From 59129c434326bdce1d2f11ac2f85d781cd558a3c Mon Sep 17 00:00:00 2001
From: moabu <47318409+moabu@users.noreply.github.com>
Date: Mon, 14 Oct 2024 11:47:13 +0300
Subject: [PATCH] refactor: move oxAuth Co-authored-by: Arnab Dutta
 <arnab.bdutta@gmail.com> Co-authored-by: Arunmozhi <arun@arunmozhi.in>
 Co-authored-by: Arvind Tomar <tomararvindsingh09@gmail.com> Co-authored-by:
 Chris B <afroappdev@gmail.com> Co-authored-by: Chris Eland
 <eland.christian@gmail.com> Co-authored-by: Christian
 <59786962+christian-hawk@users.noreply.github.com> Co-authored-by: Christian
 Eland <eland.christian@gmail.com> Co-authored-by: Christian H
 <eland.christian@gmail.com> Co-authored-by: Dhaval D
 <343411+ossdhaval@users.noreply.github.com> Co-authored-by: Djeumen Rolain
 Bonaventure <uprightech@gmail.com> Co-authored-by: Dmitry Ognyannikov
 <dmogn@mail.ru> Co-authored-by: Dzouato Djeumen Rolain Bonaventure
 <uprightech@gmail.com> Co-authored-by: Ganesh
 <ganesh.sharma@worldiswelcome.com> Co-authored-by: Gasmyr <thomas@gluu.org>
 Co-authored-by: Guillaume Smaha <guillaume.smaha@gmail.com> Co-authored-by:
 Harjinder Dhanjal <malotian@gmail.com> Co-authored-by: HemantKMehta
 <70174684+HemantKMehta@users.noreply.github.com> Co-authored-by: Javier Rojas
 <javier.rojas.blum@gmail.com> Co-authored-by: Javier Rojas Blum
 <javier.rojas.blum@gmail.com> Co-authored-by: Javier Rojas Blum
 <javier@gluu.org> Co-authored-by: Jose <bonustrack310@gmail.com>
 Co-authored-by: Jose G <bonustrack310@gmail.com> Co-authored-by: Kalle
 Mustonen <35445553+KalleMus@users.noreply.github.com> Co-authored-by: Kunal
 Vaidya <kvaidya2917@gmail.com> Co-authored-by: Madhumita <madhu@gluu.org>
 Co-authored-by: Madhumita Subramaniam <madhu@gluu.org> Co-authored-by: Mike
 Schwartz <mike@gluu.org> Co-authored-by: Milton BO <jmcm578@gmail.com>
 Co-authored-by: Milton Ch <32613743+miltonbo@users.noreply.github.com>
 Co-authored-by: Milton Ch <86965029+Milton-Ch@users.noreply.github.com>
 Co-authored-by: Milton Ch <j.milton.chambi.m@gmail.com> Co-authored-by:
 Mobarak Hosen Shakil <20867846+imShakil@users.noreply.github.com>
 Co-authored-by: Mohammad Abudayyeh <47318409+moabu@users.noreply.github.com>
 Co-authored-by: Nils Behlen <nils.behlen@netknights.it> Co-authored-by:
 Oleksiy Tataryn <otataryn@gmail.com> Co-authored-by: Patrick Ethier
 <nuttybrewer@gmail.com> Co-authored-by: Rajni Kant Sharma
 <rajnikantsh@users.noreply.github.com> Co-authored-by: Rostislav Kondratenko
 <r.kondratenko@wwpass.com> Co-authored-by: SMan <smansoft@ukr.net>
 Co-authored-by: Safin Wasi <6601566+SafinWasi@users.noreply.github.com>
 Co-authored-by: Sam Morris <36208047+shmorri@users.noreply.github.com>
 Co-authored-by: Stefan Andersson <stefan.andersson@tele2.com> Co-authored-by:
 Sync bot <54212639+mo-auto@users.noreply.github.com> Co-authored-by: Torstein
 Krause Johansen <torstein@escenic.com> Co-authored-by:
 Whispeak-io-VoiceBiometrics
 <112541650+Whispeak-io-VoiceBiometrics@users.noreply.github.com>
 Co-authored-by: William Lowe <willow9886@gmail.com> Co-authored-by: Yuriy
 Movchan <Yuriy.Movchan@gmail.com> Co-authored-by: Yuriy Zabrovarnyy
 <yzabrovarniy@gmail.com> Co-authored-by: YuriyZ <yzabrovarniy@gmail.com>
 Co-authored-by: al-com <112606283+al-com@users.noreply.github.com>
 Co-authored-by: aliaksander-samuseu
 <aliaksander-samuseu@users.noreply.github.com> Co-authored-by:
 arvindsinghtomar <LS8@`sM> Co-authored-by: arvindsinghtomar
 <tomararvindsingh09@gmail.com> Co-authored-by: ayman abdelghany
 <aymana.ghany@devfactory.com> Co-authored-by: christian-hawk
 <eland.christian@gmail.com> Co-authored-by: dependabot[bot]
 <49699333+dependabot[bot]@users.noreply.github.com> Co-authored-by: gasmyr
 <gasmyrmougang@yahoo.fr> Co-authored-by: jschristie <jschristiein@gmail.com>
 Co-authored-by: livetocode <morgan@mmm-experts.com> Co-authored-by: madumlao
 <madumlao@gmail.com> Co-authored-by: maduvena <madhu@gluu.org>
 Co-authored-by: maduvena <madhumitas.work@gmail.com> Co-authored-by: michal
 kepkowski <mk@gluu.org> Co-authored-by: miltonbo
 <32613743+miltonbo@users.noreply.github.com> Co-authored-by: mo-auto
 <54212639+mo-auto@users.noreply.github.com> Co-authored-by: musman2012
 <musman2012@namal.edu.pk> Co-authored-by: mzico <mohib@gluu.org>
 Co-authored-by: naveenkumargopi
 <34319898+naveenkumargopi@users.noreply.github.com> Co-authored-by: nynymike
 <mike@gluu.org> Co-authored-by: ossdhaval
 <343411+ossdhaval@users.noreply.github.com> Co-authored-by: premeau
 <61592119+premeau@users.noreply.github.com> Co-authored-by: pujavs
 <puja@gluu.org> Co-authored-by: qbert2k <javier.rojas.blum@gmail.com>
 Co-authored-by: rajnikant <rk@gluu.org> Co-authored-by: rajnikant
 <rk_sharmait@yahoo.com> Co-authored-by: rajnikantsh <rk_sharmait@yahoo.com>
 Co-authored-by: sahiliamsso <sahiliamsso@gmail.com> Co-authored-by: shekhar16
 <shekhar16@users.noreply.github.com> Co-authored-by: shekhar16
 <shekhar@gluu.org> Co-authored-by: shekhar16 <shekharlaad1609@gmail.com>
 Co-authored-by: smogali <smogali@gmail.com> Co-authored-by: worm333
 <flexblademaster@gmail.com> Co-authored-by: yurem <Yuriy.Movchan@gmail.com>
 Co-authored-by: yuriyz <yzabrovarniy> Co-authored-by: yuriyz
 <yzabrovarniy@gmail.com>

Signed-off-by: moabu <47318409+moabu@users.noreply.github.com>
---
 .github/ISSUE_TEMPLATE/CODEOWNERS             |    36 +
 .github/ISSUE_TEMPLATE/issue-report.md        |    48 +
 .../workflows/central_code_quality_check.yml  |   164 +
 oxAuth/.gitignore                             |    17 +
 oxAuth/CODE_OF_CONDUCT.md                     |    46 +
 oxAuth/Client/.gitignore                      |     2 +
 oxAuth/Client/pom.xml                         |   349 +
 oxAuth/Client/profiles/.gitignore             |     6 +
 .../profiles/default/client_keystore.pkcs12   |   Bin 0 -> 23345 bytes
 .../config-oxauth-test-data.properties        |    26 +
 .../jar-without-provider-dependencies.xml     |    32 +
 .../oxauth/client/AuthorizationRequest.java   |   738 +
 .../oxauth/client/AuthorizationResponse.java  |   413 +
 .../gluu/oxauth/client/AuthorizeClient.java   |   277 +
 .../BackchannelAuthenticationClient.java      |   154 +
 .../BackchannelAuthenticationRequest.java     |   163 +
 .../BackchannelAuthenticationResponse.java    |   100 +
 .../org/gluu/oxauth/client/BaseClient.java    |   277 +
 .../org/gluu/oxauth/client/BaseRequest.java   |   145 +
 .../org/gluu/oxauth/client/BaseResponse.java  |   104 +
 .../oxauth/client/BaseResponseWithErrors.java |    89 +
 .../oxauth/client/ClientAuthnEnabler.java     |    53 +
 .../oxauth/client/ClientAuthnRequest.java     |   130 +
 .../gluu/oxauth/client/ClientInfoClient.java  |   183 +
 .../gluu/oxauth/client/ClientInfoRequest.java |    89 +
 .../oxauth/client/ClientInfoResponse.java     |   116 +
 .../org/gluu/oxauth/client/ClientUtils.java   |    57 +
 .../gluu/oxauth/client/DeviceAuthzClient.java |   116 +
 .../oxauth/client/DeviceAuthzRequest.java     |   116 +
 .../oxauth/client/DeviceAuthzResponse.java    |   122 +
 .../gluu/oxauth/client/EndSessionClient.java  |   139 +
 .../gluu/oxauth/client/EndSessionRequest.java |   149 +
 .../oxauth/client/EndSessionResponse.java     |   147 +
 .../client/GluuConfigurationClient.java       |   128 +
 .../client/GluuConfigurationRequest.java      |    12 +
 .../client/GluuConfigurationResponse.java     |    61 +
 .../org/gluu/oxauth/client/JwkClient.java     |   140 +
 .../org/gluu/oxauth/client/JwkRequest.java    |    20 +
 .../org/gluu/oxauth/client/JwkResponse.java   |   121 +
 .../client/OpenIdConfigurationClient.java     |   303 +
 .../client/OpenIdConfigurationRequest.java    |    26 +
 .../client/OpenIdConfigurationResponse.java   |  1152 +
 .../client/OpenIdConnectDiscoveryClient.java  |   130 +
 .../client/OpenIdConnectDiscoveryRequest.java |   133 +
 .../OpenIdConnectDiscoveryResponse.java       |    47 +
 .../oxauth/client/QueryStringDecoder.java     |    51 +
 .../gluu/oxauth/client/RegisterClient.java    |   386 +
 .../gluu/oxauth/client/RegisterRequest.java   |  1822 ++
 .../gluu/oxauth/client/RegisterResponse.java  |   249 +
 .../oxauth/client/RevokeSessionClient.java    |    71 +
 .../oxauth/client/RevokeSessionRequest.java   |    54 +
 .../oxauth/client/RevokeSessionResponse.java  |    28 +
 .../org/gluu/oxauth/client/TokenClient.java   |   283 +
 .../org/gluu/oxauth/client/TokenRequest.java  |   352 +
 .../org/gluu/oxauth/client/TokenResponse.java |   194 +
 .../oxauth/client/TokenRevocationClient.java  |   114 +
 .../oxauth/client/TokenRevocationRequest.java |    68 +
 .../client/TokenRevocationResponse.java       |   113 +
 .../gluu/oxauth/client/UserInfoClient.java    |   216 +
 .../gluu/oxauth/client/UserInfoRequest.java   |    90 +
 .../gluu/oxauth/client/UserInfoResponse.java  |   129 +
 .../fcm/FirebaseCloudMessagingClient.java     |    73 +
 .../fcm/FirebaseCloudMessagingRequest.java    |   100 +
 .../fcm/FirebaseCloudMessagingResponse.java   |    85 +
 .../client/ciba/ping/PingCallbackClient.java  |    84 +
 .../client/ciba/ping/PingCallbackRequest.java |    69 +
 .../ciba/ping/PingCallbackResponse.java       |    25 +
 .../client/ciba/push/PushErrorClient.java     |    66 +
 .../client/ciba/push/PushErrorRequest.java    |   112 +
 .../client/ciba/push/PushErrorResponse.java   |    25 +
 .../ciba/push/PushTokenDeliveryClient.java    |    66 +
 .../ciba/push/PushTokenDeliveryRequest.java   |   140 +
 .../ciba/push/PushTokenDeliveryResponse.java  |    25 +
 .../u2f/AuthenticationRequestService.java     |    34 +
 .../client/fido/u2f/FidoU2fClientFactory.java |    60 +
 .../fido/u2f/RegistrationRequestService.java  |    38 +
 .../fido/u2f/U2fConfigurationService.java     |    27 +
 .../gluu/oxauth/client/model/JwtState.java    |   518 +
 .../client/model/SoftwareStatement.java       |   124 +
 .../oxauth/client/model/authorize/Claim.java  |    37 +
 .../client/model/authorize/ClaimValue.java    |   103 +
 .../client/model/authorize/IdTokenMember.java |    63 +
 .../authorize/JwtAuthorizationRequest.java    |   633 +
 .../model/authorize/UserInfoMember.java       |    69 +
 .../oxauth/client/service/ClientFactory.java  |    82 +
 .../client/service/IntrospectionService.java  |    51 +
 .../oxauth/client/service/StatService.java    |    24 +
 .../oxauth/client/uma/UmaClientFactory.java   |   114 +
 .../oxauth/client/uma/UmaMetadataService.java |    26 +
 .../client/uma/UmaPermissionService.java      |    38 +
 .../oxauth/client/uma/UmaResourceService.java |    66 +
 .../uma/UmaRptIntrospectionService.java       |    30 +
 .../oxauth/client/uma/UmaScopeService.java    |    27 +
 .../oxauth/client/uma/UmaTokenService.java    |    43 +
 .../client/uma/exception/UmaException.java    |    30 +
 .../oxauth/client/uma/wrapper/UmaClient.java  |   237 +
 .../java/org/gluu/oxauth/util/ClientUtil.java |   103 +
 .../org/gluu/oxauth/util/KeyExporter.java     |   137 +
 .../org/gluu/oxauth/util/KeyGenerator.java    |   254 +
 .../test/java/org/gluu/oxauth/BaseTest.java   |  1132 +
 ...nelAuthenticationExpiredRequestsTests.java |   301 +
 .../BackchannelAuthenticationPingMode.java    |  3614 +++
 .../BackchannelAuthenticationPollMode.java    |  3534 +++
 .../BackchannelAuthenticationPushMode.java    |  3544 +++
 .../ciba/CibaPingModeJwtAuthRequestTests.java |   434 +
 .../ciba/CibaPollModeJwtAuthRequestTests.java |   406 +
 .../gluu/oxauth/ciba/ConfigurationTest.java   |    71 +
 .../gluu/oxauth/ciba/RegistrationTest.java    |  1260 +
 .../java/org/gluu/oxauth/client/Asserter.java |    50 +
 .../oxauth/client/JSONObjectAsserter.java     |    41 +
 .../oxauth/client/RegisterRequestTest.java    |    41 +
 .../gluu/oxauth/client/ResponseAsserter.java  |    77 +
 .../test/java/org/gluu/oxauth/dev/.gitignore  |     1 +
 .../gluu/oxauth/dev/HostnameVerifierType.java |    36 +
 .../gluu/oxauth/dev/TestSessionWorkflow.java  |   165 +
 .../dev/manual/AccessTokenManualTest.java     |    65 +
 .../gluu/oxauth/dev/manual/BCFIPSTest.java    |    43 +
 .../manual/MTSLClientAuthenticationTest.java  |    85 +
 ...stWithoutRedirectUriWhenOneRegistered.java |    77 +
 ...AcceptValidAsymmetricIdTokenSignature.java |   167 +
 .../AcceptValidSymmetricIdTokenSignature.java |    92 +
 ...anDiscoverIdentifiersUsingEMailSyntax.java |    92 +
 .../CanDiscoverIdentifiersUsingUrlSyntax.java |   152 +
 ...stWithClientSecretBasicAuthentication.java |   107 +
 ...uestWithClientSecretJwtAuthentication.java |   111 +
 ...estWithClientSecretPostAuthentication.java |   107 +
 ...equestWithPrivateKeyJwtAuthentication.java |   115 +
 .../CanProvideEncryptedIdTokenResponse.java   |   408 +
 .../CanProvideEncryptedUserInfoResponse.java  |   459 +
 .../CanProvideSignedUserInfoResponse.java     |   718 +
 .../CanRequestAndUseClaimsInIdToken.java      |   119 +
 ...RequestAndUseEncryptedIdTokenResponse.java |   107 +
 ...equestAndUseEncryptedUserInfoResponse.java |   115 +
 ...anRequestAndUseSignedUserInfoResponse.java |   116 +
 .../interop/DisplaysLogoInLoginPage.java      |    94 +
 .../interop/DisplaysPolicyUriInLoginPage.java |    90 +
 .../interop/EnablesDynamicRegistration.java   |    63 +
 .../IgnoresExtraQueryComponentInRequest.java  |    85 +
 ...esAtHashInIdTokenWhenImplicitFlowUsed.java |   115 +
 ...ncludesCHashInIdTokenWhenCodeFlowUsed.java |   143 +
 .../oxauth/interop/OPRegistrationJwks.java    |   223 +
 .../oxauth/interop/ProvidingAcrValues.java    |    83 +
 ...dingIdTokenWithEssentialAuthTimeClaim.java |   129 +
 ...ProvidingIdTokenWithMaxAgeRestriction.java |   345 +
 ...yRequestedEssentialAndVoluntaryClaims.java |   154 +
 ...gIndividuallyRequestedEssentialClaims.java |   144 +
 ...gIndividuallyRequestedVoluntaryClaims.java |   148 +
 ...enIdConfigurationDiscoveryInformation.java |    35 +
 ...jectInvalidAsymmetricIdTokenSignature.java |    97 +
 ...ejectInvalidSymmetricIdTokenSignature.java |    92 +
 ...tUriNotMatchingARegisteredRedirectUri.java |    80 +
 ...RegistrationOfRedirectUriWithFragment.java |    53 +
 ...houtRedirectUriWhenMultipleRegistered.java |    83 +
 .../RejectRequestWithoutResponseType.java     |    44 +
 ...RequestsWithoutNonceUsingImplicitFlow.java |    86 +
 ...tsIncorrectAtHashWhenImplicitFlowUsed.java |   118 +
 ...RejectsIncorrectCHashWhenCodeFlowUsed.java |   117 +
 ...rectUriWhenQueryParameterDoesNotMatch.java |    83 +
 .../interop/RejectsSecondUseOfAccessCode.java |   140 +
 ...ContainingRegisteredRedirectUriValues.java |    53 +
 ...UserInfoClaimsWithOpenIdRequestObject.java |   143 +
 ...questingUserInfoClaimsWithScopeValues.java |   102 +
 ...odeRevokesPreviouslyIssuedAccessToken.java |   163 +
 ...ormEncodedClientCredentialsInPostBody.java |   106 +
 ...ToTokenEndpointUsingHttpBasicWithPost.java |   106 +
 ...nEndpointWithAsymmetricallySignedJWTs.java |   480 +
 ...enEndpointWithSymmetricallySignedJWTs.java |   254 +
 ...upportClaimsRequestSpecifyingSubValue.java |   229 +
 .../interop/SupportCodeResponseType.java      |    81 +
 ...nationOfCodeIdTokenTokenResponseTypes.java |    81 +
 ...rtCombinationOfCodeTokenResponseTypes.java |    81 +
 ...CombinationOfIdTokenCodeResponseTypes.java |    81 +
 ...ombinationOfIdTokenTokenResponseTypes.java |    81 +
 .../interop/SupportDisplayValuePage.java      |    81 +
 .../interop/SupportDisplayValuePopup.java     |    81 +
 .../interop/SupportIdTokenResponseType.java   |    79 +
 .../interop/SupportPromptValueLogin.java      |   153 +
 .../interop/SupportPromptValueNone.java       |   159 +
 .../interop/SupportRegistrationRead.java      |   113 +
 .../oxauth/interop/SupportRequestFile.java    |   139 +
 .../SupportRequestsContainingNonce.java       |   117 +
 .../interop/SupportRequestsWithoutNonce.java  |   111 +
 .../SupportScopeRequestingAddressClaims.java  |   121 +
 .../SupportScopeRequestingAllBasicClaims.java |   121 +
 .../SupportScopeRequestingEmailClaims.java    |   121 +
 ...upportScopeRequestingNoSpecificClaims.java |   140 +
 .../SupportScopeRequestingPhoneClaims.java    |   121 +
 .../SupportScopeRequestingProfileClaims.java  |   130 +
 .../interop/SupportTokenResponseType.java     |    81 +
 .../interop/SupportWebFingerDiscovery.java    |    29 +
 .../interop/Supports3rdPartyInitLogin.java    |    59 +
 .../Supports3rdPartyInitLoginNoHttps.java     |    54 +
 ...imsRequestedWithScopeAndRequestObject.java |   146 +
 .../SupportsReturningClaimsInIdToken.java     |   145 +
 ...entClaimsInIdTokenAndUserInfoEndpoint.java |   151 +
 .../gluu/oxauth/interop/UserInfoEndpoint.java |    28 +
 ...dpointAccessWithFormEncodedBodyMethod.java |   107 +
 ...serInfoEndpointAccessWithHeaderMethod.java |   100 +
 .../UsesAsymmetricIdTokenSignatures.java      |   374 +
 .../gluu/oxauth/interop/UsesDiscovery.java    |    34 +
 .../interop/UsesDynamicRegistration.java      |    63 +
 .../UsesSymmetricIdTokenSignatures.java       |   198 +
 ...fiesCorrectAtHashWhenImplicitFlowUsed.java |   115 +
 .../VerifiesCorrectCHashWhenCodeFlowUsed.java |   114 +
 .../org/gluu/oxauth/json/JsonApplierTest.java |    55 +
 .../org/gluu/oxauth/load/LoadConstants.java   |    21 +
 .../load/ObtainAccessTokenLoadTest.java       |   119 +
 .../oxauth/load/RegistrationLoadTest.java     |    59 +
 .../gluu/oxauth/load/UserInfoLoadTest.java    |    91 +
 .../BenchmarkRequestAccessToken.java          |   123 +
 .../BenchmarkRequestAuthorization.java        |   135 +
 .../suite/BenchmarkTestListener.java          |   117 +
 .../suite/BenchmarkTestSuiteListener.java     |    33 +
 .../org/gluu/oxauth/page/AbstractPage.java    |    86 +
 .../org/gluu/oxauth/page/DeviceAuthzPage.java |    29 +
 .../java/org/gluu/oxauth/page/LoginPage.java  |    42 +
 .../test/java/org/gluu/oxauth/page/Page.java  |     7 +
 .../java/org/gluu/oxauth/page/PageConfig.java |    41 +
 .../java/org/gluu/oxauth/page/SelectPage.java |    68 +
 .../ws/rs/AccessTokenAsJwtHttpTest.java       |   108 +
 .../gluu/oxauth/ws/rs/AddressClaimsTest.java  |  2193 ++
 .../ApplicationTypeRestrictionHttpTest.java   |   514 +
 .../ws/rs/AuthorizationCodeFlowHttpTest.java  |   896 +
 ...AuthorizationResponseCustomHeaderTest.java |   115 +
 .../rs/AuthorizationResponseModeHttpTest.java |  1149 +
 .../rs/AuthorizationSupportCustomParams.java  |    90 +
 .../rs/AuthorizeRestWebServiceHttpTest.java   |  3017 ++
 ...horizeSessionIdRestWebServiceHttpTest.java |   142 +
 .../ClientAuthenticationFilterHttpTest.java   |   189 +
 .../ws/rs/ClientCredentialsGrantHttpTest.java |  1956 ++
 .../rs/ClientInfoRestWebServiceHttpTest.java  |   197 +
 .../oxauth/ws/rs/ClientSecretBasicTest.java   |   234 +
 .../ClientSpecificAccessTokenExpiration.java  |   163 +
 .../org/gluu/oxauth/ws/rs/ClientTestUtil.java |    33 +
 .../ClientWhiteListBlackListRedirectUris.java |   127 +
 .../ConfigurationRestWebServiceHttpTest.java  |   124 +
 ...nableClientToRestrictJavascriptOrigin.java |   198 +
 .../ws/rs/EncodeClaimsInStateParameter.java   |  1772 ++
 .../rs/EndSessionRestWebServiceHttpTest.java  |   261 +
 .../GluuConfigurationWebServiceHttpTest.java  |    25 +
 .../ws/rs/GrantTypesRestrictionHttpTest.java  |   750 +
 .../ws/rs/IndividualClaimsRequestsTest.java   |  2414 ++
 .../oxauth/ws/rs/IntrospectionWsHttpTest.java |    77 +
 .../ws/rs/JwkRestWebServiceHttpTest.java      |    72 +
 ...ultiStepAuthorizationCodeFlowHttpTest.java |   135 +
 .../gluu/oxauth/ws/rs/MultivaluedClaims.java  |  3529 +++
 .../ws/rs/OpenIDConnectDiscoveryHttpTest.java |   244 +
 .../ws/rs/OpenIDRequestObjectHttpTest.java    |  2890 ++
 .../PersistClientAuthorizationsHttpTest.java  |   565 +
 .../org/gluu/oxauth/ws/rs/PkceHttpTest.java   |   216 +
 .../RegistrationRestWebServiceHttpTest.java   |   699 +
 .../rs/RegistrationWithSoftwareStatement.java |   490 +
 .../rs/ResponseTypesRestrictionHttpTest.java  |   663 +
 .../oxauth/ws/rs/RevokeSessionHttpTest.java   |    91 +
 ...SOWithMultipleBackendServicesHttpTest.java |   372 +
 ...ctorIdentifierUrlVerificationHttpTest.java |   450 +
 .../oxauth/ws/rs/SelectAccountHttpTest.java   |   210 +
 .../ws/rs/SpontaneousScopeHttpTest.java       |   109 +
 .../oxauth/ws/rs/TokenBindingHttpTest.java    |   130 +
 .../oxauth/ws/rs/TokenEncryptionHttpTest.java |   425 +
 ...EndpointAuthMethodRestrictionHttpTest.java | 10674 +++++++
 .../ws/rs/TokenRestWebServiceHttpTest.java    |  1460 +
 .../oxauth/ws/rs/TokenRevocationTest.java     |   981 +
 .../oxauth/ws/rs/TokenSignaturesHttpTest.java |  1258 +
 .../java/org/gluu/oxauth/ws/rs/UILocales.java |   111 +
 .../rs/UserAuthenticationFilterHttpTest.java  |   320 +
 .../ws/rs/UserInfoRestWebServiceHttpTest.java |  1868 ++
 .../ws/rs/ValidateIdTokenHashesTest.java      |   213 +
 .../org/gluu/oxauth/ws/rs/WebKeysTest.java    |    81 +
 .../deviceauthz/DeviceAuthzFlowHttpTest.java  |   609 +
 .../DeviceAuthzRequestRegistrationTest.java   |   273 +
 .../oxauth/ws/rs/internal/StatWSTest.java     |    38 +
 .../AccessProtectedResourceFlowHttpTest.java  |   207 +
 ...ntAuthenticationByAccessTokenHttpTest.java |   238 +
 .../ws/rs/uma/MetaDataFlowHttpTest.java       |    48 +
 .../ws/rs/uma/ObtainPatTokenFlowHttpTest.java |    62 +
 .../rs/uma/RegisterResourceFlowHttpTest.java  |   263 +
 .../gluu/oxauth/ws/rs/uma/ScopeHttpTest.java  |    32 +
 .../UmaRegisterPermissionFlowHttpTest.java    |   130 +
 .../rs/uma/UmaSpontaneousScopeHttpTest.java   |   140 +
 .../src/test/resources/clientkeystore.jks     |   Bin 0 -> 19673 bytes
 .../test/resources/interop_Gluu_OX.properties |    44 +
 .../test/resources/interop_NRI_PHP.properties |    39 +
 .../interop_Nov_Matake_Test.properties        |    39 +
 .../test/resources/interop_Oreo.properties    |     0
 .../interop_Roland_Hedberg_Test.properties    |    39 +
 .../resources/interop_Ryo_Ito_Test.properties |     0
 .../test/resources/interop_Wenou.properties   |     0
 .../src/test/resources/interop_rohe_config.py |    70 +
 .../resources/interop_rohe_python_config.json |    35 +
 .../resources/oxauth_test_client_keys.zip     |   Bin 0 -> 9015 bytes
 .../src/test/resources/testng-benchmark.xml   |    19 +
 .../src/test/resources/testng-multi-authz.xml |    12 +
 .../src/test/resources/testng.properties      |    61 +
 oxAuth/Client/src/test/resources/testng.xml   |   854 +
 oxAuth/LICENSE                                |    21 +
 oxAuth/Model/.gitignore                       |     1 +
 oxAuth/Model/pom.xml                          |   170 +
 .../authorize/AuthorizeErrorResponseType.java |   191 +
 .../authorize/AuthorizeRequestParam.java      |    49 +
 .../authorize/AuthorizeResponseParam.java     |    31 +
 .../oxauth/model/authorize/CodeVerifier.java  |   141 +
 .../DeviceAuthorizationRequestParam.java      |    24 +
 .../DeviceAuthorizationResponseParam.java     |    50 +
 .../DeviceAuthzErrorResponseType.java         |    63 +
 ...hannelAuthenticationErrorResponseType.java |   128 +
 ...BackchannelAuthenticationRequestParam.java |    80 +
 ...ackchannelAuthenticationResponseParam.java |    30 +
 ...elDeviceRegistrationErrorResponseType.java |    84 +
 .../FirebaseCloudMessagingRequestParam.java   |    41 +
 .../FirebaseCloudMessagingResponseParam.java  |    41 +
 .../model/ciba/PushErrorRequestParam.java     |    19 +
 .../model/ciba/PushErrorResponseType.java     |    76 +
 .../ciba/PushTokenDeliveryRequestParam.java   |    21 +
 .../model/common/AuthenticationMethod.java    |   102 +
 .../model/common/AuthorizationMethod.java     |    68 +
 .../common/BackchannelTokenDeliveryMode.java  |    94 +
 .../gluu/oxauth/model/common/CallerType.java  |    11 +
 .../org/gluu/oxauth/model/common/Display.java |    87 +
 .../gluu/oxauth/model/common/GrantType.java   |   178 +
 .../oxauth/model/common/HasParamName.java     |    16 +
 .../org/gluu/oxauth/model/common/Holder.java  |    32 +
 .../java/org/gluu/oxauth/model/common/Id.java |    52 +
 .../org/gluu/oxauth/model/common/IdType.java  |    66 +
 .../model/common/IntrospectionResponse.java   |   177 +
 .../gluu/oxauth/model/common/JSONable.java    |    18 +
 .../oxauth/model/common/PairwiseIdType.java   |    41 +
 .../model/common/ProgrammingLanguage.java     |    47 +
 .../org/gluu/oxauth/model/common/Prompt.java  |   116 +
 .../oxauth/model/common/ResponseMode.java     |    90 +
 .../oxauth/model/common/ResponseType.java     |   182 +
 .../oxauth/model/common/ScopeConstants.java   |    13 +
 .../gluu/oxauth/model/common/ScopeType.java   |   128 +
 .../SoftwareStatementValidationType.java      |    40 +
 .../gluu/oxauth/model/common/SubjectType.java |    54 +
 .../gluu/oxauth/model/common/TokenType.java   |    64 +
 .../oxauth/model/common/TokenTypeHint.java    |    94 +
 .../oxauth/model/common/WebKeyStorage.java    |    50 +
 .../model/common/converter/ListConverter.java |    41 +
 .../model/configuration/AppConfiguration.java |  2237 ++
 .../configuration/AuthenticationFilter.java   |    23 +
 ...AuthenticationProtectionConfiguration.java |    52 +
 .../model/configuration/BaseFilter.java       |    71 +
 .../CIBAEndUserNotificationConfig.java        |   105 +
 .../ClientAuthenticationFilter.java           |    21 +
 .../model/configuration/Configuration.java    |    10 +
 .../ConfigurationResponseClaim.java           |    77 +
 .../CorsConfigurationFilter.java              |   145 +
 .../model/crypto/AbstractCryptoProvider.java  |   235 +
 .../gluu/oxauth/model/crypto/Certificate.java |   105 +
 .../model/crypto/CryptoProviderFactory.java   |    66 +
 .../org/gluu/oxauth/model/crypto/Key.java     |   131 +
 .../gluu/oxauth/model/crypto/KeyFactory.java  |    31 +
 .../model/crypto/OxAuthCryptoProvider.java    |   585 +
 .../model/crypto/OxElevenCryptoProvider.java  |   168 +
 .../gluu/oxauth/model/crypto/PrivateKey.java  |    40 +
 .../gluu/oxauth/model/crypto/PublicKey.java   |    49 +
 .../model/crypto/binding/TokenBinding.java    |    60 +
 .../crypto/binding/TokenBindingExtension.java |    41 +
 .../binding/TokenBindingExtensionType.java    |    12 +
 .../model/crypto/binding/TokenBindingID.java  |    54 +
 .../binding/TokenBindingKeyParameters.java    |    49 +
 .../crypto/binding/TokenBindingMessage.java   |   102 +
 .../binding/TokenBindingMessageParser.java    |    80 +
 .../binding/TokenBindingParseException.java   |    26 +
 .../crypto/binding/TokenBindingStream.java    |    20 +
 .../crypto/binding/TokenBindingType.java      |    48 +
 .../encryption/BlockEncryptionAlgorithm.java  |   103 +
 .../encryption/KeyEncryptionAlgorithm.java    |    79 +
 .../crypto/signature/AbstractSigner.java      |    23 +
 .../crypto/signature/AlgorithmFamily.java     |    50 +
 .../AsymmetricSignatureAlgorithm.java         |   138 +
 .../crypto/signature/ECDSAKeyFactory.java     |   131 +
 .../crypto/signature/ECDSAPrivateKey.java     |    65 +
 .../crypto/signature/ECDSAPublicKey.java      |    92 +
 .../crypto/signature/ECEllipticCurve.java     |    66 +
 .../model/crypto/signature/RSAKeyFactory.java |   141 +
 .../model/crypto/signature/RSAPrivateKey.java |    77 +
 .../model/crypto/signature/RSAPublicKey.java  |    81 +
 .../crypto/signature/SignatureAlgorithm.java  |   133 +
 .../oxauth/model/crypto/signature/Signer.java |    18 +
 .../model/discovery/OAuth2Discovery.java      |   324 +
 .../oxauth/model/discovery/WebFingerLink.java |    32 +
 .../model/discovery/WebFingerParam.java       |    34 +
 .../model/error/DefaultErrorResponse.java     |    51 +
 .../model/error/ErrorHandlingMethod.java      |   116 +
 .../oxauth/model/error/ErrorResponse.java     |   189 +
 .../gluu/oxauth/model/error/IErrorType.java   |    22 +
 .../exception/InvalidClaimException.java      |    17 +
 .../model/exception/InvalidJweException.java  |    25 +
 .../model/exception/InvalidJwtException.java  |    25 +
 .../exception/InvalidParameterException.java  |    25 +
 .../model/exception/SignatureException.java   |    25 +
 .../fido/u2f/DeviceRegistrationStatus.java    |    72 +
 .../model/fido/u2f/U2fConfiguration.java      |    75 +
 .../oxauth/model/fido/u2f/U2fConstants.java   |    20 +
 .../model/fido/u2f/U2fErrorResponseType.java  |    97 +
 .../fido/u2f/exception/BadInputException.java |    23 +
 .../u2f/exception/RegistrationNotAllowed.java |    23 +
 .../u2f/message/RawAuthenticateResponse.java  |    61 +
 .../fido/u2f/message/RawRegisterResponse.java |    59 +
 .../u2f/protocol/AuthenticateRequest.java     |    79 +
 .../protocol/AuthenticateRequestMessage.java  |    60 +
 .../u2f/protocol/AuthenticateResponse.java    |    96 +
 .../fido/u2f/protocol/AuthenticateStatus.java |    55 +
 .../model/fido/u2f/protocol/ClientData.java   |    73 +
 .../model/fido/u2f/protocol/DeviceData.java   |   101 +
 .../u2f/protocol/DeviceNotificationConf.java  |    73 +
 .../fido/u2f/protocol/RegisterRequest.java    |    71 +
 .../u2f/protocol/RegisterRequestMessage.java  |    64 +
 .../fido/u2f/protocol/RegisterResponse.java   |    83 +
 .../fido/u2f/protocol/RegisterStatus.java     |    57 +
 .../oxauth/model/gluu/GluuConfiguration.java  |    82 +
 .../model/gluu/GluuErrorResponseType.java     |    66 +
 .../gluu/oxauth/model/json/JsonApplier.java   |   195 +
 .../oxauth/model/json/PropertyDefinition.java |    76 +
 .../model/jwe/AbstractJweDecrypter.java       |    36 +
 .../model/jwe/AbstractJweEncrypter.java       |    33 +
 .../java/org/gluu/oxauth/model/jwe/Jwe.java   |   116 +
 .../gluu/oxauth/model/jwe/JweDecrypter.java   |    27 +
 .../oxauth/model/jwe/JweDecrypterImpl.java    |   126 +
 .../gluu/oxauth/model/jwe/JweEncrypter.java   |    17 +
 .../oxauth/model/jwe/JweEncrypterImpl.java    |   121 +
 .../model/jwe/KeyDerivationFunction.java      |   102 +
 .../org/gluu/oxauth/model/jwk/Algorithm.java  |   115 +
 .../org/gluu/oxauth/model/jwk/JSONWebKey.java |   281 +
 .../gluu/oxauth/model/jwk/JSONWebKeySet.java  |   128 +
 .../gluu/oxauth/model/jwk/JWKParameter.java   |    31 +
 .../model/jwk/KeySelectionStrategy.java       |    47 +
 .../org/gluu/oxauth/model/jwk/KeyType.java    |    64 +
 .../java/org/gluu/oxauth/model/jwk/Use.java   |    65 +
 .../oxauth/model/jws/AbstractJwsSigner.java   |    87 +
 .../gluu/oxauth/model/jws/ECDSASigner.java    |   168 +
 .../org/gluu/oxauth/model/jws/HMACSigner.java |    85 +
 .../org/gluu/oxauth/model/jws/JwsSigner.java  |    26 +
 .../oxauth/model/jws/PlainTextSignature.java  |    33 +
 .../org/gluu/oxauth/model/jws/RSASigner.java  |   107 +
 .../java/org/gluu/oxauth/model/jwt/Jwt.java   |   113 +
 .../gluu/oxauth/model/jwt/JwtClaimName.java   |   237 +
 .../gluu/oxauth/model/jwt/JwtClaimSet.java    |   373 +
 .../org/gluu/oxauth/model/jwt/JwtClaims.java  |   205 +
 .../org/gluu/oxauth/model/jwt/JwtHeader.java  |   195 +
 .../gluu/oxauth/model/jwt/JwtHeaderName.java  |    35 +
 .../oxauth/model/jwt/JwtStateClaimName.java   |   106 +
 .../oxauth/model/jwt/JwtSubClaimObject.java   |    36 +
 .../org/gluu/oxauth/model/jwt/JwtType.java    |    48 +
 .../org/gluu/oxauth/model/jwt/PureJwt.java    |   110 +
 .../model/register/ApplicationType.java       |    68 +
 .../register/RegisterErrorResponseType.java   |    97 +
 .../model/register/RegisterRequestParam.java  |   391 +
 .../model/register/RegisterResponseParam.java |    67 +
 .../session/EndSessionErrorResponseType.java  |    91 +
 .../model/session/EndSessionRequestParam.java |    40 +
 .../session/EndSessionResponseParam.java      |    15 +
 .../model/token/ClientAssertionType.java      |    50 +
 .../oxauth/model/token/JsonWebResponse.java   |    70 +
 .../model/token/TokenErrorResponseType.java   |   125 +
 .../TokenRevocationErrorResponseType.java     |    80 +
 .../token/TokenRevocationRequestParam.java    |    17 +
 .../model/uma/ClaimTokenFormatType.java       |    34 +
 .../org/gluu/oxauth/model/uma/JsonLogic.java  |    91 +
 .../gluu/oxauth/model/uma/JsonLogicNode.java  |    74 +
 .../oxauth/model/uma/JsonLogicNodeParser.java |    25 +
 .../oxauth/model/uma/PermissionTicket.java    |    63 +
 .../gluu/oxauth/model/uma/RPTResponse.java    |    54 +
 .../model/uma/RptIntrospectionResponse.java   |   181 +
 .../gluu/oxauth/model/uma/RptProfiles.java    |    21 +
 .../gluu/oxauth/model/uma/UmaConstants.java   |    29 +
 .../model/uma/UmaErrorResponseType.java       |   218 +
 .../gluu/oxauth/model/uma/UmaMetadata.java    |    97 +
 .../oxauth/model/uma/UmaNeedInfoResponse.java |    74 +
 .../gluu/oxauth/model/uma/UmaPermission.java  |   102 +
 .../oxauth/model/uma/UmaPermissionList.java   |    26 +
 .../gluu/oxauth/model/uma/UmaResource.java    |   158 +
 .../oxauth/model/uma/UmaResourceResponse.java |    58 +
 .../oxauth/model/uma/UmaResourceWithId.java   |    46 +
 .../oxauth/model/uma/UmaScopeDescription.java |    76 +
 .../gluu/oxauth/model/uma/UmaScopeType.java   |    42 +
 .../oxauth/model/uma/UmaTokenResponse.java    |    77 +
 .../model/uma/persistence/UmaPermission.java  |   205 +
 .../model/uma/persistence/UmaResource.java    |   252 +
 .../gluu/oxauth/model/uma/wrapper/Token.java  |    89 +
 .../gluu/oxauth/model/userinfo/Schema.java    |    46 +
 .../userinfo/UserInfoErrorResponseType.java   |    63 +
 .../gluu/oxauth/model/util/Base64Util.java    |    90 +
 .../org/gluu/oxauth/model/util/ByteUtils.java |    22 +
 .../org/gluu/oxauth/model/util/CertUtils.java |   177 +
 .../org/gluu/oxauth/model/util/HashUtil.java  |    50 +
 .../org/gluu/oxauth/model/util/JwtUtil.java   |   289 +
 .../java/org/gluu/oxauth/model/util/Pair.java |    59 +
 .../gluu/oxauth/model/util/QueryBuilder.java  |    66 +
 .../gluu/oxauth/model/util/StringUtils.java   |   204 +
 .../util/SubjectIdentifierGenerator.java      |    21 +
 .../oxauth/model/util/URLPatternList.java     |   167 +
 .../java/org/gluu/oxauth/model/util/Util.java |   289 +
 oxAuth/Model/src/main/resources/json_logic.js |   464 +
 .../model/authorize/CodeVerifierTest.java     |    56 +
 .../binding/TokenBindingParserTest.java       |    28 +
 .../gluu/oxauth/model/jwt/JwtClaimsTest.java  |    50 +
 .../gluu/oxauth/model/jwt/JwtTypeTest.java    |    16 +
 .../model/uma/JsonLogicNodeParserTest.java    |    26 +
 .../gluu/oxauth/model/uma/JsonLogicTest.java  |    71 +
 .../org/gluu/oxauth/model/uma/TestUtil.java   |    45 +
 .../gluu/oxauth/model/uma/UmaTestUtil.java    |   107 +
 .../gluu/oxauth/model/util/CertUtilsTest.java |    49 +
 .../gluu/oxauth/model/util/HashUtilTest.java  |    43 +
 .../gluu/oxauth/model/util/JwtUtilTest.java   |    28 +
 .../org/gluu/oxauth/model/util/Tester.java    |    17 +
 .../oxauth/model/util/URLPatternListTest.java |    54 +
 .../src/test/resources/json-logic-node.json   |    18 +
 .../src/test/resources/testng-benchmark.xml   |     4 +
 .../src/test/resources/testng-multi-authz.xml |     4 +
 oxAuth/Model/src/test/resources/testng.xml    |    26 +
 oxAuth/README                                 |   221 +
 oxAuth/README.md                              |     9 +
 oxAuth/Server/.gitignore                      |     4 +
 .../src/main/webapp/WEB-INF/.gitignore        |     1 +
 oxAuth/Server/conf/gluu-couchbase.properties  |    27 +
 oxAuth/Server/conf/gluu-ldap.properties       |     5 +
 oxAuth/Server/conf/gluu-spanner.properties    |    25 +
 oxAuth/Server/conf/gluu-sql.properties        |    25 +
 oxAuth/Server/conf/gluu.properties            |     8 +
 oxAuth/Server/conf/keystore.jks               |   Bin 0 -> 22029 bytes
 oxAuth/Server/conf/oxauth-config.json         |   341 +
 oxAuth/Server/conf/oxauth-errors.json         |   454 +
 oxAuth/Server/conf/oxauth-static-conf.json    |    22 +
 oxAuth/Server/conf/oxauth-web-keys.json       |   139 +
 oxAuth/Server/conf/salt                       |     1 +
 .../inwebo/InWeboExternalAuthenticator.py     |   234 +
 .../oneid/OneIdExternalAuthenticator.py       |   236 +
 .../oneid/docs/workflow.png                   |   Bin 0 -> 37612 bytes
 .../oneid/docs/workflow.txt                   |    13 +
 .../oneid/lib/oneid.py                        |   145 +
 .../oneid/lib/stringprep.py                   |   272 +
 .../oxpush/oxPushExternalAuthenticator.py     |   307 +
 .../PhoneFactorExternalAuthenticator.py       |   200 +
 .../2.13/PhoneFactorSDK-2.13.jar              |   Bin 0 -> 36294 bytes
 .../2.13/PhoneFactorSDK-2.13.pom              |     9 +
 .../PhoneFactorSDK/maven-metadata-local.xml   |    12 +
 .../toopher/ToopherExternalAuthenticator.py   |   276 +
 .../ToopherSDK/1.0.0/ToopherSDK-1.0.0.jar     |   Bin 0 -> 8589 bytes
 .../ToopherSDK/1.0.0/ToopherSDK-1.0.0.pom     |     9 +
 .../ToopherSDK/maven-metadata-local.xml       |    12 +
 .../toopher/sdk/pom.xml                       |   105 +
 .../com/toopher/AuthenticationStatus.java     |    72 +
 .../main/java/com/toopher/PairingStatus.java  |    49 +
 .../main/java/com/toopher/RequestError.java   |    31 +
 .../src/main/java/com/toopher/ToopherAPI.java |   220 +
 .../integrations.deprecatred/wikid/README.txt |    37 +
 .../wikid/WikidExternalAuthenticator.py       |   218 +
 .../Migration_stepts_to_3.1.x.txt             |    72 +
 .../integrations/Migration_stepts_to_4.0.txt  |     6 +
 .../Server/integrations/ThumbSignIn/README.md |     7 +
 .../ThumbSignInExternalAuthenticator.py       |   319 +
 .../Server/integrations/acr_router/Readme.txt |     3 +
 .../acr_router/acr_router_authenticator.py    |    68 +
 .../integrations/acr_saml_router/Readme.txt   |     1 +
 .../acr_smal_router_authenticator.py          |    82 +
 .../allowed_countries/allowed_countries.py    |   155 +
 .../integrations/allowed_countries/readme.txt |     3 +
 .../authz/ConsentGatheringSample.py           |    87 +
 .../integrations/authz/docs/Authz design.dia  |   Bin 0 -> 4879 bytes
 .../integrations/authz/docs/Authz design.png  |   Bin 0 -> 26731 bytes
 .../azuread/AzureADAuthenticationForGluu.py   |   271 +
 oxAuth/Server/integrations/azuread/README.md  |    13 +
 ...asicPassowrdUpdateExternalAuthenticator.py |   124 +
 .../auth/pwd/new-password.xhtml               |   114 +
 .../BasicClientGroupExternalAuthenticator.py  |   177 +
 .../basic.client_group/README.txt             |    25 +
 .../basic.client_group/client_group.json      |    16 +
 ...ExternalAuthenticatorWithExternalLogout.py |    91 +
 .../basic.external_logout/README.txt          |     3 +
 .../LdapAuthConfExternalAuthenticator.py      |   125 +
 .../basic.ldap_auth_confs/README.txt          |     2 +
 .../BasicLockAccountExternalAuthenticator.py  |   271 +
 .../basic.lock.account/README.txt             |    15 +
 ...BasicMultiAuthConfExternalAuthenticator.py |   293 +
 .../basic.multi_auth_conf/INSTALLATION.txt    |    35 +
 .../basic.multi_auth_conf/README.txt          |    38 +
 .../BasicMultiLoginExternalAuthenticator.py   |   122 +
 .../basic.multi_login/INSTALLATION.txt        |    33 +
 .../integrations/basic.multi_login/README.txt |    13 +
 ...TestEmailAddressesExternalAuthenticator.py |    97 +
 .../README.txt                                |     5 +
 .../BasicOneSessionExternalAuthenticator.py   |   118 +
 .../integrations/basic.one_session/README.txt |     1 +
 .../PasswordExpiration.py                     |   149 +
 .../basic.password_expiration/README.md       |     2 +
 .../INSTALLATION.txt                          |    53 +
 .../PasswordChangeWithValidations.py          |   166 +
 .../README.md                                 |     4 +
 .../pwd/newpassword.xhtml                     |    60 +
 .../BasicRecaptchaExternalAuthenticator.py    |   219 +
 .../integrations/basic.recaptcha/README.md    |    15 +
 .../basic.recaptcha/cert_creds.json           |     7 +
 .../basic.recaptcha/login-page.png            |   Bin 0 -> 227809 bytes
 .../BasicResetToStepExternalAuthenticator.py  |   100 +
 .../basic.reset_to_step/README.txt            |     5 +
 .../basic/BasicExternalAuthenticator.py       |    88 +
 .../integrations/basic/INSTALLATION.txt       |    27 +
 oxAuth/Server/integrations/basic/README.txt   |     3 +
 .../integrations/basicMultiAuth_Duo/Readme.md |    38 +
 .../basicMultiAuth_Duo/basicmultiauthduo.py   |   185 +
 .../bcrypt_ssha_migration/pwd_migration.py    |   148 +
 .../bioid/BioIDExternalAuthenticator.py       |   312 +
 oxAuth/Server/integrations/bioid/README.md    |    72 +
 oxAuth/Server/integrations/bioid/README.txt   |    72 +
 .../cas2/Cas2ExternalAuthenticator.py         |   338 +
 .../cas2_duo/Cas2DuoExternalAuthenticator.py  |   182 +
 oxAuth/Server/integrations/cas2_duo/Readme.md |    34 +
 .../cas2_duo/docs/joinded_flows.dia           |   Bin 0 -> 2240 bytes
 .../cas2_duo/docs/joinded_flows.jpg           |   Bin 0 -> 31807 bytes
 oxAuth/Server/integrations/casa/Casa.py       |   673 +
 oxAuth/Server/integrations/casa/README.md     |    52 +
 .../casa_external_user/casa_external.py       |   896 +
 .../integrations/casa_external_user/readme.md |    25 +
 .../integrations/cert/Generate certs guide.md |   407 +
 .../cert/Generate certs without configs.md    |    27 +
 .../cert/Quick certs guide for testing.md     |    35 +
 oxAuth/Server/integrations/cert/README.txt    |    22 +
 .../cert/UserCertExternalAuthenticator.py     |   482 +
 .../integrations/cert/docs/Cert design.dia    |   Bin 0 -> 11048 bytes
 .../integrations/cert/docs/Cert design.jpg    |   Bin 0 -> 110176 bytes
 .../integrations/cert/sample/cert_creds.json  |     7 +
 .../cert/sample/generated_certs.zip           |   Bin 0 -> 53946 bytes
 .../ciba/FirebaseEndUserNotification.py       |    68 +
 .../compromised_password.py                   |   223 +
 .../compromised_password/readme.txt           |     7 +
 .../ConsentGatheringSample_redirect.py        |    87 +
 .../consent-gathering-with-redirection/README |    45 +
 .../postauthorize.xhtml                       |    14 +
 .../redirect.xhtml                            |    14 +
 .../third-party-mock-app/README.txt.txt       |     6 +
 .../third-party-mock-app/consent_page.html    |    45 +
 .../custom_registration/Attributes.json       |    10 +
 .../custom_registration/README.md             |    11 +
 .../custom_registration/reg.xhtml             |   264 +
 .../custom_registration/register.py           |   267 +
 ...essAuthenticationWithDeduceImpossTravel.py |   563 +
 .../README_PASSWORDLESS_AUTHN_WITH_DEDUCE.md  |   111 +
 ...DuoUniversalPromptExternalAuthenticator.py |   177 +
 .../duo-universal-prompt/README.txt           |    98 +
 .../Passport_and_Duo-Universal.py             |   802 +
 ...Passport_and_Duo-Universal_ignore_empty.py |   641 +
 .../duo.passport.combine/readme.md            |    76 +
 .../duo/DuoExternalAuthenticator.py           |   239 +
 .../Server/integrations/duo/INSTALLATION.txt  |    44 +
 oxAuth/Server/integrations/duo/README.txt     |    21 +
 oxAuth/Server/integrations/duo/lib/duo_web.py |   175 +
 .../duo2_Gluu3/DUO_Universal_3.1.7.py         |   177 +
 .../Server/integrations/duo2_Gluu3/readme.md  |    83 +
 oxAuth/Server/integrations/email2FA/README.md |    55 +
 .../email2FA/email2FAExternalAuthenticator.py |   366 +
 .../integrations/email2FA/entertoken.xhtml    |    92 +
 .../fido2/Fido2ExternalAuthenticator.py       |   277 +
 .../integrations/forgot_password/README.md    |    26 +
 .../forgot_password/forgot_password.py        |   451 +
 .../fortinet/FortinetExternalAuthenticator.py |   127 +
 .../Server/integrations/fortinet/README.txt   |    89 +
 .../gplus/GooglePlusExternalAuthenticator.py  |   557 +
 oxAuth/Server/integrations/gplus/README.txt   |    54 +
 .../gplus/sample/custom_script_entry.ldif     |    22 +
 .../gplus/sample/gplus_client_secrets.json    |     1 +
 oxAuth/Server/integrations/gplus/workflow.txt |    39 +
 .../integrations/idfirst/README_idfirst.md    |    37 +
 oxAuth/Server/integrations/idfirst/idfirst.py |    98 +
 oxAuth/Server/integrations/inwebo/inwebo.py   |   338 +
 .../Server/integrations/inwebo/iw_creds.json  |     1 +
 oxAuth/Server/integrations/inwebo/iw_va.xhtml |    93 +
 .../integrations/inwebo/iwauthenticate.xhtml  |    99 +
 .../Server/integrations/inwebo/iwlogin.xhtml  |    94 +
 .../inwebo/iwlogin_without_password.xhtml     |    91 +
 .../inwebo/iwpushnotification.xhtml           |    90 +
 .../integrations/inwebo/oxauth.properties     |    19 +
 .../integrations/new_acr_link/README.md       |    34 +
 .../integrations/new_acr_link/new_acr_link.py |   148 +
 .../Server/integrations/otp/Installation.md   |    27 +
 .../otp/OtpExternalAuthenticator.py           |   617 +
 .../otp/Properties description.md             |    23 +
 oxAuth/Server/integrations/otp/Readme.md      |     5 +
 ...tp_integration_authentication_workflow.png |   Bin 0 -> 64598 bytes
 .../0.0.1-SNAPSHOT/_remote.repositories       |     6 +
 .../0.0.1-SNAPSHOT/maven-metadata-local.xml   |    36 +
 ...keyprovisioning-0.0.1-SNAPSHOT-javadoc.jar |   Bin 0 -> 71430 bytes
 ...keyprovisioning-0.0.1-SNAPSHOT-sources.jar |   Bin 0 -> 12997 bytes
 ...ath-otp-keyprovisioning-0.0.1-SNAPSHOT.jar |   Bin 0 -> 14268 bytes
 ...ath-otp-keyprovisioning-0.0.1-SNAPSHOT.pom |    40 +
 .../maven-metadata-local.xml                  |    11 +
 .../0.0.1-SNAPSHOT/_remote.repositories       |     6 +
 .../0.0.1-SNAPSHOT/maven-metadata-local.xml   |    36 +
 .../oath-otp-0.0.1-SNAPSHOT-javadoc.jar       |   Bin 0 -> 68069 bytes
 .../oath-otp-0.0.1-SNAPSHOT-sources.jar       |   Bin 0 -> 13536 bytes
 .../oath-otp-0.0.1-SNAPSHOT.jar               |   Bin 0 -> 12279 bytes
 .../oath-otp-0.0.1-SNAPSHOT.pom               |    19 +
 .../oath/oath-otp/maven-metadata-local.xml    |    11 +
 .../0.0.1-SNAPSHOT/_remote.repositories       |     3 +
 .../0.0.1-SNAPSHOT/maven-metadata-local.xml   |    19 +
 .../oath-parent-0.0.1-SNAPSHOT.pom            |   182 +
 .../oath/oath-parent/maven-metadata-local.xml |    11 +
 .../otp/sample/otp_configuration.json         |    13 +
 .../integrations/otp/sequence_diagram.txt     |    31 +
 .../passport/PassportExternalAuthenticator.py |   631 +
 oxAuth/Server/integrations/passport/README.md |    10 +
 .../sample/passport_script_entry.ldif         |    16 +
 .../PasswordlessAuthentication.py             |   445 +
 .../integrations/passwordless/README.md       |     3 +
 .../integrations/passwordless/bundle.zip      |   Bin 0 -> 428691 bytes
 .../passwurd/PasswurdAuthentication.py        |   894 +
 oxAuth/Server/integrations/passwurd/README.md |    88 +
 .../integrations/passwurd/bundle-bak.zip      |   Bin 0 -> 474337 bytes
 .../Server/integrations/passwurd/bundle.zip   |   Bin 0 -> 447342 bytes
 .../oxauth/custom/i18n/oxauth.properties      |     9 +
 .../custom/pages/passwurd/enterPwd.xhtml      |    69 +
 .../pages/passwurd/login-template.xhtml       |    82 +
 .../oxauth/custom/pages/passwurd/login.xhtml  |   133 +
 .../custom/pages/passwurd/savePwd.xhtml       |    98 +
 .../passwurd/font-awesome-5.12.1.all.min.js   |     5 +
 .../custom/static/passwurd/logger_pwd.js      |    20 +
 .../custom/static/passwurd/logger_username.js |    21 +
 .../oxauth/custom/static/passwurd/style.css   |   210 +
 .../custom/static/passwurd/tachyons.min.css   |     3 +
 .../python/libs/passwurd-external_bioid.py    |   338 +
 .../python/libs/passwurd-external_fido2.py    |   250 +
 .../gluu/python/libs/passwurd-external_otp.py |   590 +
 .../libs/passwurd-external_super_gluu.py      |  1084 +
 oxAuth/Server/integrations/pingid/README.md   |     3 +
 oxAuth/Server/integrations/pingid/bundle.zip  |   Bin 0 -> 6591 bytes
 oxAuth/Server/integrations/pingid/flow.png    |   Bin 0 -> 73332 bytes
 .../integrations/pingid/oxauth-pingid-1.0.jar |   Bin 0 -> 14556 bytes
 .../pingid/pingIDAuthenticator.py             |   329 +
 oxAuth/Server/integrations/pingid/pom.xml     |    73 +
 .../org/gluu/oxauth/ping/HttpException.java   |    31 +
 .../gluu/oxauth/ping/PPMRequestBroker.java    |    66 +
 .../org/gluu/oxauth/ping/RequestToken.java    |    84 +
 .../gluu/oxauth/ping/ResponseTokenParser.java |    49 +
 .../oxauth/ping/TokenProcessingException.java |     9 +
 .../gluu/oxauth/ping/UserManagerBroker.java   |   166 +
 .../main/java/org/gluu/oxauth/ping/Utils.java |    96 +
 .../integrations/postauthn/postauthn.py       |    42 +
 .../Server/integrations/privacyidea/README.md |    36 +
 .../pages/auth/privacyidea/privacyidea.xhtml  |    98 +
 .../integrations/privacyidea/privacyidea.py   |   338 +
 .../Server/integrations/registration/read.txt |     6 +
 .../integrations/registration/register.py     |   182 +
 .../SamlPassportAuthenticator.py              |   827 +
 .../saml.alias.attribute/README.md            |    50 +
 .../saml.alias.attribute/idp_script.py        |   148 +
 .../Gluu Inbound SAML Design (no Session).png |   Bin 0 -> 52535 bytes
 .../Server/integrations/saml/INSTALLATION.txt |    33 +
 oxAuth/Server/integrations/saml/README.txt    |    69 +
 .../saml/SamlExternalAuthenticator.py         |   793 +
 .../saml2oidc_acr_router/README.md            |    14 +
 .../saml2oidc_acr_router.py                   |   122 +
 oxAuth/Server/integrations/smpp/smpp2FA.py    |   434 +
 oxAuth/Server/integrations/stytch/README.md   |   104 +
 .../stytch/stytchExternalAuthenticator.py     |   378 +
 .../SuperGluuExternalAuthenticator.py         |  1164 +
 .../1.0.1.gluu/gcm-server-1.0.1.gluu.jar      |   Bin 0 -> 28229 bytes
 .../1.0.1.gluu/gcm-server-1.0.1.gluu.jar.md5  |     1 +
 .../1.0.1.gluu/gcm-server-1.0.1.gluu.jar.sha1 |     1 +
 .../1.0.1.gluu/gcm-server-1.0.1.gluu.pom      |     8 +
 .../1.0.1.gluu/gcm-server-1.0.1.gluu.pom.md5  |     1 +
 .../1.0.1.gluu/gcm-server-1.0.1.gluu.pom.sha1 |     1 +
 .../google/gcm/gcm-server/maven-metadata.xml  |    12 +
 .../gcm/gcm-server/maven-metadata.xml.md5     |     1 +
 .../gcm/gcm-server/maven-metadata.xml.sha1    |     1 +
 .../super_gluu/sample/super_gluu_creds.json   |    45 +
 .../Server/integrations/twilio_sms/README.txt |     7 +
 .../integrations/twilio_sms/twilio2FA.py      |   254 +
 .../u2f/U2fExternalAuthenticator.py           |   214 +
 .../Server/integrations/uaf/Installation.md   |    48 +
 .../uaf/Properties description.md             |    20 +
 oxAuth/Server/integrations/uaf/Readme.md      |    51 +
 .../uaf/UafExternalAuthenticator.py           |   398 +
 ...af_integration_authentication_workflow.png |   Bin 0 -> 59443 bytes
 .../integrations/uaf/img/oob_qr_code.png      |   Bin 0 -> 77419 bytes
 .../uaf/img/typical_uaf_architecture.png      |   Bin 0 -> 11696 bytes
 .../uaf/img/uaf_device_integration_models.png |   Bin 0 -> 31811 bytes
 .../integrations/uaf/sequence_diagram.txt     |    25 +
 oxAuth/Server/integrations/whispeak/README.md |    73 +
 .../integrations/whispeak/whispeak_open_v1.py |  1326 +
 .../integrations/wwpass/INSTALLATION.md       |   244 +
 oxAuth/Server/integrations/wwpass/README.md   |    19 +
 .../wwpass/pages/auth/wwpass/checkemail.xhtml |   163 +
 .../wwpass/pages/auth/wwpass/wwpass.xhtml     |   285 +
 .../wwpass/pages/auth/wwpass/wwpassbind.xhtml |   329 +
 .../wwpass/static/js/wwpass-frontend.js       |  6097 ++++
 oxAuth/Server/integrations/wwpass/ticket.json |     9 +
 .../Server/integrations/wwpass/wwpass.ca.crt  |    35 +
 oxAuth/Server/integrations/wwpass/wwpass.py   |   235 +
 .../Server/integrations/wwpass/wwpassauth.py  |   289 +
 .../Server/integrations/yubicloud/README.txt  |    35 +
 .../YubicloudExternalAuthenticator.py         |   118 +
 oxAuth/Server/pom.xml                         |  1263 +
 oxAuth/Server/profiles/.gitignore             |     5 +
 .../profiles/default/client_keystore.pkcs12   |   Bin 0 -> 23345 bytes
 .../profiles/default/config-build.properties  |     7 +
 .../config-oxauth-test-data.properties        |    34 +
 .../default/config-oxauth-test.properties     |    19 +
 .../profiles/default/config-oxauth.properties |    17 +
 oxAuth/Server/src-remove/pages.xml            |    55 +
 .../src/main/docs/mustache/markdown.mustache  |   112 +
 .../oxauth/audit/ApplicationAuditLogger.java  |   205 +
 .../audit/debug/ServletLoggingFilter.java     |   143 +
 .../audit/debug/entity/HttpRequest.java       |    75 +
 .../audit/debug/entity/HttpResponse.java      |    27 +
 .../audit/debug/wrapper/RequestWrapper.java   |   148 +
 .../audit/debug/wrapper/ResponseWrapper.java  |    31 +
 .../oxauth/auth/AuthenticationFilter.java     |   534 +
 .../org/gluu/oxauth/auth/Authenticator.java   |   826 +
 .../org/gluu/oxauth/auth/MTLSService.java     |   138 +
 .../gluu/oxauth/auth/SelectAccountAction.java |   399 +
 .../authorize/ws/rs/AuthorizeAction.java      |   951 +
 .../ws/rs/AuthorizeRestWebService.java        |   194 +
 .../ws/rs/AuthorizeRestWebServiceImpl.java    |  1056 +
 .../rs/AuthorizeRestWebServiceValidator.java  |   315 +
 .../ws/rs/ConsentGathererService.java         |   320 +
 .../ws/rs/ConsentGatheringSessionService.java |   218 +
 .../ws/rs/DeviceAuthorizationAction.java      |   367 +
 .../rs/DeviceAuthorizationRestWebService.java |    48 +
 ...DeviceAuthorizationRestWebServiceImpl.java |   159 +
 .../oxauth/authorize/ws/rs/LoginAction.java   |    31 +
 .../oxauth/authorize/ws/rs/LogoutAction.java  |   302 +
 .../BackchannelAuthorizeRestWebService.java   |    46 +
 ...ackchannelAuthorizeRestWebServiceImpl.java |   349 +
 ...annelDeviceRegistrationRestWebService.java |    36 +
 ...lDeviceRegistrationRestWebServiceImpl.java |   118 +
 .../ws/rs/CIBAAuthorizeAction.java            |    89 +
 .../CIBAAuthorizeParamsValidatorService.java  |   143 +
 .../oxauth/ciba/CIBAConfigurationService.java |    58 +
 ...IBADeviceRegistrationValidatorService.java |    47 +
 .../ciba/CIBAEndUserNotificationService.java  |    99 +
 .../oxauth/ciba/CIBAPingCallbackService.java  |    44 +
 .../oxauth/ciba/CIBAPushErrorService.java     |    42 +
 .../ciba/CIBAPushTokenDeliveryService.java    |    45 +
 .../CIBARegisterClientMetadataService.java    |    47 +
 .../CIBARegisterClientResponseService.java    |    39 +
 .../CIBARegisterParamsValidatorService.java   |   126 +
 .../ws/rs/ClientInfoRestWebService.java       |    37 +
 .../ws/rs/ClientInfoRestWebServiceImpl.java   |   135 +
 .../oxauth/crypto/cert/CertificateParser.java |    56 +
 .../crypto/random/ChallengeGenerator.java     |    12 +
 .../random/RandomChallengeGenerator.java      |    25 +
 .../SHA256withECDSASignatureVerification.java |    85 +
 .../signature/SignatureVerification.java      |    26 +
 .../exception/GlobalExceptionHandler.java     |    72 +
 .../GlobalExceptionHandlerFactory.java        |    20 +
 .../InvalidSchemaUpdateException.java         |    28 +
 .../oxauth/exception/UncaughtException.java   |    66 +
 .../fido/u2f/BadConfigurationException.java   |    20 +
 .../fido/u2f/DeviceCompromisedException.java  |    30 +
 .../u2f/InvalidDeviceCounterException.java    |    18 +
 .../u2f/InvalidKeyHandleDeviceException.java  |    21 +
 .../fido/u2f/NoEligableDevicesException.java  |    37 +
 .../org/gluu/oxauth/filter/CorsFilter.java    |   168 +
 .../gluu/oxauth/filter/CorsFilterConfig.java  |   119 +
 .../gluu/ws/rs/GluuConfigurationWS.java       |   124 +
 ...ationFacesLocalizationConfigPopulator.java |    13 +
 .../oxauth/i18n/CustomResourceBundle.java     |    20 +
 .../org/gluu/oxauth/i18n/LanguageBean.java    |   175 +
 .../gluu/oxauth/idgen/ws/rs/IdGenService.java |    52 +
 .../oxauth/idgen/ws/rs/InumGenerator.java     |   154 +
 .../ws/rs/IntrospectionWebService.java        |   307 +
 .../oxauth/jwk/ws/rs/JwkRestWebService.java   |    49 +
 .../jwk/ws/rs/JwkRestWebServiceImpl.java      |    73 +
 .../gluu/oxauth/model/GluuOrganization.java   |   232 +
 .../org/gluu/oxauth/model/audit/Action.java   |    39 +
 .../oxauth/model/audit/OAuth2AuditLog.java    |    86 +
 .../oxauth/model/auth/AuthenticationMode.java |    32 +
 .../authorize/AuthorizeParamsValidator.java   |    85 +
 .../gluu/oxauth/model/authorize/Claim.java    |    37 +
 .../oxauth/model/authorize/ClaimValue.java    |   124 +
 .../model/authorize/ClaimValueType.java       |    18 +
 .../oxauth/model/authorize/IdTokenMember.java |    83 +
 .../authorize/JwtAuthorizationRequest.java    |   526 +
 .../oxauth/model/authorize/ScopeChecker.java  |    94 +
 .../model/authorize/UserInfoMember.java       |    68 +
 .../ClientInfoErrorResponseType.java          |    46 +
 .../clientinfo/ClientInfoParamsValidator.java |    25 +
 .../common/AbstractAuthorizationGrant.java    |   502 +
 .../oxauth/model/common/AbstractToken.java    |   291 +
 .../gluu/oxauth/model/common/AccessToken.java |    73 +
 .../model/common/AuthorizationCode.java       |    94 +
 .../model/common/AuthorizationCodeGrant.java  |    89 +
 .../model/common/AuthorizationGrant.java      |   480 +
 .../model/common/AuthorizationGrantList.java  |   369 +
 .../model/common/AuthorizationGrantType.java  |   113 +
 .../gluu/oxauth/model/common/CIBAGrant.java   |    65 +
 .../gluu/oxauth/model/common/CacheGrant.java  |   328 +
 .../model/common/CibaRequestCacheControl.java |   173 +
 .../model/common/CibaRequestStatus.java       |    42 +
 .../model/common/ClientCredentialsGrant.java  |    56 +
 .../oxauth/model/common/ClientTokens.java     |    52 +
 .../oxauth/model/common/DefaultScope.java     |    49 +
 .../DeviceAuthorizationCacheControl.java      |   133 +
 .../common/DeviceAuthorizationStatus.java     |    27 +
 .../oxauth/model/common/DeviceCodeGrant.java  |    54 +
 .../oxauth/model/common/ExecutionContext.java |   107 +
 .../model/common/IAuthorizationGrant.java     |   124 +
 .../model/common/IAuthorizationGrantList.java |    51 +
 .../org/gluu/oxauth/model/common/IdToken.java |    23 +
 .../oxauth/model/common/ImplicitGrant.java    |    76 +
 .../oxauth/model/common/RefreshToken.java     |    70 +
 ...ResourceOwnerPasswordCredentialsGrant.java |    56 +
 .../oxauth/model/common/SessionTokens.java    |    53 +
 .../common/SimpleAuthorizationGrant.java      |    13 +
 .../UnmodifiableAuthorizationGrant.java       |   263 +
 .../org/gluu/oxauth/model/config/Conf.java    |   109 +
 .../model/config/ConfigurationFactory.java    |   578 +
 .../gluu/oxauth/model/config/Constants.java   |    36 +
 .../model/config/WebKeysConfiguration.java    |    24 +
 ...OpenIdConnectDiscoveryParamsValidator.java |    17 +
 .../oxauth/model/error/ErrorMessageList.java  |    36 +
 .../oxauth/model/error/ErrorMessages.java     |   139 +
 .../model/error/ErrorResponseFactory.java     |   176 +
 .../oxauth/model/error/JsonErrorResponse.java |    83 +
 .../model/exception/AcrChangedException.java  |    40 +
 .../InvalidSessionStateException.java         |    21 +
 .../exception/InvalidStateException.java      |    21 +
 .../u2f/AuthenticateRequestMessageLdap.java   |    59 +
 .../model/fido/u2f/DeviceRegistration.java    |   327 +
 .../u2f/DeviceRegistrationConfiguration.java  |    53 +
 .../fido/u2f/DeviceRegistrationResult.java    |    50 +
 .../fido/u2f/RegisterRequestMessageLdap.java  |    59 +
 .../model/fido/u2f/RequestMessageLdap.java    |   134 +
 .../gluu/oxauth/model/ldap/CIBARequest.java   |   118 +
 .../model/ldap/ClientAuthorization.java       |   123 +
 .../gluu/oxauth/model/ldap/SchemaEntry.java   |    99 +
 .../oxauth/model/ldap/TokenAttributes.java    |    47 +
 .../org/gluu/oxauth/model/ldap/TokenLdap.java |   314 +
 .../org/gluu/oxauth/model/ldap/TokenType.java |    42 +
 .../org/gluu/oxauth/model/ldap/UserGroup.java |   100 +
 .../registration/RegisterParamsValidator.java |   451 +
 .../oxauth/model/session/SessionClient.java   |    47 +
 .../oxauth/model/token/ClientAssertion.java   |   146 +
 .../model/token/HandleTokenFactory.java       |    44 +
 .../oxauth/model/token/HttpAuthTokenType.java |    19 +
 .../oxauth/model/token/IdTokenFactory.java    |   364 +
 .../gluu/oxauth/model/token/JwrService.java   |   163 +
 .../gluu/oxauth/model/token/JwtSigner.java    |   112 +
 .../oxauth/model/token/PersistentJwt.java     |   316 +
 .../model/token/TokenParamsValidator.java     |    84 +
 .../token/ValidateTokenParamsValidator.java   |    26 +
 .../userinfo/UserInfoParamsValidator.java     |    25 +
 .../ws/rs/RegisterRestWebService.java         |   106 +
 .../ws/rs/RegisterRestWebServiceImpl.java     |  1092 +
 .../oxauth/revoke/RevokeRestWebService.java   |    46 +
 .../revoke/RevokeRestWebServiceImpl.java      |   152 +
 .../revoke/RevokeSessionRestWebService.java   |   113 +
 .../org/gluu/oxauth/security/Identity.java    |    59 +
 .../gluu/oxauth/service/AppInitializer.java   |   715 +
 .../gluu/oxauth/service/AttributeService.java |   114 +
 .../service/AuthenticationFilterService.java  |    76 +
 .../AuthenticationProtectionService.java      |    64 +
 .../oxauth/service/AuthenticationService.java |   868 +
 .../gluu/oxauth/service/AuthorizeService.java |   327 +
 .../oxauth/service/BaseAuthFilterService.java |   283 +
 .../org/gluu/oxauth/service/CleanerTimer.java |   230 +
 .../service/ClientAuthorizationsService.java  |   173 +
 .../oxauth/service/ClientFilterService.java   |    53 +
 .../gluu/oxauth/service/ClientService.java    |   355 +
 .../gluu/oxauth/service/CookieService.java    |   333 +
 .../CryptoProviderProviderFactory.java        |    48 +
 .../service/DeviceAuthorizationService.java   |   183 +
 .../oxauth/service/ErrorHandlerService.java   |    95 +
 .../org/gluu/oxauth/service/GrantService.java |   374 +
 .../oxauth/service/KeyGeneratorTimer.java     |   180 +
 ...tomAuthenticationConfigurationService.java |   112 +
 .../oxauth/service/LocalResponseCache.java    |    99 +
 .../gluu/oxauth/service/MetricService.java    |    93 +
 .../oxauth/service/OrganizationService.java   |    65 +
 .../service/OxAuthConfigurationService.java   |    65 +
 .../service/PairwiseIdentifierService.java    |   130 +
 .../oxauth/service/RedirectUriResponse.java   |    71 +
 .../oxauth/service/RedirectionUriService.java |   262 +
 .../service/RequestParameterService.java      |   281 +
 .../oxauth/service/ResteasyInitializer.java   |    14 +
 .../org/gluu/oxauth/service/ScopeService.java |   327 +
 .../service/SectorIdentifierService.java      |   150 +
 .../oxauth/service/ServerCryptoProvider.java  |    97 +
 .../gluu/oxauth/service/SessionIdService.java |  1028 +
 .../service/SpontaneousScopeService.java      |   121 +
 .../gluu/oxauth/service/UserGroupService.java |    91 +
 .../org/gluu/oxauth/service/UserService.java  |    90 +
 .../cdi/event/AuthConfigurationEvent.java     |     7 +
 .../service/cdi/event/ExpirationEvent.java    |     7 +
 .../service/cdi/event/KeyGenerationEvent.java |     7 +
 .../service/cdi/event/ReloadAuthScript.java   |    33 +
 .../oxauth/service/cdi/event/StatEvent.java   |     7 +
 .../service/ciba/CibaEncryptionService.java   |    82 +
 .../service/ciba/CibaRequestService.java      |   217 +
 .../ciba/CibaRequestsProcessorJob.java        |   179 +
 .../service/custom/CustomScriptService.java   |    45 +
 .../service/date/DateFormatterService.java    |    59 +
 .../gluu/oxauth/service/expiration/ExpId.java |    39 +
 .../oxauth/service/expiration/ExpType.java    |     8 +
 .../ExpirationNotificatorTimer.java           |   174 +
 .../ExternalApplicationSessionService.java    |   112 +
 .../ExternalAuthenticationService.java        |   561 +
 ...xternalCibaEndUserNotificationService.java |    60 +
 .../ExternalConsentGatheringService.java      |   136 +
 ...ernalDynamicClientRegistrationService.java |   127 +
 .../external/ExternalDynamicScopeService.java |   119 +
 .../external/ExternalEndSessionService.java   |    54 +
 .../external/ExternalIdGeneratorService.java  |    51 +
 .../ExternalIntrospectionService.java         |   101 +
 .../external/ExternalPostAuthnService.java    |    96 +
 ...sourceOwnerPasswordCredentialsService.java |    69 +
 .../external/ExternalRevokeTokenService.java  |    52 +
 .../ExternalSpontaneousScopeService.java      |    60 +
 .../ExternalUmaClaimsGatheringService.java    |   168 +
 .../external/ExternalUmaRptClaimsService.java |    61 +
 .../external/ExternalUmaRptPolicyService.java |   148 +
 .../external/ExternalUpdateTokenService.java  |   278 +
 .../context/ConsentGatheringContext.java      |   128 +
 .../DynamicClientRegistrationContext.java     |    56 +
 .../context/DynamicScopeExternalContext.java  |    68 +
 .../external/context/EndSessionContext.java   |    56 +
 ...xternalCibaEndUserNotificationContext.java |    63 +
 .../context/ExternalIntrospectionContext.java |    82 +
 .../context/ExternalPostAuthnContext.java     |    49 +
 ...sourceOwnerPasswordCredentialsContext.java |    67 +
 .../context/ExternalScriptContext.java        |   105 +
 .../context/ExternalUmaRptClaimsContext.java  |    56 +
 .../context/ExternalUpdateTokenContext.java   |   131 +
 .../external/context/RevokeTokenContext.java  |    54 +
 .../SpontaneousScopeExternalContext.java      |    57 +
 ...ternalDefaultPersonAuthenticationType.java |    59 +
 .../external/session/SessionEvent.java        |    66 +
 .../external/session/SessionEventType.java    |    11 +
 .../service/fido/u2f/ApplicationService.java  |    77 +
 .../fido/u2f/AuthenticationService.java       |   338 +
 .../fido/u2f/ClientDataValidationService.java |    80 +
 .../fido/u2f/DeviceRegistrationService.java   |   241 +
 .../fido/u2f/RawAuthenticationService.java    |    86 +
 .../fido/u2f/RawRegistrationService.java      |   111 +
 .../service/fido/u2f/RegistrationService.java |   225 +
 .../service/fido/u2f/RequestService.java      |    55 +
 .../fido/u2f/UserSessionIdService.java        |    88 +
 .../service/fido/u2f/ValidationService.java   |    88 +
 .../service/fido/u2f/util/KeyGenerator.java   |    65 +
 .../oxauth/service/logger/LoggerService.java  |    42 +
 .../gluu/oxauth/service/net/HttpService.java  |   285 +
 .../gluu/oxauth/service/net/HttpService2.java |    44 +
 .../oxauth/service/push/sns/PushPlatform.java |    25 +
 .../service/push/sns/PushSnsService.java      |   114 +
 .../gluu/oxauth/service/stat/StatService.java |   283 +
 .../gluu/oxauth/service/stat/StatTimer.java   |    96 +
 .../service/status/ldap/LdapStatusTimer.java  |   117 +
 .../oxauth/service/token/TokenService.java    |   120 +
 .../servlet/BcFirebaseMessagingSwServlet.java |    62 +
 .../oxauth/servlet/OpenIdConfiguration.java   |   480 +
 .../oxauth/servlet/OxAuthFaviconServlet.java  |    79 +
 .../oxauth/servlet/OxAuthLogoServlet.java     |    78 +
 .../gluu/oxauth/servlet/SectorIdentifier.java |    82 +
 .../org/gluu/oxauth/servlet/WebFinger.java    |   135 +
 .../CheckSessionStatusRestWebServiceImpl.java |   116 +
 .../ws/rs/EndSessionRestWebService.java       |    41 +
 .../ws/rs/EndSessionRestWebServiceImpl.java   |   614 +
 .../oxauth/session/ws/rs/EndSessionUtils.java |   107 +
 .../session/ws/rs/LogoutTokenFactory.java     |    88 +
 .../token/ws/rs/TokenRestWebService.java      |    71 +
 .../token/ws/rs/TokenRestWebServiceImpl.java  |   752 +
 .../gluu/oxauth/uma/authorization/Claims.java |    74 +
 .../IPolicyExternalAuthorization.java         |    17 +
 .../PolicyExternalAuthorizationEnum.java      |    27 +
 .../UmaAuthorizationContext.java              |   220 +
 .../UmaAuthorizationContextBuilder.java       |    72 +
 .../uma/authorization/UmaGatherContext.java   |   205 +
 .../gluu/oxauth/uma/authorization/UmaPCT.java |    86 +
 .../gluu/oxauth/uma/authorization/UmaRPT.java |    99 +
 .../uma/authorization/UmaScriptByScope.java   |    46 +
 .../uma/authorization/UmaWebException.java    |    63 +
 .../uma/service/RedirectParameters.java       |    65 +
 .../uma/service/UmaExpressionService.java     |   173 +
 .../gluu/oxauth/uma/service/UmaGatherer.java  |   263 +
 .../uma/service/UmaNeedsInfoService.java      |   148 +
 .../oxauth/uma/service/UmaPctService.java     |   195 +
 .../uma/service/UmaPermissionService.java     |   188 +
 .../uma/service/UmaResourceService.java       |   208 +
 .../oxauth/uma/service/UmaRptService.java     |   317 +
 .../oxauth/uma/service/UmaScopeService.java   |   228 +
 .../oxauth/uma/service/UmaSessionService.java |   225 +
 .../oxauth/uma/service/UmaTokenService.java   |   150 +
 .../uma/service/UmaValidationService.java     |   493 +
 .../gluu/oxauth/uma/ws/rs/UmaGatheringWS.java |   182 +
 .../gluu/oxauth/uma/ws/rs/UmaMetadataWS.java  |    89 +
 .../ws/rs/UmaPermissionRegistrationWS.java    |   117 +
 .../uma/ws/rs/UmaResourceRegistrationWS.java  |   345 +
 .../uma/ws/rs/UmaRptIntrospectionWS.java      |   196 +
 .../gluu/oxauth/uma/ws/rs/UmaScopeIconWS.java |    60 +
 .../org/gluu/oxauth/uma/ws/rs/UmaScopeWS.java |    64 +
 .../ws/rs/UserInfoRestWebService.java         |    41 +
 .../ws/rs/UserInfoRestWebServiceImpl.java     |   435 +
 .../java/org/gluu/oxauth/util/CertUtil.java   |    72 +
 .../gluu/oxauth/util/PasswordValidator.java   |    71 +
 .../gluu/oxauth/util/QueryStringDecoder.java  |    66 +
 .../org/gluu/oxauth/util/RedirectUtil.java    |    72 +
 .../java/org/gluu/oxauth/util/ServerUtil.java |   299 +
 .../org/gluu/oxauth/util/TokenHashUtil.java   |    32 +
 .../rs/controller/HealthCheckController.java  |    52 +
 .../ws/rs/fido/u2f/U2fAuthenticationWS.java   |   210 +
 .../ws/rs/fido/u2f/U2fConfigurationWS.java    |    72 +
 .../ws/rs/fido/u2f/U2fRegistrationWS.java     |   247 +
 .../gluu/oxauth/ws/rs/stat/StatResponse.java  |    35 +
 .../oxauth/ws/rs/stat/StatResponseItem.java   |    43 +
 .../org/gluu/oxauth/ws/rs/stat/StatWS.java    |   340 +
 .../src/main/resources/META-INF/beans.xml     |     7 +
 .../META-INF/navigation/cas2.navigation.xml   |    41 +
 .../META-INF/navigation/cert.navigation.xml   |    53 +
 .../META-INF/navigation/duo.navigation.xml    |    24 +
 .../META-INF/navigation/gplus.navigation.xml  |    41 +
 .../META-INF/navigation/otp.navigation.xml    |    42 +
 .../META-INF/navigation/oxpush.navigation.xml |    58 +
 .../navigation/passport.navigation.xml        |    47 +
 .../META-INF/navigation/saml.navigation.xml   |    41 +
 .../navigation/super-gluu.navigation.xml      |    24 +
 .../META-INF/navigation/u2f.navigation.xml    |    24 +
 .../META-INF/navigation/uaf.navigation.xml    |    24 +
 .../navigation/uma2.sample.navigation.xml     |    40 +
 ...lication.ApplicationConfigurationPopulator |     1 +
 oxAuth/Server/src/main/resources/ehcache.xml  |   141 +
 .../src/main/resources/faces-config.xml       |     7 +
 oxAuth/Server/src/main/resources/log4j2.xml   |   174 +
 .../src/main/resources/oxauth.properties      |   410 +
 .../src/main/resources/oxauth_bg.properties   |   204 +
 .../src/main/resources/oxauth_de.properties   |   210 +
 .../src/main/resources/oxauth_en.properties   |   341 +
 .../src/main/resources/oxauth_es.properties   |   153 +
 .../src/main/resources/oxauth_fr.properties   |   270 +
 .../src/main/resources/oxauth_it.properties   |   204 +
 .../src/main/resources/oxauth_ru.properties   |   227 +
 .../src/main/resources/oxauth_tr.properties   |   206 +
 .../src/main/resources/quartz.properties      |     4 +
 .../resources/validation_messages.properties  |   131 +
 .../main/webapp-jetty/WEB-INF/jetty-env.xml   |    21 +
 .../src/main/webapp-jetty/WEB-INF/web.xml     |   101 +
 .../main/webapp-tomcat/META-INF/context.xml   |    18 +
 .../src/main/webapp/META-INF/MANIFEST.MF      |     3 +
 .../src/main/webapp/WEB-INF/faces-config.xml  |    23 +
 .../webapp/WEB-INF/firebase-messaging-sw.js   |    51 +
 .../layout/authorize-extended-template.xhtml  |   132 +
 .../incl/layout/authorize-template.xhtml      |    54 +
 .../WEB-INF/incl/layout/bioid-template.xhtml  |    25 +
 .../ciba-authorize-extended-template.xhtml    |   102 +
 .../incl/layout/ciba-authorize-template.xhtml |    55 +
 .../incl/layout/login-extended-template.xhtml |   133 +
 .../WEB-INF/incl/layout/login-template.xhtml  |   301 +
 .../webapp/WEB-INF/incl/layout/template.xhtml |    48 +
 .../incl/layout/whispeak-open-template.xhtml  |    37 +
 .../main/webapp/WEB-INF/static/favicon.ico    |   Bin 0 -> 19608 bytes
 .../src/main/webapp/WEB-INF/static/logo.png   |   Bin 0 -> 3544 bytes
 .../src/main/webapp/auth/bioid/bioid.xhtml    |  1045 +
 .../src/main/webapp/auth/bioid/css/uui.css    |   764 +
 .../main/webapp/auth/bioid/images/back.svg    |     3 +
 .../main/webapp/auth/bioid/images/logo.svg    |     1 +
 .../main/webapp/auth/bioid/images/perfect.png |   Bin 0 -> 48739 bytes
 .../webapp/auth/bioid/images/tooclose.png     |   Bin 0 -> 49740 bytes
 .../webapp/auth/bioid/images/toofaraway.png   |   Bin 0 -> 47230 bytes
 .../main/webapp/auth/bioid/js/bws.capture.js  |   596 +
 .../main/webapp/auth/bioid/js/getUserMedia.js |    29 +
 .../webapp/auth/bioid/js/getUserMedia.min.js  |     1 +
 .../webapp/auth/bioid/js/jquery-3.5.1.min.js  |     2 +
 .../main/webapp/auth/bioid/js/objLoader.js    |   791 +
 .../webapp/auth/bioid/js/objLoader.min.js     |     1 +
 .../main/webapp/auth/bioid/js/three.min.js    |   927 +
 .../src/main/webapp/auth/bioid/js/uui.js      |   772 +
 .../main/webapp/auth/bioid/language/de.json   |    53 +
 .../main/webapp/auth/bioid/language/en.json   |    53 +
 .../src/main/webapp/auth/bioid/model/head.obj |  9857 +++++++
 .../webapp/auth/bioid/video/nodyourhead.mp4   |   Bin 0 -> 2025294 bytes
 .../src/main/webapp/auth/cas2/cas2login.xhtml |    10 +
 .../main/webapp/auth/cas2/cas2postlogin.xhtml |    90 +
 .../main/webapp/auth/cert/cert-invalid.xhtml  |   108 +
 .../main/webapp/auth/cert/cert-login.xhtml    |    13 +
 .../webapp/auth/cert/cert-not-selected.xhtml  |   110 +
 .../src/main/webapp/auth/cert/login.xhtml     |   150 +
 .../webapp/auth/compromised/complogin.xhtml   |    87 +
 .../webapp/auth/compromised/newpassword.xhtml |   117 +
 .../src/main/webapp/auth/deduce/loginD.xhtml  |   144 +
 .../src/main/webapp/auth/duo/duologin.xhtml   |    61 +
 .../main/webapp/auth/duo/js/Duo-Web-v2.min.js |     1 +
 .../webapp/auth/email_auth/entertoken.xhtml   |    92 +
 .../src/main/webapp/auth/fido2/js/base64js.js |     1 +
 .../main/webapp/auth/fido2/js/base64url.js    |    64 +
 .../src/main/webapp/auth/fido2/js/webauthn.js |   169 +
 .../src/main/webapp/auth/fido2/login.xhtml    |   195 +
 .../src/main/webapp/auth/fido2/platform.xhtml |   214 +
 .../src/main/webapp/auth/fido2/secKeys.xhtml  |   209 +
 .../src/main/webapp/auth/fido2/step1.xhtml    |   198 +
 .../auth/forgot_password/entertoken.xhtml     |    71 +
 .../webapp/auth/forgot_password/forgot.xhtml  |    95 +
 .../auth/forgot_password/newpassword.xhtml    |    72 +
 .../main/webapp/auth/gplus/gpluslogin.xhtml   |   202 +
 .../webapp/auth/gplus/gpluspostlogin.xhtml    |    90 +
 .../webapp/auth/idfirst/alter_login.xhtml     |   156 +
 .../webapp/auth/idfirst/idfirst_login.xhtml   |    89 +
 .../webapp/auth/inwebo/iwauthenticate.xhtml   |    78 +
 .../src/main/webapp/auth/inwebo/iwlogin.xhtml |   132 +
 .../main/webapp/auth/oneid/oneidlogin.xhtml   |    79 +
 .../webapp/auth/oneid/oneidpostlogin.xhtml    |    91 +
 .../src/main/webapp/auth/otp/enroll.xhtml     |   131 +
 .../src/main/webapp/auth/otp/otplogin.xhtml   |    75 +
 .../main/webapp/auth/otp_sms/otp_sms.xhtml    |   152 +
 .../webapp/auth/oxpush/oxauthenticate.xhtml   |    83 +
 .../src/main/webapp/auth/oxpush/oxlogin.xhtml |   122 +
 .../src/main/webapp/auth/oxpush/oxpair.xhtml  |    95 +
 .../main/webapp/auth/passport/img/apple.png   |   Bin 0 -> 8171 bytes
 .../main/webapp/auth/passport/img/dropbox.png |   Bin 0 -> 1678 bytes
 .../webapp/auth/passport/img/facebook.png     |   Bin 0 -> 4822 bytes
 .../main/webapp/auth/passport/img/github.png  |   Bin 0 -> 29968 bytes
 .../main/webapp/auth/passport/img/google.png  |   Bin 0 -> 105019 bytes
 .../webapp/auth/passport/img/linkedin.png     |   Bin 0 -> 33375 bytes
 .../auth/passport/img/openidconnect.png       |   Bin 0 -> 1670 bytes
 .../main/webapp/auth/passport/img/tumblr.png  |   Bin 0 -> 5048 bytes
 .../main/webapp/auth/passport/img/twitter.png |   Bin 0 -> 41673 bytes
 .../webapp/auth/passport/img/windowslive.png  |   Bin 0 -> 1096 bytes
 .../webapp/auth/passport/passportlogin.xhtml  |   344 +
 .../auth/passport/passportpostlogin.xhtml     |    66 +
 .../auth/passport/sample-redirector.xhtml     |    22 +
 .../webapp/auth/phonefactor/pflogin.xhtml     |    81 +
 .../main/webapp/auth/pwd/newpassword.xhtml    |    58 +
 .../main/webapp/auth/recaptcha/login.xhtml    |   187 +
 .../main/webapp/auth/register/register.xhtml  |    99 +
 .../src/main/webapp/auth/saml/samllogin.xhtml |    10 +
 .../main/webapp/auth/saml/samlpostlogin.xhtml |    90 +
 .../main/webapp/auth/super-gluu/login.xhtml   |   273 +
 .../main/webapp/auth/thumbsignin/README.md    |     3 +
 .../webapp/auth/thumbsignin/expired.xhtml     |    96 +
 .../thumbsignin/js/authenticate-bundle.js     | 23973 ++++++++++++++++
 .../auth/thumbsignin/js/thumbsign_widget.js   |  1076 +
 .../thumbsignin/js/thumbsignin_widget.css     |   410 +
 .../webapp/auth/thumbsignin/tsLogin.xhtml     |   374 +
 .../webapp/auth/thumbsignin/tsRegister.xhtml  |   241 +
 .../thumbsignin/tsRegistrationSuccess.xhtml   |   332 +
 .../webapp/auth/toopher/tpauthenticate.xhtml  |    83 +
 .../src/main/webapp/auth/toopher/tppair.xhtml |    98 +
 .../src/main/webapp/auth/u2f/login.xhtml      |   168 +
 .../main/webapp/auth/u2f/scripts/u2f-api.js   |   830 +
 .../src/main/webapp/auth/uaf/js/uaf-api.js    |   146 +
 .../src/main/webapp/auth/uaf/login.xhtml      |   154 +
 .../whispeak/whispeak_open_ask_enroll.xhtml   |    91 +
 .../whispeak_open_authentication_submit.xhtml |   183 +
 .../whispeak_open_enrollment_submit.xhtml     |   170 +
 .../whispeak_open_identification.xhtml        |   113 +
 .../whispeak/whispeak_open_passport.xhtml     |   102 +
 .../whispeak_open_passport_fallback.xhtml     |   101 +
 .../whispeak_open_passport_loading.xhtml      |    13 +
 .../whispeak_open_revocation_data_show.xhtml  |    74 +
 .../main/webapp/auth/wikid/wikidlogin.xhtml   |   116 +
 .../webapp/auth/wikid/wikidregister.xhtml     |   116 +
 oxAuth/Server/src/main/webapp/authorize.xhtml |    59 +
 .../src/main/webapp/authz/authorize.xhtml     |    25 +
 .../src/main/webapp/authz/transaction.xhtml   |    25 +
 .../src/main/webapp/casa/bioid-template.xhtml |    75 +
 .../Server/src/main/webapp/casa/bioid.xhtml   |  1045 +
 oxAuth/Server/src/main/webapp/casa/casa.xhtml |   128 +
 oxAuth/Server/src/main/webapp/casa/cert.xhtml |    13 +
 .../src/main/webapp/casa/duologin.xhtml       |    70 +
 .../Server/src/main/webapp/casa/fido2.xhtml   |   122 +
 .../main/webapp/casa/fullwidth-template.xhtml |    75 +
 .../src/main/webapp/casa/login-template.xhtml |    90 +
 .../Server/src/main/webapp/casa/login.xhtml   |    95 +
 oxAuth/Server/src/main/webapp/casa/otp.xhtml  |    45 +
 .../src/main/webapp/casa/otp_email.xhtml      |    44 +
 .../main/webapp/casa/otp_email_prompt.xhtml   |    67 +
 .../Server/src/main/webapp/casa/otp_sms.xhtml |    44 +
 .../src/main/webapp/casa/otp_sms_prompt.xhtml |    66 +
 oxAuth/Server/src/main/webapp/casa/sg.xhtml   |   107 +
 oxAuth/Server/src/main/webapp/casa/u2f.xhtml  |    57 +
 .../main/webapp/ciba/authorizeResponse.xhtml  |    56 +
 oxAuth/Server/src/main/webapp/ciba/home.xhtml |   342 +
 oxAuth/Server/src/main/webapp/ciba/index.jsp  |     1 +
 .../Server/src/main/webapp/ciba/manifest.json |     7 +
 .../main/webapp/device_authorization.xhtml    |   137 +
 oxAuth/Server/src/main/webapp/error.xhtml     |    65 +
 .../src/main/webapp/error_service.xhtml       |    29 +
 .../src/main/webapp/error_session.xhtml       |    38 +
 .../src/main/webapp/fonts/FontAwesome.otf     |   Bin 0 -> 134808 bytes
 .../main/webapp/fonts/fontawesome-webfont.eot |   Bin 0 -> 165742 bytes
 .../main/webapp/fonts/fontawesome-webfont.svg |  2671 ++
 .../main/webapp/fonts/fontawesome-webfont.ttf |   Bin 0 -> 165548 bytes
 .../webapp/fonts/fontawesome-webfont.woff     |   Bin 0 -> 98024 bytes
 .../webapp/fonts/fontawesome-webfont.woff2    |   Bin 0 -> 77160 bytes
 .../Server/src/main/webapp/img/IcoArrow.svg   |     4 +
 .../src/main/webapp/img/IcoArrowRed.svg       |     4 +
 oxAuth/Server/src/main/webapp/img/IcoCopy.png |   Bin 0 -> 381 bytes
 oxAuth/Server/src/main/webapp/img/IcoMic.svg  |     4 +
 oxAuth/Server/src/main/webapp/img/IcoPlay.svg |     4 +
 .../Server/src/main/webapp/img/IcoRetry.svg   |     4 +
 oxAuth/Server/src/main/webapp/img/IcoStop.svg |     4 +
 .../main/webapp/img/Logo_Whispeak_color.svg   |     1 +
 oxAuth/Server/src/main/webapp/img/android.png |   Bin 0 -> 3478 bytes
 .../Server/src/main/webapp/img/android1.png   |   Bin 0 -> 3396 bytes
 .../src/main/webapp/img/background_wave.svg   |     1 +
 .../Server/src/main/webapp/img/buttons_bg.jpg |   Bin 0 -> 14804 bytes
 oxAuth/Server/src/main/webapp/img/close.png   |   Bin 0 -> 322 bytes
 .../Server/src/main/webapp/img/email-ver.png  |   Bin 0 -> 41595 bytes
 oxAuth/Server/src/main/webapp/img/eye.png     |   Bin 0 -> 632 bytes
 .../main/webapp/img/favicon_icosahedron.ico   |   Bin 0 -> 19608 bytes
 .../Server/src/main/webapp/img/footer_bg.jpg  |   Bin 0 -> 13094 bytes
 .../Server/src/main/webapp/img/glu_icon.png   |   Bin 0 -> 7578 bytes
 oxAuth/Server/src/main/webapp/img/ios.png     |   Bin 0 -> 3137 bytes
 oxAuth/Server/src/main/webapp/img/iphone.png  |   Bin 0 -> 3021 bytes
 oxAuth/Server/src/main/webapp/img/logo.png    |   Bin 0 -> 3544 bytes
 .../Server/src/main/webapp/img/logo_white.png |   Bin 0 -> 2570 bytes
 .../src/main/webapp/img/panel_header_bg.png   |   Bin 0 -> 197 bytes
 .../Server/src/main/webapp/img/phone-ver.png  |   Bin 0 -> 7697 bytes
 oxAuth/Server/src/main/webapp/img/qr_code.png |   Bin 0 -> 122696 bytes
 .../src/main/webapp/img/securitykey.jpg       |   Bin 0 -> 51755 bytes
 oxAuth/Server/src/main/webapp/img/sg.png      |   Bin 0 -> 33658 bytes
 .../Server/src/main/webapp/img/step_ver.png   |   Bin 0 -> 19123 bytes
 .../src/main/webapp/img/step_ver_touchid.png  |   Bin 0 -> 22055 bytes
 oxAuth/Server/src/main/webapp/img/touchid.png |   Bin 0 -> 36023 bytes
 oxAuth/Server/src/main/webapp/img/tube_1.jpg  |   Bin 0 -> 8307 bytes
 .../Server/src/main/webapp/img/ver_code.png   |   Bin 0 -> 15871 bytes
 .../Server/src/main/webapp/img/ver_code_1.png |   Bin 0 -> 10131 bytes
 oxAuth/Server/src/main/webapp/index.jsp       |     1 +
 .../main/webapp/js/bootstrap.bundle.min.js    |     7 +
 .../src/main/webapp/js/bootstrap.min.js       |     7 +
 .../webapp/js/crypto-js-4.1.1/CONTRIBUTING.md |    28 +
 .../main/webapp/js/crypto-js-4.1.1/LICENSE    |    24 +
 .../main/webapp/js/crypto-js-4.1.1/README.md  |   261 +
 .../src/main/webapp/js/crypto-js-4.1.1/aes.js |   234 +
 .../main/webapp/js/crypto-js-4.1.1/bower.json |    39 +
 .../webapp/js/crypto-js-4.1.1/cipher-core.js  |   890 +
 .../main/webapp/js/crypto-js-4.1.1/core.js    |   807 +
 .../webapp/js/crypto-js-4.1.1/crypto-js.js    |  6191 ++++
 .../crypto-js-4.1.1/docs/QuickStartGuide.wiki |   470 +
 .../webapp/js/crypto-js-4.1.1/enc-base64.js   |   136 +
 .../js/crypto-js-4.1.1/enc-base64url.js       |   140 +
 .../main/webapp/js/crypto-js-4.1.1/enc-hex.js |    18 +
 .../webapp/js/crypto-js-4.1.1/enc-latin1.js   |    18 +
 .../webapp/js/crypto-js-4.1.1/enc-utf16.js    |   149 +
 .../webapp/js/crypto-js-4.1.1/enc-utf8.js     |    18 +
 .../main/webapp/js/crypto-js-4.1.1/evpkdf.js  |   134 +
 .../webapp/js/crypto-js-4.1.1/format-hex.js   |    66 +
 .../js/crypto-js-4.1.1/format-openssl.js      |    18 +
 .../webapp/js/crypto-js-4.1.1/hmac-md5.js     |    18 +
 .../js/crypto-js-4.1.1/hmac-ripemd160.js      |    18 +
 .../webapp/js/crypto-js-4.1.1/hmac-sha1.js    |    18 +
 .../webapp/js/crypto-js-4.1.1/hmac-sha224.js  |    18 +
 .../webapp/js/crypto-js-4.1.1/hmac-sha256.js  |    18 +
 .../webapp/js/crypto-js-4.1.1/hmac-sha3.js    |    18 +
 .../webapp/js/crypto-js-4.1.1/hmac-sha384.js  |    18 +
 .../webapp/js/crypto-js-4.1.1/hmac-sha512.js  |    18 +
 .../main/webapp/js/crypto-js-4.1.1/hmac.js    |   143 +
 .../main/webapp/js/crypto-js-4.1.1/index.js   |    18 +
 .../js/crypto-js-4.1.1/lib-typedarrays.js     |    76 +
 .../src/main/webapp/js/crypto-js-4.1.1/md5.js |   268 +
 .../webapp/js/crypto-js-4.1.1/mode-cfb.js     |    80 +
 .../js/crypto-js-4.1.1/mode-ctr-gladman.js    |   116 +
 .../webapp/js/crypto-js-4.1.1/mode-ctr.js     |    58 +
 .../webapp/js/crypto-js-4.1.1/mode-ecb.js     |    40 +
 .../webapp/js/crypto-js-4.1.1/mode-ofb.js     |    54 +
 .../webapp/js/crypto-js-4.1.1/package.json    |    42 +
 .../webapp/js/crypto-js-4.1.1/pad-ansix923.js |    49 +
 .../webapp/js/crypto-js-4.1.1/pad-iso10126.js |    44 +
 .../webapp/js/crypto-js-4.1.1/pad-iso97971.js |    40 +
 .../js/crypto-js-4.1.1/pad-nopadding.js       |    30 +
 .../webapp/js/crypto-js-4.1.1/pad-pkcs7.js    |    18 +
 .../js/crypto-js-4.1.1/pad-zeropadding.js     |    47 +
 .../main/webapp/js/crypto-js-4.1.1/pbkdf2.js  |   145 +
 .../js/crypto-js-4.1.1/rabbit-legacy.js       |   190 +
 .../main/webapp/js/crypto-js-4.1.1/rabbit.js  |   192 +
 .../src/main/webapp/js/crypto-js-4.1.1/rc4.js |   139 +
 .../webapp/js/crypto-js-4.1.1/ripemd160.js    |   267 +
 .../main/webapp/js/crypto-js-4.1.1/sha1.js    |   150 +
 .../main/webapp/js/crypto-js-4.1.1/sha224.js  |    80 +
 .../main/webapp/js/crypto-js-4.1.1/sha256.js  |   199 +
 .../main/webapp/js/crypto-js-4.1.1/sha3.js    |   326 +
 .../main/webapp/js/crypto-js-4.1.1/sha384.js  |    83 +
 .../main/webapp/js/crypto-js-4.1.1/sha512.js  |   326 +
 .../webapp/js/crypto-js-4.1.1/tripledes.js    |   779 +
 .../webapp/js/crypto-js-4.1.1/x64-core.js     |   304 +
 .../src/main/webapp/js/fontawesome.min.js     |     5 +
 oxAuth/Server/src/main/webapp/js/gluu-auth.js |   201 +
 .../src/main/webapp/js/jquery-3.6.0.min.js    |     2 +
 .../webapp/js/jquery-qrcode-0.17.0.min.js     |     2 +
 .../src/main/webapp/js/jquery-ui.min.js       |     6 +
 oxAuth/Server/src/main/webapp/js/passport.js  |    33 +
 oxAuth/Server/src/main/webapp/js/platform.js  |    14 +
 .../Server/src/main/webapp/js/popper.min.js   |     5 +
 .../src/main/webapp/js/recorder_3buttons.js   |   623 +
 .../Server/src/main/webapp/js/respond.min.js  |     5 +
 .../Server/src/main/webapp/js/revocation.js   |    32 +
 oxAuth/Server/src/main/webapp/login.xhtml     |   174 +
 oxAuth/Server/src/main/webapp/logout.xhtml    |    17 +
 oxAuth/Server/src/main/webapp/opiframe.xhtml  |    49 +
 .../webapp/passwordless/alternative.xhtml     |   128 +
 .../webapp/passwordless/bioid-template.xhtml  |    68 +
 .../src/main/webapp/passwordless/bioid.xhtml  |  1043 +
 .../src/main/webapp/passwordless/fido2.xhtml  |    99 +
 .../webapp/passwordless/login-template.xhtml  |    82 +
 .../src/main/webapp/passwordless/login.xhtml  |   132 +
 .../src/main/webapp/passwordless/sg.xhtml     |   107 +
 oxAuth/Server/src/main/webapp/postlogin.xhtml |    13 +
 .../src/main/webapp/selectAccount.xhtml       |    99 +
 .../src/main/webapp/stylesheet/authorize.css  |   226 +
 .../webapp/stylesheet/bootstrap-grid.min.css  |     6 +
 .../stylesheet/bootstrap-reboot.min.css       |     6 +
 .../stylesheet/bootstrap-responsive.css       |  1109 +
 .../src/main/webapp/stylesheet/bootstrap.css  | 12068 ++++++++
 .../main/webapp/stylesheet/bootstrap.min.css  |     6 +
 .../src/main/webapp/stylesheet/ciba.css       |    38 +
 .../main/webapp/stylesheet/font-awesome.css   |  2337 ++
 .../webapp/stylesheet/fontawesome.min.css     |     5 +
 .../main/webapp/stylesheet/form_window.css    |   630 +
 .../main/webapp/stylesheet/jquery-ui.min.css  |     7 +
 .../stylesheet/jquery-ui.structure.min.css    |     5 +
 .../webapp/stylesheet/jquery-ui.theme.min.css |     5 +
 .../webapp/stylesheet/recorder_3buttons.css   |   345 +
 .../webapp/stylesheet/responsive-media.css    |    49 +
 .../src/main/webapp/stylesheet/site.css       |    46 +
 .../src/main/webapp/stylesheet/style.css      |   710 +
 .../src/main/webapp/stylesheet/theme.css      |   841 +
 .../src/main/webapp/stylesheet/theme.xcss     |    83 +
 .../src/main/webapp/uma2/sample/city.xhtml    |    31 +
 .../webapp/uma2/sample/claims_resolved.xhtml  |    28 +
 .../src/main/webapp/uma2/sample/country.xhtml |    31 +
 .../org/gluu/oxauth/BaseComponentTest.java    |    26 +
 .../test/java/org/gluu/oxauth/BaseTest.java   |    56 +
 .../org/gluu/oxauth/ConfigurableTest.java     |   146 +
 .../gluu/oxauth/OxAuthUnitTestsListener.java  |    78 +
 .../AuthorizeRestWebServiceValidatorTest.java |   121 +
 .../gluu/oxauth/comp/CleanUpClientTest.java   |    70 +
 .../gluu/oxauth/comp/CleanerTimerTest.java    |   444 +
 .../gluu/oxauth/comp/ConfigurationTest.java   |    95 +
 .../gluu/oxauth/comp/CrossEncryptionTest.java |   493 +
 .../gluu/oxauth/comp/CryptoProviderTest.java  |   457 +
 .../org/gluu/oxauth/comp/EncryptionTest.java  |   353 +
 .../gluu/oxauth/comp/GrantServiceTest.java    |    69 +
 .../gluu/oxauth/comp/IdGenServiceTest.java    |   105 +
 .../gluu/oxauth/comp/InumGeneratorTest.java   |    34 +
 .../gluu/oxauth/comp/JwtCrossCheckTest.java   |   194 +
 .../gluu/oxauth/comp/KeyGenerationTest.java   |    33 +
 .../java/org/gluu/oxauth/comp/LocaleTest.java |    76 +
 .../oxauth/comp/SessionIdServiceTest.java     |   103 +
 .../org/gluu/oxauth/comp/SignatureTest.java   |   176 +
 .../oxauth/comp/UmaResourceServiceTest.java   |   100 +
 .../gluu/oxauth/comp/UtilityMethodsTest.java  |    26 +
 .../org/gluu/oxauth/dev/CacheGrantManual.java |   168 +
 .../gluu/oxauth/dev/ConfSerialization.java    |   104 +
 .../test/java/org/gluu/oxauth/dev/Manual.java |    60 +
 .../java/org/gluu/oxauth/dev/TestUUID.java    |    42 +
 .../oxauth/dev/duo/PythonToLdapString.java    |   102 +
 .../gluu/ws/rs/GluuConfigurationWSTest.java   |    58 +
 .../oxauth/json/JsonApplierServerTest.java    |    41 +
 .../org/gluu/oxauth/model/CIBAGrantTest.java  |   120 +
 .../org/gluu/oxauth/model/TClientService.java |    40 +
 .../gluu/oxauth/model/WebServiceFactory.java  |    31 +
 .../JwtAuthorizationRequestTest.java          |    77 +
 .../RegisterParamsValidatorTest.java          |    55 +
 .../gluu/oxauth/model/uma/TConfiguration.java |    71 +
 .../oxauth/model/uma/TRegisterPermission.java |    76 +
 .../oxauth/model/uma/TRegisterResource.java   |   182 +
 .../gluu/oxauth/model/uma/TTokenRequest.java  |   352 +
 .../java/org/gluu/oxauth/model/uma/TUma.java  |   101 +
 .../service/DateFormatterServiceTest.java     |    84 +
 .../service/RedirectionUriServiceTest.java    |    25 +
 .../gluu/oxauth/service/ScopeServiceTest.java |   274 +
 .../service/TestResteasyInitializer.java      |    64 +
 .../u2f/RawAuthenticationServiceTest.java     |    32 +
 .../u2f/RawAuthenticationServiceUnitTest.java |   165 +
 .../fido/u2f/RawRegistrationServiceTest.java  |    51 +
 .../servlet/OpenIdConfigurationTest.java      |    46 +
 .../rs/EndSessionRestWebServiceImplTest.java  |   196 +
 .../rs/AccessProtectedResourceFlowWSTest.java |   156 +
 .../oxauth/uma/ws/rs/ObtainPatWSTest.java     |    47 +
 .../oxauth/uma/ws/rs/ObtainRptWSTest.java     |    41 +
 .../uma/ws/rs/RegisterPermissionWSTest.java   |   128 +
 .../uma/ws/rs/UmaConfigurationWSTest.java     |    35 +
 .../uma/ws/rs/UmaRegisterResourceWSTest.java  |    87 +
 .../gluu/oxauth/uma/ws/rs/UmaScopeWSTest.java |    64 +
 .../org/gluu/oxauth/util/Deployments.java     |    52 +
 .../org/gluu/oxauth/util/ServerUtilTest.java  |    34 +
 ...pplicationTypeRestrictionEmbeddedTest.java |   440 +
 .../rs/AuthorizationCodeFlowEmbeddedTest.java |   693 +
 .../AuthorizeRestWebServiceEmbeddedTest.java  |  1211 +
 ...AuthorizeWithResponseModeEmbeddedTest.java |   297 +
 ...lientAuthenticationFilterEmbeddedTest.java |   228 +
 .../ClientInfoRestWebServiceEmbeddedTest.java |   382 +
 .../EndSessionBackchannelRestServerTest.java  |   135 +
 .../EndSessionRestWebServiceEmbeddedTest.java |   256 +
 .../IntrospectionWebServiceEmbeddedTest.java  |    87 +
 .../ws/rs/JwkRestWebServiceEmbeddedTest.java  |   117 +
 .../rs/OpenIDRequestObjectEmbeddedTest.java   |  1147 +
 ...nIDRequestObjectWithESAlgEmbeddedTest.java |   688 +
 ...nIDRequestObjectWithHSAlgEmbeddedTest.java |   388 +
 ...nIDRequestObjectWithRSAlgEmbeddedTest.java |   689 +
 ...egistrationRestWebServiceEmbeddedTest.java |   288 +
 ...jectSigningAlgRestrictionEmbeddedTest.java |  2014 ++
 .../ResponseTypesRestrictionEmbeddedTest.java |   785 +
 ...IdentifierUrlVerificationEmbeddedTest.java |   259 +
 ...ointAuthMethodRestrictionEmbeddedTest.java |  1425 +
 .../rs/TokenRestWebServiceEmbeddedTest.java   |   276 +
 ...enRestWebServiceWithESAlgEmbeddedTest.java |   621 +
 ...enRestWebServiceWithHSAlgEmbeddedTest.java |   325 +
 ...enRestWebServiceWithRSAlgEmbeddedTest.java |   623 +
 .../UserAuthenticationFilterEmbeddedTest.java |   553 +
 .../UserInfoRestWebServiceEmbeddedTest.java   |   962 +
 .../test/resources/77-customAttributes.ldif   |    17 +
 .../Server/src/test/resources/arquillian.xml  |    20 +
 .../src/test/resources/client/jwks.json       |   188 +
 .../resources/client/sector_identifier.js     |     7 +
 .../resources/id/gen/SampleIdGenerator.py     |    41 +
 .../Server/src/test/resources/jetty-env.xml   |    21 +
 .../src/test/resources/testng-benchmark.xml   |     4 +
 .../src/test/resources/testng-multi-authz.xml |     4 +
 .../src/test/resources/testng.properties      |    70 +
 oxAuth/Server/src/test/resources/testng.xml   |   374 +
 oxAuth/Server/src/test/resources/web.xml      |   100 +
 oxAuth/Server/uma/UmaClientAuthzRptPolicy.py  |    83 +
 .../Server/uma/sample/UmaClaimsGathering.py   |   123 +
 oxAuth/Server/uma/sample/UmaRptPolicy.py      |    77 +
 oxAuth/Tests/selenium/ReadMe.txt              |    23 +
 .../selenium/selenium_login. t1_user.html     |    86 +
 .../selenium/selenium_login. t2_user.html     |    86 +
 .../selenium/selenium_login. t3_user.html     |    86 +
 oxAuth/Tests/selenium/while.js                |   126 +
 oxAuth/common/pom.xml                         |   247 +
 .../cert/fingerprint/FingerprintHelper.java   |    83 +
 .../validation/CRLCertificateVerifier.java    |   302 +
 .../cert/validation/CertificateVerifier.java  |    21 +
 .../GenericCertificateVerifier.java           |    67 +
 .../validation/OCSPCertificateVerifier.java   |   246 +
 .../validation/PathCertificateVerifier.java   |   196 +
 .../validation/model/ValidationStatus.java    |   113 +
 .../java/org/gluu/oxauth/claims/Audience.java |    22 +
 .../gluu/oxauth/model/common/SimpleUser.java  |    50 +
 .../org/gluu/oxauth/model/common/User.java    |    84 +
 .../model/config/BaseDnConfiguration.java     |   217 +
 .../model/config/StaticConfiguration.java     |    37 +
 .../model/event/CryptoProviderEvent.java      |    29 +
 .../oxauth/model/registration/Client.java     |  1233 +
 .../gluu/oxauth/model/session/SessionId.java  |   342 +
 .../model/session/SessionIdAccessMap.java     |    89 +
 .../oxauth/model/session/SessionIdState.java  |    49 +
 .../java/org/gluu/oxauth/model/stat/Stat.java |    56 +
 .../org/gluu/oxauth/model/stat/StatEntry.java |    60 +
 .../service/common/ApplicationFactory.java    |   122 +
 .../service/common/ConfigurationService.java  |   124 +
 .../service/common/EncryptionService.java     |    82 +
 .../oxauth/service/common/InumService.java    |    49 +
 .../oxauth/service/common/UserService.java    |   547 +
 .../service/common/api/IdGenerator.java       |    31 +
 .../fido2/RegistrationPersistenceService.java |   206 +
 .../org/gluu/oxauth/util/RedirectUri.java     |   167 +
 .../src/main/resources/META-INF/beans.xml     |     8 +
 .../org/gluu/oxauth/claims/AudienceTest.java  |    44 +
 .../org/gluu/oxauth/util/RedirectUriTest.java |    25 +
 oxAuth/common/src/test/resources/testng.xml   |    14 +
 oxAuth/docs/Authorization Code Flow.png       |   Bin 0 -> 29087 bytes
 oxAuth/docs/Authorize Endpoint.png            |   Bin 0 -> 802792 bytes
 oxAuth/docs/Authorize Page.png                |   Bin 0 -> 21692 bytes
 oxAuth/docs/Class Diagram.png                 |   Bin 0 -> 172288 bytes
 oxAuth/docs/Client Credentials Flow.png       |   Bin 0 -> 6978 bytes
 oxAuth/docs/Implicit Flow.png                 |   Bin 0 -> 19849 bytes
 ...source Owner Password Credentials Flow.png |   Bin 0 -> 12412 bytes
 oxAuth/docs/oxAuth.vpp                        |   Bin 0 -> 537116 bytes
 oxAuth/docs/oxAuthSwagger.yaml                |  4492 +++
 oxAuth/install.bat                            |     1 +
 .../jmeter/test/Authorization Code Flow.jmx   |   925 +
 .../test/Authorization Code Flow_amazon.jmx   |  1070 +
 ...on Code Flow_amazon_client_credentials.jmx |   625 +
 .../test/Authorization Code Flow_ce-dev5.jmx  |  1317 +
 .../test/Authorization Code Flow_xeon.jmx     |  1242 +
 ...tion Code Flow_xeon_client_credentials.jmx |   625 +
 .../test/Implicit_Flow_benchmark_gluu_org.jmx |  1018 +
 .../Implicit_Flow_c7_horizontal_scale.jmx     |  1150 +
 ...Test user authorization - testing data.csv |     3 +
 .../oxServer - Test user authorization.jmx    |   712 +
 oxAuth/oxAuthStatic/.gitignore                |     1 +
 oxAuth/oxAuthStatic/pom.xml                   |    26 +
 .../META-INF/resources/img/buttons_bg.jpg     |   Bin 0 -> 14804 bytes
 .../META-INF/resources/img/footer_bg.jpg      |   Bin 0 -> 13094 bytes
 .../resources/img/panel_header_bg.png         |   Bin 0 -> 197 bytes
 .../META-INF/resources/js/Duo-Web-v1.min.js   |     5 +
 .../META-INF/resources/stylesheet/site.css    |    46 +
 .../META-INF/resources/stylesheet/theme.css   |   841 +
 .../META-INF/resources/stylesheet/theme.xcss  |    83 +
 oxAuth/persistence-model/pom.xml              |    85 +
 .../persistence/model/ClientAttributes.java   |   209 +
 .../persistence/model/PairwiseIdentifier.java |    78 +
 .../org/oxauth/persistence/model/Scope.java   |   194 +
 .../persistence/model/ScopeAttributes.java    |    56 +
 .../persistence/model/SectorIdentifier.java   |    60 +
 .../oxauth/persistence/model/base/Entry.java  |    49 +
 .../model/configuration/CustomProperty.java   |    54 +
 .../configuration/GluuConfiguration.java      |   122 +
 .../model/configuration/InumEntry.java        |    48 +
 .../model/configuration/oxIDPAuthConf.java    |   110 +
 .../src/main/resources/META-INF/beans.xml     |     8 +
 oxAuth/pom.xml                                |   752 +
 oxAuth/release.properties                     |     7 +
 oxAuth/server-fips/.gitignore                 |     4 +
 oxAuth/server-fips/pom.xml                    |   161 +
 oxAuth/stat-exporter/pom.xml                  |   102 +
 .../gluu/stat/exporter/DiscoveryResponse.java |    51 +
 .../java/org/gluu/stat/exporter/Months.java   |    35 +
 .../gluu/stat/exporter/RegisterRequest.java   |    76 +
 .../gluu/stat/exporter/RegisterResponse.java  |    62 +
 .../org/gluu/stat/exporter/StatExporter.java  |   294 +
 .../stat/exporter/StatExporterConfig.java     |    43 +
 .../stat/exporter/StatExporterResponse.java   |    35 +
 .../org/gluu/stat/exporter/TokenResponse.java |    40 +
 .../test/resources/stat-exporter-config.json  |     5 +
 1607 files changed, 338405 insertions(+)
 create mode 100644 .github/ISSUE_TEMPLATE/CODEOWNERS
 create mode 100644 .github/ISSUE_TEMPLATE/issue-report.md
 create mode 100644 .github/workflows/central_code_quality_check.yml
 create mode 100644 oxAuth/.gitignore
 create mode 100644 oxAuth/CODE_OF_CONDUCT.md
 create mode 100644 oxAuth/Client/.gitignore
 create mode 100644 oxAuth/Client/pom.xml
 create mode 100644 oxAuth/Client/profiles/.gitignore
 create mode 100644 oxAuth/Client/profiles/default/client_keystore.pkcs12
 create mode 100644 oxAuth/Client/profiles/default/config-oxauth-test-data.properties
 create mode 100644 oxAuth/Client/src/main/assembly/jar-without-provider-dependencies.xml
 create mode 100644 oxAuth/Client/src/main/java/org/gluu/oxauth/client/AuthorizationRequest.java
 create mode 100644 oxAuth/Client/src/main/java/org/gluu/oxauth/client/AuthorizationResponse.java
 create mode 100644 oxAuth/Client/src/main/java/org/gluu/oxauth/client/AuthorizeClient.java
 create mode 100644 oxAuth/Client/src/main/java/org/gluu/oxauth/client/BackchannelAuthenticationClient.java
 create mode 100644 oxAuth/Client/src/main/java/org/gluu/oxauth/client/BackchannelAuthenticationRequest.java
 create mode 100644 oxAuth/Client/src/main/java/org/gluu/oxauth/client/BackchannelAuthenticationResponse.java
 create mode 100644 oxAuth/Client/src/main/java/org/gluu/oxauth/client/BaseClient.java
 create mode 100644 oxAuth/Client/src/main/java/org/gluu/oxauth/client/BaseRequest.java
 create mode 100644 oxAuth/Client/src/main/java/org/gluu/oxauth/client/BaseResponse.java
 create mode 100644 oxAuth/Client/src/main/java/org/gluu/oxauth/client/BaseResponseWithErrors.java
 create mode 100644 oxAuth/Client/src/main/java/org/gluu/oxauth/client/ClientAuthnEnabler.java
 create mode 100644 oxAuth/Client/src/main/java/org/gluu/oxauth/client/ClientAuthnRequest.java
 create mode 100644 oxAuth/Client/src/main/java/org/gluu/oxauth/client/ClientInfoClient.java
 create mode 100644 oxAuth/Client/src/main/java/org/gluu/oxauth/client/ClientInfoRequest.java
 create mode 100644 oxAuth/Client/src/main/java/org/gluu/oxauth/client/ClientInfoResponse.java
 create mode 100644 oxAuth/Client/src/main/java/org/gluu/oxauth/client/ClientUtils.java
 create mode 100644 oxAuth/Client/src/main/java/org/gluu/oxauth/client/DeviceAuthzClient.java
 create mode 100644 oxAuth/Client/src/main/java/org/gluu/oxauth/client/DeviceAuthzRequest.java
 create mode 100644 oxAuth/Client/src/main/java/org/gluu/oxauth/client/DeviceAuthzResponse.java
 create mode 100644 oxAuth/Client/src/main/java/org/gluu/oxauth/client/EndSessionClient.java
 create mode 100644 oxAuth/Client/src/main/java/org/gluu/oxauth/client/EndSessionRequest.java
 create mode 100644 oxAuth/Client/src/main/java/org/gluu/oxauth/client/EndSessionResponse.java
 create mode 100644 oxAuth/Client/src/main/java/org/gluu/oxauth/client/GluuConfigurationClient.java
 create mode 100644 oxAuth/Client/src/main/java/org/gluu/oxauth/client/GluuConfigurationRequest.java
 create mode 100644 oxAuth/Client/src/main/java/org/gluu/oxauth/client/GluuConfigurationResponse.java
 create mode 100644 oxAuth/Client/src/main/java/org/gluu/oxauth/client/JwkClient.java
 create mode 100644 oxAuth/Client/src/main/java/org/gluu/oxauth/client/JwkRequest.java
 create mode 100644 oxAuth/Client/src/main/java/org/gluu/oxauth/client/JwkResponse.java
 create mode 100644 oxAuth/Client/src/main/java/org/gluu/oxauth/client/OpenIdConfigurationClient.java
 create mode 100644 oxAuth/Client/src/main/java/org/gluu/oxauth/client/OpenIdConfigurationRequest.java
 create mode 100644 oxAuth/Client/src/main/java/org/gluu/oxauth/client/OpenIdConfigurationResponse.java
 create mode 100644 oxAuth/Client/src/main/java/org/gluu/oxauth/client/OpenIdConnectDiscoveryClient.java
 create mode 100644 oxAuth/Client/src/main/java/org/gluu/oxauth/client/OpenIdConnectDiscoveryRequest.java
 create mode 100644 oxAuth/Client/src/main/java/org/gluu/oxauth/client/OpenIdConnectDiscoveryResponse.java
 create mode 100644 oxAuth/Client/src/main/java/org/gluu/oxauth/client/QueryStringDecoder.java
 create mode 100644 oxAuth/Client/src/main/java/org/gluu/oxauth/client/RegisterClient.java
 create mode 100644 oxAuth/Client/src/main/java/org/gluu/oxauth/client/RegisterRequest.java
 create mode 100644 oxAuth/Client/src/main/java/org/gluu/oxauth/client/RegisterResponse.java
 create mode 100644 oxAuth/Client/src/main/java/org/gluu/oxauth/client/RevokeSessionClient.java
 create mode 100644 oxAuth/Client/src/main/java/org/gluu/oxauth/client/RevokeSessionRequest.java
 create mode 100644 oxAuth/Client/src/main/java/org/gluu/oxauth/client/RevokeSessionResponse.java
 create mode 100644 oxAuth/Client/src/main/java/org/gluu/oxauth/client/TokenClient.java
 create mode 100644 oxAuth/Client/src/main/java/org/gluu/oxauth/client/TokenRequest.java
 create mode 100644 oxAuth/Client/src/main/java/org/gluu/oxauth/client/TokenResponse.java
 create mode 100644 oxAuth/Client/src/main/java/org/gluu/oxauth/client/TokenRevocationClient.java
 create mode 100644 oxAuth/Client/src/main/java/org/gluu/oxauth/client/TokenRevocationRequest.java
 create mode 100644 oxAuth/Client/src/main/java/org/gluu/oxauth/client/TokenRevocationResponse.java
 create mode 100644 oxAuth/Client/src/main/java/org/gluu/oxauth/client/UserInfoClient.java
 create mode 100644 oxAuth/Client/src/main/java/org/gluu/oxauth/client/UserInfoRequest.java
 create mode 100644 oxAuth/Client/src/main/java/org/gluu/oxauth/client/UserInfoResponse.java
 create mode 100644 oxAuth/Client/src/main/java/org/gluu/oxauth/client/ciba/fcm/FirebaseCloudMessagingClient.java
 create mode 100644 oxAuth/Client/src/main/java/org/gluu/oxauth/client/ciba/fcm/FirebaseCloudMessagingRequest.java
 create mode 100644 oxAuth/Client/src/main/java/org/gluu/oxauth/client/ciba/fcm/FirebaseCloudMessagingResponse.java
 create mode 100644 oxAuth/Client/src/main/java/org/gluu/oxauth/client/ciba/ping/PingCallbackClient.java
 create mode 100644 oxAuth/Client/src/main/java/org/gluu/oxauth/client/ciba/ping/PingCallbackRequest.java
 create mode 100644 oxAuth/Client/src/main/java/org/gluu/oxauth/client/ciba/ping/PingCallbackResponse.java
 create mode 100644 oxAuth/Client/src/main/java/org/gluu/oxauth/client/ciba/push/PushErrorClient.java
 create mode 100644 oxAuth/Client/src/main/java/org/gluu/oxauth/client/ciba/push/PushErrorRequest.java
 create mode 100644 oxAuth/Client/src/main/java/org/gluu/oxauth/client/ciba/push/PushErrorResponse.java
 create mode 100644 oxAuth/Client/src/main/java/org/gluu/oxauth/client/ciba/push/PushTokenDeliveryClient.java
 create mode 100644 oxAuth/Client/src/main/java/org/gluu/oxauth/client/ciba/push/PushTokenDeliveryRequest.java
 create mode 100644 oxAuth/Client/src/main/java/org/gluu/oxauth/client/ciba/push/PushTokenDeliveryResponse.java
 create mode 100644 oxAuth/Client/src/main/java/org/gluu/oxauth/client/fido/u2f/AuthenticationRequestService.java
 create mode 100644 oxAuth/Client/src/main/java/org/gluu/oxauth/client/fido/u2f/FidoU2fClientFactory.java
 create mode 100644 oxAuth/Client/src/main/java/org/gluu/oxauth/client/fido/u2f/RegistrationRequestService.java
 create mode 100644 oxAuth/Client/src/main/java/org/gluu/oxauth/client/fido/u2f/U2fConfigurationService.java
 create mode 100644 oxAuth/Client/src/main/java/org/gluu/oxauth/client/model/JwtState.java
 create mode 100644 oxAuth/Client/src/main/java/org/gluu/oxauth/client/model/SoftwareStatement.java
 create mode 100644 oxAuth/Client/src/main/java/org/gluu/oxauth/client/model/authorize/Claim.java
 create mode 100644 oxAuth/Client/src/main/java/org/gluu/oxauth/client/model/authorize/ClaimValue.java
 create mode 100644 oxAuth/Client/src/main/java/org/gluu/oxauth/client/model/authorize/IdTokenMember.java
 create mode 100644 oxAuth/Client/src/main/java/org/gluu/oxauth/client/model/authorize/JwtAuthorizationRequest.java
 create mode 100644 oxAuth/Client/src/main/java/org/gluu/oxauth/client/model/authorize/UserInfoMember.java
 create mode 100644 oxAuth/Client/src/main/java/org/gluu/oxauth/client/service/ClientFactory.java
 create mode 100644 oxAuth/Client/src/main/java/org/gluu/oxauth/client/service/IntrospectionService.java
 create mode 100644 oxAuth/Client/src/main/java/org/gluu/oxauth/client/service/StatService.java
 create mode 100644 oxAuth/Client/src/main/java/org/gluu/oxauth/client/uma/UmaClientFactory.java
 create mode 100644 oxAuth/Client/src/main/java/org/gluu/oxauth/client/uma/UmaMetadataService.java
 create mode 100644 oxAuth/Client/src/main/java/org/gluu/oxauth/client/uma/UmaPermissionService.java
 create mode 100644 oxAuth/Client/src/main/java/org/gluu/oxauth/client/uma/UmaResourceService.java
 create mode 100644 oxAuth/Client/src/main/java/org/gluu/oxauth/client/uma/UmaRptIntrospectionService.java
 create mode 100644 oxAuth/Client/src/main/java/org/gluu/oxauth/client/uma/UmaScopeService.java
 create mode 100644 oxAuth/Client/src/main/java/org/gluu/oxauth/client/uma/UmaTokenService.java
 create mode 100644 oxAuth/Client/src/main/java/org/gluu/oxauth/client/uma/exception/UmaException.java
 create mode 100644 oxAuth/Client/src/main/java/org/gluu/oxauth/client/uma/wrapper/UmaClient.java
 create mode 100644 oxAuth/Client/src/main/java/org/gluu/oxauth/util/ClientUtil.java
 create mode 100644 oxAuth/Client/src/main/java/org/gluu/oxauth/util/KeyExporter.java
 create mode 100644 oxAuth/Client/src/main/java/org/gluu/oxauth/util/KeyGenerator.java
 create mode 100644 oxAuth/Client/src/test/java/org/gluu/oxauth/BaseTest.java
 create mode 100644 oxAuth/Client/src/test/java/org/gluu/oxauth/ciba/BackchannelAuthenticationExpiredRequestsTests.java
 create mode 100644 oxAuth/Client/src/test/java/org/gluu/oxauth/ciba/BackchannelAuthenticationPingMode.java
 create mode 100644 oxAuth/Client/src/test/java/org/gluu/oxauth/ciba/BackchannelAuthenticationPollMode.java
 create mode 100644 oxAuth/Client/src/test/java/org/gluu/oxauth/ciba/BackchannelAuthenticationPushMode.java
 create mode 100644 oxAuth/Client/src/test/java/org/gluu/oxauth/ciba/CibaPingModeJwtAuthRequestTests.java
 create mode 100644 oxAuth/Client/src/test/java/org/gluu/oxauth/ciba/CibaPollModeJwtAuthRequestTests.java
 create mode 100644 oxAuth/Client/src/test/java/org/gluu/oxauth/ciba/ConfigurationTest.java
 create mode 100644 oxAuth/Client/src/test/java/org/gluu/oxauth/ciba/RegistrationTest.java
 create mode 100644 oxAuth/Client/src/test/java/org/gluu/oxauth/client/Asserter.java
 create mode 100644 oxAuth/Client/src/test/java/org/gluu/oxauth/client/JSONObjectAsserter.java
 create mode 100644 oxAuth/Client/src/test/java/org/gluu/oxauth/client/RegisterRequestTest.java
 create mode 100644 oxAuth/Client/src/test/java/org/gluu/oxauth/client/ResponseAsserter.java
 create mode 100644 oxAuth/Client/src/test/java/org/gluu/oxauth/dev/.gitignore
 create mode 100644 oxAuth/Client/src/test/java/org/gluu/oxauth/dev/HostnameVerifierType.java
 create mode 100644 oxAuth/Client/src/test/java/org/gluu/oxauth/dev/TestSessionWorkflow.java
 create mode 100644 oxAuth/Client/src/test/java/org/gluu/oxauth/dev/manual/AccessTokenManualTest.java
 create mode 100644 oxAuth/Client/src/test/java/org/gluu/oxauth/dev/manual/BCFIPSTest.java
 create mode 100644 oxAuth/Client/src/test/java/org/gluu/oxauth/dev/manual/MTSLClientAuthenticationTest.java
 create mode 100644 oxAuth/Client/src/test/java/org/gluu/oxauth/interop/AcceptRequestWithoutRedirectUriWhenOneRegistered.java
 create mode 100644 oxAuth/Client/src/test/java/org/gluu/oxauth/interop/AcceptValidAsymmetricIdTokenSignature.java
 create mode 100644 oxAuth/Client/src/test/java/org/gluu/oxauth/interop/AcceptValidSymmetricIdTokenSignature.java
 create mode 100644 oxAuth/Client/src/test/java/org/gluu/oxauth/interop/CanDiscoverIdentifiersUsingEMailSyntax.java
 create mode 100644 oxAuth/Client/src/test/java/org/gluu/oxauth/interop/CanDiscoverIdentifiersUsingUrlSyntax.java
 create mode 100644 oxAuth/Client/src/test/java/org/gluu/oxauth/interop/CanMakeAccessTokenRequestWithClientSecretBasicAuthentication.java
 create mode 100644 oxAuth/Client/src/test/java/org/gluu/oxauth/interop/CanMakeAccessTokenRequestWithClientSecretJwtAuthentication.java
 create mode 100644 oxAuth/Client/src/test/java/org/gluu/oxauth/interop/CanMakeAccessTokenRequestWithClientSecretPostAuthentication.java
 create mode 100644 oxAuth/Client/src/test/java/org/gluu/oxauth/interop/CanMakeAccessTokenRequestWithPrivateKeyJwtAuthentication.java
 create mode 100644 oxAuth/Client/src/test/java/org/gluu/oxauth/interop/CanProvideEncryptedIdTokenResponse.java
 create mode 100644 oxAuth/Client/src/test/java/org/gluu/oxauth/interop/CanProvideEncryptedUserInfoResponse.java
 create mode 100644 oxAuth/Client/src/test/java/org/gluu/oxauth/interop/CanProvideSignedUserInfoResponse.java
 create mode 100644 oxAuth/Client/src/test/java/org/gluu/oxauth/interop/CanRequestAndUseClaimsInIdToken.java
 create mode 100644 oxAuth/Client/src/test/java/org/gluu/oxauth/interop/CanRequestAndUseEncryptedIdTokenResponse.java
 create mode 100644 oxAuth/Client/src/test/java/org/gluu/oxauth/interop/CanRequestAndUseEncryptedUserInfoResponse.java
 create mode 100644 oxAuth/Client/src/test/java/org/gluu/oxauth/interop/CanRequestAndUseSignedUserInfoResponse.java
 create mode 100644 oxAuth/Client/src/test/java/org/gluu/oxauth/interop/DisplaysLogoInLoginPage.java
 create mode 100644 oxAuth/Client/src/test/java/org/gluu/oxauth/interop/DisplaysPolicyUriInLoginPage.java
 create mode 100644 oxAuth/Client/src/test/java/org/gluu/oxauth/interop/EnablesDynamicRegistration.java
 create mode 100644 oxAuth/Client/src/test/java/org/gluu/oxauth/interop/IgnoresExtraQueryComponentInRequest.java
 create mode 100644 oxAuth/Client/src/test/java/org/gluu/oxauth/interop/IncludesAtHashInIdTokenWhenImplicitFlowUsed.java
 create mode 100644 oxAuth/Client/src/test/java/org/gluu/oxauth/interop/IncludesCHashInIdTokenWhenCodeFlowUsed.java
 create mode 100644 oxAuth/Client/src/test/java/org/gluu/oxauth/interop/OPRegistrationJwks.java
 create mode 100644 oxAuth/Client/src/test/java/org/gluu/oxauth/interop/ProvidingAcrValues.java
 create mode 100644 oxAuth/Client/src/test/java/org/gluu/oxauth/interop/ProvidingIdTokenWithEssentialAuthTimeClaim.java
 create mode 100644 oxAuth/Client/src/test/java/org/gluu/oxauth/interop/ProvidingIdTokenWithMaxAgeRestriction.java
 create mode 100644 oxAuth/Client/src/test/java/org/gluu/oxauth/interop/ProvidingIndividuallyRequestedEssentialAndVoluntaryClaims.java
 create mode 100644 oxAuth/Client/src/test/java/org/gluu/oxauth/interop/ProvidingIndividuallyRequestedEssentialClaims.java
 create mode 100644 oxAuth/Client/src/test/java/org/gluu/oxauth/interop/ProvidingIndividuallyRequestedVoluntaryClaims.java
 create mode 100644 oxAuth/Client/src/test/java/org/gluu/oxauth/interop/PublishOpenIdConfigurationDiscoveryInformation.java
 create mode 100644 oxAuth/Client/src/test/java/org/gluu/oxauth/interop/RejectInvalidAsymmetricIdTokenSignature.java
 create mode 100644 oxAuth/Client/src/test/java/org/gluu/oxauth/interop/RejectInvalidSymmetricIdTokenSignature.java
 create mode 100644 oxAuth/Client/src/test/java/org/gluu/oxauth/interop/RejectRedirectUriNotMatchingARegisteredRedirectUri.java
 create mode 100644 oxAuth/Client/src/test/java/org/gluu/oxauth/interop/RejectRegistrationOfRedirectUriWithFragment.java
 create mode 100644 oxAuth/Client/src/test/java/org/gluu/oxauth/interop/RejectRequestWithoutRedirectUriWhenMultipleRegistered.java
 create mode 100644 oxAuth/Client/src/test/java/org/gluu/oxauth/interop/RejectRequestWithoutResponseType.java
 create mode 100644 oxAuth/Client/src/test/java/org/gluu/oxauth/interop/RejectRequestsWithoutNonceUsingImplicitFlow.java
 create mode 100644 oxAuth/Client/src/test/java/org/gluu/oxauth/interop/RejectsIncorrectAtHashWhenImplicitFlowUsed.java
 create mode 100644 oxAuth/Client/src/test/java/org/gluu/oxauth/interop/RejectsIncorrectCHashWhenCodeFlowUsed.java
 create mode 100644 oxAuth/Client/src/test/java/org/gluu/oxauth/interop/RejectsRedirectUriWhenQueryParameterDoesNotMatch.java
 create mode 100644 oxAuth/Client/src/test/java/org/gluu/oxauth/interop/RejectsSecondUseOfAccessCode.java
 create mode 100644 oxAuth/Client/src/test/java/org/gluu/oxauth/interop/RejectsSectorIdentifierNotContainingRegisteredRedirectUriValues.java
 create mode 100644 oxAuth/Client/src/test/java/org/gluu/oxauth/interop/RequestingUserInfoClaimsWithOpenIdRequestObject.java
 create mode 100644 oxAuth/Client/src/test/java/org/gluu/oxauth/interop/RequestingUserInfoClaimsWithScopeValues.java
 create mode 100644 oxAuth/Client/src/test/java/org/gluu/oxauth/interop/SecondUseOfAccessCodeRevokesPreviouslyIssuedAccessToken.java
 create mode 100644 oxAuth/Client/src/test/java/org/gluu/oxauth/interop/SupportAuthenticationToTokenEndpointUsingFormEncodedClientCredentialsInPostBody.java
 create mode 100644 oxAuth/Client/src/test/java/org/gluu/oxauth/interop/SupportAuthenticationToTokenEndpointUsingHttpBasicWithPost.java
 create mode 100644 oxAuth/Client/src/test/java/org/gluu/oxauth/interop/SupportAuthenticationToTokenEndpointWithAsymmetricallySignedJWTs.java
 create mode 100644 oxAuth/Client/src/test/java/org/gluu/oxauth/interop/SupportAuthenticationToTokenEndpointWithSymmetricallySignedJWTs.java
 create mode 100644 oxAuth/Client/src/test/java/org/gluu/oxauth/interop/SupportClaimsRequestSpecifyingSubValue.java
 create mode 100644 oxAuth/Client/src/test/java/org/gluu/oxauth/interop/SupportCodeResponseType.java
 create mode 100644 oxAuth/Client/src/test/java/org/gluu/oxauth/interop/SupportCombinationOfCodeIdTokenTokenResponseTypes.java
 create mode 100644 oxAuth/Client/src/test/java/org/gluu/oxauth/interop/SupportCombinationOfCodeTokenResponseTypes.java
 create mode 100644 oxAuth/Client/src/test/java/org/gluu/oxauth/interop/SupportCombinationOfIdTokenCodeResponseTypes.java
 create mode 100644 oxAuth/Client/src/test/java/org/gluu/oxauth/interop/SupportCombinationOfIdTokenTokenResponseTypes.java
 create mode 100644 oxAuth/Client/src/test/java/org/gluu/oxauth/interop/SupportDisplayValuePage.java
 create mode 100644 oxAuth/Client/src/test/java/org/gluu/oxauth/interop/SupportDisplayValuePopup.java
 create mode 100644 oxAuth/Client/src/test/java/org/gluu/oxauth/interop/SupportIdTokenResponseType.java
 create mode 100644 oxAuth/Client/src/test/java/org/gluu/oxauth/interop/SupportPromptValueLogin.java
 create mode 100644 oxAuth/Client/src/test/java/org/gluu/oxauth/interop/SupportPromptValueNone.java
 create mode 100644 oxAuth/Client/src/test/java/org/gluu/oxauth/interop/SupportRegistrationRead.java
 create mode 100644 oxAuth/Client/src/test/java/org/gluu/oxauth/interop/SupportRequestFile.java
 create mode 100644 oxAuth/Client/src/test/java/org/gluu/oxauth/interop/SupportRequestsContainingNonce.java
 create mode 100644 oxAuth/Client/src/test/java/org/gluu/oxauth/interop/SupportRequestsWithoutNonce.java
 create mode 100644 oxAuth/Client/src/test/java/org/gluu/oxauth/interop/SupportScopeRequestingAddressClaims.java
 create mode 100644 oxAuth/Client/src/test/java/org/gluu/oxauth/interop/SupportScopeRequestingAllBasicClaims.java
 create mode 100644 oxAuth/Client/src/test/java/org/gluu/oxauth/interop/SupportScopeRequestingEmailClaims.java
 create mode 100644 oxAuth/Client/src/test/java/org/gluu/oxauth/interop/SupportScopeRequestingNoSpecificClaims.java
 create mode 100644 oxAuth/Client/src/test/java/org/gluu/oxauth/interop/SupportScopeRequestingPhoneClaims.java
 create mode 100644 oxAuth/Client/src/test/java/org/gluu/oxauth/interop/SupportScopeRequestingProfileClaims.java
 create mode 100644 oxAuth/Client/src/test/java/org/gluu/oxauth/interop/SupportTokenResponseType.java
 create mode 100644 oxAuth/Client/src/test/java/org/gluu/oxauth/interop/SupportWebFingerDiscovery.java
 create mode 100644 oxAuth/Client/src/test/java/org/gluu/oxauth/interop/Supports3rdPartyInitLogin.java
 create mode 100644 oxAuth/Client/src/test/java/org/gluu/oxauth/interop/Supports3rdPartyInitLoginNoHttps.java
 create mode 100644 oxAuth/Client/src/test/java/org/gluu/oxauth/interop/SupportsCombiningClaimsRequestedWithScopeAndRequestObject.java
 create mode 100644 oxAuth/Client/src/test/java/org/gluu/oxauth/interop/SupportsReturningClaimsInIdToken.java
 create mode 100644 oxAuth/Client/src/test/java/org/gluu/oxauth/interop/SupportsReturningDifferentClaimsInIdTokenAndUserInfoEndpoint.java
 create mode 100644 oxAuth/Client/src/test/java/org/gluu/oxauth/interop/UserInfoEndpoint.java
 create mode 100644 oxAuth/Client/src/test/java/org/gluu/oxauth/interop/UserInfoEndpointAccessWithFormEncodedBodyMethod.java
 create mode 100644 oxAuth/Client/src/test/java/org/gluu/oxauth/interop/UserInfoEndpointAccessWithHeaderMethod.java
 create mode 100644 oxAuth/Client/src/test/java/org/gluu/oxauth/interop/UsesAsymmetricIdTokenSignatures.java
 create mode 100644 oxAuth/Client/src/test/java/org/gluu/oxauth/interop/UsesDiscovery.java
 create mode 100644 oxAuth/Client/src/test/java/org/gluu/oxauth/interop/UsesDynamicRegistration.java
 create mode 100644 oxAuth/Client/src/test/java/org/gluu/oxauth/interop/UsesSymmetricIdTokenSignatures.java
 create mode 100644 oxAuth/Client/src/test/java/org/gluu/oxauth/interop/VerifiesCorrectAtHashWhenImplicitFlowUsed.java
 create mode 100644 oxAuth/Client/src/test/java/org/gluu/oxauth/interop/VerifiesCorrectCHashWhenCodeFlowUsed.java
 create mode 100644 oxAuth/Client/src/test/java/org/gluu/oxauth/json/JsonApplierTest.java
 create mode 100644 oxAuth/Client/src/test/java/org/gluu/oxauth/load/LoadConstants.java
 create mode 100644 oxAuth/Client/src/test/java/org/gluu/oxauth/load/ObtainAccessTokenLoadTest.java
 create mode 100644 oxAuth/Client/src/test/java/org/gluu/oxauth/load/RegistrationLoadTest.java
 create mode 100644 oxAuth/Client/src/test/java/org/gluu/oxauth/load/UserInfoLoadTest.java
 create mode 100644 oxAuth/Client/src/test/java/org/gluu/oxauth/load/benchmark/BenchmarkRequestAccessToken.java
 create mode 100644 oxAuth/Client/src/test/java/org/gluu/oxauth/load/benchmark/BenchmarkRequestAuthorization.java
 create mode 100644 oxAuth/Client/src/test/java/org/gluu/oxauth/load/benchmark/suite/BenchmarkTestListener.java
 create mode 100644 oxAuth/Client/src/test/java/org/gluu/oxauth/load/benchmark/suite/BenchmarkTestSuiteListener.java
 create mode 100644 oxAuth/Client/src/test/java/org/gluu/oxauth/page/AbstractPage.java
 create mode 100644 oxAuth/Client/src/test/java/org/gluu/oxauth/page/DeviceAuthzPage.java
 create mode 100644 oxAuth/Client/src/test/java/org/gluu/oxauth/page/LoginPage.java
 create mode 100644 oxAuth/Client/src/test/java/org/gluu/oxauth/page/Page.java
 create mode 100644 oxAuth/Client/src/test/java/org/gluu/oxauth/page/PageConfig.java
 create mode 100644 oxAuth/Client/src/test/java/org/gluu/oxauth/page/SelectPage.java
 create mode 100644 oxAuth/Client/src/test/java/org/gluu/oxauth/ws/rs/AccessTokenAsJwtHttpTest.java
 create mode 100644 oxAuth/Client/src/test/java/org/gluu/oxauth/ws/rs/AddressClaimsTest.java
 create mode 100644 oxAuth/Client/src/test/java/org/gluu/oxauth/ws/rs/ApplicationTypeRestrictionHttpTest.java
 create mode 100644 oxAuth/Client/src/test/java/org/gluu/oxauth/ws/rs/AuthorizationCodeFlowHttpTest.java
 create mode 100644 oxAuth/Client/src/test/java/org/gluu/oxauth/ws/rs/AuthorizationResponseCustomHeaderTest.java
 create mode 100644 oxAuth/Client/src/test/java/org/gluu/oxauth/ws/rs/AuthorizationResponseModeHttpTest.java
 create mode 100644 oxAuth/Client/src/test/java/org/gluu/oxauth/ws/rs/AuthorizationSupportCustomParams.java
 create mode 100644 oxAuth/Client/src/test/java/org/gluu/oxauth/ws/rs/AuthorizeRestWebServiceHttpTest.java
 create mode 100644 oxAuth/Client/src/test/java/org/gluu/oxauth/ws/rs/AuthorizeSessionIdRestWebServiceHttpTest.java
 create mode 100644 oxAuth/Client/src/test/java/org/gluu/oxauth/ws/rs/ClientAuthenticationFilterHttpTest.java
 create mode 100644 oxAuth/Client/src/test/java/org/gluu/oxauth/ws/rs/ClientCredentialsGrantHttpTest.java
 create mode 100644 oxAuth/Client/src/test/java/org/gluu/oxauth/ws/rs/ClientInfoRestWebServiceHttpTest.java
 create mode 100644 oxAuth/Client/src/test/java/org/gluu/oxauth/ws/rs/ClientSecretBasicTest.java
 create mode 100644 oxAuth/Client/src/test/java/org/gluu/oxauth/ws/rs/ClientSpecificAccessTokenExpiration.java
 create mode 100644 oxAuth/Client/src/test/java/org/gluu/oxauth/ws/rs/ClientTestUtil.java
 create mode 100644 oxAuth/Client/src/test/java/org/gluu/oxauth/ws/rs/ClientWhiteListBlackListRedirectUris.java
 create mode 100644 oxAuth/Client/src/test/java/org/gluu/oxauth/ws/rs/ConfigurationRestWebServiceHttpTest.java
 create mode 100644 oxAuth/Client/src/test/java/org/gluu/oxauth/ws/rs/EnableClientToRestrictJavascriptOrigin.java
 create mode 100644 oxAuth/Client/src/test/java/org/gluu/oxauth/ws/rs/EncodeClaimsInStateParameter.java
 create mode 100644 oxAuth/Client/src/test/java/org/gluu/oxauth/ws/rs/EndSessionRestWebServiceHttpTest.java
 create mode 100644 oxAuth/Client/src/test/java/org/gluu/oxauth/ws/rs/GluuConfigurationWebServiceHttpTest.java
 create mode 100644 oxAuth/Client/src/test/java/org/gluu/oxauth/ws/rs/GrantTypesRestrictionHttpTest.java
 create mode 100644 oxAuth/Client/src/test/java/org/gluu/oxauth/ws/rs/IndividualClaimsRequestsTest.java
 create mode 100644 oxAuth/Client/src/test/java/org/gluu/oxauth/ws/rs/IntrospectionWsHttpTest.java
 create mode 100644 oxAuth/Client/src/test/java/org/gluu/oxauth/ws/rs/JwkRestWebServiceHttpTest.java
 create mode 100644 oxAuth/Client/src/test/java/org/gluu/oxauth/ws/rs/MultiStepAuthorizationCodeFlowHttpTest.java
 create mode 100644 oxAuth/Client/src/test/java/org/gluu/oxauth/ws/rs/MultivaluedClaims.java
 create mode 100644 oxAuth/Client/src/test/java/org/gluu/oxauth/ws/rs/OpenIDConnectDiscoveryHttpTest.java
 create mode 100644 oxAuth/Client/src/test/java/org/gluu/oxauth/ws/rs/OpenIDRequestObjectHttpTest.java
 create mode 100644 oxAuth/Client/src/test/java/org/gluu/oxauth/ws/rs/PersistClientAuthorizationsHttpTest.java
 create mode 100644 oxAuth/Client/src/test/java/org/gluu/oxauth/ws/rs/PkceHttpTest.java
 create mode 100644 oxAuth/Client/src/test/java/org/gluu/oxauth/ws/rs/RegistrationRestWebServiceHttpTest.java
 create mode 100644 oxAuth/Client/src/test/java/org/gluu/oxauth/ws/rs/RegistrationWithSoftwareStatement.java
 create mode 100644 oxAuth/Client/src/test/java/org/gluu/oxauth/ws/rs/ResponseTypesRestrictionHttpTest.java
 create mode 100644 oxAuth/Client/src/test/java/org/gluu/oxauth/ws/rs/RevokeSessionHttpTest.java
 create mode 100644 oxAuth/Client/src/test/java/org/gluu/oxauth/ws/rs/SSOWithMultipleBackendServicesHttpTest.java
 create mode 100644 oxAuth/Client/src/test/java/org/gluu/oxauth/ws/rs/SectorIdentifierUrlVerificationHttpTest.java
 create mode 100644 oxAuth/Client/src/test/java/org/gluu/oxauth/ws/rs/SelectAccountHttpTest.java
 create mode 100644 oxAuth/Client/src/test/java/org/gluu/oxauth/ws/rs/SpontaneousScopeHttpTest.java
 create mode 100644 oxAuth/Client/src/test/java/org/gluu/oxauth/ws/rs/TokenBindingHttpTest.java
 create mode 100644 oxAuth/Client/src/test/java/org/gluu/oxauth/ws/rs/TokenEncryptionHttpTest.java
 create mode 100644 oxAuth/Client/src/test/java/org/gluu/oxauth/ws/rs/TokenEndpointAuthMethodRestrictionHttpTest.java
 create mode 100644 oxAuth/Client/src/test/java/org/gluu/oxauth/ws/rs/TokenRestWebServiceHttpTest.java
 create mode 100644 oxAuth/Client/src/test/java/org/gluu/oxauth/ws/rs/TokenRevocationTest.java
 create mode 100644 oxAuth/Client/src/test/java/org/gluu/oxauth/ws/rs/TokenSignaturesHttpTest.java
 create mode 100644 oxAuth/Client/src/test/java/org/gluu/oxauth/ws/rs/UILocales.java
 create mode 100644 oxAuth/Client/src/test/java/org/gluu/oxauth/ws/rs/UserAuthenticationFilterHttpTest.java
 create mode 100644 oxAuth/Client/src/test/java/org/gluu/oxauth/ws/rs/UserInfoRestWebServiceHttpTest.java
 create mode 100644 oxAuth/Client/src/test/java/org/gluu/oxauth/ws/rs/ValidateIdTokenHashesTest.java
 create mode 100644 oxAuth/Client/src/test/java/org/gluu/oxauth/ws/rs/WebKeysTest.java
 create mode 100644 oxAuth/Client/src/test/java/org/gluu/oxauth/ws/rs/deviceauthz/DeviceAuthzFlowHttpTest.java
 create mode 100644 oxAuth/Client/src/test/java/org/gluu/oxauth/ws/rs/deviceauthz/DeviceAuthzRequestRegistrationTest.java
 create mode 100644 oxAuth/Client/src/test/java/org/gluu/oxauth/ws/rs/internal/StatWSTest.java
 create mode 100644 oxAuth/Client/src/test/java/org/gluu/oxauth/ws/rs/uma/AccessProtectedResourceFlowHttpTest.java
 create mode 100644 oxAuth/Client/src/test/java/org/gluu/oxauth/ws/rs/uma/ClientAuthenticationByAccessTokenHttpTest.java
 create mode 100644 oxAuth/Client/src/test/java/org/gluu/oxauth/ws/rs/uma/MetaDataFlowHttpTest.java
 create mode 100644 oxAuth/Client/src/test/java/org/gluu/oxauth/ws/rs/uma/ObtainPatTokenFlowHttpTest.java
 create mode 100644 oxAuth/Client/src/test/java/org/gluu/oxauth/ws/rs/uma/RegisterResourceFlowHttpTest.java
 create mode 100644 oxAuth/Client/src/test/java/org/gluu/oxauth/ws/rs/uma/ScopeHttpTest.java
 create mode 100644 oxAuth/Client/src/test/java/org/gluu/oxauth/ws/rs/uma/UmaRegisterPermissionFlowHttpTest.java
 create mode 100644 oxAuth/Client/src/test/java/org/gluu/oxauth/ws/rs/uma/UmaSpontaneousScopeHttpTest.java
 create mode 100644 oxAuth/Client/src/test/resources/clientkeystore.jks
 create mode 100644 oxAuth/Client/src/test/resources/interop_Gluu_OX.properties
 create mode 100644 oxAuth/Client/src/test/resources/interop_NRI_PHP.properties
 create mode 100644 oxAuth/Client/src/test/resources/interop_Nov_Matake_Test.properties
 create mode 100644 oxAuth/Client/src/test/resources/interop_Oreo.properties
 create mode 100644 oxAuth/Client/src/test/resources/interop_Roland_Hedberg_Test.properties
 create mode 100644 oxAuth/Client/src/test/resources/interop_Ryo_Ito_Test.properties
 create mode 100644 oxAuth/Client/src/test/resources/interop_Wenou.properties
 create mode 100644 oxAuth/Client/src/test/resources/interop_rohe_config.py
 create mode 100644 oxAuth/Client/src/test/resources/interop_rohe_python_config.json
 create mode 100644 oxAuth/Client/src/test/resources/oxauth_test_client_keys.zip
 create mode 100644 oxAuth/Client/src/test/resources/testng-benchmark.xml
 create mode 100644 oxAuth/Client/src/test/resources/testng-multi-authz.xml
 create mode 100644 oxAuth/Client/src/test/resources/testng.properties
 create mode 100644 oxAuth/Client/src/test/resources/testng.xml
 create mode 100644 oxAuth/LICENSE
 create mode 100644 oxAuth/Model/.gitignore
 create mode 100644 oxAuth/Model/pom.xml
 create mode 100644 oxAuth/Model/src/main/java/org/gluu/oxauth/model/authorize/AuthorizeErrorResponseType.java
 create mode 100644 oxAuth/Model/src/main/java/org/gluu/oxauth/model/authorize/AuthorizeRequestParam.java
 create mode 100644 oxAuth/Model/src/main/java/org/gluu/oxauth/model/authorize/AuthorizeResponseParam.java
 create mode 100644 oxAuth/Model/src/main/java/org/gluu/oxauth/model/authorize/CodeVerifier.java
 create mode 100644 oxAuth/Model/src/main/java/org/gluu/oxauth/model/authorize/DeviceAuthorizationRequestParam.java
 create mode 100644 oxAuth/Model/src/main/java/org/gluu/oxauth/model/authorize/DeviceAuthorizationResponseParam.java
 create mode 100644 oxAuth/Model/src/main/java/org/gluu/oxauth/model/authorize/DeviceAuthzErrorResponseType.java
 create mode 100644 oxAuth/Model/src/main/java/org/gluu/oxauth/model/ciba/BackchannelAuthenticationErrorResponseType.java
 create mode 100644 oxAuth/Model/src/main/java/org/gluu/oxauth/model/ciba/BackchannelAuthenticationRequestParam.java
 create mode 100644 oxAuth/Model/src/main/java/org/gluu/oxauth/model/ciba/BackchannelAuthenticationResponseParam.java
 create mode 100644 oxAuth/Model/src/main/java/org/gluu/oxauth/model/ciba/BackchannelDeviceRegistrationErrorResponseType.java
 create mode 100644 oxAuth/Model/src/main/java/org/gluu/oxauth/model/ciba/FirebaseCloudMessagingRequestParam.java
 create mode 100644 oxAuth/Model/src/main/java/org/gluu/oxauth/model/ciba/FirebaseCloudMessagingResponseParam.java
 create mode 100644 oxAuth/Model/src/main/java/org/gluu/oxauth/model/ciba/PushErrorRequestParam.java
 create mode 100644 oxAuth/Model/src/main/java/org/gluu/oxauth/model/ciba/PushErrorResponseType.java
 create mode 100644 oxAuth/Model/src/main/java/org/gluu/oxauth/model/ciba/PushTokenDeliveryRequestParam.java
 create mode 100644 oxAuth/Model/src/main/java/org/gluu/oxauth/model/common/AuthenticationMethod.java
 create mode 100644 oxAuth/Model/src/main/java/org/gluu/oxauth/model/common/AuthorizationMethod.java
 create mode 100644 oxAuth/Model/src/main/java/org/gluu/oxauth/model/common/BackchannelTokenDeliveryMode.java
 create mode 100644 oxAuth/Model/src/main/java/org/gluu/oxauth/model/common/CallerType.java
 create mode 100644 oxAuth/Model/src/main/java/org/gluu/oxauth/model/common/Display.java
 create mode 100644 oxAuth/Model/src/main/java/org/gluu/oxauth/model/common/GrantType.java
 create mode 100644 oxAuth/Model/src/main/java/org/gluu/oxauth/model/common/HasParamName.java
 create mode 100644 oxAuth/Model/src/main/java/org/gluu/oxauth/model/common/Holder.java
 create mode 100644 oxAuth/Model/src/main/java/org/gluu/oxauth/model/common/Id.java
 create mode 100644 oxAuth/Model/src/main/java/org/gluu/oxauth/model/common/IdType.java
 create mode 100644 oxAuth/Model/src/main/java/org/gluu/oxauth/model/common/IntrospectionResponse.java
 create mode 100644 oxAuth/Model/src/main/java/org/gluu/oxauth/model/common/JSONable.java
 create mode 100644 oxAuth/Model/src/main/java/org/gluu/oxauth/model/common/PairwiseIdType.java
 create mode 100644 oxAuth/Model/src/main/java/org/gluu/oxauth/model/common/ProgrammingLanguage.java
 create mode 100644 oxAuth/Model/src/main/java/org/gluu/oxauth/model/common/Prompt.java
 create mode 100644 oxAuth/Model/src/main/java/org/gluu/oxauth/model/common/ResponseMode.java
 create mode 100644 oxAuth/Model/src/main/java/org/gluu/oxauth/model/common/ResponseType.java
 create mode 100644 oxAuth/Model/src/main/java/org/gluu/oxauth/model/common/ScopeConstants.java
 create mode 100644 oxAuth/Model/src/main/java/org/gluu/oxauth/model/common/ScopeType.java
 create mode 100644 oxAuth/Model/src/main/java/org/gluu/oxauth/model/common/SoftwareStatementValidationType.java
 create mode 100644 oxAuth/Model/src/main/java/org/gluu/oxauth/model/common/SubjectType.java
 create mode 100644 oxAuth/Model/src/main/java/org/gluu/oxauth/model/common/TokenType.java
 create mode 100644 oxAuth/Model/src/main/java/org/gluu/oxauth/model/common/TokenTypeHint.java
 create mode 100644 oxAuth/Model/src/main/java/org/gluu/oxauth/model/common/WebKeyStorage.java
 create mode 100644 oxAuth/Model/src/main/java/org/gluu/oxauth/model/common/converter/ListConverter.java
 create mode 100644 oxAuth/Model/src/main/java/org/gluu/oxauth/model/configuration/AppConfiguration.java
 create mode 100644 oxAuth/Model/src/main/java/org/gluu/oxauth/model/configuration/AuthenticationFilter.java
 create mode 100644 oxAuth/Model/src/main/java/org/gluu/oxauth/model/configuration/AuthenticationProtectionConfiguration.java
 create mode 100644 oxAuth/Model/src/main/java/org/gluu/oxauth/model/configuration/BaseFilter.java
 create mode 100644 oxAuth/Model/src/main/java/org/gluu/oxauth/model/configuration/CIBAEndUserNotificationConfig.java
 create mode 100644 oxAuth/Model/src/main/java/org/gluu/oxauth/model/configuration/ClientAuthenticationFilter.java
 create mode 100644 oxAuth/Model/src/main/java/org/gluu/oxauth/model/configuration/Configuration.java
 create mode 100644 oxAuth/Model/src/main/java/org/gluu/oxauth/model/configuration/ConfigurationResponseClaim.java
 create mode 100644 oxAuth/Model/src/main/java/org/gluu/oxauth/model/configuration/CorsConfigurationFilter.java
 create mode 100644 oxAuth/Model/src/main/java/org/gluu/oxauth/model/crypto/AbstractCryptoProvider.java
 create mode 100644 oxAuth/Model/src/main/java/org/gluu/oxauth/model/crypto/Certificate.java
 create mode 100644 oxAuth/Model/src/main/java/org/gluu/oxauth/model/crypto/CryptoProviderFactory.java
 create mode 100644 oxAuth/Model/src/main/java/org/gluu/oxauth/model/crypto/Key.java
 create mode 100644 oxAuth/Model/src/main/java/org/gluu/oxauth/model/crypto/KeyFactory.java
 create mode 100644 oxAuth/Model/src/main/java/org/gluu/oxauth/model/crypto/OxAuthCryptoProvider.java
 create mode 100644 oxAuth/Model/src/main/java/org/gluu/oxauth/model/crypto/OxElevenCryptoProvider.java
 create mode 100644 oxAuth/Model/src/main/java/org/gluu/oxauth/model/crypto/PrivateKey.java
 create mode 100644 oxAuth/Model/src/main/java/org/gluu/oxauth/model/crypto/PublicKey.java
 create mode 100644 oxAuth/Model/src/main/java/org/gluu/oxauth/model/crypto/binding/TokenBinding.java
 create mode 100644 oxAuth/Model/src/main/java/org/gluu/oxauth/model/crypto/binding/TokenBindingExtension.java
 create mode 100644 oxAuth/Model/src/main/java/org/gluu/oxauth/model/crypto/binding/TokenBindingExtensionType.java
 create mode 100644 oxAuth/Model/src/main/java/org/gluu/oxauth/model/crypto/binding/TokenBindingID.java
 create mode 100644 oxAuth/Model/src/main/java/org/gluu/oxauth/model/crypto/binding/TokenBindingKeyParameters.java
 create mode 100644 oxAuth/Model/src/main/java/org/gluu/oxauth/model/crypto/binding/TokenBindingMessage.java
 create mode 100644 oxAuth/Model/src/main/java/org/gluu/oxauth/model/crypto/binding/TokenBindingMessageParser.java
 create mode 100644 oxAuth/Model/src/main/java/org/gluu/oxauth/model/crypto/binding/TokenBindingParseException.java
 create mode 100644 oxAuth/Model/src/main/java/org/gluu/oxauth/model/crypto/binding/TokenBindingStream.java
 create mode 100644 oxAuth/Model/src/main/java/org/gluu/oxauth/model/crypto/binding/TokenBindingType.java
 create mode 100644 oxAuth/Model/src/main/java/org/gluu/oxauth/model/crypto/encryption/BlockEncryptionAlgorithm.java
 create mode 100644 oxAuth/Model/src/main/java/org/gluu/oxauth/model/crypto/encryption/KeyEncryptionAlgorithm.java
 create mode 100644 oxAuth/Model/src/main/java/org/gluu/oxauth/model/crypto/signature/AbstractSigner.java
 create mode 100644 oxAuth/Model/src/main/java/org/gluu/oxauth/model/crypto/signature/AlgorithmFamily.java
 create mode 100644 oxAuth/Model/src/main/java/org/gluu/oxauth/model/crypto/signature/AsymmetricSignatureAlgorithm.java
 create mode 100644 oxAuth/Model/src/main/java/org/gluu/oxauth/model/crypto/signature/ECDSAKeyFactory.java
 create mode 100644 oxAuth/Model/src/main/java/org/gluu/oxauth/model/crypto/signature/ECDSAPrivateKey.java
 create mode 100644 oxAuth/Model/src/main/java/org/gluu/oxauth/model/crypto/signature/ECDSAPublicKey.java
 create mode 100644 oxAuth/Model/src/main/java/org/gluu/oxauth/model/crypto/signature/ECEllipticCurve.java
 create mode 100644 oxAuth/Model/src/main/java/org/gluu/oxauth/model/crypto/signature/RSAKeyFactory.java
 create mode 100644 oxAuth/Model/src/main/java/org/gluu/oxauth/model/crypto/signature/RSAPrivateKey.java
 create mode 100644 oxAuth/Model/src/main/java/org/gluu/oxauth/model/crypto/signature/RSAPublicKey.java
 create mode 100644 oxAuth/Model/src/main/java/org/gluu/oxauth/model/crypto/signature/SignatureAlgorithm.java
 create mode 100644 oxAuth/Model/src/main/java/org/gluu/oxauth/model/crypto/signature/Signer.java
 create mode 100644 oxAuth/Model/src/main/java/org/gluu/oxauth/model/discovery/OAuth2Discovery.java
 create mode 100644 oxAuth/Model/src/main/java/org/gluu/oxauth/model/discovery/WebFingerLink.java
 create mode 100644 oxAuth/Model/src/main/java/org/gluu/oxauth/model/discovery/WebFingerParam.java
 create mode 100644 oxAuth/Model/src/main/java/org/gluu/oxauth/model/error/DefaultErrorResponse.java
 create mode 100644 oxAuth/Model/src/main/java/org/gluu/oxauth/model/error/ErrorHandlingMethod.java
 create mode 100644 oxAuth/Model/src/main/java/org/gluu/oxauth/model/error/ErrorResponse.java
 create mode 100644 oxAuth/Model/src/main/java/org/gluu/oxauth/model/error/IErrorType.java
 create mode 100644 oxAuth/Model/src/main/java/org/gluu/oxauth/model/exception/InvalidClaimException.java
 create mode 100644 oxAuth/Model/src/main/java/org/gluu/oxauth/model/exception/InvalidJweException.java
 create mode 100644 oxAuth/Model/src/main/java/org/gluu/oxauth/model/exception/InvalidJwtException.java
 create mode 100644 oxAuth/Model/src/main/java/org/gluu/oxauth/model/exception/InvalidParameterException.java
 create mode 100644 oxAuth/Model/src/main/java/org/gluu/oxauth/model/exception/SignatureException.java
 create mode 100644 oxAuth/Model/src/main/java/org/gluu/oxauth/model/fido/u2f/DeviceRegistrationStatus.java
 create mode 100644 oxAuth/Model/src/main/java/org/gluu/oxauth/model/fido/u2f/U2fConfiguration.java
 create mode 100644 oxAuth/Model/src/main/java/org/gluu/oxauth/model/fido/u2f/U2fConstants.java
 create mode 100644 oxAuth/Model/src/main/java/org/gluu/oxauth/model/fido/u2f/U2fErrorResponseType.java
 create mode 100644 oxAuth/Model/src/main/java/org/gluu/oxauth/model/fido/u2f/exception/BadInputException.java
 create mode 100644 oxAuth/Model/src/main/java/org/gluu/oxauth/model/fido/u2f/exception/RegistrationNotAllowed.java
 create mode 100644 oxAuth/Model/src/main/java/org/gluu/oxauth/model/fido/u2f/message/RawAuthenticateResponse.java
 create mode 100644 oxAuth/Model/src/main/java/org/gluu/oxauth/model/fido/u2f/message/RawRegisterResponse.java
 create mode 100644 oxAuth/Model/src/main/java/org/gluu/oxauth/model/fido/u2f/protocol/AuthenticateRequest.java
 create mode 100644 oxAuth/Model/src/main/java/org/gluu/oxauth/model/fido/u2f/protocol/AuthenticateRequestMessage.java
 create mode 100644 oxAuth/Model/src/main/java/org/gluu/oxauth/model/fido/u2f/protocol/AuthenticateResponse.java
 create mode 100644 oxAuth/Model/src/main/java/org/gluu/oxauth/model/fido/u2f/protocol/AuthenticateStatus.java
 create mode 100644 oxAuth/Model/src/main/java/org/gluu/oxauth/model/fido/u2f/protocol/ClientData.java
 create mode 100644 oxAuth/Model/src/main/java/org/gluu/oxauth/model/fido/u2f/protocol/DeviceData.java
 create mode 100644 oxAuth/Model/src/main/java/org/gluu/oxauth/model/fido/u2f/protocol/DeviceNotificationConf.java
 create mode 100644 oxAuth/Model/src/main/java/org/gluu/oxauth/model/fido/u2f/protocol/RegisterRequest.java
 create mode 100644 oxAuth/Model/src/main/java/org/gluu/oxauth/model/fido/u2f/protocol/RegisterRequestMessage.java
 create mode 100644 oxAuth/Model/src/main/java/org/gluu/oxauth/model/fido/u2f/protocol/RegisterResponse.java
 create mode 100644 oxAuth/Model/src/main/java/org/gluu/oxauth/model/fido/u2f/protocol/RegisterStatus.java
 create mode 100644 oxAuth/Model/src/main/java/org/gluu/oxauth/model/gluu/GluuConfiguration.java
 create mode 100644 oxAuth/Model/src/main/java/org/gluu/oxauth/model/gluu/GluuErrorResponseType.java
 create mode 100644 oxAuth/Model/src/main/java/org/gluu/oxauth/model/json/JsonApplier.java
 create mode 100644 oxAuth/Model/src/main/java/org/gluu/oxauth/model/json/PropertyDefinition.java
 create mode 100644 oxAuth/Model/src/main/java/org/gluu/oxauth/model/jwe/AbstractJweDecrypter.java
 create mode 100644 oxAuth/Model/src/main/java/org/gluu/oxauth/model/jwe/AbstractJweEncrypter.java
 create mode 100644 oxAuth/Model/src/main/java/org/gluu/oxauth/model/jwe/Jwe.java
 create mode 100644 oxAuth/Model/src/main/java/org/gluu/oxauth/model/jwe/JweDecrypter.java
 create mode 100644 oxAuth/Model/src/main/java/org/gluu/oxauth/model/jwe/JweDecrypterImpl.java
 create mode 100644 oxAuth/Model/src/main/java/org/gluu/oxauth/model/jwe/JweEncrypter.java
 create mode 100644 oxAuth/Model/src/main/java/org/gluu/oxauth/model/jwe/JweEncrypterImpl.java
 create mode 100644 oxAuth/Model/src/main/java/org/gluu/oxauth/model/jwe/KeyDerivationFunction.java
 create mode 100644 oxAuth/Model/src/main/java/org/gluu/oxauth/model/jwk/Algorithm.java
 create mode 100644 oxAuth/Model/src/main/java/org/gluu/oxauth/model/jwk/JSONWebKey.java
 create mode 100644 oxAuth/Model/src/main/java/org/gluu/oxauth/model/jwk/JSONWebKeySet.java
 create mode 100644 oxAuth/Model/src/main/java/org/gluu/oxauth/model/jwk/JWKParameter.java
 create mode 100644 oxAuth/Model/src/main/java/org/gluu/oxauth/model/jwk/KeySelectionStrategy.java
 create mode 100644 oxAuth/Model/src/main/java/org/gluu/oxauth/model/jwk/KeyType.java
 create mode 100644 oxAuth/Model/src/main/java/org/gluu/oxauth/model/jwk/Use.java
 create mode 100644 oxAuth/Model/src/main/java/org/gluu/oxauth/model/jws/AbstractJwsSigner.java
 create mode 100644 oxAuth/Model/src/main/java/org/gluu/oxauth/model/jws/ECDSASigner.java
 create mode 100644 oxAuth/Model/src/main/java/org/gluu/oxauth/model/jws/HMACSigner.java
 create mode 100644 oxAuth/Model/src/main/java/org/gluu/oxauth/model/jws/JwsSigner.java
 create mode 100644 oxAuth/Model/src/main/java/org/gluu/oxauth/model/jws/PlainTextSignature.java
 create mode 100644 oxAuth/Model/src/main/java/org/gluu/oxauth/model/jws/RSASigner.java
 create mode 100644 oxAuth/Model/src/main/java/org/gluu/oxauth/model/jwt/Jwt.java
 create mode 100644 oxAuth/Model/src/main/java/org/gluu/oxauth/model/jwt/JwtClaimName.java
 create mode 100644 oxAuth/Model/src/main/java/org/gluu/oxauth/model/jwt/JwtClaimSet.java
 create mode 100644 oxAuth/Model/src/main/java/org/gluu/oxauth/model/jwt/JwtClaims.java
 create mode 100644 oxAuth/Model/src/main/java/org/gluu/oxauth/model/jwt/JwtHeader.java
 create mode 100644 oxAuth/Model/src/main/java/org/gluu/oxauth/model/jwt/JwtHeaderName.java
 create mode 100644 oxAuth/Model/src/main/java/org/gluu/oxauth/model/jwt/JwtStateClaimName.java
 create mode 100644 oxAuth/Model/src/main/java/org/gluu/oxauth/model/jwt/JwtSubClaimObject.java
 create mode 100644 oxAuth/Model/src/main/java/org/gluu/oxauth/model/jwt/JwtType.java
 create mode 100644 oxAuth/Model/src/main/java/org/gluu/oxauth/model/jwt/PureJwt.java
 create mode 100644 oxAuth/Model/src/main/java/org/gluu/oxauth/model/register/ApplicationType.java
 create mode 100644 oxAuth/Model/src/main/java/org/gluu/oxauth/model/register/RegisterErrorResponseType.java
 create mode 100644 oxAuth/Model/src/main/java/org/gluu/oxauth/model/register/RegisterRequestParam.java
 create mode 100644 oxAuth/Model/src/main/java/org/gluu/oxauth/model/register/RegisterResponseParam.java
 create mode 100644 oxAuth/Model/src/main/java/org/gluu/oxauth/model/session/EndSessionErrorResponseType.java
 create mode 100644 oxAuth/Model/src/main/java/org/gluu/oxauth/model/session/EndSessionRequestParam.java
 create mode 100644 oxAuth/Model/src/main/java/org/gluu/oxauth/model/session/EndSessionResponseParam.java
 create mode 100644 oxAuth/Model/src/main/java/org/gluu/oxauth/model/token/ClientAssertionType.java
 create mode 100644 oxAuth/Model/src/main/java/org/gluu/oxauth/model/token/JsonWebResponse.java
 create mode 100644 oxAuth/Model/src/main/java/org/gluu/oxauth/model/token/TokenErrorResponseType.java
 create mode 100644 oxAuth/Model/src/main/java/org/gluu/oxauth/model/token/TokenRevocationErrorResponseType.java
 create mode 100644 oxAuth/Model/src/main/java/org/gluu/oxauth/model/token/TokenRevocationRequestParam.java
 create mode 100644 oxAuth/Model/src/main/java/org/gluu/oxauth/model/uma/ClaimTokenFormatType.java
 create mode 100644 oxAuth/Model/src/main/java/org/gluu/oxauth/model/uma/JsonLogic.java
 create mode 100644 oxAuth/Model/src/main/java/org/gluu/oxauth/model/uma/JsonLogicNode.java
 create mode 100644 oxAuth/Model/src/main/java/org/gluu/oxauth/model/uma/JsonLogicNodeParser.java
 create mode 100644 oxAuth/Model/src/main/java/org/gluu/oxauth/model/uma/PermissionTicket.java
 create mode 100644 oxAuth/Model/src/main/java/org/gluu/oxauth/model/uma/RPTResponse.java
 create mode 100644 oxAuth/Model/src/main/java/org/gluu/oxauth/model/uma/RptIntrospectionResponse.java
 create mode 100644 oxAuth/Model/src/main/java/org/gluu/oxauth/model/uma/RptProfiles.java
 create mode 100644 oxAuth/Model/src/main/java/org/gluu/oxauth/model/uma/UmaConstants.java
 create mode 100644 oxAuth/Model/src/main/java/org/gluu/oxauth/model/uma/UmaErrorResponseType.java
 create mode 100644 oxAuth/Model/src/main/java/org/gluu/oxauth/model/uma/UmaMetadata.java
 create mode 100644 oxAuth/Model/src/main/java/org/gluu/oxauth/model/uma/UmaNeedInfoResponse.java
 create mode 100644 oxAuth/Model/src/main/java/org/gluu/oxauth/model/uma/UmaPermission.java
 create mode 100644 oxAuth/Model/src/main/java/org/gluu/oxauth/model/uma/UmaPermissionList.java
 create mode 100644 oxAuth/Model/src/main/java/org/gluu/oxauth/model/uma/UmaResource.java
 create mode 100644 oxAuth/Model/src/main/java/org/gluu/oxauth/model/uma/UmaResourceResponse.java
 create mode 100644 oxAuth/Model/src/main/java/org/gluu/oxauth/model/uma/UmaResourceWithId.java
 create mode 100644 oxAuth/Model/src/main/java/org/gluu/oxauth/model/uma/UmaScopeDescription.java
 create mode 100644 oxAuth/Model/src/main/java/org/gluu/oxauth/model/uma/UmaScopeType.java
 create mode 100644 oxAuth/Model/src/main/java/org/gluu/oxauth/model/uma/UmaTokenResponse.java
 create mode 100644 oxAuth/Model/src/main/java/org/gluu/oxauth/model/uma/persistence/UmaPermission.java
 create mode 100644 oxAuth/Model/src/main/java/org/gluu/oxauth/model/uma/persistence/UmaResource.java
 create mode 100644 oxAuth/Model/src/main/java/org/gluu/oxauth/model/uma/wrapper/Token.java
 create mode 100644 oxAuth/Model/src/main/java/org/gluu/oxauth/model/userinfo/Schema.java
 create mode 100644 oxAuth/Model/src/main/java/org/gluu/oxauth/model/userinfo/UserInfoErrorResponseType.java
 create mode 100644 oxAuth/Model/src/main/java/org/gluu/oxauth/model/util/Base64Util.java
 create mode 100644 oxAuth/Model/src/main/java/org/gluu/oxauth/model/util/ByteUtils.java
 create mode 100644 oxAuth/Model/src/main/java/org/gluu/oxauth/model/util/CertUtils.java
 create mode 100644 oxAuth/Model/src/main/java/org/gluu/oxauth/model/util/HashUtil.java
 create mode 100644 oxAuth/Model/src/main/java/org/gluu/oxauth/model/util/JwtUtil.java
 create mode 100644 oxAuth/Model/src/main/java/org/gluu/oxauth/model/util/Pair.java
 create mode 100644 oxAuth/Model/src/main/java/org/gluu/oxauth/model/util/QueryBuilder.java
 create mode 100644 oxAuth/Model/src/main/java/org/gluu/oxauth/model/util/StringUtils.java
 create mode 100644 oxAuth/Model/src/main/java/org/gluu/oxauth/model/util/SubjectIdentifierGenerator.java
 create mode 100644 oxAuth/Model/src/main/java/org/gluu/oxauth/model/util/URLPatternList.java
 create mode 100644 oxAuth/Model/src/main/java/org/gluu/oxauth/model/util/Util.java
 create mode 100644 oxAuth/Model/src/main/resources/json_logic.js
 create mode 100644 oxAuth/Model/src/test/java/org/gluu/oxauth/model/authorize/CodeVerifierTest.java
 create mode 100644 oxAuth/Model/src/test/java/org/gluu/oxauth/model/crypto/binding/TokenBindingParserTest.java
 create mode 100644 oxAuth/Model/src/test/java/org/gluu/oxauth/model/jwt/JwtClaimsTest.java
 create mode 100644 oxAuth/Model/src/test/java/org/gluu/oxauth/model/jwt/JwtTypeTest.java
 create mode 100644 oxAuth/Model/src/test/java/org/gluu/oxauth/model/uma/JsonLogicNodeParserTest.java
 create mode 100644 oxAuth/Model/src/test/java/org/gluu/oxauth/model/uma/JsonLogicTest.java
 create mode 100644 oxAuth/Model/src/test/java/org/gluu/oxauth/model/uma/TestUtil.java
 create mode 100644 oxAuth/Model/src/test/java/org/gluu/oxauth/model/uma/UmaTestUtil.java
 create mode 100644 oxAuth/Model/src/test/java/org/gluu/oxauth/model/util/CertUtilsTest.java
 create mode 100644 oxAuth/Model/src/test/java/org/gluu/oxauth/model/util/HashUtilTest.java
 create mode 100644 oxAuth/Model/src/test/java/org/gluu/oxauth/model/util/JwtUtilTest.java
 create mode 100644 oxAuth/Model/src/test/java/org/gluu/oxauth/model/util/Tester.java
 create mode 100644 oxAuth/Model/src/test/java/org/gluu/oxauth/model/util/URLPatternListTest.java
 create mode 100644 oxAuth/Model/src/test/resources/json-logic-node.json
 create mode 100644 oxAuth/Model/src/test/resources/testng-benchmark.xml
 create mode 100644 oxAuth/Model/src/test/resources/testng-multi-authz.xml
 create mode 100644 oxAuth/Model/src/test/resources/testng.xml
 create mode 100644 oxAuth/README
 create mode 100644 oxAuth/README.md
 create mode 100644 oxAuth/Server/.gitignore
 create mode 100644 oxAuth/Server/.metadata/src/main/webapp/WEB-INF/.gitignore
 create mode 100644 oxAuth/Server/conf/gluu-couchbase.properties
 create mode 100644 oxAuth/Server/conf/gluu-ldap.properties
 create mode 100644 oxAuth/Server/conf/gluu-spanner.properties
 create mode 100644 oxAuth/Server/conf/gluu-sql.properties
 create mode 100644 oxAuth/Server/conf/gluu.properties
 create mode 100644 oxAuth/Server/conf/keystore.jks
 create mode 100644 oxAuth/Server/conf/oxauth-config.json
 create mode 100644 oxAuth/Server/conf/oxauth-errors.json
 create mode 100644 oxAuth/Server/conf/oxauth-static-conf.json
 create mode 100644 oxAuth/Server/conf/oxauth-web-keys.json
 create mode 100644 oxAuth/Server/conf/salt
 create mode 100644 oxAuth/Server/integrations.deprecatred/inwebo/InWeboExternalAuthenticator.py
 create mode 100644 oxAuth/Server/integrations.deprecatred/oneid/OneIdExternalAuthenticator.py
 create mode 100644 oxAuth/Server/integrations.deprecatred/oneid/docs/workflow.png
 create mode 100644 oxAuth/Server/integrations.deprecatred/oneid/docs/workflow.txt
 create mode 100644 oxAuth/Server/integrations.deprecatred/oneid/lib/oneid.py
 create mode 100644 oxAuth/Server/integrations.deprecatred/oneid/lib/stringprep.py
 create mode 100644 oxAuth/Server/integrations.deprecatred/oxpush/oxPushExternalAuthenticator.py
 create mode 100644 oxAuth/Server/integrations.deprecatred/phonefactor/PhoneFactorExternalAuthenticator.py
 create mode 100644 oxAuth/Server/integrations.deprecatred/phonefactor/repository/com/phonefactor/PhoneFactorSDK/2.13/PhoneFactorSDK-2.13.jar
 create mode 100644 oxAuth/Server/integrations.deprecatred/phonefactor/repository/com/phonefactor/PhoneFactorSDK/2.13/PhoneFactorSDK-2.13.pom
 create mode 100644 oxAuth/Server/integrations.deprecatred/phonefactor/repository/com/phonefactor/PhoneFactorSDK/maven-metadata-local.xml
 create mode 100644 oxAuth/Server/integrations.deprecatred/toopher/ToopherExternalAuthenticator.py
 create mode 100644 oxAuth/Server/integrations.deprecatred/toopher/repository/com/toopher/ToopherSDK/1.0.0/ToopherSDK-1.0.0.jar
 create mode 100644 oxAuth/Server/integrations.deprecatred/toopher/repository/com/toopher/ToopherSDK/1.0.0/ToopherSDK-1.0.0.pom
 create mode 100644 oxAuth/Server/integrations.deprecatred/toopher/repository/com/toopher/ToopherSDK/maven-metadata-local.xml
 create mode 100644 oxAuth/Server/integrations.deprecatred/toopher/sdk/pom.xml
 create mode 100644 oxAuth/Server/integrations.deprecatred/toopher/sdk/src/main/java/com/toopher/AuthenticationStatus.java
 create mode 100644 oxAuth/Server/integrations.deprecatred/toopher/sdk/src/main/java/com/toopher/PairingStatus.java
 create mode 100644 oxAuth/Server/integrations.deprecatred/toopher/sdk/src/main/java/com/toopher/RequestError.java
 create mode 100644 oxAuth/Server/integrations.deprecatred/toopher/sdk/src/main/java/com/toopher/ToopherAPI.java
 create mode 100644 oxAuth/Server/integrations.deprecatred/wikid/README.txt
 create mode 100644 oxAuth/Server/integrations.deprecatred/wikid/WikidExternalAuthenticator.py
 create mode 100644 oxAuth/Server/integrations/Migration_stepts_to_3.1.x.txt
 create mode 100644 oxAuth/Server/integrations/Migration_stepts_to_4.0.txt
 create mode 100644 oxAuth/Server/integrations/ThumbSignIn/README.md
 create mode 100644 oxAuth/Server/integrations/ThumbSignIn/ThumbSignInExternalAuthenticator.py
 create mode 100644 oxAuth/Server/integrations/acr_router/Readme.txt
 create mode 100644 oxAuth/Server/integrations/acr_router/acr_router_authenticator.py
 create mode 100644 oxAuth/Server/integrations/acr_saml_router/Readme.txt
 create mode 100644 oxAuth/Server/integrations/acr_saml_router/acr_smal_router_authenticator.py
 create mode 100644 oxAuth/Server/integrations/allowed_countries/allowed_countries.py
 create mode 100644 oxAuth/Server/integrations/allowed_countries/readme.txt
 create mode 100644 oxAuth/Server/integrations/authz/ConsentGatheringSample.py
 create mode 100644 oxAuth/Server/integrations/authz/docs/Authz design.dia
 create mode 100644 oxAuth/Server/integrations/authz/docs/Authz design.png
 create mode 100644 oxAuth/Server/integrations/azuread/AzureADAuthenticationForGluu.py
 create mode 100644 oxAuth/Server/integrations/azuread/README.md
 create mode 100644 oxAuth/Server/integrations/basic.change_password/BasicPassowrdUpdateExternalAuthenticator.py
 create mode 100644 oxAuth/Server/integrations/basic.change_password/auth/pwd/new-password.xhtml
 create mode 100644 oxAuth/Server/integrations/basic.client_group/BasicClientGroupExternalAuthenticator.py
 create mode 100644 oxAuth/Server/integrations/basic.client_group/README.txt
 create mode 100644 oxAuth/Server/integrations/basic.client_group/client_group.json
 create mode 100644 oxAuth/Server/integrations/basic.external_logout/BasicExternalAuthenticatorWithExternalLogout.py
 create mode 100644 oxAuth/Server/integrations/basic.external_logout/README.txt
 create mode 100644 oxAuth/Server/integrations/basic.ldap_auth_confs/LdapAuthConfExternalAuthenticator.py
 create mode 100644 oxAuth/Server/integrations/basic.ldap_auth_confs/README.txt
 create mode 100644 oxAuth/Server/integrations/basic.lock.account/BasicLockAccountExternalAuthenticator.py
 create mode 100644 oxAuth/Server/integrations/basic.lock.account/README.txt
 create mode 100644 oxAuth/Server/integrations/basic.multi_auth_conf/BasicMultiAuthConfExternalAuthenticator.py
 create mode 100644 oxAuth/Server/integrations/basic.multi_auth_conf/INSTALLATION.txt
 create mode 100644 oxAuth/Server/integrations/basic.multi_auth_conf/README.txt
 create mode 100644 oxAuth/Server/integrations/basic.multi_login/BasicMultiLoginExternalAuthenticator.py
 create mode 100644 oxAuth/Server/integrations/basic.multi_login/INSTALLATION.txt
 create mode 100644 oxAuth/Server/integrations/basic.multi_login/README.txt
 create mode 100644 oxAuth/Server/integrations/basic.multiple_test_email_addresses/BasicMultipleTestEmailAddressesExternalAuthenticator.py
 create mode 100644 oxAuth/Server/integrations/basic.multiple_test_email_addresses/README.txt
 create mode 100644 oxAuth/Server/integrations/basic.one_session/BasicOneSessionExternalAuthenticator.py
 create mode 100644 oxAuth/Server/integrations/basic.one_session/README.txt
 create mode 100644 oxAuth/Server/integrations/basic.password_expiration/PasswordExpiration.py
 create mode 100644 oxAuth/Server/integrations/basic.password_expiration/README.md
 create mode 100644 oxAuth/Server/integrations/basic.passwordchangewithvalidations/INSTALLATION.txt
 create mode 100644 oxAuth/Server/integrations/basic.passwordchangewithvalidations/PasswordChangeWithValidations.py
 create mode 100644 oxAuth/Server/integrations/basic.passwordchangewithvalidations/README.md
 create mode 100644 oxAuth/Server/integrations/basic.passwordchangewithvalidations/pwd/newpassword.xhtml
 create mode 100644 oxAuth/Server/integrations/basic.recaptcha/BasicRecaptchaExternalAuthenticator.py
 create mode 100644 oxAuth/Server/integrations/basic.recaptcha/README.md
 create mode 100644 oxAuth/Server/integrations/basic.recaptcha/cert_creds.json
 create mode 100644 oxAuth/Server/integrations/basic.recaptcha/login-page.png
 create mode 100644 oxAuth/Server/integrations/basic.reset_to_step/BasicResetToStepExternalAuthenticator.py
 create mode 100644 oxAuth/Server/integrations/basic.reset_to_step/README.txt
 create mode 100644 oxAuth/Server/integrations/basic/BasicExternalAuthenticator.py
 create mode 100644 oxAuth/Server/integrations/basic/INSTALLATION.txt
 create mode 100644 oxAuth/Server/integrations/basic/README.txt
 create mode 100644 oxAuth/Server/integrations/basicMultiAuth_Duo/Readme.md
 create mode 100644 oxAuth/Server/integrations/basicMultiAuth_Duo/basicmultiauthduo.py
 create mode 100644 oxAuth/Server/integrations/bcrypt_ssha_migration/pwd_migration.py
 create mode 100644 oxAuth/Server/integrations/bioid/BioIDExternalAuthenticator.py
 create mode 100644 oxAuth/Server/integrations/bioid/README.md
 create mode 100644 oxAuth/Server/integrations/bioid/README.txt
 create mode 100644 oxAuth/Server/integrations/cas2/Cas2ExternalAuthenticator.py
 create mode 100644 oxAuth/Server/integrations/cas2_duo/Cas2DuoExternalAuthenticator.py
 create mode 100644 oxAuth/Server/integrations/cas2_duo/Readme.md
 create mode 100644 oxAuth/Server/integrations/cas2_duo/docs/joinded_flows.dia
 create mode 100644 oxAuth/Server/integrations/cas2_duo/docs/joinded_flows.jpg
 create mode 100644 oxAuth/Server/integrations/casa/Casa.py
 create mode 100644 oxAuth/Server/integrations/casa/README.md
 create mode 100644 oxAuth/Server/integrations/casa_external_user/casa_external.py
 create mode 100644 oxAuth/Server/integrations/casa_external_user/readme.md
 create mode 100644 oxAuth/Server/integrations/cert/Generate certs guide.md
 create mode 100644 oxAuth/Server/integrations/cert/Generate certs without configs.md
 create mode 100644 oxAuth/Server/integrations/cert/Quick certs guide for testing.md
 create mode 100644 oxAuth/Server/integrations/cert/README.txt
 create mode 100644 oxAuth/Server/integrations/cert/UserCertExternalAuthenticator.py
 create mode 100644 oxAuth/Server/integrations/cert/docs/Cert design.dia
 create mode 100644 oxAuth/Server/integrations/cert/docs/Cert design.jpg
 create mode 100644 oxAuth/Server/integrations/cert/sample/cert_creds.json
 create mode 100644 oxAuth/Server/integrations/cert/sample/generated_certs.zip
 create mode 100644 oxAuth/Server/integrations/ciba/FirebaseEndUserNotification.py
 create mode 100644 oxAuth/Server/integrations/compromised_password/compromised_password.py
 create mode 100644 oxAuth/Server/integrations/compromised_password/readme.txt
 create mode 100644 oxAuth/Server/integrations/consent-gathering-with-redirection/ConsentGatheringSample_redirect.py
 create mode 100644 oxAuth/Server/integrations/consent-gathering-with-redirection/README
 create mode 100644 oxAuth/Server/integrations/consent-gathering-with-redirection/postauthorize.xhtml
 create mode 100644 oxAuth/Server/integrations/consent-gathering-with-redirection/redirect.xhtml
 create mode 100644 oxAuth/Server/integrations/consent-gathering-with-redirection/third-party-mock-app/README.txt.txt
 create mode 100644 oxAuth/Server/integrations/consent-gathering-with-redirection/third-party-mock-app/consent_page.html
 create mode 100644 oxAuth/Server/integrations/custom_registration/Attributes.json
 create mode 100644 oxAuth/Server/integrations/custom_registration/README.md
 create mode 100644 oxAuth/Server/integrations/custom_registration/reg.xhtml
 create mode 100644 oxAuth/Server/integrations/custom_registration/register.py
 create mode 100644 oxAuth/Server/integrations/deduce/PasswordlessAuthenticationWithDeduceImpossTravel.py
 create mode 100644 oxAuth/Server/integrations/deduce/README_PASSWORDLESS_AUTHN_WITH_DEDUCE.md
 create mode 100644 oxAuth/Server/integrations/duo-universal-prompt/DuoUniversalPromptExternalAuthenticator.py
 create mode 100644 oxAuth/Server/integrations/duo-universal-prompt/README.txt
 create mode 100644 oxAuth/Server/integrations/duo.passport.combine/Passport_and_Duo-Universal.py
 create mode 100644 oxAuth/Server/integrations/duo.passport.combine/Passport_and_Duo-Universal_ignore_empty.py
 create mode 100644 oxAuth/Server/integrations/duo.passport.combine/readme.md
 create mode 100644 oxAuth/Server/integrations/duo/DuoExternalAuthenticator.py
 create mode 100644 oxAuth/Server/integrations/duo/INSTALLATION.txt
 create mode 100644 oxAuth/Server/integrations/duo/README.txt
 create mode 100644 oxAuth/Server/integrations/duo/lib/duo_web.py
 create mode 100644 oxAuth/Server/integrations/duo2_Gluu3/DUO_Universal_3.1.7.py
 create mode 100644 oxAuth/Server/integrations/duo2_Gluu3/readme.md
 create mode 100644 oxAuth/Server/integrations/email2FA/README.md
 create mode 100644 oxAuth/Server/integrations/email2FA/email2FAExternalAuthenticator.py
 create mode 100644 oxAuth/Server/integrations/email2FA/entertoken.xhtml
 create mode 100644 oxAuth/Server/integrations/fido2/Fido2ExternalAuthenticator.py
 create mode 100644 oxAuth/Server/integrations/forgot_password/README.md
 create mode 100644 oxAuth/Server/integrations/forgot_password/forgot_password.py
 create mode 100644 oxAuth/Server/integrations/fortinet/FortinetExternalAuthenticator.py
 create mode 100644 oxAuth/Server/integrations/fortinet/README.txt
 create mode 100644 oxAuth/Server/integrations/gplus/GooglePlusExternalAuthenticator.py
 create mode 100644 oxAuth/Server/integrations/gplus/README.txt
 create mode 100644 oxAuth/Server/integrations/gplus/sample/custom_script_entry.ldif
 create mode 100644 oxAuth/Server/integrations/gplus/sample/gplus_client_secrets.json
 create mode 100644 oxAuth/Server/integrations/gplus/workflow.txt
 create mode 100644 oxAuth/Server/integrations/idfirst/README_idfirst.md
 create mode 100644 oxAuth/Server/integrations/idfirst/idfirst.py
 create mode 100644 oxAuth/Server/integrations/inwebo/inwebo.py
 create mode 100644 oxAuth/Server/integrations/inwebo/iw_creds.json
 create mode 100644 oxAuth/Server/integrations/inwebo/iw_va.xhtml
 create mode 100644 oxAuth/Server/integrations/inwebo/iwauthenticate.xhtml
 create mode 100644 oxAuth/Server/integrations/inwebo/iwlogin.xhtml
 create mode 100644 oxAuth/Server/integrations/inwebo/iwlogin_without_password.xhtml
 create mode 100644 oxAuth/Server/integrations/inwebo/iwpushnotification.xhtml
 create mode 100644 oxAuth/Server/integrations/inwebo/oxauth.properties
 create mode 100644 oxAuth/Server/integrations/new_acr_link/README.md
 create mode 100644 oxAuth/Server/integrations/new_acr_link/new_acr_link.py
 create mode 100644 oxAuth/Server/integrations/otp/Installation.md
 create mode 100644 oxAuth/Server/integrations/otp/OtpExternalAuthenticator.py
 create mode 100644 oxAuth/Server/integrations/otp/Properties description.md
 create mode 100644 oxAuth/Server/integrations/otp/Readme.md
 create mode 100644 oxAuth/Server/integrations/otp/img/gluu_otp_integration_authentication_workflow.png
 create mode 100644 oxAuth/Server/integrations/otp/repository/com/lochbridge/oath/oath-otp-keyprovisioning/0.0.1-SNAPSHOT/_remote.repositories
 create mode 100644 oxAuth/Server/integrations/otp/repository/com/lochbridge/oath/oath-otp-keyprovisioning/0.0.1-SNAPSHOT/maven-metadata-local.xml
 create mode 100644 oxAuth/Server/integrations/otp/repository/com/lochbridge/oath/oath-otp-keyprovisioning/0.0.1-SNAPSHOT/oath-otp-keyprovisioning-0.0.1-SNAPSHOT-javadoc.jar
 create mode 100644 oxAuth/Server/integrations/otp/repository/com/lochbridge/oath/oath-otp-keyprovisioning/0.0.1-SNAPSHOT/oath-otp-keyprovisioning-0.0.1-SNAPSHOT-sources.jar
 create mode 100644 oxAuth/Server/integrations/otp/repository/com/lochbridge/oath/oath-otp-keyprovisioning/0.0.1-SNAPSHOT/oath-otp-keyprovisioning-0.0.1-SNAPSHOT.jar
 create mode 100644 oxAuth/Server/integrations/otp/repository/com/lochbridge/oath/oath-otp-keyprovisioning/0.0.1-SNAPSHOT/oath-otp-keyprovisioning-0.0.1-SNAPSHOT.pom
 create mode 100644 oxAuth/Server/integrations/otp/repository/com/lochbridge/oath/oath-otp-keyprovisioning/maven-metadata-local.xml
 create mode 100644 oxAuth/Server/integrations/otp/repository/com/lochbridge/oath/oath-otp/0.0.1-SNAPSHOT/_remote.repositories
 create mode 100644 oxAuth/Server/integrations/otp/repository/com/lochbridge/oath/oath-otp/0.0.1-SNAPSHOT/maven-metadata-local.xml
 create mode 100644 oxAuth/Server/integrations/otp/repository/com/lochbridge/oath/oath-otp/0.0.1-SNAPSHOT/oath-otp-0.0.1-SNAPSHOT-javadoc.jar
 create mode 100644 oxAuth/Server/integrations/otp/repository/com/lochbridge/oath/oath-otp/0.0.1-SNAPSHOT/oath-otp-0.0.1-SNAPSHOT-sources.jar
 create mode 100644 oxAuth/Server/integrations/otp/repository/com/lochbridge/oath/oath-otp/0.0.1-SNAPSHOT/oath-otp-0.0.1-SNAPSHOT.jar
 create mode 100644 oxAuth/Server/integrations/otp/repository/com/lochbridge/oath/oath-otp/0.0.1-SNAPSHOT/oath-otp-0.0.1-SNAPSHOT.pom
 create mode 100644 oxAuth/Server/integrations/otp/repository/com/lochbridge/oath/oath-otp/maven-metadata-local.xml
 create mode 100644 oxAuth/Server/integrations/otp/repository/com/lochbridge/oath/oath-parent/0.0.1-SNAPSHOT/_remote.repositories
 create mode 100644 oxAuth/Server/integrations/otp/repository/com/lochbridge/oath/oath-parent/0.0.1-SNAPSHOT/maven-metadata-local.xml
 create mode 100644 oxAuth/Server/integrations/otp/repository/com/lochbridge/oath/oath-parent/0.0.1-SNAPSHOT/oath-parent-0.0.1-SNAPSHOT.pom
 create mode 100644 oxAuth/Server/integrations/otp/repository/com/lochbridge/oath/oath-parent/maven-metadata-local.xml
 create mode 100644 oxAuth/Server/integrations/otp/sample/otp_configuration.json
 create mode 100644 oxAuth/Server/integrations/otp/sequence_diagram.txt
 create mode 100644 oxAuth/Server/integrations/passport/PassportExternalAuthenticator.py
 create mode 100644 oxAuth/Server/integrations/passport/README.md
 create mode 100644 oxAuth/Server/integrations/passport/sample/passport_script_entry.ldif
 create mode 100644 oxAuth/Server/integrations/passwordless/PasswordlessAuthentication.py
 create mode 100644 oxAuth/Server/integrations/passwordless/README.md
 create mode 100644 oxAuth/Server/integrations/passwordless/bundle.zip
 create mode 100644 oxAuth/Server/integrations/passwurd/PasswurdAuthentication.py
 create mode 100644 oxAuth/Server/integrations/passwurd/README.md
 create mode 100644 oxAuth/Server/integrations/passwurd/bundle-bak.zip
 create mode 100644 oxAuth/Server/integrations/passwurd/bundle.zip
 create mode 100644 oxAuth/Server/integrations/passwurd/bundle/bundle/opt/gluu/jetty/oxauth/custom/i18n/oxauth.properties
 create mode 100644 oxAuth/Server/integrations/passwurd/bundle/bundle/opt/gluu/jetty/oxauth/custom/pages/passwurd/enterPwd.xhtml
 create mode 100644 oxAuth/Server/integrations/passwurd/bundle/bundle/opt/gluu/jetty/oxauth/custom/pages/passwurd/login-template.xhtml
 create mode 100644 oxAuth/Server/integrations/passwurd/bundle/bundle/opt/gluu/jetty/oxauth/custom/pages/passwurd/login.xhtml
 create mode 100644 oxAuth/Server/integrations/passwurd/bundle/bundle/opt/gluu/jetty/oxauth/custom/pages/passwurd/savePwd.xhtml
 create mode 100644 oxAuth/Server/integrations/passwurd/bundle/bundle/opt/gluu/jetty/oxauth/custom/static/passwurd/font-awesome-5.12.1.all.min.js
 create mode 100644 oxAuth/Server/integrations/passwurd/bundle/bundle/opt/gluu/jetty/oxauth/custom/static/passwurd/logger_pwd.js
 create mode 100644 oxAuth/Server/integrations/passwurd/bundle/bundle/opt/gluu/jetty/oxauth/custom/static/passwurd/logger_username.js
 create mode 100644 oxAuth/Server/integrations/passwurd/bundle/bundle/opt/gluu/jetty/oxauth/custom/static/passwurd/style.css
 create mode 100644 oxAuth/Server/integrations/passwurd/bundle/bundle/opt/gluu/jetty/oxauth/custom/static/passwurd/tachyons.min.css
 create mode 100644 oxAuth/Server/integrations/passwurd/bundle/bundle/opt/gluu/python/libs/passwurd-external_bioid.py
 create mode 100644 oxAuth/Server/integrations/passwurd/bundle/bundle/opt/gluu/python/libs/passwurd-external_fido2.py
 create mode 100644 oxAuth/Server/integrations/passwurd/bundle/bundle/opt/gluu/python/libs/passwurd-external_otp.py
 create mode 100644 oxAuth/Server/integrations/passwurd/bundle/bundle/opt/gluu/python/libs/passwurd-external_super_gluu.py
 create mode 100644 oxAuth/Server/integrations/pingid/README.md
 create mode 100644 oxAuth/Server/integrations/pingid/bundle.zip
 create mode 100644 oxAuth/Server/integrations/pingid/flow.png
 create mode 100644 oxAuth/Server/integrations/pingid/oxauth-pingid-1.0.jar
 create mode 100644 oxAuth/Server/integrations/pingid/pingIDAuthenticator.py
 create mode 100644 oxAuth/Server/integrations/pingid/pom.xml
 create mode 100644 oxAuth/Server/integrations/pingid/src/main/java/org/gluu/oxauth/ping/HttpException.java
 create mode 100644 oxAuth/Server/integrations/pingid/src/main/java/org/gluu/oxauth/ping/PPMRequestBroker.java
 create mode 100644 oxAuth/Server/integrations/pingid/src/main/java/org/gluu/oxauth/ping/RequestToken.java
 create mode 100644 oxAuth/Server/integrations/pingid/src/main/java/org/gluu/oxauth/ping/ResponseTokenParser.java
 create mode 100644 oxAuth/Server/integrations/pingid/src/main/java/org/gluu/oxauth/ping/TokenProcessingException.java
 create mode 100644 oxAuth/Server/integrations/pingid/src/main/java/org/gluu/oxauth/ping/UserManagerBroker.java
 create mode 100644 oxAuth/Server/integrations/pingid/src/main/java/org/gluu/oxauth/ping/Utils.java
 create mode 100644 oxAuth/Server/integrations/postauthn/postauthn.py
 create mode 100644 oxAuth/Server/integrations/privacyidea/README.md
 create mode 100644 oxAuth/Server/integrations/privacyidea/pages/auth/privacyidea/privacyidea.xhtml
 create mode 100644 oxAuth/Server/integrations/privacyidea/privacyidea.py
 create mode 100644 oxAuth/Server/integrations/registration/read.txt
 create mode 100644 oxAuth/Server/integrations/registration/register.py
 create mode 100644 oxAuth/Server/integrations/saml-passport/SamlPassportAuthenticator.py
 create mode 100644 oxAuth/Server/integrations/saml.alias.attribute/README.md
 create mode 100644 oxAuth/Server/integrations/saml.alias.attribute/idp_script.py
 create mode 100644 oxAuth/Server/integrations/saml/Gluu Inbound SAML Design (no Session).png
 create mode 100644 oxAuth/Server/integrations/saml/INSTALLATION.txt
 create mode 100644 oxAuth/Server/integrations/saml/README.txt
 create mode 100644 oxAuth/Server/integrations/saml/SamlExternalAuthenticator.py
 create mode 100644 oxAuth/Server/integrations/saml2oidc_acr_router/README.md
 create mode 100644 oxAuth/Server/integrations/saml2oidc_acr_router/saml2oidc_acr_router.py
 create mode 100644 oxAuth/Server/integrations/smpp/smpp2FA.py
 create mode 100644 oxAuth/Server/integrations/stytch/README.md
 create mode 100644 oxAuth/Server/integrations/stytch/stytchExternalAuthenticator.py
 create mode 100644 oxAuth/Server/integrations/super_gluu/SuperGluuExternalAuthenticator.py
 create mode 100644 oxAuth/Server/integrations/super_gluu/repository/com/google/gcm/gcm-server/1.0.1.gluu/gcm-server-1.0.1.gluu.jar
 create mode 100644 oxAuth/Server/integrations/super_gluu/repository/com/google/gcm/gcm-server/1.0.1.gluu/gcm-server-1.0.1.gluu.jar.md5
 create mode 100644 oxAuth/Server/integrations/super_gluu/repository/com/google/gcm/gcm-server/1.0.1.gluu/gcm-server-1.0.1.gluu.jar.sha1
 create mode 100644 oxAuth/Server/integrations/super_gluu/repository/com/google/gcm/gcm-server/1.0.1.gluu/gcm-server-1.0.1.gluu.pom
 create mode 100644 oxAuth/Server/integrations/super_gluu/repository/com/google/gcm/gcm-server/1.0.1.gluu/gcm-server-1.0.1.gluu.pom.md5
 create mode 100644 oxAuth/Server/integrations/super_gluu/repository/com/google/gcm/gcm-server/1.0.1.gluu/gcm-server-1.0.1.gluu.pom.sha1
 create mode 100644 oxAuth/Server/integrations/super_gluu/repository/com/google/gcm/gcm-server/maven-metadata.xml
 create mode 100644 oxAuth/Server/integrations/super_gluu/repository/com/google/gcm/gcm-server/maven-metadata.xml.md5
 create mode 100644 oxAuth/Server/integrations/super_gluu/repository/com/google/gcm/gcm-server/maven-metadata.xml.sha1
 create mode 100644 oxAuth/Server/integrations/super_gluu/sample/super_gluu_creds.json
 create mode 100644 oxAuth/Server/integrations/twilio_sms/README.txt
 create mode 100644 oxAuth/Server/integrations/twilio_sms/twilio2FA.py
 create mode 100644 oxAuth/Server/integrations/u2f/U2fExternalAuthenticator.py
 create mode 100644 oxAuth/Server/integrations/uaf/Installation.md
 create mode 100644 oxAuth/Server/integrations/uaf/Properties description.md
 create mode 100644 oxAuth/Server/integrations/uaf/Readme.md
 create mode 100644 oxAuth/Server/integrations/uaf/UafExternalAuthenticator.py
 create mode 100644 oxAuth/Server/integrations/uaf/img/gluu_uaf_integration_authentication_workflow.png
 create mode 100644 oxAuth/Server/integrations/uaf/img/oob_qr_code.png
 create mode 100644 oxAuth/Server/integrations/uaf/img/typical_uaf_architecture.png
 create mode 100644 oxAuth/Server/integrations/uaf/img/uaf_device_integration_models.png
 create mode 100644 oxAuth/Server/integrations/uaf/sequence_diagram.txt
 create mode 100644 oxAuth/Server/integrations/whispeak/README.md
 create mode 100644 oxAuth/Server/integrations/whispeak/whispeak_open_v1.py
 create mode 100644 oxAuth/Server/integrations/wwpass/INSTALLATION.md
 create mode 100644 oxAuth/Server/integrations/wwpass/README.md
 create mode 100644 oxAuth/Server/integrations/wwpass/pages/auth/wwpass/checkemail.xhtml
 create mode 100644 oxAuth/Server/integrations/wwpass/pages/auth/wwpass/wwpass.xhtml
 create mode 100644 oxAuth/Server/integrations/wwpass/pages/auth/wwpass/wwpassbind.xhtml
 create mode 100644 oxAuth/Server/integrations/wwpass/static/js/wwpass-frontend.js
 create mode 100644 oxAuth/Server/integrations/wwpass/ticket.json
 create mode 100644 oxAuth/Server/integrations/wwpass/wwpass.ca.crt
 create mode 100644 oxAuth/Server/integrations/wwpass/wwpass.py
 create mode 100644 oxAuth/Server/integrations/wwpass/wwpassauth.py
 create mode 100644 oxAuth/Server/integrations/yubicloud/README.txt
 create mode 100644 oxAuth/Server/integrations/yubicloud/YubicloudExternalAuthenticator.py
 create mode 100644 oxAuth/Server/pom.xml
 create mode 100644 oxAuth/Server/profiles/.gitignore
 create mode 100644 oxAuth/Server/profiles/default/client_keystore.pkcs12
 create mode 100644 oxAuth/Server/profiles/default/config-build.properties
 create mode 100644 oxAuth/Server/profiles/default/config-oxauth-test-data.properties
 create mode 100644 oxAuth/Server/profiles/default/config-oxauth-test.properties
 create mode 100644 oxAuth/Server/profiles/default/config-oxauth.properties
 create mode 100644 oxAuth/Server/src-remove/pages.xml
 create mode 100644 oxAuth/Server/src/main/docs/mustache/markdown.mustache
 create mode 100644 oxAuth/Server/src/main/java/org/gluu/oxauth/audit/ApplicationAuditLogger.java
 create mode 100644 oxAuth/Server/src/main/java/org/gluu/oxauth/audit/debug/ServletLoggingFilter.java
 create mode 100644 oxAuth/Server/src/main/java/org/gluu/oxauth/audit/debug/entity/HttpRequest.java
 create mode 100644 oxAuth/Server/src/main/java/org/gluu/oxauth/audit/debug/entity/HttpResponse.java
 create mode 100644 oxAuth/Server/src/main/java/org/gluu/oxauth/audit/debug/wrapper/RequestWrapper.java
 create mode 100644 oxAuth/Server/src/main/java/org/gluu/oxauth/audit/debug/wrapper/ResponseWrapper.java
 create mode 100644 oxAuth/Server/src/main/java/org/gluu/oxauth/auth/AuthenticationFilter.java
 create mode 100644 oxAuth/Server/src/main/java/org/gluu/oxauth/auth/Authenticator.java
 create mode 100644 oxAuth/Server/src/main/java/org/gluu/oxauth/auth/MTLSService.java
 create mode 100644 oxAuth/Server/src/main/java/org/gluu/oxauth/auth/SelectAccountAction.java
 create mode 100644 oxAuth/Server/src/main/java/org/gluu/oxauth/authorize/ws/rs/AuthorizeAction.java
 create mode 100644 oxAuth/Server/src/main/java/org/gluu/oxauth/authorize/ws/rs/AuthorizeRestWebService.java
 create mode 100644 oxAuth/Server/src/main/java/org/gluu/oxauth/authorize/ws/rs/AuthorizeRestWebServiceImpl.java
 create mode 100644 oxAuth/Server/src/main/java/org/gluu/oxauth/authorize/ws/rs/AuthorizeRestWebServiceValidator.java
 create mode 100644 oxAuth/Server/src/main/java/org/gluu/oxauth/authorize/ws/rs/ConsentGathererService.java
 create mode 100644 oxAuth/Server/src/main/java/org/gluu/oxauth/authorize/ws/rs/ConsentGatheringSessionService.java
 create mode 100644 oxAuth/Server/src/main/java/org/gluu/oxauth/authorize/ws/rs/DeviceAuthorizationAction.java
 create mode 100644 oxAuth/Server/src/main/java/org/gluu/oxauth/authorize/ws/rs/DeviceAuthorizationRestWebService.java
 create mode 100644 oxAuth/Server/src/main/java/org/gluu/oxauth/authorize/ws/rs/DeviceAuthorizationRestWebServiceImpl.java
 create mode 100644 oxAuth/Server/src/main/java/org/gluu/oxauth/authorize/ws/rs/LoginAction.java
 create mode 100644 oxAuth/Server/src/main/java/org/gluu/oxauth/authorize/ws/rs/LogoutAction.java
 create mode 100644 oxAuth/Server/src/main/java/org/gluu/oxauth/bcauthorize/ws/rs/BackchannelAuthorizeRestWebService.java
 create mode 100644 oxAuth/Server/src/main/java/org/gluu/oxauth/bcauthorize/ws/rs/BackchannelAuthorizeRestWebServiceImpl.java
 create mode 100644 oxAuth/Server/src/main/java/org/gluu/oxauth/bcauthorize/ws/rs/BackchannelDeviceRegistrationRestWebService.java
 create mode 100644 oxAuth/Server/src/main/java/org/gluu/oxauth/bcauthorize/ws/rs/BackchannelDeviceRegistrationRestWebServiceImpl.java
 create mode 100644 oxAuth/Server/src/main/java/org/gluu/oxauth/bcauthorize/ws/rs/CIBAAuthorizeAction.java
 create mode 100644 oxAuth/Server/src/main/java/org/gluu/oxauth/ciba/CIBAAuthorizeParamsValidatorService.java
 create mode 100644 oxAuth/Server/src/main/java/org/gluu/oxauth/ciba/CIBAConfigurationService.java
 create mode 100644 oxAuth/Server/src/main/java/org/gluu/oxauth/ciba/CIBADeviceRegistrationValidatorService.java
 create mode 100644 oxAuth/Server/src/main/java/org/gluu/oxauth/ciba/CIBAEndUserNotificationService.java
 create mode 100644 oxAuth/Server/src/main/java/org/gluu/oxauth/ciba/CIBAPingCallbackService.java
 create mode 100644 oxAuth/Server/src/main/java/org/gluu/oxauth/ciba/CIBAPushErrorService.java
 create mode 100644 oxAuth/Server/src/main/java/org/gluu/oxauth/ciba/CIBAPushTokenDeliveryService.java
 create mode 100644 oxAuth/Server/src/main/java/org/gluu/oxauth/ciba/CIBARegisterClientMetadataService.java
 create mode 100644 oxAuth/Server/src/main/java/org/gluu/oxauth/ciba/CIBARegisterClientResponseService.java
 create mode 100644 oxAuth/Server/src/main/java/org/gluu/oxauth/ciba/CIBARegisterParamsValidatorService.java
 create mode 100644 oxAuth/Server/src/main/java/org/gluu/oxauth/clientinfo/ws/rs/ClientInfoRestWebService.java
 create mode 100644 oxAuth/Server/src/main/java/org/gluu/oxauth/clientinfo/ws/rs/ClientInfoRestWebServiceImpl.java
 create mode 100644 oxAuth/Server/src/main/java/org/gluu/oxauth/crypto/cert/CertificateParser.java
 create mode 100644 oxAuth/Server/src/main/java/org/gluu/oxauth/crypto/random/ChallengeGenerator.java
 create mode 100644 oxAuth/Server/src/main/java/org/gluu/oxauth/crypto/random/RandomChallengeGenerator.java
 create mode 100644 oxAuth/Server/src/main/java/org/gluu/oxauth/crypto/signature/SHA256withECDSASignatureVerification.java
 create mode 100644 oxAuth/Server/src/main/java/org/gluu/oxauth/crypto/signature/SignatureVerification.java
 create mode 100644 oxAuth/Server/src/main/java/org/gluu/oxauth/exception/GlobalExceptionHandler.java
 create mode 100644 oxAuth/Server/src/main/java/org/gluu/oxauth/exception/GlobalExceptionHandlerFactory.java
 create mode 100644 oxAuth/Server/src/main/java/org/gluu/oxauth/exception/InvalidSchemaUpdateException.java
 create mode 100644 oxAuth/Server/src/main/java/org/gluu/oxauth/exception/UncaughtException.java
 create mode 100644 oxAuth/Server/src/main/java/org/gluu/oxauth/exception/fido/u2f/BadConfigurationException.java
 create mode 100644 oxAuth/Server/src/main/java/org/gluu/oxauth/exception/fido/u2f/DeviceCompromisedException.java
 create mode 100644 oxAuth/Server/src/main/java/org/gluu/oxauth/exception/fido/u2f/InvalidDeviceCounterException.java
 create mode 100644 oxAuth/Server/src/main/java/org/gluu/oxauth/exception/fido/u2f/InvalidKeyHandleDeviceException.java
 create mode 100644 oxAuth/Server/src/main/java/org/gluu/oxauth/exception/fido/u2f/NoEligableDevicesException.java
 create mode 100644 oxAuth/Server/src/main/java/org/gluu/oxauth/filter/CorsFilter.java
 create mode 100644 oxAuth/Server/src/main/java/org/gluu/oxauth/filter/CorsFilterConfig.java
 create mode 100644 oxAuth/Server/src/main/java/org/gluu/oxauth/gluu/ws/rs/GluuConfigurationWS.java
 create mode 100644 oxAuth/Server/src/main/java/org/gluu/oxauth/i18n/ApplicationFacesLocalizationConfigPopulator.java
 create mode 100644 oxAuth/Server/src/main/java/org/gluu/oxauth/i18n/CustomResourceBundle.java
 create mode 100644 oxAuth/Server/src/main/java/org/gluu/oxauth/i18n/LanguageBean.java
 create mode 100644 oxAuth/Server/src/main/java/org/gluu/oxauth/idgen/ws/rs/IdGenService.java
 create mode 100644 oxAuth/Server/src/main/java/org/gluu/oxauth/idgen/ws/rs/InumGenerator.java
 create mode 100644 oxAuth/Server/src/main/java/org/gluu/oxauth/introspection/ws/rs/IntrospectionWebService.java
 create mode 100644 oxAuth/Server/src/main/java/org/gluu/oxauth/jwk/ws/rs/JwkRestWebService.java
 create mode 100644 oxAuth/Server/src/main/java/org/gluu/oxauth/jwk/ws/rs/JwkRestWebServiceImpl.java
 create mode 100644 oxAuth/Server/src/main/java/org/gluu/oxauth/model/GluuOrganization.java
 create mode 100644 oxAuth/Server/src/main/java/org/gluu/oxauth/model/audit/Action.java
 create mode 100644 oxAuth/Server/src/main/java/org/gluu/oxauth/model/audit/OAuth2AuditLog.java
 create mode 100644 oxAuth/Server/src/main/java/org/gluu/oxauth/model/auth/AuthenticationMode.java
 create mode 100644 oxAuth/Server/src/main/java/org/gluu/oxauth/model/authorize/AuthorizeParamsValidator.java
 create mode 100644 oxAuth/Server/src/main/java/org/gluu/oxauth/model/authorize/Claim.java
 create mode 100644 oxAuth/Server/src/main/java/org/gluu/oxauth/model/authorize/ClaimValue.java
 create mode 100644 oxAuth/Server/src/main/java/org/gluu/oxauth/model/authorize/ClaimValueType.java
 create mode 100644 oxAuth/Server/src/main/java/org/gluu/oxauth/model/authorize/IdTokenMember.java
 create mode 100644 oxAuth/Server/src/main/java/org/gluu/oxauth/model/authorize/JwtAuthorizationRequest.java
 create mode 100644 oxAuth/Server/src/main/java/org/gluu/oxauth/model/authorize/ScopeChecker.java
 create mode 100644 oxAuth/Server/src/main/java/org/gluu/oxauth/model/authorize/UserInfoMember.java
 create mode 100644 oxAuth/Server/src/main/java/org/gluu/oxauth/model/clientinfo/ClientInfoErrorResponseType.java
 create mode 100644 oxAuth/Server/src/main/java/org/gluu/oxauth/model/clientinfo/ClientInfoParamsValidator.java
 create mode 100644 oxAuth/Server/src/main/java/org/gluu/oxauth/model/common/AbstractAuthorizationGrant.java
 create mode 100644 oxAuth/Server/src/main/java/org/gluu/oxauth/model/common/AbstractToken.java
 create mode 100644 oxAuth/Server/src/main/java/org/gluu/oxauth/model/common/AccessToken.java
 create mode 100644 oxAuth/Server/src/main/java/org/gluu/oxauth/model/common/AuthorizationCode.java
 create mode 100644 oxAuth/Server/src/main/java/org/gluu/oxauth/model/common/AuthorizationCodeGrant.java
 create mode 100644 oxAuth/Server/src/main/java/org/gluu/oxauth/model/common/AuthorizationGrant.java
 create mode 100644 oxAuth/Server/src/main/java/org/gluu/oxauth/model/common/AuthorizationGrantList.java
 create mode 100644 oxAuth/Server/src/main/java/org/gluu/oxauth/model/common/AuthorizationGrantType.java
 create mode 100644 oxAuth/Server/src/main/java/org/gluu/oxauth/model/common/CIBAGrant.java
 create mode 100644 oxAuth/Server/src/main/java/org/gluu/oxauth/model/common/CacheGrant.java
 create mode 100644 oxAuth/Server/src/main/java/org/gluu/oxauth/model/common/CibaRequestCacheControl.java
 create mode 100644 oxAuth/Server/src/main/java/org/gluu/oxauth/model/common/CibaRequestStatus.java
 create mode 100644 oxAuth/Server/src/main/java/org/gluu/oxauth/model/common/ClientCredentialsGrant.java
 create mode 100644 oxAuth/Server/src/main/java/org/gluu/oxauth/model/common/ClientTokens.java
 create mode 100644 oxAuth/Server/src/main/java/org/gluu/oxauth/model/common/DefaultScope.java
 create mode 100644 oxAuth/Server/src/main/java/org/gluu/oxauth/model/common/DeviceAuthorizationCacheControl.java
 create mode 100644 oxAuth/Server/src/main/java/org/gluu/oxauth/model/common/DeviceAuthorizationStatus.java
 create mode 100644 oxAuth/Server/src/main/java/org/gluu/oxauth/model/common/DeviceCodeGrant.java
 create mode 100644 oxAuth/Server/src/main/java/org/gluu/oxauth/model/common/ExecutionContext.java
 create mode 100644 oxAuth/Server/src/main/java/org/gluu/oxauth/model/common/IAuthorizationGrant.java
 create mode 100644 oxAuth/Server/src/main/java/org/gluu/oxauth/model/common/IAuthorizationGrantList.java
 create mode 100644 oxAuth/Server/src/main/java/org/gluu/oxauth/model/common/IdToken.java
 create mode 100644 oxAuth/Server/src/main/java/org/gluu/oxauth/model/common/ImplicitGrant.java
 create mode 100644 oxAuth/Server/src/main/java/org/gluu/oxauth/model/common/RefreshToken.java
 create mode 100644 oxAuth/Server/src/main/java/org/gluu/oxauth/model/common/ResourceOwnerPasswordCredentialsGrant.java
 create mode 100644 oxAuth/Server/src/main/java/org/gluu/oxauth/model/common/SessionTokens.java
 create mode 100644 oxAuth/Server/src/main/java/org/gluu/oxauth/model/common/SimpleAuthorizationGrant.java
 create mode 100644 oxAuth/Server/src/main/java/org/gluu/oxauth/model/common/UnmodifiableAuthorizationGrant.java
 create mode 100644 oxAuth/Server/src/main/java/org/gluu/oxauth/model/config/Conf.java
 create mode 100644 oxAuth/Server/src/main/java/org/gluu/oxauth/model/config/ConfigurationFactory.java
 create mode 100644 oxAuth/Server/src/main/java/org/gluu/oxauth/model/config/Constants.java
 create mode 100644 oxAuth/Server/src/main/java/org/gluu/oxauth/model/config/WebKeysConfiguration.java
 create mode 100644 oxAuth/Server/src/main/java/org/gluu/oxauth/model/discovery/OpenIdConnectDiscoveryParamsValidator.java
 create mode 100644 oxAuth/Server/src/main/java/org/gluu/oxauth/model/error/ErrorMessageList.java
 create mode 100644 oxAuth/Server/src/main/java/org/gluu/oxauth/model/error/ErrorMessages.java
 create mode 100644 oxAuth/Server/src/main/java/org/gluu/oxauth/model/error/ErrorResponseFactory.java
 create mode 100644 oxAuth/Server/src/main/java/org/gluu/oxauth/model/error/JsonErrorResponse.java
 create mode 100644 oxAuth/Server/src/main/java/org/gluu/oxauth/model/exception/AcrChangedException.java
 create mode 100644 oxAuth/Server/src/main/java/org/gluu/oxauth/model/exception/InvalidSessionStateException.java
 create mode 100644 oxAuth/Server/src/main/java/org/gluu/oxauth/model/exception/InvalidStateException.java
 create mode 100644 oxAuth/Server/src/main/java/org/gluu/oxauth/model/fido/u2f/AuthenticateRequestMessageLdap.java
 create mode 100644 oxAuth/Server/src/main/java/org/gluu/oxauth/model/fido/u2f/DeviceRegistration.java
 create mode 100644 oxAuth/Server/src/main/java/org/gluu/oxauth/model/fido/u2f/DeviceRegistrationConfiguration.java
 create mode 100644 oxAuth/Server/src/main/java/org/gluu/oxauth/model/fido/u2f/DeviceRegistrationResult.java
 create mode 100644 oxAuth/Server/src/main/java/org/gluu/oxauth/model/fido/u2f/RegisterRequestMessageLdap.java
 create mode 100644 oxAuth/Server/src/main/java/org/gluu/oxauth/model/fido/u2f/RequestMessageLdap.java
 create mode 100644 oxAuth/Server/src/main/java/org/gluu/oxauth/model/ldap/CIBARequest.java
 create mode 100644 oxAuth/Server/src/main/java/org/gluu/oxauth/model/ldap/ClientAuthorization.java
 create mode 100644 oxAuth/Server/src/main/java/org/gluu/oxauth/model/ldap/SchemaEntry.java
 create mode 100644 oxAuth/Server/src/main/java/org/gluu/oxauth/model/ldap/TokenAttributes.java
 create mode 100644 oxAuth/Server/src/main/java/org/gluu/oxauth/model/ldap/TokenLdap.java
 create mode 100644 oxAuth/Server/src/main/java/org/gluu/oxauth/model/ldap/TokenType.java
 create mode 100644 oxAuth/Server/src/main/java/org/gluu/oxauth/model/ldap/UserGroup.java
 create mode 100644 oxAuth/Server/src/main/java/org/gluu/oxauth/model/registration/RegisterParamsValidator.java
 create mode 100644 oxAuth/Server/src/main/java/org/gluu/oxauth/model/session/SessionClient.java
 create mode 100644 oxAuth/Server/src/main/java/org/gluu/oxauth/model/token/ClientAssertion.java
 create mode 100644 oxAuth/Server/src/main/java/org/gluu/oxauth/model/token/HandleTokenFactory.java
 create mode 100644 oxAuth/Server/src/main/java/org/gluu/oxauth/model/token/HttpAuthTokenType.java
 create mode 100644 oxAuth/Server/src/main/java/org/gluu/oxauth/model/token/IdTokenFactory.java
 create mode 100644 oxAuth/Server/src/main/java/org/gluu/oxauth/model/token/JwrService.java
 create mode 100644 oxAuth/Server/src/main/java/org/gluu/oxauth/model/token/JwtSigner.java
 create mode 100644 oxAuth/Server/src/main/java/org/gluu/oxauth/model/token/PersistentJwt.java
 create mode 100644 oxAuth/Server/src/main/java/org/gluu/oxauth/model/token/TokenParamsValidator.java
 create mode 100644 oxAuth/Server/src/main/java/org/gluu/oxauth/model/token/ValidateTokenParamsValidator.java
 create mode 100644 oxAuth/Server/src/main/java/org/gluu/oxauth/model/userinfo/UserInfoParamsValidator.java
 create mode 100644 oxAuth/Server/src/main/java/org/gluu/oxauth/register/ws/rs/RegisterRestWebService.java
 create mode 100644 oxAuth/Server/src/main/java/org/gluu/oxauth/register/ws/rs/RegisterRestWebServiceImpl.java
 create mode 100644 oxAuth/Server/src/main/java/org/gluu/oxauth/revoke/RevokeRestWebService.java
 create mode 100644 oxAuth/Server/src/main/java/org/gluu/oxauth/revoke/RevokeRestWebServiceImpl.java
 create mode 100644 oxAuth/Server/src/main/java/org/gluu/oxauth/revoke/RevokeSessionRestWebService.java
 create mode 100644 oxAuth/Server/src/main/java/org/gluu/oxauth/security/Identity.java
 create mode 100644 oxAuth/Server/src/main/java/org/gluu/oxauth/service/AppInitializer.java
 create mode 100644 oxAuth/Server/src/main/java/org/gluu/oxauth/service/AttributeService.java
 create mode 100644 oxAuth/Server/src/main/java/org/gluu/oxauth/service/AuthenticationFilterService.java
 create mode 100644 oxAuth/Server/src/main/java/org/gluu/oxauth/service/AuthenticationProtectionService.java
 create mode 100644 oxAuth/Server/src/main/java/org/gluu/oxauth/service/AuthenticationService.java
 create mode 100644 oxAuth/Server/src/main/java/org/gluu/oxauth/service/AuthorizeService.java
 create mode 100644 oxAuth/Server/src/main/java/org/gluu/oxauth/service/BaseAuthFilterService.java
 create mode 100644 oxAuth/Server/src/main/java/org/gluu/oxauth/service/CleanerTimer.java
 create mode 100644 oxAuth/Server/src/main/java/org/gluu/oxauth/service/ClientAuthorizationsService.java
 create mode 100644 oxAuth/Server/src/main/java/org/gluu/oxauth/service/ClientFilterService.java
 create mode 100644 oxAuth/Server/src/main/java/org/gluu/oxauth/service/ClientService.java
 create mode 100644 oxAuth/Server/src/main/java/org/gluu/oxauth/service/CookieService.java
 create mode 100644 oxAuth/Server/src/main/java/org/gluu/oxauth/service/CryptoProviderProviderFactory.java
 create mode 100644 oxAuth/Server/src/main/java/org/gluu/oxauth/service/DeviceAuthorizationService.java
 create mode 100644 oxAuth/Server/src/main/java/org/gluu/oxauth/service/ErrorHandlerService.java
 create mode 100644 oxAuth/Server/src/main/java/org/gluu/oxauth/service/GrantService.java
 create mode 100644 oxAuth/Server/src/main/java/org/gluu/oxauth/service/KeyGeneratorTimer.java
 create mode 100644 oxAuth/Server/src/main/java/org/gluu/oxauth/service/LdapCustomAuthenticationConfigurationService.java
 create mode 100644 oxAuth/Server/src/main/java/org/gluu/oxauth/service/LocalResponseCache.java
 create mode 100644 oxAuth/Server/src/main/java/org/gluu/oxauth/service/MetricService.java
 create mode 100644 oxAuth/Server/src/main/java/org/gluu/oxauth/service/OrganizationService.java
 create mode 100644 oxAuth/Server/src/main/java/org/gluu/oxauth/service/OxAuthConfigurationService.java
 create mode 100644 oxAuth/Server/src/main/java/org/gluu/oxauth/service/PairwiseIdentifierService.java
 create mode 100644 oxAuth/Server/src/main/java/org/gluu/oxauth/service/RedirectUriResponse.java
 create mode 100644 oxAuth/Server/src/main/java/org/gluu/oxauth/service/RedirectionUriService.java
 create mode 100644 oxAuth/Server/src/main/java/org/gluu/oxauth/service/RequestParameterService.java
 create mode 100644 oxAuth/Server/src/main/java/org/gluu/oxauth/service/ResteasyInitializer.java
 create mode 100644 oxAuth/Server/src/main/java/org/gluu/oxauth/service/ScopeService.java
 create mode 100644 oxAuth/Server/src/main/java/org/gluu/oxauth/service/SectorIdentifierService.java
 create mode 100644 oxAuth/Server/src/main/java/org/gluu/oxauth/service/ServerCryptoProvider.java
 create mode 100644 oxAuth/Server/src/main/java/org/gluu/oxauth/service/SessionIdService.java
 create mode 100644 oxAuth/Server/src/main/java/org/gluu/oxauth/service/SpontaneousScopeService.java
 create mode 100644 oxAuth/Server/src/main/java/org/gluu/oxauth/service/UserGroupService.java
 create mode 100644 oxAuth/Server/src/main/java/org/gluu/oxauth/service/UserService.java
 create mode 100644 oxAuth/Server/src/main/java/org/gluu/oxauth/service/cdi/event/AuthConfigurationEvent.java
 create mode 100644 oxAuth/Server/src/main/java/org/gluu/oxauth/service/cdi/event/ExpirationEvent.java
 create mode 100644 oxAuth/Server/src/main/java/org/gluu/oxauth/service/cdi/event/KeyGenerationEvent.java
 create mode 100644 oxAuth/Server/src/main/java/org/gluu/oxauth/service/cdi/event/ReloadAuthScript.java
 create mode 100644 oxAuth/Server/src/main/java/org/gluu/oxauth/service/cdi/event/StatEvent.java
 create mode 100644 oxAuth/Server/src/main/java/org/gluu/oxauth/service/ciba/CibaEncryptionService.java
 create mode 100644 oxAuth/Server/src/main/java/org/gluu/oxauth/service/ciba/CibaRequestService.java
 create mode 100644 oxAuth/Server/src/main/java/org/gluu/oxauth/service/ciba/CibaRequestsProcessorJob.java
 create mode 100644 oxAuth/Server/src/main/java/org/gluu/oxauth/service/custom/CustomScriptService.java
 create mode 100644 oxAuth/Server/src/main/java/org/gluu/oxauth/service/date/DateFormatterService.java
 create mode 100644 oxAuth/Server/src/main/java/org/gluu/oxauth/service/expiration/ExpId.java
 create mode 100644 oxAuth/Server/src/main/java/org/gluu/oxauth/service/expiration/ExpType.java
 create mode 100644 oxAuth/Server/src/main/java/org/gluu/oxauth/service/expiration/ExpirationNotificatorTimer.java
 create mode 100644 oxAuth/Server/src/main/java/org/gluu/oxauth/service/external/ExternalApplicationSessionService.java
 create mode 100644 oxAuth/Server/src/main/java/org/gluu/oxauth/service/external/ExternalAuthenticationService.java
 create mode 100644 oxAuth/Server/src/main/java/org/gluu/oxauth/service/external/ExternalCibaEndUserNotificationService.java
 create mode 100644 oxAuth/Server/src/main/java/org/gluu/oxauth/service/external/ExternalConsentGatheringService.java
 create mode 100644 oxAuth/Server/src/main/java/org/gluu/oxauth/service/external/ExternalDynamicClientRegistrationService.java
 create mode 100644 oxAuth/Server/src/main/java/org/gluu/oxauth/service/external/ExternalDynamicScopeService.java
 create mode 100644 oxAuth/Server/src/main/java/org/gluu/oxauth/service/external/ExternalEndSessionService.java
 create mode 100644 oxAuth/Server/src/main/java/org/gluu/oxauth/service/external/ExternalIdGeneratorService.java
 create mode 100644 oxAuth/Server/src/main/java/org/gluu/oxauth/service/external/ExternalIntrospectionService.java
 create mode 100644 oxAuth/Server/src/main/java/org/gluu/oxauth/service/external/ExternalPostAuthnService.java
 create mode 100644 oxAuth/Server/src/main/java/org/gluu/oxauth/service/external/ExternalResourceOwnerPasswordCredentialsService.java
 create mode 100644 oxAuth/Server/src/main/java/org/gluu/oxauth/service/external/ExternalRevokeTokenService.java
 create mode 100644 oxAuth/Server/src/main/java/org/gluu/oxauth/service/external/ExternalSpontaneousScopeService.java
 create mode 100644 oxAuth/Server/src/main/java/org/gluu/oxauth/service/external/ExternalUmaClaimsGatheringService.java
 create mode 100644 oxAuth/Server/src/main/java/org/gluu/oxauth/service/external/ExternalUmaRptClaimsService.java
 create mode 100644 oxAuth/Server/src/main/java/org/gluu/oxauth/service/external/ExternalUmaRptPolicyService.java
 create mode 100644 oxAuth/Server/src/main/java/org/gluu/oxauth/service/external/ExternalUpdateTokenService.java
 create mode 100644 oxAuth/Server/src/main/java/org/gluu/oxauth/service/external/context/ConsentGatheringContext.java
 create mode 100644 oxAuth/Server/src/main/java/org/gluu/oxauth/service/external/context/DynamicClientRegistrationContext.java
 create mode 100644 oxAuth/Server/src/main/java/org/gluu/oxauth/service/external/context/DynamicScopeExternalContext.java
 create mode 100644 oxAuth/Server/src/main/java/org/gluu/oxauth/service/external/context/EndSessionContext.java
 create mode 100644 oxAuth/Server/src/main/java/org/gluu/oxauth/service/external/context/ExternalCibaEndUserNotificationContext.java
 create mode 100644 oxAuth/Server/src/main/java/org/gluu/oxauth/service/external/context/ExternalIntrospectionContext.java
 create mode 100644 oxAuth/Server/src/main/java/org/gluu/oxauth/service/external/context/ExternalPostAuthnContext.java
 create mode 100644 oxAuth/Server/src/main/java/org/gluu/oxauth/service/external/context/ExternalResourceOwnerPasswordCredentialsContext.java
 create mode 100644 oxAuth/Server/src/main/java/org/gluu/oxauth/service/external/context/ExternalScriptContext.java
 create mode 100644 oxAuth/Server/src/main/java/org/gluu/oxauth/service/external/context/ExternalUmaRptClaimsContext.java
 create mode 100644 oxAuth/Server/src/main/java/org/gluu/oxauth/service/external/context/ExternalUpdateTokenContext.java
 create mode 100644 oxAuth/Server/src/main/java/org/gluu/oxauth/service/external/context/RevokeTokenContext.java
 create mode 100644 oxAuth/Server/src/main/java/org/gluu/oxauth/service/external/context/SpontaneousScopeExternalContext.java
 create mode 100644 oxAuth/Server/src/main/java/org/gluu/oxauth/service/external/internal/InternalDefaultPersonAuthenticationType.java
 create mode 100644 oxAuth/Server/src/main/java/org/gluu/oxauth/service/external/session/SessionEvent.java
 create mode 100644 oxAuth/Server/src/main/java/org/gluu/oxauth/service/external/session/SessionEventType.java
 create mode 100644 oxAuth/Server/src/main/java/org/gluu/oxauth/service/fido/u2f/ApplicationService.java
 create mode 100644 oxAuth/Server/src/main/java/org/gluu/oxauth/service/fido/u2f/AuthenticationService.java
 create mode 100644 oxAuth/Server/src/main/java/org/gluu/oxauth/service/fido/u2f/ClientDataValidationService.java
 create mode 100644 oxAuth/Server/src/main/java/org/gluu/oxauth/service/fido/u2f/DeviceRegistrationService.java
 create mode 100644 oxAuth/Server/src/main/java/org/gluu/oxauth/service/fido/u2f/RawAuthenticationService.java
 create mode 100644 oxAuth/Server/src/main/java/org/gluu/oxauth/service/fido/u2f/RawRegistrationService.java
 create mode 100644 oxAuth/Server/src/main/java/org/gluu/oxauth/service/fido/u2f/RegistrationService.java
 create mode 100644 oxAuth/Server/src/main/java/org/gluu/oxauth/service/fido/u2f/RequestService.java
 create mode 100644 oxAuth/Server/src/main/java/org/gluu/oxauth/service/fido/u2f/UserSessionIdService.java
 create mode 100644 oxAuth/Server/src/main/java/org/gluu/oxauth/service/fido/u2f/ValidationService.java
 create mode 100644 oxAuth/Server/src/main/java/org/gluu/oxauth/service/fido/u2f/util/KeyGenerator.java
 create mode 100644 oxAuth/Server/src/main/java/org/gluu/oxauth/service/logger/LoggerService.java
 create mode 100644 oxAuth/Server/src/main/java/org/gluu/oxauth/service/net/HttpService.java
 create mode 100644 oxAuth/Server/src/main/java/org/gluu/oxauth/service/net/HttpService2.java
 create mode 100644 oxAuth/Server/src/main/java/org/gluu/oxauth/service/push/sns/PushPlatform.java
 create mode 100644 oxAuth/Server/src/main/java/org/gluu/oxauth/service/push/sns/PushSnsService.java
 create mode 100644 oxAuth/Server/src/main/java/org/gluu/oxauth/service/stat/StatService.java
 create mode 100644 oxAuth/Server/src/main/java/org/gluu/oxauth/service/stat/StatTimer.java
 create mode 100644 oxAuth/Server/src/main/java/org/gluu/oxauth/service/status/ldap/LdapStatusTimer.java
 create mode 100644 oxAuth/Server/src/main/java/org/gluu/oxauth/service/token/TokenService.java
 create mode 100644 oxAuth/Server/src/main/java/org/gluu/oxauth/servlet/BcFirebaseMessagingSwServlet.java
 create mode 100644 oxAuth/Server/src/main/java/org/gluu/oxauth/servlet/OpenIdConfiguration.java
 create mode 100644 oxAuth/Server/src/main/java/org/gluu/oxauth/servlet/OxAuthFaviconServlet.java
 create mode 100644 oxAuth/Server/src/main/java/org/gluu/oxauth/servlet/OxAuthLogoServlet.java
 create mode 100644 oxAuth/Server/src/main/java/org/gluu/oxauth/servlet/SectorIdentifier.java
 create mode 100644 oxAuth/Server/src/main/java/org/gluu/oxauth/servlet/WebFinger.java
 create mode 100644 oxAuth/Server/src/main/java/org/gluu/oxauth/session/ws/rs/CheckSessionStatusRestWebServiceImpl.java
 create mode 100644 oxAuth/Server/src/main/java/org/gluu/oxauth/session/ws/rs/EndSessionRestWebService.java
 create mode 100644 oxAuth/Server/src/main/java/org/gluu/oxauth/session/ws/rs/EndSessionRestWebServiceImpl.java
 create mode 100644 oxAuth/Server/src/main/java/org/gluu/oxauth/session/ws/rs/EndSessionUtils.java
 create mode 100644 oxAuth/Server/src/main/java/org/gluu/oxauth/session/ws/rs/LogoutTokenFactory.java
 create mode 100644 oxAuth/Server/src/main/java/org/gluu/oxauth/token/ws/rs/TokenRestWebService.java
 create mode 100644 oxAuth/Server/src/main/java/org/gluu/oxauth/token/ws/rs/TokenRestWebServiceImpl.java
 create mode 100644 oxAuth/Server/src/main/java/org/gluu/oxauth/uma/authorization/Claims.java
 create mode 100644 oxAuth/Server/src/main/java/org/gluu/oxauth/uma/authorization/IPolicyExternalAuthorization.java
 create mode 100644 oxAuth/Server/src/main/java/org/gluu/oxauth/uma/authorization/PolicyExternalAuthorizationEnum.java
 create mode 100644 oxAuth/Server/src/main/java/org/gluu/oxauth/uma/authorization/UmaAuthorizationContext.java
 create mode 100644 oxAuth/Server/src/main/java/org/gluu/oxauth/uma/authorization/UmaAuthorizationContextBuilder.java
 create mode 100644 oxAuth/Server/src/main/java/org/gluu/oxauth/uma/authorization/UmaGatherContext.java
 create mode 100644 oxAuth/Server/src/main/java/org/gluu/oxauth/uma/authorization/UmaPCT.java
 create mode 100644 oxAuth/Server/src/main/java/org/gluu/oxauth/uma/authorization/UmaRPT.java
 create mode 100644 oxAuth/Server/src/main/java/org/gluu/oxauth/uma/authorization/UmaScriptByScope.java
 create mode 100644 oxAuth/Server/src/main/java/org/gluu/oxauth/uma/authorization/UmaWebException.java
 create mode 100644 oxAuth/Server/src/main/java/org/gluu/oxauth/uma/service/RedirectParameters.java
 create mode 100644 oxAuth/Server/src/main/java/org/gluu/oxauth/uma/service/UmaExpressionService.java
 create mode 100644 oxAuth/Server/src/main/java/org/gluu/oxauth/uma/service/UmaGatherer.java
 create mode 100644 oxAuth/Server/src/main/java/org/gluu/oxauth/uma/service/UmaNeedsInfoService.java
 create mode 100644 oxAuth/Server/src/main/java/org/gluu/oxauth/uma/service/UmaPctService.java
 create mode 100644 oxAuth/Server/src/main/java/org/gluu/oxauth/uma/service/UmaPermissionService.java
 create mode 100644 oxAuth/Server/src/main/java/org/gluu/oxauth/uma/service/UmaResourceService.java
 create mode 100644 oxAuth/Server/src/main/java/org/gluu/oxauth/uma/service/UmaRptService.java
 create mode 100644 oxAuth/Server/src/main/java/org/gluu/oxauth/uma/service/UmaScopeService.java
 create mode 100644 oxAuth/Server/src/main/java/org/gluu/oxauth/uma/service/UmaSessionService.java
 create mode 100644 oxAuth/Server/src/main/java/org/gluu/oxauth/uma/service/UmaTokenService.java
 create mode 100644 oxAuth/Server/src/main/java/org/gluu/oxauth/uma/service/UmaValidationService.java
 create mode 100644 oxAuth/Server/src/main/java/org/gluu/oxauth/uma/ws/rs/UmaGatheringWS.java
 create mode 100644 oxAuth/Server/src/main/java/org/gluu/oxauth/uma/ws/rs/UmaMetadataWS.java
 create mode 100644 oxAuth/Server/src/main/java/org/gluu/oxauth/uma/ws/rs/UmaPermissionRegistrationWS.java
 create mode 100644 oxAuth/Server/src/main/java/org/gluu/oxauth/uma/ws/rs/UmaResourceRegistrationWS.java
 create mode 100644 oxAuth/Server/src/main/java/org/gluu/oxauth/uma/ws/rs/UmaRptIntrospectionWS.java
 create mode 100644 oxAuth/Server/src/main/java/org/gluu/oxauth/uma/ws/rs/UmaScopeIconWS.java
 create mode 100644 oxAuth/Server/src/main/java/org/gluu/oxauth/uma/ws/rs/UmaScopeWS.java
 create mode 100644 oxAuth/Server/src/main/java/org/gluu/oxauth/userinfo/ws/rs/UserInfoRestWebService.java
 create mode 100644 oxAuth/Server/src/main/java/org/gluu/oxauth/userinfo/ws/rs/UserInfoRestWebServiceImpl.java
 create mode 100644 oxAuth/Server/src/main/java/org/gluu/oxauth/util/CertUtil.java
 create mode 100644 oxAuth/Server/src/main/java/org/gluu/oxauth/util/PasswordValidator.java
 create mode 100644 oxAuth/Server/src/main/java/org/gluu/oxauth/util/QueryStringDecoder.java
 create mode 100644 oxAuth/Server/src/main/java/org/gluu/oxauth/util/RedirectUtil.java
 create mode 100644 oxAuth/Server/src/main/java/org/gluu/oxauth/util/ServerUtil.java
 create mode 100644 oxAuth/Server/src/main/java/org/gluu/oxauth/util/TokenHashUtil.java
 create mode 100644 oxAuth/Server/src/main/java/org/gluu/oxauth/ws/rs/controller/HealthCheckController.java
 create mode 100644 oxAuth/Server/src/main/java/org/gluu/oxauth/ws/rs/fido/u2f/U2fAuthenticationWS.java
 create mode 100644 oxAuth/Server/src/main/java/org/gluu/oxauth/ws/rs/fido/u2f/U2fConfigurationWS.java
 create mode 100644 oxAuth/Server/src/main/java/org/gluu/oxauth/ws/rs/fido/u2f/U2fRegistrationWS.java
 create mode 100644 oxAuth/Server/src/main/java/org/gluu/oxauth/ws/rs/stat/StatResponse.java
 create mode 100644 oxAuth/Server/src/main/java/org/gluu/oxauth/ws/rs/stat/StatResponseItem.java
 create mode 100644 oxAuth/Server/src/main/java/org/gluu/oxauth/ws/rs/stat/StatWS.java
 create mode 100644 oxAuth/Server/src/main/resources/META-INF/beans.xml
 create mode 100644 oxAuth/Server/src/main/resources/META-INF/navigation/cas2.navigation.xml
 create mode 100644 oxAuth/Server/src/main/resources/META-INF/navigation/cert.navigation.xml
 create mode 100644 oxAuth/Server/src/main/resources/META-INF/navigation/duo.navigation.xml
 create mode 100644 oxAuth/Server/src/main/resources/META-INF/navigation/gplus.navigation.xml
 create mode 100644 oxAuth/Server/src/main/resources/META-INF/navigation/otp.navigation.xml
 create mode 100644 oxAuth/Server/src/main/resources/META-INF/navigation/oxpush.navigation.xml
 create mode 100644 oxAuth/Server/src/main/resources/META-INF/navigation/passport.navigation.xml
 create mode 100644 oxAuth/Server/src/main/resources/META-INF/navigation/saml.navigation.xml
 create mode 100644 oxAuth/Server/src/main/resources/META-INF/navigation/super-gluu.navigation.xml
 create mode 100644 oxAuth/Server/src/main/resources/META-INF/navigation/u2f.navigation.xml
 create mode 100644 oxAuth/Server/src/main/resources/META-INF/navigation/uaf.navigation.xml
 create mode 100644 oxAuth/Server/src/main/resources/META-INF/navigation/uma2.sample.navigation.xml
 create mode 100644 oxAuth/Server/src/main/resources/META-INF/services/javax.faces.application.ApplicationConfigurationPopulator
 create mode 100644 oxAuth/Server/src/main/resources/ehcache.xml
 create mode 100644 oxAuth/Server/src/main/resources/faces-config.xml
 create mode 100644 oxAuth/Server/src/main/resources/log4j2.xml
 create mode 100644 oxAuth/Server/src/main/resources/oxauth.properties
 create mode 100644 oxAuth/Server/src/main/resources/oxauth_bg.properties
 create mode 100644 oxAuth/Server/src/main/resources/oxauth_de.properties
 create mode 100644 oxAuth/Server/src/main/resources/oxauth_en.properties
 create mode 100644 oxAuth/Server/src/main/resources/oxauth_es.properties
 create mode 100644 oxAuth/Server/src/main/resources/oxauth_fr.properties
 create mode 100644 oxAuth/Server/src/main/resources/oxauth_it.properties
 create mode 100644 oxAuth/Server/src/main/resources/oxauth_ru.properties
 create mode 100644 oxAuth/Server/src/main/resources/oxauth_tr.properties
 create mode 100644 oxAuth/Server/src/main/resources/quartz.properties
 create mode 100644 oxAuth/Server/src/main/resources/validation_messages.properties
 create mode 100644 oxAuth/Server/src/main/webapp-jetty/WEB-INF/jetty-env.xml
 create mode 100644 oxAuth/Server/src/main/webapp-jetty/WEB-INF/web.xml
 create mode 100644 oxAuth/Server/src/main/webapp-tomcat/META-INF/context.xml
 create mode 100644 oxAuth/Server/src/main/webapp/META-INF/MANIFEST.MF
 create mode 100644 oxAuth/Server/src/main/webapp/WEB-INF/faces-config.xml
 create mode 100644 oxAuth/Server/src/main/webapp/WEB-INF/firebase-messaging-sw.js
 create mode 100644 oxAuth/Server/src/main/webapp/WEB-INF/incl/layout/authorize-extended-template.xhtml
 create mode 100644 oxAuth/Server/src/main/webapp/WEB-INF/incl/layout/authorize-template.xhtml
 create mode 100644 oxAuth/Server/src/main/webapp/WEB-INF/incl/layout/bioid-template.xhtml
 create mode 100644 oxAuth/Server/src/main/webapp/WEB-INF/incl/layout/ciba-authorize-extended-template.xhtml
 create mode 100644 oxAuth/Server/src/main/webapp/WEB-INF/incl/layout/ciba-authorize-template.xhtml
 create mode 100644 oxAuth/Server/src/main/webapp/WEB-INF/incl/layout/login-extended-template.xhtml
 create mode 100644 oxAuth/Server/src/main/webapp/WEB-INF/incl/layout/login-template.xhtml
 create mode 100644 oxAuth/Server/src/main/webapp/WEB-INF/incl/layout/template.xhtml
 create mode 100644 oxAuth/Server/src/main/webapp/WEB-INF/incl/layout/whispeak-open-template.xhtml
 create mode 100644 oxAuth/Server/src/main/webapp/WEB-INF/static/favicon.ico
 create mode 100644 oxAuth/Server/src/main/webapp/WEB-INF/static/logo.png
 create mode 100644 oxAuth/Server/src/main/webapp/auth/bioid/bioid.xhtml
 create mode 100644 oxAuth/Server/src/main/webapp/auth/bioid/css/uui.css
 create mode 100644 oxAuth/Server/src/main/webapp/auth/bioid/images/back.svg
 create mode 100644 oxAuth/Server/src/main/webapp/auth/bioid/images/logo.svg
 create mode 100644 oxAuth/Server/src/main/webapp/auth/bioid/images/perfect.png
 create mode 100644 oxAuth/Server/src/main/webapp/auth/bioid/images/tooclose.png
 create mode 100644 oxAuth/Server/src/main/webapp/auth/bioid/images/toofaraway.png
 create mode 100644 oxAuth/Server/src/main/webapp/auth/bioid/js/bws.capture.js
 create mode 100644 oxAuth/Server/src/main/webapp/auth/bioid/js/getUserMedia.js
 create mode 100644 oxAuth/Server/src/main/webapp/auth/bioid/js/getUserMedia.min.js
 create mode 100644 oxAuth/Server/src/main/webapp/auth/bioid/js/jquery-3.5.1.min.js
 create mode 100644 oxAuth/Server/src/main/webapp/auth/bioid/js/objLoader.js
 create mode 100644 oxAuth/Server/src/main/webapp/auth/bioid/js/objLoader.min.js
 create mode 100644 oxAuth/Server/src/main/webapp/auth/bioid/js/three.min.js
 create mode 100644 oxAuth/Server/src/main/webapp/auth/bioid/js/uui.js
 create mode 100644 oxAuth/Server/src/main/webapp/auth/bioid/language/de.json
 create mode 100644 oxAuth/Server/src/main/webapp/auth/bioid/language/en.json
 create mode 100644 oxAuth/Server/src/main/webapp/auth/bioid/model/head.obj
 create mode 100644 oxAuth/Server/src/main/webapp/auth/bioid/video/nodyourhead.mp4
 create mode 100644 oxAuth/Server/src/main/webapp/auth/cas2/cas2login.xhtml
 create mode 100644 oxAuth/Server/src/main/webapp/auth/cas2/cas2postlogin.xhtml
 create mode 100644 oxAuth/Server/src/main/webapp/auth/cert/cert-invalid.xhtml
 create mode 100644 oxAuth/Server/src/main/webapp/auth/cert/cert-login.xhtml
 create mode 100644 oxAuth/Server/src/main/webapp/auth/cert/cert-not-selected.xhtml
 create mode 100644 oxAuth/Server/src/main/webapp/auth/cert/login.xhtml
 create mode 100644 oxAuth/Server/src/main/webapp/auth/compromised/complogin.xhtml
 create mode 100644 oxAuth/Server/src/main/webapp/auth/compromised/newpassword.xhtml
 create mode 100644 oxAuth/Server/src/main/webapp/auth/deduce/loginD.xhtml
 create mode 100644 oxAuth/Server/src/main/webapp/auth/duo/duologin.xhtml
 create mode 100644 oxAuth/Server/src/main/webapp/auth/duo/js/Duo-Web-v2.min.js
 create mode 100644 oxAuth/Server/src/main/webapp/auth/email_auth/entertoken.xhtml
 create mode 100644 oxAuth/Server/src/main/webapp/auth/fido2/js/base64js.js
 create mode 100644 oxAuth/Server/src/main/webapp/auth/fido2/js/base64url.js
 create mode 100644 oxAuth/Server/src/main/webapp/auth/fido2/js/webauthn.js
 create mode 100644 oxAuth/Server/src/main/webapp/auth/fido2/login.xhtml
 create mode 100644 oxAuth/Server/src/main/webapp/auth/fido2/platform.xhtml
 create mode 100644 oxAuth/Server/src/main/webapp/auth/fido2/secKeys.xhtml
 create mode 100644 oxAuth/Server/src/main/webapp/auth/fido2/step1.xhtml
 create mode 100644 oxAuth/Server/src/main/webapp/auth/forgot_password/entertoken.xhtml
 create mode 100644 oxAuth/Server/src/main/webapp/auth/forgot_password/forgot.xhtml
 create mode 100644 oxAuth/Server/src/main/webapp/auth/forgot_password/newpassword.xhtml
 create mode 100644 oxAuth/Server/src/main/webapp/auth/gplus/gpluslogin.xhtml
 create mode 100644 oxAuth/Server/src/main/webapp/auth/gplus/gpluspostlogin.xhtml
 create mode 100644 oxAuth/Server/src/main/webapp/auth/idfirst/alter_login.xhtml
 create mode 100644 oxAuth/Server/src/main/webapp/auth/idfirst/idfirst_login.xhtml
 create mode 100644 oxAuth/Server/src/main/webapp/auth/inwebo/iwauthenticate.xhtml
 create mode 100644 oxAuth/Server/src/main/webapp/auth/inwebo/iwlogin.xhtml
 create mode 100644 oxAuth/Server/src/main/webapp/auth/oneid/oneidlogin.xhtml
 create mode 100644 oxAuth/Server/src/main/webapp/auth/oneid/oneidpostlogin.xhtml
 create mode 100644 oxAuth/Server/src/main/webapp/auth/otp/enroll.xhtml
 create mode 100644 oxAuth/Server/src/main/webapp/auth/otp/otplogin.xhtml
 create mode 100644 oxAuth/Server/src/main/webapp/auth/otp_sms/otp_sms.xhtml
 create mode 100644 oxAuth/Server/src/main/webapp/auth/oxpush/oxauthenticate.xhtml
 create mode 100644 oxAuth/Server/src/main/webapp/auth/oxpush/oxlogin.xhtml
 create mode 100644 oxAuth/Server/src/main/webapp/auth/oxpush/oxpair.xhtml
 create mode 100644 oxAuth/Server/src/main/webapp/auth/passport/img/apple.png
 create mode 100644 oxAuth/Server/src/main/webapp/auth/passport/img/dropbox.png
 create mode 100644 oxAuth/Server/src/main/webapp/auth/passport/img/facebook.png
 create mode 100644 oxAuth/Server/src/main/webapp/auth/passport/img/github.png
 create mode 100644 oxAuth/Server/src/main/webapp/auth/passport/img/google.png
 create mode 100644 oxAuth/Server/src/main/webapp/auth/passport/img/linkedin.png
 create mode 100644 oxAuth/Server/src/main/webapp/auth/passport/img/openidconnect.png
 create mode 100644 oxAuth/Server/src/main/webapp/auth/passport/img/tumblr.png
 create mode 100644 oxAuth/Server/src/main/webapp/auth/passport/img/twitter.png
 create mode 100644 oxAuth/Server/src/main/webapp/auth/passport/img/windowslive.png
 create mode 100755 oxAuth/Server/src/main/webapp/auth/passport/passportlogin.xhtml
 create mode 100755 oxAuth/Server/src/main/webapp/auth/passport/passportpostlogin.xhtml
 create mode 100644 oxAuth/Server/src/main/webapp/auth/passport/sample-redirector.xhtml
 create mode 100644 oxAuth/Server/src/main/webapp/auth/phonefactor/pflogin.xhtml
 create mode 100644 oxAuth/Server/src/main/webapp/auth/pwd/newpassword.xhtml
 create mode 100644 oxAuth/Server/src/main/webapp/auth/recaptcha/login.xhtml
 create mode 100644 oxAuth/Server/src/main/webapp/auth/register/register.xhtml
 create mode 100644 oxAuth/Server/src/main/webapp/auth/saml/samllogin.xhtml
 create mode 100644 oxAuth/Server/src/main/webapp/auth/saml/samlpostlogin.xhtml
 create mode 100644 oxAuth/Server/src/main/webapp/auth/super-gluu/login.xhtml
 create mode 100644 oxAuth/Server/src/main/webapp/auth/thumbsignin/README.md
 create mode 100644 oxAuth/Server/src/main/webapp/auth/thumbsignin/expired.xhtml
 create mode 100644 oxAuth/Server/src/main/webapp/auth/thumbsignin/js/authenticate-bundle.js
 create mode 100644 oxAuth/Server/src/main/webapp/auth/thumbsignin/js/thumbsign_widget.js
 create mode 100644 oxAuth/Server/src/main/webapp/auth/thumbsignin/js/thumbsignin_widget.css
 create mode 100644 oxAuth/Server/src/main/webapp/auth/thumbsignin/tsLogin.xhtml
 create mode 100644 oxAuth/Server/src/main/webapp/auth/thumbsignin/tsRegister.xhtml
 create mode 100644 oxAuth/Server/src/main/webapp/auth/thumbsignin/tsRegistrationSuccess.xhtml
 create mode 100644 oxAuth/Server/src/main/webapp/auth/toopher/tpauthenticate.xhtml
 create mode 100644 oxAuth/Server/src/main/webapp/auth/toopher/tppair.xhtml
 create mode 100644 oxAuth/Server/src/main/webapp/auth/u2f/login.xhtml
 create mode 100644 oxAuth/Server/src/main/webapp/auth/u2f/scripts/u2f-api.js
 create mode 100644 oxAuth/Server/src/main/webapp/auth/uaf/js/uaf-api.js
 create mode 100644 oxAuth/Server/src/main/webapp/auth/uaf/login.xhtml
 create mode 100644 oxAuth/Server/src/main/webapp/auth/whispeak/whispeak_open_ask_enroll.xhtml
 create mode 100644 oxAuth/Server/src/main/webapp/auth/whispeak/whispeak_open_authentication_submit.xhtml
 create mode 100644 oxAuth/Server/src/main/webapp/auth/whispeak/whispeak_open_enrollment_submit.xhtml
 create mode 100644 oxAuth/Server/src/main/webapp/auth/whispeak/whispeak_open_identification.xhtml
 create mode 100644 oxAuth/Server/src/main/webapp/auth/whispeak/whispeak_open_passport.xhtml
 create mode 100644 oxAuth/Server/src/main/webapp/auth/whispeak/whispeak_open_passport_fallback.xhtml
 create mode 100644 oxAuth/Server/src/main/webapp/auth/whispeak/whispeak_open_passport_loading.xhtml
 create mode 100644 oxAuth/Server/src/main/webapp/auth/whispeak/whispeak_open_revocation_data_show.xhtml
 create mode 100644 oxAuth/Server/src/main/webapp/auth/wikid/wikidlogin.xhtml
 create mode 100644 oxAuth/Server/src/main/webapp/auth/wikid/wikidregister.xhtml
 create mode 100644 oxAuth/Server/src/main/webapp/authorize.xhtml
 create mode 100644 oxAuth/Server/src/main/webapp/authz/authorize.xhtml
 create mode 100644 oxAuth/Server/src/main/webapp/authz/transaction.xhtml
 create mode 100644 oxAuth/Server/src/main/webapp/casa/bioid-template.xhtml
 create mode 100644 oxAuth/Server/src/main/webapp/casa/bioid.xhtml
 create mode 100644 oxAuth/Server/src/main/webapp/casa/casa.xhtml
 create mode 100644 oxAuth/Server/src/main/webapp/casa/cert.xhtml
 create mode 100644 oxAuth/Server/src/main/webapp/casa/duologin.xhtml
 create mode 100644 oxAuth/Server/src/main/webapp/casa/fido2.xhtml
 create mode 100644 oxAuth/Server/src/main/webapp/casa/fullwidth-template.xhtml
 create mode 100644 oxAuth/Server/src/main/webapp/casa/login-template.xhtml
 create mode 100644 oxAuth/Server/src/main/webapp/casa/login.xhtml
 create mode 100644 oxAuth/Server/src/main/webapp/casa/otp.xhtml
 create mode 100644 oxAuth/Server/src/main/webapp/casa/otp_email.xhtml
 create mode 100644 oxAuth/Server/src/main/webapp/casa/otp_email_prompt.xhtml
 create mode 100644 oxAuth/Server/src/main/webapp/casa/otp_sms.xhtml
 create mode 100644 oxAuth/Server/src/main/webapp/casa/otp_sms_prompt.xhtml
 create mode 100644 oxAuth/Server/src/main/webapp/casa/sg.xhtml
 create mode 100644 oxAuth/Server/src/main/webapp/casa/u2f.xhtml
 create mode 100644 oxAuth/Server/src/main/webapp/ciba/authorizeResponse.xhtml
 create mode 100644 oxAuth/Server/src/main/webapp/ciba/home.xhtml
 create mode 100644 oxAuth/Server/src/main/webapp/ciba/index.jsp
 create mode 100644 oxAuth/Server/src/main/webapp/ciba/manifest.json
 create mode 100644 oxAuth/Server/src/main/webapp/device_authorization.xhtml
 create mode 100644 oxAuth/Server/src/main/webapp/error.xhtml
 create mode 100644 oxAuth/Server/src/main/webapp/error_service.xhtml
 create mode 100644 oxAuth/Server/src/main/webapp/error_session.xhtml
 create mode 100644 oxAuth/Server/src/main/webapp/fonts/FontAwesome.otf
 create mode 100644 oxAuth/Server/src/main/webapp/fonts/fontawesome-webfont.eot
 create mode 100644 oxAuth/Server/src/main/webapp/fonts/fontawesome-webfont.svg
 create mode 100644 oxAuth/Server/src/main/webapp/fonts/fontawesome-webfont.ttf
 create mode 100644 oxAuth/Server/src/main/webapp/fonts/fontawesome-webfont.woff
 create mode 100644 oxAuth/Server/src/main/webapp/fonts/fontawesome-webfont.woff2
 create mode 100644 oxAuth/Server/src/main/webapp/img/IcoArrow.svg
 create mode 100644 oxAuth/Server/src/main/webapp/img/IcoArrowRed.svg
 create mode 100644 oxAuth/Server/src/main/webapp/img/IcoCopy.png
 create mode 100644 oxAuth/Server/src/main/webapp/img/IcoMic.svg
 create mode 100644 oxAuth/Server/src/main/webapp/img/IcoPlay.svg
 create mode 100644 oxAuth/Server/src/main/webapp/img/IcoRetry.svg
 create mode 100644 oxAuth/Server/src/main/webapp/img/IcoStop.svg
 create mode 100644 oxAuth/Server/src/main/webapp/img/Logo_Whispeak_color.svg
 create mode 100644 oxAuth/Server/src/main/webapp/img/android.png
 create mode 100644 oxAuth/Server/src/main/webapp/img/android1.png
 create mode 100644 oxAuth/Server/src/main/webapp/img/background_wave.svg
 create mode 100644 oxAuth/Server/src/main/webapp/img/buttons_bg.jpg
 create mode 100644 oxAuth/Server/src/main/webapp/img/close.png
 create mode 100644 oxAuth/Server/src/main/webapp/img/email-ver.png
 create mode 100644 oxAuth/Server/src/main/webapp/img/eye.png
 create mode 100644 oxAuth/Server/src/main/webapp/img/favicon_icosahedron.ico
 create mode 100644 oxAuth/Server/src/main/webapp/img/footer_bg.jpg
 create mode 100644 oxAuth/Server/src/main/webapp/img/glu_icon.png
 create mode 100644 oxAuth/Server/src/main/webapp/img/ios.png
 create mode 100644 oxAuth/Server/src/main/webapp/img/iphone.png
 create mode 100644 oxAuth/Server/src/main/webapp/img/logo.png
 create mode 100644 oxAuth/Server/src/main/webapp/img/logo_white.png
 create mode 100644 oxAuth/Server/src/main/webapp/img/panel_header_bg.png
 create mode 100644 oxAuth/Server/src/main/webapp/img/phone-ver.png
 create mode 100644 oxAuth/Server/src/main/webapp/img/qr_code.png
 create mode 100644 oxAuth/Server/src/main/webapp/img/securitykey.jpg
 create mode 100644 oxAuth/Server/src/main/webapp/img/sg.png
 create mode 100644 oxAuth/Server/src/main/webapp/img/step_ver.png
 create mode 100644 oxAuth/Server/src/main/webapp/img/step_ver_touchid.png
 create mode 100644 oxAuth/Server/src/main/webapp/img/touchid.png
 create mode 100644 oxAuth/Server/src/main/webapp/img/tube_1.jpg
 create mode 100644 oxAuth/Server/src/main/webapp/img/ver_code.png
 create mode 100644 oxAuth/Server/src/main/webapp/img/ver_code_1.png
 create mode 100644 oxAuth/Server/src/main/webapp/index.jsp
 create mode 100644 oxAuth/Server/src/main/webapp/js/bootstrap.bundle.min.js
 create mode 100644 oxAuth/Server/src/main/webapp/js/bootstrap.min.js
 create mode 100644 oxAuth/Server/src/main/webapp/js/crypto-js-4.1.1/CONTRIBUTING.md
 create mode 100644 oxAuth/Server/src/main/webapp/js/crypto-js-4.1.1/LICENSE
 create mode 100644 oxAuth/Server/src/main/webapp/js/crypto-js-4.1.1/README.md
 create mode 100644 oxAuth/Server/src/main/webapp/js/crypto-js-4.1.1/aes.js
 create mode 100644 oxAuth/Server/src/main/webapp/js/crypto-js-4.1.1/bower.json
 create mode 100644 oxAuth/Server/src/main/webapp/js/crypto-js-4.1.1/cipher-core.js
 create mode 100644 oxAuth/Server/src/main/webapp/js/crypto-js-4.1.1/core.js
 create mode 100644 oxAuth/Server/src/main/webapp/js/crypto-js-4.1.1/crypto-js.js
 create mode 100644 oxAuth/Server/src/main/webapp/js/crypto-js-4.1.1/docs/QuickStartGuide.wiki
 create mode 100644 oxAuth/Server/src/main/webapp/js/crypto-js-4.1.1/enc-base64.js
 create mode 100644 oxAuth/Server/src/main/webapp/js/crypto-js-4.1.1/enc-base64url.js
 create mode 100644 oxAuth/Server/src/main/webapp/js/crypto-js-4.1.1/enc-hex.js
 create mode 100644 oxAuth/Server/src/main/webapp/js/crypto-js-4.1.1/enc-latin1.js
 create mode 100644 oxAuth/Server/src/main/webapp/js/crypto-js-4.1.1/enc-utf16.js
 create mode 100644 oxAuth/Server/src/main/webapp/js/crypto-js-4.1.1/enc-utf8.js
 create mode 100644 oxAuth/Server/src/main/webapp/js/crypto-js-4.1.1/evpkdf.js
 create mode 100644 oxAuth/Server/src/main/webapp/js/crypto-js-4.1.1/format-hex.js
 create mode 100644 oxAuth/Server/src/main/webapp/js/crypto-js-4.1.1/format-openssl.js
 create mode 100644 oxAuth/Server/src/main/webapp/js/crypto-js-4.1.1/hmac-md5.js
 create mode 100644 oxAuth/Server/src/main/webapp/js/crypto-js-4.1.1/hmac-ripemd160.js
 create mode 100644 oxAuth/Server/src/main/webapp/js/crypto-js-4.1.1/hmac-sha1.js
 create mode 100644 oxAuth/Server/src/main/webapp/js/crypto-js-4.1.1/hmac-sha224.js
 create mode 100644 oxAuth/Server/src/main/webapp/js/crypto-js-4.1.1/hmac-sha256.js
 create mode 100644 oxAuth/Server/src/main/webapp/js/crypto-js-4.1.1/hmac-sha3.js
 create mode 100644 oxAuth/Server/src/main/webapp/js/crypto-js-4.1.1/hmac-sha384.js
 create mode 100644 oxAuth/Server/src/main/webapp/js/crypto-js-4.1.1/hmac-sha512.js
 create mode 100644 oxAuth/Server/src/main/webapp/js/crypto-js-4.1.1/hmac.js
 create mode 100644 oxAuth/Server/src/main/webapp/js/crypto-js-4.1.1/index.js
 create mode 100644 oxAuth/Server/src/main/webapp/js/crypto-js-4.1.1/lib-typedarrays.js
 create mode 100644 oxAuth/Server/src/main/webapp/js/crypto-js-4.1.1/md5.js
 create mode 100644 oxAuth/Server/src/main/webapp/js/crypto-js-4.1.1/mode-cfb.js
 create mode 100644 oxAuth/Server/src/main/webapp/js/crypto-js-4.1.1/mode-ctr-gladman.js
 create mode 100644 oxAuth/Server/src/main/webapp/js/crypto-js-4.1.1/mode-ctr.js
 create mode 100644 oxAuth/Server/src/main/webapp/js/crypto-js-4.1.1/mode-ecb.js
 create mode 100644 oxAuth/Server/src/main/webapp/js/crypto-js-4.1.1/mode-ofb.js
 create mode 100644 oxAuth/Server/src/main/webapp/js/crypto-js-4.1.1/package.json
 create mode 100644 oxAuth/Server/src/main/webapp/js/crypto-js-4.1.1/pad-ansix923.js
 create mode 100644 oxAuth/Server/src/main/webapp/js/crypto-js-4.1.1/pad-iso10126.js
 create mode 100644 oxAuth/Server/src/main/webapp/js/crypto-js-4.1.1/pad-iso97971.js
 create mode 100644 oxAuth/Server/src/main/webapp/js/crypto-js-4.1.1/pad-nopadding.js
 create mode 100644 oxAuth/Server/src/main/webapp/js/crypto-js-4.1.1/pad-pkcs7.js
 create mode 100644 oxAuth/Server/src/main/webapp/js/crypto-js-4.1.1/pad-zeropadding.js
 create mode 100644 oxAuth/Server/src/main/webapp/js/crypto-js-4.1.1/pbkdf2.js
 create mode 100644 oxAuth/Server/src/main/webapp/js/crypto-js-4.1.1/rabbit-legacy.js
 create mode 100644 oxAuth/Server/src/main/webapp/js/crypto-js-4.1.1/rabbit.js
 create mode 100644 oxAuth/Server/src/main/webapp/js/crypto-js-4.1.1/rc4.js
 create mode 100644 oxAuth/Server/src/main/webapp/js/crypto-js-4.1.1/ripemd160.js
 create mode 100644 oxAuth/Server/src/main/webapp/js/crypto-js-4.1.1/sha1.js
 create mode 100644 oxAuth/Server/src/main/webapp/js/crypto-js-4.1.1/sha224.js
 create mode 100644 oxAuth/Server/src/main/webapp/js/crypto-js-4.1.1/sha256.js
 create mode 100644 oxAuth/Server/src/main/webapp/js/crypto-js-4.1.1/sha3.js
 create mode 100644 oxAuth/Server/src/main/webapp/js/crypto-js-4.1.1/sha384.js
 create mode 100644 oxAuth/Server/src/main/webapp/js/crypto-js-4.1.1/sha512.js
 create mode 100644 oxAuth/Server/src/main/webapp/js/crypto-js-4.1.1/tripledes.js
 create mode 100644 oxAuth/Server/src/main/webapp/js/crypto-js-4.1.1/x64-core.js
 create mode 100644 oxAuth/Server/src/main/webapp/js/fontawesome.min.js
 create mode 100644 oxAuth/Server/src/main/webapp/js/gluu-auth.js
 create mode 100644 oxAuth/Server/src/main/webapp/js/jquery-3.6.0.min.js
 create mode 100644 oxAuth/Server/src/main/webapp/js/jquery-qrcode-0.17.0.min.js
 create mode 100644 oxAuth/Server/src/main/webapp/js/jquery-ui.min.js
 create mode 100644 oxAuth/Server/src/main/webapp/js/passport.js
 create mode 100644 oxAuth/Server/src/main/webapp/js/platform.js
 create mode 100644 oxAuth/Server/src/main/webapp/js/popper.min.js
 create mode 100644 oxAuth/Server/src/main/webapp/js/recorder_3buttons.js
 create mode 100644 oxAuth/Server/src/main/webapp/js/respond.min.js
 create mode 100644 oxAuth/Server/src/main/webapp/js/revocation.js
 create mode 100644 oxAuth/Server/src/main/webapp/login.xhtml
 create mode 100644 oxAuth/Server/src/main/webapp/logout.xhtml
 create mode 100644 oxAuth/Server/src/main/webapp/opiframe.xhtml
 create mode 100644 oxAuth/Server/src/main/webapp/passwordless/alternative.xhtml
 create mode 100644 oxAuth/Server/src/main/webapp/passwordless/bioid-template.xhtml
 create mode 100644 oxAuth/Server/src/main/webapp/passwordless/bioid.xhtml
 create mode 100644 oxAuth/Server/src/main/webapp/passwordless/fido2.xhtml
 create mode 100644 oxAuth/Server/src/main/webapp/passwordless/login-template.xhtml
 create mode 100644 oxAuth/Server/src/main/webapp/passwordless/login.xhtml
 create mode 100644 oxAuth/Server/src/main/webapp/passwordless/sg.xhtml
 create mode 100644 oxAuth/Server/src/main/webapp/postlogin.xhtml
 create mode 100644 oxAuth/Server/src/main/webapp/selectAccount.xhtml
 create mode 100644 oxAuth/Server/src/main/webapp/stylesheet/authorize.css
 create mode 100644 oxAuth/Server/src/main/webapp/stylesheet/bootstrap-grid.min.css
 create mode 100644 oxAuth/Server/src/main/webapp/stylesheet/bootstrap-reboot.min.css
 create mode 100644 oxAuth/Server/src/main/webapp/stylesheet/bootstrap-responsive.css
 create mode 100644 oxAuth/Server/src/main/webapp/stylesheet/bootstrap.css
 create mode 100644 oxAuth/Server/src/main/webapp/stylesheet/bootstrap.min.css
 create mode 100644 oxAuth/Server/src/main/webapp/stylesheet/ciba.css
 create mode 100644 oxAuth/Server/src/main/webapp/stylesheet/font-awesome.css
 create mode 100644 oxAuth/Server/src/main/webapp/stylesheet/fontawesome.min.css
 create mode 100644 oxAuth/Server/src/main/webapp/stylesheet/form_window.css
 create mode 100644 oxAuth/Server/src/main/webapp/stylesheet/jquery-ui.min.css
 create mode 100644 oxAuth/Server/src/main/webapp/stylesheet/jquery-ui.structure.min.css
 create mode 100644 oxAuth/Server/src/main/webapp/stylesheet/jquery-ui.theme.min.css
 create mode 100644 oxAuth/Server/src/main/webapp/stylesheet/recorder_3buttons.css
 create mode 100644 oxAuth/Server/src/main/webapp/stylesheet/responsive-media.css
 create mode 100644 oxAuth/Server/src/main/webapp/stylesheet/site.css
 create mode 100644 oxAuth/Server/src/main/webapp/stylesheet/style.css
 create mode 100644 oxAuth/Server/src/main/webapp/stylesheet/theme.css
 create mode 100644 oxAuth/Server/src/main/webapp/stylesheet/theme.xcss
 create mode 100644 oxAuth/Server/src/main/webapp/uma2/sample/city.xhtml
 create mode 100644 oxAuth/Server/src/main/webapp/uma2/sample/claims_resolved.xhtml
 create mode 100644 oxAuth/Server/src/main/webapp/uma2/sample/country.xhtml
 create mode 100644 oxAuth/Server/src/test/java/org/gluu/oxauth/BaseComponentTest.java
 create mode 100644 oxAuth/Server/src/test/java/org/gluu/oxauth/BaseTest.java
 create mode 100644 oxAuth/Server/src/test/java/org/gluu/oxauth/ConfigurableTest.java
 create mode 100644 oxAuth/Server/src/test/java/org/gluu/oxauth/OxAuthUnitTestsListener.java
 create mode 100644 oxAuth/Server/src/test/java/org/gluu/oxauth/authorize/ws/rs/AuthorizeRestWebServiceValidatorTest.java
 create mode 100644 oxAuth/Server/src/test/java/org/gluu/oxauth/comp/CleanUpClientTest.java
 create mode 100644 oxAuth/Server/src/test/java/org/gluu/oxauth/comp/CleanerTimerTest.java
 create mode 100644 oxAuth/Server/src/test/java/org/gluu/oxauth/comp/ConfigurationTest.java
 create mode 100644 oxAuth/Server/src/test/java/org/gluu/oxauth/comp/CrossEncryptionTest.java
 create mode 100644 oxAuth/Server/src/test/java/org/gluu/oxauth/comp/CryptoProviderTest.java
 create mode 100644 oxAuth/Server/src/test/java/org/gluu/oxauth/comp/EncryptionTest.java
 create mode 100644 oxAuth/Server/src/test/java/org/gluu/oxauth/comp/GrantServiceTest.java
 create mode 100644 oxAuth/Server/src/test/java/org/gluu/oxauth/comp/IdGenServiceTest.java
 create mode 100644 oxAuth/Server/src/test/java/org/gluu/oxauth/comp/InumGeneratorTest.java
 create mode 100644 oxAuth/Server/src/test/java/org/gluu/oxauth/comp/JwtCrossCheckTest.java
 create mode 100644 oxAuth/Server/src/test/java/org/gluu/oxauth/comp/KeyGenerationTest.java
 create mode 100644 oxAuth/Server/src/test/java/org/gluu/oxauth/comp/LocaleTest.java
 create mode 100644 oxAuth/Server/src/test/java/org/gluu/oxauth/comp/SessionIdServiceTest.java
 create mode 100644 oxAuth/Server/src/test/java/org/gluu/oxauth/comp/SignatureTest.java
 create mode 100644 oxAuth/Server/src/test/java/org/gluu/oxauth/comp/UmaResourceServiceTest.java
 create mode 100644 oxAuth/Server/src/test/java/org/gluu/oxauth/comp/UtilityMethodsTest.java
 create mode 100644 oxAuth/Server/src/test/java/org/gluu/oxauth/dev/CacheGrantManual.java
 create mode 100644 oxAuth/Server/src/test/java/org/gluu/oxauth/dev/ConfSerialization.java
 create mode 100644 oxAuth/Server/src/test/java/org/gluu/oxauth/dev/Manual.java
 create mode 100644 oxAuth/Server/src/test/java/org/gluu/oxauth/dev/TestUUID.java
 create mode 100644 oxAuth/Server/src/test/java/org/gluu/oxauth/dev/duo/PythonToLdapString.java
 create mode 100644 oxAuth/Server/src/test/java/org/gluu/oxauth/gluu/ws/rs/GluuConfigurationWSTest.java
 create mode 100644 oxAuth/Server/src/test/java/org/gluu/oxauth/json/JsonApplierServerTest.java
 create mode 100644 oxAuth/Server/src/test/java/org/gluu/oxauth/model/CIBAGrantTest.java
 create mode 100644 oxAuth/Server/src/test/java/org/gluu/oxauth/model/TClientService.java
 create mode 100644 oxAuth/Server/src/test/java/org/gluu/oxauth/model/WebServiceFactory.java
 create mode 100644 oxAuth/Server/src/test/java/org/gluu/oxauth/model/authorize/JwtAuthorizationRequestTest.java
 create mode 100644 oxAuth/Server/src/test/java/org/gluu/oxauth/model/registration/RegisterParamsValidatorTest.java
 create mode 100644 oxAuth/Server/src/test/java/org/gluu/oxauth/model/uma/TConfiguration.java
 create mode 100644 oxAuth/Server/src/test/java/org/gluu/oxauth/model/uma/TRegisterPermission.java
 create mode 100644 oxAuth/Server/src/test/java/org/gluu/oxauth/model/uma/TRegisterResource.java
 create mode 100644 oxAuth/Server/src/test/java/org/gluu/oxauth/model/uma/TTokenRequest.java
 create mode 100644 oxAuth/Server/src/test/java/org/gluu/oxauth/model/uma/TUma.java
 create mode 100644 oxAuth/Server/src/test/java/org/gluu/oxauth/service/DateFormatterServiceTest.java
 create mode 100644 oxAuth/Server/src/test/java/org/gluu/oxauth/service/RedirectionUriServiceTest.java
 create mode 100644 oxAuth/Server/src/test/java/org/gluu/oxauth/service/ScopeServiceTest.java
 create mode 100644 oxAuth/Server/src/test/java/org/gluu/oxauth/service/TestResteasyInitializer.java
 create mode 100644 oxAuth/Server/src/test/java/org/gluu/oxauth/service/fido/u2f/RawAuthenticationServiceTest.java
 create mode 100644 oxAuth/Server/src/test/java/org/gluu/oxauth/service/fido/u2f/RawAuthenticationServiceUnitTest.java
 create mode 100644 oxAuth/Server/src/test/java/org/gluu/oxauth/service/fido/u2f/RawRegistrationServiceTest.java
 create mode 100644 oxAuth/Server/src/test/java/org/gluu/oxauth/servlet/OpenIdConfigurationTest.java
 create mode 100644 oxAuth/Server/src/test/java/org/gluu/oxauth/session/ws/rs/EndSessionRestWebServiceImplTest.java
 create mode 100644 oxAuth/Server/src/test/java/org/gluu/oxauth/uma/ws/rs/AccessProtectedResourceFlowWSTest.java
 create mode 100644 oxAuth/Server/src/test/java/org/gluu/oxauth/uma/ws/rs/ObtainPatWSTest.java
 create mode 100644 oxAuth/Server/src/test/java/org/gluu/oxauth/uma/ws/rs/ObtainRptWSTest.java
 create mode 100644 oxAuth/Server/src/test/java/org/gluu/oxauth/uma/ws/rs/RegisterPermissionWSTest.java
 create mode 100644 oxAuth/Server/src/test/java/org/gluu/oxauth/uma/ws/rs/UmaConfigurationWSTest.java
 create mode 100644 oxAuth/Server/src/test/java/org/gluu/oxauth/uma/ws/rs/UmaRegisterResourceWSTest.java
 create mode 100644 oxAuth/Server/src/test/java/org/gluu/oxauth/uma/ws/rs/UmaScopeWSTest.java
 create mode 100644 oxAuth/Server/src/test/java/org/gluu/oxauth/util/Deployments.java
 create mode 100644 oxAuth/Server/src/test/java/org/gluu/oxauth/util/ServerUtilTest.java
 create mode 100644 oxAuth/Server/src/test/java/org/gluu/oxauth/ws/rs/ApplicationTypeRestrictionEmbeddedTest.java
 create mode 100644 oxAuth/Server/src/test/java/org/gluu/oxauth/ws/rs/AuthorizationCodeFlowEmbeddedTest.java
 create mode 100644 oxAuth/Server/src/test/java/org/gluu/oxauth/ws/rs/AuthorizeRestWebServiceEmbeddedTest.java
 create mode 100644 oxAuth/Server/src/test/java/org/gluu/oxauth/ws/rs/AuthorizeWithResponseModeEmbeddedTest.java
 create mode 100644 oxAuth/Server/src/test/java/org/gluu/oxauth/ws/rs/ClientAuthenticationFilterEmbeddedTest.java
 create mode 100644 oxAuth/Server/src/test/java/org/gluu/oxauth/ws/rs/ClientInfoRestWebServiceEmbeddedTest.java
 create mode 100644 oxAuth/Server/src/test/java/org/gluu/oxauth/ws/rs/EndSessionBackchannelRestServerTest.java
 create mode 100644 oxAuth/Server/src/test/java/org/gluu/oxauth/ws/rs/EndSessionRestWebServiceEmbeddedTest.java
 create mode 100644 oxAuth/Server/src/test/java/org/gluu/oxauth/ws/rs/IntrospectionWebServiceEmbeddedTest.java
 create mode 100644 oxAuth/Server/src/test/java/org/gluu/oxauth/ws/rs/JwkRestWebServiceEmbeddedTest.java
 create mode 100644 oxAuth/Server/src/test/java/org/gluu/oxauth/ws/rs/OpenIDRequestObjectEmbeddedTest.java
 create mode 100644 oxAuth/Server/src/test/java/org/gluu/oxauth/ws/rs/OpenIDRequestObjectWithESAlgEmbeddedTest.java
 create mode 100644 oxAuth/Server/src/test/java/org/gluu/oxauth/ws/rs/OpenIDRequestObjectWithHSAlgEmbeddedTest.java
 create mode 100644 oxAuth/Server/src/test/java/org/gluu/oxauth/ws/rs/OpenIDRequestObjectWithRSAlgEmbeddedTest.java
 create mode 100644 oxAuth/Server/src/test/java/org/gluu/oxauth/ws/rs/RegistrationRestWebServiceEmbeddedTest.java
 create mode 100644 oxAuth/Server/src/test/java/org/gluu/oxauth/ws/rs/RequestObjectSigningAlgRestrictionEmbeddedTest.java
 create mode 100644 oxAuth/Server/src/test/java/org/gluu/oxauth/ws/rs/ResponseTypesRestrictionEmbeddedTest.java
 create mode 100644 oxAuth/Server/src/test/java/org/gluu/oxauth/ws/rs/SectorIdentifierUrlVerificationEmbeddedTest.java
 create mode 100644 oxAuth/Server/src/test/java/org/gluu/oxauth/ws/rs/TokenEndpointAuthMethodRestrictionEmbeddedTest.java
 create mode 100644 oxAuth/Server/src/test/java/org/gluu/oxauth/ws/rs/TokenRestWebServiceEmbeddedTest.java
 create mode 100644 oxAuth/Server/src/test/java/org/gluu/oxauth/ws/rs/TokenRestWebServiceWithESAlgEmbeddedTest.java
 create mode 100644 oxAuth/Server/src/test/java/org/gluu/oxauth/ws/rs/TokenRestWebServiceWithHSAlgEmbeddedTest.java
 create mode 100644 oxAuth/Server/src/test/java/org/gluu/oxauth/ws/rs/TokenRestWebServiceWithRSAlgEmbeddedTest.java
 create mode 100644 oxAuth/Server/src/test/java/org/gluu/oxauth/ws/rs/UserAuthenticationFilterEmbeddedTest.java
 create mode 100644 oxAuth/Server/src/test/java/org/gluu/oxauth/ws/rs/UserInfoRestWebServiceEmbeddedTest.java
 create mode 100644 oxAuth/Server/src/test/resources/77-customAttributes.ldif
 create mode 100644 oxAuth/Server/src/test/resources/arquillian.xml
 create mode 100644 oxAuth/Server/src/test/resources/client/jwks.json
 create mode 100644 oxAuth/Server/src/test/resources/client/sector_identifier.js
 create mode 100644 oxAuth/Server/src/test/resources/id/gen/SampleIdGenerator.py
 create mode 100644 oxAuth/Server/src/test/resources/jetty-env.xml
 create mode 100644 oxAuth/Server/src/test/resources/testng-benchmark.xml
 create mode 100644 oxAuth/Server/src/test/resources/testng-multi-authz.xml
 create mode 100644 oxAuth/Server/src/test/resources/testng.properties
 create mode 100644 oxAuth/Server/src/test/resources/testng.xml
 create mode 100644 oxAuth/Server/src/test/resources/web.xml
 create mode 100644 oxAuth/Server/uma/UmaClientAuthzRptPolicy.py
 create mode 100644 oxAuth/Server/uma/sample/UmaClaimsGathering.py
 create mode 100644 oxAuth/Server/uma/sample/UmaRptPolicy.py
 create mode 100644 oxAuth/Tests/selenium/ReadMe.txt
 create mode 100644 oxAuth/Tests/selenium/selenium_login. t1_user.html
 create mode 100644 oxAuth/Tests/selenium/selenium_login. t2_user.html
 create mode 100644 oxAuth/Tests/selenium/selenium_login. t3_user.html
 create mode 100644 oxAuth/Tests/selenium/while.js
 create mode 100644 oxAuth/common/pom.xml
 create mode 100644 oxAuth/common/src/main/java/org/gluu/oxauth/cert/fingerprint/FingerprintHelper.java
 create mode 100644 oxAuth/common/src/main/java/org/gluu/oxauth/cert/validation/CRLCertificateVerifier.java
 create mode 100644 oxAuth/common/src/main/java/org/gluu/oxauth/cert/validation/CertificateVerifier.java
 create mode 100644 oxAuth/common/src/main/java/org/gluu/oxauth/cert/validation/GenericCertificateVerifier.java
 create mode 100644 oxAuth/common/src/main/java/org/gluu/oxauth/cert/validation/OCSPCertificateVerifier.java
 create mode 100644 oxAuth/common/src/main/java/org/gluu/oxauth/cert/validation/PathCertificateVerifier.java
 create mode 100644 oxAuth/common/src/main/java/org/gluu/oxauth/cert/validation/model/ValidationStatus.java
 create mode 100644 oxAuth/common/src/main/java/org/gluu/oxauth/claims/Audience.java
 create mode 100644 oxAuth/common/src/main/java/org/gluu/oxauth/model/common/SimpleUser.java
 create mode 100644 oxAuth/common/src/main/java/org/gluu/oxauth/model/common/User.java
 create mode 100644 oxAuth/common/src/main/java/org/gluu/oxauth/model/config/BaseDnConfiguration.java
 create mode 100644 oxAuth/common/src/main/java/org/gluu/oxauth/model/config/StaticConfiguration.java
 create mode 100644 oxAuth/common/src/main/java/org/gluu/oxauth/model/event/CryptoProviderEvent.java
 create mode 100644 oxAuth/common/src/main/java/org/gluu/oxauth/model/registration/Client.java
 create mode 100644 oxAuth/common/src/main/java/org/gluu/oxauth/model/session/SessionId.java
 create mode 100644 oxAuth/common/src/main/java/org/gluu/oxauth/model/session/SessionIdAccessMap.java
 create mode 100644 oxAuth/common/src/main/java/org/gluu/oxauth/model/session/SessionIdState.java
 create mode 100644 oxAuth/common/src/main/java/org/gluu/oxauth/model/stat/Stat.java
 create mode 100644 oxAuth/common/src/main/java/org/gluu/oxauth/model/stat/StatEntry.java
 create mode 100644 oxAuth/common/src/main/java/org/gluu/oxauth/service/common/ApplicationFactory.java
 create mode 100644 oxAuth/common/src/main/java/org/gluu/oxauth/service/common/ConfigurationService.java
 create mode 100644 oxAuth/common/src/main/java/org/gluu/oxauth/service/common/EncryptionService.java
 create mode 100644 oxAuth/common/src/main/java/org/gluu/oxauth/service/common/InumService.java
 create mode 100644 oxAuth/common/src/main/java/org/gluu/oxauth/service/common/UserService.java
 create mode 100644 oxAuth/common/src/main/java/org/gluu/oxauth/service/common/api/IdGenerator.java
 create mode 100644 oxAuth/common/src/main/java/org/gluu/oxauth/service/common/fido2/RegistrationPersistenceService.java
 create mode 100644 oxAuth/common/src/main/java/org/gluu/oxauth/util/RedirectUri.java
 create mode 100644 oxAuth/common/src/main/resources/META-INF/beans.xml
 create mode 100644 oxAuth/common/src/test/java/org/gluu/oxauth/claims/AudienceTest.java
 create mode 100644 oxAuth/common/src/test/java/org/gluu/oxauth/util/RedirectUriTest.java
 create mode 100644 oxAuth/common/src/test/resources/testng.xml
 create mode 100644 oxAuth/docs/Authorization Code Flow.png
 create mode 100644 oxAuth/docs/Authorize Endpoint.png
 create mode 100644 oxAuth/docs/Authorize Page.png
 create mode 100644 oxAuth/docs/Class Diagram.png
 create mode 100644 oxAuth/docs/Client Credentials Flow.png
 create mode 100644 oxAuth/docs/Implicit Flow.png
 create mode 100644 oxAuth/docs/Resource Owner Password Credentials Flow.png
 create mode 100644 oxAuth/docs/oxAuth.vpp
 create mode 100644 oxAuth/docs/oxAuthSwagger.yaml
 create mode 100644 oxAuth/install.bat
 create mode 100644 oxAuth/jmeter/test/Authorization Code Flow.jmx
 create mode 100644 oxAuth/jmeter/test/Authorization Code Flow_amazon.jmx
 create mode 100644 oxAuth/jmeter/test/Authorization Code Flow_amazon_client_credentials.jmx
 create mode 100644 oxAuth/jmeter/test/Authorization Code Flow_ce-dev5.jmx
 create mode 100644 oxAuth/jmeter/test/Authorization Code Flow_xeon.jmx
 create mode 100644 oxAuth/jmeter/test/Authorization Code Flow_xeon_client_credentials.jmx
 create mode 100644 oxAuth/jmeter/test/Implicit_Flow_benchmark_gluu_org.jmx
 create mode 100644 oxAuth/jmeter/test/Implicit_Flow_c7_horizontal_scale.jmx
 create mode 100644 oxAuth/jmeter/test/authorization/oxServer - Test user authorization - testing data.csv
 create mode 100644 oxAuth/jmeter/test/authorization/oxServer - Test user authorization.jmx
 create mode 100644 oxAuth/oxAuthStatic/.gitignore
 create mode 100644 oxAuth/oxAuthStatic/pom.xml
 create mode 100644 oxAuth/oxAuthStatic/src/main/resources/META-INF/resources/img/buttons_bg.jpg
 create mode 100644 oxAuth/oxAuthStatic/src/main/resources/META-INF/resources/img/footer_bg.jpg
 create mode 100644 oxAuth/oxAuthStatic/src/main/resources/META-INF/resources/img/panel_header_bg.png
 create mode 100644 oxAuth/oxAuthStatic/src/main/resources/META-INF/resources/js/Duo-Web-v1.min.js
 create mode 100644 oxAuth/oxAuthStatic/src/main/resources/META-INF/resources/stylesheet/site.css
 create mode 100644 oxAuth/oxAuthStatic/src/main/resources/META-INF/resources/stylesheet/theme.css
 create mode 100644 oxAuth/oxAuthStatic/src/main/resources/META-INF/resources/stylesheet/theme.xcss
 create mode 100644 oxAuth/persistence-model/pom.xml
 create mode 100644 oxAuth/persistence-model/src/main/java/org/oxauth/persistence/model/ClientAttributes.java
 create mode 100644 oxAuth/persistence-model/src/main/java/org/oxauth/persistence/model/PairwiseIdentifier.java
 create mode 100644 oxAuth/persistence-model/src/main/java/org/oxauth/persistence/model/Scope.java
 create mode 100644 oxAuth/persistence-model/src/main/java/org/oxauth/persistence/model/ScopeAttributes.java
 create mode 100644 oxAuth/persistence-model/src/main/java/org/oxauth/persistence/model/SectorIdentifier.java
 create mode 100644 oxAuth/persistence-model/src/main/java/org/oxauth/persistence/model/base/Entry.java
 create mode 100644 oxAuth/persistence-model/src/main/java/org/oxauth/persistence/model/configuration/CustomProperty.java
 create mode 100644 oxAuth/persistence-model/src/main/java/org/oxauth/persistence/model/configuration/GluuConfiguration.java
 create mode 100644 oxAuth/persistence-model/src/main/java/org/oxauth/persistence/model/configuration/InumEntry.java
 create mode 100644 oxAuth/persistence-model/src/main/java/org/oxauth/persistence/model/configuration/oxIDPAuthConf.java
 create mode 100644 oxAuth/persistence-model/src/main/resources/META-INF/beans.xml
 create mode 100644 oxAuth/pom.xml
 create mode 100644 oxAuth/release.properties
 create mode 100644 oxAuth/server-fips/.gitignore
 create mode 100644 oxAuth/server-fips/pom.xml
 create mode 100644 oxAuth/stat-exporter/pom.xml
 create mode 100644 oxAuth/stat-exporter/src/main/java/org/gluu/stat/exporter/DiscoveryResponse.java
 create mode 100644 oxAuth/stat-exporter/src/main/java/org/gluu/stat/exporter/Months.java
 create mode 100644 oxAuth/stat-exporter/src/main/java/org/gluu/stat/exporter/RegisterRequest.java
 create mode 100644 oxAuth/stat-exporter/src/main/java/org/gluu/stat/exporter/RegisterResponse.java
 create mode 100644 oxAuth/stat-exporter/src/main/java/org/gluu/stat/exporter/StatExporter.java
 create mode 100644 oxAuth/stat-exporter/src/main/java/org/gluu/stat/exporter/StatExporterConfig.java
 create mode 100644 oxAuth/stat-exporter/src/main/java/org/gluu/stat/exporter/StatExporterResponse.java
 create mode 100644 oxAuth/stat-exporter/src/main/java/org/gluu/stat/exporter/TokenResponse.java
 create mode 100644 oxAuth/stat-exporter/src/test/resources/stat-exporter-config.json

diff --git a/.github/ISSUE_TEMPLATE/CODEOWNERS b/.github/ISSUE_TEMPLATE/CODEOWNERS
new file mode 100644
index 00000000..09f21304
--- /dev/null
+++ b/.github/ISSUE_TEMPLATE/CODEOWNERS
@@ -0,0 +1,36 @@
+# Please do not attempt to edit this file without the direct consent from the DevOps team. This file is managed centrally.
+# Contact @moabu
+
+# These owners will be the default owners for everything in this branch of
+# the repo. Unless a later match takes precedence
+/.github/ @moabu
+/community-edition-setup/ @devrimyatar @yuriyz @yurem @yuriyzz
+/oxAuth/ @yurem @yuriyz @yuriyzz
+
+/jans-keycloak-integration/ @uprightech
+/jans-keycloak-link/ @shekhar16
+/docker-jans-*/ @moabu @iromli
+/automation/ @moabu @iromli
+/charts/ @moabu @iromli
+
+/jans-*/version.txt @moabu @mo-auto
+/jans-*/CHANGELOG.md @moabu @mo-auto
+/jans-pycloudlib/ @moabu
+/docker-jans-*/requirments.txt @iromli @mo-auto
+/jans-bom/ @yurem @yuriyz @yuriyzz
+/jans-core/ @yurem @yuriyz @yuriyzz
+/jans-orm/ @yurem @yuriyz
+/jans-auth-server/ @yurem @yuriyz @yuriyzz
+/jans-fido2/ @yurem @yackermann
+/jans-lock/ @yurem
+/jans-scim/ @jgomer2001
+/jans-config-api/ @pujavs @yuriyz @yurem
+/jans-cli-tui/ @devrimyatar
+/jans-linux-setup/ @devrimyatar @yuriyz @yurem @yuriyzz
+/jans-linux-setup/jans_setup/setup_app/version.py @moabu @mo-auto
+/jans-linux-setup/static/scripts/admin_ui_plugin.py @devrimyatar @duttarnab
+/jans-cache-refresh/ @yurem @shekhar16
+/jans-link/ @yurem @yuriyz
+/agama/ @jgomer2001
+/jans-casa/ @jgomer2001 @maduvena
+/demos/jans-tarp/ @duttarnab
diff --git a/.github/ISSUE_TEMPLATE/issue-report.md b/.github/ISSUE_TEMPLATE/issue-report.md
new file mode 100644
index 00000000..82e2df78
--- /dev/null
+++ b/.github/ISSUE_TEMPLATE/issue-report.md
@@ -0,0 +1,48 @@
+---
+name: Issue report
+about: Welcome at Gluu. Inc, please create an issue to help us improve
+title: ''
+labels: ''
+assignees: ''
+
+---
+
+!!!Note
+Unless you are Gluu staff, please first review and open an issue on https://support.gluu.org before opening an issue here. Thanks!
+
+
+## Describe the issue
+A clear and concise description of what the issue is.
+
+## Steps To Reproduce
+Steps to reproduce the behavior:
+1. Go to '...'
+2. Click on '....'
+3. Scroll down to '....'
+4. See error
+
+## Expected behavior
+A clear and concise description of what you expected to happen.
+## Actual behavior
+A clear and concise description of what happen.
+
+## Screenshots
+If applicable, add screenshots to help explain your problem.
+
+## Desktop (please complete the following information):
+ - OS: [e.g. Ubuntu16.04LTS]
+ - Gluu version(If applicable)
+ - Casa version(If applicable)
+ - SuperGluu version(If applicable)
+ - Browser [e.g. chrome, safari]
+ - Version [e.g. 22]
+
+## Smartphone (please complete the following information if applicable):
+If applicable
+ - Device: [e.g. iPhone6]
+ - OS: [e.g. iOS8.1]
+ - Browser [e.g. stock browser, safari]
+ - Version [e.g. 22]
+
+## Additional context
+Add any other context about the problem here.
diff --git a/.github/workflows/central_code_quality_check.yml b/.github/workflows/central_code_quality_check.yml
new file mode 100644
index 00000000..2df45a3f
--- /dev/null
+++ b/.github/workflows/central_code_quality_check.yml
@@ -0,0 +1,164 @@
+# Please do not attempt to edit this flow without the direct consent from the DevOps team. This file is managed centrally.
+# Contact @moabu
+name: Code quality check
+
+on:
+  push:
+    branches:
+      - main
+    paths:
+      - 'community-edition-setup/**'
+      - 'oxAuth/**'
+      - '!**/CHANGELOG.md'
+      - '!**.txt'
+
+  pull_request:
+    branches:
+      - master
+      - main
+      - '!update-pycloud-in-**'
+    types:
+      - opened
+      - synchronize
+    paths:
+      - 'community-edition-setup/**'
+      - 'oxAuth/**'
+      - '!**/CHANGELOG.md'
+      - '!**.txt'
+
+  workflow_dispatch:
+
+jobs:
+  sonar-scan:
+    name: sonar scan
+    runs-on: ubuntu-latest
+    strategy:
+      fail-fast: false
+      matrix:
+        module: [jans-keycloak-link, jans-keycloak-integration, jans-auth-server, agama, jans-config-api, jans-core, jans-linux-setup, jans-cli-tui, jans-fido2, jans-orm, jans-scim, jans-pycloudlib, jans-link, jans-casa, jans-lock]
+    env:
+      JVM_PROJECTS: |
+        oxAuth
+        jans-keycloak-link
+        jans-link
+        jans-auth-server
+        jans-lock
+        jans-orm
+        jans-config-api
+        jans-scim
+        jans-core
+        jans-fido2
+        jans-casa
+        agama
+      NON_JVM_PROJECTS: |
+        community-edition-setup
+    steps:
+      - name: Harden Runner
+        uses: step-security/harden-runner@a4aa98b93cab29d9b1101a6143fb8bce00e2eac4 # v2.7.1
+        with:
+          egress-policy: audit
+
+      - name: check out code
+        uses: actions/checkout@b4ffde65f46336ab88eb53be808477a3936bae11 # v4.1.1
+        with:
+          fetch-depth: 0  # Shallow clones should be disabled for a better relevancy of sonarqube analysis
+
+      - name: find changed directories
+        run: |
+          if [ $GITHUB_BASE_REF ]; then
+            # Pull Request
+            echo "Triggering event: pull request"
+            echo Pull request base ref: $GITHUB_BASE_REF
+            git fetch origin $GITHUB_BASE_REF --depth=1
+            if [ ${{ github.event.action }} = "opened" ]; then
+              echo "Triggering action: opened"
+              echo "CHANGED_DIR=$( git diff --name-only ${{ github.event.pull_request.base.sha }} ${{ github.event.pull_request.head.sha }}  | cut -d/ -f1 | sort -u | sed -z 's/\n/,/g;s/^/[/;s/,$/]/;s/$/\n/')" >> ${GITHUB_ENV}
+            fi
+            if [ ${{ github.event.action }} = "synchronize" ]; then
+              echo "Triggering action: synchronize"
+              echo "CHANGED_DIR=$( git diff --name-only ${{ github.event.before }} ${{ github.event.pull_request.head.sha }}  | cut -d/ -f1 | sort -u | sed -z 's/\n/,/g;s/^/[/;s/,$/]/;s/$/\n/')" >>${GITHUB_ENV}
+            fi
+          else
+            # Push
+            echo "Triggerring event: push"
+            git fetch origin ${{ github.event.before }} --depth=1
+            echo "CHANGED_DIR=$( git diff --name-only ${{ github.event.before }} $GITHUB_SHA  | cut -d/ -f1 | sort -u | sed -z 's/\n/,/g;s/^/[/;s/,$/]/;s/$/\n/')" >> ${GITHUB_ENV}
+          fi
+
+      - name: check env
+        run: |
+          echo changed dir list: ${{ env.CHANGED_DIR }}
+          echo Matrix module: ${{ matrix.module }}
+          echo GH event action: ${{ github.event.action }}
+          echo PR base sha: ${{ github.event.pull_request.base.sha }} 
+          echo PR head sha: ${{ github.event.pull_request.head.sha }}
+          echo event before: ${{ github.event.before }}
+          echo GH sha: $GITHUB_SHA
+
+      - name: Set up JDK 17
+        if: contains(env.CHANGED_DIR, matrix.module) && contains(env.JVM_PROJECTS, matrix.module)
+        uses: actions/setup-java@387ac29b308b003ca37ba93a6cab5eb57c8f5f93 # v4.0.0
+        with:
+          java-version: '11'
+          distribution: 'adopt'
+
+      - name: Cache SonarCloud packages for JVM based project
+        if: contains(env.CHANGED_DIR, matrix.module) && contains(env.JVM_PROJECTS, matrix.module)
+        uses: actions/cache@13aacd865c20de90d75de3b17ebe84f7a17d57d2 # v4.0.0
+        with:
+          path: ~/.sonar/cache
+          key: ${{ runner.os }}-sonar
+          restore-keys: ${{ runner.os }}-sonar
+
+      - name: Build and analyze JVM based project
+        if: contains(env.CHANGED_DIR, matrix.module) && contains(env.JVM_PROJECTS, matrix.module)
+        env:
+          GITHUB_TOKEN: ${{ secrets.GITHUB_TOKEN }}  # Needed to get PR information, if any
+          SONAR_TOKEN: ${{ secrets.SONAR_TOKEN }}
+        run: |
+          cd ${{ matrix.module }}
+          case ${{ matrix.module }} in
+            "opendj4")
+                  echo "Build opendj-sdk first for gluu-opendj4"
+                  mvn -B -f opendj-sdk/pom.xml -DskipTests clean install
+                  ;&
+            "oxAuth")
+                  ;&          
+            "oxTrust")
+                  ;&
+            "scim")
+                  ;&
+            "casa")
+                  ;&
+            "oxd")
+                  echo "Run Sonar analysis without test execution"
+                  mvn -B -DskipTests=true install org.sonarsource.scanner.maven:sonar-maven-plugin:sonar
+                  ;;
+            *)
+                  echo "Run Sonar analysis with test execution"
+                  mvn -B install org.sonarsource.scanner.maven:sonar-maven-plugin:sonar
+                  ;;
+            echo "Run Sonar analysis with test execution"
+            mvn -B install org.sonarsource.scanner.maven:sonar-maven-plugin:sonar
+            ;;
+          esac      
+
+
+      - name: Convert repo org name to lowercase for non JVM projects
+        if: contains(env.CHANGED_DIR, matrix.module) && contains(env.NON_JVM_PROJECTS, matrix.module)
+        env:
+          REPO_OWNER: ${{ github.repository_owner }}
+        run: |
+          echo "REPO_ORG=${REPO_OWNER,,}" >>${GITHUB_ENV}
+
+      - name: SonarCloud Scan for non-JVM project
+        if: contains(env.CHANGED_DIR, matrix.module) && contains(env.NON_JVM_PROJECTS, matrix.module)
+        uses: SonarSource/sonarcloud-github-action@49e6cd3b187936a73b8280d59ffd9da69df63ec9 # master
+        with:
+          args: >
+            -Dsonar.organization=${{ env.REPO_ORG }}
+            -Dsonar.projectKey=${{ github.repository_owner }}_${{ matrix.module }}
+          projectBaseDir: ${{ matrix.module }}
+        env:
+          GITHUB_TOKEN: ${{ secrets.GITHUB_TOKEN }}  # Needed to get PR information, if any
+          SONAR_TOKEN: ${{ secrets.SONAR_TOKEN }}
diff --git a/oxAuth/.gitignore b/oxAuth/.gitignore
new file mode 100644
index 00000000..d9363d75
--- /dev/null
+++ b/oxAuth/.gitignore
@@ -0,0 +1,17 @@
+# Eclipse project files
+.settings
+.project
+.classpath
+.pydevproject
+.tern-project
+.faces-config.xml.jsfdia
+
+# IntelliJ IDEA project files
+.idea
+*.iml
+
+# Maven
+target
+
+#Mac
+.DS_Store
diff --git a/oxAuth/CODE_OF_CONDUCT.md b/oxAuth/CODE_OF_CONDUCT.md
new file mode 100644
index 00000000..55d40067
--- /dev/null
+++ b/oxAuth/CODE_OF_CONDUCT.md
@@ -0,0 +1,46 @@
+# Contributor Covenant Code of Conduct
+
+## Our Pledge
+
+In the interest of fostering an open and welcoming environment, we as contributors and maintainers pledge to making participation in our project and our community a harassment-free experience for everyone, regardless of age, body size, disability, ethnicity, gender identity and expression, level of experience, nationality, personal appearance, race, religion, or sexual identity and orientation.
+
+## Our Standards
+
+Examples of behavior that contributes to creating a positive environment include:
+
+* Using welcoming and inclusive language
+* Being respectful of differing viewpoints and experiences
+* Gracefully accepting constructive criticism
+* Focusing on what is best for the community
+* Showing empathy towards other community members
+
+Examples of unacceptable behavior by participants include:
+
+* The use of sexualized language or imagery and unwelcome sexual attention or advances
+* Trolling, insulting/derogatory comments, and personal or political attacks
+* Public or private harassment
+* Publishing others' private information, such as a physical or electronic address, without explicit permission
+* Other conduct which could reasonably be considered inappropriate in a professional setting
+
+## Our Responsibilities
+
+Project maintainers are responsible for clarifying the standards of acceptable behavior and are expected to take appropriate and fair corrective action in response to any instances of unacceptable behavior.
+
+Project maintainers have the right and responsibility to remove, edit, or reject comments, commits, code, wiki edits, issues, and other contributions that are not aligned to this Code of Conduct, or to ban temporarily or permanently any contributor for other behaviors that they deem inappropriate, threatening, offensive, or harmful.
+
+## Scope
+
+This Code of Conduct applies both within project spaces and in public spaces when an individual is representing the project or its community. Examples of representing a project or community include using an official project e-mail address, posting via an official social media account, or acting as an appointed representative at an online or offline event. Representation of a project may be further defined and clarified by project maintainers.
+
+## Enforcement
+
+Instances of abusive, harassing, or otherwise unacceptable behavior may be reported by contacting the project team at sales@gluu.org. The project team will review and investigate all complaints, and will respond in a way that it deems appropriate to the circumstances. The project team is obligated to maintain confidentiality with regard to the reporter of an incident. Further details of specific enforcement policies may be posted separately.
+
+Project maintainers who do not follow or enforce the Code of Conduct in good faith may face temporary or permanent repercussions as determined by other members of the project's leadership.
+
+## Attribution
+
+This Code of Conduct is adapted from the [Contributor Covenant][homepage], version 1.4, available at [http://contributor-covenant.org/version/1/4][version]
+
+[homepage]: http://contributor-covenant.org
+[version]: http://contributor-covenant.org/version/1/4/
diff --git a/oxAuth/Client/.gitignore b/oxAuth/Client/.gitignore
new file mode 100644
index 00000000..1dab039f
--- /dev/null
+++ b/oxAuth/Client/.gitignore
@@ -0,0 +1,2 @@
+/target/
+test-output
diff --git a/oxAuth/Client/pom.xml b/oxAuth/Client/pom.xml
new file mode 100644
index 00000000..da40d579
--- /dev/null
+++ b/oxAuth/Client/pom.xml
@@ -0,0 +1,349 @@
+<?xml version="1.0" encoding="UTF-8"?>
+<project xmlns="http://maven.apache.org/POM/4.0.0" xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance"
+	xsi:schemaLocation="http://maven.apache.org/POM/4.0.0 http://maven.apache.org/xsd/maven-4.0.0.xsd">
+	<modelVersion>4.0.0</modelVersion>
+	<artifactId>oxauth-client</artifactId>
+	<name>oxAuth Client</name>
+	<packaging>jar</packaging>
+
+	<parent>
+		<groupId>org.gluu</groupId>
+		<artifactId>oxauth</artifactId>
+		<version>4.5.6-SNAPSHOT</version>
+	</parent>
+
+	<prerequisites>
+		<maven>${maven.min-version}</maven>
+	</prerequisites>
+
+	<build>
+		<finalName>oxauth-client</finalName>
+
+		<filters>
+			<filter>profiles/${cfg}/config-oxauth-test-data.properties</filter>
+		</filters>
+
+		<resources>
+			<resource>
+				<directory>src/main/resources</directory>
+				<filtering>true</filtering>
+			</resource>
+		</resources>
+
+		<testResources>
+			<testResource>
+				<directory>src/test/resources</directory>
+				<filtering>true</filtering>
+			</testResource>
+		</testResources>
+
+		<plugins>
+			<plugin>
+				<groupId>org.apache.maven.plugins</groupId>
+				<artifactId>maven-compiler-plugin</artifactId>
+			</plugin>
+			<plugin>
+				<groupId>org.apache.maven.plugins</groupId>
+				<artifactId>maven-clean-plugin</artifactId>
+			</plugin>
+			<plugin>
+				<groupId>org.apache.maven.plugins</groupId>
+				<artifactId>maven-deploy-plugin</artifactId>
+			</plugin>
+			<plugin>
+				<groupId>org.apache.maven.plugins</groupId>
+				<artifactId>maven-install-plugin</artifactId>
+				<executions>
+					<execution>
+						<id>install-main-artifact</id>
+						<phase>install</phase>
+						<goals>
+							<goal>install-file</goal>
+						</goals>
+						<configuration>
+							<groupId>${project.groupId}</groupId>
+							<artifactId>${project.artifactId}</artifactId>
+							<version>${project.version}</version>
+							<packaging>jar</packaging>
+							<file>${project.build.directory}/${project.artifactId}.jar</file>
+						</configuration>
+					</execution>
+
+					<execution>
+						<id>install-jar-with-dependencies-artifact</id>
+						<phase>install</phase>
+						<goals>
+							<goal>install-file</goal>
+						</goals>
+						<configuration>
+							<groupId>${project.groupId}</groupId>
+							<artifactId>${project.artifactId}-jar-with-dependencies</artifactId>
+							<version>${project.version}</version>
+							<packaging>jar</packaging>
+							<file>${project.build.directory}/${project.artifactId}-jar-with-dependencies.jar</file>
+						</configuration>
+					</execution>
+
+					<execution>
+						<id>install-jar-without-provider-dependencies-artifact</id>
+						<phase>install</phase>
+						<goals>
+							<goal>install-file</goal>
+						</goals>
+						<configuration>
+							<groupId>${project.groupId}</groupId>
+							<artifactId>${project.artifactId}-jar-without-provider-dependencies</artifactId>
+							<version>${project.version}</version>
+							<packaging>jar</packaging>
+							<file>${project.build.directory}/${project.artifactId}-jar-without-provider-dependencies.jar</file>
+						</configuration>
+					</execution>
+				</executions>
+			</plugin>
+			<plugin>
+				<groupId>org.apache.maven.plugins</groupId>
+				<artifactId>maven-jar-plugin</artifactId>
+			</plugin>
+			<plugin>
+				<groupId>org.apache.maven.plugins</groupId>
+				<artifactId>maven-resources-plugin</artifactId>
+			</plugin>
+			<plugin>
+				<groupId>org.apache.maven.plugins</groupId>
+				<artifactId>maven-site-plugin</artifactId>
+			</plugin>
+			<plugin>
+				<groupId>org.apache.maven.plugins</groupId>
+				<artifactId>maven-surefire-plugin</artifactId>
+			</plugin>
+			<plugin>
+				<groupId>org.codehaus.mojo</groupId>
+				<artifactId>findbugs-maven-plugin</artifactId>
+			</plugin>
+			<plugin>
+				<groupId>org.apache.maven.plugins</groupId>
+				<artifactId>maven-source-plugin</artifactId>
+			</plugin>
+			<plugin>
+				<artifactId>maven-assembly-plugin</artifactId>
+				<version>3.3.0</version>
+				<executions>
+					<execution>
+						<id>assembly-jar-with-dependencies-artifact</id>
+						<phase>package</phase>
+						<goals>
+							<goal>single</goal>
+						</goals>
+						<configuration>
+							<appendAssemblyId>true</appendAssemblyId>
+							<descriptorRefs>
+								<descriptorRef>jar-with-dependencies</descriptorRef>
+							</descriptorRefs>
+							<archive>
+								<manifest>
+									<mainClass>org.gluu.oxauth.util.KeyGenerator</mainClass>
+								</manifest>
+								<manifestEntries>
+									<Multi-Release>true</Multi-Release>
+								</manifestEntries>
+							</archive>
+						</configuration>
+					</execution>
+
+					<execution>
+						<id>assembly-jar-without-provider-dependencies-artifact</id>
+						<phase>package</phase>
+						<goals>
+							<goal>single</goal>
+						</goals>
+						<configuration>
+							<appendAssemblyId>true</appendAssemblyId>
+							<descriptors>
+								<descriptor>src/main/assembly/jar-without-provider-dependencies.xml</descriptor>
+							</descriptors>
+							<archive>
+								<manifest>
+									<mainClass>org.gluu.oxauth.util.KeyGenerator</mainClass>
+								</manifest>
+								<manifestEntries>
+									<Multi-Release>true</Multi-Release>
+								</manifestEntries>
+							</archive>
+						</configuration>
+					</execution>
+				</executions>
+			</plugin>
+		</plugins>
+	</build>
+
+	<dependencies>
+		<dependency>
+			<groupId>com.google.guava</groupId>
+			<artifactId>guava</artifactId>
+		</dependency>
+		<dependency>
+			<groupId>org.gluu</groupId>
+			<artifactId>oxauth-model</artifactId>
+		</dependency>
+		<!-- RestEasy -->
+		<dependency>
+			<groupId>org.jboss.resteasy</groupId>
+			<artifactId>resteasy-client</artifactId>
+		</dependency>
+		<dependency>
+			<groupId>org.jboss.resteasy</groupId>
+			<artifactId>resteasy-jackson2-provider</artifactId>
+		</dependency>
+
+		<!-- Jackson -->
+		<dependency>
+			<groupId>com.fasterxml.jackson.core</groupId>
+			<artifactId>jackson-core</artifactId>
+		</dependency>
+		<dependency>
+			<groupId>com.fasterxml.jackson.core</groupId>
+			<artifactId>jackson-annotations</artifactId>
+		</dependency>
+		<dependency>
+			<groupId>com.fasterxml.jackson.core</groupId>
+			<artifactId>jackson-databind</artifactId>
+		</dependency>
+
+		<dependency>
+			<groupId>commons-codec</groupId>
+			<artifactId>commons-codec</artifactId>
+		</dependency>
+		<dependency>
+			<groupId>commons-lang</groupId>
+			<artifactId>commons-lang</artifactId>
+		</dependency>
+        <dependency>
+            <groupId>commons-cli</groupId>
+            <artifactId>commons-cli</artifactId>
+        </dependency>
+		<dependency>
+			<groupId>org.apache.httpcomponents</groupId>
+			<artifactId>httpclient</artifactId>
+		</dependency>
+		<dependency>
+			<groupId>org.apache.httpcomponents</groupId>
+			<artifactId>httpcore</artifactId>
+		</dependency>
+
+		<!-- Bouncycastle -->
+		<dependency>
+			<groupId>org.bouncycastle</groupId>
+			<artifactId>bcprov-jdk18on</artifactId>
+		</dependency>
+		<dependency>
+			<groupId>org.bouncycastle</groupId>
+			<artifactId>bcpkix-jdk18on</artifactId>
+		</dependency>
+
+		<!-- Logging -->
+		<dependency>
+			<groupId>org.apache.logging.log4j</groupId>
+			<artifactId>log4j-api</artifactId>
+		</dependency>
+		<dependency>
+			<groupId>org.apache.logging.log4j</groupId>
+			<artifactId>log4j-1.2-api</artifactId>
+		</dependency>
+		<dependency>
+			<groupId>org.apache.logging.log4j</groupId>
+			<artifactId>log4j-core</artifactId>
+		</dependency>
+
+		<dependency>
+			<groupId>org.testng</groupId>
+			<artifactId>testng</artifactId>
+            <scope>test</scope>
+		</dependency>
+		<dependency>
+			<groupId>org.gluu</groupId>
+			<artifactId>oxauth-model</artifactId>
+			<type>test-jar</type>
+			<scope>test</scope>
+		</dependency>
+
+		<dependency>
+			<groupId>junit</groupId>
+			<artifactId>junit</artifactId>
+            <scope>test</scope>
+		</dependency>
+
+		<dependency>
+			<groupId>org.seleniumhq.selenium</groupId>
+			<artifactId>htmlunit3-driver</artifactId>
+			<scope>test</scope>
+		</dependency>
+		<dependency>
+			<groupId>org.seleniumhq.selenium</groupId>
+			<artifactId>selenium-java</artifactId>
+			<scope>test</scope>
+		</dependency>
+	</dependencies>
+
+	<profiles>
+	<profile>
+			<id>generic-provider-libs</id>
+			<activation>
+                <activeByDefault>true</activeByDefault>
+				<property>
+					<name>!fips.enable</name>
+				</property>
+			</activation>
+
+			<dependencies>
+				<dependency>
+					<groupId>org.bouncycastle</groupId>
+					<artifactId>bcprov-jdk18on</artifactId>
+				</dependency>
+				<dependency>
+					<groupId>org.bouncycastle</groupId>
+					<artifactId>bcpkix-jdk18on</artifactId>
+				</dependency>
+			</dependencies>
+		</profile>
+
+		<profile>
+			<id>fips-provider-libs</id>
+			<activation>
+				<property>
+					<name>fips.enable</name>
+				</property>
+			</activation>
+
+			<dependencies>
+				<!-- Bouncycastle Fips -->
+				<dependency>
+					<groupId>org.bouncycastle</groupId>
+					<artifactId>bc-fips</artifactId>
+				</dependency>
+				<dependency>
+					<groupId>org.bouncycastle</groupId>
+					<artifactId>bcpkix-fips</artifactId>
+				</dependency>
+			</dependencies>
+		</profile>
+
+		<profile>
+			<id>test-dependencies</id>
+			<activation>
+				<property>
+					<name>maven.test.skip</name>
+					<value>false</value>
+				</property>
+			</activation>
+			<dependencies>
+				<dependency>
+					<groupId>org.gluu</groupId>
+					<artifactId>oxauth-model</artifactId>
+					<type>test-jar</type>
+					<scope>test</scope>
+				</dependency>
+			</dependencies>
+		</profile>
+	</profiles>
+
+</project>
diff --git a/oxAuth/Client/profiles/.gitignore b/oxAuth/Client/profiles/.gitignore
new file mode 100644
index 00000000..0f7fa195
--- /dev/null
+++ b/oxAuth/Client/profiles/.gitignore
@@ -0,0 +1,6 @@
+/hudson
+/seed21/
+/seed22/
+/ce-dev.gluu.org/
+/ce-dev5.gluu.org/
+/jenkins-ldap.gluu.org/
diff --git a/oxAuth/Client/profiles/default/client_keystore.pkcs12 b/oxAuth/Client/profiles/default/client_keystore.pkcs12
new file mode 100644
index 0000000000000000000000000000000000000000..83704fd6155d2c0e847771f04c8feb178f724cba
GIT binary patch
literal 23345
zcmbTdbC4y^*6-c6ZQHhO+t#!(ZTGZodz#ajwrx$@wx(^qyMNCU_r`nUM4S^RDylMb
zW!3&;uZqw5=2}@yLAvxHz@SV)I)@O@G@(+VkMO{d!1+NsOJG4da{%)nrXV(o|KAiF
zCRh*~D!`1$6a@SU0sFsC!NCB7<Ocye0*tmy7XRl7aCjzdCa(WGgkz!wL(7945q#4z
zwApz5eqIuT^Fo+vL<|B#i39>n!~_Qc^*_G|0u2ttgbx926e<O54hjZL1BOKZ<mgcg
ze#P7IdMJbPjFt`-1PtUez*UttQee<umR><?>+ibgBznTh7Cq7#rs|3GbYFRh=lr$;
zL^|0y($u*^Q|NPyHsc3eQDk?=;g;hl#~Z$6yTgGiHRPLgVL``2sw=*#zWQUnKzTSo
zM)(Hqx{|b04a~3Fsj-&|=;bOm=#e!rb~J66UQ5k;XSjt&h_^x7&&4v!hIE557u0Zu
zdhok!^7ScP5z5I)|48Ysax`D%-bO2bG^~a#u|$v_jd2rcMJ}l<9Zz{U-!VxS@<B#)
z`f|fl16wW>U5T!H=#CeVu5PEJTAelBnH$UNapx~I*X$@C+ymFK15u?gD&y0D8K1or
z!fQ)Z2HIniA4O-(K1`bb=kJ9^W0oP10%8K<1TqEU24V)Z=0Fxe^ngAa5bHlZHXvib
z$oL-{2jC7<K+g;?X9{Eju(AMg0eV~jyBQEW6Y>B3VRU9RFcdXwJ98pt4t6GPCcuS-
zgN=zP2>j3g^9q0q0gQbA?iH}#c&q6e_xf?r*wB^y*0=t_;Gg%OyaJ(z!SvV;1s6AS
z&Y2KIm#APtVAFIG^a4byJOTabB!SPiGUs>Nb@FCzOQ}-%DHb%c<-cz_JX&QJQZGg=
z-ZZ7onqY!z{`4h87U^+Hn_Lc76;7sg9!e(->IyyFFJ0#bDBKkJg)jPUFlH+k9LZR3
z_FWEAs4;R~g*A)e(Sg&8LijdJP6V9rWKtEG)<md~>5wF&0YhU(sqvg}<fcUY5pcdN
z!9TyOmrU+1A~lmxu@Fn6vYY$lFb2s+&uPHabN6o{TVAE<QHfb!E8BNbZp6=%LA_l&
zj4$h2L&oCE)pnheKf4wzrGzKh5;^ep<8$C4gKr^qK*j&guGk97#Mtu_X*@Fon&Zwl
z$x?(KR015yDajG5j$}+ckwj100KbAOey9>2ipFayyn61@0jmpW%J_sDYZwwZ!O&5R
zIsK+6Yd{UGxL&VvC<lB3+FkAz(*9Vho)@8^-6`!GHGQpA&F{!??pF}m3IZ70#<cuU
zC)^hkAN5K?Opvo=Es^;1Mq5G2lJf4Cm9r|wNYFd@nj&JQ>6UkgPpWLLXMDrR>uOAV
zpPIaxyJKTH0(?|)eR1NsTgLa;wCN~D8S>hTX#uOji?;3PWGj9#qqW(kXm0oe9vD<O
z(lkrC705NPo3<1rhVQwfFzjXEj1kUg1W@h6kNl`->ds+Uhlzjv(BFKN>njW>jP7Jo
z=E0z)d1ST8GVEHbLHc+uq-%73fdoy!^V?cYHS8A$K2<8n5is!YHeXjyH9R7fJ)-#5
z?HK=-a&#hqB|ZrUrZYrwbl%j03+NqHto_3i?*MbXgunw`s``wOhK3+*>2RR}AE3e`
zBD<d`ifPI1YKcX25fC9tZY-oid#Y^aJneOXi8w#%84LW&!u!R|3O6vK0Bnqi;#Hqr
zA(p-6bU3DIuneSJ1XovlM(pwu>d)U#c>X#O?3J0LzkZOF*$nd8m(6yzr7$R->lT<t
z_3)6Gs3s+X>USnjspdLLDjk-cOwr23b#E<EpR~_#S7khR`#~NMy1UbENZx6;n{VR6
zG$<CWIrLM`)#hZ;WekkKRa>p2I8+Th=dPmXw>B@UKW`06fHBx(JHXDJ6W_{Z_69LS
zi+$J9z!=gi@*5(X5}c`$#^45s<drok9RqB9|NeD1z_;aB@5B;D_B21RX>O<`jA<o7
zI#N0@z9ef-pFrc)H!@G$!_&7VU!z?L#yKQo^W~&xolCk}`b%SOOC`4T{k9=iT!m&s
zMc842AwH!aC*+48la8deoCpmOz7^;X&3v_MGvLoS<!6w6(%(PAGT?Ut-M26KFWNTy
z-$3P;9ug^sLS8yF+o87H=E^^vVf)?8K|M+{EVrV4&$U{rILixIy2M`ydMEXlZ&ssK
zPHF>(*CUGwv|lH7jZc_uGoS);BwWmIf(zt%h}`%i0`%e(^w(UjycyOY4PYAbJDB`e
zoq;g^n%HS~q2BakMEpLlsmv-hYf5k`=|QRT78{_2d?xynyOLs|FV_soMMgvStZP&r
zUa^zV00kqR+3*a-GQIXX-s#spIE6+BT*S+q81(ma{sL>v!Ngy6Umc2RvXoz7zZj-5
zC2vblO-BC4l)`#j3$cbQs`!DDiYzBjU49rVgm+B`k8g!p`xb*XyW&GYpKIeRrTAYV
z-57}DA2fd<+YE5f17OYtI5_}4Hb86q58Szc*a3&hKeHx))&y{m2_OWR146<V+KvAm
z(z%#9{%fSK?fOaxUoF~7?mHC&5%6N#b1MG&PmnH9I~!Itfah1qC>2ygLr?vMbUPQ<
z>x~&R@j)Wps9%@q&#V>(1wrp~r`^1r3i6yKRZbs~6JSm|j&1N%B@^ZlDEu{+>k<d>
zxQiN9Nv=TN*mm6ESlt30me-4HP&NeROX)hpx<#RqgEA5oN~8MCMtZhx<1k=WFcCGL
zM{Jhc2jm*{^OiC`Y*5cyS=yn_zLV7b%ykl>_dvlGuSp_(rSUcyaVBAINSf@O2yTyS
zJA3x1up6|0^tD2ms2SVj!Wwtp5C~+jwK6@Nhj#_Hz6U~V(5W~N64bBY>yi?>=}Hbl
zHr1%013T%?!E5+P9XdtR8fCa{dN;Pt)-6gz-?u08NFopaT*L&coXmu$QtXjt8*%qD
zMKAO8m{GGIIB?OE?KgKM2R39V2C+LUJ>T2P!0C`@0>ak1;zxWHDKyO=({!T)Yjwu(
zS~P+y>xh@JF$5}NDa#W}LLThbcBliT%u*W^=IFjl+ALB{8bsgt3;WGN6a2QNogb@A
z<uZ}c0C|n@a&S%~>GZ~Jp(g5FOhy;B&QH-NfHNzAANRdGn3E%$#aYPO(uHQ5U$`<9
zBrDpPF?ZZKPAKF_(<yyN8PrdKg92^|0!uc+`dY21VwptK3{yf}%cnS9?JVNG;qRQ;
z<YS8lef@9keh|W~_p5I32&tiSATIopi{d;5VlN1Y4Q3b2YWGQsQKy+T?Z;<}bwo#v
z9V9YEDf}mbA3iZQ@IX?TRW(`U7hGnA1T*OLl{c>4eZQT6V7VfIW@285r6$MeyO&w1
zmjZXJ93oOg!o863_|;C<?$X%AFCY(j_Z??Q?)k+&3Ud0qHCmplQpnGLw^Q>NaXMlI
zb;y10gAtG0(Tt_4Z*9XJ5an%w$Y{%vqz7QSztt)Cj^rXA6c*}Ag0SZrnuGTvo2HUA
ztr#q$S91+F&RQ~d)k0=W55Xew8;@=0%!KTFHc?O+-x4EG2*66fhZE~<BF}01H`p)3
zLahzLH3JL9kNHkwl6Co(rr0sw_$mzf{V0QUUm->)lG_5Q&x3Z4{7~&mvx7st#rCoS
z?{)2^0C^T(Y=Umo2fn8FUp^O@nVlG2x=8tTOx4*ncB>ZwF{OiY&;$u=)Db*JSoG5`
zf;_GFF$>g9m{_BLQBuSBTWn$l+4_Ywd{qIp>=I?cu~OjBx9WNKM7DHmeiT#<om7RD
zy=u%XFq7g?o(`Oj!s0)&Tg2NiR~YozZsq#%8lvZWI1Okax@xK>)`6Z<jN)qkM6uBj
zc)uHB6RRT{<v(=u;T7H$Ba9r|ol5-T6p!=#NW_4s_0?_VzttT$8>53rF4jI8AfjnC
z2e;s(vHK>pDiKId_K2d@>pT*5Di^+Y!nRFeed~5{`~jXHFxE;mK2M4HL{Su(DtGTX
zu1m=Y0+$$==H8T%+>{t0Z2`PJc1&wl-jZ_$*%nVtTe`5-hARWPbf@Hqo}NkjcuCV4
zYVrby{f;z{C2hj0($AC~1?*!FF~$y;l?zgo{;f8ek^5Z@=kzCRNIi|dLv*p!GDb4G
zDy>EP#?Wjqto@Yzr_dS|(&Fh|#CfHv99B{rLu+C3sq49LDGw}xnw1%;Rc}ow&UJP}
z(9g>0L08bJ9h*FHL#Ong-$OS40)ev*Y~64>qJ_q`Y*917{VSxK{iD#$0Dxxy2kP_y
zNSgx``<Gs41K^qkVE<C?+yLuWj~M`aw*Ng$0V5Vb7-0Snkj}#OUn9Ng5ro&UC=MT%
ztS_~P3`efky&~v8K|1-GM1W|0OxtK*OH`|+g3lMy-?2pN!r_{!m;4EDIUc+2Pr@7w
zsT!WklT(Mni%NDa>QbyiZ%Mdb!R^3=jYhjoqj_X}k-6ZGud%pZy>7?u3^jI*)Fz=<
zF536n&tl%k(uqQ4`Vwk36U1=@#SMuy|K>I-Cva*^e<JBzjEarF|FO4P&L6})A0zWj
z>NpieVo7cww(Fb>2BJ7zu}ZE|%vvKidNthZG6;*P8h}9M=-?->bSbP6QvJ?ryO7$%
z6`bgg)78+36ezYyHk2eew3I9#{WMEKTc^vyQUIIZP9H2v5ev(+k~j9FN`Xv$_x9wq
zw!e9eo%bnH6IdlU@2`6KQ!Gq*g!UwUzx|yt<i%NFSjrAkn}--_jI=^WoVIHGbU^$V
z$a+tY6S$7peNF}o*P<)X$XO=KgWZqK5Jff{+AwIL-pgX@XwE*ubz5_E?YU~R>V2bA
z;k<_JHq#=hzPD+2Y$6J&VEu>|=}T)RV<}}!o9l`#U3B5Gw)@V{-A3w}0?GFtzot>g
zV}98P2(_P3U;(!IAyCn-ilrl?Frl3$jINn${>|}my8}eBon{emWhCxrt{T+~e9yw#
z;wj5AIkBo6t3juzhE?OmKT(3h6Gt$Q?W*n|?H9gV3)rtk>Qj@j#!tGjp3<$H`_)N8
zw%5gynqbt<CBfhI>@UQT6444F>Fd8Kv>P1fm@B6#WMnUbw!(pm<J@shIg2bbmqukZ
zdK%@Ehp7UcXlXAm=smFzJxlHD!ILrD6co+E;q{VvEk^EpraVH=h{h_ESQ|VJL!&rM
z#-MtY!L%|4C^8PpCR`8A5)0Ga?D0*6L!k<6fQv<H#u8$@72QzqZ;RMS!zKH`Ly{Y5
zIZ$+YkA-4Ojc6?T3ccRTifvsa*VascQn27PrNha-%bF$kp_lkw?qWw<`5*?q`|N~;
zw{<HG(Rl0Yh_|YAIIVKJ(jgQ{P^qetj(n0L*Nx;^?BxyAsT_*uP#>iqq&dv1@|*A_
zBV1#<8C6;>o&~6Ii~083Vk`)8?s*%I)Dt5#yTmv2e527gaQ;-L_9h_7j^##SXOKdH
zT+bonr4`?IxwsT-sP@u7M2Ern`6Sg;pUOz3^nvvrPU>js9jIcL__~28fIBoq->yjU
zQa=Ii-9+8&Ri@S=nmnWY<67|n(#8OsEgv+w2U=de6&xOMt2(p5@Wh`)D$uzZLjdFl
zv0J8cM4OU|lz!A_MW$)7LfWCr@UD^$ZRPY(;<g4}uy`7)@M(56XTB)*k9ae~UDhd|
ztp|?D1N8*y>G?s9g1t3n7z6Pa*d|_xzYV=wWPB6v<|uD3>A!=OS8q_J>_`1SpXfm>
z`}@5on&Ne0@;Lhhq;8!+-E&FDG1&Qx;w7X&j&Y&8qoItU`H#YZBMc6k$1%CfpgNNB
zODv*M?+j}gw|#?fv8=Fxghcww`oP#3h9xkD)YjjHdOxDQh5ayKc<HFEyfgdQMU*Ij
z3xZOG><*&)k_Zs<#}?4z2^P!If&UmQ64cTdd*d(f+tEB@$-=($tqId2*6c|3dTeu3
zO8CS=8$gogrj5;Su=dqp<?_^HDh^8Y*;++g=p4j7#}1|4ogHBDslM8LDu*nPCqKaI
zQZr1kAM@?EyVKpcM~3E{Dc=7pq<^V&W&oni0Ie|q+w_2w3xM_iK|06(CSHsI=@ury
zUG)Ee-vnU&QtDrcny;h{JCMb{Rq1T(|25LXH4QXR$x-N=(X^lTYxEcnqoKC{6Qox)
z6f^aJ?1Z=xYLk6lGGKfm-5RJZ5dwH^-tMimM~c9LPNrVNf8};ZzcR>6sZf@3g6q73
z>ba$CK-oZ&8n`GvI?5}mlnx#|DWbMqQZ_W{{99fdfiM~oT?{R4RsHUEG!mo&{4S{z
z{+4)E3qy^__PDsd)x;>3wtUU$8HQA9KbPB0Z9_ZgHqwa9#jAy&DupTr18;0cZ-~R+
z6?Yz$rf^H3ck>c2_zp3FF31qiK?6O`vG5HCTEu7hK0$2L3LKw~@V%KL{}V8p62@W?
z)jNT=Ss1NvA5yB;xYCQLi+@1L4(ryB1Vp{5>`pL3$8)|%sBq9-w{@keXTT>l%FGlU
zk1;VmlSy-Dy^WWHHXxf<d9y(n*?8uTrpi?`8uz8n(Jv~xPH+;nib|)o)7xC5lx6Yr
zw%Y<nvGB&~-6yBmx9{9Hl=nh-2}<mwYc@HmF^$HLe#^YqT8I$C1iH3}pR8Omo_R5(
z2t|WrF6df&ZlDC$Ov_Io8k$T^fYn)b!l8D84C@OO{!mN{%p>njI_%9{_HE5a*{RcA
zD8fzLNgxx5d`OCHAD^FIl#(WA&ro;SiT#sn5oVYWU-r{O1K<7nkJwu(9=5ExTwY|8
z?l<rekmTy6x|T#G2gOL^v3i=SX3Z@lze8R5rjvvl>z5;j?-q_gtz@O_>y;8m9BT`O
zrTO@NiFn1ILiwHC^m`Da9{7lsZwPU<exTk0aX<$FD+l>;T#y{Uts>`6tiRhJnc&sS
zpY-*^asOcDoQjEc-=uP4i-nS;^tre6j!4!y;MR!8Fl&jGJgfJBp*Jj~d0E{~<MONx
zUi+^889i!<+Y?f&eqSevX?+3pn+4~rSVLSDWe(#|<TUr<^69v-0d-vuM9mFRVOUhG
zUT{@g7!P;`m~5pSVQ9I~DJi7Y#T;^Z|HyjTd;;oD*SkQqbaIaTmGQjXL%1HvVGSv?
zjU*<FK-tOnq+o{=+a>pAoJS(OMS#oX47qkw&Vr=MrYE{wX$1C{C5v$h!<~vpTXFSa
z&;1+|X|gw7iD?aIW(}`fKI$QcsEE%at(|x6z_9!YZUNu8)XCg|O~VY%>$HfQ=Z_Uj
zpV2Yg(J%!=`BM<o^Q$`e(POQ`5U4-fF>A*8GM%v6i~{AQkM|i!I7{wt&3-|!-$M}I
z?G2v^jR!=WTjyQq=p8(Q=wVrYq7gcZOvVsz1OOBC8mq`azH`MRfVONgJ_nx*T59L^
z|6X`y$K`55Y|{~T=u?81N^9EQDG-papbJ%3<M_rnpfZnp?n8Z?mTSeuaC7#DmXo95
zr4DS*jc%c!MAtm{9o5Ty5+}5Vk)*Qx#1eIKps=yo!H6JR03ReN)eLT*E`b5np^_n4
zPmqVv4`|0jwti__B2dW~Ki^ZKyfVJ<Chu2T4Xm3(bBT15?Vss3>h9u(+K$e~>8kI3
z3@&i9F`mVpJTW16n2u&P9EldylwkMe@9_HL3ij+VQyp(6;(m$2%+KmHii?PwGEX8c
z@p4`4gN%+JeEf493iI%Ne-S?|Y^*GTdHfk+oS>CVF!i@2tkK2iphK4zkynWr#GlbT
zkZEP>AT)&=YW&P1wIv-v<W`wCebO>l>R(7}=(8Vuv>#J-$SZFD6l&@+`)xL_U^+B(
z{&em)``1YS(%dWnIDe`0uWUIdV8jZzeyMaO0JvEJJ(GWQ`&aKP1TX<?+<+%I0lhDk
zZvtfYZ;{Ua-y?lZ4P`DWI{lHp%)-J!)DNXl{?Fonf^@IW5>K49Yv~(Eiuxfq@UbtX
z567ZGtc{ku28;iSwx|WNQHq;#f#t8IFEpkDJM3R`09#Bc8u%TGH;&SThUY9tLs5ln
z#uOw>cDks@=%I6T95$wjrFgpzee+0YjyXm|?^mcuGha3lz8JxtgiuMYm!is%1;U=V
zviThSUgn7S)3K)bK~IeQf*8V0M&rhFD@@u!kd)sZt@uSRl^$$zP@YtC{4F6Ey{6kh
z4FBElz-Bq=&kX6@G|t82B-UV@7D9%gIib|jx<VqCBgAu{j2A^~RYjiVc05T#{(&1e
zQPm;g)%_Z$!vjfk9BUxh3;M)Nhi~6+c|ze$FnbmBydg3(`2fevl=~#f$C?YX;hb*?
z*FT}t*4b_m&p*XMO{V*dV_hb>H-bDSIaY9g9+M-xB^8n_Wf3-BfW!94;Hw^C<*cu&
zh6ZLu$Ndsz&uV^;;RFx;-Wy&W3xO{;pP|$~Ced}~pIx^rxlsE^bO}~vuSZsSwJvW4
z@8qx7=QhImy=+r0iwGJNYsn&Ewzb*ueFGWqEN+Mm6zTTKWhsFO47HPvGG1l~ZBRx{
zv8r}@XH7u>KeN!c?@CkB%%&ydLgGyM+g9ezTd(FI;sc6Oh&EGL-u(`>)J?p;JsyO0
zg4UVg7Ia#zN7NW9C*)(V%9I*~Y53e8F7Dic#ICS|Q@osqvyxyG*OVmr)hzZT9fD!E
zTDv4LSEDT#+VnQ`<Ms+;H{u|&$#cYJfiZ#0_;{SN8x`%{iY(%K^tqk|G*`VPseGor
zS<nIyL<-zfsRcBIUVtBP#M1b3|GI<(tp@ol*28lsSXz}NilN^z{;D9O&VtGmOA)+j
zlkL7@{e3-2;K(AcX5_=&H1-y6B8z6pA%?cyXEgRDR7sDAj=oWoD=Im@#6<Qvtb-?a
zFG&6?97tv`$+z}0ShHqDy=d;=emoO%BbE@(i?pc;ihQ3@&Z^KmS>IvEh_PgUAxEYf
zr7d6(&XjgenFu7pr_Q^UUq^ga|M6bliiYKDL~`;f_SF<4BJ$+NT#L%?5tD?aE;rbu
z?(;VB@p6cIQTOa=E>@66u*YfWy=eri)}5E}kv>&ws2;#mYZsSUNiSYFnp$b3Fc4;=
z7EVdw1RHXS%>UIeE;Lc<Mv=)qiZg$-wo9VH;elDdFLe<x?`458S!miJIT3&<TvN_&
z(Qp9{`r8<6Q8wYWeH8B*XG!?4Hevd!Sd;}v8LF4IU{TQWi~e*do`F)S<xg7dy(!D<
z%V^Z<zvSmI@ZYwLtKnsfS}LnUziF|f@6DILF<_1&uH0@b=)l?pmyl<$1}7b|{u<pI
zLR@$990zr1N+_3CY*nBYTP3s&AXk@09t^PW8BLvlTo`4Isy>tS1reZ(LUbQhWszPz
z{K+GmWfjRa-<PA#i;P$n<L*ZBmfiv=Pb8iNF66QcO!kY$2A___j(y_E&G8%DQokiY
zd@wy^8l%Pp)CayC(ArBy&m2-A6QQ#~rdRq=jnPuXFHXvY5-_I6Ru~!dVM>;DVvF68
zpGMsn;$Ibc`mI|<gV9^{3TIEg(BZf?kC*-6d-xbc*O&(~zM1i>KQ<fdbb}dq`zdQ!
z))|Uwg}mo2@k6tp-yz4IXgDD8`vRi5(w>5gi7L=Mim=>MGlq}Qzd||-0LiBR=<P3n
z|Bnvm27vl2Z~j#t{Zi!g0Nri@(Bfaf=K#zZ1IB=oC;;hSEi>Rb&VP$^4$l8trRVA^
zPwUXVXz+|kLV_B=ClxC0IQ%C_UkIoF#-0G&lmgka#4V*@^M!N`>1G^8R%nD~5FI-X
zRl(c&>&5HOpXNvQq&-$Q8kt_{rx!!D6yl4ku;BwAkF!`_&YixnEaaC(+Q0`m%n0m#
zenoRnL5Ng%D4i*ZlT*1Szo?}jZiuX(sN?1MhtJbV2XBO&E^$qX1^i615<vJbBU6-y
zGg;LVodrAczVE=lJJ=!V;SR%U-h3{G&AmR{a$@m!=QOMg=;$Z<a9N!cZVqU2bgU<I
zG=eA}HaGauG4oEMSVFmyOqaU#>YLZGByZVbRa*zENwdV?g6<&}hD|O74x7SZ_ITuV
zQ=hjhvK@yWo)Iyw(T2D8sYGej$~Z~%kTGGC^R3oT2iI1ClU?D;tap2^`82HoLzQZm
z6-uMeC`WG?x%mjIgsMtyey@;HPn_XoxX-r#4Q$k79g+cNAYW;xu!gwj(7FAGOcMo#
znq{31_C}KK;Z@eQtAEGw`NHW@-?R2;4C*9XHPo4q(&3w^A4VeXA$LmqL+P3O+oqk2
zXfT$-^&N%BZA@5TCf?tCZ;`nf>_@A-&|Tb5hAiy91Ixiw@$^CyF#gr!-mBf>RXBOo
zI1dGRN2^4)6&I8T=bF6jT%0Sbr^h4|_Ya<APV5myNQv;9-X5<T+;Le0Dla+Z9_xeO
z#3ptw`xE6*Uaa^$Y`?UM2V6SepmOemfLm!k%F5bV&T!`fJ2(@(?TTkb`_DsURZliF
zq!ZD7db-$K<Uk1Lk}3I=Zm;tirTxCCEN{de>uj0|7lNiF*5Td|zLw*Nap@Eq&1NIU
zHNw7RIK46?4N4(xDE){$Kgk7Qt4&wq@%b?E+>XEbg~E!fnPuV1sMD4UlHQVu^`!mV
zou~FG$<B9OVT@^+u}MqK`pq#$TYO*#ZIYey&MDF;R;zS7rWe=NQTfPY2CE*E-*&3f
z>w-WHMAwQWM8FPB+r#(!5Zt?Cm@3t+>9WNVvh_Iqz-UZoX%hmb)`rD+ghN28Rc&N`
zjem5hl58^z#w)3+c3Z`Ox7r;o&^~QJNRfYsu%0vRxka#{$3-6yI7fBlJ|DqBfqmTp
zV{Rn4$?5AjrTlUPta95F6)6_}^0e0kq`7X{;rHW0{mhHiKlBvX=Xk8X_PU?Q{LP;;
z+EX*A@cjGGURn>iZ}{6_W87qDj{-#zy|Kb<2aXC23rK=pqzlp^SPXKf6c&vIzgL{s
zL(R)8=aEYg_!O&|(_R^<e9~EyC#vLM^q2Hahm{~s;GGm~bqs{MsTMwi(ssoiRnv;g
z3t*qp5BS%G#TEj&m`3b5C<f+qypf;zB7mFyFo8UI6SDRgJhgN3Z@b2n2HX~I6UT8;
zi#MaLul=k*3EI!2lig+`2Df0!Yr=X)LU~!A=<NynKL4nHVkieITH1qPMog+YDE2%b
zCwnb|@kr3&Uy8Dc*#|u4`5U;wCRqs<;c>q+R->gfp+QtXFZxl#e9xMaROBF?Me*AI
z_%5~y9|}h(t=<;V3Qs?y*FNz3lx6pTP%BrQ=tC9vM&Ri<*HKtw#ClC+%_B^N@Q;W5
zj_hG}l2ceh770EBL2|pxGQVW@VU&@$dRJ*$2jh4W(d59&3Zk;%t0Bh^*(bG>UY>ZY
z@vJbOQJ~P*z~m0~G3UJdk&~d%T_jB4UkCpR=^S4g8vtihz`^tnw9NsK<^-Vo3+Z3@
z{zAG5V9fT9%>sab&VOM3rRBK+r`gw&{}$<-+<^T}Q~%G77hpkvk@w&2c#+ocynlQl
zbu}nr4Wl_dnbo!|_>an?bl%30(QOY1#d(W<>KDbZV1d(TxTc}uMkWrf@Zj=~($~R4
z?solPi^MBQW5i)rf3me1=JuiTV&q;-L$Zl@(m@M<D={RP6AUSfZlQBdx!D6ZC#SJ2
z3W7-k-S++@o(&kP6C})F{6jTJIr%NkC$6|d%T*5cqnc9>`_mWG6qfMPP8|r>!)3t=
zRxO>-P#>zoO4m=-VXUe5I(t~Tic4iar)G3Qvtt^vx)p8U6vmq`s@!<TX<iXr*?@*n
z9~kC9Y5E#yzk_&Xpnq*zG|JOgQJx|LtT<U;Lay+PJPN7&UwQOvWd*2i0KCZz@XuEQ
z?JGTI0kHm$N54GwRUP@-tMq02s*acdyvq*o<yR5h3~(>t{I?$EX8x~(bfG?E@pY8T
z5|ARTDI?miNJnMKuKy%RqnN&RP0gRu8k)N$7=My@d<ALEuEUdN?>of}Y!IqW%_xY+
z^1R!>NLczbhoQ}BSl}j%68m(yu_DNaW&<P;vv_J5+%Tw1oDf2RMFqi^6dh2Li}dp@
z&Ye87ZuxFAwQk??gxc1WN;(e2_fcTmCo$rEPo9NjKz0sW^3EO<f3(`3Bp&Y_&ROA;
z9k$O#dq4Q*%GvPodX_aG<tz;no5Z5!7!aeqVhOuU?v#Ag6R_$tTlQUXNTi8k#1rqt
zqb+`Hc0(N>xx8|z{UR7CoC5b>v})hvR*Caq3Pl0Upk)~P9uBWI$hx3qC@lC(v|;s{
zjo!3IG@YD0_E9LVTXW~999A8gaU@)b-dX;B9j=7>nY*F8<zH2Xm+Fb4o9F}nwWb0Y
zwNiC;M9KXC$nIit;I$K^({?%qT=j98`<91I@3JLzMvW=IO8GSI%+Dw!4`-Q+WG&ca
zbfi6p-h0#^wrqKorm<#uZsEc9tHc2pd$ZDS@yZge_(L4;2`R3-2pX)n4l9QANp`Q<
z60W4b9=<)KJ5<x6emCxcp#u8L6RD_uO<8c-ykZH(17kaRWe4m>Ecv!zhjx8*9qVuB
zz9F0&cg7{}B!t=?vDs;ZU^`~(_*jxqsDc*CHkH{%m-VW6RlL7>C=12vTQo1xL01f@
zzcW$?APUkUVyeh~Oo0ZVh>gV5Uro^SCH5N0&mz$1%$Q>*;bR!#5R|s7&8B+5jmt|q
zOkcYGc;pz*WOYIJy-BQaUF#9Tmk6UvDH*tXn0|@jQ#pHKZpcTE;6fP8^XoMsvW>|7
zEe4|~f9IJ4s;_1YQQ+<ut@%^Ci{a!Uvk_J}S0Hy8ynF=-UyHR|wW;;xZ|=oK+qIX#
zav5<jrevg>jW49Nho^h53#a+<<1^i$Bjv3$NJVNQAoXebT}c1L)aU^LlJz**yd&&%
z+2i*g;;RY}<*uP*7(+3RAU10F-P$A6*8v-v&jwba!;Ahqt*EI#r1>d6+5X=gy6{<H
z>ZAwG@@Xe!2b*{LgNx?Kv`D3mWJbZ75ushe4gHTWrp57li^BPu3ONTL0!1zRd)LuB
zT6_?Wgb0Jreq1O|JRgx`2D5U9R&g*N42WM9@X{<(LvoK8HhF1WMAnV_gk#Qm;^|_)
zc{OiCE}A#KSsTQ+X$sR2I^%TicZgsnl&~+sA{nXhE-~2a1h?=2uRPO6P|v`Abh(C7
zx*R=INyOe@0IeIIa=Ue$ys;HbK`USYVVFKfUlX<)yBx`QI)fMmT%sklD3J3NZ%QrW
z5bg=d`4ff?$DVwQcw0a0kU6qv6!tnat*L#S;#XBp-Kp(+qnToO%p}8fEDTQqw_h+r
zJ%`goGB3?4j$ama9?LHl+LIt!A~dK~2nYRGT+W^-zn0Bj*9qIac?!K+x0p0qM@Ht<
zL~*K5kR%q#6RVA(UnRxNZ3a;p$a1hx>bm;TOypf31vBQ073JRr`hnZ~a+{{}fQnGV
z5m(A<z4ee+h`|ir#;<xn(-CKJn(RNs#$$PCo6n(&)iaKwY&IR-o`&|R7wUF~1IoTp
z#W7a*-9Odt4c(#phT)hcEi^FOa+d<M7LjATg`d*S5E{Du84h)|xuFcsLiU{68)E;K
ziRB(5jO*LpwyG3CXp_+h1n-H1x#Yh>I>$fwW(FXe9RTjHEvW4O1m~~N%=S<4{tDM$
zn^3<3@)z7$0LVB0->W$Q@T`E*zYWsdO#eO7ljxqv4yA@v!Qql_)(&#+37gJ5{u89%
zsoWg3$&;&0iV?SRVLj%3AzgT{r_!$f=-b8%Jh2uRT9wr>tLS%vV(zftGL^0m$gJ%?
z+fe9dZJqU-J``dSTZ**)XO5p|Am3*%)8<B@9@5g$_|7%TCKR;qC;}_0A~<;OB={C;
zAI2}J^qI7sKICqUm(;Tr(V9_OKxgiI51I>&m2u&fpwHLJ()<N^cv;71(TSUl(5+yS
z5#5w}%1b{$Ak||t>Bm}U(56GrFe?6ZO}jf;$#OG=?e;8-Ud~1eE_Wembumc@81roG
zF+v86HaouhPeLhkk<*pa&XL?E74f-?1cqZ!E^+RYGI?WoNCU?w3&vVVq_%*Fp<eF;
zUjV)E3FH(U3}0(5uSUj8j~a>!q2$_+p`jogdSeT0R2t<gimj(kIi1ET?%NCEEt&Z*
zl}R@X)dkZgLuztq{uY0Q-Jbb#2i3QRq+Dq`0Y-U~L9d(X*%TAv`@HUty`xo?`?qiF
za0R==gUJ=Y2LgYdKZi`3{@O6*!b=Q_PkWXP^#UXwZ(SDE%%0@4Y0Hv*QHp_gawJ%w
z19l%<0F78(GOE}%ba*EIclIZ&oq3Dzitb@DGX7--egnp@lck%@Cw7H**$k7VwAia_
z^D*;p$Wg~j5;N#CFRO^}FhDi#*z?IkB2kIIz{q`mN&Z-Utez^NrM2R&o-1%A!jY>{
z|5eJ=n$WgR24yo+idaz%eH{yq5UFnK{1RI=Bt!LB>zkV#k`PpqpQP7WDiGft#9t|i
zegXXf=W)%!_e&n8Sk~Mw9<F=$xNCS1QI^cd0?cp_sX6CntY=BMG**YrNmgg&%K2~-
zcF~6O!;-T<@`3BaUc{657mZ=sW9>4`VN7Skj%b1~5@L8-tXMo|P!$e7K2pm2BoS7s
zbU%ov8pzxHYft(6_;5Q(Eqfsj76i}OQws}JZVnjbkvDYaEYb&!*18n|P;q2q+|n$3
z^2}nIYY$Gebqp$)(<_kBM^X@*qa0(zp{U-5tb2!8v%&gaA&|qkRhs54!FMyNY344s
z;`_`6ysfgqPMqDmL#_^p@a@BE9;k|O@>m{{IlJMoS8YwcXi6ueqB<p!nw?`7mB~6U
z^atEkudv#m$ddk<W`dMR4E9GAy?O&CXLV`k369c8CUBvc)ax`}&hr8bVfpU$eF{8g
zp!~oPI^LF3Lp@+3!WNX+#9bvyz&6ANX-s8Z;k)qITc2$->xo@JZa8g_w_$@6Z^IF~
zpZdJG*4DNAwLSGBG|$j$Ff_&I<vKsz{39~SrDdXUGFhGVE*FdXgC;G1SmGp}0XzEO
zaw4RG6s*=JHyh02O+#0CZ|+Sa#Vvc0Kn2)BKAI_`4~AlP7TUC96A&JL^Mw8@2WxVT
z=P;t+*khZ5R0^`!au-6mdm&gR_md>>ad=OWDvz;kGv7Ss{pb08LNNA>eaiKKU~d85
zNn%L5Q43V92VU8>Q`vwG(dym`_Ptgmx!OXOXH&vA6M`qhDm)Zri~+Ed;fV80%0ra?
zKXiRzKc1CemcDDM0mp|)Q{x5J+JCqStx9nzr_Bg_#F*Kg;0gdw7?Q-o?NK`3hRffz
zft9~WO1M26@0vbmMY$uwjjETQT_9-;LcR)6%Lt^l<5t@vrs;r@b+~7+N<0lmh*tNn
zjJe#dru{3Va{?g!l@4P8fSChueC=WS`i|fW?rebG7wErIX<zBHFO~kaN@M*;tAEv0
zzA7aqfS~Yizck=xW&td*a{u3T*Vh*)u>Wq|l?8GoBTDda7n7sRJ8RA#jLXdf`JW(t
zg*utkmiG!B>E~}DrA^l=u)zGmkjLO|mSvasRp#(2@cad5h~qi84lBvlG0xs!Jio7N
zMSc>Lx11zm(O#q-%GJgwx>n->naA_o;cza5iWW4LTkuV>jM~%7U+7#!#znxWV2VaD
z1zU$(iCsyAWeZeMh}}+N=QB-^oklztD*S+?0gbn$D2*8|kj}zL_p+J6<4By$e%Lv2
zF1$irR^p|EUe|Pa(}8<hyC3~EG`Q3EuRQcW|2)S(LG;U4U+GMCfVcj~L#zP5d?i4Q
z0oSkZMZPvHumkS>3cYNA;QN&h{i=Jh{=0P)Hw(Z+6b1k1gAquG{2+=%fGHLP7zogW
z{ofhjf9Ekm`O3MB01EcyUwESq#zU-H%e7kniN|DKDb+`dM#!(2Ke84RML+_AD3B;V
z@;&0?k{`N}!A8zYiJjusL*vr|Dh2ctz&BO5WJ1&%+51-X9S3TGkQ;OaL7u-grE71k
zE*>|`QGN?Wx?S3D1$EU(`{Pngl(RH>lN2T3q#Y0kp*lp9R@PzJQiQjUukV&oR1U0T
zh6;Kw5xS=^F3)FE%jDk4f|Ax^%q9QZu96bp%}ZZ{)2Q~H&dImg<peP`JTWQnR;96h
zEOtDdt7kcNg^Ki$5cFg5ZC$#ziGS%_kJ{UqDe_zrjsQV;FMr~=?M71$fmKQzH8J~B
znjHlx2ON7Xaycb2e(PTB6E7HM-}Xn@C5{b$$mASG5jC|SjPq8_2lIgC4aMi&A4KN?
zq8M80Cj#hTMq_z}ZwM*{RhTlRw#mm<mNzF3@~ywQ71NMvHuB7tISY*>7_z+Q43R8<
zXEE(RF%BQtCMNwQnB1vH41(999~~u$&A=t!j7g3So7Lo;%}YnlVXVPTg$HNv&<3t3
zmKg0FG=2iQ$pB7WZzF|752P>k#;P;^Nl>VOFT@IAJMHI^J1y_j6Y{*-234r`d@vHc
zeVxZ=BM3`Q`)(+=IC+5`M4Q)!*WyY51+^*Re{|e_vmuLt`9Qb)-N8#9;{g9eJLrt$
z-Dj9Lc;@=tc%O2Z_w)h#pa{>LvDlj0-7?rT?A7wgZkhsJdnWaAm6oKDO%LuI(Vgl-
za_m&cACHNH%Ma`04adH}l-2+H`%V+n)F#+Kv3_RMZ#Hll^hDO`^Y31tF-fW2Ac(bM
zx*3fKdM)lXcC>F5L#{N)wwshdoC>hhBQ)x*I!adw_gv18^e3z5iLjk(mfW#i3FO=4
zzs@1AjSWE~Wz~5U1O7ywNSX2Czch6cWsNekLL+UUlIshis^i(@i5W+kF_p;=yc>C_
ztb(vBT^`bi``9p62I!WGA!L5crM{W325}iPZrQ9Yk=635%_f?3$!9$5(G1245HoE4
z2u*M3UN!jc3TICrcBJi=9AK|FHHNBrTE_p58@Yv$TxU{A5a0va4W}@=XU4>8&CUVO
zl7ZNRD;QJQ8IT}J)h49mV(jZnD_++~&xl(b4qsCd@klM#bhN@bK+FjvWy!f09PoNH
zr+VCJWYo|yk>yYPvrCithGT~97-4<k(Z2B8aI7c17fNaP(@x^^^XyU|lV!|v2t{;4
zdcge4u9l#3MYnK`_%PK;9&B0Z@6tjcoqdb;bQZ1TMR;v5m4j%0l>F?Hv(`*RAzjHU
zgE6|Ji9fNFppUbJeef^8*hH>UR(|uyyFpkbrlN1TKyKn>8T;zJBpbBz{B^>+4E+U@
z*xpQFAL11|$iNZ9wzIyQd`ZmZQd;gL^}hN-LE%wKY!p*uT-<x$8?MEO^NY^&K``gs
zs!P`)T|Sz_I7Nq+wK$F4)@JR!S($P18FMt-j&ahX&9pgOXjGxb9XJC|>6Rjj_x4Qe
z?J}qT(w~^;nWJ4z9tfGjr-w_~aYyy=v8hQXKUae)sm+jO`HHfX_xNYdqvV}$1v_tS
zgx4r^2@PsVQt;qUE%JtNjzMgt@Vof!(1TON8JYtT7SwlR|0c6x(L0g*c5k8|UH)O`
zDAj63P*}4ox11sbkr)L+io`t?6`Jsy(lt?YS2AYEWjBt}sAzMwei53bQGSdCv;KnL
z)@?mt6VIM{A}8G9R5%=E?BsJ#I4`RYs8Q=c^MGol%wH6ZQ|J&jN0gC+i~COSOGv-<
zmgET`;epg6haHp`k+*Z|g^-lWp)tT-p<%6{g>yrA<j8rlXhq$FMtR%)a1e-^M5_id
z&KLvwEk{a;K9pEek|@~}hO)$W1eJkG){{!v?RT3ZfmiCI=sOo@y312bf}((>;-1b0
zdY96Zlb3kxCxJd9FFuMtLvc(bcg6&=)xed}NepEVIaZfq=Xr#3Er&=?Ac6xgGyEWu
zh}W*fBQ-oK74!31>N*Io4^Gep7zo*JI}Dchm?-M@)1EkW243a&HZ5oF_~Jd;q|I&v
zxStpU$zAOp2O#?0K3aIbX@~yN(97d)*uQ?BqMviYLwS6s>{5Klth#+})X3T04eIc5
zL5)zGnJA<irWz*e9Va``evQzGAWOX%JDq-2;#*iGVLuU7`NfJ``9c(6E8(yxrMikj
ztx1ODl&)VFIwXn2dC{fYxk}yxqJ5*2Vc0Pi{>mwXA-3%qF)lu{pA+_L@J9ByQCx&N
z2-Hs1F#wWFyU|!&XhRApyWw1c{taOU*F=TVLLcRVeJ-@HmM+DkRu$qeTS0jE_1eXs
z(r)#})J;W^s)RA+98<%}I5}%kni@_upm`}V+`lj%XX3z<z2+4;gX86S8U^G0{HCLy
zyn5VkBoI+?OuJfI<A^mJOKG#uu34nP{jmmHF#%1d8p!iVs|py`qbPliD)0D)5USr6
zTFPfhzq$6Rk`lw#WvvfEi;^G*>h>!#N+#b&X$H<kWIxO>>ir4*b4}m~tyM!?s<*>d
zh37H(xYYlW2=3eX8P}AsdFyKkN;3asX`r9PSuF{JZYgmZ^68lgvD?P$;eFibDj$U7
z4C675<lXA0ezbJ1)ftys&KPHc-s{tU1{Q1n*?^`hf-7B$;shJSwnO%4-hMKb7!g{{
z1Tp=IP(T^g<}Eb95*(uNEJ!O2bny8d=9bsjAC}}UDmOc5`Dd3t-=RqoZbr!a#epW|
zTe|GCsY0)n{|(veJgf_3mTgJ`V=Ht6=~|N0jX~@cmuF<WQqTOpPQ={ntjhJA=hOJN
zo6-;Ks4fg<{v+$USTTgG>p>-(KQs4(g`fE3*qKDEwIC#5oPzymJkqaSN1f}+y|$A>
zSAQclGR(xzBr8kCoH%rSo~?BmLvkG)&#f%Eo{E>Cgeq1&SdkG$HFdQ4@(i(+i$qZK
zyKmKuHCe4V(h>HI6<;dzF?XKI?Kq-Nlod);qKSjOul*;a-R=(+sf#2I@nQRRe-B}8
z_Ny4`v^@{5p^M!TG|M;*UwsqtfnzU9t<sHSTwQb@Tn`fbRn!;>n>0O67d2GJ2?gif
z4K>zI>LKitEDzVJVz)&mg<6ES`p_AZytdWJ+q$8UxWlW1i3#0Wc!5xgI3d7V6)~<w
z3zxYbuog6N#;)HIFi@><<?h%lC+4~5H+#&Q&(n1O%$y3&+p{dir$~T!EN+9<=Sp6G
zflYNq!JL<la|??D7t$jmPh?~K5|_&OC%7O|`YBY@$M5aae=nDAiFt5fNO+U|&2s8@
z-HrFh)U}fZW*vC}frIMfWoEdU537zp(cwh+u<?T&Oi_}J)=8s=MVRzZ7eT|R-U}HH
zc>h>sajD0G+%jg@oiaENnr-A?qvjl6>M>l)_l|*U=PV8siwoJchTGr0zttb(=-2ez
zr$4Ee{e6g?qT^_Ez=<zHhPok;waBSQaan>JfK?uC>`Xw9fEc13^;Sc7Rfx7ufGV^D
zz~w<iQ;-4}ML>HHSv&9w*8O>XB`PjNNyQI;0ZCT4T^M$$+-l!E8LwzyCYiNEOb6IA
zc2^qyxW&|B8Am#=3ChGV*M%S9POR&inCypg<jmPuu*KGDfH|+}^^20F8Wd|$xqhYy
z3Wo2F@w+o<8=MK0yO@-<gu9G2VvEUdq$2M$mXKxt!=TMCjU1w46rd(y;w$Abfd2=l
z#s|11S@hW#gm&-4zniYL=Jq!(i4!p*9ynNHbn5#Iykm4mFWgYl&R;IKWd+aVq*Th3
zHUkf%I%M?wDPY=M{XES%GX1o$Unk|4b=zS(vds>NO&q}wcy!z5;0Od6NpfOYTRu-F
zQHlx?SNyC(ofh~3Ibk1J3`d*M`1<mM(w~@JuE@*mltC~`T7H8PyzUOvmTd7_y43YU
zm?4t6_(ZgYv9j;(MQbH>vG^lWcJ4m}7cUrrG4j=i?{IxRfRf4x549dT3{CAvdU`&<
zeVchX=~(KOj-o@|a&`>G4%9|4C3qk^TbRT&6IOjp2lg3%IcBtObZw%k0tpO644MsZ
z-%8w5?aH19iX_Y3{dI!PdrKM%F2#6H;onkzgvp7~H(_jzG^xS>7LYdlbpdPTR0~ud
z2Rs^qNS1CGvJ=8__RzEKTWr0~oJaZR&(<WAuTB02ivc}yMMPeIY?_Up!@3e{#4+=6
z5ag~l^a&Q+siFtf)hs6(M_nfDL-(N4>fk*`!WC?yLd!6!kx1{Io)o1vLo3y>n5MoG
z&g9LUSo)+$a#Qb*3+v5_MGX9uNG)J@hr56|umn+z6F22#NrjFoAmiHku}<hQxLMMV
z7qqyiyOIWt?4?U#GPU;fo064eC=rvZXM}r!S(Bs6v{>RyHv-PWJ9xy1%;dtyfv4HP
z-^#LBPt%!uBS0Kk<%C2_0~=jRF7MHDR7re7J?s!6JoVV~JcQew_73i+8$e-}6ELJ$
zEvM!pb>nBr);*<G5f&l!f9r&1@^PNoElP7;d;?M3fXb;D^`$f5r6Cw)X600`k*Ug7
zROLOywk3;7Z`FA-U5G8V2=_GP^2%Uv$i$-si{-fN{j$5!U0mW#*$aqHIR$o+D_&FX
zZ+BY27Kxafp-yZx?UE_lFjHA)Zl~+R^Y0*j6MMXbi+r!id-^TOdA?yT1ZncrY7&<*
zungT?#7s?ZgHes~GoaQ=$43GhubTOr+Rc1Jw3y(yG)#goxBR)8a&@V4-+OZdZ)Gst
z*#kT3_j2R7CQbA1{&0PxYPwC-KsRG~8zif4CV1|B<C&^_|CPcX5*Nqlx7Z~kamp><
zNbnQlK}8oK@J_X8Q^rBu<#T((g1prU1)72q0}ORV94!8w_p{Qw)$DdZ;653OU_w!P
z#A4;MQ@-TAT7v6E<L+wSI1-bvvo)wrd_52uYBWMl#fC#sa0dJ+ycbGZ&CLx}w!*C4
z5O)e<(y7iE6rHUh-;!y4(eh6(3wGk(4=k46tYc}FQ-jEYLz?)s?)cNfZ$gA=97*$@
zV+^U@Q<w%t%`%bHEc3Yzmomruq-jVpRY_U>7+WPk-=P+OlG$F1YjdzFb?v0HnFn1d
zs5hsAg6RYnl$%F=aglLrNu{rfdAQVCUOgD|W5YIl@5+Da$r*x-{A_jWt(E#-Gf4%T
z*U7xA^(Y*-nJzD(K}C|<Fb!vIOT|Y~<d#8^YMDQ+-fS-4+YTKENybB)zA0rIsZ)?c
z3=X@8;Vfv(3|qvdGeMp44f#j!(7f=WP=#YQ`(~3u5LRMmJ|ah@g~e1gXo{gVE2N7H
z0lAFa+SW*Hpf7$1tX>7gh`zBMPC&htLG{mz;$rsiWrb>%tfzC3kTill?N4Y^R|8dx
zo$5zFvD?WA`;pte^V0F|lAQ8r-0>j0rSW=zI%N>pbu@P5V#mGU4zRQj83oi1>3s5%
z{xX(J_D*m!+rd_LZ0~R_Z-kQ!Ry#=DRzD$^RBgGN+BlKGCRORvJ5wX*Cg$dPzYc$T
zL|*@SGr!IpMHH{104h$|mm8SA#Px1uD<?KJf6(5YN&`O9v5NgS*Vf>X*mk?_DI-RV
z%YddgID4pe=3SI0_{TG|Kr{3Tbl__#@v88CYx^Ug#TqZ`0}u73*z^F6nKZj1nm#lL
z3I7v!dK$qjqhx4jjGE>$@alo*c*3}{&mtVGc!UPuBu}_7d@00RHj69hJSjM5*~S47
z2F?Pu9r!{z*3;VBxNBKMi+<d49uxLJy9cC>O(5$9-_Ku|(0cyD;Ta2%-{6P`PWgEH
zpRC!~CzS;lA~JUjDtQ?j`O6fxyb$BxB(BX-p_|p8q>*JwI_pV&ou=whwwb3)4!u(5
zw!+J8&)s7=!p-z>EN4RSn_aY~nWGEbfm1S418Z|gL^1CiOuGKk_vaTj0K=CdY^??U
z)QKi&Earralz~foZ01uSBg+r4KSp|1`rue$ky<f@*Mht}@-_u}lbGa{VsrDSe%IX{
zK7)335PeC{qKKUDi&6H;^I5Uf;kH>+*{)%Qr_cZvhy4rlY>49gj%D6e#%k<~A48SF
ziR{WO=sTBq<ZB}&q)ch2o*7+F1FUHKh)l~Hgp~U#h{E0zKoNugjvj!IY^jK=P6ozk
z^oDfn%bov3ZGE&JK{y7MJ)F%R2@<CHy9YtJaCdOq5-TMi|2BK+9sdYcnpVD$qYZh6
zJ&X`slIscyv-&Cq{X4Ogy2QsX$IzkgU9`9d&iWz+<Y;1D;t`p6VwM{Nj4@!EQ=gR&
z>XtT2?-cpR+AcQ94VpjM+CX#l9YiOb<1#JqvvJ!6bp3Do86HokG0yDLBmI9ZyGB5G
z!U=i)V!)I-lJ&QJp&-0M03xPLp*p)G&kxly#9`QSy08!{g}{A|68er3O{GMwlN?h1
zmk+&sH?cEMS3V<9bA!F@8cPP%C>S1Xw?BZ$GQ5T}ZX%`_-*%1U^LkS4V8%Sl$jLw?
zYz5!^mPM7zA%ph9Rp8HVtKcfli<tF846Vw<^hL2?1*oFCIIZX;6{jn2>)-7^h23;B
z!*<W>Ms&O89;mNHjs-a<B>Y15u*B|`|6c$s6VvQZ#tH%Uy4q`e8&W79jmH~jO>h$T
zJ^T{ZShdQFsb;F}00GDuv!_{32kecW9zaKH8f;)Ps-aj4MrR>UFQtnY7q+&G$w*r;
zB66cv_yniSHlM1=-kn|PJsS;oi<V=yqvcEm+-n>$M{PJyb!5zy`TOcWZxL5-U-c(q
z;jWr3K<?#6$?siMt4iAYJtauUlQaY!OGl}4lUB2caG*j!@v961O<dP0TI%R6vG^?N
z-O-msUJC!LS8Ix2?VWAL(Z*mDvy?a8jU6~{0>Kgqb#ug3oz+xN1oX<!7!6|&2k3=&
zoEYiIBXKwnD~Htl>YV(_7#9y2fvsq=!ZC3I54D<ckNstSDkH<|0q%?3f8lK*)1c8l
zD^>dJNE!v0wupK(Bnd4v4IH*f>c}EcC$2F99QBa|nl%*o()<%P9P4BwqyDp!=dpm`
z^7TGA-<DUMX~PKthu|-^*O-QEV9%n@WMcBlS@B~B=-en|Tdmhlx7MT_0_yCy$?OAl
zV05aK9fJH;M|RwFruaa7QH);g@3zC+7_}ENDDy?SWmyX01}oW^F7GiI`-XN`36oP+
zj`Hzu04E9|+l!Q9<CraH+f+L~Hvk{{L-{@0-)+4xy>(CwSwzoqxF4k^V_*~6Jifa!
zm_j)s!!LKJfdrE4fq##-qAE5LGG%<8?L|#ew!T89+!Wz_dnJ_A?%8K(8ra6Q;%$y{
zt@D=oRW0uUy+t@L$eKy$aS!4(*P<tM<3!GOoD4Afq7OtOs2iP4eUCoFoOTBTGLu&I
zrnqgJe(}l=iT(4Z3O`(KOObGP&&NlwSea03z{yo|yVK+8vz97#P|>PW)#g`w>!qb$
z5I{=rqoTGIH=Ysl?_3Rltp&A~cO8%`W!EK|QTMGudU<f*h;<PModtxl%zOWGS1Gup
zTHJ<BBtzV8X;Tck*{;FyF6z+xPxq{1?8x3t6xo3FUo661-D3Yro8nPAM}%tJBE|^?
zpFjB`gfkAV=xUmtzd%nu__py1H~v+Klfll;DRvF^!U#tQF5(rql*SNKI`;Zm^M#vR
zSlFYNi_2=bd54d5&ut{vTi-@Ov+=XdyAv6G!)YAv`xfm}k=(QQLovB~5Xnud@H<XL
zcTb7i$SKzc74!WNu57^<@il;W^#)|Rca#thN3YII8H`{x2aTB7Q%=iNT{ytd)>O=y
z*G2+v$8Ctnp9icWhJ(ABb^?=unlFoO#2~&<Zn$*lE1@hJRj|HG;TtaD(W9k$(V<AN
zR|LkCg-fr>8y`AtuqZ=I&BvO_c2fA`quW!a<Ir=C{c)iTOy@QF|JpNf#DLafcmM<`
zJIf~BuV!=HTFR;=teBqS{Fb+YvjI!(nBIU7cT7`P{L9}zZa4J=*DDFoXN3HITKu(c
z#|gB3^$%@@i}^Dy4ZE?gsk!iW0H$Ws$^2pQfZ<!csrH@&$#seKp@Nnkh!S$Jq*C!4
zfiPb7aDL+S*&(o=*V4|47okSHoLf&I`GM0JpQozPlw33EYR*tSHD1;z9}Vd}fe;hz
zsm3PVK#n2NvMOq1Ic4kq)MGKAvZ9nO_`Eb)UqY|$+Q2JTjV4}*P}K!PxR*etikfZ8
zK_a(kI883}{z!-1kTc{OSDsa`ot(Ha1_|F9iAT)m3<He%aT&X&pK+5IPwR|<St78<
zfU0G@UBM~WjwiNTb5n9C1ok9%lbxA2Nc-~$x#rRU%xo^alN4+rq+aAmo0y}pp{kl#
zuQeLBy*Y_->5w5DBYay>Ob4Y(d_e@s=cuD<*rWT9#5#P}XiFA0OMwuBTP)`SGextC
zKT_Y-s1(cef`TrT5`SAc=vlzdfiYubTIyZvZF){C(LJh3&#aD>&Q2!ZHGm~;bXWP^
zsL71UXwMnPw4scs3P19anr~ji0AEk=K1*%y<8gD^s>y#<!<ZtwabcGQg-r^c^_R-y
zZOl`92?o6bJPe~eUifcb*&Md+-SVP%=`XuV?0aD5iFzq~@xvM<M|iV`)jPp5fjyh6
z7dHIT?6z^%y}~vEZ-2yL#rKI>ml|<MP)<>&l{-}NdXCf&8DyTNeh@mSpOl5FFH;<s
zW4hAFD9H%gQ#N&jwIkrA+}#LmRM-+RRUIK?>jEE$_ft-p90Amz)_j5z>Co2nvK`-T
z_~%kEqjPPdZ`uDMk4%komOF8i)V7WE*rrZ!k82*=#K?0}LA!kfJg(OWzCl>-NIObY
zt{7AH5AN1Qo@v&(ofjjQL%9HbgMEkM6Z7<|YufRqd58_N)QW$*;hE__g%){pzy?ch
z#D_{#MCRR5<KuFk3W-KQ#(;@u2O<x=qStf$OYHB*wXoq!E|Fk)$!^-+=HCdbX*z^+
zj_?#u*9yQ2kua~tQ(E5x<2Q3h<Sr{I*3o$G-kR#BnNyEl-8l-n@4D@-m^6sx*9dxl
zKl<AqO2YDDZhQ<02?hfRx`2_FE>%1<hIDy^WJ5*l6Q84$_pw!!PT%(?{eJd;SN+sA
zpMo)BStLnxun=W%kSD!GrYC_<{YQZKf<}m)F?&ndVVi;;yxaaAXM0t3_3g(!My4@N
zvUEPZ_7x@{_p=$DsVS{$CqAeQ{@g<f1OWVnxxMJKZY20#Otw~}vuTX<4W)$|`Q|NT
zMu8wPSq91?_n?XDXQsqm5lyMToHRn#>4oN@DEWpDT#sgg!2A*?V~mJ~g3Q1JQbmM_
z%T7X6{w<EcCVPXzT?YjtUJsr`8Tj6z$$x-aVw-*Y0<g~i$W%DyR$3wXTRv!?#-KQG
zPfaZJX`k%xwm^azz8+2lxoc`Y+NARS3{N5cUe>&!tr_Q-sMO6;7_618E?~<nB!{%n
zoEXvVgpc_ecNJcratf(?T>s319}#;#)Vpa%vfg-tc1>4_8$Nx)WDo!w!4d76t1ELY
z!`5^cWISfbWWmdi@miL>5y!|DAc{84dpF}<838h~b#>65nNZ1o1daLlIUh9?64O6%
zn6*DbuhJeO3`7i<u)ay7Ke<aY<AAM#%m1CzCZgJITJX2rsCC9Cf!O;_-?kQ5c~dif
zc6szBG>Uqt?<SF7+#2ey^ByN1<M&Tn{82ea&$=ekY@y)kMQ0|p%1tRmWihYrcTfbF
z6#7|{t!o}Q46qcZLm~;GUXdq2JrQDIl#Cy%<fn)6uW^K)hP3PVa6S3xVI+Dt<-5k4
zt{s5!bocMzal3J0EnOo$(f-D#ZhQeS8M>V>KMgAw1*LsL;IQWeX0$vA`(qn<)n{uB
z90d}A!=PlM^-c#wEdNln7&M^sY~z8#?{#su+@*CQ5X>`iUC}DS)gCj9a4b-G`sOZ3
zPD0GR9Em4<0Bc?mtwy+}+Jf$J45n1DI^0MOHDa=3=*$2=TB*X13CW5_tz$Rz5(P66
z_7?8%vCx42yl5k)#uyTpmzS%fh&A0<>rMS-^g|c9Kc9CD=}+TMg#&O^&MYIYFA|A}
zF+JXp|H=`!9j%MO?`30<#p;Mxp4=7@?%B9w`rrUgD>^QBp$A&`y09$t(lKP2Q8x6`
zDLbKC&KTU-UcIB7IN5`zCgK~%ax_^wZsy7d7H07*SczFShp)yWCphm_;`bzre;+rP
zJ1qeCR5WyD9I|w`h`Z%dOB=orEVU7%T(M5uAJrd^kPaT`76GJUV@(-HYXY<&M&yXR
zQNBIn25(V^vH|r{`Uz1I3<=SLlQ-st&0#9(6`mkfyQOyYx-%#sdZP>v$!Q&Ek6YDV
z1pIK_|Gi6KzYq;M+=6!l-9<9sflWypPv!Lq=BX72)>2u2sUSi{H&T<u{X_^6@h{(-
z_d-7@JaOfd?;@&QZTAQF7UXSuefLbDd%tIowS?s&q6dP45zwMSmYneNfCCO6rkwNP
z4YN}Lh%#}$_(l4PuBJ&W&(1gdr8ltP>-LId+E(7?<H&cB(@Tjia_xmHue@_d7I(3K
z9J5T%Dw8}-jepSW&#dfcN*`qv0mxp_k;U*?DLuhPc7pSWKSDSn5i=Y|zoF@tH2nnl
z={u6>Hn|A*nndfa!EZBW5v89ltO1k@HGipK@YJ51!6Qi(xP%!mXTw`IuSBedKjqSc
zT&%^~w~JS|_j&top0zQ^3$ZFrrxWk?!+Dt)mM5q)F%_}DDMHFNjnh>;iXGG##&Z{g
zG9gX#BQ9W+TW)$*^_3VWOC)IBjG{k3YoL_AFwuJ->B>N*0PXD<Y8Jh~NqwosbH7)+
z&ylEXpmStZcPCQcK1gHVv*w3&*)O?G8@3m~g5N6UWu}V#I9k^Ey5(OlQ1<1}J(?Hv
z<1KS;NhNUiQ!|07kbzjuEHcspdE_Tql!To-kC%3t#E6OqK~5$QOdFQ_$(BEMo7LC4
zQ+m?*;;0N_!x)u>kOA=xYFZ;QSGlFhZpaxrw3WTlSP5qQ?~8KGH1=Qk!|eY}6ieZk
zJ2h(T<sHxc-{cQnx{8elh@=SL8Y7Jxs(3ZBpv2;)D(bk{9gLgBJs=G%e2$u&xeF%*
zC?Ls%F(w<#alU+qs)U)M+3P4sM?zfxsTfQss@%#t8i%e}3%$0r4ahD|U2({|n}KK_
z7%3YO-{va);~pQve{`Z~0f`MBk$wrlx;hbqrWH9(?+yb}76eE)>)Z>$<Hb7b+AYH%
zJW_Ke9yn@4LcI-jTP1*B(%V>q&J%3*Td#TG$`Ka<{BD?9?_%0oNsc0MtnN}xT9WKm
z(1R3}J{?$)!>slH#O<zSt3~chvVe1wDCGmRCOPKVD^{!$s9iVN#N?zWIq$XJ3>0TJ
z#_LaRzNn&rsA=Hz0#6m|<#+LPWA)E=sRt^tN4pfZ0%7FL?y=`sYY}Oj!x+R*BV-!E
z8P9%QdA08q#oCo!FBL%u9I5oRkp;xloOAOXDN4yX%<iwpjP#y#@2O0i$7}OF0$UV(
z_%i{Y^^3Y>s%sArW*yRJx{U~9s?l0+zhkO&)@ga3v<dC-fa`BJ$+~LvaV_#)Iix|h
zS47$q04<p(RRl~+CIedS3mAk)BqTHd4Jk{<Nr|){ym6ytIqL!%ZF>wnk-G$;RMvIr
zo0rTh01O2=oYfs3LXItW8tq4s`>Lo1TAtI|cm`%Wg7;84f4d(+<(lHt*ps0xXoqIG
z$->||of5Lv!v&9eA$nhl_LgkZi^2v0DV(*z*(YcsBE4}pMuEGpPnSp4+Sx*mKHHaB
zAteD{5?CO)?^t0VQ8~rzW^+gioy1QN%heeEahh#g#Q2A7@!kPVC&G7wQ6(HLMdWGL
z?07+RR$B;mM|oj=J{hS<t&#yoSbZ@Fo{y7}wmUzKAEMCqR;FK;Ku6!2TAmS#bfJk9
z(R(^ok3Goa@4cm**%$n9i%H}Sl(=?Y`)NZD_Bn!mNQF@UM17-(WY;7cS{}^rXqa6+
zb@=0u4S{c~Hbgn4Y2kZdX2c4_&W1;>rOIvs#d!Y&%hft^@aLn(H#GNeR!4v+0kNO@
z0g0K^$PF>~yEfnBIj-eF{{Wk?7YnF8@<_Myvs&05)&TTf$AIAx-0y&X!T4xGrLbM1
z?|4+()Jpajk81qe-gx_Y@`NB;;jsw>Yy)WvG|=*1C@WgnH{I5xC%71eC$Kvk)&@y^
z*7WHp+HabDt67BRYVe23Ypsxuass4_X}@Rw%yVVj&X#UUW2dIMgBbPqz(YT+=$4&b
z5YKzUnB&k4u<C=gqR~$IQ|GqUU0_+8z91kTpe;q+-)?hS$$f1uJls@;U-`~A_6faI
za+ewToo3o@OvKkgK)aPzyW7*_CQzf%6zM*e+AF_6ZeM~n7pV#L(qZ`?K{f>i-s@Ss
zU+gbPoU0A4XR_<@Z8%nJ5@7R6oThZ|ur>S0Bdm~e_xn@uSaElXZATWCKJjx*p2~f9
zwQJ38WS&RxtQ`rEF%EVN7jmR^Q#eU~F({jylQJ#$!h@yY=c$dtWkBirMeSU_)C(rm
zH#zI}kpU~aeo})%?7}os?m;<y`JD9iUW4<F$`oF}yV_c@Ew7aC#x&e|%i7N)hX?Rc
z>mZ1bD-rIN{byB@oiKRjDV1>Jsbo?Mg-NY*5F_asM%cE{wKt%83@2>sDUz)LBi0mQ
z<F80STnV8G_c{8-S@-y!yg{_6{G{TuhKwMH%<e&3BQH=z`C%^&28{KAqB*S6OG+h~
zfv0S#r2||dSP;Cu35J_r!r+w+)cXsG<Dh_KlT|qY0}R94!Z&)IwnAZ8qOMv!K<^sv
ztQJ=yDha`-1am3RmI2*Uv$)fjue_=Kaa?1iAzRxnP;AzS<<6qJV^B??KiE~4`$!UZ
ztvr`dbimT-2T_?g#B3RypYAz`X7xJQ9)U9$Sf$D8Pzv2Hl0T1BCqfl?8rQFp50c-X
zRzKF5#in9;K$w%-zyRfglHhid6FC!Xw~?{tBSlfr-1f`BW98E@J}@CL2?hl#4g&%j
z1povTu<f4Trj2Bkh<Om9s814fS><G-1Qcdi6jw_cqy&c%R_YD7L|R&0$vpxC0fwMe
Cc?vK9

literal 0
HcmV?d00001

diff --git a/oxAuth/Client/profiles/default/config-oxauth-test-data.properties b/oxAuth/Client/profiles/default/config-oxauth-test-data.properties
new file mode 100644
index 00000000..5a57ee2c
--- /dev/null
+++ b/oxAuth/Client/profiles/default/config-oxauth-test-data.properties
@@ -0,0 +1,26 @@
+test.server.name=ce.gluu.info:8443
+swd.resource=acct:test_user@ce.gluu.info:8443
+
+auth.user.uid=test_user
+auth.user.password=test_user_password
+auth.user.inum=B1F3-AEAE-B798
+auth.user.email=test_user@test.org
+
+auth.user2.uid=test_user2
+auth.user2.password=test_user_password2
+auth.user2.inum=B1F3-AEAE-B799
+auth.user2.email=test_user2@test.org
+
+auth.client.id=@!1111!0008!0001!0001
+auth.client.secret=11111111-1111-1111-1111-111111111111
+
+uma.user.uid=test_user
+uma.user.password=test
+uma.pat.client.id=@!1111!0008!0001!0001
+uma.pat.client.secret=11111111-1111-1111-1111-111111111111
+
+sector.identifier.id=a55ede29-8f5a-461d-b06e-76caee8d40b5
+
+clientKeyStoreFile=profiles/default/client_keystore.pkcs12
+#clientKeyStoreFile=/etc/certs/client_keystore.jks
+clientKeyStoreSecret=secret
\ No newline at end of file
diff --git a/oxAuth/Client/src/main/assembly/jar-without-provider-dependencies.xml b/oxAuth/Client/src/main/assembly/jar-without-provider-dependencies.xml
new file mode 100644
index 00000000..d53ad555
--- /dev/null
+++ b/oxAuth/Client/src/main/assembly/jar-without-provider-dependencies.xml
@@ -0,0 +1,32 @@
+ <?xml version="1.0" encoding="UTF-8"?>
+<assembly xmlns="http://maven.apache.org/ASSEMBLY/2.0.0"
+  xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance"
+  xsi:schemaLocation="http://maven.apache.org/ASSEMBLY/2.0.0 http://maven.apache.org/xsd/assembly-2.0.0.xsd">
+
+	<id>jar-without-provider-dependencies</id>
+	<formats>
+		<format>jar</format>
+	</formats>
+	<includeBaseDirectory>false</includeBaseDirectory>
+
+	<dependencySets>
+		<dependencySet>
+			<outputDirectory>/</outputDirectory>
+			<useProjectArtifact>false</useProjectArtifact>
+			<unpack>true</unpack>
+			<scope>runtime</scope>
+			<excludes>
+			  <exclude>org.bouncycastle:bcpkix-jdk18on</exclude>
+			  <exclude>org.bouncycastle:bcprov-jdk18on</exclude>
+			  <exclude>org.bouncycastle:bcutil-jdk18on</exclude>
+			</excludes>
+		</dependencySet>
+	</dependencySets>
+
+	<fileSets>
+	  <fileSet>
+		<outputDirectory>/</outputDirectory>
+		<directory>${project.build.outputDirectory}</directory>
+	  </fileSet>
+	</fileSets>
+</assembly>
diff --git a/oxAuth/Client/src/main/java/org/gluu/oxauth/client/AuthorizationRequest.java b/oxAuth/Client/src/main/java/org/gluu/oxauth/client/AuthorizationRequest.java
new file mode 100644
index 00000000..78859139
--- /dev/null
+++ b/oxAuth/Client/src/main/java/org/gluu/oxauth/client/AuthorizationRequest.java
@@ -0,0 +1,738 @@
+/*
+ * oxAuth is available under the MIT License (2008). See http://opensource.org/licenses/MIT for full text.
+ *
+ * Copyright (c) 2014, Gluu
+ */
+
+package org.gluu.oxauth.client;
+
+import java.io.UnsupportedEncodingException;
+import java.net.URLEncoder;
+
+import java.util.ArrayList;
+import java.util.HashMap;
+import java.util.List;
+import java.util.Map;
+
+import org.apache.commons.lang.StringUtils;
+import org.gluu.oxauth.model.authorize.AuthorizeRequestParam;
+import org.gluu.oxauth.model.authorize.CodeVerifier;
+import org.gluu.oxauth.model.common.Display;
+import org.gluu.oxauth.model.common.Prompt;
+import org.gluu.oxauth.model.common.ResponseMode;
+import org.gluu.oxauth.model.common.ResponseType;
+import org.gluu.oxauth.model.util.Util;
+import org.json.JSONException;
+import org.json.JSONObject;
+
+/**
+ * Represents an authorization request to send to the authorization server.
+ *
+ * @author Javier Rojas Blum
+ * @version October 7, 2019
+ */
+public class AuthorizationRequest extends BaseRequest {
+
+    public static String NO_REDIRECT_HEADER = "X-Gluu-NoRedirect";
+
+    private List<ResponseType> responseTypes;
+    private String clientId;
+    private List<String> scopes;
+    private String redirectUri;
+    private String state;
+
+    private ResponseMode responseMode;
+    private String nonce;
+    private Display display;
+    private List<Prompt> prompts;
+    private Integer maxAge;
+    private List<String> uiLocales;
+    private List<String> claimsLocales;
+    private String idTokenHint;
+    private String loginHint;
+    private List<String> acrValues;
+    private JSONObject claims;
+    private String registration;
+    private String request;
+    private String requestUri;
+
+    private boolean requestSessionId;
+    private String sessionId;
+
+    private String accessToken;
+    private boolean useNoRedirectHeader;
+
+    // code verifier according to PKCE spec
+    private String codeChallenge;
+    private String codeChallengeMethod;
+
+    private Map<String, String> customResponseHeaders;
+
+    /**
+     * Constructs an authorization request.
+     *
+     * @param responseTypes The response type informs the authorization server of the desired response type:
+     *                      <strong>code</strong>, <strong>token</strong>, <strong>id_token</strong>
+     *                      a combination of them. The response type parameter is mandatory.
+     * @param clientId      The client identifier is mandatory.
+     * @param scopes        The scope of the access request.
+     * @param redirectUri   Redirection URI
+     * @param nonce         A string value used to associate a user agent session with an ID Token,
+     *                      and to mitigate replay attacks.
+     */
+    public AuthorizationRequest(List<ResponseType> responseTypes, String clientId, List<String> scopes,
+                                String redirectUri, String nonce) {
+        super();
+        this.responseTypes = responseTypes;
+        this.clientId = clientId;
+        this.scopes = scopes;
+        this.redirectUri = redirectUri;
+        this.nonce = nonce;
+        prompts = new ArrayList<Prompt>();
+        useNoRedirectHeader = false;
+    }
+
+    public CodeVerifier generateAndSetCodeChallengeWithMethod() {
+        CodeVerifier verifier = new CodeVerifier(CodeVerifier.CodeChallengeMethod.S256);
+        codeChallenge = verifier.getCodeChallenge();
+        codeChallengeMethod = verifier.getTransformationType().getPkceString();
+        return verifier;
+    }
+
+    public String getCodeChallenge() {
+        return codeChallenge;
+    }
+
+    public String getCodeChallengeMethod() {
+        return codeChallengeMethod;
+    }
+
+    public void setCodeChallenge(String codeChallenge) {
+        this.codeChallenge = codeChallenge;
+    }
+
+    public void setCodeChallengeMethod(String codeChallengeMethod) {
+        this.codeChallengeMethod = codeChallengeMethod;
+    }
+
+    /**
+     * Returns the response types.
+     *
+     * @return The response types.
+     */
+    public List<ResponseType> getResponseTypes() {
+        return responseTypes;
+    }
+
+    /**
+     * Sets the response types.
+     *
+     * @param responseTypes The response types.
+     */
+    public void setResponseTypes(List<ResponseType> responseTypes) {
+        this.responseTypes = responseTypes;
+    }
+
+    /**
+     * Returns the client identifier.
+     *
+     * @return The client identifier.
+     */
+    public String getClientId() {
+        return clientId;
+    }
+
+    /**
+     * Sets the client identifier.
+     *
+     * @param clientId The client identifier.
+     */
+    public void setClientId(String clientId) {
+        this.clientId = clientId;
+    }
+
+    /**
+     * Returns the scopes of the access request. The authorization endpoint allow
+     * the client to specify the scope of the access request using the scope
+     * request parameter. In turn, the authorization server uses the scope
+     * response parameter to inform the client of the scope of the access token
+     * issued. The value of the scope parameter is expressed as a list of
+     * space-delimited, case sensitive strings.
+     *
+     * @return The scopes of the access request.
+     */
+    public List<String> getScopes() {
+        return scopes;
+    }
+
+    /**
+     * Sets the scope of the access request. The authorization endpoint allow
+     * the client to specify the scope of the access request using the scope
+     * request parameter. In turn, the authorization server uses the scope
+     * response parameter to inform the client of the scope of the access token
+     * issued. The value of the scope parameter is expressed as a list of
+     * space-delimited, case sensitive strings.
+     *
+     * @param scopes The scope of the access request.
+     */
+    public void setScopes(List<String> scopes) {
+        this.scopes = scopes;
+    }
+
+    /**
+     * Returns the redirection URI.
+     *
+     * @return The redirection URI.
+     */
+    public String getRedirectUri() {
+        return redirectUri;
+    }
+
+    /**
+     * Sets the redirection URI.
+     *
+     * @param redirectUri The redirection URI.
+     */
+    public void setRedirectUri(String redirectUri) {
+        this.redirectUri = redirectUri;
+    }
+
+    /**
+     * Returns the state. The state is an opaque value used by the client to
+     * maintain state between the request and callback. The authorization server
+     * includes this value when redirecting the user-agent back to the client.
+     * The parameter should be used for preventing cross-site request forgery.
+     *
+     * @return The state.
+     */
+    public String getState() {
+        return state;
+    }
+
+    /**
+     * Sets the state. The state is an opaque value used by the client to
+     * maintain state between the request and callback. The authorization server
+     * includes this value when redirecting the user-agent back to the client.
+     * The parameter should be used for preventing cross-site request forgery.
+     *
+     * @param state The state.
+     */
+    public void setState(String state) {
+        this.state = state;
+    }
+
+    public ResponseMode getResponseMode() {
+        return responseMode;
+    }
+
+    public void setResponseMode(ResponseMode responseMode) {
+        this.responseMode = responseMode;
+    }
+
+    /**
+     * Returns a string value used to associate a user agent session with an ID Token,
+     * and to mitigate replay attacks.
+     *
+     * @return The nonce value.
+     */
+    public String getNonce() {
+        return nonce;
+    }
+
+    /**
+     * Sets a string value used to associate a user agent session with an ID Token,
+     * and to mitigate replay attacks.
+     *
+     * @param nonce The nonce value.
+     */
+    public void setNonce(String nonce) {
+        this.nonce = nonce;
+    }
+
+    /**
+     * Returns an ASCII string value that specifies how the Authorization Server displays the
+     * authentication page to the End-User.
+     *
+     * @return The display value.
+     */
+    public Display getDisplay() {
+        return display;
+    }
+
+    /**
+     * Sets an ASCII string value that specifies how the Authorization Server displays the
+     * authentication page to the End-User.
+     *
+     * @param display The display value.
+     */
+    public void setDisplay(Display display) {
+        this.display = display;
+    }
+
+    /**
+     * Returns a space delimited list of ASCII strings that can contain the values login, consent,
+     * select_account, and none.
+     *
+     * @return The prompt list.
+     */
+    public List<Prompt> getPrompts() {
+        return prompts;
+    }
+
+    public void setPrompts(List<Prompt> prompts) {
+        this.prompts = prompts;
+    }
+
+    public Integer getMaxAge() {
+        return maxAge;
+    }
+
+    public void setMaxAge(Integer maxAge) {
+        this.maxAge = maxAge;
+    }
+
+    public List<String> getUiLocales() {
+        return uiLocales;
+    }
+
+    public void setUiLocales(List<String> uiLocales) {
+        this.uiLocales = uiLocales;
+    }
+
+    public List<String> getClaimsLocales() {
+        return claimsLocales;
+    }
+
+    public void setClaimsLocales(List<String> claimsLocales) {
+        this.claimsLocales = claimsLocales;
+    }
+
+    public String getIdTokenHint() {
+        return idTokenHint;
+    }
+
+    public void setIdTokenHint(String idTokenHint) {
+        this.idTokenHint = idTokenHint;
+    }
+
+    public String getLoginHint() {
+        return loginHint;
+    }
+
+    public void setLoginHint(String loginHint) {
+        this.loginHint = loginHint;
+    }
+
+    public List<String> getAcrValues() {
+        return acrValues;
+    }
+
+    public void setAcrValues(List<String> acrValues) {
+        this.acrValues = acrValues;
+    }
+
+    public JSONObject getClaims() {
+        return claims;
+    }
+
+    public void setClaims(JSONObject claims) {
+        this.claims = claims;
+    }
+
+    public String getRegistration() {
+        return registration;
+    }
+
+    public void setRegistration(String registration) {
+        this.registration = registration;
+    }
+
+    /**
+     * Returns a JWT  encoded OpenID Request Object.
+     *
+     * @return A JWT  encoded OpenID Request Object.
+     */
+    public String getRequest() {
+        return request;
+    }
+
+    /**
+     * Sets a JWT  encoded OpenID Request Object.
+     *
+     * @param request A JWT  encoded OpenID Request Object.
+     */
+    public void setRequest(String request) {
+        this.request = request;
+    }
+
+    /**
+     * Returns an URL that points to an OpenID Request Object.
+     *
+     * @return An URL that points to an OpenID Request Object.
+     */
+    public String getRequestUri() {
+        return requestUri;
+    }
+
+    /**
+     * Sets an URL that points to an OpenID Request Object.
+     *
+     * @param requestUri An URL that points to an OpenID Request Object.
+     */
+    public void setRequestUri(String requestUri) {
+        this.requestUri = requestUri;
+    }
+
+    /**
+     * Returns whether session id is requested.
+     *
+     * @return whether session id is requested
+     */
+    public boolean isRequestSessionId() {
+        return requestSessionId;
+    }
+
+    /**
+     * Sets whether session id should be requested.
+     *
+     * @param p_requestSessionId session id.
+     */
+    public void setRequestSessionId(boolean p_requestSessionId) {
+        requestSessionId = p_requestSessionId;
+    }
+
+    /**
+     * Gets session id.
+     *
+     * @return session id.
+     */
+    public String getSessionId() {
+        return sessionId;
+    }
+
+    /**
+     * Sets session id.
+     *
+     * @param p_sessionId session id
+     */
+    public void setSessionId(String p_sessionId) {
+        sessionId = p_sessionId;
+    }
+
+    public String getAccessToken() {
+        return accessToken;
+    }
+
+    public void setAccessToken(String accessToken) {
+        this.accessToken = accessToken;
+    }
+
+    public boolean isUseNoRedirectHeader() {
+        return useNoRedirectHeader;
+    }
+
+    public void setUseNoRedirectHeader(boolean useNoRedirectHeader) {
+        this.useNoRedirectHeader = useNoRedirectHeader;
+    }
+
+    public String getResponseTypesAsString() {
+        return Util.asString(responseTypes);
+    }
+
+    public String getScopesAsString() {
+        return Util.listAsString(scopes);
+    }
+
+    public String getPromptsAsString() {
+        return Util.asString(prompts);
+    }
+
+    public String getUiLocalesAsString() {
+        return Util.listAsString(uiLocales);
+    }
+
+    public String getClaimsLocalesAsString() {
+        return Util.listAsString(claimsLocales);
+    }
+
+    public String getAcrValuesAsString() {
+        return Util.listAsString(acrValues);
+    }
+
+    public String getCustomResponseHeadersAsString() throws JSONException {
+        String header = Util.mapAsString(customResponseHeaders);
+        if (header == null) {
+        	return null;
+        }
+
+        try {
+			return URLEncoder.encode(header, "UTF-8");
+		} catch (UnsupportedEncodingException e) {
+            e.printStackTrace();
+		}
+
+        return null;
+    }
+
+    public Map<String, String> getCustomResponseHeaders() {
+        return customResponseHeaders;
+    }
+
+    public void setCustomResponseHeaders(Map<String, String> customResponseHeaders) {
+        this.customResponseHeaders = customResponseHeaders;
+    }
+
+    public String getClaimsAsString() {
+        if (claims != null) {
+            return claims.toString();
+        } else {
+            return null;
+        }
+    }
+
+    /**
+     * Returns a query string with the parameters of the authorization request.
+     * Any <code>null</code> or empty parameter will be omitted.
+     *
+     * @return A query string of parameters.
+     */
+    @Override
+    public String getQueryString() {
+        StringBuilder queryStringBuilder = new StringBuilder();
+
+        try {
+            // OAuth 2.0 request parameters
+            final String responseTypesAsString = getResponseTypesAsString();
+            final String scopesAsString = getScopesAsString();
+            final String promptsAsString = getPromptsAsString();
+            final String customResponseHeadersAsString = getCustomResponseHeadersAsString();
+
+            if (StringUtils.isNotBlank(responseTypesAsString)) {
+                queryStringBuilder.append(AuthorizeRequestParam.RESPONSE_TYPE)
+                        .append("=").append(URLEncoder.encode(responseTypesAsString, Util.UTF8_STRING_ENCODING));
+            }
+            if (StringUtils.isNotBlank(clientId)) {
+                queryStringBuilder.append("&").append(AuthorizeRequestParam.CLIENT_ID)
+                        .append("=").append(URLEncoder.encode(clientId, Util.UTF8_STRING_ENCODING));
+            }
+            if (StringUtils.isNotBlank(scopesAsString)) {
+                queryStringBuilder.append("&").append(AuthorizeRequestParam.SCOPE)
+                        .append("=").append(URLEncoder.encode(scopesAsString, Util.UTF8_STRING_ENCODING));
+            }
+            if (StringUtils.isNotBlank(redirectUri)) {
+                queryStringBuilder.append("&").append(AuthorizeRequestParam.REDIRECT_URI)
+                        .append("=").append(URLEncoder.encode(redirectUri, Util.UTF8_STRING_ENCODING));
+            }
+            if (StringUtils.isNotBlank(state)) {
+                queryStringBuilder.append("&").append(AuthorizeRequestParam.STATE)
+                        .append("=").append(URLEncoder.encode(state, Util.UTF8_STRING_ENCODING));
+            }
+
+            // OpenID Connect request parameters
+            final String uiLocalesAsString = getUiLocalesAsString();
+            final String claimLocalesAsString = getClaimsLocalesAsString();
+            final String acrValuesAsString = getAcrValuesAsString();
+            final String claimsAsString = getClaimsAsString();
+
+            if (responseMode != null) {
+                queryStringBuilder.append("&").append(AuthorizeRequestParam.RESPONSE_MODE)
+                        .append("=").append(URLEncoder.encode(responseMode.toString(), Util.UTF8_STRING_ENCODING));
+            }
+            if (StringUtils.isNotBlank(nonce)) {
+                queryStringBuilder.append("&").append(AuthorizeRequestParam.NONCE)
+                        .append("=").append(URLEncoder.encode(nonce, Util.UTF8_STRING_ENCODING));
+            }
+            if (display != null) {
+                queryStringBuilder.append("&").append(AuthorizeRequestParam.DISPLAY)
+                        .append("=").append(URLEncoder.encode(display.toString(), Util.UTF8_STRING_ENCODING));
+            }
+            if (StringUtils.isNotBlank(promptsAsString)) {
+                queryStringBuilder.append("&").append(AuthorizeRequestParam.PROMPT)
+                        .append("=").append(URLEncoder.encode(promptsAsString, Util.UTF8_STRING_ENCODING));
+            }
+            if (maxAge != null) {
+                queryStringBuilder.append("&").append(AuthorizeRequestParam.MAX_AGE)
+                        .append("=").append(maxAge);
+            }
+            if (StringUtils.isNotBlank(uiLocalesAsString)) {
+                queryStringBuilder.append("&").append(AuthorizeRequestParam.UI_LOCALES)
+                        .append("=").append(URLEncoder.encode(uiLocalesAsString, Util.UTF8_STRING_ENCODING));
+            }
+            if (StringUtils.isNotBlank(claimLocalesAsString)) {
+                queryStringBuilder.append("&").append(AuthorizeRequestParam.CLAIMS_LOCALES)
+                        .append("=").append(URLEncoder.encode(claimLocalesAsString, Util.UTF8_STRING_ENCODING));
+            }
+            if (StringUtils.isNotBlank(idTokenHint)) {
+                queryStringBuilder.append("&").append(AuthorizeRequestParam.ID_TOKEN_HINT)
+                        .append("=").append(idTokenHint);
+            }
+            if (StringUtils.isNotBlank(loginHint)) {
+                queryStringBuilder.append("&").append(AuthorizeRequestParam.LOGIN_HINT)
+                        .append("=").append(loginHint);
+            }
+            if (StringUtils.isNotBlank(acrValuesAsString)) {
+                queryStringBuilder.append("&").append(AuthorizeRequestParam.ACR_VALUES)
+                        .append("=").append(URLEncoder.encode(acrValuesAsString, Util.UTF8_STRING_ENCODING));
+            }
+            if (StringUtils.isNotBlank(claimsAsString)) {
+                queryStringBuilder.append("&").append(AuthorizeRequestParam.CLAIMS)
+                        .append("=").append(URLEncoder.encode(claimsAsString, Util.UTF8_STRING_ENCODING));
+            }
+            if (StringUtils.isNotBlank(registration)) {
+                queryStringBuilder.append("&").append(AuthorizeRequestParam.REGISTRATION)
+                        .append("=").append(registration);
+            }
+            if (StringUtils.isNotBlank(request)) {
+                queryStringBuilder.append("&").append(AuthorizeRequestParam.REQUEST)
+                        .append("=").append(URLEncoder.encode(request, Util.UTF8_STRING_ENCODING));
+            }
+            if (StringUtils.isNotBlank(requestUri)) {
+                queryStringBuilder.append("&").append(AuthorizeRequestParam.REQUEST_URI)
+                        .append("=").append(URLEncoder.encode(requestUri, Util.UTF8_STRING_ENCODING));
+            }
+            if (requestSessionId) {
+                queryStringBuilder.append("&").append(AuthorizeRequestParam.REQUEST_SESSION_ID)
+                        .append("=").append(URLEncoder.encode(Boolean.toString(requestSessionId), Util.UTF8_STRING_ENCODING));
+            }
+            if (StringUtils.isNotBlank(sessionId)) {
+                queryStringBuilder.append("&").append(AuthorizeRequestParam.SESSION_ID)
+                        .append("=").append(URLEncoder.encode(sessionId, Util.UTF8_STRING_ENCODING));
+            }
+            if (StringUtils.isNotBlank(accessToken)) {
+                queryStringBuilder.append("&").append(AuthorizeRequestParam.ACCESS_TOKEN)
+                        .append("=").append(URLEncoder.encode(accessToken, Util.UTF8_STRING_ENCODING));
+            }
+            if (StringUtils.isNotBlank(codeChallenge)) {
+                queryStringBuilder.append("&").append(AuthorizeRequestParam.CODE_CHALLENGE)
+                        .append("=").append(codeChallenge);
+            }
+            if (StringUtils.isNotBlank(codeChallengeMethod)) {
+                queryStringBuilder.append("&").append(AuthorizeRequestParam.CODE_CHALLENGE_METHOD)
+                        .append("=").append(codeChallengeMethod);
+            }
+            if (StringUtils.isNotBlank(customResponseHeadersAsString)) {
+                queryStringBuilder.append("&").append(AuthorizeRequestParam.CUSTOM_RESPONSE_HEADERS)
+                        .append("=").append(URLEncoder.encode(customResponseHeadersAsString, Util.UTF8_STRING_ENCODING));
+            }
+            for (String key : getCustomParameters().keySet()) {
+                queryStringBuilder.append("&");
+                queryStringBuilder.append(key).append("=").append(getCustomParameters().get(key));
+            }
+        } catch (UnsupportedEncodingException e) {
+            e.printStackTrace();
+        } catch (JSONException e) {
+            e.printStackTrace();
+        }
+
+        return queryStringBuilder.toString();
+    }
+
+    /**
+     * Returns a collection of parameters of the authorization request. Any
+     * <code>null</code> or empty parameter will be omitted.
+     *
+     * @return A collection of parameters.
+     */
+    public Map<String, String> getParameters() {
+        Map<String, String> parameters = new HashMap<String, String>();
+
+        try {
+            // OAuth 2.0 request parameters
+            final String responseTypesAsString = getResponseTypesAsString();
+            final String scopesAsString = getScopesAsString();
+            final String promptsAsString = getPromptsAsString();
+            final String customResponseHeadersAsString = getCustomResponseHeadersAsString();
+
+            if (StringUtils.isNotBlank(responseTypesAsString)) {
+                parameters.put(AuthorizeRequestParam.RESPONSE_TYPE, responseTypesAsString);
+            }
+            if (StringUtils.isNotBlank(clientId)) {
+                parameters.put(AuthorizeRequestParam.CLIENT_ID, clientId);
+            }
+            if (StringUtils.isNotBlank(scopesAsString)) {
+                parameters.put(AuthorizeRequestParam.SCOPE, scopesAsString);
+            }
+            if (StringUtils.isNotBlank(redirectUri)) {
+                parameters.put(AuthorizeRequestParam.REDIRECT_URI, redirectUri);
+            }
+            if (StringUtils.isNotBlank(state)) {
+                parameters.put(AuthorizeRequestParam.STATE, state);
+            }
+
+            // OpenID Connect request parameters
+            final String uiLocalesAsString = getUiLocalesAsString();
+            final String claimLocalesAsString = getClaimsLocalesAsString();
+            final String acrValuesAsString = getAcrValuesAsString();
+            final String claimsAsString = getClaimsAsString();
+
+            if (responseMode != null) {
+                parameters.put(AuthorizeRequestParam.RESPONSE_MODE, responseMode.toString());
+            }
+            if (StringUtils.isNotBlank(nonce)) {
+                parameters.put(AuthorizeRequestParam.NONCE, nonce);
+            }
+            if (display != null) {
+                parameters.put(AuthorizeRequestParam.DISPLAY, display.toString());
+            }
+            if (StringUtils.isNotBlank(promptsAsString)) {
+                parameters.put(AuthorizeRequestParam.PROMPT, promptsAsString);
+            }
+            if (maxAge != null) {
+                parameters.put(AuthorizeRequestParam.MAX_AGE, maxAge.toString());
+            }
+            if (StringUtils.isNotBlank(uiLocalesAsString)) {
+                parameters.put(AuthorizeRequestParam.UI_LOCALES, uiLocalesAsString);
+            }
+            if (StringUtils.isNotBlank(claimLocalesAsString)) {
+                parameters.put(AuthorizeRequestParam.CLAIMS_LOCALES, claimLocalesAsString);
+            }
+            if (StringUtils.isNotBlank(idTokenHint)) {
+                parameters.put(AuthorizeRequestParam.ID_TOKEN_HINT, idTokenHint);
+            }
+            if (StringUtils.isNotBlank(loginHint)) {
+                parameters.put(AuthorizeRequestParam.LOGIN_HINT, loginHint);
+            }
+            if (StringUtils.isNotBlank(acrValuesAsString)) {
+                parameters.put(AuthorizeRequestParam.ACR_VALUES, acrValuesAsString);
+            }
+            if (StringUtils.isNotBlank(claimsAsString)) {
+                parameters.put(AuthorizeRequestParam.CLAIMS, claimsAsString);
+            }
+            if (StringUtils.isNotBlank(registration)) {
+                parameters.put(AuthorizeRequestParam.REGISTRATION, registration);
+            }
+            if (StringUtils.isNotBlank(request)) {
+                parameters.put(AuthorizeRequestParam.REQUEST, request);
+            }
+            if (StringUtils.isNotBlank(requestUri)) {
+                parameters.put(AuthorizeRequestParam.REQUEST_URI, requestUri);
+            }
+            if (requestSessionId) {
+                parameters.put(AuthorizeRequestParam.REQUEST_SESSION_ID, Boolean.toString(requestSessionId));
+            }
+            if (StringUtils.isNotBlank(sessionId)) {
+                parameters.put(AuthorizeRequestParam.SESSION_ID, sessionId);
+            }
+            if (StringUtils.isNotBlank(accessToken)) {
+                parameters.put(AuthorizeRequestParam.ACCESS_TOKEN, accessToken);
+            }
+            if (StringUtils.isNotBlank(codeChallenge)) {
+                parameters.put(AuthorizeRequestParam.CODE_CHALLENGE, codeChallenge);
+            }
+            if (StringUtils.isNotBlank(codeChallengeMethod)) {
+                parameters.put(AuthorizeRequestParam.CODE_CHALLENGE_METHOD, codeChallengeMethod);
+            }
+            if (StringUtils.isNotBlank(customResponseHeadersAsString)) {
+                parameters.put(AuthorizeRequestParam.CUSTOM_RESPONSE_HEADERS, customResponseHeadersAsString);
+            }
+
+            for (String key : getCustomParameters().keySet()) {
+                parameters.put(key, getCustomParameters().get(key));
+            }
+        } catch (JSONException e) {
+            e.printStackTrace();
+        }
+
+        return parameters;
+    }
+}
\ No newline at end of file
diff --git a/oxAuth/Client/src/main/java/org/gluu/oxauth/client/AuthorizationResponse.java b/oxAuth/Client/src/main/java/org/gluu/oxauth/client/AuthorizationResponse.java
new file mode 100644
index 00000000..9c402408
--- /dev/null
+++ b/oxAuth/Client/src/main/java/org/gluu/oxauth/client/AuthorizationResponse.java
@@ -0,0 +1,413 @@
+/*
+ * oxAuth is available under the MIT License (2008). See http://opensource.org/licenses/MIT for full text.
+ *
+ * Copyright (c) 2014, Gluu
+ */
+
+package org.gluu.oxauth.client;
+
+import static org.gluu.oxauth.model.authorize.AuthorizeResponseParam.ACCESS_TOKEN;
+import static org.gluu.oxauth.model.authorize.AuthorizeResponseParam.CODE;
+import static org.gluu.oxauth.model.authorize.AuthorizeResponseParam.EXPIRES_IN;
+import static org.gluu.oxauth.model.authorize.AuthorizeResponseParam.ID_TOKEN;
+import static org.gluu.oxauth.model.authorize.AuthorizeResponseParam.SCOPE;
+import static org.gluu.oxauth.model.authorize.AuthorizeResponseParam.SESSION_ID;
+import static org.gluu.oxauth.model.authorize.AuthorizeResponseParam.SID;
+import static org.gluu.oxauth.model.authorize.AuthorizeResponseParam.STATE;
+import static org.gluu.oxauth.model.authorize.AuthorizeResponseParam.TOKEN_TYPE;
+
+import java.io.UnsupportedEncodingException;
+import java.net.URLDecoder;
+import java.util.HashMap;
+import java.util.Iterator;
+import java.util.Map;
+
+import javax.ws.rs.core.Response;
+
+import org.apache.commons.lang.StringUtils;
+import org.gluu.oxauth.model.authorize.AuthorizeErrorResponseType;
+import org.gluu.oxauth.model.common.ResponseMode;
+import org.gluu.oxauth.model.common.TokenType;
+import org.gluu.oxauth.model.util.Util;
+import org.json.JSONException;
+import org.json.JSONObject;
+
+/**
+ * Represents an authorization response received from the authorization server.
+ *
+ * @author Javier Rojas Blum
+ * @version August 9, 2017
+ */
+public class AuthorizationResponse extends BaseResponse {
+
+    private String code;
+    private String accessToken;
+    private TokenType tokenType;
+    private Integer expiresIn;
+    private String scope;
+    private String idToken;
+    private String state;
+    private String sessionId;
+    private String sid;
+    private Map<String, String> customParams;
+    private ResponseMode responseMode;
+
+    private AuthorizeErrorResponseType errorType;
+    private String errorDescription;
+    private String errorUri;
+
+    /**
+     * Constructs an authorization response.
+     */
+    public AuthorizationResponse(Response clientResponse) {
+        super(clientResponse);
+        customParams = new HashMap<String, String>();
+
+        if (StringUtils.isNotBlank(entity)) {
+            try {
+                JSONObject jsonObj = new JSONObject(entity);
+                if (jsonObj.has("error")) {
+                    errorType = AuthorizeErrorResponseType.fromString(jsonObj.getString("error"));
+                }
+                if (jsonObj.has("error_description")) {
+                    errorDescription = jsonObj.getString("error_description");
+                }
+                if (jsonObj.has("error_uri")) {
+                    errorUri = jsonObj.getString("error_uri");
+                }
+                if (jsonObj.has("state")) {
+                    state = jsonObj.getString("state");
+                }
+                if (jsonObj.has("redirect")) {
+                    location = jsonObj.getString("redirect");
+                }
+            } catch (JSONException e) {
+                e.printStackTrace();
+            }
+        }
+        processLocation();
+    }
+
+    public AuthorizationResponse(String location) {
+        this.location = location;
+        customParams = new HashMap<String, String>();
+
+        processLocation();
+    }
+
+    private void processLocation() {
+        try {
+            if (StringUtils.isNotBlank(location)) {
+                Map<String, String> params = null;
+                int fragmentIndex = location.indexOf("#");
+                if (fragmentIndex != -1) {
+                    responseMode = ResponseMode.FRAGMENT;
+                    String fragment = location.substring(fragmentIndex + 1);
+                    params = QueryStringDecoder.decode(fragment);
+                } else {
+                    int queryStringIndex = location.indexOf("?");
+                    if (queryStringIndex != -1) {
+                        responseMode = ResponseMode.QUERY;
+                        String queryString = location.substring(queryStringIndex + 1);
+                        params = QueryStringDecoder.decode(queryString);
+                    }
+                }
+
+                if (params != null) {
+                    if (params.containsKey(CODE)) {
+                        code = params.get(CODE);
+                        params.remove(CODE);
+                    }
+                    if (params.containsKey(SESSION_ID)) {
+                        sessionId = params.get(SESSION_ID);
+                        params.remove(SESSION_ID);
+                    }
+                    if (params.containsKey(SID)) {
+                        sid = params.get(SID);
+                        params.remove(SID);
+                    }
+                    if (params.containsKey(ACCESS_TOKEN)) {
+                        accessToken = params.get(ACCESS_TOKEN);
+                        params.remove(ACCESS_TOKEN);
+                    }
+                    if (params.containsKey(TOKEN_TYPE)) {
+                        tokenType = TokenType.fromString(params.get(TOKEN_TYPE));
+                        params.remove(TOKEN_TYPE);
+                    }
+                    if (params.containsKey(EXPIRES_IN)) {
+                        expiresIn = Integer.parseInt(params.get(EXPIRES_IN));
+                        params.remove(EXPIRES_IN);
+                    }
+                    if (params.containsKey(SCOPE)) {
+                        scope = URLDecoder.decode(params.get(SCOPE), Util.UTF8_STRING_ENCODING);
+                        params.remove(SCOPE);
+                    }
+                    if (params.containsKey(ID_TOKEN)) {
+                        idToken = params.get(ID_TOKEN);
+                        params.remove(ID_TOKEN);
+                    }
+                    if (params.containsKey(STATE)) {
+                        state = params.get(STATE);
+                        params.remove(STATE);
+                    }
+                    if (params.containsKey("error")) {
+                        errorType = AuthorizeErrorResponseType.fromString(params.get("error"));
+                        params.remove("error");
+                    }
+                    if (params.containsKey("error_description")) {
+                        errorDescription = URLDecoder.decode(params.get("error_description"), Util.UTF8_STRING_ENCODING);
+                        params.remove("error_description");
+                    }
+                    if (params.containsKey("error_uri")) {
+                        errorUri = URLDecoder.decode(params.get("error_uri"), Util.UTF8_STRING_ENCODING);
+                        params.remove("error_uri");
+                    }
+
+                    for (Iterator<String> it = params.keySet().iterator(); it.hasNext(); ) {
+                        String key = it.next();
+                        getCustomParams().put(key, params.get(key));
+                    }
+                }
+            }
+        } catch (UnsupportedEncodingException e) {
+        }
+    }
+
+    /**
+     * Returns the authorization code generated by the authorization server.
+     *
+     * @return The authorization code.
+     */
+    public String getCode() {
+        return code;
+    }
+
+    /**
+     * Sets the authorization code generated by the authorization server.
+     *
+     * @param code The authorization code.
+     */
+    public void setCode(String code) {
+        this.code = code;
+    }
+
+    /**
+     * Returns the access token issued by the authorization server.
+     *
+     * @return The access token.
+     */
+    public String getAccessToken() {
+        return accessToken;
+    }
+
+    /**
+     * Sets the access token issued by the authorization server.
+     *
+     * @param accessToken The access token.
+     */
+    public void setAccessToken(String accessToken) {
+        this.accessToken = accessToken;
+    }
+
+    public String getSid() {
+        return sid;
+    }
+
+    public void setSid(String sid) {
+        this.sid = sid;
+    }
+
+    /**
+     * Gets session id.
+     *
+     * @return session id.
+     */
+    public String getSessionId() {
+        return sessionId;
+    }
+
+    /**
+     * Sets session id.
+     *
+     * @param p_sessionId session id.
+     */
+    public void setSessionId(String p_sessionId) {
+        sessionId = p_sessionId;
+    }
+
+    public Map<String, String> getCustomParams() {
+        return customParams;
+    }
+
+    public void setCustomParams(Map<String, String> customParams) {
+        this.customParams = customParams;
+    }
+
+    public ResponseMode getResponseMode() {
+        return responseMode;
+    }
+
+    public void setResponseMode(ResponseMode responseMode) {
+        this.responseMode = responseMode;
+    }
+
+    /**
+     * Returns the type of the token issued (value is case insensitive).
+     *
+     * @return The type of the token.
+     */
+    public TokenType getTokenType() {
+        return tokenType;
+    }
+
+    /**
+     * Sets the type of the token issued (value is case insensitive).
+     *
+     * @param tokenType The type of the token.
+     */
+    public void setTokenType(TokenType tokenType) {
+        this.tokenType = tokenType;
+    }
+
+    /**
+     * Returns the lifetime in seconds of the access token. For example, the
+     * value 3600 denotes that the access token will expire in one hour from the
+     * time the response was generated.
+     *
+     * @return The lifetime in seconds of the access token.
+     */
+    public Integer getExpiresIn() {
+        return expiresIn;
+    }
+
+    /**
+     * Sets the lifetime in seconds of the access token. For example, the value
+     * 3600 denotes that the access token will expire in one hour from the time
+     * the response was generated.
+     *
+     * @param expiresIn The lifetime in seconds of the access token.
+     */
+    public void setExpiresIn(Integer expiresIn) {
+        this.expiresIn = expiresIn;
+    }
+
+    /**
+     * Returns the scope of the access token.
+     *
+     * @return The scope of the access token.
+     */
+    public String getScope() {
+        return scope;
+    }
+
+    /**
+     * Sets the scope of the access token.
+     *
+     * @param scope The scope of the access token.
+     */
+    public void setScope(String scope) {
+        this.scope = scope;
+    }
+
+    /**
+     * Returns the ID Token of the for the authentication session.
+     *
+     * @return The ID Token.
+     */
+    public String getIdToken() {
+        return idToken;
+    }
+
+    /**
+     * Sets the ID Token of the for the authentication session.
+     *
+     * @param idToken The ID Token.
+     */
+    public void setIdToken(String idToken) {
+        this.idToken = idToken;
+    }
+
+    /**
+     * Returns the state. If the state parameter was present in the client
+     * authorization request, the exact value received from the client.
+     *
+     * @return The state.
+     */
+    public String getState() {
+        return state;
+    }
+
+    /**
+     * Sets the state. If the state parameter was present in the client
+     * authorization request, the exact value received from the client.
+     *
+     * @param state The state.
+     */
+    public void setState(String state) {
+        this.state = state;
+    }
+
+    /**
+     * Returns the error code when the request fails, otherwise will return
+     * <code>null</code>.
+     *
+     * @return The error code when the request fails.
+     */
+    public AuthorizeErrorResponseType getErrorType() {
+        return errorType;
+    }
+
+    /**
+     * Sets the error code when the request fails, otherwise will return
+     * <code>null</code>.
+     *
+     * @param errorType The error code when the request fails.
+     */
+    public void setErrorType(AuthorizeErrorResponseType errorType) {
+        this.errorType = errorType;
+    }
+
+    /**
+     * Returns a human-readable UTF-8 encoded text providing additional
+     * information, used to assist the client developer in understanding the
+     * error that occurred.
+     *
+     * @return The error description.
+     */
+    public String getErrorDescription() {
+        return errorDescription;
+    }
+
+    /**
+     * Sets a human-readable UTF-8 encoded text providing additional
+     * information, used to assist the client developer in understanding the
+     * error that occurred.
+     *
+     * @param errorDescription The error description.
+     */
+    public void setErrorDescription(String errorDescription) {
+        this.errorDescription = errorDescription;
+    }
+
+    /**
+     * Returns a URI identifying a human-readable web page with information
+     * about the error, used to provide the client developer with additional
+     * information about the error.
+     *
+     * @return A URI with information about the error.
+     */
+    public String getErrorUri() {
+        return errorUri;
+    }
+
+    /**
+     * Sets a URI identifying a human-readable web page with information about
+     * the error, used to provide the client developer with additional
+     * information about the error.
+     *
+     * @param errorUri A URI with information about the error.
+     */
+    public void setErrorUri(String errorUri) {
+        this.errorUri = errorUri;
+    }
+}
\ No newline at end of file
diff --git a/oxAuth/Client/src/main/java/org/gluu/oxauth/client/AuthorizeClient.java b/oxAuth/Client/src/main/java/org/gluu/oxauth/client/AuthorizeClient.java
new file mode 100644
index 00000000..19876fff
--- /dev/null
+++ b/oxAuth/Client/src/main/java/org/gluu/oxauth/client/AuthorizeClient.java
@@ -0,0 +1,277 @@
+/*
+ * oxAuth is available under the MIT License (2008). See http://opensource.org/licenses/MIT for full text.
+ *
+ * Copyright (c) 2014, Gluu
+ */
+
+package org.gluu.oxauth.client;
+
+import static org.gluu.oxauth.client.AuthorizationRequest.NO_REDIRECT_HEADER;
+
+import java.net.URLEncoder;
+import java.nio.charset.StandardCharsets;
+import java.util.ArrayList;
+import java.util.List;
+
+import javax.ws.rs.HttpMethod;
+import javax.ws.rs.client.Entity;
+import javax.ws.rs.client.Invocation.Builder;
+import javax.ws.rs.core.MediaType;
+
+import org.apache.log4j.Logger;
+import org.gluu.oxauth.model.authorize.AuthorizeRequestParam;
+import org.gluu.oxauth.model.common.AuthorizationMethod;
+import org.gluu.oxauth.model.common.Display;
+import org.gluu.oxauth.model.common.Prompt;
+import org.gluu.oxauth.model.common.ResponseType;
+import org.jboss.resteasy.client.jaxrs.ClientHttpEngine;
+import org.jboss.resteasy.client.jaxrs.ResteasyClientBuilder;
+
+/**
+ * Encapsulates functionality to make authorization request calls to an authorization server via REST Services.
+ *
+ * @author Javier Rojas Blum
+ * @version October 7, 2019
+ */
+public class AuthorizeClient extends BaseClient<AuthorizationRequest, AuthorizationResponse> {
+
+    private static final Logger LOG = Logger.getLogger(AuthorizeClient.class);
+
+    /**
+     * Constructs an authorize client by providing a REST url where the
+     * authorize service is located.
+     *
+     * @param url The REST Service location.
+     */
+    public AuthorizeClient(String url) {
+        super(url);
+    }
+
+    @Override
+    public String getHttpMethod() {
+        if (request.getAuthorizationMethod() == null
+                || request.getAuthorizationMethod() == AuthorizationMethod.AUTHORIZATION_REQUEST_HEADER_FIELD
+                || request.getAuthorizationMethod() == AuthorizationMethod.FORM_ENCODED_BODY_PARAMETER) {
+            return HttpMethod.POST;
+        } else { // AuthorizationMethod.URL_QUERY_PARAMETER
+            return HttpMethod.GET;
+        }
+    }
+
+    /**
+     * The authorization code grant type is used to obtain both access tokens
+     * and refresh tokens and is optimized for confidential clients. As a
+     * redirection-based flow, the client must be capable of interacting with
+     * the resource owner's user-agent (typically a web browser) and capable of
+     * receiving incoming requests (via redirection) from the authorization
+     * server.
+     *
+     * @param clientId    The client identifier. This parameter is required.
+     * @param scopes      The scope of the access request. This parameter is optional.
+     * @param redirectUri The redirection URI. This parameter is optional.
+     * @param nonce       A string value used to associate a user agent session with an ID Token,
+     *                    and to mitigate replay attacks.
+     *                    forgery. This parameter is recommended.
+     * @param state       An opaque value used by the client to maintain state between
+     *                    the request and callback. The authorization server includes
+     *                    this value when redirecting the user-agent back to the client.
+     *                    The parameter should be used for preventing cross-site request
+     *                    forgery.
+     * @param req         A JWT  encoded OpenID Request Object.
+     * @param reqUri      An URL that points to an OpenID Request Object.
+     * @param display     An ASCII string value that specifies how the Authorization Server displays the
+     *                    authentication page to the End-User.
+     * @param prompt      A space delimited list of ASCII strings that can contain the values login, consent,
+     *                    select_account, and none.
+     * @return The authorization response.
+     */
+    public AuthorizationResponse execAuthorizationCodeGrant(
+            String clientId, List<String> scopes, String redirectUri, String nonce,
+            String state, String req, String reqUri, Display display, List<Prompt> prompt) {
+        List<ResponseType> responseTypes = new ArrayList<ResponseType>();
+        responseTypes.add(ResponseType.CODE);
+        setRequest(new AuthorizationRequest(responseTypes, clientId, scopes, redirectUri, nonce));
+        getRequest().setRedirectUri(redirectUri);
+        getRequest().setState(state);
+        getRequest().setRequest(req);
+        getRequest().setRedirectUri(reqUri);
+        getRequest().setDisplay(display);
+        getRequest().getPrompts().addAll(prompt);
+
+        return exec();
+    }
+
+    /**
+     * <p>
+     * The implicit grant type is used to obtain access tokens (it does not
+     * support the issuance of refresh tokens) and is optimized for public
+     * clients known to operate a particular redirection URI. These clients are
+     * typically implemented in a browser using a scripting language such as
+     * JavaScript.
+     * </p>
+     * <p>
+     * As a redirection-based flow, the client must be capable of interacting
+     * with the resource owner's user-agent (typically a web browser) and
+     * capable of receiving incoming requests (via redirection) from the
+     * authorization server.
+     * </p>
+     * <p>
+     * Unlike the authorization code grant type in which the client makes
+     * separate requests for authorization and access token, the client receives
+     * the access token as the result of the authorization request.
+     * </p>
+     * <p>
+     * The implicit grant type does not include client authentication, and
+     * relies on the presence of the resource owner and the registration of the
+     * redirection URI. Because the access token is encoded into the redirection
+     * URI, it may be exposed to the resource owner and other applications
+     * residing on its device.
+     * </p>
+     *
+     * @param clientId    The client identifier. This parameter is required.
+     * @param scopes      The scope of the access request. This parameter is optional.
+     * @param redirectUri The redirection URI. This parameter is optional.
+     * @param nonce       A string value used to associate a user agent session with an ID Token,
+     *                    and to mitigate replay attacks.
+     *                    forgery. This parameter is recommended.
+     * @param state       An opaque value used by the client to maintain state between
+     *                    the request and callback. The authorization server includes
+     *                    this value when redirecting the user-agent back to the client.
+     *                    The parameter should be used for preventing cross-site request
+     *                    forgery.
+     * @param req         A JWT  encoded OpenID Request Object.
+     * @param reqUri      An URL that points to an OpenID Request Object.
+     * @param display     An ASCII string value that specifies how the Authorization Server displays the
+     *                    authentication page to the End-User.
+     * @param prompt      A space delimited list of ASCII strings that can contain the values login, consent,
+     *                    select_account, and none.
+     * @return The authorization response.
+     */
+    @Deprecated // it produces confusion since we have parameters and request object at the same time
+    public AuthorizationResponse execImplicitGrant(
+            String clientId, List<String> scopes, String redirectUri, String nonce,
+            String state, String req, String reqUri, Display display, List<Prompt> prompt) {
+        List<ResponseType> responseTypes = new ArrayList<ResponseType>();
+        responseTypes.add(ResponseType.TOKEN);
+        setRequest(new AuthorizationRequest(responseTypes, clientId, scopes, redirectUri, nonce));
+        getRequest().setRedirectUri(redirectUri);
+        getRequest().setState(state);
+        getRequest().setRequest(req);
+        getRequest().setRedirectUri(reqUri);
+        getRequest().setDisplay(display);
+        getRequest().getPrompts().addAll(prompt);
+
+        return exec();
+    }
+
+    /**
+     * Executes the call to the REST Service and processes the response.
+     *
+     * @return The authorization response.
+     */
+    public AuthorizationResponse exec() {
+        AuthorizationResponse response = null;
+
+        try {
+            initClientRequest();
+            response = exec_();
+        } catch (Exception e) {
+            LOG.error(e.getMessage(), e);
+        } finally {
+            closeConnection();
+        }
+
+        return response;
+    }
+
+    @Deprecated
+    public AuthorizationResponse exec(ClientHttpEngine engine) {
+        AuthorizationResponse response = null;
+
+        try {
+        	resteasyClient = ((ResteasyClientBuilder) ResteasyClientBuilder.newBuilder()).httpEngine(engine).build();
+        	webTarget = resteasyClient.target(getUrl());
+
+			response = exec_();
+        } catch (Exception e) {
+            LOG.error(e.getMessage(), e);
+        }
+        // Do not close the connection for this case.
+
+        return response;
+    }
+
+    private AuthorizationResponse exec_() throws Exception {
+        final String responseTypesAsString = getRequest().getResponseTypesAsString();
+        final String scopesAsString = getRequest().getScopesAsString();
+        final String promptsAsString = getRequest().getPromptsAsString();
+        final String uiLocalesAsString = getRequest().getUiLocalesAsString();
+        final String claimLocalesAsString = getRequest().getClaimsLocalesAsString();
+        final String acrValuesAsString = getRequest().getAcrValuesAsString();
+        final String claimsAsString = getRequest().getClaimsAsString();
+
+        addReqParam(AuthorizeRequestParam.RESPONSE_TYPE, responseTypesAsString);
+        addReqParam(AuthorizeRequestParam.CLIENT_ID, getRequest().getClientId());
+        addReqParam(AuthorizeRequestParam.SCOPE, scopesAsString);
+        addReqParam(AuthorizeRequestParam.REDIRECT_URI, getRequest().getRedirectUri());
+        addReqParam(AuthorizeRequestParam.STATE, getRequest().getState());
+
+        addReqParam(AuthorizeRequestParam.NONCE, getRequest().getNonce());
+        addReqParam(AuthorizeRequestParam.DISPLAY, getRequest().getDisplay());
+        addReqParam(AuthorizeRequestParam.PROMPT, promptsAsString);
+        if (getRequest().getMaxAge() != null) {
+            addReqParam(AuthorizeRequestParam.MAX_AGE, getRequest().getMaxAge().toString());
+        }
+        addReqParam(AuthorizeRequestParam.UI_LOCALES, uiLocalesAsString);
+        addReqParam(AuthorizeRequestParam.CLAIMS_LOCALES, claimLocalesAsString);
+        addReqParam(AuthorizeRequestParam.ID_TOKEN_HINT, getRequest().getIdTokenHint());
+        addReqParam(AuthorizeRequestParam.LOGIN_HINT, getRequest().getLoginHint());
+        addReqParam(AuthorizeRequestParam.ACR_VALUES, acrValuesAsString);
+        addReqParam(AuthorizeRequestParam.CLAIMS, claimsAsString);
+        addReqParam(AuthorizeRequestParam.REGISTRATION, getRequest().getRegistration());
+        addReqParam(AuthorizeRequestParam.REQUEST, getRequest().getRequest());
+        addReqParam(AuthorizeRequestParam.REQUEST_URI, getRequest().getRequestUri());
+        addReqParam(AuthorizeRequestParam.ACCESS_TOKEN, getRequest().getAccessToken());
+        addReqParam(AuthorizeRequestParam.CUSTOM_RESPONSE_HEADERS, getRequest().getCustomResponseHeadersAsString());
+
+        // PKCE
+        addReqParam(AuthorizeRequestParam.CODE_CHALLENGE, getRequest().getCodeChallenge());
+        addReqParam(AuthorizeRequestParam.CODE_CHALLENGE_METHOD, getRequest().getCodeChallengeMethod());
+
+        if (getRequest().isRequestSessionId()) {
+            addReqParam(AuthorizeRequestParam.REQUEST_SESSION_ID, Boolean.toString(getRequest().isRequestSessionId()));
+        }
+        addReqParam(AuthorizeRequestParam.SESSION_ID, getRequest().getSessionId());
+
+        // Custom params
+        for (String key : request.getCustomParameters().keySet()) {
+            addReqParam(key, request.getCustomParameters().get(key));
+        }
+
+        Builder clientRequest = webTarget.request();
+        applyCookies(clientRequest);
+
+        // Prepare request parameters
+        clientRequest.header("Content-Type", MediaType.APPLICATION_FORM_URLENCODED);
+////        clientRequest.setHttpMethod(getHttpMethod());
+
+        if (getRequest().isUseNoRedirectHeader()) {
+            clientRequest.header(NO_REDIRECT_HEADER, "true");
+        }
+
+        if (request.getAuthorizationMethod() != AuthorizationMethod.FORM_ENCODED_BODY_PARAMETER && request.hasCredentials()) {
+            clientRequest.header("Authorization", "Basic " + request.getEncodedCredentials());
+        }
+
+        // Call REST Service and handle response
+        if (request.getAuthorizationMethod() == AuthorizationMethod.FORM_ENCODED_BODY_PARAMETER) {
+            clientResponse = clientRequest.buildPost(Entity.form(requestForm)).invoke();
+        } else {
+            clientResponse = clientRequest.buildGet().invoke();
+        }
+
+        setResponse(new AuthorizationResponse(clientResponse));
+
+        return getResponse();
+    }
+}
\ No newline at end of file
diff --git a/oxAuth/Client/src/main/java/org/gluu/oxauth/client/BackchannelAuthenticationClient.java b/oxAuth/Client/src/main/java/org/gluu/oxauth/client/BackchannelAuthenticationClient.java
new file mode 100644
index 00000000..590b4421
--- /dev/null
+++ b/oxAuth/Client/src/main/java/org/gluu/oxauth/client/BackchannelAuthenticationClient.java
@@ -0,0 +1,154 @@
+/*
+ * oxAuth is available under the MIT License (2008). See http://opensource.org/licenses/MIT for full text.
+ *
+ * Copyright (c) 2014, Gluu
+ */
+
+package org.gluu.oxauth.client;
+
+import static org.gluu.oxauth.model.ciba.BackchannelAuthenticationRequestParam.ACR_VALUES;
+import static org.gluu.oxauth.model.ciba.BackchannelAuthenticationRequestParam.BINDING_MESSAGE;
+import static org.gluu.oxauth.model.ciba.BackchannelAuthenticationRequestParam.CLIENT_ID;
+import static org.gluu.oxauth.model.ciba.BackchannelAuthenticationRequestParam.CLIENT_NOTIFICATION_TOKEN;
+import static org.gluu.oxauth.model.ciba.BackchannelAuthenticationRequestParam.ID_TOKEN_HINT;
+import static org.gluu.oxauth.model.ciba.BackchannelAuthenticationRequestParam.LOGIN_HINT;
+import static org.gluu.oxauth.model.ciba.BackchannelAuthenticationRequestParam.LOGIN_HINT_TOKEN;
+import static org.gluu.oxauth.model.ciba.BackchannelAuthenticationRequestParam.REQUEST;
+import static org.gluu.oxauth.model.ciba.BackchannelAuthenticationRequestParam.REQUESTED_EXPIRY;
+import static org.gluu.oxauth.model.ciba.BackchannelAuthenticationRequestParam.REQUEST_URI;
+import static org.gluu.oxauth.model.ciba.BackchannelAuthenticationRequestParam.SCOPE;
+import static org.gluu.oxauth.model.ciba.BackchannelAuthenticationRequestParam.USER_CODE;
+import static org.gluu.oxauth.model.ciba.BackchannelAuthenticationResponseParam.AUTH_REQ_ID;
+import static org.gluu.oxauth.model.ciba.BackchannelAuthenticationResponseParam.EXPIRES_IN;
+import static org.gluu.oxauth.model.ciba.BackchannelAuthenticationResponseParam.INTERVAL;
+
+import javax.ws.rs.HttpMethod;
+import javax.ws.rs.client.Entity;
+import javax.ws.rs.client.Invocation.Builder;
+
+import org.apache.commons.lang.StringUtils;
+import org.apache.log4j.Logger;
+import org.gluu.oxauth.model.common.AuthenticationMethod;
+import org.gluu.oxauth.model.util.Util;
+import org.json.JSONObject;
+
+/**
+ * Encapsulates functionality to make backchannel authentication request calls to an authorization server via REST Services.
+ *
+ * @author Javier Rojas Blum
+ * @version September 4, 2019
+ */
+public class BackchannelAuthenticationClient extends BaseClient<BackchannelAuthenticationRequest, BackchannelAuthenticationResponse> {
+
+    private static final Logger LOG = Logger.getLogger(BackchannelAuthenticationClient.class);
+
+    /**
+     * Constructs a backchannel authentication client by providing a REST url where the
+     * backchannel authentication service is located.
+     *
+     * @param url The REST Service location.
+     */
+    public BackchannelAuthenticationClient(String url) {
+        super(url);
+    }
+
+    @Override
+    public String getHttpMethod() {
+        return HttpMethod.POST;
+    }
+
+    /**
+     * Executes the call to the REST Service and processes the response.
+     *
+     * @return The authorization response.
+     */
+    public BackchannelAuthenticationResponse exec() {
+        BackchannelAuthenticationResponse response = null;
+
+        try {
+            initClientRequest();
+            response = exec_();
+        } catch (Exception e) {
+            LOG.error(e.getMessage(), e);
+        } finally {
+            closeConnection();
+        }
+
+        return response;
+    }
+
+    private BackchannelAuthenticationResponse exec_() throws Exception {
+        final String scopesAsString = Util.listAsString(getRequest().getScope());
+        final String acrValuesAsString = Util.listAsString(getRequest().getAcrValues());
+
+        if (StringUtils.isNotBlank(scopesAsString)) {
+        	requestForm.param(SCOPE, scopesAsString);
+        }
+        if (StringUtils.isNotBlank(getRequest().getClientNotificationToken())) {
+            requestForm.param(CLIENT_NOTIFICATION_TOKEN, getRequest().getClientNotificationToken());
+        }
+        if (StringUtils.isNotBlank(acrValuesAsString)) {
+            requestForm.param(ACR_VALUES, acrValuesAsString);
+        }
+        if (StringUtils.isNotBlank(getRequest().getLoginHintToken())) {
+            requestForm.param(LOGIN_HINT_TOKEN, getRequest().getLoginHintToken());
+        }
+        if (StringUtils.isNotBlank(getRequest().getIdTokenHint())) {
+            requestForm.param(ID_TOKEN_HINT, getRequest().getIdTokenHint());
+        }
+        if (StringUtils.isNotBlank(getRequest().getLoginHint())) {
+            requestForm.param(LOGIN_HINT, getRequest().getLoginHint());
+        }
+        if (StringUtils.isNotBlank(getRequest().getBindingMessage())) {
+            requestForm.param(BINDING_MESSAGE, getRequest().getBindingMessage());
+        }
+        if (StringUtils.isNotBlank(getRequest().getUserCode())) {
+            requestForm.param(USER_CODE, getRequest().getUserCode());
+        }
+        if (getRequest().getRequestedExpiry() != null) {
+            requestForm.param(REQUESTED_EXPIRY, getRequest().getRequestedExpiry().toString());
+        }
+        if (StringUtils.isNotBlank(getRequest().getClientId())) {
+            requestForm.param(CLIENT_ID, getRequest().getClientId());
+        }
+        if (StringUtils.isNotBlank(getRequest().getRequest())) {
+            requestForm.param(REQUEST, getRequest().getRequest());
+        }
+        if (StringUtils.isNotBlank(getRequest().getRequestUri())) {
+            requestForm.param(REQUEST_URI, getRequest().getRequestUri());
+        }
+
+        Builder clientRequest = webTarget.request();
+        applyCookies(clientRequest);
+
+        // Prepare request parameters
+////    clientRequest.setHttpMethod(getHttpMethod());
+	    clientRequest.header("Content-Type", request.getContentType());
+	    if (request.getAuthenticationMethod() == AuthenticationMethod.CLIENT_SECRET_BASIC && request.hasCredentials()) {
+	        clientRequest.header("Authorization", "Basic " + request.getEncodedCredentials());
+	    }
+
+
+        new ClientAuthnEnabler(clientRequest, requestForm).exec(getRequest());
+
+        // Call REST Service and handle response
+        clientResponse = clientRequest.buildPost(Entity.form(requestForm)).invoke();
+
+        setResponse(new BackchannelAuthenticationResponse(clientResponse));
+        if (StringUtils.isNotBlank(response.getEntity())) {
+            JSONObject jsonObj = new JSONObject(response.getEntity());
+
+            if (jsonObj.has(AUTH_REQ_ID)) {
+                getResponse().setAuthReqId(jsonObj.getString(AUTH_REQ_ID));
+            }
+            if (jsonObj.has(EXPIRES_IN)) {
+                getResponse().setExpiresIn(jsonObj.getInt(EXPIRES_IN));
+            }
+            if (jsonObj.has(INTERVAL)) {
+                getResponse().setInterval(jsonObj.getInt(INTERVAL));
+            }
+        }
+
+        return getResponse();
+    }
+}
\ No newline at end of file
diff --git a/oxAuth/Client/src/main/java/org/gluu/oxauth/client/BackchannelAuthenticationRequest.java b/oxAuth/Client/src/main/java/org/gluu/oxauth/client/BackchannelAuthenticationRequest.java
new file mode 100644
index 00000000..45d18c02
--- /dev/null
+++ b/oxAuth/Client/src/main/java/org/gluu/oxauth/client/BackchannelAuthenticationRequest.java
@@ -0,0 +1,163 @@
+/*
+ * oxAuth is available under the MIT License (2008). See http://opensource.org/licenses/MIT for full text.
+ *
+ * Copyright (c) 2014, Gluu
+ */
+
+package org.gluu.oxauth.client;
+
+import java.util.List;
+
+import javax.ws.rs.core.MediaType;
+
+import org.gluu.oxauth.model.ciba.BackchannelAuthenticationRequestParam;
+import org.gluu.oxauth.model.common.AuthenticationMethod;
+import org.gluu.oxauth.model.util.QueryBuilder;
+import org.gluu.oxauth.model.util.Util;
+
+/**
+ * Represents a CIBA backchannel authorization request to send to the authorization server.
+ *
+ * @author Javier Rojas Blum
+ * @version May 28, 2020
+ */
+public class BackchannelAuthenticationRequest extends ClientAuthnRequest {
+
+    private List<String> scope;
+    private String clientNotificationToken;
+    private List<String> acrValues;
+    private String loginHintToken;
+    private String idTokenHint;
+    private String loginHint;
+    private String bindingMessage;
+    private String userCode;
+    private Integer requestedExpiry;
+    private String clientId;
+    private String request;
+    private String requestUri;
+
+    public BackchannelAuthenticationRequest() {
+        setContentType(MediaType.APPLICATION_FORM_URLENCODED);
+        setAuthenticationMethod(AuthenticationMethod.CLIENT_SECRET_BASIC);
+    }
+
+    public List<String> getScope() {
+        return scope;
+    }
+
+    public void setScope(List<String> scope) {
+        this.scope = scope;
+    }
+
+    public String getClientNotificationToken() {
+        return clientNotificationToken;
+    }
+
+    public void setClientNotificationToken(String clientNotificationToken) {
+        this.clientNotificationToken = clientNotificationToken;
+    }
+
+    public List<String> getAcrValues() {
+        return acrValues;
+    }
+
+    public void setAcrValues(List<String> acrValues) {
+        this.acrValues = acrValues;
+    }
+
+    public String getLoginHintToken() {
+        return loginHintToken;
+    }
+
+    public void setLoginHintToken(String loginHintToken) {
+        this.loginHintToken = loginHintToken;
+    }
+
+    public String getIdTokenHint() {
+        return idTokenHint;
+    }
+
+    public void setIdTokenHint(String idTokenHint) {
+        this.idTokenHint = idTokenHint;
+    }
+
+    public String getLoginHint() {
+        return loginHint;
+    }
+
+    public void setLoginHint(String loginHint) {
+        this.loginHint = loginHint;
+    }
+
+    public String getBindingMessage() {
+        return bindingMessage;
+    }
+
+    public void setBindingMessage(String bindingMessage) {
+        this.bindingMessage = bindingMessage;
+    }
+
+    public String getUserCode() {
+        return userCode;
+    }
+
+    public void setUserCode(String userCode) {
+        this.userCode = userCode;
+    }
+
+    public Integer getRequestedExpiry() {
+        return requestedExpiry;
+    }
+
+    public void setRequestedExpiry(Integer requestedExpiry) {
+        this.requestedExpiry = requestedExpiry;
+    }
+
+    public String getRequest() {
+        return request;
+    }
+
+    public void setRequest(String request) {
+        this.request = request;
+    }
+
+    public String getRequestUri() {
+        return requestUri;
+    }
+
+    public void setRequestUri(String requestUri) {
+        this.requestUri = requestUri;
+    }
+
+    public String getClientId() {
+        return clientId;
+    }
+
+    public void setClientId(String clientId) {
+        this.clientId = clientId;
+    }
+
+    @Override
+    public String getQueryString() {
+        QueryBuilder builder = QueryBuilder.instance();
+
+        final String scopesAsString = Util.listAsString(scope);
+        final String acrValuesAsString = Util.listAsString(acrValues);
+
+        builder.append(BackchannelAuthenticationRequestParam.SCOPE, scopesAsString);
+        builder.append(BackchannelAuthenticationRequestParam.CLIENT_NOTIFICATION_TOKEN, clientNotificationToken);
+        builder.append(BackchannelAuthenticationRequestParam.ACR_VALUES, acrValuesAsString);
+        builder.append(BackchannelAuthenticationRequestParam.LOGIN_HINT_TOKEN, loginHintToken);
+        builder.append(BackchannelAuthenticationRequestParam.ID_TOKEN_HINT, idTokenHint);
+        builder.append(BackchannelAuthenticationRequestParam.LOGIN_HINT, loginHint);
+        builder.append(BackchannelAuthenticationRequestParam.BINDING_MESSAGE, bindingMessage);
+        builder.append(BackchannelAuthenticationRequestParam.USER_CODE, userCode);
+        builder.appendIfNotNull(BackchannelAuthenticationRequestParam.REQUESTED_EXPIRY, requestedExpiry);
+        builder.appendIfNotNull(BackchannelAuthenticationRequestParam.CLIENT_ID, clientId);
+        builder.appendIfNotNull(BackchannelAuthenticationRequestParam.REQUEST, request);
+        builder.appendIfNotNull(BackchannelAuthenticationRequestParam.REQUEST_URI, requestUri);
+
+        appendClientAuthnToQuery(builder);
+        return builder.toString();
+    }
+}
\ No newline at end of file
diff --git a/oxAuth/Client/src/main/java/org/gluu/oxauth/client/BackchannelAuthenticationResponse.java b/oxAuth/Client/src/main/java/org/gluu/oxauth/client/BackchannelAuthenticationResponse.java
new file mode 100644
index 00000000..2473756d
--- /dev/null
+++ b/oxAuth/Client/src/main/java/org/gluu/oxauth/client/BackchannelAuthenticationResponse.java
@@ -0,0 +1,100 @@
+/*
+ * oxAuth is available under the MIT License (2008). See http://opensource.org/licenses/MIT for full text.
+ *
+ * Copyright (c) 2014, Gluu
+ */
+
+package org.gluu.oxauth.client;
+
+import static org.gluu.oxauth.model.ciba.BackchannelAuthenticationResponseParam.AUTH_REQ_ID;
+import static org.gluu.oxauth.model.ciba.BackchannelAuthenticationResponseParam.EXPIRES_IN;
+import static org.gluu.oxauth.model.ciba.BackchannelAuthenticationResponseParam.INTERVAL;
+
+import javax.ws.rs.core.Response;
+
+import org.apache.commons.lang.StringUtils;
+import org.apache.log4j.Logger;
+import org.gluu.oxauth.model.ciba.BackchannelAuthenticationErrorResponseType;
+import org.json.JSONException;
+import org.json.JSONObject;
+
+/**
+ * Represents a CIBA backchannel authorization response.
+ *
+ * @author Javier Rojas Blum
+ * @version August 20, 2019
+ */
+public class BackchannelAuthenticationResponse extends BaseResponseWithErrors<BackchannelAuthenticationErrorResponseType> {
+
+    private static final Logger LOG = Logger.getLogger(BackchannelAuthenticationResponse.class);
+
+    private String authReqId;
+    private Integer expiresIn;
+    private Integer interval;
+
+    /**
+     * Constructs a backchannel authentication response.
+     */
+    public BackchannelAuthenticationResponse() {
+    }
+
+    /**
+     * Constructs a backchannel authentication response.
+     */
+    public BackchannelAuthenticationResponse(Response clientResponse) {
+        super(clientResponse);
+    }
+
+    @Override
+    public BackchannelAuthenticationErrorResponseType fromString(String p_str) {
+        return BackchannelAuthenticationErrorResponseType.fromString(p_str);
+    }
+
+    public void injectDataFromJson() {
+        injectDataFromJson(entity);
+    }
+
+    @Override
+    public void injectDataFromJson(String p_json) {
+        if (StringUtils.isNotBlank(entity)) {
+            try {
+                JSONObject jsonObj = new JSONObject(entity);
+                if (jsonObj.has(AUTH_REQ_ID)) {
+                    setAuthReqId(jsonObj.getString(AUTH_REQ_ID));
+                }
+                if (jsonObj.has(EXPIRES_IN)) {
+                    setExpiresIn(jsonObj.getInt(EXPIRES_IN));
+                }
+                if (jsonObj.has(INTERVAL)) {
+                    setInterval(jsonObj.getInt(INTERVAL));
+                }
+            } catch (JSONException e) {
+                LOG.error(e.getMessage(), e);
+            }
+        }
+    }
+
+    public String getAuthReqId() {
+        return authReqId;
+    }
+
+    public void setAuthReqId(String authReqId) {
+        this.authReqId = authReqId;
+    }
+
+    public Integer getExpiresIn() {
+        return expiresIn;
+    }
+
+    public void setExpiresIn(Integer expiresIn) {
+        this.expiresIn = expiresIn;
+    }
+
+    public Integer getInterval() {
+        return interval;
+    }
+
+    public void setInterval(Integer interval) {
+        this.interval = interval;
+    }
+}
\ No newline at end of file
diff --git a/oxAuth/Client/src/main/java/org/gluu/oxauth/client/BaseClient.java b/oxAuth/Client/src/main/java/org/gluu/oxauth/client/BaseClient.java
new file mode 100644
index 00000000..0446e2c5
--- /dev/null
+++ b/oxAuth/Client/src/main/java/org/gluu/oxauth/client/BaseClient.java
@@ -0,0 +1,277 @@
+/*
+ * oxAuth is available under the MIT License (2008). See http://opensource.org/licenses/MIT for full text.
+ *
+ * Copyright (c) 2014, Gluu
+ */
+
+package org.gluu.oxauth.client;
+
+import static org.gluu.oxauth.client.AuthorizationRequest.NO_REDIRECT_HEADER;
+
+import java.net.MalformedURLException;
+import java.net.URL;
+import java.util.ArrayList;
+import java.util.HashMap;
+import java.util.List;
+import java.util.Map;
+
+import javax.ws.rs.HttpMethod;
+import javax.ws.rs.client.Invocation.Builder;
+import javax.ws.rs.client.WebTarget;
+import javax.ws.rs.core.Cookie;
+import javax.ws.rs.core.Form;
+import javax.ws.rs.core.Response;
+
+import org.apache.commons.lang.StringUtils;
+import org.apache.log4j.Logger;
+import org.gluu.oxauth.model.common.AuthenticationMethod;
+import org.gluu.oxauth.model.common.AuthorizationMethod;
+import org.gluu.oxauth.model.common.HasParamName;
+import org.gluu.oxauth.model.util.Util;
+import org.jboss.resteasy.client.jaxrs.ClientHttpEngine;
+import org.jboss.resteasy.client.jaxrs.ResteasyClient;
+import org.jboss.resteasy.client.jaxrs.ResteasyClientBuilder;
+
+/**
+ * Allows to retrieve HTTP requests to the authorization server and responses from it for display purposes.
+ *
+ * @author Javier Rojas Blum
+ * @version May 28, 2020
+ */
+public abstract class BaseClient<T extends BaseRequest, V extends BaseResponse> {
+
+    private static final Logger LOG = Logger.getLogger(BaseClient.class);
+
+    private String url;
+
+    protected T request;
+    protected V response;
+    protected ResteasyClient resteasyClient = null;
+    protected WebTarget webTarget = null;
+    protected Form requestForm = new Form();
+    protected Response clientResponse = null;
+    private final List<Cookie> cookies = new ArrayList<Cookie>();
+    private final Map<String, String> headers = new HashMap<String, String>();
+
+    protected ClientHttpEngine executor = null;
+
+    public BaseClient() {
+    }
+
+    public BaseClient(String url) {
+        this.url = url;
+    }
+
+    public String getUrl() {
+        return url;
+    }
+
+    public void setUrl(String url) {
+        this.url = url;
+    }
+
+    public T getRequest() {
+        return request;
+    }
+
+    public void setRequest(T request) {
+        this.request = request;
+    }
+
+    public V getResponse() {
+        return response;
+    }
+
+    public void setResponse(V response) {
+        this.response = response;
+    }
+
+    public ClientHttpEngine getExecutor() {
+        return executor;
+    }
+
+    public void setExecutor(ClientHttpEngine executor) {
+        this.executor = executor;
+    }
+
+    protected void addReqParam(String p_key, HasParamName p_value) {
+        if (p_value != null) {
+            addReqParam(p_key, p_value.getParamName());
+        }
+    }
+
+    protected void addReqParam(String p_key, String p_value) {
+        if (Util.allNotBlank(p_key, p_value)) {
+            if (request.getAuthorizationMethod() == AuthorizationMethod.FORM_ENCODED_BODY_PARAMETER) {
+            	requestForm.param(p_key, p_value);
+            } else {
+            	webTarget = webTarget.queryParam(p_key, p_value);
+            }
+        }
+    }
+/*
+    public static void putAllFormParameters(ClientRequest p_clientRequest, BaseRequest p_request) {
+        if (p_clientRequest != null && p_request != null) {
+            final Map<String, String> parameters = p_request.getParameters();
+            if (parameters != null && !parameters.isEmpty()) {
+                for (Map.Entry<String, String> e : parameters.entrySet()) {
+                    p_requestForm.param(e.getKey(), e.getValue());
+                }
+            }
+        }
+    }
+*/
+    public String getRequestAsString() {
+        StringBuilder sb = new StringBuilder();
+
+        try {
+            URL theUrl = new URL(url);
+
+            if (getHttpMethod().equals(HttpMethod.POST) || getHttpMethod().equals(HttpMethod.PUT) || getHttpMethod().equals(HttpMethod.DELETE)) {
+                sb.append(getHttpMethod()).append(" ").append(theUrl.getPath()).append(" HTTP/1.1");
+                if (StringUtils.isNotBlank(request.getContentType())) {
+                    sb.append("\n");
+                    sb.append("Content-Type: ").append(request.getContentType());
+                }
+                if (StringUtils.isNotBlank(request.getMediaType())) {
+                    sb.append("\n");
+                    sb.append("Accept: ").append(request.getMediaType());
+                }
+                sb.append("\n");
+                sb.append("Host: ").append(theUrl.getHost());
+
+                if (request instanceof AuthorizationRequest) {
+                    AuthorizationRequest authorizationRequest = (AuthorizationRequest) request;
+                    if (authorizationRequest.isUseNoRedirectHeader()) {
+                        sb.append("\n");
+                        sb.append(NO_REDIRECT_HEADER + ": true");
+                    }
+                }
+                if (request.getAuthorizationMethod() == null) {
+                    if (request.getAuthenticationMethod() == null
+                            || request.getAuthenticationMethod() == AuthenticationMethod.CLIENT_SECRET_BASIC) {
+                        if (request.hasCredentials()) {
+                            String encodedCredentials = request.getEncodedCredentials();
+                            sb.append("\n");
+                            sb.append("Authorization: Basic ").append(encodedCredentials);
+                        }
+                    }
+                } else if (request.getAuthorizationMethod() == AuthorizationMethod.AUTHORIZATION_REQUEST_HEADER_FIELD) {
+                    if (request instanceof UserInfoRequest) {
+                        String accessToken = ((UserInfoRequest) request).getAccessToken();
+                        sb.append("\n");
+                        sb.append("Authorization: Bearer ").append(accessToken);
+                    }
+                }
+
+                sb.append("\n");
+                sb.append("\n");
+                sb.append(request.getQueryString());
+            } else if (getHttpMethod().equals(HttpMethod.GET)) {
+                sb.append(getHttpMethod()).append(" ").append(theUrl.getPath()).append(" HTTP/1.1");
+                if (StringUtils.isNotBlank(request.getQueryString())) {
+                    sb.append("?").append(request.getQueryString());
+                }
+                sb.append(" HTTP/1.1");
+                sb.append("\n");
+                sb.append("Host: ").append(theUrl.getHost());
+
+                if (request instanceof AuthorizationRequest) {
+                    AuthorizationRequest authorizationRequest = (AuthorizationRequest) request;
+                    if (authorizationRequest.isUseNoRedirectHeader()) {
+                        sb.append("\n");
+                        sb.append(NO_REDIRECT_HEADER + ": true");
+                    }
+                }
+                if (request.getAuthorizationMethod() == null) {
+                    if (request.hasCredentials()) {
+                        String encodedCredentials = request.getEncodedCredentials();
+                        sb.append("\n");
+                        sb.append("Authorization: Basic ").append(encodedCredentials);
+                    } else if (request instanceof RegisterRequest) {
+                        RegisterRequest r = (RegisterRequest) request;
+                        String registrationAccessToken = r.getRegistrationAccessToken();
+                        sb.append("\n");
+                        sb.append("Authorization: Bearer ").append(registrationAccessToken);
+                    }
+                } else if (request.getAuthorizationMethod() == AuthorizationMethod.AUTHORIZATION_REQUEST_HEADER_FIELD) {
+                    if (request instanceof UserInfoRequest) {
+                        String accessToken = ((UserInfoRequest) request).getAccessToken();
+                        sb.append("\n");
+                        sb.append("Authorization: Bearer ").append(accessToken);
+                    }
+                }
+            }
+        } catch (MalformedURLException e) {
+            LOG.error(e.getMessage(), e);
+        }
+
+        return sb.toString();
+    }
+
+    public String getResponseAsString() {
+        StringBuilder sb = new StringBuilder();
+
+        if (response != null) {
+            sb.append("HTTP/1.1 ").append(response.getStatus());
+            if (response.getHeaders() != null) {
+                for (String key : response.getHeaders().keySet()) {
+                    sb.append("\n")
+                            .append(key)
+                            .append(": ")
+                            .append(response.getHeaders().get(key).get(0));
+                }
+            }
+            if (response.getEntity() != null) {
+                sb.append("\n");
+                sb.append("\n");
+                sb.append(response.getEntity());
+            }
+        }
+        return sb.toString();
+    }
+
+    protected void initClientRequest() {
+        if (this.executor == null) {
+        	resteasyClient = (ResteasyClient) ResteasyClientBuilder.newClient();
+        } else {
+        	resteasyClient = ((ResteasyClientBuilder) ResteasyClientBuilder.newBuilder()).httpEngine(executor).build();
+        }
+
+        webTarget = resteasyClient.target(getUrl());
+    }
+
+    protected void applyCookies(Builder clientRequest) {
+		for (Cookie cookie : cookies) {
+            clientRequest.cookie(cookie);
+        }
+        for (Map.Entry<String, String> headerEntry : headers.entrySet()) {
+            clientRequest.header(headerEntry.getKey(), headerEntry.getValue());
+        }
+    }
+
+    public void closeConnection() {
+        try {
+            if (clientResponse != null) {
+                clientResponse.close();
+            }
+            // Why we should close engine after processing response?
+//            if (resteasyClient != null && resteasyClient.httpEngine() != null) {
+//            	resteasyClient.httpEngine().close();
+//            }
+        } catch (Exception e) {
+            LOG.error(e.getMessage(), e);
+        }
+    }
+
+    public abstract String getHttpMethod();
+
+    public List<Cookie> getCookies() {
+        return cookies;
+    }
+
+    public Map<String, String> getHeaders() {
+        return headers;
+    }
+
+}
\ No newline at end of file
diff --git a/oxAuth/Client/src/main/java/org/gluu/oxauth/client/BaseRequest.java b/oxAuth/Client/src/main/java/org/gluu/oxauth/client/BaseRequest.java
new file mode 100644
index 00000000..37180ea4
--- /dev/null
+++ b/oxAuth/Client/src/main/java/org/gluu/oxauth/client/BaseRequest.java
@@ -0,0 +1,145 @@
+/*
+ * oxAuth is available under the MIT License (2008). See http://opensource.org/licenses/MIT for full text.
+ *
+ * Copyright (c) 2014, Gluu
+ */
+
+package org.gluu.oxauth.client;
+
+import java.io.UnsupportedEncodingException;
+import java.net.URLEncoder;
+import java.util.HashMap;
+import java.util.Map;
+
+import org.apache.commons.codec.binary.Base64;
+import org.gluu.oxauth.model.common.AuthenticationMethod;
+import org.gluu.oxauth.model.common.AuthorizationMethod;
+import org.gluu.oxauth.model.util.Util;
+import org.json.JSONException;
+import org.json.JSONObject;
+
+/**
+ * @author Javier Rojas Blum
+ * @version January 26. 2018
+ */
+public abstract class BaseRequest {
+
+    private static final Map<String, String> EMPTY_MAP = new HashMap<String, String>();
+    private static final JSONObject EMPTY_JSON_OBJECT = new JSONObject();
+
+    private String contentType;
+    private String mediaType;
+    private String authUsername;
+    private String authPassword;
+    private AuthenticationMethod authenticationMethod;
+    private AuthorizationMethod authorizationMethod;
+    private Map<String, String> customParameters;
+
+    protected BaseRequest() {
+        customParameters = new HashMap<String, String>();
+    }
+
+    public String getContentType() {
+        return contentType;
+    }
+
+    public void setContentType(String contentType) {
+        this.contentType = contentType;
+    }
+
+    public String getMediaType() {
+        return mediaType;
+    }
+
+    public void setMediaType(String mediaType) {
+        this.mediaType = mediaType;
+    }
+
+    public String getAuthUsername() {
+        return authUsername;
+    }
+
+    public void setAuthUsername(String authUsername) {
+        this.authUsername = authUsername;
+    }
+
+    public String getAuthPassword() {
+        return authPassword;
+    }
+
+    public void setAuthPassword(String authPassword) {
+        this.authPassword = authPassword;
+    }
+
+    public AuthenticationMethod getAuthenticationMethod() {
+        return authenticationMethod;
+    }
+
+    public void setAuthenticationMethod(AuthenticationMethod authenticationMethod) {
+        this.authenticationMethod = authenticationMethod;
+    }
+
+    public AuthorizationMethod getAuthorizationMethod() {
+        return authorizationMethod;
+    }
+
+    public void setAuthorizationMethod(AuthorizationMethod authorizationMethod) {
+        this.authorizationMethod = authorizationMethod;
+    }
+
+    public Map<String, String> getCustomParameters() {
+        return customParameters;
+    }
+
+    public void addCustomParameter(String paramName, String paramValue) {
+        customParameters.put(paramName, paramValue);
+    }
+
+    public boolean hasCredentials() {
+        return authUsername != null && authPassword != null
+                && !authUsername.isEmpty()
+                && !authPassword.isEmpty();
+    }
+
+    /**
+     * Returns the client credentials (URL encoded).
+     *
+     * @return The client credentials.
+     */
+    public String getCredentials() throws UnsupportedEncodingException {
+        return URLEncoder.encode(authUsername, Util.UTF8_STRING_ENCODING)
+                + ":"
+                + URLEncoder.encode(authPassword, Util.UTF8_STRING_ENCODING);
+    }
+
+    /**
+     * Returns the client credentials encoded using base64.
+     *
+     * @return The encoded client credentials.
+     */
+    public String getEncodedCredentials() {
+        try {
+            if (hasCredentials()) {
+                return Base64.encodeBase64String(Util.getBytes(getCredentials()));
+            }
+        } catch (UnsupportedEncodingException e) {
+            e.printStackTrace();
+        }
+
+        return null;
+    }
+
+    public static String getEncodedCredentials(String clientId, String clientSecret) throws UnsupportedEncodingException {
+        return Base64.encodeBase64String(Util.getBytes(URLEncoder.encode(clientId, Util.UTF8_STRING_ENCODING) + ":" + URLEncoder.encode(clientSecret, Util.UTF8_STRING_ENCODING)));
+    }
+
+    public Map<String, String> getParameters() {
+        return EMPTY_MAP;
+    }
+
+    public JSONObject getJSONParameters() throws JSONException {
+        return EMPTY_JSON_OBJECT;
+    }
+
+    public abstract String getQueryString();
+}
\ No newline at end of file
diff --git a/oxAuth/Client/src/main/java/org/gluu/oxauth/client/BaseResponse.java b/oxAuth/Client/src/main/java/org/gluu/oxauth/client/BaseResponse.java
new file mode 100644
index 00000000..c32da21d
--- /dev/null
+++ b/oxAuth/Client/src/main/java/org/gluu/oxauth/client/BaseResponse.java
@@ -0,0 +1,104 @@
+/*
+ * oxAuth is available under the MIT License (2008). See http://opensource.org/licenses/MIT for full text.
+ *
+ * Copyright (c) 2014, Gluu
+ */
+
+package org.gluu.oxauth.client;
+
+import javax.ws.rs.core.MultivaluedMap;
+import javax.ws.rs.core.Response;
+
+/**
+ * @author Javier Rojas Blum
+ * @version December 26, 2016
+ */
+public abstract class BaseResponse {
+
+    protected int status;
+    protected String location;
+    protected String entity;
+    protected MultivaluedMap<String, Object> headers;
+
+    public BaseResponse() {
+    }
+
+    // TODO: remove
+    @Deprecated
+    public BaseResponse(int status) {
+        this.status = status;
+    }
+
+    public BaseResponse(Response clientResponse) {
+        if (clientResponse != null) {
+            status = clientResponse.getStatus();
+            if (clientResponse.getLocation() != null) {
+                location = clientResponse.getLocation().toString();
+            }
+            entity = clientResponse.readEntity(String.class);
+            headers = clientResponse.getMetadata();
+        }
+    }
+
+    /**
+     * Returns the HTTP status code of the response.
+     *
+     * @return The HTTP status code.
+     */
+    public int getStatus() {
+        return status;
+    }
+
+    /**
+     * Returns the location of the response in the header.
+     *
+     * @return The location of the response.
+     */
+    public String getLocation() {
+        return location;
+    }
+
+    /**
+     * Sets the location of the response in the header.
+     *
+     * @param location The location of the response.
+     */
+    public void setLocation(String location) {
+        this.location = location;
+    }
+
+    /**
+     * Sets the HTTP status code of the response.
+     *
+     * @param status The HTTP status code.
+     */
+    public void setStatus(int status) {
+        this.status = status;
+    }
+
+    /**
+     * Returns the entity or body content of the response.
+     *
+     * @return The entity or body content of the response.
+     */
+    public String getEntity() {
+        return entity;
+    }
+
+    /**
+     * Sets the entity or body content of the response.
+     *
+     * @param entity The entity or body content of the response.
+     */
+    public void setEntity(String entity) {
+        this.entity = entity;
+    }
+
+    public MultivaluedMap<String, Object> getHeaders() {
+        return headers;
+    }
+
+    public void setHeaders(MultivaluedMap<String, Object> headers) {
+        this.headers = headers;
+    }
+}
\ No newline at end of file
diff --git a/oxAuth/Client/src/main/java/org/gluu/oxauth/client/BaseResponseWithErrors.java b/oxAuth/Client/src/main/java/org/gluu/oxauth/client/BaseResponseWithErrors.java
new file mode 100644
index 00000000..d0c2e306
--- /dev/null
+++ b/oxAuth/Client/src/main/java/org/gluu/oxauth/client/BaseResponseWithErrors.java
@@ -0,0 +1,89 @@
+/*
+ * oxAuth is available under the MIT License (2008). See http://opensource.org/licenses/MIT for full text.
+ *
+ * Copyright (c) 2014, Gluu
+ */
+
+package org.gluu.oxauth.client;
+
+import javax.ws.rs.core.Response;
+
+import org.apache.commons.lang.StringUtils;
+import org.gluu.oxauth.model.error.IErrorType;
+import org.json.JSONException;
+import org.json.JSONObject;
+
+/**
+ * @author Yuriy Zabrovarnyy
+ * @version 0.9, 09/10/2012
+ */
+
+public abstract class BaseResponseWithErrors<T extends IErrorType> extends BaseResponse {
+
+//    private static final Logger LOG = Logger.getLogger(BaseResponseWithErrors.class);
+
+    private T errorType;
+    private String errorDescription;
+    private String errorUri;
+
+    public BaseResponseWithErrors() {
+        super();
+    }
+
+    public BaseResponseWithErrors(Response clientResponse) {
+        super(clientResponse);
+        final String entity = getEntity();
+        if (StringUtils.isNotBlank(entity)) {
+            injectErrorIfExistSilently(entity);
+        }
+    }
+
+    public String getErrorDescription() {
+        return errorDescription;
+    }
+
+    public void setErrorDescription(String p_errorDescription) {
+        errorDescription = p_errorDescription;
+    }
+
+    public T getErrorType() {
+        return errorType;
+    }
+
+    public void setErrorType(T p_errorType) {
+        errorType = p_errorType;
+    }
+
+    public String getErrorUri() {
+        return errorUri;
+    }
+
+    public void setErrorUri(String p_errorUri) {
+        errorUri = p_errorUri;
+    }
+
+    public abstract T fromString(String p_str);
+
+    public void injectDataFromJson(String p_json) {
+    }
+
+    public void injectErrorIfExistSilently(JSONObject jsonObj) throws JSONException {
+        if (jsonObj.has("error")) {
+            errorType = fromString(jsonObj.getString("error"));
+        }
+        if (jsonObj.has("error_description")) {
+            errorDescription = jsonObj.getString("error_description");
+        }
+        if (jsonObj.has("error_uri")) {
+            errorUri = jsonObj.getString("error_uri");
+        }
+    }
+
+    public void injectErrorIfExistSilently(String p_entity) {
+        try {
+            injectErrorIfExistSilently(new JSONObject(p_entity));
+        } catch (JSONException e) {
+            // ignore : it's ok to skip exception because entity string can be json array or just trash
+        }
+    }
+}
diff --git a/oxAuth/Client/src/main/java/org/gluu/oxauth/client/ClientAuthnEnabler.java b/oxAuth/Client/src/main/java/org/gluu/oxauth/client/ClientAuthnEnabler.java
new file mode 100644
index 00000000..39b5cc88
--- /dev/null
+++ b/oxAuth/Client/src/main/java/org/gluu/oxauth/client/ClientAuthnEnabler.java
@@ -0,0 +1,53 @@
+package org.gluu.oxauth.client;
+
+import javax.ws.rs.client.Invocation.Builder;
+import javax.ws.rs.core.Form;
+
+import org.apache.log4j.Logger;
+import org.gluu.oxauth.model.common.AuthenticationMethod;
+import org.gluu.oxauth.model.token.ClientAssertionType;
+
+
+/**
+ * @author Yuriy Zabrovarnyy
+ */
+public class ClientAuthnEnabler {
+
+    private static final Logger LOG = Logger.getLogger(ClientAuthnEnabler.class);
+
+    private Builder clientRequest;
+    private Form requestForm;
+
+    public ClientAuthnEnabler(Builder clientRequest, Form requestForm) {
+        this.clientRequest = clientRequest;
+        this.requestForm = requestForm;
+    }
+
+    public void exec(ClientAuthnRequest request){
+        if (request.getAuthenticationMethod() == AuthenticationMethod.CLIENT_SECRET_BASIC
+                && request.hasCredentials()) {
+            clientRequest.header("Authorization", "Basic " + request.getEncodedCredentials());
+            return;
+        }
+
+        if (request.getAuthenticationMethod() == AuthenticationMethod.CLIENT_SECRET_POST) {
+            if (request.getAuthUsername() != null && !request.getAuthUsername().isEmpty()) {
+                requestForm.param("client_id", request.getAuthUsername());
+            }
+            if (request.getAuthPassword() != null && !request.getAuthPassword().isEmpty()) {
+                requestForm.param("client_secret", request.getAuthPassword());
+            }
+            return;
+        }
+        if (request.getAuthenticationMethod() == AuthenticationMethod.CLIENT_SECRET_JWT ||
+                request.getAuthenticationMethod() == AuthenticationMethod.PRIVATE_KEY_JWT) {
+            requestForm.param("client_assertion_type", ClientAssertionType.JWT_BEARER.toString());
+            if (request.getClientAssertion() != null) {
+                requestForm.param("client_assertion", request.getClientAssertion());
+            }
+            if (request.getAuthUsername() != null && !request.getAuthUsername().isEmpty()) {
+                requestForm.param("client_id", request.getAuthUsername());
+            }
+        }
+    }
+}
diff --git a/oxAuth/Client/src/main/java/org/gluu/oxauth/client/ClientAuthnRequest.java b/oxAuth/Client/src/main/java/org/gluu/oxauth/client/ClientAuthnRequest.java
new file mode 100644
index 00000000..cdfd8eb1
--- /dev/null
+++ b/oxAuth/Client/src/main/java/org/gluu/oxauth/client/ClientAuthnRequest.java
@@ -0,0 +1,130 @@
+package org.gluu.oxauth.client;
+
+import java.util.Calendar;
+import java.util.Date;
+import java.util.GregorianCalendar;
+import java.util.TimeZone;
+import java.util.UUID;
+
+import org.apache.commons.lang.StringUtils;
+import org.apache.log4j.Logger;
+import org.gluu.oxauth.model.common.AuthenticationMethod;
+import org.gluu.oxauth.model.crypto.AbstractCryptoProvider;
+import org.gluu.oxauth.model.crypto.signature.SignatureAlgorithm;
+import org.gluu.oxauth.model.jwt.Jwt;
+import org.gluu.oxauth.model.jwt.JwtType;
+import org.gluu.oxauth.model.token.ClientAssertionType;
+import org.gluu.oxauth.model.util.QueryBuilder;
+
+/**
+ * @author Yuriy Zabrovarnyy
+ */
+public abstract class ClientAuthnRequest extends BaseRequest {
+
+    private static final Logger LOG = Logger.getLogger(ClientAuthnRequest.class);
+
+    private SignatureAlgorithm algorithm;
+    private String sharedKey;
+    private String audience;
+    private AbstractCryptoProvider cryptoProvider;
+    private String keyId;
+
+    public ClientAuthnRequest() {
+    }
+
+    public AbstractCryptoProvider getCryptoProvider() {
+        return cryptoProvider;
+    }
+
+    public void setCryptoProvider(AbstractCryptoProvider cryptoProvider) {
+        this.cryptoProvider = cryptoProvider;
+    }
+
+    public String getKeyId() {
+        return keyId;
+    }
+
+    public void setKeyId(String keyId) {
+        this.keyId = keyId;
+    }
+
+    public SignatureAlgorithm getAlgorithm() {
+        return algorithm;
+    }
+
+    public void setAlgorithm(SignatureAlgorithm algorithm) {
+        this.algorithm = algorithm;
+    }
+
+    public String getSharedKey() {
+        return sharedKey;
+    }
+
+    public void setSharedKey(String sharedKey) {
+        this.sharedKey = sharedKey;
+    }
+
+    public String getAudience() {
+        return audience;
+    }
+
+    public void setAudience(String audience) {
+        this.audience = audience;
+    }
+
+    public void appendClientAuthnToQuery(QueryBuilder builder) {
+        if (getAuthenticationMethod() == AuthenticationMethod.CLIENT_SECRET_POST) {
+            builder.append("client_id", getAuthUsername());
+            builder.append("client_secret", getAuthPassword());
+        } else if (getAuthenticationMethod() == AuthenticationMethod.CLIENT_SECRET_JWT ||
+                getAuthenticationMethod() == AuthenticationMethod.PRIVATE_KEY_JWT) {
+            builder.append("client_assertion_type", ClientAssertionType.JWT_BEARER.toString());
+            builder.append("client_assertion", getClientAssertion());
+        }
+    }
+
+    public String getClientAssertion() {
+        if (cryptoProvider == null) {
+            LOG.error("Crypto provider is not specified");
+            return null;
+        }
+
+        if (algorithm == null) {
+            algorithm = SignatureAlgorithm.HS256;
+        }
+
+        GregorianCalendar calendar = new GregorianCalendar(TimeZone.getTimeZone("UTC"));
+        Date issuedAt = calendar.getTime();
+        calendar.add(Calendar.MINUTE, 5);
+        Date expirationTime = calendar.getTime();
+
+        Jwt clientAssertion = new Jwt();
+        // Header
+        clientAssertion.getHeader().setType(JwtType.JWT);
+        clientAssertion.getHeader().setAlgorithm(algorithm);
+        if (StringUtils.isNotBlank(keyId)) {
+            clientAssertion.getHeader().setKeyId(keyId);
+        }
+
+        // Claims
+        clientAssertion.getClaims().setIssuer(getAuthUsername());
+        clientAssertion.getClaims().setSubjectIdentifier(getAuthUsername());
+        clientAssertion.getClaims().setAudience(audience);
+        clientAssertion.getClaims().setJwtId(UUID.randomUUID());
+        clientAssertion.getClaims().setExpirationTime(expirationTime);
+        clientAssertion.getClaims().setIssuedAt(issuedAt);
+
+        // Signature
+        try {
+            if (sharedKey == null) {
+                sharedKey = getAuthPassword();
+            }
+            String signature = cryptoProvider.sign(clientAssertion.getSigningInput(), keyId, sharedKey, algorithm);
+            clientAssertion.setEncodedSignature(signature);
+        } catch (Exception e) {
+            LOG.error(e.getMessage(), e);
+        }
+
+        return clientAssertion.toString();
+    }
+}
diff --git a/oxAuth/Client/src/main/java/org/gluu/oxauth/client/ClientInfoClient.java b/oxAuth/Client/src/main/java/org/gluu/oxauth/client/ClientInfoClient.java
new file mode 100644
index 00000000..348a9e2f
--- /dev/null
+++ b/oxAuth/Client/src/main/java/org/gluu/oxauth/client/ClientInfoClient.java
@@ -0,0 +1,183 @@
+/*
+ * oxAuth is available under the MIT License (2008). See http://opensource.org/licenses/MIT for full text.
+ *
+ * Copyright (c) 2014, Gluu
+ */
+
+package org.gluu.oxauth.client;
+
+import java.util.ArrayList;
+import java.util.Iterator;
+import java.util.List;
+
+import javax.ws.rs.HttpMethod;
+import javax.ws.rs.client.Entity;
+import javax.ws.rs.client.Invocation.Builder;
+import javax.ws.rs.core.MediaType;
+
+import org.apache.commons.lang.StringUtils;
+import org.apache.log4j.Logger;
+import org.gluu.oxauth.model.common.AuthorizationMethod;
+import org.gluu.oxauth.model.userinfo.UserInfoErrorResponseType;
+import org.jboss.resteasy.client.jaxrs.ClientHttpEngine;
+import org.jboss.resteasy.client.jaxrs.ResteasyClientBuilder;
+import org.json.JSONArray;
+import org.json.JSONException;
+import org.json.JSONObject;
+
+/**
+ * Encapsulates functionality to make client info request calls to an authorization server via REST Services.
+ *
+ * @author Javier Rojas Blum
+ * @version December 26, 2016
+ */
+public class ClientInfoClient extends BaseClient<ClientInfoRequest, ClientInfoResponse> {
+
+    private static final Logger LOG = Logger.getLogger(ClientInfoClient.class);
+
+    /**
+     * Constructs an Client Info client by providing a REST url where the service is located.
+     *
+     * @param url The REST Service location.
+     */
+    public ClientInfoClient(String url) {
+        super(url);
+    }
+
+    @Override
+    public String getHttpMethod() {
+        if (getRequest().getAuthorizationMethod() == null
+                || getRequest().getAuthorizationMethod() == AuthorizationMethod.AUTHORIZATION_REQUEST_HEADER_FIELD
+                || getRequest().getAuthorizationMethod() == AuthorizationMethod.FORM_ENCODED_BODY_PARAMETER) {
+            return HttpMethod.POST;
+        } else { // AuthorizationMethod.URL_QUERY_PARAMETER
+            return HttpMethod.GET;
+        }
+    }
+
+    /**
+     * Executes the call to the REST Service and processes the response.
+     *
+     * @param accessToken The access token obtained from the oxAuth authorization request.
+     * @return The service response.
+     */
+    public ClientInfoResponse execClientInfo(String accessToken) {
+        setRequest(new ClientInfoRequest(accessToken));
+
+        return exec();
+    }
+
+    public ClientInfoResponse exec() {
+        initClientRequest();
+        return _exec();
+    }
+
+
+    @Deprecated
+    public ClientInfoResponse exec(ClientHttpEngine engine) {
+    	resteasyClient = ((ResteasyClientBuilder) ResteasyClientBuilder.newBuilder()).httpEngine(engine).build();
+    	webTarget = resteasyClient.target(getUrl());
+        return _exec();
+    }
+
+
+    /**
+     * Executes the call to the REST Service and processes the response.
+     *
+     * @return The service response.
+     */
+    private ClientInfoResponse _exec() {
+        // Prepare request parameters
+
+        Builder clientRequest = null;
+        if (getRequest().getAuthorizationMethod() == null
+                || getRequest().getAuthorizationMethod() == AuthorizationMethod.AUTHORIZATION_REQUEST_HEADER_FIELD) {
+            if (StringUtils.isNotBlank(getRequest().getAccessToken())) {
+            	clientRequest = webTarget.request();
+                clientRequest.header("Authorization", "Bearer " + getRequest().getAccessToken());
+            }
+        } else if (getRequest().getAuthorizationMethod() == AuthorizationMethod.FORM_ENCODED_BODY_PARAMETER) {
+            if (StringUtils.isNotBlank(getRequest().getAccessToken())) {
+                requestForm.param("access_token", getRequest().getAccessToken());
+            }
+        } else if (getRequest().getAuthorizationMethod() == AuthorizationMethod.URL_QUERY_PARAMETER) {
+            if (StringUtils.isNotBlank(getRequest().getAccessToken())) {
+            	addReqParam("access_token", getRequest().getAccessToken());
+            }
+        }
+
+        if (clientRequest == null) {
+        	clientRequest = webTarget.request();
+        }
+
+        clientRequest.header("Content-Type", MediaType.APPLICATION_FORM_URLENCODED);
+//      clientRequest.setHttpMethod(getHttpMethod());
+
+        // Call REST Service and handle response
+        try {
+            if (getRequest().getAuthorizationMethod() == null
+                    || getRequest().getAuthorizationMethod() == AuthorizationMethod.AUTHORIZATION_REQUEST_HEADER_FIELD
+                    || getRequest().getAuthorizationMethod() == AuthorizationMethod.FORM_ENCODED_BODY_PARAMETER) {
+                clientResponse = clientRequest.buildPost(Entity.form(requestForm)).invoke();
+            } else {  //AuthorizationMethod.URL_QUERY_PARAMETER
+                clientResponse = clientRequest.buildGet().invoke();
+            }
+
+            int status = clientResponse.getStatus();
+
+            setResponse(new ClientInfoResponse(status));
+
+            String entity = clientResponse.readEntity(String.class);
+            getResponse().setEntity(entity);
+            getResponse().setHeaders(clientResponse.getMetadata());
+            if (StringUtils.isNotBlank(entity)) {
+                try {
+                    JSONObject jsonObj = new JSONObject(entity);
+
+                    if (jsonObj.has("error")) {
+                        getResponse().setErrorType(UserInfoErrorResponseType.fromString(jsonObj.getString("error")));
+                        jsonObj.remove("error");
+                    }
+                    if (jsonObj.has("error_description")) {
+                        getResponse().setErrorDescription(jsonObj.getString("error_description"));
+                        jsonObj.remove("error_description");
+                    }
+                    if (jsonObj.has("error_uri")) {
+                        getResponse().setErrorUri(jsonObj.getString("error_uri"));
+                        jsonObj.remove("error_uri");
+                    }
+
+                    for (Iterator<String> iterator = jsonObj.keys(); iterator.hasNext(); ) {
+                        String key = iterator.next();
+                        List<String> values = new ArrayList<String>();
+
+                        JSONArray jsonArray = jsonObj.optJSONArray(key);
+                        if (jsonArray != null) {
+                            for (int i = 0; i < jsonArray.length(); i++) {
+                                String value = jsonArray.optString(i);
+                                if (value != null) {
+                                    values.add(value);
+                                }
+                            }
+                        } else {
+                            String value = jsonObj.optString(key);
+                            if (value != null) {
+                                values.add(value);
+                            }
+                        }
+
+                        getResponse().getClaims().put(key, values);
+                    }
+                } catch (JSONException e) {
+                    e.printStackTrace();
+                }
+            }
+        } catch (Exception e) {
+            LOG.error(e.getMessage(), e);
+        } finally {
+            closeConnection();
+        }
+
+        return getResponse();
+    }
+}
\ No newline at end of file
diff --git a/oxAuth/Client/src/main/java/org/gluu/oxauth/client/ClientInfoRequest.java b/oxAuth/Client/src/main/java/org/gluu/oxauth/client/ClientInfoRequest.java
new file mode 100644
index 00000000..58c35cbf
--- /dev/null
+++ b/oxAuth/Client/src/main/java/org/gluu/oxauth/client/ClientInfoRequest.java
@@ -0,0 +1,89 @@
+/*
+ * oxAuth is available under the MIT License (2008). See http://opensource.org/licenses/MIT for full text.
+ *
+ * Copyright (c) 2014, Gluu
+ */
+
+package org.gluu.oxauth.client;
+
+import java.util.HashMap;
+import java.util.Map;
+
+import org.gluu.oxauth.model.common.AuthorizationMethod;
+
+/**
+ * Represents a Client Info request to send to the authorization server.
+ *
+ * @author Javier Rojas Blum Date: 07.19.2012
+ */
+public class ClientInfoRequest extends BaseRequest {
+
+    private String accessToken;
+
+    /**
+     * Constructs a Client Info Request.
+     *
+     * @param accessToken The access token obtained from the oxAuth authorization request.
+     */
+    public ClientInfoRequest(String accessToken) {
+        this.accessToken = accessToken;
+        setAuthorizationMethod(AuthorizationMethod.AUTHORIZATION_REQUEST_HEADER_FIELD);
+    }
+
+    /**
+     * Returns the access token obtained from oxAuth authorization request.
+     *
+     * @return The access token obtained from oxAuth authorization request.
+     */
+    public String getAccessToken() {
+        return accessToken;
+    }
+
+    /**
+     * Sets the access token obtained from oxAuth authorization request.
+     *
+     * @param accessToken The access token obtained from oxAuth authorization request.
+     */
+    public void setAccessToken(String accessToken) {
+        this.accessToken = accessToken;
+    }
+
+    /**
+     * Returns a query string with the parameters of the Client Info request.
+     * Any <code>null</code> or empty parameter will be omitted.
+     *
+     * @return A query string of parameters.
+     */
+    @Override
+    public String getQueryString() {
+        StringBuilder queryStringBuilder = new StringBuilder();
+
+        if (accessToken != null && !accessToken.isEmpty()) {
+            if (getAuthorizationMethod() == AuthorizationMethod.FORM_ENCODED_BODY_PARAMETER
+                    || getAuthorizationMethod() == AuthorizationMethod.URL_QUERY_PARAMETER) {
+                queryStringBuilder.append("access_token=").append(accessToken);
+            }
+        }
+
+        return queryStringBuilder.toString();
+    }
+
+    /**
+     * Returns a collection of parameters of the client info request. Any
+     * <code>null</code> or empty parameter will be omitted.
+     *
+     * @return A collection of parameters.
+     */
+    public Map<String, String> getParameters() {
+        Map<String, String> parameters = new HashMap<String, String>();
+
+        if (accessToken != null && !accessToken.isEmpty()) {
+            if (getAuthorizationMethod() == AuthorizationMethod.FORM_ENCODED_BODY_PARAMETER
+                    || getAuthorizationMethod() == AuthorizationMethod.URL_QUERY_PARAMETER) {
+                parameters.put("access_token", accessToken);
+            }
+        }
+
+        return parameters;
+    }
+}
\ No newline at end of file
diff --git a/oxAuth/Client/src/main/java/org/gluu/oxauth/client/ClientInfoResponse.java b/oxAuth/Client/src/main/java/org/gluu/oxauth/client/ClientInfoResponse.java
new file mode 100644
index 00000000..d170e382
--- /dev/null
+++ b/oxAuth/Client/src/main/java/org/gluu/oxauth/client/ClientInfoResponse.java
@@ -0,0 +1,116 @@
+/*
+ * oxAuth is available under the MIT License (2008). See http://opensource.org/licenses/MIT for full text.
+ *
+ * Copyright (c) 2014, Gluu
+ */
+
+package org.gluu.oxauth.client;
+
+import java.util.HashMap;
+import java.util.List;
+import java.util.Map;
+
+import org.gluu.oxauth.model.userinfo.UserInfoErrorResponseType;
+
+/**
+ * Represents an client info response received from the authorization server.
+ *
+ * @author Javier Rojas Blum Date: 07.19.2012
+ */
+public class ClientInfoResponse extends BaseResponse {
+
+    private Map<String, List<String>> claims;
+
+    private UserInfoErrorResponseType errorType;
+    private String errorDescription;
+    private String errorUri;
+
+    /**
+     * Constructs a Client Info response.
+     *
+     * @param status The response status code.
+     */
+    public ClientInfoResponse(int status) {
+        super(status);
+        claims = new HashMap<String, List<String>>();
+    }
+
+    public Map<String, List<String>> getClaims() {
+        return claims;
+    }
+
+    public void setClaims(Map<String, List<String>> claims) {
+        this.claims = claims;
+    }
+
+    /**
+     * Returns the error code when the request fails, otherwise will return <code>null</code>.
+     *
+     * @return The error code when the request fails.
+     */
+    public UserInfoErrorResponseType getErrorType() {
+        return errorType;
+    }
+
+    /**
+     * Sets the error code when the request fails, otherwise will return
+     * <code>null</code>.
+     *
+     * @param errorType The error code when the request fails.
+     */
+    public void setErrorType(UserInfoErrorResponseType errorType) {
+        this.errorType = errorType;
+    }
+
+    /**
+     * Returns a human-readable UTF-8 encoded text providing additional
+     * information, used to assist the client developer in understanding the
+     * error that occurred.
+     *
+     * @return The error description.
+     */
+    public String getErrorDescription() {
+        return errorDescription;
+    }
+
+    /**
+     * Sets a human-readable UTF-8 encoded text providing additional
+     * information, used to assist the client developer in understanding the
+     * error that occurred.
+     *
+     * @param errorDescription The error description.
+     */
+    public void setErrorDescription(String errorDescription) {
+        this.errorDescription = errorDescription;
+    }
+
+    /**
+     * Returns a URI identifying a human-readable web page with information
+     * about the error, used to provide the client developer with additional
+     * information about the error.
+     *
+     * @return A URI with information about the error.
+     */
+    public String getErrorUri() {
+        return errorUri;
+    }
+
+    /**
+     * Sets a URI identifying a human-readable web page with information about
+     * the error, used to provide the client developer with additional
+     * information about the error.
+     *
+     * @param errorUri A URI with information about the error.
+     */
+    public void setErrorUri(String errorUri) {
+        this.errorUri = errorUri;
+    }
+
+    public List<String> getClaim(String claimName) {
+        if (claims.containsKey(claimName)) {
+            return claims.get(claimName);
+        }
+
+        return null;
+    }
+}
\ No newline at end of file
diff --git a/oxAuth/Client/src/main/java/org/gluu/oxauth/client/ClientUtils.java b/oxAuth/Client/src/main/java/org/gluu/oxauth/client/ClientUtils.java
new file mode 100644
index 00000000..1cecc5fc
--- /dev/null
+++ b/oxAuth/Client/src/main/java/org/gluu/oxauth/client/ClientUtils.java
@@ -0,0 +1,57 @@
+/*
+ * oxAuth is available under the MIT License (2008). See http://opensource.org/licenses/MIT for full text.
+ *
+ * Copyright (c) 2014, Gluu
+ */
+
+package org.gluu.oxauth.client;
+
+import org.apache.http.client.CookieStore;
+
+/**
+ * @author Yuriy Zabrovarnyy
+ * @author Javier Rojas Blum
+ * @version December 26, 2016
+ */
+
+public class ClientUtils {
+    private ClientUtils() {
+    }
+
+    public static void showHeader(String header) {
+        System.out.println("-------------------------------------------------------");
+        System.out.println(header);
+        System.out.println("-------------------------------------------------------");
+    }
+
+    public static void showClient(BaseClient client) {
+        showHeader("REQUEST:");
+        System.out.println(client.getRequestAsString());
+        System.out.println();
+
+        showHeader("RESPONSE:");
+        System.out.println(client.getResponseAsString());
+        System.out.println();
+    }
+
+    public static void showClientUserAgent(BaseClient client) {
+        showHeader("REQUEST:");
+        System.out.println(client.getUrl() + "?" + client.getRequest().getQueryString());
+        System.out.println();
+
+        if (client.getResponse() != null) {
+            showHeader("RESPONSE:");
+            System.out.println("HTTP/1.1 302 Found");
+            System.out.println("Location: " + client.getResponse().getLocation());
+            System.out.println();
+        }
+    }
+
+    public static void showClient(BaseClient client, CookieStore cookieStore) {
+        showClient(client);
+
+        showHeader("COOKIES:");
+        System.out.println(cookieStore.getCookies());
+        System.out.println();
+    }
+}
diff --git a/oxAuth/Client/src/main/java/org/gluu/oxauth/client/DeviceAuthzClient.java b/oxAuth/Client/src/main/java/org/gluu/oxauth/client/DeviceAuthzClient.java
new file mode 100644
index 00000000..42d50ab4
--- /dev/null
+++ b/oxAuth/Client/src/main/java/org/gluu/oxauth/client/DeviceAuthzClient.java
@@ -0,0 +1,116 @@
+/*
+ * oxAuth is available under the MIT License (2008). See http://opensource.org/licenses/MIT for full text.
+ *
+ * Copyright (c) 2014, Gluu
+ */
+
+package org.gluu.oxauth.client;
+
+import static org.gluu.oxauth.model.authorize.DeviceAuthorizationRequestParam.CLIENT_ID;
+import static org.gluu.oxauth.model.authorize.DeviceAuthorizationRequestParam.SCOPE;
+import static org.gluu.oxauth.model.authorize.DeviceAuthorizationResponseParam.DEVICE_CODE;
+import static org.gluu.oxauth.model.authorize.DeviceAuthorizationResponseParam.EXPIRES_IN;
+import static org.gluu.oxauth.model.authorize.DeviceAuthorizationResponseParam.INTERVAL;
+import static org.gluu.oxauth.model.authorize.DeviceAuthorizationResponseParam.USER_CODE;
+import static org.gluu.oxauth.model.authorize.DeviceAuthorizationResponseParam.VERIFICATION_URI;
+import static org.gluu.oxauth.model.authorize.DeviceAuthorizationResponseParam.VERIFICATION_URI_COMPLETE;
+
+import javax.ws.rs.HttpMethod;
+import javax.ws.rs.client.Entity;
+import javax.ws.rs.client.Invocation.Builder;
+
+import org.apache.commons.lang.StringUtils;
+import org.apache.log4j.Logger;
+import org.gluu.oxauth.model.util.Util;
+import org.jboss.resteasy.client.jaxrs.ClientHttpEngine;
+import org.jboss.resteasy.client.jaxrs.ResteasyClientBuilder;
+import org.json.JSONObject;
+
+/**
+ * Encapsulates functionality to make Device Authz request calls to an authorization server via REST Services.
+ */
+public class DeviceAuthzClient extends BaseClient<DeviceAuthzRequest, DeviceAuthzResponse> {
+
+    private static final Logger LOG = Logger.getLogger(DeviceAuthzClient.class);
+
+    /**
+     * Construct a device authz client by providing an URL where the REST service is located.
+     *
+     * @param url The REST service location.
+     */
+    public DeviceAuthzClient(String url) {
+        super(url);
+    }
+
+    @Override
+    public String getHttpMethod() {
+        return HttpMethod.POST;
+    }
+
+    public DeviceAuthzResponse exec() {
+        initClientRequest();
+        return _exec();
+    }
+
+    @Deprecated
+    public DeviceAuthzResponse exec(ClientHttpEngine engine) {
+    	resteasyClient = ((ResteasyClientBuilder) ResteasyClientBuilder.newBuilder()).httpEngine(engine).build();
+    	webTarget = resteasyClient.target(getUrl());
+
+        return _exec();
+    }
+
+    private DeviceAuthzResponse _exec() {
+        try {
+    //        clientRequest.setHttpMethod(getHttpMethod());
+            Builder clientRequest = webTarget.request();
+            applyCookies(clientRequest);
+
+            clientRequest.header("Content-Type", request.getContentType());
+            new ClientAuthnEnabler(clientRequest, requestForm).exec(getRequest());
+
+            final String scopesAsString = Util.listAsString(getRequest().getScopes());
+
+            if (StringUtils.isNotBlank(scopesAsString)) {
+                requestForm.param(SCOPE, scopesAsString);
+            }
+            if (StringUtils.isNotBlank(getRequest().getClientId())) {
+                requestForm.param(CLIENT_ID, getRequest().getClientId());
+            }
+
+            // Call REST Service and handle response
+            clientResponse = clientRequest.buildPost(Entity.form(requestForm)).invoke();
+
+            setResponse(new DeviceAuthzResponse(clientResponse));
+            if (StringUtils.isNotBlank(response.getEntity())) {
+                JSONObject jsonObj = new JSONObject(response.getEntity());
+
+                if (jsonObj.has(USER_CODE)) {
+                    getResponse().setUserCode(jsonObj.getString(USER_CODE));
+                }
+                if (jsonObj.has(DEVICE_CODE)) {
+                    getResponse().setDeviceCode(jsonObj.getString(DEVICE_CODE));
+                }
+                if (jsonObj.has(INTERVAL)) {
+                    getResponse().setInterval(jsonObj.getInt(INTERVAL));
+                }
+                if (jsonObj.has(VERIFICATION_URI)) {
+                    getResponse().setVerificationUri(jsonObj.getString(VERIFICATION_URI));
+                }
+                if (jsonObj.has(VERIFICATION_URI_COMPLETE)) {
+                    getResponse().setVerificationUriComplete(jsonObj.getString(VERIFICATION_URI_COMPLETE));
+                }
+                if (jsonObj.has(EXPIRES_IN)) {
+                    getResponse().setExpiresIn(jsonObj.getInt(EXPIRES_IN));
+                }
+            }
+
+            return getResponse();
+        } catch (Exception e) {
+            LOG.error(e.getMessage(), e);
+            return null;
+        } finally {
+            closeConnection();
+        }
+    }
+}
\ No newline at end of file
diff --git a/oxAuth/Client/src/main/java/org/gluu/oxauth/client/DeviceAuthzRequest.java b/oxAuth/Client/src/main/java/org/gluu/oxauth/client/DeviceAuthzRequest.java
new file mode 100644
index 00000000..b85839ab
--- /dev/null
+++ b/oxAuth/Client/src/main/java/org/gluu/oxauth/client/DeviceAuthzRequest.java
@@ -0,0 +1,116 @@
+/*
+ * oxAuth is available under the MIT License (2008). See http://opensource.org/licenses/MIT for full text.
+ *
+ * Copyright (c) 2014, Gluu
+ */
+
+package org.gluu.oxauth.client;
+
+import java.io.UnsupportedEncodingException;
+import java.net.URLEncoder;
+import java.util.HashMap;
+import java.util.List;
+import java.util.Map;
+
+import javax.ws.rs.core.MediaType;
+
+import org.apache.commons.lang.StringUtils;
+import org.apache.log4j.Logger;
+import org.gluu.oxauth.model.authorize.AuthorizeRequestParam;
+import org.gluu.oxauth.model.common.AuthenticationMethod;
+import org.gluu.oxauth.model.util.Util;
+import org.json.JSONException;
+
+/**
+ * Represents a device authorization request to send to the authorization server.
+ */
+public class DeviceAuthzRequest extends ClientAuthnRequest {
+
+    private static final Logger LOG = Logger.getLogger(DeviceAuthzRequest.class);
+
+    private String clientId;
+    private List<String> scopes;
+
+    public DeviceAuthzRequest(String clientId, List<String> scopes) {
+        setContentType(MediaType.APPLICATION_FORM_URLENCODED);
+        setAuthenticationMethod(AuthenticationMethod.CLIENT_SECRET_BASIC);
+        this.clientId = clientId;
+        this.scopes = scopes;
+    }
+
+    public String getClientId() {
+        return clientId;
+    }
+
+    public void setClientId(String clientId) {
+        this.clientId = clientId;
+    }
+
+    public List<String> getScopes() {
+        return scopes;
+    }
+
+    public void setScopes(List<String> scopes) {
+        this.scopes = scopes;
+    }
+
+    public String getScopesAsString() {
+        return Util.listAsString(scopes);
+    }
+
+    /**
+     * Returns a collection of parameters of the authorization request. Any
+     * <code>null</code> or empty parameter will be omitted.
+     *
+     * @return A collection of parameters.
+     */
+    public Map<String, String> getParameters() {
+        Map<String, String> parameters = new HashMap<String, String>();
+
+        try {
+            // OAuth 2.0 request parameters
+            final String scopesAsString = getScopesAsString();
+
+            if (StringUtils.isNotBlank(clientId)) {
+                parameters.put(AuthorizeRequestParam.CLIENT_ID, clientId);
+            }
+            if (StringUtils.isNotBlank(scopesAsString)) {
+                parameters.put(AuthorizeRequestParam.SCOPE, scopesAsString);
+            }
+
+            for (String key : getCustomParameters().keySet()) {
+                parameters.put(key, getCustomParameters().get(key));
+            }
+        } catch (JSONException e) {
+            LOG.error(e.getMessage(), e);
+        }
+
+        return parameters;
+    }
+
+    @Override
+    public String getQueryString() {
+        StringBuilder queryStringBuilder = new StringBuilder();
+        try {
+            final String scopesAsString = getScopesAsString();
+
+            if (StringUtils.isNotBlank(clientId)) {
+                queryStringBuilder.append("&").append(AuthorizeRequestParam.CLIENT_ID)
+                        .append("=").append(URLEncoder.encode(clientId, Util.UTF8_STRING_ENCODING));
+            }
+            if (StringUtils.isNotBlank(scopesAsString)) {
+                queryStringBuilder.append("&").append(AuthorizeRequestParam.SCOPE)
+                        .append("=").append(URLEncoder.encode(scopesAsString, Util.UTF8_STRING_ENCODING));
+            }
+
+            for (String key : getCustomParameters().keySet()) {
+                queryStringBuilder.append("&");
+                queryStringBuilder.append(key).append("=").append(getCustomParameters().get(key));
+            }
+        } catch (UnsupportedEncodingException | JSONException e) {
+            LOG.error(e.getMessage(), e);
+        }
+
+        return queryStringBuilder.toString();
+    }
+}
\ No newline at end of file
diff --git a/oxAuth/Client/src/main/java/org/gluu/oxauth/client/DeviceAuthzResponse.java b/oxAuth/Client/src/main/java/org/gluu/oxauth/client/DeviceAuthzResponse.java
new file mode 100644
index 00000000..cce9f0e0
--- /dev/null
+++ b/oxAuth/Client/src/main/java/org/gluu/oxauth/client/DeviceAuthzResponse.java
@@ -0,0 +1,122 @@
+/*
+ * oxAuth is available under the MIT License (2008). See http://opensource.org/licenses/MIT for full text.
+ *
+ * Copyright (c) 2014, Gluu
+ */
+
+package org.gluu.oxauth.client;
+
+import javax.ws.rs.core.Response;
+
+import org.apache.commons.lang.StringUtils;
+import org.apache.log4j.Logger;
+import org.gluu.oxauth.model.authorize.DeviceAuthorizationResponseParam;
+import org.gluu.oxauth.model.authorize.DeviceAuthzErrorResponseType;
+import org.json.JSONException;
+import org.json.JSONObject;
+
+/**
+ * Represents a device authz response received from the authorization server.
+ */
+public class DeviceAuthzResponse extends BaseResponseWithErrors<DeviceAuthzErrorResponseType> {
+
+    private static final Logger LOG = Logger.getLogger(DeviceAuthzResponse.class);
+
+    private String userCode;
+    private String deviceCode;
+    private Integer interval;
+    private String verificationUri;
+    private String verificationUriComplete;
+    private Integer expiresIn;
+
+    public DeviceAuthzResponse(Response clientResponse) {
+        super(clientResponse);
+    }
+
+    @Override
+    public DeviceAuthzErrorResponseType fromString(String p_string) {
+        return DeviceAuthzErrorResponseType.fromString(p_string);
+    }
+
+    public void injectDataFromJson(String json) {
+        if (StringUtils.isNotBlank(json)) {
+            try {
+                JSONObject jsonObj = new JSONObject(json);
+                if (jsonObj.has(DeviceAuthorizationResponseParam.USER_CODE)) {
+                    setUserCode(jsonObj.getString(DeviceAuthorizationResponseParam.USER_CODE));
+                    jsonObj.remove(DeviceAuthorizationResponseParam.USER_CODE);
+                }
+                if (jsonObj.has(DeviceAuthorizationResponseParam.DEVICE_CODE)) {
+                    setDeviceCode(jsonObj.getString(DeviceAuthorizationResponseParam.DEVICE_CODE));
+                    jsonObj.remove(DeviceAuthorizationResponseParam.DEVICE_CODE);
+                }
+                if (jsonObj.has(DeviceAuthorizationResponseParam.INTERVAL)) {
+                    setInterval(jsonObj.getInt(DeviceAuthorizationResponseParam.INTERVAL));
+                    jsonObj.remove(DeviceAuthorizationResponseParam.INTERVAL);
+                }
+                if (jsonObj.has(DeviceAuthorizationResponseParam.VERIFICATION_URI)) {
+                    setVerificationUri(jsonObj.getString(DeviceAuthorizationResponseParam.VERIFICATION_URI));
+                    jsonObj.remove(DeviceAuthorizationResponseParam.VERIFICATION_URI);
+                }
+                if (jsonObj.has(DeviceAuthorizationResponseParam.VERIFICATION_URI_COMPLETE)) {
+                    setVerificationUriComplete(jsonObj.getString(DeviceAuthorizationResponseParam.VERIFICATION_URI_COMPLETE));
+                    jsonObj.remove(DeviceAuthorizationResponseParam.VERIFICATION_URI_COMPLETE);
+                }
+                if (jsonObj.has(DeviceAuthorizationResponseParam.EXPIRES_IN)) {
+                    setExpiresIn(jsonObj.getInt(DeviceAuthorizationResponseParam.EXPIRES_IN));
+                    jsonObj.remove(DeviceAuthorizationResponseParam.EXPIRES_IN);
+                }
+            } catch (JSONException e) {
+                LOG.error(e.getMessage(), e);
+            }
+        }
+    }
+
+    public String getUserCode() {
+        return userCode;
+    }
+
+    public void setUserCode(String userCode) {
+        this.userCode = userCode;
+    }
+
+    public String getDeviceCode() {
+        return deviceCode;
+    }
+
+    public void setDeviceCode(String deviceCode) {
+        this.deviceCode = deviceCode;
+    }
+
+    public Integer getInterval() {
+        return interval;
+    }
+
+    public void setInterval(Integer interval) {
+        this.interval = interval;
+    }
+
+    public String getVerificationUri() {
+        return verificationUri;
+    }
+
+    public void setVerificationUri(String verificationUri) {
+        this.verificationUri = verificationUri;
+    }
+
+    public String getVerificationUriComplete() {
+        return verificationUriComplete;
+    }
+
+    public void setVerificationUriComplete(String verificationUriComplete) {
+        this.verificationUriComplete = verificationUriComplete;
+    }
+
+    public Integer getExpiresIn() {
+        return expiresIn;
+    }
+
+    public void setExpiresIn(Integer expiresIn) {
+        this.expiresIn = expiresIn;
+    }
+}
\ No newline at end of file
diff --git a/oxAuth/Client/src/main/java/org/gluu/oxauth/client/EndSessionClient.java b/oxAuth/Client/src/main/java/org/gluu/oxauth/client/EndSessionClient.java
new file mode 100644
index 00000000..47228547
--- /dev/null
+++ b/oxAuth/Client/src/main/java/org/gluu/oxauth/client/EndSessionClient.java
@@ -0,0 +1,139 @@
+/*
+ * oxAuth is available under the MIT License (2008). See http://opensource.org/licenses/MIT for full text.
+ *
+ * Copyright (c) 2014, Gluu
+ */
+
+package org.gluu.oxauth.client;
+
+import java.util.Map;
+
+import javax.ws.rs.HttpMethod;
+import javax.ws.rs.client.Invocation.Builder;
+import javax.ws.rs.core.MediaType;
+
+import org.apache.commons.lang.StringUtils;
+import org.gluu.oxauth.model.session.EndSessionErrorResponseType;
+import org.gluu.oxauth.model.session.EndSessionRequestParam;
+import org.gluu.oxauth.model.session.EndSessionResponseParam;
+import org.gluu.oxauth.model.util.Util;
+import org.json.JSONException;
+import org.json.JSONObject;
+
+/**
+ * Encapsulates functionality to make end session request calls to an
+ * authorization server via REST Services.
+ *
+ * @author Javier Rojas Blum
+ * @version August 9, 2017
+ */
+public class EndSessionClient extends BaseClient<EndSessionRequest, EndSessionResponse> {
+
+    private static final String mediaType = MediaType.TEXT_PLAIN;
+
+    /**
+     * Constructs an end session client by providing an URL where the REST service is located.
+     *
+     * @param url The REST service location.
+     */
+    public EndSessionClient(String url) {
+        super(url);
+    }
+
+    @Override
+    public String getHttpMethod() {
+        return HttpMethod.GET;
+    }
+
+    /**
+     * Executes the call to the REST Service requesting to end session and processes the response.
+     *
+     * @param idTokenHint           The issued ID Token.
+     * @param postLogoutRedirectUri The URL to which the RP is requesting that the End-User's User-Agent be redirected
+     *                              after a logout has been performed.
+     * @param state                 The state.
+     * @return The service response.
+     */
+    public EndSessionResponse execEndSession(String idTokenHint, String postLogoutRedirectUri, String state) {
+        setRequest(new EndSessionRequest(idTokenHint, postLogoutRedirectUri, state));
+
+        return exec();
+    }
+
+    /**
+     * Executes the call to the REST Service and processes the response.
+     *
+     * @return The service response.
+     */
+    public EndSessionResponse exec() {
+        // Prepare request parameters
+        initClientRequest();
+
+        if (StringUtils.isNotBlank(getRequest().getIdTokenHint())) {
+        	addReqParam(EndSessionRequestParam.ID_TOKEN_HINT, getRequest().getIdTokenHint());
+        }
+        if (StringUtils.isNotBlank(getRequest().getPostLogoutRedirectUri())) {
+        	addReqParam(EndSessionRequestParam.POST_LOGOUT_REDIRECT_URI, getRequest().getPostLogoutRedirectUri());
+        }
+        if (StringUtils.isNotBlank(getRequest().getState())) {
+        	addReqParam(EndSessionRequestParam.STATE, getRequest().getState());
+        }
+        if (StringUtils.isNotBlank(getRequest().getSid())) {
+        	addReqParam(EndSessionRequestParam.SID, getRequest().getSid());
+        }
+
+        // Call REST Service and handle response
+        try {
+            Builder clientRequest = webTarget.request();
+            applyCookies(clientRequest);
+
+            clientRequest.accept(mediaType);
+//          clientRequest.setHttpMethod(getHttpMethod());
+
+            clientResponse = clientRequest.buildGet().invoke();
+            int status = clientResponse.getStatus();
+
+            setResponse(new EndSessionResponse(status));
+            String entity = clientResponse.readEntity(String.class);
+            getResponse().setEntity(entity);
+            getResponse().setHeaders(clientResponse.getMetadata());
+            if (clientResponse.getLocation() != null) {
+                String location = clientResponse.getLocation().toString();
+                getResponse().setLocation(location);
+
+                int queryStringIndex = location.indexOf("?");
+                if (queryStringIndex != -1) {
+                    String queryString = location
+                            .substring(queryStringIndex + 1);
+                    Map<String, String> params = QueryStringDecoder.decode(queryString);
+                    if (params.containsKey(EndSessionResponseParam.STATE)) {
+                        getResponse().setState(params.get(EndSessionResponseParam.STATE));
+                    }
+                }
+            }
+
+            if (!Util.isNullOrEmpty(entity) && !entity.contains("<html>")) {
+                try {
+                    JSONObject jsonObj = new JSONObject(entity);
+                    if (jsonObj.has("error")) {
+                        getResponse().setErrorType(EndSessionErrorResponseType.fromString(jsonObj.getString("error")));
+                    }
+                    if (jsonObj.has("error_description")) {
+                        getResponse().setErrorDescription(jsonObj.getString("error_description"));
+                    }
+                    if (jsonObj.has("error_uri")) {
+                        getResponse().setErrorUri(jsonObj.getString("error_uri"));
+                    }
+                } catch (JSONException e) {
+                    e.printStackTrace();
+                }
+            }
+        } catch (Exception e) {
+            e.printStackTrace();
+        } finally {
+            closeConnection();
+        }
+
+        return getResponse();
+    }
+}
\ No newline at end of file
diff --git a/oxAuth/Client/src/main/java/org/gluu/oxauth/client/EndSessionRequest.java b/oxAuth/Client/src/main/java/org/gluu/oxauth/client/EndSessionRequest.java
new file mode 100644
index 00000000..6eed5d3d
--- /dev/null
+++ b/oxAuth/Client/src/main/java/org/gluu/oxauth/client/EndSessionRequest.java
@@ -0,0 +1,149 @@
+/*
+ * oxAuth is available under the MIT License (2008). See http://opensource.org/licenses/MIT for full text.
+ *
+ * Copyright (c) 2014, Gluu
+ */
+
+package org.gluu.oxauth.client;
+
+import java.io.UnsupportedEncodingException;
+import java.net.URLEncoder;
+
+import org.apache.commons.lang.StringUtils;
+import org.gluu.oxauth.model.session.EndSessionRequestParam;
+import org.gluu.oxauth.model.util.Util;
+
+/**
+ * Represents an end session request to send to the authorization server.
+ *
+ * @author Javier Rojas Blum
+ * @version August 9, 2017
+ */
+public class EndSessionRequest extends BaseRequest {
+
+    private String idTokenHint;
+    private String postLogoutRedirectUri;
+    private String sid;
+    private String state;
+
+    /**
+     * Constructs an end session request.
+     */
+    public EndSessionRequest(String idTokenHint, String postLogoutRedirectUri, String state) {
+        this.idTokenHint = idTokenHint;
+        this.postLogoutRedirectUri = postLogoutRedirectUri;
+        this.state = state;
+    }
+
+    /**
+     * Returns the issued ID Token.
+     *
+     * @return The issued ID Token.
+     */
+    public String getIdTokenHint() {
+        return idTokenHint;
+    }
+
+    /**
+     * Sets the issued ID Token.
+     *
+     * @param idTokenHint The issued ID Token.
+     */
+    public void setAccessToken(String idTokenHint) {
+        this.idTokenHint = idTokenHint;
+    }
+
+    /**
+     * Returns the URL to which the RP is requesting that the End-User's User-Agent be redirected after a logout
+     * has been performed.
+     *
+     * @return The post logout redirection URI.
+     */
+    public String getPostLogoutRedirectUri() {
+        return postLogoutRedirectUri;
+    }
+
+    /**
+     * Sets the URL to which the RP is requesting that the End-User's User-Agent be redirected after a logout
+     * has been performed.
+     *
+     * @param postLogoutRedirectUri The post logout redirection URI.
+     */
+    public void setPostLogoutRedirectUri(String postLogoutRedirectUri) {
+        this.postLogoutRedirectUri = postLogoutRedirectUri;
+    }
+
+    public String getSid() {
+        return sid;
+    }
+
+    public void setSid(String sid) {
+        this.sid = sid;
+    }
+
+    /**
+     * Returns the state. The state is an opaque value used by the RP to maintain state between the logout request and
+     * the callback to the endpoint specified by the post_logout_redirect_uri parameter. If included in the logout
+     * request, the OP passes this value back to the RP using the state query parameter when redirecting the User Agent
+     * back to the RP.
+     *
+     * @return The state.
+     */
+    public String getState() {
+        return state;
+    }
+
+    /**
+     * Sets the state. The state is an opaque value used by the RP to maintain state between the logout request and the
+     * callback to the endpoint specified by the post_logout_redirect_uri parameter. If included in the logout request,
+     * the OP passes this value back to the RP using the state query parameter when redirecting the User Agent back to
+     * the RP.
+     *
+     * @param state he state.
+     */
+    public void setState(String state) {
+        this.state = state;
+    }
+
+    /**
+     * Returns a query string with the parameters of the end session request.
+     * Any <code>null</code> or empty parameter will be omitted.
+     *
+     * @return A query string of parameters.
+     */
+    @Override
+    public String getQueryString() {
+        StringBuilder queryStringBuilder = new StringBuilder();
+
+        try {
+            if (StringUtils.isNotBlank(idTokenHint)) {
+                queryStringBuilder.append(EndSessionRequestParam.ID_TOKEN_HINT)
+                        .append("=")
+                        .append(idTokenHint);
+            }
+            if (StringUtils.isNotBlank(postLogoutRedirectUri)) {
+                queryStringBuilder.append("&")
+                        .append(EndSessionRequestParam.POST_LOGOUT_REDIRECT_URI)
+                        .append("=")
+                        .append(URLEncoder.encode(postLogoutRedirectUri, Util.UTF8_STRING_ENCODING));
+            }
+            if (StringUtils.isNotBlank(state)) {
+                queryStringBuilder.append("&")
+                        .append(EndSessionRequestParam.STATE)
+                        .append("=")
+                        .append(URLEncoder.encode(state, Util.UTF8_STRING_ENCODING));
+            }
+
+            if (StringUtils.isNotBlank(sid)) {
+                queryStringBuilder.append("&")
+                        .append(EndSessionRequestParam.SID)
+                        .append("=")
+                        .append(URLEncoder.encode(sid, Util.UTF8_STRING_ENCODING));
+            }
+        } catch (UnsupportedEncodingException e) {
+            e.printStackTrace();
+        }
+
+        return queryStringBuilder.toString();
+    }
+}
\ No newline at end of file
diff --git a/oxAuth/Client/src/main/java/org/gluu/oxauth/client/EndSessionResponse.java b/oxAuth/Client/src/main/java/org/gluu/oxauth/client/EndSessionResponse.java
new file mode 100644
index 00000000..1a2dad37
--- /dev/null
+++ b/oxAuth/Client/src/main/java/org/gluu/oxauth/client/EndSessionResponse.java
@@ -0,0 +1,147 @@
+/*
+ * oxAuth is available under the MIT License (2008). See http://opensource.org/licenses/MIT for full text.
+ *
+ * Copyright (c) 2014, Gluu
+ */
+
+package org.gluu.oxauth.client;
+
+import org.gluu.oxauth.model.session.EndSessionErrorResponseType;
+
+/**
+ * Represents an end session response received from the authorization server.
+ *
+ * @author Javier Rojas Blum
+ * @version December 20, 2015
+ */
+public class EndSessionResponse extends BaseResponse {
+
+    private String location;
+    private String state;
+
+    private EndSessionErrorResponseType errorType;
+    private String errorDescription;
+    private String errorUri;
+
+    /**
+     * Constructs an end session response.
+     *
+     * @param status The response status code.
+     */
+    public EndSessionResponse(int status) {
+        super(status);
+    }
+
+    /**
+     * Returns the location of the response in the header.
+     *
+     * @return The location of the response.
+     */
+    public String getLocation() {
+        return location;
+    }
+
+    /**
+     * Sets the location of the response in the header.
+     *
+     * @param location The location of the response.
+     */
+    public void setLocation(String location) {
+        this.location = location;
+    }
+
+    /**
+     * Html page of http based logout
+     *
+     * @return html
+     */
+    public String getHtmlPage() {
+        return entity;
+    }
+
+    /**
+     * Returns the state. The state is an opaque value used by the RP to maintain state between the logout request and
+     * the callback to the endpoint specified by the post_logout_redirect_uri parameter. If included in the logout
+     * request, the OP passes this value back to the RP using the state query parameter when redirecting the User Agent
+     * back to the RP.
+     *
+     * @return The state.
+     */
+    public String getState() {
+        return state;
+    }
+
+    /**
+     * Sets the state. The state is an opaque value used by the RP to maintain state between the logout request and the
+     * callback to the endpoint specified by the post_logout_redirect_uri parameter. If included in the logout request,
+     * the OP passes this value back to the RP using the state query parameter when redirecting the User Agent back to
+     * the RP.
+     *
+     * @param state he state.
+     */
+    public void setState(String state) {
+        this.state = state;
+    }
+
+    /**
+     * Returns the error code when the request fails, otherwise will return <code>null</code>.
+     *
+     * @return The error code when the request fails.
+     */
+    public EndSessionErrorResponseType getErrorType() {
+        return errorType;
+    }
+
+    /**
+     * Sets the error code when the request fails, otherwise will return <code>null</code>.
+     *
+     * @param errorType The error code when the request fails.
+     */
+    public void setErrorType(EndSessionErrorResponseType errorType) {
+        this.errorType = errorType;
+    }
+
+    /**
+     * Returns a human-readable UTF-8 encoded text providing additional
+     * information, used to assist the client developer in understanding the
+     * error that occurred.
+     *
+     * @return The error description.
+     */
+    public String getErrorDescription() {
+        return errorDescription;
+    }
+
+    /**
+     * Sets a human-readable UTF-8 encoded text providing additional
+     * information, used to assist the client developer in understanding the
+     * error that occurred.
+     *
+     * @param errorDescription The error description.
+     */
+    public void setErrorDescription(String errorDescription) {
+        this.errorDescription = errorDescription;
+    }
+
+    /**
+     * Returns a URI identifying a human-readable web page with information
+     * about the error, used to provide the client developer with additional
+     * information about the error.
+     *
+     * @return A URI with information about the error.
+     */
+    public String getErrorUri() {
+        return errorUri;
+    }
+
+    /**
+     * Sets a URI identifying a human-readable web page with information about
+     * the error, used to provide the client developer with additional
+     * information about the error.
+     *
+     * @param errorUri A URI with information about the error.
+     */
+    public void setErrorUri(String errorUri) {
+        this.errorUri = errorUri;
+    }
+}
\ No newline at end of file
diff --git a/oxAuth/Client/src/main/java/org/gluu/oxauth/client/GluuConfigurationClient.java b/oxAuth/Client/src/main/java/org/gluu/oxauth/client/GluuConfigurationClient.java
new file mode 100644
index 00000000..18f76183
--- /dev/null
+++ b/oxAuth/Client/src/main/java/org/gluu/oxauth/client/GluuConfigurationClient.java
@@ -0,0 +1,128 @@
+package org.gluu.oxauth.client;
+
+import static org.gluu.oxauth.model.configuration.ConfigurationResponseClaim.AUTH_LEVEL_MAPPING;
+import static org.gluu.oxauth.model.configuration.ConfigurationResponseClaim.ID_GENERATION_ENDPOINT;
+import static org.gluu.oxauth.model.configuration.ConfigurationResponseClaim.INTROSPECTION_ENDPOINT;
+import static org.gluu.oxauth.model.configuration.ConfigurationResponseClaim.SCOPE_TO_CLAIMS_MAPPING;
+
+import java.util.HashMap;
+import java.util.HashSet;
+import java.util.Iterator;
+import java.util.Map;
+import java.util.Set;
+
+import javax.ws.rs.HttpMethod;
+import javax.ws.rs.client.Invocation.Builder;
+import javax.ws.rs.core.MediaType;
+
+import org.apache.commons.lang.StringUtils;
+import org.apache.log4j.Logger;
+import org.json.JSONArray;
+import org.json.JSONObject;
+
+/**
+ * Created by eugeniuparvan on 8/12/16.
+ *
+ * @version December 26, 2016
+ */
+public class GluuConfigurationClient extends BaseClient<GluuConfigurationRequest, GluuConfigurationResponse> {
+
+    private static final Logger LOG = Logger.getLogger(GluuConfigurationClient.class);
+
+    public GluuConfigurationClient(String url) {
+        super(url);
+    }
+
+    @Override
+    public String getHttpMethod() {
+        return HttpMethod.GET;
+    }
+
+    public GluuConfigurationResponse execGluuConfiguration() {
+        initClientRequest();
+
+        setRequest(new GluuConfigurationRequest());
+
+        Builder clientRequest = webTarget.request();
+        applyCookies(clientRequest);
+
+        // Prepare request parameters
+        clientRequest.header("Content-Type", MediaType.APPLICATION_JSON);
+//        clientRequest.setHttpMethod(getHttpMethod());
+
+        // Call REST Service and handle response
+        try {
+            clientResponse = clientRequest.buildGet().invoke();
+
+            setResponse(new GluuConfigurationResponse());
+
+            String entity = clientResponse.readEntity(String.class);
+            getResponse().setEntity(entity);
+            getResponse().setHeaders(clientResponse.getMetadata());
+            getResponse().setStatus(clientResponse.getStatus());
+
+            if (StringUtils.isNotBlank(entity)) {
+                JSONObject jsonObj = new JSONObject(entity);
+
+                if (jsonObj.has(ID_GENERATION_ENDPOINT)) {
+                    getResponse().setIdGenerationEndpoint(jsonObj.getString(ID_GENERATION_ENDPOINT));
+                }
+                if (jsonObj.has(INTROSPECTION_ENDPOINT)) {
+                    getResponse().setIntrospectionEndpoint(jsonObj.getString(INTROSPECTION_ENDPOINT));
+                }
+                if (jsonObj.has(AUTH_LEVEL_MAPPING)) {
+                    getResponse().setAuthLevelMapping(mapJsonToAuthLevelMapping(jsonObj.getJSONObject(AUTH_LEVEL_MAPPING)));
+                }
+                if (jsonObj.has(SCOPE_TO_CLAIMS_MAPPING)) {
+                    getResponse().setScopeToClaimsMapping(mapJsonToScopeToClaimsMapping(jsonObj.getJSONObject(SCOPE_TO_CLAIMS_MAPPING)));
+                }
+            }
+        } catch (Exception e) {
+            LOG.error(e.getMessage(), e);
+        } finally {
+            closeConnection();
+        }
+
+        return getResponse();
+    }
+
+    private Map<Integer, Set<String>> mapJsonToAuthLevelMapping(JSONObject jsonObject) {
+        Map<Integer, Set<String>> authLevelMapping = new HashMap<Integer, Set<String>>();
+
+        Iterator<?> keys = jsonObject.keys();
+        while (keys.hasNext()) {
+            try {
+                String key = (String) keys.next();
+                Integer level = new Integer(key);
+
+                authLevelMapping.put(level, new HashSet<String>());
+
+                JSONArray jsonArray = jsonObject.getJSONArray(key);
+                for (int i = 0; i < jsonArray.length(); i++)
+                    authLevelMapping.get(level).add(jsonArray.getString(i));
+            } catch (Exception e) {
+                LOG.error(e.getMessage(), e);
+            }
+        }
+        return authLevelMapping;
+    }
+
+    private Map<String, Set<String>> mapJsonToScopeToClaimsMapping(JSONObject jsonObject) {
+        Map<String, Set<String>> scopeToClaimsMapping = new HashMap<String, Set<String>>();
+        Iterator<?> keys = jsonObject.keys();
+        while (keys.hasNext()) {
+            try {
+                String scope = (String) keys.next();
+
+                scopeToClaimsMapping.put(scope, new HashSet<String>());
+
+                JSONArray jsonArray = jsonObject.getJSONArray(scope);
+                for (int i = 0; i < jsonArray.length(); i++)
+                    scopeToClaimsMapping.get(scope).add(jsonArray.getString(i));
+            } catch (Exception e) {
+                LOG.error(e.getMessage(), e);
+            }
+        }
+        return scopeToClaimsMapping;
+    }
+}
\ No newline at end of file
diff --git a/oxAuth/Client/src/main/java/org/gluu/oxauth/client/GluuConfigurationRequest.java b/oxAuth/Client/src/main/java/org/gluu/oxauth/client/GluuConfigurationRequest.java
new file mode 100644
index 00000000..efdb852e
--- /dev/null
+++ b/oxAuth/Client/src/main/java/org/gluu/oxauth/client/GluuConfigurationRequest.java
@@ -0,0 +1,12 @@
+package org.gluu.oxauth.client;
+
+/**
+ * Created by eugeniuparvan on 8/12/16.
+ */
+public class GluuConfigurationRequest extends BaseRequest {
+
+    @Override
+    public String getQueryString() {
+        return null;
+    }
+}
diff --git a/oxAuth/Client/src/main/java/org/gluu/oxauth/client/GluuConfigurationResponse.java b/oxAuth/Client/src/main/java/org/gluu/oxauth/client/GluuConfigurationResponse.java
new file mode 100644
index 00000000..7b5e41eb
--- /dev/null
+++ b/oxAuth/Client/src/main/java/org/gluu/oxauth/client/GluuConfigurationResponse.java
@@ -0,0 +1,61 @@
+package org.gluu.oxauth.client;
+
+import java.util.Map;
+import java.util.Set;
+
+/**
+ * Created by eugeniuparvan on 8/12/16.
+ */
+public class GluuConfigurationResponse extends BaseResponse {
+
+    private String idGenerationEndpoint;
+
+    private String introspectionEndpoint;
+
+    private Map<Integer, Set<String>> authLevelMapping;
+
+    private Map<String, Set<String>> scopeToClaimsMapping;
+
+
+    public String getIdGenerationEndpoint() {
+        return idGenerationEndpoint;
+    }
+
+    public void setIdGenerationEndpoint(String idGenerationEndpoint) {
+        this.idGenerationEndpoint = idGenerationEndpoint;
+    }
+
+    public String getIntrospectionEndpoint() {
+        return introspectionEndpoint;
+    }
+
+    public void setIntrospectionEndpoint(String introspectionEndpoint) {
+        this.introspectionEndpoint = introspectionEndpoint;
+    }
+
+    public Map<Integer, Set<String>> getAuthLevelMapping() {
+        return authLevelMapping;
+    }
+
+    public void setAuthLevelMapping(Map<Integer, Set<String>> authLevelMapping) {
+        this.authLevelMapping = authLevelMapping;
+    }
+
+    public Map<String, Set<String>> getScopeToClaimsMapping() {
+        return scopeToClaimsMapping;
+    }
+
+    public void setScopeToClaimsMapping(Map<String, Set<String>> scopeToClaimsMapping) {
+        this.scopeToClaimsMapping = scopeToClaimsMapping;
+    }
+
+    @Override
+    public String toString() {
+        return "GluuConfigurationResponse{" +
+                "idGenerationEndpoint='" + idGenerationEndpoint + '\'' +
+                ", introspectionEndpoint='" + introspectionEndpoint + '\'' +
+                ", authLevelMapping=" + authLevelMapping +
+                ", scopeToClaimsMapping=" + scopeToClaimsMapping +
+                '}';
+    }
+}
diff --git a/oxAuth/Client/src/main/java/org/gluu/oxauth/client/JwkClient.java b/oxAuth/Client/src/main/java/org/gluu/oxauth/client/JwkClient.java
new file mode 100644
index 00000000..731d058f
--- /dev/null
+++ b/oxAuth/Client/src/main/java/org/gluu/oxauth/client/JwkClient.java
@@ -0,0 +1,140 @@
+/*
+ * oxAuth is available under the MIT License (2008). See http://opensource.org/licenses/MIT for full text.
+ *
+ * Copyright (c) 2014, Gluu
+ */
+
+package org.gluu.oxauth.client;
+
+import static org.gluu.oxauth.model.jwk.JWKParameter.JSON_WEB_KEY_SET;
+
+import javax.ws.rs.HttpMethod;
+import javax.ws.rs.client.Invocation.Builder;
+import javax.ws.rs.core.MediaType;
+
+import org.apache.commons.lang.StringUtils;
+import org.gluu.oxauth.model.crypto.PublicKey;
+import org.gluu.oxauth.model.crypto.signature.ECDSAPublicKey;
+import org.gluu.oxauth.model.crypto.signature.RSAPublicKey;
+import org.gluu.oxauth.model.jwk.JSONWebKeySet;
+import org.jboss.resteasy.client.jaxrs.ClientHttpEngine;
+import org.json.JSONObject;
+
+/**
+ * Encapsulates functionality to make JWK request calls to an authorization
+ * server via REST Services.
+ *
+ * @author Javier Rojas Blum
+ * @version December 26, 2016
+ */
+public class JwkClient extends BaseClient<JwkRequest, JwkResponse> {
+
+    private static final String mediaType = MediaType.APPLICATION_JSON;
+
+    /**
+     * Constructs a JSON Web Key (JWK) client by providing a REST url where the
+     * validate token service is located.
+     *
+     * @param url The REST Service location.
+     */
+    public JwkClient(String url) {
+        super(url);
+    }
+
+    @Override
+    public String getHttpMethod() {
+        return HttpMethod.GET;
+    }
+
+    /**
+     * Executes the call to the REST Service requesting the JWK and processes
+     * the response.
+     *
+     * @return The service response.
+     */
+    public JwkResponse exec() {
+        if (getRequest() == null) {
+            setRequest(new JwkRequest());
+        }
+
+        // Prepare request parameters
+        initClientRequest();
+
+        Builder clientRequest = webTarget.request();
+        applyCookies(clientRequest);
+
+        if (getRequest().hasCredentials()) {
+            String encodedCredentials = getRequest().getEncodedCredentials();
+            clientRequest.header("Authorization", "Basic " + encodedCredentials);
+        }
+        clientRequest.accept(mediaType);
+//        clientRequest.setHttpMethod(getHttpMethod());
+
+        // Call REST Service and handle response
+        try {
+            clientResponse = clientRequest.buildGet().invoke();
+            int status = clientResponse.getStatus();
+
+            setResponse(new JwkResponse(status));
+            getResponse().setHeaders(clientResponse.getMetadata());
+
+            String entity = clientResponse.readEntity(String.class);
+            getResponse().setEntity(entity);
+            if (StringUtils.isNotBlank(entity)) {
+                JSONObject jsonObj = new JSONObject(entity);
+                if (jsonObj.has(JSON_WEB_KEY_SET)) {
+                    JSONWebKeySet jwks = JSONWebKeySet.fromJSONObject(jsonObj);
+                    getResponse().setJwks(jwks);
+                }
+            }
+        } catch (Exception e) {
+            e.printStackTrace();
+        } finally {
+            closeConnection();
+        }
+
+        return getResponse();
+    }
+
+    public static RSAPublicKey getRSAPublicKey(String jwkSetUri, String keyId) {
+        return getRSAPublicKey(jwkSetUri, keyId, null);
+    }
+
+    public static RSAPublicKey getRSAPublicKey(String jwkSetUri, String keyId, ClientHttpEngine engine) {
+        RSAPublicKey publicKey = null;
+
+        JwkClient jwkClient = new JwkClient(jwkSetUri);
+        jwkClient.setExecutor(engine);
+        JwkResponse jwkResponse = jwkClient.exec();
+        if (jwkResponse != null && jwkResponse.getStatus() == 200) {
+            PublicKey pk = jwkResponse.getPublicKey(keyId);
+            if (pk instanceof RSAPublicKey) {
+                publicKey = (RSAPublicKey) pk;
+            }
+        }
+
+        return publicKey;
+    }
+
+    public static ECDSAPublicKey getECDSAPublicKey(String jwkSetUrl, String keyId) {
+        return getECDSAPublicKey(jwkSetUrl, keyId, null);
+    }
+
+    public static ECDSAPublicKey getECDSAPublicKey(String jwkSetUrl, String keyId, ClientHttpEngine engine) {
+        ECDSAPublicKey publicKey = null;
+
+        JwkClient jwkClient = new JwkClient(jwkSetUrl);
+        if (engine != null) {
+            jwkClient.setExecutor(engine);
+        }
+        JwkResponse jwkResponse = jwkClient.exec();
+        if (jwkResponse != null && jwkResponse.getStatus() == 200) {
+            PublicKey pk = jwkResponse.getPublicKey(keyId);
+            if (pk instanceof ECDSAPublicKey) {
+                publicKey = (ECDSAPublicKey) pk;
+            }
+        }
+
+        return publicKey;
+    }
+}
\ No newline at end of file
diff --git a/oxAuth/Client/src/main/java/org/gluu/oxauth/client/JwkRequest.java b/oxAuth/Client/src/main/java/org/gluu/oxauth/client/JwkRequest.java
new file mode 100644
index 00000000..ed42b278
--- /dev/null
+++ b/oxAuth/Client/src/main/java/org/gluu/oxauth/client/JwkRequest.java
@@ -0,0 +1,20 @@
+/*
+ * oxAuth is available under the MIT License (2008). See http://opensource.org/licenses/MIT for full text.
+ *
+ * Copyright (c) 2014, Gluu
+ */
+
+package org.gluu.oxauth.client;
+
+/**
+ * Represents a JSON Web Key (JWK) request to send to the authorization server.
+ *
+ * @author Javier Rojas Blum Date: 11.15.2011
+ */
+public class JwkRequest extends BaseRequest {
+
+    @Override
+    public String getQueryString() {
+        return null;
+    }
+}
diff --git a/oxAuth/Client/src/main/java/org/gluu/oxauth/client/JwkResponse.java b/oxAuth/Client/src/main/java/org/gluu/oxauth/client/JwkResponse.java
new file mode 100644
index 00000000..d9ba8164
--- /dev/null
+++ b/oxAuth/Client/src/main/java/org/gluu/oxauth/client/JwkResponse.java
@@ -0,0 +1,121 @@
+/*
+ * oxAuth is available under the MIT License (2008). See http://opensource.org/licenses/MIT for full text.
+ *
+ * Copyright (c) 2014, Gluu
+ */
+
+package org.gluu.oxauth.client;
+
+import java.util.ArrayList;
+import java.util.Collections;
+import java.util.List;
+
+import org.gluu.oxauth.model.crypto.PublicKey;
+import org.gluu.oxauth.model.crypto.signature.AlgorithmFamily;
+import org.gluu.oxauth.model.crypto.signature.ECDSAPublicKey;
+import org.gluu.oxauth.model.crypto.signature.RSAPublicKey;
+import org.gluu.oxauth.model.crypto.signature.SignatureAlgorithm;
+import org.gluu.oxauth.model.jwk.Algorithm;
+import org.gluu.oxauth.model.jwk.JSONWebKey;
+import org.gluu.oxauth.model.jwk.JSONWebKeySet;
+
+/**
+ * Represents a JSON Web Key (JWK) received from the authorization server.
+ *
+ * @author Javier Rojas Blum
+ * @version February 12, 2019
+ */
+public class JwkResponse extends BaseResponse {
+
+    private JSONWebKeySet jwks;
+
+    /**
+     * Constructs a JWK response.
+     *
+     * @param status The response status code.
+     */
+    public JwkResponse(int status) {
+        super(status);
+    }
+
+    public JSONWebKeySet getJwks() {
+        return jwks;
+    }
+
+    public void setJwks(JSONWebKeySet jwks) {
+        this.jwks = jwks;
+    }
+
+    /**
+     * Search and returns a {@link org.gluu.oxauth.model.jwk.JSONWebKey} given its <code>keyId</code>.
+     *
+     * @param keyId The key id.
+     * @return The JSONWebKey if found, otherwise <code>null</code>.
+     */
+    @Deprecated
+    public JSONWebKey getKeyValue(String keyId) {
+        for (JSONWebKey JSONWebKey : jwks.getKeys()) {
+            if (JSONWebKey.getKid().equals(keyId)) {
+                return JSONWebKey;
+            }
+        }
+
+        return null;
+    }
+
+    @Deprecated
+    public PublicKey getPublicKey(String keyId) {
+        PublicKey publicKey = null;
+        JSONWebKey JSONWebKey = getKeyValue(keyId);
+
+        if (JSONWebKey != null) {
+            switch (JSONWebKey.getKty()) {
+                case RSA:
+                    publicKey = new RSAPublicKey(
+                            JSONWebKey.getN(),
+                            JSONWebKey.getE());
+                    break;
+                case EC:
+                    publicKey = new ECDSAPublicKey(
+                            SignatureAlgorithm.fromString(JSONWebKey.getAlg().getParamName()),
+                            JSONWebKey.getX(),
+                            JSONWebKey.getY());
+                    break;
+                default:
+                    break;
+            }
+        }
+
+        return publicKey;
+    }
+
+    public List<JSONWebKey> getKeys(Algorithm algorithm) {
+        List<JSONWebKey> jsonWebKeys = new ArrayList<JSONWebKey>();
+
+        if (AlgorithmFamily.RSA.equals(algorithm.getFamily())) {
+            for (JSONWebKey jsonWebKey : jwks.getKeys()) {
+                if (jsonWebKey.getAlg().equals(algorithm)) {
+                    jsonWebKeys.add(jsonWebKey);
+                }
+            }
+        } else if (AlgorithmFamily.EC.equals(algorithm.getFamily())) {
+            for (JSONWebKey jsonWebKey : jwks.getKeys()) {
+                if (jsonWebKey.getAlg().equals(algorithm)) {
+                    jsonWebKeys.add(jsonWebKey);
+                }
+            }
+        }
+
+        Collections.sort(jsonWebKeys);
+        return jsonWebKeys;
+    }
+
+    public String getKeyId(Algorithm algorithm) {
+        List<JSONWebKey> jsonWebKeys = getKeys(algorithm);
+        if (jsonWebKeys.size() > 0) {
+            return jsonWebKeys.get(0).getKid();
+        } else {
+            return null;
+        }
+    }
+}
\ No newline at end of file
diff --git a/oxAuth/Client/src/main/java/org/gluu/oxauth/client/OpenIdConfigurationClient.java b/oxAuth/Client/src/main/java/org/gluu/oxauth/client/OpenIdConfigurationClient.java
new file mode 100644
index 00000000..7851ba91
--- /dev/null
+++ b/oxAuth/Client/src/main/java/org/gluu/oxauth/client/OpenIdConfigurationClient.java
@@ -0,0 +1,303 @@
+/*
+ * oxAuth is available under the MIT License (2008). See http://opensource.org/licenses/MIT for full text.
+ *
+ * Copyright (c) 2014, Gluu
+ */
+
+package org.gluu.oxauth.client;
+
+import static org.gluu.oxauth.model.configuration.ConfigurationResponseClaim.ACR_VALUES_SUPPORTED;
+import static org.gluu.oxauth.model.configuration.ConfigurationResponseClaim.AUTHORIZATION_ENDPOINT;
+import static org.gluu.oxauth.model.configuration.ConfigurationResponseClaim.BACKCHANNEL_AUTHENTICATION_ENDPOINT;
+import static org.gluu.oxauth.model.configuration.ConfigurationResponseClaim.BACKCHANNEL_AUTHENTICATION_REQUEST_SIGNING_ALG_VALUES_SUPPORTED;
+import static org.gluu.oxauth.model.configuration.ConfigurationResponseClaim.BACKCHANNEL_LOGOUT_SESSION_SUPPORTED;
+import static org.gluu.oxauth.model.configuration.ConfigurationResponseClaim.BACKCHANNEL_LOGOUT_SUPPORTED;
+import static org.gluu.oxauth.model.configuration.ConfigurationResponseClaim.BACKCHANNEL_TOKEN_DELIVERY_MODES_SUPPORTED;
+import static org.gluu.oxauth.model.configuration.ConfigurationResponseClaim.BACKCHANNEL_USER_CODE_PAREMETER_SUPPORTED;
+import static org.gluu.oxauth.model.configuration.ConfigurationResponseClaim.CHECK_SESSION_IFRAME;
+import static org.gluu.oxauth.model.configuration.ConfigurationResponseClaim.CLAIMS_LOCALES_SUPPORTED;
+import static org.gluu.oxauth.model.configuration.ConfigurationResponseClaim.CLAIMS_PARAMETER_SUPPORTED;
+import static org.gluu.oxauth.model.configuration.ConfigurationResponseClaim.CLAIMS_SUPPORTED;
+import static org.gluu.oxauth.model.configuration.ConfigurationResponseClaim.CLAIM_TYPES_SUPPORTED;
+import static org.gluu.oxauth.model.configuration.ConfigurationResponseClaim.CLIENT_INFO_ENDPOINT;
+import static org.gluu.oxauth.model.configuration.ConfigurationResponseClaim.DEVICE_AUTHZ_ENDPOINT;
+import static org.gluu.oxauth.model.configuration.ConfigurationResponseClaim.DISPLAY_VALUES_SUPPORTED;
+import static org.gluu.oxauth.model.configuration.ConfigurationResponseClaim.END_SESSION_ENDPOINT;
+import static org.gluu.oxauth.model.configuration.ConfigurationResponseClaim.FRONTCHANNEL_LOGOUT_SESSION_SUPPORTED;
+import static org.gluu.oxauth.model.configuration.ConfigurationResponseClaim.FRONTCHANNEL_LOGOUT_SUPPORTED;
+import static org.gluu.oxauth.model.configuration.ConfigurationResponseClaim.GRANT_TYPES_SUPPORTED;
+import static org.gluu.oxauth.model.configuration.ConfigurationResponseClaim.ID_GENERATION_ENDPOINT;
+import static org.gluu.oxauth.model.configuration.ConfigurationResponseClaim.ID_TOKEN_ENCRYPTION_ALG_VALUES_SUPPORTED;
+import static org.gluu.oxauth.model.configuration.ConfigurationResponseClaim.ID_TOKEN_ENCRYPTION_ENC_VALUES_SUPPORTED;
+import static org.gluu.oxauth.model.configuration.ConfigurationResponseClaim.ID_TOKEN_SIGNING_ALG_VALUES_SUPPORTED;
+import static org.gluu.oxauth.model.configuration.ConfigurationResponseClaim.INTROSPECTION_ENDPOINT;
+import static org.gluu.oxauth.model.configuration.ConfigurationResponseClaim.ISSUER;
+import static org.gluu.oxauth.model.configuration.ConfigurationResponseClaim.JWKS_URI;
+import static org.gluu.oxauth.model.configuration.ConfigurationResponseClaim.OP_POLICY_URI;
+import static org.gluu.oxauth.model.configuration.ConfigurationResponseClaim.OP_TOS_URI;
+import static org.gluu.oxauth.model.configuration.ConfigurationResponseClaim.REGISTRATION_ENDPOINT;
+import static org.gluu.oxauth.model.configuration.ConfigurationResponseClaim.REQUEST_OBJECT_ENCRYPTION_ALG_VALUES_SUPPORTED;
+import static org.gluu.oxauth.model.configuration.ConfigurationResponseClaim.REQUEST_OBJECT_ENCRYPTION_ENC_VALUES_SUPPORTED;
+import static org.gluu.oxauth.model.configuration.ConfigurationResponseClaim.REQUEST_OBJECT_SIGNING_ALG_VALUES_SUPPORTED;
+import static org.gluu.oxauth.model.configuration.ConfigurationResponseClaim.REQUEST_PARAMETER_SUPPORTED;
+import static org.gluu.oxauth.model.configuration.ConfigurationResponseClaim.REQUEST_URI_PARAMETER_SUPPORTED;
+import static org.gluu.oxauth.model.configuration.ConfigurationResponseClaim.REQUIRE_REQUEST_URI_REGISTRATION;
+import static org.gluu.oxauth.model.configuration.ConfigurationResponseClaim.RESPONSE_MODES_SUPPORTED;
+import static org.gluu.oxauth.model.configuration.ConfigurationResponseClaim.RESPONSE_TYPES_SUPPORTED;
+import static org.gluu.oxauth.model.configuration.ConfigurationResponseClaim.REVOCATION_ENDPOINT;
+import static org.gluu.oxauth.model.configuration.ConfigurationResponseClaim.SCOPES_SUPPORTED;
+import static org.gluu.oxauth.model.configuration.ConfigurationResponseClaim.SCOPE_TO_CLAIMS_MAPPING;
+import static org.gluu.oxauth.model.configuration.ConfigurationResponseClaim.SERVICE_DOCUMENTATION;
+import static org.gluu.oxauth.model.configuration.ConfigurationResponseClaim.SESSION_REVOCATION_ENDPOINT;
+import static org.gluu.oxauth.model.configuration.ConfigurationResponseClaim.SUBJECT_TYPES_SUPPORTED;
+import static org.gluu.oxauth.model.configuration.ConfigurationResponseClaim.TLS_CLIENT_CERTIFICATE_BOUND_ACCESS_TOKENS;
+import static org.gluu.oxauth.model.configuration.ConfigurationResponseClaim.TOKEN_ENDPOINT;
+import static org.gluu.oxauth.model.configuration.ConfigurationResponseClaim.TOKEN_ENDPOINT_AUTH_METHODS_SUPPORTED;
+import static org.gluu.oxauth.model.configuration.ConfigurationResponseClaim.TOKEN_ENDPOINT_AUTH_SIGNING_ALG_VALUES_SUPPORTED;
+import static org.gluu.oxauth.model.configuration.ConfigurationResponseClaim.TOKEN_REVOCATION_ENDPOINT;
+import static org.gluu.oxauth.model.configuration.ConfigurationResponseClaim.UI_LOCALES_SUPPORTED;
+import static org.gluu.oxauth.model.configuration.ConfigurationResponseClaim.USER_INFO_ENCRYPTION_ALG_VALUES_SUPPORTED;
+import static org.gluu.oxauth.model.configuration.ConfigurationResponseClaim.USER_INFO_ENCRYPTION_ENC_VALUES_SUPPORTED;
+import static org.gluu.oxauth.model.configuration.ConfigurationResponseClaim.USER_INFO_ENDPOINT;
+import static org.gluu.oxauth.model.configuration.ConfigurationResponseClaim.USER_INFO_SIGNING_ALG_VALUES_SUPPORTED;
+
+import java.io.IOException;
+
+import javax.ws.rs.HttpMethod;
+import javax.ws.rs.client.Invocation.Builder;
+import javax.ws.rs.client.WebTarget;
+import javax.ws.rs.core.MediaType;
+import javax.ws.rs.core.Response;
+
+import org.apache.commons.lang.StringUtils;
+import org.apache.log4j.Logger;
+import org.gluu.oxauth.model.util.Util;
+import org.jboss.resteasy.client.jaxrs.ClientHttpEngine;
+import org.jboss.resteasy.client.jaxrs.ResteasyClientBuilder;
+import org.json.JSONException;
+import org.json.JSONObject;
+
+/**
+ * Encapsulates functionality to make OpenId Configuration request calls to an authorization server via REST Services.
+ *
+ * @author Javier Rojas Blum
+ * @version August 22, 2019
+ */
+public class OpenIdConfigurationClient extends BaseClient<OpenIdConfigurationRequest, OpenIdConfigurationResponse> {
+
+    private static final Logger LOG = Logger.getLogger(OpenIdConfigurationClient.class);
+
+    private static final String mediaTypes = String.join(",", MediaType.TEXT_PLAIN, MediaType.APPLICATION_JSON);
+
+    /**
+     * Constructs an OpenID Configuration Client by providing an url where the REST service is located.
+     *
+     * @param url The REST service location.
+     */
+    public OpenIdConfigurationClient(String url) {
+        super(url);
+    }
+
+    @Override
+    public String getHttpMethod() {
+        return HttpMethod.GET;
+    }
+
+    public OpenIdConfigurationResponse execOpenIdConfiguration() throws IOException {
+        initClientRequest();
+
+        return _execOpenIdConfiguration();
+    }
+
+    @Deprecated
+    public OpenIdConfigurationResponse execOpenIdConfiguration(ClientHttpEngine engine) throws IOException {
+    	resteasyClient = ((ResteasyClientBuilder) ResteasyClientBuilder.newBuilder()).httpEngine(engine).build();
+    	webTarget = resteasyClient.target(getUrl());
+
+        return _execOpenIdConfiguration();
+    }
+
+    /**
+     * Executes the call to the REST Service requesting the OpenID Configuration and processes the response.
+     *
+     * @return The service response.
+     */
+    private OpenIdConfigurationResponse _execOpenIdConfiguration() throws IOException {
+        setRequest(new OpenIdConfigurationRequest());
+
+        // Call REST Service and handle response
+        String entity = null;
+        try {
+            requestClientResponse(webTarget);
+
+            int status = clientResponse.getStatus();
+            // Support AWS LB which requires follow redirect
+            if (status == Response.Status.FOUND.getStatusCode()) {
+            	webTarget = resteasyClient.target(clientResponse.getLocation());
+                requestClientResponse(webTarget);
+            }
+
+            setResponse(new OpenIdConfigurationResponse(status));
+
+            entity = clientResponse.readEntity(String.class);
+            getResponse().setEntity(entity);
+            getResponse().setHeaders(clientResponse.getMetadata());
+            parse(entity, getResponse());
+        } catch (JSONException e) {
+            LOG.error("There is an error in the JSON response. Check if there is a syntax error in the JSON response or there is a wrong key", e);
+            if (entity != null) {
+            	LOG.error("Invalid JSON: " + entity);
+            }
+        } catch (Exception e) {
+            LOG.error(e.getMessage(), e);
+            LOG.error(e.getMessage(), e); // Unexpected exception.
+        } finally {
+            closeConnection();
+        }
+
+        return getResponse();
+    }
+
+	private void requestClientResponse(WebTarget webTarget) {
+        Builder clientRequest = webTarget.request();
+
+        applyCookies(clientRequest);
+
+		// Prepare request parameters
+		clientRequest.accept(mediaTypes);
+//            clientRequest.setHttpMethod(getHttpMethod());
+
+		clientResponse = clientRequest.buildGet().invoke();
+	}
+
+    public static void parse(String json, OpenIdConfigurationResponse response) {
+        if (StringUtils.isBlank(json)) {
+            return;
+        }
+
+        JSONObject jsonObj = new JSONObject(json);
+
+        if (jsonObj.has(ISSUER)) {
+            response.setIssuer(jsonObj.getString(ISSUER));
+        }
+        if (jsonObj.has(AUTHORIZATION_ENDPOINT)) {
+            response.setAuthorizationEndpoint(jsonObj.getString(AUTHORIZATION_ENDPOINT));
+        }
+        if (jsonObj.has(TOKEN_ENDPOINT)) {
+            response.setTokenEndpoint(jsonObj.getString(TOKEN_ENDPOINT));
+        }
+        if (jsonObj.has(TOKEN_REVOCATION_ENDPOINT)) {
+            response.setRevocationEndpoint(jsonObj.getString(TOKEN_REVOCATION_ENDPOINT));
+        }
+        if (jsonObj.has(REVOCATION_ENDPOINT)) {
+            response.setRevocationEndpoint(jsonObj.getString(REVOCATION_ENDPOINT));
+        }
+        if (jsonObj.has(SESSION_REVOCATION_ENDPOINT)) {
+            response.setSessionRevocationEndpoint(jsonObj.getString(SESSION_REVOCATION_ENDPOINT));
+        }
+        if (jsonObj.has(USER_INFO_ENDPOINT)) {
+            response.setUserInfoEndpoint(jsonObj.getString(USER_INFO_ENDPOINT));
+        }
+        if (jsonObj.has(CLIENT_INFO_ENDPOINT)) {
+            response.setClientInfoEndpoint(jsonObj.getString(CLIENT_INFO_ENDPOINT));
+        }
+        if (jsonObj.has(CHECK_SESSION_IFRAME)) {
+            response.setCheckSessionIFrame(jsonObj.getString(CHECK_SESSION_IFRAME));
+        }
+        if (jsonObj.has(END_SESSION_ENDPOINT)) {
+            response.setEndSessionEndpoint(jsonObj.getString(END_SESSION_ENDPOINT));
+        }
+        if (jsonObj.has(JWKS_URI)) {
+            response.setJwksUri(jsonObj.getString(JWKS_URI));
+        }
+        if (jsonObj.has(REGISTRATION_ENDPOINT)) {
+            response.setRegistrationEndpoint(jsonObj.getString(REGISTRATION_ENDPOINT));
+        }
+        if (jsonObj.has(ID_GENERATION_ENDPOINT)) {
+            response.setIdGenerationEndpoint(jsonObj.getString(ID_GENERATION_ENDPOINT));
+        }
+        if (jsonObj.has(INTROSPECTION_ENDPOINT)) {
+            response.setIntrospectionEndpoint(jsonObj.getString(INTROSPECTION_ENDPOINT));
+        }
+        if (jsonObj.has(DEVICE_AUTHZ_ENDPOINT)) {
+            response.setDeviceAuthzEndpoint(jsonObj.getString(DEVICE_AUTHZ_ENDPOINT));
+        }
+        if (jsonObj.has(SCOPE_TO_CLAIMS_MAPPING)) {
+            response.setScopeToClaimsMapping(OpenIdConfigurationResponse.parseScopeToClaimsMapping(jsonObj.getJSONArray(SCOPE_TO_CLAIMS_MAPPING)));
+        }
+        Util.addToListIfHas(response.getScopesSupported(), jsonObj, SCOPES_SUPPORTED);
+        Util.addToListIfHas(response.getResponseTypesSupported(), jsonObj, RESPONSE_TYPES_SUPPORTED);
+        Util.addToListIfHas(response.getResponseModesSupported(), jsonObj, RESPONSE_MODES_SUPPORTED);
+        Util.addToListIfHas(response.getGrantTypesSupported(), jsonObj, GRANT_TYPES_SUPPORTED);
+        Util.addToListIfHas(response.getAcrValuesSupported(), jsonObj, ACR_VALUES_SUPPORTED);
+        Util.addToListIfHas(response.getSubjectTypesSupported(), jsonObj, SUBJECT_TYPES_SUPPORTED);
+        Util.addToListIfHas(response.getUserInfoSigningAlgValuesSupported(), jsonObj, USER_INFO_SIGNING_ALG_VALUES_SUPPORTED);
+        Util.addToListIfHas(response.getUserInfoEncryptionAlgValuesSupported(), jsonObj, USER_INFO_ENCRYPTION_ALG_VALUES_SUPPORTED);
+        Util.addToListIfHas(response.getUserInfoEncryptionEncValuesSupported(), jsonObj, USER_INFO_ENCRYPTION_ENC_VALUES_SUPPORTED);
+        Util.addToListIfHas(response.getIdTokenSigningAlgValuesSupported(), jsonObj, ID_TOKEN_SIGNING_ALG_VALUES_SUPPORTED);
+        Util.addToListIfHas(response.getIdTokenEncryptionAlgValuesSupported(), jsonObj, ID_TOKEN_ENCRYPTION_ALG_VALUES_SUPPORTED);
+        Util.addToListIfHas(response.getIdTokenEncryptionEncValuesSupported(), jsonObj, ID_TOKEN_ENCRYPTION_ENC_VALUES_SUPPORTED);
+        Util.addToListIfHas(response.getRequestObjectSigningAlgValuesSupported(), jsonObj, REQUEST_OBJECT_SIGNING_ALG_VALUES_SUPPORTED);
+        Util.addToListIfHas(response.getRequestObjectEncryptionAlgValuesSupported(), jsonObj, REQUEST_OBJECT_ENCRYPTION_ALG_VALUES_SUPPORTED);
+        Util.addToListIfHas(response.getRequestObjectEncryptionEncValuesSupported(), jsonObj, REQUEST_OBJECT_ENCRYPTION_ENC_VALUES_SUPPORTED);
+        Util.addToListIfHas(response.getTokenEndpointAuthMethodsSupported(), jsonObj, TOKEN_ENDPOINT_AUTH_METHODS_SUPPORTED);
+        Util.addToListIfHas(response.getTokenEndpointAuthSigningAlgValuesSupported(), jsonObj, TOKEN_ENDPOINT_AUTH_SIGNING_ALG_VALUES_SUPPORTED);
+        Util.addToListIfHas(response.getDisplayValuesSupported(), jsonObj, DISPLAY_VALUES_SUPPORTED);
+        Util.addToListIfHas(response.getClaimTypesSupported(), jsonObj, CLAIM_TYPES_SUPPORTED);
+        Util.addToListIfHas(response.getClaimsSupported(), jsonObj, CLAIMS_SUPPORTED);
+        if (jsonObj.has(SERVICE_DOCUMENTATION)) {
+            response.setServiceDocumentation(jsonObj.getString(SERVICE_DOCUMENTATION));
+        }
+        Util.addToListIfHas(response.getClaimsLocalesSupported(), jsonObj, CLAIMS_LOCALES_SUPPORTED);
+        Util.addToListIfHas(response.getUiLocalesSupported(), jsonObj, UI_LOCALES_SUPPORTED);
+        if (jsonObj.has(CLAIMS_PARAMETER_SUPPORTED)) {
+            response.setClaimsParameterSupported(jsonObj.getBoolean(CLAIMS_PARAMETER_SUPPORTED));
+        }
+        if (jsonObj.has(REQUEST_PARAMETER_SUPPORTED)) {
+            response.setRequestParameterSupported(jsonObj.getBoolean(REQUEST_PARAMETER_SUPPORTED));
+        }
+        if (jsonObj.has(REQUEST_URI_PARAMETER_SUPPORTED)) {
+            response.setRequestUriParameterSupported(jsonObj.getBoolean(REQUEST_URI_PARAMETER_SUPPORTED));
+        }
+        if (jsonObj.has(TLS_CLIENT_CERTIFICATE_BOUND_ACCESS_TOKENS)) {
+            response.setTlsClientCertificateBoundAccessTokens(jsonObj.optBoolean(TLS_CLIENT_CERTIFICATE_BOUND_ACCESS_TOKENS));
+        }
+        if (jsonObj.has(FRONTCHANNEL_LOGOUT_SUPPORTED)) {
+            response.setFrontChannelLogoutSupported(jsonObj.getBoolean(FRONTCHANNEL_LOGOUT_SUPPORTED));
+        }
+        if (jsonObj.has(FRONTCHANNEL_LOGOUT_SESSION_SUPPORTED)) {
+            response.setFrontChannelLogoutSessionSupported(jsonObj.getBoolean(FRONTCHANNEL_LOGOUT_SESSION_SUPPORTED));
+        }
+        if (jsonObj.has(BACKCHANNEL_LOGOUT_SUPPORTED)) {
+            response.setBackchannelLogoutSupported(jsonObj.optBoolean(BACKCHANNEL_LOGOUT_SUPPORTED));
+        }
+        if (jsonObj.has(BACKCHANNEL_LOGOUT_SESSION_SUPPORTED)) {
+            response.setBackchannelLogoutSessionSupported(jsonObj.optBoolean(BACKCHANNEL_LOGOUT_SESSION_SUPPORTED));
+        }
+        if (jsonObj.has(REQUIRE_REQUEST_URI_REGISTRATION)) {
+            response.setRequireRequestUriRegistration(jsonObj.getBoolean(REQUIRE_REQUEST_URI_REGISTRATION));
+        }
+        if (jsonObj.has(OP_POLICY_URI)) {
+            response.setOpPolicyUri(jsonObj.getString(OP_POLICY_URI));
+        }
+        if (jsonObj.has(OP_TOS_URI)) {
+            response.setOpTosUri(jsonObj.getString(OP_TOS_URI));
+        }
+
+        // CIBA
+        if (jsonObj.has(BACKCHANNEL_AUTHENTICATION_ENDPOINT)) {
+            response.setBackchannelAuthenticationEndpoint(jsonObj.getString(BACKCHANNEL_AUTHENTICATION_ENDPOINT));
+        }
+        Util.addToListIfHas(response.getBackchannelTokenDeliveryModesSupported(), jsonObj, BACKCHANNEL_TOKEN_DELIVERY_MODES_SUPPORTED);
+        Util.addToListIfHas(response.getBackchannelAuthenticationRequestSigningAlgValuesSupported(), jsonObj, BACKCHANNEL_AUTHENTICATION_REQUEST_SIGNING_ALG_VALUES_SUPPORTED);
+        if (jsonObj.has(BACKCHANNEL_USER_CODE_PAREMETER_SUPPORTED)) {
+            response.setBackchannelUserCodeParameterSupported(jsonObj.getBoolean(BACKCHANNEL_USER_CODE_PAREMETER_SUPPORTED));
+        }
+    }
+
+    public static OpenIdConfigurationResponse parse(String json) {
+        OpenIdConfigurationResponse response = new OpenIdConfigurationResponse();
+        parse(json, response);
+        return response;
+    }
+}
diff --git a/oxAuth/Client/src/main/java/org/gluu/oxauth/client/OpenIdConfigurationRequest.java b/oxAuth/Client/src/main/java/org/gluu/oxauth/client/OpenIdConfigurationRequest.java
new file mode 100644
index 00000000..1107cfd4
--- /dev/null
+++ b/oxAuth/Client/src/main/java/org/gluu/oxauth/client/OpenIdConfigurationRequest.java
@@ -0,0 +1,26 @@
+/*
+ * oxAuth is available under the MIT License (2008). See http://opensource.org/licenses/MIT for full text.
+ *
+ * Copyright (c) 2014, Gluu
+ */
+
+package org.gluu.oxauth.client;
+
+/**
+ * Represents an OpenId Configuration request to send to the authorization server.
+ *
+ * @author Javier Rojas Blum Date: 12.6.2011
+ */
+public class OpenIdConfigurationRequest extends BaseRequest{
+
+    /**
+     * Construct an OpenID Configuration Request.
+     */
+    public OpenIdConfigurationRequest() {
+    }
+
+    @Override
+    public String getQueryString() {
+        return null;
+    }
+}
\ No newline at end of file
diff --git a/oxAuth/Client/src/main/java/org/gluu/oxauth/client/OpenIdConfigurationResponse.java b/oxAuth/Client/src/main/java/org/gluu/oxauth/client/OpenIdConfigurationResponse.java
new file mode 100644
index 00000000..ba3f302d
--- /dev/null
+++ b/oxAuth/Client/src/main/java/org/gluu/oxauth/client/OpenIdConfigurationResponse.java
@@ -0,0 +1,1152 @@
+/*
+ * oxAuth is available under the MIT License (2008). See http://opensource.org/licenses/MIT for full text.
+ *
+ * Copyright (c) 2014, Gluu
+ */
+
+package org.gluu.oxauth.client;
+
+import java.io.Serializable;
+import java.util.ArrayList;
+import java.util.HashMap;
+import java.util.List;
+import java.util.Map;
+
+import org.apache.commons.lang.StringUtils;
+import org.json.JSONArray;
+import org.json.JSONException;
+import org.json.JSONObject;
+
+/**
+ * Represents an OpenId Configuration received from the authorization server.
+ *
+ * @author Javier Rojas Blum
+ * @version August 22, 2019
+ */
+public class OpenIdConfigurationResponse extends BaseResponse implements Serializable {
+
+    private String issuer;
+    private String authorizationEndpoint;
+    private String tokenEndpoint;
+    private String revocationEndpoint;
+    private String sessionRevocationEndpoint;
+    private String userInfoEndpoint;
+    private String clientInfoEndpoint;
+    private String checkSessionIFrame;
+    private String endSessionEndpoint;
+    private String jwksUri;
+    private String registrationEndpoint;
+    private String idGenerationEndpoint;
+    private String introspectionEndpoint;
+    private String deviceAuthzEndpoint;
+    private List<String> scopesSupported;
+    private List<String> responseTypesSupported;
+    private List<String> responseModesSupported;
+    private List<String> grantTypesSupported;
+    private List<String> acrValuesSupported;
+    private List<String> subjectTypesSupported;
+    private List<String> userInfoSigningAlgValuesSupported;
+    private List<String> userInfoEncryptionAlgValuesSupported;
+    private List<String> userInfoEncryptionEncValuesSupported;
+    private List<String> idTokenSigningAlgValuesSupported;
+    private List<String> idTokenEncryptionAlgValuesSupported;
+    private List<String> idTokenEncryptionEncValuesSupported;
+    private List<String> requestObjectSigningAlgValuesSupported;
+    private List<String> requestObjectEncryptionAlgValuesSupported;
+    private List<String> requestObjectEncryptionEncValuesSupported;
+    private List<String> tokenEndpointAuthMethodsSupported;
+    private List<String> tokenEndpointAuthSigningAlgValuesSupported;
+    private List<String> displayValuesSupported;
+    private List<String> claimTypesSupported;
+    private List<String> claimsSupported;
+    private List<String> idTokenTokenBindingCnfValuesSupported;
+    private String serviceDocumentation;
+    private List<String> claimsLocalesSupported;
+    private List<String> uiLocalesSupported;
+    private Boolean claimsParameterSupported;
+    private Boolean requestParameterSupported;
+    private Boolean requestUriParameterSupported;
+    private Boolean requireRequestUriRegistration;
+    private Boolean tlsClientCertificateBoundAccessTokens;
+    private Boolean frontChannelLogoutSupported;
+    private Boolean frontChannelLogoutSessionSupported;
+    private Boolean backchannelLogoutSupported;
+    private Boolean backchannelLogoutSessionSupported;
+    private String opPolicyUri;
+    private String opTosUri;
+    private Map<String, List<String>> scopeToClaimsMapping = new HashMap<String, List<String>>();
+
+    // CIBA
+    private String backchannelAuthenticationEndpoint;
+    private List<String> backchannelTokenDeliveryModesSupported;
+    private List<String> backchannelAuthenticationRequestSigningAlgValuesSupported;
+    private Boolean backchannelUserCodeParameterSupported;
+
+    public OpenIdConfigurationResponse() {
+    }
+
+    /**
+     * Constructs an OpenID Configuration Response.
+     *
+     * @param status The response status code.
+     */
+    public OpenIdConfigurationResponse(int status) {
+        super(status);
+
+        scopesSupported = new ArrayList<String>();
+        responseTypesSupported = new ArrayList<String>();
+        responseModesSupported = new ArrayList<>();
+        grantTypesSupported = new ArrayList<String>();
+        acrValuesSupported = new ArrayList<String>();
+        subjectTypesSupported = new ArrayList<String>();
+        userInfoSigningAlgValuesSupported = new ArrayList<String>();
+        userInfoEncryptionAlgValuesSupported = new ArrayList<String>();
+        userInfoEncryptionEncValuesSupported = new ArrayList<String>();
+        idTokenSigningAlgValuesSupported = new ArrayList<String>();
+        idTokenEncryptionAlgValuesSupported = new ArrayList<String>();
+        idTokenEncryptionEncValuesSupported = new ArrayList<String>();
+        requestObjectSigningAlgValuesSupported = new ArrayList<String>();
+        requestObjectEncryptionAlgValuesSupported = new ArrayList<String>();
+        requestObjectEncryptionEncValuesSupported = new ArrayList<String>();
+        tokenEndpointAuthMethodsSupported = new ArrayList<String>();
+        tokenEndpointAuthSigningAlgValuesSupported = new ArrayList<String>();
+        displayValuesSupported = new ArrayList<String>();
+        claimTypesSupported = new ArrayList<String>();
+        claimsSupported = new ArrayList<String>();
+        idTokenTokenBindingCnfValuesSupported = new ArrayList<String>();
+        claimsLocalesSupported = new ArrayList<String>();
+        uiLocalesSupported = new ArrayList<String>();
+        backchannelTokenDeliveryModesSupported = new ArrayList<>();
+        backchannelAuthenticationRequestSigningAlgValuesSupported = new ArrayList<>();
+    }
+
+    public static Map<String, List<String>> parseScopeToClaimsMapping(String p_scopeToClaimsJson) throws JSONException {
+        return parseScopeToClaimsMapping(new JSONArray(p_scopeToClaimsJson));
+    }
+
+    public static Map<String, List<String>> parseScopeToClaimsMapping(JSONArray p_jsonArray) throws JSONException {
+        final Map<String, List<String>> map = new HashMap<String, List<String>>();
+        if (p_jsonArray != null) {
+            for (int i = 0; i < p_jsonArray.length(); i++) {
+                final JSONObject obj = p_jsonArray.getJSONObject(i);
+                final String scope = obj.names().getString(0);
+                final JSONArray claimsArray = obj.getJSONArray(scope);
+                final List<String> claimsList = new ArrayList<String>();
+                for (int j = 0; j < claimsArray.length(); j++) {
+                    final String claim = claimsArray.getString(j);
+                    if (StringUtils.isNotBlank(claim)) {
+                        claimsList.add(claim);
+                    }
+                }
+                map.put(scope, claimsList);
+            }
+
+        }
+        return map;
+    }
+
+    /**
+     * Gets scopes to claims map.
+     *
+     * @return scopes to claims map
+     * @deprecated this parameter will be moved from /.well-known/openid-configuration to /.well-known/gluu-configuration
+     */
+    @Deprecated
+    public Map<String, List<String>> getScopeToClaimsMapping() {
+        return scopeToClaimsMapping;
+    }
+
+    /**
+     * Sets scope to claim map.
+     *
+     * @param p_scopeToClaimsMapping scope to claim map
+     * @deprecated this parameter will be moved from /.well-known/openid-configuration to /.well-known/gluu-configuration
+     */
+    @Deprecated
+    public void setScopeToClaimsMapping(Map<String, List<String>> p_scopeToClaimsMapping) {
+        scopeToClaimsMapping = p_scopeToClaimsMapping;
+    }
+
+    /**
+     * Returns the issuer identifier.
+     *
+     * @return The issuer identifier.
+     */
+    public String getIssuer() {
+        return issuer;
+    }
+
+    /**
+     * Sets the issuer identifier.
+     *
+     * @param issuer The issuer identifier.
+     */
+    public void setIssuer(String issuer) {
+        this.issuer = issuer;
+    }
+
+    /**
+     * Returns the URL of the Authentication and Authorization endpoint.
+     *
+     * @return The URL of the Authentication and Authorization endpoint.
+     */
+    public String getAuthorizationEndpoint() {
+        return authorizationEndpoint;
+    }
+
+    /**
+     * Sets the URL of the Authentication and Authorization endpoint.
+     *
+     * @param authorizationEndpoint The URL of the Authentication and Authorization endpoint.
+     */
+    public void setAuthorizationEndpoint(String authorizationEndpoint) {
+        this.authorizationEndpoint = authorizationEndpoint;
+    }
+
+    /**
+     * Returns the URL of the Token endpoint.
+     *
+     * @return The URL of the Token endpoint.
+     */
+    public String getTokenEndpoint() {
+        return tokenEndpoint;
+    }
+
+    /**
+     * Sets the URL of the Token endpoint.
+     *
+     * @param tokenEndpoint The URL of the Token endpoint.
+     */
+    public void setTokenEndpoint(String tokenEndpoint) {
+        this.tokenEndpoint = tokenEndpoint;
+    }
+
+    public String getSessionRevocationEndpoint() {
+        return sessionRevocationEndpoint;
+    }
+
+    public void setSessionRevocationEndpoint(String sessionRevocationEndpoint) {
+        this.sessionRevocationEndpoint = sessionRevocationEndpoint;
+    }
+
+    /**
+     * Returns the URL of the Token Revocation endpoint.
+     *
+     * @return The URL of the Token Revocation endpoint.
+     */
+    public String getRevocationEndpoint() {
+        return revocationEndpoint;
+    }
+
+    /**
+     * Sets the URL of the Token Revocation endpoint.
+     *
+     * @param revocationEndpoint The URL of the Token Revocation endpoint.
+     */
+    public void setRevocationEndpoint(String revocationEndpoint) {
+        this.revocationEndpoint = revocationEndpoint;
+    }
+
+    /**
+     * Returns the URL of the User Info endpoint.
+     *
+     * @return The URL of the User Info endpoint.
+     */
+    public String getUserInfoEndpoint() {
+        return userInfoEndpoint;
+    }
+
+    /**
+     * Sets the URL for the User Info endpoint.
+     *
+     * @param userInfoEndpoint The URL for the User Info endpoint.
+     */
+    public void setUserInfoEndpoint(String userInfoEndpoint) {
+        this.userInfoEndpoint = userInfoEndpoint;
+    }
+
+    /**
+     * Returns the URL of the Client Info endpoint.
+     *
+     * @return The URL of the Client Info endpoint.
+     */
+    public String getClientInfoEndpoint() {
+        return clientInfoEndpoint;
+    }
+
+    /**
+     * Sets the URL for the Client Info endpoint.
+     *
+     * @param clientInfoEndpoint The URL for the Client Info endpoint.
+     */
+    public void setClientInfoEndpoint(String clientInfoEndpoint) {
+        this.clientInfoEndpoint = clientInfoEndpoint;
+    }
+
+    /**
+     * Returns the URL of an OP endpoint that provides a page to support
+     * cross-origin communications for session state information with the RP
+     * client.
+     *
+     * @return The Check Session iFrame URL.
+     */
+    public String getCheckSessionIFrame() {
+        return checkSessionIFrame;
+    }
+
+    /**
+     * Sets the URL of an OP endpoint that provides a page to support
+     * cross-origin communications for session state information with the RP
+     * client.
+     *
+     * @param checkSessionIFrame The Check Session iFrame URL.
+     */
+    public void setCheckSessionIFrame(String checkSessionIFrame) {
+        this.checkSessionIFrame = checkSessionIFrame;
+    }
+
+    /**
+     * Returns the URL of the End Session endpoint.
+     *
+     * @return The URL of the End Session endpoint.
+     */
+    public String getEndSessionEndpoint() {
+        return endSessionEndpoint;
+    }
+
+    /**
+     * Sets the URL of the End Session endpoint.
+     *
+     * @param endSessionEndpoint The URL of the End Session endpoint.
+     */
+    public void setEndSessionEndpoint(String endSessionEndpoint) {
+        this.endSessionEndpoint = endSessionEndpoint;
+    }
+
+    /**
+     * Returns the URL of the OP's JSON Web Key Set (JWK) document that contains
+     * the Server's signing key(s) that are used for signing responses to the
+     * Client. The JWK Set may also contain the Server's encryption key(s) that
+     * are used by the Client to encrypt requests to the Server.
+     *
+     * @return The URL of the OP's JSON Web Key Set (JWK) document.
+     */
+    public String getJwksUri() {
+        return jwksUri;
+    }
+
+    /**
+     * Sets the URL of the OP's JSON Web Key Set (JWK) document that contains
+     * the Server's signing key(s) that are used for signing responses to the
+     * Client. The JWK Set may also contain the Server's encryption key(s) that
+     * are used by the Client to encrypt requests to the Server.
+     *
+     * @param jwksUri The URL of the OP's JSON Web Key Set (JWK) document.
+     */
+    public void setJwksUri(String jwksUri) {
+        this.jwksUri = jwksUri;
+    }
+
+    /**
+     * Returns the URL of the Dynamic Client Registration endpoint.
+     *
+     * @return The URL of the Dynamic Client Registration endpoint.
+     */
+    public String getRegistrationEndpoint() {
+        return registrationEndpoint;
+    }
+
+    /**
+     * Sets the URL of the Dynamic Client Registration endpoint.
+     *
+     * @param registrationEndpoint The URL of the Dynamic Client Registration endpoint.
+     */
+    public void setRegistrationEndpoint(String registrationEndpoint) {
+        this.registrationEndpoint = registrationEndpoint;
+    }
+
+    /**
+     * @deprecated this parameter will be moved from /.well-known/openid-configuration to /.well-known/gluu-configuration
+     */
+    @Deprecated
+    public String getIdGenerationEndpoint() {
+        return idGenerationEndpoint;
+    }
+
+    /**
+     * @deprecated this parameter will be moved from /.well-known/openid-configuration to /.well-known/gluu-configuration
+     */
+    @Deprecated
+    public void setIdGenerationEndpoint(String p_idGenerationEndpoint) {
+        idGenerationEndpoint = p_idGenerationEndpoint;
+    }
+
+    /**
+     * @deprecated this parameter will be moved from /.well-known/openid-configuration to /.well-known/gluu-configuration
+     */
+    @Deprecated
+    public String getIntrospectionEndpoint() {
+        return introspectionEndpoint;
+    }
+
+    /**
+     * @deprecated this parameter will be moved from /.well-known/openid-configuration to /.well-known/gluu-configuration
+     */
+    @Deprecated
+    public void setIntrospectionEndpoint(String p_introspectionEndpoint) {
+        introspectionEndpoint = p_introspectionEndpoint;
+    }
+
+    /**
+     * Returns a list of the OAuth 2.0 scopes that the server supports.
+     *
+     * @return A list of the OAuth 2.0 scopes that the server supports.
+     */
+    public List<String> getScopesSupported() {
+        return scopesSupported;
+    }
+
+    /**
+     * Sets a list of the OAuth 2.0 scopes that the server supports.
+     *
+     * @param scopesSupported A list of the OAuth 2.0 scopes that the server supports.
+     */
+    public void setScopesSupported(List<String> scopesSupported) {
+        this.scopesSupported = scopesSupported;
+    }
+
+    /**
+     * Returns a list of the response types that the server supports.
+     *
+     * @return A list of the response types that the server supports.
+     */
+    public List<String> getResponseTypesSupported() {
+        return responseTypesSupported;
+    }
+
+    /**
+     * Sets a list of the response types that the server supports.
+     *
+     * @param responseTypesSupported A list of the response types that the server supports.
+     */
+    public void setResponseTypesSupported(List<String> responseTypesSupported) {
+        this.responseTypesSupported = responseTypesSupported;
+    }
+
+    public List<String> getResponseModesSupported() {
+        return responseModesSupported;
+    }
+
+    public void setResponseModesSupported(List<String> responseModesSupported) {
+        this.responseModesSupported = responseModesSupported;
+    }
+
+    /**
+     * Returns a list of the OAuth 2.0 grant type values that this server
+     * supports.
+     *
+     * @return A list of the OAuth 2.0 grant type values that this server
+     * supports.
+     */
+    public List<String> getGrantTypesSupported() {
+        return grantTypesSupported;
+    }
+
+    /**
+     * Sets a list of the OAuth 2.0 grant type values that this server supports.
+     *
+     * @param grantTypesSupported A list of the OAuth 2.0 grant type values that this server
+     *                            supports.
+     */
+    public void setGrantTypesSupported(List<String> grantTypesSupported) {
+        this.grantTypesSupported = grantTypesSupported;
+    }
+
+    /**
+     * Returns a list of the Authentication Context Class References that this
+     * server supports.
+     *
+     * @return A list of the Authentication Context Class References
+     */
+    public List<String> getAcrValuesSupported() {
+        return acrValuesSupported;
+    }
+
+    /**
+     * Sets a list of the Authentication Context Class References that this
+     * server supports.
+     *
+     * @param acrValuesSupported A list of the Authentication Context Class References
+     */
+    public void setAcrValuesSupported(List<String> acrValuesSupported) {
+        this.acrValuesSupported = acrValuesSupported;
+    }
+
+    /**
+     * Returns a list of the subject identifier types that this server supports.
+     * Valid types include pairwise and public.
+     *
+     * @return A list of the subject identifier types that this server supports.
+     */
+    public List<String> getSubjectTypesSupported() {
+        return subjectTypesSupported;
+    }
+
+    /**
+     * Sets a list of the subject identifier types that this server supports.
+     * Valid types include pairwise and public.
+     *
+     * @param subjectTypesSupported A list of the subject identifier types that this server
+     *                              supports.
+     */
+    public void setSubjectTypesSupported(List<String> subjectTypesSupported) {
+        this.subjectTypesSupported = subjectTypesSupported;
+    }
+
+    /**
+     * Returns a list of the JWS signing algorithms (alg values JWA) supported
+     * by the UserInfo Endpoint to encode the claims in a JWT
+     *
+     * @return A list of the JWS signing algorithms.
+     */
+    public List<String> getUserInfoSigningAlgValuesSupported() {
+        return userInfoSigningAlgValuesSupported;
+    }
+
+    /**
+     * Sets a list of the JWS signing algorithms (alg values JWA) supported by
+     * the UserInfo Endpoint to encode the claims in a JWT
+     *
+     * @param userInfoSigningAlgValuesSupported A list of the JWS signing algorithms.
+     */
+    public void setUserInfoSigningAlgValuesSupported(List<String> userInfoSigningAlgValuesSupported) {
+        this.userInfoSigningAlgValuesSupported = userInfoSigningAlgValuesSupported;
+    }
+
+    /**
+     * Returns a list of the JWE encryption algorithms (alg values JWA)
+     * supported by the UserInfo Endpoint to encode the claims in a JWT.
+     *
+     * @return A list of the JWE encryption algorithms.
+     */
+    public List<String> getUserInfoEncryptionAlgValuesSupported() {
+        return userInfoEncryptionAlgValuesSupported;
+    }
+
+    /**
+     * Sets a list of the JWE encryption algorithms (alg values JWA) supported
+     * by the UserInfo Endpoint to encode the claims in a JWT.
+     *
+     * @param userInfoEncryptionAlgValuesSupported A list of the JWE encryption algorithms.
+     */
+    public void setUserInfoEncryptionAlgValuesSupported(List<String> userInfoEncryptionAlgValuesSupported) {
+        this.userInfoEncryptionAlgValuesSupported = userInfoEncryptionAlgValuesSupported;
+    }
+
+    /**
+     * Returns a list of the JWE encryption algorithms (enc values JWA)
+     * supported by the UserInfo Endpoint to encode the claims in a JWT.
+     *
+     * @return A list of the JWE encryption algorithms.
+     */
+    public List<String> getUserInfoEncryptionEncValuesSupported() {
+        return userInfoEncryptionEncValuesSupported;
+    }
+
+    /**
+     * Sets a list of the JWE encryption algorithms (enc values JWA) supported
+     * by the UserInfo Endpoint to encode the claims in a JWT.
+     *
+     * @param userInfoEncryptionEncValuesSupported A list of the JWE encryption algorithms.
+     */
+    public void setUserInfoEncryptionEncValuesSupported(List<String> userInfoEncryptionEncValuesSupported) {
+        this.userInfoEncryptionEncValuesSupported = userInfoEncryptionEncValuesSupported;
+    }
+
+    /**
+     * Returns a list of the JWS signing algorithms (alg values) supported by
+     * the Authorization Server for the ID Token to encode the claims in a JWT.
+     *
+     * @return A list of the JWS signing algorithms.
+     */
+    public List<String> getIdTokenSigningAlgValuesSupported() {
+        return idTokenSigningAlgValuesSupported;
+    }
+
+    /**
+     * Sets a list of the JWS signing algorithms (alg values) supported by the
+     * Authorization Server for the ID Token to encode the claims in a JWT.
+     *
+     * @param idTokenSigningAlgValuesSupported A list of the JWS signing algorithms.
+     */
+    public void setIdTokenSigningAlgValuesSupported(List<String> idTokenSigningAlgValuesSupported) {
+        this.idTokenSigningAlgValuesSupported = idTokenSigningAlgValuesSupported;
+    }
+
+    /**
+     * Returns a list of the JWE encryption algorithms (alg values) supported by
+     * the Authorization Server for the ID Token to encode the claims in a JWT.
+     *
+     * @return A list of the JWE encryption algorithms.
+     */
+    public List<String> getIdTokenEncryptionAlgValuesSupported() {
+        return idTokenEncryptionAlgValuesSupported;
+    }
+
+    /**
+     * Sets a list of the JWE encryption algorithms (alg values) supported by
+     * the Authorization Server for the ID Token to encode the claims in a JWT.
+     *
+     * @param idTokenEncryptionAlgValuesSupported A list of the JWE encryption algorithms.
+     */
+    public void setIdTokenEncryptionAlgValuesSupported(List<String> idTokenEncryptionAlgValuesSupported) {
+        this.idTokenEncryptionAlgValuesSupported = idTokenEncryptionAlgValuesSupported;
+    }
+
+    /**
+     * Returns a list of the JWE encryption algorithms (enc values) supported by
+     * the Authorization Server for the ID Token to encode the claims in a JWT.
+     *
+     * @return A list of the JWE encryption algorithms.
+     */
+    public List<String> getIdTokenEncryptionEncValuesSupported() {
+        return idTokenEncryptionEncValuesSupported;
+    }
+
+    /**
+     * Sets a list of the JWE encryption algorithms (enc values) supported by
+     * the Authorization Server for the ID Token to encode the claims in a JWT.
+     *
+     * @param idTokenEncryptionEncValuesSupported A list of the JWE encryption algorithms.
+     */
+    public void setIdTokenEncryptionEncValuesSupported(List<String> idTokenEncryptionEncValuesSupported) {
+        this.idTokenEncryptionEncValuesSupported = idTokenEncryptionEncValuesSupported;
+    }
+
+    /**
+     * Returns a list of the JWS signing algorithms (alg values) supported by
+     * the Authorization Server for the OpenID Request Object.
+     *
+     * @return A list of the JWS signing algorithms.
+     */
+    public List<String> getRequestObjectSigningAlgValuesSupported() {
+        return requestObjectSigningAlgValuesSupported;
+    }
+
+    /**
+     * Sets a list of the JWS signing algorithms (alg values) supported by the
+     * Authorization Server for the OpenID Request Object.
+     *
+     * @param requestObjectSigningAlgValuesSupported A list of the JWS signing algorithms.
+     */
+    public void setRequestObjectSigningAlgValuesSupported(List<String> requestObjectSigningAlgValuesSupported) {
+        this.requestObjectSigningAlgValuesSupported = requestObjectSigningAlgValuesSupported;
+    }
+
+    /**
+     * Returns a list of the JWE encryption algorithms (alg values) supported by
+     * the Authorization Server for the OpenID Request Object.
+     *
+     * @return A list of the JWE encryption algorithms.
+     */
+    public List<String> getRequestObjectEncryptionAlgValuesSupported() {
+        return requestObjectEncryptionAlgValuesSupported;
+    }
+
+    /**
+     * Sets a list of the JWE encryption algorithms (alg values) supported by
+     * the Authorization Server for the OpenID Request Object.
+     *
+     * @param requestObjectEncryptionAlgValuesSupported A list of the JWE encryption algorithms.
+     */
+    public void setRequestObjectEncryptionAlgValuesSupported(List<String> requestObjectEncryptionAlgValuesSupported) {
+        this.requestObjectEncryptionAlgValuesSupported = requestObjectEncryptionAlgValuesSupported;
+    }
+
+    /**
+     * Returns a list of the JWE encryption algorithms (enc values) supported by
+     * the Authorization Server for the OpenID Request Object.
+     *
+     * @return A list of the JWE encryption algorithms.
+     */
+    public List<String> getRequestObjectEncryptionEncValuesSupported() {
+        return requestObjectEncryptionEncValuesSupported;
+    }
+
+    /**
+     * Sets a list of the JWE encryption algorithms (enc values) supported by
+     * the Authorization Server for the OpenID Request Object.
+     *
+     * @param requestObjectEncryptionEncValuesSupported A list of the JWE encryption algorithms.
+     */
+    public void setRequestObjectEncryptionEncValuesSupported(List<String> requestObjectEncryptionEncValuesSupported) {
+        this.requestObjectEncryptionEncValuesSupported = requestObjectEncryptionEncValuesSupported;
+    }
+
+    /**
+     * Returns a list of authentication types supported by this Token Endpoint.
+     * The options are client_secret_post, client_secret_basic,
+     * client_secret_jwt, and private_key_jwt. Other authentication types may be
+     * defined by extension. If unspecified or omitted, the default is
+     * client_secret_basic, the HTTP Basic Authentication Scheme.
+     *
+     * @return A list of authentication types.
+     */
+    public List<String> getTokenEndpointAuthMethodsSupported() {
+        return tokenEndpointAuthMethodsSupported;
+    }
+
+    /**
+     * Sets a list of authentication types supported by this Token Endpoint. The
+     * options are client_secret_post, client_secret_basic, client_secret_jwt,
+     * and private_key_jwt. Other authentication types may be defined by
+     * extension. If unspecified or omitted, the default is client_secret_basic,
+     * the HTTP Basic Authentication Scheme.
+     *
+     * @param tokenEndpointAuthMethodsSupported A list of authentication types.
+     */
+    public void setTokenEndpointAuthMethodsSupported(List<String> tokenEndpointAuthMethodsSupported) {
+        this.tokenEndpointAuthMethodsSupported = tokenEndpointAuthMethodsSupported;
+    }
+
+    /**
+     * Returns a list of the JWS signing algorithms (alg values) supported by
+     * the Token Endpoint for the private_key_jwt and client_secret_jwt methods
+     * to encode the JWT. Servers SHOULD support RS256.
+     *
+     * @return A list of the JWS signing algorithms.
+     */
+    public List<String> getTokenEndpointAuthSigningAlgValuesSupported() {
+        return tokenEndpointAuthSigningAlgValuesSupported;
+    }
+
+    /**
+     * Sets a list of the JWS signing algorithms (alg values) supported by the
+     * Token Endpoint for the private_key_jwt and client_secret_jwt methods to
+     * encode the JWT. Servers SHOULD support RS256.
+     *
+     * @param tokenEndpointAuthSigningAlgValuesSupported A list of the JWS signing algorithms.
+     */
+    public void setTokenEndpointAuthSigningAlgValuesSupported(List<String> tokenEndpointAuthSigningAlgValuesSupported) {
+        this.tokenEndpointAuthSigningAlgValuesSupported = tokenEndpointAuthSigningAlgValuesSupported;
+    }
+
+    /**
+     * Returns a list of the display parameter values that the OpenID Provider
+     * supports.
+     *
+     * @return A list of the display parameter values.
+     */
+    public List<String> getDisplayValuesSupported() {
+        return displayValuesSupported;
+    }
+
+    /**
+     * Sets a list of the display parameter values that the OpenID Provider
+     * supports.
+     *
+     * @param displayValuesSupported A list of the display parameter values.
+     */
+    public void setDisplayValuesSupported(List<String> displayValuesSupported) {
+        this.displayValuesSupported = displayValuesSupported;
+    }
+
+    /**
+     * Returns a list of the claim types that the OpenID Provider supports. If
+     * not specified, the implementation supports only normal claims.
+     *
+     * @return A list of the claim types.
+     */
+    public List<String> getClaimTypesSupported() {
+        return claimTypesSupported;
+    }
+
+    /**
+     * Sets a list of the claim types that the OpenID Provider supports. If not
+     * specified, the implementation supports only normal claims.
+     *
+     * @param claimTypesSupported A list of the claim types.
+     */
+    public void setClaimTypesSupported(List<String> claimTypesSupported) {
+        this.claimTypesSupported = claimTypesSupported;
+    }
+
+    /**
+     * Returns a list of the Claim Names of the Claims that the OpenID Provider
+     * may be able to supply values for. Note that for privacy or other reasons,
+     * this may not be an exhaustive list.
+     *
+     * @return A list of Claim Names.
+     */
+    public List<String> getClaimsSupported() {
+        return claimsSupported;
+    }
+
+    /**
+     * Sets a list of the Claim Names of the Claims that the OpenID Provider may
+     * be able to supply values for. Note that for privacy or other reasons,
+     * this may not be an exhaustive list.
+     *
+     * @param claimsSupported A list of Claim Names.
+     */
+    public void setClaimsSupported(List<String> claimsSupported) {
+        this.claimsSupported = claimsSupported;
+    }
+
+
+    public List<String> getIdTokenTokenBindingCnfValuesSupported() {
+        return idTokenTokenBindingCnfValuesSupported;
+    }
+
+    public void setIdTokenTokenBindingCnfValuesSupported(List<String> idTokenTokenBindingCnfValuesSupported) {
+        this.idTokenTokenBindingCnfValuesSupported = idTokenTokenBindingCnfValuesSupported;
+    }
+
+    /**
+     * Returns an URL of a page containing human-readable information that
+     * developers might want or need to know when using the OpenID Provider. In
+     * particular, if the OpenID Provider does not support dynamic client
+     * registration, then information on how to register clients should be
+     * provided in this documentation.
+     *
+     * @return An URL with information for developers.
+     */
+    public String getServiceDocumentation() {
+        return serviceDocumentation;
+    }
+
+    /**
+     * Sets an URL of a page containing human-readable information that
+     * developers might want or need to know when using the OpenID Provider. In
+     * particular, if the OpenID Provider does not support dynamic client
+     * registration, then information on how to register clients should be
+     * provided in this documentation.
+     *
+     * @param serviceDocumentation An URL with information for developers.
+     */
+    public void setServiceDocumentation(String serviceDocumentation) {
+        this.serviceDocumentation = serviceDocumentation;
+    }
+
+    /**
+     * Returns a list of languages and scripts supported for values in Claims
+     * being returned.
+     *
+     * @return A list of languages and scripts supported for values in Claims
+     * being returned.
+     */
+    public List<String> getClaimsLocalesSupported() {
+        return claimsLocalesSupported;
+    }
+
+    /**
+     * Sets a list of languages and scripts supported for values in Claims being
+     * returned.
+     *
+     * @param claimsLocalesSupported A list of languages and scripts supported for values in Claims
+     *                               being returned.
+     */
+    public void setClaimsLocalesSupported(List<String> claimsLocalesSupported) {
+        this.claimsLocalesSupported = claimsLocalesSupported;
+    }
+
+    /**
+     * Returns a list of languages and scripts supported for the user interface.
+     *
+     * @return A list of languages and scripts supported for the user interface.
+     */
+    public List<String> getUiLocalesSupported() {
+        return uiLocalesSupported;
+    }
+
+    /**
+     * Sets a list of languages and scripts supported for the user interface.
+     *
+     * @param uiLocalesSupported A list of languages and scripts supported for the user
+     *                           interface.
+     */
+    public void setUiLocalesSupported(List<String> uiLocalesSupported) {
+        this.uiLocalesSupported = uiLocalesSupported;
+    }
+
+    /**
+     * Returns a Boolean value specifying whether the OP supports use of the
+     * claims parameter, with <code>true</code> indicating support. If omitted,
+     * the default value is <code>false</code>.
+     *
+     * @return A Boolean value specifying whether the OP supports use of the
+     * claims parameter.
+     */
+    public Boolean getClaimsParameterSupported() {
+        return claimsParameterSupported;
+    }
+
+    /**
+     * Sets a Boolean value specifying whether the OP supports use of the claims
+     * parameter, with <code>true</code> indicating support. If omitted, the
+     * default value is <code>false</code>.
+     *
+     * @param claimsParameterSupported A Boolean value specifying whether the OP supports use of the
+     *                                 claims parameter.
+     */
+    public void setClaimsParameterSupported(Boolean claimsParameterSupported) {
+        this.claimsParameterSupported = claimsParameterSupported;
+    }
+
+    /**
+     * Returns a Boolean value specifying whether the OP supports use of the
+     * request parameter, with <code>true</code> indicating support. If omitted,
+     * the default value is <code>false</code>.
+     *
+     * @return A Boolean value specifying whether the OP supports use of the
+     * request parameter.
+     */
+    public Boolean getRequestParameterSupported() {
+        return requestParameterSupported;
+    }
+
+    /**
+     * Sets a Boolean value specifying whether the OP supports use of the
+     * request parameter, with <code>true</code> indicating support. If omitted,
+     * the default value is <code>false</code>.
+     *
+     * @param requestParameterSupported A Boolean value specifying whether the OP supports use of the
+     *                                  request parameter.
+     */
+    public void setRequestParameterSupported(Boolean requestParameterSupported) {
+        this.requestParameterSupported = requestParameterSupported;
+    }
+
+    /**
+     * Returns a Boolean value specifying whether the OP supports use of the
+     * request_uri parameter, with <code>true</code> indicating support. If
+     * omitted, the default value is <code>true</code>.
+     *
+     * @return A Boolean value specifying whether the OP supports use of the
+     * request_uri parameter.
+     */
+    public Boolean getRequestUriParameterSupported() {
+        return requestUriParameterSupported;
+    }
+
+    /**
+     * Sets a Boolean value specifying whether the OP supports use of the
+     * request_uri parameter, with <code>true</code> indicating support. If
+     * omitted, the default value is <code>true</code>.
+     *
+     * @param requestUriParameterSupported A Boolean value specifying whether the OP supports use of the
+     *                                     request_uri parameter.
+     */
+    public void setRequestUriParameterSupported(Boolean requestUriParameterSupported) {
+        this.requestUriParameterSupported = requestUriParameterSupported;
+    }
+
+    /**
+     * Returns a Boolean value specifying whether the OP requires any
+     * request_uri values used to be pre-registered using the request_uris
+     * registration parameter. Pre-registration is required when the value is
+     * <code>true</code>.
+     *
+     * @return A Boolean value specifying whether the OP requires any
+     * request_uri values used to be pre-registered using the
+     * request_uris registration parameter.
+     */
+    public Boolean getRequireRequestUriRegistration() {
+        return requireRequestUriRegistration;
+    }
+
+    /**
+     * Sets a Boolean value specifying whether the OP requires any request_uri
+     * values used to be pre-registered using the request_uris registration
+     * parameter. Pre-registration is required when the value is
+     * <code>true</code>.
+     *
+     * @param requireRequestUriRegistration A Boolean value specifying whether the OP requires any
+     *                                      request_uri values used to be pre-registered using the
+     *                                      request_uris registration parameter.
+     */
+    public void setRequireRequestUriRegistration(Boolean requireRequestUriRegistration) {
+        this.requireRequestUriRegistration = requireRequestUriRegistration;
+    }
+
+    /**
+     * Returns a URL that the OpenID Provider provides to the person registering
+     * the Client to read about the OP's requirements on how the Relying Party
+     * may use the data provided by the OP.
+     *
+     * @return The OP's policy URI.
+     */
+    public String getOpPolicyUri() {
+        return opPolicyUri;
+    }
+
+    /**
+     * Sets a URL that the OpenID Provider provides to the person registering
+     * the Client to read about the OP's requirements on how the Relying Party
+     * may use the data provided by the OP.
+     *
+     * @param opPolicyUri The OP's policy URI.
+     */
+    public void setOpPolicyUri(String opPolicyUri) {
+        this.opPolicyUri = opPolicyUri;
+    }
+
+    /**
+     * Returns a URL that the OpenID Provider provides to the person registering
+     * the Client to read about OpenID Provider's terms of service.
+     *
+     * @return The OP's policy URI.
+     */
+    public String getOpTosUri() {
+        return opTosUri;
+    }
+
+    /**
+     * Sets a URL that the OpenID Provider provides to the person registering
+     * the Client to read about OpenID Provider's terms of service.
+     *
+     * @param opTosUri The OP's policy URI.
+     */
+    public void setOpTosUri(String opTosUri) {
+        this.opTosUri = opTosUri;
+    }
+
+    public Boolean getFrontChannelLogoutSupported() {
+        return frontChannelLogoutSupported;
+    }
+
+    public void setFrontChannelLogoutSupported(Boolean frontChannelLogoutSupported) {
+        this.frontChannelLogoutSupported = frontChannelLogoutSupported;
+    }
+
+    public Boolean getBackchannelLogoutSupported() {
+        return backchannelLogoutSupported;
+    }
+
+    public void setBackchannelLogoutSupported(Boolean backchannelLogoutSupported) {
+        this.backchannelLogoutSupported = backchannelLogoutSupported;
+    }
+
+    public Boolean getBackchannelLogoutSessionSupported() {
+        return backchannelLogoutSessionSupported;
+    }
+
+    public void setBackchannelLogoutSessionSupported(Boolean backchannelLogoutSessionSupported) {
+        this.backchannelLogoutSessionSupported = backchannelLogoutSessionSupported;
+    }
+
+    public Boolean getTlsClientCertificateBoundAccessTokens() {
+        return tlsClientCertificateBoundAccessTokens;
+    }
+
+    public void setTlsClientCertificateBoundAccessTokens(Boolean tlsClientCertificateBoundAccessTokens) {
+        this.tlsClientCertificateBoundAccessTokens = tlsClientCertificateBoundAccessTokens;
+    }
+
+    public Boolean getFrontChannelLogoutSessionSupported() {
+        return frontChannelLogoutSessionSupported;
+    }
+
+    public void setFrontChannelLogoutSessionSupported(Boolean frontChannelLogoutSessionSupported) {
+        this.frontChannelLogoutSessionSupported = frontChannelLogoutSessionSupported;
+    }
+
+    public String getBackchannelAuthenticationEndpoint() {
+        return backchannelAuthenticationEndpoint;
+    }
+
+    public void setBackchannelAuthenticationEndpoint(String backchannelAuthenticationEndpoint) {
+        this.backchannelAuthenticationEndpoint = backchannelAuthenticationEndpoint;
+    }
+
+    public List<String> getBackchannelTokenDeliveryModesSupported() {
+        return backchannelTokenDeliveryModesSupported;
+    }
+
+    public void setBackchannelTokenDeliveryModesSupported(List<String> backchannelTokenDeliveryModesSupported) {
+        this.backchannelTokenDeliveryModesSupported = backchannelTokenDeliveryModesSupported;
+    }
+
+    public List<String> getBackchannelAuthenticationRequestSigningAlgValuesSupported() {
+        return backchannelAuthenticationRequestSigningAlgValuesSupported;
+    }
+
+    public void setBackchannelAuthenticationRequestSigningAlgValuesSupported(List<String> backchannelAuthenticationRequestSigningAlgValuesSupported) {
+        this.backchannelAuthenticationRequestSigningAlgValuesSupported = backchannelAuthenticationRequestSigningAlgValuesSupported;
+    }
+
+    public Boolean getBackchannelUserCodeParameterSupported() {
+        return backchannelUserCodeParameterSupported;
+    }
+
+    public void setBackchannelUserCodeParameterSupported(Boolean backchannelUserCodeParameterSupported) {
+        this.backchannelUserCodeParameterSupported = backchannelUserCodeParameterSupported;
+    }
+
+    public String getDeviceAuthzEndpoint() {
+        return deviceAuthzEndpoint;
+    }
+
+    public void setDeviceAuthzEndpoint(String deviceAuthzEndpoint) {
+        this.deviceAuthzEndpoint = deviceAuthzEndpoint;
+    }
+
+    @Override
+    public String toString() {
+        return "OpenIdConfigurationResponse{" +
+                "issuer='" + issuer + '\'' +
+                ", authorizationEndpoint='" + authorizationEndpoint + '\'' +
+                ", tokenEndpoint='" + tokenEndpoint + '\'' +
+                ", revocationEndpoint='" + revocationEndpoint + '\'' +
+                ", userInfoEndpoint='" + userInfoEndpoint + '\'' +
+                ", clientInfoEndpoint='" + clientInfoEndpoint + '\'' +
+                ", checkSessionIFrame='" + checkSessionIFrame + '\'' +
+                ", endSessionEndpoint='" + endSessionEndpoint + '\'' +
+                ", jwksUri='" + jwksUri + '\'' +
+                ", registrationEndpoint='" + registrationEndpoint + '\'' +
+                ", idGenerationEndpoint='" + idGenerationEndpoint + '\'' +
+                ", introspectionEndpoint='" + introspectionEndpoint + '\'' +
+                ", deviceAuthzEndpoint='" + deviceAuthzEndpoint + '\'' +
+                ", scopesSupported=" + scopesSupported +
+                ", responseTypesSupported=" + responseTypesSupported +
+                ", responseModesSupported=" + responseModesSupported +
+                ", grantTypesSupported=" + grantTypesSupported +
+                ", acrValuesSupported=" + acrValuesSupported +
+                ", subjectTypesSupported=" + subjectTypesSupported +
+                ", userInfoSigningAlgValuesSupported=" + userInfoSigningAlgValuesSupported +
+                ", userInfoEncryptionAlgValuesSupported=" + userInfoEncryptionAlgValuesSupported +
+                ", userInfoEncryptionEncValuesSupported=" + userInfoEncryptionEncValuesSupported +
+                ", idTokenSigningAlgValuesSupported=" + idTokenSigningAlgValuesSupported +
+                ", idTokenEncryptionAlgValuesSupported=" + idTokenEncryptionAlgValuesSupported +
+                ", idTokenEncryptionEncValuesSupported=" + idTokenEncryptionEncValuesSupported +
+                ", requestObjectSigningAlgValuesSupported=" + requestObjectSigningAlgValuesSupported +
+                ", requestObjectEncryptionAlgValuesSupported=" + requestObjectEncryptionAlgValuesSupported +
+                ", requestObjectEncryptionEncValuesSupported=" + requestObjectEncryptionEncValuesSupported +
+                ", tokenEndpointAuthMethodsSupported=" + tokenEndpointAuthMethodsSupported +
+                ", tokenEndpointAuthSigningAlgValuesSupported=" + tokenEndpointAuthSigningAlgValuesSupported +
+                ", displayValuesSupported=" + displayValuesSupported +
+                ", claimTypesSupported=" + claimTypesSupported +
+                ", claimsSupported=" + claimsSupported +
+                ", idTokenTokenBindingCnfValuesSupported=" + idTokenTokenBindingCnfValuesSupported +
+                ", serviceDocumentation='" + serviceDocumentation + '\'' +
+                ", claimsLocalesSupported=" + claimsLocalesSupported +
+                ", uiLocalesSupported=" + uiLocalesSupported +
+                ", claimsParameterSupported=" + claimsParameterSupported +
+                ", requestParameterSupported=" + requestParameterSupported +
+                ", requestUriParameterSupported=" + requestUriParameterSupported +
+                ", tlsClientCertificateBoundAccessTokens=" + tlsClientCertificateBoundAccessTokens +
+                ", frontChannelLogoutSupported=" + frontChannelLogoutSupported +
+                ", frontChannelLogoutSessionSupported=" + frontChannelLogoutSessionSupported +
+                ", backchannelLogoutSupported=" + backchannelLogoutSupported +
+                ", backchannelLogoutSessionSupported=" + backchannelLogoutSessionSupported +
+                ", requireRequestUriRegistration=" + requireRequestUriRegistration +
+                ", opPolicyUri='" + opPolicyUri + '\'' +
+                ", opTosUri='" + opTosUri + '\'' +
+                ", scopeToClaimsMapping=" + scopeToClaimsMapping + '\'' +
+                ", backchannelAuthenticationEndpoint=" + backchannelAuthenticationEndpoint + '\'' +
+                ", backchannelTokenDeliveryModesSupported=" + backchannelTokenDeliveryModesSupported + '\'' +
+                ", backchannelAuthenticationRequestSigningAlgValuesSupported=" + backchannelAuthenticationRequestSigningAlgValuesSupported + '\'' +
+                ", backchannelUserCodeParameterSupported=" + backchannelUserCodeParameterSupported + '\'' +
+                '}';
+    }
+}
\ No newline at end of file
diff --git a/oxAuth/Client/src/main/java/org/gluu/oxauth/client/OpenIdConnectDiscoveryClient.java b/oxAuth/Client/src/main/java/org/gluu/oxauth/client/OpenIdConnectDiscoveryClient.java
new file mode 100644
index 00000000..beef8f12
--- /dev/null
+++ b/oxAuth/Client/src/main/java/org/gluu/oxauth/client/OpenIdConnectDiscoveryClient.java
@@ -0,0 +1,130 @@
+/*
+ * oxAuth is available under the MIT License (2008). See http://opensource.org/licenses/MIT for full text.
+ *
+ * Copyright (c) 2014, Gluu
+ */
+
+package org.gluu.oxauth.client;
+
+import static org.gluu.oxauth.model.discovery.WebFingerParam.HREF;
+import static org.gluu.oxauth.model.discovery.WebFingerParam.LINKS;
+import static org.gluu.oxauth.model.discovery.WebFingerParam.REL;
+import static org.gluu.oxauth.model.discovery.WebFingerParam.REL_VALUE;
+import static org.gluu.oxauth.model.discovery.WebFingerParam.RESOURCE;
+import static org.gluu.oxauth.model.discovery.WebFingerParam.SUBJECT;
+
+import java.io.InputStream;
+import java.net.URISyntaxException;
+
+import javax.ws.rs.HttpMethod;
+import javax.ws.rs.client.Invocation.Builder;
+import javax.ws.rs.core.GenericType;
+import javax.ws.rs.core.MediaType;
+import javax.ws.rs.core.Response;
+
+import org.apache.commons.io.IOUtils;
+import org.apache.commons.lang.StringUtils;
+import org.apache.log4j.Logger;
+import org.gluu.oxauth.model.discovery.WebFingerLink;
+import org.jboss.resteasy.client.jaxrs.ClientHttpEngine;
+import org.jboss.resteasy.client.jaxrs.ResteasyClientBuilder;
+import org.json.JSONArray;
+import org.json.JSONException;
+import org.json.JSONObject;
+
+/**
+ * @author Javier Rojas Blum
+ * @version December 26, 2016
+ */
+public class OpenIdConnectDiscoveryClient extends BaseClient<OpenIdConnectDiscoveryRequest, OpenIdConnectDiscoveryResponse> {
+
+    private static final Logger LOG = Logger.getLogger(OpenIdConnectDiscoveryClient.class);
+
+    private static final String MEDIA_TYPE = MediaType.APPLICATION_JSON;
+    private static final String SCHEMA = "https://";
+    private static final String PATH = "/.well-known/webfinger";
+
+    public OpenIdConnectDiscoveryClient(String resource) throws URISyntaxException {
+        setRequest(new OpenIdConnectDiscoveryRequest(resource));
+        setUrl(SCHEMA + getRequest().getHost() + PATH);
+    }
+
+    @Override
+    public String getHttpMethod() {
+        return HttpMethod.GET;
+    }
+
+    public OpenIdConnectDiscoveryResponse exec() {
+        initClientRequest();
+
+        return _exec();
+    }
+
+    @Deprecated
+    public OpenIdConnectDiscoveryResponse exec(ClientHttpEngine engine) {
+    	resteasyClient = ((ResteasyClientBuilder) ResteasyClientBuilder.newBuilder()).httpEngine(engine).build();
+    	webTarget = resteasyClient.target(getUrl());
+
+        return _exec();
+    }
+
+    private OpenIdConnectDiscoveryResponse _exec() {
+        OpenIdConnectDiscoveryResponse response = null;
+
+        try {
+            response = _exec2();
+        } catch (Exception e) {
+            LOG.error(e.getMessage(), e);
+        } finally {
+            closeConnection();
+        }
+
+        return response;
+    }
+
+    private OpenIdConnectDiscoveryResponse _exec2() {
+        // Prepare request parameters
+        if (StringUtils.isNotBlank(getRequest().getResource())) {
+        	addReqParam(RESOURCE, getRequest().getResource());
+        }
+        addReqParam(REL, REL_VALUE);
+
+        // Call REST Service and handle response
+        Response clientResponse1;
+        try {
+            Builder clientRequest = webTarget.request();
+            applyCookies(clientRequest);
+
+            clientRequest.accept(MEDIA_TYPE);
+//          clientRequest.setHttpMethod(getHttpMethod());
+            clientResponse1 = clientRequest.buildGet().invoke();
+
+            int status = clientResponse1.getStatus();
+
+            setResponse(new OpenIdConnectDiscoveryResponse(status));
+
+            String entity = clientResponse1.readEntity(String.class);
+            getResponse().setEntity(entity);
+            getResponse().setHeaders(clientResponse1.getMetadata());
+            if (StringUtils.isNotBlank(entity)) {
+                JSONObject jsonObj = new JSONObject(entity);
+                getResponse().setSubject(jsonObj.getString(SUBJECT));
+                JSONArray linksJsonArray = jsonObj.getJSONArray(LINKS);
+                for (int i = 0; i < linksJsonArray.length(); i++) {
+                    WebFingerLink webFingerLink = new WebFingerLink();
+                    webFingerLink.setRel(linksJsonArray.getJSONObject(i).getString(REL));
+                    webFingerLink.setHref(linksJsonArray.getJSONObject(i).getString(HREF));
+
+                    getResponse().getLinks().add(webFingerLink);
+                }
+            }
+        } catch (JSONException e) {
+            LOG.error(e.getMessage(), e);
+        } catch (Exception e) {
+            LOG.error(e.getMessage(), e);
+        }
+
+        return getResponse();
+    }
+
+}
\ No newline at end of file
diff --git a/oxAuth/Client/src/main/java/org/gluu/oxauth/client/OpenIdConnectDiscoveryRequest.java b/oxAuth/Client/src/main/java/org/gluu/oxauth/client/OpenIdConnectDiscoveryRequest.java
new file mode 100644
index 00000000..9d2397b2
--- /dev/null
+++ b/oxAuth/Client/src/main/java/org/gluu/oxauth/client/OpenIdConnectDiscoveryRequest.java
@@ -0,0 +1,133 @@
+/*
+ * oxAuth is available under the MIT License (2008). See http://opensource.org/licenses/MIT for full text.
+ *
+ * Copyright (c) 2014, Gluu
+ */
+
+package org.gluu.oxauth.client;
+
+import static org.gluu.oxauth.model.discovery.WebFingerParam.REL;
+import static org.gluu.oxauth.model.discovery.WebFingerParam.REL_VALUE;
+import static org.gluu.oxauth.model.discovery.WebFingerParam.RESOURCE;
+import static org.gluu.oxauth.model.util.StringUtils.addQueryStringParam;
+
+import java.io.UnsupportedEncodingException;
+import java.net.URI;
+import java.net.URISyntaxException;
+
+import org.apache.commons.lang.StringUtils;
+
+/**
+ * @author Javier Rojas Blum Date: 01.28.2013
+ */
+public class OpenIdConnectDiscoveryRequest extends BaseRequest {
+
+    private String resource;
+    private String host;
+    private String path;
+
+    public OpenIdConnectDiscoveryRequest(String resource) throws URISyntaxException {
+        this.resource = resource;
+
+        if (StringUtils.isBlank(resource)) {
+            throw new IllegalArgumentException("Resource cannot be null");
+        }
+        if (resource.startsWith("=") || resource.startsWith("@") || resource.startsWith("!")) { // XRI
+            throw new UnsupportedOperationException("XRI is not supported"); // TODO: Add support for XRI
+        } else if (resource.contains("@")) { // email
+            this.host = resource.substring(resource.indexOf("@") + 1);
+        } else {
+            if (!resource.contains("://")) {
+                // If the user input Identifier does not have an RFC 3986 "scheme" portion,
+                // the string is interpreted as authority path-abempty [ "?" query ] [ "#" fragment ] of RFC 3986.
+                // In this case, the https scheme is assumed, and the normalized URL will be formed by prefixing
+                // https:// to the string.
+                resource = "https://" + resource;
+            }
+
+            URI uri = new URI(resource);
+            this.host = uri.getHost();
+            if (uri.getPort() != -1) {
+                this.host += ":" + uri.getPort();
+            }
+            if (StringUtils.isNotBlank(uri.getPath()) && !uri.getPath().equals(uri.getHost()) && !uri.getPath().equals("/")) {
+                this.path = uri.getPath();
+            }
+        }
+    }
+
+    /**
+     * Returns the Identifier of the target End-User that is the subject of the discovery request.
+     *
+     * @return The Identifier of the target End-User that is the subject of the discovery request.
+     */
+    public String getResource() {
+        return resource;
+    }
+
+    /**
+     * Sets the Identifier of the target End-User that is the subject of the discovery request.
+     *
+     * @param resource The Identifier of the target End-User that is the subject of the discovery request.
+     */
+    public void setResource(String resource) {
+        this.resource = resource;
+    }
+
+    /**
+     * Returns the Server where a WebFinger service is hosted.
+     *
+     * @return The Server where a WebFinger service is hosted.
+     */
+    public String getHost() {
+        return host;
+    }
+
+    /**
+     * Sets the Server where a WebFinger service is hosted.
+     *
+     * @param host The Server where a WebFinger service is hosted.
+     */
+    public void setHost(String host) {
+        this.host = host;
+    }
+
+    /**
+     * If the Issuer value contains a path component, any terminating / must be removed before
+     * appending /.well-known/openid-configuration. Then the Client may make a new request using the path.
+     *
+     * @return The path component.
+     */
+    public String getPath() {
+        return path;
+    }
+
+    /**
+     * Sets the path component.
+     *
+     * @param path The path component.
+     */
+    public void setPath(String path) {
+        this.path = path;
+    }
+
+    /**
+     * Returns a query string with the parameters of the OpenID Connect Discovery request.
+     * Any <code>null</code> or empty parameter will be omitted.
+     *
+     * @return A query string of parameters.
+     */
+    @Override
+    public String getQueryString() {
+        StringBuilder queryStringBuilder = new StringBuilder();
+
+        try {
+            addQueryStringParam(queryStringBuilder, RESOURCE, resource);
+            addQueryStringParam(queryStringBuilder, REL, REL_VALUE);
+        } catch (UnsupportedEncodingException e) {
+            e.printStackTrace();
+        }
+
+        return queryStringBuilder.toString();
+    }
+}
\ No newline at end of file
diff --git a/oxAuth/Client/src/main/java/org/gluu/oxauth/client/OpenIdConnectDiscoveryResponse.java b/oxAuth/Client/src/main/java/org/gluu/oxauth/client/OpenIdConnectDiscoveryResponse.java
new file mode 100644
index 00000000..d212ad30
--- /dev/null
+++ b/oxAuth/Client/src/main/java/org/gluu/oxauth/client/OpenIdConnectDiscoveryResponse.java
@@ -0,0 +1,47 @@
+/*
+ * oxAuth is available under the MIT License (2008). See http://opensource.org/licenses/MIT for full text.
+ *
+ * Copyright (c) 2014, Gluu
+ */
+
+package org.gluu.oxauth.client;
+
+import java.util.ArrayList;
+import java.util.List;
+
+import org.gluu.oxauth.model.discovery.WebFingerLink;
+
+/**
+ * @author Javier Rojas Blum Date: 01.28.2013
+ */
+public class OpenIdConnectDiscoveryResponse extends BaseResponse {
+
+    private String subject;
+    private List<WebFingerLink> links;
+
+    /**
+     * Constructs an OpenID Connect Discovery Response.
+     *
+     * @param status The response status code.
+     */
+    public OpenIdConnectDiscoveryResponse(int status) {
+        super(status);
+        links = new ArrayList<WebFingerLink>();
+    }
+
+    public String getSubject() {
+        return subject;
+    }
+
+    public void setSubject(String subject) {
+        this.subject = subject;
+    }
+
+    public List<WebFingerLink> getLinks() {
+        return links;
+    }
+
+    public void setLinks(List<WebFingerLink> links) {
+        this.links = links;
+    }
+}
\ No newline at end of file
diff --git a/oxAuth/Client/src/main/java/org/gluu/oxauth/client/QueryStringDecoder.java b/oxAuth/Client/src/main/java/org/gluu/oxauth/client/QueryStringDecoder.java
new file mode 100644
index 00000000..755b1d2a
--- /dev/null
+++ b/oxAuth/Client/src/main/java/org/gluu/oxauth/client/QueryStringDecoder.java
@@ -0,0 +1,51 @@
+/*
+ * oxAuth is available under the MIT License (2008). See http://opensource.org/licenses/MIT for full text.
+ *
+ * Copyright (c) 2014, Gluu
+ */
+
+package org.gluu.oxauth.client;
+
+import java.util.HashMap;
+import java.util.Map;
+
+import org.apache.commons.lang.StringUtils;
+
+/**
+ * Provides functionality to parse query strings.
+ *
+ * @author Javier Rojas Blum Date: 09.29.2011
+ */
+public class QueryStringDecoder {
+
+    /**
+     * Avoid instance creation
+     */
+    private QueryStringDecoder() {
+    }
+
+    /**
+     * Decodes a query string and returns a map with the parsed query string
+     * parameters as keys and its values.
+     *
+     * @param queryString The query string.
+     * @return A map with the parsed query string parameters and its values.
+     */
+    public static Map<String, String> decode(String queryString) {
+        Map<String, String> map = new HashMap<String, String>();
+
+        if (queryString != null) {
+            String[] params = queryString.split("&");
+            for (String param : params) {
+                String[] nameValue = param.split("=");
+                String name = nameValue.length > 0 ? nameValue[0] : "";
+                String value = nameValue.length > 1 ? nameValue[1] : "";
+                if (StringUtils.isNotBlank(name)) {
+                    map.put(name, value);
+                }
+            }
+        }
+
+        return map;
+    }
+}
\ No newline at end of file
diff --git a/oxAuth/Client/src/main/java/org/gluu/oxauth/client/RegisterClient.java b/oxAuth/Client/src/main/java/org/gluu/oxauth/client/RegisterClient.java
new file mode 100644
index 00000000..eca73b62
--- /dev/null
+++ b/oxAuth/Client/src/main/java/org/gluu/oxauth/client/RegisterClient.java
@@ -0,0 +1,386 @@
+/*
+ * oxAuth is available under the MIT License (2008). See http://opensource.org/licenses/MIT for full text.
+ *
+ * Copyright (c) 2014, Gluu
+ */
+
+package org.gluu.oxauth.client;
+
+import static org.gluu.oxauth.model.register.RegisterRequestParam.ACCESS_TOKEN_AS_JWT;
+import static org.gluu.oxauth.model.register.RegisterRequestParam.ACCESS_TOKEN_LIFETIME;
+import static org.gluu.oxauth.model.register.RegisterRequestParam.ACCESS_TOKEN_SIGNING_ALG;
+import static org.gluu.oxauth.model.register.RegisterRequestParam.ALLOW_SPONTANEOUS_SCOPES;
+import static org.gluu.oxauth.model.register.RegisterRequestParam.APPLICATION_TYPE;
+import static org.gluu.oxauth.model.register.RegisterRequestParam.AUTHORIZED_ORIGINS;
+import static org.gluu.oxauth.model.register.RegisterRequestParam.BACKCHANNEL_AUTHENTICATION_REQUEST_SIGNING_ALG;
+import static org.gluu.oxauth.model.register.RegisterRequestParam.BACKCHANNEL_CLIENT_NOTIFICATION_ENDPOINT;
+import static org.gluu.oxauth.model.register.RegisterRequestParam.BACKCHANNEL_LOGOUT_SESSION_REQUIRED;
+import static org.gluu.oxauth.model.register.RegisterRequestParam.BACKCHANNEL_LOGOUT_URI;
+import static org.gluu.oxauth.model.register.RegisterRequestParam.BACKCHANNEL_TOKEN_DELIVERY_MODE;
+import static org.gluu.oxauth.model.register.RegisterRequestParam.BACKCHANNEL_USER_CODE_PARAMETER;
+import static org.gluu.oxauth.model.register.RegisterRequestParam.CLAIMS;
+import static org.gluu.oxauth.model.register.RegisterRequestParam.CLAIMS_REDIRECT_URIS;
+import static org.gluu.oxauth.model.register.RegisterRequestParam.CLIENT_NAME;
+import static org.gluu.oxauth.model.register.RegisterRequestParam.CLIENT_URI;
+import static org.gluu.oxauth.model.register.RegisterRequestParam.CONTACTS;
+import static org.gluu.oxauth.model.register.RegisterRequestParam.DEFAULT_ACR_VALUES;
+import static org.gluu.oxauth.model.register.RegisterRequestParam.DEFAULT_MAX_AGE;
+import static org.gluu.oxauth.model.register.RegisterRequestParam.FRONT_CHANNEL_LOGOUT_SESSION_REQUIRED;
+import static org.gluu.oxauth.model.register.RegisterRequestParam.FRONT_CHANNEL_LOGOUT_URI;
+import static org.gluu.oxauth.model.register.RegisterRequestParam.GRANT_TYPES;
+import static org.gluu.oxauth.model.register.RegisterRequestParam.ID_TOKEN_ENCRYPTED_RESPONSE_ALG;
+import static org.gluu.oxauth.model.register.RegisterRequestParam.ID_TOKEN_ENCRYPTED_RESPONSE_ENC;
+import static org.gluu.oxauth.model.register.RegisterRequestParam.ID_TOKEN_SIGNED_RESPONSE_ALG;
+import static org.gluu.oxauth.model.register.RegisterRequestParam.ID_TOKEN_TOKEN_BINDING_CNF;
+import static org.gluu.oxauth.model.register.RegisterRequestParam.INITIATE_LOGIN_URI;
+import static org.gluu.oxauth.model.register.RegisterRequestParam.JWKS;
+import static org.gluu.oxauth.model.register.RegisterRequestParam.JWKS_URI;
+import static org.gluu.oxauth.model.register.RegisterRequestParam.KEEP_CLIENT_AUTHORIZATION_AFTER_EXPIRATION;
+import static org.gluu.oxauth.model.register.RegisterRequestParam.LOGO_URI;
+import static org.gluu.oxauth.model.register.RegisterRequestParam.POLICY_URI;
+import static org.gluu.oxauth.model.register.RegisterRequestParam.POST_LOGOUT_REDIRECT_URIS;
+import static org.gluu.oxauth.model.register.RegisterRequestParam.REDIRECT_URIS;
+import static org.gluu.oxauth.model.register.RegisterRequestParam.REQUEST_OBJECT_ENCRYPTION_ALG;
+import static org.gluu.oxauth.model.register.RegisterRequestParam.REQUEST_OBJECT_ENCRYPTION_ENC;
+import static org.gluu.oxauth.model.register.RegisterRequestParam.REQUEST_OBJECT_SIGNING_ALG;
+import static org.gluu.oxauth.model.register.RegisterRequestParam.REQUEST_URIS;
+import static org.gluu.oxauth.model.register.RegisterRequestParam.REQUIRE_AUTH_TIME;
+import static org.gluu.oxauth.model.register.RegisterRequestParam.RESPONSE_TYPES;
+import static org.gluu.oxauth.model.register.RegisterRequestParam.RPT_AS_JWT;
+import static org.gluu.oxauth.model.register.RegisterRequestParam.RUN_INTROSPECTION_SCRIPT_BEFORE_ACCESS_TOKEN_CREATION_AS_JWT_AND_INCLUDE_CLAIMS;
+import static org.gluu.oxauth.model.register.RegisterRequestParam.SCOPE;
+import static org.gluu.oxauth.model.register.RegisterRequestParam.SCOPES;
+import static org.gluu.oxauth.model.register.RegisterRequestParam.SECTOR_IDENTIFIER_URI;
+import static org.gluu.oxauth.model.register.RegisterRequestParam.SOFTWARE_ID;
+import static org.gluu.oxauth.model.register.RegisterRequestParam.SOFTWARE_STATEMENT;
+import static org.gluu.oxauth.model.register.RegisterRequestParam.SOFTWARE_VERSION;
+import static org.gluu.oxauth.model.register.RegisterRequestParam.SPONTANEOUS_SCOPES;
+import static org.gluu.oxauth.model.register.RegisterRequestParam.SUBJECT_TYPE;
+import static org.gluu.oxauth.model.register.RegisterRequestParam.TLS_CLIENT_AUTH_SUBJECT_DN;
+import static org.gluu.oxauth.model.register.RegisterRequestParam.TOKEN_ENDPOINT_AUTH_METHOD;
+import static org.gluu.oxauth.model.register.RegisterRequestParam.TOKEN_ENDPOINT_AUTH_SIGNING_ALG;
+import static org.gluu.oxauth.model.register.RegisterRequestParam.TOS_URI;
+import static org.gluu.oxauth.model.register.RegisterRequestParam.USERINFO_ENCRYPTED_RESPONSE_ALG;
+import static org.gluu.oxauth.model.register.RegisterRequestParam.USERINFO_ENCRYPTED_RESPONSE_ENC;
+import static org.gluu.oxauth.model.register.RegisterRequestParam.USERINFO_SIGNED_RESPONSE_ALG;
+import static org.gluu.oxauth.model.util.StringUtils.implode;
+
+import java.util.List;
+import java.util.Map;
+
+import javax.ws.rs.HttpMethod;
+import javax.ws.rs.client.Entity;
+import javax.ws.rs.client.Invocation.Builder;
+import javax.ws.rs.core.MediaType;
+
+import org.apache.commons.lang.StringUtils;
+import org.apache.log4j.Logger;
+import org.gluu.oxauth.model.register.ApplicationType;
+import org.gluu.oxauth.util.ClientUtil;
+import org.jboss.resteasy.client.jaxrs.ClientHttpEngine;
+import org.jboss.resteasy.client.jaxrs.ResteasyClientBuilder;
+import org.json.JSONArray;
+import org.json.JSONObject;
+
+/**
+ * Encapsulates functionality to make Register request calls to an authorization server via REST Services.
+ *
+ * @author Javier Rojas Blum
+ * @author Yuriy Zabrovarnyy
+ * @author Yuriy Movchan
+ * @version August 20, 2019
+ */
+public class RegisterClient extends BaseClient<RegisterRequest, RegisterResponse> {
+
+    private static final Logger LOG = Logger.getLogger(RegisterClient.class);
+
+    /**
+     * Construct a register client by providing an URL where the REST service is located.
+     *
+     * @param url The REST service location.
+     */
+    public RegisterClient(String url) {
+        super(url);
+    }
+
+    @Override
+    public String getHttpMethod() {
+        if (getRequest() != null) {
+            if (StringUtils.isNotBlank(getRequest().getHttpMethod())) {
+                return getRequest().getHttpMethod();
+            }
+            if (getRequest().getRegistrationAccessToken() != null) {
+                return HttpMethod.GET;
+            }
+        }
+
+        return HttpMethod.POST;
+    }
+
+    /**
+     * Executes the call to the REST service requesting to register and process the response.
+     *
+     * @param applicationType The application type.
+     * @param clientName      The client name.
+     * @param redirectUri     A list of space-delimited redirection URIs.
+     * @return The service response.
+     */
+    public RegisterResponse execRegister(ApplicationType applicationType,
+                                         String clientName, List<String> redirectUri) {
+        setRequest(new RegisterRequest(applicationType, clientName, redirectUri));
+
+        return exec();
+    }
+
+    public RegisterResponse exec() {
+        initClientRequest();
+        return _exec();
+    }
+
+    @Deprecated
+    public RegisterResponse exec(ClientHttpEngine engine) {
+    	resteasyClient = ((ResteasyClientBuilder) ResteasyClientBuilder.newBuilder()).httpEngine(engine).build();
+    	webTarget = resteasyClient.target(getUrl());
+
+        return _exec();
+    }
+
+    private RegisterResponse _exec() {
+        try {
+            // Prepare request parameters
+    //        clientRequest.setHttpMethod(getHttpMethod());
+
+            Entity requestEntity = null;
+			// POST - Client Register, PUT - update client
+            if (getHttpMethod().equals(HttpMethod.POST) || getHttpMethod().equals(HttpMethod.PUT)) {
+                JSONObject requestBody = new JSONObject();
+                if (getRequest().getRedirectUris() != null && !getRequest().getRedirectUris().isEmpty()) {
+                    requestBody.put(REDIRECT_URIS.toString(), new JSONArray(getRequest().getRedirectUris()));
+                }
+                if (getRequest().getClaimsRedirectUris() != null && !getRequest().getClaimsRedirectUris().isEmpty()) {
+                    requestBody.put(CLAIMS_REDIRECT_URIS.toString(), new JSONArray(getRequest().getClaimsRedirectUris()));
+                }
+                if (getRequest().getResponseTypes() != null && !getRequest().getResponseTypes().isEmpty()) {
+                    requestBody.put(RESPONSE_TYPES.toString(), new JSONArray(getRequest().getResponseTypes_()));
+                }
+                if (getRequest().getGrantTypes() != null && !getRequest().getGrantTypes().isEmpty()) {
+                    requestBody.put(GRANT_TYPES.toString(), new JSONArray(getRequest().getGrantTypes()));
+                }
+                if (getRequest().getApplicationType() != null) {
+                    requestBody.put(APPLICATION_TYPE.toString(), getRequest().getApplicationType());
+                }
+                if (getRequest().getContacts() != null && !getRequest().getContacts().isEmpty()) {
+                    requestBody.put(CONTACTS.toString(), new JSONArray(getRequest().getContacts()));
+                }
+                if (StringUtils.isNotBlank(getRequest().getClientName())) {
+                    requestBody.put(CLIENT_NAME.toString(), getRequest().getClientName());
+                }
+                if (StringUtils.isNotBlank(getRequest().getIdTokenTokenBindingCnf())) {
+                    requestBody.put(ID_TOKEN_TOKEN_BINDING_CNF.toString(), getRequest().getIdTokenTokenBindingCnf());
+                }
+                if (StringUtils.isNotBlank(getRequest().getLogoUri())) {
+                    requestBody.put(LOGO_URI.toString(), getRequest().getLogoUri());
+                }
+                if (StringUtils.isNotBlank(getRequest().getClientUri())) {
+                    requestBody.put(CLIENT_URI.toString(), getRequest().getClientUri());
+                }
+                if (StringUtils.isNotBlank(getRequest().getPolicyUri())) {
+                    requestBody.put(POLICY_URI.toString(), getRequest().getPolicyUri());
+                }
+                if (StringUtils.isNotBlank(getRequest().getTosUri())) {
+                    requestBody.put(TOS_URI.toString(), getRequest().getTosUri());
+                }
+                if (StringUtils.isNotBlank(getRequest().getJwksUri())) {
+                    requestBody.put(JWKS_URI.toString(), getRequest().getJwksUri());
+                }
+                if (StringUtils.isNotBlank(getRequest().getJwks())) {
+                    requestBody.put(JWKS.toString(), getRequest().getJwks());
+                }
+                if (StringUtils.isNotBlank(getRequest().getSectorIdentifierUri())) {
+                    requestBody.put(SECTOR_IDENTIFIER_URI.toString(), getRequest().getSectorIdentifierUri());
+                }
+                if (getRequest().getSubjectType() != null) {
+                    requestBody.put(SUBJECT_TYPE.toString(), getRequest().getSubjectType());
+                }
+                if (getRequest().getAccessTokenAsJwt() != null) {
+                    requestBody.put(ACCESS_TOKEN_AS_JWT.toString(), getRequest().getAccessTokenAsJwt().toString());
+                }
+                if (getRequest().getAccessTokenSigningAlg() != null) {
+                    requestBody.put(ACCESS_TOKEN_SIGNING_ALG.toString(), getRequest().getAccessTokenSigningAlg().toString());
+                }
+                if (getRequest().getRptAsJwt() != null) {
+                    requestBody.put(RPT_AS_JWT.toString(), getRequest().getRptAsJwt().toString());
+                }
+                if (getRequest().getTlsClientAuthSubjectDn() != null) {
+                    requestBody.put(TLS_CLIENT_AUTH_SUBJECT_DN.toString(), getRequest().getTlsClientAuthSubjectDn());
+                }
+                if (getRequest().getAllowSpontaneousScopes() != null) {
+                    requestBody.put(ALLOW_SPONTANEOUS_SCOPES.toString(), getRequest().getAllowSpontaneousScopes());
+                }
+                if (getRequest().getSpontaneousScopes() != null) {
+                    requestBody.put(SPONTANEOUS_SCOPES.toString(), new JSONArray(getRequest().getSpontaneousScopes()));
+                }
+                if (getRequest().getRunIntrospectionScriptBeforeAccessTokenAsJwtCreationAndIncludeClaims() != null) {
+                    requestBody.put(RUN_INTROSPECTION_SCRIPT_BEFORE_ACCESS_TOKEN_CREATION_AS_JWT_AND_INCLUDE_CLAIMS.toString(), getRequest().getRunIntrospectionScriptBeforeAccessTokenAsJwtCreationAndIncludeClaims().toString());
+                }
+                if (getRequest().getKeepClientAuthorizationAfterExpiration() != null) {
+                    requestBody.put(KEEP_CLIENT_AUTHORIZATION_AFTER_EXPIRATION.toString(), getRequest().getKeepClientAuthorizationAfterExpiration().toString());
+                }
+                if (getRequest().getIdTokenSignedResponseAlg() != null) {
+                    requestBody.put(ID_TOKEN_SIGNED_RESPONSE_ALG.toString(), getRequest().getIdTokenSignedResponseAlg().getName());
+                }
+                if (getRequest().getIdTokenEncryptedResponseAlg() != null) {
+                    requestBody.put(ID_TOKEN_ENCRYPTED_RESPONSE_ALG.toString(), getRequest().getIdTokenEncryptedResponseAlg().getName());
+                }
+                if (getRequest().getIdTokenEncryptedResponseEnc() != null) {
+                    requestBody.put(ID_TOKEN_ENCRYPTED_RESPONSE_ENC.toString(), getRequest().getIdTokenEncryptedResponseEnc().getName());
+                }
+                if (getRequest().getUserInfoSignedResponseAlg() != null) {
+                    requestBody.put(USERINFO_SIGNED_RESPONSE_ALG.toString(), getRequest().getUserInfoSignedResponseAlg().getName());
+                }
+                if (getRequest().getUserInfoEncryptedResponseAlg() != null) {
+                    requestBody.put(USERINFO_ENCRYPTED_RESPONSE_ALG.toString(), getRequest().getUserInfoEncryptedResponseAlg().getName());
+                }
+                if (getRequest().getUserInfoEncryptedResponseEnc() != null) {
+                    requestBody.put(USERINFO_ENCRYPTED_RESPONSE_ENC.toString(), getRequest().getUserInfoEncryptedResponseEnc().getName());
+                }
+                if (getRequest().getRequestObjectSigningAlg() != null) {
+                    requestBody.put(REQUEST_OBJECT_SIGNING_ALG.toString(), getRequest().getRequestObjectSigningAlg().getName());
+                }
+                if (getRequest().getRequestObjectEncryptionAlg() != null) {
+                    requestBody.put(REQUEST_OBJECT_ENCRYPTION_ALG.toString(), getRequest().getRequestObjectEncryptionAlg().getName());
+                }
+                if (getRequest().getRequestObjectEncryptionEnc() != null) {
+                    requestBody.put(REQUEST_OBJECT_ENCRYPTION_ENC.toString(), getRequest().getRequestObjectEncryptionEnc().getName());
+                }
+                if (getRequest().getTokenEndpointAuthMethod() != null) {
+                    requestBody.put(TOKEN_ENDPOINT_AUTH_METHOD.toString(), getRequest().getTokenEndpointAuthMethod());
+                }
+                if (getRequest().getTokenEndpointAuthSigningAlg() != null) {
+                    requestBody.put(TOKEN_ENDPOINT_AUTH_SIGNING_ALG.toString(), getRequest().getTokenEndpointAuthSigningAlg());
+                }
+                if (getRequest().getDefaultMaxAge() != null) {
+                    requestBody.put(DEFAULT_MAX_AGE.toString(), getRequest().getDefaultMaxAge());
+                }
+                if (getRequest().getRequireAuthTime() != null) {
+                    requestBody.put(REQUIRE_AUTH_TIME.toString(), getRequest().getRequireAuthTime());
+                }
+                if (getRequest().getDefaultAcrValues() != null && !getRequest().getDefaultAcrValues().isEmpty()) {
+                    requestBody.put(DEFAULT_ACR_VALUES.toString(), getRequest().getDefaultAcrValues());
+                }
+                if (StringUtils.isNotBlank(getRequest().getInitiateLoginUri())) {
+                    requestBody.put(INITIATE_LOGIN_URI.toString(), getRequest().getInitiateLoginUri());
+                }
+                if (getRequest().getPostLogoutRedirectUris() != null && !getRequest().getPostLogoutRedirectUris().isEmpty()) {
+                    requestBody.put(POST_LOGOUT_REDIRECT_URIS.toString(), getRequest().getPostLogoutRedirectUris());
+                }
+                if (getRequest().getFrontChannelLogoutUris() != null && !getRequest().getFrontChannelLogoutUris().isEmpty()) {
+                    requestBody.put(FRONT_CHANNEL_LOGOUT_URI.getName(), getRequest().getFrontChannelLogoutUris());
+                }
+                if (getRequest().getFrontChannelLogoutSessionRequired() != null) {
+                    requestBody.put(FRONT_CHANNEL_LOGOUT_SESSION_REQUIRED.getName(), getRequest().getFrontChannelLogoutSessionRequired());
+                }
+                if (getRequest().getBackchannelLogoutUris() != null && !getRequest().getBackchannelLogoutUris().isEmpty()) {
+                    requestBody.put(BACKCHANNEL_LOGOUT_URI.getName(), getRequest().getBackchannelLogoutUris());
+                }
+                if (getRequest().getBackchannelLogoutSessionRequired() != null) {
+                    requestBody.put(BACKCHANNEL_LOGOUT_SESSION_REQUIRED.getName(), getRequest().getBackchannelLogoutSessionRequired());
+                }
+                if (getRequest().getRequestUris() != null && !getRequest().getRequestUris().isEmpty()) {
+                    requestBody.put(REQUEST_URIS.toString(), new JSONArray(getRequest().getRequestUris()));
+                }
+                if (getRequest().getAuthorizedOrigins() != null && !getRequest().getAuthorizedOrigins().isEmpty()) {
+                    requestBody.put(AUTHORIZED_ORIGINS.toString(), new JSONArray(getRequest().getAuthorizedOrigins()));
+                }
+                if (getRequest().getAccessTokenLifetime() != null) {
+                    requestBody.put(ACCESS_TOKEN_LIFETIME.toString(), getRequest().getAccessTokenLifetime());
+                }
+                if (StringUtils.isNotBlank(getRequest().getSoftwareId())) {
+                    requestBody.put(SOFTWARE_ID.toString(), getRequest().getSoftwareId());
+                }
+                if (StringUtils.isNotBlank(getRequest().getSoftwareVersion())) {
+                    requestBody.put(SOFTWARE_VERSION.toString(), getRequest().getSoftwareVersion());
+                }
+                if (StringUtils.isNotBlank(getRequest().getSoftwareStatement())) {
+                    requestBody.put(SOFTWARE_STATEMENT.toString(), getRequest().getSoftwareStatement());
+                }
+
+                if (getRequest().getScopes() != null && !getRequest().getScopes().isEmpty()) {
+                    requestBody.put(SCOPES.toString(), new JSONArray(getRequest().getScopes()));
+                } else if (getRequest().getScope() != null && !getRequest().getScope().isEmpty()) {
+                    String spaceSeparatedScope = implode(getRequest().getScope(), " ");
+                    requestBody.put(SCOPE.toString(), spaceSeparatedScope);
+                }
+
+                if (getRequest().getClaims() != null && !getRequest().getClaims().isEmpty()) {
+                    String spaceSeparatedClaims = implode(getRequest().getClaims(), " ");
+                    requestBody.put(CLAIMS.toString(), spaceSeparatedClaims);
+                }
+
+                // CIBA
+                if (getRequest().getBackchannelTokenDeliveryMode() != null) {
+                    requestBody.put(BACKCHANNEL_TOKEN_DELIVERY_MODE.toString(), getRequest().getBackchannelTokenDeliveryMode());
+                }
+                if (StringUtils.isNotBlank(getRequest().getBackchannelClientNotificationEndpoint())) {
+                	requestBody.put(BACKCHANNEL_CLIENT_NOTIFICATION_ENDPOINT.toString(), getRequest().getBackchannelClientNotificationEndpoint());
+                }
+                if (getRequest().getBackchannelAuthenticationRequestSigningAlg() != null) {
+                    requestBody.put(BACKCHANNEL_AUTHENTICATION_REQUEST_SIGNING_ALG.toString(), getRequest().getBackchannelAuthenticationRequestSigningAlg());
+                }
+                if (getRequest().getBackchannelUserCodeParameter() != null) {
+                    requestBody.put(BACKCHANNEL_USER_CODE_PARAMETER.toString(), getRequest().getBackchannelUserCodeParameter());
+                }
+
+                // Custom params
+                final Map<String, String> customAttributes = getRequest().getCustomAttributes();
+                if (customAttributes != null && !customAttributes.isEmpty()) {
+                    for (Map.Entry<String, String> entry : customAttributes.entrySet()) {
+                        final String name = entry.getKey();
+                        final String value = entry.getValue();
+                        if (StringUtils.isNotBlank(name) && StringUtils.isNotBlank(value)) {
+                            requestBody.put(name, value);
+                        }
+                    }
+                }
+                requestEntity = Entity.json(ClientUtil.toPrettyJson(requestBody));
+            }
+            
+            Builder clientRequest = webTarget.request();
+            applyCookies(clientRequest);
+
+            if (getHttpMethod().equals(HttpMethod.POST) || getHttpMethod().equals(HttpMethod.PUT)) {
+                clientRequest.header("Content-Type", getRequest().getContentType());
+                clientRequest.accept(getRequest().getMediaType());
+
+                if (StringUtils.isNotBlank(getRequest().getRegistrationAccessToken())) {
+                    clientRequest.header("Authorization", "Bearer " + getRequest().getRegistrationAccessToken());
+                }
+            } else { // GET, Client Read
+                clientRequest.accept(MediaType.APPLICATION_JSON);
+
+                if (StringUtils.isNotBlank(getRequest().getRegistrationAccessToken())) {
+                    clientRequest.header("Authorization", "Bearer " + getRequest().getRegistrationAccessToken());
+                }
+            }
+
+            // Call REST Service and handle response
+
+            if (getHttpMethod().equals(HttpMethod.POST)) {
+                clientResponse = clientRequest.buildPost(requestEntity).invoke();
+            } else if (getHttpMethod().equals(HttpMethod.PUT)) {
+                clientResponse = clientRequest.buildPut(requestEntity).invoke();
+            } else if (getHttpMethod().equals(HttpMethod.DELETE)) {
+                clientResponse = clientRequest.buildDelete().invoke();
+            } else { // GET
+                clientResponse = clientRequest.buildGet().invoke();
+            }
+            setResponse(new RegisterResponse(clientResponse));
+        } catch (Exception e) {
+            LOG.error(e.getMessage(), e);
+        } finally {
+            closeConnection();
+        }
+
+        return getResponse();
+    }
+}
\ No newline at end of file
diff --git a/oxAuth/Client/src/main/java/org/gluu/oxauth/client/RegisterRequest.java b/oxAuth/Client/src/main/java/org/gluu/oxauth/client/RegisterRequest.java
new file mode 100644
index 00000000..7d87cd17
--- /dev/null
+++ b/oxAuth/Client/src/main/java/org/gluu/oxauth/client/RegisterRequest.java
@@ -0,0 +1,1822 @@
+/*
+ * oxAuth is available under the MIT License (2008). See http://opensource.org/licenses/MIT for full text.
+ *
+ * Copyright (c) 2014, Gluu
+ */
+
+package org.gluu.oxauth.client;
+
+import static org.gluu.oxauth.model.register.RegisterRequestParam.ACCESS_TOKEN_AS_JWT;
+import static org.gluu.oxauth.model.register.RegisterRequestParam.ACCESS_TOKEN_LIFETIME;
+import static org.gluu.oxauth.model.register.RegisterRequestParam.ACCESS_TOKEN_SIGNING_ALG;
+import static org.gluu.oxauth.model.register.RegisterRequestParam.ALLOW_SPONTANEOUS_SCOPES;
+import static org.gluu.oxauth.model.register.RegisterRequestParam.APPLICATION_TYPE;
+import static org.gluu.oxauth.model.register.RegisterRequestParam.AUTHORIZED_ORIGINS;
+import static org.gluu.oxauth.model.register.RegisterRequestParam.BACKCHANNEL_AUTHENTICATION_REQUEST_SIGNING_ALG;
+import static org.gluu.oxauth.model.register.RegisterRequestParam.BACKCHANNEL_CLIENT_NOTIFICATION_ENDPOINT;
+import static org.gluu.oxauth.model.register.RegisterRequestParam.BACKCHANNEL_LOGOUT_SESSION_REQUIRED;
+import static org.gluu.oxauth.model.register.RegisterRequestParam.BACKCHANNEL_LOGOUT_URI;
+import static org.gluu.oxauth.model.register.RegisterRequestParam.BACKCHANNEL_TOKEN_DELIVERY_MODE;
+import static org.gluu.oxauth.model.register.RegisterRequestParam.BACKCHANNEL_USER_CODE_PARAMETER;
+import static org.gluu.oxauth.model.register.RegisterRequestParam.CLAIMS;
+import static org.gluu.oxauth.model.register.RegisterRequestParam.CLAIMS_REDIRECT_URIS;
+import static org.gluu.oxauth.model.register.RegisterRequestParam.CLIENT_NAME;
+import static org.gluu.oxauth.model.register.RegisterRequestParam.CLIENT_URI;
+import static org.gluu.oxauth.model.register.RegisterRequestParam.CONTACTS;
+import static org.gluu.oxauth.model.register.RegisterRequestParam.DEFAULT_ACR_VALUES;
+import static org.gluu.oxauth.model.register.RegisterRequestParam.DEFAULT_MAX_AGE;
+import static org.gluu.oxauth.model.register.RegisterRequestParam.FRONT_CHANNEL_LOGOUT_SESSION_REQUIRED;
+import static org.gluu.oxauth.model.register.RegisterRequestParam.FRONT_CHANNEL_LOGOUT_URI;
+import static org.gluu.oxauth.model.register.RegisterRequestParam.GRANT_TYPES;
+import static org.gluu.oxauth.model.register.RegisterRequestParam.ID_TOKEN_ENCRYPTED_RESPONSE_ALG;
+import static org.gluu.oxauth.model.register.RegisterRequestParam.ID_TOKEN_ENCRYPTED_RESPONSE_ENC;
+import static org.gluu.oxauth.model.register.RegisterRequestParam.ID_TOKEN_SIGNED_RESPONSE_ALG;
+import static org.gluu.oxauth.model.register.RegisterRequestParam.ID_TOKEN_TOKEN_BINDING_CNF;
+import static org.gluu.oxauth.model.register.RegisterRequestParam.INITIATE_LOGIN_URI;
+import static org.gluu.oxauth.model.register.RegisterRequestParam.JWKS;
+import static org.gluu.oxauth.model.register.RegisterRequestParam.JWKS_URI;
+import static org.gluu.oxauth.model.register.RegisterRequestParam.KEEP_CLIENT_AUTHORIZATION_AFTER_EXPIRATION;
+import static org.gluu.oxauth.model.register.RegisterRequestParam.LOGO_URI;
+import static org.gluu.oxauth.model.register.RegisterRequestParam.POLICY_URI;
+import static org.gluu.oxauth.model.register.RegisterRequestParam.POST_LOGOUT_REDIRECT_URIS;
+import static org.gluu.oxauth.model.register.RegisterRequestParam.REDIRECT_URIS;
+import static org.gluu.oxauth.model.register.RegisterRequestParam.REQUEST_OBJECT_ENCRYPTION_ALG;
+import static org.gluu.oxauth.model.register.RegisterRequestParam.REQUEST_OBJECT_ENCRYPTION_ENC;
+import static org.gluu.oxauth.model.register.RegisterRequestParam.REQUEST_OBJECT_SIGNING_ALG;
+import static org.gluu.oxauth.model.register.RegisterRequestParam.REQUEST_URIS;
+import static org.gluu.oxauth.model.register.RegisterRequestParam.REQUIRE_AUTH_TIME;
+import static org.gluu.oxauth.model.register.RegisterRequestParam.RESPONSE_TYPES;
+import static org.gluu.oxauth.model.register.RegisterRequestParam.RPT_AS_JWT;
+import static org.gluu.oxauth.model.register.RegisterRequestParam.RUN_INTROSPECTION_SCRIPT_BEFORE_ACCESS_TOKEN_CREATION_AS_JWT_AND_INCLUDE_CLAIMS;
+import static org.gluu.oxauth.model.register.RegisterRequestParam.SCOPE;
+import static org.gluu.oxauth.model.register.RegisterRequestParam.SCOPES;
+import static org.gluu.oxauth.model.register.RegisterRequestParam.SECTOR_IDENTIFIER_URI;
+import static org.gluu.oxauth.model.register.RegisterRequestParam.SOFTWARE_ID;
+import static org.gluu.oxauth.model.register.RegisterRequestParam.SOFTWARE_STATEMENT;
+import static org.gluu.oxauth.model.register.RegisterRequestParam.SOFTWARE_VERSION;
+import static org.gluu.oxauth.model.register.RegisterRequestParam.SPONTANEOUS_SCOPES;
+import static org.gluu.oxauth.model.register.RegisterRequestParam.SUBJECT_TYPE;
+import static org.gluu.oxauth.model.register.RegisterRequestParam.TLS_CLIENT_AUTH_SUBJECT_DN;
+import static org.gluu.oxauth.model.register.RegisterRequestParam.TOKEN_ENDPOINT_AUTH_METHOD;
+import static org.gluu.oxauth.model.register.RegisterRequestParam.TOKEN_ENDPOINT_AUTH_SIGNING_ALG;
+import static org.gluu.oxauth.model.register.RegisterRequestParam.TOS_URI;
+import static org.gluu.oxauth.model.register.RegisterRequestParam.USERINFO_ENCRYPTED_RESPONSE_ALG;
+import static org.gluu.oxauth.model.register.RegisterRequestParam.USERINFO_ENCRYPTED_RESPONSE_ENC;
+import static org.gluu.oxauth.model.register.RegisterRequestParam.USERINFO_SIGNED_RESPONSE_ALG;
+import static org.gluu.oxauth.model.util.StringUtils.implode;
+import static org.gluu.oxauth.model.util.StringUtils.toJSONArray;
+
+import java.util.ArrayList;
+import java.util.Collections;
+import java.util.HashMap;
+import java.util.HashSet;
+import java.util.List;
+import java.util.Map;
+import java.util.Set;
+
+import javax.ws.rs.core.MediaType;
+
+import org.apache.commons.lang.StringUtils;
+import org.apache.log4j.Logger;
+import org.gluu.oxauth.model.common.AuthenticationMethod;
+import org.gluu.oxauth.model.common.BackchannelTokenDeliveryMode;
+import org.gluu.oxauth.model.common.GrantType;
+import org.gluu.oxauth.model.common.ResponseType;
+import org.gluu.oxauth.model.common.SubjectType;
+import org.gluu.oxauth.model.crypto.encryption.BlockEncryptionAlgorithm;
+import org.gluu.oxauth.model.crypto.encryption.KeyEncryptionAlgorithm;
+import org.gluu.oxauth.model.crypto.signature.AsymmetricSignatureAlgorithm;
+import org.gluu.oxauth.model.crypto.signature.SignatureAlgorithm;
+import org.gluu.oxauth.model.json.JsonApplier;
+import org.gluu.oxauth.model.register.ApplicationType;
+import org.gluu.oxauth.model.register.RegisterRequestParam;
+import org.gluu.oxauth.util.ClientUtil;
+import org.json.JSONArray;
+import org.json.JSONException;
+import org.json.JSONObject;
+
+import com.fasterxml.jackson.core.JsonProcessingException;
+import com.google.common.collect.Lists;
+import com.google.common.collect.Sets;
+
+/**
+ * Represents a register request to send to the authorization server.
+ *
+ * @author Javier Rojas Blum
+ * @author Yuriy Zabrovarnyy
+ * @version August 20, 2019
+ */
+public class RegisterRequest extends BaseRequest {
+
+    private static final Logger log = Logger.getLogger(RegisterRequest.class);
+
+    private String registrationAccessToken;
+    private List<String> redirectUris;
+    private List<String> claimsRedirectUris;
+
+    /**
+     * code: authorization_code
+     * id_token: implicit
+     * token id_token: implicit
+     * code id_token: authorization_code, implicit
+     * code token: authorization_code, implicit
+     * code token id_token: authorization_code, implicit
+     *
+     * https://openid.net/specs/openid-connect-registration-1_0.html#ClientMetadata
+     */
+    private List<String> responseTypes;
+    private List<GrantType> grantTypes;
+    private ApplicationType applicationType;
+    private List<String> contacts;
+    private String clientName;
+    private String logoUri;
+    private String clientUri;
+    private String policyUri;
+    private List<String> frontChannelLogoutUris;
+    private Boolean frontChannelLogoutSessionRequired;
+    private List<String> backchannelLogoutUris;
+    private Boolean backchannelLogoutSessionRequired;
+    private String tosUri;
+    private String jwksUri;
+    private String jwks;
+    private String sectorIdentifierUri;
+    private String idTokenTokenBindingCnf;
+    private String tlsClientAuthSubjectDn;
+    private Boolean allowSpontaneousScopes;
+    private List<String> spontaneousScopes;
+    private Boolean runIntrospectionScriptBeforeAccessTokenAsJwtCreationAndIncludeClaims;
+    private Boolean keepClientAuthorizationAfterExpiration;
+    private SubjectType subjectType;
+    private Boolean rptAsJwt;
+    private Boolean accessTokenAsJwt;
+    private SignatureAlgorithm accessTokenSigningAlg;
+    private SignatureAlgorithm idTokenSignedResponseAlg;
+    private KeyEncryptionAlgorithm idTokenEncryptedResponseAlg;
+    private BlockEncryptionAlgorithm idTokenEncryptedResponseEnc;
+    private SignatureAlgorithm userInfoSignedResponseAlg;
+    private KeyEncryptionAlgorithm userInfoEncryptedResponseAlg;
+    private BlockEncryptionAlgorithm userInfoEncryptedResponseEnc;
+    private SignatureAlgorithm requestObjectSigningAlg;
+    private KeyEncryptionAlgorithm requestObjectEncryptionAlg;
+    private BlockEncryptionAlgorithm requestObjectEncryptionEnc;
+    private AuthenticationMethod tokenEndpointAuthMethod;
+    private SignatureAlgorithm tokenEndpointAuthSigningAlg;
+    private Integer defaultMaxAge;
+    private Boolean requireAuthTime;
+    private List<String> defaultAcrValues;
+    private String initiateLoginUri;
+    private List<String> postLogoutRedirectUris;
+    private List<String> requestUris;
+    private List<String> authorizedOrigins;
+    private Integer accessTokenLifetime;
+    private String softwareId;
+    private String softwareVersion;
+    private String softwareStatement;
+    private BackchannelTokenDeliveryMode backchannelTokenDeliveryMode;
+    private String backchannelClientNotificationEndpoint;
+    private AsymmetricSignatureAlgorithm backchannelAuthenticationRequestSigningAlg;
+    private Boolean backchannelUserCodeParameter;
+    private List<String> additionalAudience;
+
+    /**
+     * @deprecated This param will be removed in a future version because the correct is 'scope' not 'scopes', see (rfc7591).
+     */
+    private List<String> scopes;
+
+    /**
+     * String containing a space-separated list of scope values.
+     */
+    private List<String> scope;
+
+    /**
+     * String containing a space-separated list of claims that can be requested individually.
+     */
+    private List<String> claims;
+
+    private Map<String, String> customAttributes;
+
+    // internal state
+    private JSONObject jsonObject;
+    private String httpMethod;
+
+    /**
+     * Common constructor.
+     */
+    public RegisterRequest() {
+        setContentType(MediaType.APPLICATION_JSON);
+        setMediaType(MediaType.APPLICATION_JSON);
+
+        this.redirectUris = new ArrayList<String>();
+        this.claimsRedirectUris = new ArrayList<String>();
+        this.responseTypes = new ArrayList<String>();
+        this.grantTypes = new ArrayList<GrantType>();
+        this.contacts = new ArrayList<String>();
+        this.defaultAcrValues = new ArrayList<String>();
+        this.postLogoutRedirectUris = new ArrayList<String>();
+        this.requestUris = new ArrayList<String>();
+        this.authorizedOrigins = new ArrayList<String>();
+        this.scopes = new ArrayList<String>();
+        this.scope = new ArrayList<String>();
+        this.claims = new ArrayList<String>();
+        this.customAttributes = new HashMap<String, String>();
+    }
+
+    /**
+     * Constructs a request for Client Registration
+     *
+     * @param applicationType The application type.
+     * @param clientName      The Client Name
+     * @param redirectUris    A list of redirection URIs.
+     */
+    public RegisterRequest(ApplicationType applicationType, String clientName,
+                           List<String> redirectUris) {
+        this();
+        this.applicationType = applicationType;
+        this.clientName = clientName;
+        this.redirectUris = redirectUris;
+    }
+
+    /**
+     * Constructs a request for Client Read
+     *
+     * @param registrationAccessToken The Registration Access Token.
+     */
+    public RegisterRequest(String registrationAccessToken) {
+        this();
+        this.registrationAccessToken = registrationAccessToken;
+    }
+
+    public String getTlsClientAuthSubjectDn() {
+        return tlsClientAuthSubjectDn;
+    }
+
+    public void setTlsClientAuthSubjectDn(String tlsClientAuthSubjectDn) {
+        this.tlsClientAuthSubjectDn = tlsClientAuthSubjectDn;
+    }
+
+    public Boolean getAllowSpontaneousScopes() {
+        return allowSpontaneousScopes;
+    }
+
+    public void setAllowSpontaneousScopes(Boolean allowSpontaneousScopes) {
+        this.allowSpontaneousScopes = allowSpontaneousScopes;
+    }
+
+    public List<String> getSpontaneousScopes() {
+        return spontaneousScopes;
+    }
+
+    public void setSpontaneousScopes(List<String> spontaneousScopes) {
+        this.spontaneousScopes = spontaneousScopes;
+    }
+
+    public List<String> getAdditionalAudience() {
+        return additionalAudience;
+    }
+
+    public void setAdditionalAudience(List<String> additionalAudience) {
+        this.additionalAudience = additionalAudience;
+    }
+
+    public Boolean getRunIntrospectionScriptBeforeAccessTokenAsJwtCreationAndIncludeClaims() {
+        return runIntrospectionScriptBeforeAccessTokenAsJwtCreationAndIncludeClaims;
+    }
+
+    public void setRunIntrospectionScriptBeforeAccessTokenAsJwtCreationAndIncludeClaims(Boolean runIntrospectionScriptBeforeAccessTokenAsJwtCreationAndIncludeClaims) {
+        this.runIntrospectionScriptBeforeAccessTokenAsJwtCreationAndIncludeClaims = runIntrospectionScriptBeforeAccessTokenAsJwtCreationAndIncludeClaims;
+    }
+
+    public Boolean getKeepClientAuthorizationAfterExpiration() {
+        return keepClientAuthorizationAfterExpiration;
+    }
+
+    public void setKeepClientAuthorizationAfterExpiration(Boolean keepClientAuthorizationAfterExpiration) {
+        this.keepClientAuthorizationAfterExpiration = keepClientAuthorizationAfterExpiration;
+    }
+
+    /**
+     * Returns the Registration Access Token to authorize Client Read requests.
+     *
+     * @return The Registration Access Token.
+     */
+    public String getRegistrationAccessToken() {
+        return registrationAccessToken;
+    }
+
+    /**
+     * Sets the Registration Access Token to authorize Client Read requests.
+     *
+     * @param registrationAccessToken The Registration Access Token.
+     */
+    public void setAccessToken(String registrationAccessToken) {
+        this.registrationAccessToken = registrationAccessToken;
+    }
+
+    public List<String> getBackchannelLogoutUris() {
+        return backchannelLogoutUris;
+    }
+
+    public void setBackchannelLogoutUris(List<String> backchannelLogoutUris) {
+        this.backchannelLogoutUris = backchannelLogoutUris;
+    }
+
+    public Boolean getBackchannelLogoutSessionRequired() {
+        return backchannelLogoutSessionRequired;
+    }
+
+    public void setBackchannelLogoutSessionRequired(Boolean backchannelLogoutSessionRequired) {
+        this.backchannelLogoutSessionRequired = backchannelLogoutSessionRequired;
+    }
+
+    /**
+     * Gets logout uri.
+     *
+     * @return logout uri
+     */
+    public List<String> getFrontChannelLogoutUris() {
+        return frontChannelLogoutUris;
+    }
+
+    /**
+     * Sets logout uri
+     *
+     * @param logoutUris logout uri
+     */
+    public void setFrontChannelLogoutUris(List<String> logoutUris) {
+        this.frontChannelLogoutUris = logoutUris;
+    }
+
+    /**
+     * Gets logout session required.
+     *
+     * @return logout session required
+     */
+    public Boolean getFrontChannelLogoutSessionRequired() {
+        return frontChannelLogoutSessionRequired;
+    }
+
+    /**
+     * Sets front channel logout session required.
+     *
+     * @param frontChannelLogoutSessionRequired front channel logout session required
+     */
+    public void setFrontChannelLogoutSessionRequired(Boolean frontChannelLogoutSessionRequired) {
+        this.frontChannelLogoutSessionRequired = frontChannelLogoutSessionRequired;
+    }
+
+    /**
+     * Returns a list of redirection URIs.
+     *
+     * @return The redirection URIs.
+     */
+    public List<String> getRedirectUris() {
+        return redirectUris;
+    }
+
+    /**
+     * Sets a list of redirection URIs.
+     *
+     * @param redirectUris The redirection URIs.
+     */
+    public void setRedirectUris(List<String> redirectUris) {
+        this.redirectUris = redirectUris;
+    }
+
+    /**
+     * Returns claims redirect URIs.
+     *
+     * @return claims redirect URIs
+     */
+    public List<String> getClaimsRedirectUris() {
+        return claimsRedirectUris;
+    }
+
+    /**
+     * Sets claims redirect URIs.
+     *
+     * @param claimsRedirectUris claims redirect URIs.
+     */
+    public void setClaimsRedirectUris(List<String> claimsRedirectUris) {
+        this.claimsRedirectUris = claimsRedirectUris;
+    }
+
+    /**
+     * Returns a list of the OAuth 2.0 response_type values that the Client is declaring that it will restrict itself
+     * to using.
+     *
+     * @return A list of response types.
+     */
+    public List<ResponseType> getResponseTypes() {
+        Set<ResponseType> types = Sets.newHashSet();
+        responseTypes.forEach(s -> types.addAll(ResponseType.fromString(s, " ")));
+        return Lists.newArrayList(types);
+    }
+
+    /**
+     * Sets a list of the OAuth 2.0 response_type values that the Client is declaring that it will restrict itself to
+     * using. If omitted, the default is that the Client will use only the code response type.
+     *
+     * @param responseTypes A list of response types.
+     */
+    public void setResponseTypes(List<ResponseType> responseTypes) {
+        this.responseTypes = ResponseType.toStringList(responseTypes);
+    }
+
+    public List<String> getResponseTypes_() {
+        return responseTypes;
+    }
+
+    public void setResponseTypes_(List<String> responseTypes) {
+        this.responseTypes = responseTypes;
+    }
+
+
+    /**
+     * Returns a list of the OAuth 2.0 grant types that the Client is declaring that it will restrict itself to using.
+     *
+     * @return A list of grant types.
+     */
+    public List<GrantType> getGrantTypes() {
+        return grantTypes;
+    }
+
+    /**
+     * Sets a list of the OAuth 2.0 grant types that the Client is declaring that it will restrict itself to using.
+     *
+     * @param grantTypes A list of grant types.
+     */
+    public void setGrantTypes(List<GrantType> grantTypes) {
+        this.grantTypes = grantTypes;
+    }
+
+    /**
+     * Returns the application type.
+     *
+     * @return The application type.
+     */
+    public ApplicationType getApplicationType() {
+        return applicationType;
+    }
+
+    /**
+     * Sets the application type. The default if not specified is web.
+     *
+     * @param applicationType The application type.
+     */
+    public void setApplicationType(ApplicationType applicationType) {
+        this.applicationType = applicationType;
+    }
+
+    public String getIdTokenTokenBindingCnf() {
+        return idTokenTokenBindingCnf;
+    }
+
+    public void setIdTokenTokenBindingCnf(String idTokenTokenBindingCnf) {
+        this.idTokenTokenBindingCnf = idTokenTokenBindingCnf;
+    }
+
+    /**
+     * Returns a list of e-mail addresses for people allowed to administer the information
+     * for this Client.
+     *
+     * @return A list of e-mail addresses.
+     */
+    public List<String> getContacts() {
+        return contacts;
+    }
+
+    /**
+     * Sets a list of e-mail addresses for people allowed to administer the information for
+     * this Client.
+     *
+     * @param contacts A list of e-mail addresses.
+     */
+    public void setContacts(List<String> contacts) {
+        this.contacts = contacts;
+    }
+
+    /**
+     * Returns the name of the Client to be presented to the user.
+     *
+     * @return The name of the Client to be presented to the user.
+     */
+    public String getClientName() {
+        return clientName;
+    }
+
+    /**
+     * Sets the name of the Client to be presented to the user.
+     *
+     * @param clientName The name of the Client to be presented to the user.
+     */
+    public void setClientName(String clientName) {
+        this.clientName = clientName;
+    }
+
+    /**
+     * Returns an URL that references a logo for the Client application.
+     *
+     * @return The URL that references a logo for the Client application.
+     */
+    public String getLogoUri() {
+        return logoUri;
+    }
+
+    /**
+     * Sets an URL that references a logo for the Client application.
+     *
+     * @param logoUri The URL that references a logo for the Client application.
+     */
+    public void setLogoUri(String logoUri) {
+        this.logoUri = logoUri;
+    }
+
+    /**
+     * Returns an URL of the home page of the Client.
+     *
+     * @return The URL of the home page of the Client.
+     */
+    public String getClientUri() {
+        return clientUri;
+    }
+
+    /**
+     * Sets an URL of the home page of the Client.
+     *
+     * @param clientUri The URL of the home page of the Client.
+     */
+    public void setClientUri(String clientUri) {
+        this.clientUri = clientUri;
+    }
+
+    /**
+     * Returns an URL that the Relying Party Client provides to the End-User to read about the how the profile data
+     * will be used.
+     *
+     * @return The policy URL.
+     */
+    public String getPolicyUri() {
+        return policyUri;
+    }
+
+    /**
+     * Sets an URL that the Relying Party Client provides to the End-User to read about the how the profile data will
+     * be used.
+     *
+     * @param policyUri The policy URL.
+     */
+    public void setPolicyUri(String policyUri) {
+        this.policyUri = policyUri;
+    }
+
+    /**
+     * Returns an URL that the Relying Party Client provides to the End-User to read about the Relying Party's terms
+     * of service.
+     *
+     * @return The tems of service URL.
+     */
+    public String getTosUri() {
+        return tosUri;
+    }
+
+    /**
+     * Sets an URL that the Relying Party Client provides to the End-User to read about the Relying Party's terms of
+     * service.
+     *
+     * @param tosUri The term of service URL.
+     */
+    public void setTosUri(String tosUri) {
+        this.tosUri = tosUri;
+    }
+
+    /**
+     * Returns the URL for the Client's JSON Web Key Set (JWK) document containing key(s) that are used for signing
+     * requests to the OP. The JWK Set may also contain the Client's encryption keys(s) that are used by the OP to
+     * encrypt the responses to the Client. When both signing and encryption keys are made available, a use (Key Use)
+     * parameter value is required for all keys in the document to indicate each key's intended usage.
+     *
+     * @return The URL for the Client's JSON Web Key Set (JWK) document.
+     */
+    public String getJwksUri() {
+        return jwksUri;
+    }
+
+    /**
+     * Sets the URL for the Client's JSON Web Key Set (JWK) document containing key(s) that are used for signing
+     * requests to the OP. The JWK Set may also contain the Client's encryption keys(s) that are used by the OP to
+     * encrypt the responses to the Client. When both signing and encryption keys are made available, a use (Key Use)
+     * parameter value is required for all keys in the document to indicate each key's intended usage.
+     *
+     * @param jwksUri The URL for the Client's JSON Web Key Set (JWK) document.
+     */
+    public void setJwksUri(String jwksUri) {
+        this.jwksUri = jwksUri;
+    }
+
+    /**
+     * Client's JSON Web Key Set (JWK) document, passed by value. The semantics of the jwks parameter are the same as
+     * the jwks_uri parameter, other than that the JWK Set is passed by value, rather than by reference.
+     * This parameter is intended only to be used by Clients that, for some reason, are unable to use the jwks_uri
+     * parameter, for instance, by native applications that might not have a location to host the contents of the JWK
+     * Set. If a Client can use jwks_uri, it must not use jwks.
+     * One significant downside of jwks is that it does not enable key rotation (which jwks_uri does, as described in
+     * Section 10 of OpenID Connect Core 1.0). The jwks_uri and jwks parameters must not be used together.
+     *
+     * @return The Client's JSON Web Key Set (JWK) document.
+     */
+    public String getJwks() {
+        return jwks;
+    }
+
+    /**
+     * Client's JSON Web Key Set (JWK) document, passed by value. The semantics of the jwks parameter are the same as
+     * the jwks_uri parameter, other than that the JWK Set is passed by value, rather than by reference.
+     * This parameter is intended only to be used by Clients that, for some reason, are unable to use the jwks_uri
+     * parameter, for instance, by native applications that might not have a location to host the contents of the JWK
+     * Set. If a Client can use jwks_uri, it must not use jwks.
+     * One significant downside of jwks is that it does not enable key rotation (which jwks_uri does, as described in
+     * Section 10 of OpenID Connect Core 1.0). The jwks_uri and jwks parameters must not be used together.
+     *
+     * @param jwks The Client's JSON Web Key Set (JWK) document.
+     */
+    public void setJwks(String jwks) {
+        this.jwks = jwks;
+    }
+
+    /**
+     * Returns the URL using the https scheme to be used in calculating Pseudonymous Identifiers by the OP.
+     * The URL references a file with a single JSON array of redirect_uri values.
+     *
+     * @return The sector identifier URL.
+     */
+    public String getSectorIdentifierUri() {
+        return sectorIdentifierUri;
+    }
+
+    /**
+     * Sets the URL using the https scheme to be used in calculating Pseudonymous Identifiers by the OP.
+     * The URL references a file with a single JSON array of redirect_uri values.
+     *
+     * @param sectorIdentifierUri The sector identifier URL.
+     */
+    public void setSectorIdentifierUri(String sectorIdentifierUri) {
+        this.sectorIdentifierUri = sectorIdentifierUri;
+    }
+
+    /**
+     * Returns the Subject Type. Valid types include pairwise and public.
+     *
+     * @return The Subject Type.
+     */
+    public SubjectType getSubjectType() {
+        return subjectType;
+    }
+
+    /**
+     * Sets the Subject Type. Valid types include pairwise and public.
+     *
+     * @param subjectType The Subject Type.
+     */
+    public void setSubjectType(SubjectType subjectType) {
+        this.subjectType = subjectType;
+    }
+
+    public Boolean getRptAsJwt() {
+        return rptAsJwt;
+    }
+
+    public void setRptAsJwt(Boolean rptAsJwt) {
+        this.rptAsJwt = rptAsJwt;
+    }
+
+    public Boolean getAccessTokenAsJwt() {
+        return accessTokenAsJwt;
+    }
+
+    public void setAccessTokenAsJwt(Boolean accessTokenAsJwt) {
+        this.accessTokenAsJwt = accessTokenAsJwt;
+    }
+
+    public SignatureAlgorithm getAccessTokenSigningAlg() {
+        return accessTokenSigningAlg;
+    }
+
+    public void setAccessTokenSigningAlg(SignatureAlgorithm accessTokenSigningAlg) {
+        this.accessTokenSigningAlg = accessTokenSigningAlg;
+    }
+
+    /**
+     * Returns th JWS alg algorithm (JWA) required for the ID Token issued to this client_id.
+     *
+     * @return The JWS algorithm (JWA).
+     */
+    public SignatureAlgorithm getIdTokenSignedResponseAlg() {
+        return idTokenSignedResponseAlg;
+    }
+
+    /**
+     * Sets the JWS alg algorithm (JWA) required for the ID Token issued to this client_id.
+     *
+     * @param idTokenSignedResponseAlg The JWS algorithm (JWA).
+     */
+    public void setIdTokenSignedResponseAlg(SignatureAlgorithm idTokenSignedResponseAlg) {
+        this.idTokenSignedResponseAlg = idTokenSignedResponseAlg;
+    }
+
+    /**
+     * Returns the JWE alg algorithm (JWA) required for encrypting the ID Token issued to this client_id.
+     *
+     * @return The JWE algorithm (JWA).
+     */
+    public KeyEncryptionAlgorithm getIdTokenEncryptedResponseAlg() {
+        return idTokenEncryptedResponseAlg;
+    }
+
+    /**
+     * Sets the JWE alg algorithm (JWA) required for encrypting the ID Token issued to this client_id.
+     *
+     * @param idTokenEncryptedResponseAlg The JWE algorithm (JWA).
+     */
+    public void setIdTokenEncryptedResponseAlg(KeyEncryptionAlgorithm idTokenEncryptedResponseAlg) {
+        this.idTokenEncryptedResponseAlg = idTokenEncryptedResponseAlg;
+    }
+
+    /**
+     * Returns the JWE enc algorithm (JWA) required for symmetric encryption of the ID Token issued to this client_id.
+     *
+     * @return The JWE algorithm (JWA).
+     */
+    public BlockEncryptionAlgorithm getIdTokenEncryptedResponseEnc() {
+        return idTokenEncryptedResponseEnc;
+    }
+
+    /**
+     * Sets the JWE enc algorithm (JWA) required for symmetric encryption of the ID Token issued to this client_id.
+     *
+     * @param idTokenEncryptedResponseEnc The JWE algorithm (JWA).
+     */
+    public void setIdTokenEncryptedResponseEnc(BlockEncryptionAlgorithm idTokenEncryptedResponseEnc) {
+        this.idTokenEncryptedResponseEnc = idTokenEncryptedResponseEnc;
+    }
+
+    /**
+     * Returns the JWS alg algorithm (JWA) required for UserInfo responses.
+     *
+     * @return The JWS algorithm (JWA).
+     */
+    public SignatureAlgorithm getUserInfoSignedResponseAlg() {
+        return userInfoSignedResponseAlg;
+    }
+
+    /**
+     * Sets the JWS alg algorithm (JWA) required for UserInfo responses.
+     *
+     * @param userInfoSignedResponseAlg The JWS algorithm (JWA).
+     */
+    public void setUserInfoSignedResponseAlg(SignatureAlgorithm userInfoSignedResponseAlg) {
+        this.userInfoSignedResponseAlg = userInfoSignedResponseAlg;
+    }
+
+    /**
+     * Returns the JWE alg algorithm (JWA) required for encrypting UserInfo responses.
+     *
+     * @return The JWE algorithm (JWA).
+     */
+    public KeyEncryptionAlgorithm getUserInfoEncryptedResponseAlg() {
+        return userInfoEncryptedResponseAlg;
+    }
+
+    /**
+     * Sets the JWE alg algorithm (JWA) required for encrypting UserInfo responses.
+     *
+     * @param userInfoEncryptedResponseAlg The JWE algorithm (JWA).
+     */
+    public void setUserInfoEncryptedResponseAlg(KeyEncryptionAlgorithm userInfoEncryptedResponseAlg) {
+        this.userInfoEncryptedResponseAlg = userInfoEncryptedResponseAlg;
+    }
+
+    /**
+     * Returns the JWE enc algorithm (JWA) required for symmetric encryption of UserInfo responses.
+     *
+     * @return The JWE algorithm (JWA).
+     */
+    public BlockEncryptionAlgorithm getUserInfoEncryptedResponseEnc() {
+        return userInfoEncryptedResponseEnc;
+    }
+
+    /**
+     * Sets the JWE enc algorithm (JWA) required for symmetric encryption of UserInfo responses.
+     *
+     * @param userInfoEncryptedResponseEnc The JWE algorithm (JWA).
+     */
+    public void setUserInfoEncryptedResponseEnc(BlockEncryptionAlgorithm userInfoEncryptedResponseEnc) {
+        this.userInfoEncryptedResponseEnc = userInfoEncryptedResponseEnc;
+    }
+
+    /**
+     * Returns the JWS alg algorithm (JWA) that must be required by the Authorization Server.
+     *
+     * @return The JWS algorithm (JWA).
+     */
+    public SignatureAlgorithm getRequestObjectSigningAlg() {
+        return requestObjectSigningAlg;
+    }
+
+    /**
+     * Sets the JWS alg algorithm (JWA) that must be required by the Authorization Server.
+     *
+     * @param requestObjectSigningAlg The JWS algorithm (JWA).
+     */
+    public void setRequestObjectSigningAlg(SignatureAlgorithm requestObjectSigningAlg) {
+        this.requestObjectSigningAlg = requestObjectSigningAlg;
+    }
+
+    /**
+     * Returns the JWE alg algorithm (JWA) the RP is declaring that it may use for encrypting Request Objects
+     * sent to the OP.
+     *
+     * @return The JWE alg algorithm (JWA).
+     */
+    public KeyEncryptionAlgorithm getRequestObjectEncryptionAlg() {
+        return requestObjectEncryptionAlg;
+    }
+
+    /**
+     * Sets the JWE alg algorithm (JWA) the RP is declaring that it may use for encrypting Request Objects
+     * sent to the OP.
+     *
+     * @param requestObjectEncryptionAlg The JWE alg algorithm (JWA).
+     */
+    public void setRequestObjectEncryptionAlg(KeyEncryptionAlgorithm requestObjectEncryptionAlg) {
+        this.requestObjectEncryptionAlg = requestObjectEncryptionAlg;
+    }
+
+    /**
+     * Returns the JWE enc algorithm (JWA) the RP is declaring that it may use for encrypting Request Objects
+     * sent to the OP.
+     *
+     * @return The JWE enc algorithm (JWA).
+     */
+    public BlockEncryptionAlgorithm getRequestObjectEncryptionEnc() {
+        return requestObjectEncryptionEnc;
+    }
+
+    /**
+     * Sets the JWE enc algorithm (JWA) the RP is declaring that it may use for encrypting Request Objects
+     * sent to the OP.
+     *
+     * @param requestObjectEncryptionEnc The JWE enc algorithm (JWA).
+     */
+    public void setRequestObjectEncryptionEnc(BlockEncryptionAlgorithm requestObjectEncryptionEnc) {
+        this.requestObjectEncryptionEnc = requestObjectEncryptionEnc;
+    }
+
+    /**
+     * Returns the requested authentication method for the Token Endpoint.
+     *
+     * @return The requested authentication method for the Token Endpoint.
+     */
+    public AuthenticationMethod getTokenEndpointAuthMethod() {
+        return tokenEndpointAuthMethod;
+    }
+
+    /**
+     * Sets the requested authentication method for the Token Endpoint.
+     *
+     * @param tokenEndpointAuthMethod The requested authentication method for the Token Endpoint.
+     */
+    public void setTokenEndpointAuthMethod(AuthenticationMethod tokenEndpointAuthMethod) {
+        this.tokenEndpointAuthMethod = tokenEndpointAuthMethod;
+    }
+
+    /**
+     * Returns the Requested Client Authentication method for the Token Endpoint.
+     *
+     * @return The Requested Client Authentication method for the Token Endpoint.
+     */
+    public SignatureAlgorithm getTokenEndpointAuthSigningAlg() {
+        return tokenEndpointAuthSigningAlg;
+    }
+
+    /**
+     * Sets the Requested Client Authentication method for the Token Endpoint.
+     *
+     * @param tokenEndpointAuthSigningAlg The Requested Client Authentication method for the Token Endpoint.
+     */
+    public void setTokenEndpointAuthSigningAlg(SignatureAlgorithm tokenEndpointAuthSigningAlg) {
+        this.tokenEndpointAuthSigningAlg = tokenEndpointAuthSigningAlg;
+    }
+
+    /**
+     * Returns the Default Maximum Authentication Age.
+     *
+     * @return The Default Maximum Authentication Age.
+     */
+    public Integer getDefaultMaxAge() {
+        return defaultMaxAge;
+    }
+
+    /**
+     * Sets the Default Maximum Authentication Age.
+     *
+     * @param defaultMaxAge The Default Maximum Authentication Age.
+     */
+    public void setDefaultMaxAge(Integer defaultMaxAge) {
+        this.defaultMaxAge = defaultMaxAge;
+    }
+
+    /**
+     * Returns the Boolean value specifying whether the auth_time claim in the id_token is required.
+     * It is required when the value is true. The auth_time claim request in the request object overrides this setting.
+     *
+     * @return The Boolean value specifying whether the auth_time claim in the id_token is required.
+     */
+    public Boolean getRequireAuthTime() {
+        return requireAuthTime;
+    }
+
+    /**
+     * Sets the Boolean value specifying whether the auth_time claim in the id_token is required.
+     * Ir is required when the value is true. The auth_time claim request in the request object overrides this setting.
+     *
+     * @param requireAuthTime The Boolean value specifying whether the auth_time claim in the id_token is required.
+     */
+    public void setRequireAuthTime(Boolean requireAuthTime) {
+        this.requireAuthTime = requireAuthTime;
+    }
+
+    /**
+     * Returns the Default requested Authentication Context Class Reference values.
+     *
+     * @return The Default requested Authentication Context Class Reference values.
+     */
+    public List<String> getDefaultAcrValues() {
+        return defaultAcrValues;
+    }
+
+    /**
+     * Sets the Default requested Authentication Context Class Reference values.
+     *
+     * @param defaultAcrValues The Default requested Authentication Context Class Reference values.
+     */
+    public void setDefaultAcrValues(List<String> defaultAcrValues) {
+        this.defaultAcrValues = defaultAcrValues;
+    }
+
+    /**
+     * Returns the URI using the https: scheme that the authorization server can call to initiate a login at the client.
+     *
+     * @return The URI using the https: scheme that the authorization server can call to initiate a login at the client.
+     */
+    public String getInitiateLoginUri() {
+        return initiateLoginUri;
+    }
+
+    /**
+     * Sets the URI using the https: scheme that the authorization server can call to initiate a login at the client.
+     *
+     * @param initiateLoginUri The URI using the https: scheme that the authorization server can call to initiate a
+     *                         login at the client.
+     */
+    public void setInitiateLoginUri(String initiateLoginUri) {
+        this.initiateLoginUri = initiateLoginUri;
+    }
+
+    /**
+     * Returns the URLs supplied by the RP to request that the user be redirected to this location after a logout has
+     * been performed.
+     *
+     * @return The URLs supplied by the RP to request that the user be redirected to this location after a logout has
+     * been performed.
+     */
+    public List<String> getPostLogoutRedirectUris() {
+        return postLogoutRedirectUris;
+    }
+
+    /**
+     * Sets the URLs supplied by the RP to request that the user be redirected to this location after a logout has
+     * been performed.
+     *
+     * @param postLogoutRedirectUris The URLs supplied by the RP to request that the user be redirected to this location
+     *                               after a logout has been performed.
+     */
+    public void setPostLogoutRedirectUris(List<String> postLogoutRedirectUris) {
+        this.postLogoutRedirectUris = postLogoutRedirectUris;
+    }
+
+    /**
+     * Returns a list of request_uri values that are pre-registered by the Client for use at the Authorization Server.
+     *
+     * @return A list of request URIs.
+     */
+    public List<String> getRequestUris() {
+        return requestUris;
+    }
+
+    /**
+     * Sets a list of request_uri values that are pre-registered by the Client for use at the Authorization Server.
+     *
+     * @param requestUris A list of request URIs.
+     */
+    public void setRequestUris(List<String> requestUris) {
+        this.requestUris = requestUris;
+    }
+
+    /**
+     * Returns authorized JavaScript origins.
+     *
+     * @return Authorized JavaScript origins.
+     */
+    public List<String> getAuthorizedOrigins() {
+        return authorizedOrigins;
+    }
+
+    /**
+     * Sets authorized JavaScript origins.
+     *
+     * @param authorizedOrigins Authorized JavaScript origins.
+     */
+    public void setAuthorizedOrigins(List<String> authorizedOrigins) {
+        this.authorizedOrigins = authorizedOrigins;
+    }
+
+    /**
+     * @deprecated This function will be removed in a future version because the correct is 'scope' not 'scopes', see (rfc7591).
+     */
+    public List<String> getScopes() {
+        return scopes;
+    }
+
+    /**
+     * @deprecated This method will be removed in a future version because the correct is 'scope' not 'scopes', see (rfc7591).
+     */
+    public void setScopes(List<String> scopes) {
+        this.scopes = scopes;
+    }
+
+    public List<String> getScope() {
+        return scope;
+    }
+
+    public void setScope(List<String> scope) {
+        this.scope = scope;
+    }
+
+    public List<String> getClaims() {
+        return claims;
+    }
+
+    public void setClaims(List<String> claims) {
+        this.claims = claims;
+    }
+
+    /**
+     * Returns the Client-specific access token expiration.
+     *
+     * @return The Client-specific access token expiration.
+     */
+    public Integer getAccessTokenLifetime() {
+        return accessTokenLifetime;
+    }
+
+    /**
+     * Sets the Client-specific access token expiration (in seconds). Set it to Null or Zero to use the system default value.
+     *
+     * @param accessTokenLifetime The Client-specific access token expiration.
+     */
+    public void setAccessTokenLifetime(Integer accessTokenLifetime) {
+        this.accessTokenLifetime = accessTokenLifetime;
+    }
+
+    /**
+     * Returns a unique identifier string (UUID) assigned by the client developer or software publisher used by
+     * registration endpoints to identify the client software to be dynamically registered.
+     *
+     * @return The software identifier.
+     */
+    public String getSoftwareId() {
+        return softwareId;
+    }
+
+    /**
+     * Sets a unique identifier string (UUID) assigned by the client developer or software publisher used by
+     * registration endpoints to identify the client software to be dynamically registered.
+     *
+     * @param softwareId The software identifier.
+     */
+    public void setSoftwareId(String softwareId) {
+        this.softwareId = softwareId;
+    }
+
+    /**
+     * Returns a version identifier string for the client software identified by "software_id".
+     * The value of the "software_version" should change on any update to the client software identified by the same
+     * "software_id".
+     *
+     * @return The version identifier.
+     */
+    public String getSoftwareVersion() {
+        return softwareVersion;
+    }
+
+    /**
+     * Sets a version identifier string for the client software identified by "software_id".
+     * The value of the "software_version" should change on any update to the client software identified by the same
+     * "software_id".
+     *
+     * @param softwareVersion The version identifier.
+     */
+    public void setSoftwareVersion(String softwareVersion) {
+        this.softwareVersion = softwareVersion;
+    }
+
+    /**
+     * Returns a software statement containing client metadata values about the client software as claims.
+     * This is a string value containing the entire signed JWT.
+     *
+     * @return The software statement.
+     */
+    public String getSoftwareStatement() {
+        return softwareStatement;
+    }
+
+    /**
+     * Sets  a software statement containing client metadata values about the client software as claims.
+     * This is a string value containing the entire signed JWT.
+     *
+     * @param softwareStatement The software statement.
+     */
+    public void setSoftwareStatement(String softwareStatement) {
+        this.softwareStatement = softwareStatement;
+    }
+
+    public BackchannelTokenDeliveryMode getBackchannelTokenDeliveryMode() {
+        return backchannelTokenDeliveryMode;
+    }
+
+    public void setBackchannelTokenDeliveryMode(BackchannelTokenDeliveryMode backchannelTokenDeliveryMode) {
+        this.backchannelTokenDeliveryMode = backchannelTokenDeliveryMode;
+    }
+
+    public String getBackchannelClientNotificationEndpoint() {
+        return backchannelClientNotificationEndpoint;
+    }
+
+    public void setBackchannelClientNotificationEndpoint(String backchannelClientNotificationEndpoint) {
+        this.backchannelClientNotificationEndpoint = backchannelClientNotificationEndpoint;
+    }
+
+    public AsymmetricSignatureAlgorithm getBackchannelAuthenticationRequestSigningAlg() {
+        return backchannelAuthenticationRequestSigningAlg;
+    }
+
+    public void setBackchannelAuthenticationRequestSigningAlg(AsymmetricSignatureAlgorithm backchannelAuthenticationRequestSigningAlg) {
+        this.backchannelAuthenticationRequestSigningAlg = backchannelAuthenticationRequestSigningAlg;
+    }
+
+    public Boolean getBackchannelUserCodeParameter() {
+        return backchannelUserCodeParameter;
+    }
+
+    public void setBackchannelUserCodeParameter(Boolean backchannelUserCodeParameter) {
+        this.backchannelUserCodeParameter = backchannelUserCodeParameter;
+    }
+
+    public String getHttpMethod() {
+        return httpMethod;
+    }
+
+    public void setHttpMethod(String p_httpMethod) {
+        httpMethod = p_httpMethod;
+    }
+
+    /**
+     * Gets custom attribute map copy.
+     *
+     * @return custom attribute map copy
+     */
+    public Map<String, String> getCustomAttributes() {
+        // return unmodifiable map to force add custom attribute via addCustomAttribute() that has validation
+        return Collections.unmodifiableMap(this.customAttributes);
+    }
+
+    public void addCustomAttribute(String p_name, String p_value) {
+        if (RegisterRequestParam.isCustomParameterValid(p_name)) {
+            this.customAttributes.put(p_name, p_value);
+        }
+    }
+
+    /**
+     * Returns a collection of parameters of the register request.
+     * Any <code>null</code> or empty parameter will be omitted.
+     *
+     * @return A collection of parameters.
+     */
+    @Override
+    public Map<String, String> getParameters() {
+        Map<String, String> parameters = new HashMap<>();
+
+        JsonApplier.getInstance().apply(this, parameters);
+
+        if (redirectUris != null && !redirectUris.isEmpty()) {
+            parameters.put(REDIRECT_URIS.toString(), toJSONArray(redirectUris).toString());
+        }
+        if (claimsRedirectUris != null && !claimsRedirectUris.isEmpty()) {
+            parameters.put(CLAIMS_REDIRECT_URIS.toString(), toJSONArray(claimsRedirectUris).toString());
+        }
+        if (responseTypes != null && !responseTypes.isEmpty()) {
+            parameters.put(RESPONSE_TYPES.toString(), toJSONArray(responseTypes).toString());
+        }
+        if (grantTypes != null && !grantTypes.isEmpty()) {
+            parameters.put(GRANT_TYPES.toString(), toJSONArray(grantTypes).toString());
+        }
+        if (applicationType != null) {
+            parameters.put(APPLICATION_TYPE.toString(), applicationType.toString());
+        }
+        if (contacts != null && !contacts.isEmpty()) {
+            parameters.put(CONTACTS.toString(), toJSONArray(contacts).toString());
+        }
+        if (StringUtils.isNotBlank(clientName)) {
+            parameters.put(CLIENT_NAME.toString(), clientName);
+        }
+        if (StringUtils.isNotBlank(logoUri)) {
+            parameters.put(LOGO_URI.toString(), logoUri);
+        }
+        if (StringUtils.isNotBlank(clientUri)) {
+            parameters.put(CLIENT_URI.toString(), clientUri);
+        }
+        if (StringUtils.isNotBlank(policyUri)) {
+            parameters.put(POLICY_URI.toString(), policyUri);
+        }
+        if (StringUtils.isNotBlank(tosUri)) {
+            parameters.put(TOS_URI.toString(), tosUri);
+        }
+        if (StringUtils.isNotBlank(jwksUri)) {
+            parameters.put(JWKS_URI.toString(), jwksUri);
+        }
+        if (StringUtils.isNotBlank(jwks)) {
+            parameters.put(JWKS.toString(), jwks);
+        }
+        if (StringUtils.isNotBlank(sectorIdentifierUri)) {
+            parameters.put(SECTOR_IDENTIFIER_URI.toString(), sectorIdentifierUri);
+        }
+        if (subjectType != null) {
+            parameters.put(SUBJECT_TYPE.toString(), subjectType.toString());
+        }
+        if (rptAsJwt != null) {
+            parameters.put(RPT_AS_JWT.toString(), rptAsJwt.toString());
+        }
+        if (accessTokenAsJwt != null) {
+            parameters.put(ACCESS_TOKEN_AS_JWT.toString(), accessTokenAsJwt.toString());
+        }
+        if (accessTokenSigningAlg != null) {
+            parameters.put(ACCESS_TOKEN_SIGNING_ALG.toString(), accessTokenSigningAlg.toString());
+        }
+        if (idTokenSignedResponseAlg != null) {
+            parameters.put(ID_TOKEN_SIGNED_RESPONSE_ALG.toString(), idTokenSignedResponseAlg.getName());
+        }
+        if (idTokenEncryptedResponseAlg != null) {
+            parameters.put(ID_TOKEN_ENCRYPTED_RESPONSE_ALG.toString(), idTokenEncryptedResponseAlg.getName());
+        }
+        if (idTokenEncryptedResponseEnc != null) {
+            parameters.put(ID_TOKEN_ENCRYPTED_RESPONSE_ENC.toString(), idTokenEncryptedResponseEnc.getName());
+        }
+        if (userInfoSignedResponseAlg != null) {
+            parameters.put(USERINFO_SIGNED_RESPONSE_ALG.toString(), userInfoSignedResponseAlg.getName());
+        }
+        if (userInfoEncryptedResponseAlg != null) {
+            parameters.put(USERINFO_ENCRYPTED_RESPONSE_ALG.toString(), userInfoEncryptedResponseAlg.getName());
+        }
+        if (userInfoEncryptedResponseEnc != null) {
+            parameters.put(USERINFO_ENCRYPTED_RESPONSE_ENC.toString(), userInfoEncryptedResponseEnc.getName());
+        }
+        if (requestObjectSigningAlg != null) {
+            parameters.put(REQUEST_OBJECT_SIGNING_ALG.toString(), requestObjectSigningAlg.getName());
+        }
+        if (requestObjectEncryptionAlg != null) {
+            parameters.put(REQUEST_OBJECT_ENCRYPTION_ALG.toString(), requestObjectEncryptionAlg.getName());
+        }
+        if (requestObjectEncryptionEnc != null) {
+            parameters.put(REQUEST_OBJECT_ENCRYPTION_ENC.toString(), requestObjectEncryptionEnc.getName());
+        }
+        if (tokenEndpointAuthMethod != null) {
+            parameters.put(TOKEN_ENDPOINT_AUTH_METHOD.toString(), tokenEndpointAuthMethod.toString());
+        }
+        if (tokenEndpointAuthSigningAlg != null) {
+            parameters.put(TOKEN_ENDPOINT_AUTH_SIGNING_ALG.toString(), tokenEndpointAuthSigningAlg.toString());
+        }
+        if (defaultMaxAge != null) {
+            parameters.put(DEFAULT_MAX_AGE.toString(), defaultMaxAge.toString());
+        }
+        if (requireAuthTime != null) {
+            parameters.put(REQUIRE_AUTH_TIME.toString(), requireAuthTime.toString());
+        }
+        if (defaultAcrValues != null && !defaultAcrValues.isEmpty()) {
+            parameters.put(DEFAULT_ACR_VALUES.toString(), toJSONArray(defaultAcrValues).toString());
+        }
+        if (StringUtils.isNotBlank(initiateLoginUri)) {
+            parameters.put(INITIATE_LOGIN_URI.toString(), initiateLoginUri);
+        }
+        if (postLogoutRedirectUris != null && !postLogoutRedirectUris.isEmpty()) {
+            parameters.put(POST_LOGOUT_REDIRECT_URIS.toString(), toJSONArray(postLogoutRedirectUris).toString());
+        }
+        if (frontChannelLogoutUris != null && !frontChannelLogoutUris.isEmpty()) {
+            parameters.put(FRONT_CHANNEL_LOGOUT_URI.toString(), toJSONArray(frontChannelLogoutUris).toString());
+        }
+        if (frontChannelLogoutSessionRequired != null) {
+            parameters.put(FRONT_CHANNEL_LOGOUT_SESSION_REQUIRED.toString(), frontChannelLogoutSessionRequired.toString());
+        }
+        if (backchannelLogoutUris != null && !backchannelLogoutUris.isEmpty()) {
+            parameters.put(BACKCHANNEL_LOGOUT_URI.toString(), toJSONArray(backchannelLogoutUris).toString());
+        }
+        if (backchannelLogoutSessionRequired != null) {
+            parameters.put(BACKCHANNEL_LOGOUT_SESSION_REQUIRED.toString(), backchannelLogoutSessionRequired.toString());
+        }
+        if (requestUris != null && !requestUris.isEmpty()) {
+            parameters.put(REQUEST_URIS.toString(), toJSONArray(requestUris).toString());
+        }
+        if (authorizedOrigins != null && !authorizedOrigins.isEmpty()) {
+            parameters.put(AUTHORIZED_ORIGINS.toString(), toJSONArray(authorizedOrigins).toString());
+        }
+        if (scopes != null && !scopes.isEmpty()) {
+            parameters.put(SCOPES.toString(), toJSONArray(scopes).toString());
+        }
+        if (scope != null && !scope.isEmpty()) {
+            parameters.put(SCOPE.toString(), implode(scope, " "));
+        }
+        if (StringUtils.isNotBlank(idTokenTokenBindingCnf)) {
+            parameters.put(ID_TOKEN_TOKEN_BINDING_CNF.toString(), idTokenTokenBindingCnf);
+        }
+        if (StringUtils.isNotBlank(tlsClientAuthSubjectDn)) {
+            parameters.put(TLS_CLIENT_AUTH_SUBJECT_DN.toString(), tlsClientAuthSubjectDn);
+        }
+        if (allowSpontaneousScopes != null) {
+            parameters.put(ALLOW_SPONTANEOUS_SCOPES.toString(), allowSpontaneousScopes.toString());
+        }
+        if (spontaneousScopes != null && !spontaneousScopes.isEmpty()) {
+            parameters.put(SPONTANEOUS_SCOPES.toString(), implode(spontaneousScopes, " "));
+        }
+        if (runIntrospectionScriptBeforeAccessTokenAsJwtCreationAndIncludeClaims != null) {
+            parameters.put(RUN_INTROSPECTION_SCRIPT_BEFORE_ACCESS_TOKEN_CREATION_AS_JWT_AND_INCLUDE_CLAIMS.toString(), runIntrospectionScriptBeforeAccessTokenAsJwtCreationAndIncludeClaims.toString());
+        }
+        if (keepClientAuthorizationAfterExpiration != null) {
+            parameters.put(KEEP_CLIENT_AUTHORIZATION_AFTER_EXPIRATION.toString(), keepClientAuthorizationAfterExpiration.toString());
+        }
+        if (claims != null && !claims.isEmpty()) {
+            parameters.put(CLAIMS.toString(), implode(claims, " "));
+        }
+        if (accessTokenLifetime != null) {
+            parameters.put(ACCESS_TOKEN_LIFETIME.toString(), accessTokenLifetime.toString());
+        }
+        if (StringUtils.isNotBlank(softwareId)) {
+            parameters.put(SOFTWARE_ID.toString(), softwareId);
+        }
+        if (StringUtils.isNotBlank(softwareVersion)) {
+            parameters.put(SOFTWARE_VERSION.toString(), softwareVersion);
+        }
+        if (StringUtils.isNotBlank(softwareStatement)) {
+            parameters.put(SOFTWARE_STATEMENT.toString(), softwareStatement);
+        }
+        if (backchannelTokenDeliveryMode != null) {
+            parameters.put(BACKCHANNEL_TOKEN_DELIVERY_MODE.toString(), backchannelTokenDeliveryMode.toString());
+        }
+        if (StringUtils.isNotBlank(backchannelClientNotificationEndpoint)) {
+            parameters.put(BACKCHANNEL_CLIENT_NOTIFICATION_ENDPOINT.toString(), backchannelClientNotificationEndpoint);
+        }
+        if (backchannelAuthenticationRequestSigningAlg != null) {
+            parameters.put(BACKCHANNEL_AUTHENTICATION_REQUEST_SIGNING_ALG.toString(), backchannelAuthenticationRequestSigningAlg.toString());
+        }
+        if (backchannelUserCodeParameter != null && backchannelUserCodeParameter) {
+            parameters.put(BACKCHANNEL_USER_CODE_PARAMETER.toString(), backchannelUserCodeParameter.toString());
+        }
+
+        // Custom params
+        if (customAttributes != null && !customAttributes.isEmpty()) {
+            for (Map.Entry<String, String> entry : customAttributes.entrySet()) {
+                final String name = entry.getKey();
+                final String value = entry.getValue();
+                if (RegisterRequestParam.isCustomParameterValid(name) && StringUtils.isNotBlank(value)) {
+                    parameters.put(name, value);
+                }
+            }
+        }
+        return parameters;
+    }
+
+    public static RegisterRequest fromJson(String p_json, boolean authorizationRequestCustomAllowedParameters) throws JSONException {
+        return fromJson(new JSONObject(p_json), authorizationRequestCustomAllowedParameters);
+    }
+
+    public static RegisterRequest fromJson(JSONObject requestObject, boolean authorizationRequestCustomAllowedParameters) throws JSONException {
+        final List<String> redirectUris = new ArrayList<String>();
+        if (requestObject.has(REDIRECT_URIS.toString())) {
+            JSONArray redirectUrisJsonArray = requestObject.getJSONArray(REDIRECT_URIS.toString());
+            for (int i = 0; i < redirectUrisJsonArray.length(); i++) {
+                String redirectionUri = redirectUrisJsonArray.getString(i);
+                redirectUris.add(redirectionUri);
+            }
+        }
+
+        final List<String> claimRedirectUris = new ArrayList<String>();
+        if (requestObject.has(CLAIMS_REDIRECT_URIS.toString())) {
+            JSONArray jsonArray = requestObject.getJSONArray(CLAIMS_REDIRECT_URIS.toString());
+            for (int i = 0; i < jsonArray.length(); i++) {
+                String uri = jsonArray.getString(i);
+                claimRedirectUris.add(uri);
+            }
+        }
+
+        final Set<String> responseTypes = new HashSet<String>();
+        if (requestObject.has(RESPONSE_TYPES.toString())) {
+            JSONArray responseTypesJsonArray = requestObject.getJSONArray(RESPONSE_TYPES.toString());
+            for (int i = 0; i < responseTypesJsonArray.length(); i++) {
+                responseTypes.add(responseTypesJsonArray.getString(i));
+            }
+        }
+
+        final Set<GrantType> grantTypes = new HashSet<GrantType>();
+        if (requestObject.has(GRANT_TYPES.toString())) {
+            JSONArray grantTypesJsonArray = requestObject.getJSONArray(GRANT_TYPES.toString());
+            for (int i = 0; i < grantTypesJsonArray.length(); i++) {
+                GrantType gt = GrantType.fromString(grantTypesJsonArray.getString(i));
+                if (gt != null) {
+                    grantTypes.add(gt);
+                }
+            }
+        }
+
+        final List<String> contacts = new ArrayList<String>();
+        if (requestObject.has(CONTACTS.toString())) {
+            JSONArray contactsJsonArray = requestObject.getJSONArray(CONTACTS.toString());
+            for (int i = 0; i < contactsJsonArray.length(); i++) {
+                contacts.add(contactsJsonArray.getString(i));
+            }
+        }
+
+        final List<String> defaultAcrValues = new ArrayList<String>();
+        if (requestObject.has(DEFAULT_ACR_VALUES.toString())) {
+            JSONArray defaultAcrValuesJsonArray = requestObject.getJSONArray(DEFAULT_ACR_VALUES.toString());
+            for (int i = 0; i < defaultAcrValuesJsonArray.length(); i++) {
+                defaultAcrValues.add(defaultAcrValuesJsonArray.getString(i));
+            }
+        }
+
+        final List<String> postLogoutRedirectUris = new ArrayList<String>();
+        if (requestObject.has(POST_LOGOUT_REDIRECT_URIS.toString())) {
+            JSONArray postLogoutRedirectUrisJsonArray = requestObject.getJSONArray(POST_LOGOUT_REDIRECT_URIS.toString());
+            for (int i = 0; i < postLogoutRedirectUrisJsonArray.length(); i++) {
+                postLogoutRedirectUris.add(postLogoutRedirectUrisJsonArray.getString(i));
+            }
+        }
+
+        final List<String> requestUris = new ArrayList<String>();
+        if (requestObject.has(REQUEST_URIS.toString())) {
+            JSONArray requestUrisJsonArray = requestObject.getJSONArray(REQUEST_URIS.toString());
+            for (int i = 0; i < requestUrisJsonArray.length(); i++) {
+                requestUris.add(requestUrisJsonArray.getString(i));
+            }
+        }
+
+        final List<String> authorizedOrigins = new ArrayList<String>();
+        if (requestObject.has(AUTHORIZED_ORIGINS.toString())) {
+            JSONArray authorizedOriginsJsonArray = requestObject.getJSONArray((AUTHORIZED_ORIGINS.toString()));
+            for (int i = 0; i < authorizedOriginsJsonArray.length(); i++) {
+                authorizedOrigins.add(authorizedOriginsJsonArray.getString(i));
+            }
+        }
+
+        final List<String> scope = new ArrayList<String>();
+        if (authorizationRequestCustomAllowedParameters && requestObject.has(SCOPES.toString())) {
+            JSONArray scopesJsonArray = requestObject.getJSONArray(SCOPES.toString());
+            for (int i = 0; i < scopesJsonArray.length(); i++) {
+                scope.add(scopesJsonArray.getString(i));
+            }
+        } else if (requestObject.has(SCOPE.toString())) {
+            String scopeString = requestObject.getString(SCOPE.toString());
+            String[] scopeArray = scopeString.split(" ");
+            for (String s : scopeArray) {
+                if (StringUtils.isNotBlank(s)) {
+                    scope.add(s);
+                }
+            }
+        }
+
+        final List<String> claims = new ArrayList<String>();
+        if (requestObject.has(CLAIMS.toString())) {
+            String claimsString = requestObject.getString(CLAIMS.toString());
+            String[] claimsArray = claimsString.split(" ");
+            for (String c : claimsArray) {
+                if (StringUtils.isNotBlank(c)) {
+                    claims.add(c);
+                }
+            }
+        }
+
+
+        final RegisterRequest result = new RegisterRequest();
+
+        JsonApplier.getInstance().apply(requestObject, result);
+
+        result.setJsonObject(requestObject);
+        result.setRequestUris(requestUris);
+        result.setAuthorizedOrigins(authorizedOrigins);
+        result.setClaimsRedirectUris(claimRedirectUris);
+        result.setInitiateLoginUri(requestObject.optString(INITIATE_LOGIN_URI.toString()));
+        result.setPostLogoutRedirectUris(postLogoutRedirectUris);
+        result.setDefaultAcrValues(defaultAcrValues);
+        result.setRequireAuthTime(requestObject.has(REQUIRE_AUTH_TIME.toString()) && requestObject.getBoolean(REQUIRE_AUTH_TIME.toString()));
+        result.setFrontChannelLogoutUris(extractList(requestObject, FRONT_CHANNEL_LOGOUT_URI.toString()));
+        result.setFrontChannelLogoutSessionRequired(requestObject.optBoolean(FRONT_CHANNEL_LOGOUT_SESSION_REQUIRED.toString()));
+        result.setBackchannelLogoutUris(extractList(requestObject, BACKCHANNEL_LOGOUT_URI.toString()));
+        result.setBackchannelLogoutSessionRequired(requestObject.optBoolean(BACKCHANNEL_LOGOUT_SESSION_REQUIRED.toString()));
+        result.setAccessTokenLifetime(requestObject.has(ACCESS_TOKEN_LIFETIME.toString()) ?
+                requestObject.getInt(ACCESS_TOKEN_LIFETIME.toString()) : null);
+        result.setDefaultMaxAge(requestObject.has(DEFAULT_MAX_AGE.toString()) ?
+                requestObject.getInt(DEFAULT_MAX_AGE.toString()) : null);
+        result.setTlsClientAuthSubjectDn(requestObject.optString(TLS_CLIENT_AUTH_SUBJECT_DN.toString()));
+        result.setAllowSpontaneousScopes(requestObject.optBoolean(ALLOW_SPONTANEOUS_SCOPES.toString()));
+        result.setSpontaneousScopes(ClientUtil.extractListByKey(requestObject, SPONTANEOUS_SCOPES.toString()));
+        result.setRunIntrospectionScriptBeforeAccessTokenAsJwtCreationAndIncludeClaims(requestObject.optBoolean(RUN_INTROSPECTION_SCRIPT_BEFORE_ACCESS_TOKEN_CREATION_AS_JWT_AND_INCLUDE_CLAIMS.toString()));
+        result.setKeepClientAuthorizationAfterExpiration(requestObject.optBoolean(KEEP_CLIENT_AUTHORIZATION_AFTER_EXPIRATION.toString()));
+        result.setRptAsJwt(requestObject.optBoolean(RPT_AS_JWT.toString()));
+        result.setAccessTokenAsJwt(requestObject.optBoolean(ACCESS_TOKEN_AS_JWT.toString()));
+        result.setAccessTokenSigningAlg(SignatureAlgorithm.fromString(requestObject.optString(ACCESS_TOKEN_SIGNING_ALG.toString())));
+        result.setIdTokenSignedResponseAlg(requestObject.has(ID_TOKEN_SIGNED_RESPONSE_ALG.toString()) ?
+                SignatureAlgorithm.fromString(requestObject.getString(ID_TOKEN_SIGNED_RESPONSE_ALG.toString())) : null);
+        result.setIdTokenEncryptedResponseAlg(requestObject.has(ID_TOKEN_ENCRYPTED_RESPONSE_ALG.toString()) ?
+                KeyEncryptionAlgorithm.fromName(requestObject.getString(ID_TOKEN_ENCRYPTED_RESPONSE_ALG.toString())) : null);
+        result.setIdTokenEncryptedResponseEnc(requestObject.has(ID_TOKEN_ENCRYPTED_RESPONSE_ENC.toString()) ?
+                BlockEncryptionAlgorithm.fromName(requestObject.getString(ID_TOKEN_ENCRYPTED_RESPONSE_ENC.toString())) : null);
+        result.setUserInfoSignedResponseAlg(requestObject.has(USERINFO_SIGNED_RESPONSE_ALG.toString()) ?
+                SignatureAlgorithm.fromString(requestObject.getString(USERINFO_SIGNED_RESPONSE_ALG.toString())) : null);
+        result.setUserInfoEncryptedResponseAlg(requestObject.has(USERINFO_ENCRYPTED_RESPONSE_ALG.toString()) ?
+                KeyEncryptionAlgorithm.fromName(requestObject.getString(USERINFO_ENCRYPTED_RESPONSE_ALG.toString())) : null);
+        result.setUserInfoEncryptedResponseEnc(requestObject.has(USERINFO_ENCRYPTED_RESPONSE_ENC.toString()) ?
+                BlockEncryptionAlgorithm.fromName(requestObject.getString(USERINFO_ENCRYPTED_RESPONSE_ENC.toString())) : null);
+        result.setRequestObjectSigningAlg(requestObject.has(REQUEST_OBJECT_SIGNING_ALG.toString()) ?
+                SignatureAlgorithm.fromString(requestObject.getString(REQUEST_OBJECT_SIGNING_ALG.toString())) : null);
+        result.setRequestObjectEncryptionAlg(requestObject.has(REQUEST_OBJECT_ENCRYPTION_ALG.toString()) ?
+                KeyEncryptionAlgorithm.fromName(requestObject.getString(REQUEST_OBJECT_ENCRYPTION_ALG.toString())) : null);
+        result.setRequestObjectEncryptionEnc(requestObject.has(REQUEST_OBJECT_ENCRYPTION_ENC.toString()) ?
+                BlockEncryptionAlgorithm.fromName(requestObject.getString(REQUEST_OBJECT_ENCRYPTION_ENC.toString())) : null);
+        result.setTokenEndpointAuthMethod(requestObject.has(TOKEN_ENDPOINT_AUTH_METHOD.toString()) ?
+                AuthenticationMethod.fromString(requestObject.getString(TOKEN_ENDPOINT_AUTH_METHOD.toString())) : null);
+        result.setTokenEndpointAuthSigningAlg(requestObject.has(TOKEN_ENDPOINT_AUTH_SIGNING_ALG.toString()) ?
+                SignatureAlgorithm.fromString(requestObject.getString(TOKEN_ENDPOINT_AUTH_SIGNING_ALG.toString())) : null);
+        result.setRedirectUris(redirectUris);
+        result.setScopes(scope);
+        result.setScope(scope);
+        result.setClaims(claims);
+        result.setResponseTypes_(new ArrayList<String>(responseTypes));
+        result.setGrantTypes(new ArrayList<GrantType>(grantTypes));
+        result.setApplicationType(requestObject.has(APPLICATION_TYPE.toString()) ?
+                ApplicationType.fromString(requestObject.getString(APPLICATION_TYPE.toString())) : ApplicationType.WEB);
+        result.setContacts(contacts);
+        result.setClientName(requestObject.optString(CLIENT_NAME.toString()));
+        result.setIdTokenTokenBindingCnf(requestObject.optString(ID_TOKEN_TOKEN_BINDING_CNF.toString(), ""));
+        result.setLogoUri(requestObject.optString(LOGO_URI.toString()));
+        result.setClientUri(requestObject.optString(CLIENT_URI.toString()));
+        result.setPolicyUri(requestObject.optString(POLICY_URI.toString()));
+        result.setTosUri(requestObject.optString(TOS_URI.toString()));
+        result.setJwksUri(requestObject.optString(JWKS_URI.toString()));
+        result.setJwks(requestObject.optString(JWKS.toString()));
+        result.setSectorIdentifierUri(requestObject.optString(SECTOR_IDENTIFIER_URI.toString()));
+        result.setSubjectType(requestObject.has(SUBJECT_TYPE.toString()) ?
+                SubjectType.fromString(requestObject.getString(SUBJECT_TYPE.toString())) : null);
+        result.setSoftwareId(requestObject.optString(SOFTWARE_ID.toString()));
+        result.setSoftwareVersion(requestObject.optString(SOFTWARE_VERSION.toString()));
+        result.setSoftwareStatement(requestObject.optString(SOFTWARE_STATEMENT.toString()));
+        result.setBackchannelTokenDeliveryMode(requestObject.has(BACKCHANNEL_TOKEN_DELIVERY_MODE.toString()) ?
+                BackchannelTokenDeliveryMode.fromString(requestObject.getString(BACKCHANNEL_TOKEN_DELIVERY_MODE.toString())) : null);
+        result.setBackchannelClientNotificationEndpoint(requestObject.optString(BACKCHANNEL_CLIENT_NOTIFICATION_ENDPOINT.toString()));
+        result.setBackchannelAuthenticationRequestSigningAlg(requestObject.has(BACKCHANNEL_AUTHENTICATION_REQUEST_SIGNING_ALG.toString()) ?
+                AsymmetricSignatureAlgorithm.fromString(requestObject.getString(BACKCHANNEL_AUTHENTICATION_REQUEST_SIGNING_ALG.toString())) : null);
+        result.setBackchannelUserCodeParameter(requestObject.has(BACKCHANNEL_USER_CODE_PARAMETER.toString()) ?
+                requestObject.getBoolean(BACKCHANNEL_USER_CODE_PARAMETER.toString()) : null);
+
+        return result;
+    }
+
+    private static List<String> extractList(JSONObject requestObject, String key) {
+        final List<String> result = new ArrayList<>();
+        if (requestObject.has(key)) {
+            try {
+                JSONArray jsonArray = requestObject.getJSONArray(key);
+                for (int i = 0; i < jsonArray.length(); i++) {
+                    result.add(jsonArray.getString(i));
+                }
+            } catch (JSONException e) {
+                result.add(requestObject.optString(key));
+            }
+        }
+        return result;
+    }
+
+    @Override
+    public JSONObject getJSONParameters() throws JSONException {
+        JSONObject parameters = new JSONObject();
+
+        JsonApplier.getInstance().apply(this, parameters);
+
+        if (redirectUris != null && !redirectUris.isEmpty()) {
+            parameters.put(REDIRECT_URIS.toString(), toJSONArray(redirectUris));
+        }
+        if (claimsRedirectUris != null && !claimsRedirectUris.isEmpty()) {
+            parameters.put(CLAIMS_REDIRECT_URIS.toString(), toJSONArray(claimsRedirectUris));
+        }
+        if (responseTypes != null && !responseTypes.isEmpty()) {
+            parameters.put(RESPONSE_TYPES.toString(), toJSONArray(responseTypes));
+        }
+        if (grantTypes != null && !grantTypes.isEmpty()) {
+            parameters.put(GRANT_TYPES.toString(), toJSONArray(grantTypes));
+        }
+        if (applicationType != null) {
+            parameters.put(APPLICATION_TYPE.toString(), applicationType.toString());
+        }
+        if (contacts != null && !contacts.isEmpty()) {
+            parameters.put(CONTACTS.toString(), toJSONArray(contacts));
+        }
+        if (StringUtils.isNotBlank(clientName)) {
+            parameters.put(CLIENT_NAME.toString(), clientName);
+        }
+        if (StringUtils.isNotBlank(idTokenTokenBindingCnf)) {
+            parameters.put(ID_TOKEN_TOKEN_BINDING_CNF.toString(), idTokenTokenBindingCnf);
+        }
+        if (StringUtils.isNotBlank(tlsClientAuthSubjectDn)) {
+            parameters.put(TLS_CLIENT_AUTH_SUBJECT_DN.toString(), tlsClientAuthSubjectDn);
+        }
+        if (allowSpontaneousScopes != null) {
+            parameters.put(ALLOW_SPONTANEOUS_SCOPES.toString(), allowSpontaneousScopes);
+        }
+        if (spontaneousScopes != null && !spontaneousScopes.isEmpty()) {
+            parameters.put(SPONTANEOUS_SCOPES.toString(), toJSONArray(spontaneousScopes));
+        }
+        if (runIntrospectionScriptBeforeAccessTokenAsJwtCreationAndIncludeClaims != null) {
+            parameters.put(RUN_INTROSPECTION_SCRIPT_BEFORE_ACCESS_TOKEN_CREATION_AS_JWT_AND_INCLUDE_CLAIMS.toString(), runIntrospectionScriptBeforeAccessTokenAsJwtCreationAndIncludeClaims);
+        }
+        if (keepClientAuthorizationAfterExpiration != null) {
+            parameters.put(KEEP_CLIENT_AUTHORIZATION_AFTER_EXPIRATION.toString(), keepClientAuthorizationAfterExpiration);
+        }
+        if (StringUtils.isNotBlank(logoUri)) {
+            parameters.put(LOGO_URI.toString(), logoUri);
+        }
+        if (StringUtils.isNotBlank(clientUri)) {
+            parameters.put(CLIENT_URI.toString(), clientUri);
+        }
+        if (StringUtils.isNotBlank(policyUri)) {
+            parameters.put(POLICY_URI.toString(), policyUri);
+        }
+        if (StringUtils.isNotBlank(tosUri)) {
+            parameters.put(TOS_URI.toString(), tosUri);
+        }
+        if (StringUtils.isNotBlank(jwksUri)) {
+            parameters.put(JWKS_URI.toString(), jwksUri);
+        }
+        if (StringUtils.isNotBlank(jwks)) {
+            parameters.put(JWKS_URI.toString(), jwks);
+        }
+        if (StringUtils.isNotBlank(sectorIdentifierUri)) {
+            parameters.put(SECTOR_IDENTIFIER_URI.toString(), sectorIdentifierUri);
+        }
+        if (subjectType != null) {
+            parameters.put(SUBJECT_TYPE.toString(), subjectType.toString());
+        }
+        if (rptAsJwt != null) {
+            parameters.put(RPT_AS_JWT.toString(), rptAsJwt.toString());
+        }
+        if (accessTokenAsJwt != null) {
+            parameters.put(ACCESS_TOKEN_AS_JWT.toString(), accessTokenAsJwt.toString());
+        }
+        if (accessTokenSigningAlg != null) {
+            parameters.put(ACCESS_TOKEN_SIGNING_ALG.toString(), accessTokenSigningAlg.toString());
+        }
+        if (idTokenSignedResponseAlg != null) {
+            parameters.put(ID_TOKEN_SIGNED_RESPONSE_ALG.toString(), idTokenSignedResponseAlg.getName());
+        }
+        if (idTokenEncryptedResponseAlg != null) {
+            parameters.put(ID_TOKEN_ENCRYPTED_RESPONSE_ALG.toString(), idTokenEncryptedResponseAlg.getName());
+        }
+        if (idTokenEncryptedResponseEnc != null) {
+            parameters.put(ID_TOKEN_ENCRYPTED_RESPONSE_ENC.toString(), idTokenEncryptedResponseEnc.getName());
+        }
+        if (userInfoSignedResponseAlg != null) {
+            parameters.put(USERINFO_SIGNED_RESPONSE_ALG.toString(), userInfoSignedResponseAlg.getName());
+        }
+        if (userInfoEncryptedResponseAlg != null) {
+            parameters.put(USERINFO_ENCRYPTED_RESPONSE_ALG.toString(), userInfoEncryptedResponseAlg.getName());
+        }
+        if (userInfoEncryptedResponseEnc != null) {
+            parameters.put(USERINFO_ENCRYPTED_RESPONSE_ENC.toString(), userInfoEncryptedResponseEnc.getName());
+        }
+        if (requestObjectSigningAlg != null) {
+            parameters.put(REQUEST_OBJECT_SIGNING_ALG.toString(), requestObjectSigningAlg.getName());
+        }
+        if (requestObjectEncryptionAlg != null) {
+            parameters.put(REQUEST_OBJECT_ENCRYPTION_ALG.toString(), requestObjectEncryptionAlg.getName());
+        }
+        if (requestObjectEncryptionEnc != null) {
+            parameters.put(REQUEST_OBJECT_ENCRYPTION_ENC.toString(), requestObjectEncryptionEnc.getName());
+        }
+        if (tokenEndpointAuthMethod != null) {
+            parameters.put(TOKEN_ENDPOINT_AUTH_METHOD.toString(), tokenEndpointAuthMethod.toString());
+        }
+        if (tokenEndpointAuthSigningAlg != null) {
+            parameters.put(TOKEN_ENDPOINT_AUTH_SIGNING_ALG.toString(), tokenEndpointAuthSigningAlg.toString());
+        }
+        if (defaultMaxAge != null) {
+            parameters.put(DEFAULT_MAX_AGE.toString(), defaultMaxAge.toString());
+        }
+        if (requireAuthTime != null) {
+            parameters.put(REQUIRE_AUTH_TIME.toString(), requireAuthTime.toString());
+        }
+        if (defaultAcrValues != null && !defaultAcrValues.isEmpty()) {
+            parameters.put(DEFAULT_ACR_VALUES.toString(), toJSONArray(defaultAcrValues));
+        }
+        if (StringUtils.isNotBlank(initiateLoginUri)) {
+            parameters.put(INITIATE_LOGIN_URI.toString(), initiateLoginUri);
+        }
+        if (postLogoutRedirectUris != null && !postLogoutRedirectUris.isEmpty()) {
+            parameters.put(POST_LOGOUT_REDIRECT_URIS.toString(), toJSONArray(postLogoutRedirectUris));
+        }
+        if (frontChannelLogoutUris != null && !frontChannelLogoutUris.isEmpty()) {
+            parameters.put(FRONT_CHANNEL_LOGOUT_URI.toString(), toJSONArray(frontChannelLogoutUris));
+        }
+        if (frontChannelLogoutSessionRequired != null) {
+            parameters.put(FRONT_CHANNEL_LOGOUT_SESSION_REQUIRED.toString(), frontChannelLogoutSessionRequired.toString());
+        }
+        if (backchannelLogoutUris != null && !backchannelLogoutUris.isEmpty()) {
+            parameters.put(BACKCHANNEL_LOGOUT_URI.toString(), toJSONArray(backchannelLogoutUris));
+        }
+        if (backchannelLogoutSessionRequired != null) {
+            parameters.put(BACKCHANNEL_LOGOUT_SESSION_REQUIRED.toString(), backchannelLogoutSessionRequired.toString());
+        }
+        if (requestUris != null && !requestUris.isEmpty()) {
+            parameters.put(REQUEST_URIS.toString(), toJSONArray(requestUris));
+        }
+        if (authorizedOrigins != null && !authorizedOrigins.isEmpty()) {
+            parameters.put(AUTHORIZED_ORIGINS.toString(), toJSONArray(authorizedOrigins));
+        }
+        if (scopes != null && !scopes.isEmpty()) {
+            parameters.put(SCOPES.toString(), toJSONArray(scopes));
+        }
+        if (scope != null && !scope.isEmpty()) {
+            parameters.put(SCOPE.toString(), implode(scope, " "));
+        }
+        if (claims != null && !claims.isEmpty()) {
+            parameters.put(CLAIMS.toString(), implode(claims, " "));
+        }
+        if (accessTokenLifetime != null) {
+            parameters.put(ACCESS_TOKEN_LIFETIME.toString(), accessTokenLifetime);
+        }
+        if (StringUtils.isNotBlank(softwareId)) {
+            parameters.put(SOFTWARE_ID.toString(), softwareId);
+        }
+        if (StringUtils.isNotBlank(softwareVersion)) {
+            parameters.put(SOFTWARE_VERSION.toString(), softwareVersion);
+        }
+        if (StringUtils.isNotBlank(softwareStatement)) {
+            parameters.put(SOFTWARE_STATEMENT.toString(), softwareStatement);
+        }
+        if (backchannelTokenDeliveryMode != null) {
+            parameters.put(BACKCHANNEL_TOKEN_DELIVERY_MODE.toString(), backchannelTokenDeliveryMode);
+        }
+        if (StringUtils.isNotBlank(backchannelClientNotificationEndpoint)) {
+            parameters.put(BACKCHANNEL_CLIENT_NOTIFICATION_ENDPOINT.toString(), backchannelClientNotificationEndpoint);
+        }
+        if (backchannelAuthenticationRequestSigningAlg != null) {
+            parameters.put(BACKCHANNEL_AUTHENTICATION_REQUEST_SIGNING_ALG.toString(), backchannelAuthenticationRequestSigningAlg.toString());
+        }
+        if (backchannelUserCodeParameter != null) {
+            parameters.put(BACKCHANNEL_USER_CODE_PARAMETER.toString(), backchannelUserCodeParameter);
+        }
+        // Custom params
+        if (customAttributes != null && !customAttributes.isEmpty()) {
+            for (Map.Entry<String, String> entry : customAttributes.entrySet()) {
+                final String name = entry.getKey();
+                final String value = entry.getValue();
+                if (RegisterRequestParam.isCustomParameterValid(name) && StringUtils.isNotBlank(value)) {
+                    parameters.put(name, value);
+                }
+            }
+        }
+        return parameters;
+    }
+
+    public JSONObject getJsonObject() {
+        return jsonObject;
+    }
+
+    public void setJsonObject(JSONObject p_jsonObject) {
+        jsonObject = p_jsonObject;
+    }
+
+    @Override
+    public String getQueryString() {
+        try {
+            return ClientUtil.toPrettyJson(getJSONParameters()).replace("\\/", "/");
+        } catch (JSONException | JsonProcessingException e) {
+            log.error(e.getMessage(), e);
+            return null;
+        }
+    }
+}
\ No newline at end of file
diff --git a/oxAuth/Client/src/main/java/org/gluu/oxauth/client/RegisterResponse.java b/oxAuth/Client/src/main/java/org/gluu/oxauth/client/RegisterResponse.java
new file mode 100644
index 00000000..671999b7
--- /dev/null
+++ b/oxAuth/Client/src/main/java/org/gluu/oxauth/client/RegisterResponse.java
@@ -0,0 +1,249 @@
+/*
+ * oxAuth is available under the MIT License (2008). See http://opensource.org/licenses/MIT for full text.
+ *
+ * Copyright (c) 2014, Gluu
+ */
+
+package org.gluu.oxauth.client;
+
+import static org.gluu.oxauth.model.register.RegisterRequestParam.GRANT_TYPES;
+import static org.gluu.oxauth.model.register.RegisterRequestParam.RESPONSE_TYPES;
+import static org.gluu.oxauth.model.register.RegisterResponseParam.CLIENT_ID_ISSUED_AT;
+import static org.gluu.oxauth.model.register.RegisterResponseParam.CLIENT_SECRET;
+import static org.gluu.oxauth.model.register.RegisterResponseParam.CLIENT_SECRET_EXPIRES_AT;
+import static org.gluu.oxauth.model.register.RegisterResponseParam.REGISTRATION_CLIENT_URI;
+
+import java.lang.reflect.InvocationTargetException;
+import java.util.Date;
+import java.util.HashMap;
+import java.util.Iterator;
+import java.util.List;
+import java.util.Map;
+
+import javax.ws.rs.core.Response;
+
+import org.apache.commons.lang.StringUtils;
+import org.apache.log4j.Logger;
+import org.gluu.oxauth.model.common.GrantType;
+import org.gluu.oxauth.model.common.ResponseType;
+import org.gluu.oxauth.model.register.RegisterErrorResponseType;
+import org.gluu.oxauth.model.register.RegisterResponseParam;
+import org.gluu.oxauth.model.util.Util;
+import org.json.JSONArray;
+import org.json.JSONException;
+import org.json.JSONObject;
+
+/**
+ * Represents a register response received from the authorization server.
+ *
+ * @author Javier Rojas Blum
+ * @version July 18, 2017
+ */
+public class RegisterResponse extends BaseResponseWithErrors<RegisterErrorResponseType> {
+
+    private static final Logger LOG = Logger.getLogger(RegisterResponse.class);
+
+    private String clientId;
+    private String clientSecret;
+    private String registrationAccessToken;
+    private String registrationClientUri;
+    private Date clientIdIssuedAt;
+    private Date clientSecretExpiresAt;
+    private List<ResponseType> responseTypes;
+    private List<GrantType> grantTypes;
+    private Map<String, String> claims = new HashMap<String, String>();
+
+    public RegisterResponse() {
+    }
+
+    /**
+     * Constructs a register response.
+     */
+    public RegisterResponse(Response clientResponse) {
+        super(clientResponse);
+
+        injectDataFromJson(entity);
+    }
+
+    @Override
+    public RegisterErrorResponseType fromString(String p_string) {
+        return RegisterErrorResponseType.fromString(p_string);
+    }
+
+    public void injectDataFromJson() {
+        injectDataFromJson(getEntity());
+    }
+
+    public static RegisterResponse valueOf(String p_json) {
+        final RegisterResponse r = new RegisterResponse();
+        r.injectDataFromJson(p_json);
+        return r;
+    }
+
+    public void injectDataFromJson(String p_json) {
+        if (StringUtils.isNotBlank(p_json)) {
+            try {
+                JSONObject jsonObj = new JSONObject(p_json);
+                if (jsonObj.has(RegisterResponseParam.CLIENT_ID.toString())) {
+                    setClientId(jsonObj.getString(RegisterResponseParam.CLIENT_ID.toString()));
+                    jsonObj.remove(RegisterResponseParam.CLIENT_ID.toString());
+                }
+                if (jsonObj.has(CLIENT_SECRET.toString())) {
+                    setClientSecret(jsonObj.getString(CLIENT_SECRET.toString()));
+                    jsonObj.remove(CLIENT_SECRET.toString());
+                }
+                if (jsonObj.has(RegisterResponseParam.REGISTRATION_ACCESS_TOKEN.toString())) {
+                    setRegistrationAccessToken(jsonObj.getString(RegisterResponseParam.REGISTRATION_ACCESS_TOKEN.toString()));
+                    jsonObj.remove(RegisterResponseParam.REGISTRATION_ACCESS_TOKEN.toString());
+                }
+                if (jsonObj.has(REGISTRATION_CLIENT_URI.toString())) {
+                    setRegistrationClientUri(jsonObj.getString(REGISTRATION_CLIENT_URI.toString()));
+                    jsonObj.remove(REGISTRATION_CLIENT_URI.toString());
+                }
+                if (jsonObj.has(CLIENT_ID_ISSUED_AT.toString())) {
+                    long clientIdIssuedAt = jsonObj.getLong(CLIENT_ID_ISSUED_AT.toString());
+                    if (clientIdIssuedAt > 0) {
+                        setClientIdIssuedAt(new Date(clientIdIssuedAt * 1000L));
+                    }
+                    jsonObj.remove(CLIENT_ID_ISSUED_AT.toString());
+                }
+                if (jsonObj.has(CLIENT_SECRET_EXPIRES_AT.toString())) {
+                    long clientSecretExpiresAt = jsonObj.getLong(CLIENT_SECRET_EXPIRES_AT.toString());
+                    if (clientSecretExpiresAt > 0) {
+                        setClientSecretExpiresAt(new Date(clientSecretExpiresAt * 1000L));
+                    }
+                    jsonObj.remove(CLIENT_SECRET_EXPIRES_AT.toString());
+                }
+                if (jsonObj.has(RESPONSE_TYPES.toString())) {
+                    JSONArray responseTypesJsonArray = jsonObj.getJSONArray(RESPONSE_TYPES.toString());
+                    responseTypes = Util.asEnumList(responseTypesJsonArray, ResponseType.class);
+                }
+                if (jsonObj.has(GRANT_TYPES.toString())) {
+                    JSONArray grantTypesJsonArray = jsonObj.getJSONArray(GRANT_TYPES.toString());
+                    grantTypes = Util.asEnumList(grantTypesJsonArray, GrantType.class);
+                }
+
+                for (Iterator<String> it = jsonObj.keys(); it.hasNext(); ) {
+                    String key = it.next();
+                    getClaims().put(key, String.valueOf(jsonObj.get(key)));
+                }
+            } catch (JSONException e) {
+                LOG.error(e.getMessage(), e);
+            } catch (NoSuchMethodException e) {
+                LOG.error(e.getMessage(), e);
+            } catch (IllegalAccessException e) {
+                LOG.error(e.getMessage(), e);
+            } catch (InvocationTargetException e) {
+                LOG.error(e.getMessage(), e);
+            }
+        }
+    }
+
+    /**
+     * Returns the client's identifier.
+     *
+     * @return The client's identifier.
+     */
+    public String getClientId() {
+        return clientId;
+    }
+
+    /**
+     * Sets the client's identifier.
+     *
+     * @param clientId The client's identifier.
+     */
+    public void setClientId(String clientId) {
+        this.clientId = clientId;
+    }
+
+    /**
+     * Returns the client's password.
+     *
+     * @return The client's password.
+     */
+    public String getClientSecret() {
+        return clientSecret;
+    }
+
+    /**
+     * Sets the client's password.
+     *
+     * @param clientSecret The client's password.
+     */
+    public void setClientSecret(String clientSecret) {
+        this.clientSecret = clientSecret;
+    }
+
+    public String getRegistrationAccessToken() {
+        return registrationAccessToken;
+    }
+
+    public void setRegistrationAccessToken(String registrationAccessToken) {
+        this.registrationAccessToken = registrationAccessToken;
+    }
+
+    public String getRegistrationClientUri() {
+        return registrationClientUri;
+    }
+
+    public void setRegistrationClientUri(String registrationClientUri) {
+        this.registrationClientUri = registrationClientUri;
+    }
+
+    public Date getClientIdIssuedAt() {
+        // findbugs : return copy instead of original object
+        return clientIdIssuedAt != null ? new Date(clientIdIssuedAt.getTime()) : null;
+    }
+
+    public void setClientIdIssuedAt(Date clientIdIssuedAt) {
+        // findbugs : save copy instead of original object
+        this.clientIdIssuedAt = clientIdIssuedAt != null ? new Date(clientIdIssuedAt.getTime()) : null;
+    }
+
+    /**
+     * Return the expiration date after which the client's account will expire.
+     * <code>null</code> if the client's account never expires.
+     *
+     * @return The expiration date.
+     */
+    public Date getClientSecretExpiresAt() {
+        // findbugs : return copy instead of original object
+        return clientSecretExpiresAt != null ? new Date(clientSecretExpiresAt.getTime()) : null;
+    }
+
+    /**
+     * Sets the expiration date after which the client's account will expire.
+     * <code>null</code> if the client's account never expires.
+     *
+     * @param clientSecretExpiresAt The expiration date.
+     */
+    public void setClientSecretExpiresAt(Date clientSecretExpiresAt) {
+        // findbugs : save copy instead of original object
+        this.clientSecretExpiresAt = clientSecretExpiresAt != null ? new Date(clientSecretExpiresAt.getTime()) : null;
+    }
+
+    public List<ResponseType> getResponseTypes() {
+        return responseTypes;
+    }
+
+    public void setResponseTypes(List<ResponseType> responseTypes) {
+        this.responseTypes = responseTypes;
+    }
+
+    public List<GrantType> getGrantTypes() {
+        return grantTypes;
+    }
+
+    public void setGrantTypes(List<GrantType> grantTypes) {
+        this.grantTypes = grantTypes;
+    }
+
+    public Map<String, String> getClaims() {
+        return claims;
+    }
+
+    public void setClaims(Map<String, String> claims) {
+        this.claims = claims;
+    }
+}
\ No newline at end of file
diff --git a/oxAuth/Client/src/main/java/org/gluu/oxauth/client/RevokeSessionClient.java b/oxAuth/Client/src/main/java/org/gluu/oxauth/client/RevokeSessionClient.java
new file mode 100644
index 00000000..c89a39de
--- /dev/null
+++ b/oxAuth/Client/src/main/java/org/gluu/oxauth/client/RevokeSessionClient.java
@@ -0,0 +1,71 @@
+package org.gluu.oxauth.client;
+
+import javax.ws.rs.HttpMethod;
+import javax.ws.rs.client.Entity;
+import javax.ws.rs.client.Invocation.Builder;
+
+import org.apache.log4j.Logger;
+
+/**
+ * @author Yuriy Zabrovarnyy
+ */
+public class RevokeSessionClient extends BaseClient<RevokeSessionRequest, RevokeSessionResponse>{
+
+    private static final Logger LOG = Logger.getLogger(RevokeSessionClient.class);
+
+    /**
+     * Constructs a token client by providing a REST url where the token service
+     * is located.
+     *
+     * @param url The REST Service location.
+     */
+    public RevokeSessionClient(String url) {
+        super(url);
+    }
+
+    @Override
+    public String getHttpMethod() {
+        return HttpMethod.POST;
+    }
+
+    public RevokeSessionResponse exec(RevokeSessionRequest request) {
+        setRequest(request);
+        return exec();
+    }
+
+    public RevokeSessionResponse exec() {
+        initClientRequest();
+
+        Builder clientRequest = webTarget.request();
+        applyCookies(clientRequest);
+
+        new ClientAuthnEnabler(clientRequest, requestForm).exec(request);
+
+        clientRequest.header("Content-Type", request.getContentType());
+//        clientRequest.setHttpMethod(getHttpMethod());
+
+        if (getRequest().getUserCriterionKey() != null) {
+            requestForm.param("user_criterion_key", getRequest().getUserCriterionKey());
+        }
+        if (getRequest().getUserCriterionValue() != null) {
+            requestForm.param("user_criterion_value", getRequest().getUserCriterionValue());
+        }
+
+        for (String key : getRequest().getCustomParameters().keySet()) {
+            requestForm.param(key, getRequest().getCustomParameters().get(key));
+        }
+
+        try {
+            clientResponse = clientRequest.buildPost(Entity.form(requestForm)).invoke();
+
+            final RevokeSessionResponse response = new RevokeSessionResponse(clientResponse);
+            setResponse(response);
+        } catch (Exception e) {
+            LOG.error(e.getMessage(), e);
+        } finally {
+            closeConnection();
+        }
+
+        return getResponse();
+    }
+}
diff --git a/oxAuth/Client/src/main/java/org/gluu/oxauth/client/RevokeSessionRequest.java b/oxAuth/Client/src/main/java/org/gluu/oxauth/client/RevokeSessionRequest.java
new file mode 100644
index 00000000..09c40c5b
--- /dev/null
+++ b/oxAuth/Client/src/main/java/org/gluu/oxauth/client/RevokeSessionRequest.java
@@ -0,0 +1,54 @@
+package org.gluu.oxauth.client;
+
+import javax.ws.rs.core.MediaType;
+
+import org.gluu.oxauth.model.common.AuthenticationMethod;
+import org.gluu.oxauth.model.util.QueryBuilder;
+
+/**
+ * @author Yuriy Zabrovarnyy
+ */
+public class RevokeSessionRequest extends ClientAuthnRequest {
+
+    private String userCriterionKey;
+    private String userCriterionValue;
+
+    public RevokeSessionRequest() {
+        setContentType(MediaType.APPLICATION_FORM_URLENCODED);
+        setAuthenticationMethod(AuthenticationMethod.CLIENT_SECRET_BASIC);
+    }
+
+    public RevokeSessionRequest(String userCriterionKey, String userCriterionValue) {
+        this.userCriterionKey = userCriterionKey;
+        this.userCriterionValue = userCriterionValue;
+        setContentType(MediaType.APPLICATION_FORM_URLENCODED);
+        setAuthenticationMethod(AuthenticationMethod.CLIENT_SECRET_BASIC);
+    }
+
+    public String getUserCriterionKey() {
+        return userCriterionKey;
+    }
+
+    public void setUserCriterionKey(String userCriterionKey) {
+        this.userCriterionKey = userCriterionKey;
+    }
+
+    public String getUserCriterionValue() {
+        return userCriterionValue;
+    }
+
+    public void setUserCriterionValue(String userCriterionValue) {
+        this.userCriterionValue = userCriterionValue;
+    }
+
+    @Override
+    public String getQueryString() {
+        QueryBuilder builder = QueryBuilder.instance();
+
+        builder.append("user_criterion_key", userCriterionKey);
+        builder.append("user_criterion_value", userCriterionValue);
+        appendClientAuthnToQuery(builder);
+
+        return builder.toString();
+    }
+}
diff --git a/oxAuth/Client/src/main/java/org/gluu/oxauth/client/RevokeSessionResponse.java b/oxAuth/Client/src/main/java/org/gluu/oxauth/client/RevokeSessionResponse.java
new file mode 100644
index 00000000..fdbabb23
--- /dev/null
+++ b/oxAuth/Client/src/main/java/org/gluu/oxauth/client/RevokeSessionResponse.java
@@ -0,0 +1,28 @@
+package org.gluu.oxauth.client;
+
+import javax.ws.rs.core.Response;
+
+import org.gluu.oxauth.model.session.EndSessionErrorResponseType;
+
+/**
+ * @author Yuriy Zabrovarnyy
+ */
+public class RevokeSessionResponse extends BaseResponseWithErrors<EndSessionErrorResponseType>{
+
+    public RevokeSessionResponse() {
+    }
+
+    public RevokeSessionResponse(Response clientResponse) {
+        super(clientResponse);
+        injectDataFromJson();
+    }
+
+    @Override
+    public EndSessionErrorResponseType fromString(String params) {
+        return EndSessionErrorResponseType.fromString(params);
+    }
+
+    public void injectDataFromJson() {
+        injectDataFromJson(entity);
+    }
+}
diff --git a/oxAuth/Client/src/main/java/org/gluu/oxauth/client/TokenClient.java b/oxAuth/Client/src/main/java/org/gluu/oxauth/client/TokenClient.java
new file mode 100644
index 00000000..15578b5a
--- /dev/null
+++ b/oxAuth/Client/src/main/java/org/gluu/oxauth/client/TokenClient.java
@@ -0,0 +1,283 @@
+/*
+ * oxAuth is available under the MIT License (2008). See http://opensource.org/licenses/MIT for full text.
+ *
+ * Copyright (c) 2014, Gluu
+ */
+
+package org.gluu.oxauth.client;
+
+import javax.ws.rs.HttpMethod;
+import javax.ws.rs.client.Entity;
+import javax.ws.rs.client.Invocation.Builder;
+
+import org.apache.commons.lang.StringUtils;
+import org.apache.log4j.Logger;
+import org.gluu.oxauth.model.common.GrantType;
+
+/**
+ * Encapsulates functionality to make token request calls to an authorization
+ * server via REST Services.
+ *
+ * @author Javier Rojas Blum
+ * @version February 25, 2020
+ */
+public class TokenClient extends BaseClient<TokenRequest, TokenResponse> {
+
+    private static final Logger LOG = Logger.getLogger(TokenClient.class);
+
+    /**
+     * Constructs a token client by providing a REST url where the token service
+     * is located.
+     *
+     * @param url The REST Service location.
+     */
+    public TokenClient(String url) {
+        super(url);
+    }
+
+    @Override
+    public String getHttpMethod() {
+        return HttpMethod.POST;
+    }
+
+    /**
+     * <p>
+     * Executes the call to the REST Service requesting the authorization and
+     * processes the response.
+     * </p>
+     * <p>
+     * The authorization code is obtained by using an authorization server as an
+     * intermediary between the client and resource owner. Instead of requesting
+     * authorization directly from the resource owner, the client directs the
+     * resource owner to an authorization server (via its user- agent as defined in
+     * [RFC2616]), which in turn directs the resource owner back to the client with
+     * the authorization code.
+     * </p>
+     * <p>
+     * Before directing the resource owner back to the client with the authorization
+     * code, the authorization server authenticates the resource owner and obtains
+     * authorization. Because the resource owner only authenticates with the
+     * authorization server, the resource owner's credentials are never shared with
+     * the client.
+     * </p>
+     * <p>
+     * The authorization code provides a few important security benefits such as the
+     * ability to authenticate the client, and the transmission of the access token
+     * directly to the client without passing it through the resource owner's
+     * user-agent, potentially exposing it to others, including the resource owner.
+     * </p>
+     *
+     * @param code         he authorization code received from the authorization server.
+     *                     This parameter is required.
+     * @param redirectUri  The redirection URI. This parameter is required.
+     * @param clientId     The client identifier.
+     * @param clientSecret The client secret.
+     * @return The token response.
+     */
+    public TokenResponse execAuthorizationCode(String code, String redirectUri,
+                                               String clientId, String clientSecret) {
+        setRequest(new TokenRequest(GrantType.AUTHORIZATION_CODE));
+        getRequest().setCode(code);
+        getRequest().setRedirectUri(redirectUri);
+        getRequest().setAuthUsername(clientId);
+        getRequest().setAuthPassword(clientSecret);
+
+        return exec();
+    }
+
+    /**
+     * <p>
+     * Executes the call to the REST Service requesting the authorization and
+     * processes the response.
+     * </p>
+     * <p>
+     * The resource owner password credentials grant type is suitable in cases
+     * where the resource owner has a trust relationship with the client, such
+     * as its device operating system or a highly privileged application. The
+     * authorization server should take special care when enabling this grant
+     * type, and only allow it when other flows are not viable.
+     * </p>
+     * <p>
+     * The grant type is suitable for clients capable of obtaining the resource
+     * owner's credentials (username and password, typically using an
+     * interactive form). It is also used to migrate existing clients using
+     * direct authentication schemes such as HTTP Basic or Digest authentication
+     * to OAuth by converting the stored credentials to an access token.
+     * </p>
+     *
+     * @param username     The resource owner username. This parameter is required.
+     * @param password     The resource owner password. This parameter is required.
+     * @param scope        The scope of the access request. This parameter is optional.
+     * @param clientId     The client identifier.
+     * @param clientSecret The client secret.
+     * @return The token response.
+     */
+    public TokenResponse execResourceOwnerPasswordCredentialsGrant(
+            String username, String password, String scope,
+            String clientId, String clientSecret) {
+        setRequest(new TokenRequest(GrantType.RESOURCE_OWNER_PASSWORD_CREDENTIALS));
+        getRequest().setUsername(username);
+        getRequest().setPassword(password);
+        getRequest().setScope(scope);
+        getRequest().setAuthUsername(clientId);
+        getRequest().setAuthPassword(clientSecret);
+
+        return exec();
+    }
+
+    /**
+     * <p>
+     * Executes the call to the REST Service requesting the authorization and
+     * processes the response.
+     * </p>
+     * <p>
+     * The client can request an access token using only its client credentials
+     * when the client is requesting access to the protected resources under its
+     * control, or those of another resource owner which has been previously
+     * arranged with the authorization server. The client credentials grant type
+     * must only be used by confidential clients.
+     * </p>
+     *
+     * @param scope        The scope of the access request. This parameter is optional.
+     * @param clientId     The client identifier.
+     * @param clientSecret The client secret.
+     * @return The token response.
+     */
+    public TokenResponse execClientCredentialsGrant(
+            String scope, String clientId, String clientSecret) {
+        setRequest(new TokenRequest(GrantType.CLIENT_CREDENTIALS));
+        getRequest().setScope(scope);
+        getRequest().setAuthUsername(clientId);
+        getRequest().setAuthPassword(clientSecret);
+
+        return exec();
+    }
+
+    /**
+     * <p>
+     * Executes the call to the REST Service requesting the authorization and
+     * processes the response.
+     * </p>
+     * <p>
+     * The client uses an extension grant type by specifying the grant type
+     * using an absolute URI (defined by the authorization server) as the value
+     * of the grant_type parameter of the token endpoint, and by adding any
+     * additional parameters necessary.
+     * </p>
+     *
+     * @param grantTypeUri Absolute URI.
+     * @param assertion    Assertion grant type.
+     * @param clientId     The client identifier.
+     * @param clientSecret The client secret.
+     * @return The token response.
+     */
+    public TokenResponse execExtensionGrant(String grantTypeUri, String assertion,
+                                            String clientId, String clientSecret) {
+        GrantType grantType = GrantType.fromString(grantTypeUri);
+        setRequest(new TokenRequest(grantType));
+        getRequest().setAssertion(assertion);
+        getRequest().setAuthUsername(clientId);
+        getRequest().setAuthPassword(clientSecret);
+
+        return exec();
+    }
+
+    /**
+     * <p>
+     * Executes the call to the REST Service requesting the authorization and
+     * processes the response.
+     * </p>
+     * <p>
+     * If the authorization server issued a refresh token to the client, the
+     * client can make a request to the token endpoint for a new access token.
+     * </p>
+     *
+     * @param scope        The scope of the access request. This value is optional.
+     * @param refreshToken The refresh token issued to the client. This value is
+     *                     required.
+     * @param clientId     The client identifier.
+     * @param clientSecret The client secret.
+     * @return The token response.
+     */
+    public TokenResponse execRefreshToken(String scope, String refreshToken,
+                                          String clientId, String clientSecret) {
+        setRequest(new TokenRequest(GrantType.REFRESH_TOKEN));
+        getRequest().setScope(scope);
+        getRequest().setRefreshToken(refreshToken);
+        getRequest().setAuthUsername(clientId);
+        getRequest().setAuthPassword(clientSecret);
+
+        return exec();
+    }
+
+    /**
+     * Executes the call to the REST Service and processes the response.
+     *
+     * @return The token response.
+     */
+    public TokenResponse exec() {
+        // Prepare request parameters
+        initClientRequest();
+
+        if (getRequest().getGrantType() != null) {
+            requestForm.param("grant_type", getRequest().getGrantType().toString());
+        }
+        if (StringUtils.isNotBlank(getRequest().getCode())) {
+            requestForm.param("code", getRequest().getCode());
+        }
+        if (StringUtils.isNotBlank(getRequest().getCodeVerifier())) {
+            requestForm.param("code_verifier", getRequest().getCodeVerifier());
+        }
+        if (StringUtils.isNotBlank(getRequest().getRedirectUri())) {
+            requestForm.param("redirect_uri", getRequest().getRedirectUri());
+        }
+        if (StringUtils.isNotBlank(getRequest().getUsername())) {
+            requestForm.param("username", getRequest().getUsername());
+        }
+        if (StringUtils.isNotBlank(getRequest().getPassword())) {
+            requestForm.param("password", getRequest().getPassword());
+        }
+        if (StringUtils.isNotBlank(getRequest().getScope())) {
+            requestForm.param("scope", getRequest().getScope());
+        }
+        if (StringUtils.isNotBlank(getRequest().getAssertion())) {
+            requestForm.param("assertion", getRequest().getAssertion());
+        }
+        if (StringUtils.isNotBlank(getRequest().getRefreshToken())) {
+            requestForm.param("refresh_token", getRequest().getRefreshToken());
+        }
+
+        for (String key : getRequest().getCustomParameters().keySet()) {
+            requestForm.param(key, getRequest().getCustomParameters().get(key));
+        }
+        if (StringUtils.isNotBlank(getRequest().getAuthReqId())) {
+            requestForm.param("auth_req_id", getRequest().getAuthReqId());
+        }
+        if (StringUtils.isNotBlank(getRequest().getDeviceCode())) {
+            requestForm.param("device_code", getRequest().getDeviceCode());
+        }
+
+        Builder clientRequest = webTarget.request();
+        applyCookies(clientRequest);
+
+        new ClientAuthnEnabler(clientRequest, requestForm).exec(request);
+
+        clientRequest.header("Content-Type", request.getContentType());
+//        clientRequest.setHttpMethod(getHttpMethod());
+
+        // Call REST Service and handle response
+        try {
+            clientResponse = clientRequest.buildPost(Entity.form(requestForm)).invoke();
+
+            final TokenResponse tokenResponse = new TokenResponse(clientResponse);
+            tokenResponse.injectDataFromJson();
+            setResponse(tokenResponse);
+        } catch (Exception e) {
+            LOG.error(e.getMessage(), e);
+        } finally {
+            closeConnection();
+        }
+
+        return getResponse();
+    }
+}
\ No newline at end of file
diff --git a/oxAuth/Client/src/main/java/org/gluu/oxauth/client/TokenRequest.java b/oxAuth/Client/src/main/java/org/gluu/oxauth/client/TokenRequest.java
new file mode 100644
index 00000000..dae5df45
--- /dev/null
+++ b/oxAuth/Client/src/main/java/org/gluu/oxauth/client/TokenRequest.java
@@ -0,0 +1,352 @@
+/*
+ * oxAuth is available under the MIT License (2008). See http://opensource.org/licenses/MIT for full text.
+ *
+ * Copyright (c) 2014, Gluu
+ */
+
+package org.gluu.oxauth.client;
+
+import java.util.HashMap;
+import java.util.Map;
+
+import javax.ws.rs.core.MediaType;
+
+import org.gluu.oxauth.model.common.AuthenticationMethod;
+import org.gluu.oxauth.model.common.GrantType;
+import org.gluu.oxauth.model.token.ClientAssertionType;
+import org.gluu.oxauth.model.uma.UmaScopeType;
+import org.gluu.oxauth.model.util.QueryBuilder;
+
+/**
+ * Represents a token request to send to the authorization server.
+ *
+ * @author Javier Rojas Blum
+ * @version June 28, 2017
+ */
+public class TokenRequest extends ClientAuthnRequest {
+
+    public static class Builder {
+
+        private GrantType grantType;
+        private String scope;
+
+        public Builder grantType(GrantType grantType) {
+            this.grantType = grantType;
+            return this;
+        }
+
+        public Builder scope(String scope) {
+            this.scope = scope;
+            return this;
+        }
+
+        public Builder pat(String... scopeArray) {
+            String scope = UmaScopeType.PROTECTION.getValue();
+            if (scopeArray != null && scopeArray.length > 0) {
+                for (String s : scopeArray) {
+                    scope = scope + " " + s;
+                }
+            }
+            return scope(scope);
+        }
+
+        public TokenRequest build() {
+            final TokenRequest request = new TokenRequest(grantType);
+            request.setScope(scope);
+            return request;
+        }
+    }
+
+    private GrantType grantType;
+    private String code;
+    private String redirectUri;
+    private String username;
+    private String password;
+    private String scope;
+    private String assertion;
+    private String refreshToken;
+    private String codeVerifier;
+    private String authReqId;
+    private String deviceCode;
+
+    /**
+     * Constructs a token request.
+     *
+     * @param grantType The grant type is mandatory and could be:
+     *                  <code>authorization_code</code>, <code>password</code>,
+     *                  <code>client_credentials</code>, <code>refresh_token</code>.
+     */
+    public TokenRequest(GrantType grantType) {
+        super();
+        this.grantType = grantType;
+
+        setContentType(MediaType.APPLICATION_FORM_URLENCODED);
+        setAuthenticationMethod(AuthenticationMethod.CLIENT_SECRET_BASIC);
+    }
+
+    public static Builder builder() {
+        return new Builder();
+    }
+
+    public static Builder umaBuilder() {
+        return new Builder().grantType(GrantType.CLIENT_CREDENTIALS);
+    }
+
+    /**
+     * Returns the grant type.
+     *
+     * @return The grant type.
+     */
+    public GrantType getGrantType() {
+        return grantType;
+    }
+
+    /**
+     * Sets the grant type.
+     *
+     * @param grantType The grant type.
+     */
+    public void setGrantType(GrantType grantType) {
+        this.grantType = grantType;
+    }
+
+    /**
+     * Returns the authorization code.
+     *
+     * @return The authorization code.
+     */
+    public String getCode() {
+        return code;
+    }
+
+    /**
+     * Sets the authorization code.
+     *
+     * @param code The authorization code.
+     */
+    public void setCode(String code) {
+        this.code = code;
+    }
+
+    /**
+     * Gets PKCE code verifier.
+     *
+     * @return code verifier
+     */
+    public String getCodeVerifier() {
+        return codeVerifier;
+    }
+
+    /**
+     * Sets PKCE code verifier.
+     *
+     * @param codeVerifier code verifier
+     */
+    public void setCodeVerifier(String codeVerifier) {
+        this.codeVerifier = codeVerifier;
+    }
+
+    /**
+     * Returns the redirect URI.
+     *
+     * @return The redirect URI.
+     */
+    public String getRedirectUri() {
+        return redirectUri;
+    }
+
+    /**
+     * Sets the redirect URI.
+     *
+     * @param redirectUri The redirect URI.
+     */
+    public void setRedirectUri(String redirectUri) {
+        this.redirectUri = redirectUri;
+    }
+
+    /**
+     * Returns the username.
+     *
+     * @return The username.
+     */
+    public String getUsername() {
+        return username;
+    }
+
+    /**
+     * Sets the username.
+     *
+     * @param username The username.
+     */
+    public void setUsername(String username) {
+        this.username = username;
+    }
+
+    /**
+     * Returns the password.
+     *
+     * @return The password.
+     */
+    public String getPassword() {
+        return password;
+    }
+
+    /**
+     * Sets the password.
+     *
+     * @param password The password.
+     */
+    public void setPassword(String password) {
+        this.password = password;
+    }
+
+    /**
+     * Returns the scope.
+     *
+     * @return The scope.
+     */
+    public String getScope() {
+        return scope;
+    }
+
+    /**
+     * Sets the scope.
+     *
+     * @param scope The scope.
+     */
+    public void setScope(String scope) {
+        this.scope = scope;
+    }
+
+    /**
+     * Returns the assertion.
+     *
+     * @return The assertion.
+     */
+    public String getAssertion() {
+        return assertion;
+    }
+
+    /**
+     * Sets the assertion.
+     *
+     * @param assertion The assertion.
+     */
+    public void setAssertion(String assertion) {
+        this.assertion = assertion;
+    }
+
+    /**
+     * Returns the refresh token.
+     *
+     * @return The refresh token.
+     */
+    public String getRefreshToken() {
+        return refreshToken;
+    }
+
+    /**
+     * Sets the refresh token.
+     *
+     * @param refreshToken The refresh token.
+     */
+    public void setRefreshToken(String refreshToken) {
+        this.refreshToken = refreshToken;
+    }
+
+    public String getAuthReqId() {
+        return authReqId;
+    }
+
+    public void setAuthReqId(String authReqId) {
+        this.authReqId = authReqId;
+    }
+
+    public String getDeviceCode() {
+        return deviceCode;
+    }
+
+    public void setDeviceCode(String deviceCode) {
+        this.deviceCode = deviceCode;
+    }
+
+    /**
+     * Returns a query string with the parameters of the authorization request.
+     * Any <code>null</code> or empty parameter will be omitted.
+     *
+     * @return A query string of parameters.
+     */
+    @Override
+    public String getQueryString() {
+        QueryBuilder builder = QueryBuilder.instance();
+
+        builder.appendIfNotNull("grant_type", grantType);
+        builder.append("code", code);
+        builder.append("redirect_uri", redirectUri);
+        builder.append("scope", scope);
+        builder.append("username", username);
+        builder.append("password", password);
+        builder.append("assertion", assertion);
+        builder.append("refreshToken", refreshToken);
+        builder.append("authReqId", authReqId);
+        builder.append("device_code", deviceCode);
+        appendClientAuthnToQuery(builder);
+        for (String key : getCustomParameters().keySet()) {
+            builder.append(key, getCustomParameters().get(key));
+        }
+
+        return builder.toString();
+    }
+
+    /**
+     * Returns a collection of parameters of the token request. Any
+     * <code>null</code> or empty parameter will be omitted.
+     *
+     * @return A collection of parameters.
+     */
+    public Map<String, String> getParameters() {
+        Map<String, String> parameters = new HashMap<String, String>();
+
+        if (grantType != null) {
+            parameters.put("grant_type", grantType.toString());
+        }
+        if (code != null && !code.isEmpty()) {
+            parameters.put("code", code);
+        }
+        if (redirectUri != null && !redirectUri.isEmpty()) {
+            parameters.put("redirect_uri", redirectUri);
+        }
+        if (username != null && !username.isEmpty()) {
+            parameters.put("username", username);
+        }
+        if (password != null && !password.isEmpty()) {
+            parameters.put("password", password);
+        }
+        if (scope != null && !scope.isEmpty()) {
+            parameters.put("scope", scope);
+        }
+        if (assertion != null && !assertion.isEmpty()) {
+            parameters.put("assertion", assertion);
+        }
+        if (refreshToken != null && !refreshToken.isEmpty()) {
+            parameters.put("refresh_token", refreshToken);
+        }
+        if (getAuthenticationMethod() == AuthenticationMethod.CLIENT_SECRET_POST) {
+            if (getAuthUsername() != null && !getAuthUsername().isEmpty()) {
+                parameters.put("client_id", getAuthUsername());
+            }
+            if (getAuthPassword() != null && !getAuthPassword().isEmpty()) {
+                parameters.put("client_secret", getAuthPassword());
+            }
+        } else if (getAuthenticationMethod() == AuthenticationMethod.CLIENT_SECRET_JWT ||
+                getAuthenticationMethod() == AuthenticationMethod.PRIVATE_KEY_JWT) {
+            parameters.put("client_assertion_type", ClientAssertionType.JWT_BEARER.toString());
+            parameters.put("client_assertion", getClientAssertion());
+        }
+        for (String key : getCustomParameters().keySet()) {
+            parameters.put(key, getCustomParameters().get(key));
+        }
+
+        return parameters;
+    }
+}
\ No newline at end of file
diff --git a/oxAuth/Client/src/main/java/org/gluu/oxauth/client/TokenResponse.java b/oxAuth/Client/src/main/java/org/gluu/oxauth/client/TokenResponse.java
new file mode 100644
index 00000000..580687ae
--- /dev/null
+++ b/oxAuth/Client/src/main/java/org/gluu/oxauth/client/TokenResponse.java
@@ -0,0 +1,194 @@
+/*
+ * oxAuth is available under the MIT License (2008). See http://opensource.org/licenses/MIT for full text.
+ *
+ * Copyright (c) 2014, Gluu
+ */
+
+package org.gluu.oxauth.client;
+
+import javax.ws.rs.core.Response;
+
+import org.apache.commons.lang.StringUtils;
+import org.apache.log4j.Logger;
+import org.gluu.oxauth.model.common.TokenType;
+import org.gluu.oxauth.model.token.TokenErrorResponseType;
+import org.json.JSONException;
+import org.json.JSONObject;
+
+/**
+ * Represents a token response received from the authorization server.
+ *
+ * @author Javier Rojas Blum Date: 10.19.2011
+ */
+public class TokenResponse extends BaseResponseWithErrors<TokenErrorResponseType> {
+
+    private static final Logger LOG = Logger.getLogger(TokenResponse.class);
+
+    private String accessToken;
+    private TokenType tokenType;
+    private Integer expiresIn;
+    private String refreshToken;
+    private String scope;
+    private String idToken;
+
+    public TokenResponse() {
+    }
+
+    /**
+     * Constructs a token response.
+     *
+     * @param clientResponse The response
+     */
+    public TokenResponse(Response clientResponse) {
+        super(clientResponse);
+    }
+
+    @Override
+    public TokenErrorResponseType fromString(String p_str) {
+        return TokenErrorResponseType.fromString(p_str);
+    }
+
+    public void injectDataFromJson() {
+        injectDataFromJson(entity);
+    }
+
+    @Override
+    public void injectDataFromJson(String p_json) {
+        if (StringUtils.isNotBlank(entity)) {
+            try {
+                JSONObject jsonObj = new JSONObject(entity);
+                if (jsonObj.has("access_token")) {
+                    setAccessToken(jsonObj.getString("access_token"));
+                }
+                if (jsonObj.has("token_type")) {
+                    setTokenType(TokenType.fromString(jsonObj.getString("token_type")));
+                }
+                if (jsonObj.has("expires_in")) {
+                    setExpiresIn(jsonObj.getInt("expires_in"));
+                }
+                if (jsonObj.has("refresh_token")) {
+                    setRefreshToken(jsonObj.getString("refresh_token"));
+                }
+                if (jsonObj.has("scope")) {
+                    setScope(jsonObj.getString("scope"));
+                }
+                if (jsonObj.has("id_token")) {
+                    setIdToken(jsonObj.getString("id_token"));
+                }
+            } catch (JSONException e) {
+                LOG.error(e.getMessage(), e);
+            }
+        }
+    }
+
+
+    /**
+     * Returns the access token issued by the authorization server.
+     *
+     * @return The access token issued by the authorization server.
+     */
+    public String getAccessToken() {
+        return accessToken;
+    }
+
+    /**
+     * Sets the access token issued by the authorization server.
+     *
+     * @param accessToken The access token issued by the authorization server.
+     */
+    public void setAccessToken(String accessToken) {
+        this.accessToken = accessToken;
+    }
+
+    /**
+     * Returns the type of the token issued. Value is case insensitive.
+     *
+     * @return The type of the token issued.
+     */
+    public TokenType getTokenType() {
+        return tokenType;
+    }
+
+    /**
+     * Sets the type of the token issued. Value is case insensitive.
+     *
+     * @param tokenType The type of the token issued.
+     */
+    public void setTokenType(TokenType tokenType) {
+        this.tokenType = tokenType;
+    }
+
+    /**
+     * Returns the lifetime in seconds of the access token.
+     *
+     * @return The lifetime in seconds of the access token.
+     */
+    public Integer getExpiresIn() {
+        return expiresIn;
+    }
+
+    /**
+     * Sets the lifetime in seconds of the access token.
+     *
+     * @param expiresIn The lifetime in seconds of the access token.
+     */
+    public void setExpiresIn(Integer expiresIn) {
+        this.expiresIn = expiresIn;
+    }
+
+    /**
+     * Returns the refresh token which can be used to obtain new access tokens
+     * using the same authorization grant.
+     *
+     * @return The refresh token.
+     */
+    public String getRefreshToken() {
+        return refreshToken;
+    }
+
+    /**
+     * Sets the refresh token which can be used to obtain new access tokens
+     * using the same authorization grant.
+     *
+     * @param refreshToken The refresh token.
+     */
+    public void setRefreshToken(String refreshToken) {
+        this.refreshToken = refreshToken;
+    }
+
+    /**
+     * Returns the scope of the access token.
+     *
+     * @return The scope of the access token.
+     */
+    public String getScope() {
+        return scope;
+    }
+
+    /**
+     * Sets the scope of the access token.
+     *
+     * @param scope The scope of the access token.
+     */
+    public void setScope(String scope) {
+        this.scope = scope;
+    }
+
+    /**
+     * Gets the value of the id token.
+     *
+     * @return The id token.
+     */
+    public String getIdToken() {
+        return idToken;
+    }
+
+    /**
+     * Sets the value of the id token.
+     *
+     * @param idToken The id token.
+     */
+    public void setIdToken(String idToken) {
+        this.idToken = idToken;
+    }
+}
\ No newline at end of file
diff --git a/oxAuth/Client/src/main/java/org/gluu/oxauth/client/TokenRevocationClient.java b/oxAuth/Client/src/main/java/org/gluu/oxauth/client/TokenRevocationClient.java
new file mode 100644
index 00000000..f6ab8f9b
--- /dev/null
+++ b/oxAuth/Client/src/main/java/org/gluu/oxauth/client/TokenRevocationClient.java
@@ -0,0 +1,114 @@
+/*
+ * oxAuth is available under the MIT License (2008). See http://opensource.org/licenses/MIT for full text.
+ *
+ * Copyright (c) 2014, Gluu
+ */
+
+package org.gluu.oxauth.client;
+
+import javax.ws.rs.HttpMethod;
+import javax.ws.rs.client.Entity;
+import javax.ws.rs.client.Invocation.Builder;
+
+import org.apache.commons.lang.StringUtils;
+import org.apache.log4j.Logger;
+import org.gluu.oxauth.model.common.TokenTypeHint;
+import org.gluu.oxauth.model.token.TokenRevocationRequestParam;
+
+/**
+ * Encapsulates functionality to make token revocation request calls to an authorization server via REST Services.
+ *
+ * @author Javier Rojas Blum
+ * @version January 16, 2019
+ */
+public class TokenRevocationClient extends BaseClient<TokenRevocationRequest, TokenRevocationResponse> {
+
+    private static final Logger LOG = Logger.getLogger(TokenRevocationClient.class);
+
+    /**
+     * Constructs a token revocation client by providing a REST url where the token service is located.
+     *
+     * @param url The REST Service location.
+     */
+    public TokenRevocationClient(String url) {
+        super(url);
+    }
+
+    @Override
+    public String getHttpMethod() {
+        return HttpMethod.POST;
+    }
+
+    /**
+     * Executes the call to the REST Service requesting the token revocation and processes the response.
+     *
+     * @param clientId     The client identifier.
+     * @param clientSecret The client secret.
+     * @param token        The token that the client wants to get revoked.
+     * @return The token revocation response.
+     */
+    public TokenRevocationResponse execTokenRevocation(String clientId, String clientSecret, String token) {
+        return execTokenRevocation(clientId, clientSecret, token, null);
+    }
+
+    /**
+     * Executes the call to the REST Service requesting the token revocation and processes the response.
+     *
+     * @param clientId      The client identifier.
+     * @param clientSecret  The client secret.
+     * @param token         The token that the client wants to get revoked.
+     * @param tokenTypeHint A hint about the type of the token submitted for revocation.
+     * @return The token revocation response.
+     */
+    public TokenRevocationResponse execTokenRevocation(String clientId, String clientSecret, String token, TokenTypeHint tokenTypeHint) {
+        setRequest(new TokenRevocationRequest());
+        getRequest().setToken(token);
+        getRequest().setTokenTypeHint(tokenTypeHint);
+        getRequest().setAuthUsername(clientId);
+        getRequest().setAuthPassword(clientSecret);
+
+        return exec();
+    }
+
+    /**
+     * Executes the call to the REST Service and processes the response.
+     *
+     * @return The token revocation response.
+     */
+    public TokenRevocationResponse exec() {
+        // Prepare request parameters
+        initClientRequest();
+
+        if (StringUtils.isNotBlank(getRequest().getToken())) {
+            requestForm.param(TokenRevocationRequestParam.TOKEN, getRequest().getToken());
+        }
+        if (getRequest().getTokenTypeHint() != null) {
+            requestForm.param(TokenRevocationRequestParam.TOKEN_TYPE_HINT, getRequest().getTokenTypeHint().toString());
+        }
+        if (request.getAuthUsername() != null && !request.getAuthUsername().isEmpty()) {
+            requestForm.param("client_id", request.getAuthUsername());
+        }
+
+        Builder clientRequest = webTarget.request();
+        applyCookies(clientRequest);
+
+        new ClientAuthnEnabler(clientRequest, requestForm).exec(request);
+
+        clientRequest.header("Content-Type", request.getContentType());
+//        clientRequest.setHttpMethod(getHttpMethod());
+
+        // Call REST Service and handle response
+        try {
+            clientResponse = clientRequest.buildPost(Entity.form(requestForm)).invoke();
+
+            final TokenRevocationResponse tokenResponse = new TokenRevocationResponse(clientResponse);
+            setResponse(tokenResponse);
+        } catch (Exception e) {
+            LOG.error(e.getMessage(), e);
+        } finally {
+            closeConnection();
+        }
+
+        return getResponse();
+    }
+}
diff --git a/oxAuth/Client/src/main/java/org/gluu/oxauth/client/TokenRevocationRequest.java b/oxAuth/Client/src/main/java/org/gluu/oxauth/client/TokenRevocationRequest.java
new file mode 100644
index 00000000..f8aa2eb3
--- /dev/null
+++ b/oxAuth/Client/src/main/java/org/gluu/oxauth/client/TokenRevocationRequest.java
@@ -0,0 +1,68 @@
+/*
+ * oxAuth is available under the MIT License (2008). See http://opensource.org/licenses/MIT for full text.
+ *
+ * Copyright (c) 2014, Gluu
+ */
+
+package org.gluu.oxauth.client;
+
+import javax.ws.rs.core.MediaType;
+
+import org.apache.log4j.Logger;
+import org.gluu.oxauth.model.common.AuthenticationMethod;
+import org.gluu.oxauth.model.common.TokenTypeHint;
+import org.gluu.oxauth.model.token.TokenRevocationRequestParam;
+import org.gluu.oxauth.model.util.QueryBuilder;
+
+/**
+ * @author Javier Rojas Blum
+ * @version January 16, 2019
+ */
+public class TokenRevocationRequest extends ClientAuthnRequest {
+
+    private static final Logger LOG = Logger.getLogger(TokenRevocationRequest.class);
+
+    private String token;
+    private TokenTypeHint tokenTypeHint;
+
+    /**
+     * Constructs a token revocation request.
+     */
+    public TokenRevocationRequest() {
+        super();
+
+        setContentType(MediaType.APPLICATION_FORM_URLENCODED);
+        setAuthenticationMethod(AuthenticationMethod.CLIENT_SECRET_BASIC);
+    }
+
+    public String getToken() {
+        return token;
+    }
+
+    public void setToken(String token) {
+        this.token = token;
+    }
+
+    public TokenTypeHint getTokenTypeHint() {
+        return tokenTypeHint;
+    }
+
+    public void setTokenTypeHint(TokenTypeHint tokenTypeHint) {
+        this.tokenTypeHint = tokenTypeHint;
+    }
+
+    /**
+     * Returns a query string with the parameters of the toke revocation request.
+     * Any <code>null</code> or empty parameter will be omitted.
+     *
+     * @return A query string of parameters.
+     */
+    @Override
+    public String getQueryString() {
+        QueryBuilder queryBuilder = new QueryBuilder();
+        queryBuilder.append(TokenRevocationRequestParam.TOKEN, token);
+        queryBuilder.append(TokenRevocationRequestParam.TOKEN_TYPE_HINT, tokenTypeHint != null ? tokenTypeHint.toString() : null);
+        queryBuilder.append("client_id", getAuthUsername());
+        return queryBuilder.toString();
+    }
+}
diff --git a/oxAuth/Client/src/main/java/org/gluu/oxauth/client/TokenRevocationResponse.java b/oxAuth/Client/src/main/java/org/gluu/oxauth/client/TokenRevocationResponse.java
new file mode 100644
index 00000000..77c6f897
--- /dev/null
+++ b/oxAuth/Client/src/main/java/org/gluu/oxauth/client/TokenRevocationResponse.java
@@ -0,0 +1,113 @@
+/*
+ * oxAuth is available under the MIT License (2008). See http://opensource.org/licenses/MIT for full text.
+ *
+ * Copyright (c) 2014, Gluu
+ */
+
+package org.gluu.oxauth.client;
+
+import javax.ws.rs.core.Response;
+
+import org.apache.commons.lang.StringUtils;
+import org.gluu.oxauth.model.token.TokenRevocationErrorResponseType;
+import org.json.JSONException;
+import org.json.JSONObject;
+
+/**
+ * @author Javier Rojas Blum
+ * @version January 16, 2019
+ */
+public class TokenRevocationResponse extends BaseResponse {
+
+    private TokenRevocationErrorResponseType errorType;
+    private String errorDescription;
+    private String errorUri;
+
+    /**
+     * Constructs an token revocation response.
+     */
+    public TokenRevocationResponse(Response clientResponse) {
+        super(clientResponse);
+
+        if (StringUtils.isNotBlank(entity)) {
+            try {
+                JSONObject jsonObj = new JSONObject(entity);
+                if (jsonObj.has("error")) {
+                    errorType = TokenRevocationErrorResponseType.getByValue(jsonObj.getString("error"));
+                }
+                if (jsonObj.has("error_description")) {
+                    errorDescription = jsonObj.getString("error_description");
+                }
+                if (jsonObj.has("error_uri")) {
+                    errorUri = jsonObj.getString("error_uri");
+                }
+            } catch (JSONException e) {
+                e.printStackTrace();
+            }
+        }
+    }
+
+    /**
+     * Returns the error code when the request fails, otherwise will return
+     * <code>null</code>.
+     *
+     * @return The error code when the request fails.
+     */
+    public TokenRevocationErrorResponseType getErrorType() {
+        return errorType;
+    }
+
+    /**
+     * Sets the error code when the request fails, otherwise will return
+     * <code>null</code>.
+     *
+     * @param errorType The error code when the request fails.
+     */
+    public void setErrorType(TokenRevocationErrorResponseType errorType) {
+        this.errorType = errorType;
+    }
+
+    /**
+     * Returns a human-readable UTF-8 encoded text providing additional
+     * information, used to assist the client developer in understanding the
+     * error that occurred.
+     *
+     * @return The error description.
+     */
+    public String getErrorDescription() {
+        return errorDescription;
+    }
+
+    /**
+     * Sets a human-readable UTF-8 encoded text providing additional
+     * information, used to assist the client developer in understanding the
+     * error that occurred.
+     *
+     * @param errorDescription The error description.
+     */
+    public void setErrorDescription(String errorDescription) {
+        this.errorDescription = errorDescription;
+    }
+
+    /**
+     * Returns a URI identifying a human-readable web page with information
+     * about the error, used to provide the client developer with additional
+     * information about the error.
+     *
+     * @return A URI with information about the error.
+     */
+    public String getErrorUri() {
+        return errorUri;
+    }
+
+    /**
+     * Sets a URI identifying a human-readable web page with information about
+     * the error, used to provide the client developer with additional
+     * information about the error.
+     *
+     * @param errorUri A URI with information about the error.
+     */
+    public void setErrorUri(String errorUri) {
+        this.errorUri = errorUri;
+    }
+}
diff --git a/oxAuth/Client/src/main/java/org/gluu/oxauth/client/UserInfoClient.java b/oxAuth/Client/src/main/java/org/gluu/oxauth/client/UserInfoClient.java
new file mode 100644
index 00000000..c4c43044
--- /dev/null
+++ b/oxAuth/Client/src/main/java/org/gluu/oxauth/client/UserInfoClient.java
@@ -0,0 +1,216 @@
+/*
+ * oxAuth is available under the MIT License (2008). See http://opensource.org/licenses/MIT for full text.
+ *
+ * Copyright (c) 2014, Gluu
+ */
+
+package org.gluu.oxauth.client;
+
+import java.security.PrivateKey;
+import java.util.ArrayList;
+import java.util.Iterator;
+import java.util.List;
+
+import javax.ws.rs.HttpMethod;
+import javax.ws.rs.client.Entity;
+import javax.ws.rs.client.Invocation.Builder;
+import javax.ws.rs.core.MediaType;
+
+import org.apache.commons.lang.StringUtils;
+import org.gluu.oxauth.model.common.AuthorizationMethod;
+import org.gluu.oxauth.model.crypto.OxAuthCryptoProvider;
+import org.gluu.oxauth.model.jwe.Jwe;
+import org.gluu.oxauth.model.jwt.Jwt;
+import org.gluu.oxauth.model.userinfo.UserInfoErrorResponseType;
+import org.gluu.oxauth.model.util.JwtUtil;
+import org.gluu.oxauth.model.util.Util;
+import org.json.JSONArray;
+import org.json.JSONException;
+import org.json.JSONObject;
+
+/**
+ * Encapsulates functionality to make user info request calls to an authorization server via REST Services.
+ *
+ * @author Javier Rojas Blum
+ * @version December 26, 2016
+ */
+public class UserInfoClient extends BaseClient<UserInfoRequest, UserInfoResponse> {
+
+    private String sharedKey;
+    private PrivateKey privateKey;
+    private String jwksUri;
+
+    /**
+     * Constructs an User Info client by providing a REST url where the service is located.
+     *
+     * @param url The REST Service location.
+     */
+    public UserInfoClient(String url) {
+        super(url);
+    }
+
+    @Override
+    public String getHttpMethod() {
+        if (request.getAuthorizationMethod() == null
+                || request.getAuthorizationMethod() == AuthorizationMethod.AUTHORIZATION_REQUEST_HEADER_FIELD
+                || request.getAuthorizationMethod() == AuthorizationMethod.URL_QUERY_PARAMETER) {
+            return HttpMethod.GET;
+        } else /*if (request.getAuthorizationMethod() == AuthorizationMethod.FORM_ENCODED_BODY_PARAMETER)*/ {
+            return HttpMethod.POST;
+        }
+    }
+
+    /**
+     * Executes the call to the REST Service and processes the response.
+     *
+     * @param accessToken The access token obtained from the oxAuth authorization request.
+     * @return The service response.
+     */
+    public UserInfoResponse execUserInfo(String accessToken) {
+        setRequest(new UserInfoRequest(accessToken));
+
+        return exec();
+    }
+
+    /**
+     * Executes the call to the REST Service and processes the response.
+     *
+     * @return The service response.
+     */
+    public UserInfoResponse exec() {
+        // Prepare request parameters
+        initClientRequest();
+
+        Builder clientRequest = null;
+        if (getRequest().getAuthorizationMethod() == null
+                || getRequest().getAuthorizationMethod() == AuthorizationMethod.AUTHORIZATION_REQUEST_HEADER_FIELD) {
+            if (StringUtils.isNotBlank(getRequest().getAccessToken())) {
+            	clientRequest = webTarget.request();
+                clientRequest.header("Authorization", "Bearer " + getRequest().getAccessToken());
+            }
+        } else if (getRequest().getAuthorizationMethod() == AuthorizationMethod.FORM_ENCODED_BODY_PARAMETER) {
+            if (StringUtils.isNotBlank(getRequest().getAccessToken())) {
+                requestForm.param("access_token", getRequest().getAccessToken());
+            }
+        } else if (getRequest().getAuthorizationMethod() == AuthorizationMethod.URL_QUERY_PARAMETER) {
+            if (StringUtils.isNotBlank(getRequest().getAccessToken())) {
+            	addReqParam("access_token", getRequest().getAccessToken().toString());
+            }
+        }
+
+        if (clientRequest == null) {
+        	clientRequest = webTarget.request();
+        }
+
+        clientRequest.header("Content-Type", MediaType.APPLICATION_FORM_URLENCODED);
+//      clientRequest.setHttpMethod(getHttpMethod());
+
+        // Call REST Service and handle response
+        try {
+            if (getRequest().getAuthorizationMethod() == null
+                    || getRequest().getAuthorizationMethod() == AuthorizationMethod.AUTHORIZATION_REQUEST_HEADER_FIELD
+                    || getRequest().getAuthorizationMethod() == AuthorizationMethod.URL_QUERY_PARAMETER) {
+                clientResponse = clientRequest.buildGet().invoke();
+            } else if (getRequest().getAuthorizationMethod() == AuthorizationMethod.FORM_ENCODED_BODY_PARAMETER) {
+                clientResponse = clientRequest.buildPost(Entity.form(requestForm)).invoke();
+            }
+
+            int status = clientResponse.getStatus();
+
+            setResponse(new UserInfoResponse(status));
+
+            String entity = clientResponse.readEntity(String.class);
+            getResponse().setEntity(entity);
+            getResponse().setHeaders(clientResponse.getMetadata());
+            if (StringUtils.isNotBlank(entity)) {
+                List<Object> contentType = clientResponse.getHeaders().get("Content-Type");
+                if (contentType != null && contentType.contains("application/jwt")) {
+                    String[] jwtParts = entity.split("\\.");
+                    if (jwtParts.length == 5) {
+                        byte[] sharedSymmetricKey = sharedKey != null ? sharedKey.getBytes(Util.UTF8_STRING_ENCODING) : null;
+                        Jwe jwe = Jwe.parse(entity, privateKey, sharedSymmetricKey);
+                        getResponse().setClaims(jwe.getClaims().toMap());
+                    } else {
+                        Jwt jwt = Jwt.parse(entity);
+
+                        OxAuthCryptoProvider cryptoProvider = new OxAuthCryptoProvider();
+                        boolean signatureVerified = cryptoProvider.verifySignature(
+                                jwt.getSigningInput(),
+                                jwt.getEncodedSignature(),
+                                jwt.getHeader().getKeyId(),
+                                JwtUtil.getJSONWebKeys(jwksUri),
+                                sharedKey,
+                                jwt.getHeader().getSignatureAlgorithm());
+
+                        if (signatureVerified) {
+                            getResponse().setClaims(jwt.getClaims().toMap());
+                        }
+                    }
+                } else {
+                    try {
+                        JSONObject jsonObj = new JSONObject(entity);
+
+                        if (jsonObj.has("error")) {
+                            getResponse().setErrorType(UserInfoErrorResponseType.fromString(jsonObj.getString("error")));
+                            jsonObj.remove("error");
+                        }
+                        if (jsonObj.has("error_description")) {
+                            getResponse().setErrorDescription(jsonObj.getString("error_description"));
+                            jsonObj.remove("error_description");
+                        }
+                        if (jsonObj.has("error_uri")) {
+                            getResponse().setErrorUri(jsonObj.getString("error_uri"));
+                            jsonObj.remove("error_uri");
+                        }
+
+                        for (Iterator<String> iterator = jsonObj.keys(); iterator.hasNext(); ) {
+                            String key = iterator.next();
+                            List<String> values = new ArrayList<String>();
+
+                            JSONArray jsonArray = jsonObj.optJSONArray(key);
+                            if (jsonArray != null) {
+                                for (int i = 0; i < jsonArray.length(); i++) {
+                                    String value = jsonArray.optString(i);
+                                    if (value != null) {
+                                        values.add(value);
+                                    }
+                                }
+                            } else {
+                                String value = jsonObj.optString(key);
+                                if (value != null) {
+                                    values.add(value);
+                                }
+                            }
+
+                            getResponse().getClaims().put(key, values);
+                        }
+                    } catch (JSONException e) {
+                        e.printStackTrace();
+                    }
+                }
+            }
+        } catch (Exception e) {
+            e.printStackTrace();
+        } finally {
+            closeConnection();
+        }
+
+        return getResponse();
+    }
+
+    public void setSharedKey(String sharedKey) {
+        this.sharedKey = sharedKey;
+    }
+
+    public void setPrivateKey(PrivateKey privateKey) {
+        this.privateKey = privateKey;
+    }
+
+    public String getJwksUri() {
+        return jwksUri;
+    }
+
+    public void setJwksUri(String jwksUri) {
+        this.jwksUri = jwksUri;
+    }
+}
\ No newline at end of file
diff --git a/oxAuth/Client/src/main/java/org/gluu/oxauth/client/UserInfoRequest.java b/oxAuth/Client/src/main/java/org/gluu/oxauth/client/UserInfoRequest.java
new file mode 100644
index 00000000..985ccb7f
--- /dev/null
+++ b/oxAuth/Client/src/main/java/org/gluu/oxauth/client/UserInfoRequest.java
@@ -0,0 +1,90 @@
+/*
+ * oxAuth is available under the MIT License (2008). See http://opensource.org/licenses/MIT for full text.
+ *
+ * Copyright (c) 2014, Gluu
+ */
+
+package org.gluu.oxauth.client;
+
+import java.util.HashMap;
+import java.util.Map;
+
+import org.apache.commons.lang.StringUtils;
+import org.gluu.oxauth.model.common.AuthorizationMethod;
+
+/**
+ * Represents a User Info request to send to the authorization server.
+ *
+ * @author Javier Rojas Blum Date: 11.28.2011
+ */
+public class UserInfoRequest extends BaseRequest {
+
+    private String accessToken;
+
+    /**
+     * Constructs a User Info Request.
+     *
+     * @param accessToken The access token obtained from the oxAuth authorization request.
+     */
+    public UserInfoRequest(String accessToken) {
+        this.accessToken = accessToken;
+        setAuthorizationMethod(AuthorizationMethod.AUTHORIZATION_REQUEST_HEADER_FIELD);
+    }
+
+    /**
+     * Returns the access token obtained from oxAuth authorization request.
+     *
+     * @return The access token obtained from oxAuth authorization request.
+     */
+    public String getAccessToken() {
+        return accessToken;
+    }
+
+    /**
+     * Sets the access token obtained from oxAuth authorization request.
+     *
+     * @param accessToken The access token obtained from oxAuth authorization request.
+     */
+    public void setAccessToken(String accessToken) {
+        this.accessToken = accessToken;
+    }
+
+    /**
+     * Returns a query string with the parameters of the User Info request.
+     * Any <code>null</code> or empty parameter will be omitted.
+     *
+     * @return A query string of parameters.
+     */
+    @Override
+    public String getQueryString() {
+        StringBuilder queryStringBuilder = new StringBuilder();
+
+        if (StringUtils.isNotBlank(accessToken)) {
+            if (getAuthorizationMethod() == AuthorizationMethod.FORM_ENCODED_BODY_PARAMETER
+                    || getAuthorizationMethod() == AuthorizationMethod.URL_QUERY_PARAMETER) {
+                queryStringBuilder.append("access_token=").append(accessToken);
+            }
+        }
+
+        return queryStringBuilder.toString();
+    }
+
+    /**
+     * Returns a collection of parameters of the user info request. Any
+     * <code>null</code> or empty parameter will be omitted.
+     *
+     * @return A collection of parameters.
+     */
+    public Map<String, String> getParameters() {
+        Map<String, String> parameters = new HashMap<String, String>();
+
+        if (accessToken != null && !accessToken.isEmpty()) {
+            if (getAuthorizationMethod() == AuthorizationMethod.FORM_ENCODED_BODY_PARAMETER
+                    || getAuthorizationMethod() == AuthorizationMethod.URL_QUERY_PARAMETER) {
+                parameters.put("access_token", accessToken);
+            }
+        }
+
+        return parameters;
+    }
+}
\ No newline at end of file
diff --git a/oxAuth/Client/src/main/java/org/gluu/oxauth/client/UserInfoResponse.java b/oxAuth/Client/src/main/java/org/gluu/oxauth/client/UserInfoResponse.java
new file mode 100644
index 00000000..34ad89af
--- /dev/null
+++ b/oxAuth/Client/src/main/java/org/gluu/oxauth/client/UserInfoResponse.java
@@ -0,0 +1,129 @@
+/*
+ * oxAuth is available under the MIT License (2008). See http://opensource.org/licenses/MIT for full text.
+ *
+ * Copyright (c) 2014, Gluu
+ */
+
+package org.gluu.oxauth.client;
+
+import java.util.HashMap;
+import java.util.List;
+import java.util.Map;
+
+import org.gluu.oxauth.model.userinfo.UserInfoErrorResponseType;
+
+/**
+ * Represents an user info response received from the authorization server.
+ *
+ * @author Javier Rojas Blum Date: 11.30.2011
+ */
+public class UserInfoResponse extends BaseResponse {
+
+    private Map<String, List<String>> claims;
+
+    private UserInfoErrorResponseType errorType;
+    private String errorDescription;
+    private String errorUri;
+
+    /**
+     * Constructs a User Info response.
+     *
+     * @param status The response status code.
+     */
+    public UserInfoResponse(int status) {
+        super(status);
+        claims = new HashMap<String, List<String>>();
+    }
+
+    public Map<String, List<String>> getClaims() {
+        return claims;
+    }
+
+    public void setClaims(Map<String, List<String>> claims) {
+        this.claims = claims;
+    }
+
+    /**
+     * Returns the error code when the request fails, otherwise will return <code>null</code>.
+     *
+     * @return The error code when the request fails.
+     */
+    public UserInfoErrorResponseType getErrorType() {
+        return errorType;
+    }
+
+    /**
+     * Sets the error code when the request fails, otherwise will return
+     * <code>null</code>.
+     *
+     * @param errorType The error code when the request fails.
+     */
+    public void setErrorType(UserInfoErrorResponseType errorType) {
+        this.errorType = errorType;
+    }
+
+    /**
+     * Returns a human-readable UTF-8 encoded text providing additional
+     * information, used to assist the client developer in understanding the
+     * error that occurred.
+     *
+     * @return The error description.
+     */
+    public String getErrorDescription() {
+        return errorDescription;
+    }
+
+    /**
+     * Sets a human-readable UTF-8 encoded text providing additional
+     * information, used to assist the client developer in understanding the
+     * error that occurred.
+     *
+     * @param errorDescription The error description.
+     */
+    public void setErrorDescription(String errorDescription) {
+        this.errorDescription = errorDescription;
+    }
+
+    /**
+     * Returns a URI identifying a human-readable web page with information
+     * about the error, used to provide the client developer with additional
+     * information about the error.
+     *
+     * @return A URI with information about the error.
+     */
+    public String getErrorUri() {
+        return errorUri;
+    }
+
+    /**
+     * Sets a URI identifying a human-readable web page with information about
+     * the error, used to provide the client developer with additional
+     * information about the error.
+     *
+     * @param errorUri A URI with information about the error.
+     */
+    public void setErrorUri(String errorUri) {
+        this.errorUri = errorUri;
+    }
+
+    public List<String> getClaim(String claimName) {
+        if (claims.containsKey(claimName)) {
+            return claims.get(claimName);
+        }
+
+        return null;
+    }
+
+    @Override
+    public String toString() {
+        return "UserInfoResponse{" +
+                "status=" + status +
+                "entity=" + entity +
+                "headers=" + headers +
+                "claims=" + claims +
+                ", errorType=" + errorType +
+                ", errorDescription='" + errorDescription + '\'' +
+                ", errorUri='" + errorUri + '\'' +
+                '}';
+    }
+}
\ No newline at end of file
diff --git a/oxAuth/Client/src/main/java/org/gluu/oxauth/client/ciba/fcm/FirebaseCloudMessagingClient.java b/oxAuth/Client/src/main/java/org/gluu/oxauth/client/ciba/fcm/FirebaseCloudMessagingClient.java
new file mode 100644
index 00000000..45cd7e6b
--- /dev/null
+++ b/oxAuth/Client/src/main/java/org/gluu/oxauth/client/ciba/fcm/FirebaseCloudMessagingClient.java
@@ -0,0 +1,73 @@
+/*
+ * oxAuth-CIBA is available under the Gluu Enterprise License (2019).
+ *
+ * Copyright (c) 2014, Gluu
+ */
+
+package org.gluu.oxauth.client.ciba.fcm;
+
+import javax.ws.rs.HttpMethod;
+import javax.ws.rs.client.Entity;
+import javax.ws.rs.client.Invocation.Builder;
+
+import org.apache.commons.lang.StringUtils;
+import org.apache.log4j.Logger;
+import org.gluu.oxauth.client.BaseClient;
+import org.json.JSONObject;
+
+/**
+ * @author Javier Rojas Blum
+ * @version August 20, 2019
+ */
+public class FirebaseCloudMessagingClient extends BaseClient<FirebaseCloudMessagingRequest, FirebaseCloudMessagingResponse> {
+
+    private static final Logger LOG = Logger.getLogger(FirebaseCloudMessagingClient.class);
+
+    public FirebaseCloudMessagingClient(String url) {
+        super(url);
+    }
+
+    @Override
+    public String getHttpMethod() {
+        return HttpMethod.POST;
+    }
+
+    public FirebaseCloudMessagingResponse execFirebaseCloudMessaging(String key, String to, String title, String body, String clickAction) {
+        setRequest(new FirebaseCloudMessagingRequest(key, to, title, body, clickAction));
+
+        return exec();
+    }
+
+    public FirebaseCloudMessagingResponse exec() {
+        initClientRequest();
+        return _exec();
+    }
+
+    private FirebaseCloudMessagingResponse _exec() {
+        try {
+            // Prepare request parameters
+    //        clientRequest.setHttpMethod(getHttpMethod());
+            Builder clientRequest = webTarget.request();
+            applyCookies(clientRequest);
+
+            clientRequest.header("Content-Type", getRequest().getContentType());
+            clientRequest.accept(getRequest().getMediaType());
+
+            if (StringUtils.isNotBlank(getRequest().getKey())) {
+                clientRequest.header("Authorization", "key=" + getRequest().getKey());
+            }
+
+            JSONObject requestBody = getRequest().getJSONParameters();
+
+            // Call REST Service and handle response
+            clientResponse = clientRequest.buildPost(Entity.json(requestBody.toString(4))).invoke();
+            setResponse(new FirebaseCloudMessagingResponse(clientResponse));
+        } catch (Exception e) {
+            LOG.error(e.getMessage(), e);
+        } finally {
+            closeConnection();
+        }
+
+        return getResponse();
+    }
+}
\ No newline at end of file
diff --git a/oxAuth/Client/src/main/java/org/gluu/oxauth/client/ciba/fcm/FirebaseCloudMessagingRequest.java b/oxAuth/Client/src/main/java/org/gluu/oxauth/client/ciba/fcm/FirebaseCloudMessagingRequest.java
new file mode 100644
index 00000000..f5de1ab2
--- /dev/null
+++ b/oxAuth/Client/src/main/java/org/gluu/oxauth/client/ciba/fcm/FirebaseCloudMessagingRequest.java
@@ -0,0 +1,100 @@
+/*
+ * oxAuth-CIBA is available under the Gluu Enterprise License (2019).
+ *
+ * Copyright (c) 2014, Gluu
+ */
+
+package org.gluu.oxauth.client.ciba.fcm;
+
+import static org.gluu.oxauth.model.ciba.FirebaseCloudMessagingRequestParam.BODY;
+import static org.gluu.oxauth.model.ciba.FirebaseCloudMessagingRequestParam.CLICK_ACTION;
+import static org.gluu.oxauth.model.ciba.FirebaseCloudMessagingRequestParam.NOTIFICATION;
+import static org.gluu.oxauth.model.ciba.FirebaseCloudMessagingRequestParam.TITLE;
+import static org.gluu.oxauth.model.ciba.FirebaseCloudMessagingRequestParam.TO;
+
+import javax.ws.rs.core.MediaType;
+
+import org.apache.commons.lang.StringUtils;
+import org.gluu.oxauth.client.BaseRequest;
+import org.json.JSONException;
+import org.json.JSONObject;
+
+/**
+ * @author Javier Rojas Blum
+ * @version August 20, 2019
+ */
+public class FirebaseCloudMessagingRequest extends BaseRequest {
+
+    private String key;
+    private String to;
+    private Notification notification;
+
+    public FirebaseCloudMessagingRequest(String key, String to, String title, String body, String clickAction) {
+        this.key = key;
+        this.to = to;
+        this.notification = new Notification(title, body, clickAction);
+
+        setContentType(MediaType.APPLICATION_JSON);
+        setMediaType(MediaType.APPLICATION_JSON);
+    }
+
+    public String getKey() {
+        return key;
+    }
+
+    @Override
+    public JSONObject getJSONParameters() throws JSONException {
+        JSONObject parameters = new JSONObject();
+
+        if (StringUtils.isNotBlank(to)) {
+            parameters.put(TO, to);
+        }
+
+        parameters.put(NOTIFICATION, notification.getJSONParameters());
+
+        return parameters;
+    }
+
+    @Override
+    public String getQueryString() {
+        String jsonQueryString = null;
+
+        try {
+            jsonQueryString = getJSONParameters().toString(4).replace("\\/", "/");
+        } catch (JSONException e) {
+            e.printStackTrace();
+        }
+
+        return jsonQueryString;
+    }
+}
+
+class Notification {
+    private String title;
+    private String body;
+    private String clickAction;
+
+    public Notification(String title, String body, String clickAction) {
+        this.title = title;
+        this.body = body;
+        this.clickAction = clickAction;
+    }
+
+    public JSONObject getJSONParameters() throws JSONException {
+        JSONObject parameters = new JSONObject();
+
+        if (StringUtils.isNotBlank(title)) {
+            parameters.put(TITLE, title);
+        }
+
+        if (StringUtils.isNotBlank(body)) {
+            parameters.put(BODY, body);
+        }
+
+        if (StringUtils.isNotBlank(clickAction)) {
+            parameters.put(CLICK_ACTION, clickAction);
+        }
+
+        return parameters;
+    }
+} 
\ No newline at end of file
diff --git a/oxAuth/Client/src/main/java/org/gluu/oxauth/client/ciba/fcm/FirebaseCloudMessagingResponse.java b/oxAuth/Client/src/main/java/org/gluu/oxauth/client/ciba/fcm/FirebaseCloudMessagingResponse.java
new file mode 100644
index 00000000..7a586012
--- /dev/null
+++ b/oxAuth/Client/src/main/java/org/gluu/oxauth/client/ciba/fcm/FirebaseCloudMessagingResponse.java
@@ -0,0 +1,85 @@
+/*
+ * oxAuth-CIBA is available under the Gluu Enterprise License (2019).
+ *
+ * Copyright (c) 2014, Gluu
+ */
+
+package org.gluu.oxauth.client.ciba.fcm;
+
+import static org.gluu.oxauth.model.ciba.FirebaseCloudMessagingResponseParam.FAILURE;
+import static org.gluu.oxauth.model.ciba.FirebaseCloudMessagingResponseParam.MESSAGE_ID;
+import static org.gluu.oxauth.model.ciba.FirebaseCloudMessagingResponseParam.MULTICAST_ID;
+import static org.gluu.oxauth.model.ciba.FirebaseCloudMessagingResponseParam.RESULTS;
+import static org.gluu.oxauth.model.ciba.FirebaseCloudMessagingResponseParam.SUCCESS;
+
+import java.util.ArrayList;
+import java.util.List;
+
+import javax.ws.rs.core.Response;
+
+import org.apache.commons.lang.StringUtils;
+import org.apache.log4j.Logger;
+import org.gluu.oxauth.client.BaseResponse;
+import org.json.JSONArray;
+import org.json.JSONException;
+import org.json.JSONObject;
+
+/**
+ * @author Javier Rojas Blum
+ * @version September 4, 2019
+ */
+public class FirebaseCloudMessagingResponse extends BaseResponse {
+
+    private static final Logger LOG = Logger.getLogger(FirebaseCloudMessagingResponse.class);
+
+    private Long multicastId;
+    private int success;
+    private int failure;
+    private List<Result> results;
+
+    public FirebaseCloudMessagingResponse(Response clientResponse) {
+        super(clientResponse);
+        injectDataFromJson(entity);
+    }
+
+    public void injectDataFromJson(String p_json) {
+        if (StringUtils.isNotBlank(p_json)) {
+            try {
+                JSONObject jsonObj = new JSONObject(p_json);
+
+                if (jsonObj.has(MULTICAST_ID)) {
+                    multicastId = jsonObj.getLong(MULTICAST_ID);
+                }
+                if (jsonObj.has(SUCCESS)) {
+                    success = jsonObj.getInt(SUCCESS);
+                }
+                if (jsonObj.has(FAILURE)) {
+                    failure = jsonObj.getInt(FAILURE);
+                }
+                if (jsonObj.has(RESULTS)) {
+                    results = new ArrayList<>();
+                    JSONArray resultsJsonArray = jsonObj.getJSONArray(RESULTS);
+
+                    for (int i = 0; i < resultsJsonArray.length(); i++) {
+                        JSONObject resultJsonObject = resultsJsonArray.getJSONObject(i);
+
+                        if (resultJsonObject.has(MESSAGE_ID)) {
+                            Result result = new Result(resultJsonObject.getString(MESSAGE_ID));
+                            results.add(result);
+                        }
+                    }
+                }
+            } catch (JSONException e) {
+                LOG.error(e.getMessage(), e);
+            }
+        }
+    }
+
+    class Result {
+        private String messageId;
+
+        public Result(String messageId) {
+            this.messageId = messageId;
+        }
+    }
+} 
\ No newline at end of file
diff --git a/oxAuth/Client/src/main/java/org/gluu/oxauth/client/ciba/ping/PingCallbackClient.java b/oxAuth/Client/src/main/java/org/gluu/oxauth/client/ciba/ping/PingCallbackClient.java
new file mode 100644
index 00000000..c1091b64
--- /dev/null
+++ b/oxAuth/Client/src/main/java/org/gluu/oxauth/client/ciba/ping/PingCallbackClient.java
@@ -0,0 +1,84 @@
+/*
+ * oxAuth-CIBA is available under the Gluu Enterprise License (2019).
+ *
+ * Copyright (c) 2014, Gluu
+ */
+
+package org.gluu.oxauth.client.ciba.ping;
+
+import javax.ws.rs.HttpMethod;
+import javax.ws.rs.client.Entity;
+import javax.ws.rs.client.Invocation.Builder;
+
+import org.apache.commons.lang.StringUtils;
+import org.apache.log4j.Logger;
+import org.gluu.oxauth.client.BaseClient;
+import org.gluu.oxauth.util.ClientUtil;
+import org.jboss.resteasy.client.jaxrs.engines.ApacheHttpClient43Engine;
+import org.json.JSONObject;
+
+/**
+ * @author Javier Rojas Blum
+ * @version December 21, 2019
+ */
+public class PingCallbackClient extends BaseClient<PingCallbackRequest, PingCallbackResponse> {
+
+    private static final Logger LOG = Logger.getLogger(PingCallbackClient.class);
+
+    private final boolean fapiCompatibility;
+
+    public PingCallbackClient(String url, boolean fapiCompatibility) {
+        super(url);
+        this.fapiCompatibility = fapiCompatibility;
+    }
+
+    @Override
+    public String getHttpMethod() {
+        return HttpMethod.POST;
+    }
+
+    public PingCallbackResponse exec() {
+        if (this.fapiCompatibility) {
+            setExecutor(getApacheHttpClient4ExecutorForMTLS());
+        }
+        initClientRequest();
+        return _exec();
+    }
+
+    private PingCallbackResponse _exec() {
+        try {
+            // Prepare request parameters
+    //        clientRequest.setHttpMethod(getHttpMethod());
+            Builder clientRequest = webTarget.request();
+            applyCookies(clientRequest);
+
+            clientRequest.header("Content-Type", getRequest().getContentType());
+
+            if (StringUtils.isNotBlank(getRequest().getClientNotificationToken())) {
+                clientRequest.header("Authorization", "Bearer " + getRequest().getClientNotificationToken());
+            }
+
+            JSONObject requestBody = getRequest().getJSONParameters();
+
+            // Call REST Service and handle response
+            clientResponse = clientRequest.buildPost(Entity.json(requestBody.toString(4))).invoke();
+            setResponse(new PingCallbackResponse(clientResponse));
+        } catch (Exception e) {
+            LOG.error(e.getMessage(), e);
+        } finally {
+            closeConnection();
+        }
+
+        return getResponse();
+    }
+
+    /**
+     * Creates an executor responsible to process rest calls using special SSL context defined in FAPI-CIBA specs.
+     */
+    private ApacheHttpClient43Engine getApacheHttpClient4ExecutorForMTLS() {
+        // Ciphers accepted by FAPI-CIBA specs and OpenJDK.
+        String[] ciphers = new String[] { "TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256", "TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384" };
+        return new ApacheHttpClient43Engine(ClientUtil.createHttpClient("TLSv1.2", ciphers));
+    }
+
+}
diff --git a/oxAuth/Client/src/main/java/org/gluu/oxauth/client/ciba/ping/PingCallbackRequest.java b/oxAuth/Client/src/main/java/org/gluu/oxauth/client/ciba/ping/PingCallbackRequest.java
new file mode 100644
index 00000000..9528f627
--- /dev/null
+++ b/oxAuth/Client/src/main/java/org/gluu/oxauth/client/ciba/ping/PingCallbackRequest.java
@@ -0,0 +1,69 @@
+/*
+ * oxAuth-CIBA is available under the Gluu Enterprise License (2019).
+ *
+ * Copyright (c) 2014, Gluu
+ */
+
+package org.gluu.oxauth.client.ciba.ping;
+
+import static org.gluu.oxauth.model.ciba.PushTokenDeliveryRequestParam.AUTHORIZATION_REQUEST_ID;
+
+import org.apache.commons.lang.StringUtils;
+import org.apache.http.entity.ContentType;
+import org.gluu.oxauth.client.BaseRequest;
+import org.json.JSONException;
+import org.json.JSONObject;
+
+/**
+ * @author Javier Rojas Blum
+ * @version December 21, 2019
+ */
+public class PingCallbackRequest extends BaseRequest {
+
+    private String clientNotificationToken;
+    private String authReqId;
+
+    public PingCallbackRequest() {
+        setContentType(ContentType.APPLICATION_JSON.toString());
+    }
+
+    public String getClientNotificationToken() {
+        return clientNotificationToken;
+    }
+
+    public void setClientNotificationToken(String clientNotificationToken) {
+        this.clientNotificationToken = clientNotificationToken;
+    }
+
+    public String getAuthReqId() {
+        return authReqId;
+    }
+
+    public void setAuthReqId(String authReqId) {
+        this.authReqId = authReqId;
+    }
+
+    @Override
+    public JSONObject getJSONParameters() throws JSONException {
+        JSONObject parameters = new JSONObject();
+
+        if (StringUtils.isNotBlank(authReqId)) {
+            parameters.put(AUTHORIZATION_REQUEST_ID, authReqId);
+        }
+
+        return parameters;
+    }
+
+    @Override
+    public String getQueryString() {
+        String jsonQueryString = null;
+
+        try {
+            jsonQueryString = getJSONParameters().toString(4).replace("\\/", "/");
+        } catch (JSONException e) {
+            e.printStackTrace();
+        }
+
+        return jsonQueryString;
+    }
+}
diff --git a/oxAuth/Client/src/main/java/org/gluu/oxauth/client/ciba/ping/PingCallbackResponse.java b/oxAuth/Client/src/main/java/org/gluu/oxauth/client/ciba/ping/PingCallbackResponse.java
new file mode 100644
index 00000000..696e5b95
--- /dev/null
+++ b/oxAuth/Client/src/main/java/org/gluu/oxauth/client/ciba/ping/PingCallbackResponse.java
@@ -0,0 +1,25 @@
+/*
+ * oxAuth-CIBA is available under the Gluu Enterprise License (2019).
+ *
+ * Copyright (c) 2014, Gluu
+ */
+
+package org.gluu.oxauth.client.ciba.ping;
+
+import javax.ws.rs.core.Response;
+
+import org.apache.log4j.Logger;
+import org.gluu.oxauth.client.BaseResponse;
+
+/**
+ * @author Javier Rojas Blum
+ * @version December 21, 2019
+ */
+public class PingCallbackResponse extends BaseResponse {
+
+    private static final Logger LOG = Logger.getLogger(PingCallbackResponse.class);
+
+    public PingCallbackResponse(Response clientResponse) {
+        super(clientResponse);
+    }
+}
diff --git a/oxAuth/Client/src/main/java/org/gluu/oxauth/client/ciba/push/PushErrorClient.java b/oxAuth/Client/src/main/java/org/gluu/oxauth/client/ciba/push/PushErrorClient.java
new file mode 100644
index 00000000..b72abc75
--- /dev/null
+++ b/oxAuth/Client/src/main/java/org/gluu/oxauth/client/ciba/push/PushErrorClient.java
@@ -0,0 +1,66 @@
+/*
+ * oxAuth-CIBA is available under the Gluu Enterprise License (2019).
+ *
+ * Copyright (c) 2014, Gluu
+ */
+
+package org.gluu.oxauth.client.ciba.push;
+
+import javax.ws.rs.HttpMethod;
+import javax.ws.rs.client.Entity;
+import javax.ws.rs.client.Invocation.Builder;
+
+import org.apache.commons.lang.StringUtils;
+import org.apache.log4j.Logger;
+import org.gluu.oxauth.client.BaseClient;
+import org.json.JSONObject;
+
+/**
+ * @author Javier Rojas Blum
+ * @version May 9, 2020
+ */
+public class PushErrorClient extends BaseClient<PushErrorRequest, PushErrorResponse> {
+
+    private static final Logger LOG = Logger.getLogger(PushErrorClient.class);
+
+    public PushErrorClient(String url) {
+        super(url);
+    }
+
+    @Override
+    public String getHttpMethod() {
+        return HttpMethod.POST;
+    }
+
+    public PushErrorResponse exec() {
+        initClientRequest();
+        return _exec();
+    }
+
+    private PushErrorResponse _exec() {
+        try {
+            // Prepare request parameters
+    //        clientRequest.setHttpMethod(getHttpMethod());
+            Builder clientRequest = webTarget.request();
+            applyCookies(clientRequest);
+
+            clientRequest.header("Content-Type", getRequest().getContentType());
+
+            if (StringUtils.isNotBlank(getRequest().getClientNotificationToken())) {
+                clientRequest.header("Authorization", "Bearer " + getRequest().getClientNotificationToken());
+            }
+
+            JSONObject requestBody = getRequest().getJSONParameters();
+
+            // Call REST Service and handle response
+            clientResponse = clientRequest.buildPost(Entity.json(requestBody.toString(4))).invoke();
+            setResponse(new PushErrorResponse(clientResponse));
+        } catch (Exception e) {
+            LOG.error(e.getMessage(), e);
+        } finally {
+            closeConnection();
+        }
+
+        return getResponse();
+    }
+}
diff --git a/oxAuth/Client/src/main/java/org/gluu/oxauth/client/ciba/push/PushErrorRequest.java b/oxAuth/Client/src/main/java/org/gluu/oxauth/client/ciba/push/PushErrorRequest.java
new file mode 100644
index 00000000..834e8c46
--- /dev/null
+++ b/oxAuth/Client/src/main/java/org/gluu/oxauth/client/ciba/push/PushErrorRequest.java
@@ -0,0 +1,112 @@
+/*
+ * oxAuth-CIBA is available under the Gluu Enterprise License (2019).
+ *
+ * Copyright (c) 2014, Gluu
+ */
+
+package org.gluu.oxauth.client.ciba.push;
+
+import static org.gluu.oxauth.model.ciba.PushErrorRequestParam.AUTHORIZATION_REQUEST_ID;
+import static org.gluu.oxauth.model.ciba.PushErrorRequestParam.ERROR;
+import static org.gluu.oxauth.model.ciba.PushErrorRequestParam.ERROR_DESCRIPTION;
+import static org.gluu.oxauth.model.ciba.PushErrorRequestParam.ERROR_URI;
+
+import org.apache.commons.lang.StringUtils;
+import org.apache.http.entity.ContentType;
+import org.gluu.oxauth.client.BaseRequest;
+import org.gluu.oxauth.model.ciba.PushErrorResponseType;
+import org.json.JSONException;
+import org.json.JSONObject;
+
+/**
+ * @author Javier Rojas Blum
+ * @version May 9, 2020
+ */
+public class PushErrorRequest extends BaseRequest {
+
+    private String clientNotificationToken;
+    private String authReqId;
+    private PushErrorResponseType errorType;
+    private String errorDescription;
+    private String errorUri;
+
+    public PushErrorRequest() {
+        setContentType(ContentType.APPLICATION_JSON.toString());
+    }
+
+    public String getClientNotificationToken() {
+        return clientNotificationToken;
+    }
+
+    public void setClientNotificationToken(String clientNotificationToken) {
+        this.clientNotificationToken = clientNotificationToken;
+    }
+
+    public String getAuthReqId() {
+        return authReqId;
+    }
+
+    public void setAuthReqId(String authReqId) {
+        this.authReqId = authReqId;
+    }
+
+    public PushErrorResponseType getErrorType() {
+        return errorType;
+    }
+
+    public void setErrorType(PushErrorResponseType errorType) {
+        this.errorType = errorType;
+    }
+
+    public String getErrorDescription() {
+        return errorDescription;
+    }
+
+    public void setErrorDescription(String errorDescription) {
+        this.errorDescription = errorDescription;
+    }
+
+    public String getErrorUri() {
+        return errorUri;
+    }
+
+    public void setErrorUri(String errorUri) {
+        this.errorUri = errorUri;
+    }
+
+    @Override
+    public JSONObject getJSONParameters() throws JSONException {
+        JSONObject parameters = new JSONObject();
+
+        if (StringUtils.isNotBlank(authReqId)) {
+            parameters.put(AUTHORIZATION_REQUEST_ID, authReqId);
+        }
+
+        if (errorType != null) {
+            parameters.put(ERROR, errorType.toString());
+        }
+
+        if (StringUtils.isNotBlank(errorDescription)) {
+            parameters.put(ERROR_DESCRIPTION, errorDescription);
+        }
+
+        if (StringUtils.isNotBlank(errorUri)) {
+            parameters.put(ERROR_URI, errorUri);
+        }
+
+        return parameters;
+    }
+
+    @Override
+    public String getQueryString() {
+        String jsonQueryString = null;
+
+        try {
+            jsonQueryString = getJSONParameters().toString(4).replace("\\/", "/");
+        } catch (JSONException e) {
+            e.printStackTrace();
+        }
+
+        return jsonQueryString;
+    }
+}
diff --git a/oxAuth/Client/src/main/java/org/gluu/oxauth/client/ciba/push/PushErrorResponse.java b/oxAuth/Client/src/main/java/org/gluu/oxauth/client/ciba/push/PushErrorResponse.java
new file mode 100644
index 00000000..39c2de19
--- /dev/null
+++ b/oxAuth/Client/src/main/java/org/gluu/oxauth/client/ciba/push/PushErrorResponse.java
@@ -0,0 +1,25 @@
+/*
+ * oxAuth-CIBA is available under the Gluu Enterprise License (2019).
+ *
+ * Copyright (c) 2014, Gluu
+ */
+
+package org.gluu.oxauth.client.ciba.push;
+
+import javax.ws.rs.core.Response;
+
+import org.apache.log4j.Logger;
+import org.gluu.oxauth.client.BaseResponse;
+
+/**
+ * @author Javier Rojas Blum
+ * @version May 9, 2020
+ */
+public class PushErrorResponse extends BaseResponse {
+
+    private static final Logger LOG = Logger.getLogger(PushErrorResponse.class);
+
+    public PushErrorResponse(Response clientResponse) {
+        super(clientResponse);
+    }
+}
diff --git a/oxAuth/Client/src/main/java/org/gluu/oxauth/client/ciba/push/PushTokenDeliveryClient.java b/oxAuth/Client/src/main/java/org/gluu/oxauth/client/ciba/push/PushTokenDeliveryClient.java
new file mode 100644
index 00000000..911a2ed4
--- /dev/null
+++ b/oxAuth/Client/src/main/java/org/gluu/oxauth/client/ciba/push/PushTokenDeliveryClient.java
@@ -0,0 +1,66 @@
+/*
+ * oxAuth-CIBA is available under the Gluu Enterprise License (2019).
+ *
+ * Copyright (c) 2014, Gluu
+ */
+
+package org.gluu.oxauth.client.ciba.push;
+
+import javax.ws.rs.HttpMethod;
+import javax.ws.rs.client.Entity;
+import javax.ws.rs.client.Invocation.Builder;
+
+import org.apache.commons.lang.StringUtils;
+import org.apache.log4j.Logger;
+import org.gluu.oxauth.client.BaseClient;
+import org.json.JSONObject;
+
+/**
+ * @author Javier Rojas Blum
+ * @version September 4, 2019
+ */
+public class PushTokenDeliveryClient extends BaseClient<PushTokenDeliveryRequest, PushTokenDeliveryResponse> {
+
+    private static final Logger LOG = Logger.getLogger(PushTokenDeliveryClient.class);
+
+    public PushTokenDeliveryClient(String url) {
+        super(url);
+    }
+
+    @Override
+    public String getHttpMethod() {
+        return HttpMethod.POST;
+    }
+
+    public PushTokenDeliveryResponse exec() {
+        initClientRequest();
+        return _exec();
+    }
+
+    private PushTokenDeliveryResponse _exec() {
+        try {
+            // Prepare request parameters
+    //        clientRequest.setHttpMethod(getHttpMethod());
+            Builder clientRequest = webTarget.request();
+            applyCookies(clientRequest);
+
+            clientRequest.header("Content-Type", getRequest().getContentType());
+
+            if (StringUtils.isNotBlank(getRequest().getClientNotificationToken())) {
+                clientRequest.header("Authorization", "Bearer " + getRequest().getClientNotificationToken());
+            }
+
+            JSONObject requestBody = getRequest().getJSONParameters();
+
+            // Call REST Service and handle response
+            clientResponse = clientRequest.buildPost(Entity.json(requestBody.toString(4))).invoke();
+            setResponse(new PushTokenDeliveryResponse(clientResponse));
+        } catch (Exception e) {
+            LOG.error(e.getMessage(), e);
+        } finally {
+            closeConnection();
+        }
+
+        return getResponse();
+    }
+}
\ No newline at end of file
diff --git a/oxAuth/Client/src/main/java/org/gluu/oxauth/client/ciba/push/PushTokenDeliveryRequest.java b/oxAuth/Client/src/main/java/org/gluu/oxauth/client/ciba/push/PushTokenDeliveryRequest.java
new file mode 100644
index 00000000..0e8e6521
--- /dev/null
+++ b/oxAuth/Client/src/main/java/org/gluu/oxauth/client/ciba/push/PushTokenDeliveryRequest.java
@@ -0,0 +1,140 @@
+/*
+ * oxAuth-CIBA is available under the Gluu Enterprise License (2019).
+ *
+ * Copyright (c) 2014, Gluu
+ */
+
+package org.gluu.oxauth.client.ciba.push;
+
+import static org.gluu.oxauth.model.ciba.PushTokenDeliveryRequestParam.ACCESS_TOKEN;
+import static org.gluu.oxauth.model.ciba.PushTokenDeliveryRequestParam.AUTHORIZATION_REQUEST_ID;
+import static org.gluu.oxauth.model.ciba.PushTokenDeliveryRequestParam.EXPIRES_IN;
+import static org.gluu.oxauth.model.ciba.PushTokenDeliveryRequestParam.ID_TOKEN;
+import static org.gluu.oxauth.model.ciba.PushTokenDeliveryRequestParam.REFRESH_TOKEN;
+import static org.gluu.oxauth.model.ciba.PushTokenDeliveryRequestParam.TOKEN_TYPE;
+
+import org.apache.commons.lang.StringUtils;
+import org.apache.http.entity.ContentType;
+import org.gluu.oxauth.client.BaseRequest;
+import org.gluu.oxauth.model.common.TokenType;
+import org.json.JSONException;
+import org.json.JSONObject;
+
+/**
+ * @author Javier Rojas Blum
+ * @version September 4, 2019
+ */
+public class PushTokenDeliveryRequest extends BaseRequest {
+
+    private String clientNotificationToken;
+    private String authReqId;
+    private String accessToken;
+    private TokenType tokenType;
+    private String refreshToken;
+    private Integer expiresIn;
+    private String idToken;
+
+    public PushTokenDeliveryRequest() {
+        setContentType(ContentType.APPLICATION_JSON.toString());
+    }
+
+    public String getClientNotificationToken() {
+        return clientNotificationToken;
+    }
+
+    public void setClientNotificationToken(String clientNotificationToken) {
+        this.clientNotificationToken = clientNotificationToken;
+    }
+
+    public String getAuthReqId() {
+        return authReqId;
+    }
+
+    public void setAuthReqId(String authReqId) {
+        this.authReqId = authReqId;
+    }
+
+    public String getAccessToken() {
+        return accessToken;
+    }
+
+    public void setAccessToken(String accessToken) {
+        this.accessToken = accessToken;
+    }
+
+    public TokenType getTokenType() {
+        return tokenType;
+    }
+
+    public void setTokenType(TokenType tokenType) {
+        this.tokenType = tokenType;
+    }
+
+    public String getRefreshToken() {
+        return refreshToken;
+    }
+
+    public void setRefreshToken(String refreshToken) {
+        this.refreshToken = refreshToken;
+    }
+
+    public Integer getExpiresIn() {
+        return expiresIn;
+    }
+
+    public void setExpiresIn(Integer expiresIn) {
+        this.expiresIn = expiresIn;
+    }
+
+    public String getIdToken() {
+        return idToken;
+    }
+
+    public void setIdToken(String idToken) {
+        this.idToken = idToken;
+    }
+
+    @Override
+    public JSONObject getJSONParameters() throws JSONException {
+        JSONObject parameters = new JSONObject();
+
+        if (StringUtils.isNotBlank(authReqId)) {
+            parameters.put(AUTHORIZATION_REQUEST_ID, authReqId);
+        }
+
+        if (StringUtils.isNotBlank(accessToken)) {
+            parameters.put(ACCESS_TOKEN, accessToken);
+        }
+
+        if (tokenType != null) {
+            parameters.put(TOKEN_TYPE, tokenType.getName());
+        }
+
+        if (StringUtils.isNotBlank(refreshToken)) {
+            parameters.put(REFRESH_TOKEN, refreshToken);
+        }
+
+        if (expiresIn != null) {
+            parameters.put(EXPIRES_IN, expiresIn);
+        }
+
+        if (StringUtils.isNotBlank(idToken)) {
+            parameters.put(ID_TOKEN, idToken);
+        }
+
+        return parameters;
+    }
+
+    @Override
+    public String getQueryString() {
+        String jsonQueryString = null;
+
+        try {
+            jsonQueryString = getJSONParameters().toString(4).replace("\\/", "/");
+        } catch (JSONException e) {
+            e.printStackTrace();
+        }
+
+        return jsonQueryString;
+    }
+}
\ No newline at end of file
diff --git a/oxAuth/Client/src/main/java/org/gluu/oxauth/client/ciba/push/PushTokenDeliveryResponse.java b/oxAuth/Client/src/main/java/org/gluu/oxauth/client/ciba/push/PushTokenDeliveryResponse.java
new file mode 100644
index 00000000..498ada87
--- /dev/null
+++ b/oxAuth/Client/src/main/java/org/gluu/oxauth/client/ciba/push/PushTokenDeliveryResponse.java
@@ -0,0 +1,25 @@
+/*
+ * oxAuth-CIBA is available under the Gluu Enterprise License (2019).
+ *
+ * Copyright (c) 2014, Gluu
+ */
+
+package org.gluu.oxauth.client.ciba.push;
+
+import javax.ws.rs.core.Response;
+
+import org.apache.log4j.Logger;
+import org.gluu.oxauth.client.BaseResponse;
+
+/**
+ * @author Javier Rojas Blum
+ * @version August 20, 2019
+ */
+public class PushTokenDeliveryResponse extends BaseResponse {
+
+    private static final Logger LOG = Logger.getLogger(PushTokenDeliveryResponse.class);
+
+    public PushTokenDeliveryResponse(Response clientResponse) {
+        super(clientResponse);
+    }
+}
\ No newline at end of file
diff --git a/oxAuth/Client/src/main/java/org/gluu/oxauth/client/fido/u2f/AuthenticationRequestService.java b/oxAuth/Client/src/main/java/org/gluu/oxauth/client/fido/u2f/AuthenticationRequestService.java
new file mode 100644
index 00000000..f149590f
--- /dev/null
+++ b/oxAuth/Client/src/main/java/org/gluu/oxauth/client/fido/u2f/AuthenticationRequestService.java
@@ -0,0 +1,34 @@
+/*
+ * oxAuth is available under the MIT License (2008). See http://opensource.org/licenses/MIT for full text.
+ *
+ * Copyright (c) 2014, Gluu
+ */
+
+package org.gluu.oxauth.client.fido.u2f;
+
+import javax.ws.rs.FormParam;
+import javax.ws.rs.GET;
+import javax.ws.rs.POST;
+import javax.ws.rs.Produces;
+import javax.ws.rs.QueryParam;
+
+import org.gluu.oxauth.model.fido.u2f.protocol.AuthenticateRequestMessage;
+import org.gluu.oxauth.model.fido.u2f.protocol.AuthenticateStatus;
+
+/**
+ * The endpoint allows to start and finish U2F authentication process
+ *
+ * @author Yuriy Movchan
+ * @version August 9, 2017
+ */
+public interface AuthenticationRequestService {
+
+    @GET
+    @Produces({"application/json"})
+    public AuthenticateRequestMessage startAuthentication(@QueryParam("username") String userName, @QueryParam("keyhandle") String keyHandle, @QueryParam("application") String appId, @QueryParam("session_id") String sessionId);
+
+    @POST
+    @Produces({"application/json"})
+    public AuthenticateStatus finishAuthentication(@FormParam("username") String userName, @FormParam("tokenResponse") String authenticateResponseString);
+
+}
\ No newline at end of file
diff --git a/oxAuth/Client/src/main/java/org/gluu/oxauth/client/fido/u2f/FidoU2fClientFactory.java b/oxAuth/Client/src/main/java/org/gluu/oxauth/client/fido/u2f/FidoU2fClientFactory.java
new file mode 100644
index 00000000..6042293a
--- /dev/null
+++ b/oxAuth/Client/src/main/java/org/gluu/oxauth/client/fido/u2f/FidoU2fClientFactory.java
@@ -0,0 +1,60 @@
+/*
+ * oxAuth is available under the MIT License (2008). See http://opensource.org/licenses/MIT for full text.
+ *
+ * Copyright (c) 2014, Gluu
+ */
+
+package org.gluu.oxauth.client.fido.u2f;
+
+import javax.ws.rs.core.UriBuilder;
+
+import org.gluu.oxauth.client.service.ClientFactory;
+import org.gluu.oxauth.model.fido.u2f.U2fConfiguration;
+import org.jboss.resteasy.client.jaxrs.ResteasyClient;
+import org.jboss.resteasy.client.jaxrs.ResteasyClientBuilder;
+import org.jboss.resteasy.client.jaxrs.ResteasyWebTarget;
+import org.jboss.resteasy.client.jaxrs.engines.ApacheHttpClient43Engine;
+
+/**
+ * Helper class which creates proxy FIDO U2F services
+ *
+ * @author Yuriy Movchan Date: 05/27/2015
+ */
+public class FidoU2fClientFactory {
+
+    private final static FidoU2fClientFactory instance = new FidoU2fClientFactory();
+
+    private ApacheHttpClient43Engine engine;
+
+    private FidoU2fClientFactory() {
+        this.engine = ClientFactory.instance().createEngine();
+    }
+
+    public static FidoU2fClientFactory instance() {
+        return instance;
+    }
+
+    public U2fConfigurationService createMetaDataConfigurationService(String u2fMetaDataUri) {
+        ResteasyClient client = ((ResteasyClientBuilder) ResteasyClientBuilder.newBuilder()).httpEngine(engine).build();
+        ResteasyWebTarget target = client.target(UriBuilder.fromPath(u2fMetaDataUri));
+        U2fConfigurationService proxy = target.proxy(U2fConfigurationService.class);
+
+        return proxy;
+    }
+
+    public AuthenticationRequestService createAuthenticationRequestService(U2fConfiguration metadataConfiguration) {
+        ResteasyClient client = ((ResteasyClientBuilder) ResteasyClientBuilder.newBuilder()).httpEngine(engine).build();
+        ResteasyWebTarget target = client.target(UriBuilder.fromPath(metadataConfiguration.getAuthenticationEndpoint()));
+        AuthenticationRequestService proxy = target.proxy(AuthenticationRequestService.class);
+
+        return proxy;
+    }
+
+    public RegistrationRequestService createRegistrationRequestService(U2fConfiguration metadataConfiguration) {
+        ResteasyClient client = ((ResteasyClientBuilder) ResteasyClientBuilder.newBuilder()).httpEngine(engine).build();
+        ResteasyWebTarget target = client.target(UriBuilder.fromPath(metadataConfiguration.getRegistrationEndpoint()));
+        RegistrationRequestService proxy = target.proxy(RegistrationRequestService.class);
+
+        return proxy;
+    }
+}
diff --git a/oxAuth/Client/src/main/java/org/gluu/oxauth/client/fido/u2f/RegistrationRequestService.java b/oxAuth/Client/src/main/java/org/gluu/oxauth/client/fido/u2f/RegistrationRequestService.java
new file mode 100644
index 00000000..0867c571
--- /dev/null
+++ b/oxAuth/Client/src/main/java/org/gluu/oxauth/client/fido/u2f/RegistrationRequestService.java
@@ -0,0 +1,38 @@
+/*
+ * oxAuth is available under the MIT License (2008). See http://opensource.org/licenses/MIT for full text.
+ *
+ * Copyright (c) 2014, Gluu
+ */
+
+package org.gluu.oxauth.client.fido.u2f;
+
+import javax.ws.rs.FormParam;
+import javax.ws.rs.GET;
+import javax.ws.rs.POST;
+import javax.ws.rs.Produces;
+import javax.ws.rs.QueryParam;
+
+import org.gluu.oxauth.model.fido.u2f.protocol.RegisterRequestMessage;
+import org.gluu.oxauth.model.fido.u2f.protocol.RegisterStatus;
+
+/**
+ * Еhe endpoint allows to start and finish U2F registration process
+ *
+ * @author Yuriy Movchan
+ * @version August 9, 2017
+ */
+public interface RegistrationRequestService {
+
+    @GET
+    @Produces({"application/json"})
+    public RegisterRequestMessage startRegistration(@QueryParam("username") String userName, @QueryParam("application") String appId, @QueryParam("session_id") String sessionId);
+
+    @GET
+    @Produces({"application/json"})
+    public RegisterRequestMessage startRegistration(@QueryParam("username") String userName, @QueryParam("application") String appId, @QueryParam("session_id") String sessionId, @QueryParam("enrollment_code") String enrollmentCode);
+
+    @POST
+    @Produces({"application/json"})
+    public RegisterStatus finishRegistration(@FormParam("username") String userName, @FormParam("tokenResponse") String registerResponseString);
+
+}
\ No newline at end of file
diff --git a/oxAuth/Client/src/main/java/org/gluu/oxauth/client/fido/u2f/U2fConfigurationService.java b/oxAuth/Client/src/main/java/org/gluu/oxauth/client/fido/u2f/U2fConfigurationService.java
new file mode 100644
index 00000000..70534f5a
--- /dev/null
+++ b/oxAuth/Client/src/main/java/org/gluu/oxauth/client/fido/u2f/U2fConfigurationService.java
@@ -0,0 +1,27 @@
+/*
+ * oxAuth is available under the MIT License (2008). See http://opensource.org/licenses/MIT for full text.
+ *
+ * Copyright (c) 2014, Gluu
+ */
+
+package org.gluu.oxauth.client.fido.u2f;
+
+import javax.ws.rs.GET;
+import javax.ws.rs.Produces;
+
+import org.gluu.oxauth.model.fido.u2f.U2fConfiguration;
+import org.gluu.oxauth.model.uma.UmaConstants;
+
+/**
+ * The endpoint at which the requester can obtain FIDO U2F metadata configuration
+ * 
+ * @author Yuriy Movchan Date: 05/27/2015
+ *
+ */
+public interface U2fConfigurationService {
+
+	@GET
+	@Produces({ UmaConstants.JSON_MEDIA_TYPE })
+	public U2fConfiguration getMetadataConfiguration();
+
+}
\ No newline at end of file
diff --git a/oxAuth/Client/src/main/java/org/gluu/oxauth/client/model/JwtState.java b/oxAuth/Client/src/main/java/org/gluu/oxauth/client/model/JwtState.java
new file mode 100644
index 00000000..c874f346
--- /dev/null
+++ b/oxAuth/Client/src/main/java/org/gluu/oxauth/client/model/JwtState.java
@@ -0,0 +1,518 @@
+/*
+ * oxAuth is available under the MIT License (2008). See http://opensource.org/licenses/MIT for full text.
+ *
+ * Copyright (c) 2014, Gluu
+ */
+
+package org.gluu.oxauth.client.model;
+
+import static org.gluu.oxauth.model.jwt.JwtStateClaimName.ADDITIONAL_CLAIMS;
+import static org.gluu.oxauth.model.jwt.JwtStateClaimName.AS;
+import static org.gluu.oxauth.model.jwt.JwtStateClaimName.AT_HASH;
+import static org.gluu.oxauth.model.jwt.JwtStateClaimName.AUD;
+import static org.gluu.oxauth.model.jwt.JwtStateClaimName.C_HASH;
+import static org.gluu.oxauth.model.jwt.JwtStateClaimName.EXP;
+import static org.gluu.oxauth.model.jwt.JwtStateClaimName.IAT;
+import static org.gluu.oxauth.model.jwt.JwtStateClaimName.ISS;
+import static org.gluu.oxauth.model.jwt.JwtStateClaimName.JTI;
+import static org.gluu.oxauth.model.jwt.JwtStateClaimName.KID;
+import static org.gluu.oxauth.model.jwt.JwtStateClaimName.RFP;
+import static org.gluu.oxauth.model.jwt.JwtStateClaimName.TARGET_LINK_URI;
+
+import java.io.UnsupportedEncodingException;
+import java.net.URLEncoder;
+import java.security.PublicKey;
+
+import org.apache.commons.lang.StringUtils;
+import org.apache.log4j.Logger;
+import org.gluu.oxauth.model.crypto.AbstractCryptoProvider;
+import org.gluu.oxauth.model.crypto.encryption.BlockEncryptionAlgorithm;
+import org.gluu.oxauth.model.crypto.encryption.KeyEncryptionAlgorithm;
+import org.gluu.oxauth.model.crypto.signature.SignatureAlgorithm;
+import org.gluu.oxauth.model.exception.InvalidJwtException;
+import org.gluu.oxauth.model.jwe.Jwe;
+import org.gluu.oxauth.model.jwe.JweEncrypterImpl;
+import org.gluu.oxauth.model.jwt.JwtClaims;
+import org.gluu.oxauth.model.jwt.JwtHeader;
+import org.gluu.oxauth.model.jwt.JwtType;
+import org.gluu.oxauth.model.util.Base64Util;
+import org.gluu.oxauth.model.util.Util;
+import org.gluu.oxauth.util.ClientUtil;
+import org.json.JSONException;
+import org.json.JSONObject;
+
+/**
+ * @author Javier Rojas Blum
+ * @version November 20, 2018
+ */
+public class JwtState {
+
+    private static final Logger LOG = Logger.getLogger(JwtState.class);
+
+    // Header
+    private JwtType type;
+    private SignatureAlgorithm signatureAlgorithm;
+    private KeyEncryptionAlgorithm keyEncryptionAlgorithm;
+    private BlockEncryptionAlgorithm blockEncryptionAlgorithm;
+    private String keyId;
+
+    // Payload
+    private String rfp;
+    private String iat;
+    private String exp;
+    private String iss;
+    private String aud;
+    private String targetLinkUri;
+    private String as;
+    private String jti;
+    private String atHash;
+    private String cHash;
+    private JSONObject additionalClaims;
+
+    // Signature/Encryption Keys
+    private String sharedKey;
+    private AbstractCryptoProvider cryptoProvider;
+
+    public JwtState(SignatureAlgorithm signatureAlgorithm, AbstractCryptoProvider cryptoProvider) {
+        this(signatureAlgorithm, cryptoProvider, null, null, null);
+    }
+
+    public JwtState(SignatureAlgorithm signatureAlgorithm,
+                    String sharedKey, AbstractCryptoProvider cryptoProvider) {
+        this(signatureAlgorithm, cryptoProvider, null, null, sharedKey);
+    }
+
+    public JwtState(KeyEncryptionAlgorithm keyEncryptionAlgorithm,
+                    BlockEncryptionAlgorithm blockEncryptionAlgorithm, AbstractCryptoProvider cryptoProvider) {
+        this(null, cryptoProvider, keyEncryptionAlgorithm, blockEncryptionAlgorithm, null);
+    }
+
+    public JwtState(KeyEncryptionAlgorithm keyEncryptionAlgorithm,
+                    BlockEncryptionAlgorithm blockEncryptionAlgorithm, String sharedKey) {
+        this(null, null, keyEncryptionAlgorithm, blockEncryptionAlgorithm, sharedKey);
+    }
+
+    private JwtState(SignatureAlgorithm signatureAlgorithm,
+                     AbstractCryptoProvider cryptoProvider, KeyEncryptionAlgorithm keyEncryptionAlgorithm,
+                     BlockEncryptionAlgorithm blockEncryptionAlgorithm, String sharedKey) {
+        this.type = JwtType.JWT;
+        this.signatureAlgorithm = signatureAlgorithm;
+        this.cryptoProvider = cryptoProvider;
+        this.keyEncryptionAlgorithm = keyEncryptionAlgorithm;
+        this.blockEncryptionAlgorithm = blockEncryptionAlgorithm;
+        this.sharedKey = sharedKey;
+    }
+
+    public JwtType getType() {
+        return type;
+    }
+
+    public void setType(JwtType type) {
+        this.type = type;
+    }
+
+    public SignatureAlgorithm getSignatureAlgorithm() {
+        return signatureAlgorithm;
+    }
+
+    public void setSignatureAlgorithm(SignatureAlgorithm signatureAlgorithm) {
+        this.signatureAlgorithm = signatureAlgorithm;
+    }
+
+    public KeyEncryptionAlgorithm getKeyEncryptionAlgorithm() {
+        return keyEncryptionAlgorithm;
+    }
+
+    public void setKeyEncryptionAlgorithm(KeyEncryptionAlgorithm keyEncryptionAlgorithm) {
+        this.keyEncryptionAlgorithm = keyEncryptionAlgorithm;
+    }
+
+    public BlockEncryptionAlgorithm getBlockEncryptionAlgorithm() {
+        return blockEncryptionAlgorithm;
+    }
+
+    public void setBlockEncryptionAlgorithm(BlockEncryptionAlgorithm blockEncryptionAlgorithm) {
+        this.blockEncryptionAlgorithm = blockEncryptionAlgorithm;
+    }
+
+    /**
+     * Identifier of the key used to sign this state token at the issuer.
+     * Identifier of the key used to encrypt this JWT state token at the issuer.
+     *
+     * @return The key identifier
+     */
+    public String getKeyId() {
+        return keyId;
+    }
+
+    /**
+     * Identifier of the key used to sign this state token at the issuer.
+     * Identifier of the key used to encrypt this JWT state token at the issuer.
+     *
+     * @param keyId The key identifier
+     */
+    public void setKeyId(String keyId) {
+        this.keyId = keyId;
+    }
+
+    /**
+     * String containing a verifiable identifier for the browser session,
+     * that cannot be guessed by a third party.
+     * The verification of this element by the client protects it from
+     * accepting authorization responses generated in response to forged
+     * requests generated by third parties.
+     *
+     * @return The Request Forgery Protection value
+     */
+    public String getRfp() {
+        return rfp;
+    }
+
+    /**
+     * String containing a verifiable identifier for the browser session,
+     * that cannot be guessed by a third party.
+     * The verification of this element by the client protects it from
+     * accepting authorization responses generated in response to forged
+     * requests generated by third parties.
+     *
+     * @param rfp The Request Forgery Protection value
+     */
+    public void setRfp(String rfp) {
+        this.rfp = rfp;
+    }
+
+    /**
+     * Timestamp of when this Authorization Request was issued.
+     *
+     * @return The Issued at value
+     */
+    public String getIat() {
+        return iat;
+    }
+
+    /**
+     * Timestamp of when this Authorization Request was issued.
+     *
+     * @param iat The Issued at value
+     */
+    public void setIat(String iat) {
+        this.iat = iat;
+    }
+
+    /**
+     * The expiration time claim identifies the expiration time on or after which
+     * the JWT MUST NOT be accepted for processing.
+     * The processing of the "exp" claim requires that the current date/time MUST
+     * be before the expiration date/time listed in the "exp" claim.
+     * Implementers MAY provide for some small leeway, usually no more than a
+     * few minutes, to account for clock skew.
+     * Its value MUST be a number containing an IntDate value.
+     *
+     * @return The expiration time value
+     */
+    public String getExp() {
+        return exp;
+    }
+
+    /**
+     * The expiration time claim identifies the expiration time on or after which
+     * the JWT MUST NOT be accepted for processing.
+     * The processing of the "exp" claim requires that the current date/time MUST
+     * be before the expiration date/time listed in the "exp" claim.
+     * Implementers MAY provide for some small leeway, usually no more than a
+     * few minutes, to account for clock skew.
+     * Its value MUST be a number containing an IntDate value.
+     *
+     * @param exp The expiration time value
+     */
+    public void setExp(String exp) {
+        this.exp = exp;
+    }
+
+    /**
+     * String identifying the party that issued this state value.
+     *
+     * @return The issuer value
+     */
+    public String getIss() {
+        return iss;
+    }
+
+    /**
+     * String identifying the party that issued this state value.
+     *
+     * @param iss The issuer value
+     */
+    public void setIss(String iss) {
+        this.iss = iss;
+    }
+
+    /**
+     * String identifying the client that this state value is intended for.
+     *
+     * @return The audience
+     */
+    public String getAud() {
+        return aud;
+    }
+
+    /**
+     * String identifying the client that this state value is intended for.
+     *
+     * @param aud The audience
+     */
+    public void setAud(String aud) {
+        this.aud = aud;
+    }
+
+    /**
+     * URI containing the location the user agent is to be redirected to after authorization.
+     *
+     * @return The target link URI
+     */
+    public String getTargetLinkUri() {
+        return targetLinkUri;
+    }
+
+    /**
+     * URI containing the location the user agent is to be redirected to after authorization.
+     *
+     * @param targetLinkUri The target link URI
+     */
+    public void setTargetLinkUri(String targetLinkUri) {
+        this.targetLinkUri = targetLinkUri;
+    }
+
+    /**
+     * String identifying the authorization server that this request was sent to.
+     *
+     * @return The authorization server
+     */
+    public String getAs() {
+        return as;
+    }
+
+    /**
+     * String identifying the authorization server that this request was sent to.
+     *
+     * @param as The authorization server
+     */
+    public void setAs(String as) {
+        this.as = as;
+    }
+
+    /**
+     * The "jti" (JWT ID) claim provides a unique identifier for the JWT.
+     * The identifier value MUST be assigned in a manner that ensures that
+     * there is a negligible probability that the same value will be
+     * accidentally assigned to a different data object.
+     * The "jti" claim can be used to prevent the JWT from being replayed.
+     * The "jti" value is a case-sensitive string.
+     *
+     * @return The JWT ID
+     */
+    public String getJti() {
+        return jti;
+    }
+
+    /**
+     * The "jti" (JWT ID) claim provides a unique identifier for the JWT.
+     * The identifier value MUST be assigned in a manner that ensures that
+     * there is a negligible probability that the same value will be
+     * accidentally assigned to a different data object.
+     * The "jti" claim can be used to prevent the JWT from being replayed.
+     * The "jti" value is a case-sensitive string.
+     *
+     * @param jti The JWT ID
+     */
+    public void setJti(String jti) {
+        this.jti = jti;
+    }
+
+    /**
+     * Access Token hash value. Its value is the base64url encoding of the left-most half
+     * of the hash of the octets of the ASCII representation of the "access_token" value,
+     * where the hash algorithm used is the hash algorithm used in the "alg" parameter of
+     * the State Token's JWS header.
+     * For instance, if the "alg" is "RS256", hash the "access_token" value with SHA-256,
+     * then take the left-most 128 bits and base64url encode them.
+     * The "at_hash" value is a case sensitive string.
+     * This is REQUIRED if the JWT [RFC7519] state token is being produced by the AS and
+     * issued with a "access_token" in the authorization response.
+     *
+     * @return The access token hash value
+     */
+    public String getAtHash() {
+        return atHash;
+    }
+
+    /**
+     * Access Token hash value. Its value is the base64url encoding of the left-most half
+     * of the hash of the octets of the ASCII representation of the "access_token" value,
+     * where the hash algorithm used is the hash algorithm used in the "alg" parameter of
+     * the State Token's JWS header.
+     * For instance, if the "alg" is "RS256", hash the "access_token" value with SHA-256,
+     * then take the left-most 128 bits and base64url encode them.
+     * The "at_hash" value is a case sensitive string.
+     * This is REQUIRED if the JWT [RFC7519] state token is being produced by the AS and
+     * issued with a "access_token" in the authorization response.
+     *
+     * @param atHash The access token hash value
+     */
+    public void setAtHash(String atHash) {
+        this.atHash = atHash;
+    }
+
+    /**
+     * Code hash value. Its value is the base64url encoding of the left-most half of the
+     * hash of the octets of the ASCII representation of the "code" value, where the hash
+     * algorithm used is the hash algorithm used in the "alg" header parameter of the
+     * State Token's JWS [RFC7515] header.
+     * For instance, if the "alg" is "HS512", hash the "code" value with SHA-512, then
+     * take the left-most 256 bits and base64url encode them.
+     * The "c_hash" value is a case sensitive string.
+     * This is REQUIRED if the JWT [RFC7519] state token is being produced by the AS and
+     * issued with a "code" in the authorization response.
+     *
+     * @return The code hash value
+     */
+    public String getcHash() {
+        return cHash;
+    }
+
+    /**
+     * Code hash value. Its value is the base64url encoding of the left-most half of the
+     * hash of the octets of the ASCII representation of the "code" value, where the hash
+     * algorithm used is the hash algorithm used in the "alg" header parameter of the
+     * State Token's JWS [RFC7515] header.
+     * For instance, if the "alg" is "HS512", hash the "code" value with SHA-512, then
+     * take the left-most 256 bits and base64url encode them.
+     * The "c_hash" value is a case sensitive string.
+     * This is REQUIRED if the JWT [RFC7519] state token is being produced by the AS and
+     * issued with a "code" in the authorization response.
+     *
+     * @param cHash The code hash value
+     */
+    public void setcHash(String cHash) {
+        this.cHash = cHash;
+    }
+
+    public JSONObject getAdditionalClaims() {
+        return additionalClaims;
+    }
+
+    public void setAdditionalClaims(JSONObject additionalClaims) {
+        this.additionalClaims = additionalClaims;
+    }
+
+    public String getEncodedJwt(JSONObject jwks) throws Exception {
+        String encodedJwt = null;
+
+        if (keyEncryptionAlgorithm != null && blockEncryptionAlgorithm != null) {
+            JweEncrypterImpl jweEncrypter;
+            if (cryptoProvider != null && jwks != null) {
+                PublicKey publicKey = cryptoProvider.getPublicKey(keyId, jwks, null);
+                jweEncrypter = new JweEncrypterImpl(keyEncryptionAlgorithm, blockEncryptionAlgorithm, publicKey);
+            } else {
+                jweEncrypter = new JweEncrypterImpl(keyEncryptionAlgorithm, blockEncryptionAlgorithm, sharedKey.getBytes(Util.UTF8_STRING_ENCODING));
+            }
+
+            String header = ClientUtil.toPrettyJson(headerToJSONObject());
+            String encodedHeader = Base64Util.base64urlencode(header.getBytes(Util.UTF8_STRING_ENCODING));
+
+            String claims = ClientUtil.toPrettyJson(payloadToJSONObject());
+            String encodedClaims = Base64Util.base64urlencode(claims.getBytes(Util.UTF8_STRING_ENCODING));
+
+            Jwe jwe = new Jwe();
+            jwe.setHeader(new JwtHeader(encodedHeader));
+            jwe.setClaims(new JwtClaims(encodedClaims));
+            jweEncrypter.encrypt(jwe);
+
+            encodedJwt = jwe.toString();
+        } else {
+            if (cryptoProvider == null) {
+                throw new Exception("The Crypto Provider cannot be null.");
+            }
+
+            JSONObject headerJsonObject = headerToJSONObject();
+            JSONObject payloadJsonObject = payloadToJSONObject();
+            String headerString = ClientUtil.toPrettyJson(headerJsonObject);
+            String payloadString = ClientUtil.toPrettyJson(payloadJsonObject);
+            String encodedHeader = Base64Util.base64urlencode(headerString.getBytes(Util.UTF8_STRING_ENCODING));
+            String encodedPayload = Base64Util.base64urlencode(payloadString.getBytes(Util.UTF8_STRING_ENCODING));
+            String signingInput = encodedHeader + "." + encodedPayload;
+            String encodedSignature = cryptoProvider.sign(signingInput, keyId, sharedKey, signatureAlgorithm);
+
+            encodedJwt = encodedHeader + "." + encodedPayload + "." + encodedSignature;
+        }
+
+        return encodedJwt;
+    }
+
+    public String getEncodedJwt() throws Exception {
+        return getEncodedJwt(null);
+    }
+
+    protected JSONObject headerToJSONObject() throws InvalidJwtException {
+        JwtHeader jwtHeader = new JwtHeader();
+
+        jwtHeader.setType(type);
+        if (keyEncryptionAlgorithm != null && blockEncryptionAlgorithm != null) {
+            jwtHeader.setAlgorithm(keyEncryptionAlgorithm);
+            jwtHeader.setEncryptionMethod(blockEncryptionAlgorithm);
+        } else {
+            jwtHeader.setAlgorithm(signatureAlgorithm);
+        }
+        jwtHeader.setKeyId(keyId);
+
+        return jwtHeader.toJsonObject();
+    }
+
+    protected JSONObject payloadToJSONObject() throws JSONException {
+        JSONObject obj = new JSONObject();
+
+        try {
+            if (StringUtils.isNotBlank(rfp)) {
+                obj.put(RFP, rfp);
+            }
+            if (StringUtils.isNotBlank(keyId)) {
+                obj.put(KID, keyId);
+            }
+            if (StringUtils.isNotBlank(iat)) {
+                obj.put(IAT, iat);
+            }
+            if (StringUtils.isNotBlank(exp)) {
+                obj.put(EXP, exp);
+            }
+            if (StringUtils.isNotBlank(iss)) {
+                obj.put(ISS, iss);
+            }
+            if (StringUtils.isNotBlank(aud)) {
+                obj.put(AUD, aud);
+            }
+            if (StringUtils.isNotBlank(targetLinkUri)) {
+                obj.put(TARGET_LINK_URI, URLEncoder.encode(targetLinkUri, "UTF-8"));
+            }
+            if (StringUtils.isNotBlank(as)) {
+                obj.put(AS, as);
+            }
+            if (StringUtils.isNotBlank(jti)) {
+                obj.put(JTI, jti);
+            }
+            if (StringUtils.isNotBlank(atHash)) {
+                obj.put(AT_HASH, atHash);
+            }
+            if (StringUtils.isNotBlank(cHash)) {
+                obj.put(C_HASH, cHash);
+            }
+            if (additionalClaims != null) {
+                obj.put(ADDITIONAL_CLAIMS, additionalClaims);
+            }
+        } catch (UnsupportedEncodingException e) {
+            e.printStackTrace();
+        }
+
+        return obj;
+    }
+
+}
diff --git a/oxAuth/Client/src/main/java/org/gluu/oxauth/client/model/SoftwareStatement.java b/oxAuth/Client/src/main/java/org/gluu/oxauth/client/model/SoftwareStatement.java
new file mode 100644
index 00000000..5093c5f2
--- /dev/null
+++ b/oxAuth/Client/src/main/java/org/gluu/oxauth/client/model/SoftwareStatement.java
@@ -0,0 +1,124 @@
+/*
+ * oxAuth is available under the MIT License (2008). See http://opensource.org/licenses/MIT for full text.
+ *
+ * Copyright (c) 2014, Gluu
+ */
+
+package org.gluu.oxauth.client.model;
+
+import org.apache.log4j.Logger;
+import org.gluu.oxauth.model.crypto.AbstractCryptoProvider;
+import org.gluu.oxauth.model.crypto.signature.SignatureAlgorithm;
+import org.gluu.oxauth.model.exception.InvalidJwtException;
+import org.gluu.oxauth.model.jwt.JwtHeader;
+import org.gluu.oxauth.model.util.Base64Util;
+import org.gluu.oxauth.model.util.Util;
+import org.gluu.oxauth.util.ClientUtil;
+import org.json.JSONObject;
+
+/**
+ * @author Javier Rojas Blum
+ * @version December 4, 2018
+ */
+public class SoftwareStatement {
+
+    private static final Logger LOG = Logger.getLogger(JwtState.class);
+
+    // Header
+    private SignatureAlgorithm signatureAlgorithm;
+    private String keyId;
+
+    // Payload
+    private JSONObject claims;
+
+    // Signature/Encryption Keys
+    private String sharedKey;
+    private AbstractCryptoProvider cryptoProvider;
+
+    public SoftwareStatement(SignatureAlgorithm signatureAlgorithm, AbstractCryptoProvider cryptoProvider) {
+        this(signatureAlgorithm, cryptoProvider, null);
+    }
+
+    public SoftwareStatement(SignatureAlgorithm signatureAlgorithm,
+                             String sharedKey, AbstractCryptoProvider cryptoProvider) {
+        this(signatureAlgorithm, cryptoProvider, sharedKey);
+    }
+
+    private SoftwareStatement(SignatureAlgorithm signatureAlgorithm, AbstractCryptoProvider cryptoProvider, String sharedKey) {
+        this.signatureAlgorithm = signatureAlgorithm;
+        this.cryptoProvider = cryptoProvider;
+        this.sharedKey = sharedKey;
+        this.claims = new JSONObject();
+    }
+
+    public SignatureAlgorithm getSignatureAlgorithm() {
+        return signatureAlgorithm;
+    }
+
+    public void setSignatureAlgorithm(SignatureAlgorithm signatureAlgorithm) {
+        this.signatureAlgorithm = signatureAlgorithm;
+    }
+
+    /**
+     * Identifier of the key used to sign this state token at the issuer.
+     * Identifier of the key used to encrypt this JWT state token at the issuer.
+     *
+     * @return The key identifier
+     */
+    public String getKeyId() {
+        return keyId;
+    }
+
+    /**
+     * Identifier of the key used to sign this state token at the issuer.
+     * Identifier of the key used to encrypt this JWT state token at the issuer.
+     *
+     * @param keyId The key identifier
+     */
+    public void setKeyId(String keyId) {
+        this.keyId = keyId;
+    }
+
+    public JSONObject getClaims() {
+        return claims;
+    }
+
+    public void setClaims(JSONObject claims) {
+        this.claims = claims;
+    }
+
+    public String getEncodedJwt(JSONObject jwks) throws Exception {
+        String encodedJwt = null;
+
+        if (cryptoProvider == null) {
+            throw new Exception("The Crypto Provider cannot be null.");
+        }
+
+        JSONObject headerJsonObject = headerToJSONObject();
+        JSONObject payloadJsonObject = getClaims();
+        String headerString = ClientUtil.toPrettyJson(headerJsonObject);
+        String payloadString = ClientUtil.toPrettyJson(payloadJsonObject);
+        String encodedHeader = Base64Util.base64urlencode(headerString.getBytes(Util.UTF8_STRING_ENCODING));
+        String encodedPayload = Base64Util.base64urlencode(payloadString.getBytes(Util.UTF8_STRING_ENCODING));
+        String signingInput = encodedHeader + "." + encodedPayload;
+        String encodedSignature = cryptoProvider.sign(signingInput, keyId, sharedKey, signatureAlgorithm);
+
+        encodedJwt = encodedHeader + "." + encodedPayload + "." + encodedSignature;
+
+        return encodedJwt;
+    }
+
+    public String getEncodedJwt() throws Exception {
+        return getEncodedJwt(null);
+    }
+
+    protected JSONObject headerToJSONObject() throws InvalidJwtException {
+        JwtHeader jwtHeader = new JwtHeader();
+
+        jwtHeader.setAlgorithm(signatureAlgorithm);
+        jwtHeader.setKeyId(keyId);
+
+        return jwtHeader.toJsonObject();
+    }
+
+}
\ No newline at end of file
diff --git a/oxAuth/Client/src/main/java/org/gluu/oxauth/client/model/authorize/Claim.java b/oxAuth/Client/src/main/java/org/gluu/oxauth/client/model/authorize/Claim.java
new file mode 100644
index 00000000..8d548f9c
--- /dev/null
+++ b/oxAuth/Client/src/main/java/org/gluu/oxauth/client/model/authorize/Claim.java
@@ -0,0 +1,37 @@
+/*
+ * oxAuth is available under the MIT License (2008). See http://opensource.org/licenses/MIT for full text.
+ *
+ * Copyright (c) 2014, Gluu
+ */
+
+package org.gluu.oxauth.client.model.authorize;
+
+/**
+ * @author Javier Rojas Blum Date: 03.07.2012
+ */
+public class Claim {
+
+    private String name;
+    private ClaimValue claimValue;
+
+    public Claim(String name, ClaimValue claimValue) {
+        this.name = name;
+        this.claimValue = claimValue;
+    }
+
+    public String getName() {
+        return name;
+    }
+
+    public void setName(String name) {
+        this.name = name;
+    }
+
+    public ClaimValue getClaimValue() {
+        return claimValue;
+    }
+
+    public void setClaimValue(ClaimValue claimValue) {
+        this.claimValue = claimValue;
+    }
+}
\ No newline at end of file
diff --git a/oxAuth/Client/src/main/java/org/gluu/oxauth/client/model/authorize/ClaimValue.java b/oxAuth/Client/src/main/java/org/gluu/oxauth/client/model/authorize/ClaimValue.java
new file mode 100644
index 00000000..9a686c1f
--- /dev/null
+++ b/oxAuth/Client/src/main/java/org/gluu/oxauth/client/model/authorize/ClaimValue.java
@@ -0,0 +1,103 @@
+/*
+ * oxAuth is available under the MIT License (2008). See http://opensource.org/licenses/MIT for full text.
+ *
+ * Copyright (c) 2014, Gluu
+ */
+
+package org.gluu.oxauth.client.model.authorize;
+
+import java.util.ArrayList;
+import java.util.Collections;
+import java.util.List;
+
+import org.json.JSONArray;
+import org.json.JSONException;
+import org.json.JSONObject;
+
+/**
+ * @author Javier Rojas Blum Date: 03.07.2012
+ */
+public class ClaimValue {
+
+    private ClaimValueType claimValueType;
+    private List<String> values;
+    private String value;
+
+    private ClaimValue() {
+    }
+
+    public static ClaimValue createNull() {
+        ClaimValue claimValue = new ClaimValue();
+        claimValue.claimValueType = ClaimValueType.NULL;
+
+        return claimValue;
+    }
+
+    public static ClaimValue createEssential(boolean essentialValue) {
+        ClaimValue claimValue = new ClaimValue();
+        if (essentialValue) {
+            claimValue.claimValueType = ClaimValueType.ESSENTIAL_TRUE;
+        } else {
+            claimValue.claimValueType = ClaimValueType.ESSENTIAL_FALSE;
+        }
+        return claimValue;
+    }
+
+    public static ClaimValue createValueList(String[] values) {
+        ClaimValue claimValue = new ClaimValue();
+        claimValue.claimValueType = ClaimValueType.VALUE_LIST;
+
+        claimValue.values = new ArrayList<String>();
+        Collections.addAll(claimValue.values, values);
+
+        return claimValue;
+    }
+
+    public static ClaimValue createSingleValue(String value) {
+        ClaimValue claimValue = new ClaimValue();
+        claimValue.claimValueType = ClaimValueType.SINGLE_VALUE;
+
+        claimValue.value = value;
+
+        return claimValue;
+    }
+
+    public JSONObject toJSONObject() throws JSONException {
+        JSONObject obj = null;
+
+        switch (claimValueType) {
+            case NULL:
+                break;
+            case ESSENTIAL_TRUE:
+                obj = new JSONObject();
+                obj.put("essential", true);
+                break;
+            case ESSENTIAL_FALSE:
+                obj = new JSONObject();
+                obj.put("essential", false);
+                break;
+            case VALUE_LIST:
+                JSONArray arr = new JSONArray();
+                for (String value : values) {
+                    arr.put(value);
+                }
+                obj = new JSONObject();
+                obj.put("values", arr);
+                break;
+            case SINGLE_VALUE:
+                obj = new JSONObject();
+                obj.put("value", value);
+                break;
+        }
+
+        return obj;
+    }
+
+    enum ClaimValueType {
+        NULL,
+        ESSENTIAL_TRUE,
+        ESSENTIAL_FALSE,
+        VALUE_LIST,
+        SINGLE_VALUE;
+    }
+}
\ No newline at end of file
diff --git a/oxAuth/Client/src/main/java/org/gluu/oxauth/client/model/authorize/IdTokenMember.java b/oxAuth/Client/src/main/java/org/gluu/oxauth/client/model/authorize/IdTokenMember.java
new file mode 100644
index 00000000..bdba4406
--- /dev/null
+++ b/oxAuth/Client/src/main/java/org/gluu/oxauth/client/model/authorize/IdTokenMember.java
@@ -0,0 +1,63 @@
+/*
+ * oxAuth is available under the MIT License (2008). See http://opensource.org/licenses/MIT for full text.
+ *
+ * Copyright (c) 2014, Gluu
+ */
+
+package org.gluu.oxauth.client.model.authorize;
+
+import java.util.ArrayList;
+import java.util.List;
+
+import org.json.JSONException;
+import org.json.JSONObject;
+
+/**
+ * @author Javier Rojas Blum Date: 03.07.2012
+ */
+public class IdTokenMember {
+
+    private List<Claim> claims;
+    private Integer maxAge;
+
+    public IdTokenMember() {
+        claims = new ArrayList<Claim>();
+        maxAge = null;
+    }
+
+    public List<Claim> getClaims() {
+        return claims;
+    }
+
+    public void setClaims(List<Claim> claims) {
+        this.claims = claims;
+    }
+
+    public Integer getMaxAge() {
+        return maxAge;
+    }
+
+    public void setMaxAge(Integer maxAge) {
+        this.maxAge = maxAge;
+    }
+
+    public JSONObject toJSONObject() throws JSONException {
+        JSONObject obj = new JSONObject();
+
+        if (claims != null && !claims.isEmpty()) {
+            for (Claim claim : claims) {
+                JSONObject claimValue = claim.getClaimValue().toJSONObject();
+                if (claimValue == null) {
+                    obj.put(claim.getName(), JSONObject.NULL);
+                } else {
+                    obj.put(claim.getName(), claimValue);
+                }
+            }
+        }
+        if (maxAge != null) {
+            obj.put("max_age", maxAge);
+        }
+
+        return obj;
+    }
+}
\ No newline at end of file
diff --git a/oxAuth/Client/src/main/java/org/gluu/oxauth/client/model/authorize/JwtAuthorizationRequest.java b/oxAuth/Client/src/main/java/org/gluu/oxauth/client/model/authorize/JwtAuthorizationRequest.java
new file mode 100644
index 00000000..3989e757
--- /dev/null
+++ b/oxAuth/Client/src/main/java/org/gluu/oxauth/client/model/authorize/JwtAuthorizationRequest.java
@@ -0,0 +1,633 @@
+/*
+ * oxAuth is available under the MIT License (2008). See http://opensource.org/licenses/MIT for full text.
+ *
+ * Copyright (c) 2014, Gluu
+ */
+
+package org.gluu.oxauth.client.model.authorize;
+
+import java.io.UnsupportedEncodingException;
+import java.net.URLEncoder;
+import java.security.PublicKey;
+import java.util.List;
+
+import org.apache.commons.lang.StringUtils;
+import org.apache.log4j.Logger;
+import org.gluu.oxauth.client.AuthorizationRequest;
+import org.gluu.oxauth.model.common.Display;
+import org.gluu.oxauth.model.common.Prompt;
+import org.gluu.oxauth.model.common.ResponseType;
+import org.gluu.oxauth.model.crypto.AbstractCryptoProvider;
+import org.gluu.oxauth.model.crypto.encryption.BlockEncryptionAlgorithm;
+import org.gluu.oxauth.model.crypto.encryption.KeyEncryptionAlgorithm;
+import org.gluu.oxauth.model.crypto.signature.SignatureAlgorithm;
+import org.gluu.oxauth.model.exception.InvalidJwtException;
+import org.gluu.oxauth.model.jwe.Jwe;
+import org.gluu.oxauth.model.jwe.JweEncrypterImpl;
+import org.gluu.oxauth.model.jwt.JwtClaims;
+import org.gluu.oxauth.model.jwt.JwtHeader;
+import org.gluu.oxauth.model.jwt.JwtType;
+import org.gluu.oxauth.model.util.Base64Util;
+import org.gluu.oxauth.model.util.Util;
+import org.gluu.oxauth.util.ClientUtil;
+import org.json.JSONArray;
+import org.json.JSONException;
+import org.json.JSONObject;
+
+import com.fasterxml.jackson.core.JsonProcessingException;
+
+/**
+ * @author Javier Rojas Blum
+ * @version November 20, 2018
+ */
+public class JwtAuthorizationRequest {
+
+    private static final Logger LOG = Logger.getLogger(JwtAuthorizationRequest.class);
+
+    // Header
+    private JwtType type;
+    private SignatureAlgorithm signatureAlgorithm;
+    private KeyEncryptionAlgorithm keyEncryptionAlgorithm;
+    private BlockEncryptionAlgorithm blockEncryptionAlgorithm;
+    private String keyId;
+
+    // Payload
+    private List<ResponseType> responseTypes;
+    private String clientId;
+    private List<String> scopes;
+    private String redirectUri;
+    private String state;
+    private String nonce;
+    private Display display;
+    private List<Prompt> prompts;
+    private Integer maxAge;
+    private List<String> uiLocales;
+    private List<String> claimsLocales;
+    private String idTokenHint;
+    private String loginHint;
+    private List<String> acrValues;
+    private String registration;
+    private boolean requestUniqueId;
+    private String aud;
+    private Integer exp;
+    private String iss;
+    private Integer iat;
+    private Integer nbf;
+    private String jti;
+    private String clientNotificationToken;
+    private String loginHintToken;
+    private String bindingMessage;
+    private String userCode;
+    private Integer requestedExpiry;
+
+    private UserInfoMember userInfoMember;
+    private IdTokenMember idTokenMember;
+
+    // Signature/Encryption Keys
+    private String sharedKey;
+    private AbstractCryptoProvider cryptoProvider;
+
+    public JwtAuthorizationRequest(AuthorizationRequest authorizationRequest, SignatureAlgorithm signatureAlgorithm,
+                                   AbstractCryptoProvider cryptoProvider) {
+        this(authorizationRequest, signatureAlgorithm, cryptoProvider, null, null, null);
+    }
+
+    public JwtAuthorizationRequest(AuthorizationRequest authorizationRequest, SignatureAlgorithm signatureAlgorithm,
+                                   String sharedKey, AbstractCryptoProvider cryptoProvider) {
+        this(authorizationRequest, signatureAlgorithm, cryptoProvider, null, null, sharedKey);
+    }
+
+    public JwtAuthorizationRequest(
+            AuthorizationRequest authorizationRequest, KeyEncryptionAlgorithm keyEncryptionAlgorithm,
+            BlockEncryptionAlgorithm blockEncryptionAlgorithm, AbstractCryptoProvider cryptoProvider) {
+        this(authorizationRequest, null, cryptoProvider, keyEncryptionAlgorithm, blockEncryptionAlgorithm, null);
+    }
+
+    public JwtAuthorizationRequest(
+            AuthorizationRequest authorizationRequest, KeyEncryptionAlgorithm keyEncryptionAlgorithm,
+            BlockEncryptionAlgorithm blockEncryptionAlgorithm, String sharedKey) {
+        this(authorizationRequest, null, null, keyEncryptionAlgorithm, blockEncryptionAlgorithm, sharedKey);
+    }
+
+    private JwtAuthorizationRequest(
+            AuthorizationRequest authorizationRequest, SignatureAlgorithm signatureAlgorithm,
+            AbstractCryptoProvider cryptoProvider, KeyEncryptionAlgorithm keyEncryptionAlgorithm,
+            BlockEncryptionAlgorithm blockEncryptionAlgorithm, String sharedKey) {
+        setAuthorizationRequestParams(authorizationRequest);
+
+        this.type = JwtType.JWT;
+        this.signatureAlgorithm = signatureAlgorithm;
+        this.cryptoProvider = cryptoProvider;
+        this.keyEncryptionAlgorithm = keyEncryptionAlgorithm;
+        this.blockEncryptionAlgorithm = blockEncryptionAlgorithm;
+        this.sharedKey = sharedKey;
+
+        this.userInfoMember = new UserInfoMember();
+        this.idTokenMember = new IdTokenMember();
+    }
+
+    private void setAuthorizationRequestParams(AuthorizationRequest authorizationRequest) {
+        if (authorizationRequest != null) {
+            this.responseTypes = authorizationRequest.getResponseTypes();
+            this.clientId = authorizationRequest.getClientId();
+            this.scopes = authorizationRequest.getScopes();
+            this.redirectUri = authorizationRequest.getRedirectUri();
+            this.state = authorizationRequest.getState();
+            this.nonce = authorizationRequest.getNonce();
+            this.display = authorizationRequest.getDisplay();
+            this.prompts = authorizationRequest.getPrompts();
+            this.maxAge = authorizationRequest.getMaxAge();
+            this.uiLocales = authorizationRequest.getUiLocales();
+            this.claimsLocales = authorizationRequest.getClaimsLocales();
+            this.idTokenHint = authorizationRequest.getIdTokenHint();
+            this.loginHint = authorizationRequest.getLoginHint();
+            this.acrValues = authorizationRequest.getAcrValues();
+            this.registration = authorizationRequest.getRegistration();
+            this.requestUniqueId = authorizationRequest.isRequestSessionId();
+        }
+    }
+
+    public JwtType getType() {
+        return type;
+    }
+
+    public void setType(JwtType type) {
+        this.type = type;
+    }
+
+    public SignatureAlgorithm getSignatureAlgorithm() {
+        return signatureAlgorithm;
+    }
+
+    public void setAlgorithm(SignatureAlgorithm signatureAlgorithm) {
+        this.signatureAlgorithm = signatureAlgorithm;
+    }
+
+    public KeyEncryptionAlgorithm getKeyEncryptionAlgorithm() {
+        return keyEncryptionAlgorithm;
+    }
+
+    public void setKeyEncryptionAlgorithm(KeyEncryptionAlgorithm keyEncryptionAlgorithm) {
+        this.keyEncryptionAlgorithm = keyEncryptionAlgorithm;
+    }
+
+    public BlockEncryptionAlgorithm getBlockEncryptionAlgorithm() {
+        return blockEncryptionAlgorithm;
+    }
+
+    public void setBlockEncryptionAlgorithm(BlockEncryptionAlgorithm blockEncryptionAlgorithm) {
+        this.blockEncryptionAlgorithm = blockEncryptionAlgorithm;
+    }
+
+    public String getKeyId() {
+        return keyId;
+    }
+
+    public void setKeyId(String keyId) {
+        this.keyId = keyId;
+    }
+
+    public boolean isRequestUniqueId() {
+        return requestUniqueId;
+    }
+
+    public void setRequestUniqueId(boolean p_requestUniqueId) {
+        requestUniqueId = p_requestUniqueId;
+    }
+
+    public List<ResponseType> getResponseTypes() {
+        return responseTypes;
+    }
+
+    public void setResponseTypes(List<ResponseType> responseTypes) {
+        this.responseTypes = responseTypes;
+    }
+
+    public String getClientId() {
+        return clientId;
+    }
+
+    public void setClientId(String clientId) {
+        this.clientId = clientId;
+    }
+
+    public List<String> getScopes() {
+        return scopes;
+    }
+
+    public void setScopes(List<String> scopes) {
+        this.scopes = scopes;
+    }
+
+    public String getRedirectUri() {
+        return redirectUri;
+    }
+
+    public void setRedirectUri(String redirectUri) {
+        this.redirectUri = redirectUri;
+    }
+
+    public String getState() {
+        return state;
+    }
+
+    public void setState(String state) {
+        this.state = state;
+    }
+
+    public String getNonce() {
+        return nonce;
+    }
+
+    public void setNonce(String nonce) {
+        this.nonce = nonce;
+    }
+
+    public Display getDisplay() {
+        return display;
+    }
+
+    public void setDisplay(Display display) {
+        this.display = display;
+    }
+
+    public List<Prompt> getPrompts() {
+        return prompts;
+    }
+
+    public void setPrompts(List<Prompt> prompts) {
+        this.prompts = prompts;
+    }
+
+    public Integer getMaxAge() {
+        return maxAge;
+    }
+
+    public void setMaxAge(Integer maxAge) {
+        this.maxAge = maxAge;
+    }
+
+    public List<String> getUiLocales() {
+        return uiLocales;
+    }
+
+    public void setUiLocales(List<String> uiLocales) {
+        this.uiLocales = uiLocales;
+    }
+
+    public List<String> getClaimsLocales() {
+        return claimsLocales;
+    }
+
+    public void setClaimsLocales(List<String> claimsLocales) {
+        this.claimsLocales = claimsLocales;
+    }
+
+    public String getIdTokenHint() {
+        return idTokenHint;
+    }
+
+    public void setIdTokenHint(String idTokenHint) {
+        this.idTokenHint = idTokenHint;
+    }
+
+    public String getLoginHint() {
+        return loginHint;
+    }
+
+    public void setLoginHint(String loginHint) {
+        this.loginHint = loginHint;
+    }
+
+    public List<String> getAcrValues() {
+        return acrValues;
+    }
+
+    public void setAcrValues(List<String> acrValues) {
+        this.acrValues = acrValues;
+    }
+
+    public String getRegistration() {
+        return registration;
+    }
+
+    public void setRegistration(String registration) {
+        this.registration = registration;
+    }
+
+    public UserInfoMember getUserInfoMember() {
+        return userInfoMember;
+    }
+
+    public void setUserInfoMember(UserInfoMember userInfoMember) {
+        this.userInfoMember = userInfoMember;
+    }
+
+    public IdTokenMember getIdTokenMember() {
+        return idTokenMember;
+    }
+
+    public void setIdTokenMember(IdTokenMember idTokenMember) {
+        this.idTokenMember = idTokenMember;
+    }
+
+    public void addUserInfoClaim(Claim claim) {
+        userInfoMember.getClaims().add(claim);
+    }
+
+    public void addIdTokenClaim(Claim claim) {
+        idTokenMember.getClaims().add(claim);
+    }
+
+    public String getAud() {
+        return aud;
+    }
+
+    public void setAud(String aud) {
+        this.aud = aud;
+    }
+
+    public Integer getExp() {
+        return exp;
+    }
+
+    public void setExp(Integer exp) {
+        this.exp = exp;
+    }
+
+    public String getIss() {
+        return iss;
+    }
+
+    public void setIss(String iss) {
+        this.iss = iss;
+    }
+
+    public Integer getIat() {
+        return iat;
+    }
+
+    public void setIat(Integer iat) {
+        this.iat = iat;
+    }
+
+    public Integer getNbf() {
+        return nbf;
+    }
+
+    public void setNbf(Integer nbf) {
+        this.nbf = nbf;
+    }
+
+    public String getJti() {
+        return jti;
+    }
+
+    public void setJti(String jti) {
+        this.jti = jti;
+    }
+
+    public String getClientNotificationToken() {
+        return clientNotificationToken;
+    }
+
+    public void setClientNotificationToken(String clientNotificationToken) {
+        this.clientNotificationToken = clientNotificationToken;
+    }
+
+    public String getLoginHintToken() {
+        return loginHintToken;
+    }
+
+    public void setLoginHintToken(String loginHintToken) {
+        this.loginHintToken = loginHintToken;
+    }
+
+    public String getBindingMessage() {
+        return bindingMessage;
+    }
+
+    public void setBindingMessage(String bindingMessage) {
+        this.bindingMessage = bindingMessage;
+    }
+
+    public String getUserCode() {
+        return userCode;
+    }
+
+    public void setUserCode(String userCode) {
+        this.userCode = userCode;
+    }
+
+    public Integer getRequestedExpiry() {
+        return requestedExpiry;
+    }
+
+    public void setRequestedExpiry(Integer requestedExpiry) {
+        this.requestedExpiry = requestedExpiry;
+    }
+
+    public String getEncodedJwt(JSONObject jwks) throws Exception {
+        String encodedJwt = null;
+
+        if (keyEncryptionAlgorithm != null && blockEncryptionAlgorithm != null) {
+            JweEncrypterImpl jweEncrypter;
+            if (cryptoProvider != null && jwks != null) {
+                PublicKey publicKey = cryptoProvider.getPublicKey(keyId, jwks, null);
+                jweEncrypter = new JweEncrypterImpl(keyEncryptionAlgorithm, blockEncryptionAlgorithm, publicKey);
+            } else {
+                jweEncrypter = new JweEncrypterImpl(keyEncryptionAlgorithm, blockEncryptionAlgorithm, sharedKey.getBytes(Util.UTF8_STRING_ENCODING));
+            }
+
+            String header = ClientUtil.toPrettyJson(headerToJSONObject());
+            String encodedHeader = Base64Util.base64urlencode(header.getBytes(Util.UTF8_STRING_ENCODING));
+
+            String claims = ClientUtil.toPrettyJson(payloadToJSONObject());
+            String encodedClaims = Base64Util.base64urlencode(claims.getBytes(Util.UTF8_STRING_ENCODING));
+
+            Jwe jwe = new Jwe();
+            jwe.setHeader(new JwtHeader(encodedHeader));
+            jwe.setClaims(new JwtClaims(encodedClaims));
+            jweEncrypter.encrypt(jwe);
+
+            encodedJwt = jwe.toString();
+        } else {
+            if (cryptoProvider == null) {
+                throw new Exception("The Crypto Provider cannot be null.");
+            }
+
+            JSONObject headerJsonObject = headerToJSONObject();
+            JSONObject payloadJsonObject = payloadToJSONObject();
+            String headerString = ClientUtil.toPrettyJson(headerJsonObject);
+            String payloadString = ClientUtil.toPrettyJson(payloadJsonObject);
+            String encodedHeader = Base64Util.base64urlencode(headerString.getBytes(Util.UTF8_STRING_ENCODING));
+            String encodedPayload = Base64Util.base64urlencode(payloadString.getBytes(Util.UTF8_STRING_ENCODING));
+            String signingInput = encodedHeader + "." + encodedPayload;
+            String encodedSignature = cryptoProvider.sign(signingInput, keyId, sharedKey, signatureAlgorithm);
+
+            encodedJwt = encodedHeader + "." + encodedPayload + "." + encodedSignature;
+        }
+
+        return encodedJwt;
+    }
+
+    public String getEncodedJwt() throws Exception {
+        return getEncodedJwt(null);
+    }
+
+    public String getDecodedJwt() {
+        String decodedJwt = null;
+        try {
+            decodedJwt = ClientUtil.toPrettyJson(payloadToJSONObject());
+        } catch (JSONException e) {
+            e.printStackTrace();
+        } catch (JsonProcessingException e) {
+			e.printStackTrace();
+		}
+
+        return decodedJwt;
+    }
+
+    protected JSONObject headerToJSONObject() throws InvalidJwtException {
+        JwtHeader jwtHeader = new JwtHeader();
+
+        jwtHeader.setType(type);
+        if (keyEncryptionAlgorithm != null && blockEncryptionAlgorithm != null) {
+            jwtHeader.setAlgorithm(keyEncryptionAlgorithm);
+            jwtHeader.setEncryptionMethod(blockEncryptionAlgorithm);
+        } else {
+            jwtHeader.setAlgorithm(signatureAlgorithm);
+        }
+        jwtHeader.setKeyId(keyId);
+
+        return jwtHeader.toJsonObject();
+    }
+
+    protected JSONObject payloadToJSONObject() throws JSONException {
+        JSONObject obj = new JSONObject();
+
+        try {
+            if (responseTypes != null && !responseTypes.isEmpty()) {
+                if (responseTypes.size() == 1) {
+                    ResponseType responseType = responseTypes.get(0);
+                    obj.put("response_type", responseType);
+                } else {
+                    JSONArray responseTypeJsonArray = new JSONArray();
+                    for (ResponseType responseType : responseTypes) {
+                        responseTypeJsonArray.put(responseType);
+                    }
+                    obj.put("response_type", responseTypeJsonArray);
+                }
+            }
+            if (StringUtils.isNotBlank(clientId)) {
+                obj.put("client_id", clientId);
+            }
+            if (scopes != null && !scopes.isEmpty()) {
+                if (scopes.size() == 1) {
+                    String scope = scopes.get(0);
+                    obj.put("scope", scope);
+                } else {
+                    JSONArray scopeJsonArray = new JSONArray();
+                    for (String scope : scopes) {
+                        scopeJsonArray.put(scope);
+                    }
+                    obj.put("scope", scopeJsonArray);
+                }
+            }
+            if (StringUtils.isNotBlank(redirectUri)) {
+                obj.put("redirect_uri", URLEncoder.encode(redirectUri, "UTF-8"));
+            }
+            if (StringUtils.isNotBlank(state)) {
+                obj.put("state", state);
+            }
+            if (StringUtils.isNotBlank(nonce)) {
+                obj.put("nonce", nonce);
+            }
+            if (display != null) {
+                obj.put("display", display);
+            }
+            if (prompts != null && !prompts.isEmpty()) {
+                JSONArray promptJsonArray = new JSONArray();
+                for (Prompt prompt : prompts) {
+                    promptJsonArray.put(prompt);
+                }
+                obj.put("prompt", promptJsonArray);
+            }
+            if (maxAge != null) {
+                obj.put("max_age", maxAge);
+            }
+            if (uiLocales != null && !uiLocales.isEmpty()) {
+                JSONArray uiLocalesJsonArray = new JSONArray(uiLocales);
+                obj.put("ui_locales", uiLocalesJsonArray);
+            }
+            if (claimsLocales != null && !claimsLocales.isEmpty()) {
+                JSONArray claimsLocalesJsonArray = new JSONArray(claimsLocales);
+                obj.put("claims_locales", claimsLocalesJsonArray);
+            }
+            if (StringUtils.isNotBlank(idTokenHint)) {
+                obj.put("id_token_hint", idTokenHint);
+            }
+            if (StringUtils.isNotBlank(loginHint)) {
+                obj.put("login_hint", loginHint);
+            }
+            if (acrValues != null && !acrValues.isEmpty()) {
+                JSONArray acrValuesJsonArray = new JSONArray(acrValues);
+                obj.put("acr_values", acrValues);
+            }
+            if (StringUtils.isNotBlank(registration)) {
+                obj.put("registration", registration);
+            }
+
+            if (userInfoMember != null || idTokenMember != null) {
+                JSONObject claimsObj = new JSONObject();
+
+                if (userInfoMember != null) {
+                    claimsObj.put("userinfo", userInfoMember.toJSONObject());
+                }
+                if (idTokenMember != null) {
+                    claimsObj.put("id_token", idTokenMember.toJSONObject());
+                }
+
+                obj.put("claims", claimsObj);
+            }
+            if (StringUtils.isNotBlank(aud)) {
+                obj.put("aud", aud);
+            }
+            if (exp != null && exp > 0) {
+                obj.put("exp", exp);
+            }
+            if (StringUtils.isNotBlank(iss)) {
+                obj.put("iss", iss);
+            }
+            if (iat != null && iat > 0) {
+                obj.put("iat", iat);
+            }
+            if (nbf != null && nbf > 0) {
+                obj.put("nbf", nbf);
+            }
+            if (StringUtils.isNotBlank(jti)) {
+                obj.put("jti", jti);
+            }
+            if (StringUtils.isNotBlank(clientNotificationToken)) {
+                obj.put("client_notification_token", clientNotificationToken);
+            }
+            if (StringUtils.isNotBlank(loginHintToken)) {
+                obj.put("login_hint_token", loginHintToken);
+            }
+            if (StringUtils.isNotBlank(bindingMessage)) {
+                obj.put("binding_message", bindingMessage);
+            }
+            if (StringUtils.isNotBlank(userCode)) {
+                obj.put("user_code", userCode);
+            }
+            if (requestedExpiry != null && requestedExpiry > 0) {
+                obj.put("requested_expirity", requestedExpiry);
+            }
+        } catch (UnsupportedEncodingException e) {
+            e.printStackTrace();
+        }
+
+        return obj;
+    }
+
+}
\ No newline at end of file
diff --git a/oxAuth/Client/src/main/java/org/gluu/oxauth/client/model/authorize/UserInfoMember.java b/oxAuth/Client/src/main/java/org/gluu/oxauth/client/model/authorize/UserInfoMember.java
new file mode 100644
index 00000000..6846b3ff
--- /dev/null
+++ b/oxAuth/Client/src/main/java/org/gluu/oxauth/client/model/authorize/UserInfoMember.java
@@ -0,0 +1,69 @@
+/*
+ * oxAuth is available under the MIT License (2008). See http://opensource.org/licenses/MIT for full text.
+ *
+ * Copyright (c) 2014, Gluu
+ */
+
+package org.gluu.oxauth.client.model.authorize;
+
+import java.util.ArrayList;
+import java.util.List;
+
+import org.json.JSONArray;
+import org.json.JSONException;
+import org.json.JSONObject;
+
+/**
+ * @author Javier Rojas Blum Date: 03.07.2012
+ */
+public class UserInfoMember {
+
+    private List<Claim> claims;
+    private List<String> preferredLocales;
+
+    public UserInfoMember() {
+        claims = new ArrayList<Claim>();
+        preferredLocales = new ArrayList<String>();
+    }
+
+    public List<Claim> getClaims() {
+        return claims;
+    }
+
+    public void setClaims(List<Claim> claims) {
+        this.claims = claims;
+    }
+
+    public List<String> getPreferredLocales() {
+        return preferredLocales;
+    }
+
+    public void setPreferredLocales(List<String> preferredLocales) {
+        this.preferredLocales = preferredLocales;
+    }
+
+    public JSONObject toJSONObject() throws JSONException {
+        JSONObject obj = new JSONObject();
+
+        if (claims != null && !claims.isEmpty()) {
+            for (Claim claim : claims) {
+                JSONObject claimValue = claim.getClaimValue().toJSONObject();
+                if (claimValue == null) {
+                    obj.put(claim.getName(), JSONObject.NULL);
+                } else {
+                    obj.put(claim.getName(), claimValue);
+                }
+            }
+        }
+        if (preferredLocales != null && !preferredLocales.isEmpty()) {
+            JSONArray arr = new JSONArray();
+            for (String locale : preferredLocales) {
+                arr.put(locale);
+            }
+
+            obj.put("preferred_locales", arr);
+        }
+
+        return obj;
+    }
+}
\ No newline at end of file
diff --git a/oxAuth/Client/src/main/java/org/gluu/oxauth/client/service/ClientFactory.java b/oxAuth/Client/src/main/java/org/gluu/oxauth/client/service/ClientFactory.java
new file mode 100644
index 00000000..34a0f0d6
--- /dev/null
+++ b/oxAuth/Client/src/main/java/org/gluu/oxauth/client/service/ClientFactory.java
@@ -0,0 +1,82 @@
+/*
+ * oxAuth is available under the MIT License (2008). See http://opensource.org/licenses/MIT for full text.
+ *
+ * Copyright (c) 2014, Gluu
+ */
+
+package org.gluu.oxauth.client.service;
+
+import javax.ws.rs.core.UriBuilder;
+
+import org.apache.http.client.config.CookieSpecs;
+import org.apache.http.client.config.RequestConfig;
+import org.apache.http.impl.client.CloseableHttpClient;
+import org.apache.http.impl.client.HttpClients;
+import org.apache.http.impl.conn.PoolingHttpClientConnectionManager;
+import org.jboss.resteasy.client.jaxrs.ClientHttpEngine;
+import org.jboss.resteasy.client.jaxrs.ResteasyClient;
+import org.jboss.resteasy.client.jaxrs.ResteasyClientBuilder;
+import org.jboss.resteasy.client.jaxrs.ResteasyWebTarget;
+import org.jboss.resteasy.client.jaxrs.engines.ApacheHttpClient43Engine;
+
+/**
+ * @author Yuriy Zabrovarnyy
+ * @version 0.9, 26/06/2013
+ */
+
+public class ClientFactory {
+
+    private final static ClientFactory INSTANCE = new ClientFactory();
+
+    private ApacheHttpClient43Engine engine;
+
+    private ClientFactory() {
+        this.engine = createEngine();
+    }
+
+    public static ClientFactory instance() {
+        return INSTANCE;
+    }
+
+    public IntrospectionService createIntrospectionService(String p_url) {
+        return createIntrospectionService(p_url, engine);
+    }
+    
+    public IntrospectionService createIntrospectionService(String p_url, ClientHttpEngine engine) {
+        ResteasyClient client = ((ResteasyClientBuilder) ResteasyClientBuilder.newBuilder()).httpEngine(engine).build();
+        ResteasyWebTarget target = client.target(UriBuilder.fromPath(p_url));
+        IntrospectionService proxy = target.proxy(IntrospectionService.class);
+
+        return proxy;
+    }
+
+    public StatService createStatService(String url) {
+        return createStatService(url, engine);
+    }
+
+    public StatService createStatService(String url, ClientHttpEngine engine) {
+        ResteasyClient client = ((ResteasyClientBuilder) ResteasyClientBuilder.newBuilder()).httpEngine(engine).build();
+        ResteasyWebTarget target = client.target(UriBuilder.fromPath(url));
+        return target.proxy(StatService.class);
+    }
+
+    public ApacheHttpClient43Engine createEngine() {
+        return createEngine(false);
+    }
+
+    public ApacheHttpClient43Engine createEngine(boolean followRedirects) {
+        return createEngine(200, 20, CookieSpecs.STANDARD, followRedirects);
+    }
+
+	public ApacheHttpClient43Engine createEngine(int maxTotal, int defaultMaxPerRoute, String cookieSpec, boolean followRedirects) {
+	    PoolingHttpClientConnectionManager cm = new PoolingHttpClientConnectionManager();
+	    CloseableHttpClient httpClient = HttpClients.custom()
+				.setDefaultRequestConfig(RequestConfig.custom().setCookieSpec(cookieSpec).build())
+	    		.setConnectionManager(cm).build();
+	    cm.setMaxTotal(maxTotal);
+	    cm.setDefaultMaxPerRoute(defaultMaxPerRoute);
+        final ApacheHttpClient43Engine engine = new ApacheHttpClient43Engine(httpClient);
+        engine.setFollowRedirects(followRedirects);
+        return engine;
+	}
+}
diff --git a/oxAuth/Client/src/main/java/org/gluu/oxauth/client/service/IntrospectionService.java b/oxAuth/Client/src/main/java/org/gluu/oxauth/client/service/IntrospectionService.java
new file mode 100644
index 00000000..cc159dcb
--- /dev/null
+++ b/oxAuth/Client/src/main/java/org/gluu/oxauth/client/service/IntrospectionService.java
@@ -0,0 +1,51 @@
+/*
+ * oxAuth is available under the MIT License (2008). See http://opensource.org/licenses/MIT for full text.
+ *
+ * Copyright (c) 2014, Gluu
+ */
+
+package org.gluu.oxauth.client.service;
+
+import javax.ws.rs.Consumes;
+import javax.ws.rs.FormParam;
+import javax.ws.rs.HeaderParam;
+import javax.ws.rs.POST;
+import javax.ws.rs.Produces;
+import javax.ws.rs.core.MediaType;
+
+import org.gluu.oxauth.model.common.IntrospectionResponse;
+
+import com.fasterxml.jackson.databind.JsonNode;
+
+/**
+ * Introspection service.
+ *
+ * @author Yuriy Zabrovarnyy
+ * @version 0.9, 17/09/2013
+ */
+
+public interface IntrospectionService {
+
+    /**
+     * Returns introspection response for specified token.
+     *
+     * @param p_authorization authorization token
+     * @param p_token         token to introspect
+     * @return introspection response
+     */
+    @POST
+    @Consumes({MediaType.APPLICATION_JSON})
+    @Produces({MediaType.APPLICATION_JSON})
+    IntrospectionResponse introspectToken(@HeaderParam("Authorization") String p_authorization, @FormParam("token") String p_token);
+
+    @POST
+    @Consumes({MediaType.APPLICATION_JSON})
+    @Produces({MediaType.APPLICATION_JSON})
+    String introspectTokenWithResponseAsJwt(@HeaderParam("Authorization") String p_authorization, @FormParam("token") String p_token, @FormParam("response_as_jwt") boolean responseAsJwt);
+
+    @POST
+    @Consumes({MediaType.APPLICATION_JSON})
+    @Produces({MediaType.APPLICATION_JSON})
+    JsonNode introspect(@HeaderParam("Authorization") String p_authorization, @FormParam("token") String p_token);
+
+}
diff --git a/oxAuth/Client/src/main/java/org/gluu/oxauth/client/service/StatService.java b/oxAuth/Client/src/main/java/org/gluu/oxauth/client/service/StatService.java
new file mode 100644
index 00000000..5d9f8a8f
--- /dev/null
+++ b/oxAuth/Client/src/main/java/org/gluu/oxauth/client/service/StatService.java
@@ -0,0 +1,24 @@
+package org.gluu.oxauth.client.service;
+
+import javax.ws.rs.FormParam;
+import javax.ws.rs.GET;
+import javax.ws.rs.HeaderParam;
+import javax.ws.rs.POST;
+import javax.ws.rs.Produces;
+import javax.ws.rs.QueryParam;
+import javax.ws.rs.core.MediaType;
+
+import com.fasterxml.jackson.databind.JsonNode;
+
+/**
+ * @author Yuriy Zabrovarnyy
+ */
+public interface StatService {
+    @GET
+    @Produces({MediaType.APPLICATION_JSON})
+    JsonNode stat(@HeaderParam("Authorization") String authorization, @QueryParam("month") String month, @QueryParam("format") String format);
+
+    @POST
+    @Produces({MediaType.APPLICATION_JSON})
+    JsonNode statPost(@HeaderParam("Authorization") String authorization, @FormParam("month") String month, @FormParam("format") String format);
+}
diff --git a/oxAuth/Client/src/main/java/org/gluu/oxauth/client/uma/UmaClientFactory.java b/oxAuth/Client/src/main/java/org/gluu/oxauth/client/uma/UmaClientFactory.java
new file mode 100644
index 00000000..bf91f8f4
--- /dev/null
+++ b/oxAuth/Client/src/main/java/org/gluu/oxauth/client/uma/UmaClientFactory.java
@@ -0,0 +1,114 @@
+/*
+ * oxAuth is available under the MIT License (2008). See http://opensource.org/licenses/MIT for full text.
+ *
+ * Copyright (c) 2014, Gluu
+ */
+
+package org.gluu.oxauth.client.uma;
+
+import javax.ws.rs.core.UriBuilder;
+
+import org.gluu.oxauth.client.service.ClientFactory;
+import org.gluu.oxauth.model.uma.UmaMetadata;
+import org.jboss.resteasy.client.jaxrs.ClientHttpEngine;
+import org.jboss.resteasy.client.jaxrs.ResteasyClient;
+import org.jboss.resteasy.client.jaxrs.ResteasyClientBuilder;
+import org.jboss.resteasy.client.jaxrs.ResteasyWebTarget;
+import org.jboss.resteasy.client.jaxrs.engines.ApacheHttpClient43Engine;
+
+/**
+ * Helper class which creates proxied UMA services
+ *
+ * @author Yuriy Movchan
+ * @author Yuriy Zabrovarnyy
+ */
+public class UmaClientFactory {
+
+    private final static UmaClientFactory instance = new UmaClientFactory();
+
+    private ApacheHttpClient43Engine engine;
+
+    private UmaClientFactory() {
+        this.engine = ClientFactory.instance().createEngine(true);
+    }
+
+    public static UmaClientFactory instance() {
+        return instance;
+    }
+
+    public UmaResourceService createResourceService(UmaMetadata metadata) {
+        return createResourceService(metadata, engine);
+    }
+
+    public UmaResourceService createResourceService(UmaMetadata metadata, ClientHttpEngine engine) {
+        ResteasyClient client = ((ResteasyClientBuilder) ResteasyClientBuilder.newBuilder()).httpEngine(engine).build();
+        ResteasyWebTarget target = client.target(UriBuilder.fromPath(metadata.getResourceRegistrationEndpoint()));
+        UmaResourceService proxy = target.proxy(UmaResourceService.class);
+
+        return proxy;
+    }
+
+    public UmaPermissionService createPermissionService(UmaMetadata metadata) {
+        return createPermissionService(metadata, engine);
+    }
+
+    public UmaPermissionService createPermissionService(UmaMetadata metadata, ClientHttpEngine engine) {
+        ResteasyClient client = ((ResteasyClientBuilder) ResteasyClientBuilder.newBuilder()).httpEngine(engine).build();
+        ResteasyWebTarget target = client.target(UriBuilder.fromPath(metadata.getPermissionEndpoint()));
+        UmaPermissionService proxy = target.proxy(UmaPermissionService.class);
+
+        return proxy;
+    }
+
+    public UmaRptIntrospectionService createRptStatusService(UmaMetadata metadata) {
+        return createRptStatusService(metadata, engine);
+    }
+
+    public UmaRptIntrospectionService createRptStatusService(UmaMetadata metadata, ClientHttpEngine engine) {
+        ResteasyClient client = ((ResteasyClientBuilder) ResteasyClientBuilder.newBuilder()).httpEngine(engine).build();
+        ResteasyWebTarget target = client.target(UriBuilder.fromPath(metadata.getIntrospectionEndpoint()));
+        UmaRptIntrospectionService proxy = target.proxy(UmaRptIntrospectionService.class);
+
+        return proxy;
+    }
+
+    public UmaMetadataService createMetadataService(String umaMetadataUri) {
+        return createMetadataService(umaMetadataUri, engine);
+    }
+
+    public UmaMetadataService createMetadataService(String umaMetadataUri, ClientHttpEngine engine) {
+        ResteasyClient client = ((ResteasyClientBuilder) ResteasyClientBuilder.newBuilder()).httpEngine(engine).build();
+        ResteasyWebTarget target = client.target(UriBuilder.fromPath(umaMetadataUri));
+        UmaMetadataService proxy = target.proxy(UmaMetadataService.class);
+
+        return proxy;
+    }
+
+    public UmaScopeService createScopeService(String scopeEndpointUri) {
+        return createScopeService(scopeEndpointUri, engine);
+    }
+
+    public UmaScopeService createScopeService(String scopeEndpointUri, ClientHttpEngine engine) {
+        ResteasyClient client = ((ResteasyClientBuilder) ResteasyClientBuilder.newBuilder()).httpEngine(engine).build();
+        ResteasyWebTarget target = client.target(UriBuilder.fromPath(scopeEndpointUri));
+        UmaScopeService proxy = target.proxy(UmaScopeService.class);
+
+        return proxy;
+    }
+
+    public UmaTokenService createTokenService(UmaMetadata metadata) {
+        return createTokenService(metadata, engine);
+    }
+
+    public UmaTokenService createTokenService(UmaMetadata metadata, ClientHttpEngine engine) {
+        ResteasyClient client = ((ResteasyClientBuilder) ResteasyClientBuilder.newBuilder()).httpEngine(engine).build();
+        ResteasyWebTarget target = client.target(UriBuilder.fromPath(metadata.getTokenEndpoint()));
+        UmaTokenService proxy = target.proxy(UmaTokenService.class);
+
+        return proxy;
+    }
+
+    public ResteasyClient newClient(ClientHttpEngine engine) {
+        return ((ResteasyClientBuilder) ResteasyClientBuilder.newBuilder()).httpEngine(engine).build();
+    }
+}
diff --git a/oxAuth/Client/src/main/java/org/gluu/oxauth/client/uma/UmaMetadataService.java b/oxAuth/Client/src/main/java/org/gluu/oxauth/client/uma/UmaMetadataService.java
new file mode 100644
index 00000000..347ee7c5
--- /dev/null
+++ b/oxAuth/Client/src/main/java/org/gluu/oxauth/client/uma/UmaMetadataService.java
@@ -0,0 +1,26 @@
+/*
+ * oxAuth is available under the MIT License (2008). See http://opensource.org/licenses/MIT for full text.
+ *
+ * Copyright (c) 2014, Gluu
+ */
+
+package org.gluu.oxauth.client.uma;
+
+import javax.ws.rs.GET;
+import javax.ws.rs.Produces;
+
+import org.gluu.oxauth.model.uma.UmaConstants;
+import org.gluu.oxauth.model.uma.UmaMetadata;
+
+/**
+ * The endpoint at which the requester can obtain UMA metadata.
+ *
+ * @author Yuriy Zabrovarnyy
+ */
+public interface UmaMetadataService {
+
+	@GET
+	@Produces({ UmaConstants.JSON_MEDIA_TYPE })
+	UmaMetadata getMetadata();
+
+}
\ No newline at end of file
diff --git a/oxAuth/Client/src/main/java/org/gluu/oxauth/client/uma/UmaPermissionService.java b/oxAuth/Client/src/main/java/org/gluu/oxauth/client/uma/UmaPermissionService.java
new file mode 100644
index 00000000..b7c56e07
--- /dev/null
+++ b/oxAuth/Client/src/main/java/org/gluu/oxauth/client/uma/UmaPermissionService.java
@@ -0,0 +1,38 @@
+/*
+ * oxAuth is available under the MIT License (2008). See http://opensource.org/licenses/MIT for full text.
+ *
+ * Copyright (c) 2014, Gluu
+ */
+
+package org.gluu.oxauth.client.uma;
+
+import javax.ws.rs.Consumes;
+import javax.ws.rs.HeaderParam;
+import javax.ws.rs.POST;
+import javax.ws.rs.Produces;
+
+import org.gluu.oxauth.model.uma.PermissionTicket;
+import org.gluu.oxauth.model.uma.UmaConstants;
+import org.gluu.oxauth.model.uma.UmaPermissionList;
+
+/**
+ * The endpoint at which the host registers permissions that it anticipates a
+ * requester will shortly be asking for from the AM. This AM's endpoint is part
+ * of resource registration API.
+ * <p/>
+ * In response to receiving an access request accompanied by an RPT that is
+ * invalid or has insufficient authorization data, the host SHOULD register a
+ * permission with the AS that would be sufficient for the type of access
+ * sought. The AS returns a permission ticket for the host to give to the
+ * requester in its response.
+ * 
+ */
+public interface UmaPermissionService {
+
+	@POST
+	@Consumes({ UmaConstants.JSON_MEDIA_TYPE })
+	@Produces({ UmaConstants.JSON_MEDIA_TYPE })
+	PermissionTicket registerPermission(
+			@HeaderParam("Authorization") String authorization,
+			UmaPermissionList permissions);
+}
\ No newline at end of file
diff --git a/oxAuth/Client/src/main/java/org/gluu/oxauth/client/uma/UmaResourceService.java b/oxAuth/Client/src/main/java/org/gluu/oxauth/client/uma/UmaResourceService.java
new file mode 100644
index 00000000..905e22a1
--- /dev/null
+++ b/oxAuth/Client/src/main/java/org/gluu/oxauth/client/uma/UmaResourceService.java
@@ -0,0 +1,66 @@
+/*
+ * oxAuth is available under the MIT License (2008). See http://opensource.org/licenses/MIT for full text.
+ *
+ * Copyright (c) 2014, Gluu
+ */
+
+package org.gluu.oxauth.client.uma;
+
+import java.util.List;
+
+import javax.ws.rs.Consumes;
+import javax.ws.rs.DELETE;
+import javax.ws.rs.GET;
+import javax.ws.rs.HeaderParam;
+import javax.ws.rs.POST;
+import javax.ws.rs.PUT;
+import javax.ws.rs.Path;
+import javax.ws.rs.PathParam;
+import javax.ws.rs.Produces;
+import javax.ws.rs.QueryParam;
+
+import org.gluu.oxauth.model.uma.UmaConstants;
+import org.gluu.oxauth.model.uma.UmaResource;
+import org.gluu.oxauth.model.uma.UmaResourceResponse;
+import org.gluu.oxauth.model.uma.UmaResourceWithId;
+
+/**
+ * REST WS UMA resource set description API
+ *
+ * @author Yuriy Zabrovarnyy
+ */
+public interface UmaResourceService {
+
+	@POST
+	@Consumes({ UmaConstants.JSON_MEDIA_TYPE})
+	@Produces({ UmaConstants.JSON_MEDIA_TYPE })
+	UmaResourceResponse addResource(@HeaderParam("Authorization") String authorization, UmaResource resource);
+
+	@PUT
+	@Path("{rsid}")
+	@Consumes({ UmaConstants.JSON_MEDIA_TYPE})
+	@Produces({ UmaConstants.JSON_MEDIA_TYPE })
+	UmaResourceResponse updateResource(@HeaderParam("Authorization") String authorization, @PathParam("rsid") String rsid, UmaResource resource);
+
+	@GET
+	@Path("{rsid}")
+	@Produces({ UmaConstants.JSON_MEDIA_TYPE })
+	UmaResourceWithId getResource(@HeaderParam("Authorization") String authorization, @PathParam("rsid") String rsid);
+
+    /**
+     * Gets resources.
+     * ATTENTION: "scope" is parameter added by gluu to have additional filtering.
+     * There is no such parameter in UMA specification.
+     *
+     * @param authorization authorization
+     * @param scope scope of resource set for additional filtering, can blank string.
+     * @return resource set ids.
+     */
+	@GET
+	@Produces({ UmaConstants.JSON_MEDIA_TYPE })
+	List<String> getResourceList(@HeaderParam("Authorization") String authorization, @QueryParam("scope") String scope);
+
+	@DELETE
+	@Path("{rsid}")
+	void deleteResource(@HeaderParam("Authorization") String authorization, @PathParam("rsid") String rsid);
+}
diff --git a/oxAuth/Client/src/main/java/org/gluu/oxauth/client/uma/UmaRptIntrospectionService.java b/oxAuth/Client/src/main/java/org/gluu/oxauth/client/uma/UmaRptIntrospectionService.java
new file mode 100644
index 00000000..84ce496a
--- /dev/null
+++ b/oxAuth/Client/src/main/java/org/gluu/oxauth/client/uma/UmaRptIntrospectionService.java
@@ -0,0 +1,30 @@
+/*
+ * oxAuth is available under the MIT License (2008). See http://opensource.org/licenses/MIT for full text.
+ *
+ * Copyright (c) 2014, Gluu
+ */
+
+package org.gluu.oxauth.client.uma;
+
+import javax.ws.rs.FormParam;
+import javax.ws.rs.HeaderParam;
+import javax.ws.rs.POST;
+import javax.ws.rs.Produces;
+
+import org.gluu.oxauth.model.uma.RptIntrospectionResponse;
+import org.gluu.oxauth.model.uma.UmaConstants;
+
+/**
+ * The endpoint at which the host requests the status of an RPT presented to it by a requester.
+ * The endpoint is RPT introspection profile implementation defined here:
+ * http://docs.kantarainitiative.org/uma/draft-uma-core.html#uma-bearer-token-profile
+ */
+public interface UmaRptIntrospectionService {
+
+    @POST
+    @Produces({UmaConstants.JSON_MEDIA_TYPE})
+    RptIntrospectionResponse requestRptStatus(@HeaderParam("Authorization") String authorization,
+                                              @FormParam("token") String rptAsString,
+                                              @FormParam("token_type_hint") String tokenTypeHint);
+
+}
diff --git a/oxAuth/Client/src/main/java/org/gluu/oxauth/client/uma/UmaScopeService.java b/oxAuth/Client/src/main/java/org/gluu/oxauth/client/uma/UmaScopeService.java
new file mode 100644
index 00000000..450481d3
--- /dev/null
+++ b/oxAuth/Client/src/main/java/org/gluu/oxauth/client/uma/UmaScopeService.java
@@ -0,0 +1,27 @@
+/*
+ * oxAuth is available under the MIT License (2008). See http://opensource.org/licenses/MIT for full text.
+ *
+ * Copyright (c) 2014, Gluu
+ */
+
+package org.gluu.oxauth.client.uma;
+
+import javax.ws.rs.GET;
+import javax.ws.rs.Path;
+import javax.ws.rs.PathParam;
+import javax.ws.rs.Produces;
+
+import org.gluu.oxauth.model.uma.UmaConstants;
+import org.gluu.oxauth.model.uma.UmaScopeDescription;
+
+/**
+ * @author Yuriy Zabrovarnyy
+ */
+
+public interface UmaScopeService {
+
+    @GET
+    @Path("{id}")
+    @Produces({UmaConstants.JSON_MEDIA_TYPE})
+    UmaScopeDescription getScope(@PathParam("id") String id);
+}
diff --git a/oxAuth/Client/src/main/java/org/gluu/oxauth/client/uma/UmaTokenService.java b/oxAuth/Client/src/main/java/org/gluu/oxauth/client/uma/UmaTokenService.java
new file mode 100644
index 00000000..fe53539d
--- /dev/null
+++ b/oxAuth/Client/src/main/java/org/gluu/oxauth/client/uma/UmaTokenService.java
@@ -0,0 +1,43 @@
+package org.gluu.oxauth.client.uma;
+
+import javax.ws.rs.Consumes;
+import javax.ws.rs.FormParam;
+import javax.ws.rs.HeaderParam;
+import javax.ws.rs.POST;
+import javax.ws.rs.Produces;
+
+import org.gluu.oxauth.model.uma.UmaConstants;
+import org.gluu.oxauth.model.uma.UmaTokenResponse;
+
+/**
+ * @author yuriyz on 06/21/2017.
+ */
+public interface UmaTokenService {
+
+    @POST
+    @Consumes({UmaConstants.JSON_MEDIA_TYPE})
+    @Produces({UmaConstants.JSON_MEDIA_TYPE})
+    UmaTokenResponse requestRpt(
+            @HeaderParam("Authorization") String authorization,
+            @FormParam("grant_type") String grantType,
+            @FormParam("ticket") String ticket,
+            @FormParam("claim_token") String claimToken,
+            @FormParam("claim_token_format") String claimTokenFormat,
+            @FormParam("pct") String pctCode,
+            @FormParam("rpt") String rptCode,
+            @FormParam("scope") String scope);
+
+    @POST
+    @Consumes({UmaConstants.JSON_MEDIA_TYPE})
+    @Produces({UmaConstants.JSON_MEDIA_TYPE})
+    UmaTokenResponse requestJwtAuthorizationRpt(
+            @FormParam("client_assertion_type") String clientAssertionType,
+            @FormParam("client_assertion") String clientAssertion,
+            @FormParam("grant_type") String grantType,
+            @FormParam("ticket") String ticket,
+            @FormParam("claim_token") String claimToken,
+            @FormParam("claim_token_format") String claimTokenFormat,
+            @FormParam("pct") String pctCode,
+            @FormParam("rpt") String rptCode,
+            @FormParam("scope") String scope);
+}
diff --git a/oxAuth/Client/src/main/java/org/gluu/oxauth/client/uma/exception/UmaException.java b/oxAuth/Client/src/main/java/org/gluu/oxauth/client/uma/exception/UmaException.java
new file mode 100644
index 00000000..77b44d17
--- /dev/null
+++ b/oxAuth/Client/src/main/java/org/gluu/oxauth/client/uma/exception/UmaException.java
@@ -0,0 +1,30 @@
+/*
+ * oxAuth is available under the MIT License (2008). See http://opensource.org/licenses/MIT for full text.
+ *
+ * Copyright (c) 2014, Gluu
+ */
+
+package org.gluu.oxauth.client.uma.exception;
+
+/**
+ * UMA Exception
+ * 
+ * @author Yuriy Movchan Date: 12/08/2012
+ */
+public class UmaException extends Exception {
+
+	private static final long serialVersionUID = 2136659058534678566L;
+
+	public UmaException() {}
+
+	public UmaException(String message) {}
+
+	public UmaException(Throwable cause) {
+		super(cause);
+	}
+
+	public UmaException(String message, Throwable cause) {
+		super(message, cause);
+	}
+
+}
diff --git a/oxAuth/Client/src/main/java/org/gluu/oxauth/client/uma/wrapper/UmaClient.java b/oxAuth/Client/src/main/java/org/gluu/oxauth/client/uma/wrapper/UmaClient.java
new file mode 100644
index 00000000..5f1fa2b8
--- /dev/null
+++ b/oxAuth/Client/src/main/java/org/gluu/oxauth/client/uma/wrapper/UmaClient.java
@@ -0,0 +1,237 @@
+/*
+ * oxAuth is available under the MIT License (2008). See http://opensource.org/licenses/MIT for full text.
+ *
+ * Copyright (c) 2014, Gluu
+ */
+
+package org.gluu.oxauth.client.uma.wrapper;
+
+import java.util.ArrayList;
+import java.util.Arrays;
+import java.util.List;
+import java.util.UUID;
+
+import org.gluu.oxauth.client.AuthorizationRequest;
+import org.gluu.oxauth.client.AuthorizationResponse;
+import org.gluu.oxauth.client.AuthorizeClient;
+import org.gluu.oxauth.client.TokenClient;
+import org.gluu.oxauth.client.TokenRequest;
+import org.gluu.oxauth.client.TokenResponse;
+import org.gluu.oxauth.client.uma.exception.UmaException;
+import org.gluu.oxauth.model.common.AuthenticationMethod;
+import org.gluu.oxauth.model.common.GrantType;
+import org.gluu.oxauth.model.common.Prompt;
+import org.gluu.oxauth.model.common.ResponseType;
+import org.gluu.oxauth.model.crypto.OxAuthCryptoProvider;
+import org.gluu.oxauth.model.crypto.signature.SignatureAlgorithm;
+import org.gluu.oxauth.model.uma.UmaScopeType;
+import org.gluu.oxauth.model.uma.wrapper.Token;
+import org.gluu.oxauth.model.util.Util;
+import org.gluu.util.StringHelper;
+import org.jboss.resteasy.client.jaxrs.ClientHttpEngine;
+
+/**
+ * @author Yuriy Zabrovarnyy
+ */
+
+public class UmaClient {
+
+	public static Token requestPat(final String tokenUrl, final String clientKeyStoreFile, final String clientKeyStorePassword, final String clientId, final String keyId) throws UmaException {
+        TokenRequest tokenRequest = TokenRequest.builder().pat().grantType(GrantType.CLIENT_CREDENTIALS).build();
+
+        return request(tokenUrl, clientKeyStoreFile, clientKeyStorePassword, clientId, keyId, tokenRequest);
+	}
+
+    @Deprecated
+    public static Token requestPat(final String authorizeUrl, final String tokenUrl,
+                                   final String umaUserId, final String umaUserSecret,
+                                   final String umaClientId, final String umaClientSecret,
+                                   final String umaRedirectUri, String... scopeArray) throws Exception {
+        return request(authorizeUrl, tokenUrl, umaUserId, umaUserSecret, umaClientId, umaClientSecret, umaRedirectUri, UmaScopeType.PROTECTION, scopeArray);
+    }
+
+    public static Token requestPat(final String tokenUrl, final String umaClientId, final String umaClientSecret, String... scopeArray) throws Exception {
+        return requestPat(tokenUrl, umaClientId, umaClientSecret, null, scopeArray);
+    }
+
+    public static Token requestPat(final String tokenUrl, final String umaClientId, final String umaClientSecret, ClientHttpEngine engine, String... scopeArray) throws Exception {
+        return request(tokenUrl, umaClientId, umaClientSecret, UmaScopeType.PROTECTION, engine, scopeArray);
+    }
+
+    @Deprecated
+    public static Token request(final String authorizeUrl, final String tokenUrl,
+                                final String umaUserId, final String umaUserSecret,
+                                final String umaClientId, final String umaClientSecret,
+                                final String umaRedirectUri, UmaScopeType p_type, String... scopeArray) throws Exception {
+        // 1. Request authorization and receive the authorization code.
+        List<ResponseType> responseTypes = new ArrayList<ResponseType>();
+        responseTypes.add(ResponseType.CODE);
+        responseTypes.add(ResponseType.ID_TOKEN);
+
+        List<String> scopes = new ArrayList<String>();
+        scopes.add(p_type.getValue());
+        if (scopeArray != null && scopeArray.length > 0) {
+            scopes.addAll(Arrays.asList(scopeArray));
+        }
+
+        String state = UUID.randomUUID().toString();
+
+        AuthorizationRequest request = new AuthorizationRequest(responseTypes, umaClientId, scopes, umaRedirectUri, null);
+        request.setState(state);
+        request.setAuthUsername(umaUserId);
+        request.setAuthPassword(umaUserSecret);
+        request.getPrompts().add(Prompt.NONE);
+
+        AuthorizeClient authorizeClient = new AuthorizeClient(authorizeUrl);
+        authorizeClient.setRequest(request);
+        AuthorizationResponse response1 = authorizeClient.exec();
+
+        String scope = response1.getScope();
+        String authorizationCode = response1.getCode();
+
+        if (Util.allNotBlank(authorizationCode)) {
+
+            // 2. Request access token using the authorization code.
+            TokenRequest tokenRequest = new TokenRequest(GrantType.AUTHORIZATION_CODE);
+            tokenRequest.setCode(authorizationCode);
+            tokenRequest.setRedirectUri(umaRedirectUri);
+            tokenRequest.setAuthUsername(umaClientId);
+            tokenRequest.setAuthPassword(umaClientSecret);
+            tokenRequest.setAuthenticationMethod(AuthenticationMethod.CLIENT_SECRET_BASIC);
+            tokenRequest.setScope(scope);
+
+            TokenClient tokenClient1 = new TokenClient(tokenUrl);
+            tokenClient1.setRequest(tokenRequest);
+            TokenResponse response2 = tokenClient1.exec();
+
+            if (response2.getStatus() == 200) {
+                final String patToken = response2.getAccessToken();
+                final String patRefreshToken = response2.getRefreshToken();
+                final Integer expiresIn = response2.getExpiresIn();
+                if (Util.allNotBlank(patToken, patRefreshToken)) {
+                    return new Token(authorizationCode, patRefreshToken, patToken, scope, expiresIn);
+                }
+            }
+        }
+
+        return null;
+    }
+
+    public static Token request(final String tokenUrl, final String umaClientId, final String umaClientSecret, UmaScopeType scopeType,
+                                ClientHttpEngine engine, String... scopeArray) throws Exception {
+
+        String scope = scopeType.getValue();
+        if (scopeArray != null && scopeArray.length > 0) {
+            for (String s : scopeArray) {
+                scope = scope + " " + s;
+            }
+        }
+
+        TokenClient tokenClient = new TokenClient(tokenUrl);
+        if (engine != null) {
+            tokenClient.setExecutor(engine);
+        }
+        TokenResponse response = tokenClient.execClientCredentialsGrant(scope, umaClientId, umaClientSecret);
+
+        if (response.getStatus() == 200) {
+            final String patToken = response.getAccessToken();
+            final Integer expiresIn = response.getExpiresIn();
+            if (Util.allNotBlank(patToken)) {
+                return new Token(null, null, patToken, scopeType.getValue(), expiresIn);
+            }
+        }
+
+        return null;
+    }
+
+    public static Token requestWithClientSecretJwt(final String tokenUrl,
+                                                   final String umaClientId,
+                                                   final String umaClientSecret,
+                                                   AuthenticationMethod authenticationMethod,
+                                                   SignatureAlgorithm signatureAlgorithm,
+                                                   String audience,
+                                                   UmaScopeType scopeType,
+                                                   String... scopeArray) throws Exception {
+
+        String scope = scopeType.getValue();
+        if (scopeArray != null && scopeArray.length > 0) {
+            for (String s : scopeArray) {
+                scope = scope + " " + s;
+            }
+        }
+
+        TokenRequest request = new TokenRequest(GrantType.CLIENT_CREDENTIALS);
+        request.setAuthUsername(umaClientId);
+        request.setAuthPassword(umaClientSecret);
+        request.setScope(scope);
+        request.setAuthenticationMethod(authenticationMethod);
+        request.setAlgorithm(signatureAlgorithm);
+        request.setAudience(audience);
+
+        return request(tokenUrl, request);
+    }
+
+    public static Token request(final String tokenUrl, final TokenRequest tokenRequest) throws Exception {
+    	if (tokenRequest.getGrantType() != GrantType.CLIENT_CREDENTIALS) {
+    		return null;
+    	}
+
+        TokenClient tokenClient = new TokenClient(tokenUrl);
+
+        tokenClient.setRequest(tokenRequest);
+
+        TokenResponse response = tokenClient.exec();
+
+        if (response.getStatus() == 200) {
+            final String patToken = response.getAccessToken();
+            final Integer expiresIn = response.getExpiresIn();
+            if (Util.allNotBlank(patToken)) {
+                return new Token(null, null, patToken, response.getScope(), expiresIn);
+            }
+        }
+
+        return null;
+    }
+
+	private static Token request(final String tokenUrl, final String clientKeyStoreFile,
+			final String clientKeyStorePassword, final String clientId, final String keyId, TokenRequest tokenRequest)
+			throws UmaException {
+		OxAuthCryptoProvider cryptoProvider;
+		try {
+			cryptoProvider = new OxAuthCryptoProvider(clientKeyStoreFile, clientKeyStorePassword, null);
+		} catch (Exception ex) {
+			throw new UmaException("Failed to initialize crypto provider");
+		}
+
+		try {
+			String tmpKeyId = keyId;
+            if (StringHelper.isEmpty(keyId)) {
+                // Get first key
+            	tmpKeyId = cryptoProvider.getKeys().stream().filter(k -> k.contains("_sig_")).findFirst().orElse(null);
+                
+                if (tmpKeyId == null) {
+                    throw new UmaException("Unable to find a key in the keystore with use = sig");
+                }
+            } else if (keyId.contains("_enc_")) {
+                throw new UmaException("Encryption keys not allowed. Supply a key having use = sig");
+            }
+
+	        SignatureAlgorithm algorithm = cryptoProvider.getSignatureAlgorithm(tmpKeyId);
+	
+	
+			tokenRequest.setAuthenticationMethod(AuthenticationMethod.PRIVATE_KEY_JWT);
+			tokenRequest.setAuthUsername(clientId);
+			tokenRequest.setCryptoProvider(cryptoProvider);
+			tokenRequest.setAlgorithm(algorithm);
+			tokenRequest.setKeyId(tmpKeyId);
+			tokenRequest.setAudience(tokenUrl);
+
+			Token umaPat = UmaClient.request(tokenUrl, tokenRequest);
+			
+			return umaPat;
+		} catch (Exception ex) {
+			throw new UmaException("Failed to obtain valid UMA PAT token", ex);
+		}
+	}
+
+}
diff --git a/oxAuth/Client/src/main/java/org/gluu/oxauth/util/ClientUtil.java b/oxAuth/Client/src/main/java/org/gluu/oxauth/util/ClientUtil.java
new file mode 100644
index 00000000..5e909616
--- /dev/null
+++ b/oxAuth/Client/src/main/java/org/gluu/oxauth/util/ClientUtil.java
@@ -0,0 +1,103 @@
+/*
+ * oxAuth is available under the MIT License (2008). See http://opensource.org/licenses/MIT for full text.
+ *
+ * Copyright (c) 2019, Gluu
+ */
+package org.gluu.oxauth.util;
+
+import java.util.ArrayList;
+import java.util.List;
+
+import javax.net.ssl.SSLContext;
+
+import org.apache.commons.lang.StringUtils;
+import org.apache.http.client.config.CookieSpecs;
+import org.apache.http.client.config.RequestConfig;
+import org.apache.http.config.Registry;
+import org.apache.http.config.RegistryBuilder;
+import org.apache.http.conn.socket.ConnectionSocketFactory;
+import org.apache.http.conn.socket.PlainConnectionSocketFactory;
+import org.apache.http.conn.ssl.NoopHostnameVerifier;
+import org.apache.http.conn.ssl.SSLConnectionSocketFactory;
+import org.apache.http.impl.client.CloseableHttpClient;
+import org.apache.http.impl.client.HttpClients;
+import org.apache.http.impl.conn.PoolingHttpClientConnectionManager;
+import org.apache.http.ssl.SSLContexts;
+import org.json.JSONArray;
+import org.json.JSONObject;
+import org.slf4j.Logger;
+import org.slf4j.LoggerFactory;
+
+import com.fasterxml.jackson.core.JsonProcessingException;
+import com.fasterxml.jackson.databind.ObjectMapper;
+import com.fasterxml.jackson.datatype.jsonorg.JsonOrgModule;
+
+/**
+ * @author Yuriy Zabrovarnyy
+ * @author Yuriy Movchan
+ * @version 0.9, 26/12/2012
+ */
+
+public class ClientUtil {
+
+    private final static Logger log = LoggerFactory.getLogger(ClientUtil.class);
+
+    public static String toPrettyJson(JSONObject jsonObject) throws JsonProcessingException {
+        ObjectMapper mapper = new ObjectMapper();
+        mapper.registerModule(new JsonOrgModule());
+        return mapper.writerWithDefaultPrettyPrinter().writeValueAsString(jsonObject);
+    }
+
+    public static List<String> extractListByKey(JSONObject jsonObject, String key) {
+        final List<String> result = new ArrayList<String>();
+        if (jsonObject.has(key)) {
+            JSONArray arrayOfValues = jsonObject.optJSONArray(key);
+            if (arrayOfValues != null) {
+                for (int i = 0; i < arrayOfValues.length(); i++) {
+                    result.add(arrayOfValues.getString(i));
+                }
+                return result;
+            }
+            String listString = jsonObject.optString(key);
+            if (StringUtils.isNotBlank(listString)) {
+                String[] arrayOfStringValues = listString.split(" ");
+                for (String c : arrayOfStringValues) {
+                    if (StringUtils.isNotBlank(c)) {
+                        result.add(c);
+                    }
+                }
+            }
+        }
+        return result;
+    }
+
+    /**
+     * Creates a special SSLContext using a custom TLS version and a set of ciphers enabled to process SSL connections.
+     * @param tlsVersion TLS version, for example TLSv1.2
+     * @param ciphers Set of ciphers used to create connections.
+     */
+    public static CloseableHttpClient createHttpClient(String tlsVersion, String[] ciphers) {
+        try {
+            SSLContext sslContext = SSLContexts.createDefault();
+            SSLConnectionSocketFactory sslConnectionFactory = new SSLConnectionSocketFactory(sslContext,
+                    new String[] { tlsVersion }, ciphers, NoopHostnameVerifier.INSTANCE);
+
+            Registry<ConnectionSocketFactory> registry = RegistryBuilder.<ConnectionSocketFactory> create()
+                    .register("https", sslConnectionFactory)
+                    .register("http", new PlainConnectionSocketFactory())
+                    .build();
+
+            PoolingHttpClientConnectionManager cm = new PoolingHttpClientConnectionManager(registry);
+
+            return HttpClients.custom()
+                    .setSSLContext(sslContext)
+                    .setDefaultRequestConfig(RequestConfig.custom().setCookieSpec(CookieSpecs.STANDARD).build())
+                    .setConnectionManager(cm)
+                    .build();
+        } catch (Exception e) {
+            log.error("Error creating HttpClient with a custom TLS version and custom ciphers", e);
+            return null;
+        }
+    }
+
+}
diff --git a/oxAuth/Client/src/main/java/org/gluu/oxauth/util/KeyExporter.java b/oxAuth/Client/src/main/java/org/gluu/oxauth/util/KeyExporter.java
new file mode 100644
index 00000000..46bea906
--- /dev/null
+++ b/oxAuth/Client/src/main/java/org/gluu/oxauth/util/KeyExporter.java
@@ -0,0 +1,137 @@
+/*
+ * oxAuth is available under the MIT License (2008). See http://opensource.org/licenses/MIT for full text.
+ *
+ * Copyright (c) 2014, Gluu
+ */
+
+package org.gluu.oxauth.util;
+
+import java.io.File;
+import java.security.PrivateKey;
+
+import org.apache.commons.cli.BasicParser;
+import org.apache.commons.cli.CommandLine;
+import org.apache.commons.cli.CommandLineParser;
+import org.apache.commons.cli.HelpFormatter;
+import org.apache.commons.cli.Options;
+import org.apache.commons.cli.ParseException;
+import org.apache.commons.io.FileUtils;
+import org.apache.commons.lang.WordUtils;
+import org.apache.log4j.Logger;
+import org.apache.logging.log4j.Level;
+import org.apache.logging.log4j.status.StatusLogger;
+import org.bouncycastle.util.encoders.Base64;
+import org.gluu.oxauth.model.crypto.OxAuthCryptoProvider;
+import org.gluu.oxauth.model.crypto.signature.AlgorithmFamily;
+import org.gluu.oxauth.model.crypto.signature.SignatureAlgorithm;
+import org.gluu.util.security.SecurityProviderUtility;
+
+/**
+ * Export private key from JKS Command example: java -cp
+ * org.gluu.oxauth.util.KeyExporter -h
+ * <p/>
+ * KeyExporter -keystore /Users/yuriy/tmp/mykeystore.jks -keypasswd secret
+ * -alias "2d4817e7-5fe8-4b6b-8f64-fe3723625122"
+ * -exportfile=/Users/yuriy/tmp/mykey.pem
+ * <p/>
+ *
+ * @author Yuriy Movchan
+ * @version February 12, 2019
+ */
+public class KeyExporter {
+
+	private static final String KEY_STORE_FILE = "keystore";
+	private static final String KEY_STORE_PASSWORD = "keypasswd";
+	private static final String KEY_ALIAS = "alias";
+	private static final String EXPORT_FILE = "exportfile";
+	private static final String HELP = "h";
+	private static final Logger log;
+
+	static {
+		StatusLogger.getLogger().setLevel(Level.OFF);
+		log = Logger.getLogger(KeyExporter.class);
+	}
+
+	public static void main(String[] args) throws Exception {
+		new Cli(args).parse();
+	}
+
+	public static class Cli {
+		private String[] args = null;
+		private Options options = new Options();
+
+		public Cli(String[] args) {
+			this.args = args;
+
+			options.addOption(KEY_STORE_FILE, true, "Key Store file.");
+			options.addOption(KEY_STORE_PASSWORD, true, "Key Store password.");
+			options.addOption(KEY_ALIAS, true, "Key alias.");
+			options.addOption(EXPORT_FILE, true, "Export file.");
+			options.addOption(HELP, false, "Show help.");
+		}
+
+		public void parse() {
+			CommandLineParser parser = new BasicParser();
+
+			CommandLine cmd = null;
+			try {
+				cmd = parser.parse(options, args);
+
+				if (cmd.hasOption(HELP))
+					help();
+
+				if (cmd.hasOption(KEY_STORE_FILE) && cmd.hasOption(KEY_STORE_PASSWORD) && cmd.hasOption(KEY_ALIAS)
+						&& cmd.hasOption(EXPORT_FILE)) {
+
+					String keyStore = cmd.getOptionValue(KEY_STORE_FILE);
+					String keyStorePasswd = cmd.getOptionValue(KEY_STORE_PASSWORD);
+					String keyAlias = cmd.getOptionValue(KEY_ALIAS);
+					String exportFile = cmd.getOptionValue(EXPORT_FILE);
+
+					try {
+						SecurityProviderUtility.installBCProvider(true);
+
+						OxAuthCryptoProvider cryptoProvider = new OxAuthCryptoProvider(keyStore, keyStorePasswd,
+								"CN=oxAuth CA Certificates");
+						PrivateKey privateKey = cryptoProvider.getPrivateKey(keyAlias);
+						String base64EncodedKey = WordUtils.wrap(new String(Base64.encode(privateKey.getEncoded())), 64,
+								"\n", true);
+
+						StringBuilder sb = new StringBuilder();
+						SignatureAlgorithm signatureAlgorithm = cryptoProvider.getSignatureAlgorithm(keyAlias);
+						if (AlgorithmFamily.RSA.equals(signatureAlgorithm.getFamily())) {
+							sb.append("-----BEGIN RSA PRIVATE KEY-----\n");
+							sb.append(base64EncodedKey);
+							sb.append("\n");
+							sb.append("-----END RSA PRIVATE KEY-----\n");
+						} else {
+							sb.append("-----BEGIN PRIVATE KEY-----\n");
+							sb.append(base64EncodedKey);
+							sb.append("\n");
+							sb.append("-----END PRIVATE KEY-----\n");
+						}
+
+						FileUtils.writeStringToFile(new File(exportFile), sb.toString());
+					} catch (Exception e) {
+						log.error("Failed to export key", e);
+						help();
+					}
+				} else {
+					help();
+				}
+			} catch (ParseException e) {
+				log.error("Failed to export key", e);
+				help();
+			}
+		}
+
+		private void help() {
+			HelpFormatter formatter = new HelpFormatter();
+
+			formatter.printHelp(
+					"KeyExporter -keystore path -keypasswd secret -alias 2d4817e7-5fe8-4b6b-8f64-fe3723625122 -exportfile=export-path",
+					options);
+			System.exit(0);
+		}
+	}
+}
\ No newline at end of file
diff --git a/oxAuth/Client/src/main/java/org/gluu/oxauth/util/KeyGenerator.java b/oxAuth/Client/src/main/java/org/gluu/oxauth/util/KeyGenerator.java
new file mode 100644
index 00000000..497fa233
--- /dev/null
+++ b/oxAuth/Client/src/main/java/org/gluu/oxauth/util/KeyGenerator.java
@@ -0,0 +1,254 @@
+/*
+ * oxAuth is available under the MIT License (2008). See http://opensource.org/licenses/MIT for full text.
+ *
+ * Copyright (c) 2014, Gluu
+ */
+
+package org.gluu.oxauth.util;
+
+import static org.gluu.oxauth.model.jwk.JWKParameter.CERTIFICATE_CHAIN;
+import static org.gluu.oxauth.model.jwk.JWKParameter.EXPIRATION_TIME;
+import static org.gluu.oxauth.model.jwk.JWKParameter.EXPONENT;
+import static org.gluu.oxauth.model.jwk.JWKParameter.KEY_ID;
+import static org.gluu.oxauth.model.jwk.JWKParameter.MODULUS;
+import static org.gluu.oxauth.model.jwk.JWKParameter.X;
+import static org.gluu.oxauth.model.jwk.JWKParameter.Y;
+
+import java.util.ArrayList;
+import java.util.Calendar;
+import java.util.GregorianCalendar;
+import java.util.List;
+
+import org.apache.commons.cli.BasicParser;
+import org.apache.commons.cli.CommandLine;
+import org.apache.commons.cli.CommandLineParser;
+import org.apache.commons.cli.HelpFormatter;
+import org.apache.commons.cli.Option;
+import org.apache.commons.cli.Options;
+import org.apache.commons.cli.ParseException;
+import org.apache.log4j.Logger;
+import org.apache.logging.log4j.Level;
+import org.apache.logging.log4j.status.StatusLogger;
+import org.gluu.oxauth.model.crypto.AbstractCryptoProvider;
+import org.gluu.oxauth.model.crypto.OxAuthCryptoProvider;
+import org.gluu.oxauth.model.crypto.OxElevenCryptoProvider;
+import org.gluu.oxauth.model.crypto.encryption.KeyEncryptionAlgorithm;
+import org.gluu.oxauth.model.crypto.signature.SignatureAlgorithm;
+import org.gluu.oxauth.model.jwk.Algorithm;
+import org.gluu.oxauth.model.jwk.JSONWebKey;
+import org.gluu.oxauth.model.jwk.JSONWebKeySet;
+import org.gluu.oxauth.model.jwk.KeyType;
+import org.gluu.oxauth.model.jwk.Use;
+import org.gluu.util.security.SecurityProviderUtility;
+import org.gluu.oxauth.model.util.StringUtils;
+import org.gluu.util.StringHelper;
+import org.json.JSONArray;
+import org.json.JSONObject;
+
+/**
+ * Command example:
+ * java -cp bcprov-jdk18on-1.54.jar:.jar:bcpkix-jdk18on-1.54.jar:commons-cli-1.2.jar:commons-codec-1.5.jar:commons-lang-2.6.jar:jettison-1.3.jar:log4j-1.2.14.jar:oxauth-model.jar:oxauth.jar org.gluu.oxauth.util.KeyGenerator -h
+ * <p/>
+ * KeyGenerator -sig_keys RS256 RS384 RS512 ES256 ES384 ES512 PS256 PS384 PS512 -enc_keys RSA_OAEP RSA1_5 -keystore /Users/JAVIER/tmp/mykeystore.jks -keypasswd secret -dnname "CN=oxAuth CA Certificates" -expiration 365
+ * <p/>
+ * KeyGenerator -sig_keys RS256 RS384 RS512 ES256 ES384 ES512 -ox11 https://ce.gluu.info:8443/oxeleven/rest/generateKey -expiration 365 -at xxxxxxxx-xxxx-xxxx-xxxx-xxxxxxxxxxxx
+ *
+ * @author Javier Rojas Blum
+ * @author Yuriy Movchan
+ * @version February 12, 2019
+ */
+public class KeyGenerator {
+
+    private static final String SIGNING_KEYS = "sig_keys";
+    private static final String ENCRYPTION_KEYS = "enc_keys";
+    private static final String KEY_STORE_FILE = "keystore";
+    private static final String KEY_STORE_PASSWORD = "keypasswd";
+    private static final String DN_NAME = "dnname";
+    private static final String OXELEVEN_ACCESS_TOKEN = "at";
+    private static final String OXELEVEN_GENERATE_KEY_ENDPOINT = "ox11";
+    private static final String EXPIRATION = "expiration";
+    private static final String EXPIRATION_HOURS = "expiration_hours";
+    private static final String KEY_LENGTH = "key_length";
+    private static final String KEY_STORE_FILE_TYPE = "keystore_type";
+    private static final String HELP = "h";
+    private static final Logger log;
+
+    static {
+        StatusLogger.getLogger().setLevel(Level.OFF);
+        log = Logger.getLogger(KeyGenerator.class);
+    }
+
+    public static void main(String[] args) throws Exception {
+        new Cli(args).parse();
+    }
+
+    public static class Cli {
+        private String[] args = null;
+        private Options options = new Options();
+
+        public Cli(String[] args) {
+            this.args = args;
+
+            Option signingKeysOption = new Option(SIGNING_KEYS, true,
+                    "Signature keys to generate. (RS256 RS384 RS512 ES256 ES384 ES512 PS256 PS384 PS512).");
+            signingKeysOption.setArgs(Option.UNLIMITED_VALUES);
+
+            Option encryptionKeysOption = new Option(ENCRYPTION_KEYS, true,
+                    "Encryption keys to generate. (RSA_OAEP RSA1_5).");
+            encryptionKeysOption.setArgs(Option.UNLIMITED_VALUES);
+
+            options.addOption(signingKeysOption);
+            options.addOption(encryptionKeysOption);
+            options.addOption(KEY_STORE_FILE, true, "Key Store file.");
+            options.addOption(KEY_STORE_PASSWORD, true, "Key Store password.");
+            options.addOption(DN_NAME, true, "DN of certificate issuer.");
+            options.addOption(OXELEVEN_ACCESS_TOKEN, true, "oxEleven Access Token");
+            options.addOption(OXELEVEN_GENERATE_KEY_ENDPOINT, true, "oxEleven Generate Key Endpoint.");
+            options.addOption(EXPIRATION, true, "Expiration in days.");
+            options.addOption(EXPIRATION_HOURS, true, "Expiration in hours.");
+            options.addOption(KEY_LENGTH, true, "Key length");
+            options.addOption(KEY_STORE_FILE_TYPE, true, "Key Store type");
+            options.addOption(HELP, false, "Show help.");
+       }
+
+        public void parse() {
+            CommandLineParser parser = new BasicParser();
+
+            CommandLine cmd = null;
+            try {
+                cmd = parser.parse(options, args);
+
+                if (cmd.hasOption(HELP)) {
+                    help();
+                }
+
+                if (!((cmd.hasOption(SIGNING_KEYS) || cmd.hasOption(ENCRYPTION_KEYS))
+                        && (cmd.hasOption(EXPIRATION) || cmd.hasOption(EXPIRATION_HOURS)))) {
+                    help();
+                }
+
+                String[] sigAlgorithms = cmd.getOptionValues(SIGNING_KEYS);
+                String[] encAlgorithms = cmd.getOptionValues(ENCRYPTION_KEYS);
+                List<Algorithm> signatureAlgorithms = cmd.hasOption(SIGNING_KEYS) ? Algorithm.fromString(sigAlgorithms, Use.SIGNATURE) : new ArrayList<Algorithm>();
+                List<Algorithm> encryptionAlgorithms = cmd.hasOption(ENCRYPTION_KEYS) ? Algorithm.fromString(encAlgorithms, Use.ENCRYPTION) : new ArrayList<Algorithm>();
+                if (signatureAlgorithms.isEmpty() && encryptionAlgorithms.isEmpty()) {
+                    help();
+                }
+
+                int keyLength = StringHelper.toInt(cmd.getOptionValue(KEY_LENGTH), 2048);
+                int expiration = StringHelper.toInt(cmd.getOptionValue(EXPIRATION), 0);
+                int expiration_hours = StringHelper.toInt(cmd.getOptionValue(EXPIRATION_HOURS), 0);
+
+                if(cmd.hasOption(KEY_STORE_FILE_TYPE)) {
+                    String keyStoreFileType = cmd.getOptionValue(KEY_STORE_FILE_TYPE);
+                    SecurityProviderUtility.KeyStorageType keyStorageType = SecurityProviderUtility.KeyStorageType.fromString(keyStoreFileType);
+                    if (keyStorageType == null) {
+                        throw new ParseException(String.format("Wrong option =  %s value = %s", KEY_STORE_FILE_TYPE, keyStoreFileType));
+                    }
+                    SecurityProviderUtility.SecurityModeType securityMode = keyStorageType.getSecurityMode();
+                    SecurityProviderUtility.setSecurityMode(securityMode);
+                }
+
+                if (cmd.hasOption(OXELEVEN_ACCESS_TOKEN) && cmd.hasOption(OXELEVEN_GENERATE_KEY_ENDPOINT)) {
+                    String accessToken = cmd.getOptionValue(OXELEVEN_ACCESS_TOKEN);
+                    String generateKeyEndpoint = cmd.getOptionValue(OXELEVEN_GENERATE_KEY_ENDPOINT);
+
+                    try {
+                        OxElevenCryptoProvider cryptoProvider = new OxElevenCryptoProvider(generateKeyEndpoint,
+                                null, null, null, accessToken);
+
+                        generateKeys(cryptoProvider, signatureAlgorithms, encryptionAlgorithms, expiration, expiration_hours, keyLength);
+                    } catch (Exception e) {
+                        log.error("Failed to generate keys", e);
+                        help();
+                    }
+                } else if (cmd.hasOption(KEY_STORE_FILE)
+                        && cmd.hasOption(KEY_STORE_PASSWORD)
+                        && cmd.hasOption(DN_NAME)) {
+                    String keystore = cmd.getOptionValue(KEY_STORE_FILE);
+                    String keypasswd = cmd.getOptionValue(KEY_STORE_PASSWORD);
+                    String dnName = cmd.getOptionValue(DN_NAME);
+
+                    try {
+                        SecurityProviderUtility.installBCProvider(true);
+
+                        OxAuthCryptoProvider cryptoProvider = new OxAuthCryptoProvider(keystore, keypasswd, dnName);
+                        generateKeys(cryptoProvider, signatureAlgorithms, encryptionAlgorithms, expiration, expiration_hours, keyLength);
+                    } catch (Exception e) {
+                        e.printStackTrace();
+                        log.error("Failed to generate keys", e);
+                        help();
+                    }
+                } else {
+                    help();
+                }
+            } catch (ParseException e) {
+                log.error("Failed to generate keys", e);
+                help();
+            }
+        }
+
+		private void generateKeys(AbstractCryptoProvider cryptoProvider, List<Algorithm> signatureAlgorithms,
+				List<Algorithm> encryptionAlgorithms, int expiration, int expiration_hours, int keyLength) throws Exception {
+			JSONWebKeySet jwks = new JSONWebKeySet();
+
+			Calendar calendar = new GregorianCalendar();
+			calendar.add(Calendar.DATE, expiration);
+			calendar.add(Calendar.HOUR, expiration_hours);
+
+			for (Algorithm algorithm : signatureAlgorithms) {
+				SignatureAlgorithm signatureAlgorithm = SignatureAlgorithm.fromString(algorithm.name());
+				JSONObject result = cryptoProvider.generateKey(algorithm, calendar.getTimeInMillis(), Use.SIGNATURE, keyLength);
+
+				JSONWebKey key = new JSONWebKey();
+				key.setKid(result.getString(KEY_ID));
+				key.setUse(Use.SIGNATURE);
+				key.setAlg(algorithm);
+				key.setKty(KeyType.fromString(signatureAlgorithm.getFamily().toString()));
+				key.setExp(result.optLong(EXPIRATION_TIME));
+				key.setCrv(signatureAlgorithm.getCurve());
+				key.setN(result.optString(MODULUS));
+				key.setE(result.optString(EXPONENT));
+				key.setX(result.optString(X));
+				key.setY(result.optString(Y));
+
+				JSONArray x5c = result.optJSONArray(CERTIFICATE_CHAIN);
+				key.setX5c(StringUtils.toList(x5c));
+
+				jwks.getKeys().add(key);
+			}
+
+			for (Algorithm algorithm : encryptionAlgorithms) {
+			    KeyEncryptionAlgorithm encryptionAlgorithm = KeyEncryptionAlgorithm.fromName(algorithm.getParamName());
+			    JSONObject result = cryptoProvider.generateKey(algorithm, calendar.getTimeInMillis(), Use.ENCRYPTION, keyLength);
+
+			    JSONWebKey key = new JSONWebKey();
+			    key.setKid(result.getString(KEY_ID));
+			    key.setUse(Use.ENCRYPTION);
+			    key.setAlg(algorithm);
+			    key.setKty(KeyType.fromString(encryptionAlgorithm.getFamily()));
+			    key.setExp(result.optLong(EXPIRATION_TIME));
+			    key.setN(result.optString(MODULUS));
+			    key.setE(result.optString(EXPONENT));
+			    key.setX(result.optString(X));
+			    key.setY(result.optString(Y));
+
+			    JSONArray x5c = result.optJSONArray(CERTIFICATE_CHAIN);
+			    key.setX5c(StringUtils.toList(x5c));
+
+			    jwks.getKeys().add(key);
+			}
+
+			System.out.println(jwks);
+		}
+
+        private void help() {
+            HelpFormatter formatter = new HelpFormatter();
+
+            formatter.printHelp(
+                    "KeyGenerator -sig_keys alg ... -enc_keys alg ... -expiration n_days [-expiration_hours n_hours] [-ox11 url] [-keystore path -keystore_type ks_type -keypasswd secret -dnname dn_name]",
+                    options);
+            System.exit(0);
+        }
+    }
+}
\ No newline at end of file
diff --git a/oxAuth/Client/src/test/java/org/gluu/oxauth/BaseTest.java b/oxAuth/Client/src/test/java/org/gluu/oxauth/BaseTest.java
new file mode 100644
index 00000000..cf0250a2
--- /dev/null
+++ b/oxAuth/Client/src/test/java/org/gluu/oxauth/BaseTest.java
@@ -0,0 +1,1132 @@
+/*
+ * oxAuth is available under the MIT License (2008). See http://opensource.org/licenses/MIT for full text.
+ *
+ * Copyright (c) 2014, Gluu
+ */
+
+package org.gluu.oxauth;
+
+import static org.testng.Assert.assertEquals;
+import static org.testng.Assert.assertNotNull;
+import static org.testng.Assert.assertTrue;
+import static org.testng.Assert.fail;
+
+import java.io.FileInputStream;
+import java.io.IOException;
+import java.io.UnsupportedEncodingException;
+import java.net.URLDecoder;
+import java.security.KeyManagementException;
+import java.security.KeyStoreException;
+import java.security.NoSuchAlgorithmException;
+import java.security.UnrecoverableKeyException;
+import java.security.cert.CertificateException;
+import java.security.cert.X509Certificate;
+import java.time.Duration;
+import java.util.HashMap;
+import java.util.List;
+import java.util.Map;
+import java.util.Map.Entry;
+import java.util.Properties;
+import java.util.UUID;
+
+import javax.net.ssl.HostnameVerifier;
+import javax.net.ssl.SSLContext;
+
+import org.apache.commons.lang.StringUtils;
+import org.apache.http.client.CookieStore;
+import org.apache.http.client.HttpClient;
+import org.apache.http.client.config.CookieSpecs;
+import org.apache.http.client.config.RequestConfig;
+import org.apache.http.conn.ssl.NoopHostnameVerifier;
+import org.apache.http.conn.ssl.SSLConnectionSocketFactory;
+import org.apache.http.conn.ssl.TrustSelfSignedStrategy;
+import org.apache.http.conn.ssl.TrustStrategy;
+import org.apache.http.impl.client.CloseableHttpClient;
+import org.apache.http.impl.client.HttpClientBuilder;
+import org.apache.http.impl.client.HttpClients;
+import org.apache.http.impl.client.LaxRedirectStrategy;
+import org.apache.http.impl.conn.PoolingHttpClientConnectionManager;
+import org.apache.http.ssl.SSLContextBuilder;
+import org.apache.http.ssl.SSLContexts;
+import org.gluu.oxauth.client.AuthorizationRequest;
+import org.gluu.oxauth.client.AuthorizationResponse;
+import org.gluu.oxauth.client.AuthorizeClient;
+import org.gluu.oxauth.client.BaseClient;
+import org.gluu.oxauth.client.BaseResponseWithErrors;
+import org.gluu.oxauth.client.ClientUtils;
+import org.gluu.oxauth.client.OpenIdConfigurationClient;
+import org.gluu.oxauth.client.OpenIdConfigurationResponse;
+import org.gluu.oxauth.client.OpenIdConnectDiscoveryClient;
+import org.gluu.oxauth.client.OpenIdConnectDiscoveryResponse;
+import org.gluu.oxauth.client.RegisterClient;
+import org.gluu.oxauth.client.RegisterRequest;
+import org.gluu.oxauth.client.RevokeSessionClient;
+import org.gluu.oxauth.client.RevokeSessionRequest;
+import org.gluu.oxauth.client.TokenClient;
+import org.gluu.oxauth.client.TokenRequest;
+import org.gluu.oxauth.client.UserInfoClient;
+import org.gluu.oxauth.client.UserInfoRequest;
+import org.gluu.oxauth.client.UserInfoResponse;
+import org.gluu.oxauth.dev.HostnameVerifierType;
+import org.gluu.oxauth.model.common.ResponseMode;
+import org.gluu.oxauth.model.crypto.AbstractCryptoProvider;
+import org.gluu.oxauth.model.crypto.OxAuthCryptoProvider;
+import org.gluu.oxauth.model.error.IErrorType;
+import org.gluu.oxauth.model.util.Util;
+import org.gluu.oxauth.page.AbstractPage;
+import org.gluu.oxauth.page.PageConfig;
+import org.gluu.util.StringHelper;
+import org.gluu.util.security.SecurityProviderUtility;
+import org.jboss.resteasy.client.jaxrs.ClientHttpEngine;
+import org.jboss.resteasy.client.jaxrs.engines.ApacheHttpClient43Engine;
+import org.jetbrains.annotations.Nullable;
+import org.openqa.selenium.By;
+import org.openqa.selenium.Cookie;
+import org.openqa.selenium.JavascriptExecutor;
+import org.openqa.selenium.NoSuchElementException;
+import org.openqa.selenium.WebDriver;
+import org.openqa.selenium.WebElement;
+import org.openqa.selenium.htmlunit.HtmlUnitDriver;
+import org.openqa.selenium.interactions.Actions;
+import org.openqa.selenium.support.ui.FluentWait;
+import org.openqa.selenium.support.ui.Wait;
+import org.openqa.selenium.support.ui.WebDriverWait;
+import org.testng.ITestContext;
+import org.testng.Reporter;
+import org.testng.annotations.BeforeSuite;
+import org.testng.annotations.BeforeTest;
+
+import com.google.common.collect.Maps;
+
+/**
+ * @author Javier Rojas Blum
+ * @version August 20, 2019
+ */
+public abstract class BaseTest {
+
+    public static final boolean ENABLE_REDIRECT_TO_LOGIN_PAGE = StringHelper.toBoolean(System.getProperty("gluu.enable-redirect", "false"), false);
+
+    protected HtmlUnitDriver driver;
+
+    protected String authorizationEndpoint;
+    protected String authorizationPageEndpoint;
+    protected String gluuConfigurationEndpoint;
+    protected String tokenEndpoint;
+    protected String tokenRevocationEndpoint;
+    protected String userInfoEndpoint;
+    protected String clientInfoEndpoint;
+    protected String checkSessionIFrame;
+    protected String endSessionEndpoint;
+    protected String jwksUri;
+    protected String registrationEndpoint;
+    protected String configurationEndpoint;
+    protected String idGenEndpoint;
+    protected String introspectionEndpoint;
+    protected String deviceAuthzEndpoint;
+    protected String backchannelAuthenticationEndpoint;
+    protected String revokeSessionEndpoint;
+    protected Map<String, List<String>> scopeToClaimsMapping;
+    protected String issuer;
+
+    protected Map<String, String> allTestKeys = Maps.newHashMap();
+
+    // Form Interaction
+    protected String loginFormUsername;
+    protected String loginFormPassword;
+    protected String loginFormLoginButton;
+    private String authorizeFormAllowButton;
+    protected String authorizeFormDoNotAllowButton;
+
+    @BeforeSuite
+    public void initTestSuite(ITestContext context) throws IOException {
+        SecurityProviderUtility.installBCProvider();
+
+        Reporter.log("Invoked init test suite method \n", true);
+
+        String propertiesFile = context.getCurrentXmlTest().getParameter("propertiesFile");
+        if (StringHelper.isEmpty(propertiesFile)) {
+            propertiesFile = "target/test-classes/testng.properties";
+        }
+
+        FileInputStream conf = new FileInputStream(propertiesFile);
+        Properties prop = new Properties();
+        prop.load(conf);
+
+        Map<String, String> parameters = new HashMap<String, String>();
+        for (Entry<Object, Object> entry : prop.entrySet()) {
+            Object key = entry.getKey();
+            Object value = entry.getValue();
+
+            if (StringHelper.isEmptyString(key) || StringHelper.isEmptyString(value)) {
+                continue;
+            }
+            parameters.put(key.toString(), value.toString());
+        }
+
+        // Overrided test paramters
+        context.getSuite().getXmlSuite().setParameters(parameters);
+    }
+
+    public WebDriver getDriver() {
+        return driver;
+    }
+
+    public String getAuthorizationEndpoint() {
+        return authorizationEndpoint;
+    }
+
+    public void setAuthorizationEndpoint(String authorizationEndpoint) {
+        this.authorizationEndpoint = authorizationEndpoint;
+    }
+
+    public String getTokenEndpoint() {
+        return tokenEndpoint;
+    }
+
+    public void setTokenEndpoint(String tokenEndpoint) {
+        this.tokenEndpoint = tokenEndpoint;
+    }
+
+    public String getTokenRevocationEndpoint() {
+        return tokenRevocationEndpoint;
+    }
+
+    public void setTokenRevocationEndpoint(String tokenRevocationEndpoint) {
+        this.tokenRevocationEndpoint = tokenRevocationEndpoint;
+    }
+
+    public String getUserInfoEndpoint() {
+        return userInfoEndpoint;
+    }
+
+    public void setUserInfoEndpoint(String userInfoEndpoint) {
+        this.userInfoEndpoint = userInfoEndpoint;
+    }
+
+    public String getClientInfoEndpoint() {
+        return clientInfoEndpoint;
+    }
+
+    public void setClientInfoEndpoint(String clientInfoEndpoint) {
+        this.clientInfoEndpoint = clientInfoEndpoint;
+    }
+
+    public String getCheckSessionIFrame() {
+        return checkSessionIFrame;
+    }
+
+    public void setCheckSessionIFrame(String checkSessionIFrame) {
+        this.checkSessionIFrame = checkSessionIFrame;
+    }
+
+    public String getEndSessionEndpoint() {
+        return endSessionEndpoint;
+    }
+
+    public void setEndSessionEndpoint(String endSessionEndpoint) {
+        this.endSessionEndpoint = endSessionEndpoint;
+    }
+
+    public String getJwksUri() {
+        return jwksUri;
+    }
+
+    public void setJwksUri(String jwksUri) {
+        this.jwksUri = jwksUri;
+    }
+
+    public String getRegistrationEndpoint() {
+        return registrationEndpoint;
+    }
+
+    public void setRegistrationEndpoint(String registrationEndpoint) {
+        this.registrationEndpoint = registrationEndpoint;
+    }
+
+    public String getIntrospectionEndpoint() {
+        return introspectionEndpoint;
+    }
+
+    public void setIntrospectionEndpoint(String p_introspectionEndpoint) {
+        introspectionEndpoint = p_introspectionEndpoint;
+    }
+
+    public String getBackchannelAuthenticationEndpoint() {
+        return backchannelAuthenticationEndpoint;
+    }
+
+    public void setBackchannelAuthenticationEndpoint(String backchannelAuthenticationEndpoint) {
+        this.backchannelAuthenticationEndpoint = backchannelAuthenticationEndpoint;
+    }
+
+    public String getRevokeSessionEndpoint() {
+        return revokeSessionEndpoint;
+    }
+
+    public void setRevokeSessionEndpoint(String revokeSessionEndpoint) {
+        this.revokeSessionEndpoint = revokeSessionEndpoint;
+    }
+
+    public Map<String, List<String>> getScopeToClaimsMapping() {
+        return scopeToClaimsMapping;
+    }
+
+    public void setScopeToClaimsMapping(Map<String, List<String>> p_scopeToClaimsMapping) {
+        scopeToClaimsMapping = p_scopeToClaimsMapping;
+    }
+
+    public String getIdGenEndpoint() {
+        return idGenEndpoint;
+    }
+
+    public void setIdGenEndpoint(String p_idGenEndpoint) {
+        idGenEndpoint = p_idGenEndpoint;
+    }
+
+    public String getConfigurationEndpoint() {
+        return configurationEndpoint;
+    }
+
+    public void setConfigurationEndpoint(String configurationEndpoint) {
+        this.configurationEndpoint = configurationEndpoint;
+    }
+
+    public void startSelenium() {
+        //System.setProperty("webdriver.chrome.driver", "/Users/JAVIER/tmp/chromedriver");
+        //driver = new ChromeDriver();
+
+        //driver = new SafariDriver();
+
+        //driver = new FirefoxDriver();
+
+        //driver = new InternetExplorerDriver();
+
+        driver = new HtmlUnitDriver(true);
+        driver.getWebClient().getOptions().setThrowExceptionOnScriptError(false);
+    }
+
+    public void stopSelenium() {
+//        driver.close();
+        driver.quit();
+        driver = null;
+    }
+
+    /**
+     * The authorization server authenticates the resource owner (via the user-agent)
+     * and establishes whether the resource owner grants or denies the client's access request.
+     */
+    public AuthorizationResponse authenticateResourceOwnerAndGrantAccess(
+            String authorizeUrl, AuthorizationRequest authorizationRequest, String userId, String userSecret) {
+        return authenticateResourceOwnerAndGrantAccess(authorizeUrl, authorizationRequest, userId, userSecret, true);
+    }
+
+    /**
+     * The authorization server authenticates the resource owner (via the user-agent)
+     * and establishes whether the resource owner grants or denies the client's access request.
+     */
+    public AuthorizationResponse authenticateResourceOwnerAndGrantAccess(
+            String authorizeUrl, AuthorizationRequest authorizationRequest, String userId, String userSecret, boolean cleanupCookies) {
+        return authenticateResourceOwnerAndGrantAccess(authorizeUrl, authorizationRequest, userId, userSecret, cleanupCookies, false);
+    }
+
+    /**
+     * The authorization server authenticates the resource owner (via the user-agent)
+     * and establishes whether the resource owner grants or denies the client's access request.
+     */
+    public AuthorizationResponse authenticateResourceOwnerAndGrantAccess(
+            String authorizeUrl, AuthorizationRequest authorizationRequest, String userId, String userSecret,
+            boolean cleanupCookies, boolean useNewDriver) {
+        return authenticateResourceOwnerAndGrantAccess(authorizeUrl, authorizationRequest, userId, userSecret, cleanupCookies, useNewDriver, 1);
+    }
+
+    /**
+     * The authorization server authenticates the resource owner (via the user-agent)
+     * and establishes whether the resource owner grants or denies the client's access request.
+     */
+    public AuthorizationResponse authenticateResourceOwnerAndGrantAccess(
+            String authorizeUrl, AuthorizationRequest authorizationRequest, String userId, String userSecret,
+            boolean cleanupCookies, boolean useNewDriver, int authzSteps) {
+        WebDriver currentDriver = initWebDriver(useNewDriver, cleanupCookies);
+
+        AuthorizeClient authorizeClient = processAuthentication(currentDriver, authorizeUrl, authorizationRequest,
+                userId, userSecret);
+
+        int remainAuthzSteps = authzSteps;
+
+        String authorizationResponseStr = null;
+        do {
+            authorizationResponseStr = acceptAuthorization(currentDriver, authorizationRequest.getRedirectUri());
+            remainAuthzSteps--;
+        } while (remainAuthzSteps >= 1);
+
+        AuthorizationResponse authorizationResponse = buildAuthorizationResponse(authorizationRequest,
+                currentDriver, authorizeClient, authorizationResponseStr);
+
+        stopWebDriver(useNewDriver, currentDriver);
+
+        return authorizationResponse;
+    }
+
+    protected WebDriver initWebDriver(boolean useNewDriver, boolean cleanupCookies) {
+        // Allow to run test in multi thread mode
+    	HtmlUnitDriver currentDriver;
+        if (useNewDriver) {
+            currentDriver = new HtmlUnitDriver(true);
+        } else {
+            startSelenium();
+            currentDriver = driver;
+            if (cleanupCookies) {
+                System.out.println("authenticateResourceOwnerAndGrantAccess: Cleaning cookies");
+                deleteAllCookies();
+            }
+        }
+
+        return currentDriver;
+    }
+
+    protected void stopWebDriver(boolean useNewDriver, WebDriver currentDriver) {
+        if (useNewDriver) {
+            currentDriver.close();
+            currentDriver.quit();
+        } else {
+            stopSelenium();
+        }
+    }
+
+    protected AuthorizeClient processAuthentication(WebDriver currentDriver, String authorizeUrl,
+                                                  AuthorizationRequest authorizationRequest, String userId, String userSecret) {
+        String authorizationRequestUrl = authorizeUrl + "?" + authorizationRequest.getQueryString();
+
+        AuthorizeClient authorizeClient = new AuthorizeClient(authorizeUrl);
+        authorizeClient.setRequest(authorizationRequest);
+
+        System.out.println("authenticateResourceOwnerAndGrantAccess: authorizationRequestUrl:" + authorizationRequestUrl);
+
+        navigateToAuhorizationUrl(currentDriver, authorizationRequestUrl);
+        if (userSecret != null) {
+            final String previousUrl = currentDriver.getCurrentUrl();
+
+            WebElement loginButton = waitForRequredElementLoad(currentDriver, loginFormLoginButton);
+
+            if (userId != null) {
+                setWebElementValue(currentDriver, loginFormUsername, userId);
+            }
+
+            setWebElementValue(currentDriver, loginFormPassword, userSecret);
+
+            loginButton.click();
+
+            if (ENABLE_REDIRECT_TO_LOGIN_PAGE) {
+                waitForPageSwitch(currentDriver, previousUrl);
+            }
+
+            if (currentDriver.getPageSource().contains("Failed to authenticate.")) {
+                fail("Failed to authenticate user");
+            }
+        }
+
+        return authorizeClient;
+    }
+
+    private WebElement waitForRequredElementLoad(WebDriver currentDriver, String id) {
+        Wait<WebDriver> wait = new FluentWait<>(currentDriver)
+                .withTimeout(Duration.ofSeconds(PageConfig.WAIT_OPERATION_TIMEOUT))
+                .pollingEvery(Duration.ofMillis(1000))
+                .ignoring(NoSuchElementException.class);
+
+        WebElement loginButton = wait.until(d -> {
+            return d.findElement(By.id(id));
+        });
+        return loginButton;
+    }
+
+    private void setWebElementValue(WebDriver currentDriver, String elemnetId, String value) {
+        WebElement webElement = currentDriver.findElement(By.id(elemnetId));
+        webElement.sendKeys(value);
+
+        int remainAttempts = 10;
+        do {
+            if (value.equals(webElement.getAttribute("value"))) {
+                break;
+            }
+
+            ((JavascriptExecutor) currentDriver).executeScript("arguments[0].value='" + value + "';", webElement);
+
+            try {
+                Thread.sleep(500);
+            } catch (InterruptedException e) {
+                e.printStackTrace();
+            }
+
+            remainAttempts--;
+        } while (remainAttempts >= 1);
+    }
+
+	protected String acceptAuthorization(WebDriver currentDriver, String redirectUri) {
+		String authorizationResponseStr = currentDriver.getCurrentUrl();
+
+		// Check for authorization form if client has no persistent authorization
+		if (!authorizationResponseStr.contains("#")) {
+			Wait<WebDriver> wait = new FluentWait<WebDriver>(driver)
+                    .withTimeout(Duration.ofSeconds(PageConfig.WAIT_OPERATION_TIMEOUT))
+					.pollingEvery(Duration.ofMillis(500))
+                    .ignoring(NoSuchElementException.class);
+
+            WebElement allowButton = wait.until(d -> currentDriver.findElement(By.id(authorizeFormAllowButton)));
+
+			// We have to use JavaScript because target is link with onclick
+			JavascriptExecutor jse = (JavascriptExecutor) currentDriver;
+			jse.executeScript("scroll(0, 1000)");
+
+            String previousURL = currentDriver.getCurrentUrl();
+
+			Actions actions = new Actions(currentDriver);
+			actions.click(allowButton).perform();
+
+            waitForPageSwitch(currentDriver, previousURL);
+
+            authorizationResponseStr = currentDriver.getCurrentUrl();
+
+            if (redirectUri != null && !authorizationResponseStr.startsWith(redirectUri)) {
+                navigateToAuhorizationUrl(currentDriver, authorizationResponseStr);
+                authorizationResponseStr = waitForPageSwitch(authorizationResponseStr);
+            }
+
+            if (redirectUri == null && !authorizationResponseStr.contains("code=")) { // corner case for redirect_uri = null
+                navigateToAuhorizationUrl(currentDriver, authorizationResponseStr);
+                authorizationResponseStr = waitForPageSwitch(authorizationResponseStr);
+            }
+		} else {
+			fail("The authorization form was expected to be shown.");
+		}
+
+		return authorizationResponseStr;
+	}
+
+	public String waitForPageSwitch(String previousUrl) {
+        return waitForPageSwitch(driver, previousUrl);
+    }
+
+    public static String waitForPageSwitch(WebDriver driver, String previousUrl) {
+        return AbstractPage.waitForPageSwitch(driver, previousUrl);
+    }
+
+    protected AuthorizationResponse buildAuthorizationResponse(AuthorizationRequest authorizationRequest,
+                                                               WebDriver currentDriver,
+                                                               String authorizationResponseStr) {
+        return buildAuthorizationResponse(authorizationRequest, currentDriver, null, authorizationResponseStr);
+    }
+
+    protected AuthorizationResponse buildAuthorizationResponse(AuthorizationRequest authorizationRequest,
+                                                             WebDriver currentDriver, @Nullable AuthorizeClient authorizeClient,
+                                                             String authorizationResponseStr) {
+        final WebDriver.Options options = currentDriver.manage();
+        Cookie sessionStateCookie = options.getCookieNamed("session_state");
+        Cookie sessionIdCookie = options.getCookieNamed("session_id");
+
+        if (sessionStateCookie != null) {
+            System.out.println("authenticateResourceOwnerAndGrantAccess: sessionState:" + sessionStateCookie.getValue()); ;
+        }
+        if (sessionIdCookie != null) {
+            System.out.println("authenticateResourceOwnerAndGrantAccess: sessionId:" + sessionIdCookie.getValue()); ;
+        }
+
+        AuthorizationResponse authorizationResponse = new AuthorizationResponse(authorizationResponseStr);
+        if (authorizationRequest.getRedirectUri() != null && authorizationRequest.getRedirectUri().equals(authorizationResponseStr)) {
+            authorizationResponse.setResponseMode(ResponseMode.FORM_POST);
+        }
+        if (authorizeClient != null) {
+            authorizeClient.setResponse(authorizationResponse);
+            showClientUserAgent(authorizeClient);
+        }
+
+        return authorizationResponse;
+    }
+
+    public AuthorizationResponse authenticateResourceOwnerAndDenyAccess(
+            String authorizeUrl, AuthorizationRequest authorizationRequest, String userId, String userSecret) {
+        String authorizationRequestUrl = authorizeUrl + "?" + authorizationRequest.getQueryString();
+
+        AuthorizeClient authorizeClient = new AuthorizeClient(authorizeUrl);
+        authorizeClient.setRequest(authorizationRequest);
+
+        System.out.println("authenticateResourceOwnerAndDenyAccess: authorizationRequestUrl:" + authorizationRequestUrl);
+        startSelenium();
+        navigateToAuhorizationUrl(driver, authorizationRequestUrl);
+
+        WebElement usernameElement = driver.findElement(By.id(loginFormUsername));
+        WebElement passwordElement = driver.findElement(By.id(loginFormPassword));
+        WebElement loginButton = driver.findElement(By.id(loginFormLoginButton));
+
+        if (userId != null) {
+            usernameElement.sendKeys(userId);
+        }
+        passwordElement.sendKeys(userSecret);
+
+        String previousUrl = driver.getCurrentUrl();
+        loginButton.click();
+
+        if (ENABLE_REDIRECT_TO_LOGIN_PAGE) {
+            waitForPageSwitch(driver, previousUrl);
+        }
+
+        String authorizationResponseStr = driver.getCurrentUrl();
+
+        WebElement doNotAllowButton = driver.findElement(By.id(authorizeFormDoNotAllowButton));
+
+        final String previousUrl2 = driver.getCurrentUrl();
+        doNotAllowButton.click();
+        waitForPageSwitch(driver, previousUrl2);
+
+        authorizationResponseStr = driver.getCurrentUrl();
+
+        Cookie sessionIdCookie = driver.manage().getCookieNamed("session_id");
+        String sessionId = null;
+        if (sessionIdCookie != null) {
+            sessionId = sessionIdCookie.getValue();
+        }
+        System.out.println("authenticateResourceOwnerAndDenyAccess: sessionId:" + sessionId);
+
+        stopSelenium();
+
+        AuthorizationResponse authorizationResponse = new AuthorizationResponse(authorizationResponseStr);
+        if (authorizationRequest.getRedirectUri() != null && authorizationRequest.getRedirectUri().equals(authorizationResponseStr)) {
+            authorizationResponse.setResponseMode(ResponseMode.FORM_POST);
+        }
+        authorizationResponse.setSessionId(sessionId);
+        authorizeClient.setResponse(authorizationResponse);
+        showClientUserAgent(authorizeClient);
+
+        return authorizationResponse;
+    }
+
+    public AuthorizationResponse authorizationRequestAndGrantAccess(
+            String authorizeUrl, AuthorizationRequest authorizationRequest) {
+        String authorizationRequestUrl = authorizeUrl + "?" + authorizationRequest.getQueryString();
+
+        AuthorizeClient authorizeClient = new AuthorizeClient(authorizeUrl);
+        authorizeClient.setRequest(authorizationRequest);
+
+        System.out.println("authorizationRequestAndGrantAccess: authorizationRequestUrl:" + authorizationRequestUrl);
+        startSelenium();
+        navigateToAuhorizationUrl(driver, authorizationRequestUrl);
+
+        String authorizationResponseStr = driver.getCurrentUrl();
+
+        WebElement allowButton = driver.findElement(By.id(authorizeFormAllowButton));
+
+        final String previousURL = driver.getCurrentUrl();
+        allowButton.click();
+
+        waitForPageSwitch(previousURL);
+
+        authorizationResponseStr = driver.getCurrentUrl();
+
+        if (!authorizationResponseStr.startsWith(authorizationRequest.getRedirectUri())) {
+            navigateToAuhorizationUrl(driver, authorizationResponseStr);
+            authorizationResponseStr = waitForPageSwitch(authorizationResponseStr);
+        }
+
+        Cookie sessionStateCookie = driver.manage().getCookieNamed("session_state");
+        String sessionState = null;
+        if (sessionStateCookie != null) {
+            sessionState = sessionStateCookie.getValue();
+        }
+        System.out.println("authorizationRequestAndGrantAccess: sessionState:" + sessionState);
+
+        stopSelenium();
+
+        AuthorizationResponse authorizationResponse = new AuthorizationResponse(authorizationResponseStr);
+        if (authorizationRequest.getRedirectUri() != null && authorizationRequest.getRedirectUri().equals(authorizationResponseStr)) {
+            authorizationResponse.setResponseMode(ResponseMode.FORM_POST);
+        }
+        authorizeClient.setResponse(authorizationResponse);
+        showClientUserAgent(authorizeClient);
+
+        return authorizationResponse;
+    }
+
+    public AuthorizationResponse authorizationRequestAndDenyAccess(
+            String authorizeUrl, AuthorizationRequest authorizationRequest) {
+        String authorizationRequestUrl = authorizeUrl + "?" + authorizationRequest.getQueryString();
+
+        AuthorizeClient authorizeClient = new AuthorizeClient(authorizeUrl);
+        authorizeClient.setRequest(authorizationRequest);
+
+        System.out.println("authorizationRequestAndDenyAccess: authorizationRequestUrl:" + authorizationRequestUrl);
+        startSelenium();
+        navigateToAuhorizationUrl(driver, authorizationRequestUrl);
+
+        WebElement doNotAllowButton = driver.findElement(By.id(authorizeFormDoNotAllowButton));
+
+        final String previousURL = driver.getCurrentUrl();
+        doNotAllowButton.click();
+        WebDriverWait wait = new WebDriverWait(driver, 1);
+        wait.until((WebDriver d) -> (d.getCurrentUrl() != previousURL));
+
+        String authorizationResponseStr = driver.getCurrentUrl();
+
+        Cookie sessionStateCookie = driver.manage().getCookieNamed("session_state");
+        String sessionState = null;
+        if (sessionStateCookie != null) {
+            sessionState = sessionStateCookie.getValue();
+        }
+        System.out.println("authorizationRequestAndDenyAccess: sessionState:" + sessionState);
+
+        stopSelenium();
+
+        AuthorizationResponse authorizationResponse = new AuthorizationResponse(authorizationResponseStr);
+        if (authorizationRequest.getRedirectUri() != null && authorizationRequest.getRedirectUri().equals(authorizationResponseStr)) {
+            authorizationResponse.setResponseMode(ResponseMode.FORM_POST);
+        }
+        authorizeClient.setResponse(authorizationResponse);
+        showClientUserAgent(authorizeClient);
+
+        return authorizationResponse;
+    }
+
+    /**
+     * The authorization server authenticates the resource owner (via the user-agent)
+     * No authorization page.
+     */
+    public AuthorizationResponse authenticateResourceOwner(
+            String authorizeUrl, AuthorizationRequest authorizationRequest, String userId, String userSecret, boolean cleanupCookies) {
+        String authorizationRequestUrl = authorizeUrl + "?" + authorizationRequest.getQueryString();
+
+        AuthorizeClient authorizeClient = new AuthorizeClient(authorizeUrl);
+        authorizeClient.setRequest(authorizationRequest);
+
+        System.out.println("authenticateResourceOwner: authorizationRequestUrl:" + authorizationRequestUrl);
+        startSelenium();
+        if (cleanupCookies) {
+            System.out.println("authenticateResourceOwner: Cleaning cookies");
+            deleteAllCookies();
+        }
+
+        navigateToAuhorizationUrl(driver, authorizationRequestUrl);
+
+        if (userSecret != null) {
+            if (userId != null) {
+                WebElement usernameElement = driver.findElement(By.id(loginFormUsername));
+                usernameElement.sendKeys(userId);
+            }
+
+            WebElement passwordElement = driver.findElement(By.id(loginFormPassword));
+            passwordElement.sendKeys(userSecret);
+
+            WebElement loginButton = driver.findElement(By.id(loginFormLoginButton));
+
+            loginButton.click();
+
+            navigateToAuhorizationUrl(driver, driver.getCurrentUrl());
+
+            new WebDriverWait(driver, PageConfig.WAIT_OPERATION_TIMEOUT)
+                    .until(webDriver ->!webDriver.getCurrentUrl().contains("/authorize"));
+        }
+
+        String authorizationResponseStr = driver.getCurrentUrl();
+
+        Cookie sessionStateCookie = driver.manage().getCookieNamed("session_state");
+        String sessionState = null;
+        if (sessionStateCookie != null) {
+            sessionState = sessionStateCookie.getValue();
+        }
+        System.out.println("authenticateResourceOwner: sessionState:" + sessionState + ", url:" + authorizationResponseStr);
+
+        stopSelenium();
+
+        AuthorizationResponse authorizationResponse = new AuthorizationResponse(authorizationResponseStr);
+        if (authorizationRequest.getRedirectUri() != null && authorizationRequest.getRedirectUri().equals(authorizationResponseStr)) {
+            authorizationResponse.setResponseMode(ResponseMode.FORM_POST);
+        }
+        authorizeClient.setResponse(authorizationResponse);
+        showClientUserAgent(authorizeClient);
+
+        return authorizationResponse;
+    }
+
+    /**
+     * Try to open login form (via the user-agent)
+     */
+    public String waitForResourceOwnerAndGrantLoginForm(
+            String authorizeUrl, AuthorizationRequest authorizationRequest, boolean cleanupCookies) {
+        String authorizationRequestUrl = authorizeUrl + "?" + authorizationRequest.getQueryString();
+
+        AuthorizeClient authorizeClient = new AuthorizeClient(authorizeUrl);
+        authorizeClient.setRequest(authorizationRequest);
+
+        System.out.println("waitForResourceOwnerAndGrantLoginForm: authorizationRequestUrl:" + authorizationRequestUrl);
+        startSelenium();
+        if (cleanupCookies) {
+            System.out.println("waitForResourceOwnerAndGrantLoginForm: Cleaning cookies");
+            deleteAllCookies();
+        }
+        navigateToAuhorizationUrl(driver, authorizationRequestUrl);
+
+        WebElement usernameElement = driver.findElement(By.id(loginFormUsername));
+        WebElement passwordElement = driver.findElement(By.id(loginFormPassword));
+        WebElement loginButton = driver.findElement(By.id(loginFormLoginButton));
+
+        if ((usernameElement == null) || (passwordElement == null) || (loginButton == null)) {
+            return null;
+        }
+
+        Cookie sessionStateCookie = driver.manage().getCookieNamed("session_state");
+        String sessionState = null;
+        if (sessionStateCookie != null) {
+            sessionState = sessionStateCookie.getValue();
+        }
+        System.out.println("waitForResourceOwnerAndGrantLoginForm: sessionState:" + sessionState);
+
+        stopSelenium();
+
+        showClientUserAgent(authorizeClient);
+
+        return sessionState;
+    }
+
+    /**
+     * Try to open login form (via the user-agent)
+     */
+    public String waitForResourceOwnerAndGrantLoginForm(
+            String authorizeUrl, AuthorizationRequest authorizationRequest) {
+        return waitForResourceOwnerAndGrantLoginForm(authorizeUrl, authorizationRequest, true);
+    }
+
+    private void deleteAllCookies() {
+        try {
+            driver.manage().deleteAllCookies();
+        } catch (Exception e) {
+            e.printStackTrace();
+        }
+    }
+
+    @BeforeTest
+    public void discovery(ITestContext context) throws Exception {
+        // Load Form Interaction
+        loginFormUsername = context.getCurrentXmlTest().getParameter("loginFormUsername");
+        loginFormPassword = context.getCurrentXmlTest().getParameter("loginFormPassword");
+        loginFormLoginButton = context.getCurrentXmlTest().getParameter("loginFormLoginButton");
+        authorizeFormAllowButton = context.getCurrentXmlTest().getParameter("authorizeFormAllowButton");
+        authorizeFormDoNotAllowButton = context.getCurrentXmlTest().getParameter("authorizeFormDoNotAllowButton");
+        allTestKeys = Maps.newHashMap(context.getCurrentXmlTest().getAllParameters());
+
+        String resource = context.getCurrentXmlTest().getParameter("swdResource");
+
+        if (StringUtils.isNotBlank(resource)) {
+
+            showTitle("OpenID Connect Discovery");
+
+            OpenIdConnectDiscoveryClient openIdConnectDiscoveryClient = new OpenIdConnectDiscoveryClient(resource);
+            OpenIdConnectDiscoveryResponse openIdConnectDiscoveryResponse = openIdConnectDiscoveryClient.exec(clientEngine(true));
+
+            showClient(openIdConnectDiscoveryClient);
+            assertEquals(openIdConnectDiscoveryResponse.getStatus(), 200, "Unexpected response code");
+            assertNotNull(openIdConnectDiscoveryResponse.getSubject());
+            assertTrue(openIdConnectDiscoveryResponse.getLinks().size() > 0);
+
+            configurationEndpoint = openIdConnectDiscoveryResponse.getLinks().get(0).getHref() +
+                    "/.well-known/openid-configuration";
+
+            System.out.println("OpenID Connect Configuration");
+
+            OpenIdConfigurationClient client = new OpenIdConfigurationClient(configurationEndpoint);
+            client.setExecutor(clientEngine(true));
+            OpenIdConfigurationResponse response = client.execOpenIdConfiguration();
+
+            showClient(client);
+            assertEquals(response.getStatus(), 200, "Unexpected response code");
+            assertNotNull(response.getIssuer(), "The issuer is null");
+            assertNotNull(response.getAuthorizationEndpoint(), "The authorizationEndpoint is null");
+            assertNotNull(response.getTokenEndpoint(), "The tokenEndpoint is null");
+            assertNotNull(response.getRevocationEndpoint(), "The revocationEndpoint is null");
+            assertNotNull(response.getUserInfoEndpoint(), "The userInfoEndPoint is null");
+            assertNotNull(response.getJwksUri(), "The jwksUri is null");
+            assertNotNull(response.getRegistrationEndpoint(), "The registrationEndpoint is null");
+
+            assertTrue(response.getScopesSupported().size() > 0, "The scopesSupported is empty");
+            assertTrue(response.getScopeToClaimsMapping().size() > 0, "The scope to claims mapping is empty");
+            assertTrue(response.getResponseTypesSupported().size() > 0, "The responseTypesSupported is empty");
+            assertTrue(response.getGrantTypesSupported().size() > 0, "The grantTypesSupported is empty");
+            assertTrue(response.getAcrValuesSupported().size() >= 0, "The acrValuesSupported is empty");
+            assertTrue(response.getSubjectTypesSupported().size() > 0, "The subjectTypesSupported is empty");
+            assertTrue(response.getIdTokenSigningAlgValuesSupported().size() > 0, "The idTokenSigningAlgValuesSupported is empty");
+            assertTrue(response.getRequestObjectSigningAlgValuesSupported().size() > 0, "The requestObjectSigningAlgValuesSupported is empty");
+            assertTrue(response.getTokenEndpointAuthMethodsSupported().size() > 0, "The tokenEndpointAuthMethodsSupported is empty");
+            assertTrue(response.getClaimsSupported().size() > 0, "The claimsSupported is empty");
+
+            authorizationEndpoint = response.getAuthorizationEndpoint();
+            tokenEndpoint = response.getTokenEndpoint();
+            tokenRevocationEndpoint = response.getRevocationEndpoint();
+            userInfoEndpoint = response.getUserInfoEndpoint();
+            clientInfoEndpoint = response.getClientInfoEndpoint();
+            checkSessionIFrame = response.getCheckSessionIFrame();
+            endSessionEndpoint = response.getEndSessionEndpoint();
+            jwksUri = response.getJwksUri();
+            registrationEndpoint = response.getRegistrationEndpoint();
+            idGenEndpoint = response.getIdGenerationEndpoint();
+            introspectionEndpoint = response.getIntrospectionEndpoint();
+            deviceAuthzEndpoint = response.getDeviceAuthzEndpoint();
+            backchannelAuthenticationEndpoint = response.getBackchannelAuthenticationEndpoint();
+            revokeSessionEndpoint = response.getSessionRevocationEndpoint();
+            scopeToClaimsMapping = response.getScopeToClaimsMapping();
+            gluuConfigurationEndpoint = determineGluuConfigurationEndpoint(openIdConnectDiscoveryResponse.getLinks().get(0).getHref());
+            issuer = response.getIssuer();
+        } else {
+            showTitle("Loading configuration endpoints from properties file");
+
+            authorizationEndpoint = context.getCurrentXmlTest().getParameter("authorizationEndpoint");
+            tokenEndpoint = context.getCurrentXmlTest().getParameter("tokenEndpoint");
+            tokenRevocationEndpoint = context.getCurrentXmlTest().getParameter("tokenRevocationEndpoint");
+            userInfoEndpoint = context.getCurrentXmlTest().getParameter("userInfoEndpoint");
+            clientInfoEndpoint = context.getCurrentXmlTest().getParameter("clientInfoEndpoint");
+            checkSessionIFrame = context.getCurrentXmlTest().getParameter("checkSessionIFrame");
+            endSessionEndpoint = context.getCurrentXmlTest().getParameter("endSessionEndpoint");
+            jwksUri = context.getCurrentXmlTest().getParameter("jwksUri");
+            registrationEndpoint = context.getCurrentXmlTest().getParameter("registrationEndpoint");
+            configurationEndpoint = context.getCurrentXmlTest().getParameter("configurationEndpoint");
+            idGenEndpoint = context.getCurrentXmlTest().getParameter("idGenEndpoint");
+            introspectionEndpoint = context.getCurrentXmlTest().getParameter("introspectionEndpoint");
+            backchannelAuthenticationEndpoint = context.getCurrentXmlTest().getParameter("backchannelAuthenticationEndpoint");
+            revokeSessionEndpoint = context.getCurrentXmlTest().getParameter("revokeSessionEndpoint");
+            scopeToClaimsMapping = new HashMap<String, List<String>>();
+            issuer = context.getCurrentXmlTest().getParameter("issuer");
+        }
+
+        authorizationPageEndpoint = determineAuthorizationPageEndpoint(authorizationEndpoint);
+    }
+
+    private String determineAuthorizationPageEndpoint(String authorizationEndpoint) {
+        return authorizationEndpoint.replace("/restv1/authorize.htm", "/authorize");
+    }
+
+    private String determineGluuConfigurationEndpoint(String host) {
+        return host + "/oxauth/restv1/gluu-configuration";
+    }
+
+    public void showTitle(String title) {
+        title = "TEST: " + title;
+
+        System.out.println("#######################################################");
+        System.out.println(title);
+        System.out.println("#######################################################");
+    }
+
+    public static void showClient(BaseClient client) {
+        ClientUtils.showClient(client);
+    }
+
+    public static void showClient(BaseClient client, CookieStore cookieStore) {
+        ClientUtils.showClient(client, cookieStore);
+    }
+
+    public static void showClientUserAgent(BaseClient client) {
+        ClientUtils.showClientUserAgent(client);
+    }
+
+    public static void assertErrorResponse(BaseResponseWithErrors p_response, IErrorType p_errorType) {
+        assertEquals(p_response.getStatus(), 400, "Unexpected response code. Entity: " + p_response.getEntity());
+        assertNotNull(p_response.getEntity(), "The entity is null");
+        assertEquals(p_response.getErrorType(), p_errorType);
+        assertTrue(StringUtils.isNotBlank(p_response.getErrorDescription()));
+    }
+
+    public static CloseableHttpClient createHttpClient() {
+        return createHttpClient(HostnameVerifierType.DEFAULT);
+    }
+
+	public static CloseableHttpClient createHttpClient(HostnameVerifierType p_verifierType) {
+        if (p_verifierType != null && p_verifierType != HostnameVerifierType.DEFAULT) {
+            switch (p_verifierType) {
+                case ALLOW_ALL:
+					return HttpClients.custom()
+							.setDefaultRequestConfig(RequestConfig.custom().setCookieSpec(CookieSpecs.STANDARD).build())
+							.setSSLHostnameVerifier(NoopHostnameVerifier.INSTANCE).build();
+
+            }
+        }
+
+        return HttpClients.custom()
+				.setDefaultRequestConfig(RequestConfig.custom().setCookieSpec(CookieSpecs.STANDARD).build())
+        		.build();
+    }
+
+    public static ClientHttpEngine engine() throws NoSuchAlgorithmException, KeyManagementException, KeyStoreException, UnrecoverableKeyException {
+        return clientEngine(false);
+    }
+
+    public static ClientHttpEngine engine(boolean trustAll) throws NoSuchAlgorithmException, KeyManagementException, KeyStoreException, UnrecoverableKeyException {
+        if (trustAll) {
+            return new ApacheHttpClient43Engine(createHttpClientTrustAll());
+        }
+        return new ApacheHttpClient43Engine();
+    }
+
+    public static ClientHttpEngine clientEngine() throws NoSuchAlgorithmException, KeyManagementException, KeyStoreException, UnrecoverableKeyException {
+        return clientEngine(false);
+    }
+
+    public static ClientHttpEngine clientEngine(boolean trustAll) throws NoSuchAlgorithmException, KeyManagementException, KeyStoreException, UnrecoverableKeyException {
+        if (trustAll) {
+            return new ApacheHttpClient43Engine(createAcceptSelfSignedCertificateClient());
+        }
+        return new ApacheHttpClient43Engine(createClient());
+    }
+
+    public static HttpClient createClient() {
+	    return createClient(null);
+	}
+
+    public static HttpClient createAcceptSelfSignedCertificateClient()
+            throws KeyManagementException, NoSuchAlgorithmException, KeyStoreException {
+        SSLConnectionSocketFactory connectionFactory = createAcceptSelfSignedSocketFactory();
+
+	    return createClient(connectionFactory);
+    }
+
+	private static HttpClient createClient(SSLConnectionSocketFactory connectionFactory) {
+		PoolingHttpClientConnectionManager cm = new PoolingHttpClientConnectionManager();
+		HttpClientBuilder httClientBuilder = HttpClients.custom();
+		if (connectionFactory != null) {
+			httClientBuilder = httClientBuilder.setSSLSocketFactory(connectionFactory);
+		}
+
+		HttpClient httpClient = httClientBuilder
+				.setDefaultRequestConfig(RequestConfig.custom().setCookieSpec(CookieSpecs.STANDARD).build())
+	    		.setConnectionManager(cm).build();
+	    cm.setMaxTotal(200); // Increase max total connection to 200
+	    cm.setDefaultMaxPerRoute(20); // Increase default max connection per route to 20
+
+	    return httpClient;
+	}
+
+	private static SSLConnectionSocketFactory createAcceptSelfSignedSocketFactory()
+			throws NoSuchAlgorithmException, KeyManagementException, KeyStoreException {
+		// Use the TrustSelfSignedStrategy to allow Self Signed Certificates
+        SSLContext sslContext = SSLContextBuilder.create().loadTrustMaterial(new TrustSelfSignedStrategy()).build();
+
+        // We can optionally disable hostname verification.
+        // If you don't want to further weaken the security, you don't have to include this.
+        HostnameVerifier allowAllHosts = new NoopHostnameVerifier();
+
+        // Create an SSL Socket Factory to use the SSLContext with the trust self signed certificate strategy
+        // and allow all hosts verifier.
+        SSLConnectionSocketFactory connectionFactory = new SSLConnectionSocketFactory(sslContext, allowAllHosts);
+
+        return connectionFactory;
+	}
+
+	public static CloseableHttpClient createHttpClientTrustAll()
+			throws NoSuchAlgorithmException, KeyManagementException, KeyStoreException, UnrecoverableKeyException {
+		SSLContext sslContext = SSLContexts.custom().loadTrustMaterial(new TrustStrategy() {
+			@Override
+			public boolean isTrusted(X509Certificate[] chain, String authType) throws CertificateException {
+				return true;
+			}
+		}).build();
+		SSLConnectionSocketFactory sslContextFactory = new SSLConnectionSocketFactory(sslContext);
+		CloseableHttpClient httpclient = HttpClients.custom()
+				.setDefaultRequestConfig(RequestConfig.custom().setCookieSpec(CookieSpecs.STANDARD).build())
+				.setSSLSocketFactory(sslContextFactory)
+				.setRedirectStrategy(new LaxRedirectStrategy()).build();
+
+		return httpclient;
+	}
+
+	protected void navigateToAuhorizationUrl(WebDriver driver, String authorizationRequestUrl) {
+		try {
+			driver.navigate().to(URLDecoder.decode(authorizationRequestUrl, Util.UTF8_STRING_ENCODING));
+		} catch (UnsupportedEncodingException ex) {
+            fail("Failed to decode the authorization URL.");
+		}
+	}
+
+	private ClientHttpEngine getClientExecutor() throws UnrecoverableKeyException, NoSuchAlgorithmException, KeyStoreException, KeyManagementException {
+        return clientEngine(true);
+    }
+
+	protected RegisterClient newRegisterClient(RegisterRequest request) {
+        try {
+            final RegisterClient client = new RegisterClient(registrationEndpoint);
+            client.setRequest(request);
+            client.setExecutor(getClientExecutor());
+            return client;
+        } catch (Exception e) {
+            throw new AssertionError("Failed to create register client");
+        }
+    }
+
+    protected RevokeSessionClient newRevokeSessionClient(RevokeSessionRequest request) {
+        try {
+            final RevokeSessionClient client = new RevokeSessionClient(revokeSessionEndpoint);
+            client.setRequest(request);
+            client.setExecutor(getClientExecutor());
+            return client;
+        } catch (Exception e) {
+            throw new AssertionError("Failed to create register client");
+        }
+    }
+
+    protected UserInfoClient newUserInfoClient(UserInfoRequest request) {
+        try {
+            final UserInfoClient client = new UserInfoClient(userInfoEndpoint);
+            client.setRequest(request);
+            client.setExecutor(getClientExecutor());
+            return client;
+        } catch (Exception e) {
+            throw new AssertionError("Failed to create userinfo client");
+        }
+    }
+
+    protected UserInfoResponse requestUserInfo(String accessToken) {
+        try {
+            final UserInfoClient client = new UserInfoClient(userInfoEndpoint);
+            client.setExecutor(getClientExecutor());
+            final UserInfoResponse userInfoResponse = client.execUserInfo(accessToken);
+            showClient(client);
+            return userInfoResponse;
+        } catch (Exception e) {
+            throw new AssertionError("Failed to request userinfo");
+        }
+    }
+
+    protected AuthorizeClient newAuthorizeClient(AuthorizationRequest request) {
+        try {
+            final AuthorizeClient client = new AuthorizeClient(authorizationEndpoint);
+            client.setRequest(request);
+            client.setExecutor(getClientExecutor());
+            return client;
+        } catch (Exception e) {
+            throw new AssertionError("Failed to create authorize client");
+        }
+    }
+
+    protected TokenClient newTokenClient(TokenRequest request) {
+        try {
+            final TokenClient client = new TokenClient(tokenEndpoint);
+            client.setRequest(request);
+            client.setExecutor(getClientExecutor());
+            return client;
+        } catch (Exception e) {
+            throw new AssertionError("Failed to create token client");
+        }
+    }
+
+    protected PageConfig newPageConfig(WebDriver driver) {
+        PageConfig config = new PageConfig(driver);
+        config.getTestKeys().putAll(allTestKeys);
+        return config;
+    }
+
+    public static String randomUUID() {
+        return UUID.randomUUID().toString();
+    }
+
+    public static void output(String str) {
+        System.out.println(str); // switch to logger?
+    }
+
+    public static AbstractCryptoProvider createCryptoProviderWithAllowedNone() throws Exception {
+        return new OxAuthCryptoProvider(null, null, null, false);
+    }
+}
diff --git a/oxAuth/Client/src/test/java/org/gluu/oxauth/ciba/BackchannelAuthenticationExpiredRequestsTests.java b/oxAuth/Client/src/test/java/org/gluu/oxauth/ciba/BackchannelAuthenticationExpiredRequestsTests.java
new file mode 100644
index 00000000..109e77bd
--- /dev/null
+++ b/oxAuth/Client/src/test/java/org/gluu/oxauth/ciba/BackchannelAuthenticationExpiredRequestsTests.java
@@ -0,0 +1,301 @@
+/*
+ * oxAuth is available under the MIT License (2008). See http://opensource.org/licenses/MIT for full text.
+ *
+ * Copyright (c) 2014, Gluu
+ */
+
+package org.gluu.oxauth.ciba;
+
+import static org.gluu.oxauth.model.register.RegisterRequestParam.BACKCHANNEL_AUTHENTICATION_REQUEST_SIGNING_ALG;
+import static org.gluu.oxauth.model.register.RegisterRequestParam.BACKCHANNEL_CLIENT_NOTIFICATION_ENDPOINT;
+import static org.gluu.oxauth.model.register.RegisterRequestParam.BACKCHANNEL_TOKEN_DELIVERY_MODE;
+import static org.gluu.oxauth.model.register.RegisterRequestParam.BACKCHANNEL_USER_CODE_PARAMETER;
+import static org.testng.Assert.assertEquals;
+import static org.testng.Assert.assertNotNull;
+import static org.testng.Assert.assertNull;
+import static org.testng.Assert.assertTrue;
+
+import java.util.Arrays;
+import java.util.UUID;
+
+import org.apache.commons.lang.RandomStringUtils;
+import org.gluu.oxauth.BaseTest;
+import org.gluu.oxauth.client.BackchannelAuthenticationClient;
+import org.gluu.oxauth.client.BackchannelAuthenticationRequest;
+import org.gluu.oxauth.client.BackchannelAuthenticationResponse;
+import org.gluu.oxauth.client.RegisterClient;
+import org.gluu.oxauth.client.RegisterRequest;
+import org.gluu.oxauth.client.RegisterResponse;
+import org.gluu.oxauth.client.TokenClient;
+import org.gluu.oxauth.client.TokenRequest;
+import org.gluu.oxauth.client.TokenResponse;
+import org.gluu.oxauth.model.ciba.BackchannelAuthenticationErrorResponseType;
+import org.gluu.oxauth.model.common.BackchannelTokenDeliveryMode;
+import org.gluu.oxauth.model.common.GrantType;
+import org.gluu.oxauth.model.crypto.signature.AsymmetricSignatureAlgorithm;
+import org.gluu.oxauth.model.register.ApplicationType;
+import org.gluu.oxauth.model.token.TokenErrorResponseType;
+import org.testng.annotations.Parameters;
+import org.testng.annotations.Test;
+
+/**
+ * @author Milton BO
+ * @version May 25, 2020
+ */
+public class BackchannelAuthenticationExpiredRequestsTests extends BaseTest {
+
+    /**
+     * Test poll flow when a request expires, response from the server should be expired_token and 400 status.
+     */
+    @Parameters({"clientJwksUri", "backchannelUserCode", "userId"})
+    @Test
+    public void backchannelTokenDeliveryModePollExpiredRequest(
+            final String clientJwksUri, final String backchannelUserCode, final String userId) throws InterruptedException {
+        showTitle("backchannelTokenDeliveryModePollExpiredRequest");
+
+        // 1. Dynamic Client Registration
+        RegisterRequest registerRequest = new RegisterRequest(ApplicationType.WEB, "oxAuth test app", null);
+        registerRequest.setJwksUri(clientJwksUri);
+        registerRequest.setGrantTypes(Arrays.asList(GrantType.CIBA));
+
+        registerRequest.setBackchannelTokenDeliveryMode(BackchannelTokenDeliveryMode.POLL);
+        registerRequest.setBackchannelAuthenticationRequestSigningAlg(AsymmetricSignatureAlgorithm.RS256);
+        registerRequest.setBackchannelUserCodeParameter(true);
+
+        RegisterClient registerClient = new RegisterClient(registrationEndpoint);
+        registerClient.setRequest(registerRequest);
+        RegisterResponse registerResponse = registerClient.exec();
+
+        showClient(registerClient);
+        assertEquals(registerResponse.getStatus(), 200, "Unexpected response code: " + registerResponse.getEntity());
+        assertNotNull(registerResponse.getClientId());
+        assertNotNull(registerResponse.getClientSecret());
+        assertNotNull(registerResponse.getRegistrationAccessToken());
+        assertNotNull(registerResponse.getClientSecretExpiresAt());
+
+        assertTrue(registerResponse.getClaims().containsKey(BACKCHANNEL_TOKEN_DELIVERY_MODE.toString()));
+        assertTrue(registerResponse.getClaims().containsKey(BACKCHANNEL_AUTHENTICATION_REQUEST_SIGNING_ALG.toString()));
+        assertTrue(registerResponse.getClaims().containsKey(BACKCHANNEL_USER_CODE_PARAMETER.toString()));
+        assertEquals(registerResponse.getClaims().get(BACKCHANNEL_TOKEN_DELIVERY_MODE.toString()), BackchannelTokenDeliveryMode.POLL.getValue());
+        assertEquals(registerResponse.getClaims().get(BACKCHANNEL_AUTHENTICATION_REQUEST_SIGNING_ALG.toString()), AsymmetricSignatureAlgorithm.RS256.getValue());
+        assertEquals(registerResponse.getClaims().get(BACKCHANNEL_USER_CODE_PARAMETER.toString()), new Boolean(true).toString());
+
+        String clientId = registerResponse.getClientId();
+        String clientSecret = registerResponse.getClientSecret();
+
+        // 2. Authentication Request
+        String bindingMessage = RandomStringUtils.randomAlphanumeric(6);
+        String clientNotificationToken = UUID.randomUUID().toString();
+
+        BackchannelAuthenticationRequest backchannelAuthenticationRequest = new BackchannelAuthenticationRequest();
+        backchannelAuthenticationRequest.setScope(Arrays.asList("openid", "profile", "email", "address", "phone"));
+        backchannelAuthenticationRequest.setLoginHint(userId);
+        backchannelAuthenticationRequest.setClientNotificationToken(clientNotificationToken);
+        backchannelAuthenticationRequest.setUserCode(backchannelUserCode);
+        backchannelAuthenticationRequest.setRequestedExpiry(1);
+        backchannelAuthenticationRequest.setAcrValues(Arrays.asList("auth_ldap_server", "basic"));
+        backchannelAuthenticationRequest.setBindingMessage(bindingMessage);
+        backchannelAuthenticationRequest.setAuthUsername(clientId);
+        backchannelAuthenticationRequest.setAuthPassword(clientSecret);
+
+        BackchannelAuthenticationClient backchannelAuthenticationClient = new BackchannelAuthenticationClient(backchannelAuthenticationEndpoint);
+        backchannelAuthenticationClient.setRequest(backchannelAuthenticationRequest);
+        BackchannelAuthenticationResponse backchannelAuthenticationResponse = backchannelAuthenticationClient.exec();
+
+        showClient(backchannelAuthenticationClient);
+        assertEquals(backchannelAuthenticationResponse.getStatus(), 200, "Unexpected response code: " + backchannelAuthenticationResponse.getEntity());
+        assertNotNull(backchannelAuthenticationResponse.getAuthReqId());
+        assertNotNull(backchannelAuthenticationResponse.getExpiresIn());
+        assertNotNull(backchannelAuthenticationResponse.getInterval()); // This parameter will only be present if the Client is registered to use the Poll or Ping modes.
+
+        // 3. Request token - expected expiration error
+
+        TokenResponse tokenResponse;
+        int pollCount = 0;
+        do {
+            Thread.sleep(3500);
+
+            TokenRequest tokenRequest = new TokenRequest(GrantType.CIBA);
+            tokenRequest.setAuthUsername(clientId);
+            tokenRequest.setAuthPassword(clientSecret);
+            tokenRequest.setAuthReqId(backchannelAuthenticationResponse.getAuthReqId());
+
+            TokenClient tokenClient = new TokenClient(tokenEndpoint);
+            tokenClient.setRequest(tokenRequest);
+            tokenResponse = tokenClient.exec();
+
+            showClient(tokenClient);
+            pollCount++;
+        } while (pollCount < 5 && tokenResponse.getStatus() == 400
+                && tokenResponse.getErrorType() == TokenErrorResponseType.AUTHORIZATION_PENDING);
+
+        assertEquals(tokenResponse.getStatus(), 400, "Unexpected HTTP status resposne: " + tokenResponse.getEntity());
+        assertNotNull(tokenResponse.getEntity(), "The entity is null");
+        assertEquals(tokenResponse.getErrorType(), TokenErrorResponseType.EXPIRED_TOKEN, "Unexpected error type, should be expired_token.");
+        assertNotNull(tokenResponse.getErrorDescription());
+    }
+
+    /**
+     * Test ping flow when a request expires, response from the server should be expired_token and 400 status.
+     */
+    @Parameters({"clientJwksUri", "backchannelClientNotificationEndpoint", "backchannelUserCode", "userId"})
+    @Test
+    public void backchannelTokenDeliveryModePingExpiredRequest(
+            final String clientJwksUri, final String backchannelClientNotificationEndpoint, final String backchannelUserCode,
+            final String userId) throws InterruptedException {
+        showTitle("backchannelTokenDeliveryModePingExpiredRequest");
+
+        // 1. Dynamic Client Registration
+        RegisterRequest registerRequest = new RegisterRequest(ApplicationType.WEB, "oxAuth test app", null);
+        registerRequest.setJwksUri(clientJwksUri);
+        registerRequest.setGrantTypes(Arrays.asList(GrantType.CIBA));
+
+        registerRequest.setBackchannelTokenDeliveryMode(BackchannelTokenDeliveryMode.PING);
+        registerRequest.setBackchannelClientNotificationEndpoint(backchannelClientNotificationEndpoint);
+        registerRequest.setBackchannelAuthenticationRequestSigningAlg(AsymmetricSignatureAlgorithm.RS256);
+        registerRequest.setBackchannelUserCodeParameter(true);
+
+        RegisterClient registerClient = new RegisterClient(registrationEndpoint);
+        registerClient.setRequest(registerRequest);
+        RegisterResponse registerResponse = registerClient.exec();
+
+        showClient(registerClient);
+        assertEquals(registerResponse.getStatus(), 200, "Unexpected response code: " + registerResponse.getEntity());
+        assertNotNull(registerResponse.getClientId());
+        assertNotNull(registerResponse.getClientSecret());
+        assertNotNull(registerResponse.getRegistrationAccessToken());
+        assertNotNull(registerResponse.getClientSecretExpiresAt());
+
+        assertTrue(registerResponse.getClaims().containsKey(BACKCHANNEL_TOKEN_DELIVERY_MODE.toString()));
+        assertTrue(registerResponse.getClaims().containsKey(BACKCHANNEL_AUTHENTICATION_REQUEST_SIGNING_ALG.toString()));
+        assertTrue(registerResponse.getClaims().containsKey(BACKCHANNEL_USER_CODE_PARAMETER.toString()));
+        assertTrue(registerResponse.getClaims().containsKey(BACKCHANNEL_CLIENT_NOTIFICATION_ENDPOINT.toString()));
+        assertEquals(registerResponse.getClaims().get(BACKCHANNEL_TOKEN_DELIVERY_MODE.toString()), BackchannelTokenDeliveryMode.PING.getValue());
+        assertEquals(registerResponse.getClaims().get(BACKCHANNEL_AUTHENTICATION_REQUEST_SIGNING_ALG.toString()), AsymmetricSignatureAlgorithm.RS256.getValue());
+        assertEquals(registerResponse.getClaims().get(BACKCHANNEL_USER_CODE_PARAMETER.toString()), new Boolean(true).toString());
+
+        String clientId = registerResponse.getClientId();
+        String clientSecret = registerResponse.getClientSecret();
+
+        // 2. Authentication Request
+        String bindingMessage = RandomStringUtils.randomAlphanumeric(6);
+        String clientNotificationToken = UUID.randomUUID().toString();
+
+        BackchannelAuthenticationRequest backchannelAuthenticationRequest = new BackchannelAuthenticationRequest();
+        backchannelAuthenticationRequest.setScope(Arrays.asList("openid", "profile", "email", "address", "phone"));
+        backchannelAuthenticationRequest.setLoginHint(userId);
+        backchannelAuthenticationRequest.setClientNotificationToken(clientNotificationToken);
+        backchannelAuthenticationRequest.setUserCode(backchannelUserCode);
+        backchannelAuthenticationRequest.setRequestedExpiry(1);
+        backchannelAuthenticationRequest.setAcrValues(Arrays.asList("auth_ldap_server", "basic"));
+        backchannelAuthenticationRequest.setBindingMessage(bindingMessage);
+        backchannelAuthenticationRequest.setAuthUsername(clientId);
+        backchannelAuthenticationRequest.setAuthPassword(clientSecret);
+
+        BackchannelAuthenticationClient backchannelAuthenticationClient = new BackchannelAuthenticationClient(backchannelAuthenticationEndpoint);
+        backchannelAuthenticationClient.setRequest(backchannelAuthenticationRequest);
+        BackchannelAuthenticationResponse backchannelAuthenticationResponse = backchannelAuthenticationClient.exec();
+
+        showClient(backchannelAuthenticationClient);
+        assertEquals(backchannelAuthenticationResponse.getStatus(), 200, "Unexpected response code: " + backchannelAuthenticationResponse.getEntity());
+        assertNotNull(backchannelAuthenticationResponse.getAuthReqId());
+        assertNotNull(backchannelAuthenticationResponse.getExpiresIn());
+        assertNotNull(backchannelAuthenticationResponse.getInterval()); // This parameter will only be present if the Client is registered to use the Poll or Ping modes.
+
+        // 3. Request token - expected expiration error
+
+        TokenResponse tokenResponse;
+        int pollCount = 0;
+        do {
+            Thread.sleep(3500);
+
+            TokenRequest tokenRequest = new TokenRequest(GrantType.CIBA);
+            tokenRequest.setAuthUsername(clientId);
+            tokenRequest.setAuthPassword(clientSecret);
+            tokenRequest.setAuthReqId(backchannelAuthenticationResponse.getAuthReqId());
+
+            TokenClient tokenClient = new TokenClient(tokenEndpoint);
+            tokenClient.setRequest(tokenRequest);
+            tokenResponse = tokenClient.exec();
+
+            showClient(tokenClient);
+            pollCount++;
+        } while (pollCount < 5 && tokenResponse.getStatus() == 400
+                && tokenResponse.getErrorType() == TokenErrorResponseType.AUTHORIZATION_PENDING);
+
+        assertEquals(tokenResponse.getStatus(), 400, "Unexpected HTTP status resposne: " + tokenResponse.getEntity());
+        assertNotNull(tokenResponse.getEntity(), "The entity is null");
+        assertEquals(tokenResponse.getErrorType(), TokenErrorResponseType.EXPIRED_TOKEN, "Unexpected error type, should be expired_token.");
+        assertNotNull(tokenResponse.getErrorDescription());
+    }
+
+    /**
+     * Test big expiration times are not allowed.
+     */
+    @Parameters({"clientJwksUri", "backchannelClientNotificationEndpoint", "backchannelUserCode", "userId"})
+    @Test
+    public void backchannelBigExpirationTimeAreNotAlloed(
+            final String clientJwksUri, final String backchannelClientNotificationEndpoint, final String backchannelUserCode,
+            final String userId) throws InterruptedException {
+        showTitle("backchannelBigExpirationTimeAreNotAlloed");
+
+        // 1. Dynamic Client Registration
+        RegisterRequest registerRequest = new RegisterRequest(ApplicationType.WEB, "oxAuth test app", null);
+        registerRequest.setJwksUri(clientJwksUri);
+        registerRequest.setGrantTypes(Arrays.asList(GrantType.CIBA));
+
+        registerRequest.setBackchannelTokenDeliveryMode(BackchannelTokenDeliveryMode.PING);
+        registerRequest.setBackchannelClientNotificationEndpoint(backchannelClientNotificationEndpoint);
+        registerRequest.setBackchannelAuthenticationRequestSigningAlg(AsymmetricSignatureAlgorithm.RS256);
+        registerRequest.setBackchannelUserCodeParameter(true);
+
+        RegisterClient registerClient = new RegisterClient(registrationEndpoint);
+        registerClient.setRequest(registerRequest);
+        RegisterResponse registerResponse = registerClient.exec();
+
+        showClient(registerClient);
+        assertEquals(registerResponse.getStatus(), 200, "Unexpected response code: " + registerResponse.getEntity());
+        assertNotNull(registerResponse.getClientId());
+        assertNotNull(registerResponse.getClientSecret());
+        assertNotNull(registerResponse.getRegistrationAccessToken());
+        assertNotNull(registerResponse.getClientSecretExpiresAt());
+
+        assertTrue(registerResponse.getClaims().containsKey(BACKCHANNEL_TOKEN_DELIVERY_MODE.toString()));
+        assertTrue(registerResponse.getClaims().containsKey(BACKCHANNEL_AUTHENTICATION_REQUEST_SIGNING_ALG.toString()));
+        assertTrue(registerResponse.getClaims().containsKey(BACKCHANNEL_USER_CODE_PARAMETER.toString()));
+        assertTrue(registerResponse.getClaims().containsKey(BACKCHANNEL_CLIENT_NOTIFICATION_ENDPOINT.toString()));
+        assertEquals(registerResponse.getClaims().get(BACKCHANNEL_TOKEN_DELIVERY_MODE.toString()), BackchannelTokenDeliveryMode.PING.getValue());
+        assertEquals(registerResponse.getClaims().get(BACKCHANNEL_AUTHENTICATION_REQUEST_SIGNING_ALG.toString()), AsymmetricSignatureAlgorithm.RS256.getValue());
+        assertEquals(registerResponse.getClaims().get(BACKCHANNEL_USER_CODE_PARAMETER.toString()), new Boolean(true).toString());
+
+        String clientId = registerResponse.getClientId();
+        String clientSecret = registerResponse.getClientSecret();
+
+        // 2. Authentication Request
+        String bindingMessage = RandomStringUtils.randomAlphanumeric(6);
+        String clientNotificationToken = UUID.randomUUID().toString();
+
+        BackchannelAuthenticationRequest backchannelAuthenticationRequest = new BackchannelAuthenticationRequest();
+        backchannelAuthenticationRequest.setScope(Arrays.asList("openid", "profile", "email", "address", "phone"));
+        backchannelAuthenticationRequest.setLoginHint(userId);
+        backchannelAuthenticationRequest.setClientNotificationToken(clientNotificationToken);
+        backchannelAuthenticationRequest.setUserCode(backchannelUserCode);
+        backchannelAuthenticationRequest.setRequestedExpiry(10000000);
+        backchannelAuthenticationRequest.setAcrValues(Arrays.asList("auth_ldap_server", "basic"));
+        backchannelAuthenticationRequest.setBindingMessage(bindingMessage);
+        backchannelAuthenticationRequest.setAuthUsername(clientId);
+        backchannelAuthenticationRequest.setAuthPassword(clientSecret);
+
+        BackchannelAuthenticationClient backchannelAuthenticationClient = new BackchannelAuthenticationClient(backchannelAuthenticationEndpoint);
+        backchannelAuthenticationClient.setRequest(backchannelAuthenticationRequest);
+        BackchannelAuthenticationResponse backchannelAuthenticationResponse = backchannelAuthenticationClient.exec();
+
+        showClient(backchannelAuthenticationClient);
+        assertEquals(backchannelAuthenticationResponse.getStatus(), 400, "Unexpected response code: " + backchannelAuthenticationResponse.getEntity());
+        assertNull(backchannelAuthenticationResponse.getAuthReqId());
+        assertNull(backchannelAuthenticationResponse.getExpiresIn());
+        assertEquals(backchannelAuthenticationResponse.getErrorType(), BackchannelAuthenticationErrorResponseType.INVALID_REQUEST);
+        assertNotNull(backchannelAuthenticationResponse.getErrorDescription());
+    }
+
+}
\ No newline at end of file
diff --git a/oxAuth/Client/src/test/java/org/gluu/oxauth/ciba/BackchannelAuthenticationPingMode.java b/oxAuth/Client/src/test/java/org/gluu/oxauth/ciba/BackchannelAuthenticationPingMode.java
new file mode 100644
index 00000000..67b68849
--- /dev/null
+++ b/oxAuth/Client/src/test/java/org/gluu/oxauth/ciba/BackchannelAuthenticationPingMode.java
@@ -0,0 +1,3614 @@
+/*
+ * oxAuth is available under the MIT License (2008). See http://opensource.org/licenses/MIT for full text.
+ *
+ * Copyright (c) 2014, Gluu
+ */
+
+package org.gluu.oxauth.ciba;
+
+import static org.gluu.oxauth.model.register.RegisterRequestParam.BACKCHANNEL_AUTHENTICATION_REQUEST_SIGNING_ALG;
+import static org.gluu.oxauth.model.register.RegisterRequestParam.BACKCHANNEL_CLIENT_NOTIFICATION_ENDPOINT;
+import static org.gluu.oxauth.model.register.RegisterRequestParam.BACKCHANNEL_TOKEN_DELIVERY_MODE;
+import static org.gluu.oxauth.model.register.RegisterRequestParam.BACKCHANNEL_USER_CODE_PARAMETER;
+import static org.testng.Assert.assertEquals;
+import static org.testng.Assert.assertNotNull;
+import static org.testng.Assert.assertTrue;
+
+import java.security.PrivateKey;
+import java.util.Arrays;
+import java.util.List;
+import java.util.UUID;
+
+import org.apache.commons.lang.RandomStringUtils;
+import org.gluu.oxauth.BaseTest;
+import org.gluu.oxauth.client.AuthorizationRequest;
+import org.gluu.oxauth.client.AuthorizationResponse;
+import org.gluu.oxauth.client.AuthorizeClient;
+import org.gluu.oxauth.client.BackchannelAuthenticationClient;
+import org.gluu.oxauth.client.BackchannelAuthenticationRequest;
+import org.gluu.oxauth.client.BackchannelAuthenticationResponse;
+import org.gluu.oxauth.client.JwkClient;
+import org.gluu.oxauth.client.RegisterClient;
+import org.gluu.oxauth.client.RegisterRequest;
+import org.gluu.oxauth.client.RegisterResponse;
+import org.gluu.oxauth.client.TokenClient;
+import org.gluu.oxauth.client.TokenRequest;
+import org.gluu.oxauth.client.TokenResponse;
+import org.gluu.oxauth.client.UserInfoClient;
+import org.gluu.oxauth.client.UserInfoResponse;
+import org.gluu.oxauth.model.ciba.BackchannelAuthenticationErrorResponseType;
+import org.gluu.oxauth.model.common.AuthenticationMethod;
+import org.gluu.oxauth.model.common.BackchannelTokenDeliveryMode;
+import org.gluu.oxauth.model.common.GrantType;
+import org.gluu.oxauth.model.common.ResponseType;
+import org.gluu.oxauth.model.crypto.OxAuthCryptoProvider;
+import org.gluu.oxauth.model.crypto.encryption.BlockEncryptionAlgorithm;
+import org.gluu.oxauth.model.crypto.encryption.KeyEncryptionAlgorithm;
+import org.gluu.oxauth.model.crypto.signature.AsymmetricSignatureAlgorithm;
+import org.gluu.oxauth.model.crypto.signature.ECDSAPublicKey;
+import org.gluu.oxauth.model.crypto.signature.RSAPublicKey;
+import org.gluu.oxauth.model.crypto.signature.SignatureAlgorithm;
+import org.gluu.oxauth.model.jwe.Jwe;
+import org.gluu.oxauth.model.jws.ECDSASigner;
+import org.gluu.oxauth.model.jws.RSASigner;
+import org.gluu.oxauth.model.jwt.Jwt;
+import org.gluu.oxauth.model.jwt.JwtClaimName;
+import org.gluu.oxauth.model.jwt.JwtHeaderName;
+import org.gluu.oxauth.model.register.ApplicationType;
+import org.gluu.oxauth.model.util.StringUtils;
+import org.gluu.oxauth.model.util.Util;
+import org.json.JSONObject;
+import org.testng.annotations.Parameters;
+import org.testng.annotations.Test;
+
+/**
+ * @author Javier Rojas Blum
+ * @version May 28, 2020
+ */
+public class BackchannelAuthenticationPingMode extends BaseTest {
+
+    String idTokenHintRS256;
+    String idTokenHintRS384;
+    String idTokenHintRS512;
+    String idTokenHintES256;
+    String idTokenHintES384;
+    String idTokenHintES512;
+    String idTokenHintPS256;
+    String idTokenHintPS384;
+    String idTokenHintPS512;
+    String idTokenHintAlgA128KWEncA128GCM;
+    String idTokenHintAlgA256KWEncA256GCM;
+    String idTokenHintAlgRSA15EncA128CBCPLUSHS256;
+    String idTokenHintAlgRSA15EncA256CBCPLUSHS512;
+    String idTokenHintAlgRSAOAEPEncA256GCM;
+
+    String loginHintTokenRS256;
+    String loginHintTokenRS384;
+    String loginHintTokenRS512;
+    String loginHintTokenES256;
+    String loginHintTokenES384;
+    String loginHintTokenES512;
+    String loginHintTokenPS256;
+    String loginHintTokenPS384;
+    String loginHintTokenPS512;
+
+    @Parameters({"clientJwksUri", "backchannelClientNotificationEndpoint", "backchannelUserCode", "userId"})
+    @Test
+    public void backchannelTokenDeliveryModePingLoginHint1(
+            final String clientJwksUri, final String backchannelClientNotificationEndpoint, final String backchannelUserCode,
+            final String userId) throws InterruptedException {
+        showTitle("backchannelTokenDeliveryModePingLoginHint1");
+
+        // 1. Dynamic Client Registration
+        RegisterRequest registerRequest = new RegisterRequest(ApplicationType.WEB, "oxAuth test app", null);
+        registerRequest.setJwksUri(clientJwksUri);
+        registerRequest.setGrantTypes(Arrays.asList(GrantType.CIBA));
+
+        registerRequest.setBackchannelTokenDeliveryMode(BackchannelTokenDeliveryMode.PING);
+        registerRequest.setBackchannelClientNotificationEndpoint(backchannelClientNotificationEndpoint);
+        registerRequest.setBackchannelAuthenticationRequestSigningAlg(AsymmetricSignatureAlgorithm.RS256);
+        registerRequest.setBackchannelUserCodeParameter(true);
+
+        RegisterClient registerClient = new RegisterClient(registrationEndpoint);
+        registerClient.setRequest(registerRequest);
+        RegisterResponse registerResponse = registerClient.exec();
+
+        showClient(registerClient);
+        assertEquals(registerResponse.getStatus(), 200, "Unexpected response code: " + registerResponse.getEntity());
+        assertNotNull(registerResponse.getClientId());
+        assertNotNull(registerResponse.getClientSecret());
+        assertNotNull(registerResponse.getRegistrationAccessToken());
+        assertNotNull(registerResponse.getClientSecretExpiresAt());
+
+        assertTrue(registerResponse.getClaims().containsKey(BACKCHANNEL_TOKEN_DELIVERY_MODE.toString()));
+        assertTrue(registerResponse.getClaims().containsKey(BACKCHANNEL_AUTHENTICATION_REQUEST_SIGNING_ALG.toString()));
+        assertTrue(registerResponse.getClaims().containsKey(BACKCHANNEL_USER_CODE_PARAMETER.toString()));
+        assertTrue(registerResponse.getClaims().containsKey(BACKCHANNEL_CLIENT_NOTIFICATION_ENDPOINT.toString()));
+        assertEquals(registerResponse.getClaims().get(BACKCHANNEL_TOKEN_DELIVERY_MODE.toString()), BackchannelTokenDeliveryMode.PING.getValue());
+        assertEquals(registerResponse.getClaims().get(BACKCHANNEL_AUTHENTICATION_REQUEST_SIGNING_ALG.toString()), AsymmetricSignatureAlgorithm.RS256.getValue());
+        assertEquals(registerResponse.getClaims().get(BACKCHANNEL_USER_CODE_PARAMETER.toString()), new Boolean(true).toString());
+
+        String clientId = registerResponse.getClientId();
+        String clientSecret = registerResponse.getClientSecret();
+
+        // 2. Authentication Request
+        String bindingMessage = RandomStringUtils.randomAlphanumeric(6);
+        String clientNotificationToken = UUID.randomUUID().toString();
+
+        BackchannelAuthenticationRequest backchannelAuthenticationRequest = new BackchannelAuthenticationRequest();
+        backchannelAuthenticationRequest.setScope(Arrays.asList("openid", "profile", "email", "address", "phone"));
+        backchannelAuthenticationRequest.setLoginHint(userId);
+        backchannelAuthenticationRequest.setClientNotificationToken(clientNotificationToken);
+        backchannelAuthenticationRequest.setUserCode(backchannelUserCode);
+        backchannelAuthenticationRequest.setRequestedExpiry(1200);
+        backchannelAuthenticationRequest.setAcrValues(Arrays.asList("auth_ldap_server", "basic"));
+        backchannelAuthenticationRequest.setBindingMessage(bindingMessage);
+        backchannelAuthenticationRequest.setAuthUsername(clientId);
+        backchannelAuthenticationRequest.setAuthPassword(clientSecret);
+
+        BackchannelAuthenticationClient backchannelAuthenticationClient = new BackchannelAuthenticationClient(backchannelAuthenticationEndpoint);
+        backchannelAuthenticationClient.setRequest(backchannelAuthenticationRequest);
+        BackchannelAuthenticationResponse backchannelAuthenticationResponse = backchannelAuthenticationClient.exec();
+
+        showClient(backchannelAuthenticationClient);
+        assertEquals(backchannelAuthenticationResponse.getStatus(), 200, "Unexpected response code: " + backchannelAuthenticationResponse.getEntity());
+        assertNotNull(backchannelAuthenticationResponse.getAuthReqId());
+        assertNotNull(backchannelAuthenticationResponse.getExpiresIn());
+        assertNotNull(backchannelAuthenticationResponse.getInterval()); // This parameter will only be present if the Client is registered to use the Poll or Ping modes.
+
+        String authReqId = backchannelAuthenticationResponse.getAuthReqId();
+
+        // 3. Token Request Using CIBA Grant Type
+        // Uncomment for manual testing
+        /*
+        TokenResponse tokenResponse = null;
+        int pollCount = 0;
+        do {
+            Thread.sleep(5000);
+
+            TokenRequest tokenRequest = new TokenRequest(GrantType.CIBA);
+            tokenRequest.setAuthUsername(clientId);
+            tokenRequest.setAuthPassword(clientSecret);
+            tokenRequest.setAuthReqId(authReqId);
+
+            TokenClient tokenClient = new TokenClient(tokenEndpoint);
+            tokenClient.setRequest(tokenRequest);
+            tokenResponse = tokenClient.exec();
+
+            showClient(tokenClient);
+            pollCount++;
+        } while (tokenResponse.getStatus() == 400 && pollCount < 5);
+
+        assertEquals(tokenResponse.getStatus(), 200, "Unexpected response code: " + tokenResponse.getStatus());
+        assertNotNull(tokenResponse.getEntity(), "The entity is null");
+        assertNotNull(tokenResponse.getAccessToken(), "The access token is null");
+        assertNotNull(tokenResponse.getTokenType(), "The token type is null");
+
+        String accessToken = tokenResponse.getAccessToken();
+
+        // 4. Request user info
+        UserInfoClient userInfoClient = new UserInfoClient(userInfoEndpoint);
+        UserInfoResponse userInfoResponse = userInfoClient.execUserInfo(accessToken);
+
+        showClient(userInfoClient);
+        assertEquals(userInfoResponse.getStatus(), 200, "Unexpected response code: " + userInfoResponse.getStatus());
+        assertNotNull(userInfoResponse.getClaim(JwtClaimName.SUBJECT_IDENTIFIER));
+        assertNotNull(userInfoResponse.getClaim(JwtClaimName.WEBSITE));
+        assertNotNull(userInfoResponse.getClaim(JwtClaimName.ZONEINFO));
+        assertNotNull(userInfoResponse.getClaim(JwtClaimName.ADDRESS));
+        assertNotNull(userInfoResponse.getClaim(JwtClaimName.BIRTHDATE));
+        assertNotNull(userInfoResponse.getClaim(JwtClaimName.EMAIL_VERIFIED));
+        assertNotNull(userInfoResponse.getClaim(JwtClaimName.GENDER));
+        assertNotNull(userInfoResponse.getClaim(JwtClaimName.PROFILE));
+        assertNotNull(userInfoResponse.getClaim(JwtClaimName.PHONE_NUMBER_VERIFIED));
+        assertNotNull(userInfoResponse.getClaim(JwtClaimName.PREFERRED_USERNAME));
+        assertNotNull(userInfoResponse.getClaim(JwtClaimName.GIVEN_NAME));
+        assertNotNull(userInfoResponse.getClaim(JwtClaimName.MIDDLE_NAME));
+        assertNotNull(userInfoResponse.getClaim(JwtClaimName.LOCALE));
+        assertNotNull(userInfoResponse.getClaim(JwtClaimName.PICTURE));
+        assertNotNull(userInfoResponse.getClaim(JwtClaimName.UPDATED_AT));
+        assertNotNull(userInfoResponse.getClaim(JwtClaimName.NAME));
+        assertNotNull(userInfoResponse.getClaim(JwtClaimName.NICKNAME));
+        assertNotNull(userInfoResponse.getClaim(JwtClaimName.PHONE_NUMBER));
+        assertNotNull(userInfoResponse.getClaim(JwtClaimName.FAMILY_NAME));
+        assertNotNull(userInfoResponse.getClaim(JwtClaimName.EMAIL));
+         */
+    }
+
+    @Parameters({"clientJwksUri", "backchannelClientNotificationEndpoint", "backchannelUserCode", "userEmail"})
+    @Test
+    public void backchannelTokenDeliveryModePingLoginHint2(
+            final String clientJwksUri, final String backchannelClientNotificationEndpoint, final String backchannelUserCode,
+            final String userEmail) {
+        showTitle("backchannelTokenDeliveryModePingLoginHint2");
+
+        // 1. Dynamic Client Registration
+        RegisterRequest registerRequest = new RegisterRequest(ApplicationType.WEB, "oxAuth test app", null);
+        registerRequest.setJwksUri(clientJwksUri);
+        registerRequest.setGrantTypes(Arrays.asList(GrantType.CIBA));
+
+        registerRequest.setBackchannelTokenDeliveryMode(BackchannelTokenDeliveryMode.PING);
+        registerRequest.setBackchannelClientNotificationEndpoint(backchannelClientNotificationEndpoint);
+        registerRequest.setBackchannelAuthenticationRequestSigningAlg(AsymmetricSignatureAlgorithm.RS256);
+        registerRequest.setBackchannelUserCodeParameter(true);
+
+        RegisterClient registerClient = new RegisterClient(registrationEndpoint);
+        registerClient.setRequest(registerRequest);
+        RegisterResponse registerResponse = registerClient.exec();
+
+        showClient(registerClient);
+        assertEquals(registerResponse.getStatus(), 200, "Unexpected response code: " + registerResponse.getEntity());
+        assertNotNull(registerResponse.getClientId());
+        assertNotNull(registerResponse.getClientSecret());
+        assertNotNull(registerResponse.getRegistrationAccessToken());
+        assertNotNull(registerResponse.getClientSecretExpiresAt());
+
+        assertTrue(registerResponse.getClaims().containsKey(BACKCHANNEL_TOKEN_DELIVERY_MODE.toString()));
+        assertTrue(registerResponse.getClaims().containsKey(BACKCHANNEL_AUTHENTICATION_REQUEST_SIGNING_ALG.toString()));
+        assertTrue(registerResponse.getClaims().containsKey(BACKCHANNEL_USER_CODE_PARAMETER.toString()));
+        assertTrue(registerResponse.getClaims().containsKey(BACKCHANNEL_CLIENT_NOTIFICATION_ENDPOINT.toString()));
+        assertEquals(registerResponse.getClaims().get(BACKCHANNEL_TOKEN_DELIVERY_MODE.toString()), BackchannelTokenDeliveryMode.PING.getValue());
+        assertEquals(registerResponse.getClaims().get(BACKCHANNEL_AUTHENTICATION_REQUEST_SIGNING_ALG.toString()), AsymmetricSignatureAlgorithm.RS256.getValue());
+        assertEquals(registerResponse.getClaims().get(BACKCHANNEL_USER_CODE_PARAMETER.toString()), new Boolean(true).toString());
+
+        String clientId = registerResponse.getClientId();
+        String clientSecret = registerResponse.getClientSecret();
+
+        // 2. Authentication Request
+        String clientNotificationToken = UUID.randomUUID().toString();
+
+        BackchannelAuthenticationRequest backchannelAuthenticationRequest = new BackchannelAuthenticationRequest();
+        backchannelAuthenticationRequest.setScope(Arrays.asList("openid"));
+        backchannelAuthenticationRequest.setLoginHint(userEmail);
+        backchannelAuthenticationRequest.setClientNotificationToken(clientNotificationToken);
+        backchannelAuthenticationRequest.setUserCode(backchannelUserCode);
+        backchannelAuthenticationRequest.setRequestedExpiry(1200);
+        backchannelAuthenticationRequest.setAuthUsername(clientId);
+        backchannelAuthenticationRequest.setAuthPassword(clientSecret);
+
+        BackchannelAuthenticationClient backchannelAuthenticationClient = new BackchannelAuthenticationClient(backchannelAuthenticationEndpoint);
+        backchannelAuthenticationClient.setRequest(backchannelAuthenticationRequest);
+        BackchannelAuthenticationResponse backchannelAuthenticationResponse = backchannelAuthenticationClient.exec();
+
+        showClient(backchannelAuthenticationClient);
+        assertEquals(backchannelAuthenticationResponse.getStatus(), 200, "Unexpected response code: " + backchannelAuthenticationResponse.getEntity());
+        assertNotNull(backchannelAuthenticationResponse.getAuthReqId());
+        assertNotNull(backchannelAuthenticationResponse.getExpiresIn());
+        assertNotNull(backchannelAuthenticationResponse.getInterval()); // This parameter will only be present if the Client is registered to use the Poll or Ping modes.
+    }
+
+    @Parameters({"clientJwksUri", "backchannelClientNotificationEndpoint", "backchannelUserCode", "userInum"})
+    @Test
+    public void backchannelTokenDeliveryModePingLoginHint3(
+            final String clientJwksUri, final String backchannelClientNotificationEndpoint, final String backchannelUserCode,
+            final String userInum) {
+        showTitle("backchannelTokenDeliveryModePingLoginHint3");
+
+        // 1. Dynamic Client Registration
+        RegisterRequest registerRequest = new RegisterRequest(ApplicationType.WEB, "oxAuth test app", null);
+        registerRequest.setJwksUri(clientJwksUri);
+        registerRequest.setGrantTypes(Arrays.asList(GrantType.CIBA));
+
+        registerRequest.setBackchannelTokenDeliveryMode(BackchannelTokenDeliveryMode.PING);
+        registerRequest.setBackchannelClientNotificationEndpoint(backchannelClientNotificationEndpoint);
+        registerRequest.setBackchannelAuthenticationRequestSigningAlg(AsymmetricSignatureAlgorithm.RS256);
+        registerRequest.setBackchannelUserCodeParameter(true);
+
+        RegisterClient registerClient = new RegisterClient(registrationEndpoint);
+        registerClient.setRequest(registerRequest);
+        RegisterResponse registerResponse = registerClient.exec();
+
+        showClient(registerClient);
+        assertEquals(registerResponse.getStatus(), 200, "Unexpected response code: " + registerResponse.getEntity());
+        assertNotNull(registerResponse.getClientId());
+        assertNotNull(registerResponse.getClientSecret());
+        assertNotNull(registerResponse.getRegistrationAccessToken());
+        assertNotNull(registerResponse.getClientSecretExpiresAt());
+
+        assertTrue(registerResponse.getClaims().containsKey(BACKCHANNEL_TOKEN_DELIVERY_MODE.toString()));
+        assertTrue(registerResponse.getClaims().containsKey(BACKCHANNEL_AUTHENTICATION_REQUEST_SIGNING_ALG.toString()));
+        assertTrue(registerResponse.getClaims().containsKey(BACKCHANNEL_USER_CODE_PARAMETER.toString()));
+        assertTrue(registerResponse.getClaims().containsKey(BACKCHANNEL_CLIENT_NOTIFICATION_ENDPOINT.toString()));
+        assertEquals(registerResponse.getClaims().get(BACKCHANNEL_TOKEN_DELIVERY_MODE.toString()), BackchannelTokenDeliveryMode.PING.getValue());
+        assertEquals(registerResponse.getClaims().get(BACKCHANNEL_AUTHENTICATION_REQUEST_SIGNING_ALG.toString()), AsymmetricSignatureAlgorithm.RS256.getValue());
+        assertEquals(registerResponse.getClaims().get(BACKCHANNEL_USER_CODE_PARAMETER.toString()), new Boolean(true).toString());
+
+        String clientId = registerResponse.getClientId();
+        String clientSecret = registerResponse.getClientSecret();
+
+        // 2. Authentication Request
+        String clientNotificationToken = UUID.randomUUID().toString();
+
+        BackchannelAuthenticationRequest backchannelAuthenticationRequest = new BackchannelAuthenticationRequest();
+        backchannelAuthenticationRequest.setScope(Arrays.asList("openid"));
+        backchannelAuthenticationRequest.setLoginHint(userInum);
+        backchannelAuthenticationRequest.setClientNotificationToken(clientNotificationToken);
+        backchannelAuthenticationRequest.setUserCode(backchannelUserCode);
+        backchannelAuthenticationRequest.setRequestedExpiry(1200);
+        backchannelAuthenticationRequest.setAuthUsername(clientId);
+        backchannelAuthenticationRequest.setAuthPassword(clientSecret);
+
+        BackchannelAuthenticationClient backchannelAuthenticationClient = new BackchannelAuthenticationClient(backchannelAuthenticationEndpoint);
+        backchannelAuthenticationClient.setRequest(backchannelAuthenticationRequest);
+        BackchannelAuthenticationResponse backchannelAuthenticationResponse = backchannelAuthenticationClient.exec();
+
+        showClient(backchannelAuthenticationClient);
+        assertEquals(backchannelAuthenticationResponse.getStatus(), 200, "Unexpected response code: " + backchannelAuthenticationResponse.getEntity());
+        assertNotNull(backchannelAuthenticationResponse.getAuthReqId());
+        assertNotNull(backchannelAuthenticationResponse.getExpiresIn());
+        assertNotNull(backchannelAuthenticationResponse.getInterval()); // This parameter will only be present if the Client is registered to use the Poll or Ping modes.
+    }
+
+    @Parameters({"clientJwksUri", "backchannelClientNotificationEndpoint", "backchannelUserCode", "userInum"})
+    @Test(enabled = false) // Enable it for manual testing
+    public void backchannelTokenDeliveryModePingLoginHint4(
+            final String clientJwksUri, final String backchannelClientNotificationEndpoint, final String backchannelUserCode,
+            final String userInum) throws Exception {
+        showTitle("backchannelTokenDeliveryModePingLoginHint4");
+
+        RegisterResponse registerResponse1 = requestClientRegistration(clientJwksUri, backchannelClientNotificationEndpoint);
+        RegisterResponse registerResponse2 = requestClientRegistration(clientJwksUri, backchannelClientNotificationEndpoint);
+
+        String sub1 = requestBackchannelAuthentication(userInum, registerResponse1.getClientId(), registerResponse1.getClientSecret(), backchannelUserCode);
+        String sub2 = requestBackchannelAuthentication(userInum, registerResponse2.getClientId(), registerResponse2.getClientSecret(), backchannelUserCode);
+
+        assertEquals(sub1, sub2, "Each client must share the same sub value");
+
+        String sub3 = requestBackchannelAuthentication(userInum, registerResponse1.getClientId(), registerResponse1.getClientSecret(), backchannelUserCode);
+        String sub4 = requestBackchannelAuthentication(userInum, registerResponse2.getClientId(), registerResponse2.getClientSecret(), backchannelUserCode);
+
+        assertEquals(sub1, sub3, "Same client must receive the same sub value");
+        assertEquals(sub2, sub4, "Same client must receive the same sub value");
+    }
+
+    public RegisterResponse requestClientRegistration(
+            final String clientJwksUri, final String backchannelClientNotificationEndpoint) {
+        // Dynamic Client Registration
+        RegisterRequest registerRequest = new RegisterRequest(ApplicationType.WEB, "oxAuth test app", null);
+        registerRequest.setJwksUri(clientJwksUri);
+        registerRequest.setGrantTypes(Arrays.asList(GrantType.CIBA));
+
+        registerRequest.setBackchannelTokenDeliveryMode(BackchannelTokenDeliveryMode.PING);
+        registerRequest.setBackchannelClientNotificationEndpoint(backchannelClientNotificationEndpoint);
+        registerRequest.setBackchannelAuthenticationRequestSigningAlg(AsymmetricSignatureAlgorithm.RS256);
+        registerRequest.setBackchannelUserCodeParameter(true);
+
+        RegisterClient registerClient = new RegisterClient(registrationEndpoint);
+        registerClient.setRequest(registerRequest);
+        RegisterResponse registerResponse = registerClient.exec();
+
+        showClient(registerClient);
+        assertEquals(registerResponse.getStatus(), 200, "Unexpected response code: " + registerResponse.getEntity());
+        assertNotNull(registerResponse.getClientId());
+        assertNotNull(registerResponse.getClientSecret());
+        assertNotNull(registerResponse.getRegistrationAccessToken());
+        assertNotNull(registerResponse.getClientSecretExpiresAt());
+
+        assertTrue(registerResponse.getClaims().containsKey(BACKCHANNEL_TOKEN_DELIVERY_MODE.toString()));
+        assertTrue(registerResponse.getClaims().containsKey(BACKCHANNEL_AUTHENTICATION_REQUEST_SIGNING_ALG.toString()));
+        assertTrue(registerResponse.getClaims().containsKey(BACKCHANNEL_USER_CODE_PARAMETER.toString()));
+        assertTrue(registerResponse.getClaims().containsKey(BACKCHANNEL_CLIENT_NOTIFICATION_ENDPOINT.toString()));
+        assertEquals(registerResponse.getClaims().get(BACKCHANNEL_TOKEN_DELIVERY_MODE.toString()), BackchannelTokenDeliveryMode.PING.getValue());
+        assertEquals(registerResponse.getClaims().get(BACKCHANNEL_AUTHENTICATION_REQUEST_SIGNING_ALG.toString()), AsymmetricSignatureAlgorithm.RS256.getValue());
+        assertEquals(registerResponse.getClaims().get(BACKCHANNEL_USER_CODE_PARAMETER.toString()), new Boolean(true).toString());
+
+        return registerResponse;
+    }
+
+    public String requestBackchannelAuthentication(
+            final String userInum, final String clientId, final String clientSecret, final String backchannelUserCode) throws Exception {
+        // Authentication Request
+        String bindingMessage = RandomStringUtils.randomAlphanumeric(6);
+        String clientNotificationToken = UUID.randomUUID().toString();
+
+        BackchannelAuthenticationRequest backchannelAuthenticationRequest = new BackchannelAuthenticationRequest();
+        backchannelAuthenticationRequest.setScope(Arrays.asList("openid", "profile", "email", "address", "phone"));
+        backchannelAuthenticationRequest.setLoginHint(userInum);
+        backchannelAuthenticationRequest.setClientNotificationToken(clientNotificationToken);
+        backchannelAuthenticationRequest.setUserCode(backchannelUserCode);
+        backchannelAuthenticationRequest.setRequestedExpiry(1200);
+        backchannelAuthenticationRequest.setAcrValues(Arrays.asList("auth_ldap_server", "basic"));
+        backchannelAuthenticationRequest.setBindingMessage(bindingMessage);
+        backchannelAuthenticationRequest.setAuthUsername(clientId);
+        backchannelAuthenticationRequest.setAuthPassword(clientSecret);
+
+        BackchannelAuthenticationClient backchannelAuthenticationClient = new BackchannelAuthenticationClient(backchannelAuthenticationEndpoint);
+        backchannelAuthenticationClient.setRequest(backchannelAuthenticationRequest);
+        BackchannelAuthenticationResponse backchannelAuthenticationResponse = backchannelAuthenticationClient.exec();
+
+        showClient(backchannelAuthenticationClient);
+        assertEquals(backchannelAuthenticationResponse.getStatus(), 200, "Unexpected response code: " + backchannelAuthenticationResponse.getEntity());
+        assertNotNull(backchannelAuthenticationResponse.getAuthReqId());
+        assertNotNull(backchannelAuthenticationResponse.getExpiresIn());
+        assertNotNull(backchannelAuthenticationResponse.getInterval()); // This parameter will only be present if the Client is registered to use the Poll or Ping modes.
+
+        String authReqId = backchannelAuthenticationResponse.getAuthReqId();
+
+        // 3. Token Request Using CIBA Grant Type
+        TokenResponse tokenResponse = null;
+        int pollCount = 0;
+        do {
+            Thread.sleep(5000);
+
+            TokenRequest tokenRequest = new TokenRequest(GrantType.CIBA);
+            tokenRequest.setAuthUsername(clientId);
+            tokenRequest.setAuthPassword(clientSecret);
+            tokenRequest.setAuthReqId(authReqId);
+
+            TokenClient tokenClient = new TokenClient(tokenEndpoint);
+            tokenClient.setRequest(tokenRequest);
+            tokenResponse = tokenClient.exec();
+
+            showClient(tokenClient);
+            pollCount++;
+        } while (tokenResponse.getStatus() == 400 && pollCount < 5);
+
+        assertEquals(tokenResponse.getStatus(), 200, "Unexpected response code: " + tokenResponse.getStatus());
+        assertNotNull(tokenResponse.getEntity(), "The entity is null");
+        assertNotNull(tokenResponse.getAccessToken(), "The access token is null");
+        assertNotNull(tokenResponse.getTokenType(), "The token type is null");
+
+        String accessToken = tokenResponse.getAccessToken();
+        String idToken = tokenResponse.getIdToken();
+
+        // 4. Request user info
+        UserInfoClient userInfoClient = new UserInfoClient(userInfoEndpoint);
+        UserInfoResponse userInfoResponse = userInfoClient.execUserInfo(accessToken);
+
+        showClient(userInfoClient);
+        assertEquals(userInfoResponse.getStatus(), 200, "Unexpected response code: " + userInfoResponse.getStatus());
+        assertNotNull(userInfoResponse.getClaim(JwtClaimName.SUBJECT_IDENTIFIER));
+        assertNotNull(userInfoResponse.getClaim(JwtClaimName.WEBSITE));
+        assertNotNull(userInfoResponse.getClaim(JwtClaimName.ZONEINFO));
+        assertNotNull(userInfoResponse.getClaim(JwtClaimName.ADDRESS));
+        assertNotNull(userInfoResponse.getClaim(JwtClaimName.BIRTHDATE));
+        assertNotNull(userInfoResponse.getClaim(JwtClaimName.EMAIL_VERIFIED));
+        assertNotNull(userInfoResponse.getClaim(JwtClaimName.GENDER));
+        assertNotNull(userInfoResponse.getClaim(JwtClaimName.PROFILE));
+        assertNotNull(userInfoResponse.getClaim(JwtClaimName.PHONE_NUMBER_VERIFIED));
+        assertNotNull(userInfoResponse.getClaim(JwtClaimName.PREFERRED_USERNAME));
+        assertNotNull(userInfoResponse.getClaim(JwtClaimName.GIVEN_NAME));
+        assertNotNull(userInfoResponse.getClaim(JwtClaimName.MIDDLE_NAME));
+        assertNotNull(userInfoResponse.getClaim(JwtClaimName.LOCALE));
+        assertNotNull(userInfoResponse.getClaim(JwtClaimName.PICTURE));
+        assertNotNull(userInfoResponse.getClaim(JwtClaimName.UPDATED_AT));
+        assertNotNull(userInfoResponse.getClaim(JwtClaimName.NAME));
+        assertNotNull(userInfoResponse.getClaim(JwtClaimName.NICKNAME));
+        assertNotNull(userInfoResponse.getClaim(JwtClaimName.PHONE_NUMBER));
+        assertNotNull(userInfoResponse.getClaim(JwtClaimName.FAMILY_NAME));
+        assertNotNull(userInfoResponse.getClaim(JwtClaimName.EMAIL));
+
+        // Validate id_token
+        Jwt jwt = Jwt.parse(idToken);
+        assertNotNull(jwt.getHeader().getClaimAsString(JwtHeaderName.TYPE));
+        assertNotNull(jwt.getHeader().getClaimAsString(JwtHeaderName.ALGORITHM));
+        assertNotNull(jwt.getClaims().getClaimAsString(JwtClaimName.SUBJECT_IDENTIFIER));
+        assertNotNull(jwt.getClaims().getClaimAsString(JwtClaimName.ISSUER));
+        assertNotNull(jwt.getClaims().getClaimAsString(JwtClaimName.AUDIENCE));
+        assertNotNull(jwt.getClaims().getClaimAsString(JwtClaimName.EXPIRATION_TIME));
+        assertNotNull(jwt.getClaims().getClaimAsString(JwtClaimName.ISSUED_AT));
+        assertNotNull(jwt.getClaims().getClaimAsString(JwtClaimName.SUBJECT_IDENTIFIER));
+
+        RSAPublicKey publicKey = JwkClient.getRSAPublicKey(
+                jwksUri,
+                jwt.getHeader().getClaimAsString(JwtHeaderName.KEY_ID));
+        RSASigner rsaSigner = new RSASigner(SignatureAlgorithm.RS256, publicKey);
+
+        assertTrue(rsaSigner.validate(jwt));
+
+        String sub = jwt.getClaims().getClaimAsString(JwtClaimName.SUBJECT_IDENTIFIER);
+
+        return sub;
+    }
+
+    @Parameters({"clientJwksUri", "backchannelClientNotificationEndpoint", "backchannelUserCode",
+            "RS256_keyId", "dnName", "keyStoreFile", "keyStoreSecret"})
+    @Test(dependsOnMethods = "idTokenHintRS256")
+    public void backchannelTokenDeliveryModePingIdTokenHintRS256(
+            final String clientJwksUri, final String backchannelClientNotificationEndpoint, final String backchannelUserCode,
+            final String keyId, final String dnName, final String keyStoreFile, final String keyStoreSecret) throws Exception {
+        showTitle("backchannelTokenDeliveryModePingIdTokenHintRS256");
+
+        // 1. Dynamic Client Registration
+        RegisterRequest registerRequest = new RegisterRequest(ApplicationType.WEB, "oxAuth test app", null);
+        registerRequest.setJwksUri(clientJwksUri);
+        registerRequest.setGrantTypes(Arrays.asList(GrantType.CIBA));
+
+        registerRequest.setTokenEndpointAuthMethod(AuthenticationMethod.PRIVATE_KEY_JWT);
+        registerRequest.setTokenEndpointAuthSigningAlg(SignatureAlgorithm.RS256);
+        registerRequest.setBackchannelTokenDeliveryMode(BackchannelTokenDeliveryMode.PING);
+        registerRequest.setBackchannelClientNotificationEndpoint(backchannelClientNotificationEndpoint);
+        registerRequest.setBackchannelAuthenticationRequestSigningAlg(AsymmetricSignatureAlgorithm.RS256);
+        registerRequest.setBackchannelUserCodeParameter(true);
+
+        RegisterClient registerClient = new RegisterClient(registrationEndpoint);
+        registerClient.setRequest(registerRequest);
+        RegisterResponse registerResponse = registerClient.exec();
+
+        showClient(registerClient);
+        assertEquals(registerResponse.getStatus(), 200, "Unexpected response code: " + registerResponse.getEntity());
+        assertNotNull(registerResponse.getClientId());
+        assertNotNull(registerResponse.getClientSecret());
+        assertNotNull(registerResponse.getRegistrationAccessToken());
+        assertNotNull(registerResponse.getClientSecretExpiresAt());
+
+        assertTrue(registerResponse.getClaims().containsKey(BACKCHANNEL_TOKEN_DELIVERY_MODE.toString()));
+        assertTrue(registerResponse.getClaims().containsKey(BACKCHANNEL_AUTHENTICATION_REQUEST_SIGNING_ALG.toString()));
+        assertTrue(registerResponse.getClaims().containsKey(BACKCHANNEL_USER_CODE_PARAMETER.toString()));
+        assertTrue(registerResponse.getClaims().containsKey(BACKCHANNEL_CLIENT_NOTIFICATION_ENDPOINT.toString()));
+        assertEquals(registerResponse.getClaims().get(BACKCHANNEL_TOKEN_DELIVERY_MODE.toString()), BackchannelTokenDeliveryMode.PING.getValue());
+        assertEquals(registerResponse.getClaims().get(BACKCHANNEL_AUTHENTICATION_REQUEST_SIGNING_ALG.toString()), AsymmetricSignatureAlgorithm.RS256.getValue());
+        assertEquals(registerResponse.getClaims().get(BACKCHANNEL_USER_CODE_PARAMETER.toString()), new Boolean(true).toString());
+
+        String clientId = registerResponse.getClientId();
+
+        // 2. Authentication Request
+        OxAuthCryptoProvider cryptoProvider = new OxAuthCryptoProvider(keyStoreFile, keyStoreSecret, dnName);
+        String clientNotificationToken = UUID.randomUUID().toString();
+
+        BackchannelAuthenticationRequest backchannelAuthenticationRequest = new BackchannelAuthenticationRequest();
+        backchannelAuthenticationRequest.setScope(Arrays.asList("openid"));
+        backchannelAuthenticationRequest.setIdTokenHint(idTokenHintRS256);
+        backchannelAuthenticationRequest.setClientNotificationToken(clientNotificationToken);
+        backchannelAuthenticationRequest.setUserCode(backchannelUserCode);
+        backchannelAuthenticationRequest.setRequestedExpiry(1200);
+        backchannelAuthenticationRequest.setAuthenticationMethod(AuthenticationMethod.PRIVATE_KEY_JWT);
+        backchannelAuthenticationRequest.setAlgorithm(SignatureAlgorithm.RS256);
+        backchannelAuthenticationRequest.setCryptoProvider(cryptoProvider);
+        backchannelAuthenticationRequest.setKeyId(keyId);
+        backchannelAuthenticationRequest.setAudience(tokenEndpoint);
+        backchannelAuthenticationRequest.setAuthUsername(clientId);
+
+        BackchannelAuthenticationClient backchannelAuthenticationClient = new BackchannelAuthenticationClient(backchannelAuthenticationEndpoint);
+        backchannelAuthenticationClient.setRequest(backchannelAuthenticationRequest);
+        BackchannelAuthenticationResponse backchannelAuthenticationResponse = backchannelAuthenticationClient.exec();
+
+        showClient(backchannelAuthenticationClient);
+        assertEquals(backchannelAuthenticationResponse.getStatus(), 200, "Unexpected response code: " + backchannelAuthenticationResponse.getEntity());
+        assertNotNull(backchannelAuthenticationResponse.getAuthReqId());
+        assertNotNull(backchannelAuthenticationResponse.getExpiresIn());
+        assertNotNull(backchannelAuthenticationResponse.getInterval()); // This parameter will only be present if the Client is registered to use the Poll or Ping modes.
+    }
+
+    @Parameters({"clientJwksUri", "backchannelClientNotificationEndpoint", "backchannelUserCode",
+            "RS384_keyId", "dnName", "keyStoreFile", "keyStoreSecret"})
+    @Test(dependsOnMethods = "idTokenHintRS384")
+    public void backchannelTokenDeliveryModePingIdTokenHintRS384(
+            final String clientJwksUri, final String backchannelClientNotificationEndpoint, final String backchannelUserCode,
+            final String keyId, final String dnName, final String keyStoreFile, final String keyStoreSecret) throws Exception {
+        showTitle("backchannelTokenDeliveryModePingIdTokenHintRS384");
+
+        // 1. Dynamic Client Registration
+        RegisterRequest registerRequest = new RegisterRequest(ApplicationType.WEB, "oxAuth test app", null);
+        registerRequest.setJwksUri(clientJwksUri);
+        registerRequest.setGrantTypes(Arrays.asList(GrantType.CIBA));
+
+        registerRequest.setTokenEndpointAuthMethod(AuthenticationMethod.PRIVATE_KEY_JWT);
+        registerRequest.setTokenEndpointAuthSigningAlg(SignatureAlgorithm.RS384);
+        registerRequest.setBackchannelTokenDeliveryMode(BackchannelTokenDeliveryMode.PING);
+        registerRequest.setBackchannelClientNotificationEndpoint(backchannelClientNotificationEndpoint);
+        registerRequest.setBackchannelAuthenticationRequestSigningAlg(AsymmetricSignatureAlgorithm.RS384);
+        registerRequest.setBackchannelUserCodeParameter(true);
+
+        RegisterClient registerClient = new RegisterClient(registrationEndpoint);
+        registerClient.setRequest(registerRequest);
+        RegisterResponse registerResponse = registerClient.exec();
+
+        showClient(registerClient);
+        assertEquals(registerResponse.getStatus(), 200, "Unexpected response code: " + registerResponse.getEntity());
+        assertNotNull(registerResponse.getClientId());
+        assertNotNull(registerResponse.getClientSecret());
+        assertNotNull(registerResponse.getRegistrationAccessToken());
+        assertNotNull(registerResponse.getClientSecretExpiresAt());
+
+        assertTrue(registerResponse.getClaims().containsKey(BACKCHANNEL_TOKEN_DELIVERY_MODE.toString()));
+        assertTrue(registerResponse.getClaims().containsKey(BACKCHANNEL_AUTHENTICATION_REQUEST_SIGNING_ALG.toString()));
+        assertTrue(registerResponse.getClaims().containsKey(BACKCHANNEL_USER_CODE_PARAMETER.toString()));
+        assertTrue(registerResponse.getClaims().containsKey(BACKCHANNEL_CLIENT_NOTIFICATION_ENDPOINT.toString()));
+        assertEquals(registerResponse.getClaims().get(BACKCHANNEL_TOKEN_DELIVERY_MODE.toString()), BackchannelTokenDeliveryMode.PING.getValue());
+        assertEquals(registerResponse.getClaims().get(BACKCHANNEL_AUTHENTICATION_REQUEST_SIGNING_ALG.toString()), AsymmetricSignatureAlgorithm.RS384.getValue());
+        assertEquals(registerResponse.getClaims().get(BACKCHANNEL_USER_CODE_PARAMETER.toString()), new Boolean(true).toString());
+
+        String clientId = registerResponse.getClientId();
+
+        // 2. Authentication Request
+        OxAuthCryptoProvider cryptoProvider = new OxAuthCryptoProvider(keyStoreFile, keyStoreSecret, dnName);
+        String clientNotificationToken = UUID.randomUUID().toString();
+
+        BackchannelAuthenticationRequest backchannelAuthenticationRequest = new BackchannelAuthenticationRequest();
+        backchannelAuthenticationRequest.setScope(Arrays.asList("openid"));
+        backchannelAuthenticationRequest.setIdTokenHint(idTokenHintRS384);
+        backchannelAuthenticationRequest.setClientNotificationToken(clientNotificationToken);
+        backchannelAuthenticationRequest.setUserCode(backchannelUserCode);
+        backchannelAuthenticationRequest.setRequestedExpiry(1200);
+        backchannelAuthenticationRequest.setAuthenticationMethod(AuthenticationMethod.PRIVATE_KEY_JWT);
+        backchannelAuthenticationRequest.setAlgorithm(SignatureAlgorithm.RS384);
+        backchannelAuthenticationRequest.setCryptoProvider(cryptoProvider);
+        backchannelAuthenticationRequest.setKeyId(keyId);
+        backchannelAuthenticationRequest.setAudience(tokenEndpoint);
+        backchannelAuthenticationRequest.setAuthUsername(clientId);
+
+        BackchannelAuthenticationClient backchannelAuthenticationClient = new BackchannelAuthenticationClient(backchannelAuthenticationEndpoint);
+        backchannelAuthenticationClient.setRequest(backchannelAuthenticationRequest);
+        BackchannelAuthenticationResponse backchannelAuthenticationResponse = backchannelAuthenticationClient.exec();
+
+        showClient(backchannelAuthenticationClient);
+        assertEquals(backchannelAuthenticationResponse.getStatus(), 200, "Unexpected response code: " + backchannelAuthenticationResponse.getEntity());
+        assertNotNull(backchannelAuthenticationResponse.getAuthReqId());
+        assertNotNull(backchannelAuthenticationResponse.getExpiresIn());
+        assertNotNull(backchannelAuthenticationResponse.getInterval()); // This parameter will only be present if the Client is registered to use the Poll or Ping modes.
+    }
+
+    @Parameters({"clientJwksUri", "backchannelClientNotificationEndpoint", "backchannelUserCode",
+            "RS512_keyId", "dnName", "keyStoreFile", "keyStoreSecret"})
+    @Test(dependsOnMethods = "idTokenHintRS512")
+    public void backchannelTokenDeliveryModePingIdTokenHintRS512(
+            final String clientJwksUri, final String backchannelClientNotificationEndpoint, final String backchannelUserCode,
+            final String keyId, final String dnName, final String keyStoreFile, final String keyStoreSecret) throws Exception {
+        showTitle("backchannelTokenDeliveryModePingIdTokenHintRS512");
+
+        // 1. Dynamic Client Registration
+        RegisterRequest registerRequest = new RegisterRequest(ApplicationType.WEB, "oxAuth test app", null);
+        registerRequest.setJwksUri(clientJwksUri);
+        registerRequest.setGrantTypes(Arrays.asList(GrantType.CIBA));
+
+        registerRequest.setTokenEndpointAuthMethod(AuthenticationMethod.PRIVATE_KEY_JWT);
+        registerRequest.setTokenEndpointAuthSigningAlg(SignatureAlgorithm.RS512);
+        registerRequest.setBackchannelTokenDeliveryMode(BackchannelTokenDeliveryMode.PING);
+        registerRequest.setBackchannelClientNotificationEndpoint(backchannelClientNotificationEndpoint);
+        registerRequest.setBackchannelAuthenticationRequestSigningAlg(AsymmetricSignatureAlgorithm.RS512);
+        registerRequest.setBackchannelUserCodeParameter(true);
+
+        RegisterClient registerClient = new RegisterClient(registrationEndpoint);
+        registerClient.setRequest(registerRequest);
+        RegisterResponse registerResponse = registerClient.exec();
+
+        showClient(registerClient);
+        assertEquals(registerResponse.getStatus(), 200, "Unexpected response code: " + registerResponse.getEntity());
+        assertNotNull(registerResponse.getClientId());
+        assertNotNull(registerResponse.getClientSecret());
+        assertNotNull(registerResponse.getRegistrationAccessToken());
+        assertNotNull(registerResponse.getClientSecretExpiresAt());
+
+        assertTrue(registerResponse.getClaims().containsKey(BACKCHANNEL_TOKEN_DELIVERY_MODE.toString()));
+        assertTrue(registerResponse.getClaims().containsKey(BACKCHANNEL_AUTHENTICATION_REQUEST_SIGNING_ALG.toString()));
+        assertTrue(registerResponse.getClaims().containsKey(BACKCHANNEL_USER_CODE_PARAMETER.toString()));
+        assertTrue(registerResponse.getClaims().containsKey(BACKCHANNEL_CLIENT_NOTIFICATION_ENDPOINT.toString()));
+        assertEquals(registerResponse.getClaims().get(BACKCHANNEL_TOKEN_DELIVERY_MODE.toString()), BackchannelTokenDeliveryMode.PING.getValue());
+        assertEquals(registerResponse.getClaims().get(BACKCHANNEL_AUTHENTICATION_REQUEST_SIGNING_ALG.toString()), AsymmetricSignatureAlgorithm.RS512.getValue());
+        assertEquals(registerResponse.getClaims().get(BACKCHANNEL_USER_CODE_PARAMETER.toString()), new Boolean(true).toString());
+
+        String clientId = registerResponse.getClientId();
+
+        // 2. Authentication Request
+        OxAuthCryptoProvider cryptoProvider = new OxAuthCryptoProvider(keyStoreFile, keyStoreSecret, dnName);
+        String clientNotificationToken = UUID.randomUUID().toString();
+
+        BackchannelAuthenticationRequest backchannelAuthenticationRequest = new BackchannelAuthenticationRequest();
+        backchannelAuthenticationRequest.setScope(Arrays.asList("openid"));
+        backchannelAuthenticationRequest.setIdTokenHint(idTokenHintRS512);
+        backchannelAuthenticationRequest.setClientNotificationToken(clientNotificationToken);
+        backchannelAuthenticationRequest.setUserCode(backchannelUserCode);
+        backchannelAuthenticationRequest.setRequestedExpiry(1200);
+        backchannelAuthenticationRequest.setAuthenticationMethod(AuthenticationMethod.PRIVATE_KEY_JWT);
+        backchannelAuthenticationRequest.setAlgorithm(SignatureAlgorithm.RS512);
+        backchannelAuthenticationRequest.setCryptoProvider(cryptoProvider);
+        backchannelAuthenticationRequest.setKeyId(keyId);
+        backchannelAuthenticationRequest.setAudience(tokenEndpoint);
+        backchannelAuthenticationRequest.setAuthUsername(clientId);
+
+        BackchannelAuthenticationClient backchannelAuthenticationClient = new BackchannelAuthenticationClient(backchannelAuthenticationEndpoint);
+        backchannelAuthenticationClient.setRequest(backchannelAuthenticationRequest);
+        BackchannelAuthenticationResponse backchannelAuthenticationResponse = backchannelAuthenticationClient.exec();
+
+        showClient(backchannelAuthenticationClient);
+        assertEquals(backchannelAuthenticationResponse.getStatus(), 200, "Unexpected response code: " + backchannelAuthenticationResponse.getEntity());
+        assertNotNull(backchannelAuthenticationResponse.getAuthReqId());
+        assertNotNull(backchannelAuthenticationResponse.getExpiresIn());
+        assertNotNull(backchannelAuthenticationResponse.getInterval()); // This parameter will only be present if the Client is registered to use the Poll or Ping modes.
+    }
+
+    @Parameters({"clientJwksUri", "backchannelClientNotificationEndpoint", "backchannelUserCode",
+            "ES256_keyId", "dnName", "keyStoreFile", "keyStoreSecret"})
+    @Test(dependsOnMethods = "idTokenHintES256")
+    public void backchannelTokenDeliveryModePingIdTokenHintES256(
+            final String clientJwksUri, final String backchannelClientNotificationEndpoint, final String backchannelUserCode,
+            final String keyId, final String dnName, final String keyStoreFile, final String keyStoreSecret) throws Exception {
+        showTitle("backchannelTokenDeliveryModePingIdTokenHintES256");
+
+        // 1. Dynamic Client Registration
+        RegisterRequest registerRequest = new RegisterRequest(ApplicationType.WEB, "oxAuth test app", null);
+        registerRequest.setJwksUri(clientJwksUri);
+        registerRequest.setGrantTypes(Arrays.asList(GrantType.CIBA));
+
+        registerRequest.setTokenEndpointAuthMethod(AuthenticationMethod.PRIVATE_KEY_JWT);
+        registerRequest.setTokenEndpointAuthSigningAlg(SignatureAlgorithm.ES256);
+        registerRequest.setBackchannelTokenDeliveryMode(BackchannelTokenDeliveryMode.PING);
+        registerRequest.setBackchannelClientNotificationEndpoint(backchannelClientNotificationEndpoint);
+        registerRequest.setBackchannelAuthenticationRequestSigningAlg(AsymmetricSignatureAlgorithm.ES256);
+        registerRequest.setBackchannelUserCodeParameter(true);
+
+        RegisterClient registerClient = new RegisterClient(registrationEndpoint);
+        registerClient.setRequest(registerRequest);
+        RegisterResponse registerResponse = registerClient.exec();
+
+        showClient(registerClient);
+        assertEquals(registerResponse.getStatus(), 200, "Unexpected response code: " + registerResponse.getEntity());
+        assertNotNull(registerResponse.getClientId());
+        assertNotNull(registerResponse.getClientSecret());
+        assertNotNull(registerResponse.getRegistrationAccessToken());
+        assertNotNull(registerResponse.getClientSecretExpiresAt());
+
+        assertTrue(registerResponse.getClaims().containsKey(BACKCHANNEL_TOKEN_DELIVERY_MODE.toString()));
+        assertTrue(registerResponse.getClaims().containsKey(BACKCHANNEL_AUTHENTICATION_REQUEST_SIGNING_ALG.toString()));
+        assertTrue(registerResponse.getClaims().containsKey(BACKCHANNEL_USER_CODE_PARAMETER.toString()));
+        assertTrue(registerResponse.getClaims().containsKey(BACKCHANNEL_CLIENT_NOTIFICATION_ENDPOINT.toString()));
+        assertEquals(registerResponse.getClaims().get(BACKCHANNEL_TOKEN_DELIVERY_MODE.toString()), BackchannelTokenDeliveryMode.PING.getValue());
+        assertEquals(registerResponse.getClaims().get(BACKCHANNEL_AUTHENTICATION_REQUEST_SIGNING_ALG.toString()), AsymmetricSignatureAlgorithm.ES256.getValue());
+        assertEquals(registerResponse.getClaims().get(BACKCHANNEL_USER_CODE_PARAMETER.toString()), new Boolean(true).toString());
+
+        String clientId = registerResponse.getClientId();
+
+        // 2. Authentication Request
+        OxAuthCryptoProvider cryptoProvider = new OxAuthCryptoProvider(keyStoreFile, keyStoreSecret, dnName);
+        String clientNotificationToken = UUID.randomUUID().toString();
+
+        BackchannelAuthenticationRequest backchannelAuthenticationRequest = new BackchannelAuthenticationRequest();
+        backchannelAuthenticationRequest.setScope(Arrays.asList("openid"));
+        backchannelAuthenticationRequest.setIdTokenHint(idTokenHintES256);
+        backchannelAuthenticationRequest.setClientNotificationToken(clientNotificationToken);
+        backchannelAuthenticationRequest.setUserCode(backchannelUserCode);
+        backchannelAuthenticationRequest.setRequestedExpiry(1200);
+        backchannelAuthenticationRequest.setAuthenticationMethod(AuthenticationMethod.PRIVATE_KEY_JWT);
+        backchannelAuthenticationRequest.setAlgorithm(SignatureAlgorithm.ES256);
+        backchannelAuthenticationRequest.setCryptoProvider(cryptoProvider);
+        backchannelAuthenticationRequest.setKeyId(keyId);
+        backchannelAuthenticationRequest.setAudience(tokenEndpoint);
+        backchannelAuthenticationRequest.setAuthUsername(clientId);
+
+        BackchannelAuthenticationClient backchannelAuthenticationClient = new BackchannelAuthenticationClient(backchannelAuthenticationEndpoint);
+        backchannelAuthenticationClient.setRequest(backchannelAuthenticationRequest);
+        BackchannelAuthenticationResponse backchannelAuthenticationResponse = backchannelAuthenticationClient.exec();
+
+        showClient(backchannelAuthenticationClient);
+        assertEquals(backchannelAuthenticationResponse.getStatus(), 200, "Unexpected response code: " + backchannelAuthenticationResponse.getEntity());
+        assertNotNull(backchannelAuthenticationResponse.getAuthReqId());
+        assertNotNull(backchannelAuthenticationResponse.getExpiresIn());
+        assertNotNull(backchannelAuthenticationResponse.getInterval()); // This parameter will only be present if the Client is registered to use the Poll or Ping modes.
+    }
+
+    @Parameters({"clientJwksUri", "backchannelClientNotificationEndpoint", "backchannelUserCode",
+            "ES384_keyId", "dnName", "keyStoreFile", "keyStoreSecret"})
+    @Test(dependsOnMethods = "idTokenHintES384")
+    public void backchannelTokenDeliveryModePingIdTokenHintES384(
+            final String clientJwksUri, final String backchannelClientNotificationEndpoint, final String backchannelUserCode,
+            final String keyId, final String dnName, final String keyStoreFile, final String keyStoreSecret) throws Exception {
+        showTitle("backchannelTokenDeliveryModePingIdTokenHintES384");
+
+        // 1. Dynamic Client Registration
+        RegisterRequest registerRequest = new RegisterRequest(ApplicationType.WEB, "oxAuth test app", null);
+        registerRequest.setJwksUri(clientJwksUri);
+        registerRequest.setGrantTypes(Arrays.asList(GrantType.CIBA));
+
+        registerRequest.setTokenEndpointAuthMethod(AuthenticationMethod.PRIVATE_KEY_JWT);
+        registerRequest.setTokenEndpointAuthSigningAlg(SignatureAlgorithm.ES384);
+        registerRequest.setBackchannelTokenDeliveryMode(BackchannelTokenDeliveryMode.PING);
+        registerRequest.setBackchannelClientNotificationEndpoint(backchannelClientNotificationEndpoint);
+        registerRequest.setBackchannelAuthenticationRequestSigningAlg(AsymmetricSignatureAlgorithm.ES384);
+        registerRequest.setBackchannelUserCodeParameter(true);
+
+        RegisterClient registerClient = new RegisterClient(registrationEndpoint);
+        registerClient.setRequest(registerRequest);
+        RegisterResponse registerResponse = registerClient.exec();
+
+        showClient(registerClient);
+        assertEquals(registerResponse.getStatus(), 200, "Unexpected response code: " + registerResponse.getEntity());
+        assertNotNull(registerResponse.getClientId());
+        assertNotNull(registerResponse.getClientSecret());
+        assertNotNull(registerResponse.getRegistrationAccessToken());
+        assertNotNull(registerResponse.getClientSecretExpiresAt());
+
+        assertTrue(registerResponse.getClaims().containsKey(BACKCHANNEL_TOKEN_DELIVERY_MODE.toString()));
+        assertTrue(registerResponse.getClaims().containsKey(BACKCHANNEL_AUTHENTICATION_REQUEST_SIGNING_ALG.toString()));
+        assertTrue(registerResponse.getClaims().containsKey(BACKCHANNEL_USER_CODE_PARAMETER.toString()));
+        assertTrue(registerResponse.getClaims().containsKey(BACKCHANNEL_CLIENT_NOTIFICATION_ENDPOINT.toString()));
+        assertEquals(registerResponse.getClaims().get(BACKCHANNEL_TOKEN_DELIVERY_MODE.toString()), BackchannelTokenDeliveryMode.PING.getValue());
+        assertEquals(registerResponse.getClaims().get(BACKCHANNEL_AUTHENTICATION_REQUEST_SIGNING_ALG.toString()), AsymmetricSignatureAlgorithm.ES384.getValue());
+        assertEquals(registerResponse.getClaims().get(BACKCHANNEL_USER_CODE_PARAMETER.toString()), new Boolean(true).toString());
+
+        String clientId = registerResponse.getClientId();
+
+        // 2. Authentication Request
+        OxAuthCryptoProvider cryptoProvider = new OxAuthCryptoProvider(keyStoreFile, keyStoreSecret, dnName);
+        String clientNotificationToken = UUID.randomUUID().toString();
+
+        BackchannelAuthenticationRequest backchannelAuthenticationRequest = new BackchannelAuthenticationRequest();
+        backchannelAuthenticationRequest.setScope(Arrays.asList("openid"));
+        backchannelAuthenticationRequest.setIdTokenHint(idTokenHintES384);
+        backchannelAuthenticationRequest.setClientNotificationToken(clientNotificationToken);
+        backchannelAuthenticationRequest.setUserCode(backchannelUserCode);
+        backchannelAuthenticationRequest.setRequestedExpiry(1200);
+        backchannelAuthenticationRequest.setAuthenticationMethod(AuthenticationMethod.PRIVATE_KEY_JWT);
+        backchannelAuthenticationRequest.setAlgorithm(SignatureAlgorithm.ES384);
+        backchannelAuthenticationRequest.setCryptoProvider(cryptoProvider);
+        backchannelAuthenticationRequest.setKeyId(keyId);
+        backchannelAuthenticationRequest.setAudience(tokenEndpoint);
+        backchannelAuthenticationRequest.setAuthUsername(clientId);
+
+        BackchannelAuthenticationClient backchannelAuthenticationClient = new BackchannelAuthenticationClient(backchannelAuthenticationEndpoint);
+        backchannelAuthenticationClient.setRequest(backchannelAuthenticationRequest);
+        BackchannelAuthenticationResponse backchannelAuthenticationResponse = backchannelAuthenticationClient.exec();
+
+        showClient(backchannelAuthenticationClient);
+        assertEquals(backchannelAuthenticationResponse.getStatus(), 200, "Unexpected response code: " + backchannelAuthenticationResponse.getEntity());
+        assertNotNull(backchannelAuthenticationResponse.getAuthReqId());
+        assertNotNull(backchannelAuthenticationResponse.getExpiresIn());
+        assertNotNull(backchannelAuthenticationResponse.getInterval()); // This parameter will only be present if the Client is registered to use the Poll or Ping modes.
+    }
+
+    @Parameters({"clientJwksUri", "backchannelClientNotificationEndpoint", "backchannelUserCode",
+            "ES512_keyId", "dnName", "keyStoreFile", "keyStoreSecret"})
+    @Test(dependsOnMethods = "idTokenHintES512")
+    public void backchannelTokenDeliveryModePingIdTokenHintES512(
+            final String clientJwksUri, final String backchannelClientNotificationEndpoint, final String backchannelUserCode,
+            final String keyId, final String dnName, final String keyStoreFile, final String keyStoreSecret) throws Exception {
+        showTitle("backchannelTokenDeliveryModePingIdTokenHintES512");
+
+        // 1. Dynamic Client Registration
+        RegisterRequest registerRequest = new RegisterRequest(ApplicationType.WEB, "oxAuth test app", null);
+        registerRequest.setJwksUri(clientJwksUri);
+        registerRequest.setGrantTypes(Arrays.asList(GrantType.CIBA));
+
+        registerRequest.setTokenEndpointAuthMethod(AuthenticationMethod.PRIVATE_KEY_JWT);
+        registerRequest.setTokenEndpointAuthSigningAlg(SignatureAlgorithm.ES512);
+        registerRequest.setBackchannelTokenDeliveryMode(BackchannelTokenDeliveryMode.PING);
+        registerRequest.setBackchannelClientNotificationEndpoint(backchannelClientNotificationEndpoint);
+        registerRequest.setBackchannelAuthenticationRequestSigningAlg(AsymmetricSignatureAlgorithm.ES512);
+        registerRequest.setBackchannelUserCodeParameter(true);
+
+        RegisterClient registerClient = new RegisterClient(registrationEndpoint);
+        registerClient.setRequest(registerRequest);
+        RegisterResponse registerResponse = registerClient.exec();
+
+        showClient(registerClient);
+        assertEquals(registerResponse.getStatus(), 200, "Unexpected response code: " + registerResponse.getEntity());
+        assertNotNull(registerResponse.getClientId());
+        assertNotNull(registerResponse.getClientSecret());
+        assertNotNull(registerResponse.getRegistrationAccessToken());
+        assertNotNull(registerResponse.getClientSecretExpiresAt());
+
+        assertTrue(registerResponse.getClaims().containsKey(BACKCHANNEL_TOKEN_DELIVERY_MODE.toString()));
+        assertTrue(registerResponse.getClaims().containsKey(BACKCHANNEL_AUTHENTICATION_REQUEST_SIGNING_ALG.toString()));
+        assertTrue(registerResponse.getClaims().containsKey(BACKCHANNEL_USER_CODE_PARAMETER.toString()));
+        assertTrue(registerResponse.getClaims().containsKey(BACKCHANNEL_CLIENT_NOTIFICATION_ENDPOINT.toString()));
+        assertEquals(registerResponse.getClaims().get(BACKCHANNEL_TOKEN_DELIVERY_MODE.toString()), BackchannelTokenDeliveryMode.PING.getValue());
+        assertEquals(registerResponse.getClaims().get(BACKCHANNEL_AUTHENTICATION_REQUEST_SIGNING_ALG.toString()), AsymmetricSignatureAlgorithm.ES512.getValue());
+        assertEquals(registerResponse.getClaims().get(BACKCHANNEL_USER_CODE_PARAMETER.toString()), new Boolean(true).toString());
+
+        String clientId = registerResponse.getClientId();
+
+        // 2. Authentication Request
+        OxAuthCryptoProvider cryptoProvider = new OxAuthCryptoProvider(keyStoreFile, keyStoreSecret, dnName);
+        String clientNotificationToken = UUID.randomUUID().toString();
+
+        BackchannelAuthenticationRequest backchannelAuthenticationRequest = new BackchannelAuthenticationRequest();
+        backchannelAuthenticationRequest.setScope(Arrays.asList("openid"));
+        backchannelAuthenticationRequest.setIdTokenHint(idTokenHintES512);
+        backchannelAuthenticationRequest.setClientNotificationToken(clientNotificationToken);
+        backchannelAuthenticationRequest.setUserCode(backchannelUserCode);
+        backchannelAuthenticationRequest.setRequestedExpiry(1200);
+        backchannelAuthenticationRequest.setAuthenticationMethod(AuthenticationMethod.PRIVATE_KEY_JWT);
+        backchannelAuthenticationRequest.setAlgorithm(SignatureAlgorithm.ES512);
+        backchannelAuthenticationRequest.setCryptoProvider(cryptoProvider);
+        backchannelAuthenticationRequest.setKeyId(keyId);
+        backchannelAuthenticationRequest.setAudience(tokenEndpoint);
+        backchannelAuthenticationRequest.setAuthUsername(clientId);
+
+        BackchannelAuthenticationClient backchannelAuthenticationClient = new BackchannelAuthenticationClient(backchannelAuthenticationEndpoint);
+        backchannelAuthenticationClient.setRequest(backchannelAuthenticationRequest);
+        BackchannelAuthenticationResponse backchannelAuthenticationResponse = backchannelAuthenticationClient.exec();
+
+        showClient(backchannelAuthenticationClient);
+        assertEquals(backchannelAuthenticationResponse.getStatus(), 200, "Unexpected response code: " + backchannelAuthenticationResponse.getEntity());
+        assertNotNull(backchannelAuthenticationResponse.getAuthReqId());
+        assertNotNull(backchannelAuthenticationResponse.getExpiresIn());
+        assertNotNull(backchannelAuthenticationResponse.getInterval()); // This parameter will only be present if the Client is registered to use the Poll or Ping modes.
+    }
+
+    @Parameters({"clientJwksUri", "backchannelClientNotificationEndpoint", "backchannelUserCode",
+            "PS256_keyId", "dnName", "keyStoreFile", "keyStoreSecret"})
+    @Test(dependsOnMethods = "idTokenHintPS256")
+    public void backchannelTokenDeliveryModePingIdTokenHintPS256(
+            final String clientJwksUri, final String backchannelClientNotificationEndpoint, final String backchannelUserCode,
+            final String keyId, final String dnName, final String keyStoreFile, final String keyStoreSecret) throws Exception {
+        showTitle("backchannelTokenDeliveryModePingIdTokenHintPS256");
+
+        // 1. Dynamic Client Registration
+        RegisterRequest registerRequest = new RegisterRequest(ApplicationType.WEB, "oxAuth test app", null);
+        registerRequest.setJwksUri(clientJwksUri);
+        registerRequest.setGrantTypes(Arrays.asList(GrantType.CIBA));
+
+        registerRequest.setTokenEndpointAuthMethod(AuthenticationMethod.PRIVATE_KEY_JWT);
+        registerRequest.setTokenEndpointAuthSigningAlg(SignatureAlgorithm.PS256);
+        registerRequest.setBackchannelTokenDeliveryMode(BackchannelTokenDeliveryMode.PING);
+        registerRequest.setBackchannelClientNotificationEndpoint(backchannelClientNotificationEndpoint);
+        registerRequest.setBackchannelAuthenticationRequestSigningAlg(AsymmetricSignatureAlgorithm.PS256);
+        registerRequest.setBackchannelUserCodeParameter(true);
+
+        RegisterClient registerClient = new RegisterClient(registrationEndpoint);
+        registerClient.setRequest(registerRequest);
+        RegisterResponse registerResponse = registerClient.exec();
+
+        showClient(registerClient);
+        assertEquals(registerResponse.getStatus(), 200, "Unexpected response code: " + registerResponse.getEntity());
+        assertNotNull(registerResponse.getClientId());
+        assertNotNull(registerResponse.getClientSecret());
+        assertNotNull(registerResponse.getRegistrationAccessToken());
+        assertNotNull(registerResponse.getClientSecretExpiresAt());
+
+        assertTrue(registerResponse.getClaims().containsKey(BACKCHANNEL_TOKEN_DELIVERY_MODE.toString()));
+        assertTrue(registerResponse.getClaims().containsKey(BACKCHANNEL_AUTHENTICATION_REQUEST_SIGNING_ALG.toString()));
+        assertTrue(registerResponse.getClaims().containsKey(BACKCHANNEL_USER_CODE_PARAMETER.toString()));
+        assertTrue(registerResponse.getClaims().containsKey(BACKCHANNEL_CLIENT_NOTIFICATION_ENDPOINT.toString()));
+        assertEquals(registerResponse.getClaims().get(BACKCHANNEL_TOKEN_DELIVERY_MODE.toString()), BackchannelTokenDeliveryMode.PING.getValue());
+        assertEquals(registerResponse.getClaims().get(BACKCHANNEL_AUTHENTICATION_REQUEST_SIGNING_ALG.toString()), AsymmetricSignatureAlgorithm.PS256.getValue());
+        assertEquals(registerResponse.getClaims().get(BACKCHANNEL_USER_CODE_PARAMETER.toString()), new Boolean(true).toString());
+
+        String clientId = registerResponse.getClientId();
+
+        // 2. Authentication Request
+        OxAuthCryptoProvider cryptoProvider = new OxAuthCryptoProvider(keyStoreFile, keyStoreSecret, dnName);
+        String clientNotificationToken = UUID.randomUUID().toString();
+
+        BackchannelAuthenticationRequest backchannelAuthenticationRequest = new BackchannelAuthenticationRequest();
+        backchannelAuthenticationRequest.setScope(Arrays.asList("openid"));
+        backchannelAuthenticationRequest.setIdTokenHint(idTokenHintPS256);
+        backchannelAuthenticationRequest.setClientNotificationToken(clientNotificationToken);
+        backchannelAuthenticationRequest.setUserCode(backchannelUserCode);
+        backchannelAuthenticationRequest.setRequestedExpiry(1200);
+        backchannelAuthenticationRequest.setAuthenticationMethod(AuthenticationMethod.PRIVATE_KEY_JWT);
+        backchannelAuthenticationRequest.setAlgorithm(SignatureAlgorithm.PS256);
+        backchannelAuthenticationRequest.setCryptoProvider(cryptoProvider);
+        backchannelAuthenticationRequest.setKeyId(keyId);
+        backchannelAuthenticationRequest.setAudience(tokenEndpoint);
+        backchannelAuthenticationRequest.setAuthUsername(clientId);
+
+        BackchannelAuthenticationClient backchannelAuthenticationClient = new BackchannelAuthenticationClient(backchannelAuthenticationEndpoint);
+        backchannelAuthenticationClient.setRequest(backchannelAuthenticationRequest);
+        BackchannelAuthenticationResponse backchannelAuthenticationResponse = backchannelAuthenticationClient.exec();
+
+        showClient(backchannelAuthenticationClient);
+        assertEquals(backchannelAuthenticationResponse.getStatus(), 200, "Unexpected response code: " + backchannelAuthenticationResponse.getEntity());
+        assertNotNull(backchannelAuthenticationResponse.getAuthReqId());
+        assertNotNull(backchannelAuthenticationResponse.getExpiresIn());
+        assertNotNull(backchannelAuthenticationResponse.getInterval()); // This parameter will only be present if the Client is registered to use the Poll or Ping modes.
+    }
+
+    @Parameters({"clientJwksUri", "backchannelClientNotificationEndpoint", "backchannelUserCode",
+            "PS384_keyId", "dnName", "keyStoreFile", "keyStoreSecret"})
+    @Test(dependsOnMethods = "idTokenHintPS384")
+    public void backchannelTokenDeliveryModePingIdTokenHintPS384(
+            final String clientJwksUri, final String backchannelClientNotificationEndpoint, final String backchannelUserCode,
+            final String keyId, final String dnName, final String keyStoreFile, final String keyStoreSecret) throws Exception {
+        showTitle("backchannelTokenDeliveryModePingIdTokenHintPS384");
+
+        // 1. Dynamic Client Registration
+        RegisterRequest registerRequest = new RegisterRequest(ApplicationType.WEB, "oxAuth test app", null);
+        registerRequest.setJwksUri(clientJwksUri);
+        registerRequest.setGrantTypes(Arrays.asList(GrantType.CIBA));
+
+        registerRequest.setTokenEndpointAuthMethod(AuthenticationMethod.PRIVATE_KEY_JWT);
+        registerRequest.setTokenEndpointAuthSigningAlg(SignatureAlgorithm.PS384);
+        registerRequest.setBackchannelTokenDeliveryMode(BackchannelTokenDeliveryMode.PING);
+        registerRequest.setBackchannelClientNotificationEndpoint(backchannelClientNotificationEndpoint);
+        registerRequest.setBackchannelAuthenticationRequestSigningAlg(AsymmetricSignatureAlgorithm.PS384);
+        registerRequest.setBackchannelUserCodeParameter(true);
+
+        RegisterClient registerClient = new RegisterClient(registrationEndpoint);
+        registerClient.setRequest(registerRequest);
+        RegisterResponse registerResponse = registerClient.exec();
+
+        showClient(registerClient);
+        assertEquals(registerResponse.getStatus(), 200, "Unexpected response code: " + registerResponse.getEntity());
+        assertNotNull(registerResponse.getClientId());
+        assertNotNull(registerResponse.getClientSecret());
+        assertNotNull(registerResponse.getRegistrationAccessToken());
+        assertNotNull(registerResponse.getClientSecretExpiresAt());
+
+        assertTrue(registerResponse.getClaims().containsKey(BACKCHANNEL_TOKEN_DELIVERY_MODE.toString()));
+        assertTrue(registerResponse.getClaims().containsKey(BACKCHANNEL_AUTHENTICATION_REQUEST_SIGNING_ALG.toString()));
+        assertTrue(registerResponse.getClaims().containsKey(BACKCHANNEL_USER_CODE_PARAMETER.toString()));
+        assertTrue(registerResponse.getClaims().containsKey(BACKCHANNEL_CLIENT_NOTIFICATION_ENDPOINT.toString()));
+        assertEquals(registerResponse.getClaims().get(BACKCHANNEL_TOKEN_DELIVERY_MODE.toString()), BackchannelTokenDeliveryMode.PING.getValue());
+        assertEquals(registerResponse.getClaims().get(BACKCHANNEL_AUTHENTICATION_REQUEST_SIGNING_ALG.toString()), AsymmetricSignatureAlgorithm.PS384.getValue());
+        assertEquals(registerResponse.getClaims().get(BACKCHANNEL_USER_CODE_PARAMETER.toString()), new Boolean(true).toString());
+
+        String clientId = registerResponse.getClientId();
+
+        // 2. Authentication Request
+        OxAuthCryptoProvider cryptoProvider = new OxAuthCryptoProvider(keyStoreFile, keyStoreSecret, dnName);
+        String clientNotificationToken = UUID.randomUUID().toString();
+
+        BackchannelAuthenticationRequest backchannelAuthenticationRequest = new BackchannelAuthenticationRequest();
+        backchannelAuthenticationRequest.setScope(Arrays.asList("openid"));
+        backchannelAuthenticationRequest.setIdTokenHint(idTokenHintPS384);
+        backchannelAuthenticationRequest.setClientNotificationToken(clientNotificationToken);
+        backchannelAuthenticationRequest.setUserCode(backchannelUserCode);
+        backchannelAuthenticationRequest.setRequestedExpiry(1200);
+        backchannelAuthenticationRequest.setAuthenticationMethod(AuthenticationMethod.PRIVATE_KEY_JWT);
+        backchannelAuthenticationRequest.setAlgorithm(SignatureAlgorithm.PS384);
+        backchannelAuthenticationRequest.setCryptoProvider(cryptoProvider);
+        backchannelAuthenticationRequest.setKeyId(keyId);
+        backchannelAuthenticationRequest.setAudience(tokenEndpoint);
+        backchannelAuthenticationRequest.setAuthUsername(clientId);
+
+        BackchannelAuthenticationClient backchannelAuthenticationClient = new BackchannelAuthenticationClient(backchannelAuthenticationEndpoint);
+        backchannelAuthenticationClient.setRequest(backchannelAuthenticationRequest);
+        BackchannelAuthenticationResponse backchannelAuthenticationResponse = backchannelAuthenticationClient.exec();
+
+        showClient(backchannelAuthenticationClient);
+        assertEquals(backchannelAuthenticationResponse.getStatus(), 200, "Unexpected response code: " + backchannelAuthenticationResponse.getEntity());
+        assertNotNull(backchannelAuthenticationResponse.getAuthReqId());
+        assertNotNull(backchannelAuthenticationResponse.getExpiresIn());
+        assertNotNull(backchannelAuthenticationResponse.getInterval()); // This parameter will only be present if the Client is registered to use the Poll or Ping modes.
+    }
+
+    @Parameters({"clientJwksUri", "backchannelClientNotificationEndpoint", "backchannelUserCode",
+            "PS512_keyId", "dnName", "keyStoreFile", "keyStoreSecret"})
+    @Test(dependsOnMethods = "idTokenHintPS512")
+    public void backchannelTokenDeliveryModePingIdTokenHintPS512(
+            final String clientJwksUri, final String backchannelClientNotificationEndpoint, final String backchannelUserCode,
+            final String keyId, final String dnName, final String keyStoreFile, final String keyStoreSecret) throws Exception {
+        showTitle("backchannelTokenDeliveryModePingIdTokenHintPS512");
+
+        // 1. Dynamic Client Registration
+        RegisterRequest registerRequest = new RegisterRequest(ApplicationType.WEB, "oxAuth test app", null);
+        registerRequest.setJwksUri(clientJwksUri);
+        registerRequest.setGrantTypes(Arrays.asList(GrantType.CIBA));
+
+        registerRequest.setTokenEndpointAuthMethod(AuthenticationMethod.PRIVATE_KEY_JWT);
+        registerRequest.setTokenEndpointAuthSigningAlg(SignatureAlgorithm.PS512);
+        registerRequest.setBackchannelTokenDeliveryMode(BackchannelTokenDeliveryMode.PING);
+        registerRequest.setBackchannelClientNotificationEndpoint(backchannelClientNotificationEndpoint);
+        registerRequest.setBackchannelAuthenticationRequestSigningAlg(AsymmetricSignatureAlgorithm.PS512);
+        registerRequest.setBackchannelUserCodeParameter(true);
+
+        RegisterClient registerClient = new RegisterClient(registrationEndpoint);
+        registerClient.setRequest(registerRequest);
+        RegisterResponse registerResponse = registerClient.exec();
+
+        showClient(registerClient);
+        assertEquals(registerResponse.getStatus(), 200, "Unexpected response code: " + registerResponse.getEntity());
+        assertNotNull(registerResponse.getClientId());
+        assertNotNull(registerResponse.getClientSecret());
+        assertNotNull(registerResponse.getRegistrationAccessToken());
+        assertNotNull(registerResponse.getClientSecretExpiresAt());
+
+        assertTrue(registerResponse.getClaims().containsKey(BACKCHANNEL_TOKEN_DELIVERY_MODE.toString()));
+        assertTrue(registerResponse.getClaims().containsKey(BACKCHANNEL_AUTHENTICATION_REQUEST_SIGNING_ALG.toString()));
+        assertTrue(registerResponse.getClaims().containsKey(BACKCHANNEL_USER_CODE_PARAMETER.toString()));
+        assertTrue(registerResponse.getClaims().containsKey(BACKCHANNEL_CLIENT_NOTIFICATION_ENDPOINT.toString()));
+        assertEquals(registerResponse.getClaims().get(BACKCHANNEL_TOKEN_DELIVERY_MODE.toString()), BackchannelTokenDeliveryMode.PING.getValue());
+        assertEquals(registerResponse.getClaims().get(BACKCHANNEL_AUTHENTICATION_REQUEST_SIGNING_ALG.toString()), AsymmetricSignatureAlgorithm.PS512.getValue());
+        assertEquals(registerResponse.getClaims().get(BACKCHANNEL_USER_CODE_PARAMETER.toString()), new Boolean(true).toString());
+
+        String clientId = registerResponse.getClientId();
+
+        // 2. Authentication Request
+        OxAuthCryptoProvider cryptoProvider = new OxAuthCryptoProvider(keyStoreFile, keyStoreSecret, dnName);
+        String clientNotificationToken = UUID.randomUUID().toString();
+
+        BackchannelAuthenticationRequest backchannelAuthenticationRequest = new BackchannelAuthenticationRequest();
+        backchannelAuthenticationRequest.setScope(Arrays.asList("openid"));
+        backchannelAuthenticationRequest.setIdTokenHint(idTokenHintPS512);
+        backchannelAuthenticationRequest.setClientNotificationToken(clientNotificationToken);
+        backchannelAuthenticationRequest.setUserCode(backchannelUserCode);
+        backchannelAuthenticationRequest.setRequestedExpiry(1200);
+        backchannelAuthenticationRequest.setAuthenticationMethod(AuthenticationMethod.PRIVATE_KEY_JWT);
+        backchannelAuthenticationRequest.setAlgorithm(SignatureAlgorithm.PS512);
+        backchannelAuthenticationRequest.setCryptoProvider(cryptoProvider);
+        backchannelAuthenticationRequest.setKeyId(keyId);
+        backchannelAuthenticationRequest.setAudience(tokenEndpoint);
+        backchannelAuthenticationRequest.setAuthUsername(clientId);
+
+        BackchannelAuthenticationClient backchannelAuthenticationClient = new BackchannelAuthenticationClient(backchannelAuthenticationEndpoint);
+        backchannelAuthenticationClient.setRequest(backchannelAuthenticationRequest);
+        BackchannelAuthenticationResponse backchannelAuthenticationResponse = backchannelAuthenticationClient.exec();
+
+        showClient(backchannelAuthenticationClient);
+        assertEquals(backchannelAuthenticationResponse.getStatus(), 200, "Unexpected response code: " + backchannelAuthenticationResponse.getEntity());
+        assertNotNull(backchannelAuthenticationResponse.getAuthReqId());
+        assertNotNull(backchannelAuthenticationResponse.getExpiresIn());
+        assertNotNull(backchannelAuthenticationResponse.getInterval()); // This parameter will only be present if the Client is registered to use the Poll or Ping modes.
+    }
+
+    @Parameters({"clientJwksUri", "backchannelClientNotificationEndpoint", "backchannelUserCode"})
+    @Test(dependsOnMethods = "idTokenHintAlgA128KWEncA128GCM")
+    public void backchannelTokenDeliveryModePingIdTokenHintAlgA128KWEncA128GCM(
+            final String clientJwksUri, final String backchannelClientNotificationEndpoint, final String backchannelUserCode) {
+        showTitle("backchannelTokenDeliveryModePingIdTokenHintAlgA128KWEncA128GCM");
+
+        // 1. Dynamic Client Registration
+        RegisterRequest registerRequest = new RegisterRequest(ApplicationType.WEB, "oxAuth test app", null);
+        registerRequest.setJwksUri(clientJwksUri);
+        registerRequest.setGrantTypes(Arrays.asList(GrantType.CIBA));
+
+        registerRequest.setBackchannelTokenDeliveryMode(BackchannelTokenDeliveryMode.PING);
+        registerRequest.setBackchannelClientNotificationEndpoint(backchannelClientNotificationEndpoint);
+        registerRequest.setBackchannelAuthenticationRequestSigningAlg(AsymmetricSignatureAlgorithm.RS256);
+        registerRequest.setBackchannelUserCodeParameter(true);
+
+        RegisterClient registerClient = new RegisterClient(registrationEndpoint);
+        registerClient.setRequest(registerRequest);
+        RegisterResponse registerResponse = registerClient.exec();
+
+        showClient(registerClient);
+        assertEquals(registerResponse.getStatus(), 200, "Unexpected response code: " + registerResponse.getEntity());
+        assertNotNull(registerResponse.getClientId());
+        assertNotNull(registerResponse.getClientSecret());
+        assertNotNull(registerResponse.getRegistrationAccessToken());
+        assertNotNull(registerResponse.getClientSecretExpiresAt());
+
+        assertTrue(registerResponse.getClaims().containsKey(BACKCHANNEL_TOKEN_DELIVERY_MODE.toString()));
+        assertTrue(registerResponse.getClaims().containsKey(BACKCHANNEL_AUTHENTICATION_REQUEST_SIGNING_ALG.toString()));
+        assertTrue(registerResponse.getClaims().containsKey(BACKCHANNEL_USER_CODE_PARAMETER.toString()));
+        assertTrue(registerResponse.getClaims().containsKey(BACKCHANNEL_CLIENT_NOTIFICATION_ENDPOINT.toString()));
+        assertEquals(registerResponse.getClaims().get(BACKCHANNEL_TOKEN_DELIVERY_MODE.toString()), BackchannelTokenDeliveryMode.PING.getValue());
+        assertEquals(registerResponse.getClaims().get(BACKCHANNEL_AUTHENTICATION_REQUEST_SIGNING_ALG.toString()), AsymmetricSignatureAlgorithm.RS256.getValue());
+        assertEquals(registerResponse.getClaims().get(BACKCHANNEL_USER_CODE_PARAMETER.toString()), new Boolean(true).toString());
+
+        String clientId = registerResponse.getClientId();
+        String clientSecret = registerResponse.getClientSecret();
+
+        // 2. Authentication Request
+        String clientNotificationToken = UUID.randomUUID().toString();
+
+        BackchannelAuthenticationRequest backchannelAuthenticationRequest = new BackchannelAuthenticationRequest();
+        backchannelAuthenticationRequest.setScope(Arrays.asList("openid"));
+        backchannelAuthenticationRequest.setIdTokenHint(idTokenHintAlgA128KWEncA128GCM);
+        backchannelAuthenticationRequest.setClientNotificationToken(clientNotificationToken);
+        backchannelAuthenticationRequest.setUserCode(backchannelUserCode);
+        backchannelAuthenticationRequest.setRequestedExpiry(1200);
+        backchannelAuthenticationRequest.setAuthUsername(clientId);
+        backchannelAuthenticationRequest.setAuthPassword(clientSecret);
+
+        BackchannelAuthenticationClient backchannelAuthenticationClient = new BackchannelAuthenticationClient(backchannelAuthenticationEndpoint);
+        backchannelAuthenticationClient.setRequest(backchannelAuthenticationRequest);
+        BackchannelAuthenticationResponse backchannelAuthenticationResponse = backchannelAuthenticationClient.exec();
+
+        showClient(backchannelAuthenticationClient);
+        assertEquals(backchannelAuthenticationResponse.getStatus(), 200, "Unexpected response code: " + backchannelAuthenticationResponse.getEntity());
+        assertNotNull(backchannelAuthenticationResponse.getAuthReqId());
+        assertNotNull(backchannelAuthenticationResponse.getExpiresIn());
+        assertNotNull(backchannelAuthenticationResponse.getInterval()); // This parameter will only be present if the Client is registered to use the Poll or Ping modes.
+    }
+
+    @Parameters({"clientJwksUri", "backchannelClientNotificationEndpoint", "backchannelUserCode"})
+    @Test(dependsOnMethods = "idTokenHintAlgA256KWEncA256GCM")
+    public void backchannelTokenDeliveryModePingIdTokenHintAlgA256KWEncA256GCM(
+            final String clientJwksUri, final String backchannelClientNotificationEndpoint, final String backchannelUserCode) {
+        showTitle("backchannelTokenDeliveryModePingIdTokenHintAlgA256KWEncA256GCM");
+
+        // 1. Dynamic Client Registration
+        RegisterRequest registerRequest = new RegisterRequest(ApplicationType.WEB, "oxAuth test app", null);
+        registerRequest.setJwksUri(clientJwksUri);
+        registerRequest.setGrantTypes(Arrays.asList(GrantType.CIBA));
+
+        registerRequest.setBackchannelTokenDeliveryMode(BackchannelTokenDeliveryMode.PING);
+        registerRequest.setBackchannelClientNotificationEndpoint(backchannelClientNotificationEndpoint);
+        registerRequest.setBackchannelAuthenticationRequestSigningAlg(AsymmetricSignatureAlgorithm.RS256);
+        registerRequest.setBackchannelUserCodeParameter(true);
+
+        RegisterClient registerClient = new RegisterClient(registrationEndpoint);
+        registerClient.setRequest(registerRequest);
+        RegisterResponse registerResponse = registerClient.exec();
+
+        showClient(registerClient);
+        assertEquals(registerResponse.getStatus(), 200, "Unexpected response code: " + registerResponse.getEntity());
+        assertNotNull(registerResponse.getClientId());
+        assertNotNull(registerResponse.getClientSecret());
+        assertNotNull(registerResponse.getRegistrationAccessToken());
+        assertNotNull(registerResponse.getClientSecretExpiresAt());
+
+        assertTrue(registerResponse.getClaims().containsKey(BACKCHANNEL_TOKEN_DELIVERY_MODE.toString()));
+        assertTrue(registerResponse.getClaims().containsKey(BACKCHANNEL_AUTHENTICATION_REQUEST_SIGNING_ALG.toString()));
+        assertTrue(registerResponse.getClaims().containsKey(BACKCHANNEL_USER_CODE_PARAMETER.toString()));
+        assertTrue(registerResponse.getClaims().containsKey(BACKCHANNEL_CLIENT_NOTIFICATION_ENDPOINT.toString()));
+        assertEquals(registerResponse.getClaims().get(BACKCHANNEL_TOKEN_DELIVERY_MODE.toString()), BackchannelTokenDeliveryMode.PING.getValue());
+        assertEquals(registerResponse.getClaims().get(BACKCHANNEL_AUTHENTICATION_REQUEST_SIGNING_ALG.toString()), AsymmetricSignatureAlgorithm.RS256.getValue());
+        assertEquals(registerResponse.getClaims().get(BACKCHANNEL_USER_CODE_PARAMETER.toString()), new Boolean(true).toString());
+
+        String clientId = registerResponse.getClientId();
+        String clientSecret = registerResponse.getClientSecret();
+
+        // 2. Authentication Request
+        String clientNotificationToken = UUID.randomUUID().toString();
+
+        BackchannelAuthenticationRequest backchannelAuthenticationRequest = new BackchannelAuthenticationRequest();
+        backchannelAuthenticationRequest.setScope(Arrays.asList("openid"));
+        backchannelAuthenticationRequest.setIdTokenHint(idTokenHintAlgA256KWEncA256GCM);
+        backchannelAuthenticationRequest.setClientNotificationToken(clientNotificationToken);
+        backchannelAuthenticationRequest.setUserCode(backchannelUserCode);
+        backchannelAuthenticationRequest.setRequestedExpiry(1200);
+        backchannelAuthenticationRequest.setAuthUsername(clientId);
+        backchannelAuthenticationRequest.setAuthPassword(clientSecret);
+
+        BackchannelAuthenticationClient backchannelAuthenticationClient = new BackchannelAuthenticationClient(backchannelAuthenticationEndpoint);
+        backchannelAuthenticationClient.setRequest(backchannelAuthenticationRequest);
+        BackchannelAuthenticationResponse backchannelAuthenticationResponse = backchannelAuthenticationClient.exec();
+
+        showClient(backchannelAuthenticationClient);
+        assertEquals(backchannelAuthenticationResponse.getStatus(), 200, "Unexpected response code: " + backchannelAuthenticationResponse.getEntity());
+        assertNotNull(backchannelAuthenticationResponse.getAuthReqId());
+        assertNotNull(backchannelAuthenticationResponse.getExpiresIn());
+        assertNotNull(backchannelAuthenticationResponse.getInterval()); // This parameter will only be present if the Client is registered to use the Poll or Ping modes.
+    }
+
+    @Parameters({"clientJwksUri", "backchannelClientNotificationEndpoint", "backchannelUserCode"})
+    @Test(dependsOnMethods = "idTokenHintAlgRSA15EncA128CBCPLUSHS256")
+    public void backchannelTokenDeliveryModePingIdTokenHintAlgRSA15EncA128CBCPLUSHS256(
+            final String clientJwksUri, final String backchannelClientNotificationEndpoint, final String backchannelUserCode) {
+        showTitle("backchannelTokenDeliveryModePingIdTokenHintAlgRSA15EncA128CBCPLUSHS256");
+
+        // 1. Dynamic Client Registration
+        RegisterRequest registerRequest = new RegisterRequest(ApplicationType.WEB, "oxAuth test app", null);
+        registerRequest.setJwksUri(clientJwksUri);
+        registerRequest.setGrantTypes(Arrays.asList(GrantType.CIBA));
+
+        registerRequest.setBackchannelTokenDeliveryMode(BackchannelTokenDeliveryMode.PING);
+        registerRequest.setBackchannelClientNotificationEndpoint(backchannelClientNotificationEndpoint);
+        registerRequest.setBackchannelAuthenticationRequestSigningAlg(AsymmetricSignatureAlgorithm.RS256);
+        registerRequest.setBackchannelUserCodeParameter(true);
+
+        RegisterClient registerClient = new RegisterClient(registrationEndpoint);
+        registerClient.setRequest(registerRequest);
+        RegisterResponse registerResponse = registerClient.exec();
+
+        showClient(registerClient);
+        assertEquals(registerResponse.getStatus(), 200, "Unexpected response code: " + registerResponse.getEntity());
+        assertNotNull(registerResponse.getClientId());
+        assertNotNull(registerResponse.getClientSecret());
+        assertNotNull(registerResponse.getRegistrationAccessToken());
+        assertNotNull(registerResponse.getClientSecretExpiresAt());
+
+        assertTrue(registerResponse.getClaims().containsKey(BACKCHANNEL_TOKEN_DELIVERY_MODE.toString()));
+        assertTrue(registerResponse.getClaims().containsKey(BACKCHANNEL_AUTHENTICATION_REQUEST_SIGNING_ALG.toString()));
+        assertTrue(registerResponse.getClaims().containsKey(BACKCHANNEL_USER_CODE_PARAMETER.toString()));
+        assertTrue(registerResponse.getClaims().containsKey(BACKCHANNEL_CLIENT_NOTIFICATION_ENDPOINT.toString()));
+        assertEquals(registerResponse.getClaims().get(BACKCHANNEL_TOKEN_DELIVERY_MODE.toString()), BackchannelTokenDeliveryMode.PING.getValue());
+        assertEquals(registerResponse.getClaims().get(BACKCHANNEL_AUTHENTICATION_REQUEST_SIGNING_ALG.toString()), AsymmetricSignatureAlgorithm.RS256.getValue());
+        assertEquals(registerResponse.getClaims().get(BACKCHANNEL_USER_CODE_PARAMETER.toString()), new Boolean(true).toString());
+
+        String clientId = registerResponse.getClientId();
+        String clientSecret = registerResponse.getClientSecret();
+
+        // 2. Authentication Request
+        String clientNotificationToken = UUID.randomUUID().toString();
+
+        BackchannelAuthenticationRequest backchannelAuthenticationRequest = new BackchannelAuthenticationRequest();
+        backchannelAuthenticationRequest.setScope(Arrays.asList("openid"));
+        backchannelAuthenticationRequest.setIdTokenHint(idTokenHintAlgRSA15EncA128CBCPLUSHS256);
+        backchannelAuthenticationRequest.setClientNotificationToken(clientNotificationToken);
+        backchannelAuthenticationRequest.setUserCode(backchannelUserCode);
+        backchannelAuthenticationRequest.setRequestedExpiry(1200);
+        backchannelAuthenticationRequest.setAuthUsername(clientId);
+        backchannelAuthenticationRequest.setAuthPassword(clientSecret);
+
+        BackchannelAuthenticationClient backchannelAuthenticationClient = new BackchannelAuthenticationClient(backchannelAuthenticationEndpoint);
+        backchannelAuthenticationClient.setRequest(backchannelAuthenticationRequest);
+        BackchannelAuthenticationResponse backchannelAuthenticationResponse = backchannelAuthenticationClient.exec();
+
+        showClient(backchannelAuthenticationClient);
+        assertEquals(backchannelAuthenticationResponse.getStatus(), 200, "Unexpected response code: " + backchannelAuthenticationResponse.getEntity());
+        assertNotNull(backchannelAuthenticationResponse.getAuthReqId());
+        assertNotNull(backchannelAuthenticationResponse.getExpiresIn());
+        assertNotNull(backchannelAuthenticationResponse.getInterval()); // This parameter will only be present if the Client is registered to use the Poll or Ping modes.
+    }
+
+    @Parameters({"clientJwksUri", "backchannelClientNotificationEndpoint", "backchannelUserCode"})
+    @Test(dependsOnMethods = "idTokenHintAlgRSA15EncA256CBCPLUSHS512")
+    public void backchannelTokenDeliveryModePingIdTokenHintAlgRSA15EncA256CBCPLUSHS512(
+            final String clientJwksUri, final String backchannelClientNotificationEndpoint, final String backchannelUserCode) {
+        showTitle("backchannelTokenDeliveryModePingIdTokenHintAlgRSA15EncA256CBCPLUSHS512");
+
+        // 1. Dynamic Client Registration
+        RegisterRequest registerRequest = new RegisterRequest(ApplicationType.WEB, "oxAuth test app", null);
+        registerRequest.setJwksUri(clientJwksUri);
+        registerRequest.setGrantTypes(Arrays.asList(GrantType.CIBA));
+
+        registerRequest.setBackchannelTokenDeliveryMode(BackchannelTokenDeliveryMode.PING);
+        registerRequest.setBackchannelClientNotificationEndpoint(backchannelClientNotificationEndpoint);
+        registerRequest.setBackchannelAuthenticationRequestSigningAlg(AsymmetricSignatureAlgorithm.RS256);
+        registerRequest.setBackchannelUserCodeParameter(true);
+
+        RegisterClient registerClient = new RegisterClient(registrationEndpoint);
+        registerClient.setRequest(registerRequest);
+        RegisterResponse registerResponse = registerClient.exec();
+
+        showClient(registerClient);
+        assertEquals(registerResponse.getStatus(), 200, "Unexpected response code: " + registerResponse.getEntity());
+        assertNotNull(registerResponse.getClientId());
+        assertNotNull(registerResponse.getClientSecret());
+        assertNotNull(registerResponse.getRegistrationAccessToken());
+        assertNotNull(registerResponse.getClientSecretExpiresAt());
+
+        assertTrue(registerResponse.getClaims().containsKey(BACKCHANNEL_TOKEN_DELIVERY_MODE.toString()));
+        assertTrue(registerResponse.getClaims().containsKey(BACKCHANNEL_AUTHENTICATION_REQUEST_SIGNING_ALG.toString()));
+        assertTrue(registerResponse.getClaims().containsKey(BACKCHANNEL_USER_CODE_PARAMETER.toString()));
+        assertTrue(registerResponse.getClaims().containsKey(BACKCHANNEL_CLIENT_NOTIFICATION_ENDPOINT.toString()));
+        assertEquals(registerResponse.getClaims().get(BACKCHANNEL_TOKEN_DELIVERY_MODE.toString()), BackchannelTokenDeliveryMode.PING.getValue());
+        assertEquals(registerResponse.getClaims().get(BACKCHANNEL_AUTHENTICATION_REQUEST_SIGNING_ALG.toString()), AsymmetricSignatureAlgorithm.RS256.getValue());
+        assertEquals(registerResponse.getClaims().get(BACKCHANNEL_USER_CODE_PARAMETER.toString()), new Boolean(true).toString());
+
+        String clientId = registerResponse.getClientId();
+        String clientSecret = registerResponse.getClientSecret();
+
+        // 2. Authentication Request
+        String clientNotificationToken = UUID.randomUUID().toString();
+
+        BackchannelAuthenticationRequest backchannelAuthenticationRequest = new BackchannelAuthenticationRequest();
+        backchannelAuthenticationRequest.setScope(Arrays.asList("openid"));
+        backchannelAuthenticationRequest.setIdTokenHint(idTokenHintAlgRSA15EncA256CBCPLUSHS512);
+        backchannelAuthenticationRequest.setClientNotificationToken(clientNotificationToken);
+        backchannelAuthenticationRequest.setUserCode(backchannelUserCode);
+        backchannelAuthenticationRequest.setRequestedExpiry(1200);
+        backchannelAuthenticationRequest.setAuthUsername(clientId);
+        backchannelAuthenticationRequest.setAuthPassword(clientSecret);
+
+        BackchannelAuthenticationClient backchannelAuthenticationClient = new BackchannelAuthenticationClient(backchannelAuthenticationEndpoint);
+        backchannelAuthenticationClient.setRequest(backchannelAuthenticationRequest);
+        BackchannelAuthenticationResponse backchannelAuthenticationResponse = backchannelAuthenticationClient.exec();
+
+        showClient(backchannelAuthenticationClient);
+        assertEquals(backchannelAuthenticationResponse.getStatus(), 200, "Unexpected response code: " + backchannelAuthenticationResponse.getEntity());
+        assertNotNull(backchannelAuthenticationResponse.getAuthReqId());
+        assertNotNull(backchannelAuthenticationResponse.getExpiresIn());
+        assertNotNull(backchannelAuthenticationResponse.getInterval()); // This parameter will only be present if the Client is registered to use the Poll or Ping modes.
+    }
+
+    @Parameters({"clientJwksUri", "backchannelClientNotificationEndpoint", "backchannelUserCode"})
+    @Test(dependsOnMethods = "idTokenHintAlgRSAOAEPEncA256GCM")
+    public void backchannelTokenDeliveryModePingIdTokenHintAlgRSAOAEPEncA256GCM(
+            final String clientJwksUri, final String backchannelClientNotificationEndpoint, final String backchannelUserCode) {
+        showTitle("backchannelTokenDeliveryModePingIdTokenHintAlgRSAOAEPEncA256GCM");
+
+        // 1. Dynamic Client Registration
+        RegisterRequest registerRequest = new RegisterRequest(ApplicationType.WEB, "oxAuth test app", null);
+        registerRequest.setJwksUri(clientJwksUri);
+        registerRequest.setGrantTypes(Arrays.asList(GrantType.CIBA));
+
+        registerRequest.setBackchannelTokenDeliveryMode(BackchannelTokenDeliveryMode.PING);
+        registerRequest.setBackchannelClientNotificationEndpoint(backchannelClientNotificationEndpoint);
+        registerRequest.setBackchannelAuthenticationRequestSigningAlg(AsymmetricSignatureAlgorithm.RS256);
+        registerRequest.setBackchannelUserCodeParameter(true);
+
+        RegisterClient registerClient = new RegisterClient(registrationEndpoint);
+        registerClient.setRequest(registerRequest);
+        RegisterResponse registerResponse = registerClient.exec();
+
+        showClient(registerClient);
+        assertEquals(registerResponse.getStatus(), 200, "Unexpected response code: " + registerResponse.getEntity());
+        assertNotNull(registerResponse.getClientId());
+        assertNotNull(registerResponse.getClientSecret());
+        assertNotNull(registerResponse.getRegistrationAccessToken());
+        assertNotNull(registerResponse.getClientSecretExpiresAt());
+
+        assertTrue(registerResponse.getClaims().containsKey(BACKCHANNEL_TOKEN_DELIVERY_MODE.toString()));
+        assertTrue(registerResponse.getClaims().containsKey(BACKCHANNEL_AUTHENTICATION_REQUEST_SIGNING_ALG.toString()));
+        assertTrue(registerResponse.getClaims().containsKey(BACKCHANNEL_USER_CODE_PARAMETER.toString()));
+        assertTrue(registerResponse.getClaims().containsKey(BACKCHANNEL_CLIENT_NOTIFICATION_ENDPOINT.toString()));
+        assertEquals(registerResponse.getClaims().get(BACKCHANNEL_TOKEN_DELIVERY_MODE.toString()), BackchannelTokenDeliveryMode.PING.getValue());
+        assertEquals(registerResponse.getClaims().get(BACKCHANNEL_AUTHENTICATION_REQUEST_SIGNING_ALG.toString()), AsymmetricSignatureAlgorithm.RS256.getValue());
+        assertEquals(registerResponse.getClaims().get(BACKCHANNEL_USER_CODE_PARAMETER.toString()), new Boolean(true).toString());
+
+        String clientId = registerResponse.getClientId();
+        String clientSecret = registerResponse.getClientSecret();
+
+        // 2. Authentication Request
+        String clientNotificationToken = UUID.randomUUID().toString();
+
+        BackchannelAuthenticationRequest backchannelAuthenticationRequest = new BackchannelAuthenticationRequest();
+        backchannelAuthenticationRequest.setScope(Arrays.asList("openid"));
+        backchannelAuthenticationRequest.setIdTokenHint(idTokenHintAlgRSAOAEPEncA256GCM);
+        backchannelAuthenticationRequest.setClientNotificationToken(clientNotificationToken);
+        backchannelAuthenticationRequest.setUserCode(backchannelUserCode);
+        backchannelAuthenticationRequest.setRequestedExpiry(1200);
+        backchannelAuthenticationRequest.setAuthUsername(clientId);
+        backchannelAuthenticationRequest.setAuthPassword(clientSecret);
+
+        BackchannelAuthenticationClient backchannelAuthenticationClient = new BackchannelAuthenticationClient(backchannelAuthenticationEndpoint);
+        backchannelAuthenticationClient.setRequest(backchannelAuthenticationRequest);
+        BackchannelAuthenticationResponse backchannelAuthenticationResponse = backchannelAuthenticationClient.exec();
+
+        showClient(backchannelAuthenticationClient);
+        assertEquals(backchannelAuthenticationResponse.getStatus(), 200, "Unexpected response code: " + backchannelAuthenticationResponse.getEntity());
+        assertNotNull(backchannelAuthenticationResponse.getAuthReqId());
+        assertNotNull(backchannelAuthenticationResponse.getExpiresIn());
+        assertNotNull(backchannelAuthenticationResponse.getInterval()); // This parameter will only be present if the Client is registered to use the Poll or Ping modes.
+    }
+
+    @Parameters({"clientJwksUri", "backchannelClientNotificationEndpoint", "backchannelUserCode"})
+    @Test(dependsOnMethods = "loginHintTokenRS256")
+    public void backchannelTokenDeliveryModePingLoginHintTokenRS256(
+            final String clientJwksUri, final String backchannelClientNotificationEndpoint, final String backchannelUserCode) {
+        showTitle("backchannelTokenDeliveryModePingLoginHintTokenRS256");
+
+        // 1. Dynamic Client Registration
+        RegisterRequest registerRequest = new RegisterRequest(ApplicationType.WEB, "oxAuth test app", null);
+        registerRequest.setJwksUri(clientJwksUri);
+        registerRequest.setGrantTypes(Arrays.asList(GrantType.CIBA));
+
+        registerRequest.setBackchannelTokenDeliveryMode(BackchannelTokenDeliveryMode.PING);
+        registerRequest.setBackchannelClientNotificationEndpoint(backchannelClientNotificationEndpoint);
+        registerRequest.setBackchannelAuthenticationRequestSigningAlg(AsymmetricSignatureAlgorithm.RS256);
+        registerRequest.setBackchannelUserCodeParameter(true);
+
+        RegisterClient registerClient = new RegisterClient(registrationEndpoint);
+        registerClient.setRequest(registerRequest);
+        RegisterResponse registerResponse = registerClient.exec();
+
+        showClient(registerClient);
+        assertEquals(registerResponse.getStatus(), 200, "Unexpected response code: " + registerResponse.getEntity());
+        assertNotNull(registerResponse.getClientId());
+        assertNotNull(registerResponse.getClientSecret());
+        assertNotNull(registerResponse.getRegistrationAccessToken());
+        assertNotNull(registerResponse.getClientSecretExpiresAt());
+
+        assertTrue(registerResponse.getClaims().containsKey(BACKCHANNEL_TOKEN_DELIVERY_MODE.toString()));
+        assertTrue(registerResponse.getClaims().containsKey(BACKCHANNEL_AUTHENTICATION_REQUEST_SIGNING_ALG.toString()));
+        assertTrue(registerResponse.getClaims().containsKey(BACKCHANNEL_USER_CODE_PARAMETER.toString()));
+        assertTrue(registerResponse.getClaims().containsKey(BACKCHANNEL_CLIENT_NOTIFICATION_ENDPOINT.toString()));
+        assertEquals(registerResponse.getClaims().get(BACKCHANNEL_TOKEN_DELIVERY_MODE.toString()), BackchannelTokenDeliveryMode.PING.getValue());
+        assertEquals(registerResponse.getClaims().get(BACKCHANNEL_AUTHENTICATION_REQUEST_SIGNING_ALG.toString()), AsymmetricSignatureAlgorithm.RS256.getValue());
+        assertEquals(registerResponse.getClaims().get(BACKCHANNEL_USER_CODE_PARAMETER.toString()), new Boolean(true).toString());
+
+        String clientId = registerResponse.getClientId();
+        String clientSecret = registerResponse.getClientSecret();
+
+        // 2. Authentication Request
+        String clientNotificationToken = UUID.randomUUID().toString();
+
+        BackchannelAuthenticationRequest backchannelAuthenticationRequest = new BackchannelAuthenticationRequest();
+        backchannelAuthenticationRequest.setScope(Arrays.asList("openid"));
+        backchannelAuthenticationRequest.setLoginHintToken(loginHintTokenRS256);
+        backchannelAuthenticationRequest.setClientNotificationToken(clientNotificationToken);
+        backchannelAuthenticationRequest.setUserCode(backchannelUserCode);
+        backchannelAuthenticationRequest.setRequestedExpiry(1200);
+        backchannelAuthenticationRequest.setAuthUsername(clientId);
+        backchannelAuthenticationRequest.setAuthPassword(clientSecret);
+
+        BackchannelAuthenticationClient backchannelAuthenticationClient = new BackchannelAuthenticationClient(backchannelAuthenticationEndpoint);
+        backchannelAuthenticationClient.setRequest(backchannelAuthenticationRequest);
+        BackchannelAuthenticationResponse backchannelAuthenticationResponse = backchannelAuthenticationClient.exec();
+
+        showClient(backchannelAuthenticationClient);
+        assertEquals(backchannelAuthenticationResponse.getStatus(), 200, "Unexpected response code: " + backchannelAuthenticationResponse.getEntity());
+        assertNotNull(backchannelAuthenticationResponse.getAuthReqId());
+        assertNotNull(backchannelAuthenticationResponse.getExpiresIn());
+        assertNotNull(backchannelAuthenticationResponse.getInterval()); // This parameter will only be present if the Client is registered to use the Poll or Ping modes.
+    }
+
+    @Parameters({"clientJwksUri", "backchannelClientNotificationEndpoint", "backchannelUserCode"})
+    @Test(dependsOnMethods = "loginHintTokenRS384")
+    public void backchannelTokenDeliveryModePingLoginHintTokenRS384(
+            final String clientJwksUri, final String backchannelClientNotificationEndpoint, final String backchannelUserCode) {
+        showTitle("backchannelTokenDeliveryModePingLoginHintTokenRS384");
+
+        // 1. Dynamic Client Registration
+        RegisterRequest registerRequest = new RegisterRequest(ApplicationType.WEB, "oxAuth test app", null);
+        registerRequest.setJwksUri(clientJwksUri);
+        registerRequest.setGrantTypes(Arrays.asList(GrantType.CIBA));
+
+        registerRequest.setBackchannelTokenDeliveryMode(BackchannelTokenDeliveryMode.PING);
+        registerRequest.setBackchannelClientNotificationEndpoint(backchannelClientNotificationEndpoint);
+        registerRequest.setBackchannelAuthenticationRequestSigningAlg(AsymmetricSignatureAlgorithm.RS384);
+        registerRequest.setBackchannelUserCodeParameter(true);
+
+        RegisterClient registerClient = new RegisterClient(registrationEndpoint);
+        registerClient.setRequest(registerRequest);
+        RegisterResponse registerResponse = registerClient.exec();
+
+        showClient(registerClient);
+        assertEquals(registerResponse.getStatus(), 200, "Unexpected response code: " + registerResponse.getEntity());
+        assertNotNull(registerResponse.getClientId());
+        assertNotNull(registerResponse.getClientSecret());
+        assertNotNull(registerResponse.getRegistrationAccessToken());
+        assertNotNull(registerResponse.getClientSecretExpiresAt());
+
+        assertTrue(registerResponse.getClaims().containsKey(BACKCHANNEL_TOKEN_DELIVERY_MODE.toString()));
+        assertTrue(registerResponse.getClaims().containsKey(BACKCHANNEL_AUTHENTICATION_REQUEST_SIGNING_ALG.toString()));
+        assertTrue(registerResponse.getClaims().containsKey(BACKCHANNEL_USER_CODE_PARAMETER.toString()));
+        assertTrue(registerResponse.getClaims().containsKey(BACKCHANNEL_CLIENT_NOTIFICATION_ENDPOINT.toString()));
+        assertEquals(registerResponse.getClaims().get(BACKCHANNEL_TOKEN_DELIVERY_MODE.toString()), BackchannelTokenDeliveryMode.PING.getValue());
+        assertEquals(registerResponse.getClaims().get(BACKCHANNEL_AUTHENTICATION_REQUEST_SIGNING_ALG.toString()), AsymmetricSignatureAlgorithm.RS384.getValue());
+        assertEquals(registerResponse.getClaims().get(BACKCHANNEL_USER_CODE_PARAMETER.toString()), new Boolean(true).toString());
+
+        String clientId = registerResponse.getClientId();
+        String clientSecret = registerResponse.getClientSecret();
+
+        // 2. Authentication Request
+        String clientNotificationToken = UUID.randomUUID().toString();
+
+        BackchannelAuthenticationRequest backchannelAuthenticationRequest = new BackchannelAuthenticationRequest();
+        backchannelAuthenticationRequest.setScope(Arrays.asList("openid"));
+        backchannelAuthenticationRequest.setLoginHintToken(loginHintTokenRS384);
+        backchannelAuthenticationRequest.setClientNotificationToken(clientNotificationToken);
+        backchannelAuthenticationRequest.setUserCode(backchannelUserCode);
+        backchannelAuthenticationRequest.setRequestedExpiry(1200);
+        backchannelAuthenticationRequest.setAuthUsername(clientId);
+        backchannelAuthenticationRequest.setAuthPassword(clientSecret);
+
+        BackchannelAuthenticationClient backchannelAuthenticationClient = new BackchannelAuthenticationClient(backchannelAuthenticationEndpoint);
+        backchannelAuthenticationClient.setRequest(backchannelAuthenticationRequest);
+        BackchannelAuthenticationResponse backchannelAuthenticationResponse = backchannelAuthenticationClient.exec();
+
+        showClient(backchannelAuthenticationClient);
+        assertEquals(backchannelAuthenticationResponse.getStatus(), 200, "Unexpected response code: " + backchannelAuthenticationResponse.getEntity());
+        assertNotNull(backchannelAuthenticationResponse.getAuthReqId());
+        assertNotNull(backchannelAuthenticationResponse.getExpiresIn());
+        assertNotNull(backchannelAuthenticationResponse.getInterval()); // This parameter will only be present if the Client is registered to use the Poll or Ping modes.
+    }
+
+    @Parameters({"clientJwksUri", "backchannelClientNotificationEndpoint", "backchannelUserCode"})
+    @Test(dependsOnMethods = "loginHintTokenRS512")
+    public void backchannelTokenDeliveryModePingLoginHintTokenRS512(
+            final String clientJwksUri, final String backchannelClientNotificationEndpoint, final String backchannelUserCode) {
+        showTitle("backchannelTokenDeliveryModePingLoginHintTokenRS512");
+
+        // 1. Dynamic Client Registration
+        RegisterRequest registerRequest = new RegisterRequest(ApplicationType.WEB, "oxAuth test app", null);
+        registerRequest.setJwksUri(clientJwksUri);
+        registerRequest.setGrantTypes(Arrays.asList(GrantType.CIBA));
+
+        registerRequest.setBackchannelTokenDeliveryMode(BackchannelTokenDeliveryMode.PING);
+        registerRequest.setBackchannelClientNotificationEndpoint(backchannelClientNotificationEndpoint);
+        registerRequest.setBackchannelAuthenticationRequestSigningAlg(AsymmetricSignatureAlgorithm.RS512);
+        registerRequest.setBackchannelUserCodeParameter(true);
+
+        RegisterClient registerClient = new RegisterClient(registrationEndpoint);
+        registerClient.setRequest(registerRequest);
+        RegisterResponse registerResponse = registerClient.exec();
+
+        showClient(registerClient);
+        assertEquals(registerResponse.getStatus(), 200, "Unexpected response code: " + registerResponse.getEntity());
+        assertNotNull(registerResponse.getClientId());
+        assertNotNull(registerResponse.getClientSecret());
+        assertNotNull(registerResponse.getRegistrationAccessToken());
+        assertNotNull(registerResponse.getClientSecretExpiresAt());
+
+        assertTrue(registerResponse.getClaims().containsKey(BACKCHANNEL_TOKEN_DELIVERY_MODE.toString()));
+        assertTrue(registerResponse.getClaims().containsKey(BACKCHANNEL_AUTHENTICATION_REQUEST_SIGNING_ALG.toString()));
+        assertTrue(registerResponse.getClaims().containsKey(BACKCHANNEL_USER_CODE_PARAMETER.toString()));
+        assertTrue(registerResponse.getClaims().containsKey(BACKCHANNEL_CLIENT_NOTIFICATION_ENDPOINT.toString()));
+        assertEquals(registerResponse.getClaims().get(BACKCHANNEL_TOKEN_DELIVERY_MODE.toString()), BackchannelTokenDeliveryMode.PING.getValue());
+        assertEquals(registerResponse.getClaims().get(BACKCHANNEL_AUTHENTICATION_REQUEST_SIGNING_ALG.toString()), AsymmetricSignatureAlgorithm.RS512.getValue());
+        assertEquals(registerResponse.getClaims().get(BACKCHANNEL_USER_CODE_PARAMETER.toString()), new Boolean(true).toString());
+
+        String clientId = registerResponse.getClientId();
+        String clientSecret = registerResponse.getClientSecret();
+
+        // 2. Authentication Request
+        String clientNotificationToken = UUID.randomUUID().toString();
+
+        BackchannelAuthenticationRequest backchannelAuthenticationRequest = new BackchannelAuthenticationRequest();
+        backchannelAuthenticationRequest.setScope(Arrays.asList("openid"));
+        backchannelAuthenticationRequest.setLoginHintToken(loginHintTokenRS512);
+        backchannelAuthenticationRequest.setClientNotificationToken(clientNotificationToken);
+        backchannelAuthenticationRequest.setUserCode(backchannelUserCode);
+        backchannelAuthenticationRequest.setRequestedExpiry(1200);
+        backchannelAuthenticationRequest.setAuthUsername(clientId);
+        backchannelAuthenticationRequest.setAuthPassword(clientSecret);
+
+        BackchannelAuthenticationClient backchannelAuthenticationClient = new BackchannelAuthenticationClient(backchannelAuthenticationEndpoint);
+        backchannelAuthenticationClient.setRequest(backchannelAuthenticationRequest);
+        BackchannelAuthenticationResponse backchannelAuthenticationResponse = backchannelAuthenticationClient.exec();
+
+        showClient(backchannelAuthenticationClient);
+        assertEquals(backchannelAuthenticationResponse.getStatus(), 200, "Unexpected response code: " + backchannelAuthenticationResponse.getEntity());
+        assertNotNull(backchannelAuthenticationResponse.getAuthReqId());
+        assertNotNull(backchannelAuthenticationResponse.getExpiresIn());
+        assertNotNull(backchannelAuthenticationResponse.getInterval()); // This parameter will only be present if the Client is registered to use the Poll or Ping modes.
+    }
+
+    @Parameters({"clientJwksUri", "backchannelClientNotificationEndpoint", "backchannelUserCode"})
+    @Test(dependsOnMethods = "loginHintTokenES256")
+    public void backchannelTokenDeliveryModePingLoginHintTokenES256(
+            final String clientJwksUri, final String backchannelClientNotificationEndpoint, final String backchannelUserCode) {
+        showTitle("backchannelTokenDeliveryModePingLoginHintTokenES256");
+
+        // 1. Dynamic Client Registration
+        RegisterRequest registerRequest = new RegisterRequest(ApplicationType.WEB, "oxAuth test app", null);
+        registerRequest.setJwksUri(clientJwksUri);
+        registerRequest.setGrantTypes(Arrays.asList(GrantType.CIBA));
+
+        registerRequest.setBackchannelTokenDeliveryMode(BackchannelTokenDeliveryMode.PING);
+        registerRequest.setBackchannelClientNotificationEndpoint(backchannelClientNotificationEndpoint);
+        registerRequest.setBackchannelAuthenticationRequestSigningAlg(AsymmetricSignatureAlgorithm.ES256);
+        registerRequest.setBackchannelUserCodeParameter(true);
+
+        RegisterClient registerClient = new RegisterClient(registrationEndpoint);
+        registerClient.setRequest(registerRequest);
+        RegisterResponse registerResponse = registerClient.exec();
+
+        showClient(registerClient);
+        assertEquals(registerResponse.getStatus(), 200, "Unexpected response code: " + registerResponse.getEntity());
+        assertNotNull(registerResponse.getClientId());
+        assertNotNull(registerResponse.getClientSecret());
+        assertNotNull(registerResponse.getRegistrationAccessToken());
+        assertNotNull(registerResponse.getClientSecretExpiresAt());
+
+        assertTrue(registerResponse.getClaims().containsKey(BACKCHANNEL_TOKEN_DELIVERY_MODE.toString()));
+        assertTrue(registerResponse.getClaims().containsKey(BACKCHANNEL_AUTHENTICATION_REQUEST_SIGNING_ALG.toString()));
+        assertTrue(registerResponse.getClaims().containsKey(BACKCHANNEL_USER_CODE_PARAMETER.toString()));
+        assertTrue(registerResponse.getClaims().containsKey(BACKCHANNEL_CLIENT_NOTIFICATION_ENDPOINT.toString()));
+        assertEquals(registerResponse.getClaims().get(BACKCHANNEL_TOKEN_DELIVERY_MODE.toString()), BackchannelTokenDeliveryMode.PING.getValue());
+        assertEquals(registerResponse.getClaims().get(BACKCHANNEL_AUTHENTICATION_REQUEST_SIGNING_ALG.toString()), AsymmetricSignatureAlgorithm.ES256.getValue());
+        assertEquals(registerResponse.getClaims().get(BACKCHANNEL_USER_CODE_PARAMETER.toString()), new Boolean(true).toString());
+
+        String clientId = registerResponse.getClientId();
+        String clientSecret = registerResponse.getClientSecret();
+
+        // 2. Authentication Request
+        String clientNotificationToken = UUID.randomUUID().toString();
+
+        BackchannelAuthenticationRequest backchannelAuthenticationRequest = new BackchannelAuthenticationRequest();
+        backchannelAuthenticationRequest.setScope(Arrays.asList("openid"));
+        backchannelAuthenticationRequest.setLoginHintToken(loginHintTokenES256);
+        backchannelAuthenticationRequest.setClientNotificationToken(clientNotificationToken);
+        backchannelAuthenticationRequest.setUserCode(backchannelUserCode);
+        backchannelAuthenticationRequest.setRequestedExpiry(1200);
+        backchannelAuthenticationRequest.setAuthUsername(clientId);
+        backchannelAuthenticationRequest.setAuthPassword(clientSecret);
+
+        BackchannelAuthenticationClient backchannelAuthenticationClient = new BackchannelAuthenticationClient(backchannelAuthenticationEndpoint);
+        backchannelAuthenticationClient.setRequest(backchannelAuthenticationRequest);
+        BackchannelAuthenticationResponse backchannelAuthenticationResponse = backchannelAuthenticationClient.exec();
+
+        showClient(backchannelAuthenticationClient);
+        assertEquals(backchannelAuthenticationResponse.getStatus(), 200, "Unexpected response code: " + backchannelAuthenticationResponse.getEntity());
+        assertNotNull(backchannelAuthenticationResponse.getAuthReqId());
+        assertNotNull(backchannelAuthenticationResponse.getExpiresIn());
+        assertNotNull(backchannelAuthenticationResponse.getInterval()); // This parameter will only be present if the Client is registered to use the Poll or Ping modes.
+    }
+
+    @Parameters({"clientJwksUri", "backchannelClientNotificationEndpoint", "backchannelUserCode"})
+    @Test(dependsOnMethods = "loginHintTokenES384")
+    public void backchannelTokenDeliveryModePingLoginHintTokenES384(
+            final String clientJwksUri, final String backchannelClientNotificationEndpoint, final String backchannelUserCode) {
+        showTitle("backchannelTokenDeliveryModePingLoginHintTokenES384");
+
+        // 1. Dynamic Client Registration
+        RegisterRequest registerRequest = new RegisterRequest(ApplicationType.WEB, "oxAuth test app", null);
+        registerRequest.setJwksUri(clientJwksUri);
+        registerRequest.setGrantTypes(Arrays.asList(GrantType.CIBA));
+
+        registerRequest.setBackchannelTokenDeliveryMode(BackchannelTokenDeliveryMode.PING);
+        registerRequest.setBackchannelClientNotificationEndpoint(backchannelClientNotificationEndpoint);
+        registerRequest.setBackchannelAuthenticationRequestSigningAlg(AsymmetricSignatureAlgorithm.ES384);
+        registerRequest.setBackchannelUserCodeParameter(true);
+
+        RegisterClient registerClient = new RegisterClient(registrationEndpoint);
+        registerClient.setRequest(registerRequest);
+        RegisterResponse registerResponse = registerClient.exec();
+
+        showClient(registerClient);
+        assertEquals(registerResponse.getStatus(), 200, "Unexpected response code: " + registerResponse.getEntity());
+        assertNotNull(registerResponse.getClientId());
+        assertNotNull(registerResponse.getClientSecret());
+        assertNotNull(registerResponse.getRegistrationAccessToken());
+        assertNotNull(registerResponse.getClientSecretExpiresAt());
+
+        assertTrue(registerResponse.getClaims().containsKey(BACKCHANNEL_TOKEN_DELIVERY_MODE.toString()));
+        assertTrue(registerResponse.getClaims().containsKey(BACKCHANNEL_AUTHENTICATION_REQUEST_SIGNING_ALG.toString()));
+        assertTrue(registerResponse.getClaims().containsKey(BACKCHANNEL_USER_CODE_PARAMETER.toString()));
+        assertTrue(registerResponse.getClaims().containsKey(BACKCHANNEL_CLIENT_NOTIFICATION_ENDPOINT.toString()));
+        assertEquals(registerResponse.getClaims().get(BACKCHANNEL_TOKEN_DELIVERY_MODE.toString()), BackchannelTokenDeliveryMode.PING.getValue());
+        assertEquals(registerResponse.getClaims().get(BACKCHANNEL_AUTHENTICATION_REQUEST_SIGNING_ALG.toString()), AsymmetricSignatureAlgorithm.ES384.getValue());
+        assertEquals(registerResponse.getClaims().get(BACKCHANNEL_USER_CODE_PARAMETER.toString()), new Boolean(true).toString());
+
+        String clientId = registerResponse.getClientId();
+        String clientSecret = registerResponse.getClientSecret();
+
+        // 2. Authentication Request
+        String clientNotificationToken = UUID.randomUUID().toString();
+
+        BackchannelAuthenticationRequest backchannelAuthenticationRequest = new BackchannelAuthenticationRequest();
+        backchannelAuthenticationRequest.setScope(Arrays.asList("openid"));
+        backchannelAuthenticationRequest.setLoginHintToken(loginHintTokenES384);
+        backchannelAuthenticationRequest.setClientNotificationToken(clientNotificationToken);
+        backchannelAuthenticationRequest.setUserCode(backchannelUserCode);
+        backchannelAuthenticationRequest.setRequestedExpiry(1200);
+        backchannelAuthenticationRequest.setAuthUsername(clientId);
+        backchannelAuthenticationRequest.setAuthPassword(clientSecret);
+
+        BackchannelAuthenticationClient backchannelAuthenticationClient = new BackchannelAuthenticationClient(backchannelAuthenticationEndpoint);
+        backchannelAuthenticationClient.setRequest(backchannelAuthenticationRequest);
+        BackchannelAuthenticationResponse backchannelAuthenticationResponse = backchannelAuthenticationClient.exec();
+
+        showClient(backchannelAuthenticationClient);
+        assertEquals(backchannelAuthenticationResponse.getStatus(), 200, "Unexpected response code: " + backchannelAuthenticationResponse.getEntity());
+        assertNotNull(backchannelAuthenticationResponse.getAuthReqId());
+        assertNotNull(backchannelAuthenticationResponse.getExpiresIn());
+        assertNotNull(backchannelAuthenticationResponse.getInterval()); // This parameter will only be present if the Client is registered to use the Poll or Ping modes.
+    }
+
+    @Parameters({"clientJwksUri", "backchannelClientNotificationEndpoint", "backchannelUserCode"})
+    @Test(dependsOnMethods = "loginHintTokenES512")
+    public void backchannelTokenDeliveryModePingLoginHintTokenES512(
+            final String clientJwksUri, final String backchannelClientNotificationEndpoint, final String backchannelUserCode) {
+        showTitle("backchannelTokenDeliveryModePingLoginHintTokenES512");
+
+        // 1. Dynamic Client Registration
+        RegisterRequest registerRequest = new RegisterRequest(ApplicationType.WEB, "oxAuth test app", null);
+        registerRequest.setJwksUri(clientJwksUri);
+        registerRequest.setGrantTypes(Arrays.asList(GrantType.CIBA));
+
+        registerRequest.setBackchannelTokenDeliveryMode(BackchannelTokenDeliveryMode.PING);
+        registerRequest.setBackchannelClientNotificationEndpoint(backchannelClientNotificationEndpoint);
+        registerRequest.setBackchannelAuthenticationRequestSigningAlg(AsymmetricSignatureAlgorithm.ES512);
+        registerRequest.setBackchannelUserCodeParameter(true);
+
+        RegisterClient registerClient = new RegisterClient(registrationEndpoint);
+        registerClient.setRequest(registerRequest);
+        RegisterResponse registerResponse = registerClient.exec();
+
+        showClient(registerClient);
+        assertEquals(registerResponse.getStatus(), 200, "Unexpected response code: " + registerResponse.getEntity());
+        assertNotNull(registerResponse.getClientId());
+        assertNotNull(registerResponse.getClientSecret());
+        assertNotNull(registerResponse.getRegistrationAccessToken());
+        assertNotNull(registerResponse.getClientSecretExpiresAt());
+
+        assertTrue(registerResponse.getClaims().containsKey(BACKCHANNEL_TOKEN_DELIVERY_MODE.toString()));
+        assertTrue(registerResponse.getClaims().containsKey(BACKCHANNEL_AUTHENTICATION_REQUEST_SIGNING_ALG.toString()));
+        assertTrue(registerResponse.getClaims().containsKey(BACKCHANNEL_USER_CODE_PARAMETER.toString()));
+        assertTrue(registerResponse.getClaims().containsKey(BACKCHANNEL_CLIENT_NOTIFICATION_ENDPOINT.toString()));
+        assertEquals(registerResponse.getClaims().get(BACKCHANNEL_TOKEN_DELIVERY_MODE.toString()), BackchannelTokenDeliveryMode.PING.getValue());
+        assertEquals(registerResponse.getClaims().get(BACKCHANNEL_AUTHENTICATION_REQUEST_SIGNING_ALG.toString()), AsymmetricSignatureAlgorithm.ES512.getValue());
+        assertEquals(registerResponse.getClaims().get(BACKCHANNEL_USER_CODE_PARAMETER.toString()), new Boolean(true).toString());
+
+        String clientId = registerResponse.getClientId();
+        String clientSecret = registerResponse.getClientSecret();
+
+        // 2. Authentication Request
+        String clientNotificationToken = UUID.randomUUID().toString();
+
+        BackchannelAuthenticationRequest backchannelAuthenticationRequest = new BackchannelAuthenticationRequest();
+        backchannelAuthenticationRequest.setScope(Arrays.asList("openid"));
+        backchannelAuthenticationRequest.setLoginHintToken(loginHintTokenES512);
+        backchannelAuthenticationRequest.setClientNotificationToken(clientNotificationToken);
+        backchannelAuthenticationRequest.setUserCode(backchannelUserCode);
+        backchannelAuthenticationRequest.setRequestedExpiry(1200);
+        backchannelAuthenticationRequest.setAuthUsername(clientId);
+        backchannelAuthenticationRequest.setAuthPassword(clientSecret);
+
+        BackchannelAuthenticationClient backchannelAuthenticationClient = new BackchannelAuthenticationClient(backchannelAuthenticationEndpoint);
+        backchannelAuthenticationClient.setRequest(backchannelAuthenticationRequest);
+        BackchannelAuthenticationResponse backchannelAuthenticationResponse = backchannelAuthenticationClient.exec();
+
+        showClient(backchannelAuthenticationClient);
+        assertEquals(backchannelAuthenticationResponse.getStatus(), 200, "Unexpected response code: " + backchannelAuthenticationResponse.getEntity());
+        assertNotNull(backchannelAuthenticationResponse.getAuthReqId());
+        assertNotNull(backchannelAuthenticationResponse.getExpiresIn());
+        assertNotNull(backchannelAuthenticationResponse.getInterval()); // This parameter will only be present if the Client is registered to use the Poll or Ping modes.
+    }
+
+    @Parameters({"clientJwksUri", "backchannelClientNotificationEndpoint", "backchannelUserCode"})
+    @Test(dependsOnMethods = "loginHintTokenPS256")
+    public void backchannelTokenDeliveryModePingLoginHintTokenPS256(
+            final String clientJwksUri, final String backchannelClientNotificationEndpoint, final String backchannelUserCode) {
+        showTitle("backchannelTokenDeliveryModePingLoginHintTokenPS256");
+
+        // 1. Dynamic Client Registration
+        RegisterRequest registerRequest = new RegisterRequest(ApplicationType.WEB, "oxAuth test app", null);
+        registerRequest.setJwksUri(clientJwksUri);
+        registerRequest.setGrantTypes(Arrays.asList(GrantType.CIBA));
+
+        registerRequest.setBackchannelTokenDeliveryMode(BackchannelTokenDeliveryMode.PING);
+        registerRequest.setBackchannelClientNotificationEndpoint(backchannelClientNotificationEndpoint);
+        registerRequest.setBackchannelAuthenticationRequestSigningAlg(AsymmetricSignatureAlgorithm.PS256);
+        registerRequest.setBackchannelUserCodeParameter(true);
+
+        RegisterClient registerClient = new RegisterClient(registrationEndpoint);
+        registerClient.setRequest(registerRequest);
+        RegisterResponse registerResponse = registerClient.exec();
+
+        showClient(registerClient);
+        assertEquals(registerResponse.getStatus(), 200, "Unexpected response code: " + registerResponse.getEntity());
+        assertNotNull(registerResponse.getClientId());
+        assertNotNull(registerResponse.getClientSecret());
+        assertNotNull(registerResponse.getRegistrationAccessToken());
+        assertNotNull(registerResponse.getClientSecretExpiresAt());
+
+        assertTrue(registerResponse.getClaims().containsKey(BACKCHANNEL_TOKEN_DELIVERY_MODE.toString()));
+        assertTrue(registerResponse.getClaims().containsKey(BACKCHANNEL_AUTHENTICATION_REQUEST_SIGNING_ALG.toString()));
+        assertTrue(registerResponse.getClaims().containsKey(BACKCHANNEL_USER_CODE_PARAMETER.toString()));
+        assertTrue(registerResponse.getClaims().containsKey(BACKCHANNEL_CLIENT_NOTIFICATION_ENDPOINT.toString()));
+        assertEquals(registerResponse.getClaims().get(BACKCHANNEL_TOKEN_DELIVERY_MODE.toString()), BackchannelTokenDeliveryMode.PING.getValue());
+        assertEquals(registerResponse.getClaims().get(BACKCHANNEL_AUTHENTICATION_REQUEST_SIGNING_ALG.toString()), AsymmetricSignatureAlgorithm.PS256.getValue());
+        assertEquals(registerResponse.getClaims().get(BACKCHANNEL_USER_CODE_PARAMETER.toString()), new Boolean(true).toString());
+
+        String clientId = registerResponse.getClientId();
+        String clientSecret = registerResponse.getClientSecret();
+
+        // 2. Authentication Request
+        String clientNotificationToken = UUID.randomUUID().toString();
+
+        BackchannelAuthenticationRequest backchannelAuthenticationRequest = new BackchannelAuthenticationRequest();
+        backchannelAuthenticationRequest.setScope(Arrays.asList("openid"));
+        backchannelAuthenticationRequest.setLoginHintToken(loginHintTokenPS256);
+        backchannelAuthenticationRequest.setClientNotificationToken(clientNotificationToken);
+        backchannelAuthenticationRequest.setUserCode(backchannelUserCode);
+        backchannelAuthenticationRequest.setRequestedExpiry(1200);
+        backchannelAuthenticationRequest.setAuthUsername(clientId);
+        backchannelAuthenticationRequest.setAuthPassword(clientSecret);
+
+        BackchannelAuthenticationClient backchannelAuthenticationClient = new BackchannelAuthenticationClient(backchannelAuthenticationEndpoint);
+        backchannelAuthenticationClient.setRequest(backchannelAuthenticationRequest);
+        BackchannelAuthenticationResponse backchannelAuthenticationResponse = backchannelAuthenticationClient.exec();
+
+        showClient(backchannelAuthenticationClient);
+        assertEquals(backchannelAuthenticationResponse.getStatus(), 200, "Unexpected response code: " + backchannelAuthenticationResponse.getEntity());
+        assertNotNull(backchannelAuthenticationResponse.getAuthReqId());
+        assertNotNull(backchannelAuthenticationResponse.getExpiresIn());
+        assertNotNull(backchannelAuthenticationResponse.getInterval()); // This parameter will only be present if the Client is registered to use the Poll or Ping modes.
+    }
+
+    @Parameters({"clientJwksUri", "backchannelClientNotificationEndpoint", "backchannelUserCode"})
+    @Test(dependsOnMethods = "loginHintTokenPS384")
+    public void backchannelTokenDeliveryModePingLoginHintTokenPS384(
+            final String clientJwksUri, final String backchannelClientNotificationEndpoint, final String backchannelUserCode) {
+        showTitle("backchannelTokenDeliveryModePingLoginHintTokenPS384");
+
+        // 1. Dynamic Client Registration
+        RegisterRequest registerRequest = new RegisterRequest(ApplicationType.WEB, "oxAuth test app", null);
+        registerRequest.setJwksUri(clientJwksUri);
+        registerRequest.setGrantTypes(Arrays.asList(GrantType.CIBA));
+
+        registerRequest.setBackchannelTokenDeliveryMode(BackchannelTokenDeliveryMode.PING);
+        registerRequest.setBackchannelClientNotificationEndpoint(backchannelClientNotificationEndpoint);
+        registerRequest.setBackchannelAuthenticationRequestSigningAlg(AsymmetricSignatureAlgorithm.PS384);
+        registerRequest.setBackchannelUserCodeParameter(true);
+
+        RegisterClient registerClient = new RegisterClient(registrationEndpoint);
+        registerClient.setRequest(registerRequest);
+        RegisterResponse registerResponse = registerClient.exec();
+
+        showClient(registerClient);
+        assertEquals(registerResponse.getStatus(), 200, "Unexpected response code: " + registerResponse.getEntity());
+        assertNotNull(registerResponse.getClientId());
+        assertNotNull(registerResponse.getClientSecret());
+        assertNotNull(registerResponse.getRegistrationAccessToken());
+        assertNotNull(registerResponse.getClientSecretExpiresAt());
+
+        assertTrue(registerResponse.getClaims().containsKey(BACKCHANNEL_TOKEN_DELIVERY_MODE.toString()));
+        assertTrue(registerResponse.getClaims().containsKey(BACKCHANNEL_AUTHENTICATION_REQUEST_SIGNING_ALG.toString()));
+        assertTrue(registerResponse.getClaims().containsKey(BACKCHANNEL_USER_CODE_PARAMETER.toString()));
+        assertTrue(registerResponse.getClaims().containsKey(BACKCHANNEL_CLIENT_NOTIFICATION_ENDPOINT.toString()));
+        assertEquals(registerResponse.getClaims().get(BACKCHANNEL_TOKEN_DELIVERY_MODE.toString()), BackchannelTokenDeliveryMode.PING.getValue());
+        assertEquals(registerResponse.getClaims().get(BACKCHANNEL_AUTHENTICATION_REQUEST_SIGNING_ALG.toString()), AsymmetricSignatureAlgorithm.PS384.getValue());
+        assertEquals(registerResponse.getClaims().get(BACKCHANNEL_USER_CODE_PARAMETER.toString()), new Boolean(true).toString());
+
+        String clientId = registerResponse.getClientId();
+        String clientSecret = registerResponse.getClientSecret();
+
+        // 2. Authentication Request
+        String clientNotificationToken = UUID.randomUUID().toString();
+
+        BackchannelAuthenticationRequest backchannelAuthenticationRequest = new BackchannelAuthenticationRequest();
+        backchannelAuthenticationRequest.setScope(Arrays.asList("openid"));
+        backchannelAuthenticationRequest.setLoginHintToken(loginHintTokenPS384);
+        backchannelAuthenticationRequest.setClientNotificationToken(clientNotificationToken);
+        backchannelAuthenticationRequest.setUserCode(backchannelUserCode);
+        backchannelAuthenticationRequest.setRequestedExpiry(1200);
+        backchannelAuthenticationRequest.setAuthUsername(clientId);
+        backchannelAuthenticationRequest.setAuthPassword(clientSecret);
+
+        BackchannelAuthenticationClient backchannelAuthenticationClient = new BackchannelAuthenticationClient(backchannelAuthenticationEndpoint);
+        backchannelAuthenticationClient.setRequest(backchannelAuthenticationRequest);
+        BackchannelAuthenticationResponse backchannelAuthenticationResponse = backchannelAuthenticationClient.exec();
+
+        showClient(backchannelAuthenticationClient);
+        assertEquals(backchannelAuthenticationResponse.getStatus(), 200, "Unexpected response code: " + backchannelAuthenticationResponse.getEntity());
+        assertNotNull(backchannelAuthenticationResponse.getAuthReqId());
+        assertNotNull(backchannelAuthenticationResponse.getExpiresIn());
+        assertNotNull(backchannelAuthenticationResponse.getInterval()); // This parameter will only be present if the Client is registered to use the Poll or Ping modes.
+    }
+
+    @Parameters({"clientJwksUri", "backchannelClientNotificationEndpoint", "backchannelUserCode"})
+    @Test(dependsOnMethods = "loginHintTokenPS512")
+    public void backchannelTokenDeliveryModePingLoginHintTokenPS512(
+            final String clientJwksUri, final String backchannelClientNotificationEndpoint, final String backchannelUserCode) {
+        showTitle("backchannelTokenDeliveryModePingLoginHintTokenPS512");
+
+        // 1. Dynamic Client Registration
+        RegisterRequest registerRequest = new RegisterRequest(ApplicationType.WEB, "oxAuth test app", null);
+        registerRequest.setJwksUri(clientJwksUri);
+        registerRequest.setGrantTypes(Arrays.asList(GrantType.CIBA));
+
+        registerRequest.setBackchannelTokenDeliveryMode(BackchannelTokenDeliveryMode.PING);
+        registerRequest.setBackchannelClientNotificationEndpoint(backchannelClientNotificationEndpoint);
+        registerRequest.setBackchannelAuthenticationRequestSigningAlg(AsymmetricSignatureAlgorithm.PS512);
+        registerRequest.setBackchannelUserCodeParameter(true);
+
+        RegisterClient registerClient = new RegisterClient(registrationEndpoint);
+        registerClient.setRequest(registerRequest);
+        RegisterResponse registerResponse = registerClient.exec();
+
+        showClient(registerClient);
+        assertEquals(registerResponse.getStatus(), 200, "Unexpected response code: " + registerResponse.getEntity());
+        assertNotNull(registerResponse.getClientId());
+        assertNotNull(registerResponse.getClientSecret());
+        assertNotNull(registerResponse.getRegistrationAccessToken());
+        assertNotNull(registerResponse.getClientSecretExpiresAt());
+
+        assertTrue(registerResponse.getClaims().containsKey(BACKCHANNEL_TOKEN_DELIVERY_MODE.toString()));
+        assertTrue(registerResponse.getClaims().containsKey(BACKCHANNEL_AUTHENTICATION_REQUEST_SIGNING_ALG.toString()));
+        assertTrue(registerResponse.getClaims().containsKey(BACKCHANNEL_USER_CODE_PARAMETER.toString()));
+        assertTrue(registerResponse.getClaims().containsKey(BACKCHANNEL_CLIENT_NOTIFICATION_ENDPOINT.toString()));
+        assertEquals(registerResponse.getClaims().get(BACKCHANNEL_TOKEN_DELIVERY_MODE.toString()), BackchannelTokenDeliveryMode.PING.getValue());
+        assertEquals(registerResponse.getClaims().get(BACKCHANNEL_AUTHENTICATION_REQUEST_SIGNING_ALG.toString()), AsymmetricSignatureAlgorithm.PS512.getValue());
+        assertEquals(registerResponse.getClaims().get(BACKCHANNEL_USER_CODE_PARAMETER.toString()), new Boolean(true).toString());
+
+        String clientId = registerResponse.getClientId();
+        String clientSecret = registerResponse.getClientSecret();
+
+        // 2. Authentication Request
+        String clientNotificationToken = UUID.randomUUID().toString();
+
+        BackchannelAuthenticationRequest backchannelAuthenticationRequest = new BackchannelAuthenticationRequest();
+        backchannelAuthenticationRequest.setScope(Arrays.asList("openid"));
+        backchannelAuthenticationRequest.setLoginHintToken(loginHintTokenPS512);
+        backchannelAuthenticationRequest.setClientNotificationToken(clientNotificationToken);
+        backchannelAuthenticationRequest.setUserCode(backchannelUserCode);
+        backchannelAuthenticationRequest.setRequestedExpiry(1200);
+        backchannelAuthenticationRequest.setAuthUsername(clientId);
+        backchannelAuthenticationRequest.setAuthPassword(clientSecret);
+
+        BackchannelAuthenticationClient backchannelAuthenticationClient = new BackchannelAuthenticationClient(backchannelAuthenticationEndpoint);
+        backchannelAuthenticationClient.setRequest(backchannelAuthenticationRequest);
+        BackchannelAuthenticationResponse backchannelAuthenticationResponse = backchannelAuthenticationClient.exec();
+
+        showClient(backchannelAuthenticationClient);
+        assertEquals(backchannelAuthenticationResponse.getStatus(), 200, "Unexpected response code: " + backchannelAuthenticationResponse.getEntity());
+        assertNotNull(backchannelAuthenticationResponse.getAuthReqId());
+        assertNotNull(backchannelAuthenticationResponse.getExpiresIn());
+        assertNotNull(backchannelAuthenticationResponse.getInterval()); // This parameter will only be present if the Client is registered to use the Poll or Ping modes.
+    }
+
+    @Parameters({"clientJwksUri", "backchannelClientNotificationEndpoint"})
+    @Test
+    public void backchannelTokenDeliveryModePingFail1(final String clientJwksUri,
+                                                      final String backchannelClientNotificationEndpoint) {
+        showTitle("backchannelTokenDeliveryModePingFail1");
+
+        // 1. Dynamic Client Registration
+        RegisterRequest registerRequest = new RegisterRequest(ApplicationType.WEB, "oxAuth test app", null);
+        registerRequest.setJwksUri(clientJwksUri);
+        registerRequest.setGrantTypes(Arrays.asList(GrantType.CIBA));
+
+        registerRequest.setBackchannelTokenDeliveryMode(BackchannelTokenDeliveryMode.PING);
+        registerRequest.setBackchannelClientNotificationEndpoint(backchannelClientNotificationEndpoint);
+        registerRequest.setBackchannelAuthenticationRequestSigningAlg(AsymmetricSignatureAlgorithm.RS256);
+        registerRequest.setBackchannelUserCodeParameter(true);
+
+        RegisterClient registerClient = new RegisterClient(registrationEndpoint);
+        registerClient.setRequest(registerRequest);
+        RegisterResponse registerResponse = registerClient.exec();
+
+        showClient(registerClient);
+        assertEquals(registerResponse.getStatus(), 200, "Unexpected response code: " + registerResponse.getEntity());
+        assertNotNull(registerResponse.getClientId());
+        assertNotNull(registerResponse.getClientSecret());
+        assertNotNull(registerResponse.getRegistrationAccessToken());
+        assertNotNull(registerResponse.getClientSecretExpiresAt());
+
+        assertTrue(registerResponse.getClaims().containsKey(BACKCHANNEL_TOKEN_DELIVERY_MODE.toString()));
+        assertTrue(registerResponse.getClaims().containsKey(BACKCHANNEL_AUTHENTICATION_REQUEST_SIGNING_ALG.toString()));
+        assertTrue(registerResponse.getClaims().containsKey(BACKCHANNEL_USER_CODE_PARAMETER.toString()));
+        assertTrue(registerResponse.getClaims().containsKey(BACKCHANNEL_CLIENT_NOTIFICATION_ENDPOINT.toString()));
+        assertEquals(registerResponse.getClaims().get(BACKCHANNEL_TOKEN_DELIVERY_MODE.toString()), BackchannelTokenDeliveryMode.PING.getValue());
+        assertEquals(registerResponse.getClaims().get(BACKCHANNEL_AUTHENTICATION_REQUEST_SIGNING_ALG.toString()), AsymmetricSignatureAlgorithm.RS256.getValue());
+        assertEquals(registerResponse.getClaims().get(BACKCHANNEL_USER_CODE_PARAMETER.toString()), new Boolean(true).toString());
+
+        // 2. Authentication Request
+        BackchannelAuthenticationRequest backchannelAuthenticationRequest = new BackchannelAuthenticationRequest();
+
+        BackchannelAuthenticationClient backchannelAuthenticationClient = new BackchannelAuthenticationClient(backchannelAuthenticationEndpoint);
+        backchannelAuthenticationClient.setRequest(backchannelAuthenticationRequest);
+        BackchannelAuthenticationResponse backchannelAuthenticationResponse = backchannelAuthenticationClient.exec();
+
+        showClient(backchannelAuthenticationClient);
+        assertEquals(backchannelAuthenticationResponse.getStatus(), 400, "Unexpected response code: " + backchannelAuthenticationResponse.getEntity());
+        assertNotNull(backchannelAuthenticationResponse.getEntity(), "The entity is null");
+        assertNotNull(backchannelAuthenticationResponse.getErrorType(), "The error type is null");
+        assertEquals(BackchannelAuthenticationErrorResponseType.INVALID_REQUEST, backchannelAuthenticationResponse.getErrorType());
+        assertNotNull(backchannelAuthenticationResponse.getErrorDescription(), "The error description is null");
+    }
+
+    @Parameters({"clientJwksUri", "backchannelClientNotificationEndpoint"})
+    @Test
+    public void backchannelTokenDeliveryModePingFail2(final String clientJwksUri,
+                                                      final String backchannelClientNotificationEndpoint) {
+        showTitle("backchannelTokenDeliveryModePingFail2");
+
+        // 1. Dynamic Client Registration
+        RegisterRequest registerRequest = new RegisterRequest(ApplicationType.WEB, "oxAuth test app", null);
+        registerRequest.setJwksUri(clientJwksUri);
+        registerRequest.setGrantTypes(Arrays.asList(GrantType.CIBA));
+
+        registerRequest.setBackchannelTokenDeliveryMode(BackchannelTokenDeliveryMode.PING);
+        registerRequest.setBackchannelClientNotificationEndpoint(backchannelClientNotificationEndpoint);
+        registerRequest.setBackchannelAuthenticationRequestSigningAlg(AsymmetricSignatureAlgorithm.RS256);
+        registerRequest.setBackchannelUserCodeParameter(true);
+
+        RegisterClient registerClient = new RegisterClient(registrationEndpoint);
+        registerClient.setRequest(registerRequest);
+        RegisterResponse registerResponse = registerClient.exec();
+
+        showClient(registerClient);
+        assertEquals(registerResponse.getStatus(), 200, "Unexpected response code: " + registerResponse.getEntity());
+        assertNotNull(registerResponse.getClientId());
+        assertNotNull(registerResponse.getClientSecret());
+        assertNotNull(registerResponse.getRegistrationAccessToken());
+        assertNotNull(registerResponse.getClientSecretExpiresAt());
+
+        assertTrue(registerResponse.getClaims().containsKey(BACKCHANNEL_TOKEN_DELIVERY_MODE.toString()));
+        assertTrue(registerResponse.getClaims().containsKey(BACKCHANNEL_AUTHENTICATION_REQUEST_SIGNING_ALG.toString()));
+        assertTrue(registerResponse.getClaims().containsKey(BACKCHANNEL_USER_CODE_PARAMETER.toString()));
+        assertTrue(registerResponse.getClaims().containsKey(BACKCHANNEL_CLIENT_NOTIFICATION_ENDPOINT.toString()));
+        assertEquals(registerResponse.getClaims().get(BACKCHANNEL_TOKEN_DELIVERY_MODE.toString()), BackchannelTokenDeliveryMode.PING.getValue());
+        assertEquals(registerResponse.getClaims().get(BACKCHANNEL_AUTHENTICATION_REQUEST_SIGNING_ALG.toString()), AsymmetricSignatureAlgorithm.RS256.getValue());
+        assertEquals(registerResponse.getClaims().get(BACKCHANNEL_USER_CODE_PARAMETER.toString()), new Boolean(true).toString());
+
+        String clientId = registerResponse.getClientId();
+
+        // 2. Authentication Request
+        BackchannelAuthenticationRequest backchannelAuthenticationRequest = new BackchannelAuthenticationRequest();
+        backchannelAuthenticationRequest.setAuthUsername(clientId);
+        backchannelAuthenticationRequest.setAuthPassword("INVALID_CLIENT_SECRET");
+
+        BackchannelAuthenticationClient backchannelAuthenticationClient = new BackchannelAuthenticationClient(backchannelAuthenticationEndpoint);
+        backchannelAuthenticationClient.setRequest(backchannelAuthenticationRequest);
+        BackchannelAuthenticationResponse backchannelAuthenticationResponse = backchannelAuthenticationClient.exec();
+
+        showClient(backchannelAuthenticationClient);
+        assertEquals(backchannelAuthenticationResponse.getStatus(), 401, "Unexpected response code: " + backchannelAuthenticationResponse.getEntity());
+        assertNotNull(backchannelAuthenticationResponse.getEntity(), "The entity is null");
+        assertNotNull(backchannelAuthenticationResponse.getErrorType(), "The error type is null");
+        assertEquals(BackchannelAuthenticationErrorResponseType.INVALID_CLIENT, backchannelAuthenticationResponse.getErrorType());
+        assertNotNull(backchannelAuthenticationResponse.getErrorDescription(), "The error description is null");
+    }
+
+    @Parameters({"clientJwksUri", "backchannelClientNotificationEndpoint"})
+    @Test
+    public void backchannelTokenDeliveryModePingFail3(final String clientJwksUri,
+                                                      final String backchannelClientNotificationEndpoint) {
+        showTitle("backchannelTokenDeliveryModePingFail3");
+
+        // 1. Dynamic Client Registration
+        RegisterRequest registerRequest = new RegisterRequest(ApplicationType.WEB, "oxAuth test app", null);
+        registerRequest.setJwksUri(clientJwksUri);
+        registerRequest.setGrantTypes(Arrays.asList(GrantType.CIBA));
+
+        registerRequest.setBackchannelTokenDeliveryMode(BackchannelTokenDeliveryMode.PING);
+        registerRequest.setBackchannelClientNotificationEndpoint(backchannelClientNotificationEndpoint);
+        registerRequest.setBackchannelAuthenticationRequestSigningAlg(AsymmetricSignatureAlgorithm.RS256);
+        registerRequest.setBackchannelUserCodeParameter(true);
+
+        RegisterClient registerClient = new RegisterClient(registrationEndpoint);
+        registerClient.setRequest(registerRequest);
+        RegisterResponse registerResponse = registerClient.exec();
+
+        showClient(registerClient);
+        assertEquals(registerResponse.getStatus(), 200, "Unexpected response code: " + registerResponse.getEntity());
+        assertNotNull(registerResponse.getClientId());
+        assertNotNull(registerResponse.getClientSecret());
+        assertNotNull(registerResponse.getRegistrationAccessToken());
+        assertNotNull(registerResponse.getClientSecretExpiresAt());
+
+        assertTrue(registerResponse.getClaims().containsKey(BACKCHANNEL_TOKEN_DELIVERY_MODE.toString()));
+        assertTrue(registerResponse.getClaims().containsKey(BACKCHANNEL_AUTHENTICATION_REQUEST_SIGNING_ALG.toString()));
+        assertTrue(registerResponse.getClaims().containsKey(BACKCHANNEL_USER_CODE_PARAMETER.toString()));
+        assertTrue(registerResponse.getClaims().containsKey(BACKCHANNEL_CLIENT_NOTIFICATION_ENDPOINT.toString()));
+        assertEquals(registerResponse.getClaims().get(BACKCHANNEL_TOKEN_DELIVERY_MODE.toString()), BackchannelTokenDeliveryMode.PING.getValue());
+        assertEquals(registerResponse.getClaims().get(BACKCHANNEL_AUTHENTICATION_REQUEST_SIGNING_ALG.toString()), AsymmetricSignatureAlgorithm.RS256.getValue());
+        assertEquals(registerResponse.getClaims().get(BACKCHANNEL_USER_CODE_PARAMETER.toString()), new Boolean(true).toString());
+
+        String clientId = registerResponse.getClientId();
+        String clientSecret = registerResponse.getClientSecret();
+
+        // 2. Authentication Request
+        BackchannelAuthenticationRequest backchannelAuthenticationRequest = new BackchannelAuthenticationRequest();
+        backchannelAuthenticationRequest.setScope(null); // Invalid Scope
+        backchannelAuthenticationRequest.setAuthUsername(clientId);
+        backchannelAuthenticationRequest.setAuthPassword(clientSecret);
+
+        BackchannelAuthenticationClient backchannelAuthenticationClient = new BackchannelAuthenticationClient(backchannelAuthenticationEndpoint);
+        backchannelAuthenticationClient.setRequest(backchannelAuthenticationRequest);
+        BackchannelAuthenticationResponse backchannelAuthenticationResponse = backchannelAuthenticationClient.exec();
+
+        showClient(backchannelAuthenticationClient);
+        assertEquals(backchannelAuthenticationResponse.getStatus(), 400, "Unexpected response code: " + backchannelAuthenticationResponse.getEntity());
+        assertNotNull(backchannelAuthenticationResponse.getEntity(), "The entity is null");
+        assertNotNull(backchannelAuthenticationResponse.getErrorType(), "The error type is null");
+        assertEquals(BackchannelAuthenticationErrorResponseType.UNKNOWN_USER_ID, backchannelAuthenticationResponse.getErrorType());
+        assertNotNull(backchannelAuthenticationResponse.getErrorDescription(), "The error description is null");
+    }
+
+    @Parameters({"clientJwksUri", "backchannelClientNotificationEndpoint"})
+    @Test
+    public void backchannelTokenDeliveryModePingFail4(final String clientJwksUri,
+                                                      final String backchannelClientNotificationEndpoint) {
+        showTitle("backchannelTokenDeliveryModePingFail4");
+
+        // 1. Dynamic Client Registration
+        RegisterRequest registerRequest = new RegisterRequest(ApplicationType.WEB, "oxAuth test app", null);
+        registerRequest.setJwksUri(clientJwksUri);
+        registerRequest.setGrantTypes(Arrays.asList(GrantType.CIBA));
+
+        registerRequest.setBackchannelTokenDeliveryMode(BackchannelTokenDeliveryMode.PING);
+        registerRequest.setBackchannelClientNotificationEndpoint(backchannelClientNotificationEndpoint);
+        registerRequest.setBackchannelAuthenticationRequestSigningAlg(AsymmetricSignatureAlgorithm.RS256);
+        registerRequest.setBackchannelUserCodeParameter(true);
+
+        RegisterClient registerClient = new RegisterClient(registrationEndpoint);
+        registerClient.setRequest(registerRequest);
+        RegisterResponse registerResponse = registerClient.exec();
+
+        showClient(registerClient);
+        assertEquals(registerResponse.getStatus(), 200, "Unexpected response code: " + registerResponse.getEntity());
+        assertNotNull(registerResponse.getClientId());
+        assertNotNull(registerResponse.getClientSecret());
+        assertNotNull(registerResponse.getRegistrationAccessToken());
+        assertNotNull(registerResponse.getClientSecretExpiresAt());
+
+        assertTrue(registerResponse.getClaims().containsKey(BACKCHANNEL_TOKEN_DELIVERY_MODE.toString()));
+        assertTrue(registerResponse.getClaims().containsKey(BACKCHANNEL_AUTHENTICATION_REQUEST_SIGNING_ALG.toString()));
+        assertTrue(registerResponse.getClaims().containsKey(BACKCHANNEL_USER_CODE_PARAMETER.toString()));
+        assertTrue(registerResponse.getClaims().containsKey(BACKCHANNEL_CLIENT_NOTIFICATION_ENDPOINT.toString()));
+        assertEquals(registerResponse.getClaims().get(BACKCHANNEL_TOKEN_DELIVERY_MODE.toString()), BackchannelTokenDeliveryMode.PING.getValue());
+        assertEquals(registerResponse.getClaims().get(BACKCHANNEL_AUTHENTICATION_REQUEST_SIGNING_ALG.toString()), AsymmetricSignatureAlgorithm.RS256.getValue());
+        assertEquals(registerResponse.getClaims().get(BACKCHANNEL_USER_CODE_PARAMETER.toString()), new Boolean(true).toString());
+
+        String clientId = registerResponse.getClientId();
+        String clientSecret = registerResponse.getClientSecret();
+
+        // 2. Authentication Request
+        BackchannelAuthenticationRequest backchannelAuthenticationRequest = new BackchannelAuthenticationRequest();
+        backchannelAuthenticationRequest.setScope(Arrays.asList("openid"));
+        backchannelAuthenticationRequest.setLoginHint(null); // Invalid login hint.
+        backchannelAuthenticationRequest.setLoginHintToken(null); // Invalid login hint token.
+        backchannelAuthenticationRequest.setIdTokenHint(null); // Invalid id token hint
+        backchannelAuthenticationRequest.setAuthUsername(clientId);
+        backchannelAuthenticationRequest.setAuthPassword(clientSecret);
+
+        BackchannelAuthenticationClient backchannelAuthenticationClient = new BackchannelAuthenticationClient(backchannelAuthenticationEndpoint);
+        backchannelAuthenticationClient.setRequest(backchannelAuthenticationRequest);
+        BackchannelAuthenticationResponse backchannelAuthenticationResponse = backchannelAuthenticationClient.exec();
+
+        showClient(backchannelAuthenticationClient);
+        assertEquals(backchannelAuthenticationResponse.getStatus(), 400, "Unexpected response code: " + backchannelAuthenticationResponse.getEntity());
+        assertNotNull(backchannelAuthenticationResponse.getEntity(), "The entity is null");
+        assertNotNull(backchannelAuthenticationResponse.getErrorType(), "The error type is null");
+        assertEquals(BackchannelAuthenticationErrorResponseType.UNKNOWN_USER_ID, backchannelAuthenticationResponse.getErrorType());
+        assertNotNull(backchannelAuthenticationResponse.getErrorDescription(), "The error description is null");
+    }
+
+    @Parameters({"clientJwksUri", "backchannelClientNotificationEndpoint"})
+    @Test
+    public void backchannelTokenDeliveryModePingFail5(final String clientJwksUri,
+                                                      final String backchannelClientNotificationEndpoint) {
+        showTitle("backchannelTokenDeliveryModePingFail5");
+
+        // 1. Dynamic Client Registration
+        RegisterRequest registerRequest = new RegisterRequest(ApplicationType.WEB, "oxAuth test app", null);
+        registerRequest.setJwksUri(clientJwksUri);
+        registerRequest.setGrantTypes(Arrays.asList(GrantType.CIBA));
+
+        registerRequest.setBackchannelTokenDeliveryMode(BackchannelTokenDeliveryMode.PING);
+        registerRequest.setBackchannelClientNotificationEndpoint(backchannelClientNotificationEndpoint);
+        registerRequest.setBackchannelAuthenticationRequestSigningAlg(AsymmetricSignatureAlgorithm.RS256);
+        registerRequest.setBackchannelUserCodeParameter(true);
+
+        RegisterClient registerClient = new RegisterClient(registrationEndpoint);
+        registerClient.setRequest(registerRequest);
+        RegisterResponse registerResponse = registerClient.exec();
+
+        showClient(registerClient);
+        assertEquals(registerResponse.getStatus(), 200, "Unexpected response code: " + registerResponse.getEntity());
+        assertNotNull(registerResponse.getClientId());
+        assertNotNull(registerResponse.getClientSecret());
+        assertNotNull(registerResponse.getRegistrationAccessToken());
+        assertNotNull(registerResponse.getClientSecretExpiresAt());
+
+        assertTrue(registerResponse.getClaims().containsKey(BACKCHANNEL_TOKEN_DELIVERY_MODE.toString()));
+        assertTrue(registerResponse.getClaims().containsKey(BACKCHANNEL_AUTHENTICATION_REQUEST_SIGNING_ALG.toString()));
+        assertTrue(registerResponse.getClaims().containsKey(BACKCHANNEL_USER_CODE_PARAMETER.toString()));
+        assertTrue(registerResponse.getClaims().containsKey(BACKCHANNEL_CLIENT_NOTIFICATION_ENDPOINT.toString()));
+        assertEquals(registerResponse.getClaims().get(BACKCHANNEL_TOKEN_DELIVERY_MODE.toString()), BackchannelTokenDeliveryMode.PING.getValue());
+        assertEquals(registerResponse.getClaims().get(BACKCHANNEL_AUTHENTICATION_REQUEST_SIGNING_ALG.toString()), AsymmetricSignatureAlgorithm.RS256.getValue());
+        assertEquals(registerResponse.getClaims().get(BACKCHANNEL_USER_CODE_PARAMETER.toString()), new Boolean(true).toString());
+
+        String clientId = registerResponse.getClientId();
+        String clientSecret = registerResponse.getClientSecret();
+
+        // 2. Authentication Request
+        BackchannelAuthenticationRequest backchannelAuthenticationRequest = new BackchannelAuthenticationRequest();
+        backchannelAuthenticationRequest.setScope(Arrays.asList("openid"));
+        backchannelAuthenticationRequest.setLoginHint("admin");
+        backchannelAuthenticationRequest.setClientNotificationToken(null); // Invalid client notification token.
+        backchannelAuthenticationRequest.setAuthUsername(clientId);
+        backchannelAuthenticationRequest.setAuthPassword(clientSecret);
+
+        BackchannelAuthenticationClient backchannelAuthenticationClient = new BackchannelAuthenticationClient(backchannelAuthenticationEndpoint);
+        backchannelAuthenticationClient.setRequest(backchannelAuthenticationRequest);
+        BackchannelAuthenticationResponse backchannelAuthenticationResponse = backchannelAuthenticationClient.exec();
+
+        showClient(backchannelAuthenticationClient);
+        assertEquals(backchannelAuthenticationResponse.getStatus(), 400, "Unexpected response code: " + backchannelAuthenticationResponse.getEntity());
+        assertNotNull(backchannelAuthenticationResponse.getEntity(), "The entity is null");
+        assertNotNull(backchannelAuthenticationResponse.getErrorType(), "The error type is null");
+        assertEquals(BackchannelAuthenticationErrorResponseType.INVALID_REQUEST, backchannelAuthenticationResponse.getErrorType());
+        assertNotNull(backchannelAuthenticationResponse.getErrorDescription(), "The error description is null");
+    }
+
+    @Parameters({"clientJwksUri", "backchannelClientNotificationEndpoint"})
+    @Test
+    public void backchannelTokenDeliveryModePingFail6(final String clientJwksUri,
+                                                      final String backchannelClientNotificationEndpoint) {
+        showTitle("backchannelTokenDeliveryModePingFail6");
+
+        // 1. Dynamic Client Registration
+        RegisterRequest registerRequest = new RegisterRequest(ApplicationType.WEB, "oxAuth test app", null);
+        registerRequest.setJwksUri(clientJwksUri);
+        registerRequest.setGrantTypes(Arrays.asList(GrantType.CIBA));
+
+        registerRequest.setBackchannelTokenDeliveryMode(BackchannelTokenDeliveryMode.PING);
+        registerRequest.setBackchannelClientNotificationEndpoint(backchannelClientNotificationEndpoint);
+        registerRequest.setBackchannelAuthenticationRequestSigningAlg(AsymmetricSignatureAlgorithm.RS256);
+        registerRequest.setBackchannelUserCodeParameter(true);
+
+        RegisterClient registerClient = new RegisterClient(registrationEndpoint);
+        registerClient.setRequest(registerRequest);
+        RegisterResponse registerResponse = registerClient.exec();
+
+        showClient(registerClient);
+        assertEquals(registerResponse.getStatus(), 200, "Unexpected response code: " + registerResponse.getEntity());
+        assertNotNull(registerResponse.getClientId());
+        assertNotNull(registerResponse.getClientSecret());
+        assertNotNull(registerResponse.getRegistrationAccessToken());
+        assertNotNull(registerResponse.getClientSecretExpiresAt());
+
+        assertTrue(registerResponse.getClaims().containsKey(BACKCHANNEL_TOKEN_DELIVERY_MODE.toString()));
+        assertTrue(registerResponse.getClaims().containsKey(BACKCHANNEL_AUTHENTICATION_REQUEST_SIGNING_ALG.toString()));
+        assertTrue(registerResponse.getClaims().containsKey(BACKCHANNEL_USER_CODE_PARAMETER.toString()));
+        assertTrue(registerResponse.getClaims().containsKey(BACKCHANNEL_CLIENT_NOTIFICATION_ENDPOINT.toString()));
+        assertEquals(registerResponse.getClaims().get(BACKCHANNEL_TOKEN_DELIVERY_MODE.toString()), BackchannelTokenDeliveryMode.PING.getValue());
+        assertEquals(registerResponse.getClaims().get(BACKCHANNEL_AUTHENTICATION_REQUEST_SIGNING_ALG.toString()), AsymmetricSignatureAlgorithm.RS256.getValue());
+        assertEquals(registerResponse.getClaims().get(BACKCHANNEL_USER_CODE_PARAMETER.toString()), new Boolean(true).toString());
+
+        String clientId = registerResponse.getClientId();
+        String clientSecret = registerResponse.getClientSecret();
+
+        // 2. Authentication Request
+        String clientNotificationToken = UUID.randomUUID().toString();
+
+        BackchannelAuthenticationRequest backchannelAuthenticationRequest = new BackchannelAuthenticationRequest();
+        backchannelAuthenticationRequest.setScope(Arrays.asList("openid"));
+        backchannelAuthenticationRequest.setLoginHint("admin");
+        backchannelAuthenticationRequest.setClientNotificationToken(clientNotificationToken);
+        backchannelAuthenticationRequest.setUserCode(null); // Invalid user code.
+        backchannelAuthenticationRequest.setAuthUsername(clientId);
+        backchannelAuthenticationRequest.setAuthPassword(clientSecret);
+
+        BackchannelAuthenticationClient backchannelAuthenticationClient = new BackchannelAuthenticationClient(backchannelAuthenticationEndpoint);
+        backchannelAuthenticationClient.setRequest(backchannelAuthenticationRequest);
+        BackchannelAuthenticationResponse backchannelAuthenticationResponse = backchannelAuthenticationClient.exec();
+
+        showClient(backchannelAuthenticationClient);
+        assertEquals(backchannelAuthenticationResponse.getStatus(), 400, "Unexpected response code: " + backchannelAuthenticationResponse.getEntity());
+        assertNotNull(backchannelAuthenticationResponse.getEntity(), "The entity is null");
+        assertNotNull(backchannelAuthenticationResponse.getErrorType(), "The error type is null");
+        assertEquals(BackchannelAuthenticationErrorResponseType.INVALID_USER_CODE, backchannelAuthenticationResponse.getErrorType());
+        assertNotNull(backchannelAuthenticationResponse.getErrorDescription(), "The error description is null");
+    }
+
+    @Parameters({"clientJwksUri", "backchannelClientNotificationEndpoint", "backchannelUserCode", "userId"})
+    @Test
+    public void backchannelTokenDeliveryModePingFail7(
+            final String clientJwksUri, final String backchannelClientNotificationEndpoint,
+            final String backchannelUserCode, final String userId) throws InterruptedException {
+        showTitle("backchannelTokenDeliveryModePingFail7");
+
+        // 1. Dynamic Client Registration
+        RegisterRequest registerRequest = new RegisterRequest(ApplicationType.WEB, "oxAuth test app", null);
+        registerRequest.setJwksUri(clientJwksUri);
+        registerRequest.setGrantTypes(Arrays.asList(GrantType.CIBA));
+
+        registerRequest.setBackchannelTokenDeliveryMode(BackchannelTokenDeliveryMode.PING);
+        registerRequest.setBackchannelClientNotificationEndpoint(backchannelClientNotificationEndpoint);
+        registerRequest.setBackchannelAuthenticationRequestSigningAlg(AsymmetricSignatureAlgorithm.RS256);
+        registerRequest.setBackchannelUserCodeParameter(true);
+
+        RegisterClient registerClient = new RegisterClient(registrationEndpoint);
+        registerClient.setRequest(registerRequest);
+        RegisterResponse registerResponse = registerClient.exec();
+
+        showClient(registerClient);
+        assertEquals(registerResponse.getStatus(), 200, "Unexpected response code: " + registerResponse.getEntity());
+        assertNotNull(registerResponse.getClientId());
+        assertNotNull(registerResponse.getClientSecret());
+        assertNotNull(registerResponse.getRegistrationAccessToken());
+        assertNotNull(registerResponse.getClientSecretExpiresAt());
+
+        assertTrue(registerResponse.getClaims().containsKey(BACKCHANNEL_TOKEN_DELIVERY_MODE.toString()));
+        assertTrue(registerResponse.getClaims().containsKey(BACKCHANNEL_AUTHENTICATION_REQUEST_SIGNING_ALG.toString()));
+        assertTrue(registerResponse.getClaims().containsKey(BACKCHANNEL_USER_CODE_PARAMETER.toString()));
+        assertTrue(registerResponse.getClaims().containsKey(BACKCHANNEL_CLIENT_NOTIFICATION_ENDPOINT.toString()));
+        assertEquals(registerResponse.getClaims().get(BACKCHANNEL_TOKEN_DELIVERY_MODE.toString()), BackchannelTokenDeliveryMode.PING.getValue());
+        assertEquals(registerResponse.getClaims().get(BACKCHANNEL_AUTHENTICATION_REQUEST_SIGNING_ALG.toString()), AsymmetricSignatureAlgorithm.RS256.getValue());
+        assertEquals(registerResponse.getClaims().get(BACKCHANNEL_USER_CODE_PARAMETER.toString()), new Boolean(true).toString());
+
+        String clientId = registerResponse.getClientId();
+        String clientSecret = registerResponse.getClientSecret();
+
+        // 2. Authentication Request
+        String clientNotificationToken = UUID.randomUUID().toString();
+
+        BackchannelAuthenticationRequest backchannelAuthenticationRequest = new BackchannelAuthenticationRequest();
+        backchannelAuthenticationRequest.setScope(Arrays.asList("openid", "profile", "email", "address", "phone"));
+        backchannelAuthenticationRequest.setLoginHint(userId);
+        backchannelAuthenticationRequest.setClientNotificationToken(clientNotificationToken);
+        backchannelAuthenticationRequest.setUserCode(backchannelUserCode);
+        backchannelAuthenticationRequest.setRequestedExpiry(1200);
+        backchannelAuthenticationRequest.setAcrValues(Arrays.asList("auth_ldap_server", "basic"));
+        backchannelAuthenticationRequest.setBindingMessage("####"); // Invalid binding message
+        backchannelAuthenticationRequest.setAuthUsername(clientId);
+        backchannelAuthenticationRequest.setAuthPassword(clientSecret);
+
+        BackchannelAuthenticationClient backchannelAuthenticationClient = new BackchannelAuthenticationClient(backchannelAuthenticationEndpoint);
+        backchannelAuthenticationClient.setRequest(backchannelAuthenticationRequest);
+        BackchannelAuthenticationResponse backchannelAuthenticationResponse = backchannelAuthenticationClient.exec();
+
+        showClient(backchannelAuthenticationClient);
+        assertEquals(backchannelAuthenticationResponse.getStatus(), 400, "Unexpected response code: " + backchannelAuthenticationResponse.getEntity());
+        assertNotNull(backchannelAuthenticationResponse.getEntity(), "The entity is null");
+        assertNotNull(backchannelAuthenticationResponse.getErrorType(), "The error type is null");
+        assertEquals(BackchannelAuthenticationErrorResponseType.INVALID_BINDING_MESSAGE, backchannelAuthenticationResponse.getErrorType());
+        assertNotNull(backchannelAuthenticationResponse.getErrorDescription(), "The error description is null");
+    }
+
+    @Parameters({"userId", "userSecret", "redirectUri", "redirectUris", "sectorIdentifierUri"})
+    @Test
+    public void idTokenHintRS256(
+            final String userId, final String userSecret, final String redirectUri, final String redirectUris,
+            final String sectorIdentifierUri) throws Exception {
+        showTitle("idTokenHintRS256");
+
+        List<ResponseType> responseTypes = Arrays.asList(ResponseType.TOKEN, ResponseType.ID_TOKEN);
+
+        // 1. Register client
+        RegisterRequest registerRequest = new RegisterRequest(ApplicationType.WEB, "oxAuth test app",
+                StringUtils.spaceSeparatedToList(redirectUris));
+        registerRequest.setResponseTypes(responseTypes);
+        registerRequest.setSectorIdentifierUri(sectorIdentifierUri);
+        registerRequest.setIdTokenSignedResponseAlg(SignatureAlgorithm.RS256);
+
+        RegisterClient registerClient = new RegisterClient(registrationEndpoint);
+        registerClient.setRequest(registerRequest);
+        RegisterResponse registerResponse = registerClient.exec();
+
+        showClient(registerClient);
+        assertEquals(registerResponse.getStatus(), 200, "Unexpected response code: " + registerResponse.getEntity());
+        assertNotNull(registerResponse.getClientId());
+        assertNotNull(registerResponse.getClientSecret());
+        assertNotNull(registerResponse.getRegistrationAccessToken());
+        assertNotNull(registerResponse.getClientIdIssuedAt());
+        assertNotNull(registerResponse.getClientSecretExpiresAt());
+
+        String clientId = registerResponse.getClientId();
+
+        // 2. Request authorization
+        List<String> scopes = Arrays.asList("openid");
+        String nonce = UUID.randomUUID().toString();
+        String state = UUID.randomUUID().toString();
+
+        AuthorizationRequest authorizationRequest = new AuthorizationRequest(responseTypes, clientId, scopes, redirectUri, nonce);
+        authorizationRequest.setState(state);
+
+        AuthorizeClient authorizeClient = new AuthorizeClient(authorizationEndpoint);
+        authorizeClient.setRequest(authorizationRequest);
+
+        AuthorizationResponse authorizationResponse = authenticateResourceOwnerAndGrantAccess(
+                authorizationEndpoint, authorizationRequest, userId, userSecret);
+
+        assertNotNull(authorizationResponse.getLocation(), "The location is null");
+        assertNotNull(authorizationResponse.getAccessToken(), "The accessToken is null");
+        assertNotNull(authorizationResponse.getTokenType(), "The tokenType is null");
+        assertNotNull(authorizationResponse.getIdToken(), "The idToken is null");
+        assertNotNull(authorizationResponse.getState(), "The state is null");
+
+        String idToken = authorizationResponse.getIdToken();
+
+        // 3. Validate id_token
+        Jwt jwt = Jwt.parse(idToken);
+        assertNotNull(jwt.getHeader().getClaimAsString(JwtHeaderName.TYPE));
+        assertNotNull(jwt.getHeader().getClaimAsString(JwtHeaderName.ALGORITHM));
+        assertNotNull(jwt.getClaims().getClaimAsString(JwtClaimName.ISSUER));
+        assertNotNull(jwt.getClaims().getClaimAsString(JwtClaimName.AUDIENCE));
+        assertNotNull(jwt.getClaims().getClaimAsString(JwtClaimName.EXPIRATION_TIME));
+        assertNotNull(jwt.getClaims().getClaimAsString(JwtClaimName.ISSUED_AT));
+        assertNotNull(jwt.getClaims().getClaimAsString(JwtClaimName.SUBJECT_IDENTIFIER));
+        assertNotNull(jwt.getClaims().getClaimAsString(JwtClaimName.ACCESS_TOKEN_HASH));
+        assertNotNull(jwt.getClaims().getClaimAsString(JwtClaimName.AUTHENTICATION_TIME));
+
+        RSAPublicKey publicKey = JwkClient.getRSAPublicKey(
+                jwksUri,
+                jwt.getHeader().getClaimAsString(JwtHeaderName.KEY_ID));
+        RSASigner rsaSigner = new RSASigner(SignatureAlgorithm.RS256, publicKey);
+
+        assertTrue(rsaSigner.validate(jwt));
+
+        idTokenHintRS256 = idToken;
+    }
+
+    @Parameters({"userId", "userSecret", "redirectUri", "redirectUris", "sectorIdentifierUri"})
+    @Test
+    public void idTokenHintRS384(
+            final String userId, final String userSecret, final String redirectUri, final String redirectUris,
+            final String sectorIdentifierUri) throws Exception {
+        showTitle("idTokenHintRS384");
+
+        List<ResponseType> responseTypes = Arrays.asList(ResponseType.TOKEN, ResponseType.ID_TOKEN);
+
+        // 1. Register client
+        RegisterRequest registerRequest = new RegisterRequest(ApplicationType.WEB, "oxAuth test app",
+                StringUtils.spaceSeparatedToList(redirectUris));
+        registerRequest.setResponseTypes(responseTypes);
+        registerRequest.setSectorIdentifierUri(sectorIdentifierUri);
+        registerRequest.setIdTokenSignedResponseAlg(SignatureAlgorithm.RS384);
+
+        RegisterClient registerClient = new RegisterClient(registrationEndpoint);
+        registerClient.setRequest(registerRequest);
+        RegisterResponse registerResponse = registerClient.exec();
+
+        showClient(registerClient);
+        assertEquals(registerResponse.getStatus(), 200, "Unexpected response code: " + registerResponse.getEntity());
+        assertNotNull(registerResponse.getClientId());
+        assertNotNull(registerResponse.getClientSecret());
+        assertNotNull(registerResponse.getRegistrationAccessToken());
+        assertNotNull(registerResponse.getClientIdIssuedAt());
+        assertNotNull(registerResponse.getClientSecretExpiresAt());
+
+        String clientId = registerResponse.getClientId();
+
+        // 2. Request authorization
+        List<String> scopes = Arrays.asList("openid");
+        String nonce = UUID.randomUUID().toString();
+        String state = UUID.randomUUID().toString();
+
+        AuthorizationRequest authorizationRequest = new AuthorizationRequest(responseTypes, clientId, scopes, redirectUri, nonce);
+        authorizationRequest.setState(state);
+
+        AuthorizeClient authorizeClient = new AuthorizeClient(authorizationEndpoint);
+        authorizeClient.setRequest(authorizationRequest);
+
+        AuthorizationResponse authorizationResponse = authenticateResourceOwnerAndGrantAccess(
+                authorizationEndpoint, authorizationRequest, userId, userSecret);
+
+        assertNotNull(authorizationResponse.getLocation(), "The location is null");
+        assertNotNull(authorizationResponse.getAccessToken(), "The accessToken is null");
+        assertNotNull(authorizationResponse.getTokenType(), "The tokenType is null");
+        assertNotNull(authorizationResponse.getIdToken(), "The idToken is null");
+        assertNotNull(authorizationResponse.getState(), "The state is null");
+
+        String idToken = authorizationResponse.getIdToken();
+
+        // 3. Validate id_token
+        Jwt jwt = Jwt.parse(idToken);
+        assertNotNull(jwt.getHeader().getClaimAsString(JwtHeaderName.TYPE));
+        assertNotNull(jwt.getHeader().getClaimAsString(JwtHeaderName.ALGORITHM));
+        assertNotNull(jwt.getClaims().getClaimAsString(JwtClaimName.ISSUER));
+        assertNotNull(jwt.getClaims().getClaimAsString(JwtClaimName.AUDIENCE));
+        assertNotNull(jwt.getClaims().getClaimAsString(JwtClaimName.EXPIRATION_TIME));
+        assertNotNull(jwt.getClaims().getClaimAsString(JwtClaimName.ISSUED_AT));
+        assertNotNull(jwt.getClaims().getClaimAsString(JwtClaimName.SUBJECT_IDENTIFIER));
+        assertNotNull(jwt.getClaims().getClaimAsString(JwtClaimName.ACCESS_TOKEN_HASH));
+        assertNotNull(jwt.getClaims().getClaimAsString(JwtClaimName.AUTHENTICATION_TIME));
+
+        RSAPublicKey publicKey = JwkClient.getRSAPublicKey(
+                jwksUri,
+                jwt.getHeader().getClaimAsString(JwtHeaderName.KEY_ID));
+        RSASigner rsaSigner = new RSASigner(SignatureAlgorithm.RS384, publicKey);
+
+        assertTrue(rsaSigner.validate(jwt));
+
+        idTokenHintRS384 = idToken;
+    }
+
+    @Parameters({"userId", "userSecret", "redirectUri", "redirectUris", "sectorIdentifierUri"})
+    @Test
+    public void idTokenHintRS512(
+            final String userId, final String userSecret, final String redirectUri, final String redirectUris,
+            final String sectorIdentifierUri) throws Exception {
+        showTitle("idTokenHintRS512");
+
+        List<ResponseType> responseTypes = Arrays.asList(ResponseType.TOKEN, ResponseType.ID_TOKEN);
+
+        // 1. Register client
+        RegisterRequest registerRequest = new RegisterRequest(ApplicationType.WEB, "oxAuth test app",
+                StringUtils.spaceSeparatedToList(redirectUris));
+        registerRequest.setResponseTypes(responseTypes);
+        registerRequest.setSectorIdentifierUri(sectorIdentifierUri);
+        registerRequest.setIdTokenSignedResponseAlg(SignatureAlgorithm.RS512);
+
+        RegisterClient registerClient = new RegisterClient(registrationEndpoint);
+        registerClient.setRequest(registerRequest);
+        RegisterResponse registerResponse = registerClient.exec();
+
+        showClient(registerClient);
+        assertEquals(registerResponse.getStatus(), 200, "Unexpected response code: " + registerResponse.getEntity());
+        assertNotNull(registerResponse.getClientId());
+        assertNotNull(registerResponse.getClientSecret());
+        assertNotNull(registerResponse.getRegistrationAccessToken());
+        assertNotNull(registerResponse.getClientIdIssuedAt());
+        assertNotNull(registerResponse.getClientSecretExpiresAt());
+
+        String clientId = registerResponse.getClientId();
+
+        // 2. Request authorization
+        List<String> scopes = Arrays.asList("openid");
+        String nonce = UUID.randomUUID().toString();
+        String state = UUID.randomUUID().toString();
+
+        AuthorizationRequest authorizationRequest = new AuthorizationRequest(responseTypes, clientId, scopes, redirectUri, nonce);
+        authorizationRequest.setState(state);
+
+        AuthorizeClient authorizeClient = new AuthorizeClient(authorizationEndpoint);
+        authorizeClient.setRequest(authorizationRequest);
+
+        AuthorizationResponse authorizationResponse = authenticateResourceOwnerAndGrantAccess(
+                authorizationEndpoint, authorizationRequest, userId, userSecret);
+
+        assertNotNull(authorizationResponse.getLocation(), "The location is null");
+        assertNotNull(authorizationResponse.getAccessToken(), "The accessToken is null");
+        assertNotNull(authorizationResponse.getTokenType(), "The tokenType is null");
+        assertNotNull(authorizationResponse.getIdToken(), "The idToken is null");
+        assertNotNull(authorizationResponse.getState(), "The state is null");
+
+        String idToken = authorizationResponse.getIdToken();
+
+        // 3. Validate id_token
+        Jwt jwt = Jwt.parse(idToken);
+        assertNotNull(jwt.getHeader().getClaimAsString(JwtHeaderName.TYPE));
+        assertNotNull(jwt.getHeader().getClaimAsString(JwtHeaderName.ALGORITHM));
+        assertNotNull(jwt.getClaims().getClaimAsString(JwtClaimName.ISSUER));
+        assertNotNull(jwt.getClaims().getClaimAsString(JwtClaimName.AUDIENCE));
+        assertNotNull(jwt.getClaims().getClaimAsString(JwtClaimName.EXPIRATION_TIME));
+        assertNotNull(jwt.getClaims().getClaimAsString(JwtClaimName.ISSUED_AT));
+        assertNotNull(jwt.getClaims().getClaimAsString(JwtClaimName.SUBJECT_IDENTIFIER));
+        assertNotNull(jwt.getClaims().getClaimAsString(JwtClaimName.ACCESS_TOKEN_HASH));
+        assertNotNull(jwt.getClaims().getClaimAsString(JwtClaimName.AUTHENTICATION_TIME));
+
+        RSAPublicKey publicKey = JwkClient.getRSAPublicKey(
+                jwksUri,
+                jwt.getHeader().getClaimAsString(JwtHeaderName.KEY_ID));
+        RSASigner rsaSigner = new RSASigner(SignatureAlgorithm.RS512, publicKey);
+
+        assertTrue(rsaSigner.validate(jwt));
+
+        idTokenHintRS512 = idToken;
+    }
+
+    @Parameters({"userId", "userSecret", "redirectUri", "redirectUris", "sectorIdentifierUri"})
+    @Test
+    public void idTokenHintES256(
+            final String userId, final String userSecret, final String redirectUri, final String redirectUris,
+            final String sectorIdentifierUri) throws Exception {
+        showTitle("idTokenHintES256");
+
+        List<ResponseType> responseTypes = Arrays.asList(ResponseType.TOKEN, ResponseType.ID_TOKEN);
+
+        // 1. Register client
+        RegisterRequest registerRequest = new RegisterRequest(ApplicationType.WEB, "oxAuth test app",
+                StringUtils.spaceSeparatedToList(redirectUris));
+        registerRequest.setResponseTypes(responseTypes);
+        registerRequest.setSectorIdentifierUri(sectorIdentifierUri);
+        registerRequest.setIdTokenSignedResponseAlg(SignatureAlgorithm.ES256);
+
+        RegisterClient registerClient = new RegisterClient(registrationEndpoint);
+        registerClient.setRequest(registerRequest);
+        RegisterResponse registerResponse = registerClient.exec();
+
+        showClient(registerClient);
+        assertEquals(registerResponse.getStatus(), 200, "Unexpected response code: " + registerResponse.getEntity());
+        assertNotNull(registerResponse.getClientId());
+        assertNotNull(registerResponse.getClientSecret());
+        assertNotNull(registerResponse.getRegistrationAccessToken());
+        assertNotNull(registerResponse.getClientIdIssuedAt());
+        assertNotNull(registerResponse.getClientSecretExpiresAt());
+
+        String clientId = registerResponse.getClientId();
+
+        // 2. Request authorization
+        List<String> scopes = Arrays.asList("openid");
+        String nonce = UUID.randomUUID().toString();
+        String state = UUID.randomUUID().toString();
+
+        AuthorizationRequest authorizationRequest = new AuthorizationRequest(responseTypes, clientId, scopes, redirectUri, nonce);
+        authorizationRequest.setState(state);
+
+        AuthorizeClient authorizeClient = new AuthorizeClient(authorizationEndpoint);
+        authorizeClient.setRequest(authorizationRequest);
+
+        AuthorizationResponse authorizationResponse = authenticateResourceOwnerAndGrantAccess(
+                authorizationEndpoint, authorizationRequest, userId, userSecret);
+
+        assertNotNull(authorizationResponse.getLocation(), "The location is null");
+        assertNotNull(authorizationResponse.getAccessToken(), "The accessToken is null");
+        assertNotNull(authorizationResponse.getTokenType(), "The tokenType is null");
+        assertNotNull(authorizationResponse.getIdToken(), "The idToken is null");
+        assertNotNull(authorizationResponse.getState(), "The state is null");
+
+        String idToken = authorizationResponse.getIdToken();
+
+        // 3. Validate id_token
+        Jwt jwt = Jwt.parse(idToken);
+        assertNotNull(jwt.getHeader().getClaimAsString(JwtHeaderName.TYPE));
+        assertNotNull(jwt.getHeader().getClaimAsString(JwtHeaderName.ALGORITHM));
+        assertNotNull(jwt.getClaims().getClaimAsString(JwtClaimName.ISSUER));
+        assertNotNull(jwt.getClaims().getClaimAsString(JwtClaimName.AUDIENCE));
+        assertNotNull(jwt.getClaims().getClaimAsString(JwtClaimName.EXPIRATION_TIME));
+        assertNotNull(jwt.getClaims().getClaimAsString(JwtClaimName.ISSUED_AT));
+        assertNotNull(jwt.getClaims().getClaimAsString(JwtClaimName.SUBJECT_IDENTIFIER));
+        assertNotNull(jwt.getClaims().getClaimAsString(JwtClaimName.ACCESS_TOKEN_HASH));
+        assertNotNull(jwt.getClaims().getClaimAsString(JwtClaimName.AUTHENTICATION_TIME));
+
+        ECDSAPublicKey publicKey = JwkClient.getECDSAPublicKey(
+                jwksUri,
+                jwt.getHeader().getClaimAsString(JwtHeaderName.KEY_ID));
+        ECDSASigner ecdsaSigner = new ECDSASigner(SignatureAlgorithm.ES256, publicKey);
+
+        assertTrue(ecdsaSigner.validate(jwt));
+
+        idTokenHintES256 = idToken;
+    }
+
+    @Parameters({"userId", "userSecret", "redirectUri", "redirectUris", "sectorIdentifierUri"})
+    @Test
+    public void idTokenHintES384(
+            final String userId, final String userSecret, final String redirectUri, final String redirectUris,
+            final String sectorIdentifierUri) throws Exception {
+        showTitle("idTokenHintES384");
+
+        List<ResponseType> responseTypes = Arrays.asList(ResponseType.TOKEN, ResponseType.ID_TOKEN);
+
+        // 1. Register client
+        RegisterRequest registerRequest = new RegisterRequest(ApplicationType.WEB, "oxAuth test app",
+                StringUtils.spaceSeparatedToList(redirectUris));
+        registerRequest.setResponseTypes(responseTypes);
+        registerRequest.setSectorIdentifierUri(sectorIdentifierUri);
+        registerRequest.setIdTokenSignedResponseAlg(SignatureAlgorithm.ES384);
+
+        RegisterClient registerClient = new RegisterClient(registrationEndpoint);
+        registerClient.setRequest(registerRequest);
+        RegisterResponse registerResponse = registerClient.exec();
+
+        showClient(registerClient);
+        assertEquals(registerResponse.getStatus(), 200, "Unexpected response code: " + registerResponse.getEntity());
+        assertNotNull(registerResponse.getClientId());
+        assertNotNull(registerResponse.getClientSecret());
+        assertNotNull(registerResponse.getRegistrationAccessToken());
+        assertNotNull(registerResponse.getClientIdIssuedAt());
+        assertNotNull(registerResponse.getClientSecretExpiresAt());
+
+        String clientId = registerResponse.getClientId();
+
+        // 2. Request authorization
+        List<String> scopes = Arrays.asList("openid");
+        String nonce = UUID.randomUUID().toString();
+        String state = UUID.randomUUID().toString();
+
+        AuthorizationRequest authorizationRequest = new AuthorizationRequest(responseTypes, clientId, scopes, redirectUri, nonce);
+        authorizationRequest.setState(state);
+
+        AuthorizeClient authorizeClient = new AuthorizeClient(authorizationEndpoint);
+        authorizeClient.setRequest(authorizationRequest);
+
+        AuthorizationResponse authorizationResponse = authenticateResourceOwnerAndGrantAccess(
+                authorizationEndpoint, authorizationRequest, userId, userSecret);
+
+        assertNotNull(authorizationResponse.getLocation(), "The location is null");
+        assertNotNull(authorizationResponse.getAccessToken(), "The accessToken is null");
+        assertNotNull(authorizationResponse.getTokenType(), "The tokenType is null");
+        assertNotNull(authorizationResponse.getIdToken(), "The idToken is null");
+        assertNotNull(authorizationResponse.getState(), "The state is null");
+
+        String idToken = authorizationResponse.getIdToken();
+
+        // 3. Validate id_token
+        Jwt jwt = Jwt.parse(idToken);
+        assertNotNull(jwt.getHeader().getClaimAsString(JwtHeaderName.TYPE));
+        assertNotNull(jwt.getHeader().getClaimAsString(JwtHeaderName.ALGORITHM));
+        assertNotNull(jwt.getClaims().getClaimAsString(JwtClaimName.ISSUER));
+        assertNotNull(jwt.getClaims().getClaimAsString(JwtClaimName.AUDIENCE));
+        assertNotNull(jwt.getClaims().getClaimAsString(JwtClaimName.EXPIRATION_TIME));
+        assertNotNull(jwt.getClaims().getClaimAsString(JwtClaimName.ISSUED_AT));
+        assertNotNull(jwt.getClaims().getClaimAsString(JwtClaimName.SUBJECT_IDENTIFIER));
+        assertNotNull(jwt.getClaims().getClaimAsString(JwtClaimName.ACCESS_TOKEN_HASH));
+        assertNotNull(jwt.getClaims().getClaimAsString(JwtClaimName.AUTHENTICATION_TIME));
+
+        ECDSAPublicKey publicKey = JwkClient.getECDSAPublicKey(
+                jwksUri,
+                jwt.getHeader().getClaimAsString(JwtHeaderName.KEY_ID));
+        ECDSASigner ecdsaSigner = new ECDSASigner(SignatureAlgorithm.ES384, publicKey);
+
+        assertTrue(ecdsaSigner.validate(jwt));
+
+        idTokenHintES384 = idToken;
+    }
+
+    @Parameters({"userId", "userSecret", "redirectUri", "redirectUris", "sectorIdentifierUri"})
+    @Test
+    public void idTokenHintES512(
+            final String userId, final String userSecret, final String redirectUri, final String redirectUris,
+            final String sectorIdentifierUri) throws Exception {
+        showTitle("idTokenHintES512");
+
+        List<ResponseType> responseTypes = Arrays.asList(ResponseType.TOKEN, ResponseType.ID_TOKEN);
+
+        // 1. Register client
+        RegisterRequest registerRequest = new RegisterRequest(ApplicationType.WEB, "oxAuth test app",
+                StringUtils.spaceSeparatedToList(redirectUris));
+        registerRequest.setResponseTypes(responseTypes);
+        registerRequest.setSectorIdentifierUri(sectorIdentifierUri);
+        registerRequest.setIdTokenSignedResponseAlg(SignatureAlgorithm.ES512);
+
+        RegisterClient registerClient = new RegisterClient(registrationEndpoint);
+        registerClient.setRequest(registerRequest);
+        RegisterResponse registerResponse = registerClient.exec();
+
+        showClient(registerClient);
+        assertEquals(registerResponse.getStatus(), 200, "Unexpected response code: " + registerResponse.getEntity());
+        assertNotNull(registerResponse.getClientId());
+        assertNotNull(registerResponse.getClientSecret());
+        assertNotNull(registerResponse.getRegistrationAccessToken());
+        assertNotNull(registerResponse.getClientIdIssuedAt());
+        assertNotNull(registerResponse.getClientSecretExpiresAt());
+
+        String clientId = registerResponse.getClientId();
+
+        // 2. Request authorization
+        List<String> scopes = Arrays.asList("openid");
+        String nonce = UUID.randomUUID().toString();
+        String state = UUID.randomUUID().toString();
+
+        AuthorizationRequest authorizationRequest = new AuthorizationRequest(responseTypes, clientId, scopes, redirectUri, nonce);
+        authorizationRequest.setState(state);
+
+        AuthorizeClient authorizeClient = new AuthorizeClient(authorizationEndpoint);
+        authorizeClient.setRequest(authorizationRequest);
+
+        AuthorizationResponse authorizationResponse = authenticateResourceOwnerAndGrantAccess(
+                authorizationEndpoint, authorizationRequest, userId, userSecret);
+
+        assertNotNull(authorizationResponse.getLocation(), "The location is null");
+        assertNotNull(authorizationResponse.getAccessToken(), "The accessToken is null");
+        assertNotNull(authorizationResponse.getTokenType(), "The tokenType is null");
+        assertNotNull(authorizationResponse.getIdToken(), "The idToken is null");
+        assertNotNull(authorizationResponse.getState(), "The state is null");
+
+        String idToken = authorizationResponse.getIdToken();
+
+        // 3. Validate id_token
+        Jwt jwt = Jwt.parse(idToken);
+        assertNotNull(jwt.getHeader().getClaimAsString(JwtHeaderName.TYPE));
+        assertNotNull(jwt.getHeader().getClaimAsString(JwtHeaderName.ALGORITHM));
+        assertNotNull(jwt.getClaims().getClaimAsString(JwtClaimName.ISSUER));
+        assertNotNull(jwt.getClaims().getClaimAsString(JwtClaimName.AUDIENCE));
+        assertNotNull(jwt.getClaims().getClaimAsString(JwtClaimName.EXPIRATION_TIME));
+        assertNotNull(jwt.getClaims().getClaimAsString(JwtClaimName.ISSUED_AT));
+        assertNotNull(jwt.getClaims().getClaimAsString(JwtClaimName.SUBJECT_IDENTIFIER));
+        assertNotNull(jwt.getClaims().getClaimAsString(JwtClaimName.ACCESS_TOKEN_HASH));
+        assertNotNull(jwt.getClaims().getClaimAsString(JwtClaimName.AUTHENTICATION_TIME));
+
+        ECDSAPublicKey publicKey = JwkClient.getECDSAPublicKey(
+                jwksUri,
+                jwt.getHeader().getClaimAsString(JwtHeaderName.KEY_ID));
+        ECDSASigner ecdsaSigner = new ECDSASigner(SignatureAlgorithm.ES512, publicKey);
+
+        assertTrue(ecdsaSigner.validate(jwt));
+
+        idTokenHintES512 = idToken;
+    }
+
+    @Parameters({"userId", "userSecret", "redirectUri", "redirectUris", "sectorIdentifierUri"})
+    @Test
+    public void idTokenHintPS256(
+            final String userId, final String userSecret, final String redirectUri, final String redirectUris,
+            final String sectorIdentifierUri) throws Exception {
+        showTitle("idTokenHintPS256");
+
+        List<ResponseType> responseTypes = Arrays.asList(ResponseType.TOKEN, ResponseType.ID_TOKEN);
+
+        // 1. Register client
+        RegisterRequest registerRequest = new RegisterRequest(ApplicationType.WEB, "oxAuth test app",
+                StringUtils.spaceSeparatedToList(redirectUris));
+        registerRequest.setResponseTypes(responseTypes);
+        registerRequest.setSectorIdentifierUri(sectorIdentifierUri);
+        registerRequest.setIdTokenSignedResponseAlg(SignatureAlgorithm.PS256);
+
+        RegisterClient registerClient = new RegisterClient(registrationEndpoint);
+        registerClient.setRequest(registerRequest);
+        RegisterResponse registerResponse = registerClient.exec();
+
+        showClient(registerClient);
+        assertEquals(registerResponse.getStatus(), 200, "Unexpected response code: " + registerResponse.getEntity());
+        assertNotNull(registerResponse.getClientId());
+        assertNotNull(registerResponse.getClientSecret());
+        assertNotNull(registerResponse.getRegistrationAccessToken());
+        assertNotNull(registerResponse.getClientIdIssuedAt());
+        assertNotNull(registerResponse.getClientSecretExpiresAt());
+
+        String clientId = registerResponse.getClientId();
+
+        // 2. Request authorization
+        List<String> scopes = Arrays.asList("openid");
+        String nonce = UUID.randomUUID().toString();
+        String state = UUID.randomUUID().toString();
+
+        AuthorizationRequest authorizationRequest = new AuthorizationRequest(responseTypes, clientId, scopes, redirectUri, nonce);
+        authorizationRequest.setState(state);
+
+        AuthorizeClient authorizeClient = new AuthorizeClient(authorizationEndpoint);
+        authorizeClient.setRequest(authorizationRequest);
+
+        AuthorizationResponse authorizationResponse = authenticateResourceOwnerAndGrantAccess(
+                authorizationEndpoint, authorizationRequest, userId, userSecret);
+
+        assertNotNull(authorizationResponse.getLocation(), "The location is null");
+        assertNotNull(authorizationResponse.getAccessToken(), "The accessToken is null");
+        assertNotNull(authorizationResponse.getTokenType(), "The tokenType is null");
+        assertNotNull(authorizationResponse.getIdToken(), "The idToken is null");
+        assertNotNull(authorizationResponse.getState(), "The state is null");
+
+        String idToken = authorizationResponse.getIdToken();
+
+        // 3. Validate id_token
+        Jwt jwt = Jwt.parse(idToken);
+        assertNotNull(jwt.getHeader().getClaimAsString(JwtHeaderName.TYPE));
+        assertNotNull(jwt.getHeader().getClaimAsString(JwtHeaderName.ALGORITHM));
+        assertNotNull(jwt.getClaims().getClaimAsString(JwtClaimName.ISSUER));
+        assertNotNull(jwt.getClaims().getClaimAsString(JwtClaimName.AUDIENCE));
+        assertNotNull(jwt.getClaims().getClaimAsString(JwtClaimName.EXPIRATION_TIME));
+        assertNotNull(jwt.getClaims().getClaimAsString(JwtClaimName.ISSUED_AT));
+        assertNotNull(jwt.getClaims().getClaimAsString(JwtClaimName.SUBJECT_IDENTIFIER));
+        assertNotNull(jwt.getClaims().getClaimAsString(JwtClaimName.ACCESS_TOKEN_HASH));
+        assertNotNull(jwt.getClaims().getClaimAsString(JwtClaimName.AUTHENTICATION_TIME));
+
+        RSAPublicKey publicKey = JwkClient.getRSAPublicKey(
+                jwksUri,
+                jwt.getHeader().getClaimAsString(JwtHeaderName.KEY_ID));
+        RSASigner rsaSigner = new RSASigner(SignatureAlgorithm.PS256, publicKey);
+
+        assertTrue(rsaSigner.validate(jwt));
+
+        idTokenHintPS256 = idToken;
+    }
+
+    @Parameters({"userId", "userSecret", "redirectUri", "redirectUris", "sectorIdentifierUri"})
+    @Test
+    public void idTokenHintPS384(
+            final String userId, final String userSecret, final String redirectUri, final String redirectUris,
+            final String sectorIdentifierUri) throws Exception {
+        showTitle("idTokenHintPS384");
+
+        List<ResponseType> responseTypes = Arrays.asList(ResponseType.TOKEN, ResponseType.ID_TOKEN);
+
+        // 1. Register client
+        RegisterRequest registerRequest = new RegisterRequest(ApplicationType.WEB, "oxAuth test app",
+                StringUtils.spaceSeparatedToList(redirectUris));
+        registerRequest.setResponseTypes(responseTypes);
+        registerRequest.setSectorIdentifierUri(sectorIdentifierUri);
+        registerRequest.setIdTokenSignedResponseAlg(SignatureAlgorithm.PS384);
+
+        RegisterClient registerClient = new RegisterClient(registrationEndpoint);
+        registerClient.setRequest(registerRequest);
+        RegisterResponse registerResponse = registerClient.exec();
+
+        showClient(registerClient);
+        assertEquals(registerResponse.getStatus(), 200, "Unexpected response code: " + registerResponse.getEntity());
+        assertNotNull(registerResponse.getClientId());
+        assertNotNull(registerResponse.getClientSecret());
+        assertNotNull(registerResponse.getRegistrationAccessToken());
+        assertNotNull(registerResponse.getClientIdIssuedAt());
+        assertNotNull(registerResponse.getClientSecretExpiresAt());
+
+        String clientId = registerResponse.getClientId();
+
+        // 2. Request authorization
+        List<String> scopes = Arrays.asList("openid");
+        String nonce = UUID.randomUUID().toString();
+        String state = UUID.randomUUID().toString();
+
+        AuthorizationRequest authorizationRequest = new AuthorizationRequest(responseTypes, clientId, scopes, redirectUri, nonce);
+        authorizationRequest.setState(state);
+
+        AuthorizeClient authorizeClient = new AuthorizeClient(authorizationEndpoint);
+        authorizeClient.setRequest(authorizationRequest);
+
+        AuthorizationResponse authorizationResponse = authenticateResourceOwnerAndGrantAccess(
+                authorizationEndpoint, authorizationRequest, userId, userSecret);
+
+        assertNotNull(authorizationResponse.getLocation(), "The location is null");
+        assertNotNull(authorizationResponse.getAccessToken(), "The accessToken is null");
+        assertNotNull(authorizationResponse.getTokenType(), "The tokenType is null");
+        assertNotNull(authorizationResponse.getIdToken(), "The idToken is null");
+        assertNotNull(authorizationResponse.getState(), "The state is null");
+
+        String idToken = authorizationResponse.getIdToken();
+
+        // 3. Validate id_token
+        Jwt jwt = Jwt.parse(idToken);
+        assertNotNull(jwt.getHeader().getClaimAsString(JwtHeaderName.TYPE));
+        assertNotNull(jwt.getHeader().getClaimAsString(JwtHeaderName.ALGORITHM));
+        assertNotNull(jwt.getClaims().getClaimAsString(JwtClaimName.ISSUER));
+        assertNotNull(jwt.getClaims().getClaimAsString(JwtClaimName.AUDIENCE));
+        assertNotNull(jwt.getClaims().getClaimAsString(JwtClaimName.EXPIRATION_TIME));
+        assertNotNull(jwt.getClaims().getClaimAsString(JwtClaimName.ISSUED_AT));
+        assertNotNull(jwt.getClaims().getClaimAsString(JwtClaimName.SUBJECT_IDENTIFIER));
+        assertNotNull(jwt.getClaims().getClaimAsString(JwtClaimName.ACCESS_TOKEN_HASH));
+        assertNotNull(jwt.getClaims().getClaimAsString(JwtClaimName.AUTHENTICATION_TIME));
+
+        RSAPublicKey publicKey = JwkClient.getRSAPublicKey(
+                jwksUri,
+                jwt.getHeader().getClaimAsString(JwtHeaderName.KEY_ID));
+        RSASigner rsaSigner = new RSASigner(SignatureAlgorithm.PS384, publicKey);
+
+        assertTrue(rsaSigner.validate(jwt));
+
+        idTokenHintPS384 = idToken;
+    }
+
+    @Parameters({"userId", "userSecret", "redirectUri", "redirectUris", "sectorIdentifierUri"})
+    @Test
+    public void idTokenHintPS512(
+            final String userId, final String userSecret, final String redirectUri, final String redirectUris,
+            final String sectorIdentifierUri) throws Exception {
+        showTitle("idTokenHintPS512");
+
+        List<ResponseType> responseTypes = Arrays.asList(ResponseType.TOKEN, ResponseType.ID_TOKEN);
+
+        // 1. Register client
+        RegisterRequest registerRequest = new RegisterRequest(ApplicationType.WEB, "oxAuth test app",
+                StringUtils.spaceSeparatedToList(redirectUris));
+        registerRequest.setResponseTypes(responseTypes);
+        registerRequest.setSectorIdentifierUri(sectorIdentifierUri);
+        registerRequest.setIdTokenSignedResponseAlg(SignatureAlgorithm.PS512);
+
+        RegisterClient registerClient = new RegisterClient(registrationEndpoint);
+        registerClient.setRequest(registerRequest);
+        RegisterResponse registerResponse = registerClient.exec();
+
+        showClient(registerClient);
+        assertEquals(registerResponse.getStatus(), 200, "Unexpected response code: " + registerResponse.getEntity());
+        assertNotNull(registerResponse.getClientId());
+        assertNotNull(registerResponse.getClientSecret());
+        assertNotNull(registerResponse.getRegistrationAccessToken());
+        assertNotNull(registerResponse.getClientIdIssuedAt());
+        assertNotNull(registerResponse.getClientSecretExpiresAt());
+
+        String clientId = registerResponse.getClientId();
+
+        // 2. Request authorization
+        List<String> scopes = Arrays.asList("openid");
+        String nonce = UUID.randomUUID().toString();
+        String state = UUID.randomUUID().toString();
+
+        AuthorizationRequest authorizationRequest = new AuthorizationRequest(responseTypes, clientId, scopes, redirectUri, nonce);
+        authorizationRequest.setState(state);
+
+        AuthorizeClient authorizeClient = new AuthorizeClient(authorizationEndpoint);
+        authorizeClient.setRequest(authorizationRequest);
+
+        AuthorizationResponse authorizationResponse = authenticateResourceOwnerAndGrantAccess(
+                authorizationEndpoint, authorizationRequest, userId, userSecret);
+
+        assertNotNull(authorizationResponse.getLocation(), "The location is null");
+        assertNotNull(authorizationResponse.getAccessToken(), "The accessToken is null");
+        assertNotNull(authorizationResponse.getTokenType(), "The tokenType is null");
+        assertNotNull(authorizationResponse.getIdToken(), "The idToken is null");
+        assertNotNull(authorizationResponse.getState(), "The state is null");
+
+        String idToken = authorizationResponse.getIdToken();
+
+        // 3. Validate id_token
+        Jwt jwt = Jwt.parse(idToken);
+        assertNotNull(jwt.getHeader().getClaimAsString(JwtHeaderName.TYPE));
+        assertNotNull(jwt.getHeader().getClaimAsString(JwtHeaderName.ALGORITHM));
+        assertNotNull(jwt.getClaims().getClaimAsString(JwtClaimName.ISSUER));
+        assertNotNull(jwt.getClaims().getClaimAsString(JwtClaimName.AUDIENCE));
+        assertNotNull(jwt.getClaims().getClaimAsString(JwtClaimName.EXPIRATION_TIME));
+        assertNotNull(jwt.getClaims().getClaimAsString(JwtClaimName.ISSUED_AT));
+        assertNotNull(jwt.getClaims().getClaimAsString(JwtClaimName.SUBJECT_IDENTIFIER));
+        assertNotNull(jwt.getClaims().getClaimAsString(JwtClaimName.ACCESS_TOKEN_HASH));
+        assertNotNull(jwt.getClaims().getClaimAsString(JwtClaimName.AUTHENTICATION_TIME));
+
+        RSAPublicKey publicKey = JwkClient.getRSAPublicKey(
+                jwksUri,
+                jwt.getHeader().getClaimAsString(JwtHeaderName.KEY_ID));
+        RSASigner rsaSigner = new RSASigner(SignatureAlgorithm.PS512, publicKey);
+
+        assertTrue(rsaSigner.validate(jwt));
+
+        idTokenHintPS512 = idToken;
+    }
+
+    @Parameters({"userId", "userSecret", "redirectUri", "redirectUris", "sectorIdentifierUri"})
+    @Test
+    public void idTokenHintAlgA128KWEncA128GCM(
+            final String userId, final String userSecret, final String redirectUri, final String redirectUris,
+            final String sectorIdentifierUri) throws Exception {
+        showTitle("idTokenHintAlgA128KWEncA128GCM");
+
+        List<ResponseType> responseTypes = Arrays.asList(ResponseType.TOKEN, ResponseType.ID_TOKEN);
+
+        // 1. Register client
+        RegisterRequest registerRequest = new RegisterRequest(ApplicationType.WEB, "oxAuth test app",
+                StringUtils.spaceSeparatedToList(redirectUris));
+        registerRequest.setResponseTypes(responseTypes);
+        registerRequest.setSectorIdentifierUri(sectorIdentifierUri);
+        registerRequest.setIdTokenEncryptedResponseAlg(KeyEncryptionAlgorithm.A128KW);
+        registerRequest.setIdTokenEncryptedResponseEnc(BlockEncryptionAlgorithm.A128GCM);
+
+        RegisterClient registerClient = new RegisterClient(registrationEndpoint);
+        registerClient.setRequest(registerRequest);
+        RegisterResponse registerResponse = registerClient.exec();
+
+        showClient(registerClient);
+        assertEquals(registerResponse.getStatus(), 200, "Unexpected response code: " + registerResponse.getEntity());
+        assertNotNull(registerResponse.getClientId());
+        assertNotNull(registerResponse.getClientSecret());
+        assertNotNull(registerResponse.getRegistrationAccessToken());
+        assertNotNull(registerResponse.getClientIdIssuedAt());
+        assertNotNull(registerResponse.getClientSecretExpiresAt());
+
+        String clientId = registerResponse.getClientId();
+        String clientSecret = registerResponse.getClientSecret();
+
+        // 2. Request authorization
+        List<String> scopes = Arrays.asList("openid");
+        String nonce = UUID.randomUUID().toString();
+        String state = UUID.randomUUID().toString();
+
+        AuthorizationRequest authorizationRequest = new AuthorizationRequest(responseTypes, clientId, scopes, redirectUri, nonce);
+        authorizationRequest.setState(state);
+
+        AuthorizeClient authorizeClient = new AuthorizeClient(authorizationEndpoint);
+        authorizeClient.setRequest(authorizationRequest);
+
+        AuthorizationResponse authorizationResponse = authenticateResourceOwnerAndGrantAccess(
+                authorizationEndpoint, authorizationRequest, userId, userSecret);
+
+        assertNotNull(authorizationResponse.getLocation(), "The location is null");
+        assertNotNull(authorizationResponse.getAccessToken(), "The accessToken is null");
+        assertNotNull(authorizationResponse.getTokenType(), "The tokenType is null");
+        assertNotNull(authorizationResponse.getIdToken(), "The idToken is null");
+        assertNotNull(authorizationResponse.getState(), "The state is null");
+
+        String idToken = authorizationResponse.getIdToken();
+
+        // 3. Validate id_token
+        Jwe jwe = Jwe.parse(idToken, null, clientSecret.getBytes(Util.UTF8_STRING_ENCODING));
+        assertNotNull(jwe.getHeader().getClaimAsString(JwtHeaderName.TYPE));
+        assertNotNull(jwe.getHeader().getClaimAsString(JwtHeaderName.ALGORITHM));
+        assertNotNull(jwe.getClaims().getClaimAsString(JwtClaimName.ISSUER));
+        assertNotNull(jwe.getClaims().getClaimAsString(JwtClaimName.AUDIENCE));
+        assertNotNull(jwe.getClaims().getClaimAsString(JwtClaimName.EXPIRATION_TIME));
+        assertNotNull(jwe.getClaims().getClaimAsString(JwtClaimName.ISSUED_AT));
+        assertNotNull(jwe.getClaims().getClaimAsString(JwtClaimName.SUBJECT_IDENTIFIER));
+        assertNotNull(jwe.getClaims().getClaimAsString(JwtClaimName.ACCESS_TOKEN_HASH));
+        assertNotNull(jwe.getClaims().getClaimAsString(JwtClaimName.AUTHENTICATION_TIME));
+
+        idTokenHintAlgA128KWEncA128GCM = idToken;
+    }
+
+    @Parameters({"userId", "userSecret", "redirectUri", "redirectUris", "sectorIdentifierUri"})
+    @Test
+    public void idTokenHintAlgA256KWEncA256GCM(
+            final String userId, final String userSecret, final String redirectUri, final String redirectUris,
+            final String sectorIdentifierUri) throws Exception {
+        showTitle("idTokenHintAlgA256KWEncA256GCM");
+
+        List<ResponseType> responseTypes = Arrays.asList(ResponseType.TOKEN, ResponseType.ID_TOKEN);
+
+        // 1. Register client
+        RegisterRequest registerRequest = new RegisterRequest(ApplicationType.WEB, "oxAuth test app",
+                StringUtils.spaceSeparatedToList(redirectUris));
+        registerRequest.setResponseTypes(responseTypes);
+        registerRequest.setSectorIdentifierUri(sectorIdentifierUri);
+        registerRequest.setIdTokenEncryptedResponseAlg(KeyEncryptionAlgorithm.A256KW);
+        registerRequest.setIdTokenEncryptedResponseEnc(BlockEncryptionAlgorithm.A256GCM);
+
+        RegisterClient registerClient = new RegisterClient(registrationEndpoint);
+        registerClient.setRequest(registerRequest);
+        RegisterResponse registerResponse = registerClient.exec();
+
+        showClient(registerClient);
+        assertEquals(registerResponse.getStatus(), 200, "Unexpected response code: " + registerResponse.getEntity());
+        assertNotNull(registerResponse.getClientId());
+        assertNotNull(registerResponse.getClientSecret());
+        assertNotNull(registerResponse.getRegistrationAccessToken());
+        assertNotNull(registerResponse.getClientIdIssuedAt());
+        assertNotNull(registerResponse.getClientSecretExpiresAt());
+
+        String clientId = registerResponse.getClientId();
+        String clientSecret = registerResponse.getClientSecret();
+
+        // 2. Request authorization
+        List<String> scopes = Arrays.asList("openid");
+        String nonce = UUID.randomUUID().toString();
+        String state = UUID.randomUUID().toString();
+
+        AuthorizationRequest authorizationRequest = new AuthorizationRequest(responseTypes, clientId, scopes, redirectUri, nonce);
+        authorizationRequest.setState(state);
+
+        AuthorizeClient authorizeClient = new AuthorizeClient(authorizationEndpoint);
+        authorizeClient.setRequest(authorizationRequest);
+
+        AuthorizationResponse authorizationResponse = authenticateResourceOwnerAndGrantAccess(
+                authorizationEndpoint, authorizationRequest, userId, userSecret);
+
+        assertNotNull(authorizationResponse.getLocation(), "The location is null");
+        assertNotNull(authorizationResponse.getAccessToken(), "The accessToken is null");
+        assertNotNull(authorizationResponse.getTokenType(), "The tokenType is null");
+        assertNotNull(authorizationResponse.getIdToken(), "The idToken is null");
+        assertNotNull(authorizationResponse.getState(), "The state is null");
+
+        String idToken = authorizationResponse.getIdToken();
+
+        // 3. Validate id_token
+        Jwe jwe = Jwe.parse(idToken, null, clientSecret.getBytes(Util.UTF8_STRING_ENCODING));
+        assertNotNull(jwe.getHeader().getClaimAsString(JwtHeaderName.TYPE));
+        assertNotNull(jwe.getHeader().getClaimAsString(JwtHeaderName.ALGORITHM));
+        assertNotNull(jwe.getClaims().getClaimAsString(JwtClaimName.ISSUER));
+        assertNotNull(jwe.getClaims().getClaimAsString(JwtClaimName.AUDIENCE));
+        assertNotNull(jwe.getClaims().getClaimAsString(JwtClaimName.EXPIRATION_TIME));
+        assertNotNull(jwe.getClaims().getClaimAsString(JwtClaimName.ISSUED_AT));
+        assertNotNull(jwe.getClaims().getClaimAsString(JwtClaimName.SUBJECT_IDENTIFIER));
+        assertNotNull(jwe.getClaims().getClaimAsString(JwtClaimName.ACCESS_TOKEN_HASH));
+        assertNotNull(jwe.getClaims().getClaimAsString(JwtClaimName.AUTHENTICATION_TIME));
+
+        idTokenHintAlgA256KWEncA256GCM = idToken;
+    }
+
+    @Parameters({"userId", "userSecret", "redirectUri", "redirectUris", "sectorIdentifierUri",
+            "clientJwksUri", "RSA1_5_keyId", "keyStoreFile", "keyStoreSecret"})
+    @Test
+    public void idTokenHintAlgRSA15EncA128CBCPLUSHS256(
+            final String userId, final String userSecret, final String redirectUri, final String redirectUris,
+            final String sectorIdentifierUri, final String clientJwksUri, final String keyId, final String keyStoreFile,
+            final String keyStoreSecret) throws Exception {
+        showTitle("idTokenHintAlgRSA15EncA128CBCPLUSHS256");
+
+        List<ResponseType> responseTypes = Arrays.asList(ResponseType.TOKEN, ResponseType.ID_TOKEN);
+
+        // 1. Register client
+        RegisterRequest registerRequest = new RegisterRequest(ApplicationType.WEB, "oxAuth test app",
+                StringUtils.spaceSeparatedToList(redirectUris));
+        registerRequest.setResponseTypes(responseTypes);
+        registerRequest.setSectorIdentifierUri(sectorIdentifierUri);
+        registerRequest.setJwksUri(clientJwksUri);
+        registerRequest.setIdTokenEncryptedResponseAlg(KeyEncryptionAlgorithm.RSA1_5);
+        registerRequest.setIdTokenEncryptedResponseEnc(BlockEncryptionAlgorithm.A128CBC_PLUS_HS256);
+
+        RegisterClient registerClient = new RegisterClient(registrationEndpoint);
+        registerClient.setRequest(registerRequest);
+        RegisterResponse registerResponse = registerClient.exec();
+
+        showClient(registerClient);
+        assertEquals(registerResponse.getStatus(), 200, "Unexpected response code: " + registerResponse.getEntity());
+        assertNotNull(registerResponse.getClientId());
+        assertNotNull(registerResponse.getClientSecret());
+        assertNotNull(registerResponse.getRegistrationAccessToken());
+        assertNotNull(registerResponse.getClientIdIssuedAt());
+        assertNotNull(registerResponse.getClientSecretExpiresAt());
+
+        String clientId = registerResponse.getClientId();
+
+        // 2. Request authorization
+        List<String> scopes = Arrays.asList("openid");
+        String nonce = UUID.randomUUID().toString();
+        String state = UUID.randomUUID().toString();
+
+        AuthorizationRequest authorizationRequest = new AuthorizationRequest(responseTypes, clientId, scopes, redirectUri, nonce);
+        authorizationRequest.setState(state);
+
+        AuthorizeClient authorizeClient = new AuthorizeClient(authorizationEndpoint);
+        authorizeClient.setRequest(authorizationRequest);
+
+        AuthorizationResponse authorizationResponse = authenticateResourceOwnerAndGrantAccess(
+                authorizationEndpoint, authorizationRequest, userId, userSecret);
+
+        assertNotNull(authorizationResponse.getLocation(), "The location is null");
+        assertNotNull(authorizationResponse.getAccessToken(), "The accessToken is null");
+        assertNotNull(authorizationResponse.getTokenType(), "The tokenType is null");
+        assertNotNull(authorizationResponse.getIdToken(), "The idToken is null");
+        assertNotNull(authorizationResponse.getState(), "The state is null");
+
+        String idToken = authorizationResponse.getIdToken();
+
+        // 3. Validate id_token
+        OxAuthCryptoProvider cryptoProvider = new OxAuthCryptoProvider(keyStoreFile, keyStoreSecret, null);
+        PrivateKey privateKey = cryptoProvider.getPrivateKey(keyId);
+
+        Jwe jwe = Jwe.parse(idToken, privateKey, null);
+        assertNotNull(jwe.getHeader().getClaimAsString(JwtHeaderName.TYPE));
+        assertNotNull(jwe.getHeader().getClaimAsString(JwtHeaderName.ALGORITHM));
+        assertNotNull(jwe.getClaims().getClaimAsString(JwtClaimName.ISSUER));
+        assertNotNull(jwe.getClaims().getClaimAsString(JwtClaimName.AUDIENCE));
+        assertNotNull(jwe.getClaims().getClaimAsString(JwtClaimName.EXPIRATION_TIME));
+        assertNotNull(jwe.getClaims().getClaimAsString(JwtClaimName.ISSUED_AT));
+        assertNotNull(jwe.getClaims().getClaimAsString(JwtClaimName.SUBJECT_IDENTIFIER));
+        assertNotNull(jwe.getClaims().getClaimAsString(JwtClaimName.ACCESS_TOKEN_HASH));
+        assertNotNull(jwe.getClaims().getClaimAsString(JwtClaimName.AUTHENTICATION_TIME));
+
+        idTokenHintAlgRSA15EncA128CBCPLUSHS256 = idToken;
+    }
+
+    @Parameters({"userId", "userSecret", "redirectUri", "redirectUris", "sectorIdentifierUri",
+            "clientJwksUri", "RSA1_5_keyId", "keyStoreFile", "keyStoreSecret"})
+    @Test
+    public void idTokenHintAlgRSA15EncA256CBCPLUSHS512(
+            final String userId, final String userSecret, final String redirectUri, final String redirectUris,
+            final String sectorIdentifierUri, final String clientJwksUri, final String keyId, final String keyStoreFile,
+            final String keyStoreSecret) throws Exception {
+        showTitle("idTokenHintAlgRSA15EncA256CBCPLUSHS512");
+
+        List<ResponseType> responseTypes = Arrays.asList(ResponseType.TOKEN, ResponseType.ID_TOKEN);
+
+        // 1. Register client
+        RegisterRequest registerRequest = new RegisterRequest(ApplicationType.WEB, "oxAuth test app",
+                StringUtils.spaceSeparatedToList(redirectUris));
+        registerRequest.setResponseTypes(responseTypes);
+        registerRequest.setSectorIdentifierUri(sectorIdentifierUri);
+        registerRequest.setJwksUri(clientJwksUri);
+        registerRequest.setIdTokenEncryptedResponseAlg(KeyEncryptionAlgorithm.RSA1_5);
+        registerRequest.setIdTokenEncryptedResponseEnc(BlockEncryptionAlgorithm.A256CBC_PLUS_HS512);
+
+        RegisterClient registerClient = new RegisterClient(registrationEndpoint);
+        registerClient.setRequest(registerRequest);
+        RegisterResponse registerResponse = registerClient.exec();
+
+        showClient(registerClient);
+        assertEquals(registerResponse.getStatus(), 200, "Unexpected response code: " + registerResponse.getEntity());
+        assertNotNull(registerResponse.getClientId());
+        assertNotNull(registerResponse.getClientSecret());
+        assertNotNull(registerResponse.getRegistrationAccessToken());
+        assertNotNull(registerResponse.getClientIdIssuedAt());
+        assertNotNull(registerResponse.getClientSecretExpiresAt());
+
+        String clientId = registerResponse.getClientId();
+
+        // 2. Request authorization
+        List<String> scopes = Arrays.asList("openid");
+        String nonce = UUID.randomUUID().toString();
+        String state = UUID.randomUUID().toString();
+
+        AuthorizationRequest authorizationRequest = new AuthorizationRequest(responseTypes, clientId, scopes, redirectUri, nonce);
+        authorizationRequest.setState(state);
+
+        AuthorizeClient authorizeClient = new AuthorizeClient(authorizationEndpoint);
+        authorizeClient.setRequest(authorizationRequest);
+
+        AuthorizationResponse authorizationResponse = authenticateResourceOwnerAndGrantAccess(
+                authorizationEndpoint, authorizationRequest, userId, userSecret);
+
+        assertNotNull(authorizationResponse.getLocation(), "The location is null");
+        assertNotNull(authorizationResponse.getAccessToken(), "The accessToken is null");
+        assertNotNull(authorizationResponse.getTokenType(), "The tokenType is null");
+        assertNotNull(authorizationResponse.getIdToken(), "The idToken is null");
+        assertNotNull(authorizationResponse.getState(), "The state is null");
+
+        String idToken = authorizationResponse.getIdToken();
+
+        // 3. Validate id_token
+        OxAuthCryptoProvider cryptoProvider = new OxAuthCryptoProvider(keyStoreFile, keyStoreSecret, null);
+        PrivateKey privateKey = cryptoProvider.getPrivateKey(keyId);
+
+        Jwe jwe = Jwe.parse(idToken, privateKey, null);
+        assertNotNull(jwe.getHeader().getClaimAsString(JwtHeaderName.TYPE));
+        assertNotNull(jwe.getHeader().getClaimAsString(JwtHeaderName.ALGORITHM));
+        assertNotNull(jwe.getClaims().getClaimAsString(JwtClaimName.ISSUER));
+        assertNotNull(jwe.getClaims().getClaimAsString(JwtClaimName.AUDIENCE));
+        assertNotNull(jwe.getClaims().getClaimAsString(JwtClaimName.EXPIRATION_TIME));
+        assertNotNull(jwe.getClaims().getClaimAsString(JwtClaimName.ISSUED_AT));
+        assertNotNull(jwe.getClaims().getClaimAsString(JwtClaimName.SUBJECT_IDENTIFIER));
+        assertNotNull(jwe.getClaims().getClaimAsString(JwtClaimName.ACCESS_TOKEN_HASH));
+        assertNotNull(jwe.getClaims().getClaimAsString(JwtClaimName.AUTHENTICATION_TIME));
+
+        idTokenHintAlgRSA15EncA256CBCPLUSHS512 = idToken;
+    }
+
+    @Parameters({"userId", "userSecret", "redirectUri", "redirectUris", "sectorIdentifierUri",
+            "clientJwksUri", "RSA_OAEP_keyId", "keyStoreFile", "keyStoreSecret"})
+    @Test
+    public void idTokenHintAlgRSAOAEPEncA256GCM(
+            final String userId, final String userSecret, final String redirectUri, final String redirectUris,
+            final String sectorIdentifierUri, final String clientJwksUri, final String keyId, final String keyStoreFile,
+            final String keyStoreSecret) throws Exception {
+        showTitle("idTokenHintAlgRSAOAEPEncA256GCM");
+
+        List<ResponseType> responseTypes = Arrays.asList(ResponseType.TOKEN, ResponseType.ID_TOKEN);
+
+        // 1. Register client
+        RegisterRequest registerRequest = new RegisterRequest(ApplicationType.WEB, "oxAuth test app",
+                StringUtils.spaceSeparatedToList(redirectUris));
+        registerRequest.setResponseTypes(responseTypes);
+        registerRequest.setSectorIdentifierUri(sectorIdentifierUri);
+        registerRequest.setJwksUri(clientJwksUri);
+        registerRequest.setIdTokenEncryptedResponseAlg(KeyEncryptionAlgorithm.RSA_OAEP);
+        registerRequest.setIdTokenEncryptedResponseEnc(BlockEncryptionAlgorithm.A256GCM);
+
+        RegisterClient registerClient = new RegisterClient(registrationEndpoint);
+        registerClient.setRequest(registerRequest);
+        RegisterResponse registerResponse = registerClient.exec();
+
+        showClient(registerClient);
+        assertEquals(registerResponse.getStatus(), 200, "Unexpected response code: " + registerResponse.getEntity());
+        assertNotNull(registerResponse.getClientId());
+        assertNotNull(registerResponse.getClientSecret());
+        assertNotNull(registerResponse.getRegistrationAccessToken());
+        assertNotNull(registerResponse.getClientIdIssuedAt());
+        assertNotNull(registerResponse.getClientSecretExpiresAt());
+
+        String clientId = registerResponse.getClientId();
+
+        // 2. Request authorization
+        List<String> scopes = Arrays.asList("openid");
+        String nonce = UUID.randomUUID().toString();
+        String state = UUID.randomUUID().toString();
+
+        AuthorizationRequest authorizationRequest = new AuthorizationRequest(responseTypes, clientId, scopes, redirectUri, nonce);
+        authorizationRequest.setState(state);
+
+        AuthorizeClient authorizeClient = new AuthorizeClient(authorizationEndpoint);
+        authorizeClient.setRequest(authorizationRequest);
+
+        AuthorizationResponse authorizationResponse = authenticateResourceOwnerAndGrantAccess(
+                authorizationEndpoint, authorizationRequest, userId, userSecret);
+
+        assertNotNull(authorizationResponse.getLocation(), "The location is null");
+        assertNotNull(authorizationResponse.getAccessToken(), "The accessToken is null");
+        assertNotNull(authorizationResponse.getTokenType(), "The tokenType is null");
+        assertNotNull(authorizationResponse.getIdToken(), "The idToken is null");
+        assertNotNull(authorizationResponse.getState(), "The state is null");
+
+        String idToken = authorizationResponse.getIdToken();
+
+        // 3. Validate id_token
+        OxAuthCryptoProvider cryptoProvider = new OxAuthCryptoProvider(keyStoreFile, keyStoreSecret, null);
+        PrivateKey privateKey = cryptoProvider.getPrivateKey(keyId);
+
+        Jwe jwe = Jwe.parse(idToken, privateKey, null);
+        assertNotNull(jwe.getHeader().getClaimAsString(JwtHeaderName.TYPE));
+        assertNotNull(jwe.getHeader().getClaimAsString(JwtHeaderName.ALGORITHM));
+        assertNotNull(jwe.getClaims().getClaimAsString(JwtClaimName.ISSUER));
+        assertNotNull(jwe.getClaims().getClaimAsString(JwtClaimName.AUDIENCE));
+        assertNotNull(jwe.getClaims().getClaimAsString(JwtClaimName.EXPIRATION_TIME));
+        assertNotNull(jwe.getClaims().getClaimAsString(JwtClaimName.ISSUED_AT));
+        assertNotNull(jwe.getClaims().getClaimAsString(JwtClaimName.SUBJECT_IDENTIFIER));
+        assertNotNull(jwe.getClaims().getClaimAsString(JwtClaimName.ACCESS_TOKEN_HASH));
+        assertNotNull(jwe.getClaims().getClaimAsString(JwtClaimName.AUTHENTICATION_TIME));
+
+        idTokenHintAlgRSAOAEPEncA256GCM = idToken;
+    }
+
+    @Parameters({"RS256_keyId", "userEmail", "dnName", "keyStoreFile", "keyStoreSecret"})
+    @Test
+    public void loginHintTokenRS256(
+            final String keyId, final String userEmail,
+            final String dnName, final String keyStoreFile, final String keyStoreSecret) throws Exception {
+        showTitle("loginHintTokenRS256");
+
+        JSONObject subjectValue = new JSONObject();
+        subjectValue.put("subject_type", "email");
+        subjectValue.put("email", userEmail);
+
+        Jwt jwt = new Jwt();
+        jwt.getHeader().setAlgorithm(SignatureAlgorithm.RS256);
+        jwt.getHeader().setKeyId(keyId);
+        jwt.getClaims().setClaim("subject", subjectValue);
+
+        OxAuthCryptoProvider cryptoProvider = new OxAuthCryptoProvider(keyStoreFile, keyStoreSecret, dnName);
+        String encodedSignature = cryptoProvider.sign(jwt.getSigningInput(), keyId, null, SignatureAlgorithm.RS256);
+        jwt.setEncodedSignature(encodedSignature);
+
+        loginHintTokenRS256 = jwt.toString();
+    }
+
+    @Parameters({"RS384_keyId", "userEmail", "dnName", "keyStoreFile", "keyStoreSecret"})
+    @Test
+    public void loginHintTokenRS384(
+            final String keyId, final String userEmail,
+            final String dnName, final String keyStoreFile, final String keyStoreSecret) throws Exception {
+        showTitle("loginHintTokenRS384");
+
+        JSONObject subjectValue = new JSONObject();
+        subjectValue.put("subject_type", "email");
+        subjectValue.put("email", userEmail);
+
+        Jwt jwt = new Jwt();
+        jwt.getHeader().setAlgorithm(SignatureAlgorithm.RS384);
+        jwt.getHeader().setKeyId(keyId);
+        jwt.getClaims().setClaim("subject", subjectValue);
+
+        OxAuthCryptoProvider cryptoProvider = new OxAuthCryptoProvider(keyStoreFile, keyStoreSecret, dnName);
+        String encodedSignature = cryptoProvider.sign(jwt.getSigningInput(), keyId, null, SignatureAlgorithm.RS384);
+        jwt.setEncodedSignature(encodedSignature);
+
+        loginHintTokenRS384 = jwt.toString();
+    }
+
+    @Parameters({"RS512_keyId", "userEmail", "dnName", "keyStoreFile", "keyStoreSecret"})
+    @Test
+    public void loginHintTokenRS512(
+            final String keyId, final String userEmail,
+            final String dnName, final String keyStoreFile, final String keyStoreSecret) throws Exception {
+        showTitle("loginHintTokenRS512");
+
+        JSONObject subjectValue = new JSONObject();
+        subjectValue.put("subject_type", "email");
+        subjectValue.put("email", userEmail);
+
+        Jwt jwt = new Jwt();
+        jwt.getHeader().setAlgorithm(SignatureAlgorithm.RS512);
+        jwt.getHeader().setKeyId(keyId);
+        jwt.getClaims().setClaim("subject", subjectValue);
+
+        OxAuthCryptoProvider cryptoProvider = new OxAuthCryptoProvider(keyStoreFile, keyStoreSecret, dnName);
+        String encodedSignature = cryptoProvider.sign(jwt.getSigningInput(), keyId, null, SignatureAlgorithm.RS512);
+        jwt.setEncodedSignature(encodedSignature);
+
+        loginHintTokenRS512 = jwt.toString();
+    }
+
+    @Parameters({"ES256_keyId", "userEmail", "dnName", "keyStoreFile", "keyStoreSecret"})
+    @Test
+    public void loginHintTokenES256(
+            final String keyId, final String userEmail,
+            final String dnName, final String keyStoreFile, final String keyStoreSecret) throws Exception {
+        showTitle("loginHintTokenES256");
+
+        JSONObject subjectValue = new JSONObject();
+        subjectValue.put("subject_type", "email");
+        subjectValue.put("email", userEmail);
+
+        Jwt jwt = new Jwt();
+        jwt.getHeader().setAlgorithm(SignatureAlgorithm.ES256);
+        jwt.getHeader().setKeyId(keyId);
+        jwt.getClaims().setClaim("subject", subjectValue);
+
+        OxAuthCryptoProvider cryptoProvider = new OxAuthCryptoProvider(keyStoreFile, keyStoreSecret, dnName);
+        String encodedSignature = cryptoProvider.sign(jwt.getSigningInput(), keyId, null, SignatureAlgorithm.ES256);
+        jwt.setEncodedSignature(encodedSignature);
+
+        loginHintTokenES256 = jwt.toString();
+    }
+
+    @Parameters({"ES384_keyId", "userEmail", "dnName", "keyStoreFile", "keyStoreSecret"})
+    @Test
+    public void loginHintTokenES384(
+            final String keyId, final String userEmail,
+            final String dnName, final String keyStoreFile, final String keyStoreSecret) throws Exception {
+        showTitle("loginHintTokenES384");
+
+        JSONObject subjectValue = new JSONObject();
+        subjectValue.put("subject_type", "email");
+        subjectValue.put("email", userEmail);
+
+        Jwt jwt = new Jwt();
+        jwt.getHeader().setAlgorithm(SignatureAlgorithm.ES384);
+        jwt.getHeader().setKeyId(keyId);
+        jwt.getClaims().setClaim("subject", subjectValue);
+
+        OxAuthCryptoProvider cryptoProvider = new OxAuthCryptoProvider(keyStoreFile, keyStoreSecret, dnName);
+        String encodedSignature = cryptoProvider.sign(jwt.getSigningInput(), keyId, null, SignatureAlgorithm.ES384);
+        jwt.setEncodedSignature(encodedSignature);
+
+        loginHintTokenES384 = jwt.toString();
+    }
+
+    @Parameters({"ES512_keyId", "userEmail", "dnName", "keyStoreFile", "keyStoreSecret"})
+    @Test
+    public void loginHintTokenES512(
+            final String keyId, final String userEmail,
+            final String dnName, final String keyStoreFile, final String keyStoreSecret) throws Exception {
+        showTitle("loginHintTokenES512");
+
+        JSONObject subjectValue = new JSONObject();
+        subjectValue.put("subject_type", "email");
+        subjectValue.put("email", userEmail);
+
+        Jwt jwt = new Jwt();
+        jwt.getHeader().setAlgorithm(SignatureAlgorithm.ES512);
+        jwt.getHeader().setKeyId(keyId);
+        jwt.getClaims().setClaim("subject", subjectValue);
+
+        OxAuthCryptoProvider cryptoProvider = new OxAuthCryptoProvider(keyStoreFile, keyStoreSecret, dnName);
+        String encodedSignature = cryptoProvider.sign(jwt.getSigningInput(), keyId, null, SignatureAlgorithm.ES512);
+        jwt.setEncodedSignature(encodedSignature);
+
+        loginHintTokenES512 = jwt.toString();
+    }
+
+    @Parameters({"PS256_keyId", "userEmail", "dnName", "keyStoreFile", "keyStoreSecret"})
+    @Test
+    public void loginHintTokenPS256(
+            final String keyId, final String userEmail,
+            final String dnName, final String keyStoreFile, final String keyStoreSecret) throws Exception {
+        showTitle("loginHintTokenPS256");
+
+        JSONObject subjectValue = new JSONObject();
+        subjectValue.put("subject_type", "email");
+        subjectValue.put("email", userEmail);
+
+        Jwt jwt = new Jwt();
+        jwt.getHeader().setAlgorithm(SignatureAlgorithm.PS256);
+        jwt.getHeader().setKeyId(keyId);
+        jwt.getClaims().setClaim("subject", subjectValue);
+
+        OxAuthCryptoProvider cryptoProvider = new OxAuthCryptoProvider(keyStoreFile, keyStoreSecret, dnName);
+        String encodedSignature = cryptoProvider.sign(jwt.getSigningInput(), keyId, null, SignatureAlgorithm.PS256);
+        jwt.setEncodedSignature(encodedSignature);
+
+        loginHintTokenPS256 = jwt.toString();
+    }
+
+    @Parameters({"PS384_keyId", "userEmail", "dnName", "keyStoreFile", "keyStoreSecret"})
+    @Test
+    public void loginHintTokenPS384(
+            final String keyId, final String userEmail,
+            final String dnName, final String keyStoreFile, final String keyStoreSecret) throws Exception {
+        showTitle("loginHintTokenPS384");
+
+        JSONObject subjectValue = new JSONObject();
+        subjectValue.put("subject_type", "email");
+        subjectValue.put("email", userEmail);
+
+        Jwt jwt = new Jwt();
+        jwt.getHeader().setAlgorithm(SignatureAlgorithm.PS384);
+        jwt.getHeader().setKeyId(keyId);
+        jwt.getClaims().setClaim("subject", subjectValue);
+
+        OxAuthCryptoProvider cryptoProvider = new OxAuthCryptoProvider(keyStoreFile, keyStoreSecret, dnName);
+        String encodedSignature = cryptoProvider.sign(jwt.getSigningInput(), keyId, null, SignatureAlgorithm.PS384);
+        jwt.setEncodedSignature(encodedSignature);
+
+        loginHintTokenPS384 = jwt.toString();
+    }
+
+    @Parameters({"PS512_keyId", "userEmail", "dnName", "keyStoreFile", "keyStoreSecret"})
+    @Test
+    public void loginHintTokenPS512(
+            final String keyId, final String userEmail,
+            final String dnName, final String keyStoreFile, final String keyStoreSecret) throws Exception {
+        showTitle("loginHintTokenPS512");
+
+        JSONObject subjectValue = new JSONObject();
+        subjectValue.put("subject_type", "email");
+        subjectValue.put("email", userEmail);
+
+        Jwt jwt = new Jwt();
+        jwt.getHeader().setAlgorithm(SignatureAlgorithm.PS512);
+        jwt.getHeader().setKeyId(keyId);
+        jwt.getClaims().setClaim("subject", subjectValue);
+
+        OxAuthCryptoProvider cryptoProvider = new OxAuthCryptoProvider(keyStoreFile, keyStoreSecret, dnName);
+        String encodedSignature = cryptoProvider.sign(jwt.getSigningInput(), keyId, null, SignatureAlgorithm.PS512);
+        jwt.setEncodedSignature(encodedSignature);
+
+        loginHintTokenPS512 = jwt.toString();
+    }
+}
\ No newline at end of file
diff --git a/oxAuth/Client/src/test/java/org/gluu/oxauth/ciba/BackchannelAuthenticationPollMode.java b/oxAuth/Client/src/test/java/org/gluu/oxauth/ciba/BackchannelAuthenticationPollMode.java
new file mode 100644
index 00000000..68fbc296
--- /dev/null
+++ b/oxAuth/Client/src/test/java/org/gluu/oxauth/ciba/BackchannelAuthenticationPollMode.java
@@ -0,0 +1,3534 @@
+/*
+ * oxAuth is available under the MIT License (2008). See http://opensource.org/licenses/MIT for full text.
+ *
+ * Copyright (c) 2014, Gluu
+ */
+
+package org.gluu.oxauth.ciba;
+
+import static org.gluu.oxauth.model.register.RegisterRequestParam.BACKCHANNEL_AUTHENTICATION_REQUEST_SIGNING_ALG;
+import static org.gluu.oxauth.model.register.RegisterRequestParam.BACKCHANNEL_TOKEN_DELIVERY_MODE;
+import static org.gluu.oxauth.model.register.RegisterRequestParam.BACKCHANNEL_USER_CODE_PARAMETER;
+import static org.testng.Assert.assertEquals;
+import static org.testng.Assert.assertNotNull;
+import static org.testng.Assert.assertTrue;
+
+import java.security.PrivateKey;
+import java.util.Arrays;
+import java.util.List;
+import java.util.UUID;
+
+import org.apache.commons.lang.RandomStringUtils;
+import org.gluu.oxauth.BaseTest;
+import org.gluu.oxauth.client.AuthorizationRequest;
+import org.gluu.oxauth.client.AuthorizationResponse;
+import org.gluu.oxauth.client.AuthorizeClient;
+import org.gluu.oxauth.client.BackchannelAuthenticationClient;
+import org.gluu.oxauth.client.BackchannelAuthenticationRequest;
+import org.gluu.oxauth.client.BackchannelAuthenticationResponse;
+import org.gluu.oxauth.client.JwkClient;
+import org.gluu.oxauth.client.RegisterClient;
+import org.gluu.oxauth.client.RegisterRequest;
+import org.gluu.oxauth.client.RegisterResponse;
+import org.gluu.oxauth.client.TokenClient;
+import org.gluu.oxauth.client.TokenRequest;
+import org.gluu.oxauth.client.TokenResponse;
+import org.gluu.oxauth.client.UserInfoClient;
+import org.gluu.oxauth.client.UserInfoResponse;
+import org.gluu.oxauth.model.ciba.BackchannelAuthenticationErrorResponseType;
+import org.gluu.oxauth.model.common.AuthenticationMethod;
+import org.gluu.oxauth.model.common.BackchannelTokenDeliveryMode;
+import org.gluu.oxauth.model.common.GrantType;
+import org.gluu.oxauth.model.common.ResponseType;
+import org.gluu.oxauth.model.crypto.OxAuthCryptoProvider;
+import org.gluu.oxauth.model.crypto.encryption.BlockEncryptionAlgorithm;
+import org.gluu.oxauth.model.crypto.encryption.KeyEncryptionAlgorithm;
+import org.gluu.oxauth.model.crypto.signature.AsymmetricSignatureAlgorithm;
+import org.gluu.oxauth.model.crypto.signature.ECDSAPublicKey;
+import org.gluu.oxauth.model.crypto.signature.RSAPublicKey;
+import org.gluu.oxauth.model.crypto.signature.SignatureAlgorithm;
+import org.gluu.oxauth.model.jwe.Jwe;
+import org.gluu.oxauth.model.jws.ECDSASigner;
+import org.gluu.oxauth.model.jws.RSASigner;
+import org.gluu.oxauth.model.jwt.Jwt;
+import org.gluu.oxauth.model.jwt.JwtClaimName;
+import org.gluu.oxauth.model.jwt.JwtHeaderName;
+import org.gluu.oxauth.model.register.ApplicationType;
+import org.gluu.oxauth.model.util.StringUtils;
+import org.gluu.oxauth.model.util.Util;
+import org.json.JSONObject;
+import org.testng.annotations.Parameters;
+import org.testng.annotations.Test;
+
+/**
+ * @author Javier Rojas Blum
+ * @version May 28, 2020
+ */
+public class BackchannelAuthenticationPollMode extends BaseTest {
+
+    String idTokenHintRS256;
+    String idTokenHintRS384;
+    String idTokenHintRS512;
+    String idTokenHintES256;
+    String idTokenHintES384;
+    String idTokenHintES512;
+    String idTokenHintPS256;
+    String idTokenHintPS384;
+    String idTokenHintPS512;
+    String idTokenHintAlgA128KWEncA128GCM;
+    String idTokenHintAlgA256KWEncA256GCM;
+    String idTokenHintAlgRSA15EncA128CBCPLUSHS256;
+    String idTokenHintAlgRSA15EncA256CBCPLUSHS512;
+    String idTokenHintAlgRSAOAEPEncA256GCM;
+
+    String loginHintTokenRS256;
+    String loginHintTokenRS384;
+    String loginHintTokenRS512;
+    String loginHintTokenES256;
+    String loginHintTokenES384;
+    String loginHintTokenES512;
+    String loginHintTokenPS256;
+    String loginHintTokenPS384;
+    String loginHintTokenPS512;
+
+    @Parameters({"clientJwksUri", "userId", "backchannelUserCode"})
+    @Test
+    public void backchannelTokenDeliveryModePollLoginHint1(
+            final String clientJwksUri, final String userId, final String backchannelUserCode) throws InterruptedException {
+        showTitle("backchannelTokenDeliveryModePollLoginHint1");
+
+        // 1. Dynamic Client Registration
+        RegisterRequest registerRequest = new RegisterRequest(ApplicationType.WEB, "oxAuth test app", null);
+        registerRequest.setJwksUri(clientJwksUri);
+        registerRequest.setGrantTypes(Arrays.asList(GrantType.CIBA));
+
+        registerRequest.setBackchannelTokenDeliveryMode(BackchannelTokenDeliveryMode.POLL);
+        registerRequest.setBackchannelAuthenticationRequestSigningAlg(AsymmetricSignatureAlgorithm.RS256);
+        registerRequest.setBackchannelUserCodeParameter(true);
+
+        RegisterClient registerClient = new RegisterClient(registrationEndpoint);
+        registerClient.setRequest(registerRequest);
+        RegisterResponse registerResponse = registerClient.exec();
+
+        showClient(registerClient);
+        assertEquals(registerResponse.getStatus(), 200, "Unexpected response code: " + registerResponse.getEntity());
+        assertNotNull(registerResponse.getClientId());
+        assertNotNull(registerResponse.getClientSecret());
+        assertNotNull(registerResponse.getRegistrationAccessToken());
+        assertNotNull(registerResponse.getClientSecretExpiresAt());
+
+        assertTrue(registerResponse.getClaims().containsKey(BACKCHANNEL_TOKEN_DELIVERY_MODE.toString()));
+        assertTrue(registerResponse.getClaims().containsKey(BACKCHANNEL_AUTHENTICATION_REQUEST_SIGNING_ALG.toString()));
+        assertTrue(registerResponse.getClaims().containsKey(BACKCHANNEL_USER_CODE_PARAMETER.toString()));
+        assertEquals(registerResponse.getClaims().get(BACKCHANNEL_TOKEN_DELIVERY_MODE.toString()), BackchannelTokenDeliveryMode.POLL.getValue());
+        assertEquals(registerResponse.getClaims().get(BACKCHANNEL_AUTHENTICATION_REQUEST_SIGNING_ALG.toString()), AsymmetricSignatureAlgorithm.RS256.getValue());
+        assertEquals(registerResponse.getClaims().get(BACKCHANNEL_USER_CODE_PARAMETER.toString()), new Boolean(true).toString());
+
+        String clientId = registerResponse.getClientId();
+        String clientSecret = registerResponse.getClientSecret();
+
+        // 2. Authentication Request
+        String bindingMessage = RandomStringUtils.randomAlphanumeric(6);
+        String clientNotificationToken = UUID.randomUUID().toString();
+
+        BackchannelAuthenticationRequest backchannelAuthenticationRequest = new BackchannelAuthenticationRequest();
+        backchannelAuthenticationRequest.setScope(Arrays.asList("openid", "profile", "email", "address", "phone"));
+        backchannelAuthenticationRequest.setLoginHint(userId);
+        backchannelAuthenticationRequest.setClientNotificationToken(clientNotificationToken);
+        backchannelAuthenticationRequest.setUserCode(backchannelUserCode);
+        backchannelAuthenticationRequest.setRequestedExpiry(1200);
+        backchannelAuthenticationRequest.setAcrValues(Arrays.asList("auth_ldap_server", "basic"));
+        backchannelAuthenticationRequest.setBindingMessage(bindingMessage);
+        backchannelAuthenticationRequest.setAuthUsername(clientId);
+        backchannelAuthenticationRequest.setAuthPassword(clientSecret);
+
+        BackchannelAuthenticationClient backchannelAuthenticationClient = new BackchannelAuthenticationClient(backchannelAuthenticationEndpoint);
+        backchannelAuthenticationClient.setRequest(backchannelAuthenticationRequest);
+        BackchannelAuthenticationResponse backchannelAuthenticationResponse = backchannelAuthenticationClient.exec();
+
+        showClient(backchannelAuthenticationClient);
+        assertEquals(backchannelAuthenticationResponse.getStatus(), 200, "Unexpected response code: " + backchannelAuthenticationResponse.getEntity());
+        assertNotNull(backchannelAuthenticationResponse.getAuthReqId());
+        assertNotNull(backchannelAuthenticationResponse.getExpiresIn());
+        assertNotNull(backchannelAuthenticationResponse.getInterval()); // This parameter will only be present if the Client is registered to use the Poll or Ping modes.
+
+        String authReqId = backchannelAuthenticationResponse.getAuthReqId();
+
+        // 3. Token Request Using CIBA Grant Type
+        // Uncomment for manual testing
+        /*
+        TokenResponse tokenResponse = null;
+        int pollCount = 0;
+        do {
+            Thread.sleep(5000);
+
+            TokenRequest tokenRequest = new TokenRequest(GrantType.CIBA);
+            tokenRequest.setAuthUsername(clientId);
+            tokenRequest.setAuthPassword(clientSecret);
+            tokenRequest.setAuthReqId(authReqId);
+
+            TokenClient tokenClient = new TokenClient(tokenEndpoint);
+            tokenClient.setRequest(tokenRequest);
+            tokenResponse = tokenClient.exec();
+
+            showClient(tokenClient);
+            pollCount++;
+        } while (tokenResponse.getStatus() == 400 && pollCount < 5);
+
+        assertEquals(tokenResponse.getStatus(), 200, "Unexpected response code: " + tokenResponse.getStatus());
+        assertNotNull(tokenResponse.getEntity(), "The entity is null");
+        assertNotNull(tokenResponse.getAccessToken(), "The access token is null");
+        assertNotNull(tokenResponse.getTokenType(), "The token type is null");
+
+        String accessToken = tokenResponse.getAccessToken();
+
+        // 4. Request user info
+        UserInfoClient userInfoClient = new UserInfoClient(userInfoEndpoint);
+        UserInfoResponse userInfoResponse = userInfoClient.execUserInfo(accessToken);
+
+        showClient(userInfoClient);
+        assertEquals(userInfoResponse.getStatus(), 200, "Unexpected response code: " + userInfoResponse.getStatus());
+        assertNotNull(userInfoResponse.getClaim(JwtClaimName.SUBJECT_IDENTIFIER));
+        assertNotNull(userInfoResponse.getClaim(JwtClaimName.WEBSITE));
+        assertNotNull(userInfoResponse.getClaim(JwtClaimName.ZONEINFO));
+        assertNotNull(userInfoResponse.getClaim(JwtClaimName.ADDRESS));
+        assertNotNull(userInfoResponse.getClaim(JwtClaimName.BIRTHDATE));
+        assertNotNull(userInfoResponse.getClaim(JwtClaimName.EMAIL_VERIFIED));
+        assertNotNull(userInfoResponse.getClaim(JwtClaimName.GENDER));
+        assertNotNull(userInfoResponse.getClaim(JwtClaimName.PROFILE));
+        assertNotNull(userInfoResponse.getClaim(JwtClaimName.PHONE_NUMBER_VERIFIED));
+        assertNotNull(userInfoResponse.getClaim(JwtClaimName.PREFERRED_USERNAME));
+        assertNotNull(userInfoResponse.getClaim(JwtClaimName.GIVEN_NAME));
+        assertNotNull(userInfoResponse.getClaim(JwtClaimName.MIDDLE_NAME));
+        assertNotNull(userInfoResponse.getClaim(JwtClaimName.LOCALE));
+        assertNotNull(userInfoResponse.getClaim(JwtClaimName.PICTURE));
+        assertNotNull(userInfoResponse.getClaim(JwtClaimName.UPDATED_AT));
+        assertNotNull(userInfoResponse.getClaim(JwtClaimName.NAME));
+        assertNotNull(userInfoResponse.getClaim(JwtClaimName.NICKNAME));
+        assertNotNull(userInfoResponse.getClaim(JwtClaimName.PHONE_NUMBER));
+        assertNotNull(userInfoResponse.getClaim(JwtClaimName.FAMILY_NAME));
+        assertNotNull(userInfoResponse.getClaim(JwtClaimName.EMAIL));
+        */
+    }
+
+    @Parameters({"clientJwksUri", "userEmail", "backchannelUserCode"})
+    @Test
+    public void backchannelTokenDeliveryModePollLoginHint2(
+            final String clientJwksUri, final String userEmail, final String backchannelUserCode) {
+        showTitle("backchannelTokenDeliveryModePollLoginHint2");
+
+        // 1. Dynamic Client Registration
+        RegisterRequest registerRequest = new RegisterRequest(ApplicationType.WEB, "oxAuth test app", null);
+        registerRequest.setJwksUri(clientJwksUri);
+        registerRequest.setGrantTypes(Arrays.asList(GrantType.CIBA));
+
+        registerRequest.setBackchannelTokenDeliveryMode(BackchannelTokenDeliveryMode.POLL);
+        registerRequest.setBackchannelAuthenticationRequestSigningAlg(AsymmetricSignatureAlgorithm.RS256);
+        registerRequest.setBackchannelUserCodeParameter(true);
+
+        RegisterClient registerClient = new RegisterClient(registrationEndpoint);
+        registerClient.setRequest(registerRequest);
+        RegisterResponse registerResponse = registerClient.exec();
+
+        showClient(registerClient);
+        assertEquals(registerResponse.getStatus(), 200, "Unexpected response code: " + registerResponse.getEntity());
+        assertNotNull(registerResponse.getClientId());
+        assertNotNull(registerResponse.getClientSecret());
+        assertNotNull(registerResponse.getRegistrationAccessToken());
+        assertNotNull(registerResponse.getClientSecretExpiresAt());
+
+        assertTrue(registerResponse.getClaims().containsKey(BACKCHANNEL_TOKEN_DELIVERY_MODE.toString()));
+        assertTrue(registerResponse.getClaims().containsKey(BACKCHANNEL_AUTHENTICATION_REQUEST_SIGNING_ALG.toString()));
+        assertTrue(registerResponse.getClaims().containsKey(BACKCHANNEL_USER_CODE_PARAMETER.toString()));
+        assertEquals(registerResponse.getClaims().get(BACKCHANNEL_TOKEN_DELIVERY_MODE.toString()), BackchannelTokenDeliveryMode.POLL.getValue());
+        assertEquals(registerResponse.getClaims().get(BACKCHANNEL_AUTHENTICATION_REQUEST_SIGNING_ALG.toString()), AsymmetricSignatureAlgorithm.RS256.getValue());
+        assertEquals(registerResponse.getClaims().get(BACKCHANNEL_USER_CODE_PARAMETER.toString()), new Boolean(true).toString());
+
+        String clientId = registerResponse.getClientId();
+        String clientSecret = registerResponse.getClientSecret();
+
+        // 2. Authentication Request
+        String clientNotificationToken = UUID.randomUUID().toString();
+
+        BackchannelAuthenticationRequest backchannelAuthenticationRequest = new BackchannelAuthenticationRequest();
+        backchannelAuthenticationRequest.setScope(Arrays.asList("openid"));
+        backchannelAuthenticationRequest.setLoginHint(userEmail);
+        backchannelAuthenticationRequest.setClientNotificationToken(clientNotificationToken);
+        backchannelAuthenticationRequest.setUserCode(backchannelUserCode);
+        backchannelAuthenticationRequest.setRequestedExpiry(1200);
+        backchannelAuthenticationRequest.setAuthUsername(clientId);
+        backchannelAuthenticationRequest.setAuthPassword(clientSecret);
+
+        BackchannelAuthenticationClient backchannelAuthenticationClient = new BackchannelAuthenticationClient(backchannelAuthenticationEndpoint);
+        backchannelAuthenticationClient.setRequest(backchannelAuthenticationRequest);
+        BackchannelAuthenticationResponse backchannelAuthenticationResponse = backchannelAuthenticationClient.exec();
+
+        showClient(backchannelAuthenticationClient);
+        assertEquals(backchannelAuthenticationResponse.getStatus(), 200, "Unexpected response code: " + backchannelAuthenticationResponse.getEntity());
+        assertNotNull(backchannelAuthenticationResponse.getAuthReqId());
+        assertNotNull(backchannelAuthenticationResponse.getExpiresIn());
+        assertNotNull(backchannelAuthenticationResponse.getInterval()); // This parameter will only be present if the Client is registered to use the Poll or Ping modes.
+    }
+
+    @Parameters({"clientJwksUri", "userInum", "backchannelUserCode"})
+    @Test
+    public void backchannelTokenDeliveryModePollLoginHint3(
+            final String clientJwksUri, final String userInum, final String backchannelUserCode) {
+        showTitle("backchannelTokenDeliveryModePollLoginHint3");
+
+        // 1. Dynamic Client Registration
+        RegisterRequest registerRequest = new RegisterRequest(ApplicationType.WEB, "oxAuth test app", null);
+        registerRequest.setJwksUri(clientJwksUri);
+        registerRequest.setGrantTypes(Arrays.asList(GrantType.CIBA));
+
+        registerRequest.setBackchannelTokenDeliveryMode(BackchannelTokenDeliveryMode.POLL);
+        registerRequest.setBackchannelAuthenticationRequestSigningAlg(AsymmetricSignatureAlgorithm.RS256);
+        registerRequest.setBackchannelUserCodeParameter(true);
+
+        RegisterClient registerClient = new RegisterClient(registrationEndpoint);
+        registerClient.setRequest(registerRequest);
+        RegisterResponse registerResponse = registerClient.exec();
+
+        showClient(registerClient);
+        assertEquals(registerResponse.getStatus(), 200, "Unexpected response code: " + registerResponse.getEntity());
+        assertNotNull(registerResponse.getClientId());
+        assertNotNull(registerResponse.getClientSecret());
+        assertNotNull(registerResponse.getRegistrationAccessToken());
+        assertNotNull(registerResponse.getClientSecretExpiresAt());
+
+        assertTrue(registerResponse.getClaims().containsKey(BACKCHANNEL_TOKEN_DELIVERY_MODE.toString()));
+        assertTrue(registerResponse.getClaims().containsKey(BACKCHANNEL_AUTHENTICATION_REQUEST_SIGNING_ALG.toString()));
+        assertTrue(registerResponse.getClaims().containsKey(BACKCHANNEL_USER_CODE_PARAMETER.toString()));
+        assertEquals(registerResponse.getClaims().get(BACKCHANNEL_TOKEN_DELIVERY_MODE.toString()), BackchannelTokenDeliveryMode.POLL.getValue());
+        assertEquals(registerResponse.getClaims().get(BACKCHANNEL_AUTHENTICATION_REQUEST_SIGNING_ALG.toString()), AsymmetricSignatureAlgorithm.RS256.getValue());
+        assertEquals(registerResponse.getClaims().get(BACKCHANNEL_USER_CODE_PARAMETER.toString()), new Boolean(true).toString());
+
+        String clientId = registerResponse.getClientId();
+        String clientSecret = registerResponse.getClientSecret();
+
+        // 2. Authentication Request
+        String clientNotificationToken = UUID.randomUUID().toString();
+
+        BackchannelAuthenticationRequest backchannelAuthenticationRequest = new BackchannelAuthenticationRequest();
+        backchannelAuthenticationRequest.setScope(Arrays.asList("openid"));
+        backchannelAuthenticationRequest.setLoginHint(userInum);
+        backchannelAuthenticationRequest.setClientNotificationToken(clientNotificationToken);
+        backchannelAuthenticationRequest.setUserCode(backchannelUserCode);
+        backchannelAuthenticationRequest.setRequestedExpiry(1200);
+        backchannelAuthenticationRequest.setAuthUsername(clientId);
+        backchannelAuthenticationRequest.setAuthPassword(clientSecret);
+
+        BackchannelAuthenticationClient backchannelAuthenticationClient = new BackchannelAuthenticationClient(backchannelAuthenticationEndpoint);
+        backchannelAuthenticationClient.setRequest(backchannelAuthenticationRequest);
+        BackchannelAuthenticationResponse backchannelAuthenticationResponse = backchannelAuthenticationClient.exec();
+
+        showClient(backchannelAuthenticationClient);
+        assertEquals(backchannelAuthenticationResponse.getStatus(), 200, "Unexpected response code: " + backchannelAuthenticationResponse.getEntity());
+        assertNotNull(backchannelAuthenticationResponse.getAuthReqId());
+        assertNotNull(backchannelAuthenticationResponse.getExpiresIn());
+        assertNotNull(backchannelAuthenticationResponse.getInterval()); // This parameter will only be present if the Client is registered to use the Poll or Ping modes.
+    }
+
+    @Parameters({"clientJwksUri", "userId", "backchannelUserCode"})
+    @Test(enabled = false) // Enable it for manual testing
+    public void backchannelTokenDeliveryModePollLoginHint4(
+            final String clientJwksUri, final String userId, final String backchannelUserCode) throws Exception {
+        showTitle("backchannelTokenDeliveryModePollLoginHint4");
+
+        RegisterResponse registerResponse1 = requestClientRegistration(clientJwksUri);
+        RegisterResponse registerResponse2 = requestClientRegistration(clientJwksUri);
+
+        String sub1 = requestBackchannelAuthentication(userId, registerResponse1.getClientId(), registerResponse1.getClientSecret(), backchannelUserCode);
+        String sub2 = requestBackchannelAuthentication(userId, registerResponse2.getClientId(), registerResponse2.getClientSecret(), backchannelUserCode);
+
+        assertEquals(sub1, sub2, "Each client must share the same sub value");
+
+        String sub3 = requestBackchannelAuthentication(userId, registerResponse1.getClientId(), registerResponse1.getClientSecret(), backchannelUserCode);
+        String sub4 = requestBackchannelAuthentication(userId, registerResponse2.getClientId(), registerResponse2.getClientSecret(), backchannelUserCode);
+
+        assertEquals(sub1, sub3, "Same client must receive the same sub value");
+        assertEquals(sub2, sub4, "Same client must receive the same sub value");
+    }
+
+    public RegisterResponse requestClientRegistration(
+            final String clientJwksUri) {
+        // Dynamic Client Registration
+        RegisterRequest registerRequest = new RegisterRequest(ApplicationType.WEB, "oxAuth test app", null);
+        registerRequest.setJwksUri(clientJwksUri);
+        registerRequest.setGrantTypes(Arrays.asList(GrantType.CIBA));
+
+        registerRequest.setBackchannelTokenDeliveryMode(BackchannelTokenDeliveryMode.POLL);
+        registerRequest.setBackchannelAuthenticationRequestSigningAlg(AsymmetricSignatureAlgorithm.RS256);
+        registerRequest.setBackchannelUserCodeParameter(true);
+
+        RegisterClient registerClient = new RegisterClient(registrationEndpoint);
+        registerClient.setRequest(registerRequest);
+        RegisterResponse registerResponse = registerClient.exec();
+
+        showClient(registerClient);
+        assertEquals(registerResponse.getStatus(), 200, "Unexpected response code: " + registerResponse.getEntity());
+        assertNotNull(registerResponse.getClientId());
+        assertNotNull(registerResponse.getClientSecret());
+        assertNotNull(registerResponse.getRegistrationAccessToken());
+        assertNotNull(registerResponse.getClientSecretExpiresAt());
+
+        assertTrue(registerResponse.getClaims().containsKey(BACKCHANNEL_TOKEN_DELIVERY_MODE.toString()));
+        assertTrue(registerResponse.getClaims().containsKey(BACKCHANNEL_AUTHENTICATION_REQUEST_SIGNING_ALG.toString()));
+        assertTrue(registerResponse.getClaims().containsKey(BACKCHANNEL_USER_CODE_PARAMETER.toString()));
+        assertEquals(registerResponse.getClaims().get(BACKCHANNEL_TOKEN_DELIVERY_MODE.toString()), BackchannelTokenDeliveryMode.POLL.getValue());
+        assertEquals(registerResponse.getClaims().get(BACKCHANNEL_AUTHENTICATION_REQUEST_SIGNING_ALG.toString()), AsymmetricSignatureAlgorithm.RS256.getValue());
+        assertEquals(registerResponse.getClaims().get(BACKCHANNEL_USER_CODE_PARAMETER.toString()), new Boolean(true).toString());
+
+        return registerResponse;
+    }
+
+    public String requestBackchannelAuthentication(
+            final String userId, final String clientId, final String clientSecret, final String backchannelUserCode) throws Exception {
+        // Authentication Request
+        String bindingMessage = RandomStringUtils.randomAlphanumeric(6);
+        String clientNotificationToken = UUID.randomUUID().toString();
+
+        BackchannelAuthenticationRequest backchannelAuthenticationRequest = new BackchannelAuthenticationRequest();
+        backchannelAuthenticationRequest.setScope(Arrays.asList("openid", "profile", "email", "address", "phone"));
+        backchannelAuthenticationRequest.setLoginHint(userId);
+        backchannelAuthenticationRequest.setClientNotificationToken(clientNotificationToken);
+        backchannelAuthenticationRequest.setUserCode(backchannelUserCode);
+        backchannelAuthenticationRequest.setRequestedExpiry(1200);
+        backchannelAuthenticationRequest.setAcrValues(Arrays.asList("auth_ldap_server", "basic"));
+        backchannelAuthenticationRequest.setBindingMessage(bindingMessage);
+        backchannelAuthenticationRequest.setAuthUsername(clientId);
+        backchannelAuthenticationRequest.setAuthPassword(clientSecret);
+
+        BackchannelAuthenticationClient backchannelAuthenticationClient = new BackchannelAuthenticationClient(backchannelAuthenticationEndpoint);
+        backchannelAuthenticationClient.setRequest(backchannelAuthenticationRequest);
+        BackchannelAuthenticationResponse backchannelAuthenticationResponse = backchannelAuthenticationClient.exec();
+
+        showClient(backchannelAuthenticationClient);
+        assertEquals(backchannelAuthenticationResponse.getStatus(), 200, "Unexpected response code: " + backchannelAuthenticationResponse.getEntity());
+        assertNotNull(backchannelAuthenticationResponse.getAuthReqId());
+        assertNotNull(backchannelAuthenticationResponse.getExpiresIn());
+        assertNotNull(backchannelAuthenticationResponse.getInterval()); // This parameter will only be present if the Client is registered to use the Poll or Ping modes.
+
+        String authReqId = backchannelAuthenticationResponse.getAuthReqId();
+
+        // Token Request Using CIBA Grant Type
+        TokenResponse tokenResponse = null;
+        int pollCount = 0;
+        do {
+            Thread.sleep(5000);
+
+            TokenRequest tokenRequest = new TokenRequest(GrantType.CIBA);
+            tokenRequest.setAuthUsername(clientId);
+            tokenRequest.setAuthPassword(clientSecret);
+            tokenRequest.setAuthReqId(authReqId);
+
+            TokenClient tokenClient = new TokenClient(tokenEndpoint);
+            tokenClient.setRequest(tokenRequest);
+            tokenResponse = tokenClient.exec();
+
+            showClient(tokenClient);
+            pollCount++;
+        } while (tokenResponse.getStatus() == 400 && pollCount < 5);
+
+        assertEquals(tokenResponse.getStatus(), 200, "Unexpected response code: " + tokenResponse.getStatus());
+        assertNotNull(tokenResponse.getEntity(), "The entity is null");
+        assertNotNull(tokenResponse.getAccessToken(), "The access token is null");
+        assertNotNull(tokenResponse.getTokenType(), "The token type is null");
+
+        String accessToken = tokenResponse.getAccessToken();
+        String idToken = tokenResponse.getIdToken();
+
+        // Request user info
+        UserInfoClient userInfoClient = new UserInfoClient(userInfoEndpoint);
+        UserInfoResponse userInfoResponse = userInfoClient.execUserInfo(accessToken);
+
+        showClient(userInfoClient);
+        assertEquals(userInfoResponse.getStatus(), 200, "Unexpected response code: " + userInfoResponse.getStatus());
+        assertNotNull(userInfoResponse.getClaim(JwtClaimName.SUBJECT_IDENTIFIER));
+        assertNotNull(userInfoResponse.getClaim(JwtClaimName.WEBSITE));
+        assertNotNull(userInfoResponse.getClaim(JwtClaimName.ZONEINFO));
+        assertNotNull(userInfoResponse.getClaim(JwtClaimName.ADDRESS));
+        assertNotNull(userInfoResponse.getClaim(JwtClaimName.BIRTHDATE));
+        assertNotNull(userInfoResponse.getClaim(JwtClaimName.EMAIL_VERIFIED));
+        assertNotNull(userInfoResponse.getClaim(JwtClaimName.GENDER));
+        assertNotNull(userInfoResponse.getClaim(JwtClaimName.PROFILE));
+        assertNotNull(userInfoResponse.getClaim(JwtClaimName.PHONE_NUMBER_VERIFIED));
+        assertNotNull(userInfoResponse.getClaim(JwtClaimName.PREFERRED_USERNAME));
+        assertNotNull(userInfoResponse.getClaim(JwtClaimName.GIVEN_NAME));
+        assertNotNull(userInfoResponse.getClaim(JwtClaimName.MIDDLE_NAME));
+        assertNotNull(userInfoResponse.getClaim(JwtClaimName.LOCALE));
+        assertNotNull(userInfoResponse.getClaim(JwtClaimName.PICTURE));
+        assertNotNull(userInfoResponse.getClaim(JwtClaimName.UPDATED_AT));
+        assertNotNull(userInfoResponse.getClaim(JwtClaimName.NAME));
+        assertNotNull(userInfoResponse.getClaim(JwtClaimName.NICKNAME));
+        assertNotNull(userInfoResponse.getClaim(JwtClaimName.PHONE_NUMBER));
+        assertNotNull(userInfoResponse.getClaim(JwtClaimName.FAMILY_NAME));
+        assertNotNull(userInfoResponse.getClaim(JwtClaimName.EMAIL));
+
+        // Validate id_token
+        Jwt jwt = Jwt.parse(idToken);
+        assertNotNull(jwt.getHeader().getClaimAsString(JwtHeaderName.TYPE));
+        assertNotNull(jwt.getHeader().getClaimAsString(JwtHeaderName.ALGORITHM));
+        assertNotNull(jwt.getClaims().getClaimAsString(JwtClaimName.SUBJECT_IDENTIFIER));
+        assertNotNull(jwt.getClaims().getClaimAsString(JwtClaimName.ISSUER));
+        assertNotNull(jwt.getClaims().getClaimAsString(JwtClaimName.AUDIENCE));
+        assertNotNull(jwt.getClaims().getClaimAsString(JwtClaimName.EXPIRATION_TIME));
+        assertNotNull(jwt.getClaims().getClaimAsString(JwtClaimName.ISSUED_AT));
+        assertNotNull(jwt.getClaims().getClaimAsString(JwtClaimName.SUBJECT_IDENTIFIER));
+
+        RSAPublicKey publicKey = JwkClient.getRSAPublicKey(
+                jwksUri,
+                jwt.getHeader().getClaimAsString(JwtHeaderName.KEY_ID));
+        RSASigner rsaSigner = new RSASigner(SignatureAlgorithm.RS256, publicKey);
+
+        assertTrue(rsaSigner.validate(jwt));
+
+        String sub = jwt.getClaims().getClaimAsString(JwtClaimName.SUBJECT_IDENTIFIER);
+
+        return sub;
+    }
+
+    @Parameters({"clientJwksUri", "backchannelUserCode",
+            "RS256_keyId", "dnName", "keyStoreFile", "keyStoreSecret"})
+    @Test(dependsOnMethods = "idTokenHintRS256")
+    public void backchannelTokenDeliveryModePollIdTokenHintRS256(
+            final String clientJwksUri, final String backchannelUserCode,
+            final String keyId, final String dnName, final String keyStoreFile, final String keyStoreSecret) throws Exception {
+        showTitle("backchannelTokenDeliveryModePollIdTokenHintRS256");
+
+        // 1. Dynamic Client Registration
+        RegisterRequest registerRequest = new RegisterRequest(ApplicationType.WEB, "oxAuth test app", null);
+        registerRequest.setJwksUri(clientJwksUri);
+        registerRequest.setGrantTypes(Arrays.asList(GrantType.CIBA));
+
+        registerRequest.setTokenEndpointAuthMethod(AuthenticationMethod.PRIVATE_KEY_JWT);
+        registerRequest.setTokenEndpointAuthSigningAlg(SignatureAlgorithm.RS256);
+        registerRequest.setBackchannelTokenDeliveryMode(BackchannelTokenDeliveryMode.POLL);
+        registerRequest.setBackchannelAuthenticationRequestSigningAlg(AsymmetricSignatureAlgorithm.RS256);
+        registerRequest.setBackchannelUserCodeParameter(true);
+
+        RegisterClient registerClient = new RegisterClient(registrationEndpoint);
+        registerClient.setRequest(registerRequest);
+        RegisterResponse registerResponse = registerClient.exec();
+
+        showClient(registerClient);
+        assertEquals(registerResponse.getStatus(), 200, "Unexpected response code: " + registerResponse.getEntity());
+        assertNotNull(registerResponse.getClientId());
+        assertNotNull(registerResponse.getClientSecret());
+        assertNotNull(registerResponse.getRegistrationAccessToken());
+        assertNotNull(registerResponse.getClientSecretExpiresAt());
+
+        assertTrue(registerResponse.getClaims().containsKey(BACKCHANNEL_TOKEN_DELIVERY_MODE.toString()));
+        assertTrue(registerResponse.getClaims().containsKey(BACKCHANNEL_AUTHENTICATION_REQUEST_SIGNING_ALG.toString()));
+        assertTrue(registerResponse.getClaims().containsKey(BACKCHANNEL_USER_CODE_PARAMETER.toString()));
+        assertEquals(registerResponse.getClaims().get(BACKCHANNEL_TOKEN_DELIVERY_MODE.toString()), BackchannelTokenDeliveryMode.POLL.getValue());
+        assertEquals(registerResponse.getClaims().get(BACKCHANNEL_AUTHENTICATION_REQUEST_SIGNING_ALG.toString()), AsymmetricSignatureAlgorithm.RS256.getValue());
+        assertEquals(registerResponse.getClaims().get(BACKCHANNEL_USER_CODE_PARAMETER.toString()), new Boolean(true).toString());
+
+        String clientId = registerResponse.getClientId();
+
+        // 2. Authentication Request
+        OxAuthCryptoProvider cryptoProvider = new OxAuthCryptoProvider(keyStoreFile, keyStoreSecret, dnName);
+        String clientNotificationToken = UUID.randomUUID().toString();
+
+        BackchannelAuthenticationRequest backchannelAuthenticationRequest = new BackchannelAuthenticationRequest();
+        backchannelAuthenticationRequest.setScope(Arrays.asList("openid"));
+        backchannelAuthenticationRequest.setIdTokenHint(idTokenHintRS256);
+        backchannelAuthenticationRequest.setClientNotificationToken(clientNotificationToken);
+        backchannelAuthenticationRequest.setUserCode(backchannelUserCode);
+        backchannelAuthenticationRequest.setRequestedExpiry(1200);
+        backchannelAuthenticationRequest.setAuthenticationMethod(AuthenticationMethod.PRIVATE_KEY_JWT);
+        backchannelAuthenticationRequest.setAlgorithm(SignatureAlgorithm.RS256);
+        backchannelAuthenticationRequest.setCryptoProvider(cryptoProvider);
+        backchannelAuthenticationRequest.setKeyId(keyId);
+        backchannelAuthenticationRequest.setAudience(tokenEndpoint);
+        backchannelAuthenticationRequest.setAuthUsername(clientId);
+
+        BackchannelAuthenticationClient backchannelAuthenticationClient = new BackchannelAuthenticationClient(backchannelAuthenticationEndpoint);
+        backchannelAuthenticationClient.setRequest(backchannelAuthenticationRequest);
+        BackchannelAuthenticationResponse backchannelAuthenticationResponse = backchannelAuthenticationClient.exec();
+
+        showClient(backchannelAuthenticationClient);
+        assertEquals(backchannelAuthenticationResponse.getStatus(), 200, "Unexpected response code: " + backchannelAuthenticationResponse.getEntity());
+        assertNotNull(backchannelAuthenticationResponse.getAuthReqId());
+        assertNotNull(backchannelAuthenticationResponse.getExpiresIn());
+        assertNotNull(backchannelAuthenticationResponse.getInterval()); // This parameter will only be present if the Client is registered to use the Poll or Ping modes.
+    }
+
+    @Parameters({"clientJwksUri", "backchannelUserCode",
+            "RS384_keyId", "dnName", "keyStoreFile", "keyStoreSecret"})
+    @Test(dependsOnMethods = "idTokenHintRS384")
+    public void backchannelTokenDeliveryModePollIdTokenHintRS384(
+            final String clientJwksUri, final String backchannelUserCode,
+            final String keyId, final String dnName, final String keyStoreFile, final String keyStoreSecret) throws Exception {
+        showTitle("backchannelTokenDeliveryModePollIdTokenHintRS384");
+
+        // 1. Dynamic Client Registration
+        RegisterRequest registerRequest = new RegisterRequest(ApplicationType.WEB, "oxAuth test app", null);
+        registerRequest.setJwksUri(clientJwksUri);
+        registerRequest.setGrantTypes(Arrays.asList(GrantType.CIBA));
+
+        registerRequest.setTokenEndpointAuthMethod(AuthenticationMethod.PRIVATE_KEY_JWT);
+        registerRequest.setTokenEndpointAuthSigningAlg(SignatureAlgorithm.RS384);
+        registerRequest.setBackchannelTokenDeliveryMode(BackchannelTokenDeliveryMode.POLL);
+        registerRequest.setBackchannelAuthenticationRequestSigningAlg(AsymmetricSignatureAlgorithm.RS384);
+        registerRequest.setBackchannelUserCodeParameter(true);
+
+        RegisterClient registerClient = new RegisterClient(registrationEndpoint);
+        registerClient.setRequest(registerRequest);
+        RegisterResponse registerResponse = registerClient.exec();
+
+        showClient(registerClient);
+        assertEquals(registerResponse.getStatus(), 200, "Unexpected response code: " + registerResponse.getEntity());
+        assertNotNull(registerResponse.getClientId());
+        assertNotNull(registerResponse.getClientSecret());
+        assertNotNull(registerResponse.getRegistrationAccessToken());
+        assertNotNull(registerResponse.getClientSecretExpiresAt());
+
+        assertTrue(registerResponse.getClaims().containsKey(BACKCHANNEL_TOKEN_DELIVERY_MODE.toString()));
+        assertTrue(registerResponse.getClaims().containsKey(BACKCHANNEL_AUTHENTICATION_REQUEST_SIGNING_ALG.toString()));
+        assertTrue(registerResponse.getClaims().containsKey(BACKCHANNEL_USER_CODE_PARAMETER.toString()));
+        assertEquals(registerResponse.getClaims().get(BACKCHANNEL_TOKEN_DELIVERY_MODE.toString()), BackchannelTokenDeliveryMode.POLL.getValue());
+        assertEquals(registerResponse.getClaims().get(BACKCHANNEL_AUTHENTICATION_REQUEST_SIGNING_ALG.toString()), AsymmetricSignatureAlgorithm.RS384.getValue());
+        assertEquals(registerResponse.getClaims().get(BACKCHANNEL_USER_CODE_PARAMETER.toString()), new Boolean(true).toString());
+
+        String clientId = registerResponse.getClientId();
+
+        // 2. Authentication Request
+        OxAuthCryptoProvider cryptoProvider = new OxAuthCryptoProvider(keyStoreFile, keyStoreSecret, dnName);
+        String clientNotificationToken = UUID.randomUUID().toString();
+
+        BackchannelAuthenticationRequest backchannelAuthenticationRequest = new BackchannelAuthenticationRequest();
+        backchannelAuthenticationRequest.setScope(Arrays.asList("openid"));
+        backchannelAuthenticationRequest.setIdTokenHint(idTokenHintRS384);
+        backchannelAuthenticationRequest.setClientNotificationToken(clientNotificationToken);
+        backchannelAuthenticationRequest.setUserCode(backchannelUserCode);
+        backchannelAuthenticationRequest.setRequestedExpiry(1200);
+        backchannelAuthenticationRequest.setAuthenticationMethod(AuthenticationMethod.PRIVATE_KEY_JWT);
+        backchannelAuthenticationRequest.setAlgorithm(SignatureAlgorithm.RS384);
+        backchannelAuthenticationRequest.setCryptoProvider(cryptoProvider);
+        backchannelAuthenticationRequest.setKeyId(keyId);
+        backchannelAuthenticationRequest.setAudience(tokenEndpoint);
+        backchannelAuthenticationRequest.setAuthUsername(clientId);
+
+        BackchannelAuthenticationClient backchannelAuthenticationClient = new BackchannelAuthenticationClient(backchannelAuthenticationEndpoint);
+        backchannelAuthenticationClient.setRequest(backchannelAuthenticationRequest);
+        BackchannelAuthenticationResponse backchannelAuthenticationResponse = backchannelAuthenticationClient.exec();
+
+        showClient(backchannelAuthenticationClient);
+        assertEquals(backchannelAuthenticationResponse.getStatus(), 200, "Unexpected response code: " + backchannelAuthenticationResponse.getEntity());
+        assertNotNull(backchannelAuthenticationResponse.getAuthReqId());
+        assertNotNull(backchannelAuthenticationResponse.getExpiresIn());
+        assertNotNull(backchannelAuthenticationResponse.getInterval()); // This parameter will only be present if the Client is registered to use the Poll or Ping modes.
+    }
+
+    @Parameters({"clientJwksUri", "backchannelUserCode",
+            "RS512_keyId", "dnName", "keyStoreFile", "keyStoreSecret"})
+    @Test(dependsOnMethods = "idTokenHintRS512")
+    public void backchannelTokenDeliveryModePollIdTokenHintRS512(
+            final String clientJwksUri, final String backchannelUserCode,
+            final String keyId, final String dnName, final String keyStoreFile, final String keyStoreSecret) throws Exception {
+        showTitle("backchannelTokenDeliveryModePollIdTokenHintRS512");
+
+        // 1. Dynamic Client Registration
+        RegisterRequest registerRequest = new RegisterRequest(ApplicationType.WEB, "oxAuth test app", null);
+        registerRequest.setJwksUri(clientJwksUri);
+        registerRequest.setGrantTypes(Arrays.asList(GrantType.CIBA));
+
+        registerRequest.setTokenEndpointAuthMethod(AuthenticationMethod.PRIVATE_KEY_JWT);
+        registerRequest.setTokenEndpointAuthSigningAlg(SignatureAlgorithm.RS512);
+        registerRequest.setBackchannelTokenDeliveryMode(BackchannelTokenDeliveryMode.POLL);
+        registerRequest.setBackchannelAuthenticationRequestSigningAlg(AsymmetricSignatureAlgorithm.RS512);
+        registerRequest.setBackchannelUserCodeParameter(true);
+
+        RegisterClient registerClient = new RegisterClient(registrationEndpoint);
+        registerClient.setRequest(registerRequest);
+        RegisterResponse registerResponse = registerClient.exec();
+
+        showClient(registerClient);
+        assertEquals(registerResponse.getStatus(), 200, "Unexpected response code: " + registerResponse.getEntity());
+        assertNotNull(registerResponse.getClientId());
+        assertNotNull(registerResponse.getClientSecret());
+        assertNotNull(registerResponse.getRegistrationAccessToken());
+        assertNotNull(registerResponse.getClientSecretExpiresAt());
+
+        assertTrue(registerResponse.getClaims().containsKey(BACKCHANNEL_TOKEN_DELIVERY_MODE.toString()));
+        assertTrue(registerResponse.getClaims().containsKey(BACKCHANNEL_AUTHENTICATION_REQUEST_SIGNING_ALG.toString()));
+        assertTrue(registerResponse.getClaims().containsKey(BACKCHANNEL_USER_CODE_PARAMETER.toString()));
+        assertEquals(registerResponse.getClaims().get(BACKCHANNEL_TOKEN_DELIVERY_MODE.toString()), BackchannelTokenDeliveryMode.POLL.getValue());
+        assertEquals(registerResponse.getClaims().get(BACKCHANNEL_AUTHENTICATION_REQUEST_SIGNING_ALG.toString()), AsymmetricSignatureAlgorithm.RS512.getValue());
+        assertEquals(registerResponse.getClaims().get(BACKCHANNEL_USER_CODE_PARAMETER.toString()), new Boolean(true).toString());
+
+        String clientId = registerResponse.getClientId();
+
+        // 2. Authentication Request
+        OxAuthCryptoProvider cryptoProvider = new OxAuthCryptoProvider(keyStoreFile, keyStoreSecret, dnName);
+        String clientNotificationToken = UUID.randomUUID().toString();
+
+        BackchannelAuthenticationRequest backchannelAuthenticationRequest = new BackchannelAuthenticationRequest();
+        backchannelAuthenticationRequest.setScope(Arrays.asList("openid"));
+        backchannelAuthenticationRequest.setIdTokenHint(idTokenHintRS512);
+        backchannelAuthenticationRequest.setClientNotificationToken(clientNotificationToken);
+        backchannelAuthenticationRequest.setUserCode(backchannelUserCode);
+        backchannelAuthenticationRequest.setRequestedExpiry(1200);
+        backchannelAuthenticationRequest.setAuthenticationMethod(AuthenticationMethod.PRIVATE_KEY_JWT);
+        backchannelAuthenticationRequest.setAlgorithm(SignatureAlgorithm.RS512);
+        backchannelAuthenticationRequest.setCryptoProvider(cryptoProvider);
+        backchannelAuthenticationRequest.setKeyId(keyId);
+        backchannelAuthenticationRequest.setAudience(tokenEndpoint);
+        backchannelAuthenticationRequest.setAuthUsername(clientId);
+
+        BackchannelAuthenticationClient backchannelAuthenticationClient = new BackchannelAuthenticationClient(backchannelAuthenticationEndpoint);
+        backchannelAuthenticationClient.setRequest(backchannelAuthenticationRequest);
+        BackchannelAuthenticationResponse backchannelAuthenticationResponse = backchannelAuthenticationClient.exec();
+
+        showClient(backchannelAuthenticationClient);
+        assertEquals(backchannelAuthenticationResponse.getStatus(), 200, "Unexpected response code: " + backchannelAuthenticationResponse.getEntity());
+        assertNotNull(backchannelAuthenticationResponse.getAuthReqId());
+        assertNotNull(backchannelAuthenticationResponse.getExpiresIn());
+        assertNotNull(backchannelAuthenticationResponse.getInterval()); // This parameter will only be present if the Client is registered to use the Poll or Ping modes.
+    }
+
+    @Parameters({"clientJwksUri", "backchannelUserCode",
+            "ES256_keyId", "dnName", "keyStoreFile", "keyStoreSecret"})
+    @Test(dependsOnMethods = "idTokenHintES256")
+    public void backchannelTokenDeliveryModePollIdTokenHintES256(
+            final String clientJwksUri, final String backchannelUserCode,
+            final String keyId, final String dnName, final String keyStoreFile, final String keyStoreSecret) throws Exception {
+        showTitle("backchannelTokenDeliveryModePollIdTokenHintES256");
+
+        // 1. Dynamic Client Registration
+        RegisterRequest registerRequest = new RegisterRequest(ApplicationType.WEB, "oxAuth test app", null);
+        registerRequest.setJwksUri(clientJwksUri);
+        registerRequest.setGrantTypes(Arrays.asList(GrantType.CIBA));
+
+        registerRequest.setTokenEndpointAuthMethod(AuthenticationMethod.PRIVATE_KEY_JWT);
+        registerRequest.setTokenEndpointAuthSigningAlg(SignatureAlgorithm.ES256);
+        registerRequest.setBackchannelTokenDeliveryMode(BackchannelTokenDeliveryMode.POLL);
+        registerRequest.setBackchannelAuthenticationRequestSigningAlg(AsymmetricSignatureAlgorithm.ES256);
+        registerRequest.setBackchannelUserCodeParameter(true);
+
+        RegisterClient registerClient = new RegisterClient(registrationEndpoint);
+        registerClient.setRequest(registerRequest);
+        RegisterResponse registerResponse = registerClient.exec();
+
+        showClient(registerClient);
+        assertEquals(registerResponse.getStatus(), 200, "Unexpected response code: " + registerResponse.getEntity());
+        assertNotNull(registerResponse.getClientId());
+        assertNotNull(registerResponse.getClientSecret());
+        assertNotNull(registerResponse.getRegistrationAccessToken());
+        assertNotNull(registerResponse.getClientSecretExpiresAt());
+
+        assertTrue(registerResponse.getClaims().containsKey(BACKCHANNEL_TOKEN_DELIVERY_MODE.toString()));
+        assertTrue(registerResponse.getClaims().containsKey(BACKCHANNEL_AUTHENTICATION_REQUEST_SIGNING_ALG.toString()));
+        assertTrue(registerResponse.getClaims().containsKey(BACKCHANNEL_USER_CODE_PARAMETER.toString()));
+        assertEquals(registerResponse.getClaims().get(BACKCHANNEL_TOKEN_DELIVERY_MODE.toString()), BackchannelTokenDeliveryMode.POLL.getValue());
+        assertEquals(registerResponse.getClaims().get(BACKCHANNEL_AUTHENTICATION_REQUEST_SIGNING_ALG.toString()), AsymmetricSignatureAlgorithm.ES256.getValue());
+        assertEquals(registerResponse.getClaims().get(BACKCHANNEL_USER_CODE_PARAMETER.toString()), new Boolean(true).toString());
+
+        String clientId = registerResponse.getClientId();
+
+        // 2. Authentication Request
+        OxAuthCryptoProvider cryptoProvider = new OxAuthCryptoProvider(keyStoreFile, keyStoreSecret, dnName);
+        String clientNotificationToken = UUID.randomUUID().toString();
+
+        BackchannelAuthenticationRequest backchannelAuthenticationRequest = new BackchannelAuthenticationRequest();
+        backchannelAuthenticationRequest.setScope(Arrays.asList("openid"));
+        backchannelAuthenticationRequest.setIdTokenHint(idTokenHintES256);
+        backchannelAuthenticationRequest.setClientNotificationToken(clientNotificationToken);
+        backchannelAuthenticationRequest.setUserCode(backchannelUserCode);
+        backchannelAuthenticationRequest.setRequestedExpiry(1200);
+        backchannelAuthenticationRequest.setAuthenticationMethod(AuthenticationMethod.PRIVATE_KEY_JWT);
+        backchannelAuthenticationRequest.setAlgorithm(SignatureAlgorithm.ES256);
+        backchannelAuthenticationRequest.setCryptoProvider(cryptoProvider);
+        backchannelAuthenticationRequest.setKeyId(keyId);
+        backchannelAuthenticationRequest.setAudience(tokenEndpoint);
+        backchannelAuthenticationRequest.setAuthUsername(clientId);
+
+        BackchannelAuthenticationClient backchannelAuthenticationClient = new BackchannelAuthenticationClient(backchannelAuthenticationEndpoint);
+        backchannelAuthenticationClient.setRequest(backchannelAuthenticationRequest);
+        BackchannelAuthenticationResponse backchannelAuthenticationResponse = backchannelAuthenticationClient.exec();
+
+        showClient(backchannelAuthenticationClient);
+        assertEquals(backchannelAuthenticationResponse.getStatus(), 200, "Unexpected response code: " + backchannelAuthenticationResponse.getEntity());
+        assertNotNull(backchannelAuthenticationResponse.getAuthReqId());
+        assertNotNull(backchannelAuthenticationResponse.getExpiresIn());
+        assertNotNull(backchannelAuthenticationResponse.getInterval()); // This parameter will only be present if the Client is registered to use the Poll or Ping modes.
+    }
+
+    @Parameters({"clientJwksUri", "backchannelUserCode",
+            "ES384_keyId", "dnName", "keyStoreFile", "keyStoreSecret"})
+    @Test(dependsOnMethods = "idTokenHintES384")
+    public void backchannelTokenDeliveryModePollIdTokenHintES384(
+            final String clientJwksUri, final String backchannelUserCode,
+            final String keyId, final String dnName, final String keyStoreFile, final String keyStoreSecret) throws Exception {
+        showTitle("backchannelTokenDeliveryModePollIdTokenHintES384");
+
+        // 1. Dynamic Client Registration
+        RegisterRequest registerRequest = new RegisterRequest(ApplicationType.WEB, "oxAuth test app", null);
+        registerRequest.setJwksUri(clientJwksUri);
+        registerRequest.setGrantTypes(Arrays.asList(GrantType.CIBA));
+
+        registerRequest.setTokenEndpointAuthMethod(AuthenticationMethod.PRIVATE_KEY_JWT);
+        registerRequest.setTokenEndpointAuthSigningAlg(SignatureAlgorithm.ES384);
+        registerRequest.setBackchannelTokenDeliveryMode(BackchannelTokenDeliveryMode.POLL);
+        registerRequest.setBackchannelAuthenticationRequestSigningAlg(AsymmetricSignatureAlgorithm.ES384);
+        registerRequest.setBackchannelUserCodeParameter(true);
+
+        RegisterClient registerClient = new RegisterClient(registrationEndpoint);
+        registerClient.setRequest(registerRequest);
+        RegisterResponse registerResponse = registerClient.exec();
+
+        showClient(registerClient);
+        assertEquals(registerResponse.getStatus(), 200, "Unexpected response code: " + registerResponse.getEntity());
+        assertNotNull(registerResponse.getClientId());
+        assertNotNull(registerResponse.getClientSecret());
+        assertNotNull(registerResponse.getRegistrationAccessToken());
+        assertNotNull(registerResponse.getClientSecretExpiresAt());
+
+        assertTrue(registerResponse.getClaims().containsKey(BACKCHANNEL_TOKEN_DELIVERY_MODE.toString()));
+        assertTrue(registerResponse.getClaims().containsKey(BACKCHANNEL_AUTHENTICATION_REQUEST_SIGNING_ALG.toString()));
+        assertTrue(registerResponse.getClaims().containsKey(BACKCHANNEL_USER_CODE_PARAMETER.toString()));
+        assertEquals(registerResponse.getClaims().get(BACKCHANNEL_TOKEN_DELIVERY_MODE.toString()), BackchannelTokenDeliveryMode.POLL.getValue());
+        assertEquals(registerResponse.getClaims().get(BACKCHANNEL_AUTHENTICATION_REQUEST_SIGNING_ALG.toString()), AsymmetricSignatureAlgorithm.ES384.getValue());
+        assertEquals(registerResponse.getClaims().get(BACKCHANNEL_USER_CODE_PARAMETER.toString()), new Boolean(true).toString());
+
+        String clientId = registerResponse.getClientId();
+
+        // 2. Authentication Request
+        OxAuthCryptoProvider cryptoProvider = new OxAuthCryptoProvider(keyStoreFile, keyStoreSecret, dnName);
+        String clientNotificationToken = UUID.randomUUID().toString();
+
+        BackchannelAuthenticationRequest backchannelAuthenticationRequest = new BackchannelAuthenticationRequest();
+        backchannelAuthenticationRequest.setScope(Arrays.asList("openid"));
+        backchannelAuthenticationRequest.setIdTokenHint(idTokenHintES384);
+        backchannelAuthenticationRequest.setClientNotificationToken(clientNotificationToken);
+        backchannelAuthenticationRequest.setUserCode(backchannelUserCode);
+        backchannelAuthenticationRequest.setRequestedExpiry(1200);
+        backchannelAuthenticationRequest.setAuthenticationMethod(AuthenticationMethod.PRIVATE_KEY_JWT);
+        backchannelAuthenticationRequest.setAlgorithm(SignatureAlgorithm.ES384);
+        backchannelAuthenticationRequest.setCryptoProvider(cryptoProvider);
+        backchannelAuthenticationRequest.setKeyId(keyId);
+        backchannelAuthenticationRequest.setAudience(tokenEndpoint);
+        backchannelAuthenticationRequest.setAuthUsername(clientId);
+
+        BackchannelAuthenticationClient backchannelAuthenticationClient = new BackchannelAuthenticationClient(backchannelAuthenticationEndpoint);
+        backchannelAuthenticationClient.setRequest(backchannelAuthenticationRequest);
+        BackchannelAuthenticationResponse backchannelAuthenticationResponse = backchannelAuthenticationClient.exec();
+
+        showClient(backchannelAuthenticationClient);
+        assertEquals(backchannelAuthenticationResponse.getStatus(), 200, "Unexpected response code: " + backchannelAuthenticationResponse.getEntity());
+        assertNotNull(backchannelAuthenticationResponse.getAuthReqId());
+        assertNotNull(backchannelAuthenticationResponse.getExpiresIn());
+        assertNotNull(backchannelAuthenticationResponse.getInterval()); // This parameter will only be present if the Client is registered to use the Poll or Ping modes.
+    }
+
+    @Parameters({"clientJwksUri", "backchannelUserCode",
+            "ES512_keyId", "dnName", "keyStoreFile", "keyStoreSecret"})
+    @Test(dependsOnMethods = "idTokenHintES512")
+    public void backchannelTokenDeliveryModePollIdTokenHintES512(
+            final String clientJwksUri, final String backchannelUserCode,
+            final String keyId, final String dnName, final String keyStoreFile, final String keyStoreSecret) throws Exception {
+        showTitle("backchannelTokenDeliveryModePollIdTokenHintES512");
+
+        // 1. Dynamic Client Registration
+        RegisterRequest registerRequest = new RegisterRequest(ApplicationType.WEB, "oxAuth test app", null);
+        registerRequest.setJwksUri(clientJwksUri);
+        registerRequest.setGrantTypes(Arrays.asList(GrantType.CIBA));
+
+        registerRequest.setTokenEndpointAuthMethod(AuthenticationMethod.PRIVATE_KEY_JWT);
+        registerRequest.setTokenEndpointAuthSigningAlg(SignatureAlgorithm.ES512);
+        registerRequest.setBackchannelTokenDeliveryMode(BackchannelTokenDeliveryMode.POLL);
+        registerRequest.setBackchannelAuthenticationRequestSigningAlg(AsymmetricSignatureAlgorithm.ES512);
+        registerRequest.setBackchannelUserCodeParameter(true);
+
+        RegisterClient registerClient = new RegisterClient(registrationEndpoint);
+        registerClient.setRequest(registerRequest);
+        RegisterResponse registerResponse = registerClient.exec();
+
+        showClient(registerClient);
+        assertEquals(registerResponse.getStatus(), 200, "Unexpected response code: " + registerResponse.getEntity());
+        assertNotNull(registerResponse.getClientId());
+        assertNotNull(registerResponse.getClientSecret());
+        assertNotNull(registerResponse.getRegistrationAccessToken());
+        assertNotNull(registerResponse.getClientSecretExpiresAt());
+
+        assertTrue(registerResponse.getClaims().containsKey(BACKCHANNEL_TOKEN_DELIVERY_MODE.toString()));
+        assertTrue(registerResponse.getClaims().containsKey(BACKCHANNEL_AUTHENTICATION_REQUEST_SIGNING_ALG.toString()));
+        assertTrue(registerResponse.getClaims().containsKey(BACKCHANNEL_USER_CODE_PARAMETER.toString()));
+        assertEquals(registerResponse.getClaims().get(BACKCHANNEL_TOKEN_DELIVERY_MODE.toString()), BackchannelTokenDeliveryMode.POLL.getValue());
+        assertEquals(registerResponse.getClaims().get(BACKCHANNEL_AUTHENTICATION_REQUEST_SIGNING_ALG.toString()), AsymmetricSignatureAlgorithm.ES512.getValue());
+        assertEquals(registerResponse.getClaims().get(BACKCHANNEL_USER_CODE_PARAMETER.toString()), new Boolean(true).toString());
+
+        String clientId = registerResponse.getClientId();
+
+        // 2. Authentication Request
+        OxAuthCryptoProvider cryptoProvider = new OxAuthCryptoProvider(keyStoreFile, keyStoreSecret, dnName);
+        String clientNotificationToken = UUID.randomUUID().toString();
+
+        BackchannelAuthenticationRequest backchannelAuthenticationRequest = new BackchannelAuthenticationRequest();
+        backchannelAuthenticationRequest.setScope(Arrays.asList("openid"));
+        backchannelAuthenticationRequest.setIdTokenHint(idTokenHintES512);
+        backchannelAuthenticationRequest.setClientNotificationToken(clientNotificationToken);
+        backchannelAuthenticationRequest.setUserCode(backchannelUserCode);
+        backchannelAuthenticationRequest.setRequestedExpiry(1200);
+        backchannelAuthenticationRequest.setAuthenticationMethod(AuthenticationMethod.PRIVATE_KEY_JWT);
+        backchannelAuthenticationRequest.setAlgorithm(SignatureAlgorithm.ES512);
+        backchannelAuthenticationRequest.setCryptoProvider(cryptoProvider);
+        backchannelAuthenticationRequest.setKeyId(keyId);
+        backchannelAuthenticationRequest.setAudience(tokenEndpoint);
+        backchannelAuthenticationRequest.setAuthUsername(clientId);
+
+        BackchannelAuthenticationClient backchannelAuthenticationClient = new BackchannelAuthenticationClient(backchannelAuthenticationEndpoint);
+        backchannelAuthenticationClient.setRequest(backchannelAuthenticationRequest);
+        BackchannelAuthenticationResponse backchannelAuthenticationResponse = backchannelAuthenticationClient.exec();
+
+        showClient(backchannelAuthenticationClient);
+        assertEquals(backchannelAuthenticationResponse.getStatus(), 200, "Unexpected response code: " + backchannelAuthenticationResponse.getEntity());
+        assertNotNull(backchannelAuthenticationResponse.getAuthReqId());
+        assertNotNull(backchannelAuthenticationResponse.getExpiresIn());
+        assertNotNull(backchannelAuthenticationResponse.getInterval()); // This parameter will only be present if the Client is registered to use the Poll or Ping modes.
+    }
+
+    @Parameters({"clientJwksUri", "backchannelUserCode",
+            "PS256_keyId", "dnName", "keyStoreFile", "keyStoreSecret"})
+    @Test(dependsOnMethods = "idTokenHintPS256")
+    public void backchannelTokenDeliveryModePollIdTokenHintPS256(
+            final String clientJwksUri, final String backchannelUserCode,
+            final String keyId, final String dnName, final String keyStoreFile, final String keyStoreSecret) throws Exception {
+        showTitle("backchannelTokenDeliveryModePollIdTokenHintPS256");
+
+        // 1. Dynamic Client Registration
+        RegisterRequest registerRequest = new RegisterRequest(ApplicationType.WEB, "oxAuth test app", null);
+        registerRequest.setJwksUri(clientJwksUri);
+        registerRequest.setGrantTypes(Arrays.asList(GrantType.CIBA));
+
+        registerRequest.setTokenEndpointAuthMethod(AuthenticationMethod.PRIVATE_KEY_JWT);
+        registerRequest.setTokenEndpointAuthSigningAlg(SignatureAlgorithm.PS256);
+        registerRequest.setBackchannelTokenDeliveryMode(BackchannelTokenDeliveryMode.POLL);
+        registerRequest.setBackchannelAuthenticationRequestSigningAlg(AsymmetricSignatureAlgorithm.PS256);
+        registerRequest.setBackchannelUserCodeParameter(true);
+
+        RegisterClient registerClient = new RegisterClient(registrationEndpoint);
+        registerClient.setRequest(registerRequest);
+        RegisterResponse registerResponse = registerClient.exec();
+
+        showClient(registerClient);
+        assertEquals(registerResponse.getStatus(), 200, "Unexpected response code: " + registerResponse.getEntity());
+        assertNotNull(registerResponse.getClientId());
+        assertNotNull(registerResponse.getClientSecret());
+        assertNotNull(registerResponse.getRegistrationAccessToken());
+        assertNotNull(registerResponse.getClientSecretExpiresAt());
+
+        assertTrue(registerResponse.getClaims().containsKey(BACKCHANNEL_TOKEN_DELIVERY_MODE.toString()));
+        assertTrue(registerResponse.getClaims().containsKey(BACKCHANNEL_AUTHENTICATION_REQUEST_SIGNING_ALG.toString()));
+        assertTrue(registerResponse.getClaims().containsKey(BACKCHANNEL_USER_CODE_PARAMETER.toString()));
+        assertEquals(registerResponse.getClaims().get(BACKCHANNEL_TOKEN_DELIVERY_MODE.toString()), BackchannelTokenDeliveryMode.POLL.getValue());
+        assertEquals(registerResponse.getClaims().get(BACKCHANNEL_AUTHENTICATION_REQUEST_SIGNING_ALG.toString()), AsymmetricSignatureAlgorithm.PS256.getValue());
+        assertEquals(registerResponse.getClaims().get(BACKCHANNEL_USER_CODE_PARAMETER.toString()), new Boolean(true).toString());
+
+        String clientId = registerResponse.getClientId();
+
+        // 2. Authentication Request
+        OxAuthCryptoProvider cryptoProvider = new OxAuthCryptoProvider(keyStoreFile, keyStoreSecret, dnName);
+        String clientNotificationToken = UUID.randomUUID().toString();
+
+        BackchannelAuthenticationRequest backchannelAuthenticationRequest = new BackchannelAuthenticationRequest();
+        backchannelAuthenticationRequest.setScope(Arrays.asList("openid"));
+        backchannelAuthenticationRequest.setIdTokenHint(idTokenHintPS256);
+        backchannelAuthenticationRequest.setClientNotificationToken(clientNotificationToken);
+        backchannelAuthenticationRequest.setUserCode(backchannelUserCode);
+        backchannelAuthenticationRequest.setRequestedExpiry(1200);
+        backchannelAuthenticationRequest.setAuthenticationMethod(AuthenticationMethod.PRIVATE_KEY_JWT);
+        backchannelAuthenticationRequest.setAlgorithm(SignatureAlgorithm.PS256);
+        backchannelAuthenticationRequest.setCryptoProvider(cryptoProvider);
+        backchannelAuthenticationRequest.setKeyId(keyId);
+        backchannelAuthenticationRequest.setAudience(tokenEndpoint);
+        backchannelAuthenticationRequest.setAuthUsername(clientId);
+
+        BackchannelAuthenticationClient backchannelAuthenticationClient = new BackchannelAuthenticationClient(backchannelAuthenticationEndpoint);
+        backchannelAuthenticationClient.setRequest(backchannelAuthenticationRequest);
+        BackchannelAuthenticationResponse backchannelAuthenticationResponse = backchannelAuthenticationClient.exec();
+
+        showClient(backchannelAuthenticationClient);
+        assertEquals(backchannelAuthenticationResponse.getStatus(), 200, "Unexpected response code: " + backchannelAuthenticationResponse.getEntity());
+        assertNotNull(backchannelAuthenticationResponse.getAuthReqId());
+        assertNotNull(backchannelAuthenticationResponse.getExpiresIn());
+        assertNotNull(backchannelAuthenticationResponse.getInterval()); // This parameter will only be present if the Client is registered to use the Poll or Ping modes.
+    }
+
+    @Parameters({"clientJwksUri", "backchannelUserCode",
+            "PS384_keyId", "dnName", "keyStoreFile", "keyStoreSecret"})
+    @Test(dependsOnMethods = "idTokenHintPS384")
+    public void backchannelTokenDeliveryModePollIdTokenHintPS384(
+            final String clientJwksUri, final String backchannelUserCode,
+            final String keyId, final String dnName, final String keyStoreFile, final String keyStoreSecret) throws Exception {
+        showTitle("backchannelTokenDeliveryModePollIdTokenHintPS384");
+
+        // 1. Dynamic Client Registration
+        RegisterRequest registerRequest = new RegisterRequest(ApplicationType.WEB, "oxAuth test app", null);
+        registerRequest.setJwksUri(clientJwksUri);
+        registerRequest.setGrantTypes(Arrays.asList(GrantType.CIBA));
+
+        registerRequest.setTokenEndpointAuthMethod(AuthenticationMethod.PRIVATE_KEY_JWT);
+        registerRequest.setTokenEndpointAuthSigningAlg(SignatureAlgorithm.PS384);
+        registerRequest.setBackchannelTokenDeliveryMode(BackchannelTokenDeliveryMode.POLL);
+        registerRequest.setBackchannelAuthenticationRequestSigningAlg(AsymmetricSignatureAlgorithm.PS384);
+        registerRequest.setBackchannelUserCodeParameter(true);
+
+        RegisterClient registerClient = new RegisterClient(registrationEndpoint);
+        registerClient.setRequest(registerRequest);
+        RegisterResponse registerResponse = registerClient.exec();
+
+        showClient(registerClient);
+        assertEquals(registerResponse.getStatus(), 200, "Unexpected response code: " + registerResponse.getEntity());
+        assertNotNull(registerResponse.getClientId());
+        assertNotNull(registerResponse.getClientSecret());
+        assertNotNull(registerResponse.getRegistrationAccessToken());
+        assertNotNull(registerResponse.getClientSecretExpiresAt());
+
+        assertTrue(registerResponse.getClaims().containsKey(BACKCHANNEL_TOKEN_DELIVERY_MODE.toString()));
+        assertTrue(registerResponse.getClaims().containsKey(BACKCHANNEL_AUTHENTICATION_REQUEST_SIGNING_ALG.toString()));
+        assertTrue(registerResponse.getClaims().containsKey(BACKCHANNEL_USER_CODE_PARAMETER.toString()));
+        assertEquals(registerResponse.getClaims().get(BACKCHANNEL_TOKEN_DELIVERY_MODE.toString()), BackchannelTokenDeliveryMode.POLL.getValue());
+        assertEquals(registerResponse.getClaims().get(BACKCHANNEL_AUTHENTICATION_REQUEST_SIGNING_ALG.toString()), AsymmetricSignatureAlgorithm.PS384.getValue());
+        assertEquals(registerResponse.getClaims().get(BACKCHANNEL_USER_CODE_PARAMETER.toString()), new Boolean(true).toString());
+
+        String clientId = registerResponse.getClientId();
+
+        // 2. Authentication Request
+        OxAuthCryptoProvider cryptoProvider = new OxAuthCryptoProvider(keyStoreFile, keyStoreSecret, dnName);
+        String clientNotificationToken = UUID.randomUUID().toString();
+
+        BackchannelAuthenticationRequest backchannelAuthenticationRequest = new BackchannelAuthenticationRequest();
+        backchannelAuthenticationRequest.setScope(Arrays.asList("openid"));
+        backchannelAuthenticationRequest.setIdTokenHint(idTokenHintPS384);
+        backchannelAuthenticationRequest.setClientNotificationToken(clientNotificationToken);
+        backchannelAuthenticationRequest.setUserCode(backchannelUserCode);
+        backchannelAuthenticationRequest.setRequestedExpiry(1200);
+        backchannelAuthenticationRequest.setAuthenticationMethod(AuthenticationMethod.PRIVATE_KEY_JWT);
+        backchannelAuthenticationRequest.setAlgorithm(SignatureAlgorithm.PS384);
+        backchannelAuthenticationRequest.setCryptoProvider(cryptoProvider);
+        backchannelAuthenticationRequest.setKeyId(keyId);
+        backchannelAuthenticationRequest.setAudience(tokenEndpoint);
+        backchannelAuthenticationRequest.setAuthUsername(clientId);
+
+        BackchannelAuthenticationClient backchannelAuthenticationClient = new BackchannelAuthenticationClient(backchannelAuthenticationEndpoint);
+        backchannelAuthenticationClient.setRequest(backchannelAuthenticationRequest);
+        BackchannelAuthenticationResponse backchannelAuthenticationResponse = backchannelAuthenticationClient.exec();
+
+        showClient(backchannelAuthenticationClient);
+        assertEquals(backchannelAuthenticationResponse.getStatus(), 200, "Unexpected response code: " + backchannelAuthenticationResponse.getEntity());
+        assertNotNull(backchannelAuthenticationResponse.getAuthReqId());
+        assertNotNull(backchannelAuthenticationResponse.getExpiresIn());
+        assertNotNull(backchannelAuthenticationResponse.getInterval()); // This parameter will only be present if the Client is registered to use the Poll or Ping modes.
+    }
+
+    @Parameters({"clientJwksUri", "backchannelUserCode",
+            "PS512_keyId", "dnName", "keyStoreFile", "keyStoreSecret"})
+    @Test(dependsOnMethods = "idTokenHintPS512")
+    public void backchannelTokenDeliveryModePollIdTokenHintPS512(
+            final String clientJwksUri, final String backchannelUserCode,
+            final String keyId, final String dnName, final String keyStoreFile, final String keyStoreSecret) throws Exception {
+        showTitle("backchannelTokenDeliveryModePollIdTokenHintPS512");
+
+        // 1. Dynamic Client Registration
+        RegisterRequest registerRequest = new RegisterRequest(ApplicationType.WEB, "oxAuth test app", null);
+        registerRequest.setJwksUri(clientJwksUri);
+        registerRequest.setGrantTypes(Arrays.asList(GrantType.CIBA));
+
+        registerRequest.setTokenEndpointAuthMethod(AuthenticationMethod.PRIVATE_KEY_JWT);
+        registerRequest.setTokenEndpointAuthSigningAlg(SignatureAlgorithm.PS512);
+        registerRequest.setBackchannelTokenDeliveryMode(BackchannelTokenDeliveryMode.POLL);
+        registerRequest.setBackchannelAuthenticationRequestSigningAlg(AsymmetricSignatureAlgorithm.PS512);
+        registerRequest.setBackchannelUserCodeParameter(true);
+
+        RegisterClient registerClient = new RegisterClient(registrationEndpoint);
+        registerClient.setRequest(registerRequest);
+        RegisterResponse registerResponse = registerClient.exec();
+
+        showClient(registerClient);
+        assertEquals(registerResponse.getStatus(), 200, "Unexpected response code: " + registerResponse.getEntity());
+        assertNotNull(registerResponse.getClientId());
+        assertNotNull(registerResponse.getClientSecret());
+        assertNotNull(registerResponse.getRegistrationAccessToken());
+        assertNotNull(registerResponse.getClientSecretExpiresAt());
+
+        assertTrue(registerResponse.getClaims().containsKey(BACKCHANNEL_TOKEN_DELIVERY_MODE.toString()));
+        assertTrue(registerResponse.getClaims().containsKey(BACKCHANNEL_AUTHENTICATION_REQUEST_SIGNING_ALG.toString()));
+        assertTrue(registerResponse.getClaims().containsKey(BACKCHANNEL_USER_CODE_PARAMETER.toString()));
+        assertEquals(registerResponse.getClaims().get(BACKCHANNEL_TOKEN_DELIVERY_MODE.toString()), BackchannelTokenDeliveryMode.POLL.getValue());
+        assertEquals(registerResponse.getClaims().get(BACKCHANNEL_AUTHENTICATION_REQUEST_SIGNING_ALG.toString()), AsymmetricSignatureAlgorithm.PS512.getValue());
+        assertEquals(registerResponse.getClaims().get(BACKCHANNEL_USER_CODE_PARAMETER.toString()), new Boolean(true).toString());
+
+        String clientId = registerResponse.getClientId();
+
+        // 2. Authentication Request
+        OxAuthCryptoProvider cryptoProvider = new OxAuthCryptoProvider(keyStoreFile, keyStoreSecret, dnName);
+        String clientNotificationToken = UUID.randomUUID().toString();
+
+        BackchannelAuthenticationRequest backchannelAuthenticationRequest = new BackchannelAuthenticationRequest();
+        backchannelAuthenticationRequest.setScope(Arrays.asList("openid"));
+        backchannelAuthenticationRequest.setIdTokenHint(idTokenHintPS512);
+        backchannelAuthenticationRequest.setClientNotificationToken(clientNotificationToken);
+        backchannelAuthenticationRequest.setUserCode(backchannelUserCode);
+        backchannelAuthenticationRequest.setRequestedExpiry(1200);
+        backchannelAuthenticationRequest.setAuthenticationMethod(AuthenticationMethod.PRIVATE_KEY_JWT);
+        backchannelAuthenticationRequest.setAlgorithm(SignatureAlgorithm.PS512);
+        backchannelAuthenticationRequest.setCryptoProvider(cryptoProvider);
+        backchannelAuthenticationRequest.setKeyId(keyId);
+        backchannelAuthenticationRequest.setAudience(tokenEndpoint);
+        backchannelAuthenticationRequest.setAuthUsername(clientId);
+
+        BackchannelAuthenticationClient backchannelAuthenticationClient = new BackchannelAuthenticationClient(backchannelAuthenticationEndpoint);
+        backchannelAuthenticationClient.setRequest(backchannelAuthenticationRequest);
+        BackchannelAuthenticationResponse backchannelAuthenticationResponse = backchannelAuthenticationClient.exec();
+
+        showClient(backchannelAuthenticationClient);
+        assertEquals(backchannelAuthenticationResponse.getStatus(), 200, "Unexpected response code: " + backchannelAuthenticationResponse.getEntity());
+        assertNotNull(backchannelAuthenticationResponse.getAuthReqId());
+        assertNotNull(backchannelAuthenticationResponse.getExpiresIn());
+        assertNotNull(backchannelAuthenticationResponse.getInterval()); // This parameter will only be present if the Client is registered to use the Poll or Ping modes.
+    }
+
+    @Parameters({"clientJwksUri", "backchannelUserCode"})
+    @Test(dependsOnMethods = "idTokenHintAlgA128KWEncA128GCM")
+    public void backchannelTokenDeliveryModePollIdTokenHintAlgA128KWEncA128GCM(
+            final String clientJwksUri, final String backchannelUserCode) {
+        showTitle("backchannelTokenDeliveryModePollIdTokenHintAlgA128KWEncA128GCM");
+
+        // 1. Dynamic Client Registration
+        RegisterRequest registerRequest = new RegisterRequest(ApplicationType.WEB, "oxAuth test app", null);
+        registerRequest.setJwksUri(clientJwksUri);
+        registerRequest.setGrantTypes(Arrays.asList(GrantType.CIBA));
+
+        registerRequest.setBackchannelTokenDeliveryMode(BackchannelTokenDeliveryMode.POLL);
+        registerRequest.setBackchannelAuthenticationRequestSigningAlg(AsymmetricSignatureAlgorithm.RS256);
+        registerRequest.setBackchannelUserCodeParameter(true);
+
+        RegisterClient registerClient = new RegisterClient(registrationEndpoint);
+        registerClient.setRequest(registerRequest);
+        RegisterResponse registerResponse = registerClient.exec();
+
+        showClient(registerClient);
+        assertEquals(registerResponse.getStatus(), 200, "Unexpected response code: " + registerResponse.getEntity());
+        assertNotNull(registerResponse.getClientId());
+        assertNotNull(registerResponse.getClientSecret());
+        assertNotNull(registerResponse.getRegistrationAccessToken());
+        assertNotNull(registerResponse.getClientSecretExpiresAt());
+
+        assertTrue(registerResponse.getClaims().containsKey(BACKCHANNEL_TOKEN_DELIVERY_MODE.toString()));
+        assertTrue(registerResponse.getClaims().containsKey(BACKCHANNEL_AUTHENTICATION_REQUEST_SIGNING_ALG.toString()));
+        assertTrue(registerResponse.getClaims().containsKey(BACKCHANNEL_USER_CODE_PARAMETER.toString()));
+        assertEquals(registerResponse.getClaims().get(BACKCHANNEL_TOKEN_DELIVERY_MODE.toString()), BackchannelTokenDeliveryMode.POLL.getValue());
+        assertEquals(registerResponse.getClaims().get(BACKCHANNEL_AUTHENTICATION_REQUEST_SIGNING_ALG.toString()), AsymmetricSignatureAlgorithm.RS256.getValue());
+        assertEquals(registerResponse.getClaims().get(BACKCHANNEL_USER_CODE_PARAMETER.toString()), new Boolean(true).toString());
+
+        String clientId = registerResponse.getClientId();
+        String clientSecret = registerResponse.getClientSecret();
+
+        // 2. Authentication Request
+        String clientNotificationToken = UUID.randomUUID().toString();
+
+        BackchannelAuthenticationRequest backchannelAuthenticationRequest = new BackchannelAuthenticationRequest();
+        backchannelAuthenticationRequest.setScope(Arrays.asList("openid"));
+        backchannelAuthenticationRequest.setIdTokenHint(idTokenHintAlgA128KWEncA128GCM);
+        backchannelAuthenticationRequest.setClientNotificationToken(clientNotificationToken);
+        backchannelAuthenticationRequest.setUserCode(backchannelUserCode);
+        backchannelAuthenticationRequest.setRequestedExpiry(1200);
+        backchannelAuthenticationRequest.setAuthUsername(clientId);
+        backchannelAuthenticationRequest.setAuthPassword(clientSecret);
+
+        BackchannelAuthenticationClient backchannelAuthenticationClient = new BackchannelAuthenticationClient(backchannelAuthenticationEndpoint);
+        backchannelAuthenticationClient.setRequest(backchannelAuthenticationRequest);
+        BackchannelAuthenticationResponse backchannelAuthenticationResponse = backchannelAuthenticationClient.exec();
+
+        showClient(backchannelAuthenticationClient);
+        assertEquals(backchannelAuthenticationResponse.getStatus(), 200, "Unexpected response code: " + backchannelAuthenticationResponse.getEntity());
+        assertNotNull(backchannelAuthenticationResponse.getAuthReqId());
+        assertNotNull(backchannelAuthenticationResponse.getExpiresIn());
+        assertNotNull(backchannelAuthenticationResponse.getInterval()); // This parameter will only be present if the Client is registered to use the Poll or Ping modes.
+    }
+
+    @Parameters({"clientJwksUri", "backchannelUserCode"})
+    @Test(dependsOnMethods = "idTokenHintAlgA256KWEncA256GCM")
+    public void backchannelTokenDeliveryModePollIdTokenHintAlgA256KWEncA256GCM(
+            final String clientJwksUri, final String backchannelUserCode) {
+        showTitle("backchannelTokenDeliveryModePollIdTokenHintAlgA256KWEncA256GCM");
+
+        // 1. Dynamic Client Registration
+        RegisterRequest registerRequest = new RegisterRequest(ApplicationType.WEB, "oxAuth test app", null);
+        registerRequest.setJwksUri(clientJwksUri);
+        registerRequest.setGrantTypes(Arrays.asList(GrantType.CIBA));
+
+        registerRequest.setBackchannelTokenDeliveryMode(BackchannelTokenDeliveryMode.POLL);
+        registerRequest.setBackchannelAuthenticationRequestSigningAlg(AsymmetricSignatureAlgorithm.RS256);
+        registerRequest.setBackchannelUserCodeParameter(true);
+
+        RegisterClient registerClient = new RegisterClient(registrationEndpoint);
+        registerClient.setRequest(registerRequest);
+        RegisterResponse registerResponse = registerClient.exec();
+
+        showClient(registerClient);
+        assertEquals(registerResponse.getStatus(), 200, "Unexpected response code: " + registerResponse.getEntity());
+        assertNotNull(registerResponse.getClientId());
+        assertNotNull(registerResponse.getClientSecret());
+        assertNotNull(registerResponse.getRegistrationAccessToken());
+        assertNotNull(registerResponse.getClientSecretExpiresAt());
+
+        assertTrue(registerResponse.getClaims().containsKey(BACKCHANNEL_TOKEN_DELIVERY_MODE.toString()));
+        assertTrue(registerResponse.getClaims().containsKey(BACKCHANNEL_AUTHENTICATION_REQUEST_SIGNING_ALG.toString()));
+        assertTrue(registerResponse.getClaims().containsKey(BACKCHANNEL_USER_CODE_PARAMETER.toString()));
+        assertEquals(registerResponse.getClaims().get(BACKCHANNEL_TOKEN_DELIVERY_MODE.toString()), BackchannelTokenDeliveryMode.POLL.getValue());
+        assertEquals(registerResponse.getClaims().get(BACKCHANNEL_AUTHENTICATION_REQUEST_SIGNING_ALG.toString()), AsymmetricSignatureAlgorithm.RS256.getValue());
+        assertEquals(registerResponse.getClaims().get(BACKCHANNEL_USER_CODE_PARAMETER.toString()), new Boolean(true).toString());
+
+        String clientId = registerResponse.getClientId();
+        String clientSecret = registerResponse.getClientSecret();
+
+        // 2. Authentication Request
+        String clientNotificationToken = UUID.randomUUID().toString();
+
+        BackchannelAuthenticationRequest backchannelAuthenticationRequest = new BackchannelAuthenticationRequest();
+        backchannelAuthenticationRequest.setScope(Arrays.asList("openid"));
+        backchannelAuthenticationRequest.setIdTokenHint(idTokenHintAlgA256KWEncA256GCM);
+        backchannelAuthenticationRequest.setClientNotificationToken(clientNotificationToken);
+        backchannelAuthenticationRequest.setUserCode(backchannelUserCode);
+        backchannelAuthenticationRequest.setRequestedExpiry(1200);
+        backchannelAuthenticationRequest.setAuthUsername(clientId);
+        backchannelAuthenticationRequest.setAuthPassword(clientSecret);
+
+        BackchannelAuthenticationClient backchannelAuthenticationClient = new BackchannelAuthenticationClient(backchannelAuthenticationEndpoint);
+        backchannelAuthenticationClient.setRequest(backchannelAuthenticationRequest);
+        BackchannelAuthenticationResponse backchannelAuthenticationResponse = backchannelAuthenticationClient.exec();
+
+        showClient(backchannelAuthenticationClient);
+        assertEquals(backchannelAuthenticationResponse.getStatus(), 200, "Unexpected response code: " + backchannelAuthenticationResponse.getEntity());
+        assertNotNull(backchannelAuthenticationResponse.getAuthReqId());
+        assertNotNull(backchannelAuthenticationResponse.getExpiresIn());
+        assertNotNull(backchannelAuthenticationResponse.getInterval()); // This parameter will only be present if the Client is registered to use the Poll or Ping modes.
+    }
+
+    @Parameters({"clientJwksUri", "backchannelUserCode"})
+    @Test(dependsOnMethods = "idTokenHintAlgRSA15EncA128CBCPLUSHS256")
+    public void backchannelTokenDeliveryModePollIdTokenHintAlgRSA15EncA128CBCPLUSHS256(
+            final String clientJwksUri, final String backchannelUserCode) {
+        showTitle("backchannelTokenDeliveryModePollIdTokenHintAlgRSA15EncA128CBCPLUSHS256");
+
+        // 1. Dynamic Client Registration
+        RegisterRequest registerRequest = new RegisterRequest(ApplicationType.WEB, "oxAuth test app", null);
+        registerRequest.setJwksUri(clientJwksUri);
+        registerRequest.setGrantTypes(Arrays.asList(GrantType.CIBA));
+
+        registerRequest.setBackchannelTokenDeliveryMode(BackchannelTokenDeliveryMode.POLL);
+        registerRequest.setBackchannelAuthenticationRequestSigningAlg(AsymmetricSignatureAlgorithm.RS256);
+        registerRequest.setBackchannelUserCodeParameter(true);
+
+        RegisterClient registerClient = new RegisterClient(registrationEndpoint);
+        registerClient.setRequest(registerRequest);
+        RegisterResponse registerResponse = registerClient.exec();
+
+        showClient(registerClient);
+        assertEquals(registerResponse.getStatus(), 200, "Unexpected response code: " + registerResponse.getEntity());
+        assertNotNull(registerResponse.getClientId());
+        assertNotNull(registerResponse.getClientSecret());
+        assertNotNull(registerResponse.getRegistrationAccessToken());
+        assertNotNull(registerResponse.getClientSecretExpiresAt());
+
+        assertTrue(registerResponse.getClaims().containsKey(BACKCHANNEL_TOKEN_DELIVERY_MODE.toString()));
+        assertTrue(registerResponse.getClaims().containsKey(BACKCHANNEL_AUTHENTICATION_REQUEST_SIGNING_ALG.toString()));
+        assertTrue(registerResponse.getClaims().containsKey(BACKCHANNEL_USER_CODE_PARAMETER.toString()));
+        assertEquals(registerResponse.getClaims().get(BACKCHANNEL_TOKEN_DELIVERY_MODE.toString()), BackchannelTokenDeliveryMode.POLL.getValue());
+        assertEquals(registerResponse.getClaims().get(BACKCHANNEL_AUTHENTICATION_REQUEST_SIGNING_ALG.toString()), AsymmetricSignatureAlgorithm.RS256.getValue());
+        assertEquals(registerResponse.getClaims().get(BACKCHANNEL_USER_CODE_PARAMETER.toString()), new Boolean(true).toString());
+
+        String clientId = registerResponse.getClientId();
+        String clientSecret = registerResponse.getClientSecret();
+
+        // 2. Authentication Request
+        String clientNotificationToken = UUID.randomUUID().toString();
+
+        BackchannelAuthenticationRequest backchannelAuthenticationRequest = new BackchannelAuthenticationRequest();
+        backchannelAuthenticationRequest.setScope(Arrays.asList("openid"));
+        backchannelAuthenticationRequest.setIdTokenHint(idTokenHintAlgRSA15EncA128CBCPLUSHS256);
+        backchannelAuthenticationRequest.setClientNotificationToken(clientNotificationToken);
+        backchannelAuthenticationRequest.setUserCode(backchannelUserCode);
+        backchannelAuthenticationRequest.setRequestedExpiry(1200);
+        backchannelAuthenticationRequest.setAuthUsername(clientId);
+        backchannelAuthenticationRequest.setAuthPassword(clientSecret);
+
+        BackchannelAuthenticationClient backchannelAuthenticationClient = new BackchannelAuthenticationClient(backchannelAuthenticationEndpoint);
+        backchannelAuthenticationClient.setRequest(backchannelAuthenticationRequest);
+        BackchannelAuthenticationResponse backchannelAuthenticationResponse = backchannelAuthenticationClient.exec();
+
+        showClient(backchannelAuthenticationClient);
+        assertEquals(backchannelAuthenticationResponse.getStatus(), 200, "Unexpected response code: " + backchannelAuthenticationResponse.getEntity());
+        assertNotNull(backchannelAuthenticationResponse.getAuthReqId());
+        assertNotNull(backchannelAuthenticationResponse.getExpiresIn());
+        assertNotNull(backchannelAuthenticationResponse.getInterval()); // This parameter will only be present if the Client is registered to use the Poll or Ping modes.
+    }
+
+    @Parameters({"clientJwksUri", "backchannelUserCode"})
+    @Test(dependsOnMethods = "idTokenHintAlgRSA15EncA256CBCPLUSHS512")
+    public void backchannelTokenDeliveryModePollIdTokenHintAlgRSA15EncA256CBCPLUSHS512(
+            final String clientJwksUri, final String backchannelUserCode) {
+        showTitle("backchannelTokenDeliveryModePollIdTokenHintAlgRSA15EncA256CBCPLUSHS512");
+
+        // 1. Dynamic Client Registration
+        RegisterRequest registerRequest = new RegisterRequest(ApplicationType.WEB, "oxAuth test app", null);
+        registerRequest.setJwksUri(clientJwksUri);
+        registerRequest.setGrantTypes(Arrays.asList(GrantType.CIBA));
+
+        registerRequest.setBackchannelTokenDeliveryMode(BackchannelTokenDeliveryMode.POLL);
+        registerRequest.setBackchannelAuthenticationRequestSigningAlg(AsymmetricSignatureAlgorithm.RS256);
+        registerRequest.setBackchannelUserCodeParameter(true);
+
+        RegisterClient registerClient = new RegisterClient(registrationEndpoint);
+        registerClient.setRequest(registerRequest);
+        RegisterResponse registerResponse = registerClient.exec();
+
+        showClient(registerClient);
+        assertEquals(registerResponse.getStatus(), 200, "Unexpected response code: " + registerResponse.getEntity());
+        assertNotNull(registerResponse.getClientId());
+        assertNotNull(registerResponse.getClientSecret());
+        assertNotNull(registerResponse.getRegistrationAccessToken());
+        assertNotNull(registerResponse.getClientSecretExpiresAt());
+
+        assertTrue(registerResponse.getClaims().containsKey(BACKCHANNEL_TOKEN_DELIVERY_MODE.toString()));
+        assertTrue(registerResponse.getClaims().containsKey(BACKCHANNEL_AUTHENTICATION_REQUEST_SIGNING_ALG.toString()));
+        assertTrue(registerResponse.getClaims().containsKey(BACKCHANNEL_USER_CODE_PARAMETER.toString()));
+        assertEquals(registerResponse.getClaims().get(BACKCHANNEL_TOKEN_DELIVERY_MODE.toString()), BackchannelTokenDeliveryMode.POLL.getValue());
+        assertEquals(registerResponse.getClaims().get(BACKCHANNEL_AUTHENTICATION_REQUEST_SIGNING_ALG.toString()), AsymmetricSignatureAlgorithm.RS256.getValue());
+        assertEquals(registerResponse.getClaims().get(BACKCHANNEL_USER_CODE_PARAMETER.toString()), new Boolean(true).toString());
+
+        String clientId = registerResponse.getClientId();
+        String clientSecret = registerResponse.getClientSecret();
+
+        // 2. Authentication Request
+        String clientNotificationToken = UUID.randomUUID().toString();
+
+        BackchannelAuthenticationRequest backchannelAuthenticationRequest = new BackchannelAuthenticationRequest();
+        backchannelAuthenticationRequest.setScope(Arrays.asList("openid"));
+        backchannelAuthenticationRequest.setIdTokenHint(idTokenHintAlgRSA15EncA256CBCPLUSHS512);
+        backchannelAuthenticationRequest.setClientNotificationToken(clientNotificationToken);
+        backchannelAuthenticationRequest.setUserCode(backchannelUserCode);
+        backchannelAuthenticationRequest.setRequestedExpiry(1200);
+        backchannelAuthenticationRequest.setAuthUsername(clientId);
+        backchannelAuthenticationRequest.setAuthPassword(clientSecret);
+
+        BackchannelAuthenticationClient backchannelAuthenticationClient = new BackchannelAuthenticationClient(backchannelAuthenticationEndpoint);
+        backchannelAuthenticationClient.setRequest(backchannelAuthenticationRequest);
+        BackchannelAuthenticationResponse backchannelAuthenticationResponse = backchannelAuthenticationClient.exec();
+
+        showClient(backchannelAuthenticationClient);
+        assertEquals(backchannelAuthenticationResponse.getStatus(), 200, "Unexpected response code: " + backchannelAuthenticationResponse.getEntity());
+        assertNotNull(backchannelAuthenticationResponse.getAuthReqId());
+        assertNotNull(backchannelAuthenticationResponse.getExpiresIn());
+        assertNotNull(backchannelAuthenticationResponse.getInterval()); // This parameter will only be present if the Client is registered to use the Poll or Ping modes.
+    }
+
+    @Parameters({"clientJwksUri", "backchannelUserCode"})
+    @Test(dependsOnMethods = "idTokenHintAlgRSAOAEPEncA256GCM")
+    public void backchannelTokenDeliveryModePollIdTokenHintAlgRSAOAEPEncA256GCM(
+            final String clientJwksUri, final String backchannelUserCode) {
+        showTitle("backchannelTokenDeliveryModePollIdTokenHintAlgRSAOAEPEncA256GCM");
+
+        // 1. Dynamic Client Registration
+        RegisterRequest registerRequest = new RegisterRequest(ApplicationType.WEB, "oxAuth test app", null);
+        registerRequest.setJwksUri(clientJwksUri);
+        registerRequest.setGrantTypes(Arrays.asList(GrantType.CIBA));
+
+        registerRequest.setBackchannelTokenDeliveryMode(BackchannelTokenDeliveryMode.POLL);
+        registerRequest.setBackchannelAuthenticationRequestSigningAlg(AsymmetricSignatureAlgorithm.RS256);
+        registerRequest.setBackchannelUserCodeParameter(true);
+
+        RegisterClient registerClient = new RegisterClient(registrationEndpoint);
+        registerClient.setRequest(registerRequest);
+        RegisterResponse registerResponse = registerClient.exec();
+
+        showClient(registerClient);
+        assertEquals(registerResponse.getStatus(), 200, "Unexpected response code: " + registerResponse.getEntity());
+        assertNotNull(registerResponse.getClientId());
+        assertNotNull(registerResponse.getClientSecret());
+        assertNotNull(registerResponse.getRegistrationAccessToken());
+        assertNotNull(registerResponse.getClientSecretExpiresAt());
+
+        assertTrue(registerResponse.getClaims().containsKey(BACKCHANNEL_TOKEN_DELIVERY_MODE.toString()));
+        assertTrue(registerResponse.getClaims().containsKey(BACKCHANNEL_AUTHENTICATION_REQUEST_SIGNING_ALG.toString()));
+        assertTrue(registerResponse.getClaims().containsKey(BACKCHANNEL_USER_CODE_PARAMETER.toString()));
+        assertEquals(registerResponse.getClaims().get(BACKCHANNEL_TOKEN_DELIVERY_MODE.toString()), BackchannelTokenDeliveryMode.POLL.getValue());
+        assertEquals(registerResponse.getClaims().get(BACKCHANNEL_AUTHENTICATION_REQUEST_SIGNING_ALG.toString()), AsymmetricSignatureAlgorithm.RS256.getValue());
+        assertEquals(registerResponse.getClaims().get(BACKCHANNEL_USER_CODE_PARAMETER.toString()), new Boolean(true).toString());
+
+        String clientId = registerResponse.getClientId();
+        String clientSecret = registerResponse.getClientSecret();
+
+        // 2. Authentication Request
+        String clientNotificationToken = UUID.randomUUID().toString();
+
+        BackchannelAuthenticationRequest backchannelAuthenticationRequest = new BackchannelAuthenticationRequest();
+        backchannelAuthenticationRequest.setScope(Arrays.asList("openid"));
+        backchannelAuthenticationRequest.setIdTokenHint(idTokenHintAlgRSAOAEPEncA256GCM);
+        backchannelAuthenticationRequest.setClientNotificationToken(clientNotificationToken);
+        backchannelAuthenticationRequest.setUserCode(backchannelUserCode);
+        backchannelAuthenticationRequest.setRequestedExpiry(1200);
+        backchannelAuthenticationRequest.setAuthUsername(clientId);
+        backchannelAuthenticationRequest.setAuthPassword(clientSecret);
+
+        BackchannelAuthenticationClient backchannelAuthenticationClient = new BackchannelAuthenticationClient(backchannelAuthenticationEndpoint);
+        backchannelAuthenticationClient.setRequest(backchannelAuthenticationRequest);
+        BackchannelAuthenticationResponse backchannelAuthenticationResponse = backchannelAuthenticationClient.exec();
+
+        showClient(backchannelAuthenticationClient);
+        assertEquals(backchannelAuthenticationResponse.getStatus(), 200, "Unexpected response code: " + backchannelAuthenticationResponse.getEntity());
+        assertNotNull(backchannelAuthenticationResponse.getAuthReqId());
+        assertNotNull(backchannelAuthenticationResponse.getExpiresIn());
+        assertNotNull(backchannelAuthenticationResponse.getInterval()); // This parameter will only be present if the Client is registered to use the Poll or Ping modes.
+    }
+
+    @Parameters({"clientJwksUri", "backchannelUserCode"})
+    @Test(dependsOnMethods = "loginHintTokenRS256")
+    public void backchannelTokenDeliveryModePollLoginHintTokenRS256(
+            final String clientJwksUri, final String backchannelUserCode) {
+        showTitle("backchannelTokenDeliveryModePollLoginHintTokenRS256");
+
+        // 1. Dynamic Client Registration
+        RegisterRequest registerRequest = new RegisterRequest(ApplicationType.WEB, "oxAuth test app", null);
+        registerRequest.setJwksUri(clientJwksUri);
+        registerRequest.setGrantTypes(Arrays.asList(GrantType.CIBA));
+
+        registerRequest.setBackchannelTokenDeliveryMode(BackchannelTokenDeliveryMode.POLL);
+        registerRequest.setBackchannelAuthenticationRequestSigningAlg(AsymmetricSignatureAlgorithm.RS256);
+        registerRequest.setBackchannelUserCodeParameter(true);
+
+        RegisterClient registerClient = new RegisterClient(registrationEndpoint);
+        registerClient.setRequest(registerRequest);
+        RegisterResponse registerResponse = registerClient.exec();
+
+        showClient(registerClient);
+        assertEquals(registerResponse.getStatus(), 200, "Unexpected response code: " + registerResponse.getEntity());
+        assertNotNull(registerResponse.getClientId());
+        assertNotNull(registerResponse.getClientSecret());
+        assertNotNull(registerResponse.getRegistrationAccessToken());
+        assertNotNull(registerResponse.getClientSecretExpiresAt());
+
+        assertTrue(registerResponse.getClaims().containsKey(BACKCHANNEL_TOKEN_DELIVERY_MODE.toString()));
+        assertTrue(registerResponse.getClaims().containsKey(BACKCHANNEL_AUTHENTICATION_REQUEST_SIGNING_ALG.toString()));
+        assertTrue(registerResponse.getClaims().containsKey(BACKCHANNEL_USER_CODE_PARAMETER.toString()));
+        assertEquals(registerResponse.getClaims().get(BACKCHANNEL_TOKEN_DELIVERY_MODE.toString()), BackchannelTokenDeliveryMode.POLL.getValue());
+        assertEquals(registerResponse.getClaims().get(BACKCHANNEL_AUTHENTICATION_REQUEST_SIGNING_ALG.toString()), AsymmetricSignatureAlgorithm.RS256.getValue());
+        assertEquals(registerResponse.getClaims().get(BACKCHANNEL_USER_CODE_PARAMETER.toString()), new Boolean(true).toString());
+
+        String clientId = registerResponse.getClientId();
+        String clientSecret = registerResponse.getClientSecret();
+
+        // 2. Authentication Request
+        String clientNotificationToken = UUID.randomUUID().toString();
+
+        BackchannelAuthenticationRequest backchannelAuthenticationRequest = new BackchannelAuthenticationRequest();
+        backchannelAuthenticationRequest.setScope(Arrays.asList("openid"));
+        backchannelAuthenticationRequest.setLoginHintToken(loginHintTokenRS256);
+        backchannelAuthenticationRequest.setClientNotificationToken(clientNotificationToken);
+        backchannelAuthenticationRequest.setUserCode(backchannelUserCode);
+        backchannelAuthenticationRequest.setRequestedExpiry(1200);
+        backchannelAuthenticationRequest.setAuthUsername(clientId);
+        backchannelAuthenticationRequest.setAuthPassword(clientSecret);
+
+        BackchannelAuthenticationClient backchannelAuthenticationClient = new BackchannelAuthenticationClient(backchannelAuthenticationEndpoint);
+        backchannelAuthenticationClient.setRequest(backchannelAuthenticationRequest);
+        BackchannelAuthenticationResponse backchannelAuthenticationResponse = backchannelAuthenticationClient.exec();
+
+        showClient(backchannelAuthenticationClient);
+        assertEquals(backchannelAuthenticationResponse.getStatus(), 200, "Unexpected response code: " + backchannelAuthenticationResponse.getEntity());
+        assertNotNull(backchannelAuthenticationResponse.getAuthReqId());
+        assertNotNull(backchannelAuthenticationResponse.getExpiresIn());
+        assertNotNull(backchannelAuthenticationResponse.getInterval()); // This parameter will only be present if the Client is registered to use the Poll or Ping modes.
+    }
+
+    @Parameters({"clientJwksUri", "backchannelUserCode"})
+    @Test(dependsOnMethods = "loginHintTokenRS384")
+    public void backchannelTokenDeliveryModePollLoginHintTokenRS384(
+            final String clientJwksUri, final String backchannelUserCode) {
+        showTitle("backchannelTokenDeliveryModePollLoginHintTokenRS384");
+
+        // 1. Dynamic Client Registration
+        RegisterRequest registerRequest = new RegisterRequest(ApplicationType.WEB, "oxAuth test app", null);
+        registerRequest.setJwksUri(clientJwksUri);
+        registerRequest.setGrantTypes(Arrays.asList(GrantType.CIBA));
+
+        registerRequest.setBackchannelTokenDeliveryMode(BackchannelTokenDeliveryMode.POLL);
+        registerRequest.setBackchannelAuthenticationRequestSigningAlg(AsymmetricSignatureAlgorithm.RS384);
+        registerRequest.setBackchannelUserCodeParameter(true);
+
+        RegisterClient registerClient = new RegisterClient(registrationEndpoint);
+        registerClient.setRequest(registerRequest);
+        RegisterResponse registerResponse = registerClient.exec();
+
+        showClient(registerClient);
+        assertEquals(registerResponse.getStatus(), 200, "Unexpected response code: " + registerResponse.getEntity());
+        assertNotNull(registerResponse.getClientId());
+        assertNotNull(registerResponse.getClientSecret());
+        assertNotNull(registerResponse.getRegistrationAccessToken());
+        assertNotNull(registerResponse.getClientSecretExpiresAt());
+
+        assertTrue(registerResponse.getClaims().containsKey(BACKCHANNEL_TOKEN_DELIVERY_MODE.toString()));
+        assertTrue(registerResponse.getClaims().containsKey(BACKCHANNEL_AUTHENTICATION_REQUEST_SIGNING_ALG.toString()));
+        assertTrue(registerResponse.getClaims().containsKey(BACKCHANNEL_USER_CODE_PARAMETER.toString()));
+        assertEquals(registerResponse.getClaims().get(BACKCHANNEL_TOKEN_DELIVERY_MODE.toString()), BackchannelTokenDeliveryMode.POLL.getValue());
+        assertEquals(registerResponse.getClaims().get(BACKCHANNEL_AUTHENTICATION_REQUEST_SIGNING_ALG.toString()), AsymmetricSignatureAlgorithm.RS384.getValue());
+        assertEquals(registerResponse.getClaims().get(BACKCHANNEL_USER_CODE_PARAMETER.toString()), new Boolean(true).toString());
+
+        String clientId = registerResponse.getClientId();
+        String clientSecret = registerResponse.getClientSecret();
+
+        // 2. Authentication Request
+        String clientNotificationToken = UUID.randomUUID().toString();
+
+        BackchannelAuthenticationRequest backchannelAuthenticationRequest = new BackchannelAuthenticationRequest();
+        backchannelAuthenticationRequest.setScope(Arrays.asList("openid"));
+        backchannelAuthenticationRequest.setLoginHintToken(loginHintTokenRS384);
+        backchannelAuthenticationRequest.setClientNotificationToken(clientNotificationToken);
+        backchannelAuthenticationRequest.setUserCode(backchannelUserCode);
+        backchannelAuthenticationRequest.setRequestedExpiry(1200);
+        backchannelAuthenticationRequest.setAuthUsername(clientId);
+        backchannelAuthenticationRequest.setAuthPassword(clientSecret);
+
+        BackchannelAuthenticationClient backchannelAuthenticationClient = new BackchannelAuthenticationClient(backchannelAuthenticationEndpoint);
+        backchannelAuthenticationClient.setRequest(backchannelAuthenticationRequest);
+        BackchannelAuthenticationResponse backchannelAuthenticationResponse = backchannelAuthenticationClient.exec();
+
+        showClient(backchannelAuthenticationClient);
+        assertEquals(backchannelAuthenticationResponse.getStatus(), 200, "Unexpected response code: " + backchannelAuthenticationResponse.getEntity());
+        assertNotNull(backchannelAuthenticationResponse.getAuthReqId());
+        assertNotNull(backchannelAuthenticationResponse.getExpiresIn());
+        assertNotNull(backchannelAuthenticationResponse.getInterval()); // This parameter will only be present if the Client is registered to use the Poll or Ping modes.
+    }
+
+    @Parameters({"clientJwksUri", "backchannelUserCode"})
+    @Test(dependsOnMethods = "loginHintTokenRS512")
+    public void backchannelTokenDeliveryModePollLoginHintTokenRS512(
+            final String clientJwksUri, final String backchannelUserCode) {
+        showTitle("backchannelTokenDeliveryModePollLoginHintTokenRS512");
+
+        // 1. Dynamic Client Registration
+        RegisterRequest registerRequest = new RegisterRequest(ApplicationType.WEB, "oxAuth test app", null);
+        registerRequest.setJwksUri(clientJwksUri);
+        registerRequest.setGrantTypes(Arrays.asList(GrantType.CIBA));
+
+        registerRequest.setBackchannelTokenDeliveryMode(BackchannelTokenDeliveryMode.POLL);
+        registerRequest.setBackchannelAuthenticationRequestSigningAlg(AsymmetricSignatureAlgorithm.RS512);
+        registerRequest.setBackchannelUserCodeParameter(true);
+
+        RegisterClient registerClient = new RegisterClient(registrationEndpoint);
+        registerClient.setRequest(registerRequest);
+        RegisterResponse registerResponse = registerClient.exec();
+
+        showClient(registerClient);
+        assertEquals(registerResponse.getStatus(), 200, "Unexpected response code: " + registerResponse.getEntity());
+        assertNotNull(registerResponse.getClientId());
+        assertNotNull(registerResponse.getClientSecret());
+        assertNotNull(registerResponse.getRegistrationAccessToken());
+        assertNotNull(registerResponse.getClientSecretExpiresAt());
+
+        assertTrue(registerResponse.getClaims().containsKey(BACKCHANNEL_TOKEN_DELIVERY_MODE.toString()));
+        assertTrue(registerResponse.getClaims().containsKey(BACKCHANNEL_AUTHENTICATION_REQUEST_SIGNING_ALG.toString()));
+        assertTrue(registerResponse.getClaims().containsKey(BACKCHANNEL_USER_CODE_PARAMETER.toString()));
+        assertEquals(registerResponse.getClaims().get(BACKCHANNEL_TOKEN_DELIVERY_MODE.toString()), BackchannelTokenDeliveryMode.POLL.getValue());
+        assertEquals(registerResponse.getClaims().get(BACKCHANNEL_AUTHENTICATION_REQUEST_SIGNING_ALG.toString()), AsymmetricSignatureAlgorithm.RS512.getValue());
+        assertEquals(registerResponse.getClaims().get(BACKCHANNEL_USER_CODE_PARAMETER.toString()), new Boolean(true).toString());
+
+        String clientId = registerResponse.getClientId();
+        String clientSecret = registerResponse.getClientSecret();
+
+        // 2. Authentication Request
+        String clientNotificationToken = UUID.randomUUID().toString();
+
+        BackchannelAuthenticationRequest backchannelAuthenticationRequest = new BackchannelAuthenticationRequest();
+        backchannelAuthenticationRequest.setScope(Arrays.asList("openid"));
+        backchannelAuthenticationRequest.setLoginHintToken(loginHintTokenRS512);
+        backchannelAuthenticationRequest.setClientNotificationToken(clientNotificationToken);
+        backchannelAuthenticationRequest.setUserCode(backchannelUserCode);
+        backchannelAuthenticationRequest.setRequestedExpiry(1200);
+        backchannelAuthenticationRequest.setAuthUsername(clientId);
+        backchannelAuthenticationRequest.setAuthPassword(clientSecret);
+
+        BackchannelAuthenticationClient backchannelAuthenticationClient = new BackchannelAuthenticationClient(backchannelAuthenticationEndpoint);
+        backchannelAuthenticationClient.setRequest(backchannelAuthenticationRequest);
+        BackchannelAuthenticationResponse backchannelAuthenticationResponse = backchannelAuthenticationClient.exec();
+
+        showClient(backchannelAuthenticationClient);
+        assertEquals(backchannelAuthenticationResponse.getStatus(), 200, "Unexpected response code: " + backchannelAuthenticationResponse.getEntity());
+        assertNotNull(backchannelAuthenticationResponse.getAuthReqId());
+        assertNotNull(backchannelAuthenticationResponse.getExpiresIn());
+        assertNotNull(backchannelAuthenticationResponse.getInterval()); // This parameter will only be present if the Client is registered to use the Poll or Ping modes.
+    }
+
+    @Parameters({"clientJwksUri", "backchannelUserCode"})
+    @Test(dependsOnMethods = "loginHintTokenES256")
+    public void backchannelTokenDeliveryModePollLoginHintTokenES256(
+            final String clientJwksUri, final String backchannelUserCode) {
+        showTitle("backchannelTokenDeliveryModePollLoginHintTokenES256");
+
+        // 1. Dynamic Client Registration
+        RegisterRequest registerRequest = new RegisterRequest(ApplicationType.WEB, "oxAuth test app", null);
+        registerRequest.setJwksUri(clientJwksUri);
+        registerRequest.setGrantTypes(Arrays.asList(GrantType.CIBA));
+
+        registerRequest.setBackchannelTokenDeliveryMode(BackchannelTokenDeliveryMode.POLL);
+        registerRequest.setBackchannelAuthenticationRequestSigningAlg(AsymmetricSignatureAlgorithm.ES256);
+        registerRequest.setBackchannelUserCodeParameter(true);
+
+        RegisterClient registerClient = new RegisterClient(registrationEndpoint);
+        registerClient.setRequest(registerRequest);
+        RegisterResponse registerResponse = registerClient.exec();
+
+        showClient(registerClient);
+        assertEquals(registerResponse.getStatus(), 200, "Unexpected response code: " + registerResponse.getEntity());
+        assertNotNull(registerResponse.getClientId());
+        assertNotNull(registerResponse.getClientSecret());
+        assertNotNull(registerResponse.getRegistrationAccessToken());
+        assertNotNull(registerResponse.getClientSecretExpiresAt());
+
+        assertTrue(registerResponse.getClaims().containsKey(BACKCHANNEL_TOKEN_DELIVERY_MODE.toString()));
+        assertTrue(registerResponse.getClaims().containsKey(BACKCHANNEL_AUTHENTICATION_REQUEST_SIGNING_ALG.toString()));
+        assertTrue(registerResponse.getClaims().containsKey(BACKCHANNEL_USER_CODE_PARAMETER.toString()));
+        assertEquals(registerResponse.getClaims().get(BACKCHANNEL_TOKEN_DELIVERY_MODE.toString()), BackchannelTokenDeliveryMode.POLL.getValue());
+        assertEquals(registerResponse.getClaims().get(BACKCHANNEL_AUTHENTICATION_REQUEST_SIGNING_ALG.toString()), AsymmetricSignatureAlgorithm.ES256.getValue());
+        assertEquals(registerResponse.getClaims().get(BACKCHANNEL_USER_CODE_PARAMETER.toString()), new Boolean(true).toString());
+
+        String clientId = registerResponse.getClientId();
+        String clientSecret = registerResponse.getClientSecret();
+
+        // 2. Authentication Request
+        String clientNotificationToken = UUID.randomUUID().toString();
+
+        BackchannelAuthenticationRequest backchannelAuthenticationRequest = new BackchannelAuthenticationRequest();
+        backchannelAuthenticationRequest.setScope(Arrays.asList("openid"));
+        backchannelAuthenticationRequest.setLoginHintToken(loginHintTokenES256);
+        backchannelAuthenticationRequest.setClientNotificationToken(clientNotificationToken);
+        backchannelAuthenticationRequest.setUserCode(backchannelUserCode);
+        backchannelAuthenticationRequest.setRequestedExpiry(1200);
+        backchannelAuthenticationRequest.setAuthUsername(clientId);
+        backchannelAuthenticationRequest.setAuthPassword(clientSecret);
+
+        BackchannelAuthenticationClient backchannelAuthenticationClient = new BackchannelAuthenticationClient(backchannelAuthenticationEndpoint);
+        backchannelAuthenticationClient.setRequest(backchannelAuthenticationRequest);
+        BackchannelAuthenticationResponse backchannelAuthenticationResponse = backchannelAuthenticationClient.exec();
+
+        showClient(backchannelAuthenticationClient);
+        assertEquals(backchannelAuthenticationResponse.getStatus(), 200, "Unexpected response code: " + backchannelAuthenticationResponse.getEntity());
+        assertNotNull(backchannelAuthenticationResponse.getAuthReqId());
+        assertNotNull(backchannelAuthenticationResponse.getExpiresIn());
+        assertNotNull(backchannelAuthenticationResponse.getInterval()); // This parameter will only be present if the Client is registered to use the Poll or Ping modes.
+    }
+
+    @Parameters({"clientJwksUri", "backchannelUserCode"})
+    @Test(dependsOnMethods = "loginHintTokenES384")
+    public void backchannelTokenDeliveryModePollLoginHintTokenES384(
+            final String clientJwksUri, final String backchannelUserCode) {
+        showTitle("backchannelTokenDeliveryModePollLoginHintTokenES384");
+
+        // 1. Dynamic Client Registration
+        RegisterRequest registerRequest = new RegisterRequest(ApplicationType.WEB, "oxAuth test app", null);
+        registerRequest.setJwksUri(clientJwksUri);
+        registerRequest.setGrantTypes(Arrays.asList(GrantType.CIBA));
+
+        registerRequest.setBackchannelTokenDeliveryMode(BackchannelTokenDeliveryMode.POLL);
+        registerRequest.setBackchannelAuthenticationRequestSigningAlg(AsymmetricSignatureAlgorithm.ES384);
+        registerRequest.setBackchannelUserCodeParameter(true);
+
+        RegisterClient registerClient = new RegisterClient(registrationEndpoint);
+        registerClient.setRequest(registerRequest);
+        RegisterResponse registerResponse = registerClient.exec();
+
+        showClient(registerClient);
+        assertEquals(registerResponse.getStatus(), 200, "Unexpected response code: " + registerResponse.getEntity());
+        assertNotNull(registerResponse.getClientId());
+        assertNotNull(registerResponse.getClientSecret());
+        assertNotNull(registerResponse.getRegistrationAccessToken());
+        assertNotNull(registerResponse.getClientSecretExpiresAt());
+
+        assertTrue(registerResponse.getClaims().containsKey(BACKCHANNEL_TOKEN_DELIVERY_MODE.toString()));
+        assertTrue(registerResponse.getClaims().containsKey(BACKCHANNEL_AUTHENTICATION_REQUEST_SIGNING_ALG.toString()));
+        assertTrue(registerResponse.getClaims().containsKey(BACKCHANNEL_USER_CODE_PARAMETER.toString()));
+        assertEquals(registerResponse.getClaims().get(BACKCHANNEL_TOKEN_DELIVERY_MODE.toString()), BackchannelTokenDeliveryMode.POLL.getValue());
+        assertEquals(registerResponse.getClaims().get(BACKCHANNEL_AUTHENTICATION_REQUEST_SIGNING_ALG.toString()), AsymmetricSignatureAlgorithm.ES384.getValue());
+        assertEquals(registerResponse.getClaims().get(BACKCHANNEL_USER_CODE_PARAMETER.toString()), new Boolean(true).toString());
+
+        String clientId = registerResponse.getClientId();
+        String clientSecret = registerResponse.getClientSecret();
+
+        // 2. Authentication Request
+        String clientNotificationToken = UUID.randomUUID().toString();
+
+        BackchannelAuthenticationRequest backchannelAuthenticationRequest = new BackchannelAuthenticationRequest();
+        backchannelAuthenticationRequest.setScope(Arrays.asList("openid"));
+        backchannelAuthenticationRequest.setLoginHintToken(loginHintTokenES384);
+        backchannelAuthenticationRequest.setClientNotificationToken(clientNotificationToken);
+        backchannelAuthenticationRequest.setUserCode(backchannelUserCode);
+        backchannelAuthenticationRequest.setRequestedExpiry(1200);
+        backchannelAuthenticationRequest.setAuthUsername(clientId);
+        backchannelAuthenticationRequest.setAuthPassword(clientSecret);
+
+        BackchannelAuthenticationClient backchannelAuthenticationClient = new BackchannelAuthenticationClient(backchannelAuthenticationEndpoint);
+        backchannelAuthenticationClient.setRequest(backchannelAuthenticationRequest);
+        BackchannelAuthenticationResponse backchannelAuthenticationResponse = backchannelAuthenticationClient.exec();
+
+        showClient(backchannelAuthenticationClient);
+        assertEquals(backchannelAuthenticationResponse.getStatus(), 200, "Unexpected response code: " + backchannelAuthenticationResponse.getEntity());
+        assertNotNull(backchannelAuthenticationResponse.getAuthReqId());
+        assertNotNull(backchannelAuthenticationResponse.getExpiresIn());
+        assertNotNull(backchannelAuthenticationResponse.getInterval()); // This parameter will only be present if the Client is registered to use the Poll or Ping modes.
+    }
+
+    @Parameters({"clientJwksUri", "backchannelUserCode"})
+    @Test(dependsOnMethods = "loginHintTokenES512")
+    public void backchannelTokenDeliveryModePollLoginHintTokenES512(
+            final String clientJwksUri, final String backchannelUserCode) {
+        showTitle("backchannelTokenDeliveryModePollLoginHintTokenES512");
+
+        // 1. Dynamic Client Registration
+        RegisterRequest registerRequest = new RegisterRequest(ApplicationType.WEB, "oxAuth test app", null);
+        registerRequest.setJwksUri(clientJwksUri);
+        registerRequest.setGrantTypes(Arrays.asList(GrantType.CIBA));
+
+        registerRequest.setBackchannelTokenDeliveryMode(BackchannelTokenDeliveryMode.POLL);
+        registerRequest.setBackchannelAuthenticationRequestSigningAlg(AsymmetricSignatureAlgorithm.ES512);
+        registerRequest.setBackchannelUserCodeParameter(true);
+
+        RegisterClient registerClient = new RegisterClient(registrationEndpoint);
+        registerClient.setRequest(registerRequest);
+        RegisterResponse registerResponse = registerClient.exec();
+
+        showClient(registerClient);
+        assertEquals(registerResponse.getStatus(), 200, "Unexpected response code: " + registerResponse.getEntity());
+        assertNotNull(registerResponse.getClientId());
+        assertNotNull(registerResponse.getClientSecret());
+        assertNotNull(registerResponse.getRegistrationAccessToken());
+        assertNotNull(registerResponse.getClientSecretExpiresAt());
+
+        assertTrue(registerResponse.getClaims().containsKey(BACKCHANNEL_TOKEN_DELIVERY_MODE.toString()));
+        assertTrue(registerResponse.getClaims().containsKey(BACKCHANNEL_AUTHENTICATION_REQUEST_SIGNING_ALG.toString()));
+        assertTrue(registerResponse.getClaims().containsKey(BACKCHANNEL_USER_CODE_PARAMETER.toString()));
+        assertEquals(registerResponse.getClaims().get(BACKCHANNEL_TOKEN_DELIVERY_MODE.toString()), BackchannelTokenDeliveryMode.POLL.getValue());
+        assertEquals(registerResponse.getClaims().get(BACKCHANNEL_AUTHENTICATION_REQUEST_SIGNING_ALG.toString()), AsymmetricSignatureAlgorithm.ES512.getValue());
+        assertEquals(registerResponse.getClaims().get(BACKCHANNEL_USER_CODE_PARAMETER.toString()), new Boolean(true).toString());
+
+        String clientId = registerResponse.getClientId();
+        String clientSecret = registerResponse.getClientSecret();
+
+        // 2. Authentication Request
+        String clientNotificationToken = UUID.randomUUID().toString();
+
+        BackchannelAuthenticationRequest backchannelAuthenticationRequest = new BackchannelAuthenticationRequest();
+        backchannelAuthenticationRequest.setScope(Arrays.asList("openid"));
+        backchannelAuthenticationRequest.setLoginHintToken(loginHintTokenES512);
+        backchannelAuthenticationRequest.setClientNotificationToken(clientNotificationToken);
+        backchannelAuthenticationRequest.setUserCode(backchannelUserCode);
+        backchannelAuthenticationRequest.setRequestedExpiry(1200);
+        backchannelAuthenticationRequest.setAuthUsername(clientId);
+        backchannelAuthenticationRequest.setAuthPassword(clientSecret);
+
+        BackchannelAuthenticationClient backchannelAuthenticationClient = new BackchannelAuthenticationClient(backchannelAuthenticationEndpoint);
+        backchannelAuthenticationClient.setRequest(backchannelAuthenticationRequest);
+        BackchannelAuthenticationResponse backchannelAuthenticationResponse = backchannelAuthenticationClient.exec();
+
+        showClient(backchannelAuthenticationClient);
+        assertEquals(backchannelAuthenticationResponse.getStatus(), 200, "Unexpected response code: " + backchannelAuthenticationResponse.getEntity());
+        assertNotNull(backchannelAuthenticationResponse.getAuthReqId());
+        assertNotNull(backchannelAuthenticationResponse.getExpiresIn());
+        assertNotNull(backchannelAuthenticationResponse.getInterval()); // This parameter will only be present if the Client is registered to use the Poll or Ping modes.
+    }
+
+    @Parameters({"clientJwksUri", "backchannelUserCode"})
+    @Test(dependsOnMethods = "loginHintTokenPS256")
+    public void backchannelTokenDeliveryModePollLoginHintTokenPS256(
+            final String clientJwksUri, final String backchannelUserCode) {
+        showTitle("backchannelTokenDeliveryModePollLoginHintTokenPS256");
+
+        // 1. Dynamic Client Registration
+        RegisterRequest registerRequest = new RegisterRequest(ApplicationType.WEB, "oxAuth test app", null);
+        registerRequest.setJwksUri(clientJwksUri);
+        registerRequest.setGrantTypes(Arrays.asList(GrantType.CIBA));
+
+        registerRequest.setBackchannelTokenDeliveryMode(BackchannelTokenDeliveryMode.POLL);
+        registerRequest.setBackchannelAuthenticationRequestSigningAlg(AsymmetricSignatureAlgorithm.PS256);
+        registerRequest.setBackchannelUserCodeParameter(true);
+
+        RegisterClient registerClient = new RegisterClient(registrationEndpoint);
+        registerClient.setRequest(registerRequest);
+        RegisterResponse registerResponse = registerClient.exec();
+
+        showClient(registerClient);
+        assertEquals(registerResponse.getStatus(), 200, "Unexpected response code: " + registerResponse.getEntity());
+        assertNotNull(registerResponse.getClientId());
+        assertNotNull(registerResponse.getClientSecret());
+        assertNotNull(registerResponse.getRegistrationAccessToken());
+        assertNotNull(registerResponse.getClientSecretExpiresAt());
+
+        assertTrue(registerResponse.getClaims().containsKey(BACKCHANNEL_TOKEN_DELIVERY_MODE.toString()));
+        assertTrue(registerResponse.getClaims().containsKey(BACKCHANNEL_AUTHENTICATION_REQUEST_SIGNING_ALG.toString()));
+        assertTrue(registerResponse.getClaims().containsKey(BACKCHANNEL_USER_CODE_PARAMETER.toString()));
+        assertEquals(registerResponse.getClaims().get(BACKCHANNEL_TOKEN_DELIVERY_MODE.toString()), BackchannelTokenDeliveryMode.POLL.getValue());
+        assertEquals(registerResponse.getClaims().get(BACKCHANNEL_AUTHENTICATION_REQUEST_SIGNING_ALG.toString()), AsymmetricSignatureAlgorithm.PS256.getValue());
+        assertEquals(registerResponse.getClaims().get(BACKCHANNEL_USER_CODE_PARAMETER.toString()), new Boolean(true).toString());
+
+        String clientId = registerResponse.getClientId();
+        String clientSecret = registerResponse.getClientSecret();
+
+        // 2. Authentication Request
+        String clientNotificationToken = UUID.randomUUID().toString();
+
+        BackchannelAuthenticationRequest backchannelAuthenticationRequest = new BackchannelAuthenticationRequest();
+        backchannelAuthenticationRequest.setScope(Arrays.asList("openid"));
+        backchannelAuthenticationRequest.setLoginHintToken(loginHintTokenPS256);
+        backchannelAuthenticationRequest.setClientNotificationToken(clientNotificationToken);
+        backchannelAuthenticationRequest.setUserCode(backchannelUserCode);
+        backchannelAuthenticationRequest.setRequestedExpiry(1200);
+        backchannelAuthenticationRequest.setAuthUsername(clientId);
+        backchannelAuthenticationRequest.setAuthPassword(clientSecret);
+
+        BackchannelAuthenticationClient backchannelAuthenticationClient = new BackchannelAuthenticationClient(backchannelAuthenticationEndpoint);
+        backchannelAuthenticationClient.setRequest(backchannelAuthenticationRequest);
+        BackchannelAuthenticationResponse backchannelAuthenticationResponse = backchannelAuthenticationClient.exec();
+
+        showClient(backchannelAuthenticationClient);
+        assertEquals(backchannelAuthenticationResponse.getStatus(), 200, "Unexpected response code: " + backchannelAuthenticationResponse.getEntity());
+        assertNotNull(backchannelAuthenticationResponse.getAuthReqId());
+        assertNotNull(backchannelAuthenticationResponse.getExpiresIn());
+        assertNotNull(backchannelAuthenticationResponse.getInterval()); // This parameter will only be present if the Client is registered to use the Poll or Ping modes.
+    }
+
+    @Parameters({"clientJwksUri", "backchannelUserCode"})
+    @Test(dependsOnMethods = "loginHintTokenPS384")
+    public void backchannelTokenDeliveryModePollLoginHintTokenPS384(
+            final String clientJwksUri, final String backchannelUserCode) {
+        showTitle("backchannelTokenDeliveryModePollLoginHintTokenPS384");
+
+        // 1. Dynamic Client Registration
+        RegisterRequest registerRequest = new RegisterRequest(ApplicationType.WEB, "oxAuth test app", null);
+        registerRequest.setJwksUri(clientJwksUri);
+        registerRequest.setGrantTypes(Arrays.asList(GrantType.CIBA));
+
+        registerRequest.setBackchannelTokenDeliveryMode(BackchannelTokenDeliveryMode.POLL);
+        registerRequest.setBackchannelAuthenticationRequestSigningAlg(AsymmetricSignatureAlgorithm.PS384);
+        registerRequest.setBackchannelUserCodeParameter(true);
+
+        RegisterClient registerClient = new RegisterClient(registrationEndpoint);
+        registerClient.setRequest(registerRequest);
+        RegisterResponse registerResponse = registerClient.exec();
+
+        showClient(registerClient);
+        assertEquals(registerResponse.getStatus(), 200, "Unexpected response code: " + registerResponse.getEntity());
+        assertNotNull(registerResponse.getClientId());
+        assertNotNull(registerResponse.getClientSecret());
+        assertNotNull(registerResponse.getRegistrationAccessToken());
+        assertNotNull(registerResponse.getClientSecretExpiresAt());
+
+        assertTrue(registerResponse.getClaims().containsKey(BACKCHANNEL_TOKEN_DELIVERY_MODE.toString()));
+        assertTrue(registerResponse.getClaims().containsKey(BACKCHANNEL_AUTHENTICATION_REQUEST_SIGNING_ALG.toString()));
+        assertTrue(registerResponse.getClaims().containsKey(BACKCHANNEL_USER_CODE_PARAMETER.toString()));
+        assertEquals(registerResponse.getClaims().get(BACKCHANNEL_TOKEN_DELIVERY_MODE.toString()), BackchannelTokenDeliveryMode.POLL.getValue());
+        assertEquals(registerResponse.getClaims().get(BACKCHANNEL_AUTHENTICATION_REQUEST_SIGNING_ALG.toString()), AsymmetricSignatureAlgorithm.PS384.getValue());
+        assertEquals(registerResponse.getClaims().get(BACKCHANNEL_USER_CODE_PARAMETER.toString()), new Boolean(true).toString());
+
+        String clientId = registerResponse.getClientId();
+        String clientSecret = registerResponse.getClientSecret();
+
+        // 2. Authentication Request
+        String clientNotificationToken = UUID.randomUUID().toString();
+
+        BackchannelAuthenticationRequest backchannelAuthenticationRequest = new BackchannelAuthenticationRequest();
+        backchannelAuthenticationRequest.setScope(Arrays.asList("openid"));
+        backchannelAuthenticationRequest.setLoginHintToken(loginHintTokenPS384);
+        backchannelAuthenticationRequest.setClientNotificationToken(clientNotificationToken);
+        backchannelAuthenticationRequest.setUserCode(backchannelUserCode);
+        backchannelAuthenticationRequest.setRequestedExpiry(1200);
+        backchannelAuthenticationRequest.setAuthUsername(clientId);
+        backchannelAuthenticationRequest.setAuthPassword(clientSecret);
+
+        BackchannelAuthenticationClient backchannelAuthenticationClient = new BackchannelAuthenticationClient(backchannelAuthenticationEndpoint);
+        backchannelAuthenticationClient.setRequest(backchannelAuthenticationRequest);
+        BackchannelAuthenticationResponse backchannelAuthenticationResponse = backchannelAuthenticationClient.exec();
+
+        showClient(backchannelAuthenticationClient);
+        assertEquals(backchannelAuthenticationResponse.getStatus(), 200, "Unexpected response code: " + backchannelAuthenticationResponse.getEntity());
+        assertNotNull(backchannelAuthenticationResponse.getAuthReqId());
+        assertNotNull(backchannelAuthenticationResponse.getExpiresIn());
+        assertNotNull(backchannelAuthenticationResponse.getInterval()); // This parameter will only be present if the Client is registered to use the Poll or Ping modes.
+    }
+
+    @Parameters({"clientJwksUri", "backchannelUserCode"})
+    @Test(dependsOnMethods = "loginHintTokenPS512")
+    public void backchannelTokenDeliveryModePollLoginHintTokenPS512(
+            final String clientJwksUri, final String backchannelUserCode) {
+        showTitle("backchannelTokenDeliveryModePollLoginHintTokenPS512");
+
+        // 1. Dynamic Client Registration
+        RegisterRequest registerRequest = new RegisterRequest(ApplicationType.WEB, "oxAuth test app", null);
+        registerRequest.setJwksUri(clientJwksUri);
+        registerRequest.setGrantTypes(Arrays.asList(GrantType.CIBA));
+
+        registerRequest.setBackchannelTokenDeliveryMode(BackchannelTokenDeliveryMode.POLL);
+        registerRequest.setBackchannelAuthenticationRequestSigningAlg(AsymmetricSignatureAlgorithm.PS512);
+        registerRequest.setBackchannelUserCodeParameter(true);
+
+        RegisterClient registerClient = new RegisterClient(registrationEndpoint);
+        registerClient.setRequest(registerRequest);
+        RegisterResponse registerResponse = registerClient.exec();
+
+        showClient(registerClient);
+        assertEquals(registerResponse.getStatus(), 200, "Unexpected response code: " + registerResponse.getEntity());
+        assertNotNull(registerResponse.getClientId());
+        assertNotNull(registerResponse.getClientSecret());
+        assertNotNull(registerResponse.getRegistrationAccessToken());
+        assertNotNull(registerResponse.getClientSecretExpiresAt());
+
+        assertTrue(registerResponse.getClaims().containsKey(BACKCHANNEL_TOKEN_DELIVERY_MODE.toString()));
+        assertTrue(registerResponse.getClaims().containsKey(BACKCHANNEL_AUTHENTICATION_REQUEST_SIGNING_ALG.toString()));
+        assertTrue(registerResponse.getClaims().containsKey(BACKCHANNEL_USER_CODE_PARAMETER.toString()));
+        assertEquals(registerResponse.getClaims().get(BACKCHANNEL_TOKEN_DELIVERY_MODE.toString()), BackchannelTokenDeliveryMode.POLL.getValue());
+        assertEquals(registerResponse.getClaims().get(BACKCHANNEL_AUTHENTICATION_REQUEST_SIGNING_ALG.toString()), AsymmetricSignatureAlgorithm.PS512.getValue());
+        assertEquals(registerResponse.getClaims().get(BACKCHANNEL_USER_CODE_PARAMETER.toString()), new Boolean(true).toString());
+
+        String clientId = registerResponse.getClientId();
+        String clientSecret = registerResponse.getClientSecret();
+
+        // 2. Authentication Request
+        String clientNotificationToken = UUID.randomUUID().toString();
+
+        BackchannelAuthenticationRequest backchannelAuthenticationRequest = new BackchannelAuthenticationRequest();
+        backchannelAuthenticationRequest.setScope(Arrays.asList("openid"));
+        backchannelAuthenticationRequest.setLoginHintToken(loginHintTokenPS512);
+        backchannelAuthenticationRequest.setClientNotificationToken(clientNotificationToken);
+        backchannelAuthenticationRequest.setUserCode(backchannelUserCode);
+        backchannelAuthenticationRequest.setRequestedExpiry(1200);
+        backchannelAuthenticationRequest.setAuthUsername(clientId);
+        backchannelAuthenticationRequest.setAuthPassword(clientSecret);
+
+        BackchannelAuthenticationClient backchannelAuthenticationClient = new BackchannelAuthenticationClient(backchannelAuthenticationEndpoint);
+        backchannelAuthenticationClient.setRequest(backchannelAuthenticationRequest);
+        BackchannelAuthenticationResponse backchannelAuthenticationResponse = backchannelAuthenticationClient.exec();
+
+        showClient(backchannelAuthenticationClient);
+        assertEquals(backchannelAuthenticationResponse.getStatus(), 200, "Unexpected response code: " + backchannelAuthenticationResponse.getEntity());
+        assertNotNull(backchannelAuthenticationResponse.getAuthReqId());
+        assertNotNull(backchannelAuthenticationResponse.getExpiresIn());
+        assertNotNull(backchannelAuthenticationResponse.getInterval()); // This parameter will only be present if the Client is registered to use the Poll or Ping modes.
+    }
+
+    @Parameters({"clientJwksUri"})
+    @Test
+    public void backchannelTokenDeliveryModePollFail1(final String clientJwksUri) {
+        showTitle("backchannelTokenDeliveryModePollFail1");
+
+        // 1. Dynamic Client Registration
+        RegisterRequest registerRequest = new RegisterRequest(ApplicationType.WEB, "oxAuth test app", null);
+        registerRequest.setJwksUri(clientJwksUri);
+        registerRequest.setGrantTypes(Arrays.asList(GrantType.CIBA));
+
+        registerRequest.setBackchannelTokenDeliveryMode(BackchannelTokenDeliveryMode.POLL);
+        registerRequest.setBackchannelAuthenticationRequestSigningAlg(AsymmetricSignatureAlgorithm.RS256);
+        registerRequest.setBackchannelUserCodeParameter(true);
+
+        RegisterClient registerClient = new RegisterClient(registrationEndpoint);
+        registerClient.setRequest(registerRequest);
+        RegisterResponse registerResponse = registerClient.exec();
+
+        showClient(registerClient);
+        assertEquals(registerResponse.getStatus(), 200, "Unexpected response code: " + registerResponse.getEntity());
+        assertNotNull(registerResponse.getClientId());
+        assertNotNull(registerResponse.getClientSecret());
+        assertNotNull(registerResponse.getRegistrationAccessToken());
+        assertNotNull(registerResponse.getClientSecretExpiresAt());
+
+        assertTrue(registerResponse.getClaims().containsKey(BACKCHANNEL_TOKEN_DELIVERY_MODE.toString()));
+        assertTrue(registerResponse.getClaims().containsKey(BACKCHANNEL_AUTHENTICATION_REQUEST_SIGNING_ALG.toString()));
+        assertTrue(registerResponse.getClaims().containsKey(BACKCHANNEL_USER_CODE_PARAMETER.toString()));
+        assertEquals(registerResponse.getClaims().get(BACKCHANNEL_TOKEN_DELIVERY_MODE.toString()), BackchannelTokenDeliveryMode.POLL.getValue());
+        assertEquals(registerResponse.getClaims().get(BACKCHANNEL_AUTHENTICATION_REQUEST_SIGNING_ALG.toString()), AsymmetricSignatureAlgorithm.RS256.getValue());
+        assertEquals(registerResponse.getClaims().get(BACKCHANNEL_USER_CODE_PARAMETER.toString()), new Boolean(true).toString());
+
+        // 2. Authentication Request
+        BackchannelAuthenticationRequest backchannelAuthenticationRequest = new BackchannelAuthenticationRequest();
+
+        BackchannelAuthenticationClient backchannelAuthenticationClient = new BackchannelAuthenticationClient(backchannelAuthenticationEndpoint);
+        backchannelAuthenticationClient.setRequest(backchannelAuthenticationRequest);
+        BackchannelAuthenticationResponse backchannelAuthenticationResponse = backchannelAuthenticationClient.exec();
+
+        showClient(backchannelAuthenticationClient);
+        assertEquals(backchannelAuthenticationResponse.getStatus(), 400, "Unexpected response code: " + backchannelAuthenticationResponse.getEntity());
+        assertNotNull(backchannelAuthenticationResponse.getEntity(), "The entity is null");
+        assertNotNull(backchannelAuthenticationResponse.getErrorType(), "The error type is null");
+        assertEquals(BackchannelAuthenticationErrorResponseType.INVALID_REQUEST, backchannelAuthenticationResponse.getErrorType());
+        assertNotNull(backchannelAuthenticationResponse.getErrorDescription(), "The error description is null");
+    }
+
+    @Parameters({"clientJwksUri"})
+    @Test
+    public void backchannelTokenDeliveryModePollFail2(final String clientJwksUri) {
+        showTitle("backchannelTokenDeliveryModePollFail2");
+
+        // 1. Dynamic Client Registration
+        RegisterRequest registerRequest = new RegisterRequest(ApplicationType.WEB, "oxAuth test app", null);
+        registerRequest.setJwksUri(clientJwksUri);
+        registerRequest.setGrantTypes(Arrays.asList(GrantType.CIBA));
+
+        registerRequest.setBackchannelTokenDeliveryMode(BackchannelTokenDeliveryMode.POLL);
+        registerRequest.setBackchannelAuthenticationRequestSigningAlg(AsymmetricSignatureAlgorithm.RS256);
+        registerRequest.setBackchannelUserCodeParameter(true);
+
+        RegisterClient registerClient = new RegisterClient(registrationEndpoint);
+        registerClient.setRequest(registerRequest);
+        RegisterResponse registerResponse = registerClient.exec();
+
+        showClient(registerClient);
+        assertEquals(registerResponse.getStatus(), 200, "Unexpected response code: " + registerResponse.getEntity());
+        assertNotNull(registerResponse.getClientId());
+        assertNotNull(registerResponse.getClientSecret());
+        assertNotNull(registerResponse.getRegistrationAccessToken());
+        assertNotNull(registerResponse.getClientSecretExpiresAt());
+
+        assertTrue(registerResponse.getClaims().containsKey(BACKCHANNEL_TOKEN_DELIVERY_MODE.toString()));
+        assertTrue(registerResponse.getClaims().containsKey(BACKCHANNEL_AUTHENTICATION_REQUEST_SIGNING_ALG.toString()));
+        assertTrue(registerResponse.getClaims().containsKey(BACKCHANNEL_USER_CODE_PARAMETER.toString()));
+        assertEquals(registerResponse.getClaims().get(BACKCHANNEL_TOKEN_DELIVERY_MODE.toString()), BackchannelTokenDeliveryMode.POLL.getValue());
+        assertEquals(registerResponse.getClaims().get(BACKCHANNEL_AUTHENTICATION_REQUEST_SIGNING_ALG.toString()), AsymmetricSignatureAlgorithm.RS256.getValue());
+        assertEquals(registerResponse.getClaims().get(BACKCHANNEL_USER_CODE_PARAMETER.toString()), new Boolean(true).toString());
+
+        String clientId = registerResponse.getClientId();
+
+        // 2. Authentication Request
+        BackchannelAuthenticationRequest backchannelAuthenticationRequest = new BackchannelAuthenticationRequest();
+        backchannelAuthenticationRequest.setAuthUsername(clientId);
+        backchannelAuthenticationRequest.setAuthPassword("INVALID_CLIENT_SECRET");
+
+        BackchannelAuthenticationClient backchannelAuthenticationClient = new BackchannelAuthenticationClient(backchannelAuthenticationEndpoint);
+        backchannelAuthenticationClient.setRequest(backchannelAuthenticationRequest);
+        BackchannelAuthenticationResponse backchannelAuthenticationResponse = backchannelAuthenticationClient.exec();
+
+        showClient(backchannelAuthenticationClient);
+        assertEquals(backchannelAuthenticationResponse.getStatus(), 401, "Unexpected response code: " + backchannelAuthenticationResponse.getEntity());
+        assertNotNull(backchannelAuthenticationResponse.getEntity(), "The entity is null");
+        assertNotNull(backchannelAuthenticationResponse.getErrorType(), "The error type is null");
+        assertEquals(BackchannelAuthenticationErrorResponseType.INVALID_CLIENT, backchannelAuthenticationResponse.getErrorType());
+        assertNotNull(backchannelAuthenticationResponse.getErrorDescription(), "The error description is null");
+    }
+
+    @Parameters({"clientJwksUri"})
+    @Test
+    public void backchannelTokenDeliveryModePollFail3(final String clientJwksUri) {
+        showTitle("backchannelTokenDeliveryModePollFail3");
+
+        // 1. Dynamic Client Registration
+        RegisterRequest registerRequest = new RegisterRequest(ApplicationType.WEB, "oxAuth test app", null);
+        registerRequest.setJwksUri(clientJwksUri);
+        registerRequest.setGrantTypes(Arrays.asList(GrantType.CIBA));
+
+        registerRequest.setBackchannelTokenDeliveryMode(BackchannelTokenDeliveryMode.POLL);
+        registerRequest.setBackchannelAuthenticationRequestSigningAlg(AsymmetricSignatureAlgorithm.RS256);
+        registerRequest.setBackchannelUserCodeParameter(true);
+
+        RegisterClient registerClient = new RegisterClient(registrationEndpoint);
+        registerClient.setRequest(registerRequest);
+        RegisterResponse registerResponse = registerClient.exec();
+
+        showClient(registerClient);
+        assertEquals(registerResponse.getStatus(), 200, "Unexpected response code: " + registerResponse.getEntity());
+        assertNotNull(registerResponse.getClientId());
+        assertNotNull(registerResponse.getClientSecret());
+        assertNotNull(registerResponse.getRegistrationAccessToken());
+        assertNotNull(registerResponse.getClientSecretExpiresAt());
+
+        assertTrue(registerResponse.getClaims().containsKey(BACKCHANNEL_TOKEN_DELIVERY_MODE.toString()));
+        assertTrue(registerResponse.getClaims().containsKey(BACKCHANNEL_AUTHENTICATION_REQUEST_SIGNING_ALG.toString()));
+        assertTrue(registerResponse.getClaims().containsKey(BACKCHANNEL_USER_CODE_PARAMETER.toString()));
+        assertEquals(registerResponse.getClaims().get(BACKCHANNEL_TOKEN_DELIVERY_MODE.toString()), BackchannelTokenDeliveryMode.POLL.getValue());
+        assertEquals(registerResponse.getClaims().get(BACKCHANNEL_AUTHENTICATION_REQUEST_SIGNING_ALG.toString()), AsymmetricSignatureAlgorithm.RS256.getValue());
+        assertEquals(registerResponse.getClaims().get(BACKCHANNEL_USER_CODE_PARAMETER.toString()), new Boolean(true).toString());
+
+        String clientId = registerResponse.getClientId();
+        String clientSecret = registerResponse.getClientSecret();
+
+        // 2. Authentication Request
+        BackchannelAuthenticationRequest backchannelAuthenticationRequest = new BackchannelAuthenticationRequest();
+        backchannelAuthenticationRequest.setScope(null); // Invalid Scope
+        backchannelAuthenticationRequest.setAuthUsername(clientId);
+        backchannelAuthenticationRequest.setAuthPassword(clientSecret);
+
+        BackchannelAuthenticationClient backchannelAuthenticationClient = new BackchannelAuthenticationClient(backchannelAuthenticationEndpoint);
+        backchannelAuthenticationClient.setRequest(backchannelAuthenticationRequest);
+        BackchannelAuthenticationResponse backchannelAuthenticationResponse = backchannelAuthenticationClient.exec();
+
+        showClient(backchannelAuthenticationClient);
+        assertEquals(backchannelAuthenticationResponse.getStatus(), 400, "Unexpected response code: " + backchannelAuthenticationResponse.getEntity());
+        assertNotNull(backchannelAuthenticationResponse.getEntity(), "The entity is null");
+        assertNotNull(backchannelAuthenticationResponse.getErrorType(), "The error type is null");
+        assertEquals(BackchannelAuthenticationErrorResponseType.UNKNOWN_USER_ID, backchannelAuthenticationResponse.getErrorType());
+        assertNotNull(backchannelAuthenticationResponse.getErrorDescription(), "The error description is null");
+    }
+
+    @Parameters({"clientJwksUri"})
+    @Test
+    public void backchannelTokenDeliveryModePollFail4(final String clientJwksUri) {
+        showTitle("backchannelTokenDeliveryModePollFail4");
+
+        // 1. Dynamic Client Registration
+        RegisterRequest registerRequest = new RegisterRequest(ApplicationType.WEB, "oxAuth test app", null);
+        registerRequest.setJwksUri(clientJwksUri);
+        registerRequest.setGrantTypes(Arrays.asList(GrantType.CIBA));
+
+        registerRequest.setBackchannelTokenDeliveryMode(BackchannelTokenDeliveryMode.POLL);
+        registerRequest.setBackchannelAuthenticationRequestSigningAlg(AsymmetricSignatureAlgorithm.RS256);
+        registerRequest.setBackchannelUserCodeParameter(true);
+
+        RegisterClient registerClient = new RegisterClient(registrationEndpoint);
+        registerClient.setRequest(registerRequest);
+        RegisterResponse registerResponse = registerClient.exec();
+
+        showClient(registerClient);
+        assertEquals(registerResponse.getStatus(), 200, "Unexpected response code: " + registerResponse.getEntity());
+        assertNotNull(registerResponse.getClientId());
+        assertNotNull(registerResponse.getClientSecret());
+        assertNotNull(registerResponse.getRegistrationAccessToken());
+        assertNotNull(registerResponse.getClientSecretExpiresAt());
+
+        assertTrue(registerResponse.getClaims().containsKey(BACKCHANNEL_TOKEN_DELIVERY_MODE.toString()));
+        assertTrue(registerResponse.getClaims().containsKey(BACKCHANNEL_AUTHENTICATION_REQUEST_SIGNING_ALG.toString()));
+        assertTrue(registerResponse.getClaims().containsKey(BACKCHANNEL_USER_CODE_PARAMETER.toString()));
+        assertEquals(registerResponse.getClaims().get(BACKCHANNEL_TOKEN_DELIVERY_MODE.toString()), BackchannelTokenDeliveryMode.POLL.getValue());
+        assertEquals(registerResponse.getClaims().get(BACKCHANNEL_AUTHENTICATION_REQUEST_SIGNING_ALG.toString()), AsymmetricSignatureAlgorithm.RS256.getValue());
+        assertEquals(registerResponse.getClaims().get(BACKCHANNEL_USER_CODE_PARAMETER.toString()), new Boolean(true).toString());
+
+        String clientId = registerResponse.getClientId();
+        String clientSecret = registerResponse.getClientSecret();
+
+        // 2. Authentication Request
+        BackchannelAuthenticationRequest backchannelAuthenticationRequest = new BackchannelAuthenticationRequest();
+        backchannelAuthenticationRequest.setScope(Arrays.asList("openid"));
+        backchannelAuthenticationRequest.setLoginHint(null); // Invalid login hint.
+        backchannelAuthenticationRequest.setLoginHintToken(null); // Invalid login hint token.
+        backchannelAuthenticationRequest.setIdTokenHint(null); // Invalid id token hint
+        backchannelAuthenticationRequest.setAuthUsername(clientId);
+        backchannelAuthenticationRequest.setAuthPassword(clientSecret);
+
+        BackchannelAuthenticationClient backchannelAuthenticationClient = new BackchannelAuthenticationClient(backchannelAuthenticationEndpoint);
+        backchannelAuthenticationClient.setRequest(backchannelAuthenticationRequest);
+        BackchannelAuthenticationResponse backchannelAuthenticationResponse = backchannelAuthenticationClient.exec();
+
+        showClient(backchannelAuthenticationClient);
+        assertEquals(backchannelAuthenticationResponse.getStatus(), 400, "Unexpected response code: " + backchannelAuthenticationResponse.getEntity());
+        assertNotNull(backchannelAuthenticationResponse.getEntity(), "The entity is null");
+        assertNotNull(backchannelAuthenticationResponse.getErrorType(), "The error type is null");
+        assertEquals(BackchannelAuthenticationErrorResponseType.UNKNOWN_USER_ID, backchannelAuthenticationResponse.getErrorType());
+        assertNotNull(backchannelAuthenticationResponse.getErrorDescription(), "The error description is null");
+    }
+
+    @Parameters({"clientJwksUri"})
+    @Test
+    public void backchannelTokenDeliveryModePollFail5(final String clientJwksUri) {
+        showTitle("backchannelTokenDeliveryModePollFail5");
+
+        // 1. Dynamic Client Registration
+        RegisterRequest registerRequest = new RegisterRequest(ApplicationType.WEB, "oxAuth test app", null);
+        registerRequest.setJwksUri(clientJwksUri);
+        registerRequest.setGrantTypes(Arrays.asList(GrantType.CIBA));
+
+        registerRequest.setBackchannelTokenDeliveryMode(BackchannelTokenDeliveryMode.POLL);
+        registerRequest.setBackchannelAuthenticationRequestSigningAlg(AsymmetricSignatureAlgorithm.RS256);
+        registerRequest.setBackchannelUserCodeParameter(true);
+
+        RegisterClient registerClient = new RegisterClient(registrationEndpoint);
+        registerClient.setRequest(registerRequest);
+        RegisterResponse registerResponse = registerClient.exec();
+
+        showClient(registerClient);
+        assertEquals(registerResponse.getStatus(), 200, "Unexpected response code: " + registerResponse.getEntity());
+        assertNotNull(registerResponse.getClientId());
+        assertNotNull(registerResponse.getClientSecret());
+        assertNotNull(registerResponse.getRegistrationAccessToken());
+        assertNotNull(registerResponse.getClientSecretExpiresAt());
+
+        assertTrue(registerResponse.getClaims().containsKey(BACKCHANNEL_TOKEN_DELIVERY_MODE.toString()));
+        assertTrue(registerResponse.getClaims().containsKey(BACKCHANNEL_AUTHENTICATION_REQUEST_SIGNING_ALG.toString()));
+        assertTrue(registerResponse.getClaims().containsKey(BACKCHANNEL_USER_CODE_PARAMETER.toString()));
+        assertEquals(registerResponse.getClaims().get(BACKCHANNEL_TOKEN_DELIVERY_MODE.toString()), BackchannelTokenDeliveryMode.POLL.getValue());
+        assertEquals(registerResponse.getClaims().get(BACKCHANNEL_AUTHENTICATION_REQUEST_SIGNING_ALG.toString()), AsymmetricSignatureAlgorithm.RS256.getValue());
+        assertEquals(registerResponse.getClaims().get(BACKCHANNEL_USER_CODE_PARAMETER.toString()), new Boolean(true).toString());
+
+        String clientId = registerResponse.getClientId();
+        String clientSecret = registerResponse.getClientSecret();
+
+        // 2. Authentication Request
+        BackchannelAuthenticationRequest backchannelAuthenticationRequest = new BackchannelAuthenticationRequest();
+        backchannelAuthenticationRequest.setScope(Arrays.asList("openid"));
+        backchannelAuthenticationRequest.setLoginHint("admin");
+        backchannelAuthenticationRequest.setClientNotificationToken(null); // Invalid client notification token.
+        backchannelAuthenticationRequest.setAuthUsername(clientId);
+        backchannelAuthenticationRequest.setAuthPassword(clientSecret);
+
+        BackchannelAuthenticationClient backchannelAuthenticationClient = new BackchannelAuthenticationClient(backchannelAuthenticationEndpoint);
+        backchannelAuthenticationClient.setRequest(backchannelAuthenticationRequest);
+        BackchannelAuthenticationResponse backchannelAuthenticationResponse = backchannelAuthenticationClient.exec();
+
+        showClient(backchannelAuthenticationClient);
+        assertEquals(backchannelAuthenticationResponse.getStatus(), 400, "Unexpected response code: " + backchannelAuthenticationResponse.getEntity());
+        assertNotNull(backchannelAuthenticationResponse.getEntity(), "The entity is null");
+        assertNotNull(backchannelAuthenticationResponse.getErrorType(), "The error type is null");
+        assertEquals(BackchannelAuthenticationErrorResponseType.INVALID_USER_CODE, backchannelAuthenticationResponse.getErrorType());
+        assertNotNull(backchannelAuthenticationResponse.getErrorDescription(), "The error description is null");
+    }
+
+    @Parameters({"clientJwksUri"})
+    @Test
+    public void backchannelTokenDeliveryModePollFail6(final String clientJwksUri) {
+        showTitle("backchannelTokenDeliveryModePollFail6");
+
+        // 1. Dynamic Client Registration
+        RegisterRequest registerRequest = new RegisterRequest(ApplicationType.WEB, "oxAuth test app", null);
+        registerRequest.setJwksUri(clientJwksUri);
+        registerRequest.setGrantTypes(Arrays.asList(GrantType.CIBA));
+
+        registerRequest.setBackchannelTokenDeliveryMode(BackchannelTokenDeliveryMode.POLL);
+        registerRequest.setBackchannelAuthenticationRequestSigningAlg(AsymmetricSignatureAlgorithm.RS256);
+        registerRequest.setBackchannelUserCodeParameter(true);
+
+        RegisterClient registerClient = new RegisterClient(registrationEndpoint);
+        registerClient.setRequest(registerRequest);
+        RegisterResponse registerResponse = registerClient.exec();
+
+        showClient(registerClient);
+        assertEquals(registerResponse.getStatus(), 200, "Unexpected response code: " + registerResponse.getEntity());
+        assertNotNull(registerResponse.getClientId());
+        assertNotNull(registerResponse.getClientSecret());
+        assertNotNull(registerResponse.getRegistrationAccessToken());
+        assertNotNull(registerResponse.getClientSecretExpiresAt());
+
+        assertTrue(registerResponse.getClaims().containsKey(BACKCHANNEL_TOKEN_DELIVERY_MODE.toString()));
+        assertTrue(registerResponse.getClaims().containsKey(BACKCHANNEL_AUTHENTICATION_REQUEST_SIGNING_ALG.toString()));
+        assertTrue(registerResponse.getClaims().containsKey(BACKCHANNEL_USER_CODE_PARAMETER.toString()));
+        assertEquals(registerResponse.getClaims().get(BACKCHANNEL_TOKEN_DELIVERY_MODE.toString()), BackchannelTokenDeliveryMode.POLL.getValue());
+        assertEquals(registerResponse.getClaims().get(BACKCHANNEL_AUTHENTICATION_REQUEST_SIGNING_ALG.toString()), AsymmetricSignatureAlgorithm.RS256.getValue());
+        assertEquals(registerResponse.getClaims().get(BACKCHANNEL_USER_CODE_PARAMETER.toString()), new Boolean(true).toString());
+
+        String clientId = registerResponse.getClientId();
+        String clientSecret = registerResponse.getClientSecret();
+
+        // 2. Authentication Request
+        String clientNotificationToken = UUID.randomUUID().toString();
+
+        BackchannelAuthenticationRequest backchannelAuthenticationRequest = new BackchannelAuthenticationRequest();
+        backchannelAuthenticationRequest.setScope(Arrays.asList("openid"));
+        backchannelAuthenticationRequest.setLoginHint("admin");
+        backchannelAuthenticationRequest.setClientNotificationToken(clientNotificationToken);
+        backchannelAuthenticationRequest.setUserCode(null); // Invalid user code.
+        backchannelAuthenticationRequest.setAuthUsername(clientId);
+        backchannelAuthenticationRequest.setAuthPassword(clientSecret);
+
+        BackchannelAuthenticationClient backchannelAuthenticationClient = new BackchannelAuthenticationClient(backchannelAuthenticationEndpoint);
+        backchannelAuthenticationClient.setRequest(backchannelAuthenticationRequest);
+        BackchannelAuthenticationResponse backchannelAuthenticationResponse = backchannelAuthenticationClient.exec();
+
+        showClient(backchannelAuthenticationClient);
+        assertEquals(backchannelAuthenticationResponse.getStatus(), 400, "Unexpected response code: " + backchannelAuthenticationResponse.getEntity());
+        assertNotNull(backchannelAuthenticationResponse.getEntity(), "The entity is null");
+        assertNotNull(backchannelAuthenticationResponse.getErrorType(), "The error type is null");
+        assertEquals(BackchannelAuthenticationErrorResponseType.INVALID_USER_CODE, backchannelAuthenticationResponse.getErrorType());
+        assertNotNull(backchannelAuthenticationResponse.getErrorDescription(), "The error description is null");
+    }
+
+    @Parameters({"clientJwksUri", "userId", "backchannelUserCode"})
+    @Test
+    public void backchannelTokenDeliveryModePollFail7(
+            final String clientJwksUri, final String userId, final String backchannelUserCode) throws InterruptedException {
+        showTitle("backchannelTokenDeliveryModePollFail7");
+
+        // 1. Dynamic Client Registration
+        RegisterRequest registerRequest = new RegisterRequest(ApplicationType.WEB, "oxAuth test app", null);
+        registerRequest.setJwksUri(clientJwksUri);
+        registerRequest.setGrantTypes(Arrays.asList(GrantType.CIBA));
+
+        registerRequest.setBackchannelTokenDeliveryMode(BackchannelTokenDeliveryMode.POLL);
+        registerRequest.setBackchannelAuthenticationRequestSigningAlg(AsymmetricSignatureAlgorithm.RS256);
+        registerRequest.setBackchannelUserCodeParameter(true);
+
+        RegisterClient registerClient = new RegisterClient(registrationEndpoint);
+        registerClient.setRequest(registerRequest);
+        RegisterResponse registerResponse = registerClient.exec();
+
+        showClient(registerClient);
+        assertEquals(registerResponse.getStatus(), 200, "Unexpected response code: " + registerResponse.getEntity());
+        assertNotNull(registerResponse.getClientId());
+        assertNotNull(registerResponse.getClientSecret());
+        assertNotNull(registerResponse.getRegistrationAccessToken());
+        assertNotNull(registerResponse.getClientSecretExpiresAt());
+
+        assertTrue(registerResponse.getClaims().containsKey(BACKCHANNEL_TOKEN_DELIVERY_MODE.toString()));
+        assertTrue(registerResponse.getClaims().containsKey(BACKCHANNEL_AUTHENTICATION_REQUEST_SIGNING_ALG.toString()));
+        assertTrue(registerResponse.getClaims().containsKey(BACKCHANNEL_USER_CODE_PARAMETER.toString()));
+        assertEquals(registerResponse.getClaims().get(BACKCHANNEL_TOKEN_DELIVERY_MODE.toString()), BackchannelTokenDeliveryMode.POLL.getValue());
+        assertEquals(registerResponse.getClaims().get(BACKCHANNEL_AUTHENTICATION_REQUEST_SIGNING_ALG.toString()), AsymmetricSignatureAlgorithm.RS256.getValue());
+        assertEquals(registerResponse.getClaims().get(BACKCHANNEL_USER_CODE_PARAMETER.toString()), new Boolean(true).toString());
+
+        String clientId = registerResponse.getClientId();
+        String clientSecret = registerResponse.getClientSecret();
+
+        // 2. Authentication Request
+        String clientNotificationToken = UUID.randomUUID().toString();
+
+        BackchannelAuthenticationRequest backchannelAuthenticationRequest = new BackchannelAuthenticationRequest();
+        backchannelAuthenticationRequest.setScope(Arrays.asList("openid", "profile", "email", "address", "phone"));
+        backchannelAuthenticationRequest.setLoginHint(userId);
+        backchannelAuthenticationRequest.setClientNotificationToken(clientNotificationToken);
+        backchannelAuthenticationRequest.setUserCode(backchannelUserCode);
+        backchannelAuthenticationRequest.setRequestedExpiry(1200);
+        backchannelAuthenticationRequest.setAcrValues(Arrays.asList("auth_ldap_server", "basic"));
+        backchannelAuthenticationRequest.setBindingMessage("####"); // Invalid binding message
+        backchannelAuthenticationRequest.setAuthUsername(clientId);
+        backchannelAuthenticationRequest.setAuthPassword(clientSecret);
+
+        BackchannelAuthenticationClient backchannelAuthenticationClient = new BackchannelAuthenticationClient(backchannelAuthenticationEndpoint);
+        backchannelAuthenticationClient.setRequest(backchannelAuthenticationRequest);
+        BackchannelAuthenticationResponse backchannelAuthenticationResponse = backchannelAuthenticationClient.exec();
+
+        showClient(backchannelAuthenticationClient);
+        assertEquals(backchannelAuthenticationResponse.getStatus(), 400, "Unexpected response code: " + backchannelAuthenticationResponse.getEntity());
+        assertNotNull(backchannelAuthenticationResponse.getEntity(), "The entity is null");
+        assertNotNull(backchannelAuthenticationResponse.getErrorType(), "The error type is null");
+        assertEquals(BackchannelAuthenticationErrorResponseType.INVALID_BINDING_MESSAGE, backchannelAuthenticationResponse.getErrorType());
+        assertNotNull(backchannelAuthenticationResponse.getErrorDescription(), "The error description is null");
+    }
+
+    @Parameters({"userId", "userSecret", "redirectUri", "redirectUris", "sectorIdentifierUri"})
+    @Test
+    public void idTokenHintRS256(
+            final String userId, final String userSecret, final String redirectUri, final String redirectUris,
+            final String sectorIdentifierUri) throws Exception {
+        showTitle("idTokenHintRS256");
+
+        List<ResponseType> responseTypes = Arrays.asList(ResponseType.TOKEN, ResponseType.ID_TOKEN);
+
+        // 1. Register client
+        RegisterRequest registerRequest = new RegisterRequest(ApplicationType.WEB, "oxAuth test app",
+                StringUtils.spaceSeparatedToList(redirectUris));
+        registerRequest.setResponseTypes(responseTypes);
+        registerRequest.setSectorIdentifierUri(sectorIdentifierUri);
+        registerRequest.setIdTokenSignedResponseAlg(SignatureAlgorithm.RS256);
+
+        RegisterClient registerClient = new RegisterClient(registrationEndpoint);
+        registerClient.setRequest(registerRequest);
+        RegisterResponse registerResponse = registerClient.exec();
+
+        showClient(registerClient);
+        assertEquals(registerResponse.getStatus(), 200, "Unexpected response code: " + registerResponse.getEntity());
+        assertNotNull(registerResponse.getClientId());
+        assertNotNull(registerResponse.getClientSecret());
+        assertNotNull(registerResponse.getRegistrationAccessToken());
+        assertNotNull(registerResponse.getClientIdIssuedAt());
+        assertNotNull(registerResponse.getClientSecretExpiresAt());
+
+        String clientId = registerResponse.getClientId();
+
+        // 2. Request authorization
+        List<String> scopes = Arrays.asList("openid");
+        String nonce = UUID.randomUUID().toString();
+        String state = UUID.randomUUID().toString();
+
+        AuthorizationRequest authorizationRequest = new AuthorizationRequest(responseTypes, clientId, scopes, redirectUri, nonce);
+        authorizationRequest.setState(state);
+
+        AuthorizeClient authorizeClient = new AuthorizeClient(authorizationEndpoint);
+        authorizeClient.setRequest(authorizationRequest);
+
+        AuthorizationResponse authorizationResponse = authenticateResourceOwnerAndGrantAccess(
+                authorizationEndpoint, authorizationRequest, userId, userSecret);
+
+        assertNotNull(authorizationResponse.getLocation(), "The location is null");
+        assertNotNull(authorizationResponse.getAccessToken(), "The accessToken is null");
+        assertNotNull(authorizationResponse.getTokenType(), "The tokenType is null");
+        assertNotNull(authorizationResponse.getIdToken(), "The idToken is null");
+        assertNotNull(authorizationResponse.getState(), "The state is null");
+
+        String idToken = authorizationResponse.getIdToken();
+
+        // 3. Validate id_token
+        Jwt jwt = Jwt.parse(idToken);
+        assertNotNull(jwt.getHeader().getClaimAsString(JwtHeaderName.TYPE));
+        assertNotNull(jwt.getHeader().getClaimAsString(JwtHeaderName.ALGORITHM));
+        assertNotNull(jwt.getClaims().getClaimAsString(JwtClaimName.ISSUER));
+        assertNotNull(jwt.getClaims().getClaimAsString(JwtClaimName.AUDIENCE));
+        assertNotNull(jwt.getClaims().getClaimAsString(JwtClaimName.EXPIRATION_TIME));
+        assertNotNull(jwt.getClaims().getClaimAsString(JwtClaimName.ISSUED_AT));
+        assertNotNull(jwt.getClaims().getClaimAsString(JwtClaimName.SUBJECT_IDENTIFIER));
+        assertNotNull(jwt.getClaims().getClaimAsString(JwtClaimName.ACCESS_TOKEN_HASH));
+        assertNotNull(jwt.getClaims().getClaimAsString(JwtClaimName.AUTHENTICATION_TIME));
+
+        RSAPublicKey publicKey = JwkClient.getRSAPublicKey(
+                jwksUri,
+                jwt.getHeader().getClaimAsString(JwtHeaderName.KEY_ID));
+        RSASigner rsaSigner = new RSASigner(SignatureAlgorithm.RS256, publicKey);
+
+        assertTrue(rsaSigner.validate(jwt));
+
+        idTokenHintRS256 = idToken;
+    }
+
+    @Parameters({"userId", "userSecret", "redirectUri", "redirectUris", "sectorIdentifierUri"})
+    @Test
+    public void idTokenHintRS384(
+            final String userId, final String userSecret, final String redirectUri, final String redirectUris,
+            final String sectorIdentifierUri) throws Exception {
+        showTitle("idTokenHintRS384");
+
+        List<ResponseType> responseTypes = Arrays.asList(ResponseType.TOKEN, ResponseType.ID_TOKEN);
+
+        // 1. Register client
+        RegisterRequest registerRequest = new RegisterRequest(ApplicationType.WEB, "oxAuth test app",
+                StringUtils.spaceSeparatedToList(redirectUris));
+        registerRequest.setResponseTypes(responseTypes);
+        registerRequest.setSectorIdentifierUri(sectorIdentifierUri);
+        registerRequest.setIdTokenSignedResponseAlg(SignatureAlgorithm.RS384);
+
+        RegisterClient registerClient = new RegisterClient(registrationEndpoint);
+        registerClient.setRequest(registerRequest);
+        RegisterResponse registerResponse = registerClient.exec();
+
+        showClient(registerClient);
+        assertEquals(registerResponse.getStatus(), 200, "Unexpected response code: " + registerResponse.getEntity());
+        assertNotNull(registerResponse.getClientId());
+        assertNotNull(registerResponse.getClientSecret());
+        assertNotNull(registerResponse.getRegistrationAccessToken());
+        assertNotNull(registerResponse.getClientIdIssuedAt());
+        assertNotNull(registerResponse.getClientSecretExpiresAt());
+
+        String clientId = registerResponse.getClientId();
+
+        // 2. Request authorization
+        List<String> scopes = Arrays.asList("openid");
+        String nonce = UUID.randomUUID().toString();
+        String state = UUID.randomUUID().toString();
+
+        AuthorizationRequest authorizationRequest = new AuthorizationRequest(responseTypes, clientId, scopes, redirectUri, nonce);
+        authorizationRequest.setState(state);
+
+        AuthorizeClient authorizeClient = new AuthorizeClient(authorizationEndpoint);
+        authorizeClient.setRequest(authorizationRequest);
+
+        AuthorizationResponse authorizationResponse = authenticateResourceOwnerAndGrantAccess(
+                authorizationEndpoint, authorizationRequest, userId, userSecret);
+
+        assertNotNull(authorizationResponse.getLocation(), "The location is null");
+        assertNotNull(authorizationResponse.getAccessToken(), "The accessToken is null");
+        assertNotNull(authorizationResponse.getTokenType(), "The tokenType is null");
+        assertNotNull(authorizationResponse.getIdToken(), "The idToken is null");
+        assertNotNull(authorizationResponse.getState(), "The state is null");
+
+        String idToken = authorizationResponse.getIdToken();
+
+        // 3. Validate id_token
+        Jwt jwt = Jwt.parse(idToken);
+        assertNotNull(jwt.getHeader().getClaimAsString(JwtHeaderName.TYPE));
+        assertNotNull(jwt.getHeader().getClaimAsString(JwtHeaderName.ALGORITHM));
+        assertNotNull(jwt.getClaims().getClaimAsString(JwtClaimName.ISSUER));
+        assertNotNull(jwt.getClaims().getClaimAsString(JwtClaimName.AUDIENCE));
+        assertNotNull(jwt.getClaims().getClaimAsString(JwtClaimName.EXPIRATION_TIME));
+        assertNotNull(jwt.getClaims().getClaimAsString(JwtClaimName.ISSUED_AT));
+        assertNotNull(jwt.getClaims().getClaimAsString(JwtClaimName.SUBJECT_IDENTIFIER));
+        assertNotNull(jwt.getClaims().getClaimAsString(JwtClaimName.ACCESS_TOKEN_HASH));
+        assertNotNull(jwt.getClaims().getClaimAsString(JwtClaimName.AUTHENTICATION_TIME));
+
+        RSAPublicKey publicKey = JwkClient.getRSAPublicKey(
+                jwksUri,
+                jwt.getHeader().getClaimAsString(JwtHeaderName.KEY_ID));
+        RSASigner rsaSigner = new RSASigner(SignatureAlgorithm.RS384, publicKey);
+
+        assertTrue(rsaSigner.validate(jwt));
+
+        idTokenHintRS384 = idToken;
+    }
+
+    @Parameters({"userId", "userSecret", "redirectUri", "redirectUris", "sectorIdentifierUri"})
+    @Test
+    public void idTokenHintRS512(
+            final String userId, final String userSecret, final String redirectUri, final String redirectUris,
+            final String sectorIdentifierUri) throws Exception {
+        showTitle("idTokenHintRS512");
+
+        List<ResponseType> responseTypes = Arrays.asList(ResponseType.TOKEN, ResponseType.ID_TOKEN);
+
+        // 1. Register client
+        RegisterRequest registerRequest = new RegisterRequest(ApplicationType.WEB, "oxAuth test app",
+                StringUtils.spaceSeparatedToList(redirectUris));
+        registerRequest.setResponseTypes(responseTypes);
+        registerRequest.setSectorIdentifierUri(sectorIdentifierUri);
+        registerRequest.setIdTokenSignedResponseAlg(SignatureAlgorithm.RS512);
+
+        RegisterClient registerClient = new RegisterClient(registrationEndpoint);
+        registerClient.setRequest(registerRequest);
+        RegisterResponse registerResponse = registerClient.exec();
+
+        showClient(registerClient);
+        assertEquals(registerResponse.getStatus(), 200, "Unexpected response code: " + registerResponse.getEntity());
+        assertNotNull(registerResponse.getClientId());
+        assertNotNull(registerResponse.getClientSecret());
+        assertNotNull(registerResponse.getRegistrationAccessToken());
+        assertNotNull(registerResponse.getClientIdIssuedAt());
+        assertNotNull(registerResponse.getClientSecretExpiresAt());
+
+        String clientId = registerResponse.getClientId();
+
+        // 2. Request authorization
+        List<String> scopes = Arrays.asList("openid");
+        String nonce = UUID.randomUUID().toString();
+        String state = UUID.randomUUID().toString();
+
+        AuthorizationRequest authorizationRequest = new AuthorizationRequest(responseTypes, clientId, scopes, redirectUri, nonce);
+        authorizationRequest.setState(state);
+
+        AuthorizeClient authorizeClient = new AuthorizeClient(authorizationEndpoint);
+        authorizeClient.setRequest(authorizationRequest);
+
+        AuthorizationResponse authorizationResponse = authenticateResourceOwnerAndGrantAccess(
+                authorizationEndpoint, authorizationRequest, userId, userSecret);
+
+        assertNotNull(authorizationResponse.getLocation(), "The location is null");
+        assertNotNull(authorizationResponse.getAccessToken(), "The accessToken is null");
+        assertNotNull(authorizationResponse.getTokenType(), "The tokenType is null");
+        assertNotNull(authorizationResponse.getIdToken(), "The idToken is null");
+        assertNotNull(authorizationResponse.getState(), "The state is null");
+
+        String idToken = authorizationResponse.getIdToken();
+
+        // 3. Validate id_token
+        Jwt jwt = Jwt.parse(idToken);
+        assertNotNull(jwt.getHeader().getClaimAsString(JwtHeaderName.TYPE));
+        assertNotNull(jwt.getHeader().getClaimAsString(JwtHeaderName.ALGORITHM));
+        assertNotNull(jwt.getClaims().getClaimAsString(JwtClaimName.ISSUER));
+        assertNotNull(jwt.getClaims().getClaimAsString(JwtClaimName.AUDIENCE));
+        assertNotNull(jwt.getClaims().getClaimAsString(JwtClaimName.EXPIRATION_TIME));
+        assertNotNull(jwt.getClaims().getClaimAsString(JwtClaimName.ISSUED_AT));
+        assertNotNull(jwt.getClaims().getClaimAsString(JwtClaimName.SUBJECT_IDENTIFIER));
+        assertNotNull(jwt.getClaims().getClaimAsString(JwtClaimName.ACCESS_TOKEN_HASH));
+        assertNotNull(jwt.getClaims().getClaimAsString(JwtClaimName.AUTHENTICATION_TIME));
+
+        RSAPublicKey publicKey = JwkClient.getRSAPublicKey(
+                jwksUri,
+                jwt.getHeader().getClaimAsString(JwtHeaderName.KEY_ID));
+        RSASigner rsaSigner = new RSASigner(SignatureAlgorithm.RS512, publicKey);
+
+        assertTrue(rsaSigner.validate(jwt));
+
+        idTokenHintRS512 = idToken;
+    }
+
+    @Parameters({"userId", "userSecret", "redirectUri", "redirectUris", "sectorIdentifierUri"})
+    @Test
+    public void idTokenHintES256(
+            final String userId, final String userSecret, final String redirectUri, final String redirectUris,
+            final String sectorIdentifierUri) throws Exception {
+        showTitle("idTokenHintES256");
+
+        List<ResponseType> responseTypes = Arrays.asList(ResponseType.TOKEN, ResponseType.ID_TOKEN);
+
+        // 1. Register client
+        RegisterRequest registerRequest = new RegisterRequest(ApplicationType.WEB, "oxAuth test app",
+                StringUtils.spaceSeparatedToList(redirectUris));
+        registerRequest.setResponseTypes(responseTypes);
+        registerRequest.setSectorIdentifierUri(sectorIdentifierUri);
+        registerRequest.setIdTokenSignedResponseAlg(SignatureAlgorithm.ES256);
+
+        RegisterClient registerClient = new RegisterClient(registrationEndpoint);
+        registerClient.setRequest(registerRequest);
+        RegisterResponse registerResponse = registerClient.exec();
+
+        showClient(registerClient);
+        assertEquals(registerResponse.getStatus(), 200, "Unexpected response code: " + registerResponse.getEntity());
+        assertNotNull(registerResponse.getClientId());
+        assertNotNull(registerResponse.getClientSecret());
+        assertNotNull(registerResponse.getRegistrationAccessToken());
+        assertNotNull(registerResponse.getClientIdIssuedAt());
+        assertNotNull(registerResponse.getClientSecretExpiresAt());
+
+        String clientId = registerResponse.getClientId();
+
+        // 2. Request authorization
+        List<String> scopes = Arrays.asList("openid");
+        String nonce = UUID.randomUUID().toString();
+        String state = UUID.randomUUID().toString();
+
+        AuthorizationRequest authorizationRequest = new AuthorizationRequest(responseTypes, clientId, scopes, redirectUri, nonce);
+        authorizationRequest.setState(state);
+
+        AuthorizeClient authorizeClient = new AuthorizeClient(authorizationEndpoint);
+        authorizeClient.setRequest(authorizationRequest);
+
+        AuthorizationResponse authorizationResponse = authenticateResourceOwnerAndGrantAccess(
+                authorizationEndpoint, authorizationRequest, userId, userSecret);
+
+        assertNotNull(authorizationResponse.getLocation(), "The location is null");
+        assertNotNull(authorizationResponse.getAccessToken(), "The accessToken is null");
+        assertNotNull(authorizationResponse.getTokenType(), "The tokenType is null");
+        assertNotNull(authorizationResponse.getIdToken(), "The idToken is null");
+        assertNotNull(authorizationResponse.getState(), "The state is null");
+
+        String idToken = authorizationResponse.getIdToken();
+
+        // 3. Validate id_token
+        Jwt jwt = Jwt.parse(idToken);
+        assertNotNull(jwt.getHeader().getClaimAsString(JwtHeaderName.TYPE));
+        assertNotNull(jwt.getHeader().getClaimAsString(JwtHeaderName.ALGORITHM));
+        assertNotNull(jwt.getClaims().getClaimAsString(JwtClaimName.ISSUER));
+        assertNotNull(jwt.getClaims().getClaimAsString(JwtClaimName.AUDIENCE));
+        assertNotNull(jwt.getClaims().getClaimAsString(JwtClaimName.EXPIRATION_TIME));
+        assertNotNull(jwt.getClaims().getClaimAsString(JwtClaimName.ISSUED_AT));
+        assertNotNull(jwt.getClaims().getClaimAsString(JwtClaimName.SUBJECT_IDENTIFIER));
+        assertNotNull(jwt.getClaims().getClaimAsString(JwtClaimName.ACCESS_TOKEN_HASH));
+        assertNotNull(jwt.getClaims().getClaimAsString(JwtClaimName.AUTHENTICATION_TIME));
+
+        ECDSAPublicKey publicKey = JwkClient.getECDSAPublicKey(
+                jwksUri,
+                jwt.getHeader().getClaimAsString(JwtHeaderName.KEY_ID));
+        ECDSASigner ecdsaSigner = new ECDSASigner(SignatureAlgorithm.ES256, publicKey);
+
+        assertTrue(ecdsaSigner.validate(jwt));
+
+        idTokenHintES256 = idToken;
+    }
+
+    @Parameters({"userId", "userSecret", "redirectUri", "redirectUris", "sectorIdentifierUri"})
+    @Test
+    public void idTokenHintES384(
+            final String userId, final String userSecret, final String redirectUri, final String redirectUris,
+            final String sectorIdentifierUri) throws Exception {
+        showTitle("idTokenHintES384");
+
+        List<ResponseType> responseTypes = Arrays.asList(ResponseType.TOKEN, ResponseType.ID_TOKEN);
+
+        // 1. Register client
+        RegisterRequest registerRequest = new RegisterRequest(ApplicationType.WEB, "oxAuth test app",
+                StringUtils.spaceSeparatedToList(redirectUris));
+        registerRequest.setResponseTypes(responseTypes);
+        registerRequest.setSectorIdentifierUri(sectorIdentifierUri);
+        registerRequest.setIdTokenSignedResponseAlg(SignatureAlgorithm.ES384);
+
+        RegisterClient registerClient = new RegisterClient(registrationEndpoint);
+        registerClient.setRequest(registerRequest);
+        RegisterResponse registerResponse = registerClient.exec();
+
+        showClient(registerClient);
+        assertEquals(registerResponse.getStatus(), 200, "Unexpected response code: " + registerResponse.getEntity());
+        assertNotNull(registerResponse.getClientId());
+        assertNotNull(registerResponse.getClientSecret());
+        assertNotNull(registerResponse.getRegistrationAccessToken());
+        assertNotNull(registerResponse.getClientIdIssuedAt());
+        assertNotNull(registerResponse.getClientSecretExpiresAt());
+
+        String clientId = registerResponse.getClientId();
+
+        // 2. Request authorization
+        List<String> scopes = Arrays.asList("openid");
+        String nonce = UUID.randomUUID().toString();
+        String state = UUID.randomUUID().toString();
+
+        AuthorizationRequest authorizationRequest = new AuthorizationRequest(responseTypes, clientId, scopes, redirectUri, nonce);
+        authorizationRequest.setState(state);
+
+        AuthorizeClient authorizeClient = new AuthorizeClient(authorizationEndpoint);
+        authorizeClient.setRequest(authorizationRequest);
+
+        AuthorizationResponse authorizationResponse = authenticateResourceOwnerAndGrantAccess(
+                authorizationEndpoint, authorizationRequest, userId, userSecret);
+
+        assertNotNull(authorizationResponse.getLocation(), "The location is null");
+        assertNotNull(authorizationResponse.getAccessToken(), "The accessToken is null");
+        assertNotNull(authorizationResponse.getTokenType(), "The tokenType is null");
+        assertNotNull(authorizationResponse.getIdToken(), "The idToken is null");
+        assertNotNull(authorizationResponse.getState(), "The state is null");
+
+        String idToken = authorizationResponse.getIdToken();
+
+        // 3. Validate id_token
+        Jwt jwt = Jwt.parse(idToken);
+        assertNotNull(jwt.getHeader().getClaimAsString(JwtHeaderName.TYPE));
+        assertNotNull(jwt.getHeader().getClaimAsString(JwtHeaderName.ALGORITHM));
+        assertNotNull(jwt.getClaims().getClaimAsString(JwtClaimName.ISSUER));
+        assertNotNull(jwt.getClaims().getClaimAsString(JwtClaimName.AUDIENCE));
+        assertNotNull(jwt.getClaims().getClaimAsString(JwtClaimName.EXPIRATION_TIME));
+        assertNotNull(jwt.getClaims().getClaimAsString(JwtClaimName.ISSUED_AT));
+        assertNotNull(jwt.getClaims().getClaimAsString(JwtClaimName.SUBJECT_IDENTIFIER));
+        assertNotNull(jwt.getClaims().getClaimAsString(JwtClaimName.ACCESS_TOKEN_HASH));
+        assertNotNull(jwt.getClaims().getClaimAsString(JwtClaimName.AUTHENTICATION_TIME));
+
+        ECDSAPublicKey publicKey = JwkClient.getECDSAPublicKey(
+                jwksUri,
+                jwt.getHeader().getClaimAsString(JwtHeaderName.KEY_ID));
+        ECDSASigner ecdsaSigner = new ECDSASigner(SignatureAlgorithm.ES384, publicKey);
+
+        assertTrue(ecdsaSigner.validate(jwt));
+
+        idTokenHintES384 = idToken;
+    }
+
+    @Parameters({"userId", "userSecret", "redirectUri", "redirectUris", "sectorIdentifierUri"})
+    @Test
+    public void idTokenHintES512(
+            final String userId, final String userSecret, final String redirectUri, final String redirectUris,
+            final String sectorIdentifierUri) throws Exception {
+        showTitle("idTokenHintES512");
+
+        List<ResponseType> responseTypes = Arrays.asList(ResponseType.TOKEN, ResponseType.ID_TOKEN);
+
+        // 1. Register client
+        RegisterRequest registerRequest = new RegisterRequest(ApplicationType.WEB, "oxAuth test app",
+                StringUtils.spaceSeparatedToList(redirectUris));
+        registerRequest.setResponseTypes(responseTypes);
+        registerRequest.setSectorIdentifierUri(sectorIdentifierUri);
+        registerRequest.setIdTokenSignedResponseAlg(SignatureAlgorithm.ES512);
+
+        RegisterClient registerClient = new RegisterClient(registrationEndpoint);
+        registerClient.setRequest(registerRequest);
+        RegisterResponse registerResponse = registerClient.exec();
+
+        showClient(registerClient);
+        assertEquals(registerResponse.getStatus(), 200, "Unexpected response code: " + registerResponse.getEntity());
+        assertNotNull(registerResponse.getClientId());
+        assertNotNull(registerResponse.getClientSecret());
+        assertNotNull(registerResponse.getRegistrationAccessToken());
+        assertNotNull(registerResponse.getClientIdIssuedAt());
+        assertNotNull(registerResponse.getClientSecretExpiresAt());
+
+        String clientId = registerResponse.getClientId();
+
+        // 2. Request authorization
+        List<String> scopes = Arrays.asList("openid");
+        String nonce = UUID.randomUUID().toString();
+        String state = UUID.randomUUID().toString();
+
+        AuthorizationRequest authorizationRequest = new AuthorizationRequest(responseTypes, clientId, scopes, redirectUri, nonce);
+        authorizationRequest.setState(state);
+
+        AuthorizeClient authorizeClient = new AuthorizeClient(authorizationEndpoint);
+        authorizeClient.setRequest(authorizationRequest);
+
+        AuthorizationResponse authorizationResponse = authenticateResourceOwnerAndGrantAccess(
+                authorizationEndpoint, authorizationRequest, userId, userSecret);
+
+        assertNotNull(authorizationResponse.getLocation(), "The location is null");
+        assertNotNull(authorizationResponse.getAccessToken(), "The accessToken is null");
+        assertNotNull(authorizationResponse.getTokenType(), "The tokenType is null");
+        assertNotNull(authorizationResponse.getIdToken(), "The idToken is null");
+        assertNotNull(authorizationResponse.getState(), "The state is null");
+
+        String idToken = authorizationResponse.getIdToken();
+
+        // 3. Validate id_token
+        Jwt jwt = Jwt.parse(idToken);
+        assertNotNull(jwt.getHeader().getClaimAsString(JwtHeaderName.TYPE));
+        assertNotNull(jwt.getHeader().getClaimAsString(JwtHeaderName.ALGORITHM));
+        assertNotNull(jwt.getClaims().getClaimAsString(JwtClaimName.ISSUER));
+        assertNotNull(jwt.getClaims().getClaimAsString(JwtClaimName.AUDIENCE));
+        assertNotNull(jwt.getClaims().getClaimAsString(JwtClaimName.EXPIRATION_TIME));
+        assertNotNull(jwt.getClaims().getClaimAsString(JwtClaimName.ISSUED_AT));
+        assertNotNull(jwt.getClaims().getClaimAsString(JwtClaimName.SUBJECT_IDENTIFIER));
+        assertNotNull(jwt.getClaims().getClaimAsString(JwtClaimName.ACCESS_TOKEN_HASH));
+        assertNotNull(jwt.getClaims().getClaimAsString(JwtClaimName.AUTHENTICATION_TIME));
+
+        ECDSAPublicKey publicKey = JwkClient.getECDSAPublicKey(
+                jwksUri,
+                jwt.getHeader().getClaimAsString(JwtHeaderName.KEY_ID));
+        ECDSASigner ecdsaSigner = new ECDSASigner(SignatureAlgorithm.ES512, publicKey);
+
+        assertTrue(ecdsaSigner.validate(jwt));
+
+        idTokenHintES512 = idToken;
+    }
+
+    @Parameters({"userId", "userSecret", "redirectUri", "redirectUris", "sectorIdentifierUri"})
+    @Test
+    public void idTokenHintPS256(
+            final String userId, final String userSecret, final String redirectUri, final String redirectUris,
+            final String sectorIdentifierUri) throws Exception {
+        showTitle("idTokenHintPS256");
+
+        List<ResponseType> responseTypes = Arrays.asList(ResponseType.TOKEN, ResponseType.ID_TOKEN);
+
+        // 1. Register client
+        RegisterRequest registerRequest = new RegisterRequest(ApplicationType.WEB, "oxAuth test app",
+                StringUtils.spaceSeparatedToList(redirectUris));
+        registerRequest.setResponseTypes(responseTypes);
+        registerRequest.setSectorIdentifierUri(sectorIdentifierUri);
+        registerRequest.setIdTokenSignedResponseAlg(SignatureAlgorithm.PS256);
+
+        RegisterClient registerClient = new RegisterClient(registrationEndpoint);
+        registerClient.setRequest(registerRequest);
+        RegisterResponse registerResponse = registerClient.exec();
+
+        showClient(registerClient);
+        assertEquals(registerResponse.getStatus(), 200, "Unexpected response code: " + registerResponse.getEntity());
+        assertNotNull(registerResponse.getClientId());
+        assertNotNull(registerResponse.getClientSecret());
+        assertNotNull(registerResponse.getRegistrationAccessToken());
+        assertNotNull(registerResponse.getClientIdIssuedAt());
+        assertNotNull(registerResponse.getClientSecretExpiresAt());
+
+        String clientId = registerResponse.getClientId();
+
+        // 2. Request authorization
+        List<String> scopes = Arrays.asList("openid");
+        String nonce = UUID.randomUUID().toString();
+        String state = UUID.randomUUID().toString();
+
+        AuthorizationRequest authorizationRequest = new AuthorizationRequest(responseTypes, clientId, scopes, redirectUri, nonce);
+        authorizationRequest.setState(state);
+
+        AuthorizeClient authorizeClient = new AuthorizeClient(authorizationEndpoint);
+        authorizeClient.setRequest(authorizationRequest);
+
+        AuthorizationResponse authorizationResponse = authenticateResourceOwnerAndGrantAccess(
+                authorizationEndpoint, authorizationRequest, userId, userSecret);
+
+        assertNotNull(authorizationResponse.getLocation(), "The location is null");
+        assertNotNull(authorizationResponse.getAccessToken(), "The accessToken is null");
+        assertNotNull(authorizationResponse.getTokenType(), "The tokenType is null");
+        assertNotNull(authorizationResponse.getIdToken(), "The idToken is null");
+        assertNotNull(authorizationResponse.getState(), "The state is null");
+
+        String idToken = authorizationResponse.getIdToken();
+
+        // 3. Validate id_token
+        Jwt jwt = Jwt.parse(idToken);
+        assertNotNull(jwt.getHeader().getClaimAsString(JwtHeaderName.TYPE));
+        assertNotNull(jwt.getHeader().getClaimAsString(JwtHeaderName.ALGORITHM));
+        assertNotNull(jwt.getClaims().getClaimAsString(JwtClaimName.ISSUER));
+        assertNotNull(jwt.getClaims().getClaimAsString(JwtClaimName.AUDIENCE));
+        assertNotNull(jwt.getClaims().getClaimAsString(JwtClaimName.EXPIRATION_TIME));
+        assertNotNull(jwt.getClaims().getClaimAsString(JwtClaimName.ISSUED_AT));
+        assertNotNull(jwt.getClaims().getClaimAsString(JwtClaimName.SUBJECT_IDENTIFIER));
+        assertNotNull(jwt.getClaims().getClaimAsString(JwtClaimName.ACCESS_TOKEN_HASH));
+        assertNotNull(jwt.getClaims().getClaimAsString(JwtClaimName.AUTHENTICATION_TIME));
+
+        RSAPublicKey publicKey = JwkClient.getRSAPublicKey(
+                jwksUri,
+                jwt.getHeader().getClaimAsString(JwtHeaderName.KEY_ID));
+        RSASigner rsaSigner = new RSASigner(SignatureAlgorithm.PS256, publicKey);
+
+        assertTrue(rsaSigner.validate(jwt));
+
+        idTokenHintPS256 = idToken;
+    }
+
+    @Parameters({"userId", "userSecret", "redirectUri", "redirectUris", "sectorIdentifierUri"})
+    @Test
+    public void idTokenHintPS384(
+            final String userId, final String userSecret, final String redirectUri, final String redirectUris,
+            final String sectorIdentifierUri) throws Exception {
+        showTitle("idTokenHintPS384");
+
+        List<ResponseType> responseTypes = Arrays.asList(ResponseType.TOKEN, ResponseType.ID_TOKEN);
+
+        // 1. Register client
+        RegisterRequest registerRequest = new RegisterRequest(ApplicationType.WEB, "oxAuth test app",
+                StringUtils.spaceSeparatedToList(redirectUris));
+        registerRequest.setResponseTypes(responseTypes);
+        registerRequest.setSectorIdentifierUri(sectorIdentifierUri);
+        registerRequest.setIdTokenSignedResponseAlg(SignatureAlgorithm.PS384);
+
+        RegisterClient registerClient = new RegisterClient(registrationEndpoint);
+        registerClient.setRequest(registerRequest);
+        RegisterResponse registerResponse = registerClient.exec();
+
+        showClient(registerClient);
+        assertEquals(registerResponse.getStatus(), 200, "Unexpected response code: " + registerResponse.getEntity());
+        assertNotNull(registerResponse.getClientId());
+        assertNotNull(registerResponse.getClientSecret());
+        assertNotNull(registerResponse.getRegistrationAccessToken());
+        assertNotNull(registerResponse.getClientIdIssuedAt());
+        assertNotNull(registerResponse.getClientSecretExpiresAt());
+
+        String clientId = registerResponse.getClientId();
+
+        // 2. Request authorization
+        List<String> scopes = Arrays.asList("openid");
+        String nonce = UUID.randomUUID().toString();
+        String state = UUID.randomUUID().toString();
+
+        AuthorizationRequest authorizationRequest = new AuthorizationRequest(responseTypes, clientId, scopes, redirectUri, nonce);
+        authorizationRequest.setState(state);
+
+        AuthorizeClient authorizeClient = new AuthorizeClient(authorizationEndpoint);
+        authorizeClient.setRequest(authorizationRequest);
+
+        AuthorizationResponse authorizationResponse = authenticateResourceOwnerAndGrantAccess(
+                authorizationEndpoint, authorizationRequest, userId, userSecret);
+
+        assertNotNull(authorizationResponse.getLocation(), "The location is null");
+        assertNotNull(authorizationResponse.getAccessToken(), "The accessToken is null");
+        assertNotNull(authorizationResponse.getTokenType(), "The tokenType is null");
+        assertNotNull(authorizationResponse.getIdToken(), "The idToken is null");
+        assertNotNull(authorizationResponse.getState(), "The state is null");
+
+        String idToken = authorizationResponse.getIdToken();
+
+        // 3. Validate id_token
+        Jwt jwt = Jwt.parse(idToken);
+        assertNotNull(jwt.getHeader().getClaimAsString(JwtHeaderName.TYPE));
+        assertNotNull(jwt.getHeader().getClaimAsString(JwtHeaderName.ALGORITHM));
+        assertNotNull(jwt.getClaims().getClaimAsString(JwtClaimName.ISSUER));
+        assertNotNull(jwt.getClaims().getClaimAsString(JwtClaimName.AUDIENCE));
+        assertNotNull(jwt.getClaims().getClaimAsString(JwtClaimName.EXPIRATION_TIME));
+        assertNotNull(jwt.getClaims().getClaimAsString(JwtClaimName.ISSUED_AT));
+        assertNotNull(jwt.getClaims().getClaimAsString(JwtClaimName.SUBJECT_IDENTIFIER));
+        assertNotNull(jwt.getClaims().getClaimAsString(JwtClaimName.ACCESS_TOKEN_HASH));
+        assertNotNull(jwt.getClaims().getClaimAsString(JwtClaimName.AUTHENTICATION_TIME));
+
+        RSAPublicKey publicKey = JwkClient.getRSAPublicKey(
+                jwksUri,
+                jwt.getHeader().getClaimAsString(JwtHeaderName.KEY_ID));
+        RSASigner rsaSigner = new RSASigner(SignatureAlgorithm.PS384, publicKey);
+
+        assertTrue(rsaSigner.validate(jwt));
+
+        idTokenHintPS384 = idToken;
+    }
+
+    @Parameters({"userId", "userSecret", "redirectUri", "redirectUris", "sectorIdentifierUri"})
+    @Test
+    public void idTokenHintPS512(
+            final String userId, final String userSecret, final String redirectUri, final String redirectUris,
+            final String sectorIdentifierUri) throws Exception {
+        showTitle("idTokenHintPS512");
+
+        List<ResponseType> responseTypes = Arrays.asList(ResponseType.TOKEN, ResponseType.ID_TOKEN);
+
+        // 1. Register client
+        RegisterRequest registerRequest = new RegisterRequest(ApplicationType.WEB, "oxAuth test app",
+                StringUtils.spaceSeparatedToList(redirectUris));
+        registerRequest.setResponseTypes(responseTypes);
+        registerRequest.setSectorIdentifierUri(sectorIdentifierUri);
+        registerRequest.setIdTokenSignedResponseAlg(SignatureAlgorithm.PS512);
+
+        RegisterClient registerClient = new RegisterClient(registrationEndpoint);
+        registerClient.setRequest(registerRequest);
+        RegisterResponse registerResponse = registerClient.exec();
+
+        showClient(registerClient);
+        assertEquals(registerResponse.getStatus(), 200, "Unexpected response code: " + registerResponse.getEntity());
+        assertNotNull(registerResponse.getClientId());
+        assertNotNull(registerResponse.getClientSecret());
+        assertNotNull(registerResponse.getRegistrationAccessToken());
+        assertNotNull(registerResponse.getClientIdIssuedAt());
+        assertNotNull(registerResponse.getClientSecretExpiresAt());
+
+        String clientId = registerResponse.getClientId();
+
+        // 2. Request authorization
+        List<String> scopes = Arrays.asList("openid");
+        String nonce = UUID.randomUUID().toString();
+        String state = UUID.randomUUID().toString();
+
+        AuthorizationRequest authorizationRequest = new AuthorizationRequest(responseTypes, clientId, scopes, redirectUri, nonce);
+        authorizationRequest.setState(state);
+
+        AuthorizeClient authorizeClient = new AuthorizeClient(authorizationEndpoint);
+        authorizeClient.setRequest(authorizationRequest);
+
+        AuthorizationResponse authorizationResponse = authenticateResourceOwnerAndGrantAccess(
+                authorizationEndpoint, authorizationRequest, userId, userSecret);
+
+        assertNotNull(authorizationResponse.getLocation(), "The location is null");
+        assertNotNull(authorizationResponse.getAccessToken(), "The accessToken is null");
+        assertNotNull(authorizationResponse.getTokenType(), "The tokenType is null");
+        assertNotNull(authorizationResponse.getIdToken(), "The idToken is null");
+        assertNotNull(authorizationResponse.getState(), "The state is null");
+
+        String idToken = authorizationResponse.getIdToken();
+
+        // 3. Validate id_token
+        Jwt jwt = Jwt.parse(idToken);
+        assertNotNull(jwt.getHeader().getClaimAsString(JwtHeaderName.TYPE));
+        assertNotNull(jwt.getHeader().getClaimAsString(JwtHeaderName.ALGORITHM));
+        assertNotNull(jwt.getClaims().getClaimAsString(JwtClaimName.ISSUER));
+        assertNotNull(jwt.getClaims().getClaimAsString(JwtClaimName.AUDIENCE));
+        assertNotNull(jwt.getClaims().getClaimAsString(JwtClaimName.EXPIRATION_TIME));
+        assertNotNull(jwt.getClaims().getClaimAsString(JwtClaimName.ISSUED_AT));
+        assertNotNull(jwt.getClaims().getClaimAsString(JwtClaimName.SUBJECT_IDENTIFIER));
+        assertNotNull(jwt.getClaims().getClaimAsString(JwtClaimName.ACCESS_TOKEN_HASH));
+        assertNotNull(jwt.getClaims().getClaimAsString(JwtClaimName.AUTHENTICATION_TIME));
+
+        RSAPublicKey publicKey = JwkClient.getRSAPublicKey(
+                jwksUri,
+                jwt.getHeader().getClaimAsString(JwtHeaderName.KEY_ID));
+        RSASigner rsaSigner = new RSASigner(SignatureAlgorithm.PS512, publicKey);
+
+        assertTrue(rsaSigner.validate(jwt));
+
+        idTokenHintPS512 = idToken;
+    }
+
+    @Parameters({"userId", "userSecret", "redirectUri", "redirectUris", "sectorIdentifierUri"})
+    @Test
+    public void idTokenHintAlgA128KWEncA128GCM(
+            final String userId, final String userSecret, final String redirectUri, final String redirectUris,
+            final String sectorIdentifierUri) throws Exception {
+        showTitle("idTokenHintAlgA128KWEncA128GCM");
+
+        List<ResponseType> responseTypes = Arrays.asList(ResponseType.TOKEN, ResponseType.ID_TOKEN);
+
+        // 1. Register client
+        RegisterRequest registerRequest = new RegisterRequest(ApplicationType.WEB, "oxAuth test app",
+                StringUtils.spaceSeparatedToList(redirectUris));
+        registerRequest.setResponseTypes(responseTypes);
+        registerRequest.setSectorIdentifierUri(sectorIdentifierUri);
+        registerRequest.setIdTokenEncryptedResponseAlg(KeyEncryptionAlgorithm.A128KW);
+        registerRequest.setIdTokenEncryptedResponseEnc(BlockEncryptionAlgorithm.A128GCM);
+
+        RegisterClient registerClient = new RegisterClient(registrationEndpoint);
+        registerClient.setRequest(registerRequest);
+        RegisterResponse registerResponse = registerClient.exec();
+
+        showClient(registerClient);
+        assertEquals(registerResponse.getStatus(), 200, "Unexpected response code: " + registerResponse.getEntity());
+        assertNotNull(registerResponse.getClientId());
+        assertNotNull(registerResponse.getClientSecret());
+        assertNotNull(registerResponse.getRegistrationAccessToken());
+        assertNotNull(registerResponse.getClientIdIssuedAt());
+        assertNotNull(registerResponse.getClientSecretExpiresAt());
+
+        String clientId = registerResponse.getClientId();
+        String clientSecret = registerResponse.getClientSecret();
+
+        // 2. Request authorization
+        List<String> scopes = Arrays.asList("openid");
+        String nonce = UUID.randomUUID().toString();
+        String state = UUID.randomUUID().toString();
+
+        AuthorizationRequest authorizationRequest = new AuthorizationRequest(responseTypes, clientId, scopes, redirectUri, nonce);
+        authorizationRequest.setState(state);
+
+        AuthorizeClient authorizeClient = new AuthorizeClient(authorizationEndpoint);
+        authorizeClient.setRequest(authorizationRequest);
+
+        AuthorizationResponse authorizationResponse = authenticateResourceOwnerAndGrantAccess(
+                authorizationEndpoint, authorizationRequest, userId, userSecret);
+
+        assertNotNull(authorizationResponse.getLocation(), "The location is null");
+        assertNotNull(authorizationResponse.getAccessToken(), "The accessToken is null");
+        assertNotNull(authorizationResponse.getTokenType(), "The tokenType is null");
+        assertNotNull(authorizationResponse.getIdToken(), "The idToken is null");
+        assertNotNull(authorizationResponse.getState(), "The state is null");
+
+        String idToken = authorizationResponse.getIdToken();
+
+        // 3. Validate id_token
+        Jwe jwe = Jwe.parse(idToken, null, clientSecret.getBytes(Util.UTF8_STRING_ENCODING));
+        assertNotNull(jwe.getHeader().getClaimAsString(JwtHeaderName.TYPE));
+        assertNotNull(jwe.getHeader().getClaimAsString(JwtHeaderName.ALGORITHM));
+        assertNotNull(jwe.getClaims().getClaimAsString(JwtClaimName.ISSUER));
+        assertNotNull(jwe.getClaims().getClaimAsString(JwtClaimName.AUDIENCE));
+        assertNotNull(jwe.getClaims().getClaimAsString(JwtClaimName.EXPIRATION_TIME));
+        assertNotNull(jwe.getClaims().getClaimAsString(JwtClaimName.ISSUED_AT));
+        assertNotNull(jwe.getClaims().getClaimAsString(JwtClaimName.SUBJECT_IDENTIFIER));
+        assertNotNull(jwe.getClaims().getClaimAsString(JwtClaimName.ACCESS_TOKEN_HASH));
+        assertNotNull(jwe.getClaims().getClaimAsString(JwtClaimName.AUTHENTICATION_TIME));
+
+        idTokenHintAlgA128KWEncA128GCM = idToken;
+    }
+
+    @Parameters({"userId", "userSecret", "redirectUri", "redirectUris", "sectorIdentifierUri"})
+    @Test
+    public void idTokenHintAlgA256KWEncA256GCM(
+            final String userId, final String userSecret, final String redirectUri, final String redirectUris,
+            final String sectorIdentifierUri) throws Exception {
+        showTitle("idTokenHintAlgA256KWEncA256GCM");
+
+        List<ResponseType> responseTypes = Arrays.asList(ResponseType.TOKEN, ResponseType.ID_TOKEN);
+
+        // 1. Register client
+        RegisterRequest registerRequest = new RegisterRequest(ApplicationType.WEB, "oxAuth test app",
+                StringUtils.spaceSeparatedToList(redirectUris));
+        registerRequest.setResponseTypes(responseTypes);
+        registerRequest.setSectorIdentifierUri(sectorIdentifierUri);
+        registerRequest.setIdTokenEncryptedResponseAlg(KeyEncryptionAlgorithm.A256KW);
+        registerRequest.setIdTokenEncryptedResponseEnc(BlockEncryptionAlgorithm.A256GCM);
+
+        RegisterClient registerClient = new RegisterClient(registrationEndpoint);
+        registerClient.setRequest(registerRequest);
+        RegisterResponse registerResponse = registerClient.exec();
+
+        showClient(registerClient);
+        assertEquals(registerResponse.getStatus(), 200, "Unexpected response code: " + registerResponse.getEntity());
+        assertNotNull(registerResponse.getClientId());
+        assertNotNull(registerResponse.getClientSecret());
+        assertNotNull(registerResponse.getRegistrationAccessToken());
+        assertNotNull(registerResponse.getClientIdIssuedAt());
+        assertNotNull(registerResponse.getClientSecretExpiresAt());
+
+        String clientId = registerResponse.getClientId();
+        String clientSecret = registerResponse.getClientSecret();
+
+        // 2. Request authorization
+        List<String> scopes = Arrays.asList("openid");
+        String nonce = UUID.randomUUID().toString();
+        String state = UUID.randomUUID().toString();
+
+        AuthorizationRequest authorizationRequest = new AuthorizationRequest(responseTypes, clientId, scopes, redirectUri, nonce);
+        authorizationRequest.setState(state);
+
+        AuthorizeClient authorizeClient = new AuthorizeClient(authorizationEndpoint);
+        authorizeClient.setRequest(authorizationRequest);
+
+        AuthorizationResponse authorizationResponse = authenticateResourceOwnerAndGrantAccess(
+                authorizationEndpoint, authorizationRequest, userId, userSecret);
+
+        assertNotNull(authorizationResponse.getLocation(), "The location is null");
+        assertNotNull(authorizationResponse.getAccessToken(), "The accessToken is null");
+        assertNotNull(authorizationResponse.getTokenType(), "The tokenType is null");
+        assertNotNull(authorizationResponse.getIdToken(), "The idToken is null");
+        assertNotNull(authorizationResponse.getState(), "The state is null");
+
+        String idToken = authorizationResponse.getIdToken();
+
+        // 3. Validate id_token
+        Jwe jwe = Jwe.parse(idToken, null, clientSecret.getBytes(Util.UTF8_STRING_ENCODING));
+        assertNotNull(jwe.getHeader().getClaimAsString(JwtHeaderName.TYPE));
+        assertNotNull(jwe.getHeader().getClaimAsString(JwtHeaderName.ALGORITHM));
+        assertNotNull(jwe.getClaims().getClaimAsString(JwtClaimName.ISSUER));
+        assertNotNull(jwe.getClaims().getClaimAsString(JwtClaimName.AUDIENCE));
+        assertNotNull(jwe.getClaims().getClaimAsString(JwtClaimName.EXPIRATION_TIME));
+        assertNotNull(jwe.getClaims().getClaimAsString(JwtClaimName.ISSUED_AT));
+        assertNotNull(jwe.getClaims().getClaimAsString(JwtClaimName.SUBJECT_IDENTIFIER));
+        assertNotNull(jwe.getClaims().getClaimAsString(JwtClaimName.ACCESS_TOKEN_HASH));
+        assertNotNull(jwe.getClaims().getClaimAsString(JwtClaimName.AUTHENTICATION_TIME));
+
+        idTokenHintAlgA256KWEncA256GCM = idToken;
+    }
+
+    @Parameters({"userId", "userSecret", "redirectUri", "redirectUris", "sectorIdentifierUri",
+            "clientJwksUri", "RSA1_5_keyId", "keyStoreFile", "keyStoreSecret"})
+    @Test
+    public void idTokenHintAlgRSA15EncA128CBCPLUSHS256(
+            final String userId, final String userSecret, final String redirectUri, final String redirectUris,
+            final String sectorIdentifierUri, final String clientJwksUri, final String keyId, final String keyStoreFile,
+            final String keyStoreSecret) throws Exception {
+        showTitle("idTokenHintAlgRSA15EncA128CBCPLUSHS256");
+
+        List<ResponseType> responseTypes = Arrays.asList(ResponseType.TOKEN, ResponseType.ID_TOKEN);
+
+        // 1. Register client
+        RegisterRequest registerRequest = new RegisterRequest(ApplicationType.WEB, "oxAuth test app",
+                StringUtils.spaceSeparatedToList(redirectUris));
+        registerRequest.setResponseTypes(responseTypes);
+        registerRequest.setSectorIdentifierUri(sectorIdentifierUri);
+        registerRequest.setJwksUri(clientJwksUri);
+        registerRequest.setIdTokenEncryptedResponseAlg(KeyEncryptionAlgorithm.RSA1_5);
+        registerRequest.setIdTokenEncryptedResponseEnc(BlockEncryptionAlgorithm.A128CBC_PLUS_HS256);
+
+        RegisterClient registerClient = new RegisterClient(registrationEndpoint);
+        registerClient.setRequest(registerRequest);
+        RegisterResponse registerResponse = registerClient.exec();
+
+        showClient(registerClient);
+        assertEquals(registerResponse.getStatus(), 200, "Unexpected response code: " + registerResponse.getEntity());
+        assertNotNull(registerResponse.getClientId());
+        assertNotNull(registerResponse.getClientSecret());
+        assertNotNull(registerResponse.getRegistrationAccessToken());
+        assertNotNull(registerResponse.getClientIdIssuedAt());
+        assertNotNull(registerResponse.getClientSecretExpiresAt());
+
+        String clientId = registerResponse.getClientId();
+
+        // 2. Request authorization
+        List<String> scopes = Arrays.asList("openid");
+        String nonce = UUID.randomUUID().toString();
+        String state = UUID.randomUUID().toString();
+
+        AuthorizationRequest authorizationRequest = new AuthorizationRequest(responseTypes, clientId, scopes, redirectUri, nonce);
+        authorizationRequest.setState(state);
+
+        AuthorizeClient authorizeClient = new AuthorizeClient(authorizationEndpoint);
+        authorizeClient.setRequest(authorizationRequest);
+
+        AuthorizationResponse authorizationResponse = authenticateResourceOwnerAndGrantAccess(
+                authorizationEndpoint, authorizationRequest, userId, userSecret);
+
+        assertNotNull(authorizationResponse.getLocation(), "The location is null");
+        assertNotNull(authorizationResponse.getAccessToken(), "The accessToken is null");
+        assertNotNull(authorizationResponse.getTokenType(), "The tokenType is null");
+        assertNotNull(authorizationResponse.getIdToken(), "The idToken is null");
+        assertNotNull(authorizationResponse.getState(), "The state is null");
+
+        String idToken = authorizationResponse.getIdToken();
+
+        // 3. Validate id_token
+        OxAuthCryptoProvider cryptoProvider = new OxAuthCryptoProvider(keyStoreFile, keyStoreSecret, null);
+        PrivateKey privateKey = cryptoProvider.getPrivateKey(keyId);
+
+        Jwe jwe = Jwe.parse(idToken, privateKey, null);
+        assertNotNull(jwe.getHeader().getClaimAsString(JwtHeaderName.TYPE));
+        assertNotNull(jwe.getHeader().getClaimAsString(JwtHeaderName.ALGORITHM));
+        assertNotNull(jwe.getClaims().getClaimAsString(JwtClaimName.ISSUER));
+        assertNotNull(jwe.getClaims().getClaimAsString(JwtClaimName.AUDIENCE));
+        assertNotNull(jwe.getClaims().getClaimAsString(JwtClaimName.EXPIRATION_TIME));
+        assertNotNull(jwe.getClaims().getClaimAsString(JwtClaimName.ISSUED_AT));
+        assertNotNull(jwe.getClaims().getClaimAsString(JwtClaimName.SUBJECT_IDENTIFIER));
+        assertNotNull(jwe.getClaims().getClaimAsString(JwtClaimName.ACCESS_TOKEN_HASH));
+        assertNotNull(jwe.getClaims().getClaimAsString(JwtClaimName.AUTHENTICATION_TIME));
+
+        idTokenHintAlgRSA15EncA128CBCPLUSHS256 = idToken;
+    }
+
+    @Parameters({"userId", "userSecret", "redirectUri", "redirectUris", "sectorIdentifierUri",
+            "clientJwksUri", "RSA1_5_keyId", "keyStoreFile", "keyStoreSecret"})
+    @Test
+    public void idTokenHintAlgRSA15EncA256CBCPLUSHS512(
+            final String userId, final String userSecret, final String redirectUri, final String redirectUris,
+            final String sectorIdentifierUri, final String clientJwksUri, final String keyId, final String keyStoreFile,
+            final String keyStoreSecret) throws Exception {
+        showTitle("idTokenHintAlgRSA15EncA256CBCPLUSHS512");
+
+        List<ResponseType> responseTypes = Arrays.asList(ResponseType.TOKEN, ResponseType.ID_TOKEN);
+
+        // 1. Register client
+        RegisterRequest registerRequest = new RegisterRequest(ApplicationType.WEB, "oxAuth test app",
+                StringUtils.spaceSeparatedToList(redirectUris));
+        registerRequest.setResponseTypes(responseTypes);
+        registerRequest.setSectorIdentifierUri(sectorIdentifierUri);
+        registerRequest.setJwksUri(clientJwksUri);
+        registerRequest.setIdTokenEncryptedResponseAlg(KeyEncryptionAlgorithm.RSA1_5);
+        registerRequest.setIdTokenEncryptedResponseEnc(BlockEncryptionAlgorithm.A256CBC_PLUS_HS512);
+
+        RegisterClient registerClient = new RegisterClient(registrationEndpoint);
+        registerClient.setRequest(registerRequest);
+        RegisterResponse registerResponse = registerClient.exec();
+
+        showClient(registerClient);
+        assertEquals(registerResponse.getStatus(), 200, "Unexpected response code: " + registerResponse.getEntity());
+        assertNotNull(registerResponse.getClientId());
+        assertNotNull(registerResponse.getClientSecret());
+        assertNotNull(registerResponse.getRegistrationAccessToken());
+        assertNotNull(registerResponse.getClientIdIssuedAt());
+        assertNotNull(registerResponse.getClientSecretExpiresAt());
+
+        String clientId = registerResponse.getClientId();
+
+        // 2. Request authorization
+        List<String> scopes = Arrays.asList("openid");
+        String nonce = UUID.randomUUID().toString();
+        String state = UUID.randomUUID().toString();
+
+        AuthorizationRequest authorizationRequest = new AuthorizationRequest(responseTypes, clientId, scopes, redirectUri, nonce);
+        authorizationRequest.setState(state);
+
+        AuthorizeClient authorizeClient = new AuthorizeClient(authorizationEndpoint);
+        authorizeClient.setRequest(authorizationRequest);
+
+        AuthorizationResponse authorizationResponse = authenticateResourceOwnerAndGrantAccess(
+                authorizationEndpoint, authorizationRequest, userId, userSecret);
+
+        assertNotNull(authorizationResponse.getLocation(), "The location is null");
+        assertNotNull(authorizationResponse.getAccessToken(), "The accessToken is null");
+        assertNotNull(authorizationResponse.getTokenType(), "The tokenType is null");
+        assertNotNull(authorizationResponse.getIdToken(), "The idToken is null");
+        assertNotNull(authorizationResponse.getState(), "The state is null");
+
+        String idToken = authorizationResponse.getIdToken();
+
+        // 3. Validate id_token
+        OxAuthCryptoProvider cryptoProvider = new OxAuthCryptoProvider(keyStoreFile, keyStoreSecret, null);
+        PrivateKey privateKey = cryptoProvider.getPrivateKey(keyId);
+
+        Jwe jwe = Jwe.parse(idToken, privateKey, null);
+        assertNotNull(jwe.getHeader().getClaimAsString(JwtHeaderName.TYPE));
+        assertNotNull(jwe.getHeader().getClaimAsString(JwtHeaderName.ALGORITHM));
+        assertNotNull(jwe.getClaims().getClaimAsString(JwtClaimName.ISSUER));
+        assertNotNull(jwe.getClaims().getClaimAsString(JwtClaimName.AUDIENCE));
+        assertNotNull(jwe.getClaims().getClaimAsString(JwtClaimName.EXPIRATION_TIME));
+        assertNotNull(jwe.getClaims().getClaimAsString(JwtClaimName.ISSUED_AT));
+        assertNotNull(jwe.getClaims().getClaimAsString(JwtClaimName.SUBJECT_IDENTIFIER));
+        assertNotNull(jwe.getClaims().getClaimAsString(JwtClaimName.ACCESS_TOKEN_HASH));
+        assertNotNull(jwe.getClaims().getClaimAsString(JwtClaimName.AUTHENTICATION_TIME));
+
+        idTokenHintAlgRSA15EncA256CBCPLUSHS512 = idToken;
+    }
+
+    @Parameters({"userId", "userSecret", "redirectUri", "redirectUris", "sectorIdentifierUri",
+            "clientJwksUri", "RSA_OAEP_keyId", "keyStoreFile", "keyStoreSecret"})
+    @Test
+    public void idTokenHintAlgRSAOAEPEncA256GCM(
+            final String userId, final String userSecret, final String redirectUri, final String redirectUris,
+            final String sectorIdentifierUri, final String clientJwksUri, final String keyId, final String keyStoreFile,
+            final String keyStoreSecret) throws Exception {
+        showTitle("idTokenHintAlgRSAOAEPEncA256GCM");
+
+        List<ResponseType> responseTypes = Arrays.asList(ResponseType.TOKEN, ResponseType.ID_TOKEN);
+
+        // 1. Register client
+        RegisterRequest registerRequest = new RegisterRequest(ApplicationType.WEB, "oxAuth test app",
+                StringUtils.spaceSeparatedToList(redirectUris));
+        registerRequest.setResponseTypes(responseTypes);
+        registerRequest.setSectorIdentifierUri(sectorIdentifierUri);
+        registerRequest.setJwksUri(clientJwksUri);
+        registerRequest.setIdTokenEncryptedResponseAlg(KeyEncryptionAlgorithm.RSA_OAEP);
+        registerRequest.setIdTokenEncryptedResponseEnc(BlockEncryptionAlgorithm.A256GCM);
+
+        RegisterClient registerClient = new RegisterClient(registrationEndpoint);
+        registerClient.setRequest(registerRequest);
+        RegisterResponse registerResponse = registerClient.exec();
+
+        showClient(registerClient);
+        assertEquals(registerResponse.getStatus(), 200, "Unexpected response code: " + registerResponse.getEntity());
+        assertNotNull(registerResponse.getClientId());
+        assertNotNull(registerResponse.getClientSecret());
+        assertNotNull(registerResponse.getRegistrationAccessToken());
+        assertNotNull(registerResponse.getClientIdIssuedAt());
+        assertNotNull(registerResponse.getClientSecretExpiresAt());
+
+        String clientId = registerResponse.getClientId();
+
+        // 2. Request authorization
+        List<String> scopes = Arrays.asList("openid");
+        String nonce = UUID.randomUUID().toString();
+        String state = UUID.randomUUID().toString();
+
+        AuthorizationRequest authorizationRequest = new AuthorizationRequest(responseTypes, clientId, scopes, redirectUri, nonce);
+        authorizationRequest.setState(state);
+
+        AuthorizeClient authorizeClient = new AuthorizeClient(authorizationEndpoint);
+        authorizeClient.setRequest(authorizationRequest);
+
+        AuthorizationResponse authorizationResponse = authenticateResourceOwnerAndGrantAccess(
+                authorizationEndpoint, authorizationRequest, userId, userSecret);
+
+        assertNotNull(authorizationResponse.getLocation(), "The location is null");
+        assertNotNull(authorizationResponse.getAccessToken(), "The accessToken is null");
+        assertNotNull(authorizationResponse.getTokenType(), "The tokenType is null");
+        assertNotNull(authorizationResponse.getIdToken(), "The idToken is null");
+        assertNotNull(authorizationResponse.getState(), "The state is null");
+
+        String idToken = authorizationResponse.getIdToken();
+
+        // 3. Validate id_token
+        OxAuthCryptoProvider cryptoProvider = new OxAuthCryptoProvider(keyStoreFile, keyStoreSecret, null);
+        PrivateKey privateKey = cryptoProvider.getPrivateKey(keyId);
+
+        Jwe jwe = Jwe.parse(idToken, privateKey, null);
+        assertNotNull(jwe.getHeader().getClaimAsString(JwtHeaderName.TYPE));
+        assertNotNull(jwe.getHeader().getClaimAsString(JwtHeaderName.ALGORITHM));
+        assertNotNull(jwe.getClaims().getClaimAsString(JwtClaimName.ISSUER));
+        assertNotNull(jwe.getClaims().getClaimAsString(JwtClaimName.AUDIENCE));
+        assertNotNull(jwe.getClaims().getClaimAsString(JwtClaimName.EXPIRATION_TIME));
+        assertNotNull(jwe.getClaims().getClaimAsString(JwtClaimName.ISSUED_AT));
+        assertNotNull(jwe.getClaims().getClaimAsString(JwtClaimName.SUBJECT_IDENTIFIER));
+        assertNotNull(jwe.getClaims().getClaimAsString(JwtClaimName.ACCESS_TOKEN_HASH));
+        assertNotNull(jwe.getClaims().getClaimAsString(JwtClaimName.AUTHENTICATION_TIME));
+
+        idTokenHintAlgRSAOAEPEncA256GCM = idToken;
+    }
+
+    @Parameters({"RS256_keyId", "userEmail", "dnName", "keyStoreFile", "keyStoreSecret"})
+    @Test
+    public void loginHintTokenRS256(
+            final String keyId, final String userEmail,
+            final String dnName, final String keyStoreFile, final String keyStoreSecret) throws Exception {
+        showTitle("loginHintTokenRS256");
+
+        JSONObject subjectValue = new JSONObject();
+        subjectValue.put("subject_type", "email");
+        subjectValue.put("email", userEmail);
+
+        Jwt jwt = new Jwt();
+        jwt.getHeader().setAlgorithm(SignatureAlgorithm.RS256);
+        jwt.getHeader().setKeyId(keyId);
+        jwt.getClaims().setClaim("subject", subjectValue);
+
+        OxAuthCryptoProvider cryptoProvider = new OxAuthCryptoProvider(keyStoreFile, keyStoreSecret, dnName);
+        String encodedSignature = cryptoProvider.sign(jwt.getSigningInput(), keyId, null, SignatureAlgorithm.RS256);
+        jwt.setEncodedSignature(encodedSignature);
+
+        loginHintTokenRS256 = jwt.toString();
+    }
+
+    @Parameters({"RS384_keyId", "userEmail", "dnName", "keyStoreFile", "keyStoreSecret"})
+    @Test
+    public void loginHintTokenRS384(
+            final String keyId, final String userEmail,
+            final String dnName, final String keyStoreFile, final String keyStoreSecret) throws Exception {
+        showTitle("loginHintTokenRS384");
+
+        JSONObject subjectValue = new JSONObject();
+        subjectValue.put("subject_type", "email");
+        subjectValue.put("email", userEmail);
+
+        Jwt jwt = new Jwt();
+        jwt.getHeader().setAlgorithm(SignatureAlgorithm.RS384);
+        jwt.getHeader().setKeyId(keyId);
+        jwt.getClaims().setClaim("subject", subjectValue);
+
+        OxAuthCryptoProvider cryptoProvider = new OxAuthCryptoProvider(keyStoreFile, keyStoreSecret, dnName);
+        String encodedSignature = cryptoProvider.sign(jwt.getSigningInput(), keyId, null, SignatureAlgorithm.RS384);
+        jwt.setEncodedSignature(encodedSignature);
+
+        loginHintTokenRS384 = jwt.toString();
+    }
+
+    @Parameters({"RS512_keyId", "userEmail", "dnName", "keyStoreFile", "keyStoreSecret"})
+    @Test
+    public void loginHintTokenRS512(
+            final String keyId, final String userEmail,
+            final String dnName, final String keyStoreFile, final String keyStoreSecret) throws Exception {
+        showTitle("loginHintTokenRS512");
+
+        JSONObject subjectValue = new JSONObject();
+        subjectValue.put("subject_type", "email");
+        subjectValue.put("email", userEmail);
+
+        Jwt jwt = new Jwt();
+        jwt.getHeader().setAlgorithm(SignatureAlgorithm.RS512);
+        jwt.getHeader().setKeyId(keyId);
+        jwt.getClaims().setClaim("subject", subjectValue);
+
+        OxAuthCryptoProvider cryptoProvider = new OxAuthCryptoProvider(keyStoreFile, keyStoreSecret, dnName);
+        String encodedSignature = cryptoProvider.sign(jwt.getSigningInput(), keyId, null, SignatureAlgorithm.RS512);
+        jwt.setEncodedSignature(encodedSignature);
+
+        loginHintTokenRS512 = jwt.toString();
+    }
+
+    @Parameters({"ES256_keyId", "userEmail", "dnName", "keyStoreFile", "keyStoreSecret"})
+    @Test
+    public void loginHintTokenES256(
+            final String keyId, final String userEmail,
+            final String dnName, final String keyStoreFile, final String keyStoreSecret) throws Exception {
+        showTitle("loginHintTokenES256");
+
+        JSONObject subjectValue = new JSONObject();
+        subjectValue.put("subject_type", "email");
+        subjectValue.put("email", userEmail);
+
+        Jwt jwt = new Jwt();
+        jwt.getHeader().setAlgorithm(SignatureAlgorithm.ES256);
+        jwt.getHeader().setKeyId(keyId);
+        jwt.getClaims().setClaim("subject", subjectValue);
+
+        OxAuthCryptoProvider cryptoProvider = new OxAuthCryptoProvider(keyStoreFile, keyStoreSecret, dnName);
+        String encodedSignature = cryptoProvider.sign(jwt.getSigningInput(), keyId, null, SignatureAlgorithm.ES256);
+        jwt.setEncodedSignature(encodedSignature);
+
+        loginHintTokenES256 = jwt.toString();
+    }
+
+    @Parameters({"ES384_keyId", "userEmail", "dnName", "keyStoreFile", "keyStoreSecret"})
+    @Test
+    public void loginHintTokenES384(
+            final String keyId, final String userEmail,
+            final String dnName, final String keyStoreFile, final String keyStoreSecret) throws Exception {
+        showTitle("loginHintTokenES384");
+
+        JSONObject subjectValue = new JSONObject();
+        subjectValue.put("subject_type", "email");
+        subjectValue.put("email", userEmail);
+
+        Jwt jwt = new Jwt();
+        jwt.getHeader().setAlgorithm(SignatureAlgorithm.ES384);
+        jwt.getHeader().setKeyId(keyId);
+        jwt.getClaims().setClaim("subject", subjectValue);
+
+        OxAuthCryptoProvider cryptoProvider = new OxAuthCryptoProvider(keyStoreFile, keyStoreSecret, dnName);
+        String encodedSignature = cryptoProvider.sign(jwt.getSigningInput(), keyId, null, SignatureAlgorithm.ES384);
+        jwt.setEncodedSignature(encodedSignature);
+
+        loginHintTokenES384 = jwt.toString();
+    }
+
+    @Parameters({"ES512_keyId", "userEmail", "dnName", "keyStoreFile", "keyStoreSecret"})
+    @Test
+    public void loginHintTokenES512(
+            final String keyId, final String userEmail,
+            final String dnName, final String keyStoreFile, final String keyStoreSecret) throws Exception {
+        showTitle("loginHintTokenES512");
+
+        JSONObject subjectValue = new JSONObject();
+        subjectValue.put("subject_type", "email");
+        subjectValue.put("email", userEmail);
+
+        Jwt jwt = new Jwt();
+        jwt.getHeader().setAlgorithm(SignatureAlgorithm.ES512);
+        jwt.getHeader().setKeyId(keyId);
+        jwt.getClaims().setClaim("subject", subjectValue);
+
+        OxAuthCryptoProvider cryptoProvider = new OxAuthCryptoProvider(keyStoreFile, keyStoreSecret, dnName);
+        String encodedSignature = cryptoProvider.sign(jwt.getSigningInput(), keyId, null, SignatureAlgorithm.ES512);
+        jwt.setEncodedSignature(encodedSignature);
+
+        loginHintTokenES512 = jwt.toString();
+    }
+
+    @Parameters({"PS256_keyId", "userEmail", "dnName", "keyStoreFile", "keyStoreSecret"})
+    @Test
+    public void loginHintTokenPS256(
+            final String keyId, final String userEmail,
+            final String dnName, final String keyStoreFile, final String keyStoreSecret) throws Exception {
+        showTitle("loginHintTokenPS256");
+
+        JSONObject subjectValue = new JSONObject();
+        subjectValue.put("subject_type", "email");
+        subjectValue.put("email", userEmail);
+
+        Jwt jwt = new Jwt();
+        jwt.getHeader().setAlgorithm(SignatureAlgorithm.PS256);
+        jwt.getHeader().setKeyId(keyId);
+        jwt.getClaims().setClaim("subject", subjectValue);
+
+        OxAuthCryptoProvider cryptoProvider = new OxAuthCryptoProvider(keyStoreFile, keyStoreSecret, dnName);
+        String encodedSignature = cryptoProvider.sign(jwt.getSigningInput(), keyId, null, SignatureAlgorithm.PS256);
+        jwt.setEncodedSignature(encodedSignature);
+
+        loginHintTokenPS256 = jwt.toString();
+    }
+
+    @Parameters({"PS384_keyId", "userEmail", "dnName", "keyStoreFile", "keyStoreSecret"})
+    @Test
+    public void loginHintTokenPS384(
+            final String keyId, final String userEmail,
+            final String dnName, final String keyStoreFile, final String keyStoreSecret) throws Exception {
+        showTitle("loginHintTokenPS384");
+
+        JSONObject subjectValue = new JSONObject();
+        subjectValue.put("subject_type", "email");
+        subjectValue.put("email", userEmail);
+
+        Jwt jwt = new Jwt();
+        jwt.getHeader().setAlgorithm(SignatureAlgorithm.PS384);
+        jwt.getHeader().setKeyId(keyId);
+        jwt.getClaims().setClaim("subject", subjectValue);
+
+        OxAuthCryptoProvider cryptoProvider = new OxAuthCryptoProvider(keyStoreFile, keyStoreSecret, dnName);
+        String encodedSignature = cryptoProvider.sign(jwt.getSigningInput(), keyId, null, SignatureAlgorithm.PS384);
+        jwt.setEncodedSignature(encodedSignature);
+
+        loginHintTokenPS384 = jwt.toString();
+    }
+
+    @Parameters({"PS512_keyId", "userEmail", "dnName", "keyStoreFile", "keyStoreSecret"})
+    @Test
+    public void loginHintTokenPS512(
+            final String keyId, final String userEmail,
+            final String dnName, final String keyStoreFile, final String keyStoreSecret) throws Exception {
+        showTitle("loginHintTokenPS512");
+
+        JSONObject subjectValue = new JSONObject();
+        subjectValue.put("subject_type", "email");
+        subjectValue.put("email", userEmail);
+
+        Jwt jwt = new Jwt();
+        jwt.getHeader().setAlgorithm(SignatureAlgorithm.PS512);
+        jwt.getHeader().setKeyId(keyId);
+        jwt.getClaims().setClaim("subject", subjectValue);
+
+        OxAuthCryptoProvider cryptoProvider = new OxAuthCryptoProvider(keyStoreFile, keyStoreSecret, dnName);
+        String encodedSignature = cryptoProvider.sign(jwt.getSigningInput(), keyId, null, SignatureAlgorithm.PS512);
+        jwt.setEncodedSignature(encodedSignature);
+
+        loginHintTokenPS512 = jwt.toString();
+    }
+}
\ No newline at end of file
diff --git a/oxAuth/Client/src/test/java/org/gluu/oxauth/ciba/BackchannelAuthenticationPushMode.java b/oxAuth/Client/src/test/java/org/gluu/oxauth/ciba/BackchannelAuthenticationPushMode.java
new file mode 100644
index 00000000..debd0f4b
--- /dev/null
+++ b/oxAuth/Client/src/test/java/org/gluu/oxauth/ciba/BackchannelAuthenticationPushMode.java
@@ -0,0 +1,3544 @@
+/*
+ * oxAuth is available under the MIT License (2008). See http://opensource.org/licenses/MIT for full text.
+ *
+ * Copyright (c) 2014, Gluu
+ */
+
+package org.gluu.oxauth.ciba;
+
+import static org.gluu.oxauth.model.register.RegisterRequestParam.BACKCHANNEL_AUTHENTICATION_REQUEST_SIGNING_ALG;
+import static org.gluu.oxauth.model.register.RegisterRequestParam.BACKCHANNEL_CLIENT_NOTIFICATION_ENDPOINT;
+import static org.gluu.oxauth.model.register.RegisterRequestParam.BACKCHANNEL_TOKEN_DELIVERY_MODE;
+import static org.gluu.oxauth.model.register.RegisterRequestParam.BACKCHANNEL_USER_CODE_PARAMETER;
+import static org.testng.Assert.assertEquals;
+import static org.testng.Assert.assertNotNull;
+import static org.testng.Assert.assertNull;
+import static org.testng.Assert.assertTrue;
+
+import java.security.PrivateKey;
+import java.util.Arrays;
+import java.util.List;
+import java.util.UUID;
+
+import org.apache.commons.lang.RandomStringUtils;
+import org.gluu.oxauth.BaseTest;
+import org.gluu.oxauth.client.AuthorizationRequest;
+import org.gluu.oxauth.client.AuthorizationResponse;
+import org.gluu.oxauth.client.AuthorizeClient;
+import org.gluu.oxauth.client.BackchannelAuthenticationClient;
+import org.gluu.oxauth.client.BackchannelAuthenticationRequest;
+import org.gluu.oxauth.client.BackchannelAuthenticationResponse;
+import org.gluu.oxauth.client.JwkClient;
+import org.gluu.oxauth.client.RegisterClient;
+import org.gluu.oxauth.client.RegisterRequest;
+import org.gluu.oxauth.client.RegisterResponse;
+import org.gluu.oxauth.model.ciba.BackchannelAuthenticationErrorResponseType;
+import org.gluu.oxauth.model.common.AuthenticationMethod;
+import org.gluu.oxauth.model.common.BackchannelTokenDeliveryMode;
+import org.gluu.oxauth.model.common.GrantType;
+import org.gluu.oxauth.model.common.ResponseType;
+import org.gluu.oxauth.model.crypto.OxAuthCryptoProvider;
+import org.gluu.oxauth.model.crypto.encryption.BlockEncryptionAlgorithm;
+import org.gluu.oxauth.model.crypto.encryption.KeyEncryptionAlgorithm;
+import org.gluu.oxauth.model.crypto.signature.AsymmetricSignatureAlgorithm;
+import org.gluu.oxauth.model.crypto.signature.ECDSAPublicKey;
+import org.gluu.oxauth.model.crypto.signature.RSAPublicKey;
+import org.gluu.oxauth.model.crypto.signature.SignatureAlgorithm;
+import org.gluu.oxauth.model.jwe.Jwe;
+import org.gluu.oxauth.model.jws.ECDSASigner;
+import org.gluu.oxauth.model.jws.RSASigner;
+import org.gluu.oxauth.model.jwt.Jwt;
+import org.gluu.oxauth.model.jwt.JwtClaimName;
+import org.gluu.oxauth.model.jwt.JwtHeaderName;
+import org.gluu.oxauth.model.register.ApplicationType;
+import org.gluu.oxauth.model.util.StringUtils;
+import org.gluu.oxauth.model.util.Util;
+import org.json.JSONObject;
+import org.testng.annotations.Parameters;
+import org.testng.annotations.Test;
+
+/**
+ * @author Javier Rojas Blum
+ * @version May 28, 2020
+ */
+public class BackchannelAuthenticationPushMode extends BaseTest {
+
+    String idTokenHintRS256;
+    String idTokenHintRS384;
+    String idTokenHintRS512;
+    String idTokenHintES256;
+    String idTokenHintES384;
+    String idTokenHintES512;
+    String idTokenHintPS256;
+    String idTokenHintPS384;
+    String idTokenHintPS512;
+    String idTokenHintAlgA128KWEncA128GCM;
+    String idTokenHintAlgA256KWEncA256GCM;
+    String idTokenHintAlgRSA15EncA128CBCPLUSHS256;
+    String idTokenHintAlgRSA15EncA256CBCPLUSHS512;
+    String idTokenHintAlgRSAOAEPEncA256GCM;
+
+    String loginHintTokenRS256;
+    String loginHintTokenRS384;
+    String loginHintTokenRS512;
+    String loginHintTokenES256;
+    String loginHintTokenES384;
+    String loginHintTokenES512;
+    String loginHintTokenPS256;
+    String loginHintTokenPS384;
+    String loginHintTokenPS512;
+
+    @Parameters({"backchannelClientNotificationEndpoint", "backchannelUserCode", "userId"})
+    @Test
+    public void backchannelTokenDeliveryModePushLoginHint1(
+            final String backchannelClientNotificationEndpoint, final String backchannelUserCode, final String userId) {
+        showTitle("backchannelTokenDeliveryModePushLoginHint1");
+
+        // 1. Dynamic Client Registration
+        RegisterRequest registerRequest = new RegisterRequest(ApplicationType.WEB, "oxAuth test app", null);
+        registerRequest.setGrantTypes(Arrays.asList(GrantType.CIBA));
+
+        registerRequest.setBackchannelTokenDeliveryMode(BackchannelTokenDeliveryMode.PUSH);
+        registerRequest.setBackchannelClientNotificationEndpoint(backchannelClientNotificationEndpoint);
+        registerRequest.setBackchannelAuthenticationRequestSigningAlg(AsymmetricSignatureAlgorithm.RS256);
+        registerRequest.setBackchannelUserCodeParameter(true);
+
+        RegisterClient registerClient = new RegisterClient(registrationEndpoint);
+        registerClient.setRequest(registerRequest);
+        RegisterResponse registerResponse = registerClient.exec();
+
+        showClient(registerClient);
+        assertEquals(registerResponse.getStatus(), 200, "Unexpected response code: " + registerResponse.getEntity());
+        assertNotNull(registerResponse.getClientId());
+        assertNotNull(registerResponse.getClientSecret());
+        assertNotNull(registerResponse.getRegistrationAccessToken());
+        assertNotNull(registerResponse.getClientSecretExpiresAt());
+
+        assertTrue(registerResponse.getClaims().containsKey(BACKCHANNEL_TOKEN_DELIVERY_MODE.toString()));
+        assertTrue(registerResponse.getClaims().containsKey(BACKCHANNEL_AUTHENTICATION_REQUEST_SIGNING_ALG.toString()));
+        assertTrue(registerResponse.getClaims().containsKey(BACKCHANNEL_USER_CODE_PARAMETER.toString()));
+        assertTrue(registerResponse.getClaims().containsKey(BACKCHANNEL_CLIENT_NOTIFICATION_ENDPOINT.toString()));
+        assertEquals(registerResponse.getClaims().get(BACKCHANNEL_TOKEN_DELIVERY_MODE.toString()), BackchannelTokenDeliveryMode.PUSH.getValue());
+        assertEquals(registerResponse.getClaims().get(BACKCHANNEL_AUTHENTICATION_REQUEST_SIGNING_ALG.toString()), AsymmetricSignatureAlgorithm.RS256.getValue());
+        assertEquals(registerResponse.getClaims().get(BACKCHANNEL_USER_CODE_PARAMETER.toString()), new Boolean(true).toString());
+
+        String clientId = registerResponse.getClientId();
+        String clientSecret = registerResponse.getClientSecret();
+
+        // 2. Authentication Request
+        String bindingMessage = RandomStringUtils.randomAlphanumeric(6);
+        String clientNotificationToken = UUID.randomUUID().toString();
+
+        BackchannelAuthenticationRequest backchannelAuthenticationRequest = new BackchannelAuthenticationRequest();
+        backchannelAuthenticationRequest.setScope(Arrays.asList("openid", "profile", "address", "phone", "email"));
+        backchannelAuthenticationRequest.setLoginHint(userId);
+        backchannelAuthenticationRequest.setClientNotificationToken(clientNotificationToken);
+        backchannelAuthenticationRequest.setUserCode(backchannelUserCode);
+        backchannelAuthenticationRequest.setRequestedExpiry(1200);
+        backchannelAuthenticationRequest.setAcrValues(Arrays.asList("auth_ldap_server", "basic"));
+        backchannelAuthenticationRequest.setBindingMessage(bindingMessage);
+        backchannelAuthenticationRequest.setAuthUsername(clientId);
+        backchannelAuthenticationRequest.setAuthPassword(clientSecret);
+
+        BackchannelAuthenticationClient backchannelAuthenticationClient = new BackchannelAuthenticationClient(backchannelAuthenticationEndpoint);
+        backchannelAuthenticationClient.setRequest(backchannelAuthenticationRequest);
+        BackchannelAuthenticationResponse backchannelAuthenticationResponse = backchannelAuthenticationClient.exec();
+
+        showClient(backchannelAuthenticationClient);
+        assertEquals(backchannelAuthenticationResponse.getStatus(), 200, "Unexpected response code: " + backchannelAuthenticationResponse.getEntity());
+        assertNotNull(backchannelAuthenticationResponse.getAuthReqId());
+        assertNotNull(backchannelAuthenticationResponse.getExpiresIn());
+        assertNull(backchannelAuthenticationResponse.getInterval()); // This parameter will only be present if the Client is registered to use the Poll or Ping modes.
+    }
+
+    @Parameters({"backchannelClientNotificationEndpoint", "backchannelUserCode", "userEmail"})
+    @Test
+    public void backchannelTokenDeliveryModePushLoginHint2(
+            final String backchannelClientNotificationEndpoint, final String backchannelUserCode, final String userEmail) {
+        showTitle("backchannelTokenDeliveryModePushLoginHint2");
+
+        // 1. Dynamic Client Registration
+        RegisterRequest registerRequest = new RegisterRequest(ApplicationType.WEB, "oxAuth test app", null);
+        registerRequest.setGrantTypes(Arrays.asList(GrantType.CIBA));
+
+        registerRequest.setBackchannelTokenDeliveryMode(BackchannelTokenDeliveryMode.PUSH);
+        registerRequest.setBackchannelClientNotificationEndpoint(backchannelClientNotificationEndpoint);
+        registerRequest.setBackchannelAuthenticationRequestSigningAlg(AsymmetricSignatureAlgorithm.RS256);
+        registerRequest.setBackchannelUserCodeParameter(true);
+
+        RegisterClient registerClient = new RegisterClient(registrationEndpoint);
+        registerClient.setRequest(registerRequest);
+        RegisterResponse registerResponse = registerClient.exec();
+
+        showClient(registerClient);
+        assertEquals(registerResponse.getStatus(), 200, "Unexpected response code: " + registerResponse.getEntity());
+        assertNotNull(registerResponse.getClientId());
+        assertNotNull(registerResponse.getClientSecret());
+        assertNotNull(registerResponse.getRegistrationAccessToken());
+        assertNotNull(registerResponse.getClientSecretExpiresAt());
+
+        assertTrue(registerResponse.getClaims().containsKey(BACKCHANNEL_TOKEN_DELIVERY_MODE.toString()));
+        assertTrue(registerResponse.getClaims().containsKey(BACKCHANNEL_AUTHENTICATION_REQUEST_SIGNING_ALG.toString()));
+        assertTrue(registerResponse.getClaims().containsKey(BACKCHANNEL_USER_CODE_PARAMETER.toString()));
+        assertTrue(registerResponse.getClaims().containsKey(BACKCHANNEL_CLIENT_NOTIFICATION_ENDPOINT.toString()));
+        assertEquals(registerResponse.getClaims().get(BACKCHANNEL_TOKEN_DELIVERY_MODE.toString()), BackchannelTokenDeliveryMode.PUSH.getValue());
+        assertEquals(registerResponse.getClaims().get(BACKCHANNEL_AUTHENTICATION_REQUEST_SIGNING_ALG.toString()), AsymmetricSignatureAlgorithm.RS256.getValue());
+        assertEquals(registerResponse.getClaims().get(BACKCHANNEL_USER_CODE_PARAMETER.toString()), new Boolean(true).toString());
+
+        String clientId = registerResponse.getClientId();
+        String clientSecret = registerResponse.getClientSecret();
+
+        // 2. Authentication Request
+        String clientNotificationToken = UUID.randomUUID().toString();
+
+        BackchannelAuthenticationRequest backchannelAuthenticationRequest = new BackchannelAuthenticationRequest();
+        backchannelAuthenticationRequest.setScope(Arrays.asList("openid"));
+        backchannelAuthenticationRequest.setLoginHint(userEmail);
+        backchannelAuthenticationRequest.setClientNotificationToken(clientNotificationToken);
+        backchannelAuthenticationRequest.setUserCode(backchannelUserCode);
+        backchannelAuthenticationRequest.setRequestedExpiry(1200);
+        backchannelAuthenticationRequest.setAuthUsername(clientId);
+        backchannelAuthenticationRequest.setAuthPassword(clientSecret);
+
+        BackchannelAuthenticationClient backchannelAuthenticationClient = new BackchannelAuthenticationClient(backchannelAuthenticationEndpoint);
+        backchannelAuthenticationClient.setRequest(backchannelAuthenticationRequest);
+        BackchannelAuthenticationResponse backchannelAuthenticationResponse = backchannelAuthenticationClient.exec();
+
+        showClient(backchannelAuthenticationClient);
+        assertEquals(backchannelAuthenticationResponse.getStatus(), 200, "Unexpected response code: " + backchannelAuthenticationResponse.getEntity());
+        assertNotNull(backchannelAuthenticationResponse.getAuthReqId());
+        assertNotNull(backchannelAuthenticationResponse.getExpiresIn());
+        assertNull(backchannelAuthenticationResponse.getInterval()); // This parameter will only be present if the Client is registered to use the Poll or Ping modes.
+    }
+
+    @Parameters({"backchannelClientNotificationEndpoint", "backchannelUserCode", "userInum"})
+    @Test
+    public void backchannelTokenDeliveryModePushLoginHint3(
+            final String backchannelClientNotificationEndpoint, final String backchannelUserCode, final String userInum) {
+        showTitle("backchannelTokenDeliveryModePushLoginHint3");
+
+        // 1. Dynamic Client Registration
+        RegisterRequest registerRequest = new RegisterRequest(ApplicationType.WEB, "oxAuth test app", null);
+        registerRequest.setGrantTypes(Arrays.asList(GrantType.CIBA));
+
+        registerRequest.setBackchannelTokenDeliveryMode(BackchannelTokenDeliveryMode.PUSH);
+        registerRequest.setBackchannelClientNotificationEndpoint(backchannelClientNotificationEndpoint);
+        registerRequest.setBackchannelAuthenticationRequestSigningAlg(AsymmetricSignatureAlgorithm.RS256);
+        registerRequest.setBackchannelUserCodeParameter(true);
+
+        RegisterClient registerClient = new RegisterClient(registrationEndpoint);
+        registerClient.setRequest(registerRequest);
+        RegisterResponse registerResponse = registerClient.exec();
+
+        showClient(registerClient);
+        assertEquals(registerResponse.getStatus(), 200, "Unexpected response code: " + registerResponse.getEntity());
+        assertNotNull(registerResponse.getClientId());
+        assertNotNull(registerResponse.getClientSecret());
+        assertNotNull(registerResponse.getRegistrationAccessToken());
+        assertNotNull(registerResponse.getClientSecretExpiresAt());
+
+        assertTrue(registerResponse.getClaims().containsKey(BACKCHANNEL_TOKEN_DELIVERY_MODE.toString()));
+        assertTrue(registerResponse.getClaims().containsKey(BACKCHANNEL_AUTHENTICATION_REQUEST_SIGNING_ALG.toString()));
+        assertTrue(registerResponse.getClaims().containsKey(BACKCHANNEL_USER_CODE_PARAMETER.toString()));
+        assertTrue(registerResponse.getClaims().containsKey(BACKCHANNEL_CLIENT_NOTIFICATION_ENDPOINT.toString()));
+        assertEquals(registerResponse.getClaims().get(BACKCHANNEL_TOKEN_DELIVERY_MODE.toString()), BackchannelTokenDeliveryMode.PUSH.getValue());
+        assertEquals(registerResponse.getClaims().get(BACKCHANNEL_AUTHENTICATION_REQUEST_SIGNING_ALG.toString()), AsymmetricSignatureAlgorithm.RS256.getValue());
+        assertEquals(registerResponse.getClaims().get(BACKCHANNEL_USER_CODE_PARAMETER.toString()), new Boolean(true).toString());
+
+        String clientId = registerResponse.getClientId();
+        String clientSecret = registerResponse.getClientSecret();
+
+        // 2. Authentication Request
+        String clientNotificationToken = UUID.randomUUID().toString();
+
+        BackchannelAuthenticationRequest backchannelAuthenticationRequest = new BackchannelAuthenticationRequest();
+        backchannelAuthenticationRequest.setScope(Arrays.asList("openid"));
+        backchannelAuthenticationRequest.setLoginHint(userInum);
+        backchannelAuthenticationRequest.setClientNotificationToken(clientNotificationToken);
+        backchannelAuthenticationRequest.setUserCode(backchannelUserCode);
+        backchannelAuthenticationRequest.setRequestedExpiry(1200);
+        backchannelAuthenticationRequest.setAuthUsername(clientId);
+        backchannelAuthenticationRequest.setAuthPassword(clientSecret);
+
+        BackchannelAuthenticationClient backchannelAuthenticationClient = new BackchannelAuthenticationClient(backchannelAuthenticationEndpoint);
+        backchannelAuthenticationClient.setRequest(backchannelAuthenticationRequest);
+        BackchannelAuthenticationResponse backchannelAuthenticationResponse = backchannelAuthenticationClient.exec();
+
+        showClient(backchannelAuthenticationClient);
+        assertEquals(backchannelAuthenticationResponse.getStatus(), 200, "Unexpected response code: " + backchannelAuthenticationResponse.getEntity());
+        assertNotNull(backchannelAuthenticationResponse.getAuthReqId());
+        assertNotNull(backchannelAuthenticationResponse.getExpiresIn());
+        assertNull(backchannelAuthenticationResponse.getInterval()); // This parameter will only be present if the Client is registered to use the Poll or Ping modes.
+    }
+
+    @Parameters({"backchannelClientNotificationEndpoint", "userInum"})
+    @Test
+    public void backchannelTokenDeliveryModePushLoginHint4(
+            final String backchannelClientNotificationEndpoint, final String userInum) {
+        showTitle("backchannelTokenDeliveryModePushLoginHint4");
+
+        // 1. Dynamic Client Registration
+        RegisterRequest registerRequest = new RegisterRequest(ApplicationType.WEB, "oxAuth test app", null);
+        registerRequest.setGrantTypes(Arrays.asList(GrantType.CIBA));
+
+        registerRequest.setBackchannelTokenDeliveryMode(BackchannelTokenDeliveryMode.PUSH);
+        registerRequest.setBackchannelClientNotificationEndpoint(backchannelClientNotificationEndpoint);
+        registerRequest.setBackchannelAuthenticationRequestSigningAlg(AsymmetricSignatureAlgorithm.RS256);
+        registerRequest.setBackchannelUserCodeParameter(false);
+
+        RegisterClient registerClient = new RegisterClient(registrationEndpoint);
+        registerClient.setRequest(registerRequest);
+        RegisterResponse registerResponse = registerClient.exec();
+
+        showClient(registerClient);
+        assertEquals(registerResponse.getStatus(), 200, "Unexpected response code: " + registerResponse.getEntity());
+        assertNotNull(registerResponse.getClientId());
+        assertNotNull(registerResponse.getClientSecret());
+        assertNotNull(registerResponse.getRegistrationAccessToken());
+        assertNotNull(registerResponse.getClientSecretExpiresAt());
+
+        assertTrue(registerResponse.getClaims().containsKey(BACKCHANNEL_TOKEN_DELIVERY_MODE.toString()));
+        assertTrue(registerResponse.getClaims().containsKey(BACKCHANNEL_AUTHENTICATION_REQUEST_SIGNING_ALG.toString()));
+        assertTrue(registerResponse.getClaims().containsKey(BACKCHANNEL_USER_CODE_PARAMETER.toString()));
+        assertTrue(registerResponse.getClaims().containsKey(BACKCHANNEL_CLIENT_NOTIFICATION_ENDPOINT.toString()));
+        assertEquals(registerResponse.getClaims().get(BACKCHANNEL_TOKEN_DELIVERY_MODE.toString()), BackchannelTokenDeliveryMode.PUSH.getValue());
+        assertEquals(registerResponse.getClaims().get(BACKCHANNEL_AUTHENTICATION_REQUEST_SIGNING_ALG.toString()), AsymmetricSignatureAlgorithm.RS256.getValue());
+        assertEquals(registerResponse.getClaims().get(BACKCHANNEL_USER_CODE_PARAMETER.toString()), new Boolean(false).toString());
+
+        String clientId = registerResponse.getClientId();
+        String clientSecret = registerResponse.getClientSecret();
+
+        // 2. Authentication Request
+        String clientNotificationToken = UUID.randomUUID().toString();
+
+        BackchannelAuthenticationRequest backchannelAuthenticationRequest = new BackchannelAuthenticationRequest();
+        backchannelAuthenticationRequest.setScope(Arrays.asList("openid"));
+        backchannelAuthenticationRequest.setLoginHint(userInum);
+        backchannelAuthenticationRequest.setClientNotificationToken(clientNotificationToken);
+        backchannelAuthenticationRequest.setRequestedExpiry(1200);
+        backchannelAuthenticationRequest.setAuthUsername(clientId);
+        backchannelAuthenticationRequest.setAuthPassword(clientSecret);
+
+        BackchannelAuthenticationClient backchannelAuthenticationClient = new BackchannelAuthenticationClient(backchannelAuthenticationEndpoint);
+        backchannelAuthenticationClient.setRequest(backchannelAuthenticationRequest);
+        BackchannelAuthenticationResponse backchannelAuthenticationResponse = backchannelAuthenticationClient.exec();
+
+        showClient(backchannelAuthenticationClient);
+        assertEquals(backchannelAuthenticationResponse.getStatus(), 200, "Unexpected response code: " + backchannelAuthenticationResponse.getEntity());
+        assertNotNull(backchannelAuthenticationResponse.getAuthReqId());
+        assertNotNull(backchannelAuthenticationResponse.getExpiresIn());
+        assertNull(backchannelAuthenticationResponse.getInterval()); // This parameter will only be present if the Client is registered to use the Poll or Ping modes.
+    }
+
+    @Parameters({"backchannelClientNotificationEndpoint", "userInum"})
+    @Test
+    public void backchannelTokenDeliveryModePushLoginHint5(
+            final String backchannelClientNotificationEndpoint, final String userInum) {
+        showTitle("backchannelTokenDeliveryModePushLoginHint5");
+
+        // 1. Dynamic Client Registration
+        RegisterRequest registerRequest = new RegisterRequest(ApplicationType.WEB, "oxAuth test app", null);
+        registerRequest.setGrantTypes(Arrays.asList(GrantType.CIBA));
+
+        registerRequest.setBackchannelTokenDeliveryMode(BackchannelTokenDeliveryMode.PUSH);
+        registerRequest.setBackchannelClientNotificationEndpoint(backchannelClientNotificationEndpoint);
+        registerRequest.setBackchannelAuthenticationRequestSigningAlg(AsymmetricSignatureAlgorithm.RS256);
+
+        RegisterClient registerClient = new RegisterClient(registrationEndpoint);
+        registerClient.setRequest(registerRequest);
+        RegisterResponse registerResponse = registerClient.exec();
+
+        showClient(registerClient);
+        assertEquals(registerResponse.getStatus(), 200, "Unexpected response code: " + registerResponse.getEntity());
+        assertNotNull(registerResponse.getClientId());
+        assertNotNull(registerResponse.getClientSecret());
+        assertNotNull(registerResponse.getRegistrationAccessToken());
+        assertNotNull(registerResponse.getClientSecretExpiresAt());
+
+        assertTrue(registerResponse.getClaims().containsKey(BACKCHANNEL_TOKEN_DELIVERY_MODE.toString()));
+        assertTrue(registerResponse.getClaims().containsKey(BACKCHANNEL_AUTHENTICATION_REQUEST_SIGNING_ALG.toString()));
+        assertTrue(registerResponse.getClaims().containsKey(BACKCHANNEL_CLIENT_NOTIFICATION_ENDPOINT.toString()));
+        assertEquals(registerResponse.getClaims().get(BACKCHANNEL_TOKEN_DELIVERY_MODE.toString()), BackchannelTokenDeliveryMode.PUSH.getValue());
+        assertEquals(registerResponse.getClaims().get(BACKCHANNEL_AUTHENTICATION_REQUEST_SIGNING_ALG.toString()), AsymmetricSignatureAlgorithm.RS256.getValue());
+
+        String clientId = registerResponse.getClientId();
+        String clientSecret = registerResponse.getClientSecret();
+
+        // 2. Authentication Request
+        String clientNotificationToken = UUID.randomUUID().toString();
+
+        BackchannelAuthenticationRequest backchannelAuthenticationRequest = new BackchannelAuthenticationRequest();
+        backchannelAuthenticationRequest.setScope(Arrays.asList("openid"));
+        backchannelAuthenticationRequest.setLoginHint(userInum);
+        backchannelAuthenticationRequest.setClientNotificationToken(clientNotificationToken);
+        backchannelAuthenticationRequest.setRequestedExpiry(1200);
+        backchannelAuthenticationRequest.setAuthUsername(clientId);
+        backchannelAuthenticationRequest.setAuthPassword(clientSecret);
+
+        BackchannelAuthenticationClient backchannelAuthenticationClient = new BackchannelAuthenticationClient(backchannelAuthenticationEndpoint);
+        backchannelAuthenticationClient.setRequest(backchannelAuthenticationRequest);
+        BackchannelAuthenticationResponse backchannelAuthenticationResponse = backchannelAuthenticationClient.exec();
+
+        showClient(backchannelAuthenticationClient);
+        assertEquals(backchannelAuthenticationResponse.getStatus(), 200, "Unexpected response code: " + backchannelAuthenticationResponse.getEntity());
+        assertNotNull(backchannelAuthenticationResponse.getAuthReqId());
+        assertNotNull(backchannelAuthenticationResponse.getExpiresIn());
+        assertNull(backchannelAuthenticationResponse.getInterval()); // This parameter will only be present if the Client is registered to use the Poll or Ping modes.
+    }
+
+    @Parameters({"clientJwksUri", "backchannelClientNotificationEndpoint", "backchannelUserCode",
+            "RS256_keyId", "dnName", "keyStoreFile", "keyStoreSecret"})
+    @Test(dependsOnMethods = "idTokenHintRS256")
+    public void backchannelTokenDeliveryModePushIdTokenHintRS256(
+            final String clientJwksUri, final String backchannelClientNotificationEndpoint, final String backchannelUserCode,
+            final String keyId, final String dnName, final String keyStoreFile, final String keyStoreSecret) throws Exception {
+        showTitle("backchannelTokenDeliveryModePushIdTokenHintRS256");
+
+        // 1. Dynamic Client Registration
+        RegisterRequest registerRequest = new RegisterRequest(ApplicationType.WEB, "oxAuth test app", null);
+        registerRequest.setJwksUri(clientJwksUri);
+        registerRequest.setGrantTypes(Arrays.asList(GrantType.CIBA));
+
+        registerRequest.setTokenEndpointAuthMethod(AuthenticationMethod.PRIVATE_KEY_JWT);
+        registerRequest.setTokenEndpointAuthSigningAlg(SignatureAlgorithm.RS256);
+        registerRequest.setBackchannelTokenDeliveryMode(BackchannelTokenDeliveryMode.PUSH);
+        registerRequest.setBackchannelClientNotificationEndpoint(backchannelClientNotificationEndpoint);
+        registerRequest.setBackchannelAuthenticationRequestSigningAlg(AsymmetricSignatureAlgorithm.RS256);
+        registerRequest.setBackchannelUserCodeParameter(true);
+
+        RegisterClient registerClient = new RegisterClient(registrationEndpoint);
+        registerClient.setRequest(registerRequest);
+        RegisterResponse registerResponse = registerClient.exec();
+
+        showClient(registerClient);
+        assertEquals(registerResponse.getStatus(), 200, "Unexpected response code: " + registerResponse.getEntity());
+        assertNotNull(registerResponse.getClientId());
+        assertNotNull(registerResponse.getClientSecret());
+        assertNotNull(registerResponse.getRegistrationAccessToken());
+        assertNotNull(registerResponse.getClientSecretExpiresAt());
+
+        assertTrue(registerResponse.getClaims().containsKey(BACKCHANNEL_TOKEN_DELIVERY_MODE.toString()));
+        assertTrue(registerResponse.getClaims().containsKey(BACKCHANNEL_AUTHENTICATION_REQUEST_SIGNING_ALG.toString()));
+        assertTrue(registerResponse.getClaims().containsKey(BACKCHANNEL_USER_CODE_PARAMETER.toString()));
+        assertTrue(registerResponse.getClaims().containsKey(BACKCHANNEL_CLIENT_NOTIFICATION_ENDPOINT.toString()));
+        assertEquals(registerResponse.getClaims().get(BACKCHANNEL_TOKEN_DELIVERY_MODE.toString()), BackchannelTokenDeliveryMode.PUSH.getValue());
+        assertEquals(registerResponse.getClaims().get(BACKCHANNEL_AUTHENTICATION_REQUEST_SIGNING_ALG.toString()), AsymmetricSignatureAlgorithm.RS256.getValue());
+        assertEquals(registerResponse.getClaims().get(BACKCHANNEL_USER_CODE_PARAMETER.toString()), new Boolean(true).toString());
+
+        String clientId = registerResponse.getClientId();
+
+        // 2. Authentication Request
+        OxAuthCryptoProvider cryptoProvider = new OxAuthCryptoProvider(keyStoreFile, keyStoreSecret, dnName);
+        String clientNotificationToken = UUID.randomUUID().toString();
+
+        BackchannelAuthenticationRequest backchannelAuthenticationRequest = new BackchannelAuthenticationRequest();
+        backchannelAuthenticationRequest.setScope(Arrays.asList("openid"));
+        backchannelAuthenticationRequest.setIdTokenHint(idTokenHintRS256);
+        backchannelAuthenticationRequest.setClientNotificationToken(clientNotificationToken);
+        backchannelAuthenticationRequest.setUserCode(backchannelUserCode);
+        backchannelAuthenticationRequest.setRequestedExpiry(1200);
+        backchannelAuthenticationRequest.setAuthenticationMethod(AuthenticationMethod.PRIVATE_KEY_JWT);
+        backchannelAuthenticationRequest.setAlgorithm(SignatureAlgorithm.RS256);
+        backchannelAuthenticationRequest.setCryptoProvider(cryptoProvider);
+        backchannelAuthenticationRequest.setKeyId(keyId);
+        backchannelAuthenticationRequest.setAudience(tokenEndpoint);
+        backchannelAuthenticationRequest.setAuthUsername(clientId);
+
+        BackchannelAuthenticationClient backchannelAuthenticationClient = new BackchannelAuthenticationClient(backchannelAuthenticationEndpoint);
+        backchannelAuthenticationClient.setRequest(backchannelAuthenticationRequest);
+        BackchannelAuthenticationResponse backchannelAuthenticationResponse = backchannelAuthenticationClient.exec();
+
+        showClient(backchannelAuthenticationClient);
+        assertEquals(backchannelAuthenticationResponse.getStatus(), 200, "Unexpected response code: " + backchannelAuthenticationResponse.getEntity());
+        assertNotNull(backchannelAuthenticationResponse.getAuthReqId());
+        assertNotNull(backchannelAuthenticationResponse.getExpiresIn());
+        assertNull(backchannelAuthenticationResponse.getInterval()); // This parameter will only be present if the Client is registered to use the Poll or Ping modes.
+    }
+
+    @Parameters({"clientJwksUri", "backchannelClientNotificationEndpoint", "backchannelUserCode",
+            "RS384_keyId", "dnName", "keyStoreFile", "keyStoreSecret"})
+    @Test(dependsOnMethods = "idTokenHintRS384")
+    public void backchannelTokenDeliveryModePushIdTokenHintRS384(
+            final String clientJwksUri, final String backchannelClientNotificationEndpoint, final String backchannelUserCode,
+            final String keyId, final String dnName, final String keyStoreFile, final String keyStoreSecret) throws Exception {
+        showTitle("backchannelTokenDeliveryModePushIdTokenHintRS384");
+
+        // 1. Dynamic Client Registration
+        RegisterRequest registerRequest = new RegisterRequest(ApplicationType.WEB, "oxAuth test app", null);
+        registerRequest.setJwksUri(clientJwksUri);
+        registerRequest.setGrantTypes(Arrays.asList(GrantType.CIBA));
+
+        registerRequest.setTokenEndpointAuthMethod(AuthenticationMethod.PRIVATE_KEY_JWT);
+        registerRequest.setTokenEndpointAuthSigningAlg(SignatureAlgorithm.RS384);
+        registerRequest.setBackchannelTokenDeliveryMode(BackchannelTokenDeliveryMode.PUSH);
+        registerRequest.setBackchannelClientNotificationEndpoint(backchannelClientNotificationEndpoint);
+        registerRequest.setBackchannelAuthenticationRequestSigningAlg(AsymmetricSignatureAlgorithm.RS384);
+        registerRequest.setBackchannelUserCodeParameter(true);
+
+        RegisterClient registerClient = new RegisterClient(registrationEndpoint);
+        registerClient.setRequest(registerRequest);
+        RegisterResponse registerResponse = registerClient.exec();
+
+        showClient(registerClient);
+        assertEquals(registerResponse.getStatus(), 200, "Unexpected response code: " + registerResponse.getEntity());
+        assertNotNull(registerResponse.getClientId());
+        assertNotNull(registerResponse.getClientSecret());
+        assertNotNull(registerResponse.getRegistrationAccessToken());
+        assertNotNull(registerResponse.getClientSecretExpiresAt());
+
+        assertTrue(registerResponse.getClaims().containsKey(BACKCHANNEL_TOKEN_DELIVERY_MODE.toString()));
+        assertTrue(registerResponse.getClaims().containsKey(BACKCHANNEL_AUTHENTICATION_REQUEST_SIGNING_ALG.toString()));
+        assertTrue(registerResponse.getClaims().containsKey(BACKCHANNEL_USER_CODE_PARAMETER.toString()));
+        assertTrue(registerResponse.getClaims().containsKey(BACKCHANNEL_CLIENT_NOTIFICATION_ENDPOINT.toString()));
+        assertEquals(registerResponse.getClaims().get(BACKCHANNEL_TOKEN_DELIVERY_MODE.toString()), BackchannelTokenDeliveryMode.PUSH.getValue());
+        assertEquals(registerResponse.getClaims().get(BACKCHANNEL_AUTHENTICATION_REQUEST_SIGNING_ALG.toString()), AsymmetricSignatureAlgorithm.RS384.getValue());
+        assertEquals(registerResponse.getClaims().get(BACKCHANNEL_USER_CODE_PARAMETER.toString()), new Boolean(true).toString());
+
+        String clientId = registerResponse.getClientId();
+
+        // 2. Authentication Request
+        OxAuthCryptoProvider cryptoProvider = new OxAuthCryptoProvider(keyStoreFile, keyStoreSecret, dnName);
+        String clientNotificationToken = UUID.randomUUID().toString();
+
+        BackchannelAuthenticationRequest backchannelAuthenticationRequest = new BackchannelAuthenticationRequest();
+        backchannelAuthenticationRequest.setScope(Arrays.asList("openid"));
+        backchannelAuthenticationRequest.setIdTokenHint(idTokenHintRS384);
+        backchannelAuthenticationRequest.setClientNotificationToken(clientNotificationToken);
+        backchannelAuthenticationRequest.setUserCode(backchannelUserCode);
+        backchannelAuthenticationRequest.setRequestedExpiry(1200);
+        backchannelAuthenticationRequest.setAuthenticationMethod(AuthenticationMethod.PRIVATE_KEY_JWT);
+        backchannelAuthenticationRequest.setAlgorithm(SignatureAlgorithm.RS384);
+        backchannelAuthenticationRequest.setCryptoProvider(cryptoProvider);
+        backchannelAuthenticationRequest.setKeyId(keyId);
+        backchannelAuthenticationRequest.setAudience(tokenEndpoint);
+        backchannelAuthenticationRequest.setAuthUsername(clientId);
+
+        BackchannelAuthenticationClient backchannelAuthenticationClient = new BackchannelAuthenticationClient(backchannelAuthenticationEndpoint);
+        backchannelAuthenticationClient.setRequest(backchannelAuthenticationRequest);
+        BackchannelAuthenticationResponse backchannelAuthenticationResponse = backchannelAuthenticationClient.exec();
+
+        showClient(backchannelAuthenticationClient);
+        assertEquals(backchannelAuthenticationResponse.getStatus(), 200, "Unexpected response code: " + backchannelAuthenticationResponse.getEntity());
+        assertNotNull(backchannelAuthenticationResponse.getAuthReqId());
+        assertNotNull(backchannelAuthenticationResponse.getExpiresIn());
+        assertNull(backchannelAuthenticationResponse.getInterval()); // This parameter will only be present if the Client is registered to use the Poll or Ping modes.
+    }
+
+    @Parameters({"clientJwksUri", "backchannelClientNotificationEndpoint", "backchannelUserCode",
+            "RS512_keyId", "dnName", "keyStoreFile", "keyStoreSecret"})
+    @Test(dependsOnMethods = "idTokenHintRS512")
+    public void backchannelTokenDeliveryModePushIdTokenHintRS512(
+            final String clientJwksUri, final String backchannelClientNotificationEndpoint, final String backchannelUserCode,
+            final String keyId, final String dnName, final String keyStoreFile, final String keyStoreSecret) throws Exception {
+        showTitle("backchannelTokenDeliveryModePushIdTokenHintRS512");
+
+        // 1. Dynamic Client Registration
+        RegisterRequest registerRequest = new RegisterRequest(ApplicationType.WEB, "oxAuth test app", null);
+        registerRequest.setJwksUri(clientJwksUri);
+        registerRequest.setGrantTypes(Arrays.asList(GrantType.CIBA));
+
+        registerRequest.setTokenEndpointAuthMethod(AuthenticationMethod.PRIVATE_KEY_JWT);
+        registerRequest.setTokenEndpointAuthSigningAlg(SignatureAlgorithm.RS512);
+        registerRequest.setBackchannelTokenDeliveryMode(BackchannelTokenDeliveryMode.PUSH);
+        registerRequest.setBackchannelClientNotificationEndpoint(backchannelClientNotificationEndpoint);
+        registerRequest.setBackchannelAuthenticationRequestSigningAlg(AsymmetricSignatureAlgorithm.RS512);
+        registerRequest.setBackchannelUserCodeParameter(true);
+
+        RegisterClient registerClient = new RegisterClient(registrationEndpoint);
+        registerClient.setRequest(registerRequest);
+        RegisterResponse registerResponse = registerClient.exec();
+
+        showClient(registerClient);
+        assertEquals(registerResponse.getStatus(), 200, "Unexpected response code: " + registerResponse.getEntity());
+        assertNotNull(registerResponse.getClientId());
+        assertNotNull(registerResponse.getClientSecret());
+        assertNotNull(registerResponse.getRegistrationAccessToken());
+        assertNotNull(registerResponse.getClientSecretExpiresAt());
+
+        assertTrue(registerResponse.getClaims().containsKey(BACKCHANNEL_TOKEN_DELIVERY_MODE.toString()));
+        assertTrue(registerResponse.getClaims().containsKey(BACKCHANNEL_AUTHENTICATION_REQUEST_SIGNING_ALG.toString()));
+        assertTrue(registerResponse.getClaims().containsKey(BACKCHANNEL_USER_CODE_PARAMETER.toString()));
+        assertTrue(registerResponse.getClaims().containsKey(BACKCHANNEL_CLIENT_NOTIFICATION_ENDPOINT.toString()));
+        assertEquals(registerResponse.getClaims().get(BACKCHANNEL_TOKEN_DELIVERY_MODE.toString()), BackchannelTokenDeliveryMode.PUSH.getValue());
+        assertEquals(registerResponse.getClaims().get(BACKCHANNEL_AUTHENTICATION_REQUEST_SIGNING_ALG.toString()), AsymmetricSignatureAlgorithm.RS512.getValue());
+        assertEquals(registerResponse.getClaims().get(BACKCHANNEL_USER_CODE_PARAMETER.toString()), new Boolean(true).toString());
+
+        String clientId = registerResponse.getClientId();
+
+        // 2. Authentication Request
+        OxAuthCryptoProvider cryptoProvider = new OxAuthCryptoProvider(keyStoreFile, keyStoreSecret, dnName);
+        String clientNotificationToken = UUID.randomUUID().toString();
+
+        BackchannelAuthenticationRequest backchannelAuthenticationRequest = new BackchannelAuthenticationRequest();
+        backchannelAuthenticationRequest.setScope(Arrays.asList("openid"));
+        backchannelAuthenticationRequest.setIdTokenHint(idTokenHintRS512);
+        backchannelAuthenticationRequest.setClientNotificationToken(clientNotificationToken);
+        backchannelAuthenticationRequest.setUserCode(backchannelUserCode);
+        backchannelAuthenticationRequest.setRequestedExpiry(1200);
+        backchannelAuthenticationRequest.setAuthenticationMethod(AuthenticationMethod.PRIVATE_KEY_JWT);
+        backchannelAuthenticationRequest.setAlgorithm(SignatureAlgorithm.RS512);
+        backchannelAuthenticationRequest.setCryptoProvider(cryptoProvider);
+        backchannelAuthenticationRequest.setKeyId(keyId);
+        backchannelAuthenticationRequest.setAudience(tokenEndpoint);
+        backchannelAuthenticationRequest.setAuthUsername(clientId);
+
+        BackchannelAuthenticationClient backchannelAuthenticationClient = new BackchannelAuthenticationClient(backchannelAuthenticationEndpoint);
+        backchannelAuthenticationClient.setRequest(backchannelAuthenticationRequest);
+        BackchannelAuthenticationResponse backchannelAuthenticationResponse = backchannelAuthenticationClient.exec();
+
+        showClient(backchannelAuthenticationClient);
+        assertEquals(backchannelAuthenticationResponse.getStatus(), 200, "Unexpected response code: " + backchannelAuthenticationResponse.getEntity());
+        assertNotNull(backchannelAuthenticationResponse.getAuthReqId());
+        assertNotNull(backchannelAuthenticationResponse.getExpiresIn());
+        assertNull(backchannelAuthenticationResponse.getInterval()); // This parameter will only be present if the Client is registered to use the Poll or Ping modes.
+    }
+
+    @Parameters({"clientJwksUri", "backchannelClientNotificationEndpoint", "backchannelUserCode",
+            "ES256_keyId", "dnName", "keyStoreFile", "keyStoreSecret"})
+    @Test(dependsOnMethods = "idTokenHintES256")
+    public void backchannelTokenDeliveryModePushIdTokenHintES256(
+            final String clientJwksUri, final String backchannelClientNotificationEndpoint, final String backchannelUserCode,
+            final String keyId, final String dnName, final String keyStoreFile, final String keyStoreSecret) throws Exception {
+        showTitle("backchannelTokenDeliveryModePushIdTokenHintES256");
+
+        // 1. Dynamic Client Registration
+        RegisterRequest registerRequest = new RegisterRequest(ApplicationType.WEB, "oxAuth test app", null);
+        registerRequest.setJwksUri(clientJwksUri);
+        registerRequest.setGrantTypes(Arrays.asList(GrantType.CIBA));
+
+        registerRequest.setTokenEndpointAuthMethod(AuthenticationMethod.PRIVATE_KEY_JWT);
+        registerRequest.setTokenEndpointAuthSigningAlg(SignatureAlgorithm.ES256);
+        registerRequest.setBackchannelTokenDeliveryMode(BackchannelTokenDeliveryMode.PUSH);
+        registerRequest.setBackchannelClientNotificationEndpoint(backchannelClientNotificationEndpoint);
+        registerRequest.setBackchannelAuthenticationRequestSigningAlg(AsymmetricSignatureAlgorithm.ES256);
+        registerRequest.setBackchannelUserCodeParameter(true);
+
+        RegisterClient registerClient = new RegisterClient(registrationEndpoint);
+        registerClient.setRequest(registerRequest);
+        RegisterResponse registerResponse = registerClient.exec();
+
+        showClient(registerClient);
+        assertEquals(registerResponse.getStatus(), 200, "Unexpected response code: " + registerResponse.getEntity());
+        assertNotNull(registerResponse.getClientId());
+        assertNotNull(registerResponse.getClientSecret());
+        assertNotNull(registerResponse.getRegistrationAccessToken());
+        assertNotNull(registerResponse.getClientSecretExpiresAt());
+
+        assertTrue(registerResponse.getClaims().containsKey(BACKCHANNEL_TOKEN_DELIVERY_MODE.toString()));
+        assertTrue(registerResponse.getClaims().containsKey(BACKCHANNEL_AUTHENTICATION_REQUEST_SIGNING_ALG.toString()));
+        assertTrue(registerResponse.getClaims().containsKey(BACKCHANNEL_USER_CODE_PARAMETER.toString()));
+        assertTrue(registerResponse.getClaims().containsKey(BACKCHANNEL_CLIENT_NOTIFICATION_ENDPOINT.toString()));
+        assertEquals(registerResponse.getClaims().get(BACKCHANNEL_TOKEN_DELIVERY_MODE.toString()), BackchannelTokenDeliveryMode.PUSH.getValue());
+        assertEquals(registerResponse.getClaims().get(BACKCHANNEL_AUTHENTICATION_REQUEST_SIGNING_ALG.toString()), AsymmetricSignatureAlgorithm.ES256.getValue());
+        assertEquals(registerResponse.getClaims().get(BACKCHANNEL_USER_CODE_PARAMETER.toString()), new Boolean(true).toString());
+
+        String clientId = registerResponse.getClientId();
+
+        // 2. Authentication Request
+        OxAuthCryptoProvider cryptoProvider = new OxAuthCryptoProvider(keyStoreFile, keyStoreSecret, dnName);
+        String clientNotificationToken = UUID.randomUUID().toString();
+
+        BackchannelAuthenticationRequest backchannelAuthenticationRequest = new BackchannelAuthenticationRequest();
+        backchannelAuthenticationRequest.setScope(Arrays.asList("openid"));
+        backchannelAuthenticationRequest.setIdTokenHint(idTokenHintES256);
+        backchannelAuthenticationRequest.setClientNotificationToken(clientNotificationToken);
+        backchannelAuthenticationRequest.setUserCode(backchannelUserCode);
+        backchannelAuthenticationRequest.setRequestedExpiry(1200);
+        backchannelAuthenticationRequest.setAuthenticationMethod(AuthenticationMethod.PRIVATE_KEY_JWT);
+        backchannelAuthenticationRequest.setAlgorithm(SignatureAlgorithm.ES256);
+        backchannelAuthenticationRequest.setCryptoProvider(cryptoProvider);
+        backchannelAuthenticationRequest.setKeyId(keyId);
+        backchannelAuthenticationRequest.setAudience(tokenEndpoint);
+        backchannelAuthenticationRequest.setAuthUsername(clientId);
+
+        BackchannelAuthenticationClient backchannelAuthenticationClient = new BackchannelAuthenticationClient(backchannelAuthenticationEndpoint);
+        backchannelAuthenticationClient.setRequest(backchannelAuthenticationRequest);
+        BackchannelAuthenticationResponse backchannelAuthenticationResponse = backchannelAuthenticationClient.exec();
+
+        showClient(backchannelAuthenticationClient);
+        assertEquals(backchannelAuthenticationResponse.getStatus(), 200, "Unexpected response code: " + backchannelAuthenticationResponse.getEntity());
+        assertNotNull(backchannelAuthenticationResponse.getAuthReqId());
+        assertNotNull(backchannelAuthenticationResponse.getExpiresIn());
+        assertNull(backchannelAuthenticationResponse.getInterval()); // This parameter will only be present if the Client is registered to use the Poll or Ping modes.
+    }
+
+    @Parameters({"clientJwksUri", "backchannelClientNotificationEndpoint", "backchannelUserCode",
+            "ES384_keyId", "dnName", "keyStoreFile", "keyStoreSecret"})
+    @Test(dependsOnMethods = "idTokenHintES384")
+    public void backchannelTokenDeliveryModePushIdTokenHintES384(
+            final String clientJwksUri, final String backchannelClientNotificationEndpoint, final String backchannelUserCode,
+            final String keyId, final String dnName, final String keyStoreFile, final String keyStoreSecret) throws Exception {
+        showTitle("backchannelTokenDeliveryModePushIdTokenHintES384");
+
+        // 1. Dynamic Client Registration
+        RegisterRequest registerRequest = new RegisterRequest(ApplicationType.WEB, "oxAuth test app", null);
+        registerRequest.setJwksUri(clientJwksUri);
+        registerRequest.setGrantTypes(Arrays.asList(GrantType.CIBA));
+
+        registerRequest.setTokenEndpointAuthMethod(AuthenticationMethod.PRIVATE_KEY_JWT);
+        registerRequest.setTokenEndpointAuthSigningAlg(SignatureAlgorithm.ES384);
+        registerRequest.setBackchannelTokenDeliveryMode(BackchannelTokenDeliveryMode.PUSH);
+        registerRequest.setBackchannelClientNotificationEndpoint(backchannelClientNotificationEndpoint);
+        registerRequest.setBackchannelAuthenticationRequestSigningAlg(AsymmetricSignatureAlgorithm.ES384);
+        registerRequest.setBackchannelUserCodeParameter(true);
+
+        RegisterClient registerClient = new RegisterClient(registrationEndpoint);
+        registerClient.setRequest(registerRequest);
+        RegisterResponse registerResponse = registerClient.exec();
+
+        showClient(registerClient);
+        assertEquals(registerResponse.getStatus(), 200, "Unexpected response code: " + registerResponse.getEntity());
+        assertNotNull(registerResponse.getClientId());
+        assertNotNull(registerResponse.getClientSecret());
+        assertNotNull(registerResponse.getRegistrationAccessToken());
+        assertNotNull(registerResponse.getClientSecretExpiresAt());
+
+        assertTrue(registerResponse.getClaims().containsKey(BACKCHANNEL_TOKEN_DELIVERY_MODE.toString()));
+        assertTrue(registerResponse.getClaims().containsKey(BACKCHANNEL_AUTHENTICATION_REQUEST_SIGNING_ALG.toString()));
+        assertTrue(registerResponse.getClaims().containsKey(BACKCHANNEL_USER_CODE_PARAMETER.toString()));
+        assertTrue(registerResponse.getClaims().containsKey(BACKCHANNEL_CLIENT_NOTIFICATION_ENDPOINT.toString()));
+        assertEquals(registerResponse.getClaims().get(BACKCHANNEL_TOKEN_DELIVERY_MODE.toString()), BackchannelTokenDeliveryMode.PUSH.getValue());
+        assertEquals(registerResponse.getClaims().get(BACKCHANNEL_AUTHENTICATION_REQUEST_SIGNING_ALG.toString()), AsymmetricSignatureAlgorithm.ES384.getValue());
+        assertEquals(registerResponse.getClaims().get(BACKCHANNEL_USER_CODE_PARAMETER.toString()), new Boolean(true).toString());
+
+        String clientId = registerResponse.getClientId();
+
+        // 2. Authentication Request
+        OxAuthCryptoProvider cryptoProvider = new OxAuthCryptoProvider(keyStoreFile, keyStoreSecret, dnName);
+        String clientNotificationToken = UUID.randomUUID().toString();
+
+        BackchannelAuthenticationRequest backchannelAuthenticationRequest = new BackchannelAuthenticationRequest();
+        backchannelAuthenticationRequest.setScope(Arrays.asList("openid"));
+        backchannelAuthenticationRequest.setIdTokenHint(idTokenHintES384);
+        backchannelAuthenticationRequest.setClientNotificationToken(clientNotificationToken);
+        backchannelAuthenticationRequest.setUserCode(backchannelUserCode);
+        backchannelAuthenticationRequest.setRequestedExpiry(1200);
+        backchannelAuthenticationRequest.setAuthenticationMethod(AuthenticationMethod.PRIVATE_KEY_JWT);
+        backchannelAuthenticationRequest.setAlgorithm(SignatureAlgorithm.ES384);
+        backchannelAuthenticationRequest.setCryptoProvider(cryptoProvider);
+        backchannelAuthenticationRequest.setKeyId(keyId);
+        backchannelAuthenticationRequest.setAudience(tokenEndpoint);
+        backchannelAuthenticationRequest.setAuthUsername(clientId);
+
+        BackchannelAuthenticationClient backchannelAuthenticationClient = new BackchannelAuthenticationClient(backchannelAuthenticationEndpoint);
+        backchannelAuthenticationClient.setRequest(backchannelAuthenticationRequest);
+        BackchannelAuthenticationResponse backchannelAuthenticationResponse = backchannelAuthenticationClient.exec();
+
+        showClient(backchannelAuthenticationClient);
+        assertEquals(backchannelAuthenticationResponse.getStatus(), 200, "Unexpected response code: " + backchannelAuthenticationResponse.getEntity());
+        assertNotNull(backchannelAuthenticationResponse.getAuthReqId());
+        assertNotNull(backchannelAuthenticationResponse.getExpiresIn());
+        assertNull(backchannelAuthenticationResponse.getInterval()); // This parameter will only be present if the Client is registered to use the Poll or Ping modes.
+    }
+
+    @Parameters({"clientJwksUri", "backchannelClientNotificationEndpoint", "backchannelUserCode",
+            "ES512_keyId", "dnName", "keyStoreFile", "keyStoreSecret"})
+    @Test(dependsOnMethods = "idTokenHintES512")
+    public void backchannelTokenDeliveryModePushIdTokenHintES512(
+            final String clientJwksUri, final String backchannelClientNotificationEndpoint, final String backchannelUserCode,
+            final String keyId, final String dnName, final String keyStoreFile, final String keyStoreSecret) throws Exception {
+        showTitle("backchannelTokenDeliveryModePushIdTokenHintES512");
+
+        // 1. Dynamic Client Registration
+        RegisterRequest registerRequest = new RegisterRequest(ApplicationType.WEB, "oxAuth test app", null);
+        registerRequest.setJwksUri(clientJwksUri);
+        registerRequest.setGrantTypes(Arrays.asList(GrantType.CIBA));
+
+        registerRequest.setTokenEndpointAuthMethod(AuthenticationMethod.PRIVATE_KEY_JWT);
+        registerRequest.setTokenEndpointAuthSigningAlg(SignatureAlgorithm.ES512);
+        registerRequest.setBackchannelTokenDeliveryMode(BackchannelTokenDeliveryMode.PUSH);
+        registerRequest.setBackchannelClientNotificationEndpoint(backchannelClientNotificationEndpoint);
+        registerRequest.setBackchannelAuthenticationRequestSigningAlg(AsymmetricSignatureAlgorithm.ES512);
+        registerRequest.setBackchannelUserCodeParameter(true);
+
+        RegisterClient registerClient = new RegisterClient(registrationEndpoint);
+        registerClient.setRequest(registerRequest);
+        RegisterResponse registerResponse = registerClient.exec();
+
+        showClient(registerClient);
+        assertEquals(registerResponse.getStatus(), 200, "Unexpected response code: " + registerResponse.getEntity());
+        assertNotNull(registerResponse.getClientId());
+        assertNotNull(registerResponse.getClientSecret());
+        assertNotNull(registerResponse.getRegistrationAccessToken());
+        assertNotNull(registerResponse.getClientSecretExpiresAt());
+
+        assertTrue(registerResponse.getClaims().containsKey(BACKCHANNEL_TOKEN_DELIVERY_MODE.toString()));
+        assertTrue(registerResponse.getClaims().containsKey(BACKCHANNEL_AUTHENTICATION_REQUEST_SIGNING_ALG.toString()));
+        assertTrue(registerResponse.getClaims().containsKey(BACKCHANNEL_USER_CODE_PARAMETER.toString()));
+        assertTrue(registerResponse.getClaims().containsKey(BACKCHANNEL_CLIENT_NOTIFICATION_ENDPOINT.toString()));
+        assertEquals(registerResponse.getClaims().get(BACKCHANNEL_TOKEN_DELIVERY_MODE.toString()), BackchannelTokenDeliveryMode.PUSH.getValue());
+        assertEquals(registerResponse.getClaims().get(BACKCHANNEL_AUTHENTICATION_REQUEST_SIGNING_ALG.toString()), AsymmetricSignatureAlgorithm.ES512.getValue());
+        assertEquals(registerResponse.getClaims().get(BACKCHANNEL_USER_CODE_PARAMETER.toString()), new Boolean(true).toString());
+
+        String clientId = registerResponse.getClientId();
+
+        // 2. Authentication Request
+        OxAuthCryptoProvider cryptoProvider = new OxAuthCryptoProvider(keyStoreFile, keyStoreSecret, dnName);
+        String clientNotificationToken = UUID.randomUUID().toString();
+
+        BackchannelAuthenticationRequest backchannelAuthenticationRequest = new BackchannelAuthenticationRequest();
+        backchannelAuthenticationRequest.setScope(Arrays.asList("openid"));
+        backchannelAuthenticationRequest.setIdTokenHint(idTokenHintES512);
+        backchannelAuthenticationRequest.setClientNotificationToken(clientNotificationToken);
+        backchannelAuthenticationRequest.setUserCode(backchannelUserCode);
+        backchannelAuthenticationRequest.setRequestedExpiry(1200);
+        backchannelAuthenticationRequest.setAuthenticationMethod(AuthenticationMethod.PRIVATE_KEY_JWT);
+        backchannelAuthenticationRequest.setAlgorithm(SignatureAlgorithm.ES512);
+        backchannelAuthenticationRequest.setCryptoProvider(cryptoProvider);
+        backchannelAuthenticationRequest.setKeyId(keyId);
+        backchannelAuthenticationRequest.setAudience(tokenEndpoint);
+        backchannelAuthenticationRequest.setAuthUsername(clientId);
+
+        BackchannelAuthenticationClient backchannelAuthenticationClient = new BackchannelAuthenticationClient(backchannelAuthenticationEndpoint);
+        backchannelAuthenticationClient.setRequest(backchannelAuthenticationRequest);
+        BackchannelAuthenticationResponse backchannelAuthenticationResponse = backchannelAuthenticationClient.exec();
+
+        showClient(backchannelAuthenticationClient);
+        assertEquals(backchannelAuthenticationResponse.getStatus(), 200, "Unexpected response code: " + backchannelAuthenticationResponse.getEntity());
+        assertNotNull(backchannelAuthenticationResponse.getAuthReqId());
+        assertNotNull(backchannelAuthenticationResponse.getExpiresIn());
+        assertNull(backchannelAuthenticationResponse.getInterval()); // This parameter will only be present if the Client is registered to use the Poll or Ping modes.
+    }
+
+    @Parameters({"clientJwksUri", "backchannelClientNotificationEndpoint", "backchannelUserCode",
+            "PS256_keyId", "dnName", "keyStoreFile", "keyStoreSecret"})
+    @Test(dependsOnMethods = "idTokenHintPS256")
+    public void backchannelTokenDeliveryModePushIdTokenHintPS256(
+            final String clientJwksUri, final String backchannelClientNotificationEndpoint, final String backchannelUserCode,
+            final String keyId, final String dnName, final String keyStoreFile, final String keyStoreSecret) throws Exception {
+        showTitle("backchannelTokenDeliveryModePushIdTokenHintPS256");
+
+        // 1. Dynamic Client Registration
+        RegisterRequest registerRequest = new RegisterRequest(ApplicationType.WEB, "oxAuth test app", null);
+        registerRequest.setJwksUri(clientJwksUri);
+        registerRequest.setGrantTypes(Arrays.asList(GrantType.CIBA));
+
+        registerRequest.setTokenEndpointAuthMethod(AuthenticationMethod.PRIVATE_KEY_JWT);
+        registerRequest.setTokenEndpointAuthSigningAlg(SignatureAlgorithm.PS256);
+        registerRequest.setBackchannelTokenDeliveryMode(BackchannelTokenDeliveryMode.PUSH);
+        registerRequest.setBackchannelClientNotificationEndpoint(backchannelClientNotificationEndpoint);
+        registerRequest.setBackchannelAuthenticationRequestSigningAlg(AsymmetricSignatureAlgorithm.PS256);
+        registerRequest.setBackchannelUserCodeParameter(true);
+
+        RegisterClient registerClient = new RegisterClient(registrationEndpoint);
+        registerClient.setRequest(registerRequest);
+        RegisterResponse registerResponse = registerClient.exec();
+
+        showClient(registerClient);
+        assertEquals(registerResponse.getStatus(), 200, "Unexpected response code: " + registerResponse.getEntity());
+        assertNotNull(registerResponse.getClientId());
+        assertNotNull(registerResponse.getClientSecret());
+        assertNotNull(registerResponse.getRegistrationAccessToken());
+        assertNotNull(registerResponse.getClientSecretExpiresAt());
+
+        assertTrue(registerResponse.getClaims().containsKey(BACKCHANNEL_TOKEN_DELIVERY_MODE.toString()));
+        assertTrue(registerResponse.getClaims().containsKey(BACKCHANNEL_AUTHENTICATION_REQUEST_SIGNING_ALG.toString()));
+        assertTrue(registerResponse.getClaims().containsKey(BACKCHANNEL_USER_CODE_PARAMETER.toString()));
+        assertTrue(registerResponse.getClaims().containsKey(BACKCHANNEL_CLIENT_NOTIFICATION_ENDPOINT.toString()));
+        assertEquals(registerResponse.getClaims().get(BACKCHANNEL_TOKEN_DELIVERY_MODE.toString()), BackchannelTokenDeliveryMode.PUSH.getValue());
+        assertEquals(registerResponse.getClaims().get(BACKCHANNEL_AUTHENTICATION_REQUEST_SIGNING_ALG.toString()), AsymmetricSignatureAlgorithm.PS256.getValue());
+        assertEquals(registerResponse.getClaims().get(BACKCHANNEL_USER_CODE_PARAMETER.toString()), new Boolean(true).toString());
+
+        String clientId = registerResponse.getClientId();
+
+        // 2. Authentication Request
+        OxAuthCryptoProvider cryptoProvider = new OxAuthCryptoProvider(keyStoreFile, keyStoreSecret, dnName);
+        String clientNotificationToken = UUID.randomUUID().toString();
+
+        BackchannelAuthenticationRequest backchannelAuthenticationRequest = new BackchannelAuthenticationRequest();
+        backchannelAuthenticationRequest.setScope(Arrays.asList("openid"));
+        backchannelAuthenticationRequest.setIdTokenHint(idTokenHintPS256);
+        backchannelAuthenticationRequest.setClientNotificationToken(clientNotificationToken);
+        backchannelAuthenticationRequest.setUserCode(backchannelUserCode);
+        backchannelAuthenticationRequest.setRequestedExpiry(1200);
+        backchannelAuthenticationRequest.setAuthenticationMethod(AuthenticationMethod.PRIVATE_KEY_JWT);
+        backchannelAuthenticationRequest.setAlgorithm(SignatureAlgorithm.PS256);
+        backchannelAuthenticationRequest.setCryptoProvider(cryptoProvider);
+        backchannelAuthenticationRequest.setKeyId(keyId);
+        backchannelAuthenticationRequest.setAudience(tokenEndpoint);
+        backchannelAuthenticationRequest.setAuthUsername(clientId);
+
+        BackchannelAuthenticationClient backchannelAuthenticationClient = new BackchannelAuthenticationClient(backchannelAuthenticationEndpoint);
+        backchannelAuthenticationClient.setRequest(backchannelAuthenticationRequest);
+        BackchannelAuthenticationResponse backchannelAuthenticationResponse = backchannelAuthenticationClient.exec();
+
+        showClient(backchannelAuthenticationClient);
+        assertEquals(backchannelAuthenticationResponse.getStatus(), 200, "Unexpected response code: " + backchannelAuthenticationResponse.getEntity());
+        assertNotNull(backchannelAuthenticationResponse.getAuthReqId());
+        assertNotNull(backchannelAuthenticationResponse.getExpiresIn());
+        assertNull(backchannelAuthenticationResponse.getInterval()); // This parameter will only be present if the Client is registered to use the Poll or Ping modes.
+    }
+
+    @Parameters({"clientJwksUri", "backchannelClientNotificationEndpoint", "backchannelUserCode",
+            "PS384_keyId", "dnName", "keyStoreFile", "keyStoreSecret"})
+    @Test(dependsOnMethods = "idTokenHintPS384")
+    public void backchannelTokenDeliveryModePushIdTokenHintPS384(
+            final String clientJwksUri, final String backchannelClientNotificationEndpoint, final String backchannelUserCode,
+            final String keyId, final String dnName, final String keyStoreFile, final String keyStoreSecret) throws Exception {
+        showTitle("backchannelTokenDeliveryModePushIdTokenHintPS384");
+
+        // 1. Dynamic Client Registration
+        RegisterRequest registerRequest = new RegisterRequest(ApplicationType.WEB, "oxAuth test app", null);
+        registerRequest.setJwksUri(clientJwksUri);
+        registerRequest.setGrantTypes(Arrays.asList(GrantType.CIBA));
+
+        registerRequest.setTokenEndpointAuthMethod(AuthenticationMethod.PRIVATE_KEY_JWT);
+        registerRequest.setTokenEndpointAuthSigningAlg(SignatureAlgorithm.PS384);
+        registerRequest.setBackchannelTokenDeliveryMode(BackchannelTokenDeliveryMode.PUSH);
+        registerRequest.setBackchannelClientNotificationEndpoint(backchannelClientNotificationEndpoint);
+        registerRequest.setBackchannelAuthenticationRequestSigningAlg(AsymmetricSignatureAlgorithm.PS384);
+        registerRequest.setBackchannelUserCodeParameter(true);
+
+        RegisterClient registerClient = new RegisterClient(registrationEndpoint);
+        registerClient.setRequest(registerRequest);
+        RegisterResponse registerResponse = registerClient.exec();
+
+        showClient(registerClient);
+        assertEquals(registerResponse.getStatus(), 200, "Unexpected response code: " + registerResponse.getEntity());
+        assertNotNull(registerResponse.getClientId());
+        assertNotNull(registerResponse.getClientSecret());
+        assertNotNull(registerResponse.getRegistrationAccessToken());
+        assertNotNull(registerResponse.getClientSecretExpiresAt());
+
+        assertTrue(registerResponse.getClaims().containsKey(BACKCHANNEL_TOKEN_DELIVERY_MODE.toString()));
+        assertTrue(registerResponse.getClaims().containsKey(BACKCHANNEL_AUTHENTICATION_REQUEST_SIGNING_ALG.toString()));
+        assertTrue(registerResponse.getClaims().containsKey(BACKCHANNEL_USER_CODE_PARAMETER.toString()));
+        assertTrue(registerResponse.getClaims().containsKey(BACKCHANNEL_CLIENT_NOTIFICATION_ENDPOINT.toString()));
+        assertEquals(registerResponse.getClaims().get(BACKCHANNEL_TOKEN_DELIVERY_MODE.toString()), BackchannelTokenDeliveryMode.PUSH.getValue());
+        assertEquals(registerResponse.getClaims().get(BACKCHANNEL_AUTHENTICATION_REQUEST_SIGNING_ALG.toString()), AsymmetricSignatureAlgorithm.PS384.getValue());
+        assertEquals(registerResponse.getClaims().get(BACKCHANNEL_USER_CODE_PARAMETER.toString()), new Boolean(true).toString());
+
+        String clientId = registerResponse.getClientId();
+
+        // 2. Authentication Request
+        OxAuthCryptoProvider cryptoProvider = new OxAuthCryptoProvider(keyStoreFile, keyStoreSecret, dnName);
+        String clientNotificationToken = UUID.randomUUID().toString();
+
+        BackchannelAuthenticationRequest backchannelAuthenticationRequest = new BackchannelAuthenticationRequest();
+        backchannelAuthenticationRequest.setScope(Arrays.asList("openid"));
+        backchannelAuthenticationRequest.setIdTokenHint(idTokenHintPS384);
+        backchannelAuthenticationRequest.setClientNotificationToken(clientNotificationToken);
+        backchannelAuthenticationRequest.setUserCode(backchannelUserCode);
+        backchannelAuthenticationRequest.setRequestedExpiry(1200);
+        backchannelAuthenticationRequest.setAuthenticationMethod(AuthenticationMethod.PRIVATE_KEY_JWT);
+        backchannelAuthenticationRequest.setAlgorithm(SignatureAlgorithm.PS384);
+        backchannelAuthenticationRequest.setCryptoProvider(cryptoProvider);
+        backchannelAuthenticationRequest.setKeyId(keyId);
+        backchannelAuthenticationRequest.setAudience(tokenEndpoint);
+        backchannelAuthenticationRequest.setAuthUsername(clientId);
+
+        BackchannelAuthenticationClient backchannelAuthenticationClient = new BackchannelAuthenticationClient(backchannelAuthenticationEndpoint);
+        backchannelAuthenticationClient.setRequest(backchannelAuthenticationRequest);
+        BackchannelAuthenticationResponse backchannelAuthenticationResponse = backchannelAuthenticationClient.exec();
+
+        showClient(backchannelAuthenticationClient);
+        assertEquals(backchannelAuthenticationResponse.getStatus(), 200, "Unexpected response code: " + backchannelAuthenticationResponse.getEntity());
+        assertNotNull(backchannelAuthenticationResponse.getAuthReqId());
+        assertNotNull(backchannelAuthenticationResponse.getExpiresIn());
+        assertNull(backchannelAuthenticationResponse.getInterval()); // This parameter will only be present if the Client is registered to use the Poll or Ping modes.
+    }
+
+    @Parameters({"clientJwksUri", "backchannelClientNotificationEndpoint", "backchannelUserCode",
+            "PS512_keyId", "dnName", "keyStoreFile", "keyStoreSecret"})
+    @Test(dependsOnMethods = "idTokenHintPS512")
+    public void backchannelTokenDeliveryModePushIdTokenHintPS512(
+            final String clientJwksUri, final String backchannelClientNotificationEndpoint, final String backchannelUserCode,
+            final String keyId, final String dnName, final String keyStoreFile, final String keyStoreSecret) throws Exception {
+        showTitle("backchannelTokenDeliveryModePushIdTokenHintPS512");
+
+        // 1. Dynamic Client Registration
+        RegisterRequest registerRequest = new RegisterRequest(ApplicationType.WEB, "oxAuth test app", null);
+        registerRequest.setJwksUri(clientJwksUri);
+        registerRequest.setGrantTypes(Arrays.asList(GrantType.CIBA));
+
+        registerRequest.setTokenEndpointAuthMethod(AuthenticationMethod.PRIVATE_KEY_JWT);
+        registerRequest.setTokenEndpointAuthSigningAlg(SignatureAlgorithm.PS512);
+        registerRequest.setBackchannelTokenDeliveryMode(BackchannelTokenDeliveryMode.PUSH);
+        registerRequest.setBackchannelClientNotificationEndpoint(backchannelClientNotificationEndpoint);
+        registerRequest.setBackchannelAuthenticationRequestSigningAlg(AsymmetricSignatureAlgorithm.PS512);
+        registerRequest.setBackchannelUserCodeParameter(true);
+
+        RegisterClient registerClient = new RegisterClient(registrationEndpoint);
+        registerClient.setRequest(registerRequest);
+        RegisterResponse registerResponse = registerClient.exec();
+
+        showClient(registerClient);
+        assertEquals(registerResponse.getStatus(), 200, "Unexpected response code: " + registerResponse.getEntity());
+        assertNotNull(registerResponse.getClientId());
+        assertNotNull(registerResponse.getClientSecret());
+        assertNotNull(registerResponse.getRegistrationAccessToken());
+        assertNotNull(registerResponse.getClientSecretExpiresAt());
+
+        assertTrue(registerResponse.getClaims().containsKey(BACKCHANNEL_TOKEN_DELIVERY_MODE.toString()));
+        assertTrue(registerResponse.getClaims().containsKey(BACKCHANNEL_AUTHENTICATION_REQUEST_SIGNING_ALG.toString()));
+        assertTrue(registerResponse.getClaims().containsKey(BACKCHANNEL_USER_CODE_PARAMETER.toString()));
+        assertTrue(registerResponse.getClaims().containsKey(BACKCHANNEL_CLIENT_NOTIFICATION_ENDPOINT.toString()));
+        assertEquals(registerResponse.getClaims().get(BACKCHANNEL_TOKEN_DELIVERY_MODE.toString()), BackchannelTokenDeliveryMode.PUSH.getValue());
+        assertEquals(registerResponse.getClaims().get(BACKCHANNEL_AUTHENTICATION_REQUEST_SIGNING_ALG.toString()), AsymmetricSignatureAlgorithm.PS512.getValue());
+        assertEquals(registerResponse.getClaims().get(BACKCHANNEL_USER_CODE_PARAMETER.toString()), new Boolean(true).toString());
+
+        String clientId = registerResponse.getClientId();
+
+        // 2. Authentication Request
+        OxAuthCryptoProvider cryptoProvider = new OxAuthCryptoProvider(keyStoreFile, keyStoreSecret, dnName);
+        String clientNotificationToken = UUID.randomUUID().toString();
+
+        BackchannelAuthenticationRequest backchannelAuthenticationRequest = new BackchannelAuthenticationRequest();
+        backchannelAuthenticationRequest.setScope(Arrays.asList("openid"));
+        backchannelAuthenticationRequest.setIdTokenHint(idTokenHintPS512);
+        backchannelAuthenticationRequest.setClientNotificationToken(clientNotificationToken);
+        backchannelAuthenticationRequest.setUserCode(backchannelUserCode);
+        backchannelAuthenticationRequest.setRequestedExpiry(1200);
+        backchannelAuthenticationRequest.setAuthenticationMethod(AuthenticationMethod.PRIVATE_KEY_JWT);
+        backchannelAuthenticationRequest.setAlgorithm(SignatureAlgorithm.PS512);
+        backchannelAuthenticationRequest.setCryptoProvider(cryptoProvider);
+        backchannelAuthenticationRequest.setKeyId(keyId);
+        backchannelAuthenticationRequest.setAudience(tokenEndpoint);
+        backchannelAuthenticationRequest.setAuthUsername(clientId);
+
+        BackchannelAuthenticationClient backchannelAuthenticationClient = new BackchannelAuthenticationClient(backchannelAuthenticationEndpoint);
+        backchannelAuthenticationClient.setRequest(backchannelAuthenticationRequest);
+        BackchannelAuthenticationResponse backchannelAuthenticationResponse = backchannelAuthenticationClient.exec();
+
+        showClient(backchannelAuthenticationClient);
+        assertEquals(backchannelAuthenticationResponse.getStatus(), 200, "Unexpected response code: " + backchannelAuthenticationResponse.getEntity());
+        assertNotNull(backchannelAuthenticationResponse.getAuthReqId());
+        assertNotNull(backchannelAuthenticationResponse.getExpiresIn());
+        assertNull(backchannelAuthenticationResponse.getInterval()); // This parameter will only be present if the Client is registered to use the Poll or Ping modes.
+    }
+
+    @Parameters({"clientJwksUri", "backchannelClientNotificationEndpoint", "backchannelUserCode"})
+    @Test(dependsOnMethods = "idTokenHintAlgA128KWEncA128GCM")
+    public void backchannelTokenDeliveryModePushIdTokenHintAlgA128KWEncA128GCM(
+            final String clientJwksUri, final String backchannelClientNotificationEndpoint, final String backchannelUserCode) {
+        showTitle("backchannelTokenDeliveryModePushIdTokenHintAlgA128KWEncA128GCM");
+
+        // 1. Dynamic Client Registration
+        RegisterRequest registerRequest = new RegisterRequest(ApplicationType.WEB, "oxAuth test app", null);
+        registerRequest.setJwksUri(clientJwksUri);
+        registerRequest.setGrantTypes(Arrays.asList(GrantType.CIBA));
+
+        registerRequest.setBackchannelTokenDeliveryMode(BackchannelTokenDeliveryMode.PUSH);
+        registerRequest.setBackchannelClientNotificationEndpoint(backchannelClientNotificationEndpoint);
+        registerRequest.setBackchannelAuthenticationRequestSigningAlg(AsymmetricSignatureAlgorithm.RS256);
+        registerRequest.setBackchannelUserCodeParameter(true);
+
+        RegisterClient registerClient = new RegisterClient(registrationEndpoint);
+        registerClient.setRequest(registerRequest);
+        RegisterResponse registerResponse = registerClient.exec();
+
+        showClient(registerClient);
+        assertEquals(registerResponse.getStatus(), 200, "Unexpected response code: " + registerResponse.getEntity());
+        assertNotNull(registerResponse.getClientId());
+        assertNotNull(registerResponse.getClientSecret());
+        assertNotNull(registerResponse.getRegistrationAccessToken());
+        assertNotNull(registerResponse.getClientSecretExpiresAt());
+
+        assertTrue(registerResponse.getClaims().containsKey(BACKCHANNEL_TOKEN_DELIVERY_MODE.toString()));
+        assertTrue(registerResponse.getClaims().containsKey(BACKCHANNEL_AUTHENTICATION_REQUEST_SIGNING_ALG.toString()));
+        assertTrue(registerResponse.getClaims().containsKey(BACKCHANNEL_USER_CODE_PARAMETER.toString()));
+        assertTrue(registerResponse.getClaims().containsKey(BACKCHANNEL_CLIENT_NOTIFICATION_ENDPOINT.toString()));
+        assertEquals(registerResponse.getClaims().get(BACKCHANNEL_TOKEN_DELIVERY_MODE.toString()), BackchannelTokenDeliveryMode.PUSH.getValue());
+        assertEquals(registerResponse.getClaims().get(BACKCHANNEL_AUTHENTICATION_REQUEST_SIGNING_ALG.toString()), AsymmetricSignatureAlgorithm.RS256.getValue());
+        assertEquals(registerResponse.getClaims().get(BACKCHANNEL_USER_CODE_PARAMETER.toString()), new Boolean(true).toString());
+
+        String clientId = registerResponse.getClientId();
+        String clientSecret = registerResponse.getClientSecret();
+
+        // 2. Authentication Request
+        String clientNotificationToken = UUID.randomUUID().toString();
+
+        BackchannelAuthenticationRequest backchannelAuthenticationRequest = new BackchannelAuthenticationRequest();
+        backchannelAuthenticationRequest.setScope(Arrays.asList("openid"));
+        backchannelAuthenticationRequest.setIdTokenHint(idTokenHintAlgA128KWEncA128GCM);
+        backchannelAuthenticationRequest.setClientNotificationToken(clientNotificationToken);
+        backchannelAuthenticationRequest.setUserCode(backchannelUserCode);
+        backchannelAuthenticationRequest.setRequestedExpiry(1200);
+        backchannelAuthenticationRequest.setAuthUsername(clientId);
+        backchannelAuthenticationRequest.setAuthPassword(clientSecret);
+
+        BackchannelAuthenticationClient backchannelAuthenticationClient = new BackchannelAuthenticationClient(backchannelAuthenticationEndpoint);
+        backchannelAuthenticationClient.setRequest(backchannelAuthenticationRequest);
+        BackchannelAuthenticationResponse backchannelAuthenticationResponse = backchannelAuthenticationClient.exec();
+
+        showClient(backchannelAuthenticationClient);
+        assertEquals(backchannelAuthenticationResponse.getStatus(), 200, "Unexpected response code: " + backchannelAuthenticationResponse.getEntity());
+        assertNotNull(backchannelAuthenticationResponse.getAuthReqId());
+        assertNotNull(backchannelAuthenticationResponse.getExpiresIn());
+        assertNull(backchannelAuthenticationResponse.getInterval()); // This parameter will only be present if the Client is registered to use the Poll or Ping modes.
+    }
+
+    @Parameters({"clientJwksUri", "backchannelClientNotificationEndpoint", "backchannelUserCode"})
+    @Test(dependsOnMethods = "idTokenHintAlgA256KWEncA256GCM")
+    public void backchannelTokenDeliveryModePushIdTokenHintAlgA256KWEncA256GCM(
+            final String clientJwksUri, final String backchannelClientNotificationEndpoint, final String backchannelUserCode) {
+        showTitle("backchannelTokenDeliveryModePushIdTokenHintAlgA256KWEncA256GCM");
+
+        // 1. Dynamic Client Registration
+        RegisterRequest registerRequest = new RegisterRequest(ApplicationType.WEB, "oxAuth test app", null);
+        registerRequest.setJwksUri(clientJwksUri);
+        registerRequest.setGrantTypes(Arrays.asList(GrantType.CIBA));
+
+        registerRequest.setBackchannelTokenDeliveryMode(BackchannelTokenDeliveryMode.PUSH);
+        registerRequest.setBackchannelClientNotificationEndpoint(backchannelClientNotificationEndpoint);
+        registerRequest.setBackchannelAuthenticationRequestSigningAlg(AsymmetricSignatureAlgorithm.RS256);
+        registerRequest.setBackchannelUserCodeParameter(true);
+
+        RegisterClient registerClient = new RegisterClient(registrationEndpoint);
+        registerClient.setRequest(registerRequest);
+        RegisterResponse registerResponse = registerClient.exec();
+
+        showClient(registerClient);
+        assertEquals(registerResponse.getStatus(), 200, "Unexpected response code: " + registerResponse.getEntity());
+        assertNotNull(registerResponse.getClientId());
+        assertNotNull(registerResponse.getClientSecret());
+        assertNotNull(registerResponse.getRegistrationAccessToken());
+        assertNotNull(registerResponse.getClientSecretExpiresAt());
+
+        assertTrue(registerResponse.getClaims().containsKey(BACKCHANNEL_TOKEN_DELIVERY_MODE.toString()));
+        assertTrue(registerResponse.getClaims().containsKey(BACKCHANNEL_AUTHENTICATION_REQUEST_SIGNING_ALG.toString()));
+        assertTrue(registerResponse.getClaims().containsKey(BACKCHANNEL_USER_CODE_PARAMETER.toString()));
+        assertTrue(registerResponse.getClaims().containsKey(BACKCHANNEL_CLIENT_NOTIFICATION_ENDPOINT.toString()));
+        assertEquals(registerResponse.getClaims().get(BACKCHANNEL_TOKEN_DELIVERY_MODE.toString()), BackchannelTokenDeliveryMode.PUSH.getValue());
+        assertEquals(registerResponse.getClaims().get(BACKCHANNEL_AUTHENTICATION_REQUEST_SIGNING_ALG.toString()), AsymmetricSignatureAlgorithm.RS256.getValue());
+        assertEquals(registerResponse.getClaims().get(BACKCHANNEL_USER_CODE_PARAMETER.toString()), new Boolean(true).toString());
+
+        String clientId = registerResponse.getClientId();
+        String clientSecret = registerResponse.getClientSecret();
+
+        // 2. Authentication Request
+        String clientNotificationToken = UUID.randomUUID().toString();
+
+        BackchannelAuthenticationRequest backchannelAuthenticationRequest = new BackchannelAuthenticationRequest();
+        backchannelAuthenticationRequest.setScope(Arrays.asList("openid"));
+        backchannelAuthenticationRequest.setIdTokenHint(idTokenHintAlgA256KWEncA256GCM);
+        backchannelAuthenticationRequest.setClientNotificationToken(clientNotificationToken);
+        backchannelAuthenticationRequest.setUserCode(backchannelUserCode);
+        backchannelAuthenticationRequest.setRequestedExpiry(1200);
+        backchannelAuthenticationRequest.setAuthUsername(clientId);
+        backchannelAuthenticationRequest.setAuthPassword(clientSecret);
+
+        BackchannelAuthenticationClient backchannelAuthenticationClient = new BackchannelAuthenticationClient(backchannelAuthenticationEndpoint);
+        backchannelAuthenticationClient.setRequest(backchannelAuthenticationRequest);
+        BackchannelAuthenticationResponse backchannelAuthenticationResponse = backchannelAuthenticationClient.exec();
+
+        showClient(backchannelAuthenticationClient);
+        assertEquals(backchannelAuthenticationResponse.getStatus(), 200, "Unexpected response code: " + backchannelAuthenticationResponse.getEntity());
+        assertNotNull(backchannelAuthenticationResponse.getAuthReqId());
+        assertNotNull(backchannelAuthenticationResponse.getExpiresIn());
+        assertNull(backchannelAuthenticationResponse.getInterval()); // This parameter will only be present if the Client is registered to use the Poll or Ping modes.
+    }
+
+    @Parameters({"clientJwksUri", "backchannelClientNotificationEndpoint", "backchannelUserCode"})
+    @Test(dependsOnMethods = "idTokenHintAlgRSA15EncA128CBCPLUSHS256")
+    public void backchannelTokenDeliveryModePushIdTokenHintAlgRSA15EncA128CBCPLUSHS256(
+            final String clientJwksUri, final String backchannelClientNotificationEndpoint, final String backchannelUserCode) {
+        showTitle("backchannelTokenDeliveryModePushIdTokenHintAlgRSA15EncA128CBCPLUSHS256");
+
+        // 1. Dynamic Client Registration
+        RegisterRequest registerRequest = new RegisterRequest(ApplicationType.WEB, "oxAuth test app", null);
+        registerRequest.setJwksUri(clientJwksUri);
+        registerRequest.setGrantTypes(Arrays.asList(GrantType.CIBA));
+
+        registerRequest.setBackchannelTokenDeliveryMode(BackchannelTokenDeliveryMode.PUSH);
+        registerRequest.setBackchannelClientNotificationEndpoint(backchannelClientNotificationEndpoint);
+        registerRequest.setBackchannelAuthenticationRequestSigningAlg(AsymmetricSignatureAlgorithm.RS256);
+        registerRequest.setBackchannelUserCodeParameter(true);
+
+        RegisterClient registerClient = new RegisterClient(registrationEndpoint);
+        registerClient.setRequest(registerRequest);
+        RegisterResponse registerResponse = registerClient.exec();
+
+        showClient(registerClient);
+        assertEquals(registerResponse.getStatus(), 200, "Unexpected response code: " + registerResponse.getEntity());
+        assertNotNull(registerResponse.getClientId());
+        assertNotNull(registerResponse.getClientSecret());
+        assertNotNull(registerResponse.getRegistrationAccessToken());
+        assertNotNull(registerResponse.getClientSecretExpiresAt());
+
+        assertTrue(registerResponse.getClaims().containsKey(BACKCHANNEL_TOKEN_DELIVERY_MODE.toString()));
+        assertTrue(registerResponse.getClaims().containsKey(BACKCHANNEL_AUTHENTICATION_REQUEST_SIGNING_ALG.toString()));
+        assertTrue(registerResponse.getClaims().containsKey(BACKCHANNEL_USER_CODE_PARAMETER.toString()));
+        assertTrue(registerResponse.getClaims().containsKey(BACKCHANNEL_CLIENT_NOTIFICATION_ENDPOINT.toString()));
+        assertEquals(registerResponse.getClaims().get(BACKCHANNEL_TOKEN_DELIVERY_MODE.toString()), BackchannelTokenDeliveryMode.PUSH.getValue());
+        assertEquals(registerResponse.getClaims().get(BACKCHANNEL_AUTHENTICATION_REQUEST_SIGNING_ALG.toString()), AsymmetricSignatureAlgorithm.RS256.getValue());
+        assertEquals(registerResponse.getClaims().get(BACKCHANNEL_USER_CODE_PARAMETER.toString()), new Boolean(true).toString());
+
+        String clientId = registerResponse.getClientId();
+        String clientSecret = registerResponse.getClientSecret();
+
+        // 2. Authentication Request
+        String clientNotificationToken = UUID.randomUUID().toString();
+
+        BackchannelAuthenticationRequest backchannelAuthenticationRequest = new BackchannelAuthenticationRequest();
+        backchannelAuthenticationRequest.setScope(Arrays.asList("openid"));
+        backchannelAuthenticationRequest.setIdTokenHint(idTokenHintAlgRSA15EncA128CBCPLUSHS256);
+        backchannelAuthenticationRequest.setClientNotificationToken(clientNotificationToken);
+        backchannelAuthenticationRequest.setUserCode(backchannelUserCode);
+        backchannelAuthenticationRequest.setRequestedExpiry(1200);
+        backchannelAuthenticationRequest.setAuthUsername(clientId);
+        backchannelAuthenticationRequest.setAuthPassword(clientSecret);
+
+        BackchannelAuthenticationClient backchannelAuthenticationClient = new BackchannelAuthenticationClient(backchannelAuthenticationEndpoint);
+        backchannelAuthenticationClient.setRequest(backchannelAuthenticationRequest);
+        BackchannelAuthenticationResponse backchannelAuthenticationResponse = backchannelAuthenticationClient.exec();
+
+        showClient(backchannelAuthenticationClient);
+        assertEquals(backchannelAuthenticationResponse.getStatus(), 200, "Unexpected response code: " + backchannelAuthenticationResponse.getEntity());
+        assertNotNull(backchannelAuthenticationResponse.getAuthReqId());
+        assertNotNull(backchannelAuthenticationResponse.getExpiresIn());
+        assertNull(backchannelAuthenticationResponse.getInterval()); // This parameter will only be present if the Client is registered to use the Poll or Ping modes.
+    }
+
+    @Parameters({"clientJwksUri", "backchannelClientNotificationEndpoint", "backchannelUserCode"})
+    @Test(dependsOnMethods = "idTokenHintAlgRSA15EncA256CBCPLUSHS512")
+    public void backchannelTokenDeliveryModePushIdTokenHintAlgRSA15EncA256CBCPLUSHS512(
+            final String clientJwksUri, final String backchannelClientNotificationEndpoint, final String backchannelUserCode) {
+        showTitle("backchannelTokenDeliveryModePushIdTokenHintAlgRSA15EncA256CBCPLUSHS512");
+
+        // 1. Dynamic Client Registration
+        RegisterRequest registerRequest = new RegisterRequest(ApplicationType.WEB, "oxAuth test app", null);
+        registerRequest.setJwksUri(clientJwksUri);
+        registerRequest.setGrantTypes(Arrays.asList(GrantType.CIBA));
+
+        registerRequest.setBackchannelTokenDeliveryMode(BackchannelTokenDeliveryMode.PUSH);
+        registerRequest.setBackchannelClientNotificationEndpoint(backchannelClientNotificationEndpoint);
+        registerRequest.setBackchannelAuthenticationRequestSigningAlg(AsymmetricSignatureAlgorithm.RS256);
+        registerRequest.setBackchannelUserCodeParameter(true);
+
+        RegisterClient registerClient = new RegisterClient(registrationEndpoint);
+        registerClient.setRequest(registerRequest);
+        RegisterResponse registerResponse = registerClient.exec();
+
+        showClient(registerClient);
+        assertEquals(registerResponse.getStatus(), 200, "Unexpected response code: " + registerResponse.getEntity());
+        assertNotNull(registerResponse.getClientId());
+        assertNotNull(registerResponse.getClientSecret());
+        assertNotNull(registerResponse.getRegistrationAccessToken());
+        assertNotNull(registerResponse.getClientSecretExpiresAt());
+
+        assertTrue(registerResponse.getClaims().containsKey(BACKCHANNEL_TOKEN_DELIVERY_MODE.toString()));
+        assertTrue(registerResponse.getClaims().containsKey(BACKCHANNEL_AUTHENTICATION_REQUEST_SIGNING_ALG.toString()));
+        assertTrue(registerResponse.getClaims().containsKey(BACKCHANNEL_USER_CODE_PARAMETER.toString()));
+        assertTrue(registerResponse.getClaims().containsKey(BACKCHANNEL_CLIENT_NOTIFICATION_ENDPOINT.toString()));
+        assertEquals(registerResponse.getClaims().get(BACKCHANNEL_TOKEN_DELIVERY_MODE.toString()), BackchannelTokenDeliveryMode.PUSH.getValue());
+        assertEquals(registerResponse.getClaims().get(BACKCHANNEL_AUTHENTICATION_REQUEST_SIGNING_ALG.toString()), AsymmetricSignatureAlgorithm.RS256.getValue());
+        assertEquals(registerResponse.getClaims().get(BACKCHANNEL_USER_CODE_PARAMETER.toString()), new Boolean(true).toString());
+
+        String clientId = registerResponse.getClientId();
+        String clientSecret = registerResponse.getClientSecret();
+
+        // 2. Authentication Request
+        String clientNotificationToken = UUID.randomUUID().toString();
+
+        BackchannelAuthenticationRequest backchannelAuthenticationRequest = new BackchannelAuthenticationRequest();
+        backchannelAuthenticationRequest.setScope(Arrays.asList("openid"));
+        backchannelAuthenticationRequest.setIdTokenHint(idTokenHintAlgRSA15EncA256CBCPLUSHS512);
+        backchannelAuthenticationRequest.setClientNotificationToken(clientNotificationToken);
+        backchannelAuthenticationRequest.setUserCode(backchannelUserCode);
+        backchannelAuthenticationRequest.setRequestedExpiry(1200);
+        backchannelAuthenticationRequest.setAuthUsername(clientId);
+        backchannelAuthenticationRequest.setAuthPassword(clientSecret);
+
+        BackchannelAuthenticationClient backchannelAuthenticationClient = new BackchannelAuthenticationClient(backchannelAuthenticationEndpoint);
+        backchannelAuthenticationClient.setRequest(backchannelAuthenticationRequest);
+        BackchannelAuthenticationResponse backchannelAuthenticationResponse = backchannelAuthenticationClient.exec();
+
+        showClient(backchannelAuthenticationClient);
+        assertEquals(backchannelAuthenticationResponse.getStatus(), 200, "Unexpected response code: " + backchannelAuthenticationResponse.getEntity());
+        assertNotNull(backchannelAuthenticationResponse.getAuthReqId());
+        assertNotNull(backchannelAuthenticationResponse.getExpiresIn());
+        assertNull(backchannelAuthenticationResponse.getInterval()); // This parameter will only be present if the Client is registered to use the Poll or Ping modes.
+    }
+
+    @Parameters({"clientJwksUri", "backchannelClientNotificationEndpoint", "backchannelUserCode"})
+    @Test(dependsOnMethods = "idTokenHintAlgRSAOAEPEncA256GCM")
+    public void backchannelTokenDeliveryModePushIdTokenHintAlgRSAOAEPEncA256GCM(
+            final String clientJwksUri, final String backchannelClientNotificationEndpoint, final String backchannelUserCode) {
+        showTitle("backchannelTokenDeliveryModePushIdTokenHintAlgRSAOAEPEncA256GCM");
+
+        // 1. Dynamic Client Registration
+        RegisterRequest registerRequest = new RegisterRequest(ApplicationType.WEB, "oxAuth test app", null);
+        registerRequest.setJwksUri(clientJwksUri);
+        registerRequest.setGrantTypes(Arrays.asList(GrantType.CIBA));
+
+        registerRequest.setBackchannelTokenDeliveryMode(BackchannelTokenDeliveryMode.PUSH);
+        registerRequest.setBackchannelClientNotificationEndpoint(backchannelClientNotificationEndpoint);
+        registerRequest.setBackchannelAuthenticationRequestSigningAlg(AsymmetricSignatureAlgorithm.RS256);
+        registerRequest.setBackchannelUserCodeParameter(true);
+
+        RegisterClient registerClient = new RegisterClient(registrationEndpoint);
+        registerClient.setRequest(registerRequest);
+        RegisterResponse registerResponse = registerClient.exec();
+
+        showClient(registerClient);
+        assertEquals(registerResponse.getStatus(), 200, "Unexpected response code: " + registerResponse.getEntity());
+        assertNotNull(registerResponse.getClientId());
+        assertNotNull(registerResponse.getClientSecret());
+        assertNotNull(registerResponse.getRegistrationAccessToken());
+        assertNotNull(registerResponse.getClientSecretExpiresAt());
+
+        assertTrue(registerResponse.getClaims().containsKey(BACKCHANNEL_TOKEN_DELIVERY_MODE.toString()));
+        assertTrue(registerResponse.getClaims().containsKey(BACKCHANNEL_AUTHENTICATION_REQUEST_SIGNING_ALG.toString()));
+        assertTrue(registerResponse.getClaims().containsKey(BACKCHANNEL_USER_CODE_PARAMETER.toString()));
+        assertTrue(registerResponse.getClaims().containsKey(BACKCHANNEL_CLIENT_NOTIFICATION_ENDPOINT.toString()));
+        assertEquals(registerResponse.getClaims().get(BACKCHANNEL_TOKEN_DELIVERY_MODE.toString()), BackchannelTokenDeliveryMode.PUSH.getValue());
+        assertEquals(registerResponse.getClaims().get(BACKCHANNEL_AUTHENTICATION_REQUEST_SIGNING_ALG.toString()), AsymmetricSignatureAlgorithm.RS256.getValue());
+        assertEquals(registerResponse.getClaims().get(BACKCHANNEL_USER_CODE_PARAMETER.toString()), new Boolean(true).toString());
+
+        String clientId = registerResponse.getClientId();
+        String clientSecret = registerResponse.getClientSecret();
+
+        // 2. Authentication Request
+        String clientNotificationToken = UUID.randomUUID().toString();
+
+        BackchannelAuthenticationRequest backchannelAuthenticationRequest = new BackchannelAuthenticationRequest();
+        backchannelAuthenticationRequest.setScope(Arrays.asList("openid"));
+        backchannelAuthenticationRequest.setIdTokenHint(idTokenHintAlgRSAOAEPEncA256GCM);
+        backchannelAuthenticationRequest.setClientNotificationToken(clientNotificationToken);
+        backchannelAuthenticationRequest.setUserCode(backchannelUserCode);
+        backchannelAuthenticationRequest.setRequestedExpiry(1200);
+        backchannelAuthenticationRequest.setAuthUsername(clientId);
+        backchannelAuthenticationRequest.setAuthPassword(clientSecret);
+
+        BackchannelAuthenticationClient backchannelAuthenticationClient = new BackchannelAuthenticationClient(backchannelAuthenticationEndpoint);
+        backchannelAuthenticationClient.setRequest(backchannelAuthenticationRequest);
+        BackchannelAuthenticationResponse backchannelAuthenticationResponse = backchannelAuthenticationClient.exec();
+
+        showClient(backchannelAuthenticationClient);
+        assertEquals(backchannelAuthenticationResponse.getStatus(), 200, "Unexpected response code: " + backchannelAuthenticationResponse.getEntity());
+        assertNotNull(backchannelAuthenticationResponse.getAuthReqId());
+        assertNotNull(backchannelAuthenticationResponse.getExpiresIn());
+        assertNull(backchannelAuthenticationResponse.getInterval()); // This parameter will only be present if the Client is registered to use the Poll or Ping modes.
+    }
+
+    @Parameters({"clientJwksUri", "backchannelClientNotificationEndpoint", "backchannelUserCode"})
+    @Test(dependsOnMethods = "loginHintTokenRS256")
+    public void backchannelTokenDeliveryModePushLoginHintTokenRS256(
+            final String clientJwksUri, final String backchannelClientNotificationEndpoint, final String backchannelUserCode) {
+        showTitle("backchannelTokenDeliveryModePushLoginHintTokenRS256");
+
+        // 1. Dynamic Client Registration
+        RegisterRequest registerRequest = new RegisterRequest(ApplicationType.WEB, "oxAuth test app", null);
+        registerRequest.setJwksUri(clientJwksUri);
+        registerRequest.setGrantTypes(Arrays.asList(GrantType.CIBA));
+
+        registerRequest.setBackchannelTokenDeliveryMode(BackchannelTokenDeliveryMode.PUSH);
+        registerRequest.setBackchannelClientNotificationEndpoint(backchannelClientNotificationEndpoint);
+        registerRequest.setBackchannelAuthenticationRequestSigningAlg(AsymmetricSignatureAlgorithm.RS256);
+        registerRequest.setBackchannelUserCodeParameter(true);
+
+        RegisterClient registerClient = new RegisterClient(registrationEndpoint);
+        registerClient.setRequest(registerRequest);
+        RegisterResponse registerResponse = registerClient.exec();
+
+        showClient(registerClient);
+        assertEquals(registerResponse.getStatus(), 200, "Unexpected response code: " + registerResponse.getEntity());
+        assertNotNull(registerResponse.getClientId());
+        assertNotNull(registerResponse.getClientSecret());
+        assertNotNull(registerResponse.getRegistrationAccessToken());
+        assertNotNull(registerResponse.getClientSecretExpiresAt());
+
+        assertTrue(registerResponse.getClaims().containsKey(BACKCHANNEL_TOKEN_DELIVERY_MODE.toString()));
+        assertTrue(registerResponse.getClaims().containsKey(BACKCHANNEL_AUTHENTICATION_REQUEST_SIGNING_ALG.toString()));
+        assertTrue(registerResponse.getClaims().containsKey(BACKCHANNEL_USER_CODE_PARAMETER.toString()));
+        assertTrue(registerResponse.getClaims().containsKey(BACKCHANNEL_CLIENT_NOTIFICATION_ENDPOINT.toString()));
+        assertEquals(registerResponse.getClaims().get(BACKCHANNEL_TOKEN_DELIVERY_MODE.toString()), BackchannelTokenDeliveryMode.PUSH.getValue());
+        assertEquals(registerResponse.getClaims().get(BACKCHANNEL_AUTHENTICATION_REQUEST_SIGNING_ALG.toString()), AsymmetricSignatureAlgorithm.RS256.getValue());
+        assertEquals(registerResponse.getClaims().get(BACKCHANNEL_USER_CODE_PARAMETER.toString()), new Boolean(true).toString());
+
+        String clientId = registerResponse.getClientId();
+        String clientSecret = registerResponse.getClientSecret();
+
+        // 2. Authentication Request
+        String clientNotificationToken = UUID.randomUUID().toString();
+
+        BackchannelAuthenticationRequest backchannelAuthenticationRequest = new BackchannelAuthenticationRequest();
+        backchannelAuthenticationRequest.setScope(Arrays.asList("openid"));
+        backchannelAuthenticationRequest.setLoginHintToken(loginHintTokenRS256);
+        backchannelAuthenticationRequest.setClientNotificationToken(clientNotificationToken);
+        backchannelAuthenticationRequest.setUserCode(backchannelUserCode);
+        backchannelAuthenticationRequest.setRequestedExpiry(1200);
+        backchannelAuthenticationRequest.setAuthUsername(clientId);
+        backchannelAuthenticationRequest.setAuthPassword(clientSecret);
+
+        BackchannelAuthenticationClient backchannelAuthenticationClient = new BackchannelAuthenticationClient(backchannelAuthenticationEndpoint);
+        backchannelAuthenticationClient.setRequest(backchannelAuthenticationRequest);
+        BackchannelAuthenticationResponse backchannelAuthenticationResponse = backchannelAuthenticationClient.exec();
+
+        showClient(backchannelAuthenticationClient);
+        assertEquals(backchannelAuthenticationResponse.getStatus(), 200, "Unexpected response code: " + backchannelAuthenticationResponse.getEntity());
+        assertNotNull(backchannelAuthenticationResponse.getAuthReqId());
+        assertNotNull(backchannelAuthenticationResponse.getExpiresIn());
+        assertNull(backchannelAuthenticationResponse.getInterval()); // This parameter will only be present if the Client is registered to use the Poll or Ping modes.
+    }
+
+    @Parameters({"clientJwksUri", "backchannelClientNotificationEndpoint", "backchannelUserCode"})
+    @Test(dependsOnMethods = "loginHintTokenRS384")
+    public void backchannelTokenDeliveryModePushLoginHintTokenRS384(
+            final String clientJwksUri, final String backchannelClientNotificationEndpoint, final String backchannelUserCode) {
+        showTitle("backchannelTokenDeliveryModePushLoginHintTokenRS384");
+
+        // 1. Dynamic Client Registration
+        RegisterRequest registerRequest = new RegisterRequest(ApplicationType.WEB, "oxAuth test app", null);
+        registerRequest.setJwksUri(clientJwksUri);
+        registerRequest.setGrantTypes(Arrays.asList(GrantType.CIBA));
+
+        registerRequest.setBackchannelTokenDeliveryMode(BackchannelTokenDeliveryMode.PUSH);
+        registerRequest.setBackchannelClientNotificationEndpoint(backchannelClientNotificationEndpoint);
+        registerRequest.setBackchannelAuthenticationRequestSigningAlg(AsymmetricSignatureAlgorithm.RS384);
+        registerRequest.setBackchannelUserCodeParameter(true);
+
+        RegisterClient registerClient = new RegisterClient(registrationEndpoint);
+        registerClient.setRequest(registerRequest);
+        RegisterResponse registerResponse = registerClient.exec();
+
+        showClient(registerClient);
+        assertEquals(registerResponse.getStatus(), 200, "Unexpected response code: " + registerResponse.getEntity());
+        assertNotNull(registerResponse.getClientId());
+        assertNotNull(registerResponse.getClientSecret());
+        assertNotNull(registerResponse.getRegistrationAccessToken());
+        assertNotNull(registerResponse.getClientSecretExpiresAt());
+
+        assertTrue(registerResponse.getClaims().containsKey(BACKCHANNEL_TOKEN_DELIVERY_MODE.toString()));
+        assertTrue(registerResponse.getClaims().containsKey(BACKCHANNEL_AUTHENTICATION_REQUEST_SIGNING_ALG.toString()));
+        assertTrue(registerResponse.getClaims().containsKey(BACKCHANNEL_USER_CODE_PARAMETER.toString()));
+        assertTrue(registerResponse.getClaims().containsKey(BACKCHANNEL_CLIENT_NOTIFICATION_ENDPOINT.toString()));
+        assertEquals(registerResponse.getClaims().get(BACKCHANNEL_TOKEN_DELIVERY_MODE.toString()), BackchannelTokenDeliveryMode.PUSH.getValue());
+        assertEquals(registerResponse.getClaims().get(BACKCHANNEL_AUTHENTICATION_REQUEST_SIGNING_ALG.toString()), AsymmetricSignatureAlgorithm.RS384.getValue());
+        assertEquals(registerResponse.getClaims().get(BACKCHANNEL_USER_CODE_PARAMETER.toString()), new Boolean(true).toString());
+
+        String clientId = registerResponse.getClientId();
+        String clientSecret = registerResponse.getClientSecret();
+
+        // 2. Authentication Request
+        String clientNotificationToken = UUID.randomUUID().toString();
+
+        BackchannelAuthenticationRequest backchannelAuthenticationRequest = new BackchannelAuthenticationRequest();
+        backchannelAuthenticationRequest.setScope(Arrays.asList("openid"));
+        backchannelAuthenticationRequest.setLoginHintToken(loginHintTokenRS384);
+        backchannelAuthenticationRequest.setClientNotificationToken(clientNotificationToken);
+        backchannelAuthenticationRequest.setUserCode(backchannelUserCode);
+        backchannelAuthenticationRequest.setRequestedExpiry(1200);
+        backchannelAuthenticationRequest.setAuthUsername(clientId);
+        backchannelAuthenticationRequest.setAuthPassword(clientSecret);
+
+        BackchannelAuthenticationClient backchannelAuthenticationClient = new BackchannelAuthenticationClient(backchannelAuthenticationEndpoint);
+        backchannelAuthenticationClient.setRequest(backchannelAuthenticationRequest);
+        BackchannelAuthenticationResponse backchannelAuthenticationResponse = backchannelAuthenticationClient.exec();
+
+        showClient(backchannelAuthenticationClient);
+        assertEquals(backchannelAuthenticationResponse.getStatus(), 200, "Unexpected response code: " + backchannelAuthenticationResponse.getEntity());
+        assertNotNull(backchannelAuthenticationResponse.getAuthReqId());
+        assertNotNull(backchannelAuthenticationResponse.getExpiresIn());
+        assertNull(backchannelAuthenticationResponse.getInterval()); // This parameter will only be present if the Client is registered to use the Poll or Ping modes.
+    }
+
+    @Parameters({"clientJwksUri", "backchannelClientNotificationEndpoint", "backchannelUserCode"})
+    @Test(dependsOnMethods = "loginHintTokenRS512")
+    public void backchannelTokenDeliveryModePushLoginHintTokenRS512(
+            final String clientJwksUri, final String backchannelClientNotificationEndpoint, final String backchannelUserCode) {
+        showTitle("backchannelTokenDeliveryModePushLoginHintTokenRS512");
+
+        // 1. Dynamic Client Registration
+        RegisterRequest registerRequest = new RegisterRequest(ApplicationType.WEB, "oxAuth test app", null);
+        registerRequest.setJwksUri(clientJwksUri);
+        registerRequest.setGrantTypes(Arrays.asList(GrantType.CIBA));
+
+        registerRequest.setBackchannelTokenDeliveryMode(BackchannelTokenDeliveryMode.PUSH);
+        registerRequest.setBackchannelClientNotificationEndpoint(backchannelClientNotificationEndpoint);
+        registerRequest.setBackchannelAuthenticationRequestSigningAlg(AsymmetricSignatureAlgorithm.RS512);
+        registerRequest.setBackchannelUserCodeParameter(true);
+
+        RegisterClient registerClient = new RegisterClient(registrationEndpoint);
+        registerClient.setRequest(registerRequest);
+        RegisterResponse registerResponse = registerClient.exec();
+
+        showClient(registerClient);
+        assertEquals(registerResponse.getStatus(), 200, "Unexpected response code: " + registerResponse.getEntity());
+        assertNotNull(registerResponse.getClientId());
+        assertNotNull(registerResponse.getClientSecret());
+        assertNotNull(registerResponse.getRegistrationAccessToken());
+        assertNotNull(registerResponse.getClientSecretExpiresAt());
+
+        assertTrue(registerResponse.getClaims().containsKey(BACKCHANNEL_TOKEN_DELIVERY_MODE.toString()));
+        assertTrue(registerResponse.getClaims().containsKey(BACKCHANNEL_AUTHENTICATION_REQUEST_SIGNING_ALG.toString()));
+        assertTrue(registerResponse.getClaims().containsKey(BACKCHANNEL_USER_CODE_PARAMETER.toString()));
+        assertTrue(registerResponse.getClaims().containsKey(BACKCHANNEL_CLIENT_NOTIFICATION_ENDPOINT.toString()));
+        assertEquals(registerResponse.getClaims().get(BACKCHANNEL_TOKEN_DELIVERY_MODE.toString()), BackchannelTokenDeliveryMode.PUSH.getValue());
+        assertEquals(registerResponse.getClaims().get(BACKCHANNEL_AUTHENTICATION_REQUEST_SIGNING_ALG.toString()), AsymmetricSignatureAlgorithm.RS512.getValue());
+        assertEquals(registerResponse.getClaims().get(BACKCHANNEL_USER_CODE_PARAMETER.toString()), new Boolean(true).toString());
+
+        String clientId = registerResponse.getClientId();
+        String clientSecret = registerResponse.getClientSecret();
+
+        // 2. Authentication Request
+        String clientNotificationToken = UUID.randomUUID().toString();
+
+        BackchannelAuthenticationRequest backchannelAuthenticationRequest = new BackchannelAuthenticationRequest();
+        backchannelAuthenticationRequest.setScope(Arrays.asList("openid"));
+        backchannelAuthenticationRequest.setLoginHintToken(loginHintTokenRS512);
+        backchannelAuthenticationRequest.setClientNotificationToken(clientNotificationToken);
+        backchannelAuthenticationRequest.setUserCode(backchannelUserCode);
+        backchannelAuthenticationRequest.setRequestedExpiry(1200);
+        backchannelAuthenticationRequest.setAuthUsername(clientId);
+        backchannelAuthenticationRequest.setAuthPassword(clientSecret);
+
+        BackchannelAuthenticationClient backchannelAuthenticationClient = new BackchannelAuthenticationClient(backchannelAuthenticationEndpoint);
+        backchannelAuthenticationClient.setRequest(backchannelAuthenticationRequest);
+        BackchannelAuthenticationResponse backchannelAuthenticationResponse = backchannelAuthenticationClient.exec();
+
+        showClient(backchannelAuthenticationClient);
+        assertEquals(backchannelAuthenticationResponse.getStatus(), 200, "Unexpected response code: " + backchannelAuthenticationResponse.getEntity());
+        assertNotNull(backchannelAuthenticationResponse.getAuthReqId());
+        assertNotNull(backchannelAuthenticationResponse.getExpiresIn());
+        assertNull(backchannelAuthenticationResponse.getInterval()); // This parameter will only be present if the Client is registered to use the Poll or Ping modes.
+    }
+
+    @Parameters({"clientJwksUri", "backchannelClientNotificationEndpoint", "backchannelUserCode"})
+    @Test(dependsOnMethods = "loginHintTokenES256")
+    public void backchannelTokenDeliveryModePushLoginHintTokenES256(
+            final String clientJwksUri, final String backchannelClientNotificationEndpoint, final String backchannelUserCode) {
+        showTitle("backchannelTokenDeliveryModePushLoginHintTokenES256");
+
+        // 1. Dynamic Client Registration
+        RegisterRequest registerRequest = new RegisterRequest(ApplicationType.WEB, "oxAuth test app", null);
+        registerRequest.setJwksUri(clientJwksUri);
+        registerRequest.setGrantTypes(Arrays.asList(GrantType.CIBA));
+
+        registerRequest.setBackchannelTokenDeliveryMode(BackchannelTokenDeliveryMode.PUSH);
+        registerRequest.setBackchannelClientNotificationEndpoint(backchannelClientNotificationEndpoint);
+        registerRequest.setBackchannelAuthenticationRequestSigningAlg(AsymmetricSignatureAlgorithm.ES256);
+        registerRequest.setBackchannelUserCodeParameter(true);
+
+        RegisterClient registerClient = new RegisterClient(registrationEndpoint);
+        registerClient.setRequest(registerRequest);
+        RegisterResponse registerResponse = registerClient.exec();
+
+        showClient(registerClient);
+        assertEquals(registerResponse.getStatus(), 200, "Unexpected response code: " + registerResponse.getEntity());
+        assertNotNull(registerResponse.getClientId());
+        assertNotNull(registerResponse.getClientSecret());
+        assertNotNull(registerResponse.getRegistrationAccessToken());
+        assertNotNull(registerResponse.getClientSecretExpiresAt());
+
+        assertTrue(registerResponse.getClaims().containsKey(BACKCHANNEL_TOKEN_DELIVERY_MODE.toString()));
+        assertTrue(registerResponse.getClaims().containsKey(BACKCHANNEL_AUTHENTICATION_REQUEST_SIGNING_ALG.toString()));
+        assertTrue(registerResponse.getClaims().containsKey(BACKCHANNEL_USER_CODE_PARAMETER.toString()));
+        assertTrue(registerResponse.getClaims().containsKey(BACKCHANNEL_CLIENT_NOTIFICATION_ENDPOINT.toString()));
+        assertEquals(registerResponse.getClaims().get(BACKCHANNEL_TOKEN_DELIVERY_MODE.toString()), BackchannelTokenDeliveryMode.PUSH.getValue());
+        assertEquals(registerResponse.getClaims().get(BACKCHANNEL_AUTHENTICATION_REQUEST_SIGNING_ALG.toString()), AsymmetricSignatureAlgorithm.ES256.getValue());
+        assertEquals(registerResponse.getClaims().get(BACKCHANNEL_USER_CODE_PARAMETER.toString()), new Boolean(true).toString());
+
+        String clientId = registerResponse.getClientId();
+        String clientSecret = registerResponse.getClientSecret();
+
+        // 2. Authentication Request
+        String clientNotificationToken = UUID.randomUUID().toString();
+
+        BackchannelAuthenticationRequest backchannelAuthenticationRequest = new BackchannelAuthenticationRequest();
+        backchannelAuthenticationRequest.setScope(Arrays.asList("openid"));
+        backchannelAuthenticationRequest.setLoginHintToken(loginHintTokenES256);
+        backchannelAuthenticationRequest.setClientNotificationToken(clientNotificationToken);
+        backchannelAuthenticationRequest.setUserCode(backchannelUserCode);
+        backchannelAuthenticationRequest.setRequestedExpiry(1200);
+        backchannelAuthenticationRequest.setAuthUsername(clientId);
+        backchannelAuthenticationRequest.setAuthPassword(clientSecret);
+
+        BackchannelAuthenticationClient backchannelAuthenticationClient = new BackchannelAuthenticationClient(backchannelAuthenticationEndpoint);
+        backchannelAuthenticationClient.setRequest(backchannelAuthenticationRequest);
+        BackchannelAuthenticationResponse backchannelAuthenticationResponse = backchannelAuthenticationClient.exec();
+
+        showClient(backchannelAuthenticationClient);
+        assertEquals(backchannelAuthenticationResponse.getStatus(), 200, "Unexpected response code: " + backchannelAuthenticationResponse.getEntity());
+        assertNotNull(backchannelAuthenticationResponse.getAuthReqId());
+        assertNotNull(backchannelAuthenticationResponse.getExpiresIn());
+        assertNull(backchannelAuthenticationResponse.getInterval()); // This parameter will only be present if the Client is registered to use the Poll or Ping modes.
+    }
+
+    @Parameters({"clientJwksUri", "backchannelClientNotificationEndpoint", "backchannelUserCode"})
+    @Test(dependsOnMethods = "loginHintTokenES384")
+    public void backchannelTokenDeliveryModePushLoginHintTokenES384(
+            final String clientJwksUri, final String backchannelClientNotificationEndpoint, final String backchannelUserCode) {
+        showTitle("backchannelTokenDeliveryModePushLoginHintTokenES384");
+
+        // 1. Dynamic Client Registration
+        RegisterRequest registerRequest = new RegisterRequest(ApplicationType.WEB, "oxAuth test app", null);
+        registerRequest.setJwksUri(clientJwksUri);
+        registerRequest.setGrantTypes(Arrays.asList(GrantType.CIBA));
+
+        registerRequest.setBackchannelTokenDeliveryMode(BackchannelTokenDeliveryMode.PUSH);
+        registerRequest.setBackchannelClientNotificationEndpoint(backchannelClientNotificationEndpoint);
+        registerRequest.setBackchannelAuthenticationRequestSigningAlg(AsymmetricSignatureAlgorithm.ES384);
+        registerRequest.setBackchannelUserCodeParameter(true);
+
+        RegisterClient registerClient = new RegisterClient(registrationEndpoint);
+        registerClient.setRequest(registerRequest);
+        RegisterResponse registerResponse = registerClient.exec();
+
+        showClient(registerClient);
+        assertEquals(registerResponse.getStatus(), 200, "Unexpected response code: " + registerResponse.getEntity());
+        assertNotNull(registerResponse.getClientId());
+        assertNotNull(registerResponse.getClientSecret());
+        assertNotNull(registerResponse.getRegistrationAccessToken());
+        assertNotNull(registerResponse.getClientSecretExpiresAt());
+
+        assertTrue(registerResponse.getClaims().containsKey(BACKCHANNEL_TOKEN_DELIVERY_MODE.toString()));
+        assertTrue(registerResponse.getClaims().containsKey(BACKCHANNEL_AUTHENTICATION_REQUEST_SIGNING_ALG.toString()));
+        assertTrue(registerResponse.getClaims().containsKey(BACKCHANNEL_USER_CODE_PARAMETER.toString()));
+        assertTrue(registerResponse.getClaims().containsKey(BACKCHANNEL_CLIENT_NOTIFICATION_ENDPOINT.toString()));
+        assertEquals(registerResponse.getClaims().get(BACKCHANNEL_TOKEN_DELIVERY_MODE.toString()), BackchannelTokenDeliveryMode.PUSH.getValue());
+        assertEquals(registerResponse.getClaims().get(BACKCHANNEL_AUTHENTICATION_REQUEST_SIGNING_ALG.toString()), AsymmetricSignatureAlgorithm.ES384.getValue());
+        assertEquals(registerResponse.getClaims().get(BACKCHANNEL_USER_CODE_PARAMETER.toString()), new Boolean(true).toString());
+
+        String clientId = registerResponse.getClientId();
+        String clientSecret = registerResponse.getClientSecret();
+
+        // 2. Authentication Request
+        String clientNotificationToken = UUID.randomUUID().toString();
+
+        BackchannelAuthenticationRequest backchannelAuthenticationRequest = new BackchannelAuthenticationRequest();
+        backchannelAuthenticationRequest.setScope(Arrays.asList("openid"));
+        backchannelAuthenticationRequest.setLoginHintToken(loginHintTokenES384);
+        backchannelAuthenticationRequest.setClientNotificationToken(clientNotificationToken);
+        backchannelAuthenticationRequest.setUserCode(backchannelUserCode);
+        backchannelAuthenticationRequest.setRequestedExpiry(1200);
+        backchannelAuthenticationRequest.setAuthUsername(clientId);
+        backchannelAuthenticationRequest.setAuthPassword(clientSecret);
+
+        BackchannelAuthenticationClient backchannelAuthenticationClient = new BackchannelAuthenticationClient(backchannelAuthenticationEndpoint);
+        backchannelAuthenticationClient.setRequest(backchannelAuthenticationRequest);
+        BackchannelAuthenticationResponse backchannelAuthenticationResponse = backchannelAuthenticationClient.exec();
+
+        showClient(backchannelAuthenticationClient);
+        assertEquals(backchannelAuthenticationResponse.getStatus(), 200, "Unexpected response code: " + backchannelAuthenticationResponse.getEntity());
+        assertNotNull(backchannelAuthenticationResponse.getAuthReqId());
+        assertNotNull(backchannelAuthenticationResponse.getExpiresIn());
+        assertNull(backchannelAuthenticationResponse.getInterval()); // This parameter will only be present if the Client is registered to use the Poll or Ping modes.
+    }
+
+    @Parameters({"clientJwksUri", "backchannelClientNotificationEndpoint", "backchannelUserCode"})
+    @Test(dependsOnMethods = "loginHintTokenES512")
+    public void backchannelTokenDeliveryModePushLoginHintTokenES512(
+            final String clientJwksUri, final String backchannelClientNotificationEndpoint, final String backchannelUserCode) {
+        showTitle("backchannelTokenDeliveryModePushLoginHintTokenES512");
+
+        // 1. Dynamic Client Registration
+        RegisterRequest registerRequest = new RegisterRequest(ApplicationType.WEB, "oxAuth test app", null);
+        registerRequest.setJwksUri(clientJwksUri);
+        registerRequest.setGrantTypes(Arrays.asList(GrantType.CIBA));
+
+        registerRequest.setBackchannelTokenDeliveryMode(BackchannelTokenDeliveryMode.PUSH);
+        registerRequest.setBackchannelClientNotificationEndpoint(backchannelClientNotificationEndpoint);
+        registerRequest.setBackchannelAuthenticationRequestSigningAlg(AsymmetricSignatureAlgorithm.ES512);
+        registerRequest.setBackchannelUserCodeParameter(true);
+
+        RegisterClient registerClient = new RegisterClient(registrationEndpoint);
+        registerClient.setRequest(registerRequest);
+        RegisterResponse registerResponse = registerClient.exec();
+
+        showClient(registerClient);
+        assertEquals(registerResponse.getStatus(), 200, "Unexpected response code: " + registerResponse.getEntity());
+        assertNotNull(registerResponse.getClientId());
+        assertNotNull(registerResponse.getClientSecret());
+        assertNotNull(registerResponse.getRegistrationAccessToken());
+        assertNotNull(registerResponse.getClientSecretExpiresAt());
+
+        assertTrue(registerResponse.getClaims().containsKey(BACKCHANNEL_TOKEN_DELIVERY_MODE.toString()));
+        assertTrue(registerResponse.getClaims().containsKey(BACKCHANNEL_AUTHENTICATION_REQUEST_SIGNING_ALG.toString()));
+        assertTrue(registerResponse.getClaims().containsKey(BACKCHANNEL_USER_CODE_PARAMETER.toString()));
+        assertTrue(registerResponse.getClaims().containsKey(BACKCHANNEL_CLIENT_NOTIFICATION_ENDPOINT.toString()));
+        assertEquals(registerResponse.getClaims().get(BACKCHANNEL_TOKEN_DELIVERY_MODE.toString()), BackchannelTokenDeliveryMode.PUSH.getValue());
+        assertEquals(registerResponse.getClaims().get(BACKCHANNEL_AUTHENTICATION_REQUEST_SIGNING_ALG.toString()), AsymmetricSignatureAlgorithm.ES512.getValue());
+        assertEquals(registerResponse.getClaims().get(BACKCHANNEL_USER_CODE_PARAMETER.toString()), new Boolean(true).toString());
+
+        String clientId = registerResponse.getClientId();
+        String clientSecret = registerResponse.getClientSecret();
+
+        // 2. Authentication Request
+        String clientNotificationToken = UUID.randomUUID().toString();
+
+        BackchannelAuthenticationRequest backchannelAuthenticationRequest = new BackchannelAuthenticationRequest();
+        backchannelAuthenticationRequest.setScope(Arrays.asList("openid"));
+        backchannelAuthenticationRequest.setLoginHintToken(loginHintTokenES512);
+        backchannelAuthenticationRequest.setClientNotificationToken(clientNotificationToken);
+        backchannelAuthenticationRequest.setUserCode(backchannelUserCode);
+        backchannelAuthenticationRequest.setRequestedExpiry(1200);
+        backchannelAuthenticationRequest.setAuthUsername(clientId);
+        backchannelAuthenticationRequest.setAuthPassword(clientSecret);
+
+        BackchannelAuthenticationClient backchannelAuthenticationClient = new BackchannelAuthenticationClient(backchannelAuthenticationEndpoint);
+        backchannelAuthenticationClient.setRequest(backchannelAuthenticationRequest);
+        BackchannelAuthenticationResponse backchannelAuthenticationResponse = backchannelAuthenticationClient.exec();
+
+        showClient(backchannelAuthenticationClient);
+        assertEquals(backchannelAuthenticationResponse.getStatus(), 200, "Unexpected response code: " + backchannelAuthenticationResponse.getEntity());
+        assertNotNull(backchannelAuthenticationResponse.getAuthReqId());
+        assertNotNull(backchannelAuthenticationResponse.getExpiresIn());
+        assertNull(backchannelAuthenticationResponse.getInterval()); // This parameter will only be present if the Client is registered to use the Poll or Ping modes.
+    }
+
+    @Parameters({"clientJwksUri", "backchannelClientNotificationEndpoint", "backchannelUserCode"})
+    @Test(dependsOnMethods = "loginHintTokenPS256")
+    public void backchannelTokenDeliveryModePushLoginHintTokenPS256(
+            final String clientJwksUri, final String backchannelClientNotificationEndpoint, final String backchannelUserCode) {
+        showTitle("backchannelTokenDeliveryModePushLoginHintTokenPS256");
+
+        // 1. Dynamic Client Registration
+        RegisterRequest registerRequest = new RegisterRequest(ApplicationType.WEB, "oxAuth test app", null);
+        registerRequest.setJwksUri(clientJwksUri);
+        registerRequest.setGrantTypes(Arrays.asList(GrantType.CIBA));
+
+        registerRequest.setBackchannelTokenDeliveryMode(BackchannelTokenDeliveryMode.PUSH);
+        registerRequest.setBackchannelClientNotificationEndpoint(backchannelClientNotificationEndpoint);
+        registerRequest.setBackchannelAuthenticationRequestSigningAlg(AsymmetricSignatureAlgorithm.PS256);
+        registerRequest.setBackchannelUserCodeParameter(true);
+
+        RegisterClient registerClient = new RegisterClient(registrationEndpoint);
+        registerClient.setRequest(registerRequest);
+        RegisterResponse registerResponse = registerClient.exec();
+
+        showClient(registerClient);
+        assertEquals(registerResponse.getStatus(), 200, "Unexpected response code: " + registerResponse.getEntity());
+        assertNotNull(registerResponse.getClientId());
+        assertNotNull(registerResponse.getClientSecret());
+        assertNotNull(registerResponse.getRegistrationAccessToken());
+        assertNotNull(registerResponse.getClientSecretExpiresAt());
+
+        assertTrue(registerResponse.getClaims().containsKey(BACKCHANNEL_TOKEN_DELIVERY_MODE.toString()));
+        assertTrue(registerResponse.getClaims().containsKey(BACKCHANNEL_AUTHENTICATION_REQUEST_SIGNING_ALG.toString()));
+        assertTrue(registerResponse.getClaims().containsKey(BACKCHANNEL_USER_CODE_PARAMETER.toString()));
+        assertTrue(registerResponse.getClaims().containsKey(BACKCHANNEL_CLIENT_NOTIFICATION_ENDPOINT.toString()));
+        assertEquals(registerResponse.getClaims().get(BACKCHANNEL_TOKEN_DELIVERY_MODE.toString()), BackchannelTokenDeliveryMode.PUSH.getValue());
+        assertEquals(registerResponse.getClaims().get(BACKCHANNEL_AUTHENTICATION_REQUEST_SIGNING_ALG.toString()), AsymmetricSignatureAlgorithm.PS256.getValue());
+        assertEquals(registerResponse.getClaims().get(BACKCHANNEL_USER_CODE_PARAMETER.toString()), new Boolean(true).toString());
+
+        String clientId = registerResponse.getClientId();
+        String clientSecret = registerResponse.getClientSecret();
+
+        // 2. Authentication Request
+        String clientNotificationToken = UUID.randomUUID().toString();
+
+        BackchannelAuthenticationRequest backchannelAuthenticationRequest = new BackchannelAuthenticationRequest();
+        backchannelAuthenticationRequest.setScope(Arrays.asList("openid"));
+        backchannelAuthenticationRequest.setLoginHintToken(loginHintTokenPS256);
+        backchannelAuthenticationRequest.setClientNotificationToken(clientNotificationToken);
+        backchannelAuthenticationRequest.setUserCode(backchannelUserCode);
+        backchannelAuthenticationRequest.setRequestedExpiry(1200);
+        backchannelAuthenticationRequest.setAuthUsername(clientId);
+        backchannelAuthenticationRequest.setAuthPassword(clientSecret);
+
+        BackchannelAuthenticationClient backchannelAuthenticationClient = new BackchannelAuthenticationClient(backchannelAuthenticationEndpoint);
+        backchannelAuthenticationClient.setRequest(backchannelAuthenticationRequest);
+        BackchannelAuthenticationResponse backchannelAuthenticationResponse = backchannelAuthenticationClient.exec();
+
+        showClient(backchannelAuthenticationClient);
+        assertEquals(backchannelAuthenticationResponse.getStatus(), 200, "Unexpected response code: " + backchannelAuthenticationResponse.getEntity());
+        assertNotNull(backchannelAuthenticationResponse.getAuthReqId());
+        assertNotNull(backchannelAuthenticationResponse.getExpiresIn());
+        assertNull(backchannelAuthenticationResponse.getInterval()); // This parameter will only be present if the Client is registered to use the Poll or Ping modes.
+    }
+
+    @Parameters({"clientJwksUri", "backchannelClientNotificationEndpoint", "backchannelUserCode"})
+    @Test(dependsOnMethods = "loginHintTokenPS384")
+    public void backchannelTokenDeliveryModePushLoginHintTokenPS384(
+            final String clientJwksUri, final String backchannelClientNotificationEndpoint, final String backchannelUserCode) {
+        showTitle("backchannelTokenDeliveryModePushLoginHintTokenPS384");
+
+        // 1. Dynamic Client Registration
+        RegisterRequest registerRequest = new RegisterRequest(ApplicationType.WEB, "oxAuth test app", null);
+        registerRequest.setJwksUri(clientJwksUri);
+        registerRequest.setGrantTypes(Arrays.asList(GrantType.CIBA));
+
+        registerRequest.setBackchannelTokenDeliveryMode(BackchannelTokenDeliveryMode.PUSH);
+        registerRequest.setBackchannelClientNotificationEndpoint(backchannelClientNotificationEndpoint);
+        registerRequest.setBackchannelAuthenticationRequestSigningAlg(AsymmetricSignatureAlgorithm.PS384);
+        registerRequest.setBackchannelUserCodeParameter(true);
+
+        RegisterClient registerClient = new RegisterClient(registrationEndpoint);
+        registerClient.setRequest(registerRequest);
+        RegisterResponse registerResponse = registerClient.exec();
+
+        showClient(registerClient);
+        assertEquals(registerResponse.getStatus(), 200, "Unexpected response code: " + registerResponse.getEntity());
+        assertNotNull(registerResponse.getClientId());
+        assertNotNull(registerResponse.getClientSecret());
+        assertNotNull(registerResponse.getRegistrationAccessToken());
+        assertNotNull(registerResponse.getClientSecretExpiresAt());
+
+        assertTrue(registerResponse.getClaims().containsKey(BACKCHANNEL_TOKEN_DELIVERY_MODE.toString()));
+        assertTrue(registerResponse.getClaims().containsKey(BACKCHANNEL_AUTHENTICATION_REQUEST_SIGNING_ALG.toString()));
+        assertTrue(registerResponse.getClaims().containsKey(BACKCHANNEL_USER_CODE_PARAMETER.toString()));
+        assertTrue(registerResponse.getClaims().containsKey(BACKCHANNEL_CLIENT_NOTIFICATION_ENDPOINT.toString()));
+        assertEquals(registerResponse.getClaims().get(BACKCHANNEL_TOKEN_DELIVERY_MODE.toString()), BackchannelTokenDeliveryMode.PUSH.getValue());
+        assertEquals(registerResponse.getClaims().get(BACKCHANNEL_AUTHENTICATION_REQUEST_SIGNING_ALG.toString()), AsymmetricSignatureAlgorithm.PS384.getValue());
+        assertEquals(registerResponse.getClaims().get(BACKCHANNEL_USER_CODE_PARAMETER.toString()), new Boolean(true).toString());
+
+        String clientId = registerResponse.getClientId();
+        String clientSecret = registerResponse.getClientSecret();
+
+        // 2. Authentication Request
+        String clientNotificationToken = UUID.randomUUID().toString();
+
+        BackchannelAuthenticationRequest backchannelAuthenticationRequest = new BackchannelAuthenticationRequest();
+        backchannelAuthenticationRequest.setScope(Arrays.asList("openid"));
+        backchannelAuthenticationRequest.setLoginHintToken(loginHintTokenPS384);
+        backchannelAuthenticationRequest.setClientNotificationToken(clientNotificationToken);
+        backchannelAuthenticationRequest.setUserCode(backchannelUserCode);
+        backchannelAuthenticationRequest.setRequestedExpiry(1200);
+        backchannelAuthenticationRequest.setAuthUsername(clientId);
+        backchannelAuthenticationRequest.setAuthPassword(clientSecret);
+
+        BackchannelAuthenticationClient backchannelAuthenticationClient = new BackchannelAuthenticationClient(backchannelAuthenticationEndpoint);
+        backchannelAuthenticationClient.setRequest(backchannelAuthenticationRequest);
+        BackchannelAuthenticationResponse backchannelAuthenticationResponse = backchannelAuthenticationClient.exec();
+
+        showClient(backchannelAuthenticationClient);
+        assertEquals(backchannelAuthenticationResponse.getStatus(), 200, "Unexpected response code: " + backchannelAuthenticationResponse.getEntity());
+        assertNotNull(backchannelAuthenticationResponse.getAuthReqId());
+        assertNotNull(backchannelAuthenticationResponse.getExpiresIn());
+        assertNull(backchannelAuthenticationResponse.getInterval()); // This parameter will only be present if the Client is registered to use the Poll or Ping modes.
+    }
+
+    @Parameters({"clientJwksUri", "backchannelClientNotificationEndpoint", "backchannelUserCode"})
+    @Test(dependsOnMethods = "loginHintTokenPS512")
+    public void backchannelTokenDeliveryModePushLoginHintTokenPS512(
+            final String clientJwksUri, final String backchannelClientNotificationEndpoint, final String backchannelUserCode) {
+        showTitle("backchannelTokenDeliveryModePushLoginHintTokenPS512");
+
+        // 1. Dynamic Client Registration
+        RegisterRequest registerRequest = new RegisterRequest(ApplicationType.WEB, "oxAuth test app", null);
+        registerRequest.setJwksUri(clientJwksUri);
+        registerRequest.setGrantTypes(Arrays.asList(GrantType.CIBA));
+
+        registerRequest.setBackchannelTokenDeliveryMode(BackchannelTokenDeliveryMode.PUSH);
+        registerRequest.setBackchannelClientNotificationEndpoint(backchannelClientNotificationEndpoint);
+        registerRequest.setBackchannelAuthenticationRequestSigningAlg(AsymmetricSignatureAlgorithm.PS512);
+        registerRequest.setBackchannelUserCodeParameter(true);
+
+        RegisterClient registerClient = new RegisterClient(registrationEndpoint);
+        registerClient.setRequest(registerRequest);
+        RegisterResponse registerResponse = registerClient.exec();
+
+        showClient(registerClient);
+        assertEquals(registerResponse.getStatus(), 200, "Unexpected response code: " + registerResponse.getEntity());
+        assertNotNull(registerResponse.getClientId());
+        assertNotNull(registerResponse.getClientSecret());
+        assertNotNull(registerResponse.getRegistrationAccessToken());
+        assertNotNull(registerResponse.getClientSecretExpiresAt());
+
+        assertTrue(registerResponse.getClaims().containsKey(BACKCHANNEL_TOKEN_DELIVERY_MODE.toString()));
+        assertTrue(registerResponse.getClaims().containsKey(BACKCHANNEL_AUTHENTICATION_REQUEST_SIGNING_ALG.toString()));
+        assertTrue(registerResponse.getClaims().containsKey(BACKCHANNEL_USER_CODE_PARAMETER.toString()));
+        assertTrue(registerResponse.getClaims().containsKey(BACKCHANNEL_CLIENT_NOTIFICATION_ENDPOINT.toString()));
+        assertEquals(registerResponse.getClaims().get(BACKCHANNEL_TOKEN_DELIVERY_MODE.toString()), BackchannelTokenDeliveryMode.PUSH.getValue());
+        assertEquals(registerResponse.getClaims().get(BACKCHANNEL_AUTHENTICATION_REQUEST_SIGNING_ALG.toString()), AsymmetricSignatureAlgorithm.PS512.getValue());
+        assertEquals(registerResponse.getClaims().get(BACKCHANNEL_USER_CODE_PARAMETER.toString()), new Boolean(true).toString());
+
+        String clientId = registerResponse.getClientId();
+        String clientSecret = registerResponse.getClientSecret();
+
+        // 2. Authentication Request
+        String clientNotificationToken = UUID.randomUUID().toString();
+
+        BackchannelAuthenticationRequest backchannelAuthenticationRequest = new BackchannelAuthenticationRequest();
+        backchannelAuthenticationRequest.setScope(Arrays.asList("openid"));
+        backchannelAuthenticationRequest.setLoginHintToken(loginHintTokenPS512);
+        backchannelAuthenticationRequest.setClientNotificationToken(clientNotificationToken);
+        backchannelAuthenticationRequest.setUserCode(backchannelUserCode);
+        backchannelAuthenticationRequest.setRequestedExpiry(1200);
+        backchannelAuthenticationRequest.setAuthUsername(clientId);
+        backchannelAuthenticationRequest.setAuthPassword(clientSecret);
+
+        BackchannelAuthenticationClient backchannelAuthenticationClient = new BackchannelAuthenticationClient(backchannelAuthenticationEndpoint);
+        backchannelAuthenticationClient.setRequest(backchannelAuthenticationRequest);
+        BackchannelAuthenticationResponse backchannelAuthenticationResponse = backchannelAuthenticationClient.exec();
+
+        showClient(backchannelAuthenticationClient);
+        assertEquals(backchannelAuthenticationResponse.getStatus(), 200, "Unexpected response code: " + backchannelAuthenticationResponse.getEntity());
+        assertNotNull(backchannelAuthenticationResponse.getAuthReqId());
+        assertNotNull(backchannelAuthenticationResponse.getExpiresIn());
+        assertNull(backchannelAuthenticationResponse.getInterval()); // This parameter will only be present if the Client is registered to use the Poll or Ping modes.
+    }
+
+    @Parameters({"backchannelClientNotificationEndpoint"})
+    @Test
+    public void backchannelTokenDeliveryModePushFail1(final String backchannelClientNotificationEndpoint) {
+        showTitle("backchannelTokenDeliveryModePushFail1");
+
+        // 1. Dynamic Client Registration
+        RegisterRequest registerRequest = new RegisterRequest(ApplicationType.WEB, "oxAuth test app", null);
+        registerRequest.setGrantTypes(Arrays.asList(GrantType.CIBA));
+
+        registerRequest.setBackchannelTokenDeliveryMode(BackchannelTokenDeliveryMode.PUSH);
+        registerRequest.setBackchannelClientNotificationEndpoint(backchannelClientNotificationEndpoint);
+        registerRequest.setBackchannelAuthenticationRequestSigningAlg(AsymmetricSignatureAlgorithm.RS256);
+        registerRequest.setBackchannelUserCodeParameter(true);
+
+        RegisterClient registerClient = new RegisterClient(registrationEndpoint);
+        registerClient.setRequest(registerRequest);
+        RegisterResponse registerResponse = registerClient.exec();
+
+        showClient(registerClient);
+        assertEquals(registerResponse.getStatus(), 200, "Unexpected response code: " + registerResponse.getEntity());
+        assertNotNull(registerResponse.getClientId());
+        assertNotNull(registerResponse.getClientSecret());
+        assertNotNull(registerResponse.getRegistrationAccessToken());
+        assertNotNull(registerResponse.getClientSecretExpiresAt());
+
+        assertTrue(registerResponse.getClaims().containsKey(BACKCHANNEL_TOKEN_DELIVERY_MODE.toString()));
+        assertTrue(registerResponse.getClaims().containsKey(BACKCHANNEL_AUTHENTICATION_REQUEST_SIGNING_ALG.toString()));
+        assertTrue(registerResponse.getClaims().containsKey(BACKCHANNEL_USER_CODE_PARAMETER.toString()));
+        assertTrue(registerResponse.getClaims().containsKey(BACKCHANNEL_CLIENT_NOTIFICATION_ENDPOINT.toString()));
+        assertEquals(registerResponse.getClaims().get(BACKCHANNEL_TOKEN_DELIVERY_MODE.toString()), BackchannelTokenDeliveryMode.PUSH.getValue());
+        assertEquals(registerResponse.getClaims().get(BACKCHANNEL_AUTHENTICATION_REQUEST_SIGNING_ALG.toString()), AsymmetricSignatureAlgorithm.RS256.getValue());
+        assertEquals(registerResponse.getClaims().get(BACKCHANNEL_USER_CODE_PARAMETER.toString()), new Boolean(true).toString());
+
+        // 2. Authentication Request
+        BackchannelAuthenticationRequest backchannelAuthenticationRequest = new BackchannelAuthenticationRequest();
+
+        BackchannelAuthenticationClient backchannelAuthenticationClient = new BackchannelAuthenticationClient(backchannelAuthenticationEndpoint);
+        backchannelAuthenticationClient.setRequest(backchannelAuthenticationRequest);
+        BackchannelAuthenticationResponse backchannelAuthenticationResponse = backchannelAuthenticationClient.exec();
+
+        showClient(backchannelAuthenticationClient);
+        assertEquals(backchannelAuthenticationResponse.getStatus(), 400, "Unexpected response code: " + backchannelAuthenticationResponse.getEntity());
+        assertNotNull(backchannelAuthenticationResponse.getEntity(), "The entity is null");
+        assertNotNull(backchannelAuthenticationResponse.getErrorType(), "The error type is null");
+        assertEquals(BackchannelAuthenticationErrorResponseType.INVALID_REQUEST, backchannelAuthenticationResponse.getErrorType());
+        assertNotNull(backchannelAuthenticationResponse.getErrorDescription(), "The error description is null");
+    }
+
+    @Parameters({"backchannelClientNotificationEndpoint"})
+    @Test
+    public void backchannelTokenDeliveryModePushFail2(final String backchannelClientNotificationEndpoint) {
+        showTitle("backchannelTokenDeliveryModePushFail2");
+
+        // 1. Dynamic Client Registration
+        RegisterRequest registerRequest = new RegisterRequest(ApplicationType.WEB, "oxAuth test app", null);
+        registerRequest.setGrantTypes(Arrays.asList(GrantType.CIBA));
+
+        registerRequest.setBackchannelTokenDeliveryMode(BackchannelTokenDeliveryMode.PUSH);
+        registerRequest.setBackchannelClientNotificationEndpoint(backchannelClientNotificationEndpoint);
+        registerRequest.setBackchannelAuthenticationRequestSigningAlg(AsymmetricSignatureAlgorithm.RS256);
+        registerRequest.setBackchannelUserCodeParameter(true);
+
+        RegisterClient registerClient = new RegisterClient(registrationEndpoint);
+        registerClient.setRequest(registerRequest);
+        RegisterResponse registerResponse = registerClient.exec();
+
+        showClient(registerClient);
+        assertEquals(registerResponse.getStatus(), 200, "Unexpected response code: " + registerResponse.getEntity());
+        assertNotNull(registerResponse.getClientId());
+        assertNotNull(registerResponse.getClientSecret());
+        assertNotNull(registerResponse.getRegistrationAccessToken());
+        assertNotNull(registerResponse.getClientSecretExpiresAt());
+
+        assertTrue(registerResponse.getClaims().containsKey(BACKCHANNEL_TOKEN_DELIVERY_MODE.toString()));
+        assertTrue(registerResponse.getClaims().containsKey(BACKCHANNEL_AUTHENTICATION_REQUEST_SIGNING_ALG.toString()));
+        assertTrue(registerResponse.getClaims().containsKey(BACKCHANNEL_USER_CODE_PARAMETER.toString()));
+        assertTrue(registerResponse.getClaims().containsKey(BACKCHANNEL_CLIENT_NOTIFICATION_ENDPOINT.toString()));
+        assertEquals(registerResponse.getClaims().get(BACKCHANNEL_TOKEN_DELIVERY_MODE.toString()), BackchannelTokenDeliveryMode.PUSH.getValue());
+        assertEquals(registerResponse.getClaims().get(BACKCHANNEL_AUTHENTICATION_REQUEST_SIGNING_ALG.toString()), AsymmetricSignatureAlgorithm.RS256.getValue());
+        assertEquals(registerResponse.getClaims().get(BACKCHANNEL_USER_CODE_PARAMETER.toString()), new Boolean(true).toString());
+
+        String clientId = registerResponse.getClientId();
+
+        // 2. Authentication Request
+        BackchannelAuthenticationRequest backchannelAuthenticationRequest = new BackchannelAuthenticationRequest();
+        backchannelAuthenticationRequest.setAuthUsername(clientId);
+        backchannelAuthenticationRequest.setAuthPassword("INVALID_CLIENT_SECRET");
+
+        BackchannelAuthenticationClient backchannelAuthenticationClient = new BackchannelAuthenticationClient(backchannelAuthenticationEndpoint);
+        backchannelAuthenticationClient.setRequest(backchannelAuthenticationRequest);
+        BackchannelAuthenticationResponse backchannelAuthenticationResponse = backchannelAuthenticationClient.exec();
+
+        showClient(backchannelAuthenticationClient);
+        assertEquals(backchannelAuthenticationResponse.getStatus(), 401, "Unexpected response code: " + backchannelAuthenticationResponse.getEntity());
+        assertNotNull(backchannelAuthenticationResponse.getEntity(), "The entity is null");
+        assertNotNull(backchannelAuthenticationResponse.getErrorType(), "The error type is null");
+        assertEquals(BackchannelAuthenticationErrorResponseType.INVALID_CLIENT, backchannelAuthenticationResponse.getErrorType());
+        assertNotNull(backchannelAuthenticationResponse.getErrorDescription(), "The error description is null");
+    }
+
+    @Parameters({"backchannelClientNotificationEndpoint"})
+    @Test
+    public void backchannelTokenDeliveryModePushFail3(final String backchannelClientNotificationEndpoint) {
+        showTitle("backchannelTokenDeliveryModePushFail3");
+
+        // 1. Dynamic Client Registration
+        RegisterRequest registerRequest = new RegisterRequest(ApplicationType.WEB, "oxAuth test app", null);
+        registerRequest.setGrantTypes(Arrays.asList(GrantType.CIBA));
+
+        registerRequest.setBackchannelTokenDeliveryMode(BackchannelTokenDeliveryMode.PUSH);
+        registerRequest.setBackchannelClientNotificationEndpoint(backchannelClientNotificationEndpoint);
+        registerRequest.setBackchannelAuthenticationRequestSigningAlg(AsymmetricSignatureAlgorithm.RS256);
+        registerRequest.setBackchannelUserCodeParameter(true);
+
+        RegisterClient registerClient = new RegisterClient(registrationEndpoint);
+        registerClient.setRequest(registerRequest);
+        RegisterResponse registerResponse = registerClient.exec();
+
+        showClient(registerClient);
+        assertEquals(registerResponse.getStatus(), 200, "Unexpected response code: " + registerResponse.getEntity());
+        assertNotNull(registerResponse.getClientId());
+        assertNotNull(registerResponse.getClientSecret());
+        assertNotNull(registerResponse.getRegistrationAccessToken());
+        assertNotNull(registerResponse.getClientSecretExpiresAt());
+
+        assertTrue(registerResponse.getClaims().containsKey(BACKCHANNEL_TOKEN_DELIVERY_MODE.toString()));
+        assertTrue(registerResponse.getClaims().containsKey(BACKCHANNEL_AUTHENTICATION_REQUEST_SIGNING_ALG.toString()));
+        assertTrue(registerResponse.getClaims().containsKey(BACKCHANNEL_USER_CODE_PARAMETER.toString()));
+        assertTrue(registerResponse.getClaims().containsKey(BACKCHANNEL_CLIENT_NOTIFICATION_ENDPOINT.toString()));
+        assertEquals(registerResponse.getClaims().get(BACKCHANNEL_TOKEN_DELIVERY_MODE.toString()), BackchannelTokenDeliveryMode.PUSH.getValue());
+        assertEquals(registerResponse.getClaims().get(BACKCHANNEL_AUTHENTICATION_REQUEST_SIGNING_ALG.toString()), AsymmetricSignatureAlgorithm.RS256.getValue());
+        assertEquals(registerResponse.getClaims().get(BACKCHANNEL_USER_CODE_PARAMETER.toString()), new Boolean(true).toString());
+
+        String clientId = registerResponse.getClientId();
+        String clientSecret = registerResponse.getClientSecret();
+
+        // 2. Authentication Request
+        BackchannelAuthenticationRequest backchannelAuthenticationRequest = new BackchannelAuthenticationRequest();
+        backchannelAuthenticationRequest.setScope(null); // Invalid Scope
+        backchannelAuthenticationRequest.setAuthUsername(clientId);
+        backchannelAuthenticationRequest.setAuthPassword(clientSecret);
+
+        BackchannelAuthenticationClient backchannelAuthenticationClient = new BackchannelAuthenticationClient(backchannelAuthenticationEndpoint);
+        backchannelAuthenticationClient.setRequest(backchannelAuthenticationRequest);
+        BackchannelAuthenticationResponse backchannelAuthenticationResponse = backchannelAuthenticationClient.exec();
+
+        showClient(backchannelAuthenticationClient);
+        assertEquals(backchannelAuthenticationResponse.getStatus(), 400, "Unexpected response code: " + backchannelAuthenticationResponse.getEntity());
+        assertNotNull(backchannelAuthenticationResponse.getEntity(), "The entity is null");
+        assertNotNull(backchannelAuthenticationResponse.getErrorType(), "The error type is null");
+        assertEquals(BackchannelAuthenticationErrorResponseType.UNKNOWN_USER_ID, backchannelAuthenticationResponse.getErrorType());
+        assertNotNull(backchannelAuthenticationResponse.getErrorDescription(), "The error description is null");
+    }
+
+    @Parameters({"backchannelClientNotificationEndpoint"})
+    @Test
+    public void backchannelTokenDeliveryModePushFail4(final String backchannelClientNotificationEndpoint) {
+        showTitle("backchannelTokenDeliveryModePushFail4");
+
+        // 1. Dynamic Client Registration
+        RegisterRequest registerRequest = new RegisterRequest(ApplicationType.WEB, "oxAuth test app", null);
+        registerRequest.setGrantTypes(Arrays.asList(GrantType.CIBA));
+
+        registerRequest.setBackchannelTokenDeliveryMode(BackchannelTokenDeliveryMode.PUSH);
+        registerRequest.setBackchannelClientNotificationEndpoint(backchannelClientNotificationEndpoint);
+        registerRequest.setBackchannelAuthenticationRequestSigningAlg(AsymmetricSignatureAlgorithm.RS256);
+        registerRequest.setBackchannelUserCodeParameter(true);
+
+        RegisterClient registerClient = new RegisterClient(registrationEndpoint);
+        registerClient.setRequest(registerRequest);
+        RegisterResponse registerResponse = registerClient.exec();
+
+        showClient(registerClient);
+        assertEquals(registerResponse.getStatus(), 200, "Unexpected response code: " + registerResponse.getEntity());
+        assertNotNull(registerResponse.getClientId());
+        assertNotNull(registerResponse.getClientSecret());
+        assertNotNull(registerResponse.getRegistrationAccessToken());
+        assertNotNull(registerResponse.getClientSecretExpiresAt());
+
+        assertTrue(registerResponse.getClaims().containsKey(BACKCHANNEL_TOKEN_DELIVERY_MODE.toString()));
+        assertTrue(registerResponse.getClaims().containsKey(BACKCHANNEL_AUTHENTICATION_REQUEST_SIGNING_ALG.toString()));
+        assertTrue(registerResponse.getClaims().containsKey(BACKCHANNEL_USER_CODE_PARAMETER.toString()));
+        assertTrue(registerResponse.getClaims().containsKey(BACKCHANNEL_CLIENT_NOTIFICATION_ENDPOINT.toString()));
+        assertEquals(registerResponse.getClaims().get(BACKCHANNEL_TOKEN_DELIVERY_MODE.toString()), BackchannelTokenDeliveryMode.PUSH.getValue());
+        assertEquals(registerResponse.getClaims().get(BACKCHANNEL_AUTHENTICATION_REQUEST_SIGNING_ALG.toString()), AsymmetricSignatureAlgorithm.RS256.getValue());
+        assertEquals(registerResponse.getClaims().get(BACKCHANNEL_USER_CODE_PARAMETER.toString()), new Boolean(true).toString());
+
+        String clientId = registerResponse.getClientId();
+        String clientSecret = registerResponse.getClientSecret();
+
+        // 2. Authentication Request
+        BackchannelAuthenticationRequest backchannelAuthenticationRequest = new BackchannelAuthenticationRequest();
+        backchannelAuthenticationRequest.setScope(Arrays.asList("openid"));
+        backchannelAuthenticationRequest.setLoginHint(null); // Invalid login hint.
+        backchannelAuthenticationRequest.setLoginHintToken(null); // Invalid login hint token.
+        backchannelAuthenticationRequest.setIdTokenHint(null); // Invalid id token hint
+        backchannelAuthenticationRequest.setAuthUsername(clientId);
+        backchannelAuthenticationRequest.setAuthPassword(clientSecret);
+
+        BackchannelAuthenticationClient backchannelAuthenticationClient = new BackchannelAuthenticationClient(backchannelAuthenticationEndpoint);
+        backchannelAuthenticationClient.setRequest(backchannelAuthenticationRequest);
+        BackchannelAuthenticationResponse backchannelAuthenticationResponse = backchannelAuthenticationClient.exec();
+
+        showClient(backchannelAuthenticationClient);
+        assertEquals(backchannelAuthenticationResponse.getStatus(), 400, "Unexpected response code: " + backchannelAuthenticationResponse.getEntity());
+        assertNotNull(backchannelAuthenticationResponse.getEntity(), "The entity is null");
+        assertNotNull(backchannelAuthenticationResponse.getErrorType(), "The error type is null");
+        assertEquals(BackchannelAuthenticationErrorResponseType.UNKNOWN_USER_ID, backchannelAuthenticationResponse.getErrorType());
+        assertNotNull(backchannelAuthenticationResponse.getErrorDescription(), "The error description is null");
+    }
+
+    @Parameters({"backchannelClientNotificationEndpoint"})
+    @Test
+    public void backchannelTokenDeliveryModePushFail5(final String backchannelClientNotificationEndpoint) {
+        showTitle("backchannelTokenDeliveryModePushFail5");
+
+        // 1. Dynamic Client Registration
+        RegisterRequest registerRequest = new RegisterRequest(ApplicationType.WEB, "oxAuth test app", null);
+        registerRequest.setGrantTypes(Arrays.asList(GrantType.CIBA));
+
+        registerRequest.setBackchannelTokenDeliveryMode(BackchannelTokenDeliveryMode.PUSH);
+        registerRequest.setBackchannelClientNotificationEndpoint(backchannelClientNotificationEndpoint);
+        registerRequest.setBackchannelAuthenticationRequestSigningAlg(AsymmetricSignatureAlgorithm.RS256);
+        registerRequest.setBackchannelUserCodeParameter(true);
+
+        RegisterClient registerClient = new RegisterClient(registrationEndpoint);
+        registerClient.setRequest(registerRequest);
+        RegisterResponse registerResponse = registerClient.exec();
+
+        showClient(registerClient);
+        assertEquals(registerResponse.getStatus(), 200, "Unexpected response code: " + registerResponse.getEntity());
+        assertNotNull(registerResponse.getClientId());
+        assertNotNull(registerResponse.getClientSecret());
+        assertNotNull(registerResponse.getRegistrationAccessToken());
+        assertNotNull(registerResponse.getClientSecretExpiresAt());
+
+        assertTrue(registerResponse.getClaims().containsKey(BACKCHANNEL_TOKEN_DELIVERY_MODE.toString()));
+        assertTrue(registerResponse.getClaims().containsKey(BACKCHANNEL_AUTHENTICATION_REQUEST_SIGNING_ALG.toString()));
+        assertTrue(registerResponse.getClaims().containsKey(BACKCHANNEL_USER_CODE_PARAMETER.toString()));
+        assertTrue(registerResponse.getClaims().containsKey(BACKCHANNEL_CLIENT_NOTIFICATION_ENDPOINT.toString()));
+        assertEquals(registerResponse.getClaims().get(BACKCHANNEL_TOKEN_DELIVERY_MODE.toString()), BackchannelTokenDeliveryMode.PUSH.getValue());
+        assertEquals(registerResponse.getClaims().get(BACKCHANNEL_AUTHENTICATION_REQUEST_SIGNING_ALG.toString()), AsymmetricSignatureAlgorithm.RS256.getValue());
+        assertEquals(registerResponse.getClaims().get(BACKCHANNEL_USER_CODE_PARAMETER.toString()), new Boolean(true).toString());
+
+        String clientId = registerResponse.getClientId();
+        String clientSecret = registerResponse.getClientSecret();
+
+        // 2. Authentication Request
+        BackchannelAuthenticationRequest backchannelAuthenticationRequest = new BackchannelAuthenticationRequest();
+        backchannelAuthenticationRequest.setScope(Arrays.asList("openid"));
+        backchannelAuthenticationRequest.setLoginHint("admin");
+        backchannelAuthenticationRequest.setClientNotificationToken(null); // Invalid client notification token.
+        backchannelAuthenticationRequest.setAuthUsername(clientId);
+        backchannelAuthenticationRequest.setAuthPassword(clientSecret);
+
+        BackchannelAuthenticationClient backchannelAuthenticationClient = new BackchannelAuthenticationClient(backchannelAuthenticationEndpoint);
+        backchannelAuthenticationClient.setRequest(backchannelAuthenticationRequest);
+        BackchannelAuthenticationResponse backchannelAuthenticationResponse = backchannelAuthenticationClient.exec();
+
+        showClient(backchannelAuthenticationClient);
+        assertEquals(backchannelAuthenticationResponse.getStatus(), 400, "Unexpected response code: " + backchannelAuthenticationResponse.getEntity());
+        assertNotNull(backchannelAuthenticationResponse.getEntity(), "The entity is null");
+        assertNotNull(backchannelAuthenticationResponse.getErrorType(), "The error type is null");
+        assertEquals(BackchannelAuthenticationErrorResponseType.INVALID_REQUEST, backchannelAuthenticationResponse.getErrorType());
+        assertNotNull(backchannelAuthenticationResponse.getErrorDescription(), "The error description is null");
+    }
+
+    @Parameters({"backchannelClientNotificationEndpoint"})
+    @Test
+    public void backchannelTokenDeliveryModePushFail6(final String backchannelClientNotificationEndpoint) {
+        showTitle("backchannelTokenDeliveryModePushFail6");
+
+        // 1. Dynamic Client Registration
+        RegisterRequest registerRequest = new RegisterRequest(ApplicationType.WEB, "oxAuth test app", null);
+        registerRequest.setGrantTypes(Arrays.asList(GrantType.CIBA));
+
+        registerRequest.setBackchannelTokenDeliveryMode(BackchannelTokenDeliveryMode.PUSH);
+        registerRequest.setBackchannelClientNotificationEndpoint(backchannelClientNotificationEndpoint);
+        registerRequest.setBackchannelAuthenticationRequestSigningAlg(AsymmetricSignatureAlgorithm.RS256);
+        registerRequest.setBackchannelUserCodeParameter(true);
+
+        RegisterClient registerClient = new RegisterClient(registrationEndpoint);
+        registerClient.setRequest(registerRequest);
+        RegisterResponse registerResponse = registerClient.exec();
+
+        showClient(registerClient);
+        assertEquals(registerResponse.getStatus(), 200, "Unexpected response code: " + registerResponse.getEntity());
+        assertNotNull(registerResponse.getClientId());
+        assertNotNull(registerResponse.getClientSecret());
+        assertNotNull(registerResponse.getRegistrationAccessToken());
+        assertNotNull(registerResponse.getClientSecretExpiresAt());
+
+        assertTrue(registerResponse.getClaims().containsKey(BACKCHANNEL_TOKEN_DELIVERY_MODE.toString()));
+        assertTrue(registerResponse.getClaims().containsKey(BACKCHANNEL_AUTHENTICATION_REQUEST_SIGNING_ALG.toString()));
+        assertTrue(registerResponse.getClaims().containsKey(BACKCHANNEL_USER_CODE_PARAMETER.toString()));
+        assertTrue(registerResponse.getClaims().containsKey(BACKCHANNEL_CLIENT_NOTIFICATION_ENDPOINT.toString()));
+        assertEquals(registerResponse.getClaims().get(BACKCHANNEL_TOKEN_DELIVERY_MODE.toString()), BackchannelTokenDeliveryMode.PUSH.getValue());
+        assertEquals(registerResponse.getClaims().get(BACKCHANNEL_AUTHENTICATION_REQUEST_SIGNING_ALG.toString()), AsymmetricSignatureAlgorithm.RS256.getValue());
+        assertEquals(registerResponse.getClaims().get(BACKCHANNEL_USER_CODE_PARAMETER.toString()), new Boolean(true).toString());
+
+        String clientId = registerResponse.getClientId();
+        String clientSecret = registerResponse.getClientSecret();
+
+        // 2. Authentication Request
+        String clientNotificationToken = UUID.randomUUID().toString();
+
+        BackchannelAuthenticationRequest backchannelAuthenticationRequest = new BackchannelAuthenticationRequest();
+        backchannelAuthenticationRequest.setScope(Arrays.asList("openid"));
+        backchannelAuthenticationRequest.setLoginHint("admin");
+        backchannelAuthenticationRequest.setClientNotificationToken(clientNotificationToken);
+        backchannelAuthenticationRequest.setUserCode(null); // Invalid user code.
+        backchannelAuthenticationRequest.setAuthUsername(clientId);
+        backchannelAuthenticationRequest.setAuthPassword(clientSecret);
+
+        BackchannelAuthenticationClient backchannelAuthenticationClient = new BackchannelAuthenticationClient(backchannelAuthenticationEndpoint);
+        backchannelAuthenticationClient.setRequest(backchannelAuthenticationRequest);
+        BackchannelAuthenticationResponse backchannelAuthenticationResponse = backchannelAuthenticationClient.exec();
+
+        showClient(backchannelAuthenticationClient);
+        assertEquals(backchannelAuthenticationResponse.getStatus(), 400, "Unexpected response code: " + backchannelAuthenticationResponse.getEntity());
+        assertNotNull(backchannelAuthenticationResponse.getEntity(), "The entity is null");
+        assertNotNull(backchannelAuthenticationResponse.getErrorType(), "The error type is null");
+        assertEquals(BackchannelAuthenticationErrorResponseType.INVALID_USER_CODE, backchannelAuthenticationResponse.getErrorType());
+        assertNotNull(backchannelAuthenticationResponse.getErrorDescription(), "The error description is null");
+    }
+
+    @Parameters({"backchannelClientNotificationEndpoint"})
+    @Test
+    public void backchannelTokenDeliveryModePushFail7(final String backchannelClientNotificationEndpoint) {
+        showTitle("backchannelTokenDeliveryModePushFail7");
+
+        // 1. Dynamic Client Registration
+        RegisterRequest registerRequest = new RegisterRequest(ApplicationType.WEB, "oxAuth test app", null);
+        registerRequest.setGrantTypes(Arrays.asList(GrantType.CIBA));
+
+        registerRequest.setBackchannelTokenDeliveryMode(BackchannelTokenDeliveryMode.PUSH);
+        registerRequest.setBackchannelClientNotificationEndpoint(backchannelClientNotificationEndpoint);
+        registerRequest.setBackchannelAuthenticationRequestSigningAlg(AsymmetricSignatureAlgorithm.RS256);
+        registerRequest.setBackchannelUserCodeParameter(true);
+
+        RegisterClient registerClient = new RegisterClient(registrationEndpoint);
+        registerClient.setRequest(registerRequest);
+        RegisterResponse registerResponse = registerClient.exec();
+
+        showClient(registerClient);
+        assertEquals(registerResponse.getStatus(), 200, "Unexpected response code: " + registerResponse.getEntity());
+        assertNotNull(registerResponse.getClientId());
+        assertNotNull(registerResponse.getClientSecret());
+        assertNotNull(registerResponse.getRegistrationAccessToken());
+        assertNotNull(registerResponse.getClientSecretExpiresAt());
+
+        assertTrue(registerResponse.getClaims().containsKey(BACKCHANNEL_TOKEN_DELIVERY_MODE.toString()));
+        assertTrue(registerResponse.getClaims().containsKey(BACKCHANNEL_AUTHENTICATION_REQUEST_SIGNING_ALG.toString()));
+        assertTrue(registerResponse.getClaims().containsKey(BACKCHANNEL_USER_CODE_PARAMETER.toString()));
+        assertTrue(registerResponse.getClaims().containsKey(BACKCHANNEL_CLIENT_NOTIFICATION_ENDPOINT.toString()));
+        assertEquals(registerResponse.getClaims().get(BACKCHANNEL_TOKEN_DELIVERY_MODE.toString()), BackchannelTokenDeliveryMode.PUSH.getValue());
+        assertEquals(registerResponse.getClaims().get(BACKCHANNEL_AUTHENTICATION_REQUEST_SIGNING_ALG.toString()), AsymmetricSignatureAlgorithm.RS256.getValue());
+        assertEquals(registerResponse.getClaims().get(BACKCHANNEL_USER_CODE_PARAMETER.toString()), new Boolean(true).toString());
+
+        String clientId = registerResponse.getClientId();
+        String clientSecret = registerResponse.getClientSecret();
+
+        // 2. Authentication Request
+        String clientNotificationToken = UUID.randomUUID().toString();
+
+        BackchannelAuthenticationRequest backchannelAuthenticationRequest = new BackchannelAuthenticationRequest();
+        backchannelAuthenticationRequest.setScope(Arrays.asList("openid"));
+        backchannelAuthenticationRequest.setLoginHint("admin");
+        backchannelAuthenticationRequest.setClientNotificationToken(clientNotificationToken);
+        backchannelAuthenticationRequest.setUserCode("INVALID_USER_CODE"); // Invalid user code.
+        backchannelAuthenticationRequest.setAuthUsername(clientId);
+        backchannelAuthenticationRequest.setAuthPassword(clientSecret);
+
+        BackchannelAuthenticationClient backchannelAuthenticationClient = new BackchannelAuthenticationClient(backchannelAuthenticationEndpoint);
+        backchannelAuthenticationClient.setRequest(backchannelAuthenticationRequest);
+        BackchannelAuthenticationResponse backchannelAuthenticationResponse = backchannelAuthenticationClient.exec();
+
+        showClient(backchannelAuthenticationClient);
+        assertEquals(backchannelAuthenticationResponse.getStatus(), 400, "Unexpected response code: " + backchannelAuthenticationResponse.getEntity());
+        assertNotNull(backchannelAuthenticationResponse.getEntity(), "The entity is null");
+        assertNotNull(backchannelAuthenticationResponse.getErrorType(), "The error type is null");
+        assertEquals(BackchannelAuthenticationErrorResponseType.INVALID_USER_CODE, backchannelAuthenticationResponse.getErrorType());
+        assertNotNull(backchannelAuthenticationResponse.getErrorDescription(), "The error description is null");
+    }
+
+    @Parameters({"backchannelClientNotificationEndpoint", "backchannelUserCode", "userId"})
+    @Test
+    public void backchannelTokenDeliveryModePushFail8(
+            final String backchannelClientNotificationEndpoint, final String backchannelUserCode, final String userId) {
+        showTitle("backchannelTokenDeliveryModePushFail8");
+
+        // 1. Dynamic Client Registration
+        RegisterRequest registerRequest = new RegisterRequest(ApplicationType.WEB, "oxAuth test app", null);
+        registerRequest.setGrantTypes(Arrays.asList(GrantType.CIBA));
+
+        registerRequest.setBackchannelTokenDeliveryMode(BackchannelTokenDeliveryMode.PUSH);
+        registerRequest.setBackchannelClientNotificationEndpoint(backchannelClientNotificationEndpoint);
+        registerRequest.setBackchannelAuthenticationRequestSigningAlg(AsymmetricSignatureAlgorithm.RS256);
+        registerRequest.setBackchannelUserCodeParameter(true);
+
+        RegisterClient registerClient = new RegisterClient(registrationEndpoint);
+        registerClient.setRequest(registerRequest);
+        RegisterResponse registerResponse = registerClient.exec();
+
+        showClient(registerClient);
+        assertEquals(registerResponse.getStatus(), 200, "Unexpected response code: " + registerResponse.getEntity());
+        assertNotNull(registerResponse.getClientId());
+        assertNotNull(registerResponse.getClientSecret());
+        assertNotNull(registerResponse.getRegistrationAccessToken());
+        assertNotNull(registerResponse.getClientSecretExpiresAt());
+
+        assertTrue(registerResponse.getClaims().containsKey(BACKCHANNEL_TOKEN_DELIVERY_MODE.toString()));
+        assertTrue(registerResponse.getClaims().containsKey(BACKCHANNEL_AUTHENTICATION_REQUEST_SIGNING_ALG.toString()));
+        assertTrue(registerResponse.getClaims().containsKey(BACKCHANNEL_USER_CODE_PARAMETER.toString()));
+        assertTrue(registerResponse.getClaims().containsKey(BACKCHANNEL_CLIENT_NOTIFICATION_ENDPOINT.toString()));
+        assertEquals(registerResponse.getClaims().get(BACKCHANNEL_TOKEN_DELIVERY_MODE.toString()), BackchannelTokenDeliveryMode.PUSH.getValue());
+        assertEquals(registerResponse.getClaims().get(BACKCHANNEL_AUTHENTICATION_REQUEST_SIGNING_ALG.toString()), AsymmetricSignatureAlgorithm.RS256.getValue());
+        assertEquals(registerResponse.getClaims().get(BACKCHANNEL_USER_CODE_PARAMETER.toString()), new Boolean(true).toString());
+
+        String clientId = registerResponse.getClientId();
+        String clientSecret = registerResponse.getClientSecret();
+
+        // 2. Authentication Request
+        String clientNotificationToken = UUID.randomUUID().toString();
+
+        BackchannelAuthenticationRequest backchannelAuthenticationRequest = new BackchannelAuthenticationRequest();
+        backchannelAuthenticationRequest.setScope(Arrays.asList("openid"));
+        backchannelAuthenticationRequest.setLoginHint(userId);
+        backchannelAuthenticationRequest.setClientNotificationToken(clientNotificationToken);
+        backchannelAuthenticationRequest.setUserCode(backchannelUserCode);
+        backchannelAuthenticationRequest.setRequestedExpiry(1200);
+        backchannelAuthenticationRequest.setAcrValues(Arrays.asList("auth_ldap_server", "basic"));
+        backchannelAuthenticationRequest.setBindingMessage("####"); // Invalid binding message
+        backchannelAuthenticationRequest.setAuthUsername(clientId);
+        backchannelAuthenticationRequest.setAuthPassword(clientSecret);
+
+        BackchannelAuthenticationClient backchannelAuthenticationClient = new BackchannelAuthenticationClient(backchannelAuthenticationEndpoint);
+        backchannelAuthenticationClient.setRequest(backchannelAuthenticationRequest);
+        BackchannelAuthenticationResponse backchannelAuthenticationResponse = backchannelAuthenticationClient.exec();
+
+        showClient(backchannelAuthenticationClient);
+        assertEquals(backchannelAuthenticationResponse.getStatus(), 400, "Unexpected response code: " + backchannelAuthenticationResponse.getEntity());
+        assertNotNull(backchannelAuthenticationResponse.getEntity(), "The entity is null");
+        assertNotNull(backchannelAuthenticationResponse.getErrorType(), "The error type is null");
+        assertEquals(BackchannelAuthenticationErrorResponseType.INVALID_BINDING_MESSAGE, backchannelAuthenticationResponse.getErrorType());
+        assertNotNull(backchannelAuthenticationResponse.getErrorDescription(), "The error description is null");
+    }
+
+    @Parameters({"userId", "userSecret", "redirectUri", "redirectUris", "sectorIdentifierUri"})
+    @Test
+    public void idTokenHintRS256(
+            final String userId, final String userSecret, final String redirectUri, final String redirectUris,
+            final String sectorIdentifierUri) throws Exception {
+        showTitle("idTokenHintRS256");
+
+        List<ResponseType> responseTypes = Arrays.asList(ResponseType.TOKEN, ResponseType.ID_TOKEN);
+
+        // 1. Register client
+        RegisterRequest registerRequest = new RegisterRequest(ApplicationType.WEB, "oxAuth test app",
+                StringUtils.spaceSeparatedToList(redirectUris));
+        registerRequest.setResponseTypes(responseTypes);
+        registerRequest.setSectorIdentifierUri(sectorIdentifierUri);
+        registerRequest.setIdTokenSignedResponseAlg(SignatureAlgorithm.RS256);
+
+        RegisterClient registerClient = new RegisterClient(registrationEndpoint);
+        registerClient.setRequest(registerRequest);
+        RegisterResponse registerResponse = registerClient.exec();
+
+        showClient(registerClient);
+        assertEquals(registerResponse.getStatus(), 200, "Unexpected response code: " + registerResponse.getEntity());
+        assertNotNull(registerResponse.getClientId());
+        assertNotNull(registerResponse.getClientSecret());
+        assertNotNull(registerResponse.getRegistrationAccessToken());
+        assertNotNull(registerResponse.getClientIdIssuedAt());
+        assertNotNull(registerResponse.getClientSecretExpiresAt());
+
+        String clientId = registerResponse.getClientId();
+
+        // 2. Request authorization
+        List<String> scopes = Arrays.asList("openid");
+        String nonce = UUID.randomUUID().toString();
+        String state = UUID.randomUUID().toString();
+
+        AuthorizationRequest authorizationRequest = new AuthorizationRequest(responseTypes, clientId, scopes, redirectUri, nonce);
+        authorizationRequest.setState(state);
+
+        AuthorizeClient authorizeClient = new AuthorizeClient(authorizationEndpoint);
+        authorizeClient.setRequest(authorizationRequest);
+
+        AuthorizationResponse authorizationResponse = authenticateResourceOwnerAndGrantAccess(
+                authorizationEndpoint, authorizationRequest, userId, userSecret);
+
+        assertNotNull(authorizationResponse.getLocation(), "The location is null");
+        assertNotNull(authorizationResponse.getAccessToken(), "The accessToken is null");
+        assertNotNull(authorizationResponse.getTokenType(), "The tokenType is null");
+        assertNotNull(authorizationResponse.getIdToken(), "The idToken is null");
+        assertNotNull(authorizationResponse.getState(), "The state is null");
+
+        String idToken = authorizationResponse.getIdToken();
+
+        // 3. Validate id_token
+        Jwt jwt = Jwt.parse(idToken);
+        assertNotNull(jwt.getHeader().getClaimAsString(JwtHeaderName.TYPE));
+        assertNotNull(jwt.getHeader().getClaimAsString(JwtHeaderName.ALGORITHM));
+        assertNotNull(jwt.getClaims().getClaimAsString(JwtClaimName.ISSUER));
+        assertNotNull(jwt.getClaims().getClaimAsString(JwtClaimName.AUDIENCE));
+        assertNotNull(jwt.getClaims().getClaimAsString(JwtClaimName.EXPIRATION_TIME));
+        assertNotNull(jwt.getClaims().getClaimAsString(JwtClaimName.ISSUED_AT));
+        assertNotNull(jwt.getClaims().getClaimAsString(JwtClaimName.SUBJECT_IDENTIFIER));
+        assertNotNull(jwt.getClaims().getClaimAsString(JwtClaimName.ACCESS_TOKEN_HASH));
+        assertNotNull(jwt.getClaims().getClaimAsString(JwtClaimName.AUTHENTICATION_TIME));
+
+        RSAPublicKey publicKey = JwkClient.getRSAPublicKey(
+                jwksUri,
+                jwt.getHeader().getClaimAsString(JwtHeaderName.KEY_ID));
+        RSASigner rsaSigner = new RSASigner(SignatureAlgorithm.RS256, publicKey);
+
+        assertTrue(rsaSigner.validate(jwt));
+
+        idTokenHintRS256 = idToken;
+    }
+
+    @Parameters({"userId", "userSecret", "redirectUri", "redirectUris", "sectorIdentifierUri"})
+    @Test
+    public void idTokenHintRS384(
+            final String userId, final String userSecret, final String redirectUri, final String redirectUris,
+            final String sectorIdentifierUri) throws Exception {
+        showTitle("idTokenHintRS384");
+
+        List<ResponseType> responseTypes = Arrays.asList(ResponseType.TOKEN, ResponseType.ID_TOKEN);
+
+        // 1. Register client
+        RegisterRequest registerRequest = new RegisterRequest(ApplicationType.WEB, "oxAuth test app",
+                StringUtils.spaceSeparatedToList(redirectUris));
+        registerRequest.setResponseTypes(responseTypes);
+        registerRequest.setSectorIdentifierUri(sectorIdentifierUri);
+        registerRequest.setIdTokenSignedResponseAlg(SignatureAlgorithm.RS384);
+
+        RegisterClient registerClient = new RegisterClient(registrationEndpoint);
+        registerClient.setRequest(registerRequest);
+        RegisterResponse registerResponse = registerClient.exec();
+
+        showClient(registerClient);
+        assertEquals(registerResponse.getStatus(), 200, "Unexpected response code: " + registerResponse.getEntity());
+        assertNotNull(registerResponse.getClientId());
+        assertNotNull(registerResponse.getClientSecret());
+        assertNotNull(registerResponse.getRegistrationAccessToken());
+        assertNotNull(registerResponse.getClientIdIssuedAt());
+        assertNotNull(registerResponse.getClientSecretExpiresAt());
+
+        String clientId = registerResponse.getClientId();
+
+        // 2. Request authorization
+        List<String> scopes = Arrays.asList("openid");
+        String nonce = UUID.randomUUID().toString();
+        String state = UUID.randomUUID().toString();
+
+        AuthorizationRequest authorizationRequest = new AuthorizationRequest(responseTypes, clientId, scopes, redirectUri, nonce);
+        authorizationRequest.setState(state);
+
+        AuthorizeClient authorizeClient = new AuthorizeClient(authorizationEndpoint);
+        authorizeClient.setRequest(authorizationRequest);
+
+        AuthorizationResponse authorizationResponse = authenticateResourceOwnerAndGrantAccess(
+                authorizationEndpoint, authorizationRequest, userId, userSecret);
+
+        assertNotNull(authorizationResponse.getLocation(), "The location is null");
+        assertNotNull(authorizationResponse.getAccessToken(), "The accessToken is null");
+        assertNotNull(authorizationResponse.getTokenType(), "The tokenType is null");
+        assertNotNull(authorizationResponse.getIdToken(), "The idToken is null");
+        assertNotNull(authorizationResponse.getState(), "The state is null");
+
+        String idToken = authorizationResponse.getIdToken();
+
+        // 3. Validate id_token
+        Jwt jwt = Jwt.parse(idToken);
+        assertNotNull(jwt.getHeader().getClaimAsString(JwtHeaderName.TYPE));
+        assertNotNull(jwt.getHeader().getClaimAsString(JwtHeaderName.ALGORITHM));
+        assertNotNull(jwt.getClaims().getClaimAsString(JwtClaimName.ISSUER));
+        assertNotNull(jwt.getClaims().getClaimAsString(JwtClaimName.AUDIENCE));
+        assertNotNull(jwt.getClaims().getClaimAsString(JwtClaimName.EXPIRATION_TIME));
+        assertNotNull(jwt.getClaims().getClaimAsString(JwtClaimName.ISSUED_AT));
+        assertNotNull(jwt.getClaims().getClaimAsString(JwtClaimName.SUBJECT_IDENTIFIER));
+        assertNotNull(jwt.getClaims().getClaimAsString(JwtClaimName.ACCESS_TOKEN_HASH));
+        assertNotNull(jwt.getClaims().getClaimAsString(JwtClaimName.AUTHENTICATION_TIME));
+
+        RSAPublicKey publicKey = JwkClient.getRSAPublicKey(
+                jwksUri,
+                jwt.getHeader().getClaimAsString(JwtHeaderName.KEY_ID));
+        RSASigner rsaSigner = new RSASigner(SignatureAlgorithm.RS384, publicKey);
+
+        assertTrue(rsaSigner.validate(jwt));
+
+        idTokenHintRS384 = idToken;
+    }
+
+    @Parameters({"userId", "userSecret", "redirectUri", "redirectUris", "sectorIdentifierUri"})
+    @Test
+    public void idTokenHintRS512(
+            final String userId, final String userSecret, final String redirectUri, final String redirectUris,
+            final String sectorIdentifierUri) throws Exception {
+        showTitle("idTokenHintRS512");
+
+        List<ResponseType> responseTypes = Arrays.asList(ResponseType.TOKEN, ResponseType.ID_TOKEN);
+
+        // 1. Register client
+        RegisterRequest registerRequest = new RegisterRequest(ApplicationType.WEB, "oxAuth test app",
+                StringUtils.spaceSeparatedToList(redirectUris));
+        registerRequest.setResponseTypes(responseTypes);
+        registerRequest.setSectorIdentifierUri(sectorIdentifierUri);
+        registerRequest.setIdTokenSignedResponseAlg(SignatureAlgorithm.RS512);
+
+        RegisterClient registerClient = new RegisterClient(registrationEndpoint);
+        registerClient.setRequest(registerRequest);
+        RegisterResponse registerResponse = registerClient.exec();
+
+        showClient(registerClient);
+        assertEquals(registerResponse.getStatus(), 200, "Unexpected response code: " + registerResponse.getEntity());
+        assertNotNull(registerResponse.getClientId());
+        assertNotNull(registerResponse.getClientSecret());
+        assertNotNull(registerResponse.getRegistrationAccessToken());
+        assertNotNull(registerResponse.getClientIdIssuedAt());
+        assertNotNull(registerResponse.getClientSecretExpiresAt());
+
+        String clientId = registerResponse.getClientId();
+
+        // 2. Request authorization
+        List<String> scopes = Arrays.asList("openid");
+        String nonce = UUID.randomUUID().toString();
+        String state = UUID.randomUUID().toString();
+
+        AuthorizationRequest authorizationRequest = new AuthorizationRequest(responseTypes, clientId, scopes, redirectUri, nonce);
+        authorizationRequest.setState(state);
+
+        AuthorizeClient authorizeClient = new AuthorizeClient(authorizationEndpoint);
+        authorizeClient.setRequest(authorizationRequest);
+
+        AuthorizationResponse authorizationResponse = authenticateResourceOwnerAndGrantAccess(
+                authorizationEndpoint, authorizationRequest, userId, userSecret);
+
+        assertNotNull(authorizationResponse.getLocation(), "The location is null");
+        assertNotNull(authorizationResponse.getAccessToken(), "The accessToken is null");
+        assertNotNull(authorizationResponse.getTokenType(), "The tokenType is null");
+        assertNotNull(authorizationResponse.getIdToken(), "The idToken is null");
+        assertNotNull(authorizationResponse.getState(), "The state is null");
+
+        String idToken = authorizationResponse.getIdToken();
+
+        // 3. Validate id_token
+        Jwt jwt = Jwt.parse(idToken);
+        assertNotNull(jwt.getHeader().getClaimAsString(JwtHeaderName.TYPE));
+        assertNotNull(jwt.getHeader().getClaimAsString(JwtHeaderName.ALGORITHM));
+        assertNotNull(jwt.getClaims().getClaimAsString(JwtClaimName.ISSUER));
+        assertNotNull(jwt.getClaims().getClaimAsString(JwtClaimName.AUDIENCE));
+        assertNotNull(jwt.getClaims().getClaimAsString(JwtClaimName.EXPIRATION_TIME));
+        assertNotNull(jwt.getClaims().getClaimAsString(JwtClaimName.ISSUED_AT));
+        assertNotNull(jwt.getClaims().getClaimAsString(JwtClaimName.SUBJECT_IDENTIFIER));
+        assertNotNull(jwt.getClaims().getClaimAsString(JwtClaimName.ACCESS_TOKEN_HASH));
+        assertNotNull(jwt.getClaims().getClaimAsString(JwtClaimName.AUTHENTICATION_TIME));
+
+        RSAPublicKey publicKey = JwkClient.getRSAPublicKey(
+                jwksUri,
+                jwt.getHeader().getClaimAsString(JwtHeaderName.KEY_ID));
+        RSASigner rsaSigner = new RSASigner(SignatureAlgorithm.RS512, publicKey);
+
+        assertTrue(rsaSigner.validate(jwt));
+
+        idTokenHintRS512 = idToken;
+    }
+
+    @Parameters({"userId", "userSecret", "redirectUri", "redirectUris", "sectorIdentifierUri"})
+    @Test
+    public void idTokenHintES256(
+            final String userId, final String userSecret, final String redirectUri, final String redirectUris,
+            final String sectorIdentifierUri) throws Exception {
+        showTitle("idTokenHintES256");
+
+        List<ResponseType> responseTypes = Arrays.asList(ResponseType.TOKEN, ResponseType.ID_TOKEN);
+
+        // 1. Register client
+        RegisterRequest registerRequest = new RegisterRequest(ApplicationType.WEB, "oxAuth test app",
+                StringUtils.spaceSeparatedToList(redirectUris));
+        registerRequest.setResponseTypes(responseTypes);
+        registerRequest.setSectorIdentifierUri(sectorIdentifierUri);
+        registerRequest.setIdTokenSignedResponseAlg(SignatureAlgorithm.ES256);
+
+        RegisterClient registerClient = new RegisterClient(registrationEndpoint);
+        registerClient.setRequest(registerRequest);
+        RegisterResponse registerResponse = registerClient.exec();
+
+        showClient(registerClient);
+        assertEquals(registerResponse.getStatus(), 200, "Unexpected response code: " + registerResponse.getEntity());
+        assertNotNull(registerResponse.getClientId());
+        assertNotNull(registerResponse.getClientSecret());
+        assertNotNull(registerResponse.getRegistrationAccessToken());
+        assertNotNull(registerResponse.getClientIdIssuedAt());
+        assertNotNull(registerResponse.getClientSecretExpiresAt());
+
+        String clientId = registerResponse.getClientId();
+
+        // 2. Request authorization
+        List<String> scopes = Arrays.asList("openid");
+        String nonce = UUID.randomUUID().toString();
+        String state = UUID.randomUUID().toString();
+
+        AuthorizationRequest authorizationRequest = new AuthorizationRequest(responseTypes, clientId, scopes, redirectUri, nonce);
+        authorizationRequest.setState(state);
+
+        AuthorizeClient authorizeClient = new AuthorizeClient(authorizationEndpoint);
+        authorizeClient.setRequest(authorizationRequest);
+
+        AuthorizationResponse authorizationResponse = authenticateResourceOwnerAndGrantAccess(
+                authorizationEndpoint, authorizationRequest, userId, userSecret);
+
+        assertNotNull(authorizationResponse.getLocation(), "The location is null");
+        assertNotNull(authorizationResponse.getAccessToken(), "The accessToken is null");
+        assertNotNull(authorizationResponse.getTokenType(), "The tokenType is null");
+        assertNotNull(authorizationResponse.getIdToken(), "The idToken is null");
+        assertNotNull(authorizationResponse.getState(), "The state is null");
+
+        String idToken = authorizationResponse.getIdToken();
+
+        // 3. Validate id_token
+        Jwt jwt = Jwt.parse(idToken);
+        assertNotNull(jwt.getHeader().getClaimAsString(JwtHeaderName.TYPE));
+        assertNotNull(jwt.getHeader().getClaimAsString(JwtHeaderName.ALGORITHM));
+        assertNotNull(jwt.getClaims().getClaimAsString(JwtClaimName.ISSUER));
+        assertNotNull(jwt.getClaims().getClaimAsString(JwtClaimName.AUDIENCE));
+        assertNotNull(jwt.getClaims().getClaimAsString(JwtClaimName.EXPIRATION_TIME));
+        assertNotNull(jwt.getClaims().getClaimAsString(JwtClaimName.ISSUED_AT));
+        assertNotNull(jwt.getClaims().getClaimAsString(JwtClaimName.SUBJECT_IDENTIFIER));
+        assertNotNull(jwt.getClaims().getClaimAsString(JwtClaimName.ACCESS_TOKEN_HASH));
+        assertNotNull(jwt.getClaims().getClaimAsString(JwtClaimName.AUTHENTICATION_TIME));
+
+        ECDSAPublicKey publicKey = JwkClient.getECDSAPublicKey(
+                jwksUri,
+                jwt.getHeader().getClaimAsString(JwtHeaderName.KEY_ID));
+        ECDSASigner ecdsaSigner = new ECDSASigner(SignatureAlgorithm.ES256, publicKey);
+
+        assertTrue(ecdsaSigner.validate(jwt));
+
+        idTokenHintES256 = idToken;
+    }
+
+    @Parameters({"userId", "userSecret", "redirectUri", "redirectUris", "sectorIdentifierUri"})
+    @Test
+    public void idTokenHintES384(
+            final String userId, final String userSecret, final String redirectUri, final String redirectUris,
+            final String sectorIdentifierUri) throws Exception {
+        showTitle("idTokenHintES384");
+
+        List<ResponseType> responseTypes = Arrays.asList(ResponseType.TOKEN, ResponseType.ID_TOKEN);
+
+        // 1. Register client
+        RegisterRequest registerRequest = new RegisterRequest(ApplicationType.WEB, "oxAuth test app",
+                StringUtils.spaceSeparatedToList(redirectUris));
+        registerRequest.setResponseTypes(responseTypes);
+        registerRequest.setSectorIdentifierUri(sectorIdentifierUri);
+        registerRequest.setIdTokenSignedResponseAlg(SignatureAlgorithm.ES384);
+
+        RegisterClient registerClient = new RegisterClient(registrationEndpoint);
+        registerClient.setRequest(registerRequest);
+        RegisterResponse registerResponse = registerClient.exec();
+
+        showClient(registerClient);
+        assertEquals(registerResponse.getStatus(), 200, "Unexpected response code: " + registerResponse.getEntity());
+        assertNotNull(registerResponse.getClientId());
+        assertNotNull(registerResponse.getClientSecret());
+        assertNotNull(registerResponse.getRegistrationAccessToken());
+        assertNotNull(registerResponse.getClientIdIssuedAt());
+        assertNotNull(registerResponse.getClientSecretExpiresAt());
+
+        String clientId = registerResponse.getClientId();
+
+        // 2. Request authorization
+        List<String> scopes = Arrays.asList("openid");
+        String nonce = UUID.randomUUID().toString();
+        String state = UUID.randomUUID().toString();
+
+        AuthorizationRequest authorizationRequest = new AuthorizationRequest(responseTypes, clientId, scopes, redirectUri, nonce);
+        authorizationRequest.setState(state);
+
+        AuthorizeClient authorizeClient = new AuthorizeClient(authorizationEndpoint);
+        authorizeClient.setRequest(authorizationRequest);
+
+        AuthorizationResponse authorizationResponse = authenticateResourceOwnerAndGrantAccess(
+                authorizationEndpoint, authorizationRequest, userId, userSecret);
+
+        assertNotNull(authorizationResponse.getLocation(), "The location is null");
+        assertNotNull(authorizationResponse.getAccessToken(), "The accessToken is null");
+        assertNotNull(authorizationResponse.getTokenType(), "The tokenType is null");
+        assertNotNull(authorizationResponse.getIdToken(), "The idToken is null");
+        assertNotNull(authorizationResponse.getState(), "The state is null");
+
+        String idToken = authorizationResponse.getIdToken();
+
+        // 3. Validate id_token
+        Jwt jwt = Jwt.parse(idToken);
+        assertNotNull(jwt.getHeader().getClaimAsString(JwtHeaderName.TYPE));
+        assertNotNull(jwt.getHeader().getClaimAsString(JwtHeaderName.ALGORITHM));
+        assertNotNull(jwt.getClaims().getClaimAsString(JwtClaimName.ISSUER));
+        assertNotNull(jwt.getClaims().getClaimAsString(JwtClaimName.AUDIENCE));
+        assertNotNull(jwt.getClaims().getClaimAsString(JwtClaimName.EXPIRATION_TIME));
+        assertNotNull(jwt.getClaims().getClaimAsString(JwtClaimName.ISSUED_AT));
+        assertNotNull(jwt.getClaims().getClaimAsString(JwtClaimName.SUBJECT_IDENTIFIER));
+        assertNotNull(jwt.getClaims().getClaimAsString(JwtClaimName.ACCESS_TOKEN_HASH));
+        assertNotNull(jwt.getClaims().getClaimAsString(JwtClaimName.AUTHENTICATION_TIME));
+
+        ECDSAPublicKey publicKey = JwkClient.getECDSAPublicKey(
+                jwksUri,
+                jwt.getHeader().getClaimAsString(JwtHeaderName.KEY_ID));
+        ECDSASigner ecdsaSigner = new ECDSASigner(SignatureAlgorithm.ES384, publicKey);
+
+        assertTrue(ecdsaSigner.validate(jwt));
+
+        idTokenHintES384 = idToken;
+    }
+
+    @Parameters({"userId", "userSecret", "redirectUri", "redirectUris", "sectorIdentifierUri"})
+    @Test
+    public void idTokenHintES512(
+            final String userId, final String userSecret, final String redirectUri, final String redirectUris,
+            final String sectorIdentifierUri) throws Exception {
+        showTitle("idTokenHintES512");
+
+        List<ResponseType> responseTypes = Arrays.asList(ResponseType.TOKEN, ResponseType.ID_TOKEN);
+
+        // 1. Register client
+        RegisterRequest registerRequest = new RegisterRequest(ApplicationType.WEB, "oxAuth test app",
+                StringUtils.spaceSeparatedToList(redirectUris));
+        registerRequest.setResponseTypes(responseTypes);
+        registerRequest.setSectorIdentifierUri(sectorIdentifierUri);
+        registerRequest.setIdTokenSignedResponseAlg(SignatureAlgorithm.ES512);
+
+        RegisterClient registerClient = new RegisterClient(registrationEndpoint);
+        registerClient.setRequest(registerRequest);
+        RegisterResponse registerResponse = registerClient.exec();
+
+        showClient(registerClient);
+        assertEquals(registerResponse.getStatus(), 200, "Unexpected response code: " + registerResponse.getEntity());
+        assertNotNull(registerResponse.getClientId());
+        assertNotNull(registerResponse.getClientSecret());
+        assertNotNull(registerResponse.getRegistrationAccessToken());
+        assertNotNull(registerResponse.getClientIdIssuedAt());
+        assertNotNull(registerResponse.getClientSecretExpiresAt());
+
+        String clientId = registerResponse.getClientId();
+
+        // 2. Request authorization
+        List<String> scopes = Arrays.asList("openid");
+        String nonce = UUID.randomUUID().toString();
+        String state = UUID.randomUUID().toString();
+
+        AuthorizationRequest authorizationRequest = new AuthorizationRequest(responseTypes, clientId, scopes, redirectUri, nonce);
+        authorizationRequest.setState(state);
+
+        AuthorizeClient authorizeClient = new AuthorizeClient(authorizationEndpoint);
+        authorizeClient.setRequest(authorizationRequest);
+
+        AuthorizationResponse authorizationResponse = authenticateResourceOwnerAndGrantAccess(
+                authorizationEndpoint, authorizationRequest, userId, userSecret);
+
+        assertNotNull(authorizationResponse.getLocation(), "The location is null");
+        assertNotNull(authorizationResponse.getAccessToken(), "The accessToken is null");
+        assertNotNull(authorizationResponse.getTokenType(), "The tokenType is null");
+        assertNotNull(authorizationResponse.getIdToken(), "The idToken is null");
+        assertNotNull(authorizationResponse.getState(), "The state is null");
+
+        String idToken = authorizationResponse.getIdToken();
+
+        // 3. Validate id_token
+        Jwt jwt = Jwt.parse(idToken);
+        assertNotNull(jwt.getHeader().getClaimAsString(JwtHeaderName.TYPE));
+        assertNotNull(jwt.getHeader().getClaimAsString(JwtHeaderName.ALGORITHM));
+        assertNotNull(jwt.getClaims().getClaimAsString(JwtClaimName.ISSUER));
+        assertNotNull(jwt.getClaims().getClaimAsString(JwtClaimName.AUDIENCE));
+        assertNotNull(jwt.getClaims().getClaimAsString(JwtClaimName.EXPIRATION_TIME));
+        assertNotNull(jwt.getClaims().getClaimAsString(JwtClaimName.ISSUED_AT));
+        assertNotNull(jwt.getClaims().getClaimAsString(JwtClaimName.SUBJECT_IDENTIFIER));
+        assertNotNull(jwt.getClaims().getClaimAsString(JwtClaimName.ACCESS_TOKEN_HASH));
+        assertNotNull(jwt.getClaims().getClaimAsString(JwtClaimName.AUTHENTICATION_TIME));
+
+        ECDSAPublicKey publicKey = JwkClient.getECDSAPublicKey(
+                jwksUri,
+                jwt.getHeader().getClaimAsString(JwtHeaderName.KEY_ID));
+        ECDSASigner ecdsaSigner = new ECDSASigner(SignatureAlgorithm.ES512, publicKey);
+
+        assertTrue(ecdsaSigner.validate(jwt));
+
+        idTokenHintES512 = idToken;
+    }
+
+    @Parameters({"userId", "userSecret", "redirectUri", "redirectUris", "sectorIdentifierUri"})
+    @Test
+    public void idTokenHintPS256(
+            final String userId, final String userSecret, final String redirectUri, final String redirectUris,
+            final String sectorIdentifierUri) throws Exception {
+        showTitle("idTokenHintPS256");
+
+        List<ResponseType> responseTypes = Arrays.asList(ResponseType.TOKEN, ResponseType.ID_TOKEN);
+
+        // 1. Register client
+        RegisterRequest registerRequest = new RegisterRequest(ApplicationType.WEB, "oxAuth test app",
+                StringUtils.spaceSeparatedToList(redirectUris));
+        registerRequest.setResponseTypes(responseTypes);
+        registerRequest.setSectorIdentifierUri(sectorIdentifierUri);
+        registerRequest.setIdTokenSignedResponseAlg(SignatureAlgorithm.PS256);
+
+        RegisterClient registerClient = new RegisterClient(registrationEndpoint);
+        registerClient.setRequest(registerRequest);
+        RegisterResponse registerResponse = registerClient.exec();
+
+        showClient(registerClient);
+        assertEquals(registerResponse.getStatus(), 200, "Unexpected response code: " + registerResponse.getEntity());
+        assertNotNull(registerResponse.getClientId());
+        assertNotNull(registerResponse.getClientSecret());
+        assertNotNull(registerResponse.getRegistrationAccessToken());
+        assertNotNull(registerResponse.getClientIdIssuedAt());
+        assertNotNull(registerResponse.getClientSecretExpiresAt());
+
+        String clientId = registerResponse.getClientId();
+
+        // 2. Request authorization
+        List<String> scopes = Arrays.asList("openid");
+        String nonce = UUID.randomUUID().toString();
+        String state = UUID.randomUUID().toString();
+
+        AuthorizationRequest authorizationRequest = new AuthorizationRequest(responseTypes, clientId, scopes, redirectUri, nonce);
+        authorizationRequest.setState(state);
+
+        AuthorizeClient authorizeClient = new AuthorizeClient(authorizationEndpoint);
+        authorizeClient.setRequest(authorizationRequest);
+
+        AuthorizationResponse authorizationResponse = authenticateResourceOwnerAndGrantAccess(
+                authorizationEndpoint, authorizationRequest, userId, userSecret);
+
+        assertNotNull(authorizationResponse.getLocation(), "The location is null");
+        assertNotNull(authorizationResponse.getAccessToken(), "The accessToken is null");
+        assertNotNull(authorizationResponse.getTokenType(), "The tokenType is null");
+        assertNotNull(authorizationResponse.getIdToken(), "The idToken is null");
+        assertNotNull(authorizationResponse.getState(), "The state is null");
+
+        String idToken = authorizationResponse.getIdToken();
+
+        // 3. Validate id_token
+        Jwt jwt = Jwt.parse(idToken);
+        assertNotNull(jwt.getHeader().getClaimAsString(JwtHeaderName.TYPE));
+        assertNotNull(jwt.getHeader().getClaimAsString(JwtHeaderName.ALGORITHM));
+        assertNotNull(jwt.getClaims().getClaimAsString(JwtClaimName.ISSUER));
+        assertNotNull(jwt.getClaims().getClaimAsString(JwtClaimName.AUDIENCE));
+        assertNotNull(jwt.getClaims().getClaimAsString(JwtClaimName.EXPIRATION_TIME));
+        assertNotNull(jwt.getClaims().getClaimAsString(JwtClaimName.ISSUED_AT));
+        assertNotNull(jwt.getClaims().getClaimAsString(JwtClaimName.SUBJECT_IDENTIFIER));
+        assertNotNull(jwt.getClaims().getClaimAsString(JwtClaimName.ACCESS_TOKEN_HASH));
+        assertNotNull(jwt.getClaims().getClaimAsString(JwtClaimName.AUTHENTICATION_TIME));
+
+        RSAPublicKey publicKey = JwkClient.getRSAPublicKey(
+                jwksUri,
+                jwt.getHeader().getClaimAsString(JwtHeaderName.KEY_ID));
+        RSASigner rsaSigner = new RSASigner(SignatureAlgorithm.PS256, publicKey);
+
+        assertTrue(rsaSigner.validate(jwt));
+
+        idTokenHintPS256 = idToken;
+    }
+
+    @Parameters({"userId", "userSecret", "redirectUri", "redirectUris", "sectorIdentifierUri"})
+    @Test
+    public void idTokenHintPS384(
+            final String userId, final String userSecret, final String redirectUri, final String redirectUris,
+            final String sectorIdentifierUri) throws Exception {
+        showTitle("idTokenHintPS384");
+
+        List<ResponseType> responseTypes = Arrays.asList(ResponseType.TOKEN, ResponseType.ID_TOKEN);
+
+        // 1. Register client
+        RegisterRequest registerRequest = new RegisterRequest(ApplicationType.WEB, "oxAuth test app",
+                StringUtils.spaceSeparatedToList(redirectUris));
+        registerRequest.setResponseTypes(responseTypes);
+        registerRequest.setSectorIdentifierUri(sectorIdentifierUri);
+        registerRequest.setIdTokenSignedResponseAlg(SignatureAlgorithm.PS384);
+
+        RegisterClient registerClient = new RegisterClient(registrationEndpoint);
+        registerClient.setRequest(registerRequest);
+        RegisterResponse registerResponse = registerClient.exec();
+
+        showClient(registerClient);
+        assertEquals(registerResponse.getStatus(), 200, "Unexpected response code: " + registerResponse.getEntity());
+        assertNotNull(registerResponse.getClientId());
+        assertNotNull(registerResponse.getClientSecret());
+        assertNotNull(registerResponse.getRegistrationAccessToken());
+        assertNotNull(registerResponse.getClientIdIssuedAt());
+        assertNotNull(registerResponse.getClientSecretExpiresAt());
+
+        String clientId = registerResponse.getClientId();
+
+        // 2. Request authorization
+        List<String> scopes = Arrays.asList("openid");
+        String nonce = UUID.randomUUID().toString();
+        String state = UUID.randomUUID().toString();
+
+        AuthorizationRequest authorizationRequest = new AuthorizationRequest(responseTypes, clientId, scopes, redirectUri, nonce);
+        authorizationRequest.setState(state);
+
+        AuthorizeClient authorizeClient = new AuthorizeClient(authorizationEndpoint);
+        authorizeClient.setRequest(authorizationRequest);
+
+        AuthorizationResponse authorizationResponse = authenticateResourceOwnerAndGrantAccess(
+                authorizationEndpoint, authorizationRequest, userId, userSecret);
+
+        assertNotNull(authorizationResponse.getLocation(), "The location is null");
+        assertNotNull(authorizationResponse.getAccessToken(), "The accessToken is null");
+        assertNotNull(authorizationResponse.getTokenType(), "The tokenType is null");
+        assertNotNull(authorizationResponse.getIdToken(), "The idToken is null");
+        assertNotNull(authorizationResponse.getState(), "The state is null");
+
+        String idToken = authorizationResponse.getIdToken();
+
+        // 3. Validate id_token
+        Jwt jwt = Jwt.parse(idToken);
+        assertNotNull(jwt.getHeader().getClaimAsString(JwtHeaderName.TYPE));
+        assertNotNull(jwt.getHeader().getClaimAsString(JwtHeaderName.ALGORITHM));
+        assertNotNull(jwt.getClaims().getClaimAsString(JwtClaimName.ISSUER));
+        assertNotNull(jwt.getClaims().getClaimAsString(JwtClaimName.AUDIENCE));
+        assertNotNull(jwt.getClaims().getClaimAsString(JwtClaimName.EXPIRATION_TIME));
+        assertNotNull(jwt.getClaims().getClaimAsString(JwtClaimName.ISSUED_AT));
+        assertNotNull(jwt.getClaims().getClaimAsString(JwtClaimName.SUBJECT_IDENTIFIER));
+        assertNotNull(jwt.getClaims().getClaimAsString(JwtClaimName.ACCESS_TOKEN_HASH));
+        assertNotNull(jwt.getClaims().getClaimAsString(JwtClaimName.AUTHENTICATION_TIME));
+
+        RSAPublicKey publicKey = JwkClient.getRSAPublicKey(
+                jwksUri,
+                jwt.getHeader().getClaimAsString(JwtHeaderName.KEY_ID));
+        RSASigner rsaSigner = new RSASigner(SignatureAlgorithm.PS384, publicKey);
+
+        assertTrue(rsaSigner.validate(jwt));
+
+        idTokenHintPS384 = idToken;
+    }
+
+    @Parameters({"userId", "userSecret", "redirectUri", "redirectUris", "sectorIdentifierUri"})
+    @Test
+    public void idTokenHintPS512(
+            final String userId, final String userSecret, final String redirectUri, final String redirectUris,
+            final String sectorIdentifierUri) throws Exception {
+        showTitle("idTokenHintPS512");
+
+        List<ResponseType> responseTypes = Arrays.asList(ResponseType.TOKEN, ResponseType.ID_TOKEN);
+
+        // 1. Register client
+        RegisterRequest registerRequest = new RegisterRequest(ApplicationType.WEB, "oxAuth test app",
+                StringUtils.spaceSeparatedToList(redirectUris));
+        registerRequest.setResponseTypes(responseTypes);
+        registerRequest.setSectorIdentifierUri(sectorIdentifierUri);
+        registerRequest.setIdTokenSignedResponseAlg(SignatureAlgorithm.PS512);
+
+        RegisterClient registerClient = new RegisterClient(registrationEndpoint);
+        registerClient.setRequest(registerRequest);
+        RegisterResponse registerResponse = registerClient.exec();
+
+        showClient(registerClient);
+        assertEquals(registerResponse.getStatus(), 200, "Unexpected response code: " + registerResponse.getEntity());
+        assertNotNull(registerResponse.getClientId());
+        assertNotNull(registerResponse.getClientSecret());
+        assertNotNull(registerResponse.getRegistrationAccessToken());
+        assertNotNull(registerResponse.getClientIdIssuedAt());
+        assertNotNull(registerResponse.getClientSecretExpiresAt());
+
+        String clientId = registerResponse.getClientId();
+
+        // 2. Request authorization
+        List<String> scopes = Arrays.asList("openid");
+        String nonce = UUID.randomUUID().toString();
+        String state = UUID.randomUUID().toString();
+
+        AuthorizationRequest authorizationRequest = new AuthorizationRequest(responseTypes, clientId, scopes, redirectUri, nonce);
+        authorizationRequest.setState(state);
+
+        AuthorizeClient authorizeClient = new AuthorizeClient(authorizationEndpoint);
+        authorizeClient.setRequest(authorizationRequest);
+
+        AuthorizationResponse authorizationResponse = authenticateResourceOwnerAndGrantAccess(
+                authorizationEndpoint, authorizationRequest, userId, userSecret);
+
+        assertNotNull(authorizationResponse.getLocation(), "The location is null");
+        assertNotNull(authorizationResponse.getAccessToken(), "The accessToken is null");
+        assertNotNull(authorizationResponse.getTokenType(), "The tokenType is null");
+        assertNotNull(authorizationResponse.getIdToken(), "The idToken is null");
+        assertNotNull(authorizationResponse.getState(), "The state is null");
+
+        String idToken = authorizationResponse.getIdToken();
+
+        // 3. Validate id_token
+        Jwt jwt = Jwt.parse(idToken);
+        assertNotNull(jwt.getHeader().getClaimAsString(JwtHeaderName.TYPE));
+        assertNotNull(jwt.getHeader().getClaimAsString(JwtHeaderName.ALGORITHM));
+        assertNotNull(jwt.getClaims().getClaimAsString(JwtClaimName.ISSUER));
+        assertNotNull(jwt.getClaims().getClaimAsString(JwtClaimName.AUDIENCE));
+        assertNotNull(jwt.getClaims().getClaimAsString(JwtClaimName.EXPIRATION_TIME));
+        assertNotNull(jwt.getClaims().getClaimAsString(JwtClaimName.ISSUED_AT));
+        assertNotNull(jwt.getClaims().getClaimAsString(JwtClaimName.SUBJECT_IDENTIFIER));
+        assertNotNull(jwt.getClaims().getClaimAsString(JwtClaimName.ACCESS_TOKEN_HASH));
+        assertNotNull(jwt.getClaims().getClaimAsString(JwtClaimName.AUTHENTICATION_TIME));
+
+        RSAPublicKey publicKey = JwkClient.getRSAPublicKey(
+                jwksUri,
+                jwt.getHeader().getClaimAsString(JwtHeaderName.KEY_ID));
+        RSASigner rsaSigner = new RSASigner(SignatureAlgorithm.PS512, publicKey);
+
+        assertTrue(rsaSigner.validate(jwt));
+
+        idTokenHintPS512 = idToken;
+    }
+
+    @Parameters({"userId", "userSecret", "redirectUri", "redirectUris", "sectorIdentifierUri"})
+    @Test
+    public void idTokenHintAlgA128KWEncA128GCM(
+            final String userId, final String userSecret, final String redirectUri, final String redirectUris,
+            final String sectorIdentifierUri) throws Exception {
+        showTitle("idTokenHintAlgA128KWEncA128GCM");
+
+        List<ResponseType> responseTypes = Arrays.asList(ResponseType.TOKEN, ResponseType.ID_TOKEN);
+
+        // 1. Register client
+        RegisterRequest registerRequest = new RegisterRequest(ApplicationType.WEB, "oxAuth test app",
+                StringUtils.spaceSeparatedToList(redirectUris));
+        registerRequest.setResponseTypes(responseTypes);
+        registerRequest.setSectorIdentifierUri(sectorIdentifierUri);
+        registerRequest.setIdTokenEncryptedResponseAlg(KeyEncryptionAlgorithm.A128KW);
+        registerRequest.setIdTokenEncryptedResponseEnc(BlockEncryptionAlgorithm.A128GCM);
+
+        RegisterClient registerClient = new RegisterClient(registrationEndpoint);
+        registerClient.setRequest(registerRequest);
+        RegisterResponse registerResponse = registerClient.exec();
+
+        showClient(registerClient);
+        assertEquals(registerResponse.getStatus(), 200, "Unexpected response code: " + registerResponse.getEntity());
+        assertNotNull(registerResponse.getClientId());
+        assertNotNull(registerResponse.getClientSecret());
+        assertNotNull(registerResponse.getRegistrationAccessToken());
+        assertNotNull(registerResponse.getClientIdIssuedAt());
+        assertNotNull(registerResponse.getClientSecretExpiresAt());
+
+        String clientId = registerResponse.getClientId();
+        String clientSecret = registerResponse.getClientSecret();
+
+        // 2. Request authorization
+        List<String> scopes = Arrays.asList("openid");
+        String nonce = UUID.randomUUID().toString();
+        String state = UUID.randomUUID().toString();
+
+        AuthorizationRequest authorizationRequest = new AuthorizationRequest(responseTypes, clientId, scopes, redirectUri, nonce);
+        authorizationRequest.setState(state);
+
+        AuthorizeClient authorizeClient = new AuthorizeClient(authorizationEndpoint);
+        authorizeClient.setRequest(authorizationRequest);
+
+        AuthorizationResponse authorizationResponse = authenticateResourceOwnerAndGrantAccess(
+                authorizationEndpoint, authorizationRequest, userId, userSecret);
+
+        assertNotNull(authorizationResponse.getLocation(), "The location is null");
+        assertNotNull(authorizationResponse.getAccessToken(), "The accessToken is null");
+        assertNotNull(authorizationResponse.getTokenType(), "The tokenType is null");
+        assertNotNull(authorizationResponse.getIdToken(), "The idToken is null");
+        assertNotNull(authorizationResponse.getState(), "The state is null");
+
+        String idToken = authorizationResponse.getIdToken();
+
+        // 3. Validate id_token
+        Jwe jwe = Jwe.parse(idToken, null, clientSecret.getBytes(Util.UTF8_STRING_ENCODING));
+        assertNotNull(jwe.getHeader().getClaimAsString(JwtHeaderName.TYPE));
+        assertNotNull(jwe.getHeader().getClaimAsString(JwtHeaderName.ALGORITHM));
+        assertNotNull(jwe.getClaims().getClaimAsString(JwtClaimName.ISSUER));
+        assertNotNull(jwe.getClaims().getClaimAsString(JwtClaimName.AUDIENCE));
+        assertNotNull(jwe.getClaims().getClaimAsString(JwtClaimName.EXPIRATION_TIME));
+        assertNotNull(jwe.getClaims().getClaimAsString(JwtClaimName.ISSUED_AT));
+        assertNotNull(jwe.getClaims().getClaimAsString(JwtClaimName.SUBJECT_IDENTIFIER));
+        assertNotNull(jwe.getClaims().getClaimAsString(JwtClaimName.ACCESS_TOKEN_HASH));
+        assertNotNull(jwe.getClaims().getClaimAsString(JwtClaimName.AUTHENTICATION_TIME));
+
+        idTokenHintAlgA128KWEncA128GCM = idToken;
+    }
+
+    @Parameters({"userId", "userSecret", "redirectUri", "redirectUris", "sectorIdentifierUri"})
+    @Test
+    public void idTokenHintAlgA256KWEncA256GCM(
+            final String userId, final String userSecret, final String redirectUri, final String redirectUris,
+            final String sectorIdentifierUri) throws Exception {
+        showTitle("idTokenHintAlgA256KWEncA256GCM");
+
+        List<ResponseType> responseTypes = Arrays.asList(ResponseType.TOKEN, ResponseType.ID_TOKEN);
+
+        // 1. Register client
+        RegisterRequest registerRequest = new RegisterRequest(ApplicationType.WEB, "oxAuth test app",
+                StringUtils.spaceSeparatedToList(redirectUris));
+        registerRequest.setResponseTypes(responseTypes);
+        registerRequest.setSectorIdentifierUri(sectorIdentifierUri);
+        registerRequest.setIdTokenEncryptedResponseAlg(KeyEncryptionAlgorithm.A256KW);
+        registerRequest.setIdTokenEncryptedResponseEnc(BlockEncryptionAlgorithm.A256GCM);
+
+        RegisterClient registerClient = new RegisterClient(registrationEndpoint);
+        registerClient.setRequest(registerRequest);
+        RegisterResponse registerResponse = registerClient.exec();
+
+        showClient(registerClient);
+        assertEquals(registerResponse.getStatus(), 200, "Unexpected response code: " + registerResponse.getEntity());
+        assertNotNull(registerResponse.getClientId());
+        assertNotNull(registerResponse.getClientSecret());
+        assertNotNull(registerResponse.getRegistrationAccessToken());
+        assertNotNull(registerResponse.getClientIdIssuedAt());
+        assertNotNull(registerResponse.getClientSecretExpiresAt());
+
+        String clientId = registerResponse.getClientId();
+        String clientSecret = registerResponse.getClientSecret();
+
+        // 2. Request authorization
+        List<String> scopes = Arrays.asList("openid");
+        String nonce = UUID.randomUUID().toString();
+        String state = UUID.randomUUID().toString();
+
+        AuthorizationRequest authorizationRequest = new AuthorizationRequest(responseTypes, clientId, scopes, redirectUri, nonce);
+        authorizationRequest.setState(state);
+
+        AuthorizeClient authorizeClient = new AuthorizeClient(authorizationEndpoint);
+        authorizeClient.setRequest(authorizationRequest);
+
+        AuthorizationResponse authorizationResponse = authenticateResourceOwnerAndGrantAccess(
+                authorizationEndpoint, authorizationRequest, userId, userSecret);
+
+        assertNotNull(authorizationResponse.getLocation(), "The location is null");
+        assertNotNull(authorizationResponse.getAccessToken(), "The accessToken is null");
+        assertNotNull(authorizationResponse.getTokenType(), "The tokenType is null");
+        assertNotNull(authorizationResponse.getIdToken(), "The idToken is null");
+        assertNotNull(authorizationResponse.getState(), "The state is null");
+
+        String idToken = authorizationResponse.getIdToken();
+
+        // 3. Validate id_token
+        Jwe jwe = Jwe.parse(idToken, null, clientSecret.getBytes(Util.UTF8_STRING_ENCODING));
+        assertNotNull(jwe.getHeader().getClaimAsString(JwtHeaderName.TYPE));
+        assertNotNull(jwe.getHeader().getClaimAsString(JwtHeaderName.ALGORITHM));
+        assertNotNull(jwe.getClaims().getClaimAsString(JwtClaimName.ISSUER));
+        assertNotNull(jwe.getClaims().getClaimAsString(JwtClaimName.AUDIENCE));
+        assertNotNull(jwe.getClaims().getClaimAsString(JwtClaimName.EXPIRATION_TIME));
+        assertNotNull(jwe.getClaims().getClaimAsString(JwtClaimName.ISSUED_AT));
+        assertNotNull(jwe.getClaims().getClaimAsString(JwtClaimName.SUBJECT_IDENTIFIER));
+        assertNotNull(jwe.getClaims().getClaimAsString(JwtClaimName.ACCESS_TOKEN_HASH));
+        assertNotNull(jwe.getClaims().getClaimAsString(JwtClaimName.AUTHENTICATION_TIME));
+
+        idTokenHintAlgA256KWEncA256GCM = idToken;
+    }
+
+    @Parameters({"userId", "userSecret", "redirectUri", "redirectUris", "sectorIdentifierUri",
+            "clientJwksUri", "RSA1_5_keyId", "keyStoreFile", "keyStoreSecret"})
+    @Test
+    public void idTokenHintAlgRSA15EncA128CBCPLUSHS256(
+            final String userId, final String userSecret, final String redirectUri, final String redirectUris,
+            final String sectorIdentifierUri, final String clientJwksUri, final String keyId, final String keyStoreFile,
+            final String keyStoreSecret) throws Exception {
+        showTitle("idTokenHintAlgRSA15EncA128CBCPLUSHS256");
+
+        List<ResponseType> responseTypes = Arrays.asList(ResponseType.TOKEN, ResponseType.ID_TOKEN);
+
+        // 1. Register client
+        RegisterRequest registerRequest = new RegisterRequest(ApplicationType.WEB, "oxAuth test app",
+                StringUtils.spaceSeparatedToList(redirectUris));
+        registerRequest.setResponseTypes(responseTypes);
+        registerRequest.setSectorIdentifierUri(sectorIdentifierUri);
+        registerRequest.setJwksUri(clientJwksUri);
+        registerRequest.setIdTokenEncryptedResponseAlg(KeyEncryptionAlgorithm.RSA1_5);
+        registerRequest.setIdTokenEncryptedResponseEnc(BlockEncryptionAlgorithm.A128CBC_PLUS_HS256);
+
+        RegisterClient registerClient = new RegisterClient(registrationEndpoint);
+        registerClient.setRequest(registerRequest);
+        RegisterResponse registerResponse = registerClient.exec();
+
+        showClient(registerClient);
+        assertEquals(registerResponse.getStatus(), 200, "Unexpected response code: " + registerResponse.getEntity());
+        assertNotNull(registerResponse.getClientId());
+        assertNotNull(registerResponse.getClientSecret());
+        assertNotNull(registerResponse.getRegistrationAccessToken());
+        assertNotNull(registerResponse.getClientIdIssuedAt());
+        assertNotNull(registerResponse.getClientSecretExpiresAt());
+
+        String clientId = registerResponse.getClientId();
+
+        // 2. Request authorization
+        List<String> scopes = Arrays.asList("openid");
+        String nonce = UUID.randomUUID().toString();
+        String state = UUID.randomUUID().toString();
+
+        AuthorizationRequest authorizationRequest = new AuthorizationRequest(responseTypes, clientId, scopes, redirectUri, nonce);
+        authorizationRequest.setState(state);
+
+        AuthorizeClient authorizeClient = new AuthorizeClient(authorizationEndpoint);
+        authorizeClient.setRequest(authorizationRequest);
+
+        AuthorizationResponse authorizationResponse = authenticateResourceOwnerAndGrantAccess(
+                authorizationEndpoint, authorizationRequest, userId, userSecret);
+
+        assertNotNull(authorizationResponse.getLocation(), "The location is null");
+        assertNotNull(authorizationResponse.getAccessToken(), "The accessToken is null");
+        assertNotNull(authorizationResponse.getTokenType(), "The tokenType is null");
+        assertNotNull(authorizationResponse.getIdToken(), "The idToken is null");
+        assertNotNull(authorizationResponse.getState(), "The state is null");
+
+        String idToken = authorizationResponse.getIdToken();
+
+        // 3. Validate id_token
+        OxAuthCryptoProvider cryptoProvider = new OxAuthCryptoProvider(keyStoreFile, keyStoreSecret, null);
+        PrivateKey privateKey = cryptoProvider.getPrivateKey(keyId);
+
+        Jwe jwe = Jwe.parse(idToken, privateKey, null);
+        assertNotNull(jwe.getHeader().getClaimAsString(JwtHeaderName.TYPE));
+        assertNotNull(jwe.getHeader().getClaimAsString(JwtHeaderName.ALGORITHM));
+        assertNotNull(jwe.getClaims().getClaimAsString(JwtClaimName.ISSUER));
+        assertNotNull(jwe.getClaims().getClaimAsString(JwtClaimName.AUDIENCE));
+        assertNotNull(jwe.getClaims().getClaimAsString(JwtClaimName.EXPIRATION_TIME));
+        assertNotNull(jwe.getClaims().getClaimAsString(JwtClaimName.ISSUED_AT));
+        assertNotNull(jwe.getClaims().getClaimAsString(JwtClaimName.SUBJECT_IDENTIFIER));
+        assertNotNull(jwe.getClaims().getClaimAsString(JwtClaimName.ACCESS_TOKEN_HASH));
+        assertNotNull(jwe.getClaims().getClaimAsString(JwtClaimName.AUTHENTICATION_TIME));
+
+        idTokenHintAlgRSA15EncA128CBCPLUSHS256 = idToken;
+    }
+
+    @Parameters({"userId", "userSecret", "redirectUri", "redirectUris", "sectorIdentifierUri",
+            "clientJwksUri", "RSA1_5_keyId", "keyStoreFile", "keyStoreSecret"})
+    @Test
+    public void idTokenHintAlgRSA15EncA256CBCPLUSHS512(
+            final String userId, final String userSecret, final String redirectUri, final String redirectUris,
+            final String sectorIdentifierUri, final String clientJwksUri, final String keyId, final String keyStoreFile,
+            final String keyStoreSecret) throws Exception {
+        showTitle("idTokenHintAlgRSA15EncA256CBCPLUSHS512");
+
+        List<ResponseType> responseTypes = Arrays.asList(ResponseType.TOKEN, ResponseType.ID_TOKEN);
+
+        // 1. Register client
+        RegisterRequest registerRequest = new RegisterRequest(ApplicationType.WEB, "oxAuth test app",
+                StringUtils.spaceSeparatedToList(redirectUris));
+        registerRequest.setResponseTypes(responseTypes);
+        registerRequest.setSectorIdentifierUri(sectorIdentifierUri);
+        registerRequest.setJwksUri(clientJwksUri);
+        registerRequest.setIdTokenEncryptedResponseAlg(KeyEncryptionAlgorithm.RSA1_5);
+        registerRequest.setIdTokenEncryptedResponseEnc(BlockEncryptionAlgorithm.A256CBC_PLUS_HS512);
+
+        RegisterClient registerClient = new RegisterClient(registrationEndpoint);
+        registerClient.setRequest(registerRequest);
+        RegisterResponse registerResponse = registerClient.exec();
+
+        showClient(registerClient);
+        assertEquals(registerResponse.getStatus(), 200, "Unexpected response code: " + registerResponse.getEntity());
+        assertNotNull(registerResponse.getClientId());
+        assertNotNull(registerResponse.getClientSecret());
+        assertNotNull(registerResponse.getRegistrationAccessToken());
+        assertNotNull(registerResponse.getClientIdIssuedAt());
+        assertNotNull(registerResponse.getClientSecretExpiresAt());
+
+        String clientId = registerResponse.getClientId();
+
+        // 2. Request authorization
+        List<String> scopes = Arrays.asList("openid");
+        String nonce = UUID.randomUUID().toString();
+        String state = UUID.randomUUID().toString();
+
+        AuthorizationRequest authorizationRequest = new AuthorizationRequest(responseTypes, clientId, scopes, redirectUri, nonce);
+        authorizationRequest.setState(state);
+
+        AuthorizeClient authorizeClient = new AuthorizeClient(authorizationEndpoint);
+        authorizeClient.setRequest(authorizationRequest);
+
+        AuthorizationResponse authorizationResponse = authenticateResourceOwnerAndGrantAccess(
+                authorizationEndpoint, authorizationRequest, userId, userSecret);
+
+        assertNotNull(authorizationResponse.getLocation(), "The location is null");
+        assertNotNull(authorizationResponse.getAccessToken(), "The accessToken is null");
+        assertNotNull(authorizationResponse.getTokenType(), "The tokenType is null");
+        assertNotNull(authorizationResponse.getIdToken(), "The idToken is null");
+        assertNotNull(authorizationResponse.getState(), "The state is null");
+
+        String idToken = authorizationResponse.getIdToken();
+
+        // 3. Validate id_token
+        OxAuthCryptoProvider cryptoProvider = new OxAuthCryptoProvider(keyStoreFile, keyStoreSecret, null);
+        PrivateKey privateKey = cryptoProvider.getPrivateKey(keyId);
+
+        Jwe jwe = Jwe.parse(idToken, privateKey, null);
+        assertNotNull(jwe.getHeader().getClaimAsString(JwtHeaderName.TYPE));
+        assertNotNull(jwe.getHeader().getClaimAsString(JwtHeaderName.ALGORITHM));
+        assertNotNull(jwe.getClaims().getClaimAsString(JwtClaimName.ISSUER));
+        assertNotNull(jwe.getClaims().getClaimAsString(JwtClaimName.AUDIENCE));
+        assertNotNull(jwe.getClaims().getClaimAsString(JwtClaimName.EXPIRATION_TIME));
+        assertNotNull(jwe.getClaims().getClaimAsString(JwtClaimName.ISSUED_AT));
+        assertNotNull(jwe.getClaims().getClaimAsString(JwtClaimName.SUBJECT_IDENTIFIER));
+        assertNotNull(jwe.getClaims().getClaimAsString(JwtClaimName.ACCESS_TOKEN_HASH));
+        assertNotNull(jwe.getClaims().getClaimAsString(JwtClaimName.AUTHENTICATION_TIME));
+
+        idTokenHintAlgRSA15EncA256CBCPLUSHS512 = idToken;
+    }
+
+    @Parameters({"userId", "userSecret", "redirectUri", "redirectUris", "sectorIdentifierUri",
+            "clientJwksUri", "RSA_OAEP_keyId", "keyStoreFile", "keyStoreSecret"})
+    @Test
+    public void idTokenHintAlgRSAOAEPEncA256GCM(
+            final String userId, final String userSecret, final String redirectUri, final String redirectUris,
+            final String sectorIdentifierUri, final String clientJwksUri, final String keyId, final String keyStoreFile,
+            final String keyStoreSecret) throws Exception {
+        showTitle("idTokenHintAlgRSAOAEPEncA256GCM");
+
+        List<ResponseType> responseTypes = Arrays.asList(ResponseType.TOKEN, ResponseType.ID_TOKEN);
+
+        // 1. Register client
+        RegisterRequest registerRequest = new RegisterRequest(ApplicationType.WEB, "oxAuth test app",
+                StringUtils.spaceSeparatedToList(redirectUris));
+        registerRequest.setResponseTypes(responseTypes);
+        registerRequest.setSectorIdentifierUri(sectorIdentifierUri);
+        registerRequest.setJwksUri(clientJwksUri);
+        registerRequest.setIdTokenEncryptedResponseAlg(KeyEncryptionAlgorithm.RSA_OAEP);
+        registerRequest.setIdTokenEncryptedResponseEnc(BlockEncryptionAlgorithm.A256GCM);
+
+        RegisterClient registerClient = new RegisterClient(registrationEndpoint);
+        registerClient.setRequest(registerRequest);
+        RegisterResponse registerResponse = registerClient.exec();
+
+        showClient(registerClient);
+        assertEquals(registerResponse.getStatus(), 200, "Unexpected response code: " + registerResponse.getEntity());
+        assertNotNull(registerResponse.getClientId());
+        assertNotNull(registerResponse.getClientSecret());
+        assertNotNull(registerResponse.getRegistrationAccessToken());
+        assertNotNull(registerResponse.getClientIdIssuedAt());
+        assertNotNull(registerResponse.getClientSecretExpiresAt());
+
+        String clientId = registerResponse.getClientId();
+
+        // 2. Request authorization
+        List<String> scopes = Arrays.asList("openid");
+        String nonce = UUID.randomUUID().toString();
+        String state = UUID.randomUUID().toString();
+
+        AuthorizationRequest authorizationRequest = new AuthorizationRequest(responseTypes, clientId, scopes, redirectUri, nonce);
+        authorizationRequest.setState(state);
+
+        AuthorizeClient authorizeClient = new AuthorizeClient(authorizationEndpoint);
+        authorizeClient.setRequest(authorizationRequest);
+
+        AuthorizationResponse authorizationResponse = authenticateResourceOwnerAndGrantAccess(
+                authorizationEndpoint, authorizationRequest, userId, userSecret);
+
+        assertNotNull(authorizationResponse.getLocation(), "The location is null");
+        assertNotNull(authorizationResponse.getAccessToken(), "The accessToken is null");
+        assertNotNull(authorizationResponse.getTokenType(), "The tokenType is null");
+        assertNotNull(authorizationResponse.getIdToken(), "The idToken is null");
+        assertNotNull(authorizationResponse.getState(), "The state is null");
+
+        String idToken = authorizationResponse.getIdToken();
+
+        // 3. Validate id_token
+        OxAuthCryptoProvider cryptoProvider = new OxAuthCryptoProvider(keyStoreFile, keyStoreSecret, null);
+        PrivateKey privateKey = cryptoProvider.getPrivateKey(keyId);
+
+        Jwe jwe = Jwe.parse(idToken, privateKey, null);
+        assertNotNull(jwe.getHeader().getClaimAsString(JwtHeaderName.TYPE));
+        assertNotNull(jwe.getHeader().getClaimAsString(JwtHeaderName.ALGORITHM));
+        assertNotNull(jwe.getClaims().getClaimAsString(JwtClaimName.ISSUER));
+        assertNotNull(jwe.getClaims().getClaimAsString(JwtClaimName.AUDIENCE));
+        assertNotNull(jwe.getClaims().getClaimAsString(JwtClaimName.EXPIRATION_TIME));
+        assertNotNull(jwe.getClaims().getClaimAsString(JwtClaimName.ISSUED_AT));
+        assertNotNull(jwe.getClaims().getClaimAsString(JwtClaimName.SUBJECT_IDENTIFIER));
+        assertNotNull(jwe.getClaims().getClaimAsString(JwtClaimName.ACCESS_TOKEN_HASH));
+        assertNotNull(jwe.getClaims().getClaimAsString(JwtClaimName.AUTHENTICATION_TIME));
+
+        idTokenHintAlgRSAOAEPEncA256GCM = idToken;
+    }
+
+    @Parameters({"RS256_keyId", "userEmail", "dnName", "keyStoreFile", "keyStoreSecret"})
+    @Test
+    public void loginHintTokenRS256(
+            final String keyId, final String userEmail,
+            final String dnName, final String keyStoreFile, final String keyStoreSecret) throws Exception {
+        showTitle("loginHintTokenRS256");
+
+        JSONObject subjectValue = new JSONObject();
+        subjectValue.put("subject_type", "email");
+        subjectValue.put("email", userEmail);
+
+        Jwt jwt = new Jwt();
+        jwt.getHeader().setAlgorithm(SignatureAlgorithm.RS256);
+        jwt.getHeader().setKeyId(keyId);
+        jwt.getClaims().setClaim("subject", subjectValue);
+
+        OxAuthCryptoProvider cryptoProvider = new OxAuthCryptoProvider(keyStoreFile, keyStoreSecret, dnName);
+        String encodedSignature = cryptoProvider.sign(jwt.getSigningInput(), keyId, null, SignatureAlgorithm.RS256);
+        jwt.setEncodedSignature(encodedSignature);
+
+        loginHintTokenRS256 = jwt.toString();
+    }
+
+    @Parameters({"RS384_keyId", "userEmail", "dnName", "keyStoreFile", "keyStoreSecret"})
+    @Test
+    public void loginHintTokenRS384(
+            final String keyId, final String userEmail,
+            final String dnName, final String keyStoreFile, final String keyStoreSecret) throws Exception {
+        showTitle("loginHintTokenRS384");
+
+        JSONObject subjectValue = new JSONObject();
+        subjectValue.put("subject_type", "email");
+        subjectValue.put("email", userEmail);
+
+        Jwt jwt = new Jwt();
+        jwt.getHeader().setAlgorithm(SignatureAlgorithm.RS384);
+        jwt.getHeader().setKeyId(keyId);
+        jwt.getClaims().setClaim("subject", subjectValue);
+
+        OxAuthCryptoProvider cryptoProvider = new OxAuthCryptoProvider(keyStoreFile, keyStoreSecret, dnName);
+        String encodedSignature = cryptoProvider.sign(jwt.getSigningInput(), keyId, null, SignatureAlgorithm.RS384);
+        jwt.setEncodedSignature(encodedSignature);
+
+        loginHintTokenRS384 = jwt.toString();
+    }
+
+    @Parameters({"RS512_keyId", "userEmail", "dnName", "keyStoreFile", "keyStoreSecret"})
+    @Test
+    public void loginHintTokenRS512(
+            final String keyId, final String userEmail,
+            final String dnName, final String keyStoreFile, final String keyStoreSecret) throws Exception {
+        showTitle("loginHintTokenRS512");
+
+        JSONObject subjectValue = new JSONObject();
+        subjectValue.put("subject_type", "email");
+        subjectValue.put("email", userEmail);
+
+        Jwt jwt = new Jwt();
+        jwt.getHeader().setAlgorithm(SignatureAlgorithm.RS512);
+        jwt.getHeader().setKeyId(keyId);
+        jwt.getClaims().setClaim("subject", subjectValue);
+
+        OxAuthCryptoProvider cryptoProvider = new OxAuthCryptoProvider(keyStoreFile, keyStoreSecret, dnName);
+        String encodedSignature = cryptoProvider.sign(jwt.getSigningInput(), keyId, null, SignatureAlgorithm.RS512);
+        jwt.setEncodedSignature(encodedSignature);
+
+        loginHintTokenRS512 = jwt.toString();
+    }
+
+    @Parameters({"ES256_keyId", "userEmail", "dnName", "keyStoreFile", "keyStoreSecret"})
+    @Test
+    public void loginHintTokenES256(
+            final String keyId, final String userEmail,
+            final String dnName, final String keyStoreFile, final String keyStoreSecret) throws Exception {
+        showTitle("loginHintTokenES256");
+
+        JSONObject subjectValue = new JSONObject();
+        subjectValue.put("subject_type", "email");
+        subjectValue.put("email", userEmail);
+
+        Jwt jwt = new Jwt();
+        jwt.getHeader().setAlgorithm(SignatureAlgorithm.ES256);
+        jwt.getHeader().setKeyId(keyId);
+        jwt.getClaims().setClaim("subject", subjectValue);
+
+        OxAuthCryptoProvider cryptoProvider = new OxAuthCryptoProvider(keyStoreFile, keyStoreSecret, dnName);
+        String encodedSignature = cryptoProvider.sign(jwt.getSigningInput(), keyId, null, SignatureAlgorithm.ES256);
+        jwt.setEncodedSignature(encodedSignature);
+
+        loginHintTokenES256 = jwt.toString();
+    }
+
+    @Parameters({"ES384_keyId", "userEmail", "dnName", "keyStoreFile", "keyStoreSecret"})
+    @Test
+    public void loginHintTokenES384(
+            final String keyId, final String userEmail,
+            final String dnName, final String keyStoreFile, final String keyStoreSecret) throws Exception {
+        showTitle("loginHintTokenES384");
+
+        JSONObject subjectValue = new JSONObject();
+        subjectValue.put("subject_type", "email");
+        subjectValue.put("email", userEmail);
+
+        Jwt jwt = new Jwt();
+        jwt.getHeader().setAlgorithm(SignatureAlgorithm.ES384);
+        jwt.getHeader().setKeyId(keyId);
+        jwt.getClaims().setClaim("subject", subjectValue);
+
+        OxAuthCryptoProvider cryptoProvider = new OxAuthCryptoProvider(keyStoreFile, keyStoreSecret, dnName);
+        String encodedSignature = cryptoProvider.sign(jwt.getSigningInput(), keyId, null, SignatureAlgorithm.ES384);
+        jwt.setEncodedSignature(encodedSignature);
+
+        loginHintTokenES384 = jwt.toString();
+    }
+
+    @Parameters({"ES512_keyId", "userEmail", "dnName", "keyStoreFile", "keyStoreSecret"})
+    @Test
+    public void loginHintTokenES512(
+            final String keyId, final String userEmail,
+            final String dnName, final String keyStoreFile, final String keyStoreSecret) throws Exception {
+        showTitle("loginHintTokenES512");
+
+        JSONObject subjectValue = new JSONObject();
+        subjectValue.put("subject_type", "email");
+        subjectValue.put("email", userEmail);
+
+        Jwt jwt = new Jwt();
+        jwt.getHeader().setAlgorithm(SignatureAlgorithm.ES512);
+        jwt.getHeader().setKeyId(keyId);
+        jwt.getClaims().setClaim("subject", subjectValue);
+
+        OxAuthCryptoProvider cryptoProvider = new OxAuthCryptoProvider(keyStoreFile, keyStoreSecret, dnName);
+        String encodedSignature = cryptoProvider.sign(jwt.getSigningInput(), keyId, null, SignatureAlgorithm.ES512);
+        jwt.setEncodedSignature(encodedSignature);
+
+        loginHintTokenES512 = jwt.toString();
+    }
+
+    @Parameters({"PS256_keyId", "userEmail", "dnName", "keyStoreFile", "keyStoreSecret"})
+    @Test
+    public void loginHintTokenPS256(
+            final String keyId, final String userEmail,
+            final String dnName, final String keyStoreFile, final String keyStoreSecret) throws Exception {
+        showTitle("loginHintTokenPS256");
+
+        JSONObject subjectValue = new JSONObject();
+        subjectValue.put("subject_type", "email");
+        subjectValue.put("email", userEmail);
+
+        Jwt jwt = new Jwt();
+        jwt.getHeader().setAlgorithm(SignatureAlgorithm.PS256);
+        jwt.getHeader().setKeyId(keyId);
+        jwt.getClaims().setClaim("subject", subjectValue);
+
+        OxAuthCryptoProvider cryptoProvider = new OxAuthCryptoProvider(keyStoreFile, keyStoreSecret, dnName);
+        String encodedSignature = cryptoProvider.sign(jwt.getSigningInput(), keyId, null, SignatureAlgorithm.PS256);
+        jwt.setEncodedSignature(encodedSignature);
+
+        loginHintTokenPS256 = jwt.toString();
+    }
+
+    @Parameters({"PS384_keyId", "userEmail", "dnName", "keyStoreFile", "keyStoreSecret"})
+    @Test
+    public void loginHintTokenPS384(
+            final String keyId, final String userEmail,
+            final String dnName, final String keyStoreFile, final String keyStoreSecret) throws Exception {
+        showTitle("loginHintTokenPS384");
+
+        JSONObject subjectValue = new JSONObject();
+        subjectValue.put("subject_type", "email");
+        subjectValue.put("email", userEmail);
+
+        Jwt jwt = new Jwt();
+        jwt.getHeader().setAlgorithm(SignatureAlgorithm.PS384);
+        jwt.getHeader().setKeyId(keyId);
+        jwt.getClaims().setClaim("subject", subjectValue);
+
+        OxAuthCryptoProvider cryptoProvider = new OxAuthCryptoProvider(keyStoreFile, keyStoreSecret, dnName);
+        String encodedSignature = cryptoProvider.sign(jwt.getSigningInput(), keyId, null, SignatureAlgorithm.PS384);
+        jwt.setEncodedSignature(encodedSignature);
+
+        loginHintTokenPS384 = jwt.toString();
+    }
+
+    @Parameters({"PS512_keyId", "userEmail", "dnName", "keyStoreFile", "keyStoreSecret"})
+    @Test
+    public void loginHintTokenPS512(
+            final String keyId, final String userEmail,
+            final String dnName, final String keyStoreFile, final String keyStoreSecret) throws Exception {
+        showTitle("loginHintTokenPS512");
+
+        JSONObject subjectValue = new JSONObject();
+        subjectValue.put("subject_type", "email");
+        subjectValue.put("email", userEmail);
+
+        Jwt jwt = new Jwt();
+        jwt.getHeader().setAlgorithm(SignatureAlgorithm.PS512);
+        jwt.getHeader().setKeyId(keyId);
+        jwt.getClaims().setClaim("subject", subjectValue);
+
+        OxAuthCryptoProvider cryptoProvider = new OxAuthCryptoProvider(keyStoreFile, keyStoreSecret, dnName);
+        String encodedSignature = cryptoProvider.sign(jwt.getSigningInput(), keyId, null, SignatureAlgorithm.PS512);
+        jwt.setEncodedSignature(encodedSignature);
+
+        loginHintTokenPS512 = jwt.toString();
+    }
+}
\ No newline at end of file
diff --git a/oxAuth/Client/src/test/java/org/gluu/oxauth/ciba/CibaPingModeJwtAuthRequestTests.java b/oxAuth/Client/src/test/java/org/gluu/oxauth/ciba/CibaPingModeJwtAuthRequestTests.java
new file mode 100644
index 00000000..f82c55ad
--- /dev/null
+++ b/oxAuth/Client/src/test/java/org/gluu/oxauth/ciba/CibaPingModeJwtAuthRequestTests.java
@@ -0,0 +1,434 @@
+package org.gluu.oxauth.ciba;
+
+import static org.gluu.oxauth.model.register.RegisterRequestParam.BACKCHANNEL_AUTHENTICATION_REQUEST_SIGNING_ALG;
+import static org.gluu.oxauth.model.register.RegisterRequestParam.BACKCHANNEL_TOKEN_DELIVERY_MODE;
+import static org.gluu.oxauth.model.register.RegisterRequestParam.BACKCHANNEL_USER_CODE_PARAMETER;
+import static org.testng.Assert.assertEquals;
+import static org.testng.Assert.assertNotNull;
+import static org.testng.Assert.assertNull;
+import static org.testng.Assert.assertTrue;
+
+import java.util.Arrays;
+import java.util.Collections;
+import java.util.Date;
+import java.util.List;
+import java.util.UUID;
+
+import org.apache.commons.lang.time.DateUtils;
+import org.gluu.oxauth.BaseTest;
+import org.gluu.oxauth.client.AuthorizationRequest;
+import org.gluu.oxauth.client.AuthorizationResponse;
+import org.gluu.oxauth.client.AuthorizeClient;
+import org.gluu.oxauth.client.BackchannelAuthenticationClient;
+import org.gluu.oxauth.client.BackchannelAuthenticationRequest;
+import org.gluu.oxauth.client.BackchannelAuthenticationResponse;
+import org.gluu.oxauth.client.JwkClient;
+import org.gluu.oxauth.client.RegisterClient;
+import org.gluu.oxauth.client.RegisterRequest;
+import org.gluu.oxauth.client.RegisterResponse;
+import org.gluu.oxauth.client.model.authorize.JwtAuthorizationRequest;
+import org.gluu.oxauth.model.ciba.BackchannelAuthenticationErrorResponseType;
+import org.gluu.oxauth.model.common.BackchannelTokenDeliveryMode;
+import org.gluu.oxauth.model.common.GrantType;
+import org.gluu.oxauth.model.common.ResponseType;
+import org.gluu.oxauth.model.crypto.OxAuthCryptoProvider;
+import org.gluu.oxauth.model.crypto.signature.AsymmetricSignatureAlgorithm;
+import org.gluu.oxauth.model.crypto.signature.RSAPublicKey;
+import org.gluu.oxauth.model.crypto.signature.SignatureAlgorithm;
+import org.gluu.oxauth.model.jws.RSASigner;
+import org.gluu.oxauth.model.jwt.Jwt;
+import org.gluu.oxauth.model.jwt.JwtClaimName;
+import org.gluu.oxauth.model.jwt.JwtHeaderName;
+import org.gluu.oxauth.model.register.ApplicationType;
+import org.gluu.oxauth.model.util.StringUtils;
+import org.testng.annotations.Parameters;
+import org.testng.annotations.Test;
+
+/**
+ * Responsible to validate many cases using JWT Requests for Ciba Ping flows.
+ */
+public class CibaPingModeJwtAuthRequestTests extends BaseTest {
+
+    private RegisterResponse registerResponse;
+    private String idTokenHintRS384;
+
+    @Parameters({"PS256_keyId", "userId", "dnName", "keyStoreFile", "keyStoreSecret", "clientJwksUri",
+            "backchannelClientNotificationEndpoint"})
+    @Test
+    public void pingFlowPS256HappyFlow(final String keyId, final String userId, final String dnName,
+                                        final String keyStoreFile, final String keyStoreSecret,
+                                        final String clientJwksUri, final String backchannelClientNotificationEndpoint) throws Exception {
+        showTitle("pingFlowPS256HappyFlow");
+        registerPingClient(clientJwksUri, BackchannelTokenDeliveryMode.PING, AsymmetricSignatureAlgorithm.PS256,
+                backchannelClientNotificationEndpoint);
+
+        JwtAuthorizationRequest jwtAuthorizationRequest = createJwtRequest(keyStoreFile, keyStoreSecret, dnName,
+                userId, keyId, SignatureAlgorithm.PS256);
+
+        processCibaAuthorizationEndpointSuccessfulCall(jwtAuthorizationRequest.getEncodedJwt(),
+                registerResponse.getClientId(), registerResponse.getClientSecret());
+    }
+
+    @Parameters({"PS384_keyId", "userId", "dnName", "keyStoreFile", "keyStoreSecret", "clientJwksUri",
+            "backchannelClientNotificationEndpoint"})
+    @Test
+    public void pingFlowPS384HappyFlow(final String keyId, final String userId, final String dnName,
+                                        final String keyStoreFile, final String keyStoreSecret,
+                                        final String clientJwksUri, final String backchannelClientNotificationEndpoint) throws Exception {
+        showTitle("pingFlowPS384HappyFlow");
+        registerPingClient(clientJwksUri, BackchannelTokenDeliveryMode.PING, AsymmetricSignatureAlgorithm.PS384,
+                backchannelClientNotificationEndpoint);
+
+        JwtAuthorizationRequest jwtAuthorizationRequest = createJwtRequest(keyStoreFile, keyStoreSecret, dnName,
+                userId, keyId, SignatureAlgorithm.PS384);
+
+        processCibaAuthorizationEndpointSuccessfulCall(jwtAuthorizationRequest.getEncodedJwt(),
+                registerResponse.getClientId(), registerResponse.getClientSecret());
+    }
+
+    @Parameters({"PS512_keyId", "userId", "dnName", "keyStoreFile", "keyStoreSecret", "clientJwksUri",
+            "backchannelClientNotificationEndpoint"})
+    @Test
+    public void pingFlowPS512HappyFlow(final String keyId, final String userId, final String dnName,
+                                        final String keyStoreFile, final String keyStoreSecret,
+                                        final String clientJwksUri, final String backchannelClientNotificationEndpoint) throws Exception {
+        showTitle("pingFlowPS512HappyFlow");
+        registerPingClient(clientJwksUri, BackchannelTokenDeliveryMode.PING, AsymmetricSignatureAlgorithm.PS512,
+                backchannelClientNotificationEndpoint);
+
+        JwtAuthorizationRequest jwtAuthorizationRequest = createJwtRequest(keyStoreFile, keyStoreSecret, dnName,
+                userId, keyId, SignatureAlgorithm.PS512);
+
+        processCibaAuthorizationEndpointSuccessfulCall(jwtAuthorizationRequest.getEncodedJwt(),
+                registerResponse.getClientId(), registerResponse.getClientSecret());
+    }
+
+    @Parameters({"ES256_keyId", "userId", "dnName", "keyStoreFile", "keyStoreSecret", "clientJwksUri",
+            "backchannelClientNotificationEndpoint"})
+    @Test
+    public void pingFlowES256HappyFlow(final String keyId, final String userId, final String dnName,
+                                        final String keyStoreFile, final String keyStoreSecret,
+                                        final String clientJwksUri, final String backchannelClientNotificationEndpoint) throws Exception {
+        showTitle("pingFlowES256HappyFlow");
+        registerPingClient(clientJwksUri, BackchannelTokenDeliveryMode.PING, AsymmetricSignatureAlgorithm.ES256,
+                backchannelClientNotificationEndpoint);
+
+        JwtAuthorizationRequest jwtAuthorizationRequest = createJwtRequest(keyStoreFile, keyStoreSecret, dnName,
+                userId, keyId, SignatureAlgorithm.ES256);
+
+        processCibaAuthorizationEndpointSuccessfulCall(jwtAuthorizationRequest.getEncodedJwt(),
+                registerResponse.getClientId(), registerResponse.getClientSecret());
+    }
+
+    @Parameters({"ES384_keyId", "userId", "dnName", "keyStoreFile", "keyStoreSecret", "clientJwksUri",
+            "backchannelClientNotificationEndpoint"})
+    @Test
+    public void pingFlowES384HappyFlow(final String keyId, final String userId, final String dnName,
+                                        final String keyStoreFile, final String keyStoreSecret,
+                                        final String clientJwksUri, final String backchannelClientNotificationEndpoint) throws Exception {
+        showTitle("pingFlowES384HappyFlow");
+        registerPingClient(clientJwksUri, BackchannelTokenDeliveryMode.PING, AsymmetricSignatureAlgorithm.ES384,
+                backchannelClientNotificationEndpoint);
+
+        JwtAuthorizationRequest jwtAuthorizationRequest = createJwtRequest(keyStoreFile, keyStoreSecret, dnName,
+                userId, keyId, SignatureAlgorithm.ES384);
+
+        processCibaAuthorizationEndpointSuccessfulCall(jwtAuthorizationRequest.getEncodedJwt(),
+                registerResponse.getClientId(), registerResponse.getClientSecret());
+    }
+
+    @Parameters({"ES512_keyId", "userId", "dnName", "keyStoreFile", "keyStoreSecret", "clientJwksUri",
+            "backchannelClientNotificationEndpoint"})
+    @Test
+    public void pingFlowES512HappyFlow(final String keyId, final String userId, final String dnName,
+                                        final String keyStoreFile, final String keyStoreSecret,
+                                        final String clientJwksUri, final String backchannelClientNotificationEndpoint) throws Exception {
+        showTitle("pingFlowES512HappyFlow");
+        registerPingClient(clientJwksUri, BackchannelTokenDeliveryMode.PING, AsymmetricSignatureAlgorithm.ES512,
+                backchannelClientNotificationEndpoint);
+
+        JwtAuthorizationRequest jwtAuthorizationRequest = createJwtRequest(keyStoreFile, keyStoreSecret, dnName,
+                userId, keyId, SignatureAlgorithm.ES512);
+
+        processCibaAuthorizationEndpointSuccessfulCall(jwtAuthorizationRequest.getEncodedJwt(),
+                registerResponse.getClientId(), registerResponse.getClientSecret());
+    }
+
+    @Parameters({"PS256_keyId", "userId", "dnName", "keyStoreFile", "keyStoreSecret", "clientJwksUri",
+            "backchannelClientNotificationEndpoint"})
+    @Test
+    public void cibaPingJWTRequestDataValidations(final String keyId, final String userId, final String dnName,
+                                        final String keyStoreFile, final String keyStoreSecret,
+                                        final String clientJwksUri, final String backchannelClientNotificationEndpoint) throws Exception {
+        showTitle("cibaPingJWTRequestDataValidations");
+        registerPingClient(clientJwksUri, BackchannelTokenDeliveryMode.PING, AsymmetricSignatureAlgorithm.PS256,
+                backchannelClientNotificationEndpoint);
+
+        String clientId = registerResponse.getClientId();
+
+        // 1. Request doesn't include Aud
+        JwtAuthorizationRequest jwtAuthorizationRequest = createJwtRequest(keyStoreFile, keyStoreSecret, dnName, userId, keyId, SignatureAlgorithm.PS256);
+        jwtAuthorizationRequest.setAud(null);
+
+        processCibaAuthorizationEndpointFailCall(jwtAuthorizationRequest.getEncodedJwt(), clientId,
+                registerResponse.getClientSecret(), 400, BackchannelAuthenticationErrorResponseType.INVALID_REQUEST.getParameter());
+
+        // 2. Request doesn't include any hint
+        jwtAuthorizationRequest = createJwtRequest(keyStoreFile, keyStoreSecret, dnName, userId, keyId, SignatureAlgorithm.PS256);
+        jwtAuthorizationRequest.setLoginHint(null);
+
+        processCibaAuthorizationEndpointFailCall(jwtAuthorizationRequest.getEncodedJwt(), clientId,
+                registerResponse.getClientSecret(), 400, BackchannelAuthenticationErrorResponseType.UNKNOWN_USER_ID.getParameter());
+
+        // 3. Request has a wrong Binding Message
+        jwtAuthorizationRequest = createJwtRequest(keyStoreFile, keyStoreSecret, dnName, userId, keyId, SignatureAlgorithm.PS256);
+        jwtAuthorizationRequest.setBindingMessage("(/)=&/(%&/(%$/&($%/&)");
+
+        processCibaAuthorizationEndpointFailCall(jwtAuthorizationRequest.getEncodedJwt(), clientId,
+                registerResponse.getClientSecret(), 400, BackchannelAuthenticationErrorResponseType.INVALID_BINDING_MESSAGE.getParameter());
+
+        // 4. Request has wrong Client Id
+        jwtAuthorizationRequest = createJwtRequest(keyStoreFile, keyStoreSecret, dnName, userId, keyId, SignatureAlgorithm.PS256);
+        jwtAuthorizationRequest.setClientId("abcabcabcabcabcabcabcabcabcabc");
+
+        processCibaAuthorizationEndpointFailCall(jwtAuthorizationRequest.getEncodedJwt(), "abcabcabcabcabcabcabcabcabcabc",
+                registerResponse.getClientSecret(), 401, BackchannelAuthenticationErrorResponseType.INVALID_CLIENT.getParameter());
+
+        // 5. Request has wrong Client Id
+        jwtAuthorizationRequest = createJwtRequest(keyStoreFile, keyStoreSecret, dnName, userId, keyId, SignatureAlgorithm.PS256);
+        jwtAuthorizationRequest.setClientNotificationToken(null);
+
+        processCibaAuthorizationEndpointFailCall(jwtAuthorizationRequest.getEncodedJwt(), clientId,
+                registerResponse.getClientSecret(), 400, BackchannelAuthenticationErrorResponseType.INVALID_REQUEST.getParameter());
+    }
+
+    @Parameters({"PS256_keyId", "userId", "dnName", "keyStoreFile", "keyStoreSecret", "clientJwksUri",
+            "backchannelClientNotificationEndpoint"})
+    @Test(dependsOnMethods = "idTokenHintRS384")
+    public void cibaPingJWTRequestIdTokenHint(final String keyId, final String userId, final String dnName,
+                                                  final String keyStoreFile, final String keyStoreSecret,
+                                                  final String clientJwksUri, final String backchannelClientNotificationEndpoint) throws Exception {
+        showTitle("cibaPingJWTRequestIdTokenHint");
+        registerPingClient(clientJwksUri, BackchannelTokenDeliveryMode.PING, AsymmetricSignatureAlgorithm.PS256,
+                backchannelClientNotificationEndpoint);
+
+        // 1. Request doesn't include Aud
+        JwtAuthorizationRequest jwtAuthorizationRequest = createJwtRequest(keyStoreFile, keyStoreSecret, dnName, userId, keyId, SignatureAlgorithm.PS256);
+        jwtAuthorizationRequest.setLoginHint(null);
+        jwtAuthorizationRequest.setIdTokenHint(idTokenHintRS384);
+
+        processCibaAuthorizationEndpointSuccessfulCall(jwtAuthorizationRequest.getEncodedJwt(),
+                registerResponse.getClientId(), registerResponse.getClientSecret());
+    }
+
+    @Parameters({"PS256_keyId", "userId", "dnName", "keyStoreFile", "keyStoreSecret", "clientJwksUri",
+            "backchannelClientNotificationEndpoint"})
+    @Test
+    public void cibaPingJWTRequestWrongSigning(final String keyId, final String userId, final String dnName,
+                                              final String keyStoreFile, final String keyStoreSecret,
+                                              final String clientJwksUri, final String backchannelClientNotificationEndpoint) throws Exception {
+        showTitle("cibaPingJWTRequestWrongSigning");
+        registerPingClient(clientJwksUri, BackchannelTokenDeliveryMode.PING, AsymmetricSignatureAlgorithm.PS256,
+                backchannelClientNotificationEndpoint);
+
+        JwtAuthorizationRequest jwtAuthorizationRequest = createJwtRequest(keyStoreFile, keyStoreSecret, dnName, userId, keyId, SignatureAlgorithm.PS256);
+
+        String jwt = jwtAuthorizationRequest.getEncodedJwt();
+        String[] jwtParts = jwt.split("\\.");
+        String jwtWithWrongSigning = jwtParts[0] + "." + jwtParts[1] + ".WRONG-SIGNING";
+
+        processCibaAuthorizationEndpointFailCall(jwtWithWrongSigning, registerResponse.getClientId(),
+                registerResponse.getClientSecret(), 400, BackchannelAuthenticationErrorResponseType.INVALID_REQUEST.getParameter());
+    }
+
+    /**
+     * Registers a client using CIBA configuration for Ping flow and PS256
+     * @param clientJwksUri
+     */
+    private void registerPingClient(final String clientJwksUri, final BackchannelTokenDeliveryMode mode,
+                                    final AsymmetricSignatureAlgorithm algorithm, final String backchannelClientNotificationEndpoint) {
+        RegisterRequest registerRequest = new RegisterRequest(ApplicationType.WEB, "oxAuth test app", null);
+        registerRequest.setJwksUri(clientJwksUri);
+        registerRequest.setGrantTypes(Collections.singletonList(GrantType.CIBA));
+
+        registerRequest.setBackchannelTokenDeliveryMode(mode);
+        registerRequest.setBackchannelAuthenticationRequestSigningAlg(algorithm);
+        registerRequest.setBackchannelUserCodeParameter(false);
+        registerRequest.setBackchannelClientNotificationEndpoint(backchannelClientNotificationEndpoint);
+
+        RegisterClient registerClient = new RegisterClient(registrationEndpoint);
+        registerClient.setRequest(registerRequest);
+        registerResponse = registerClient.exec();
+
+        showClient(registerClient);
+
+        assertEquals(registerResponse.getStatus(), 200, "Unexpected response code: " + registerResponse.getEntity());
+        assertNotNull(registerResponse.getClientId());
+        assertNotNull(registerResponse.getClientSecret());
+        assertNotNull(registerResponse.getRegistrationAccessToken());
+        assertNotNull(registerResponse.getClientSecretExpiresAt());
+        assertTrue(registerResponse.getClaims().containsKey(BACKCHANNEL_TOKEN_DELIVERY_MODE.toString()));
+        assertTrue(registerResponse.getClaims().containsKey(BACKCHANNEL_AUTHENTICATION_REQUEST_SIGNING_ALG.toString()));
+        assertTrue(registerResponse.getClaims().containsKey(BACKCHANNEL_USER_CODE_PARAMETER.toString()));
+        assertEquals(registerResponse.getClaims().get(BACKCHANNEL_TOKEN_DELIVERY_MODE.toString()), mode.getValue());
+        assertEquals(registerResponse.getClaims().get(BACKCHANNEL_AUTHENTICATION_REQUEST_SIGNING_ALG.toString()), algorithm.getValue());
+        assertEquals(registerResponse.getClaims().get(BACKCHANNEL_USER_CODE_PARAMETER.toString()), "false");
+    }
+
+    /**
+     * Process a Ciba call to the OP using JWT Request object.
+     * @param jwtRequest JWT in plain String.
+     * @param clientId Client identifier.
+     * @param clientSecret Client secret.
+     */
+    private void processCibaAuthorizationEndpointSuccessfulCall(String jwtRequest, String clientId, String clientSecret) {
+        BackchannelAuthenticationRequest backchannelAuthenticationRequest = new BackchannelAuthenticationRequest();
+        backchannelAuthenticationRequest.setRequest(jwtRequest);
+        backchannelAuthenticationRequest.setClientId(clientId);
+        backchannelAuthenticationRequest.setAuthUsername(clientId);
+        backchannelAuthenticationRequest.setAuthPassword(clientSecret);
+
+        BackchannelAuthenticationClient backchannelAuthenticationClient = new BackchannelAuthenticationClient(backchannelAuthenticationEndpoint);
+        backchannelAuthenticationClient.setRequest(backchannelAuthenticationRequest);
+        BackchannelAuthenticationResponse backchannelAuthenticationResponse = backchannelAuthenticationClient.exec();
+
+        showClient(backchannelAuthenticationClient);
+
+        assertEquals(backchannelAuthenticationResponse.getStatus(), 200, "Unexpected response code: " + backchannelAuthenticationResponse.getEntity());
+        assertNotNull(backchannelAuthenticationResponse.getAuthReqId());
+        assertNotNull(backchannelAuthenticationResponse.getExpiresIn());
+        assertNotNull(backchannelAuthenticationResponse.getInterval()); // This parameter will only be present if the Client is registered to use the Ping or Ping modes.
+    }
+
+    /**
+     * Process a Ciba call to the OP using JWT Request object and validate HTTP status and error type.
+     * @param jwtRequest JWT in plain String.
+     * @param clientId Client identifier.
+     * @param clientSecret Client secret.
+     * @param httpStatus Param used to validate response from the server.
+     * @param error Error used to validate error response from the server.
+     */
+    private void processCibaAuthorizationEndpointFailCall(String jwtRequest, String clientId, String clientSecret, int httpStatus, String error) {
+        BackchannelAuthenticationRequest backchannelAuthenticationRequest = new BackchannelAuthenticationRequest();
+        backchannelAuthenticationRequest.setRequest(jwtRequest);
+        backchannelAuthenticationRequest.setClientId(clientId);
+        backchannelAuthenticationRequest.setAuthUsername(clientId);
+        backchannelAuthenticationRequest.setAuthPassword(clientSecret);
+
+        BackchannelAuthenticationClient backchannelAuthenticationClient = new BackchannelAuthenticationClient(backchannelAuthenticationEndpoint);
+        backchannelAuthenticationClient.setRequest(backchannelAuthenticationRequest);
+        BackchannelAuthenticationResponse backchannelAuthenticationResponse = backchannelAuthenticationClient.exec();
+
+        showClient(backchannelAuthenticationClient);
+
+        assertEquals(backchannelAuthenticationResponse.getStatus(), httpStatus, "Unexpected response code: " + backchannelAuthenticationResponse.getEntity());
+        assertNotNull(backchannelAuthenticationResponse.getErrorType());
+        assertNotNull(backchannelAuthenticationResponse.getErrorDescription());
+        assertEquals(error, backchannelAuthenticationResponse.getErrorType().getParameter());
+        assertNull(backchannelAuthenticationResponse.getAuthReqId());
+        assertNull(backchannelAuthenticationResponse.getExpiresIn());
+        assertNull(backchannelAuthenticationResponse.getInterval());
+    }
+
+    /**
+     * Creates a new JwtAuthorizationRequest using default configuration and params.
+     */
+    private JwtAuthorizationRequest createJwtRequest(String keyStoreFile, String keyStoreSecret, String dnName,
+                                                     String userId, String keyId, SignatureAlgorithm signatureAlgorithm) throws Exception {
+        OxAuthCryptoProvider cryptoProvider = new OxAuthCryptoProvider(keyStoreFile, keyStoreSecret, dnName);
+        String clientId = registerResponse.getClientId();
+
+        int now = (int)(System.currentTimeMillis() / 1000);
+
+        JwtAuthorizationRequest jwtAuthorizationRequest = new JwtAuthorizationRequest(
+                null, signatureAlgorithm, cryptoProvider);
+        jwtAuthorizationRequest.setClientNotificationToken("notification-token-123");
+        jwtAuthorizationRequest.setAud(issuer);
+        jwtAuthorizationRequest.setLoginHint(userId);
+        jwtAuthorizationRequest.setNbf(now);
+        jwtAuthorizationRequest.setScopes(Collections.singletonList("openid"));
+        jwtAuthorizationRequest.setIss(clientId);
+        jwtAuthorizationRequest.setBindingMessage("1234");
+        jwtAuthorizationRequest.setExp((int)(DateUtils.addMinutes(new Date(), 5).getTime() / 1000));
+        jwtAuthorizationRequest.setIat(now);
+        jwtAuthorizationRequest.setJti(UUID.randomUUID().toString());
+        jwtAuthorizationRequest.setKeyId(keyId);
+
+        return jwtAuthorizationRequest;
+    }
+
+    @Parameters({"userId", "userSecret", "redirectUri", "redirectUris", "sectorIdentifierUri"})
+    @Test
+    public void idTokenHintRS384(
+            final String userId, final String userSecret, final String redirectUri, final String redirectUris,
+            final String sectorIdentifierUri) throws Exception {
+        showTitle("idTokenHintRS384");
+
+        List<ResponseType> responseTypes = Arrays.asList(ResponseType.TOKEN, ResponseType.ID_TOKEN);
+
+        // 1. Register client
+        RegisterRequest registerRequest = new RegisterRequest(ApplicationType.WEB, "oxAuth test app",
+                StringUtils.spaceSeparatedToList(redirectUris));
+        registerRequest.setResponseTypes(responseTypes);
+        registerRequest.setSectorIdentifierUri(sectorIdentifierUri);
+        registerRequest.setIdTokenSignedResponseAlg(SignatureAlgorithm.RS384);
+
+        RegisterClient registerClient = new RegisterClient(registrationEndpoint);
+        registerClient.setRequest(registerRequest);
+        RegisterResponse registerResponse = registerClient.exec();
+
+        showClient(registerClient);
+        assertEquals(registerResponse.getStatus(), 200, "Unexpected response code: " + registerResponse.getEntity());
+        assertNotNull(registerResponse.getClientId());
+        assertNotNull(registerResponse.getClientSecret());
+        assertNotNull(registerResponse.getRegistrationAccessToken());
+        assertNotNull(registerResponse.getClientIdIssuedAt());
+        assertNotNull(registerResponse.getClientSecretExpiresAt());
+
+        String clientId = registerResponse.getClientId();
+
+        // 2. Request authorization
+        List<String> scopes = Arrays.asList("openid");
+        String nonce = UUID.randomUUID().toString();
+        String state = UUID.randomUUID().toString();
+
+        AuthorizationRequest authorizationRequest = new AuthorizationRequest(responseTypes, clientId, scopes, redirectUri, nonce);
+        authorizationRequest.setState(state);
+
+        AuthorizeClient authorizeClient = new AuthorizeClient(authorizationEndpoint);
+        authorizeClient.setRequest(authorizationRequest);
+
+        AuthorizationResponse authorizationResponse = authenticateResourceOwnerAndGrantAccess(
+                authorizationEndpoint, authorizationRequest, userId, userSecret);
+
+        assertNotNull(authorizationResponse.getLocation(), "The location is null");
+        assertNotNull(authorizationResponse.getAccessToken(), "The accessToken is null");
+        assertNotNull(authorizationResponse.getTokenType(), "The tokenType is null");
+        assertNotNull(authorizationResponse.getIdToken(), "The idToken is null");
+        assertNotNull(authorizationResponse.getState(), "The state is null");
+
+        String idToken = authorizationResponse.getIdToken();
+
+        // 3. Validate id_token
+        Jwt jwt = Jwt.parse(idToken);
+        assertNotNull(jwt.getHeader().getClaimAsString(JwtHeaderName.TYPE));
+        assertNotNull(jwt.getHeader().getClaimAsString(JwtHeaderName.ALGORITHM));
+        assertNotNull(jwt.getClaims().getClaimAsString(JwtClaimName.ISSUER));
+        assertNotNull(jwt.getClaims().getClaimAsString(JwtClaimName.AUDIENCE));
+        assertNotNull(jwt.getClaims().getClaimAsString(JwtClaimName.EXPIRATION_TIME));
+        assertNotNull(jwt.getClaims().getClaimAsString(JwtClaimName.ISSUED_AT));
+        assertNotNull(jwt.getClaims().getClaimAsString(JwtClaimName.SUBJECT_IDENTIFIER));
+        assertNotNull(jwt.getClaims().getClaimAsString(JwtClaimName.ACCESS_TOKEN_HASH));
+        assertNotNull(jwt.getClaims().getClaimAsString(JwtClaimName.AUTHENTICATION_TIME));
+
+        RSAPublicKey publicKey = JwkClient.getRSAPublicKey(
+                jwksUri,
+                jwt.getHeader().getClaimAsString(JwtHeaderName.KEY_ID));
+        RSASigner rsaSigner = new RSASigner(SignatureAlgorithm.RS384, publicKey);
+
+        assertTrue(rsaSigner.validate(jwt));
+
+        idTokenHintRS384 = idToken;
+    }
+
+}
\ No newline at end of file
diff --git a/oxAuth/Client/src/test/java/org/gluu/oxauth/ciba/CibaPollModeJwtAuthRequestTests.java b/oxAuth/Client/src/test/java/org/gluu/oxauth/ciba/CibaPollModeJwtAuthRequestTests.java
new file mode 100644
index 00000000..10bd04aa
--- /dev/null
+++ b/oxAuth/Client/src/test/java/org/gluu/oxauth/ciba/CibaPollModeJwtAuthRequestTests.java
@@ -0,0 +1,406 @@
+package org.gluu.oxauth.ciba;
+
+import static org.gluu.oxauth.model.register.RegisterRequestParam.BACKCHANNEL_AUTHENTICATION_REQUEST_SIGNING_ALG;
+import static org.gluu.oxauth.model.register.RegisterRequestParam.BACKCHANNEL_TOKEN_DELIVERY_MODE;
+import static org.gluu.oxauth.model.register.RegisterRequestParam.BACKCHANNEL_USER_CODE_PARAMETER;
+import static org.testng.Assert.assertEquals;
+import static org.testng.Assert.assertNotNull;
+import static org.testng.Assert.assertNull;
+import static org.testng.Assert.assertTrue;
+
+import java.util.Arrays;
+import java.util.Collections;
+import java.util.Date;
+import java.util.List;
+import java.util.UUID;
+
+import org.apache.commons.lang.time.DateUtils;
+import org.gluu.oxauth.BaseTest;
+import org.gluu.oxauth.client.AuthorizationRequest;
+import org.gluu.oxauth.client.AuthorizationResponse;
+import org.gluu.oxauth.client.AuthorizeClient;
+import org.gluu.oxauth.client.BackchannelAuthenticationClient;
+import org.gluu.oxauth.client.BackchannelAuthenticationRequest;
+import org.gluu.oxauth.client.BackchannelAuthenticationResponse;
+import org.gluu.oxauth.client.JwkClient;
+import org.gluu.oxauth.client.RegisterClient;
+import org.gluu.oxauth.client.RegisterRequest;
+import org.gluu.oxauth.client.RegisterResponse;
+import org.gluu.oxauth.client.model.authorize.JwtAuthorizationRequest;
+import org.gluu.oxauth.model.ciba.BackchannelAuthenticationErrorResponseType;
+import org.gluu.oxauth.model.common.BackchannelTokenDeliveryMode;
+import org.gluu.oxauth.model.common.GrantType;
+import org.gluu.oxauth.model.common.ResponseType;
+import org.gluu.oxauth.model.crypto.OxAuthCryptoProvider;
+import org.gluu.oxauth.model.crypto.signature.AsymmetricSignatureAlgorithm;
+import org.gluu.oxauth.model.crypto.signature.RSAPublicKey;
+import org.gluu.oxauth.model.crypto.signature.SignatureAlgorithm;
+import org.gluu.oxauth.model.jws.RSASigner;
+import org.gluu.oxauth.model.jwt.Jwt;
+import org.gluu.oxauth.model.jwt.JwtClaimName;
+import org.gluu.oxauth.model.jwt.JwtHeaderName;
+import org.gluu.oxauth.model.register.ApplicationType;
+import org.gluu.oxauth.model.util.StringUtils;
+import org.testng.annotations.Parameters;
+import org.testng.annotations.Test;
+
+/**
+ * Responsible to validate many cases using JWT Requests for Ciba Poll flows.
+ */
+public class CibaPollModeJwtAuthRequestTests extends BaseTest {
+
+    private RegisterResponse registerResponse;
+    private String idTokenHintRS384;
+
+    @Parameters({"PS256_keyId", "userId", "dnName", "keyStoreFile", "keyStoreSecret", "clientJwksUri"})
+    @Test
+    public void pollFlowPS256HappyFlow(final String keyId, final String userId, final String dnName,
+                                        final String keyStoreFile, final String keyStoreSecret,
+                                        final String clientJwksUri) throws Exception {
+        showTitle("pollFlowPS256HappyFlow");
+        registerPollClient(clientJwksUri, BackchannelTokenDeliveryMode.POLL, AsymmetricSignatureAlgorithm.PS256);
+
+        JwtAuthorizationRequest jwtAuthorizationRequest = createJwtRequest(keyStoreFile, keyStoreSecret, dnName,
+                userId, keyId, SignatureAlgorithm.PS256);
+
+        processCibaAuthorizationEndpointSuccessfulCall(jwtAuthorizationRequest.getEncodedJwt(),
+                registerResponse.getClientId(), registerResponse.getClientSecret());
+    }
+
+    @Parameters({"PS384_keyId", "userId", "dnName", "keyStoreFile", "keyStoreSecret", "clientJwksUri"})
+    @Test
+    public void pollFlowPS384HappyFlow(final String keyId, final String userId, final String dnName,
+                                        final String keyStoreFile, final String keyStoreSecret,
+                                        final String clientJwksUri) throws Exception {
+        showTitle("pollFlowPS384HappyFlow");
+        registerPollClient(clientJwksUri, BackchannelTokenDeliveryMode.POLL, AsymmetricSignatureAlgorithm.PS384);
+
+        JwtAuthorizationRequest jwtAuthorizationRequest = createJwtRequest(keyStoreFile, keyStoreSecret, dnName,
+                userId, keyId, SignatureAlgorithm.PS384);
+
+        processCibaAuthorizationEndpointSuccessfulCall(jwtAuthorizationRequest.getEncodedJwt(),
+                registerResponse.getClientId(), registerResponse.getClientSecret());
+    }
+
+    @Parameters({"PS512_keyId", "userId", "dnName", "keyStoreFile", "keyStoreSecret", "clientJwksUri"})
+    @Test
+    public void pollFlowPS512HappyFlow(final String keyId, final String userId, final String dnName,
+                                        final String keyStoreFile, final String keyStoreSecret,
+                                        final String clientJwksUri) throws Exception {
+        showTitle("pollFlowPS512HappyFlow");
+        registerPollClient(clientJwksUri, BackchannelTokenDeliveryMode.POLL, AsymmetricSignatureAlgorithm.PS512);
+
+        JwtAuthorizationRequest jwtAuthorizationRequest = createJwtRequest(keyStoreFile, keyStoreSecret, dnName,
+                userId, keyId, SignatureAlgorithm.PS512);
+
+        processCibaAuthorizationEndpointSuccessfulCall(jwtAuthorizationRequest.getEncodedJwt(),
+                registerResponse.getClientId(), registerResponse.getClientSecret());
+    }
+
+    @Parameters({"ES256_keyId", "userId", "dnName", "keyStoreFile", "keyStoreSecret", "clientJwksUri"})
+    @Test
+    public void pollFlowES256HappyFlow(final String keyId, final String userId, final String dnName,
+                                        final String keyStoreFile, final String keyStoreSecret,
+                                        final String clientJwksUri) throws Exception {
+        showTitle("pollFlowES256HappyFlow");
+        registerPollClient(clientJwksUri, BackchannelTokenDeliveryMode.POLL, AsymmetricSignatureAlgorithm.ES256);
+
+        JwtAuthorizationRequest jwtAuthorizationRequest = createJwtRequest(keyStoreFile, keyStoreSecret, dnName,
+                userId, keyId, SignatureAlgorithm.ES256);
+
+        processCibaAuthorizationEndpointSuccessfulCall(jwtAuthorizationRequest.getEncodedJwt(),
+                registerResponse.getClientId(), registerResponse.getClientSecret());
+    }
+
+    @Parameters({"ES384_keyId", "userId", "dnName", "keyStoreFile", "keyStoreSecret", "clientJwksUri"})
+    @Test
+    public void pollFlowES384HappyFlow(final String keyId, final String userId, final String dnName,
+                                        final String keyStoreFile, final String keyStoreSecret,
+                                        final String clientJwksUri) throws Exception {
+        showTitle("pollFlowES384HappyFlow");
+        registerPollClient(clientJwksUri, BackchannelTokenDeliveryMode.POLL, AsymmetricSignatureAlgorithm.ES384);
+
+        JwtAuthorizationRequest jwtAuthorizationRequest = createJwtRequest(keyStoreFile, keyStoreSecret, dnName,
+                userId, keyId, SignatureAlgorithm.ES384);
+
+        processCibaAuthorizationEndpointSuccessfulCall(jwtAuthorizationRequest.getEncodedJwt(),
+                registerResponse.getClientId(), registerResponse.getClientSecret());
+    }
+
+    @Parameters({"ES512_keyId", "userId", "dnName", "keyStoreFile", "keyStoreSecret", "clientJwksUri"})
+    @Test
+    public void pollFlowES512HappyFlow(final String keyId, final String userId, final String dnName,
+                                        final String keyStoreFile, final String keyStoreSecret,
+                                        final String clientJwksUri) throws Exception {
+        showTitle("pollFlowES512HappyFlow");
+        registerPollClient(clientJwksUri, BackchannelTokenDeliveryMode.POLL, AsymmetricSignatureAlgorithm.ES512);
+
+        JwtAuthorizationRequest jwtAuthorizationRequest = createJwtRequest(keyStoreFile, keyStoreSecret, dnName,
+                userId, keyId, SignatureAlgorithm.ES512);
+
+        processCibaAuthorizationEndpointSuccessfulCall(jwtAuthorizationRequest.getEncodedJwt(),
+                registerResponse.getClientId(), registerResponse.getClientSecret());
+    }
+
+    @Parameters({"PS256_keyId", "userId", "dnName", "keyStoreFile", "keyStoreSecret", "clientJwksUri"})
+    @Test
+    public void cibaPollJWTRequestDataValidations(final String keyId, final String userId, final String dnName,
+                                        final String keyStoreFile, final String keyStoreSecret,
+                                        final String clientJwksUri) throws Exception {
+        showTitle("cibaPollJWTRequestDataValidations");
+        registerPollClient(clientJwksUri, BackchannelTokenDeliveryMode.POLL, AsymmetricSignatureAlgorithm.PS256);
+
+        String clientId = registerResponse.getClientId();
+
+        // 1. Request doesn't include Aud
+        JwtAuthorizationRequest jwtAuthorizationRequest = createJwtRequest(keyStoreFile, keyStoreSecret, dnName, userId, keyId, SignatureAlgorithm.PS256);
+        jwtAuthorizationRequest.setAud(null);
+
+        processCibaAuthorizationEndpointFailCall(jwtAuthorizationRequest.getEncodedJwt(), clientId,
+                registerResponse.getClientSecret(), 400, BackchannelAuthenticationErrorResponseType.INVALID_REQUEST.getParameter());
+
+        // 2. Request doesn't include any hint
+        jwtAuthorizationRequest = createJwtRequest(keyStoreFile, keyStoreSecret, dnName, userId, keyId, SignatureAlgorithm.PS256);
+        jwtAuthorizationRequest.setLoginHint(null);
+
+        processCibaAuthorizationEndpointFailCall(jwtAuthorizationRequest.getEncodedJwt(), clientId,
+                registerResponse.getClientSecret(), 400, BackchannelAuthenticationErrorResponseType.UNKNOWN_USER_ID.getParameter());
+
+        // 3. Request has a wrong Binding Message
+        jwtAuthorizationRequest = createJwtRequest(keyStoreFile, keyStoreSecret, dnName, userId, keyId, SignatureAlgorithm.PS256);
+        jwtAuthorizationRequest.setBindingMessage("(/)=&/(%&/(%$/&($%/&)");
+
+        processCibaAuthorizationEndpointFailCall(jwtAuthorizationRequest.getEncodedJwt(), clientId,
+                registerResponse.getClientSecret(), 400, BackchannelAuthenticationErrorResponseType.INVALID_BINDING_MESSAGE.getParameter());
+
+        // 4. Request has wrong Client Id
+        jwtAuthorizationRequest = createJwtRequest(keyStoreFile, keyStoreSecret, dnName, userId, keyId, SignatureAlgorithm.PS256);
+        jwtAuthorizationRequest.setClientId("abcabcabcabcabcabcabcabcabcabc");
+
+        processCibaAuthorizationEndpointFailCall(jwtAuthorizationRequest.getEncodedJwt(), "abcabcabcabcabcabcabcabcabcabc",
+                registerResponse.getClientSecret(), 401, BackchannelAuthenticationErrorResponseType.INVALID_CLIENT.getParameter());
+    }
+
+    @Parameters({"PS256_keyId", "userId", "dnName", "keyStoreFile", "keyStoreSecret", "clientJwksUri"})
+    @Test(dependsOnMethods = "idTokenHintRS384")
+    public void cibaPollJWTRequestIdTokenHint(final String keyId, final String userId, final String dnName,
+                                                  final String keyStoreFile, final String keyStoreSecret,
+                                                  final String clientJwksUri) throws Exception {
+        showTitle("cibaPollJWTRequestIdTokenHint");
+        registerPollClient(clientJwksUri, BackchannelTokenDeliveryMode.POLL, AsymmetricSignatureAlgorithm.PS256);
+
+        // 1. Request doesn't include Aud
+        JwtAuthorizationRequest jwtAuthorizationRequest = createJwtRequest(keyStoreFile, keyStoreSecret, dnName, userId, keyId, SignatureAlgorithm.PS256);
+        jwtAuthorizationRequest.setLoginHint(null);
+        jwtAuthorizationRequest.setIdTokenHint(idTokenHintRS384);
+
+        processCibaAuthorizationEndpointSuccessfulCall(jwtAuthorizationRequest.getEncodedJwt(),
+                registerResponse.getClientId(), registerResponse.getClientSecret());
+    }
+
+    @Parameters({"PS256_keyId", "userId", "dnName", "keyStoreFile", "keyStoreSecret", "clientJwksUri"})
+    @Test
+    public void cibaPollJWTRequestWrongSigning(final String keyId, final String userId, final String dnName,
+                                              final String keyStoreFile, final String keyStoreSecret,
+                                              final String clientJwksUri) throws Exception {
+        showTitle("cibaPollJWTRequestWrongSigning");
+        registerPollClient(clientJwksUri, BackchannelTokenDeliveryMode.POLL, AsymmetricSignatureAlgorithm.PS256);
+
+        JwtAuthorizationRequest jwtAuthorizationRequest = createJwtRequest(keyStoreFile, keyStoreSecret, dnName, userId, keyId, SignatureAlgorithm.PS256);
+
+        String jwt = jwtAuthorizationRequest.getEncodedJwt();
+        String[] jwtParts = jwt.split("\\.");
+        String jwtWithWrongSigning = jwtParts[0] + "." + jwtParts[1] + ".WRONG-SIGNING";
+
+        processCibaAuthorizationEndpointFailCall(jwtWithWrongSigning, registerResponse.getClientId(),
+                registerResponse.getClientSecret(), 400, BackchannelAuthenticationErrorResponseType.INVALID_REQUEST.getParameter());
+    }
+
+    /**
+     * Registers a client using CIBA configuration for Poll flow and PS256
+     * @param clientJwksUri
+     */
+    private void registerPollClient(final String clientJwksUri, BackchannelTokenDeliveryMode mode, AsymmetricSignatureAlgorithm algorithm) {
+        RegisterRequest registerRequest = new RegisterRequest(ApplicationType.WEB, "oxAuth test app", null);
+        registerRequest.setJwksUri(clientJwksUri);
+        registerRequest.setGrantTypes(Collections.singletonList(GrantType.CIBA));
+
+        registerRequest.setBackchannelTokenDeliveryMode(mode);
+        registerRequest.setBackchannelAuthenticationRequestSigningAlg(algorithm);
+        registerRequest.setBackchannelUserCodeParameter(false);
+
+        RegisterClient registerClient = new RegisterClient(registrationEndpoint);
+        registerClient.setRequest(registerRequest);
+        registerResponse = registerClient.exec();
+
+        showClient(registerClient);
+
+        assertEquals(registerResponse.getStatus(), 200, "Unexpected response code: " + registerResponse.getEntity());
+        assertNotNull(registerResponse.getClientId());
+        assertNotNull(registerResponse.getClientSecret());
+        assertNotNull(registerResponse.getRegistrationAccessToken());
+        assertNotNull(registerResponse.getClientSecretExpiresAt());
+        assertTrue(registerResponse.getClaims().containsKey(BACKCHANNEL_TOKEN_DELIVERY_MODE.toString()));
+        assertTrue(registerResponse.getClaims().containsKey(BACKCHANNEL_AUTHENTICATION_REQUEST_SIGNING_ALG.toString()));
+        assertTrue(registerResponse.getClaims().containsKey(BACKCHANNEL_USER_CODE_PARAMETER.toString()));
+        assertEquals(registerResponse.getClaims().get(BACKCHANNEL_TOKEN_DELIVERY_MODE.toString()), mode.getValue());
+        assertEquals(registerResponse.getClaims().get(BACKCHANNEL_AUTHENTICATION_REQUEST_SIGNING_ALG.toString()), algorithm.getValue());
+        assertEquals(registerResponse.getClaims().get(BACKCHANNEL_USER_CODE_PARAMETER.toString()), "false");
+    }
+
+    /**
+     * Process a Ciba call to the OP using JWT Request object.
+     * @param jwtRequest JWT in plain String.
+     * @param clientId Client identifier.
+     * @param clientSecret Client secret.
+     */
+    private void processCibaAuthorizationEndpointSuccessfulCall(String jwtRequest, String clientId, String clientSecret) {
+        BackchannelAuthenticationRequest backchannelAuthenticationRequest = new BackchannelAuthenticationRequest();
+        backchannelAuthenticationRequest.setRequest(jwtRequest);
+        backchannelAuthenticationRequest.setClientId(clientId);
+        backchannelAuthenticationRequest.setAuthUsername(clientId);
+        backchannelAuthenticationRequest.setAuthPassword(clientSecret);
+
+        BackchannelAuthenticationClient backchannelAuthenticationClient = new BackchannelAuthenticationClient(backchannelAuthenticationEndpoint);
+        backchannelAuthenticationClient.setRequest(backchannelAuthenticationRequest);
+        BackchannelAuthenticationResponse backchannelAuthenticationResponse = backchannelAuthenticationClient.exec();
+
+        showClient(backchannelAuthenticationClient);
+
+        assertEquals(backchannelAuthenticationResponse.getStatus(), 200, "Unexpected response code: " + backchannelAuthenticationResponse.getEntity());
+        assertNotNull(backchannelAuthenticationResponse.getAuthReqId());
+        assertNotNull(backchannelAuthenticationResponse.getExpiresIn());
+        assertNotNull(backchannelAuthenticationResponse.getInterval()); // This parameter will only be present if the Client is registered to use the Poll or Ping modes.
+    }
+
+    /**
+     * Process a Ciba call to the OP using JWT Request object and validate HTTP status and error type.
+     * @param jwtRequest JWT in plain String.
+     * @param clientId Client identifier.
+     * @param clientSecret Client secret.
+     * @param httpStatus Param used to validate response from the server.
+     * @param error Error used to validate error response from the server.
+     */
+    private void processCibaAuthorizationEndpointFailCall(String jwtRequest, String clientId, String clientSecret, int httpStatus, String error) {
+        BackchannelAuthenticationRequest backchannelAuthenticationRequest = new BackchannelAuthenticationRequest();
+        backchannelAuthenticationRequest.setRequest(jwtRequest);
+        backchannelAuthenticationRequest.setClientId(clientId);
+        backchannelAuthenticationRequest.setAuthUsername(clientId);
+        backchannelAuthenticationRequest.setAuthPassword(clientSecret);
+
+        BackchannelAuthenticationClient backchannelAuthenticationClient = new BackchannelAuthenticationClient(backchannelAuthenticationEndpoint);
+        backchannelAuthenticationClient.setRequest(backchannelAuthenticationRequest);
+        BackchannelAuthenticationResponse backchannelAuthenticationResponse = backchannelAuthenticationClient.exec();
+
+        showClient(backchannelAuthenticationClient);
+
+        assertEquals(backchannelAuthenticationResponse.getStatus(), httpStatus, "Unexpected response code: " + backchannelAuthenticationResponse.getEntity());
+        assertNotNull(backchannelAuthenticationResponse.getErrorType());
+        assertNotNull(backchannelAuthenticationResponse.getErrorDescription());
+        assertEquals(error, backchannelAuthenticationResponse.getErrorType().getParameter());
+        assertNull(backchannelAuthenticationResponse.getAuthReqId());
+        assertNull(backchannelAuthenticationResponse.getExpiresIn());
+        assertNull(backchannelAuthenticationResponse.getInterval());
+    }
+
+    /**
+     * Creates a new JwtAuthorizationRequest using default configuration and params.
+     */
+    private JwtAuthorizationRequest createJwtRequest(String keyStoreFile, String keyStoreSecret, String dnName,
+                                                     String userId, String keyId, SignatureAlgorithm signatureAlgorithm) throws Exception {
+        OxAuthCryptoProvider cryptoProvider = new OxAuthCryptoProvider(keyStoreFile, keyStoreSecret, dnName);
+        String clientId = registerResponse.getClientId();
+
+        int now = (int)(System.currentTimeMillis() / 1000);
+
+        JwtAuthorizationRequest jwtAuthorizationRequest = new JwtAuthorizationRequest(
+                null, signatureAlgorithm, cryptoProvider);
+        jwtAuthorizationRequest.setAud(issuer);
+        jwtAuthorizationRequest.setLoginHint(userId);
+        jwtAuthorizationRequest.setNbf(now);
+        jwtAuthorizationRequest.setScopes(Collections.singletonList("openid"));
+        jwtAuthorizationRequest.setIss(clientId);
+        jwtAuthorizationRequest.setBindingMessage("1234");
+        jwtAuthorizationRequest.setExp((int)(DateUtils.addMinutes(new Date(), 5).getTime() / 1000));
+        jwtAuthorizationRequest.setIat(now);
+        jwtAuthorizationRequest.setJti(UUID.randomUUID().toString());
+        jwtAuthorizationRequest.setKeyId(keyId);
+
+        return jwtAuthorizationRequest;
+    }
+
+    @Parameters({"userId", "userSecret", "redirectUri", "redirectUris", "sectorIdentifierUri"})
+    @Test
+    public void idTokenHintRS384(
+            final String userId, final String userSecret, final String redirectUri, final String redirectUris,
+            final String sectorIdentifierUri) throws Exception {
+        showTitle("idTokenHintRS384");
+
+        List<ResponseType> responseTypes = Arrays.asList(ResponseType.TOKEN, ResponseType.ID_TOKEN);
+
+        // 1. Register client
+        RegisterRequest registerRequest = new RegisterRequest(ApplicationType.WEB, "oxAuth test app",
+                StringUtils.spaceSeparatedToList(redirectUris));
+        registerRequest.setResponseTypes(responseTypes);
+        registerRequest.setSectorIdentifierUri(sectorIdentifierUri);
+        registerRequest.setIdTokenSignedResponseAlg(SignatureAlgorithm.RS384);
+
+        RegisterClient registerClient = new RegisterClient(registrationEndpoint);
+        registerClient.setRequest(registerRequest);
+        RegisterResponse registerResponse = registerClient.exec();
+
+        showClient(registerClient);
+        assertEquals(registerResponse.getStatus(), 200, "Unexpected response code: " + registerResponse.getEntity());
+        assertNotNull(registerResponse.getClientId());
+        assertNotNull(registerResponse.getClientSecret());
+        assertNotNull(registerResponse.getRegistrationAccessToken());
+        assertNotNull(registerResponse.getClientIdIssuedAt());
+        assertNotNull(registerResponse.getClientSecretExpiresAt());
+
+        String clientId = registerResponse.getClientId();
+
+        // 2. Request authorization
+        List<String> scopes = Arrays.asList("openid");
+        String nonce = UUID.randomUUID().toString();
+        String state = UUID.randomUUID().toString();
+
+        AuthorizationRequest authorizationRequest = new AuthorizationRequest(responseTypes, clientId, scopes, redirectUri, nonce);
+        authorizationRequest.setState(state);
+
+        AuthorizeClient authorizeClient = new AuthorizeClient(authorizationEndpoint);
+        authorizeClient.setRequest(authorizationRequest);
+
+        AuthorizationResponse authorizationResponse = authenticateResourceOwnerAndGrantAccess(
+                authorizationEndpoint, authorizationRequest, userId, userSecret);
+
+        assertNotNull(authorizationResponse.getLocation(), "The location is null");
+        assertNotNull(authorizationResponse.getAccessToken(), "The accessToken is null");
+        assertNotNull(authorizationResponse.getTokenType(), "The tokenType is null");
+        assertNotNull(authorizationResponse.getIdToken(), "The idToken is null");
+        assertNotNull(authorizationResponse.getState(), "The state is null");
+
+        String idToken = authorizationResponse.getIdToken();
+
+        // 3. Validate id_token
+        Jwt jwt = Jwt.parse(idToken);
+        assertNotNull(jwt.getHeader().getClaimAsString(JwtHeaderName.TYPE));
+        assertNotNull(jwt.getHeader().getClaimAsString(JwtHeaderName.ALGORITHM));
+        assertNotNull(jwt.getClaims().getClaimAsString(JwtClaimName.ISSUER));
+        assertNotNull(jwt.getClaims().getClaimAsString(JwtClaimName.AUDIENCE));
+        assertNotNull(jwt.getClaims().getClaimAsString(JwtClaimName.EXPIRATION_TIME));
+        assertNotNull(jwt.getClaims().getClaimAsString(JwtClaimName.ISSUED_AT));
+        assertNotNull(jwt.getClaims().getClaimAsString(JwtClaimName.SUBJECT_IDENTIFIER));
+        assertNotNull(jwt.getClaims().getClaimAsString(JwtClaimName.ACCESS_TOKEN_HASH));
+        assertNotNull(jwt.getClaims().getClaimAsString(JwtClaimName.AUTHENTICATION_TIME));
+
+        RSAPublicKey publicKey = JwkClient.getRSAPublicKey(
+                jwksUri,
+                jwt.getHeader().getClaimAsString(JwtHeaderName.KEY_ID));
+        RSASigner rsaSigner = new RSASigner(SignatureAlgorithm.RS384, publicKey);
+
+        assertTrue(rsaSigner.validate(jwt));
+
+        idTokenHintRS384 = idToken;
+    }
+
+}
\ No newline at end of file
diff --git a/oxAuth/Client/src/test/java/org/gluu/oxauth/ciba/ConfigurationTest.java b/oxAuth/Client/src/test/java/org/gluu/oxauth/ciba/ConfigurationTest.java
new file mode 100644
index 00000000..39a636eb
--- /dev/null
+++ b/oxAuth/Client/src/test/java/org/gluu/oxauth/ciba/ConfigurationTest.java
@@ -0,0 +1,71 @@
+/*
+ * oxAuth is available under the MIT License (2008). See http://opensource.org/licenses/MIT for full text.
+ *
+ * Copyright (c) 2014, Gluu
+ */
+
+package org.gluu.oxauth.ciba;
+
+import static org.testng.Assert.assertEquals;
+import static org.testng.Assert.assertNotNull;
+import static org.testng.Assert.assertTrue;
+
+import org.gluu.oxauth.BaseTest;
+import org.gluu.oxauth.client.OpenIdConfigurationClient;
+import org.gluu.oxauth.client.OpenIdConfigurationResponse;
+import org.gluu.oxauth.client.OpenIdConnectDiscoveryClient;
+import org.gluu.oxauth.client.OpenIdConnectDiscoveryResponse;
+import org.gluu.oxauth.dev.HostnameVerifierType;
+import org.gluu.oxauth.model.common.GrantType;
+import org.jboss.resteasy.client.jaxrs.engines.ApacheHttpClient43Engine;
+import org.testng.annotations.Parameters;
+import org.testng.annotations.Test;
+
+/**
+ * @author Javier Rojas Blum
+ * @version August 20, 2019
+ */
+public class ConfigurationTest extends BaseTest {
+
+    @Test
+    @Parameters({"swdResource"})
+    public void requestOpenIdConfiguration(final String resource) throws Exception {
+        showTitle("OpenID Connect Discovery");
+
+        OpenIdConnectDiscoveryClient openIdConnectDiscoveryClient = new OpenIdConnectDiscoveryClient(resource);
+        OpenIdConnectDiscoveryResponse openIdConnectDiscoveryResponse = openIdConnectDiscoveryClient.exec(
+                new ApacheHttpClient43Engine(createHttpClient(HostnameVerifierType.ALLOW_ALL)));
+
+        showClient(openIdConnectDiscoveryClient);
+        assertEquals(openIdConnectDiscoveryResponse.getStatus(), 200, "Unexpected response code");
+        assertNotNull(openIdConnectDiscoveryResponse.getSubject());
+        assertTrue(openIdConnectDiscoveryResponse.getLinks().size() > 0);
+
+        String configurationEndpoint = openIdConnectDiscoveryResponse.getLinks().get(0).getHref() +
+                "/.well-known/openid-configuration";
+
+        showTitle("OpenID Connect Configuration");
+
+        OpenIdConfigurationClient client = new OpenIdConfigurationClient(configurationEndpoint);
+        OpenIdConfigurationResponse response = client.execOpenIdConfiguration();
+
+        showClient(client);
+        assertEquals(response.getStatus(), 200, "Unexpected response code");
+        assertNotNull(response.getIssuer(), "The issuer is null");
+        assertNotNull(response.getAuthorizationEndpoint(), "The authorizationEndpoint is null");
+        assertNotNull(response.getTokenEndpoint(), "The tokenEndpoint is null");
+        assertNotNull(response.getRevocationEndpoint(), "The tokenRevocationEndpoint is null");
+        assertNotNull(response.getUserInfoEndpoint(), "The userInfoEndPoint is null");
+        assertNotNull(response.getEndSessionEndpoint(), "The endSessionEndpoint is null");
+        assertNotNull(response.getJwksUri(), "The jwksUri is null");
+        assertNotNull(response.getRegistrationEndpoint(), "The registrationEndpoint is null");
+
+        assertTrue(response.getGrantTypesSupported().size() > 0, "The grantTypesSupported is empty");
+        assertTrue(response.getGrantTypesSupported().contains(GrantType.CIBA.getParamName()), "The grantTypes urn:openid:params:grant-type:ciba is null");
+
+        assertNotNull(response.getBackchannelAuthenticationEndpoint(), "The backchannelAuthenticationEndpoint is null");
+        assertTrue(response.getBackchannelTokenDeliveryModesSupported().size() > 0, "The backchannelTokenDeliveryModesSupported is empty");
+        assertTrue(response.getBackchannelAuthenticationRequestSigningAlgValuesSupported().size() > 0, "The backchannelAuthenticationRequestSigningAlgValuesSupported is empty");
+        assertNotNull(response.getBackchannelUserCodeParameterSupported(), "The backchannelUserCodeParameterSupported is null");
+    }
+}
diff --git a/oxAuth/Client/src/test/java/org/gluu/oxauth/ciba/RegistrationTest.java b/oxAuth/Client/src/test/java/org/gluu/oxauth/ciba/RegistrationTest.java
new file mode 100644
index 00000000..da59e9e1
--- /dev/null
+++ b/oxAuth/Client/src/test/java/org/gluu/oxauth/ciba/RegistrationTest.java
@@ -0,0 +1,1260 @@
+/*
+ * oxAuth is available under the MIT License (2008). See http://opensource.org/licenses/MIT for full text.
+ *
+ * Copyright (c) 2014, Gluu
+ */
+
+package org.gluu.oxauth.ciba;
+
+import static org.gluu.oxauth.model.register.RegisterRequestParam.APPLICATION_TYPE;
+import static org.gluu.oxauth.model.register.RegisterRequestParam.BACKCHANNEL_AUTHENTICATION_REQUEST_SIGNING_ALG;
+import static org.gluu.oxauth.model.register.RegisterRequestParam.BACKCHANNEL_CLIENT_NOTIFICATION_ENDPOINT;
+import static org.gluu.oxauth.model.register.RegisterRequestParam.BACKCHANNEL_TOKEN_DELIVERY_MODE;
+import static org.gluu.oxauth.model.register.RegisterRequestParam.BACKCHANNEL_USER_CODE_PARAMETER;
+import static org.gluu.oxauth.model.register.RegisterRequestParam.CLIENT_NAME;
+import static org.gluu.oxauth.model.register.RegisterRequestParam.ID_TOKEN_SIGNED_RESPONSE_ALG;
+import static org.gluu.oxauth.model.register.RegisterRequestParam.JWKS;
+import static org.gluu.oxauth.model.register.RegisterRequestParam.JWKS_URI;
+import static org.gluu.oxauth.model.register.RegisterRequestParam.SCOPE;
+import static org.gluu.oxauth.model.register.RegisterRequestParam.SECTOR_IDENTIFIER_URI;
+import static org.gluu.oxauth.model.register.RegisterRequestParam.SUBJECT_TYPE;
+import static org.gluu.oxauth.model.register.RegisterRequestParam.TOKEN_ENDPOINT_AUTH_METHOD;
+import static org.gluu.oxauth.model.register.RegisterRequestParam.TOKEN_ENDPOINT_AUTH_SIGNING_ALG;
+import static org.testng.Assert.assertEquals;
+import static org.testng.Assert.assertNotNull;
+import static org.testng.Assert.assertTrue;
+
+import java.util.Arrays;
+
+import javax.ws.rs.HttpMethod;
+
+import org.gluu.oxauth.BaseTest;
+import org.gluu.oxauth.client.JwkClient;
+import org.gluu.oxauth.client.JwkResponse;
+import org.gluu.oxauth.client.RegisterClient;
+import org.gluu.oxauth.client.RegisterRequest;
+import org.gluu.oxauth.client.RegisterResponse;
+import org.gluu.oxauth.model.common.AuthenticationMethod;
+import org.gluu.oxauth.model.common.BackchannelTokenDeliveryMode;
+import org.gluu.oxauth.model.common.GrantType;
+import org.gluu.oxauth.model.common.SubjectType;
+import org.gluu.oxauth.model.crypto.signature.AsymmetricSignatureAlgorithm;
+import org.gluu.oxauth.model.crypto.signature.SignatureAlgorithm;
+import org.gluu.oxauth.model.register.ApplicationType;
+import org.testng.annotations.Parameters;
+import org.testng.annotations.Test;
+
+/**
+ * @author Javier Rojas Blum
+ * @version May 20, 2020
+ */
+public class RegistrationTest extends BaseTest {
+
+    @Parameters({"clientJwksUri"})
+    @Test
+    public void backchannelTokenDeliveryModePoll1(final String clientJwksUri) {
+        showTitle("backchannelTokenDeliveryModePoll1");
+
+        // 1. Dynamic Client Registration
+        RegisterRequest registerRequest = new RegisterRequest(ApplicationType.WEB, "oxAuth test app", null);
+        registerRequest.setJwksUri(clientJwksUri);
+        registerRequest.setGrantTypes(Arrays.asList(GrantType.CIBA));
+
+        registerRequest.setBackchannelTokenDeliveryMode(BackchannelTokenDeliveryMode.POLL);
+        registerRequest.setBackchannelAuthenticationRequestSigningAlg(AsymmetricSignatureAlgorithm.RS256);
+        registerRequest.setBackchannelUserCodeParameter(true);
+
+        RegisterClient registerClient = new RegisterClient(registrationEndpoint);
+        registerClient.setRequest(registerRequest);
+        RegisterResponse registerResponse = registerClient.exec();
+
+        showClient(registerClient);
+        assertEquals(registerResponse.getStatus(), 200, "Unexpected response code: " + registerResponse.getEntity());
+        assertNotNull(registerResponse.getClientId());
+        assertNotNull(registerResponse.getClientSecret());
+        assertNotNull(registerResponse.getRegistrationAccessToken());
+        assertNotNull(registerResponse.getClientSecretExpiresAt());
+
+        assertTrue(registerResponse.getClaims().containsKey(BACKCHANNEL_TOKEN_DELIVERY_MODE.toString()));
+        assertTrue(registerResponse.getClaims().containsKey(BACKCHANNEL_AUTHENTICATION_REQUEST_SIGNING_ALG.toString()));
+        assertTrue(registerResponse.getClaims().containsKey(BACKCHANNEL_USER_CODE_PARAMETER.toString()));
+        assertEquals(registerResponse.getClaims().get(BACKCHANNEL_TOKEN_DELIVERY_MODE.toString()), BackchannelTokenDeliveryMode.POLL.getValue());
+        assertEquals(registerResponse.getClaims().get(BACKCHANNEL_AUTHENTICATION_REQUEST_SIGNING_ALG.toString()), AsymmetricSignatureAlgorithm.RS256.getValue());
+        assertEquals(registerResponse.getClaims().get(BACKCHANNEL_USER_CODE_PARAMETER.toString()), new Boolean(true).toString());
+
+        String registrationAccessToken = registerResponse.getRegistrationAccessToken();
+        String registrationClientUri = registerResponse.getRegistrationClientUri();
+
+        // 2. Client Read
+        RegisterRequest clientReadRequest = new RegisterRequest(registrationAccessToken);
+
+        RegisterClient clientReadClient = new RegisterClient(registrationClientUri);
+        clientReadClient.setRequest(clientReadRequest);
+        RegisterResponse clientReadResponse = clientReadClient.exec();
+
+        showClient(clientReadClient);
+        assertEquals(clientReadResponse.getStatus(), 200, "Unexpected response code: " + clientReadResponse.getEntity());
+        assertNotNull(clientReadResponse.getClientId());
+        assertNotNull(clientReadResponse.getClientSecret());
+        assertNotNull(clientReadResponse.getRegistrationAccessToken());
+        assertNotNull(clientReadResponse.getRegistrationClientUri());
+        assertNotNull(clientReadResponse.getClientSecretExpiresAt());
+        assertNotNull(clientReadResponse.getClaims().get(APPLICATION_TYPE.toString()));
+        assertNotNull(clientReadResponse.getClaims().get(SUBJECT_TYPE.toString()));
+        assertNotNull(clientReadResponse.getClaims().get(ID_TOKEN_SIGNED_RESPONSE_ALG.toString()));
+        assertNotNull(clientReadResponse.getClaims().get(JWKS_URI.toString()));
+        assertNotNull(clientReadResponse.getClaims().get(CLIENT_NAME.toString()));
+        assertNotNull(clientReadResponse.getClaims().get(SCOPE.toString()));
+
+        assertTrue(clientReadResponse.getClaims().containsKey(BACKCHANNEL_TOKEN_DELIVERY_MODE.toString()));
+        assertTrue(clientReadResponse.getClaims().containsKey(BACKCHANNEL_AUTHENTICATION_REQUEST_SIGNING_ALG.toString()));
+        assertTrue(clientReadResponse.getClaims().containsKey(BACKCHANNEL_USER_CODE_PARAMETER.toString()));
+        assertEquals(clientReadResponse.getClaims().get(BACKCHANNEL_TOKEN_DELIVERY_MODE.toString()), BackchannelTokenDeliveryMode.POLL.getValue());
+        assertEquals(clientReadResponse.getClaims().get(BACKCHANNEL_AUTHENTICATION_REQUEST_SIGNING_ALG.toString()), AsymmetricSignatureAlgorithm.RS256.getValue());
+        assertEquals(clientReadResponse.getClaims().get(BACKCHANNEL_USER_CODE_PARAMETER.toString()), new Boolean(true).toString());
+    }
+
+    @Parameters({"sectorIdentifierUri", "clientJwksUri"})
+    @Test
+    public void backchannelTokenDeliveryModePoll2(final String sectorIdentifierUri, final String clientJwksUri) {
+        showTitle("backchannelTokenDeliveryModePoll2");
+
+        // 1. Dynamic Client Registration
+        RegisterRequest registerRequest = new RegisterRequest(ApplicationType.WEB, "oxAuth test app", null);
+        registerRequest.setSectorIdentifierUri(sectorIdentifierUri);
+        registerRequest.setJwksUri(clientJwksUri);
+        registerRequest.setGrantTypes(Arrays.asList(GrantType.CIBA));
+
+        registerRequest.setBackchannelTokenDeliveryMode(BackchannelTokenDeliveryMode.POLL);
+        registerRequest.setBackchannelAuthenticationRequestSigningAlg(AsymmetricSignatureAlgorithm.RS256);
+        registerRequest.setBackchannelUserCodeParameter(true);
+
+        RegisterClient registerClient = new RegisterClient(registrationEndpoint);
+        registerClient.setRequest(registerRequest);
+        RegisterResponse registerResponse = registerClient.exec();
+
+        showClient(registerClient);
+        assertEquals(registerResponse.getStatus(), 200, "Unexpected response code: " + registerResponse.getEntity());
+        assertNotNull(registerResponse.getClientId());
+        assertNotNull(registerResponse.getClientSecret());
+        assertNotNull(registerResponse.getRegistrationAccessToken());
+        assertNotNull(registerResponse.getClientSecretExpiresAt());
+
+        assertTrue(registerResponse.getClaims().containsKey(JWKS_URI.toString()));
+        assertTrue(registerResponse.getClaims().containsKey(SECTOR_IDENTIFIER_URI.toString()));
+        assertTrue(registerResponse.getClaims().containsKey(BACKCHANNEL_TOKEN_DELIVERY_MODE.toString()));
+        assertTrue(registerResponse.getClaims().containsKey(BACKCHANNEL_AUTHENTICATION_REQUEST_SIGNING_ALG.toString()));
+        assertTrue(registerResponse.getClaims().containsKey(BACKCHANNEL_USER_CODE_PARAMETER.toString()));
+        assertEquals(registerResponse.getClaims().get(BACKCHANNEL_TOKEN_DELIVERY_MODE.toString()), BackchannelTokenDeliveryMode.POLL.getValue());
+        assertEquals(registerResponse.getClaims().get(BACKCHANNEL_AUTHENTICATION_REQUEST_SIGNING_ALG.toString()), AsymmetricSignatureAlgorithm.RS256.getValue());
+        assertEquals(registerResponse.getClaims().get(BACKCHANNEL_USER_CODE_PARAMETER.toString()), new Boolean(true).toString());
+
+        String registrationAccessToken = registerResponse.getRegistrationAccessToken();
+        String registrationClientUri = registerResponse.getRegistrationClientUri();
+
+        // 2. Client Read
+        RegisterRequest clientReadRequest = new RegisterRequest(registrationAccessToken);
+
+        RegisterClient clientReadClient = new RegisterClient(registrationClientUri);
+        clientReadClient.setRequest(clientReadRequest);
+        RegisterResponse clientReadResponse = clientReadClient.exec();
+
+        showClient(clientReadClient);
+        assertEquals(clientReadResponse.getStatus(), 200, "Unexpected response code: " + clientReadResponse.getEntity());
+        assertNotNull(clientReadResponse.getClientId());
+        assertNotNull(clientReadResponse.getClientSecret());
+        assertNotNull(clientReadResponse.getRegistrationAccessToken());
+        assertNotNull(clientReadResponse.getRegistrationClientUri());
+        assertNotNull(clientReadResponse.getClientSecretExpiresAt());
+        assertNotNull(clientReadResponse.getClaims().get(APPLICATION_TYPE.toString()));
+        assertNotNull(clientReadResponse.getClaims().get(SECTOR_IDENTIFIER_URI.toString()));
+        assertNotNull(clientReadResponse.getClaims().get(SUBJECT_TYPE.toString()));
+        assertNotNull(clientReadResponse.getClaims().get(ID_TOKEN_SIGNED_RESPONSE_ALG.toString()));
+        assertNotNull(clientReadResponse.getClaims().get(JWKS_URI.toString()));
+        assertNotNull(clientReadResponse.getClaims().get(CLIENT_NAME.toString()));
+        assertNotNull(clientReadResponse.getClaims().get(SCOPE.toString()));
+
+        assertTrue(clientReadResponse.getClaims().containsKey(JWKS_URI.toString()));
+        assertTrue(clientReadResponse.getClaims().containsKey(SECTOR_IDENTIFIER_URI.toString()));
+        assertTrue(clientReadResponse.getClaims().containsKey(BACKCHANNEL_TOKEN_DELIVERY_MODE.toString()));
+        assertTrue(clientReadResponse.getClaims().containsKey(BACKCHANNEL_AUTHENTICATION_REQUEST_SIGNING_ALG.toString()));
+        assertTrue(clientReadResponse.getClaims().containsKey(BACKCHANNEL_USER_CODE_PARAMETER.toString()));
+        assertEquals(clientReadResponse.getClaims().get(BACKCHANNEL_TOKEN_DELIVERY_MODE.toString()), BackchannelTokenDeliveryMode.POLL.getValue());
+        assertEquals(clientReadResponse.getClaims().get(BACKCHANNEL_AUTHENTICATION_REQUEST_SIGNING_ALG.toString()), AsymmetricSignatureAlgorithm.RS256.getValue());
+        assertEquals(clientReadResponse.getClaims().get(BACKCHANNEL_USER_CODE_PARAMETER.toString()), new Boolean(true).toString());
+    }
+
+    @Test
+    public void backchannelTokenDeliveryModePoll3() {
+        showTitle("backchannelTokenDeliveryModePoll3");
+
+        // 1. Dynamic Client Registration
+        RegisterRequest registerRequest = new RegisterRequest(ApplicationType.WEB, "oxAuth test app", null);
+        registerRequest.setSubjectType(SubjectType.PUBLIC);
+        registerRequest.setGrantTypes(Arrays.asList(GrantType.CIBA));
+
+        registerRequest.setBackchannelTokenDeliveryMode(BackchannelTokenDeliveryMode.POLL);
+        registerRequest.setBackchannelAuthenticationRequestSigningAlg(AsymmetricSignatureAlgorithm.RS256);
+        registerRequest.setBackchannelUserCodeParameter(true);
+
+        RegisterClient registerClient = new RegisterClient(registrationEndpoint);
+        registerClient.setRequest(registerRequest);
+        RegisterResponse registerResponse = registerClient.exec();
+
+        showClient(registerClient);
+        assertEquals(registerResponse.getStatus(), 200, "Unexpected response code: " + registerResponse.getEntity());
+        assertNotNull(registerResponse.getClientId());
+        assertNotNull(registerResponse.getClientSecret());
+        assertNotNull(registerResponse.getRegistrationAccessToken());
+        assertNotNull(registerResponse.getClientSecretExpiresAt());
+
+        assertTrue(registerResponse.getClaims().containsKey(BACKCHANNEL_TOKEN_DELIVERY_MODE.toString()));
+        assertTrue(registerResponse.getClaims().containsKey(BACKCHANNEL_AUTHENTICATION_REQUEST_SIGNING_ALG.toString()));
+        assertTrue(registerResponse.getClaims().containsKey(BACKCHANNEL_USER_CODE_PARAMETER.toString()));
+        assertEquals(registerResponse.getClaims().get(BACKCHANNEL_TOKEN_DELIVERY_MODE.toString()), BackchannelTokenDeliveryMode.POLL.getValue());
+        assertEquals(registerResponse.getClaims().get(BACKCHANNEL_AUTHENTICATION_REQUEST_SIGNING_ALG.toString()), AsymmetricSignatureAlgorithm.RS256.getValue());
+        assertEquals(registerResponse.getClaims().get(BACKCHANNEL_USER_CODE_PARAMETER.toString()), new Boolean(true).toString());
+
+        String registrationAccessToken = registerResponse.getRegistrationAccessToken();
+        String registrationClientUri = registerResponse.getRegistrationClientUri();
+
+        // 2. Client Read
+        RegisterRequest clientReadRequest = new RegisterRequest(registrationAccessToken);
+
+        RegisterClient clientReadClient = new RegisterClient(registrationClientUri);
+        clientReadClient.setRequest(clientReadRequest);
+        RegisterResponse clientReadResponse = clientReadClient.exec();
+
+        showClient(clientReadClient);
+        assertEquals(clientReadResponse.getStatus(), 200, "Unexpected response code: " + clientReadResponse.getEntity());
+        assertNotNull(clientReadResponse.getClientId());
+        assertNotNull(clientReadResponse.getClientSecret());
+        assertNotNull(clientReadResponse.getRegistrationAccessToken());
+        assertNotNull(clientReadResponse.getRegistrationClientUri());
+        assertNotNull(clientReadResponse.getClientSecretExpiresAt());
+        assertNotNull(clientReadResponse.getClaims().get(APPLICATION_TYPE.toString()));
+        assertNotNull(clientReadResponse.getClaims().get(SUBJECT_TYPE.toString()));
+        assertNotNull(clientReadResponse.getClaims().get(ID_TOKEN_SIGNED_RESPONSE_ALG.toString()));
+        assertNotNull(clientReadResponse.getClaims().get(CLIENT_NAME.toString()));
+        assertNotNull(clientReadResponse.getClaims().get(SCOPE.toString()));
+
+        assertTrue(clientReadResponse.getClaims().containsKey(BACKCHANNEL_TOKEN_DELIVERY_MODE.toString()));
+        assertTrue(clientReadResponse.getClaims().containsKey(BACKCHANNEL_AUTHENTICATION_REQUEST_SIGNING_ALG.toString()));
+        assertTrue(clientReadResponse.getClaims().containsKey(BACKCHANNEL_USER_CODE_PARAMETER.toString()));
+        assertEquals(clientReadResponse.getClaims().get(BACKCHANNEL_TOKEN_DELIVERY_MODE.toString()), BackchannelTokenDeliveryMode.POLL.getValue());
+        assertEquals(clientReadResponse.getClaims().get(BACKCHANNEL_AUTHENTICATION_REQUEST_SIGNING_ALG.toString()), AsymmetricSignatureAlgorithm.RS256.getValue());
+        assertEquals(clientReadResponse.getClaims().get(BACKCHANNEL_USER_CODE_PARAMETER.toString()), new Boolean(true).toString());
+    }
+
+    @Parameters({"sectorIdentifierUri", "clientJwksUri"})
+    @Test
+    public void backchannelTokenDeliveryModePoll4(final String sectorIdentifierUri, final String clientJwksUri) {
+        showTitle("backchannelTokenDeliveryModePoll4");
+
+        // 1. Dynamic Client Registration
+        RegisterRequest registerRequest = new RegisterRequest(ApplicationType.WEB, "oxAuth test app", null);
+
+        RegisterClient registerClient = new RegisterClient(registrationEndpoint);
+        registerClient.setRequest(registerRequest);
+        RegisterResponse registerResponse = registerClient.exec();
+
+        showClient(registerClient);
+        assertEquals(registerResponse.getStatus(), 200, "Unexpected response code: " + registerResponse.getEntity());
+        assertNotNull(registerResponse.getClientId());
+        assertNotNull(registerResponse.getClientSecret());
+        assertNotNull(registerResponse.getRegistrationAccessToken());
+        assertNotNull(registerResponse.getClientSecretExpiresAt());
+
+        String registrationAccessToken = registerResponse.getRegistrationAccessToken();
+        String registrationClientUri = registerResponse.getRegistrationClientUri();
+
+        // 2. Client Read
+        RegisterRequest clientReadRequest = new RegisterRequest(registrationAccessToken);
+
+        RegisterClient clientReadClient = new RegisterClient(registrationClientUri);
+        clientReadClient.setRequest(clientReadRequest);
+        RegisterResponse clientReadResponse = clientReadClient.exec();
+
+        showClient(clientReadClient);
+        assertEquals(clientReadResponse.getStatus(), 200, "Unexpected response code: " + clientReadResponse.getEntity());
+        assertNotNull(clientReadResponse.getClientId());
+        assertNotNull(clientReadResponse.getClientSecret());
+        assertNotNull(clientReadResponse.getRegistrationAccessToken());
+        assertNotNull(clientReadResponse.getRegistrationClientUri());
+        assertNotNull(clientReadResponse.getClientSecretExpiresAt());
+        assertNotNull(clientReadResponse.getClaims().get(APPLICATION_TYPE.toString()));
+        assertNotNull(clientReadResponse.getClaims().get(SUBJECT_TYPE.toString()));
+        assertNotNull(clientReadResponse.getClaims().get(ID_TOKEN_SIGNED_RESPONSE_ALG.toString()));
+        assertNotNull(clientReadResponse.getClaims().get(CLIENT_NAME.toString()));
+        assertNotNull(clientReadResponse.getClaims().get(SCOPE.toString()));
+
+        // 3. Client Update
+        RegisterRequest clientUpdateRequest = new RegisterRequest(registrationAccessToken);
+        clientUpdateRequest.setHttpMethod(HttpMethod.PUT);
+
+        clientUpdateRequest.setSectorIdentifierUri(sectorIdentifierUri);
+        clientUpdateRequest.setJwksUri(clientJwksUri);
+        clientUpdateRequest.setGrantTypes(Arrays.asList(GrantType.CIBA));
+
+        clientUpdateRequest.setBackchannelTokenDeliveryMode(BackchannelTokenDeliveryMode.POLL);
+        clientUpdateRequest.setBackchannelAuthenticationRequestSigningAlg(AsymmetricSignatureAlgorithm.RS256);
+        clientUpdateRequest.setBackchannelUserCodeParameter(true);
+
+        RegisterClient clientUpdateClient = new RegisterClient(registrationClientUri);
+        clientUpdateClient.setRequest(clientUpdateRequest);
+
+        RegisterResponse clientUpdateResponse = clientUpdateClient.exec();
+
+        showClient(clientUpdateClient);
+        assertEquals(clientUpdateResponse.getStatus(), 200, "Unexpected response code: " + clientUpdateResponse.getEntity());
+        assertNotNull(clientUpdateResponse.getClientId());
+        assertNotNull(clientUpdateResponse.getClientSecret());
+        assertNotNull(clientUpdateResponse.getRegistrationAccessToken());
+        assertNotNull(clientUpdateResponse.getRegistrationClientUri());
+        assertNotNull(clientUpdateResponse.getClientSecretExpiresAt());
+        assertNotNull(clientUpdateResponse.getClaims().get(APPLICATION_TYPE.toString()));
+        assertNotNull(clientUpdateResponse.getClaims().get(SECTOR_IDENTIFIER_URI.toString()));
+        assertNotNull(clientUpdateResponse.getClaims().get(SUBJECT_TYPE.toString()));
+        assertNotNull(clientUpdateResponse.getClaims().get(ID_TOKEN_SIGNED_RESPONSE_ALG.toString()));
+        assertNotNull(clientUpdateResponse.getClaims().get(JWKS_URI.toString()));
+        assertNotNull(clientUpdateResponse.getClaims().get(CLIENT_NAME.toString()));
+        assertNotNull(clientUpdateResponse.getClaims().get(SCOPE.toString()));
+
+        assertTrue(clientUpdateResponse.getClaims().containsKey(JWKS_URI.toString()));
+        assertTrue(clientUpdateResponse.getClaims().containsKey(SECTOR_IDENTIFIER_URI.toString()));
+        assertTrue(clientUpdateResponse.getClaims().containsKey(BACKCHANNEL_TOKEN_DELIVERY_MODE.toString()));
+        assertTrue(clientUpdateResponse.getClaims().containsKey(BACKCHANNEL_AUTHENTICATION_REQUEST_SIGNING_ALG.toString()));
+        assertTrue(clientUpdateResponse.getClaims().containsKey(BACKCHANNEL_USER_CODE_PARAMETER.toString()));
+        assertEquals(clientUpdateResponse.getClaims().get(BACKCHANNEL_TOKEN_DELIVERY_MODE.toString()), BackchannelTokenDeliveryMode.POLL.getValue());
+        assertEquals(clientUpdateResponse.getClaims().get(BACKCHANNEL_AUTHENTICATION_REQUEST_SIGNING_ALG.toString()), AsymmetricSignatureAlgorithm.RS256.getValue());
+        assertEquals(clientUpdateResponse.getClaims().get(BACKCHANNEL_USER_CODE_PARAMETER.toString()), new Boolean(true).toString());
+    }
+
+    @Parameters({"clientJwksUri"})
+    public void backchannelTokenDeliveryModePoll5(final String clientJwksUri) {
+        showTitle("backchannelTokenDeliveryModePoll5");
+
+        // 1. Dynamic Client Registration
+        JwkClient jwkClient = new JwkClient(clientJwksUri);
+        JwkResponse jwkResponse = jwkClient.exec();
+
+        RegisterRequest registerRequest = new RegisterRequest(ApplicationType.WEB, "oxAuth test app", null);
+        registerRequest.setJwks(jwkResponse.getJwks().toString());
+        registerRequest.setGrantTypes(Arrays.asList(GrantType.CIBA));
+
+        registerRequest.setBackchannelTokenDeliveryMode(BackchannelTokenDeliveryMode.POLL);
+        registerRequest.setBackchannelAuthenticationRequestSigningAlg(AsymmetricSignatureAlgorithm.PS256);
+        registerRequest.setIdTokenSignedResponseAlg(SignatureAlgorithm.PS256);
+        registerRequest.setBackchannelUserCodeParameter(false);
+        registerRequest.setTokenEndpointAuthMethod(AuthenticationMethod.PRIVATE_KEY_JWT);
+        registerRequest.setTokenEndpointAuthSigningAlg(SignatureAlgorithm.PS256);
+
+        RegisterClient registerClient = new RegisterClient(registrationEndpoint);
+        registerClient.setRequest(registerRequest);
+        RegisterResponse registerResponse = registerClient.exec();
+
+        showClient(registerClient);
+        assertEquals(registerResponse.getStatus(), 200, "Unexpected response code: " + registerResponse.getEntity());
+        assertNotNull(registerResponse.getClientId());
+        assertNotNull(registerResponse.getClientSecret());
+        assertNotNull(registerResponse.getRegistrationAccessToken());
+        assertNotNull(registerResponse.getClientSecretExpiresAt());
+        assertNotNull(registerResponse.getClaims().get(APPLICATION_TYPE.toString()));
+        assertNotNull(registerResponse.getClaims().get(SUBJECT_TYPE.toString()));
+        assertNotNull(registerResponse.getClaims().get(ID_TOKEN_SIGNED_RESPONSE_ALG.toString()));
+        assertNotNull(registerResponse.getClaims().get(JWKS.toString()));
+        assertNotNull(registerResponse.getClaims().get(CLIENT_NAME.toString()));
+        assertNotNull(registerResponse.getClaims().get(SCOPE.toString()));
+
+        assertTrue(registerResponse.getClaims().containsKey(BACKCHANNEL_TOKEN_DELIVERY_MODE.toString()));
+        assertTrue(registerResponse.getClaims().containsKey(BACKCHANNEL_AUTHENTICATION_REQUEST_SIGNING_ALG.toString()));
+        assertTrue(registerResponse.getClaims().containsKey(BACKCHANNEL_USER_CODE_PARAMETER.toString()));
+        assertTrue(registerResponse.getClaims().containsKey(ID_TOKEN_SIGNED_RESPONSE_ALG.toString()));
+        assertTrue(registerResponse.getClaims().containsKey(TOKEN_ENDPOINT_AUTH_SIGNING_ALG.toString()));
+        assertTrue(registerResponse.getClaims().containsKey(TOKEN_ENDPOINT_AUTH_METHOD.toString()));
+        assertEquals(registerResponse.getClaims().get(BACKCHANNEL_TOKEN_DELIVERY_MODE.toString()), BackchannelTokenDeliveryMode.POLL.getValue());
+        assertEquals(registerResponse.getClaims().get(BACKCHANNEL_AUTHENTICATION_REQUEST_SIGNING_ALG.toString()), AsymmetricSignatureAlgorithm.PS256.getValue());
+        assertEquals(registerResponse.getClaims().get(BACKCHANNEL_USER_CODE_PARAMETER.toString()), new Boolean(false).toString());
+        assertEquals(registerResponse.getClaims().get(ID_TOKEN_SIGNED_RESPONSE_ALG.toString()), SignatureAlgorithm.PS256.getName());
+        assertEquals(registerResponse.getClaims().get(TOKEN_ENDPOINT_AUTH_SIGNING_ALG.toString()), SignatureAlgorithm.PS256.getName());
+        assertEquals(registerResponse.getClaims().get(TOKEN_ENDPOINT_AUTH_METHOD.toString()), AuthenticationMethod.PRIVATE_KEY_JWT.toString());
+
+        String registrationAccessToken = registerResponse.getRegistrationAccessToken();
+        String registrationClientUri = registerResponse.getRegistrationClientUri();
+
+        // 2. Client Read
+        RegisterRequest clientReadRequest = new RegisterRequest(registrationAccessToken);
+
+        RegisterClient clientReadClient = new RegisterClient(registrationClientUri);
+        clientReadClient.setRequest(clientReadRequest);
+        RegisterResponse clientReadResponse = clientReadClient.exec();
+
+        showClient(clientReadClient);
+        assertEquals(clientReadResponse.getStatus(), 200, "Unexpected response code: " + clientReadResponse.getEntity());
+        assertNotNull(clientReadResponse.getClientId());
+        assertNotNull(clientReadResponse.getClientSecret());
+        assertNotNull(clientReadResponse.getRegistrationAccessToken());
+        assertNotNull(clientReadResponse.getRegistrationClientUri());
+        assertNotNull(clientReadResponse.getClientSecretExpiresAt());
+        assertNotNull(clientReadResponse.getClaims().get(APPLICATION_TYPE.toString()));
+        assertNotNull(clientReadResponse.getClaims().get(SUBJECT_TYPE.toString()));
+        assertNotNull(clientReadResponse.getClaims().get(ID_TOKEN_SIGNED_RESPONSE_ALG.toString()));
+        assertNotNull(clientReadResponse.getClaims().get(JWKS.toString()));
+        assertNotNull(clientReadResponse.getClaims().get(CLIENT_NAME.toString()));
+        assertNotNull(clientReadResponse.getClaims().get(SCOPE.toString()));
+
+        assertTrue(clientReadResponse.getClaims().containsKey(BACKCHANNEL_TOKEN_DELIVERY_MODE.toString()));
+        assertTrue(clientReadResponse.getClaims().containsKey(BACKCHANNEL_AUTHENTICATION_REQUEST_SIGNING_ALG.toString()));
+        assertTrue(clientReadResponse.getClaims().containsKey(BACKCHANNEL_USER_CODE_PARAMETER.toString()));
+        assertTrue(clientReadResponse.getClaims().containsKey(ID_TOKEN_SIGNED_RESPONSE_ALG.toString()));
+        assertTrue(clientReadResponse.getClaims().containsKey(TOKEN_ENDPOINT_AUTH_SIGNING_ALG.toString()));
+        assertTrue(clientReadResponse.getClaims().containsKey(TOKEN_ENDPOINT_AUTH_METHOD.toString()));
+        assertEquals(clientReadResponse.getClaims().get(BACKCHANNEL_TOKEN_DELIVERY_MODE.toString()), BackchannelTokenDeliveryMode.POLL.getValue());
+        assertEquals(clientReadResponse.getClaims().get(BACKCHANNEL_AUTHENTICATION_REQUEST_SIGNING_ALG.toString()), AsymmetricSignatureAlgorithm.PS256.getValue());
+        assertEquals(clientReadResponse.getClaims().get(BACKCHANNEL_USER_CODE_PARAMETER.toString()), new Boolean(false).toString());
+        assertEquals(clientReadResponse.getClaims().get(ID_TOKEN_SIGNED_RESPONSE_ALG.toString()), SignatureAlgorithm.PS256.getName());
+        assertEquals(clientReadResponse.getClaims().get(TOKEN_ENDPOINT_AUTH_SIGNING_ALG.toString()), SignatureAlgorithm.PS256.getName());
+        assertEquals(clientReadResponse.getClaims().get(TOKEN_ENDPOINT_AUTH_METHOD.toString()), AuthenticationMethod.PRIVATE_KEY_JWT.toString());
+    }
+
+    @Parameters({"clientJwksUri", "backchannelClientNotificationEndpoint"})
+    @Test
+    public void backchannelTokenDeliveryModePing1(final String clientJwksUri,
+                                                  final String backchannelClientNotificationEndpoint) {
+        showTitle("backchannelTokenDeliveryModePing1");
+
+        // 1. Dynamic Client Registration
+        RegisterRequest registerRequest = new RegisterRequest(ApplicationType.WEB, "oxAuth test app", null);
+        registerRequest.setJwksUri(clientJwksUri);
+        registerRequest.setGrantTypes(Arrays.asList(GrantType.CIBA));
+
+        registerRequest.setBackchannelTokenDeliveryMode(BackchannelTokenDeliveryMode.PING);
+        registerRequest.setBackchannelClientNotificationEndpoint(backchannelClientNotificationEndpoint);
+        registerRequest.setBackchannelAuthenticationRequestSigningAlg(AsymmetricSignatureAlgorithm.RS256);
+        registerRequest.setBackchannelUserCodeParameter(true);
+
+        RegisterClient registerClient = new RegisterClient(registrationEndpoint);
+        registerClient.setRequest(registerRequest);
+        RegisterResponse registerResponse = registerClient.exec();
+
+        showClient(registerClient);
+        assertEquals(registerResponse.getStatus(), 200, "Unexpected response code: " + registerResponse.getEntity());
+        assertNotNull(registerResponse.getClientId());
+        assertNotNull(registerResponse.getClientSecret());
+        assertNotNull(registerResponse.getRegistrationAccessToken());
+        assertNotNull(registerResponse.getClientSecretExpiresAt());
+
+        assertTrue(registerResponse.getClaims().containsKey(BACKCHANNEL_TOKEN_DELIVERY_MODE.toString()));
+        assertTrue(registerResponse.getClaims().containsKey(BACKCHANNEL_AUTHENTICATION_REQUEST_SIGNING_ALG.toString()));
+        assertTrue(registerResponse.getClaims().containsKey(BACKCHANNEL_USER_CODE_PARAMETER.toString()));
+        assertTrue(registerResponse.getClaims().containsKey(BACKCHANNEL_CLIENT_NOTIFICATION_ENDPOINT.toString()));
+        assertEquals(registerResponse.getClaims().get(BACKCHANNEL_TOKEN_DELIVERY_MODE.toString()), BackchannelTokenDeliveryMode.PING.getValue());
+        assertEquals(registerResponse.getClaims().get(BACKCHANNEL_AUTHENTICATION_REQUEST_SIGNING_ALG.toString()), AsymmetricSignatureAlgorithm.RS256.getValue());
+        assertEquals(registerResponse.getClaims().get(BACKCHANNEL_USER_CODE_PARAMETER.toString()), new Boolean(true).toString());
+
+        String registrationAccessToken = registerResponse.getRegistrationAccessToken();
+        String registrationClientUri = registerResponse.getRegistrationClientUri();
+
+        // 2. Client Read
+        RegisterRequest clientReadRequest = new RegisterRequest(registrationAccessToken);
+
+        RegisterClient clientReadClient = new RegisterClient(registrationClientUri);
+        clientReadClient.setRequest(clientReadRequest);
+        RegisterResponse clientReadResponse = clientReadClient.exec();
+
+        showClient(clientReadClient);
+        assertEquals(clientReadResponse.getStatus(), 200, "Unexpected response code: " + clientReadResponse.getEntity());
+        assertNotNull(clientReadResponse.getClientId());
+        assertNotNull(clientReadResponse.getClientSecret());
+        assertNotNull(clientReadResponse.getRegistrationAccessToken());
+        assertNotNull(clientReadResponse.getRegistrationClientUri());
+        assertNotNull(clientReadResponse.getClientSecretExpiresAt());
+        assertNotNull(clientReadResponse.getClaims().get(APPLICATION_TYPE.toString()));
+        assertNotNull(clientReadResponse.getClaims().get(SUBJECT_TYPE.toString()));
+        assertNotNull(clientReadResponse.getClaims().get(ID_TOKEN_SIGNED_RESPONSE_ALG.toString()));
+        assertNotNull(clientReadResponse.getClaims().get(JWKS_URI.toString()));
+        assertNotNull(clientReadResponse.getClaims().get(CLIENT_NAME.toString()));
+        assertNotNull(clientReadResponse.getClaims().get(SCOPE.toString()));
+
+        assertTrue(clientReadResponse.getClaims().containsKey(BACKCHANNEL_TOKEN_DELIVERY_MODE.toString()));
+        assertTrue(clientReadResponse.getClaims().containsKey(BACKCHANNEL_AUTHENTICATION_REQUEST_SIGNING_ALG.toString()));
+        assertTrue(clientReadResponse.getClaims().containsKey(BACKCHANNEL_USER_CODE_PARAMETER.toString()));
+        assertTrue(clientReadResponse.getClaims().containsKey(BACKCHANNEL_CLIENT_NOTIFICATION_ENDPOINT.toString()));
+        assertEquals(clientReadResponse.getClaims().get(BACKCHANNEL_TOKEN_DELIVERY_MODE.toString()), BackchannelTokenDeliveryMode.PING.getValue());
+        assertEquals(clientReadResponse.getClaims().get(BACKCHANNEL_AUTHENTICATION_REQUEST_SIGNING_ALG.toString()), AsymmetricSignatureAlgorithm.RS256.getValue());
+        assertEquals(clientReadResponse.getClaims().get(BACKCHANNEL_USER_CODE_PARAMETER.toString()), new Boolean(true).toString());
+    }
+
+    @Parameters({"sectorIdentifierUri", "clientJwksUri", "backchannelClientNotificationEndpoint"})
+    @Test
+    public void backchannelTokenDeliveryModePing2(final String sectorIdentifierUri, final String clientJwksUri,
+                                                  final String backchannelClientNotificationEndpoint) {
+        showTitle("backchannelTokenDeliveryModePing2");
+
+        // 1. Dynamic Client Registration
+        RegisterRequest registerRequest = new RegisterRequest(ApplicationType.WEB, "oxAuth test app", null);
+        registerRequest.setSectorIdentifierUri(sectorIdentifierUri);
+        registerRequest.setJwksUri(clientJwksUri);
+        registerRequest.setGrantTypes(Arrays.asList(GrantType.CIBA));
+
+        registerRequest.setBackchannelTokenDeliveryMode(BackchannelTokenDeliveryMode.PING);
+        registerRequest.setBackchannelClientNotificationEndpoint(backchannelClientNotificationEndpoint);
+        registerRequest.setBackchannelAuthenticationRequestSigningAlg(AsymmetricSignatureAlgorithm.RS256);
+        registerRequest.setBackchannelUserCodeParameter(true);
+
+        RegisterClient registerClient = new RegisterClient(registrationEndpoint);
+        registerClient.setRequest(registerRequest);
+        RegisterResponse registerResponse = registerClient.exec();
+
+        showClient(registerClient);
+        assertEquals(registerResponse.getStatus(), 200, "Unexpected response code: " + registerResponse.getEntity());
+        assertNotNull(registerResponse.getClientId());
+        assertNotNull(registerResponse.getClientSecret());
+        assertNotNull(registerResponse.getRegistrationAccessToken());
+        assertNotNull(registerResponse.getClientSecretExpiresAt());
+
+        assertTrue(registerResponse.getClaims().containsKey(JWKS_URI.toString()));
+        assertTrue(registerResponse.getClaims().containsKey(SECTOR_IDENTIFIER_URI.toString()));
+        assertTrue(registerResponse.getClaims().containsKey(BACKCHANNEL_TOKEN_DELIVERY_MODE.toString()));
+        assertTrue(registerResponse.getClaims().containsKey(BACKCHANNEL_AUTHENTICATION_REQUEST_SIGNING_ALG.toString()));
+        assertTrue(registerResponse.getClaims().containsKey(BACKCHANNEL_USER_CODE_PARAMETER.toString()));
+        assertTrue(registerResponse.getClaims().containsKey(BACKCHANNEL_CLIENT_NOTIFICATION_ENDPOINT.toString()));
+        assertEquals(registerResponse.getClaims().get(BACKCHANNEL_TOKEN_DELIVERY_MODE.toString()), BackchannelTokenDeliveryMode.PING.getValue());
+        assertEquals(registerResponse.getClaims().get(BACKCHANNEL_AUTHENTICATION_REQUEST_SIGNING_ALG.toString()), AsymmetricSignatureAlgorithm.RS256.getValue());
+        assertEquals(registerResponse.getClaims().get(BACKCHANNEL_USER_CODE_PARAMETER.toString()), new Boolean(true).toString());
+
+        String registrationAccessToken = registerResponse.getRegistrationAccessToken();
+        String registrationClientUri = registerResponse.getRegistrationClientUri();
+
+        // 2. Client Read
+        RegisterRequest clientReadRequest = new RegisterRequest(registrationAccessToken);
+
+        RegisterClient clientReadClient = new RegisterClient(registrationClientUri);
+        clientReadClient.setRequest(clientReadRequest);
+        RegisterResponse clientReadResponse = clientReadClient.exec();
+
+        showClient(clientReadClient);
+        assertEquals(clientReadResponse.getStatus(), 200, "Unexpected response code: " + clientReadResponse.getEntity());
+        assertNotNull(clientReadResponse.getClientId());
+        assertNotNull(clientReadResponse.getClientSecret());
+        assertNotNull(clientReadResponse.getRegistrationAccessToken());
+        assertNotNull(clientReadResponse.getRegistrationClientUri());
+        assertNotNull(clientReadResponse.getClientSecretExpiresAt());
+        assertNotNull(clientReadResponse.getClaims().get(APPLICATION_TYPE.toString()));
+        assertNotNull(clientReadResponse.getClaims().get(SECTOR_IDENTIFIER_URI.toString()));
+        assertNotNull(clientReadResponse.getClaims().get(SUBJECT_TYPE.toString()));
+        assertNotNull(clientReadResponse.getClaims().get(ID_TOKEN_SIGNED_RESPONSE_ALG.toString()));
+        assertNotNull(clientReadResponse.getClaims().get(JWKS_URI.toString()));
+        assertNotNull(clientReadResponse.getClaims().get(CLIENT_NAME.toString()));
+        assertNotNull(clientReadResponse.getClaims().get(SCOPE.toString()));
+
+        assertTrue(clientReadResponse.getClaims().containsKey(JWKS_URI.toString()));
+        assertTrue(clientReadResponse.getClaims().containsKey(SECTOR_IDENTIFIER_URI.toString()));
+        assertTrue(clientReadResponse.getClaims().containsKey(BACKCHANNEL_TOKEN_DELIVERY_MODE.toString()));
+        assertTrue(clientReadResponse.getClaims().containsKey(BACKCHANNEL_AUTHENTICATION_REQUEST_SIGNING_ALG.toString()));
+        assertTrue(clientReadResponse.getClaims().containsKey(BACKCHANNEL_USER_CODE_PARAMETER.toString()));
+        assertTrue(clientReadResponse.getClaims().containsKey(BACKCHANNEL_CLIENT_NOTIFICATION_ENDPOINT.toString()));
+        assertEquals(clientReadResponse.getClaims().get(BACKCHANNEL_TOKEN_DELIVERY_MODE.toString()), BackchannelTokenDeliveryMode.PING.getValue());
+        assertEquals(clientReadResponse.getClaims().get(BACKCHANNEL_AUTHENTICATION_REQUEST_SIGNING_ALG.toString()), AsymmetricSignatureAlgorithm.RS256.getValue());
+        assertEquals(clientReadResponse.getClaims().get(BACKCHANNEL_USER_CODE_PARAMETER.toString()), new Boolean(true).toString());
+    }
+
+    @Parameters({"backchannelClientNotificationEndpoint"})
+    @Test
+    public void backchannelTokenDeliveryModePing3(final String backchannelClientNotificationEndpoint) {
+        showTitle("backchannelTokenDeliveryModePing3");
+
+        // 1. Dynamic Client Registration
+        RegisterRequest registerRequest = new RegisterRequest(ApplicationType.WEB, "oxAuth test app", null);
+        registerRequest.setSubjectType(SubjectType.PUBLIC);
+        registerRequest.setGrantTypes(Arrays.asList(GrantType.CIBA));
+
+        registerRequest.setBackchannelTokenDeliveryMode(BackchannelTokenDeliveryMode.PING);
+        registerRequest.setBackchannelClientNotificationEndpoint(backchannelClientNotificationEndpoint);
+        registerRequest.setBackchannelAuthenticationRequestSigningAlg(AsymmetricSignatureAlgorithm.RS256);
+        registerRequest.setBackchannelUserCodeParameter(true);
+
+        RegisterClient registerClient = new RegisterClient(registrationEndpoint);
+        registerClient.setRequest(registerRequest);
+        RegisterResponse registerResponse = registerClient.exec();
+
+        showClient(registerClient);
+        assertEquals(registerResponse.getStatus(), 200, "Unexpected response code: " + registerResponse.getEntity());
+        assertNotNull(registerResponse.getClientId());
+        assertNotNull(registerResponse.getClientSecret());
+        assertNotNull(registerResponse.getRegistrationAccessToken());
+        assertNotNull(registerResponse.getClientSecretExpiresAt());
+
+        assertTrue(registerResponse.getClaims().containsKey(BACKCHANNEL_TOKEN_DELIVERY_MODE.toString()));
+        assertTrue(registerResponse.getClaims().containsKey(BACKCHANNEL_AUTHENTICATION_REQUEST_SIGNING_ALG.toString()));
+        assertTrue(registerResponse.getClaims().containsKey(BACKCHANNEL_USER_CODE_PARAMETER.toString()));
+        assertTrue(registerResponse.getClaims().containsKey(BACKCHANNEL_CLIENT_NOTIFICATION_ENDPOINT.toString()));
+        assertEquals(registerResponse.getClaims().get(BACKCHANNEL_TOKEN_DELIVERY_MODE.toString()), BackchannelTokenDeliveryMode.PING.getValue());
+        assertEquals(registerResponse.getClaims().get(BACKCHANNEL_AUTHENTICATION_REQUEST_SIGNING_ALG.toString()), AsymmetricSignatureAlgorithm.RS256.getValue());
+        assertEquals(registerResponse.getClaims().get(BACKCHANNEL_USER_CODE_PARAMETER.toString()), new Boolean(true).toString());
+
+        String registrationAccessToken = registerResponse.getRegistrationAccessToken();
+        String registrationClientUri = registerResponse.getRegistrationClientUri();
+
+        // 2. Client Read
+        RegisterRequest clientReadRequest = new RegisterRequest(registrationAccessToken);
+
+        RegisterClient clientReadClient = new RegisterClient(registrationClientUri);
+        clientReadClient.setRequest(clientReadRequest);
+        RegisterResponse clientReadResponse = clientReadClient.exec();
+
+        showClient(clientReadClient);
+        assertEquals(clientReadResponse.getStatus(), 200, "Unexpected response code: " + clientReadResponse.getEntity());
+        assertNotNull(clientReadResponse.getClientId());
+        assertNotNull(clientReadResponse.getClientSecret());
+        assertNotNull(clientReadResponse.getRegistrationAccessToken());
+        assertNotNull(clientReadResponse.getRegistrationClientUri());
+        assertNotNull(clientReadResponse.getClientSecretExpiresAt());
+        assertNotNull(clientReadResponse.getClaims().get(APPLICATION_TYPE.toString()));
+        assertNotNull(clientReadResponse.getClaims().get(SUBJECT_TYPE.toString()));
+        assertNotNull(clientReadResponse.getClaims().get(ID_TOKEN_SIGNED_RESPONSE_ALG.toString()));
+        assertNotNull(clientReadResponse.getClaims().get(CLIENT_NAME.toString()));
+        assertNotNull(clientReadResponse.getClaims().get(SCOPE.toString()));
+
+        assertTrue(clientReadResponse.getClaims().containsKey(BACKCHANNEL_TOKEN_DELIVERY_MODE.toString()));
+        assertTrue(clientReadResponse.getClaims().containsKey(BACKCHANNEL_AUTHENTICATION_REQUEST_SIGNING_ALG.toString()));
+        assertTrue(clientReadResponse.getClaims().containsKey(BACKCHANNEL_USER_CODE_PARAMETER.toString()));
+        assertTrue(clientReadResponse.getClaims().containsKey(BACKCHANNEL_CLIENT_NOTIFICATION_ENDPOINT.toString()));
+        assertEquals(clientReadResponse.getClaims().get(BACKCHANNEL_TOKEN_DELIVERY_MODE.toString()), BackchannelTokenDeliveryMode.PING.getValue());
+        assertEquals(clientReadResponse.getClaims().get(BACKCHANNEL_AUTHENTICATION_REQUEST_SIGNING_ALG.toString()), AsymmetricSignatureAlgorithm.RS256.getValue());
+        assertEquals(clientReadResponse.getClaims().get(BACKCHANNEL_USER_CODE_PARAMETER.toString()), new Boolean(true).toString());
+    }
+
+    @Parameters({"sectorIdentifierUri", "clientJwksUri", "backchannelClientNotificationEndpoint"})
+    @Test
+    public void backchannelTokenDeliveryModePing4(final String sectorIdentifierUri, final String clientJwksUri,
+                                                  final String backchannelClientNotificationEndpoint) {
+        showTitle("backchannelTokenDeliveryModePing4");
+
+        // 1. Dynamic Client Registration
+        RegisterRequest registerRequest = new RegisterRequest(ApplicationType.WEB, "oxAuth test app", null);
+
+        RegisterClient registerClient = new RegisterClient(registrationEndpoint);
+        registerClient.setRequest(registerRequest);
+        RegisterResponse registerResponse = registerClient.exec();
+
+        showClient(registerClient);
+        assertEquals(registerResponse.getStatus(), 200, "Unexpected response code: " + registerResponse.getEntity());
+        assertNotNull(registerResponse.getClientId());
+        assertNotNull(registerResponse.getClientSecret());
+        assertNotNull(registerResponse.getRegistrationAccessToken());
+        assertNotNull(registerResponse.getClientSecretExpiresAt());
+
+        String registrationAccessToken = registerResponse.getRegistrationAccessToken();
+        String registrationClientUri = registerResponse.getRegistrationClientUri();
+
+        // 2. Client Read
+        RegisterRequest clientReadRequest = new RegisterRequest(registrationAccessToken);
+
+        RegisterClient clientReadClient = new RegisterClient(registrationClientUri);
+        clientReadClient.setRequest(clientReadRequest);
+        RegisterResponse clientReadResponse = clientReadClient.exec();
+
+        showClient(clientReadClient);
+        assertEquals(clientReadResponse.getStatus(), 200, "Unexpected response code: " + clientReadResponse.getEntity());
+        assertNotNull(clientReadResponse.getClientId());
+        assertNotNull(clientReadResponse.getClientSecret());
+        assertNotNull(clientReadResponse.getRegistrationAccessToken());
+        assertNotNull(clientReadResponse.getRegistrationClientUri());
+        assertNotNull(clientReadResponse.getClientSecretExpiresAt());
+        assertNotNull(clientReadResponse.getClaims().get(APPLICATION_TYPE.toString()));
+        assertNotNull(clientReadResponse.getClaims().get(SUBJECT_TYPE.toString()));
+        assertNotNull(clientReadResponse.getClaims().get(ID_TOKEN_SIGNED_RESPONSE_ALG.toString()));
+        assertNotNull(clientReadResponse.getClaims().get(CLIENT_NAME.toString()));
+        assertNotNull(clientReadResponse.getClaims().get(SCOPE.toString()));
+
+        // 3. Client Update
+        RegisterRequest clientUpdateRequest = new RegisterRequest(registrationAccessToken);
+        clientUpdateRequest.setHttpMethod(HttpMethod.PUT);
+
+        clientUpdateRequest.setSectorIdentifierUri(sectorIdentifierUri);
+        clientUpdateRequest.setJwksUri(clientJwksUri);
+        clientUpdateRequest.setGrantTypes(Arrays.asList(GrantType.CIBA));
+
+        clientUpdateRequest.setBackchannelTokenDeliveryMode(BackchannelTokenDeliveryMode.PING);
+        clientUpdateRequest.setBackchannelClientNotificationEndpoint(backchannelClientNotificationEndpoint);
+        clientUpdateRequest.setBackchannelAuthenticationRequestSigningAlg(AsymmetricSignatureAlgorithm.RS256);
+        clientUpdateRequest.setBackchannelUserCodeParameter(true);
+
+        RegisterClient clientUpdateClient = new RegisterClient(registrationClientUri);
+        clientUpdateClient.setRequest(clientUpdateRequest);
+
+        RegisterResponse clientUpdateResponse = clientUpdateClient.exec();
+
+        showClient(clientUpdateClient);
+        assertEquals(clientUpdateResponse.getStatus(), 200, "Unexpected response code: " + clientUpdateResponse.getEntity());
+        assertNotNull(clientUpdateResponse.getClientId());
+        assertNotNull(clientUpdateResponse.getClientSecret());
+        assertNotNull(clientUpdateResponse.getRegistrationAccessToken());
+        assertNotNull(clientUpdateResponse.getRegistrationClientUri());
+        assertNotNull(clientUpdateResponse.getClientSecretExpiresAt());
+        assertNotNull(clientUpdateResponse.getClaims().get(APPLICATION_TYPE.toString()));
+        assertNotNull(clientUpdateResponse.getClaims().get(SECTOR_IDENTIFIER_URI.toString()));
+        assertNotNull(clientUpdateResponse.getClaims().get(SUBJECT_TYPE.toString()));
+        assertNotNull(clientUpdateResponse.getClaims().get(ID_TOKEN_SIGNED_RESPONSE_ALG.toString()));
+        assertNotNull(clientUpdateResponse.getClaims().get(JWKS_URI.toString()));
+        assertNotNull(clientUpdateResponse.getClaims().get(CLIENT_NAME.toString()));
+        assertNotNull(clientUpdateResponse.getClaims().get(SCOPE.toString()));
+
+        assertTrue(clientUpdateResponse.getClaims().containsKey(JWKS_URI.toString()));
+        assertTrue(clientUpdateResponse.getClaims().containsKey(SECTOR_IDENTIFIER_URI.toString()));
+        assertTrue(clientUpdateResponse.getClaims().containsKey(BACKCHANNEL_TOKEN_DELIVERY_MODE.toString()));
+        assertTrue(clientUpdateResponse.getClaims().containsKey(BACKCHANNEL_AUTHENTICATION_REQUEST_SIGNING_ALG.toString()));
+        assertTrue(clientUpdateResponse.getClaims().containsKey(BACKCHANNEL_USER_CODE_PARAMETER.toString()));
+        assertTrue(clientUpdateResponse.getClaims().containsKey(BACKCHANNEL_CLIENT_NOTIFICATION_ENDPOINT.toString()));
+        assertEquals(clientUpdateResponse.getClaims().get(BACKCHANNEL_TOKEN_DELIVERY_MODE.toString()), BackchannelTokenDeliveryMode.PING.getValue());
+        assertEquals(clientUpdateResponse.getClaims().get(BACKCHANNEL_AUTHENTICATION_REQUEST_SIGNING_ALG.toString()), AsymmetricSignatureAlgorithm.RS256.getValue());
+        assertEquals(clientUpdateResponse.getClaims().get(BACKCHANNEL_USER_CODE_PARAMETER.toString()), new Boolean(true).toString());
+    }
+
+    @Parameters({"clientJwksUri", "backchannelClientNotificationEndpoint"})
+    public void backchannelTokenDeliveryModePing5(final String clientJwksUri,
+                                                  final String backchannelClientNotificationEndpoint) {
+        showTitle("backchannelTokenDeliveryModePing5");
+
+        // 1. Dynamic Client Registration
+        JwkClient jwkClient = new JwkClient(clientJwksUri);
+        JwkResponse jwkResponse = jwkClient.exec();
+
+        RegisterRequest registerRequest = new RegisterRequest(ApplicationType.WEB, "oxAuth test app", null);
+        registerRequest.setJwks(jwkResponse.getJwks().toString());
+        registerRequest.setGrantTypes(Arrays.asList(GrantType.CIBA));
+
+        registerRequest.setBackchannelTokenDeliveryMode(BackchannelTokenDeliveryMode.PING);
+        registerRequest.setBackchannelClientNotificationEndpoint(backchannelClientNotificationEndpoint);
+        registerRequest.setBackchannelAuthenticationRequestSigningAlg(AsymmetricSignatureAlgorithm.PS256);
+        registerRequest.setIdTokenSignedResponseAlg(SignatureAlgorithm.PS256);
+        registerRequest.setBackchannelUserCodeParameter(false);
+        registerRequest.setTokenEndpointAuthMethod(AuthenticationMethod.PRIVATE_KEY_JWT);
+        registerRequest.setTokenEndpointAuthSigningAlg(SignatureAlgorithm.PS256);
+
+        RegisterClient registerClient = new RegisterClient(registrationEndpoint);
+        registerClient.setRequest(registerRequest);
+        RegisterResponse registerResponse = registerClient.exec();
+
+        showClient(registerClient);
+        assertEquals(registerResponse.getStatus(), 200, "Unexpected response code: " + registerResponse.getEntity());
+        assertNotNull(registerResponse.getClientId());
+        assertNotNull(registerResponse.getClientSecret());
+        assertNotNull(registerResponse.getRegistrationAccessToken());
+        assertNotNull(registerResponse.getClientSecretExpiresAt());
+        assertNotNull(registerResponse.getClaims().get(APPLICATION_TYPE.toString()));
+        assertNotNull(registerResponse.getClaims().get(SUBJECT_TYPE.toString()));
+        assertNotNull(registerResponse.getClaims().get(ID_TOKEN_SIGNED_RESPONSE_ALG.toString()));
+        assertNotNull(registerResponse.getClaims().get(JWKS.toString()));
+        assertNotNull(registerResponse.getClaims().get(CLIENT_NAME.toString()));
+        assertNotNull(registerResponse.getClaims().get(SCOPE.toString()));
+
+        assertTrue(registerResponse.getClaims().containsKey(BACKCHANNEL_TOKEN_DELIVERY_MODE.toString()));
+        assertTrue(registerResponse.getClaims().containsKey(BACKCHANNEL_AUTHENTICATION_REQUEST_SIGNING_ALG.toString()));
+        assertTrue(registerResponse.getClaims().containsKey(BACKCHANNEL_USER_CODE_PARAMETER.toString()));
+        assertTrue(registerResponse.getClaims().containsKey(ID_TOKEN_SIGNED_RESPONSE_ALG.toString()));
+        assertTrue(registerResponse.getClaims().containsKey(TOKEN_ENDPOINT_AUTH_SIGNING_ALG.toString()));
+        assertTrue(registerResponse.getClaims().containsKey(TOKEN_ENDPOINT_AUTH_METHOD.toString()));
+        assertEquals(registerResponse.getClaims().get(BACKCHANNEL_TOKEN_DELIVERY_MODE.toString()), BackchannelTokenDeliveryMode.PING.getValue());
+        assertEquals(registerResponse.getClaims().get(BACKCHANNEL_AUTHENTICATION_REQUEST_SIGNING_ALG.toString()), AsymmetricSignatureAlgorithm.PS256.getValue());
+        assertEquals(registerResponse.getClaims().get(BACKCHANNEL_USER_CODE_PARAMETER.toString()), new Boolean(false).toString());
+        assertEquals(registerResponse.getClaims().get(ID_TOKEN_SIGNED_RESPONSE_ALG.toString()), SignatureAlgorithm.PS256.getName());
+        assertEquals(registerResponse.getClaims().get(TOKEN_ENDPOINT_AUTH_SIGNING_ALG.toString()), SignatureAlgorithm.PS256.getName());
+        assertEquals(registerResponse.getClaims().get(TOKEN_ENDPOINT_AUTH_METHOD.toString()), AuthenticationMethod.PRIVATE_KEY_JWT.toString());
+
+        String registrationAccessToken = registerResponse.getRegistrationAccessToken();
+        String registrationClientUri = registerResponse.getRegistrationClientUri();
+
+        // 2. Client Read
+        RegisterRequest clientReadRequest = new RegisterRequest(registrationAccessToken);
+
+        RegisterClient clientReadClient = new RegisterClient(registrationClientUri);
+        clientReadClient.setRequest(clientReadRequest);
+        RegisterResponse clientReadResponse = clientReadClient.exec();
+
+        showClient(clientReadClient);
+        assertEquals(clientReadResponse.getStatus(), 200, "Unexpected response code: " + clientReadResponse.getEntity());
+        assertNotNull(clientReadResponse.getClientId());
+        assertNotNull(clientReadResponse.getClientSecret());
+        assertNotNull(clientReadResponse.getRegistrationAccessToken());
+        assertNotNull(clientReadResponse.getRegistrationClientUri());
+        assertNotNull(clientReadResponse.getClientSecretExpiresAt());
+        assertNotNull(clientReadResponse.getClaims().get(APPLICATION_TYPE.toString()));
+        assertNotNull(clientReadResponse.getClaims().get(SUBJECT_TYPE.toString()));
+        assertNotNull(clientReadResponse.getClaims().get(ID_TOKEN_SIGNED_RESPONSE_ALG.toString()));
+        assertNotNull(clientReadResponse.getClaims().get(JWKS.toString()));
+        assertNotNull(clientReadResponse.getClaims().get(CLIENT_NAME.toString()));
+        assertNotNull(clientReadResponse.getClaims().get(SCOPE.toString()));
+
+        assertTrue(clientReadResponse.getClaims().containsKey(BACKCHANNEL_TOKEN_DELIVERY_MODE.toString()));
+        assertTrue(clientReadResponse.getClaims().containsKey(BACKCHANNEL_AUTHENTICATION_REQUEST_SIGNING_ALG.toString()));
+        assertTrue(clientReadResponse.getClaims().containsKey(BACKCHANNEL_USER_CODE_PARAMETER.toString()));
+        assertTrue(clientReadResponse.getClaims().containsKey(ID_TOKEN_SIGNED_RESPONSE_ALG.toString()));
+        assertTrue(clientReadResponse.getClaims().containsKey(TOKEN_ENDPOINT_AUTH_SIGNING_ALG.toString()));
+        assertTrue(clientReadResponse.getClaims().containsKey(TOKEN_ENDPOINT_AUTH_METHOD.toString()));
+        assertEquals(clientReadResponse.getClaims().get(BACKCHANNEL_TOKEN_DELIVERY_MODE.toString()), BackchannelTokenDeliveryMode.PING.getValue());
+        assertEquals(clientReadResponse.getClaims().get(BACKCHANNEL_AUTHENTICATION_REQUEST_SIGNING_ALG.toString()), AsymmetricSignatureAlgorithm.PS256.getValue());
+        assertEquals(clientReadResponse.getClaims().get(BACKCHANNEL_USER_CODE_PARAMETER.toString()), new Boolean(false).toString());
+        assertEquals(clientReadResponse.getClaims().get(ID_TOKEN_SIGNED_RESPONSE_ALG.toString()), SignatureAlgorithm.PS256.getName());
+        assertEquals(clientReadResponse.getClaims().get(TOKEN_ENDPOINT_AUTH_SIGNING_ALG.toString()), SignatureAlgorithm.PS256.getName());
+        assertEquals(clientReadResponse.getClaims().get(TOKEN_ENDPOINT_AUTH_METHOD.toString()), AuthenticationMethod.PRIVATE_KEY_JWT.toString());
+    }
+
+    @Parameters({"backchannelClientNotificationEndpoint"})
+    @Test
+    public void backchannelTokenDeliveryModePush1(final String backchannelClientNotificationEndpoint) {
+        showTitle("backchannelTokenDeliveryModePush1");
+
+        // 1. Dynamic Client Registration
+        RegisterRequest registerRequest = new RegisterRequest(ApplicationType.WEB, "oxAuth test app", null);
+        registerRequest.setGrantTypes(Arrays.asList(GrantType.CIBA));
+
+        registerRequest.setBackchannelTokenDeliveryMode(BackchannelTokenDeliveryMode.PUSH);
+        registerRequest.setBackchannelClientNotificationEndpoint(backchannelClientNotificationEndpoint);
+        registerRequest.setBackchannelAuthenticationRequestSigningAlg(AsymmetricSignatureAlgorithm.RS256);
+        registerRequest.setBackchannelUserCodeParameter(true);
+
+        RegisterClient registerClient = new RegisterClient(registrationEndpoint);
+        registerClient.setRequest(registerRequest);
+        RegisterResponse registerResponse = registerClient.exec();
+
+        showClient(registerClient);
+        assertEquals(registerResponse.getStatus(), 200, "Unexpected response code: " + registerResponse.getEntity());
+        assertNotNull(registerResponse.getClientId());
+        assertNotNull(registerResponse.getClientSecret());
+        assertNotNull(registerResponse.getRegistrationAccessToken());
+        assertNotNull(registerResponse.getClientSecretExpiresAt());
+
+        assertTrue(registerResponse.getClaims().containsKey(BACKCHANNEL_TOKEN_DELIVERY_MODE.toString()));
+        assertTrue(registerResponse.getClaims().containsKey(BACKCHANNEL_AUTHENTICATION_REQUEST_SIGNING_ALG.toString()));
+        assertTrue(registerResponse.getClaims().containsKey(BACKCHANNEL_USER_CODE_PARAMETER.toString()));
+        assertTrue(registerResponse.getClaims().containsKey(BACKCHANNEL_CLIENT_NOTIFICATION_ENDPOINT.toString()));
+        assertEquals(registerResponse.getClaims().get(BACKCHANNEL_TOKEN_DELIVERY_MODE.toString()), BackchannelTokenDeliveryMode.PUSH.getValue());
+        assertEquals(registerResponse.getClaims().get(BACKCHANNEL_AUTHENTICATION_REQUEST_SIGNING_ALG.toString()), AsymmetricSignatureAlgorithm.RS256.getValue());
+        assertEquals(registerResponse.getClaims().get(BACKCHANNEL_USER_CODE_PARAMETER.toString()), new Boolean(true).toString());
+
+        String registrationAccessToken = registerResponse.getRegistrationAccessToken();
+        String registrationClientUri = registerResponse.getRegistrationClientUri();
+
+        // 2. Client Read
+        RegisterRequest clientReadRequest = new RegisterRequest(registrationAccessToken);
+
+        RegisterClient clientReadClient = new RegisterClient(registrationClientUri);
+        clientReadClient.setRequest(clientReadRequest);
+        RegisterResponse clientReadResponse = clientReadClient.exec();
+
+        showClient(clientReadClient);
+        assertEquals(clientReadResponse.getStatus(), 200, "Unexpected response code: " + clientReadResponse.getEntity());
+        assertNotNull(clientReadResponse.getClientId());
+        assertNotNull(clientReadResponse.getClientSecret());
+        assertNotNull(clientReadResponse.getRegistrationAccessToken());
+        assertNotNull(clientReadResponse.getRegistrationClientUri());
+        assertNotNull(clientReadResponse.getClientSecretExpiresAt());
+        assertNotNull(clientReadResponse.getClaims().get(APPLICATION_TYPE.toString()));
+        assertNotNull(clientReadResponse.getClaims().get(SUBJECT_TYPE.toString()));
+        assertNotNull(clientReadResponse.getClaims().get(ID_TOKEN_SIGNED_RESPONSE_ALG.toString()));
+        assertNotNull(clientReadResponse.getClaims().get(CLIENT_NAME.toString()));
+        assertNotNull(clientReadResponse.getClaims().get(SCOPE.toString()));
+
+        assertTrue(clientReadResponse.getClaims().containsKey(BACKCHANNEL_TOKEN_DELIVERY_MODE.toString()));
+        assertTrue(clientReadResponse.getClaims().containsKey(BACKCHANNEL_AUTHENTICATION_REQUEST_SIGNING_ALG.toString()));
+        assertTrue(clientReadResponse.getClaims().containsKey(BACKCHANNEL_USER_CODE_PARAMETER.toString()));
+        assertTrue(clientReadResponse.getClaims().containsKey(BACKCHANNEL_CLIENT_NOTIFICATION_ENDPOINT.toString()));
+        assertEquals(clientReadResponse.getClaims().get(BACKCHANNEL_TOKEN_DELIVERY_MODE.toString()), BackchannelTokenDeliveryMode.PUSH.getValue());
+        assertEquals(clientReadResponse.getClaims().get(BACKCHANNEL_AUTHENTICATION_REQUEST_SIGNING_ALG.toString()), AsymmetricSignatureAlgorithm.RS256.getValue());
+        assertEquals(clientReadResponse.getClaims().get(BACKCHANNEL_USER_CODE_PARAMETER.toString()), new Boolean(true).toString());
+    }
+
+    @Parameters({"sectorIdentifierUri", "backchannelClientNotificationEndpoint"})
+    @Test
+    public void backchannelTokenDeliveryModePush2(final String sectorIdentifierUri, final String backchannelClientNotificationEndpoint) {
+        showTitle("backchannelTokenDeliveryModePush2");
+
+        // 1. Dynamic Client Registration
+        RegisterRequest registerRequest = new RegisterRequest(ApplicationType.WEB, "oxAuth test app", null);
+        registerRequest.setSectorIdentifierUri(sectorIdentifierUri);
+        registerRequest.setGrantTypes(Arrays.asList(GrantType.CIBA));
+
+        registerRequest.setBackchannelTokenDeliveryMode(BackchannelTokenDeliveryMode.PUSH);
+        registerRequest.setBackchannelClientNotificationEndpoint(backchannelClientNotificationEndpoint);
+        registerRequest.setBackchannelAuthenticationRequestSigningAlg(AsymmetricSignatureAlgorithm.RS256);
+        registerRequest.setBackchannelUserCodeParameter(true);
+
+        RegisterClient registerClient = new RegisterClient(registrationEndpoint);
+        registerClient.setRequest(registerRequest);
+        RegisterResponse registerResponse = registerClient.exec();
+
+        showClient(registerClient);
+        assertEquals(registerResponse.getStatus(), 200, "Unexpected response code: " + registerResponse.getEntity());
+        assertNotNull(registerResponse.getClientId());
+        assertNotNull(registerResponse.getClientSecret());
+        assertNotNull(registerResponse.getRegistrationAccessToken());
+        assertNotNull(registerResponse.getClientSecretExpiresAt());
+
+        assertTrue(registerResponse.getClaims().containsKey(SECTOR_IDENTIFIER_URI.toString()));
+        assertTrue(registerResponse.getClaims().containsKey(BACKCHANNEL_TOKEN_DELIVERY_MODE.toString()));
+        assertTrue(registerResponse.getClaims().containsKey(BACKCHANNEL_AUTHENTICATION_REQUEST_SIGNING_ALG.toString()));
+        assertTrue(registerResponse.getClaims().containsKey(BACKCHANNEL_USER_CODE_PARAMETER.toString()));
+        assertTrue(registerResponse.getClaims().containsKey(BACKCHANNEL_CLIENT_NOTIFICATION_ENDPOINT.toString()));
+        assertEquals(registerResponse.getClaims().get(BACKCHANNEL_TOKEN_DELIVERY_MODE.toString()), BackchannelTokenDeliveryMode.PUSH.getValue());
+        assertEquals(registerResponse.getClaims().get(BACKCHANNEL_AUTHENTICATION_REQUEST_SIGNING_ALG.toString()), AsymmetricSignatureAlgorithm.RS256.getValue());
+        assertEquals(registerResponse.getClaims().get(BACKCHANNEL_USER_CODE_PARAMETER.toString()), new Boolean(true).toString());
+
+        String registrationAccessToken = registerResponse.getRegistrationAccessToken();
+        String registrationClientUri = registerResponse.getRegistrationClientUri();
+
+        // 2. Client Read
+        RegisterRequest clientReadRequest = new RegisterRequest(registrationAccessToken);
+
+        RegisterClient clientReadClient = new RegisterClient(registrationClientUri);
+        clientReadClient.setRequest(clientReadRequest);
+        RegisterResponse clientReadResponse = clientReadClient.exec();
+
+        showClient(clientReadClient);
+        assertEquals(clientReadResponse.getStatus(), 200, "Unexpected response code: " + clientReadResponse.getEntity());
+        assertNotNull(clientReadResponse.getClientId());
+        assertNotNull(clientReadResponse.getClientSecret());
+        assertNotNull(clientReadResponse.getRegistrationAccessToken());
+        assertNotNull(clientReadResponse.getRegistrationClientUri());
+        assertNotNull(clientReadResponse.getClientSecretExpiresAt());
+        assertNotNull(clientReadResponse.getClaims().get(APPLICATION_TYPE.toString()));
+        assertNotNull(clientReadResponse.getClaims().get(SECTOR_IDENTIFIER_URI.toString()));
+        assertNotNull(clientReadResponse.getClaims().get(SUBJECT_TYPE.toString()));
+        assertNotNull(clientReadResponse.getClaims().get(ID_TOKEN_SIGNED_RESPONSE_ALG.toString()));
+        assertNotNull(clientReadResponse.getClaims().get(CLIENT_NAME.toString()));
+        assertNotNull(clientReadResponse.getClaims().get(SCOPE.toString()));
+
+        assertTrue(clientReadResponse.getClaims().containsKey(SECTOR_IDENTIFIER_URI.toString()));
+        assertTrue(clientReadResponse.getClaims().containsKey(BACKCHANNEL_TOKEN_DELIVERY_MODE.toString()));
+        assertTrue(clientReadResponse.getClaims().containsKey(BACKCHANNEL_AUTHENTICATION_REQUEST_SIGNING_ALG.toString()));
+        assertTrue(clientReadResponse.getClaims().containsKey(BACKCHANNEL_USER_CODE_PARAMETER.toString()));
+        assertTrue(clientReadResponse.getClaims().containsKey(BACKCHANNEL_CLIENT_NOTIFICATION_ENDPOINT.toString()));
+        assertEquals(clientReadResponse.getClaims().get(BACKCHANNEL_TOKEN_DELIVERY_MODE.toString()), BackchannelTokenDeliveryMode.PUSH.getValue());
+        assertEquals(clientReadResponse.getClaims().get(BACKCHANNEL_AUTHENTICATION_REQUEST_SIGNING_ALG.toString()), AsymmetricSignatureAlgorithm.RS256.getValue());
+        assertEquals(clientReadResponse.getClaims().get(BACKCHANNEL_USER_CODE_PARAMETER.toString()), new Boolean(true).toString());
+    }
+
+    @Parameters({"backchannelClientNotificationEndpoint"})
+    @Test
+    public void backchannelTokenDeliveryModePush3(final String backchannelClientNotificationEndpoint) {
+        showTitle("backchannelTokenDeliveryModePush3");
+
+        // 1. Dynamic Client Registration
+        RegisterRequest registerRequest = new RegisterRequest(ApplicationType.WEB, "oxAuth test app", null);
+        registerRequest.setSubjectType(SubjectType.PUBLIC);
+        registerRequest.setGrantTypes(Arrays.asList(GrantType.CIBA));
+
+        registerRequest.setBackchannelTokenDeliveryMode(BackchannelTokenDeliveryMode.PUSH);
+        registerRequest.setBackchannelClientNotificationEndpoint(backchannelClientNotificationEndpoint);
+        registerRequest.setBackchannelAuthenticationRequestSigningAlg(AsymmetricSignatureAlgorithm.RS256);
+        registerRequest.setBackchannelUserCodeParameter(true);
+
+        RegisterClient registerClient = new RegisterClient(registrationEndpoint);
+        registerClient.setRequest(registerRequest);
+        RegisterResponse registerResponse = registerClient.exec();
+
+        showClient(registerClient);
+        assertEquals(registerResponse.getStatus(), 200, "Unexpected response code: " + registerResponse.getEntity());
+        assertNotNull(registerResponse.getClientId());
+        assertNotNull(registerResponse.getClientSecret());
+        assertNotNull(registerResponse.getRegistrationAccessToken());
+        assertNotNull(registerResponse.getClientSecretExpiresAt());
+
+        assertTrue(registerResponse.getClaims().containsKey(BACKCHANNEL_TOKEN_DELIVERY_MODE.toString()));
+        assertTrue(registerResponse.getClaims().containsKey(BACKCHANNEL_AUTHENTICATION_REQUEST_SIGNING_ALG.toString()));
+        assertTrue(registerResponse.getClaims().containsKey(BACKCHANNEL_USER_CODE_PARAMETER.toString()));
+        assertTrue(registerResponse.getClaims().containsKey(BACKCHANNEL_CLIENT_NOTIFICATION_ENDPOINT.toString()));
+        assertEquals(registerResponse.getClaims().get(BACKCHANNEL_TOKEN_DELIVERY_MODE.toString()), BackchannelTokenDeliveryMode.PUSH.getValue());
+        assertEquals(registerResponse.getClaims().get(BACKCHANNEL_AUTHENTICATION_REQUEST_SIGNING_ALG.toString()), AsymmetricSignatureAlgorithm.RS256.getValue());
+        assertEquals(registerResponse.getClaims().get(BACKCHANNEL_USER_CODE_PARAMETER.toString()), new Boolean(true).toString());
+
+        String registrationAccessToken = registerResponse.getRegistrationAccessToken();
+        String registrationClientUri = registerResponse.getRegistrationClientUri();
+
+        // 2. Client Read
+        RegisterRequest clientReadRequest = new RegisterRequest(registrationAccessToken);
+
+        RegisterClient clientReadClient = new RegisterClient(registrationClientUri);
+        clientReadClient.setRequest(clientReadRequest);
+        RegisterResponse clientReadResponse = clientReadClient.exec();
+
+        showClient(clientReadClient);
+        assertEquals(clientReadResponse.getStatus(), 200, "Unexpected response code: " + clientReadResponse.getEntity());
+        assertNotNull(clientReadResponse.getClientId());
+        assertNotNull(clientReadResponse.getClientSecret());
+        assertNotNull(clientReadResponse.getRegistrationAccessToken());
+        assertNotNull(clientReadResponse.getRegistrationClientUri());
+        assertNotNull(clientReadResponse.getClientSecretExpiresAt());
+        assertNotNull(clientReadResponse.getClaims().get(APPLICATION_TYPE.toString()));
+        assertNotNull(clientReadResponse.getClaims().get(SUBJECT_TYPE.toString()));
+        assertNotNull(clientReadResponse.getClaims().get(ID_TOKEN_SIGNED_RESPONSE_ALG.toString()));
+        assertNotNull(clientReadResponse.getClaims().get(CLIENT_NAME.toString()));
+        assertNotNull(clientReadResponse.getClaims().get(SCOPE.toString()));
+
+        assertTrue(clientReadResponse.getClaims().containsKey(BACKCHANNEL_TOKEN_DELIVERY_MODE.toString()));
+        assertTrue(clientReadResponse.getClaims().containsKey(BACKCHANNEL_AUTHENTICATION_REQUEST_SIGNING_ALG.toString()));
+        assertTrue(clientReadResponse.getClaims().containsKey(BACKCHANNEL_USER_CODE_PARAMETER.toString()));
+        assertTrue(clientReadResponse.getClaims().containsKey(BACKCHANNEL_CLIENT_NOTIFICATION_ENDPOINT.toString()));
+        assertEquals(clientReadResponse.getClaims().get(BACKCHANNEL_TOKEN_DELIVERY_MODE.toString()), BackchannelTokenDeliveryMode.PUSH.getValue());
+        assertEquals(clientReadResponse.getClaims().get(BACKCHANNEL_AUTHENTICATION_REQUEST_SIGNING_ALG.toString()), AsymmetricSignatureAlgorithm.RS256.getValue());
+        assertEquals(clientReadResponse.getClaims().get(BACKCHANNEL_USER_CODE_PARAMETER.toString()), new Boolean(true).toString());
+    }
+
+    @Parameters({"sectorIdentifierUri", "backchannelClientNotificationEndpoint"})
+    @Test
+    public void backchannelTokenDeliveryModePush4(final String sectorIdentifierUri, final String backchannelClientNotificationEndpoint) {
+        showTitle("backchannelTokenDeliveryModePush4");
+
+        // 1. Dynamic Client Registration
+        RegisterRequest registerRequest = new RegisterRequest(ApplicationType.WEB, "oxAuth test app", null);
+
+        RegisterClient registerClient = new RegisterClient(registrationEndpoint);
+        registerClient.setRequest(registerRequest);
+        RegisterResponse registerResponse = registerClient.exec();
+
+        showClient(registerClient);
+        assertEquals(registerResponse.getStatus(), 200, "Unexpected response code: " + registerResponse.getEntity());
+        assertNotNull(registerResponse.getClientId());
+        assertNotNull(registerResponse.getClientSecret());
+        assertNotNull(registerResponse.getRegistrationAccessToken());
+        assertNotNull(registerResponse.getClientSecretExpiresAt());
+
+        String registrationAccessToken = registerResponse.getRegistrationAccessToken();
+        String registrationClientUri = registerResponse.getRegistrationClientUri();
+
+        // 2. Client Read
+        RegisterRequest clientReadRequest = new RegisterRequest(registrationAccessToken);
+
+        RegisterClient clientReadClient = new RegisterClient(registrationClientUri);
+        clientReadClient.setRequest(clientReadRequest);
+        RegisterResponse clientReadResponse = clientReadClient.exec();
+
+        showClient(clientReadClient);
+        assertEquals(clientReadResponse.getStatus(), 200, "Unexpected response code: " + clientReadResponse.getEntity());
+        assertNotNull(clientReadResponse.getClientId());
+        assertNotNull(clientReadResponse.getClientSecret());
+        assertNotNull(clientReadResponse.getRegistrationAccessToken());
+        assertNotNull(clientReadResponse.getRegistrationClientUri());
+        assertNotNull(clientReadResponse.getClientSecretExpiresAt());
+        assertNotNull(clientReadResponse.getClaims().get(APPLICATION_TYPE.toString()));
+        assertNotNull(clientReadResponse.getClaims().get(SUBJECT_TYPE.toString()));
+        assertNotNull(clientReadResponse.getClaims().get(ID_TOKEN_SIGNED_RESPONSE_ALG.toString()));
+        assertNotNull(clientReadResponse.getClaims().get(CLIENT_NAME.toString()));
+        assertNotNull(clientReadResponse.getClaims().get(SCOPE.toString()));
+
+        // 3. Client Update
+        RegisterRequest clientUpdateRequest = new RegisterRequest(registrationAccessToken);
+        clientUpdateRequest.setHttpMethod(HttpMethod.PUT);
+
+        clientUpdateRequest.setSectorIdentifierUri(sectorIdentifierUri);
+        clientUpdateRequest.setGrantTypes(Arrays.asList(GrantType.CIBA));
+
+        clientUpdateRequest.setBackchannelTokenDeliveryMode(BackchannelTokenDeliveryMode.PUSH);
+        clientUpdateRequest.setBackchannelClientNotificationEndpoint(backchannelClientNotificationEndpoint);
+        clientUpdateRequest.setBackchannelAuthenticationRequestSigningAlg(AsymmetricSignatureAlgorithm.RS256);
+        clientUpdateRequest.setBackchannelUserCodeParameter(true);
+
+        RegisterClient clientUpdateClient = new RegisterClient(registrationClientUri);
+        clientUpdateClient.setRequest(clientUpdateRequest);
+
+        RegisterResponse clientUpdateResponse = clientUpdateClient.exec();
+
+        showClient(clientUpdateClient);
+        assertEquals(clientUpdateResponse.getStatus(), 200, "Unexpected response code: " + clientUpdateResponse.getEntity());
+        assertNotNull(clientUpdateResponse.getClientId());
+        assertNotNull(clientUpdateResponse.getClientSecret());
+        assertNotNull(clientUpdateResponse.getRegistrationAccessToken());
+        assertNotNull(clientUpdateResponse.getRegistrationClientUri());
+        assertNotNull(clientUpdateResponse.getClientSecretExpiresAt());
+        assertNotNull(clientUpdateResponse.getClaims().get(APPLICATION_TYPE.toString()));
+        assertNotNull(clientUpdateResponse.getClaims().get(SECTOR_IDENTIFIER_URI.toString()));
+        assertNotNull(clientUpdateResponse.getClaims().get(SUBJECT_TYPE.toString()));
+        assertNotNull(clientUpdateResponse.getClaims().get(ID_TOKEN_SIGNED_RESPONSE_ALG.toString()));
+        assertNotNull(clientUpdateResponse.getClaims().get(CLIENT_NAME.toString()));
+        assertNotNull(clientUpdateResponse.getClaims().get(SCOPE.toString()));
+
+        assertTrue(clientUpdateResponse.getClaims().containsKey(SECTOR_IDENTIFIER_URI.toString()));
+        assertTrue(clientUpdateResponse.getClaims().containsKey(BACKCHANNEL_TOKEN_DELIVERY_MODE.toString()));
+        assertTrue(clientUpdateResponse.getClaims().containsKey(BACKCHANNEL_AUTHENTICATION_REQUEST_SIGNING_ALG.toString()));
+        assertTrue(clientUpdateResponse.getClaims().containsKey(BACKCHANNEL_USER_CODE_PARAMETER.toString()));
+        assertTrue(clientUpdateResponse.getClaims().containsKey(BACKCHANNEL_CLIENT_NOTIFICATION_ENDPOINT.toString()));
+        assertEquals(clientUpdateResponse.getClaims().get(BACKCHANNEL_TOKEN_DELIVERY_MODE.toString()), BackchannelTokenDeliveryMode.PUSH.getValue());
+        assertEquals(clientUpdateResponse.getClaims().get(BACKCHANNEL_AUTHENTICATION_REQUEST_SIGNING_ALG.toString()), AsymmetricSignatureAlgorithm.RS256.getValue());
+        assertEquals(clientUpdateResponse.getClaims().get(BACKCHANNEL_USER_CODE_PARAMETER.toString()), new Boolean(true).toString());
+    }
+
+    @Parameters({"clientJwksUri"})
+    @Test
+    public void registrationFail1(final String clientJwksUri) {
+        showTitle("registrationFail1");
+
+        RegisterRequest registerRequest = new RegisterRequest(ApplicationType.WEB, "oxAuth test app", null);
+        registerRequest.setJwksUri(clientJwksUri);
+        registerRequest.setGrantTypes(Arrays.asList(GrantType.CIBA));
+
+        registerRequest.setBackchannelTokenDeliveryMode(null); // Missing backchannel_token_delivery_mode
+        registerRequest.setBackchannelAuthenticationRequestSigningAlg(AsymmetricSignatureAlgorithm.RS256);
+        registerRequest.setBackchannelUserCodeParameter(true);
+
+        RegisterClient registerClient = new RegisterClient(registrationEndpoint);
+        registerClient.setRequest(registerRequest);
+        RegisterResponse response = registerClient.exec();
+
+        showClient(registerClient);
+        assertEquals(response.getStatus(), 400, "Unexpected response code: " + response.getEntity());
+        assertNotNull(response.getEntity(), "The entity is null");
+        assertNotNull(response.getErrorType(), "The error type is null");
+        assertNotNull(response.getErrorDescription(), "The error description is null");
+    }
+
+    @Parameters({"clientJwksUri"})
+    @Test
+    public void registrationFail2(final String clientJwksUri) {
+        showTitle("registrationFail2");
+
+        RegisterRequest registerRequest = new RegisterRequest(ApplicationType.WEB, "oxAuth test app", null);
+        registerRequest.setJwksUri(clientJwksUri);
+        registerRequest.setGrantTypes(Arrays.asList(GrantType.CIBA));
+
+        registerRequest.setBackchannelTokenDeliveryMode(BackchannelTokenDeliveryMode.PING);
+        registerRequest.setBackchannelClientNotificationEndpoint(null); // Missing backchannel_client_notification_endpoint
+        registerRequest.setBackchannelAuthenticationRequestSigningAlg(AsymmetricSignatureAlgorithm.RS256);
+        registerRequest.setBackchannelUserCodeParameter(true);
+
+        RegisterClient registerClient = new RegisterClient(registrationEndpoint);
+        registerClient.setRequest(registerRequest);
+        RegisterResponse response = registerClient.exec();
+
+        showClient(registerClient);
+        assertEquals(response.getStatus(), 400, "Unexpected response code: " + response.getEntity());
+        assertNotNull(response.getEntity(), "The entity is null");
+        assertNotNull(response.getErrorType(), "The error type is null");
+        assertNotNull(response.getErrorDescription(), "The error description is null");
+    }
+
+    @Parameters({"clientJwksUri"})
+    @Test
+    public void registrationFail3(final String clientJwksUri) {
+        showTitle("registration3");
+
+        RegisterRequest registerRequest = new RegisterRequest(ApplicationType.WEB, "oxAuth test app", null);
+        registerRequest.setJwksUri(clientJwksUri);
+        registerRequest.setGrantTypes(Arrays.asList(GrantType.CIBA));
+
+        registerRequest.setBackchannelTokenDeliveryMode(BackchannelTokenDeliveryMode.PUSH);
+        registerRequest.setBackchannelClientNotificationEndpoint(null); // Missing backchannel_client_notification_endpoint
+        registerRequest.setBackchannelAuthenticationRequestSigningAlg(AsymmetricSignatureAlgorithm.RS256);
+        registerRequest.setBackchannelUserCodeParameter(true);
+
+        RegisterClient registerClient = new RegisterClient(registrationEndpoint);
+        registerClient.setRequest(registerRequest);
+        RegisterResponse response = registerClient.exec();
+
+        showClient(registerClient);
+        assertEquals(response.getStatus(), 400, "Unexpected response code: " + response.getEntity());
+        assertNotNull(response.getEntity(), "The entity is null");
+        assertNotNull(response.getErrorType(), "The error type is null");
+        assertNotNull(response.getErrorDescription(), "The error description is null");
+    }
+
+    @Parameters({"clientJwksUri", "backchannelClientNotificationEndpoint"})
+    @Test
+    public void registrationFail4(final String clientJwksUri, final String backchannelClientNotificationEndpoint) {
+        showTitle("registrationFail4");
+
+        RegisterRequest registerRequest = new RegisterRequest(ApplicationType.WEB, "oxAuth test app", null);
+        registerRequest.setJwksUri(clientJwksUri);
+        registerRequest.setGrantTypes(Arrays.asList()); // Missing  grant type urn:openid:params:grant-type:ciba
+
+        registerRequest.setBackchannelTokenDeliveryMode(BackchannelTokenDeliveryMode.PING);
+        registerRequest.setBackchannelClientNotificationEndpoint(backchannelClientNotificationEndpoint);
+        registerRequest.setBackchannelAuthenticationRequestSigningAlg(AsymmetricSignatureAlgorithm.RS256);
+        registerRequest.setBackchannelUserCodeParameter(true);
+
+        RegisterClient registerClient = new RegisterClient(registrationEndpoint);
+        registerClient.setRequest(registerRequest);
+        RegisterResponse response = registerClient.exec();
+
+        showClient(registerClient);
+        assertEquals(response.getStatus(), 400, "Unexpected response code: " + response.getEntity());
+        assertNotNull(response.getEntity(), "The entity is null");
+        assertNotNull(response.getErrorType(), "The error type is null");
+        assertNotNull(response.getErrorDescription(), "The error description is null");
+    }
+
+    @Parameters({"clientJwksUri", "backchannelClientNotificationEndpoint"})
+    @Test
+    public void registrationFail5(final String clientJwksUri, final String backchannelClientNotificationEndpoint) {
+        showTitle("registrationFail5");
+
+        RegisterRequest registerRequest = new RegisterRequest(ApplicationType.WEB, "oxAuth test app", null);
+        registerRequest.setJwksUri(clientJwksUri);
+        registerRequest.setGrantTypes(Arrays.asList()); // Missing  grant type urn:openid:params:grant-type:ciba
+
+        registerRequest.setBackchannelTokenDeliveryMode(BackchannelTokenDeliveryMode.POLL);
+        registerRequest.setBackchannelClientNotificationEndpoint(backchannelClientNotificationEndpoint);
+        registerRequest.setBackchannelAuthenticationRequestSigningAlg(AsymmetricSignatureAlgorithm.RS256);
+        registerRequest.setBackchannelUserCodeParameter(true);
+
+        RegisterClient registerClient = new RegisterClient(registrationEndpoint);
+        registerClient.setRequest(registerRequest);
+        RegisterResponse response = registerClient.exec();
+
+        showClient(registerClient);
+        assertEquals(response.getStatus(), 400, "Unexpected response code: " + response.getEntity());
+        assertNotNull(response.getEntity(), "The entity is null");
+        assertNotNull(response.getErrorType(), "The error type is null");
+        assertNotNull(response.getErrorDescription(), "The error description is null");
+    }
+
+    @Parameters({"backchannelClientNotificationEndpoint"})
+    @Test
+    public void registrationFail6(final String backchannelClientNotificationEndpoint) {
+        showTitle("registrationFail6");
+
+        RegisterRequest registerRequest = new RegisterRequest(ApplicationType.WEB, "oxAuth test app", null);
+        registerRequest.setJwksUri(null); // Missing jwks_uri
+        registerRequest.setGrantTypes(Arrays.asList(GrantType.CIBA));
+
+        registerRequest.setBackchannelTokenDeliveryMode(BackchannelTokenDeliveryMode.PING);
+        registerRequest.setBackchannelClientNotificationEndpoint(backchannelClientNotificationEndpoint);
+        registerRequest.setBackchannelAuthenticationRequestSigningAlg(AsymmetricSignatureAlgorithm.RS256);
+        registerRequest.setBackchannelUserCodeParameter(true);
+
+        RegisterClient registerClient = new RegisterClient(registrationEndpoint);
+        registerClient.setRequest(registerRequest);
+        RegisterResponse response = registerClient.exec();
+
+        showClient(registerClient);
+        assertEquals(response.getStatus(), 400, "Unexpected response code: " + response.getEntity());
+        assertNotNull(response.getEntity(), "The entity is null");
+        assertNotNull(response.getErrorType(), "The error type is null");
+        assertNotNull(response.getErrorDescription(), "The error description is null");
+    }
+
+    @Parameters({"backchannelClientNotificationEndpoint"})
+    @Test
+    public void registrationFail7(final String backchannelClientNotificationEndpoint) {
+        showTitle("registrationFail7");
+
+        RegisterRequest registerRequest = new RegisterRequest(ApplicationType.WEB, "oxAuth test app", null);
+        registerRequest.setJwksUri(null); // Missing jwks_uri
+        registerRequest.setGrantTypes(Arrays.asList(GrantType.CIBA));
+
+        registerRequest.setBackchannelTokenDeliveryMode(BackchannelTokenDeliveryMode.POLL);
+        registerRequest.setBackchannelClientNotificationEndpoint(backchannelClientNotificationEndpoint);
+        registerRequest.setBackchannelAuthenticationRequestSigningAlg(AsymmetricSignatureAlgorithm.RS256);
+        registerRequest.setBackchannelUserCodeParameter(true);
+
+        RegisterClient registerClient = new RegisterClient(registrationEndpoint);
+        registerClient.setRequest(registerRequest);
+        RegisterResponse response = registerClient.exec();
+
+        showClient(registerClient);
+        assertEquals(response.getStatus(), 400, "Unexpected response code: " + response.getEntity());
+        assertNotNull(response.getEntity(), "The entity is null");
+        assertNotNull(response.getErrorType(), "The error type is null");
+        assertNotNull(response.getErrorDescription(), "The error description is null");
+    }
+}
\ No newline at end of file
diff --git a/oxAuth/Client/src/test/java/org/gluu/oxauth/client/Asserter.java b/oxAuth/Client/src/test/java/org/gluu/oxauth/client/Asserter.java
new file mode 100644
index 00000000..8a6021b2
--- /dev/null
+++ b/oxAuth/Client/src/test/java/org/gluu/oxauth/client/Asserter.java
@@ -0,0 +1,50 @@
+package org.gluu.oxauth.client;
+
+import static org.testng.Assert.assertEquals;
+import static org.testng.Assert.assertNotNull;
+
+import org.gluu.oxauth.model.jwt.Jwt;
+import org.gluu.oxauth.model.jwt.JwtClaimName;
+import org.gluu.oxauth.model.jwt.JwtHeaderName;
+
+/**
+ * @author Yuriy Zabrovarnyy
+ * @version 0.9, 25/03/2016
+ */
+
+public class Asserter {
+
+    private Asserter() {
+    }
+
+    public static void assertOk(RegisterResponse registerResponse) {
+        assertEquals(registerResponse.getStatus(), 200, "Unexpected response code: " + registerResponse.getEntity());
+        assertNotNull(registerResponse.getClientId());
+        assertNotNull(registerResponse.getClientSecret());
+        assertNotNull(registerResponse.getClientIdIssuedAt());
+        assertNotNull(registerResponse.getClientSecretExpiresAt());
+    }
+
+    public static void assertIdToken(Jwt idToken, String... claimsPresence) {
+        assertNotNull(idToken);
+        assertNotNull(idToken.getHeader().getClaimAsString(JwtHeaderName.TYPE));
+        assertNotNull(idToken.getHeader().getClaimAsString(JwtHeaderName.ALGORITHM));
+        assertNotNull(idToken.getClaims().getClaimAsString(JwtClaimName.ISSUER));
+        assertNotNull(idToken.getClaims().getClaimAsString(JwtClaimName.AUDIENCE));
+        assertNotNull(idToken.getClaims().getClaimAsString(JwtClaimName.EXPIRATION_TIME));
+        assertNotNull(idToken.getClaims().getClaimAsString(JwtClaimName.ISSUED_AT));
+        assertNotNull(idToken.getClaims().getClaimAsString(JwtClaimName.SUBJECT_IDENTIFIER));
+        assertNotNull(idToken.getClaims().getClaimAsString(JwtClaimName.AUTHENTICATION_TIME));
+        assertNotNull(idToken.getClaims().getClaimAsString(JwtClaimName.OX_OPENID_CONNECT_VERSION));
+        assertNotNull(idToken.getClaims().getClaimAsString(JwtClaimName.AUTHENTICATION_CONTEXT_CLASS_REFERENCE));
+        assertNotNull(idToken.getClaims().getClaimAsString(JwtClaimName.AUTHENTICATION_METHOD_REFERENCES));
+
+        if (claimsPresence == null) {
+            return;
+        }
+
+        for (String claim : claimsPresence) {
+            assertNotNull(claim, "Claim " + claim + " is not found in id_token. ");
+        }
+    }
+}
diff --git a/oxAuth/Client/src/test/java/org/gluu/oxauth/client/JSONObjectAsserter.java b/oxAuth/Client/src/test/java/org/gluu/oxauth/client/JSONObjectAsserter.java
new file mode 100644
index 00000000..50858203
--- /dev/null
+++ b/oxAuth/Client/src/test/java/org/gluu/oxauth/client/JSONObjectAsserter.java
@@ -0,0 +1,41 @@
+package org.gluu.oxauth.client;
+
+import static org.testng.Assert.assertTrue;
+import static org.testng.AssertJUnit.assertNotNull;
+
+import org.apache.commons.lang.ArrayUtils;
+import org.json.JSONObject;
+
+import com.google.common.base.Preconditions;
+
+/**
+ * @author yuriyz
+ */
+public class JSONObjectAsserter {
+
+    private JSONObject json;
+
+    private JSONObjectAsserter(JSONObject json) {
+        Preconditions.checkNotNull(json);
+        this.json = json;
+    }
+
+    public static JSONObjectAsserter of(JSONObject json) {
+        assertNotNull(json);
+        return new JSONObjectAsserter(json);
+    }
+
+    public JSONObjectAsserter hasKeys(String... keys) {
+        if (!ArrayUtils.isEmpty(keys)) {
+            for (String key : keys) {
+                assertTrue(json.has(key));
+            }
+        }
+
+        return this;
+    }
+
+    public JSONObject getJson() {
+        return json;
+    }
+}
diff --git a/oxAuth/Client/src/test/java/org/gluu/oxauth/client/RegisterRequestTest.java b/oxAuth/Client/src/test/java/org/gluu/oxauth/client/RegisterRequestTest.java
new file mode 100644
index 00000000..70e10f8b
--- /dev/null
+++ b/oxAuth/Client/src/test/java/org/gluu/oxauth/client/RegisterRequestTest.java
@@ -0,0 +1,41 @@
+package org.gluu.oxauth.client;
+
+import static org.testng.Assert.assertEquals;
+
+import org.json.JSONArray;
+import org.json.JSONObject;
+import org.testng.annotations.Test;
+
+import com.google.common.collect.Lists;
+
+/**
+ * @author Yuriy Zabrovarnyy
+ */
+public class RegisterRequestTest {
+
+    @Test
+    public void getParameters_forAdditionalAudience_shouldReturnCorrectValue() {
+        RegisterRequest request = new RegisterRequest();
+        request.setAdditionalAudience(Lists.newArrayList("aud1", "aud2"));
+
+        assertEquals(new JSONArray(Lists.newArrayList("aud1", "aud2")).toString(), request.getParameters().get("additional_audience"));
+    }
+
+    @Test
+    public void fromJson_forAdditionalAudience_shouldReturnCorrectValue() {
+        JSONObject jsonObject = new JSONObject();
+        jsonObject.put("additional_audience", new JSONArray(Lists.newArrayList("aud1", "aud2")));
+
+        final RegisterRequest registerRequest = RegisterRequest.fromJson(jsonObject.toString(), true);
+
+        assertEquals(Lists.newArrayList("aud1", "aud2"), registerRequest.getAdditionalAudience());
+    }
+
+    @Test
+    public void getJSONParameters_forAdditionalAudience_shouldReturnCorrectValue() {
+        RegisterRequest request = new RegisterRequest();
+        request.setAdditionalAudience(Lists.newArrayList("aud1", "aud2"));
+
+        assertEquals(new JSONArray(Lists.newArrayList("aud1", "aud2")), request.getJSONParameters().getJSONArray("additional_audience"));
+    }
+}
diff --git a/oxAuth/Client/src/test/java/org/gluu/oxauth/client/ResponseAsserter.java b/oxAuth/Client/src/test/java/org/gluu/oxauth/client/ResponseAsserter.java
new file mode 100644
index 00000000..d976d9ef
--- /dev/null
+++ b/oxAuth/Client/src/test/java/org/gluu/oxauth/client/ResponseAsserter.java
@@ -0,0 +1,77 @@
+package org.gluu.oxauth.client;
+
+import static org.gluu.oxauth.model.register.RegisterResponseParam.CLIENT_ID_ISSUED_AT;
+import static org.gluu.oxauth.model.register.RegisterResponseParam.CLIENT_SECRET;
+import static org.gluu.oxauth.model.register.RegisterResponseParam.CLIENT_SECRET_EXPIRES_AT;
+import static org.gluu.oxauth.model.register.RegisterResponseParam.REGISTRATION_ACCESS_TOKEN;
+import static org.gluu.oxauth.model.register.RegisterResponseParam.REGISTRATION_CLIENT_URI;
+import static org.testng.Assert.assertEquals;
+import static org.testng.Assert.fail;
+
+import org.gluu.oxauth.model.register.RegisterResponseParam;
+import org.json.JSONException;
+import org.json.JSONObject;
+
+/**
+ * @author yuriyz
+ */
+public class ResponseAsserter {
+
+    private final int status;
+    private final String entity;
+
+    private JSONObjectAsserter json;
+
+    public ResponseAsserter(int status, String entity) {
+        this.status = status;
+        this.entity = entity;
+    }
+
+    public static ResponseAsserter of(int status, String entity) {
+        return new ResponseAsserter(status, entity);
+    }
+
+    public ResponseAsserter assertStatus(int expectedStatusCode) {
+        assertEquals(status, expectedStatusCode, "Unexpected status code: " + status);
+        return this;
+    }
+
+    public ResponseAsserter assertStatusOk() {
+        assertStatus(200);
+        return this;
+    }
+
+    public JSONObjectAsserter assertJsonObject() {
+        try {
+            return JSONObjectAsserter.of(new JSONObject(entity));
+        } catch (JSONException e) {
+            fail(e.getMessage() + "\nResponse was: " + entity, e);
+            throw new RuntimeException(e);
+        }
+    }
+
+    public ResponseAsserter assertRegisterResponse() {
+        assertStatusOk();
+        json = assertJsonObject();
+        json.hasKeys(RegisterResponseParam.CLIENT_ID.toString(),
+                CLIENT_SECRET.toString(),
+                REGISTRATION_ACCESS_TOKEN.toString(),
+                REGISTRATION_CLIENT_URI.toString(),
+                CLIENT_ID_ISSUED_AT.toString(),
+                CLIENT_SECRET_EXPIRES_AT.toString()
+        );
+        return this;
+    }
+
+    public JSONObjectAsserter getJson() {
+        return json;
+    }
+
+    public int getStatus() {
+        return status;
+    }
+
+    public String getEntity() {
+        return entity;
+    }
+}
diff --git a/oxAuth/Client/src/test/java/org/gluu/oxauth/dev/.gitignore b/oxAuth/Client/src/test/java/org/gluu/oxauth/dev/.gitignore
new file mode 100644
index 00000000..2c553cb4
--- /dev/null
+++ b/oxAuth/Client/src/test/java/org/gluu/oxauth/dev/.gitignore
@@ -0,0 +1 @@
+/local
diff --git a/oxAuth/Client/src/test/java/org/gluu/oxauth/dev/HostnameVerifierType.java b/oxAuth/Client/src/test/java/org/gluu/oxauth/dev/HostnameVerifierType.java
new file mode 100644
index 00000000..d527bdf3
--- /dev/null
+++ b/oxAuth/Client/src/test/java/org/gluu/oxauth/dev/HostnameVerifierType.java
@@ -0,0 +1,36 @@
+/*
+ * oxAuth is available under the MIT License (2008). See http://opensource.org/licenses/MIT for full text.
+ *
+ * Copyright (c) 2014, Gluu
+ */
+
+package org.gluu.oxauth.dev;
+
+import org.apache.commons.lang.StringUtils;
+
+/**
+ * @author Yuriy Zabrovarnyy
+ * @version 0.9, 27/09/2012
+ */
+
+public enum HostnameVerifierType {
+    DEFAULT("default"),
+    ALLOW_ALL("allow_all");
+
+    private final String value;
+
+    HostnameVerifierType(String value) {
+        this.value = value;
+    }
+
+    public static HostnameVerifierType fromString(String value) {
+        if (StringUtils.isNotBlank(value)) {
+            for (HostnameVerifierType v : values()) {
+                if (v.value.equals(value)) {
+                    return v;
+                }
+            }
+        }
+        return DEFAULT;
+    }
+}
diff --git a/oxAuth/Client/src/test/java/org/gluu/oxauth/dev/TestSessionWorkflow.java b/oxAuth/Client/src/test/java/org/gluu/oxauth/dev/TestSessionWorkflow.java
new file mode 100644
index 00000000..ceac29ba
--- /dev/null
+++ b/oxAuth/Client/src/test/java/org/gluu/oxauth/dev/TestSessionWorkflow.java
@@ -0,0 +1,165 @@
+/*
+ * oxAuth is available under the MIT License (2008). See http://opensource.org/licenses/MIT for full text.
+ *
+ * Copyright (c) 2014, Gluu
+ */
+
+package org.gluu.oxauth.dev;
+
+import java.util.Arrays;
+
+import org.apache.http.client.CookieStore;
+import org.apache.http.impl.client.BasicCookieStore;
+import org.apache.http.impl.client.DefaultHttpClient;
+import org.gluu.oxauth.BaseTest;
+import org.gluu.oxauth.client.AuthorizationRequest;
+import org.gluu.oxauth.client.AuthorizationResponse;
+import org.gluu.oxauth.client.AuthorizeClient;
+import org.gluu.oxauth.client.TokenClient;
+import org.gluu.oxauth.client.TokenResponse;
+import org.gluu.oxauth.client.UserInfoClient;
+import org.gluu.oxauth.client.UserInfoResponse;
+import org.gluu.oxauth.model.common.Prompt;
+import org.gluu.oxauth.model.common.ResponseType;
+import org.jboss.resteasy.client.jaxrs.engines.ApacheHttpClient43Engine;
+import org.testng.annotations.Parameters;
+import org.testng.annotations.Test;
+
+import junit.framework.Assert;
+
+/**
+ * @version August 9, 2017
+ */
+public class TestSessionWorkflow extends BaseTest {
+
+    @Parameters({"userId", "userSecret", "clientId", "clientSecret", "redirectUri"})
+    @Test
+    public void test(final String userId, final String userSecret,
+                     final String clientId, final String clientSecret,
+                     final String redirectUri) throws Exception {
+        DefaultHttpClient httpClient = new DefaultHttpClient();
+        try {
+            CookieStore cookieStore = new BasicCookieStore();
+            httpClient.setCookieStore(cookieStore);
+            ApacheHttpClient43Engine clientExecutor = new ApacheHttpClient43Engine(httpClient);
+
+            ////////////////////////////////////////////////
+            //             TV side. Code 1                //
+            ////////////////////////////////////////////////
+
+            AuthorizationRequest authorizationRequest1 = new AuthorizationRequest(
+                    Arrays.asList(ResponseType.CODE),
+                    clientId,
+                    Arrays.asList("openid", "profile", "email"),
+                    redirectUri,
+                    null);
+
+            authorizationRequest1.setAuthUsername(userId);
+            authorizationRequest1.setAuthPassword(userSecret);
+            authorizationRequest1.getPrompts().add(Prompt.NONE);
+            authorizationRequest1.setState("af0ifjsldkj");
+            authorizationRequest1.setRequestSessionId(true);
+
+            AuthorizeClient authorizeClient1 = new AuthorizeClient(authorizationEndpoint);
+            authorizeClient1.setRequest(authorizationRequest1);
+            AuthorizationResponse authorizationResponse1 = authorizeClient1.exec(clientExecutor);
+
+            //        showClient(authorizeClient1, cookieStore);
+
+            String code1 = authorizationResponse1.getCode();
+            String sessionId = authorizationResponse1.getSessionId();
+            Assert.assertNotNull("code1 is null", code1);
+            Assert.assertNotNull("sessionId is null", sessionId);
+
+            // TV sends the code to the Backend
+            // We don't use httpClient and cookieStore during this call
+
+
+            ////////////////////////////////////////////////
+            //             Backend  1 side. Code 1        //
+            ////////////////////////////////////////////////
+
+
+            // Get the access token
+            TokenClient tokenClient1 = new TokenClient(tokenEndpoint);
+            TokenResponse tokenResponse1 = tokenClient1.execAuthorizationCode(code1, redirectUri, clientId, clientSecret);
+
+            String accessToken1 = tokenResponse1.getAccessToken();
+            Assert.assertNotNull("accessToken1 is null", accessToken1);
+
+            // Get the user's claims
+            UserInfoClient userInfoClient1 = new UserInfoClient(userInfoEndpoint);
+            UserInfoResponse userInfoResponse1 = userInfoClient1.execUserInfo(accessToken1);
+
+            Assert.assertTrue("userInfoResponse1.getStatus() is not 200", userInfoResponse1.getStatus() == 200);
+            //        System.out.println(userInfoResponse1.getEntity());
+
+
+            ////////////////////////////////////////////////
+            //             TV side. Code 2                //
+            ////////////////////////////////////////////////
+
+            AuthorizationRequest authorizationRequest2 = new AuthorizationRequest(
+                    Arrays.asList(ResponseType.CODE),
+                    clientId,
+                    Arrays.asList("openid", "profile", "email"),
+                    redirectUri,
+                    null);
+
+            authorizationRequest2.getPrompts().add(Prompt.NONE);
+            authorizationRequest2.setState("af0ifjsldkj");
+            authorizationRequest2.setSessionId(sessionId);
+
+            AuthorizeClient authorizeClient2 = new AuthorizeClient(authorizationEndpoint);
+            authorizeClient2.setRequest(authorizationRequest2);
+            AuthorizationResponse authorizationResponse2 = authorizeClient2.exec(clientExecutor);
+
+            //        showClient(authorizeClient2, cookieStore);
+
+            String code2 = authorizationResponse2.getCode();
+            Assert.assertNotNull("code2 is null", code2);
+
+
+            // TV sends the code to the Backend
+            // We don't use httpClient and cookieStore during this call
+
+
+            ////////////////////////////////////////////////
+            //             Backend  2 side. Code 2        //
+            ////////////////////////////////////////////////
+
+
+            // Get the access token
+            TokenClient tokenClient2 = new TokenClient(tokenEndpoint);
+            TokenResponse tokenResponse2 = tokenClient2.execAuthorizationCode(code2, redirectUri, clientId, clientSecret);
+
+            String accessToken2 = tokenResponse2.getAccessToken();
+            Assert.assertNotNull("accessToken2 is null", accessToken2);
+
+            // Get the user's claims
+            UserInfoClient userInfoClient2 = new UserInfoClient(userInfoEndpoint);
+            UserInfoResponse userInfoResponse2 = userInfoClient2.execUserInfo(accessToken2);
+
+            Assert.assertTrue("userInfoResponse1.getStatus() is not 200", userInfoResponse2.getStatus() == 200);
+            //        System.out.println(userInfoResponse2.getEntity());
+        } finally {
+            if (httpClient != null) {
+                httpClient.getConnectionManager().shutdown();
+            }
+        }
+    }
+
+    @Parameters({"userId", "userSecret", "clientId", "clientSecret", "redirectUri"})
+    //@Test
+    public void stressTest(final String userId, final String userSecret,
+                           final String clientId, final String clientSecret,
+                           final String redirectUri) throws Exception {
+        long startTime = System.currentTimeMillis();
+        for (int i = 0; i < 500; i++) {
+            System.out.println(i);
+            test(userId, userSecret, clientId, clientSecret, redirectUri);
+        }
+        long endTime = System.currentTimeMillis();
+        System.out.println((endTime - startTime) / 1000);
+    }
+}
\ No newline at end of file
diff --git a/oxAuth/Client/src/test/java/org/gluu/oxauth/dev/manual/AccessTokenManualTest.java b/oxAuth/Client/src/test/java/org/gluu/oxauth/dev/manual/AccessTokenManualTest.java
new file mode 100644
index 00000000..4aab7c44
--- /dev/null
+++ b/oxAuth/Client/src/test/java/org/gluu/oxauth/dev/manual/AccessTokenManualTest.java
@@ -0,0 +1,65 @@
+package org.gluu.oxauth.dev.manual;
+
+import static org.testng.Assert.assertNotNull;
+
+import java.util.Arrays;
+import java.util.List;
+import java.util.UUID;
+
+import org.gluu.oxauth.BaseTest;
+import org.gluu.oxauth.client.AuthorizationRequest;
+import org.gluu.oxauth.client.AuthorizationResponse;
+import org.gluu.oxauth.model.common.ResponseType;
+import org.testng.annotations.Parameters;
+import org.testng.annotations.Test;
+
+/**
+ * @author Yuriy Zabrovarnyy
+ */
+public class AccessTokenManualTest extends BaseTest {
+
+    @Parameters({"userId", "userSecret", "redirectUri", "clientId"})
+    @Test
+    public void accessTokenExpiration(final String userId, final String userSecret, final String redirectUri, String clientId) throws Exception {
+        showTitle("accessTokenExpiration");
+
+        // Request authorization and receive the authorization code.
+        String nonce = UUID.randomUUID().toString();
+        List<ResponseType> responseTypes = Arrays.asList(ResponseType.CODE, ResponseType.ID_TOKEN, ResponseType.TOKEN);
+        List<String> scopes = Arrays.asList("openid", "profile", "address", "email", "phone", "user_name");
+        AuthorizationResponse authorizationResponse = requestAuthorization(userId, userSecret, redirectUri, responseTypes, scopes, clientId, nonce);
+
+        String accessToken = authorizationResponse.getAccessToken();
+
+        System.out.println("access_token: " + accessToken);
+
+        for (int i = 0; i < 100; i++) {
+            requestUserInfo(accessToken);
+
+            sleepSeconds(10);
+
+            System.out.println("Obtained user info successfully, seconds: " + ((i + 1) * 10));
+        }
+    }
+
+    private static void sleepSeconds(int i) throws InterruptedException {
+        Thread.sleep(i * 1000);
+    }
+
+    private AuthorizationResponse requestAuthorization(final String userId, final String userSecret, final String redirectUri,
+                                                       List<ResponseType> responseTypes, List<String> scopes, String clientId, String nonce) {
+        String state = UUID.randomUUID().toString();
+
+        AuthorizationRequest authorizationRequest = new AuthorizationRequest(responseTypes, clientId, scopes, redirectUri, nonce);
+        authorizationRequest.setState(state);
+
+        AuthorizationResponse authorizationResponse = authenticateResourceOwnerAndGrantAccess(
+                authorizationEndpoint, authorizationRequest, userId, userSecret);
+
+        assertNotNull(authorizationResponse.getLocation(), "The location is null");
+        assertNotNull(authorizationResponse.getCode(), "The authorization code is null");
+        assertNotNull(authorizationResponse.getState(), "The state is null");
+        assertNotNull(authorizationResponse.getScope(), "The scope is null");
+        return authorizationResponse;
+    }
+}
diff --git a/oxAuth/Client/src/test/java/org/gluu/oxauth/dev/manual/BCFIPSTest.java b/oxAuth/Client/src/test/java/org/gluu/oxauth/dev/manual/BCFIPSTest.java
new file mode 100644
index 00000000..b70831cc
--- /dev/null
+++ b/oxAuth/Client/src/test/java/org/gluu/oxauth/dev/manual/BCFIPSTest.java
@@ -0,0 +1,43 @@
+package org.gluu.oxauth.dev.manual;
+
+import java.security.NoSuchAlgorithmException;
+import java.security.Security;
+
+import javax.crypto.Cipher;
+
+import org.gluu.util.security.SecurityProviderUtility;
+
+
+public class BCFIPSTest {
+
+	public static void main(String a[]) throws NoSuchAlgorithmException
+	{
+		System.out.println("main");
+		SecurityProviderUtility.installBCProvider();
+		
+		 // Security.setProperty("crypto.policy", "limited"); // uncomment to switch to limited crypto policies
+        System.out.println("Check for unlimited crypto policies");
+        System.out.println("Java version: " + Runtime.version());
+        //Security.setProperty("crypto.policy", "limited"); // must be set at the beginning !
+        System.out.println("restricted cryptography: " + restrictedCryptography() + " Notice: 'false' means unlimited policies"); // false mean unlimited crypto
+        System.out.println("Security properties: " + Security.getProperty("crypto.policy"));
+        int maxKeyLen = Cipher.getMaxAllowedKeyLength("AES");
+        System.out.println("Max AES key length = " + maxKeyLen);
+    }
+
+    /**
+     * Determines if cryptography restrictions apply.
+     * Restrictions apply if the value of {@link Cipher#getMaxAllowedKeyLength(String)} returns a value smaller than {@link Integer#MAX_VALUE} if there are any restrictions according to the JavaDoc of the method.
+     * This method is used with the transform <code>"AES/CBC/PKCS5Padding"</code> as this is an often used algorithm that is <a href="https://docs.oracle.com/javase/8/docs/technotes/guides/security/StandardNames.html#impl">an implementation requirement for Java SE</a>.
+     *
+     * @return <code>true</code> if restrictions apply, <code>false</code> otherwise
+     * https://stackoverflow.com/posts/33849265/edit, author Maarten Bodewes
+     */
+    public static boolean restrictedCryptography() {
+        try {
+            return Cipher.getMaxAllowedKeyLength("AES/CBC/PKCS5Padding") < Integer.MAX_VALUE;
+        } catch (final NoSuchAlgorithmException e) {
+            throw new IllegalStateException("The transform \"AES/CBC/PKCS5Padding\" is not available (the availability of this algorithm is mandatory for Java SE implementations)", e);
+        }
+    }
+}
diff --git a/oxAuth/Client/src/test/java/org/gluu/oxauth/dev/manual/MTSLClientAuthenticationTest.java b/oxAuth/Client/src/test/java/org/gluu/oxauth/dev/manual/MTSLClientAuthenticationTest.java
new file mode 100644
index 00000000..be452e8b
--- /dev/null
+++ b/oxAuth/Client/src/test/java/org/gluu/oxauth/dev/manual/MTSLClientAuthenticationTest.java
@@ -0,0 +1,85 @@
+package org.gluu.oxauth.dev.manual;
+
+import static org.gluu.oxauth.BaseTest.showClient;
+
+import java.io.File;
+import java.io.FileInputStream;
+import java.io.IOException;
+import java.security.KeyStore;
+
+import javax.net.ssl.KeyManagerFactory;
+import javax.net.ssl.SSLContext;
+import javax.net.ssl.TrustManagerFactory;
+
+import org.apache.http.client.HttpClient;
+import org.apache.http.conn.scheme.Scheme;
+import org.apache.http.conn.ssl.SSLSocketFactory;
+import org.apache.http.impl.client.DefaultHttpClient;
+import org.gluu.oxauth.client.TokenClient;
+import org.gluu.oxauth.client.TokenRequest;
+import org.gluu.oxauth.client.TokenResponse;
+import org.gluu.oxauth.model.common.AuthenticationMethod;
+import org.gluu.oxauth.model.common.GrantType;
+import org.jboss.resteasy.client.jaxrs.engines.ApacheHttpClient43Engine;
+
+/**
+ * @author Yuriy Zabrovarnyy
+ */
+public class MTSLClientAuthenticationTest {
+
+    public static void main(String[] args) throws Exception {
+
+        File jdkJks = new File("u:\\tmp\\ce-ob\\clientkeystore");
+        if (!jdkJks.exists()) {
+            throw new RuntimeException("Failed to find jks trust store");
+        }
+
+        File certificate = new File("u:\\tmp\\ce-ob\\fullchain.p12");
+        if (!certificate.exists()) {
+            throw new RuntimeException("Failed to find certificate");
+        }
+
+        HttpClient httpclient = new DefaultHttpClient();
+// truststore
+        KeyStore ts = KeyStore.getInstance("JKS", "SUN");
+        ts.load(new FileInputStream(jdkJks), "secret".toCharArray());
+// if you remove me, you've got 'javax.net.ssl.SSLPeerUnverifiedException: peer not authenticated' on missing truststore
+        if(0 == ts.size()) throw new IOException("Error loading truststore");
+// tmf
+        TrustManagerFactory tmf = TrustManagerFactory.getInstance(TrustManagerFactory.getDefaultAlgorithm());
+        tmf.init(ts);
+// keystore
+        KeyStore ks = KeyStore.getInstance("PKCS12", "SunJSSE");
+        ks.load(new FileInputStream(certificate), "".toCharArray());
+// if you remove me, you've got 'javax.net.ssl.SSLPeerUnverifiedException: peer not authenticated' on missing keystore
+        if(0 == ks.size()) throw new IOException("Error loading keystore");
+// kmf
+        KeyManagerFactory kmf = KeyManagerFactory.getInstance(KeyManagerFactory.getDefaultAlgorithm());
+        kmf.init(ks, "".toCharArray());
+// SSL
+        SSLContext ctx = SSLContext.getInstance("TLS");
+        ctx.init(kmf.getKeyManagers(), tmf.getTrustManagers(), null);
+// socket
+        SSLSocketFactory socketFactory = new SSLSocketFactory(ctx, SSLSocketFactory.ALLOW_ALL_HOSTNAME_VERIFIER);
+        Scheme sch = new Scheme("https", 443, socketFactory);
+        httpclient.getConnectionManager().getSchemeRegistry().register(sch);
+
+        String clientId = "@!D445.22BF.5EF1.0D87!0001!03F2.297D!0008!F599.E2C7";
+        String clientSecret = "testClientSecret";
+
+        TokenRequest tokenRequest = new TokenRequest(GrantType.AUTHORIZATION_CODE);
+        tokenRequest.setCode("testCode");
+        tokenRequest.setRedirectUri("https://ce-ob.gluu.org/cas/login");
+        tokenRequest.setAuthUsername(clientId);
+        tokenRequest.setAuthPassword(clientSecret);
+        tokenRequest.setAuthenticationMethod(AuthenticationMethod.TLS_CLIENT_AUTH);
+
+        TokenClient tokenClient = new TokenClient("https://ce-ob.gluu.org/oxauth/restv1/token");
+        tokenClient.setExecutor(new ApacheHttpClient43Engine(httpclient));
+        tokenClient.setRequest(tokenRequest);
+        TokenResponse tokenResponse = tokenClient.exec();
+
+        System.out.println(tokenResponse);
+        showClient(tokenClient);
+    }
+}
diff --git a/oxAuth/Client/src/test/java/org/gluu/oxauth/interop/AcceptRequestWithoutRedirectUriWhenOneRegistered.java b/oxAuth/Client/src/test/java/org/gluu/oxauth/interop/AcceptRequestWithoutRedirectUriWhenOneRegistered.java
new file mode 100644
index 00000000..2ff781bf
--- /dev/null
+++ b/oxAuth/Client/src/test/java/org/gluu/oxauth/interop/AcceptRequestWithoutRedirectUriWhenOneRegistered.java
@@ -0,0 +1,77 @@
+/*
+ * oxAuth is available under the MIT License (2008). See http://opensource.org/licenses/MIT for full text.
+ *
+ * Copyright (c) 2014, Gluu
+ */
+
+package org.gluu.oxauth.interop;
+
+import static org.testng.Assert.assertEquals;
+import static org.testng.Assert.assertNotNull;
+
+import java.util.Arrays;
+import java.util.List;
+import java.util.UUID;
+
+import org.gluu.oxauth.BaseTest;
+import org.gluu.oxauth.client.AuthorizationRequest;
+import org.gluu.oxauth.client.AuthorizationResponse;
+import org.gluu.oxauth.client.RegisterClient;
+import org.gluu.oxauth.client.RegisterRequest;
+import org.gluu.oxauth.client.RegisterResponse;
+import org.gluu.oxauth.model.common.ResponseType;
+import org.gluu.oxauth.model.register.ApplicationType;
+import org.gluu.oxauth.model.util.StringUtils;
+import org.testng.annotations.Parameters;
+import org.testng.annotations.Test;
+
+/**
+ * OC5:FeatureTest-Accept Request Without redirect uri when One Registered
+ *
+ * @author Javier Rojas Blum
+ * @version June 19, 2015
+ */
+public class AcceptRequestWithoutRedirectUriWhenOneRegistered extends BaseTest {
+
+    @Parameters({"userId", "userSecret", "redirectUri"})
+    @Test
+    public void acceptRequestWithoutRedirectUriWhenOneRegistered(final String userId, final String userSecret, final String redirectUri) throws Exception {
+        showTitle("OC5:FeatureTest-Accept Request Without redirect uri when One Registered");
+
+        List<ResponseType> responseTypes = Arrays.asList(ResponseType.CODE);
+
+        // 1. Register client
+        RegisterRequest registerRequest = new RegisterRequest(ApplicationType.WEB, "oxAuth test app",
+                StringUtils.spaceSeparatedToList(redirectUri));
+        registerRequest.setResponseTypes(responseTypes);
+
+        RegisterClient registerClient = new RegisterClient(registrationEndpoint);
+        registerClient.setRequest(registerRequest);
+        RegisterResponse registerResponse = registerClient.exec();
+
+        showClient(registerClient);
+        assertEquals(registerResponse.getStatus(), 200, "Unexpected response code: " + registerResponse.getEntity());
+        assertNotNull(registerResponse.getClientId());
+        assertNotNull(registerResponse.getClientSecret());
+        assertNotNull(registerResponse.getRegistrationAccessToken());
+        assertNotNull(registerResponse.getClientIdIssuedAt());
+        assertNotNull(registerResponse.getClientSecretExpiresAt());
+
+        String clientId = registerResponse.getClientId();
+
+        // 2. Request authorization and receive the authorization code.
+        List<String> scopes = Arrays.asList("openid", "profile", "address", "email");
+        String state = UUID.randomUUID().toString();
+
+        AuthorizationRequest authorizationRequest = new AuthorizationRequest(responseTypes, clientId, scopes, null, null);
+        authorizationRequest.setState(state);
+
+        AuthorizationResponse authorizationResponse = authenticateResourceOwnerAndGrantAccess(
+                authorizationEndpoint, authorizationRequest, userId, userSecret);
+
+        assertNotNull(authorizationResponse.getLocation(), "The location is null");
+        assertNotNull(authorizationResponse.getCode(), "The authorization code is null");
+        assertNotNull(authorizationResponse.getState(), "The state is null");
+        assertNotNull(authorizationResponse.getScope(), "The scope is null");
+    }
+}
\ No newline at end of file
diff --git a/oxAuth/Client/src/test/java/org/gluu/oxauth/interop/AcceptValidAsymmetricIdTokenSignature.java b/oxAuth/Client/src/test/java/org/gluu/oxauth/interop/AcceptValidAsymmetricIdTokenSignature.java
new file mode 100644
index 00000000..2454ea81
--- /dev/null
+++ b/oxAuth/Client/src/test/java/org/gluu/oxauth/interop/AcceptValidAsymmetricIdTokenSignature.java
@@ -0,0 +1,167 @@
+/*
+ * oxAuth is available under the MIT License (2008). See http://opensource.org/licenses/MIT for full text.
+ *
+ * Copyright (c) 2014, Gluu
+ */
+
+package org.gluu.oxauth.interop;
+
+import static org.testng.Assert.assertEquals;
+import static org.testng.Assert.assertNotNull;
+import static org.testng.Assert.assertTrue;
+
+import java.util.Arrays;
+import java.util.List;
+import java.util.UUID;
+
+import org.gluu.oxauth.BaseTest;
+import org.gluu.oxauth.client.AuthorizationRequest;
+import org.gluu.oxauth.client.AuthorizationResponse;
+import org.gluu.oxauth.client.JwkClient;
+import org.gluu.oxauth.client.RegisterClient;
+import org.gluu.oxauth.client.RegisterRequest;
+import org.gluu.oxauth.client.RegisterResponse;
+import org.gluu.oxauth.model.common.GrantType;
+import org.gluu.oxauth.model.common.ResponseType;
+import org.gluu.oxauth.model.common.SubjectType;
+import org.gluu.oxauth.model.crypto.signature.ECDSAPublicKey;
+import org.gluu.oxauth.model.crypto.signature.RSAPublicKey;
+import org.gluu.oxauth.model.crypto.signature.SignatureAlgorithm;
+import org.gluu.oxauth.model.jws.ECDSASigner;
+import org.gluu.oxauth.model.jws.RSASigner;
+import org.gluu.oxauth.model.jwt.Jwt;
+import org.gluu.oxauth.model.jwt.JwtHeaderName;
+import org.gluu.oxauth.model.register.ApplicationType;
+import org.gluu.oxauth.model.util.StringUtils;
+import org.testng.annotations.Parameters;
+import org.testng.annotations.Test;
+
+/**
+ * OC5:FeatureTest-Accept Valid Asymmetric ID Token Signature
+ *
+ * @author Javier Rojas Blum
+ * @version November 2, 2016
+ */
+public class AcceptValidAsymmetricIdTokenSignature extends BaseTest {
+
+    @Parameters({"redirectUris", "userId", "userSecret", "redirectUri", "sectorIdentifierUri"})
+    @Test
+    public void acceptValidAsymmetricIdTokenSignatureRS256(
+            final String redirectUris, final String userId, final String userSecret, final String redirectUri,
+            final String sectorIdentifierUri) throws Exception {
+        showTitle("OC5:FeatureTest-Accept Valid Asymmetric ID Token Signature RS256");
+
+        List<ResponseType> responseTypes = Arrays.asList(ResponseType.ID_TOKEN);
+
+        // 1. Registration
+        RegisterRequest registerRequest = new RegisterRequest(ApplicationType.WEB, "oxAuth test app",
+                StringUtils.spaceSeparatedToList(redirectUris));
+        registerRequest.setResponseTypes(responseTypes);
+        registerRequest.setIdTokenSignedResponseAlg(SignatureAlgorithm.RS256);
+        registerRequest.setSectorIdentifierUri(sectorIdentifierUri);
+
+        RegisterClient registerClient = new RegisterClient(registrationEndpoint);
+        registerClient.setRequest(registerRequest);
+        RegisterResponse registerResponse = registerClient.exec();
+
+        showClient(registerClient);
+        assertEquals(registerResponse.getStatus(), 200, "Unexpected response code: " + registerResponse.getEntity());
+        assertNotNull(registerResponse.getClientId());
+        assertNotNull(registerResponse.getClientSecret());
+        assertNotNull(registerResponse.getRegistrationAccessToken());
+        assertNotNull(registerResponse.getClientSecretExpiresAt());
+
+        String clientId = registerResponse.getClientId();
+
+        // 2. Request Authorization
+        List<String> scopes = Arrays.asList("openid", "profile", "address", "email");
+        String nonce = UUID.randomUUID().toString();
+        String state = UUID.randomUUID().toString();
+
+        AuthorizationRequest authorizationRequest = new AuthorizationRequest(responseTypes, clientId, scopes, redirectUri, nonce);
+        authorizationRequest.setState(state);
+
+        AuthorizationResponse authorizationResponse = authenticateResourceOwnerAndGrantAccess(
+                authorizationEndpoint, authorizationRequest, userId, userSecret);
+
+        assertNotNull(authorizationResponse.getLocation());
+        assertNotNull(authorizationResponse.getIdToken());
+        assertNotNull(authorizationResponse.getState());
+        assertEquals(authorizationResponse.getState(), state);
+
+        String idToken = authorizationResponse.getIdToken();
+
+        // 3. Validate id_token
+        Jwt jwt = Jwt.parse(idToken);
+        RSAPublicKey publicKey = JwkClient.getRSAPublicKey(
+                jwksUri,
+                jwt.getHeader().getClaimAsString(JwtHeaderName.KEY_ID));
+        RSASigner rsaSigner = new RSASigner(SignatureAlgorithm.RS256, publicKey);
+        assertTrue(rsaSigner.validate(jwt));
+    }
+
+    @Parameters({"redirectUris", "userId", "userSecret", "redirectUri", "postLogoutRedirectUri", "clientJwksUri"})
+    @Test
+    public void acceptValidAsymmetricIdTokenSignatureES256(
+            final String redirectUris, final String userId, final String userSecret, final String redirectUri,
+            final String postLogoutRedirectUri, final String clientJwksUri) throws Exception {
+        showTitle("OC5:FeatureTest-Accept Valid Asymmetric ID Token Signature es256");
+
+        List<ResponseType> responseTypes = Arrays.asList(
+                ResponseType.CODE,
+                ResponseType.ID_TOKEN);
+
+        List<GrantType> grantTypes = Arrays.asList(GrantType.AUTHORIZATION_CODE);
+
+        // 1. Registration
+        RegisterRequest registerRequest = new RegisterRequest(ApplicationType.WEB, null,
+                StringUtils.spaceSeparatedToList(redirectUris));
+        registerRequest.setResponseTypes(responseTypes);
+        registerRequest.setIdTokenSignedResponseAlg(SignatureAlgorithm.ES256);
+        registerRequest.setPostLogoutRedirectUris(StringUtils.spaceSeparatedToList(postLogoutRedirectUri));
+        registerRequest.setJwksUri(clientJwksUri);
+        registerRequest.setSubjectType(SubjectType.PUBLIC);
+        registerRequest.setRequireAuthTime(true);
+        registerRequest.setDefaultMaxAge(3600);
+        registerRequest.setGrantTypes(grantTypes);
+
+        RegisterClient registerClient = new RegisterClient(registrationEndpoint);
+        registerClient.setRequest(registerRequest);
+        RegisterResponse registerResponse = registerClient.exec();
+
+        showClient(registerClient);
+        assertEquals(registerResponse.getStatus(), 200, "Unexpected response code: " + registerResponse.getEntity());
+        assertNotNull(registerResponse.getClientId());
+        assertNotNull(registerResponse.getClientSecret());
+        assertNotNull(registerResponse.getRegistrationAccessToken());
+        assertNotNull(registerResponse.getClientSecretExpiresAt());
+
+        String clientId = registerResponse.getClientId();
+
+        // 2. Request Authorization
+        List<String> scopes = Arrays.asList("openid", "profile", "address", "email");
+        String nonce = UUID.randomUUID().toString();
+        String state = UUID.randomUUID().toString();
+
+        AuthorizationRequest authorizationRequest = new AuthorizationRequest(responseTypes, clientId, scopes, redirectUri, nonce);
+        authorizationRequest.setState(state);
+
+        AuthorizationResponse authorizationResponse = authenticateResourceOwnerAndGrantAccess(
+                authorizationEndpoint, authorizationRequest, userId, userSecret);
+
+        assertNotNull(authorizationResponse.getLocation());
+        assertNotNull(authorizationResponse.getIdToken());
+        assertNotNull(authorizationResponse.getState());
+        assertEquals(authorizationResponse.getState(), state);
+
+        String idToken = authorizationResponse.getIdToken();
+
+        // 3. Validate id_token
+        Jwt jwt = Jwt.parse(idToken);
+        ECDSAPublicKey publicKey = JwkClient.getECDSAPublicKey(
+                jwksUri,
+                jwt.getHeader().getClaimAsString(JwtHeaderName.KEY_ID));
+        ECDSASigner ecdsaSigner = new ECDSASigner(SignatureAlgorithm.ES256, publicKey);
+        assertTrue(ecdsaSigner.validate(jwt));
+    }
+}
\ No newline at end of file
diff --git a/oxAuth/Client/src/test/java/org/gluu/oxauth/interop/AcceptValidSymmetricIdTokenSignature.java b/oxAuth/Client/src/test/java/org/gluu/oxauth/interop/AcceptValidSymmetricIdTokenSignature.java
new file mode 100644
index 00000000..c348a87d
--- /dev/null
+++ b/oxAuth/Client/src/test/java/org/gluu/oxauth/interop/AcceptValidSymmetricIdTokenSignature.java
@@ -0,0 +1,92 @@
+/*
+ * oxAuth is available under the MIT License (2008). See http://opensource.org/licenses/MIT for full text.
+ *
+ * Copyright (c) 2014, Gluu
+ */
+
+package org.gluu.oxauth.interop;
+
+import static org.testng.Assert.assertEquals;
+import static org.testng.Assert.assertNotNull;
+import static org.testng.Assert.assertTrue;
+
+import java.util.Arrays;
+import java.util.List;
+import java.util.UUID;
+
+import org.gluu.oxauth.BaseTest;
+import org.gluu.oxauth.client.AuthorizationRequest;
+import org.gluu.oxauth.client.AuthorizationResponse;
+import org.gluu.oxauth.client.RegisterClient;
+import org.gluu.oxauth.client.RegisterRequest;
+import org.gluu.oxauth.client.RegisterResponse;
+import org.gluu.oxauth.model.common.ResponseType;
+import org.gluu.oxauth.model.crypto.signature.SignatureAlgorithm;
+import org.gluu.oxauth.model.jws.HMACSigner;
+import org.gluu.oxauth.model.jwt.Jwt;
+import org.gluu.oxauth.model.register.ApplicationType;
+import org.gluu.oxauth.model.util.StringUtils;
+import org.testng.annotations.Parameters;
+import org.testng.annotations.Test;
+
+/**
+ * OC5:FeatureTest-Accept Valid Symmetric ID Token Signature
+ *
+ * @author Javier Rojas Blum
+ * @version November 2, 2016
+ */
+public class AcceptValidSymmetricIdTokenSignature extends BaseTest {
+
+    @Parameters({"redirectUris", "userId", "userSecret", "redirectUri", "sectorIdentifierUri"})
+    @Test
+    public void acceptValidSymmetricIdTokenSignature(
+            final String redirectUris, final String userId, final String userSecret, final String redirectUri,
+            final String sectorIdentifierUri) throws Exception {
+        showTitle("OC5:FeatureTest-Accept Valid Symmetric ID Token Signature");
+
+        List<ResponseType> responseTypes = Arrays.asList(ResponseType.ID_TOKEN);
+
+        // 1. Registration
+        RegisterRequest registerRequest = new RegisterRequest(ApplicationType.WEB, "oxAuth test app",
+                StringUtils.spaceSeparatedToList(redirectUris));
+        registerRequest.setResponseTypes(responseTypes);
+        registerRequest.setIdTokenSignedResponseAlg(SignatureAlgorithm.HS256);
+        registerRequest.setSectorIdentifierUri(sectorIdentifierUri);
+
+        RegisterClient registerClient = new RegisterClient(registrationEndpoint);
+        registerClient.setRequest(registerRequest);
+        RegisterResponse registerResponse = registerClient.exec();
+
+        showClient(registerClient);
+        assertEquals(registerResponse.getStatus(), 200, "Unexpected response code: " + registerResponse.getEntity());
+        assertNotNull(registerResponse.getClientId());
+        assertNotNull(registerResponse.getClientSecret());
+        assertNotNull(registerResponse.getRegistrationAccessToken());
+        assertNotNull(registerResponse.getClientSecretExpiresAt());
+
+        String clientId = registerResponse.getClientId();
+        String clientSecret = registerResponse.getClientSecret();
+
+        // 2. Request Authorization
+        List<String> scopes = Arrays.asList("openid", "profile", "address", "email");
+        String nonce = UUID.randomUUID().toString();
+        String state = UUID.randomUUID().toString();
+
+        AuthorizationRequest authorizationRequest = new AuthorizationRequest(responseTypes, clientId, scopes, redirectUri, nonce);
+        authorizationRequest.setState(state);
+
+        AuthorizationResponse authorizationResponse = authenticateResourceOwnerAndGrantAccess(
+                authorizationEndpoint, authorizationRequest, userId, userSecret);
+
+        assertNotNull(authorizationResponse.getLocation());
+        assertNotNull(authorizationResponse.getIdToken());
+        assertNotNull(authorizationResponse.getState());
+
+        String idToken = authorizationResponse.getIdToken();
+
+        // 3. Validate id_token
+        Jwt jwt = Jwt.parse(idToken);
+        HMACSigner hmacSigner = new HMACSigner(SignatureAlgorithm.HS256, clientSecret);
+        assertTrue(hmacSigner.validate(jwt));
+    }
+}
\ No newline at end of file
diff --git a/oxAuth/Client/src/test/java/org/gluu/oxauth/interop/CanDiscoverIdentifiersUsingEMailSyntax.java b/oxAuth/Client/src/test/java/org/gluu/oxauth/interop/CanDiscoverIdentifiersUsingEMailSyntax.java
new file mode 100644
index 00000000..22f93b4d
--- /dev/null
+++ b/oxAuth/Client/src/test/java/org/gluu/oxauth/interop/CanDiscoverIdentifiersUsingEMailSyntax.java
@@ -0,0 +1,92 @@
+/*
+ * oxAuth is available under the MIT License (2008). See http://opensource.org/licenses/MIT for full text.
+ *
+ * Copyright (c) 2014, Gluu
+ */
+
+package org.gluu.oxauth.interop;
+
+import static org.testng.Assert.assertEquals;
+
+import org.gluu.oxauth.client.OpenIdConnectDiscoveryRequest;
+import org.testng.annotations.Test;
+
+/**
+ * OC5:FeatureTest-Can Discover Identifiers using E-Mail Syntax
+ *
+ * @author Javier Rojas Blum Date: 09.03.2013
+ */
+public class CanDiscoverIdentifiersUsingEMailSyntax {
+
+    @Test
+    public void emailNormalization1() throws Exception {
+        String resource = "acct:joe@example.com";
+        String expectedHost = "example.com";
+        String expectedPath = null;
+
+        OpenIdConnectDiscoveryRequest openIdConnectDiscoveryRequest = new OpenIdConnectDiscoveryRequest(resource);
+        assertEquals(openIdConnectDiscoveryRequest.getResource(), resource);
+        assertEquals(openIdConnectDiscoveryRequest.getHost(), expectedHost);
+        assertEquals(openIdConnectDiscoveryRequest.getPath(), expectedPath);
+    }
+
+    @Test
+    public void emailNormalization2() throws Exception {
+        String resource = "joe@example.com";
+        String expectedHost = "example.com";
+        String expectedPath = null;
+
+        OpenIdConnectDiscoveryRequest openIdConnectDiscoveryRequest = new OpenIdConnectDiscoveryRequest(resource);
+        assertEquals(openIdConnectDiscoveryRequest.getResource(), resource);
+        assertEquals(openIdConnectDiscoveryRequest.getHost(), expectedHost);
+        assertEquals(openIdConnectDiscoveryRequest.getPath(), expectedPath);
+    }
+
+    @Test
+    public void emailNormalization3() throws Exception {
+        String resource = "acct:joe@example.com:8080";
+        String expectedHost = "example.com:8080";
+        String expectedPath = null;
+
+        OpenIdConnectDiscoveryRequest openIdConnectDiscoveryRequest = new OpenIdConnectDiscoveryRequest(resource);
+        assertEquals(openIdConnectDiscoveryRequest.getResource(), resource);
+        assertEquals(openIdConnectDiscoveryRequest.getHost(), expectedHost);
+        assertEquals(openIdConnectDiscoveryRequest.getPath(), expectedPath);
+    }
+
+    @Test
+    public void emailNormalization4() throws Exception {
+        String resource = "joe@example.com:8080";
+        String expectedHost = "example.com:8080";
+        String expectedPath = null;
+
+        OpenIdConnectDiscoveryRequest openIdConnectDiscoveryRequest = new OpenIdConnectDiscoveryRequest(resource);
+        assertEquals(openIdConnectDiscoveryRequest.getResource(), resource);
+        assertEquals(openIdConnectDiscoveryRequest.getHost(), expectedHost);
+        assertEquals(openIdConnectDiscoveryRequest.getPath(), expectedPath);
+    }
+
+    @Test
+    public void emailNormalization5() throws Exception {
+        String resource = "joe@localhost";
+        String expectedHost = "localhost";
+        String expectedPath = null;
+
+        OpenIdConnectDiscoveryRequest openIdConnectDiscoveryRequest = new OpenIdConnectDiscoveryRequest(resource);
+        assertEquals(openIdConnectDiscoveryRequest.getResource(), resource);
+        assertEquals(openIdConnectDiscoveryRequest.getHost(), expectedHost);
+        assertEquals(openIdConnectDiscoveryRequest.getPath(), expectedPath);
+    }
+
+    @Test
+    public void emailNormalization6() throws Exception {
+        String resource = "joe@localhost:8080";
+        String expectedHost = "localhost:8080";
+        String expectedPath = null;
+
+        OpenIdConnectDiscoveryRequest openIdConnectDiscoveryRequest = new OpenIdConnectDiscoveryRequest(resource);
+        assertEquals(openIdConnectDiscoveryRequest.getResource(), resource);
+        assertEquals(openIdConnectDiscoveryRequest.getHost(), expectedHost);
+        assertEquals(openIdConnectDiscoveryRequest.getPath(), expectedPath);
+    }
+}
\ No newline at end of file
diff --git a/oxAuth/Client/src/test/java/org/gluu/oxauth/interop/CanDiscoverIdentifiersUsingUrlSyntax.java b/oxAuth/Client/src/test/java/org/gluu/oxauth/interop/CanDiscoverIdentifiersUsingUrlSyntax.java
new file mode 100644
index 00000000..3374f124
--- /dev/null
+++ b/oxAuth/Client/src/test/java/org/gluu/oxauth/interop/CanDiscoverIdentifiersUsingUrlSyntax.java
@@ -0,0 +1,152 @@
+/*
+ * oxAuth is available under the MIT License (2008). See http://opensource.org/licenses/MIT for full text.
+ *
+ * Copyright (c) 2014, Gluu
+ */
+
+package org.gluu.oxauth.interop;
+
+import static org.testng.Assert.assertEquals;
+
+import org.gluu.oxauth.client.OpenIdConnectDiscoveryRequest;
+import org.testng.annotations.Test;
+
+/**
+ * OC5:FeatureTest-Can Discover Identifiers using URL Syntax
+ *
+ * @author Javier Rojas Blum Date: 09.03.2013
+ */
+public class CanDiscoverIdentifiersUsingUrlSyntax {
+
+    @Test
+    public void urlNormalization1() throws Exception {
+        String resource = "https://example.com";
+        String expectedHost = "example.com";
+        String expectedPath = null;
+
+        OpenIdConnectDiscoveryRequest openIdConnectDiscoveryRequest = new OpenIdConnectDiscoveryRequest(resource);
+        assertEquals(openIdConnectDiscoveryRequest.getResource(), resource);
+        assertEquals(openIdConnectDiscoveryRequest.getHost(), expectedHost);
+        assertEquals(openIdConnectDiscoveryRequest.getPath(), expectedPath);
+    }
+
+    @Test
+    public void urlNormalization2() throws Exception {
+        String resource = "https://example.com/joe";
+        String expectedHost = "example.com";
+        String expectedPath = "/joe";
+
+        OpenIdConnectDiscoveryRequest openIdConnectDiscoveryRequest = new OpenIdConnectDiscoveryRequest(resource);
+        assertEquals(openIdConnectDiscoveryRequest.getResource(), resource);
+        assertEquals(openIdConnectDiscoveryRequest.getHost(), expectedHost);
+        assertEquals(openIdConnectDiscoveryRequest.getPath(), expectedPath);
+    }
+
+    @Test
+    public void urlNormalization3() throws Exception {
+        String resource = "https://example.com:8080/";
+        String expectedHost = "example.com:8080";
+        String expectedPath = null;
+
+        OpenIdConnectDiscoveryRequest openIdConnectDiscoveryRequest = new OpenIdConnectDiscoveryRequest(resource);
+        assertEquals(openIdConnectDiscoveryRequest.getResource(), resource);
+        assertEquals(openIdConnectDiscoveryRequest.getHost(), expectedHost);
+        assertEquals(openIdConnectDiscoveryRequest.getPath(), expectedPath);
+    }
+
+    @Test
+    public void urlNormalization4() throws Exception {
+        String resource = "https://example.com:8080/joe";
+        String expectedHost = "example.com:8080";
+        String expectedPath = "/joe";
+
+        OpenIdConnectDiscoveryRequest openIdConnectDiscoveryRequest = new OpenIdConnectDiscoveryRequest(resource);
+        assertEquals(openIdConnectDiscoveryRequest.getResource(), resource);
+        assertEquals(openIdConnectDiscoveryRequest.getHost(), expectedHost);
+        assertEquals(openIdConnectDiscoveryRequest.getPath(), expectedPath);
+    }
+
+    @Test
+    public void urlNormalization5() throws Exception {
+        String resource = "https://example.com:8080/joe#fragment";
+        String expectedHost = "example.com:8080";
+        String expectedPath = "/joe";
+
+        OpenIdConnectDiscoveryRequest openIdConnectDiscoveryRequest = new OpenIdConnectDiscoveryRequest(resource);
+        assertEquals(openIdConnectDiscoveryRequest.getResource(), resource);
+        assertEquals(openIdConnectDiscoveryRequest.getHost(), expectedHost);
+        assertEquals(openIdConnectDiscoveryRequest.getPath(), expectedPath);
+    }
+
+    @Test
+    public void urlNormalization6() throws Exception {
+        String resource = "https://example.com:8080/joe?param=value";
+        String expectedHost = "example.com:8080";
+        String expectedPath = "/joe";
+
+        OpenIdConnectDiscoveryRequest openIdConnectDiscoveryRequest = new OpenIdConnectDiscoveryRequest(resource);
+        assertEquals(openIdConnectDiscoveryRequest.getResource(), resource);
+        assertEquals(openIdConnectDiscoveryRequest.getHost(), expectedHost);
+        assertEquals(openIdConnectDiscoveryRequest.getPath(), expectedPath);
+    }
+
+    @Test
+    public void urlNormalization7() throws Exception {
+        String resource = "https://example.com:8080/joe?param1=foo&param2=bar#fragment";
+        String expectedHost = "example.com:8080";
+        String expectedPath = "/joe";
+
+        OpenIdConnectDiscoveryRequest openIdConnectDiscoveryRequest = new OpenIdConnectDiscoveryRequest(resource);
+        assertEquals(openIdConnectDiscoveryRequest.getResource(), resource);
+        assertEquals(openIdConnectDiscoveryRequest.getHost(), expectedHost);
+        assertEquals(openIdConnectDiscoveryRequest.getPath(), expectedPath);
+    }
+
+    @Test
+    public void hostNormalization1() throws Exception {
+        String resource = "example.com";
+        String expectedHost = "example.com";
+        String expectedPath = null;
+
+        OpenIdConnectDiscoveryRequest openIdConnectDiscoveryRequest = new OpenIdConnectDiscoveryRequest(resource);
+        assertEquals(openIdConnectDiscoveryRequest.getResource(), resource);
+        assertEquals(openIdConnectDiscoveryRequest.getHost(), expectedHost);
+        assertEquals(openIdConnectDiscoveryRequest.getPath(), expectedPath);
+    }
+
+    @Test
+    public void hostNormalization2() throws Exception {
+        String resource = "example.com:8080";
+        String expectedHost = "example.com:8080";
+        String expectedPath = null;
+
+        OpenIdConnectDiscoveryRequest openIdConnectDiscoveryRequest = new OpenIdConnectDiscoveryRequest(resource);
+        assertEquals(openIdConnectDiscoveryRequest.getResource(), resource);
+        assertEquals(openIdConnectDiscoveryRequest.getHost(), expectedHost);
+        assertEquals(openIdConnectDiscoveryRequest.getPath(), expectedPath);
+    }
+
+    @Test
+    public void hostNormalization3() throws Exception {
+        String resource = "example.com/path";
+        String expectedHost = "example.com";
+        String expectedPath = "/path";
+
+        OpenIdConnectDiscoveryRequest openIdConnectDiscoveryRequest = new OpenIdConnectDiscoveryRequest(resource);
+        assertEquals(openIdConnectDiscoveryRequest.getResource(), resource);
+        assertEquals(openIdConnectDiscoveryRequest.getHost(), expectedHost);
+        assertEquals(openIdConnectDiscoveryRequest.getPath(), expectedPath);
+    }
+
+    @Test
+    public void hostNormalization4() throws Exception {
+        String resource = "example.com:8080/path";
+        String expectedHost = "example.com:8080";
+        String expectedPath = "/path";
+
+        OpenIdConnectDiscoveryRequest openIdConnectDiscoveryRequest = new OpenIdConnectDiscoveryRequest(resource);
+        assertEquals(openIdConnectDiscoveryRequest.getResource(), resource);
+        assertEquals(openIdConnectDiscoveryRequest.getHost(), expectedHost);
+        assertEquals(openIdConnectDiscoveryRequest.getPath(), expectedPath);
+    }
+}
\ No newline at end of file
diff --git a/oxAuth/Client/src/test/java/org/gluu/oxauth/interop/CanMakeAccessTokenRequestWithClientSecretBasicAuthentication.java b/oxAuth/Client/src/test/java/org/gluu/oxauth/interop/CanMakeAccessTokenRequestWithClientSecretBasicAuthentication.java
new file mode 100644
index 00000000..a6dcd24d
--- /dev/null
+++ b/oxAuth/Client/src/test/java/org/gluu/oxauth/interop/CanMakeAccessTokenRequestWithClientSecretBasicAuthentication.java
@@ -0,0 +1,107 @@
+/*
+ * oxAuth is available under the MIT License (2008). See http://opensource.org/licenses/MIT for full text.
+ *
+ * Copyright (c) 2014, Gluu
+ */
+
+package org.gluu.oxauth.interop;
+
+import static org.testng.Assert.assertEquals;
+import static org.testng.Assert.assertNotNull;
+
+import java.util.Arrays;
+import java.util.List;
+import java.util.UUID;
+
+import org.gluu.oxauth.BaseTest;
+import org.gluu.oxauth.client.AuthorizationRequest;
+import org.gluu.oxauth.client.AuthorizationResponse;
+import org.gluu.oxauth.client.RegisterClient;
+import org.gluu.oxauth.client.RegisterRequest;
+import org.gluu.oxauth.client.RegisterResponse;
+import org.gluu.oxauth.client.TokenClient;
+import org.gluu.oxauth.client.TokenRequest;
+import org.gluu.oxauth.client.TokenResponse;
+import org.gluu.oxauth.model.common.AuthenticationMethod;
+import org.gluu.oxauth.model.common.GrantType;
+import org.gluu.oxauth.model.common.ResponseType;
+import org.gluu.oxauth.model.register.ApplicationType;
+import org.gluu.oxauth.model.util.StringUtils;
+import org.testng.annotations.Parameters;
+import org.testng.annotations.Test;
+
+/**
+ * OC5:FeatureTest-Can Make Access Token Request with client secret basic Authentication
+ *
+ * @author Javier Rojas Blum
+ * @version June 19, 2015
+ */
+public class CanMakeAccessTokenRequestWithClientSecretBasicAuthentication extends BaseTest {
+
+    @Parameters({"redirectUris", "redirectUri", "userId", "userSecret", "sectorIdentifierUri"})
+    @Test
+    public void canMakeAccessTokenRequestWithClientSecretBasicAuthentication(
+            final String redirectUris, final String redirectUri, final String userId, final String userSecret,
+            final String sectorIdentifierUri) throws Exception {
+        showTitle("OC5:FeatureTest-Can Make Access Token Request with client secret basic Authentication");
+
+        List<ResponseType> responseTypes = Arrays.asList(ResponseType.CODE);
+
+        // 1. Register client
+        RegisterRequest registerRequest = new RegisterRequest(ApplicationType.WEB, "oxAuth test app",
+                StringUtils.spaceSeparatedToList(redirectUris));
+        registerRequest.setTokenEndpointAuthMethod(AuthenticationMethod.CLIENT_SECRET_BASIC);
+        registerRequest.setSectorIdentifierUri(sectorIdentifierUri);
+
+        RegisterClient registerClient = new RegisterClient(registrationEndpoint);
+        registerClient.setRequest(registerRequest);
+        RegisterResponse registerResponse = registerClient.exec();
+
+        showClient(registerClient);
+        assertEquals(registerResponse.getStatus(), 200, "Unexpected response code: " + registerResponse.getEntity());
+        assertNotNull(registerResponse.getClientId());
+        assertNotNull(registerResponse.getClientSecret());
+        assertNotNull(registerResponse.getRegistrationAccessToken());
+        assertNotNull(registerResponse.getClientIdIssuedAt());
+        assertNotNull(registerResponse.getClientSecretExpiresAt());
+
+        String clientId = registerResponse.getClientId();
+        String clientSecret = registerResponse.getClientSecret();
+
+        // 2. Request authorization
+        List<String> scopes = Arrays.asList("openid", "profile", "address", "email");
+        String state = UUID.randomUUID().toString();
+
+        AuthorizationRequest authorizationRequest = new AuthorizationRequest(responseTypes, clientId, scopes, redirectUri, null);
+        authorizationRequest.setState(state);
+
+        AuthorizationResponse authorizationResponse = authenticateResourceOwnerAndGrantAccess(
+                authorizationEndpoint, authorizationRequest, userId, userSecret);
+
+        assertNotNull(authorizationResponse.getLocation());
+        assertNotNull(authorizationResponse.getCode());
+        assertNotNull(authorizationResponse.getState());
+
+        String authorizationCode = authorizationResponse.getCode();
+
+        // 3. Get Access Token
+        TokenRequest tokenRequest = new TokenRequest(GrantType.AUTHORIZATION_CODE);
+        tokenRequest.setCode(authorizationCode);
+        tokenRequest.setRedirectUri(redirectUri);
+        tokenRequest.setAuthUsername(clientId);
+        tokenRequest.setAuthPassword(clientSecret);
+        tokenRequest.setAuthenticationMethod(AuthenticationMethod.CLIENT_SECRET_BASIC);
+
+        TokenClient tokenClient = new TokenClient(tokenEndpoint);
+        tokenClient.setRequest(tokenRequest);
+        TokenResponse tokenResponse = tokenClient.exec();
+
+        showClient(tokenClient);
+        assertEquals(tokenResponse.getStatus(), 200, "Unexpected response code: " + tokenResponse.getStatus());
+        assertNotNull(tokenResponse.getEntity(), "The entity is null");
+        assertNotNull(tokenResponse.getAccessToken(), "The access token is null");
+        assertNotNull(tokenResponse.getExpiresIn(), "The expires in value is null");
+        assertNotNull(tokenResponse.getTokenType(), "The token type is null");
+        assertNotNull(tokenResponse.getRefreshToken(), "The refresh token is null");
+    }
+}
\ No newline at end of file
diff --git a/oxAuth/Client/src/test/java/org/gluu/oxauth/interop/CanMakeAccessTokenRequestWithClientSecretJwtAuthentication.java b/oxAuth/Client/src/test/java/org/gluu/oxauth/interop/CanMakeAccessTokenRequestWithClientSecretJwtAuthentication.java
new file mode 100644
index 00000000..ad702085
--- /dev/null
+++ b/oxAuth/Client/src/test/java/org/gluu/oxauth/interop/CanMakeAccessTokenRequestWithClientSecretJwtAuthentication.java
@@ -0,0 +1,111 @@
+/*
+ * oxAuth is available under the MIT License (2008). See http://opensource.org/licenses/MIT for full text.
+ *
+ * Copyright (c) 2014, Gluu
+ */
+
+package org.gluu.oxauth.interop;
+
+import static org.testng.Assert.assertEquals;
+import static org.testng.Assert.assertNotNull;
+
+import java.util.Arrays;
+import java.util.List;
+import java.util.UUID;
+
+import org.gluu.oxauth.BaseTest;
+import org.gluu.oxauth.client.AuthorizationRequest;
+import org.gluu.oxauth.client.AuthorizationResponse;
+import org.gluu.oxauth.client.RegisterClient;
+import org.gluu.oxauth.client.RegisterRequest;
+import org.gluu.oxauth.client.RegisterResponse;
+import org.gluu.oxauth.client.TokenClient;
+import org.gluu.oxauth.client.TokenRequest;
+import org.gluu.oxauth.client.TokenResponse;
+import org.gluu.oxauth.model.common.AuthenticationMethod;
+import org.gluu.oxauth.model.common.GrantType;
+import org.gluu.oxauth.model.common.ResponseType;
+import org.gluu.oxauth.model.crypto.OxAuthCryptoProvider;
+import org.gluu.oxauth.model.register.ApplicationType;
+import org.gluu.oxauth.model.util.StringUtils;
+import org.testng.annotations.Parameters;
+import org.testng.annotations.Test;
+
+/**
+ * OC5:FeatureTest-Can Make Access Token Request with client secret jwt Authentication
+ *
+ * @author Javier Rojas Blum
+ * @version June 19, 2015
+ */
+public class CanMakeAccessTokenRequestWithClientSecretJwtAuthentication extends BaseTest {
+
+    @Parameters({"redirectUris", "redirectUri", "userId", "userSecret", "sectorIdentifierUri"})
+    @Test
+    public void canMakeAccessTokenRequestWithClientSecretJwtAuthentication(
+            final String redirectUris, final String redirectUri, final String userId, final String userSecret,
+            final String sectorIdentifierUri) throws Exception {
+        showTitle("OC5:FeatureTest-Can Make Access Token Request with client secret jwt Authentication");
+
+        // 1. Register client
+        RegisterRequest registerRequest = new RegisterRequest(ApplicationType.WEB, "oxAuth test app",
+                StringUtils.spaceSeparatedToList(redirectUris));
+        registerRequest.setTokenEndpointAuthMethod(AuthenticationMethod.CLIENT_SECRET_JWT);
+        registerRequest.setSectorIdentifierUri(sectorIdentifierUri);
+
+        RegisterClient registerClient = new RegisterClient(registrationEndpoint);
+        registerClient.setRequest(registerRequest);
+        RegisterResponse registerResponse = registerClient.exec();
+
+        showClient(registerClient);
+        assertEquals(registerResponse.getStatus(), 200, "Unexpected response code: " + registerResponse.getEntity());
+        assertNotNull(registerResponse.getClientId());
+        assertNotNull(registerResponse.getClientSecret());
+        assertNotNull(registerResponse.getRegistrationAccessToken());
+        assertNotNull(registerResponse.getClientIdIssuedAt());
+        assertNotNull(registerResponse.getClientSecretExpiresAt());
+
+        String clientId = registerResponse.getClientId();
+        String clientSecret = registerResponse.getClientSecret();
+
+        // 2. Request authorization
+        List<ResponseType> responseTypes = Arrays.asList(ResponseType.CODE);
+        List<String> scopes = Arrays.asList("openid", "profile", "address", "email");
+        String state = UUID.randomUUID().toString();
+
+        AuthorizationRequest authorizationRequest = new AuthorizationRequest(responseTypes, clientId, scopes, redirectUri, null);
+        authorizationRequest.setState(state);
+
+        AuthorizationResponse authorizationResponse = authenticateResourceOwnerAndGrantAccess(
+                authorizationEndpoint, authorizationRequest, userId, userSecret);
+
+        assertNotNull(authorizationResponse.getLocation());
+        assertNotNull(authorizationResponse.getCode());
+        assertNotNull(authorizationResponse.getState());
+
+        String authorizationCode = authorizationResponse.getCode();
+
+        // 3. Get Access Token
+        OxAuthCryptoProvider cryptoProvider = new OxAuthCryptoProvider();
+
+        TokenRequest tokenRequest = new TokenRequest(GrantType.AUTHORIZATION_CODE);
+        tokenRequest.setAuthenticationMethod(AuthenticationMethod.CLIENT_SECRET_JWT);
+        tokenRequest.setCryptoProvider(cryptoProvider);
+        tokenRequest.setAudience(tokenEndpoint);
+        tokenRequest.setCode(authorizationCode);
+        tokenRequest.setRedirectUri(redirectUri);
+        tokenRequest.setAuthUsername(clientId);
+        tokenRequest.setAuthPassword(clientSecret);
+
+        TokenClient tokenClient = new TokenClient(tokenEndpoint);
+        tokenClient.setRequest(tokenRequest);
+        TokenResponse tokenResponse = tokenClient.exec();
+
+        showClient(tokenClient);
+        assertEquals(tokenResponse.getStatus(), 200, "Unexpected response code: " + tokenResponse.getStatus());
+        assertNotNull(tokenResponse.getEntity(), "The entity is null");
+        assertNotNull(tokenResponse.getAccessToken(), "The access token is null");
+        assertNotNull(tokenResponse.getExpiresIn(), "The expires in value is null");
+        assertNotNull(tokenResponse.getTokenType(), "The token type is null");
+        assertNotNull(tokenResponse.getRefreshToken(), "The refresh token is null");
+    }
+}
\ No newline at end of file
diff --git a/oxAuth/Client/src/test/java/org/gluu/oxauth/interop/CanMakeAccessTokenRequestWithClientSecretPostAuthentication.java b/oxAuth/Client/src/test/java/org/gluu/oxauth/interop/CanMakeAccessTokenRequestWithClientSecretPostAuthentication.java
new file mode 100644
index 00000000..ae56fe67
--- /dev/null
+++ b/oxAuth/Client/src/test/java/org/gluu/oxauth/interop/CanMakeAccessTokenRequestWithClientSecretPostAuthentication.java
@@ -0,0 +1,107 @@
+/*
+ * oxAuth is available under the MIT License (2008). See http://opensource.org/licenses/MIT for full text.
+ *
+ * Copyright (c) 2014, Gluu
+ */
+
+package org.gluu.oxauth.interop;
+
+import static org.testng.Assert.assertEquals;
+import static org.testng.Assert.assertNotNull;
+
+import java.util.Arrays;
+import java.util.List;
+import java.util.UUID;
+
+import org.gluu.oxauth.BaseTest;
+import org.gluu.oxauth.client.AuthorizationRequest;
+import org.gluu.oxauth.client.AuthorizationResponse;
+import org.gluu.oxauth.client.RegisterClient;
+import org.gluu.oxauth.client.RegisterRequest;
+import org.gluu.oxauth.client.RegisterResponse;
+import org.gluu.oxauth.client.TokenClient;
+import org.gluu.oxauth.client.TokenRequest;
+import org.gluu.oxauth.client.TokenResponse;
+import org.gluu.oxauth.model.common.AuthenticationMethod;
+import org.gluu.oxauth.model.common.GrantType;
+import org.gluu.oxauth.model.common.ResponseType;
+import org.gluu.oxauth.model.register.ApplicationType;
+import org.gluu.oxauth.model.util.StringUtils;
+import org.testng.annotations.Parameters;
+import org.testng.annotations.Test;
+
+/**
+ * OC5:FeatureTest-Can Make Access Token Request with client secret post Authentication
+ *
+ * @author Javier Rojas Blum
+ * @version June 19, 2015
+ */
+public class CanMakeAccessTokenRequestWithClientSecretPostAuthentication extends BaseTest {
+
+    @Parameters({"redirectUris", "redirectUri", "userId", "userSecret", "sectorIdentifierUri"})
+    @Test
+    public void canMakeAccessTokenRequestWithClientSecretPostAuthentication(
+            final String redirectUris, final String redirectUri, final String userId, final String userSecret,
+            final String sectorIdentifierUri) throws Exception {
+        showTitle("OC5:FeatureTest-Can Make Access Token Request with client secret post Authentication");
+
+        List<ResponseType> responseTypes = Arrays.asList(ResponseType.CODE);
+
+        // 1. Register client
+        RegisterRequest registerRequest = new RegisterRequest(ApplicationType.WEB, "oxAuth test app",
+                StringUtils.spaceSeparatedToList(redirectUris));
+        registerRequest.setTokenEndpointAuthMethod(AuthenticationMethod.CLIENT_SECRET_POST);
+        registerRequest.setSectorIdentifierUri(sectorIdentifierUri);
+
+        RegisterClient registerClient = new RegisterClient(registrationEndpoint);
+        registerClient.setRequest(registerRequest);
+        RegisterResponse registerResponse = registerClient.exec();
+
+        showClient(registerClient);
+        assertEquals(registerResponse.getStatus(), 200, "Unexpected response code: " + registerResponse.getEntity());
+        assertNotNull(registerResponse.getClientId());
+        assertNotNull(registerResponse.getClientSecret());
+        assertNotNull(registerResponse.getRegistrationAccessToken());
+        assertNotNull(registerResponse.getClientIdIssuedAt());
+        assertNotNull(registerResponse.getClientSecretExpiresAt());
+
+        String clientId = registerResponse.getClientId();
+        String clientSecret = registerResponse.getClientSecret();
+
+        // 2. Request authorization
+        List<String> scopes = Arrays.asList("openid", "profile", "address", "email");
+        String state = UUID.randomUUID().toString();
+
+        AuthorizationRequest authorizationRequest = new AuthorizationRequest(responseTypes, clientId, scopes, redirectUri, null);
+        authorizationRequest.setState(state);
+
+        AuthorizationResponse authorizationResponse = authenticateResourceOwnerAndGrantAccess(
+                authorizationEndpoint, authorizationRequest, userId, userSecret);
+
+        assertNotNull(authorizationResponse.getLocation());
+        assertNotNull(authorizationResponse.getCode());
+        assertNotNull(authorizationResponse.getState());
+
+        String authorizationCode = authorizationResponse.getCode();
+
+        // 3. Get Access Token
+        TokenRequest tokenRequest = new TokenRequest(GrantType.AUTHORIZATION_CODE);
+        tokenRequest.setCode(authorizationCode);
+        tokenRequest.setRedirectUri(redirectUri);
+        tokenRequest.setAuthUsername(clientId);
+        tokenRequest.setAuthPassword(clientSecret);
+        tokenRequest.setAuthenticationMethod(AuthenticationMethod.CLIENT_SECRET_POST);
+
+        TokenClient tokenClient = new TokenClient(tokenEndpoint);
+        tokenClient.setRequest(tokenRequest);
+        TokenResponse tokenResponse = tokenClient.exec();
+
+        showClient(tokenClient);
+        assertEquals(tokenResponse.getStatus(), 200, "Unexpected response code: " + tokenResponse.getStatus());
+        assertNotNull(tokenResponse.getEntity(), "The entity is null");
+        assertNotNull(tokenResponse.getAccessToken(), "The access token is null");
+        assertNotNull(tokenResponse.getExpiresIn(), "The expires in value is null");
+        assertNotNull(tokenResponse.getTokenType(), "The token type is null");
+        assertNotNull(tokenResponse.getRefreshToken(), "The refresh token is null");
+    }
+}
\ No newline at end of file
diff --git a/oxAuth/Client/src/test/java/org/gluu/oxauth/interop/CanMakeAccessTokenRequestWithPrivateKeyJwtAuthentication.java b/oxAuth/Client/src/test/java/org/gluu/oxauth/interop/CanMakeAccessTokenRequestWithPrivateKeyJwtAuthentication.java
new file mode 100644
index 00000000..5419c8e7
--- /dev/null
+++ b/oxAuth/Client/src/test/java/org/gluu/oxauth/interop/CanMakeAccessTokenRequestWithPrivateKeyJwtAuthentication.java
@@ -0,0 +1,115 @@
+/*
+ * oxAuth is available under the MIT License (2008). See http://opensource.org/licenses/MIT for full text.
+ *
+ * Copyright (c) 2014, Gluu
+ */
+
+package org.gluu.oxauth.interop;
+
+import static org.testng.Assert.assertEquals;
+import static org.testng.Assert.assertNotNull;
+
+import java.util.Arrays;
+import java.util.List;
+import java.util.UUID;
+
+import org.gluu.oxauth.BaseTest;
+import org.gluu.oxauth.client.AuthorizationRequest;
+import org.gluu.oxauth.client.AuthorizationResponse;
+import org.gluu.oxauth.client.RegisterClient;
+import org.gluu.oxauth.client.RegisterRequest;
+import org.gluu.oxauth.client.RegisterResponse;
+import org.gluu.oxauth.client.TokenClient;
+import org.gluu.oxauth.client.TokenRequest;
+import org.gluu.oxauth.client.TokenResponse;
+import org.gluu.oxauth.model.common.AuthenticationMethod;
+import org.gluu.oxauth.model.common.GrantType;
+import org.gluu.oxauth.model.common.ResponseType;
+import org.gluu.oxauth.model.crypto.OxAuthCryptoProvider;
+import org.gluu.oxauth.model.crypto.signature.SignatureAlgorithm;
+import org.gluu.oxauth.model.register.ApplicationType;
+import org.gluu.oxauth.model.util.StringUtils;
+import org.testng.annotations.Parameters;
+import org.testng.annotations.Test;
+
+/**
+ * OC5:FeatureTest-Can Make Access Token Request with private key jwt Authentication
+ *
+ * @author Javier Rojas Blum
+ * @version June 15, 2016
+ */
+public class CanMakeAccessTokenRequestWithPrivateKeyJwtAuthentication extends BaseTest {
+
+    @Parameters({"redirectUris", "redirectUri", "userId", "userSecret", "sectorIdentifierUri", "clientJwksUri",
+            "RS256_keyId", "dnName", "keyStoreFile", "keyStoreSecret"})
+    @Test
+    public void canMakeAccessTokenRequestWithPrivateKeyJwtAuthentication(
+            final String redirectUris, final String redirectUri, final String userId, final String userSecret,
+            final String sectorIdentifierUri, final String clientJwksUri,
+            final String keyId, final String dnName, final String keyStoreFile, final String keyStoreSecret) throws Exception {
+        showTitle("OC5:FeatureTest-Can Make Access Token Request with private key jwt Authentication");
+
+        // 1. Register client
+        RegisterRequest registerRequest = new RegisterRequest(ApplicationType.WEB, "oxAuth test app",
+                StringUtils.spaceSeparatedToList(redirectUris));
+        registerRequest.setTokenEndpointAuthMethod(AuthenticationMethod.PRIVATE_KEY_JWT);
+        registerRequest.setSectorIdentifierUri(sectorIdentifierUri);
+        registerRequest.setJwksUri(clientJwksUri);
+
+        RegisterClient registerClient = new RegisterClient(registrationEndpoint);
+        registerClient.setRequest(registerRequest);
+        RegisterResponse registerResponse = registerClient.exec();
+
+        showClient(registerClient);
+        assertEquals(registerResponse.getStatus(), 200, "Unexpected response code: " + registerResponse.getEntity());
+        assertNotNull(registerResponse.getClientId());
+        assertNotNull(registerResponse.getClientSecret());
+        assertNotNull(registerResponse.getRegistrationAccessToken());
+        assertNotNull(registerResponse.getClientIdIssuedAt());
+        assertNotNull(registerResponse.getClientSecretExpiresAt());
+
+        String clientId = registerResponse.getClientId();
+
+        // 2. Request authorization
+        List<ResponseType> responseTypes = Arrays.asList(ResponseType.CODE);
+        List<String> scopes = Arrays.asList("openid", "profile", "address", "email");
+        String state = UUID.randomUUID().toString();
+
+        AuthorizationRequest authorizationRequest = new AuthorizationRequest(responseTypes, clientId, scopes, redirectUri, null);
+        authorizationRequest.setState(state);
+
+        AuthorizationResponse authorizationResponse = authenticateResourceOwnerAndGrantAccess(
+                authorizationEndpoint, authorizationRequest, userId, userSecret);
+
+        assertNotNull(authorizationResponse.getLocation());
+        assertNotNull(authorizationResponse.getCode());
+        assertNotNull(authorizationResponse.getState());
+
+        String authorizationCode = authorizationResponse.getCode();
+
+        // 3. Get Access Token
+        OxAuthCryptoProvider cryptoProvider = new OxAuthCryptoProvider(keyStoreFile, keyStoreSecret, dnName);
+
+        TokenRequest tokenRequest = new TokenRequest(GrantType.AUTHORIZATION_CODE);
+        tokenRequest.setAuthenticationMethod(AuthenticationMethod.PRIVATE_KEY_JWT);
+        tokenRequest.setAlgorithm(SignatureAlgorithm.RS256);
+        tokenRequest.setCryptoProvider(cryptoProvider);
+        tokenRequest.setKeyId(keyId);
+        tokenRequest.setAudience(tokenEndpoint);
+        tokenRequest.setCode(authorizationCode);
+        tokenRequest.setRedirectUri(redirectUri);
+        tokenRequest.setAuthUsername(clientId);
+
+        TokenClient tokenClient = new TokenClient(tokenEndpoint);
+        tokenClient.setRequest(tokenRequest);
+        TokenResponse tokenResponse = tokenClient.exec();
+
+        showClient(tokenClient);
+        assertEquals(tokenResponse.getStatus(), 200, "Unexpected response code: " + tokenResponse.getStatus());
+        assertNotNull(tokenResponse.getEntity(), "The entity is null");
+        assertNotNull(tokenResponse.getAccessToken(), "The access token is null");
+        assertNotNull(tokenResponse.getExpiresIn(), "The expires in value is null");
+        assertNotNull(tokenResponse.getTokenType(), "The token type is null");
+        assertNotNull(tokenResponse.getRefreshToken(), "The refresh token is null");
+    }
+}
\ No newline at end of file
diff --git a/oxAuth/Client/src/test/java/org/gluu/oxauth/interop/CanProvideEncryptedIdTokenResponse.java b/oxAuth/Client/src/test/java/org/gluu/oxauth/interop/CanProvideEncryptedIdTokenResponse.java
new file mode 100644
index 00000000..a68fe881
--- /dev/null
+++ b/oxAuth/Client/src/test/java/org/gluu/oxauth/interop/CanProvideEncryptedIdTokenResponse.java
@@ -0,0 +1,408 @@
+/*
+ * oxAuth is available under the MIT License (2008). See http://opensource.org/licenses/MIT for full text.
+ *
+ * Copyright (c) 2014, Gluu
+ */
+
+package org.gluu.oxauth.interop;
+
+import static org.testng.Assert.assertEquals;
+import static org.testng.Assert.assertNotNull;
+import static org.testng.Assert.fail;
+
+import java.security.PrivateKey;
+import java.util.Arrays;
+import java.util.List;
+import java.util.UUID;
+
+import org.gluu.oxauth.BaseTest;
+import org.gluu.oxauth.client.AuthorizationRequest;
+import org.gluu.oxauth.client.AuthorizationResponse;
+import org.gluu.oxauth.client.AuthorizeClient;
+import org.gluu.oxauth.client.RegisterClient;
+import org.gluu.oxauth.client.RegisterRequest;
+import org.gluu.oxauth.client.RegisterResponse;
+import org.gluu.oxauth.model.common.ResponseType;
+import org.gluu.oxauth.model.crypto.OxAuthCryptoProvider;
+import org.gluu.oxauth.model.crypto.encryption.BlockEncryptionAlgorithm;
+import org.gluu.oxauth.model.crypto.encryption.KeyEncryptionAlgorithm;
+import org.gluu.oxauth.model.jwe.Jwe;
+import org.gluu.oxauth.model.jwt.JwtClaimName;
+import org.gluu.oxauth.model.jwt.JwtHeaderName;
+import org.gluu.oxauth.model.register.ApplicationType;
+import org.gluu.oxauth.model.util.StringUtils;
+import org.gluu.oxauth.model.util.Util;
+import org.testng.annotations.Parameters;
+import org.testng.annotations.Test;
+
+/**
+ * OC5:FeatureTest-Can Provide Encrypted ID Token Response
+ *
+ * @author Javier Rojas Blum
+ * @version February 12, 2019
+ */
+public class CanProvideEncryptedIdTokenResponse extends BaseTest {
+
+    @Parameters({"userId", "userSecret", "redirectUri", "redirectUris", "sectorIdentifierUri"})
+    @Test
+    public void canProvideEncryptedIdTokenResponseAlgA128KWEncA128GCM(
+            final String userId, final String userSecret, final String redirectUri, final String redirectUris,
+            final String sectorIdentifierUri) {
+        try {
+            showTitle("OC5:FeatureTest-Can Provide Encrypted ID Token Response A128KW A128GCM");
+
+            List<ResponseType> responseTypes = Arrays.asList(ResponseType.TOKEN, ResponseType.ID_TOKEN);
+
+            // 1. Register client
+            RegisterRequest registerRequest = new RegisterRequest(ApplicationType.WEB, "oxAuth test app",
+                    StringUtils.spaceSeparatedToList(redirectUris));
+            registerRequest.setResponseTypes(responseTypes);
+            registerRequest.setIdTokenEncryptedResponseAlg(KeyEncryptionAlgorithm.A128KW);
+            registerRequest.setIdTokenEncryptedResponseEnc(BlockEncryptionAlgorithm.A128GCM);
+            registerRequest.setSectorIdentifierUri(sectorIdentifierUri);
+
+            RegisterClient registerClient = new RegisterClient(registrationEndpoint);
+            registerClient.setRequest(registerRequest);
+            RegisterResponse registerResponse = registerClient.exec();
+
+            showClient(registerClient);
+            assertEquals(registerResponse.getStatus(), 200, "Unexpected response code: " + registerResponse.getEntity());
+            assertNotNull(registerResponse.getClientId());
+            assertNotNull(registerResponse.getClientSecret());
+            assertNotNull(registerResponse.getRegistrationAccessToken());
+            assertNotNull(registerResponse.getClientIdIssuedAt());
+            assertNotNull(registerResponse.getClientSecretExpiresAt());
+
+            String clientId = registerResponse.getClientId();
+            String clientSecret = registerResponse.getClientSecret();
+
+            // 2. Request authorization
+            List<String> scopes = Arrays.asList("openid", "profile", "address", "email");
+            String nonce = UUID.randomUUID().toString();
+            String state = UUID.randomUUID().toString();
+
+            AuthorizationRequest authorizationRequest = new AuthorizationRequest(responseTypes, clientId, scopes, redirectUri, nonce);
+            authorizationRequest.setState(state);
+
+            AuthorizeClient authorizeClient = new AuthorizeClient(authorizationEndpoint);
+            authorizeClient.setRequest(authorizationRequest);
+
+            AuthorizationResponse authorizationResponse = authenticateResourceOwnerAndGrantAccess(
+                    authorizationEndpoint, authorizationRequest, userId, userSecret);
+
+            assertNotNull(authorizationResponse.getLocation(), "The location is null");
+            assertNotNull(authorizationResponse.getAccessToken(), "The accessToken is null");
+            assertNotNull(authorizationResponse.getTokenType(), "The tokenType is null");
+            assertNotNull(authorizationResponse.getIdToken(), "The idToken is null");
+            assertNotNull(authorizationResponse.getState(), "The state is null");
+
+            String idToken = authorizationResponse.getIdToken();
+
+            // 3. Read Encrypted ID Token
+            Jwe jwe = Jwe.parse(idToken, null, clientSecret.getBytes(Util.UTF8_STRING_ENCODING));
+            assertNotNull(jwe.getHeader().getClaimAsString(JwtHeaderName.TYPE));
+            assertNotNull(jwe.getHeader().getClaimAsString(JwtHeaderName.ALGORITHM));
+            assertNotNull(jwe.getClaims().getClaimAsString(JwtClaimName.ISSUER));
+            assertNotNull(jwe.getClaims().getClaimAsString(JwtClaimName.AUDIENCE));
+            assertNotNull(jwe.getClaims().getClaimAsString(JwtClaimName.EXPIRATION_TIME));
+            assertNotNull(jwe.getClaims().getClaimAsString(JwtClaimName.ISSUED_AT));
+            assertNotNull(jwe.getClaims().getClaimAsString(JwtClaimName.SUBJECT_IDENTIFIER));
+        } catch (Exception ex) {
+            fail(ex.getMessage(), ex);
+        }
+    }
+
+    @Parameters({"userId", "userSecret", "redirectUri", "redirectUris", "sectorIdentifierUri"})
+    @Test
+    public void canProvideEncryptedIdTokenResponseAlgA256KWEncA256GCM(
+            final String userId, final String userSecret, final String redirectUri, final String redirectUris,
+            final String sectorIdentifierUri) {
+        try {
+            showTitle("OC5:FeatureTest-Can Provide Encrypted ID Token Response A256KW A256GCM");
+
+            List<ResponseType> responseTypes = Arrays.asList(ResponseType.TOKEN, ResponseType.ID_TOKEN);
+
+            // 1. Register client
+            RegisterRequest registerRequest = new RegisterRequest(ApplicationType.WEB, "oxAuth test app",
+                    StringUtils.spaceSeparatedToList(redirectUris));
+            registerRequest.setResponseTypes(responseTypes);
+            registerRequest.setIdTokenEncryptedResponseAlg(KeyEncryptionAlgorithm.A256KW);
+            registerRequest.setIdTokenEncryptedResponseEnc(BlockEncryptionAlgorithm.A256GCM);
+            registerRequest.setSectorIdentifierUri(sectorIdentifierUri);
+
+            RegisterClient registerClient = new RegisterClient(registrationEndpoint);
+            registerClient.setRequest(registerRequest);
+            RegisterResponse registerResponse = registerClient.exec();
+
+            showClient(registerClient);
+            assertEquals(registerResponse.getStatus(), 200, "Unexpected response code: " + registerResponse.getEntity());
+            assertNotNull(registerResponse.getClientId());
+            assertNotNull(registerResponse.getClientSecret());
+            assertNotNull(registerResponse.getRegistrationAccessToken());
+            assertNotNull(registerResponse.getClientIdIssuedAt());
+            assertNotNull(registerResponse.getClientSecretExpiresAt());
+
+            String clientId = registerResponse.getClientId();
+            String clientSecret = registerResponse.getClientSecret();
+
+            // 2. Request authorization
+            List<String> scopes = Arrays.asList("openid", "profile", "address", "email");
+            String nonce = UUID.randomUUID().toString();
+            String state = UUID.randomUUID().toString();
+
+            AuthorizationRequest authorizationRequest = new AuthorizationRequest(responseTypes, clientId, scopes, redirectUri, nonce);
+            authorizationRequest.setState(state);
+
+            AuthorizeClient authorizeClient = new AuthorizeClient(authorizationEndpoint);
+            authorizeClient.setRequest(authorizationRequest);
+
+            AuthorizationResponse authorizationResponse = authenticateResourceOwnerAndGrantAccess(
+                    authorizationEndpoint, authorizationRequest, userId, userSecret);
+
+            assertNotNull(authorizationResponse.getLocation(), "The location is null");
+            assertNotNull(authorizationResponse.getAccessToken(), "The accessToken is null");
+            assertNotNull(authorizationResponse.getTokenType(), "The tokenType is null");
+            assertNotNull(authorizationResponse.getIdToken(), "The idToken is null");
+            assertNotNull(authorizationResponse.getState(), "The state is null");
+
+            String idToken = authorizationResponse.getIdToken();
+
+            // 3. Read Encrypted ID Token
+            Jwe jwe = Jwe.parse(idToken, null, clientSecret.getBytes(Util.UTF8_STRING_ENCODING));
+            assertNotNull(jwe.getHeader().getClaimAsString(JwtHeaderName.TYPE));
+            assertNotNull(jwe.getHeader().getClaimAsString(JwtHeaderName.ALGORITHM));
+            assertNotNull(jwe.getClaims().getClaimAsString(JwtClaimName.ISSUER));
+            assertNotNull(jwe.getClaims().getClaimAsString(JwtClaimName.AUDIENCE));
+            assertNotNull(jwe.getClaims().getClaimAsString(JwtClaimName.EXPIRATION_TIME));
+            assertNotNull(jwe.getClaims().getClaimAsString(JwtClaimName.ISSUED_AT));
+            assertNotNull(jwe.getClaims().getClaimAsString(JwtClaimName.SUBJECT_IDENTIFIER));
+        } catch (Exception ex) {
+            fail(ex.getMessage(), ex);
+        }
+    }
+
+    @Parameters({"userId", "userSecret", "redirectUri", "redirectUris",
+            "clientJwksUri", "RSA1_5_keyId", "keyStoreFile", "keyStoreSecret",
+            "sectorIdentifierUri"})
+    @Test
+    public void canProvideEncryptedIdTokenResponseAlgRSA15EncA128CBCPLUSHS256(
+            final String userId, final String userSecret, final String redirectUri, final String redirectUris,
+            final String jwksUri, final String keyId, final String keyStoreFile, final String keyStoreSecret,
+            final String sectorIdentifierUri) {
+        try {
+            showTitle("OC5:FeatureTest-Can Provide Encrypted ID Token Response RSA1_5 A128CBC_PLUS_HS256");
+
+            List<ResponseType> responseTypes = Arrays.asList(ResponseType.TOKEN, ResponseType.ID_TOKEN);
+
+            // 1. Register client
+            RegisterRequest registerRequest = new RegisterRequest(ApplicationType.WEB, "oxAuth test app",
+                    StringUtils.spaceSeparatedToList(redirectUris));
+            registerRequest.setResponseTypes(responseTypes);
+            registerRequest.setJwksUri(jwksUri);
+            registerRequest.setIdTokenEncryptedResponseAlg(KeyEncryptionAlgorithm.RSA1_5);
+            registerRequest.setIdTokenEncryptedResponseEnc(BlockEncryptionAlgorithm.A128CBC_PLUS_HS256);
+            registerRequest.setSectorIdentifierUri(sectorIdentifierUri);
+
+            RegisterClient registerClient = new RegisterClient(registrationEndpoint);
+            registerClient.setRequest(registerRequest);
+            RegisterResponse registerResponse = registerClient.exec();
+
+            showClient(registerClient);
+            assertEquals(registerResponse.getStatus(), 200, "Unexpected response code: " + registerResponse.getEntity());
+            assertNotNull(registerResponse.getClientId());
+            assertNotNull(registerResponse.getClientSecret());
+            assertNotNull(registerResponse.getRegistrationAccessToken());
+            assertNotNull(registerResponse.getClientIdIssuedAt());
+            assertNotNull(registerResponse.getClientSecretExpiresAt());
+
+            String clientId = registerResponse.getClientId();
+
+            // 2. Request authorization
+            List<String> scopes = Arrays.asList("openid", "profile", "address", "email");
+            String nonce = UUID.randomUUID().toString();
+            String state = UUID.randomUUID().toString();
+
+            AuthorizationRequest authorizationRequest = new AuthorizationRequest(responseTypes, clientId, scopes, redirectUri, nonce);
+            authorizationRequest.setState(state);
+
+            AuthorizeClient authorizeClient = new AuthorizeClient(authorizationEndpoint);
+            authorizeClient.setRequest(authorizationRequest);
+
+            AuthorizationResponse authorizationResponse = authenticateResourceOwnerAndGrantAccess(
+                    authorizationEndpoint, authorizationRequest, userId, userSecret);
+
+            assertNotNull(authorizationResponse.getLocation(), "The location is null");
+            assertNotNull(authorizationResponse.getAccessToken(), "The accessToken is null");
+            assertNotNull(authorizationResponse.getTokenType(), "The tokenType is null");
+            assertNotNull(authorizationResponse.getIdToken(), "The idToken is null");
+            assertNotNull(authorizationResponse.getState(), "The state is null");
+
+            String idToken = authorizationResponse.getIdToken();
+
+            // 3. Read Encrypted ID Token
+            OxAuthCryptoProvider cryptoProvider = new OxAuthCryptoProvider(keyStoreFile, keyStoreSecret, null);
+            PrivateKey privateKey = cryptoProvider.getPrivateKey(keyId);
+
+            Jwe jwe = Jwe.parse(idToken, privateKey, null);
+            assertNotNull(jwe.getHeader().getClaimAsString(JwtHeaderName.TYPE));
+            assertNotNull(jwe.getHeader().getClaimAsString(JwtHeaderName.ALGORITHM));
+            assertNotNull(jwe.getClaims().getClaimAsString(JwtClaimName.ISSUER));
+            assertNotNull(jwe.getClaims().getClaimAsString(JwtClaimName.AUDIENCE));
+            assertNotNull(jwe.getClaims().getClaimAsString(JwtClaimName.EXPIRATION_TIME));
+            assertNotNull(jwe.getClaims().getClaimAsString(JwtClaimName.ISSUED_AT));
+            assertNotNull(jwe.getClaims().getClaimAsString(JwtClaimName.SUBJECT_IDENTIFIER));
+        } catch (Exception ex) {
+            fail(ex.getMessage(), ex);
+        }
+    }
+
+    @Parameters({"userId", "userSecret", "redirectUri", "redirectUris",
+            "clientJwksUri", "RSA1_5_keyId", "keyStoreFile", "keyStoreSecret",
+            "sectorIdentifierUri"})
+    @Test
+    public void canProvideEncryptedIdTokenResponseAlgRSA15EncA256CBCPLUSHS512(
+            final String userId, final String userSecret, final String redirectUri, final String redirectUris,
+            final String jwksUri, final String keyId, final String keyStoreFile, final String keyStoreSecret,
+            final String sectorIdentifierUri) {
+        try {
+            showTitle("OC5:FeatureTest-Can Provide Encrypted ID Token Response RSA1_5 A256CBC_PLUS_HS512");
+
+            List<ResponseType> responseTypes = Arrays.asList(ResponseType.TOKEN, ResponseType.ID_TOKEN);
+
+            // 1. Register client
+            RegisterRequest registerRequest = new RegisterRequest(ApplicationType.WEB, "oxAuth test app",
+                    StringUtils.spaceSeparatedToList(redirectUris));
+            registerRequest.setResponseTypes(responseTypes);
+            registerRequest.setJwksUri(jwksUri);
+            registerRequest.setIdTokenEncryptedResponseAlg(KeyEncryptionAlgorithm.RSA1_5);
+            registerRequest.setIdTokenEncryptedResponseEnc(BlockEncryptionAlgorithm.A256CBC_PLUS_HS512);
+            registerRequest.setSectorIdentifierUri(sectorIdentifierUri);
+
+            RegisterClient registerClient = new RegisterClient(registrationEndpoint);
+            registerClient.setRequest(registerRequest);
+            RegisterResponse registerResponse = registerClient.exec();
+
+            showClient(registerClient);
+            assertEquals(registerResponse.getStatus(), 200, "Unexpected response code: " + registerResponse.getEntity());
+            assertNotNull(registerResponse.getClientId());
+            assertNotNull(registerResponse.getClientSecret());
+            assertNotNull(registerResponse.getRegistrationAccessToken());
+            assertNotNull(registerResponse.getClientIdIssuedAt());
+            assertNotNull(registerResponse.getClientSecretExpiresAt());
+
+            String clientId = registerResponse.getClientId();
+
+            // 2. Request authorization
+            List<String> scopes = Arrays.asList("openid", "profile", "address", "email");
+            String nonce = UUID.randomUUID().toString();
+            String state = UUID.randomUUID().toString();
+
+            AuthorizationRequest authorizationRequest = new AuthorizationRequest(responseTypes, clientId, scopes, redirectUri, nonce);
+            authorizationRequest.setState(state);
+
+            AuthorizeClient authorizeClient = new AuthorizeClient(authorizationEndpoint);
+            authorizeClient.setRequest(authorizationRequest);
+
+            AuthorizationResponse authorizationResponse = authenticateResourceOwnerAndGrantAccess(
+                    authorizationEndpoint, authorizationRequest, userId, userSecret);
+
+            assertNotNull(authorizationResponse.getLocation(), "The location is null");
+            assertNotNull(authorizationResponse.getAccessToken(), "The accessToken is null");
+            assertNotNull(authorizationResponse.getTokenType(), "The tokenType is null");
+            assertNotNull(authorizationResponse.getIdToken(), "The idToken is null");
+            assertNotNull(authorizationResponse.getState(), "The state is null");
+
+            String idToken = authorizationResponse.getIdToken();
+
+            // 3. Read Encrypted ID Token
+            OxAuthCryptoProvider cryptoProvider = new OxAuthCryptoProvider(keyStoreFile, keyStoreSecret, null);
+            PrivateKey privateKey = cryptoProvider.getPrivateKey(keyId);
+
+            Jwe jwe = Jwe.parse(idToken, privateKey, null);
+            assertNotNull(jwe.getHeader().getClaimAsString(JwtHeaderName.TYPE));
+            assertNotNull(jwe.getHeader().getClaimAsString(JwtHeaderName.ALGORITHM));
+            assertNotNull(jwe.getClaims().getClaimAsString(JwtClaimName.ISSUER));
+            assertNotNull(jwe.getClaims().getClaimAsString(JwtClaimName.AUDIENCE));
+            assertNotNull(jwe.getClaims().getClaimAsString(JwtClaimName.EXPIRATION_TIME));
+            assertNotNull(jwe.getClaims().getClaimAsString(JwtClaimName.ISSUED_AT));
+            assertNotNull(jwe.getClaims().getClaimAsString(JwtClaimName.SUBJECT_IDENTIFIER));
+        } catch (Exception ex) {
+            fail(ex.getMessage(), ex);
+        }
+    }
+
+    @Parameters({"userId", "userSecret", "redirectUri", "redirectUris",
+            "clientJwksUri", "RSA_OAEP_keyId", "keyStoreFile", "keyStoreSecret",
+            "sectorIdentifierUri"})
+    @Test
+    public void canProvideEncryptedIdTokenResponseAlgRSAOAEPEncA256GCM(
+            final String userId, final String userSecret, final String redirectUri, final String redirectUris,
+            final String jwksUri, final String keyId, final String keyStoreFile, final String keyStoreSecret,
+            final String sectorIdentifierUri) {
+        try {
+            showTitle("OC5:FeatureTest-Can Provide Encrypted ID Token Response RSA_OAEP A256GCM");
+
+            List<ResponseType> responseTypes = Arrays.asList(ResponseType.TOKEN, ResponseType.ID_TOKEN);
+
+            // 1. Register client
+            RegisterRequest registerRequest = new RegisterRequest(ApplicationType.WEB, "oxAuth test app",
+                    StringUtils.spaceSeparatedToList(redirectUris));
+            registerRequest.setResponseTypes(responseTypes);
+            registerRequest.setJwksUri(jwksUri);
+            registerRequest.setIdTokenEncryptedResponseAlg(KeyEncryptionAlgorithm.RSA_OAEP);
+            registerRequest.setIdTokenEncryptedResponseEnc(BlockEncryptionAlgorithm.A256GCM);
+            registerRequest.setSectorIdentifierUri(sectorIdentifierUri);
+
+            RegisterClient registerClient = new RegisterClient(registrationEndpoint);
+            registerClient.setRequest(registerRequest);
+            RegisterResponse registerResponse = registerClient.exec();
+
+            showClient(registerClient);
+            assertEquals(registerResponse.getStatus(), 200, "Unexpected response code: " + registerResponse.getEntity());
+            assertNotNull(registerResponse.getClientId());
+            assertNotNull(registerResponse.getClientSecret());
+            assertNotNull(registerResponse.getRegistrationAccessToken());
+            assertNotNull(registerResponse.getClientIdIssuedAt());
+            assertNotNull(registerResponse.getClientSecretExpiresAt());
+
+            String clientId = registerResponse.getClientId();
+
+            // 2. Request authorization
+            List<String> scopes = Arrays.asList("openid", "profile", "address", "email");
+            String nonce = UUID.randomUUID().toString();
+            String state = UUID.randomUUID().toString();
+
+            AuthorizationRequest authorizationRequest = new AuthorizationRequest(responseTypes, clientId, scopes, redirectUri, nonce);
+            authorizationRequest.setState(state);
+
+            AuthorizeClient authorizeClient = new AuthorizeClient(authorizationEndpoint);
+            authorizeClient.setRequest(authorizationRequest);
+
+            AuthorizationResponse authorizationResponse = authenticateResourceOwnerAndGrantAccess(
+                    authorizationEndpoint, authorizationRequest, userId, userSecret);
+
+            assertNotNull(authorizationResponse.getLocation(), "The location is null");
+            assertNotNull(authorizationResponse.getAccessToken(), "The accessToken is null");
+            assertNotNull(authorizationResponse.getTokenType(), "The tokenType is null");
+            assertNotNull(authorizationResponse.getIdToken(), "The idToken is null");
+            assertNotNull(authorizationResponse.getState(), "The state is null");
+
+            String idToken = authorizationResponse.getIdToken();
+
+            // 3. Read Encrypted ID Token
+            OxAuthCryptoProvider cryptoProvider = new OxAuthCryptoProvider(keyStoreFile, keyStoreSecret, null);
+            PrivateKey privateKey = cryptoProvider.getPrivateKey(keyId);
+
+            Jwe jwe = Jwe.parse(idToken, privateKey, null);
+            assertNotNull(jwe.getHeader().getClaimAsString(JwtHeaderName.TYPE));
+            assertNotNull(jwe.getHeader().getClaimAsString(JwtHeaderName.ALGORITHM));
+            assertNotNull(jwe.getClaims().getClaimAsString(JwtClaimName.ISSUER));
+            assertNotNull(jwe.getClaims().getClaimAsString(JwtClaimName.AUDIENCE));
+            assertNotNull(jwe.getClaims().getClaimAsString(JwtClaimName.EXPIRATION_TIME));
+            assertNotNull(jwe.getClaims().getClaimAsString(JwtClaimName.ISSUED_AT));
+            assertNotNull(jwe.getClaims().getClaimAsString(JwtClaimName.SUBJECT_IDENTIFIER));
+        } catch (Exception ex) {
+            fail(ex.getMessage(), ex);
+        }
+    }
+}
\ No newline at end of file
diff --git a/oxAuth/Client/src/test/java/org/gluu/oxauth/interop/CanProvideEncryptedUserInfoResponse.java b/oxAuth/Client/src/test/java/org/gluu/oxauth/interop/CanProvideEncryptedUserInfoResponse.java
new file mode 100644
index 00000000..b7187cd2
--- /dev/null
+++ b/oxAuth/Client/src/test/java/org/gluu/oxauth/interop/CanProvideEncryptedUserInfoResponse.java
@@ -0,0 +1,459 @@
+/*
+ * oxAuth is available under the MIT License (2008). See http://opensource.org/licenses/MIT for full text.
+ *
+ * Copyright (c) 2014, Gluu
+ */
+
+package org.gluu.oxauth.interop;
+
+import static org.testng.Assert.assertEquals;
+import static org.testng.Assert.assertNotNull;
+import static org.testng.Assert.fail;
+
+import java.security.PrivateKey;
+import java.util.Arrays;
+import java.util.List;
+import java.util.UUID;
+
+import org.gluu.oxauth.BaseTest;
+import org.gluu.oxauth.client.AuthorizationRequest;
+import org.gluu.oxauth.client.AuthorizationResponse;
+import org.gluu.oxauth.client.AuthorizeClient;
+import org.gluu.oxauth.client.RegisterClient;
+import org.gluu.oxauth.client.RegisterRequest;
+import org.gluu.oxauth.client.RegisterResponse;
+import org.gluu.oxauth.client.UserInfoClient;
+import org.gluu.oxauth.client.UserInfoResponse;
+import org.gluu.oxauth.model.common.ResponseType;
+import org.gluu.oxauth.model.crypto.OxAuthCryptoProvider;
+import org.gluu.oxauth.model.crypto.encryption.BlockEncryptionAlgorithm;
+import org.gluu.oxauth.model.crypto.encryption.KeyEncryptionAlgorithm;
+import org.gluu.oxauth.model.jwt.JwtClaimName;
+import org.gluu.oxauth.model.register.ApplicationType;
+import org.gluu.oxauth.model.util.StringUtils;
+import org.testng.annotations.Parameters;
+import org.testng.annotations.Test;
+
+/**
+ * OC5:FeatureTest-Can Provide Encrypted UserInfo Response
+ *
+ * @author Javier Rojas Blum
+ * @version March 8, 2019
+ */
+public class CanProvideEncryptedUserInfoResponse extends BaseTest {
+
+    @Parameters({"userId", "userSecret", "redirectUri", "redirectUris", "sectorIdentifierUri"})
+    @Test
+    public void canProvideEncryptedUserInfoResponseAlgA128KWEncA128GCM(
+            final String userId, final String userSecret, final String redirectUri, final String redirectUris,
+            final String sectorIdentifierUri) throws Exception {
+        showTitle("OC5:FeatureTest-Can Provide Encrypted UserInfo Response A128KW A128GCM");
+
+        List<ResponseType> responseTypes = Arrays.asList(ResponseType.TOKEN, ResponseType.ID_TOKEN);
+
+        // 1. Register client
+        RegisterRequest registerRequest = new RegisterRequest(ApplicationType.WEB, "oxAuth test app",
+                StringUtils.spaceSeparatedToList(redirectUris));
+        registerRequest.setResponseTypes(responseTypes);
+        registerRequest.setUserInfoEncryptedResponseAlg(KeyEncryptionAlgorithm.A128KW);
+        registerRequest.setUserInfoEncryptedResponseEnc(BlockEncryptionAlgorithm.A128GCM);
+        registerRequest.setSectorIdentifierUri(sectorIdentifierUri);
+
+        RegisterClient registerClient = new RegisterClient(registrationEndpoint);
+        registerClient.setRequest(registerRequest);
+        RegisterResponse registerResponse = registerClient.exec();
+
+        showClient(registerClient);
+        assertEquals(registerResponse.getStatus(), 200, "Unexpected response code: " + registerResponse.getEntity());
+        assertNotNull(registerResponse.getClientId());
+        assertNotNull(registerResponse.getClientSecret());
+        assertNotNull(registerResponse.getRegistrationAccessToken());
+        assertNotNull(registerResponse.getClientIdIssuedAt());
+        assertNotNull(registerResponse.getClientSecretExpiresAt());
+
+        String clientId = registerResponse.getClientId();
+        String clientSecret = registerResponse.getClientSecret();
+
+        // 2. Request authorization
+        List<String> scopes = Arrays.asList("openid", "profile", "address", "email");
+        String nonce = UUID.randomUUID().toString();
+        String state = UUID.randomUUID().toString();
+
+        AuthorizationRequest authorizationRequest = new AuthorizationRequest(responseTypes, clientId, scopes, redirectUri, nonce);
+        authorizationRequest.setState(state);
+
+        AuthorizeClient authorizeClient = new AuthorizeClient(authorizationEndpoint);
+        authorizeClient.setRequest(authorizationRequest);
+
+        AuthorizationResponse authorizationResponse = authenticateResourceOwnerAndGrantAccess(
+                authorizationEndpoint, authorizationRequest, userId, userSecret);
+
+        assertNotNull(authorizationResponse.getLocation(), "The location is null");
+        assertNotNull(authorizationResponse.getAccessToken(), "The accessToken is null");
+        assertNotNull(authorizationResponse.getTokenType(), "The tokenType is null");
+        assertNotNull(authorizationResponse.getIdToken(), "The idToken is null");
+        assertNotNull(authorizationResponse.getState(), "The state is null");
+
+        String accessToken = authorizationResponse.getAccessToken();
+
+        // 3. Request user info
+        UserInfoClient userInfoClient = new UserInfoClient(userInfoEndpoint);
+        userInfoClient.setSharedKey(clientSecret);
+        UserInfoResponse userInfoResponse = userInfoClient.execUserInfo(accessToken);
+
+        showClient(userInfoClient);
+        assertEquals(userInfoResponse.getStatus(), 200, "Unexpected response code: " + userInfoResponse.getStatus());
+        assertNotNull(userInfoResponse.getClaim(JwtClaimName.SUBJECT_IDENTIFIER));
+        assertNotNull(userInfoResponse.getClaim(JwtClaimName.NAME));
+        assertNotNull(userInfoResponse.getClaim(JwtClaimName.GIVEN_NAME));
+        assertNotNull(userInfoResponse.getClaim(JwtClaimName.FAMILY_NAME));
+        assertNotNull(userInfoResponse.getClaim(JwtClaimName.PICTURE));
+        assertNotNull(userInfoResponse.getClaim(JwtClaimName.ZONEINFO));
+        assertNotNull(userInfoResponse.getClaim(JwtClaimName.EMAIL));
+        assertNotNull(userInfoResponse.getClaim(JwtClaimName.LOCALE));
+        assertNotNull(userInfoResponse.getClaim(JwtClaimName.ADDRESS));
+        assertNotNull(userInfoResponse.getClaim(JwtClaimName.ADDRESS).containsAll(Arrays.asList(
+                JwtClaimName.ADDRESS_STREET_ADDRESS,
+                JwtClaimName.ADDRESS_REGION,
+                JwtClaimName.ADDRESS_LOCALITY,
+                JwtClaimName.ADDRESS_COUNTRY)));
+    }
+
+    @Parameters({"userId", "userSecret", "redirectUri", "redirectUris", "sectorIdentifierUri"})
+    @Test
+    public void canProvideEncryptedUserInfoResponseAlgA256KWEncA256GCM(
+            final String userId, final String userSecret, final String redirectUri, final String redirectUris,
+            final String sectorIdentifierUri) throws Exception {
+        showTitle("OC5:FeatureTest-Can Provide Encrypted UserInfo Response A256KW A256GCM");
+
+        List<ResponseType> responseTypes = Arrays.asList(ResponseType.TOKEN, ResponseType.ID_TOKEN);
+
+        // 1. Register client
+        RegisterRequest registerRequest = new RegisterRequest(ApplicationType.WEB, "oxAuth test app",
+                StringUtils.spaceSeparatedToList(redirectUris));
+        registerRequest.setResponseTypes(responseTypes);
+        registerRequest.setUserInfoEncryptedResponseAlg(KeyEncryptionAlgorithm.A256KW);
+        registerRequest.setUserInfoEncryptedResponseEnc(BlockEncryptionAlgorithm.A256GCM);
+        registerRequest.setSectorIdentifierUri(sectorIdentifierUri);
+
+        RegisterClient registerClient = new RegisterClient(registrationEndpoint);
+        registerClient.setRequest(registerRequest);
+        RegisterResponse registerResponse = registerClient.exec();
+
+        showClient(registerClient);
+        assertEquals(registerResponse.getStatus(), 200, "Unexpected response code: " + registerResponse.getEntity());
+        assertNotNull(registerResponse.getClientId());
+        assertNotNull(registerResponse.getClientSecret());
+        assertNotNull(registerResponse.getRegistrationAccessToken());
+        assertNotNull(registerResponse.getClientIdIssuedAt());
+        assertNotNull(registerResponse.getClientSecretExpiresAt());
+
+        String clientId = registerResponse.getClientId();
+        String clientSecret = registerResponse.getClientSecret();
+
+        // 2. Request authorization
+        List<String> scopes = Arrays.asList("openid", "profile", "address", "email");
+        String nonce = UUID.randomUUID().toString();
+        String state = UUID.randomUUID().toString();
+
+        AuthorizationRequest authorizationRequest = new AuthorizationRequest(responseTypes, clientId, scopes, redirectUri, nonce);
+        authorizationRequest.setState(state);
+
+        AuthorizeClient authorizeClient = new AuthorizeClient(authorizationEndpoint);
+        authorizeClient.setRequest(authorizationRequest);
+
+        AuthorizationResponse authorizationResponse = authenticateResourceOwnerAndGrantAccess(
+                authorizationEndpoint, authorizationRequest, userId, userSecret);
+
+        assertNotNull(authorizationResponse.getLocation(), "The location is null");
+        assertNotNull(authorizationResponse.getAccessToken(), "The accessToken is null");
+        assertNotNull(authorizationResponse.getTokenType(), "The tokenType is null");
+        assertNotNull(authorizationResponse.getIdToken(), "The idToken is null");
+        assertNotNull(authorizationResponse.getState(), "The state is null");
+
+        String accessToken = authorizationResponse.getAccessToken();
+
+        // 3. Request user info
+        UserInfoClient userInfoClient = new UserInfoClient(userInfoEndpoint);
+        userInfoClient.setSharedKey(clientSecret);
+        UserInfoResponse userInfoResponse = userInfoClient.execUserInfo(accessToken);
+
+        showClient(userInfoClient);
+        assertEquals(userInfoResponse.getStatus(), 200, "Unexpected response code: " + userInfoResponse.getStatus());
+        assertNotNull(userInfoResponse.getClaim(JwtClaimName.SUBJECT_IDENTIFIER));
+        assertNotNull(userInfoResponse.getClaim(JwtClaimName.NAME));
+        assertNotNull(userInfoResponse.getClaim(JwtClaimName.GIVEN_NAME));
+        assertNotNull(userInfoResponse.getClaim(JwtClaimName.FAMILY_NAME));
+        assertNotNull(userInfoResponse.getClaim(JwtClaimName.PICTURE));
+        assertNotNull(userInfoResponse.getClaim(JwtClaimName.ZONEINFO));
+        assertNotNull(userInfoResponse.getClaim(JwtClaimName.EMAIL));
+        assertNotNull(userInfoResponse.getClaim(JwtClaimName.LOCALE));
+        assertNotNull(userInfoResponse.getClaim(JwtClaimName.ADDRESS));
+        assertNotNull(userInfoResponse.getClaim(JwtClaimName.ADDRESS).containsAll(Arrays.asList(
+                JwtClaimName.ADDRESS_STREET_ADDRESS,
+                JwtClaimName.ADDRESS_REGION,
+                JwtClaimName.ADDRESS_LOCALITY,
+                JwtClaimName.ADDRESS_COUNTRY)));
+    }
+
+    @Parameters({"userId", "userSecret", "redirectUri", "redirectUris",
+            "clientJwksUri", "RSA1_5_keyId", "keyStoreFile", "keyStoreSecret",
+            "sectorIdentifierUri"})
+    @Test
+    public void canProvideEncryptedUserInfoResponseAlgRSA15EncA128CBCPLUSHS256(
+            final String userId, final String userSecret, final String redirectUri, final String redirectUris,
+            final String jwksUri, final String keyId, final String keyStoreFile, final String keyStoreSecret,
+            final String sectorIdentifierUri) {
+        try {
+            showTitle("OC5:FeatureTest-Can Provide Encrypted UserInfo Response RSA1_5 A128CBC_PLUS_HS256");
+
+            List<ResponseType> responseTypes = Arrays.asList(ResponseType.TOKEN, ResponseType.ID_TOKEN);
+
+            // 1. Register client
+            RegisterRequest registerRequest = new RegisterRequest(ApplicationType.WEB, "oxAuth test app",
+                    StringUtils.spaceSeparatedToList(redirectUris));
+            registerRequest.setResponseTypes(responseTypes);
+            registerRequest.setJwksUri(jwksUri);
+            registerRequest.setUserInfoEncryptedResponseAlg(KeyEncryptionAlgorithm.RSA1_5);
+            registerRequest.setUserInfoEncryptedResponseEnc(BlockEncryptionAlgorithm.A128CBC_PLUS_HS256);
+            registerRequest.setSectorIdentifierUri(sectorIdentifierUri);
+
+            RegisterClient registerClient = new RegisterClient(registrationEndpoint);
+            registerClient.setRequest(registerRequest);
+            RegisterResponse registerResponse = registerClient.exec();
+
+            showClient(registerClient);
+            assertEquals(registerResponse.getStatus(), 200, "Unexpected response code: " + registerResponse.getEntity());
+            assertNotNull(registerResponse.getClientId());
+            assertNotNull(registerResponse.getClientSecret());
+            assertNotNull(registerResponse.getRegistrationAccessToken());
+            assertNotNull(registerResponse.getClientIdIssuedAt());
+            assertNotNull(registerResponse.getClientSecretExpiresAt());
+
+            String clientId = registerResponse.getClientId();
+
+            // 2. Request authorization
+            List<String> scopes = Arrays.asList("openid", "profile", "address", "email");
+            String nonce = UUID.randomUUID().toString();
+            String state = UUID.randomUUID().toString();
+
+            AuthorizationRequest authorizationRequest = new AuthorizationRequest(responseTypes, clientId, scopes, redirectUri, nonce);
+            authorizationRequest.setState(state);
+
+            AuthorizeClient authorizeClient = new AuthorizeClient(authorizationEndpoint);
+            authorizeClient.setRequest(authorizationRequest);
+
+            AuthorizationResponse authorizationResponse = authenticateResourceOwnerAndGrantAccess(
+                    authorizationEndpoint, authorizationRequest, userId, userSecret);
+
+            assertNotNull(authorizationResponse.getLocation(), "The location is null");
+            assertNotNull(authorizationResponse.getAccessToken(), "The accessToken is null");
+            assertNotNull(authorizationResponse.getTokenType(), "The tokenType is null");
+            assertNotNull(authorizationResponse.getIdToken(), "The idToken is null");
+            assertNotNull(authorizationResponse.getState(), "The state is null");
+
+            String accessToken = authorizationResponse.getAccessToken();
+
+            // 3. Request user info
+            OxAuthCryptoProvider cryptoProvider = new OxAuthCryptoProvider(keyStoreFile, keyStoreSecret, null);
+            PrivateKey privateKey = cryptoProvider.getPrivateKey(keyId);
+
+            UserInfoClient userInfoClient = new UserInfoClient(userInfoEndpoint);
+            userInfoClient.setPrivateKey(privateKey);
+            UserInfoResponse userInfoResponse = userInfoClient.execUserInfo(accessToken);
+
+            showClient(userInfoClient);
+            assertEquals(userInfoResponse.getStatus(), 200, "Unexpected response code: " + userInfoResponse.getStatus());
+            assertNotNull(userInfoResponse.getClaim(JwtClaimName.SUBJECT_IDENTIFIER));
+            assertNotNull(userInfoResponse.getClaim(JwtClaimName.NAME));
+            assertNotNull(userInfoResponse.getClaim(JwtClaimName.GIVEN_NAME));
+            assertNotNull(userInfoResponse.getClaim(JwtClaimName.FAMILY_NAME));
+            assertNotNull(userInfoResponse.getClaim(JwtClaimName.PICTURE));
+            assertNotNull(userInfoResponse.getClaim(JwtClaimName.ZONEINFO));
+            assertNotNull(userInfoResponse.getClaim(JwtClaimName.EMAIL));
+            assertNotNull(userInfoResponse.getClaim(JwtClaimName.LOCALE));
+            assertNotNull(userInfoResponse.getClaim(JwtClaimName.ADDRESS));
+            assertNotNull(userInfoResponse.getClaim(JwtClaimName.ADDRESS).containsAll(Arrays.asList(
+                    JwtClaimName.ADDRESS_STREET_ADDRESS,
+                    JwtClaimName.ADDRESS_REGION,
+                    JwtClaimName.ADDRESS_LOCALITY,
+                    JwtClaimName.ADDRESS_COUNTRY)));
+        } catch (Exception ex) {
+            fail(ex.getMessage(), ex);
+        }
+    }
+
+    @Parameters({"userId", "userSecret", "redirectUri", "redirectUris",
+            "clientJwksUri", "RSA1_5_keyId", "keyStoreFile", "keyStoreSecret",
+            "sectorIdentifierUri"})
+    @Test
+    public void canProvideEncryptedUserInfoResponseAlgRSA15EncA256CBCPLUSHS512(
+            final String userId, final String userSecret, final String redirectUri, final String redirectUris,
+            final String jwksUri, final String keyId, final String keyStoreFile, final String keyStoreSecret,
+            final String sectorIdentifierUri) {
+        try {
+            showTitle("OC5:FeatureTest-Can Provide Encrypted UserInfo Response RSA1_5 A256CBC_PLUS_HS512");
+
+            List<ResponseType> responseTypes = Arrays.asList(ResponseType.TOKEN, ResponseType.ID_TOKEN);
+
+            // 1. Register client
+            RegisterRequest registerRequest = new RegisterRequest(ApplicationType.WEB, "oxAuth test app",
+                    StringUtils.spaceSeparatedToList(redirectUris));
+            registerRequest.setResponseTypes(responseTypes);
+            registerRequest.setJwksUri(jwksUri);
+            registerRequest.setUserInfoEncryptedResponseAlg(KeyEncryptionAlgorithm.RSA1_5);
+            registerRequest.setUserInfoEncryptedResponseEnc(BlockEncryptionAlgorithm.A256CBC_PLUS_HS512);
+            registerRequest.setSectorIdentifierUri(sectorIdentifierUri);
+
+            RegisterClient registerClient = new RegisterClient(registrationEndpoint);
+            registerClient.setRequest(registerRequest);
+            RegisterResponse registerResponse = registerClient.exec();
+
+            showClient(registerClient);
+            assertEquals(registerResponse.getStatus(), 200, "Unexpected response code: " + registerResponse.getEntity());
+            assertNotNull(registerResponse.getClientId());
+            assertNotNull(registerResponse.getClientSecret());
+            assertNotNull(registerResponse.getRegistrationAccessToken());
+            assertNotNull(registerResponse.getClientIdIssuedAt());
+            assertNotNull(registerResponse.getClientSecretExpiresAt());
+
+            String clientId = registerResponse.getClientId();
+
+            // 2. Request authorization
+            List<String> scopes = Arrays.asList("openid", "profile", "address", "email");
+            String nonce = UUID.randomUUID().toString();
+            String state = UUID.randomUUID().toString();
+
+            AuthorizationRequest authorizationRequest = new AuthorizationRequest(responseTypes, clientId, scopes, redirectUri, nonce);
+            authorizationRequest.setState(state);
+
+            AuthorizeClient authorizeClient = new AuthorizeClient(authorizationEndpoint);
+            authorizeClient.setRequest(authorizationRequest);
+
+            AuthorizationResponse authorizationResponse = authenticateResourceOwnerAndGrantAccess(
+                    authorizationEndpoint, authorizationRequest, userId, userSecret);
+
+            assertNotNull(authorizationResponse.getLocation(), "The location is null");
+            assertNotNull(authorizationResponse.getAccessToken(), "The accessToken is null");
+            assertNotNull(authorizationResponse.getTokenType(), "The tokenType is null");
+            assertNotNull(authorizationResponse.getIdToken(), "The idToken is null");
+            assertNotNull(authorizationResponse.getState(), "The state is null");
+
+            String accessToken = authorizationResponse.getAccessToken();
+
+            // 3. Request user info
+            OxAuthCryptoProvider cryptoProvider = new OxAuthCryptoProvider(keyStoreFile, keyStoreSecret, null);
+            PrivateKey privateKey = cryptoProvider.getPrivateKey(keyId);
+
+            UserInfoClient userInfoClient = new UserInfoClient(userInfoEndpoint);
+            userInfoClient.setPrivateKey(privateKey);
+            UserInfoResponse userInfoResponse = userInfoClient.execUserInfo(accessToken);
+
+            showClient(userInfoClient);
+            assertEquals(userInfoResponse.getStatus(), 200, "Unexpected response code: " + userInfoResponse.getStatus());
+            assertNotNull(userInfoResponse.getClaim(JwtClaimName.SUBJECT_IDENTIFIER));
+            assertNotNull(userInfoResponse.getClaim(JwtClaimName.NAME));
+            assertNotNull(userInfoResponse.getClaim(JwtClaimName.GIVEN_NAME));
+            assertNotNull(userInfoResponse.getClaim(JwtClaimName.FAMILY_NAME));
+            assertNotNull(userInfoResponse.getClaim(JwtClaimName.PICTURE));
+            assertNotNull(userInfoResponse.getClaim(JwtClaimName.ZONEINFO));
+            assertNotNull(userInfoResponse.getClaim(JwtClaimName.EMAIL));
+            assertNotNull(userInfoResponse.getClaim(JwtClaimName.LOCALE));
+            assertNotNull(userInfoResponse.getClaim(JwtClaimName.ADDRESS));
+            assertNotNull(userInfoResponse.getClaim(JwtClaimName.ADDRESS).containsAll(Arrays.asList(
+                    JwtClaimName.ADDRESS_STREET_ADDRESS,
+                    JwtClaimName.ADDRESS_REGION,
+                    JwtClaimName.ADDRESS_LOCALITY,
+                    JwtClaimName.ADDRESS_COUNTRY)));
+        } catch (Exception ex) {
+            fail(ex.getMessage(), ex);
+        }
+    }
+
+    @Parameters({"userId", "userSecret", "redirectUri", "redirectUris",
+            "clientJwksUri", "RSA_OAEP_keyId", "keyStoreFile", "keyStoreSecret",
+            "sectorIdentifierUri"})
+    @Test
+    public void canProvideEncryptedUserInfoResponseAlgRSAOAEPEncA256GCM(
+            final String userId, final String userSecret, final String redirectUri, final String redirectUris,
+            final String jwksUri, final String keyId, final String keyStoreFile, final String keyStoreSecret,
+            final String sectorIdentifierUri) {
+        try {
+            showTitle("OC5:FeatureTest-Can Provide Encrypted UserInfo Response RSA_OAEP A256GCM");
+
+            List<ResponseType> responseTypes = Arrays.asList(ResponseType.TOKEN, ResponseType.ID_TOKEN);
+
+            // 1. Register client
+            RegisterRequest registerRequest = new RegisterRequest(ApplicationType.WEB, "oxAuth test app",
+                    StringUtils.spaceSeparatedToList(redirectUris));
+            registerRequest.setResponseTypes(responseTypes);
+            registerRequest.setJwksUri(jwksUri);
+            registerRequest.setUserInfoEncryptedResponseAlg(KeyEncryptionAlgorithm.RSA_OAEP);
+            registerRequest.setUserInfoEncryptedResponseEnc(BlockEncryptionAlgorithm.A256GCM);
+            registerRequest.setSectorIdentifierUri(sectorIdentifierUri);
+
+            RegisterClient registerClient = new RegisterClient(registrationEndpoint);
+            registerClient.setRequest(registerRequest);
+            RegisterResponse registerResponse = registerClient.exec();
+
+            showClient(registerClient);
+            assertEquals(registerResponse.getStatus(), 200, "Unexpected response code: " + registerResponse.getEntity());
+            assertNotNull(registerResponse.getClientId());
+            assertNotNull(registerResponse.getClientSecret());
+            assertNotNull(registerResponse.getRegistrationAccessToken());
+            assertNotNull(registerResponse.getClientIdIssuedAt());
+            assertNotNull(registerResponse.getClientSecretExpiresAt());
+
+            String clientId = registerResponse.getClientId();
+
+            // 2. Request authorization
+            List<String> scopes = Arrays.asList("openid", "profile", "address", "email");
+            String nonce = UUID.randomUUID().toString();
+            String state = UUID.randomUUID().toString();
+
+            AuthorizationRequest authorizationRequest = new AuthorizationRequest(responseTypes, clientId, scopes, redirectUri, nonce);
+            authorizationRequest.setState(state);
+
+            AuthorizeClient authorizeClient = new AuthorizeClient(authorizationEndpoint);
+            authorizeClient.setRequest(authorizationRequest);
+
+            AuthorizationResponse authorizationResponse = authenticateResourceOwnerAndGrantAccess(
+                    authorizationEndpoint, authorizationRequest, userId, userSecret);
+
+            assertNotNull(authorizationResponse.getLocation(), "The location is null");
+            assertNotNull(authorizationResponse.getAccessToken(), "The accessToken is null");
+            assertNotNull(authorizationResponse.getTokenType(), "The tokenType is null");
+            assertNotNull(authorizationResponse.getIdToken(), "The idToken is null");
+            assertNotNull(authorizationResponse.getState(), "The state is null");
+
+            String accessToken = authorizationResponse.getAccessToken();
+
+            // 3. Request user info
+            OxAuthCryptoProvider cryptoProvider = new OxAuthCryptoProvider(keyStoreFile, keyStoreSecret, null);
+            PrivateKey privateKey = cryptoProvider.getPrivateKey(keyId);
+
+            UserInfoClient userInfoClient = new UserInfoClient(userInfoEndpoint);
+            userInfoClient.setPrivateKey(privateKey);
+            UserInfoResponse userInfoResponse = userInfoClient.execUserInfo(accessToken);
+
+            showClient(userInfoClient);
+            assertEquals(userInfoResponse.getStatus(), 200, "Unexpected response code: " + userInfoResponse.getStatus());
+            assertNotNull(userInfoResponse.getClaim(JwtClaimName.SUBJECT_IDENTIFIER));
+            assertNotNull(userInfoResponse.getClaim(JwtClaimName.NAME));
+            assertNotNull(userInfoResponse.getClaim(JwtClaimName.GIVEN_NAME));
+            assertNotNull(userInfoResponse.getClaim(JwtClaimName.FAMILY_NAME));
+            assertNotNull(userInfoResponse.getClaim(JwtClaimName.PICTURE));
+            assertNotNull(userInfoResponse.getClaim(JwtClaimName.ZONEINFO));
+            assertNotNull(userInfoResponse.getClaim(JwtClaimName.EMAIL));
+            assertNotNull(userInfoResponse.getClaim(JwtClaimName.LOCALE));
+            assertNotNull(userInfoResponse.getClaim(JwtClaimName.ADDRESS));
+            assertNotNull(userInfoResponse.getClaim(JwtClaimName.ADDRESS).containsAll(Arrays.asList(
+                    JwtClaimName.ADDRESS_STREET_ADDRESS,
+                    JwtClaimName.ADDRESS_REGION,
+                    JwtClaimName.ADDRESS_LOCALITY,
+                    JwtClaimName.ADDRESS_COUNTRY)));
+        } catch (Exception ex) {
+            fail(ex.getMessage(), ex);
+        }
+    }
+}
\ No newline at end of file
diff --git a/oxAuth/Client/src/test/java/org/gluu/oxauth/interop/CanProvideSignedUserInfoResponse.java b/oxAuth/Client/src/test/java/org/gluu/oxauth/interop/CanProvideSignedUserInfoResponse.java
new file mode 100644
index 00000000..ea0ba8a7
--- /dev/null
+++ b/oxAuth/Client/src/test/java/org/gluu/oxauth/interop/CanProvideSignedUserInfoResponse.java
@@ -0,0 +1,718 @@
+/*
+ * oxAuth is available under the MIT License (2008). See http://opensource.org/licenses/MIT for full text.
+ *
+ * Copyright (c) 2014, Gluu
+ */
+
+package org.gluu.oxauth.interop;
+
+import static org.testng.Assert.assertEquals;
+import static org.testng.Assert.assertNotNull;
+
+import java.util.Arrays;
+import java.util.List;
+import java.util.UUID;
+
+import org.gluu.oxauth.BaseTest;
+import org.gluu.oxauth.client.AuthorizationRequest;
+import org.gluu.oxauth.client.AuthorizationResponse;
+import org.gluu.oxauth.client.AuthorizeClient;
+import org.gluu.oxauth.client.RegisterClient;
+import org.gluu.oxauth.client.RegisterRequest;
+import org.gluu.oxauth.client.RegisterResponse;
+import org.gluu.oxauth.client.UserInfoClient;
+import org.gluu.oxauth.client.UserInfoResponse;
+import org.gluu.oxauth.model.common.ResponseType;
+import org.gluu.oxauth.model.crypto.signature.SignatureAlgorithm;
+import org.gluu.oxauth.model.jwt.JwtClaimName;
+import org.gluu.oxauth.model.register.ApplicationType;
+import org.gluu.oxauth.model.util.StringUtils;
+import org.testng.annotations.Parameters;
+import org.testng.annotations.Test;
+
+/**
+ * OC5:FeatureTest-Can Provide Signed UserInfo Response
+ *
+ * @author Javier Rojas Blum
+ * @version March 8, 2019
+ */
+public class CanProvideSignedUserInfoResponse extends BaseTest {
+
+    @Parameters({"userId", "userSecret", "redirectUri", "redirectUris", "sectorIdentifierUri"})
+    @Test
+    public void canProvideSignedUserInfoResponseHS256(
+            final String userId, final String userSecret, final String redirectUri, final String redirectUris,
+            final String sectorIdentifierUri) throws Exception {
+        showTitle("OC5:FeatureTest-Can Provide Signed UserInfo Response HS256");
+
+        List<ResponseType> responseTypes = Arrays.asList(ResponseType.TOKEN, ResponseType.ID_TOKEN);
+
+        // 1. Register client
+        RegisterRequest registerRequest = new RegisterRequest(ApplicationType.WEB, "oxAuth test app",
+                StringUtils.spaceSeparatedToList(redirectUris));
+        registerRequest.setResponseTypes(responseTypes);
+        registerRequest.setUserInfoSignedResponseAlg(SignatureAlgorithm.HS256);
+        registerRequest.setSectorIdentifierUri(sectorIdentifierUri);
+
+        RegisterClient registerClient = new RegisterClient(registrationEndpoint);
+        registerClient.setRequest(registerRequest);
+        RegisterResponse registerResponse = registerClient.exec();
+
+        showClient(registerClient);
+        assertEquals(registerResponse.getStatus(), 200, "Unexpected response code: " + registerResponse.getEntity());
+        assertNotNull(registerResponse.getClientId());
+        assertNotNull(registerResponse.getClientSecret());
+        assertNotNull(registerResponse.getRegistrationAccessToken());
+        assertNotNull(registerResponse.getClientIdIssuedAt());
+        assertNotNull(registerResponse.getClientSecretExpiresAt());
+
+        String clientId = registerResponse.getClientId();
+        String clientSecret = registerResponse.getClientSecret();
+
+        // 2. Request authorization
+        List<String> scopes = Arrays.asList("openid", "profile", "address", "email");
+        String nonce = UUID.randomUUID().toString();
+        String state = UUID.randomUUID().toString();
+
+        AuthorizationRequest authorizationRequest = new AuthorizationRequest(responseTypes, clientId, scopes, redirectUri, nonce);
+        authorizationRequest.setState(state);
+
+        AuthorizeClient authorizeClient = new AuthorizeClient(authorizationEndpoint);
+        authorizeClient.setRequest(authorizationRequest);
+
+        AuthorizationResponse authorizationResponse = authenticateResourceOwnerAndGrantAccess(
+                authorizationEndpoint, authorizationRequest, userId, userSecret);
+
+        assertNotNull(authorizationResponse.getLocation(), "The location is null");
+        assertNotNull(authorizationResponse.getAccessToken(), "The accessToken is null");
+        assertNotNull(authorizationResponse.getTokenType(), "The tokenType is null");
+        assertNotNull(authorizationResponse.getIdToken(), "The idToken is null");
+        assertNotNull(authorizationResponse.getState(), "The state is null");
+
+        String accessToken = authorizationResponse.getAccessToken();
+
+        // 3. Request user info
+        UserInfoClient userInfoClient = new UserInfoClient(userInfoEndpoint);
+        userInfoClient.setSharedKey(clientSecret);
+        UserInfoResponse userInfoResponse = userInfoClient.execUserInfo(accessToken);
+
+        showClient(userInfoClient);
+        assertEquals(userInfoResponse.getStatus(), 200, "Unexpected response code: " + userInfoResponse.getStatus());
+        assertNotNull(userInfoResponse.getClaim(JwtClaimName.SUBJECT_IDENTIFIER));
+        assertNotNull(userInfoResponse.getClaim(JwtClaimName.NAME));
+        assertNotNull(userInfoResponse.getClaim(JwtClaimName.GIVEN_NAME));
+        assertNotNull(userInfoResponse.getClaim(JwtClaimName.FAMILY_NAME));
+        assertNotNull(userInfoResponse.getClaim(JwtClaimName.PICTURE));
+        assertNotNull(userInfoResponse.getClaim(JwtClaimName.ZONEINFO));
+        assertNotNull(userInfoResponse.getClaim(JwtClaimName.EMAIL));
+        assertNotNull(userInfoResponse.getClaim(JwtClaimName.LOCALE));
+        assertNotNull(userInfoResponse.getClaim(JwtClaimName.ADDRESS));
+        assertNotNull(userInfoResponse.getClaim(JwtClaimName.ADDRESS).containsAll(Arrays.asList(
+                JwtClaimName.ADDRESS_STREET_ADDRESS,
+                JwtClaimName.ADDRESS_REGION,
+                JwtClaimName.ADDRESS_LOCALITY,
+                JwtClaimName.ADDRESS_COUNTRY)));
+    }
+
+    @Parameters({"userId", "userSecret", "redirectUri", "redirectUris", "sectorIdentifierUri"})
+    @Test
+    public void canProvideSignedUserInfoResponseHS384(
+            final String userId, final String userSecret, final String redirectUri, final String redirectUris,
+            final String sectorIdentifierUri) throws Exception {
+        showTitle("OC5:FeatureTest-Can Provide Signed UserInfo Response HS384");
+
+        List<ResponseType> responseTypes = Arrays.asList(ResponseType.TOKEN, ResponseType.ID_TOKEN);
+
+        // 1. Register client
+        RegisterRequest registerRequest = new RegisterRequest(ApplicationType.WEB, "oxAuth test app",
+                StringUtils.spaceSeparatedToList(redirectUris));
+        registerRequest.setResponseTypes(responseTypes);
+        registerRequest.setUserInfoSignedResponseAlg(SignatureAlgorithm.HS384);
+        registerRequest.setSectorIdentifierUri(sectorIdentifierUri);
+
+        RegisterClient registerClient = new RegisterClient(registrationEndpoint);
+        registerClient.setRequest(registerRequest);
+        RegisterResponse registerResponse = registerClient.exec();
+
+        showClient(registerClient);
+        assertEquals(registerResponse.getStatus(), 200, "Unexpected response code: " + registerResponse.getEntity());
+        assertNotNull(registerResponse.getClientId());
+        assertNotNull(registerResponse.getClientSecret());
+        assertNotNull(registerResponse.getRegistrationAccessToken());
+        assertNotNull(registerResponse.getClientIdIssuedAt());
+        assertNotNull(registerResponse.getClientSecretExpiresAt());
+
+        String clientId = registerResponse.getClientId();
+        String clientSecret = registerResponse.getClientSecret();
+
+        // 2. Request authorization
+        List<String> scopes = Arrays.asList("openid", "profile", "address", "email");
+        String nonce = UUID.randomUUID().toString();
+        String state = UUID.randomUUID().toString();
+
+        AuthorizationRequest authorizationRequest = new AuthorizationRequest(responseTypes, clientId, scopes, redirectUri, nonce);
+        authorizationRequest.setState(state);
+
+        AuthorizeClient authorizeClient = new AuthorizeClient(authorizationEndpoint);
+        authorizeClient.setRequest(authorizationRequest);
+
+        AuthorizationResponse authorizationResponse = authenticateResourceOwnerAndGrantAccess(
+                authorizationEndpoint, authorizationRequest, userId, userSecret);
+
+        assertNotNull(authorizationResponse.getLocation(), "The location is null");
+        assertNotNull(authorizationResponse.getAccessToken(), "The accessToken is null");
+        assertNotNull(authorizationResponse.getTokenType(), "The tokenType is null");
+        assertNotNull(authorizationResponse.getIdToken(), "The idToken is null");
+        assertNotNull(authorizationResponse.getState(), "The state is null");
+
+        String accessToken = authorizationResponse.getAccessToken();
+
+        // 3. Request user info
+        UserInfoClient userInfoClient = new UserInfoClient(userInfoEndpoint);
+        userInfoClient.setSharedKey(clientSecret);
+        UserInfoResponse userInfoResponse = userInfoClient.execUserInfo(accessToken);
+
+        showClient(userInfoClient);
+        assertEquals(userInfoResponse.getStatus(), 200, "Unexpected response code: " + userInfoResponse.getStatus());
+        assertNotNull(userInfoResponse.getClaim(JwtClaimName.SUBJECT_IDENTIFIER));
+        assertNotNull(userInfoResponse.getClaim(JwtClaimName.NAME));
+        assertNotNull(userInfoResponse.getClaim(JwtClaimName.GIVEN_NAME));
+        assertNotNull(userInfoResponse.getClaim(JwtClaimName.FAMILY_NAME));
+        assertNotNull(userInfoResponse.getClaim(JwtClaimName.PICTURE));
+        assertNotNull(userInfoResponse.getClaim(JwtClaimName.ZONEINFO));
+        assertNotNull(userInfoResponse.getClaim(JwtClaimName.EMAIL));
+        assertNotNull(userInfoResponse.getClaim(JwtClaimName.LOCALE));
+        assertNotNull(userInfoResponse.getClaim(JwtClaimName.ADDRESS));
+        assertNotNull(userInfoResponse.getClaim(JwtClaimName.ADDRESS).containsAll(Arrays.asList(
+                JwtClaimName.ADDRESS_STREET_ADDRESS,
+                JwtClaimName.ADDRESS_REGION,
+                JwtClaimName.ADDRESS_LOCALITY,
+                JwtClaimName.ADDRESS_COUNTRY)));
+    }
+
+    @Parameters({"userId", "userSecret", "redirectUri", "redirectUris", "sectorIdentifierUri"})
+    @Test
+    public void canProvideSignedUserInfoResponseHS512(
+            final String userId, final String userSecret, final String redirectUri, final String redirectUris,
+            final String sectorIdentifierUri) throws Exception {
+        showTitle("OC5:FeatureTest-Can Provide Signed UserInfo Response HS512");
+
+        List<ResponseType> responseTypes = Arrays.asList(ResponseType.TOKEN, ResponseType.ID_TOKEN);
+
+        // 1. Register client
+        RegisterRequest registerRequest = new RegisterRequest(ApplicationType.WEB, "oxAuth test app",
+                StringUtils.spaceSeparatedToList(redirectUris));
+        registerRequest.setResponseTypes(responseTypes);
+        registerRequest.setUserInfoSignedResponseAlg(SignatureAlgorithm.HS512);
+        registerRequest.setSectorIdentifierUri(sectorIdentifierUri);
+
+        RegisterClient registerClient = new RegisterClient(registrationEndpoint);
+        registerClient.setRequest(registerRequest);
+        RegisterResponse registerResponse = registerClient.exec();
+
+        showClient(registerClient);
+        assertEquals(registerResponse.getStatus(), 200, "Unexpected response code: " + registerResponse.getEntity());
+        assertNotNull(registerResponse.getClientId());
+        assertNotNull(registerResponse.getClientSecret());
+        assertNotNull(registerResponse.getRegistrationAccessToken());
+        assertNotNull(registerResponse.getClientIdIssuedAt());
+        assertNotNull(registerResponse.getClientSecretExpiresAt());
+
+        String clientId = registerResponse.getClientId();
+        String clientSecret = registerResponse.getClientSecret();
+
+        // 2. Request authorization
+        List<String> scopes = Arrays.asList("openid", "profile", "address", "email");
+        String nonce = UUID.randomUUID().toString();
+        String state = UUID.randomUUID().toString();
+
+        AuthorizationRequest authorizationRequest = new AuthorizationRequest(responseTypes, clientId, scopes, redirectUri, nonce);
+        authorizationRequest.setState(state);
+
+        AuthorizeClient authorizeClient = new AuthorizeClient(authorizationEndpoint);
+        authorizeClient.setRequest(authorizationRequest);
+
+        AuthorizationResponse authorizationResponse = authenticateResourceOwnerAndGrantAccess(
+                authorizationEndpoint, authorizationRequest, userId, userSecret);
+
+        assertNotNull(authorizationResponse.getLocation(), "The location is null");
+        assertNotNull(authorizationResponse.getAccessToken(), "The accessToken is null");
+        assertNotNull(authorizationResponse.getTokenType(), "The tokenType is null");
+        assertNotNull(authorizationResponse.getIdToken(), "The idToken is null");
+        assertNotNull(authorizationResponse.getState(), "The state is null");
+
+        String accessToken = authorizationResponse.getAccessToken();
+
+        // 3. Request user info
+        UserInfoClient userInfoClient = new UserInfoClient(userInfoEndpoint);
+        userInfoClient.setSharedKey(clientSecret);
+        UserInfoResponse userInfoResponse = userInfoClient.execUserInfo(accessToken);
+
+        showClient(userInfoClient);
+        assertEquals(userInfoResponse.getStatus(), 200, "Unexpected response code: " + userInfoResponse.getStatus());
+        assertNotNull(userInfoResponse.getClaim(JwtClaimName.SUBJECT_IDENTIFIER));
+        assertNotNull(userInfoResponse.getClaim(JwtClaimName.NAME));
+        assertNotNull(userInfoResponse.getClaim(JwtClaimName.GIVEN_NAME));
+        assertNotNull(userInfoResponse.getClaim(JwtClaimName.FAMILY_NAME));
+        assertNotNull(userInfoResponse.getClaim(JwtClaimName.PICTURE));
+        assertNotNull(userInfoResponse.getClaim(JwtClaimName.ZONEINFO));
+        assertNotNull(userInfoResponse.getClaim(JwtClaimName.EMAIL));
+        assertNotNull(userInfoResponse.getClaim(JwtClaimName.LOCALE));
+        assertNotNull(userInfoResponse.getClaim(JwtClaimName.ADDRESS));
+        assertNotNull(userInfoResponse.getClaim(JwtClaimName.ADDRESS).containsAll(Arrays.asList(
+                JwtClaimName.ADDRESS_STREET_ADDRESS,
+                JwtClaimName.ADDRESS_REGION,
+                JwtClaimName.ADDRESS_LOCALITY,
+                JwtClaimName.ADDRESS_COUNTRY)));
+    }
+
+    @Parameters({"userId", "userSecret", "redirectUri", "redirectUris", "sectorIdentifierUri"})
+    @Test
+    public void canProvideSignedUserInfoResponseRS256(
+            final String userId, final String userSecret, final String redirectUri, final String redirectUris,
+            final String sectorIdentifierUri) throws Exception {
+        showTitle("OC5:FeatureTest-Can Provide Signed UserInfo Response RS256");
+
+        List<ResponseType> responseTypes = Arrays.asList(ResponseType.TOKEN, ResponseType.ID_TOKEN);
+
+        // 1. Register client
+        RegisterRequest registerRequest = new RegisterRequest(ApplicationType.WEB, "oxAuth test app",
+                StringUtils.spaceSeparatedToList(redirectUris));
+        registerRequest.setResponseTypes(responseTypes);
+        registerRequest.setUserInfoSignedResponseAlg(SignatureAlgorithm.RS256);
+        registerRequest.setSectorIdentifierUri(sectorIdentifierUri);
+
+        RegisterClient registerClient = new RegisterClient(registrationEndpoint);
+        registerClient.setRequest(registerRequest);
+        RegisterResponse registerResponse = registerClient.exec();
+
+        showClient(registerClient);
+        assertEquals(registerResponse.getStatus(), 200, "Unexpected response code: " + registerResponse.getEntity());
+        assertNotNull(registerResponse.getClientId());
+        assertNotNull(registerResponse.getClientSecret());
+        assertNotNull(registerResponse.getRegistrationAccessToken());
+        assertNotNull(registerResponse.getClientIdIssuedAt());
+        assertNotNull(registerResponse.getClientSecretExpiresAt());
+
+        String clientId = registerResponse.getClientId();
+
+        // 2. Request authorization
+        List<String> scopes = Arrays.asList("openid", "profile", "address", "email");
+        String nonce = UUID.randomUUID().toString();
+        String state = UUID.randomUUID().toString();
+
+        AuthorizationRequest authorizationRequest = new AuthorizationRequest(responseTypes, clientId, scopes, redirectUri, nonce);
+        authorizationRequest.setState(state);
+
+        AuthorizeClient authorizeClient = new AuthorizeClient(authorizationEndpoint);
+        authorizeClient.setRequest(authorizationRequest);
+
+        AuthorizationResponse authorizationResponse = authenticateResourceOwnerAndGrantAccess(
+                authorizationEndpoint, authorizationRequest, userId, userSecret);
+
+        assertNotNull(authorizationResponse.getLocation(), "The location is null");
+        assertNotNull(authorizationResponse.getAccessToken(), "The accessToken is null");
+        assertNotNull(authorizationResponse.getTokenType(), "The tokenType is null");
+        assertNotNull(authorizationResponse.getIdToken(), "The idToken is null");
+        assertNotNull(authorizationResponse.getState(), "The state is null");
+
+        String accessToken = authorizationResponse.getAccessToken();
+
+        // 3. Request user info
+        UserInfoClient userInfoClient = new UserInfoClient(userInfoEndpoint);
+        userInfoClient.setJwksUri(jwksUri);
+        UserInfoResponse userInfoResponse = userInfoClient.execUserInfo(accessToken);
+
+        showClient(userInfoClient);
+        assertEquals(userInfoResponse.getStatus(), 200, "Unexpected response code: " + userInfoResponse.getStatus());
+        assertNotNull(userInfoResponse.getClaim(JwtClaimName.SUBJECT_IDENTIFIER));
+        assertNotNull(userInfoResponse.getClaim(JwtClaimName.NAME));
+        assertNotNull(userInfoResponse.getClaim(JwtClaimName.GIVEN_NAME));
+        assertNotNull(userInfoResponse.getClaim(JwtClaimName.FAMILY_NAME));
+        assertNotNull(userInfoResponse.getClaim(JwtClaimName.PICTURE));
+        assertNotNull(userInfoResponse.getClaim(JwtClaimName.ZONEINFO));
+        assertNotNull(userInfoResponse.getClaim(JwtClaimName.EMAIL));
+        assertNotNull(userInfoResponse.getClaim(JwtClaimName.LOCALE));
+        assertNotNull(userInfoResponse.getClaim(JwtClaimName.ADDRESS));
+        assertNotNull(userInfoResponse.getClaim(JwtClaimName.ADDRESS).containsAll(Arrays.asList(
+                JwtClaimName.ADDRESS_STREET_ADDRESS,
+                JwtClaimName.ADDRESS_REGION,
+                JwtClaimName.ADDRESS_LOCALITY,
+                JwtClaimName.ADDRESS_COUNTRY)));
+    }
+
+    @Parameters({"userId", "userSecret", "redirectUri", "redirectUris", "sectorIdentifierUri"})
+    @Test
+    public void canProvideSignedUserInfoResponseRS384(
+            final String userId, final String userSecret, final String redirectUri, final String redirectUris,
+            final String sectorIdentifierUri) throws Exception {
+        showTitle("OC5:FeatureTest-Can Provide Signed UserInfo Response RS384");
+
+        List<ResponseType> responseTypes = Arrays.asList(ResponseType.TOKEN, ResponseType.ID_TOKEN);
+
+        // 1. Register client
+        RegisterRequest registerRequest = new RegisterRequest(ApplicationType.WEB, "oxAuth test app",
+                StringUtils.spaceSeparatedToList(redirectUris));
+        registerRequest.setResponseTypes(responseTypes);
+        registerRequest.setUserInfoSignedResponseAlg(SignatureAlgorithm.RS384);
+        registerRequest.setSectorIdentifierUri(sectorIdentifierUri);
+
+        RegisterClient registerClient = new RegisterClient(registrationEndpoint);
+        registerClient.setRequest(registerRequest);
+        RegisterResponse registerResponse = registerClient.exec();
+
+        showClient(registerClient);
+        assertEquals(registerResponse.getStatus(), 200, "Unexpected response code: " + registerResponse.getEntity());
+        assertNotNull(registerResponse.getClientId());
+        assertNotNull(registerResponse.getClientSecret());
+        assertNotNull(registerResponse.getRegistrationAccessToken());
+        assertNotNull(registerResponse.getClientIdIssuedAt());
+        assertNotNull(registerResponse.getClientSecretExpiresAt());
+
+        String clientId = registerResponse.getClientId();
+
+        // 2. Request authorization
+        List<String> scopes = Arrays.asList("openid", "profile", "address", "email");
+        String nonce = UUID.randomUUID().toString();
+        String state = UUID.randomUUID().toString();
+
+        AuthorizationRequest authorizationRequest = new AuthorizationRequest(responseTypes, clientId, scopes, redirectUri, nonce);
+        authorizationRequest.setState(state);
+
+        AuthorizeClient authorizeClient = new AuthorizeClient(authorizationEndpoint);
+        authorizeClient.setRequest(authorizationRequest);
+
+        AuthorizationResponse authorizationResponse = authenticateResourceOwnerAndGrantAccess(
+                authorizationEndpoint, authorizationRequest, userId, userSecret);
+
+        assertNotNull(authorizationResponse.getLocation(), "The location is null");
+        assertNotNull(authorizationResponse.getAccessToken(), "The accessToken is null");
+        assertNotNull(authorizationResponse.getTokenType(), "The tokenType is null");
+        assertNotNull(authorizationResponse.getIdToken(), "The idToken is null");
+        assertNotNull(authorizationResponse.getState(), "The state is null");
+
+        String accessToken = authorizationResponse.getAccessToken();
+
+        // 3. Request user info
+        UserInfoClient userInfoClient = new UserInfoClient(userInfoEndpoint);
+        userInfoClient.setJwksUri(jwksUri);
+        UserInfoResponse userInfoResponse = userInfoClient.execUserInfo(accessToken);
+
+        showClient(userInfoClient);
+        assertEquals(userInfoResponse.getStatus(), 200, "Unexpected response code: " + userInfoResponse.getStatus());
+        assertNotNull(userInfoResponse.getClaim(JwtClaimName.SUBJECT_IDENTIFIER));
+        assertNotNull(userInfoResponse.getClaim(JwtClaimName.NAME));
+        assertNotNull(userInfoResponse.getClaim(JwtClaimName.GIVEN_NAME));
+        assertNotNull(userInfoResponse.getClaim(JwtClaimName.FAMILY_NAME));
+        assertNotNull(userInfoResponse.getClaim(JwtClaimName.PICTURE));
+        assertNotNull(userInfoResponse.getClaim(JwtClaimName.ZONEINFO));
+        assertNotNull(userInfoResponse.getClaim(JwtClaimName.EMAIL));
+        assertNotNull(userInfoResponse.getClaim(JwtClaimName.LOCALE));
+        assertNotNull(userInfoResponse.getClaim(JwtClaimName.ADDRESS));
+        assertNotNull(userInfoResponse.getClaim(JwtClaimName.ADDRESS).containsAll(Arrays.asList(
+                JwtClaimName.ADDRESS_STREET_ADDRESS,
+                JwtClaimName.ADDRESS_REGION,
+                JwtClaimName.ADDRESS_LOCALITY,
+                JwtClaimName.ADDRESS_COUNTRY)));
+    }
+
+    @Parameters({"userId", "userSecret", "redirectUri", "redirectUris", "sectorIdentifierUri"})
+    @Test
+    public void canProvideSignedUserInfoResponseRS512(
+            final String userId, final String userSecret, final String redirectUri, final String redirectUris,
+            final String sectorIdentifierUri) throws Exception {
+        showTitle("OC5:FeatureTest-Can Provide Signed UserInfo Response RS512");
+
+        List<ResponseType> responseTypes = Arrays.asList(ResponseType.TOKEN, ResponseType.ID_TOKEN);
+
+        // 1. Register client
+        RegisterRequest registerRequest = new RegisterRequest(ApplicationType.WEB, "oxAuth test app",
+                StringUtils.spaceSeparatedToList(redirectUris));
+        registerRequest.setResponseTypes(responseTypes);
+        registerRequest.setUserInfoSignedResponseAlg(SignatureAlgorithm.RS512);
+        registerRequest.setSectorIdentifierUri(sectorIdentifierUri);
+
+        RegisterClient registerClient = new RegisterClient(registrationEndpoint);
+        registerClient.setRequest(registerRequest);
+        RegisterResponse registerResponse = registerClient.exec();
+
+        showClient(registerClient);
+        assertEquals(registerResponse.getStatus(), 200, "Unexpected response code: " + registerResponse.getEntity());
+        assertNotNull(registerResponse.getClientId());
+        assertNotNull(registerResponse.getClientSecret());
+        assertNotNull(registerResponse.getRegistrationAccessToken());
+        assertNotNull(registerResponse.getClientIdIssuedAt());
+        assertNotNull(registerResponse.getClientSecretExpiresAt());
+
+        String clientId = registerResponse.getClientId();
+
+        // 2. Request authorization
+        List<String> scopes = Arrays.asList("openid", "profile", "address", "email");
+        String nonce = UUID.randomUUID().toString();
+        String state = UUID.randomUUID().toString();
+
+        AuthorizationRequest authorizationRequest = new AuthorizationRequest(responseTypes, clientId, scopes, redirectUri, nonce);
+        authorizationRequest.setState(state);
+
+        AuthorizeClient authorizeClient = new AuthorizeClient(authorizationEndpoint);
+        authorizeClient.setRequest(authorizationRequest);
+
+        AuthorizationResponse authorizationResponse = authenticateResourceOwnerAndGrantAccess(
+                authorizationEndpoint, authorizationRequest, userId, userSecret);
+
+        assertNotNull(authorizationResponse.getLocation(), "The location is null");
+        assertNotNull(authorizationResponse.getAccessToken(), "The accessToken is null");
+        assertNotNull(authorizationResponse.getTokenType(), "The tokenType is null");
+        assertNotNull(authorizationResponse.getIdToken(), "The idToken is null");
+        assertNotNull(authorizationResponse.getState(), "The state is null");
+
+        String accessToken = authorizationResponse.getAccessToken();
+
+        // 3. Request user info
+        UserInfoClient userInfoClient = new UserInfoClient(userInfoEndpoint);
+        userInfoClient.setJwksUri(jwksUri);
+        UserInfoResponse userInfoResponse = userInfoClient.execUserInfo(accessToken);
+
+        showClient(userInfoClient);
+        assertEquals(userInfoResponse.getStatus(), 200, "Unexpected response code: " + userInfoResponse.getStatus());
+        assertNotNull(userInfoResponse.getClaim(JwtClaimName.SUBJECT_IDENTIFIER));
+        assertNotNull(userInfoResponse.getClaim(JwtClaimName.NAME));
+        assertNotNull(userInfoResponse.getClaim(JwtClaimName.GIVEN_NAME));
+        assertNotNull(userInfoResponse.getClaim(JwtClaimName.FAMILY_NAME));
+        assertNotNull(userInfoResponse.getClaim(JwtClaimName.PICTURE));
+        assertNotNull(userInfoResponse.getClaim(JwtClaimName.ZONEINFO));
+        assertNotNull(userInfoResponse.getClaim(JwtClaimName.EMAIL));
+        assertNotNull(userInfoResponse.getClaim(JwtClaimName.LOCALE));
+        assertNotNull(userInfoResponse.getClaim(JwtClaimName.ADDRESS));
+        assertNotNull(userInfoResponse.getClaim(JwtClaimName.ADDRESS).containsAll(Arrays.asList(
+                JwtClaimName.ADDRESS_STREET_ADDRESS,
+                JwtClaimName.ADDRESS_REGION,
+                JwtClaimName.ADDRESS_LOCALITY,
+                JwtClaimName.ADDRESS_COUNTRY)));
+    }
+
+    @Parameters({"userId", "userSecret", "redirectUri", "redirectUris", "sectorIdentifierUri"})
+    @Test
+    public void canProvideSignedUserInfoResponseES256(
+            final String userId, final String userSecret, final String redirectUri, final String redirectUris,
+            final String sectorIdentifierUri) throws Exception {
+        showTitle("OC5:FeatureTest-Can Provide Signed UserInfo Response ES256");
+
+        List<ResponseType> responseTypes = Arrays.asList(ResponseType.TOKEN, ResponseType.ID_TOKEN);
+
+        // 1. Register client
+        RegisterRequest registerRequest = new RegisterRequest(ApplicationType.WEB, "oxAuth test app",
+                StringUtils.spaceSeparatedToList(redirectUris));
+        registerRequest.setResponseTypes(responseTypes);
+        registerRequest.setUserInfoSignedResponseAlg(SignatureAlgorithm.ES256);
+        registerRequest.setSectorIdentifierUri(sectorIdentifierUri);
+
+        RegisterClient registerClient = new RegisterClient(registrationEndpoint);
+        registerClient.setRequest(registerRequest);
+        RegisterResponse registerResponse = registerClient.exec();
+
+        showClient(registerClient);
+        assertEquals(registerResponse.getStatus(), 200, "Unexpected response code: " + registerResponse.getEntity());
+        assertNotNull(registerResponse.getClientId());
+        assertNotNull(registerResponse.getClientSecret());
+        assertNotNull(registerResponse.getRegistrationAccessToken());
+        assertNotNull(registerResponse.getClientIdIssuedAt());
+        assertNotNull(registerResponse.getClientSecretExpiresAt());
+
+        String clientId = registerResponse.getClientId();
+
+        // 2. Request authorization
+        List<String> scopes = Arrays.asList("openid", "profile", "address", "email");
+        String nonce = UUID.randomUUID().toString();
+        String state = UUID.randomUUID().toString();
+
+        AuthorizationRequest authorizationRequest = new AuthorizationRequest(responseTypes, clientId, scopes, redirectUri, nonce);
+        authorizationRequest.setState(state);
+
+        AuthorizeClient authorizeClient = new AuthorizeClient(authorizationEndpoint);
+        authorizeClient.setRequest(authorizationRequest);
+
+        AuthorizationResponse authorizationResponse = authenticateResourceOwnerAndGrantAccess(
+                authorizationEndpoint, authorizationRequest, userId, userSecret);
+
+        assertNotNull(authorizationResponse.getLocation(), "The location is null");
+        assertNotNull(authorizationResponse.getAccessToken(), "The accessToken is null");
+        assertNotNull(authorizationResponse.getTokenType(), "The tokenType is null");
+        assertNotNull(authorizationResponse.getIdToken(), "The idToken is null");
+        assertNotNull(authorizationResponse.getState(), "The state is null");
+
+        String accessToken = authorizationResponse.getAccessToken();
+
+        // 3. Request user info
+        UserInfoClient userInfoClient = new UserInfoClient(userInfoEndpoint);
+        userInfoClient.setJwksUri(jwksUri);
+        UserInfoResponse userInfoResponse = userInfoClient.execUserInfo(accessToken);
+
+        showClient(userInfoClient);
+        assertEquals(userInfoResponse.getStatus(), 200, "Unexpected response code: " + userInfoResponse.getStatus());
+        assertNotNull(userInfoResponse.getClaim(JwtClaimName.SUBJECT_IDENTIFIER));
+        assertNotNull(userInfoResponse.getClaim(JwtClaimName.NAME));
+        assertNotNull(userInfoResponse.getClaim(JwtClaimName.GIVEN_NAME));
+        assertNotNull(userInfoResponse.getClaim(JwtClaimName.FAMILY_NAME));
+        assertNotNull(userInfoResponse.getClaim(JwtClaimName.PICTURE));
+        assertNotNull(userInfoResponse.getClaim(JwtClaimName.ZONEINFO));
+        assertNotNull(userInfoResponse.getClaim(JwtClaimName.EMAIL));
+        assertNotNull(userInfoResponse.getClaim(JwtClaimName.LOCALE));
+        assertNotNull(userInfoResponse.getClaim(JwtClaimName.ADDRESS));
+        assertNotNull(userInfoResponse.getClaim(JwtClaimName.ADDRESS).containsAll(Arrays.asList(
+                JwtClaimName.ADDRESS_STREET_ADDRESS,
+                JwtClaimName.ADDRESS_REGION,
+                JwtClaimName.ADDRESS_LOCALITY,
+                JwtClaimName.ADDRESS_COUNTRY)));
+    }
+
+    @Parameters({"userId", "userSecret", "redirectUri", "redirectUris", "sectorIdentifierUri"})
+    @Test
+    public void canProvideSignedUserInfoResponseES384(
+            final String userId, final String userSecret, final String redirectUri, final String redirectUris,
+            final String sectorIdentifierUri) throws Exception {
+        showTitle("OC5:FeatureTest-Can Provide Signed UserInfo Response ES384");
+
+        List<ResponseType> responseTypes = Arrays.asList(ResponseType.TOKEN, ResponseType.ID_TOKEN);
+
+        // 1. Register client
+        RegisterRequest registerRequest = new RegisterRequest(ApplicationType.WEB, "oxAuth test app",
+                StringUtils.spaceSeparatedToList(redirectUris));
+        registerRequest.setResponseTypes(responseTypes);
+        registerRequest.setUserInfoSignedResponseAlg(SignatureAlgorithm.ES384);
+        registerRequest.setSectorIdentifierUri(sectorIdentifierUri);
+
+        RegisterClient registerClient = new RegisterClient(registrationEndpoint);
+        registerClient.setRequest(registerRequest);
+        RegisterResponse registerResponse = registerClient.exec();
+
+        showClient(registerClient);
+        assertEquals(registerResponse.getStatus(), 200, "Unexpected response code: " + registerResponse.getEntity());
+        assertNotNull(registerResponse.getClientId());
+        assertNotNull(registerResponse.getClientSecret());
+        assertNotNull(registerResponse.getRegistrationAccessToken());
+        assertNotNull(registerResponse.getClientIdIssuedAt());
+        assertNotNull(registerResponse.getClientSecretExpiresAt());
+
+        String clientId = registerResponse.getClientId();
+
+        // 2. Request authorization
+        List<String> scopes = Arrays.asList("openid", "profile", "address", "email");
+        String nonce = UUID.randomUUID().toString();
+        String state = UUID.randomUUID().toString();
+
+        AuthorizationRequest authorizationRequest = new AuthorizationRequest(responseTypes, clientId, scopes, redirectUri, nonce);
+        authorizationRequest.setState(state);
+
+        AuthorizeClient authorizeClient = new AuthorizeClient(authorizationEndpoint);
+        authorizeClient.setRequest(authorizationRequest);
+
+        AuthorizationResponse authorizationResponse = authenticateResourceOwnerAndGrantAccess(
+                authorizationEndpoint, authorizationRequest, userId, userSecret);
+
+        assertNotNull(authorizationResponse.getLocation(), "The location is null");
+        assertNotNull(authorizationResponse.getAccessToken(), "The accessToken is null");
+        assertNotNull(authorizationResponse.getTokenType(), "The tokenType is null");
+        assertNotNull(authorizationResponse.getIdToken(), "The idToken is null");
+        assertNotNull(authorizationResponse.getState(), "The state is null");
+
+        String accessToken = authorizationResponse.getAccessToken();
+
+        // 3. Request user info
+        UserInfoClient userInfoClient = new UserInfoClient(userInfoEndpoint);
+        userInfoClient.setJwksUri(jwksUri);
+        UserInfoResponse userInfoResponse = userInfoClient.execUserInfo(accessToken);
+
+        showClient(userInfoClient);
+        assertEquals(userInfoResponse.getStatus(), 200, "Unexpected response code: " + userInfoResponse.getStatus());
+        assertNotNull(userInfoResponse.getClaim(JwtClaimName.SUBJECT_IDENTIFIER));
+        assertNotNull(userInfoResponse.getClaim(JwtClaimName.NAME));
+        assertNotNull(userInfoResponse.getClaim(JwtClaimName.GIVEN_NAME));
+        assertNotNull(userInfoResponse.getClaim(JwtClaimName.FAMILY_NAME));
+        assertNotNull(userInfoResponse.getClaim(JwtClaimName.PICTURE));
+        assertNotNull(userInfoResponse.getClaim(JwtClaimName.ZONEINFO));
+        assertNotNull(userInfoResponse.getClaim(JwtClaimName.EMAIL));
+        assertNotNull(userInfoResponse.getClaim(JwtClaimName.LOCALE));
+        assertNotNull(userInfoResponse.getClaim(JwtClaimName.ADDRESS));
+        assertNotNull(userInfoResponse.getClaim(JwtClaimName.ADDRESS).containsAll(Arrays.asList(
+                JwtClaimName.ADDRESS_STREET_ADDRESS,
+                JwtClaimName.ADDRESS_REGION,
+                JwtClaimName.ADDRESS_LOCALITY,
+                JwtClaimName.ADDRESS_COUNTRY)));
+    }
+
+    @Parameters({"userId", "userSecret", "redirectUri", "redirectUris", "sectorIdentifierUri"})
+    @Test
+    public void canProvideSignedUserInfoResponseES512(
+            final String userId, final String userSecret, final String redirectUri, final String redirectUris,
+            final String sectorIdentifierUri) throws Exception {
+        showTitle("OC5:FeatureTest-Can Provide Signed UserInfo Response ES512");
+
+        List<ResponseType> responseTypes = Arrays.asList(ResponseType.TOKEN, ResponseType.ID_TOKEN);
+
+        // 1. Register client
+        RegisterRequest registerRequest = new RegisterRequest(ApplicationType.WEB, "oxAuth test app",
+                StringUtils.spaceSeparatedToList(redirectUris));
+        registerRequest.setResponseTypes(responseTypes);
+        registerRequest.setUserInfoSignedResponseAlg(SignatureAlgorithm.ES512);
+        registerRequest.setSectorIdentifierUri(sectorIdentifierUri);
+
+        RegisterClient registerClient = new RegisterClient(registrationEndpoint);
+        registerClient.setRequest(registerRequest);
+        RegisterResponse registerResponse = registerClient.exec();
+
+        showClient(registerClient);
+        assertEquals(registerResponse.getStatus(), 200, "Unexpected response code: " + registerResponse.getEntity());
+        assertNotNull(registerResponse.getClientId());
+        assertNotNull(registerResponse.getClientSecret());
+        assertNotNull(registerResponse.getRegistrationAccessToken());
+        assertNotNull(registerResponse.getClientIdIssuedAt());
+        assertNotNull(registerResponse.getClientSecretExpiresAt());
+
+        String clientId = registerResponse.getClientId();
+
+        // 2. Request authorization
+        List<String> scopes = Arrays.asList("openid", "profile", "address", "email");
+        String nonce = UUID.randomUUID().toString();
+        String state = UUID.randomUUID().toString();
+
+        AuthorizationRequest authorizationRequest = new AuthorizationRequest(responseTypes, clientId, scopes, redirectUri, nonce);
+        authorizationRequest.setState(state);
+
+        AuthorizeClient authorizeClient = new AuthorizeClient(authorizationEndpoint);
+        authorizeClient.setRequest(authorizationRequest);
+
+        AuthorizationResponse authorizationResponse = authenticateResourceOwnerAndGrantAccess(
+                authorizationEndpoint, authorizationRequest, userId, userSecret);
+
+        assertNotNull(authorizationResponse.getLocation(), "The location is null");
+        assertNotNull(authorizationResponse.getAccessToken(), "The accessToken is null");
+        assertNotNull(authorizationResponse.getTokenType(), "The tokenType is null");
+        assertNotNull(authorizationResponse.getIdToken(), "The idToken is null");
+        assertNotNull(authorizationResponse.getState(), "The state is null");
+
+        String accessToken = authorizationResponse.getAccessToken();
+
+        // 3. Request user info
+        UserInfoClient userInfoClient = new UserInfoClient(userInfoEndpoint);
+        userInfoClient.setJwksUri(jwksUri);
+        UserInfoResponse userInfoResponse = userInfoClient.execUserInfo(accessToken);
+
+        showClient(userInfoClient);
+        assertEquals(userInfoResponse.getStatus(), 200, "Unexpected response code: " + userInfoResponse.getStatus());
+        assertNotNull(userInfoResponse.getClaim(JwtClaimName.SUBJECT_IDENTIFIER));
+        assertNotNull(userInfoResponse.getClaim(JwtClaimName.NAME));
+        assertNotNull(userInfoResponse.getClaim(JwtClaimName.GIVEN_NAME));
+        assertNotNull(userInfoResponse.getClaim(JwtClaimName.FAMILY_NAME));
+        assertNotNull(userInfoResponse.getClaim(JwtClaimName.PICTURE));
+        assertNotNull(userInfoResponse.getClaim(JwtClaimName.ZONEINFO));
+        assertNotNull(userInfoResponse.getClaim(JwtClaimName.EMAIL));
+        assertNotNull(userInfoResponse.getClaim(JwtClaimName.LOCALE));
+        assertNotNull(userInfoResponse.getClaim(JwtClaimName.ADDRESS));
+        assertNotNull(userInfoResponse.getClaim(JwtClaimName.ADDRESS).containsAll(Arrays.asList(
+                JwtClaimName.ADDRESS_STREET_ADDRESS,
+                JwtClaimName.ADDRESS_REGION,
+                JwtClaimName.ADDRESS_LOCALITY,
+                JwtClaimName.ADDRESS_COUNTRY)));
+    }
+}
\ No newline at end of file
diff --git a/oxAuth/Client/src/test/java/org/gluu/oxauth/interop/CanRequestAndUseClaimsInIdToken.java b/oxAuth/Client/src/test/java/org/gluu/oxauth/interop/CanRequestAndUseClaimsInIdToken.java
new file mode 100644
index 00000000..8640cb77
--- /dev/null
+++ b/oxAuth/Client/src/test/java/org/gluu/oxauth/interop/CanRequestAndUseClaimsInIdToken.java
@@ -0,0 +1,119 @@
+/*
+ * oxAuth is available under the MIT License (2008). See http://opensource.org/licenses/MIT for full text.
+ *
+ * Copyright (c) 2014, Gluu
+ */
+
+package org.gluu.oxauth.interop;
+
+import static org.testng.Assert.assertEquals;
+import static org.testng.Assert.assertNotNull;
+import static org.testng.Assert.assertTrue;
+
+import java.util.Arrays;
+import java.util.List;
+import java.util.UUID;
+
+import org.gluu.oxauth.BaseTest;
+import org.gluu.oxauth.client.AuthorizationRequest;
+import org.gluu.oxauth.client.AuthorizationResponse;
+import org.gluu.oxauth.client.RegisterClient;
+import org.gluu.oxauth.client.RegisterRequest;
+import org.gluu.oxauth.client.RegisterResponse;
+import org.gluu.oxauth.client.model.authorize.Claim;
+import org.gluu.oxauth.client.model.authorize.ClaimValue;
+import org.gluu.oxauth.client.model.authorize.JwtAuthorizationRequest;
+import org.gluu.oxauth.model.common.ResponseType;
+import org.gluu.oxauth.model.crypto.OxAuthCryptoProvider;
+import org.gluu.oxauth.model.crypto.signature.SignatureAlgorithm;
+import org.gluu.oxauth.model.jws.HMACSigner;
+import org.gluu.oxauth.model.jwt.Jwt;
+import org.gluu.oxauth.model.jwt.JwtClaimName;
+import org.gluu.oxauth.model.jwt.JwtHeaderName;
+import org.gluu.oxauth.model.register.ApplicationType;
+import org.gluu.oxauth.model.util.StringUtils;
+import org.testng.annotations.Parameters;
+import org.testng.annotations.Test;
+
+/**
+ * OC5:FeatureTest-Can Request and Use Claims in id token
+ *
+ * @author Javier Rojas Blum
+ * @version November 3, 2016
+ */
+public class CanRequestAndUseClaimsInIdToken extends BaseTest {
+
+    @Parameters({"redirectUris", "userId", "userSecret", "redirectUri", "dnName", "keyStoreFile", "keyStoreSecret",
+            "sectorIdentifierUri"})
+    @Test
+    public void canRequestAndUseClaimsInIdToken(
+            final String redirectUris, final String userId, final String userSecret, final String redirectUri,
+            final String dnName, final String keyStoreFile, final String keyStoreSecret, final String sectorIdentifierUri) throws Exception {
+        showTitle("OC5:FeatureTest-Can Request and Use Claims in id token");
+
+        List<ResponseType> responseTypes = Arrays.asList(ResponseType.TOKEN, ResponseType.ID_TOKEN);
+
+        // 1. Registration
+        RegisterRequest registerRequest = new RegisterRequest(ApplicationType.WEB, "oxAuth test app",
+                StringUtils.spaceSeparatedToList(redirectUris));
+        registerRequest.setResponseTypes(responseTypes);
+        registerRequest.setIdTokenSignedResponseAlg(SignatureAlgorithm.HS256);
+        registerRequest.setSectorIdentifierUri(sectorIdentifierUri);
+
+        RegisterClient registerClient = new RegisterClient(registrationEndpoint);
+        registerClient.setRequest(registerRequest);
+        RegisterResponse registerResponse = registerClient.exec();
+
+        showClient(registerClient);
+        assertEquals(registerResponse.getStatus(), 200, "Unexpected response code: " + registerResponse.getEntity());
+        assertNotNull(registerResponse.getClientId());
+        assertNotNull(registerResponse.getClientSecret());
+        assertNotNull(registerResponse.getRegistrationAccessToken());
+        assertNotNull(registerResponse.getClientSecretExpiresAt());
+
+        String clientId = registerResponse.getClientId();
+        String clientSecret = registerResponse.getClientSecret();
+
+        // 2. Request Authorization
+        OxAuthCryptoProvider cryptoProvider = new OxAuthCryptoProvider(keyStoreFile, keyStoreSecret, dnName);
+
+        List<String> scopes = Arrays.asList("openid", "profile", "address", "email");
+        String nonce = UUID.randomUUID().toString();
+        String state = UUID.randomUUID().toString();
+
+        AuthorizationRequest authorizationRequest = new AuthorizationRequest(responseTypes, clientId, scopes, redirectUri, nonce);
+        authorizationRequest.setState(state);
+
+        JwtAuthorizationRequest jwtAuthorizationRequest = new JwtAuthorizationRequest(authorizationRequest, SignatureAlgorithm.HS256, clientSecret, cryptoProvider);
+        jwtAuthorizationRequest.addIdTokenClaim(new Claim(JwtClaimName.NAME, ClaimValue.createEssential(true)));
+        jwtAuthorizationRequest.addIdTokenClaim(new Claim(JwtClaimName.EMAIL, ClaimValue.createNull()));
+        String authJwt = jwtAuthorizationRequest.getEncodedJwt();
+        authorizationRequest.setRequest(authJwt);
+
+        AuthorizationResponse authorizationResponse = authenticateResourceOwnerAndGrantAccess(
+                authorizationEndpoint, authorizationRequest, userId, userSecret);
+
+        assertNotNull(authorizationResponse.getLocation());
+        assertNotNull(authorizationResponse.getIdToken());
+        assertNotNull(authorizationResponse.getState());
+
+        String idToken = authorizationResponse.getIdToken();
+
+        // 3. Validate id_token
+        Jwt jwt = Jwt.parse(idToken);
+        assertNotNull(jwt.getHeader().getClaimAsString(JwtHeaderName.TYPE));
+        assertNotNull(jwt.getHeader().getClaimAsString(JwtHeaderName.ALGORITHM));
+        assertNotNull(jwt.getClaims().getClaimAsString(JwtClaimName.ISSUER));
+        assertNotNull(jwt.getClaims().getClaimAsString(JwtClaimName.AUDIENCE));
+        assertNotNull(jwt.getClaims().getClaimAsString(JwtClaimName.EXPIRATION_TIME));
+        assertNotNull(jwt.getClaims().getClaimAsString(JwtClaimName.ISSUED_AT));
+        assertNotNull(jwt.getClaims().getClaimAsString(JwtClaimName.SUBJECT_IDENTIFIER));
+        assertNotNull(jwt.getClaims().getClaimAsString(JwtClaimName.ACCESS_TOKEN_HASH));
+        assertNotNull(jwt.getClaims().getClaimAsString(JwtClaimName.AUTHENTICATION_TIME));
+        assertNotNull(jwt.getClaims().getClaimAsString(JwtClaimName.NAME));
+        assertNotNull(jwt.getClaims().getClaimAsString(JwtClaimName.EMAIL));
+
+        HMACSigner hmacSigner = new HMACSigner(SignatureAlgorithm.HS256, clientSecret);
+        assertTrue(hmacSigner.validate(jwt));
+    }
+}
\ No newline at end of file
diff --git a/oxAuth/Client/src/test/java/org/gluu/oxauth/interop/CanRequestAndUseEncryptedIdTokenResponse.java b/oxAuth/Client/src/test/java/org/gluu/oxauth/interop/CanRequestAndUseEncryptedIdTokenResponse.java
new file mode 100644
index 00000000..f4493a30
--- /dev/null
+++ b/oxAuth/Client/src/test/java/org/gluu/oxauth/interop/CanRequestAndUseEncryptedIdTokenResponse.java
@@ -0,0 +1,107 @@
+/*
+ * oxAuth is available under the MIT License (2008). See http://opensource.org/licenses/MIT for full text.
+ *
+ * Copyright (c) 2014, Gluu
+ */
+
+package org.gluu.oxauth.interop;
+
+import static org.testng.Assert.assertEquals;
+import static org.testng.Assert.assertNotNull;
+
+import java.util.Arrays;
+import java.util.List;
+import java.util.UUID;
+
+import org.gluu.oxauth.BaseTest;
+import org.gluu.oxauth.client.AuthorizationRequest;
+import org.gluu.oxauth.client.AuthorizationResponse;
+import org.gluu.oxauth.client.AuthorizeClient;
+import org.gluu.oxauth.client.RegisterClient;
+import org.gluu.oxauth.client.RegisterRequest;
+import org.gluu.oxauth.client.RegisterResponse;
+import org.gluu.oxauth.model.common.ResponseType;
+import org.gluu.oxauth.model.crypto.encryption.BlockEncryptionAlgorithm;
+import org.gluu.oxauth.model.crypto.encryption.KeyEncryptionAlgorithm;
+import org.gluu.oxauth.model.jwe.Jwe;
+import org.gluu.oxauth.model.jwt.JwtClaimName;
+import org.gluu.oxauth.model.jwt.JwtHeaderName;
+import org.gluu.oxauth.model.register.ApplicationType;
+import org.gluu.oxauth.model.util.StringUtils;
+import org.gluu.oxauth.model.util.Util;
+import org.testng.annotations.Parameters;
+import org.testng.annotations.Test;
+
+/**
+ * OC5:FeatureTest-Can Request and Use Encrypted ID Token Response
+ *
+ * @author Javier Rojas Blum
+ * @version November 3, 2016
+ */
+public class CanRequestAndUseEncryptedIdTokenResponse extends BaseTest {
+
+    @Parameters({"userId", "userSecret", "redirectUri", "redirectUris", "sectorIdentifierUri"})
+    @Test
+    public void canRequestAndUseEncryptedIdTokenResponse(
+            final String userId, final String userSecret, final String redirectUri, final String redirectUris,
+            final String sectorIdentifierUri) throws Exception {
+        showTitle("OC5:FeatureTest-Can Request and Use Encrypted ID Token Response");
+
+        List<ResponseType> responseTypes = Arrays.asList(ResponseType.TOKEN, ResponseType.ID_TOKEN);
+
+        // 1. Register client
+        RegisterRequest registerRequest = new RegisterRequest(ApplicationType.WEB, "oxAuth test app",
+                StringUtils.spaceSeparatedToList(redirectUris));
+        registerRequest.setResponseTypes(responseTypes);
+        registerRequest.setIdTokenEncryptedResponseAlg(KeyEncryptionAlgorithm.A128KW);
+        registerRequest.setIdTokenEncryptedResponseEnc(BlockEncryptionAlgorithm.A128GCM);
+        registerRequest.setSectorIdentifierUri(sectorIdentifierUri);
+
+        RegisterClient registerClient = new RegisterClient(registrationEndpoint);
+        registerClient.setRequest(registerRequest);
+        RegisterResponse registerResponse = registerClient.exec();
+
+        showClient(registerClient);
+        assertEquals(registerResponse.getStatus(), 200, "Unexpected response code: " + registerResponse.getEntity());
+        assertNotNull(registerResponse.getClientId());
+        assertNotNull(registerResponse.getClientSecret());
+        assertNotNull(registerResponse.getRegistrationAccessToken());
+        assertNotNull(registerResponse.getClientIdIssuedAt());
+        assertNotNull(registerResponse.getClientSecretExpiresAt());
+
+        String clientId = registerResponse.getClientId();
+        String clientSecret = registerResponse.getClientSecret();
+
+        // 2. Request authorization
+        List<String> scopes = Arrays.asList("openid", "profile", "address", "email");
+        String nonce = UUID.randomUUID().toString();
+        String state = UUID.randomUUID().toString();
+
+        AuthorizationRequest authorizationRequest = new AuthorizationRequest(responseTypes, clientId, scopes, redirectUri, nonce);
+        authorizationRequest.setState(state);
+
+        AuthorizeClient authorizeClient = new AuthorizeClient(authorizationEndpoint);
+        authorizeClient.setRequest(authorizationRequest);
+
+        AuthorizationResponse authorizationResponse = authenticateResourceOwnerAndGrantAccess(
+                authorizationEndpoint, authorizationRequest, userId, userSecret);
+
+        assertNotNull(authorizationResponse.getLocation(), "The location is null");
+        assertNotNull(authorizationResponse.getAccessToken(), "The accessToken is null");
+        assertNotNull(authorizationResponse.getTokenType(), "The tokenType is null");
+        assertNotNull(authorizationResponse.getIdToken(), "The idToken is null");
+        assertNotNull(authorizationResponse.getState(), "The state is null");
+
+        String idToken = authorizationResponse.getIdToken();
+
+        // 3. Read Encrypted ID Token
+        Jwe jwe = Jwe.parse(idToken, null, clientSecret.getBytes(Util.UTF8_STRING_ENCODING));
+        assertNotNull(jwe.getHeader().getClaimAsString(JwtHeaderName.TYPE));
+        assertNotNull(jwe.getHeader().getClaimAsString(JwtHeaderName.ALGORITHM));
+        assertNotNull(jwe.getClaims().getClaimAsString(JwtClaimName.ISSUER));
+        assertNotNull(jwe.getClaims().getClaimAsString(JwtClaimName.AUDIENCE));
+        assertNotNull(jwe.getClaims().getClaimAsString(JwtClaimName.EXPIRATION_TIME));
+        assertNotNull(jwe.getClaims().getClaimAsString(JwtClaimName.ISSUED_AT));
+        assertNotNull(jwe.getClaims().getClaimAsString(JwtClaimName.SUBJECT_IDENTIFIER));
+    }
+}
\ No newline at end of file
diff --git a/oxAuth/Client/src/test/java/org/gluu/oxauth/interop/CanRequestAndUseEncryptedUserInfoResponse.java b/oxAuth/Client/src/test/java/org/gluu/oxauth/interop/CanRequestAndUseEncryptedUserInfoResponse.java
new file mode 100644
index 00000000..3698426c
--- /dev/null
+++ b/oxAuth/Client/src/test/java/org/gluu/oxauth/interop/CanRequestAndUseEncryptedUserInfoResponse.java
@@ -0,0 +1,115 @@
+/*
+ * oxAuth is available under the MIT License (2008). See http://opensource.org/licenses/MIT for full text.
+ *
+ * Copyright (c) 2014, Gluu
+ */
+
+package org.gluu.oxauth.interop;
+
+import static org.testng.Assert.assertEquals;
+import static org.testng.Assert.assertNotNull;
+
+import java.util.Arrays;
+import java.util.List;
+import java.util.UUID;
+
+import org.gluu.oxauth.BaseTest;
+import org.gluu.oxauth.client.AuthorizationRequest;
+import org.gluu.oxauth.client.AuthorizationResponse;
+import org.gluu.oxauth.client.AuthorizeClient;
+import org.gluu.oxauth.client.RegisterClient;
+import org.gluu.oxauth.client.RegisterRequest;
+import org.gluu.oxauth.client.RegisterResponse;
+import org.gluu.oxauth.client.UserInfoClient;
+import org.gluu.oxauth.client.UserInfoResponse;
+import org.gluu.oxauth.model.common.ResponseType;
+import org.gluu.oxauth.model.crypto.encryption.BlockEncryptionAlgorithm;
+import org.gluu.oxauth.model.crypto.encryption.KeyEncryptionAlgorithm;
+import org.gluu.oxauth.model.jwt.JwtClaimName;
+import org.gluu.oxauth.model.register.ApplicationType;
+import org.gluu.oxauth.model.util.StringUtils;
+import org.testng.annotations.Parameters;
+import org.testng.annotations.Test;
+
+/**
+ * OC5:FeatureTest-Can Request and Use Encrypted UserInfo Response
+ *
+ * @author Javier Rojas Blum
+ * @version November 3, 2016
+ */
+public class CanRequestAndUseEncryptedUserInfoResponse extends BaseTest {
+
+    @Parameters({"userId", "userSecret", "redirectUri", "redirectUris", "sectorIdentifierUri"})
+    @Test
+    public void canRequestAndUseEncryptedUserInfoResponse(
+            final String userId, final String userSecret, final String redirectUri, final String redirectUris,
+            final String sectorIdentifierUri) throws Exception {
+        showTitle("OC5:FeatureTest-Can Request and Use Encrypted UserInfo Response");
+
+        List<ResponseType> responseTypes = Arrays.asList(ResponseType.TOKEN, ResponseType.ID_TOKEN);
+
+        // 1. Register client
+        RegisterRequest registerRequest = new RegisterRequest(ApplicationType.WEB, "oxAuth test app",
+                StringUtils.spaceSeparatedToList(redirectUris));
+        registerRequest.setResponseTypes(responseTypes);
+        registerRequest.setUserInfoEncryptedResponseAlg(KeyEncryptionAlgorithm.A128KW);
+        registerRequest.setUserInfoEncryptedResponseEnc(BlockEncryptionAlgorithm.A128GCM);
+        registerRequest.setSectorIdentifierUri(sectorIdentifierUri);
+
+        RegisterClient registerClient = new RegisterClient(registrationEndpoint);
+        registerClient.setRequest(registerRequest);
+        RegisterResponse registerResponse = registerClient.exec();
+
+        showClient(registerClient);
+        assertEquals(registerResponse.getStatus(), 200, "Unexpected response code: " + registerResponse.getEntity());
+        assertNotNull(registerResponse.getClientId());
+        assertNotNull(registerResponse.getClientSecret());
+        assertNotNull(registerResponse.getRegistrationAccessToken());
+        assertNotNull(registerResponse.getClientIdIssuedAt());
+        assertNotNull(registerResponse.getClientSecretExpiresAt());
+
+        String clientId = registerResponse.getClientId();
+        String clientSecret = registerResponse.getClientSecret();
+
+        // 2. Request authorization
+        List<String> scopes = Arrays.asList("openid", "profile", "address", "email");
+        String nonce = UUID.randomUUID().toString();
+        String state = UUID.randomUUID().toString();
+
+        AuthorizationRequest authorizationRequest = new AuthorizationRequest(responseTypes, clientId, scopes, redirectUri, nonce);
+        authorizationRequest.setState(state);
+
+        AuthorizeClient authorizeClient = new AuthorizeClient(authorizationEndpoint);
+        authorizeClient.setRequest(authorizationRequest);
+
+        AuthorizationResponse authorizationResponse = authenticateResourceOwnerAndGrantAccess(
+                authorizationEndpoint, authorizationRequest, userId, userSecret);
+
+        assertNotNull(authorizationResponse.getLocation(), "The location is null");
+        assertNotNull(authorizationResponse.getAccessToken(), "The accessToken is null");
+        assertNotNull(authorizationResponse.getTokenType(), "The tokenType is null");
+        assertNotNull(authorizationResponse.getIdToken(), "The idToken is null");
+        assertNotNull(authorizationResponse.getState(), "The state is null");
+
+        String accessToken = authorizationResponse.getAccessToken();
+
+        // 3. Request user info
+        UserInfoClient userInfoClient = new UserInfoClient(userInfoEndpoint);
+        userInfoClient.setSharedKey(clientSecret);
+        UserInfoResponse userInfoResponse = userInfoClient.execUserInfo(accessToken);
+
+        showClient(userInfoClient);
+        assertEquals(userInfoResponse.getStatus(), 200, "Unexpected response code: " + userInfoResponse.getStatus());
+        assertNotNull(userInfoResponse.getClaim(JwtClaimName.SUBJECT_IDENTIFIER));
+        assertNotNull(userInfoResponse.getClaim(JwtClaimName.NAME));
+        assertNotNull(userInfoResponse.getClaim(JwtClaimName.GIVEN_NAME));
+        assertNotNull(userInfoResponse.getClaim(JwtClaimName.FAMILY_NAME));
+        assertNotNull(userInfoResponse.getClaim(JwtClaimName.PICTURE));
+        assertNotNull(userInfoResponse.getClaim(JwtClaimName.ZONEINFO));
+        assertNotNull(userInfoResponse.getClaim(JwtClaimName.EMAIL));
+        assertNotNull(userInfoResponse.getClaim(JwtClaimName.LOCALE));
+        assertNotNull(userInfoResponse.getClaim(JwtClaimName.ADDRESS_REGION));
+        assertNotNull(userInfoResponse.getClaim(JwtClaimName.ADDRESS_STREET_ADDRESS));
+        assertNotNull(userInfoResponse.getClaim(JwtClaimName.ADDRESS_COUNTRY));
+    }
+}
\ No newline at end of file
diff --git a/oxAuth/Client/src/test/java/org/gluu/oxauth/interop/CanRequestAndUseSignedUserInfoResponse.java b/oxAuth/Client/src/test/java/org/gluu/oxauth/interop/CanRequestAndUseSignedUserInfoResponse.java
new file mode 100644
index 00000000..94873eec
--- /dev/null
+++ b/oxAuth/Client/src/test/java/org/gluu/oxauth/interop/CanRequestAndUseSignedUserInfoResponse.java
@@ -0,0 +1,116 @@
+/*
+ * oxAuth is available under the MIT License (2008). See http://opensource.org/licenses/MIT for full text.
+ *
+ * Copyright (c) 2014, Gluu
+ */
+
+package org.gluu.oxauth.interop;
+
+import static org.testng.Assert.assertEquals;
+import static org.testng.Assert.assertNotNull;
+
+import java.util.Arrays;
+import java.util.List;
+import java.util.UUID;
+
+import org.gluu.oxauth.BaseTest;
+import org.gluu.oxauth.client.AuthorizationRequest;
+import org.gluu.oxauth.client.AuthorizationResponse;
+import org.gluu.oxauth.client.AuthorizeClient;
+import org.gluu.oxauth.client.RegisterClient;
+import org.gluu.oxauth.client.RegisterRequest;
+import org.gluu.oxauth.client.RegisterResponse;
+import org.gluu.oxauth.client.UserInfoClient;
+import org.gluu.oxauth.client.UserInfoResponse;
+import org.gluu.oxauth.model.common.ResponseType;
+import org.gluu.oxauth.model.crypto.signature.SignatureAlgorithm;
+import org.gluu.oxauth.model.jwt.JwtClaimName;
+import org.gluu.oxauth.model.register.ApplicationType;
+import org.gluu.oxauth.model.util.StringUtils;
+import org.testng.annotations.Parameters;
+import org.testng.annotations.Test;
+
+/**
+ * OC5:FeatureTest-Can Request and Use Signed UserInfo Response
+ *
+ * @author Javier Rojas Blum
+ * @version March 8, 2019
+ */
+public class CanRequestAndUseSignedUserInfoResponse extends BaseTest {
+
+    @Parameters({"userId", "userSecret", "redirectUri", "redirectUris", "sectorIdentifierUri"})
+    @Test
+    public void canRequestAndUseSignedUserInfoResponse(
+            final String userId, final String userSecret, final String redirectUri, final String redirectUris,
+            final String sectorIdentifierUri) throws Exception {
+        showTitle("OC5:FeatureTest-Can Request and Use Signed UserInfo Response");
+
+        List<ResponseType> responseTypes = Arrays.asList(ResponseType.TOKEN, ResponseType.ID_TOKEN);
+
+        // 1. Register client
+        RegisterRequest registerRequest = new RegisterRequest(ApplicationType.WEB, "oxAuth test app",
+                StringUtils.spaceSeparatedToList(redirectUris));
+        registerRequest.setResponseTypes(responseTypes);
+        registerRequest.setUserInfoSignedResponseAlg(SignatureAlgorithm.HS256);
+        registerRequest.setSectorIdentifierUri(sectorIdentifierUri);
+
+        RegisterClient registerClient = new RegisterClient(registrationEndpoint);
+        registerClient.setRequest(registerRequest);
+        RegisterResponse registerResponse = registerClient.exec();
+
+        showClient(registerClient);
+        assertEquals(registerResponse.getStatus(), 200, "Unexpected response code: " + registerResponse.getEntity());
+        assertNotNull(registerResponse.getClientId());
+        assertNotNull(registerResponse.getClientSecret());
+        assertNotNull(registerResponse.getRegistrationAccessToken());
+        assertNotNull(registerResponse.getClientIdIssuedAt());
+        assertNotNull(registerResponse.getClientSecretExpiresAt());
+
+        String clientId = registerResponse.getClientId();
+        String clientSecret = registerResponse.getClientSecret();
+
+        // 2. Request authorization
+        List<String> scopes = Arrays.asList("openid", "profile", "address", "email");
+        String nonce = UUID.randomUUID().toString();
+        String state = UUID.randomUUID().toString();
+
+        AuthorizationRequest authorizationRequest = new AuthorizationRequest(responseTypes, clientId, scopes, redirectUri, nonce);
+        authorizationRequest.setState(state);
+
+        AuthorizeClient authorizeClient = new AuthorizeClient(authorizationEndpoint);
+        authorizeClient.setRequest(authorizationRequest);
+
+        AuthorizationResponse authorizationResponse = authenticateResourceOwnerAndGrantAccess(
+                authorizationEndpoint, authorizationRequest, userId, userSecret);
+
+        assertNotNull(authorizationResponse.getLocation(), "The location is null");
+        assertNotNull(authorizationResponse.getAccessToken(), "The accessToken is null");
+        assertNotNull(authorizationResponse.getTokenType(), "The tokenType is null");
+        assertNotNull(authorizationResponse.getIdToken(), "The idToken is null");
+        assertNotNull(authorizationResponse.getState(), "The state is null");
+
+        String accessToken = authorizationResponse.getAccessToken();
+
+        // 3. Request user info
+        UserInfoClient userInfoClient = new UserInfoClient(userInfoEndpoint);
+        userInfoClient.setSharedKey(clientSecret);
+        UserInfoResponse userInfoResponse = userInfoClient.execUserInfo(accessToken);
+
+        showClient(userInfoClient);
+        assertEquals(userInfoResponse.getStatus(), 200, "Unexpected response code: " + userInfoResponse.getStatus());
+        assertNotNull(userInfoResponse.getClaim(JwtClaimName.SUBJECT_IDENTIFIER));
+        assertNotNull(userInfoResponse.getClaim(JwtClaimName.NAME));
+        assertNotNull(userInfoResponse.getClaim(JwtClaimName.GIVEN_NAME));
+        assertNotNull(userInfoResponse.getClaim(JwtClaimName.FAMILY_NAME));
+        assertNotNull(userInfoResponse.getClaim(JwtClaimName.PICTURE));
+        assertNotNull(userInfoResponse.getClaim(JwtClaimName.ZONEINFO));
+        assertNotNull(userInfoResponse.getClaim(JwtClaimName.EMAIL));
+        assertNotNull(userInfoResponse.getClaim(JwtClaimName.LOCALE));
+        assertNotNull(userInfoResponse.getClaim(JwtClaimName.ADDRESS));
+        assertNotNull(userInfoResponse.getClaim(JwtClaimName.ADDRESS).containsAll(Arrays.asList(
+                JwtClaimName.ADDRESS_STREET_ADDRESS,
+                JwtClaimName.ADDRESS_REGION,
+                JwtClaimName.ADDRESS_LOCALITY,
+                JwtClaimName.ADDRESS_COUNTRY)));
+    }
+}
\ No newline at end of file
diff --git a/oxAuth/Client/src/test/java/org/gluu/oxauth/interop/DisplaysLogoInLoginPage.java b/oxAuth/Client/src/test/java/org/gluu/oxauth/interop/DisplaysLogoInLoginPage.java
new file mode 100644
index 00000000..f2b7b561
--- /dev/null
+++ b/oxAuth/Client/src/test/java/org/gluu/oxauth/interop/DisplaysLogoInLoginPage.java
@@ -0,0 +1,94 @@
+/*
+ * oxAuth is available under the MIT License (2008). See http://opensource.org/licenses/MIT for full text.
+ *
+ * Copyright (c) 2014, Gluu
+ */
+
+package org.gluu.oxauth.interop;
+
+import static org.testng.Assert.assertEquals;
+import static org.testng.Assert.assertNotNull;
+import static org.testng.Assert.fail;
+
+import java.util.Arrays;
+import java.util.List;
+import java.util.UUID;
+
+import org.gluu.oxauth.BaseTest;
+import org.gluu.oxauth.client.AuthorizationRequest;
+import org.gluu.oxauth.client.AuthorizeClient;
+import org.gluu.oxauth.client.RegisterClient;
+import org.gluu.oxauth.client.RegisterRequest;
+import org.gluu.oxauth.client.RegisterResponse;
+import org.gluu.oxauth.model.common.ResponseType;
+import org.gluu.oxauth.model.register.ApplicationType;
+import org.gluu.oxauth.model.util.StringUtils;
+import org.openqa.selenium.By;
+import org.openqa.selenium.NoSuchElementException;
+import org.openqa.selenium.WebElement;
+import org.testng.annotations.Parameters;
+import org.testng.annotations.Test;
+
+/**
+ * OC5:FeatureTest-Displays Logo in Login Page
+ *
+ * @author Javier Rojas Blum
+ * @version November 3, 2016
+ */
+public class DisplaysLogoInLoginPage extends BaseTest {
+
+	@Parameters({ "redirectUris", "redirectUri", "sectorIdentifierUri" })
+	@Test
+	public void displaysLogoInLoginPage(final String redirectUris, final String redirectUri,
+			final String sectorIdentifierUri) throws Exception {
+		showTitle("OC5:FeatureTest-Displays Logo in Login Page");
+
+		List<ResponseType> responseTypes = Arrays.asList(ResponseType.CODE);
+		String logoUri = "http://www.gluu.org/wp-content/themes/gluursn/images/logo.png";
+
+		// 1. Register client
+		RegisterRequest registerRequest = new RegisterRequest(ApplicationType.WEB, "oxAuth test app",
+				StringUtils.spaceSeparatedToList(redirectUris));
+		registerRequest.setResponseTypes(responseTypes);
+		registerRequest.setLogoUri(logoUri);
+		registerRequest.setSectorIdentifierUri(sectorIdentifierUri);
+
+		RegisterClient registerClient = new RegisterClient(registrationEndpoint);
+		registerClient.setRequest(registerRequest);
+		RegisterResponse registerResponse = registerClient.exec();
+
+		showClient(registerClient);
+		assertEquals(registerResponse.getStatus(), 200, "Unexpected response code: " + registerResponse.getEntity());
+		assertNotNull(registerResponse.getClientId());
+		assertNotNull(registerResponse.getClientSecret());
+		assertNotNull(registerResponse.getRegistrationAccessToken());
+		assertNotNull(registerResponse.getClientIdIssuedAt());
+		assertNotNull(registerResponse.getClientSecretExpiresAt());
+
+		String clientId = registerResponse.getClientId();
+
+		// 2. Request authorization and receive the authorization code.
+		List<String> scopes = Arrays.asList("openid", "profile", "address", "email");
+		String state = UUID.randomUUID().toString();
+
+		AuthorizationRequest authorizationRequest = new AuthorizationRequest(responseTypes, clientId, scopes,
+				redirectUri, null);
+		authorizationRequest.setState(state);
+
+		String authorizationRequestUrl = getAuthorizationEndpoint() + "?" + authorizationRequest.getQueryString();
+
+		AuthorizeClient authorizeClient = new AuthorizeClient(getAuthorizationEndpoint());
+		authorizeClient.setRequest(authorizationRequest);
+
+		try {
+			startSelenium();
+			navigateToAuhorizationUrl(driver, authorizationRequestUrl);
+			WebElement logo = driver.findElement(By.id("AppLogo"));
+			assertNotNull(logo);
+		} catch (NoSuchElementException ex) {
+			fail("Logo not found");
+		} finally {
+			stopSelenium();
+		}
+	}
+}
\ No newline at end of file
diff --git a/oxAuth/Client/src/test/java/org/gluu/oxauth/interop/DisplaysPolicyUriInLoginPage.java b/oxAuth/Client/src/test/java/org/gluu/oxauth/interop/DisplaysPolicyUriInLoginPage.java
new file mode 100644
index 00000000..9b33e961
--- /dev/null
+++ b/oxAuth/Client/src/test/java/org/gluu/oxauth/interop/DisplaysPolicyUriInLoginPage.java
@@ -0,0 +1,90 @@
+/*
+ * oxAuth is available under the MIT License (2008). See http://opensource.org/licenses/MIT for full text.
+ *
+ * Copyright (c) 2014, Gluu
+ */
+
+package org.gluu.oxauth.interop;
+
+import static org.testng.Assert.assertEquals;
+import static org.testng.Assert.assertNotNull;
+import static org.testng.Assert.fail;
+
+import java.util.Arrays;
+import java.util.List;
+import java.util.UUID;
+
+import org.gluu.oxauth.BaseTest;
+import org.gluu.oxauth.client.AuthorizationRequest;
+import org.gluu.oxauth.client.AuthorizeClient;
+import org.gluu.oxauth.client.RegisterClient;
+import org.gluu.oxauth.client.RegisterRequest;
+import org.gluu.oxauth.client.RegisterResponse;
+import org.gluu.oxauth.model.common.ResponseType;
+import org.gluu.oxauth.model.register.ApplicationType;
+import org.gluu.oxauth.model.util.StringUtils;
+import org.testng.annotations.Parameters;
+import org.testng.annotations.Test;
+
+/**
+ * OC5:FeatureTest-Displays Policy in Login Page
+ *
+ * @author Javier Rojas Blum
+ * @version November 3, 2016
+ */
+public class DisplaysPolicyUriInLoginPage extends BaseTest {
+
+    @Parameters({"redirectUris", "redirectUri", "sectorIdentifierUri"})
+    @Test
+    public void displaysPolicyUrlInLoginPage(final String redirectUris, final String redirectUri, final String sectorIdentifierUri) throws Exception {
+        showTitle("OC5:FeatureTest-Displays Policy in Login Page");
+
+        List<ResponseType> responseTypes = Arrays.asList(ResponseType.CODE);
+        String policyUri = "http://www.gluu.org/policy";
+
+        // 1. Register client
+        RegisterRequest registerRequest = new RegisterRequest(ApplicationType.WEB, "oxAuth test app",
+                StringUtils.spaceSeparatedToList(redirectUris));
+        registerRequest.setResponseTypes(responseTypes);
+        registerRequest.setPolicyUri(policyUri);
+        registerRequest.setSectorIdentifierUri(sectorIdentifierUri);
+
+        RegisterClient registerClient = new RegisterClient(registrationEndpoint);
+        registerClient.setRequest(registerRequest);
+        RegisterResponse registerResponse = registerClient.exec();
+
+        showClient(registerClient);
+        assertEquals(registerResponse.getStatus(), 200, "Unexpected response code: " + registerResponse.getEntity());
+        assertNotNull(registerResponse.getClientId());
+        assertNotNull(registerResponse.getClientSecret());
+        assertNotNull(registerResponse.getRegistrationAccessToken());
+        assertNotNull(registerResponse.getClientIdIssuedAt());
+        assertNotNull(registerResponse.getClientSecretExpiresAt());
+
+        String clientId = registerResponse.getClientId();
+
+        // 2. Request authorization and receive the authorization code.
+        List<String> scopes = Arrays.asList("openid", "profile", "address", "email");
+        String state = UUID.randomUUID().toString();
+
+        AuthorizationRequest authorizationRequest = new AuthorizationRequest(responseTypes, clientId, scopes, redirectUri, null);
+        authorizationRequest.setState(state);
+
+        String authorizationRequestUrl = getAuthorizationEndpoint() + "?" + authorizationRequest.getQueryString();
+
+        AuthorizeClient authorizeClient = new AuthorizeClient(getAuthorizationEndpoint());
+        authorizeClient.setRequest(authorizationRequest);
+
+        try {
+            startSelenium();
+            navigateToAuhorizationUrl(driver, authorizationRequestUrl);
+
+//            WebElement policy = driver.findElement(By.xpath("//a[@href='" + policyUri + "']"));
+//            assertNotNull(policy);
+        } catch (Exception ex) {
+            fail("Policy not found");
+        } finally {
+            stopSelenium();
+        }
+    }
+}
\ No newline at end of file
diff --git a/oxAuth/Client/src/test/java/org/gluu/oxauth/interop/EnablesDynamicRegistration.java b/oxAuth/Client/src/test/java/org/gluu/oxauth/interop/EnablesDynamicRegistration.java
new file mode 100644
index 00000000..a57e212c
--- /dev/null
+++ b/oxAuth/Client/src/test/java/org/gluu/oxauth/interop/EnablesDynamicRegistration.java
@@ -0,0 +1,63 @@
+/*
+ * oxAuth is available under the MIT License (2008). See http://opensource.org/licenses/MIT for full text.
+ *
+ * Copyright (c) 2014, Gluu
+ */
+
+package org.gluu.oxauth.interop;
+
+import static org.testng.Assert.assertEquals;
+import static org.testng.Assert.assertNotNull;
+
+import java.util.Arrays;
+
+import org.gluu.oxauth.BaseTest;
+import org.gluu.oxauth.client.RegisterClient;
+import org.gluu.oxauth.client.RegisterRequest;
+import org.gluu.oxauth.client.RegisterResponse;
+import org.gluu.oxauth.model.common.AuthenticationMethod;
+import org.gluu.oxauth.model.common.SubjectType;
+import org.gluu.oxauth.model.crypto.signature.SignatureAlgorithm;
+import org.gluu.oxauth.model.register.ApplicationType;
+import org.gluu.oxauth.model.util.StringUtils;
+import org.testng.annotations.Parameters;
+import org.testng.annotations.Test;
+
+/**
+ * OC5:FeatureTest-Enables Dynamic Registration
+ *
+ * @author Javier Rojas Blum Date: 07.27.2013
+ */
+public class EnablesDynamicRegistration extends BaseTest {
+
+    @Parameters({"redirectUris", "sectorIdentifierUri", "clientJwksUri"})
+    @Test
+    public void enablesDynamicRegistration(final String redirectUris, final String sectorIdentifierUri,
+                                           final String clientJwksUri) throws Exception {
+        showTitle("OC5:FeatureTest-Enables Dynamic Registration");
+
+        RegisterRequest registerRequest = new RegisterRequest(ApplicationType.WEB, "oxAuth test app",
+                StringUtils.spaceSeparatedToList(redirectUris));
+        registerRequest.setContacts(Arrays.asList("javier@gluu.org", "javier.rojas.blum@gmail.com"));
+        registerRequest.setLogoUri("http://www.gluu.org/wp-content/themes/gluursn/images/logo.png");
+        registerRequest.setTokenEndpointAuthMethod(AuthenticationMethod.CLIENT_SECRET_JWT);
+        registerRequest.setPolicyUri("http://www.gluu.org/policy");
+        registerRequest.setJwksUri(clientJwksUri);
+        registerRequest.setSectorIdentifierUri(sectorIdentifierUri);
+        registerRequest.setSubjectType(SubjectType.PUBLIC);
+        registerRequest.setRequestObjectSigningAlg(SignatureAlgorithm.RS256);
+
+        RegisterClient registerClient = new RegisterClient(registrationEndpoint);
+        registerClient.setRequest(registerRequest);
+        RegisterResponse response = registerClient.exec();
+
+        showClient(registerClient);
+        assertEquals(response.getStatus(), 200, "Unexpected response code: " + response.getEntity());
+        assertNotNull(response.getClientId());
+        assertNotNull(response.getClientSecret());
+        assertNotNull(response.getRegistrationAccessToken());
+        assertNotNull(response.getRegistrationClientUri());
+        assertNotNull(response.getClientIdIssuedAt());
+        assertNotNull(response.getClientSecretExpiresAt());
+    }
+}
\ No newline at end of file
diff --git a/oxAuth/Client/src/test/java/org/gluu/oxauth/interop/IgnoresExtraQueryComponentInRequest.java b/oxAuth/Client/src/test/java/org/gluu/oxauth/interop/IgnoresExtraQueryComponentInRequest.java
new file mode 100644
index 00000000..bdc38b07
--- /dev/null
+++ b/oxAuth/Client/src/test/java/org/gluu/oxauth/interop/IgnoresExtraQueryComponentInRequest.java
@@ -0,0 +1,85 @@
+/*
+ * oxAuth is available under the MIT License (2008). See http://opensource.org/licenses/MIT for full text.
+ *
+ * Copyright (c) 2014, Gluu
+ */
+
+package org.gluu.oxauth.interop;
+
+import static org.testng.Assert.assertEquals;
+import static org.testng.Assert.assertNotNull;
+
+import java.util.Arrays;
+import java.util.List;
+import java.util.UUID;
+
+import org.gluu.oxauth.BaseTest;
+import org.gluu.oxauth.client.AuthorizationRequest;
+import org.gluu.oxauth.client.AuthorizationResponse;
+import org.gluu.oxauth.client.RegisterClient;
+import org.gluu.oxauth.client.RegisterRequest;
+import org.gluu.oxauth.client.RegisterResponse;
+import org.gluu.oxauth.model.common.ResponseType;
+import org.gluu.oxauth.model.register.ApplicationType;
+import org.gluu.oxauth.model.util.StringUtils;
+import org.testng.annotations.Parameters;
+import org.testng.annotations.Test;
+
+/**
+ * OC5:FeatureTest-Ignores Extra Query Component in Request
+ *
+ * @author Javier Rojas Blum
+ * @version November 3, 2016
+ */
+public class IgnoresExtraQueryComponentInRequest extends BaseTest {
+
+    @Parameters({"userId", "userSecret", "redirectUris", "redirectUri", "sectorIdentifierUri"})
+    @Test
+    public void ignoresExtraQueryComponentInRequest(
+            final String userId, final String userSecret, final String redirectUris, final String redirectUri,
+            final String sectorIdentifierUri) throws Exception {
+        showTitle("OC5:FeatureTest-Ignores Extra Query Component in Request");
+
+        List<ResponseType> responseTypes = Arrays.asList(
+                ResponseType.CODE,
+                ResponseType.ID_TOKEN);
+
+        // 1. Register client
+        RegisterRequest registerRequest = new RegisterRequest(ApplicationType.WEB, "oxAuth test app",
+                StringUtils.spaceSeparatedToList(redirectUris));
+        registerRequest.setResponseTypes(responseTypes);
+        registerRequest.setSectorIdentifierUri(sectorIdentifierUri);
+
+        RegisterClient registerClient = new RegisterClient(registrationEndpoint);
+        registerClient.setRequest(registerRequest);
+        RegisterResponse registerResponse = registerClient.exec();
+
+        showClient(registerClient);
+        assertEquals(registerResponse.getStatus(), 200, "Unexpected response code: " + registerResponse.getEntity());
+        assertNotNull(registerResponse.getClientId());
+        assertNotNull(registerResponse.getClientSecret());
+        assertNotNull(registerResponse.getRegistrationAccessToken());
+        assertNotNull(registerResponse.getClientIdIssuedAt());
+        assertNotNull(registerResponse.getClientSecretExpiresAt());
+
+        String clientId = registerResponse.getClientId();
+        String clientSecret = registerResponse.getClientSecret();
+
+        // 2. Request authorization and receive the authorization code.
+        List<String> scopes = Arrays.asList("openid", "profile", "address", "email");
+        String state = UUID.randomUUID().toString();
+        String nonce = UUID.randomUUID().toString();
+
+        AuthorizationRequest authorizationRequest = new AuthorizationRequest(responseTypes, clientId, scopes, redirectUri, nonce);
+        authorizationRequest.setState(state);
+        authorizationRequest.getCustomParameters().put("custom_param", "custom_value");
+
+        AuthorizationResponse authorizationResponse = authenticateResourceOwnerAndGrantAccess(
+                authorizationEndpoint, authorizationRequest, userId, userSecret);
+
+        assertNotNull(authorizationResponse.getLocation(), "The location is null");
+        assertNotNull(authorizationResponse.getCode(), "The authorization code is null");
+        assertNotNull(authorizationResponse.getState(), "The state is null");
+        assertNotNull(authorizationResponse.getScope(), "The scope is null");
+    }
+}
\ No newline at end of file
diff --git a/oxAuth/Client/src/test/java/org/gluu/oxauth/interop/IncludesAtHashInIdTokenWhenImplicitFlowUsed.java b/oxAuth/Client/src/test/java/org/gluu/oxauth/interop/IncludesAtHashInIdTokenWhenImplicitFlowUsed.java
new file mode 100644
index 00000000..201a57ff
--- /dev/null
+++ b/oxAuth/Client/src/test/java/org/gluu/oxauth/interop/IncludesAtHashInIdTokenWhenImplicitFlowUsed.java
@@ -0,0 +1,115 @@
+/*
+ * oxAuth is available under the MIT License (2008). See http://opensource.org/licenses/MIT for full text.
+ *
+ * Copyright (c) 2014, Gluu
+ */
+
+package org.gluu.oxauth.interop;
+
+import static org.testng.Assert.assertEquals;
+import static org.testng.Assert.assertNotNull;
+import static org.testng.Assert.assertTrue;
+
+import java.util.Arrays;
+import java.util.List;
+import java.util.UUID;
+
+import org.gluu.oxauth.BaseTest;
+import org.gluu.oxauth.client.AuthorizationRequest;
+import org.gluu.oxauth.client.AuthorizationResponse;
+import org.gluu.oxauth.client.JwkClient;
+import org.gluu.oxauth.client.RegisterClient;
+import org.gluu.oxauth.client.RegisterRequest;
+import org.gluu.oxauth.client.RegisterResponse;
+import org.gluu.oxauth.model.common.ResponseType;
+import org.gluu.oxauth.model.crypto.signature.RSAPublicKey;
+import org.gluu.oxauth.model.crypto.signature.SignatureAlgorithm;
+import org.gluu.oxauth.model.jws.RSASigner;
+import org.gluu.oxauth.model.jwt.Jwt;
+import org.gluu.oxauth.model.jwt.JwtClaimName;
+import org.gluu.oxauth.model.jwt.JwtHeaderName;
+import org.gluu.oxauth.model.register.ApplicationType;
+import org.gluu.oxauth.model.util.StringUtils;
+import org.testng.annotations.Parameters;
+import org.testng.annotations.Test;
+
+/**
+ * OC5:FeatureTest-Includes at hash in ID Token when Implicit Flow Used
+ *
+ * @author Javier Rojas Blum
+ * @version November 3, 2016
+ */
+public class IncludesAtHashInIdTokenWhenImplicitFlowUsed extends BaseTest {
+
+    @Parameters({"userId", "userSecret", "redirectUris", "redirectUri", "sectorIdentifierUri"})
+    @Test
+    public void includesAtHashInIdTokenWhenImplicitFlowUsed(
+            final String userId, final String userSecret, final String redirectUris, final String redirectUri,
+            final String sectorIdentifierUri) throws Exception {
+        showTitle("OC5:FeatureTest-Includes at hash in ID Token when Implicit Flow Used");
+
+        List<ResponseType> responseTypes = Arrays.asList(
+                ResponseType.TOKEN,
+                ResponseType.ID_TOKEN);
+
+        // 1. Register client
+        RegisterRequest registerRequest = new RegisterRequest(ApplicationType.WEB, "oxAuth test app",
+                StringUtils.spaceSeparatedToList(redirectUris));
+        registerRequest.setResponseTypes(responseTypes);
+        registerRequest.setSectorIdentifierUri(sectorIdentifierUri);
+
+        RegisterClient registerClient = new RegisterClient(registrationEndpoint);
+        registerClient.setRequest(registerRequest);
+        RegisterResponse registerResponse = registerClient.exec();
+
+        showClient(registerClient);
+        assertEquals(registerResponse.getStatus(), 200, "Unexpected response code: " + registerResponse.getEntity());
+        assertNotNull(registerResponse.getClientId());
+        assertNotNull(registerResponse.getClientSecret());
+        assertNotNull(registerResponse.getRegistrationAccessToken());
+        assertNotNull(registerResponse.getClientIdIssuedAt());
+        assertNotNull(registerResponse.getClientSecretExpiresAt());
+
+        String clientId = registerResponse.getClientId();
+
+        // 2. Request authorization
+        List<String> scopes = Arrays.asList("openid", "profile", "address", "email");
+        String nonce = UUID.randomUUID().toString();
+        String state = UUID.randomUUID().toString();
+
+        AuthorizationRequest authorizationRequest = new AuthorizationRequest(responseTypes, clientId, scopes, redirectUri, nonce);
+        authorizationRequest.setState(state);
+
+        AuthorizationResponse authorizationResponse = authenticateResourceOwnerAndGrantAccess(
+                authorizationEndpoint, authorizationRequest, userId, userSecret);
+
+        assertNotNull(authorizationResponse.getLocation());
+        assertNotNull(authorizationResponse.getAccessToken());
+        assertNotNull(authorizationResponse.getTokenType());
+        assertNotNull(authorizationResponse.getIdToken());
+        assertNotNull(authorizationResponse.getState());
+
+        String accessToken = authorizationResponse.getAccessToken();
+        String idToken = authorizationResponse.getIdToken();
+
+        // 4. Validate access_token and id_token
+        Jwt jwt = Jwt.parse(idToken);
+        assertNotNull(jwt.getHeader().getClaimAsString(JwtHeaderName.TYPE));
+        assertNotNull(jwt.getHeader().getClaimAsString(JwtHeaderName.ALGORITHM));
+        assertNotNull(jwt.getClaims().getClaimAsString(JwtClaimName.ISSUER));
+        assertNotNull(jwt.getClaims().getClaimAsString(JwtClaimName.AUDIENCE));
+        assertNotNull(jwt.getClaims().getClaimAsString(JwtClaimName.EXPIRATION_TIME));
+        assertNotNull(jwt.getClaims().getClaimAsString(JwtClaimName.ISSUED_AT));
+        assertNotNull(jwt.getClaims().getClaimAsString(JwtClaimName.SUBJECT_IDENTIFIER));
+        assertNotNull(jwt.getClaims().getClaimAsString(JwtClaimName.ACCESS_TOKEN_HASH));
+        assertNotNull(jwt.getClaims().getClaimAsString(JwtClaimName.AUTHENTICATION_TIME));
+
+        RSAPublicKey publicKey = JwkClient.getRSAPublicKey(
+                jwksUri,
+                jwt.getHeader().getClaimAsString(JwtHeaderName.KEY_ID));
+        RSASigner rsaSigner = new RSASigner(SignatureAlgorithm.RS256, publicKey);
+
+        assertTrue(rsaSigner.validate(jwt));
+        assertTrue(rsaSigner.validateAccessToken(accessToken, jwt));
+    }
+}
\ No newline at end of file
diff --git a/oxAuth/Client/src/test/java/org/gluu/oxauth/interop/IncludesCHashInIdTokenWhenCodeFlowUsed.java b/oxAuth/Client/src/test/java/org/gluu/oxauth/interop/IncludesCHashInIdTokenWhenCodeFlowUsed.java
new file mode 100644
index 00000000..87338a94
--- /dev/null
+++ b/oxAuth/Client/src/test/java/org/gluu/oxauth/interop/IncludesCHashInIdTokenWhenCodeFlowUsed.java
@@ -0,0 +1,143 @@
+/*
+ * oxAuth is available under the MIT License (2008). See http://opensource.org/licenses/MIT for full text.
+ *
+ * Copyright (c) 2014, Gluu
+ */
+
+package org.gluu.oxauth.interop;
+
+import static org.gluu.oxauth.model.register.RegisterRequestParam.APPLICATION_TYPE;
+import static org.gluu.oxauth.model.register.RegisterRequestParam.CLIENT_NAME;
+import static org.gluu.oxauth.model.register.RegisterRequestParam.ID_TOKEN_SIGNED_RESPONSE_ALG;
+import static org.gluu.oxauth.model.register.RegisterRequestParam.REDIRECT_URIS;
+import static org.gluu.oxauth.model.register.RegisterRequestParam.RESPONSE_TYPES;
+import static org.gluu.oxauth.model.register.RegisterRequestParam.SCOPE;
+import static org.testng.Assert.assertEquals;
+import static org.testng.Assert.assertNotNull;
+import static org.testng.Assert.assertTrue;
+
+import java.util.Arrays;
+import java.util.List;
+import java.util.UUID;
+
+import org.gluu.oxauth.BaseTest;
+import org.gluu.oxauth.client.AuthorizationRequest;
+import org.gluu.oxauth.client.AuthorizationResponse;
+import org.gluu.oxauth.client.JwkClient;
+import org.gluu.oxauth.client.RegisterClient;
+import org.gluu.oxauth.client.RegisterRequest;
+import org.gluu.oxauth.client.RegisterResponse;
+import org.gluu.oxauth.model.common.ResponseType;
+import org.gluu.oxauth.model.crypto.signature.RSAPublicKey;
+import org.gluu.oxauth.model.crypto.signature.SignatureAlgorithm;
+import org.gluu.oxauth.model.jws.RSASigner;
+import org.gluu.oxauth.model.jwt.Jwt;
+import org.gluu.oxauth.model.jwt.JwtClaimName;
+import org.gluu.oxauth.model.jwt.JwtHeaderName;
+import org.gluu.oxauth.model.register.ApplicationType;
+import org.gluu.oxauth.model.util.StringUtils;
+import org.testng.annotations.Parameters;
+import org.testng.annotations.Test;
+
+/**
+ * OC5:FeatureTest-Includes c hash in ID Token when Code Flow Used
+ *
+ * @author Javier Rojas Blum
+ * @version November 29, 2017
+ */
+public class IncludesCHashInIdTokenWhenCodeFlowUsed extends BaseTest {
+
+    @Parameters({"userId", "userSecret", "redirectUris", "redirectUri", "sectorIdentifierUri"})
+    @Test
+    public void includesCHashInIdTokenWhenCodeFlowUsed(
+            final String userId, final String userSecret, final String redirectUris, final String redirectUri,
+            final String sectorIdentifierUri) throws Exception {
+        showTitle("OC5:FeatureTest-Includes c hash in ID Token when Code Flow Used");
+
+        List<ResponseType> responseTypes = Arrays.asList(
+                ResponseType.CODE,
+                ResponseType.ID_TOKEN);
+
+        // 1. Register client
+        RegisterRequest registerRequest = new RegisterRequest(ApplicationType.WEB, "oxAuth test app",
+                StringUtils.spaceSeparatedToList(redirectUris));
+        registerRequest.setResponseTypes(responseTypes);
+        registerRequest.setSectorIdentifierUri(sectorIdentifierUri);
+
+        RegisterClient registerClient = new RegisterClient(registrationEndpoint);
+        registerClient.setRequest(registerRequest);
+        RegisterResponse registerResponse = registerClient.exec();
+
+        showClient(registerClient);
+        assertEquals(registerResponse.getStatus(), 200, "Unexpected response code: " + registerResponse.getEntity());
+        assertNotNull(registerResponse.getClientId());
+        assertNotNull(registerResponse.getClientSecret());
+        assertNotNull(registerResponse.getRegistrationAccessToken());
+        assertNotNull(registerResponse.getClientIdIssuedAt());
+        assertNotNull(registerResponse.getClientSecretExpiresAt());
+
+        String clientId = registerResponse.getClientId();
+        String registrationAccessToken = registerResponse.getRegistrationAccessToken();
+        String registrationClientUri = registerResponse.getRegistrationClientUri();
+
+        // 2. Client read
+        RegisterRequest readClientRequest = new RegisterRequest(registrationAccessToken);
+
+        RegisterClient readClient = new RegisterClient(registrationClientUri);
+        readClient.setRequest(readClientRequest);
+        RegisterResponse readClientResponse = readClient.exec();
+
+        showClient(readClient);
+        assertEquals(readClientResponse.getStatus(), 200, "Unexpected response code: " + readClientResponse.getEntity());
+        assertNotNull(readClientResponse.getClientId());
+        assertNotNull(readClientResponse.getClientSecret());
+        assertNotNull(readClientResponse.getClientIdIssuedAt());
+        assertNotNull(readClientResponse.getClientSecretExpiresAt());
+
+        assertNotNull(readClientResponse.getClaims().get(RESPONSE_TYPES.toString()));
+        assertNotNull(readClientResponse.getClaims().get(REDIRECT_URIS.toString()));
+        assertNotNull(readClientResponse.getClaims().get(APPLICATION_TYPE.toString()));
+        assertNotNull(readClientResponse.getClaims().get(CLIENT_NAME.toString()));
+        assertNotNull(readClientResponse.getClaims().get(ID_TOKEN_SIGNED_RESPONSE_ALG.toString()));
+        assertNotNull(readClientResponse.getClaims().get(SCOPE.toString()));
+
+        // 3. Request authorization
+        List<String> scopes = Arrays.asList("openid", "profile", "address", "email");
+        String state = UUID.randomUUID().toString();
+        String nonce = UUID.randomUUID().toString();
+
+        AuthorizationRequest authorizationRequest = new AuthorizationRequest(responseTypes, clientId, scopes, redirectUri, nonce);
+        authorizationRequest.setState(state);
+
+        AuthorizationResponse authorizationResponse = authenticateResourceOwnerAndGrantAccess(
+                authorizationEndpoint, authorizationRequest, userId, userSecret);
+
+        assertNotNull(authorizationResponse.getLocation(), "The location is null");
+        assertNotNull(authorizationResponse.getCode(), "The code is null");
+        assertNotNull(authorizationResponse.getIdToken(), "The idToken is null");
+        assertNotNull(authorizationResponse.getState(), "The state is null");
+
+        String code = authorizationResponse.getCode();
+        String idToken = authorizationResponse.getIdToken();
+
+        // 4. Validate code and id_token
+        Jwt jwt = Jwt.parse(idToken);
+        assertNotNull(jwt.getHeader().getClaimAsString(JwtHeaderName.TYPE));
+        assertNotNull(jwt.getHeader().getClaimAsString(JwtHeaderName.ALGORITHM));
+        assertNotNull(jwt.getClaims().getClaimAsString(JwtClaimName.ISSUER));
+        assertNotNull(jwt.getClaims().getClaimAsString(JwtClaimName.AUDIENCE));
+        assertNotNull(jwt.getClaims().getClaimAsString(JwtClaimName.EXPIRATION_TIME));
+        assertNotNull(jwt.getClaims().getClaimAsString(JwtClaimName.ISSUED_AT));
+        assertNotNull(jwt.getClaims().getClaimAsString(JwtClaimName.SUBJECT_IDENTIFIER));
+        assertNotNull(jwt.getClaims().getClaimAsString(JwtClaimName.CODE_HASH));
+        assertNotNull(jwt.getClaims().getClaimAsString(JwtClaimName.AUTHENTICATION_TIME));
+
+        RSAPublicKey publicKey = JwkClient.getRSAPublicKey(
+                jwksUri,
+                jwt.getHeader().getClaimAsString(JwtHeaderName.KEY_ID));
+        RSASigner rsaSigner = new RSASigner(SignatureAlgorithm.RS256, publicKey);
+
+        assertTrue(rsaSigner.validate(jwt));
+        assertTrue(rsaSigner.validateAuthorizationCode(code, jwt));
+    }
+}
\ No newline at end of file
diff --git a/oxAuth/Client/src/test/java/org/gluu/oxauth/interop/OPRegistrationJwks.java b/oxAuth/Client/src/test/java/org/gluu/oxauth/interop/OPRegistrationJwks.java
new file mode 100644
index 00000000..18a0f8bf
--- /dev/null
+++ b/oxAuth/Client/src/test/java/org/gluu/oxauth/interop/OPRegistrationJwks.java
@@ -0,0 +1,223 @@
+package org.gluu.oxauth.interop;
+
+import static org.testng.Assert.assertEquals;
+import static org.testng.Assert.assertNotNull;
+import static org.testng.Assert.assertTrue;
+
+import java.util.Arrays;
+import java.util.List;
+import java.util.UUID;
+
+import org.gluu.oxauth.BaseTest;
+import org.gluu.oxauth.client.AuthorizationRequest;
+import org.gluu.oxauth.client.AuthorizationResponse;
+import org.gluu.oxauth.client.JwkClient;
+import org.gluu.oxauth.client.JwkResponse;
+import org.gluu.oxauth.client.RegisterClient;
+import org.gluu.oxauth.client.RegisterRequest;
+import org.gluu.oxauth.client.RegisterResponse;
+import org.gluu.oxauth.client.TokenClient;
+import org.gluu.oxauth.client.TokenRequest;
+import org.gluu.oxauth.client.TokenResponse;
+import org.gluu.oxauth.model.common.AuthenticationMethod;
+import org.gluu.oxauth.model.common.GrantType;
+import org.gluu.oxauth.model.common.ResponseType;
+import org.gluu.oxauth.model.crypto.OxAuthCryptoProvider;
+import org.gluu.oxauth.model.crypto.signature.SignatureAlgorithm;
+import org.gluu.oxauth.model.register.ApplicationType;
+import org.gluu.oxauth.model.register.RegisterRequestParam;
+import org.gluu.oxauth.model.util.StringUtils;
+import org.testng.annotations.Parameters;
+import org.testng.annotations.Test;
+
+/**
+ * @author Javier Rojas Blum
+ * @version October 4, 2017
+ */
+public class OPRegistrationJwks extends BaseTest {
+
+    @Parameters({"redirectUri", "postLogoutRedirectUri", "clientJwksUri", "userId", "userSecret", "RS256_keyId",
+            "dnName", "keyStoreFile", "keyStoreSecret"})
+    @Test
+    public void opRegistrationJwks(
+            final String redirectUri, final String postLogoutRedirectUri, final String clientJwksUri,
+            final String userId, final String userSecret, final String keyId, final String dnName,
+            final String keyStoreFile, final String keyStoreSecret) throws Exception {
+        showTitle("opRegistrationJwks");
+
+        List<ResponseType> responseTypes = Arrays.asList(ResponseType.CODE);
+        List<GrantType> grantTypes = Arrays.asList(GrantType.AUTHORIZATION_CODE);
+        List<String> contacts = Arrays.asList("javier@gluu.org", "javier.rojas.blum@gmail.com");
+
+        // 1. Register client
+        JwkClient jwkClient = new JwkClient(clientJwksUri);
+        JwkResponse jwkResponse = jwkClient.exec();
+
+        RegisterRequest registerRequest = new RegisterRequest(ApplicationType.WEB, "oxAuth test app",
+                StringUtils.spaceSeparatedToList(redirectUri));
+        registerRequest.setPostLogoutRedirectUris(Arrays.asList(postLogoutRedirectUri));
+        registerRequest.setResponseTypes(responseTypes);
+        registerRequest.setGrantTypes(grantTypes);
+        registerRequest.setContacts(contacts);
+        registerRequest.setTokenEndpointAuthMethod(AuthenticationMethod.PRIVATE_KEY_JWT);
+        registerRequest.setJwks(jwkResponse.getJwks().toString());
+
+        RegisterClient registerClient = new RegisterClient(registrationEndpoint);
+        registerClient.setRequest(registerRequest);
+        RegisterResponse registerResponse = registerClient.exec();
+
+        showClient(registerClient);
+        assertEquals(registerResponse.getStatus(), 200, "Unexpected response code: " + registerResponse.getEntity());
+        assertNotNull(registerResponse.getClientId());
+        assertNotNull(registerResponse.getClientSecret());
+        assertNotNull(registerResponse.getRegistrationAccessToken());
+        assertNotNull(registerResponse.getRegistrationClientUri());
+        assertNotNull(registerResponse.getClientIdIssuedAt());
+        assertNotNull(registerResponse.getClientSecretExpiresAt());
+        assertNotNull(registerResponse.getResponseTypes());
+        assertTrue(registerResponse.getResponseTypes().containsAll(responseTypes));
+        assertNotNull(registerResponse.getGrantTypes());
+        assertTrue(registerResponse.getGrantTypes().containsAll(grantTypes));
+        assertNotNull(registerResponse.getClaims().get(RegisterRequestParam.JWKS.getName()));
+        assertNotNull(registerResponse.getClaims().get(RegisterRequestParam.TOKEN_ENDPOINT_AUTH_METHOD.getName()));
+        assertEquals(AuthenticationMethod.PRIVATE_KEY_JWT.toString(), registerResponse.getClaims().get(RegisterRequestParam.TOKEN_ENDPOINT_AUTH_METHOD.getName()));
+
+        String clientId = registerResponse.getClientId();
+        String clientSecret = registerResponse.getClientSecret();
+
+        // 2. Request authorization
+        List<String> scopes = Arrays.asList("openid");
+        String nonce = UUID.randomUUID().toString();
+        String state = UUID.randomUUID().toString();
+
+        AuthorizationRequest authorizationRequest = new AuthorizationRequest(responseTypes, clientId, scopes, redirectUri, nonce);
+        authorizationRequest.setState(state);
+
+        AuthorizationResponse authorizationResponse = authenticateResourceOwnerAndGrantAccess(
+                authorizationEndpoint, authorizationRequest, userId, userSecret);
+
+        assertNotNull(authorizationResponse.getLocation());
+        assertNotNull(authorizationResponse.getState());
+        assertNotNull(authorizationResponse.getScope());
+
+        String authorizationCode = authorizationResponse.getCode();
+
+        // 3. Request access token using the authorization code.
+        OxAuthCryptoProvider cryptoProvider = new OxAuthCryptoProvider(keyStoreFile, keyStoreSecret, dnName);
+
+        TokenRequest tokenRequest = new TokenRequest(GrantType.AUTHORIZATION_CODE);
+        tokenRequest.setCode(authorizationCode);
+
+        tokenRequest.setRedirectUri(redirectUri);
+        tokenRequest.setAuthUsername(clientId);
+        tokenRequest.setAuthPassword(clientSecret);
+        tokenRequest.setAuthenticationMethod(AuthenticationMethod.PRIVATE_KEY_JWT);
+        tokenRequest.setAlgorithm(SignatureAlgorithm.RS256);
+        tokenRequest.setCryptoProvider(cryptoProvider);
+        tokenRequest.setKeyId(keyId);
+        tokenRequest.setAudience(tokenEndpoint);
+
+        TokenClient tokenClient = new TokenClient(tokenEndpoint);
+        tokenClient.setRequest(tokenRequest);
+        TokenResponse tokenResponse = tokenClient.exec();
+
+        showClient(tokenClient);
+        assertEquals(tokenResponse.getStatus(), 200, "Unexpected response code: " + tokenResponse.getStatus());
+        assertNotNull(tokenResponse.getEntity(), "The entity is null");
+        assertNotNull(tokenResponse.getAccessToken(), "The access token is null");
+        assertNotNull(tokenResponse.getTokenType(), "The token type is null");
+        assertNotNull(tokenResponse.getRefreshToken(), "The refresh token is null");
+        assertNotNull(tokenResponse.getIdToken(), "The id token is null");
+    }
+
+    @Parameters({"redirectUri", "postLogoutRedirectUri", "clientJwksUri", "userId", "userSecret", "RS256_keyId",
+            "dnName", "keyStoreFile", "keyStoreSecret"})
+    @Test
+    public void opRegistrationJwksUri(
+            final String redirectUri, final String postLogoutRedirectUri, final String clientJwksUri,
+            final String userId, final String userSecret, final String keyId, final String dnName,
+            final String keyStoreFile, final String keyStoreSecret) throws Exception {
+        showTitle("opRegistrationJwksUri");
+
+        List<ResponseType> responseTypes = Arrays.asList(ResponseType.CODE);
+        List<GrantType> grantTypes = Arrays.asList(GrantType.AUTHORIZATION_CODE);
+        List<String> contacts = Arrays.asList("javier@gluu.org", "javier.rojas.blum@gmail.com");
+
+        // 1. Register client
+        RegisterRequest registerRequest = new RegisterRequest(ApplicationType.WEB, "oxAuth test app",
+                StringUtils.spaceSeparatedToList(redirectUri));
+        registerRequest.setPostLogoutRedirectUris(Arrays.asList(postLogoutRedirectUri));
+        registerRequest.setResponseTypes(responseTypes);
+        registerRequest.setGrantTypes(grantTypes);
+        registerRequest.setContacts(contacts);
+        registerRequest.setTokenEndpointAuthMethod(AuthenticationMethod.PRIVATE_KEY_JWT);
+        registerRequest.setJwksUri(clientJwksUri);
+
+        RegisterClient registerClient = new RegisterClient(registrationEndpoint);
+        registerClient.setRequest(registerRequest);
+        RegisterResponse registerResponse = registerClient.exec();
+
+        showClient(registerClient);
+        assertEquals(registerResponse.getStatus(), 200, "Unexpected response code: " + registerResponse.getEntity());
+        assertNotNull(registerResponse.getClientId());
+        assertNotNull(registerResponse.getClientSecret());
+        assertNotNull(registerResponse.getRegistrationAccessToken());
+        assertNotNull(registerResponse.getRegistrationClientUri());
+        assertNotNull(registerResponse.getClientIdIssuedAt());
+        assertNotNull(registerResponse.getClientSecretExpiresAt());
+        assertNotNull(registerResponse.getResponseTypes());
+        assertTrue(registerResponse.getResponseTypes().containsAll(responseTypes));
+        assertNotNull(registerResponse.getGrantTypes());
+        assertTrue(registerResponse.getGrantTypes().containsAll(grantTypes));
+        assertNotNull(registerResponse.getClaims().get(RegisterRequestParam.JWKS_URI.getName()));
+        assertNotNull(registerResponse.getClaims().get(RegisterRequestParam.TOKEN_ENDPOINT_AUTH_METHOD.getName()));
+        assertEquals(AuthenticationMethod.PRIVATE_KEY_JWT.toString(), registerResponse.getClaims().get(RegisterRequestParam.TOKEN_ENDPOINT_AUTH_METHOD.getName()));
+
+        String clientId = registerResponse.getClientId();
+        String clientSecret = registerResponse.getClientSecret();
+
+        // 2. Request authorization
+        List<String> scopes = Arrays.asList("openid");
+        String nonce = UUID.randomUUID().toString();
+        String state = UUID.randomUUID().toString();
+
+        AuthorizationRequest authorizationRequest = new AuthorizationRequest(responseTypes, clientId, scopes, redirectUri, nonce);
+        authorizationRequest.setState(state);
+
+        AuthorizationResponse authorizationResponse = authenticateResourceOwnerAndGrantAccess(
+                authorizationEndpoint, authorizationRequest, userId, userSecret);
+
+        assertNotNull(authorizationResponse.getLocation());
+        assertNotNull(authorizationResponse.getState());
+        assertNotNull(authorizationResponse.getScope());
+
+        String authorizationCode = authorizationResponse.getCode();
+
+        // 3. Request access token using the authorization code.
+        OxAuthCryptoProvider cryptoProvider = new OxAuthCryptoProvider(keyStoreFile, keyStoreSecret, dnName);
+
+        TokenRequest tokenRequest = new TokenRequest(GrantType.AUTHORIZATION_CODE);
+        tokenRequest.setCode(authorizationCode);
+
+        tokenRequest.setRedirectUri(redirectUri);
+        tokenRequest.setAuthUsername(clientId);
+        tokenRequest.setAuthPassword(clientSecret);
+        tokenRequest.setAuthenticationMethod(AuthenticationMethod.PRIVATE_KEY_JWT);
+        tokenRequest.setAlgorithm(SignatureAlgorithm.RS256);
+        tokenRequest.setCryptoProvider(cryptoProvider);
+        tokenRequest.setKeyId(keyId);
+        tokenRequest.setAudience(tokenEndpoint);
+
+        TokenClient tokenClient = new TokenClient(tokenEndpoint);
+        tokenClient.setRequest(tokenRequest);
+        TokenResponse tokenResponse = tokenClient.exec();
+
+        showClient(tokenClient);
+        assertEquals(tokenResponse.getStatus(), 200, "Unexpected response code: " + tokenResponse.getStatus());
+        assertNotNull(tokenResponse.getEntity(), "The entity is null");
+        assertNotNull(tokenResponse.getAccessToken(), "The access token is null");
+        assertNotNull(tokenResponse.getTokenType(), "The token type is null");
+        assertNotNull(tokenResponse.getRefreshToken(), "The refresh token is null");
+        assertNotNull(tokenResponse.getIdToken(), "The id token is null");
+    }
+}
diff --git a/oxAuth/Client/src/test/java/org/gluu/oxauth/interop/ProvidingAcrValues.java b/oxAuth/Client/src/test/java/org/gluu/oxauth/interop/ProvidingAcrValues.java
new file mode 100644
index 00000000..82aff717
--- /dev/null
+++ b/oxAuth/Client/src/test/java/org/gluu/oxauth/interop/ProvidingAcrValues.java
@@ -0,0 +1,83 @@
+package org.gluu.oxauth.interop;
+
+import static org.testng.Assert.assertEquals;
+import static org.testng.Assert.assertNotNull;
+import static org.testng.Assert.assertTrue;
+
+import java.util.Arrays;
+import java.util.List;
+import java.util.UUID;
+
+import org.gluu.oxauth.BaseTest;
+import org.gluu.oxauth.client.AuthorizationRequest;
+import org.gluu.oxauth.client.AuthorizationResponse;
+import org.gluu.oxauth.client.RegisterClient;
+import org.gluu.oxauth.client.RegisterRequest;
+import org.gluu.oxauth.client.RegisterResponse;
+import org.gluu.oxauth.model.common.GrantType;
+import org.gluu.oxauth.model.common.ResponseType;
+import org.gluu.oxauth.model.register.ApplicationType;
+import org.gluu.oxauth.model.util.StringUtils;
+import org.testng.annotations.Parameters;
+import org.testng.annotations.Test;
+
+/**
+ * @author Javier Rojas Blum
+ * @version November 22, 2017
+ */
+public class ProvidingAcrValues extends BaseTest {
+
+    @Parameters({"redirectUri", "clientJwksUri", "userId", "userSecret"})
+    @Test
+    public void providingAcrValues(final String redirectUri, final String jwksUri, final String userId, final String userSecret) throws Exception {
+        showTitle("providingAcrValues");
+
+        List<ResponseType> responseTypes = Arrays.asList(ResponseType.CODE, ResponseType.ID_TOKEN);
+        List<GrantType> grantTypes = Arrays.asList(GrantType.AUTHORIZATION_CODE, GrantType.IMPLICIT);
+        List<String> contacts = Arrays.asList("javier@gluu.org", "javier.rojas.blum@gmail.com");
+
+        // 1. Register client
+        RegisterRequest registerRequest = new RegisterRequest(ApplicationType.WEB, "oxAuth test app",
+                StringUtils.spaceSeparatedToList(redirectUri));
+        registerRequest.setJwksUri(jwksUri);
+        registerRequest.setResponseTypes(responseTypes);
+        registerRequest.setGrantTypes(grantTypes);
+        registerRequest.setContacts(contacts);
+
+        RegisterClient registerClient = new RegisterClient(registrationEndpoint);
+        registerClient.setRequest(registerRequest);
+        RegisterResponse response = registerClient.exec();
+
+        showClient(registerClient);
+        assertEquals(response.getStatus(), 200, "Unexpected response code: " + response.getEntity());
+        assertNotNull(response.getClientId());
+        assertNotNull(response.getClientSecret());
+        assertNotNull(response.getRegistrationAccessToken());
+        assertNotNull(response.getRegistrationClientUri());
+        assertNotNull(response.getClientIdIssuedAt());
+        assertNotNull(response.getClientSecretExpiresAt());
+        assertNotNull(response.getResponseTypes());
+        assertTrue(response.getResponseTypes().containsAll(responseTypes));
+        assertNotNull(response.getGrantTypes());
+        assertTrue(response.getGrantTypes().containsAll(grantTypes));
+
+        String clientId = response.getClientId();
+
+        // 3. Request authorization
+        List<String> scopes = Arrays.asList("openid");
+        List<String> acrValues = Arrays.asList("basic");
+        String nonce = UUID.randomUUID().toString();
+        String state = UUID.randomUUID().toString();
+
+        AuthorizationRequest authorizationRequest = new AuthorizationRequest(responseTypes, clientId, scopes, redirectUri, nonce);
+        authorizationRequest.setState(state);
+        authorizationRequest.setAcrValues(acrValues);
+
+        AuthorizationResponse authorizationResponse = authenticateResourceOwnerAndGrantAccess(
+                authorizationEndpoint, authorizationRequest, userId, userSecret);
+
+        assertNotNull(authorizationResponse.getLocation());
+        assertNotNull(authorizationResponse.getState());
+        assertNotNull(authorizationResponse.getScope());
+    }
+}
diff --git a/oxAuth/Client/src/test/java/org/gluu/oxauth/interop/ProvidingIdTokenWithEssentialAuthTimeClaim.java b/oxAuth/Client/src/test/java/org/gluu/oxauth/interop/ProvidingIdTokenWithEssentialAuthTimeClaim.java
new file mode 100644
index 00000000..b5bbdfc9
--- /dev/null
+++ b/oxAuth/Client/src/test/java/org/gluu/oxauth/interop/ProvidingIdTokenWithEssentialAuthTimeClaim.java
@@ -0,0 +1,129 @@
+/*
+ * oxAuth is available under the MIT License (2008). See http://opensource.org/licenses/MIT for full text.
+ *
+ * Copyright (c) 2014, Gluu
+ */
+
+package org.gluu.oxauth.interop;
+
+import static org.testng.Assert.assertEquals;
+import static org.testng.Assert.assertNotNull;
+import static org.testng.Assert.assertTrue;
+
+import java.util.Arrays;
+import java.util.List;
+import java.util.UUID;
+
+import org.gluu.oxauth.BaseTest;
+import org.gluu.oxauth.client.AuthorizationRequest;
+import org.gluu.oxauth.client.AuthorizationResponse;
+import org.gluu.oxauth.client.AuthorizeClient;
+import org.gluu.oxauth.client.JwkClient;
+import org.gluu.oxauth.client.RegisterClient;
+import org.gluu.oxauth.client.RegisterRequest;
+import org.gluu.oxauth.client.RegisterResponse;
+import org.gluu.oxauth.client.model.authorize.Claim;
+import org.gluu.oxauth.client.model.authorize.ClaimValue;
+import org.gluu.oxauth.client.model.authorize.JwtAuthorizationRequest;
+import org.gluu.oxauth.model.common.ResponseType;
+import org.gluu.oxauth.model.crypto.OxAuthCryptoProvider;
+import org.gluu.oxauth.model.crypto.signature.RSAPublicKey;
+import org.gluu.oxauth.model.crypto.signature.SignatureAlgorithm;
+import org.gluu.oxauth.model.jws.RSASigner;
+import org.gluu.oxauth.model.jwt.Jwt;
+import org.gluu.oxauth.model.jwt.JwtClaimName;
+import org.gluu.oxauth.model.jwt.JwtHeaderName;
+import org.gluu.oxauth.model.register.ApplicationType;
+import org.gluu.oxauth.model.util.StringUtils;
+import org.testng.annotations.Parameters;
+import org.testng.annotations.Test;
+
+/**
+ * OC5:FeatureTest-Providing ID Token with Essential auth time Claim
+ *
+ * @author Javier Rojas Blum
+ * @version November 3, 2016
+ */
+public class ProvidingIdTokenWithEssentialAuthTimeClaim extends BaseTest {
+
+    @Parameters({"userId", "userSecret", "redirectUri", "redirectUris", "dnName", "keyStoreFile", "keyStoreSecret",
+            "sectorIdentifierUri"})
+    @Test
+    public void providingIdTokenWithEssentialAuthTimeClaim(
+            final String userId, final String userSecret, final String redirectUri, final String redirectUris,
+            final String dnName, final String keyStoreFile, final String keyStoreSecret, final String sectorIdentifierUri) throws Exception {
+        showTitle("OC5:FeatureTest-Providing ID Token with Essential auth time Claim");
+
+        List<ResponseType> responseTypes = Arrays.asList(ResponseType.TOKEN, ResponseType.ID_TOKEN);
+
+        // 1. Register client
+        RegisterRequest registerRequest = new RegisterRequest(ApplicationType.WEB, "oxAuth test app",
+                StringUtils.spaceSeparatedToList(redirectUris));
+        registerRequest.setResponseTypes(responseTypes);
+        registerRequest.setSectorIdentifierUri(sectorIdentifierUri);
+
+        RegisterClient registerClient = new RegisterClient(registrationEndpoint);
+        registerClient.setRequest(registerRequest);
+        RegisterResponse registerResponse = registerClient.exec();
+
+        showClient(registerClient);
+        assertEquals(registerResponse.getStatus(), 200, "Unexpected response code: " + registerResponse.getEntity());
+        assertNotNull(registerResponse.getClientId());
+        assertNotNull(registerResponse.getClientSecret());
+        assertNotNull(registerResponse.getRegistrationAccessToken());
+        assertNotNull(registerResponse.getClientIdIssuedAt());
+        assertNotNull(registerResponse.getClientSecretExpiresAt());
+
+        String clientId = registerResponse.getClientId();
+        String clientSecret = registerResponse.getClientSecret();
+
+        // 2. Request authorization
+        OxAuthCryptoProvider cryptoProvider = new OxAuthCryptoProvider(keyStoreFile, keyStoreSecret, dnName);
+
+        List<String> scopes = Arrays.asList("openid");
+        String nonce = UUID.randomUUID().toString();
+        String state = UUID.randomUUID().toString();
+
+        AuthorizationRequest authorizationRequest = new AuthorizationRequest(responseTypes, clientId, scopes, redirectUri, nonce);
+        authorizationRequest.setState(state);
+
+        JwtAuthorizationRequest jwtAuthorizationRequest = new JwtAuthorizationRequest(authorizationRequest, SignatureAlgorithm.HS256, clientSecret, cryptoProvider);
+        jwtAuthorizationRequest.addIdTokenClaim(new Claim(JwtClaimName.AUTHENTICATION_TIME, ClaimValue.createEssential(true)));
+        String authJwt = jwtAuthorizationRequest.getEncodedJwt();
+        authorizationRequest.setRequest(authJwt);
+
+        AuthorizeClient authorizeClient = new AuthorizeClient(authorizationEndpoint);
+        authorizeClient.setRequest(authorizationRequest);
+
+        AuthorizationResponse authorizationResponse = authenticateResourceOwnerAndGrantAccess(
+                authorizationEndpoint, authorizationRequest, userId, userSecret);
+
+        assertNotNull(authorizationResponse.getLocation(), "The location is null");
+        assertNotNull(authorizationResponse.getAccessToken(), "The accessToken is null");
+        assertNotNull(authorizationResponse.getTokenType(), "The tokenType is null");
+        assertNotNull(authorizationResponse.getIdToken(), "The idToken is null");
+        assertNotNull(authorizationResponse.getState(), "The state is null");
+
+        String idToken = authorizationResponse.getIdToken();
+        String accessToken = authorizationResponse.getAccessToken();
+
+        // 3. Validate id_token
+        Jwt jwt = Jwt.parse(idToken);
+        assertNotNull(jwt.getHeader().getClaimAsString(JwtHeaderName.TYPE));
+        assertNotNull(jwt.getHeader().getClaimAsString(JwtHeaderName.ALGORITHM));
+        assertNotNull(jwt.getClaims().getClaimAsString(JwtClaimName.ISSUER));
+        assertNotNull(jwt.getClaims().getClaimAsString(JwtClaimName.AUDIENCE));
+        assertNotNull(jwt.getClaims().getClaimAsString(JwtClaimName.EXPIRATION_TIME));
+        assertNotNull(jwt.getClaims().getClaimAsString(JwtClaimName.ISSUED_AT));
+        assertNotNull(jwt.getClaims().getClaimAsString(JwtClaimName.SUBJECT_IDENTIFIER));
+        assertNotNull(jwt.getClaims().getClaimAsString(JwtClaimName.ACCESS_TOKEN_HASH));
+        assertNotNull(jwt.getClaims().getClaimAsString(JwtClaimName.AUTHENTICATION_TIME));
+
+        RSAPublicKey publicKey = JwkClient.getRSAPublicKey(
+                jwksUri,
+                jwt.getHeader().getClaimAsString(JwtHeaderName.KEY_ID));
+        RSASigner rsaSigner = new RSASigner(SignatureAlgorithm.RS256, publicKey);
+
+        assertTrue(rsaSigner.validate(jwt));
+    }
+}
\ No newline at end of file
diff --git a/oxAuth/Client/src/test/java/org/gluu/oxauth/interop/ProvidingIdTokenWithMaxAgeRestriction.java b/oxAuth/Client/src/test/java/org/gluu/oxauth/interop/ProvidingIdTokenWithMaxAgeRestriction.java
new file mode 100644
index 00000000..d6d72e88
--- /dev/null
+++ b/oxAuth/Client/src/test/java/org/gluu/oxauth/interop/ProvidingIdTokenWithMaxAgeRestriction.java
@@ -0,0 +1,345 @@
+/*
+ * oxAuth is available under the MIT License (2008). See http://opensource.org/licenses/MIT for full text.
+ *
+ * Copyright (c) 2014, Gluu
+ */
+
+package org.gluu.oxauth.interop;
+
+import static org.testng.Assert.assertEquals;
+import static org.testng.Assert.assertNotNull;
+import static org.testng.Assert.assertTrue;
+
+import java.util.Arrays;
+import java.util.List;
+import java.util.UUID;
+
+import org.gluu.oxauth.BaseTest;
+import org.gluu.oxauth.client.AuthorizationRequest;
+import org.gluu.oxauth.client.AuthorizationResponse;
+import org.gluu.oxauth.client.JwkClient;
+import org.gluu.oxauth.client.RegisterClient;
+import org.gluu.oxauth.client.RegisterRequest;
+import org.gluu.oxauth.client.RegisterResponse;
+import org.gluu.oxauth.client.TokenClient;
+import org.gluu.oxauth.client.TokenRequest;
+import org.gluu.oxauth.client.TokenResponse;
+import org.gluu.oxauth.client.model.authorize.JwtAuthorizationRequest;
+import org.gluu.oxauth.model.common.AuthenticationMethod;
+import org.gluu.oxauth.model.common.GrantType;
+import org.gluu.oxauth.model.common.ResponseType;
+import org.gluu.oxauth.model.common.SubjectType;
+import org.gluu.oxauth.model.crypto.OxAuthCryptoProvider;
+import org.gluu.oxauth.model.crypto.signature.RSAPublicKey;
+import org.gluu.oxauth.model.crypto.signature.SignatureAlgorithm;
+import org.gluu.oxauth.model.jws.RSASigner;
+import org.gluu.oxauth.model.jwt.Jwt;
+import org.gluu.oxauth.model.jwt.JwtClaimName;
+import org.gluu.oxauth.model.jwt.JwtHeaderName;
+import org.gluu.oxauth.model.register.ApplicationType;
+import org.gluu.oxauth.model.util.StringUtils;
+import org.testng.annotations.Parameters;
+import org.testng.annotations.Test;
+
+/**
+ * OC5:FeatureTest-Providing ID Token with max age Restriction
+ *
+ * @author Javier Rojas Blum
+ * @version August 9, 2017
+ */
+public class ProvidingIdTokenWithMaxAgeRestriction extends BaseTest {
+
+    @Parameters({"userId", "userSecret", "redirectUris", "redirectUri", "clientJwksUri"})
+    @Test
+    public void providingIdTokenWithMaxAgeRestriction(
+            final String userId, final String userSecret, final String redirectUris, final String redirectUri,
+            final String clientJwksUri) throws Exception {
+        showTitle("OC5:FeatureTest-Providing ID Token with max age Restriction");
+
+        List<ResponseType> responseTypes = Arrays.asList(ResponseType.CODE);
+
+        // 1. Register client
+        RegisterRequest registerRequest = new RegisterRequest(ApplicationType.WEB, "oxAuth test app",
+                StringUtils.spaceSeparatedToList(redirectUris));
+        registerRequest.setSubjectType(SubjectType.PUBLIC);
+        registerRequest.setJwksUri(clientJwksUri);
+        registerRequest.setContacts(Arrays.asList("javier@gluu.org"));
+        registerRequest.setGrantTypes(Arrays.asList(GrantType.AUTHORIZATION_CODE));
+        registerRequest.setPostLogoutRedirectUris(StringUtils.spaceSeparatedToList(redirectUris));
+        registerRequest.setRequireAuthTime(true);
+        registerRequest.setDefaultMaxAge(3600);
+        registerRequest.setResponseTypes(responseTypes);
+
+        RegisterClient registerClient = new RegisterClient(registrationEndpoint);
+        registerClient.setRequest(registerRequest);
+        RegisterResponse registerResponse = registerClient.exec();
+
+        showClient(registerClient);
+        assertEquals(registerResponse.getStatus(), 200, "Unexpected response code: " + registerResponse.getEntity());
+        assertNotNull(registerResponse.getClientId());
+        assertNotNull(registerResponse.getClientSecret());
+        assertNotNull(registerResponse.getRegistrationAccessToken());
+        assertNotNull(registerResponse.getClientIdIssuedAt());
+        assertNotNull(registerResponse.getClientSecretExpiresAt());
+
+        String clientId = registerResponse.getClientId();
+        String clientSecret = registerResponse.getClientSecret();
+
+        String sessionId;
+        {
+            // 2. Request authorization
+            List<String> scopes = Arrays.asList("openid");
+            String state = UUID.randomUUID().toString();
+
+            AuthorizationRequest authorizationRequest = new AuthorizationRequest(responseTypes, clientId, scopes, redirectUri, null);
+            authorizationRequest.setState(state);
+
+            AuthorizationResponse authorizationResponse = authenticateResourceOwnerAndGrantAccess(
+                    authorizationEndpoint, authorizationRequest, userId, userSecret);
+
+            assertNotNull(authorizationResponse.getLocation());
+            assertNotNull(authorizationResponse.getCode());
+            assertNotNull(authorizationResponse.getState());
+            assertNotNull(authorizationResponse.getScope());
+            assertEquals(authorizationResponse.getState(), state);
+
+            String authorizationCode = authorizationResponse.getCode();
+            sessionId = authorizationResponse.getSessionId();
+
+            // 3. Get Access Token
+            TokenRequest tokenRequest = new TokenRequest(GrantType.AUTHORIZATION_CODE);
+            tokenRequest.setCode(authorizationCode);
+            tokenRequest.setRedirectUri(redirectUri);
+            tokenRequest.setAuthUsername(clientId);
+            tokenRequest.setAuthPassword(clientSecret);
+            tokenRequest.setAuthenticationMethod(AuthenticationMethod.CLIENT_SECRET_BASIC);
+
+            TokenClient tokenClient = new TokenClient(tokenEndpoint);
+            tokenClient.setRequest(tokenRequest);
+            TokenResponse tokenResponse = tokenClient.exec();
+
+            String idToken = tokenResponse.getIdToken();
+
+            showClient(tokenClient);
+            assertEquals(tokenResponse.getStatus(), 200, "Unexpected response code: " + tokenResponse.getStatus());
+            assertNotNull(tokenResponse.getEntity(), "The entity is null");
+            assertNotNull(tokenResponse.getAccessToken(), "The access token is null");
+            assertNotNull(tokenResponse.getIdToken(), "The ID Token is null");
+            assertNotNull(tokenResponse.getExpiresIn(), "The expires in value is null");
+            assertNotNull(tokenResponse.getTokenType(), "The token type is null");
+            assertNotNull(tokenResponse.getRefreshToken(), "The refresh token is null");
+
+            // 4. Validate id_token
+            Jwt jwt = Jwt.parse(idToken);
+            assertNotNull(jwt.getHeader().getClaimAsString(JwtHeaderName.TYPE));
+            assertNotNull(jwt.getHeader().getClaimAsString(JwtHeaderName.ALGORITHM));
+            assertNotNull(jwt.getClaims().getClaimAsString(JwtClaimName.ISSUER));
+            assertNotNull(jwt.getClaims().getClaimAsString(JwtClaimName.AUDIENCE));
+            assertNotNull(jwt.getClaims().getClaimAsString(JwtClaimName.EXPIRATION_TIME));
+            assertNotNull(jwt.getClaims().getClaimAsString(JwtClaimName.ISSUED_AT));
+            assertNotNull(jwt.getClaims().getClaimAsString(JwtClaimName.SUBJECT_IDENTIFIER));
+            assertNotNull(jwt.getClaims().getClaimAsString(JwtClaimName.AUTHENTICATION_TIME));
+            assertNotNull(jwt.getClaims().getClaimAsString(JwtClaimName.ACCESS_TOKEN_HASH));
+
+            RSAPublicKey publicKey = JwkClient.getRSAPublicKey(
+                    jwksUri,
+                    jwt.getHeader().getClaimAsString(JwtHeaderName.KEY_ID));
+            RSASigner rsaSigner = new RSASigner(SignatureAlgorithm.RS256, publicKey);
+
+            assertTrue(rsaSigner.validate(jwt));
+        }
+
+        Thread.sleep(60000);
+
+        {
+            // 5. Request authorization
+            List<String> scopes = Arrays.asList("openid", "profile", "address", "email");
+            String state = UUID.randomUUID().toString();
+
+            AuthorizationRequest authorizationRequest = new AuthorizationRequest(responseTypes, clientId, scopes, redirectUri, null);
+            authorizationRequest.setState(state);
+            authorizationRequest.setMaxAge(30);
+            authorizationRequest.setSessionId(sessionId);
+
+            AuthorizationResponse authorizationResponse = authenticateResourceOwnerAndGrantAccess(
+                    authorizationEndpoint, authorizationRequest, userId, userSecret);
+
+            assertNotNull(authorizationResponse.getLocation());
+            assertNotNull(authorizationResponse.getCode());
+            assertNotNull(authorizationResponse.getState());
+            assertNotNull(authorizationResponse.getScope());
+            assertEquals(authorizationResponse.getState(), state);
+
+            String authorizationCode = authorizationResponse.getCode();
+
+            // 6. Get Access Token
+            TokenRequest tokenRequest = new TokenRequest(GrantType.AUTHORIZATION_CODE);
+            tokenRequest.setCode(authorizationCode);
+            tokenRequest.setRedirectUri(redirectUri);
+            tokenRequest.setAuthUsername(clientId);
+            tokenRequest.setAuthPassword(clientSecret);
+            tokenRequest.setAuthenticationMethod(AuthenticationMethod.CLIENT_SECRET_BASIC);
+
+            TokenClient tokenClient = new TokenClient(tokenEndpoint);
+            tokenClient.setRequest(tokenRequest);
+            TokenResponse tokenResponse = tokenClient.exec();
+
+            String idToken = tokenResponse.getIdToken();
+
+            showClient(tokenClient);
+            assertEquals(tokenResponse.getStatus(), 200, "Unexpected response code: " + tokenResponse.getStatus());
+            assertNotNull(tokenResponse.getEntity(), "The entity is null");
+            assertNotNull(tokenResponse.getAccessToken(), "The access token is null");
+            assertNotNull(tokenResponse.getIdToken(), "The ID Token is null");
+            assertNotNull(tokenResponse.getExpiresIn(), "The expires in value is null");
+            assertNotNull(tokenResponse.getTokenType(), "The token type is null");
+            assertNotNull(tokenResponse.getRefreshToken(), "The refresh token is null");
+
+            // 7. Validate id_token
+            Jwt jwt = Jwt.parse(idToken);
+            assertNotNull(jwt.getHeader().getClaimAsString(JwtHeaderName.TYPE));
+            assertNotNull(jwt.getHeader().getClaimAsString(JwtHeaderName.ALGORITHM));
+            assertNotNull(jwt.getClaims().getClaimAsString(JwtClaimName.ISSUER));
+            assertNotNull(jwt.getClaims().getClaimAsString(JwtClaimName.AUDIENCE));
+            assertNotNull(jwt.getClaims().getClaimAsString(JwtClaimName.EXPIRATION_TIME));
+            assertNotNull(jwt.getClaims().getClaimAsString(JwtClaimName.ISSUED_AT));
+            assertNotNull(jwt.getClaims().getClaimAsString(JwtClaimName.SUBJECT_IDENTIFIER));
+            assertNotNull(jwt.getClaims().getClaimAsString(JwtClaimName.AUTHENTICATION_TIME));
+            assertNotNull(jwt.getClaims().getClaimAsString(JwtClaimName.ACCESS_TOKEN_HASH));
+
+            RSAPublicKey publicKey = JwkClient.getRSAPublicKey(
+                    jwksUri,
+                    jwt.getHeader().getClaimAsString(JwtHeaderName.KEY_ID));
+            RSASigner rsaSigner = new RSASigner(SignatureAlgorithm.RS256, publicKey);
+
+            assertTrue(rsaSigner.validate(jwt));
+        }
+    }
+
+    @Parameters({"userId", "userSecret", "redirectUris", "redirectUri", "sectorIdentifierUri"})
+    @Test
+    public void providingIdTokenWithMaxAgeRestrictionJwtAuthorizationRequest(
+            final String userId, final String userSecret, final String redirectUris, final String redirectUri,
+            final String sectorIdentifierUri) throws Exception {
+        showTitle("OC5:FeatureTest-Providing ID Token with max age Restriction (JWT Authorization Request)");
+
+        List<ResponseType> responseTypes = Arrays.asList(
+                ResponseType.CODE,
+                ResponseType.ID_TOKEN);
+
+        // 1. Register client
+        RegisterRequest registerRequest = new RegisterRequest(ApplicationType.WEB, "oxAuth test app",
+                StringUtils.spaceSeparatedToList(redirectUris));
+        registerRequest.setResponseTypes(responseTypes);
+        registerRequest.setSectorIdentifierUri(sectorIdentifierUri);
+
+        RegisterClient registerClient = new RegisterClient(registrationEndpoint);
+        registerClient.setRequest(registerRequest);
+        RegisterResponse registerResponse = registerClient.exec();
+
+        showClient(registerClient);
+        assertEquals(registerResponse.getStatus(), 200, "Unexpected response code: " + registerResponse.getEntity());
+        assertNotNull(registerResponse.getClientId());
+        assertNotNull(registerResponse.getClientSecret());
+        assertNotNull(registerResponse.getRegistrationAccessToken());
+        assertNotNull(registerResponse.getClientIdIssuedAt());
+        assertNotNull(registerResponse.getClientSecretExpiresAt());
+
+        String clientId = registerResponse.getClientId();
+        String clientSecret = registerResponse.getClientSecret();
+
+        String sessionId;
+        {
+            // 2. Request authorization
+            List<String> scopes = Arrays.asList("openid", "profile", "address", "email");
+            String nonce = UUID.randomUUID().toString();
+            String state = UUID.randomUUID().toString();
+
+            AuthorizationRequest authorizationRequest = new AuthorizationRequest(responseTypes, clientId, scopes, redirectUri, nonce);
+            authorizationRequest.setState(state);
+
+            AuthorizationResponse authorizationResponse = authenticateResourceOwnerAndGrantAccess(
+                    authorizationEndpoint, authorizationRequest, userId, userSecret);
+
+            assertNotNull(authorizationResponse.getLocation());
+            assertNotNull(authorizationResponse.getCode());
+            assertNotNull(authorizationResponse.getIdToken());
+            assertNotNull(authorizationResponse.getState());
+            assertNotNull(authorizationResponse.getScope());
+
+            String authorizationCode = authorizationResponse.getCode();
+            sessionId = authorizationResponse.getSessionId();
+
+            // 3. Get Access Token
+            TokenRequest tokenRequest = new TokenRequest(GrantType.AUTHORIZATION_CODE);
+            tokenRequest.setCode(authorizationCode);
+            tokenRequest.setRedirectUri(redirectUri);
+            tokenRequest.setAuthUsername(clientId);
+            tokenRequest.setAuthPassword(clientSecret);
+            tokenRequest.setAuthenticationMethod(AuthenticationMethod.CLIENT_SECRET_BASIC);
+
+            TokenClient tokenClient = new TokenClient(tokenEndpoint);
+            tokenClient.setRequest(tokenRequest);
+            TokenResponse tokenResponse = tokenClient.exec();
+
+            showClient(tokenClient);
+            assertEquals(tokenResponse.getStatus(), 200, "Unexpected response code: " + tokenResponse.getStatus());
+            assertNotNull(tokenResponse.getEntity(), "The entity is null");
+            assertNotNull(tokenResponse.getAccessToken(), "The access token is null");
+            assertNotNull(tokenResponse.getExpiresIn(), "The expires in value is null");
+            assertNotNull(tokenResponse.getTokenType(), "The token type is null");
+            assertNotNull(tokenResponse.getRefreshToken(), "The refresh token is null");
+        }
+
+        Thread.sleep(60000);
+
+        {
+            // 4. Request authorization
+            OxAuthCryptoProvider cryptoProvider = new OxAuthCryptoProvider();
+
+            List<String> scopes = Arrays.asList("openid", "profile", "address", "email");
+            String nonce = UUID.randomUUID().toString();
+            String state = UUID.randomUUID().toString();
+
+            AuthorizationRequest authorizationRequest = new AuthorizationRequest(responseTypes, clientId, scopes, redirectUri, nonce);
+            authorizationRequest.setState(state);
+            authorizationRequest.setSessionId(sessionId);
+
+            JwtAuthorizationRequest jwtAuthorizationRequest = new JwtAuthorizationRequest(authorizationRequest, SignatureAlgorithm.HS256, clientSecret, cryptoProvider);
+            jwtAuthorizationRequest.getIdTokenMember().setMaxAge(30);
+            String authJwt = jwtAuthorizationRequest.getEncodedJwt();
+            authorizationRequest.setRequest(authJwt);
+
+            AuthorizationResponse authorizationResponse = authenticateResourceOwner(
+                    authorizationEndpoint, authorizationRequest, userId, userSecret, false);
+
+            assertNotNull(authorizationResponse.getLocation());
+            assertNotNull(authorizationResponse.getCode());
+            assertNotNull(authorizationResponse.getIdToken());
+            assertNotNull(authorizationResponse.getState());
+            assertNotNull(authorizationResponse.getScope());
+
+            String authorizationCode = authorizationResponse.getCode();
+
+            // 5. Get Access Token
+            TokenRequest tokenRequest = new TokenRequest(GrantType.AUTHORIZATION_CODE);
+            tokenRequest.setCode(authorizationCode);
+            tokenRequest.setRedirectUri(redirectUri);
+            tokenRequest.setAuthUsername(clientId);
+            tokenRequest.setAuthPassword(clientSecret);
+            tokenRequest.setAuthenticationMethod(AuthenticationMethod.CLIENT_SECRET_BASIC);
+
+            TokenClient tokenClient = new TokenClient(tokenEndpoint);
+            tokenClient.setRequest(tokenRequest);
+            TokenResponse tokenResponse = tokenClient.exec();
+
+            showClient(tokenClient);
+            assertEquals(tokenResponse.getStatus(), 200, "Unexpected response code: " + tokenResponse.getStatus());
+            assertNotNull(tokenResponse.getEntity(), "The entity is null");
+            assertNotNull(tokenResponse.getAccessToken(), "The access token is null");
+            assertNotNull(tokenResponse.getExpiresIn(), "The expires in value is null");
+            assertNotNull(tokenResponse.getTokenType(), "The token type is null");
+            assertNotNull(tokenResponse.getRefreshToken(), "The refresh token is null");
+        }
+    }
+}
\ No newline at end of file
diff --git a/oxAuth/Client/src/test/java/org/gluu/oxauth/interop/ProvidingIndividuallyRequestedEssentialAndVoluntaryClaims.java b/oxAuth/Client/src/test/java/org/gluu/oxauth/interop/ProvidingIndividuallyRequestedEssentialAndVoluntaryClaims.java
new file mode 100644
index 00000000..f6889dd5
--- /dev/null
+++ b/oxAuth/Client/src/test/java/org/gluu/oxauth/interop/ProvidingIndividuallyRequestedEssentialAndVoluntaryClaims.java
@@ -0,0 +1,154 @@
+/*
+ * oxAuth is available under the MIT License (2008). See http://opensource.org/licenses/MIT for full text.
+ *
+ * Copyright (c) 2014, Gluu
+ */
+
+package org.gluu.oxauth.interop;
+
+import static org.testng.Assert.assertEquals;
+import static org.testng.Assert.assertNotNull;
+import static org.testng.Assert.assertTrue;
+
+import java.util.Arrays;
+import java.util.List;
+import java.util.UUID;
+
+import org.gluu.oxauth.BaseTest;
+import org.gluu.oxauth.client.AuthorizationRequest;
+import org.gluu.oxauth.client.AuthorizationResponse;
+import org.gluu.oxauth.client.AuthorizeClient;
+import org.gluu.oxauth.client.JwkClient;
+import org.gluu.oxauth.client.RegisterClient;
+import org.gluu.oxauth.client.RegisterRequest;
+import org.gluu.oxauth.client.RegisterResponse;
+import org.gluu.oxauth.client.UserInfoClient;
+import org.gluu.oxauth.client.UserInfoResponse;
+import org.gluu.oxauth.client.model.authorize.Claim;
+import org.gluu.oxauth.client.model.authorize.ClaimValue;
+import org.gluu.oxauth.client.model.authorize.JwtAuthorizationRequest;
+import org.gluu.oxauth.model.common.ResponseType;
+import org.gluu.oxauth.model.crypto.OxAuthCryptoProvider;
+import org.gluu.oxauth.model.crypto.signature.RSAPublicKey;
+import org.gluu.oxauth.model.crypto.signature.SignatureAlgorithm;
+import org.gluu.oxauth.model.jws.RSASigner;
+import org.gluu.oxauth.model.jwt.Jwt;
+import org.gluu.oxauth.model.jwt.JwtClaimName;
+import org.gluu.oxauth.model.jwt.JwtHeaderName;
+import org.gluu.oxauth.model.register.ApplicationType;
+import org.gluu.oxauth.model.util.StringUtils;
+import org.testng.annotations.Parameters;
+import org.testng.annotations.Test;
+
+/**
+ * OC5:FeatureTest-Providing Individually Requested Essential and Voluntary Claims
+ *
+ * @author Javier Rojas Blum
+ * @version May 30, 2018
+ */
+public class ProvidingIndividuallyRequestedEssentialAndVoluntaryClaims extends BaseTest {
+
+    @Parameters({"userId", "userSecret", "redirectUri", "redirectUris", "sectorIdentifierUri"})
+    @Test
+    public void providingIndividuallyRequestedEssentialAndVoluntaryClaims(
+            final String userId, final String userSecret, final String redirectUri, final String redirectUris,
+            final String sectorIdentifierUri) throws Exception {
+        showTitle("OC5:FeatureTest-Providing Individually Requested Essential and Voluntary Claims");
+
+        List<ResponseType> responseTypes = Arrays.asList(ResponseType.TOKEN, ResponseType.ID_TOKEN);
+
+        // 1. Register client
+        RegisterRequest registerRequest = new RegisterRequest(ApplicationType.WEB, "oxAuth test app",
+                StringUtils.spaceSeparatedToList(redirectUris));
+        registerRequest.setResponseTypes(responseTypes);
+        registerRequest.setSectorIdentifierUri(sectorIdentifierUri);
+        registerRequest.setClaims(Arrays.asList(
+                JwtClaimName.NAME,
+                JwtClaimName.EMAIL,
+                JwtClaimName.PICTURE));
+
+        RegisterClient registerClient = new RegisterClient(registrationEndpoint);
+        registerClient.setRequest(registerRequest);
+        RegisterResponse registerResponse = registerClient.exec();
+
+        showClient(registerClient);
+        assertEquals(registerResponse.getStatus(), 200, "Unexpected response code: " + registerResponse.getEntity());
+        assertNotNull(registerResponse.getClientId());
+        assertNotNull(registerResponse.getClientSecret());
+        assertNotNull(registerResponse.getRegistrationAccessToken());
+        assertNotNull(registerResponse.getClientIdIssuedAt());
+        assertNotNull(registerResponse.getClientSecretExpiresAt());
+
+        String clientId = registerResponse.getClientId();
+        String clientSecret = registerResponse.getClientSecret();
+
+        // 2. Request authorization
+        OxAuthCryptoProvider cryptoProvider = new OxAuthCryptoProvider();
+
+        List<String> scopes = Arrays.asList("openid");
+        String nonce = UUID.randomUUID().toString();
+        String state = UUID.randomUUID().toString();
+
+        AuthorizationRequest authorizationRequest = new AuthorizationRequest(responseTypes, clientId, scopes, redirectUri, nonce);
+        authorizationRequest.setState(state);
+
+        JwtAuthorizationRequest jwtAuthorizationRequest = new JwtAuthorizationRequest(
+                authorizationRequest, SignatureAlgorithm.HS256, clientSecret, cryptoProvider);
+        jwtAuthorizationRequest.addIdTokenClaim(new Claim(JwtClaimName.NAME, ClaimValue.createEssential(true)));
+        jwtAuthorizationRequest.addIdTokenClaim(new Claim(JwtClaimName.EMAIL, ClaimValue.createNull()));
+        jwtAuthorizationRequest.addIdTokenClaim(new Claim(JwtClaimName.PICTURE, ClaimValue.createNull()));
+        jwtAuthorizationRequest.addUserInfoClaim(new Claim(JwtClaimName.NAME, ClaimValue.createEssential(true)));
+        jwtAuthorizationRequest.addUserInfoClaim(new Claim(JwtClaimName.EMAIL, ClaimValue.createNull()));
+        jwtAuthorizationRequest.addUserInfoClaim(new Claim(JwtClaimName.PICTURE, ClaimValue.createNull()));
+        String authJwt = jwtAuthorizationRequest.getEncodedJwt();
+        authorizationRequest.setRequest(authJwt);
+
+        AuthorizeClient authorizeClient = new AuthorizeClient(authorizationEndpoint);
+        authorizeClient.setRequest(authorizationRequest);
+
+        AuthorizationResponse authorizationResponse = authenticateResourceOwnerAndGrantAccess(
+                authorizationEndpoint, authorizationRequest, userId, userSecret);
+
+        assertNotNull(authorizationResponse.getLocation(), "The location is null");
+        assertNotNull(authorizationResponse.getAccessToken(), "The accessToken is null");
+        assertNotNull(authorizationResponse.getTokenType(), "The tokenType is null");
+        assertNotNull(authorizationResponse.getIdToken(), "The idToken is null");
+        assertNotNull(authorizationResponse.getState(), "The state is null");
+
+        String idToken = authorizationResponse.getIdToken();
+        String accessToken = authorizationResponse.getAccessToken();
+
+        // 3. Validate id_token
+        Jwt jwt = Jwt.parse(idToken);
+        assertNotNull(jwt.getHeader().getClaimAsString(JwtHeaderName.TYPE));
+        assertNotNull(jwt.getHeader().getClaimAsString(JwtHeaderName.ALGORITHM));
+        assertNotNull(jwt.getClaims().getClaimAsString(JwtClaimName.ISSUER));
+        assertNotNull(jwt.getClaims().getClaimAsString(JwtClaimName.AUDIENCE));
+        assertNotNull(jwt.getClaims().getClaimAsString(JwtClaimName.EXPIRATION_TIME));
+        assertNotNull(jwt.getClaims().getClaimAsString(JwtClaimName.ISSUED_AT));
+        assertNotNull(jwt.getClaims().getClaimAsString(JwtClaimName.SUBJECT_IDENTIFIER));
+        assertNotNull(jwt.getClaims().getClaimAsString(JwtClaimName.ACCESS_TOKEN_HASH));
+        assertNotNull(jwt.getClaims().getClaimAsString(JwtClaimName.AUTHENTICATION_TIME));
+        assertNotNull(jwt.getClaims().getClaimAsString(JwtClaimName.NAME));
+        assertNotNull(jwt.getClaims().getClaimAsString(JwtClaimName.EMAIL));
+        assertNotNull(jwt.getClaims().getClaimAsString(JwtClaimName.PICTURE));
+
+        RSAPublicKey publicKey = JwkClient.getRSAPublicKey(
+                jwksUri,
+                jwt.getHeader().getClaimAsString(JwtHeaderName.KEY_ID));
+        RSASigner rsaSigner = new RSASigner(SignatureAlgorithm.RS256, publicKey);
+
+        assertTrue(rsaSigner.validate(jwt));
+
+        // 4. Request user info
+        UserInfoClient userInfoClient = new UserInfoClient(userInfoEndpoint);
+        UserInfoResponse userInfoResponse = userInfoClient.execUserInfo(accessToken);
+
+        showClient(userInfoClient);
+        assertEquals(userInfoResponse.getStatus(), 200, "Unexpected response code: " + userInfoResponse.getStatus());
+        assertNotNull(userInfoResponse.getClaim(JwtClaimName.SUBJECT_IDENTIFIER));
+        assertNotNull(userInfoResponse.getClaim(JwtClaimName.NAME));
+        assertNotNull(userInfoResponse.getClaim(JwtClaimName.EMAIL));
+        assertNotNull(userInfoResponse.getClaim(JwtClaimName.PICTURE));
+    }
+}
\ No newline at end of file
diff --git a/oxAuth/Client/src/test/java/org/gluu/oxauth/interop/ProvidingIndividuallyRequestedEssentialClaims.java b/oxAuth/Client/src/test/java/org/gluu/oxauth/interop/ProvidingIndividuallyRequestedEssentialClaims.java
new file mode 100644
index 00000000..b55b73a5
--- /dev/null
+++ b/oxAuth/Client/src/test/java/org/gluu/oxauth/interop/ProvidingIndividuallyRequestedEssentialClaims.java
@@ -0,0 +1,144 @@
+/*
+ * oxAuth is available under the MIT License (2008). See http://opensource.org/licenses/MIT for full text.
+ *
+ * Copyright (c) 2014, Gluu
+ */
+
+package org.gluu.oxauth.interop;
+
+import static org.testng.Assert.assertEquals;
+import static org.testng.Assert.assertNotNull;
+import static org.testng.Assert.assertTrue;
+
+import java.util.Arrays;
+import java.util.List;
+import java.util.UUID;
+
+import org.gluu.oxauth.BaseTest;
+import org.gluu.oxauth.client.AuthorizationRequest;
+import org.gluu.oxauth.client.AuthorizationResponse;
+import org.gluu.oxauth.client.AuthorizeClient;
+import org.gluu.oxauth.client.JwkClient;
+import org.gluu.oxauth.client.RegisterClient;
+import org.gluu.oxauth.client.RegisterRequest;
+import org.gluu.oxauth.client.RegisterResponse;
+import org.gluu.oxauth.client.UserInfoClient;
+import org.gluu.oxauth.client.UserInfoResponse;
+import org.gluu.oxauth.client.model.authorize.Claim;
+import org.gluu.oxauth.client.model.authorize.ClaimValue;
+import org.gluu.oxauth.client.model.authorize.JwtAuthorizationRequest;
+import org.gluu.oxauth.model.common.ResponseType;
+import org.gluu.oxauth.model.crypto.OxAuthCryptoProvider;
+import org.gluu.oxauth.model.crypto.signature.RSAPublicKey;
+import org.gluu.oxauth.model.crypto.signature.SignatureAlgorithm;
+import org.gluu.oxauth.model.jws.RSASigner;
+import org.gluu.oxauth.model.jwt.Jwt;
+import org.gluu.oxauth.model.jwt.JwtClaimName;
+import org.gluu.oxauth.model.jwt.JwtHeaderName;
+import org.gluu.oxauth.model.register.ApplicationType;
+import org.gluu.oxauth.model.util.StringUtils;
+import org.testng.annotations.Parameters;
+import org.testng.annotations.Test;
+
+/**
+ * OC5:FeatureTest-Providing Individually Requested Essential Claims
+ *
+ * @author Javier Rojas Blum
+ * @version May 30, 2018
+ */
+public class ProvidingIndividuallyRequestedEssentialClaims extends BaseTest {
+
+    @Parameters({"userId", "userSecret", "redirectUri", "redirectUris", "sectorIdentifierUri"})
+    @Test
+    public void providingIndividuallyRequestedEssentialClaims(
+            final String userId, final String userSecret, final String redirectUri, final String redirectUris,
+            final String sectorIdentifierUri) throws Exception {
+        showTitle("OC5:FeatureTest-Providing Individually Requested Essential Claims");
+
+        List<ResponseType> responseTypes = Arrays.asList(ResponseType.TOKEN, ResponseType.ID_TOKEN);
+
+        // 1. Register client
+        RegisterRequest registerRequest = new RegisterRequest(ApplicationType.WEB, "oxAuth test app",
+                StringUtils.spaceSeparatedToList(redirectUris));
+        registerRequest.setResponseTypes(responseTypes);
+        registerRequest.setSectorIdentifierUri(sectorIdentifierUri);
+        registerRequest.setClaims(Arrays.asList(
+                JwtClaimName.NAME));
+
+        RegisterClient registerClient = new RegisterClient(registrationEndpoint);
+        registerClient.setRequest(registerRequest);
+        RegisterResponse registerResponse = registerClient.exec();
+
+        showClient(registerClient);
+        assertEquals(registerResponse.getStatus(), 200, "Unexpected response code: " + registerResponse.getEntity());
+        assertNotNull(registerResponse.getClientId());
+        assertNotNull(registerResponse.getClientSecret());
+        assertNotNull(registerResponse.getRegistrationAccessToken());
+        assertNotNull(registerResponse.getClientIdIssuedAt());
+        assertNotNull(registerResponse.getClientSecretExpiresAt());
+
+        String clientId = registerResponse.getClientId();
+        String clientSecret = registerResponse.getClientSecret();
+
+        // 2. Request authorization
+        OxAuthCryptoProvider cryptoProvider = new OxAuthCryptoProvider();
+
+        List<String> scopes = Arrays.asList("openid");
+        String nonce = UUID.randomUUID().toString();
+        String state = UUID.randomUUID().toString();
+
+        AuthorizationRequest authorizationRequest = new AuthorizationRequest(responseTypes, clientId, scopes, redirectUri, nonce);
+        authorizationRequest.setState(state);
+
+        JwtAuthorizationRequest jwtAuthorizationRequest = new JwtAuthorizationRequest(
+                authorizationRequest, SignatureAlgorithm.HS256, clientSecret, cryptoProvider);
+        jwtAuthorizationRequest.addIdTokenClaim(new Claim(JwtClaimName.NAME, ClaimValue.createEssential(true)));
+        jwtAuthorizationRequest.addUserInfoClaim(new Claim(JwtClaimName.NAME, ClaimValue.createEssential(true)));
+        String authJwt = jwtAuthorizationRequest.getEncodedJwt();
+        authorizationRequest.setRequest(authJwt);
+
+        AuthorizeClient authorizeClient = new AuthorizeClient(authorizationEndpoint);
+        authorizeClient.setRequest(authorizationRequest);
+
+        AuthorizationResponse authorizationResponse = authenticateResourceOwnerAndGrantAccess(
+                authorizationEndpoint, authorizationRequest, userId, userSecret);
+
+        assertNotNull(authorizationResponse.getLocation(), "The location is null");
+        assertNotNull(authorizationResponse.getAccessToken(), "The accessToken is null");
+        assertNotNull(authorizationResponse.getTokenType(), "The tokenType is null");
+        assertNotNull(authorizationResponse.getIdToken(), "The idToken is null");
+        assertNotNull(authorizationResponse.getState(), "The state is null");
+
+        String idToken = authorizationResponse.getIdToken();
+        String accessToken = authorizationResponse.getAccessToken();
+
+        // 3. Validate id_token
+        Jwt jwt = Jwt.parse(idToken);
+        assertNotNull(jwt.getHeader().getClaimAsString(JwtHeaderName.TYPE));
+        assertNotNull(jwt.getHeader().getClaimAsString(JwtHeaderName.ALGORITHM));
+        assertNotNull(jwt.getClaims().getClaimAsString(JwtClaimName.ISSUER));
+        assertNotNull(jwt.getClaims().getClaimAsString(JwtClaimName.AUDIENCE));
+        assertNotNull(jwt.getClaims().getClaimAsString(JwtClaimName.EXPIRATION_TIME));
+        assertNotNull(jwt.getClaims().getClaimAsString(JwtClaimName.ISSUED_AT));
+        assertNotNull(jwt.getClaims().getClaimAsString(JwtClaimName.SUBJECT_IDENTIFIER));
+        assertNotNull(jwt.getClaims().getClaimAsString(JwtClaimName.ACCESS_TOKEN_HASH));
+        assertNotNull(jwt.getClaims().getClaimAsString(JwtClaimName.AUTHENTICATION_TIME));
+        assertNotNull(jwt.getClaims().getClaimAsString(JwtClaimName.NAME));
+
+        RSAPublicKey publicKey = JwkClient.getRSAPublicKey(
+                jwksUri,
+                jwt.getHeader().getClaimAsString(JwtHeaderName.KEY_ID));
+        RSASigner rsaSigner = new RSASigner(SignatureAlgorithm.RS256, publicKey);
+
+        assertTrue(rsaSigner.validate(jwt));
+
+        // 4. Request user info
+        UserInfoClient userInfoClient = new UserInfoClient(userInfoEndpoint);
+        UserInfoResponse userInfoResponse = userInfoClient.execUserInfo(accessToken);
+
+        showClient(userInfoClient);
+        assertEquals(userInfoResponse.getStatus(), 200, "Unexpected response code: " + userInfoResponse.getStatus());
+        assertNotNull(userInfoResponse.getClaim(JwtClaimName.SUBJECT_IDENTIFIER));
+        assertNotNull(userInfoResponse.getClaim(JwtClaimName.NAME));
+    }
+}
\ No newline at end of file
diff --git a/oxAuth/Client/src/test/java/org/gluu/oxauth/interop/ProvidingIndividuallyRequestedVoluntaryClaims.java b/oxAuth/Client/src/test/java/org/gluu/oxauth/interop/ProvidingIndividuallyRequestedVoluntaryClaims.java
new file mode 100644
index 00000000..aae06613
--- /dev/null
+++ b/oxAuth/Client/src/test/java/org/gluu/oxauth/interop/ProvidingIndividuallyRequestedVoluntaryClaims.java
@@ -0,0 +1,148 @@
+/*
+ * oxAuth is available under the MIT License (2008). See http://opensource.org/licenses/MIT for full text.
+ *
+ * Copyright (c) 2014, Gluu
+ */
+
+package org.gluu.oxauth.interop;
+
+import static org.testng.Assert.assertEquals;
+import static org.testng.Assert.assertNotNull;
+import static org.testng.Assert.assertTrue;
+
+import java.util.Arrays;
+import java.util.List;
+import java.util.UUID;
+
+import org.gluu.oxauth.BaseTest;
+import org.gluu.oxauth.client.AuthorizationRequest;
+import org.gluu.oxauth.client.AuthorizationResponse;
+import org.gluu.oxauth.client.AuthorizeClient;
+import org.gluu.oxauth.client.JwkClient;
+import org.gluu.oxauth.client.RegisterClient;
+import org.gluu.oxauth.client.RegisterRequest;
+import org.gluu.oxauth.client.RegisterResponse;
+import org.gluu.oxauth.client.UserInfoClient;
+import org.gluu.oxauth.client.UserInfoResponse;
+import org.gluu.oxauth.client.model.authorize.Claim;
+import org.gluu.oxauth.client.model.authorize.ClaimValue;
+import org.gluu.oxauth.client.model.authorize.JwtAuthorizationRequest;
+import org.gluu.oxauth.model.common.ResponseType;
+import org.gluu.oxauth.model.crypto.OxAuthCryptoProvider;
+import org.gluu.oxauth.model.crypto.signature.RSAPublicKey;
+import org.gluu.oxauth.model.crypto.signature.SignatureAlgorithm;
+import org.gluu.oxauth.model.jws.RSASigner;
+import org.gluu.oxauth.model.jwt.Jwt;
+import org.gluu.oxauth.model.jwt.JwtClaimName;
+import org.gluu.oxauth.model.jwt.JwtHeaderName;
+import org.gluu.oxauth.model.register.ApplicationType;
+import org.gluu.oxauth.model.util.StringUtils;
+import org.testng.annotations.Parameters;
+import org.testng.annotations.Test;
+
+/**
+ * OC5:FeatureTest-Providing Individually Requested Voluntary Claims
+ *
+ * @author Javier Rojas Blum
+ * @version May 30, 2018
+ */
+public class ProvidingIndividuallyRequestedVoluntaryClaims extends BaseTest {
+
+    @Parameters({"userId", "userSecret", "redirectUri", "redirectUris", "sectorIdentifierUri"})
+    @Test
+    public void providingIndividuallyRequestedVoluntaryClaims(
+            final String userId, final String userSecret, final String redirectUri, final String redirectUris,
+            final String sectorIdentifierUri) throws Exception {
+        showTitle("OC5:FeatureTest-Providing Individually Requested Voluntary Claims");
+
+        List<ResponseType> responseTypes = Arrays.asList(ResponseType.TOKEN, ResponseType.ID_TOKEN);
+
+        // 1. Register client
+        RegisterRequest registerRequest = new RegisterRequest(ApplicationType.WEB, "oxAuth test app",
+                StringUtils.spaceSeparatedToList(redirectUris));
+        registerRequest.setResponseTypes(responseTypes);
+        registerRequest.setSectorIdentifierUri(sectorIdentifierUri);
+        registerRequest.setClaims(Arrays.asList(
+                JwtClaimName.EMAIL,
+                JwtClaimName.PICTURE));
+
+        RegisterClient registerClient = new RegisterClient(registrationEndpoint);
+        registerClient.setRequest(registerRequest);
+        RegisterResponse registerResponse = registerClient.exec();
+
+        showClient(registerClient);
+        assertEquals(registerResponse.getStatus(), 200, "Unexpected response code: " + registerResponse.getEntity());
+        assertNotNull(registerResponse.getClientId());
+        assertNotNull(registerResponse.getClientSecret());
+        assertNotNull(registerResponse.getRegistrationAccessToken());
+        assertNotNull(registerResponse.getClientIdIssuedAt());
+        assertNotNull(registerResponse.getClientSecretExpiresAt());
+
+        String clientId = registerResponse.getClientId();
+        String clientSecret = registerResponse.getClientSecret();
+
+        // 2. Request authorization
+        OxAuthCryptoProvider cryptoProvider = new OxAuthCryptoProvider();
+
+        List<String> scopes = Arrays.asList("openid");
+        String nonce = UUID.randomUUID().toString();
+        String state = UUID.randomUUID().toString();
+
+        AuthorizationRequest authorizationRequest = new AuthorizationRequest(responseTypes, clientId, scopes, redirectUri, nonce);
+        authorizationRequest.setState(state);
+
+        JwtAuthorizationRequest jwtAuthorizationRequest = new JwtAuthorizationRequest(authorizationRequest, SignatureAlgorithm.HS256, clientSecret, cryptoProvider);
+        jwtAuthorizationRequest.addIdTokenClaim(new Claim(JwtClaimName.EMAIL, ClaimValue.createNull()));
+        jwtAuthorizationRequest.addIdTokenClaim(new Claim(JwtClaimName.PICTURE, ClaimValue.createNull()));
+        jwtAuthorizationRequest.addUserInfoClaim(new Claim(JwtClaimName.EMAIL, ClaimValue.createNull()));
+        jwtAuthorizationRequest.addUserInfoClaim(new Claim(JwtClaimName.PICTURE, ClaimValue.createNull()));
+        String authJwt = jwtAuthorizationRequest.getEncodedJwt();
+        authorizationRequest.setRequest(authJwt);
+
+        AuthorizeClient authorizeClient = new AuthorizeClient(authorizationEndpoint);
+        authorizeClient.setRequest(authorizationRequest);
+
+        AuthorizationResponse authorizationResponse = authenticateResourceOwnerAndGrantAccess(
+                authorizationEndpoint, authorizationRequest, userId, userSecret);
+
+        assertNotNull(authorizationResponse.getLocation(), "The location is null");
+        assertNotNull(authorizationResponse.getAccessToken(), "The accessToken is null");
+        assertNotNull(authorizationResponse.getTokenType(), "The tokenType is null");
+        assertNotNull(authorizationResponse.getIdToken(), "The idToken is null");
+        assertNotNull(authorizationResponse.getState(), "The state is null");
+
+        String idToken = authorizationResponse.getIdToken();
+        String accessToken = authorizationResponse.getAccessToken();
+
+        // 3. Validate id_token
+        Jwt jwt = Jwt.parse(idToken);
+        assertNotNull(jwt.getHeader().getClaimAsString(JwtHeaderName.TYPE));
+        assertNotNull(jwt.getHeader().getClaimAsString(JwtHeaderName.ALGORITHM));
+        assertNotNull(jwt.getClaims().getClaimAsString(JwtClaimName.ISSUER));
+        assertNotNull(jwt.getClaims().getClaimAsString(JwtClaimName.AUDIENCE));
+        assertNotNull(jwt.getClaims().getClaimAsString(JwtClaimName.EXPIRATION_TIME));
+        assertNotNull(jwt.getClaims().getClaimAsString(JwtClaimName.ISSUED_AT));
+        assertNotNull(jwt.getClaims().getClaimAsString(JwtClaimName.SUBJECT_IDENTIFIER));
+        assertNotNull(jwt.getClaims().getClaimAsString(JwtClaimName.ACCESS_TOKEN_HASH));
+        assertNotNull(jwt.getClaims().getClaimAsString(JwtClaimName.AUTHENTICATION_TIME));
+        assertNotNull(jwt.getClaims().getClaimAsString(JwtClaimName.EMAIL));
+        assertNotNull(jwt.getClaims().getClaimAsString(JwtClaimName.PICTURE));
+
+        RSAPublicKey publicKey = JwkClient.getRSAPublicKey(
+                jwksUri,
+                jwt.getHeader().getClaimAsString(JwtHeaderName.KEY_ID));
+        RSASigner rsaSigner = new RSASigner(SignatureAlgorithm.RS256, publicKey);
+
+        assertTrue(rsaSigner.validate(jwt));
+
+        // 4. Request user info
+        UserInfoClient userInfoClient = new UserInfoClient(userInfoEndpoint);
+        UserInfoResponse userInfoResponse = userInfoClient.execUserInfo(accessToken);
+
+        showClient(userInfoClient);
+        assertEquals(userInfoResponse.getStatus(), 200, "Unexpected response code: " + userInfoResponse.getStatus());
+        assertNotNull(userInfoResponse.getClaim(JwtClaimName.SUBJECT_IDENTIFIER));
+        assertNotNull(userInfoResponse.getClaim(JwtClaimName.EMAIL));
+        assertNotNull(userInfoResponse.getClaim(JwtClaimName.PICTURE));
+    }
+}
\ No newline at end of file
diff --git a/oxAuth/Client/src/test/java/org/gluu/oxauth/interop/PublishOpenIdConfigurationDiscoveryInformation.java b/oxAuth/Client/src/test/java/org/gluu/oxauth/interop/PublishOpenIdConfigurationDiscoveryInformation.java
new file mode 100644
index 00000000..06310edd
--- /dev/null
+++ b/oxAuth/Client/src/test/java/org/gluu/oxauth/interop/PublishOpenIdConfigurationDiscoveryInformation.java
@@ -0,0 +1,35 @@
+/*
+ * oxAuth is available under the MIT License (2008). See http://opensource.org/licenses/MIT for full text.
+ *
+ * Copyright (c) 2014, Gluu
+ */
+
+package org.gluu.oxauth.interop;
+
+import static org.testng.Assert.assertTrue;
+
+import org.apache.commons.lang.StringUtils;
+import org.gluu.oxauth.BaseTest;
+import org.testng.annotations.Test;
+
+/**
+ * OC5:FeatureTest-Publish openid-configuration Discovery Information
+ *
+ * @author Javier Rojas Blum
+ * @version 0.9, 06/09/2014
+ */
+public class PublishOpenIdConfigurationDiscoveryInformation extends BaseTest {
+
+    @Test
+    public void publishOpenIdConfigurationDiscoveryInformation() {
+        showTitle("OC5:FeatureTest-Publish openid-configuration Discovery Information");
+
+        assertTrue(StringUtils.isNotBlank(authorizationEndpoint));
+        assertTrue(StringUtils.isNotBlank(tokenEndpoint));
+        assertTrue(StringUtils.isNotBlank(userInfoEndpoint));
+        assertTrue(StringUtils.isNotBlank(checkSessionIFrame));
+        assertTrue(StringUtils.isNotBlank(endSessionEndpoint));
+        assertTrue(StringUtils.isNotBlank(jwksUri));
+        assertTrue(StringUtils.isNotBlank(registrationEndpoint));
+    }
+}
\ No newline at end of file
diff --git a/oxAuth/Client/src/test/java/org/gluu/oxauth/interop/RejectInvalidAsymmetricIdTokenSignature.java b/oxAuth/Client/src/test/java/org/gluu/oxauth/interop/RejectInvalidAsymmetricIdTokenSignature.java
new file mode 100644
index 00000000..0d76ef25
--- /dev/null
+++ b/oxAuth/Client/src/test/java/org/gluu/oxauth/interop/RejectInvalidAsymmetricIdTokenSignature.java
@@ -0,0 +1,97 @@
+/*
+ * oxAuth is available under the MIT License (2008). See http://opensource.org/licenses/MIT for full text.
+ *
+ * Copyright (c) 2014, Gluu
+ */
+
+package org.gluu.oxauth.interop;
+
+import static org.testng.Assert.assertEquals;
+import static org.testng.Assert.assertFalse;
+import static org.testng.Assert.assertNotNull;
+
+import java.util.Arrays;
+import java.util.List;
+import java.util.UUID;
+
+import org.gluu.oxauth.BaseTest;
+import org.gluu.oxauth.client.AuthorizationRequest;
+import org.gluu.oxauth.client.AuthorizationResponse;
+import org.gluu.oxauth.client.JwkClient;
+import org.gluu.oxauth.client.RegisterClient;
+import org.gluu.oxauth.client.RegisterRequest;
+import org.gluu.oxauth.client.RegisterResponse;
+import org.gluu.oxauth.model.common.ResponseType;
+import org.gluu.oxauth.model.crypto.signature.RSAPublicKey;
+import org.gluu.oxauth.model.crypto.signature.SignatureAlgorithm;
+import org.gluu.oxauth.model.jws.RSASigner;
+import org.gluu.oxauth.model.jwt.Jwt;
+import org.gluu.oxauth.model.jwt.JwtHeaderName;
+import org.gluu.oxauth.model.register.ApplicationType;
+import org.gluu.oxauth.model.util.StringUtils;
+import org.testng.annotations.Parameters;
+import org.testng.annotations.Test;
+
+/**
+ * OC5:FeatureTest-Reject Invalid Asymmetric ID Token Signature
+ *
+ * @author Javier Rojas Blum
+ * @version November 3, 2016
+ */
+public class RejectInvalidAsymmetricIdTokenSignature extends BaseTest {
+
+    @Parameters({"redirectUris", "userId", "userSecret", "redirectUri", "sectorIdentifierUri"})
+    @Test
+    public void rejectInvalidAsymmetricIdTokenSignature(
+            final String redirectUris, final String userId, final String userSecret, final String redirectUri,
+            final String sectorIdentifierUri) throws Exception {
+        showTitle("OC5:FeatureTest-Reject Invalid Asymmetric ID Token Signature");
+
+        List<ResponseType> responseTypes = Arrays.asList(ResponseType.ID_TOKEN);
+
+        // 1. Registration
+        RegisterRequest registerRequest = new RegisterRequest(ApplicationType.WEB, "oxAuth test app",
+                StringUtils.spaceSeparatedToList(redirectUris));
+        registerRequest.setResponseTypes(responseTypes);
+        registerRequest.setIdTokenSignedResponseAlg(SignatureAlgorithm.RS512);
+        registerRequest.setSectorIdentifierUri(sectorIdentifierUri);
+
+        RegisterClient registerClient = new RegisterClient(registrationEndpoint);
+        registerClient.setRequest(registerRequest);
+        RegisterResponse registerResponse = registerClient.exec();
+
+        showClient(registerClient);
+        assertEquals(registerResponse.getStatus(), 200, "Unexpected response code: " + registerResponse.getEntity());
+        assertNotNull(registerResponse.getClientId());
+        assertNotNull(registerResponse.getClientSecret());
+        assertNotNull(registerResponse.getRegistrationAccessToken());
+        assertNotNull(registerResponse.getClientSecretExpiresAt());
+
+        String clientId = registerResponse.getClientId();
+
+        // 2. Request Authorization
+        List<String> scopes = Arrays.asList("openid", "profile", "address", "email");
+        String nonce = UUID.randomUUID().toString();
+        String state = UUID.randomUUID().toString();
+
+        AuthorizationRequest authorizationRequest = new AuthorizationRequest(responseTypes, clientId, scopes, redirectUri, nonce);
+        authorizationRequest.setState(state);
+
+        AuthorizationResponse authorizationResponse = authenticateResourceOwnerAndGrantAccess(
+                authorizationEndpoint, authorizationRequest, userId, userSecret);
+
+        assertNotNull(authorizationResponse.getLocation());
+        assertNotNull(authorizationResponse.getIdToken());
+        assertNotNull(authorizationResponse.getState());
+
+        String idToken = authorizationResponse.getIdToken();
+
+        // 3. Validate id_token
+        Jwt jwt = Jwt.parse(idToken);
+        RSAPublicKey publicKey = JwkClient.getRSAPublicKey(
+                jwksUri,
+                jwt.getHeader().getClaimAsString(JwtHeaderName.KEY_ID));
+        RSASigner rsaSigner = new RSASigner(SignatureAlgorithm.RS256, publicKey);
+        assertFalse(rsaSigner.validate(jwt));
+    }
+}
\ No newline at end of file
diff --git a/oxAuth/Client/src/test/java/org/gluu/oxauth/interop/RejectInvalidSymmetricIdTokenSignature.java b/oxAuth/Client/src/test/java/org/gluu/oxauth/interop/RejectInvalidSymmetricIdTokenSignature.java
new file mode 100644
index 00000000..fd94757c
--- /dev/null
+++ b/oxAuth/Client/src/test/java/org/gluu/oxauth/interop/RejectInvalidSymmetricIdTokenSignature.java
@@ -0,0 +1,92 @@
+/*
+ * oxAuth is available under the MIT License (2008). See http://opensource.org/licenses/MIT for full text.
+ *
+ * Copyright (c) 2014, Gluu
+ */
+
+package org.gluu.oxauth.interop;
+
+import static org.testng.Assert.assertEquals;
+import static org.testng.Assert.assertFalse;
+import static org.testng.Assert.assertNotNull;
+
+import java.util.Arrays;
+import java.util.List;
+import java.util.UUID;
+
+import org.gluu.oxauth.BaseTest;
+import org.gluu.oxauth.client.AuthorizationRequest;
+import org.gluu.oxauth.client.AuthorizationResponse;
+import org.gluu.oxauth.client.RegisterClient;
+import org.gluu.oxauth.client.RegisterRequest;
+import org.gluu.oxauth.client.RegisterResponse;
+import org.gluu.oxauth.model.common.ResponseType;
+import org.gluu.oxauth.model.crypto.signature.SignatureAlgorithm;
+import org.gluu.oxauth.model.jws.HMACSigner;
+import org.gluu.oxauth.model.jwt.Jwt;
+import org.gluu.oxauth.model.register.ApplicationType;
+import org.gluu.oxauth.model.util.StringUtils;
+import org.testng.annotations.Parameters;
+import org.testng.annotations.Test;
+
+/**
+ * OC5:FeatureTest-Reject Invalid Symmetric ID Token Signature
+ *
+ * @author Javier Rojas Blum
+ * @version November 3, 2016
+ */
+public class RejectInvalidSymmetricIdTokenSignature extends BaseTest {
+
+    @Parameters({"redirectUris", "userId", "userSecret", "redirectUri", "sectorIdentifierUri"})
+    @Test
+    public void rejectInvalidSymmetricIdTokenSignature(
+            final String redirectUris, final String userId, final String userSecret, final String redirectUri,
+            final String sectorIdentifierUri) throws Exception {
+        showTitle("OC5:FeatureTest-Reject Invalid Symmetric ID Token Signature");
+
+        List<ResponseType> responseTypes = Arrays.asList(ResponseType.ID_TOKEN);
+
+        // 1. Registration
+        RegisterRequest registerRequest = new RegisterRequest(ApplicationType.WEB, "oxAuth test app",
+                StringUtils.spaceSeparatedToList(redirectUris));
+        registerRequest.setResponseTypes(responseTypes);
+        registerRequest.setIdTokenSignedResponseAlg(SignatureAlgorithm.HS512);
+        registerRequest.setSectorIdentifierUri(sectorIdentifierUri);
+
+        RegisterClient registerClient = new RegisterClient(registrationEndpoint);
+        registerClient.setRequest(registerRequest);
+        RegisterResponse registerResponse = registerClient.exec();
+
+        showClient(registerClient);
+        assertEquals(registerResponse.getStatus(), 200, "Unexpected response code: " + registerResponse.getEntity());
+        assertNotNull(registerResponse.getClientId());
+        assertNotNull(registerResponse.getClientSecret());
+        assertNotNull(registerResponse.getRegistrationAccessToken());
+        assertNotNull(registerResponse.getClientSecretExpiresAt());
+
+        String clientId = registerResponse.getClientId();
+        String clientSecret = registerResponse.getClientSecret();
+
+        // 2. Request Authorization
+        List<String> scopes = Arrays.asList("openid", "profile", "address", "email");
+        String nonce = UUID.randomUUID().toString();
+        String state = UUID.randomUUID().toString();
+
+        AuthorizationRequest authorizationRequest = new AuthorizationRequest(responseTypes, clientId, scopes, redirectUri, nonce);
+        authorizationRequest.setState(state);
+
+        AuthorizationResponse authorizationResponse = authenticateResourceOwnerAndGrantAccess(
+                authorizationEndpoint, authorizationRequest, userId, userSecret);
+
+        assertNotNull(authorizationResponse.getLocation());
+        assertNotNull(authorizationResponse.getIdToken());
+        assertNotNull(authorizationResponse.getState());
+
+        String idToken = authorizationResponse.getIdToken();
+
+        // 3. Validate id_token
+        Jwt jwt = Jwt.parse(idToken);
+        HMACSigner hmacSigner = new HMACSigner(SignatureAlgorithm.HS256, clientSecret);
+        assertFalse(hmacSigner.validate(jwt));
+    }
+}
\ No newline at end of file
diff --git a/oxAuth/Client/src/test/java/org/gluu/oxauth/interop/RejectRedirectUriNotMatchingARegisteredRedirectUri.java b/oxAuth/Client/src/test/java/org/gluu/oxauth/interop/RejectRedirectUriNotMatchingARegisteredRedirectUri.java
new file mode 100644
index 00000000..919b7dd3
--- /dev/null
+++ b/oxAuth/Client/src/test/java/org/gluu/oxauth/interop/RejectRedirectUriNotMatchingARegisteredRedirectUri.java
@@ -0,0 +1,80 @@
+/*
+ * oxAuth is available under the MIT License (2008). See http://opensource.org/licenses/MIT for full text.
+ *
+ * Copyright (c) 2014, Gluu
+ */
+
+package org.gluu.oxauth.interop;
+
+import static org.testng.Assert.assertEquals;
+import static org.testng.Assert.assertNotNull;
+
+import java.util.Arrays;
+import java.util.List;
+import java.util.UUID;
+
+import org.gluu.oxauth.BaseTest;
+import org.gluu.oxauth.client.AuthorizationRequest;
+import org.gluu.oxauth.client.AuthorizationResponse;
+import org.gluu.oxauth.client.AuthorizeClient;
+import org.gluu.oxauth.client.RegisterClient;
+import org.gluu.oxauth.client.RegisterRequest;
+import org.gluu.oxauth.client.RegisterResponse;
+import org.gluu.oxauth.model.common.ResponseType;
+import org.gluu.oxauth.model.register.ApplicationType;
+import org.gluu.oxauth.model.util.StringUtils;
+import org.testng.annotations.Parameters;
+import org.testng.annotations.Test;
+
+/**
+ * OC5:FeatureTest-Reject redirect uri Not Matching a Registered redirect uri
+ *
+ * @author Javier Rojas Blum
+ * @version June 19, 2015
+ */
+public class RejectRedirectUriNotMatchingARegisteredRedirectUri extends BaseTest {
+
+    @Parameters({"redirectUri"})
+    @Test
+    public void rejectRedirectUriNotMatchingARegisteredRedirectUri(final String redirectUri) throws Exception {
+        showTitle("OC5:FeatureTest-Reject redirect uri Not Matching a Registered redirect uri");
+
+        List<ResponseType> responseTypes = Arrays.asList(ResponseType.CODE);
+
+        // 1. Register client
+        RegisterRequest registerRequest = new RegisterRequest(ApplicationType.WEB, "oxAuth test app",
+                StringUtils.spaceSeparatedToList(redirectUri));
+        registerRequest.setResponseTypes(responseTypes);
+
+        RegisterClient registerClient = new RegisterClient(registrationEndpoint);
+        registerClient.setRequest(registerRequest);
+        RegisterResponse registerResponse = registerClient.exec();
+
+        showClient(registerClient);
+        assertEquals(registerResponse.getStatus(), 200, "Unexpected response code: " + registerResponse.getEntity());
+        assertNotNull(registerResponse.getClientId());
+        assertNotNull(registerResponse.getClientSecret());
+        assertNotNull(registerResponse.getRegistrationAccessToken());
+        assertNotNull(registerResponse.getClientIdIssuedAt());
+        assertNotNull(registerResponse.getClientSecretExpiresAt());
+
+        String clientId = registerResponse.getClientId();
+
+        // 2. Request authorization and receive the authorization code.
+        List<String> scopes = Arrays.asList("openid", "profile", "address", "email");
+        String state = UUID.randomUUID().toString();
+
+        AuthorizationRequest authorizationRequest = new AuthorizationRequest(responseTypes, clientId, scopes,
+                "https://wrong_redirect_uri", null);
+        authorizationRequest.setState(state);
+
+        AuthorizeClient authorizeClient = new AuthorizeClient(authorizationEndpoint);
+        authorizeClient.setRequest(authorizationRequest);
+        AuthorizationResponse authorizationResponse = authorizeClient.exec();
+
+        showClient(authorizeClient);
+        assertEquals(authorizationResponse.getStatus(), 400, "Unexpected response code: " + authorizationResponse.getStatus());
+        assertNotNull(authorizationResponse.getErrorType(), "The error type is null");
+        assertNotNull(authorizationResponse.getErrorDescription(), "The error description is null");
+    }
+}
\ No newline at end of file
diff --git a/oxAuth/Client/src/test/java/org/gluu/oxauth/interop/RejectRegistrationOfRedirectUriWithFragment.java b/oxAuth/Client/src/test/java/org/gluu/oxauth/interop/RejectRegistrationOfRedirectUriWithFragment.java
new file mode 100644
index 00000000..84e28ed0
--- /dev/null
+++ b/oxAuth/Client/src/test/java/org/gluu/oxauth/interop/RejectRegistrationOfRedirectUriWithFragment.java
@@ -0,0 +1,53 @@
+/*
+ * oxAuth is available under the MIT License (2008). See http://opensource.org/licenses/MIT for full text.
+ *
+ * Copyright (c) 2014, Gluu
+ */
+
+package org.gluu.oxauth.interop;
+
+import static org.testng.Assert.assertEquals;
+import static org.testng.Assert.assertNotNull;
+
+import java.util.Arrays;
+import java.util.List;
+
+import org.gluu.oxauth.BaseTest;
+import org.gluu.oxauth.client.RegisterClient;
+import org.gluu.oxauth.client.RegisterRequest;
+import org.gluu.oxauth.client.RegisterResponse;
+import org.gluu.oxauth.model.common.ResponseType;
+import org.gluu.oxauth.model.register.ApplicationType;
+import org.gluu.oxauth.model.util.StringUtils;
+import org.testng.annotations.Parameters;
+import org.testng.annotations.Test;
+
+/**
+ * OC5:FeatureTest-Reject Registration of redirect uri with Fragment
+ *
+ * @author Javier Rojas Blum Date: 08.13.2013
+ */
+public class RejectRegistrationOfRedirectUriWithFragment extends BaseTest {
+
+    @Parameters({"redirectUri"})
+    @Test
+    public void rejectRegistrationOfRedirectUriWithFragment(final String redirectUri) throws Exception {
+        showTitle("OC5:FeatureTest-Reject Registration of redirect uri with Fragment");
+
+        List<ResponseType> responseTypes = Arrays.asList(ResponseType.CODE);
+
+        // 1. Register client
+        RegisterRequest registerRequest = new RegisterRequest(ApplicationType.WEB, "oxAuth test app",
+                StringUtils.spaceSeparatedToList(redirectUri + "#foo1=bar"));
+        registerRequest.setResponseTypes(responseTypes);
+
+        RegisterClient registerClient = new RegisterClient(registrationEndpoint);
+        registerClient.setRequest(registerRequest);
+        RegisterResponse registerResponse = registerClient.exec();
+
+        showClient(registerClient);
+        assertEquals(registerResponse.getStatus(), 400, "Unexpected response code: " + registerResponse.getStatus());
+        assertNotNull(registerResponse.getErrorType(), "The error type is null");
+        assertNotNull(registerResponse.getErrorDescription(), "The error description is null");
+    }
+}
\ No newline at end of file
diff --git a/oxAuth/Client/src/test/java/org/gluu/oxauth/interop/RejectRequestWithoutRedirectUriWhenMultipleRegistered.java b/oxAuth/Client/src/test/java/org/gluu/oxauth/interop/RejectRequestWithoutRedirectUriWhenMultipleRegistered.java
new file mode 100644
index 00000000..d5f5009e
--- /dev/null
+++ b/oxAuth/Client/src/test/java/org/gluu/oxauth/interop/RejectRequestWithoutRedirectUriWhenMultipleRegistered.java
@@ -0,0 +1,83 @@
+/*
+ * oxAuth is available under the MIT License (2008). See http://opensource.org/licenses/MIT for full text.
+ *
+ * Copyright (c) 2014, Gluu
+ */
+
+package org.gluu.oxauth.interop;
+
+import static org.testng.Assert.assertEquals;
+import static org.testng.Assert.assertNotNull;
+
+import java.util.Arrays;
+import java.util.List;
+import java.util.UUID;
+
+import org.gluu.oxauth.BaseTest;
+import org.gluu.oxauth.client.AuthorizationRequest;
+import org.gluu.oxauth.client.AuthorizationResponse;
+import org.gluu.oxauth.client.AuthorizeClient;
+import org.gluu.oxauth.client.RegisterClient;
+import org.gluu.oxauth.client.RegisterRequest;
+import org.gluu.oxauth.client.RegisterResponse;
+import org.gluu.oxauth.model.common.ResponseType;
+import org.gluu.oxauth.model.register.ApplicationType;
+import org.gluu.oxauth.model.util.StringUtils;
+import org.testng.annotations.Parameters;
+import org.testng.annotations.Test;
+
+/**
+ * OC5:FeatureTest-Reject Request Without redirect uri when Multiple Registered
+ *
+ * @author Javier Rojas Blum
+ * @version November 3, 2016
+ */
+public class RejectRequestWithoutRedirectUriWhenMultipleRegistered extends BaseTest {
+
+    @Parameters({"userId", "userSecret", "redirectUris", "sectorIdentifierUri"})
+    @Test
+    public void rejectRequestWithoutRedirectUriWhenMultipleRegistered(
+            final String userId, final String userSecret, final String redirectUris, final String sectorIdentifierUri) throws Exception {
+        showTitle("OC5:FeatureTest-Reject Request Without redirect uri when Multiple Registered");
+
+        List<ResponseType> responseTypes = Arrays.asList(ResponseType.CODE);
+
+        // 1. Register client
+        RegisterRequest registerRequest = new RegisterRequest(ApplicationType.WEB, "oxAuth test app",
+                StringUtils.spaceSeparatedToList(redirectUris));
+        registerRequest.setResponseTypes(responseTypes);
+        registerRequest.setSectorIdentifierUri(sectorIdentifierUri);
+
+        RegisterClient registerClient = new RegisterClient(registrationEndpoint);
+        registerClient.setRequest(registerRequest);
+        RegisterResponse registerResponse = registerClient.exec();
+
+        showClient(registerClient);
+        assertEquals(registerResponse.getStatus(), 200, "Unexpected response code: " + registerResponse.getEntity());
+        assertNotNull(registerResponse.getClientId());
+        assertNotNull(registerResponse.getClientSecret());
+        assertNotNull(registerResponse.getRegistrationAccessToken());
+        assertNotNull(registerResponse.getClientIdIssuedAt());
+        assertNotNull(registerResponse.getClientSecretExpiresAt());
+
+        String clientId = registerResponse.getClientId();
+
+        // 2. Request authorization and receive the authorization code.
+        List<String> scopes = Arrays.asList("openid", "profile", "address", "email");
+        String state = UUID.randomUUID().toString();
+
+        AuthorizationRequest authorizationRequest = new AuthorizationRequest(responseTypes, clientId, scopes, null, null);
+        authorizationRequest.setAuthUsername(userId);
+        authorizationRequest.setAuthPassword(userSecret);
+        authorizationRequest.setState(state);
+
+        AuthorizeClient authorizeClient = new AuthorizeClient(authorizationEndpoint);
+        authorizeClient.setRequest(authorizationRequest);
+        AuthorizationResponse authorizationResponse = authorizeClient.exec();
+
+        showClient(authorizeClient);
+        assertEquals(authorizationResponse.getStatus(), 400, "Unexpected response code: " + authorizationResponse.getStatus());
+        assertNotNull(authorizationResponse.getErrorType(), "The error type is null");
+        assertNotNull(authorizationResponse.getErrorDescription(), "The error description is null");
+    }
+}
\ No newline at end of file
diff --git a/oxAuth/Client/src/test/java/org/gluu/oxauth/interop/RejectRequestWithoutResponseType.java b/oxAuth/Client/src/test/java/org/gluu/oxauth/interop/RejectRequestWithoutResponseType.java
new file mode 100644
index 00000000..b10bc970
--- /dev/null
+++ b/oxAuth/Client/src/test/java/org/gluu/oxauth/interop/RejectRequestWithoutResponseType.java
@@ -0,0 +1,44 @@
+/*
+ * oxAuth is available under the MIT License (2008). See http://opensource.org/licenses/MIT for full text.
+ *
+ * Copyright (c) 2014, Gluu
+ */
+
+package org.gluu.oxauth.interop;
+
+import static org.testng.Assert.assertEquals;
+import static org.testng.Assert.assertNotNull;
+
+import org.gluu.oxauth.BaseTest;
+import org.gluu.oxauth.client.AuthorizationRequest;
+import org.gluu.oxauth.client.AuthorizationResponse;
+import org.gluu.oxauth.client.AuthorizeClient;
+import org.testng.annotations.Parameters;
+import org.testng.annotations.Test;
+
+/**
+ * OC5:FeatureTest-Reject Request Without response type
+ *
+ * @author Javier Rojas Blum Date: 07.31.2013
+ */
+public class RejectRequestWithoutResponseType extends BaseTest {
+
+    @Parameters({"userId", "userSecret"})
+    @Test
+    public void rejectRequestWithoutResponseType(final String userId, final String userSecret) throws Exception {
+        showTitle("OC5:FeatureTest-Reject Request Without response type");
+
+        AuthorizationRequest authorizationRequest = new AuthorizationRequest(null, null, null, null, null);
+        authorizationRequest.setAuthUsername(userId);
+        authorizationRequest.setAuthPassword(userSecret);
+
+        AuthorizeClient authorizeClient = new AuthorizeClient(authorizationEndpoint);
+        authorizeClient.setRequest(authorizationRequest);
+        AuthorizationResponse authorizationResponse = authorizeClient.exec();
+
+        showClient(authorizeClient);
+        assertEquals(authorizationResponse.getStatus(), 400, "Unexpected response code: " + authorizationResponse.getStatus());
+        assertNotNull(authorizationResponse.getErrorType(), "The error type is null");
+        assertNotNull(authorizationResponse.getErrorDescription(), "The error description is null");
+    }
+}
\ No newline at end of file
diff --git a/oxAuth/Client/src/test/java/org/gluu/oxauth/interop/RejectRequestsWithoutNonceUsingImplicitFlow.java b/oxAuth/Client/src/test/java/org/gluu/oxauth/interop/RejectRequestsWithoutNonceUsingImplicitFlow.java
new file mode 100644
index 00000000..2201a237
--- /dev/null
+++ b/oxAuth/Client/src/test/java/org/gluu/oxauth/interop/RejectRequestsWithoutNonceUsingImplicitFlow.java
@@ -0,0 +1,86 @@
+/*
+ * oxAuth is available under the MIT License (2008). See http://opensource.org/licenses/MIT for full text.
+ *
+ * Copyright (c) 2014, Gluu
+ */
+
+package org.gluu.oxauth.interop;
+
+import static org.testng.Assert.assertEquals;
+import static org.testng.Assert.assertNotNull;
+
+import java.util.Arrays;
+import java.util.List;
+import java.util.UUID;
+
+import org.gluu.oxauth.BaseTest;
+import org.gluu.oxauth.client.AuthorizationRequest;
+import org.gluu.oxauth.client.AuthorizationResponse;
+import org.gluu.oxauth.client.AuthorizeClient;
+import org.gluu.oxauth.client.RegisterClient;
+import org.gluu.oxauth.client.RegisterRequest;
+import org.gluu.oxauth.client.RegisterResponse;
+import org.gluu.oxauth.model.common.ResponseType;
+import org.gluu.oxauth.model.register.ApplicationType;
+import org.gluu.oxauth.model.util.StringUtils;
+import org.testng.annotations.Parameters;
+import org.testng.annotations.Test;
+
+/**
+ * OC5:FeatureTest-Reject Requests Without nonce Using Implicit Flow
+ *
+ * @author Javier Rojas Blum
+ * @version November 3, 2016
+ */
+public class RejectRequestsWithoutNonceUsingImplicitFlow extends BaseTest {
+
+    @Parameters({"userId", "userSecret", "redirectUris", "redirectUri", "sectorIdentifierUri"})
+    @Test
+    public void rejectRequestsWithoutNonceUsingImplicitFlow(
+            final String userId, final String userSecret, final String redirectUris, final String redirectUri,
+            final String sectorIdentifierUri) throws Exception {
+        showTitle("OC5:FeatureTest-Reject Requests Without nonce Using Implicit Flow");
+
+        List<ResponseType> responseTypes = Arrays.asList(
+                ResponseType.TOKEN,
+                ResponseType.ID_TOKEN);
+
+        // 1. Register client
+        RegisterRequest registerRequest = new RegisterRequest(ApplicationType.WEB, "oxAuth test app",
+                StringUtils.spaceSeparatedToList(redirectUris));
+        registerRequest.setResponseTypes(responseTypes);
+        registerRequest.setSectorIdentifierUri(sectorIdentifierUri);
+
+        RegisterClient registerClient = new RegisterClient(registrationEndpoint);
+        registerClient.setRequest(registerRequest);
+        RegisterResponse registerResponse = registerClient.exec();
+
+        showClient(registerClient);
+        assertEquals(registerResponse.getStatus(), 200, "Unexpected response code: " + registerResponse.getEntity());
+        assertNotNull(registerResponse.getClientId());
+        assertNotNull(registerResponse.getClientSecret());
+        assertNotNull(registerResponse.getRegistrationAccessToken());
+        assertNotNull(registerResponse.getClientIdIssuedAt());
+        assertNotNull(registerResponse.getClientSecretExpiresAt());
+
+        String clientId = registerResponse.getClientId();
+
+        // 2. Request authorization and receive the authorization code.
+        List<String> scopes = Arrays.asList("openid", "profile", "address", "email");
+        String state = UUID.randomUUID().toString();
+
+        AuthorizationRequest authorizationRequest = new AuthorizationRequest(responseTypes, clientId, scopes, redirectUri, null);
+        authorizationRequest.setAuthUsername(userId);
+        authorizationRequest.setAuthPassword(userSecret);
+        authorizationRequest.setState(state);
+
+        AuthorizeClient authorizeClient = new AuthorizeClient(authorizationEndpoint);
+        authorizeClient.setRequest(authorizationRequest);
+        AuthorizationResponse authorizationResponse = authorizeClient.exec();
+
+        showClient(authorizeClient);
+        assertEquals(authorizationResponse.getStatus(), 302, "Unexpected response code: " + authorizationResponse.getStatus());
+        assertNotNull(authorizationResponse.getErrorType(), "The error type is null");
+        assertNotNull(authorizationResponse.getErrorDescription(), "The error description is null");
+    }
+}
\ No newline at end of file
diff --git a/oxAuth/Client/src/test/java/org/gluu/oxauth/interop/RejectsIncorrectAtHashWhenImplicitFlowUsed.java b/oxAuth/Client/src/test/java/org/gluu/oxauth/interop/RejectsIncorrectAtHashWhenImplicitFlowUsed.java
new file mode 100644
index 00000000..3d023cb1
--- /dev/null
+++ b/oxAuth/Client/src/test/java/org/gluu/oxauth/interop/RejectsIncorrectAtHashWhenImplicitFlowUsed.java
@@ -0,0 +1,118 @@
+/*
+ * oxAuth is available under the MIT License (2008). See http://opensource.org/licenses/MIT for full text.
+ *
+ * Copyright (c) 2014, Gluu
+ */
+
+package org.gluu.oxauth.interop;
+
+import static org.testng.Assert.assertEquals;
+import static org.testng.Assert.assertFalse;
+import static org.testng.Assert.assertNotNull;
+import static org.testng.Assert.assertTrue;
+
+import java.util.Arrays;
+import java.util.List;
+import java.util.UUID;
+
+import org.gluu.oxauth.BaseTest;
+import org.gluu.oxauth.client.AuthorizationRequest;
+import org.gluu.oxauth.client.AuthorizationResponse;
+import org.gluu.oxauth.client.JwkClient;
+import org.gluu.oxauth.client.RegisterClient;
+import org.gluu.oxauth.client.RegisterRequest;
+import org.gluu.oxauth.client.RegisterResponse;
+import org.gluu.oxauth.model.common.ResponseType;
+import org.gluu.oxauth.model.crypto.signature.RSAPublicKey;
+import org.gluu.oxauth.model.crypto.signature.SignatureAlgorithm;
+import org.gluu.oxauth.model.jws.RSASigner;
+import org.gluu.oxauth.model.jwt.Jwt;
+import org.gluu.oxauth.model.jwt.JwtClaimName;
+import org.gluu.oxauth.model.jwt.JwtHeaderName;
+import org.gluu.oxauth.model.register.ApplicationType;
+import org.gluu.oxauth.model.util.StringUtils;
+import org.testng.annotations.Parameters;
+import org.testng.annotations.Test;
+
+/**
+ * OC5:FeatureTest-Rejects Incorrect at hash when Implicit Flow Used
+ *
+ * @author Javier Rojas Blum
+ * @version November 3, 2016
+ */
+public class RejectsIncorrectAtHashWhenImplicitFlowUsed extends BaseTest {
+
+    @Parameters({"userId", "userSecret", "redirectUris", "redirectUri", "sectorIdentifierUri"})
+    @Test
+    public void rejectsIncorrectAtHashWhenImplicitFlowUsed(
+            final String userId, final String userSecret, final String redirectUris, final String redirectUri,
+            final String sectorIdentifierUri) throws Exception {
+        showTitle("OC5:FeatureTest-Rejects Incorrect at hash when Implicit Flow Used");
+
+        List<ResponseType> responseTypes = Arrays.asList(
+                ResponseType.TOKEN,
+                ResponseType.ID_TOKEN);
+
+        // 1. Register client
+        RegisterRequest registerRequest = new RegisterRequest(ApplicationType.WEB, "oxAuth test app",
+                StringUtils.spaceSeparatedToList(redirectUris));
+        registerRequest.setResponseTypes(responseTypes);
+        registerRequest.setSectorIdentifierUri(sectorIdentifierUri);
+
+        RegisterClient registerClient = new RegisterClient(registrationEndpoint);
+        registerClient.setRequest(registerRequest);
+        RegisterResponse registerResponse = registerClient.exec();
+
+        showClient(registerClient);
+        assertEquals(registerResponse.getStatus(), 200, "Unexpected response code: " + registerResponse.getEntity());
+        assertNotNull(registerResponse.getClientId());
+        assertNotNull(registerResponse.getClientSecret());
+        assertNotNull(registerResponse.getRegistrationAccessToken());
+        assertNotNull(registerResponse.getClientIdIssuedAt());
+        assertNotNull(registerResponse.getClientSecretExpiresAt());
+
+        String clientId = registerResponse.getClientId();
+
+        // 2. Request authorization
+        List<String> scopes = Arrays.asList("openid", "profile", "address", "email");
+        String nonce = UUID.randomUUID().toString();
+        String state = UUID.randomUUID().toString();
+
+        AuthorizationRequest authorizationRequest = new AuthorizationRequest(responseTypes, clientId, scopes, redirectUri, nonce);
+        authorizationRequest.setState(state);
+
+        AuthorizationResponse authorizationResponse = authenticateResourceOwnerAndGrantAccess(
+                authorizationEndpoint, authorizationRequest, userId, userSecret);
+
+        assertNotNull(authorizationResponse.getLocation());
+        assertNotNull(authorizationResponse.getAccessToken());
+        assertNotNull(authorizationResponse.getTokenType());
+        assertNotNull(authorizationResponse.getIdToken());
+        assertNotNull(authorizationResponse.getState());
+
+        String accessToken = authorizationResponse.getAccessToken();
+        String idToken = authorizationResponse.getIdToken();
+
+        // 3. Validate access_token and id_token
+        Jwt jwt = Jwt.parse(idToken);
+        assertNotNull(jwt.getHeader().getClaimAsString(JwtHeaderName.TYPE));
+        assertNotNull(jwt.getHeader().getClaimAsString(JwtHeaderName.ALGORITHM));
+        assertNotNull(jwt.getClaims().getClaimAsString(JwtClaimName.ISSUER));
+        assertNotNull(jwt.getClaims().getClaimAsString(JwtClaimName.AUDIENCE));
+        assertNotNull(jwt.getClaims().getClaimAsString(JwtClaimName.EXPIRATION_TIME));
+        assertNotNull(jwt.getClaims().getClaimAsString(JwtClaimName.ISSUED_AT));
+        assertNotNull(jwt.getClaims().getClaimAsString(JwtClaimName.SUBJECT_IDENTIFIER));
+        assertNotNull(jwt.getClaims().getClaimAsString(JwtClaimName.ACCESS_TOKEN_HASH));
+        assertNotNull(jwt.getClaims().getClaimAsString(JwtClaimName.AUTHENTICATION_TIME));
+
+        jwt.getClaims().setClaim(JwtClaimName.ACCESS_TOKEN_HASH, "INCORRECT_AT_HASH");
+
+        RSAPublicKey publicKey = JwkClient.getRSAPublicKey(
+                jwksUri,
+                jwt.getHeader().getClaimAsString(JwtHeaderName.KEY_ID));
+        RSASigner rsaSigner = new RSASigner(SignatureAlgorithm.RS256, publicKey);
+
+        assertTrue(rsaSigner.validate(jwt));
+        assertFalse(rsaSigner.validateAccessToken(accessToken, jwt));
+    }
+}
\ No newline at end of file
diff --git a/oxAuth/Client/src/test/java/org/gluu/oxauth/interop/RejectsIncorrectCHashWhenCodeFlowUsed.java b/oxAuth/Client/src/test/java/org/gluu/oxauth/interop/RejectsIncorrectCHashWhenCodeFlowUsed.java
new file mode 100644
index 00000000..6c958ce6
--- /dev/null
+++ b/oxAuth/Client/src/test/java/org/gluu/oxauth/interop/RejectsIncorrectCHashWhenCodeFlowUsed.java
@@ -0,0 +1,117 @@
+/*
+ * oxAuth is available under the MIT License (2008). See http://opensource.org/licenses/MIT for full text.
+ *
+ * Copyright (c) 2014, Gluu
+ */
+
+package org.gluu.oxauth.interop;
+
+import static org.testng.Assert.assertEquals;
+import static org.testng.Assert.assertFalse;
+import static org.testng.Assert.assertNotNull;
+import static org.testng.Assert.assertTrue;
+
+import java.util.Arrays;
+import java.util.List;
+import java.util.UUID;
+
+import org.gluu.oxauth.BaseTest;
+import org.gluu.oxauth.client.AuthorizationRequest;
+import org.gluu.oxauth.client.AuthorizationResponse;
+import org.gluu.oxauth.client.JwkClient;
+import org.gluu.oxauth.client.RegisterClient;
+import org.gluu.oxauth.client.RegisterRequest;
+import org.gluu.oxauth.client.RegisterResponse;
+import org.gluu.oxauth.model.common.ResponseType;
+import org.gluu.oxauth.model.crypto.signature.RSAPublicKey;
+import org.gluu.oxauth.model.crypto.signature.SignatureAlgorithm;
+import org.gluu.oxauth.model.jws.RSASigner;
+import org.gluu.oxauth.model.jwt.Jwt;
+import org.gluu.oxauth.model.jwt.JwtClaimName;
+import org.gluu.oxauth.model.jwt.JwtHeaderName;
+import org.gluu.oxauth.model.register.ApplicationType;
+import org.gluu.oxauth.model.util.StringUtils;
+import org.testng.annotations.Parameters;
+import org.testng.annotations.Test;
+
+/**
+ * OC5:FeatureTest-Rejects Incorrect c hash when Code Flow Used
+ *
+ * @author Javier Rojas Blum
+ * @version November 3, 2016
+ */
+public class RejectsIncorrectCHashWhenCodeFlowUsed extends BaseTest {
+
+    @Parameters({"userId", "userSecret", "redirectUris", "redirectUri", "sectorIdentifierUri"})
+    @Test
+    public void rejectsIncorrectCHashWhenCodeFlowUsed(
+            final String userId, final String userSecret, final String redirectUris, final String redirectUri,
+            final String sectorIdentifierUri) throws Exception {
+        showTitle("OC5:FeatureTest-Rejects Incorrect c hash when Code Flow Used");
+
+        List<ResponseType> responseTypes = Arrays.asList(
+                ResponseType.CODE,
+                ResponseType.ID_TOKEN);
+
+        // 1. Register client
+        RegisterRequest registerRequest = new RegisterRequest(ApplicationType.WEB, "oxAuth test app",
+                StringUtils.spaceSeparatedToList(redirectUris));
+        registerRequest.setResponseTypes(responseTypes);
+        registerRequest.setSectorIdentifierUri(sectorIdentifierUri);
+
+        RegisterClient registerClient = new RegisterClient(registrationEndpoint);
+        registerClient.setRequest(registerRequest);
+        RegisterResponse registerResponse = registerClient.exec();
+
+        showClient(registerClient);
+        assertEquals(registerResponse.getStatus(), 200, "Unexpected response code: " + registerResponse.getEntity());
+        assertNotNull(registerResponse.getClientId());
+        assertNotNull(registerResponse.getClientSecret());
+        assertNotNull(registerResponse.getRegistrationAccessToken());
+        assertNotNull(registerResponse.getClientIdIssuedAt());
+        assertNotNull(registerResponse.getClientSecretExpiresAt());
+
+        String clientId = registerResponse.getClientId();
+
+        // 2. Request authorization
+        List<String> scopes = Arrays.asList("openid", "profile", "address", "email");
+        String state = UUID.randomUUID().toString();
+        String nonce = UUID.randomUUID().toString();
+
+        AuthorizationRequest authorizationRequest = new AuthorizationRequest(responseTypes, clientId, scopes, redirectUri, nonce);
+        authorizationRequest.setState(state);
+
+        AuthorizationResponse authorizationResponse = authenticateResourceOwnerAndGrantAccess(
+                authorizationEndpoint, authorizationRequest, userId, userSecret);
+
+        assertNotNull(authorizationResponse.getLocation(), "The location is null");
+        assertNotNull(authorizationResponse.getCode(), "The code is null");
+        assertNotNull(authorizationResponse.getIdToken(), "The idToken is null");
+        assertNotNull(authorizationResponse.getState(), "The state is null");
+
+        String code = authorizationResponse.getCode();
+        String idToken = authorizationResponse.getIdToken();
+
+        // 3. Validate code and id_token
+        Jwt jwt = Jwt.parse(idToken);
+        assertNotNull(jwt.getHeader().getClaimAsString(JwtHeaderName.TYPE));
+        assertNotNull(jwt.getHeader().getClaimAsString(JwtHeaderName.ALGORITHM));
+        assertNotNull(jwt.getClaims().getClaimAsString(JwtClaimName.ISSUER));
+        assertNotNull(jwt.getClaims().getClaimAsString(JwtClaimName.AUDIENCE));
+        assertNotNull(jwt.getClaims().getClaimAsString(JwtClaimName.EXPIRATION_TIME));
+        assertNotNull(jwt.getClaims().getClaimAsString(JwtClaimName.ISSUED_AT));
+        assertNotNull(jwt.getClaims().getClaimAsString(JwtClaimName.SUBJECT_IDENTIFIER));
+        assertNotNull(jwt.getClaims().getClaimAsString(JwtClaimName.CODE_HASH));
+        assertNotNull(jwt.getClaims().getClaimAsString(JwtClaimName.AUTHENTICATION_TIME));
+
+        jwt.getClaims().setClaim(JwtClaimName.CODE_HASH, "INCORRECT_C_HASH");
+
+        RSAPublicKey publicKey = JwkClient.getRSAPublicKey(
+                jwksUri,
+                jwt.getHeader().getClaimAsString(JwtHeaderName.KEY_ID));
+        RSASigner rsaSigner = new RSASigner(SignatureAlgorithm.RS256, publicKey);
+
+        assertTrue(rsaSigner.validate(jwt));
+        assertFalse(rsaSigner.validateAuthorizationCode(code, jwt));
+    }
+}
\ No newline at end of file
diff --git a/oxAuth/Client/src/test/java/org/gluu/oxauth/interop/RejectsRedirectUriWhenQueryParameterDoesNotMatch.java b/oxAuth/Client/src/test/java/org/gluu/oxauth/interop/RejectsRedirectUriWhenQueryParameterDoesNotMatch.java
new file mode 100644
index 00000000..ae0a7830
--- /dev/null
+++ b/oxAuth/Client/src/test/java/org/gluu/oxauth/interop/RejectsRedirectUriWhenQueryParameterDoesNotMatch.java
@@ -0,0 +1,83 @@
+/*
+ * oxAuth is available under the MIT License (2008). See http://opensource.org/licenses/MIT for full text.
+ *
+ * Copyright (c) 2014, Gluu
+ */
+
+package org.gluu.oxauth.interop;
+
+import static org.testng.Assert.assertEquals;
+import static org.testng.Assert.assertNotNull;
+
+import java.util.Arrays;
+import java.util.List;
+import java.util.UUID;
+
+import org.gluu.oxauth.BaseTest;
+import org.gluu.oxauth.client.AuthorizationRequest;
+import org.gluu.oxauth.client.AuthorizationResponse;
+import org.gluu.oxauth.client.AuthorizeClient;
+import org.gluu.oxauth.client.RegisterClient;
+import org.gluu.oxauth.client.RegisterRequest;
+import org.gluu.oxauth.client.RegisterResponse;
+import org.gluu.oxauth.model.common.ResponseType;
+import org.gluu.oxauth.model.register.ApplicationType;
+import org.gluu.oxauth.model.util.StringUtils;
+import org.testng.annotations.Parameters;
+import org.testng.annotations.Test;
+
+/**
+ * OC5:FeatureTest-Rejects redirect uri when Query Parameter Does Not Match
+ *
+ * @author Javier Rojas Blum
+ * @version June 19, 2015
+ */
+public class RejectsRedirectUriWhenQueryParameterDoesNotMatch extends BaseTest {
+
+    @Parameters({"userId", "userSecret", "redirectUri"})
+    @Test
+    public void rejectsRedirectUriWhenQueryParameterDoesNotMatch(final String userId, final String userSecret,
+                                                                 final String redirectUri) throws Exception {
+        showTitle("OC5:FeatureTest-Rejects redirect uri when Query Parameter Does Not Match");
+
+        List<ResponseType> responseTypes = Arrays.asList(ResponseType.CODE);
+
+        // 1. Register client
+        RegisterRequest registerRequest = new RegisterRequest(ApplicationType.WEB, "oxAuth test app",
+                StringUtils.spaceSeparatedToList(redirectUri + "?foo1=bar"));
+        registerRequest.setResponseTypes(responseTypes);
+
+        RegisterClient registerClient = new RegisterClient(registrationEndpoint);
+        registerClient.setRequest(registerRequest);
+        RegisterResponse registerResponse = registerClient.exec();
+
+        showClient(registerClient);
+        assertEquals(registerResponse.getStatus(), 200, "Unexpected response code: " + registerResponse.getEntity());
+        assertNotNull(registerResponse.getClientId());
+        assertNotNull(registerResponse.getClientSecret());
+        assertNotNull(registerResponse.getRegistrationAccessToken());
+        assertNotNull(registerResponse.getClientIdIssuedAt());
+        assertNotNull(registerResponse.getClientSecretExpiresAt());
+
+        String clientId = registerResponse.getClientId();
+
+        // 2. Request authorization and receive the authorization code.
+        List<String> scopes = Arrays.asList("openid", "profile", "address", "email");
+        String state = UUID.randomUUID().toString();
+
+        AuthorizationRequest authorizationRequest = new AuthorizationRequest(responseTypes, clientId, scopes,
+                redirectUri + "?foo2=bar", null);
+        authorizationRequest.setAuthUsername(userId);
+        authorizationRequest.setAuthPassword(userSecret);
+        authorizationRequest.setState(state);
+
+        AuthorizeClient authorizeClient = new AuthorizeClient(authorizationEndpoint);
+        authorizeClient.setRequest(authorizationRequest);
+        AuthorizationResponse authorizationResponse = authorizeClient.exec();
+
+        showClient(authorizeClient);
+        assertEquals(authorizationResponse.getStatus(), 400, "Unexpected response code: " + authorizationResponse.getStatus());
+        assertNotNull(authorizationResponse.getErrorType(), "The error type is null");
+        assertNotNull(authorizationResponse.getErrorDescription(), "The error description is null");
+    }
+}
\ No newline at end of file
diff --git a/oxAuth/Client/src/test/java/org/gluu/oxauth/interop/RejectsSecondUseOfAccessCode.java b/oxAuth/Client/src/test/java/org/gluu/oxauth/interop/RejectsSecondUseOfAccessCode.java
new file mode 100644
index 00000000..d8dce8e8
--- /dev/null
+++ b/oxAuth/Client/src/test/java/org/gluu/oxauth/interop/RejectsSecondUseOfAccessCode.java
@@ -0,0 +1,140 @@
+/*
+ * oxAuth is available under the MIT License (2008). See http://opensource.org/licenses/MIT for full text.
+ *
+ * Copyright (c) 2014, Gluu
+ */
+
+package org.gluu.oxauth.interop;
+
+import static org.testng.Assert.assertEquals;
+import static org.testng.Assert.assertNotNull;
+
+import java.util.Arrays;
+import java.util.List;
+import java.util.UUID;
+
+import org.gluu.oxauth.BaseTest;
+import org.gluu.oxauth.client.AuthorizationRequest;
+import org.gluu.oxauth.client.AuthorizationResponse;
+import org.gluu.oxauth.client.RegisterClient;
+import org.gluu.oxauth.client.RegisterRequest;
+import org.gluu.oxauth.client.RegisterResponse;
+import org.gluu.oxauth.client.TokenClient;
+import org.gluu.oxauth.client.TokenResponse;
+import org.gluu.oxauth.client.UserInfoClient;
+import org.gluu.oxauth.client.UserInfoResponse;
+import org.gluu.oxauth.model.common.ResponseType;
+import org.gluu.oxauth.model.jwt.JwtClaimName;
+import org.gluu.oxauth.model.register.ApplicationType;
+import org.gluu.oxauth.model.util.StringUtils;
+import org.testng.annotations.Parameters;
+import org.testng.annotations.Test;
+
+/**
+ * OC5:FeatureTest-Rejects Second Use of Access Code
+ *
+ * @author Javier Rojas Blum
+ * @version November 3, 2016
+ */
+public class RejectsSecondUseOfAccessCode extends BaseTest {
+
+    @Parameters({"userId", "userSecret", "redirectUris", "redirectUri", "sectorIdentifierUri"})
+    @Test
+    public void rejectsSecondUseOfAccessCode(
+            final String userId, final String userSecret, final String redirectUris, final String redirectUri,
+            final String sectorIdentifierUri) throws Exception {
+        showTitle("OC5:FeatureTest-Rejects Second Use of Access Code");
+
+        List<ResponseType> responseTypes = Arrays.asList(
+                ResponseType.CODE,
+                ResponseType.ID_TOKEN);
+
+        // 1. Register client
+        RegisterRequest registerRequest = new RegisterRequest(ApplicationType.WEB, "oxAuth test app",
+                StringUtils.spaceSeparatedToList(redirectUris));
+        registerRequest.setResponseTypes(responseTypes);
+        registerRequest.setSectorIdentifierUri(sectorIdentifierUri);
+
+        RegisterClient registerClient = new RegisterClient(registrationEndpoint);
+        registerClient.setRequest(registerRequest);
+        RegisterResponse registerResponse = registerClient.exec();
+
+        showClient(registerClient);
+        assertEquals(registerResponse.getStatus(), 200, "Unexpected response code: " + registerResponse.getEntity());
+        assertNotNull(registerResponse.getClientId());
+        assertNotNull(registerResponse.getClientSecret());
+        assertNotNull(registerResponse.getRegistrationAccessToken());
+        assertNotNull(registerResponse.getClientIdIssuedAt());
+        assertNotNull(registerResponse.getClientSecretExpiresAt());
+
+        String clientId = registerResponse.getClientId();
+        String clientSecret = registerResponse.getClientSecret();
+
+        // 2. Request authorization and receive the authorization code.
+        List<String> scopes = Arrays.asList("openid", "profile", "address", "email");
+        String state = UUID.randomUUID().toString();
+        String nonce = UUID.randomUUID().toString();
+
+        AuthorizationRequest authorizationRequest = new AuthorizationRequest(responseTypes, clientId, scopes, redirectUri, nonce);
+        authorizationRequest.setState(state);
+
+        AuthorizationResponse authorizationResponse = authenticateResourceOwnerAndGrantAccess(
+                authorizationEndpoint, authorizationRequest, userId, userSecret);
+
+        assertNotNull(authorizationResponse.getLocation(), "The location is null");
+        assertNotNull(authorizationResponse.getCode(), "The authorization code is null");
+        assertNotNull(authorizationResponse.getState(), "The state is null");
+        assertNotNull(authorizationResponse.getScope(), "The scope is null");
+        assertNotNull(authorizationResponse.getIdToken(), "The id token is null");
+
+        String scope = authorizationResponse.getScope();
+        String authorizationCode = authorizationResponse.getCode();
+
+        // 3. Request access token using the authorization code.
+        String accessToken;
+        String refreshToken;
+        {
+            TokenClient tokenClient = new TokenClient(tokenEndpoint);
+            TokenResponse tokenResponse = tokenClient.execAuthorizationCode(authorizationCode, redirectUri,
+                    clientId, clientSecret);
+
+            showClient(tokenClient);
+            assertEquals(tokenResponse.getStatus(), 200, "Unexpected response code: " + tokenResponse.getStatus());
+            assertNotNull(tokenResponse.getEntity(), "The entity is null");
+            assertNotNull(tokenResponse.getAccessToken(), "The access token is null");
+            assertNotNull(tokenResponse.getTokenType(), "The token type is null");
+            assertNotNull(tokenResponse.getRefreshToken(), "The refresh token is null");
+
+            accessToken = tokenResponse.getAccessToken();
+            refreshToken = tokenResponse.getRefreshToken();
+        }
+
+        // 4. Request user info
+        {
+            UserInfoClient userInfoClient = new UserInfoClient(userInfoEndpoint);
+            UserInfoResponse userInfoResponse = userInfoClient.execUserInfo(accessToken);
+
+            showClient(userInfoClient);
+            assertEquals(userInfoResponse.getStatus(), 200, "Unexpected response code: " + userInfoResponse.getStatus());
+            assertNotNull(userInfoResponse.getClaim(JwtClaimName.SUBJECT_IDENTIFIER));
+            assertNotNull(userInfoResponse.getClaim(JwtClaimName.NAME));
+            assertNotNull(userInfoResponse.getClaim(JwtClaimName.GIVEN_NAME));
+            assertNotNull(userInfoResponse.getClaim(JwtClaimName.FAMILY_NAME));
+            assertNotNull(userInfoResponse.getClaim(JwtClaimName.EMAIL));
+            assertNotNull(userInfoResponse.getClaim(JwtClaimName.ZONEINFO));
+            assertNotNull(userInfoResponse.getClaim(JwtClaimName.LOCALE));
+        }
+
+        // 5. Request access token using the same authorization code one more time. This call must fail.
+        {
+            TokenClient tokenClient = new TokenClient(tokenEndpoint);
+            TokenResponse tokenResponse = tokenClient.execAuthorizationCode(authorizationCode, redirectUri, clientId, clientSecret);
+
+            showClient(tokenClient);
+            assertEquals(tokenResponse.getStatus(), 400, "Unexpected response code: " + tokenResponse.getStatus());
+            assertNotNull(tokenResponse.getEntity(), "The entity is null");
+            assertNotNull(tokenResponse.getErrorType(), "The error type is null");
+            assertNotNull(tokenResponse.getErrorDescription(), "The error description is null");
+        }
+    }
+}
\ No newline at end of file
diff --git a/oxAuth/Client/src/test/java/org/gluu/oxauth/interop/RejectsSectorIdentifierNotContainingRegisteredRedirectUriValues.java b/oxAuth/Client/src/test/java/org/gluu/oxauth/interop/RejectsSectorIdentifierNotContainingRegisteredRedirectUriValues.java
new file mode 100644
index 00000000..af23eb04
--- /dev/null
+++ b/oxAuth/Client/src/test/java/org/gluu/oxauth/interop/RejectsSectorIdentifierNotContainingRegisteredRedirectUriValues.java
@@ -0,0 +1,53 @@
+/*
+ * oxAuth is available under the MIT License (2008). See http://opensource.org/licenses/MIT for full text.
+ *
+ * Copyright (c) 2014, Gluu
+ */
+
+package org.gluu.oxauth.interop;
+
+import static org.testng.Assert.assertEquals;
+import static org.testng.Assert.assertNotNull;
+
+import java.util.Arrays;
+import java.util.List;
+
+import org.gluu.oxauth.BaseTest;
+import org.gluu.oxauth.client.RegisterClient;
+import org.gluu.oxauth.client.RegisterRequest;
+import org.gluu.oxauth.client.RegisterResponse;
+import org.gluu.oxauth.model.common.ResponseType;
+import org.gluu.oxauth.model.register.ApplicationType;
+import org.gluu.oxauth.model.util.StringUtils;
+import org.testng.annotations.Parameters;
+import org.testng.annotations.Test;
+
+/**
+ * OC5:FeatureTest-Rejects Sector Identifier Not Containing Registered redirect uri Values
+ *
+ * @author Javier Rojas Blum Date: 08.22.2013
+ */
+public class RejectsSectorIdentifierNotContainingRegisteredRedirectUriValues extends BaseTest {
+
+    @Parameters({"sectorIdentifierUri"})
+    @Test
+    public void rejectsSectorIdentifierNotContainingRegisteredRedirectUriValues(final String sectorIdentifierUri) throws Exception {
+        showTitle("OC5:FeatureTest-Rejects Sector Identifier Not Containing Registered redirect uri Values");
+
+        List<ResponseType> responseTypes = Arrays.asList(ResponseType.CODE);
+
+        RegisterRequest registerRequest = new RegisterRequest(ApplicationType.WEB, "oxAuth test app",
+                StringUtils.spaceSeparatedToList("https://not_registered"));
+        registerRequest.setSectorIdentifierUri(sectorIdentifierUri);
+        registerRequest.setResponseTypes(responseTypes);
+
+        RegisterClient registerClient = new RegisterClient(registrationEndpoint);
+        registerClient.setRequest(registerRequest);
+        RegisterResponse registerResponse = registerClient.exec();
+
+        showClient(registerClient);
+        assertEquals(registerResponse.getStatus(), 400, "Unexpected response code: " + registerResponse.getStatus());
+        assertNotNull(registerResponse.getErrorType(), "The error type is null");
+        assertNotNull(registerResponse.getErrorDescription(), "The error description is null");
+    }
+}
\ No newline at end of file
diff --git a/oxAuth/Client/src/test/java/org/gluu/oxauth/interop/RequestingUserInfoClaimsWithOpenIdRequestObject.java b/oxAuth/Client/src/test/java/org/gluu/oxauth/interop/RequestingUserInfoClaimsWithOpenIdRequestObject.java
new file mode 100644
index 00000000..c8b04979
--- /dev/null
+++ b/oxAuth/Client/src/test/java/org/gluu/oxauth/interop/RequestingUserInfoClaimsWithOpenIdRequestObject.java
@@ -0,0 +1,143 @@
+/*
+ * oxAuth is available under the MIT License (2008). See http://opensource.org/licenses/MIT for full text.
+ *
+ * Copyright (c) 2014, Gluu
+ */
+
+package org.gluu.oxauth.interop;
+
+import static org.testng.Assert.assertEquals;
+import static org.testng.Assert.assertNotNull;
+import static org.testng.Assert.assertTrue;
+
+import java.util.Arrays;
+import java.util.List;
+import java.util.UUID;
+
+import org.gluu.oxauth.BaseTest;
+import org.gluu.oxauth.client.AuthorizationRequest;
+import org.gluu.oxauth.client.AuthorizationResponse;
+import org.gluu.oxauth.client.AuthorizeClient;
+import org.gluu.oxauth.client.JwkClient;
+import org.gluu.oxauth.client.RegisterClient;
+import org.gluu.oxauth.client.RegisterRequest;
+import org.gluu.oxauth.client.RegisterResponse;
+import org.gluu.oxauth.client.UserInfoClient;
+import org.gluu.oxauth.client.UserInfoResponse;
+import org.gluu.oxauth.client.model.authorize.JwtAuthorizationRequest;
+import org.gluu.oxauth.model.common.ResponseType;
+import org.gluu.oxauth.model.crypto.OxAuthCryptoProvider;
+import org.gluu.oxauth.model.crypto.signature.RSAPublicKey;
+import org.gluu.oxauth.model.crypto.signature.SignatureAlgorithm;
+import org.gluu.oxauth.model.jws.RSASigner;
+import org.gluu.oxauth.model.jwt.Jwt;
+import org.gluu.oxauth.model.jwt.JwtClaimName;
+import org.gluu.oxauth.model.jwt.JwtHeaderName;
+import org.gluu.oxauth.model.register.ApplicationType;
+import org.gluu.oxauth.model.util.StringUtils;
+import org.testng.annotations.Parameters;
+import org.testng.annotations.Test;
+
+/**
+ * OC5:FeatureTest-Requesting UserInfo Claims with OpenID Request Object
+ *
+ * @author Javier Rojas Blum
+ * @version January 11, 2017
+ */
+public class RequestingUserInfoClaimsWithOpenIdRequestObject extends BaseTest {
+
+    @Parameters({"userId", "userSecret", "redirectUri", "redirectUris", "sectorIdentifierUri"})
+    @Test
+    public void requestingUserInfoClaimsWithOpenIdRequestObject(
+            final String userId, final String userSecret, final String redirectUri, final String redirectUris,
+            final String sectorIdentifierUri) throws Exception {
+        showTitle("OC5:FeatureTest-Requesting UserInfo Claims with OpenID Request Object");
+
+        List<ResponseType> responseTypes = Arrays.asList(ResponseType.TOKEN, ResponseType.ID_TOKEN);
+
+        // 1. Register client
+        RegisterRequest registerRequest = new RegisterRequest(ApplicationType.WEB, "oxAuth test app",
+                StringUtils.spaceSeparatedToList(redirectUris));
+        registerRequest.setResponseTypes(responseTypes);
+        registerRequest.setSectorIdentifierUri(sectorIdentifierUri);
+
+        RegisterClient registerClient = new RegisterClient(registrationEndpoint);
+        registerClient.setRequest(registerRequest);
+        RegisterResponse registerResponse = registerClient.exec();
+
+        showClient(registerClient);
+        assertEquals(registerResponse.getStatus(), 200, "Unexpected response code: " + registerResponse.getEntity());
+        assertNotNull(registerResponse.getClientId());
+        assertNotNull(registerResponse.getClientSecret());
+        assertNotNull(registerResponse.getRegistrationAccessToken());
+        assertNotNull(registerResponse.getClientIdIssuedAt());
+        assertNotNull(registerResponse.getClientSecretExpiresAt());
+
+        String clientId = registerResponse.getClientId();
+        String clientSecret = registerResponse.getClientSecret();
+
+        // 2. Request authorization
+        OxAuthCryptoProvider cryptoProvider = new OxAuthCryptoProvider();
+
+        List<String> scopes = Arrays.asList("openid", "profile", "address", "email");
+        String nonce = UUID.randomUUID().toString();
+        String state = UUID.randomUUID().toString();
+
+        AuthorizationRequest authorizationRequest = new AuthorizationRequest(responseTypes, clientId, scopes, redirectUri, nonce);
+        authorizationRequest.setState(state);
+
+        JwtAuthorizationRequest jwtAuthorizationRequest = new JwtAuthorizationRequest(authorizationRequest, SignatureAlgorithm.HS256, clientSecret, cryptoProvider);
+        String authJwt = jwtAuthorizationRequest.getEncodedJwt();
+        authorizationRequest.setRequest(authJwt);
+
+        AuthorizeClient authorizeClient = new AuthorizeClient(authorizationEndpoint);
+        authorizeClient.setRequest(authorizationRequest);
+
+        AuthorizationResponse authorizationResponse = authenticateResourceOwnerAndGrantAccess(
+                authorizationEndpoint, authorizationRequest, userId, userSecret);
+
+        assertNotNull(authorizationResponse.getLocation(), "The location is null");
+        assertNotNull(authorizationResponse.getAccessToken(), "The accessToken is null");
+        assertNotNull(authorizationResponse.getTokenType(), "The tokenType is null");
+        assertNotNull(authorizationResponse.getIdToken(), "The idToken is null");
+        assertNotNull(authorizationResponse.getState(), "The state is null");
+
+        String idToken = authorizationResponse.getIdToken();
+        String accessToken = authorizationResponse.getAccessToken();
+
+        // 3. Validate id_token
+        Jwt jwt = Jwt.parse(idToken);
+        assertNotNull(jwt.getHeader().getClaimAsString(JwtHeaderName.TYPE));
+        assertNotNull(jwt.getHeader().getClaimAsString(JwtHeaderName.ALGORITHM));
+        assertNotNull(jwt.getClaims().getClaimAsString(JwtClaimName.ISSUER));
+        assertNotNull(jwt.getClaims().getClaimAsString(JwtClaimName.AUDIENCE));
+        assertNotNull(jwt.getClaims().getClaimAsString(JwtClaimName.EXPIRATION_TIME));
+        assertNotNull(jwt.getClaims().getClaimAsString(JwtClaimName.ISSUED_AT));
+        assertNotNull(jwt.getClaims().getClaimAsString(JwtClaimName.SUBJECT_IDENTIFIER));
+        assertNotNull(jwt.getClaims().getClaimAsString(JwtClaimName.ACCESS_TOKEN_HASH));
+        assertNotNull(jwt.getClaims().getClaimAsString(JwtClaimName.AUTHENTICATION_TIME));
+
+        RSAPublicKey publicKey = JwkClient.getRSAPublicKey(
+                jwksUri,
+                jwt.getHeader().getClaimAsString(JwtHeaderName.KEY_ID));
+        RSASigner rsaSigner = new RSASigner(SignatureAlgorithm.RS256, publicKey);
+
+        assertTrue(rsaSigner.validate(jwt));
+
+        // 4. Request user info
+        UserInfoClient userInfoClient = new UserInfoClient(userInfoEndpoint);
+        UserInfoResponse userInfoResponse = userInfoClient.execUserInfo(accessToken);
+
+        showClient(userInfoClient);
+        assertEquals(userInfoResponse.getStatus(), 200, "Unexpected response code: " + userInfoResponse.getStatus());
+        assertNotNull(userInfoResponse.getClaim(JwtClaimName.SUBJECT_IDENTIFIER));
+        assertNotNull(userInfoResponse.getClaim(JwtClaimName.NAME));
+        assertNotNull(userInfoResponse.getClaim(JwtClaimName.GIVEN_NAME));
+        assertNotNull(userInfoResponse.getClaim(JwtClaimName.FAMILY_NAME));
+        assertNotNull(userInfoResponse.getClaim(JwtClaimName.EMAIL));
+        assertNotNull(userInfoResponse.getClaim(JwtClaimName.ZONEINFO));
+        assertNotNull(userInfoResponse.getClaim(JwtClaimName.LOCALE));
+        assertNotNull(userInfoResponse.getClaim(JwtClaimName.PICTURE));
+        assertNotNull(userInfoResponse.getClaim(JwtClaimName.ADDRESS));
+    }
+}
\ No newline at end of file
diff --git a/oxAuth/Client/src/test/java/org/gluu/oxauth/interop/RequestingUserInfoClaimsWithScopeValues.java b/oxAuth/Client/src/test/java/org/gluu/oxauth/interop/RequestingUserInfoClaimsWithScopeValues.java
new file mode 100644
index 00000000..eed166b3
--- /dev/null
+++ b/oxAuth/Client/src/test/java/org/gluu/oxauth/interop/RequestingUserInfoClaimsWithScopeValues.java
@@ -0,0 +1,102 @@
+/*
+ * oxAuth is available under the MIT License (2008). See http://opensource.org/licenses/MIT for full text.
+ *
+ * Copyright (c) 2014, Gluu
+ */
+
+package org.gluu.oxauth.interop;
+
+import static org.testng.Assert.assertEquals;
+import static org.testng.Assert.assertNotNull;
+
+import java.util.Arrays;
+import java.util.List;
+import java.util.UUID;
+
+import org.gluu.oxauth.BaseTest;
+import org.gluu.oxauth.client.AuthorizationRequest;
+import org.gluu.oxauth.client.AuthorizationResponse;
+import org.gluu.oxauth.client.RegisterClient;
+import org.gluu.oxauth.client.RegisterRequest;
+import org.gluu.oxauth.client.RegisterResponse;
+import org.gluu.oxauth.client.UserInfoClient;
+import org.gluu.oxauth.client.UserInfoResponse;
+import org.gluu.oxauth.model.common.ResponseType;
+import org.gluu.oxauth.model.jwt.JwtClaimName;
+import org.gluu.oxauth.model.register.ApplicationType;
+import org.gluu.oxauth.model.util.StringUtils;
+import org.testng.annotations.Parameters;
+import org.testng.annotations.Test;
+
+/**
+ * OC5:FeatureTest-Requesting UserInfo Claims with scope Values
+ *
+ * @author Javier Rojas Blum
+ * @version June 19, 2015
+ */
+public class RequestingUserInfoClaimsWithScopeValues extends BaseTest {
+
+    @Parameters({"userId", "userSecret", "redirectUris", "redirectUri", "sectorIdentifierUri"})
+    @Test
+    public void requestingUserInfoClaimsWithScopeValues(
+            final String userId, final String userSecret, final String redirectUris, final String redirectUri,
+            final String sectorIdentifierUri) throws Exception {
+        showTitle("OC5:FeatureTest-Requesting UserInfo Claims with scope Values");
+
+        List<ResponseType> responseTypes = Arrays.asList(ResponseType.TOKEN, ResponseType.ID_TOKEN);
+
+        // 1. Register client
+        RegisterRequest registerRequest = new RegisterRequest(ApplicationType.WEB, "oxAuth test app",
+                StringUtils.spaceSeparatedToList(redirectUris));
+        registerRequest.setResponseTypes(responseTypes);
+        registerRequest.setSectorIdentifierUri(sectorIdentifierUri);
+
+        RegisterClient registerClient = new RegisterClient(registrationEndpoint);
+        registerClient.setRequest(registerRequest);
+        RegisterResponse registerResponse = registerClient.exec();
+
+        showClient(registerClient);
+        assertEquals(registerResponse.getStatus(), 200, "Unexpected response code: " + registerResponse.getEntity());
+        assertNotNull(registerResponse.getClientId());
+        assertNotNull(registerResponse.getClientSecret());
+        assertNotNull(registerResponse.getRegistrationAccessToken());
+        assertNotNull(registerResponse.getClientIdIssuedAt());
+        assertNotNull(registerResponse.getClientSecretExpiresAt());
+
+        String clientId = registerResponse.getClientId();
+
+        // 2. Request authorization
+        List<String> scopes = Arrays.asList("openid", "profile", "address", "email");
+        String nonce = UUID.randomUUID().toString();
+        String state = UUID.randomUUID().toString();
+
+        AuthorizationRequest authorizationRequest = new AuthorizationRequest(responseTypes, clientId, scopes, redirectUri, nonce);
+        authorizationRequest.setState(state);
+
+        AuthorizationResponse authorizationResponse = authenticateResourceOwnerAndGrantAccess(
+                authorizationEndpoint, authorizationRequest, userId, userSecret);
+
+        assertNotNull(authorizationResponse.getLocation());
+        assertNotNull(authorizationResponse.getAccessToken());
+        assertNotNull(authorizationResponse.getIdToken());
+        assertNotNull(authorizationResponse.getState());
+
+        String accessToken = authorizationResponse.getAccessToken();
+
+        // 3. Request user info
+        UserInfoClient userInfoClient = new UserInfoClient(userInfoEndpoint);
+        UserInfoResponse userInfoResponse = userInfoClient.execUserInfo(accessToken);
+
+        showClient(userInfoClient);
+        assertEquals(userInfoResponse.getStatus(), 200, "Unexpected response code: " + userInfoResponse.getStatus());
+        assertNotNull(userInfoResponse.getClaim(JwtClaimName.SUBJECT_IDENTIFIER));
+        assertNotNull(userInfoResponse.getClaim(JwtClaimName.NAME));
+        assertNotNull(userInfoResponse.getClaim(JwtClaimName.GIVEN_NAME));
+        assertNotNull(userInfoResponse.getClaim(JwtClaimName.FAMILY_NAME));
+        assertNotNull(userInfoResponse.getClaim(JwtClaimName.EMAIL));
+        assertNotNull(userInfoResponse.getClaim(JwtClaimName.ZONEINFO));
+        assertNotNull(userInfoResponse.getClaim(JwtClaimName.LOCALE));
+        assertNotNull(userInfoResponse.getClaim(JwtClaimName.PICTURE));
+        assertNotNull(userInfoResponse.getClaim(JwtClaimName.ADDRESS));
+    }
+}
\ No newline at end of file
diff --git a/oxAuth/Client/src/test/java/org/gluu/oxauth/interop/SecondUseOfAccessCodeRevokesPreviouslyIssuedAccessToken.java b/oxAuth/Client/src/test/java/org/gluu/oxauth/interop/SecondUseOfAccessCodeRevokesPreviouslyIssuedAccessToken.java
new file mode 100644
index 00000000..81d8d41f
--- /dev/null
+++ b/oxAuth/Client/src/test/java/org/gluu/oxauth/interop/SecondUseOfAccessCodeRevokesPreviouslyIssuedAccessToken.java
@@ -0,0 +1,163 @@
+/*
+ * oxAuth is available under the MIT License (2008). See http://opensource.org/licenses/MIT for full text.
+ *
+ * Copyright (c) 2014, Gluu
+ */
+
+package org.gluu.oxauth.interop;
+
+import static org.testng.Assert.assertEquals;
+import static org.testng.Assert.assertNotNull;
+
+import java.util.Arrays;
+import java.util.List;
+import java.util.UUID;
+
+import org.gluu.oxauth.BaseTest;
+import org.gluu.oxauth.client.AuthorizationRequest;
+import org.gluu.oxauth.client.AuthorizationResponse;
+import org.gluu.oxauth.client.RegisterClient;
+import org.gluu.oxauth.client.RegisterRequest;
+import org.gluu.oxauth.client.RegisterResponse;
+import org.gluu.oxauth.client.TokenClient;
+import org.gluu.oxauth.client.TokenResponse;
+import org.gluu.oxauth.client.UserInfoClient;
+import org.gluu.oxauth.client.UserInfoResponse;
+import org.gluu.oxauth.model.common.ResponseType;
+import org.gluu.oxauth.model.jwt.JwtClaimName;
+import org.gluu.oxauth.model.register.ApplicationType;
+import org.gluu.oxauth.model.util.StringUtils;
+import org.testng.annotations.Parameters;
+import org.testng.annotations.Test;
+
+/**
+ * OC5:FeatureTest-Second Use of Access Code Revokes Previously Issued Access Token
+ *
+ * @author Javier Rojas Blum
+ * @version May 14, 2019
+ */
+public class SecondUseOfAccessCodeRevokesPreviouslyIssuedAccessToken extends BaseTest {
+
+    @Parameters({"userId", "userSecret", "redirectUris", "redirectUri", "sectorIdentifierUri"})
+    @Test
+    public void secondUseOfAccessCodeRevokesPreviouslyIssuedAccessToken(
+            final String userId, final String userSecret, final String redirectUris, final String redirectUri,
+            final String sectorIdentifierUri) throws Exception {
+        showTitle("OC5:FeatureTest-Second Use of Access Code Revokes Previously Issued Access Token");
+
+        List<ResponseType> responseTypes = Arrays.asList(
+                ResponseType.CODE,
+                ResponseType.ID_TOKEN);
+
+        // 1. Register client
+        RegisterRequest registerRequest = new RegisterRequest(ApplicationType.WEB, "oxAuth test app",
+                StringUtils.spaceSeparatedToList(redirectUris));
+        registerRequest.setResponseTypes(responseTypes);
+        registerRequest.setSectorIdentifierUri(sectorIdentifierUri);
+
+        RegisterClient registerClient = new RegisterClient(registrationEndpoint);
+        registerClient.setRequest(registerRequest);
+        RegisterResponse registerResponse = registerClient.exec();
+
+        showClient(registerClient);
+        assertEquals(registerResponse.getStatus(), 200, "Unexpected response code: " + registerResponse.getEntity());
+        assertNotNull(registerResponse.getClientId());
+        assertNotNull(registerResponse.getClientSecret());
+        assertNotNull(registerResponse.getRegistrationAccessToken());
+        assertNotNull(registerResponse.getClientIdIssuedAt());
+        assertNotNull(registerResponse.getClientSecretExpiresAt());
+
+        String clientId = registerResponse.getClientId();
+        String clientSecret = registerResponse.getClientSecret();
+
+        // 2. Request authorization and receive the authorization code.
+        List<String> scopes = Arrays.asList("openid", "profile", "address", "email");
+        String state = UUID.randomUUID().toString();
+        String nonce = UUID.randomUUID().toString();
+
+        AuthorizationRequest authorizationRequest = new AuthorizationRequest(responseTypes, clientId, scopes, redirectUri, nonce);
+        authorizationRequest.setState(state);
+
+        AuthorizationResponse authorizationResponse = authenticateResourceOwnerAndGrantAccess(
+                authorizationEndpoint, authorizationRequest, userId, userSecret);
+
+        assertNotNull(authorizationResponse.getLocation(), "The location is null");
+        assertNotNull(authorizationResponse.getCode(), "The authorization code is null");
+        assertNotNull(authorizationResponse.getState(), "The state is null");
+        assertNotNull(authorizationResponse.getScope(), "The scope is null");
+        assertNotNull(authorizationResponse.getIdToken(), "The id token is null");
+
+        String scope = authorizationResponse.getScope();
+        String authorizationCode = authorizationResponse.getCode();
+
+        // 3. Request access token using the authorization code.
+        String accessToken;
+        String refreshToken;
+        {
+            TokenClient tokenClient = new TokenClient(tokenEndpoint);
+            TokenResponse tokenResponse = tokenClient.execAuthorizationCode(authorizationCode, redirectUri,
+                    clientId, clientSecret);
+
+            showClient(tokenClient);
+            assertEquals(tokenResponse.getStatus(), 200, "Unexpected response code: " + tokenResponse.getStatus());
+            assertNotNull(tokenResponse.getEntity(), "The entity is null");
+            assertNotNull(tokenResponse.getAccessToken(), "The access token is null");
+            assertNotNull(tokenResponse.getTokenType(), "The token type is null");
+            assertNotNull(tokenResponse.getRefreshToken(), "The refresh token is null");
+
+            accessToken = tokenResponse.getAccessToken();
+            refreshToken = tokenResponse.getRefreshToken();
+        }
+
+        // 4. Request user info
+        {
+            UserInfoClient userInfoClient = new UserInfoClient(userInfoEndpoint);
+            UserInfoResponse userInfoResponse = userInfoClient.execUserInfo(accessToken);
+
+            showClient(userInfoClient);
+            assertEquals(userInfoResponse.getStatus(), 200, "Unexpected response code: " + userInfoResponse.getStatus());
+            assertNotNull(userInfoResponse.getClaim(JwtClaimName.SUBJECT_IDENTIFIER));
+            assertNotNull(userInfoResponse.getClaim(JwtClaimName.NAME));
+            assertNotNull(userInfoResponse.getClaim(JwtClaimName.GIVEN_NAME));
+            assertNotNull(userInfoResponse.getClaim(JwtClaimName.FAMILY_NAME));
+            assertNotNull(userInfoResponse.getClaim(JwtClaimName.EMAIL));
+            assertNotNull(userInfoResponse.getClaim(JwtClaimName.ZONEINFO));
+            assertNotNull(userInfoResponse.getClaim(JwtClaimName.LOCALE));
+        }
+
+        // 5. Request access token using the same authorization code one more time. This call must fail.
+        {
+            TokenClient tokenClient = new TokenClient(tokenEndpoint);
+            TokenResponse tokenResponse = tokenClient.execAuthorizationCode(authorizationCode, redirectUri, clientId, clientSecret);
+
+            showClient(tokenClient);
+            assertEquals(tokenResponse.getStatus(), 400, "Unexpected response code: " + tokenResponse.getStatus());
+            assertNotNull(tokenResponse.getEntity(), "The entity is null");
+            assertNotNull(tokenResponse.getErrorType(), "The error type is null");
+            assertNotNull(tokenResponse.getErrorDescription(), "The error description is null");
+        }
+
+        // 6. Request user info. This call must fail.
+        {
+            UserInfoClient userInfoClient = new UserInfoClient(userInfoEndpoint);
+            UserInfoResponse userInfoResponse = userInfoClient.execUserInfo(accessToken);
+
+            showClient(userInfoClient);
+            assertEquals(userInfoResponse.getStatus(), 401, "Unexpected response code: " + userInfoResponse.getStatus());
+            assertNotNull(userInfoResponse.getErrorType(), "Unexpected result: errorType not found");
+            assertNotNull(userInfoResponse.getErrorDescription(), "Unexpected result: errorDescription not found");
+        }
+
+        // 7. Request new access token using the refresh token. This call must fail too.
+        {
+            TokenClient tokenClient = new TokenClient(tokenEndpoint);
+            TokenResponse tokenResponse = tokenClient.execRefreshToken(scope, refreshToken, clientId, clientSecret);
+
+            showClient(tokenClient);
+            assertEquals(tokenResponse.getStatus(), 400, "Unexpected response code: " + tokenResponse.getStatus());
+            assertNotNull(tokenResponse.getEntity(), "The entity is null");
+            assertNotNull(tokenResponse.getErrorType(), "The error type is null");
+            assertNotNull(tokenResponse.getErrorDescription(), "The error description is null");
+        }
+    }
+}
\ No newline at end of file
diff --git a/oxAuth/Client/src/test/java/org/gluu/oxauth/interop/SupportAuthenticationToTokenEndpointUsingFormEncodedClientCredentialsInPostBody.java b/oxAuth/Client/src/test/java/org/gluu/oxauth/interop/SupportAuthenticationToTokenEndpointUsingFormEncodedClientCredentialsInPostBody.java
new file mode 100644
index 00000000..106a7379
--- /dev/null
+++ b/oxAuth/Client/src/test/java/org/gluu/oxauth/interop/SupportAuthenticationToTokenEndpointUsingFormEncodedClientCredentialsInPostBody.java
@@ -0,0 +1,106 @@
+/*
+ * oxAuth is available under the MIT License (2008). See http://opensource.org/licenses/MIT for full text.
+ *
+ * Copyright (c) 2014, Gluu
+ */
+
+package org.gluu.oxauth.interop;
+
+import static org.testng.Assert.assertEquals;
+import static org.testng.Assert.assertNotNull;
+
+import java.util.Arrays;
+import java.util.List;
+import java.util.UUID;
+
+import org.gluu.oxauth.BaseTest;
+import org.gluu.oxauth.client.AuthorizationRequest;
+import org.gluu.oxauth.client.AuthorizationResponse;
+import org.gluu.oxauth.client.RegisterClient;
+import org.gluu.oxauth.client.RegisterRequest;
+import org.gluu.oxauth.client.RegisterResponse;
+import org.gluu.oxauth.client.TokenClient;
+import org.gluu.oxauth.client.TokenRequest;
+import org.gluu.oxauth.client.TokenResponse;
+import org.gluu.oxauth.model.common.AuthenticationMethod;
+import org.gluu.oxauth.model.common.GrantType;
+import org.gluu.oxauth.model.common.ResponseType;
+import org.gluu.oxauth.model.register.ApplicationType;
+import org.gluu.oxauth.model.util.StringUtils;
+import org.testng.annotations.Parameters;
+import org.testng.annotations.Test;
+
+/**
+ * OC5:FeatureTest-Support Authentication to Token Endpoint using Form-Encoded Client Credentials in POST Body
+ *
+ * @author Javier Rojas Blum
+ * @version June 19, 2015
+ */
+public class SupportAuthenticationToTokenEndpointUsingFormEncodedClientCredentialsInPostBody extends BaseTest {
+
+    @Parameters({"redirectUris", "redirectUri", "userId", "userSecret", "sectorIdentifierUri"})
+    @Test
+    public void supportAuthenticationToTokenEndpointUsingFormEncodedClientCredentialsInPostBody(
+            final String redirectUris, final String redirectUri, final String userId, final String userSecret,
+            final String sectorIdentifierUri) throws Exception {
+        showTitle("OC5:FeatureTest-Support Authentication to Token Endpoint using Form-Encoded Client Credentials in POST Body");
+
+        // 1. Register client
+        RegisterRequest registerRequest = new RegisterRequest(ApplicationType.WEB, "oxAuth test app",
+                StringUtils.spaceSeparatedToList(redirectUris));
+        registerRequest.setTokenEndpointAuthMethod(AuthenticationMethod.CLIENT_SECRET_POST);
+        registerRequest.setSectorIdentifierUri(sectorIdentifierUri);
+
+        RegisterClient registerClient = new RegisterClient(registrationEndpoint);
+        registerClient.setRequest(registerRequest);
+        RegisterResponse registerResponse = registerClient.exec();
+
+        showClient(registerClient);
+        assertEquals(registerResponse.getStatus(), 200, "Unexpected response code: " + registerResponse.getEntity());
+        assertNotNull(registerResponse.getClientId());
+        assertNotNull(registerResponse.getClientSecret());
+        assertNotNull(registerResponse.getRegistrationAccessToken());
+        assertNotNull(registerResponse.getClientIdIssuedAt());
+        assertNotNull(registerResponse.getClientSecretExpiresAt());
+
+        String clientId = registerResponse.getClientId();
+        String clientSecret = registerResponse.getClientSecret();
+
+        // 2. Request authorization
+        List<ResponseType> responseTypes = Arrays.asList(ResponseType.CODE);
+        List<String> scopes = Arrays.asList("openid", "profile", "address", "email");
+        String state = UUID.randomUUID().toString();
+
+        AuthorizationRequest authorizationRequest = new AuthorizationRequest(responseTypes, clientId, scopes, redirectUri, null);
+        authorizationRequest.setState(state);
+
+        AuthorizationResponse authorizationResponse = authenticateResourceOwnerAndGrantAccess(
+                authorizationEndpoint, authorizationRequest, userId, userSecret);
+
+        assertNotNull(authorizationResponse.getLocation());
+        assertNotNull(authorizationResponse.getCode());
+        assertNotNull(authorizationResponse.getState());
+
+        String authorizationCode = authorizationResponse.getCode();
+
+        // 3. Get Access Token
+        TokenRequest tokenRequest = new TokenRequest(GrantType.AUTHORIZATION_CODE);
+        tokenRequest.setCode(authorizationCode);
+        tokenRequest.setRedirectUri(redirectUri);
+        tokenRequest.setAuthUsername(clientId);
+        tokenRequest.setAuthPassword(clientSecret);
+        tokenRequest.setAuthenticationMethod(AuthenticationMethod.CLIENT_SECRET_POST);
+
+        TokenClient tokenClient = new TokenClient(tokenEndpoint);
+        tokenClient.setRequest(tokenRequest);
+        TokenResponse tokenResponse = tokenClient.exec();
+
+        showClient(tokenClient);
+        assertEquals(tokenResponse.getStatus(), 200, "Unexpected response code: " + tokenResponse.getStatus());
+        assertNotNull(tokenResponse.getEntity(), "The entity is null");
+        assertNotNull(tokenResponse.getAccessToken(), "The access token is null");
+        assertNotNull(tokenResponse.getExpiresIn(), "The expires in value is null");
+        assertNotNull(tokenResponse.getTokenType(), "The token type is null");
+        assertNotNull(tokenResponse.getRefreshToken(), "The refresh token is null");
+    }
+}
\ No newline at end of file
diff --git a/oxAuth/Client/src/test/java/org/gluu/oxauth/interop/SupportAuthenticationToTokenEndpointUsingHttpBasicWithPost.java b/oxAuth/Client/src/test/java/org/gluu/oxauth/interop/SupportAuthenticationToTokenEndpointUsingHttpBasicWithPost.java
new file mode 100644
index 00000000..a91a5e11
--- /dev/null
+++ b/oxAuth/Client/src/test/java/org/gluu/oxauth/interop/SupportAuthenticationToTokenEndpointUsingHttpBasicWithPost.java
@@ -0,0 +1,106 @@
+/*
+ * oxAuth is available under the MIT License (2008). See http://opensource.org/licenses/MIT for full text.
+ *
+ * Copyright (c) 2014, Gluu
+ */
+
+package org.gluu.oxauth.interop;
+
+import static org.testng.Assert.assertEquals;
+import static org.testng.Assert.assertNotNull;
+
+import java.util.Arrays;
+import java.util.List;
+import java.util.UUID;
+
+import org.gluu.oxauth.BaseTest;
+import org.gluu.oxauth.client.AuthorizationRequest;
+import org.gluu.oxauth.client.AuthorizationResponse;
+import org.gluu.oxauth.client.RegisterClient;
+import org.gluu.oxauth.client.RegisterRequest;
+import org.gluu.oxauth.client.RegisterResponse;
+import org.gluu.oxauth.client.TokenClient;
+import org.gluu.oxauth.client.TokenRequest;
+import org.gluu.oxauth.client.TokenResponse;
+import org.gluu.oxauth.model.common.AuthenticationMethod;
+import org.gluu.oxauth.model.common.GrantType;
+import org.gluu.oxauth.model.common.ResponseType;
+import org.gluu.oxauth.model.register.ApplicationType;
+import org.gluu.oxauth.model.util.StringUtils;
+import org.testng.annotations.Parameters;
+import org.testng.annotations.Test;
+
+/**
+ * OC5:FeatureTest-Support Authentication to Token Endpoint using HTTP Basic with POST
+ *
+ * @author Javier Rojas Blum
+ * @version June 19, 2015
+ */
+public class SupportAuthenticationToTokenEndpointUsingHttpBasicWithPost extends BaseTest {
+
+    @Parameters({"redirectUris", "redirectUri", "userId", "userSecret", "sectorIdentifierUri"})
+    @Test
+    public void supportAuthenticationToTokenEndpointUsingHttpBasicWithPost(
+            final String redirectUris, final String redirectUri, final String userId, final String userSecret,
+            final String sectorIdentifierUri) throws Exception {
+        showTitle("OC5:FeatureTest-Support Authentication to Token Endpoint using HTTP Basic with POST");
+
+        // 1. Register client
+        RegisterRequest registerRequest = new RegisterRequest(ApplicationType.WEB, "oxAuth test app",
+                StringUtils.spaceSeparatedToList(redirectUris));
+        registerRequest.setTokenEndpointAuthMethod(AuthenticationMethod.CLIENT_SECRET_BASIC);
+        registerRequest.setSectorIdentifierUri(sectorIdentifierUri);
+
+        RegisterClient registerClient = new RegisterClient(registrationEndpoint);
+        registerClient.setRequest(registerRequest);
+        RegisterResponse registerResponse = registerClient.exec();
+
+        showClient(registerClient);
+        assertEquals(registerResponse.getStatus(), 200, "Unexpected response code: " + registerResponse.getEntity());
+        assertNotNull(registerResponse.getClientId());
+        assertNotNull(registerResponse.getClientSecret());
+        assertNotNull(registerResponse.getRegistrationAccessToken());
+        assertNotNull(registerResponse.getClientIdIssuedAt());
+        assertNotNull(registerResponse.getClientSecretExpiresAt());
+
+        String clientId = registerResponse.getClientId();
+        String clientSecret = registerResponse.getClientSecret();
+
+        // 2. Request authorization
+        List<ResponseType> responseTypes = Arrays.asList(ResponseType.CODE);
+        List<String> scopes = Arrays.asList("openid", "profile", "address", "email");
+        String state = UUID.randomUUID().toString();
+
+        AuthorizationRequest authorizationRequest = new AuthorizationRequest(responseTypes, clientId, scopes, redirectUri, null);
+        authorizationRequest.setState(state);
+
+        AuthorizationResponse authorizationResponse = authenticateResourceOwnerAndGrantAccess(
+                authorizationEndpoint, authorizationRequest, userId, userSecret);
+
+        assertNotNull(authorizationResponse.getLocation());
+        assertNotNull(authorizationResponse.getCode());
+        assertNotNull(authorizationResponse.getState());
+
+        String authorizationCode = authorizationResponse.getCode();
+
+        // 3. Get Access Token
+        TokenRequest tokenRequest = new TokenRequest(GrantType.AUTHORIZATION_CODE);
+        tokenRequest.setCode(authorizationCode);
+        tokenRequest.setRedirectUri(redirectUri);
+        tokenRequest.setAuthUsername(clientId);
+        tokenRequest.setAuthPassword(clientSecret);
+        tokenRequest.setAuthenticationMethod(AuthenticationMethod.CLIENT_SECRET_BASIC);
+
+        TokenClient tokenClient = new TokenClient(tokenEndpoint);
+        tokenClient.setRequest(tokenRequest);
+        TokenResponse tokenResponse = tokenClient.exec();
+
+        showClient(tokenClient);
+        assertEquals(tokenResponse.getStatus(), 200, "Unexpected response code: " + tokenResponse.getStatus());
+        assertNotNull(tokenResponse.getEntity(), "The entity is null");
+        assertNotNull(tokenResponse.getAccessToken(), "The access token is null");
+        assertNotNull(tokenResponse.getExpiresIn(), "The expires in value is null");
+        assertNotNull(tokenResponse.getTokenType(), "The token type is null");
+        assertNotNull(tokenResponse.getRefreshToken(), "The refresh token is null");
+    }
+}
\ No newline at end of file
diff --git a/oxAuth/Client/src/test/java/org/gluu/oxauth/interop/SupportAuthenticationToTokenEndpointWithAsymmetricallySignedJWTs.java b/oxAuth/Client/src/test/java/org/gluu/oxauth/interop/SupportAuthenticationToTokenEndpointWithAsymmetricallySignedJWTs.java
new file mode 100644
index 00000000..575b017a
--- /dev/null
+++ b/oxAuth/Client/src/test/java/org/gluu/oxauth/interop/SupportAuthenticationToTokenEndpointWithAsymmetricallySignedJWTs.java
@@ -0,0 +1,480 @@
+/*
+ * oxAuth is available under the MIT License (2008). See http://opensource.org/licenses/MIT for full text.
+ *
+ * Copyright (c) 2014, Gluu
+ */
+
+package org.gluu.oxauth.interop;
+
+import static org.testng.Assert.assertEquals;
+import static org.testng.Assert.assertNotNull;
+
+import java.util.Arrays;
+import java.util.List;
+import java.util.UUID;
+
+import org.gluu.oxauth.BaseTest;
+import org.gluu.oxauth.client.AuthorizationRequest;
+import org.gluu.oxauth.client.AuthorizationResponse;
+import org.gluu.oxauth.client.RegisterClient;
+import org.gluu.oxauth.client.RegisterRequest;
+import org.gluu.oxauth.client.RegisterResponse;
+import org.gluu.oxauth.client.TokenClient;
+import org.gluu.oxauth.client.TokenRequest;
+import org.gluu.oxauth.client.TokenResponse;
+import org.gluu.oxauth.model.common.AuthenticationMethod;
+import org.gluu.oxauth.model.common.GrantType;
+import org.gluu.oxauth.model.common.ResponseType;
+import org.gluu.oxauth.model.crypto.OxAuthCryptoProvider;
+import org.gluu.oxauth.model.crypto.signature.SignatureAlgorithm;
+import org.gluu.oxauth.model.register.ApplicationType;
+import org.gluu.oxauth.model.util.StringUtils;
+import org.testng.annotations.Parameters;
+import org.testng.annotations.Test;
+
+/**
+ * OC5:FeatureTest-Support Authentication to Token Endpoint with Asymmetrically Signed JWTs
+ *
+ * @author Javier Rojas Blum
+ * @version June 15, 2016
+ */
+public class SupportAuthenticationToTokenEndpointWithAsymmetricallySignedJWTs extends BaseTest {
+
+    @Parameters({"redirectUris", "redirectUri", "userId", "userSecret", "sectorIdentifierUri", "clientJwksUri",
+            "RS256_keyId", "dnName", "keyStoreFile", "keyStoreSecret"})
+    @Test
+    public void supportAuthenticationToTokenEndpointWithAsymmetricallySignedJWTsRS256(
+            final String redirectUris, final String redirectUri, final String userId, final String userSecret,
+            final String sectorIdentifierUri, final String clientJwksUri,
+            final String keyId, final String dnName, final String keyStoreFile, final String keyStoreSecret) throws Exception {
+        showTitle("OC5:FeatureTest-Support Authentication to Token Endpoint with Asymmetrically Signed JWTs (RS256)");
+
+        // 1. Register client
+        RegisterRequest registerRequest = new RegisterRequest(ApplicationType.WEB, "oxAuth test app",
+                StringUtils.spaceSeparatedToList(redirectUris));
+        registerRequest.setTokenEndpointAuthMethod(AuthenticationMethod.PRIVATE_KEY_JWT);
+        registerRequest.setSectorIdentifierUri(sectorIdentifierUri);
+        registerRequest.setJwksUri(clientJwksUri);
+
+        RegisterClient registerClient = new RegisterClient(registrationEndpoint);
+        registerClient.setRequest(registerRequest);
+        RegisterResponse registerResponse = registerClient.exec();
+
+        showClient(registerClient);
+        assertEquals(registerResponse.getStatus(), 200, "Unexpected response code: " + registerResponse.getEntity());
+        assertNotNull(registerResponse.getClientId());
+        assertNotNull(registerResponse.getClientSecret());
+        assertNotNull(registerResponse.getRegistrationAccessToken());
+        assertNotNull(registerResponse.getClientIdIssuedAt());
+        assertNotNull(registerResponse.getClientSecretExpiresAt());
+
+        String clientId = registerResponse.getClientId();
+
+        // 2. Request authorization
+        List<ResponseType> responseTypes = Arrays.asList(ResponseType.CODE);
+        List<String> scopes = Arrays.asList("openid", "profile", "address", "email");
+        String state = UUID.randomUUID().toString();
+
+        AuthorizationRequest authorizationRequest = new AuthorizationRequest(responseTypes, clientId, scopes, redirectUri, null);
+        authorizationRequest.setState(state);
+
+        AuthorizationResponse authorizationResponse = authenticateResourceOwnerAndGrantAccess(
+                authorizationEndpoint, authorizationRequest, userId, userSecret);
+
+        assertNotNull(authorizationResponse.getLocation());
+        assertNotNull(authorizationResponse.getCode());
+        assertNotNull(authorizationResponse.getState());
+
+        String authorizationCode = authorizationResponse.getCode();
+
+        // 3. Get Access Token
+        OxAuthCryptoProvider cryptoProvider = new OxAuthCryptoProvider(keyStoreFile, keyStoreSecret, dnName);
+
+        TokenRequest tokenRequest = new TokenRequest(GrantType.AUTHORIZATION_CODE);
+        tokenRequest.setAuthenticationMethod(AuthenticationMethod.PRIVATE_KEY_JWT);
+        tokenRequest.setAlgorithm(SignatureAlgorithm.RS256);
+        tokenRequest.setCryptoProvider(cryptoProvider);
+        tokenRequest.setKeyId(keyId);
+        tokenRequest.setAudience(tokenEndpoint);
+        tokenRequest.setCode(authorizationCode);
+        tokenRequest.setRedirectUri(redirectUri);
+        tokenRequest.setAuthUsername(clientId);
+
+        TokenClient tokenClient = new TokenClient(tokenEndpoint);
+        tokenClient.setRequest(tokenRequest);
+        TokenResponse tokenResponse = tokenClient.exec();
+
+        showClient(tokenClient);
+        assertEquals(tokenResponse.getStatus(), 200, "Unexpected response code: " + tokenResponse.getStatus());
+        assertNotNull(tokenResponse.getEntity(), "The entity is null");
+        assertNotNull(tokenResponse.getAccessToken(), "The access token is null");
+        assertNotNull(tokenResponse.getExpiresIn(), "The expires in value is null");
+        assertNotNull(tokenResponse.getTokenType(), "The token type is null");
+        assertNotNull(tokenResponse.getRefreshToken(), "The refresh token is null");
+    }
+
+    @Parameters({"redirectUris", "redirectUri", "userId", "userSecret", "sectorIdentifierUri", "clientJwksUri",
+            "RS384_keyId", "dnName", "keyStoreFile", "keyStoreSecret"})
+    @Test
+    public void supportAuthenticationToTokenEndpointWithAsymmetricallySignedJWTsRS384(
+            final String redirectUris, final String redirectUri, final String userId, final String userSecret,
+            final String sectorIdentifierUri, final String clientJwksUri,
+            final String keyId, final String dnName, final String keyStoreFile, final String keyStoreSecret) throws Exception {
+        showTitle("OC5:FeatureTest-Support Authentication to Token Endpoint with Asymmetrically Signed JWTs (RS384)");
+
+        // 1. Register client
+        RegisterRequest registerRequest = new RegisterRequest(ApplicationType.WEB, "oxAuth test app",
+                StringUtils.spaceSeparatedToList(redirectUris));
+        registerRequest.setTokenEndpointAuthMethod(AuthenticationMethod.PRIVATE_KEY_JWT);
+        registerRequest.setSectorIdentifierUri(sectorIdentifierUri);
+        registerRequest.setJwksUri(clientJwksUri);
+
+        RegisterClient registerClient = new RegisterClient(registrationEndpoint);
+        registerClient.setRequest(registerRequest);
+        RegisterResponse registerResponse = registerClient.exec();
+
+        showClient(registerClient);
+        assertEquals(registerResponse.getStatus(), 200, "Unexpected response code: " + registerResponse.getEntity());
+        assertNotNull(registerResponse.getClientId());
+        assertNotNull(registerResponse.getClientSecret());
+        assertNotNull(registerResponse.getRegistrationAccessToken());
+        assertNotNull(registerResponse.getClientIdIssuedAt());
+        assertNotNull(registerResponse.getClientSecretExpiresAt());
+
+        String clientId = registerResponse.getClientId();
+
+        // 2. Request authorization
+        List<ResponseType> responseTypes = Arrays.asList(ResponseType.CODE);
+        List<String> scopes = Arrays.asList("openid", "profile", "address", "email");
+        String state = UUID.randomUUID().toString();
+
+        AuthorizationRequest authorizationRequest = new AuthorizationRequest(responseTypes, clientId, scopes, redirectUri, null);
+        authorizationRequest.setState(state);
+
+        AuthorizationResponse authorizationResponse = authenticateResourceOwnerAndGrantAccess(
+                authorizationEndpoint, authorizationRequest, userId, userSecret);
+
+        assertNotNull(authorizationResponse.getLocation());
+        assertNotNull(authorizationResponse.getCode());
+        assertNotNull(authorizationResponse.getState());
+
+        String authorizationCode = authorizationResponse.getCode();
+
+        // 3. Get Access Token
+        OxAuthCryptoProvider cryptoProvider = new OxAuthCryptoProvider(keyStoreFile, keyStoreSecret, dnName);
+
+        TokenRequest tokenRequest = new TokenRequest(GrantType.AUTHORIZATION_CODE);
+        tokenRequest.setAuthenticationMethod(AuthenticationMethod.PRIVATE_KEY_JWT);
+        tokenRequest.setAlgorithm(SignatureAlgorithm.RS384);
+        tokenRequest.setCryptoProvider(cryptoProvider);
+        tokenRequest.setKeyId(keyId);
+        tokenRequest.setAudience(tokenEndpoint);
+        tokenRequest.setCode(authorizationCode);
+        tokenRequest.setRedirectUri(redirectUri);
+        tokenRequest.setAuthUsername(clientId);
+
+        TokenClient tokenClient = new TokenClient(tokenEndpoint);
+        tokenClient.setRequest(tokenRequest);
+        TokenResponse tokenResponse = tokenClient.exec();
+
+        showClient(tokenClient);
+        assertEquals(tokenResponse.getStatus(), 200, "Unexpected response code: " + tokenResponse.getStatus());
+        assertNotNull(tokenResponse.getEntity(), "The entity is null");
+        assertNotNull(tokenResponse.getAccessToken(), "The access token is null");
+        assertNotNull(tokenResponse.getExpiresIn(), "The expires in value is null");
+        assertNotNull(tokenResponse.getTokenType(), "The token type is null");
+        assertNotNull(tokenResponse.getRefreshToken(), "The refresh token is null");
+    }
+
+    @Parameters({"redirectUris", "redirectUri", "userId", "userSecret", "sectorIdentifierUri", "clientJwksUri",
+            "RS512_keyId", "dnName", "keyStoreFile", "keyStoreSecret"})
+    @Test
+    public void supportAuthenticationToTokenEndpointWithAsymmetricallySignedJWTsRS512(
+            final String redirectUris, final String redirectUri, final String userId, final String userSecret,
+            final String sectorIdentifierUri, final String clientJwksUri,
+            final String keyId, final String dnName, final String keyStoreFile, final String keyStoreSecret) throws Exception {
+        showTitle("OC5:FeatureTest-Support Authentication to Token Endpoint with Asymmetrically Signed JWTs (RS512)");
+
+        // 1. Register client
+        RegisterRequest registerRequest = new RegisterRequest(ApplicationType.WEB, "oxAuth test app",
+                StringUtils.spaceSeparatedToList(redirectUris));
+        registerRequest.setTokenEndpointAuthMethod(AuthenticationMethod.PRIVATE_KEY_JWT);
+        registerRequest.setSectorIdentifierUri(sectorIdentifierUri);
+        registerRequest.setJwksUri(clientJwksUri);
+
+        RegisterClient registerClient = new RegisterClient(registrationEndpoint);
+        registerClient.setRequest(registerRequest);
+        RegisterResponse registerResponse = registerClient.exec();
+
+        showClient(registerClient);
+        assertEquals(registerResponse.getStatus(), 200, "Unexpected response code: " + registerResponse.getEntity());
+        assertNotNull(registerResponse.getClientId());
+        assertNotNull(registerResponse.getClientSecret());
+        assertNotNull(registerResponse.getRegistrationAccessToken());
+        assertNotNull(registerResponse.getClientIdIssuedAt());
+        assertNotNull(registerResponse.getClientSecretExpiresAt());
+
+        String clientId = registerResponse.getClientId();
+
+        // 2. Request authorization
+        List<ResponseType> responseTypes = Arrays.asList(ResponseType.CODE);
+        List<String> scopes = Arrays.asList("openid", "profile", "address", "email");
+        String state = UUID.randomUUID().toString();
+
+        AuthorizationRequest authorizationRequest = new AuthorizationRequest(responseTypes, clientId, scopes, redirectUri, null);
+        authorizationRequest.setState(state);
+
+        AuthorizationResponse authorizationResponse = authenticateResourceOwnerAndGrantAccess(
+                authorizationEndpoint, authorizationRequest, userId, userSecret);
+
+        assertNotNull(authorizationResponse.getLocation());
+        assertNotNull(authorizationResponse.getCode());
+        assertNotNull(authorizationResponse.getState());
+
+        String authorizationCode = authorizationResponse.getCode();
+
+        // 3. Get Access Token
+        OxAuthCryptoProvider cryptoProvider = new OxAuthCryptoProvider(keyStoreFile, keyStoreSecret, dnName);
+
+        TokenRequest tokenRequest = new TokenRequest(GrantType.AUTHORIZATION_CODE);
+        tokenRequest.setAuthenticationMethod(AuthenticationMethod.PRIVATE_KEY_JWT);
+        tokenRequest.setAlgorithm(SignatureAlgorithm.RS512);
+        tokenRequest.setCryptoProvider(cryptoProvider);
+        tokenRequest.setKeyId(keyId);
+        tokenRequest.setAudience(tokenEndpoint);
+        tokenRequest.setCode(authorizationCode);
+        tokenRequest.setRedirectUri(redirectUri);
+        tokenRequest.setAuthUsername(clientId);
+
+        TokenClient tokenClient = new TokenClient(tokenEndpoint);
+        tokenClient.setRequest(tokenRequest);
+        TokenResponse tokenResponse = tokenClient.exec();
+
+        showClient(tokenClient);
+        assertEquals(tokenResponse.getStatus(), 200, "Unexpected response code: " + tokenResponse.getStatus());
+        assertNotNull(tokenResponse.getEntity(), "The entity is null");
+        assertNotNull(tokenResponse.getAccessToken(), "The access token is null");
+        assertNotNull(tokenResponse.getExpiresIn(), "The expires in value is null");
+        assertNotNull(tokenResponse.getTokenType(), "The token type is null");
+        assertNotNull(tokenResponse.getRefreshToken(), "The refresh token is null");
+    }
+
+    @Parameters({"redirectUris", "redirectUri", "userId", "userSecret", "sectorIdentifierUri", "clientJwksUri",
+            "ES256_keyId", "dnName", "keyStoreFile", "keyStoreSecret"})
+    @Test
+    public void supportAuthenticationToTokenEndpointWithAsymmetricallySignedJWTsES256(
+            final String redirectUris, final String redirectUri, final String userId, final String userSecret,
+            final String sectorIdentifierUri, final String clientJwksUri,
+            final String keyId, final String dnName, final String keyStoreFile, final String keyStoreSecret) throws Exception {
+        showTitle("OC5:FeatureTest-Support Authentication to Token Endpoint with Asymmetrically Signed JWTs (ES256)");
+
+        // 1. Register client
+        RegisterRequest registerRequest = new RegisterRequest(ApplicationType.WEB, "oxAuth test app",
+                StringUtils.spaceSeparatedToList(redirectUris));
+        registerRequest.setTokenEndpointAuthMethod(AuthenticationMethod.PRIVATE_KEY_JWT);
+        registerRequest.setSectorIdentifierUri(sectorIdentifierUri);
+        registerRequest.setJwksUri(clientJwksUri);
+
+        RegisterClient registerClient = new RegisterClient(registrationEndpoint);
+        registerClient.setRequest(registerRequest);
+        RegisterResponse registerResponse = registerClient.exec();
+
+        showClient(registerClient);
+        assertEquals(registerResponse.getStatus(), 200, "Unexpected response code: " + registerResponse.getEntity());
+        assertNotNull(registerResponse.getClientId());
+        assertNotNull(registerResponse.getClientSecret());
+        assertNotNull(registerResponse.getRegistrationAccessToken());
+        assertNotNull(registerResponse.getClientIdIssuedAt());
+        assertNotNull(registerResponse.getClientSecretExpiresAt());
+
+        String clientId = registerResponse.getClientId();
+
+        // 2. Request authorization
+        List<ResponseType> responseTypes = Arrays.asList(ResponseType.CODE);
+        List<String> scopes = Arrays.asList("openid", "profile", "address", "email");
+        String state = UUID.randomUUID().toString();
+
+        AuthorizationRequest authorizationRequest = new AuthorizationRequest(responseTypes, clientId, scopes, redirectUri, null);
+        authorizationRequest.setState(state);
+
+        AuthorizationResponse authorizationResponse = authenticateResourceOwnerAndGrantAccess(
+                authorizationEndpoint, authorizationRequest, userId, userSecret);
+
+        assertNotNull(authorizationResponse.getLocation());
+        assertNotNull(authorizationResponse.getCode());
+        assertNotNull(authorizationResponse.getState());
+
+        String authorizationCode = authorizationResponse.getCode();
+
+        // 3. Get Access Token
+        OxAuthCryptoProvider cryptoProvider = new OxAuthCryptoProvider(keyStoreFile, keyStoreSecret, dnName);
+
+        TokenRequest tokenRequest = new TokenRequest(GrantType.AUTHORIZATION_CODE);
+        tokenRequest.setAuthenticationMethod(AuthenticationMethod.PRIVATE_KEY_JWT);
+        tokenRequest.setAlgorithm(SignatureAlgorithm.ES256);
+        tokenRequest.setCryptoProvider(cryptoProvider);
+        tokenRequest.setKeyId(keyId);
+        tokenRequest.setAudience(tokenEndpoint);
+        tokenRequest.setCode(authorizationCode);
+        tokenRequest.setRedirectUri(redirectUri);
+        tokenRequest.setAuthUsername(clientId);
+
+        TokenClient tokenClient = new TokenClient(tokenEndpoint);
+        tokenClient.setRequest(tokenRequest);
+        TokenResponse tokenResponse = tokenClient.exec();
+
+        showClient(tokenClient);
+        assertEquals(tokenResponse.getStatus(), 200, "Unexpected response code: " + tokenResponse.getStatus());
+        assertNotNull(tokenResponse.getEntity(), "The entity is null");
+        assertNotNull(tokenResponse.getAccessToken(), "The access token is null");
+        assertNotNull(tokenResponse.getExpiresIn(), "The expires in value is null");
+        assertNotNull(tokenResponse.getTokenType(), "The token type is null");
+        assertNotNull(tokenResponse.getRefreshToken(), "The refresh token is null");
+    }
+
+    @Parameters({"redirectUris", "redirectUri", "userId", "userSecret", "sectorIdentifierUri", "clientJwksUri",
+            "ES384_keyId", "dnName", "keyStoreFile", "keyStoreSecret"})
+    @Test
+    public void supportAuthenticationToTokenEndpointWithAsymmetricallySignedJWTsES384(
+            final String redirectUris, final String redirectUri, final String userId, final String userSecret,
+            final String sectorIdentifierUri, final String clientJwksUri,
+            final String keyId, final String dnName, final String keyStoreFile, final String keyStoreSecret) throws Exception {
+        showTitle("OC5:FeatureTest-Support Authentication to Token Endpoint with Asymmetrically Signed JWTs (ES384)");
+
+        // 1. Register client
+        RegisterRequest registerRequest = new RegisterRequest(ApplicationType.WEB, "oxAuth test app",
+                StringUtils.spaceSeparatedToList(redirectUris));
+        registerRequest.setTokenEndpointAuthMethod(AuthenticationMethod.PRIVATE_KEY_JWT);
+        registerRequest.setSectorIdentifierUri(sectorIdentifierUri);
+        registerRequest.setJwksUri(clientJwksUri);
+
+        RegisterClient registerClient = new RegisterClient(registrationEndpoint);
+        registerClient.setRequest(registerRequest);
+        RegisterResponse registerResponse = registerClient.exec();
+
+        showClient(registerClient);
+        assertEquals(registerResponse.getStatus(), 200, "Unexpected response code: " + registerResponse.getEntity());
+        assertNotNull(registerResponse.getClientId());
+        assertNotNull(registerResponse.getClientSecret());
+        assertNotNull(registerResponse.getRegistrationAccessToken());
+        assertNotNull(registerResponse.getClientIdIssuedAt());
+        assertNotNull(registerResponse.getClientSecretExpiresAt());
+
+        String clientId = registerResponse.getClientId();
+
+        // 2. Request authorization
+        List<ResponseType> responseTypes = Arrays.asList(ResponseType.CODE);
+        List<String> scopes = Arrays.asList("openid", "profile", "address", "email");
+        String state = UUID.randomUUID().toString();
+
+        AuthorizationRequest authorizationRequest = new AuthorizationRequest(responseTypes, clientId, scopes, redirectUri, null);
+        authorizationRequest.setState(state);
+
+        AuthorizationResponse authorizationResponse = authenticateResourceOwnerAndGrantAccess(
+                authorizationEndpoint, authorizationRequest, userId, userSecret);
+
+        assertNotNull(authorizationResponse.getLocation());
+        assertNotNull(authorizationResponse.getCode());
+        assertNotNull(authorizationResponse.getState());
+
+        String authorizationCode = authorizationResponse.getCode();
+
+        // 3. Get Access Token
+        OxAuthCryptoProvider cryptoProvider = new OxAuthCryptoProvider(keyStoreFile, keyStoreSecret, dnName);
+
+        TokenRequest tokenRequest = new TokenRequest(GrantType.AUTHORIZATION_CODE);
+        tokenRequest.setAuthenticationMethod(AuthenticationMethod.PRIVATE_KEY_JWT);
+        tokenRequest.setAlgorithm(SignatureAlgorithm.ES384);
+        tokenRequest.setCryptoProvider(cryptoProvider);
+        tokenRequest.setKeyId(keyId);
+        tokenRequest.setAudience(tokenEndpoint);
+        tokenRequest.setCode(authorizationCode);
+        tokenRequest.setRedirectUri(redirectUri);
+        tokenRequest.setAuthUsername(clientId);
+
+        TokenClient tokenClient = new TokenClient(tokenEndpoint);
+        tokenClient.setRequest(tokenRequest);
+        TokenResponse tokenResponse = tokenClient.exec();
+
+        showClient(tokenClient);
+        assertEquals(tokenResponse.getStatus(), 200, "Unexpected response code: " + tokenResponse.getStatus());
+        assertNotNull(tokenResponse.getEntity(), "The entity is null");
+        assertNotNull(tokenResponse.getAccessToken(), "The access token is null");
+        assertNotNull(tokenResponse.getExpiresIn(), "The expires in value is null");
+        assertNotNull(tokenResponse.getTokenType(), "The token type is null");
+        assertNotNull(tokenResponse.getRefreshToken(), "The refresh token is null");
+    }
+
+    @Parameters({"redirectUris", "redirectUri", "userId", "userSecret", "sectorIdentifierUri", "clientJwksUri",
+            "ES512_keyId", "dnName", "keyStoreFile", "keyStoreSecret"})
+    @Test
+    public void supportAuthenticationToTokenEndpointWithAsymmetricallySignedJWTsES512(
+            final String redirectUris, final String redirectUri, final String userId, final String userSecret,
+            final String sectorIdentifierUri, final String clientJwksUri,
+            final String keyId, final String dnName, final String keyStoreFile, final String keyStoreSecret) throws Exception {
+        showTitle("OC5:FeatureTest-Support Authentication to Token Endpoint with Asymmetrically Signed JWTs (ES512)");
+
+        // 1. Register client
+        RegisterRequest registerRequest = new RegisterRequest(ApplicationType.WEB, "oxAuth test app",
+                StringUtils.spaceSeparatedToList(redirectUris));
+        registerRequest.setTokenEndpointAuthMethod(AuthenticationMethod.PRIVATE_KEY_JWT);
+        registerRequest.setSectorIdentifierUri(sectorIdentifierUri);
+        registerRequest.setJwksUri(clientJwksUri);
+
+        RegisterClient registerClient = new RegisterClient(registrationEndpoint);
+        registerClient.setRequest(registerRequest);
+        RegisterResponse registerResponse = registerClient.exec();
+
+        showClient(registerClient);
+        assertEquals(registerResponse.getStatus(), 200, "Unexpected response code: " + registerResponse.getEntity());
+        assertNotNull(registerResponse.getClientId());
+        assertNotNull(registerResponse.getClientSecret());
+        assertNotNull(registerResponse.getRegistrationAccessToken());
+        assertNotNull(registerResponse.getClientIdIssuedAt());
+        assertNotNull(registerResponse.getClientSecretExpiresAt());
+
+        String clientId = registerResponse.getClientId();
+
+        // 2. Request authorization
+        List<ResponseType> responseTypes = Arrays.asList(ResponseType.CODE);
+        List<String> scopes = Arrays.asList("openid", "profile", "address", "email");
+        String state = UUID.randomUUID().toString();
+
+        AuthorizationRequest authorizationRequest = new AuthorizationRequest(responseTypes, clientId, scopes, redirectUri, null);
+        authorizationRequest.setState(state);
+
+        AuthorizationResponse authorizationResponse = authenticateResourceOwnerAndGrantAccess(
+                authorizationEndpoint, authorizationRequest, userId, userSecret);
+
+        assertNotNull(authorizationResponse.getLocation());
+        assertNotNull(authorizationResponse.getCode());
+        assertNotNull(authorizationResponse.getState());
+
+        String authorizationCode = authorizationResponse.getCode();
+
+        // 3. Get Access Token
+        OxAuthCryptoProvider cryptoProvider = new OxAuthCryptoProvider(keyStoreFile, keyStoreSecret, dnName);
+
+        TokenRequest tokenRequest = new TokenRequest(GrantType.AUTHORIZATION_CODE);
+        tokenRequest.setAuthenticationMethod(AuthenticationMethod.PRIVATE_KEY_JWT);
+        tokenRequest.setAlgorithm(SignatureAlgorithm.ES512);
+        tokenRequest.setCryptoProvider(cryptoProvider);
+        tokenRequest.setKeyId(keyId);
+        tokenRequest.setAudience(tokenEndpoint);
+        tokenRequest.setCode(authorizationCode);
+        tokenRequest.setRedirectUri(redirectUri);
+        tokenRequest.setAuthUsername(clientId);
+
+        TokenClient tokenClient = new TokenClient(tokenEndpoint);
+        tokenClient.setRequest(tokenRequest);
+        TokenResponse tokenResponse = tokenClient.exec();
+
+        showClient(tokenClient);
+        assertEquals(tokenResponse.getStatus(), 200, "Unexpected response code: " + tokenResponse.getStatus());
+        assertNotNull(tokenResponse.getEntity(), "The entity is null");
+        assertNotNull(tokenResponse.getAccessToken(), "The access token is null");
+        assertNotNull(tokenResponse.getExpiresIn(), "The expires in value is null");
+        assertNotNull(tokenResponse.getTokenType(), "The token type is null");
+        assertNotNull(tokenResponse.getRefreshToken(), "The refresh token is null");
+    }
+}
\ No newline at end of file
diff --git a/oxAuth/Client/src/test/java/org/gluu/oxauth/interop/SupportAuthenticationToTokenEndpointWithSymmetricallySignedJWTs.java b/oxAuth/Client/src/test/java/org/gluu/oxauth/interop/SupportAuthenticationToTokenEndpointWithSymmetricallySignedJWTs.java
new file mode 100644
index 00000000..e9a5a384
--- /dev/null
+++ b/oxAuth/Client/src/test/java/org/gluu/oxauth/interop/SupportAuthenticationToTokenEndpointWithSymmetricallySignedJWTs.java
@@ -0,0 +1,254 @@
+/*
+ * oxAuth is available under the MIT License (2008). See http://opensource.org/licenses/MIT for full text.
+ *
+ * Copyright (c) 2014, Gluu
+ */
+
+package org.gluu.oxauth.interop;
+
+import static org.testng.Assert.assertEquals;
+import static org.testng.Assert.assertNotNull;
+
+import java.util.Arrays;
+import java.util.List;
+import java.util.UUID;
+
+import org.gluu.oxauth.BaseTest;
+import org.gluu.oxauth.client.AuthorizationRequest;
+import org.gluu.oxauth.client.AuthorizationResponse;
+import org.gluu.oxauth.client.RegisterClient;
+import org.gluu.oxauth.client.RegisterRequest;
+import org.gluu.oxauth.client.RegisterResponse;
+import org.gluu.oxauth.client.TokenClient;
+import org.gluu.oxauth.client.TokenRequest;
+import org.gluu.oxauth.client.TokenResponse;
+import org.gluu.oxauth.model.common.AuthenticationMethod;
+import org.gluu.oxauth.model.common.GrantType;
+import org.gluu.oxauth.model.common.ResponseType;
+import org.gluu.oxauth.model.crypto.OxAuthCryptoProvider;
+import org.gluu.oxauth.model.crypto.signature.SignatureAlgorithm;
+import org.gluu.oxauth.model.register.ApplicationType;
+import org.gluu.oxauth.model.util.StringUtils;
+import org.testng.annotations.Parameters;
+import org.testng.annotations.Test;
+
+/**
+ * OC5:FeatureTest-Support Authentication to Token Endpoint with Symmetrically Signed JWTs
+ *
+ * @author Javier Rojas Blum
+ * @version June 17, 2016
+ */
+public class SupportAuthenticationToTokenEndpointWithSymmetricallySignedJWTs extends BaseTest {
+
+    @Parameters({"redirectUris", "redirectUri", "userId", "userSecret", "sectorIdentifierUri"})
+    @Test
+    public void supportAuthenticationToTokenEndpointWithSymmetricallySignedJWTsHS256(
+            final String redirectUris, final String redirectUri, final String userId, final String userSecret,
+            final String sectorIdentifierUri) throws Exception {
+        showTitle("OC5:FeatureTest-Support Authentication to Token Endpoint with Symmetrically Signed JWTs (HS256)");
+
+        // 1. Register client
+        RegisterRequest registerRequest = new RegisterRequest(ApplicationType.WEB, "oxAuth test app",
+                StringUtils.spaceSeparatedToList(redirectUris));
+        registerRequest.setTokenEndpointAuthMethod(AuthenticationMethod.CLIENT_SECRET_JWT);
+        registerRequest.setSectorIdentifierUri(sectorIdentifierUri);
+
+        RegisterClient registerClient = new RegisterClient(registrationEndpoint);
+        registerClient.setRequest(registerRequest);
+        RegisterResponse registerResponse = registerClient.exec();
+
+        showClient(registerClient);
+        assertEquals(registerResponse.getStatus(), 200, "Unexpected response code: " + registerResponse.getEntity());
+        assertNotNull(registerResponse.getClientId());
+        assertNotNull(registerResponse.getClientSecret());
+        assertNotNull(registerResponse.getRegistrationAccessToken());
+        assertNotNull(registerResponse.getClientIdIssuedAt());
+        assertNotNull(registerResponse.getClientSecretExpiresAt());
+
+        String clientId = registerResponse.getClientId();
+        String clientSecret = registerResponse.getClientSecret();
+
+        // 2. Request authorization
+        List<ResponseType> responseTypes = Arrays.asList(ResponseType.CODE);
+        List<String> scopes = Arrays.asList("openid", "profile", "address", "email");
+        String state = UUID.randomUUID().toString();
+
+        AuthorizationRequest authorizationRequest = new AuthorizationRequest(responseTypes, clientId, scopes, redirectUri, null);
+        authorizationRequest.setState(state);
+
+        AuthorizationResponse authorizationResponse = authenticateResourceOwnerAndGrantAccess(
+                authorizationEndpoint, authorizationRequest, userId, userSecret);
+
+        assertNotNull(authorizationResponse.getLocation());
+        assertNotNull(authorizationResponse.getCode());
+        assertNotNull(authorizationResponse.getState());
+
+        String authorizationCode = authorizationResponse.getCode();
+
+        // 3. Get Access Token
+        OxAuthCryptoProvider cryptoProvider = new OxAuthCryptoProvider();
+
+        TokenRequest tokenRequest = new TokenRequest(GrantType.AUTHORIZATION_CODE);
+        tokenRequest.setAuthenticationMethod(AuthenticationMethod.CLIENT_SECRET_JWT);
+        tokenRequest.setCryptoProvider(cryptoProvider);
+        tokenRequest.setAudience(tokenEndpoint);
+        tokenRequest.setCode(authorizationCode);
+        tokenRequest.setRedirectUri(redirectUri);
+        tokenRequest.setAuthUsername(clientId);
+        tokenRequest.setAuthPassword(clientSecret);
+
+        TokenClient tokenClient = new TokenClient(tokenEndpoint);
+        tokenClient.setRequest(tokenRequest);
+        TokenResponse tokenResponse = tokenClient.exec();
+
+        showClient(tokenClient);
+        assertEquals(tokenResponse.getStatus(), 200, "Unexpected response code: " + tokenResponse.getStatus());
+        assertNotNull(tokenResponse.getEntity(), "The entity is null");
+        assertNotNull(tokenResponse.getAccessToken(), "The access token is null");
+        assertNotNull(tokenResponse.getExpiresIn(), "The expires in value is null");
+        assertNotNull(tokenResponse.getTokenType(), "The token type is null");
+        assertNotNull(tokenResponse.getRefreshToken(), "The refresh token is null");
+    }
+
+    @Parameters({"redirectUris", "redirectUri", "userId", "userSecret", "sectorIdentifierUri"})
+    @Test
+    public void supportAuthenticationToTokenEndpointWithSymmetricallySignedJWTsHS384(
+            final String redirectUris, final String redirectUri, final String userId, final String userSecret,
+            final String sectorIdentifierUri) throws Exception {
+        showTitle("OC5:FeatureTest-Support Authentication to Token Endpoint with Symmetrically Signed JWTs (HS384)");
+
+        // 1. Register client
+        RegisterRequest registerRequest = new RegisterRequest(ApplicationType.WEB, "oxAuth test app",
+                StringUtils.spaceSeparatedToList(redirectUris));
+        registerRequest.setTokenEndpointAuthMethod(AuthenticationMethod.CLIENT_SECRET_JWT);
+        registerRequest.setSectorIdentifierUri(sectorIdentifierUri);
+
+        RegisterClient registerClient = new RegisterClient(registrationEndpoint);
+        registerClient.setRequest(registerRequest);
+        RegisterResponse registerResponse = registerClient.exec();
+
+        showClient(registerClient);
+        assertEquals(registerResponse.getStatus(), 200, "Unexpected response code: " + registerResponse.getEntity());
+        assertNotNull(registerResponse.getClientId());
+        assertNotNull(registerResponse.getClientSecret());
+        assertNotNull(registerResponse.getRegistrationAccessToken());
+        assertNotNull(registerResponse.getClientIdIssuedAt());
+        assertNotNull(registerResponse.getClientSecretExpiresAt());
+
+        String clientId = registerResponse.getClientId();
+        String clientSecret = registerResponse.getClientSecret();
+
+        // 2. Request authorization
+        List<ResponseType> responseTypes = Arrays.asList(ResponseType.CODE);
+        List<String> scopes = Arrays.asList("openid", "profile", "address", "email");
+        String state = UUID.randomUUID().toString();
+
+        AuthorizationRequest authorizationRequest = new AuthorizationRequest(responseTypes, clientId, scopes, redirectUri, null);
+        authorizationRequest.setState(state);
+
+        AuthorizationResponse authorizationResponse = authenticateResourceOwnerAndGrantAccess(
+                authorizationEndpoint, authorizationRequest, userId, userSecret);
+
+        assertNotNull(authorizationResponse.getLocation());
+        assertNotNull(authorizationResponse.getCode());
+        assertNotNull(authorizationResponse.getState());
+
+        String authorizationCode = authorizationResponse.getCode();
+
+        // 3. Get Access Token
+        OxAuthCryptoProvider cryptoProvider = new OxAuthCryptoProvider();
+
+        TokenRequest tokenRequest = new TokenRequest(GrantType.AUTHORIZATION_CODE);
+        tokenRequest.setAuthenticationMethod(AuthenticationMethod.CLIENT_SECRET_JWT);
+        tokenRequest.setCryptoProvider(cryptoProvider);
+        tokenRequest.setAlgorithm(SignatureAlgorithm.HS384);
+        tokenRequest.setAudience(tokenEndpoint);
+        tokenRequest.setCode(authorizationCode);
+        tokenRequest.setRedirectUri(redirectUri);
+        tokenRequest.setAuthUsername(clientId);
+        tokenRequest.setAuthPassword(clientSecret);
+
+        TokenClient tokenClient = new TokenClient(tokenEndpoint);
+        tokenClient.setRequest(tokenRequest);
+        TokenResponse tokenResponse = tokenClient.exec();
+
+        showClient(tokenClient);
+        assertEquals(tokenResponse.getStatus(), 200, "Unexpected response code: " + tokenResponse.getStatus());
+        assertNotNull(tokenResponse.getEntity(), "The entity is null");
+        assertNotNull(tokenResponse.getAccessToken(), "The access token is null");
+        assertNotNull(tokenResponse.getExpiresIn(), "The expires in value is null");
+        assertNotNull(tokenResponse.getTokenType(), "The token type is null");
+        assertNotNull(tokenResponse.getRefreshToken(), "The refresh token is null");
+    }
+
+    @Parameters({"redirectUris", "redirectUri", "userId", "userSecret", "sectorIdentifierUri"})
+    @Test
+    public void supportAuthenticationToTokenEndpointWithSymmetricallySignedJWTsHS512(
+            final String redirectUris, final String redirectUri, final String userId, final String userSecret,
+            final String sectorIdentifierUri) throws Exception {
+        showTitle("OC5:FeatureTest-Support Authentication to Token Endpoint with Symmetrically Signed JWTs (HS512)");
+
+        // 1. Register client
+        RegisterRequest registerRequest = new RegisterRequest(ApplicationType.WEB, "oxAuth test app",
+                StringUtils.spaceSeparatedToList(redirectUris));
+        registerRequest.setTokenEndpointAuthMethod(AuthenticationMethod.CLIENT_SECRET_JWT);
+        registerRequest.setSectorIdentifierUri(sectorIdentifierUri);
+
+        RegisterClient registerClient = new RegisterClient(registrationEndpoint);
+        registerClient.setRequest(registerRequest);
+        RegisterResponse registerResponse = registerClient.exec();
+
+        showClient(registerClient);
+        assertEquals(registerResponse.getStatus(), 200, "Unexpected response code: " + registerResponse.getEntity());
+        assertNotNull(registerResponse.getClientId());
+        assertNotNull(registerResponse.getClientSecret());
+        assertNotNull(registerResponse.getRegistrationAccessToken());
+        assertNotNull(registerResponse.getClientIdIssuedAt());
+        assertNotNull(registerResponse.getClientSecretExpiresAt());
+
+        String clientId = registerResponse.getClientId();
+        String clientSecret = registerResponse.getClientSecret();
+
+        // 2. Request authorization
+        List<ResponseType> responseTypes = Arrays.asList(ResponseType.CODE);
+        List<String> scopes = Arrays.asList("openid", "profile", "address", "email");
+        String state = UUID.randomUUID().toString();
+
+        AuthorizationRequest authorizationRequest = new AuthorizationRequest(responseTypes, clientId, scopes, redirectUri, null);
+        authorizationRequest.setState(state);
+
+        AuthorizationResponse authorizationResponse = authenticateResourceOwnerAndGrantAccess(
+                authorizationEndpoint, authorizationRequest, userId, userSecret);
+
+        assertNotNull(authorizationResponse.getLocation());
+        assertNotNull(authorizationResponse.getCode());
+        assertNotNull(authorizationResponse.getState());
+
+        String authorizationCode = authorizationResponse.getCode();
+
+        // 3. Get Access Token
+        OxAuthCryptoProvider cryptoProvider = new OxAuthCryptoProvider();
+
+        TokenRequest tokenRequest = new TokenRequest(GrantType.AUTHORIZATION_CODE);
+        tokenRequest.setAuthenticationMethod(AuthenticationMethod.CLIENT_SECRET_JWT);
+        tokenRequest.setCryptoProvider(cryptoProvider);
+        tokenRequest.setAlgorithm(SignatureAlgorithm.HS512);
+        tokenRequest.setAudience(tokenEndpoint);
+        tokenRequest.setCode(authorizationCode);
+        tokenRequest.setRedirectUri(redirectUri);
+        tokenRequest.setAuthUsername(clientId);
+        tokenRequest.setAuthPassword(clientSecret);
+
+        TokenClient tokenClient = new TokenClient(tokenEndpoint);
+        tokenClient.setRequest(tokenRequest);
+        TokenResponse tokenResponse = tokenClient.exec();
+
+        showClient(tokenClient);
+        assertEquals(tokenResponse.getStatus(), 200, "Unexpected response code: " + tokenResponse.getStatus());
+        assertNotNull(tokenResponse.getEntity(), "The entity is null");
+        assertNotNull(tokenResponse.getAccessToken(), "The access token is null");
+        assertNotNull(tokenResponse.getExpiresIn(), "The expires in value is null");
+        assertNotNull(tokenResponse.getTokenType(), "The token type is null");
+        assertNotNull(tokenResponse.getRefreshToken(), "The refresh token is null");
+    }
+}
\ No newline at end of file
diff --git a/oxAuth/Client/src/test/java/org/gluu/oxauth/interop/SupportClaimsRequestSpecifyingSubValue.java b/oxAuth/Client/src/test/java/org/gluu/oxauth/interop/SupportClaimsRequestSpecifyingSubValue.java
new file mode 100644
index 00000000..38bf2e6f
--- /dev/null
+++ b/oxAuth/Client/src/test/java/org/gluu/oxauth/interop/SupportClaimsRequestSpecifyingSubValue.java
@@ -0,0 +1,229 @@
+/*
+ * oxAuth is available under the MIT License (2008). See http://opensource.org/licenses/MIT for full text.
+ *
+ * Copyright (c) 2014, Gluu
+ */
+
+package org.gluu.oxauth.interop;
+
+import static org.testng.Assert.assertEquals;
+import static org.testng.Assert.assertNotNull;
+import static org.testng.Assert.assertTrue;
+
+import java.util.Arrays;
+import java.util.List;
+import java.util.UUID;
+
+import org.gluu.oxauth.BaseTest;
+import org.gluu.oxauth.client.AuthorizationRequest;
+import org.gluu.oxauth.client.AuthorizationResponse;
+import org.gluu.oxauth.client.AuthorizeClient;
+import org.gluu.oxauth.client.JwkClient;
+import org.gluu.oxauth.client.RegisterClient;
+import org.gluu.oxauth.client.RegisterRequest;
+import org.gluu.oxauth.client.RegisterResponse;
+import org.gluu.oxauth.client.UserInfoClient;
+import org.gluu.oxauth.client.UserInfoResponse;
+import org.gluu.oxauth.client.model.authorize.Claim;
+import org.gluu.oxauth.client.model.authorize.ClaimValue;
+import org.gluu.oxauth.client.model.authorize.JwtAuthorizationRequest;
+import org.gluu.oxauth.model.authorize.AuthorizeErrorResponseType;
+import org.gluu.oxauth.model.common.Prompt;
+import org.gluu.oxauth.model.common.ResponseType;
+import org.gluu.oxauth.model.crypto.OxAuthCryptoProvider;
+import org.gluu.oxauth.model.crypto.signature.RSAPublicKey;
+import org.gluu.oxauth.model.crypto.signature.SignatureAlgorithm;
+import org.gluu.oxauth.model.jws.RSASigner;
+import org.gluu.oxauth.model.jwt.Jwt;
+import org.gluu.oxauth.model.jwt.JwtClaimName;
+import org.gluu.oxauth.model.jwt.JwtHeaderName;
+import org.gluu.oxauth.model.register.ApplicationType;
+import org.gluu.oxauth.model.util.StringUtils;
+import org.testng.annotations.Parameters;
+import org.testng.annotations.Test;
+
+/**
+ * OC5:FeatureTest-Support claims Request Specifying sub Value
+ * If that user is logged in, the request succeeds, otherwise it fails.
+ *
+ * @author Javier Rojas Blum
+ * @version May 30, 2018
+ */
+public class SupportClaimsRequestSpecifyingSubValue extends BaseTest {
+
+    @Parameters({"userId", "userSecret", "redirectUri", "redirectUris", "sectorIdentifierUri"})
+    @Test
+    public void supportClaimsRequestSpecifyingSubValueSucceed(
+            final String userId, final String userSecret, final String redirectUri, final String redirectUris,
+            final String sectorIdentifierUri) throws Exception {
+        showTitle("OC5:FeatureTest-Support claims Request Specifying sub Value (succeed)");
+
+        List<ResponseType> responseTypes = Arrays.asList(ResponseType.TOKEN, ResponseType.ID_TOKEN);
+
+        // 1. Register client
+        RegisterRequest registerRequest = new RegisterRequest(ApplicationType.WEB, "oxAuth test app",
+                StringUtils.spaceSeparatedToList(redirectUris));
+        registerRequest.setResponseTypes(responseTypes);
+        registerRequest.setSectorIdentifierUri(sectorIdentifierUri);
+        registerRequest.setClaims(Arrays.asList(
+                JwtClaimName.GIVEN_NAME,
+                JwtClaimName.FAMILY_NAME));
+
+        RegisterClient registerClient = new RegisterClient(registrationEndpoint);
+        registerClient.setRequest(registerRequest);
+        RegisterResponse registerResponse = registerClient.exec();
+
+        showClient(registerClient);
+        assertEquals(registerResponse.getStatus(), 200, "Unexpected response code: " + registerResponse.getEntity());
+        assertNotNull(registerResponse.getClientId());
+        assertNotNull(registerResponse.getClientSecret());
+        assertNotNull(registerResponse.getRegistrationAccessToken());
+        assertNotNull(registerResponse.getClientIdIssuedAt());
+        assertNotNull(registerResponse.getClientSecretExpiresAt());
+
+        String clientId = registerResponse.getClientId();
+        String clientSecret = registerResponse.getClientSecret();
+
+        List<String> scopes = Arrays.asList("openid", "email");
+        String nonce = UUID.randomUUID().toString();
+        String state = UUID.randomUUID().toString();
+
+        // 2. Request authorization (first time)
+        AuthorizationRequest authorizationRequest1 = new AuthorizationRequest(responseTypes, clientId, scopes, redirectUri, nonce);
+        authorizationRequest1.setState(state);
+
+        AuthorizeClient authorizeClient1 = new AuthorizeClient(authorizationEndpoint);
+        authorizeClient1.setRequest(authorizationRequest1);
+
+        AuthorizationResponse authorizationResponse1 = authenticateResourceOwnerAndGrantAccess(
+                authorizationEndpoint, authorizationRequest1, userId, userSecret);
+
+        assertNotNull(authorizationResponse1.getLocation(), "The location is null");
+        assertNotNull(authorizationResponse1.getIdToken(), "The ID Token is null");
+        assertNotNull(authorizationResponse1.getAccessToken(), "The Access Token is null");
+        assertNotNull(authorizationResponse1.getState(), "The state is null");
+        assertNotNull(authorizationResponse1.getScope(), "The scope is null");
+
+        String sessionId = authorizationResponse1.getSessionId();
+
+        // 3. Request authorization
+        OxAuthCryptoProvider cryptoProvider = new OxAuthCryptoProvider();
+
+        AuthorizationRequest authorizationRequest2 = new AuthorizationRequest(responseTypes, clientId, scopes, redirectUri, nonce);
+        authorizationRequest2.getPrompts().add(Prompt.NONE);
+        authorizationRequest2.setState(state);
+        authorizationRequest2.setSessionId(sessionId);
+
+        JwtAuthorizationRequest jwtAuthorizationRequest = new JwtAuthorizationRequest(
+                authorizationRequest2, SignatureAlgorithm.HS256, clientSecret, cryptoProvider);
+        jwtAuthorizationRequest.addUserInfoClaim(new Claim(JwtClaimName.GIVEN_NAME, ClaimValue.createNull()));
+        jwtAuthorizationRequest.addUserInfoClaim(new Claim(JwtClaimName.FAMILY_NAME, ClaimValue.createNull()));
+        jwtAuthorizationRequest.addIdTokenClaim(new Claim(JwtClaimName.SUBJECT_IDENTIFIER, ClaimValue.createSingleValue(userId)));
+
+        String authJwt = jwtAuthorizationRequest.getEncodedJwt();
+        authorizationRequest2.setRequest(authJwt);
+
+        AuthorizeClient authorizeClient2 = new AuthorizeClient(authorizationEndpoint);
+        authorizeClient2.setRequest(authorizationRequest2);
+        AuthorizationResponse authorizationResponse2 = authorizeClient2.exec();
+
+        assertNotNull(authorizationResponse2.getLocation(), "The location is null");
+        assertNotNull(authorizationResponse2.getAccessToken(), "The accessToken is null");
+        assertNotNull(authorizationResponse2.getTokenType(), "The tokenType is null");
+        assertNotNull(authorizationResponse2.getIdToken(), "The idToken is null");
+        assertNotNull(authorizationResponse2.getState(), "The state is null");
+
+        String idToken = authorizationResponse2.getIdToken();
+        String accessToken = authorizationResponse2.getAccessToken();
+
+        // 4. Validate id_token
+        Jwt jwt = Jwt.parse(idToken);
+        assertNotNull(jwt.getHeader().getClaimAsString(JwtHeaderName.TYPE));
+        assertNotNull(jwt.getHeader().getClaimAsString(JwtHeaderName.ALGORITHM));
+        assertNotNull(jwt.getClaims().getClaimAsString(JwtClaimName.ISSUER));
+        assertNotNull(jwt.getClaims().getClaimAsString(JwtClaimName.AUDIENCE));
+        assertNotNull(jwt.getClaims().getClaimAsString(JwtClaimName.EXPIRATION_TIME));
+        assertNotNull(jwt.getClaims().getClaimAsString(JwtClaimName.ISSUED_AT));
+        assertNotNull(jwt.getClaims().getClaimAsString(JwtClaimName.SUBJECT_IDENTIFIER));
+        assertNotNull(jwt.getClaims().getClaimAsString(JwtClaimName.ACCESS_TOKEN_HASH));
+        assertNotNull(jwt.getClaims().getClaimAsString(JwtClaimName.AUTHENTICATION_TIME));
+
+        RSAPublicKey publicKey = JwkClient.getRSAPublicKey(
+                jwksUri,
+                jwt.getHeader().getClaimAsString(JwtHeaderName.KEY_ID));
+        RSASigner rsaSigner = new RSASigner(SignatureAlgorithm.RS256, publicKey);
+
+        assertTrue(rsaSigner.validate(jwt));
+
+        // 5. Request user info
+        UserInfoClient userInfoClient = new UserInfoClient(userInfoEndpoint);
+        UserInfoResponse userInfoResponse = userInfoClient.execUserInfo(accessToken);
+
+        showClient(userInfoClient);
+        assertEquals(userInfoResponse.getStatus(), 200, "Unexpected response code: " + userInfoResponse.getStatus());
+        assertNotNull(userInfoResponse.getClaim(JwtClaimName.SUBJECT_IDENTIFIER));
+        assertNotNull(userInfoResponse.getClaim(JwtClaimName.EMAIL));
+        assertNotNull(userInfoResponse.getClaim(JwtClaimName.GIVEN_NAME));
+        assertNotNull(userInfoResponse.getClaim(JwtClaimName.FAMILY_NAME));
+    }
+
+    @Parameters({"userId", "userSecret", "redirectUri", "redirectUris", "sectorIdentifierUri"})
+    @Test
+    public void supportClaimsRequestSpecifyingSubValueFail(
+            final String userId, final String userSecret, final String redirectUri, final String redirectUris,
+            final String sectorIdentifierUri) throws Exception {
+        showTitle("OC5:FeatureTest-Support claims Request Specifying sub Value (fail)");
+
+        List<ResponseType> responseTypes = Arrays.asList(ResponseType.TOKEN, ResponseType.ID_TOKEN);
+
+        // 1. Register client
+        RegisterRequest registerRequest = new RegisterRequest(ApplicationType.WEB, "oxAuth test app",
+                StringUtils.spaceSeparatedToList(redirectUris));
+        registerRequest.setResponseTypes(responseTypes);
+        registerRequest.setSectorIdentifierUri(sectorIdentifierUri);
+
+        RegisterClient registerClient = new RegisterClient(registrationEndpoint);
+        registerClient.setRequest(registerRequest);
+        RegisterResponse registerResponse = registerClient.exec();
+
+        showClient(registerClient);
+        assertEquals(registerResponse.getStatus(), 200, "Unexpected response code: " + registerResponse.getEntity());
+        assertNotNull(registerResponse.getClientId());
+        assertNotNull(registerResponse.getClientSecret());
+        assertNotNull(registerResponse.getRegistrationAccessToken());
+        assertNotNull(registerResponse.getClientIdIssuedAt());
+        assertNotNull(registerResponse.getClientSecretExpiresAt());
+
+        String clientId = registerResponse.getClientId();
+        String clientSecret = registerResponse.getClientSecret();
+
+        // 2. Request authorization
+        OxAuthCryptoProvider cryptoProvider = new OxAuthCryptoProvider();
+
+        List<String> scopes = Arrays.asList("openid", "email");
+        String nonce = UUID.randomUUID().toString();
+        String state = UUID.randomUUID().toString();
+
+        AuthorizationRequest authorizationRequest = new AuthorizationRequest(responseTypes, clientId, scopes, redirectUri, nonce);
+        authorizationRequest.setState(state);
+
+        JwtAuthorizationRequest jwtAuthorizationRequest = new JwtAuthorizationRequest(
+                authorizationRequest, SignatureAlgorithm.HS256, clientSecret, cryptoProvider);
+        jwtAuthorizationRequest.addUserInfoClaim(new Claim(JwtClaimName.GIVEN_NAME, ClaimValue.createNull()));
+        jwtAuthorizationRequest.addUserInfoClaim(new Claim(JwtClaimName.FAMILY_NAME, ClaimValue.createNull()));
+        jwtAuthorizationRequest.addIdTokenClaim(new Claim(JwtClaimName.SUBJECT_IDENTIFIER, ClaimValue.createSingleValue("WRONG_USER_ID")));
+
+        String authJwt = jwtAuthorizationRequest.getEncodedJwt();
+        authorizationRequest.setRequest(authJwt);
+
+        AuthorizeClient authorizeClient = new AuthorizeClient(authorizationEndpoint);
+        authorizeClient.setRequest(authorizationRequest);
+
+        AuthorizationResponse authorizationResponse = authenticateResourceOwnerAndGrantAccess(
+                authorizationEndpoint, authorizationRequest, userId, userSecret);
+
+        assertNotNull(authorizationResponse.getErrorType(), "The error type is null");
+        assertEquals(authorizationResponse.getErrorType(), AuthorizeErrorResponseType.USER_MISMATCHED);
+        assertNotNull(authorizationResponse.getErrorDescription(), "The error description is null");
+    }
+}
\ No newline at end of file
diff --git a/oxAuth/Client/src/test/java/org/gluu/oxauth/interop/SupportCodeResponseType.java b/oxAuth/Client/src/test/java/org/gluu/oxauth/interop/SupportCodeResponseType.java
new file mode 100644
index 00000000..d06c24d9
--- /dev/null
+++ b/oxAuth/Client/src/test/java/org/gluu/oxauth/interop/SupportCodeResponseType.java
@@ -0,0 +1,81 @@
+/*
+ * oxAuth is available under the MIT License (2008). See http://opensource.org/licenses/MIT for full text.
+ *
+ * Copyright (c) 2014, Gluu
+ */
+
+package org.gluu.oxauth.interop;
+
+import static org.testng.Assert.assertEquals;
+import static org.testng.Assert.assertNotNull;
+
+import java.util.Arrays;
+import java.util.List;
+import java.util.UUID;
+
+import org.gluu.oxauth.BaseTest;
+import org.gluu.oxauth.client.AuthorizationRequest;
+import org.gluu.oxauth.client.AuthorizationResponse;
+import org.gluu.oxauth.client.RegisterClient;
+import org.gluu.oxauth.client.RegisterRequest;
+import org.gluu.oxauth.client.RegisterResponse;
+import org.gluu.oxauth.model.common.ResponseType;
+import org.gluu.oxauth.model.register.ApplicationType;
+import org.gluu.oxauth.model.util.StringUtils;
+import org.testng.annotations.Parameters;
+import org.testng.annotations.Test;
+
+/**
+ * OC5:FeatureTest-Support code Response Type
+ *
+ * @author Javier Rojas Blum
+ * @version June 19, 2015
+ */
+public class SupportCodeResponseType extends BaseTest {
+
+    @Parameters({"userId", "userSecret", "redirectUris", "redirectUri", "sectorIdentifierUri"})
+    @Test
+    public void supportCodeResponseType(
+            final String userId, final String userSecret, final String redirectUris, final String redirectUri,
+            final String sectorIdentifierUri) throws Exception {
+        showTitle("OC5:FeatureTest-Support code Response Type");
+
+        List<ResponseType> responseTypes = Arrays.asList(ResponseType.CODE);
+
+        // 1. Register client
+        RegisterRequest registerRequest = new RegisterRequest(ApplicationType.WEB, "oxAuth test app",
+                StringUtils.spaceSeparatedToList(redirectUris));
+        registerRequest.setResponseTypes(responseTypes);
+        registerRequest.setSectorIdentifierUri(sectorIdentifierUri);
+
+        RegisterClient registerClient = new RegisterClient(registrationEndpoint);
+        registerClient.setRequest(registerRequest);
+        RegisterResponse registerResponse = registerClient.exec();
+
+        showClient(registerClient);
+        assertEquals(registerResponse.getStatus(), 200, "Unexpected response code: " + registerResponse.getEntity());
+        assertNotNull(registerResponse.getClientId());
+        assertNotNull(registerResponse.getClientSecret());
+        assertNotNull(registerResponse.getRegistrationAccessToken());
+        assertNotNull(registerResponse.getClientIdIssuedAt());
+        assertNotNull(registerResponse.getClientSecretExpiresAt());
+
+        String clientId = registerResponse.getClientId();
+        String registrationAccessToken = registerResponse.getRegistrationAccessToken();
+
+        // 2. Request authorization
+        List<String> scopes = Arrays.asList("openid", "profile", "address", "email");
+        String nonce = UUID.randomUUID().toString();
+        String state = UUID.randomUUID().toString();
+
+        AuthorizationRequest authorizationRequest = new AuthorizationRequest(responseTypes, clientId, scopes, redirectUri, nonce);
+        authorizationRequest.setState(state);
+
+        AuthorizationResponse authorizationResponse = authenticateResourceOwnerAndGrantAccess(
+                authorizationEndpoint, authorizationRequest, userId, userSecret);
+
+        assertNotNull(authorizationResponse.getLocation());
+        assertNotNull(authorizationResponse.getCode());
+        assertNotNull(authorizationResponse.getState());
+    }
+}
\ No newline at end of file
diff --git a/oxAuth/Client/src/test/java/org/gluu/oxauth/interop/SupportCombinationOfCodeIdTokenTokenResponseTypes.java b/oxAuth/Client/src/test/java/org/gluu/oxauth/interop/SupportCombinationOfCodeIdTokenTokenResponseTypes.java
new file mode 100644
index 00000000..91799031
--- /dev/null
+++ b/oxAuth/Client/src/test/java/org/gluu/oxauth/interop/SupportCombinationOfCodeIdTokenTokenResponseTypes.java
@@ -0,0 +1,81 @@
+/*
+ * oxAuth is available under the MIT License (2008). See http://opensource.org/licenses/MIT for full text.
+ *
+ * Copyright (c) 2014, Gluu
+ */
+
+package org.gluu.oxauth.interop;
+
+import static org.testng.Assert.assertEquals;
+import static org.testng.Assert.assertNotNull;
+
+import java.util.Arrays;
+import java.util.List;
+import java.util.UUID;
+
+import org.gluu.oxauth.BaseTest;
+import org.gluu.oxauth.client.AuthorizationRequest;
+import org.gluu.oxauth.client.AuthorizationResponse;
+import org.gluu.oxauth.client.RegisterClient;
+import org.gluu.oxauth.client.RegisterRequest;
+import org.gluu.oxauth.client.RegisterResponse;
+import org.gluu.oxauth.model.common.ResponseType;
+import org.gluu.oxauth.model.register.ApplicationType;
+import org.gluu.oxauth.model.util.StringUtils;
+import org.testng.annotations.Parameters;
+import org.testng.annotations.Test;
+
+/**
+ * OC5:FeatureTest-Support Combination of code id token token Response Types
+ *
+ * @author Javier Rojas Blum
+ * @version June 19, 2015
+ */
+public class SupportCombinationOfCodeIdTokenTokenResponseTypes extends BaseTest {
+
+    @Parameters({"userId", "userSecret", "redirectUris", "redirectUri", "sectorIdentifierUri"})
+    @Test
+    public void supportCombinationOfCodeIdTokenTokenResponseTypes(
+            final String userId, final String userSecret, final String redirectUris, final String redirectUri,
+            final String sectorIdentifierUri) throws Exception {
+        showTitle("OC5:FeatureTest-Support Combination of code id token token Response Types");
+
+        List<ResponseType> responseTypes = Arrays.asList(ResponseType.CODE, ResponseType.ID_TOKEN, ResponseType.TOKEN);
+
+        // 1. Register client
+        RegisterRequest registerRequest = new RegisterRequest(ApplicationType.WEB, "oxAuth test app",
+                StringUtils.spaceSeparatedToList(redirectUris));
+        registerRequest.setResponseTypes(responseTypes);
+        registerRequest.setSectorIdentifierUri(sectorIdentifierUri);
+
+        RegisterClient registerClient = new RegisterClient(registrationEndpoint);
+        registerClient.setRequest(registerRequest);
+        RegisterResponse registerResponse = registerClient.exec();
+
+        showClient(registerClient);
+        assertEquals(registerResponse.getStatus(), 200, "Unexpected response code: " + registerResponse.getEntity());
+        assertNotNull(registerResponse.getClientId());
+        assertNotNull(registerResponse.getClientSecret());
+        assertNotNull(registerResponse.getRegistrationAccessToken());
+        assertNotNull(registerResponse.getClientIdIssuedAt());
+
+        String clientId = registerResponse.getClientId();
+
+        // 2. Request authorization
+        List<String> scopes = Arrays.asList("openid", "profile", "address", "email");
+        String nonce = UUID.randomUUID().toString();
+        String state = UUID.randomUUID().toString();
+
+        AuthorizationRequest authorizationRequest = new AuthorizationRequest(responseTypes, clientId, scopes, redirectUri, nonce);
+        authorizationRequest.setState(state);
+
+        AuthorizationResponse authorizationResponse = authenticateResourceOwnerAndGrantAccess(
+                authorizationEndpoint, authorizationRequest, userId, userSecret);
+
+        assertNotNull(authorizationResponse.getLocation());
+        assertNotNull(authorizationResponse.getCode());
+        assertNotNull(authorizationResponse.getIdToken());
+        assertNotNull(authorizationResponse.getAccessToken());
+        assertNotNull(authorizationResponse.getState());
+    }
+}
\ No newline at end of file
diff --git a/oxAuth/Client/src/test/java/org/gluu/oxauth/interop/SupportCombinationOfCodeTokenResponseTypes.java b/oxAuth/Client/src/test/java/org/gluu/oxauth/interop/SupportCombinationOfCodeTokenResponseTypes.java
new file mode 100644
index 00000000..111e7fa8
--- /dev/null
+++ b/oxAuth/Client/src/test/java/org/gluu/oxauth/interop/SupportCombinationOfCodeTokenResponseTypes.java
@@ -0,0 +1,81 @@
+/*
+ * oxAuth is available under the MIT License (2008). See http://opensource.org/licenses/MIT for full text.
+ *
+ * Copyright (c) 2014, Gluu
+ */
+
+package org.gluu.oxauth.interop;
+
+import static org.testng.Assert.assertEquals;
+import static org.testng.Assert.assertNotNull;
+
+import java.util.Arrays;
+import java.util.List;
+import java.util.UUID;
+
+import org.gluu.oxauth.BaseTest;
+import org.gluu.oxauth.client.AuthorizationRequest;
+import org.gluu.oxauth.client.AuthorizationResponse;
+import org.gluu.oxauth.client.RegisterClient;
+import org.gluu.oxauth.client.RegisterRequest;
+import org.gluu.oxauth.client.RegisterResponse;
+import org.gluu.oxauth.model.common.ResponseType;
+import org.gluu.oxauth.model.register.ApplicationType;
+import org.gluu.oxauth.model.util.StringUtils;
+import org.testng.annotations.Parameters;
+import org.testng.annotations.Test;
+
+/**
+ * OC5:FeatureTest-Support Combination of code token Response Types
+ *
+ * @author Javier Rojas Blum
+ * @version June 19, 2015
+ */
+public class SupportCombinationOfCodeTokenResponseTypes extends BaseTest {
+
+    @Parameters({"userId", "userSecret", "redirectUris", "redirectUri", "sectorIdentifierUri"})
+    @Test
+    public void supportCombinationOfCodeTokenResponseTypes(
+            final String userId, final String userSecret, final String redirectUris, final String redirectUri,
+            final String sectorIdentifierUri) throws Exception {
+        showTitle("OC5:FeatureTest-Support Combination of code token Response Types");
+
+        List<ResponseType> responseTypes = Arrays.asList(ResponseType.CODE, ResponseType.TOKEN);
+
+        // 1. Register client
+        RegisterRequest registerRequest = new RegisterRequest(ApplicationType.WEB, "oxAuth test app",
+                StringUtils.spaceSeparatedToList(redirectUris));
+        registerRequest.setResponseTypes(responseTypes);
+        registerRequest.setSectorIdentifierUri(sectorIdentifierUri);
+
+        RegisterClient registerClient = new RegisterClient(registrationEndpoint);
+        registerClient.setRequest(registerRequest);
+        RegisterResponse registerResponse = registerClient.exec();
+
+        showClient(registerClient);
+        assertEquals(registerResponse.getStatus(), 200, "Unexpected response code: " + registerResponse.getEntity());
+        assertNotNull(registerResponse.getClientId());
+        assertNotNull(registerResponse.getClientSecret());
+        assertNotNull(registerResponse.getRegistrationAccessToken());
+        assertNotNull(registerResponse.getClientIdIssuedAt());
+
+        String clientId = registerResponse.getClientId();
+        String registrationAccessToken = registerResponse.getRegistrationAccessToken();
+
+        // 2. Request authorization
+        List<String> scopes = Arrays.asList("openid", "profile", "address", "email");
+        String nonce = UUID.randomUUID().toString();
+        String state = UUID.randomUUID().toString();
+
+        AuthorizationRequest authorizationRequest = new AuthorizationRequest(responseTypes, clientId, scopes, redirectUri, nonce);
+        authorizationRequest.setState(state);
+
+        AuthorizationResponse authorizationResponse = authenticateResourceOwnerAndGrantAccess(
+                authorizationEndpoint, authorizationRequest, userId, userSecret);
+
+        assertNotNull(authorizationResponse.getLocation());
+        assertNotNull(authorizationResponse.getCode());
+        assertNotNull(authorizationResponse.getAccessToken());
+        assertNotNull(authorizationResponse.getState());
+    }
+}
\ No newline at end of file
diff --git a/oxAuth/Client/src/test/java/org/gluu/oxauth/interop/SupportCombinationOfIdTokenCodeResponseTypes.java b/oxAuth/Client/src/test/java/org/gluu/oxauth/interop/SupportCombinationOfIdTokenCodeResponseTypes.java
new file mode 100644
index 00000000..e4ac94a5
--- /dev/null
+++ b/oxAuth/Client/src/test/java/org/gluu/oxauth/interop/SupportCombinationOfIdTokenCodeResponseTypes.java
@@ -0,0 +1,81 @@
+/*
+ * oxAuth is available under the MIT License (2008). See http://opensource.org/licenses/MIT for full text.
+ *
+ * Copyright (c) 2014, Gluu
+ */
+
+package org.gluu.oxauth.interop;
+
+import static org.testng.Assert.assertEquals;
+import static org.testng.Assert.assertNotNull;
+
+import java.util.Arrays;
+import java.util.List;
+import java.util.UUID;
+
+import org.gluu.oxauth.BaseTest;
+import org.gluu.oxauth.client.AuthorizationRequest;
+import org.gluu.oxauth.client.AuthorizationResponse;
+import org.gluu.oxauth.client.RegisterClient;
+import org.gluu.oxauth.client.RegisterRequest;
+import org.gluu.oxauth.client.RegisterResponse;
+import org.gluu.oxauth.model.common.ResponseType;
+import org.gluu.oxauth.model.register.ApplicationType;
+import org.gluu.oxauth.model.util.StringUtils;
+import org.testng.annotations.Parameters;
+import org.testng.annotations.Test;
+
+/**
+ * OC5:FeatureTest-Support Combination of id token code Response Types
+ *
+ * @author Javier Rojas Blum
+ * @version June 19, 2015
+ */
+public class SupportCombinationOfIdTokenCodeResponseTypes extends BaseTest {
+
+    @Parameters({"userId", "userSecret", "redirectUris", "redirectUri", "sectorIdentifierUri"})
+    @Test
+    public void supportCombinationOfIdTokenCodeResponseTypes(
+            final String userId, final String userSecret, final String redirectUris, final String redirectUri,
+            final String sectorIdentifierUri) throws Exception {
+        showTitle("OC5:FeatureTest-Support Combination of id token code Response Types");
+
+        List<ResponseType> responseTypes = Arrays.asList(ResponseType.ID_TOKEN, ResponseType.CODE);
+
+        // 1. Register client
+        RegisterRequest registerRequest = new RegisterRequest(ApplicationType.WEB, "oxAuth test app",
+                StringUtils.spaceSeparatedToList(redirectUris));
+        registerRequest.setResponseTypes(responseTypes);
+        registerRequest.setSectorIdentifierUri(sectorIdentifierUri);
+
+        RegisterClient registerClient = new RegisterClient(registrationEndpoint);
+        registerClient.setRequest(registerRequest);
+        RegisterResponse registerResponse = registerClient.exec();
+
+        showClient(registerClient);
+        assertEquals(registerResponse.getStatus(), 200, "Unexpected response code: " + registerResponse.getEntity());
+        assertNotNull(registerResponse.getClientId());
+        assertNotNull(registerResponse.getClientSecret());
+        assertNotNull(registerResponse.getRegistrationAccessToken());
+        assertNotNull(registerResponse.getClientIdIssuedAt());
+
+        String clientId = registerResponse.getClientId();
+        String registrationAccessToken = registerResponse.getRegistrationAccessToken();
+
+        // 2. Request authorization
+        List<String> scopes = Arrays.asList("openid", "profile", "address", "email");
+        String nonce = UUID.randomUUID().toString();
+        String state = UUID.randomUUID().toString();
+
+        AuthorizationRequest authorizationRequest = new AuthorizationRequest(responseTypes, clientId, scopes, redirectUri, nonce);
+        authorizationRequest.setState(state);
+
+        AuthorizationResponse authorizationResponse = authenticateResourceOwnerAndGrantAccess(
+                authorizationEndpoint, authorizationRequest, userId, userSecret);
+
+        assertNotNull(authorizationResponse.getLocation());
+        assertNotNull(authorizationResponse.getIdToken());
+        assertNotNull(authorizationResponse.getCode());
+        assertNotNull(authorizationResponse.getState());
+    }
+}
\ No newline at end of file
diff --git a/oxAuth/Client/src/test/java/org/gluu/oxauth/interop/SupportCombinationOfIdTokenTokenResponseTypes.java b/oxAuth/Client/src/test/java/org/gluu/oxauth/interop/SupportCombinationOfIdTokenTokenResponseTypes.java
new file mode 100644
index 00000000..dd8f8f15
--- /dev/null
+++ b/oxAuth/Client/src/test/java/org/gluu/oxauth/interop/SupportCombinationOfIdTokenTokenResponseTypes.java
@@ -0,0 +1,81 @@
+/*
+ * oxAuth is available under the MIT License (2008). See http://opensource.org/licenses/MIT for full text.
+ *
+ * Copyright (c) 2014, Gluu
+ */
+
+package org.gluu.oxauth.interop;
+
+import static org.testng.Assert.assertEquals;
+import static org.testng.Assert.assertNotNull;
+
+import java.util.Arrays;
+import java.util.List;
+import java.util.UUID;
+
+import org.gluu.oxauth.BaseTest;
+import org.gluu.oxauth.client.AuthorizationRequest;
+import org.gluu.oxauth.client.AuthorizationResponse;
+import org.gluu.oxauth.client.RegisterClient;
+import org.gluu.oxauth.client.RegisterRequest;
+import org.gluu.oxauth.client.RegisterResponse;
+import org.gluu.oxauth.model.common.ResponseType;
+import org.gluu.oxauth.model.register.ApplicationType;
+import org.gluu.oxauth.model.util.StringUtils;
+import org.testng.annotations.Parameters;
+import org.testng.annotations.Test;
+
+/**
+ * OC5:FeatureTest-Support Combination of id token token Response Types
+ *
+ * @author Javier Rojas Blum
+ * @version June 19, 2015
+ */
+public class SupportCombinationOfIdTokenTokenResponseTypes extends BaseTest {
+
+    @Parameters({"userId", "userSecret", "redirectUris", "redirectUri", "sectorIdentifierUri"})
+    @Test
+    public void supportCombinationOfIdTokenTokenResponseTypes(
+            final String userId, final String userSecret, final String redirectUris, final String redirectUri,
+            final String sectorIdentifierUri) throws Exception {
+        showTitle("OC5:FeatureTest-Support Combination of id token token Response Types");
+
+        List<ResponseType> responseTypes = Arrays.asList(ResponseType.ID_TOKEN, ResponseType.TOKEN);
+
+        // 1. Register client
+        RegisterRequest registerRequest = new RegisterRequest(ApplicationType.WEB, "oxAuth test app",
+                StringUtils.spaceSeparatedToList(redirectUris));
+        registerRequest.setResponseTypes(responseTypes);
+        registerRequest.setSectorIdentifierUri(sectorIdentifierUri);
+
+        RegisterClient registerClient = new RegisterClient(registrationEndpoint);
+        registerClient.setRequest(registerRequest);
+        RegisterResponse registerResponse = registerClient.exec();
+
+        showClient(registerClient);
+        assertEquals(registerResponse.getStatus(), 200, "Unexpected response code: " + registerResponse.getEntity());
+        assertNotNull(registerResponse.getClientId());
+        assertNotNull(registerResponse.getClientSecret());
+        assertNotNull(registerResponse.getRegistrationAccessToken());
+        assertNotNull(registerResponse.getClientIdIssuedAt());
+
+        String clientId = registerResponse.getClientId();
+        String registrationAccessToken = registerResponse.getRegistrationAccessToken();
+
+        // 2. Request authorization
+        List<String> scopes = Arrays.asList("openid", "profile", "address", "email");
+        String nonce = UUID.randomUUID().toString();
+        String state = UUID.randomUUID().toString();
+
+        AuthorizationRequest authorizationRequest = new AuthorizationRequest(responseTypes, clientId, scopes, redirectUri, nonce);
+        authorizationRequest.setState(state);
+
+        AuthorizationResponse authorizationResponse = authenticateResourceOwnerAndGrantAccess(
+                authorizationEndpoint, authorizationRequest, userId, userSecret);
+
+        assertNotNull(authorizationResponse.getLocation());
+        assertNotNull(authorizationResponse.getIdToken());
+        assertNotNull(authorizationResponse.getAccessToken());
+        assertNotNull(authorizationResponse.getState());
+    }
+}
\ No newline at end of file
diff --git a/oxAuth/Client/src/test/java/org/gluu/oxauth/interop/SupportDisplayValuePage.java b/oxAuth/Client/src/test/java/org/gluu/oxauth/interop/SupportDisplayValuePage.java
new file mode 100644
index 00000000..4d1710fb
--- /dev/null
+++ b/oxAuth/Client/src/test/java/org/gluu/oxauth/interop/SupportDisplayValuePage.java
@@ -0,0 +1,81 @@
+/*
+ * oxAuth is available under the MIT License (2008). See http://opensource.org/licenses/MIT for full text.
+ *
+ * Copyright (c) 2014, Gluu
+ */
+
+package org.gluu.oxauth.interop;
+
+import static org.testng.Assert.assertEquals;
+import static org.testng.Assert.assertNotNull;
+
+import java.util.Arrays;
+import java.util.List;
+import java.util.UUID;
+
+import org.gluu.oxauth.BaseTest;
+import org.gluu.oxauth.client.AuthorizationRequest;
+import org.gluu.oxauth.client.AuthorizationResponse;
+import org.gluu.oxauth.client.RegisterClient;
+import org.gluu.oxauth.client.RegisterRequest;
+import org.gluu.oxauth.client.RegisterResponse;
+import org.gluu.oxauth.model.common.Display;
+import org.gluu.oxauth.model.common.ResponseType;
+import org.gluu.oxauth.model.register.ApplicationType;
+import org.gluu.oxauth.model.util.StringUtils;
+import org.testng.annotations.Parameters;
+import org.testng.annotations.Test;
+
+/**
+ * OC5:FeatureTest-Support display value page
+ *
+ * @author Javier Rojas Blum
+ * @version June 19, 2015
+ */
+public class SupportDisplayValuePage extends BaseTest {
+
+    @Parameters({"userId", "userSecret", "redirectUris", "redirectUri", "sectorIdentifierUri"})
+    @Test
+    public void supportDisplayValuePage(
+            final String userId, final String userSecret, final String redirectUris, final String redirectUri,
+            final String sectorIdentifierUri) throws Exception {
+        showTitle("OC5:FeatureTest-Support display value page");
+
+        List<ResponseType> responseTypes = Arrays.asList(ResponseType.CODE);
+
+        // 1. Register client
+        RegisterRequest registerRequest = new RegisterRequest(ApplicationType.WEB, "oxAuth test app",
+                StringUtils.spaceSeparatedToList(redirectUris));
+        registerRequest.setResponseTypes(responseTypes);
+        registerRequest.setSectorIdentifierUri(sectorIdentifierUri);
+
+        RegisterClient registerClient = new RegisterClient(registrationEndpoint);
+        registerClient.setRequest(registerRequest);
+        RegisterResponse registerResponse = registerClient.exec();
+
+        showClient(registerClient);
+        assertEquals(registerResponse.getStatus(), 200, "Unexpected response code: " + registerResponse.getEntity());
+        assertNotNull(registerResponse.getClientId());
+        assertNotNull(registerResponse.getClientSecret());
+        assertNotNull(registerResponse.getRegistrationAccessToken());
+        assertNotNull(registerResponse.getClientIdIssuedAt());
+
+        String clientId = registerResponse.getClientId();
+
+        // 2. Request authorization
+        List<String> scopes = Arrays.asList("openid", "profile", "address", "email");
+        String nonce = UUID.randomUUID().toString();
+        String state = UUID.randomUUID().toString();
+
+        AuthorizationRequest authorizationRequest = new AuthorizationRequest(responseTypes, clientId, scopes, redirectUri, nonce);
+        authorizationRequest.setDisplay(Display.PAGE);
+        authorizationRequest.setState(state);
+
+        AuthorizationResponse authorizationResponse = authenticateResourceOwnerAndGrantAccess(
+                authorizationEndpoint, authorizationRequest, userId, userSecret);
+
+        assertNotNull(authorizationResponse.getLocation());
+        assertNotNull(authorizationResponse.getCode());
+        assertNotNull(authorizationResponse.getState());
+    }
+}
\ No newline at end of file
diff --git a/oxAuth/Client/src/test/java/org/gluu/oxauth/interop/SupportDisplayValuePopup.java b/oxAuth/Client/src/test/java/org/gluu/oxauth/interop/SupportDisplayValuePopup.java
new file mode 100644
index 00000000..f4efba67
--- /dev/null
+++ b/oxAuth/Client/src/test/java/org/gluu/oxauth/interop/SupportDisplayValuePopup.java
@@ -0,0 +1,81 @@
+/*
+ * oxAuth is available under the MIT License (2008). See http://opensource.org/licenses/MIT for full text.
+ *
+ * Copyright (c) 2014, Gluu
+ */
+
+package org.gluu.oxauth.interop;
+
+import static org.testng.Assert.assertEquals;
+import static org.testng.Assert.assertNotNull;
+
+import java.util.Arrays;
+import java.util.List;
+import java.util.UUID;
+
+import org.gluu.oxauth.BaseTest;
+import org.gluu.oxauth.client.AuthorizationRequest;
+import org.gluu.oxauth.client.AuthorizationResponse;
+import org.gluu.oxauth.client.RegisterClient;
+import org.gluu.oxauth.client.RegisterRequest;
+import org.gluu.oxauth.client.RegisterResponse;
+import org.gluu.oxauth.model.common.Display;
+import org.gluu.oxauth.model.common.ResponseType;
+import org.gluu.oxauth.model.register.ApplicationType;
+import org.gluu.oxauth.model.util.StringUtils;
+import org.testng.annotations.Parameters;
+import org.testng.annotations.Test;
+
+/**
+ * OC5:FeatureTest-Support display value popup
+ *
+ * @author Javier Rojas Blum
+ * @version June 19, 2015
+ */
+public class SupportDisplayValuePopup extends BaseTest {
+
+    @Parameters({"userId", "userSecret", "redirectUris", "redirectUri", "sectorIdentifierUri"})
+    @Test
+    public void supportDisplayValuePage(
+            final String userId, final String userSecret, final String redirectUris, final String redirectUri,
+            final String sectorIdentifierUri) throws Exception {
+        showTitle("OC5:FeatureTest-Support display value page");
+
+        List<ResponseType> responseTypes = Arrays.asList(ResponseType.CODE);
+
+        // 1. Register client
+        RegisterRequest registerRequest = new RegisterRequest(ApplicationType.WEB, "oxAuth test app",
+                StringUtils.spaceSeparatedToList(redirectUris));
+        registerRequest.setResponseTypes(responseTypes);
+        registerRequest.setSectorIdentifierUri(sectorIdentifierUri);
+
+        RegisterClient registerClient = new RegisterClient(registrationEndpoint);
+        registerClient.setRequest(registerRequest);
+        RegisterResponse registerResponse = registerClient.exec();
+
+        showClient(registerClient);
+        assertEquals(registerResponse.getStatus(), 200, "Unexpected response code: " + registerResponse.getEntity());
+        assertNotNull(registerResponse.getClientId());
+        assertNotNull(registerResponse.getClientSecret());
+        assertNotNull(registerResponse.getRegistrationAccessToken());
+        assertNotNull(registerResponse.getClientIdIssuedAt());
+
+        String clientId = registerResponse.getClientId();
+
+        // 2. Request authorization
+        List<String> scopes = Arrays.asList("openid", "profile", "address", "email");
+        String nonce = UUID.randomUUID().toString();
+        String state = UUID.randomUUID().toString();
+
+        AuthorizationRequest authorizationRequest = new AuthorizationRequest(responseTypes, clientId, scopes, redirectUri, nonce);
+        authorizationRequest.setDisplay(Display.POPUP);
+        authorizationRequest.setState(state);
+
+        AuthorizationResponse authorizationResponse = authenticateResourceOwnerAndGrantAccess(
+                authorizationEndpoint, authorizationRequest, userId, userSecret);
+
+        assertNotNull(authorizationResponse.getLocation());
+        assertNotNull(authorizationResponse.getCode());
+        assertNotNull(authorizationResponse.getState());
+    }
+}
\ No newline at end of file
diff --git a/oxAuth/Client/src/test/java/org/gluu/oxauth/interop/SupportIdTokenResponseType.java b/oxAuth/Client/src/test/java/org/gluu/oxauth/interop/SupportIdTokenResponseType.java
new file mode 100644
index 00000000..1dced1a4
--- /dev/null
+++ b/oxAuth/Client/src/test/java/org/gluu/oxauth/interop/SupportIdTokenResponseType.java
@@ -0,0 +1,79 @@
+/*
+ * oxAuth is available under the MIT License (2008). See http://opensource.org/licenses/MIT for full text.
+ *
+ * Copyright (c) 2014, Gluu
+ */
+
+package org.gluu.oxauth.interop;
+
+import static org.testng.Assert.assertEquals;
+import static org.testng.Assert.assertNotNull;
+
+import java.util.Arrays;
+import java.util.List;
+import java.util.UUID;
+
+import org.gluu.oxauth.BaseTest;
+import org.gluu.oxauth.client.AuthorizationRequest;
+import org.gluu.oxauth.client.AuthorizationResponse;
+import org.gluu.oxauth.client.RegisterClient;
+import org.gluu.oxauth.client.RegisterRequest;
+import org.gluu.oxauth.client.RegisterResponse;
+import org.gluu.oxauth.model.common.ResponseType;
+import org.gluu.oxauth.model.register.ApplicationType;
+import org.gluu.oxauth.model.util.StringUtils;
+import org.testng.annotations.Parameters;
+import org.testng.annotations.Test;
+
+/**
+ * OC5:FeatureTest-Support id token Response Type
+ *
+ * @author Javier Rojas Blum
+ * @version June 19, 2015
+ */
+public class SupportIdTokenResponseType extends BaseTest {
+
+    @Parameters({"userId", "userSecret", "redirectUris", "redirectUri", "sectorIdentifierUri"})
+    @Test
+    public void supportIdTokenResponseType(
+            final String userId, final String userSecret, final String redirectUris, final String redirectUri,
+            final String sectorIdentifierUri) throws Exception {
+        showTitle("OC5:FeatureTest-Support id token Response Type");
+
+        List<ResponseType> responseTypes = Arrays.asList(ResponseType.ID_TOKEN);
+
+        // 1. Register client
+        RegisterRequest registerRequest = new RegisterRequest(ApplicationType.WEB, "oxAuth test app",
+                StringUtils.spaceSeparatedToList(redirectUris));
+        registerRequest.setResponseTypes(responseTypes);
+        registerRequest.setSectorIdentifierUri(sectorIdentifierUri);
+
+        RegisterClient registerClient = new RegisterClient(registrationEndpoint);
+        registerClient.setRequest(registerRequest);
+        RegisterResponse registerResponse = registerClient.exec();
+
+        showClient(registerClient);
+        assertEquals(registerResponse.getStatus(), 200, "Unexpected response code: " + registerResponse.getEntity());
+        assertNotNull(registerResponse.getClientId());
+        assertNotNull(registerResponse.getClientSecret());
+        assertNotNull(registerResponse.getRegistrationAccessToken());
+        assertNotNull(registerResponse.getClientIdIssuedAt());
+
+        String clientId = registerResponse.getClientId();
+
+        // 2. Request authorization
+        List<String> scopes = Arrays.asList("openid", "profile", "address", "email");
+        String nonce = UUID.randomUUID().toString();
+        String state = UUID.randomUUID().toString();
+
+        AuthorizationRequest authorizationRequest = new AuthorizationRequest(responseTypes, clientId, scopes, redirectUri, nonce);
+        authorizationRequest.setState(state);
+
+        AuthorizationResponse authorizationResponse = authenticateResourceOwnerAndGrantAccess(
+                authorizationEndpoint, authorizationRequest, userId, userSecret);
+
+        assertNotNull(authorizationResponse.getLocation());
+        assertNotNull(authorizationResponse.getIdToken());
+        assertNotNull(authorizationResponse.getState());
+    }
+}
\ No newline at end of file
diff --git a/oxAuth/Client/src/test/java/org/gluu/oxauth/interop/SupportPromptValueLogin.java b/oxAuth/Client/src/test/java/org/gluu/oxauth/interop/SupportPromptValueLogin.java
new file mode 100644
index 00000000..1f9efd96
--- /dev/null
+++ b/oxAuth/Client/src/test/java/org/gluu/oxauth/interop/SupportPromptValueLogin.java
@@ -0,0 +1,153 @@
+/*
+ * oxAuth is available under the MIT License (2008). See http://opensource.org/licenses/MIT for full text.
+ *
+ * Copyright (c) 2014, Gluu
+ */
+
+package org.gluu.oxauth.interop;
+
+import static org.testng.Assert.assertEquals;
+import static org.testng.Assert.assertNotNull;
+
+import java.util.Arrays;
+import java.util.List;
+import java.util.UUID;
+
+import org.gluu.oxauth.BaseTest;
+import org.gluu.oxauth.client.AuthorizationRequest;
+import org.gluu.oxauth.client.AuthorizationResponse;
+import org.gluu.oxauth.client.RegisterClient;
+import org.gluu.oxauth.client.RegisterRequest;
+import org.gluu.oxauth.client.RegisterResponse;
+import org.gluu.oxauth.client.TokenClient;
+import org.gluu.oxauth.client.TokenRequest;
+import org.gluu.oxauth.client.TokenResponse;
+import org.gluu.oxauth.model.common.AuthenticationMethod;
+import org.gluu.oxauth.model.common.GrantType;
+import org.gluu.oxauth.model.common.Prompt;
+import org.gluu.oxauth.model.common.ResponseType;
+import org.gluu.oxauth.model.register.ApplicationType;
+import org.gluu.oxauth.model.util.StringUtils;
+import org.testng.annotations.Parameters;
+import org.testng.annotations.Test;
+
+/**
+ * OC5:FeatureTest-Support prompt value login
+ *
+ * @author Javier Rojas Blum
+ * @version August 9, 2017
+ */
+public class SupportPromptValueLogin extends BaseTest {
+
+    @Parameters({"userId", "userSecret", "redirectUris", "redirectUri", "sectorIdentifierUri"})
+    @Test
+    public void supportPromptValueLogin(
+            final String userId, final String userSecret, final String redirectUris, final String redirectUri,
+            final String sectorIdentifierUri) throws Exception {
+        showTitle("OC5:FeatureTest-Support prompt value login");
+
+        List<ResponseType> responseTypes = Arrays.asList(ResponseType.CODE);
+
+        // 1. Register client
+        RegisterRequest registerRequest = new RegisterRequest(ApplicationType.WEB, "oxAuth test app",
+                StringUtils.spaceSeparatedToList(redirectUris));
+        registerRequest.setResponseTypes(responseTypes);
+        registerRequest.setSectorIdentifierUri(sectorIdentifierUri);
+
+        RegisterClient registerClient = newRegisterClient(registerRequest);
+        RegisterResponse registerResponse = registerClient.exec();
+
+        showClient(registerClient);
+        assertEquals(registerResponse.getStatus(), 200, "Unexpected response code: " + registerResponse.getEntity());
+        assertNotNull(registerResponse.getClientId());
+        assertNotNull(registerResponse.getClientSecret());
+        assertNotNull(registerResponse.getRegistrationAccessToken());
+        assertNotNull(registerResponse.getClientIdIssuedAt());
+        assertNotNull(registerResponse.getClientSecretExpiresAt());
+
+        String clientId = registerResponse.getClientId();
+        String clientSecret = registerResponse.getClientSecret();
+
+        String sessionId;
+        {
+            // 2. Request authorization
+            List<String> scopes = Arrays.asList("openid", "profile", "address", "email");
+            String nonce = UUID.randomUUID().toString();
+            String state = UUID.randomUUID().toString();
+
+            AuthorizationRequest authorizationRequest = new AuthorizationRequest(responseTypes, clientId, scopes, redirectUri, nonce);
+            authorizationRequest.setState(state);
+
+            AuthorizationResponse authorizationResponse = authenticateResourceOwnerAndGrantAccess(
+                    authorizationEndpoint, authorizationRequest, userId, userSecret);
+
+            assertNotNull(authorizationResponse.getLocation());
+            assertNotNull(authorizationResponse.getCode());
+            assertNotNull(authorizationResponse.getState());
+            assertNotNull(authorizationResponse.getScope());
+
+            String authorizationCode = authorizationResponse.getCode();
+            sessionId = authorizationResponse.getSessionId();
+
+            // 3. Get Access Token
+            TokenRequest tokenRequest = new TokenRequest(GrantType.AUTHORIZATION_CODE);
+            tokenRequest.setCode(authorizationCode);
+            tokenRequest.setRedirectUri(redirectUri);
+            tokenRequest.setAuthUsername(clientId);
+            tokenRequest.setAuthPassword(clientSecret);
+            tokenRequest.setAuthenticationMethod(AuthenticationMethod.CLIENT_SECRET_BASIC);
+
+            TokenClient tokenClient = newTokenClient(tokenRequest);
+            TokenResponse tokenResponse = tokenClient.exec();
+
+            showClient(tokenClient);
+            assertEquals(tokenResponse.getStatus(), 200, "Unexpected response code: " + tokenResponse.getStatus());
+            assertNotNull(tokenResponse.getEntity(), "The entity is null");
+            assertNotNull(tokenResponse.getAccessToken(), "The access token is null");
+            assertNotNull(tokenResponse.getExpiresIn(), "The expires in value is null");
+            assertNotNull(tokenResponse.getTokenType(), "The token type is null");
+            assertNotNull(tokenResponse.getRefreshToken(), "The refresh token is null");
+        }
+
+        {
+            // 4. Request authorization
+            List<String> scopes = Arrays.asList("openid", "profile", "address", "email");
+            String nonce = UUID.randomUUID().toString();
+            String state = UUID.randomUUID().toString();
+
+            AuthorizationRequest authorizationRequest = new AuthorizationRequest(responseTypes, clientId, scopes, redirectUri, nonce);
+            authorizationRequest.setState(state);
+            authorizationRequest.getPrompts().add(Prompt.LOGIN);
+            authorizationRequest.setSessionId(sessionId);
+
+            AuthorizationResponse authorizationResponse = authenticateResourceOwner(
+                    authorizationEndpoint, authorizationRequest, userId, userSecret, false);
+
+            assertNotNull(authorizationResponse.getLocation());
+            assertNotNull(authorizationResponse.getCode());
+            assertNotNull(authorizationResponse.getState());
+            assertNotNull(authorizationResponse.getScope());
+
+            String authorizationCode = authorizationResponse.getCode();
+
+            // 5. Get Access Token
+            TokenRequest tokenRequest = new TokenRequest(GrantType.AUTHORIZATION_CODE);
+            tokenRequest.setCode(authorizationCode);
+            tokenRequest.setRedirectUri(redirectUri);
+            tokenRequest.setAuthUsername(clientId);
+            tokenRequest.setAuthPassword(clientSecret);
+            tokenRequest.setAuthenticationMethod(AuthenticationMethod.CLIENT_SECRET_BASIC);
+
+            TokenClient tokenClient = newTokenClient(tokenRequest);
+            TokenResponse tokenResponse = tokenClient.exec();
+
+            showClient(tokenClient);
+            assertEquals(tokenResponse.getStatus(), 200, "Unexpected response code: " + tokenResponse.getStatus());
+            assertNotNull(tokenResponse.getEntity(), "The entity is null");
+            assertNotNull(tokenResponse.getAccessToken(), "The access token is null");
+            assertNotNull(tokenResponse.getExpiresIn(), "The expires in value is null");
+            assertNotNull(tokenResponse.getTokenType(), "The token type is null");
+            assertNotNull(tokenResponse.getRefreshToken(), "The refresh token is null");
+        }
+    }
+}
\ No newline at end of file
diff --git a/oxAuth/Client/src/test/java/org/gluu/oxauth/interop/SupportPromptValueNone.java b/oxAuth/Client/src/test/java/org/gluu/oxauth/interop/SupportPromptValueNone.java
new file mode 100644
index 00000000..a823a6db
--- /dev/null
+++ b/oxAuth/Client/src/test/java/org/gluu/oxauth/interop/SupportPromptValueNone.java
@@ -0,0 +1,159 @@
+/*
+ * oxAuth is available under the MIT License (2008). See http://opensource.org/licenses/MIT for full text.
+ *
+ * Copyright (c) 2014, Gluu
+ */
+
+package org.gluu.oxauth.interop;
+
+import static org.testng.Assert.assertEquals;
+import static org.testng.Assert.assertNotNull;
+
+import java.util.Arrays;
+import java.util.List;
+import java.util.UUID;
+
+import org.gluu.oxauth.BaseTest;
+import org.gluu.oxauth.client.AuthorizationRequest;
+import org.gluu.oxauth.client.AuthorizationResponse;
+import org.gluu.oxauth.client.AuthorizeClient;
+import org.gluu.oxauth.client.RegisterClient;
+import org.gluu.oxauth.client.RegisterRequest;
+import org.gluu.oxauth.client.RegisterResponse;
+import org.gluu.oxauth.client.TokenClient;
+import org.gluu.oxauth.client.TokenRequest;
+import org.gluu.oxauth.client.TokenResponse;
+import org.gluu.oxauth.model.common.AuthenticationMethod;
+import org.gluu.oxauth.model.common.GrantType;
+import org.gluu.oxauth.model.common.Prompt;
+import org.gluu.oxauth.model.common.ResponseType;
+import org.gluu.oxauth.model.register.ApplicationType;
+import org.gluu.oxauth.model.util.StringUtils;
+import org.testng.annotations.Parameters;
+import org.testng.annotations.Test;
+
+/**
+ * OC5:FeatureTest-Support prompt value none
+ *
+ * @author Javier Rojas Blum
+ * @version August 9, 2017
+ */
+public class SupportPromptValueNone extends BaseTest {
+
+    @Parameters({"userId", "userSecret", "redirectUris", "redirectUri", "sectorIdentifierUri"})
+    @Test
+    public void requestAuthorizationPromptNone(
+            final String userId, final String userSecret, final String redirectUris, final String redirectUri,
+            final String sectorIdentifierUri) throws Exception {
+        showTitle("OC5:FeatureTest-Support prompt value none");
+
+        List<ResponseType> responseTypes = Arrays.asList(ResponseType.CODE);
+
+        // 1. Register client
+        RegisterRequest registerRequest = new RegisterRequest(ApplicationType.WEB, "oxAuth test app",
+                StringUtils.spaceSeparatedToList(redirectUris));
+        registerRequest.setResponseTypes(responseTypes);
+        registerRequest.setSectorIdentifierUri(sectorIdentifierUri);
+
+        RegisterClient registerClient = new RegisterClient(registrationEndpoint);
+        registerClient.setRequest(registerRequest);
+        RegisterResponse registerResponse = registerClient.exec();
+
+        showClient(registerClient);
+        assertEquals(registerResponse.getStatus(), 200, "Unexpected response code: " + registerResponse.getEntity());
+        assertNotNull(registerResponse.getClientId());
+        assertNotNull(registerResponse.getClientSecret());
+        assertNotNull(registerResponse.getRegistrationAccessToken());
+        assertNotNull(registerResponse.getClientIdIssuedAt());
+        assertNotNull(registerResponse.getClientSecretExpiresAt());
+
+        String clientId = registerResponse.getClientId();
+        String clientSecret = registerResponse.getClientSecret();
+
+        String sessionId;
+        {
+            // 2. Request authorization
+            List<String> scopes = Arrays.asList("openid", "profile", "address", "email");
+            String nonce = UUID.randomUUID().toString();
+            String state = UUID.randomUUID().toString();
+
+            AuthorizationRequest authorizationRequest = new AuthorizationRequest(responseTypes, clientId, scopes, redirectUri, nonce);
+            authorizationRequest.setState(state);
+
+            AuthorizationResponse authorizationResponse = authenticateResourceOwnerAndGrantAccess(
+                    authorizationEndpoint, authorizationRequest, userId, userSecret);
+
+            assertNotNull(authorizationResponse.getLocation());
+            assertNotNull(authorizationResponse.getCode());
+            assertNotNull(authorizationResponse.getState());
+            assertNotNull(authorizationResponse.getScope());
+
+            String authorizationCode = authorizationResponse.getCode();
+            sessionId = authorizationResponse.getSessionId();
+
+            // 3. Get Access Token
+            TokenRequest tokenRequest = new TokenRequest(GrantType.AUTHORIZATION_CODE);
+            tokenRequest.setCode(authorizationCode);
+            tokenRequest.setRedirectUri(redirectUri);
+            tokenRequest.setAuthUsername(clientId);
+            tokenRequest.setAuthPassword(clientSecret);
+            tokenRequest.setAuthenticationMethod(AuthenticationMethod.CLIENT_SECRET_BASIC);
+
+            TokenClient tokenClient = new TokenClient(tokenEndpoint);
+            tokenClient.setRequest(tokenRequest);
+            TokenResponse tokenResponse = tokenClient.exec();
+
+            showClient(tokenClient);
+            assertEquals(tokenResponse.getStatus(), 200, "Unexpected response code: " + tokenResponse.getStatus());
+            assertNotNull(tokenResponse.getEntity(), "The entity is null");
+            assertNotNull(tokenResponse.getAccessToken(), "The access token is null");
+            assertNotNull(tokenResponse.getExpiresIn(), "The expires in value is null");
+            assertNotNull(tokenResponse.getTokenType(), "The token type is null");
+            assertNotNull(tokenResponse.getRefreshToken(), "The refresh token is null");
+        }
+
+        {
+            // 4. Request authorization
+            List<String> scopes = Arrays.asList("openid", "profile", "address", "email");
+            String nonce = UUID.randomUUID().toString();
+            String state = UUID.randomUUID().toString();
+
+            AuthorizationRequest authorizationRequest = new AuthorizationRequest(responseTypes, clientId, scopes, redirectUri, nonce);
+            authorizationRequest.setState(state);
+            authorizationRequest.getPrompts().add(Prompt.NONE);
+            authorizationRequest.setSessionId(sessionId);
+
+            AuthorizeClient authorizeClient = new AuthorizeClient(authorizationEndpoint);
+            authorizeClient.setRequest(authorizationRequest);
+
+            AuthorizationResponse authorizationResponse = authorizeClient.exec();
+
+            assertNotNull(authorizationResponse.getLocation());
+            assertNotNull(authorizationResponse.getCode());
+            assertNotNull(authorizationResponse.getState());
+            assertNotNull(authorizationResponse.getScope());
+
+            String authorizationCode = authorizationResponse.getCode();
+
+            // 5. Get Access Token
+            TokenRequest tokenRequest = new TokenRequest(GrantType.AUTHORIZATION_CODE);
+            tokenRequest.setCode(authorizationCode);
+            tokenRequest.setRedirectUri(redirectUri);
+            tokenRequest.setAuthUsername(clientId);
+            tokenRequest.setAuthPassword(clientSecret);
+            tokenRequest.setAuthenticationMethod(AuthenticationMethod.CLIENT_SECRET_BASIC);
+
+            TokenClient tokenClient = new TokenClient(tokenEndpoint);
+            tokenClient.setRequest(tokenRequest);
+            TokenResponse tokenResponse = tokenClient.exec();
+
+            showClient(tokenClient);
+            assertEquals(tokenResponse.getStatus(), 200, "Unexpected response code: " + tokenResponse.getStatus());
+            assertNotNull(tokenResponse.getEntity(), "The entity is null");
+            assertNotNull(tokenResponse.getAccessToken(), "The access token is null");
+            assertNotNull(tokenResponse.getExpiresIn(), "The expires in value is null");
+            assertNotNull(tokenResponse.getTokenType(), "The token type is null");
+            assertNotNull(tokenResponse.getRefreshToken(), "The refresh token is null");
+        }
+    }
+}
\ No newline at end of file
diff --git a/oxAuth/Client/src/test/java/org/gluu/oxauth/interop/SupportRegistrationRead.java b/oxAuth/Client/src/test/java/org/gluu/oxauth/interop/SupportRegistrationRead.java
new file mode 100644
index 00000000..6d39c016
--- /dev/null
+++ b/oxAuth/Client/src/test/java/org/gluu/oxauth/interop/SupportRegistrationRead.java
@@ -0,0 +1,113 @@
+/*
+ * oxAuth is available under the MIT License (2008). See http://opensource.org/licenses/MIT for full text.
+ *
+ * Copyright (c) 2014, Gluu
+ */
+
+package org.gluu.oxauth.interop;
+
+import static org.gluu.oxauth.model.register.RegisterRequestParam.APPLICATION_TYPE;
+import static org.gluu.oxauth.model.register.RegisterRequestParam.CLIENT_NAME;
+import static org.gluu.oxauth.model.register.RegisterRequestParam.CONTACTS;
+import static org.gluu.oxauth.model.register.RegisterRequestParam.ID_TOKEN_SIGNED_RESPONSE_ALG;
+import static org.gluu.oxauth.model.register.RegisterRequestParam.JWKS_URI;
+import static org.gluu.oxauth.model.register.RegisterRequestParam.LOGO_URI;
+import static org.gluu.oxauth.model.register.RegisterRequestParam.POLICY_URI;
+import static org.gluu.oxauth.model.register.RegisterRequestParam.REQUEST_OBJECT_SIGNING_ALG;
+import static org.gluu.oxauth.model.register.RegisterRequestParam.REQUEST_URIS;
+import static org.gluu.oxauth.model.register.RegisterRequestParam.SCOPE;
+import static org.gluu.oxauth.model.register.RegisterRequestParam.SECTOR_IDENTIFIER_URI;
+import static org.gluu.oxauth.model.register.RegisterRequestParam.SUBJECT_TYPE;
+import static org.testng.Assert.assertEquals;
+import static org.testng.Assert.assertNotNull;
+
+import java.util.Arrays;
+import java.util.List;
+
+import org.gluu.oxauth.BaseTest;
+import org.gluu.oxauth.client.RegisterClient;
+import org.gluu.oxauth.client.RegisterRequest;
+import org.gluu.oxauth.client.RegisterResponse;
+import org.gluu.oxauth.model.common.AuthenticationMethod;
+import org.gluu.oxauth.model.common.ResponseType;
+import org.gluu.oxauth.model.common.SubjectType;
+import org.gluu.oxauth.model.crypto.signature.SignatureAlgorithm;
+import org.gluu.oxauth.model.register.ApplicationType;
+import org.gluu.oxauth.model.util.StringUtils;
+import org.testng.annotations.Parameters;
+import org.testng.annotations.Test;
+
+/**
+ * OC5:FeatureTest-Support Registration Read
+ *
+ * @author Javier Rojas Blum
+ * @version November 29, 2017
+ */
+public class SupportRegistrationRead extends BaseTest {
+
+    @Parameters({"redirectUris", "redirectUri", "userId", "userSecret", "sectorIdentifierUri"})
+    @Test
+    public void supportRegistrationRead(
+            final String redirectUris, final String redirectUri, final String userId, final String userSecret,
+            final String sectorIdentifierUri) throws Exception {
+        showTitle("OC5:FeatureTest-Support Registration Read");
+
+        List<ResponseType> responseTypes = Arrays.asList(ResponseType.CODE);
+
+        // 1. Register client
+        RegisterRequest registerRequest1 = new RegisterRequest(ApplicationType.WEB, "oxAuth test app",
+                StringUtils.spaceSeparatedToList(redirectUris));
+        registerRequest1.setContacts(Arrays.asList("javier@gluu.org", "javier.rojas.blum@gmail.com"));
+        registerRequest1.setLogoUri("http://www.gluu.org/wp-content/themes/gluursn/images/logo.png");
+        registerRequest1.setTokenEndpointAuthMethod(AuthenticationMethod.CLIENT_SECRET_JWT);
+        registerRequest1.setPolicyUri("http://www.gluu.org/policy");
+        registerRequest1.setJwksUri("http://www.gluu.org/jwks");
+        registerRequest1.setSectorIdentifierUri(sectorIdentifierUri);
+        registerRequest1.setSubjectType(SubjectType.PUBLIC);
+        registerRequest1.setRequestObjectSigningAlg(SignatureAlgorithm.RS256);
+        registerRequest1.setRequestUris(Arrays.asList("http://www.gluu.org/request"));
+
+        RegisterClient registerClient1 = new RegisterClient(registrationEndpoint);
+        registerClient1.setRequest(registerRequest1);
+        RegisterResponse registerResponse1 = registerClient1.exec();
+
+        showClient(registerClient1);
+        assertEquals(registerResponse1.getStatus(), 200, "Unexpected response code: " + registerResponse1.getEntity());
+        assertNotNull(registerResponse1.getClientId());
+        assertNotNull(registerResponse1.getClientSecret());
+        assertNotNull(registerResponse1.getRegistrationAccessToken());
+        assertNotNull(registerResponse1.getClientSecretExpiresAt());
+        assertNotNull(registerResponse1.getClaims().get(SCOPE.toString()));
+
+        String clientId = registerResponse1.getClientId();
+        String registrationAccessToken = registerResponse1.getRegistrationAccessToken();
+        String registrationClientUri = registerResponse1.getRegistrationClientUri();
+
+        // 2. Client Read
+        RegisterRequest registerRequest2 = new RegisterRequest(registrationAccessToken);
+
+        RegisterClient registerClient2 = new RegisterClient(registrationClientUri);
+        registerClient2.setRequest(registerRequest2);
+        RegisterResponse registerResponse2 = registerClient2.exec();
+
+        showClient(registerClient2);
+        assertEquals(registerResponse2.getStatus(), 200, "Unexpected response code: " + registerResponse2.getEntity());
+        assertNotNull(registerResponse2.getClientId());
+        assertNotNull(registerResponse2.getClientSecret());
+        assertNotNull(registerResponse2.getRegistrationAccessToken());
+        assertNotNull(registerResponse2.getRegistrationClientUri());
+        assertNotNull(registerResponse2.getClientSecretExpiresAt());
+        assertNotNull(registerResponse2.getClaims().get(APPLICATION_TYPE.toString()));
+        assertNotNull(registerResponse2.getClaims().get(POLICY_URI.toString()));
+        assertNotNull(registerResponse2.getClaims().get(REQUEST_OBJECT_SIGNING_ALG.toString()));
+        assertNotNull(registerResponse2.getClaims().get(CONTACTS.toString()));
+        assertNotNull(registerResponse2.getClaims().get(SECTOR_IDENTIFIER_URI.toString()));
+        assertNotNull(registerResponse2.getClaims().get(SUBJECT_TYPE.toString()));
+        assertNotNull(registerResponse2.getClaims().get(ID_TOKEN_SIGNED_RESPONSE_ALG.toString()));
+        assertNotNull(registerResponse2.getClaims().get(JWKS_URI.toString()));
+        assertNotNull(registerResponse2.getClaims().get(CLIENT_NAME.toString()));
+        assertNotNull(registerResponse2.getClaims().get(LOGO_URI.toString()));
+        assertNotNull(registerResponse2.getClaims().get(REQUEST_URIS.toString()));
+        assertNotNull(registerResponse2.getClaims().get(SCOPE.toString()));
+    }
+}
\ No newline at end of file
diff --git a/oxAuth/Client/src/test/java/org/gluu/oxauth/interop/SupportRequestFile.java b/oxAuth/Client/src/test/java/org/gluu/oxauth/interop/SupportRequestFile.java
new file mode 100644
index 00000000..148be5fa
--- /dev/null
+++ b/oxAuth/Client/src/test/java/org/gluu/oxauth/interop/SupportRequestFile.java
@@ -0,0 +1,139 @@
+/*
+ * oxAuth is available under the MIT License (2008). See http://opensource.org/licenses/MIT for full text.
+ *
+ * Copyright (c) 2014, Gluu
+ */
+
+package org.gluu.oxauth.interop;
+
+import static org.testng.Assert.assertEquals;
+import static org.testng.Assert.assertNotNull;
+import static org.testng.Assert.fail;
+
+import java.io.BufferedWriter;
+import java.io.File;
+import java.io.FileWriter;
+import java.io.IOException;
+import java.security.NoSuchAlgorithmException;
+import java.security.NoSuchProviderException;
+import java.util.Arrays;
+import java.util.List;
+import java.util.UUID;
+
+import org.gluu.oxauth.BaseTest;
+import org.gluu.oxauth.client.AuthorizationRequest;
+import org.gluu.oxauth.client.AuthorizationResponse;
+import org.gluu.oxauth.client.AuthorizeClient;
+import org.gluu.oxauth.client.RegisterClient;
+import org.gluu.oxauth.client.RegisterRequest;
+import org.gluu.oxauth.client.RegisterResponse;
+import org.gluu.oxauth.client.model.authorize.Claim;
+import org.gluu.oxauth.client.model.authorize.ClaimValue;
+import org.gluu.oxauth.client.model.authorize.JwtAuthorizationRequest;
+import org.gluu.oxauth.model.common.ResponseType;
+import org.gluu.oxauth.model.crypto.OxAuthCryptoProvider;
+import org.gluu.oxauth.model.crypto.signature.SignatureAlgorithm;
+import org.gluu.oxauth.model.jwt.JwtClaimName;
+import org.gluu.oxauth.model.register.ApplicationType;
+import org.gluu.oxauth.model.util.Base64Util;
+import org.gluu.oxauth.model.util.JwtUtil;
+import org.gluu.oxauth.model.util.StringUtils;
+import org.testng.annotations.Parameters;
+import org.testng.annotations.Test;
+
+/**
+ * OC5:FeatureTest-Support Request File
+ *
+ * @author Javier Rojas Blum
+ * @version July 31, 2016
+ */
+public class SupportRequestFile extends BaseTest {
+
+    @Parameters({"userId", "userSecret", "redirectUri", "redirectUris", "sectorIdentifierUri", "requestFileBasePath", "requestFileBaseUrl"})
+    @Test // This tests requires a place to publish a request object via HTTPS
+    public void requestFileMethod(final String userId, final String userSecret, final String redirectUri,
+                                  final String redirectUris, final String sectorIdentifierUri,
+                                  final String requestFileBasePath, final String requestFileBaseUrl) throws Exception {
+        showTitle("OC5:FeatureTest-Support Request File");
+
+        List<ResponseType> responseTypes = Arrays.asList(ResponseType.TOKEN, ResponseType.ID_TOKEN);
+
+        // 1. Register client
+        RegisterRequest registerRequest = new RegisterRequest(ApplicationType.WEB, "oxAuth test app",
+                StringUtils.spaceSeparatedToList(redirectUris));
+        registerRequest.setResponseTypes(responseTypes);
+        registerRequest.setSectorIdentifierUri(sectorIdentifierUri);
+
+        RegisterClient registerClient = new RegisterClient(registrationEndpoint);
+        registerClient.setRequest(registerRequest);
+        RegisterResponse registerResponse = registerClient.exec();
+
+        showClient(registerClient);
+        assertEquals(registerResponse.getStatus(), 200, "Unexpected response code: " + registerResponse.getEntity());
+        assertNotNull(registerResponse.getClientId());
+        assertNotNull(registerResponse.getClientSecret());
+        assertNotNull(registerResponse.getRegistrationAccessToken());
+        assertNotNull(registerResponse.getClientIdIssuedAt());
+        assertNotNull(registerResponse.getClientSecretExpiresAt());
+
+        String clientId = registerResponse.getClientId();
+        String clientSecret = registerResponse.getClientSecret();
+
+        // 2. Writing a request object in a file
+        List<String> scopes = Arrays.asList("openid", "profile", "address", "email");
+        String nonce = UUID.randomUUID().toString();
+        String state = UUID.randomUUID().toString();
+
+        AuthorizationRequest authorizationRequest = new AuthorizationRequest(responseTypes, clientId, scopes, redirectUri, nonce);
+        authorizationRequest.setState(state);
+
+        try {
+            OxAuthCryptoProvider cryptoProvider = new OxAuthCryptoProvider();
+
+            JwtAuthorizationRequest jwtAuthorizationRequest = new JwtAuthorizationRequest(
+                    authorizationRequest, SignatureAlgorithm.HS256, clientSecret, cryptoProvider);
+            jwtAuthorizationRequest.addUserInfoClaim(new Claim(JwtClaimName.NAME, ClaimValue.createNull()));
+            jwtAuthorizationRequest.addUserInfoClaim(new Claim(JwtClaimName.NICKNAME, ClaimValue.createEssential(false)));
+            jwtAuthorizationRequest.addUserInfoClaim(new Claim(JwtClaimName.EMAIL, ClaimValue.createNull()));
+            jwtAuthorizationRequest.addUserInfoClaim(new Claim(JwtClaimName.EMAIL_VERIFIED, ClaimValue.createNull()));
+            jwtAuthorizationRequest.addUserInfoClaim(new Claim(JwtClaimName.PICTURE, ClaimValue.createEssential(false)));
+            jwtAuthorizationRequest.addIdTokenClaim(new Claim(JwtClaimName.AUTHENTICATION_TIME, ClaimValue.createNull()));
+            jwtAuthorizationRequest.addIdTokenClaim(new Claim(JwtClaimName.AUTHENTICATION_CONTEXT_CLASS_REFERENCE, ClaimValue.createValueList(new String[]{"basic"})));
+            jwtAuthorizationRequest.getIdTokenMember().setMaxAge(86400);
+            String authJwt = jwtAuthorizationRequest.getEncodedJwt();
+            String hash = Base64Util.base64urlencode(JwtUtil.getMessageDigestSHA256(authJwt));
+            String fileName = UUID.randomUUID().toString() + ".txt";
+            String filePath = requestFileBasePath + File.separator + fileName;
+            String fileUrl = requestFileBaseUrl + "/" + fileName + "#" + hash;
+            FileWriter fw = new FileWriter(filePath);
+            BufferedWriter bw = new BufferedWriter(fw);
+            bw.write(authJwt);
+            bw.close();
+            fw.close();
+            authorizationRequest.setRequestUri(fileUrl);
+            System.out.println("Request JWT: " + authJwt);
+            System.out.println("Request File Path: " + filePath);
+            System.out.println("Request File URL: " + fileUrl);
+        } catch (IOException e) {
+            e.printStackTrace();
+            fail(e.getMessage());
+        } catch (NoSuchAlgorithmException e) {
+            e.printStackTrace();
+            fail(e.getMessage());
+        } catch (NoSuchProviderException e) {
+            e.printStackTrace();
+            fail(e.getMessage());
+        }
+
+        // 3. Request authorization
+        AuthorizeClient authorizeClient = new AuthorizeClient(authorizationEndpoint);
+        authorizeClient.setRequest(authorizationRequest);
+
+        AuthorizationResponse authorizationResponse = authenticateResourceOwnerAndGrantAccess(
+                authorizationEndpoint, authorizationRequest, userId, userSecret);
+
+        assertNotNull(authorizationResponse.getLocation());
+        assertNotNull(authorizationResponse.getAccessToken());
+        assertNotNull(authorizationResponse.getState());
+    }
+}
\ No newline at end of file
diff --git a/oxAuth/Client/src/test/java/org/gluu/oxauth/interop/SupportRequestsContainingNonce.java b/oxAuth/Client/src/test/java/org/gluu/oxauth/interop/SupportRequestsContainingNonce.java
new file mode 100644
index 00000000..e726d737
--- /dev/null
+++ b/oxAuth/Client/src/test/java/org/gluu/oxauth/interop/SupportRequestsContainingNonce.java
@@ -0,0 +1,117 @@
+/*
+ * oxAuth is available under the MIT License (2008). See http://opensource.org/licenses/MIT for full text.
+ *
+ * Copyright (c) 2014, Gluu
+ */
+
+package org.gluu.oxauth.interop;
+
+import static org.testng.Assert.assertEquals;
+import static org.testng.Assert.assertNotNull;
+import static org.testng.Assert.assertTrue;
+
+import java.util.Arrays;
+import java.util.List;
+import java.util.UUID;
+
+import org.gluu.oxauth.BaseTest;
+import org.gluu.oxauth.client.AuthorizationRequest;
+import org.gluu.oxauth.client.AuthorizationResponse;
+import org.gluu.oxauth.client.AuthorizeClient;
+import org.gluu.oxauth.client.JwkClient;
+import org.gluu.oxauth.client.RegisterClient;
+import org.gluu.oxauth.client.RegisterRequest;
+import org.gluu.oxauth.client.RegisterResponse;
+import org.gluu.oxauth.model.common.ResponseType;
+import org.gluu.oxauth.model.crypto.signature.RSAPublicKey;
+import org.gluu.oxauth.model.crypto.signature.SignatureAlgorithm;
+import org.gluu.oxauth.model.jws.RSASigner;
+import org.gluu.oxauth.model.jwt.Jwt;
+import org.gluu.oxauth.model.jwt.JwtClaimName;
+import org.gluu.oxauth.model.jwt.JwtHeaderName;
+import org.gluu.oxauth.model.register.ApplicationType;
+import org.gluu.oxauth.model.util.StringUtils;
+import org.testng.annotations.Parameters;
+import org.testng.annotations.Test;
+
+/**
+ * OC5:FeatureTest-Support Requests Containing nonce
+ *
+ * @author Javier Rojas Blum
+ * @version November 3, 2016
+ */
+public class SupportRequestsContainingNonce extends BaseTest {
+
+    @Parameters({"userId", "userSecret", "redirectUri", "redirectUris", "sectorIdentifierUri"})
+    @Test
+    public void supportRequestsContainingNonce(
+            final String userId, final String userSecret, final String redirectUri, final String redirectUris,
+            final String sectorIdentifierUri) throws Exception {
+        showTitle("OC5:FeatureTest-Support Requests Containing nonce");
+
+        List<ResponseType> responseTypes = Arrays.asList(ResponseType.TOKEN, ResponseType.ID_TOKEN);
+
+        // 1. Register client
+        RegisterRequest registerRequest = new RegisterRequest(ApplicationType.WEB, "oxAuth test app",
+                StringUtils.spaceSeparatedToList(redirectUris));
+        registerRequest.setResponseTypes(responseTypes);
+        registerRequest.setSectorIdentifierUri(sectorIdentifierUri);
+
+        RegisterClient registerClient = new RegisterClient(registrationEndpoint);
+        registerClient.setRequest(registerRequest);
+        RegisterResponse registerResponse = registerClient.exec();
+
+        showClient(registerClient);
+        assertEquals(registerResponse.getStatus(), 200, "Unexpected response code: " + registerResponse.getEntity());
+        assertNotNull(registerResponse.getClientId());
+        assertNotNull(registerResponse.getClientSecret());
+        assertNotNull(registerResponse.getRegistrationAccessToken());
+        assertNotNull(registerResponse.getClientIdIssuedAt());
+        assertNotNull(registerResponse.getClientSecretExpiresAt());
+
+        String clientId = registerResponse.getClientId();
+        String clientSecret = registerResponse.getClientSecret();
+
+        // 2. Request authorization
+        List<String> scopes = Arrays.asList("openid");
+        String nonce = UUID.randomUUID().toString();
+        String state = UUID.randomUUID().toString();
+
+        AuthorizationRequest authorizationRequest = new AuthorizationRequest(responseTypes, clientId, scopes, redirectUri, nonce);
+        authorizationRequest.setState(state);
+
+        AuthorizeClient authorizeClient = new AuthorizeClient(authorizationEndpoint);
+        authorizeClient.setRequest(authorizationRequest);
+
+        AuthorizationResponse authorizationResponse = authenticateResourceOwnerAndGrantAccess(
+                authorizationEndpoint, authorizationRequest, userId, userSecret);
+
+        assertNotNull(authorizationResponse.getLocation(), "The location is null");
+        assertNotNull(authorizationResponse.getAccessToken(), "The accessToken is null");
+        assertNotNull(authorizationResponse.getTokenType(), "The tokenType is null");
+        assertNotNull(authorizationResponse.getIdToken(), "The idToken is null");
+        assertNotNull(authorizationResponse.getState(), "The state is null");
+
+        String idToken = authorizationResponse.getIdToken();
+
+        // 3. Validate id_token
+        Jwt jwt = Jwt.parse(idToken);
+        assertNotNull(jwt.getHeader().getClaimAsString(JwtHeaderName.TYPE));
+        assertNotNull(jwt.getHeader().getClaimAsString(JwtHeaderName.ALGORITHM));
+        assertNotNull(jwt.getClaims().getClaimAsString(JwtClaimName.ISSUER));
+        assertNotNull(jwt.getClaims().getClaimAsString(JwtClaimName.AUDIENCE));
+        assertNotNull(jwt.getClaims().getClaimAsString(JwtClaimName.EXPIRATION_TIME));
+        assertNotNull(jwt.getClaims().getClaimAsString(JwtClaimName.ISSUED_AT));
+        assertNotNull(jwt.getClaims().getClaimAsString(JwtClaimName.SUBJECT_IDENTIFIER));
+        assertNotNull(jwt.getClaims().getClaimAsString(JwtClaimName.ACCESS_TOKEN_HASH));
+        assertNotNull(jwt.getClaims().getClaimAsString(JwtClaimName.AUTHENTICATION_TIME));
+        assertEquals(nonce, jwt.getClaims().getClaimAsString(JwtClaimName.NONCE));
+
+        RSAPublicKey publicKey = JwkClient.getRSAPublicKey(
+                jwksUri,
+                jwt.getHeader().getClaimAsString(JwtHeaderName.KEY_ID));
+        RSASigner rsaSigner = new RSASigner(SignatureAlgorithm.RS256, publicKey);
+
+        assertTrue(rsaSigner.validate(jwt));
+    }
+}
\ No newline at end of file
diff --git a/oxAuth/Client/src/test/java/org/gluu/oxauth/interop/SupportRequestsWithoutNonce.java b/oxAuth/Client/src/test/java/org/gluu/oxauth/interop/SupportRequestsWithoutNonce.java
new file mode 100644
index 00000000..e36ca4ce
--- /dev/null
+++ b/oxAuth/Client/src/test/java/org/gluu/oxauth/interop/SupportRequestsWithoutNonce.java
@@ -0,0 +1,111 @@
+/*
+ * oxAuth is available under the MIT License (2008). See http://opensource.org/licenses/MIT for full text.
+ *
+ * Copyright (c) 2014, Gluu
+ */
+
+package org.gluu.oxauth.interop;
+
+import static org.testng.Assert.assertEquals;
+import static org.testng.Assert.assertNotNull;
+
+import java.util.Arrays;
+import java.util.List;
+import java.util.UUID;
+
+import org.gluu.oxauth.BaseTest;
+import org.gluu.oxauth.client.AuthorizationRequest;
+import org.gluu.oxauth.client.AuthorizationResponse;
+import org.gluu.oxauth.client.RegisterClient;
+import org.gluu.oxauth.client.RegisterRequest;
+import org.gluu.oxauth.client.RegisterResponse;
+import org.gluu.oxauth.client.TokenClient;
+import org.gluu.oxauth.client.TokenRequest;
+import org.gluu.oxauth.client.TokenResponse;
+import org.gluu.oxauth.model.common.AuthenticationMethod;
+import org.gluu.oxauth.model.common.GrantType;
+import org.gluu.oxauth.model.common.ResponseType;
+import org.gluu.oxauth.model.register.ApplicationType;
+import org.gluu.oxauth.model.util.StringUtils;
+import org.testng.annotations.Parameters;
+import org.testng.annotations.Test;
+
+/**
+ * OC5:FeatureTest-Support Requests Without nonce
+ *
+ * @author Javier Rojas Blum
+ * @version November 3, 2016
+ */
+public class SupportRequestsWithoutNonce extends BaseTest {
+
+    @Parameters({"userId", "userSecret", "redirectUris", "redirectUri", "sectorIdentifierUri"})
+    @Test
+    public void supportRequestsWithoutNonce(
+            final String userId, final String userSecret, final String redirectUris, final String redirectUri,
+            final String sectorIdentifierUri) throws Exception {
+        showTitle("OC5:FeatureTest-Support Requests Without nonce");
+
+        List<ResponseType> responseTypes = Arrays.asList(
+                ResponseType.CODE,
+                ResponseType.ID_TOKEN);
+
+        // 1. Register client
+        RegisterRequest registerRequest = new RegisterRequest(ApplicationType.WEB, "oxAuth test app",
+                StringUtils.spaceSeparatedToList(redirectUris));
+        registerRequest.setResponseTypes(responseTypes);
+        registerRequest.setSectorIdentifierUri(sectorIdentifierUri);
+
+        RegisterClient registerClient = new RegisterClient(registrationEndpoint);
+        registerClient.setRequest(registerRequest);
+        RegisterResponse registerResponse = registerClient.exec();
+
+        showClient(registerClient);
+        assertEquals(registerResponse.getStatus(), 200, "Unexpected response code: " + registerResponse.getEntity());
+        assertNotNull(registerResponse.getClientId());
+        assertNotNull(registerResponse.getClientSecret());
+        assertNotNull(registerResponse.getRegistrationAccessToken());
+        assertNotNull(registerResponse.getClientIdIssuedAt());
+        assertNotNull(registerResponse.getClientSecretExpiresAt());
+
+        String clientId = registerResponse.getClientId();
+        String clientSecret = registerResponse.getClientSecret();
+
+        // 2. Request authorization and receive the authorization code.
+        List<String> scopes = Arrays.asList("openid", "profile", "address", "email");
+        String state = UUID.randomUUID().toString();
+        String nonce = UUID.randomUUID().toString();
+
+        AuthorizationRequest authorizationRequest = new AuthorizationRequest(responseTypes, clientId, scopes, redirectUri, nonce);
+        authorizationRequest.setState(state);
+
+        AuthorizationResponse authorizationResponse = authenticateResourceOwnerAndGrantAccess(
+                authorizationEndpoint, authorizationRequest, userId, userSecret);
+
+        assertNotNull(authorizationResponse.getLocation(), "The location is null");
+        assertNotNull(authorizationResponse.getCode(), "The authorization code is null");
+        assertNotNull(authorizationResponse.getState(), "The state is null");
+        assertNotNull(authorizationResponse.getScope(), "The scope is null");
+
+        String authorizationCode = authorizationResponse.getCode();
+
+        // 3. Request access token using the authorization code.
+        TokenRequest tokenRequest = new TokenRequest(GrantType.AUTHORIZATION_CODE);
+        tokenRequest.setCode(authorizationCode);
+        tokenRequest.setRedirectUri(redirectUri);
+        tokenRequest.setAuthUsername(clientId);
+        tokenRequest.setAuthPassword(clientSecret);
+        tokenRequest.setAuthenticationMethod(AuthenticationMethod.CLIENT_SECRET_BASIC);
+
+        TokenClient tokenClient = new TokenClient(tokenEndpoint);
+        tokenClient.setRequest(tokenRequest);
+        TokenResponse tokenResponse = tokenClient.exec();
+
+        showClient(tokenClient);
+        assertEquals(tokenResponse.getStatus(), 200, "Unexpected response code: " + tokenResponse.getStatus());
+        assertNotNull(tokenResponse.getEntity(), "The entity is null");
+        assertNotNull(tokenResponse.getAccessToken(), "The access token is null");
+        assertNotNull(tokenResponse.getExpiresIn(), "The expires in value is null");
+        assertNotNull(tokenResponse.getTokenType(), "The token type is null");
+        assertNotNull(tokenResponse.getRefreshToken(), "The refresh token is null");
+    }
+}
\ No newline at end of file
diff --git a/oxAuth/Client/src/test/java/org/gluu/oxauth/interop/SupportScopeRequestingAddressClaims.java b/oxAuth/Client/src/test/java/org/gluu/oxauth/interop/SupportScopeRequestingAddressClaims.java
new file mode 100644
index 00000000..38a70987
--- /dev/null
+++ b/oxAuth/Client/src/test/java/org/gluu/oxauth/interop/SupportScopeRequestingAddressClaims.java
@@ -0,0 +1,121 @@
+/*
+ * oxAuth is available under the MIT License (2008). See http://opensource.org/licenses/MIT for full text.
+ *
+ * Copyright (c) 2014, Gluu
+ */
+
+package org.gluu.oxauth.interop;
+
+import static org.testng.Assert.assertEquals;
+import static org.testng.Assert.assertNotNull;
+
+import java.util.Arrays;
+import java.util.List;
+import java.util.UUID;
+
+import org.gluu.oxauth.BaseTest;
+import org.gluu.oxauth.client.AuthorizationRequest;
+import org.gluu.oxauth.client.AuthorizationResponse;
+import org.gluu.oxauth.client.RegisterClient;
+import org.gluu.oxauth.client.RegisterRequest;
+import org.gluu.oxauth.client.RegisterResponse;
+import org.gluu.oxauth.client.TokenClient;
+import org.gluu.oxauth.client.TokenRequest;
+import org.gluu.oxauth.client.TokenResponse;
+import org.gluu.oxauth.client.UserInfoClient;
+import org.gluu.oxauth.client.UserInfoResponse;
+import org.gluu.oxauth.model.common.AuthenticationMethod;
+import org.gluu.oxauth.model.common.GrantType;
+import org.gluu.oxauth.model.common.ResponseType;
+import org.gluu.oxauth.model.jwt.JwtClaimName;
+import org.gluu.oxauth.model.register.ApplicationType;
+import org.gluu.oxauth.model.util.StringUtils;
+import org.testng.annotations.Parameters;
+import org.testng.annotations.Test;
+
+/**
+ * OC5:FeatureTest-Support scope Requesting address Claims
+ *
+ * @author Javier Rojas Blum
+ * @version June 19, 2015
+ */
+public class SupportScopeRequestingAddressClaims extends BaseTest {
+
+    @Parameters({"userId", "userSecret", "redirectUris", "redirectUri", "sectorIdentifierUri"})
+    @Test
+    public void supportScopeRequestingAddressClaims(
+            final String userId, final String userSecret, final String redirectUris, final String redirectUri,
+            final String sectorIdentifierUri) throws Exception {
+        showTitle("OC5:FeatureTest-Support scope Requesting address Claims");
+
+        List<ResponseType> responseTypes = Arrays.asList(ResponseType.CODE);
+
+        // 1. Register client
+        RegisterRequest registerRequest = new RegisterRequest(ApplicationType.WEB, "oxAuth test app",
+                StringUtils.spaceSeparatedToList(redirectUris));
+        registerRequest.setResponseTypes(responseTypes);
+        registerRequest.setSectorIdentifierUri(sectorIdentifierUri);
+
+        RegisterClient registerClient = new RegisterClient(registrationEndpoint);
+        registerClient.setRequest(registerRequest);
+        RegisterResponse registerResponse = registerClient.exec();
+
+        showClient(registerClient);
+        assertEquals(registerResponse.getStatus(), 200, "Unexpected response code: " + registerResponse.getEntity());
+        assertNotNull(registerResponse.getClientId());
+        assertNotNull(registerResponse.getClientSecret());
+        assertNotNull(registerResponse.getRegistrationAccessToken());
+        assertNotNull(registerResponse.getClientIdIssuedAt());
+        assertNotNull(registerResponse.getClientSecretExpiresAt());
+
+        String clientId = registerResponse.getClientId();
+        String clientSecret = registerResponse.getClientSecret();
+
+        // 2. Request authorization
+        List<String> scopes = Arrays.asList("openid", "address");
+        String nonce = UUID.randomUUID().toString();
+        String state = UUID.randomUUID().toString();
+
+        AuthorizationRequest authorizationRequest = new AuthorizationRequest(responseTypes, clientId, scopes, redirectUri, nonce);
+        authorizationRequest.setState(state);
+
+        AuthorizationResponse authorizationResponse = authenticateResourceOwnerAndGrantAccess(
+                authorizationEndpoint, authorizationRequest, userId, userSecret);
+
+        assertNotNull(authorizationResponse.getLocation());
+        assertNotNull(authorizationResponse.getCode());
+        assertNotNull(authorizationResponse.getState());
+
+        String authorizationCode = authorizationResponse.getCode();
+
+        // 3. Get Access Token
+        TokenRequest tokenRequest = new TokenRequest(GrantType.AUTHORIZATION_CODE);
+        tokenRequest.setCode(authorizationCode);
+        tokenRequest.setRedirectUri(redirectUri);
+        tokenRequest.setAuthUsername(clientId);
+        tokenRequest.setAuthPassword(clientSecret);
+        tokenRequest.setAuthenticationMethod(AuthenticationMethod.CLIENT_SECRET_BASIC);
+
+        TokenClient tokenClient = new TokenClient(tokenEndpoint);
+        tokenClient.setRequest(tokenRequest);
+        TokenResponse tokenResponse = tokenClient.exec();
+
+        showClient(tokenClient);
+        assertEquals(tokenResponse.getStatus(), 200, "Unexpected response code: " + tokenResponse.getStatus());
+        assertNotNull(tokenResponse.getEntity(), "The entity is null");
+        assertNotNull(tokenResponse.getAccessToken(), "The access token is null");
+        assertNotNull(tokenResponse.getExpiresIn(), "The expires in value is null");
+        assertNotNull(tokenResponse.getTokenType(), "The token type is null");
+        assertNotNull(tokenResponse.getRefreshToken(), "The refresh token is null");
+
+        String accessToken = tokenResponse.getAccessToken();
+
+        // 4. Request user info
+        UserInfoClient userInfoClient = new UserInfoClient(userInfoEndpoint);
+        UserInfoResponse userInfoResponse = userInfoClient.execUserInfo(accessToken);
+
+        showClient(userInfoClient);
+        assertEquals(userInfoResponse.getStatus(), 200, "Unexpected response code: " + userInfoResponse.getStatus());
+        assertNotNull(userInfoResponse.getClaim(JwtClaimName.SUBJECT_IDENTIFIER));
+    }
+}
\ No newline at end of file
diff --git a/oxAuth/Client/src/test/java/org/gluu/oxauth/interop/SupportScopeRequestingAllBasicClaims.java b/oxAuth/Client/src/test/java/org/gluu/oxauth/interop/SupportScopeRequestingAllBasicClaims.java
new file mode 100644
index 00000000..0c459ab1
--- /dev/null
+++ b/oxAuth/Client/src/test/java/org/gluu/oxauth/interop/SupportScopeRequestingAllBasicClaims.java
@@ -0,0 +1,121 @@
+/*
+ * oxAuth is available under the MIT License (2008). See http://opensource.org/licenses/MIT for full text.
+ *
+ * Copyright (c) 2014, Gluu
+ */
+
+package org.gluu.oxauth.interop;
+
+import static org.testng.Assert.assertEquals;
+import static org.testng.Assert.assertNotNull;
+
+import java.util.Arrays;
+import java.util.List;
+import java.util.UUID;
+
+import org.gluu.oxauth.BaseTest;
+import org.gluu.oxauth.client.AuthorizationRequest;
+import org.gluu.oxauth.client.AuthorizationResponse;
+import org.gluu.oxauth.client.RegisterClient;
+import org.gluu.oxauth.client.RegisterRequest;
+import org.gluu.oxauth.client.RegisterResponse;
+import org.gluu.oxauth.client.TokenClient;
+import org.gluu.oxauth.client.TokenRequest;
+import org.gluu.oxauth.client.TokenResponse;
+import org.gluu.oxauth.client.UserInfoClient;
+import org.gluu.oxauth.client.UserInfoResponse;
+import org.gluu.oxauth.model.common.AuthenticationMethod;
+import org.gluu.oxauth.model.common.GrantType;
+import org.gluu.oxauth.model.common.ResponseType;
+import org.gluu.oxauth.model.jwt.JwtClaimName;
+import org.gluu.oxauth.model.register.ApplicationType;
+import org.gluu.oxauth.model.util.StringUtils;
+import org.testng.annotations.Parameters;
+import org.testng.annotations.Test;
+
+/**
+ * OC5:FeatureTest-Support scope Requesting All Basic Claims
+ *
+ * @author Javier Rojas Blum
+ * @version June 19, 2015
+ */
+public class SupportScopeRequestingAllBasicClaims extends BaseTest {
+
+    @Parameters({"userId", "userSecret", "redirectUris", "redirectUri", "sectorIdentifierUri"})
+    @Test
+    public void supportScopeRequestingAllBasicClaims(
+            final String userId, final String userSecret, final String redirectUris, final String redirectUri,
+            final String sectorIdentifierUri) throws Exception {
+        showTitle("OC5:FeatureTest-Support scope Requesting All Basic Claims");
+
+        List<ResponseType> responseTypes = Arrays.asList(ResponseType.CODE);
+
+        // 1. Register client
+        RegisterRequest registerRequest = new RegisterRequest(ApplicationType.WEB, "oxAuth test app",
+                StringUtils.spaceSeparatedToList(redirectUris));
+        registerRequest.setResponseTypes(responseTypes);
+        registerRequest.setSectorIdentifierUri(sectorIdentifierUri);
+
+        RegisterClient registerClient = new RegisterClient(registrationEndpoint);
+        registerClient.setRequest(registerRequest);
+        RegisterResponse registerResponse = registerClient.exec();
+
+        showClient(registerClient);
+        assertEquals(registerResponse.getStatus(), 200, "Unexpected response code: " + registerResponse.getEntity());
+        assertNotNull(registerResponse.getClientId());
+        assertNotNull(registerResponse.getClientSecret());
+        assertNotNull(registerResponse.getRegistrationAccessToken());
+        assertNotNull(registerResponse.getClientIdIssuedAt());
+        assertNotNull(registerResponse.getClientSecretExpiresAt());
+
+        String clientId = registerResponse.getClientId();
+        String clientSecret = registerResponse.getClientSecret();
+
+        // 2. Request authorization
+        List<String> scopes = Arrays.asList("openid", "profile", "email", "address", "phone");
+        String nonce = UUID.randomUUID().toString();
+        String state = UUID.randomUUID().toString();
+
+        AuthorizationRequest authorizationRequest = new AuthorizationRequest(responseTypes, clientId, scopes, redirectUri, nonce);
+        authorizationRequest.setState(state);
+
+        AuthorizationResponse authorizationResponse = authenticateResourceOwnerAndGrantAccess(
+                authorizationEndpoint, authorizationRequest, userId, userSecret);
+
+        assertNotNull(authorizationResponse.getLocation());
+        assertNotNull(authorizationResponse.getCode());
+        assertNotNull(authorizationResponse.getState());
+
+        String authorizationCode = authorizationResponse.getCode();
+
+        // 3. Get Access Token
+        TokenRequest tokenRequest = new TokenRequest(GrantType.AUTHORIZATION_CODE);
+        tokenRequest.setCode(authorizationCode);
+        tokenRequest.setRedirectUri(redirectUri);
+        tokenRequest.setAuthUsername(clientId);
+        tokenRequest.setAuthPassword(clientSecret);
+        tokenRequest.setAuthenticationMethod(AuthenticationMethod.CLIENT_SECRET_BASIC);
+
+        TokenClient tokenClient = new TokenClient(tokenEndpoint);
+        tokenClient.setRequest(tokenRequest);
+        TokenResponse tokenResponse = tokenClient.exec();
+
+        showClient(tokenClient);
+        assertEquals(tokenResponse.getStatus(), 200, "Unexpected response code: " + tokenResponse.getStatus());
+        assertNotNull(tokenResponse.getEntity(), "The entity is null");
+        assertNotNull(tokenResponse.getAccessToken(), "The access token is null");
+        assertNotNull(tokenResponse.getExpiresIn(), "The expires in value is null");
+        assertNotNull(tokenResponse.getTokenType(), "The token type is null");
+        assertNotNull(tokenResponse.getRefreshToken(), "The refresh token is null");
+
+        String accessToken = tokenResponse.getAccessToken();
+
+        // 4. Request user info
+        UserInfoClient userInfoClient = new UserInfoClient(userInfoEndpoint);
+        UserInfoResponse userInfoResponse = userInfoClient.execUserInfo(accessToken);
+
+        showClient(userInfoClient);
+        assertEquals(userInfoResponse.getStatus(), 200, "Unexpected response code: " + userInfoResponse.getStatus());
+        assertNotNull(userInfoResponse.getClaim(JwtClaimName.SUBJECT_IDENTIFIER));
+    }
+}
\ No newline at end of file
diff --git a/oxAuth/Client/src/test/java/org/gluu/oxauth/interop/SupportScopeRequestingEmailClaims.java b/oxAuth/Client/src/test/java/org/gluu/oxauth/interop/SupportScopeRequestingEmailClaims.java
new file mode 100644
index 00000000..bfa99254
--- /dev/null
+++ b/oxAuth/Client/src/test/java/org/gluu/oxauth/interop/SupportScopeRequestingEmailClaims.java
@@ -0,0 +1,121 @@
+/*
+ * oxAuth is available under the MIT License (2008). See http://opensource.org/licenses/MIT for full text.
+ *
+ * Copyright (c) 2014, Gluu
+ */
+
+package org.gluu.oxauth.interop;
+
+import static org.testng.Assert.assertEquals;
+import static org.testng.Assert.assertNotNull;
+
+import java.util.Arrays;
+import java.util.List;
+import java.util.UUID;
+
+import org.gluu.oxauth.BaseTest;
+import org.gluu.oxauth.client.AuthorizationRequest;
+import org.gluu.oxauth.client.AuthorizationResponse;
+import org.gluu.oxauth.client.RegisterClient;
+import org.gluu.oxauth.client.RegisterRequest;
+import org.gluu.oxauth.client.RegisterResponse;
+import org.gluu.oxauth.client.TokenClient;
+import org.gluu.oxauth.client.TokenRequest;
+import org.gluu.oxauth.client.TokenResponse;
+import org.gluu.oxauth.client.UserInfoClient;
+import org.gluu.oxauth.client.UserInfoResponse;
+import org.gluu.oxauth.model.common.AuthenticationMethod;
+import org.gluu.oxauth.model.common.GrantType;
+import org.gluu.oxauth.model.common.ResponseType;
+import org.gluu.oxauth.model.jwt.JwtClaimName;
+import org.gluu.oxauth.model.register.ApplicationType;
+import org.gluu.oxauth.model.util.StringUtils;
+import org.testng.annotations.Parameters;
+import org.testng.annotations.Test;
+
+/**
+ * OC5:FeatureTest-Support scope Requesting email Claims
+ *
+ * @author Javier Rojas Blum
+ * @version June 19, 2015
+ */
+public class SupportScopeRequestingEmailClaims extends BaseTest {
+
+    @Parameters({"userId", "userSecret", "redirectUris", "redirectUri", "sectorIdentifierUri"})
+    @Test
+    public void supportScopeRequestingEmailClaims(
+            final String userId, final String userSecret, final String redirectUris, final String redirectUri,
+            final String sectorIdentifierUri) throws Exception {
+        showTitle("OC5:FeatureTest-Support scope Requesting email Claims");
+
+        List<ResponseType> responseTypes = Arrays.asList(ResponseType.CODE);
+
+        // 1. Register client
+        RegisterRequest registerRequest = new RegisterRequest(ApplicationType.WEB, "oxAuth test app",
+                StringUtils.spaceSeparatedToList(redirectUris));
+        registerRequest.setResponseTypes(responseTypes);
+        registerRequest.setSectorIdentifierUri(sectorIdentifierUri);
+
+        RegisterClient registerClient = new RegisterClient(registrationEndpoint);
+        registerClient.setRequest(registerRequest);
+        RegisterResponse registerResponse = registerClient.exec();
+
+        showClient(registerClient);
+        assertEquals(registerResponse.getStatus(), 200, "Unexpected response code: " + registerResponse.getEntity());
+        assertNotNull(registerResponse.getClientId());
+        assertNotNull(registerResponse.getClientSecret());
+        assertNotNull(registerResponse.getRegistrationAccessToken());
+        assertNotNull(registerResponse.getClientIdIssuedAt());
+        assertNotNull(registerResponse.getClientSecretExpiresAt());
+
+        String clientId = registerResponse.getClientId();
+        String clientSecret = registerResponse.getClientSecret();
+
+        // 2. Request authorization
+        List<String> scopes = Arrays.asList("openid", "email");
+        String nonce = UUID.randomUUID().toString();
+        String state = UUID.randomUUID().toString();
+
+        AuthorizationRequest authorizationRequest = new AuthorizationRequest(responseTypes, clientId, scopes, redirectUri, nonce);
+        authorizationRequest.setState(state);
+
+        AuthorizationResponse authorizationResponse = authenticateResourceOwnerAndGrantAccess(
+                authorizationEndpoint, authorizationRequest, userId, userSecret);
+
+        assertNotNull(authorizationResponse.getLocation());
+        assertNotNull(authorizationResponse.getCode());
+        assertNotNull(authorizationResponse.getState());
+
+        String authorizationCode = authorizationResponse.getCode();
+
+        // 3. Get Access Token
+        TokenRequest tokenRequest = new TokenRequest(GrantType.AUTHORIZATION_CODE);
+        tokenRequest.setCode(authorizationCode);
+        tokenRequest.setRedirectUri(redirectUri);
+        tokenRequest.setAuthUsername(clientId);
+        tokenRequest.setAuthPassword(clientSecret);
+        tokenRequest.setAuthenticationMethod(AuthenticationMethod.CLIENT_SECRET_BASIC);
+
+        TokenClient tokenClient = new TokenClient(tokenEndpoint);
+        tokenClient.setRequest(tokenRequest);
+        TokenResponse tokenResponse = tokenClient.exec();
+
+        showClient(tokenClient);
+        assertEquals(tokenResponse.getStatus(), 200, "Unexpected response code: " + tokenResponse.getStatus());
+        assertNotNull(tokenResponse.getEntity(), "The entity is null");
+        assertNotNull(tokenResponse.getAccessToken(), "The access token is null");
+        assertNotNull(tokenResponse.getExpiresIn(), "The expires in value is null");
+        assertNotNull(tokenResponse.getTokenType(), "The token type is null");
+        assertNotNull(tokenResponse.getRefreshToken(), "The refresh token is null");
+
+        String accessToken = tokenResponse.getAccessToken();
+
+        // 4. Request user info
+        UserInfoClient userInfoClient = new UserInfoClient(userInfoEndpoint);
+        UserInfoResponse userInfoResponse = userInfoClient.execUserInfo(accessToken);
+
+        showClient(userInfoClient);
+        assertEquals(userInfoResponse.getStatus(), 200, "Unexpected response code: " + userInfoResponse.getStatus());
+        assertNotNull(userInfoResponse.getClaim(JwtClaimName.SUBJECT_IDENTIFIER));
+    }
+}
\ No newline at end of file
diff --git a/oxAuth/Client/src/test/java/org/gluu/oxauth/interop/SupportScopeRequestingNoSpecificClaims.java b/oxAuth/Client/src/test/java/org/gluu/oxauth/interop/SupportScopeRequestingNoSpecificClaims.java
new file mode 100644
index 00000000..4a80521e
--- /dev/null
+++ b/oxAuth/Client/src/test/java/org/gluu/oxauth/interop/SupportScopeRequestingNoSpecificClaims.java
@@ -0,0 +1,140 @@
+/*
+ * oxAuth is available under the MIT License (2008). See http://opensource.org/licenses/MIT for full text.
+ *
+ * Copyright (c) 2014, Gluu
+ */
+
+package org.gluu.oxauth.interop;
+
+import static org.testng.Assert.assertEquals;
+import static org.testng.Assert.assertNotNull;
+import static org.testng.Assert.assertTrue;
+
+import java.util.Arrays;
+import java.util.List;
+import java.util.UUID;
+
+import org.gluu.oxauth.BaseTest;
+import org.gluu.oxauth.client.AuthorizationRequest;
+import org.gluu.oxauth.client.AuthorizationResponse;
+import org.gluu.oxauth.client.JwkClient;
+import org.gluu.oxauth.client.RegisterClient;
+import org.gluu.oxauth.client.RegisterRequest;
+import org.gluu.oxauth.client.RegisterResponse;
+import org.gluu.oxauth.client.TokenClient;
+import org.gluu.oxauth.client.TokenRequest;
+import org.gluu.oxauth.client.TokenResponse;
+import org.gluu.oxauth.client.UserInfoClient;
+import org.gluu.oxauth.client.UserInfoResponse;
+import org.gluu.oxauth.model.common.AuthenticationMethod;
+import org.gluu.oxauth.model.common.GrantType;
+import org.gluu.oxauth.model.common.ResponseType;
+import org.gluu.oxauth.model.crypto.signature.RSAPublicKey;
+import org.gluu.oxauth.model.crypto.signature.SignatureAlgorithm;
+import org.gluu.oxauth.model.jws.RSASigner;
+import org.gluu.oxauth.model.jwt.Jwt;
+import org.gluu.oxauth.model.jwt.JwtClaimName;
+import org.gluu.oxauth.model.jwt.JwtHeaderName;
+import org.gluu.oxauth.model.register.ApplicationType;
+import org.gluu.oxauth.model.util.StringUtils;
+import org.testng.annotations.Parameters;
+import org.testng.annotations.Test;
+
+/**
+ * OC5:FeatureTest-Support scope Requesting No Specific Claims
+ *
+ * @author Javier Rojas Blum
+ * @version June 19, 2015
+ */
+public class SupportScopeRequestingNoSpecificClaims extends BaseTest {
+
+    @Parameters({"userId", "userSecret", "redirectUris", "redirectUri", "sectorIdentifierUri"})
+    @Test
+    public void supportScopeRequestingNoSpecificClaims(
+            final String userId, final String userSecret, final String redirectUris, final String redirectUri,
+            final String sectorIdentifierUri) throws Exception {
+        showTitle("OC5:FeatureTest-Support scope Requesting No Specific Claims");
+
+        List<ResponseType> responseTypes = Arrays.asList(ResponseType.CODE);
+
+        // 1. Register client
+        RegisterRequest registerRequest = new RegisterRequest(ApplicationType.WEB, "oxAuth test app",
+                StringUtils.spaceSeparatedToList(redirectUris));
+        registerRequest.setResponseTypes(responseTypes);
+        registerRequest.setSectorIdentifierUri(sectorIdentifierUri);
+
+        RegisterClient registerClient = new RegisterClient(registrationEndpoint);
+        registerClient.setRequest(registerRequest);
+        RegisterResponse registerResponse = registerClient.exec();
+
+        showClient(registerClient);
+        assertEquals(registerResponse.getStatus(), 200, "Unexpected response code: " + registerResponse.getEntity());
+        assertNotNull(registerResponse.getClientId());
+        assertNotNull(registerResponse.getClientSecret());
+        assertNotNull(registerResponse.getRegistrationAccessToken());
+        assertNotNull(registerResponse.getClientIdIssuedAt());
+        assertNotNull(registerResponse.getClientSecretExpiresAt());
+
+        String clientId = registerResponse.getClientId();
+        String clientSecret = registerResponse.getClientSecret();
+
+        // 2. Request authorization
+        List<String> scopes = Arrays.asList("openid");
+        String nonce = UUID.randomUUID().toString();
+        String state = UUID.randomUUID().toString();
+
+        AuthorizationRequest authorizationRequest = new AuthorizationRequest(responseTypes, clientId, scopes, redirectUri, nonce);
+        authorizationRequest.setState(state);
+
+        AuthorizationResponse authorizationResponse = authenticateResourceOwnerAndGrantAccess(
+                authorizationEndpoint, authorizationRequest, userId, userSecret);
+
+        assertNotNull(authorizationResponse.getLocation());
+        assertNotNull(authorizationResponse.getCode());
+        assertNotNull(authorizationResponse.getState());
+
+        String authorizationCode = authorizationResponse.getCode();
+
+        // 3. Get Access Token
+        TokenRequest tokenRequest = new TokenRequest(GrantType.AUTHORIZATION_CODE);
+        tokenRequest.setCode(authorizationCode);
+        tokenRequest.setRedirectUri(redirectUri);
+        tokenRequest.setAuthUsername(clientId);
+        tokenRequest.setAuthPassword(clientSecret);
+        tokenRequest.setAuthenticationMethod(AuthenticationMethod.CLIENT_SECRET_BASIC);
+
+        TokenClient tokenClient = new TokenClient(tokenEndpoint);
+        tokenClient.setRequest(tokenRequest);
+        TokenResponse tokenResponse = tokenClient.exec();
+
+        showClient(tokenClient);
+        assertEquals(tokenResponse.getStatus(), 200, "Unexpected response code: " + tokenResponse.getStatus());
+        assertNotNull(tokenResponse.getEntity(), "The entity is null");
+        assertNotNull(tokenResponse.getAccessToken(), "The access token is null");
+        assertNotNull(tokenResponse.getExpiresIn(), "The expires in value is null");
+        assertNotNull(tokenResponse.getTokenType(), "The token type is null");
+        assertNotNull(tokenResponse.getRefreshToken(), "The refresh token is null");
+
+        String accessToken = tokenResponse.getAccessToken();
+        String idToken = tokenResponse.getIdToken();
+
+        // 4. Request user info
+        UserInfoClient userInfoClient = new UserInfoClient(userInfoEndpoint);
+        UserInfoResponse userInfoResponse = userInfoClient.execUserInfo(accessToken);
+
+        showClient(userInfoClient);
+        assertEquals(userInfoResponse.getStatus(), 200, "Unexpected response code: " + userInfoResponse.getStatus());
+        assertNotNull(userInfoResponse.getClaim(JwtClaimName.SUBJECT_IDENTIFIER));
+
+        // 5. Validate id_token
+        Jwt jwt = Jwt.parse(idToken);
+        assertNotNull(jwt.getClaims().getClaimAsString(JwtClaimName.SUBJECT_IDENTIFIER));
+
+        RSAPublicKey publicKey = JwkClient.getRSAPublicKey(
+                jwksUri,
+                jwt.getHeader().getClaimAsString(JwtHeaderName.KEY_ID));
+        RSASigner rsaSigner = new RSASigner(SignatureAlgorithm.RS256, publicKey);
+
+        assertTrue(rsaSigner.validate(jwt));
+    }
+}
\ No newline at end of file
diff --git a/oxAuth/Client/src/test/java/org/gluu/oxauth/interop/SupportScopeRequestingPhoneClaims.java b/oxAuth/Client/src/test/java/org/gluu/oxauth/interop/SupportScopeRequestingPhoneClaims.java
new file mode 100644
index 00000000..74bc5351
--- /dev/null
+++ b/oxAuth/Client/src/test/java/org/gluu/oxauth/interop/SupportScopeRequestingPhoneClaims.java
@@ -0,0 +1,121 @@
+/*
+ * oxAuth is available under the MIT License (2008). See http://opensource.org/licenses/MIT for full text.
+ *
+ * Copyright (c) 2014, Gluu
+ */
+
+package org.gluu.oxauth.interop;
+
+import static org.testng.Assert.assertEquals;
+import static org.testng.Assert.assertNotNull;
+
+import java.util.Arrays;
+import java.util.List;
+import java.util.UUID;
+
+import org.gluu.oxauth.BaseTest;
+import org.gluu.oxauth.client.AuthorizationRequest;
+import org.gluu.oxauth.client.AuthorizationResponse;
+import org.gluu.oxauth.client.RegisterClient;
+import org.gluu.oxauth.client.RegisterRequest;
+import org.gluu.oxauth.client.RegisterResponse;
+import org.gluu.oxauth.client.TokenClient;
+import org.gluu.oxauth.client.TokenRequest;
+import org.gluu.oxauth.client.TokenResponse;
+import org.gluu.oxauth.client.UserInfoClient;
+import org.gluu.oxauth.client.UserInfoResponse;
+import org.gluu.oxauth.model.common.AuthenticationMethod;
+import org.gluu.oxauth.model.common.GrantType;
+import org.gluu.oxauth.model.common.ResponseType;
+import org.gluu.oxauth.model.jwt.JwtClaimName;
+import org.gluu.oxauth.model.register.ApplicationType;
+import org.gluu.oxauth.model.util.StringUtils;
+import org.testng.annotations.Parameters;
+import org.testng.annotations.Test;
+
+/**
+ * OC5:FeatureTest-Support scope Requesting phone Claims
+ *
+ * @author Javier Rojas Blum
+ * @version June 19, 2015
+ */
+public class SupportScopeRequestingPhoneClaims extends BaseTest {
+
+    @Parameters({"userId", "userSecret", "redirectUris", "redirectUri", "sectorIdentifierUri"})
+    @Test
+    public void supportScopeRequestingPhoneClaims(
+            final String userId, final String userSecret, final String redirectUris, final String redirectUri,
+            final String sectorIdentifierUri) throws Exception {
+        showTitle("OC5:FeatureTest-Support scope Requesting phone Claims");
+
+        List<ResponseType> responseTypes = Arrays.asList(ResponseType.CODE);
+
+        // 1. Register client
+        RegisterRequest registerRequest = new RegisterRequest(ApplicationType.WEB, "oxAuth test app",
+                StringUtils.spaceSeparatedToList(redirectUris));
+        registerRequest.setResponseTypes(responseTypes);
+        registerRequest.setSectorIdentifierUri(sectorIdentifierUri);
+
+        RegisterClient registerClient = new RegisterClient(registrationEndpoint);
+        registerClient.setRequest(registerRequest);
+        RegisterResponse registerResponse = registerClient.exec();
+
+        showClient(registerClient);
+        assertEquals(registerResponse.getStatus(), 200, "Unexpected response code: " + registerResponse.getEntity());
+        assertNotNull(registerResponse.getClientId());
+        assertNotNull(registerResponse.getClientSecret());
+        assertNotNull(registerResponse.getRegistrationAccessToken());
+        assertNotNull(registerResponse.getClientIdIssuedAt());
+        assertNotNull(registerResponse.getClientSecretExpiresAt());
+
+        String clientId = registerResponse.getClientId();
+        String clientSecret = registerResponse.getClientSecret();
+
+        // 2. Request authorization
+        List<String> scopes = Arrays.asList("openid", "phone");
+        String nonce = UUID.randomUUID().toString();
+        String state = UUID.randomUUID().toString();
+
+        AuthorizationRequest authorizationRequest = new AuthorizationRequest(responseTypes, clientId, scopes, redirectUri, nonce);
+        authorizationRequest.setState(state);
+
+        AuthorizationResponse authorizationResponse = authenticateResourceOwnerAndGrantAccess(
+                authorizationEndpoint, authorizationRequest, userId, userSecret);
+
+        assertNotNull(authorizationResponse.getLocation());
+        assertNotNull(authorizationResponse.getCode());
+        assertNotNull(authorizationResponse.getState());
+
+        String authorizationCode = authorizationResponse.getCode();
+
+        // 3. Get Access Token
+        TokenRequest tokenRequest = new TokenRequest(GrantType.AUTHORIZATION_CODE);
+        tokenRequest.setCode(authorizationCode);
+        tokenRequest.setRedirectUri(redirectUri);
+        tokenRequest.setAuthUsername(clientId);
+        tokenRequest.setAuthPassword(clientSecret);
+        tokenRequest.setAuthenticationMethod(AuthenticationMethod.CLIENT_SECRET_BASIC);
+
+        TokenClient tokenClient = new TokenClient(tokenEndpoint);
+        tokenClient.setRequest(tokenRequest);
+        TokenResponse tokenResponse = tokenClient.exec();
+
+        showClient(tokenClient);
+        assertEquals(tokenResponse.getStatus(), 200, "Unexpected response code: " + tokenResponse.getStatus());
+        assertNotNull(tokenResponse.getEntity(), "The entity is null");
+        assertNotNull(tokenResponse.getAccessToken(), "The access token is null");
+        assertNotNull(tokenResponse.getExpiresIn(), "The expires in value is null");
+        assertNotNull(tokenResponse.getTokenType(), "The token type is null");
+        assertNotNull(tokenResponse.getRefreshToken(), "The refresh token is null");
+
+        String accessToken = tokenResponse.getAccessToken();
+
+        // 4. Request user info
+        UserInfoClient userInfoClient = new UserInfoClient(userInfoEndpoint);
+        UserInfoResponse userInfoResponse = userInfoClient.execUserInfo(accessToken);
+
+        showClient(userInfoClient);
+        assertEquals(userInfoResponse.getStatus(), 200, "Unexpected response code: " + userInfoResponse.getStatus());
+        assertNotNull(userInfoResponse.getClaim(JwtClaimName.SUBJECT_IDENTIFIER));
+    }
+}
\ No newline at end of file
diff --git a/oxAuth/Client/src/test/java/org/gluu/oxauth/interop/SupportScopeRequestingProfileClaims.java b/oxAuth/Client/src/test/java/org/gluu/oxauth/interop/SupportScopeRequestingProfileClaims.java
new file mode 100644
index 00000000..629c36b1
--- /dev/null
+++ b/oxAuth/Client/src/test/java/org/gluu/oxauth/interop/SupportScopeRequestingProfileClaims.java
@@ -0,0 +1,130 @@
+/*
+ * oxAuth is available under the MIT License (2008). See http://opensource.org/licenses/MIT for full text.
+ *
+ * Copyright (c) 2014, Gluu
+ */
+
+package org.gluu.oxauth.interop;
+
+import static org.testng.Assert.assertEquals;
+import static org.testng.Assert.assertNotNull;
+
+import java.util.Arrays;
+import java.util.List;
+import java.util.UUID;
+
+import org.gluu.oxauth.BaseTest;
+import org.gluu.oxauth.client.AuthorizationRequest;
+import org.gluu.oxauth.client.AuthorizationResponse;
+import org.gluu.oxauth.client.RegisterClient;
+import org.gluu.oxauth.client.RegisterRequest;
+import org.gluu.oxauth.client.RegisterResponse;
+import org.gluu.oxauth.client.TokenClient;
+import org.gluu.oxauth.client.TokenRequest;
+import org.gluu.oxauth.client.TokenResponse;
+import org.gluu.oxauth.client.UserInfoResponse;
+import org.gluu.oxauth.model.common.AuthenticationMethod;
+import org.gluu.oxauth.model.common.GrantType;
+import org.gluu.oxauth.model.common.ResponseType;
+import org.gluu.oxauth.model.jwt.JwtClaimName;
+import org.gluu.oxauth.model.register.ApplicationType;
+import org.gluu.oxauth.model.util.StringUtils;
+import org.testng.annotations.Parameters;
+import org.testng.annotations.Test;
+
+/**
+ * OC5:FeatureTest-Support scope Requesting profile Claims
+ *
+ * @author Javier Rojas Blum
+ * @version October 14, 2019
+ */
+public class SupportScopeRequestingProfileClaims extends BaseTest {
+
+    @Parameters({"userId", "userSecret", "redirectUris", "redirectUri", "sectorIdentifierUri"})
+    @Test
+    public void supportScopeRequestingProfileClaims(
+            final String userId, final String userSecret, final String redirectUris, final String redirectUri,
+            final String sectorIdentifierUri) throws Exception {
+        showTitle("OC5:FeatureTest-Support scope Requesting profile Claims");
+
+        List<ResponseType> responseTypes = Arrays.asList(ResponseType.CODE);
+
+        // 1. Register client
+        RegisterRequest registerRequest = new RegisterRequest(ApplicationType.WEB, "oxAuth test app",
+                StringUtils.spaceSeparatedToList(redirectUris));
+        registerRequest.setResponseTypes(responseTypes);
+        registerRequest.setSectorIdentifierUri(sectorIdentifierUri);
+
+        RegisterClient registerClient = newRegisterClient(registerRequest);
+        RegisterResponse registerResponse = registerClient.exec();
+
+        showClient(registerClient);
+        assertEquals(registerResponse.getStatus(), 200, "Unexpected response code: " + registerResponse.getEntity());
+        assertNotNull(registerResponse.getClientId());
+        assertNotNull(registerResponse.getClientSecret());
+        assertNotNull(registerResponse.getRegistrationAccessToken());
+        assertNotNull(registerResponse.getClientIdIssuedAt());
+        assertNotNull(registerResponse.getClientSecretExpiresAt());
+
+        String clientId = registerResponse.getClientId();
+        String clientSecret = registerResponse.getClientSecret();
+
+        // 2. Request authorization
+        List<String> scopes = Arrays.asList("openid", "profile");
+        String nonce = UUID.randomUUID().toString();
+        String state = UUID.randomUUID().toString();
+
+        AuthorizationRequest authorizationRequest = new AuthorizationRequest(responseTypes, clientId, scopes, redirectUri, nonce);
+        authorizationRequest.setState(state);
+
+        AuthorizationResponse authorizationResponse = authenticateResourceOwnerAndGrantAccess(
+                authorizationEndpoint, authorizationRequest, userId, userSecret);
+
+        assertNotNull(authorizationResponse.getLocation());
+        assertNotNull(authorizationResponse.getCode());
+        assertNotNull(authorizationResponse.getState());
+
+        String authorizationCode = authorizationResponse.getCode();
+
+        // 3. Get Access Token
+        TokenRequest tokenRequest = new TokenRequest(GrantType.AUTHORIZATION_CODE);
+        tokenRequest.setCode(authorizationCode);
+        tokenRequest.setRedirectUri(redirectUri);
+        tokenRequest.setAuthUsername(clientId);
+        tokenRequest.setAuthPassword(clientSecret);
+        tokenRequest.setAuthenticationMethod(AuthenticationMethod.CLIENT_SECRET_BASIC);
+
+        TokenClient tokenClient = newTokenClient(tokenRequest);
+        TokenResponse tokenResponse = tokenClient.exec();
+
+        showClient(tokenClient);
+        assertEquals(tokenResponse.getStatus(), 200, "Unexpected response code: " + tokenResponse.getStatus());
+        assertNotNull(tokenResponse.getEntity(), "The entity is null");
+        assertNotNull(tokenResponse.getAccessToken(), "The access token is null");
+        assertNotNull(tokenResponse.getExpiresIn(), "The expires in value is null");
+        assertNotNull(tokenResponse.getTokenType(), "The token type is null");
+        assertNotNull(tokenResponse.getRefreshToken(), "The refresh token is null");
+
+        String accessToken = tokenResponse.getAccessToken();
+
+        // 4. Request user info
+        UserInfoResponse userInfoResponse = requestUserInfo(accessToken);
+
+        assertEquals(userInfoResponse.getStatus(), 200, "Unexpected response code: " + userInfoResponse.getStatus());
+        assertNotNull(userInfoResponse.getClaim(JwtClaimName.SUBJECT_IDENTIFIER));
+        assertNotNull(userInfoResponse.getClaim(JwtClaimName.WEBSITE));
+        assertNotNull(userInfoResponse.getClaim(JwtClaimName.ZONEINFO));
+        assertNotNull(userInfoResponse.getClaim(JwtClaimName.BIRTHDATE));
+        assertNotNull(userInfoResponse.getClaim(JwtClaimName.GENDER));
+        assertNotNull(userInfoResponse.getClaim(JwtClaimName.PROFILE));
+        assertNotNull(userInfoResponse.getClaim(JwtClaimName.PREFERRED_USERNAME));
+        assertNotNull(userInfoResponse.getClaim(JwtClaimName.GIVEN_NAME));
+        assertNotNull(userInfoResponse.getClaim(JwtClaimName.MIDDLE_NAME));
+        assertNotNull(userInfoResponse.getClaim(JwtClaimName.LOCALE));
+        assertNotNull(userInfoResponse.getClaim(JwtClaimName.PICTURE));
+        assertNotNull(userInfoResponse.getClaim(JwtClaimName.UPDATED_AT));
+        assertNotNull(userInfoResponse.getClaim(JwtClaimName.NAME));
+        assertNotNull(userInfoResponse.getClaim(JwtClaimName.NICKNAME));
+        assertNotNull(userInfoResponse.getClaim(JwtClaimName.FAMILY_NAME));
+    }
+}
\ No newline at end of file
diff --git a/oxAuth/Client/src/test/java/org/gluu/oxauth/interop/SupportTokenResponseType.java b/oxAuth/Client/src/test/java/org/gluu/oxauth/interop/SupportTokenResponseType.java
new file mode 100644
index 00000000..35b295de
--- /dev/null
+++ b/oxAuth/Client/src/test/java/org/gluu/oxauth/interop/SupportTokenResponseType.java
@@ -0,0 +1,81 @@
+/*
+ * oxAuth is available under the MIT License (2008). See http://opensource.org/licenses/MIT for full text.
+ *
+ * Copyright (c) 2014, Gluu
+ */
+
+package org.gluu.oxauth.interop;
+
+import static org.testng.Assert.assertEquals;
+import static org.testng.Assert.assertNotNull;
+
+import java.util.Arrays;
+import java.util.List;
+import java.util.UUID;
+
+import org.gluu.oxauth.BaseTest;
+import org.gluu.oxauth.client.AuthorizationRequest;
+import org.gluu.oxauth.client.AuthorizationResponse;
+import org.gluu.oxauth.client.RegisterClient;
+import org.gluu.oxauth.client.RegisterRequest;
+import org.gluu.oxauth.client.RegisterResponse;
+import org.gluu.oxauth.model.common.ResponseType;
+import org.gluu.oxauth.model.register.ApplicationType;
+import org.gluu.oxauth.model.util.StringUtils;
+import org.testng.annotations.Parameters;
+import org.testng.annotations.Test;
+
+/**
+ * OC5:FeatureTest-Support token Response Type
+ *
+ * @author Javier Rojas Blum
+ * @version June 19, 2015
+ */
+public class SupportTokenResponseType extends BaseTest {
+
+    @Parameters({"userId", "userSecret", "redirectUris", "redirectUri", "sectorIdentifierUri"})
+    @Test
+    public void supportTokenResponseType(
+            final String userId, final String userSecret, final String redirectUris, final String redirectUri,
+            final String sectorIdentifierUri) throws Exception {
+        showTitle("OC5:FeatureTest-Support token Response Type");
+
+        List<ResponseType> responseTypes = Arrays.asList(ResponseType.TOKEN);
+
+        // 1. Register client
+        RegisterRequest registerRequest = new RegisterRequest(ApplicationType.WEB, "oxAuth test app",
+                StringUtils.spaceSeparatedToList(redirectUris));
+        registerRequest.setResponseTypes(responseTypes);
+        registerRequest.setSectorIdentifierUri(sectorIdentifierUri);
+
+        RegisterClient registerClient = new RegisterClient(registrationEndpoint);
+        registerClient.setRequest(registerRequest);
+        RegisterResponse registerResponse = registerClient.exec();
+
+        showClient(registerClient);
+        assertEquals(registerResponse.getStatus(), 200, "Unexpected response code: " + registerResponse.getEntity());
+        assertNotNull(registerResponse.getClientId());
+        assertNotNull(registerResponse.getClientSecret());
+        assertNotNull(registerResponse.getRegistrationAccessToken());
+        assertNotNull(registerResponse.getClientIdIssuedAt());
+        assertNotNull(registerResponse.getClientSecretExpiresAt());
+
+        String clientId = registerResponse.getClientId();
+        String registrationAccessToken = registerResponse.getRegistrationAccessToken();
+
+        // 2. Request authorization
+        List<String> scopes = Arrays.asList("openid", "profile", "address", "email");
+        String nonce = UUID.randomUUID().toString();
+        String state = UUID.randomUUID().toString();
+
+        AuthorizationRequest authorizationRequest = new AuthorizationRequest(responseTypes, clientId, scopes, redirectUri, nonce);
+        authorizationRequest.setState(state);
+
+        AuthorizationResponse authorizationResponse = authenticateResourceOwnerAndGrantAccess(
+                authorizationEndpoint, authorizationRequest, userId, userSecret);
+
+        assertNotNull(authorizationResponse.getLocation());
+        assertNotNull(authorizationResponse.getAccessToken());
+        assertNotNull(authorizationResponse.getState());
+    }
+}
\ No newline at end of file
diff --git a/oxAuth/Client/src/test/java/org/gluu/oxauth/interop/SupportWebFingerDiscovery.java b/oxAuth/Client/src/test/java/org/gluu/oxauth/interop/SupportWebFingerDiscovery.java
new file mode 100644
index 00000000..c29a7ccc
--- /dev/null
+++ b/oxAuth/Client/src/test/java/org/gluu/oxauth/interop/SupportWebFingerDiscovery.java
@@ -0,0 +1,29 @@
+/*
+ * oxAuth is available under the MIT License (2008). See http://opensource.org/licenses/MIT for full text.
+ *
+ * Copyright (c) 2014, Gluu
+ */
+
+package org.gluu.oxauth.interop;
+
+import static org.testng.Assert.assertTrue;
+
+import org.apache.commons.lang.StringUtils;
+import org.gluu.oxauth.BaseTest;
+import org.testng.annotations.Test;
+
+/**
+ * OC5:FeatureTest-Support WebFinger Discovery
+ *
+ * @author Javier Rojas Blum
+ * @version 0.9, 06/09/2014
+ */
+public class SupportWebFingerDiscovery extends BaseTest {
+
+    @Test
+    public void supportWebFingerDiscovery() {
+        showTitle("OC5:FeatureTest-Support WebFinger Discovery");
+
+        assertTrue(StringUtils.isNotBlank(configurationEndpoint));
+    }
+}
\ No newline at end of file
diff --git a/oxAuth/Client/src/test/java/org/gluu/oxauth/interop/Supports3rdPartyInitLogin.java b/oxAuth/Client/src/test/java/org/gluu/oxauth/interop/Supports3rdPartyInitLogin.java
new file mode 100644
index 00000000..d3199688
--- /dev/null
+++ b/oxAuth/Client/src/test/java/org/gluu/oxauth/interop/Supports3rdPartyInitLogin.java
@@ -0,0 +1,59 @@
+package org.gluu.oxauth.interop;
+
+import static org.gluu.oxauth.model.common.GrantType.AUTHORIZATION_CODE;
+import static org.gluu.oxauth.model.common.ResponseType.CODE;
+import static org.gluu.oxauth.model.register.RegisterRequestParam.APPLICATION_TYPE;
+import static org.gluu.oxauth.model.register.RegisterRequestParam.INITIATE_LOGIN_URI;
+import static org.testng.Assert.assertEquals;
+import static org.testng.Assert.assertNotNull;
+
+import java.util.Arrays;
+
+import org.gluu.oxauth.BaseTest;
+import org.gluu.oxauth.client.RegisterClient;
+import org.gluu.oxauth.client.RegisterRequest;
+import org.gluu.oxauth.client.RegisterResponse;
+import org.gluu.oxauth.model.common.AuthenticationMethod;
+import org.gluu.oxauth.model.register.ApplicationType;
+import org.gluu.oxauth.model.util.StringUtils;
+import org.testng.annotations.Parameters;
+import org.testng.annotations.Test;
+
+/**
+ * OP-3rd_party-init-login
+ *
+ * @author Javier Rojas Blum
+ * @version October 22, 2019
+ */
+public class Supports3rdPartyInitLogin extends BaseTest {
+
+    @Parameters({"redirectUri", "clientJwksUri", "initiateLoginUri", "postLogoutRedirectUri"})
+    @Test
+    public void supports3rdPartyInitLogin(final String redirectUri, final String clientJwksUri, final String initiateLoginUri, final String postLogoutRedirectUri) throws Exception {
+        showTitle("supports3rdPartyInitLogin");
+
+        // 1. Register Client
+        RegisterRequest registerRequest = new RegisterRequest(ApplicationType.WEB, "oxAuth test app",
+                StringUtils.spaceSeparatedToList(redirectUri));
+        registerRequest.setContacts(Arrays.asList("javier@gluu.org"));
+        registerRequest.setGrantTypes(Arrays.asList(AUTHORIZATION_CODE));
+        registerRequest.setResponseTypes(Arrays.asList(CODE));
+        registerRequest.setInitiateLoginUri(initiateLoginUri);
+        registerRequest.setJwksUri(clientJwksUri);
+        registerRequest.setPostLogoutRedirectUris(Arrays.asList(postLogoutRedirectUri));
+        registerRequest.setTokenEndpointAuthMethod(AuthenticationMethod.CLIENT_SECRET_BASIC);
+
+        RegisterClient registerClient = new RegisterClient(registrationEndpoint);
+        registerClient.setRequest(registerRequest);
+        RegisterResponse registerResponse = registerClient.exec();
+
+        showClient(registerClient);
+        assertEquals(registerResponse.getStatus(), 200, "Unexpected response code: " + registerResponse.getEntity());
+        assertNotNull(registerResponse.getClientId());
+        assertNotNull(registerResponse.getClientSecret());
+        assertNotNull(registerResponse.getRegistrationAccessToken());
+        assertNotNull(registerResponse.getClientSecretExpiresAt());
+        assertEquals(registerResponse.getClaims().get(APPLICATION_TYPE.toString()), ApplicationType.WEB.toString());
+        assertEquals(registerResponse.getClaims().get(INITIATE_LOGIN_URI.toString()), initiateLoginUri);
+    }
+}
diff --git a/oxAuth/Client/src/test/java/org/gluu/oxauth/interop/Supports3rdPartyInitLoginNoHttps.java b/oxAuth/Client/src/test/java/org/gluu/oxauth/interop/Supports3rdPartyInitLoginNoHttps.java
new file mode 100644
index 00000000..01d49656
--- /dev/null
+++ b/oxAuth/Client/src/test/java/org/gluu/oxauth/interop/Supports3rdPartyInitLoginNoHttps.java
@@ -0,0 +1,54 @@
+package org.gluu.oxauth.interop;
+
+import static org.gluu.oxauth.model.common.GrantType.AUTHORIZATION_CODE;
+import static org.gluu.oxauth.model.common.ResponseType.CODE;
+import static org.testng.Assert.assertEquals;
+import static org.testng.Assert.assertNotNull;
+
+import java.util.Arrays;
+
+import org.gluu.oxauth.BaseTest;
+import org.gluu.oxauth.client.RegisterClient;
+import org.gluu.oxauth.client.RegisterRequest;
+import org.gluu.oxauth.client.RegisterResponse;
+import org.gluu.oxauth.model.common.AuthenticationMethod;
+import org.gluu.oxauth.model.register.ApplicationType;
+import org.gluu.oxauth.model.util.StringUtils;
+import org.testng.annotations.Parameters;
+import org.testng.annotations.Test;
+
+/**
+ * OP-3rd_party-init-login-nohttps
+ *
+ * @author Javier Rojas Blum
+ * @version October 22, 2019
+ */
+public class Supports3rdPartyInitLoginNoHttps extends BaseTest {
+
+    @Parameters({"redirectUri", "clientJwksUri", "postLogoutRedirectUri"})
+    @Test
+    public void supports3rdPartyInitLoginNoHttps(final String redirectUri, final String clientJwksUri, final String postLogoutRedirectUri) throws Exception {
+        showTitle("supports3rdPartyInitLoginNoHttps");
+
+        // 1. Register Client
+        RegisterRequest registerRequest = new RegisterRequest(ApplicationType.WEB, "oxAuth test app",
+                StringUtils.spaceSeparatedToList(redirectUri));
+        registerRequest.setContacts(Arrays.asList("javier@gluu.org"));
+        registerRequest.setGrantTypes(Arrays.asList(AUTHORIZATION_CODE));
+        registerRequest.setResponseTypes(Arrays.asList(CODE));
+        registerRequest.setInitiateLoginUri("http://client.example.com/start-3rd-party-initiated-sso");
+        registerRequest.setJwksUri(clientJwksUri);
+        registerRequest.setPostLogoutRedirectUris(Arrays.asList(postLogoutRedirectUri));
+        registerRequest.setTokenEndpointAuthMethod(AuthenticationMethod.CLIENT_SECRET_BASIC);
+
+        RegisterClient registerClient = new RegisterClient(registrationEndpoint);
+        registerClient.setRequest(registerRequest);
+        RegisterResponse registerResponse = registerClient.exec();
+
+        showClient(registerClient);
+        assertEquals(registerResponse.getStatus(), 400, "Unexpected response code: " + registerResponse.getEntity());
+        assertNotNull(registerResponse.getEntity(), "The entity is null");
+        assertNotNull(registerResponse.getErrorType(), "The error type is null");
+        assertNotNull(registerResponse.getErrorDescription(), "The error description is null");
+    }
+}
diff --git a/oxAuth/Client/src/test/java/org/gluu/oxauth/interop/SupportsCombiningClaimsRequestedWithScopeAndRequestObject.java b/oxAuth/Client/src/test/java/org/gluu/oxauth/interop/SupportsCombiningClaimsRequestedWithScopeAndRequestObject.java
new file mode 100644
index 00000000..c33369ec
--- /dev/null
+++ b/oxAuth/Client/src/test/java/org/gluu/oxauth/interop/SupportsCombiningClaimsRequestedWithScopeAndRequestObject.java
@@ -0,0 +1,146 @@
+/*
+ * oxAuth is available under the MIT License (2008). See http://opensource.org/licenses/MIT for full text.
+ *
+ * Copyright (c) 2014, Gluu
+ */
+
+package org.gluu.oxauth.interop;
+
+import static org.testng.Assert.assertEquals;
+import static org.testng.Assert.assertNotNull;
+import static org.testng.Assert.assertTrue;
+
+import java.util.Arrays;
+import java.util.List;
+import java.util.UUID;
+
+import org.gluu.oxauth.BaseTest;
+import org.gluu.oxauth.client.AuthorizationRequest;
+import org.gluu.oxauth.client.AuthorizationResponse;
+import org.gluu.oxauth.client.AuthorizeClient;
+import org.gluu.oxauth.client.JwkClient;
+import org.gluu.oxauth.client.RegisterClient;
+import org.gluu.oxauth.client.RegisterRequest;
+import org.gluu.oxauth.client.RegisterResponse;
+import org.gluu.oxauth.client.UserInfoClient;
+import org.gluu.oxauth.client.UserInfoResponse;
+import org.gluu.oxauth.client.model.authorize.Claim;
+import org.gluu.oxauth.client.model.authorize.ClaimValue;
+import org.gluu.oxauth.client.model.authorize.JwtAuthorizationRequest;
+import org.gluu.oxauth.model.common.ResponseType;
+import org.gluu.oxauth.model.crypto.OxAuthCryptoProvider;
+import org.gluu.oxauth.model.crypto.signature.RSAPublicKey;
+import org.gluu.oxauth.model.crypto.signature.SignatureAlgorithm;
+import org.gluu.oxauth.model.jws.RSASigner;
+import org.gluu.oxauth.model.jwt.Jwt;
+import org.gluu.oxauth.model.jwt.JwtClaimName;
+import org.gluu.oxauth.model.jwt.JwtHeaderName;
+import org.gluu.oxauth.model.register.ApplicationType;
+import org.gluu.oxauth.model.util.StringUtils;
+import org.testng.annotations.Parameters;
+import org.testng.annotations.Test;
+
+/**
+ * OC5:FeatureTest-Supports Combining Claims Requested with scope and Request Object
+ *
+ * @author Javier Rojas Blum
+ * @version May 30, 2018
+ */
+public class SupportsCombiningClaimsRequestedWithScopeAndRequestObject extends BaseTest {
+
+    @Parameters({"userId", "userSecret", "redirectUri", "redirectUris", "sectorIdentifierUri"})
+    @Test
+    public void supportsCombiningClaimsRequestedWithScopeAndRequestObject(
+            final String userId, final String userSecret, final String redirectUri, final String redirectUris,
+            final String sectorIdentifierUri) throws Exception {
+        showTitle("OC5:FeatureTest-Supports Combining Claims Requested with scope and Request Object");
+
+        List<ResponseType> responseTypes = Arrays.asList(ResponseType.TOKEN, ResponseType.ID_TOKEN);
+
+        // 1. Register client
+        RegisterRequest registerRequest = new RegisterRequest(ApplicationType.WEB, "oxAuth test app",
+                StringUtils.spaceSeparatedToList(redirectUris));
+        registerRequest.setResponseTypes(responseTypes);
+        registerRequest.setSectorIdentifierUri(sectorIdentifierUri);
+        registerRequest.setClaims(Arrays.asList(
+                JwtClaimName.GIVEN_NAME,
+                JwtClaimName.FAMILY_NAME));
+
+        RegisterClient registerClient = new RegisterClient(registrationEndpoint);
+        registerClient.setRequest(registerRequest);
+        RegisterResponse registerResponse = registerClient.exec();
+
+        showClient(registerClient);
+        assertEquals(registerResponse.getStatus(), 200, "Unexpected response code: " + registerResponse.getEntity());
+        assertNotNull(registerResponse.getClientId());
+        assertNotNull(registerResponse.getClientSecret());
+        assertNotNull(registerResponse.getRegistrationAccessToken());
+        assertNotNull(registerResponse.getClientIdIssuedAt());
+        assertNotNull(registerResponse.getClientSecretExpiresAt());
+
+        String clientId = registerResponse.getClientId();
+        String clientSecret = registerResponse.getClientSecret();
+
+        // 2. Request authorization
+        OxAuthCryptoProvider cryptoProvider = new OxAuthCryptoProvider();
+
+        List<String> scopes = Arrays.asList("openid", "email");
+        String nonce = UUID.randomUUID().toString();
+        String state = UUID.randomUUID().toString();
+
+        AuthorizationRequest authorizationRequest = new AuthorizationRequest(responseTypes, clientId, scopes, redirectUri, nonce);
+        authorizationRequest.setState(state);
+
+        JwtAuthorizationRequest jwtAuthorizationRequest = new JwtAuthorizationRequest(
+                authorizationRequest, SignatureAlgorithm.HS256, clientSecret, cryptoProvider);
+        jwtAuthorizationRequest.addUserInfoClaim(new Claim(JwtClaimName.GIVEN_NAME, ClaimValue.createNull()));
+        jwtAuthorizationRequest.addUserInfoClaim(new Claim(JwtClaimName.FAMILY_NAME, ClaimValue.createNull()));
+        String authJwt = jwtAuthorizationRequest.getEncodedJwt();
+        authorizationRequest.setRequest(authJwt);
+
+        AuthorizeClient authorizeClient = new AuthorizeClient(authorizationEndpoint);
+        authorizeClient.setRequest(authorizationRequest);
+
+        AuthorizationResponse authorizationResponse = authenticateResourceOwnerAndGrantAccess(
+                authorizationEndpoint, authorizationRequest, userId, userSecret);
+
+        assertNotNull(authorizationResponse.getLocation(), "The location is null");
+        assertNotNull(authorizationResponse.getAccessToken(), "The accessToken is null");
+        assertNotNull(authorizationResponse.getTokenType(), "The tokenType is null");
+        assertNotNull(authorizationResponse.getIdToken(), "The idToken is null");
+        assertNotNull(authorizationResponse.getState(), "The state is null");
+
+        String idToken = authorizationResponse.getIdToken();
+        String accessToken = authorizationResponse.getAccessToken();
+
+        // 3. Validate id_token
+        Jwt jwt = Jwt.parse(idToken);
+        assertNotNull(jwt.getHeader().getClaimAsString(JwtHeaderName.TYPE));
+        assertNotNull(jwt.getHeader().getClaimAsString(JwtHeaderName.ALGORITHM));
+        assertNotNull(jwt.getClaims().getClaimAsString(JwtClaimName.ISSUER));
+        assertNotNull(jwt.getClaims().getClaimAsString(JwtClaimName.AUDIENCE));
+        assertNotNull(jwt.getClaims().getClaimAsString(JwtClaimName.EXPIRATION_TIME));
+        assertNotNull(jwt.getClaims().getClaimAsString(JwtClaimName.ISSUED_AT));
+        assertNotNull(jwt.getClaims().getClaimAsString(JwtClaimName.SUBJECT_IDENTIFIER));
+        assertNotNull(jwt.getClaims().getClaimAsString(JwtClaimName.ACCESS_TOKEN_HASH));
+        assertNotNull(jwt.getClaims().getClaimAsString(JwtClaimName.AUTHENTICATION_TIME));
+
+        RSAPublicKey publicKey = JwkClient.getRSAPublicKey(
+                jwksUri,
+                jwt.getHeader().getClaimAsString(JwtHeaderName.KEY_ID));
+        RSASigner rsaSigner = new RSASigner(SignatureAlgorithm.RS256, publicKey);
+
+        assertTrue(rsaSigner.validate(jwt));
+
+        // 4. Request user info
+        UserInfoClient userInfoClient = new UserInfoClient(userInfoEndpoint);
+        UserInfoResponse userInfoResponse = userInfoClient.execUserInfo(accessToken);
+
+        showClient(userInfoClient);
+        assertEquals(userInfoResponse.getStatus(), 200, "Unexpected response code: " + userInfoResponse.getStatus());
+        assertNotNull(userInfoResponse.getClaim(JwtClaimName.SUBJECT_IDENTIFIER));
+        assertNotNull(userInfoResponse.getClaim(JwtClaimName.EMAIL));
+        assertNotNull(userInfoResponse.getClaim(JwtClaimName.GIVEN_NAME));
+        assertNotNull(userInfoResponse.getClaim(JwtClaimName.FAMILY_NAME));
+    }
+}
\ No newline at end of file
diff --git a/oxAuth/Client/src/test/java/org/gluu/oxauth/interop/SupportsReturningClaimsInIdToken.java b/oxAuth/Client/src/test/java/org/gluu/oxauth/interop/SupportsReturningClaimsInIdToken.java
new file mode 100644
index 00000000..126c57a7
--- /dev/null
+++ b/oxAuth/Client/src/test/java/org/gluu/oxauth/interop/SupportsReturningClaimsInIdToken.java
@@ -0,0 +1,145 @@
+/*
+ * oxAuth is available under the MIT License (2008). See http://opensource.org/licenses/MIT for full text.
+ *
+ * Copyright (c) 2014, Gluu
+ */
+
+package org.gluu.oxauth.interop;
+
+import static org.testng.Assert.assertEquals;
+import static org.testng.Assert.assertNotNull;
+import static org.testng.Assert.assertTrue;
+
+import java.util.Arrays;
+import java.util.List;
+import java.util.UUID;
+
+import org.gluu.oxauth.BaseTest;
+import org.gluu.oxauth.client.AuthorizationRequest;
+import org.gluu.oxauth.client.AuthorizationResponse;
+import org.gluu.oxauth.client.AuthorizeClient;
+import org.gluu.oxauth.client.JwkClient;
+import org.gluu.oxauth.client.RegisterClient;
+import org.gluu.oxauth.client.RegisterRequest;
+import org.gluu.oxauth.client.RegisterResponse;
+import org.gluu.oxauth.client.UserInfoClient;
+import org.gluu.oxauth.client.UserInfoResponse;
+import org.gluu.oxauth.client.model.authorize.Claim;
+import org.gluu.oxauth.client.model.authorize.ClaimValue;
+import org.gluu.oxauth.client.model.authorize.JwtAuthorizationRequest;
+import org.gluu.oxauth.model.common.ResponseType;
+import org.gluu.oxauth.model.crypto.OxAuthCryptoProvider;
+import org.gluu.oxauth.model.crypto.signature.RSAPublicKey;
+import org.gluu.oxauth.model.crypto.signature.SignatureAlgorithm;
+import org.gluu.oxauth.model.jws.RSASigner;
+import org.gluu.oxauth.model.jwt.Jwt;
+import org.gluu.oxauth.model.jwt.JwtClaimName;
+import org.gluu.oxauth.model.jwt.JwtHeaderName;
+import org.gluu.oxauth.model.register.ApplicationType;
+import org.gluu.oxauth.model.util.StringUtils;
+import org.testng.annotations.Parameters;
+import org.testng.annotations.Test;
+
+/**
+ * OC5:FeatureTest-Supports Returning Claims in ID Token
+ *
+ * @author Javier Rojas Blum
+ * @version July 4, 2018
+ */
+public class SupportsReturningClaimsInIdToken extends BaseTest {
+
+    @Parameters({"userId", "userSecret", "redirectUri", "redirectUris", "dnName", "keyStoreFile", "keyStoreSecret",
+            "sectorIdentifierUri"})
+    @Test
+    public void supportsReturningClaimsInIdToken(
+            final String userId, final String userSecret, final String redirectUri, final String redirectUris,
+            final String dnName, final String keyStoreFile, final String keyStoreSecret, final String sectorIdentifierUri) throws Exception {
+        showTitle("OC5:FeatureTest-Supports Returning Claims in ID Token");
+
+        List<ResponseType> responseTypes = Arrays.asList(ResponseType.TOKEN, ResponseType.ID_TOKEN);
+
+        // 1. Register client
+        RegisterRequest registerRequest = new RegisterRequest(ApplicationType.WEB, "oxAuth test app",
+                StringUtils.spaceSeparatedToList(redirectUris));
+        registerRequest.setResponseTypes(responseTypes);
+        registerRequest.setSectorIdentifierUri(sectorIdentifierUri);
+        registerRequest.setClaims(Arrays.asList(
+                JwtClaimName.NAME,
+                JwtClaimName.EMAIL));
+
+        RegisterClient registerClient = new RegisterClient(registrationEndpoint);
+        registerClient.setRequest(registerRequest);
+        RegisterResponse registerResponse = registerClient.exec();
+
+        showClient(registerClient);
+        assertEquals(registerResponse.getStatus(), 200, "Unexpected response code: " + registerResponse.getEntity());
+        assertNotNull(registerResponse.getClientId());
+        assertNotNull(registerResponse.getClientSecret());
+        assertNotNull(registerResponse.getRegistrationAccessToken());
+        assertNotNull(registerResponse.getClientIdIssuedAt());
+        assertNotNull(registerResponse.getClientSecretExpiresAt());
+
+        String clientId = registerResponse.getClientId();
+        String clientSecret = registerResponse.getClientSecret();
+
+        // 2. Request authorization
+        OxAuthCryptoProvider cryptoProvider = new OxAuthCryptoProvider(keyStoreFile, keyStoreSecret, dnName);
+
+        List<String> scopes = Arrays.asList("openid");
+        String nonce = UUID.randomUUID().toString();
+        String state = UUID.randomUUID().toString();
+
+        AuthorizationRequest authorizationRequest = new AuthorizationRequest(responseTypes, clientId, scopes, redirectUri, nonce);
+        authorizationRequest.setState(state);
+
+        JwtAuthorizationRequest jwtAuthorizationRequest = new JwtAuthorizationRequest(authorizationRequest, SignatureAlgorithm.HS256, clientSecret, cryptoProvider);
+        jwtAuthorizationRequest.addIdTokenClaim(new Claim(JwtClaimName.NAME, ClaimValue.createEssential(true)));
+        jwtAuthorizationRequest.addIdTokenClaim(new Claim(JwtClaimName.EMAIL, ClaimValue.createNull()));
+        String authJwt = jwtAuthorizationRequest.getEncodedJwt();
+        authorizationRequest.setRequest(authJwt);
+
+        AuthorizeClient authorizeClient = new AuthorizeClient(authorizationEndpoint);
+        authorizeClient.setRequest(authorizationRequest);
+
+        AuthorizationResponse authorizationResponse = authenticateResourceOwnerAndGrantAccess(
+                authorizationEndpoint, authorizationRequest, userId, userSecret);
+
+        assertNotNull(authorizationResponse.getLocation(), "The location is null");
+        assertNotNull(authorizationResponse.getAccessToken(), "The accessToken is null");
+        assertNotNull(authorizationResponse.getTokenType(), "The tokenType is null");
+        assertNotNull(authorizationResponse.getIdToken(), "The idToken is null");
+        assertNotNull(authorizationResponse.getState(), "The state is null");
+
+        String idToken = authorizationResponse.getIdToken();
+        String accessToken = authorizationResponse.getAccessToken();
+
+        // 3. Validate id_token
+        Jwt jwt = Jwt.parse(idToken);
+        assertNotNull(jwt.getHeader().getClaimAsString(JwtHeaderName.TYPE));
+        assertNotNull(jwt.getHeader().getClaimAsString(JwtHeaderName.ALGORITHM));
+        assertNotNull(jwt.getClaims().getClaimAsString(JwtClaimName.ISSUER));
+        assertNotNull(jwt.getClaims().getClaimAsString(JwtClaimName.AUDIENCE));
+        assertNotNull(jwt.getClaims().getClaimAsString(JwtClaimName.EXPIRATION_TIME));
+        assertNotNull(jwt.getClaims().getClaimAsString(JwtClaimName.ISSUED_AT));
+        assertNotNull(jwt.getClaims().getClaimAsString(JwtClaimName.SUBJECT_IDENTIFIER));
+        assertNotNull(jwt.getClaims().getClaimAsString(JwtClaimName.ACCESS_TOKEN_HASH));
+        assertNotNull(jwt.getClaims().getClaimAsString(JwtClaimName.AUTHENTICATION_TIME));
+        assertNotNull(jwt.getClaims().getClaimAsString(JwtClaimName.NAME));
+        assertNotNull(jwt.getClaims().getClaimAsString(JwtClaimName.EMAIL));
+
+        RSAPublicKey publicKey = JwkClient.getRSAPublicKey(
+                jwksUri,
+                jwt.getHeader().getClaimAsString(JwtHeaderName.KEY_ID));
+        RSASigner rsaSigner = new RSASigner(SignatureAlgorithm.RS256, publicKey);
+
+        assertTrue(rsaSigner.validate(jwt));
+
+        // 4. Request user info
+        UserInfoClient userInfoClient = new UserInfoClient(userInfoEndpoint);
+        UserInfoResponse userInfoResponse = userInfoClient.execUserInfo(accessToken);
+
+        showClient(userInfoClient);
+        assertEquals(userInfoResponse.getStatus(), 200, "Unexpected response code: " + userInfoResponse.getStatus());
+        assertNotNull(userInfoResponse.getClaim(JwtClaimName.SUBJECT_IDENTIFIER));
+    }
+}
\ No newline at end of file
diff --git a/oxAuth/Client/src/test/java/org/gluu/oxauth/interop/SupportsReturningDifferentClaimsInIdTokenAndUserInfoEndpoint.java b/oxAuth/Client/src/test/java/org/gluu/oxauth/interop/SupportsReturningDifferentClaimsInIdTokenAndUserInfoEndpoint.java
new file mode 100644
index 00000000..3402ff5c
--- /dev/null
+++ b/oxAuth/Client/src/test/java/org/gluu/oxauth/interop/SupportsReturningDifferentClaimsInIdTokenAndUserInfoEndpoint.java
@@ -0,0 +1,151 @@
+/*
+ * oxAuth is available under the MIT License (2008). See http://opensource.org/licenses/MIT for full text.
+ *
+ * Copyright (c) 2014, Gluu
+ */
+
+package org.gluu.oxauth.interop;
+
+import static org.testng.Assert.assertEquals;
+import static org.testng.Assert.assertNotNull;
+import static org.testng.Assert.assertTrue;
+
+import java.util.Arrays;
+import java.util.List;
+import java.util.UUID;
+
+import org.gluu.oxauth.BaseTest;
+import org.gluu.oxauth.client.AuthorizationRequest;
+import org.gluu.oxauth.client.AuthorizationResponse;
+import org.gluu.oxauth.client.AuthorizeClient;
+import org.gluu.oxauth.client.JwkClient;
+import org.gluu.oxauth.client.RegisterClient;
+import org.gluu.oxauth.client.RegisterRequest;
+import org.gluu.oxauth.client.RegisterResponse;
+import org.gluu.oxauth.client.UserInfoClient;
+import org.gluu.oxauth.client.UserInfoResponse;
+import org.gluu.oxauth.client.model.authorize.Claim;
+import org.gluu.oxauth.client.model.authorize.ClaimValue;
+import org.gluu.oxauth.client.model.authorize.JwtAuthorizationRequest;
+import org.gluu.oxauth.model.common.ResponseType;
+import org.gluu.oxauth.model.crypto.OxAuthCryptoProvider;
+import org.gluu.oxauth.model.crypto.signature.RSAPublicKey;
+import org.gluu.oxauth.model.crypto.signature.SignatureAlgorithm;
+import org.gluu.oxauth.model.jws.RSASigner;
+import org.gluu.oxauth.model.jwt.Jwt;
+import org.gluu.oxauth.model.jwt.JwtClaimName;
+import org.gluu.oxauth.model.jwt.JwtHeaderName;
+import org.gluu.oxauth.model.register.ApplicationType;
+import org.gluu.oxauth.model.util.StringUtils;
+import org.testng.annotations.Parameters;
+import org.testng.annotations.Test;
+
+/**
+ * OC5:FeatureTest-Supports Returning Different Claims in ID Token and UserInfo Endpoint
+ *
+ * @author Javier Rojas Blum
+ * @version May 30, 2018
+ */
+public class SupportsReturningDifferentClaimsInIdTokenAndUserInfoEndpoint extends BaseTest {
+
+    @Parameters({"userId", "userSecret", "redirectUri", "redirectUris", "sectorIdentifierUri"})
+    @Test
+    public void supportsReturningDifferentClaimsInIdTokenAndUserInfoEndpoint(
+            final String userId, final String userSecret, final String redirectUri, final String redirectUris,
+            final String sectorIdentifierUri) throws Exception {
+        showTitle("OC5:FeatureTest-Supports Returning Different Claims in ID Token and UserInfo Endpoint");
+
+        List<ResponseType> responseTypes = Arrays.asList(ResponseType.TOKEN, ResponseType.ID_TOKEN);
+
+        // 1. Register client
+        RegisterRequest registerRequest = new RegisterRequest(ApplicationType.WEB, "oxAuth test app",
+                StringUtils.spaceSeparatedToList(redirectUris));
+        registerRequest.setResponseTypes(responseTypes);
+        registerRequest.setSectorIdentifierUri(sectorIdentifierUri);
+        registerRequest.setClaims(Arrays.asList(
+                JwtClaimName.NAME,
+                JwtClaimName.EMAIL,
+                JwtClaimName.GIVEN_NAME,
+                JwtClaimName.FAMILY_NAME));
+
+        RegisterClient registerClient = new RegisterClient(registrationEndpoint);
+        registerClient.setRequest(registerRequest);
+        RegisterResponse registerResponse = registerClient.exec();
+
+        showClient(registerClient);
+        assertEquals(registerResponse.getStatus(), 200, "Unexpected response code: " + registerResponse.getEntity());
+        assertNotNull(registerResponse.getClientId());
+        assertNotNull(registerResponse.getClientSecret());
+        assertNotNull(registerResponse.getRegistrationAccessToken());
+        assertNotNull(registerResponse.getClientIdIssuedAt());
+        assertNotNull(registerResponse.getClientSecretExpiresAt());
+
+        String clientId = registerResponse.getClientId();
+        String clientSecret = registerResponse.getClientSecret();
+
+        // 2. Request authorization
+        OxAuthCryptoProvider cryptoProvider = new OxAuthCryptoProvider();
+
+        List<String> scopes = Arrays.asList("openid");
+        String nonce = UUID.randomUUID().toString();
+        String state = UUID.randomUUID().toString();
+
+        AuthorizationRequest authorizationRequest = new AuthorizationRequest(responseTypes, clientId, scopes, redirectUri, nonce);
+        authorizationRequest.setState(state);
+
+        JwtAuthorizationRequest jwtAuthorizationRequest = new JwtAuthorizationRequest(
+                authorizationRequest, SignatureAlgorithm.HS256, clientSecret, cryptoProvider);
+        jwtAuthorizationRequest.addIdTokenClaim(new Claim(JwtClaimName.NAME, ClaimValue.createEssential(true)));
+        jwtAuthorizationRequest.addIdTokenClaim(new Claim(JwtClaimName.EMAIL, ClaimValue.createNull()));
+        jwtAuthorizationRequest.addUserInfoClaim(new Claim(JwtClaimName.GIVEN_NAME, ClaimValue.createNull()));
+        jwtAuthorizationRequest.addUserInfoClaim(new Claim(JwtClaimName.FAMILY_NAME, ClaimValue.createNull()));
+        String authJwt = jwtAuthorizationRequest.getEncodedJwt();
+        authorizationRequest.setRequest(authJwt);
+
+        AuthorizeClient authorizeClient = new AuthorizeClient(authorizationEndpoint);
+        authorizeClient.setRequest(authorizationRequest);
+
+        AuthorizationResponse authorizationResponse = authenticateResourceOwnerAndGrantAccess(
+                authorizationEndpoint, authorizationRequest, userId, userSecret);
+
+        assertNotNull(authorizationResponse.getLocation(), "The location is null");
+        assertNotNull(authorizationResponse.getAccessToken(), "The accessToken is null");
+        assertNotNull(authorizationResponse.getTokenType(), "The tokenType is null");
+        assertNotNull(authorizationResponse.getIdToken(), "The idToken is null");
+        assertNotNull(authorizationResponse.getState(), "The state is null");
+
+        String idToken = authorizationResponse.getIdToken();
+        String accessToken = authorizationResponse.getAccessToken();
+
+        // 3. Validate id_token
+        Jwt jwt = Jwt.parse(idToken);
+        assertNotNull(jwt.getHeader().getClaimAsString(JwtHeaderName.TYPE));
+        assertNotNull(jwt.getHeader().getClaimAsString(JwtHeaderName.ALGORITHM));
+        assertNotNull(jwt.getClaims().getClaimAsString(JwtClaimName.ISSUER));
+        assertNotNull(jwt.getClaims().getClaimAsString(JwtClaimName.AUDIENCE));
+        assertNotNull(jwt.getClaims().getClaimAsString(JwtClaimName.EXPIRATION_TIME));
+        assertNotNull(jwt.getClaims().getClaimAsString(JwtClaimName.ISSUED_AT));
+        assertNotNull(jwt.getClaims().getClaimAsString(JwtClaimName.SUBJECT_IDENTIFIER));
+        assertNotNull(jwt.getClaims().getClaimAsString(JwtClaimName.ACCESS_TOKEN_HASH));
+        assertNotNull(jwt.getClaims().getClaimAsString(JwtClaimName.AUTHENTICATION_TIME));
+        assertNotNull(jwt.getClaims().getClaimAsString(JwtClaimName.NAME));
+        assertNotNull(jwt.getClaims().getClaimAsString(JwtClaimName.EMAIL));
+
+        RSAPublicKey publicKey = JwkClient.getRSAPublicKey(
+                jwksUri,
+                jwt.getHeader().getClaimAsString(JwtHeaderName.KEY_ID));
+        RSASigner rsaSigner = new RSASigner(SignatureAlgorithm.RS256, publicKey);
+
+        assertTrue(rsaSigner.validate(jwt));
+
+        // 4. Request user info
+        UserInfoClient userInfoClient = new UserInfoClient(userInfoEndpoint);
+        UserInfoResponse userInfoResponse = userInfoClient.execUserInfo(accessToken);
+
+        showClient(userInfoClient);
+        assertEquals(userInfoResponse.getStatus(), 200, "Unexpected response code: " + userInfoResponse.getStatus());
+        assertNotNull(userInfoResponse.getClaim(JwtClaimName.SUBJECT_IDENTIFIER));
+        assertNotNull(userInfoResponse.getClaim(JwtClaimName.GIVEN_NAME));
+        assertNotNull(userInfoResponse.getClaim(JwtClaimName.FAMILY_NAME));
+    }
+}
\ No newline at end of file
diff --git a/oxAuth/Client/src/test/java/org/gluu/oxauth/interop/UserInfoEndpoint.java b/oxAuth/Client/src/test/java/org/gluu/oxauth/interop/UserInfoEndpoint.java
new file mode 100644
index 00000000..f5c027fe
--- /dev/null
+++ b/oxAuth/Client/src/test/java/org/gluu/oxauth/interop/UserInfoEndpoint.java
@@ -0,0 +1,28 @@
+/*
+ * oxAuth is available under the MIT License (2008). See http://opensource.org/licenses/MIT for full text.
+ *
+ * Copyright (c) 2014, Gluu
+ */
+
+package org.gluu.oxauth.interop;
+
+import static org.testng.Assert.assertTrue;
+
+import org.apache.commons.lang.StringUtils;
+import org.gluu.oxauth.BaseTest;
+import org.testng.annotations.Test;
+
+/**
+ * OC5:FeatureTest-UserInfo Endpoint
+ *
+ * @author Javier Rojas Blum Date: 07.15.2013
+ */
+public class UserInfoEndpoint extends BaseTest {
+
+    @Test
+    public void userInfoEndpoint() {
+        showTitle("OC5:FeatureTest-UserInfo Endpoint");
+
+        assertTrue(StringUtils.isNotBlank(userInfoEndpoint));
+    }
+}
\ No newline at end of file
diff --git a/oxAuth/Client/src/test/java/org/gluu/oxauth/interop/UserInfoEndpointAccessWithFormEncodedBodyMethod.java b/oxAuth/Client/src/test/java/org/gluu/oxauth/interop/UserInfoEndpointAccessWithFormEncodedBodyMethod.java
new file mode 100644
index 00000000..edf50e02
--- /dev/null
+++ b/oxAuth/Client/src/test/java/org/gluu/oxauth/interop/UserInfoEndpointAccessWithFormEncodedBodyMethod.java
@@ -0,0 +1,107 @@
+/*
+ * oxAuth is available under the MIT License (2008). See http://opensource.org/licenses/MIT for full text.
+ *
+ * Copyright (c) 2014, Gluu
+ */
+
+package org.gluu.oxauth.interop;
+
+import static org.testng.Assert.assertEquals;
+import static org.testng.Assert.assertNotNull;
+
+import java.util.Arrays;
+import java.util.List;
+import java.util.UUID;
+
+import org.gluu.oxauth.BaseTest;
+import org.gluu.oxauth.client.AuthorizationRequest;
+import org.gluu.oxauth.client.AuthorizationResponse;
+import org.gluu.oxauth.client.RegisterClient;
+import org.gluu.oxauth.client.RegisterRequest;
+import org.gluu.oxauth.client.RegisterResponse;
+import org.gluu.oxauth.client.UserInfoClient;
+import org.gluu.oxauth.client.UserInfoRequest;
+import org.gluu.oxauth.client.UserInfoResponse;
+import org.gluu.oxauth.model.common.AuthorizationMethod;
+import org.gluu.oxauth.model.common.ResponseType;
+import org.gluu.oxauth.model.jwt.JwtClaimName;
+import org.gluu.oxauth.model.register.ApplicationType;
+import org.gluu.oxauth.model.util.StringUtils;
+import org.testng.annotations.Parameters;
+import org.testng.annotations.Test;
+
+/**
+ * OC5:FeatureTest-UserInfo Endpoint Access with Form-Encoded Body Method
+ *
+ * @author Javier Rojas Blum
+ * @version June 19, 2015
+ */
+public class UserInfoEndpointAccessWithFormEncodedBodyMethod extends BaseTest {
+
+    @Parameters({"userId", "userSecret", "redirectUris", "redirectUri", "sectorIdentifierUri"})
+    @Test
+    public void userInfoEndpointAccessWithFormEncodedBodyMethod(
+            final String userId, final String userSecret, final String redirectUris, final String redirectUri,
+            final String sectorIdentifierUri) throws Exception {
+        showTitle("OC5:FeatureTest-UserInfo Endpoint Access with Form-Encoded Body Method");
+
+        List<ResponseType> responseTypes = Arrays.asList(ResponseType.TOKEN, ResponseType.ID_TOKEN);
+
+        // 1. Register client
+        RegisterRequest registerRequest = new RegisterRequest(ApplicationType.WEB, "oxAuth test app",
+                StringUtils.spaceSeparatedToList(redirectUris));
+        registerRequest.setResponseTypes(responseTypes);
+        registerRequest.setSectorIdentifierUri(sectorIdentifierUri);
+
+        RegisterClient registerClient = new RegisterClient(registrationEndpoint);
+        registerClient.setRequest(registerRequest);
+        RegisterResponse registerResponse = registerClient.exec();
+
+        showClient(registerClient);
+        assertEquals(registerResponse.getStatus(), 200, "Unexpected response code: " + registerResponse.getEntity());
+        assertNotNull(registerResponse.getClientId());
+        assertNotNull(registerResponse.getClientSecret());
+        assertNotNull(registerResponse.getRegistrationAccessToken());
+        assertNotNull(registerResponse.getClientIdIssuedAt());
+        assertNotNull(registerResponse.getClientSecretExpiresAt());
+
+        String clientId = registerResponse.getClientId();
+
+        // 2. Request authorization
+        List<String> scopes = Arrays.asList("openid", "profile", "address", "email");
+        String nonce = UUID.randomUUID().toString();
+        String state = UUID.randomUUID().toString();
+
+        AuthorizationRequest authorizationRequest = new AuthorizationRequest(responseTypes, clientId, scopes, redirectUri, nonce);
+        authorizationRequest.setState(state);
+
+        AuthorizationResponse authorizationResponse = authenticateResourceOwnerAndGrantAccess(
+                authorizationEndpoint, authorizationRequest, userId, userSecret);
+
+        assertNotNull(authorizationResponse.getLocation());
+        assertNotNull(authorizationResponse.getAccessToken());
+        assertNotNull(authorizationResponse.getIdToken());
+        assertNotNull(authorizationResponse.getState());
+
+        String accessToken = authorizationResponse.getAccessToken();
+
+        // 3. Request user info
+        UserInfoRequest userInfoRequest = new UserInfoRequest(accessToken);
+        userInfoRequest.setAuthorizationMethod(AuthorizationMethod.FORM_ENCODED_BODY_PARAMETER);
+
+        UserInfoClient userInfoClient = new UserInfoClient(userInfoEndpoint);
+        userInfoClient.setRequest(userInfoRequest);
+
+        UserInfoResponse userInfoResponse = userInfoClient.exec();
+
+        showClient(userInfoClient);
+        assertEquals(userInfoResponse.getStatus(), 200, "Unexpected response code: " + userInfoResponse.getStatus());
+        assertNotNull(userInfoResponse.getClaim(JwtClaimName.SUBJECT_IDENTIFIER));
+        assertNotNull(userInfoResponse.getClaim(JwtClaimName.NAME));
+        assertNotNull(userInfoResponse.getClaim(JwtClaimName.GIVEN_NAME));
+        assertNotNull(userInfoResponse.getClaim(JwtClaimName.FAMILY_NAME));
+        assertNotNull(userInfoResponse.getClaim(JwtClaimName.EMAIL));
+        assertNotNull(userInfoResponse.getClaim(JwtClaimName.ZONEINFO));
+        assertNotNull(userInfoResponse.getClaim(JwtClaimName.LOCALE));
+    }
+}
\ No newline at end of file
diff --git a/oxAuth/Client/src/test/java/org/gluu/oxauth/interop/UserInfoEndpointAccessWithHeaderMethod.java b/oxAuth/Client/src/test/java/org/gluu/oxauth/interop/UserInfoEndpointAccessWithHeaderMethod.java
new file mode 100644
index 00000000..6defcb2a
--- /dev/null
+++ b/oxAuth/Client/src/test/java/org/gluu/oxauth/interop/UserInfoEndpointAccessWithHeaderMethod.java
@@ -0,0 +1,100 @@
+/*
+ * oxAuth is available under the MIT License (2008). See http://opensource.org/licenses/MIT for full text.
+ *
+ * Copyright (c) 2014, Gluu
+ */
+
+package org.gluu.oxauth.interop;
+
+import static org.testng.Assert.assertEquals;
+import static org.testng.Assert.assertNotNull;
+
+import java.util.Arrays;
+import java.util.List;
+import java.util.UUID;
+
+import org.gluu.oxauth.BaseTest;
+import org.gluu.oxauth.client.AuthorizationRequest;
+import org.gluu.oxauth.client.AuthorizationResponse;
+import org.gluu.oxauth.client.RegisterClient;
+import org.gluu.oxauth.client.RegisterRequest;
+import org.gluu.oxauth.client.RegisterResponse;
+import org.gluu.oxauth.client.UserInfoClient;
+import org.gluu.oxauth.client.UserInfoResponse;
+import org.gluu.oxauth.model.common.ResponseType;
+import org.gluu.oxauth.model.jwt.JwtClaimName;
+import org.gluu.oxauth.model.register.ApplicationType;
+import org.gluu.oxauth.model.util.StringUtils;
+import org.testng.annotations.Parameters;
+import org.testng.annotations.Test;
+
+/**
+ * OC5:FeatureTest-UserInfo Endpoint Access with Header Method
+ *
+ * @author Javier Rojas Blum
+ * @version June 19, 2015
+ */
+public class UserInfoEndpointAccessWithHeaderMethod extends BaseTest {
+
+    @Parameters({"userId", "userSecret", "redirectUris", "redirectUri", "sectorIdentifierUri"})
+    @Test
+    public void userInfoEndpointAccessWithHeaderMethod(
+            final String userId, final String userSecret, final String redirectUris, final String redirectUri,
+            final String sectorIdentifierUri) throws Exception {
+        showTitle("OC5:FeatureTest-UserInfo Endpoint Access with Header Method");
+
+        List<ResponseType> responseTypes = Arrays.asList(ResponseType.TOKEN, ResponseType.ID_TOKEN);
+
+        // 1. Register client
+        RegisterRequest registerRequest = new RegisterRequest(ApplicationType.WEB, "oxAuth test app",
+                StringUtils.spaceSeparatedToList(redirectUris));
+        registerRequest.setResponseTypes(responseTypes);
+        registerRequest.setSectorIdentifierUri(sectorIdentifierUri);
+
+        RegisterClient registerClient = new RegisterClient(registrationEndpoint);
+        registerClient.setRequest(registerRequest);
+        RegisterResponse registerResponse = registerClient.exec();
+
+        showClient(registerClient);
+        assertEquals(registerResponse.getStatus(), 200, "Unexpected response code: " + registerResponse.getEntity());
+        assertNotNull(registerResponse.getClientId());
+        assertNotNull(registerResponse.getClientSecret());
+        assertNotNull(registerResponse.getRegistrationAccessToken());
+        assertNotNull(registerResponse.getClientIdIssuedAt());
+        assertNotNull(registerResponse.getClientSecretExpiresAt());
+
+        String clientId = registerResponse.getClientId();
+
+        // 2. Request authorization
+        List<String> scopes = Arrays.asList("openid", "profile", "address", "email");
+        String nonce = UUID.randomUUID().toString();
+        String state = UUID.randomUUID().toString();
+
+        AuthorizationRequest authorizationRequest = new AuthorizationRequest(responseTypes, clientId, scopes, redirectUri, nonce);
+        authorizationRequest.setState(state);
+
+        AuthorizationResponse authorizationResponse = authenticateResourceOwnerAndGrantAccess(
+                authorizationEndpoint, authorizationRequest, userId, userSecret);
+
+        assertNotNull(authorizationResponse.getLocation());
+        assertNotNull(authorizationResponse.getAccessToken());
+        assertNotNull(authorizationResponse.getIdToken());
+        assertNotNull(authorizationResponse.getState());
+
+        String accessToken = authorizationResponse.getAccessToken();
+
+        // 3. Request user info
+        UserInfoClient userInfoClient = new UserInfoClient(userInfoEndpoint);
+        UserInfoResponse userInfoResponse = userInfoClient.execUserInfo(accessToken);
+
+        showClient(userInfoClient);
+        assertEquals(userInfoResponse.getStatus(), 200, "Unexpected response code: " + userInfoResponse.getStatus());
+        assertNotNull(userInfoResponse.getClaim(JwtClaimName.SUBJECT_IDENTIFIER));
+        assertNotNull(userInfoResponse.getClaim(JwtClaimName.NAME));
+        assertNotNull(userInfoResponse.getClaim(JwtClaimName.GIVEN_NAME));
+        assertNotNull(userInfoResponse.getClaim(JwtClaimName.FAMILY_NAME));
+        assertNotNull(userInfoResponse.getClaim(JwtClaimName.EMAIL));
+        assertNotNull(userInfoResponse.getClaim(JwtClaimName.ZONEINFO));
+        assertNotNull(userInfoResponse.getClaim(JwtClaimName.LOCALE));
+    }
+}
\ No newline at end of file
diff --git a/oxAuth/Client/src/test/java/org/gluu/oxauth/interop/UsesAsymmetricIdTokenSignatures.java b/oxAuth/Client/src/test/java/org/gluu/oxauth/interop/UsesAsymmetricIdTokenSignatures.java
new file mode 100644
index 00000000..f712204d
--- /dev/null
+++ b/oxAuth/Client/src/test/java/org/gluu/oxauth/interop/UsesAsymmetricIdTokenSignatures.java
@@ -0,0 +1,374 @@
+/*
+ * oxAuth is available under the MIT License (2008). See http://opensource.org/licenses/MIT for full text.
+ *
+ * Copyright (c) 2014, Gluu
+ */
+
+package org.gluu.oxauth.interop;
+
+import static org.testng.Assert.assertEquals;
+import static org.testng.Assert.assertNotNull;
+import static org.testng.Assert.assertTrue;
+
+import java.util.Arrays;
+import java.util.List;
+import java.util.UUID;
+
+import org.gluu.oxauth.BaseTest;
+import org.gluu.oxauth.client.AuthorizationRequest;
+import org.gluu.oxauth.client.AuthorizationResponse;
+import org.gluu.oxauth.client.JwkClient;
+import org.gluu.oxauth.client.RegisterClient;
+import org.gluu.oxauth.client.RegisterRequest;
+import org.gluu.oxauth.client.RegisterResponse;
+import org.gluu.oxauth.model.common.ResponseType;
+import org.gluu.oxauth.model.crypto.signature.ECDSAPublicKey;
+import org.gluu.oxauth.model.crypto.signature.RSAPublicKey;
+import org.gluu.oxauth.model.crypto.signature.SignatureAlgorithm;
+import org.gluu.oxauth.model.jws.ECDSASigner;
+import org.gluu.oxauth.model.jws.RSASigner;
+import org.gluu.oxauth.model.jwt.Jwt;
+import org.gluu.oxauth.model.jwt.JwtHeaderName;
+import org.gluu.oxauth.model.register.ApplicationType;
+import org.gluu.oxauth.model.util.StringUtils;
+import org.testng.annotations.Parameters;
+import org.testng.annotations.Test;
+
+/**
+ * OC5:FeatureTest-Uses Asymmetric ID Token Signatures
+ *
+ * @author Javier Rojas Blum
+ * @version November 3, 2016
+ */
+public class UsesAsymmetricIdTokenSignatures extends BaseTest {
+
+    @Parameters({"redirectUris", "userId", "userSecret", "redirectUri", "sectorIdentifierUri"})
+    @Test
+    public void usesAsymmetricIdTokenSignaturesRS256(
+            final String redirectUris, final String userId, final String userSecret, final String redirectUri,
+            final String sectorIdentifierUri) throws Exception {
+        showTitle("OC5:FeatureTest-Uses Asymmetric ID Token Signatures RS256");
+
+        List<ResponseType> responseTypes = Arrays.asList(ResponseType.ID_TOKEN);
+
+        // 1. Registration
+        RegisterRequest registerRequest = new RegisterRequest(ApplicationType.WEB, "oxAuth test app",
+                StringUtils.spaceSeparatedToList(redirectUris));
+        registerRequest.setResponseTypes(responseTypes);
+        registerRequest.setIdTokenSignedResponseAlg(SignatureAlgorithm.RS256);
+        registerRequest.setSectorIdentifierUri(sectorIdentifierUri);
+
+        RegisterClient registerClient = new RegisterClient(registrationEndpoint);
+        registerClient.setRequest(registerRequest);
+        RegisterResponse registerResponse = registerClient.exec();
+
+        showClient(registerClient);
+        assertEquals(registerResponse.getStatus(), 200, "Unexpected response code: " + registerResponse.getEntity());
+        assertNotNull(registerResponse.getClientId());
+        assertNotNull(registerResponse.getClientSecret());
+        assertNotNull(registerResponse.getRegistrationAccessToken());
+        assertNotNull(registerResponse.getClientSecretExpiresAt());
+
+        String clientId = registerResponse.getClientId();
+
+        // 2. Request Authorization
+        List<String> scopes = Arrays.asList("openid", "profile", "address", "email");
+        String nonce = UUID.randomUUID().toString();
+        String state = UUID.randomUUID().toString();
+
+        AuthorizationRequest authorizationRequest = new AuthorizationRequest(responseTypes, clientId, scopes, redirectUri, nonce);
+        authorizationRequest.setState(state);
+
+        AuthorizationResponse authorizationResponse = authenticateResourceOwnerAndGrantAccess(
+                authorizationEndpoint, authorizationRequest, userId, userSecret);
+
+        assertNotNull(authorizationResponse.getLocation());
+        assertNotNull(authorizationResponse.getIdToken());
+        assertNotNull(authorizationResponse.getState());
+
+        String idToken = authorizationResponse.getIdToken();
+
+        // 3. Validate id_token
+        Jwt jwt = Jwt.parse(idToken);
+        RSAPublicKey publicKey = JwkClient.getRSAPublicKey(
+                jwksUri,
+                jwt.getHeader().getClaimAsString(JwtHeaderName.KEY_ID));
+        RSASigner rsaSigner = new RSASigner(SignatureAlgorithm.RS256, publicKey);
+        assertTrue(rsaSigner.validate(jwt));
+    }
+
+    @Parameters({"redirectUris", "userId", "userSecret", "redirectUri", "sectorIdentifierUri"})
+    @Test
+    public void usesAsymmetricIdTokenSignaturesRS384(
+            final String redirectUris, final String userId, final String userSecret, final String redirectUri,
+            final String sectorIdentifierUri) throws Exception {
+        showTitle("OC5:FeatureTest-Uses Asymmetric ID Token Signatures RS384");
+
+        List<ResponseType> responseTypes = Arrays.asList(ResponseType.ID_TOKEN);
+
+        // 1. Registration
+        RegisterRequest registerRequest = new RegisterRequest(ApplicationType.WEB, "oxAuth test app",
+                StringUtils.spaceSeparatedToList(redirectUris));
+        registerRequest.setResponseTypes(responseTypes);
+        registerRequest.setIdTokenSignedResponseAlg(SignatureAlgorithm.RS384);
+        registerRequest.setSectorIdentifierUri(sectorIdentifierUri);
+
+        RegisterClient registerClient = new RegisterClient(registrationEndpoint);
+        registerClient.setRequest(registerRequest);
+        RegisterResponse registerResponse = registerClient.exec();
+
+        showClient(registerClient);
+        assertEquals(registerResponse.getStatus(), 200, "Unexpected response code: " + registerResponse.getEntity());
+        assertNotNull(registerResponse.getClientId());
+        assertNotNull(registerResponse.getClientSecret());
+        assertNotNull(registerResponse.getRegistrationAccessToken());
+        assertNotNull(registerResponse.getClientSecretExpiresAt());
+
+        String clientId = registerResponse.getClientId();
+
+        // 2. Request Authorization
+        List<String> scopes = Arrays.asList("openid", "profile", "address", "email");
+        String nonce = UUID.randomUUID().toString();
+        String state = UUID.randomUUID().toString();
+
+        AuthorizationRequest authorizationRequest = new AuthorizationRequest(responseTypes, clientId, scopes, redirectUri, nonce);
+        authorizationRequest.setState(state);
+
+        AuthorizationResponse authorizationResponse = authenticateResourceOwnerAndGrantAccess(
+                authorizationEndpoint, authorizationRequest, userId, userSecret);
+
+        assertNotNull(authorizationResponse.getLocation());
+        assertNotNull(authorizationResponse.getIdToken());
+        assertNotNull(authorizationResponse.getState());
+
+        String idToken = authorizationResponse.getIdToken();
+
+        // 3. Validate id_token
+        Jwt jwt = Jwt.parse(idToken);
+        RSAPublicKey publicKey = JwkClient.getRSAPublicKey(
+                jwksUri,
+                jwt.getHeader().getClaimAsString(JwtHeaderName.KEY_ID));
+        RSASigner rsaSigner = new RSASigner(SignatureAlgorithm.RS384, publicKey);
+        assertTrue(rsaSigner.validate(jwt));
+    }
+
+    @Parameters({"redirectUris", "userId", "userSecret", "redirectUri", "sectorIdentifierUri"})
+    @Test
+    public void usesAsymmetricIdTokenSignaturesRS512(
+            final String redirectUris, final String userId, final String userSecret, final String redirectUri,
+            final String sectorIdentifierUri) throws Exception {
+        showTitle("OC5:FeatureTest-Uses Asymmetric ID Token Signatures RS512");
+
+        List<ResponseType> responseTypes = Arrays.asList(ResponseType.ID_TOKEN);
+
+        // 1. Registration
+        RegisterRequest registerRequest = new RegisterRequest(ApplicationType.WEB, "oxAuth test app",
+                StringUtils.spaceSeparatedToList(redirectUris));
+        registerRequest.setResponseTypes(responseTypes);
+        registerRequest.setIdTokenSignedResponseAlg(SignatureAlgorithm.RS512);
+        registerRequest.setSectorIdentifierUri(sectorIdentifierUri);
+
+        RegisterClient registerClient = new RegisterClient(registrationEndpoint);
+        registerClient.setRequest(registerRequest);
+        RegisterResponse registerResponse = registerClient.exec();
+
+        showClient(registerClient);
+        assertEquals(registerResponse.getStatus(), 200, "Unexpected response code: " + registerResponse.getEntity());
+        assertNotNull(registerResponse.getClientId());
+        assertNotNull(registerResponse.getClientSecret());
+        assertNotNull(registerResponse.getRegistrationAccessToken());
+        assertNotNull(registerResponse.getClientSecretExpiresAt());
+
+        String clientId = registerResponse.getClientId();
+
+        // 2. Request Authorization
+        List<String> scopes = Arrays.asList("openid", "profile", "address", "email");
+        String nonce = UUID.randomUUID().toString();
+        String state = UUID.randomUUID().toString();
+
+        AuthorizationRequest authorizationRequest = new AuthorizationRequest(responseTypes, clientId, scopes, redirectUri, nonce);
+        authorizationRequest.setState(state);
+
+        AuthorizationResponse authorizationResponse = authenticateResourceOwnerAndGrantAccess(
+                authorizationEndpoint, authorizationRequest, userId, userSecret);
+
+        assertNotNull(authorizationResponse.getLocation());
+        assertNotNull(authorizationResponse.getIdToken());
+        assertNotNull(authorizationResponse.getState());
+
+        String idToken = authorizationResponse.getIdToken();
+
+        // 3. Validate id_token
+        Jwt jwt = Jwt.parse(idToken);
+        RSAPublicKey publicKey = JwkClient.getRSAPublicKey(
+                jwksUri,
+                jwt.getHeader().getClaimAsString(JwtHeaderName.KEY_ID));
+        RSASigner rsaSigner = new RSASigner(SignatureAlgorithm.RS512, publicKey);
+        assertTrue(rsaSigner.validate(jwt));
+    }
+
+    @Parameters({"redirectUris", "userId", "userSecret", "redirectUri", "sectorIdentifierUri"})
+    @Test
+    public void usesAsymmetricIdTokenSignaturesES256(
+            final String redirectUris, final String userId, final String userSecret, final String redirectUri,
+            final String sectorIdentifierUri) throws Exception {
+        showTitle("OC5:FeatureTest-Uses Asymmetric ID Token Signatures ES256");
+
+        List<ResponseType> responseTypes = Arrays.asList(ResponseType.ID_TOKEN);
+
+        // 1. Registration
+        RegisterRequest registerRequest = new RegisterRequest(ApplicationType.WEB, "oxAuth test app",
+                StringUtils.spaceSeparatedToList(redirectUris));
+        registerRequest.setResponseTypes(responseTypes);
+        registerRequest.setIdTokenSignedResponseAlg(SignatureAlgorithm.ES256);
+        registerRequest.setSectorIdentifierUri(sectorIdentifierUri);
+
+        RegisterClient registerClient = new RegisterClient(registrationEndpoint);
+        registerClient.setRequest(registerRequest);
+        RegisterResponse registerResponse = registerClient.exec();
+
+        showClient(registerClient);
+        assertEquals(registerResponse.getStatus(), 200, "Unexpected response code: " + registerResponse.getEntity());
+        assertNotNull(registerResponse.getClientId());
+        assertNotNull(registerResponse.getClientSecret());
+        assertNotNull(registerResponse.getRegistrationAccessToken());
+        assertNotNull(registerResponse.getClientSecretExpiresAt());
+
+        String clientId = registerResponse.getClientId();
+
+        // 2. Request Authorization
+        List<String> scopes = Arrays.asList("openid", "profile", "address", "email");
+        String nonce = UUID.randomUUID().toString();
+        String state = UUID.randomUUID().toString();
+
+        AuthorizationRequest authorizationRequest = new AuthorizationRequest(responseTypes, clientId, scopes, redirectUri, nonce);
+        authorizationRequest.setState(state);
+
+        AuthorizationResponse authorizationResponse = authenticateResourceOwnerAndGrantAccess(
+                authorizationEndpoint, authorizationRequest, userId, userSecret);
+
+        assertNotNull(authorizationResponse.getLocation());
+        assertNotNull(authorizationResponse.getIdToken());
+        assertNotNull(authorizationResponse.getState());
+
+        String idToken = authorizationResponse.getIdToken();
+
+        // 3. Validate id_token
+        Jwt jwt = Jwt.parse(idToken);
+        ECDSAPublicKey publicKey = JwkClient.getECDSAPublicKey(
+                jwksUri,
+                jwt.getHeader().getClaimAsString(JwtHeaderName.KEY_ID));
+        ECDSASigner ecdsaSigner = new ECDSASigner(SignatureAlgorithm.ES256, publicKey);
+        assertTrue(ecdsaSigner.validate(jwt));
+    }
+
+    @Parameters({"redirectUris", "userId", "userSecret", "redirectUri", "sectorIdentifierUri"})
+    @Test
+    public void usesAsymmetricIdTokenSignaturesES384(
+            final String redirectUris, final String userId, final String userSecret, final String redirectUri,
+            final String sectorIdentifierUri) throws Exception {
+        showTitle("OC5:FeatureTest-Uses Asymmetric ID Token Signatures ES384");
+
+        List<ResponseType> responseTypes = Arrays.asList(ResponseType.ID_TOKEN);
+
+        // 1. Registration
+        RegisterRequest registerRequest = new RegisterRequest(ApplicationType.WEB, "oxAuth test app",
+                StringUtils.spaceSeparatedToList(redirectUris));
+        registerRequest.setResponseTypes(responseTypes);
+        registerRequest.setIdTokenSignedResponseAlg(SignatureAlgorithm.ES384);
+        registerRequest.setSectorIdentifierUri(sectorIdentifierUri);
+
+        RegisterClient registerClient = new RegisterClient(registrationEndpoint);
+        registerClient.setRequest(registerRequest);
+        RegisterResponse registerResponse = registerClient.exec();
+
+        showClient(registerClient);
+        assertEquals(registerResponse.getStatus(), 200, "Unexpected response code: " + registerResponse.getEntity());
+        assertNotNull(registerResponse.getClientId());
+        assertNotNull(registerResponse.getClientSecret());
+        assertNotNull(registerResponse.getRegistrationAccessToken());
+        assertNotNull(registerResponse.getClientSecretExpiresAt());
+
+        String clientId = registerResponse.getClientId();
+
+        // 2. Request Authorization
+        List<String> scopes = Arrays.asList("openid", "profile", "address", "email");
+        String nonce = UUID.randomUUID().toString();
+        String state = UUID.randomUUID().toString();
+
+        AuthorizationRequest authorizationRequest = new AuthorizationRequest(responseTypes, clientId, scopes, redirectUri, nonce);
+        authorizationRequest.setState(state);
+
+        AuthorizationResponse authorizationResponse = authenticateResourceOwnerAndGrantAccess(
+                authorizationEndpoint, authorizationRequest, userId, userSecret);
+
+        assertNotNull(authorizationResponse.getLocation());
+        assertNotNull(authorizationResponse.getIdToken());
+        assertNotNull(authorizationResponse.getState());
+
+        String idToken = authorizationResponse.getIdToken();
+
+        // 3. Validate id_token
+        Jwt jwt = Jwt.parse(idToken);
+        ECDSAPublicKey publicKey = JwkClient.getECDSAPublicKey(
+                jwksUri,
+                jwt.getHeader().getClaimAsString(JwtHeaderName.KEY_ID));
+        ECDSASigner ecdsaSigner = new ECDSASigner(SignatureAlgorithm.ES384, publicKey);
+        assertTrue(ecdsaSigner.validate(jwt));
+    }
+
+    @Parameters({"redirectUris", "userId", "userSecret", "redirectUri", "sectorIdentifierUri"})
+    @Test
+    public void usesAsymmetricIdTokenSignaturesES512(
+            final String redirectUris, final String userId, final String userSecret, final String redirectUri,
+            final String sectorIdentifierUri) throws Exception {
+        showTitle("OC5:FeatureTest-Uses Asymmetric ID Token Signatures ES512");
+
+        List<ResponseType> responseTypes = Arrays.asList(ResponseType.ID_TOKEN);
+
+        // 1. Registration
+        RegisterRequest registerRequest = new RegisterRequest(ApplicationType.WEB, "oxAuth test app",
+                StringUtils.spaceSeparatedToList(redirectUris));
+        registerRequest.setResponseTypes(responseTypes);
+        registerRequest.setIdTokenSignedResponseAlg(SignatureAlgorithm.ES512);
+        registerRequest.setSectorIdentifierUri(sectorIdentifierUri);
+
+        RegisterClient registerClient = new RegisterClient(registrationEndpoint);
+        registerClient.setRequest(registerRequest);
+        RegisterResponse registerResponse = registerClient.exec();
+
+        showClient(registerClient);
+        assertEquals(registerResponse.getStatus(), 200, "Unexpected response code: " + registerResponse.getEntity());
+        assertNotNull(registerResponse.getClientId());
+        assertNotNull(registerResponse.getClientSecret());
+        assertNotNull(registerResponse.getRegistrationAccessToken());
+        assertNotNull(registerResponse.getClientSecretExpiresAt());
+
+        String clientId = registerResponse.getClientId();
+
+        // 2. Request Authorization
+        List<String> scopes = Arrays.asList("openid", "profile", "address", "email");
+        String nonce = UUID.randomUUID().toString();
+        String state = UUID.randomUUID().toString();
+
+        AuthorizationRequest authorizationRequest = new AuthorizationRequest(responseTypes, clientId, scopes, redirectUri, nonce);
+        authorizationRequest.setState(state);
+
+        AuthorizationResponse authorizationResponse = authenticateResourceOwnerAndGrantAccess(
+                authorizationEndpoint, authorizationRequest, userId, userSecret);
+
+        assertNotNull(authorizationResponse.getLocation());
+        assertNotNull(authorizationResponse.getIdToken());
+        assertNotNull(authorizationResponse.getState());
+
+        String idToken = authorizationResponse.getIdToken();
+
+        // 3. Validate id_token
+        Jwt jwt = Jwt.parse(idToken);
+        ECDSAPublicKey publicKey = JwkClient.getECDSAPublicKey(
+                jwksUri,
+                jwt.getHeader().getClaimAsString(JwtHeaderName.KEY_ID));
+        ECDSASigner ecdsaSigner = new ECDSASigner(SignatureAlgorithm.ES512, publicKey);
+        assertTrue(ecdsaSigner.validate(jwt));
+    }
+}
\ No newline at end of file
diff --git a/oxAuth/Client/src/test/java/org/gluu/oxauth/interop/UsesDiscovery.java b/oxAuth/Client/src/test/java/org/gluu/oxauth/interop/UsesDiscovery.java
new file mode 100644
index 00000000..1e1b8d25
--- /dev/null
+++ b/oxAuth/Client/src/test/java/org/gluu/oxauth/interop/UsesDiscovery.java
@@ -0,0 +1,34 @@
+/*
+ * oxAuth is available under the MIT License (2008). See http://opensource.org/licenses/MIT for full text.
+ *
+ * Copyright (c) 2014, Gluu
+ */
+
+package org.gluu.oxauth.interop;
+
+import static org.testng.Assert.assertTrue;
+
+import org.apache.commons.lang.StringUtils;
+import org.gluu.oxauth.BaseTest;
+import org.testng.annotations.Test;
+
+/**
+ * OC5:FeatureTest-Uses Discovery
+ *
+ * @author Javier Rojas Blum Date: 09.02.2013
+ */
+public class UsesDiscovery extends BaseTest {
+
+    @Test
+    public void usesDiscovery() {
+        showTitle("OC5:FeatureTest-Uses Discovery");
+
+        assertTrue(StringUtils.isNotBlank(authorizationEndpoint));
+        assertTrue(StringUtils.isNotBlank(tokenEndpoint));
+        assertTrue(StringUtils.isNotBlank(userInfoEndpoint));
+        assertTrue(StringUtils.isNotBlank(checkSessionIFrame));
+        assertTrue(StringUtils.isNotBlank(endSessionEndpoint));
+        assertTrue(StringUtils.isNotBlank(jwksUri));
+        assertTrue(StringUtils.isNotBlank(registrationEndpoint));
+    }
+}
\ No newline at end of file
diff --git a/oxAuth/Client/src/test/java/org/gluu/oxauth/interop/UsesDynamicRegistration.java b/oxAuth/Client/src/test/java/org/gluu/oxauth/interop/UsesDynamicRegistration.java
new file mode 100644
index 00000000..76705fe9
--- /dev/null
+++ b/oxAuth/Client/src/test/java/org/gluu/oxauth/interop/UsesDynamicRegistration.java
@@ -0,0 +1,63 @@
+/*
+ * oxAuth is available under the MIT License (2008). See http://opensource.org/licenses/MIT for full text.
+ *
+ * Copyright (c) 2014, Gluu
+ */
+
+package org.gluu.oxauth.interop;
+
+import static org.testng.Assert.assertEquals;
+import static org.testng.Assert.assertNotNull;
+
+import java.util.Arrays;
+
+import org.gluu.oxauth.BaseTest;
+import org.gluu.oxauth.client.RegisterClient;
+import org.gluu.oxauth.client.RegisterRequest;
+import org.gluu.oxauth.client.RegisterResponse;
+import org.gluu.oxauth.model.common.AuthenticationMethod;
+import org.gluu.oxauth.model.common.SubjectType;
+import org.gluu.oxauth.model.crypto.signature.SignatureAlgorithm;
+import org.gluu.oxauth.model.register.ApplicationType;
+import org.gluu.oxauth.model.util.StringUtils;
+import org.testng.annotations.Parameters;
+import org.testng.annotations.Test;
+
+/**
+ * OC5:FeatureTest-Uses Dynamic Registration
+ *
+ * @author Javier Rojas Blum Date: 09.03.2013
+ */
+public class UsesDynamicRegistration extends BaseTest {
+
+    @Parameters({"redirectUris", "sectorIdentifierUri", "clientJwksUri"})
+    @Test
+    public void usesDynamicRegistration(final String redirectUris, final String sectorIdentifierUri,
+                                           final String clientJwksUri) throws Exception {
+        showTitle("OC5:FeatureTest-Uses Dynamic Registration");
+
+        RegisterRequest registerRequest = new RegisterRequest(ApplicationType.WEB, "oxAuth test app",
+                StringUtils.spaceSeparatedToList(redirectUris));
+        registerRequest.setContacts(Arrays.asList("javier@gluu.org", "javier.rojas.blum@gmail.com"));
+        registerRequest.setLogoUri("http://www.gluu.org/wp-content/themes/gluursn/images/logo.png");
+        registerRequest.setTokenEndpointAuthMethod(AuthenticationMethod.CLIENT_SECRET_JWT);
+        registerRequest.setPolicyUri("http://www.gluu.org/policy");
+        registerRequest.setJwksUri(clientJwksUri);
+        registerRequest.setSectorIdentifierUri(sectorIdentifierUri);
+        registerRequest.setSubjectType(SubjectType.PUBLIC);
+        registerRequest.setRequestObjectSigningAlg(SignatureAlgorithm.RS256);
+
+        RegisterClient registerClient = new RegisterClient(registrationEndpoint);
+        registerClient.setRequest(registerRequest);
+        RegisterResponse response = registerClient.exec();
+
+        showClient(registerClient);
+        assertEquals(response.getStatus(), 200, "Unexpected response code: " + response.getEntity());
+        assertNotNull(response.getClientId());
+        assertNotNull(response.getClientSecret());
+        assertNotNull(response.getRegistrationAccessToken());
+        assertNotNull(response.getRegistrationClientUri());
+        assertNotNull(response.getClientIdIssuedAt());
+        assertNotNull(response.getClientSecretExpiresAt());
+    }
+}
\ No newline at end of file
diff --git a/oxAuth/Client/src/test/java/org/gluu/oxauth/interop/UsesSymmetricIdTokenSignatures.java b/oxAuth/Client/src/test/java/org/gluu/oxauth/interop/UsesSymmetricIdTokenSignatures.java
new file mode 100644
index 00000000..feca4c4e
--- /dev/null
+++ b/oxAuth/Client/src/test/java/org/gluu/oxauth/interop/UsesSymmetricIdTokenSignatures.java
@@ -0,0 +1,198 @@
+/*
+ * oxAuth is available under the MIT License (2008). See http://opensource.org/licenses/MIT for full text.
+ *
+ * Copyright (c) 2014, Gluu
+ */
+
+package org.gluu.oxauth.interop;
+
+import static org.testng.Assert.assertEquals;
+import static org.testng.Assert.assertNotNull;
+import static org.testng.Assert.assertTrue;
+
+import java.util.Arrays;
+import java.util.List;
+import java.util.UUID;
+
+import org.gluu.oxauth.BaseTest;
+import org.gluu.oxauth.client.AuthorizationRequest;
+import org.gluu.oxauth.client.AuthorizationResponse;
+import org.gluu.oxauth.client.RegisterClient;
+import org.gluu.oxauth.client.RegisterRequest;
+import org.gluu.oxauth.client.RegisterResponse;
+import org.gluu.oxauth.model.common.ResponseType;
+import org.gluu.oxauth.model.crypto.signature.SignatureAlgorithm;
+import org.gluu.oxauth.model.jws.HMACSigner;
+import org.gluu.oxauth.model.jwt.Jwt;
+import org.gluu.oxauth.model.register.ApplicationType;
+import org.gluu.oxauth.model.util.StringUtils;
+import org.testng.annotations.Parameters;
+import org.testng.annotations.Test;
+
+/**
+ * OC5:FeatureTest-Uses Symmetric ID Token Signatures
+ *
+ * @author Javier Rojas Blum
+ * @version November 3, 2016
+ */
+public class UsesSymmetricIdTokenSignatures extends BaseTest {
+
+    @Parameters({"redirectUris", "userId", "userSecret", "redirectUri", "sectorIdentifierUri"})
+    @Test
+    public void usesSymmetricIdTokenSignaturesHS256(
+            final String redirectUris, final String userId, final String userSecret, final String redirectUri,
+            final String sectorIdentifierUri) throws Exception {
+        showTitle("OC5:FeatureTest-Uses Symmetric ID Token Signatures HS256");
+
+        List<ResponseType> responseTypes = Arrays.asList(ResponseType.ID_TOKEN);
+
+        // 1. Registration
+        RegisterRequest registerRequest = new RegisterRequest(ApplicationType.WEB, "oxAuth test app",
+                StringUtils.spaceSeparatedToList(redirectUris));
+        registerRequest.setResponseTypes(responseTypes);
+        registerRequest.setIdTokenSignedResponseAlg(SignatureAlgorithm.HS256);
+        registerRequest.setSectorIdentifierUri(sectorIdentifierUri);
+
+        RegisterClient registerClient = new RegisterClient(registrationEndpoint);
+        registerClient.setRequest(registerRequest);
+        RegisterResponse registerResponse = registerClient.exec();
+
+        showClient(registerClient);
+        assertEquals(registerResponse.getStatus(), 200, "Unexpected response code: " + registerResponse.getEntity());
+        assertNotNull(registerResponse.getClientId());
+        assertNotNull(registerResponse.getClientSecret());
+        assertNotNull(registerResponse.getRegistrationAccessToken());
+        assertNotNull(registerResponse.getClientSecretExpiresAt());
+
+        String clientId = registerResponse.getClientId();
+        String clientSecret = registerResponse.getClientSecret();
+
+        // 2. Request Authorization
+        List<String> scopes = Arrays.asList("openid", "profile", "address", "email");
+        String nonce = UUID.randomUUID().toString();
+        String state = UUID.randomUUID().toString();
+
+        AuthorizationRequest authorizationRequest = new AuthorizationRequest(responseTypes, clientId, scopes, redirectUri, nonce);
+        authorizationRequest.setState(state);
+
+        AuthorizationResponse authorizationResponse = authenticateResourceOwnerAndGrantAccess(
+                authorizationEndpoint, authorizationRequest, userId, userSecret);
+
+        assertNotNull(authorizationResponse.getLocation());
+        assertNotNull(authorizationResponse.getIdToken());
+        assertNotNull(authorizationResponse.getState());
+
+        String idToken = authorizationResponse.getIdToken();
+
+        // 3. Validate id_token
+        Jwt jwt = Jwt.parse(idToken);
+        HMACSigner hmacSigner = new HMACSigner(SignatureAlgorithm.HS256, clientSecret);
+        assertTrue(hmacSigner.validate(jwt));
+    }
+
+    @Parameters({"redirectUris", "userId", "userSecret", "redirectUri", "sectorIdentifierUri"})
+    @Test
+    public void usesSymmetricIdTokenSignaturesHS384(
+            final String redirectUris, final String userId, final String userSecret, final String redirectUri,
+            final String sectorIdentifierUri) throws Exception {
+        showTitle("OC5:FeatureTest-Uses Symmetric ID Token Signatures HS384");
+
+        List<ResponseType> responseTypes = Arrays.asList(ResponseType.ID_TOKEN);
+
+        // 1. Registration
+        RegisterRequest registerRequest = new RegisterRequest(ApplicationType.WEB, "oxAuth test app",
+                StringUtils.spaceSeparatedToList(redirectUris));
+        registerRequest.setResponseTypes(responseTypes);
+        registerRequest.setIdTokenSignedResponseAlg(SignatureAlgorithm.HS384);
+        registerRequest.setSectorIdentifierUri(sectorIdentifierUri);
+
+        RegisterClient registerClient = new RegisterClient(registrationEndpoint);
+        registerClient.setRequest(registerRequest);
+        RegisterResponse registerResponse = registerClient.exec();
+
+        showClient(registerClient);
+        assertEquals(registerResponse.getStatus(), 200, "Unexpected response code: " + registerResponse.getEntity());
+        assertNotNull(registerResponse.getClientId());
+        assertNotNull(registerResponse.getClientSecret());
+        assertNotNull(registerResponse.getRegistrationAccessToken());
+        assertNotNull(registerResponse.getClientSecretExpiresAt());
+
+        String clientId = registerResponse.getClientId();
+        String clientSecret = registerResponse.getClientSecret();
+
+        // 2. Request Authorization
+        List<String> scopes = Arrays.asList("openid", "profile", "address", "email");
+        String nonce = UUID.randomUUID().toString();
+        String state = UUID.randomUUID().toString();
+
+        AuthorizationRequest authorizationRequest = new AuthorizationRequest(responseTypes, clientId, scopes, redirectUri, nonce);
+        authorizationRequest.setState(state);
+
+        AuthorizationResponse authorizationResponse = authenticateResourceOwnerAndGrantAccess(
+                authorizationEndpoint, authorizationRequest, userId, userSecret);
+
+        assertNotNull(authorizationResponse.getLocation());
+        assertNotNull(authorizationResponse.getIdToken());
+        assertNotNull(authorizationResponse.getState());
+
+        String idToken = authorizationResponse.getIdToken();
+
+        // 3. Validate id_token
+        Jwt jwt = Jwt.parse(idToken);
+        HMACSigner hmacSigner = new HMACSigner(SignatureAlgorithm.HS384, clientSecret);
+        assertTrue(hmacSigner.validate(jwt));
+    }
+
+    @Parameters({"redirectUris", "userId", "userSecret", "redirectUri", "sectorIdentifierUri"})
+    @Test
+    public void usesSymmetricIdTokenSignaturesHS512(
+            final String redirectUris, final String userId, final String userSecret, final String redirectUri,
+            final String sectorIdentifierUri) throws Exception {
+        showTitle("OC5:FeatureTest-Uses Symmetric ID Token Signatures HS512");
+
+        List<ResponseType> responseTypes = Arrays.asList(ResponseType.ID_TOKEN);
+
+        // 1. Registration
+        RegisterRequest registerRequest = new RegisterRequest(ApplicationType.WEB, "oxAuth test app",
+                StringUtils.spaceSeparatedToList(redirectUris));
+        registerRequest.setResponseTypes(responseTypes);
+        registerRequest.setIdTokenSignedResponseAlg(SignatureAlgorithm.HS512);
+        registerRequest.setSectorIdentifierUri(sectorIdentifierUri);
+
+        RegisterClient registerClient = new RegisterClient(registrationEndpoint);
+        registerClient.setRequest(registerRequest);
+        RegisterResponse registerResponse = registerClient.exec();
+
+        showClient(registerClient);
+        assertEquals(registerResponse.getStatus(), 200, "Unexpected response code: " + registerResponse.getEntity());
+        assertNotNull(registerResponse.getClientId());
+        assertNotNull(registerResponse.getClientSecret());
+        assertNotNull(registerResponse.getRegistrationAccessToken());
+        assertNotNull(registerResponse.getClientSecretExpiresAt());
+
+        String clientId = registerResponse.getClientId();
+        String clientSecret = registerResponse.getClientSecret();
+
+        // 2. Request Authorization
+        List<String> scopes = Arrays.asList("openid", "profile", "address", "email");
+        String nonce = UUID.randomUUID().toString();
+        String state = UUID.randomUUID().toString();
+
+        AuthorizationRequest authorizationRequest = new AuthorizationRequest(responseTypes, clientId, scopes, redirectUri, nonce);
+        authorizationRequest.setState(state);
+
+        AuthorizationResponse authorizationResponse = authenticateResourceOwnerAndGrantAccess(
+                authorizationEndpoint, authorizationRequest, userId, userSecret);
+
+        assertNotNull(authorizationResponse.getLocation());
+        assertNotNull(authorizationResponse.getIdToken());
+        assertNotNull(authorizationResponse.getState());
+
+        String idToken = authorizationResponse.getIdToken();
+
+        // 3. Validate id_token
+        Jwt jwt = Jwt.parse(idToken);
+        HMACSigner hmacSigner = new HMACSigner(SignatureAlgorithm.HS512, clientSecret);
+        assertTrue(hmacSigner.validate(jwt));
+    }
+}
\ No newline at end of file
diff --git a/oxAuth/Client/src/test/java/org/gluu/oxauth/interop/VerifiesCorrectAtHashWhenImplicitFlowUsed.java b/oxAuth/Client/src/test/java/org/gluu/oxauth/interop/VerifiesCorrectAtHashWhenImplicitFlowUsed.java
new file mode 100644
index 00000000..6260c3dc
--- /dev/null
+++ b/oxAuth/Client/src/test/java/org/gluu/oxauth/interop/VerifiesCorrectAtHashWhenImplicitFlowUsed.java
@@ -0,0 +1,115 @@
+/*
+ * oxAuth is available under the MIT License (2008). See http://opensource.org/licenses/MIT for full text.
+ *
+ * Copyright (c) 2014, Gluu
+ */
+
+package org.gluu.oxauth.interop;
+
+import static org.testng.Assert.assertEquals;
+import static org.testng.Assert.assertNotNull;
+import static org.testng.Assert.assertTrue;
+
+import java.util.Arrays;
+import java.util.List;
+import java.util.UUID;
+
+import org.gluu.oxauth.BaseTest;
+import org.gluu.oxauth.client.AuthorizationRequest;
+import org.gluu.oxauth.client.AuthorizationResponse;
+import org.gluu.oxauth.client.JwkClient;
+import org.gluu.oxauth.client.RegisterClient;
+import org.gluu.oxauth.client.RegisterRequest;
+import org.gluu.oxauth.client.RegisterResponse;
+import org.gluu.oxauth.model.common.ResponseType;
+import org.gluu.oxauth.model.crypto.signature.RSAPublicKey;
+import org.gluu.oxauth.model.crypto.signature.SignatureAlgorithm;
+import org.gluu.oxauth.model.jws.RSASigner;
+import org.gluu.oxauth.model.jwt.Jwt;
+import org.gluu.oxauth.model.jwt.JwtClaimName;
+import org.gluu.oxauth.model.jwt.JwtHeaderName;
+import org.gluu.oxauth.model.register.ApplicationType;
+import org.gluu.oxauth.model.util.StringUtils;
+import org.testng.annotations.Parameters;
+import org.testng.annotations.Test;
+
+/**
+ * OC5:FeatureTest-Verifies Correct at hash when Implicit Flow Used
+ *
+ * @author Javier Rojas Blum
+ * @version November 3, 2016
+ */
+public class VerifiesCorrectAtHashWhenImplicitFlowUsed extends BaseTest {
+
+    @Parameters({"userId", "userSecret", "redirectUris", "redirectUri", "sectorIdentifierUri"})
+    @Test
+    public void verifiesCorrectAtHashWhenImplicitFlowUsed(
+            final String userId, final String userSecret, final String redirectUris, final String redirectUri,
+            final String sectorIdentifierUri) throws Exception {
+        showTitle("OC5:FeatureTest-Verifies Correct at hash when Implicit Flow Used");
+
+        List<ResponseType> responseTypes = Arrays.asList(
+                ResponseType.TOKEN,
+                ResponseType.ID_TOKEN);
+
+        // 1. Register client
+        RegisterRequest registerRequest = new RegisterRequest(ApplicationType.WEB, "oxAuth test app",
+                StringUtils.spaceSeparatedToList(redirectUris));
+        registerRequest.setResponseTypes(responseTypes);
+        registerRequest.setSectorIdentifierUri(sectorIdentifierUri);
+
+        RegisterClient registerClient = new RegisterClient(registrationEndpoint);
+        registerClient.setRequest(registerRequest);
+        RegisterResponse registerResponse = registerClient.exec();
+
+        showClient(registerClient);
+        assertEquals(registerResponse.getStatus(), 200, "Unexpected response code: " + registerResponse.getEntity());
+        assertNotNull(registerResponse.getClientId());
+        assertNotNull(registerResponse.getClientSecret());
+        assertNotNull(registerResponse.getRegistrationAccessToken());
+        assertNotNull(registerResponse.getClientIdIssuedAt());
+        assertNotNull(registerResponse.getClientSecretExpiresAt());
+
+        String clientId = registerResponse.getClientId();
+
+        // 2. Request authorization
+        List<String> scopes = Arrays.asList("openid", "profile", "address", "email");
+        String nonce = UUID.randomUUID().toString();
+        String state = UUID.randomUUID().toString();
+
+        AuthorizationRequest authorizationRequest = new AuthorizationRequest(responseTypes, clientId, scopes, redirectUri, nonce);
+        authorizationRequest.setState(state);
+
+        AuthorizationResponse authorizationResponse = authenticateResourceOwnerAndGrantAccess(
+                authorizationEndpoint, authorizationRequest, userId, userSecret);
+
+        assertNotNull(authorizationResponse.getLocation());
+        assertNotNull(authorizationResponse.getAccessToken());
+        assertNotNull(authorizationResponse.getTokenType());
+        assertNotNull(authorizationResponse.getIdToken());
+        assertNotNull(authorizationResponse.getState());
+
+        String accessToken = authorizationResponse.getAccessToken();
+        String idToken = authorizationResponse.getIdToken();
+
+        // 3. Validate access_token and id_token
+        Jwt jwt = Jwt.parse(idToken);
+        assertNotNull(jwt.getHeader().getClaimAsString(JwtHeaderName.TYPE));
+        assertNotNull(jwt.getHeader().getClaimAsString(JwtHeaderName.ALGORITHM));
+        assertNotNull(jwt.getClaims().getClaimAsString(JwtClaimName.ISSUER));
+        assertNotNull(jwt.getClaims().getClaimAsString(JwtClaimName.AUDIENCE));
+        assertNotNull(jwt.getClaims().getClaimAsString(JwtClaimName.EXPIRATION_TIME));
+        assertNotNull(jwt.getClaims().getClaimAsString(JwtClaimName.ISSUED_AT));
+        assertNotNull(jwt.getClaims().getClaimAsString(JwtClaimName.SUBJECT_IDENTIFIER));
+        assertNotNull(jwt.getClaims().getClaimAsString(JwtClaimName.ACCESS_TOKEN_HASH));
+        assertNotNull(jwt.getClaims().getClaimAsString(JwtClaimName.AUTHENTICATION_TIME));
+
+        RSAPublicKey publicKey = JwkClient.getRSAPublicKey(
+                jwksUri,
+                jwt.getHeader().getClaimAsString(JwtHeaderName.KEY_ID));
+        RSASigner rsaSigner = new RSASigner(SignatureAlgorithm.RS256, publicKey);
+
+        assertTrue(rsaSigner.validate(jwt));
+        assertTrue(rsaSigner.validateAccessToken(accessToken, jwt));
+    }
+}
\ No newline at end of file
diff --git a/oxAuth/Client/src/test/java/org/gluu/oxauth/interop/VerifiesCorrectCHashWhenCodeFlowUsed.java b/oxAuth/Client/src/test/java/org/gluu/oxauth/interop/VerifiesCorrectCHashWhenCodeFlowUsed.java
new file mode 100644
index 00000000..2ad47446
--- /dev/null
+++ b/oxAuth/Client/src/test/java/org/gluu/oxauth/interop/VerifiesCorrectCHashWhenCodeFlowUsed.java
@@ -0,0 +1,114 @@
+/*
+ * oxAuth is available under the MIT License (2008). See http://opensource.org/licenses/MIT for full text.
+ *
+ * Copyright (c) 2014, Gluu
+ */
+
+package org.gluu.oxauth.interop;
+
+import static org.testng.Assert.assertEquals;
+import static org.testng.Assert.assertNotNull;
+import static org.testng.Assert.assertTrue;
+
+import java.util.Arrays;
+import java.util.List;
+import java.util.UUID;
+
+import org.gluu.oxauth.BaseTest;
+import org.gluu.oxauth.client.AuthorizationRequest;
+import org.gluu.oxauth.client.AuthorizationResponse;
+import org.gluu.oxauth.client.JwkClient;
+import org.gluu.oxauth.client.RegisterClient;
+import org.gluu.oxauth.client.RegisterRequest;
+import org.gluu.oxauth.client.RegisterResponse;
+import org.gluu.oxauth.model.common.ResponseType;
+import org.gluu.oxauth.model.crypto.signature.RSAPublicKey;
+import org.gluu.oxauth.model.crypto.signature.SignatureAlgorithm;
+import org.gluu.oxauth.model.jws.RSASigner;
+import org.gluu.oxauth.model.jwt.Jwt;
+import org.gluu.oxauth.model.jwt.JwtClaimName;
+import org.gluu.oxauth.model.jwt.JwtHeaderName;
+import org.gluu.oxauth.model.register.ApplicationType;
+import org.gluu.oxauth.model.util.StringUtils;
+import org.testng.annotations.Parameters;
+import org.testng.annotations.Test;
+
+/**
+ * OC5:FeatureTest-Verifies Correct c hash when Code Flow Used
+ *
+ * @author Javier Rojas Blum
+ * @version November 3, 2016
+ */
+public class VerifiesCorrectCHashWhenCodeFlowUsed extends BaseTest {
+
+    @Parameters({"userId", "userSecret", "redirectUris", "redirectUri", "sectorIdentifierUri"})
+    @Test
+    public void verifiesCorrectCHashWhenCodeFlowUsed(
+            final String userId, final String userSecret, final String redirectUris, final String redirectUri,
+            final String sectorIdentifierUri) throws Exception {
+        showTitle("OC5:FeatureTest-Verifies Correct c hash when Code Flow Used");
+
+        List<ResponseType> responseTypes = Arrays.asList(
+                ResponseType.CODE,
+                ResponseType.ID_TOKEN);
+
+        // 1. Register client
+        RegisterRequest registerRequest = new RegisterRequest(ApplicationType.WEB, "oxAuth test app",
+                StringUtils.spaceSeparatedToList(redirectUris));
+        registerRequest.setResponseTypes(responseTypes);
+        registerRequest.setSectorIdentifierUri(sectorIdentifierUri);
+
+        RegisterClient registerClient = new RegisterClient(registrationEndpoint);
+        registerClient.setRequest(registerRequest);
+        RegisterResponse registerResponse = registerClient.exec();
+
+        showClient(registerClient);
+        assertEquals(registerResponse.getStatus(), 200, "Unexpected response code: " + registerResponse.getEntity());
+        assertNotNull(registerResponse.getClientId());
+        assertNotNull(registerResponse.getClientSecret());
+        assertNotNull(registerResponse.getRegistrationAccessToken());
+        assertNotNull(registerResponse.getClientIdIssuedAt());
+        assertNotNull(registerResponse.getClientSecretExpiresAt());
+
+        String clientId = registerResponse.getClientId();
+
+        // 2. Request authorization
+        List<String> scopes = Arrays.asList("openid", "profile", "address", "email");
+        String state = UUID.randomUUID().toString();
+        String nonce = UUID.randomUUID().toString();
+
+        AuthorizationRequest authorizationRequest = new AuthorizationRequest(responseTypes, clientId, scopes, redirectUri, nonce);
+        authorizationRequest.setState(state);
+
+        AuthorizationResponse authorizationResponse = authenticateResourceOwnerAndGrantAccess(
+                authorizationEndpoint, authorizationRequest, userId, userSecret);
+
+        assertNotNull(authorizationResponse.getLocation(), "The location is null");
+        assertNotNull(authorizationResponse.getCode(), "The code is null");
+        assertNotNull(authorizationResponse.getIdToken(), "The idToken is null");
+        assertNotNull(authorizationResponse.getState(), "The state is null");
+
+        String code = authorizationResponse.getCode();
+        String idToken = authorizationResponse.getIdToken();
+
+        // 3. Validate code and id_token
+        Jwt jwt = Jwt.parse(idToken);
+        assertNotNull(jwt.getHeader().getClaimAsString(JwtHeaderName.TYPE));
+        assertNotNull(jwt.getHeader().getClaimAsString(JwtHeaderName.ALGORITHM));
+        assertNotNull(jwt.getClaims().getClaimAsString(JwtClaimName.ISSUER));
+        assertNotNull(jwt.getClaims().getClaimAsString(JwtClaimName.AUDIENCE));
+        assertNotNull(jwt.getClaims().getClaimAsString(JwtClaimName.EXPIRATION_TIME));
+        assertNotNull(jwt.getClaims().getClaimAsString(JwtClaimName.ISSUED_AT));
+        assertNotNull(jwt.getClaims().getClaimAsString(JwtClaimName.SUBJECT_IDENTIFIER));
+        assertNotNull(jwt.getClaims().getClaimAsString(JwtClaimName.CODE_HASH));
+        assertNotNull(jwt.getClaims().getClaimAsString(JwtClaimName.AUTHENTICATION_TIME));
+
+        RSAPublicKey publicKey = JwkClient.getRSAPublicKey(
+                jwksUri,
+                jwt.getHeader().getClaimAsString(JwtHeaderName.KEY_ID));
+        RSASigner rsaSigner = new RSASigner(SignatureAlgorithm.RS256, publicKey);
+
+        assertTrue(rsaSigner.validate(jwt));
+        assertTrue(rsaSigner.validateAuthorizationCode(code, jwt));
+    }
+}
\ No newline at end of file
diff --git a/oxAuth/Client/src/test/java/org/gluu/oxauth/json/JsonApplierTest.java b/oxAuth/Client/src/test/java/org/gluu/oxauth/json/JsonApplierTest.java
new file mode 100644
index 00000000..9acaa7b6
--- /dev/null
+++ b/oxAuth/Client/src/test/java/org/gluu/oxauth/json/JsonApplierTest.java
@@ -0,0 +1,55 @@
+package org.gluu.oxauth.json;
+
+import static org.testng.Assert.assertEquals;
+
+import java.util.HashMap;
+import java.util.Map;
+
+import org.gluu.oxauth.client.RegisterRequest;
+import org.gluu.oxauth.model.json.JsonApplier;
+import org.json.JSONArray;
+import org.json.JSONObject;
+import org.testng.annotations.Test;
+
+import com.google.common.collect.Lists;
+
+/**
+ * @author Yuriy Zabrovarnyy
+ */
+public class JsonApplierTest {
+
+    @Test
+    public void apply_forListAndJSONObjectAsTarget_shouldTransferPropertyToTarget() {
+        RegisterRequest request = new RegisterRequest();
+        request.setAdditionalAudience(Lists.newArrayList("aud1", "aud2"));
+
+        JSONObject target = new JSONObject();
+
+        JsonApplier.getInstance().apply(request, target);
+
+        assertEquals(new JSONArray(Lists.newArrayList("aud1", "aud2")), target.getJSONArray("additional_audience"));
+    }
+
+    @Test
+    public void apply_forListAndMapAsTarget_shouldTransferPropertyToTarget() {
+        RegisterRequest request = new RegisterRequest();
+        request.setAdditionalAudience(Lists.newArrayList("aud1", "aud2"));
+
+        Map<String, String> target = new HashMap<>();
+
+        JsonApplier.getInstance().apply(request, target);
+
+        assertEquals(new JSONArray(Lists.newArrayList("aud1", "aud2")).toString(), target.get("additional_audience"));
+    }
+
+    @Test
+    public void apply_forListAndJavaObjectAsTarget_shouldTransferPropertyToTarget() {
+        JSONObject jsonObject = new JSONObject();
+        jsonObject.put("additional_audience", new JSONArray(Lists.newArrayList("aud1", "aud2")));
+
+        final RegisterRequest registerRequest = new RegisterRequest();
+        JsonApplier.getInstance().apply(jsonObject, registerRequest);
+
+        assertEquals(Lists.newArrayList("aud1", "aud2"), registerRequest.getAdditionalAudience());
+    }
+}
diff --git a/oxAuth/Client/src/test/java/org/gluu/oxauth/load/LoadConstants.java b/oxAuth/Client/src/test/java/org/gluu/oxauth/load/LoadConstants.java
new file mode 100644
index 00000000..88b06a43
--- /dev/null
+++ b/oxAuth/Client/src/test/java/org/gluu/oxauth/load/LoadConstants.java
@@ -0,0 +1,21 @@
+/*
+ * oxAuth is available under the MIT License (2008). See http://opensource.org/licenses/MIT for full text.
+ *
+ * Copyright (c) 2014, Gluu
+ */
+
+package org.gluu.oxauth.load;
+
+/**
+ * @author Yuriy Zabrovarnyy
+ * @version 0.9, 03/12/2013
+ */
+
+public class LoadConstants {
+
+    private LoadConstants() {
+    }
+
+    public static final int INVOCATION_COUNT = 100;
+    public static final int THREAD_POOL_SIZE = 200;
+}
diff --git a/oxAuth/Client/src/test/java/org/gluu/oxauth/load/ObtainAccessTokenLoadTest.java b/oxAuth/Client/src/test/java/org/gluu/oxauth/load/ObtainAccessTokenLoadTest.java
new file mode 100644
index 00000000..1109d439
--- /dev/null
+++ b/oxAuth/Client/src/test/java/org/gluu/oxauth/load/ObtainAccessTokenLoadTest.java
@@ -0,0 +1,119 @@
+/*
+ * oxAuth is available under the MIT License (2008). See http://opensource.org/licenses/MIT for full text.
+ *
+ * Copyright (c) 2014, Gluu
+ */
+
+package org.gluu.oxauth.load;
+
+import static org.testng.Assert.assertEquals;
+import static org.testng.Assert.assertNotNull;
+import static org.testng.Assert.assertTrue;
+
+import java.util.ArrayList;
+import java.util.Arrays;
+import java.util.List;
+
+import org.gluu.oxauth.BaseTest;
+import org.gluu.oxauth.client.AuthorizationRequest;
+import org.gluu.oxauth.client.AuthorizationResponse;
+import org.gluu.oxauth.client.AuthorizeClient;
+import org.gluu.oxauth.client.ClientUtils;
+import org.gluu.oxauth.client.RegisterClient;
+import org.gluu.oxauth.client.RegisterRequest;
+import org.gluu.oxauth.client.RegisterResponse;
+import org.gluu.oxauth.client.TokenClient;
+import org.gluu.oxauth.client.TokenRequest;
+import org.gluu.oxauth.client.TokenResponse;
+import org.gluu.oxauth.model.common.AuthenticationMethod;
+import org.gluu.oxauth.model.common.GrantType;
+import org.gluu.oxauth.model.common.Prompt;
+import org.gluu.oxauth.model.common.ResponseType;
+import org.gluu.oxauth.model.register.ApplicationType;
+import org.gluu.oxauth.model.util.StringUtils;
+import org.gluu.oxauth.model.util.Util;
+import org.testng.annotations.Parameters;
+import org.testng.annotations.Test;
+
+/**
+ * DON'T INCLUDE IT IN TEST SUITE.
+ *
+ * @author Yuriy Zabrovarnyy
+ * @version 0.9, 03/12/2013
+ */
+
+public class ObtainAccessTokenLoadTest extends BaseTest {
+
+    // Think twice before invoking this test ;). Leads to OpenDJ (Berkley DB) failure
+    // Caused by: LDAPSearchException(resultCode=80 (other), numEntries=0, numReferences=0, errorMessage='Database exception: (JE 4.1.10) JAVA_ERROR: Java Error occurred, recovery may not be possible.')
+    // http://ox.gluu.org/doku.php?id=oxauth:profiling#obtain_access_token_-_2000_invocations_within_200_concurrent_threads
+    @Parameters({"userId", "userSecret", "redirectUris"})
+    @Test(invocationCount = 1000, threadPoolSize = 100)
+    public void obtainAccessToken(final String userId, final String userSecret, String redirectUris) throws Exception {
+        showTitle("requestClientAssociate1");
+
+        redirectUris = "https://client.example.com/cb";
+
+        final List<ResponseType> responseTypes = new ArrayList<ResponseType>();
+        responseTypes.add(ResponseType.CODE);
+        responseTypes.add(ResponseType.ID_TOKEN);
+
+        RegisterRequest registerRequest = new RegisterRequest(ApplicationType.WEB, "oxAuth test app",
+                        StringUtils.spaceSeparatedToList(redirectUris));
+        registerRequest.setResponseTypes(responseTypes);
+        RegisterClient registerClient = new RegisterClient(registrationEndpoint);
+        registerClient.setRequest(registerRequest);
+        RegisterResponse response = registerClient.exec();
+
+        showClient(registerClient);
+        assertEquals(response.getStatus(), 200, "Unexpected response code: " + response.getEntity());
+        assertNotNull(response.getClientId());
+        assertNotNull(response.getClientSecret());
+        assertNotNull(response.getRegistrationAccessToken());
+        assertNotNull(response.getClientSecretExpiresAt());
+
+        final String clientId = response.getClientId();
+        final String clientSecret = response.getClientSecret();
+
+        // 1. Request authorization and receive the authorization code.
+
+        final List<String> scopes = Arrays.asList("openid", "profile", "address", "email");
+
+        final AuthorizationRequest request = new AuthorizationRequest(responseTypes, clientId, scopes, redirectUris, null);
+        request.setState("af0ifjsldkj");
+        request.setAuthUsername(userId);
+        request.setAuthPassword(userSecret);
+        request.getPrompts().add(Prompt.NONE);
+
+        final AuthorizeClient authorizeClient = new AuthorizeClient(authorizationEndpoint);
+        authorizeClient.setRequest(request);
+        final AuthorizationResponse response1 = authorizeClient.exec();
+
+        ClientUtils.showClient(authorizeClient);
+
+        final String scope = response1.getScope();
+        final String authorizationCode = response1.getCode();
+        assertTrue(Util.allNotBlank(authorizationCode));
+
+
+        // 2. Request access token using the authorization code.
+        final TokenRequest tokenRequest = new TokenRequest(GrantType.AUTHORIZATION_CODE);
+        tokenRequest.setCode(authorizationCode);
+        tokenRequest.setRedirectUri(redirectUris);
+        tokenRequest.setAuthUsername(clientId);
+        tokenRequest.setAuthPassword(clientSecret);
+        tokenRequest.setAuthenticationMethod(AuthenticationMethod.CLIENT_SECRET_BASIC);
+        tokenRequest.setScope(scope);
+
+        final TokenClient tokenClient1 = new TokenClient(tokenEndpoint);
+        tokenClient1.setRequest(tokenRequest);
+        final TokenResponse response2 = tokenClient1.exec();
+        ClientUtils.showClient(authorizeClient);
+
+        assertTrue(response2.getStatus() == 200);
+        final String patToken = response2.getAccessToken();
+        final String patRefreshToken = response2.getRefreshToken();
+        assertTrue(Util.allNotBlank(patToken, patRefreshToken));
+    }
+
+}
diff --git a/oxAuth/Client/src/test/java/org/gluu/oxauth/load/RegistrationLoadTest.java b/oxAuth/Client/src/test/java/org/gluu/oxauth/load/RegistrationLoadTest.java
new file mode 100644
index 00000000..64746733
--- /dev/null
+++ b/oxAuth/Client/src/test/java/org/gluu/oxauth/load/RegistrationLoadTest.java
@@ -0,0 +1,59 @@
+/*
+ * oxAuth is available under the MIT License (2008). See http://opensource.org/licenses/MIT for full text.
+ *
+ * Copyright (c) 2014, Gluu
+ */
+
+package org.gluu.oxauth.load;
+
+import static org.testng.Assert.assertEquals;
+import static org.testng.Assert.assertNotNull;
+
+import org.gluu.oxauth.BaseTest;
+import org.gluu.oxauth.client.RegisterClient;
+import org.gluu.oxauth.client.RegisterRequest;
+import org.gluu.oxauth.client.RegisterResponse;
+import org.gluu.oxauth.model.register.ApplicationType;
+import org.gluu.oxauth.model.util.StringUtils;
+import org.testng.annotations.Parameters;
+import org.testng.annotations.Test;
+
+/**
+ * DON'T INCLUDE IT IN TEST SUITE.
+ *
+ * @author Yuriy Zabrovarnyy
+ * @version 0.9, 03/12/2013
+ */
+
+public class RegistrationLoadTest extends BaseTest {
+
+    @Parameters({"redirectUris"})
+    @Test(invocationCount = 1000, threadPoolSize = 100)
+    public void registerClient(final String redirectUris) throws Exception {
+        showTitle("requestClientAssociate1");
+
+        RegisterClient registerClient = new RegisterClient(registrationEndpoint);
+        RegisterResponse response = registerClient.execRegister(ApplicationType.WEB, "oxAuth test app",
+                StringUtils.spaceSeparatedToList(redirectUris));
+
+        showClient(registerClient);
+        assertEquals(response.getStatus(), 200, "Unexpected response code: " + response.getEntity());
+        assertNotNull(response.getClientId());
+        assertNotNull(response.getClientSecret());
+        assertNotNull(response.getRegistrationAccessToken());
+        assertNotNull(response.getClientSecretExpiresAt());
+
+        RegisterRequest readClientRequest = new RegisterRequest(response.getRegistrationAccessToken());
+
+        RegisterClient readClient = new RegisterClient(response.getRegistrationClientUri());
+        readClient.setRequest(readClientRequest);
+        RegisterResponse readClientResponse = readClient.exec();
+
+        showClient(readClient);
+        assertEquals(readClientResponse.getStatus(), 200, "Unexpected response code: " + readClientResponse.getEntity());
+        assertNotNull(readClientResponse.getClientId());
+        assertNotNull(readClientResponse.getClientSecret());
+        assertNotNull(readClientResponse.getClientIdIssuedAt());
+        assertNotNull(readClientResponse.getClientSecretExpiresAt());
+    }
+}
diff --git a/oxAuth/Client/src/test/java/org/gluu/oxauth/load/UserInfoLoadTest.java b/oxAuth/Client/src/test/java/org/gluu/oxauth/load/UserInfoLoadTest.java
new file mode 100644
index 00000000..6d17e0bb
--- /dev/null
+++ b/oxAuth/Client/src/test/java/org/gluu/oxauth/load/UserInfoLoadTest.java
@@ -0,0 +1,91 @@
+/*
+ * oxAuth is available under the MIT License (2008). See http://opensource.org/licenses/MIT for full text.
+ *
+ * Copyright (c) 2014, Gluu
+ */
+
+package org.gluu.oxauth.load;
+
+import static org.testng.Assert.assertEquals;
+import static org.testng.Assert.assertNotNull;
+
+import java.util.ArrayList;
+import java.util.List;
+import java.util.UUID;
+
+import org.gluu.oxauth.BaseTest;
+import org.gluu.oxauth.client.AuthorizationRequest;
+import org.gluu.oxauth.client.AuthorizationResponse;
+import org.gluu.oxauth.client.AuthorizeClient;
+import org.gluu.oxauth.client.UserInfoClient;
+import org.gluu.oxauth.client.UserInfoResponse;
+import org.gluu.oxauth.model.common.Prompt;
+import org.gluu.oxauth.model.common.ResponseType;
+import org.gluu.oxauth.model.jwt.JwtClaimName;
+import org.testng.annotations.Parameters;
+import org.testng.annotations.Test;
+
+/**
+ * DON'T INCLUDE IT IN TEST SUITE.
+ *
+ * @author Yuriy Zabrovarnyy
+ * @version June 19, 2015
+ */
+
+public class UserInfoLoadTest extends BaseTest {
+
+    @Parameters({"userId", "userSecret", "clientId", "redirectUri"})
+    @Test(invocationCount = 1000, threadPoolSize = 100)
+    public void requestUserInfoImplicitFlow(final String userId, final String userSecret,
+                                            final String clientId, final String redirectUri) throws Exception {
+        showTitle("requestUserInfoImplicitFlow");
+
+        // 1. Request authorization
+        List<ResponseType> responseTypes = new ArrayList<ResponseType>();
+        responseTypes.add(ResponseType.TOKEN);
+        responseTypes.add(ResponseType.ID_TOKEN);
+        List<String> scopes = new ArrayList<String>();
+        scopes.add("openid");
+        scopes.add("profile");
+        scopes.add("address");
+        scopes.add("email");
+        String nonce = UUID.randomUUID().toString();
+        String state = UUID.randomUUID().toString();
+
+        AuthorizationRequest request = new AuthorizationRequest(responseTypes, clientId, scopes, redirectUri, nonce);
+        request.setState(state);
+        request.setAuthUsername(userId);
+        request.setAuthPassword(userSecret);
+        request.getPrompts().add(Prompt.NONE);
+
+        AuthorizeClient authorizeClient = new AuthorizeClient(authorizationEndpoint);
+        authorizeClient.setRequest(request);
+        AuthorizationResponse response1 = authorizeClient.exec();
+
+        showClient(authorizeClient);
+        assertEquals(response1.getStatus(), 302, "Unexpected response code: " + response1.getStatus());
+        assertNotNull(response1.getLocation(), "The location is null");
+        assertNotNull(response1.getAccessToken(), "The access token is null");
+        assertNotNull(response1.getState(), "The state is null");
+        assertNotNull(response1.getTokenType(), "The token type is null");
+        assertNotNull(response1.getExpiresIn(), "The expires in value is null");
+        assertNotNull(response1.getScope(), "The scope must be null");
+        assertNotNull(response1.getIdToken(), "The id token must be null");
+
+        String accessToken = response1.getAccessToken();
+
+        // 2. Request user info
+        UserInfoClient userInfoClient = new UserInfoClient(userInfoEndpoint);
+        UserInfoResponse response2 = userInfoClient.execUserInfo(accessToken);
+
+        showClient(userInfoClient);
+        assertEquals(response2.getStatus(), 200, "Unexpected response code: " + response2.getStatus());
+        assertNotNull(response2.getClaim(JwtClaimName.SUBJECT_IDENTIFIER));
+        assertNotNull(response2.getClaim(JwtClaimName.NAME));
+        assertNotNull(response2.getClaim(JwtClaimName.GIVEN_NAME));
+        assertNotNull(response2.getClaim(JwtClaimName.FAMILY_NAME));
+        assertNotNull(response2.getClaim(JwtClaimName.EMAIL));
+        assertNotNull(response2.getClaim(JwtClaimName.ZONEINFO));
+        assertNotNull(response2.getClaim(JwtClaimName.LOCALE));
+    }
+}
diff --git a/oxAuth/Client/src/test/java/org/gluu/oxauth/load/benchmark/BenchmarkRequestAccessToken.java b/oxAuth/Client/src/test/java/org/gluu/oxauth/load/benchmark/BenchmarkRequestAccessToken.java
new file mode 100644
index 00000000..b05f0c4a
--- /dev/null
+++ b/oxAuth/Client/src/test/java/org/gluu/oxauth/load/benchmark/BenchmarkRequestAccessToken.java
@@ -0,0 +1,123 @@
+/*
+ * oxAuth is available under the MIT License (2008). See http://opensource.org/licenses/MIT for full text.
+ *
+ * Copyright (c) 2014, Gluu
+ */
+
+package org.gluu.oxauth.load.benchmark;
+
+import static org.testng.Assert.assertEquals;
+import static org.testng.Assert.assertNotNull;
+
+import java.util.Arrays;
+import java.util.List;
+
+import org.gluu.oxauth.BaseTest;
+import org.gluu.oxauth.client.RegisterClient;
+import org.gluu.oxauth.client.RegisterRequest;
+import org.gluu.oxauth.client.RegisterResponse;
+import org.gluu.oxauth.client.TokenClient;
+import org.gluu.oxauth.client.TokenResponse;
+import org.gluu.oxauth.load.benchmark.suite.BenchmarkTestListener;
+import org.gluu.oxauth.load.benchmark.suite.BenchmarkTestSuiteListener;
+import org.gluu.oxauth.model.common.ResponseType;
+import org.gluu.oxauth.model.common.SubjectType;
+import org.gluu.oxauth.model.register.ApplicationType;
+import org.gluu.oxauth.model.util.StringUtils;
+import org.testng.Reporter;
+import org.testng.annotations.BeforeClass;
+import org.testng.annotations.Listeners;
+import org.testng.annotations.Parameters;
+import org.testng.annotations.Test;
+
+/**
+ * @author Yuriy Movchan
+ * @version November 29, 2017
+ */
+
+@Listeners({BenchmarkTestSuiteListener.class, BenchmarkTestListener.class})
+public class BenchmarkRequestAccessToken extends BaseTest {
+
+    private String clientId;
+    private String clientSecret;
+
+    @Parameters({"userId", "userSecret", "redirectUris", "sectorIdentifierUri"})
+    @BeforeClass
+    public void registerClient(final String userId, final String userSecret, String redirectUris, String sectorIdentifierUri) throws Exception {
+        Reporter.log("Register client", true);
+
+        List<ResponseType> responseTypes = Arrays.asList(ResponseType.CODE, ResponseType.ID_TOKEN);
+        List<String> scopes = Arrays.asList("openid", "profile", "address", "email", "user_name");
+
+        RegisterResponse registerResponse = registerClient(redirectUris, responseTypes, scopes, sectorIdentifierUri);
+
+        assertEquals(registerResponse.getStatus(), 200, "Unexpected response code: " + registerResponse.getEntity());
+        assertNotNull(registerResponse.getClientId());
+        assertNotNull(registerResponse.getClientSecret());
+        assertNotNull(registerResponse.getRegistrationAccessToken());
+        assertNotNull(registerResponse.getClientIdIssuedAt());
+        assertNotNull(registerResponse.getClientSecretExpiresAt());
+
+        this.clientId = registerResponse.getClientId();
+        this.clientSecret = registerResponse.getClientSecret();
+    }
+
+    @Parameters({"userId", "userSecret"})
+    @Test(invocationCount = 200, threadPoolSize = 1)
+    public void requestAccessTokenPassword1(final String userId, final String userSecret) throws Exception {
+        requestAccessTokenPassword(userId, userSecret, this.clientId, this.clientSecret);
+    }
+
+    @Parameters({"userId", "userSecret"})
+    @Test(invocationCount = 200, threadPoolSize = 5, dependsOnMethods = {"requestAccessTokenPassword1"})
+    public void requestAccessTokenPassword2(final String userId, final String userSecret) throws Exception {
+        requestAccessTokenPassword(userId, userSecret, this.clientId, this.clientSecret);
+    }
+
+    @Parameters({"userId", "userSecret"})
+    @Test(invocationCount = 200, threadPoolSize = 2, dependsOnMethods = {"requestAccessTokenPassword2"})
+    public void requestAccessTokenPassword4(final String userId, final String userSecret) throws Exception {
+        requestAccessTokenPassword(userId, userSecret, this.clientId, this.clientSecret);
+    }
+
+    private void requestAccessTokenPassword(final String userId, final String userSecret, String clientId, String clientSecret) throws Exception {
+        // Request Resource Owner Credentials Grant
+        String scope = "openid";
+
+        TokenClient tokenClient = new TokenClient(tokenEndpoint);
+        TokenResponse response1 = tokenClient.execResourceOwnerPasswordCredentialsGrant(userId, userSecret, scope, clientId, clientSecret);
+
+        assertEquals(response1.getStatus(), 200, "Unexpected response code: " + response1.getStatus());
+        assertNotNull(response1.getEntity(), "The entity is null");
+        assertNotNull(response1.getAccessToken(), "The access token is null");
+        assertNotNull(response1.getTokenType(), "The token type is null");
+        assertNotNull(response1.getRefreshToken(), "The refresh token is null");
+        assertNotNull(response1.getScope(), "The scope is null");
+        assertNotNull(response1.getIdToken(), "The id token is null");
+    }
+
+    private RegisterResponse registerClient(
+            final String redirectUris, List<ResponseType> responseTypes, List<String> scopes, String sectorIdentifierUri) {
+        RegisterRequest registerRequest = new RegisterRequest(ApplicationType.WEB, "oxAuth benchmark test app",
+                StringUtils.spaceSeparatedToList(redirectUris));
+        registerRequest.setResponseTypes(responseTypes);
+        registerRequest.setScope(scopes);
+        registerRequest.setSubjectType(SubjectType.PAIRWISE);
+        registerRequest.setSectorIdentifierUri(sectorIdentifierUri);
+
+        RegisterClient registerClient = new RegisterClient(registrationEndpoint);
+        registerClient.setRequest(registerRequest);
+        RegisterResponse registerResponse = registerClient.exec();
+
+        showClient(registerClient);
+        assertEquals(registerResponse.getStatus(), 200, "Unexpected response code: " + registerResponse.getEntity());
+        assertNotNull(registerResponse.getClientId());
+        assertNotNull(registerResponse.getClientSecret());
+        assertNotNull(registerResponse.getRegistrationAccessToken());
+        assertNotNull(registerResponse.getClientIdIssuedAt());
+        assertNotNull(registerResponse.getClientSecretExpiresAt());
+
+        return registerResponse;
+    }
+
+}
diff --git a/oxAuth/Client/src/test/java/org/gluu/oxauth/load/benchmark/BenchmarkRequestAuthorization.java b/oxAuth/Client/src/test/java/org/gluu/oxauth/load/benchmark/BenchmarkRequestAuthorization.java
new file mode 100644
index 00000000..11d19431
--- /dev/null
+++ b/oxAuth/Client/src/test/java/org/gluu/oxauth/load/benchmark/BenchmarkRequestAuthorization.java
@@ -0,0 +1,135 @@
+/*
+ * oxAuth is available under the MIT License (2008). See http://opensource.org/licenses/MIT for full text.
+ *
+ * Copyright (c) 2014, Gluu
+ */
+
+package org.gluu.oxauth.load.benchmark;
+
+import static org.testng.Assert.assertEquals;
+import static org.testng.Assert.assertNotNull;
+
+import java.util.Arrays;
+import java.util.List;
+import java.util.UUID;
+
+import org.gluu.oxauth.BaseTest;
+import org.gluu.oxauth.client.AuthorizationRequest;
+import org.gluu.oxauth.client.AuthorizationResponse;
+import org.gluu.oxauth.client.RegisterClient;
+import org.gluu.oxauth.client.RegisterRequest;
+import org.gluu.oxauth.client.RegisterResponse;
+import org.gluu.oxauth.load.benchmark.suite.BenchmarkTestListener;
+import org.gluu.oxauth.load.benchmark.suite.BenchmarkTestSuiteListener;
+import org.gluu.oxauth.model.common.ResponseType;
+import org.gluu.oxauth.model.common.SubjectType;
+import org.gluu.oxauth.model.register.ApplicationType;
+import org.gluu.oxauth.model.util.StringUtils;
+import org.testng.Reporter;
+import org.testng.annotations.BeforeClass;
+import org.testng.annotations.Listeners;
+import org.testng.annotations.Parameters;
+import org.testng.annotations.Test;
+
+/**
+ * @author Yuriy Movchan
+ * @author Javier Rojas Blum
+ * @version November 29, 2017
+ */
+
+@Listeners({BenchmarkTestSuiteListener.class, BenchmarkTestListener.class})
+public class BenchmarkRequestAuthorization extends BaseTest {
+
+    private String clientId;
+    private String clientSecret;
+
+    @Parameters({"userId", "userSecret", "redirectUris", "sectorIdentifierUri"})
+    @BeforeClass
+    public void registerClient(final String userId, final String userSecret, String redirectUris, String sectorIdentifierUri) throws Exception {
+        Reporter.log("Register client", true);
+
+        List<ResponseType> responseTypes = Arrays.asList(ResponseType.CODE, ResponseType.ID_TOKEN);
+        List<String> scopes = Arrays.asList("openid", "profile", "address", "email", "user_name");
+
+        RegisterResponse registerResponse = registerClient(redirectUris, responseTypes, scopes, sectorIdentifierUri);
+
+        assertEquals(registerResponse.getStatus(), 200, "Unexpected response code: " + registerResponse.getEntity());
+        assertNotNull(registerResponse.getClientId());
+        assertNotNull(registerResponse.getClientSecret());
+        assertNotNull(registerResponse.getRegistrationAccessToken());
+        assertNotNull(registerResponse.getClientIdIssuedAt());
+        assertNotNull(registerResponse.getClientSecretExpiresAt());
+
+        this.clientId = registerResponse.getClientId();
+        this.clientSecret = registerResponse.getClientSecret();
+    }
+
+    @Parameters({"userId", "userSecret", "redirectUri"})
+    @Test(invocationCount = 200, threadPoolSize = 1)
+    public void testAuthorization1(final String userId, final String userSecret, final String redirectUri) throws Exception {
+        testAuthorizationImpl(userId, userSecret, this.clientId, redirectUri, false);
+    }
+
+    @Parameters({"userId", "userSecret", "redirectUri"})
+    @Test(invocationCount = 200, threadPoolSize = 5, dependsOnMethods = {"testAuthorization1"})
+    public void testAuthorization2(final String userId, final String userSecret, final String redirectUri) throws Exception {
+        testAuthorizationImpl(userId, userSecret, this.clientId, redirectUri, true);
+    }
+
+    @Parameters({"userId", "userSecret", "redirectUri"})
+    @Test(invocationCount = 200, threadPoolSize = 2, dependsOnMethods = {"testAuthorization2"})
+    public void testAuthorization3(final String userId, final String userSecret, final String redirectUri) throws Exception {
+        testAuthorizationImpl(userId, userSecret, this.clientId, redirectUri, true);
+    }
+
+    private void testAuthorizationImpl(final String userId, final String userSecret, final String clientId, final String redirectUri, boolean useNewDriver) {
+        List<ResponseType> responseTypes = Arrays.asList(ResponseType.CODE, ResponseType.ID_TOKEN);
+        List<String> scopes = Arrays.asList("openid", "profile", "address", "email", "user_name");
+        String nonce = UUID.randomUUID().toString();
+
+        AuthorizationResponse response = requestAuthorization(userId, userSecret, redirectUri, responseTypes, scopes, clientId, nonce, useNewDriver);
+
+        assertNotNull(response.getLocation(), "The location is null");
+        assertNotNull(response.getCode(), "The authorization code is null");
+        assertNotNull(response.getState(), "The state is null");
+        assertNotNull(response.getScope(), "The scope is null");
+    }
+
+    private AuthorizationResponse requestAuthorization(final String userId, final String userSecret, final String redirectUri,
+                                                       List<ResponseType> responseTypes, List<String> scopes, String clientId, String nonce, boolean useNewDriver) {
+        String state = UUID.randomUUID().toString();
+
+        AuthorizationRequest authorizationRequest = new AuthorizationRequest(responseTypes, clientId, scopes, redirectUri, nonce);
+        authorizationRequest.setState(state);
+
+        AuthorizationResponse authorizationResponse = authenticateResourceOwnerAndGrantAccess(
+                authorizationEndpoint, authorizationRequest, userId, userSecret, true, useNewDriver);
+
+        return authorizationResponse;
+    }
+
+    private RegisterResponse registerClient(
+            final String redirectUris, List<ResponseType> responseTypes, List<String> scopes, String sectorIdentifierUri) {
+        RegisterRequest registerRequest = new RegisterRequest(ApplicationType.WEB, "oxAuth benchmark test app",
+                StringUtils.spaceSeparatedToList(redirectUris));
+        registerRequest.setResponseTypes(responseTypes);
+        registerRequest.setScope(scopes);
+        registerRequest.setSubjectType(SubjectType.PAIRWISE);
+        registerRequest.setSectorIdentifierUri(sectorIdentifierUri);
+
+        RegisterClient registerClient = new RegisterClient(registrationEndpoint);
+        registerClient.setRequest(registerRequest);
+        RegisterResponse registerResponse = registerClient.exec();
+
+        showClient(registerClient);
+        assertEquals(registerResponse.getStatus(), 200, "Unexpected response code: " + registerResponse.getEntity());
+        assertNotNull(registerResponse.getClientId());
+        assertNotNull(registerResponse.getClientSecret());
+        assertNotNull(registerResponse.getRegistrationAccessToken());
+        assertNotNull(registerResponse.getClientIdIssuedAt());
+        assertNotNull(registerResponse.getClientSecretExpiresAt());
+
+        return registerResponse;
+    }
+
+}
diff --git a/oxAuth/Client/src/test/java/org/gluu/oxauth/load/benchmark/suite/BenchmarkTestListener.java b/oxAuth/Client/src/test/java/org/gluu/oxauth/load/benchmark/suite/BenchmarkTestListener.java
new file mode 100644
index 00000000..f02697dd
--- /dev/null
+++ b/oxAuth/Client/src/test/java/org/gluu/oxauth/load/benchmark/suite/BenchmarkTestListener.java
@@ -0,0 +1,117 @@
+/*
+ * oxAuth is available under the MIT License (2008). See http://opensource.org/licenses/MIT for full text.
+ *
+ * Copyright (c) 2014, Gluu
+ */
+
+package org.gluu.oxauth.load.benchmark.suite;
+
+import java.util.ArrayList;
+import java.util.HashMap;
+import java.util.List;
+import java.util.Map;
+import java.util.concurrent.locks.Lock;
+import java.util.concurrent.locks.ReentrantLock;
+
+import org.gluu.util.StringHelper;
+import org.testng.ITestContext;
+import org.testng.ITestListener;
+import org.testng.ITestNGMethod;
+import org.testng.ITestResult;
+import org.testng.Reporter;
+
+/**
+ * @author Yuriy Movchan
+ * @version 0.1, 03/17/2015
+ */
+public class BenchmarkTestListener implements ITestListener {
+	
+	private List<String> methodNames;
+	private Map<String, Long> methodTakes;
+	private Map<String, Long> methodInvoked;
+	
+	private Lock lock = new ReentrantLock();
+
+	@Override
+	public void onTestStart(ITestResult result) {
+	}
+
+	@Override
+	public void onTestSuccess(ITestResult result) {
+		final String methodName = result.getMethod().getMethodName();
+		final long takes = result.getEndMillis() - result.getStartMillis();
+
+		Long totalTakes;
+		Long totalInvoked;
+		
+		lock.lock();
+		try {
+			if (methodTakes.containsKey(methodName)) {
+				totalTakes = methodTakes.get(methodName);
+				totalInvoked = methodInvoked.get(methodName);
+
+				totalTakes += takes;
+				totalInvoked++;
+			} else {
+				methodNames.add(methodName);
+
+				totalTakes = takes;
+				totalInvoked = 1L;
+			}
+			methodTakes.put(methodName, totalTakes);
+			methodInvoked.put(methodName, totalInvoked);
+		} finally {
+			lock.unlock();
+		}
+	}
+
+	@Override
+	public void onTestFailure(ITestResult result) {
+	}
+
+	@Override
+	public void onTestSkipped(ITestResult result) {
+	}
+
+	@Override
+	public void onTestFailedButWithinSuccessPercentage(ITestResult result) {
+	}
+
+	@Override
+	public void onStart(ITestContext context) {
+		Reporter.log("Test '" + context.getName() + "' started ...", true);
+
+		this.methodNames = new ArrayList<String>();
+		this.methodTakes = new HashMap<String, Long>();
+		this.methodInvoked = new HashMap<String, Long>();
+	}
+
+	@Override
+	public void onFinish(ITestContext context) {
+		final long takes = (context.getEndDate().getTime() - context.getStartDate().getTime()) / 1000;
+        Reporter.log("Test '" + context.getName() + "' finished in " + takes + " seconds", true);
+        Reporter.log("================================================================================", true);
+
+        for (String methodName : this.methodNames) {
+    		final long methodTakes = this.methodTakes.get(methodName);
+    		final long methodInvoked = this.methodInvoked.get(methodName);
+    		final long methodThreads = getMethodThreqads(context, methodName);
+
+    		long oneExecutionMethodTakes = methodTakes == 0 ? 0 : methodTakes / methodInvoked;
+    		Reporter.log("BENCHMARK REPORT | " + " Method: '" + methodName + "' | Takes:" + methodTakes + " | Invoked: " + methodInvoked + " | Threads: " + methodThreads + " | Average method execution: " + oneExecutionMethodTakes  , true);
+        }
+        Reporter.log("================================================================================", true);
+
+	}
+
+	private long getMethodThreqads(ITestContext context, String methodName) {
+		ITestNGMethod[] allTestMethods = context.getAllTestMethods();
+		for (int i = 0; i < allTestMethods.length; i++) {
+			if (StringHelper.equalsIgnoreCase(allTestMethods[i].getMethodName(), methodName)) {
+				return allTestMethods[i].getThreadPoolSize();
+			}
+		}
+
+		return 1;
+	}
+}
diff --git a/oxAuth/Client/src/test/java/org/gluu/oxauth/load/benchmark/suite/BenchmarkTestSuiteListener.java b/oxAuth/Client/src/test/java/org/gluu/oxauth/load/benchmark/suite/BenchmarkTestSuiteListener.java
new file mode 100644
index 00000000..8344b960
--- /dev/null
+++ b/oxAuth/Client/src/test/java/org/gluu/oxauth/load/benchmark/suite/BenchmarkTestSuiteListener.java
@@ -0,0 +1,33 @@
+/*
+ * oxAuth is available under the MIT License (2008). See http://opensource.org/licenses/MIT for full text.
+ *
+ * Copyright (c) 2014, Gluu
+ */
+
+package org.gluu.oxauth.load.benchmark.suite;
+
+import org.testng.ISuite;
+import org.testng.ISuiteListener;
+import org.testng.Reporter;
+
+/**
+ * @author Yuriy Zabrovarnyy
+ * @version 0.9, 03/07/2014
+ */
+
+public class BenchmarkTestSuiteListener implements ISuiteListener {
+
+    private long start;
+
+    @Override
+    public void onStart(ISuite suite) {
+    	this.start = System.currentTimeMillis();
+    	Reporter.log("Suite '" + suite.getName() + "' started ...", true);
+    }
+
+    @Override
+    public void onFinish(ISuite suite) {
+        final long takes = (System.currentTimeMillis() - start) / 1000;
+        Reporter.log("Suite '" + suite.getName() + "' finished in " + takes + " seconds", true);
+    }
+}
diff --git a/oxAuth/Client/src/test/java/org/gluu/oxauth/page/AbstractPage.java b/oxAuth/Client/src/test/java/org/gluu/oxauth/page/AbstractPage.java
new file mode 100644
index 00000000..cde7d14b
--- /dev/null
+++ b/oxAuth/Client/src/test/java/org/gluu/oxauth/page/AbstractPage.java
@@ -0,0 +1,86 @@
+package org.gluu.oxauth.page;
+
+import static org.testng.Assert.fail;
+
+import java.io.UnsupportedEncodingException;
+import java.net.URLDecoder;
+import java.util.Set;
+
+import org.gluu.oxauth.model.common.Holder;
+import org.gluu.oxauth.model.util.Util;
+import org.openqa.selenium.By;
+import org.openqa.selenium.Cookie;
+import org.openqa.selenium.WebDriver;
+import org.openqa.selenium.WebElement;
+import org.openqa.selenium.support.ui.WebDriverWait;
+
+import com.google.common.base.Preconditions;
+
+/**
+ * @author Yuriy Zabrovarnyy
+ */
+public class AbstractPage implements Page {
+
+    protected PageConfig config;
+
+    public AbstractPage(PageConfig config) {
+        Preconditions.checkNotNull(config);
+        this.config = config;
+    }
+
+    public void navigate(String url) {
+        try {
+            final WebDriver driver = config.getDriver();
+            output("Navigate URL: " + url);
+            //printCookies();
+            driver.navigate().to(URLDecoder.decode(url, Util.UTF8_STRING_ENCODING));
+        } catch (UnsupportedEncodingException ex) {
+            fail("Failed to decode the URL.");
+        }
+    }
+
+    public void printCookies() {
+        final Set<Cookie> cookies = driver().manage().getCookies();
+        if (cookies == null || cookies.isEmpty()) {
+            output("Cookies: no cookies");
+            return;
+        }
+
+        output("Cookies: ");
+        cookies.forEach(cookie -> System.out.println("        " + cookie));
+    }
+
+    public WebDriver driver() {
+        return config.getDriver();
+    }
+
+    public String config(String key) {
+        return config.value(key);
+    }
+
+    public WebElement elementById(String id) {
+        return driver().findElement(By.id(config(id)));
+    }
+
+    public WebElement elementByElementId(String elementId) {
+        return driver().findElement(By.id(elementId));
+    }
+
+    public String waitForPageSwitch(String previousUrl) {
+        return waitForPageSwitch(driver(), previousUrl);
+    }
+
+    public static String waitForPageSwitch(WebDriver currentDriver, String previousURL) {
+        Holder<String> currentUrl = new Holder<>();
+        WebDriverWait wait = new WebDriverWait(currentDriver, PageConfig.WAIT_OPERATION_TIMEOUT);
+        wait.until((WebDriver d) -> {
+            currentUrl.setT(d.getCurrentUrl());
+            return !currentUrl.getT().equals(previousURL);
+        });
+        return currentUrl.getT();
+    }
+
+    public static void output(String str) {
+        System.out.println(str); // switch to logger?
+    }
+}
diff --git a/oxAuth/Client/src/test/java/org/gluu/oxauth/page/DeviceAuthzPage.java b/oxAuth/Client/src/test/java/org/gluu/oxauth/page/DeviceAuthzPage.java
new file mode 100644
index 00000000..609f165d
--- /dev/null
+++ b/oxAuth/Client/src/test/java/org/gluu/oxauth/page/DeviceAuthzPage.java
@@ -0,0 +1,29 @@
+package org.gluu.oxauth.page;
+
+import org.openqa.selenium.WebElement;
+
+public class DeviceAuthzPage extends AbstractPage {
+
+    private static final String FORM_USER_CODE_PART_1_ID = "deviceAuthzForm:userCodePart1";
+    private static final String FORM_USER_CODE_PART_2_ID = "deviceAuthzForm:userCodePart2";
+    private static final String FORM_CONTINUE_BUTTON_ID = "deviceAuthzForm:continueButton";
+
+    public DeviceAuthzPage(PageConfig config) {
+        super(config);
+    }
+
+    public void fillUserCode(String userCode) {
+        final String[] userCodeParts = userCode.split("-");
+
+        WebElement userCodePart1 = elementByElementId(FORM_USER_CODE_PART_1_ID);
+        userCodePart1.sendKeys(userCodeParts[0]);
+
+        WebElement userCodePart2 = elementByElementId(FORM_USER_CODE_PART_2_ID);
+        userCodePart2.sendKeys(userCodeParts[1]);
+    }
+
+    public void clickContinueButton() {
+        WebElement continueButton = elementByElementId(FORM_CONTINUE_BUTTON_ID);
+        continueButton.click();
+    }
+}
diff --git a/oxAuth/Client/src/test/java/org/gluu/oxauth/page/LoginPage.java b/oxAuth/Client/src/test/java/org/gluu/oxauth/page/LoginPage.java
new file mode 100644
index 00000000..b41c24f2
--- /dev/null
+++ b/oxAuth/Client/src/test/java/org/gluu/oxauth/page/LoginPage.java
@@ -0,0 +1,42 @@
+package org.gluu.oxauth.page;
+
+import org.apache.commons.lang.StringUtils;
+import org.openqa.selenium.WebElement;
+
+/**
+ * @author Yuriy Zabrovarnyy
+ */
+public class LoginPage extends AbstractPage {
+
+    public LoginPage(PageConfig config) {
+        super(config);
+    }
+
+    public WebElement getUsernameField() {
+        return elementById("loginFormUsername");
+    }
+
+    public WebElement getPasswordField() {
+        return elementById("loginFormPassword");
+    }
+
+    public WebElement getLoginButton() {
+        return elementById("loginFormLoginButton");
+    }
+
+    public void enterUsername(String username) {
+        if (StringUtils.isBlank(username)) {
+            return;
+        }
+
+        getUsernameField().sendKeys(username);
+    }
+
+    public void enterPassword(String userSecret) {
+        if (StringUtils.isBlank(userSecret)) {
+            return;
+        }
+
+        getPasswordField().sendKeys(userSecret);
+    }
+}
diff --git a/oxAuth/Client/src/test/java/org/gluu/oxauth/page/Page.java b/oxAuth/Client/src/test/java/org/gluu/oxauth/page/Page.java
new file mode 100644
index 00000000..0e1d3cb3
--- /dev/null
+++ b/oxAuth/Client/src/test/java/org/gluu/oxauth/page/Page.java
@@ -0,0 +1,7 @@
+package org.gluu.oxauth.page;
+
+/**
+ * @author Yuriy Zabrovarnyy
+ */
+public interface Page {
+}
diff --git a/oxAuth/Client/src/test/java/org/gluu/oxauth/page/PageConfig.java b/oxAuth/Client/src/test/java/org/gluu/oxauth/page/PageConfig.java
new file mode 100644
index 00000000..e97450df
--- /dev/null
+++ b/oxAuth/Client/src/test/java/org/gluu/oxauth/page/PageConfig.java
@@ -0,0 +1,41 @@
+package org.gluu.oxauth.page;
+
+import java.util.HashMap;
+import java.util.Map;
+
+import org.apache.commons.lang.StringUtils;
+import org.openqa.selenium.WebDriver;
+
+import com.google.common.base.Preconditions;
+
+/**
+ * @author Yuriy Zabrovarnyy
+ */
+public class PageConfig {
+
+    public static int WAIT_OPERATION_TIMEOUT = 60;
+
+    private final WebDriver driver;
+    private final Map<String, String> testKeys = new HashMap<>();
+
+    public PageConfig(WebDriver driver) {
+        Preconditions.checkNotNull(driver);
+        this.driver = driver;
+    }
+
+    public WebDriver getDriver() {
+        return driver;
+    }
+
+    public Map<String, String> getTestKeys() {
+        return testKeys;
+    }
+
+    public String value(String key) {
+        final String value = testKeys.get(key);
+        if (StringUtils.isBlank(value)) {
+            throw new IllegalArgumentException("Unknown key: " + key);
+        }
+        return value;
+    }
+}
diff --git a/oxAuth/Client/src/test/java/org/gluu/oxauth/page/SelectPage.java b/oxAuth/Client/src/test/java/org/gluu/oxauth/page/SelectPage.java
new file mode 100644
index 00000000..bdeddd56
--- /dev/null
+++ b/oxAuth/Client/src/test/java/org/gluu/oxauth/page/SelectPage.java
@@ -0,0 +1,68 @@
+package org.gluu.oxauth.page;
+
+import java.util.List;
+import java.util.stream.Collectors;
+
+import org.gluu.oxauth.BaseTest;
+import org.openqa.selenium.By;
+import org.openqa.selenium.WebDriver;
+import org.openqa.selenium.WebElement;
+import org.openqa.selenium.support.ui.WebDriverWait;
+
+/**
+ * @author Yuriy Zabrovarnyy
+ */
+public class SelectPage extends AbstractPage {
+
+    public SelectPage(PageConfig config) {
+        super(config);
+    }
+
+    public WebElement getLoginAsAnotherUserButton() {
+        return driver().findElement(By.id("selectForm:loginButton"));
+    }
+
+    public List<WebElement> getAccountButtons() {
+        return driver().findElements(By.tagName("a")).stream().filter(webElement -> {
+            final String onclick = webElement.getAttribute("onclick");
+            return onclick != null && onclick.contains("accountButtons");
+        }).collect(Collectors.toList());
+    }
+
+    public WebElement getAccountButton(String name) {
+        return getAccountButtons().stream().filter(webElement -> webElement.getText().equals(name)).findFirst().get();
+    }
+
+    public LoginPage clickOnLoginAsAnotherUser() {
+        final WebDriver driver = driver();
+
+        output("Removed session_id");
+        driver.manage().deleteCookieNamed("session_id"); // emulate browser
+
+        final String previousUrl = driver.getCurrentUrl();
+        output("Clicked Login as another user button");
+        getLoginAsAnotherUserButton().click();
+        waitForPageSwitch(previousUrl);
+
+        navigate(driver.getCurrentUrl());
+        if (BaseTest.ENABLE_REDIRECT_TO_LOGIN_PAGE) {
+            new WebDriverWait(driver, PageConfig.WAIT_OPERATION_TIMEOUT)
+                    .until((WebDriver d) -> !d.getCurrentUrl().contains("/authorize"));
+        }
+        return new LoginPage(config);
+    }
+
+    public SelectPage switchAccount(WebElement element) {
+        output("Switching account to: " + element.getText());
+        final String url = driver().getCurrentUrl();
+        element.click();
+        waitForPageSwitch(url);
+        return this;
+    }
+
+    public static SelectPage navigate(PageConfig config, String authorizationUrlWithPromptSelectAccount) {
+        final SelectPage page = new SelectPage(config);
+        page.navigate(authorizationUrlWithPromptSelectAccount);
+        return page;
+    }
+}
diff --git a/oxAuth/Client/src/test/java/org/gluu/oxauth/ws/rs/AccessTokenAsJwtHttpTest.java b/oxAuth/Client/src/test/java/org/gluu/oxauth/ws/rs/AccessTokenAsJwtHttpTest.java
new file mode 100644
index 00000000..538c781f
--- /dev/null
+++ b/oxAuth/Client/src/test/java/org/gluu/oxauth/ws/rs/AccessTokenAsJwtHttpTest.java
@@ -0,0 +1,108 @@
+package org.gluu.oxauth.ws.rs;
+
+import static org.testng.Assert.assertEquals;
+import static org.testng.Assert.assertNotNull;
+
+import java.security.KeyManagementException;
+import java.security.KeyStoreException;
+import java.security.NoSuchAlgorithmException;
+import java.security.UnrecoverableKeyException;
+import java.util.Arrays;
+import java.util.List;
+import java.util.UUID;
+
+import org.gluu.oxauth.BaseTest;
+import org.gluu.oxauth.client.AuthorizationRequest;
+import org.gluu.oxauth.client.AuthorizationResponse;
+import org.gluu.oxauth.client.RegisterClient;
+import org.gluu.oxauth.client.RegisterRequest;
+import org.gluu.oxauth.client.RegisterResponse;
+import org.gluu.oxauth.model.common.ResponseType;
+import org.gluu.oxauth.model.crypto.signature.SignatureAlgorithm;
+import org.gluu.oxauth.model.jwt.Jwt;
+import org.gluu.oxauth.model.jwt.JwtClaimName;
+import org.gluu.oxauth.model.jwt.JwtHeaderName;
+import org.gluu.oxauth.model.register.ApplicationType;
+import org.gluu.oxauth.model.util.StringUtils;
+import org.testng.annotations.Parameters;
+import org.testng.annotations.Test;
+
+/**
+ * @author Yuriy Zabrovarnyy
+ */
+public class AccessTokenAsJwtHttpTest extends BaseTest {
+
+    /**
+     * Test for the complete Authorization Code Flow.
+     */
+    @Parameters({"userId", "userSecret", "redirectUris", "redirectUri", "sectorIdentifierUri"})
+    @Test
+    public void accessTokenAsJwt(
+            final String userId, final String userSecret, final String redirectUris, final String redirectUri,
+            final String sectorIdentifierUri) throws Exception {
+        showTitle("accessTokenAsJwt");
+
+        List<ResponseType> responseTypes = Arrays.asList(ResponseType.CODE, ResponseType.ID_TOKEN, ResponseType.TOKEN);
+        List<String> scopes = Arrays.asList("openid", "profile", "address", "email", "phone", "user_name");
+
+        RegisterResponse registerResponse = registerClient(redirectUri, responseTypes, scopes);
+
+        String clientId = registerResponse.getClientId();
+
+        // Request authorization and receive the authorization code.
+        String nonce = UUID.randomUUID().toString();
+        AuthorizationResponse authorizationResponse = requestAuthorization(userId, userSecret, redirectUri, responseTypes, scopes, clientId, nonce);
+
+        String accessToken = authorizationResponse.getAccessToken();
+
+        // Validate access token as jwt
+        Jwt jwt = Jwt.parse(accessToken);
+        assertEquals(clientId, jwt.getClaims().getClaimAsString(JwtClaimName.AUDIENCE));
+        assertNotNull(jwt.getHeader().getClaimAsString(JwtHeaderName.TYPE));
+        assertNotNull(jwt.getHeader().getClaimAsString(JwtHeaderName.ALGORITHM));
+        assertNotNull(jwt.getClaims().getClaimAsString("scope"));
+        assertNotNull(jwt.getClaims().getClaimAsString(JwtClaimName.EXPIRATION_TIME));
+        assertNotNull(jwt.getClaims().getClaimAsString(JwtClaimName.ISSUED_AT));
+        assertNotNull(jwt.getClaims().getClaimAsString(JwtClaimName.SUBJECT_IDENTIFIER));
+        assertNotNull(jwt.getClaims().getClaimAsString(JwtClaimName.ISSUER));
+    }
+
+    private RegisterResponse registerClient(String redirectUris, List<ResponseType> responseTypes, List<String> scopes) throws UnrecoverableKeyException, NoSuchAlgorithmException, KeyStoreException, KeyManagementException {
+        RegisterRequest registerRequest = new RegisterRequest(ApplicationType.WEB, "access token as JWT test", StringUtils.spaceSeparatedToList(redirectUris));
+        registerRequest.setResponseTypes(responseTypes);
+        registerRequest.setScope(scopes);
+        registerRequest.setAccessTokenAsJwt(true);
+        registerRequest.setAccessTokenSigningAlg(SignatureAlgorithm.RS512);
+
+        RegisterClient registerClient = new RegisterClient(registrationEndpoint);
+        registerClient.setExecutor(clientEngine(true));
+        registerClient.setRequest(registerRequest);
+        RegisterResponse registerResponse = registerClient.exec();
+
+        showClient(registerClient);
+        assertEquals(registerResponse.getStatus(), 200, "Unexpected response code: " + registerResponse.getEntity());
+        assertNotNull(registerResponse.getClientId());
+        assertNotNull(registerResponse.getClientSecret());
+        assertNotNull(registerResponse.getRegistrationAccessToken());
+        assertNotNull(registerResponse.getClientIdIssuedAt());
+        assertNotNull(registerResponse.getClientSecretExpiresAt());
+        return registerResponse;
+    }
+
+    private AuthorizationResponse requestAuthorization(final String userId, final String userSecret, final String redirectUri,
+                                                       List<ResponseType> responseTypes, List<String> scopes, String clientId, String nonce) {
+        String state = UUID.randomUUID().toString();
+
+        AuthorizationRequest authorizationRequest = new AuthorizationRequest(responseTypes, clientId, scopes, redirectUri, nonce);
+        authorizationRequest.setState(state);
+
+        AuthorizationResponse authorizationResponse = authenticateResourceOwnerAndGrantAccess(
+                authorizationEndpoint, authorizationRequest, userId, userSecret);
+
+        assertNotNull(authorizationResponse.getLocation(), "The location is null");
+        assertNotNull(authorizationResponse.getCode(), "The authorization code is null");
+        assertNotNull(authorizationResponse.getState(), "The state is null");
+        assertNotNull(authorizationResponse.getScope(), "The scope is null");
+        return authorizationResponse;
+    }
+}
diff --git a/oxAuth/Client/src/test/java/org/gluu/oxauth/ws/rs/AddressClaimsTest.java b/oxAuth/Client/src/test/java/org/gluu/oxauth/ws/rs/AddressClaimsTest.java
new file mode 100644
index 00000000..97ae5674
--- /dev/null
+++ b/oxAuth/Client/src/test/java/org/gluu/oxauth/ws/rs/AddressClaimsTest.java
@@ -0,0 +1,2193 @@
+/*
+ * oxAuth is available under the MIT License (2008). See http://opensource.org/licenses/MIT for full text.
+ *
+ * Copyright (c) 2014, Gluu
+ */
+
+package org.gluu.oxauth.ws.rs;
+
+import static org.testng.Assert.assertEquals;
+import static org.testng.Assert.assertNotNull;
+import static org.testng.Assert.assertTrue;
+
+import java.security.PrivateKey;
+import java.util.Arrays;
+import java.util.List;
+import java.util.UUID;
+
+import org.gluu.oxauth.BaseTest;
+import org.gluu.oxauth.client.AuthorizationRequest;
+import org.gluu.oxauth.client.AuthorizationResponse;
+import org.gluu.oxauth.client.AuthorizeClient;
+import org.gluu.oxauth.client.JwkClient;
+import org.gluu.oxauth.client.JwkResponse;
+import org.gluu.oxauth.client.RegisterClient;
+import org.gluu.oxauth.client.RegisterRequest;
+import org.gluu.oxauth.client.RegisterResponse;
+import org.gluu.oxauth.client.UserInfoClient;
+import org.gluu.oxauth.client.UserInfoRequest;
+import org.gluu.oxauth.client.UserInfoResponse;
+import org.gluu.oxauth.client.model.authorize.Claim;
+import org.gluu.oxauth.client.model.authorize.ClaimValue;
+import org.gluu.oxauth.client.model.authorize.JwtAuthorizationRequest;
+import org.gluu.oxauth.model.common.ResponseType;
+import org.gluu.oxauth.model.crypto.OxAuthCryptoProvider;
+import org.gluu.oxauth.model.crypto.encryption.BlockEncryptionAlgorithm;
+import org.gluu.oxauth.model.crypto.encryption.KeyEncryptionAlgorithm;
+import org.gluu.oxauth.model.crypto.signature.ECDSAPublicKey;
+import org.gluu.oxauth.model.crypto.signature.RSAPublicKey;
+import org.gluu.oxauth.model.crypto.signature.SignatureAlgorithm;
+import org.gluu.oxauth.model.jwe.Jwe;
+import org.gluu.oxauth.model.jwk.Algorithm;
+import org.gluu.oxauth.model.jws.ECDSASigner;
+import org.gluu.oxauth.model.jws.HMACSigner;
+import org.gluu.oxauth.model.jws.RSASigner;
+import org.gluu.oxauth.model.jwt.Jwt;
+import org.gluu.oxauth.model.jwt.JwtClaimName;
+import org.gluu.oxauth.model.jwt.JwtHeaderName;
+import org.gluu.oxauth.model.register.ApplicationType;
+import org.gluu.oxauth.model.util.JwtUtil;
+import org.gluu.oxauth.model.util.StringUtils;
+import org.gluu.oxauth.model.util.Util;
+import org.json.JSONObject;
+import org.testng.annotations.Parameters;
+import org.testng.annotations.Test;
+
+/**
+ * Note: In order to run this tests, set legacyIdTokenClaims to true.
+ *
+ * @author Javier Rojas Blum
+ * @version March 8, 2019
+ */
+public class AddressClaimsTest extends BaseTest {
+
+    @Parameters({"userId", "userSecret", "redirectUri", "redirectUris", "dnName", "keyStoreFile", "keyStoreSecret",
+            "sectorIdentifierUri", "RS256_keyId", "clientJwksUri"})
+    @Test
+    public void authorizationRequestDefault(
+            final String userId, final String userSecret, final String redirectUri, final String redirectUris,
+            final String dnName, final String keyStoreFile, final String keyStoreSecret,
+            final String sectorIdentifierUri, final String keyId, final String clientJwksUri) throws Exception {
+        showTitle("authorizationRequestDefault");
+
+        List<ResponseType> responseTypes = Arrays.asList(ResponseType.TOKEN, ResponseType.ID_TOKEN);
+
+        // 1. Register client
+        RegisterRequest registerRequest = new RegisterRequest(ApplicationType.WEB, "oxAuth test app",
+                StringUtils.spaceSeparatedToList(redirectUris));
+        registerRequest.setResponseTypes(responseTypes);
+        registerRequest.setSectorIdentifierUri(sectorIdentifierUri);
+        registerRequest.setJwksUri(clientJwksUri);
+        registerRequest.addCustomAttribute("oxIncludeClaimsInIdToken", "true");
+
+        RegisterClient registerClient = new RegisterClient(registrationEndpoint);
+        registerClient.setRequest(registerRequest);
+        RegisterResponse registerResponse = registerClient.exec();
+
+        showClient(registerClient);
+        assertEquals(registerResponse.getStatus(), 200, "Unexpected response code: " + registerResponse.getEntity());
+        assertNotNull(registerResponse.getClientId());
+        assertNotNull(registerResponse.getClientSecret());
+        assertNotNull(registerResponse.getRegistrationAccessToken());
+        assertNotNull(registerResponse.getClientIdIssuedAt());
+        assertNotNull(registerResponse.getClientSecretExpiresAt());
+
+        String clientId = registerResponse.getClientId();
+
+        // 2. Request authorization
+        OxAuthCryptoProvider cryptoProvider = new OxAuthCryptoProvider(keyStoreFile, keyStoreSecret, dnName);
+
+        List<String> scopes = Arrays.asList("openid", "address");
+        String nonce = UUID.randomUUID().toString();
+        String state = UUID.randomUUID().toString();
+
+        AuthorizationRequest authorizationRequest = new AuthorizationRequest(responseTypes, clientId, scopes, redirectUri, nonce);
+        authorizationRequest.setState(state);
+
+        JwtAuthorizationRequest jwtAuthorizationRequest = new JwtAuthorizationRequest(authorizationRequest, SignatureAlgorithm.RS256, cryptoProvider);
+        jwtAuthorizationRequest.setKeyId(keyId);
+        jwtAuthorizationRequest.addIdTokenClaim(new Claim(JwtClaimName.AUTHENTICATION_TIME, ClaimValue.createEssential(true)));
+        jwtAuthorizationRequest.addIdTokenClaim(new Claim(JwtClaimName.ADDRESS_STREET_ADDRESS, ClaimValue.createEssential(true)));
+        jwtAuthorizationRequest.addIdTokenClaim(new Claim(JwtClaimName.ADDRESS_COUNTRY, ClaimValue.createEssential(true)));
+        jwtAuthorizationRequest.addUserInfoClaim(new Claim(JwtClaimName.ADDRESS_STREET_ADDRESS, ClaimValue.createEssential(true)));
+        jwtAuthorizationRequest.addUserInfoClaim(new Claim(JwtClaimName.ADDRESS_COUNTRY, ClaimValue.createEssential(true)));
+        String authJwt = jwtAuthorizationRequest.getEncodedJwt();
+        authorizationRequest.setRequest(authJwt);
+
+        AuthorizeClient authorizeClient = new AuthorizeClient(authorizationEndpoint);
+        authorizeClient.setRequest(authorizationRequest);
+
+        AuthorizationResponse authorizationResponse = authenticateResourceOwnerAndGrantAccess(
+                authorizationEndpoint, authorizationRequest, userId, userSecret);
+
+        assertNotNull(authorizationResponse.getLocation(), "The location is null");
+        assertNotNull(authorizationResponse.getAccessToken(), "The accessToken is null");
+        assertNotNull(authorizationResponse.getTokenType(), "The tokenType is null");
+        assertNotNull(authorizationResponse.getIdToken(), "The idToken is null");
+        assertNotNull(authorizationResponse.getState(), "The state is null");
+
+        String idToken = authorizationResponse.getIdToken();
+        String accessToken = authorizationResponse.getAccessToken();
+
+        // 3. Validate id_token
+        Jwt jwt = Jwt.parse(idToken);
+        assertNotNull(jwt.getHeader().getClaimAsString(JwtHeaderName.TYPE));
+        assertNotNull(jwt.getHeader().getClaimAsString(JwtHeaderName.ALGORITHM));
+        assertNotNull(jwt.getClaims().getClaimAsString(JwtClaimName.ISSUER));
+        assertNotNull(jwt.getClaims().getClaimAsString(JwtClaimName.AUDIENCE));
+        assertNotNull(jwt.getClaims().getClaimAsString(JwtClaimName.EXPIRATION_TIME));
+        assertNotNull(jwt.getClaims().getClaimAsString(JwtClaimName.ISSUED_AT));
+        assertNotNull(jwt.getClaims().getClaimAsString(JwtClaimName.SUBJECT_IDENTIFIER));
+        assertNotNull(jwt.getClaims().getClaimAsString(JwtClaimName.ACCESS_TOKEN_HASH));
+        assertNotNull(jwt.getClaims().getClaimAsString(JwtClaimName.AUTHENTICATION_TIME));
+        assertNotNull(jwt.getClaims().getClaimAsString(JwtClaimName.ADDRESS_STREET_ADDRESS));
+        assertNotNull(jwt.getClaims().getClaimAsString(JwtClaimName.ADDRESS_COUNTRY));
+        assertNotNull(jwt.getClaims().getClaim(JwtClaimName.ADDRESS));
+        assertNotNull(jwt.getClaims().getClaimAsJSON(JwtClaimName.ADDRESS).has(JwtClaimName.ADDRESS_STREET_ADDRESS));
+        assertNotNull(jwt.getClaims().getClaimAsJSON(JwtClaimName.ADDRESS).has(JwtClaimName.ADDRESS_COUNTRY));
+        assertNotNull(jwt.getClaims().getClaimAsJSON(JwtClaimName.ADDRESS).has(JwtClaimName.ADDRESS_LOCALITY));
+        assertNotNull(jwt.getClaims().getClaimAsJSON(JwtClaimName.ADDRESS).has(JwtClaimName.ADDRESS_REGION));
+
+        RSAPublicKey publicKey = JwkClient.getRSAPublicKey(
+                jwksUri,
+                jwt.getHeader().getClaimAsString(JwtHeaderName.KEY_ID));
+        RSASigner rsaSigner = new RSASigner(SignatureAlgorithm.RS256, publicKey);
+
+        assertTrue(rsaSigner.validate(jwt));
+
+        // 4. Request user info
+        UserInfoRequest userInfoRequest = new UserInfoRequest(accessToken);
+        UserInfoClient userInfoClient = new UserInfoClient(userInfoEndpoint);
+        userInfoClient.setRequest(userInfoRequest);
+        userInfoClient.setJwksUri(jwksUri);
+        UserInfoResponse userInfoResponse = userInfoClient.exec();
+
+        showClient(userInfoClient);
+        assertEquals(userInfoResponse.getStatus(), 200, "Unexpected response code: " + userInfoResponse.getStatus());
+        assertNotNull(userInfoResponse.getClaim(JwtClaimName.SUBJECT_IDENTIFIER));
+        assertNotNull(userInfoResponse.getClaim(JwtClaimName.ADDRESS_STREET_ADDRESS));
+        assertNotNull(userInfoResponse.getClaim(JwtClaimName.ADDRESS_COUNTRY));
+        assertNotNull(userInfoResponse.getClaim(JwtClaimName.ADDRESS));
+        assertNotNull(userInfoResponse.getClaim(JwtClaimName.ADDRESS).containsAll(Arrays.asList(
+                JwtClaimName.ADDRESS_STREET_ADDRESS,
+                JwtClaimName.ADDRESS_COUNTRY,
+                JwtClaimName.ADDRESS_LOCALITY,
+                JwtClaimName.ADDRESS_REGION)));
+    }
+
+    @Parameters({"userId", "userSecret", "redirectUri", "redirectUris", "dnName", "keyStoreFile", "keyStoreSecret",
+            "sectorIdentifierUri"})
+    @Test
+    public void authorizationRequestHS256(
+            final String userId, final String userSecret, final String redirectUri, final String redirectUris,
+            final String dnName, final String keyStoreFile, final String keyStoreSecret, final String sectorIdentifierUri) throws Exception {
+        showTitle("authorizationRequestHS256");
+
+        List<ResponseType> responseTypes = Arrays.asList(ResponseType.TOKEN, ResponseType.ID_TOKEN);
+
+        // 1. Register client
+        RegisterRequest registerRequest = new RegisterRequest(ApplicationType.WEB, "oxAuth test app",
+                StringUtils.spaceSeparatedToList(redirectUris));
+        registerRequest.setResponseTypes(responseTypes);
+        registerRequest.setSectorIdentifierUri(sectorIdentifierUri);
+        registerRequest.setIdTokenSignedResponseAlg(SignatureAlgorithm.HS256);
+        registerRequest.setUserInfoSignedResponseAlg(SignatureAlgorithm.HS256);
+        registerRequest.setRequestObjectSigningAlg(SignatureAlgorithm.HS256);
+        registerRequest.addCustomAttribute("oxIncludeClaimsInIdToken", "true");
+
+        RegisterClient registerClient = new RegisterClient(registrationEndpoint);
+        registerClient.setRequest(registerRequest);
+        RegisterResponse registerResponse = registerClient.exec();
+
+        showClient(registerClient);
+        assertEquals(registerResponse.getStatus(), 200, "Unexpected response code: " + registerResponse.getEntity());
+        assertNotNull(registerResponse.getClientId());
+        assertNotNull(registerResponse.getClientSecret());
+        assertNotNull(registerResponse.getRegistrationAccessToken());
+        assertNotNull(registerResponse.getClientIdIssuedAt());
+        assertNotNull(registerResponse.getClientSecretExpiresAt());
+
+        String clientId = registerResponse.getClientId();
+        String clientSecret = registerResponse.getClientSecret();
+
+        // 2. Request authorization
+        OxAuthCryptoProvider cryptoProvider = new OxAuthCryptoProvider(keyStoreFile, keyStoreSecret, dnName);
+
+        List<String> scopes = Arrays.asList("openid", "address");
+        String nonce = UUID.randomUUID().toString();
+        String state = UUID.randomUUID().toString();
+
+        AuthorizationRequest authorizationRequest = new AuthorizationRequest(responseTypes, clientId, scopes, redirectUri, nonce);
+        authorizationRequest.setState(state);
+
+        JwtAuthorizationRequest jwtAuthorizationRequest = new JwtAuthorizationRequest(authorizationRequest, SignatureAlgorithm.HS256, clientSecret, cryptoProvider);
+        jwtAuthorizationRequest.addIdTokenClaim(new Claim(JwtClaimName.AUTHENTICATION_TIME, ClaimValue.createEssential(true)));
+        jwtAuthorizationRequest.addIdTokenClaim(new Claim(JwtClaimName.ADDRESS_STREET_ADDRESS, ClaimValue.createEssential(true)));
+        jwtAuthorizationRequest.addIdTokenClaim(new Claim(JwtClaimName.ADDRESS_COUNTRY, ClaimValue.createEssential(true)));
+        jwtAuthorizationRequest.addUserInfoClaim(new Claim(JwtClaimName.ADDRESS_STREET_ADDRESS, ClaimValue.createEssential(true)));
+        jwtAuthorizationRequest.addUserInfoClaim(new Claim(JwtClaimName.ADDRESS_COUNTRY, ClaimValue.createEssential(true)));
+        String authJwt = jwtAuthorizationRequest.getEncodedJwt();
+        authorizationRequest.setRequest(authJwt);
+
+        AuthorizeClient authorizeClient = new AuthorizeClient(authorizationEndpoint);
+        authorizeClient.setRequest(authorizationRequest);
+
+        AuthorizationResponse authorizationResponse = authenticateResourceOwnerAndGrantAccess(
+                authorizationEndpoint, authorizationRequest, userId, userSecret);
+
+        assertNotNull(authorizationResponse.getLocation(), "The location is null");
+        assertNotNull(authorizationResponse.getAccessToken(), "The accessToken is null");
+        assertNotNull(authorizationResponse.getTokenType(), "The tokenType is null");
+        assertNotNull(authorizationResponse.getIdToken(), "The idToken is null");
+        assertNotNull(authorizationResponse.getState(), "The state is null");
+
+        String idToken = authorizationResponse.getIdToken();
+        String accessToken = authorizationResponse.getAccessToken();
+
+        // 3. Validate id_token
+        Jwt jwt = Jwt.parse(idToken);
+        assertNotNull(jwt.getHeader().getClaimAsString(JwtHeaderName.TYPE));
+        assertNotNull(jwt.getHeader().getClaimAsString(JwtHeaderName.ALGORITHM));
+        assertNotNull(jwt.getClaims().getClaimAsString(JwtClaimName.ISSUER));
+        assertNotNull(jwt.getClaims().getClaimAsString(JwtClaimName.AUDIENCE));
+        assertNotNull(jwt.getClaims().getClaimAsString(JwtClaimName.EXPIRATION_TIME));
+        assertNotNull(jwt.getClaims().getClaimAsString(JwtClaimName.ISSUED_AT));
+        assertNotNull(jwt.getClaims().getClaimAsString(JwtClaimName.SUBJECT_IDENTIFIER));
+        assertNotNull(jwt.getClaims().getClaimAsString(JwtClaimName.ACCESS_TOKEN_HASH));
+        assertNotNull(jwt.getClaims().getClaimAsString(JwtClaimName.AUTHENTICATION_TIME));
+        assertNotNull(jwt.getClaims().getClaimAsString(JwtClaimName.ADDRESS_STREET_ADDRESS));
+        assertNotNull(jwt.getClaims().getClaimAsString(JwtClaimName.ADDRESS_COUNTRY));
+        assertNotNull(jwt.getClaims().getClaim(JwtClaimName.ADDRESS));
+        assertNotNull(jwt.getClaims().getClaimAsJSON(JwtClaimName.ADDRESS).has(JwtClaimName.ADDRESS_STREET_ADDRESS));
+        assertNotNull(jwt.getClaims().getClaimAsJSON(JwtClaimName.ADDRESS).has(JwtClaimName.ADDRESS_COUNTRY));
+        assertNotNull(jwt.getClaims().getClaimAsJSON(JwtClaimName.ADDRESS).has(JwtClaimName.ADDRESS_LOCALITY));
+        assertNotNull(jwt.getClaims().getClaimAsJSON(JwtClaimName.ADDRESS).has(JwtClaimName.ADDRESS_REGION));
+
+        HMACSigner hmacSigner = new HMACSigner(SignatureAlgorithm.HS256, clientSecret);
+        assertTrue(hmacSigner.validate(jwt));
+
+        // 4. Request user info
+        UserInfoRequest userInfoRequest = new UserInfoRequest(accessToken);
+        UserInfoClient userInfoClient = new UserInfoClient(userInfoEndpoint);
+        userInfoClient.setRequest(userInfoRequest);
+        userInfoClient.setSharedKey(clientSecret);
+        UserInfoResponse userInfoResponse = userInfoClient.exec();
+
+        showClient(userInfoClient);
+        assertEquals(userInfoResponse.getStatus(), 200, "Unexpected response code: " + userInfoResponse.getStatus());
+        assertNotNull(userInfoResponse.getClaim(JwtClaimName.SUBJECT_IDENTIFIER));
+        assertNotNull(userInfoResponse.getClaim(JwtClaimName.ISSUER));
+        assertNotNull(userInfoResponse.getClaim(JwtClaimName.AUDIENCE));
+        assertNotNull(userInfoResponse.getClaim(JwtClaimName.ADDRESS_STREET_ADDRESS));
+        assertNotNull(userInfoResponse.getClaim(JwtClaimName.ADDRESS_COUNTRY));
+        assertNotNull(userInfoResponse.getClaim(JwtClaimName.ADDRESS));
+        assertNotNull(userInfoResponse.getClaim(JwtClaimName.ADDRESS).containsAll(Arrays.asList(
+                JwtClaimName.ADDRESS_STREET_ADDRESS,
+                JwtClaimName.ADDRESS_COUNTRY,
+                JwtClaimName.ADDRESS_LOCALITY,
+                JwtClaimName.ADDRESS_REGION)));
+    }
+
+    @Parameters({"userId", "userSecret", "redirectUri", "redirectUris", "dnName", "keyStoreFile", "keyStoreSecret",
+            "sectorIdentifierUri"})
+    @Test
+    public void authorizationRequestHS384(
+            final String userId, final String userSecret, final String redirectUri, final String redirectUris,
+            final String dnName, final String keyStoreFile, final String keyStoreSecret, final String sectorIdentifierUri) throws Exception {
+        showTitle("authorizationRequestHS384");
+
+        List<ResponseType> responseTypes = Arrays.asList(ResponseType.TOKEN, ResponseType.ID_TOKEN);
+
+        // 1. Register client
+        RegisterRequest registerRequest = new RegisterRequest(ApplicationType.WEB, "oxAuth test app",
+                StringUtils.spaceSeparatedToList(redirectUris));
+        registerRequest.setResponseTypes(responseTypes);
+        registerRequest.setSectorIdentifierUri(sectorIdentifierUri);
+        registerRequest.setIdTokenSignedResponseAlg(SignatureAlgorithm.HS384);
+        registerRequest.setUserInfoSignedResponseAlg(SignatureAlgorithm.HS384);
+        registerRequest.setRequestObjectSigningAlg(SignatureAlgorithm.HS384);
+        registerRequest.addCustomAttribute("oxIncludeClaimsInIdToken", "true");
+
+        RegisterClient registerClient = new RegisterClient(registrationEndpoint);
+        registerClient.setRequest(registerRequest);
+        RegisterResponse registerResponse = registerClient.exec();
+
+        showClient(registerClient);
+        assertEquals(registerResponse.getStatus(), 200, "Unexpected response code: " + registerResponse.getEntity());
+        assertNotNull(registerResponse.getClientId());
+        assertNotNull(registerResponse.getClientSecret());
+        assertNotNull(registerResponse.getRegistrationAccessToken());
+        assertNotNull(registerResponse.getClientIdIssuedAt());
+        assertNotNull(registerResponse.getClientSecretExpiresAt());
+
+        String clientId = registerResponse.getClientId();
+        String clientSecret = registerResponse.getClientSecret();
+
+        // 2. Request authorization
+        OxAuthCryptoProvider cryptoProvider = new OxAuthCryptoProvider(keyStoreFile, keyStoreSecret, dnName);
+
+        List<String> scopes = Arrays.asList("openid", "address");
+        String nonce = UUID.randomUUID().toString();
+        String state = UUID.randomUUID().toString();
+
+        AuthorizationRequest authorizationRequest = new AuthorizationRequest(responseTypes, clientId, scopes, redirectUri, nonce);
+        authorizationRequest.setState(state);
+
+        JwtAuthorizationRequest jwtAuthorizationRequest = new JwtAuthorizationRequest(authorizationRequest, SignatureAlgorithm.HS384, clientSecret, cryptoProvider);
+        jwtAuthorizationRequest.addIdTokenClaim(new Claim(JwtClaimName.AUTHENTICATION_TIME, ClaimValue.createEssential(true)));
+        jwtAuthorizationRequest.addIdTokenClaim(new Claim(JwtClaimName.ADDRESS_STREET_ADDRESS, ClaimValue.createEssential(true)));
+        jwtAuthorizationRequest.addIdTokenClaim(new Claim(JwtClaimName.ADDRESS_COUNTRY, ClaimValue.createEssential(true)));
+        jwtAuthorizationRequest.addUserInfoClaim(new Claim(JwtClaimName.ADDRESS_STREET_ADDRESS, ClaimValue.createEssential(true)));
+        jwtAuthorizationRequest.addUserInfoClaim(new Claim(JwtClaimName.ADDRESS_COUNTRY, ClaimValue.createEssential(true)));
+        String authJwt = jwtAuthorizationRequest.getEncodedJwt();
+        authorizationRequest.setRequest(authJwt);
+
+        AuthorizeClient authorizeClient = new AuthorizeClient(authorizationEndpoint);
+        authorizeClient.setRequest(authorizationRequest);
+
+        AuthorizationResponse authorizationResponse = authenticateResourceOwnerAndGrantAccess(
+                authorizationEndpoint, authorizationRequest, userId, userSecret);
+
+        assertNotNull(authorizationResponse.getLocation(), "The location is null");
+        assertNotNull(authorizationResponse.getAccessToken(), "The accessToken is null");
+        assertNotNull(authorizationResponse.getTokenType(), "The tokenType is null");
+        assertNotNull(authorizationResponse.getIdToken(), "The idToken is null");
+        assertNotNull(authorizationResponse.getState(), "The state is null");
+
+        String idToken = authorizationResponse.getIdToken();
+        String accessToken = authorizationResponse.getAccessToken();
+
+        // 3. Validate id_token
+        Jwt jwt = Jwt.parse(idToken);
+        assertNotNull(jwt.getHeader().getClaimAsString(JwtHeaderName.TYPE));
+        assertNotNull(jwt.getHeader().getClaimAsString(JwtHeaderName.ALGORITHM));
+        assertNotNull(jwt.getClaims().getClaimAsString(JwtClaimName.ISSUER));
+        assertNotNull(jwt.getClaims().getClaimAsString(JwtClaimName.AUDIENCE));
+        assertNotNull(jwt.getClaims().getClaimAsString(JwtClaimName.EXPIRATION_TIME));
+        assertNotNull(jwt.getClaims().getClaimAsString(JwtClaimName.ISSUED_AT));
+        assertNotNull(jwt.getClaims().getClaimAsString(JwtClaimName.SUBJECT_IDENTIFIER));
+        assertNotNull(jwt.getClaims().getClaimAsString(JwtClaimName.ACCESS_TOKEN_HASH));
+        assertNotNull(jwt.getClaims().getClaimAsString(JwtClaimName.AUTHENTICATION_TIME));
+        assertNotNull(jwt.getClaims().getClaimAsString(JwtClaimName.ADDRESS_STREET_ADDRESS));
+        assertNotNull(jwt.getClaims().getClaimAsString(JwtClaimName.ADDRESS_COUNTRY));
+        assertNotNull(jwt.getClaims().getClaim(JwtClaimName.ADDRESS));
+        assertNotNull(jwt.getClaims().getClaimAsJSON(JwtClaimName.ADDRESS).has(JwtClaimName.ADDRESS_STREET_ADDRESS));
+        assertNotNull(jwt.getClaims().getClaimAsJSON(JwtClaimName.ADDRESS).has(JwtClaimName.ADDRESS_COUNTRY));
+        assertNotNull(jwt.getClaims().getClaimAsJSON(JwtClaimName.ADDRESS).has(JwtClaimName.ADDRESS_LOCALITY));
+        assertNotNull(jwt.getClaims().getClaimAsJSON(JwtClaimName.ADDRESS).has(JwtClaimName.ADDRESS_REGION));
+
+        HMACSigner hmacSigner = new HMACSigner(SignatureAlgorithm.HS384, clientSecret);
+        assertTrue(hmacSigner.validate(jwt));
+
+        // 4. Request user info
+        UserInfoRequest userInfoRequest = new UserInfoRequest(accessToken);
+        UserInfoClient userInfoClient = new UserInfoClient(userInfoEndpoint);
+        userInfoClient.setRequest(userInfoRequest);
+        userInfoClient.setSharedKey(clientSecret);
+        UserInfoResponse userInfoResponse = userInfoClient.exec();
+
+        showClient(userInfoClient);
+        assertEquals(userInfoResponse.getStatus(), 200, "Unexpected response code: " + userInfoResponse.getStatus());
+        assertNotNull(userInfoResponse.getClaim(JwtClaimName.SUBJECT_IDENTIFIER));
+        assertNotNull(userInfoResponse.getClaim(JwtClaimName.ISSUER));
+        assertNotNull(userInfoResponse.getClaim(JwtClaimName.AUDIENCE));
+        assertNotNull(userInfoResponse.getClaim(JwtClaimName.ADDRESS_STREET_ADDRESS));
+        assertNotNull(userInfoResponse.getClaim(JwtClaimName.ADDRESS_COUNTRY));
+        assertNotNull(userInfoResponse.getClaim(JwtClaimName.ADDRESS));
+        assertNotNull(userInfoResponse.getClaim(JwtClaimName.ADDRESS).containsAll(Arrays.asList(
+                JwtClaimName.ADDRESS_STREET_ADDRESS,
+                JwtClaimName.ADDRESS_COUNTRY,
+                JwtClaimName.ADDRESS_LOCALITY,
+                JwtClaimName.ADDRESS_REGION)));
+    }
+
+    @Parameters({"userId", "userSecret", "redirectUri", "redirectUris", "dnName", "keyStoreFile", "keyStoreSecret",
+            "sectorIdentifierUri"})
+    @Test
+    public void authorizationRequestHS512(
+            final String userId, final String userSecret, final String redirectUri, final String redirectUris,
+            final String dnName, final String keyStoreFile, final String keyStoreSecret, final String sectorIdentifierUri) throws Exception {
+        showTitle("authorizationRequestHS512");
+
+        List<ResponseType> responseTypes = Arrays.asList(ResponseType.TOKEN, ResponseType.ID_TOKEN);
+
+        // 1. Register client
+        RegisterRequest registerRequest = new RegisterRequest(ApplicationType.WEB, "oxAuth test app",
+                StringUtils.spaceSeparatedToList(redirectUris));
+        registerRequest.setResponseTypes(responseTypes);
+        registerRequest.setSectorIdentifierUri(sectorIdentifierUri);
+        registerRequest.setIdTokenSignedResponseAlg(SignatureAlgorithm.HS512);
+        registerRequest.setUserInfoSignedResponseAlg(SignatureAlgorithm.HS512);
+        registerRequest.setRequestObjectSigningAlg(SignatureAlgorithm.HS512);
+        registerRequest.addCustomAttribute("oxIncludeClaimsInIdToken", "true");
+
+        RegisterClient registerClient = new RegisterClient(registrationEndpoint);
+        registerClient.setRequest(registerRequest);
+        RegisterResponse registerResponse = registerClient.exec();
+
+        showClient(registerClient);
+        assertEquals(registerResponse.getStatus(), 200, "Unexpected response code: " + registerResponse.getEntity());
+        assertNotNull(registerResponse.getClientId());
+        assertNotNull(registerResponse.getClientSecret());
+        assertNotNull(registerResponse.getRegistrationAccessToken());
+        assertNotNull(registerResponse.getClientIdIssuedAt());
+        assertNotNull(registerResponse.getClientSecretExpiresAt());
+
+        String clientId = registerResponse.getClientId();
+        String clientSecret = registerResponse.getClientSecret();
+
+        // 2. Request authorization
+        OxAuthCryptoProvider cryptoProvider = new OxAuthCryptoProvider(keyStoreFile, keyStoreSecret, dnName);
+
+        List<String> scopes = Arrays.asList("openid", "address");
+        String nonce = UUID.randomUUID().toString();
+        String state = UUID.randomUUID().toString();
+
+        AuthorizationRequest authorizationRequest = new AuthorizationRequest(responseTypes, clientId, scopes, redirectUri, nonce);
+        authorizationRequest.setState(state);
+
+        JwtAuthorizationRequest jwtAuthorizationRequest = new JwtAuthorizationRequest(authorizationRequest, SignatureAlgorithm.HS512, clientSecret, cryptoProvider);
+        jwtAuthorizationRequest.addIdTokenClaim(new Claim(JwtClaimName.AUTHENTICATION_TIME, ClaimValue.createEssential(true)));
+        jwtAuthorizationRequest.addIdTokenClaim(new Claim(JwtClaimName.ADDRESS_STREET_ADDRESS, ClaimValue.createEssential(true)));
+        jwtAuthorizationRequest.addIdTokenClaim(new Claim(JwtClaimName.ADDRESS_COUNTRY, ClaimValue.createEssential(true)));
+        jwtAuthorizationRequest.addUserInfoClaim(new Claim(JwtClaimName.ADDRESS_STREET_ADDRESS, ClaimValue.createEssential(true)));
+        jwtAuthorizationRequest.addUserInfoClaim(new Claim(JwtClaimName.ADDRESS_COUNTRY, ClaimValue.createEssential(true)));
+        String authJwt = jwtAuthorizationRequest.getEncodedJwt();
+        authorizationRequest.setRequest(authJwt);
+
+        AuthorizeClient authorizeClient = new AuthorizeClient(authorizationEndpoint);
+        authorizeClient.setRequest(authorizationRequest);
+
+        AuthorizationResponse authorizationResponse = authenticateResourceOwnerAndGrantAccess(
+                authorizationEndpoint, authorizationRequest, userId, userSecret);
+
+        assertNotNull(authorizationResponse.getLocation(), "The location is null");
+        assertNotNull(authorizationResponse.getAccessToken(), "The accessToken is null");
+        assertNotNull(authorizationResponse.getTokenType(), "The tokenType is null");
+        assertNotNull(authorizationResponse.getIdToken(), "The idToken is null");
+        assertNotNull(authorizationResponse.getState(), "The state is null");
+
+        String idToken = authorizationResponse.getIdToken();
+        String accessToken = authorizationResponse.getAccessToken();
+
+        // 3. Validate id_token
+        Jwt jwt = Jwt.parse(idToken);
+        assertNotNull(jwt.getHeader().getClaimAsString(JwtHeaderName.TYPE));
+        assertNotNull(jwt.getHeader().getClaimAsString(JwtHeaderName.ALGORITHM));
+        assertNotNull(jwt.getClaims().getClaimAsString(JwtClaimName.ISSUER));
+        assertNotNull(jwt.getClaims().getClaimAsString(JwtClaimName.AUDIENCE));
+        assertNotNull(jwt.getClaims().getClaimAsString(JwtClaimName.EXPIRATION_TIME));
+        assertNotNull(jwt.getClaims().getClaimAsString(JwtClaimName.ISSUED_AT));
+        assertNotNull(jwt.getClaims().getClaimAsString(JwtClaimName.SUBJECT_IDENTIFIER));
+        assertNotNull(jwt.getClaims().getClaimAsString(JwtClaimName.ACCESS_TOKEN_HASH));
+        assertNotNull(jwt.getClaims().getClaimAsString(JwtClaimName.AUTHENTICATION_TIME));
+        assertNotNull(jwt.getClaims().getClaimAsString(JwtClaimName.ADDRESS_STREET_ADDRESS));
+        assertNotNull(jwt.getClaims().getClaimAsString(JwtClaimName.ADDRESS_COUNTRY));
+        assertNotNull(jwt.getClaims().getClaim(JwtClaimName.ADDRESS));
+        assertNotNull(jwt.getClaims().getClaimAsJSON(JwtClaimName.ADDRESS).has(JwtClaimName.ADDRESS_STREET_ADDRESS));
+        assertNotNull(jwt.getClaims().getClaimAsJSON(JwtClaimName.ADDRESS).has(JwtClaimName.ADDRESS_COUNTRY));
+        assertNotNull(jwt.getClaims().getClaimAsJSON(JwtClaimName.ADDRESS).has(JwtClaimName.ADDRESS_LOCALITY));
+        assertNotNull(jwt.getClaims().getClaimAsJSON(JwtClaimName.ADDRESS).has(JwtClaimName.ADDRESS_REGION));
+
+        HMACSigner hmacSigner = new HMACSigner(SignatureAlgorithm.HS512, clientSecret);
+        assertTrue(hmacSigner.validate(jwt));
+
+        // 4. Request user info
+        UserInfoRequest userInfoRequest = new UserInfoRequest(accessToken);
+        UserInfoClient userInfoClient = new UserInfoClient(userInfoEndpoint);
+        userInfoClient.setRequest(userInfoRequest);
+        userInfoClient.setSharedKey(clientSecret);
+        UserInfoResponse userInfoResponse = userInfoClient.exec();
+
+        showClient(userInfoClient);
+        assertEquals(userInfoResponse.getStatus(), 200, "Unexpected response code: " + userInfoResponse.getStatus());
+        assertNotNull(userInfoResponse.getClaim(JwtClaimName.SUBJECT_IDENTIFIER));
+        assertNotNull(userInfoResponse.getClaim(JwtClaimName.ISSUER));
+        assertNotNull(userInfoResponse.getClaim(JwtClaimName.AUDIENCE));
+        assertNotNull(userInfoResponse.getClaim(JwtClaimName.ADDRESS_STREET_ADDRESS));
+        assertNotNull(userInfoResponse.getClaim(JwtClaimName.ADDRESS_COUNTRY));
+        assertNotNull(userInfoResponse.getClaim(JwtClaimName.ADDRESS));
+        assertNotNull(userInfoResponse.getClaim(JwtClaimName.ADDRESS).containsAll(Arrays.asList(
+                JwtClaimName.ADDRESS_STREET_ADDRESS,
+                JwtClaimName.ADDRESS_COUNTRY,
+                JwtClaimName.ADDRESS_LOCALITY,
+                JwtClaimName.ADDRESS_REGION)));
+    }
+
+    @Parameters({"userId", "userSecret", "redirectUri", "redirectUris", "dnName", "keyStoreFile", "keyStoreSecret",
+            "sectorIdentifierUri", "RS256_keyId", "clientJwksUri"})
+    @Test
+    public void authorizationRequestRS256(
+            final String userId, final String userSecret, final String redirectUri, final String redirectUris,
+            final String dnName, final String keyStoreFile, final String keyStoreSecret,
+            final String sectorIdentifierUri, final String keyId, final String clientJwksUri) throws Exception {
+        showTitle("authorizationRequestRS256");
+
+        List<ResponseType> responseTypes = Arrays.asList(ResponseType.TOKEN, ResponseType.ID_TOKEN);
+
+        // 1. Register client
+        RegisterRequest registerRequest = new RegisterRequest(ApplicationType.WEB, "oxAuth test app",
+                StringUtils.spaceSeparatedToList(redirectUris));
+        registerRequest.setResponseTypes(responseTypes);
+        registerRequest.setSectorIdentifierUri(sectorIdentifierUri);
+        registerRequest.setIdTokenSignedResponseAlg(SignatureAlgorithm.RS256);
+        registerRequest.setUserInfoSignedResponseAlg(SignatureAlgorithm.RS256);
+        registerRequest.setRequestObjectSigningAlg(SignatureAlgorithm.RS256);
+        registerRequest.addCustomAttribute("oxIncludeClaimsInIdToken", "true");
+        registerRequest.setJwksUri(clientJwksUri);
+
+        RegisterClient registerClient = new RegisterClient(registrationEndpoint);
+        registerClient.setRequest(registerRequest);
+        RegisterResponse registerResponse = registerClient.exec();
+
+        showClient(registerClient);
+        assertEquals(registerResponse.getStatus(), 200, "Unexpected response code: " + registerResponse.getEntity());
+        assertNotNull(registerResponse.getClientId());
+        assertNotNull(registerResponse.getClientSecret());
+        assertNotNull(registerResponse.getRegistrationAccessToken());
+        assertNotNull(registerResponse.getClientIdIssuedAt());
+        assertNotNull(registerResponse.getClientSecretExpiresAt());
+
+        String clientId = registerResponse.getClientId();
+
+        // 2. Request authorization
+        OxAuthCryptoProvider cryptoProvider = new OxAuthCryptoProvider(keyStoreFile, keyStoreSecret, dnName);
+
+        List<String> scopes = Arrays.asList("openid", "address");
+        String nonce = UUID.randomUUID().toString();
+        String state = UUID.randomUUID().toString();
+
+        AuthorizationRequest authorizationRequest = new AuthorizationRequest(responseTypes, clientId, scopes, redirectUri, nonce);
+        authorizationRequest.setState(state);
+
+        JwtAuthorizationRequest jwtAuthorizationRequest = new JwtAuthorizationRequest(authorizationRequest, SignatureAlgorithm.RS256, cryptoProvider);
+        jwtAuthorizationRequest.setKeyId(keyId);
+        jwtAuthorizationRequest.addIdTokenClaim(new Claim(JwtClaimName.AUTHENTICATION_TIME, ClaimValue.createEssential(true)));
+        jwtAuthorizationRequest.addIdTokenClaim(new Claim(JwtClaimName.ADDRESS_STREET_ADDRESS, ClaimValue.createEssential(true)));
+        jwtAuthorizationRequest.addIdTokenClaim(new Claim(JwtClaimName.ADDRESS_COUNTRY, ClaimValue.createEssential(true)));
+        jwtAuthorizationRequest.addUserInfoClaim(new Claim(JwtClaimName.ADDRESS_STREET_ADDRESS, ClaimValue.createEssential(true)));
+        jwtAuthorizationRequest.addUserInfoClaim(new Claim(JwtClaimName.ADDRESS_COUNTRY, ClaimValue.createEssential(true)));
+        String authJwt = jwtAuthorizationRequest.getEncodedJwt();
+        authorizationRequest.setRequest(authJwt);
+
+        AuthorizeClient authorizeClient = new AuthorizeClient(authorizationEndpoint);
+        authorizeClient.setRequest(authorizationRequest);
+
+        AuthorizationResponse authorizationResponse = authenticateResourceOwnerAndGrantAccess(
+                authorizationEndpoint, authorizationRequest, userId, userSecret);
+
+        assertNotNull(authorizationResponse.getLocation(), "The location is null");
+        assertNotNull(authorizationResponse.getAccessToken(), "The accessToken is null");
+        assertNotNull(authorizationResponse.getTokenType(), "The tokenType is null");
+        assertNotNull(authorizationResponse.getIdToken(), "The idToken is null");
+        assertNotNull(authorizationResponse.getState(), "The state is null");
+
+        String idToken = authorizationResponse.getIdToken();
+        String accessToken = authorizationResponse.getAccessToken();
+
+        // 3. Validate id_token
+        Jwt jwt = Jwt.parse(idToken);
+        assertNotNull(jwt.getHeader().getClaimAsString(JwtHeaderName.TYPE));
+        assertNotNull(jwt.getHeader().getClaimAsString(JwtHeaderName.ALGORITHM));
+        assertNotNull(jwt.getClaims().getClaimAsString(JwtClaimName.ISSUER));
+        assertNotNull(jwt.getClaims().getClaimAsString(JwtClaimName.AUDIENCE));
+        assertNotNull(jwt.getClaims().getClaimAsString(JwtClaimName.EXPIRATION_TIME));
+        assertNotNull(jwt.getClaims().getClaimAsString(JwtClaimName.ISSUED_AT));
+        assertNotNull(jwt.getClaims().getClaimAsString(JwtClaimName.SUBJECT_IDENTIFIER));
+        assertNotNull(jwt.getClaims().getClaimAsString(JwtClaimName.ACCESS_TOKEN_HASH));
+        assertNotNull(jwt.getClaims().getClaimAsString(JwtClaimName.AUTHENTICATION_TIME));
+        assertNotNull(jwt.getClaims().getClaimAsString(JwtClaimName.ADDRESS_STREET_ADDRESS));
+        assertNotNull(jwt.getClaims().getClaimAsString(JwtClaimName.ADDRESS_COUNTRY));
+        assertNotNull(jwt.getClaims().getClaim(JwtClaimName.ADDRESS));
+        assertNotNull(jwt.getClaims().getClaimAsJSON(JwtClaimName.ADDRESS).has(JwtClaimName.ADDRESS_STREET_ADDRESS));
+        assertNotNull(jwt.getClaims().getClaimAsJSON(JwtClaimName.ADDRESS).has(JwtClaimName.ADDRESS_COUNTRY));
+        assertNotNull(jwt.getClaims().getClaimAsJSON(JwtClaimName.ADDRESS).has(JwtClaimName.ADDRESS_LOCALITY));
+        assertNotNull(jwt.getClaims().getClaimAsJSON(JwtClaimName.ADDRESS).has(JwtClaimName.ADDRESS_REGION));
+
+        RSAPublicKey publicKey = JwkClient.getRSAPublicKey(
+                jwksUri,
+                jwt.getHeader().getClaimAsString(JwtHeaderName.KEY_ID));
+        RSASigner rsaSigner = new RSASigner(SignatureAlgorithm.RS256, publicKey);
+
+        assertTrue(rsaSigner.validate(jwt));
+
+        // 4. Request user info
+        UserInfoRequest userInfoRequest = new UserInfoRequest(accessToken);
+        UserInfoClient userInfoClient = new UserInfoClient(userInfoEndpoint);
+        userInfoClient.setRequest(userInfoRequest);
+        userInfoClient.setJwksUri(jwksUri);
+        UserInfoResponse userInfoResponse = userInfoClient.exec();
+
+        showClient(userInfoClient);
+        assertEquals(userInfoResponse.getStatus(), 200, "Unexpected response code: " + userInfoResponse.getStatus());
+        assertNotNull(userInfoResponse.getClaim(JwtClaimName.SUBJECT_IDENTIFIER));
+        assertNotNull(userInfoResponse.getClaim(JwtClaimName.ISSUER));
+        assertNotNull(userInfoResponse.getClaim(JwtClaimName.AUDIENCE));
+        assertNotNull(userInfoResponse.getClaim(JwtClaimName.ADDRESS_STREET_ADDRESS));
+        assertNotNull(userInfoResponse.getClaim(JwtClaimName.ADDRESS_COUNTRY));
+        assertNotNull(userInfoResponse.getClaim(JwtClaimName.ADDRESS));
+        assertNotNull(userInfoResponse.getClaim(JwtClaimName.ADDRESS).containsAll(Arrays.asList(
+                JwtClaimName.ADDRESS_STREET_ADDRESS,
+                JwtClaimName.ADDRESS_COUNTRY,
+                JwtClaimName.ADDRESS_LOCALITY,
+                JwtClaimName.ADDRESS_REGION)));
+    }
+
+    @Parameters({"userId", "userSecret", "redirectUri", "redirectUris", "dnName", "keyStoreFile", "keyStoreSecret",
+            "sectorIdentifierUri", "RS384_keyId", "clientJwksUri"})
+    @Test
+    public void authorizationRequestRS384(
+            final String userId, final String userSecret, final String redirectUri, final String redirectUris,
+            final String dnName, final String keyStoreFile, final String keyStoreSecret,
+            final String sectorIdentifierUri, final String keyId, final String clientJwksUri) throws Exception {
+        showTitle("authorizationRequestRS384");
+
+        List<ResponseType> responseTypes = Arrays.asList(ResponseType.TOKEN, ResponseType.ID_TOKEN);
+
+        // 1. Register client
+        RegisterRequest registerRequest = new RegisterRequest(ApplicationType.WEB, "oxAuth test app",
+                StringUtils.spaceSeparatedToList(redirectUris));
+        registerRequest.setResponseTypes(responseTypes);
+        registerRequest.setSectorIdentifierUri(sectorIdentifierUri);
+        registerRequest.setIdTokenSignedResponseAlg(SignatureAlgorithm.RS384);
+        registerRequest.setUserInfoSignedResponseAlg(SignatureAlgorithm.RS384);
+        registerRequest.setRequestObjectSigningAlg(SignatureAlgorithm.RS384);
+        registerRequest.addCustomAttribute("oxIncludeClaimsInIdToken", "true");
+        registerRequest.setJwksUri(clientJwksUri);
+
+        RegisterClient registerClient = new RegisterClient(registrationEndpoint);
+        registerClient.setRequest(registerRequest);
+        RegisterResponse registerResponse = registerClient.exec();
+
+        showClient(registerClient);
+        assertEquals(registerResponse.getStatus(), 200, "Unexpected response code: " + registerResponse.getEntity());
+        assertNotNull(registerResponse.getClientId());
+        assertNotNull(registerResponse.getClientSecret());
+        assertNotNull(registerResponse.getRegistrationAccessToken());
+        assertNotNull(registerResponse.getClientIdIssuedAt());
+        assertNotNull(registerResponse.getClientSecretExpiresAt());
+
+        String clientId = registerResponse.getClientId();
+
+        // 2. Request authorization
+        OxAuthCryptoProvider cryptoProvider = new OxAuthCryptoProvider(keyStoreFile, keyStoreSecret, dnName);
+
+        List<String> scopes = Arrays.asList("openid", "address");
+        String nonce = UUID.randomUUID().toString();
+        String state = UUID.randomUUID().toString();
+
+        AuthorizationRequest authorizationRequest = new AuthorizationRequest(responseTypes, clientId, scopes, redirectUri, nonce);
+        authorizationRequest.setState(state);
+
+        JwtAuthorizationRequest jwtAuthorizationRequest = new JwtAuthorizationRequest(authorizationRequest, SignatureAlgorithm.RS384, cryptoProvider);
+        jwtAuthorizationRequest.setKeyId(keyId);
+        jwtAuthorizationRequest.addIdTokenClaim(new Claim(JwtClaimName.AUTHENTICATION_TIME, ClaimValue.createEssential(true)));
+        jwtAuthorizationRequest.addIdTokenClaim(new Claim(JwtClaimName.ADDRESS_STREET_ADDRESS, ClaimValue.createEssential(true)));
+        jwtAuthorizationRequest.addIdTokenClaim(new Claim(JwtClaimName.ADDRESS_COUNTRY, ClaimValue.createEssential(true)));
+        jwtAuthorizationRequest.addUserInfoClaim(new Claim(JwtClaimName.ADDRESS_STREET_ADDRESS, ClaimValue.createEssential(true)));
+        jwtAuthorizationRequest.addUserInfoClaim(new Claim(JwtClaimName.ADDRESS_COUNTRY, ClaimValue.createEssential(true)));
+        String authJwt = jwtAuthorizationRequest.getEncodedJwt();
+        authorizationRequest.setRequest(authJwt);
+
+        AuthorizeClient authorizeClient = new AuthorizeClient(authorizationEndpoint);
+        authorizeClient.setRequest(authorizationRequest);
+
+        AuthorizationResponse authorizationResponse = authenticateResourceOwnerAndGrantAccess(
+                authorizationEndpoint, authorizationRequest, userId, userSecret);
+
+        assertNotNull(authorizationResponse.getLocation(), "The location is null");
+        assertNotNull(authorizationResponse.getAccessToken(), "The accessToken is null");
+        assertNotNull(authorizationResponse.getTokenType(), "The tokenType is null");
+        assertNotNull(authorizationResponse.getIdToken(), "The idToken is null");
+        assertNotNull(authorizationResponse.getState(), "The state is null");
+
+        String idToken = authorizationResponse.getIdToken();
+        String accessToken = authorizationResponse.getAccessToken();
+
+        // 3. Validate id_token
+        Jwt jwt = Jwt.parse(idToken);
+        assertNotNull(jwt.getHeader().getClaimAsString(JwtHeaderName.TYPE));
+        assertNotNull(jwt.getHeader().getClaimAsString(JwtHeaderName.ALGORITHM));
+        assertNotNull(jwt.getClaims().getClaimAsString(JwtClaimName.ISSUER));
+        assertNotNull(jwt.getClaims().getClaimAsString(JwtClaimName.AUDIENCE));
+        assertNotNull(jwt.getClaims().getClaimAsString(JwtClaimName.EXPIRATION_TIME));
+        assertNotNull(jwt.getClaims().getClaimAsString(JwtClaimName.ISSUED_AT));
+        assertNotNull(jwt.getClaims().getClaimAsString(JwtClaimName.SUBJECT_IDENTIFIER));
+        assertNotNull(jwt.getClaims().getClaimAsString(JwtClaimName.ACCESS_TOKEN_HASH));
+        assertNotNull(jwt.getClaims().getClaimAsString(JwtClaimName.AUTHENTICATION_TIME));
+        assertNotNull(jwt.getClaims().getClaimAsString(JwtClaimName.ADDRESS_STREET_ADDRESS));
+        assertNotNull(jwt.getClaims().getClaimAsString(JwtClaimName.ADDRESS_COUNTRY));
+        assertNotNull(jwt.getClaims().getClaim(JwtClaimName.ADDRESS));
+        assertNotNull(jwt.getClaims().getClaimAsJSON(JwtClaimName.ADDRESS).has(JwtClaimName.ADDRESS_STREET_ADDRESS));
+        assertNotNull(jwt.getClaims().getClaimAsJSON(JwtClaimName.ADDRESS).has(JwtClaimName.ADDRESS_COUNTRY));
+        assertNotNull(jwt.getClaims().getClaimAsJSON(JwtClaimName.ADDRESS).has(JwtClaimName.ADDRESS_LOCALITY));
+        assertNotNull(jwt.getClaims().getClaimAsJSON(JwtClaimName.ADDRESS).has(JwtClaimName.ADDRESS_REGION));
+
+        RSAPublicKey publicKey = JwkClient.getRSAPublicKey(
+                jwksUri,
+                jwt.getHeader().getClaimAsString(JwtHeaderName.KEY_ID));
+        RSASigner rsaSigner = new RSASigner(SignatureAlgorithm.RS384, publicKey);
+
+        assertTrue(rsaSigner.validate(jwt));
+
+        // 4. Request user info
+        UserInfoRequest userInfoRequest = new UserInfoRequest(accessToken);
+        UserInfoClient userInfoClient = new UserInfoClient(userInfoEndpoint);
+        userInfoClient.setRequest(userInfoRequest);
+        userInfoClient.setJwksUri(jwksUri);
+        UserInfoResponse userInfoResponse = userInfoClient.exec();
+
+        showClient(userInfoClient);
+        assertEquals(userInfoResponse.getStatus(), 200, "Unexpected response code: " + userInfoResponse.getStatus());
+        assertNotNull(userInfoResponse.getClaim(JwtClaimName.SUBJECT_IDENTIFIER));
+        assertNotNull(userInfoResponse.getClaim(JwtClaimName.ISSUER));
+        assertNotNull(userInfoResponse.getClaim(JwtClaimName.AUDIENCE));
+        assertNotNull(userInfoResponse.getClaim(JwtClaimName.ADDRESS_STREET_ADDRESS));
+        assertNotNull(userInfoResponse.getClaim(JwtClaimName.ADDRESS_COUNTRY));
+        assertNotNull(userInfoResponse.getClaim(JwtClaimName.ADDRESS));
+        assertNotNull(userInfoResponse.getClaim(JwtClaimName.ADDRESS).containsAll(Arrays.asList(
+                JwtClaimName.ADDRESS_STREET_ADDRESS,
+                JwtClaimName.ADDRESS_COUNTRY,
+                JwtClaimName.ADDRESS_LOCALITY,
+                JwtClaimName.ADDRESS_REGION)));
+    }
+
+    @Parameters({"userId", "userSecret", "redirectUri", "redirectUris", "dnName", "keyStoreFile", "keyStoreSecret",
+            "sectorIdentifierUri", "RS512_keyId", "clientJwksUri"})
+    @Test
+    public void authorizationRequestRS512(
+            final String userId, final String userSecret, final String redirectUri, final String redirectUris,
+            final String dnName, final String keyStoreFile, final String keyStoreSecret,
+            final String sectorIdentifierUri, final String keyId, final String clientJwksUri) throws Exception {
+        showTitle("authorizationRequestRS512");
+
+        List<ResponseType> responseTypes = Arrays.asList(ResponseType.TOKEN, ResponseType.ID_TOKEN);
+
+        // 1. Register client
+        RegisterRequest registerRequest = new RegisterRequest(ApplicationType.WEB, "oxAuth test app",
+                StringUtils.spaceSeparatedToList(redirectUris));
+        registerRequest.setResponseTypes(responseTypes);
+        registerRequest.setSectorIdentifierUri(sectorIdentifierUri);
+        registerRequest.setIdTokenSignedResponseAlg(SignatureAlgorithm.RS512);
+        registerRequest.setUserInfoSignedResponseAlg(SignatureAlgorithm.RS512);
+        registerRequest.setRequestObjectSigningAlg(SignatureAlgorithm.RS512);
+        registerRequest.setJwksUri(clientJwksUri);
+        registerRequest.addCustomAttribute("oxIncludeClaimsInIdToken", "true");
+
+        RegisterClient registerClient = new RegisterClient(registrationEndpoint);
+        registerClient.setRequest(registerRequest);
+        RegisterResponse registerResponse = registerClient.exec();
+
+        showClient(registerClient);
+        assertEquals(registerResponse.getStatus(), 200, "Unexpected response code: " + registerResponse.getEntity());
+        assertNotNull(registerResponse.getClientId());
+        assertNotNull(registerResponse.getClientSecret());
+        assertNotNull(registerResponse.getRegistrationAccessToken());
+        assertNotNull(registerResponse.getClientIdIssuedAt());
+        assertNotNull(registerResponse.getClientSecretExpiresAt());
+
+        String clientId = registerResponse.getClientId();
+
+        // 2. Request authorization
+        OxAuthCryptoProvider cryptoProvider = new OxAuthCryptoProvider(keyStoreFile, keyStoreSecret, dnName);
+
+        List<String> scopes = Arrays.asList("openid", "address");
+        String nonce = UUID.randomUUID().toString();
+        String state = UUID.randomUUID().toString();
+
+        AuthorizationRequest authorizationRequest = new AuthorizationRequest(responseTypes, clientId, scopes, redirectUri, nonce);
+        authorizationRequest.setState(state);
+
+        JwtAuthorizationRequest jwtAuthorizationRequest = new JwtAuthorizationRequest(authorizationRequest, SignatureAlgorithm.RS512, cryptoProvider);
+        jwtAuthorizationRequest.setKeyId(keyId);
+        jwtAuthorizationRequest.addIdTokenClaim(new Claim(JwtClaimName.AUTHENTICATION_TIME, ClaimValue.createEssential(true)));
+        jwtAuthorizationRequest.addIdTokenClaim(new Claim(JwtClaimName.ADDRESS_STREET_ADDRESS, ClaimValue.createEssential(true)));
+        jwtAuthorizationRequest.addIdTokenClaim(new Claim(JwtClaimName.ADDRESS_COUNTRY, ClaimValue.createEssential(true)));
+        jwtAuthorizationRequest.addUserInfoClaim(new Claim(JwtClaimName.ADDRESS_STREET_ADDRESS, ClaimValue.createEssential(true)));
+        jwtAuthorizationRequest.addUserInfoClaim(new Claim(JwtClaimName.ADDRESS_COUNTRY, ClaimValue.createEssential(true)));
+        String authJwt = jwtAuthorizationRequest.getEncodedJwt();
+        authorizationRequest.setRequest(authJwt);
+
+        AuthorizeClient authorizeClient = new AuthorizeClient(authorizationEndpoint);
+        authorizeClient.setRequest(authorizationRequest);
+
+        AuthorizationResponse authorizationResponse = authenticateResourceOwnerAndGrantAccess(
+                authorizationEndpoint, authorizationRequest, userId, userSecret);
+
+        assertNotNull(authorizationResponse.getLocation(), "The location is null");
+        assertNotNull(authorizationResponse.getAccessToken(), "The accessToken is null");
+        assertNotNull(authorizationResponse.getTokenType(), "The tokenType is null");
+        assertNotNull(authorizationResponse.getIdToken(), "The idToken is null");
+        assertNotNull(authorizationResponse.getState(), "The state is null");
+
+        String idToken = authorizationResponse.getIdToken();
+        String accessToken = authorizationResponse.getAccessToken();
+
+        // 3. Validate id_token
+        Jwt jwt = Jwt.parse(idToken);
+        assertNotNull(jwt.getHeader().getClaimAsString(JwtHeaderName.TYPE));
+        assertNotNull(jwt.getHeader().getClaimAsString(JwtHeaderName.ALGORITHM));
+        assertNotNull(jwt.getClaims().getClaimAsString(JwtClaimName.ISSUER));
+        assertNotNull(jwt.getClaims().getClaimAsString(JwtClaimName.AUDIENCE));
+        assertNotNull(jwt.getClaims().getClaimAsString(JwtClaimName.EXPIRATION_TIME));
+        assertNotNull(jwt.getClaims().getClaimAsString(JwtClaimName.ISSUED_AT));
+        assertNotNull(jwt.getClaims().getClaimAsString(JwtClaimName.SUBJECT_IDENTIFIER));
+        assertNotNull(jwt.getClaims().getClaimAsString(JwtClaimName.ACCESS_TOKEN_HASH));
+        assertNotNull(jwt.getClaims().getClaimAsString(JwtClaimName.AUTHENTICATION_TIME));
+        assertNotNull(jwt.getClaims().getClaimAsString(JwtClaimName.ADDRESS_STREET_ADDRESS));
+        assertNotNull(jwt.getClaims().getClaimAsString(JwtClaimName.ADDRESS_COUNTRY));
+        assertNotNull(jwt.getClaims().getClaim(JwtClaimName.ADDRESS));
+        assertNotNull(jwt.getClaims().getClaimAsJSON(JwtClaimName.ADDRESS).has(JwtClaimName.ADDRESS_STREET_ADDRESS));
+        assertNotNull(jwt.getClaims().getClaimAsJSON(JwtClaimName.ADDRESS).has(JwtClaimName.ADDRESS_COUNTRY));
+        assertNotNull(jwt.getClaims().getClaimAsJSON(JwtClaimName.ADDRESS).has(JwtClaimName.ADDRESS_LOCALITY));
+        assertNotNull(jwt.getClaims().getClaimAsJSON(JwtClaimName.ADDRESS).has(JwtClaimName.ADDRESS_REGION));
+
+        RSAPublicKey publicKey = JwkClient.getRSAPublicKey(
+                jwksUri,
+                jwt.getHeader().getClaimAsString(JwtHeaderName.KEY_ID));
+        RSASigner rsaSigner = new RSASigner(SignatureAlgorithm.RS512, publicKey);
+
+        assertTrue(rsaSigner.validate(jwt));
+
+        // 4. Request user info
+        UserInfoRequest userInfoRequest = new UserInfoRequest(accessToken);
+        UserInfoClient userInfoClient = new UserInfoClient(userInfoEndpoint);
+        userInfoClient.setRequest(userInfoRequest);
+        userInfoClient.setJwksUri(jwksUri);
+        UserInfoResponse userInfoResponse = userInfoClient.exec();
+
+        showClient(userInfoClient);
+        assertEquals(userInfoResponse.getStatus(), 200, "Unexpected response code: " + userInfoResponse.getStatus());
+        assertNotNull(userInfoResponse.getClaim(JwtClaimName.SUBJECT_IDENTIFIER));
+        assertNotNull(userInfoResponse.getClaim(JwtClaimName.ISSUER));
+        assertNotNull(userInfoResponse.getClaim(JwtClaimName.AUDIENCE));
+        assertNotNull(userInfoResponse.getClaim(JwtClaimName.ADDRESS_STREET_ADDRESS));
+        assertNotNull(userInfoResponse.getClaim(JwtClaimName.ADDRESS_COUNTRY));
+        assertNotNull(userInfoResponse.getClaim(JwtClaimName.ADDRESS));
+        assertNotNull(userInfoResponse.getClaim(JwtClaimName.ADDRESS).containsAll(Arrays.asList(
+                JwtClaimName.ADDRESS_STREET_ADDRESS,
+                JwtClaimName.ADDRESS_COUNTRY,
+                JwtClaimName.ADDRESS_LOCALITY,
+                JwtClaimName.ADDRESS_REGION)));
+    }
+
+    @Parameters({"userId", "userSecret", "redirectUri", "redirectUris", "dnName", "keyStoreFile", "keyStoreSecret",
+            "sectorIdentifierUri", "ES256_keyId", "clientJwksUri"})
+    @Test
+    public void authorizationRequestES256(
+            final String userId, final String userSecret, final String redirectUri, final String redirectUris,
+            final String dnName, final String keyStoreFile, final String keyStoreSecret,
+            final String sectorIdentifierUri, final String keyId, final String clientJwksUri) throws Exception {
+        showTitle("authorizationRequestES256");
+
+        List<ResponseType> responseTypes = Arrays.asList(ResponseType.TOKEN, ResponseType.ID_TOKEN);
+
+        // 1. Register client
+        RegisterRequest registerRequest = new RegisterRequest(ApplicationType.WEB, "oxAuth test app",
+                StringUtils.spaceSeparatedToList(redirectUris));
+        registerRequest.setResponseTypes(responseTypes);
+        registerRequest.setSectorIdentifierUri(sectorIdentifierUri);
+        registerRequest.setIdTokenSignedResponseAlg(SignatureAlgorithm.ES256);
+        registerRequest.setUserInfoSignedResponseAlg(SignatureAlgorithm.ES256);
+        registerRequest.setRequestObjectSigningAlg(SignatureAlgorithm.ES256);
+        registerRequest.setJwksUri(clientJwksUri);
+        registerRequest.addCustomAttribute("oxIncludeClaimsInIdToken", "true");
+
+        RegisterClient registerClient = new RegisterClient(registrationEndpoint);
+        registerClient.setRequest(registerRequest);
+        RegisterResponse registerResponse = registerClient.exec();
+
+        showClient(registerClient);
+        assertEquals(registerResponse.getStatus(), 200, "Unexpected response code: " + registerResponse.getEntity());
+        assertNotNull(registerResponse.getClientId());
+        assertNotNull(registerResponse.getClientSecret());
+        assertNotNull(registerResponse.getRegistrationAccessToken());
+        assertNotNull(registerResponse.getClientIdIssuedAt());
+        assertNotNull(registerResponse.getClientSecretExpiresAt());
+
+        String clientId = registerResponse.getClientId();
+
+        // 2. Request authorization
+        OxAuthCryptoProvider cryptoProvider = new OxAuthCryptoProvider(keyStoreFile, keyStoreSecret, dnName);
+
+        List<String> scopes = Arrays.asList("openid", "address");
+        String nonce = UUID.randomUUID().toString();
+        String state = UUID.randomUUID().toString();
+
+        AuthorizationRequest authorizationRequest = new AuthorizationRequest(responseTypes, clientId, scopes, redirectUri, nonce);
+        authorizationRequest.setState(state);
+
+        JwtAuthorizationRequest jwtAuthorizationRequest = new JwtAuthorizationRequest(authorizationRequest, SignatureAlgorithm.ES256, cryptoProvider);
+        jwtAuthorizationRequest.setKeyId(keyId);
+        jwtAuthorizationRequest.addIdTokenClaim(new Claim(JwtClaimName.AUTHENTICATION_TIME, ClaimValue.createEssential(true)));
+        jwtAuthorizationRequest.addIdTokenClaim(new Claim(JwtClaimName.ADDRESS_STREET_ADDRESS, ClaimValue.createEssential(true)));
+        jwtAuthorizationRequest.addIdTokenClaim(new Claim(JwtClaimName.ADDRESS_COUNTRY, ClaimValue.createEssential(true)));
+        jwtAuthorizationRequest.addUserInfoClaim(new Claim(JwtClaimName.ADDRESS_STREET_ADDRESS, ClaimValue.createEssential(true)));
+        jwtAuthorizationRequest.addUserInfoClaim(new Claim(JwtClaimName.ADDRESS_COUNTRY, ClaimValue.createEssential(true)));
+        String authJwt = jwtAuthorizationRequest.getEncodedJwt();
+        authorizationRequest.setRequest(authJwt);
+
+        AuthorizeClient authorizeClient = new AuthorizeClient(authorizationEndpoint);
+        authorizeClient.setRequest(authorizationRequest);
+
+        AuthorizationResponse authorizationResponse = authenticateResourceOwnerAndGrantAccess(
+                authorizationEndpoint, authorizationRequest, userId, userSecret);
+
+        assertNotNull(authorizationResponse.getLocation(), "The location is null");
+        assertNotNull(authorizationResponse.getAccessToken(), "The accessToken is null");
+        assertNotNull(authorizationResponse.getTokenType(), "The tokenType is null");
+        assertNotNull(authorizationResponse.getIdToken(), "The idToken is null");
+        assertNotNull(authorizationResponse.getState(), "The state is null");
+
+        String idToken = authorizationResponse.getIdToken();
+        String accessToken = authorizationResponse.getAccessToken();
+
+        // 3. Validate id_token
+        Jwt jwt = Jwt.parse(idToken);
+        assertNotNull(jwt.getHeader().getClaimAsString(JwtHeaderName.TYPE));
+        assertNotNull(jwt.getHeader().getClaimAsString(JwtHeaderName.ALGORITHM));
+        assertNotNull(jwt.getClaims().getClaimAsString(JwtClaimName.ISSUER));
+        assertNotNull(jwt.getClaims().getClaimAsString(JwtClaimName.AUDIENCE));
+        assertNotNull(jwt.getClaims().getClaimAsString(JwtClaimName.EXPIRATION_TIME));
+        assertNotNull(jwt.getClaims().getClaimAsString(JwtClaimName.ISSUED_AT));
+        assertNotNull(jwt.getClaims().getClaimAsString(JwtClaimName.SUBJECT_IDENTIFIER));
+        assertNotNull(jwt.getClaims().getClaimAsString(JwtClaimName.ACCESS_TOKEN_HASH));
+        assertNotNull(jwt.getClaims().getClaimAsString(JwtClaimName.AUTHENTICATION_TIME));
+        assertNotNull(jwt.getClaims().getClaimAsString(JwtClaimName.ADDRESS_STREET_ADDRESS));
+        assertNotNull(jwt.getClaims().getClaimAsString(JwtClaimName.ADDRESS_COUNTRY));
+        assertNotNull(jwt.getClaims().getClaim(JwtClaimName.ADDRESS));
+        assertNotNull(jwt.getClaims().getClaimAsJSON(JwtClaimName.ADDRESS).has(JwtClaimName.ADDRESS_STREET_ADDRESS));
+        assertNotNull(jwt.getClaims().getClaimAsJSON(JwtClaimName.ADDRESS).has(JwtClaimName.ADDRESS_COUNTRY));
+        assertNotNull(jwt.getClaims().getClaimAsJSON(JwtClaimName.ADDRESS).has(JwtClaimName.ADDRESS_LOCALITY));
+        assertNotNull(jwt.getClaims().getClaimAsJSON(JwtClaimName.ADDRESS).has(JwtClaimName.ADDRESS_REGION));
+
+        ECDSAPublicKey publicKey = JwkClient.getECDSAPublicKey(
+                jwksUri,
+                jwt.getHeader().getClaimAsString(JwtHeaderName.KEY_ID));
+        ECDSASigner ecdsaSigner = new ECDSASigner(SignatureAlgorithm.ES256, publicKey);
+
+        assertTrue(ecdsaSigner.validate(jwt));
+
+        // 4. Request user info
+        UserInfoRequest userInfoRequest = new UserInfoRequest(accessToken);
+        UserInfoClient userInfoClient = new UserInfoClient(userInfoEndpoint);
+        userInfoClient.setRequest(userInfoRequest);
+        userInfoClient.setJwksUri(jwksUri);
+        UserInfoResponse userInfoResponse = userInfoClient.exec();
+
+        showClient(userInfoClient);
+        assertEquals(userInfoResponse.getStatus(), 200, "Unexpected response code: " + userInfoResponse.getStatus());
+        assertNotNull(userInfoResponse.getClaim(JwtClaimName.SUBJECT_IDENTIFIER));
+        assertNotNull(userInfoResponse.getClaim(JwtClaimName.ISSUER));
+        assertNotNull(userInfoResponse.getClaim(JwtClaimName.AUDIENCE));
+        assertNotNull(userInfoResponse.getClaim(JwtClaimName.ADDRESS_STREET_ADDRESS));
+        assertNotNull(userInfoResponse.getClaim(JwtClaimName.ADDRESS_COUNTRY));
+        assertNotNull(userInfoResponse.getClaim(JwtClaimName.ADDRESS));
+        assertNotNull(userInfoResponse.getClaim(JwtClaimName.ADDRESS).containsAll(Arrays.asList(
+                JwtClaimName.ADDRESS_STREET_ADDRESS,
+                JwtClaimName.ADDRESS_COUNTRY,
+                JwtClaimName.ADDRESS_LOCALITY,
+                JwtClaimName.ADDRESS_REGION)));
+    }
+
+    @Parameters({"userId", "userSecret", "redirectUri", "redirectUris", "dnName", "keyStoreFile", "keyStoreSecret",
+            "sectorIdentifierUri", "ES384_keyId", "clientJwksUri"})
+    @Test
+    public void authorizationRequestES384(
+            final String userId, final String userSecret, final String redirectUri, final String redirectUris,
+            final String dnName, final String keyStoreFile, final String keyStoreSecret,
+            final String sectorIdentifierUri, final String keyId, final String clientJwksUri) throws Exception {
+        showTitle("authorizationRequestES384");
+
+        List<ResponseType> responseTypes = Arrays.asList(ResponseType.TOKEN, ResponseType.ID_TOKEN);
+
+        // 1. Register client
+        RegisterRequest registerRequest = new RegisterRequest(ApplicationType.WEB, "oxAuth test app",
+                StringUtils.spaceSeparatedToList(redirectUris));
+        registerRequest.setResponseTypes(responseTypes);
+        registerRequest.setSectorIdentifierUri(sectorIdentifierUri);
+        registerRequest.setIdTokenSignedResponseAlg(SignatureAlgorithm.ES384);
+        registerRequest.setUserInfoSignedResponseAlg(SignatureAlgorithm.ES384);
+        registerRequest.setRequestObjectSigningAlg(SignatureAlgorithm.ES384);
+        registerRequest.setJwksUri(clientJwksUri);
+        registerRequest.addCustomAttribute("oxIncludeClaimsInIdToken", "true");
+
+        RegisterClient registerClient = new RegisterClient(registrationEndpoint);
+        registerClient.setRequest(registerRequest);
+        RegisterResponse registerResponse = registerClient.exec();
+
+        showClient(registerClient);
+        assertEquals(registerResponse.getStatus(), 200, "Unexpected response code: " + registerResponse.getEntity());
+        assertNotNull(registerResponse.getClientId());
+        assertNotNull(registerResponse.getClientSecret());
+        assertNotNull(registerResponse.getRegistrationAccessToken());
+        assertNotNull(registerResponse.getClientIdIssuedAt());
+        assertNotNull(registerResponse.getClientSecretExpiresAt());
+
+        String clientId = registerResponse.getClientId();
+
+        // 2. Request authorization
+        OxAuthCryptoProvider cryptoProvider = new OxAuthCryptoProvider(keyStoreFile, keyStoreSecret, dnName);
+
+        List<String> scopes = Arrays.asList("openid", "address");
+        String nonce = UUID.randomUUID().toString();
+        String state = UUID.randomUUID().toString();
+
+        AuthorizationRequest authorizationRequest = new AuthorizationRequest(responseTypes, clientId, scopes, redirectUri, nonce);
+        authorizationRequest.setState(state);
+
+        JwtAuthorizationRequest jwtAuthorizationRequest = new JwtAuthorizationRequest(authorizationRequest, SignatureAlgorithm.ES384, cryptoProvider);
+        jwtAuthorizationRequest.setKeyId(keyId);
+        jwtAuthorizationRequest.addIdTokenClaim(new Claim(JwtClaimName.AUTHENTICATION_TIME, ClaimValue.createEssential(true)));
+        jwtAuthorizationRequest.addIdTokenClaim(new Claim(JwtClaimName.ADDRESS_STREET_ADDRESS, ClaimValue.createEssential(true)));
+        jwtAuthorizationRequest.addIdTokenClaim(new Claim(JwtClaimName.ADDRESS_COUNTRY, ClaimValue.createEssential(true)));
+        jwtAuthorizationRequest.addUserInfoClaim(new Claim(JwtClaimName.ADDRESS_STREET_ADDRESS, ClaimValue.createEssential(true)));
+        jwtAuthorizationRequest.addUserInfoClaim(new Claim(JwtClaimName.ADDRESS_COUNTRY, ClaimValue.createEssential(true)));
+        String authJwt = jwtAuthorizationRequest.getEncodedJwt();
+        authorizationRequest.setRequest(authJwt);
+
+        AuthorizeClient authorizeClient = new AuthorizeClient(authorizationEndpoint);
+        authorizeClient.setRequest(authorizationRequest);
+
+        AuthorizationResponse authorizationResponse = authenticateResourceOwnerAndGrantAccess(
+                authorizationEndpoint, authorizationRequest, userId, userSecret);
+
+        assertNotNull(authorizationResponse.getLocation(), "The location is null");
+        assertNotNull(authorizationResponse.getAccessToken(), "The accessToken is null");
+        assertNotNull(authorizationResponse.getTokenType(), "The tokenType is null");
+        assertNotNull(authorizationResponse.getIdToken(), "The idToken is null");
+        assertNotNull(authorizationResponse.getState(), "The state is null");
+
+        String idToken = authorizationResponse.getIdToken();
+        String accessToken = authorizationResponse.getAccessToken();
+
+        // 3. Validate id_token
+        Jwt jwt = Jwt.parse(idToken);
+        assertNotNull(jwt.getHeader().getClaimAsString(JwtHeaderName.TYPE));
+        assertNotNull(jwt.getHeader().getClaimAsString(JwtHeaderName.ALGORITHM));
+        assertNotNull(jwt.getClaims().getClaimAsString(JwtClaimName.ISSUER));
+        assertNotNull(jwt.getClaims().getClaimAsString(JwtClaimName.AUDIENCE));
+        assertNotNull(jwt.getClaims().getClaimAsString(JwtClaimName.EXPIRATION_TIME));
+        assertNotNull(jwt.getClaims().getClaimAsString(JwtClaimName.ISSUED_AT));
+        assertNotNull(jwt.getClaims().getClaimAsString(JwtClaimName.SUBJECT_IDENTIFIER));
+        assertNotNull(jwt.getClaims().getClaimAsString(JwtClaimName.ACCESS_TOKEN_HASH));
+        assertNotNull(jwt.getClaims().getClaimAsString(JwtClaimName.AUTHENTICATION_TIME));
+        assertNotNull(jwt.getClaims().getClaimAsString(JwtClaimName.ADDRESS_STREET_ADDRESS));
+        assertNotNull(jwt.getClaims().getClaimAsString(JwtClaimName.ADDRESS_COUNTRY));
+        assertNotNull(jwt.getClaims().getClaim(JwtClaimName.ADDRESS));
+        assertNotNull(jwt.getClaims().getClaimAsJSON(JwtClaimName.ADDRESS).has(JwtClaimName.ADDRESS_STREET_ADDRESS));
+        assertNotNull(jwt.getClaims().getClaimAsJSON(JwtClaimName.ADDRESS).has(JwtClaimName.ADDRESS_COUNTRY));
+        assertNotNull(jwt.getClaims().getClaimAsJSON(JwtClaimName.ADDRESS).has(JwtClaimName.ADDRESS_LOCALITY));
+        assertNotNull(jwt.getClaims().getClaimAsJSON(JwtClaimName.ADDRESS).has(JwtClaimName.ADDRESS_REGION));
+
+        ECDSAPublicKey publicKey = JwkClient.getECDSAPublicKey(
+                jwksUri,
+                jwt.getHeader().getClaimAsString(JwtHeaderName.KEY_ID));
+        ECDSASigner ecdsaSigner = new ECDSASigner(SignatureAlgorithm.ES384, publicKey);
+
+        assertTrue(ecdsaSigner.validate(jwt));
+
+        // 4. Request user info
+        UserInfoRequest userInfoRequest = new UserInfoRequest(accessToken);
+        UserInfoClient userInfoClient = new UserInfoClient(userInfoEndpoint);
+        userInfoClient.setRequest(userInfoRequest);
+        userInfoClient.setJwksUri(jwksUri);
+        UserInfoResponse userInfoResponse = userInfoClient.exec();
+
+        showClient(userInfoClient);
+        assertEquals(userInfoResponse.getStatus(), 200, "Unexpected response code: " + userInfoResponse.getStatus());
+        assertNotNull(userInfoResponse.getClaim(JwtClaimName.SUBJECT_IDENTIFIER));
+        assertNotNull(userInfoResponse.getClaim(JwtClaimName.ISSUER));
+        assertNotNull(userInfoResponse.getClaim(JwtClaimName.AUDIENCE));
+        assertNotNull(userInfoResponse.getClaim(JwtClaimName.ADDRESS_STREET_ADDRESS));
+        assertNotNull(userInfoResponse.getClaim(JwtClaimName.ADDRESS_COUNTRY));
+        assertNotNull(userInfoResponse.getClaim(JwtClaimName.ADDRESS));
+        assertNotNull(userInfoResponse.getClaim(JwtClaimName.ADDRESS).containsAll(Arrays.asList(
+                JwtClaimName.ADDRESS_STREET_ADDRESS,
+                JwtClaimName.ADDRESS_COUNTRY,
+                JwtClaimName.ADDRESS_LOCALITY,
+                JwtClaimName.ADDRESS_REGION)));
+    }
+
+    @Parameters({"userId", "userSecret", "redirectUri", "redirectUris", "dnName", "keyStoreFile", "keyStoreSecret",
+            "sectorIdentifierUri", "ES512_keyId", "clientJwksUri"})
+    @Test
+    public void authorizationRequestES512(
+            final String userId, final String userSecret, final String redirectUri, final String redirectUris,
+            final String dnName, final String keyStoreFile, final String keyStoreSecret,
+            final String sectorIdentifierUri, final String keyId, final String clientJwksUri) throws Exception {
+        showTitle("authorizationRequestES512");
+
+        List<ResponseType> responseTypes = Arrays.asList(ResponseType.TOKEN, ResponseType.ID_TOKEN);
+
+        // 1. Register client
+        RegisterRequest registerRequest = new RegisterRequest(ApplicationType.WEB, "oxAuth test app",
+                StringUtils.spaceSeparatedToList(redirectUris));
+        registerRequest.setResponseTypes(responseTypes);
+        registerRequest.setSectorIdentifierUri(sectorIdentifierUri);
+        registerRequest.setIdTokenSignedResponseAlg(SignatureAlgorithm.ES512);
+        registerRequest.setUserInfoSignedResponseAlg(SignatureAlgorithm.ES512);
+        registerRequest.setRequestObjectSigningAlg(SignatureAlgorithm.ES512);
+        registerRequest.setJwksUri(clientJwksUri);
+        registerRequest.addCustomAttribute("oxIncludeClaimsInIdToken", "true");
+
+        RegisterClient registerClient = new RegisterClient(registrationEndpoint);
+        registerClient.setRequest(registerRequest);
+        RegisterResponse registerResponse = registerClient.exec();
+
+        showClient(registerClient);
+        assertEquals(registerResponse.getStatus(), 200, "Unexpected response code: " + registerResponse.getEntity());
+        assertNotNull(registerResponse.getClientId());
+        assertNotNull(registerResponse.getClientSecret());
+        assertNotNull(registerResponse.getRegistrationAccessToken());
+        assertNotNull(registerResponse.getClientIdIssuedAt());
+        assertNotNull(registerResponse.getClientSecretExpiresAt());
+
+        String clientId = registerResponse.getClientId();
+
+        // 2. Request authorization
+        OxAuthCryptoProvider cryptoProvider = new OxAuthCryptoProvider(keyStoreFile, keyStoreSecret, dnName);
+
+        List<String> scopes = Arrays.asList("openid", "address");
+        String nonce = UUID.randomUUID().toString();
+        String state = UUID.randomUUID().toString();
+
+        AuthorizationRequest authorizationRequest = new AuthorizationRequest(responseTypes, clientId, scopes, redirectUri, nonce);
+        authorizationRequest.setState(state);
+
+        JwtAuthorizationRequest jwtAuthorizationRequest = new JwtAuthorizationRequest(authorizationRequest, SignatureAlgorithm.ES512, cryptoProvider);
+        jwtAuthorizationRequest.setKeyId(keyId);
+        jwtAuthorizationRequest.addIdTokenClaim(new Claim(JwtClaimName.AUTHENTICATION_TIME, ClaimValue.createEssential(true)));
+        jwtAuthorizationRequest.addIdTokenClaim(new Claim(JwtClaimName.ADDRESS_STREET_ADDRESS, ClaimValue.createEssential(true)));
+        jwtAuthorizationRequest.addIdTokenClaim(new Claim(JwtClaimName.ADDRESS_COUNTRY, ClaimValue.createEssential(true)));
+        jwtAuthorizationRequest.addUserInfoClaim(new Claim(JwtClaimName.ADDRESS_STREET_ADDRESS, ClaimValue.createEssential(true)));
+        jwtAuthorizationRequest.addUserInfoClaim(new Claim(JwtClaimName.ADDRESS_COUNTRY, ClaimValue.createEssential(true)));
+        String authJwt = jwtAuthorizationRequest.getEncodedJwt();
+        authorizationRequest.setRequest(authJwt);
+
+        AuthorizeClient authorizeClient = new AuthorizeClient(authorizationEndpoint);
+        authorizeClient.setRequest(authorizationRequest);
+
+        AuthorizationResponse authorizationResponse = authenticateResourceOwnerAndGrantAccess(
+                authorizationEndpoint, authorizationRequest, userId, userSecret);
+
+        assertNotNull(authorizationResponse.getLocation(), "The location is null");
+        assertNotNull(authorizationResponse.getAccessToken(), "The accessToken is null");
+        assertNotNull(authorizationResponse.getTokenType(), "The tokenType is null");
+        assertNotNull(authorizationResponse.getIdToken(), "The idToken is null");
+        assertNotNull(authorizationResponse.getState(), "The state is null");
+
+        String idToken = authorizationResponse.getIdToken();
+        String accessToken = authorizationResponse.getAccessToken();
+
+        // 3. Validate id_token
+        Jwt jwt = Jwt.parse(idToken);
+        assertNotNull(jwt.getHeader().getClaimAsString(JwtHeaderName.TYPE));
+        assertNotNull(jwt.getHeader().getClaimAsString(JwtHeaderName.ALGORITHM));
+        assertNotNull(jwt.getClaims().getClaimAsString(JwtClaimName.ISSUER));
+        assertNotNull(jwt.getClaims().getClaimAsString(JwtClaimName.AUDIENCE));
+        assertNotNull(jwt.getClaims().getClaimAsString(JwtClaimName.EXPIRATION_TIME));
+        assertNotNull(jwt.getClaims().getClaimAsString(JwtClaimName.ISSUED_AT));
+        assertNotNull(jwt.getClaims().getClaimAsString(JwtClaimName.SUBJECT_IDENTIFIER));
+        assertNotNull(jwt.getClaims().getClaimAsString(JwtClaimName.ACCESS_TOKEN_HASH));
+        assertNotNull(jwt.getClaims().getClaimAsString(JwtClaimName.AUTHENTICATION_TIME));
+        assertNotNull(jwt.getClaims().getClaimAsString(JwtClaimName.ADDRESS_STREET_ADDRESS));
+        assertNotNull(jwt.getClaims().getClaimAsString(JwtClaimName.ADDRESS_COUNTRY));
+        assertNotNull(jwt.getClaims().getClaim(JwtClaimName.ADDRESS));
+        assertNotNull(jwt.getClaims().getClaimAsJSON(JwtClaimName.ADDRESS).has(JwtClaimName.ADDRESS_STREET_ADDRESS));
+        assertNotNull(jwt.getClaims().getClaimAsJSON(JwtClaimName.ADDRESS).has(JwtClaimName.ADDRESS_COUNTRY));
+        assertNotNull(jwt.getClaims().getClaimAsJSON(JwtClaimName.ADDRESS).has(JwtClaimName.ADDRESS_LOCALITY));
+        assertNotNull(jwt.getClaims().getClaimAsJSON(JwtClaimName.ADDRESS).has(JwtClaimName.ADDRESS_REGION));
+
+        ECDSAPublicKey publicKey = JwkClient.getECDSAPublicKey(
+                jwksUri,
+                jwt.getHeader().getClaimAsString(JwtHeaderName.KEY_ID));
+        ECDSASigner ecdsaSigner = new ECDSASigner(SignatureAlgorithm.ES512, publicKey);
+
+        assertTrue(ecdsaSigner.validate(jwt));
+
+        // 4. Request user info
+        UserInfoRequest userInfoRequest = new UserInfoRequest(accessToken);
+        UserInfoClient userInfoClient = new UserInfoClient(userInfoEndpoint);
+        userInfoClient.setRequest(userInfoRequest);
+        userInfoClient.setJwksUri(jwksUri);
+        UserInfoResponse userInfoResponse = userInfoClient.exec();
+
+        showClient(userInfoClient);
+        assertEquals(userInfoResponse.getStatus(), 200, "Unexpected response code: " + userInfoResponse.getStatus());
+        assertNotNull(userInfoResponse.getClaim(JwtClaimName.SUBJECT_IDENTIFIER));
+        assertNotNull(userInfoResponse.getClaim(JwtClaimName.ISSUER));
+        assertNotNull(userInfoResponse.getClaim(JwtClaimName.AUDIENCE));
+        assertNotNull(userInfoResponse.getClaim(JwtClaimName.ADDRESS_STREET_ADDRESS));
+        assertNotNull(userInfoResponse.getClaim(JwtClaimName.ADDRESS_COUNTRY));
+        assertNotNull(userInfoResponse.getClaim(JwtClaimName.ADDRESS));
+        assertNotNull(userInfoResponse.getClaim(JwtClaimName.ADDRESS).containsAll(Arrays.asList(
+                JwtClaimName.ADDRESS_STREET_ADDRESS,
+                JwtClaimName.ADDRESS_COUNTRY,
+                JwtClaimName.ADDRESS_LOCALITY,
+                JwtClaimName.ADDRESS_REGION)));
+    }
+
+    @Parameters({"userId", "userSecret", "redirectUri", "redirectUris", "dnName", "keyStoreFile", "keyStoreSecret",
+            "sectorIdentifierUri", "PS256_keyId", "clientJwksUri"})
+    @Test
+    public void authorizationRequestPS256(
+            final String userId, final String userSecret, final String redirectUri, final String redirectUris,
+            final String dnName, final String keyStoreFile, final String keyStoreSecret,
+            final String sectorIdentifierUri, final String keyId, final String clientJwksUri) throws Exception {
+        showTitle("authorizationRequestPS256");
+
+        List<ResponseType> responseTypes = Arrays.asList(ResponseType.TOKEN, ResponseType.ID_TOKEN);
+
+        // 1. Register client
+        RegisterRequest registerRequest = new RegisterRequest(ApplicationType.WEB, "oxAuth test app",
+                StringUtils.spaceSeparatedToList(redirectUris));
+        registerRequest.setResponseTypes(responseTypes);
+        registerRequest.setSectorIdentifierUri(sectorIdentifierUri);
+        registerRequest.setIdTokenSignedResponseAlg(SignatureAlgorithm.PS256);
+        registerRequest.setUserInfoSignedResponseAlg(SignatureAlgorithm.PS256);
+        registerRequest.setRequestObjectSigningAlg(SignatureAlgorithm.PS256);
+        registerRequest.setJwksUri(clientJwksUri);
+        registerRequest.addCustomAttribute("oxIncludeClaimsInIdToken", "true");
+
+        RegisterClient registerClient = new RegisterClient(registrationEndpoint);
+        registerClient.setRequest(registerRequest);
+        RegisterResponse registerResponse = registerClient.exec();
+
+        showClient(registerClient);
+        assertEquals(registerResponse.getStatus(), 200, "Unexpected response code: " + registerResponse.getEntity());
+        assertNotNull(registerResponse.getClientId());
+        assertNotNull(registerResponse.getClientSecret());
+        assertNotNull(registerResponse.getRegistrationAccessToken());
+        assertNotNull(registerResponse.getClientIdIssuedAt());
+        assertNotNull(registerResponse.getClientSecretExpiresAt());
+
+        String clientId = registerResponse.getClientId();
+
+        // 2. Request authorization
+        OxAuthCryptoProvider cryptoProvider = new OxAuthCryptoProvider(keyStoreFile, keyStoreSecret, dnName);
+
+        List<String> scopes = Arrays.asList("openid", "address");
+        String nonce = UUID.randomUUID().toString();
+        String state = UUID.randomUUID().toString();
+
+        AuthorizationRequest authorizationRequest = new AuthorizationRequest(responseTypes, clientId, scopes, redirectUri, nonce);
+        authorizationRequest.setState(state);
+
+        JwtAuthorizationRequest jwtAuthorizationRequest = new JwtAuthorizationRequest(authorizationRequest, SignatureAlgorithm.PS256, cryptoProvider);
+        jwtAuthorizationRequest.setKeyId(keyId);
+        jwtAuthorizationRequest.addIdTokenClaim(new Claim(JwtClaimName.AUTHENTICATION_TIME, ClaimValue.createEssential(true)));
+        jwtAuthorizationRequest.addIdTokenClaim(new Claim(JwtClaimName.ADDRESS_STREET_ADDRESS, ClaimValue.createEssential(true)));
+        jwtAuthorizationRequest.addIdTokenClaim(new Claim(JwtClaimName.ADDRESS_COUNTRY, ClaimValue.createEssential(true)));
+        jwtAuthorizationRequest.addUserInfoClaim(new Claim(JwtClaimName.ADDRESS_STREET_ADDRESS, ClaimValue.createEssential(true)));
+        jwtAuthorizationRequest.addUserInfoClaim(new Claim(JwtClaimName.ADDRESS_COUNTRY, ClaimValue.createEssential(true)));
+        String authJwt = jwtAuthorizationRequest.getEncodedJwt();
+        authorizationRequest.setRequest(authJwt);
+
+        AuthorizeClient authorizeClient = new AuthorizeClient(authorizationEndpoint);
+        authorizeClient.setRequest(authorizationRequest);
+
+        AuthorizationResponse authorizationResponse = authenticateResourceOwnerAndGrantAccess(
+                authorizationEndpoint, authorizationRequest, userId, userSecret);
+
+        assertNotNull(authorizationResponse.getLocation(), "The location is null");
+        assertNotNull(authorizationResponse.getAccessToken(), "The accessToken is null");
+        assertNotNull(authorizationResponse.getTokenType(), "The tokenType is null");
+        assertNotNull(authorizationResponse.getIdToken(), "The idToken is null");
+        assertNotNull(authorizationResponse.getState(), "The state is null");
+
+        String idToken = authorizationResponse.getIdToken();
+        String accessToken = authorizationResponse.getAccessToken();
+
+        // 3. Validate id_token
+        Jwt jwt = Jwt.parse(idToken);
+        assertNotNull(jwt.getHeader().getClaimAsString(JwtHeaderName.TYPE));
+        assertNotNull(jwt.getHeader().getClaimAsString(JwtHeaderName.ALGORITHM));
+        assertNotNull(jwt.getClaims().getClaimAsString(JwtClaimName.ISSUER));
+        assertNotNull(jwt.getClaims().getClaimAsString(JwtClaimName.AUDIENCE));
+        assertNotNull(jwt.getClaims().getClaimAsString(JwtClaimName.EXPIRATION_TIME));
+        assertNotNull(jwt.getClaims().getClaimAsString(JwtClaimName.ISSUED_AT));
+        assertNotNull(jwt.getClaims().getClaimAsString(JwtClaimName.SUBJECT_IDENTIFIER));
+        assertNotNull(jwt.getClaims().getClaimAsString(JwtClaimName.ACCESS_TOKEN_HASH));
+        assertNotNull(jwt.getClaims().getClaimAsString(JwtClaimName.AUTHENTICATION_TIME));
+        assertNotNull(jwt.getClaims().getClaimAsString(JwtClaimName.ADDRESS_STREET_ADDRESS));
+        assertNotNull(jwt.getClaims().getClaimAsString(JwtClaimName.ADDRESS_COUNTRY));
+        assertNotNull(jwt.getClaims().getClaim(JwtClaimName.ADDRESS));
+        assertNotNull(jwt.getClaims().getClaimAsJSON(JwtClaimName.ADDRESS).has(JwtClaimName.ADDRESS_STREET_ADDRESS));
+        assertNotNull(jwt.getClaims().getClaimAsJSON(JwtClaimName.ADDRESS).has(JwtClaimName.ADDRESS_COUNTRY));
+        assertNotNull(jwt.getClaims().getClaimAsJSON(JwtClaimName.ADDRESS).has(JwtClaimName.ADDRESS_LOCALITY));
+        assertNotNull(jwt.getClaims().getClaimAsJSON(JwtClaimName.ADDRESS).has(JwtClaimName.ADDRESS_REGION));
+
+        RSAPublicKey publicKey = JwkClient.getRSAPublicKey(
+                jwksUri,
+                jwt.getHeader().getClaimAsString(JwtHeaderName.KEY_ID));
+        RSASigner rsaSigner = new RSASigner(SignatureAlgorithm.PS256, publicKey);
+
+        assertTrue(rsaSigner.validate(jwt));
+
+        // 4. Request user info
+        UserInfoRequest userInfoRequest = new UserInfoRequest(accessToken);
+        UserInfoClient userInfoClient = new UserInfoClient(userInfoEndpoint);
+        userInfoClient.setRequest(userInfoRequest);
+        userInfoClient.setJwksUri(jwksUri);
+        UserInfoResponse userInfoResponse = userInfoClient.exec();
+
+        showClient(userInfoClient);
+        assertEquals(userInfoResponse.getStatus(), 200, "Unexpected response code: " + userInfoResponse.getStatus());
+        assertNotNull(userInfoResponse.getClaim(JwtClaimName.SUBJECT_IDENTIFIER));
+        assertNotNull(userInfoResponse.getClaim(JwtClaimName.ISSUER));
+        assertNotNull(userInfoResponse.getClaim(JwtClaimName.AUDIENCE));
+        assertNotNull(userInfoResponse.getClaim(JwtClaimName.ADDRESS_STREET_ADDRESS));
+        assertNotNull(userInfoResponse.getClaim(JwtClaimName.ADDRESS_COUNTRY));
+        assertNotNull(userInfoResponse.getClaim(JwtClaimName.ADDRESS));
+        assertNotNull(userInfoResponse.getClaim(JwtClaimName.ADDRESS).containsAll(Arrays.asList(
+                JwtClaimName.ADDRESS_STREET_ADDRESS,
+                JwtClaimName.ADDRESS_COUNTRY,
+                JwtClaimName.ADDRESS_LOCALITY,
+                JwtClaimName.ADDRESS_REGION)));
+    }
+
+    @Parameters({"userId", "userSecret", "redirectUri", "redirectUris", "dnName", "keyStoreFile", "keyStoreSecret",
+            "sectorIdentifierUri", "PS384_keyId", "clientJwksUri"})
+    @Test
+    public void authorizationRequestPS384(
+            final String userId, final String userSecret, final String redirectUri, final String redirectUris,
+            final String dnName, final String keyStoreFile, final String keyStoreSecret,
+            final String sectorIdentifierUri, final String keyId, final String clientJwksUri) throws Exception {
+        showTitle("authorizationRequestPS384");
+
+        List<ResponseType> responseTypes = Arrays.asList(ResponseType.TOKEN, ResponseType.ID_TOKEN);
+
+        // 1. Register client
+        RegisterRequest registerRequest = new RegisterRequest(ApplicationType.WEB, "oxAuth test app",
+                StringUtils.spaceSeparatedToList(redirectUris));
+        registerRequest.setResponseTypes(responseTypes);
+        registerRequest.setSectorIdentifierUri(sectorIdentifierUri);
+        registerRequest.setIdTokenSignedResponseAlg(SignatureAlgorithm.PS384);
+        registerRequest.setUserInfoSignedResponseAlg(SignatureAlgorithm.PS384);
+        registerRequest.setRequestObjectSigningAlg(SignatureAlgorithm.PS384);
+        registerRequest.setJwksUri(clientJwksUri);
+        registerRequest.addCustomAttribute("oxIncludeClaimsInIdToken", "true");
+
+        RegisterClient registerClient = new RegisterClient(registrationEndpoint);
+        registerClient.setRequest(registerRequest);
+        RegisterResponse registerResponse = registerClient.exec();
+
+        showClient(registerClient);
+        assertEquals(registerResponse.getStatus(), 200, "Unexpected response code: " + registerResponse.getEntity());
+        assertNotNull(registerResponse.getClientId());
+        assertNotNull(registerResponse.getClientSecret());
+        assertNotNull(registerResponse.getRegistrationAccessToken());
+        assertNotNull(registerResponse.getClientIdIssuedAt());
+        assertNotNull(registerResponse.getClientSecretExpiresAt());
+
+        String clientId = registerResponse.getClientId();
+
+        // 2. Request authorization
+        OxAuthCryptoProvider cryptoProvider = new OxAuthCryptoProvider(keyStoreFile, keyStoreSecret, dnName);
+
+        List<String> scopes = Arrays.asList("openid", "address");
+        String nonce = UUID.randomUUID().toString();
+        String state = UUID.randomUUID().toString();
+
+        AuthorizationRequest authorizationRequest = new AuthorizationRequest(responseTypes, clientId, scopes, redirectUri, nonce);
+        authorizationRequest.setState(state);
+
+        JwtAuthorizationRequest jwtAuthorizationRequest = new JwtAuthorizationRequest(authorizationRequest, SignatureAlgorithm.PS384, cryptoProvider);
+        jwtAuthorizationRequest.setKeyId(keyId);
+        jwtAuthorizationRequest.addIdTokenClaim(new Claim(JwtClaimName.AUTHENTICATION_TIME, ClaimValue.createEssential(true)));
+        jwtAuthorizationRequest.addIdTokenClaim(new Claim(JwtClaimName.ADDRESS_STREET_ADDRESS, ClaimValue.createEssential(true)));
+        jwtAuthorizationRequest.addIdTokenClaim(new Claim(JwtClaimName.ADDRESS_COUNTRY, ClaimValue.createEssential(true)));
+        jwtAuthorizationRequest.addUserInfoClaim(new Claim(JwtClaimName.ADDRESS_STREET_ADDRESS, ClaimValue.createEssential(true)));
+        jwtAuthorizationRequest.addUserInfoClaim(new Claim(JwtClaimName.ADDRESS_COUNTRY, ClaimValue.createEssential(true)));
+        String authJwt = jwtAuthorizationRequest.getEncodedJwt();
+        authorizationRequest.setRequest(authJwt);
+
+        AuthorizeClient authorizeClient = new AuthorizeClient(authorizationEndpoint);
+        authorizeClient.setRequest(authorizationRequest);
+
+        AuthorizationResponse authorizationResponse = authenticateResourceOwnerAndGrantAccess(
+                authorizationEndpoint, authorizationRequest, userId, userSecret);
+
+        assertNotNull(authorizationResponse.getLocation(), "The location is null");
+        assertNotNull(authorizationResponse.getAccessToken(), "The accessToken is null");
+        assertNotNull(authorizationResponse.getTokenType(), "The tokenType is null");
+        assertNotNull(authorizationResponse.getIdToken(), "The idToken is null");
+        assertNotNull(authorizationResponse.getState(), "The state is null");
+
+        String idToken = authorizationResponse.getIdToken();
+        String accessToken = authorizationResponse.getAccessToken();
+
+        // 3. Validate id_token
+        Jwt jwt = Jwt.parse(idToken);
+        assertNotNull(jwt.getHeader().getClaimAsString(JwtHeaderName.TYPE));
+        assertNotNull(jwt.getHeader().getClaimAsString(JwtHeaderName.ALGORITHM));
+        assertNotNull(jwt.getClaims().getClaimAsString(JwtClaimName.ISSUER));
+        assertNotNull(jwt.getClaims().getClaimAsString(JwtClaimName.AUDIENCE));
+        assertNotNull(jwt.getClaims().getClaimAsString(JwtClaimName.EXPIRATION_TIME));
+        assertNotNull(jwt.getClaims().getClaimAsString(JwtClaimName.ISSUED_AT));
+        assertNotNull(jwt.getClaims().getClaimAsString(JwtClaimName.SUBJECT_IDENTIFIER));
+        assertNotNull(jwt.getClaims().getClaimAsString(JwtClaimName.ACCESS_TOKEN_HASH));
+        assertNotNull(jwt.getClaims().getClaimAsString(JwtClaimName.AUTHENTICATION_TIME));
+        assertNotNull(jwt.getClaims().getClaimAsString(JwtClaimName.ADDRESS_STREET_ADDRESS));
+        assertNotNull(jwt.getClaims().getClaimAsString(JwtClaimName.ADDRESS_COUNTRY));
+        assertNotNull(jwt.getClaims().getClaim(JwtClaimName.ADDRESS));
+        assertNotNull(jwt.getClaims().getClaimAsJSON(JwtClaimName.ADDRESS).has(JwtClaimName.ADDRESS_STREET_ADDRESS));
+        assertNotNull(jwt.getClaims().getClaimAsJSON(JwtClaimName.ADDRESS).has(JwtClaimName.ADDRESS_COUNTRY));
+        assertNotNull(jwt.getClaims().getClaimAsJSON(JwtClaimName.ADDRESS).has(JwtClaimName.ADDRESS_LOCALITY));
+        assertNotNull(jwt.getClaims().getClaimAsJSON(JwtClaimName.ADDRESS).has(JwtClaimName.ADDRESS_REGION));
+
+        RSAPublicKey publicKey = JwkClient.getRSAPublicKey(
+                jwksUri,
+                jwt.getHeader().getClaimAsString(JwtHeaderName.KEY_ID));
+        RSASigner rsaSigner = new RSASigner(SignatureAlgorithm.PS384, publicKey);
+
+        assertTrue(rsaSigner.validate(jwt));
+
+        // 4. Request user info
+        UserInfoRequest userInfoRequest = new UserInfoRequest(accessToken);
+        UserInfoClient userInfoClient = new UserInfoClient(userInfoEndpoint);
+        userInfoClient.setRequest(userInfoRequest);
+        userInfoClient.setJwksUri(jwksUri);
+        UserInfoResponse userInfoResponse = userInfoClient.exec();
+
+        showClient(userInfoClient);
+        assertEquals(userInfoResponse.getStatus(), 200, "Unexpected response code: " + userInfoResponse.getStatus());
+        assertNotNull(userInfoResponse.getClaim(JwtClaimName.SUBJECT_IDENTIFIER));
+        assertNotNull(userInfoResponse.getClaim(JwtClaimName.ISSUER));
+        assertNotNull(userInfoResponse.getClaim(JwtClaimName.AUDIENCE));
+        assertNotNull(userInfoResponse.getClaim(JwtClaimName.ADDRESS_STREET_ADDRESS));
+        assertNotNull(userInfoResponse.getClaim(JwtClaimName.ADDRESS_COUNTRY));
+        assertNotNull(userInfoResponse.getClaim(JwtClaimName.ADDRESS));
+        assertNotNull(userInfoResponse.getClaim(JwtClaimName.ADDRESS).containsAll(Arrays.asList(
+                JwtClaimName.ADDRESS_STREET_ADDRESS,
+                JwtClaimName.ADDRESS_COUNTRY,
+                JwtClaimName.ADDRESS_LOCALITY,
+                JwtClaimName.ADDRESS_REGION)));
+    }
+
+    @Parameters({"userId", "userSecret", "redirectUri", "redirectUris", "dnName", "keyStoreFile", "keyStoreSecret",
+            "sectorIdentifierUri", "PS512_keyId", "clientJwksUri"})
+    @Test
+    public void authorizationRequestPS512(
+            final String userId, final String userSecret, final String redirectUri, final String redirectUris,
+            final String dnName, final String keyStoreFile, final String keyStoreSecret,
+            final String sectorIdentifierUri, final String keyId, final String clientJwksUri) throws Exception {
+        showTitle("authorizationRequestPS512");
+
+        List<ResponseType> responseTypes = Arrays.asList(ResponseType.TOKEN, ResponseType.ID_TOKEN);
+
+        // 1. Register client
+        RegisterRequest registerRequest = new RegisterRequest(ApplicationType.WEB, "oxAuth test app",
+                StringUtils.spaceSeparatedToList(redirectUris));
+        registerRequest.setResponseTypes(responseTypes);
+        registerRequest.setSectorIdentifierUri(sectorIdentifierUri);
+        registerRequest.setIdTokenSignedResponseAlg(SignatureAlgorithm.PS512);
+        registerRequest.setUserInfoSignedResponseAlg(SignatureAlgorithm.PS512);
+        registerRequest.setRequestObjectSigningAlg(SignatureAlgorithm.PS512);
+        registerRequest.setJwksUri(clientJwksUri);
+        registerRequest.addCustomAttribute("oxIncludeClaimsInIdToken", "true");
+
+        RegisterClient registerClient = new RegisterClient(registrationEndpoint);
+        registerClient.setRequest(registerRequest);
+        RegisterResponse registerResponse = registerClient.exec();
+
+        showClient(registerClient);
+        assertEquals(registerResponse.getStatus(), 200, "Unexpected response code: " + registerResponse.getEntity());
+        assertNotNull(registerResponse.getClientId());
+        assertNotNull(registerResponse.getClientSecret());
+        assertNotNull(registerResponse.getRegistrationAccessToken());
+        assertNotNull(registerResponse.getClientIdIssuedAt());
+        assertNotNull(registerResponse.getClientSecretExpiresAt());
+
+        String clientId = registerResponse.getClientId();
+
+        // 2. Request authorization
+        OxAuthCryptoProvider cryptoProvider = new OxAuthCryptoProvider(keyStoreFile, keyStoreSecret, dnName);
+
+        List<String> scopes = Arrays.asList("openid", "address");
+        String nonce = UUID.randomUUID().toString();
+        String state = UUID.randomUUID().toString();
+
+        AuthorizationRequest authorizationRequest = new AuthorizationRequest(responseTypes, clientId, scopes, redirectUri, nonce);
+        authorizationRequest.setState(state);
+
+        JwtAuthorizationRequest jwtAuthorizationRequest = new JwtAuthorizationRequest(authorizationRequest, SignatureAlgorithm.PS512, cryptoProvider);
+        jwtAuthorizationRequest.setKeyId(keyId);
+        jwtAuthorizationRequest.addIdTokenClaim(new Claim(JwtClaimName.AUTHENTICATION_TIME, ClaimValue.createEssential(true)));
+        jwtAuthorizationRequest.addIdTokenClaim(new Claim(JwtClaimName.ADDRESS_STREET_ADDRESS, ClaimValue.createEssential(true)));
+        jwtAuthorizationRequest.addIdTokenClaim(new Claim(JwtClaimName.ADDRESS_COUNTRY, ClaimValue.createEssential(true)));
+        jwtAuthorizationRequest.addUserInfoClaim(new Claim(JwtClaimName.ADDRESS_STREET_ADDRESS, ClaimValue.createEssential(true)));
+        jwtAuthorizationRequest.addUserInfoClaim(new Claim(JwtClaimName.ADDRESS_COUNTRY, ClaimValue.createEssential(true)));
+        String authJwt = jwtAuthorizationRequest.getEncodedJwt();
+        authorizationRequest.setRequest(authJwt);
+
+        AuthorizeClient authorizeClient = new AuthorizeClient(authorizationEndpoint);
+        authorizeClient.setRequest(authorizationRequest);
+
+        AuthorizationResponse authorizationResponse = authenticateResourceOwnerAndGrantAccess(
+                authorizationEndpoint, authorizationRequest, userId, userSecret);
+
+        assertNotNull(authorizationResponse.getLocation(), "The location is null");
+        assertNotNull(authorizationResponse.getAccessToken(), "The accessToken is null");
+        assertNotNull(authorizationResponse.getTokenType(), "The tokenType is null");
+        assertNotNull(authorizationResponse.getIdToken(), "The idToken is null");
+        assertNotNull(authorizationResponse.getState(), "The state is null");
+
+        String idToken = authorizationResponse.getIdToken();
+        String accessToken = authorizationResponse.getAccessToken();
+
+        // 3. Validate id_token
+        Jwt jwt = Jwt.parse(idToken);
+        assertNotNull(jwt.getHeader().getClaimAsString(JwtHeaderName.TYPE));
+        assertNotNull(jwt.getHeader().getClaimAsString(JwtHeaderName.ALGORITHM));
+        assertNotNull(jwt.getClaims().getClaimAsString(JwtClaimName.ISSUER));
+        assertNotNull(jwt.getClaims().getClaimAsString(JwtClaimName.AUDIENCE));
+        assertNotNull(jwt.getClaims().getClaimAsString(JwtClaimName.EXPIRATION_TIME));
+        assertNotNull(jwt.getClaims().getClaimAsString(JwtClaimName.ISSUED_AT));
+        assertNotNull(jwt.getClaims().getClaimAsString(JwtClaimName.SUBJECT_IDENTIFIER));
+        assertNotNull(jwt.getClaims().getClaimAsString(JwtClaimName.ACCESS_TOKEN_HASH));
+        assertNotNull(jwt.getClaims().getClaimAsString(JwtClaimName.AUTHENTICATION_TIME));
+        assertNotNull(jwt.getClaims().getClaimAsString(JwtClaimName.ADDRESS_STREET_ADDRESS));
+        assertNotNull(jwt.getClaims().getClaimAsString(JwtClaimName.ADDRESS_COUNTRY));
+        assertNotNull(jwt.getClaims().getClaim(JwtClaimName.ADDRESS));
+        assertNotNull(jwt.getClaims().getClaimAsJSON(JwtClaimName.ADDRESS).has(JwtClaimName.ADDRESS_STREET_ADDRESS));
+        assertNotNull(jwt.getClaims().getClaimAsJSON(JwtClaimName.ADDRESS).has(JwtClaimName.ADDRESS_COUNTRY));
+        assertNotNull(jwt.getClaims().getClaimAsJSON(JwtClaimName.ADDRESS).has(JwtClaimName.ADDRESS_LOCALITY));
+        assertNotNull(jwt.getClaims().getClaimAsJSON(JwtClaimName.ADDRESS).has(JwtClaimName.ADDRESS_REGION));
+
+        RSAPublicKey publicKey = JwkClient.getRSAPublicKey(
+                jwksUri,
+                jwt.getHeader().getClaimAsString(JwtHeaderName.KEY_ID));
+        RSASigner rsaSigner = new RSASigner(SignatureAlgorithm.PS512, publicKey);
+
+        assertTrue(rsaSigner.validate(jwt));
+
+        // 4. Request user info
+        UserInfoRequest userInfoRequest = new UserInfoRequest(accessToken);
+        UserInfoClient userInfoClient = new UserInfoClient(userInfoEndpoint);
+        userInfoClient.setRequest(userInfoRequest);
+        userInfoClient.setJwksUri(jwksUri);
+        UserInfoResponse userInfoResponse = userInfoClient.exec();
+
+        showClient(userInfoClient);
+        assertEquals(userInfoResponse.getStatus(), 200, "Unexpected response code: " + userInfoResponse.getStatus());
+        assertNotNull(userInfoResponse.getClaim(JwtClaimName.SUBJECT_IDENTIFIER));
+        assertNotNull(userInfoResponse.getClaim(JwtClaimName.ISSUER));
+        assertNotNull(userInfoResponse.getClaim(JwtClaimName.AUDIENCE));
+        assertNotNull(userInfoResponse.getClaim(JwtClaimName.ADDRESS_STREET_ADDRESS));
+        assertNotNull(userInfoResponse.getClaim(JwtClaimName.ADDRESS_COUNTRY));
+        assertNotNull(userInfoResponse.getClaim(JwtClaimName.ADDRESS));
+        assertNotNull(userInfoResponse.getClaim(JwtClaimName.ADDRESS).containsAll(Arrays.asList(
+                JwtClaimName.ADDRESS_STREET_ADDRESS,
+                JwtClaimName.ADDRESS_COUNTRY,
+                JwtClaimName.ADDRESS_LOCALITY,
+                JwtClaimName.ADDRESS_REGION)));
+    }
+
+    @Parameters({"userId", "userSecret", "redirectUri", "redirectUris", "sectorIdentifierUri"})
+    @Test
+    public void authorizationRequestAlgA128KWEncA128GCM(
+            final String userId, final String userSecret, final String redirectUri, final String redirectUris,
+            final String sectorIdentifierUri) throws Exception {
+        showTitle("authorizationRequestAlgA128KWEncA128GCM");
+
+        List<ResponseType> responseTypes = Arrays.asList(ResponseType.TOKEN, ResponseType.ID_TOKEN);
+
+        // 1. Register client
+        RegisterRequest registerRequest = new RegisterRequest(ApplicationType.WEB, "oxAuth test app",
+                StringUtils.spaceSeparatedToList(redirectUris));
+        registerRequest.setResponseTypes(responseTypes);
+        registerRequest.setSectorIdentifierUri(sectorIdentifierUri);
+        registerRequest.setIdTokenEncryptedResponseAlg(KeyEncryptionAlgorithm.A128KW);
+        registerRequest.setIdTokenEncryptedResponseEnc(BlockEncryptionAlgorithm.A128GCM);
+        registerRequest.setUserInfoEncryptedResponseAlg(KeyEncryptionAlgorithm.A128KW);
+        registerRequest.setUserInfoEncryptedResponseEnc(BlockEncryptionAlgorithm.A128GCM);
+        registerRequest.setRequestObjectEncryptionAlg(KeyEncryptionAlgorithm.A128KW);
+        registerRequest.setRequestObjectEncryptionEnc(BlockEncryptionAlgorithm.A128GCM);
+        registerRequest.addCustomAttribute("oxIncludeClaimsInIdToken", "true");
+
+        RegisterClient registerClient = new RegisterClient(registrationEndpoint);
+        registerClient.setRequest(registerRequest);
+        RegisterResponse registerResponse = registerClient.exec();
+
+        showClient(registerClient);
+        assertEquals(registerResponse.getStatus(), 200, "Unexpected response code: " + registerResponse.getEntity());
+        assertNotNull(registerResponse.getClientId());
+        assertNotNull(registerResponse.getClientSecret());
+        assertNotNull(registerResponse.getRegistrationAccessToken());
+        assertNotNull(registerResponse.getClientIdIssuedAt());
+        assertNotNull(registerResponse.getClientSecretExpiresAt());
+
+        String clientId = registerResponse.getClientId();
+        String clientSecret = registerResponse.getClientSecret();
+
+        // 2. Request authorization
+        List<String> scopes = Arrays.asList("openid", "address");
+        String nonce = UUID.randomUUID().toString();
+        String state = UUID.randomUUID().toString();
+
+        AuthorizationRequest authorizationRequest = new AuthorizationRequest(responseTypes, clientId, scopes, redirectUri, nonce);
+        authorizationRequest.setState(state);
+
+        JwtAuthorizationRequest jwtAuthorizationRequest = new JwtAuthorizationRequest(
+                authorizationRequest,
+                KeyEncryptionAlgorithm.A128KW,
+                BlockEncryptionAlgorithm.A128GCM,
+                clientSecret);
+        jwtAuthorizationRequest.addIdTokenClaim(new Claim(JwtClaimName.AUTHENTICATION_TIME, ClaimValue.createEssential(true)));
+        jwtAuthorizationRequest.addIdTokenClaim(new Claim(JwtClaimName.ADDRESS_STREET_ADDRESS, ClaimValue.createEssential(true)));
+        jwtAuthorizationRequest.addIdTokenClaim(new Claim(JwtClaimName.ADDRESS_COUNTRY, ClaimValue.createEssential(true)));
+        jwtAuthorizationRequest.addUserInfoClaim(new Claim(JwtClaimName.ADDRESS_STREET_ADDRESS, ClaimValue.createEssential(true)));
+        jwtAuthorizationRequest.addUserInfoClaim(new Claim(JwtClaimName.ADDRESS_COUNTRY, ClaimValue.createEssential(true)));
+        String authJwt = jwtAuthorizationRequest.getEncodedJwt();
+        authorizationRequest.setRequest(authJwt);
+
+        AuthorizeClient authorizeClient = new AuthorizeClient(authorizationEndpoint);
+        authorizeClient.setRequest(authorizationRequest);
+
+        AuthorizationResponse authorizationResponse = authenticateResourceOwnerAndGrantAccess(
+                authorizationEndpoint, authorizationRequest, userId, userSecret);
+
+        assertNotNull(authorizationResponse.getLocation(), "The location is null");
+        assertNotNull(authorizationResponse.getAccessToken(), "The accessToken is null");
+        assertNotNull(authorizationResponse.getTokenType(), "The tokenType is null");
+        assertNotNull(authorizationResponse.getIdToken(), "The idToken is null");
+        assertNotNull(authorizationResponse.getState(), "The state is null");
+
+        String idToken = authorizationResponse.getIdToken();
+        String accessToken = authorizationResponse.getAccessToken();
+
+        // 3. Validate id_token
+        Jwe jwe = Jwe.parse(idToken, null, clientSecret.getBytes(Util.UTF8_STRING_ENCODING));
+        assertNotNull(jwe.getHeader().getClaimAsString(JwtHeaderName.TYPE));
+        assertNotNull(jwe.getHeader().getClaimAsString(JwtHeaderName.ALGORITHM));
+        assertNotNull(jwe.getClaims().getClaimAsString(JwtClaimName.ISSUER));
+        assertNotNull(jwe.getClaims().getClaimAsString(JwtClaimName.AUDIENCE));
+        assertNotNull(jwe.getClaims().getClaimAsString(JwtClaimName.EXPIRATION_TIME));
+        assertNotNull(jwe.getClaims().getClaimAsString(JwtClaimName.ISSUED_AT));
+        assertNotNull(jwe.getClaims().getClaimAsString(JwtClaimName.SUBJECT_IDENTIFIER));
+        assertNotNull(jwe.getClaims().getClaimAsString(JwtClaimName.ACCESS_TOKEN_HASH));
+        assertNotNull(jwe.getClaims().getClaimAsString(JwtClaimName.AUTHENTICATION_TIME));
+        assertNotNull(jwe.getClaims().getClaimAsString(JwtClaimName.ADDRESS_STREET_ADDRESS));
+        assertNotNull(jwe.getClaims().getClaimAsString(JwtClaimName.ADDRESS_COUNTRY));
+        assertNotNull(jwe.getClaims().getClaim(JwtClaimName.ADDRESS));
+        assertNotNull(jwe.getClaims().getClaimAsJSON(JwtClaimName.ADDRESS).has(JwtClaimName.ADDRESS_STREET_ADDRESS));
+        assertNotNull(jwe.getClaims().getClaimAsJSON(JwtClaimName.ADDRESS).has(JwtClaimName.ADDRESS_COUNTRY));
+        assertNotNull(jwe.getClaims().getClaimAsJSON(JwtClaimName.ADDRESS).has(JwtClaimName.ADDRESS_LOCALITY));
+        assertNotNull(jwe.getClaims().getClaimAsJSON(JwtClaimName.ADDRESS).has(JwtClaimName.ADDRESS_REGION));
+
+        // 4. Request user info
+        UserInfoRequest userInfoRequest = new UserInfoRequest(accessToken);
+        UserInfoClient userInfoClient = new UserInfoClient(userInfoEndpoint);
+        userInfoClient.setRequest(userInfoRequest);
+        userInfoClient.setSharedKey(clientSecret);
+        UserInfoResponse userInfoResponse = userInfoClient.exec();
+
+        showClient(userInfoClient);
+        assertEquals(userInfoResponse.getStatus(), 200, "Unexpected response code: " + userInfoResponse.getStatus());
+        assertNotNull(userInfoResponse.getClaim(JwtClaimName.SUBJECT_IDENTIFIER));
+        assertNotNull(userInfoResponse.getClaim(JwtClaimName.ISSUER));
+        assertNotNull(userInfoResponse.getClaim(JwtClaimName.AUDIENCE));
+        assertNotNull(userInfoResponse.getClaim(JwtClaimName.ADDRESS_STREET_ADDRESS));
+        assertNotNull(userInfoResponse.getClaim(JwtClaimName.ADDRESS_COUNTRY));
+        assertNotNull(userInfoResponse.getClaim(JwtClaimName.ADDRESS));
+        assertNotNull(userInfoResponse.getClaim(JwtClaimName.ADDRESS).containsAll(Arrays.asList(
+                JwtClaimName.ADDRESS_STREET_ADDRESS,
+                JwtClaimName.ADDRESS_COUNTRY,
+                JwtClaimName.ADDRESS_LOCALITY,
+                JwtClaimName.ADDRESS_REGION)));
+    }
+
+    @Parameters({"userId", "userSecret", "redirectUri", "redirectUris", "sectorIdentifierUri"})
+    @Test
+    public void authorizationRequestAlgA256KWEncA256GCM(
+            final String userId, final String userSecret, final String redirectUri, final String redirectUris,
+            final String sectorIdentifierUri) throws Exception {
+        showTitle("authorizationRequestAlgA256KWEncA256GCM");
+
+        List<ResponseType> responseTypes = Arrays.asList(ResponseType.TOKEN, ResponseType.ID_TOKEN);
+
+        // 1. Register client
+        RegisterRequest registerRequest = new RegisterRequest(ApplicationType.WEB, "oxAuth test app",
+                StringUtils.spaceSeparatedToList(redirectUris));
+        registerRequest.setResponseTypes(responseTypes);
+        registerRequest.setSectorIdentifierUri(sectorIdentifierUri);
+        registerRequest.setIdTokenEncryptedResponseAlg(KeyEncryptionAlgorithm.A256KW);
+        registerRequest.setIdTokenEncryptedResponseEnc(BlockEncryptionAlgorithm.A256GCM);
+        registerRequest.setUserInfoEncryptedResponseAlg(KeyEncryptionAlgorithm.A256KW);
+        registerRequest.setUserInfoEncryptedResponseEnc(BlockEncryptionAlgorithm.A256GCM);
+        registerRequest.setRequestObjectEncryptionAlg(KeyEncryptionAlgorithm.A256KW);
+        registerRequest.setRequestObjectEncryptionEnc(BlockEncryptionAlgorithm.A256GCM);
+        registerRequest.addCustomAttribute("oxIncludeClaimsInIdToken", "true");
+
+        RegisterClient registerClient = new RegisterClient(registrationEndpoint);
+        registerClient.setRequest(registerRequest);
+        RegisterResponse registerResponse = registerClient.exec();
+
+        showClient(registerClient);
+        assertEquals(registerResponse.getStatus(), 200, "Unexpected response code: " + registerResponse.getEntity());
+        assertNotNull(registerResponse.getClientId());
+        assertNotNull(registerResponse.getClientSecret());
+        assertNotNull(registerResponse.getRegistrationAccessToken());
+        assertNotNull(registerResponse.getClientIdIssuedAt());
+        assertNotNull(registerResponse.getClientSecretExpiresAt());
+
+        String clientId = registerResponse.getClientId();
+        String clientSecret = registerResponse.getClientSecret();
+
+        // 2. Request authorization
+        List<String> scopes = Arrays.asList("openid", "address");
+        String nonce = UUID.randomUUID().toString();
+        String state = UUID.randomUUID().toString();
+
+        AuthorizationRequest authorizationRequest = new AuthorizationRequest(responseTypes, clientId, scopes, redirectUri, nonce);
+        authorizationRequest.setState(state);
+
+        JwtAuthorizationRequest jwtAuthorizationRequest = new JwtAuthorizationRequest(
+                authorizationRequest,
+                KeyEncryptionAlgorithm.A256KW,
+                BlockEncryptionAlgorithm.A256GCM,
+                clientSecret);
+        jwtAuthorizationRequest.addIdTokenClaim(new Claim(JwtClaimName.AUTHENTICATION_TIME, ClaimValue.createEssential(true)));
+        jwtAuthorizationRequest.addIdTokenClaim(new Claim(JwtClaimName.ADDRESS_STREET_ADDRESS, ClaimValue.createEssential(true)));
+        jwtAuthorizationRequest.addIdTokenClaim(new Claim(JwtClaimName.ADDRESS_COUNTRY, ClaimValue.createEssential(true)));
+        jwtAuthorizationRequest.addUserInfoClaim(new Claim(JwtClaimName.ADDRESS_STREET_ADDRESS, ClaimValue.createEssential(true)));
+        jwtAuthorizationRequest.addUserInfoClaim(new Claim(JwtClaimName.ADDRESS_COUNTRY, ClaimValue.createEssential(true)));
+        String authJwt = jwtAuthorizationRequest.getEncodedJwt();
+        authorizationRequest.setRequest(authJwt);
+
+        AuthorizeClient authorizeClient = new AuthorizeClient(authorizationEndpoint);
+        authorizeClient.setRequest(authorizationRequest);
+
+        AuthorizationResponse authorizationResponse = authenticateResourceOwnerAndGrantAccess(
+                authorizationEndpoint, authorizationRequest, userId, userSecret);
+
+        assertNotNull(authorizationResponse.getLocation(), "The location is null");
+        assertNotNull(authorizationResponse.getAccessToken(), "The accessToken is null");
+        assertNotNull(authorizationResponse.getTokenType(), "The tokenType is null");
+        assertNotNull(authorizationResponse.getIdToken(), "The idToken is null");
+        assertNotNull(authorizationResponse.getState(), "The state is null");
+
+        String idToken = authorizationResponse.getIdToken();
+        String accessToken = authorizationResponse.getAccessToken();
+
+        // 3. Validate id_token
+        Jwe jwe = Jwe.parse(idToken, null, clientSecret.getBytes(Util.UTF8_STRING_ENCODING));
+        assertNotNull(jwe.getHeader().getClaimAsString(JwtHeaderName.TYPE));
+        assertNotNull(jwe.getHeader().getClaimAsString(JwtHeaderName.ALGORITHM));
+        assertNotNull(jwe.getClaims().getClaimAsString(JwtClaimName.ISSUER));
+        assertNotNull(jwe.getClaims().getClaimAsString(JwtClaimName.AUDIENCE));
+        assertNotNull(jwe.getClaims().getClaimAsString(JwtClaimName.EXPIRATION_TIME));
+        assertNotNull(jwe.getClaims().getClaimAsString(JwtClaimName.ISSUED_AT));
+        assertNotNull(jwe.getClaims().getClaimAsString(JwtClaimName.SUBJECT_IDENTIFIER));
+        assertNotNull(jwe.getClaims().getClaimAsString(JwtClaimName.ACCESS_TOKEN_HASH));
+        assertNotNull(jwe.getClaims().getClaimAsString(JwtClaimName.AUTHENTICATION_TIME));
+        assertNotNull(jwe.getClaims().getClaimAsString(JwtClaimName.ADDRESS_STREET_ADDRESS));
+        assertNotNull(jwe.getClaims().getClaimAsString(JwtClaimName.ADDRESS_COUNTRY));
+        assertNotNull(jwe.getClaims().getClaim(JwtClaimName.ADDRESS));
+        assertNotNull(jwe.getClaims().getClaimAsJSON(JwtClaimName.ADDRESS).has(JwtClaimName.ADDRESS_STREET_ADDRESS));
+        assertNotNull(jwe.getClaims().getClaimAsJSON(JwtClaimName.ADDRESS).has(JwtClaimName.ADDRESS_COUNTRY));
+        assertNotNull(jwe.getClaims().getClaimAsJSON(JwtClaimName.ADDRESS).has(JwtClaimName.ADDRESS_LOCALITY));
+        assertNotNull(jwe.getClaims().getClaimAsJSON(JwtClaimName.ADDRESS).has(JwtClaimName.ADDRESS_REGION));
+
+        // 4. Request user info
+        UserInfoRequest userInfoRequest = new UserInfoRequest(accessToken);
+        UserInfoClient userInfoClient = new UserInfoClient(userInfoEndpoint);
+        userInfoClient.setRequest(userInfoRequest);
+        userInfoClient.setSharedKey(clientSecret);
+        UserInfoResponse userInfoResponse = userInfoClient.exec();
+
+        showClient(userInfoClient);
+        assertEquals(userInfoResponse.getStatus(), 200, "Unexpected response code: " + userInfoResponse.getStatus());
+        assertNotNull(userInfoResponse.getClaim(JwtClaimName.SUBJECT_IDENTIFIER));
+        assertNotNull(userInfoResponse.getClaim(JwtClaimName.ISSUER));
+        assertNotNull(userInfoResponse.getClaim(JwtClaimName.AUDIENCE));
+        assertNotNull(userInfoResponse.getClaim(JwtClaimName.ADDRESS_STREET_ADDRESS));
+        assertNotNull(userInfoResponse.getClaim(JwtClaimName.ADDRESS_COUNTRY));
+        assertNotNull(userInfoResponse.getClaim(JwtClaimName.ADDRESS));
+        assertNotNull(userInfoResponse.getClaim(JwtClaimName.ADDRESS).containsAll(Arrays.asList(
+                JwtClaimName.ADDRESS_STREET_ADDRESS,
+                JwtClaimName.ADDRESS_COUNTRY,
+                JwtClaimName.ADDRESS_LOCALITY,
+                JwtClaimName.ADDRESS_REGION)));
+    }
+
+    @Parameters({"userId", "userSecret", "redirectUri", "redirectUris",
+            "dnName", "keyStoreFile", "keyStoreSecret", "RSA1_5_keyId",
+            "clientJwksUri", "sectorIdentifierUri"})
+    @Test
+    public void authorizationRequestAlgRSA15EncA128CBCPLUSHS256(
+            final String userId, final String userSecret, final String redirectUri, final String redirectUris,
+            final String dnName, final String keyStoreFile, final String keyStoreSecret, final String clientKeyId,
+            final String clientJwksUri, final String sectorIdentifierUri) throws Exception {
+        showTitle("authorizationRequestAlgRSA15EncA128CBCPLUSHS256");
+
+        List<ResponseType> responseTypes = Arrays.asList(ResponseType.TOKEN, ResponseType.ID_TOKEN);
+
+        // 1. Register client
+        RegisterRequest registerRequest = new RegisterRequest(ApplicationType.WEB, "oxAuth test app",
+                StringUtils.spaceSeparatedToList(redirectUris));
+        registerRequest.setResponseTypes(responseTypes);
+        registerRequest.setSectorIdentifierUri(sectorIdentifierUri);
+        registerRequest.setJwksUri(clientJwksUri);
+        registerRequest.setIdTokenEncryptedResponseAlg(KeyEncryptionAlgorithm.RSA1_5);
+        registerRequest.setIdTokenEncryptedResponseEnc(BlockEncryptionAlgorithm.A128CBC_PLUS_HS256);
+        registerRequest.setUserInfoEncryptedResponseAlg(KeyEncryptionAlgorithm.RSA1_5);
+        registerRequest.setUserInfoEncryptedResponseEnc(BlockEncryptionAlgorithm.A128CBC_PLUS_HS256);
+        registerRequest.setRequestObjectEncryptionAlg(KeyEncryptionAlgorithm.RSA1_5);
+        registerRequest.setRequestObjectEncryptionEnc(BlockEncryptionAlgorithm.A128CBC_PLUS_HS256);
+        registerRequest.addCustomAttribute("oxIncludeClaimsInIdToken", "true");
+
+        RegisterClient registerClient = new RegisterClient(registrationEndpoint);
+        registerClient.setRequest(registerRequest);
+        RegisterResponse registerResponse = registerClient.exec();
+
+        showClient(registerClient);
+        assertEquals(registerResponse.getStatus(), 200, "Unexpected response code: " + registerResponse.getEntity());
+        assertNotNull(registerResponse.getClientId());
+        assertNotNull(registerResponse.getClientSecret());
+        assertNotNull(registerResponse.getRegistrationAccessToken());
+        assertNotNull(registerResponse.getClientIdIssuedAt());
+        assertNotNull(registerResponse.getClientSecretExpiresAt());
+
+        String clientId = registerResponse.getClientId();
+
+        // 2. Choose encryption key
+        JwkClient jwkClient = new JwkClient(jwksUri);
+        JwkResponse jwkResponse = jwkClient.exec();
+        String serverKeyId = jwkResponse.getKeyId(Algorithm.RSA1_5);
+        assertNotNull(serverKeyId);
+
+        // 3. Request authorization
+        JSONObject jwks = JwtUtil.getJSONWebKeys(jwksUri);
+        OxAuthCryptoProvider cryptoProvider = new OxAuthCryptoProvider(keyStoreFile, keyStoreSecret, dnName);
+
+        List<String> scopes = Arrays.asList("openid", "address");
+        String nonce = UUID.randomUUID().toString();
+        String state = UUID.randomUUID().toString();
+
+        AuthorizationRequest authorizationRequest = new AuthorizationRequest(responseTypes, clientId, scopes, redirectUri, nonce);
+        authorizationRequest.setState(state);
+
+        JwtAuthorizationRequest jwtAuthorizationRequest = new JwtAuthorizationRequest(authorizationRequest,
+                KeyEncryptionAlgorithm.RSA1_5, BlockEncryptionAlgorithm.A128CBC_PLUS_HS256, cryptoProvider);
+        jwtAuthorizationRequest.setKeyId(serverKeyId);
+        jwtAuthorizationRequest.addIdTokenClaim(new Claim(JwtClaimName.AUTHENTICATION_TIME, ClaimValue.createEssential(true)));
+        jwtAuthorizationRequest.addIdTokenClaim(new Claim(JwtClaimName.ADDRESS_STREET_ADDRESS, ClaimValue.createEssential(true)));
+        jwtAuthorizationRequest.addIdTokenClaim(new Claim(JwtClaimName.ADDRESS_COUNTRY, ClaimValue.createEssential(true)));
+        jwtAuthorizationRequest.addUserInfoClaim(new Claim(JwtClaimName.ADDRESS_STREET_ADDRESS, ClaimValue.createEssential(true)));
+        jwtAuthorizationRequest.addUserInfoClaim(new Claim(JwtClaimName.ADDRESS_COUNTRY, ClaimValue.createEssential(true)));
+        String authJwt = jwtAuthorizationRequest.getEncodedJwt(jwks);
+        authorizationRequest.setRequest(authJwt);
+
+        AuthorizeClient authorizeClient = new AuthorizeClient(authorizationEndpoint);
+        authorizeClient.setRequest(authorizationRequest);
+
+        AuthorizationResponse authorizationResponse = authenticateResourceOwnerAndGrantAccess(
+                authorizationEndpoint, authorizationRequest, userId, userSecret);
+
+        assertNotNull(authorizationResponse.getLocation(), "The location is null");
+        assertNotNull(authorizationResponse.getAccessToken(), "The accessToken is null");
+        assertNotNull(authorizationResponse.getTokenType(), "The tokenType is null");
+        assertNotNull(authorizationResponse.getIdToken(), "The idToken is null");
+        assertNotNull(authorizationResponse.getState(), "The state is null");
+
+        String idToken = authorizationResponse.getIdToken();
+        String accessToken = authorizationResponse.getAccessToken();
+
+        // 4. Validate id_token
+        PrivateKey privateKey = cryptoProvider.getPrivateKey(clientKeyId);
+
+        Jwe jwe = Jwe.parse(idToken, privateKey, null);
+        assertNotNull(jwe.getHeader().getClaimAsString(JwtHeaderName.TYPE));
+        assertNotNull(jwe.getHeader().getClaimAsString(JwtHeaderName.ALGORITHM));
+        assertNotNull(jwe.getClaims().getClaimAsString(JwtClaimName.ISSUER));
+        assertNotNull(jwe.getClaims().getClaimAsString(JwtClaimName.AUDIENCE));
+        assertNotNull(jwe.getClaims().getClaimAsString(JwtClaimName.EXPIRATION_TIME));
+        assertNotNull(jwe.getClaims().getClaimAsString(JwtClaimName.ISSUED_AT));
+        assertNotNull(jwe.getClaims().getClaimAsString(JwtClaimName.SUBJECT_IDENTIFIER));
+        assertNotNull(jwe.getClaims().getClaimAsString(JwtClaimName.ACCESS_TOKEN_HASH));
+        assertNotNull(jwe.getClaims().getClaimAsString(JwtClaimName.AUTHENTICATION_TIME));
+        assertNotNull(jwe.getClaims().getClaimAsString(JwtClaimName.ADDRESS_STREET_ADDRESS));
+        assertNotNull(jwe.getClaims().getClaimAsString(JwtClaimName.ADDRESS_COUNTRY));
+        assertNotNull(jwe.getClaims().getClaim(JwtClaimName.ADDRESS));
+        assertNotNull(jwe.getClaims().getClaimAsJSON(JwtClaimName.ADDRESS).has(JwtClaimName.ADDRESS_STREET_ADDRESS));
+        assertNotNull(jwe.getClaims().getClaimAsJSON(JwtClaimName.ADDRESS).has(JwtClaimName.ADDRESS_COUNTRY));
+        assertNotNull(jwe.getClaims().getClaimAsJSON(JwtClaimName.ADDRESS).has(JwtClaimName.ADDRESS_LOCALITY));
+        assertNotNull(jwe.getClaims().getClaimAsJSON(JwtClaimName.ADDRESS).has(JwtClaimName.ADDRESS_REGION));
+
+        // 5. Request user info
+        UserInfoRequest userInfoRequest = new UserInfoRequest(accessToken);
+        UserInfoClient userInfoClient = new UserInfoClient(userInfoEndpoint);
+        userInfoClient.setRequest(userInfoRequest);
+        userInfoClient.setPrivateKey(privateKey);
+        UserInfoResponse userInfoResponse = userInfoClient.exec();
+
+        showClient(userInfoClient);
+        assertEquals(userInfoResponse.getStatus(), 200, "Unexpected response code: " + userInfoResponse.getStatus());
+        assertNotNull(userInfoResponse.getClaim(JwtClaimName.SUBJECT_IDENTIFIER));
+        assertNotNull(userInfoResponse.getClaim(JwtClaimName.ISSUER));
+        assertNotNull(userInfoResponse.getClaim(JwtClaimName.AUDIENCE));
+        assertNotNull(userInfoResponse.getClaim(JwtClaimName.ADDRESS_STREET_ADDRESS));
+        assertNotNull(userInfoResponse.getClaim(JwtClaimName.ADDRESS_COUNTRY));
+        assertNotNull(userInfoResponse.getClaim(JwtClaimName.ADDRESS));
+        assertNotNull(userInfoResponse.getClaim(JwtClaimName.ADDRESS).containsAll(Arrays.asList(
+                JwtClaimName.ADDRESS_STREET_ADDRESS,
+                JwtClaimName.ADDRESS_COUNTRY,
+                JwtClaimName.ADDRESS_LOCALITY,
+                JwtClaimName.ADDRESS_REGION)));
+    }
+
+    @Parameters({"userId", "userSecret", "redirectUri", "redirectUris",
+            "dnName", "keyStoreFile", "keyStoreSecret", "RSA1_5_keyId",
+            "clientJwksUri", "sectorIdentifierUri"})
+    @Test
+    public void authorizationRequestAlgRSA15EncA256CBCPLUSHS512(
+            final String userId, final String userSecret, final String redirectUri, final String redirectUris,
+            final String dnName, final String keyStoreFile, final String keyStoreSecret, final String clientKeyId,
+            final String clientJwksUri, final String sectorIdentifierUri) throws Exception {
+        showTitle("authorizationRequestAlgRSA15EncA256CBCPLUSHS512");
+
+        List<ResponseType> responseTypes = Arrays.asList(ResponseType.TOKEN, ResponseType.ID_TOKEN);
+
+        // 1. Register client
+        RegisterRequest registerRequest = new RegisterRequest(ApplicationType.WEB, "oxAuth test app",
+                StringUtils.spaceSeparatedToList(redirectUris));
+        registerRequest.setResponseTypes(responseTypes);
+        registerRequest.setSectorIdentifierUri(sectorIdentifierUri);
+        registerRequest.setJwksUri(clientJwksUri);
+        registerRequest.setIdTokenEncryptedResponseAlg(KeyEncryptionAlgorithm.RSA1_5);
+        registerRequest.setIdTokenEncryptedResponseEnc(BlockEncryptionAlgorithm.A256CBC_PLUS_HS512);
+        registerRequest.setUserInfoEncryptedResponseAlg(KeyEncryptionAlgorithm.RSA1_5);
+        registerRequest.setUserInfoEncryptedResponseEnc(BlockEncryptionAlgorithm.A256CBC_PLUS_HS512);
+        registerRequest.setRequestObjectEncryptionAlg(KeyEncryptionAlgorithm.RSA1_5);
+        registerRequest.setRequestObjectEncryptionEnc(BlockEncryptionAlgorithm.A256CBC_PLUS_HS512);
+        registerRequest.addCustomAttribute("oxIncludeClaimsInIdToken", "true");
+
+        RegisterClient registerClient = new RegisterClient(registrationEndpoint);
+        registerClient.setRequest(registerRequest);
+        RegisterResponse registerResponse = registerClient.exec();
+
+        showClient(registerClient);
+        assertEquals(registerResponse.getStatus(), 200, "Unexpected response code: " + registerResponse.getEntity());
+        assertNotNull(registerResponse.getClientId());
+        assertNotNull(registerResponse.getClientSecret());
+        assertNotNull(registerResponse.getRegistrationAccessToken());
+        assertNotNull(registerResponse.getClientIdIssuedAt());
+        assertNotNull(registerResponse.getClientSecretExpiresAt());
+
+        String clientId = registerResponse.getClientId();
+
+        // 2. Choose encryption key
+        JwkClient jwkClient = new JwkClient(jwksUri);
+        JwkResponse jwkResponse = jwkClient.exec();
+        String serverKeyId = jwkResponse.getKeyId(Algorithm.RSA1_5);
+        assertNotNull(serverKeyId);
+
+        // 3. Request authorization
+        JSONObject jwks = JwtUtil.getJSONWebKeys(jwksUri);
+        OxAuthCryptoProvider cryptoProvider = new OxAuthCryptoProvider(keyStoreFile, keyStoreSecret, dnName);
+
+        List<String> scopes = Arrays.asList("openid", "address");
+        String nonce = UUID.randomUUID().toString();
+        String state = UUID.randomUUID().toString();
+
+        AuthorizationRequest authorizationRequest = new AuthorizationRequest(responseTypes, clientId, scopes, redirectUri, nonce);
+        authorizationRequest.setState(state);
+
+        JwtAuthorizationRequest jwtAuthorizationRequest = new JwtAuthorizationRequest(authorizationRequest,
+                KeyEncryptionAlgorithm.RSA1_5, BlockEncryptionAlgorithm.A256CBC_PLUS_HS512, cryptoProvider);
+        jwtAuthorizationRequest.setKeyId(serverKeyId);
+        jwtAuthorizationRequest.addIdTokenClaim(new Claim(JwtClaimName.AUTHENTICATION_TIME, ClaimValue.createEssential(true)));
+        jwtAuthorizationRequest.addIdTokenClaim(new Claim(JwtClaimName.ADDRESS_STREET_ADDRESS, ClaimValue.createEssential(true)));
+        jwtAuthorizationRequest.addIdTokenClaim(new Claim(JwtClaimName.ADDRESS_COUNTRY, ClaimValue.createEssential(true)));
+        jwtAuthorizationRequest.addUserInfoClaim(new Claim(JwtClaimName.ADDRESS_STREET_ADDRESS, ClaimValue.createEssential(true)));
+        jwtAuthorizationRequest.addUserInfoClaim(new Claim(JwtClaimName.ADDRESS_COUNTRY, ClaimValue.createEssential(true)));
+        String authJwt = jwtAuthorizationRequest.getEncodedJwt(jwks);
+        authorizationRequest.setRequest(authJwt);
+
+        AuthorizeClient authorizeClient = new AuthorizeClient(authorizationEndpoint);
+        authorizeClient.setRequest(authorizationRequest);
+
+        AuthorizationResponse authorizationResponse = authenticateResourceOwnerAndGrantAccess(
+                authorizationEndpoint, authorizationRequest, userId, userSecret);
+
+        assertNotNull(authorizationResponse.getLocation(), "The location is null");
+        assertNotNull(authorizationResponse.getAccessToken(), "The accessToken is null");
+        assertNotNull(authorizationResponse.getTokenType(), "The tokenType is null");
+        assertNotNull(authorizationResponse.getIdToken(), "The idToken is null");
+        assertNotNull(authorizationResponse.getState(), "The state is null");
+
+        String idToken = authorizationResponse.getIdToken();
+        String accessToken = authorizationResponse.getAccessToken();
+
+        // 4. Validate id_token
+        PrivateKey privateKey = cryptoProvider.getPrivateKey(clientKeyId);
+
+        Jwe jwe = Jwe.parse(idToken, privateKey, null);
+        assertNotNull(jwe.getHeader().getClaimAsString(JwtHeaderName.TYPE));
+        assertNotNull(jwe.getHeader().getClaimAsString(JwtHeaderName.ALGORITHM));
+        assertNotNull(jwe.getClaims().getClaimAsString(JwtClaimName.ISSUER));
+        assertNotNull(jwe.getClaims().getClaimAsString(JwtClaimName.AUDIENCE));
+        assertNotNull(jwe.getClaims().getClaimAsString(JwtClaimName.EXPIRATION_TIME));
+        assertNotNull(jwe.getClaims().getClaimAsString(JwtClaimName.ISSUED_AT));
+        assertNotNull(jwe.getClaims().getClaimAsString(JwtClaimName.SUBJECT_IDENTIFIER));
+        assertNotNull(jwe.getClaims().getClaimAsString(JwtClaimName.ACCESS_TOKEN_HASH));
+        assertNotNull(jwe.getClaims().getClaimAsString(JwtClaimName.AUTHENTICATION_TIME));
+        assertNotNull(jwe.getClaims().getClaimAsString(JwtClaimName.ADDRESS_STREET_ADDRESS));
+        assertNotNull(jwe.getClaims().getClaimAsString(JwtClaimName.ADDRESS_COUNTRY));
+        assertNotNull(jwe.getClaims().getClaim(JwtClaimName.ADDRESS));
+        assertNotNull(jwe.getClaims().getClaimAsJSON(JwtClaimName.ADDRESS).has(JwtClaimName.ADDRESS_STREET_ADDRESS));
+        assertNotNull(jwe.getClaims().getClaimAsJSON(JwtClaimName.ADDRESS).has(JwtClaimName.ADDRESS_COUNTRY));
+        assertNotNull(jwe.getClaims().getClaimAsJSON(JwtClaimName.ADDRESS).has(JwtClaimName.ADDRESS_LOCALITY));
+        assertNotNull(jwe.getClaims().getClaimAsJSON(JwtClaimName.ADDRESS).has(JwtClaimName.ADDRESS_REGION));
+
+        // 5. Request user info
+        UserInfoRequest userInfoRequest = new UserInfoRequest(accessToken);
+        UserInfoClient userInfoClient = new UserInfoClient(userInfoEndpoint);
+        userInfoClient.setRequest(userInfoRequest);
+        userInfoClient.setPrivateKey(privateKey);
+        UserInfoResponse userInfoResponse = userInfoClient.exec();
+
+        showClient(userInfoClient);
+        assertEquals(userInfoResponse.getStatus(), 200, "Unexpected response code: " + userInfoResponse.getStatus());
+        assertNotNull(userInfoResponse.getClaim(JwtClaimName.SUBJECT_IDENTIFIER));
+        assertNotNull(userInfoResponse.getClaim(JwtClaimName.ISSUER));
+        assertNotNull(userInfoResponse.getClaim(JwtClaimName.AUDIENCE));
+        assertNotNull(userInfoResponse.getClaim(JwtClaimName.ADDRESS_STREET_ADDRESS));
+        assertNotNull(userInfoResponse.getClaim(JwtClaimName.ADDRESS_COUNTRY));
+        assertNotNull(userInfoResponse.getClaim(JwtClaimName.ADDRESS));
+        assertNotNull(userInfoResponse.getClaim(JwtClaimName.ADDRESS).containsAll(Arrays.asList(
+                JwtClaimName.ADDRESS_STREET_ADDRESS,
+                JwtClaimName.ADDRESS_COUNTRY,
+                JwtClaimName.ADDRESS_LOCALITY,
+                JwtClaimName.ADDRESS_REGION)));
+    }
+
+    @Parameters({"userId", "userSecret", "redirectUri", "redirectUris",
+            "dnName", "keyStoreFile", "keyStoreSecret", "RSA_OAEP_keyId",
+            "clientJwksUri", "sectorIdentifierUri"})
+    @Test
+    public void authorizationRequestAlgRSAOAEPEncA256GCM(
+            final String userId, final String userSecret, final String redirectUri, final String redirectUris,
+            final String dnName, final String keyStoreFile, final String keyStoreSecret, final String clientKeyId,
+            final String clientJwksUri, final String sectorIdentifierUri) throws Exception {
+        showTitle("authorizationRequestAlgRSAOAEPEncA256GCM");
+
+        List<ResponseType> responseTypes = Arrays.asList(ResponseType.TOKEN, ResponseType.ID_TOKEN);
+
+        // 1. Register client
+        RegisterRequest registerRequest = new RegisterRequest(ApplicationType.WEB, "oxAuth test app",
+                StringUtils.spaceSeparatedToList(redirectUris));
+        registerRequest.setResponseTypes(responseTypes);
+        registerRequest.setSectorIdentifierUri(sectorIdentifierUri);
+        registerRequest.setJwksUri(clientJwksUri);
+        registerRequest.setIdTokenEncryptedResponseAlg(KeyEncryptionAlgorithm.RSA_OAEP);
+        registerRequest.setIdTokenEncryptedResponseEnc(BlockEncryptionAlgorithm.A256GCM);
+        registerRequest.setUserInfoEncryptedResponseAlg(KeyEncryptionAlgorithm.RSA_OAEP);
+        registerRequest.setUserInfoEncryptedResponseEnc(BlockEncryptionAlgorithm.A256GCM);
+        registerRequest.setRequestObjectEncryptionAlg(KeyEncryptionAlgorithm.RSA_OAEP);
+        registerRequest.setRequestObjectEncryptionEnc(BlockEncryptionAlgorithm.A256GCM);
+        registerRequest.addCustomAttribute("oxIncludeClaimsInIdToken", "true");
+
+        RegisterClient registerClient = new RegisterClient(registrationEndpoint);
+        registerClient.setRequest(registerRequest);
+        RegisterResponse registerResponse = registerClient.exec();
+
+        showClient(registerClient);
+        assertEquals(registerResponse.getStatus(), 200, "Unexpected response code: " + registerResponse.getEntity());
+        assertNotNull(registerResponse.getClientId());
+        assertNotNull(registerResponse.getClientSecret());
+        assertNotNull(registerResponse.getRegistrationAccessToken());
+        assertNotNull(registerResponse.getClientIdIssuedAt());
+        assertNotNull(registerResponse.getClientSecretExpiresAt());
+
+        String clientId = registerResponse.getClientId();
+
+        // 2. Choose encryption key
+        JwkClient jwkClient = new JwkClient(jwksUri);
+        JwkResponse jwkResponse = jwkClient.exec();
+        String serverKeyId = jwkResponse.getKeyId(Algorithm.RSA_OAEP);
+        assertNotNull(serverKeyId);
+
+        // 3. Request authorization
+        JSONObject jwks = JwtUtil.getJSONWebKeys(jwksUri);
+        OxAuthCryptoProvider cryptoProvider = new OxAuthCryptoProvider(keyStoreFile, keyStoreSecret, dnName);
+
+        List<String> scopes = Arrays.asList("openid", "address");
+        String nonce = UUID.randomUUID().toString();
+        String state = UUID.randomUUID().toString();
+
+        AuthorizationRequest authorizationRequest = new AuthorizationRequest(responseTypes, clientId, scopes, redirectUri, nonce);
+        authorizationRequest.setState(state);
+
+        JwtAuthorizationRequest jwtAuthorizationRequest = new JwtAuthorizationRequest(authorizationRequest,
+                KeyEncryptionAlgorithm.RSA_OAEP, BlockEncryptionAlgorithm.A256GCM, cryptoProvider);
+        jwtAuthorizationRequest.setKeyId(serverKeyId);
+        jwtAuthorizationRequest.addIdTokenClaim(new Claim(JwtClaimName.AUTHENTICATION_TIME, ClaimValue.createEssential(true)));
+        jwtAuthorizationRequest.addIdTokenClaim(new Claim(JwtClaimName.ADDRESS_STREET_ADDRESS, ClaimValue.createEssential(true)));
+        jwtAuthorizationRequest.addIdTokenClaim(new Claim(JwtClaimName.ADDRESS_COUNTRY, ClaimValue.createEssential(true)));
+        jwtAuthorizationRequest.addUserInfoClaim(new Claim(JwtClaimName.ADDRESS_STREET_ADDRESS, ClaimValue.createEssential(true)));
+        jwtAuthorizationRequest.addUserInfoClaim(new Claim(JwtClaimName.ADDRESS_COUNTRY, ClaimValue.createEssential(true)));
+        String authJwt = jwtAuthorizationRequest.getEncodedJwt(jwks);
+        authorizationRequest.setRequest(authJwt);
+
+        AuthorizeClient authorizeClient = new AuthorizeClient(authorizationEndpoint);
+        authorizeClient.setRequest(authorizationRequest);
+
+        AuthorizationResponse authorizationResponse = authenticateResourceOwnerAndGrantAccess(
+                authorizationEndpoint, authorizationRequest, userId, userSecret);
+
+        assertNotNull(authorizationResponse.getLocation(), "The location is null");
+        assertNotNull(authorizationResponse.getAccessToken(), "The accessToken is null");
+        assertNotNull(authorizationResponse.getTokenType(), "The tokenType is null");
+        assertNotNull(authorizationResponse.getIdToken(), "The idToken is null");
+        assertNotNull(authorizationResponse.getState(), "The state is null");
+
+        String idToken = authorizationResponse.getIdToken();
+        String accessToken = authorizationResponse.getAccessToken();
+
+        // 4. Validate id_token
+        PrivateKey privateKey = cryptoProvider.getPrivateKey(clientKeyId);
+
+        Jwe jwe = Jwe.parse(idToken, privateKey, null);
+        assertNotNull(jwe.getHeader().getClaimAsString(JwtHeaderName.TYPE));
+        assertNotNull(jwe.getHeader().getClaimAsString(JwtHeaderName.ALGORITHM));
+        assertNotNull(jwe.getClaims().getClaimAsString(JwtClaimName.ISSUER));
+        assertNotNull(jwe.getClaims().getClaimAsString(JwtClaimName.AUDIENCE));
+        assertNotNull(jwe.getClaims().getClaimAsString(JwtClaimName.EXPIRATION_TIME));
+        assertNotNull(jwe.getClaims().getClaimAsString(JwtClaimName.ISSUED_AT));
+        assertNotNull(jwe.getClaims().getClaimAsString(JwtClaimName.SUBJECT_IDENTIFIER));
+        assertNotNull(jwe.getClaims().getClaimAsString(JwtClaimName.ACCESS_TOKEN_HASH));
+        assertNotNull(jwe.getClaims().getClaimAsString(JwtClaimName.AUTHENTICATION_TIME));
+        assertNotNull(jwe.getClaims().getClaimAsString(JwtClaimName.ADDRESS_STREET_ADDRESS));
+        assertNotNull(jwe.getClaims().getClaimAsString(JwtClaimName.ADDRESS_COUNTRY));
+        assertNotNull(jwe.getClaims().getClaim(JwtClaimName.ADDRESS));
+        assertNotNull(jwe.getClaims().getClaimAsJSON(JwtClaimName.ADDRESS).has(JwtClaimName.ADDRESS_STREET_ADDRESS));
+        assertNotNull(jwe.getClaims().getClaimAsJSON(JwtClaimName.ADDRESS).has(JwtClaimName.ADDRESS_COUNTRY));
+        assertNotNull(jwe.getClaims().getClaimAsJSON(JwtClaimName.ADDRESS).has(JwtClaimName.ADDRESS_LOCALITY));
+        assertNotNull(jwe.getClaims().getClaimAsJSON(JwtClaimName.ADDRESS).has(JwtClaimName.ADDRESS_REGION));
+
+        // 5. Request user info
+        UserInfoRequest userInfoRequest = new UserInfoRequest(accessToken);
+        UserInfoClient userInfoClient = new UserInfoClient(userInfoEndpoint);
+        userInfoClient.setRequest(userInfoRequest);
+        userInfoClient.setPrivateKey(privateKey);
+        UserInfoResponse userInfoResponse = userInfoClient.exec();
+
+        showClient(userInfoClient);
+        assertEquals(userInfoResponse.getStatus(), 200, "Unexpected response code: " + userInfoResponse.getStatus());
+        assertNotNull(userInfoResponse.getClaim(JwtClaimName.SUBJECT_IDENTIFIER));
+        assertNotNull(userInfoResponse.getClaim(JwtClaimName.ISSUER));
+        assertNotNull(userInfoResponse.getClaim(JwtClaimName.AUDIENCE));
+        assertNotNull(userInfoResponse.getClaim(JwtClaimName.ADDRESS_STREET_ADDRESS));
+        assertNotNull(userInfoResponse.getClaim(JwtClaimName.ADDRESS_COUNTRY));
+        assertNotNull(userInfoResponse.getClaim(JwtClaimName.ADDRESS));
+        assertNotNull(userInfoResponse.getClaim(JwtClaimName.ADDRESS).containsAll(Arrays.asList(
+                JwtClaimName.ADDRESS_STREET_ADDRESS,
+                JwtClaimName.ADDRESS_COUNTRY,
+                JwtClaimName.ADDRESS_LOCALITY,
+                JwtClaimName.ADDRESS_REGION)));
+    }
+}
diff --git a/oxAuth/Client/src/test/java/org/gluu/oxauth/ws/rs/ApplicationTypeRestrictionHttpTest.java b/oxAuth/Client/src/test/java/org/gluu/oxauth/ws/rs/ApplicationTypeRestrictionHttpTest.java
new file mode 100644
index 00000000..7d48d424
--- /dev/null
+++ b/oxAuth/Client/src/test/java/org/gluu/oxauth/ws/rs/ApplicationTypeRestrictionHttpTest.java
@@ -0,0 +1,514 @@
+/*
+ * oxAuth is available under the MIT License (2008). See http://opensource.org/licenses/MIT for full text.
+ *
+ * Copyright (c) 2014, Gluu
+ */
+
+package org.gluu.oxauth.ws.rs;
+
+import static org.gluu.oxauth.model.register.RegisterRequestParam.APPLICATION_TYPE;
+import static org.gluu.oxauth.model.register.RegisterRequestParam.CLIENT_NAME;
+import static org.gluu.oxauth.model.register.RegisterRequestParam.ID_TOKEN_SIGNED_RESPONSE_ALG;
+import static org.gluu.oxauth.model.register.RegisterRequestParam.REDIRECT_URIS;
+import static org.gluu.oxauth.model.register.RegisterRequestParam.RESPONSE_TYPES;
+import static org.gluu.oxauth.model.register.RegisterRequestParam.SCOPE;
+import static org.testng.Assert.assertEquals;
+import static org.testng.Assert.assertNotNull;
+import static org.testng.Assert.assertTrue;
+
+import java.util.Arrays;
+import java.util.List;
+import java.util.UUID;
+
+import org.gluu.oxauth.BaseTest;
+import org.gluu.oxauth.client.AuthorizationRequest;
+import org.gluu.oxauth.client.AuthorizationResponse;
+import org.gluu.oxauth.client.JwkClient;
+import org.gluu.oxauth.client.RegisterClient;
+import org.gluu.oxauth.client.RegisterRequest;
+import org.gluu.oxauth.client.RegisterResponse;
+import org.gluu.oxauth.client.TokenClient;
+import org.gluu.oxauth.client.TokenRequest;
+import org.gluu.oxauth.client.TokenResponse;
+import org.gluu.oxauth.client.UserInfoClient;
+import org.gluu.oxauth.client.UserInfoResponse;
+import org.gluu.oxauth.model.common.AuthenticationMethod;
+import org.gluu.oxauth.model.common.GrantType;
+import org.gluu.oxauth.model.common.ResponseType;
+import org.gluu.oxauth.model.common.SubjectType;
+import org.gluu.oxauth.model.crypto.signature.RSAPublicKey;
+import org.gluu.oxauth.model.crypto.signature.SignatureAlgorithm;
+import org.gluu.oxauth.model.jws.RSASigner;
+import org.gluu.oxauth.model.jwt.Jwt;
+import org.gluu.oxauth.model.jwt.JwtClaimName;
+import org.gluu.oxauth.model.jwt.JwtHeaderName;
+import org.gluu.oxauth.model.register.ApplicationType;
+import org.gluu.oxauth.model.util.StringUtils;
+import org.testng.annotations.Parameters;
+import org.testng.annotations.Test;
+
+/**
+ * @author Javier Rojas Blum
+ * @version November 29, 2017
+ */
+public class ApplicationTypeRestrictionHttpTest extends BaseTest {
+
+    /**
+     * Register a client without specify an Application Type.
+     * Read client to check whether it is using the default Application Type <code>web</code>.
+     */
+    @Parameters({"redirectUris", "sectorIdentifierUri"})
+    @Test
+    public void omittedApplicationType(final String redirectUris, final String sectorIdentifierUri) throws Exception {
+        showTitle("omittedApplicationType");
+
+        // 1. Register client
+        RegisterRequest registerRequest = new RegisterRequest(null, "oxAuth test app",
+                StringUtils.spaceSeparatedToList(redirectUris));
+        registerRequest.setSectorIdentifierUri(sectorIdentifierUri);
+
+        RegisterClient registerClient = new RegisterClient(registrationEndpoint);
+        registerClient.setRequest(registerRequest);
+        RegisterResponse registerResponse = registerClient.exec();
+
+        showClient(registerClient);
+        assertEquals(registerResponse.getStatus(), 200, "Unexpected response code: " + registerResponse.getEntity());
+        assertNotNull(registerResponse.getClientId());
+        assertNotNull(registerResponse.getClientSecret());
+        assertNotNull(registerResponse.getRegistrationAccessToken());
+        assertNotNull(registerResponse.getClientIdIssuedAt());
+        assertNotNull(registerResponse.getClientSecretExpiresAt());
+
+        String registrationAccessToken = registerResponse.getRegistrationAccessToken();
+        String registrationClientUri = registerResponse.getRegistrationClientUri();
+
+        // 2. Client read
+        RegisterRequest readClientRequest = new RegisterRequest(registrationAccessToken);
+
+        RegisterClient readClient = new RegisterClient(registrationClientUri);
+        readClient.setRequest(readClientRequest);
+        RegisterResponse readClientResponse = readClient.exec();
+
+        showClient(readClient);
+        assertEquals(readClientResponse.getStatus(), 200, "Unexpected response code: " + readClientResponse.getEntity());
+        assertNotNull(readClientResponse.getClientId());
+        assertNotNull(readClientResponse.getClientSecret());
+        assertNotNull(readClientResponse.getClientIdIssuedAt());
+        assertNotNull(readClientResponse.getClientSecretExpiresAt());
+
+        assertNotNull(readClientResponse.getClaims().get(APPLICATION_TYPE.toString()));
+        assertEquals(readClientResponse.getClaims().get(APPLICATION_TYPE.toString()), ApplicationType.WEB.toString());
+        assertNotNull(readClientResponse.getClaims().get(RESPONSE_TYPES.toString()));
+        assertNotNull(readClientResponse.getClaims().get(REDIRECT_URIS.toString()));
+        assertNotNull(readClientResponse.getClaims().get(APPLICATION_TYPE.toString()));
+        assertNotNull(readClientResponse.getClaims().get(CLIENT_NAME.toString()));
+        assertNotNull(readClientResponse.getClaims().get(ID_TOKEN_SIGNED_RESPONSE_ALG.toString()));
+        assertNotNull(readClientResponse.getClaims().get(SCOPE.toString()));
+    }
+
+    /**
+     * Register a client with Application Type <code>web</code>.
+     * Read client to check whether it is using the Application Type <code>web</code>.
+     */
+    @Parameters({"redirectUris", "sectorIdentifierUri"})
+    @Test
+    public void applicationTypeWeb(final String redirectUris, final String sectorIdentifierUri) throws Exception {
+        showTitle("applicationTypeWeb");
+
+        // 1. Register client
+        RegisterRequest registerRequest = new RegisterRequest(ApplicationType.WEB, "oxAuth test app",
+                StringUtils.spaceSeparatedToList(redirectUris));
+        registerRequest.setSectorIdentifierUri(sectorIdentifierUri);
+
+        RegisterClient registerClient = new RegisterClient(registrationEndpoint);
+        registerClient.setRequest(registerRequest);
+        RegisterResponse registerResponse = registerClient.exec();
+
+        showClient(registerClient);
+        assertEquals(registerResponse.getStatus(), 200, "Unexpected response code: " + registerResponse.getEntity());
+        assertNotNull(registerResponse.getClientId());
+        assertNotNull(registerResponse.getClientSecret());
+        assertNotNull(registerResponse.getRegistrationAccessToken());
+        assertNotNull(registerResponse.getClientIdIssuedAt());
+        assertNotNull(registerResponse.getClientSecretExpiresAt());
+
+        String registrationAccessToken = registerResponse.getRegistrationAccessToken();
+        String registrationClientUri = registerResponse.getRegistrationClientUri();
+
+        // 2. Client read
+        RegisterRequest readClientRequest = new RegisterRequest(registrationAccessToken);
+
+        RegisterClient readClient = new RegisterClient(registrationClientUri);
+        readClient.setRequest(readClientRequest);
+        RegisterResponse readClientResponse = readClient.exec();
+
+        showClient(readClient);
+        assertEquals(readClientResponse.getStatus(), 200, "Unexpected response code: " + readClientResponse.getEntity());
+        assertNotNull(readClientResponse.getClientId());
+        assertNotNull(readClientResponse.getClientSecret());
+        assertNotNull(readClientResponse.getClientIdIssuedAt());
+        assertNotNull(readClientResponse.getClientSecretExpiresAt());
+
+        assertNotNull(readClientResponse.getClaims().get(APPLICATION_TYPE.toString()));
+        assertEquals(readClientResponse.getClaims().get(APPLICATION_TYPE.toString()), ApplicationType.WEB.toString());
+        assertNotNull(readClientResponse.getClaims().get(RESPONSE_TYPES.toString()));
+        assertNotNull(readClientResponse.getClaims().get(REDIRECT_URIS.toString()));
+        assertNotNull(readClientResponse.getClaims().get(APPLICATION_TYPE.toString()));
+        assertNotNull(readClientResponse.getClaims().get(CLIENT_NAME.toString()));
+        assertNotNull(readClientResponse.getClaims().get(ID_TOKEN_SIGNED_RESPONSE_ALG.toString()));
+        assertNotNull(readClientResponse.getClaims().get(SCOPE.toString()));
+    }
+
+    /**
+     * Fail: Register a client with Application Type <code>web</code> and Redirect URI with the schema HTTP.
+     */
+    @Test
+    public void applicationTypeWebFail1() throws Exception {
+        showTitle("applicationTypeWebFail1");
+
+        final String redirectUris = "http://client.example.com/cb";
+
+        RegisterClient registerClient = new RegisterClient(registrationEndpoint);
+        RegisterResponse registerResponse = registerClient.execRegister(ApplicationType.WEB, "oxAuth test app",
+                StringUtils.spaceSeparatedToList(redirectUris));
+
+        showClient(registerClient);
+        assertEquals(registerResponse.getStatus(), 400, "Unexpected response code: " + registerResponse.getEntity());
+        assertNotNull(registerResponse.getEntity(), "The entity is null");
+        assertNotNull(registerResponse.getErrorType(), "The error type is null");
+        assertNotNull(registerResponse.getErrorDescription(), "The error description is null");
+    }
+
+    /**
+     * Register a client with Application Type <code>native</code>.
+     * Read client to check whether it is using the Application Type <code>native</code>.
+     */
+    @Parameters({"redirectUris", "redirectUri", "userId", "userSecret"})
+    @Test
+    public void applicationTypeNativeSubjectTypePublic(
+            final String redirectUris, final String redirectUri, final String userId, final String userSecret) throws Exception {
+        showTitle("applicationTypeNativeSubjectTypePublic");
+
+        // 1. Register client
+        List<ResponseType> responseTypes = Arrays.asList(
+                ResponseType.CODE,
+                ResponseType.ID_TOKEN);
+        List<String> scopes = Arrays.asList("openid", "profile", "address", "email", "user_name");
+
+        RegisterRequest registerRequest = new RegisterRequest(ApplicationType.NATIVE, "oxAuth test app",
+                StringUtils.spaceSeparatedToList(redirectUris));
+        registerRequest.setResponseTypes(responseTypes);
+        registerRequest.setScope(scopes);
+        registerRequest.setSubjectType(SubjectType.PUBLIC);
+
+        RegisterClient registerClient = new RegisterClient(registrationEndpoint);
+        registerClient.setRequest(registerRequest);
+        RegisterResponse registerResponse = registerClient.exec();
+
+        showClient(registerClient);
+        assertEquals(registerResponse.getStatus(), 200);
+        assertNotNull(registerResponse.getClientId());
+        assertNotNull(registerResponse.getClientSecret());
+        assertNotNull(registerResponse.getRegistrationAccessToken());
+        assertNotNull(registerResponse.getClientIdIssuedAt());
+        assertNotNull(registerResponse.getClientSecretExpiresAt());
+
+        String clientId = registerResponse.getClientId();
+        String clientSecret = registerResponse.getClientSecret();
+        String registrationAccessToken = registerResponse.getRegistrationAccessToken();
+        String registrationClientUri = registerResponse.getRegistrationClientUri();
+
+        // 2. Client read

+        RegisterRequest readClientRequest = new RegisterRequest(registrationAccessToken);
+
+        RegisterClient readClient = new RegisterClient(registrationClientUri);
+        readClient.setRequest(readClientRequest);
+        RegisterResponse readClientResponse = readClient.exec();
+
+        showClient(readClient);
+        assertEquals(readClientResponse.getStatus(), 200);
+        assertNotNull(readClientResponse.getClientId());
+        assertNotNull(readClientResponse.getClientSecret());
+        assertNotNull(readClientResponse.getClientIdIssuedAt());
+        assertNotNull(readClientResponse.getClientSecretExpiresAt());
+
+        assertNotNull(readClientResponse.getClaims().get(APPLICATION_TYPE.toString()));
+        assertEquals(readClientResponse.getClaims().get(APPLICATION_TYPE.toString()), ApplicationType.NATIVE.toString());
+        assertNotNull(readClientResponse.getClaims().get(RESPONSE_TYPES.toString()));
+        assertNotNull(readClientResponse.getClaims().get(REDIRECT_URIS.toString()));
+        assertNotNull(readClientResponse.getClaims().get(APPLICATION_TYPE.toString()));
+        assertNotNull(readClientResponse.getClaims().get(CLIENT_NAME.toString()));
+        assertNotNull(readClientResponse.getClaims().get(ID_TOKEN_SIGNED_RESPONSE_ALG.toString()));
+        assertNotNull(readClientResponse.getClaims().get(SCOPE.toString()));
+
+        // 3. Request authorization and receive the authorization code.
+        String nonce = UUID.randomUUID().toString();
+        String state = UUID.randomUUID().toString();
+
+        AuthorizationRequest authorizationRequest = new AuthorizationRequest(responseTypes, clientId, scopes, redirectUri, nonce);
+        authorizationRequest.setState(state);
+
+        AuthorizationResponse authorizationResponse = authenticateResourceOwnerAndGrantAccess(
+                authorizationEndpoint, authorizationRequest, userId, userSecret);
+
+        assertNotNull(authorizationResponse.getLocation());
+        assertNotNull(authorizationResponse.getCode());
+        assertNotNull(authorizationResponse.getState());
+        assertNotNull(authorizationResponse.getScope());
+
+        String scope = authorizationResponse.getScope();
+        String authorizationCode = authorizationResponse.getCode();
+        String idToken = authorizationResponse.getIdToken();
+
+        // 4. Request access token using the authorization code.

+        TokenRequest tokenRequest = new TokenRequest(GrantType.AUTHORIZATION_CODE);
+        tokenRequest.setCode(authorizationCode);
+        tokenRequest.setRedirectUri(redirectUri);
+        tokenRequest.setAuthUsername(clientId);
+        tokenRequest.setAuthPassword(clientSecret);
+        tokenRequest.setAuthenticationMethod(AuthenticationMethod.CLIENT_SECRET_BASIC);
+
+        TokenClient tokenClient1 = new TokenClient(tokenEndpoint);
+        tokenClient1.setRequest(tokenRequest);
+        TokenResponse tokenResponse1 = tokenClient1.exec();
+
+        showClient(tokenClient1);
+        assertEquals(tokenResponse1.getStatus(), 200);
+        assertNotNull(tokenResponse1.getEntity());
+        assertNotNull(tokenResponse1.getAccessToken());
+        assertNotNull(tokenResponse1.getExpiresIn());
+        assertNotNull(tokenResponse1.getTokenType());
+        assertNotNull(tokenResponse1.getRefreshToken());
+
+        String refreshToken = tokenResponse1.getRefreshToken();
+
+        // 5. Validate id_token

+        Jwt jwt = Jwt.parse(idToken);
+        assertNotNull(jwt.getHeader().getClaimAsString(JwtHeaderName.TYPE));
+        assertNotNull(jwt.getHeader().getClaimAsString(JwtHeaderName.ALGORITHM));
+        assertNotNull(jwt.getClaims().getClaimAsString(JwtClaimName.ISSUER));
+        assertNotNull(jwt.getClaims().getClaimAsString(JwtClaimName.AUDIENCE));
+        assertNotNull(jwt.getClaims().getClaimAsString(JwtClaimName.EXPIRATION_TIME));
+        assertNotNull(jwt.getClaims().getClaimAsString(JwtClaimName.ISSUED_AT));
+        assertNotNull(jwt.getClaims().getClaimAsString(JwtClaimName.SUBJECT_IDENTIFIER));
+        assertNotNull(jwt.getClaims().getClaimAsString(JwtClaimName.CODE_HASH));
+        assertNotNull(jwt.getClaims().getClaimAsString(JwtClaimName.AUTHENTICATION_TIME));
+        assertNotNull(jwt.getClaims().getClaimAsString(JwtClaimName.OX_OPENID_CONNECT_VERSION));
+
+        RSAPublicKey publicKey = JwkClient.getRSAPublicKey(
+                jwksUri,
+                jwt.getHeader().getClaimAsString(JwtHeaderName.KEY_ID));
+        RSASigner rsaSigner = new RSASigner(SignatureAlgorithm.RS256, publicKey);
+
+        assertTrue(rsaSigner.validate(jwt));
+
+        // 6. Request new access token using the refresh token.
+        TokenClient tokenClient2 = new TokenClient(tokenEndpoint);
+        TokenResponse tokenResponse2 = tokenClient2.execRefreshToken(scope, refreshToken, clientId, clientSecret);
+
+        showClient(tokenClient2);
+        assertEquals(tokenResponse2.getStatus(), 200);
+        assertNotNull(tokenResponse2.getEntity());
+        assertNotNull(tokenResponse2.getAccessToken());
+        assertNotNull(tokenResponse2.getTokenType());
+        assertNotNull(tokenResponse2.getRefreshToken());
+        assertNotNull(tokenResponse2.getScope());
+
+        String accessToken = tokenResponse2.getAccessToken();
+
+        // 7. Request user info
+        UserInfoClient userInfoClient = new UserInfoClient(userInfoEndpoint);
+        UserInfoResponse userInfoResponse = userInfoClient.execUserInfo(accessToken);
+
+        showClient(userInfoClient);
+        assertEquals(userInfoResponse.getStatus(), 200);
+        assertNotNull(userInfoResponse.getClaim(JwtClaimName.SUBJECT_IDENTIFIER));
+        assertNotNull(userInfoResponse.getClaim(JwtClaimName.NAME));
+    }
+
+    @Parameters({"redirectUris", "redirectUri", "userId", "userSecret", "sectorIdentifierUri"})
+    @Test
+    public void applicationTypeNativeSubjectTypePairwise(
+            final String redirectUris, final String redirectUri, final String userId, final String userSecret,
+            final String sectorIdentifierUri) throws Exception {
+        showTitle("applicationTypeNativeSubjectTypePairwise");
+
+        // 1. Register client
+        List<ResponseType> responseTypes = Arrays.asList(
+                ResponseType.CODE,
+                ResponseType.ID_TOKEN);
+        List<String> scopes = Arrays.asList("openid", "profile", "address", "email", "user_name");
+
+        RegisterRequest registerRequest = new RegisterRequest(ApplicationType.NATIVE, "oxAuth test app",
+                StringUtils.spaceSeparatedToList(redirectUris));
+        registerRequest.setResponseTypes(responseTypes);
+        registerRequest.setScope(scopes);
+        registerRequest.setSubjectType(SubjectType.PAIRWISE);
+        registerRequest.setSectorIdentifierUri(sectorIdentifierUri);
+
+        RegisterClient registerClient = new RegisterClient(registrationEndpoint);
+        registerClient.setRequest(registerRequest);
+        RegisterResponse registerResponse = registerClient.exec();
+
+        showClient(registerClient);
+        assertEquals(registerResponse.getStatus(), 200);
+        assertNotNull(registerResponse.getClientId());
+        assertNotNull(registerResponse.getClientSecret());
+        assertNotNull(registerResponse.getRegistrationAccessToken());
+        assertNotNull(registerResponse.getClientIdIssuedAt());
+        assertNotNull(registerResponse.getClientSecretExpiresAt());
+
+        String clientId = registerResponse.getClientId();
+        String clientSecret = registerResponse.getClientSecret();
+        String registrationAccessToken = registerResponse.getRegistrationAccessToken();
+        String registrationClientUri = registerResponse.getRegistrationClientUri();
+
+        // 2. Client read

+        RegisterRequest readClientRequest = new RegisterRequest(registrationAccessToken);
+
+        RegisterClient readClient = new RegisterClient(registrationClientUri);
+        readClient.setRequest(readClientRequest);
+        RegisterResponse readClientResponse = readClient.exec();
+
+        showClient(readClient);
+        assertEquals(readClientResponse.getStatus(), 200);
+        assertNotNull(readClientResponse.getClientId());
+        assertNotNull(readClientResponse.getClientSecret());
+        assertNotNull(readClientResponse.getClientIdIssuedAt());
+        assertNotNull(readClientResponse.getClientSecretExpiresAt());
+
+        assertNotNull(readClientResponse.getClaims().get(APPLICATION_TYPE.toString()));
+        assertEquals(readClientResponse.getClaims().get(APPLICATION_TYPE.toString()), ApplicationType.NATIVE.toString());
+        assertNotNull(readClientResponse.getClaims().get(RESPONSE_TYPES.toString()));
+        assertNotNull(readClientResponse.getClaims().get(REDIRECT_URIS.toString()));
+        assertNotNull(readClientResponse.getClaims().get(APPLICATION_TYPE.toString()));
+        assertNotNull(readClientResponse.getClaims().get(CLIENT_NAME.toString()));
+        assertNotNull(readClientResponse.getClaims().get(ID_TOKEN_SIGNED_RESPONSE_ALG.toString()));
+        assertNotNull(readClientResponse.getClaims().get(SCOPE.toString()));
+
+        // 3. Request authorization and receive the authorization code.
+        String nonce = UUID.randomUUID().toString();
+        String state = UUID.randomUUID().toString();
+
+        AuthorizationRequest authorizationRequest = new AuthorizationRequest(responseTypes, clientId, scopes, redirectUri, nonce);
+        authorizationRequest.setState(state);
+
+        AuthorizationResponse authorizationResponse = authenticateResourceOwnerAndGrantAccess(
+                authorizationEndpoint, authorizationRequest, userId, userSecret);
+
+        assertNotNull(authorizationResponse.getLocation());
+        assertNotNull(authorizationResponse.getCode());
+        assertNotNull(authorizationResponse.getState());
+        assertNotNull(authorizationResponse.getScope());
+
+        String scope = authorizationResponse.getScope();
+        String authorizationCode = authorizationResponse.getCode();
+        String idToken = authorizationResponse.getIdToken();
+
+        // 4. Request access token using the authorization code.

+        TokenRequest tokenRequest = new TokenRequest(GrantType.AUTHORIZATION_CODE);
+        tokenRequest.setCode(authorizationCode);
+        tokenRequest.setRedirectUri(redirectUri);
+        tokenRequest.setAuthUsername(clientId);
+        tokenRequest.setAuthPassword(clientSecret);
+        tokenRequest.setAuthenticationMethod(AuthenticationMethod.CLIENT_SECRET_BASIC);
+
+        TokenClient tokenClient1 = new TokenClient(tokenEndpoint);
+        tokenClient1.setRequest(tokenRequest);
+        TokenResponse tokenResponse1 = tokenClient1.exec();
+
+        showClient(tokenClient1);
+        assertEquals(tokenResponse1.getStatus(), 200);
+        assertNotNull(tokenResponse1.getEntity());
+        assertNotNull(tokenResponse1.getAccessToken());
+        assertNotNull(tokenResponse1.getExpiresIn());
+        assertNotNull(tokenResponse1.getTokenType());
+        assertNotNull(tokenResponse1.getRefreshToken());
+
+        String refreshToken = tokenResponse1.getRefreshToken();
+
+        // 5. Validate id_token

+        Jwt jwt = Jwt.parse(idToken);
+        assertNotNull(jwt.getHeader().getClaimAsString(JwtHeaderName.TYPE));
+        assertNotNull(jwt.getHeader().getClaimAsString(JwtHeaderName.ALGORITHM));
+        assertNotNull(jwt.getClaims().getClaimAsString(JwtClaimName.ISSUER));
+        assertNotNull(jwt.getClaims().getClaimAsString(JwtClaimName.AUDIENCE));
+        assertNotNull(jwt.getClaims().getClaimAsString(JwtClaimName.EXPIRATION_TIME));
+        assertNotNull(jwt.getClaims().getClaimAsString(JwtClaimName.ISSUED_AT));
+        assertNotNull(jwt.getClaims().getClaimAsString(JwtClaimName.SUBJECT_IDENTIFIER));
+        assertNotNull(jwt.getClaims().getClaimAsString(JwtClaimName.CODE_HASH));
+        assertNotNull(jwt.getClaims().getClaimAsString(JwtClaimName.AUTHENTICATION_TIME));
+        assertNotNull(jwt.getClaims().getClaimAsString(JwtClaimName.OX_OPENID_CONNECT_VERSION));
+
+        RSAPublicKey publicKey = JwkClient.getRSAPublicKey(
+                jwksUri,
+                jwt.getHeader().getClaimAsString(JwtHeaderName.KEY_ID));
+        RSASigner rsaSigner = new RSASigner(SignatureAlgorithm.RS256, publicKey);
+
+        assertTrue(rsaSigner.validate(jwt));
+
+        // 6. Request new access token using the refresh token.
+        TokenClient tokenClient2 = new TokenClient(tokenEndpoint);
+        TokenResponse tokenResponse2 = tokenClient2.execRefreshToken(scope, refreshToken, clientId, clientSecret);
+
+        showClient(tokenClient2);
+        assertEquals(tokenResponse2.getStatus(), 200);
+        assertNotNull(tokenResponse2.getEntity());
+        assertNotNull(tokenResponse2.getAccessToken());
+        assertNotNull(tokenResponse2.getTokenType());
+        assertNotNull(tokenResponse2.getRefreshToken());
+        assertNotNull(tokenResponse2.getScope());
+
+        String accessToken = tokenResponse2.getAccessToken();
+
+        // 7. Request user info
+        UserInfoClient userInfoClient = new UserInfoClient(userInfoEndpoint);
+        UserInfoResponse userInfoResponse = userInfoClient.execUserInfo(accessToken);
+
+        showClient(userInfoClient);
+        assertEquals(userInfoResponse.getStatus(), 200);
+        assertNotNull(userInfoResponse.getClaim(JwtClaimName.SUBJECT_IDENTIFIER));
+        assertNotNull(userInfoResponse.getClaim(JwtClaimName.NAME));
+    }
+
+    /**
+     * Fail: Register a client with Application Type <code>native</code> and Redirect URI with the schema HTTPS.
+     */
+    @Test(enabled = false)
+//allowed to register redirect_uris with custom schema to conform "OAuth 2.0 for Native Apps" spec
+    public void applicationTypeNativeFail1() throws Exception {
+        showTitle("applicationTypeNativeFail1");
+
+        final String redirectUris = "https://client.example.com/cb";
+
+        RegisterClient registerClient = new RegisterClient(registrationEndpoint);
+        RegisterResponse registerResponse = registerClient.execRegister(ApplicationType.NATIVE, "oxAuth test app",
+                StringUtils.spaceSeparatedToList(redirectUris));
+
+        showClient(registerClient);
+        assertEquals(registerResponse.getStatus(), 400, "Unexpected response code: " + registerResponse.getEntity());
+        assertNotNull(registerResponse.getEntity(), "The entity is null");
+        assertNotNull(registerResponse.getErrorType(), "The error type is null");
+        assertNotNull(registerResponse.getErrorDescription(), "The error description is null");
+    }
+
+    /**
+     * Fail: Register a client with Application Type <code>native</code> and Redirect URI with the host different than localhost.
+     */
+    @Parameters({"redirectUris"})
+    @Test(enabled = false)
+//allowed to register redirect_uris with custom schema to conform "OAuth 2.0 for Native Apps" spec
+    public void applicationTypeNativeFail2(final String redirectUris) throws Exception {
+        showTitle("applicationTypeNativeFail2");
+
+        RegisterClient registerClient = new RegisterClient(registrationEndpoint);
+        RegisterResponse registerResponse = registerClient.execRegister(ApplicationType.NATIVE, "oxAuth test app",
+                StringUtils.spaceSeparatedToList(redirectUris));
+
+        showClient(registerClient);
+        assertEquals(registerResponse.getStatus(), 400, "Unexpected response code: " + registerResponse.getEntity());
+        assertNotNull(registerResponse.getEntity(), "The entity is null");
+        assertNotNull(registerResponse.getErrorType(), "The error type is null");
+        assertNotNull(registerResponse.getErrorDescription(), "The error description is null");
+    }
+}
\ No newline at end of file
diff --git a/oxAuth/Client/src/test/java/org/gluu/oxauth/ws/rs/AuthorizationCodeFlowHttpTest.java b/oxAuth/Client/src/test/java/org/gluu/oxauth/ws/rs/AuthorizationCodeFlowHttpTest.java
new file mode 100644
index 00000000..f7696094
--- /dev/null
+++ b/oxAuth/Client/src/test/java/org/gluu/oxauth/ws/rs/AuthorizationCodeFlowHttpTest.java
@@ -0,0 +1,896 @@
+/*
+ * oxAuth is available under the MIT License (2008). See http://opensource.org/licenses/MIT for full text.
+ *
+ * Copyright (c) 2014, Gluu
+ */
+
+package org.gluu.oxauth.ws.rs;
+
+import static org.gluu.oxauth.model.register.RegisterRequestParam.APPLICATION_TYPE;
+import static org.gluu.oxauth.model.register.RegisterRequestParam.CLIENT_NAME;
+import static org.gluu.oxauth.model.register.RegisterRequestParam.ID_TOKEN_SIGNED_RESPONSE_ALG;
+import static org.gluu.oxauth.model.register.RegisterRequestParam.REDIRECT_URIS;
+import static org.gluu.oxauth.model.register.RegisterRequestParam.RESPONSE_TYPES;
+import static org.gluu.oxauth.model.register.RegisterRequestParam.SCOPE;
+import static org.testng.Assert.assertEquals;
+import static org.testng.Assert.assertNotNull;
+import static org.testng.Assert.assertNull;
+import static org.testng.Assert.assertTrue;
+
+import java.util.Arrays;
+import java.util.List;
+import java.util.UUID;
+
+import org.gluu.oxauth.BaseTest;
+import org.gluu.oxauth.client.Asserter;
+import org.gluu.oxauth.client.AuthorizationRequest;
+import org.gluu.oxauth.client.AuthorizationResponse;
+import org.gluu.oxauth.client.JwkClient;
+import org.gluu.oxauth.client.RegisterClient;
+import org.gluu.oxauth.client.RegisterRequest;
+import org.gluu.oxauth.client.RegisterResponse;
+import org.gluu.oxauth.client.TokenClient;
+import org.gluu.oxauth.client.TokenRequest;
+import org.gluu.oxauth.client.TokenResponse;
+import org.gluu.oxauth.client.UserInfoClient;
+import org.gluu.oxauth.client.UserInfoResponse;
+import org.gluu.oxauth.model.common.AuthenticationMethod;
+import org.gluu.oxauth.model.common.GrantType;
+import org.gluu.oxauth.model.common.ResponseType;
+import org.gluu.oxauth.model.common.SubjectType;
+import org.gluu.oxauth.model.crypto.signature.RSAPublicKey;
+import org.gluu.oxauth.model.crypto.signature.SignatureAlgorithm;
+import org.gluu.oxauth.model.jws.RSASigner;
+import org.gluu.oxauth.model.jwt.Jwt;
+import org.gluu.oxauth.model.jwt.JwtClaimName;
+import org.gluu.oxauth.model.jwt.JwtHeaderName;
+import org.gluu.oxauth.model.register.ApplicationType;
+import org.gluu.oxauth.model.util.StringUtils;
+import org.testng.annotations.Parameters;
+import org.testng.annotations.Test;
+
+/**
+ * Test cases for the authorization code flow (HTTP)
+ *
+ * @author Javier Rojas Blum
+ * @version May 14, 2019
+ */
+public class AuthorizationCodeFlowHttpTest extends BaseTest {
+
+    /**
+     * Test for the complete Authorization Code Flow.
+     */
+    @Parameters({"userId", "userSecret", "redirectUris", "redirectUri", "sectorIdentifierUri"})
+    @Test
+    public void authorizationCodeFlow(
+            final String userId, final String userSecret, final String redirectUris, final String redirectUri,
+            final String sectorIdentifierUri) throws Exception {
+        showTitle("authorizationCodeFlow");
+
+        List<ResponseType> responseTypes = Arrays.asList(
+                ResponseType.CODE,
+                ResponseType.ID_TOKEN);
+        List<String> scopes = Arrays.asList("openid", "profile", "address", "email", "phone", "user_name");
+
+        // 1. Register client
+        RegisterResponse registerResponse = registerClient(redirectUris, responseTypes, scopes, sectorIdentifierUri);
+
+        String clientId = registerResponse.getClientId();
+        String clientSecret = registerResponse.getClientSecret();
+
+        // 2. Request authorization and receive the authorization code.
+        String nonce = UUID.randomUUID().toString();
+        AuthorizationResponse authorizationResponse = requestAuthorization(userId, userSecret, redirectUri, responseTypes, scopes, clientId, nonce);
+
+        String scope = authorizationResponse.getScope();
+        String authorizationCode = authorizationResponse.getCode();
+        String idToken = authorizationResponse.getIdToken();
+
+        // 3. Request access token using the authorization code.
+        TokenRequest tokenRequest = new TokenRequest(GrantType.AUTHORIZATION_CODE);
+        tokenRequest.setCode(authorizationCode);
+        tokenRequest.setRedirectUri(redirectUri);
+        tokenRequest.setAuthUsername(clientId);
+        tokenRequest.setAuthPassword(clientSecret);
+        tokenRequest.setAuthenticationMethod(AuthenticationMethod.CLIENT_SECRET_BASIC);
+
+        TokenClient tokenClient1 = newTokenClient(tokenRequest);
+        tokenClient1.setRequest(tokenRequest);
+        TokenResponse tokenResponse1 = tokenClient1.exec();
+
+        showClient(tokenClient1);
+        assertEquals(tokenResponse1.getStatus(), 200, "Unexpected response code: " + tokenResponse1.getStatus());
+        assertNotNull(tokenResponse1.getEntity(), "The entity is null");
+        assertNotNull(tokenResponse1.getAccessToken(), "The access token is null");
+        assertNotNull(tokenResponse1.getExpiresIn(), "The expires in value is null");
+        assertNotNull(tokenResponse1.getTokenType(), "The token type is null");
+        assertNotNull(tokenResponse1.getRefreshToken(), "The refresh token is null");
+
+        String refreshToken = tokenResponse1.getRefreshToken();
+
+        // 4. Validate id_token
+        Jwt jwt = Jwt.parse(idToken);
+        Asserter.assertIdToken(jwt, JwtClaimName.CODE_HASH);
+
+        RSAPublicKey publicKey = JwkClient.getRSAPublicKey(
+                jwksUri,
+                jwt.getHeader().getClaimAsString(JwtHeaderName.KEY_ID), clientEngine(true));
+        RSASigner rsaSigner = new RSASigner(SignatureAlgorithm.RS256, publicKey);
+
+        assertTrue(rsaSigner.validate(jwt));
+
+        // 5. Request new access token using the refresh token.
+        TokenClient tokenClient2 = new TokenClient(tokenEndpoint);
+        tokenClient2.setExecutor(clientEngine(true));
+        TokenResponse tokenResponse2 = tokenClient2.execRefreshToken(scope, refreshToken, clientId, clientSecret);
+
+        showClient(tokenClient2);
+        assertEquals(tokenResponse2.getStatus(), 200, "Unexpected response code: " + tokenResponse2.getStatus());
+        assertNotNull(tokenResponse2.getEntity(), "The entity is null");
+        assertNotNull(tokenResponse2.getAccessToken(), "The access token is null");
+        assertNotNull(tokenResponse2.getTokenType(), "The token type is null");
+        assertNotNull(tokenResponse2.getRefreshToken(), "The refresh token is null");
+        assertNotNull(tokenResponse2.getScope(), "The scope is null");
+
+        String accessToken = tokenResponse2.getAccessToken();
+
+        // 6. Request user info
+        UserInfoClient userInfoClient = new UserInfoClient(userInfoEndpoint);
+        userInfoClient.setExecutor(clientEngine(true));
+        UserInfoResponse userInfoResponse = userInfoClient.execUserInfo(accessToken);
+
+        showClient(userInfoClient);
+        assertEquals(userInfoResponse.getStatus(), 200, "Unexpected response code: " + userInfoResponse.getStatus());
+        assertNotNull(userInfoResponse.getClaim(JwtClaimName.SUBJECT_IDENTIFIER));
+        assertNotNull(userInfoResponse.getClaim(JwtClaimName.NAME));
+        assertNotNull(userInfoResponse.getClaim(JwtClaimName.BIRTHDATE));
+        assertNotNull(userInfoResponse.getClaim(JwtClaimName.FAMILY_NAME));
+        assertNotNull(userInfoResponse.getClaim(JwtClaimName.GENDER));
+        assertNotNull(userInfoResponse.getClaim(JwtClaimName.GIVEN_NAME));
+        assertNotNull(userInfoResponse.getClaim(JwtClaimName.MIDDLE_NAME));
+        assertNotNull(userInfoResponse.getClaim(JwtClaimName.NICKNAME));
+        assertNotNull(userInfoResponse.getClaim(JwtClaimName.PICTURE));
+        assertNotNull(userInfoResponse.getClaim(JwtClaimName.PREFERRED_USERNAME));
+        assertNotNull(userInfoResponse.getClaim(JwtClaimName.PROFILE));
+        assertNotNull(userInfoResponse.getClaim(JwtClaimName.WEBSITE));
+        assertNotNull(userInfoResponse.getClaim(JwtClaimName.EMAIL));
+        assertNotNull(userInfoResponse.getClaim(JwtClaimName.EMAIL_VERIFIED));
+        assertNotNull(userInfoResponse.getClaim(JwtClaimName.PHONE_NUMBER));
+        assertNotNull(userInfoResponse.getClaim(JwtClaimName.PHONE_NUMBER_VERIFIED));
+        assertNotNull(userInfoResponse.getClaim(JwtClaimName.ADDRESS));
+        assertNotNull(userInfoResponse.getClaim(JwtClaimName.LOCALE));
+        assertNotNull(userInfoResponse.getClaim(JwtClaimName.ZONEINFO));
+        assertNotNull(userInfoResponse.getClaim(JwtClaimName.USER_NAME));
+        assertNull(userInfoResponse.getClaim("org_name"));
+        assertNull(userInfoResponse.getClaim("work_phone"));
+    }
+
+    /**
+     * Test for the complete Authorization Code Flow.
+     * Register just the openid scope.
+     * Request authorization with scopes openid, profile, address, email, phone, user_name.
+     * Expected result is just prompt the user to authorize openid scope.
+     */
+    @Parameters({"userId", "userSecret", "redirectUris", "redirectUri", "sectorIdentifierUri"})
+    @Test
+    public void authorizationCodeFlowNegativeTest(
+            final String userId, final String userSecret, final String redirectUris, final String redirectUri,
+            final String sectorIdentifierUri) throws Exception {
+        showTitle("authorizationCodeFlowNegativeTest");
+
+        List<ResponseType> responseTypes = Arrays.asList(
+                ResponseType.CODE,
+                ResponseType.ID_TOKEN);
+        List<String> registerScopes = Arrays.asList("openid");
+
+        // 1. Register client
+        RegisterResponse registerResponse = registerClient(redirectUris, responseTypes, registerScopes, sectorIdentifierUri);
+
+        assertTrue(registerResponse.getClaims().containsKey(SCOPE.toString()));
+        assertNotNull(registerResponse.getClaims().get(SCOPE.toString()));
+        assertEquals(registerResponse.getClaims().get(SCOPE.toString()), "openid");
+
+        String clientId = registerResponse.getClientId();
+        String clientSecret = registerResponse.getClientSecret();
+
+        // 2. Request authorization and receive the authorization code.
+        String nonce = UUID.randomUUID().toString();
+        List<String> scopes = Arrays.asList("openid", "profile", "address", "email", "phone", "user_name");
+        AuthorizationResponse authorizationResponse = requestAuthorization(userId, userSecret, redirectUri, responseTypes, scopes, clientId, nonce);
+
+        assertEquals(authorizationResponse.getScope(), "openid");
+
+        String scope = authorizationResponse.getScope();
+        String authorizationCode = authorizationResponse.getCode();
+        String idToken = authorizationResponse.getIdToken();
+
+        // 3. Request access token using the authorization code.
+        TokenRequest tokenRequest = new TokenRequest(GrantType.AUTHORIZATION_CODE);
+        tokenRequest.setCode(authorizationCode);
+        tokenRequest.setRedirectUri(redirectUri);
+        tokenRequest.setAuthUsername(clientId);
+        tokenRequest.setAuthPassword(clientSecret);
+        tokenRequest.setAuthenticationMethod(AuthenticationMethod.CLIENT_SECRET_BASIC);
+
+        TokenClient tokenClient1 = new TokenClient(tokenEndpoint);
+        tokenClient1.setRequest(tokenRequest);
+        TokenResponse tokenResponse1 = tokenClient1.exec();
+
+        showClient(tokenClient1);
+        assertEquals(tokenResponse1.getStatus(), 200, "Unexpected response code: " + tokenResponse1.getStatus());
+        assertNotNull(tokenResponse1.getEntity(), "The entity is null");
+        assertNotNull(tokenResponse1.getAccessToken(), "The access token is null");
+        assertNotNull(tokenResponse1.getExpiresIn(), "The expires in value is null");
+        assertNotNull(tokenResponse1.getTokenType(), "The token type is null");
+        assertNotNull(tokenResponse1.getRefreshToken(), "The refresh token is null");
+
+        String refreshToken = tokenResponse1.getRefreshToken();
+
+        // 4. Validate id_token
+        Jwt jwt = Jwt.parse(idToken);
+        assertNotNull(jwt.getHeader().getClaimAsString(JwtHeaderName.TYPE));
+        assertNotNull(jwt.getHeader().getClaimAsString(JwtHeaderName.ALGORITHM));
+        assertNotNull(jwt.getClaims().getClaimAsString(JwtClaimName.ISSUER));
+        assertNotNull(jwt.getClaims().getClaimAsString(JwtClaimName.AUDIENCE));
+        assertNotNull(jwt.getClaims().getClaimAsString(JwtClaimName.EXPIRATION_TIME));
+        assertNotNull(jwt.getClaims().getClaimAsString(JwtClaimName.ISSUED_AT));
+        assertNotNull(jwt.getClaims().getClaimAsString(JwtClaimName.SUBJECT_IDENTIFIER));
+        assertNotNull(jwt.getClaims().getClaimAsString(JwtClaimName.CODE_HASH));
+        assertNotNull(jwt.getClaims().getClaimAsString(JwtClaimName.AUTHENTICATION_TIME));
+        assertNotNull(jwt.getClaims().getClaimAsString(JwtClaimName.OX_OPENID_CONNECT_VERSION));
+
+        RSAPublicKey publicKey = JwkClient.getRSAPublicKey(
+                jwksUri,
+                jwt.getHeader().getClaimAsString(JwtHeaderName.KEY_ID));
+        RSASigner rsaSigner = new RSASigner(SignatureAlgorithm.RS256, publicKey);
+
+        assertTrue(rsaSigner.validate(jwt));
+
+        // 5. Request new access token using the refresh token.
+        TokenClient tokenClient2 = new TokenClient(tokenEndpoint);
+        TokenResponse tokenResponse2 = tokenClient2.execRefreshToken(scope, refreshToken, clientId, clientSecret);
+
+        showClient(tokenClient2);
+        assertEquals(tokenResponse2.getStatus(), 200, "Unexpected response code: " + tokenResponse2.getStatus());
+        assertNotNull(tokenResponse2.getEntity(), "The entity is null");
+        assertNotNull(tokenResponse2.getAccessToken(), "The access token is null");
+        assertNotNull(tokenResponse2.getTokenType(), "The token type is null");
+        assertNotNull(tokenResponse2.getRefreshToken(), "The refresh token is null");
+        assertNotNull(tokenResponse2.getScope(), "The scope is null");
+        assertEquals(tokenResponse2.getScope(), "openid");
+
+        String accessToken = tokenResponse2.getAccessToken();
+
+        // 6. Request user info
+        UserInfoClient userInfoClient = new UserInfoClient(userInfoEndpoint);
+        UserInfoResponse userInfoResponse = userInfoClient.execUserInfo(accessToken);
+
+        showClient(userInfoClient);
+        assertEquals(userInfoResponse.getStatus(), 200, "Unexpected response code: " + userInfoResponse.getStatus());
+        assertNotNull(userInfoResponse.getClaim(JwtClaimName.SUBJECT_IDENTIFIER));
+        assertNull(userInfoResponse.getClaim(JwtClaimName.NAME));
+        assertNull(userInfoResponse.getClaim(JwtClaimName.BIRTHDATE));
+        assertNull(userInfoResponse.getClaim(JwtClaimName.FAMILY_NAME));
+        assertNull(userInfoResponse.getClaim(JwtClaimName.GENDER));
+        assertNull(userInfoResponse.getClaim(JwtClaimName.GIVEN_NAME));
+        assertNull(userInfoResponse.getClaim(JwtClaimName.MIDDLE_NAME));
+        assertNull(userInfoResponse.getClaim(JwtClaimName.NICKNAME));
+        assertNull(userInfoResponse.getClaim(JwtClaimName.PICTURE));
+        assertNull(userInfoResponse.getClaim(JwtClaimName.PREFERRED_USERNAME));
+        assertNull(userInfoResponse.getClaim(JwtClaimName.PROFILE));
+        assertNull(userInfoResponse.getClaim(JwtClaimName.WEBSITE));
+        assertNull(userInfoResponse.getClaim(JwtClaimName.EMAIL));
+        assertNull(userInfoResponse.getClaim(JwtClaimName.EMAIL_VERIFIED));
+        assertNull(userInfoResponse.getClaim(JwtClaimName.PHONE_NUMBER));
+        assertNull(userInfoResponse.getClaim(JwtClaimName.PHONE_NUMBER_VERIFIED));
+        assertNull(userInfoResponse.getClaim(JwtClaimName.ADDRESS));
+        assertNull(userInfoResponse.getClaim(JwtClaimName.LOCALE));
+        assertNull(userInfoResponse.getClaim(JwtClaimName.ZONEINFO));
+        assertNull(userInfoResponse.getClaim(JwtClaimName.USER_NAME));
+        assertNull(userInfoResponse.getClaim("org_name"));
+        assertNull(userInfoResponse.getClaim("work_phone"));
+    }
+
+    @Parameters({"userId", "userSecret", "redirectUris", "redirectUri", "sectorIdentifierUri"})
+    @Test
+    public void authorizationCodeWithNotAllowedScopeFlow(
+            final String userId, final String userSecret, final String redirectUris, final String redirectUri,
+            final String sectorIdentifierUri) throws Exception {
+        showTitle("authorizationCodeWithNotAllowedScopeFlow");
+
+        List<ResponseType> responseTypes = Arrays.asList(
+                ResponseType.CODE,
+                ResponseType.ID_TOKEN);
+        List<String> scopes = Arrays.asList("openid", "profile", "address", "email", "user_name");
+
+        // 1. Register client
+        RegisterResponse registerResponse = registerClient(redirectUris, responseTypes, scopes, sectorIdentifierUri);
+
+        String clientId = registerResponse.getClientId();
+        String clientSecret = registerResponse.getClientSecret();
+
+        // 2. Request authorization and receive the authorization code.
+        List<String> authorizationScopes = Arrays.asList("openid", "profile", "address", "email", "user_name", "mobile_phone");
+        String nonce = UUID.randomUUID().toString();
+        AuthorizationResponse authorizationResponse = requestAuthorization(userId, userSecret, redirectUri, responseTypes, authorizationScopes, clientId, nonce);
+
+        String idToken = authorizationResponse.getIdToken();
+        String authorizationCode = authorizationResponse.getCode();
+
+        // 3. Validate id_token
+        Jwt jwt = Jwt.parse(idToken);
+        Asserter.assertIdToken(jwt, JwtClaimName.CODE_HASH);
+
+        // 4. Request access token
+        TokenRequest tokenRequest = new TokenRequest(GrantType.AUTHORIZATION_CODE);
+        tokenRequest.setCode(authorizationCode);
+        tokenRequest.setRedirectUri(redirectUri);
+        tokenRequest.setAuthUsername(clientId);
+        tokenRequest.setAuthPassword(clientSecret);
+        tokenRequest.setAuthenticationMethod(AuthenticationMethod.CLIENT_SECRET_BASIC);
+
+        TokenClient tokenClient = new TokenClient(tokenEndpoint);
+        tokenClient.setRequest(tokenRequest);
+        TokenResponse tokenResponse = tokenClient.exec();
+
+        showClient(tokenClient);
+        assertEquals(tokenResponse.getStatus(), 200, "Unexpected response code: " + tokenResponse.getStatus());
+        assertNotNull(tokenResponse.getEntity(), "The entity is null");
+        assertNotNull(tokenResponse.getAccessToken(), "The access token is null");
+        assertNotNull(tokenResponse.getTokenType(), "The token type is null");
+        assertNotNull(tokenResponse.getRefreshToken(), "The refresh token is null");
+
+        String accessToken = tokenResponse.getAccessToken();
+
+        // 5. Request user info
+        UserInfoClient userInfoClient = new UserInfoClient(userInfoEndpoint);
+        UserInfoResponse userInfoResponse = userInfoClient.execUserInfo(accessToken);
+
+        showClient(userInfoClient);
+        assertEquals(userInfoResponse.getStatus(), 200, "Unexpected response code: " + userInfoResponse.getStatus());
+        assertNotNull(userInfoResponse.getClaim(JwtClaimName.SUBJECT_IDENTIFIER));
+        assertNotNull(userInfoResponse.getClaim(JwtClaimName.NAME));
+        assertNotNull(userInfoResponse.getClaim("user_name"));
+        assertNull(userInfoResponse.getClaim("phone_mobile_number"));
+    }
+
+    @Parameters({"userId", "userSecret", "redirectUris", "redirectUri", "sectorIdentifierUri"})
+    @Test
+    public void authorizationCodeDynamicScopeFlow(
+            final String userId, final String userSecret, final String redirectUris, final String redirectUri,
+            final String sectorIdentifierUri) throws Exception {
+        showTitle("authorizationCodeDynamicScopeFlow");
+
+        List<ResponseType> responseTypes = Arrays.asList(
+                ResponseType.CODE,
+                ResponseType.ID_TOKEN);
+        List<String> scopes = Arrays.asList("openid", "profile", "address", "email", "user_name", "org_name", "work_phone");
+
+        // 1. Register client
+        RegisterResponse registerResponse = registerClient(redirectUris, responseTypes, scopes, sectorIdentifierUri);
+
+        String clientId = registerResponse.getClientId();
+        String clientSecret = registerResponse.getClientSecret();
+
+        // 2. Request authorization and receive the authorization code.
+        String nonce = UUID.randomUUID().toString();
+        AuthorizationResponse authorizationResponse = requestAuthorization(userId, userSecret, redirectUri, responseTypes, scopes, clientId, nonce);
+
+        String idToken = authorizationResponse.getIdToken();
+        String authorizationCode = authorizationResponse.getCode();
+
+        // 3. Validate id_token
+        Jwt jwt = Jwt.parse(idToken);
+        assertNotNull(jwt.getHeader().getClaimAsString(JwtHeaderName.TYPE));
+        assertNotNull(jwt.getHeader().getClaimAsString(JwtHeaderName.ALGORITHM));
+        assertNotNull(jwt.getClaims().getClaimAsString(JwtClaimName.ISSUER));
+        assertNotNull(jwt.getClaims().getClaimAsString(JwtClaimName.AUDIENCE));
+        assertNotNull(jwt.getClaims().getClaimAsString(JwtClaimName.EXPIRATION_TIME));
+        assertNotNull(jwt.getClaims().getClaimAsString(JwtClaimName.ISSUED_AT));
+        assertNotNull(jwt.getClaims().getClaimAsString(JwtClaimName.SUBJECT_IDENTIFIER));
+        assertNotNull(jwt.getClaims().getClaimAsString(JwtClaimName.CODE_HASH));
+        assertNotNull(jwt.getClaims().getClaimAsString(JwtClaimName.AUTHENTICATION_TIME));
+        assertNotNull(jwt.getClaims().getClaimAsString(JwtClaimName.OX_OPENID_CONNECT_VERSION));
+
+        // 4. Request access token
+        TokenRequest tokenRequest = new TokenRequest(GrantType.AUTHORIZATION_CODE);
+        tokenRequest.setCode(authorizationCode);
+        tokenRequest.setRedirectUri(redirectUri);
+        tokenRequest.setAuthUsername(clientId);
+        tokenRequest.setAuthPassword(clientSecret);
+        tokenRequest.setAuthenticationMethod(AuthenticationMethod.CLIENT_SECRET_BASIC);
+
+        TokenClient tokenClient = new TokenClient(tokenEndpoint);
+        tokenClient.setRequest(tokenRequest);
+        TokenResponse tokenResponse = tokenClient.exec();
+
+        showClient(tokenClient);
+        assertEquals(tokenResponse.getStatus(), 200, "Unexpected response code: " + tokenResponse.getStatus());
+        assertNotNull(tokenResponse.getEntity(), "The entity is null");
+        assertNotNull(tokenResponse.getAccessToken(), "The access token is null");
+        assertNotNull(tokenResponse.getTokenType(), "The token type is null");
+        assertNotNull(tokenResponse.getRefreshToken(), "The refresh token is null");
+
+        String accessToken = tokenResponse.getAccessToken();
+
+        // 5. Request user info
+        UserInfoClient userInfoClient = new UserInfoClient(userInfoEndpoint);
+        UserInfoResponse userInfoResponse = userInfoClient.execUserInfo(accessToken);
+
+        showClient(userInfoClient);
+        assertEquals(userInfoResponse.getStatus(), 200, "Unexpected response code: " + userInfoResponse.getStatus());
+        assertNotNull(userInfoResponse.getClaim(JwtClaimName.SUBJECT_IDENTIFIER));
+        assertNotNull(userInfoResponse.getClaim(JwtClaimName.NAME));
+        assertNotNull(userInfoResponse.getClaim("user_name"));
+        assertNotNull(userInfoResponse.getClaim("org_name"));
+        assertNotNull(userInfoResponse.getClaim("work_phone"));
+    }
+
+    @Parameters({"userId", "userSecret", "redirectUris", "redirectUri", "sectorIdentifierUri"})
+    @Test
+    public void authorizationCodeFlowWithOptionalNonce(
+            final String userId, final String userSecret, final String redirectUris, final String redirectUri,
+            final String sectorIdentifierUri) throws Exception {
+        showTitle("authorizationCodeFlowWithOptionalNonce");
+
+        List<ResponseType> responseTypes = Arrays.asList(
+                ResponseType.CODE,
+                ResponseType.ID_TOKEN);
+
+        // 1. Register client
+        RegisterRequest registerRequest = new RegisterRequest(ApplicationType.WEB, "oxAuth test app",
+                StringUtils.spaceSeparatedToList(redirectUris));
+        registerRequest.setResponseTypes(responseTypes);
+        registerRequest.setSectorIdentifierUri(sectorIdentifierUri);
+
+        RegisterClient registerClient = new RegisterClient(registrationEndpoint);
+        registerClient.setRequest(registerRequest);
+        RegisterResponse registerResponse = registerClient.exec();
+
+        showClient(registerClient);
+        assertEquals(registerResponse.getStatus(), 200, "Unexpected response code: " + registerResponse.getEntity());
+        assertNotNull(registerResponse.getClientId());
+        assertNotNull(registerResponse.getClientSecret());
+        assertNotNull(registerResponse.getRegistrationAccessToken());
+        assertNotNull(registerResponse.getClientIdIssuedAt());
+        assertNotNull(registerResponse.getClientSecretExpiresAt());
+
+        String clientId = registerResponse.getClientId();
+        String clientSecret = registerResponse.getClientSecret();
+
+        // 2. Request authorization and receive the authorization code.
+        List<String> scopes = Arrays.asList("openid", "profile", "address", "email");
+        String state = UUID.randomUUID().toString();
+
+        String nonce = UUID.randomUUID().toString();
+        AuthorizationRequest authorizationRequest = new AuthorizationRequest(responseTypes, clientId, scopes, redirectUri, nonce);
+        authorizationRequest.setState(state);
+
+        AuthorizationResponse authorizationResponse = authenticateResourceOwnerAndGrantAccess(
+                authorizationEndpoint, authorizationRequest, userId, userSecret);
+
+        assertNotNull(authorizationResponse.getLocation(), "The location is null");
+        assertNotNull(authorizationResponse.getCode(), "The authorization code is null");
+        assertNotNull(authorizationResponse.getState(), "The state is null");
+        assertNotNull(authorizationResponse.getScope(), "The scope is null");
+
+        String scope = authorizationResponse.getScope();
+        String authorizationCode = authorizationResponse.getCode();
+        String idToken = authorizationResponse.getIdToken();
+
+        // 3. Request access token using the authorization code.
+        TokenRequest tokenRequest = new TokenRequest(GrantType.AUTHORIZATION_CODE);
+        tokenRequest.setCode(authorizationCode);
+        tokenRequest.setRedirectUri(redirectUri);
+        tokenRequest.setAuthUsername(clientId);
+        tokenRequest.setAuthPassword(clientSecret);
+        tokenRequest.setAuthenticationMethod(AuthenticationMethod.CLIENT_SECRET_BASIC);
+
+        TokenClient tokenClient1 = new TokenClient(tokenEndpoint);
+        tokenClient1.setRequest(tokenRequest);
+        TokenResponse tokenResponse1 = tokenClient1.exec();
+
+        showClient(tokenClient1);
+        assertEquals(tokenResponse1.getStatus(), 200, "Unexpected response code: " + tokenResponse1.getStatus());
+        assertNotNull(tokenResponse1.getEntity(), "The entity is null");
+        assertNotNull(tokenResponse1.getAccessToken(), "The access token is null");
+        assertNotNull(tokenResponse1.getExpiresIn(), "The expires in value is null");
+        assertNotNull(tokenResponse1.getTokenType(), "The token type is null");
+        assertNotNull(tokenResponse1.getRefreshToken(), "The refresh token is null");
+
+        String refreshToken = tokenResponse1.getRefreshToken();
+
+        // 4. Validate id_token
+        Jwt jwt = Jwt.parse(idToken);
+
+        assertNotNull(jwt.getClaims().getClaimAsString(JwtClaimName.NONCE));
+        assertEquals(jwt.getClaims().getClaimAsString(JwtClaimName.NONCE), nonce);
+        assertNotNull(jwt.getHeader().getClaimAsString(JwtHeaderName.TYPE));
+        assertNotNull(jwt.getHeader().getClaimAsString(JwtHeaderName.ALGORITHM));
+        assertNotNull(jwt.getClaims().getClaimAsString(JwtClaimName.ISSUER));
+        assertNotNull(jwt.getClaims().getClaimAsString(JwtClaimName.AUDIENCE));
+        assertNotNull(jwt.getClaims().getClaimAsString(JwtClaimName.EXPIRATION_TIME));
+        assertNotNull(jwt.getClaims().getClaimAsString(JwtClaimName.ISSUED_AT));
+        assertNotNull(jwt.getClaims().getClaimAsString(JwtClaimName.SUBJECT_IDENTIFIER));
+        assertNotNull(jwt.getClaims().getClaimAsString(JwtClaimName.CODE_HASH));
+        assertNotNull(jwt.getClaims().getClaimAsString(JwtClaimName.AUTHENTICATION_TIME));
+        assertNotNull(jwt.getClaims().getClaimAsString(JwtClaimName.OX_OPENID_CONNECT_VERSION));
+
+        RSAPublicKey publicKey = JwkClient.getRSAPublicKey(
+                jwksUri,
+                jwt.getHeader().getClaimAsString(JwtHeaderName.KEY_ID));
+        RSASigner rsaSigner = new RSASigner(SignatureAlgorithm.RS256, publicKey);
+
+        assertTrue(rsaSigner.validate(jwt));
+
+        // 5. Request new access token using the refresh token.
+        TokenClient tokenClient2 = new TokenClient(tokenEndpoint);
+        TokenResponse tokenResponse2 = tokenClient2.execRefreshToken(scope, refreshToken, clientId, clientSecret);
+
+        showClient(tokenClient2);
+        assertEquals(tokenResponse2.getStatus(), 200, "Unexpected response code: " + tokenResponse2.getStatus());
+        assertNotNull(tokenResponse2.getEntity(), "The entity is null");
+        assertNotNull(tokenResponse2.getAccessToken(), "The access token is null");
+        assertNotNull(tokenResponse2.getTokenType(), "The token type is null");
+        assertNotNull(tokenResponse2.getRefreshToken(), "The refresh token is null");
+        assertNotNull(tokenResponse2.getScope(), "The scope is null");
+    }
+
+    /**
+     * When an authorization code is used more than once, all the tokens issued
+     * for that authorization code must be revoked.
+     */
+    @Parameters({"userId", "userSecret", "redirectUris", "redirectUri", "sectorIdentifierUri"})
+    @Test
+    public void revokeTokens(final String userId, final String userSecret, final String redirectUris,
+                             final String redirectUri, final String sectorIdentifierUri) throws Exception {
+        showTitle("revokeTokens");
+
+        List<ResponseType> responseTypes = Arrays.asList(
+                ResponseType.CODE,
+                ResponseType.ID_TOKEN);
+
+        // 1. Register client
+        RegisterRequest registerRequest = new RegisterRequest(ApplicationType.WEB, "oxAuth test app",
+                StringUtils.spaceSeparatedToList(redirectUris));
+        registerRequest.setResponseTypes(responseTypes);
+        registerRequest.setSectorIdentifierUri(sectorIdentifierUri);
+
+        RegisterClient registerClient = new RegisterClient(registrationEndpoint);
+        registerClient.setRequest(registerRequest);
+        RegisterResponse registerResponse = registerClient.exec();
+
+        showClient(registerClient);
+        assertEquals(registerResponse.getStatus(), 200, "Unexpected response code: " + registerResponse.getEntity());
+        assertNotNull(registerResponse.getClientId());
+        assertNotNull(registerResponse.getClientSecret());
+        assertNotNull(registerResponse.getRegistrationAccessToken());
+        assertNotNull(registerResponse.getClientIdIssuedAt());
+        assertNotNull(registerResponse.getClientSecretExpiresAt());
+
+        String clientId = registerResponse.getClientId();
+        String clientSecret = registerResponse.getClientSecret();
+        String registrationAccessToken = registerResponse.getRegistrationAccessToken();
+        String registrationClientUri = registerResponse.getRegistrationClientUri();
+
+        // 2. Client read
+        RegisterRequest readClientRequest = new RegisterRequest(registrationAccessToken);
+
+        RegisterClient readClient = new RegisterClient(registrationClientUri);
+        readClient.setRequest(readClientRequest);
+        RegisterResponse readClientResponse = readClient.exec();
+
+        showClient(readClient);
+        assertEquals(readClientResponse.getStatus(), 200, "Unexpected response code: " + readClientResponse.getEntity());
+        assertNotNull(readClientResponse.getClientId());
+        assertNotNull(readClientResponse.getClientSecret());
+        assertNotNull(readClientResponse.getClientIdIssuedAt());
+        assertNotNull(readClientResponse.getClientSecretExpiresAt());
+
+        assertNotNull(readClientResponse.getClaims().get(RESPONSE_TYPES.toString()));
+        assertNotNull(readClientResponse.getClaims().get(REDIRECT_URIS.toString()));
+        assertNotNull(readClientResponse.getClaims().get(APPLICATION_TYPE.toString()));
+        assertNotNull(readClientResponse.getClaims().get(CLIENT_NAME.toString()));
+        assertNotNull(readClientResponse.getClaims().get(ID_TOKEN_SIGNED_RESPONSE_ALG.toString()));
+        assertNotNull(readClientResponse.getClaims().get(SCOPE.toString()));
+
+        // 3. Request authorization and receive the authorization code.
+        List<String> scopes = Arrays.asList("openid", "profile", "address", "email");
+        String state = UUID.randomUUID().toString();
+        String nonce = UUID.randomUUID().toString();
+
+        AuthorizationRequest authorizationRequest = new AuthorizationRequest(responseTypes, clientId, scopes, redirectUri, nonce);
+        authorizationRequest.setState(state);
+
+        AuthorizationResponse authorizationResponse = authenticateResourceOwnerAndGrantAccess(
+                authorizationEndpoint, authorizationRequest, userId, userSecret);
+
+        assertNotNull(authorizationResponse.getLocation(), "The location is null");
+        assertNotNull(authorizationResponse.getCode(), "The authorization code is null");
+        assertNotNull(authorizationResponse.getState(), "The state is null");
+        assertNotNull(authorizationResponse.getScope(), "The scope is null");
+        assertNotNull(authorizationResponse.getIdToken(), "The id token is null");
+
+        String scope = authorizationResponse.getScope();
+        String authorizationCode = authorizationResponse.getCode();
+        String idToken = authorizationResponse.getIdToken();
+
+        // 4. Validate id_token
+        Jwt jwt = Jwt.parse(idToken);
+        assertNotNull(jwt.getHeader().getClaimAsString(JwtHeaderName.TYPE));
+        assertNotNull(jwt.getHeader().getClaimAsString(JwtHeaderName.ALGORITHM));
+        assertNotNull(jwt.getClaims().getClaimAsString(JwtClaimName.ISSUER));
+        assertNotNull(jwt.getClaims().getClaimAsString(JwtClaimName.AUDIENCE));
+        assertNotNull(jwt.getClaims().getClaimAsString(JwtClaimName.EXPIRATION_TIME));
+        assertNotNull(jwt.getClaims().getClaimAsString(JwtClaimName.ISSUED_AT));
+        assertNotNull(jwt.getClaims().getClaimAsString(JwtClaimName.SUBJECT_IDENTIFIER));
+        assertNotNull(jwt.getClaims().getClaimAsString(JwtClaimName.CODE_HASH));
+        assertNotNull(jwt.getClaims().getClaimAsString(JwtClaimName.AUTHENTICATION_TIME));
+
+        RSAPublicKey publicKey = JwkClient.getRSAPublicKey(
+                jwksUri,
+                jwt.getHeader().getClaimAsString(JwtHeaderName.KEY_ID));
+        RSASigner rsaSigner = new RSASigner(SignatureAlgorithm.RS256, publicKey);
+
+        assertTrue(rsaSigner.validate(jwt));
+
+        // 5. Request access token using the authorization code.
+        TokenClient tokenClient1 = new TokenClient(tokenEndpoint);
+        TokenResponse response2 = tokenClient1.execAuthorizationCode(authorizationCode, redirectUri,
+                clientId, clientSecret);
+
+        showClient(tokenClient1);
+        assertEquals(response2.getStatus(), 200, "Unexpected response code: " + response2.getStatus());
+        assertNotNull(response2.getEntity(), "The entity is null");
+        assertNotNull(response2.getAccessToken(), "The access token is null");
+        assertNotNull(response2.getTokenType(), "The token type is null");
+        assertNotNull(response2.getRefreshToken(), "The refresh token is null");
+
+        String accessToken = response2.getAccessToken();
+        String refreshToken = response2.getRefreshToken();
+
+        // 6. Request access token using the same authorization code one more time. This call must fail.
+        TokenClient tokenClient2 = new TokenClient(tokenEndpoint);
+        TokenResponse response4 = tokenClient2.execAuthorizationCode(authorizationCode, redirectUri,
+                clientId, clientSecret);
+
+        showClient(tokenClient2);
+        assertEquals(response4.getStatus(), 400, "Unexpected response code: " + response4.getStatus());
+        assertNotNull(response4.getEntity(), "The entity is null");
+        assertNotNull(response4.getErrorType(), "The error type is null");
+        assertNotNull(response4.getErrorDescription(), "The error description is null");
+
+        // 7. Request new access token using the refresh token. This call must fail too.
+        TokenClient tokenClient3 = new TokenClient(tokenEndpoint);
+        TokenResponse response5 = tokenClient3.execRefreshToken(scope, refreshToken, clientId, clientSecret);
+
+        showClient(tokenClient3);
+        assertEquals(response5.getStatus(), 400, "Unexpected response code: " + response5.getStatus());
+        assertNotNull(response5.getEntity(), "The entity is null");
+        assertNotNull(response5.getErrorType(), "The error type is null");
+        assertNotNull(response5.getErrorDescription(), "The error description is null");
+
+        // 8. Request user info should fail
+        UserInfoClient userInfoClient = new UserInfoClient(userInfoEndpoint);
+        UserInfoResponse response7 = userInfoClient.execUserInfo(accessToken);
+
+        showClient(userInfoClient);
+        assertEquals(response7.getStatus(), 401, "Unexpected response code: " + response7.getStatus());
+        assertNotNull(response7.getErrorType(), "Unexpected result: errorType not found");
+        assertNotNull(response7.getErrorDescription(), "Unexpected result: errorDescription not found");
+    }
+
+    @Parameters({"userId", "userSecret", "redirectUris", "redirectUri", "sectorIdentifierUri"})
+    @Test
+    public void authorizationCodeFlowLoginHint(
+            final String userId, final String userSecret, final String redirectUris, final String redirectUri,
+            final String sectorIdentifierUri) throws Exception {
+        showTitle("authorizationCodeFlowLoginHint");
+
+        List<ResponseType> responseTypes = Arrays.asList(
+                ResponseType.CODE,
+                ResponseType.ID_TOKEN);
+        List<String> scopes = Arrays.asList("openid", "profile", "address", "email", "user_name");
+
+        // 1. Register client
+        RegisterResponse registerResponse = registerClient(redirectUris, responseTypes, scopes, sectorIdentifierUri);
+
+        String clientId = registerResponse.getClientId();
+        String clientSecret = registerResponse.getClientSecret();
+
+        // 2. Request authorization and receive the authorization code.
+        String nonce = UUID.randomUUID().toString();
+        String state = UUID.randomUUID().toString();
+
+        AuthorizationRequest authorizationRequest = new AuthorizationRequest(responseTypes, clientId, scopes, redirectUri, nonce);
+        authorizationRequest.setLoginHint(userId);
+        authorizationRequest.setState(state);
+
+        AuthorizationResponse authorizationResponse = authenticateResourceOwnerAndGrantAccess(
+                authorizationEndpoint, authorizationRequest, userId, userSecret); // put userId explicitly, window.onload function result is not same as in browser (tested with chrome and FF)
+
+        assertNotNull(authorizationResponse.getLocation(), "The location is null");
+        assertNotNull(authorizationResponse.getCode(), "The authorization code is null");
+        assertNotNull(authorizationResponse.getState(), "The state is null");
+        assertNotNull(authorizationResponse.getScope(), "The scope is null");
+
+        String scope = authorizationResponse.getScope();
+        String authorizationCode = authorizationResponse.getCode();
+        String idToken = authorizationResponse.getIdToken();
+
+        // 3. Request access token using the authorization code.
+        TokenRequest tokenRequest = new TokenRequest(GrantType.AUTHORIZATION_CODE);
+        tokenRequest.setCode(authorizationCode);
+        tokenRequest.setRedirectUri(redirectUri);
+        tokenRequest.setAuthUsername(clientId);
+        tokenRequest.setAuthPassword(clientSecret);
+        tokenRequest.setAuthenticationMethod(AuthenticationMethod.CLIENT_SECRET_BASIC);
+
+        TokenClient tokenClient1 = new TokenClient(tokenEndpoint);
+        tokenClient1.setRequest(tokenRequest);
+        TokenResponse tokenResponse1 = tokenClient1.exec();
+
+        showClient(tokenClient1);
+        assertEquals(tokenResponse1.getStatus(), 200, "Unexpected response code: " + tokenResponse1.getStatus());
+        assertNotNull(tokenResponse1.getEntity(), "The entity is null");
+        assertNotNull(tokenResponse1.getAccessToken(), "The access token is null");
+        assertNotNull(tokenResponse1.getExpiresIn(), "The expires in value is null");
+        assertNotNull(tokenResponse1.getTokenType(), "The token type is null");
+        assertNotNull(tokenResponse1.getRefreshToken(), "The refresh token is null");
+
+        String refreshToken = tokenResponse1.getRefreshToken();
+
+        // 4. Validate id_token
+        Jwt jwt = Jwt.parse(idToken);
+        assertNotNull(jwt.getHeader().getClaimAsString(JwtHeaderName.TYPE));
+        assertNotNull(jwt.getHeader().getClaimAsString(JwtHeaderName.ALGORITHM));
+        assertNotNull(jwt.getClaims().getClaimAsString(JwtClaimName.ISSUER));
+        assertNotNull(jwt.getClaims().getClaimAsString(JwtClaimName.AUDIENCE));
+        assertNotNull(jwt.getClaims().getClaimAsString(JwtClaimName.EXPIRATION_TIME));
+        assertNotNull(jwt.getClaims().getClaimAsString(JwtClaimName.ISSUED_AT));
+        assertNotNull(jwt.getClaims().getClaimAsString(JwtClaimName.SUBJECT_IDENTIFIER));
+        assertNotNull(jwt.getClaims().getClaimAsString(JwtClaimName.CODE_HASH));
+        assertNotNull(jwt.getClaims().getClaimAsString(JwtClaimName.AUTHENTICATION_TIME));
+        assertNotNull(jwt.getClaims().getClaimAsString(JwtClaimName.OX_OPENID_CONNECT_VERSION));
+
+        RSAPublicKey publicKey = JwkClient.getRSAPublicKey(
+                jwksUri,
+                jwt.getHeader().getClaimAsString(JwtHeaderName.KEY_ID));
+        RSASigner rsaSigner = new RSASigner(SignatureAlgorithm.RS256, publicKey);
+
+        assertTrue(rsaSigner.validate(jwt));
+
+        // 5. Request new access token using the refresh token.
+        TokenClient tokenClient2 = new TokenClient(tokenEndpoint);
+        TokenResponse tokenResponse2 = tokenClient2.execRefreshToken(scope, refreshToken, clientId, clientSecret);
+
+        showClient(tokenClient2);
+        assertEquals(tokenResponse2.getStatus(), 200, "Unexpected response code: " + tokenResponse2.getStatus());
+        assertNotNull(tokenResponse2.getEntity(), "The entity is null");
+        assertNotNull(tokenResponse2.getAccessToken(), "The access token is null");
+        assertNotNull(tokenResponse2.getTokenType(), "The token type is null");
+        assertNotNull(tokenResponse2.getRefreshToken(), "The refresh token is null");
+        assertNotNull(tokenResponse2.getScope(), "The scope is null");
+
+        String accessToken = tokenResponse2.getAccessToken();
+
+        // 6. Request user info
+        UserInfoClient userInfoClient = new UserInfoClient(userInfoEndpoint);
+        UserInfoResponse userInfoResponse = userInfoClient.execUserInfo(accessToken);
+
+        showClient(userInfoClient);
+        assertEquals(userInfoResponse.getStatus(), 200, "Unexpected response code: " + userInfoResponse.getStatus());
+        assertNotNull(userInfoResponse.getClaim(JwtClaimName.SUBJECT_IDENTIFIER));
+        assertNotNull(userInfoResponse.getClaim(JwtClaimName.NAME));
+        assertNotNull(userInfoResponse.getClaim("user_name"));
+        assertNull(userInfoResponse.getClaim("org_name"));
+        assertNull(userInfoResponse.getClaim("work_phone"));
+    }
+
+    private AuthorizationResponse requestAuthorization(final String userId, final String userSecret, final String redirectUri,
+                                                       List<ResponseType> responseTypes, List<String> scopes, String clientId, String nonce) {
+        String state = UUID.randomUUID().toString();
+
+        AuthorizationRequest authorizationRequest = new AuthorizationRequest(responseTypes, clientId, scopes, redirectUri, nonce);
+        authorizationRequest.setState(state);
+
+        AuthorizationResponse authorizationResponse = authenticateResourceOwnerAndGrantAccess(
+                authorizationEndpoint, authorizationRequest, userId, userSecret);
+
+        assertNotNull(authorizationResponse.getLocation(), "The location is null");
+        assertNotNull(authorizationResponse.getCode(), "The authorization code is null");
+        assertNotNull(authorizationResponse.getState(), "The state is null");
+        assertNotNull(authorizationResponse.getScope(), "The scope is null");
+        return authorizationResponse;
+    }
+
+    private RegisterResponse registerClient(
+            final String redirectUris, List<ResponseType> responseTypes, List<String> scopes, String sectorIdentifierUri) {
+        RegisterRequest registerRequest = new RegisterRequest(ApplicationType.WEB, "oxAuth test app",
+                StringUtils.spaceSeparatedToList(redirectUris));
+        registerRequest.setResponseTypes(responseTypes);
+        registerRequest.setScope(scopes);
+        registerRequest.setSubjectType(SubjectType.PAIRWISE);
+        registerRequest.setSectorIdentifierUri(sectorIdentifierUri);
+
+        RegisterClient registerClient = newRegisterClient(registerRequest);
+        RegisterResponse registerResponse = registerClient.exec();
+
+        showClient(registerClient);
+        assertEquals(registerResponse.getStatus(), 200, "Unexpected response code: " + registerResponse.getEntity());
+        assertNotNull(registerResponse.getClientId());
+        assertNotNull(registerResponse.getClientSecret());
+        assertNotNull(registerResponse.getRegistrationAccessToken());
+        assertNotNull(registerResponse.getClientIdIssuedAt());
+        assertNotNull(registerResponse.getClientSecretExpiresAt());
+        return registerResponse;
+    }
+
+    @Parameters({"userId", "userSecret", "redirectUri"})
+    @Test(enabled = false) // retain claims script has to be enabled and client pre-configured (not avaiable in test suite)
+    public void retainClaimAuthorizationCodeFlow(final String userId, final String userSecret, final String redirectUri) throws Exception {
+        showTitle("authorizationCodeFlow");
+
+        List<ResponseType> responseTypes = Arrays.asList(
+                ResponseType.CODE,
+                ResponseType.ID_TOKEN);
+        List<String> scopes = Arrays.asList("openid", "profile", "address", "email", "phone", "user_name");
+
+        String clientId = "0008-525a95a3-5fe1-4ecf-878c-06f438e3f500";
+        String clientSecret = "V9RKUZOtfk92";//registerResponse.getClientSecret();
+
+        // 2. Request authorization and receive the authorization code.
+        String nonce = UUID.randomUUID().toString();
+        AuthorizationResponse authorizationResponse = requestAuthorization(userId, userSecret, redirectUri, responseTypes, scopes, clientId, nonce);
+
+        String scope = authorizationResponse.getScope();
+        String authorizationCode = authorizationResponse.getCode();
+        String idToken = authorizationResponse.getIdToken();
+
+        // 3. Request access token using the authorization code.
+        TokenRequest tokenRequest = new TokenRequest(GrantType.AUTHORIZATION_CODE);
+        tokenRequest.setCode(authorizationCode);
+        tokenRequest.setRedirectUri(redirectUri);
+        tokenRequest.setAuthUsername(clientId);
+        tokenRequest.setAuthPassword(clientSecret);
+        tokenRequest.setAuthenticationMethod(AuthenticationMethod.CLIENT_SECRET_BASIC);
+
+        TokenClient tokenClient1 = newTokenClient(tokenRequest);
+        tokenClient1.setRequest(tokenRequest);
+        TokenResponse tokenResponse1 = tokenClient1.exec();
+
+        showClient(tokenClient1);
+        assertEquals(tokenResponse1.getStatus(), 200, "Unexpected response code: " + tokenResponse1.getStatus());
+        assertNotNull(tokenResponse1.getEntity(), "The entity is null");
+        assertNotNull(tokenResponse1.getAccessToken(), "The access token is null");
+        assertNotNull(tokenResponse1.getExpiresIn(), "The expires in value is null");
+        assertNotNull(tokenResponse1.getTokenType(), "The token type is null");
+        assertNotNull(tokenResponse1.getRefreshToken(), "The refresh token is null");
+
+        String refreshToken = tokenResponse1.getRefreshToken();
+
+        // 4. Validate id_token
+        Jwt jwt = Jwt.parse(idToken);
+        Asserter.assertIdToken(jwt, JwtClaimName.CODE_HASH);
+
+        // 5. Request new access token using the refresh token.
+        TokenClient tokenClient2 = new TokenClient(tokenEndpoint);
+        tokenClient2.setExecutor(clientEngine(true));
+        TokenResponse tokenResponse2 = tokenClient2.execRefreshToken(scope, refreshToken, clientId, clientSecret);
+
+        showClient(tokenClient2);
+        assertEquals(tokenResponse2.getStatus(), 200, "Unexpected response code: " + tokenResponse2.getStatus());
+        assertNotNull(tokenResponse2.getEntity(), "The entity is null");
+        assertNotNull(tokenResponse2.getAccessToken(), "The access token is null");
+        assertNotNull(tokenResponse2.getTokenType(), "The token type is null");
+        assertNotNull(tokenResponse2.getRefreshToken(), "The refresh token is null");
+        assertNotNull(tokenResponse2.getScope(), "The scope is null");
+
+        String accessToken = tokenResponse2.getAccessToken();
+        System.out.println("AT2: " + accessToken);
+
+        Jwt at2Jwt = Jwt.parse(accessToken);
+        System.out.println("AT2 claims: " + at2Jwt.getClaims().toJsonString());
+    }
+
+}
\ No newline at end of file
diff --git a/oxAuth/Client/src/test/java/org/gluu/oxauth/ws/rs/AuthorizationResponseCustomHeaderTest.java b/oxAuth/Client/src/test/java/org/gluu/oxauth/ws/rs/AuthorizationResponseCustomHeaderTest.java
new file mode 100644
index 00000000..731ffd93
--- /dev/null
+++ b/oxAuth/Client/src/test/java/org/gluu/oxauth/ws/rs/AuthorizationResponseCustomHeaderTest.java
@@ -0,0 +1,115 @@
+/*
+ * oxAuth is available under the MIT License (2008). See http://opensource.org/licenses/MIT for full text.
+ *
+ * Copyright (c) 2014, Gluu
+ */
+package org.gluu.oxauth.ws.rs;
+
+import static org.testng.Assert.assertEquals;
+import static org.testng.Assert.assertNotNull;
+import static org.testng.Assert.assertTrue;
+
+import java.util.Arrays;
+import java.util.HashMap;
+import java.util.List;
+import java.util.Map;
+import java.util.UUID;
+
+import org.gluu.oxauth.BaseTest;
+import org.gluu.oxauth.client.AuthorizationRequest;
+import org.gluu.oxauth.client.AuthorizationResponse;
+import org.gluu.oxauth.client.AuthorizeClient;
+import org.gluu.oxauth.client.RegisterClient;
+import org.gluu.oxauth.client.RegisterRequest;
+import org.gluu.oxauth.client.RegisterResponse;
+import org.gluu.oxauth.model.common.Prompt;
+import org.gluu.oxauth.model.common.ResponseType;
+import org.gluu.oxauth.model.register.ApplicationType;
+import org.gluu.oxauth.model.util.StringUtils;
+import org.testng.ITestContext;
+import org.testng.annotations.DataProvider;
+import org.testng.annotations.Test;
+
+/**
+ * @author Javier Rojas Blum
+ * @version December 26, 2016
+ */
+public class AuthorizationResponseCustomHeaderTest extends BaseTest {
+
+    @Test(dataProvider = "requestAuthorizationCustomHeaderDataProvider")
+    public void requestAuthorizationCustomHeader(
+            final List<ResponseType> responseTypes, final String userId, final String userSecret,
+            final String redirectUris, final String redirectUri, final String sectorIdentifierUri) throws Exception {
+        showTitle("AuthorizationResponseCustomHeaderTest");
+
+        // 1. Register client
+        RegisterRequest registerRequest = new RegisterRequest(ApplicationType.WEB, "oxAuth test app",
+                StringUtils.spaceSeparatedToList(redirectUris));
+        registerRequest.setResponseTypes(responseTypes);
+        registerRequest.addCustomAttribute("oxAuthTrustedClient", "true");
+        registerRequest.setSectorIdentifierUri(sectorIdentifierUri);
+
+        RegisterClient registerClient = new RegisterClient(registrationEndpoint);
+        registerClient.setRequest(registerRequest);
+        RegisterResponse registerResponse = registerClient.exec();
+
+        showClient(registerClient);
+        assertEquals(registerResponse.getStatus(), 200, "Unexpected response code: " + registerResponse.getEntity());
+        assertNotNull(registerResponse.getClientId());
+        assertNotNull(registerResponse.getClientSecret());
+        assertNotNull(registerResponse.getRegistrationAccessToken());
+        assertNotNull(registerResponse.getClientIdIssuedAt());
+        assertNotNull(registerResponse.getClientSecretExpiresAt());
+
+        String clientId = registerResponse.getClientId();
+
+        // 2. Request authorization and receive the authorization code.
+        List<String> scopes = Arrays.asList("openid", "profile", "address", "email");
+        String state = UUID.randomUUID().toString();
+        String nonce = UUID.randomUUID().toString();
+
+        Map<String, String> customResponseHeaders = new HashMap<String, String>();
+        customResponseHeaders.put("CustomHeader1", "custom_header_value_1");
+        customResponseHeaders.put("CustomHeader2", "custom_header_value_2");
+        customResponseHeaders.put("CustomHeader3", "custom_header_value_3");
+
+        AuthorizationRequest authorizationRequest = new AuthorizationRequest(responseTypes, clientId, scopes, redirectUri, nonce);
+        authorizationRequest.setState(state);
+        authorizationRequest.setAuthUsername(userId);
+        authorizationRequest.setAuthPassword(userSecret);
+        authorizationRequest.getPrompts().add(Prompt.NONE);
+        authorizationRequest.setCustomResponseHeaders(customResponseHeaders);
+
+        AuthorizeClient authorizeClient = new AuthorizeClient(authorizationEndpoint);
+        authorizeClient.setRequest(authorizationRequest);
+        AuthorizationResponse authorizationResponse = authorizeClient.exec();
+
+        showClient(authorizeClient);
+        assertEquals(authorizationResponse.getStatus(), 302);
+        assertNotNull(authorizationResponse.getLocation(), "The location is null");
+        assertNotNull(authorizationResponse.getState(), "The state is null");
+        assertNotNull(authorizationResponse.getHeaders());
+        assertTrue(authorizationResponse.getHeaders().containsKey("CustomHeader1"));
+        assertTrue(authorizationResponse.getHeaders().containsKey("CustomHeader2"));
+        assertTrue(authorizationResponse.getHeaders().containsKey("CustomHeader3"));
+    }
+
+    @DataProvider(name = "requestAuthorizationCustomHeaderDataProvider")
+    public Object[][] omittedResponseTypesFailDataProvider(ITestContext context) {
+        String userId = context.getCurrentXmlTest().getParameter("userId");
+        String userSecret = context.getCurrentXmlTest().getParameter("userSecret");
+        String redirectUris = context.getCurrentXmlTest().getParameter("redirectUris");
+        String redirectUri = context.getCurrentXmlTest().getParameter("redirectUri");
+        String sectorIdentifierUri = context.getCurrentXmlTest().getParameter("sectorIdentifierUri");
+
+        return new Object[][]{
+                {Arrays.asList(ResponseType.CODE), userId, userSecret, redirectUris, redirectUri, sectorIdentifierUri},
+                {Arrays.asList(ResponseType.TOKEN), userId, userSecret, redirectUris, redirectUri, sectorIdentifierUri},
+                {Arrays.asList(ResponseType.ID_TOKEN), userId, userSecret, redirectUris, redirectUri, sectorIdentifierUri},
+                {Arrays.asList(ResponseType.CODE, ResponseType.TOKEN), userId, userSecret, redirectUris, redirectUri, sectorIdentifierUri},
+                {Arrays.asList(ResponseType.CODE, ResponseType.ID_TOKEN), userId, userSecret, redirectUris, redirectUri, sectorIdentifierUri},
+                {Arrays.asList(ResponseType.TOKEN, ResponseType.ID_TOKEN), userId, userSecret, redirectUris, redirectUri, sectorIdentifierUri},
+                {Arrays.asList(ResponseType.CODE, ResponseType.TOKEN, ResponseType.ID_TOKEN), userId, userSecret, redirectUris, redirectUri, sectorIdentifierUri},
+        };
+    }
+}
diff --git a/oxAuth/Client/src/test/java/org/gluu/oxauth/ws/rs/AuthorizationResponseModeHttpTest.java b/oxAuth/Client/src/test/java/org/gluu/oxauth/ws/rs/AuthorizationResponseModeHttpTest.java
new file mode 100644
index 00000000..0814da79
--- /dev/null
+++ b/oxAuth/Client/src/test/java/org/gluu/oxauth/ws/rs/AuthorizationResponseModeHttpTest.java
@@ -0,0 +1,1149 @@
+/*
+ * oxAuth is available under the MIT License (2008). See http://opensource.org/licenses/MIT for full text.
+ *
+ * Copyright (c) 2014, Gluu
+ */
+
+package org.gluu.oxauth.ws.rs;
+
+import static org.testng.Assert.assertEquals;
+import static org.testng.Assert.assertNotNull;
+
+import java.util.Arrays;
+import java.util.List;
+import java.util.UUID;
+
+import org.gluu.oxauth.BaseTest;
+import org.gluu.oxauth.client.AuthorizationRequest;
+import org.gluu.oxauth.client.AuthorizationResponse;
+import org.gluu.oxauth.client.RegisterClient;
+import org.gluu.oxauth.client.RegisterRequest;
+import org.gluu.oxauth.client.RegisterResponse;
+import org.gluu.oxauth.model.common.ResponseMode;
+import org.gluu.oxauth.model.common.ResponseType;
+import org.gluu.oxauth.model.register.ApplicationType;
+import org.gluu.oxauth.model.util.StringUtils;
+import org.testng.annotations.Parameters;
+import org.testng.annotations.Test;
+
+/**
+ * @author Javier Rojas Blum
+ * @version November 2, 2016
+ */
+public class AuthorizationResponseModeHttpTest extends BaseTest {
+
+    @Parameters({"userId", "userSecret", "redirectUris", "redirectUri", "sectorIdentifierUri"})
+    @Test
+    public void defaultResponseModeBasicCode(
+            final String userId, final String userSecret, final String redirectUris, final String redirectUri,
+            final String sectorIdentifierUri) throws Exception {
+        showTitle("defaultResponseModeBasicCode");
+
+        List<ResponseType> responseTypes = Arrays.asList(ResponseType.CODE);
+
+        // 1. Register client
+        RegisterRequest registerRequest = new RegisterRequest(ApplicationType.WEB, "oxAuth test app",
+                StringUtils.spaceSeparatedToList(redirectUris));
+        registerRequest.setResponseTypes(responseTypes);
+        registerRequest.setSectorIdentifierUri(sectorIdentifierUri);
+
+        RegisterClient registerClient = new RegisterClient(registrationEndpoint);
+        registerClient.setRequest(registerRequest);
+        RegisterResponse registerResponse = registerClient.exec();
+
+        showClient(registerClient);
+        assertEquals(registerResponse.getStatus(), 200, "Unexpected response code: " + registerResponse.getEntity());
+        assertNotNull(registerResponse.getClientId());
+        assertNotNull(registerResponse.getClientSecret());
+        assertNotNull(registerResponse.getRegistrationAccessToken());
+        assertNotNull(registerResponse.getClientIdIssuedAt());
+        assertNotNull(registerResponse.getClientSecretExpiresAt());
+
+        String clientId = registerResponse.getClientId();
+
+        // 2. Request authorization
+        List<String> scopes = Arrays.asList("openid", "profile", "address", "email");
+        String state = UUID.randomUUID().toString();
+
+        AuthorizationRequest authorizationRequest = new AuthorizationRequest(responseTypes, clientId, scopes, redirectUri, null);
+        authorizationRequest.setState(state);
+
+        AuthorizationResponse authorizationResponse = authenticateResourceOwnerAndGrantAccess(
+                authorizationEndpoint, authorizationRequest, userId, userSecret);
+
+        assertEquals(authorizationResponse.getResponseMode(), ResponseMode.QUERY);
+        assertNotNull(authorizationResponse.getLocation());
+        assertNotNull(authorizationResponse.getCode());
+        assertNotNull(authorizationResponse.getState());
+    }
+
+    @Parameters({"userId", "userSecret", "redirectUris", "redirectUri", "sectorIdentifierUri"})
+    @Test
+    public void fragmentResponseModeBasicCode(
+            final String userId, final String userSecret, final String redirectUris, final String redirectUri,
+            final String sectorIdentifierUri) throws Exception {
+        showTitle("fragmentResponseModeBasicCode");
+
+        List<ResponseType> responseTypes = Arrays.asList(ResponseType.CODE);
+
+        // 1. Register client
+        RegisterRequest registerRequest = new RegisterRequest(ApplicationType.WEB, "oxAuth test app",
+                StringUtils.spaceSeparatedToList(redirectUris));
+        registerRequest.setResponseTypes(responseTypes);
+        registerRequest.setSectorIdentifierUri(sectorIdentifierUri);
+
+        RegisterClient registerClient = new RegisterClient(registrationEndpoint);
+        registerClient.setRequest(registerRequest);
+        RegisterResponse registerResponse = registerClient.exec();
+
+        showClient(registerClient);
+        assertEquals(registerResponse.getStatus(), 200, "Unexpected response code: " + registerResponse.getEntity());
+        assertNotNull(registerResponse.getClientId());
+        assertNotNull(registerResponse.getClientSecret());
+        assertNotNull(registerResponse.getRegistrationAccessToken());
+        assertNotNull(registerResponse.getClientIdIssuedAt());
+        assertNotNull(registerResponse.getClientSecretExpiresAt());
+
+        String clientId = registerResponse.getClientId();
+
+        // 2. Request authorization
+        List<String> scopes = Arrays.asList("openid", "profile", "address", "email");
+        String state = UUID.randomUUID().toString();
+
+        AuthorizationRequest authorizationRequest = new AuthorizationRequest(responseTypes, clientId, scopes, redirectUri, null);
+        authorizationRequest.setResponseMode(ResponseMode.FRAGMENT);
+        authorizationRequest.setState(state);
+
+        AuthorizationResponse authorizationResponse = authenticateResourceOwnerAndGrantAccess(
+                authorizationEndpoint, authorizationRequest, userId, userSecret);
+
+        assertEquals(authorizationResponse.getResponseMode(), ResponseMode.FRAGMENT);
+        assertNotNull(authorizationResponse.getLocation());
+        assertNotNull(authorizationResponse.getCode());
+        assertNotNull(authorizationResponse.getState());
+    }
+
+    @Parameters({"userId", "userSecret", "redirectUris", "redirectUri", "sectorIdentifierUri"})
+    @Test
+    public void queryResponseModeBasicCode(
+            final String userId, final String userSecret, final String redirectUris, final String redirectUri,
+            final String sectorIdentifierUri) throws Exception {
+        showTitle("queryResponseModeBasicCode");
+
+        List<ResponseType> responseTypes = Arrays.asList(ResponseType.CODE);
+
+        // 1. Register client
+        RegisterRequest registerRequest = new RegisterRequest(ApplicationType.WEB, "oxAuth test app",
+                StringUtils.spaceSeparatedToList(redirectUris));
+        registerRequest.setResponseTypes(responseTypes);
+        registerRequest.setSectorIdentifierUri(sectorIdentifierUri);
+
+        RegisterClient registerClient = new RegisterClient(registrationEndpoint);
+        registerClient.setRequest(registerRequest);
+        RegisterResponse registerResponse = registerClient.exec();
+
+        showClient(registerClient);
+        assertEquals(registerResponse.getStatus(), 200, "Unexpected response code: " + registerResponse.getEntity());
+        assertNotNull(registerResponse.getClientId());
+        assertNotNull(registerResponse.getClientSecret());
+        assertNotNull(registerResponse.getRegistrationAccessToken());
+        assertNotNull(registerResponse.getClientIdIssuedAt());
+        assertNotNull(registerResponse.getClientSecretExpiresAt());
+
+        String clientId = registerResponse.getClientId();
+
+        // 2. Request authorization
+        List<String> scopes = Arrays.asList("openid", "profile", "address", "email");
+        String state = UUID.randomUUID().toString();
+
+        AuthorizationRequest authorizationRequest = new AuthorizationRequest(responseTypes, clientId, scopes, redirectUri, null);
+        authorizationRequest.setResponseMode(ResponseMode.QUERY);
+        authorizationRequest.setState(state);
+
+        AuthorizationResponse authorizationResponse = authenticateResourceOwnerAndGrantAccess(
+                authorizationEndpoint, authorizationRequest, userId, userSecret);
+
+        assertEquals(authorizationResponse.getResponseMode(), ResponseMode.QUERY);
+        assertNotNull(authorizationResponse.getLocation());
+        assertNotNull(authorizationResponse.getCode());
+        assertNotNull(authorizationResponse.getState());
+    }
+
+    @Parameters({"userId", "userSecret", "redirectUris", "redirectUri", "sectorIdentifierUri"})
+    @Test
+    public void formPostResponseModeBasicCode(
+            final String userId, final String userSecret, final String redirectUris, final String redirectUri,
+            final String sectorIdentifierUri) throws Exception {
+        showTitle("formPostResponseModeBasicCode");
+
+        List<ResponseType> responseTypes = Arrays.asList(ResponseType.CODE);
+
+        // 1. Register client
+        RegisterRequest registerRequest = new RegisterRequest(ApplicationType.WEB, "oxAuth test app",
+                StringUtils.spaceSeparatedToList(redirectUris));
+        registerRequest.setResponseTypes(responseTypes);
+        registerRequest.setSectorIdentifierUri(sectorIdentifierUri);
+
+        RegisterClient registerClient = new RegisterClient(registrationEndpoint);
+        registerClient.setRequest(registerRequest);
+        RegisterResponse registerResponse = registerClient.exec();
+
+        showClient(registerClient);
+        assertEquals(registerResponse.getStatus(), 200, "Unexpected response code: " + registerResponse.getEntity());
+        assertNotNull(registerResponse.getClientId());
+        assertNotNull(registerResponse.getClientSecret());
+        assertNotNull(registerResponse.getRegistrationAccessToken());
+        assertNotNull(registerResponse.getClientIdIssuedAt());
+        assertNotNull(registerResponse.getClientSecretExpiresAt());
+
+        String clientId = registerResponse.getClientId();
+
+        // 2. Request authorization
+        List<String> scopes = Arrays.asList("openid", "profile", "address", "email");
+        String state = UUID.randomUUID().toString();
+
+        AuthorizationRequest authorizationRequest = new AuthorizationRequest(responseTypes, clientId, scopes, redirectUri, null);
+        authorizationRequest.setResponseMode(ResponseMode.FORM_POST);
+        authorizationRequest.setState(state);
+
+        AuthorizationResponse authorizationResponse = authenticateResourceOwnerAndGrantAccess(
+                authorizationEndpoint, authorizationRequest, userId, userSecret);
+
+        assertEquals(authorizationResponse.getResponseMode(), ResponseMode.FORM_POST);
+    }
+
+    @Parameters({"userId", "userSecret", "redirectUris", "redirectUri", "sectorIdentifierUri"})
+    @Test
+    public void defaultResponseModeImplicitIdToken(
+            final String userId, final String userSecret, final String redirectUris, final String redirectUri,
+            final String sectorIdentifierUri) throws Exception {
+        showTitle("defaultResponseModeImplicitIdToken");
+
+        List<ResponseType> responseTypes = Arrays.asList(ResponseType.ID_TOKEN);
+
+        // 1. Register client
+        RegisterRequest registerRequest = new RegisterRequest(ApplicationType.WEB, "oxAuth test app",
+                StringUtils.spaceSeparatedToList(redirectUris));
+        registerRequest.setResponseTypes(responseTypes);
+        registerRequest.setSectorIdentifierUri(sectorIdentifierUri);
+
+        RegisterClient registerClient = new RegisterClient(registrationEndpoint);
+        registerClient.setRequest(registerRequest);
+        RegisterResponse registerResponse = registerClient.exec();
+
+        showClient(registerClient);
+        assertEquals(registerResponse.getStatus(), 200, "Unexpected response code: " + registerResponse.getEntity());
+        assertNotNull(registerResponse.getClientId());
+        assertNotNull(registerResponse.getClientSecret());
+        assertNotNull(registerResponse.getRegistrationAccessToken());
+        assertNotNull(registerResponse.getClientIdIssuedAt());
+        assertNotNull(registerResponse.getClientSecretExpiresAt());
+
+        String clientId = registerResponse.getClientId();
+
+        // 2. Request authorization
+        List<String> scopes = Arrays.asList("openid", "profile", "address", "email");
+        String nonce = UUID.randomUUID().toString();
+        String state = UUID.randomUUID().toString();
+
+        AuthorizationRequest authorizationRequest = new AuthorizationRequest(responseTypes, clientId, scopes, redirectUri, nonce);
+        authorizationRequest.setState(state);
+
+        AuthorizationResponse authorizationResponse = authenticateResourceOwnerAndGrantAccess(
+                authorizationEndpoint, authorizationRequest, userId, userSecret);
+
+        assertEquals(authorizationResponse.getResponseMode(), ResponseMode.FRAGMENT);
+        assertNotNull(authorizationResponse.getLocation());
+        assertNotNull(authorizationResponse.getIdToken());
+        assertNotNull(authorizationResponse.getState());
+    }
+
+    @Parameters({"userId", "userSecret", "redirectUris", "redirectUri", "sectorIdentifierUri"})
+    @Test
+    public void fragmentResponseModeImplicitIdToken(
+            final String userId, final String userSecret, final String redirectUris, final String redirectUri,
+            final String sectorIdentifierUri) throws Exception {
+        showTitle("fragmentResponseModeImplicitIdToken");
+
+        List<ResponseType> responseTypes = Arrays.asList(ResponseType.ID_TOKEN);
+
+        // 1. Register client
+        RegisterRequest registerRequest = new RegisterRequest(ApplicationType.WEB, "oxAuth test app",
+                StringUtils.spaceSeparatedToList(redirectUris));
+        registerRequest.setResponseTypes(responseTypes);
+        registerRequest.setSectorIdentifierUri(sectorIdentifierUri);
+
+        RegisterClient registerClient = new RegisterClient(registrationEndpoint);
+        registerClient.setRequest(registerRequest);
+        RegisterResponse registerResponse = registerClient.exec();
+
+        showClient(registerClient);
+        assertEquals(registerResponse.getStatus(), 200, "Unexpected response code: " + registerResponse.getEntity());
+        assertNotNull(registerResponse.getClientId());
+        assertNotNull(registerResponse.getClientSecret());
+        assertNotNull(registerResponse.getRegistrationAccessToken());
+        assertNotNull(registerResponse.getClientIdIssuedAt());
+        assertNotNull(registerResponse.getClientSecretExpiresAt());
+
+        String clientId = registerResponse.getClientId();
+
+        // 2. Request authorization
+        List<String> scopes = Arrays.asList("openid", "profile", "address", "email");
+        String nonce = UUID.randomUUID().toString();
+        String state = UUID.randomUUID().toString();
+
+        AuthorizationRequest authorizationRequest = new AuthorizationRequest(responseTypes, clientId, scopes, redirectUri, nonce);
+        authorizationRequest.setResponseMode(ResponseMode.FRAGMENT);
+        authorizationRequest.setState(state);
+
+        AuthorizationResponse authorizationResponse = authenticateResourceOwnerAndGrantAccess(
+                authorizationEndpoint, authorizationRequest, userId, userSecret);
+
+        assertEquals(authorizationResponse.getResponseMode(), ResponseMode.FRAGMENT);
+        assertNotNull(authorizationResponse.getLocation());
+        assertNotNull(authorizationResponse.getIdToken());
+        assertNotNull(authorizationResponse.getState());
+    }
+
+    @Parameters({"userId", "userSecret", "redirectUris", "redirectUri", "sectorIdentifierUri"})
+    @Test
+    public void queryResponseModeImplicitIdToken(
+            final String userId, final String userSecret, final String redirectUris, final String redirectUri,
+            final String sectorIdentifierUri) throws Exception {
+        showTitle("queryResponseModeImplicitIdToken");
+
+        List<ResponseType> responseTypes = Arrays.asList(ResponseType.ID_TOKEN);
+
+        // 1. Register client
+        RegisterRequest registerRequest = new RegisterRequest(ApplicationType.WEB, "oxAuth test app",
+                StringUtils.spaceSeparatedToList(redirectUris));
+        registerRequest.setResponseTypes(responseTypes);
+        registerRequest.setSectorIdentifierUri(sectorIdentifierUri);
+
+        RegisterClient registerClient = new RegisterClient(registrationEndpoint);
+        registerClient.setRequest(registerRequest);
+        RegisterResponse registerResponse = registerClient.exec();
+
+        showClient(registerClient);
+        assertEquals(registerResponse.getStatus(), 200, "Unexpected response code: " + registerResponse.getEntity());
+        assertNotNull(registerResponse.getClientId());
+        assertNotNull(registerResponse.getClientSecret());
+        assertNotNull(registerResponse.getRegistrationAccessToken());
+        assertNotNull(registerResponse.getClientIdIssuedAt());
+        assertNotNull(registerResponse.getClientSecretExpiresAt());
+
+        String clientId = registerResponse.getClientId();
+
+        // 2. Request authorization
+        List<String> scopes = Arrays.asList("openid", "profile", "address", "email");
+        String nonce = UUID.randomUUID().toString();
+        String state = UUID.randomUUID().toString();
+
+        AuthorizationRequest authorizationRequest = new AuthorizationRequest(responseTypes, clientId, scopes, redirectUri, nonce);
+        authorizationRequest.setResponseMode(ResponseMode.QUERY);
+        authorizationRequest.setState(state);
+
+        AuthorizationResponse authorizationResponse = authenticateResourceOwnerAndGrantAccess(
+                authorizationEndpoint, authorizationRequest, userId, userSecret);
+
+        assertEquals(authorizationResponse.getResponseMode(), ResponseMode.QUERY);
+        assertNotNull(authorizationResponse.getLocation());
+        assertNotNull(authorizationResponse.getIdToken());
+        assertNotNull(authorizationResponse.getState());
+    }
+
+    @Parameters({"userId", "userSecret", "redirectUris", "redirectUri", "sectorIdentifierUri"})
+    @Test
+    public void formPostResponseModeImplicitIdToken(
+            final String userId, final String userSecret, final String redirectUris, final String redirectUri,
+            final String sectorIdentifierUri) throws Exception {
+        showTitle("formPostResponseModeImplicitIdToken");
+
+        List<ResponseType> responseTypes = Arrays.asList(ResponseType.ID_TOKEN);
+
+        // 1. Register client
+        RegisterRequest registerRequest = new RegisterRequest(ApplicationType.WEB, "oxAuth test app",
+                StringUtils.spaceSeparatedToList(redirectUris));
+        registerRequest.setResponseTypes(responseTypes);
+        registerRequest.setSectorIdentifierUri(sectorIdentifierUri);
+
+        RegisterClient registerClient = new RegisterClient(registrationEndpoint);
+        registerClient.setRequest(registerRequest);
+        RegisterResponse registerResponse = registerClient.exec();
+
+        showClient(registerClient);
+        assertEquals(registerResponse.getStatus(), 200, "Unexpected response code: " + registerResponse.getEntity());
+        assertNotNull(registerResponse.getClientId());
+        assertNotNull(registerResponse.getClientSecret());
+        assertNotNull(registerResponse.getRegistrationAccessToken());
+        assertNotNull(registerResponse.getClientIdIssuedAt());
+        assertNotNull(registerResponse.getClientSecretExpiresAt());
+
+        String clientId = registerResponse.getClientId();
+
+        // 2. Request authorization
+        List<String> scopes = Arrays.asList("openid", "profile", "address", "email");
+        String nonce = UUID.randomUUID().toString();
+        String state = UUID.randomUUID().toString();
+
+        AuthorizationRequest authorizationRequest = new AuthorizationRequest(responseTypes, clientId, scopes, redirectUri, nonce);
+        authorizationRequest.setResponseMode(ResponseMode.FORM_POST);
+        authorizationRequest.setState(state);
+
+        AuthorizationResponse authorizationResponse = authenticateResourceOwnerAndGrantAccess(
+                authorizationEndpoint, authorizationRequest, userId, userSecret);
+
+        assertEquals(authorizationResponse.getResponseMode(), ResponseMode.FORM_POST);
+    }
+
+    @Parameters({"userId", "userSecret", "redirectUris", "redirectUri", "sectorIdentifierUri"})
+    @Test
+    public void defaultResponseModeImplicitIdTokenToken(
+            final String userId, final String userSecret, final String redirectUris, final String redirectUri,
+            final String sectorIdentifierUri) throws Exception {
+        showTitle("defaultResponseModeImplicitIdTokenToken");
+
+        List<ResponseType> responseTypes = Arrays.asList(ResponseType.ID_TOKEN, ResponseType.TOKEN);
+
+        // 1. Register client
+        RegisterRequest registerRequest = new RegisterRequest(ApplicationType.WEB, "oxAuth test app",
+                StringUtils.spaceSeparatedToList(redirectUris));
+        registerRequest.setResponseTypes(responseTypes);
+        registerRequest.setSectorIdentifierUri(sectorIdentifierUri);
+
+        RegisterClient registerClient = new RegisterClient(registrationEndpoint);
+        registerClient.setRequest(registerRequest);
+        RegisterResponse registerResponse = registerClient.exec();
+
+        showClient(registerClient);
+        assertEquals(registerResponse.getStatus(), 200, "Unexpected response code: " + registerResponse.getEntity());
+        assertNotNull(registerResponse.getClientId());
+        assertNotNull(registerResponse.getClientSecret());
+        assertNotNull(registerResponse.getRegistrationAccessToken());
+        assertNotNull(registerResponse.getClientIdIssuedAt());
+        assertNotNull(registerResponse.getClientSecretExpiresAt());
+
+        String clientId = registerResponse.getClientId();
+
+        // 2. Request authorization
+        List<String> scopes = Arrays.asList("openid", "profile", "address", "email");
+        String nonce = UUID.randomUUID().toString();
+        String state = UUID.randomUUID().toString();
+
+        AuthorizationRequest authorizationRequest = new AuthorizationRequest(responseTypes, clientId, scopes, redirectUri, nonce);
+        authorizationRequest.setState(state);
+
+        AuthorizationResponse authorizationResponse = authenticateResourceOwnerAndGrantAccess(
+                authorizationEndpoint, authorizationRequest, userId, userSecret);
+
+        assertEquals(authorizationResponse.getResponseMode(), ResponseMode.FRAGMENT);
+        assertNotNull(authorizationResponse.getLocation());
+        assertNotNull(authorizationResponse.getAccessToken());
+        assertNotNull(authorizationResponse.getIdToken());
+        assertNotNull(authorizationResponse.getState());
+    }
+
+    @Parameters({"userId", "userSecret", "redirectUris", "redirectUri", "sectorIdentifierUri"})
+    @Test
+    public void fragmentResponseModeImplicitIdTokenToken(
+            final String userId, final String userSecret, final String redirectUris, final String redirectUri,
+            final String sectorIdentifierUri) throws Exception {
+        showTitle("fragmentResponseModeImplicitIdTokenToken");
+
+        List<ResponseType> responseTypes = Arrays.asList(ResponseType.ID_TOKEN, ResponseType.TOKEN);
+
+        // 1. Register client
+        RegisterRequest registerRequest = new RegisterRequest(ApplicationType.WEB, "oxAuth test app",
+                StringUtils.spaceSeparatedToList(redirectUris));
+        registerRequest.setResponseTypes(responseTypes);
+        registerRequest.setSectorIdentifierUri(sectorIdentifierUri);
+
+        RegisterClient registerClient = new RegisterClient(registrationEndpoint);
+        registerClient.setRequest(registerRequest);
+        RegisterResponse registerResponse = registerClient.exec();
+
+        showClient(registerClient);
+        assertEquals(registerResponse.getStatus(), 200, "Unexpected response code: " + registerResponse.getEntity());
+        assertNotNull(registerResponse.getClientId());
+        assertNotNull(registerResponse.getClientSecret());
+        assertNotNull(registerResponse.getRegistrationAccessToken());
+        assertNotNull(registerResponse.getClientIdIssuedAt());
+        assertNotNull(registerResponse.getClientSecretExpiresAt());
+
+        String clientId = registerResponse.getClientId();
+
+        // 2. Request authorization
+        List<String> scopes = Arrays.asList("openid", "profile", "address", "email");
+        String nonce = UUID.randomUUID().toString();
+        String state = UUID.randomUUID().toString();
+
+        AuthorizationRequest authorizationRequest = new AuthorizationRequest(responseTypes, clientId, scopes, redirectUri, nonce);
+        authorizationRequest.setResponseMode(ResponseMode.FRAGMENT);
+        authorizationRequest.setState(state);
+
+        AuthorizationResponse authorizationResponse = authenticateResourceOwnerAndGrantAccess(
+                authorizationEndpoint, authorizationRequest, userId, userSecret);
+
+        assertEquals(authorizationResponse.getResponseMode(), ResponseMode.FRAGMENT);
+        assertNotNull(authorizationResponse.getLocation());
+        assertNotNull(authorizationResponse.getAccessToken());
+        assertNotNull(authorizationResponse.getIdToken());
+        assertNotNull(authorizationResponse.getState());
+    }
+
+    @Parameters({"userId", "userSecret", "redirectUris", "redirectUri", "sectorIdentifierUri"})
+    @Test
+    public void queryResponseModeImplicitIdTokenToken(
+            final String userId, final String userSecret, final String redirectUris, final String redirectUri,
+            final String sectorIdentifierUri) throws Exception {
+        showTitle("queryResponseModeImplicitIdTokenToken");
+
+        List<ResponseType> responseTypes = Arrays.asList(ResponseType.ID_TOKEN, ResponseType.TOKEN);
+
+        // 1. Register client
+        RegisterRequest registerRequest = new RegisterRequest(ApplicationType.WEB, "oxAuth test app",
+                StringUtils.spaceSeparatedToList(redirectUris));
+        registerRequest.setResponseTypes(responseTypes);
+        registerRequest.setSectorIdentifierUri(sectorIdentifierUri);
+
+        RegisterClient registerClient = new RegisterClient(registrationEndpoint);
+        registerClient.setRequest(registerRequest);
+        RegisterResponse registerResponse = registerClient.exec();
+
+        showClient(registerClient);
+        assertEquals(registerResponse.getStatus(), 200, "Unexpected response code: " + registerResponse.getEntity());
+        assertNotNull(registerResponse.getClientId());
+        assertNotNull(registerResponse.getClientSecret());
+        assertNotNull(registerResponse.getRegistrationAccessToken());
+        assertNotNull(registerResponse.getClientIdIssuedAt());
+        assertNotNull(registerResponse.getClientSecretExpiresAt());
+
+        String clientId = registerResponse.getClientId();
+
+        // 2. Request authorization
+        List<String> scopes = Arrays.asList("openid", "profile", "address", "email");
+        String nonce = UUID.randomUUID().toString();
+        String state = UUID.randomUUID().toString();
+
+        AuthorizationRequest authorizationRequest = new AuthorizationRequest(responseTypes, clientId, scopes, redirectUri, nonce);
+        authorizationRequest.setResponseMode(ResponseMode.QUERY);
+        authorizationRequest.setState(state);
+
+        AuthorizationResponse authorizationResponse = authenticateResourceOwnerAndGrantAccess(
+                authorizationEndpoint, authorizationRequest, userId, userSecret);
+
+        assertEquals(authorizationResponse.getResponseMode(), ResponseMode.QUERY);
+        assertNotNull(authorizationResponse.getLocation());
+        assertNotNull(authorizationResponse.getAccessToken());
+        assertNotNull(authorizationResponse.getIdToken());
+        assertNotNull(authorizationResponse.getState());
+    }
+
+    @Parameters({"userId", "userSecret", "redirectUris", "redirectUri", "sectorIdentifierUri"})
+    @Test
+    public void formPostResponseModeImplicitIdTokenToken(
+            final String userId, final String userSecret, final String redirectUris, final String redirectUri,
+            final String sectorIdentifierUri) throws Exception {
+        showTitle("formPostResponseModeImplicitIdTokenToken");
+
+        List<ResponseType> responseTypes = Arrays.asList(ResponseType.ID_TOKEN, ResponseType.TOKEN);
+
+        // 1. Register client
+        RegisterRequest registerRequest = new RegisterRequest(ApplicationType.WEB, "oxAuth test app",
+                StringUtils.spaceSeparatedToList(redirectUris));
+        registerRequest.setResponseTypes(responseTypes);
+        registerRequest.setSectorIdentifierUri(sectorIdentifierUri);
+
+        RegisterClient registerClient = new RegisterClient(registrationEndpoint);
+        registerClient.setRequest(registerRequest);
+        RegisterResponse registerResponse = registerClient.exec();
+
+        showClient(registerClient);
+        assertEquals(registerResponse.getStatus(), 200, "Unexpected response code: " + registerResponse.getEntity());
+        assertNotNull(registerResponse.getClientId());
+        assertNotNull(registerResponse.getClientSecret());
+        assertNotNull(registerResponse.getRegistrationAccessToken());
+        assertNotNull(registerResponse.getClientIdIssuedAt());
+        assertNotNull(registerResponse.getClientSecretExpiresAt());
+
+        String clientId = registerResponse.getClientId();
+
+        // 2. Request authorization
+        List<String> scopes = Arrays.asList("openid", "profile", "address", "email");
+        String nonce = UUID.randomUUID().toString();
+        String state = UUID.randomUUID().toString();
+
+        AuthorizationRequest authorizationRequest = new AuthorizationRequest(responseTypes, clientId, scopes, redirectUri, nonce);
+        authorizationRequest.setResponseMode(ResponseMode.FORM_POST);
+        authorizationRequest.setState(state);
+
+        AuthorizationResponse authorizationResponse = authenticateResourceOwnerAndGrantAccess(
+                authorizationEndpoint, authorizationRequest, userId, userSecret);
+
+        assertEquals(authorizationResponse.getResponseMode(), ResponseMode.FORM_POST);
+    }
+
+    @Parameters({"userId", "userSecret", "redirectUris", "redirectUri", "sectorIdentifierUri"})
+    @Test
+    public void defaultResponseModeHybridCodeIdToken(
+            final String userId, final String userSecret, final String redirectUris, final String redirectUri,
+            final String sectorIdentifierUri) throws Exception {
+        showTitle("defaultResponseModeHybridCodeIdToken");
+
+        List<ResponseType> responseTypes = Arrays.asList(ResponseType.CODE, ResponseType.ID_TOKEN);
+
+        // 1. Register client
+        RegisterRequest registerRequest = new RegisterRequest(ApplicationType.WEB, "oxAuth test app",
+                StringUtils.spaceSeparatedToList(redirectUris));
+        registerRequest.setResponseTypes(responseTypes);
+        registerRequest.setSectorIdentifierUri(sectorIdentifierUri);
+
+        RegisterClient registerClient = new RegisterClient(registrationEndpoint);
+        registerClient.setRequest(registerRequest);
+        RegisterResponse registerResponse = registerClient.exec();
+
+        showClient(registerClient);
+        assertEquals(registerResponse.getStatus(), 200, "Unexpected response code: " + registerResponse.getEntity());
+        assertNotNull(registerResponse.getClientId());
+        assertNotNull(registerResponse.getClientSecret());
+        assertNotNull(registerResponse.getRegistrationAccessToken());
+        assertNotNull(registerResponse.getClientIdIssuedAt());
+        assertNotNull(registerResponse.getClientSecretExpiresAt());
+
+        String clientId = registerResponse.getClientId();
+
+        // 2. Request authorization
+        List<String> scopes = Arrays.asList("openid", "profile", "address", "email");
+        String nonce = UUID.randomUUID().toString();
+        String state = UUID.randomUUID().toString();
+
+        AuthorizationRequest authorizationRequest = new AuthorizationRequest(responseTypes, clientId, scopes, redirectUri, nonce);
+        authorizationRequest.setState(state);
+
+        AuthorizationResponse authorizationResponse = authenticateResourceOwnerAndGrantAccess(
+                authorizationEndpoint, authorizationRequest, userId, userSecret);
+
+        assertEquals(authorizationResponse.getResponseMode(), ResponseMode.FRAGMENT);
+        assertNotNull(authorizationResponse.getLocation());
+        assertNotNull(authorizationResponse.getCode());
+        assertNotNull(authorizationResponse.getIdToken());
+        assertNotNull(authorizationResponse.getState());
+    }
+
+    @Parameters({"userId", "userSecret", "redirectUris", "redirectUri", "sectorIdentifierUri"})
+    @Test
+    public void fragmentResponseModeHybridCodeIdToken(
+            final String userId, final String userSecret, final String redirectUris, final String redirectUri,
+            final String sectorIdentifierUri) throws Exception {
+        showTitle("fragmentResponseModeHybridCodeIdToken");
+
+        List<ResponseType> responseTypes = Arrays.asList(ResponseType.CODE, ResponseType.ID_TOKEN);
+
+        // 1. Register client
+        RegisterRequest registerRequest = new RegisterRequest(ApplicationType.WEB, "oxAuth test app",
+                StringUtils.spaceSeparatedToList(redirectUris));
+        registerRequest.setResponseTypes(responseTypes);
+        registerRequest.setSectorIdentifierUri(sectorIdentifierUri);
+
+        RegisterClient registerClient = new RegisterClient(registrationEndpoint);
+        registerClient.setRequest(registerRequest);
+        RegisterResponse registerResponse = registerClient.exec();
+
+        showClient(registerClient);
+        assertEquals(registerResponse.getStatus(), 200, "Unexpected response code: " + registerResponse.getEntity());
+        assertNotNull(registerResponse.getClientId());
+        assertNotNull(registerResponse.getClientSecret());
+        assertNotNull(registerResponse.getRegistrationAccessToken());
+        assertNotNull(registerResponse.getClientIdIssuedAt());
+        assertNotNull(registerResponse.getClientSecretExpiresAt());
+
+        String clientId = registerResponse.getClientId();
+
+        // 2. Request authorization
+        List<String> scopes = Arrays.asList("openid", "profile", "address", "email");
+        String nonce = UUID.randomUUID().toString();
+        String state = UUID.randomUUID().toString();
+
+        AuthorizationRequest authorizationRequest = new AuthorizationRequest(responseTypes, clientId, scopes, redirectUri, nonce);
+        authorizationRequest.setResponseMode(ResponseMode.FRAGMENT);
+        authorizationRequest.setState(state);
+
+        AuthorizationResponse authorizationResponse = authenticateResourceOwnerAndGrantAccess(
+                authorizationEndpoint, authorizationRequest, userId, userSecret);
+
+        assertEquals(authorizationResponse.getResponseMode(), ResponseMode.FRAGMENT);
+        assertNotNull(authorizationResponse.getLocation());
+        assertNotNull(authorizationResponse.getCode());
+        assertNotNull(authorizationResponse.getIdToken());
+        assertNotNull(authorizationResponse.getState());
+    }
+
+    @Parameters({"userId", "userSecret", "redirectUris", "redirectUri", "sectorIdentifierUri"})
+    @Test
+    public void queryResponseModeHybridCodeIdToken(
+            final String userId, final String userSecret, final String redirectUris, final String redirectUri,
+            final String sectorIdentifierUri) throws Exception {
+        showTitle("queryResponseModeHybridCodeIdToken");
+
+        List<ResponseType> responseTypes = Arrays.asList(ResponseType.CODE, ResponseType.ID_TOKEN);
+
+        // 1. Register client
+        RegisterRequest registerRequest = new RegisterRequest(ApplicationType.WEB, "oxAuth test app",
+                StringUtils.spaceSeparatedToList(redirectUris));
+        registerRequest.setResponseTypes(responseTypes);
+        registerRequest.setSectorIdentifierUri(sectorIdentifierUri);
+
+        RegisterClient registerClient = new RegisterClient(registrationEndpoint);
+        registerClient.setRequest(registerRequest);
+        RegisterResponse registerResponse = registerClient.exec();
+
+        showClient(registerClient);
+        assertEquals(registerResponse.getStatus(), 200, "Unexpected response code: " + registerResponse.getEntity());
+        assertNotNull(registerResponse.getClientId());
+        assertNotNull(registerResponse.getClientSecret());
+        assertNotNull(registerResponse.getRegistrationAccessToken());
+        assertNotNull(registerResponse.getClientIdIssuedAt());
+        assertNotNull(registerResponse.getClientSecretExpiresAt());
+
+        String clientId = registerResponse.getClientId();
+
+        // 2. Request authorization
+        List<String> scopes = Arrays.asList("openid", "profile", "address", "email");
+        String nonce = UUID.randomUUID().toString();
+        String state = UUID.randomUUID().toString();
+
+        AuthorizationRequest authorizationRequest = new AuthorizationRequest(responseTypes, clientId, scopes, redirectUri, nonce);
+        authorizationRequest.setResponseMode(ResponseMode.QUERY);
+        authorizationRequest.setState(state);
+
+        AuthorizationResponse authorizationResponse = authenticateResourceOwnerAndGrantAccess(
+                authorizationEndpoint, authorizationRequest, userId, userSecret);
+
+        assertEquals(authorizationResponse.getResponseMode(), ResponseMode.QUERY);
+        assertNotNull(authorizationResponse.getLocation());
+        assertNotNull(authorizationResponse.getCode());
+        assertNotNull(authorizationResponse.getIdToken());
+        assertNotNull(authorizationResponse.getState());
+    }
+
+    @Parameters({"userId", "userSecret", "redirectUris", "redirectUri", "sectorIdentifierUri"})
+    @Test
+    public void formPostResponseModeHybridCodeIdToken(
+            final String userId, final String userSecret, final String redirectUris, final String redirectUri,
+            final String sectorIdentifierUri) throws Exception {
+        showTitle("formPostResponseModeHybridCodeIdToken");
+
+        List<ResponseType> responseTypes = Arrays.asList(ResponseType.CODE, ResponseType.ID_TOKEN);
+
+        // 1. Register client
+        RegisterRequest registerRequest = new RegisterRequest(ApplicationType.WEB, "oxAuth test app",
+                StringUtils.spaceSeparatedToList(redirectUris));
+        registerRequest.setResponseTypes(responseTypes);
+        registerRequest.setSectorIdentifierUri(sectorIdentifierUri);
+
+        RegisterClient registerClient = new RegisterClient(registrationEndpoint);
+        registerClient.setRequest(registerRequest);
+        RegisterResponse registerResponse = registerClient.exec();
+
+        showClient(registerClient);
+        assertEquals(registerResponse.getStatus(), 200, "Unexpected response code: " + registerResponse.getEntity());
+        assertNotNull(registerResponse.getClientId());
+        assertNotNull(registerResponse.getClientSecret());
+        assertNotNull(registerResponse.getRegistrationAccessToken());
+        assertNotNull(registerResponse.getClientIdIssuedAt());
+        assertNotNull(registerResponse.getClientSecretExpiresAt());
+
+        String clientId = registerResponse.getClientId();
+
+        // 2. Request authorization
+        List<String> scopes = Arrays.asList("openid", "profile", "address", "email");
+        String nonce = UUID.randomUUID().toString();
+        String state = UUID.randomUUID().toString();
+
+        AuthorizationRequest authorizationRequest = new AuthorizationRequest(responseTypes, clientId, scopes, redirectUri, nonce);
+        authorizationRequest.setResponseMode(ResponseMode.FORM_POST);
+        authorizationRequest.setState(state);
+
+        AuthorizationResponse authorizationResponse = authenticateResourceOwnerAndGrantAccess(
+                authorizationEndpoint, authorizationRequest, userId, userSecret);
+
+        assertEquals(authorizationResponse.getResponseMode(), ResponseMode.FORM_POST);
+    }
+
+    @Parameters({"userId", "userSecret", "redirectUris", "redirectUri", "sectorIdentifierUri"})
+    @Test
+    public void defaultResponseModeHybridCodeIdTokenToken(
+            final String userId, final String userSecret, final String redirectUris, final String redirectUri,
+            final String sectorIdentifierUri) throws Exception {
+        showTitle("defaultResponseModeHybridCodeIdTokenToken");
+
+        List<ResponseType> responseTypes = Arrays.asList(ResponseType.CODE, ResponseType.ID_TOKEN, ResponseType.TOKEN);
+
+        // 1. Register client
+        RegisterRequest registerRequest = new RegisterRequest(ApplicationType.WEB, "oxAuth test app",
+                StringUtils.spaceSeparatedToList(redirectUris));
+        registerRequest.setResponseTypes(responseTypes);
+        registerRequest.setSectorIdentifierUri(sectorIdentifierUri);
+
+        RegisterClient registerClient = new RegisterClient(registrationEndpoint);
+        registerClient.setRequest(registerRequest);
+        RegisterResponse registerResponse = registerClient.exec();
+
+        showClient(registerClient);
+        assertEquals(registerResponse.getStatus(), 200, "Unexpected response code: " + registerResponse.getEntity());
+        assertNotNull(registerResponse.getClientId());
+        assertNotNull(registerResponse.getClientSecret());
+        assertNotNull(registerResponse.getRegistrationAccessToken());
+        assertNotNull(registerResponse.getClientIdIssuedAt());
+        assertNotNull(registerResponse.getClientSecretExpiresAt());
+
+        String clientId = registerResponse.getClientId();
+
+        // 2. Request authorization
+        List<String> scopes = Arrays.asList("openid", "profile", "address", "email");
+        String nonce = UUID.randomUUID().toString();
+        String state = UUID.randomUUID().toString();
+
+        AuthorizationRequest authorizationRequest = new AuthorizationRequest(responseTypes, clientId, scopes, redirectUri, nonce);
+        authorizationRequest.setState(state);
+
+        AuthorizationResponse authorizationResponse = authenticateResourceOwnerAndGrantAccess(
+                authorizationEndpoint, authorizationRequest, userId, userSecret);
+
+        assertEquals(authorizationResponse.getResponseMode(), ResponseMode.FRAGMENT);
+        assertNotNull(authorizationResponse.getLocation());
+        assertNotNull(authorizationResponse.getCode());
+        assertNotNull(authorizationResponse.getAccessToken());
+        assertNotNull(authorizationResponse.getIdToken());
+        assertNotNull(authorizationResponse.getState());
+    }
+
+    @Parameters({"userId", "userSecret", "redirectUris", "redirectUri", "sectorIdentifierUri"})
+    @Test
+    public void fragmentResponseModeHybridCodeIdTokenToken(
+            final String userId, final String userSecret, final String redirectUris, final String redirectUri,
+            final String sectorIdentifierUri) throws Exception {
+        showTitle("fragmentResponseModeHybridCodeIdTokenToken");
+
+        List<ResponseType> responseTypes = Arrays.asList(ResponseType.CODE, ResponseType.ID_TOKEN, ResponseType.TOKEN);
+
+        // 1. Register client
+        RegisterRequest registerRequest = new RegisterRequest(ApplicationType.WEB, "oxAuth test app",
+                StringUtils.spaceSeparatedToList(redirectUris));
+        registerRequest.setResponseTypes(responseTypes);
+        registerRequest.setSectorIdentifierUri(sectorIdentifierUri);
+
+        RegisterClient registerClient = new RegisterClient(registrationEndpoint);
+        registerClient.setRequest(registerRequest);
+        RegisterResponse registerResponse = registerClient.exec();
+
+        showClient(registerClient);
+        assertEquals(registerResponse.getStatus(), 200, "Unexpected response code: " + registerResponse.getEntity());
+        assertNotNull(registerResponse.getClientId());
+        assertNotNull(registerResponse.getClientSecret());
+        assertNotNull(registerResponse.getRegistrationAccessToken());
+        assertNotNull(registerResponse.getClientIdIssuedAt());
+        assertNotNull(registerResponse.getClientSecretExpiresAt());
+
+        String clientId = registerResponse.getClientId();
+
+        // 2. Request authorization
+        List<String> scopes = Arrays.asList("openid", "profile", "address", "email");
+        String nonce = UUID.randomUUID().toString();
+        String state = UUID.randomUUID().toString();
+
+        AuthorizationRequest authorizationRequest = new AuthorizationRequest(responseTypes, clientId, scopes, redirectUri, nonce);
+        authorizationRequest.setResponseMode(ResponseMode.FRAGMENT);
+        authorizationRequest.setState(state);
+
+        AuthorizationResponse authorizationResponse = authenticateResourceOwnerAndGrantAccess(
+                authorizationEndpoint, authorizationRequest, userId, userSecret);
+
+        assertEquals(authorizationResponse.getResponseMode(), ResponseMode.FRAGMENT);
+        assertNotNull(authorizationResponse.getLocation());
+        assertNotNull(authorizationResponse.getCode());
+        assertNotNull(authorizationResponse.getAccessToken());
+        assertNotNull(authorizationResponse.getIdToken());
+        assertNotNull(authorizationResponse.getState());
+    }
+
+    @Parameters({"userId", "userSecret", "redirectUris", "redirectUri", "sectorIdentifierUri"})
+    @Test
+    public void queryResponseModeHybridCodeIdTokenToken(
+            final String userId, final String userSecret, final String redirectUris, final String redirectUri,
+            final String sectorIdentifierUri) throws Exception {
+        showTitle("queryResponseModeHybridCodeIdTokenToken");
+
+        List<ResponseType> responseTypes = Arrays.asList(ResponseType.CODE, ResponseType.ID_TOKEN, ResponseType.TOKEN);
+
+        // 1. Register client
+        RegisterRequest registerRequest = new RegisterRequest(ApplicationType.WEB, "oxAuth test app",
+                StringUtils.spaceSeparatedToList(redirectUris));
+        registerRequest.setResponseTypes(responseTypes);
+        registerRequest.setSectorIdentifierUri(sectorIdentifierUri);
+
+        RegisterClient registerClient = new RegisterClient(registrationEndpoint);
+        registerClient.setRequest(registerRequest);
+        RegisterResponse registerResponse = registerClient.exec();
+
+        showClient(registerClient);
+        assertEquals(registerResponse.getStatus(), 200, "Unexpected response code: " + registerResponse.getEntity());
+        assertNotNull(registerResponse.getClientId());
+        assertNotNull(registerResponse.getClientSecret());
+        assertNotNull(registerResponse.getRegistrationAccessToken());
+        assertNotNull(registerResponse.getClientIdIssuedAt());
+        assertNotNull(registerResponse.getClientSecretExpiresAt());
+
+        String clientId = registerResponse.getClientId();
+
+        // 2. Request authorization
+        List<String> scopes = Arrays.asList("openid", "profile", "address", "email");
+        String nonce = UUID.randomUUID().toString();
+        String state = UUID.randomUUID().toString();
+
+        AuthorizationRequest authorizationRequest = new AuthorizationRequest(responseTypes, clientId, scopes, redirectUri, nonce);
+        authorizationRequest.setResponseMode(ResponseMode.QUERY);
+        authorizationRequest.setState(state);
+
+        AuthorizationResponse authorizationResponse = authenticateResourceOwnerAndGrantAccess(
+                authorizationEndpoint, authorizationRequest, userId, userSecret);
+
+        assertEquals(authorizationResponse.getResponseMode(), ResponseMode.QUERY);
+        assertNotNull(authorizationResponse.getLocation());
+        assertNotNull(authorizationResponse.getCode());
+        assertNotNull(authorizationResponse.getAccessToken());
+        assertNotNull(authorizationResponse.getIdToken());
+        assertNotNull(authorizationResponse.getState());
+    }
+
+    @Parameters({"userId", "userSecret", "redirectUris", "redirectUri", "sectorIdentifierUri"})
+    @Test
+    public void formPostResponseModeHybridCodeIdTokenToken(
+            final String userId, final String userSecret, final String redirectUris, final String redirectUri,
+            final String sectorIdentifierUri) throws Exception {
+        showTitle("formPostResponseModeHybridCodeIdTokenToken");
+
+        List<ResponseType> responseTypes = Arrays.asList(ResponseType.CODE, ResponseType.ID_TOKEN, ResponseType.TOKEN);
+
+        // 1. Register client
+        RegisterRequest registerRequest = new RegisterRequest(ApplicationType.WEB, "oxAuth test app",
+                StringUtils.spaceSeparatedToList(redirectUris));
+        registerRequest.setResponseTypes(responseTypes);
+        registerRequest.setSectorIdentifierUri(sectorIdentifierUri);
+
+        RegisterClient registerClient = new RegisterClient(registrationEndpoint);
+        registerClient.setRequest(registerRequest);
+        RegisterResponse registerResponse = registerClient.exec();
+
+        showClient(registerClient);
+        assertEquals(registerResponse.getStatus(), 200, "Unexpected response code: " + registerResponse.getEntity());
+        assertNotNull(registerResponse.getClientId());
+        assertNotNull(registerResponse.getClientSecret());
+        assertNotNull(registerResponse.getRegistrationAccessToken());
+        assertNotNull(registerResponse.getClientIdIssuedAt());
+        assertNotNull(registerResponse.getClientSecretExpiresAt());
+
+        String clientId = registerResponse.getClientId();
+
+        // 2. Request authorization
+        List<String> scopes = Arrays.asList("openid", "profile", "address", "email");
+        String nonce = UUID.randomUUID().toString();
+        String state = UUID.randomUUID().toString();
+
+        AuthorizationRequest authorizationRequest = new AuthorizationRequest(responseTypes, clientId, scopes, redirectUri, nonce);
+        authorizationRequest.setResponseMode(ResponseMode.FORM_POST);
+        authorizationRequest.setState(state);
+
+        AuthorizationResponse authorizationResponse = authenticateResourceOwnerAndGrantAccess(
+                authorizationEndpoint, authorizationRequest, userId, userSecret);
+
+        assertEquals(authorizationResponse.getResponseMode(), ResponseMode.FORM_POST);
+    }
+
+    @Parameters({"userId", "userSecret", "redirectUris", "redirectUri", "sectorIdentifierUri"})
+    @Test
+    public void defaultResponseModeHybridCodeToken(
+            final String userId, final String userSecret, final String redirectUris, final String redirectUri,
+            final String sectorIdentifierUri) throws Exception {
+        showTitle("defaultResponseModeHybridCodeToken");
+
+        List<ResponseType> responseTypes = Arrays.asList(ResponseType.CODE, ResponseType.TOKEN);
+
+        // 1. Register client
+        RegisterRequest registerRequest = new RegisterRequest(ApplicationType.WEB, "oxAuth test app",
+                StringUtils.spaceSeparatedToList(redirectUris));
+        registerRequest.setResponseTypes(responseTypes);
+        registerRequest.setSectorIdentifierUri(sectorIdentifierUri);
+
+        RegisterClient registerClient = new RegisterClient(registrationEndpoint);
+        registerClient.setRequest(registerRequest);
+        RegisterResponse registerResponse = registerClient.exec();
+
+        showClient(registerClient);
+        assertEquals(registerResponse.getStatus(), 200, "Unexpected response code: " + registerResponse.getEntity());
+        assertNotNull(registerResponse.getClientId());
+        assertNotNull(registerResponse.getClientSecret());
+        assertNotNull(registerResponse.getRegistrationAccessToken());
+        assertNotNull(registerResponse.getClientIdIssuedAt());
+        assertNotNull(registerResponse.getClientSecretExpiresAt());
+
+        String clientId = registerResponse.getClientId();
+
+        // 2. Request authorization
+        List<String> scopes = Arrays.asList("openid", "profile", "address", "email");
+        String nonce = UUID.randomUUID().toString();
+        String state = UUID.randomUUID().toString();
+
+        AuthorizationRequest authorizationRequest = new AuthorizationRequest(responseTypes, clientId, scopes, redirectUri, nonce);
+        authorizationRequest.setState(state);
+
+        AuthorizationResponse authorizationResponse = authenticateResourceOwnerAndGrantAccess(
+                authorizationEndpoint, authorizationRequest, userId, userSecret);
+
+        assertEquals(authorizationResponse.getResponseMode(), ResponseMode.FRAGMENT);
+        assertNotNull(authorizationResponse.getLocation());
+        assertNotNull(authorizationResponse.getCode());
+        assertNotNull(authorizationResponse.getAccessToken());
+        assertNotNull(authorizationResponse.getState());
+    }
+
+    @Parameters({"userId", "userSecret", "redirectUris", "redirectUri", "sectorIdentifierUri"})
+    @Test
+    public void fragmentResponseModeHybridCodeToken(
+            final String userId, final String userSecret, final String redirectUris, final String redirectUri,
+            final String sectorIdentifierUri) throws Exception {
+        showTitle("fragmentResponseModeHybridCodeToken");
+
+        List<ResponseType> responseTypes = Arrays.asList(ResponseType.CODE, ResponseType.TOKEN);
+
+        // 1. Register client
+        RegisterRequest registerRequest = new RegisterRequest(ApplicationType.WEB, "oxAuth test app",
+                StringUtils.spaceSeparatedToList(redirectUris));
+        registerRequest.setResponseTypes(responseTypes);
+        registerRequest.setSectorIdentifierUri(sectorIdentifierUri);
+
+        RegisterClient registerClient = new RegisterClient(registrationEndpoint);
+        registerClient.setRequest(registerRequest);
+        RegisterResponse registerResponse = registerClient.exec();
+
+        showClient(registerClient);
+        assertEquals(registerResponse.getStatus(), 200, "Unexpected response code: " + registerResponse.getEntity());
+        assertNotNull(registerResponse.getClientId());
+        assertNotNull(registerResponse.getClientSecret());
+        assertNotNull(registerResponse.getRegistrationAccessToken());
+        assertNotNull(registerResponse.getClientIdIssuedAt());
+        assertNotNull(registerResponse.getClientSecretExpiresAt());
+
+        String clientId = registerResponse.getClientId();
+
+        // 2. Request authorization
+        List<String> scopes = Arrays.asList("openid", "profile", "address", "email");
+        String nonce = UUID.randomUUID().toString();
+        String state = UUID.randomUUID().toString();
+
+        AuthorizationRequest authorizationRequest = new AuthorizationRequest(responseTypes, clientId, scopes, redirectUri, nonce);
+        authorizationRequest.setResponseMode(ResponseMode.FRAGMENT);
+        authorizationRequest.setState(state);
+
+        AuthorizationResponse authorizationResponse = authenticateResourceOwnerAndGrantAccess(
+                authorizationEndpoint, authorizationRequest, userId, userSecret);
+
+        assertEquals(authorizationResponse.getResponseMode(), ResponseMode.FRAGMENT);
+        assertNotNull(authorizationResponse.getLocation());
+        assertNotNull(authorizationResponse.getCode());
+        assertNotNull(authorizationResponse.getAccessToken());
+        assertNotNull(authorizationResponse.getState());
+    }
+
+    @Parameters({"userId", "userSecret", "redirectUris", "redirectUri", "sectorIdentifierUri"})
+    @Test
+    public void queryResponseModeHybridCodeToken(
+            final String userId, final String userSecret, final String redirectUris, final String redirectUri,
+            final String sectorIdentifierUri) throws Exception {
+        showTitle("queryResponseModeHybridCodeToken");
+
+        List<ResponseType> responseTypes = Arrays.asList(ResponseType.CODE, ResponseType.TOKEN);
+
+        // 1. Register client
+        RegisterRequest registerRequest = new RegisterRequest(ApplicationType.WEB, "oxAuth test app",
+                StringUtils.spaceSeparatedToList(redirectUris));
+        registerRequest.setResponseTypes(responseTypes);
+        registerRequest.setSectorIdentifierUri(sectorIdentifierUri);
+
+        RegisterClient registerClient = new RegisterClient(registrationEndpoint);
+        registerClient.setRequest(registerRequest);
+        RegisterResponse registerResponse = registerClient.exec();
+
+        showClient(registerClient);
+        assertEquals(registerResponse.getStatus(), 200, "Unexpected response code: " + registerResponse.getEntity());
+        assertNotNull(registerResponse.getClientId());
+        assertNotNull(registerResponse.getClientSecret());
+        assertNotNull(registerResponse.getRegistrationAccessToken());
+        assertNotNull(registerResponse.getClientIdIssuedAt());
+        assertNotNull(registerResponse.getClientSecretExpiresAt());
+
+        String clientId = registerResponse.getClientId();
+
+        // 2. Request authorization
+        List<String> scopes = Arrays.asList("openid", "profile", "address", "email");
+        String nonce = UUID.randomUUID().toString();
+        String state = UUID.randomUUID().toString();
+
+        AuthorizationRequest authorizationRequest = new AuthorizationRequest(responseTypes, clientId, scopes, redirectUri, nonce);
+        authorizationRequest.setResponseMode(ResponseMode.QUERY);
+        authorizationRequest.setState(state);
+
+        AuthorizationResponse authorizationResponse = authenticateResourceOwnerAndGrantAccess(
+                authorizationEndpoint, authorizationRequest, userId, userSecret);
+
+        assertEquals(authorizationResponse.getResponseMode(), ResponseMode.QUERY);
+        assertNotNull(authorizationResponse.getLocation());
+        assertNotNull(authorizationResponse.getCode());
+        assertNotNull(authorizationResponse.getAccessToken());
+        assertNotNull(authorizationResponse.getState());
+    }
+
+    @Parameters({"userId", "userSecret", "redirectUris", "redirectUri", "sectorIdentifierUri"})
+    @Test
+    public void formPostResponseModeHybridCodeToken(
+            final String userId, final String userSecret, final String redirectUris, final String redirectUri,
+            final String sectorIdentifierUri) throws Exception {
+        showTitle("formPostResponseModeHybridCodeToken");
+
+        List<ResponseType> responseTypes = Arrays.asList(ResponseType.CODE, ResponseType.TOKEN);
+
+        // 1. Register client
+        RegisterRequest registerRequest = new RegisterRequest(ApplicationType.WEB, "oxAuth test app",
+                StringUtils.spaceSeparatedToList(redirectUris));
+        registerRequest.setResponseTypes(responseTypes);
+        registerRequest.setSectorIdentifierUri(sectorIdentifierUri);
+
+        RegisterClient registerClient = new RegisterClient(registrationEndpoint);
+        registerClient.setRequest(registerRequest);
+        RegisterResponse registerResponse = registerClient.exec();
+
+        showClient(registerClient);
+        assertEquals(registerResponse.getStatus(), 200, "Unexpected response code: " + registerResponse.getEntity());
+        assertNotNull(registerResponse.getClientId());
+        assertNotNull(registerResponse.getClientSecret());
+        assertNotNull(registerResponse.getRegistrationAccessToken());
+        assertNotNull(registerResponse.getClientIdIssuedAt());
+        assertNotNull(registerResponse.getClientSecretExpiresAt());
+
+        String clientId = registerResponse.getClientId();
+
+        // 2. Request authorization
+        List<String> scopes = Arrays.asList("openid", "profile", "address", "email");
+        String nonce = UUID.randomUUID().toString();
+        String state = UUID.randomUUID().toString();
+
+        AuthorizationRequest authorizationRequest = new AuthorizationRequest(responseTypes, clientId, scopes, redirectUri, nonce);
+        authorizationRequest.setResponseMode(ResponseMode.FORM_POST);
+        authorizationRequest.setState(state);
+
+        AuthorizationResponse authorizationResponse = authenticateResourceOwnerAndGrantAccess(
+                authorizationEndpoint, authorizationRequest, userId, userSecret);
+
+        assertEquals(authorizationResponse.getResponseMode(), ResponseMode.FORM_POST);
+    }
+}
diff --git a/oxAuth/Client/src/test/java/org/gluu/oxauth/ws/rs/AuthorizationSupportCustomParams.java b/oxAuth/Client/src/test/java/org/gluu/oxauth/ws/rs/AuthorizationSupportCustomParams.java
new file mode 100644
index 00000000..65529113
--- /dev/null
+++ b/oxAuth/Client/src/test/java/org/gluu/oxauth/ws/rs/AuthorizationSupportCustomParams.java
@@ -0,0 +1,90 @@
+/*
+ * oxAuth is available under the MIT License (2008). See http://opensource.org/licenses/MIT for full text.
+ *
+ * Copyright (c) 2014, Gluu
+ */
+
+package org.gluu.oxauth.ws.rs;
+
+import static org.testng.Assert.assertEquals;
+import static org.testng.Assert.assertNotNull;
+
+import java.util.Arrays;
+import java.util.List;
+import java.util.UUID;
+
+import org.gluu.oxauth.BaseTest;
+import org.gluu.oxauth.client.AuthorizationRequest;
+import org.gluu.oxauth.client.AuthorizationResponse;
+import org.gluu.oxauth.client.AuthorizeClient;
+import org.gluu.oxauth.client.RegisterClient;
+import org.gluu.oxauth.client.RegisterRequest;
+import org.gluu.oxauth.client.RegisterResponse;
+import org.gluu.oxauth.model.common.ResponseType;
+import org.gluu.oxauth.model.register.ApplicationType;
+import org.gluu.oxauth.model.util.StringUtils;
+import org.testng.annotations.Parameters;
+import org.testng.annotations.Test;
+
+/**
+ * @author Javier Rojas Blum
+ * @version November 23, 2017
+ */
+public class AuthorizationSupportCustomParams extends BaseTest {
+
+    @Parameters({"userId", "userSecret", "redirectUri", "redirectUris", "sectorIdentifierUri"})
+    @Test
+    public void authorizationSupportCustomParams(
+            final String userId, final String userSecret, final String redirectUri, final String redirectUris,
+            final String sectorIdentifierUri) throws Exception {
+        showTitle("authorizationSupportCustomParams");
+
+        List<ResponseType> responseTypes = Arrays.asList(ResponseType.TOKEN, ResponseType.ID_TOKEN);
+
+        // 1. Register client
+        RegisterRequest registerRequest = new RegisterRequest(ApplicationType.WEB, "oxAuth test app",
+                StringUtils.spaceSeparatedToList(redirectUris));
+        registerRequest.setResponseTypes(responseTypes);
+        registerRequest.setSectorIdentifierUri(sectorIdentifierUri);
+
+        RegisterClient registerClient = new RegisterClient(registrationEndpoint);
+        registerClient.setRequest(registerRequest);
+        RegisterResponse registerResponse = registerClient.exec();
+
+        showClient(registerClient);
+        assertEquals(registerResponse.getStatus(), 200, "Unexpected response code: " + registerResponse.getEntity());
+        assertNotNull(registerResponse.getClientId());
+        assertNotNull(registerResponse.getClientSecret());
+        assertNotNull(registerResponse.getRegistrationAccessToken());
+        assertNotNull(registerResponse.getClientIdIssuedAt());
+        assertNotNull(registerResponse.getClientSecretExpiresAt());
+
+        String clientId = registerResponse.getClientId();
+
+        // 2. Request authorization
+        List<String> scopes = Arrays.asList("openid", "test");
+        String nonce = UUID.randomUUID().toString();
+        String state = UUID.randomUUID().toString();
+
+        AuthorizationRequest authorizationRequest = new AuthorizationRequest(responseTypes, clientId, scopes, redirectUri, nonce);
+        authorizationRequest.setState(state);
+        authorizationRequest.addCustomParameter("customParam1", "value1");
+        authorizationRequest.addCustomParameter("customParam2", "value2");
+        authorizationRequest.addCustomParameter("customParam3", "value3");
+
+        AuthorizeClient authorizeClient = new AuthorizeClient(authorizationEndpoint);
+        authorizeClient.setRequest(authorizationRequest);
+
+        AuthorizationResponse authorizationResponse = authenticateResourceOwnerAndGrantAccess(
+                authorizationEndpoint, authorizationRequest, userId, userSecret);
+
+        assertNotNull(authorizationResponse.getLocation(), "The location is null");
+        assertNotNull(authorizationResponse.getAccessToken(), "The accessToken is null");
+        assertNotNull(authorizationResponse.getTokenType(), "The tokenType is null");
+        assertNotNull(authorizationResponse.getIdToken(), "The idToken is null");
+        assertNotNull(authorizationResponse.getState(), "The state is null");
+
+        // NOTE: After complete successfully this test, check whether the stored session in LDAP has the 3 custom params
+        // stored in its session attributes list.
+    }
+}
diff --git a/oxAuth/Client/src/test/java/org/gluu/oxauth/ws/rs/AuthorizeRestWebServiceHttpTest.java b/oxAuth/Client/src/test/java/org/gluu/oxauth/ws/rs/AuthorizeRestWebServiceHttpTest.java
new file mode 100644
index 00000000..1cda42d7
--- /dev/null
+++ b/oxAuth/Client/src/test/java/org/gluu/oxauth/ws/rs/AuthorizeRestWebServiceHttpTest.java
@@ -0,0 +1,3017 @@
+/*
+ * oxAuth is available under the MIT License (2008). See http://opensource.org/licenses/MIT for full text.
+ *
+ * Copyright (c) 2014, Gluu
+ */
+
+package org.gluu.oxauth.ws.rs;
+
+import static org.gluu.oxauth.model.register.RegisterRequestParam.APPLICATION_TYPE;
+import static org.gluu.oxauth.model.register.RegisterRequestParam.CLIENT_NAME;
+import static org.gluu.oxauth.model.register.RegisterRequestParam.ID_TOKEN_SIGNED_RESPONSE_ALG;
+import static org.gluu.oxauth.model.register.RegisterRequestParam.REDIRECT_URIS;
+import static org.gluu.oxauth.model.register.RegisterRequestParam.RESPONSE_TYPES;
+import static org.gluu.oxauth.model.register.RegisterRequestParam.SCOPE;
+import static org.testng.Assert.assertEquals;
+import static org.testng.Assert.assertNotNull;
+import static org.testng.Assert.assertTrue;
+
+import java.util.ArrayList;
+import java.util.Arrays;
+import java.util.List;
+import java.util.UUID;
+
+import org.gluu.oxauth.BaseTest;
+import org.gluu.oxauth.client.Asserter;
+import org.gluu.oxauth.client.AuthorizationRequest;
+import org.gluu.oxauth.client.AuthorizationResponse;
+import org.gluu.oxauth.client.AuthorizeClient;
+import org.gluu.oxauth.client.JwkClient;
+import org.gluu.oxauth.client.RegisterClient;
+import org.gluu.oxauth.client.RegisterRequest;
+import org.gluu.oxauth.client.RegisterResponse;
+import org.gluu.oxauth.client.UserInfoClient;
+import org.gluu.oxauth.client.UserInfoResponse;
+import org.gluu.oxauth.client.model.authorize.Claim;
+import org.gluu.oxauth.client.model.authorize.ClaimValue;
+import org.gluu.oxauth.client.model.authorize.JwtAuthorizationRequest;
+import org.gluu.oxauth.model.authorize.AuthorizeErrorResponseType;
+import org.gluu.oxauth.model.common.Prompt;
+import org.gluu.oxauth.model.common.ResponseType;
+import org.gluu.oxauth.model.common.SubjectType;
+import org.gluu.oxauth.model.crypto.OxAuthCryptoProvider;
+import org.gluu.oxauth.model.crypto.signature.RSAPublicKey;
+import org.gluu.oxauth.model.crypto.signature.SignatureAlgorithm;
+import org.gluu.oxauth.model.jws.RSASigner;
+import org.gluu.oxauth.model.jwt.Jwt;
+import org.gluu.oxauth.model.jwt.JwtClaimName;
+import org.gluu.oxauth.model.jwt.JwtHeaderName;
+import org.gluu.oxauth.model.register.ApplicationType;
+import org.gluu.oxauth.model.util.StringUtils;
+import org.testng.annotations.Parameters;
+import org.testng.annotations.Test;
+
+/**
+ * Functional tests for Authorize Web Services (HTTP)
+ *
+ * @author Javier Rojas Blum
+ * @version August 29, 2018
+ */
+public class AuthorizeRestWebServiceHttpTest extends BaseTest {
+
+    @Parameters({"userId", "userSecret", "redirectUris", "redirectUri", "sectorIdentifierUri"})
+    @Test
+    public void requestAuthorizationCode(final String userId, final String userSecret, final String redirectUris, final String redirectUri, final String sectorIdentifierUri) {
+        showTitle("requestAuthorizationCode");
+
+        List<ResponseType> responseTypes = Arrays.asList(ResponseType.CODE);
+
+        // 1. Register client
+        RegisterRequest registerRequest = new RegisterRequest(ApplicationType.WEB, "oxAuth test app",
+                StringUtils.spaceSeparatedToList(redirectUris));
+        registerRequest.setResponseTypes(responseTypes);
+        registerRequest.setSectorIdentifierUri(sectorIdentifierUri);
+
+        RegisterClient registerClient = new RegisterClient(registrationEndpoint);
+        registerClient.setRequest(registerRequest);
+        RegisterResponse registerResponse = registerClient.exec();
+
+        showClient(registerClient);
+        assertEquals(registerResponse.getStatus(), 200, "Unexpected response code: " + registerResponse.getEntity());
+        assertNotNull(registerResponse.getClientId());
+        assertNotNull(registerResponse.getClientSecret());
+        assertNotNull(registerResponse.getRegistrationAccessToken());
+        assertNotNull(registerResponse.getClientIdIssuedAt());
+        assertNotNull(registerResponse.getClientSecretExpiresAt());
+
+        String clientId = registerResponse.getClientId();
+        String registrationAccessToken = registerResponse.getRegistrationAccessToken();
+        String registrationClientUri = registerResponse.getRegistrationClientUri();
+
+        // 2. Client read
+        RegisterRequest readClientRequest = new RegisterRequest(registrationAccessToken);
+
+        RegisterClient readClient = new RegisterClient(registrationClientUri);
+        readClient.setRequest(readClientRequest);
+        RegisterResponse readClientResponse = readClient.exec();
+
+        showClient(readClient);
+        assertEquals(readClientResponse.getStatus(), 200, "Unexpected response code: " + readClientResponse.getEntity());
+        assertNotNull(readClientResponse.getClientId());
+        assertNotNull(readClientResponse.getClientSecret());
+        assertNotNull(readClientResponse.getClientIdIssuedAt());
+        assertNotNull(readClientResponse.getClientSecretExpiresAt());
+
+        assertNotNull(readClientResponse.getClaims().get(RESPONSE_TYPES.toString()));
+        assertNotNull(readClientResponse.getClaims().get(REDIRECT_URIS.toString()));
+        assertNotNull(readClientResponse.getClaims().get(APPLICATION_TYPE.toString()));
+        assertNotNull(readClientResponse.getClaims().get(CLIENT_NAME.toString()));
+        assertNotNull(readClientResponse.getClaims().get(ID_TOKEN_SIGNED_RESPONSE_ALG.toString()));
+        assertNotNull(readClientResponse.getClaims().get(SCOPE.toString()));
+
+        // 3. Request authorization and receive the authorization code.
+        List<String> scopes = Arrays.asList("openid", "profile", "address", "email");
+        String state = UUID.randomUUID().toString();
+
+        AuthorizationRequest authorizationRequest = new AuthorizationRequest(responseTypes, clientId, scopes, redirectUri, null);
+        authorizationRequest.setState(state);
+
+        AuthorizationResponse authorizationResponse = authenticateResourceOwnerAndGrantAccess(
+                authorizationEndpoint, authorizationRequest, userId, userSecret);
+
+        assertNotNull(authorizationResponse.getLocation(), "The location is null");
+        assertNotNull(authorizationResponse.getCode(), "The authorization code is null");
+        assertNotNull(authorizationResponse.getState(), "The state is null");
+        assertNotNull(authorizationResponse.getScope(), "The scope is null");
+    }
+
+    @Parameters({"userId", "userSecret", "redirectUris", "redirectUri", "sectorIdentifierUri"})
+    @Test
+    public void requestAuthorizationCodeUserBasicAuth(
+            final String userId, final String userSecret, final String redirectUris, final String redirectUri,
+            final String sectorIdentifierUri) throws Exception {
+        showTitle("requestAuthorizationCodeUserBasicAuth");
+
+        List<ResponseType> responseTypes = Arrays.asList(ResponseType.CODE);
+
+        // 1. Register client
+        RegisterRequest registerRequest = new RegisterRequest(ApplicationType.WEB, "oxAuth test app",
+                StringUtils.spaceSeparatedToList(redirectUris));
+        registerRequest.setResponseTypes(responseTypes);
+        registerRequest.setSectorIdentifierUri(sectorIdentifierUri);
+
+        RegisterClient registerClient = new RegisterClient(registrationEndpoint);
+        registerClient.setRequest(registerRequest);
+        RegisterResponse registerResponse = registerClient.exec();
+
+        showClient(registerClient);
+        assertEquals(registerResponse.getStatus(), 200, "Unexpected response code: " + registerResponse.getEntity());
+        assertNotNull(registerResponse.getClientId());
+        assertNotNull(registerResponse.getClientSecret());
+        assertNotNull(registerResponse.getRegistrationAccessToken());
+        assertNotNull(registerResponse.getClientIdIssuedAt());
+        assertNotNull(registerResponse.getClientSecretExpiresAt());
+
+        String clientId = registerResponse.getClientId();
+        String registrationAccessToken = registerResponse.getRegistrationAccessToken();
+        String registrationClientUri = registerResponse.getRegistrationClientUri();
+
+        // 2. Client read
+        RegisterRequest readClientRequest = new RegisterRequest(registrationAccessToken);
+
+        RegisterClient readClient = new RegisterClient(registrationClientUri);
+        readClient.setRequest(readClientRequest);
+        RegisterResponse readClientResponse = readClient.exec();
+
+        showClient(readClient);
+        assertEquals(readClientResponse.getStatus(), 200, "Unexpected response code: " + readClientResponse.getEntity());
+        assertNotNull(readClientResponse.getClientId());
+        assertNotNull(readClientResponse.getClientSecret());
+        assertNotNull(readClientResponse.getClientIdIssuedAt());
+        assertNotNull(readClientResponse.getClientSecretExpiresAt());
+
+        assertNotNull(readClientResponse.getClaims().get(RESPONSE_TYPES.toString()));
+        assertNotNull(readClientResponse.getClaims().get(REDIRECT_URIS.toString()));
+        assertNotNull(readClientResponse.getClaims().get(APPLICATION_TYPE.toString()));
+        assertNotNull(readClientResponse.getClaims().get(CLIENT_NAME.toString()));
+        assertNotNull(readClientResponse.getClaims().get(ID_TOKEN_SIGNED_RESPONSE_ALG.toString()));
+        assertNotNull(readClientResponse.getClaims().get(SCOPE.toString()));
+
+        // 3. Request authorization and receive the authorization code.
+        List<String> scopes = Arrays.asList("openid", "profile", "address", "email");
+        String state = UUID.randomUUID().toString();
+
+        AuthorizationRequest authorizationRequest = new AuthorizationRequest(responseTypes, clientId, scopes, redirectUri, null);
+        authorizationRequest.setState(state);
+
+        AuthorizationResponse authorizationResponse = authenticateResourceOwnerAndGrantAccess(
+                authorizationEndpoint, authorizationRequest, userId, userSecret);
+
+        assertNotNull(authorizationResponse.getLocation(), "The location is null");
+        assertNotNull(authorizationResponse.getCode(), "The authorization code is null");
+        assertNotNull(authorizationResponse.getState(), "The state is null");
+        assertNotNull(authorizationResponse.getScope(), "The scope is null");
+    }
+
+    @Parameters({"userId", "userSecret", "redirectUris", "redirectUri", "sectorIdentifierUri"})
+    @Test
+    public void requestAuthorizationCodeNoRedirection(
+            final String userId, final String userSecret, final String redirectUris, final String redirectUri,
+            final String sectorIdentifierUri) throws Exception {
+        showTitle("requestAuthorizationCodeNoRedirection");
+
+        List<ResponseType> responseTypes = Arrays.asList(ResponseType.CODE);
+
+        // 1. Register client
+        RegisterRequest registerRequest = new RegisterRequest(ApplicationType.WEB, "oxAuth test app",
+                StringUtils.spaceSeparatedToList(redirectUris));
+        registerRequest.setResponseTypes(responseTypes);
+        registerRequest.setSectorIdentifierUri(sectorIdentifierUri);
+
+        RegisterClient registerClient = new RegisterClient(registrationEndpoint);
+        registerClient.setRequest(registerRequest);
+        RegisterResponse registerResponse = registerClient.exec();
+
+        showClient(registerClient);
+        assertEquals(registerResponse.getStatus(), 200, "Unexpected response code: " + registerResponse.getEntity());
+        assertNotNull(registerResponse.getClientId());
+        assertNotNull(registerResponse.getClientSecret());
+        assertNotNull(registerResponse.getRegistrationAccessToken());
+        assertNotNull(registerResponse.getClientIdIssuedAt());
+        assertNotNull(registerResponse.getClientSecretExpiresAt());
+
+        String clientId = registerResponse.getClientId();
+        String registrationAccessToken = registerResponse.getRegistrationAccessToken();
+        String registrationClientUri = registerResponse.getRegistrationClientUri();
+
+        // 2. Client read
+        RegisterRequest readClientRequest = new RegisterRequest(registrationAccessToken);
+
+        RegisterClient readClient = new RegisterClient(registrationClientUri);
+        readClient.setRequest(readClientRequest);
+        RegisterResponse readClientResponse = readClient.exec();
+
+        showClient(readClient);
+        assertEquals(readClientResponse.getStatus(), 200, "Unexpected response code: " + readClientResponse.getEntity());
+        assertNotNull(readClientResponse.getClientId());
+        assertNotNull(readClientResponse.getClientSecret());
+        assertNotNull(readClientResponse.getClientIdIssuedAt());
+        assertNotNull(readClientResponse.getClientSecretExpiresAt());
+
+        assertNotNull(readClientResponse.getClaims().get(RESPONSE_TYPES.toString()));
+        assertNotNull(readClientResponse.getClaims().get(REDIRECT_URIS.toString()));
+        assertNotNull(readClientResponse.getClaims().get(APPLICATION_TYPE.toString()));
+        assertNotNull(readClientResponse.getClaims().get(CLIENT_NAME.toString()));
+        assertNotNull(readClientResponse.getClaims().get(ID_TOKEN_SIGNED_RESPONSE_ALG.toString()));
+        assertNotNull(readClientResponse.getClaims().get(SCOPE.toString()));
+
+        // 3. Request authorization and receive the authorization code.
+        List<String> scopes = Arrays.asList("openid", "profile", "address", "email");
+        String state = UUID.randomUUID().toString();
+
+        AuthorizationRequest authorizationRequest = new AuthorizationRequest(responseTypes, clientId, scopes, redirectUri, null);
+        authorizationRequest.setUseNoRedirectHeader(true); // Use Alternate Method for redirect
+        authorizationRequest.setState(state);
+
+        AuthorizeClient authorizeClient = new AuthorizeClient(authorizationEndpoint);
+        authorizeClient.setRequest(authorizationRequest);
+
+        AuthorizationResponse authorizationResponse = authenticateResourceOwnerAndGrantAccess(
+                authorizationEndpoint, authorizationRequest, userId, userSecret);
+
+        showClient(authorizeClient);
+        assertNotNull(authorizationResponse.getLocation(), "The location is null");
+        assertNotNull(authorizationResponse.getCode(), "The authorization code is null");
+        assertNotNull(authorizationResponse.getState(), "The state is null");
+        assertNotNull(authorizationResponse.getScope(), "The scope is null");
+    }
+
+    @Parameters({"userId", "userSecret"})
+    @Test
+    public void requestAuthorizationCodeFail1(final String userId, final String userSecret) throws Exception {
+        showTitle("requestAuthorizationCodeFail1");
+
+        List<ResponseType> responseTypes = Arrays.asList(ResponseType.CODE);
+
+        AuthorizationRequest request = new AuthorizationRequest(responseTypes, null, null, null, null);
+        request.setAuthUsername(userId);
+        request.setAuthPassword(userSecret);
+
+        AuthorizeClient authorizeClient = new AuthorizeClient(authorizationEndpoint);
+        authorizeClient.setRequest(request);
+        AuthorizationResponse response = authorizeClient.exec();
+
+        showClient(authorizeClient);
+        assertEquals(response.getStatus(), 400, "Unexpected response code: " + response.getStatus());
+        assertNotNull(response.getErrorType(), "The error type is null");
+        assertNotNull(response.getErrorDescription(), "The error description is null");
+    }
+
+    @Parameters({"userId", "userSecret", "redirectUris", "sectorIdentifierUri"})
+    @Test
+    public void requestAuthorizationCodeFail2(
+            final String userId, final String userSecret, final String redirectUris, final String sectorIdentifierUri) throws Exception {
+        showTitle("requestAuthorizationCodeFail2");
+
+        List<ResponseType> responseTypes = Arrays.asList(ResponseType.CODE);
+
+        // 1. Register client
+        RegisterRequest registerRequest = new RegisterRequest(ApplicationType.WEB, "oxAuth test app",
+                StringUtils.spaceSeparatedToList(redirectUris));
+        registerRequest.setResponseTypes(responseTypes);
+        registerRequest.setSectorIdentifierUri(sectorIdentifierUri);
+
+        RegisterClient registerClient = new RegisterClient(registrationEndpoint);
+        registerClient.setRequest(registerRequest);
+        RegisterResponse registerResponse = registerClient.exec();
+
+        showClient(registerClient);
+        assertEquals(registerResponse.getStatus(), 200, "Unexpected response code: " + registerResponse.getEntity());
+        assertNotNull(registerResponse.getClientId());
+        assertNotNull(registerResponse.getClientSecret());
+        assertNotNull(registerResponse.getRegistrationAccessToken());
+        assertNotNull(registerResponse.getClientIdIssuedAt());
+        assertNotNull(registerResponse.getClientSecretExpiresAt());
+
+        String clientId = registerResponse.getClientId();
+        String registrationAccessToken = registerResponse.getRegistrationAccessToken();
+        String registrationClientUri = registerResponse.getRegistrationClientUri();
+
+        // 2. Client read
+        RegisterRequest readClientRequest = new RegisterRequest(registrationAccessToken);
+
+        RegisterClient readClient = new RegisterClient(registrationClientUri);
+        readClient.setRequest(readClientRequest);
+        RegisterResponse readClientResponse = readClient.exec();
+
+        showClient(readClient);
+        assertEquals(readClientResponse.getStatus(), 200, "Unexpected response code: " + readClientResponse.getEntity());
+        assertNotNull(readClientResponse.getClientId());
+        assertNotNull(readClientResponse.getClientSecret());
+        assertNotNull(readClientResponse.getClientIdIssuedAt());
+        assertNotNull(readClientResponse.getClientSecretExpiresAt());
+
+        assertNotNull(readClientResponse.getClaims().get(RESPONSE_TYPES.toString()));
+        assertNotNull(readClientResponse.getClaims().get(REDIRECT_URIS.toString()));
+        assertNotNull(readClientResponse.getClaims().get(APPLICATION_TYPE.toString()));
+        assertNotNull(readClientResponse.getClaims().get(CLIENT_NAME.toString()));
+        assertNotNull(readClientResponse.getClaims().get(ID_TOKEN_SIGNED_RESPONSE_ALG.toString()));
+        assertNotNull(readClientResponse.getClaims().get(SCOPE.toString()));
+
+        // 3. Request authorization
+        List<String> scopes = Arrays.asList("openid", "profile", "address", "email");
+        String state = UUID.randomUUID().toString();
+        String redirectUri = "https://INVALID_REDIRECT_URI";
+
+        AuthorizationRequest request = new AuthorizationRequest(responseTypes, clientId, scopes, redirectUri, null);
+        request.setState(state);
+        request.setAuthUsername(userId);
+        request.setAuthPassword(userSecret);
+        request.getPrompts().add(Prompt.NONE);
+
+        AuthorizeClient authorizeClient = new AuthorizeClient(authorizationEndpoint);
+        authorizeClient.setRequest(request);
+        AuthorizationResponse response = authorizeClient.exec();
+
+        showClient(authorizeClient);
+        assertEquals(response.getStatus(), 400, "Unexpected response code: " + response.getStatus());
+        assertNotNull(response.getErrorType(), "The error type is null");
+        assertNotNull(response.getErrorDescription(), "The error description is null");
+    }
+
+    @Parameters({"redirectUri"})
+    @Test
+    public void requestAuthorizationCodeFail3(final String redirectUri) throws Exception {
+        showTitle("requestAuthorizationCodeFail3");
+
+        List<ResponseType> responseTypes = Arrays.asList(ResponseType.CODE);
+
+        // 1. Request authorization with an invalid Client ID.
+        String clientId = "@!1111!0008!INVALID_VALUE";
+        List<String> scopes = Arrays.asList("openid", "profile", "address", "email");
+        String state = UUID.randomUUID().toString();
+
+        AuthorizationRequest authorizationRequest = new AuthorizationRequest(responseTypes, clientId, scopes, redirectUri, null);
+        authorizationRequest.setState(state);
+
+        AuthorizeClient authorizeClient = new AuthorizeClient(authorizationEndpoint);
+        authorizeClient.setRequest(authorizationRequest);
+
+        AuthorizationResponse authorizationResponse = authorizeClient.exec();
+
+        showClient(authorizeClient);
+        assertEquals(authorizationResponse.getStatus(), 401, "Unexpected response code: " + authorizationResponse.getStatus());
+        assertEquals(authorizationResponse.getErrorType(), AuthorizeErrorResponseType.UNAUTHORIZED_CLIENT);
+        assertNotNull(authorizationResponse.getErrorType(), "The error type is null");
+        assertNotNull(authorizationResponse.getErrorDescription(), "The error description is null");
+    }
+
+    @Parameters({"userId", "userSecret", "redirectUris", "sectorIdentifierUri"})
+    @Test
+    public void requestAuthorizationCodeFail4(
+            final String userId, final String userSecret, final String redirectUris, final String sectorIdentifierUri) throws Exception {
+        showTitle("requestAuthorizationCodeFail4");
+
+        List<ResponseType> responseTypes = Arrays.asList(ResponseType.CODE, ResponseType.ID_TOKEN);
+
+        // 1. Register client
+        RegisterRequest registerRequest = new RegisterRequest(ApplicationType.WEB, "oxAuth test app",
+                StringUtils.spaceSeparatedToList(redirectUris));
+        registerRequest.setResponseTypes(responseTypes);
+        registerRequest.setSectorIdentifierUri(sectorIdentifierUri);
+
+        RegisterClient registerClient = new RegisterClient(registrationEndpoint);
+        registerClient.setRequest(registerRequest);
+        RegisterResponse registerResponse = registerClient.exec();
+
+        showClient(registerClient);
+        assertEquals(registerResponse.getStatus(), 200, "Unexpected response code: " + registerResponse.getEntity());
+        assertNotNull(registerResponse.getClientId());
+        assertNotNull(registerResponse.getClientSecret());
+        assertNotNull(registerResponse.getRegistrationAccessToken());
+        assertNotNull(registerResponse.getClientIdIssuedAt());
+        assertNotNull(registerResponse.getClientSecretExpiresAt());
+
+        String clientId = registerResponse.getClientId();
+        String registrationAccessToken = registerResponse.getRegistrationAccessToken();
+        String registrationClientUri = registerResponse.getRegistrationClientUri();
+
+        // 2. Client read
+        RegisterRequest readClientRequest = new RegisterRequest(registrationAccessToken);
+
+        RegisterClient readClient = new RegisterClient(registrationClientUri);
+        readClient.setRequest(readClientRequest);
+        RegisterResponse readClientResponse = readClient.exec();
+
+        showClient(readClient);
+        assertEquals(readClientResponse.getStatus(), 200, "Unexpected response code: " + readClientResponse.getEntity());
+        assertNotNull(readClientResponse.getClientId());
+        assertNotNull(readClientResponse.getClientSecret());
+        assertNotNull(readClientResponse.getClientIdIssuedAt());
+        assertNotNull(readClientResponse.getClientSecretExpiresAt());
+
+        assertNotNull(readClientResponse.getClaims().get(RESPONSE_TYPES.toString()));
+        assertNotNull(readClientResponse.getClaims().get(REDIRECT_URIS.toString()));
+        assertNotNull(readClientResponse.getClaims().get(APPLICATION_TYPE.toString()));
+        assertNotNull(readClientResponse.getClaims().get(CLIENT_NAME.toString()));
+        assertNotNull(readClientResponse.getClaims().get(ID_TOKEN_SIGNED_RESPONSE_ALG.toString()));
+        assertNotNull(readClientResponse.getClaims().get(SCOPE.toString()));
+
+        // 3. Request authorization
+        List<String> scopes = Arrays.asList("openid", "email");
+        String nonce = UUID.randomUUID().toString();
+        String redirectUri = "https://evil.com/oxLicenceAdmin";
+
+        AuthorizationRequest authorizationRequest = new AuthorizationRequest(responseTypes, clientId, scopes, redirectUri, nonce);
+
+        AuthorizeClient authorizeClient = new AuthorizeClient(authorizationEndpoint);
+        authorizeClient.setRequest(authorizationRequest);
+
+        AuthorizationResponse authorizationResponse = authorizeClient.exec();
+
+        showClient(authorizeClient);
+        assertEquals(authorizationResponse.getStatus(), 400, "Unexpected response code: " + authorizationResponse.getStatus());
+        assertNotNull(authorizationResponse.getErrorType(), "The error type is null");
+        assertNotNull(authorizationResponse.getErrorDescription(), "The error description is null");
+    }
+
+    @Parameters({"userId", "userSecret", "redirectUris", "redirectUri", "sectorIdentifierUri"})
+    @Test
+    public void requestAuthorizationToken(
+            final String userId, final String userSecret, final String redirectUris, final String redirectUri,
+            final String sectorIdentifierUri) throws Exception {
+        showTitle("requestAuthorizationToken");
+
+        List<ResponseType> responseTypes = Arrays.asList(ResponseType.TOKEN);
+
+        // 1. Register client
+        RegisterRequest registerRequest = new RegisterRequest(ApplicationType.WEB, "oxAuth test app",
+                StringUtils.spaceSeparatedToList(redirectUris));
+        registerRequest.setResponseTypes(responseTypes);
+        registerRequest.setSectorIdentifierUri(sectorIdentifierUri);
+
+        RegisterClient registerClient = new RegisterClient(registrationEndpoint);
+        registerClient.setRequest(registerRequest);
+        RegisterResponse registerResponse = registerClient.exec();
+
+        showClient(registerClient);
+        assertEquals(registerResponse.getStatus(), 200, "Unexpected response code: " + registerResponse.getEntity());
+        assertNotNull(registerResponse.getClientId());
+        assertNotNull(registerResponse.getClientSecret());
+        assertNotNull(registerResponse.getRegistrationAccessToken());
+        assertNotNull(registerResponse.getClientIdIssuedAt());
+        assertNotNull(registerResponse.getClientSecretExpiresAt());
+
+        String clientId = registerResponse.getClientId();
+        String registrationAccessToken = registerResponse.getRegistrationAccessToken();
+        String registrationClientUri = registerResponse.getRegistrationClientUri();
+
+        // 2. Client read
+        RegisterRequest readClientRequest = new RegisterRequest(registrationAccessToken);
+
+        RegisterClient readClient = new RegisterClient(registrationClientUri);
+        readClient.setRequest(readClientRequest);
+        RegisterResponse readClientResponse = readClient.exec();
+
+        showClient(readClient);
+        assertEquals(readClientResponse.getStatus(), 200, "Unexpected response code: " + readClientResponse.getEntity());
+        assertNotNull(readClientResponse.getClientId());
+        assertNotNull(readClientResponse.getClientSecret());
+        assertNotNull(readClientResponse.getClientIdIssuedAt());
+        assertNotNull(readClientResponse.getClientSecretExpiresAt());
+
+        assertNotNull(readClientResponse.getClaims().get(RESPONSE_TYPES.toString()));
+        assertNotNull(readClientResponse.getClaims().get(REDIRECT_URIS.toString()));
+        assertNotNull(readClientResponse.getClaims().get(APPLICATION_TYPE.toString()));
+        assertNotNull(readClientResponse.getClaims().get(CLIENT_NAME.toString()));
+        assertNotNull(readClientResponse.getClaims().get(ID_TOKEN_SIGNED_RESPONSE_ALG.toString()));
+        assertNotNull(readClientResponse.getClaims().get(SCOPE.toString()));
+
+        // 3. Request authorization
+        List<String> scopes = Arrays.asList("openid", "profile", "address", "email");
+        String nonce = UUID.randomUUID().toString();
+        String state = UUID.randomUUID().toString();
+
+        AuthorizationRequest authorizationRequest = new AuthorizationRequest(responseTypes, clientId, scopes, redirectUri, nonce);
+        authorizationRequest.setState(state);
+
+        AuthorizationResponse authorizationResponse = authenticateResourceOwnerAndGrantAccess(
+                authorizationEndpoint, authorizationRequest, userId, userSecret);
+
+        assertNotNull(authorizationResponse.getLocation(), "The location is null");
+        assertNotNull(authorizationResponse.getAccessToken(), "The access token is null");
+        assertNotNull(authorizationResponse.getState(), "The state is null");
+        assertNotNull(authorizationResponse.getTokenType(), "The token type is null");
+        assertNotNull(authorizationResponse.getExpiresIn(), "The expires in value is null");
+        assertNotNull(authorizationResponse.getScope(), "The scope must be null");
+    }
+
+    @Parameters({"userId", "userSecret", "redirectUris", "redirectUri", "sectorIdentifierUri"})
+    @Test
+    public void requestAuthorizationTokenUserBasicAuth(
+            final String userId, final String userSecret, final String redirectUris, final String redirectUri,
+            final String sectorIdentifierUri) throws Exception {
+        showTitle("requestAuthorizationTokenUserBasicAuth");
+
+        List<ResponseType> responseTypes = Arrays.asList(ResponseType.TOKEN);
+
+        // 1. Register client
+        RegisterRequest registerRequest = new RegisterRequest(ApplicationType.WEB, "oxAuth test app",
+                StringUtils.spaceSeparatedToList(redirectUris));
+        registerRequest.setResponseTypes(responseTypes);
+        registerRequest.setSectorIdentifierUri(sectorIdentifierUri);
+
+        RegisterClient registerClient = new RegisterClient(registrationEndpoint);
+        registerClient.setRequest(registerRequest);
+        RegisterResponse registerResponse = registerClient.exec();
+
+        showClient(registerClient);
+        assertEquals(registerResponse.getStatus(), 200, "Unexpected response code: " + registerResponse.getEntity());
+        assertNotNull(registerResponse.getClientId());
+        assertNotNull(registerResponse.getClientSecret());
+        assertNotNull(registerResponse.getRegistrationAccessToken());
+        assertNotNull(registerResponse.getClientIdIssuedAt());
+        assertNotNull(registerResponse.getClientSecretExpiresAt());
+
+        String clientId = registerResponse.getClientId();
+        String registrationAccessToken = registerResponse.getRegistrationAccessToken();
+        String registrationClientUri = registerResponse.getRegistrationClientUri();
+
+        // 2. Client read
+        RegisterRequest readClientRequest = new RegisterRequest(registrationAccessToken);
+
+        RegisterClient readClient = new RegisterClient(registrationClientUri);
+        readClient.setRequest(readClientRequest);
+        RegisterResponse readClientResponse = readClient.exec();
+
+        showClient(readClient);
+        assertEquals(readClientResponse.getStatus(), 200, "Unexpected response code: " + readClientResponse.getEntity());
+        assertNotNull(readClientResponse.getClientId());
+        assertNotNull(readClientResponse.getClientSecret());
+        assertNotNull(readClientResponse.getClientIdIssuedAt());
+        assertNotNull(readClientResponse.getClientSecretExpiresAt());
+
+        assertNotNull(readClientResponse.getClaims().get(RESPONSE_TYPES.toString()));
+        assertNotNull(readClientResponse.getClaims().get(REDIRECT_URIS.toString()));
+        assertNotNull(readClientResponse.getClaims().get(APPLICATION_TYPE.toString()));
+        assertNotNull(readClientResponse.getClaims().get(CLIENT_NAME.toString()));
+        assertNotNull(readClientResponse.getClaims().get(ID_TOKEN_SIGNED_RESPONSE_ALG.toString()));
+        assertNotNull(readClientResponse.getClaims().get(SCOPE.toString()));
+
+        // 3. Request authorization
+        List<String> scopes = Arrays.asList("openid", "profile", "address", "email");
+        String nonce = UUID.randomUUID().toString();
+        String state = UUID.randomUUID().toString();
+
+        AuthorizationRequest authorizationRequest = new AuthorizationRequest(responseTypes, clientId, scopes, redirectUri, nonce);
+        authorizationRequest.setState(state);
+
+        AuthorizationResponse authorizationResponse = authenticateResourceOwnerAndGrantAccess(
+                authorizationEndpoint, authorizationRequest, userId, userSecret);
+
+        assertNotNull(authorizationResponse.getLocation(), "The location is null");
+        assertNotNull(authorizationResponse.getAccessToken(), "The access token is null");
+        assertNotNull(authorizationResponse.getState(), "The state is null");
+        assertNotNull(authorizationResponse.getTokenType(), "The token type is null");
+        assertNotNull(authorizationResponse.getExpiresIn(), "The expires in value is null");
+        assertNotNull(authorizationResponse.getScope(), "The scope must be null");
+    }
+
+    @Parameters({"userId", "userSecret", "redirectUri"})
+    @Test
+    public void requestAuthorizationTokenFail1(
+            final String userId, final String userSecret, final String redirectUri) throws Exception {
+        showTitle("requestAuthorizationTokenFail1");
+
+        List<ResponseType> responseTypes = Arrays.asList(ResponseType.TOKEN);
+        String state = UUID.randomUUID().toString();
+
+        AuthorizationRequest request = new AuthorizationRequest(responseTypes, null, null, redirectUri, null);
+        request.setState(state);
+        request.setAuthUsername(userId);
+        request.setAuthPassword(userSecret);
+
+        AuthorizeClient authorizeClient = new AuthorizeClient(authorizationEndpoint);
+        authorizeClient.setRequest(request);
+        AuthorizationResponse response = authorizeClient.exec();
+
+        showClient(authorizeClient);
+        assertEquals(response.getStatus(), 400, "Unexpected response code: " + response.getStatus());
+        assertNotNull(response.getErrorType(), "The error type is null");
+        assertNotNull(response.getErrorDescription(), "The error description is null");
+        assertNotNull(response.getState(), "The state is null");
+    }
+
+    @Parameters({"userId", "userSecret", "redirectUris", "redirectUri", "sectorIdentifierUri"})
+    @Test
+    public void requestAuthorizationTokenFail2(
+            final String userId, final String userSecret, final String redirectUris, final String redirectUri,
+            final String sectorIdentifierUri) throws Exception {
+        showTitle("requestAuthorizationTokenFail2");
+
+        List<ResponseType> responseTypes = Arrays.asList(ResponseType.TOKEN);
+
+        // 1. Register client
+        RegisterRequest registerRequest = new RegisterRequest(ApplicationType.WEB, "oxAuth test app",
+                StringUtils.spaceSeparatedToList(redirectUris));
+        registerRequest.setResponseTypes(responseTypes);
+        registerRequest.setSectorIdentifierUri(sectorIdentifierUri);
+
+        RegisterClient registerClient = new RegisterClient(registrationEndpoint);
+        registerClient.setRequest(registerRequest);
+        RegisterResponse registerResponse = registerClient.exec();
+
+        showClient(registerClient);
+        assertEquals(registerResponse.getStatus(), 200, "Unexpected response code: " + registerResponse.getEntity());
+        assertNotNull(registerResponse.getClientId());
+        assertNotNull(registerResponse.getClientSecret());
+        assertNotNull(registerResponse.getRegistrationAccessToken());
+        assertNotNull(registerResponse.getClientIdIssuedAt());
+        assertNotNull(registerResponse.getClientSecretExpiresAt());
+
+        String clientId = registerResponse.getClientId();
+        String registrationAccessToken = registerResponse.getRegistrationAccessToken();
+        String registrationClientUri = registerResponse.getRegistrationClientUri();
+
+        // 2. Client read
+        RegisterRequest readClientRequest = new RegisterRequest(registrationAccessToken);
+
+        RegisterClient readClient = new RegisterClient(registrationClientUri);
+        readClient.setRequest(readClientRequest);
+        RegisterResponse readClientResponse = readClient.exec();
+
+        showClient(readClient);
+        assertEquals(readClientResponse.getStatus(), 200, "Unexpected response code: " + readClientResponse.getEntity());
+        assertNotNull(readClientResponse.getClientId());
+        assertNotNull(readClientResponse.getClientSecret());
+        assertNotNull(readClientResponse.getClientIdIssuedAt());
+        assertNotNull(readClientResponse.getClientSecretExpiresAt());
+
+        assertNotNull(readClientResponse.getClaims().get(RESPONSE_TYPES.toString()));
+        assertNotNull(readClientResponse.getClaims().get(REDIRECT_URIS.toString()));
+        assertNotNull(readClientResponse.getClaims().get(APPLICATION_TYPE.toString()));
+        assertNotNull(readClientResponse.getClaims().get(CLIENT_NAME.toString()));
+        assertNotNull(readClientResponse.getClaims().get(ID_TOKEN_SIGNED_RESPONSE_ALG.toString()));
+        assertNotNull(readClientResponse.getClaims().get(SCOPE.toString()));
+
+        // 3. Request authorization
+        List<String> scopes = Arrays.asList("openid", "profile", "address", "email");
+        String nonce = null;
+        String state = UUID.randomUUID().toString();
+
+        AuthorizationRequest request = new AuthorizationRequest(responseTypes, clientId, scopes, redirectUri, nonce);
+        request.setState(state);
+        request.setAuthUsername(userId);
+        request.setAuthPassword(userSecret);
+        request.getPrompts().add(Prompt.NONE);
+
+        AuthorizeClient authorizeClient = new AuthorizeClient(authorizationEndpoint);
+        authorizeClient.setRequest(request);
+        AuthorizationResponse response = authorizeClient.exec();
+
+        showClient(authorizeClient);
+        assertEquals(response.getStatus(), 302, "Unexpected response code: " + response.getStatus());
+        assertNotNull(response.getLocation(), "The location is null");
+        assertNotNull(response.getErrorType(), "The error type is null");
+        assertNotNull(response.getErrorDescription(), "The error description is null");
+        assertNotNull(response.getState(), "The state is null");
+    }
+
+    @Parameters({"userId", "userSecret", "redirectUris", "redirectUri", "sectorIdentifierUri"})
+    @Test
+    public void requestAuthorizationTokenIdToken(
+            final String userId, final String userSecret,
+            final String redirectUris, final String redirectUri, final String sectorIdentifierUri) throws Exception {
+        showTitle("requestAuthorizationTokenIdToken");
+
+        List<ResponseType> responseTypes = Arrays.asList(
+                ResponseType.TOKEN,
+                ResponseType.ID_TOKEN);
+
+        // 1. Register client
+        RegisterRequest registerRequest = new RegisterRequest(ApplicationType.WEB, "oxAuth test app",
+                StringUtils.spaceSeparatedToList(redirectUris));
+        registerRequest.setResponseTypes(responseTypes);
+        registerRequest.setSectorIdentifierUri(sectorIdentifierUri);
+
+        RegisterClient registerClient = new RegisterClient(registrationEndpoint);
+        registerClient.setRequest(registerRequest);
+        RegisterResponse registerResponse = registerClient.exec();
+
+        showClient(registerClient);
+        assertEquals(registerResponse.getStatus(), 200, "Unexpected response code: " + registerResponse.getEntity());
+        assertNotNull(registerResponse.getClientId());
+        assertNotNull(registerResponse.getClientSecret());
+        assertNotNull(registerResponse.getRegistrationAccessToken());
+        assertNotNull(registerResponse.getClientIdIssuedAt());
+        assertNotNull(registerResponse.getClientSecretExpiresAt());
+
+        String clientId = registerResponse.getClientId();
+        String registrationAccessToken = registerResponse.getRegistrationAccessToken();
+        String registrationClientUri = registerResponse.getRegistrationClientUri();
+
+        // 2. Client read
+        RegisterRequest readClientRequest = new RegisterRequest(registrationAccessToken);
+
+        RegisterClient readClient = new RegisterClient(registrationClientUri);
+        readClient.setRequest(readClientRequest);
+        RegisterResponse readClientResponse = readClient.exec();
+
+        showClient(readClient);
+        assertEquals(readClientResponse.getStatus(), 200, "Unexpected response code: " + readClientResponse.getEntity());
+        assertNotNull(readClientResponse.getClientId());
+        assertNotNull(readClientResponse.getClientSecret());
+        assertNotNull(readClientResponse.getClientIdIssuedAt());
+        assertNotNull(readClientResponse.getClientSecretExpiresAt());
+
+        assertNotNull(readClientResponse.getClaims().get(RESPONSE_TYPES.toString()));
+        assertNotNull(readClientResponse.getClaims().get(REDIRECT_URIS.toString()));
+        assertNotNull(readClientResponse.getClaims().get(APPLICATION_TYPE.toString()));
+        assertNotNull(readClientResponse.getClaims().get(CLIENT_NAME.toString()));
+        assertNotNull(readClientResponse.getClaims().get(ID_TOKEN_SIGNED_RESPONSE_ALG.toString()));
+        assertNotNull(readClientResponse.getClaims().get(SCOPE.toString()));
+
+        // 3. Request authorization
+        List<String> scopes = Arrays.asList("openid", "profile", "address", "email");
+        String nonce = UUID.randomUUID().toString();
+        String state = UUID.randomUUID().toString();
+
+        AuthorizationRequest authorizationRequest = new AuthorizationRequest(responseTypes, clientId, scopes, redirectUri, nonce);
+        authorizationRequest.setState(state);
+
+        AuthorizationResponse authorizationResponse = authenticateResourceOwnerAndGrantAccess(
+                authorizationEndpoint, authorizationRequest, userId, userSecret);
+
+        assertNotNull(authorizationResponse.getLocation(), "The location is null");
+        assertNotNull(authorizationResponse.getAccessToken(), "The accessToken is null");
+        assertNotNull(authorizationResponse.getTokenType(), "The tokenType is null");
+        assertNotNull(authorizationResponse.getIdToken(), "The idToken is null");
+        assertNotNull(authorizationResponse.getState(), "The state is null");
+
+        String accessToken = authorizationResponse.getAccessToken();
+        String idToken = authorizationResponse.getIdToken();
+
+        // 2. Validate access_token and id_token
+        Jwt jwt = Jwt.parse(idToken);
+        Asserter.assertIdToken(jwt, JwtClaimName.ACCESS_TOKEN_HASH);
+
+        RSAPublicKey publicKey = JwkClient.getRSAPublicKey(
+                jwksUri,
+                jwt.getHeader().getClaimAsString(JwtHeaderName.KEY_ID));
+        RSASigner rsaSigner = new RSASigner(SignatureAlgorithm.RS256, publicKey);
+
+        assertTrue(rsaSigner.validate(jwt));
+        assertTrue(rsaSigner.validateAccessToken(accessToken, jwt));
+    }
+
+    @Parameters({"userId", "userSecret", "redirectUris", "redirectUri", "sectorIdentifierUri"})
+    @Test
+    public void requestAuthorizationTokenIdTokenUserBasicAuth(
+            final String userId, final String userSecret, final String redirectUris, final String redirectUri,
+            final String sectorIdentifierUri) throws Exception {
+        showTitle("requestAuthorizationTokenIdTokenUserBasicAuth");
+
+        List<ResponseType> responseTypes = Arrays.asList(
+                ResponseType.TOKEN,
+                ResponseType.ID_TOKEN);
+
+        // 1. Register client
+        RegisterRequest registerRequest = new RegisterRequest(ApplicationType.WEB, "oxAuth test app",
+                StringUtils.spaceSeparatedToList(redirectUris));
+        registerRequest.setResponseTypes(responseTypes);
+        registerRequest.setSectorIdentifierUri(sectorIdentifierUri);
+
+        RegisterClient registerClient = new RegisterClient(registrationEndpoint);
+        registerClient.setRequest(registerRequest);
+        RegisterResponse registerResponse = registerClient.exec();
+
+        showClient(registerClient);
+        assertEquals(registerResponse.getStatus(), 200, "Unexpected response code: " + registerResponse.getEntity());
+        assertNotNull(registerResponse.getClientId());
+        assertNotNull(registerResponse.getClientSecret());
+        assertNotNull(registerResponse.getRegistrationAccessToken());
+        assertNotNull(registerResponse.getClientIdIssuedAt());
+        assertNotNull(registerResponse.getClientSecretExpiresAt());
+
+        String clientId = registerResponse.getClientId();
+        String registrationAccessToken = registerResponse.getRegistrationAccessToken();
+        String registrationClientUri = registerResponse.getRegistrationClientUri();
+
+        // 2. Client read
+        RegisterRequest readClientRequest = new RegisterRequest(registrationAccessToken);
+
+        RegisterClient readClient = new RegisterClient(registrationClientUri);
+        readClient.setRequest(readClientRequest);
+        RegisterResponse readClientResponse = readClient.exec();
+
+        showClient(readClient);
+        assertEquals(readClientResponse.getStatus(), 200, "Unexpected response code: " + readClientResponse.getEntity());
+        assertNotNull(readClientResponse.getClientId());
+        assertNotNull(readClientResponse.getClientSecret());
+        assertNotNull(readClientResponse.getClientIdIssuedAt());
+        assertNotNull(readClientResponse.getClientSecretExpiresAt());
+
+        assertNotNull(readClientResponse.getClaims().get(RESPONSE_TYPES.toString()));
+        assertNotNull(readClientResponse.getClaims().get(REDIRECT_URIS.toString()));
+        assertNotNull(readClientResponse.getClaims().get(APPLICATION_TYPE.toString()));
+        assertNotNull(readClientResponse.getClaims().get(CLIENT_NAME.toString()));
+        assertNotNull(readClientResponse.getClaims().get(ID_TOKEN_SIGNED_RESPONSE_ALG.toString()));
+        assertNotNull(readClientResponse.getClaims().get(SCOPE.toString()));
+
+        // 3. Request authorization
+        List<String> scopes = Arrays.asList("openid", "profile", "address", "email");
+        String nonce = UUID.randomUUID().toString();
+        String state = UUID.randomUUID().toString();
+
+        AuthorizationRequest authorizationRequest = new AuthorizationRequest(responseTypes, clientId, scopes, redirectUri, nonce);
+        authorizationRequest.setState(state);
+
+        AuthorizationResponse authorizationResponse = authenticateResourceOwnerAndGrantAccess(
+                authorizationEndpoint, authorizationRequest, userId, userSecret);
+
+        assertNotNull(authorizationResponse.getLocation(), "The location is null");
+        assertNotNull(authorizationResponse.getAccessToken(), "The accessToken is null");
+        assertNotNull(authorizationResponse.getTokenType(), "The tokenType is null");
+        assertNotNull(authorizationResponse.getIdToken(), "The idToken is null");
+        assertNotNull(authorizationResponse.getState(), "The state is null");
+
+        String accessToken = authorizationResponse.getAccessToken();
+        String idToken = authorizationResponse.getIdToken();
+
+        // 2. Validate access_token and id_token
+        Jwt jwt = Jwt.parse(idToken);
+        Asserter.assertIdToken(jwt, JwtClaimName.ACCESS_TOKEN_HASH);
+
+        RSAPublicKey publicKey = JwkClient.getRSAPublicKey(
+                jwksUri,
+                jwt.getHeader().getClaimAsString(JwtHeaderName.KEY_ID));
+        RSASigner rsaSigner = new RSASigner(SignatureAlgorithm.RS256, publicKey);
+
+        assertTrue(rsaSigner.validate(jwt));
+        assertTrue(rsaSigner.validateAccessToken(accessToken, jwt));
+    }
+
+    @Parameters({"userId", "userSecret", "redirectUris", "redirectUri", "sectorIdentifierUri"})
+    @Test
+    public void requestAuthorizationCodeIdToken(
+            final String userId, final String userSecret, final String redirectUris, final String redirectUri,
+            final String sectorIdentifierUri) throws Exception {
+        showTitle("requestAuthorizationCodeIdToken");
+
+        List<ResponseType> responseTypes = Arrays.asList(
+                ResponseType.CODE,
+                ResponseType.ID_TOKEN);
+
+        // 1. Register client
+        RegisterRequest registerRequest = new RegisterRequest(ApplicationType.WEB, "oxAuth test app",
+                StringUtils.spaceSeparatedToList(redirectUris));
+        registerRequest.setResponseTypes(responseTypes);
+        registerRequest.setSectorIdentifierUri(sectorIdentifierUri);
+
+        RegisterClient registerClient = new RegisterClient(registrationEndpoint);
+        registerClient.setRequest(registerRequest);
+        RegisterResponse registerResponse = registerClient.exec();
+
+        showClient(registerClient);
+        assertEquals(registerResponse.getStatus(), 200, "Unexpected response code: " + registerResponse.getEntity());
+        assertNotNull(registerResponse.getClientId());
+        assertNotNull(registerResponse.getClientSecret());
+        assertNotNull(registerResponse.getRegistrationAccessToken());
+        assertNotNull(registerResponse.getClientIdIssuedAt());
+        assertNotNull(registerResponse.getClientSecretExpiresAt());
+
+        String clientId = registerResponse.getClientId();
+        String registrationAccessToken = registerResponse.getRegistrationAccessToken();
+        String registrationClientUri = registerResponse.getRegistrationClientUri();
+
+        // 2. Client read
+        RegisterRequest readClientRequest = new RegisterRequest(registrationAccessToken);
+
+        RegisterClient readClient = new RegisterClient(registrationClientUri);
+        readClient.setRequest(readClientRequest);
+        RegisterResponse readClientResponse = readClient.exec();
+
+        showClient(readClient);
+        assertEquals(readClientResponse.getStatus(), 200, "Unexpected response code: " + readClientResponse.getEntity());
+        assertNotNull(readClientResponse.getClientId());
+        assertNotNull(readClientResponse.getClientSecret());
+        assertNotNull(readClientResponse.getClientIdIssuedAt());
+        assertNotNull(readClientResponse.getClientSecretExpiresAt());
+
+        assertNotNull(readClientResponse.getClaims().get(RESPONSE_TYPES.toString()));
+        assertNotNull(readClientResponse.getClaims().get(REDIRECT_URIS.toString()));
+        assertNotNull(readClientResponse.getClaims().get(APPLICATION_TYPE.toString()));
+        assertNotNull(readClientResponse.getClaims().get(CLIENT_NAME.toString()));
+        assertNotNull(readClientResponse.getClaims().get(ID_TOKEN_SIGNED_RESPONSE_ALG.toString()));
+        assertNotNull(readClientResponse.getClaims().get(SCOPE.toString()));
+
+        // 3. Request authorization
+        List<String> scopes = Arrays.asList("openid", "profile", "address", "email");
+        String state = UUID.randomUUID().toString();
+        String nonce = UUID.randomUUID().toString();
+
+        AuthorizationRequest authorizationRequest = new AuthorizationRequest(responseTypes, clientId, scopes, redirectUri, nonce);
+        authorizationRequest.setState(state);
+
+        AuthorizationResponse authorizationResponse = authenticateResourceOwnerAndGrantAccess(
+                authorizationEndpoint, authorizationRequest, userId, userSecret);
+
+        assertNotNull(authorizationResponse.getLocation(), "The location is null");
+        assertNotNull(authorizationResponse.getCode(), "The code is null");
+        assertNotNull(authorizationResponse.getIdToken(), "The idToken is null");
+        assertNotNull(authorizationResponse.getState(), "The state is null");
+
+        String code = authorizationResponse.getCode();
+        String idToken = authorizationResponse.getIdToken();
+
+        // 4. Validate code and id_token
+        Jwt jwt = Jwt.parse(idToken);
+        Asserter.assertIdToken(jwt, JwtClaimName.CODE_HASH);
+
+        RSAPublicKey publicKey = JwkClient.getRSAPublicKey(
+                jwksUri,
+                jwt.getHeader().getClaimAsString(JwtHeaderName.KEY_ID));
+        RSASigner rsaSigner = new RSASigner(SignatureAlgorithm.RS256, publicKey);
+
+        assertTrue(rsaSigner.validate(jwt));
+        assertTrue(rsaSigner.validateAuthorizationCode(code, jwt));
+    }
+
+    @Parameters({"userId", "userSecret", "redirectUris", "redirectUri", "sectorIdentifierUri"})
+    @Test
+    public void requestAuthorizationCodeIdTokenUserBasicAuth(
+            final String userId, final String userSecret, final String redirectUris, final String redirectUri,
+            final String sectorIdentifierUri) throws Exception {
+        showTitle("requestAuthorizationCodeIdTokenUserBasicAuth");
+
+        List<ResponseType> responseTypes = Arrays.asList(
+                ResponseType.CODE,
+                ResponseType.ID_TOKEN);
+
+        // 1. Register client
+        RegisterRequest registerRequest = new RegisterRequest(ApplicationType.WEB, "oxAuth test app",
+                StringUtils.spaceSeparatedToList(redirectUris));
+        registerRequest.setResponseTypes(responseTypes);
+        registerRequest.setSectorIdentifierUri(sectorIdentifierUri);
+
+        RegisterClient registerClient = new RegisterClient(registrationEndpoint);
+        registerClient.setRequest(registerRequest);
+        RegisterResponse registerResponse = registerClient.exec();
+
+        showClient(registerClient);
+        assertEquals(registerResponse.getStatus(), 200, "Unexpected response code: " + registerResponse.getEntity());
+        assertNotNull(registerResponse.getClientId());
+        assertNotNull(registerResponse.getClientSecret());
+        assertNotNull(registerResponse.getRegistrationAccessToken());
+        assertNotNull(registerResponse.getClientIdIssuedAt());
+        assertNotNull(registerResponse.getClientSecretExpiresAt());
+
+        String clientId = registerResponse.getClientId();
+        String registrationAccessToken = registerResponse.getRegistrationAccessToken();
+        String registrationClientUri = registerResponse.getRegistrationClientUri();
+
+        // 2. Client read
+        RegisterRequest readClientRequest = new RegisterRequest(registrationAccessToken);
+
+        RegisterClient readClient = new RegisterClient(registrationClientUri);
+        readClient.setRequest(readClientRequest);
+        RegisterResponse readClientResponse = readClient.exec();
+
+        showClient(readClient);
+        assertEquals(readClientResponse.getStatus(), 200, "Unexpected response code: " + readClientResponse.getEntity());
+        assertNotNull(readClientResponse.getClientId());
+        assertNotNull(readClientResponse.getClientSecret());
+        assertNotNull(readClientResponse.getClientIdIssuedAt());
+        assertNotNull(readClientResponse.getClientSecretExpiresAt());
+
+        assertNotNull(readClientResponse.getClaims().get(RESPONSE_TYPES.toString()));
+        assertNotNull(readClientResponse.getClaims().get(REDIRECT_URIS.toString()));
+        assertNotNull(readClientResponse.getClaims().get(APPLICATION_TYPE.toString()));
+        assertNotNull(readClientResponse.getClaims().get(CLIENT_NAME.toString()));
+        assertNotNull(readClientResponse.getClaims().get(ID_TOKEN_SIGNED_RESPONSE_ALG.toString()));
+        assertNotNull(readClientResponse.getClaims().get(SCOPE.toString()));
+
+        // 3. Request authorization
+        List<String> scopes = Arrays.asList("openid", "profile", "address", "email");
+        String state = UUID.randomUUID().toString();
+        String nonce = UUID.randomUUID().toString();
+
+        AuthorizationRequest authorizationRequest = new AuthorizationRequest(responseTypes, clientId, scopes, redirectUri, nonce);
+        authorizationRequest.setState(state);
+
+        AuthorizationResponse authorizationResponse = authenticateResourceOwnerAndGrantAccess(
+                authorizationEndpoint, authorizationRequest, userId, userSecret);
+
+        assertNotNull(authorizationResponse.getLocation(), "The location is null");
+        assertNotNull(authorizationResponse.getCode(), "The code is null");
+        assertNotNull(authorizationResponse.getIdToken(), "The idToken is null");
+        assertNotNull(authorizationResponse.getState(), "The state is null");
+
+        String code = authorizationResponse.getCode();
+        String idToken = authorizationResponse.getIdToken();
+
+        // 4. Validate code and id_token
+        Jwt jwt = Jwt.parse(idToken);
+        Asserter.assertIdToken(jwt, JwtClaimName.CODE_HASH);
+
+        RSAPublicKey publicKey = JwkClient.getRSAPublicKey(
+                jwksUri,
+                jwt.getHeader().getClaimAsString(JwtHeaderName.KEY_ID));
+        RSASigner rsaSigner = new RSASigner(SignatureAlgorithm.RS256, publicKey);
+
+        assertTrue(rsaSigner.validate(jwt));
+        assertTrue(rsaSigner.validateAuthorizationCode(code, jwt));
+    }
+
+    @Parameters({"userId", "userSecret", "redirectUris", "redirectUri", "sectorIdentifierUri"})
+    @Test
+    public void requestAuthorizationTokenCode(
+            final String userId, final String userSecret, final String redirectUris, final String redirectUri,
+            final String sectorIdentifierUri) throws Exception {
+        showTitle("requestAuthorizationTokenCode");
+
+        List<ResponseType> responseTypes = Arrays.asList(
+                ResponseType.TOKEN,
+                ResponseType.CODE);
+
+        // 1. Register client
+        RegisterRequest registerRequest = new RegisterRequest(ApplicationType.WEB, "oxAuth test app",
+                StringUtils.spaceSeparatedToList(redirectUris));
+        registerRequest.setResponseTypes(responseTypes);
+        registerRequest.setSectorIdentifierUri(sectorIdentifierUri);
+
+        RegisterClient registerClient = new RegisterClient(registrationEndpoint);
+        registerClient.setRequest(registerRequest);
+        RegisterResponse registerResponse = registerClient.exec();
+
+        showClient(registerClient);
+        assertEquals(registerResponse.getStatus(), 200, "Unexpected response code: " + registerResponse.getEntity());
+        assertNotNull(registerResponse.getClientId());
+        assertNotNull(registerResponse.getClientSecret());
+        assertNotNull(registerResponse.getRegistrationAccessToken());
+        assertNotNull(registerResponse.getClientIdIssuedAt());
+        assertNotNull(registerResponse.getClientSecretExpiresAt());
+
+        String clientId = registerResponse.getClientId();
+        String registrationAccessToken = registerResponse.getRegistrationAccessToken();
+        String registrationClientUri = registerResponse.getRegistrationClientUri();
+
+        // 2. Client read
+        RegisterRequest readClientRequest = new RegisterRequest(registrationAccessToken);
+
+        RegisterClient readClient = new RegisterClient(registrationClientUri);
+        readClient.setRequest(readClientRequest);
+        RegisterResponse readClientResponse = readClient.exec();
+
+        showClient(readClient);
+        assertEquals(readClientResponse.getStatus(), 200, "Unexpected response code: " + readClientResponse.getEntity());
+        assertNotNull(readClientResponse.getClientId());
+        assertNotNull(readClientResponse.getClientSecret());
+        assertNotNull(readClientResponse.getClientIdIssuedAt());
+        assertNotNull(readClientResponse.getClientSecretExpiresAt());
+
+        assertNotNull(readClientResponse.getClaims().get(RESPONSE_TYPES.toString()));
+        assertNotNull(readClientResponse.getClaims().get(REDIRECT_URIS.toString()));
+        assertNotNull(readClientResponse.getClaims().get(APPLICATION_TYPE.toString()));
+        assertNotNull(readClientResponse.getClaims().get(CLIENT_NAME.toString()));
+        assertNotNull(readClientResponse.getClaims().get(ID_TOKEN_SIGNED_RESPONSE_ALG.toString()));
+        assertNotNull(readClientResponse.getClaims().get(SCOPE.toString()));
+
+        // 3. Request authorization
+        List<String> scopes = Arrays.asList("openid", "profile", "address", "email");
+        String nonce = UUID.randomUUID().toString();
+        String state = UUID.randomUUID().toString();
+
+        AuthorizationRequest authorizationRequest = new AuthorizationRequest(responseTypes, clientId, scopes, redirectUri, nonce);
+        authorizationRequest.setState(state);
+
+        AuthorizationResponse authorizationResponse = authenticateResourceOwnerAndGrantAccess(
+                authorizationEndpoint, authorizationRequest, userId, userSecret);
+
+        assertNotNull(authorizationResponse.getLocation(), "The location is null");
+        assertNotNull(authorizationResponse.getCode(), "The code is null");
+        assertNotNull(authorizationResponse.getAccessToken(), "The accessToken is null");
+        assertNotNull(authorizationResponse.getTokenType(), "The tokenType is null");
+        assertNotNull(authorizationResponse.getState(), "The state is null");
+    }
+
+    @Parameters({"userId", "userSecret", "redirectUris", "redirectUri", "sectorIdentifierUri"})
+    @Test
+    public void requestAuthorizationTokenCodeUserBasicAuth(
+            final String userId, final String userSecret, final String redirectUris, final String redirectUri,
+            final String sectorIdentifierUri) throws Exception {
+        showTitle("requestAuthorizationTokenCodeUserBasicAuth");
+
+        List<ResponseType> responseTypes = Arrays.asList(
+                ResponseType.TOKEN,
+                ResponseType.CODE);
+
+        // 1. Register client
+        RegisterRequest registerRequest = new RegisterRequest(ApplicationType.WEB, "oxAuth test app",
+                StringUtils.spaceSeparatedToList(redirectUris));
+        registerRequest.setResponseTypes(responseTypes);
+        registerRequest.setSectorIdentifierUri(sectorIdentifierUri);
+
+        RegisterClient registerClient = new RegisterClient(registrationEndpoint);
+        registerClient.setRequest(registerRequest);
+        RegisterResponse registerResponse = registerClient.exec();
+
+        showClient(registerClient);
+        assertEquals(registerResponse.getStatus(), 200, "Unexpected response code: " + registerResponse.getEntity());
+        assertNotNull(registerResponse.getClientId());
+        assertNotNull(registerResponse.getClientSecret());
+        assertNotNull(registerResponse.getRegistrationAccessToken());
+        assertNotNull(registerResponse.getClientIdIssuedAt());
+        assertNotNull(registerResponse.getClientSecretExpiresAt());
+
+        String clientId = registerResponse.getClientId();
+        String registrationAccessToken = registerResponse.getRegistrationAccessToken();
+        String registrationClientUri = registerResponse.getRegistrationClientUri();
+
+        // 2. Client read
+        RegisterRequest readClientRequest = new RegisterRequest(registrationAccessToken);
+
+        RegisterClient readClient = new RegisterClient(registrationClientUri);
+        readClient.setRequest(readClientRequest);
+        RegisterResponse readClientResponse = readClient.exec();
+
+        showClient(readClient);
+        assertEquals(readClientResponse.getStatus(), 200, "Unexpected response code: " + readClientResponse.getEntity());
+        assertNotNull(readClientResponse.getClientId());
+        assertNotNull(readClientResponse.getClientSecret());
+        assertNotNull(readClientResponse.getClientIdIssuedAt());
+        assertNotNull(readClientResponse.getClientSecretExpiresAt());
+
+        assertNotNull(readClientResponse.getClaims().get(RESPONSE_TYPES.toString()));
+        assertNotNull(readClientResponse.getClaims().get(REDIRECT_URIS.toString()));
+        assertNotNull(readClientResponse.getClaims().get(APPLICATION_TYPE.toString()));
+        assertNotNull(readClientResponse.getClaims().get(CLIENT_NAME.toString()));
+        assertNotNull(readClientResponse.getClaims().get(ID_TOKEN_SIGNED_RESPONSE_ALG.toString()));
+        assertNotNull(readClientResponse.getClaims().get(SCOPE.toString()));
+
+        // 3. Request authorization
+        List<String> scopes = Arrays.asList("openid", "profile", "address", "email");
+        String nonce = UUID.randomUUID().toString();
+        String state = UUID.randomUUID().toString();
+
+        AuthorizationRequest authorizationRequest = new AuthorizationRequest(responseTypes, clientId, scopes, redirectUri, nonce);
+        authorizationRequest.setState(state);
+
+        AuthorizationResponse authorizationResponse = authenticateResourceOwnerAndGrantAccess(
+                authorizationEndpoint, authorizationRequest, userId, userSecret);
+
+        assertNotNull(authorizationResponse.getLocation(), "The location is null");
+        assertNotNull(authorizationResponse.getCode(), "The code is null");
+        assertNotNull(authorizationResponse.getAccessToken(), "The accessToken is null");
+        assertNotNull(authorizationResponse.getTokenType(), "The tokenType is null");
+        assertNotNull(authorizationResponse.getState(), "The state is null");
+    }
+
+    @Parameters({"userId", "userSecret", "redirectUris", "redirectUri", "sectorIdentifierUri"})
+    @Test
+    public void requestAuthorizationTokenCodeIdToken(
+            final String userId, final String userSecret,
+            final String redirectUris, final String redirectUri, final String sectorIdentifierUri) throws Exception {
+        showTitle("requestAuthorizationTokenCodeIdToken");
+
+        List<ResponseType> responseTypes = Arrays.asList(
+                ResponseType.TOKEN,
+                ResponseType.CODE,
+                ResponseType.ID_TOKEN);
+
+        // 1. Register client
+        RegisterRequest registerRequest = new RegisterRequest(ApplicationType.WEB, "oxAuth test app",
+                StringUtils.spaceSeparatedToList(redirectUris));
+        registerRequest.setResponseTypes(responseTypes);
+        registerRequest.setSectorIdentifierUri(sectorIdentifierUri);
+
+        RegisterClient registerClient = new RegisterClient(registrationEndpoint);
+        registerClient.setRequest(registerRequest);
+        RegisterResponse registerResponse = registerClient.exec();
+
+        showClient(registerClient);
+        assertEquals(registerResponse.getStatus(), 200, "Unexpected response code: " + registerResponse.getEntity());
+        assertNotNull(registerResponse.getClientId());
+        assertNotNull(registerResponse.getClientSecret());
+        assertNotNull(registerResponse.getRegistrationAccessToken());
+        assertNotNull(registerResponse.getClientIdIssuedAt());
+        assertNotNull(registerResponse.getClientSecretExpiresAt());
+
+        String clientId = registerResponse.getClientId();
+        String registrationAccessToken = registerResponse.getRegistrationAccessToken();
+        String registrationClientUri = registerResponse.getRegistrationClientUri();
+
+        // 2. Client read
+        RegisterRequest readClientRequest = new RegisterRequest(registrationAccessToken);
+
+        RegisterClient readClient = new RegisterClient(registrationClientUri);
+        readClient.setRequest(readClientRequest);
+        RegisterResponse readClientResponse = readClient.exec();
+
+        showClient(readClient);
+        assertEquals(readClientResponse.getStatus(), 200, "Unexpected response code: " + readClientResponse.getEntity());
+        assertNotNull(readClientResponse.getClientId());
+        assertNotNull(readClientResponse.getClientSecret());
+        assertNotNull(readClientResponse.getClientIdIssuedAt());
+        assertNotNull(readClientResponse.getClientSecretExpiresAt());
+
+        assertNotNull(readClientResponse.getClaims().get(RESPONSE_TYPES.toString()));
+        assertNotNull(readClientResponse.getClaims().get(REDIRECT_URIS.toString()));
+        assertNotNull(readClientResponse.getClaims().get(APPLICATION_TYPE.toString()));
+        assertNotNull(readClientResponse.getClaims().get(CLIENT_NAME.toString()));
+        assertNotNull(readClientResponse.getClaims().get(ID_TOKEN_SIGNED_RESPONSE_ALG.toString()));
+        assertNotNull(readClientResponse.getClaims().get(SCOPE.toString()));
+
+        // 3. Request authorization
+        List<String> scopes = Arrays.asList("openid", "profile", "address", "email");
+        String nonce = UUID.randomUUID().toString();
+        String state = UUID.randomUUID().toString();
+
+        AuthorizationRequest authorizationRequest = new AuthorizationRequest(responseTypes, clientId, scopes, redirectUri, nonce);
+        authorizationRequest.setState(state);
+
+        AuthorizationResponse authorizationResponse = authenticateResourceOwnerAndGrantAccess(
+                authorizationEndpoint, authorizationRequest, userId, userSecret);
+
+        assertNotNull(authorizationResponse.getLocation(), "The location is null");
+        assertNotNull(authorizationResponse.getAccessToken(), "The accessToken is null");
+        assertNotNull(authorizationResponse.getTokenType(), "The tokenType is null");
+        assertNotNull(authorizationResponse.getCode(), "The code is null");
+        assertNotNull(authorizationResponse.getIdToken(), "The idToken is null");
+        assertNotNull(authorizationResponse.getState(), "The state is null");
+
+        String code = authorizationResponse.getCode();
+        String accessToken = authorizationResponse.getAccessToken();
+        String idToken = authorizationResponse.getIdToken();
+
+        // 4. Validate access_token and id_token
+        Jwt jwt = Jwt.parse(idToken);
+        Asserter.assertIdToken(jwt, JwtClaimName.CODE_HASH, JwtClaimName.ACCESS_TOKEN_HASH);
+
+        RSAPublicKey publicKey = JwkClient.getRSAPublicKey(
+                jwksUri,
+                jwt.getHeader().getClaimAsString(JwtHeaderName.KEY_ID));
+        RSASigner rsaSigner = new RSASigner(SignatureAlgorithm.RS256, publicKey);
+
+        assertTrue(rsaSigner.validate(jwt));
+        assertTrue(rsaSigner.validateAuthorizationCode(code, jwt));
+        assertTrue(rsaSigner.validateAccessToken(accessToken, jwt));
+    }
+
+    @Parameters({"userId", "userSecret", "redirectUris", "redirectUri", "sectorIdentifierUri"})
+    @Test
+    public void requestAuthorizationTokenCodeIdTokenUserBasicAuth(
+            final String userId, final String userSecret, final String redirectUris, final String redirectUri,
+            final String sectorIdentifierUri) throws Exception {
+        showTitle("requestAuthorizationTokenCodeIdTokenUserBasicAuth");
+
+        List<ResponseType> responseTypes = Arrays.asList(
+                ResponseType.TOKEN,
+                ResponseType.CODE,
+                ResponseType.ID_TOKEN);
+
+        // 1. Register client
+        RegisterRequest registerRequest = new RegisterRequest(ApplicationType.WEB, "oxAuth test app",
+                StringUtils.spaceSeparatedToList(redirectUris));
+        registerRequest.setResponseTypes(responseTypes);
+        registerRequest.setSectorIdentifierUri(sectorIdentifierUri);
+
+        RegisterClient registerClient = new RegisterClient(registrationEndpoint);
+        registerClient.setRequest(registerRequest);
+        RegisterResponse registerResponse = registerClient.exec();
+
+        showClient(registerClient);
+        assertEquals(registerResponse.getStatus(), 200, "Unexpected response code: " + registerResponse.getEntity());
+        assertNotNull(registerResponse.getClientId());
+        assertNotNull(registerResponse.getClientSecret());
+        assertNotNull(registerResponse.getRegistrationAccessToken());
+        assertNotNull(registerResponse.getClientIdIssuedAt());
+        assertNotNull(registerResponse.getClientSecretExpiresAt());
+
+        String clientId = registerResponse.getClientId();
+        String registrationAccessToken = registerResponse.getRegistrationAccessToken();
+        String registrationClientUri = registerResponse.getRegistrationClientUri();
+
+        // 2. Client read
+        RegisterRequest readClientRequest = new RegisterRequest(registrationAccessToken);
+
+        RegisterClient readClient = new RegisterClient(registrationClientUri);
+        readClient.setRequest(readClientRequest);
+        RegisterResponse readClientResponse = readClient.exec();
+
+        showClient(readClient);
+        assertEquals(readClientResponse.getStatus(), 200, "Unexpected response code: " + readClientResponse.getEntity());
+        assertNotNull(readClientResponse.getClientId());
+        assertNotNull(readClientResponse.getClientSecret());
+        assertNotNull(readClientResponse.getClientIdIssuedAt());
+        assertNotNull(readClientResponse.getClientSecretExpiresAt());
+
+        assertNotNull(readClientResponse.getClaims().get(RESPONSE_TYPES.toString()));
+        assertNotNull(readClientResponse.getClaims().get(REDIRECT_URIS.toString()));
+        assertNotNull(readClientResponse.getClaims().get(APPLICATION_TYPE.toString()));
+        assertNotNull(readClientResponse.getClaims().get(CLIENT_NAME.toString()));
+        assertNotNull(readClientResponse.getClaims().get(ID_TOKEN_SIGNED_RESPONSE_ALG.toString()));
+        assertNotNull(readClientResponse.getClaims().get(SCOPE.toString()));
+
+        // 3. Request authorization
+        List<String> scopes = Arrays.asList("openid", "profile", "address", "email");
+        String nonce = UUID.randomUUID().toString();
+        String state = UUID.randomUUID().toString();
+
+        AuthorizationRequest authorizationRequest = new AuthorizationRequest(responseTypes, clientId, scopes, redirectUri, nonce);
+        authorizationRequest.setState(state);
+
+        AuthorizationResponse authorizationResponse = authenticateResourceOwnerAndGrantAccess(
+                authorizationEndpoint, authorizationRequest, userId, userSecret);
+
+        assertNotNull(authorizationResponse.getLocation(), "The location is null");
+        assertNotNull(authorizationResponse.getAccessToken(), "The accessToken is null");
+        assertNotNull(authorizationResponse.getTokenType(), "The tokenType is null");
+        assertNotNull(authorizationResponse.getCode(), "The code is null");
+        assertNotNull(authorizationResponse.getIdToken(), "The idToken is null");
+        assertNotNull(authorizationResponse.getState(), "The state is null");
+
+        String code = authorizationResponse.getCode();
+        String accessToken = authorizationResponse.getAccessToken();
+        String idToken = authorizationResponse.getIdToken();
+
+        // 4. Validate access_token and id_token
+        Jwt jwt = Jwt.parse(idToken);
+        Asserter.assertIdToken(jwt, JwtClaimName.CODE_HASH, JwtClaimName.ACCESS_TOKEN_HASH);
+
+        RSAPublicKey publicKey = JwkClient.getRSAPublicKey(
+                jwksUri,
+                jwt.getHeader().getClaimAsString(JwtHeaderName.KEY_ID));
+        RSASigner rsaSigner = new RSASigner(SignatureAlgorithm.RS256, publicKey);
+
+        assertTrue(rsaSigner.validate(jwt));
+        assertTrue(rsaSigner.validateAuthorizationCode(code, jwt));
+        assertTrue(rsaSigner.validateAccessToken(accessToken, jwt));
+    }
+
+    @Parameters({"userId", "userSecret", "redirectUris", "redirectUri", "sectorIdentifierUri"})
+    @Test
+    public void requestAuthorizationIdToken(
+            final String userId, final String userSecret, final String redirectUris, final String redirectUri,
+            final String sectorIdentifierUri) throws Exception {
+        showTitle("requestAuthorizationIdToken");
+
+        List<ResponseType> responseTypes = Arrays.asList(ResponseType.ID_TOKEN);
+
+        // 1. Register client
+        RegisterRequest registerRequest = new RegisterRequest(ApplicationType.WEB, "oxAuth test app",
+                StringUtils.spaceSeparatedToList(redirectUris));
+        registerRequest.setResponseTypes(responseTypes);
+        registerRequest.setSectorIdentifierUri(sectorIdentifierUri);
+
+        RegisterClient registerClient = new RegisterClient(registrationEndpoint);
+        registerClient.setRequest(registerRequest);
+        RegisterResponse registerResponse = registerClient.exec();
+
+        showClient(registerClient);
+        assertEquals(registerResponse.getStatus(), 200, "Unexpected response code: " + registerResponse.getEntity());
+        assertNotNull(registerResponse.getClientId());
+        assertNotNull(registerResponse.getClientSecret());
+        assertNotNull(registerResponse.getRegistrationAccessToken());
+        assertNotNull(registerResponse.getClientIdIssuedAt());
+        assertNotNull(registerResponse.getClientSecretExpiresAt());
+
+        String clientId = registerResponse.getClientId();
+        String registrationAccessToken = registerResponse.getRegistrationAccessToken();
+        String registrationClientUri = registerResponse.getRegistrationClientUri();
+
+        // 2. Client read
+        RegisterRequest readClientRequest = new RegisterRequest(registrationAccessToken);
+
+        RegisterClient readClient = new RegisterClient(registrationClientUri);
+        readClient.setRequest(readClientRequest);
+        RegisterResponse readClientResponse = readClient.exec();
+
+        showClient(readClient);
+        assertEquals(readClientResponse.getStatus(), 200, "Unexpected response code: " + readClientResponse.getEntity());
+        assertNotNull(readClientResponse.getClientId());
+        assertNotNull(readClientResponse.getClientSecret());
+        assertNotNull(readClientResponse.getClientIdIssuedAt());
+        assertNotNull(readClientResponse.getClientSecretExpiresAt());
+
+        assertNotNull(readClientResponse.getClaims().get(RESPONSE_TYPES.toString()));
+        assertNotNull(readClientResponse.getClaims().get(REDIRECT_URIS.toString()));
+        assertNotNull(readClientResponse.getClaims().get(APPLICATION_TYPE.toString()));
+        assertNotNull(readClientResponse.getClaims().get(CLIENT_NAME.toString()));
+        assertNotNull(readClientResponse.getClaims().get(ID_TOKEN_SIGNED_RESPONSE_ALG.toString()));
+        assertNotNull(readClientResponse.getClaims().get(SCOPE.toString()));
+
+        // 3. Request authorization
+        List<String> scopes = Arrays.asList("openid", "profile", "address", "email");
+        String nonce = UUID.randomUUID().toString();
+        String state = UUID.randomUUID().toString();
+
+        AuthorizationRequest authorizationRequest = new AuthorizationRequest(responseTypes, clientId, scopes, redirectUri, nonce);
+        authorizationRequest.setState(state);
+
+        AuthorizationResponse authorizationResponse = authenticateResourceOwnerAndGrantAccess(
+                authorizationEndpoint, authorizationRequest, userId, userSecret);
+
+        assertNotNull(authorizationResponse.getLocation(), "The location is null");
+        assertNotNull(authorizationResponse.getIdToken(), "The idToken is null");
+        assertNotNull(authorizationResponse.getState(), "The state is null");
+    }
+
+    @Parameters({"userId", "userSecret", "redirectUris", "redirectUri", "sectorIdentifierUri"})
+    @Test
+    public void requestAuthorizationIdTokenUserBasicAuth(
+            final String userId, final String userSecret, final String redirectUris, final String redirectUri,
+            final String sectorIdentifierUri) throws Exception {
+        showTitle("requestAuthorizationIdTokenUserBasicAuth");
+
+        List<ResponseType> responseTypes = Arrays.asList(ResponseType.ID_TOKEN);
+
+        // 1. Register client
+        RegisterRequest registerRequest = new RegisterRequest(ApplicationType.WEB, "oxAuth test app",
+                StringUtils.spaceSeparatedToList(redirectUris));
+        registerRequest.setResponseTypes(responseTypes);
+        registerRequest.setSectorIdentifierUri(sectorIdentifierUri);
+
+        RegisterClient registerClient = new RegisterClient(registrationEndpoint);
+        registerClient.setRequest(registerRequest);
+        RegisterResponse registerResponse = registerClient.exec();
+
+        showClient(registerClient);
+        assertEquals(registerResponse.getStatus(), 200, "Unexpected response code: " + registerResponse.getEntity());
+        assertNotNull(registerResponse.getClientId());
+        assertNotNull(registerResponse.getClientSecret());
+        assertNotNull(registerResponse.getRegistrationAccessToken());
+        assertNotNull(registerResponse.getClientIdIssuedAt());
+        assertNotNull(registerResponse.getClientSecretExpiresAt());
+
+        String clientId = registerResponse.getClientId();
+        String registrationAccessToken = registerResponse.getRegistrationAccessToken();
+        String registrationClientUri = registerResponse.getRegistrationClientUri();
+
+        // 2. Client read
+        RegisterRequest readClientRequest = new RegisterRequest(registrationAccessToken);
+
+        RegisterClient readClient = new RegisterClient(registrationClientUri);
+        readClient.setRequest(readClientRequest);
+        RegisterResponse readClientResponse = readClient.exec();
+
+        showClient(readClient);
+        assertEquals(readClientResponse.getStatus(), 200, "Unexpected response code: " + readClientResponse.getEntity());
+        assertNotNull(readClientResponse.getClientId());
+        assertNotNull(readClientResponse.getClientSecret());
+        assertNotNull(readClientResponse.getClientIdIssuedAt());
+        assertNotNull(readClientResponse.getClientSecretExpiresAt());
+
+        assertNotNull(readClientResponse.getClaims().get(RESPONSE_TYPES.toString()));
+        assertNotNull(readClientResponse.getClaims().get(REDIRECT_URIS.toString()));
+        assertNotNull(readClientResponse.getClaims().get(APPLICATION_TYPE.toString()));
+        assertNotNull(readClientResponse.getClaims().get(CLIENT_NAME.toString()));
+        assertNotNull(readClientResponse.getClaims().get(ID_TOKEN_SIGNED_RESPONSE_ALG.toString()));
+        assertNotNull(readClientResponse.getClaims().get(SCOPE.toString()));
+
+        // 3. Request authorization
+        List<String> scopes = Arrays.asList("openid", "profile", "address", "email");
+        String nonce = UUID.randomUUID().toString();
+        String state = UUID.randomUUID().toString();
+
+        AuthorizationRequest authorizationRequest = new AuthorizationRequest(responseTypes, clientId, scopes, redirectUri, nonce);
+        authorizationRequest.setState(state);
+
+        AuthorizationResponse authorizationResponse = authenticateResourceOwnerAndGrantAccess(
+                authorizationEndpoint, authorizationRequest, userId, userSecret);
+
+        assertNotNull(authorizationResponse.getLocation(), "The location is null");
+        assertNotNull(authorizationResponse.getIdToken(), "The idToken is null");
+        assertNotNull(authorizationResponse.getState(), "The state is null");
+    }
+
+    @Parameters({"userId", "userSecret", "redirectUris", "redirectUri", "sectorIdentifierUri"})
+    @Test
+    public void requestAuthorizationWithoutScope(
+            final String userId, final String userSecret, final String redirectUris, final String redirectUri,
+            final String sectorIdentifierUri) throws Exception {
+        showTitle("requestAuthorizationWithoutScope");
+
+        List<ResponseType> responseTypes = Arrays.asList(
+                ResponseType.CODE,
+                ResponseType.ID_TOKEN);
+
+        // 1. Register client
+        RegisterRequest registerRequest = new RegisterRequest(ApplicationType.WEB, "oxAuth test app",
+                StringUtils.spaceSeparatedToList(redirectUris));
+        registerRequest.setResponseTypes(responseTypes);
+        registerRequest.setSectorIdentifierUri(sectorIdentifierUri);
+
+        RegisterClient registerClient = new RegisterClient(registrationEndpoint);
+        registerClient.setRequest(registerRequest);
+        RegisterResponse registerResponse = registerClient.exec();
+
+        showClient(registerClient);
+        assertEquals(registerResponse.getStatus(), 200, "Unexpected response code: " + registerResponse.getEntity());
+        assertNotNull(registerResponse.getClientId());
+        assertNotNull(registerResponse.getClientSecret());
+        assertNotNull(registerResponse.getRegistrationAccessToken());
+        assertNotNull(registerResponse.getClientIdIssuedAt());
+        assertNotNull(registerResponse.getClientSecretExpiresAt());
+
+        String clientId = registerResponse.getClientId();
+        String registrationAccessToken = registerResponse.getRegistrationAccessToken();
+        String registrationClientUri = registerResponse.getRegistrationClientUri();
+
+        // 2. Client read
+        RegisterRequest readClientRequest = new RegisterRequest(registrationAccessToken);
+
+        RegisterClient readClient = new RegisterClient(registrationClientUri);
+        readClient.setRequest(readClientRequest);
+        RegisterResponse readClientResponse = readClient.exec();
+
+        showClient(readClient);
+        assertEquals(readClientResponse.getStatus(), 200, "Unexpected response code: " + readClientResponse.getEntity());
+        assertNotNull(readClientResponse.getClientId());
+        assertNotNull(readClientResponse.getClientSecret());
+        assertNotNull(readClientResponse.getClientIdIssuedAt());
+        assertNotNull(readClientResponse.getClientSecretExpiresAt());
+
+        assertNotNull(readClientResponse.getClaims().get(RESPONSE_TYPES.toString()));
+        assertNotNull(readClientResponse.getClaims().get(REDIRECT_URIS.toString()));
+        assertNotNull(readClientResponse.getClaims().get(APPLICATION_TYPE.toString()));
+        assertNotNull(readClientResponse.getClaims().get(CLIENT_NAME.toString()));
+        assertNotNull(readClientResponse.getClaims().get(ID_TOKEN_SIGNED_RESPONSE_ALG.toString()));
+        assertNotNull(readClientResponse.getClaims().get(SCOPE.toString()));
+
+        // 3. Request authorization
+        List<String> scopes = new ArrayList<String>(); // Empty scopes list
+        String state = UUID.randomUUID().toString();
+        String nonce = UUID.randomUUID().toString();
+
+        AuthorizationRequest authorizationRequest = new AuthorizationRequest(responseTypes, clientId, scopes, redirectUri, nonce);
+        authorizationRequest.setState(state);
+
+        AuthorizationResponse authorizationResponse = authenticateResourceOwnerAndGrantAccess(
+                authorizationEndpoint, authorizationRequest, userId, userSecret);
+
+        assertNotNull(authorizationResponse.getLocation(), "The location is null");
+        assertNotNull(authorizationResponse.getCode(), "The code is null");
+        assertNotNull(authorizationResponse.getIdToken(), "The idToken is null");
+        assertNotNull(authorizationResponse.getState(), "The state is null");
+    }
+
+    @Parameters({"userId", "userSecret", "redirectUris", "redirectUri", "sectorIdentifierUri"})
+    @Test
+    public void requestAuthorizationPromptNoneTrustedClient(
+            final String userId, final String userSecret, final String redirectUris, final String redirectUri,
+            final String sectorIdentifierUri) throws Exception {
+        showTitle("requestAuthorizationPromptNoneTrustedClient");
+
+        List<ResponseType> responseTypes = Arrays.asList(ResponseType.CODE);
+
+        // 1. Register client
+        RegisterRequest registerRequest = new RegisterRequest(ApplicationType.WEB, "oxAuth test app",
+                StringUtils.spaceSeparatedToList(redirectUris));
+        registerRequest.setResponseTypes(responseTypes);
+        registerRequest.setSectorIdentifierUri(sectorIdentifierUri);
+        registerRequest.addCustomAttribute("oxAuthTrustedClient", "true");
+
+        RegisterClient registerClient = new RegisterClient(registrationEndpoint);
+        registerClient.setRequest(registerRequest);
+        RegisterResponse registerResponse = registerClient.exec();
+
+        showClient(registerClient);
+        assertEquals(registerResponse.getStatus(), 200, "Unexpected response code: " + registerResponse.getEntity());
+        assertNotNull(registerResponse.getClientId());
+        assertNotNull(registerResponse.getClientSecret());
+        assertNotNull(registerResponse.getRegistrationAccessToken());
+        assertNotNull(registerResponse.getClientIdIssuedAt());
+        assertNotNull(registerResponse.getClientSecretExpiresAt());
+
+        String clientId = registerResponse.getClientId();
+        String registrationAccessToken = registerResponse.getRegistrationAccessToken();
+        String registrationClientUri = registerResponse.getRegistrationClientUri();
+
+        // 2. Client read
+        RegisterRequest readClientRequest = new RegisterRequest(registrationAccessToken);
+
+        RegisterClient readClient = new RegisterClient(registrationClientUri);
+        readClient.setRequest(readClientRequest);
+        RegisterResponse readClientResponse = readClient.exec();
+
+        showClient(readClient);
+        assertEquals(readClientResponse.getStatus(), 200, "Unexpected response code: " + readClientResponse.getEntity());
+        assertNotNull(readClientResponse.getClientId());
+        assertNotNull(readClientResponse.getClientSecret());
+        assertNotNull(readClientResponse.getClientIdIssuedAt());
+        assertNotNull(readClientResponse.getClientSecretExpiresAt());
+
+        assertNotNull(readClientResponse.getClaims().get(RESPONSE_TYPES.toString()));
+        assertNotNull(readClientResponse.getClaims().get(REDIRECT_URIS.toString()));
+        assertNotNull(readClientResponse.getClaims().get(APPLICATION_TYPE.toString()));
+        assertNotNull(readClientResponse.getClaims().get(CLIENT_NAME.toString()));
+        assertNotNull(readClientResponse.getClaims().get(ID_TOKEN_SIGNED_RESPONSE_ALG.toString()));
+        assertNotNull(readClientResponse.getClaims().get(SCOPE.toString()));
+
+        // 3. Request authorization
+        List<String> scopes = Arrays.asList("openid", "profile", "address", "email");
+        String state = UUID.randomUUID().toString();
+
+        AuthorizationRequest request = new AuthorizationRequest(responseTypes, clientId, scopes, redirectUri, null);
+        request.setState(state);
+        request.getPrompts().add(Prompt.NONE);
+        request.setAuthUsername(userId);
+        request.setAuthPassword(userSecret);
+
+        AuthorizeClient authorizeClient = new AuthorizeClient(authorizationEndpoint);
+        authorizeClient.setRequest(request);
+        AuthorizationResponse response = authorizeClient.exec();
+
+        showClient(authorizeClient);
+        assertEquals(response.getStatus(), 302, "Unexpected response code: " + response.getStatus());
+        assertNotNull(response.getLocation(), "The location is null");
+        assertNotNull(response.getCode(), "The code is null");
+        assertNotNull(response.getState(), "The state is null");
+    }
+
+    @Parameters({"redirectUris", "redirectUri", "sectorIdentifierUri"})
+    @Test
+    public void requestAuthorizationPromptNoneFail(
+            final String redirectUris, final String redirectUri, final String sectorIdentifierUri) throws Exception {
+        showTitle("requestAuthorizationPromptNoneFail");
+
+        List<ResponseType> responseTypes = Arrays.asList(ResponseType.CODE);
+
+        // 1. Register client
+        RegisterRequest registerRequest = new RegisterRequest(ApplicationType.WEB, "oxAuth test app",
+                StringUtils.spaceSeparatedToList(redirectUris));
+        registerRequest.setResponseTypes(responseTypes);
+        registerRequest.setSectorIdentifierUri(sectorIdentifierUri);
+
+        RegisterClient registerClient = new RegisterClient(registrationEndpoint);
+        registerClient.setRequest(registerRequest);
+        RegisterResponse registerResponse = registerClient.exec();
+
+        showClient(registerClient);
+        assertEquals(registerResponse.getStatus(), 200, "Unexpected response code: " + registerResponse.getEntity());
+        assertNotNull(registerResponse.getClientId());
+        assertNotNull(registerResponse.getClientSecret());
+        assertNotNull(registerResponse.getRegistrationAccessToken());
+        assertNotNull(registerResponse.getClientIdIssuedAt());
+        assertNotNull(registerResponse.getClientSecretExpiresAt());
+
+        String clientId = registerResponse.getClientId();
+        String registrationAccessToken = registerResponse.getRegistrationAccessToken();
+        String registrationClientUri = registerResponse.getRegistrationClientUri();
+
+        // 2. Client read
+        RegisterRequest readClientRequest = new RegisterRequest(registrationAccessToken);
+
+        RegisterClient readClient = new RegisterClient(registrationClientUri);
+        readClient.setRequest(readClientRequest);
+        RegisterResponse readClientResponse = readClient.exec();
+
+        showClient(readClient);
+        assertEquals(readClientResponse.getStatus(), 200, "Unexpected response code: " + readClientResponse.getEntity());
+        assertNotNull(readClientResponse.getClientId());
+        assertNotNull(readClientResponse.getClientSecret());
+        assertNotNull(readClientResponse.getClientIdIssuedAt());
+        assertNotNull(readClientResponse.getClientSecretExpiresAt());
+
+        assertNotNull(readClientResponse.getClaims().get(RESPONSE_TYPES.toString()));
+        assertNotNull(readClientResponse.getClaims().get(REDIRECT_URIS.toString()));
+        assertNotNull(readClientResponse.getClaims().get(APPLICATION_TYPE.toString()));
+        assertNotNull(readClientResponse.getClaims().get(CLIENT_NAME.toString()));
+        assertNotNull(readClientResponse.getClaims().get(ID_TOKEN_SIGNED_RESPONSE_ALG.toString()));
+        assertNotNull(readClientResponse.getClaims().get(SCOPE.toString()));
+
+        // 3. Request authorization
+        List<String> scopes = Arrays.asList("openid", "profile", "address", "email");
+        String state = UUID.randomUUID().toString();
+
+        AuthorizationRequest request = new AuthorizationRequest(responseTypes, clientId, scopes, redirectUri, null);
+        request.setState(state);
+        request.getPrompts().add(Prompt.NONE);
+
+        AuthorizeClient authorizeClient = new AuthorizeClient(authorizationEndpoint);
+        authorizeClient.setRequest(request);
+        AuthorizationResponse response = authorizeClient.exec();
+
+        showClient(authorizeClient);
+        assertEquals(response.getStatus(), 302, "Unexpected response code: " + response.getStatus());
+        assertNotNull(response.getLocation(), "The location is null");
+        assertNotNull(response.getErrorType(), "The error type is null");
+        assertNotNull(response.getErrorDescription(), "The error description is null");
+        assertNotNull(response.getState(), "The state is null");
+    }
+
+    @Parameters({"userId", "userSecret", "redirectUris", "redirectUri", "sectorIdentifierUri"})
+    @Test
+    public void requestAuthorizationPromptLogin(
+            final String userId, final String userSecret, final String redirectUris, final String redirectUri,
+            final String sectorIdentifierUri) throws Exception {
+        showTitle("requestAuthorizationPromptLogin");
+
+        List<ResponseType> responseTypes = Arrays.asList(ResponseType.CODE);
+
+        // 1. Register client
+        RegisterRequest registerRequest = new RegisterRequest(ApplicationType.WEB, "oxAuth test app",
+                StringUtils.spaceSeparatedToList(redirectUris));
+        registerRequest.setResponseTypes(responseTypes);
+        registerRequest.setSectorIdentifierUri(sectorIdentifierUri);
+
+        RegisterClient registerClient = new RegisterClient(registrationEndpoint);
+        registerClient.setRequest(registerRequest);
+        RegisterResponse registerResponse = registerClient.exec();
+
+        showClient(registerClient);
+        assertEquals(registerResponse.getStatus(), 200, "Unexpected response code: " + registerResponse.getEntity());
+        assertNotNull(registerResponse.getClientId());
+        assertNotNull(registerResponse.getClientSecret());
+        assertNotNull(registerResponse.getRegistrationAccessToken());
+        assertNotNull(registerResponse.getClientIdIssuedAt());
+        assertNotNull(registerResponse.getClientSecretExpiresAt());
+
+        String clientId = registerResponse.getClientId();
+        String registrationAccessToken = registerResponse.getRegistrationAccessToken();
+        String registrationClientUri = registerResponse.getRegistrationClientUri();
+
+        // 2. Client read
+        RegisterRequest readClientRequest = new RegisterRequest(registrationAccessToken);
+
+        RegisterClient readClient = new RegisterClient(registrationClientUri);
+        readClient.setRequest(readClientRequest);
+        RegisterResponse readClientResponse = readClient.exec();
+
+        showClient(readClient);
+        assertEquals(readClientResponse.getStatus(), 200, "Unexpected response code: " + readClientResponse.getEntity());
+        assertNotNull(readClientResponse.getClientId());
+        assertNotNull(readClientResponse.getClientSecret());
+        assertNotNull(readClientResponse.getClientIdIssuedAt());
+        assertNotNull(readClientResponse.getClientSecretExpiresAt());
+
+        assertNotNull(readClientResponse.getClaims().get(RESPONSE_TYPES.toString()));
+        assertNotNull(readClientResponse.getClaims().get(REDIRECT_URIS.toString()));
+        assertNotNull(readClientResponse.getClaims().get(APPLICATION_TYPE.toString()));
+        assertNotNull(readClientResponse.getClaims().get(CLIENT_NAME.toString()));
+        assertNotNull(readClientResponse.getClaims().get(ID_TOKEN_SIGNED_RESPONSE_ALG.toString()));
+        assertNotNull(readClientResponse.getClaims().get(SCOPE.toString()));
+
+        // 3. Request authorization
+        List<String> scopes = Arrays.asList("openid", "profile", "address", "email");
+        String state = UUID.randomUUID().toString();
+
+        AuthorizationRequest authorizationRequest = new AuthorizationRequest(responseTypes, clientId, scopes, redirectUri, null);
+        authorizationRequest.setState(state);
+        authorizationRequest.getPrompts().add(Prompt.LOGIN);
+
+        AuthorizationResponse authorizationResponse = authenticateResourceOwnerAndGrantAccess(
+                authorizationEndpoint, authorizationRequest, userId, userSecret);
+
+        assertNotNull(authorizationResponse.getLocation(), "The location is null");
+        assertNotNull(authorizationResponse.getCode(), "The authorization code is null");
+        assertNotNull(authorizationResponse.getState(), "The state is null");
+        assertNotNull(authorizationResponse.getScope(), "The scope is null");
+    }
+
+    @Parameters({"userId", "userSecret", "redirectUris", "redirectUri", "sectorIdentifierUri"})
+    @Test
+    public void requestAuthorizationPromptConsent(
+            final String userId, final String userSecret, final String redirectUris, final String redirectUri,
+            final String sectorIdentifierUri) throws Exception {
+        showTitle("requestAuthorizationPromptConsent");
+
+        List<ResponseType> responseTypes = Arrays.asList(ResponseType.CODE);
+
+        // 1. Register client
+        RegisterRequest registerRequest = new RegisterRequest(ApplicationType.WEB, "oxAuth test app",
+                StringUtils.spaceSeparatedToList(redirectUris));
+        registerRequest.setResponseTypes(responseTypes);
+        registerRequest.setSectorIdentifierUri(sectorIdentifierUri);
+
+        RegisterClient registerClient = new RegisterClient(registrationEndpoint);
+        registerClient.setRequest(registerRequest);
+        RegisterResponse registerResponse = registerClient.exec();
+
+        showClient(registerClient);
+        assertEquals(registerResponse.getStatus(), 200, "Unexpected response code: " + registerResponse.getEntity());
+        assertNotNull(registerResponse.getClientId());
+        assertNotNull(registerResponse.getClientSecret());
+        assertNotNull(registerResponse.getRegistrationAccessToken());
+        assertNotNull(registerResponse.getClientIdIssuedAt());
+        assertNotNull(registerResponse.getClientSecretExpiresAt());
+
+        String clientId = registerResponse.getClientId();
+        String registrationAccessToken = registerResponse.getRegistrationAccessToken();
+        String registrationClientUri = registerResponse.getRegistrationClientUri();
+
+        // 2. Client read
+        RegisterRequest readClientRequest = new RegisterRequest(registrationAccessToken);
+
+        RegisterClient readClient = new RegisterClient(registrationClientUri);
+        readClient.setRequest(readClientRequest);
+        RegisterResponse readClientResponse = readClient.exec();
+
+        showClient(readClient);
+        assertEquals(readClientResponse.getStatus(), 200, "Unexpected response code: " + readClientResponse.getEntity());
+        assertNotNull(readClientResponse.getClientId());
+        assertNotNull(readClientResponse.getClientSecret());
+        assertNotNull(readClientResponse.getClientIdIssuedAt());
+        assertNotNull(readClientResponse.getClientSecretExpiresAt());
+
+        assertNotNull(readClientResponse.getClaims().get(RESPONSE_TYPES.toString()));
+        assertNotNull(readClientResponse.getClaims().get(REDIRECT_URIS.toString()));
+        assertNotNull(readClientResponse.getClaims().get(APPLICATION_TYPE.toString()));
+        assertNotNull(readClientResponse.getClaims().get(CLIENT_NAME.toString()));
+        assertNotNull(readClientResponse.getClaims().get(ID_TOKEN_SIGNED_RESPONSE_ALG.toString()));
+        assertNotNull(readClientResponse.getClaims().get(SCOPE.toString()));
+
+        // 3. Request authorization
+        List<String> scopes = Arrays.asList("openid", "profile", "address", "email");
+        String state = UUID.randomUUID().toString();
+
+        AuthorizationRequest authorizationRequest = new AuthorizationRequest(responseTypes, clientId, scopes, redirectUri, null);
+        authorizationRequest.setState(state);
+        authorizationRequest.getPrompts().add(Prompt.CONSENT);
+
+        AuthorizationResponse authorizationResponse = authenticateResourceOwnerAndGrantAccess(
+                authorizationEndpoint, authorizationRequest, userId, userSecret);
+
+        assertNotNull(authorizationResponse.getLocation(), "The location is null");
+        assertNotNull(authorizationResponse.getCode(), "The authorization code is null");
+        assertNotNull(authorizationResponse.getState(), "The state is null");
+        assertNotNull(authorizationResponse.getScope(), "The scope is null");
+    }
+
+    @Parameters({"userId", "userSecret", "redirectUris", "redirectUri", "sectorIdentifierUri"})
+    @Test
+    public void requestAuthorizationPromptConsentTrustedClient(
+            final String userId, final String userSecret, final String redirectUris, final String redirectUri,
+            final String sectorIdentifierUri) throws Exception {
+        showTitle("requestAuthorizationPromptConsentTrustedClient");
+
+        List<ResponseType> responseTypes = Arrays.asList(ResponseType.CODE);
+
+        // 1. Register client
+        RegisterRequest registerRequest = new RegisterRequest(ApplicationType.WEB, "oxAuth test app",
+                StringUtils.spaceSeparatedToList(redirectUris));
+        registerRequest.setResponseTypes(responseTypes);
+        registerRequest.setSectorIdentifierUri(sectorIdentifierUri);
+        registerRequest.addCustomAttribute("oxAuthTrustedClient", "true");
+
+        RegisterClient registerClient = new RegisterClient(registrationEndpoint);
+        registerClient.setRequest(registerRequest);
+        RegisterResponse registerResponse = registerClient.exec();
+
+        showClient(registerClient);
+        assertEquals(registerResponse.getStatus(), 200, "Unexpected response code: " + registerResponse.getEntity());
+        assertNotNull(registerResponse.getClientId());
+        assertNotNull(registerResponse.getClientSecret());
+        assertNotNull(registerResponse.getRegistrationAccessToken());
+        assertNotNull(registerResponse.getClientIdIssuedAt());
+        assertNotNull(registerResponse.getClientSecretExpiresAt());
+
+        String clientId = registerResponse.getClientId();
+        String registrationAccessToken = registerResponse.getRegistrationAccessToken();
+        String registrationClientUri = registerResponse.getRegistrationClientUri();
+
+        // 2. Client read
+        RegisterRequest readClientRequest = new RegisterRequest(registrationAccessToken);
+
+        RegisterClient readClient = new RegisterClient(registrationClientUri);
+        readClient.setRequest(readClientRequest);
+        RegisterResponse readClientResponse = readClient.exec();
+
+        showClient(readClient);
+        assertEquals(readClientResponse.getStatus(), 200, "Unexpected response code: " + readClientResponse.getEntity());
+        assertNotNull(readClientResponse.getClientId());
+        assertNotNull(readClientResponse.getClientSecret());
+        assertNotNull(readClientResponse.getClientIdIssuedAt());
+        assertNotNull(readClientResponse.getClientSecretExpiresAt());
+
+        assertNotNull(readClientResponse.getClaims().get(RESPONSE_TYPES.toString()));
+        assertNotNull(readClientResponse.getClaims().get(REDIRECT_URIS.toString()));
+        assertNotNull(readClientResponse.getClaims().get(APPLICATION_TYPE.toString()));
+        assertNotNull(readClientResponse.getClaims().get(CLIENT_NAME.toString()));
+        assertNotNull(readClientResponse.getClaims().get(ID_TOKEN_SIGNED_RESPONSE_ALG.toString()));
+        assertNotNull(readClientResponse.getClaims().get(SCOPE.toString()));
+
+        // 3. Request authorization
+        List<String> scopes = Arrays.asList("openid", "profile", "address", "email");
+        String state = UUID.randomUUID().toString();
+
+        AuthorizationRequest authorizationRequest = new AuthorizationRequest(responseTypes, clientId, scopes, redirectUri, null);
+        authorizationRequest.setState(state);
+        authorizationRequest.getPrompts().add(Prompt.CONSENT);
+
+        AuthorizationResponse authorizationResponse = authenticateResourceOwnerAndGrantAccess(
+                authorizationEndpoint, authorizationRequest, userId, userSecret);
+
+        assertNotNull(authorizationResponse.getLocation(), "The location is null");
+        assertNotNull(authorizationResponse.getCode(), "The authorization code is null");
+        assertNotNull(authorizationResponse.getState(), "The state is null");
+        assertNotNull(authorizationResponse.getScope(), "The scope is null");
+    }
+
+    @Parameters({"userId", "userSecret", "redirectUris", "redirectUri", "sectorIdentifierUri"})
+    @Test
+    public void requestAuthorizationPromptLoginConsent(
+            final String userId, final String userSecret, final String redirectUris, final String redirectUri,
+            final String sectorIdentifierUri) throws Exception {
+        showTitle("requestAuthorizationPromptLoginConsent");
+
+        List<ResponseType> responseTypes = Arrays.asList(ResponseType.CODE);
+
+        // 1. Register client
+        RegisterRequest registerRequest = new RegisterRequest(ApplicationType.WEB, "oxAuth test app",
+                StringUtils.spaceSeparatedToList(redirectUris));
+        registerRequest.setResponseTypes(responseTypes);
+        registerRequest.setSectorIdentifierUri(sectorIdentifierUri);
+
+        RegisterClient registerClient = new RegisterClient(registrationEndpoint);
+        registerClient.setRequest(registerRequest);
+        RegisterResponse registerResponse = registerClient.exec();
+
+        showClient(registerClient);
+        assertEquals(registerResponse.getStatus(), 200, "Unexpected response code: " + registerResponse.getEntity());
+        assertNotNull(registerResponse.getClientId());
+        assertNotNull(registerResponse.getClientSecret());
+        assertNotNull(registerResponse.getRegistrationAccessToken());
+        assertNotNull(registerResponse.getClientIdIssuedAt());
+        assertNotNull(registerResponse.getClientSecretExpiresAt());
+
+        String clientId = registerResponse.getClientId();
+        String registrationAccessToken = registerResponse.getRegistrationAccessToken();
+        String registrationClientUri = registerResponse.getRegistrationClientUri();
+
+        // 2. Client read
+        RegisterRequest readClientRequest = new RegisterRequest(registrationAccessToken);
+
+        RegisterClient readClient = new RegisterClient(registrationClientUri);
+        readClient.setRequest(readClientRequest);
+        RegisterResponse readClientResponse = readClient.exec();
+
+        showClient(readClient);
+        assertEquals(readClientResponse.getStatus(), 200, "Unexpected response code: " + readClientResponse.getEntity());
+        assertNotNull(readClientResponse.getClientId());
+        assertNotNull(readClientResponse.getClientSecret());
+        assertNotNull(readClientResponse.getClientIdIssuedAt());
+        assertNotNull(readClientResponse.getClientSecretExpiresAt());
+
+        assertNotNull(readClientResponse.getClaims().get(RESPONSE_TYPES.toString()));
+        assertNotNull(readClientResponse.getClaims().get(REDIRECT_URIS.toString()));
+        assertNotNull(readClientResponse.getClaims().get(APPLICATION_TYPE.toString()));
+        assertNotNull(readClientResponse.getClaims().get(CLIENT_NAME.toString()));
+        assertNotNull(readClientResponse.getClaims().get(ID_TOKEN_SIGNED_RESPONSE_ALG.toString()));
+        assertNotNull(readClientResponse.getClaims().get(SCOPE.toString()));
+
+        // 3. Request authorization
+        List<String> scopes = Arrays.asList("openid", "profile", "address", "email");
+        String state = UUID.randomUUID().toString();
+
+        AuthorizationRequest authorizationRequest = new AuthorizationRequest(responseTypes, clientId, scopes, redirectUri, null);
+        authorizationRequest.setState(state);
+        authorizationRequest.getPrompts().add(Prompt.LOGIN);
+        authorizationRequest.getPrompts().add(Prompt.CONSENT);
+
+        AuthorizationResponse authorizationResponse = authenticateResourceOwnerAndGrantAccess(
+                authorizationEndpoint, authorizationRequest, userId, userSecret);
+
+        assertNotNull(authorizationResponse.getLocation(), "The location is null");
+        assertNotNull(authorizationResponse.getCode(), "The authorization code is null");
+        assertNotNull(authorizationResponse.getState(), "The state is null");
+        assertNotNull(authorizationResponse.getScope(), "The scope is null");
+    }
+
+    @Parameters({"userId", "userSecret", "redirectUris", "redirectUri", "sectorIdentifierUri"})
+    @Test
+    public void requestAuthorizationPromptLoginConsentTrustedClient(
+            final String userId, final String userSecret, final String redirectUris, final String redirectUri,
+            final String sectorIdentifierUri) throws Exception {
+        showTitle("requestAuthorizationPromptLoginConsentTrustedClient");
+
+        List<ResponseType> responseTypes = Arrays.asList(ResponseType.CODE);
+
+        // 1. Register client
+        RegisterRequest registerRequest = new RegisterRequest(ApplicationType.WEB, "oxAuth test app",
+                StringUtils.spaceSeparatedToList(redirectUris));
+        registerRequest.setResponseTypes(responseTypes);
+        registerRequest.setSectorIdentifierUri(sectorIdentifierUri);
+        registerRequest.addCustomAttribute("oxAuthTrustedClient", "true");
+
+        RegisterClient registerClient = new RegisterClient(registrationEndpoint);
+        registerClient.setRequest(registerRequest);
+        RegisterResponse registerResponse = registerClient.exec();
+
+        showClient(registerClient);
+        assertEquals(registerResponse.getStatus(), 200, "Unexpected response code: " + registerResponse.getEntity());
+        assertNotNull(registerResponse.getClientId());
+        assertNotNull(registerResponse.getClientSecret());
+        assertNotNull(registerResponse.getRegistrationAccessToken());
+        assertNotNull(registerResponse.getClientIdIssuedAt());
+        assertNotNull(registerResponse.getClientSecretExpiresAt());
+
+        String clientId = registerResponse.getClientId();
+        String registrationAccessToken = registerResponse.getRegistrationAccessToken();
+        String registrationClientUri = registerResponse.getRegistrationClientUri();
+
+        // 2. Client read
+        RegisterRequest readClientRequest = new RegisterRequest(registrationAccessToken);
+
+        RegisterClient readClient = new RegisterClient(registrationClientUri);
+        readClient.setRequest(readClientRequest);
+        RegisterResponse readClientResponse = readClient.exec();
+
+        showClient(readClient);
+        assertEquals(readClientResponse.getStatus(), 200, "Unexpected response code: " + readClientResponse.getEntity());
+        assertNotNull(readClientResponse.getClientId());
+        assertNotNull(readClientResponse.getClientSecret());
+        assertNotNull(readClientResponse.getClientIdIssuedAt());
+        assertNotNull(readClientResponse.getClientSecretExpiresAt());
+
+        assertNotNull(readClientResponse.getClaims().get(RESPONSE_TYPES.toString()));
+        assertNotNull(readClientResponse.getClaims().get(REDIRECT_URIS.toString()));
+        assertNotNull(readClientResponse.getClaims().get(APPLICATION_TYPE.toString()));
+        assertNotNull(readClientResponse.getClaims().get(CLIENT_NAME.toString()));
+        assertNotNull(readClientResponse.getClaims().get(ID_TOKEN_SIGNED_RESPONSE_ALG.toString()));
+        assertNotNull(readClientResponse.getClaims().get(SCOPE.toString()));
+
+        // 3. Request authorization
+        List<String> scopes = Arrays.asList("openid", "profile", "address", "email");
+        String state = UUID.randomUUID().toString();
+
+        AuthorizationRequest authorizationRequest = new AuthorizationRequest(responseTypes, clientId, scopes, redirectUri, null);
+        authorizationRequest.setState(state);
+        authorizationRequest.getPrompts().add(Prompt.LOGIN);
+        authorizationRequest.getPrompts().add(Prompt.CONSENT);
+
+        AuthorizationResponse authorizationResponse = authenticateResourceOwnerAndGrantAccess(
+                authorizationEndpoint, authorizationRequest, userId, userSecret);
+
+        assertNotNull(authorizationResponse.getLocation(), "The location is null");
+        assertNotNull(authorizationResponse.getCode(), "The authorization code is null");
+        assertNotNull(authorizationResponse.getState(), "The state is null");
+        assertNotNull(authorizationResponse.getScope(), "The scope is null");
+    }
+
+    @Parameters({"userId", "userSecret", "redirectUris", "redirectUri", "sectorIdentifierUri"})
+    @Test
+    public void requestAuthorizationPromptNoneLoginConsentFail(
+            final String userId, final String userSecret,
+            final String redirectUris, final String redirectUri, final String sectorIdentifierUri) throws Exception {
+        showTitle("requestAuthorizationPromptLoginConsent");
+
+        List<ResponseType> responseTypes = Arrays.asList(ResponseType.CODE);
+
+        // 1. Register client
+        RegisterRequest registerRequest = new RegisterRequest(ApplicationType.WEB, "oxAuth test app",
+                StringUtils.spaceSeparatedToList(redirectUris));
+        registerRequest.setResponseTypes(responseTypes);
+        registerRequest.setSectorIdentifierUri(sectorIdentifierUri);
+
+        RegisterClient registerClient = new RegisterClient(registrationEndpoint);
+        registerClient.setRequest(registerRequest);
+        RegisterResponse registerResponse = registerClient.exec();
+
+        showClient(registerClient);
+        assertEquals(registerResponse.getStatus(), 200, "Unexpected response code: " + registerResponse.getEntity());
+        assertNotNull(registerResponse.getClientId());
+        assertNotNull(registerResponse.getClientSecret());
+        assertNotNull(registerResponse.getRegistrationAccessToken());
+        assertNotNull(registerResponse.getClientIdIssuedAt());
+        assertNotNull(registerResponse.getClientSecretExpiresAt());
+
+        String clientId = registerResponse.getClientId();
+        String registrationAccessToken = registerResponse.getRegistrationAccessToken();
+        String registrationClientUri = registerResponse.getRegistrationClientUri();
+
+        // 2. Client read
+        RegisterRequest readClientRequest = new RegisterRequest(registrationAccessToken);
+
+        RegisterClient readClient = new RegisterClient(registrationClientUri);
+        readClient.setRequest(readClientRequest);
+        RegisterResponse readClientResponse = readClient.exec();
+
+        showClient(readClient);
+        assertEquals(readClientResponse.getStatus(), 200, "Unexpected response code: " + readClientResponse.getEntity());
+        assertNotNull(readClientResponse.getClientId());
+        assertNotNull(readClientResponse.getClientSecret());
+        assertNotNull(readClientResponse.getClientIdIssuedAt());
+        assertNotNull(readClientResponse.getClientSecretExpiresAt());
+
+        assertNotNull(readClientResponse.getClaims().get(RESPONSE_TYPES.toString()));
+        assertNotNull(readClientResponse.getClaims().get(REDIRECT_URIS.toString()));
+        assertNotNull(readClientResponse.getClaims().get(APPLICATION_TYPE.toString()));
+        assertNotNull(readClientResponse.getClaims().get(CLIENT_NAME.toString()));
+        assertNotNull(readClientResponse.getClaims().get(ID_TOKEN_SIGNED_RESPONSE_ALG.toString()));
+        assertNotNull(readClientResponse.getClaims().get(SCOPE.toString()));
+
+        // 3. Request authorization
+        List<String> scopes = Arrays.asList("openid", "profile", "address", "email");
+        String state = UUID.randomUUID().toString();
+
+        AuthorizationRequest request = new AuthorizationRequest(responseTypes, clientId, scopes, redirectUri, null);
+        request.setState(state);
+        request.getPrompts().add(Prompt.NONE);
+        request.getPrompts().add(Prompt.LOGIN);
+        request.getPrompts().add(Prompt.CONSENT);
+        request.setAuthUsername(userId);
+        request.setAuthPassword(userSecret);
+
+        AuthorizeClient authorizeClient = new AuthorizeClient(authorizationEndpoint);
+        authorizeClient.setRequest(request);
+        AuthorizationResponse response = authorizeClient.exec();
+
+        showClient(authorizeClient);
+        assertEquals(response.getStatus(), 302, "Unexpected response code: " + response.getStatus());
+        assertNotNull(response.getLocation(), "The location is null");
+        assertNotNull(response.getErrorType(), "The error type is null");
+        assertNotNull(response.getErrorDescription(), "The error description is null");
+        assertNotNull(response.getState(), "The state is null");
+    }
+
+    @Parameters({"redirectUri", "userId", "userSecret"})
+    @Test
+    public void requestAuthorizationCodeWithoutRedirectUri(
+            final String redirectUri, final String userId, final String userSecret) throws Exception {
+        showTitle("requestAuthorizationCodeWithoutRedirectUri");
+
+        List<String> redirectUriList = Arrays.asList(redirectUri.split(StringUtils.SPACE));
+        RegisterRequest registerRequest = new RegisterRequest(ApplicationType.WEB, "oxAuth test app", redirectUriList);
+
+        RegisterClient registerClient = new RegisterClient(registrationEndpoint);
+        registerClient.setRequest(registerRequest);
+        RegisterResponse registerResponse = registerClient.exec();
+
+        showClient(registerClient);
+        assertEquals(registerResponse.getStatus(), 200, "Unexpected response code: " + registerResponse.getEntity());
+        assertNotNull(registerResponse.getClientId());
+        assertNotNull(registerResponse.getClientSecret());
+        assertNotNull(registerResponse.getRegistrationAccessToken());
+        assertNotNull(registerResponse.getClientSecretExpiresAt());
+
+        String clientId = registerResponse.getClientId();
+
+        List<ResponseType> responseTypes = Arrays.asList(ResponseType.CODE);
+        List<String> scopes = Arrays.asList("openid", "profile", "address", "email");
+        String state = UUID.randomUUID().toString();
+
+        AuthorizationRequest authorizationRequest = new AuthorizationRequest(responseTypes, clientId, scopes, redirectUri, null);
+        authorizationRequest.setState(state);
+
+        AuthorizationResponse authorizationResponse = authenticateResourceOwnerAndGrantAccess(
+                authorizationEndpoint, authorizationRequest, userId, userSecret);
+
+        assertNotNull(authorizationResponse.getLocation(), "The location is null");
+        assertNotNull(authorizationResponse.getCode(), "The authorization code is null");
+        assertNotNull(authorizationResponse.getState(), "The state is null");
+        assertNotNull(authorizationResponse.getScope(), "The scope is null");
+    }
+
+    @Parameters({"redirectUri", "userId", "userSecret"})
+    @Test
+    public void requestAuthorizationCodeWithoutRedirectUriUserBasicAuth(
+            final String redirectUri, final String userId, final String userSecret) throws Exception {
+        showTitle("requestAuthorizationCodeWithoutRedirectUriUserBasicAuth");
+
+        List<String> redirectUriList = Arrays.asList(redirectUri.split(StringUtils.SPACE));
+        RegisterRequest registerRequest = new RegisterRequest(ApplicationType.WEB, "oxAuth test app", redirectUriList);
+        registerRequest.addCustomAttribute("oxAuthTrustedClient", "true");
+        registerRequest.setSubjectType(SubjectType.PUBLIC);
+
+        RegisterClient registerClient = new RegisterClient(registrationEndpoint);
+        registerClient.setRequest(registerRequest);
+        RegisterResponse registerResponse = registerClient.exec();
+
+        showClient(registerClient);
+        assertEquals(registerResponse.getStatus(), 200, "Unexpected response code: " + registerResponse.getEntity());
+        assertNotNull(registerResponse.getClientId());
+        assertNotNull(registerResponse.getClientSecret());
+        assertNotNull(registerResponse.getRegistrationAccessToken());
+        assertNotNull(registerResponse.getClientSecretExpiresAt());
+
+        String clientId = registerResponse.getClientId();
+
+        List<ResponseType> responseTypes = Arrays.asList(ResponseType.CODE);
+        List<String> scopes = Arrays.asList("openid", "profile", "address", "email");
+        String state = UUID.randomUUID().toString();
+
+        AuthorizationRequest authorizationRequest = new AuthorizationRequest(responseTypes, clientId, scopes, null, null);
+        authorizationRequest.setState(state);
+        authorizationRequest.setAuthUsername(userId);
+        authorizationRequest.setAuthPassword(userSecret);
+        authorizationRequest.getPrompts().add(Prompt.NONE);
+
+        AuthorizeClient authorizeClient = new AuthorizeClient(authorizationEndpoint);
+        authorizeClient.setRequest(authorizationRequest);
+        AuthorizationResponse authorizationResponse = authorizeClient.exec();
+
+        showClient(authorizeClient);
+        assertEquals(authorizationResponse.getStatus(), 302, "Unexpected response code: " + authorizationResponse.getStatus());
+        assertNotNull(authorizationResponse.getLocation(), "The location is null");
+        assertNotNull(authorizationResponse.getCode(), "The authorization code is null");
+        assertNotNull(authorizationResponse.getState(), "The state is null");
+        assertNotNull(authorizationResponse.getScope(), "The scope is null");
+    }
+
+    @Parameters({"redirectUris", "userId", "userSecret", "sectorIdentifierUri"})
+    @Test
+    public void requestAuthorizationCodeWithoutRedirectUriFail(
+            final String redirectUris, final String userId, final String userSecret, final String sectorIdentifierUri) throws Exception {
+        showTitle("requestAuthorizationCodeWithoutRedirectUriFail");
+
+        RegisterRequest registerRequest = new RegisterRequest(ApplicationType.WEB, "oxAuth test app",
+                StringUtils.spaceSeparatedToList(redirectUris));
+        registerRequest.addCustomAttribute("oxAuthTrustedClient", "true");
+        registerRequest.setSectorIdentifierUri(sectorIdentifierUri);
+
+        RegisterClient registerClient = new RegisterClient(registrationEndpoint);
+        registerClient.setRequest(registerRequest);
+        RegisterResponse registerResponse = registerClient.exec();
+
+        showClient(registerClient);
+        assertEquals(registerResponse.getStatus(), 200, "Unexpected response code: " + registerResponse.getEntity());
+        assertNotNull(registerResponse.getClientId());
+        assertNotNull(registerResponse.getClientSecret());
+        assertNotNull(registerResponse.getRegistrationAccessToken());
+        assertNotNull(registerResponse.getClientSecretExpiresAt());
+
+        String clientId = registerResponse.getClientId();
+
+        List<ResponseType> responseTypes = Arrays.asList(ResponseType.CODE);
+        List<String> scopes = Arrays.asList("openid", "profile", "address", "email");
+        String state = UUID.randomUUID().toString();
+
+        AuthorizationRequest authorizationRequest = new AuthorizationRequest(responseTypes, clientId, scopes, null, null);
+        authorizationRequest.setState(state);
+        authorizationRequest.setAuthUsername(userId);
+        authorizationRequest.setAuthPassword(userSecret);
+        authorizationRequest.getPrompts().add(Prompt.NONE);
+
+        AuthorizeClient authorizeClient = new AuthorizeClient(authorizationEndpoint);
+        authorizeClient.setRequest(authorizationRequest);
+        AuthorizationResponse authorizationResponse = authorizeClient.exec();
+
+        showClient(authorizeClient);
+        assertEquals(authorizationResponse.getStatus(), 400, "Unexpected response code: " + authorizationResponse.getStatus());
+        assertNotNull(authorizationResponse.getErrorType(), "The error type is null");
+        assertNotNull(authorizationResponse.getErrorDescription(), "The error description is null");
+    }
+
+    @Parameters({"userId", "userSecret", "redirectUris", "redirectUri", "sectorIdentifierUri"})
+    @Test
+    public void requestAuthorizationAccessToken(
+            final String userId, final String userSecret, final String redirectUris, final String redirectUri,
+            final String sectorIdentifierUri) throws Exception {
+        showTitle("requestAuthorizationAccessToken");
+
+        List<ResponseType> responseTypes = Arrays.asList(
+                ResponseType.CODE,
+                ResponseType.TOKEN,
+                ResponseType.ID_TOKEN);
+
+        // 1. Register client
+        RegisterRequest registerRequest = new RegisterRequest(ApplicationType.WEB, "oxAuth test app",
+                StringUtils.spaceSeparatedToList(redirectUris));
+        registerRequest.setResponseTypes(responseTypes);
+        registerRequest.setSectorIdentifierUri(sectorIdentifierUri);
+
+        RegisterClient registerClient = new RegisterClient(registrationEndpoint);
+        registerClient.setRequest(registerRequest);
+        RegisterResponse registerResponse = registerClient.exec();
+
+        showClient(registerClient);
+        assertEquals(registerResponse.getStatus(), 200, "Unexpected response code: " + registerResponse.getEntity());
+        assertNotNull(registerResponse.getClientId());
+        assertNotNull(registerResponse.getClientSecret());
+        assertNotNull(registerResponse.getRegistrationAccessToken());
+        assertNotNull(registerResponse.getClientIdIssuedAt());
+        assertNotNull(registerResponse.getClientSecretExpiresAt());
+
+        String clientId = registerResponse.getClientId();
+        String clientSecret = registerResponse.getClientSecret();
+        String registrationAccessToken = registerResponse.getRegistrationAccessToken();
+        String registrationClientUri = registerResponse.getRegistrationClientUri();
+
+        // 2. Client read
+        RegisterRequest readClientRequest = new RegisterRequest(registrationAccessToken);
+
+        RegisterClient readClient = new RegisterClient(registrationClientUri);
+        readClient.setRequest(readClientRequest);
+        RegisterResponse readClientResponse = readClient.exec();
+
+        showClient(readClient);
+        assertEquals(readClientResponse.getStatus(), 200, "Unexpected response code: " + readClientResponse.getEntity());
+        assertNotNull(readClientResponse.getClientId());
+        assertNotNull(readClientResponse.getClientSecret());
+        assertNotNull(readClientResponse.getClientIdIssuedAt());
+        assertNotNull(readClientResponse.getClientSecretExpiresAt());
+
+        assertNotNull(readClientResponse.getClaims().get(RESPONSE_TYPES.toString()));
+        assertNotNull(readClientResponse.getClaims().get(REDIRECT_URIS.toString()));
+        assertNotNull(readClientResponse.getClaims().get(APPLICATION_TYPE.toString()));
+        assertNotNull(readClientResponse.getClaims().get(CLIENT_NAME.toString()));
+        assertNotNull(readClientResponse.getClaims().get(ID_TOKEN_SIGNED_RESPONSE_ALG.toString()));
+        assertNotNull(readClientResponse.getClaims().get(SCOPE.toString()));
+
+        // 3. Request authorization
+        responseTypes = Arrays.asList(
+                ResponseType.TOKEN,
+                ResponseType.ID_TOKEN);
+
+        List<String> scopes = Arrays.asList("openid", "profile", "address", "email");
+        String nonce = UUID.randomUUID().toString();
+        String state = UUID.randomUUID().toString();
+
+        AuthorizationRequest authorizationRequest1 = new AuthorizationRequest(responseTypes, clientId, scopes, redirectUri, nonce);
+        authorizationRequest1.setState(state);
+        authorizationRequest1.setNonce(nonce);
+
+        AuthorizationResponse authorizationResponse1 = authenticateResourceOwnerAndGrantAccess(
+                authorizationEndpoint, authorizationRequest1, userId, userSecret);
+
+        assertNotNull(authorizationResponse1.getLocation(), "The location is null");
+        assertNotNull(authorizationResponse1.getAccessToken(), "The access token is null");
+        assertNotNull(authorizationResponse1.getState(), "The state is null");
+        assertNotNull(authorizationResponse1.getTokenType(), "The token type is null");
+        assertNotNull(authorizationResponse1.getExpiresIn(), "The expires in value is null");
+        assertNotNull(authorizationResponse1.getScope(), "The scope must be null");
+
+        String accessToken = authorizationResponse1.getAccessToken();
+
+        // 4. Downstream client may be authorized by oxAuth presenting the access token and client credentials
+        responseTypes = Arrays.asList(
+                ResponseType.CODE,
+                ResponseType.ID_TOKEN);
+
+        nonce = UUID.randomUUID().toString();
+        state = UUID.randomUUID().toString();
+/*
+        AuthorizationRequest authorizationRequest2 = new AuthorizationRequest(responseTypes, clientId, scopes, redirectUri, nonce);
+        authorizationRequest2.setAccessToken(accessToken);
+        authorizationRequest2.setState(state);
+        authorizationRequest2.getPrompts().add(Prompt.NONE);
+
+        AuthorizeClient authorizeClient2 = new AuthorizeClient(authorizationEndpoint);
+        authorizeClient2.setRequest(authorizationRequest2);
+        AuthorizationResponse authorizationResponse2 = authorizeClient2.exec();
+
+        showClient(authorizeClient2);
+        assertEquals(authorizationResponse2.getStatus(), 302, "Unexpected response code: " + authorizationResponse2.getStatus());
+        assertNotNull(authorizationResponse2.getLocation(), "The location is null");
+        assertNotNull(authorizationResponse2.getCode(), "The authorization code is null");
+        assertNotNull(authorizationResponse2.getState(), "The state is null");
+        assertNotNull(authorizationResponse2.getScope(), "The scope is null");
+
+        String authorizationCode = authorizationResponse2.getCode();
+
+        // 5. Request access token using the authorization code.
+        TokenRequest tokenRequest = new TokenRequest(GrantType.AUTHORIZATION_CODE);
+        tokenRequest.setCode(authorizationCode);
+        tokenRequest.setRedirectUri(redirectUri);
+        tokenRequest.setAuthUsername(clientId);
+        tokenRequest.setAuthPassword(clientSecret);
+        tokenRequest.setAuthenticationMethod(AuthenticationMethod.CLIENT_SECRET_BASIC);
+
+        TokenClient tokenClient1 = new TokenClient(tokenEndpoint);
+        tokenClient1.setRequest(tokenRequest);
+        TokenResponse response3 = tokenClient1.exec();
+
+        showClient(tokenClient1);
+        assertEquals(response3.getStatus(), 200, "Unexpected response code: " + response3.getStatus());
+        assertNotNull(response3.getEntity(), "The entity is null");
+        assertNotNull(response3.getAccessToken(), "The access token is null");
+        assertNotNull(response3.getExpiresIn(), "The expires in value is null");
+        assertNotNull(response3.getTokenType(), "The token type is null");
+        assertNotNull(response3.getRefreshToken(), "The refresh token is null");*/
+    }
+
+    @Parameters({"userId", "userSecret", "redirectUris", "redirectUri", "sectorIdentifierUri"})
+    @Test
+    public void requestAuthorizationAccessTokenUserBasicAuth(
+            final String userId, final String userSecret, final String redirectUris, final String redirectUri,
+            final String sectorIdentifierUri) throws Exception {
+        showTitle("requestAuthorizationAccessTokenUserBasicAuth");
+
+        List<ResponseType> responseTypes = Arrays.asList(
+                ResponseType.CODE,
+                ResponseType.TOKEN,
+                ResponseType.ID_TOKEN);
+
+        // 1. Register client
+        RegisterRequest registerRequest = new RegisterRequest(ApplicationType.WEB, "oxAuth test app",
+                StringUtils.spaceSeparatedToList(redirectUris));
+        registerRequest.setResponseTypes(responseTypes);
+        registerRequest.setSectorIdentifierUri(sectorIdentifierUri);
+
+        RegisterClient registerClient = new RegisterClient(registrationEndpoint);
+        registerClient.setRequest(registerRequest);
+        RegisterResponse registerResponse = registerClient.exec();
+
+        showClient(registerClient);
+        assertEquals(registerResponse.getStatus(), 200, "Unexpected response code: " + registerResponse.getEntity());
+        assertNotNull(registerResponse.getClientId());
+        assertNotNull(registerResponse.getClientSecret());
+        assertNotNull(registerResponse.getRegistrationAccessToken());
+        assertNotNull(registerResponse.getClientIdIssuedAt());
+        assertNotNull(registerResponse.getClientSecretExpiresAt());
+
+        String clientId = registerResponse.getClientId();
+        String clientSecret = registerResponse.getClientSecret();
+        String registrationAccessToken = registerResponse.getRegistrationAccessToken();
+        String registrationClientUri = registerResponse.getRegistrationClientUri();
+
+        // 2. Client read
+        RegisterRequest readClientRequest = new RegisterRequest(registrationAccessToken);
+
+        RegisterClient readClient = new RegisterClient(registrationClientUri);
+        readClient.setRequest(readClientRequest);
+        RegisterResponse readClientResponse = readClient.exec();
+
+        showClient(readClient);
+        assertEquals(readClientResponse.getStatus(), 200, "Unexpected response code: " + readClientResponse.getEntity());
+        assertNotNull(readClientResponse.getClientId());
+        assertNotNull(readClientResponse.getClientSecret());
+        assertNotNull(readClientResponse.getClientIdIssuedAt());
+        assertNotNull(readClientResponse.getClientSecretExpiresAt());
+
+        assertNotNull(readClientResponse.getClaims().get(RESPONSE_TYPES.toString()));
+        assertNotNull(readClientResponse.getClaims().get(REDIRECT_URIS.toString()));
+        assertNotNull(readClientResponse.getClaims().get(APPLICATION_TYPE.toString()));
+        assertNotNull(readClientResponse.getClaims().get(CLIENT_NAME.toString()));
+        assertNotNull(readClientResponse.getClaims().get(ID_TOKEN_SIGNED_RESPONSE_ALG.toString()));
+        assertNotNull(readClientResponse.getClaims().get(SCOPE.toString()));
+
+        // 3. Request authorization
+        responseTypes = Arrays.asList(
+                ResponseType.TOKEN,
+                ResponseType.ID_TOKEN);
+
+        List<String> scopes = Arrays.asList("openid", "profile", "address", "email");
+        String nonce = UUID.randomUUID().toString();
+        String state = UUID.randomUUID().toString();
+
+        AuthorizationRequest authorizationRequest1 = new AuthorizationRequest(responseTypes, clientId, scopes, redirectUri, nonce);
+        authorizationRequest1.setState(state);
+
+        AuthorizationResponse authorizationResponse1 = authenticateResourceOwnerAndGrantAccess(
+                authorizationEndpoint, authorizationRequest1, userId, userSecret);
+
+        assertNotNull(authorizationResponse1.getLocation(), "The location is null");
+        assertNotNull(authorizationResponse1.getAccessToken(), "The access token is null");
+        assertNotNull(authorizationResponse1.getState(), "The state is null");
+        assertNotNull(authorizationResponse1.getTokenType(), "The token type is null");
+        assertNotNull(authorizationResponse1.getExpiresIn(), "The expires in value is null");
+        assertNotNull(authorizationResponse1.getScope(), "The scope must be null");
+
+        String accessToken = authorizationResponse1.getAccessToken();
+
+        // 4. Downstream client may be authorized by oxAuth presenting the access token and client credentials
+        responseTypes = Arrays.asList(
+                ResponseType.CODE,
+                ResponseType.ID_TOKEN);
+
+        nonce = UUID.randomUUID().toString();
+        state = UUID.randomUUID().toString();
+/*
+        AuthorizationRequest authorizationRequest2 = new AuthorizationRequest(responseTypes, clientId, scopes, redirectUri, nonce);
+        authorizationRequest2.setAccessToken(accessToken);
+        authorizationRequest2.setState(state);
+        authorizationRequest2.getPrompts().add(Prompt.NONE);
+
+        AuthorizeClient authorizeClient2 = new AuthorizeClient(authorizationEndpoint);
+        authorizeClient2.setRequest(authorizationRequest2);
+        AuthorizationResponse authorizationResponse2 = authorizeClient2.exec();
+
+        showClient(authorizeClient2);
+        assertEquals(authorizationResponse2.getStatus(), 302, "Unexpected response code: " + authorizationResponse2.getStatus());
+        assertNotNull(authorizationResponse2.getLocation(), "The location is null");
+        assertNotNull(authorizationResponse2.getCode(), "The authorization code is null");
+        assertNotNull(authorizationResponse2.getState(), "The state is null");
+        assertNotNull(authorizationResponse2.getScope(), "The scope is null");
+
+        String authorizationCode = authorizationResponse2.getCode();
+
+        // 5. Request access token using the authorization code.
+        TokenRequest tokenRequest = new TokenRequest(GrantType.AUTHORIZATION_CODE);
+        tokenRequest.setCode(authorizationCode);
+        tokenRequest.setRedirectUri(redirectUri);
+        tokenRequest.setAuthUsername(clientId);
+        tokenRequest.setAuthPassword(clientSecret);
+        tokenRequest.setAuthenticationMethod(AuthenticationMethod.CLIENT_SECRET_BASIC);
+
+        TokenClient tokenClient1 = new TokenClient(tokenEndpoint);
+        tokenClient1.setRequest(tokenRequest);
+        TokenResponse response3 = tokenClient1.exec();
+
+        showClient(tokenClient1);
+        assertEquals(response3.getStatus(), 200, "Unexpected response code: " + response3.getStatus());
+        assertNotNull(response3.getEntity(), "The entity is null");
+        assertNotNull(response3.getAccessToken(), "The access token is null");
+        assertNotNull(response3.getExpiresIn(), "The expires in value is null");
+        assertNotNull(response3.getTokenType(), "The token type is null");
+        assertNotNull(response3.getRefreshToken(), "The refresh token is null");*/
+    }
+
+    @Parameters({"redirectUris", "redirectUri", "sectorIdentifierUri"})
+    @Test
+    public void requestAuthorizationAccessTokenFail(
+            final String redirectUris, final String redirectUri, final String sectorIdentifierUri) throws Exception {
+        showTitle("requestAuthorizationAccessTokenFail");
+
+        List<ResponseType> responseTypes = Arrays.asList(
+                ResponseType.CODE,
+                ResponseType.ID_TOKEN);
+
+        // 1. Register client
+        RegisterRequest registerRequest = new RegisterRequest(ApplicationType.WEB, "oxAuth test app",
+                StringUtils.spaceSeparatedToList(redirectUris));
+        registerRequest.setResponseTypes(responseTypes);
+        registerRequest.setSectorIdentifierUri(sectorIdentifierUri);
+
+        RegisterClient registerClient = new RegisterClient(registrationEndpoint);
+        registerClient.setRequest(registerRequest);
+        RegisterResponse registerResponse = registerClient.exec();
+
+        showClient(registerClient);
+        assertEquals(registerResponse.getStatus(), 200, "Unexpected response code: " + registerResponse.getEntity());
+        assertNotNull(registerResponse.getClientId());
+        assertNotNull(registerResponse.getClientSecret());
+        assertNotNull(registerResponse.getRegistrationAccessToken());
+        assertNotNull(registerResponse.getClientIdIssuedAt());
+        assertNotNull(registerResponse.getClientSecretExpiresAt());
+
+        String clientId = registerResponse.getClientId();
+        String registrationAccessToken = registerResponse.getRegistrationAccessToken();
+        String registrationClientUri = registerResponse.getRegistrationClientUri();
+
+        // 2. Client read
+        RegisterRequest readClientRequest = new RegisterRequest(registrationAccessToken);
+
+        RegisterClient readClient = new RegisterClient(registrationClientUri);
+        readClient.setRequest(readClientRequest);
+        RegisterResponse readClientResponse = readClient.exec();
+
+        showClient(readClient);
+        assertEquals(readClientResponse.getStatus(), 200, "Unexpected response code: " + readClientResponse.getEntity());
+        assertNotNull(readClientResponse.getClientId());
+        assertNotNull(readClientResponse.getClientSecret());
+        assertNotNull(readClientResponse.getClientIdIssuedAt());
+        assertNotNull(readClientResponse.getClientSecretExpiresAt());
+
+        assertNotNull(readClientResponse.getClaims().get(RESPONSE_TYPES.toString()));
+        assertNotNull(readClientResponse.getClaims().get(REDIRECT_URIS.toString()));
+        assertNotNull(readClientResponse.getClaims().get(APPLICATION_TYPE.toString()));
+        assertNotNull(readClientResponse.getClaims().get(CLIENT_NAME.toString()));
+        assertNotNull(readClientResponse.getClaims().get(ID_TOKEN_SIGNED_RESPONSE_ALG.toString()));
+        assertNotNull(readClientResponse.getClaims().get(SCOPE.toString()));
+
+        // 3. Request authorization
+        List<String> scopes = Arrays.asList("openid", "profile", "address", "email");
+        String nonce = null;
+        String state = UUID.randomUUID().toString();
+
+        AuthorizationRequest request = new AuthorizationRequest(responseTypes, clientId, scopes, redirectUri, nonce);
+        request.setAccessToken("INVALID_ACCESS_TOKEN");
+        request.setState(state);
+        request.getPrompts().add(Prompt.NONE);
+
+        AuthorizeClient authorizeClient = new AuthorizeClient(authorizationEndpoint);
+        authorizeClient.setRequest(request);
+        AuthorizationResponse response = authorizeClient.exec();
+
+        showClient(authorizeClient);
+        assertEquals(response.getStatus(), 302, "Unexpected response code: " + response.getStatus());
+        assertNotNull(response.getLocation(), "The location is null");
+        assertNotNull(response.getErrorType(), "The error type is null");
+        assertNotNull(response.getErrorDescription(), "The error description is null");
+        assertNotNull(response.getState(), "The state is null");
+    }
+
+    @Parameters({"userId", "userSecret", "redirectUris", "redirectUri", "sectorIdentifierUri"})
+    @Test
+    public void requestAuthorizationDenyAccessThenGrantAccess(
+            final String userId, final String userSecret, final String redirectUris, final String redirectUri,
+            final String sectorIdentifierUri) throws Exception {
+        showTitle("requestAuthorizationDenyAccessThenGrantAccess");
+
+        List<ResponseType> responseTypes = Arrays.asList(ResponseType.CODE);
+
+        // 1. Register client
+        RegisterRequest registerRequest = new RegisterRequest(ApplicationType.WEB, "oxAuth test app",
+                StringUtils.spaceSeparatedToList(redirectUris));
+        registerRequest.setResponseTypes(responseTypes);
+        registerRequest.setSectorIdentifierUri(sectorIdentifierUri);
+
+        RegisterClient registerClient = newRegisterClient(registerRequest);
+        RegisterResponse registerResponse = registerClient.exec();
+
+        showClient(registerClient);
+        assertEquals(registerResponse.getStatus(), 200, "Unexpected response code: " + registerResponse.getEntity());
+        assertNotNull(registerResponse.getClientId());
+        assertNotNull(registerResponse.getClientSecret());
+        assertNotNull(registerResponse.getRegistrationAccessToken());
+        assertNotNull(registerResponse.getClientIdIssuedAt());
+        assertNotNull(registerResponse.getClientSecretExpiresAt());
+
+        String clientId = registerResponse.getClientId();
+        String sessionId = null;
+
+        // 2. Request authorization, authenticate resource owner and deny access
+        {
+            List<String> scopes = Arrays.asList("openid", "profile", "address", "email");
+            String state = UUID.randomUUID().toString();
+
+            AuthorizationRequest authorizationRequest = new AuthorizationRequest(responseTypes, clientId, scopes, redirectUri, null);
+            authorizationRequest.setState(state);
+            authorizationRequest.setAcrValues(Arrays.asList("basic"));
+
+            AuthorizationResponse authorizationResponse = authenticateResourceOwnerAndDenyAccess(
+                    authorizationEndpoint, authorizationRequest, userId, userSecret);
+
+            assertNotNull(authorizationResponse.getLocation());
+            assertNotNull(authorizationResponse.getErrorType());
+            assertEquals(authorizationResponse.getErrorType(), AuthorizeErrorResponseType.ACCESS_DENIED);
+            assertNotNull(authorizationResponse.getErrorDescription());
+            assertNotNull(authorizationResponse.getState());
+
+            sessionId = authorizationResponse.getSessionId();
+        }
+
+        // 3. Request authorization and deny access (resource owner is already authenticated)
+        {
+            List<String> scopes = Arrays.asList("openid", "profile", "address", "email");
+            String state = UUID.randomUUID().toString();
+
+            AuthorizationRequest authorizationRequest = new AuthorizationRequest(responseTypes, clientId, scopes, redirectUri, null);
+            authorizationRequest.setState(state);
+            authorizationRequest.setSessionId(sessionId);
+            authorizationRequest.setAcrValues(Arrays.asList("basic"));
+
+            AuthorizationResponse authorizationResponse = authorizationRequestAndDenyAccess(
+                    authorizationEndpoint, authorizationRequest);
+
+            assertNotNull(authorizationResponse.getLocation());
+            assertNotNull(authorizationResponse.getErrorType());
+            assertEquals(authorizationResponse.getErrorType(), AuthorizeErrorResponseType.ACCESS_DENIED);
+            assertNotNull(authorizationResponse.getErrorDescription());
+            assertNotNull(authorizationResponse.getState());
+        }
+
+        // 4. Request authorization and grant access (resource owner is already authenticated)
+        {
+            List<String> scopes = Arrays.asList("openid", "profile", "address", "email");
+            String state = UUID.randomUUID().toString();
+
+            AuthorizationRequest authorizationRequest = new AuthorizationRequest(responseTypes, clientId, scopes, redirectUri, null);
+            authorizationRequest.setState(state);
+            authorizationRequest.setSessionId(sessionId);
+            authorizationRequest.setAcrValues(Arrays.asList("basic"));
+
+            AuthorizationResponse authorizationResponse = authorizationRequestAndGrantAccess(
+                    authorizationEndpoint, authorizationRequest);
+
+            assertNotNull(authorizationResponse.getLocation(), "The location is null");
+            assertNotNull(authorizationResponse.getCode(), "The authorization code is null");
+            assertNotNull(authorizationResponse.getState(), "The state is null");
+            assertNotNull(authorizationResponse.getScope(), "The scope is null");
+        }
+    }
+
+    /**
+     * If a client has only openid scope and pairwise id, person should not have to authorize.
+     */
+    @Parameters({"userId", "userSecret", "redirectUris", "redirectUri", "sectorIdentifierUri"})
+    //@Test // Before run this test, set skipAuthorizationForOpenIdScopeAndPairwiseId = true
+    public void requestAuthorizationForOpenIdScopeAndPairwiseId(
+            final String userId, final String userSecret, final String redirectUris, final String redirectUri,
+            final String sectorIdentifierUri) throws Exception {
+        showTitle("requestAuthorizationForOpenIdScopeAndPairwiseId");
+
+        List<ResponseType> responseTypes = Arrays.asList(ResponseType.CODE);
+
+        // 1. Register client
+        RegisterRequest registerRequest = new RegisterRequest(ApplicationType.WEB, "oxAuth test app",
+                StringUtils.spaceSeparatedToList(redirectUris));
+        registerRequest.setResponseTypes(responseTypes);
+        registerRequest.setSectorIdentifierUri(sectorIdentifierUri);
+
+        RegisterClient registerClient = new RegisterClient(registrationEndpoint);
+        registerClient.setRequest(registerRequest);
+        RegisterResponse registerResponse = registerClient.exec();
+
+        showClient(registerClient);
+        assertEquals(registerResponse.getStatus(), 200, "Unexpected response code: " + registerResponse.getEntity());
+        assertNotNull(registerResponse.getClientId());
+        assertNotNull(registerResponse.getClientSecret());
+        assertNotNull(registerResponse.getRegistrationAccessToken());
+        assertNotNull(registerResponse.getClientIdIssuedAt());
+        assertNotNull(registerResponse.getClientSecretExpiresAt());
+
+        String clientId = registerResponse.getClientId();
+        String registrationAccessToken = registerResponse.getRegistrationAccessToken();
+        String registrationClientUri = registerResponse.getRegistrationClientUri();
+
+        // 2. Client read
+        RegisterRequest readClientRequest = new RegisterRequest(registrationAccessToken);
+
+        RegisterClient readClient = new RegisterClient(registrationClientUri);
+        readClient.setRequest(readClientRequest);
+        RegisterResponse readClientResponse = readClient.exec();
+
+        showClient(readClient);
+        assertEquals(readClientResponse.getStatus(), 200, "Unexpected response code: " + readClientResponse.getEntity());
+        assertNotNull(readClientResponse.getClientId());
+        assertNotNull(readClientResponse.getClientSecret());
+        assertNotNull(readClientResponse.getClientIdIssuedAt());
+        assertNotNull(readClientResponse.getClientSecretExpiresAt());
+
+        assertNotNull(readClientResponse.getClaims().get(RESPONSE_TYPES.toString()));
+        assertNotNull(readClientResponse.getClaims().get(REDIRECT_URIS.toString()));
+        assertNotNull(readClientResponse.getClaims().get(APPLICATION_TYPE.toString()));
+        assertNotNull(readClientResponse.getClaims().get(CLIENT_NAME.toString()));
+        assertNotNull(readClientResponse.getClaims().get(ID_TOKEN_SIGNED_RESPONSE_ALG.toString()));
+        assertNotNull(readClientResponse.getClaims().get(SCOPE.toString()));
+
+        // 3. Request authorization and receive the authorization code.
+        List<String> scopes = Arrays.asList("openid");
+        String state = UUID.randomUUID().toString();
+
+        AuthorizationRequest authorizationRequest = new AuthorizationRequest(responseTypes, clientId, scopes, redirectUri, null);
+        authorizationRequest.setState(state);
+
+        AuthorizationResponse authorizationResponse = authenticateResourceOwner(
+                authorizationEndpoint, authorizationRequest, userId, userSecret, false);
+
+        assertNotNull(authorizationResponse.getLocation(), "The location is null");
+        assertNotNull(authorizationResponse.getCode(), "The authorization code is null");
+        assertNotNull(authorizationResponse.getState(), "The state is null");
+        assertNotNull(authorizationResponse.getScope(), "The scope is null");
+    }
+
+    @Parameters({"userId", "userSecret", "redirectUris", "redirectUri", "sectorIdentifierUri"})
+    @Test
+    public void requestAuthorizationUILocales(
+            final String userId, final String userSecret, final String redirectUris, final String redirectUri,
+            final String sectorIdentifierUri) throws Exception {
+        showTitle("requestAuthorizationUILocales");
+
+        List<ResponseType> responseTypes = Arrays.asList(
+                ResponseType.CODE,
+                ResponseType.TOKEN,
+                ResponseType.ID_TOKEN);
+
+        // 1. Register client
+        RegisterRequest registerRequest = new RegisterRequest(ApplicationType.WEB, "oxAuth test app",
+                StringUtils.spaceSeparatedToList(redirectUris));
+        registerRequest.setResponseTypes(responseTypes);
+        registerRequest.setSectorIdentifierUri(sectorIdentifierUri);
+
+        RegisterClient registerClient = new RegisterClient(registrationEndpoint);
+        registerClient.setRequest(registerRequest);
+        RegisterResponse registerResponse = registerClient.exec();
+
+        showClient(registerClient);
+        assertEquals(registerResponse.getStatus(), 200, "Unexpected response code: " + registerResponse.getEntity());
+        assertNotNull(registerResponse.getClientId());
+        assertNotNull(registerResponse.getClientSecret());
+        assertNotNull(registerResponse.getRegistrationAccessToken());
+        assertNotNull(registerResponse.getClientIdIssuedAt());
+        assertNotNull(registerResponse.getClientSecretExpiresAt());
+
+        String clientId = registerResponse.getClientId();
+        String clientSecret = registerResponse.getClientSecret();
+        String registrationAccessToken = registerResponse.getRegistrationAccessToken();
+        String registrationClientUri = registerResponse.getRegistrationClientUri();
+
+        // 2. Client read
+        RegisterRequest readClientRequest = new RegisterRequest(registrationAccessToken);
+
+        RegisterClient readClient = new RegisterClient(registrationClientUri);
+        readClient.setRequest(readClientRequest);
+        RegisterResponse readClientResponse = readClient.exec();
+
+        showClient(readClient);
+        assertEquals(readClientResponse.getStatus(), 200, "Unexpected response code: " + readClientResponse.getEntity());
+        assertNotNull(readClientResponse.getClientId());
+        assertNotNull(readClientResponse.getClientSecret());
+        assertNotNull(readClientResponse.getClientIdIssuedAt());
+        assertNotNull(readClientResponse.getClientSecretExpiresAt());
+
+        assertNotNull(readClientResponse.getClaims().get(RESPONSE_TYPES.toString()));
+        assertNotNull(readClientResponse.getClaims().get(REDIRECT_URIS.toString()));
+        assertNotNull(readClientResponse.getClaims().get(APPLICATION_TYPE.toString()));
+        assertNotNull(readClientResponse.getClaims().get(CLIENT_NAME.toString()));
+        assertNotNull(readClientResponse.getClaims().get(ID_TOKEN_SIGNED_RESPONSE_ALG.toString()));
+        assertNotNull(readClientResponse.getClaims().get(SCOPE.toString()));
+
+        // 3. Request authorization
+        responseTypes = Arrays.asList(
+                ResponseType.TOKEN,
+                ResponseType.ID_TOKEN);
+
+        List<String> scopes = Arrays.asList("openid", "profile", "address", "email");
+        String nonce = UUID.randomUUID().toString();
+        String state = UUID.randomUUID().toString();
+
+        AuthorizationRequest authorizationRequest = new AuthorizationRequest(responseTypes, clientId, scopes, redirectUri, nonce);
+        authorizationRequest.setState(state);
+        authorizationRequest.setNonce(nonce);
+        authorizationRequest.setUiLocales(Arrays.asList("es"));
+
+        AuthorizationResponse authorizationResponse = authenticateResourceOwnerAndGrantAccess(
+                authorizationEndpoint, authorizationRequest, userId, userSecret);
+
+        assertNotNull(authorizationResponse.getLocation(), "The location is null");
+        assertNotNull(authorizationResponse.getAccessToken(), "The access token is null");
+        assertNotNull(authorizationResponse.getState(), "The state is null");
+        assertNotNull(authorizationResponse.getTokenType(), "The token type is null");
+        assertNotNull(authorizationResponse.getExpiresIn(), "The expires in value is null");
+        assertNotNull(authorizationResponse.getScope(), "The scope must be null");
+    }
+
+    @Parameters({"userId", "userSecret", "redirectUris", "redirectUri", "sectorIdentifierUri"})
+    @Test
+    public void requestAuthorizationObjectUILocales(
+            final String userId, final String userSecret, final String redirectUris, final String redirectUri,
+            final String sectorIdentifierUri) throws Exception {
+        showTitle("requestAuthorizationObjectUILocales");
+
+        List<ResponseType> responseTypes = Arrays.asList(
+                ResponseType.TOKEN,
+                ResponseType.ID_TOKEN);
+
+        // 1. Register client
+        RegisterRequest registerRequest = new RegisterRequest(ApplicationType.WEB, "oxAuth test app",
+                StringUtils.spaceSeparatedToList(redirectUris));
+        registerRequest.setResponseTypes(responseTypes);
+        registerRequest.setSectorIdentifierUri(sectorIdentifierUri);
+
+        RegisterClient registerClient = newRegisterClient(registerRequest);
+        RegisterResponse registerResponse = registerClient.exec();
+
+        showClient(registerClient);
+        assertEquals(registerResponse.getStatus(), 200, "Unexpected response code: " + registerResponse.getEntity());
+        assertNotNull(registerResponse.getClientId());
+        assertNotNull(registerResponse.getClientSecret());
+        assertNotNull(registerResponse.getRegistrationAccessToken());
+        assertNotNull(registerResponse.getClientIdIssuedAt());
+        assertNotNull(registerResponse.getClientSecretExpiresAt());
+
+        String clientId = registerResponse.getClientId();
+        String clientSecret = registerResponse.getClientSecret();
+
+        // 2. Request authorization
+        OxAuthCryptoProvider cryptoProvider = new OxAuthCryptoProvider();
+
+        List<String> scopes = Arrays.asList("openid", "profile", "address", "email");
+        String nonce = UUID.randomUUID().toString();
+        String state = UUID.randomUUID().toString();
+
+        AuthorizationRequest authorizationRequest = new AuthorizationRequest(responseTypes, clientId, scopes, redirectUri, nonce);
+        authorizationRequest.setState(state);
+        authorizationRequest.setUiLocales(Arrays.asList("es"));
+
+        JwtAuthorizationRequest jwtAuthorizationRequest = new JwtAuthorizationRequest(
+                authorizationRequest, SignatureAlgorithm.HS256, clientSecret, cryptoProvider);
+        jwtAuthorizationRequest.addUserInfoClaim(new Claim(JwtClaimName.NAME, ClaimValue.createNull()));
+        jwtAuthorizationRequest.addUserInfoClaim(new Claim(JwtClaimName.NICKNAME, ClaimValue.createEssential(false)));
+        jwtAuthorizationRequest.addUserInfoClaim(new Claim(JwtClaimName.EMAIL, ClaimValue.createNull()));
+        jwtAuthorizationRequest.addUserInfoClaim(new Claim(JwtClaimName.EMAIL_VERIFIED, ClaimValue.createNull()));
+        jwtAuthorizationRequest.addUserInfoClaim(new Claim(JwtClaimName.PICTURE, ClaimValue.createEssential(false)));
+        jwtAuthorizationRequest.addIdTokenClaim(new Claim(JwtClaimName.AUTHENTICATION_TIME, ClaimValue.createNull()));
+        jwtAuthorizationRequest.addIdTokenClaim(new Claim(JwtClaimName.AUTHENTICATION_CONTEXT_CLASS_REFERENCE, ClaimValue.createValueList(new String[]{"basic"})));
+        jwtAuthorizationRequest.getIdTokenMember().setMaxAge(86400);
+        String authJwt = jwtAuthorizationRequest.getEncodedJwt();
+        authorizationRequest.setRequest(authJwt);
+
+        AuthorizationResponse authorizationResponse = authenticateResourceOwnerAndGrantAccess(
+                authorizationEndpoint, authorizationRequest, userId, userSecret);
+
+        assertNotNull(authorizationResponse.getLocation(), "The location is null");
+        assertNotNull(authorizationResponse.getAccessToken(), "The accessToken is null");
+        assertNotNull(authorizationResponse.getTokenType(), "The tokenType is null");
+        assertNotNull(authorizationResponse.getIdToken(), "The idToken is null");
+        assertNotNull(authorizationResponse.getState(), "The state is null");
+
+        String accessToken = authorizationResponse.getAccessToken();
+
+        // 3. Request user info
+        UserInfoClient userInfoClient = new UserInfoClient(userInfoEndpoint);
+        UserInfoResponse userInfoResponse = userInfoClient.execUserInfo(accessToken);
+
+        showClient(userInfoClient);
+        assertEquals(userInfoResponse.getStatus(), 200, "Unexpected response code: " + userInfoResponse.getStatus());
+        assertNotNull(userInfoResponse.getClaim(JwtClaimName.SUBJECT_IDENTIFIER));
+        assertNotNull(userInfoResponse.getClaim(JwtClaimName.NAME));
+        assertNotNull(userInfoResponse.getClaim(JwtClaimName.GIVEN_NAME));
+        assertNotNull(userInfoResponse.getClaim(JwtClaimName.FAMILY_NAME));
+        assertNotNull(userInfoResponse.getClaim(JwtClaimName.EMAIL));
+        assertNotNull(userInfoResponse.getClaim(JwtClaimName.ZONEINFO));
+        assertNotNull(userInfoResponse.getClaim(JwtClaimName.LOCALE));
+        assertNotNull(userInfoResponse.getClaim(JwtClaimName.ADDRESS));
+    }
+
+    @Parameters({"userId", "userSecret", "redirectUris", "redirectUri", "sectorIdentifierUri"})
+    @Test
+    public void requestAuthorizationAccessTokenSubjectTypePublic(
+            final String userId, final String userSecret, final String redirectUris, final String redirectUri,
+            final String sectorIdentifierUri) throws Exception {
+        showTitle("requestAuthorizationAccessTokenSubjectTypePublic");
+
+        List<ResponseType> responseTypes = Arrays.asList(
+                ResponseType.CODE,
+                ResponseType.TOKEN,
+                ResponseType.ID_TOKEN);
+
+        // 1. Register client
+        RegisterRequest registerRequest = new RegisterRequest(ApplicationType.WEB, "oxAuth test app",
+                StringUtils.spaceSeparatedToList(redirectUris));
+        registerRequest.setSubjectType(SubjectType.PUBLIC);
+        registerRequest.setResponseTypes(responseTypes);
+        registerRequest.setSectorIdentifierUri(sectorIdentifierUri);
+
+        RegisterClient registerClient = new RegisterClient(registrationEndpoint);
+        registerClient.setRequest(registerRequest);
+        RegisterResponse registerResponse = registerClient.exec();
+
+        showClient(registerClient);
+        assertEquals(registerResponse.getStatus(), 200, "Unexpected response code: " + registerResponse.getEntity());
+        assertNotNull(registerResponse.getClientId());
+        assertNotNull(registerResponse.getClientSecret());
+        assertNotNull(registerResponse.getRegistrationAccessToken());
+        assertNotNull(registerResponse.getClientIdIssuedAt());
+        assertNotNull(registerResponse.getClientSecretExpiresAt());
+
+        String clientId = registerResponse.getClientId();
+        String clientSecret = registerResponse.getClientSecret();
+        String registrationAccessToken = registerResponse.getRegistrationAccessToken();
+        String registrationClientUri = registerResponse.getRegistrationClientUri();
+
+        // 2. Client read
+        RegisterRequest readClientRequest = new RegisterRequest(registrationAccessToken);
+
+        RegisterClient readClient = new RegisterClient(registrationClientUri);
+        readClient.setRequest(readClientRequest);
+        RegisterResponse readClientResponse = readClient.exec();
+
+        showClient(readClient);
+        assertEquals(readClientResponse.getStatus(), 200, "Unexpected response code: " + readClientResponse.getEntity());
+        assertNotNull(readClientResponse.getClientId());
+        assertNotNull(readClientResponse.getClientSecret());
+        assertNotNull(readClientResponse.getClientIdIssuedAt());
+        assertNotNull(readClientResponse.getClientSecretExpiresAt());
+
+        assertNotNull(readClientResponse.getClaims().get(RESPONSE_TYPES.toString()));
+        assertNotNull(readClientResponse.getClaims().get(REDIRECT_URIS.toString()));
+        assertNotNull(readClientResponse.getClaims().get(APPLICATION_TYPE.toString()));
+        assertNotNull(readClientResponse.getClaims().get(CLIENT_NAME.toString()));
+        assertNotNull(readClientResponse.getClaims().get(ID_TOKEN_SIGNED_RESPONSE_ALG.toString()));
+        assertNotNull(readClientResponse.getClaims().get(SCOPE.toString()));
+
+        // 3. Request authorization
+        responseTypes = Arrays.asList(
+                ResponseType.TOKEN,
+                ResponseType.ID_TOKEN);
+
+        List<String> scopes = Arrays.asList("openid", "profile", "address", "email");
+        String nonce = UUID.randomUUID().toString();
+        String state = UUID.randomUUID().toString();
+
+        AuthorizationRequest authorizationRequest1 = new AuthorizationRequest(responseTypes, clientId, scopes, redirectUri, nonce);
+        authorizationRequest1.setState(state);
+        authorizationRequest1.setNonce(nonce);
+
+        AuthorizationResponse authorizationResponse1 = authenticateResourceOwnerAndGrantAccess(
+                authorizationEndpoint, authorizationRequest1, userId, userSecret);
+
+        assertNotNull(authorizationResponse1.getLocation(), "The location is null");
+        assertNotNull(authorizationResponse1.getAccessToken(), "The access token is null");
+        assertNotNull(authorizationResponse1.getState(), "The state is null");
+        assertNotNull(authorizationResponse1.getTokenType(), "The token type is null");
+        assertNotNull(authorizationResponse1.getExpiresIn(), "The expires in value is null");
+        assertNotNull(authorizationResponse1.getScope(), "The scope must be null");
+
+        String idToken = authorizationResponse1.getIdToken();
+
+        // 2. Validate access_token and id_token
+        Jwt jwt = Jwt.parse(idToken);
+        Asserter.assertIdToken(jwt, JwtClaimName.ACCESS_TOKEN_HASH);
+    }
+}
\ No newline at end of file
diff --git a/oxAuth/Client/src/test/java/org/gluu/oxauth/ws/rs/AuthorizeSessionIdRestWebServiceHttpTest.java b/oxAuth/Client/src/test/java/org/gluu/oxauth/ws/rs/AuthorizeSessionIdRestWebServiceHttpTest.java
new file mode 100644
index 00000000..6e1a0593
--- /dev/null
+++ b/oxAuth/Client/src/test/java/org/gluu/oxauth/ws/rs/AuthorizeSessionIdRestWebServiceHttpTest.java
@@ -0,0 +1,142 @@
+/*
+ * oxAuth is available under the MIT License (2008). See http://opensource.org/licenses/MIT for full text.
+ *
+ * Copyright (c) 2014, Gluu
+ */
+
+package org.gluu.oxauth.ws.rs;
+
+import static org.gluu.oxauth.model.register.RegisterRequestParam.APPLICATION_TYPE;
+import static org.gluu.oxauth.model.register.RegisterRequestParam.CLIENT_NAME;
+import static org.gluu.oxauth.model.register.RegisterRequestParam.ID_TOKEN_SIGNED_RESPONSE_ALG;
+import static org.gluu.oxauth.model.register.RegisterRequestParam.REDIRECT_URIS;
+import static org.gluu.oxauth.model.register.RegisterRequestParam.RESPONSE_TYPES;
+import static org.gluu.oxauth.model.register.RegisterRequestParam.SCOPE;
+import static org.testng.Assert.assertEquals;
+import static org.testng.Assert.assertNotEquals;
+import static org.testng.Assert.assertNotNull;
+
+import java.util.Arrays;
+import java.util.List;
+import java.util.UUID;
+
+import org.gluu.oxauth.BaseTest;
+import org.gluu.oxauth.client.AuthorizationRequest;
+import org.gluu.oxauth.client.AuthorizationResponse;
+import org.gluu.oxauth.client.RegisterClient;
+import org.gluu.oxauth.client.RegisterRequest;
+import org.gluu.oxauth.client.RegisterResponse;
+import org.gluu.oxauth.model.common.ResponseType;
+import org.gluu.oxauth.model.register.ApplicationType;
+import org.gluu.oxauth.model.util.StringUtils;
+import org.testng.annotations.Parameters;
+import org.testng.annotations.Test;
+
+/**
+ * Functional tests for checking Sessions in Authorize Web Services workflow (HTTP)
+ *
+ * @author Yuriy Movchan
+ * @author Javier Rojas Blum
+ * @version November 29, 2017
+ */
+public class AuthorizeSessionIdRestWebServiceHttpTest extends BaseTest {
+
+    @Parameters({"userId", "userSecret", "redirectUris", "redirectUri", "sectorIdentifierUri"})
+    @Test
+    public void requestSessionIdAuthorizationCode1(
+            final String userId, final String userSecret, final String redirectUris, final String redirectUri,
+            final String sectorIdentifierUri) throws Exception {
+        showTitle("requestSessionIdAuthorizationCode1");
+
+        requestSessionIdAuthorizationCode(userId, userSecret, redirectUris, redirectUri, authorizationEndpoint,
+                authorizationEndpoint, sectorIdentifierUri);
+    }
+
+    @Parameters({"userId", "userSecret", "redirectUris", "redirectUri", "sectorIdentifierUri"})
+    @Test
+    public void requestSessionIdAuthorizationCode2(
+            final String userId, final String userSecret, final String redirectUris, final String redirectUri,
+            final String sectorIdentifierUri) throws Exception {
+        showTitle("requestSessionIdAuthorizationCode2");
+
+        requestSessionIdAuthorizationCode(userId, userSecret, redirectUris, redirectUri, authorizationPageEndpoint,
+                authorizationEndpoint, sectorIdentifierUri);
+    }
+
+    private void requestSessionIdAuthorizationCode(
+            final String userId, final String userSecret, final String redirectUris, final String redirectUri,
+            final String authorizationEndpoint1, final String authorizationEndpoint2, final String sectorIdentifierUri) {
+        List<ResponseType> responseTypes = Arrays.asList(ResponseType.CODE);
+
+        // 1. Register client
+        RegisterRequest registerRequest = new RegisterRequest(ApplicationType.WEB, "oxAuth test app",
+                StringUtils.spaceSeparatedToList(redirectUris));
+        registerRequest.setResponseTypes(responseTypes);
+        registerRequest.setSectorIdentifierUri(sectorIdentifierUri);
+
+        RegisterClient registerClient = new RegisterClient(registrationEndpoint);
+        registerClient.setRequest(registerRequest);
+        RegisterResponse registerResponse = registerClient.exec();
+
+        showClient(registerClient);
+        assertEquals(registerResponse.getStatus(), 200, "Unexpected response code: " + registerResponse.getEntity());
+        assertNotNull(registerResponse.getClientId());
+        assertNotNull(registerResponse.getClientSecret());
+        assertNotNull(registerResponse.getRegistrationAccessToken());
+        assertNotNull(registerResponse.getClientIdIssuedAt());
+        assertNotNull(registerResponse.getClientSecretExpiresAt());
+
+        String clientId = registerResponse.getClientId();
+        String registrationAccessToken = registerResponse.getRegistrationAccessToken();
+        String registrationClientUri = registerResponse.getRegistrationClientUri();
+
+        // 2. Client read
+        RegisterRequest readClientRequest = new RegisterRequest(registrationAccessToken);
+
+        RegisterClient readClient = new RegisterClient(registrationClientUri);
+        readClient.setRequest(readClientRequest);
+        RegisterResponse readClientResponse = readClient.exec();
+
+        showClient(readClient);
+        assertEquals(readClientResponse.getStatus(), 200, "Unexpected response code: " + readClientResponse.getEntity());
+        assertNotNull(readClientResponse.getClientId());
+        assertNotNull(readClientResponse.getClientSecret());
+        assertNotNull(readClientResponse.getClientIdIssuedAt());
+        assertNotNull(readClientResponse.getClientSecretExpiresAt());
+
+        assertNotNull(readClientResponse.getClaims().get(RESPONSE_TYPES.toString()));
+        assertNotNull(readClientResponse.getClaims().get(REDIRECT_URIS.toString()));
+        assertNotNull(readClientResponse.getClaims().get(APPLICATION_TYPE.toString()));
+        assertNotNull(readClientResponse.getClaims().get(CLIENT_NAME.toString()));
+        assertNotNull(readClientResponse.getClaims().get(ID_TOKEN_SIGNED_RESPONSE_ALG.toString()));
+        assertNotNull(readClientResponse.getClaims().get(SCOPE.toString()));
+
+        // 3. Request authorization but not enter credentials.
+        // Store session_id parameter value
+        List<String> scopes1 = Arrays.asList("openid", "profile", "address", "email");
+        String state1 = UUID.randomUUID().toString();
+
+        AuthorizationRequest authorizationRequest1 = new AuthorizationRequest(responseTypes, clientId, scopes1, redirectUri, null);
+        authorizationRequest1.setState(state1);
+        String sessionId = waitForResourceOwnerAndGrantLoginForm(authorizationEndpoint1, authorizationRequest1, false);
+        assertNotNull(sessionId, "The session_id is null");
+
+        // 4. Request authorization and receive the authorization code.
+        // Application should returns new session_id
+        List<String> scopes2 = Arrays.asList("openid", "profile", "address", "email");
+        String state2 = UUID.randomUUID().toString();
+
+        AuthorizationRequest authorizationRequest2 = new AuthorizationRequest(responseTypes, clientId, scopes2, redirectUri, null);
+        authorizationRequest2.setState(state2);
+
+        AuthorizationResponse authorizationResponse = authenticateResourceOwnerAndGrantAccess(
+                authorizationEndpoint2, authorizationRequest2, userId, userSecret, false);
+
+        assertNotNull(authorizationResponse.getLocation(), "The location is null");
+        assertNotNull(authorizationResponse.getCode(), "The authorization code is null");
+        assertNotNull(authorizationResponse.getState(), "The state is null");
+        assertNotNull(authorizationResponse.getScope(), "The scope is null");
+        assertNotEquals(sessionId, authorizationResponse.getSessionId(), "The session_id is the same for 2 different authorization requests");
+    }
+
+}
\ No newline at end of file
diff --git a/oxAuth/Client/src/test/java/org/gluu/oxauth/ws/rs/ClientAuthenticationFilterHttpTest.java b/oxAuth/Client/src/test/java/org/gluu/oxauth/ws/rs/ClientAuthenticationFilterHttpTest.java
new file mode 100644
index 00000000..d2aca30b
--- /dev/null
+++ b/oxAuth/Client/src/test/java/org/gluu/oxauth/ws/rs/ClientAuthenticationFilterHttpTest.java
@@ -0,0 +1,189 @@
+/*
+ * oxAuth is available under the MIT License (2008). See http://opensource.org/licenses/MIT for full text.
+ *
+ * Copyright (c) 2014, Gluu
+ */
+
+package org.gluu.oxauth.ws.rs;
+
+import static org.testng.Assert.assertEquals;
+import static org.testng.Assert.assertNotNull;
+import static org.testng.Assert.assertTrue;
+
+import java.util.Arrays;
+import java.util.List;
+import java.util.UUID;
+
+import org.gluu.oxauth.BaseTest;
+import org.gluu.oxauth.client.AuthorizationRequest;
+import org.gluu.oxauth.client.AuthorizationResponse;
+import org.gluu.oxauth.client.AuthorizeClient;
+import org.gluu.oxauth.client.JwkClient;
+import org.gluu.oxauth.client.RegisterClient;
+import org.gluu.oxauth.client.RegisterRequest;
+import org.gluu.oxauth.client.RegisterResponse;
+import org.gluu.oxauth.client.TokenClient;
+import org.gluu.oxauth.client.TokenRequest;
+import org.gluu.oxauth.client.TokenResponse;
+import org.gluu.oxauth.model.common.AuthenticationMethod;
+import org.gluu.oxauth.model.common.GrantType;
+import org.gluu.oxauth.model.common.Prompt;
+import org.gluu.oxauth.model.common.ResponseType;
+import org.gluu.oxauth.model.crypto.signature.RSAPublicKey;
+import org.gluu.oxauth.model.crypto.signature.SignatureAlgorithm;
+import org.gluu.oxauth.model.jws.RSASigner;
+import org.gluu.oxauth.model.jwt.Jwt;
+import org.gluu.oxauth.model.jwt.JwtClaimName;
+import org.gluu.oxauth.model.jwt.JwtHeaderName;
+import org.gluu.oxauth.model.register.ApplicationType;
+import org.gluu.oxauth.model.util.StringUtils;
+import org.testng.annotations.Parameters;
+import org.testng.annotations.Test;
+
+/**
+ * @author Javier Rojas Blum
+ * @version September 3, 2018
+ */
+public class ClientAuthenticationFilterHttpTest extends BaseTest {
+
+    private String clientId;
+    private String customAttrValue1;
+
+    @Parameters({"redirectUris", "sectorIdentifierUri"})
+    @Test
+    public void requestClientRegistrationWithCustomAttributes(
+            final String redirectUris, final String sectorIdentifierUri) throws Exception {
+        showTitle("requestClientRegistrationWithCustomAttributes");
+
+        List<ResponseType> responseTypes = Arrays.asList(
+                ResponseType.CODE,
+                ResponseType.TOKEN,
+                ResponseType.ID_TOKEN);
+        List<GrantType> grantTypes = Arrays.asList(
+                GrantType.RESOURCE_OWNER_PASSWORD_CREDENTIALS
+        );
+
+        customAttrValue1 = UUID.randomUUID().toString();
+        RegisterRequest registerRequest = new RegisterRequest(ApplicationType.WEB, "oxAuth test app",
+                StringUtils.spaceSeparatedToList(redirectUris));
+        registerRequest.setResponseTypes(responseTypes);
+        registerRequest.setGrantTypes(grantTypes);
+        registerRequest.setSectorIdentifierUri(sectorIdentifierUri);
+        registerRequest.addCustomAttribute("oxAuthTrustedClient", "true");
+        registerRequest.addCustomAttribute("myCustomAttr1", customAttrValue1);
+
+        RegisterClient registerClient = new RegisterClient(registrationEndpoint);
+        registerClient.setRequest(registerRequest);
+        RegisterResponse response = registerClient.exec();
+
+        showClient(registerClient);
+        assertEquals(response.getStatus(), 200, "Unexpected response code: " + response.getEntity());
+        assertNotNull(response.getClientId());
+        assertNotNull(response.getClientSecret());
+        assertNotNull(response.getRegistrationAccessToken());
+        assertNotNull(response.getClientSecretExpiresAt());
+
+        clientId = response.getClientId();
+    }
+
+    @Parameters({"userId", "userSecret", "redirectUri"})
+    @Test(dependsOnMethods = "requestClientRegistrationWithCustomAttributes")
+    public void requestAccessTokenCustomClientAuth1(final String userId, final String userSecret,
+                                                    final String redirectUri) throws Exception {
+        showTitle("requestAccessTokenCustomClientAuth1");
+
+        // 1. Request authorization and receive the authorization code.
+        List<ResponseType> responseTypes = Arrays.asList(
+                ResponseType.CODE,
+                ResponseType.ID_TOKEN);
+        List<String> scopes = Arrays.asList("openid", "profile", "address", "email");
+
+        String state = UUID.randomUUID().toString();
+        String nonce = UUID.randomUUID().toString();
+
+        AuthorizationRequest authorizationRequest = new AuthorizationRequest(responseTypes, clientId, scopes, redirectUri, nonce);
+        authorizationRequest.setState(state);
+        authorizationRequest.setAuthUsername(userId);
+        authorizationRequest.setAuthPassword(userSecret);
+        authorizationRequest.getPrompts().add(Prompt.NONE);
+
+        AuthorizeClient authorizeClient = new AuthorizeClient(authorizationEndpoint);
+        authorizeClient.setRequest(authorizationRequest);
+        AuthorizationResponse authorizationResponse = authorizeClient.exec();
+
+        showClient(authorizeClient);
+        assertEquals(authorizationResponse.getStatus(), 302, "Unexpected response code: " + authorizationResponse.getStatus());
+        assertNotNull(authorizationResponse.getLocation(), "The location is null");
+        assertNotNull(authorizationResponse.getCode(), "The code is null");
+        assertNotNull(authorizationResponse.getIdToken(), "The idToken is null");
+        assertNotNull(authorizationResponse.getState(), "The state is null");
+
+        String authorizationCode = authorizationResponse.getCode();
+        String idToken = authorizationResponse.getIdToken();
+
+        // 2. Validate code and id_token
+        Jwt jwt = Jwt.parse(idToken);
+        assertNotNull(jwt.getHeader().getClaimAsString(JwtHeaderName.TYPE));
+        assertNotNull(jwt.getHeader().getClaimAsString(JwtHeaderName.ALGORITHM));
+        assertNotNull(jwt.getClaims().getClaimAsString(JwtClaimName.ISSUER));
+        assertNotNull(jwt.getClaims().getClaimAsString(JwtClaimName.AUDIENCE));
+        assertNotNull(jwt.getClaims().getClaimAsString(JwtClaimName.EXPIRATION_TIME));
+        assertNotNull(jwt.getClaims().getClaimAsString(JwtClaimName.ISSUED_AT));
+        assertNotNull(jwt.getClaims().getClaimAsString(JwtClaimName.SUBJECT_IDENTIFIER));
+        assertNotNull(jwt.getClaims().getClaimAsString(JwtClaimName.CODE_HASH));
+        assertNotNull(jwt.getClaims().getClaimAsString(JwtClaimName.AUTHENTICATION_TIME));
+
+        RSAPublicKey publicKey = JwkClient.getRSAPublicKey(
+                jwksUri,
+                jwt.getHeader().getClaimAsString(JwtHeaderName.KEY_ID));
+        RSASigner rsaSigner = new RSASigner(SignatureAlgorithm.RS256, publicKey);
+
+        assertTrue(rsaSigner.validate(jwt));
+        assertTrue(rsaSigner.validateAuthorizationCode(authorizationCode, jwt));
+
+        // 3. Request access token using the authorization code.
+        TokenRequest tokenRequest = new TokenRequest(GrantType.AUTHORIZATION_CODE);
+        tokenRequest.setCode(authorizationCode);
+        tokenRequest.setRedirectUri(redirectUri);
+        tokenRequest.setAuthenticationMethod(AuthenticationMethod.CLIENT_SECRET_POST);
+        tokenRequest.addCustomParameter("myCustomAttr1", customAttrValue1);
+
+        TokenClient tokenClient = new TokenClient(tokenEndpoint);
+        tokenClient.setRequest(tokenRequest);
+        TokenResponse tokenResponse = tokenClient.exec();
+
+        showClient(tokenClient);
+        assertEquals(tokenResponse.getStatus(), 200, "Unexpected response code: " + tokenResponse.getStatus());
+        assertNotNull(tokenResponse.getEntity(), "The entity is null");
+        assertNotNull(tokenResponse.getAccessToken(), "The access token is null");
+        assertNotNull(tokenResponse.getExpiresIn(), "The expires in value is null");
+        assertNotNull(tokenResponse.getTokenType(), "The token type is null");
+        assertNotNull(tokenResponse.getRefreshToken(), "The refresh token is null");
+    }
+
+    @Parameters({"userId", "userSecret"})
+    @Test(dependsOnMethods = "requestClientRegistrationWithCustomAttributes")
+    public void requestAccessTokenCustomClientAuth2(final String userId, final String userSecret) throws Exception {
+        showTitle("requestAccessTokenCustomClientAuth2");
+
+        String username = userId;
+        String password = userSecret;
+
+        TokenRequest tokenRequest = new TokenRequest(GrantType.RESOURCE_OWNER_PASSWORD_CREDENTIALS);
+        tokenRequest.setUsername(username);
+        tokenRequest.setPassword(password);
+        tokenRequest.setAuthenticationMethod(AuthenticationMethod.CLIENT_SECRET_POST);
+        tokenRequest.addCustomParameter("myCustomAttr1", customAttrValue1);
+
+        TokenClient tokenClient = new TokenClient(tokenEndpoint);
+        tokenClient.setRequest(tokenRequest);
+        TokenResponse tokenResponse = tokenClient.exec();
+
+        showClient(tokenClient);
+        assertEquals(tokenResponse.getStatus(), 200, "Unexpected response code: " + tokenResponse.getStatus());
+        assertNotNull(tokenResponse.getEntity(), "The entity is null");
+        assertNotNull(tokenResponse.getAccessToken(), "The access token is null");
+        assertNotNull(tokenResponse.getTokenType(), "The token type is null");
+        assertNotNull(tokenResponse.getRefreshToken(), "The refresh token is null");
+    }
+}
\ No newline at end of file
diff --git a/oxAuth/Client/src/test/java/org/gluu/oxauth/ws/rs/ClientCredentialsGrantHttpTest.java b/oxAuth/Client/src/test/java/org/gluu/oxauth/ws/rs/ClientCredentialsGrantHttpTest.java
new file mode 100644
index 00000000..8c243261
--- /dev/null
+++ b/oxAuth/Client/src/test/java/org/gluu/oxauth/ws/rs/ClientCredentialsGrantHttpTest.java
@@ -0,0 +1,1956 @@
+/*
+ * oxAuth is available under the MIT License (2008). See http://opensource.org/licenses/MIT for full text.
+ *
+ * Copyright (c) 2014, Gluu
+ */
+
+package org.gluu.oxauth.ws.rs;
+
+import static org.testng.Assert.assertEquals;
+import static org.testng.Assert.assertNotNull;
+import static org.testng.Assert.assertNull;
+
+import java.util.Arrays;
+import java.util.List;
+
+import org.gluu.oxauth.BaseTest;
+import org.gluu.oxauth.client.ClientInfoClient;
+import org.gluu.oxauth.client.ClientInfoResponse;
+import org.gluu.oxauth.client.RegisterClient;
+import org.gluu.oxauth.client.RegisterRequest;
+import org.gluu.oxauth.client.RegisterResponse;
+import org.gluu.oxauth.client.TokenClient;
+import org.gluu.oxauth.client.TokenRequest;
+import org.gluu.oxauth.client.TokenResponse;
+import org.gluu.oxauth.client.UserInfoClient;
+import org.gluu.oxauth.client.UserInfoResponse;
+import org.gluu.oxauth.model.common.AuthenticationMethod;
+import org.gluu.oxauth.model.common.GrantType;
+import org.gluu.oxauth.model.crypto.OxAuthCryptoProvider;
+import org.gluu.oxauth.model.crypto.signature.SignatureAlgorithm;
+import org.gluu.oxauth.model.register.ApplicationType;
+import org.gluu.oxauth.model.token.TokenErrorResponseType;
+import org.gluu.oxauth.model.userinfo.UserInfoErrorResponseType;
+import org.gluu.oxauth.model.util.StringUtils;
+import org.testng.annotations.Parameters;
+import org.testng.annotations.Test;
+
+/**
+ * @author Javier Rojas Blum
+ * @version February 8, 2019
+ */
+public class ClientCredentialsGrantHttpTest extends BaseTest {
+
+    @Parameters({"redirectUris", "sectorIdentifierUri"})
+    @Test
+    public void defaultAuthenticationMethod(final String redirectUris, final String sectorIdentifierUri) throws Exception {
+        showTitle("defaultAuthenticationMethod");
+
+        List<String> scopes = Arrays.asList("clientinfo");
+        List<GrantType> grantTypes = Arrays.asList(
+                GrantType.CLIENT_CREDENTIALS
+        );
+
+        // 1. Register client
+        RegisterRequest registerRequest = new RegisterRequest(ApplicationType.WEB, "oxAuth test app",
+                StringUtils.spaceSeparatedToList(redirectUris));
+        registerRequest.setScope(scopes);
+        registerRequest.setGrantTypes(grantTypes);
+        registerRequest.setSectorIdentifierUri(sectorIdentifierUri);
+
+        RegisterClient registerClient = new RegisterClient(registrationEndpoint);
+        registerClient.setRequest(registerRequest);
+        RegisterResponse registerResponse = registerClient.exec();
+
+        showClient(registerClient);
+        assertEquals(registerResponse.getStatus(), 200, "Unexpected response code: " + registerResponse.getEntity());
+        assertNotNull(registerResponse.getClientId());
+        assertNotNull(registerResponse.getClientSecret());
+        assertNotNull(registerResponse.getRegistrationAccessToken());
+        assertNotNull(registerResponse.getClientIdIssuedAt());
+        assertNotNull(registerResponse.getClientSecretExpiresAt());
+
+        String clientId = registerResponse.getClientId();
+        String clientSecret = registerResponse.getClientSecret();
+
+        // 2. Request Client Credentials Grant
+        TokenRequest tokenRequest = new TokenRequest(GrantType.CLIENT_CREDENTIALS);
+        tokenRequest.setScope("clientinfo");
+        tokenRequest.setAuthUsername(clientId);
+        tokenRequest.setAuthPassword(clientSecret);
+
+        TokenClient tokenClient = new TokenClient(tokenEndpoint);
+        tokenClient.setRequest(tokenRequest);
+        TokenResponse tokenResponse = tokenClient.exec();
+
+        showClient(tokenClient);
+        assertEquals(tokenResponse.getStatus(), 200, "Unexpected response code: " + tokenResponse.getStatus());
+        assertNotNull(tokenResponse.getEntity());
+        assertNotNull(tokenResponse.getAccessToken());
+        assertNotNull(tokenResponse.getTokenType());
+        assertNotNull(tokenResponse.getScope());
+        assertNull(tokenResponse.getRefreshToken());
+
+        String accessToken = tokenResponse.getAccessToken();
+
+        // 3. Request client info
+        ClientInfoClient clientInfoClient = new ClientInfoClient(clientInfoEndpoint);
+        ClientInfoResponse clientInfoResponse = clientInfoClient.execClientInfo(accessToken);
+
+        showClient(clientInfoClient);
+        assertEquals(clientInfoResponse.getStatus(), 200, "Unexpected response code: " + clientInfoResponse.getStatus());
+        assertNotNull(clientInfoResponse.getClaim("displayName"), "Unexpected result: displayName not found");
+        assertNotNull(clientInfoResponse.getClaim("inum"), "Unexpected result: inum not found");
+    }
+
+    @Parameters({"redirectUris", "sectorIdentifierUri"})
+    @Test
+    public void defaultAuthenticationMethodFail(final String redirectUris, final String sectorIdentifierUri) throws Exception {
+        showTitle("defaultAuthenticationMethodFail");
+
+        List<String> scopes = Arrays.asList("clientinfo");
+
+        // 1. Register client
+        RegisterRequest registerRequest = new RegisterRequest(ApplicationType.WEB, "oxAuth test app",
+                StringUtils.spaceSeparatedToList(redirectUris));
+        registerRequest.setScope(scopes);
+        registerRequest.setSectorIdentifierUri(sectorIdentifierUri);
+
+        RegisterClient registerClient = new RegisterClient(registrationEndpoint);
+        registerClient.setRequest(registerRequest);
+        RegisterResponse registerResponse = registerClient.exec();
+
+        showClient(registerClient);
+        assertEquals(registerResponse.getStatus(), 200, "Unexpected response code: " + registerResponse.getEntity());
+        assertNotNull(registerResponse.getClientId());
+        assertNotNull(registerResponse.getClientSecret());
+        assertNotNull(registerResponse.getRegistrationAccessToken());
+        assertNotNull(registerResponse.getClientIdIssuedAt());
+        assertNotNull(registerResponse.getClientSecretExpiresAt());
+
+        String clientId = registerResponse.getClientId();
+
+        // 2. Request Client Credentials Grant
+        TokenRequest tokenRequest = new TokenRequest(GrantType.CLIENT_CREDENTIALS);
+        tokenRequest.setScope("clientinfo");
+        tokenRequest.setAuthUsername(clientId);
+        tokenRequest.setAuthPassword("INVALID_CLIENT_SECRET");
+
+        TokenClient tokenClient = new TokenClient(tokenEndpoint);
+        tokenClient.setRequest(tokenRequest);
+        TokenResponse tokenResponse = tokenClient.exec();
+
+        showClient(tokenClient);
+        assertEquals(tokenResponse.getStatus(), 401, "Unexpected response code: " + tokenResponse.getStatus());
+        assertNotNull(tokenResponse.getErrorType());
+        assertEquals(tokenResponse.getErrorType(), TokenErrorResponseType.INVALID_CLIENT);
+        assertNotNull(tokenResponse.getErrorDescription());
+    }
+
+    @Parameters({"redirectUris", "sectorIdentifierUri"})
+    @Test
+    public void clientSecretBasicAuthenticationMethod(final String redirectUris, final String sectorIdentifierUri) throws Exception {
+        showTitle("clientSecretBasicAuthenticationMethod");
+
+        List<String> scopes = Arrays.asList("openid", "profile", "address", "email", "clientinfo");
+        List<GrantType> grantTypes = Arrays.asList(
+                GrantType.CLIENT_CREDENTIALS
+        );
+
+        // 1. Register client
+        RegisterRequest registerRequest = new RegisterRequest(ApplicationType.WEB, "oxAuth test app",
+                StringUtils.spaceSeparatedToList(redirectUris));
+        registerRequest.setScope(scopes);
+        registerRequest.setGrantTypes(grantTypes);
+        registerRequest.setTokenEndpointAuthMethod(AuthenticationMethod.CLIENT_SECRET_BASIC);
+        registerRequest.setSectorIdentifierUri(sectorIdentifierUri);
+
+        RegisterClient registerClient = new RegisterClient(registrationEndpoint);
+        registerClient.setRequest(registerRequest);
+        RegisterResponse registerResponse = registerClient.exec();
+
+        showClient(registerClient);
+        assertEquals(registerResponse.getStatus(), 200, "Unexpected response code: " + registerResponse.getEntity());
+        assertNotNull(registerResponse.getClientId());
+        assertNotNull(registerResponse.getClientSecret());
+        assertNotNull(registerResponse.getRegistrationAccessToken());
+        assertNotNull(registerResponse.getClientIdIssuedAt());
+        assertNotNull(registerResponse.getClientSecretExpiresAt());
+
+        String clientId = registerResponse.getClientId();
+        String clientSecret = registerResponse.getClientSecret();
+
+        // 2. Request Client Credentials Grant
+        TokenRequest tokenRequest = new TokenRequest(GrantType.CLIENT_CREDENTIALS);
+        tokenRequest.setScope("clientinfo");
+        tokenRequest.setAuthUsername(clientId);
+        tokenRequest.setAuthPassword(clientSecret);
+        tokenRequest.setAuthenticationMethod(AuthenticationMethod.CLIENT_SECRET_BASIC);
+
+        TokenClient tokenClient = new TokenClient(tokenEndpoint);
+        tokenClient.setRequest(tokenRequest);
+        TokenResponse tokenResponse = tokenClient.exec();
+
+        showClient(tokenClient);
+        assertEquals(tokenResponse.getStatus(), 200, "Unexpected response code: " + tokenResponse.getStatus());
+        assertNotNull(tokenResponse.getEntity());
+        assertNotNull(tokenResponse.getAccessToken());
+        assertNotNull(tokenResponse.getTokenType());
+        assertNotNull(tokenResponse.getScope());
+        assertNull(tokenResponse.getRefreshToken());
+
+        String accessToken = tokenResponse.getAccessToken();
+
+        // 3. Request client info
+        ClientInfoClient clientInfoClient = new ClientInfoClient(clientInfoEndpoint);
+        ClientInfoResponse clientInfoResponse = clientInfoClient.execClientInfo(accessToken);
+
+        showClient(clientInfoClient);
+        assertEquals(clientInfoResponse.getStatus(), 200, "Unexpected response code: " + clientInfoResponse.getStatus());
+        assertNotNull(clientInfoResponse.getClaim("displayName"), "Unexpected result: displayName not found");
+        assertNotNull(clientInfoResponse.getClaim("inum"), "Unexpected result: inum not found");
+
+        // 4. Request user info should fail
+        UserInfoClient userInfoClient = new UserInfoClient(userInfoEndpoint);
+        userInfoClient.setSharedKey(clientSecret);
+        UserInfoResponse userInfoResponse = userInfoClient.execUserInfo(accessToken);
+
+        showClient(userInfoClient);
+        assertEquals(userInfoResponse.getStatus(), 403);
+        assertEquals(userInfoResponse.getErrorType(), UserInfoErrorResponseType.INSUFFICIENT_SCOPE);
+    }
+
+    @Parameters({"redirectUris", "sectorIdentifierUri"})
+    @Test
+    public void clientSecretBasicAuthenticationMethodFail(final String redirectUris, final String sectorIdentifierUri) throws Exception {
+        showTitle("clientSecretBasicAuthenticationMethodFail");
+
+        List<String> scopes = Arrays.asList("clientinfo");
+
+        // 1. Register client
+        RegisterRequest registerRequest = new RegisterRequest(ApplicationType.WEB, "oxAuth test app",
+                StringUtils.spaceSeparatedToList(redirectUris));
+        registerRequest.setScope(scopes);
+        registerRequest.setTokenEndpointAuthMethod(AuthenticationMethod.CLIENT_SECRET_BASIC);
+        registerRequest.setSectorIdentifierUri(sectorIdentifierUri);
+
+        RegisterClient registerClient = new RegisterClient(registrationEndpoint);
+        registerClient.setRequest(registerRequest);
+        RegisterResponse registerResponse = registerClient.exec();
+
+        showClient(registerClient);
+        assertEquals(registerResponse.getStatus(), 200, "Unexpected response code: " + registerResponse.getEntity());
+        assertNotNull(registerResponse.getClientId());
+        assertNotNull(registerResponse.getClientSecret());
+        assertNotNull(registerResponse.getRegistrationAccessToken());
+        assertNotNull(registerResponse.getClientIdIssuedAt());
+        assertNotNull(registerResponse.getClientSecretExpiresAt());
+
+        String clientId = registerResponse.getClientId();
+
+        // 2. Request Client Credentials Grant
+        TokenRequest tokenRequest = new TokenRequest(GrantType.CLIENT_CREDENTIALS);
+        tokenRequest.setScope("clientinfo");
+        tokenRequest.setAuthUsername(clientId);
+        tokenRequest.setAuthPassword("INVALID_CLIENT_SECRET");
+        tokenRequest.setAuthenticationMethod(AuthenticationMethod.CLIENT_SECRET_BASIC);
+
+        TokenClient tokenClient = new TokenClient(tokenEndpoint);
+        tokenClient.setRequest(tokenRequest);
+        TokenResponse tokenResponse = tokenClient.exec();
+
+        showClient(tokenClient);
+        assertEquals(tokenResponse.getStatus(), 401, "Unexpected response code: " + tokenResponse.getStatus());
+        assertNotNull(tokenResponse.getErrorType());
+        assertEquals(tokenResponse.getErrorType(), TokenErrorResponseType.INVALID_CLIENT);
+        assertNotNull(tokenResponse.getErrorDescription());
+    }
+
+    @Parameters({"redirectUris", "sectorIdentifierUri"})
+    @Test
+    public void clientSecretPostAuthenticationMethod(final String redirectUris, final String sectorIdentifierUri) throws Exception {
+        showTitle("clientSecretPostAuthenticationMethod");
+
+        List<String> scopes = Arrays.asList("clientinfo");
+        List<GrantType> grantTypes = Arrays.asList(
+                GrantType.CLIENT_CREDENTIALS
+        );
+
+        // 1. Register client
+        RegisterRequest registerRequest = new RegisterRequest(ApplicationType.WEB, "oxAuth test app",
+                StringUtils.spaceSeparatedToList(redirectUris));
+        registerRequest.setScope(scopes);
+        registerRequest.setGrantTypes(grantTypes);
+        registerRequest.setTokenEndpointAuthMethod(AuthenticationMethod.CLIENT_SECRET_POST);
+        registerRequest.setSectorIdentifierUri(sectorIdentifierUri);
+
+        RegisterClient registerClient = new RegisterClient(registrationEndpoint);
+        registerClient.setRequest(registerRequest);
+        RegisterResponse registerResponse = registerClient.exec();
+
+        showClient(registerClient);
+        assertEquals(registerResponse.getStatus(), 200, "Unexpected response code: " + registerResponse.getEntity());
+        assertNotNull(registerResponse.getClientId());
+        assertNotNull(registerResponse.getClientSecret());
+        assertNotNull(registerResponse.getRegistrationAccessToken());
+        assertNotNull(registerResponse.getClientIdIssuedAt());
+        assertNotNull(registerResponse.getClientSecretExpiresAt());
+
+        String clientId = registerResponse.getClientId();
+        String clientSecret = registerResponse.getClientSecret();
+
+        // 2. Request Client Credentials Grant
+        TokenRequest tokenRequest = new TokenRequest(GrantType.CLIENT_CREDENTIALS);
+        tokenRequest.setScope("clientinfo");
+        tokenRequest.setAuthUsername(clientId);
+        tokenRequest.setAuthPassword(clientSecret);
+        tokenRequest.setAuthenticationMethod(AuthenticationMethod.CLIENT_SECRET_POST);
+
+        TokenClient tokenClient = new TokenClient(tokenEndpoint);
+        tokenClient.setRequest(tokenRequest);
+        TokenResponse tokenResponse = tokenClient.exec();
+
+        showClient(tokenClient);
+        assertEquals(tokenResponse.getStatus(), 200, "Unexpected response code: " + tokenResponse.getStatus());
+        assertNotNull(tokenResponse.getEntity());
+        assertNotNull(tokenResponse.getAccessToken());
+        assertNotNull(tokenResponse.getTokenType());
+        assertNotNull(tokenResponse.getScope());
+        assertNull(tokenResponse.getRefreshToken());
+
+        String accessToken = tokenResponse.getAccessToken();
+
+        // 3. Request client info
+        ClientInfoClient clientInfoClient = new ClientInfoClient(clientInfoEndpoint);
+        ClientInfoResponse clientInfoResponse = clientInfoClient.execClientInfo(accessToken);
+
+        showClient(clientInfoClient);
+        assertEquals(clientInfoResponse.getStatus(), 200, "Unexpected response code: " + clientInfoResponse.getStatus());
+        assertNotNull(clientInfoResponse.getClaim("displayName"), "Unexpected result: displayName not found");
+        assertNotNull(clientInfoResponse.getClaim("inum"), "Unexpected result: inum not found");
+    }
+
+    @Parameters({"redirectUris", "sectorIdentifierUri"})
+    @Test
+    public void clientSecretPostAuthenticationMethodFail1(final String redirectUris, final String sectorIdentifierUri) throws Exception {
+        showTitle("clientSecretPostAuthenticationMethodFail1");
+
+        List<String> scopes = Arrays.asList("clientinfo");
+
+        // 1. Register client
+        RegisterRequest registerRequest = new RegisterRequest(ApplicationType.WEB, "oxAuth test app",
+                StringUtils.spaceSeparatedToList(redirectUris));
+        registerRequest.setScope(scopes);
+        registerRequest.setTokenEndpointAuthMethod(AuthenticationMethod.CLIENT_SECRET_POST);
+        registerRequest.setSectorIdentifierUri(sectorIdentifierUri);
+
+        RegisterClient registerClient = new RegisterClient(registrationEndpoint);
+        registerClient.setRequest(registerRequest);
+        RegisterResponse registerResponse = registerClient.exec();
+
+        showClient(registerClient);
+        assertEquals(registerResponse.getStatus(), 200, "Unexpected response code: " + registerResponse.getEntity());
+        assertNotNull(registerResponse.getClientId());
+        assertNotNull(registerResponse.getClientSecret());
+        assertNotNull(registerResponse.getRegistrationAccessToken());
+        assertNotNull(registerResponse.getClientIdIssuedAt());
+        assertNotNull(registerResponse.getClientSecretExpiresAt());
+
+        String clientId = registerResponse.getClientId();
+
+        // 2. Request Client Credentials Grant
+        TokenRequest tokenRequest = new TokenRequest(GrantType.CLIENT_CREDENTIALS);
+        tokenRequest.setScope("clientinfo");
+        tokenRequest.setAuthUsername(clientId);
+        tokenRequest.setAuthPassword("INVALID_CLIENT_SECRET");
+        tokenRequest.setAuthenticationMethod(AuthenticationMethod.CLIENT_SECRET_POST);
+
+        TokenClient tokenClient = new TokenClient(tokenEndpoint);
+        tokenClient.setRequest(tokenRequest);
+        TokenResponse tokenResponse = tokenClient.exec();
+
+        showClient(tokenClient);
+        assertEquals(tokenResponse.getStatus(), 401, "Unexpected response code: " + tokenResponse.getStatus());
+        assertNotNull(tokenResponse.getErrorType());
+        assertEquals(tokenResponse.getErrorType(), TokenErrorResponseType.INVALID_CLIENT);
+        assertNotNull(tokenResponse.getErrorDescription());
+    }
+
+    @Parameters({"redirectUris", "sectorIdentifierUri"})
+    @Test
+    public void clientSecretPostAuthenticationMethodFail2(final String redirectUris, final String sectorIdentifierUri) throws Exception {
+        showTitle("clientSecretPostAuthenticationMethodFail2");
+
+        List<String> scopes = Arrays.asList("clientinfo");
+
+        // 1. Register client
+        RegisterRequest registerRequest = new RegisterRequest(ApplicationType.WEB, "oxAuth test app",
+                StringUtils.spaceSeparatedToList(redirectUris));
+        registerRequest.setScope(scopes);
+        registerRequest.setTokenEndpointAuthMethod(AuthenticationMethod.CLIENT_SECRET_POST);
+        registerRequest.setSectorIdentifierUri(sectorIdentifierUri);
+
+        RegisterClient registerClient = new RegisterClient(registrationEndpoint);
+        registerClient.setRequest(registerRequest);
+        RegisterResponse registerResponse = registerClient.exec();
+
+        showClient(registerClient);
+        assertEquals(registerResponse.getStatus(), 200, "Unexpected response code: " + registerResponse.getEntity());
+        assertNotNull(registerResponse.getClientId());
+        assertNotNull(registerResponse.getClientSecret());
+        assertNotNull(registerResponse.getRegistrationAccessToken());
+        assertNotNull(registerResponse.getClientIdIssuedAt());
+        assertNotNull(registerResponse.getClientSecretExpiresAt());
+
+        String clientId = registerResponse.getClientId();
+
+        // 2. Request Client Credentials Grant
+        TokenRequest tokenRequest = new TokenRequest(GrantType.CLIENT_CREDENTIALS);
+        tokenRequest.setScope("clientinfo");
+        tokenRequest.setAuthUsername(clientId);
+        tokenRequest.setAuthPassword(null);
+        tokenRequest.setAuthenticationMethod(AuthenticationMethod.CLIENT_SECRET_POST);
+
+        TokenClient tokenClient = new TokenClient(tokenEndpoint);
+        tokenClient.setRequest(tokenRequest);
+        TokenResponse tokenResponse = tokenClient.exec();
+
+        showClient(tokenClient);
+        assertEquals(tokenResponse.getStatus(), 401, "Unexpected response code: " + tokenResponse.getStatus());
+        assertNotNull(tokenResponse.getErrorType());
+        assertEquals(tokenResponse.getErrorType(), TokenErrorResponseType.INVALID_CLIENT);
+        assertNotNull(tokenResponse.getErrorDescription());
+    }
+
+    @Parameters({"redirectUris", "sectorIdentifierUri"})
+    @Test
+    public void clientSecretPostAuthenticationMethodFail3(final String redirectUris, final String sectorIdentifierUri) throws Exception {
+        showTitle("clientSecretPostAuthenticationMethodFail3");
+
+        List<String> scopes = Arrays.asList("clientinfo");
+
+        // 1. Register client
+        RegisterRequest registerRequest = new RegisterRequest(ApplicationType.WEB, "oxAuth test app",
+                StringUtils.spaceSeparatedToList(redirectUris));
+        registerRequest.setScope(scopes);
+        registerRequest.setTokenEndpointAuthMethod(AuthenticationMethod.CLIENT_SECRET_POST);
+        registerRequest.setSectorIdentifierUri(sectorIdentifierUri);
+
+        RegisterClient registerClient = new RegisterClient(registrationEndpoint);
+        registerClient.setRequest(registerRequest);
+        RegisterResponse registerResponse = registerClient.exec();
+
+        showClient(registerClient);
+        assertEquals(registerResponse.getStatus(), 200, "Unexpected response code: " + registerResponse.getEntity());
+        assertNotNull(registerResponse.getClientId());
+        assertNotNull(registerResponse.getClientSecret());
+        assertNotNull(registerResponse.getRegistrationAccessToken());
+        assertNotNull(registerResponse.getClientIdIssuedAt());
+        assertNotNull(registerResponse.getClientSecretExpiresAt());
+
+        String clientId = registerResponse.getClientId();
+
+        // 2. Request Client Credentials Grant
+        TokenRequest tokenRequest = new TokenRequest(GrantType.CLIENT_CREDENTIALS);
+        tokenRequest.setScope("clientinfo");
+        tokenRequest.setAuthUsername(null);
+        tokenRequest.setAuthPassword(null);
+        tokenRequest.setAuthenticationMethod(AuthenticationMethod.CLIENT_SECRET_POST);
+
+        TokenClient tokenClient = new TokenClient(tokenEndpoint);
+        tokenClient.setRequest(tokenRequest);
+        TokenResponse tokenResponse = tokenClient.exec();
+
+        showClient(tokenClient);
+        assertEquals(tokenResponse.getStatus(), 401, "Unexpected response code: " + tokenResponse.getStatus());
+        assertNotNull(tokenResponse.getErrorType());
+        assertEquals(tokenResponse.getErrorType(), TokenErrorResponseType.INVALID_CLIENT);
+        assertNotNull(tokenResponse.getErrorDescription());
+    }
+
+    @Parameters({"redirectUris", "sectorIdentifierUri"})
+    @Test
+    public void clientSecretJwtAuthenticationMethodHS256(final String redirectUris, final String sectorIdentifierUri) throws Exception {
+        showTitle("clientSecretJwtAuthenticationMethodHS256");
+
+        List<String> scopes = Arrays.asList("clientinfo");
+        List<GrantType> grantTypes = Arrays.asList(
+                GrantType.CLIENT_CREDENTIALS
+        );
+
+        // 1. Register client
+        RegisterRequest registerRequest = new RegisterRequest(ApplicationType.WEB, "oxAuth test app",
+                StringUtils.spaceSeparatedToList(redirectUris));
+        registerRequest.setScope(scopes);
+        registerRequest.setGrantTypes(grantTypes);
+        registerRequest.setTokenEndpointAuthMethod(AuthenticationMethod.CLIENT_SECRET_JWT);
+        registerRequest.setSectorIdentifierUri(sectorIdentifierUri);
+
+        RegisterClient registerClient = new RegisterClient(registrationEndpoint);
+        registerClient.setRequest(registerRequest);
+        RegisterResponse registerResponse = registerClient.exec();
+
+        showClient(registerClient);
+        assertEquals(registerResponse.getStatus(), 200, "Unexpected response code: " + registerResponse.getEntity());
+        assertNotNull(registerResponse.getClientId());
+        assertNotNull(registerResponse.getClientSecret());
+        assertNotNull(registerResponse.getRegistrationAccessToken());
+        assertNotNull(registerResponse.getClientIdIssuedAt());
+        assertNotNull(registerResponse.getClientSecretExpiresAt());
+
+        String clientId = registerResponse.getClientId();
+        String clientSecret = registerResponse.getClientSecret();
+
+        // 2. Request Client Credentials Grant
+        OxAuthCryptoProvider cryptoProvider = new OxAuthCryptoProvider();
+
+        TokenRequest tokenRequest = new TokenRequest(GrantType.CLIENT_CREDENTIALS);
+        tokenRequest.setScope("clientinfo");
+        tokenRequest.setAuthUsername(clientId);
+        tokenRequest.setAuthPassword(clientSecret);
+        tokenRequest.setAuthenticationMethod(AuthenticationMethod.CLIENT_SECRET_JWT);
+        tokenRequest.setAlgorithm(SignatureAlgorithm.HS256);
+        tokenRequest.setCryptoProvider(cryptoProvider);
+        tokenRequest.setAudience(tokenEndpoint);
+
+        TokenClient tokenClient = new TokenClient(tokenEndpoint);
+        tokenClient.setRequest(tokenRequest);
+        TokenResponse tokenResponse = tokenClient.exec();
+
+        showClient(tokenClient);
+        assertEquals(tokenResponse.getStatus(), 200, "Unexpected response code: " + tokenResponse.getStatus());
+        assertNotNull(tokenResponse.getEntity());
+        assertNotNull(tokenResponse.getAccessToken());
+        assertNotNull(tokenResponse.getTokenType());
+        assertNotNull(tokenResponse.getScope());
+        assertNull(tokenResponse.getRefreshToken());
+
+        String accessToken = tokenResponse.getAccessToken();
+
+        // 3. Request client info
+        ClientInfoClient clientInfoClient = new ClientInfoClient(clientInfoEndpoint);
+        ClientInfoResponse clientInfoResponse = clientInfoClient.execClientInfo(accessToken);
+
+        showClient(clientInfoClient);
+        assertEquals(clientInfoResponse.getStatus(), 200, "Unexpected response code: " + clientInfoResponse.getStatus());
+        assertNotNull(clientInfoResponse.getClaim("displayName"), "Unexpected result: displayName not found");
+        assertNotNull(clientInfoResponse.getClaim("inum"), "Unexpected result: inum not found");
+    }
+
+    @Parameters({"redirectUris", "sectorIdentifierUri"})
+    @Test
+    public void clientSecretJwtAuthenticationMethodHS256Fail(final String redirectUris, final String sectorIdentifierUri) throws Exception {
+        showTitle("clientSecretJwtAuthenticationMethodHS256Fail");
+
+        List<String> scopes = Arrays.asList("clientinfo");
+
+        // 1. Register client
+        RegisterRequest registerRequest = new RegisterRequest(ApplicationType.WEB, "oxAuth test app",
+                StringUtils.spaceSeparatedToList(redirectUris));
+        registerRequest.setScope(scopes);
+        registerRequest.setTokenEndpointAuthMethod(AuthenticationMethod.CLIENT_SECRET_JWT);
+        registerRequest.setSectorIdentifierUri(sectorIdentifierUri);
+
+        RegisterClient registerClient = new RegisterClient(registrationEndpoint);
+        registerClient.setRequest(registerRequest);
+        RegisterResponse registerResponse = registerClient.exec();
+
+        showClient(registerClient);
+        assertEquals(registerResponse.getStatus(), 200, "Unexpected response code: " + registerResponse.getEntity());
+        assertNotNull(registerResponse.getClientId());
+        assertNotNull(registerResponse.getClientSecret());
+        assertNotNull(registerResponse.getRegistrationAccessToken());
+        assertNotNull(registerResponse.getClientIdIssuedAt());
+        assertNotNull(registerResponse.getClientSecretExpiresAt());
+
+        String clientId = registerResponse.getClientId();
+
+        // 2. Request Client Credentials Grant
+        OxAuthCryptoProvider cryptoProvider = new OxAuthCryptoProvider();
+
+        TokenRequest tokenRequest = new TokenRequest(GrantType.CLIENT_CREDENTIALS);
+        tokenRequest.setScope("clientinfo");
+        tokenRequest.setAuthUsername(clientId);
+        tokenRequest.setAuthPassword("INVALID_CLIENT_SECRET");
+        tokenRequest.setAuthenticationMethod(AuthenticationMethod.CLIENT_SECRET_JWT);
+        tokenRequest.setAlgorithm(SignatureAlgorithm.HS256);
+        tokenRequest.setCryptoProvider(cryptoProvider);
+        tokenRequest.setAudience(tokenEndpoint);
+
+        TokenClient tokenClient = new TokenClient(tokenEndpoint);
+        tokenClient.setRequest(tokenRequest);
+        TokenResponse tokenResponse = tokenClient.exec();
+
+        showClient(tokenClient);
+        assertEquals(tokenResponse.getStatus(), 401, "Unexpected response code: " + tokenResponse.getStatus());
+        assertNotNull(tokenResponse.getErrorType());
+        assertEquals(tokenResponse.getErrorType(), TokenErrorResponseType.INVALID_CLIENT);
+        assertNotNull(tokenResponse.getErrorDescription());
+    }
+
+    @Parameters({"redirectUris", "sectorIdentifierUri"})
+    @Test
+    public void clientSecretJwtAuthenticationMethodHS384(final String redirectUris, final String sectorIdentifierUri) throws Exception {
+        showTitle("clientSecretJwtAuthenticationMethodHS384");
+
+        List<String> scopes = Arrays.asList("clientinfo");
+        List<GrantType> grantTypes = Arrays.asList(
+                GrantType.CLIENT_CREDENTIALS
+        );
+
+        // 1. Register client
+        RegisterRequest registerRequest = new RegisterRequest(ApplicationType.WEB, "oxAuth test app",
+                StringUtils.spaceSeparatedToList(redirectUris));
+        registerRequest.setScope(scopes);
+        registerRequest.setGrantTypes(grantTypes);
+        registerRequest.setTokenEndpointAuthMethod(AuthenticationMethod.CLIENT_SECRET_JWT);
+        registerRequest.setSectorIdentifierUri(sectorIdentifierUri);
+
+        RegisterClient registerClient = new RegisterClient(registrationEndpoint);
+        registerClient.setRequest(registerRequest);
+        RegisterResponse registerResponse = registerClient.exec();
+
+        showClient(registerClient);
+        assertEquals(registerResponse.getStatus(), 200, "Unexpected response code: " + registerResponse.getEntity());
+        assertNotNull(registerResponse.getClientId());
+        assertNotNull(registerResponse.getClientSecret());
+        assertNotNull(registerResponse.getRegistrationAccessToken());
+        assertNotNull(registerResponse.getClientIdIssuedAt());
+        assertNotNull(registerResponse.getClientSecretExpiresAt());
+
+        String clientId = registerResponse.getClientId();
+        String clientSecret = registerResponse.getClientSecret();
+
+        // 2. Request Client Credentials Grant
+        OxAuthCryptoProvider cryptoProvider = new OxAuthCryptoProvider();
+
+        TokenRequest tokenRequest = new TokenRequest(GrantType.CLIENT_CREDENTIALS);
+        tokenRequest.setScope("clientinfo");
+        tokenRequest.setAuthUsername(clientId);
+        tokenRequest.setAuthPassword(clientSecret);
+        tokenRequest.setAuthenticationMethod(AuthenticationMethod.CLIENT_SECRET_JWT);
+        tokenRequest.setAlgorithm(SignatureAlgorithm.HS384);
+        tokenRequest.setCryptoProvider(cryptoProvider);
+        tokenRequest.setAudience(tokenEndpoint);
+
+        TokenClient tokenClient = new TokenClient(tokenEndpoint);
+        tokenClient.setRequest(tokenRequest);
+        TokenResponse tokenResponse = tokenClient.exec();
+
+        showClient(tokenClient);
+        assertEquals(tokenResponse.getStatus(), 200, "Unexpected response code: " + tokenResponse.getStatus());
+        assertNotNull(tokenResponse.getEntity());
+        assertNotNull(tokenResponse.getAccessToken());
+        assertNotNull(tokenResponse.getTokenType());
+        assertNotNull(tokenResponse.getScope());
+        assertNull(tokenResponse.getRefreshToken());
+
+        String accessToken = tokenResponse.getAccessToken();
+
+        // 3. Request client info
+        ClientInfoClient clientInfoClient = new ClientInfoClient(clientInfoEndpoint);
+        ClientInfoResponse clientInfoResponse = clientInfoClient.execClientInfo(accessToken);
+
+        showClient(clientInfoClient);
+        assertEquals(clientInfoResponse.getStatus(), 200, "Unexpected response code: " + clientInfoResponse.getStatus());
+        assertNotNull(clientInfoResponse.getClaim("displayName"), "Unexpected result: displayName not found");
+        assertNotNull(clientInfoResponse.getClaim("inum"), "Unexpected result: inum not found");
+    }
+
+    @Parameters({"redirectUris", "sectorIdentifierUri"})
+    @Test
+    public void clientSecretJwtAuthenticationMethodHS384Fail(final String redirectUris, final String sectorIdentifierUri) throws Exception {
+        showTitle("clientSecretJwtAuthenticationMethodHS384Fail");
+
+        List<String> scopes = Arrays.asList("clientinfo");
+
+        // 1. Register client
+        RegisterRequest registerRequest = new RegisterRequest(ApplicationType.WEB, "oxAuth test app",
+                StringUtils.spaceSeparatedToList(redirectUris));
+        registerRequest.setScope(scopes);
+        registerRequest.setTokenEndpointAuthMethod(AuthenticationMethod.CLIENT_SECRET_JWT);
+        registerRequest.setSectorIdentifierUri(sectorIdentifierUri);
+
+        RegisterClient registerClient = new RegisterClient(registrationEndpoint);
+        registerClient.setRequest(registerRequest);
+        RegisterResponse registerResponse = registerClient.exec();
+
+        showClient(registerClient);
+        assertEquals(registerResponse.getStatus(), 200, "Unexpected response code: " + registerResponse.getEntity());
+        assertNotNull(registerResponse.getClientId());
+        assertNotNull(registerResponse.getClientSecret());
+        assertNotNull(registerResponse.getRegistrationAccessToken());
+        assertNotNull(registerResponse.getClientIdIssuedAt());
+        assertNotNull(registerResponse.getClientSecretExpiresAt());
+
+        String clientId = registerResponse.getClientId();
+
+        // 2. Request Client Credentials Grant
+        OxAuthCryptoProvider cryptoProvider = new OxAuthCryptoProvider();
+
+        TokenRequest tokenRequest = new TokenRequest(GrantType.CLIENT_CREDENTIALS);
+        tokenRequest.setScope("clientinfo");
+        tokenRequest.setAuthUsername(clientId);
+        tokenRequest.setAuthPassword("INVALID_CLIENT_SECRET");
+        tokenRequest.setAuthenticationMethod(AuthenticationMethod.CLIENT_SECRET_JWT);
+        tokenRequest.setAlgorithm(SignatureAlgorithm.HS384);
+        tokenRequest.setCryptoProvider(cryptoProvider);
+        tokenRequest.setAudience(tokenEndpoint);
+
+        TokenClient tokenClient = new TokenClient(tokenEndpoint);
+        tokenClient.setRequest(tokenRequest);
+        TokenResponse tokenResponse = tokenClient.exec();
+
+        showClient(tokenClient);
+        assertEquals(tokenResponse.getStatus(), 401, "Unexpected response code: " + tokenResponse.getStatus());
+        assertNotNull(tokenResponse.getErrorType());
+        assertEquals(tokenResponse.getErrorType(), TokenErrorResponseType.INVALID_CLIENT);
+        assertNotNull(tokenResponse.getErrorDescription());
+    }
+
+    @Parameters({"redirectUris", "sectorIdentifierUri"})
+    @Test
+    public void clientSecretJwtAuthenticationMethodHS512(final String redirectUris, final String sectorIdentifierUri) throws Exception {
+        showTitle("clientSecretJwtAuthenticationMethodHS512");
+
+        List<String> scopes = Arrays.asList("clientinfo");
+        List<GrantType> grantTypes = Arrays.asList(
+                GrantType.CLIENT_CREDENTIALS
+        );
+
+        // 1. Register client
+        RegisterRequest registerRequest = new RegisterRequest(ApplicationType.WEB, "oxAuth test app",
+                StringUtils.spaceSeparatedToList(redirectUris));
+        registerRequest.setScope(scopes);
+        registerRequest.setGrantTypes(grantTypes);
+        registerRequest.setTokenEndpointAuthMethod(AuthenticationMethod.CLIENT_SECRET_JWT);
+        registerRequest.setSectorIdentifierUri(sectorIdentifierUri);
+
+        RegisterClient registerClient = new RegisterClient(registrationEndpoint);
+        registerClient.setRequest(registerRequest);
+        RegisterResponse registerResponse = registerClient.exec();
+
+        showClient(registerClient);
+        assertEquals(registerResponse.getStatus(), 200, "Unexpected response code: " + registerResponse.getEntity());
+        assertNotNull(registerResponse.getClientId());
+        assertNotNull(registerResponse.getClientSecret());
+        assertNotNull(registerResponse.getRegistrationAccessToken());
+        assertNotNull(registerResponse.getClientIdIssuedAt());
+        assertNotNull(registerResponse.getClientSecretExpiresAt());
+
+        String clientId = registerResponse.getClientId();
+        String clientSecret = registerResponse.getClientSecret();
+
+        // 2. Request Client Credentials Grant
+        OxAuthCryptoProvider cryptoProvider = new OxAuthCryptoProvider();
+
+        TokenRequest tokenRequest = new TokenRequest(GrantType.CLIENT_CREDENTIALS);
+        tokenRequest.setScope("clientinfo");
+        tokenRequest.setAuthUsername(clientId);
+        tokenRequest.setAuthPassword(clientSecret);
+        tokenRequest.setAuthenticationMethod(AuthenticationMethod.CLIENT_SECRET_JWT);
+        tokenRequest.setAlgorithm(SignatureAlgorithm.HS512);
+        tokenRequest.setCryptoProvider(cryptoProvider);
+        tokenRequest.setAudience(tokenEndpoint);
+
+        TokenClient tokenClient = new TokenClient(tokenEndpoint);
+        tokenClient.setRequest(tokenRequest);
+        TokenResponse tokenResponse = tokenClient.exec();
+
+        showClient(tokenClient);
+        assertEquals(tokenResponse.getStatus(), 200, "Unexpected response code: " + tokenResponse.getStatus());
+        assertNotNull(tokenResponse.getEntity());
+        assertNotNull(tokenResponse.getAccessToken());
+        assertNotNull(tokenResponse.getTokenType());
+        assertNotNull(tokenResponse.getScope());
+        assertNull(tokenResponse.getRefreshToken());
+
+        String accessToken = tokenResponse.getAccessToken();
+
+        // 3. Request client info
+        ClientInfoClient clientInfoClient = new ClientInfoClient(clientInfoEndpoint);
+        ClientInfoResponse clientInfoResponse = clientInfoClient.execClientInfo(accessToken);
+
+        showClient(clientInfoClient);
+        assertEquals(clientInfoResponse.getStatus(), 200, "Unexpected response code: " + clientInfoResponse.getStatus());
+        assertNotNull(clientInfoResponse.getClaim("displayName"), "Unexpected result: displayName not found");
+        assertNotNull(clientInfoResponse.getClaim("inum"), "Unexpected result: inum not found");
+    }
+
+    @Parameters({"redirectUris", "sectorIdentifierUri"})
+    @Test
+    public void clientSecretJwtAuthenticationMethodHS512Fail(final String redirectUris, final String sectorIdentifierUri) throws Exception {
+        showTitle("clientSecretJwtAuthenticationMethodHS512Fail");
+
+        List<String> scopes = Arrays.asList("clientinfo");
+
+        // 1. Register client
+        RegisterRequest registerRequest = new RegisterRequest(ApplicationType.WEB, "oxAuth test app",
+                StringUtils.spaceSeparatedToList(redirectUris));
+        registerRequest.setScope(scopes);
+        registerRequest.setTokenEndpointAuthMethod(AuthenticationMethod.CLIENT_SECRET_JWT);
+        registerRequest.setSectorIdentifierUri(sectorIdentifierUri);
+
+        RegisterClient registerClient = new RegisterClient(registrationEndpoint);
+        registerClient.setRequest(registerRequest);
+        RegisterResponse registerResponse = registerClient.exec();
+
+        showClient(registerClient);
+        assertEquals(registerResponse.getStatus(), 200, "Unexpected response code: " + registerResponse.getEntity());
+        assertNotNull(registerResponse.getClientId());
+        assertNotNull(registerResponse.getClientSecret());
+        assertNotNull(registerResponse.getRegistrationAccessToken());
+        assertNotNull(registerResponse.getClientIdIssuedAt());
+        assertNotNull(registerResponse.getClientSecretExpiresAt());
+
+        String clientId = registerResponse.getClientId();
+        String clientSecret = registerResponse.getClientSecret();
+
+        // 2. Request Client Credentials Grant
+        OxAuthCryptoProvider cryptoProvider = new OxAuthCryptoProvider();
+
+        TokenRequest tokenRequest = new TokenRequest(GrantType.CLIENT_CREDENTIALS);
+        tokenRequest.setScope("clientinfo");
+        tokenRequest.setAuthUsername(clientId);
+        tokenRequest.setAuthPassword("INVALID_CLIENT_SECRET");
+        tokenRequest.setAuthenticationMethod(AuthenticationMethod.CLIENT_SECRET_JWT);
+        tokenRequest.setAlgorithm(SignatureAlgorithm.HS512);
+        tokenRequest.setCryptoProvider(cryptoProvider);
+        tokenRequest.setAudience(tokenEndpoint);
+
+        TokenClient tokenClient = new TokenClient(tokenEndpoint);
+        tokenClient.setRequest(tokenRequest);
+        TokenResponse tokenResponse = tokenClient.exec();
+
+        showClient(tokenClient);
+        assertEquals(tokenResponse.getStatus(), 401, "Unexpected response code: " + tokenResponse.getStatus());
+        assertNotNull(tokenResponse.getErrorType());
+        assertEquals(tokenResponse.getErrorType(), TokenErrorResponseType.INVALID_CLIENT);
+        assertNotNull(tokenResponse.getErrorDescription());
+    }
+
+    @Parameters({"redirectUris", "clientJwksUri", "RS256_keyId", "dnName", "keyStoreFile", "keyStoreSecret", "sectorIdentifierUri"})
+    @Test
+    public void privateKeyJwtAuthenticationMethodRS256(
+            final String redirectUris, final String clientJwksUri, final String keyId, final String dnName,
+            final String keyStoreFile, final String keyStoreSecret, final String sectorIdentifierUri) throws Exception {
+        showTitle("privateKeyJwtAuthenticationMethodRS256");
+
+        List<String> scopes = Arrays.asList("clientinfo");
+        List<GrantType> grantTypes = Arrays.asList(
+                GrantType.CLIENT_CREDENTIALS
+        );
+
+        // 1. Register client
+        RegisterRequest registerRequest = new RegisterRequest(ApplicationType.WEB, "oxAuth test app",
+                StringUtils.spaceSeparatedToList(redirectUris));
+        registerRequest.setScope(scopes);
+        registerRequest.setGrantTypes(grantTypes);
+        registerRequest.setTokenEndpointAuthMethod(AuthenticationMethod.PRIVATE_KEY_JWT);
+        registerRequest.setJwksUri(clientJwksUri);
+        registerRequest.setSectorIdentifierUri(sectorIdentifierUri);
+
+        RegisterClient registerClient = new RegisterClient(registrationEndpoint);
+        registerClient.setRequest(registerRequest);
+        RegisterResponse registerResponse = registerClient.exec();
+
+        showClient(registerClient);
+        assertEquals(registerResponse.getStatus(), 200, "Unexpected response code: " + registerResponse.getEntity());
+        assertNotNull(registerResponse.getClientId());
+        assertNotNull(registerResponse.getClientSecret());
+        assertNotNull(registerResponse.getRegistrationAccessToken());
+        assertNotNull(registerResponse.getClientIdIssuedAt());
+        assertNotNull(registerResponse.getClientSecretExpiresAt());
+
+        String clientId = registerResponse.getClientId();
+
+        // 2. Request Client Credentials Grant
+        OxAuthCryptoProvider cryptoProvider = new OxAuthCryptoProvider(keyStoreFile, keyStoreSecret, dnName);
+
+        TokenRequest tokenRequest = new TokenRequest(GrantType.CLIENT_CREDENTIALS);
+        tokenRequest.setScope("clientinfo");
+        tokenRequest.setAuthUsername(clientId);
+        tokenRequest.setAuthenticationMethod(AuthenticationMethod.PRIVATE_KEY_JWT);
+        tokenRequest.setAlgorithm(SignatureAlgorithm.RS256);
+        tokenRequest.setCryptoProvider(cryptoProvider);
+        tokenRequest.setKeyId(keyId);
+        tokenRequest.setAudience(tokenEndpoint);
+
+        TokenClient tokenClient = new TokenClient(tokenEndpoint);
+        tokenClient.setRequest(tokenRequest);
+        TokenResponse tokenResponse = tokenClient.exec();
+
+        showClient(tokenClient);
+        assertEquals(tokenResponse.getStatus(), 200, "Unexpected response code: " + tokenResponse.getStatus());
+        assertNotNull(tokenResponse.getEntity());
+        assertNotNull(tokenResponse.getAccessToken());
+        assertNotNull(tokenResponse.getTokenType());
+        assertNotNull(tokenResponse.getScope());
+        assertNull(tokenResponse.getRefreshToken());
+
+        String accessToken = tokenResponse.getAccessToken();
+
+        // 3. Request client info
+        ClientInfoClient clientInfoClient = new ClientInfoClient(clientInfoEndpoint);
+        ClientInfoResponse clientInfoResponse = clientInfoClient.execClientInfo(accessToken);
+
+        showClient(clientInfoClient);
+        assertEquals(clientInfoResponse.getStatus(), 200, "Unexpected response code: " + clientInfoResponse.getStatus());
+        assertNotNull(clientInfoResponse.getClaim("displayName"), "Unexpected result: displayName not found");
+        assertNotNull(clientInfoResponse.getClaim("inum"), "Unexpected result: inum not found");
+    }
+
+    @Parameters({"redirectUris", "clientJwksUri", "dnName", "keyStoreFile", "keyStoreSecret", "sectorIdentifierUri"})
+    @Test
+    public void privateKeyJwtAuthenticationMethodRS256Fail(
+            final String redirectUris, final String clientJwksUri, final String dnName, final String keyStoreFile,
+            final String keyStoreSecret, final String sectorIdentifierUri) throws Exception {
+        showTitle("privateKeyJwtAuthenticationMethodRS256Fail");
+
+        List<String> scopes = Arrays.asList("clientinfo");
+
+        // 1. Register client
+        RegisterRequest registerRequest = new RegisterRequest(ApplicationType.WEB, "oxAuth test app",
+                StringUtils.spaceSeparatedToList(redirectUris));
+        registerRequest.setScope(scopes);
+        registerRequest.setTokenEndpointAuthMethod(AuthenticationMethod.PRIVATE_KEY_JWT);
+        registerRequest.setJwksUri(clientJwksUri);
+        registerRequest.setSectorIdentifierUri(sectorIdentifierUri);
+
+        RegisterClient registerClient = new RegisterClient(registrationEndpoint);
+        registerClient.setRequest(registerRequest);
+        RegisterResponse registerResponse = registerClient.exec();
+
+        showClient(registerClient);
+        assertEquals(registerResponse.getStatus(), 200, "Unexpected response code: " + registerResponse.getEntity());
+        assertNotNull(registerResponse.getClientId());
+        assertNotNull(registerResponse.getClientSecret());
+        assertNotNull(registerResponse.getRegistrationAccessToken());
+        assertNotNull(registerResponse.getClientIdIssuedAt());
+        assertNotNull(registerResponse.getClientSecretExpiresAt());
+
+        String clientId = registerResponse.getClientId();
+
+        // 2. Request Client Credentials Grant
+        OxAuthCryptoProvider cryptoProvider = new OxAuthCryptoProvider(keyStoreFile, keyStoreSecret, dnName);
+
+        TokenRequest tokenRequest = new TokenRequest(GrantType.CLIENT_CREDENTIALS);
+        tokenRequest.setScope("clientinfo");
+        tokenRequest.setAuthUsername(clientId);
+        tokenRequest.setAuthenticationMethod(AuthenticationMethod.PRIVATE_KEY_JWT);
+        tokenRequest.setAlgorithm(SignatureAlgorithm.RS256);
+        tokenRequest.setCryptoProvider(cryptoProvider);
+        tokenRequest.setKeyId("RS256SIG_INVALID_KEYID");
+        tokenRequest.setAudience(tokenEndpoint);
+
+        TokenClient tokenClient = new TokenClient(tokenEndpoint);
+        tokenClient.setRequest(tokenRequest);
+        TokenResponse tokenResponse = tokenClient.exec();
+
+        showClient(tokenClient);
+        assertEquals(tokenResponse.getStatus(), 401, "Unexpected response code: " + tokenResponse.getStatus());
+        assertNotNull(tokenResponse.getErrorType());
+        assertEquals(tokenResponse.getErrorType(), TokenErrorResponseType.INVALID_CLIENT);
+        assertNotNull(tokenResponse.getErrorDescription());
+    }
+
+    @Parameters({"redirectUris", "clientJwksUri", "RS384_keyId", "dnName", "keyStoreFile", "keyStoreSecret", "sectorIdentifierUri"})
+    @Test
+    public void privateKeyJwtAuthenticationMethodRS384(
+            final String redirectUris, final String clientJwksUri, final String keyId, final String dnName,
+            final String keyStoreFile, final String keyStoreSecret, final String sectorIdentifierUri) throws Exception {
+        showTitle("privateKeyJwtAuthenticationMethodRS384");
+
+        List<String> scopes = Arrays.asList("clientinfo");
+        List<GrantType> grantTypes = Arrays.asList(
+                GrantType.CLIENT_CREDENTIALS
+        );
+
+        // 1. Register client
+        RegisterRequest registerRequest = new RegisterRequest(ApplicationType.WEB, "oxAuth test app",
+                StringUtils.spaceSeparatedToList(redirectUris));
+        registerRequest.setScope(scopes);
+        registerRequest.setGrantTypes(grantTypes);
+        registerRequest.setTokenEndpointAuthMethod(AuthenticationMethod.PRIVATE_KEY_JWT);
+        registerRequest.setJwksUri(clientJwksUri);
+        registerRequest.setSectorIdentifierUri(sectorIdentifierUri);
+
+        RegisterClient registerClient = new RegisterClient(registrationEndpoint);
+        registerClient.setRequest(registerRequest);
+        RegisterResponse registerResponse = registerClient.exec();
+
+        showClient(registerClient);
+        assertEquals(registerResponse.getStatus(), 200, "Unexpected response code: " + registerResponse.getEntity());
+        assertNotNull(registerResponse.getClientId());
+        assertNotNull(registerResponse.getClientSecret());
+        assertNotNull(registerResponse.getRegistrationAccessToken());
+        assertNotNull(registerResponse.getClientIdIssuedAt());
+        assertNotNull(registerResponse.getClientSecretExpiresAt());
+
+        String clientId = registerResponse.getClientId();
+
+        // 2. Request Client Credentials Grant
+        OxAuthCryptoProvider cryptoProvider = new OxAuthCryptoProvider(keyStoreFile, keyStoreSecret, dnName);
+
+        TokenRequest tokenRequest = new TokenRequest(GrantType.CLIENT_CREDENTIALS);
+        tokenRequest.setScope("clientinfo");
+        tokenRequest.setAuthUsername(clientId);
+        tokenRequest.setAuthenticationMethod(AuthenticationMethod.PRIVATE_KEY_JWT);
+        tokenRequest.setAlgorithm(SignatureAlgorithm.RS384);
+        tokenRequest.setCryptoProvider(cryptoProvider);
+        tokenRequest.setKeyId(keyId);
+        tokenRequest.setAudience(tokenEndpoint);
+
+        TokenClient tokenClient = new TokenClient(tokenEndpoint);
+        tokenClient.setRequest(tokenRequest);
+        TokenResponse tokenResponse = tokenClient.exec();
+
+        showClient(tokenClient);
+        assertEquals(tokenResponse.getStatus(), 200, "Unexpected response code: " + tokenResponse.getStatus());
+        assertNotNull(tokenResponse.getEntity());
+        assertNotNull(tokenResponse.getAccessToken());
+        assertNotNull(tokenResponse.getTokenType());
+        assertNotNull(tokenResponse.getScope());
+        assertNull(tokenResponse.getRefreshToken());
+
+        String accessToken = tokenResponse.getAccessToken();
+
+        // 3. Request client info
+        ClientInfoClient clientInfoClient = new ClientInfoClient(clientInfoEndpoint);
+        ClientInfoResponse clientInfoResponse = clientInfoClient.execClientInfo(accessToken);
+
+        showClient(clientInfoClient);
+        assertEquals(clientInfoResponse.getStatus(), 200, "Unexpected response code: " + clientInfoResponse.getStatus());
+        assertNotNull(clientInfoResponse.getClaim("displayName"), "Unexpected result: displayName not found");
+        assertNotNull(clientInfoResponse.getClaim("inum"), "Unexpected result: inum not found");
+    }
+
+    @Parameters({"redirectUris", "clientJwksUri", "dnName", "keyStoreFile", "keyStoreSecret", "sectorIdentifierUri"})
+    @Test
+    public void privateKeyJwtAuthenticationMethodRS384Fail(
+            final String redirectUris, final String clientJwksUri, final String dnName, final String keyStoreFile,
+            final String keyStoreSecret, final String sectorIdentifierUri) throws Exception {
+        showTitle("privateKeyJwtAuthenticationMethodRS384Fail");
+
+        List<String> scopes = Arrays.asList("clientinfo");
+
+        // 1. Register client
+        RegisterRequest registerRequest = new RegisterRequest(ApplicationType.WEB, "oxAuth test app",
+                StringUtils.spaceSeparatedToList(redirectUris));
+        registerRequest.setScope(scopes);
+        registerRequest.setTokenEndpointAuthMethod(AuthenticationMethod.PRIVATE_KEY_JWT);
+        registerRequest.setJwksUri(clientJwksUri);
+        registerRequest.setSectorIdentifierUri(sectorIdentifierUri);
+
+        RegisterClient registerClient = new RegisterClient(registrationEndpoint);
+        registerClient.setRequest(registerRequest);
+        RegisterResponse registerResponse = registerClient.exec();
+
+        showClient(registerClient);
+        assertEquals(registerResponse.getStatus(), 200, "Unexpected response code: " + registerResponse.getEntity());
+        assertNotNull(registerResponse.getClientId());
+        assertNotNull(registerResponse.getClientSecret());
+        assertNotNull(registerResponse.getRegistrationAccessToken());
+        assertNotNull(registerResponse.getClientIdIssuedAt());
+        assertNotNull(registerResponse.getClientSecretExpiresAt());
+
+        String clientId = registerResponse.getClientId();
+
+        // 2. Request Client Credentials Grant
+        OxAuthCryptoProvider cryptoProvider = new OxAuthCryptoProvider(keyStoreFile, keyStoreSecret, dnName);
+
+        TokenRequest tokenRequest = new TokenRequest(GrantType.CLIENT_CREDENTIALS);
+        tokenRequest.setScope("clientinfo");
+        tokenRequest.setAuthUsername(clientId);
+        tokenRequest.setAuthenticationMethod(AuthenticationMethod.PRIVATE_KEY_JWT);
+        tokenRequest.setAlgorithm(SignatureAlgorithm.RS384);
+        tokenRequest.setCryptoProvider(cryptoProvider);
+        tokenRequest.setKeyId("RS384SIG_INVALID_KEYID");
+        tokenRequest.setAudience(tokenEndpoint);
+
+        TokenClient tokenClient = new TokenClient(tokenEndpoint);
+        tokenClient.setRequest(tokenRequest);
+        TokenResponse tokenResponse = tokenClient.exec();
+
+        showClient(tokenClient);
+        assertEquals(tokenResponse.getStatus(), 401, "Unexpected response code: " + tokenResponse.getStatus());
+        assertNotNull(tokenResponse.getErrorType());
+        assertEquals(tokenResponse.getErrorType(), TokenErrorResponseType.INVALID_CLIENT);
+        assertNotNull(tokenResponse.getErrorDescription());
+    }
+
+    @Parameters({"redirectUris", "clientJwksUri", "RS512_keyId", "dnName", "keyStoreFile", "keyStoreSecret", "sectorIdentifierUri"})
+    @Test
+    public void privateKeyJwtAuthenticationMethodRS512(
+            final String redirectUris, final String clientJwksUri, final String keyId, final String dnName,
+            final String keyStoreFile, final String keyStoreSecret, final String sectorIdentifierUri) throws Exception {
+        showTitle("privateKeyJwtAuthenticationMethodRS512");
+
+        List<String> scopes = Arrays.asList("clientinfo");
+        List<GrantType> grantTypes = Arrays.asList(
+                GrantType.CLIENT_CREDENTIALS
+        );
+
+        // 1. Register client
+        RegisterRequest registerRequest = new RegisterRequest(ApplicationType.WEB, "oxAuth test app",
+                StringUtils.spaceSeparatedToList(redirectUris));
+        registerRequest.setScope(scopes);
+        registerRequest.setGrantTypes(grantTypes);
+        registerRequest.setTokenEndpointAuthMethod(AuthenticationMethod.PRIVATE_KEY_JWT);
+        registerRequest.setJwksUri(clientJwksUri);
+        registerRequest.setSectorIdentifierUri(sectorIdentifierUri);
+
+        RegisterClient registerClient = new RegisterClient(registrationEndpoint);
+        registerClient.setRequest(registerRequest);
+        RegisterResponse registerResponse = registerClient.exec();
+
+        showClient(registerClient);
+        assertEquals(registerResponse.getStatus(), 200, "Unexpected response code: " + registerResponse.getEntity());
+        assertNotNull(registerResponse.getClientId());
+        assertNotNull(registerResponse.getClientSecret());
+        assertNotNull(registerResponse.getRegistrationAccessToken());
+        assertNotNull(registerResponse.getClientIdIssuedAt());
+        assertNotNull(registerResponse.getClientSecretExpiresAt());
+
+        String clientId = registerResponse.getClientId();
+
+        // 2. Request Client Credentials Grant
+        OxAuthCryptoProvider cryptoProvider = new OxAuthCryptoProvider(keyStoreFile, keyStoreSecret, dnName);
+
+        TokenRequest tokenRequest = new TokenRequest(GrantType.CLIENT_CREDENTIALS);
+        tokenRequest.setScope("clientinfo");
+        tokenRequest.setAuthUsername(clientId);
+        tokenRequest.setAuthenticationMethod(AuthenticationMethod.PRIVATE_KEY_JWT);
+        tokenRequest.setAlgorithm(SignatureAlgorithm.RS512);
+        tokenRequest.setCryptoProvider(cryptoProvider);
+        tokenRequest.setKeyId(keyId);
+        tokenRequest.setAudience(tokenEndpoint);
+
+        TokenClient tokenClient = new TokenClient(tokenEndpoint);
+        tokenClient.setRequest(tokenRequest);
+        TokenResponse tokenResponse = tokenClient.exec();
+
+        showClient(tokenClient);
+        assertEquals(tokenResponse.getStatus(), 200, "Unexpected response code: " + tokenResponse.getStatus());
+        assertNotNull(tokenResponse.getEntity());
+        assertNotNull(tokenResponse.getAccessToken());
+        assertNotNull(tokenResponse.getTokenType());
+        assertNotNull(tokenResponse.getScope());
+        assertNull(tokenResponse.getRefreshToken());
+
+        String accessToken = tokenResponse.getAccessToken();
+
+        // 3. Request client info
+        ClientInfoClient clientInfoClient = new ClientInfoClient(clientInfoEndpoint);
+        ClientInfoResponse clientInfoResponse = clientInfoClient.execClientInfo(accessToken);
+
+        showClient(clientInfoClient);
+        assertEquals(clientInfoResponse.getStatus(), 200, "Unexpected response code: " + clientInfoResponse.getStatus());
+        assertNotNull(clientInfoResponse.getClaim("displayName"), "Unexpected result: displayName not found");
+        assertNotNull(clientInfoResponse.getClaim("inum"), "Unexpected result: inum not found");
+    }
+
+    @Parameters({"redirectUris", "clientJwksUri", "dnName", "keyStoreFile", "keyStoreSecret", "sectorIdentifierUri"})
+    @Test
+    public void privateKeyJwtAuthenticationMethodRS512Fail(
+            final String redirectUris, final String clientJwksUri, final String dnName, final String keyStoreFile,
+            final String keyStoreSecret, final String sectorIdentifierUri) throws Exception {
+        showTitle("privateKeyJwtAuthenticationMethodRS512Fail");
+
+        List<String> scopes = Arrays.asList("clientinfo");
+
+        // 1. Register client
+        RegisterRequest registerRequest = new RegisterRequest(ApplicationType.WEB, "oxAuth test app",
+                StringUtils.spaceSeparatedToList(redirectUris));
+        registerRequest.setScope(scopes);
+        registerRequest.setTokenEndpointAuthMethod(AuthenticationMethod.PRIVATE_KEY_JWT);
+        registerRequest.setJwksUri(clientJwksUri);
+        registerRequest.setSectorIdentifierUri(sectorIdentifierUri);
+
+        RegisterClient registerClient = new RegisterClient(registrationEndpoint);
+        registerClient.setRequest(registerRequest);
+        RegisterResponse registerResponse = registerClient.exec();
+
+        showClient(registerClient);
+        assertEquals(registerResponse.getStatus(), 200, "Unexpected response code: " + registerResponse.getEntity());
+        assertNotNull(registerResponse.getClientId());
+        assertNotNull(registerResponse.getClientSecret());
+        assertNotNull(registerResponse.getRegistrationAccessToken());
+        assertNotNull(registerResponse.getClientIdIssuedAt());
+        assertNotNull(registerResponse.getClientSecretExpiresAt());
+
+        String clientId = registerResponse.getClientId();
+
+        // 2. Request Client Credentials Grant
+        OxAuthCryptoProvider cryptoProvider = new OxAuthCryptoProvider(keyStoreFile, keyStoreSecret, dnName);
+
+        TokenRequest tokenRequest = new TokenRequest(GrantType.CLIENT_CREDENTIALS);
+        tokenRequest.setScope("clientinfo");
+        tokenRequest.setAuthUsername(clientId);
+        tokenRequest.setAuthenticationMethod(AuthenticationMethod.PRIVATE_KEY_JWT);
+        tokenRequest.setAlgorithm(SignatureAlgorithm.RS512);
+        tokenRequest.setCryptoProvider(cryptoProvider);
+        tokenRequest.setKeyId("RS512SIG_INVALID_KEYID");
+        tokenRequest.setAudience(tokenEndpoint);
+
+        TokenClient tokenClient = new TokenClient(tokenEndpoint);
+        tokenClient.setRequest(tokenRequest);
+        TokenResponse tokenResponse = tokenClient.exec();
+
+        showClient(tokenClient);
+        assertEquals(tokenResponse.getStatus(), 401, "Unexpected response code: " + tokenResponse.getStatus());
+        assertNotNull(tokenResponse.getErrorType());
+        assertEquals(tokenResponse.getErrorType(), TokenErrorResponseType.INVALID_CLIENT);
+        assertNotNull(tokenResponse.getErrorDescription());
+    }
+
+    @Parameters({"redirectUris", "clientJwksUri", "ES256_keyId", "dnName", "keyStoreFile", "keyStoreSecret", "sectorIdentifierUri"})
+    @Test
+    public void privateKeyJwtAuthenticationMethodES256(
+            final String redirectUris, final String clientJwksUri, final String keyId, final String dnName,
+            final String keyStoreFile, final String keyStoreSecret, final String sectorIdentifierUri) throws Exception {
+        showTitle("privateKeyJwtAuthenticationMethodES256");
+
+        List<String> scopes = Arrays.asList("clientinfo");
+        List<GrantType> grantTypes = Arrays.asList(
+                GrantType.CLIENT_CREDENTIALS
+        );
+
+        // 1. Register client
+        RegisterRequest registerRequest = new RegisterRequest(ApplicationType.WEB, "oxAuth test app",
+                StringUtils.spaceSeparatedToList(redirectUris));
+        registerRequest.setScope(scopes);
+        registerRequest.setGrantTypes(grantTypes);
+        registerRequest.setTokenEndpointAuthMethod(AuthenticationMethod.PRIVATE_KEY_JWT);
+        registerRequest.setJwksUri(clientJwksUri);
+        registerRequest.setSectorIdentifierUri(sectorIdentifierUri);
+
+        RegisterClient registerClient = new RegisterClient(registrationEndpoint);
+        registerClient.setRequest(registerRequest);
+        RegisterResponse registerResponse = registerClient.exec();
+
+        showClient(registerClient);
+        assertEquals(registerResponse.getStatus(), 200, "Unexpected response code: " + registerResponse.getEntity());
+        assertNotNull(registerResponse.getClientId());
+        assertNotNull(registerResponse.getClientSecret());
+        assertNotNull(registerResponse.getRegistrationAccessToken());
+        assertNotNull(registerResponse.getClientIdIssuedAt());
+        assertNotNull(registerResponse.getClientSecretExpiresAt());
+
+        String clientId = registerResponse.getClientId();
+
+        // 2. Request Client Credentials Grant
+        OxAuthCryptoProvider cryptoProvider = new OxAuthCryptoProvider(keyStoreFile, keyStoreSecret, dnName);
+
+        TokenRequest tokenRequest = new TokenRequest(GrantType.CLIENT_CREDENTIALS);
+        tokenRequest.setScope("clientinfo");
+        tokenRequest.setAuthUsername(clientId);
+        tokenRequest.setAuthenticationMethod(AuthenticationMethod.PRIVATE_KEY_JWT);
+        tokenRequest.setAlgorithm(SignatureAlgorithm.ES256);
+        tokenRequest.setCryptoProvider(cryptoProvider);
+        tokenRequest.setKeyId(keyId);
+        tokenRequest.setAudience(tokenEndpoint);
+
+        TokenClient tokenClient = new TokenClient(tokenEndpoint);
+        tokenClient.setRequest(tokenRequest);
+        TokenResponse tokenResponse = tokenClient.exec();
+
+        showClient(tokenClient);
+        assertEquals(tokenResponse.getStatus(), 200, "Unexpected response code: " + tokenResponse.getStatus());
+        assertNotNull(tokenResponse.getEntity());
+        assertNotNull(tokenResponse.getAccessToken());
+        assertNotNull(tokenResponse.getTokenType());
+        assertNotNull(tokenResponse.getScope());
+        assertNull(tokenResponse.getRefreshToken());
+
+        String accessToken = tokenResponse.getAccessToken();
+
+        // 3. Request client info
+        ClientInfoClient clientInfoClient = new ClientInfoClient(clientInfoEndpoint);
+        ClientInfoResponse clientInfoResponse = clientInfoClient.execClientInfo(accessToken);
+
+        showClient(clientInfoClient);
+        assertEquals(clientInfoResponse.getStatus(), 200, "Unexpected response code: " + clientInfoResponse.getStatus());
+        assertNotNull(clientInfoResponse.getClaim("displayName"), "Unexpected result: displayName not found");
+        assertNotNull(clientInfoResponse.getClaim("inum"), "Unexpected result: inum not found");
+    }
+
+    @Parameters({"redirectUris", "clientJwksUri", "dnName", "keyStoreFile", "keyStoreSecret", "sectorIdentifierUri"})
+    @Test
+    public void privateKeyJwtAuthenticationMethodES256Fail(
+            final String redirectUris, final String clientJwksUri, final String dnName, final String keyStoreFile,
+            final String keyStoreSecret, final String sectorIdentifierUri) throws Exception {
+        showTitle("privateKeyJwtAuthenticationMethodES256Fail");
+
+        List<String> scopes = Arrays.asList("clientinfo");
+
+        // 1. Register client
+        RegisterRequest registerRequest = new RegisterRequest(ApplicationType.WEB, "oxAuth test app",
+                StringUtils.spaceSeparatedToList(redirectUris));
+        registerRequest.setScope(scopes);
+        registerRequest.setTokenEndpointAuthMethod(AuthenticationMethod.PRIVATE_KEY_JWT);
+        registerRequest.setJwksUri(clientJwksUri);
+        registerRequest.setSectorIdentifierUri(sectorIdentifierUri);
+
+        RegisterClient registerClient = new RegisterClient(registrationEndpoint);
+        registerClient.setRequest(registerRequest);
+        RegisterResponse registerResponse = registerClient.exec();
+
+        showClient(registerClient);
+        assertEquals(registerResponse.getStatus(), 200, "Unexpected response code: " + registerResponse.getEntity());
+        assertNotNull(registerResponse.getClientId());
+        assertNotNull(registerResponse.getClientSecret());
+        assertNotNull(registerResponse.getRegistrationAccessToken());
+        assertNotNull(registerResponse.getClientIdIssuedAt());
+        assertNotNull(registerResponse.getClientSecretExpiresAt());
+
+        String clientId = registerResponse.getClientId();
+
+        // 2. Request Client Credentials Grant
+        OxAuthCryptoProvider cryptoProvider = new OxAuthCryptoProvider(keyStoreFile, keyStoreSecret, dnName);
+
+        TokenRequest tokenRequest = new TokenRequest(GrantType.CLIENT_CREDENTIALS);
+        tokenRequest.setScope("clientinfo");
+        tokenRequest.setAuthUsername(clientId);
+        tokenRequest.setAuthenticationMethod(AuthenticationMethod.PRIVATE_KEY_JWT);
+        tokenRequest.setAlgorithm(SignatureAlgorithm.ES256);
+        tokenRequest.setCryptoProvider(cryptoProvider);
+        tokenRequest.setKeyId("ES256SIG_INVALID_KEYID");
+        tokenRequest.setAudience(tokenEndpoint);
+
+        TokenClient tokenClient = new TokenClient(tokenEndpoint);
+        tokenClient.setRequest(tokenRequest);
+        TokenResponse tokenResponse = tokenClient.exec();
+
+        showClient(tokenClient);
+        assertEquals(tokenResponse.getStatus(), 401, "Unexpected response code: " + tokenResponse.getStatus());
+        assertNotNull(tokenResponse.getErrorType());
+        assertEquals(tokenResponse.getErrorType(), TokenErrorResponseType.INVALID_CLIENT);
+        assertNotNull(tokenResponse.getErrorDescription());
+    }
+
+    @Parameters({"redirectUris", "clientJwksUri", "ES384_keyId", "dnName", "keyStoreFile", "keyStoreSecret", "sectorIdentifierUri"})
+    @Test
+    public void privateKeyJwtAuthenticationMethodES384(
+            final String redirectUris, final String clientJwksUri, final String keyId, final String dnName,
+            final String keyStoreFile, final String keyStoreSecret, final String sectorIdentifierUri) throws Exception {
+        showTitle("privateKeyJwtAuthenticationMethodES384");
+
+        List<String> scopes = Arrays.asList("clientinfo");
+        List<GrantType> grantTypes = Arrays.asList(
+                GrantType.CLIENT_CREDENTIALS
+        );
+
+        // 1. Register client
+        RegisterRequest registerRequest = new RegisterRequest(ApplicationType.WEB, "oxAuth test app",
+                StringUtils.spaceSeparatedToList(redirectUris));
+        registerRequest.setScope(scopes);
+        registerRequest.setGrantTypes(grantTypes);
+        registerRequest.setTokenEndpointAuthMethod(AuthenticationMethod.PRIVATE_KEY_JWT);
+        registerRequest.setJwksUri(clientJwksUri);
+        registerRequest.setSectorIdentifierUri(sectorIdentifierUri);
+
+        RegisterClient registerClient = new RegisterClient(registrationEndpoint);
+        registerClient.setRequest(registerRequest);
+        RegisterResponse registerResponse = registerClient.exec();
+
+        showClient(registerClient);
+        assertEquals(registerResponse.getStatus(), 200, "Unexpected response code: " + registerResponse.getEntity());
+        assertNotNull(registerResponse.getClientId());
+        assertNotNull(registerResponse.getClientSecret());
+        assertNotNull(registerResponse.getRegistrationAccessToken());
+        assertNotNull(registerResponse.getClientIdIssuedAt());
+        assertNotNull(registerResponse.getClientSecretExpiresAt());
+
+        String clientId = registerResponse.getClientId();
+
+        // 2. Request Client Credentials Grant
+        OxAuthCryptoProvider cryptoProvider = new OxAuthCryptoProvider(keyStoreFile, keyStoreSecret, dnName);
+
+        TokenRequest tokenRequest = new TokenRequest(GrantType.CLIENT_CREDENTIALS);
+        tokenRequest.setScope("clientinfo");
+        tokenRequest.setAuthUsername(clientId);
+        tokenRequest.setAuthenticationMethod(AuthenticationMethod.PRIVATE_KEY_JWT);
+        tokenRequest.setAlgorithm(SignatureAlgorithm.ES384);
+        tokenRequest.setCryptoProvider(cryptoProvider);
+        tokenRequest.setKeyId(keyId);
+        tokenRequest.setAudience(tokenEndpoint);
+
+        TokenClient tokenClient = new TokenClient(tokenEndpoint);
+        tokenClient.setRequest(tokenRequest);
+        TokenResponse tokenResponse = tokenClient.exec();
+
+        showClient(tokenClient);
+        assertEquals(tokenResponse.getStatus(), 200, "Unexpected response code: " + tokenResponse.getStatus());
+        assertNotNull(tokenResponse.getEntity());
+        assertNotNull(tokenResponse.getAccessToken());
+        assertNotNull(tokenResponse.getTokenType());
+        assertNotNull(tokenResponse.getScope());
+        assertNull(tokenResponse.getRefreshToken());
+
+        String accessToken = tokenResponse.getAccessToken();
+
+        // 3. Request client info
+        ClientInfoClient clientInfoClient = new ClientInfoClient(clientInfoEndpoint);
+        ClientInfoResponse clientInfoResponse = clientInfoClient.execClientInfo(accessToken);
+
+        showClient(clientInfoClient);
+        assertEquals(clientInfoResponse.getStatus(), 200, "Unexpected response code: " + clientInfoResponse.getStatus());
+        assertNotNull(clientInfoResponse.getClaim("displayName"), "Unexpected result: displayName not found");
+        assertNotNull(clientInfoResponse.getClaim("inum"), "Unexpected result: inum not found");
+    }
+
+    @Parameters({"redirectUris", "clientJwksUri", "dnName", "keyStoreFile", "keyStoreSecret", "sectorIdentifierUri"})
+    @Test
+    public void privateKeyJwtAuthenticationMethodES384Fail(
+            final String redirectUris, final String clientJwksUri, final String dnName, final String keyStoreFile,
+            final String keyStoreSecret, final String sectorIdentifierUri) throws Exception {
+        showTitle("privateKeyJwtAuthenticationMethodES384Fail");
+
+        List<String> scopes = Arrays.asList("clientinfo");
+
+        // 1. Register client
+        RegisterRequest registerRequest = new RegisterRequest(ApplicationType.WEB, "oxAuth test app",
+                StringUtils.spaceSeparatedToList(redirectUris));
+        registerRequest.setScope(scopes);
+        registerRequest.setTokenEndpointAuthMethod(AuthenticationMethod.PRIVATE_KEY_JWT);
+        registerRequest.setJwksUri(clientJwksUri);
+        registerRequest.setSectorIdentifierUri(sectorIdentifierUri);
+
+        RegisterClient registerClient = new RegisterClient(registrationEndpoint);
+        registerClient.setRequest(registerRequest);
+        RegisterResponse registerResponse = registerClient.exec();
+
+        showClient(registerClient);
+        assertEquals(registerResponse.getStatus(), 200, "Unexpected response code: " + registerResponse.getEntity());
+        assertNotNull(registerResponse.getClientId());
+        assertNotNull(registerResponse.getClientSecret());
+        assertNotNull(registerResponse.getRegistrationAccessToken());
+        assertNotNull(registerResponse.getClientIdIssuedAt());
+        assertNotNull(registerResponse.getClientSecretExpiresAt());
+
+        String clientId = registerResponse.getClientId();
+
+        // 2. Request Client Credentials Grant
+        OxAuthCryptoProvider cryptoProvider = new OxAuthCryptoProvider(keyStoreFile, keyStoreSecret, dnName);
+
+        TokenRequest tokenRequest = new TokenRequest(GrantType.CLIENT_CREDENTIALS);
+        tokenRequest.setScope("clientinfo");
+        tokenRequest.setAuthUsername(clientId);
+        tokenRequest.setAuthenticationMethod(AuthenticationMethod.PRIVATE_KEY_JWT);
+        tokenRequest.setAlgorithm(SignatureAlgorithm.ES384);
+        tokenRequest.setCryptoProvider(cryptoProvider);
+        tokenRequest.setKeyId("ES384SIG_INVALID_KEYID");
+        tokenRequest.setAudience(tokenEndpoint);
+
+        TokenClient tokenClient = new TokenClient(tokenEndpoint);
+        tokenClient.setRequest(tokenRequest);
+        TokenResponse tokenResponse = tokenClient.exec();
+
+        showClient(tokenClient);
+        assertEquals(tokenResponse.getStatus(), 401, "Unexpected response code: " + tokenResponse.getStatus());
+        assertNotNull(tokenResponse.getErrorType());
+        assertEquals(tokenResponse.getErrorType(), TokenErrorResponseType.INVALID_CLIENT);
+        assertNotNull(tokenResponse.getErrorDescription());
+    }
+
+    @Parameters({"redirectUris", "clientJwksUri", "ES512_keyId", "dnName", "keyStoreFile", "keyStoreSecret", "sectorIdentifierUri"})
+    @Test
+    public void privateKeyJwtAuthenticationMethodES512(
+            final String redirectUris, final String clientJwksUri, final String keyId, final String dnName,
+            final String keyStoreFile, final String keyStoreSecret, final String sectorIdentifierUri) throws Exception {
+        showTitle("privateKeyJwtAuthenticationMethodES512");
+
+        List<String> scopes = Arrays.asList("clientinfo");
+        List<GrantType> grantTypes = Arrays.asList(
+                GrantType.CLIENT_CREDENTIALS
+        );
+
+        // 1. Register client
+        RegisterRequest registerRequest = new RegisterRequest(ApplicationType.WEB, "oxAuth test app",
+                StringUtils.spaceSeparatedToList(redirectUris));
+        registerRequest.setScope(scopes);
+        registerRequest.setGrantTypes(grantTypes);
+        registerRequest.setTokenEndpointAuthMethod(AuthenticationMethod.PRIVATE_KEY_JWT);
+        registerRequest.setJwksUri(clientJwksUri);
+        registerRequest.setSectorIdentifierUri(sectorIdentifierUri);
+
+        RegisterClient registerClient = new RegisterClient(registrationEndpoint);
+        registerClient.setRequest(registerRequest);
+        RegisterResponse registerResponse = registerClient.exec();
+
+        showClient(registerClient);
+        assertEquals(registerResponse.getStatus(), 200, "Unexpected response code: " + registerResponse.getEntity());
+        assertNotNull(registerResponse.getClientId());
+        assertNotNull(registerResponse.getClientSecret());
+        assertNotNull(registerResponse.getRegistrationAccessToken());
+        assertNotNull(registerResponse.getClientIdIssuedAt());
+        assertNotNull(registerResponse.getClientSecretExpiresAt());
+
+        String clientId = registerResponse.getClientId();
+
+        // 2. Request Client Credentials Grant
+        OxAuthCryptoProvider cryptoProvider = new OxAuthCryptoProvider(keyStoreFile, keyStoreSecret, dnName);
+
+        TokenRequest tokenRequest = new TokenRequest(GrantType.CLIENT_CREDENTIALS);
+        tokenRequest.setScope("clientinfo");
+        tokenRequest.setAuthUsername(clientId);
+        tokenRequest.setAuthenticationMethod(AuthenticationMethod.PRIVATE_KEY_JWT);
+        tokenRequest.setAlgorithm(SignatureAlgorithm.ES512);
+        tokenRequest.setCryptoProvider(cryptoProvider);
+        tokenRequest.setKeyId(keyId);
+        tokenRequest.setAudience(tokenEndpoint);
+
+        TokenClient tokenClient = new TokenClient(tokenEndpoint);
+        tokenClient.setRequest(tokenRequest);
+        TokenResponse tokenResponse = tokenClient.exec();
+
+        showClient(tokenClient);
+        assertEquals(tokenResponse.getStatus(), 200, "Unexpected response code: " + tokenResponse.getStatus());
+        assertNotNull(tokenResponse.getEntity());
+        assertNotNull(tokenResponse.getAccessToken());
+        assertNotNull(tokenResponse.getTokenType());
+        assertNotNull(tokenResponse.getScope());
+        assertNull(tokenResponse.getRefreshToken());
+
+        String accessToken = tokenResponse.getAccessToken();
+
+        // 3. Request client info
+        ClientInfoClient clientInfoClient = new ClientInfoClient(clientInfoEndpoint);
+        ClientInfoResponse clientInfoResponse = clientInfoClient.execClientInfo(accessToken);
+
+        showClient(clientInfoClient);
+        assertEquals(clientInfoResponse.getStatus(), 200, "Unexpected response code: " + clientInfoResponse.getStatus());
+        assertNotNull(clientInfoResponse.getClaim("displayName"), "Unexpected result: displayName not found");
+        assertNotNull(clientInfoResponse.getClaim("inum"), "Unexpected result: inum not found");
+    }
+
+    @Parameters({"redirectUris", "clientJwksUri", "dnName", "keyStoreFile", "keyStoreSecret", "sectorIdentifierUri"})
+    @Test
+    public void privateKeyJwtAuthenticationMethodES512Fail(
+            final String redirectUris, final String clientJwksUri, final String dnName, final String keyStoreFile,
+            final String keyStoreSecret, final String sectorIdentifierUri) throws Exception {
+        showTitle("privateKeyJwtAuthenticationMethodES512Fail");
+
+        List<String> scopes = Arrays.asList("clientinfo");
+
+        // 1. Register client
+        RegisterRequest registerRequest = new RegisterRequest(ApplicationType.WEB, "oxAuth test app",
+                StringUtils.spaceSeparatedToList(redirectUris));
+        registerRequest.setScope(scopes);
+        registerRequest.setTokenEndpointAuthMethod(AuthenticationMethod.PRIVATE_KEY_JWT);
+        registerRequest.setJwksUri(clientJwksUri);
+        registerRequest.setSectorIdentifierUri(sectorIdentifierUri);
+
+        RegisterClient registerClient = new RegisterClient(registrationEndpoint);
+        registerClient.setRequest(registerRequest);
+        RegisterResponse registerResponse = registerClient.exec();
+
+        showClient(registerClient);
+        assertEquals(registerResponse.getStatus(), 200, "Unexpected response code: " + registerResponse.getEntity());
+        assertNotNull(registerResponse.getClientId());
+        assertNotNull(registerResponse.getClientSecret());
+        assertNotNull(registerResponse.getRegistrationAccessToken());
+        assertNotNull(registerResponse.getClientIdIssuedAt());
+        assertNotNull(registerResponse.getClientSecretExpiresAt());
+
+        String clientId = registerResponse.getClientId();
+
+        // 2. Request Client Credentials Grant
+        OxAuthCryptoProvider cryptoProvider = new OxAuthCryptoProvider(keyStoreFile, keyStoreSecret, dnName);
+
+        TokenRequest tokenRequest = new TokenRequest(GrantType.CLIENT_CREDENTIALS);
+        tokenRequest.setScope("clientinfo");
+        tokenRequest.setAuthUsername(clientId);
+        tokenRequest.setAuthenticationMethod(AuthenticationMethod.PRIVATE_KEY_JWT);
+        tokenRequest.setAlgorithm(SignatureAlgorithm.ES512);
+        tokenRequest.setCryptoProvider(cryptoProvider);
+        tokenRequest.setKeyId("ES512SIG_INVALID_KEYID");
+        tokenRequest.setAudience(tokenEndpoint);
+
+        TokenClient tokenClient = new TokenClient(tokenEndpoint);
+        tokenClient.setRequest(tokenRequest);
+        TokenResponse tokenResponse = tokenClient.exec();
+
+        showClient(tokenClient);
+        assertEquals(tokenResponse.getStatus(), 401, "Unexpected response code: " + tokenResponse.getStatus());
+        assertNotNull(tokenResponse.getErrorType());
+        assertEquals(tokenResponse.getErrorType(), TokenErrorResponseType.INVALID_CLIENT);
+        assertNotNull(tokenResponse.getErrorDescription());
+    }
+
+    @Parameters({"redirectUris", "clientJwksUri", "PS256_keyId", "dnName", "keyStoreFile", "keyStoreSecret", "sectorIdentifierUri"})
+    @Test
+    public void privateKeyJwtAuthenticationMethodPS256(
+            final String redirectUris, final String clientJwksUri, final String keyId, final String dnName,
+            final String keyStoreFile, final String keyStoreSecret, final String sectorIdentifierUri) throws Exception {
+        showTitle("privateKeyJwtAuthenticationMethodPS256");
+
+        List<String> scopes = Arrays.asList("clientinfo");
+        List<GrantType> grantTypes = Arrays.asList(
+                GrantType.CLIENT_CREDENTIALS
+        );
+
+        // 1. Register client
+        RegisterRequest registerRequest = new RegisterRequest(ApplicationType.WEB, "oxAuth test app",
+                StringUtils.spaceSeparatedToList(redirectUris));
+        registerRequest.setScope(scopes);
+        registerRequest.setGrantTypes(grantTypes);
+        registerRequest.setTokenEndpointAuthMethod(AuthenticationMethod.PRIVATE_KEY_JWT);
+        registerRequest.setJwksUri(clientJwksUri);
+        registerRequest.setSectorIdentifierUri(sectorIdentifierUri);
+
+        RegisterClient registerClient = new RegisterClient(registrationEndpoint);
+        registerClient.setRequest(registerRequest);
+        RegisterResponse registerResponse = registerClient.exec();
+
+        showClient(registerClient);
+        assertEquals(registerResponse.getStatus(), 200, "Unexpected response code: " + registerResponse.getEntity());
+        assertNotNull(registerResponse.getClientId());
+        assertNotNull(registerResponse.getClientSecret());
+        assertNotNull(registerResponse.getRegistrationAccessToken());
+        assertNotNull(registerResponse.getClientIdIssuedAt());
+        assertNotNull(registerResponse.getClientSecretExpiresAt());
+
+        String clientId = registerResponse.getClientId();
+
+        // 2. Request Client Credentials Grant
+        OxAuthCryptoProvider cryptoProvider = new OxAuthCryptoProvider(keyStoreFile, keyStoreSecret, dnName);
+
+        TokenRequest tokenRequest = new TokenRequest(GrantType.CLIENT_CREDENTIALS);
+        tokenRequest.setScope("clientinfo");
+        tokenRequest.setAuthUsername(clientId);
+        tokenRequest.setAuthenticationMethod(AuthenticationMethod.PRIVATE_KEY_JWT);
+        tokenRequest.setAlgorithm(SignatureAlgorithm.PS256);
+        tokenRequest.setCryptoProvider(cryptoProvider);
+        tokenRequest.setKeyId(keyId);
+        tokenRequest.setAudience(tokenEndpoint);
+
+        TokenClient tokenClient = new TokenClient(tokenEndpoint);
+        tokenClient.setRequest(tokenRequest);
+        TokenResponse tokenResponse = tokenClient.exec();
+
+        showClient(tokenClient);
+        assertEquals(tokenResponse.getStatus(), 200, "Unexpected response code: " + tokenResponse.getStatus());
+        assertNotNull(tokenResponse.getEntity());
+        assertNotNull(tokenResponse.getAccessToken());
+        assertNotNull(tokenResponse.getTokenType());
+        assertNotNull(tokenResponse.getScope());
+        assertNull(tokenResponse.getRefreshToken());
+
+        String accessToken = tokenResponse.getAccessToken();
+
+        // 3. Request client info
+        ClientInfoClient clientInfoClient = new ClientInfoClient(clientInfoEndpoint);
+        ClientInfoResponse clientInfoResponse = clientInfoClient.execClientInfo(accessToken);
+
+        showClient(clientInfoClient);
+        assertEquals(clientInfoResponse.getStatus(), 200, "Unexpected response code: " + clientInfoResponse.getStatus());
+        assertNotNull(clientInfoResponse.getClaim("displayName"), "Unexpected result: displayName not found");
+        assertNotNull(clientInfoResponse.getClaim("inum"), "Unexpected result: inum not found");
+    }
+
+    @Parameters({"redirectUris", "clientJwksUri", "dnName", "keyStoreFile", "keyStoreSecret", "sectorIdentifierUri"})
+    @Test
+    public void privateKeyJwtAuthenticationMethodPS256Fail(
+            final String redirectUris, final String clientJwksUri, final String dnName, final String keyStoreFile,
+            final String keyStoreSecret, final String sectorIdentifierUri) throws Exception {
+        showTitle("privateKeyJwtAuthenticationMethodPS256Fail");
+
+        List<String> scopes = Arrays.asList("clientinfo");
+
+        // 1. Register client
+        RegisterRequest registerRequest = new RegisterRequest(ApplicationType.WEB, "oxAuth test app",
+                StringUtils.spaceSeparatedToList(redirectUris));
+        registerRequest.setScope(scopes);
+        registerRequest.setTokenEndpointAuthMethod(AuthenticationMethod.PRIVATE_KEY_JWT);
+        registerRequest.setJwksUri(clientJwksUri);
+        registerRequest.setSectorIdentifierUri(sectorIdentifierUri);
+
+        RegisterClient registerClient = new RegisterClient(registrationEndpoint);
+        registerClient.setRequest(registerRequest);
+        RegisterResponse registerResponse = registerClient.exec();
+
+        showClient(registerClient);
+        assertEquals(registerResponse.getStatus(), 200, "Unexpected response code: " + registerResponse.getEntity());
+        assertNotNull(registerResponse.getClientId());
+        assertNotNull(registerResponse.getClientSecret());
+        assertNotNull(registerResponse.getRegistrationAccessToken());
+        assertNotNull(registerResponse.getClientIdIssuedAt());
+        assertNotNull(registerResponse.getClientSecretExpiresAt());
+
+        String clientId = registerResponse.getClientId();
+
+        // 2. Request Client Credentials Grant
+        OxAuthCryptoProvider cryptoProvider = new OxAuthCryptoProvider(keyStoreFile, keyStoreSecret, dnName);
+
+        TokenRequest tokenRequest = new TokenRequest(GrantType.CLIENT_CREDENTIALS);
+        tokenRequest.setScope("clientinfo");
+        tokenRequest.setAuthUsername(clientId);
+        tokenRequest.setAuthenticationMethod(AuthenticationMethod.PRIVATE_KEY_JWT);
+        tokenRequest.setAlgorithm(SignatureAlgorithm.PS256);
+        tokenRequest.setCryptoProvider(cryptoProvider);
+        tokenRequest.setKeyId("PS256SIG_INVALID_KEYID");
+        tokenRequest.setAudience(tokenEndpoint);
+
+        TokenClient tokenClient = new TokenClient(tokenEndpoint);
+        tokenClient.setRequest(tokenRequest);
+        TokenResponse tokenResponse = tokenClient.exec();
+
+        showClient(tokenClient);
+        assertEquals(tokenResponse.getStatus(), 401, "Unexpected response code: " + tokenResponse.getStatus());
+        assertNotNull(tokenResponse.getErrorType());
+        assertEquals(tokenResponse.getErrorType(), TokenErrorResponseType.INVALID_CLIENT);
+        assertNotNull(tokenResponse.getErrorDescription());
+    }
+
+    @Parameters({"redirectUris", "clientJwksUri", "PS384_keyId", "dnName", "keyStoreFile", "keyStoreSecret", "sectorIdentifierUri"})
+    @Test
+    public void privateKeyJwtAuthenticationMethodPS384(
+            final String redirectUris, final String clientJwksUri, final String keyId, final String dnName,
+            final String keyStoreFile, final String keyStoreSecret, final String sectorIdentifierUri) throws Exception {
+        showTitle("privateKeyJwtAuthenticationMethodPS384");
+
+        List<String> scopes = Arrays.asList("clientinfo");
+        List<GrantType> grantTypes = Arrays.asList(
+                GrantType.CLIENT_CREDENTIALS
+        );
+
+        // 1. Register client
+        RegisterRequest registerRequest = new RegisterRequest(ApplicationType.WEB, "oxAuth test app",
+                StringUtils.spaceSeparatedToList(redirectUris));
+        registerRequest.setScope(scopes);
+        registerRequest.setGrantTypes(grantTypes);
+        registerRequest.setTokenEndpointAuthMethod(AuthenticationMethod.PRIVATE_KEY_JWT);
+        registerRequest.setJwksUri(clientJwksUri);
+        registerRequest.setSectorIdentifierUri(sectorIdentifierUri);
+
+        RegisterClient registerClient = new RegisterClient(registrationEndpoint);
+        registerClient.setRequest(registerRequest);
+        RegisterResponse registerResponse = registerClient.exec();
+
+        showClient(registerClient);
+        assertEquals(registerResponse.getStatus(), 200, "Unexpected response code: " + registerResponse.getEntity());
+        assertNotNull(registerResponse.getClientId());
+        assertNotNull(registerResponse.getClientSecret());
+        assertNotNull(registerResponse.getRegistrationAccessToken());
+        assertNotNull(registerResponse.getClientIdIssuedAt());
+        assertNotNull(registerResponse.getClientSecretExpiresAt());
+
+        String clientId = registerResponse.getClientId();
+
+        // 2. Request Client Credentials Grant
+        OxAuthCryptoProvider cryptoProvider = new OxAuthCryptoProvider(keyStoreFile, keyStoreSecret, dnName);
+
+        TokenRequest tokenRequest = new TokenRequest(GrantType.CLIENT_CREDENTIALS);
+        tokenRequest.setScope("clientinfo");
+        tokenRequest.setAuthUsername(clientId);
+        tokenRequest.setAuthenticationMethod(AuthenticationMethod.PRIVATE_KEY_JWT);
+        tokenRequest.setAlgorithm(SignatureAlgorithm.PS384);
+        tokenRequest.setCryptoProvider(cryptoProvider);
+        tokenRequest.setKeyId(keyId);
+        tokenRequest.setAudience(tokenEndpoint);
+
+        TokenClient tokenClient = new TokenClient(tokenEndpoint);
+        tokenClient.setRequest(tokenRequest);
+        TokenResponse tokenResponse = tokenClient.exec();
+
+        showClient(tokenClient);
+        assertEquals(tokenResponse.getStatus(), 200, "Unexpected response code: " + tokenResponse.getStatus());
+        assertNotNull(tokenResponse.getEntity());
+        assertNotNull(tokenResponse.getAccessToken());
+        assertNotNull(tokenResponse.getTokenType());
+        assertNotNull(tokenResponse.getScope());
+        assertNull(tokenResponse.getRefreshToken());
+
+        String accessToken = tokenResponse.getAccessToken();
+
+        // 3. Request client info
+        ClientInfoClient clientInfoClient = new ClientInfoClient(clientInfoEndpoint);
+        ClientInfoResponse clientInfoResponse = clientInfoClient.execClientInfo(accessToken);
+
+        showClient(clientInfoClient);
+        assertEquals(clientInfoResponse.getStatus(), 200, "Unexpected response code: " + clientInfoResponse.getStatus());
+        assertNotNull(clientInfoResponse.getClaim("displayName"), "Unexpected result: displayName not found");
+        assertNotNull(clientInfoResponse.getClaim("inum"), "Unexpected result: inum not found");
+    }
+
+    @Parameters({"redirectUris", "clientJwksUri", "dnName", "keyStoreFile", "keyStoreSecret", "sectorIdentifierUri"})
+    @Test
+    public void privateKeyJwtAuthenticationMethodPS384Fail(
+            final String redirectUris, final String clientJwksUri, final String dnName, final String keyStoreFile,
+            final String keyStoreSecret, final String sectorIdentifierUri) throws Exception {
+        showTitle("privateKeyJwtAuthenticationMethodPS384Fail");
+
+        List<String> scopes = Arrays.asList("clientinfo");
+
+        // 1. Register client
+        RegisterRequest registerRequest = new RegisterRequest(ApplicationType.WEB, "oxAuth test app",
+                StringUtils.spaceSeparatedToList(redirectUris));
+        registerRequest.setScope(scopes);
+        registerRequest.setTokenEndpointAuthMethod(AuthenticationMethod.PRIVATE_KEY_JWT);
+        registerRequest.setJwksUri(clientJwksUri);
+        registerRequest.setSectorIdentifierUri(sectorIdentifierUri);
+
+        RegisterClient registerClient = new RegisterClient(registrationEndpoint);
+        registerClient.setRequest(registerRequest);
+        RegisterResponse registerResponse = registerClient.exec();
+
+        showClient(registerClient);
+        assertEquals(registerResponse.getStatus(), 200, "Unexpected response code: " + registerResponse.getEntity());
+        assertNotNull(registerResponse.getClientId());
+        assertNotNull(registerResponse.getClientSecret());
+        assertNotNull(registerResponse.getRegistrationAccessToken());
+        assertNotNull(registerResponse.getClientIdIssuedAt());
+        assertNotNull(registerResponse.getClientSecretExpiresAt());
+
+        String clientId = registerResponse.getClientId();
+
+        // 2. Request Client Credentials Grant
+        OxAuthCryptoProvider cryptoProvider = new OxAuthCryptoProvider(keyStoreFile, keyStoreSecret, dnName);
+
+        TokenRequest tokenRequest = new TokenRequest(GrantType.CLIENT_CREDENTIALS);
+        tokenRequest.setScope("clientinfo");
+        tokenRequest.setAuthUsername(clientId);
+        tokenRequest.setAuthenticationMethod(AuthenticationMethod.PRIVATE_KEY_JWT);
+        tokenRequest.setAlgorithm(SignatureAlgorithm.PS384);
+        tokenRequest.setCryptoProvider(cryptoProvider);
+        tokenRequest.setKeyId("PS384SIG_INVALID_KEYID");
+        tokenRequest.setAudience(tokenEndpoint);
+
+        TokenClient tokenClient = new TokenClient(tokenEndpoint);
+        tokenClient.setRequest(tokenRequest);
+        TokenResponse tokenResponse = tokenClient.exec();
+
+        showClient(tokenClient);
+        assertEquals(tokenResponse.getStatus(), 401, "Unexpected response code: " + tokenResponse.getStatus());
+        assertNotNull(tokenResponse.getErrorType());
+        assertEquals(tokenResponse.getErrorType(), TokenErrorResponseType.INVALID_CLIENT);
+        assertNotNull(tokenResponse.getErrorDescription());
+    }
+
+    @Parameters({"redirectUris", "clientJwksUri", "PS512_keyId", "dnName", "keyStoreFile", "keyStoreSecret", "sectorIdentifierUri"})
+    @Test
+    public void privateKeyJwtAuthenticationMethodPS512(
+            final String redirectUris, final String clientJwksUri, final String keyId, final String dnName,
+            final String keyStoreFile, final String keyStoreSecret, final String sectorIdentifierUri) throws Exception {
+        showTitle("privateKeyJwtAuthenticationMethodPS512");
+
+        List<String> scopes = Arrays.asList("clientinfo");
+        List<GrantType> grantTypes = Arrays.asList(
+                GrantType.CLIENT_CREDENTIALS
+        );
+
+        // 1. Register client
+        RegisterRequest registerRequest = new RegisterRequest(ApplicationType.WEB, "oxAuth test app",
+                StringUtils.spaceSeparatedToList(redirectUris));
+        registerRequest.setScope(scopes);
+        registerRequest.setGrantTypes(grantTypes);
+        registerRequest.setTokenEndpointAuthMethod(AuthenticationMethod.PRIVATE_KEY_JWT);
+        registerRequest.setJwksUri(clientJwksUri);
+        registerRequest.setSectorIdentifierUri(sectorIdentifierUri);
+
+        RegisterClient registerClient = new RegisterClient(registrationEndpoint);
+        registerClient.setRequest(registerRequest);
+        RegisterResponse registerResponse = registerClient.exec();
+
+        showClient(registerClient);
+        assertEquals(registerResponse.getStatus(), 200, "Unexpected response code: " + registerResponse.getEntity());
+        assertNotNull(registerResponse.getClientId());
+        assertNotNull(registerResponse.getClientSecret());
+        assertNotNull(registerResponse.getRegistrationAccessToken());
+        assertNotNull(registerResponse.getClientIdIssuedAt());
+        assertNotNull(registerResponse.getClientSecretExpiresAt());
+
+        String clientId = registerResponse.getClientId();
+
+        // 2. Request Client Credentials Grant
+        OxAuthCryptoProvider cryptoProvider = new OxAuthCryptoProvider(keyStoreFile, keyStoreSecret, dnName);
+
+        TokenRequest tokenRequest = new TokenRequest(GrantType.CLIENT_CREDENTIALS);
+        tokenRequest.setScope("clientinfo");
+        tokenRequest.setAuthUsername(clientId);
+        tokenRequest.setAuthenticationMethod(AuthenticationMethod.PRIVATE_KEY_JWT);
+        tokenRequest.setAlgorithm(SignatureAlgorithm.PS512);
+        tokenRequest.setCryptoProvider(cryptoProvider);
+        tokenRequest.setKeyId(keyId);
+        tokenRequest.setAudience(tokenEndpoint);
+
+        TokenClient tokenClient = new TokenClient(tokenEndpoint);
+        tokenClient.setRequest(tokenRequest);
+        TokenResponse tokenResponse = tokenClient.exec();
+
+        showClient(tokenClient);
+        assertEquals(tokenResponse.getStatus(), 200, "Unexpected response code: " + tokenResponse.getStatus());
+        assertNotNull(tokenResponse.getEntity());
+        assertNotNull(tokenResponse.getAccessToken());
+        assertNotNull(tokenResponse.getTokenType());
+        assertNotNull(tokenResponse.getScope());
+        assertNull(tokenResponse.getRefreshToken());
+
+        String accessToken = tokenResponse.getAccessToken();
+
+        // 3. Request client info
+        ClientInfoClient clientInfoClient = new ClientInfoClient(clientInfoEndpoint);
+        ClientInfoResponse clientInfoResponse = clientInfoClient.execClientInfo(accessToken);
+
+        showClient(clientInfoClient);
+        assertEquals(clientInfoResponse.getStatus(), 200, "Unexpected response code: " + clientInfoResponse.getStatus());
+        assertNotNull(clientInfoResponse.getClaim("displayName"), "Unexpected result: displayName not found");
+        assertNotNull(clientInfoResponse.getClaim("inum"), "Unexpected result: inum not found");
+    }
+
+    @Parameters({"redirectUris", "clientJwksUri", "dnName", "keyStoreFile", "keyStoreSecret", "sectorIdentifierUri"})
+    @Test
+    public void privateKeyJwtAuthenticationMethodPS512Fail(
+            final String redirectUris, final String clientJwksUri, final String dnName, final String keyStoreFile,
+            final String keyStoreSecret, final String sectorIdentifierUri) throws Exception {
+        showTitle("privateKeyJwtAuthenticationMethodPS512Fail");
+
+        List<String> scopes = Arrays.asList("clientinfo");
+
+        // 1. Register client
+        RegisterRequest registerRequest = new RegisterRequest(ApplicationType.WEB, "oxAuth test app",
+                StringUtils.spaceSeparatedToList(redirectUris));
+        registerRequest.setScope(scopes);
+        registerRequest.setTokenEndpointAuthMethod(AuthenticationMethod.PRIVATE_KEY_JWT);
+        registerRequest.setJwksUri(clientJwksUri);
+        registerRequest.setSectorIdentifierUri(sectorIdentifierUri);
+
+        RegisterClient registerClient = new RegisterClient(registrationEndpoint);
+        registerClient.setRequest(registerRequest);
+        RegisterResponse registerResponse = registerClient.exec();
+
+        showClient(registerClient);
+        assertEquals(registerResponse.getStatus(), 200, "Unexpected response code: " + registerResponse.getEntity());
+        assertNotNull(registerResponse.getClientId());
+        assertNotNull(registerResponse.getClientSecret());
+        assertNotNull(registerResponse.getRegistrationAccessToken());
+        assertNotNull(registerResponse.getClientIdIssuedAt());
+        assertNotNull(registerResponse.getClientSecretExpiresAt());
+
+        String clientId = registerResponse.getClientId();
+
+        // 2. Request Client Credentials Grant
+        OxAuthCryptoProvider cryptoProvider = new OxAuthCryptoProvider(keyStoreFile, keyStoreSecret, dnName);
+
+        TokenRequest tokenRequest = new TokenRequest(GrantType.CLIENT_CREDENTIALS);
+        tokenRequest.setScope("clientinfo");
+        tokenRequest.setAuthUsername(clientId);
+        tokenRequest.setAuthenticationMethod(AuthenticationMethod.PRIVATE_KEY_JWT);
+        tokenRequest.setAlgorithm(SignatureAlgorithm.PS512);
+        tokenRequest.setCryptoProvider(cryptoProvider);
+        tokenRequest.setKeyId("PS512SIG_INVALID_KEYID");
+        tokenRequest.setAudience(tokenEndpoint);
+
+        TokenClient tokenClient = new TokenClient(tokenEndpoint);
+        tokenClient.setRequest(tokenRequest);
+        TokenResponse tokenResponse = tokenClient.exec();
+
+        showClient(tokenClient);
+        assertEquals(tokenResponse.getStatus(), 401, "Unexpected response code: " + tokenResponse.getStatus());
+        assertNotNull(tokenResponse.getErrorType());
+        assertEquals(tokenResponse.getErrorType(), TokenErrorResponseType.INVALID_CLIENT);
+        assertNotNull(tokenResponse.getErrorDescription());
+    }
+}
\ No newline at end of file
diff --git a/oxAuth/Client/src/test/java/org/gluu/oxauth/ws/rs/ClientInfoRestWebServiceHttpTest.java b/oxAuth/Client/src/test/java/org/gluu/oxauth/ws/rs/ClientInfoRestWebServiceHttpTest.java
new file mode 100644
index 00000000..be69324d
--- /dev/null
+++ b/oxAuth/Client/src/test/java/org/gluu/oxauth/ws/rs/ClientInfoRestWebServiceHttpTest.java
@@ -0,0 +1,197 @@
+/*
+ * oxAuth is available under the MIT License (2008). See http://opensource.org/licenses/MIT for full text.
+ *
+ * Copyright (c) 2014, Gluu
+ */
+
+package org.gluu.oxauth.ws.rs;
+
+import static org.testng.Assert.assertEquals;
+import static org.testng.Assert.assertNotNull;
+
+import java.util.ArrayList;
+import java.util.Arrays;
+import java.util.List;
+import java.util.UUID;
+
+import org.gluu.oxauth.BaseTest;
+import org.gluu.oxauth.client.AuthorizationRequest;
+import org.gluu.oxauth.client.AuthorizationResponse;
+import org.gluu.oxauth.client.ClientInfoClient;
+import org.gluu.oxauth.client.ClientInfoResponse;
+import org.gluu.oxauth.client.RegisterClient;
+import org.gluu.oxauth.client.RegisterRequest;
+import org.gluu.oxauth.client.RegisterResponse;
+import org.gluu.oxauth.client.TokenClient;
+import org.gluu.oxauth.client.TokenResponse;
+import org.gluu.oxauth.model.common.GrantType;
+import org.gluu.oxauth.model.common.ResponseType;
+import org.gluu.oxauth.model.register.ApplicationType;
+import org.gluu.oxauth.model.util.StringUtils;
+import org.testng.annotations.Parameters;
+import org.testng.annotations.Test;
+
+/**
+ * Functional tests for Client Info Web Services (HTTP)
+ *
+ * @author Javier Rojas Blum
+ * @version March 9, 2019
+ */
+public class ClientInfoRestWebServiceHttpTest extends BaseTest {
+
+    @Parameters({"userId", "userSecret", "redirectUris", "redirectUri", "sectorIdentifierUri"})
+    @Test
+    public void requestClientInfoImplicitFlow(
+            final String userId, final String userSecret, final String redirectUris, final String redirectUri,
+            final String sectorIdentifierUri) throws Exception {
+        showTitle("requestClientInfoImplicitFlow");
+
+        List<ResponseType> responseTypes = Arrays.asList(
+                ResponseType.TOKEN,
+                ResponseType.ID_TOKEN);
+
+        // 1. Register client
+        RegisterRequest registerRequest = new RegisterRequest(ApplicationType.WEB, "oxAuth test app",
+                StringUtils.spaceSeparatedToList(redirectUris));
+        registerRequest.setResponseTypes(responseTypes);
+        registerRequest.setSectorIdentifierUri(sectorIdentifierUri);
+
+        RegisterClient registerClient = new RegisterClient(registrationEndpoint);
+        registerClient.setRequest(registerRequest);
+        RegisterResponse registerResponse = registerClient.exec();
+
+        showClient(registerClient);
+        assertEquals(registerResponse.getStatus(), 200, "Unexpected response code: " + registerResponse.getEntity());
+        assertNotNull(registerResponse.getClientId());
+        assertNotNull(registerResponse.getClientSecret());
+        assertNotNull(registerResponse.getRegistrationAccessToken());
+        assertNotNull(registerResponse.getClientIdIssuedAt());
+        assertNotNull(registerResponse.getClientSecretExpiresAt());
+
+        String clientId = registerResponse.getClientId();
+
+        // 2. Request authorization
+        List<String> scopes = new ArrayList<String>();
+        scopes.add("clientinfo");
+        String nonce = UUID.randomUUID().toString();
+        String state = UUID.randomUUID().toString();
+
+        AuthorizationRequest authorizationRequest = new AuthorizationRequest(responseTypes, clientId, scopes, redirectUri, nonce);
+        authorizationRequest.setState(state);
+
+        AuthorizationResponse authorizationResponse = authenticateResourceOwnerAndGrantAccess(
+                authorizationEndpoint, authorizationRequest, userId, userSecret);
+
+        assertNotNull(authorizationResponse.getLocation(), "The location is null");
+        assertNotNull(authorizationResponse.getAccessToken(), "The access token is null");
+        assertNotNull(authorizationResponse.getState(), "The state is null");
+        assertNotNull(authorizationResponse.getTokenType(), "The token type is null");
+        assertNotNull(authorizationResponse.getExpiresIn(), "The expires in value is null");
+        assertNotNull(authorizationResponse.getScope(), "The scope must be null");
+        assertNotNull(authorizationResponse.getIdToken(), "The id token must be null");
+
+        String accessToken = authorizationResponse.getAccessToken();
+
+        // 3. Request client info
+        ClientInfoClient clientInfoClient = new ClientInfoClient(clientInfoEndpoint);
+        ClientInfoResponse clientInfoResponse = clientInfoClient.execClientInfo(accessToken);
+
+        showClient(clientInfoClient);
+        assertEquals(clientInfoResponse.getStatus(), 200, "Unexpected response code: " + clientInfoResponse.getStatus());
+        assertNotNull(clientInfoResponse.getClaim("displayName"), "Unexpected result: displayName not found");
+        assertNotNull(clientInfoResponse.getClaim("inum"), "Unexpected result: inum not found");
+        assertNotNull(clientInfoResponse.getClaim("oxAuthAppType"), "Unexpected result: oxAuthAppType not found");
+        assertNotNull(clientInfoResponse.getClaim("oxAuthIdTokenSignedResponseAlg"), "Unexpected result: oxAuthIdTokenSignedResponseAlg not found");
+        assertNotNull(clientInfoResponse.getClaim("oxAuthRedirectURI"), "Unexpected result: oxAuthRedirectURI not found");
+        assertNotNull(clientInfoResponse.getClaim("oxAuthScope"), "Unexpected result: oxAuthScope not found");
+    }
+
+    @Parameters({"userId", "userSecret", "redirectUris", "sectorIdentifierUri"})
+    @Test
+    public void requestClientInfoPasswordFlow(
+            final String userId, final String userSecret, final String redirectUris, final String sectorIdentifierUri) throws Exception {
+        showTitle("requestClientInfoPasswordFlow");
+
+        List<GrantType> grantTypes = Arrays.asList(
+                GrantType.RESOURCE_OWNER_PASSWORD_CREDENTIALS
+        );
+
+        // 1. Register client
+        RegisterRequest registerRequest = new RegisterRequest(ApplicationType.WEB, "oxAuth test app",
+                StringUtils.spaceSeparatedToList(redirectUris));
+        registerRequest.setSectorIdentifierUri(sectorIdentifierUri);
+        registerRequest.setGrantTypes(grantTypes);
+
+        RegisterClient registerClient = new RegisterClient(registrationEndpoint);
+        registerClient.setRequest(registerRequest);
+        RegisterResponse registerResponse = registerClient.exec();
+
+        showClient(registerClient);
+        assertEquals(registerResponse.getStatus(), 200, "Unexpected response code: " + registerResponse.getEntity());
+        assertNotNull(registerResponse.getClientId());
+        assertNotNull(registerResponse.getClientSecret());
+        assertNotNull(registerResponse.getRegistrationAccessToken());
+        assertNotNull(registerResponse.getClientIdIssuedAt());
+        assertNotNull(registerResponse.getClientSecretExpiresAt());
+
+        String clientId = registerResponse.getClientId();
+        String clientSecret = registerResponse.getClientSecret();
+
+        // 2. Request authorization
+        String username = userId;
+        String password = userSecret;
+        String scope = "clientinfo";
+
+        TokenClient tokenClient = new TokenClient(tokenEndpoint);
+        TokenResponse response1 = tokenClient.execResourceOwnerPasswordCredentialsGrant(username, password, scope,
+                clientId, clientSecret);
+
+        showClient(tokenClient);
+        assertEquals(response1.getStatus(), 200, "Unexpected response code: " + response1.getStatus());
+        assertNotNull(response1.getEntity(), "The entity is null");
+        assertNotNull(response1.getAccessToken(), "The access token is null");
+        assertNotNull(response1.getTokenType(), "The token type is null");
+        assertNotNull(response1.getScope(), "The scope is null");
+
+        String accessToken = response1.getAccessToken();
+
+        // 3. Request client info
+        ClientInfoClient clientInfoClient = new ClientInfoClient(clientInfoEndpoint);
+        ClientInfoResponse response2 = clientInfoClient.execClientInfo(accessToken);
+
+        showClient(clientInfoClient);
+        assertEquals(response2.getStatus(), 200, "Unexpected response code: " + response2.getStatus());
+        assertNotNull(response2.getClaim("displayName"), "Unexpected result: displayName not found");
+        assertNotNull(response2.getClaim("inum"), "Unexpected result: inum not found");
+        assertNotNull(response2.getClaim("oxAuthAppType"), "Unexpected result: oxAuthAppType not found");
+        assertNotNull(response2.getClaim("oxAuthIdTokenSignedResponseAlg"), "Unexpected result: oxAuthIdTokenSignedResponseAlg not found");
+        assertNotNull(response2.getClaim("oxAuthRedirectURI"), "Unexpected result: oxAuthRedirectURI not found");
+        assertNotNull(response2.getClaim("oxAuthScope"), "Unexpected result: oxAuthScope not found");
+    }
+
+    @Test
+    public void requestClientInfoInvalidRequest() throws Exception {
+        showTitle("requestClientInfoInvalidRequest");
+
+        ClientInfoClient clientInfoClient = new ClientInfoClient(clientInfoEndpoint);
+        ClientInfoResponse response = clientInfoClient.execClientInfo(null);
+
+        showClient(clientInfoClient);
+        assertEquals(response.getStatus(), 400, "Unexpected response code: " + response.getStatus());
+        assertNotNull(response.getErrorType(), "Unexpected result: errorType not found");
+        assertNotNull(response.getErrorDescription(), "Unexpected result: errorDescription not found");
+    }
+
+    @Test
+    public void requestClientInfoInvalidToken() throws Exception {
+        showTitle("requestClientInfoInvalidToken");
+
+        ClientInfoClient clientInfoClient = new ClientInfoClient(clientInfoEndpoint);
+        ClientInfoResponse response = clientInfoClient.execClientInfo("INVALID-TOKEN");
+
+        showClient(clientInfoClient);
+        assertEquals(response.getStatus(), 400, "Unexpected response code: " + response.getStatus());
+        assertNotNull(response.getErrorType(), "Unexpected result: errorType not found");
+        assertNotNull(response.getErrorDescription(), "Unexpected result: errorDescription not found");
+    }
+}
\ No newline at end of file
diff --git a/oxAuth/Client/src/test/java/org/gluu/oxauth/ws/rs/ClientSecretBasicTest.java b/oxAuth/Client/src/test/java/org/gluu/oxauth/ws/rs/ClientSecretBasicTest.java
new file mode 100644
index 00000000..44640400
--- /dev/null
+++ b/oxAuth/Client/src/test/java/org/gluu/oxauth/ws/rs/ClientSecretBasicTest.java
@@ -0,0 +1,234 @@
+/*
+ * oxAuth is available under the MIT License (2008). See http://opensource.org/licenses/MIT for full text.
+ *
+ * Copyright (c) 2014, Gluu
+ */
+
+package org.gluu.oxauth.ws.rs;
+
+import static org.testng.Assert.assertEquals;
+import static org.testng.Assert.assertNotNull;
+import static org.testng.Assert.assertNull;
+import static org.testng.Assert.assertTrue;
+
+import java.net.URLEncoder;
+import java.util.Arrays;
+import java.util.List;
+import java.util.UUID;
+
+import org.apache.commons.codec.binary.Base64;
+import org.gluu.oxauth.BaseTest;
+import org.gluu.oxauth.client.AuthorizationRequest;
+import org.gluu.oxauth.client.AuthorizationResponse;
+import org.gluu.oxauth.client.JwkClient;
+import org.gluu.oxauth.client.RegisterClient;
+import org.gluu.oxauth.client.RegisterRequest;
+import org.gluu.oxauth.client.RegisterResponse;
+import org.gluu.oxauth.client.TokenClient;
+import org.gluu.oxauth.client.TokenRequest;
+import org.gluu.oxauth.client.TokenResponse;
+import org.gluu.oxauth.client.UserInfoClient;
+import org.gluu.oxauth.client.UserInfoResponse;
+import org.gluu.oxauth.model.common.AuthenticationMethod;
+import org.gluu.oxauth.model.common.GrantType;
+import org.gluu.oxauth.model.common.ResponseType;
+import org.gluu.oxauth.model.common.SubjectType;
+import org.gluu.oxauth.model.crypto.signature.RSAPublicKey;
+import org.gluu.oxauth.model.crypto.signature.SignatureAlgorithm;
+import org.gluu.oxauth.model.jws.RSASigner;
+import org.gluu.oxauth.model.jwt.Jwt;
+import org.gluu.oxauth.model.jwt.JwtClaimName;
+import org.gluu.oxauth.model.jwt.JwtHeaderName;
+import org.gluu.oxauth.model.register.ApplicationType;
+import org.gluu.oxauth.model.util.StringUtils;
+import org.gluu.oxauth.model.util.Util;
+import org.testng.annotations.Parameters;
+import org.testng.annotations.Test;
+
+/**
+ * http://tools.ietf.org/html/rfc2617#section-2
+ *
+ * @author Javier Rojas Blum
+ * @version January 26. 2018
+ */
+public class ClientSecretBasicTest extends BaseTest {
+
+    @Test
+    public void testEncode1() {
+        showTitle("testEncode1");
+
+        String clientId = "Aladdin";
+        String clientSecret = "open sesame";
+        TokenRequest tokenRequest = new TokenRequest(GrantType.AUTHORIZATION_CODE);
+        tokenRequest.setAuthUsername(clientId);
+        tokenRequest.setAuthPassword(clientSecret);
+        tokenRequest.setAuthenticationMethod(AuthenticationMethod.CLIENT_SECRET_BASIC);
+
+        assertEquals(tokenRequest.getEncodedCredentials(), "QWxhZGRpbjpvcGVuK3Nlc2FtZQ==");
+    }
+
+    @Test
+    public void testEncode2() {
+        showTitle("testEncode2");
+
+        String clientId = "a+b";
+        String clientSecret = "c+d";
+        TokenRequest tokenRequest = new TokenRequest(GrantType.AUTHORIZATION_CODE);
+        tokenRequest.setAuthUsername(clientId);
+        tokenRequest.setAuthPassword(clientSecret);
+        tokenRequest.setAuthenticationMethod(AuthenticationMethod.CLIENT_SECRET_BASIC);
+
+        assertEquals(tokenRequest.getEncodedCredentials(), "YSUyQmI6YyUyQmQ=");
+    }
+
+    @Test
+    public void testEncode3() {
+        showTitle("testEncode3");
+
+        String clientId = "@!12AD!0008!6D30.23D7";
+        String clientSecret = "P@55W0rd!";
+        TokenRequest tokenRequest = new TokenRequest(GrantType.AUTHORIZATION_CODE);
+        tokenRequest.setAuthUsername(clientId);
+        tokenRequest.setAuthPassword(clientSecret);
+        tokenRequest.setAuthenticationMethod(AuthenticationMethod.CLIENT_SECRET_BASIC);
+
+        assertEquals(tokenRequest.getEncodedCredentials(), "JTQwJTIxMTJBRCUyMTAwMDglMjE2RDMwLjIzRDc6UCU0MDU1VzByZCUyMQ==");
+    }
+
+    @Parameters({"userId", "userSecret", "redirectUris", "redirectUri", "sectorIdentifierUri"})
+    @Test
+    public void authorizationCodeFlow(
+            final String userId, final String userSecret, final String redirectUris, final String redirectUri,
+            final String sectorIdentifierUri) throws Exception {
+        showTitle("authorizationCodeFlow");
+
+        List<ResponseType> responseTypes = Arrays.asList(
+                ResponseType.CODE,
+                ResponseType.ID_TOKEN);
+        List<String> scopes = Arrays.asList("openid", "profile", "address", "email", "phone", "user_name");
+
+        // 1. Register client
+        RegisterRequest registerRequest = new RegisterRequest(ApplicationType.WEB, "oxAuth test app",
+                StringUtils.spaceSeparatedToList(redirectUris));
+        registerRequest.setResponseTypes(responseTypes);
+        registerRequest.setScope(scopes);
+        registerRequest.setSubjectType(SubjectType.PAIRWISE);
+        registerRequest.setSectorIdentifierUri(sectorIdentifierUri);
+
+        RegisterClient registerClient = new RegisterClient(registrationEndpoint);
+        registerClient.setRequest(registerRequest);
+        RegisterResponse registerResponse = registerClient.exec();
+
+        showClient(registerClient);
+        assertEquals(registerResponse.getStatus(), 200, "Unexpected response code: " + registerResponse.getEntity());
+        assertNotNull(registerResponse.getClientId());
+        assertNotNull(registerResponse.getClientSecret());
+        assertNotNull(registerResponse.getRegistrationAccessToken());
+        assertNotNull(registerResponse.getClientIdIssuedAt());
+
+        String clientId = registerResponse.getClientId();
+        String clientSecret = registerResponse.getClientSecret();
+
+        // 2. Request authorization and receive the authorization code.
+        String nonce = UUID.randomUUID().toString();
+        String state = UUID.randomUUID().toString();
+
+        AuthorizationRequest authorizationRequest = new AuthorizationRequest(responseTypes, clientId, scopes, redirectUri, nonce);
+        authorizationRequest.setState(state);
+
+        AuthorizationResponse authorizationResponse = authenticateResourceOwnerAndGrantAccess(
+                authorizationEndpoint, authorizationRequest, userId, userSecret);
+
+        assertNotNull(authorizationResponse.getLocation(), "The location is null");
+        assertNotNull(authorizationResponse.getCode(), "The authorization code is null");
+        assertNotNull(authorizationResponse.getState(), "The state is null");
+        assertNotNull(authorizationResponse.getScope(), "The scope is null");
+
+        String scope = authorizationResponse.getScope();
+        String authorizationCode = authorizationResponse.getCode();
+        String idToken = authorizationResponse.getIdToken();
+
+        // 3. Request access token using the authorization code.
+        TokenRequest tokenRequest = new TokenRequest(GrantType.AUTHORIZATION_CODE);
+        tokenRequest.setCode(authorizationCode);
+        tokenRequest.setRedirectUri(redirectUri);
+        tokenRequest.setAuthUsername(clientId);
+        tokenRequest.setAuthPassword(clientSecret);
+        tokenRequest.setAuthenticationMethod(AuthenticationMethod.CLIENT_SECRET_BASIC);
+
+        String expectedEncodedCredentials = Base64.encodeBase64String(Util.getBytes(
+                URLEncoder.encode(clientId, Util.UTF8_STRING_ENCODING)
+                        + ":"
+                        + URLEncoder.encode(clientSecret, Util.UTF8_STRING_ENCODING)));
+        assertEquals(tokenRequest.getEncodedCredentials(), expectedEncodedCredentials);
+
+        TokenClient tokenClient1 = new TokenClient(tokenEndpoint);
+        tokenClient1.setRequest(tokenRequest);
+        TokenResponse tokenResponse1 = tokenClient1.exec();
+
+        showClient(tokenClient1);
+        assertEquals(tokenResponse1.getStatus(), 200, "Unexpected response code: " + tokenResponse1.getStatus());
+        assertNotNull(tokenResponse1.getEntity(), "The entity is null");
+        assertNotNull(tokenResponse1.getAccessToken(), "The access token is null");
+        assertNotNull(tokenResponse1.getExpiresIn(), "The expires in value is null");
+        assertNotNull(tokenResponse1.getTokenType(), "The token type is null");
+        assertNotNull(tokenResponse1.getRefreshToken(), "The refresh token is null");
+
+        String refreshToken = tokenResponse1.getRefreshToken();
+
+        // 4. Validate id_token
+        Jwt jwt = Jwt.parse(idToken);
+        assertNotNull(jwt.getHeader().getClaimAsString(JwtHeaderName.TYPE));
+        assertNotNull(jwt.getHeader().getClaimAsString(JwtHeaderName.ALGORITHM));
+        assertNotNull(jwt.getClaims().getClaimAsString(JwtClaimName.ISSUER));
+        assertNotNull(jwt.getClaims().getClaimAsString(JwtClaimName.AUDIENCE));
+        assertNotNull(jwt.getClaims().getClaimAsString(JwtClaimName.EXPIRATION_TIME));
+        assertNotNull(jwt.getClaims().getClaimAsString(JwtClaimName.ISSUED_AT));
+        assertNotNull(jwt.getClaims().getClaimAsString(JwtClaimName.SUBJECT_IDENTIFIER));
+        assertNotNull(jwt.getClaims().getClaimAsString(JwtClaimName.CODE_HASH));
+        assertNotNull(jwt.getClaims().getClaimAsString(JwtClaimName.AUTHENTICATION_TIME));
+        assertNotNull(jwt.getClaims().getClaimAsString(JwtClaimName.OX_OPENID_CONNECT_VERSION));
+
+        RSAPublicKey publicKey = JwkClient.getRSAPublicKey(
+                jwksUri,
+                jwt.getHeader().getClaimAsString(JwtHeaderName.KEY_ID));
+        RSASigner rsaSigner = new RSASigner(SignatureAlgorithm.RS256, publicKey);
+
+        assertTrue(rsaSigner.validate(jwt));
+
+        // 5. Request new access token using the refresh token.
+        TokenClient tokenClient2 = new TokenClient(tokenEndpoint);
+        TokenResponse tokenResponse2 = tokenClient2.execRefreshToken(scope, refreshToken, clientId, clientSecret);
+
+        showClient(tokenClient2);
+        assertEquals(tokenResponse2.getStatus(), 200, "Unexpected response code: " + tokenResponse2.getStatus());
+        assertNotNull(tokenResponse2.getEntity(), "The entity is null");
+        assertNotNull(tokenResponse2.getAccessToken(), "The access token is null");
+        assertNotNull(tokenResponse2.getTokenType(), "The token type is null");
+        assertNotNull(tokenResponse2.getRefreshToken(), "The refresh token is null");
+        assertNotNull(tokenResponse2.getScope(), "The scope is null");
+
+        String accessToken = tokenResponse2.getAccessToken();
+
+        // 6. Request user info
+        UserInfoClient userInfoClient = new UserInfoClient(userInfoEndpoint);
+        UserInfoResponse userInfoResponse = userInfoClient.execUserInfo(accessToken);
+
+        showClient(userInfoClient);
+        assertEquals(userInfoResponse.getStatus(), 200, "Unexpected response code: " + userInfoResponse.getStatus());
+        assertNotNull(userInfoResponse.getClaim(JwtClaimName.SUBJECT_IDENTIFIER));
+        assertNotNull(userInfoResponse.getClaim(JwtClaimName.NAME));
+        assertNotNull(userInfoResponse.getClaim(JwtClaimName.FAMILY_NAME));
+        assertNotNull(userInfoResponse.getClaim(JwtClaimName.GIVEN_NAME));
+        assertNotNull(userInfoResponse.getClaim(JwtClaimName.PICTURE));
+        assertNotNull(userInfoResponse.getClaim(JwtClaimName.EMAIL));
+        assertNotNull(userInfoResponse.getClaim(JwtClaimName.EMAIL_VERIFIED));
+        assertNotNull(userInfoResponse.getClaim(JwtClaimName.PHONE_NUMBER_VERIFIED));
+        assertNotNull(userInfoResponse.getClaim(JwtClaimName.ADDRESS));
+        assertNotNull(userInfoResponse.getClaim(JwtClaimName.LOCALE));
+        assertNotNull(userInfoResponse.getClaim(JwtClaimName.ZONEINFO));
+        assertNotNull(userInfoResponse.getClaim(JwtClaimName.USER_NAME));
+        assertNull(userInfoResponse.getClaim("org_name"));
+        assertNull(userInfoResponse.getClaim("work_phone"));
+    }
+}
diff --git a/oxAuth/Client/src/test/java/org/gluu/oxauth/ws/rs/ClientSpecificAccessTokenExpiration.java b/oxAuth/Client/src/test/java/org/gluu/oxauth/ws/rs/ClientSpecificAccessTokenExpiration.java
new file mode 100644
index 00000000..1113d82d
--- /dev/null
+++ b/oxAuth/Client/src/test/java/org/gluu/oxauth/ws/rs/ClientSpecificAccessTokenExpiration.java
@@ -0,0 +1,163 @@
+/*
+ * oxAuth is available under the MIT License (2008). See http://opensource.org/licenses/MIT for full text.
+ *
+ * Copyright (c) 2014, Gluu
+ */
+
+package org.gluu.oxauth.ws.rs;
+
+import static org.testng.Assert.assertEquals;
+import static org.testng.Assert.assertNotNull;
+import static org.testng.Assert.assertNull;
+
+import java.util.Arrays;
+import java.util.List;
+import java.util.UUID;
+
+import org.gluu.oxauth.BaseTest;
+import org.gluu.oxauth.client.AuthorizationRequest;
+import org.gluu.oxauth.client.AuthorizationResponse;
+import org.gluu.oxauth.client.RegisterClient;
+import org.gluu.oxauth.client.RegisterRequest;
+import org.gluu.oxauth.client.RegisterResponse;
+import org.gluu.oxauth.client.TokenClient;
+import org.gluu.oxauth.client.TokenRequest;
+import org.gluu.oxauth.client.TokenResponse;
+import org.gluu.oxauth.client.UserInfoClient;
+import org.gluu.oxauth.client.UserInfoResponse;
+import org.gluu.oxauth.model.common.AuthenticationMethod;
+import org.gluu.oxauth.model.common.GrantType;
+import org.gluu.oxauth.model.common.ResponseType;
+import org.gluu.oxauth.model.common.SubjectType;
+import org.gluu.oxauth.model.jwt.JwtClaimName;
+import org.gluu.oxauth.model.register.ApplicationType;
+import org.gluu.oxauth.model.util.StringUtils;
+import org.testng.annotations.Parameters;
+import org.testng.annotations.Test;
+
+/**
+ * @author Javier Rojas Blum
+ * @version May 14, 2019
+ */
+public class ClientSpecificAccessTokenExpiration extends BaseTest {
+
+    @Parameters({"userId", "userSecret", "redirectUris", "redirectUri", "sectorIdentifierUri"})
+    @Test
+    public void authorizationCodeFlow(
+            final String userId, final String userSecret, final String redirectUris, final String redirectUri,
+            final String sectorIdentifierUri) throws Exception {
+        showTitle("authorizationCodeFlow");
+
+        List<ResponseType> responseTypes = Arrays.asList(
+                ResponseType.CODE,
+                ResponseType.ID_TOKEN);
+        List<String> scopes = Arrays.asList("openid", "profile", "address", "email", "phone", "user_name");
+
+        // 1. Register client
+        RegisterRequest registerRequest = new RegisterRequest(ApplicationType.WEB, "oxAuth test app",
+                StringUtils.spaceSeparatedToList(redirectUris));
+        registerRequest.setResponseTypes(responseTypes);
+        registerRequest.setScope(scopes);
+        registerRequest.setSubjectType(SubjectType.PAIRWISE);
+        registerRequest.setSectorIdentifierUri(sectorIdentifierUri);
+        registerRequest.setAccessTokenLifetime(3);
+
+        RegisterClient registerClient = new RegisterClient(registrationEndpoint);
+        registerClient.setRequest(registerRequest);
+        RegisterResponse registerResponse = registerClient.exec();
+
+        showClient(registerClient);
+        assertEquals(registerResponse.getStatus(), 200, "Unexpected response code: " + registerResponse.getEntity());
+        assertNotNull(registerResponse.getClientId());
+        assertNotNull(registerResponse.getClientSecret());
+        assertNotNull(registerResponse.getRegistrationAccessToken());
+        assertNotNull(registerResponse.getClientIdIssuedAt());
+        assertNotNull(registerResponse.getClientSecretExpiresAt());
+
+        String clientId = registerResponse.getClientId();
+        String clientSecret = registerResponse.getClientSecret();
+
+        // 2. Request authorization and receive the authorization code.
+        String nonce = UUID.randomUUID().toString();
+        String state = UUID.randomUUID().toString();
+
+        AuthorizationRequest authorizationRequest = new AuthorizationRequest(responseTypes, clientId, scopes, redirectUri, nonce);
+        authorizationRequest.setState(state);
+
+        AuthorizationResponse authorizationResponse = authenticateResourceOwnerAndGrantAccess(
+                authorizationEndpoint, authorizationRequest, userId, userSecret);
+
+        assertNotNull(authorizationResponse.getLocation(), "The location is null");
+        assertNotNull(authorizationResponse.getCode(), "The authorization code is null");
+        assertNotNull(authorizationResponse.getState(), "The state is null");
+        assertNotNull(authorizationResponse.getScope(), "The scope is null");
+
+        String authorizationCode = authorizationResponse.getCode();
+
+        // 3. Request access token using the authorization code.
+        TokenRequest tokenRequest = new TokenRequest(GrantType.AUTHORIZATION_CODE);
+        tokenRequest.setCode(authorizationCode);
+        tokenRequest.setRedirectUri(redirectUri);
+        tokenRequest.setAuthUsername(clientId);
+        tokenRequest.setAuthPassword(clientSecret);
+        tokenRequest.setAuthenticationMethod(AuthenticationMethod.CLIENT_SECRET_BASIC);
+
+        TokenClient tokenClient = new TokenClient(tokenEndpoint);
+        tokenClient.setRequest(tokenRequest);
+        TokenResponse tokenResponse = tokenClient.exec();
+
+        showClient(tokenClient);
+        assertEquals(tokenResponse.getStatus(), 200, "Unexpected response code: " + tokenResponse.getStatus());
+        assertNotNull(tokenResponse.getEntity(), "The entity is null");
+        assertNotNull(tokenResponse.getAccessToken(), "The access token is null");
+        assertNotNull(tokenResponse.getExpiresIn(), "The expires in value is null");
+        assertNotNull(tokenResponse.getTokenType(), "The token type is null");
+        assertNotNull(tokenResponse.getRefreshToken(), "The refresh token is null");
+
+        String accessToken = tokenResponse.getAccessToken();
+
+        // 4. Request user info
+        {
+            UserInfoClient userInfoClient = new UserInfoClient(userInfoEndpoint);
+            UserInfoResponse userInfoResponse = userInfoClient.execUserInfo(accessToken);
+
+            showClient(userInfoClient);
+            assertEquals(userInfoResponse.getStatus(), 200, "Unexpected response code: " + userInfoResponse.getStatus());
+            assertNotNull(userInfoResponse.getClaim(JwtClaimName.SUBJECT_IDENTIFIER));
+            assertNotNull(userInfoResponse.getClaim(JwtClaimName.NAME));
+            assertNotNull(userInfoResponse.getClaim(JwtClaimName.BIRTHDATE));
+            assertNotNull(userInfoResponse.getClaim(JwtClaimName.FAMILY_NAME));
+            assertNotNull(userInfoResponse.getClaim(JwtClaimName.GENDER));
+            assertNotNull(userInfoResponse.getClaim(JwtClaimName.GIVEN_NAME));
+            assertNotNull(userInfoResponse.getClaim(JwtClaimName.MIDDLE_NAME));
+            assertNotNull(userInfoResponse.getClaim(JwtClaimName.NICKNAME));
+            assertNotNull(userInfoResponse.getClaim(JwtClaimName.PICTURE));
+            assertNotNull(userInfoResponse.getClaim(JwtClaimName.PREFERRED_USERNAME));
+            assertNotNull(userInfoResponse.getClaim(JwtClaimName.PROFILE));
+            assertNotNull(userInfoResponse.getClaim(JwtClaimName.WEBSITE));
+            assertNotNull(userInfoResponse.getClaim(JwtClaimName.EMAIL));
+            assertNotNull(userInfoResponse.getClaim(JwtClaimName.EMAIL_VERIFIED));
+            assertNotNull(userInfoResponse.getClaim(JwtClaimName.PHONE_NUMBER));
+            assertNotNull(userInfoResponse.getClaim(JwtClaimName.PHONE_NUMBER_VERIFIED));
+            assertNotNull(userInfoResponse.getClaim(JwtClaimName.ADDRESS));
+            assertNotNull(userInfoResponse.getClaim(JwtClaimName.LOCALE));
+            assertNotNull(userInfoResponse.getClaim(JwtClaimName.ZONEINFO));
+            assertNotNull(userInfoResponse.getClaim(JwtClaimName.USER_NAME));
+            assertNull(userInfoResponse.getClaim("org_name"));
+            assertNull(userInfoResponse.getClaim("work_phone"));
+        }
+
+        Thread.sleep(5000);
+
+        // 5. Request user info
+        {
+            UserInfoClient userInfoClient = new UserInfoClient(userInfoEndpoint);
+            UserInfoResponse userInfoResponse = userInfoClient.execUserInfo(accessToken);
+
+            showClient(userInfoClient);
+            assertEquals(userInfoResponse.getStatus(), 401, "Unexpected response code: " + userInfoResponse.getStatus());
+            assertNotNull(userInfoResponse.getErrorType(), "Unexpected result: errorType not found");
+            assertNotNull(userInfoResponse.getErrorDescription(), "Unexpected result: errorDescription not found");
+        }
+    }
+}
\ No newline at end of file
diff --git a/oxAuth/Client/src/test/java/org/gluu/oxauth/ws/rs/ClientTestUtil.java b/oxAuth/Client/src/test/java/org/gluu/oxauth/ws/rs/ClientTestUtil.java
new file mode 100644
index 00000000..f583ec1a
--- /dev/null
+++ b/oxAuth/Client/src/test/java/org/gluu/oxauth/ws/rs/ClientTestUtil.java
@@ -0,0 +1,33 @@
+/*
+ * oxAuth is available under the MIT License (2008). See http://opensource.org/licenses/MIT for full text.
+ *
+ * Copyright (c) 2014, Gluu
+ */
+
+package org.gluu.oxauth.ws.rs;
+
+import static org.gluu.oxauth.model.uma.TestUtil.assertNotBlank;
+import static org.testng.Assert.assertNotNull;
+
+import org.gluu.oxauth.client.RegisterResponse;
+
+/**
+ * @author Yuriy Zabrovarnyy
+ * @version 0.9, 16/10/2013
+ */
+
+public class ClientTestUtil {
+
+    private ClientTestUtil() {
+    }
+
+    public static void assert_(RegisterResponse p_response) {
+        assertNotNull(p_response);
+        assertNotBlank(p_response.getClientId());
+        assertNotBlank(p_response.getClientSecret());
+        assertNotBlank(p_response.getRegistrationAccessToken());
+        assertNotBlank(p_response.getRegistrationClientUri());
+        assertNotNull(p_response.getClientIdIssuedAt());
+        assertNotNull(p_response.getClientSecretExpiresAt());
+    }
+}
diff --git a/oxAuth/Client/src/test/java/org/gluu/oxauth/ws/rs/ClientWhiteListBlackListRedirectUris.java b/oxAuth/Client/src/test/java/org/gluu/oxauth/ws/rs/ClientWhiteListBlackListRedirectUris.java
new file mode 100644
index 00000000..1ae72d18
--- /dev/null
+++ b/oxAuth/Client/src/test/java/org/gluu/oxauth/ws/rs/ClientWhiteListBlackListRedirectUris.java
@@ -0,0 +1,127 @@
+/*
+ * oxAuth is available under the MIT License (2008). See http://opensource.org/licenses/MIT for full text.
+ *
+ * Copyright (c) 2014, Gluu
+ */
+
+package org.gluu.oxauth.ws.rs;
+
+import static org.gluu.oxauth.model.register.RegisterRequestParam.SCOPE;
+import static org.testng.Assert.assertEquals;
+import static org.testng.Assert.assertFalse;
+import static org.testng.Assert.assertNotNull;
+import static org.testng.Assert.assertTrue;
+
+import java.util.Arrays;
+import java.util.List;
+
+import javax.ws.rs.HttpMethod;
+
+import org.gluu.oxauth.BaseTest;
+import org.gluu.oxauth.client.RegisterClient;
+import org.gluu.oxauth.client.RegisterRequest;
+import org.gluu.oxauth.client.RegisterResponse;
+import org.gluu.oxauth.model.register.ApplicationType;
+import org.gluu.oxauth.model.util.StringUtils;
+import org.gluu.oxauth.model.util.URLPatternList;
+import org.testng.annotations.Parameters;
+import org.testng.annotations.Test;
+
+/**
+ * @author Javier Rojas Blum
+ * @version November 29, 2017
+ */
+public class ClientWhiteListBlackListRedirectUris extends BaseTest {
+
+    private String registrationAccessToken1;
+    private String registrationClientUri1;
+
+    @Test
+    public void testUrlPatterList() {
+        showTitle("testUrlPatterList");
+
+        List<String> urlPatterns = Arrays.asList(
+                "*.gluu.org/foo*bar",
+                "https://example.org/foo/bar.html",
+                "*.attacker.com/*");
+
+        URLPatternList urlPatternList = new URLPatternList(urlPatterns);
+        assertFalse(urlPatternList.isUrlListed("gluu.org"));
+        assertFalse(urlPatternList.isUrlListed("www.gluu.org"));
+        assertTrue(urlPatternList.isUrlListed("http://gluu.org/foo/bar"));
+        assertTrue(urlPatternList.isUrlListed("https://mail.gluu.org/foo/bar"));
+        assertTrue(urlPatternList.isUrlListed("http://www.gluu.org/foobar"));
+        assertTrue(urlPatternList.isUrlListed("https://www.gluu.org/foo/baz/bar"));
+        assertFalse(urlPatternList.isUrlListed("http://example.org"));
+        assertFalse(urlPatternList.isUrlListed("http://example.org/foo/bar.html"));
+        assertTrue(urlPatternList.isUrlListed("https://example.org/foo/bar.html"));
+        assertTrue(urlPatternList.isUrlListed("http://attacker.com"));
+        assertTrue(urlPatternList.isUrlListed("https://www.attacker.com"));
+        assertTrue(urlPatternList.isUrlListed("https://www.attacker.com/foo/bar"));
+    }
+
+    @Test
+    public void requestClientAssociateInBlackList() throws Exception {
+        showTitle("requestClientAssociateInBlackList");
+
+        final String redirectUris = "https://www.attacker.com";
+
+        RegisterClient registerClient = new RegisterClient(registrationEndpoint);
+        RegisterResponse response = registerClient.execRegister(ApplicationType.WEB, "oxAuth test app",
+                StringUtils.spaceSeparatedToList(redirectUris));
+
+        showClient(registerClient);
+        assertEquals(response.getStatus(), 400, "Unexpected response code: " + response.getEntity());
+        assertNotNull(response.getEntity(), "The entity is null");
+        assertNotNull(response.getErrorType(), "The error type is null");
+        assertNotNull(response.getErrorDescription(), "The error description is null");
+    }
+
+    @Parameters({"redirectUris", "sectorIdentifierUri"})
+    @Test
+    public void requestClientAssociate(final String redirectUris, final String sectorIdentifierUri) throws Exception {
+        showTitle("requestClientAssociate");
+
+        RegisterRequest registerRequest = new RegisterRequest(ApplicationType.WEB, "oxAuth test app",
+                StringUtils.spaceSeparatedToList(redirectUris));
+        registerRequest.setSectorIdentifierUri(sectorIdentifierUri);
+
+        RegisterClient registerClient = new RegisterClient(registrationEndpoint);
+        registerClient.setRequest(registerRequest);
+        registerClient.setExecutor(clientEngine(true));
+        RegisterResponse response = registerClient.exec();
+
+        showClient(registerClient);
+        assertEquals(response.getStatus(), 200, "Unexpected response code: " + response.getEntity());
+        assertNotNull(response.getClientId());
+        assertNotNull(response.getClientSecret());
+        assertNotNull(response.getRegistrationAccessToken());
+        assertNotNull(response.getClientSecretExpiresAt());
+        assertNotNull(response.getClaims().get(SCOPE.toString()));
+
+        registrationAccessToken1 = response.getRegistrationAccessToken();
+        registrationClientUri1 = response.getRegistrationClientUri();
+    }
+
+    @Test(dependsOnMethods = "requestClientAssociate")
+    public void requestClientUpdate() throws Exception {
+        showTitle("requestClientUpdate");
+
+        final String redirectUris = "https://www.attacker.com";
+
+        final RegisterRequest registerRequest = new RegisterRequest(registrationAccessToken1);
+        registerRequest.setHttpMethod(HttpMethod.PUT);
+        registerRequest.setRedirectUris(StringUtils.spaceSeparatedToList(redirectUris));
+
+        final RegisterClient registerClient = new RegisterClient(registrationClientUri1);
+        registerClient.setRequest(registerRequest);
+        registerClient.setExecutor(clientEngine(true));
+        final RegisterResponse response = registerClient.exec();
+
+        showClient(registerClient);
+        assertEquals(response.getStatus(), 400, "Unexpected response code: " + response.getEntity());
+        assertNotNull(response.getEntity(), "The entity is null");
+        assertNotNull(response.getErrorType(), "The error type is null");
+        assertNotNull(response.getErrorDescription(), "The error description is null");
+    }
+}
\ No newline at end of file
diff --git a/oxAuth/Client/src/test/java/org/gluu/oxauth/ws/rs/ConfigurationRestWebServiceHttpTest.java b/oxAuth/Client/src/test/java/org/gluu/oxauth/ws/rs/ConfigurationRestWebServiceHttpTest.java
new file mode 100644
index 00000000..09b757dc
--- /dev/null
+++ b/oxAuth/Client/src/test/java/org/gluu/oxauth/ws/rs/ConfigurationRestWebServiceHttpTest.java
@@ -0,0 +1,124 @@
+/*
+ * oxAuth is available under the MIT License (2008). See http://opensource.org/licenses/MIT for full text.
+ *
+ * Copyright (c) 2014, Gluu
+ */
+
+package org.gluu.oxauth.ws.rs;
+
+import static org.testng.Assert.assertEquals;
+import static org.testng.Assert.assertFalse;
+import static org.testng.Assert.assertNotNull;
+import static org.testng.Assert.assertTrue;
+
+import java.util.List;
+import java.util.Map;
+
+import org.apache.http.impl.client.CloseableHttpClient;
+import org.gluu.oxauth.BaseTest;
+import org.gluu.oxauth.client.OpenIdConfigurationClient;
+import org.gluu.oxauth.client.OpenIdConfigurationResponse;
+import org.gluu.oxauth.client.OpenIdConnectDiscoveryClient;
+import org.gluu.oxauth.client.OpenIdConnectDiscoveryResponse;
+import org.gluu.oxauth.dev.HostnameVerifierType;
+import org.jboss.resteasy.client.jaxrs.engines.ApacheHttpClient43Engine;
+import org.testng.annotations.Parameters;
+import org.testng.annotations.Test;
+
+/**
+ * Functional tests for OpenId Configuration Web Services (HTTP)
+ *
+ * @author Javier Rojas Blum
+ * @version July 10, 2019
+ */
+public class ConfigurationRestWebServiceHttpTest extends BaseTest {
+
+    @Test
+    @Parameters({"swdResource"})
+    public void requestOpenIdConfiguration(final String resource) throws Exception {
+        showTitle("OpenID Connect Discovery");
+
+        OpenIdConnectDiscoveryClient openIdConnectDiscoveryClient = new OpenIdConnectDiscoveryClient(resource);
+        
+        CloseableHttpClient httpClient = createHttpClient(HostnameVerifierType.ALLOW_ALL);
+        OpenIdConnectDiscoveryResponse openIdConnectDiscoveryResponse;
+		try {
+			openIdConnectDiscoveryResponse = openIdConnectDiscoveryClient.exec(new ApacheHttpClient43Engine(httpClient));
+		} finally {
+			httpClient.close();
+		}
+
+        showClient(openIdConnectDiscoveryClient);
+        assertEquals(openIdConnectDiscoveryResponse.getStatus(), 200, "Unexpected response code");
+        assertNotNull(openIdConnectDiscoveryResponse.getSubject());
+        assertTrue(openIdConnectDiscoveryResponse.getLinks().size() > 0);
+
+        String configurationEndpoint = openIdConnectDiscoveryResponse.getLinks().get(0).getHref() +
+                "/.well-known/openid-configuration";
+
+        showTitle("OpenID Connect Configuration");
+
+        OpenIdConfigurationClient client = new OpenIdConfigurationClient(configurationEndpoint);
+        OpenIdConfigurationResponse response = client.execOpenIdConfiguration();
+
+        showClient(client);
+        assertEquals(response.getStatus(), 200, "Unexpected response code");
+        assertNotNull(response.getIssuer(), "The issuer is null");
+        assertNotNull(response.getAuthorizationEndpoint(), "The authorizationEndpoint is null");
+        assertNotNull(response.getTokenEndpoint(), "The tokenEndpoint is null");
+        assertNotNull(response.getRevocationEndpoint(), "The tokenRevocationEndpoint is null");
+        assertNotNull(response.getUserInfoEndpoint(), "The userInfoEndPoint is null");
+        assertNotNull(response.getClientInfoEndpoint(), "The clientInfoEndPoint is null");
+        assertNotNull(response.getCheckSessionIFrame(), "The checkSessionIFrame is null");
+        assertNotNull(response.getEndSessionEndpoint(), "The endSessionEndpoint is null");
+        assertNotNull(response.getJwksUri(), "The jwksUri is null");
+        assertNotNull(response.getRegistrationEndpoint(), "The registrationEndpoint is null");
+        assertNotNull(response.getIntrospectionEndpoint(), "The introspectionEndpoint is null");
+        assertNotNull(response.getIdGenerationEndpoint(), "The idGenerationEndpoint is null");
+
+        assertTrue(response.getScopesSupported().size() > 0, "The scopesSupported is empty");
+        assertTrue(response.getScopeToClaimsMapping().size() > 0, "The scope to claims mapping is empty");
+        assertTrue(response.getResponseTypesSupported().size() > 0, "The responseTypesSupported is empty");
+        assertTrue(response.getResponseModesSupported().size() > 0, "The responseModesSupported is empty");
+        assertTrue(response.getGrantTypesSupported().size() > 0, "The grantTypesSupported is empty");
+        assertTrue(response.getAcrValuesSupported().size() >= 0, "The acrValuesSupported is empty");
+        assertTrue(response.getSubjectTypesSupported().size() > 0, "The subjectTypesSupported is empty");
+        assertTrue(response.getUserInfoSigningAlgValuesSupported().size() > 0, "The userInfoSigningAlgValuesSupported is empty");
+        assertTrue(response.getUserInfoEncryptionAlgValuesSupported().size() > 0, "The userInfoEncryptionAlgValuesSupported is empty");
+        assertTrue(response.getUserInfoEncryptionEncValuesSupported().size() > 0, "The userInfoEncryptionEncValuesSupported is empty");
+        assertTrue(response.getIdTokenSigningAlgValuesSupported().size() > 0, "The idTokenSigningAlgValuesSupported is empty");
+        assertTrue(response.getIdTokenEncryptionAlgValuesSupported().size() > 0, "The idTokenEncryptionAlgValuesSupported is empty");
+        assertTrue(response.getIdTokenEncryptionEncValuesSupported().size() > 0, "The idTokenEncryptionEncValuesSupported is empty");
+        assertTrue(response.getRequestObjectSigningAlgValuesSupported().size() > 0, "The requestObjectSigningAlgValuesSupported is empty");
+        assertTrue(response.getRequestObjectEncryptionAlgValuesSupported().size() > 0, "The requestObjectEncryptionAlgValuesSupported is empty");
+        assertTrue(response.getRequestObjectEncryptionEncValuesSupported().size() > 0, "The requestObjectEncryptionEncValuesSupported is empty");
+        assertTrue(response.getTokenEndpointAuthMethodsSupported().size() > 0, "The tokenEndpointAuthMethodsSupported is empty");
+        assertTrue(response.getTokenEndpointAuthSigningAlgValuesSupported().size() > 0, "The tokenEndpointAuthSigningAlgValuesSupported is empty");
+
+        assertTrue(response.getDisplayValuesSupported().size() > 0, "The displayValuesSupported is empty");
+        assertTrue(response.getClaimTypesSupported().size() > 0, "The claimTypesSupported is empty");
+        assertTrue(response.getClaimsSupported().size() > 0, "The claimsSupported is empty");
+        assertNotNull(response.getServiceDocumentation(), "The serviceDocumentation is null");
+        assertTrue(response.getClaimsLocalesSupported().size() > 0, "The claimsLocalesSupported is empty");
+        assertTrue(response.getUiLocalesSupported().size() > 0, "The uiLocalesSupported is empty");
+        assertTrue(response.getClaimsParameterSupported(), "The claimsParameterSupported is false");
+        assertTrue(response.getRequestParameterSupported(), "The requestParameterSupported is false");
+        assertTrue(response.getRequestUriParameterSupported(), "The requestUriParameterSupported is false");
+        assertFalse(response.getRequireRequestUriRegistration(), "The requireRequestUriRegistration is true");
+        assertNotNull(response.getOpPolicyUri(), "The opPolicyUri is null");
+        assertNotNull(response.getOpTosUri(), "The opTosUri is null");
+
+        // oxAuth #917: Add dynamic scopes and claims to discovery
+        Map<String, List<String>> scopeToClaims = response.getScopeToClaimsMapping();
+        List<String> scopesSupported = response.getScopesSupported();
+        List<String> claimsSupported = response.getClaimsSupported();
+        for (Map.Entry<String, List<String>> scopeEntry : scopeToClaims.entrySet()) {
+            assertTrue(scopesSupported.contains(scopeEntry.getKey()),
+                    "The scopes supported list does not contain the scope: " + scopeEntry.getKey());
+            for (String claimEntry : scopeEntry.getValue()) {
+                assertTrue(claimsSupported.contains(claimEntry),
+                        "The claims supported list does not contain the claim: " + claimEntry);
+            }
+        }
+    }
+}
\ No newline at end of file
diff --git a/oxAuth/Client/src/test/java/org/gluu/oxauth/ws/rs/EnableClientToRestrictJavascriptOrigin.java b/oxAuth/Client/src/test/java/org/gluu/oxauth/ws/rs/EnableClientToRestrictJavascriptOrigin.java
new file mode 100644
index 00000000..1b91f5de
--- /dev/null
+++ b/oxAuth/Client/src/test/java/org/gluu/oxauth/ws/rs/EnableClientToRestrictJavascriptOrigin.java
@@ -0,0 +1,198 @@
+/*
+ * oxAuth is available under the MIT License (2008). See http://opensource.org/licenses/MIT for full text.
+ *
+ * Copyright (c) 2014, Gluu
+ */
+
+package org.gluu.oxauth.ws.rs;
+
+import static org.testng.Assert.assertEquals;
+import static org.testng.Assert.assertNotNull;
+import static org.testng.Assert.assertNull;
+import static org.testng.Assert.assertTrue;
+
+import java.util.Arrays;
+import java.util.List;
+import java.util.UUID;
+
+import org.gluu.oxauth.BaseTest;
+import org.gluu.oxauth.client.AuthorizationRequest;
+import org.gluu.oxauth.client.AuthorizationResponse;
+import org.gluu.oxauth.client.JwkClient;
+import org.gluu.oxauth.client.RegisterClient;
+import org.gluu.oxauth.client.RegisterRequest;
+import org.gluu.oxauth.client.RegisterResponse;
+import org.gluu.oxauth.client.TokenClient;
+import org.gluu.oxauth.client.TokenRequest;
+import org.gluu.oxauth.client.TokenResponse;
+import org.gluu.oxauth.client.UserInfoClient;
+import org.gluu.oxauth.client.UserInfoResponse;
+import org.gluu.oxauth.model.common.AuthenticationMethod;
+import org.gluu.oxauth.model.common.GrantType;
+import org.gluu.oxauth.model.common.ResponseType;
+import org.gluu.oxauth.model.common.SubjectType;
+import org.gluu.oxauth.model.crypto.signature.RSAPublicKey;
+import org.gluu.oxauth.model.crypto.signature.SignatureAlgorithm;
+import org.gluu.oxauth.model.jws.RSASigner;
+import org.gluu.oxauth.model.jwt.Jwt;
+import org.gluu.oxauth.model.jwt.JwtClaimName;
+import org.gluu.oxauth.model.jwt.JwtHeaderName;
+import org.gluu.oxauth.model.register.ApplicationType;
+import org.gluu.oxauth.model.register.RegisterRequestParam;
+import org.gluu.oxauth.model.util.StringUtils;
+import org.testng.annotations.Parameters;
+import org.testng.annotations.Test;
+
+/**
+ * @author Javier Rojas Blum
+ * @version March 20, 2018
+ */
+public class EnableClientToRestrictJavascriptOrigin extends BaseTest {
+
+    /**
+     * Test for the complete Authorization Code Flow.
+     */
+    @Parameters({"userId", "userSecret", "redirectUris", "redirectUri", "sectorIdentifierUri"})
+    @Test
+    public void enableClientToRestrictJavascriptOrigin(
+            final String userId, final String userSecret, final String redirectUris, final String redirectUri,
+            final String sectorIdentifierUri) throws Exception {
+        showTitle("enableClientToRestrictJavascriptOrigin");
+
+        List<ResponseType> responseTypes = Arrays.asList(
+                ResponseType.CODE,
+                ResponseType.ID_TOKEN);
+        List<String> scopes = Arrays.asList("openid", "profile", "address", "email", "phone", "user_name");
+
+        // 1. Register client
+        List<String> authorizedOrigins = Arrays.asList("https://ce.gluu.info:8443");
+
+        RegisterRequest registerRequest = new RegisterRequest(ApplicationType.WEB, "oxAuth test app",
+                StringUtils.spaceSeparatedToList(redirectUris));
+        registerRequest.setResponseTypes(responseTypes);
+        registerRequest.setScope(scopes);
+        registerRequest.setSubjectType(SubjectType.PAIRWISE);
+        registerRequest.setSectorIdentifierUri(sectorIdentifierUri);
+        registerRequest.setAuthorizedOrigins(authorizedOrigins);
+
+        RegisterClient registerClient = new RegisterClient(registrationEndpoint);
+        registerClient.setRequest(registerRequest);
+        RegisterResponse registerResponse = registerClient.exec();
+
+        showClient(registerClient);
+        assertEquals(registerResponse.getStatus(), 200, "Unexpected response code: " + registerResponse.getEntity());
+        assertNotNull(registerResponse.getClientId());
+        assertNotNull(registerResponse.getClientSecret());
+        assertNotNull(registerResponse.getRegistrationAccessToken());
+        assertNotNull(registerResponse.getClientIdIssuedAt());
+        assertNotNull(registerResponse.getClientSecretExpiresAt());
+        assertTrue(registerResponse.getClaims().containsKey(RegisterRequestParam.AUTHORIZED_ORIGINS.toString()));
+
+        String clientId = registerResponse.getClientId();
+        String clientSecret = registerResponse.getClientSecret();
+
+        // 2. Request authorization and receive the authorization code.
+        String nonce = UUID.randomUUID().toString();
+        String state = UUID.randomUUID().toString();
+
+        AuthorizationRequest authorizationRequest = new AuthorizationRequest(responseTypes, clientId, scopes, redirectUri, nonce);
+        authorizationRequest.setState(state);
+
+        AuthorizationResponse authorizationResponse = authenticateResourceOwnerAndGrantAccess(
+                authorizationEndpoint, authorizationRequest, userId, userSecret);
+
+        assertNotNull(authorizationResponse.getLocation(), "The location is null");
+        assertNotNull(authorizationResponse.getCode(), "The authorization code is null");
+        assertNotNull(authorizationResponse.getState(), "The state is null");
+        assertNotNull(authorizationResponse.getScope(), "The scope is null");
+
+        String scope = authorizationResponse.getScope();
+        String authorizationCode = authorizationResponse.getCode();
+        String idToken = authorizationResponse.getIdToken();
+
+        // 3. Request access token using the authorization code.
+        TokenRequest tokenRequest = new TokenRequest(GrantType.AUTHORIZATION_CODE);
+        tokenRequest.setCode(authorizationCode);
+        tokenRequest.setRedirectUri(redirectUri);
+        tokenRequest.setAuthUsername(clientId);
+        tokenRequest.setAuthPassword(clientSecret);
+        tokenRequest.setAuthenticationMethod(AuthenticationMethod.CLIENT_SECRET_BASIC);
+
+        TokenClient tokenClient1 = new TokenClient(tokenEndpoint);
+        tokenClient1.setRequest(tokenRequest);
+        TokenResponse tokenResponse1 = tokenClient1.exec();
+
+        showClient(tokenClient1);
+        assertEquals(tokenResponse1.getStatus(), 200, "Unexpected response code: " + tokenResponse1.getStatus());
+        assertNotNull(tokenResponse1.getEntity(), "The entity is null");
+        assertNotNull(tokenResponse1.getAccessToken(), "The access token is null");
+        assertNotNull(tokenResponse1.getExpiresIn(), "The expires in value is null");
+        assertNotNull(tokenResponse1.getTokenType(), "The token type is null");
+        assertNotNull(tokenResponse1.getRefreshToken(), "The refresh token is null");
+
+        String refreshToken = tokenResponse1.getRefreshToken();
+
+        // 4. Validate id_token
+        Jwt jwt = Jwt.parse(idToken);
+        assertNotNull(jwt.getHeader().getClaimAsString(JwtHeaderName.TYPE));
+        assertNotNull(jwt.getHeader().getClaimAsString(JwtHeaderName.ALGORITHM));
+        assertNotNull(jwt.getClaims().getClaimAsString(JwtClaimName.ISSUER));
+        assertNotNull(jwt.getClaims().getClaimAsString(JwtClaimName.AUDIENCE));
+        assertNotNull(jwt.getClaims().getClaimAsString(JwtClaimName.EXPIRATION_TIME));
+        assertNotNull(jwt.getClaims().getClaimAsString(JwtClaimName.ISSUED_AT));
+        assertNotNull(jwt.getClaims().getClaimAsString(JwtClaimName.SUBJECT_IDENTIFIER));
+        assertNotNull(jwt.getClaims().getClaimAsString(JwtClaimName.CODE_HASH));
+        assertNotNull(jwt.getClaims().getClaimAsString(JwtClaimName.AUTHENTICATION_TIME));
+        assertNotNull(jwt.getClaims().getClaimAsString(JwtClaimName.OX_OPENID_CONNECT_VERSION));
+
+        RSAPublicKey publicKey = JwkClient.getRSAPublicKey(
+                jwksUri,
+                jwt.getHeader().getClaimAsString(JwtHeaderName.KEY_ID));
+        RSASigner rsaSigner = new RSASigner(SignatureAlgorithm.RS256, publicKey);
+
+        assertTrue(rsaSigner.validate(jwt));
+
+        // 5. Request new access token using the refresh token.
+        TokenClient tokenClient2 = new TokenClient(tokenEndpoint);
+        TokenResponse tokenResponse2 = tokenClient2.execRefreshToken(scope, refreshToken, clientId, clientSecret);
+
+        showClient(tokenClient2);
+        assertEquals(tokenResponse2.getStatus(), 200, "Unexpected response code: " + tokenResponse2.getStatus());
+        assertNotNull(tokenResponse2.getEntity(), "The entity is null");
+        assertNotNull(tokenResponse2.getAccessToken(), "The access token is null");
+        assertNotNull(tokenResponse2.getTokenType(), "The token type is null");
+        assertNotNull(tokenResponse2.getRefreshToken(), "The refresh token is null");
+        assertNotNull(tokenResponse2.getScope(), "The scope is null");
+
+        String accessToken = tokenResponse2.getAccessToken();
+
+        // 6. Request user info
+        UserInfoClient userInfoClient = new UserInfoClient(userInfoEndpoint);
+        UserInfoResponse userInfoResponse = userInfoClient.execUserInfo(accessToken);
+
+        showClient(userInfoClient);
+        assertEquals(userInfoResponse.getStatus(), 200, "Unexpected response code: " + userInfoResponse.getStatus());
+        assertNotNull(userInfoResponse.getClaim(JwtClaimName.SUBJECT_IDENTIFIER));
+        assertNotNull(userInfoResponse.getClaim(JwtClaimName.NAME));
+        assertNotNull(userInfoResponse.getClaim(JwtClaimName.BIRTHDATE));
+        assertNotNull(userInfoResponse.getClaim(JwtClaimName.FAMILY_NAME));
+        assertNotNull(userInfoResponse.getClaim(JwtClaimName.GENDER));
+        assertNotNull(userInfoResponse.getClaim(JwtClaimName.GIVEN_NAME));
+        assertNotNull(userInfoResponse.getClaim(JwtClaimName.MIDDLE_NAME));
+        assertNotNull(userInfoResponse.getClaim(JwtClaimName.NICKNAME));
+        assertNotNull(userInfoResponse.getClaim(JwtClaimName.PICTURE));
+        assertNotNull(userInfoResponse.getClaim(JwtClaimName.PREFERRED_USERNAME));
+        assertNotNull(userInfoResponse.getClaim(JwtClaimName.PROFILE));
+        assertNotNull(userInfoResponse.getClaim(JwtClaimName.WEBSITE));
+        assertNotNull(userInfoResponse.getClaim(JwtClaimName.EMAIL));
+        assertNotNull(userInfoResponse.getClaim(JwtClaimName.EMAIL_VERIFIED));
+        assertNotNull(userInfoResponse.getClaim(JwtClaimName.PHONE_NUMBER));
+        assertNotNull(userInfoResponse.getClaim(JwtClaimName.PHONE_NUMBER_VERIFIED));
+        assertNotNull(userInfoResponse.getClaim(JwtClaimName.ADDRESS));
+        assertNotNull(userInfoResponse.getClaim(JwtClaimName.LOCALE));
+        assertNotNull(userInfoResponse.getClaim(JwtClaimName.ZONEINFO));
+        assertNotNull(userInfoResponse.getClaim(JwtClaimName.USER_NAME));
+        assertNull(userInfoResponse.getClaim("org_name"));
+        assertNull(userInfoResponse.getClaim("work_phone"));
+    }
+}
diff --git a/oxAuth/Client/src/test/java/org/gluu/oxauth/ws/rs/EncodeClaimsInStateParameter.java b/oxAuth/Client/src/test/java/org/gluu/oxauth/ws/rs/EncodeClaimsInStateParameter.java
new file mode 100644
index 00000000..41fc6598
--- /dev/null
+++ b/oxAuth/Client/src/test/java/org/gluu/oxauth/ws/rs/EncodeClaimsInStateParameter.java
@@ -0,0 +1,1772 @@
+/*
+ * oxAuth is available under the MIT License (2008). See http://opensource.org/licenses/MIT for full text.
+ *
+ * Copyright (c) 2014, Gluu
+ */
+
+package org.gluu.oxauth.ws.rs;
+
+import static org.gluu.oxauth.model.jwt.JwtStateClaimName.ADDITIONAL_CLAIMS;
+import static org.gluu.oxauth.model.jwt.JwtStateClaimName.JTI;
+import static org.gluu.oxauth.model.jwt.JwtStateClaimName.KID;
+import static org.gluu.oxauth.model.jwt.JwtStateClaimName.RFP;
+import static org.testng.Assert.assertEquals;
+import static org.testng.Assert.assertNotNull;
+import static org.testng.Assert.assertTrue;
+
+import java.security.PrivateKey;
+import java.util.Arrays;
+import java.util.List;
+import java.util.UUID;
+
+import org.gluu.oxauth.BaseTest;
+import org.gluu.oxauth.client.AuthorizationRequest;
+import org.gluu.oxauth.client.AuthorizationResponse;
+import org.gluu.oxauth.client.RegisterClient;
+import org.gluu.oxauth.client.RegisterRequest;
+import org.gluu.oxauth.client.RegisterResponse;
+import org.gluu.oxauth.client.model.JwtState;
+import org.gluu.oxauth.model.common.ResponseType;
+import org.gluu.oxauth.model.crypto.AbstractCryptoProvider;
+import org.gluu.oxauth.model.crypto.OxAuthCryptoProvider;
+import org.gluu.oxauth.model.crypto.encryption.BlockEncryptionAlgorithm;
+import org.gluu.oxauth.model.crypto.encryption.KeyEncryptionAlgorithm;
+import org.gluu.oxauth.model.crypto.signature.SignatureAlgorithm;
+import org.gluu.oxauth.model.jwe.Jwe;
+import org.gluu.oxauth.model.jwt.Jwt;
+import org.gluu.oxauth.model.register.ApplicationType;
+import org.gluu.oxauth.model.util.JwtUtil;
+import org.gluu.oxauth.model.util.StringUtils;
+import org.json.JSONObject;
+import org.testng.annotations.Parameters;
+import org.testng.annotations.Test;
+
+/**
+ * @author Javier Rojas Blum
+ * @version February 8, 2019
+ */
+public class EncodeClaimsInStateParameter extends BaseTest {
+
+    private final String additionalClaims = "{first_name: 'Javier', last_name: 'Rojas', age: 34, more: ['foo', 'bar']}";
+
+    @Parameters({"userId", "userSecret", "redirectUris", "redirectUri", "sectorIdentifierUri"})
+    @Test
+    public void encodeClaimsInStateParameterHS256(
+            final String userId, final String userSecret, final String redirectUris, final String redirectUri,
+            final String sectorIdentifierUri) throws Exception {
+        showTitle("encodeClaimsInStateParameterHS256");
+
+        List<ResponseType> responseTypes = Arrays.asList(
+                ResponseType.TOKEN,
+                ResponseType.ID_TOKEN);
+
+        // 1. Register client
+        RegisterRequest registerRequest = new RegisterRequest(ApplicationType.WEB, "oxAuth test app",
+                StringUtils.spaceSeparatedToList(redirectUris));
+        registerRequest.setResponseTypes(responseTypes);
+        registerRequest.setSectorIdentifierUri(sectorIdentifierUri);
+
+        RegisterClient registerClient = new RegisterClient(registrationEndpoint);
+        registerClient.setRequest(registerRequest);
+        RegisterResponse registerResponse = registerClient.exec();
+
+        showClient(registerClient);
+        assertEquals(registerResponse.getStatus(), 200, "Unexpected response code: " + registerResponse.getEntity());
+        assertNotNull(registerResponse.getClientId());
+        assertNotNull(registerResponse.getClientSecret());
+        assertNotNull(registerResponse.getRegistrationAccessToken());
+        assertNotNull(registerResponse.getClientIdIssuedAt());
+        assertNotNull(registerResponse.getClientSecretExpiresAt());
+
+        String clientId = registerResponse.getClientId();
+        String clientSecret = registerResponse.getClientSecret();
+
+        // 2. Request authorization
+        OxAuthCryptoProvider cryptoProvider = new OxAuthCryptoProvider();
+
+        List<String> scopes = Arrays.asList("openid", "profile", "address", "email");
+        String nonce = UUID.randomUUID().toString();
+        String rfp = UUID.randomUUID().toString();
+        String jti = UUID.randomUUID().toString();
+
+        JwtState jwtState = new JwtState(SignatureAlgorithm.HS256, clientSecret, cryptoProvider);
+        jwtState.setRfp(rfp);
+        jwtState.setJti(jti);
+        jwtState.setAdditionalClaims(new JSONObject(additionalClaims));
+        String encodedState = jwtState.getEncodedJwt();
+
+        AuthorizationRequest authorizationRequest = new AuthorizationRequest(responseTypes, clientId, scopes, redirectUri, nonce);
+        authorizationRequest.setState(encodedState);
+
+        AuthorizationResponse authorizationResponse = authenticateResourceOwnerAndGrantAccess(
+                authorizationEndpoint, authorizationRequest, userId, userSecret);
+
+        assertNotNull(authorizationResponse.getLocation(), "The location is null");
+        assertNotNull(authorizationResponse.getAccessToken(), "The accessToken is null");
+        assertNotNull(authorizationResponse.getTokenType(), "The tokenType is null");
+        assertNotNull(authorizationResponse.getIdToken(), "The idToken is null");
+        assertNotNull(authorizationResponse.getState(), "The state is null");
+
+        String state = authorizationResponse.getState();
+
+        // 3. Validate state
+        Jwt jwt = Jwt.parse(state);
+        boolean validJwt = cryptoProvider.verifySignature(jwt.getSigningInput(), jwt.getEncodedSignature(), null,
+                null, clientSecret, SignatureAlgorithm.HS256);
+        assertTrue(validJwt);
+    }
+
+    @Parameters({"userId", "userSecret", "redirectUris", "redirectUri", "sectorIdentifierUri"})
+    @Test
+    public void encodeClaimsInStateParameterHS384(
+            final String userId, final String userSecret, final String redirectUris, final String redirectUri,
+            final String sectorIdentifierUri) throws Exception {
+        showTitle("encodeClaimsInStateParameterHS384");
+
+        List<ResponseType> responseTypes = Arrays.asList(
+                ResponseType.TOKEN,
+                ResponseType.ID_TOKEN);
+
+        // 1. Register client
+        RegisterRequest registerRequest = new RegisterRequest(ApplicationType.WEB, "oxAuth test app",
+                StringUtils.spaceSeparatedToList(redirectUris));
+        registerRequest.setResponseTypes(responseTypes);
+        registerRequest.setSectorIdentifierUri(sectorIdentifierUri);
+
+        RegisterClient registerClient = new RegisterClient(registrationEndpoint);
+        registerClient.setRequest(registerRequest);
+        RegisterResponse registerResponse = registerClient.exec();
+
+        showClient(registerClient);
+        assertEquals(registerResponse.getStatus(), 200, "Unexpected response code: " + registerResponse.getEntity());
+        assertNotNull(registerResponse.getClientId());
+        assertNotNull(registerResponse.getClientSecret());
+        assertNotNull(registerResponse.getRegistrationAccessToken());
+        assertNotNull(registerResponse.getClientIdIssuedAt());
+        assertNotNull(registerResponse.getClientSecretExpiresAt());
+
+        String clientId = registerResponse.getClientId();
+        String clientSecret = registerResponse.getClientSecret();
+
+        // 2. Request authorization
+        OxAuthCryptoProvider cryptoProvider = new OxAuthCryptoProvider();
+
+        List<String> scopes = Arrays.asList("openid", "profile", "address", "email");
+        String nonce = UUID.randomUUID().toString();
+        String rfp = UUID.randomUUID().toString();
+        String jti = UUID.randomUUID().toString();
+
+        JwtState jwtState = new JwtState(SignatureAlgorithm.HS384, clientSecret, cryptoProvider);
+        jwtState.setRfp(rfp);
+        jwtState.setJti(jti);
+        jwtState.setAdditionalClaims(new JSONObject(additionalClaims));
+        String encodedState = jwtState.getEncodedJwt();
+
+        AuthorizationRequest authorizationRequest = new AuthorizationRequest(responseTypes, clientId, scopes, redirectUri, nonce);
+        authorizationRequest.setState(encodedState);
+
+        AuthorizationResponse authorizationResponse = authenticateResourceOwnerAndGrantAccess(
+                authorizationEndpoint, authorizationRequest, userId, userSecret);
+
+        assertNotNull(authorizationResponse.getLocation(), "The location is null");
+        assertNotNull(authorizationResponse.getAccessToken(), "The accessToken is null");
+        assertNotNull(authorizationResponse.getTokenType(), "The tokenType is null");
+        assertNotNull(authorizationResponse.getIdToken(), "The idToken is null");
+        assertNotNull(authorizationResponse.getState(), "The state is null");
+
+        String state = authorizationResponse.getState();
+
+        // 3. Validate state
+        Jwt jwt = Jwt.parse(state);
+        boolean validJwt = cryptoProvider.verifySignature(jwt.getSigningInput(), jwt.getEncodedSignature(), null,
+                null, clientSecret, SignatureAlgorithm.HS384);
+        assertTrue(validJwt);
+    }
+
+    @Parameters({"userId", "userSecret", "redirectUris", "redirectUri", "sectorIdentifierUri"})
+    @Test
+    public void encodeClaimsInStateParameterHS512(
+            final String userId, final String userSecret, final String redirectUris, final String redirectUri,
+            final String sectorIdentifierUri) throws Exception {
+        showTitle("encodeClaimsInStateParameterHS512");
+
+        List<ResponseType> responseTypes = Arrays.asList(
+                ResponseType.TOKEN,
+                ResponseType.ID_TOKEN);
+
+        // 1. Register client
+        RegisterRequest registerRequest = new RegisterRequest(ApplicationType.WEB, "oxAuth test app",
+                StringUtils.spaceSeparatedToList(redirectUris));
+        registerRequest.setResponseTypes(responseTypes);
+        registerRequest.setSectorIdentifierUri(sectorIdentifierUri);
+
+        RegisterClient registerClient = new RegisterClient(registrationEndpoint);
+        registerClient.setRequest(registerRequest);
+        RegisterResponse registerResponse = registerClient.exec();
+
+        showClient(registerClient);
+        assertEquals(registerResponse.getStatus(), 200, "Unexpected response code: " + registerResponse.getEntity());
+        assertNotNull(registerResponse.getClientId());
+        assertNotNull(registerResponse.getClientSecret());
+        assertNotNull(registerResponse.getRegistrationAccessToken());
+        assertNotNull(registerResponse.getClientIdIssuedAt());
+        assertNotNull(registerResponse.getClientSecretExpiresAt());
+
+        String clientId = registerResponse.getClientId();
+        String clientSecret = registerResponse.getClientSecret();
+
+        // 2. Request authorization
+        OxAuthCryptoProvider cryptoProvider = new OxAuthCryptoProvider();
+
+        List<String> scopes = Arrays.asList("openid", "profile", "address", "email");
+        String nonce = UUID.randomUUID().toString();
+        String rfp = UUID.randomUUID().toString();
+        String jti = UUID.randomUUID().toString();
+
+        JwtState jwtState = new JwtState(SignatureAlgorithm.HS512, clientSecret, cryptoProvider);
+        jwtState.setRfp(rfp);
+        jwtState.setJti(jti);
+        jwtState.setAdditionalClaims(new JSONObject(additionalClaims));
+        String encodedState = jwtState.getEncodedJwt();
+
+        AuthorizationRequest authorizationRequest = new AuthorizationRequest(responseTypes, clientId, scopes, redirectUri, nonce);
+        authorizationRequest.setState(encodedState);
+
+        AuthorizationResponse authorizationResponse = authenticateResourceOwnerAndGrantAccess(
+                authorizationEndpoint, authorizationRequest, userId, userSecret);
+
+        assertNotNull(authorizationResponse.getLocation(), "The location is null");
+        assertNotNull(authorizationResponse.getAccessToken(), "The accessToken is null");
+        assertNotNull(authorizationResponse.getTokenType(), "The tokenType is null");
+        assertNotNull(authorizationResponse.getIdToken(), "The idToken is null");
+        assertNotNull(authorizationResponse.getState(), "The state is null");
+
+        String state = authorizationResponse.getState();
+
+        // 3. Validate state
+        Jwt jwt = Jwt.parse(state);
+        boolean validJwt = cryptoProvider.verifySignature(jwt.getSigningInput(), jwt.getEncodedSignature(), null,
+                null, clientSecret, SignatureAlgorithm.HS512);
+        assertTrue(validJwt);
+    }
+
+    @Parameters({"userId", "userSecret", "redirectUris", "redirectUri", "sectorIdentifierUri",
+            "keyStoreFile", "keyStoreSecret", "dnName", "RS256_keyId"})
+    @Test
+    public void encodeClaimsInStateParameterRS256(
+            final String userId, final String userSecret, final String redirectUris, final String redirectUri,
+            final String sectorIdentifierUri, final String keyStoreFile, final String keyStoreSecret,
+            final String dnName, final String keyId) throws Exception {
+        showTitle("encodeClaimsInStateParameterRS256");
+
+        List<ResponseType> responseTypes = Arrays.asList(
+                ResponseType.TOKEN,
+                ResponseType.ID_TOKEN);
+
+        // 1. Register client
+        RegisterRequest registerRequest = new RegisterRequest(ApplicationType.WEB, "oxAuth test app",
+                StringUtils.spaceSeparatedToList(redirectUris));
+        registerRequest.setResponseTypes(responseTypes);
+        registerRequest.setSectorIdentifierUri(sectorIdentifierUri);
+
+        RegisterClient registerClient = new RegisterClient(registrationEndpoint);
+        registerClient.setRequest(registerRequest);
+        RegisterResponse registerResponse = registerClient.exec();
+
+        showClient(registerClient);
+        assertEquals(registerResponse.getStatus(), 200, "Unexpected response code: " + registerResponse.getEntity());
+        assertNotNull(registerResponse.getClientId());
+        assertNotNull(registerResponse.getClientSecret());
+        assertNotNull(registerResponse.getRegistrationAccessToken());
+        assertNotNull(registerResponse.getClientIdIssuedAt());
+        assertNotNull(registerResponse.getClientSecretExpiresAt());
+
+        String clientId = registerResponse.getClientId();
+
+        // 2. Request authorization
+        OxAuthCryptoProvider cryptoProvider = new OxAuthCryptoProvider(keyStoreFile, keyStoreSecret, dnName);
+
+        List<String> scopes = Arrays.asList("openid", "profile", "address", "email");
+        String nonce = UUID.randomUUID().toString();
+        String rfp = UUID.randomUUID().toString();
+        String jti = UUID.randomUUID().toString();
+
+        JwtState jwtState = new JwtState(SignatureAlgorithm.RS256, cryptoProvider);
+        jwtState.setKeyId(keyId);
+        jwtState.setRfp(rfp);
+        jwtState.setJti(jti);
+        jwtState.setAdditionalClaims(new JSONObject(additionalClaims));
+        String encodedState = jwtState.getEncodedJwt();
+
+        AuthorizationRequest authorizationRequest = new AuthorizationRequest(responseTypes, clientId, scopes, redirectUri, nonce);
+        authorizationRequest.setState(encodedState);
+
+        AuthorizationResponse authorizationResponse = authenticateResourceOwnerAndGrantAccess(
+                authorizationEndpoint, authorizationRequest, userId, userSecret);
+
+        assertNotNull(authorizationResponse.getLocation(), "The location is null");
+        assertNotNull(authorizationResponse.getAccessToken(), "The accessToken is null");
+        assertNotNull(authorizationResponse.getTokenType(), "The tokenType is null");
+        assertNotNull(authorizationResponse.getIdToken(), "The idToken is null");
+        assertNotNull(authorizationResponse.getState(), "The state is null");
+
+        String state = authorizationResponse.getState();
+
+        // 3. Validate state
+        Jwt jwt = Jwt.parse(state);
+        boolean validJwt = cryptoProvider.verifySignature(jwt.getSigningInput(), jwt.getEncodedSignature(), keyId,
+                null, null, SignatureAlgorithm.RS256);
+        assertTrue(validJwt);
+    }
+
+    @Parameters({"userId", "userSecret", "redirectUris", "redirectUri", "sectorIdentifierUri",
+            "keyStoreFile", "keyStoreSecret", "dnName", "RS384_keyId"})
+    @Test
+    public void encodeClaimsInStateParameterRS384(
+            final String userId, final String userSecret, final String redirectUris, final String redirectUri,
+            final String sectorIdentifierUri, final String keyStoreFile, final String keyStoreSecret,
+            final String dnName, final String keyId) throws Exception {
+        showTitle("encodeClaimsInStateParameterRS384");
+
+        List<ResponseType> responseTypes = Arrays.asList(
+                ResponseType.TOKEN,
+                ResponseType.ID_TOKEN);
+
+        // 1. Register client
+        RegisterRequest registerRequest = new RegisterRequest(ApplicationType.WEB, "oxAuth test app",
+                StringUtils.spaceSeparatedToList(redirectUris));
+        registerRequest.setResponseTypes(responseTypes);
+        registerRequest.setSectorIdentifierUri(sectorIdentifierUri);
+
+        RegisterClient registerClient = new RegisterClient(registrationEndpoint);
+        registerClient.setRequest(registerRequest);
+        RegisterResponse registerResponse = registerClient.exec();
+
+        showClient(registerClient);
+        assertEquals(registerResponse.getStatus(), 200, "Unexpected response code: " + registerResponse.getEntity());
+        assertNotNull(registerResponse.getClientId());
+        assertNotNull(registerResponse.getClientSecret());
+        assertNotNull(registerResponse.getRegistrationAccessToken());
+        assertNotNull(registerResponse.getClientIdIssuedAt());
+        assertNotNull(registerResponse.getClientSecretExpiresAt());
+
+        String clientId = registerResponse.getClientId();
+
+        // 2. Request authorization
+        OxAuthCryptoProvider cryptoProvider = new OxAuthCryptoProvider(keyStoreFile, keyStoreSecret, dnName);
+
+        List<String> scopes = Arrays.asList("openid", "profile", "address", "email");
+        String nonce = UUID.randomUUID().toString();
+        String rfp = UUID.randomUUID().toString();
+        String jti = UUID.randomUUID().toString();
+
+        JwtState jwtState = new JwtState(SignatureAlgorithm.RS384, cryptoProvider);
+        jwtState.setKeyId(keyId);
+        jwtState.setRfp(rfp);
+        jwtState.setJti(jti);
+        jwtState.setAdditionalClaims(new JSONObject(additionalClaims));
+        String encodedState = jwtState.getEncodedJwt();
+
+        AuthorizationRequest authorizationRequest = new AuthorizationRequest(responseTypes, clientId, scopes, redirectUri, nonce);
+        authorizationRequest.setState(encodedState);
+
+        AuthorizationResponse authorizationResponse = authenticateResourceOwnerAndGrantAccess(
+                authorizationEndpoint, authorizationRequest, userId, userSecret);
+
+        assertNotNull(authorizationResponse.getLocation(), "The location is null");
+        assertNotNull(authorizationResponse.getAccessToken(), "The accessToken is null");
+        assertNotNull(authorizationResponse.getTokenType(), "The tokenType is null");
+        assertNotNull(authorizationResponse.getIdToken(), "The idToken is null");
+        assertNotNull(authorizationResponse.getState(), "The state is null");
+
+        String state = authorizationResponse.getState();
+
+        // 3. Validate state
+        Jwt jwt = Jwt.parse(state);
+        boolean validJwt = cryptoProvider.verifySignature(jwt.getSigningInput(), jwt.getEncodedSignature(), keyId,
+                null, null, SignatureAlgorithm.RS384);
+        assertTrue(validJwt);
+    }
+
+    @Parameters({"userId", "userSecret", "redirectUris", "redirectUri", "sectorIdentifierUri",
+            "keyStoreFile", "keyStoreSecret", "dnName", "RS512_keyId"})
+    @Test
+    public void encodeClaimsInStateParameterRS512(
+            final String userId, final String userSecret, final String redirectUris, final String redirectUri,
+            final String sectorIdentifierUri, final String keyStoreFile, final String keyStoreSecret,
+            final String dnName, final String keyId) throws Exception {
+        showTitle("encodeClaimsInStateParameterRS512");
+
+        List<ResponseType> responseTypes = Arrays.asList(
+                ResponseType.TOKEN,
+                ResponseType.ID_TOKEN);
+
+        // 1. Register client
+        RegisterRequest registerRequest = new RegisterRequest(ApplicationType.WEB, "oxAuth test app",
+                StringUtils.spaceSeparatedToList(redirectUris));
+        registerRequest.setResponseTypes(responseTypes);
+        registerRequest.setSectorIdentifierUri(sectorIdentifierUri);
+
+        RegisterClient registerClient = new RegisterClient(registrationEndpoint);
+        registerClient.setRequest(registerRequest);
+        RegisterResponse registerResponse = registerClient.exec();
+
+        showClient(registerClient);
+        assertEquals(registerResponse.getStatus(), 200, "Unexpected response code: " + registerResponse.getEntity());
+        assertNotNull(registerResponse.getClientId());
+        assertNotNull(registerResponse.getClientSecret());
+        assertNotNull(registerResponse.getRegistrationAccessToken());
+        assertNotNull(registerResponse.getClientIdIssuedAt());
+        assertNotNull(registerResponse.getClientSecretExpiresAt());
+
+        String clientId = registerResponse.getClientId();
+
+        // 2. Request authorization
+        OxAuthCryptoProvider cryptoProvider = new OxAuthCryptoProvider(keyStoreFile, keyStoreSecret, dnName);
+
+        List<String> scopes = Arrays.asList("openid", "profile", "address", "email");
+        String nonce = UUID.randomUUID().toString();
+        String rfp = UUID.randomUUID().toString();
+        String jti = UUID.randomUUID().toString();
+
+        JwtState jwtState = new JwtState(SignatureAlgorithm.RS512, cryptoProvider);
+        jwtState.setKeyId(keyId);
+        jwtState.setRfp(rfp);
+        jwtState.setJti(jti);
+        jwtState.setAdditionalClaims(new JSONObject(additionalClaims));
+        String encodedState = jwtState.getEncodedJwt();
+
+        AuthorizationRequest authorizationRequest = new AuthorizationRequest(responseTypes, clientId, scopes, redirectUri, nonce);
+        authorizationRequest.setState(encodedState);
+
+        AuthorizationResponse authorizationResponse = authenticateResourceOwnerAndGrantAccess(
+                authorizationEndpoint, authorizationRequest, userId, userSecret);
+
+        assertNotNull(authorizationResponse.getLocation(), "The location is null");
+        assertNotNull(authorizationResponse.getAccessToken(), "The accessToken is null");
+        assertNotNull(authorizationResponse.getTokenType(), "The tokenType is null");
+        assertNotNull(authorizationResponse.getIdToken(), "The idToken is null");
+        assertNotNull(authorizationResponse.getState(), "The state is null");
+
+        String state = authorizationResponse.getState();
+
+        // 3. Validate state
+        Jwt jwt = Jwt.parse(state);
+        boolean validJwt = cryptoProvider.verifySignature(jwt.getSigningInput(), jwt.getEncodedSignature(), keyId,
+                null, null, SignatureAlgorithm.RS512);
+        assertTrue(validJwt);
+    }
+
+    @Parameters({"userId", "userSecret", "redirectUris", "redirectUri", "sectorIdentifierUri",
+            "keyStoreFile", "keyStoreSecret", "dnName", "ES256_keyId"})
+    @Test
+    public void encodeClaimsInStateParameterES256(
+            final String userId, final String userSecret, final String redirectUris, final String redirectUri,
+            final String sectorIdentifierUri, final String keyStoreFile, final String keyStoreSecret,
+            final String dnName, final String keyId) throws Exception {
+        showTitle("encodeClaimsInStateParameterES256");
+
+        List<ResponseType> responseTypes = Arrays.asList(
+                ResponseType.TOKEN,
+                ResponseType.ID_TOKEN);
+
+        // 1. Register client
+        RegisterRequest registerRequest = new RegisterRequest(ApplicationType.WEB, "oxAuth test app",
+                StringUtils.spaceSeparatedToList(redirectUris));
+        registerRequest.setResponseTypes(responseTypes);
+        registerRequest.setSectorIdentifierUri(sectorIdentifierUri);
+
+        RegisterClient registerClient = new RegisterClient(registrationEndpoint);
+        registerClient.setRequest(registerRequest);
+        RegisterResponse registerResponse = registerClient.exec();
+
+        showClient(registerClient);
+        assertEquals(registerResponse.getStatus(), 200, "Unexpected response code: " + registerResponse.getEntity());
+        assertNotNull(registerResponse.getClientId());
+        assertNotNull(registerResponse.getClientSecret());
+        assertNotNull(registerResponse.getRegistrationAccessToken());
+        assertNotNull(registerResponse.getClientIdIssuedAt());
+        assertNotNull(registerResponse.getClientSecretExpiresAt());
+
+        String clientId = registerResponse.getClientId();
+
+        // 2. Request authorization
+        OxAuthCryptoProvider cryptoProvider = new OxAuthCryptoProvider(keyStoreFile, keyStoreSecret, dnName);
+
+        List<String> scopes = Arrays.asList("openid", "profile", "address", "email");
+        String nonce = UUID.randomUUID().toString();
+        String rfp = UUID.randomUUID().toString();
+        String jti = UUID.randomUUID().toString();
+
+        JwtState jwtState = new JwtState(SignatureAlgorithm.ES256, cryptoProvider);
+        jwtState.setKeyId(keyId);
+        jwtState.setRfp(rfp);
+        jwtState.setJti(jti);
+        jwtState.setAdditionalClaims(new JSONObject(additionalClaims));
+        String encodedState = jwtState.getEncodedJwt();
+
+        AuthorizationRequest authorizationRequest = new AuthorizationRequest(responseTypes, clientId, scopes, redirectUri, nonce);
+        authorizationRequest.setState(encodedState);
+
+        AuthorizationResponse authorizationResponse = authenticateResourceOwnerAndGrantAccess(
+                authorizationEndpoint, authorizationRequest, userId, userSecret);
+
+        assertNotNull(authorizationResponse.getLocation(), "The location is null");
+        assertNotNull(authorizationResponse.getAccessToken(), "The accessToken is null");
+        assertNotNull(authorizationResponse.getTokenType(), "The tokenType is null");
+        assertNotNull(authorizationResponse.getIdToken(), "The idToken is null");
+        assertNotNull(authorizationResponse.getState(), "The state is null");
+
+        String state = authorizationResponse.getState();
+
+        // 3. Validate state
+        Jwt jwt = Jwt.parse(state);
+        boolean validJwt = cryptoProvider.verifySignature(jwt.getSigningInput(), jwt.getEncodedSignature(), keyId,
+                null, null, SignatureAlgorithm.ES256);
+        assertTrue(validJwt);
+    }
+
+    @Parameters({"userId", "userSecret", "redirectUris", "redirectUri", "sectorIdentifierUri",
+            "keyStoreFile", "keyStoreSecret", "dnName", "ES384_keyId"})
+    @Test
+    public void encodeClaimsInStateParameterES384(
+            final String userId, final String userSecret, final String redirectUris, final String redirectUri,
+            final String sectorIdentifierUri, final String keyStoreFile, final String keyStoreSecret,
+            final String dnName, final String keyId) throws Exception {
+        showTitle("encodeClaimsInStateParameterES384");
+
+        List<ResponseType> responseTypes = Arrays.asList(
+                ResponseType.TOKEN,
+                ResponseType.ID_TOKEN);
+
+        // 1. Register client
+        RegisterRequest registerRequest = new RegisterRequest(ApplicationType.WEB, "oxAuth test app",
+                StringUtils.spaceSeparatedToList(redirectUris));
+        registerRequest.setResponseTypes(responseTypes);
+        registerRequest.setSectorIdentifierUri(sectorIdentifierUri);
+
+        RegisterClient registerClient = new RegisterClient(registrationEndpoint);
+        registerClient.setRequest(registerRequest);
+        RegisterResponse registerResponse = registerClient.exec();
+
+        showClient(registerClient);
+        assertEquals(registerResponse.getStatus(), 200, "Unexpected response code: " + registerResponse.getEntity());
+        assertNotNull(registerResponse.getClientId());
+        assertNotNull(registerResponse.getClientSecret());
+        assertNotNull(registerResponse.getRegistrationAccessToken());
+        assertNotNull(registerResponse.getClientIdIssuedAt());
+        assertNotNull(registerResponse.getClientSecretExpiresAt());
+
+        String clientId = registerResponse.getClientId();
+
+        // 2. Request authorization
+        OxAuthCryptoProvider cryptoProvider = new OxAuthCryptoProvider(keyStoreFile, keyStoreSecret, dnName);
+
+        List<String> scopes = Arrays.asList("openid", "profile", "address", "email");
+        String nonce = UUID.randomUUID().toString();
+        String rfp = UUID.randomUUID().toString();
+        String jti = UUID.randomUUID().toString();
+
+        JwtState jwtState = new JwtState(SignatureAlgorithm.ES384, cryptoProvider);
+        jwtState.setKeyId(keyId);
+        jwtState.setRfp(rfp);
+        jwtState.setJti(jti);
+        jwtState.setAdditionalClaims(new JSONObject(additionalClaims));
+        String encodedState = jwtState.getEncodedJwt();
+
+        AuthorizationRequest authorizationRequest = new AuthorizationRequest(responseTypes, clientId, scopes, redirectUri, nonce);
+        authorizationRequest.setState(encodedState);
+
+        AuthorizationResponse authorizationResponse = authenticateResourceOwnerAndGrantAccess(
+                authorizationEndpoint, authorizationRequest, userId, userSecret);
+
+        assertNotNull(authorizationResponse.getLocation(), "The location is null");
+        assertNotNull(authorizationResponse.getAccessToken(), "The accessToken is null");
+        assertNotNull(authorizationResponse.getTokenType(), "The tokenType is null");
+        assertNotNull(authorizationResponse.getIdToken(), "The idToken is null");
+        assertNotNull(authorizationResponse.getState(), "The state is null");
+
+        String state = authorizationResponse.getState();
+
+        // 3. Validate state
+        Jwt jwt = Jwt.parse(state);
+        boolean validJwt = cryptoProvider.verifySignature(jwt.getSigningInput(), jwt.getEncodedSignature(), keyId,
+                null, null, SignatureAlgorithm.ES384);
+        assertTrue(validJwt);
+    }
+
+    @Parameters({"userId", "userSecret", "redirectUris", "redirectUri", "sectorIdentifierUri",
+            "keyStoreFile", "keyStoreSecret", "dnName", "ES512_keyId"})
+    @Test
+    public void encodeClaimsInStateParameterES512(
+            final String userId, final String userSecret, final String redirectUris, final String redirectUri,
+            final String sectorIdentifierUri, final String keyStoreFile, final String keyStoreSecret,
+            final String dnName, final String keyId) throws Exception {
+        showTitle("encodeClaimsInStateParameterES512");
+
+        List<ResponseType> responseTypes = Arrays.asList(
+                ResponseType.TOKEN,
+                ResponseType.ID_TOKEN);
+
+        // 1. Register client
+        RegisterRequest registerRequest = new RegisterRequest(ApplicationType.WEB, "oxAuth test app",
+                StringUtils.spaceSeparatedToList(redirectUris));
+        registerRequest.setResponseTypes(responseTypes);
+        registerRequest.setSectorIdentifierUri(sectorIdentifierUri);
+
+        RegisterClient registerClient = new RegisterClient(registrationEndpoint);
+        registerClient.setRequest(registerRequest);
+        RegisterResponse registerResponse = registerClient.exec();
+
+        showClient(registerClient);
+        assertEquals(registerResponse.getStatus(), 200, "Unexpected response code: " + registerResponse.getEntity());
+        assertNotNull(registerResponse.getClientId());
+        assertNotNull(registerResponse.getClientSecret());
+        assertNotNull(registerResponse.getRegistrationAccessToken());
+        assertNotNull(registerResponse.getClientIdIssuedAt());
+        assertNotNull(registerResponse.getClientSecretExpiresAt());
+
+        String clientId = registerResponse.getClientId();
+
+        // 2. Request authorization
+        OxAuthCryptoProvider cryptoProvider = new OxAuthCryptoProvider(keyStoreFile, keyStoreSecret, dnName);
+
+        List<String> scopes = Arrays.asList("openid", "profile", "address", "email");
+        String nonce = UUID.randomUUID().toString();
+        String rfp = UUID.randomUUID().toString();
+        String jti = UUID.randomUUID().toString();
+
+        JwtState jwtState = new JwtState(SignatureAlgorithm.ES512, cryptoProvider);
+        jwtState.setKeyId(keyId);
+        jwtState.setRfp(rfp);
+        jwtState.setJti(jti);
+        jwtState.setAdditionalClaims(new JSONObject(additionalClaims));
+        String encodedState = jwtState.getEncodedJwt();
+
+        AuthorizationRequest authorizationRequest = new AuthorizationRequest(responseTypes, clientId, scopes, redirectUri, nonce);
+        authorizationRequest.setState(encodedState);
+
+        AuthorizationResponse authorizationResponse = authenticateResourceOwnerAndGrantAccess(
+                authorizationEndpoint, authorizationRequest, userId, userSecret);
+
+        assertNotNull(authorizationResponse.getLocation(), "The location is null");
+        assertNotNull(authorizationResponse.getAccessToken(), "The accessToken is null");
+        assertNotNull(authorizationResponse.getTokenType(), "The tokenType is null");
+        assertNotNull(authorizationResponse.getIdToken(), "The idToken is null");
+        assertNotNull(authorizationResponse.getState(), "The state is null");
+
+        String state = authorizationResponse.getState();
+
+        // 3. Validate state
+        Jwt jwt = Jwt.parse(state);
+        boolean validJwt = cryptoProvider.verifySignature(jwt.getSigningInput(), jwt.getEncodedSignature(), keyId,
+                null, null, SignatureAlgorithm.ES512);
+        assertTrue(validJwt);
+    }
+
+    @Parameters({"userId", "userSecret", "redirectUris", "redirectUri", "sectorIdentifierUri",
+            "keyStoreFile", "keyStoreSecret", "dnName", "PS256_keyId"})
+    @Test
+    public void encodeClaimsInStateParameterPS256(
+            final String userId, final String userSecret, final String redirectUris, final String redirectUri,
+            final String sectorIdentifierUri, final String keyStoreFile, final String keyStoreSecret,
+            final String dnName, final String keyId) throws Exception {
+        showTitle("encodeClaimsInStateParameterPS256");
+
+        List<ResponseType> responseTypes = Arrays.asList(
+                ResponseType.TOKEN,
+                ResponseType.ID_TOKEN);
+
+        // 1. Register client
+        RegisterRequest registerRequest = new RegisterRequest(ApplicationType.WEB, "oxAuth test app",
+                StringUtils.spaceSeparatedToList(redirectUris));
+        registerRequest.setResponseTypes(responseTypes);
+        registerRequest.setSectorIdentifierUri(sectorIdentifierUri);
+
+        RegisterClient registerClient = new RegisterClient(registrationEndpoint);
+        registerClient.setRequest(registerRequest);
+        RegisterResponse registerResponse = registerClient.exec();
+
+        showClient(registerClient);
+        assertEquals(registerResponse.getStatus(), 200, "Unexpected response code: " + registerResponse.getEntity());
+        assertNotNull(registerResponse.getClientId());
+        assertNotNull(registerResponse.getClientSecret());
+        assertNotNull(registerResponse.getRegistrationAccessToken());
+        assertNotNull(registerResponse.getClientIdIssuedAt());
+        assertNotNull(registerResponse.getClientSecretExpiresAt());
+
+        String clientId = registerResponse.getClientId();
+
+        // 2. Request authorization
+        OxAuthCryptoProvider cryptoProvider = new OxAuthCryptoProvider(keyStoreFile, keyStoreSecret, dnName);
+
+        List<String> scopes = Arrays.asList("openid", "profile", "address", "email");
+        String nonce = UUID.randomUUID().toString();
+        String rfp = UUID.randomUUID().toString();
+        String jti = UUID.randomUUID().toString();
+
+        JwtState jwtState = new JwtState(SignatureAlgorithm.PS256, cryptoProvider);
+        jwtState.setKeyId(keyId);
+        jwtState.setRfp(rfp);
+        jwtState.setJti(jti);
+        jwtState.setAdditionalClaims(new JSONObject(additionalClaims));
+        String encodedState = jwtState.getEncodedJwt();
+
+        AuthorizationRequest authorizationRequest = new AuthorizationRequest(responseTypes, clientId, scopes, redirectUri, nonce);
+        authorizationRequest.setState(encodedState);
+
+        AuthorizationResponse authorizationResponse = authenticateResourceOwnerAndGrantAccess(
+                authorizationEndpoint, authorizationRequest, userId, userSecret);
+
+        assertNotNull(authorizationResponse.getLocation(), "The location is null");
+        assertNotNull(authorizationResponse.getAccessToken(), "The accessToken is null");
+        assertNotNull(authorizationResponse.getTokenType(), "The tokenType is null");
+        assertNotNull(authorizationResponse.getIdToken(), "The idToken is null");
+        assertNotNull(authorizationResponse.getState(), "The state is null");
+
+        String state = authorizationResponse.getState();
+
+        // 3. Validate state
+        Jwt jwt = Jwt.parse(state);
+        boolean validJwt = cryptoProvider.verifySignature(jwt.getSigningInput(), jwt.getEncodedSignature(), keyId,
+                null, null, SignatureAlgorithm.PS256);
+        assertTrue(validJwt);
+    }
+
+    @Parameters({"userId", "userSecret", "redirectUris", "redirectUri", "sectorIdentifierUri",
+            "keyStoreFile", "keyStoreSecret", "dnName", "PS384_keyId"})
+    @Test
+    public void encodeClaimsInStateParameterPS384(
+            final String userId, final String userSecret, final String redirectUris, final String redirectUri,
+            final String sectorIdentifierUri, final String keyStoreFile, final String keyStoreSecret,
+            final String dnName, final String keyId) throws Exception {
+        showTitle("encodeClaimsInStateParameterPS384");
+
+        List<ResponseType> responseTypes = Arrays.asList(
+                ResponseType.TOKEN,
+                ResponseType.ID_TOKEN);
+
+        // 1. Register client
+        RegisterRequest registerRequest = new RegisterRequest(ApplicationType.WEB, "oxAuth test app",
+                StringUtils.spaceSeparatedToList(redirectUris));
+        registerRequest.setResponseTypes(responseTypes);
+        registerRequest.setSectorIdentifierUri(sectorIdentifierUri);
+
+        RegisterClient registerClient = new RegisterClient(registrationEndpoint);
+        registerClient.setRequest(registerRequest);
+        RegisterResponse registerResponse = registerClient.exec();
+
+        showClient(registerClient);
+        assertEquals(registerResponse.getStatus(), 200, "Unexpected response code: " + registerResponse.getEntity());
+        assertNotNull(registerResponse.getClientId());
+        assertNotNull(registerResponse.getClientSecret());
+        assertNotNull(registerResponse.getRegistrationAccessToken());
+        assertNotNull(registerResponse.getClientIdIssuedAt());
+        assertNotNull(registerResponse.getClientSecretExpiresAt());
+
+        String clientId = registerResponse.getClientId();
+
+        // 2. Request authorization
+        OxAuthCryptoProvider cryptoProvider = new OxAuthCryptoProvider(keyStoreFile, keyStoreSecret, dnName);
+
+        List<String> scopes = Arrays.asList("openid", "profile", "address", "email");
+        String nonce = UUID.randomUUID().toString();
+        String rfp = UUID.randomUUID().toString();
+        String jti = UUID.randomUUID().toString();
+
+        JwtState jwtState = new JwtState(SignatureAlgorithm.PS384, cryptoProvider);
+        jwtState.setKeyId(keyId);
+        jwtState.setRfp(rfp);
+        jwtState.setJti(jti);
+        jwtState.setAdditionalClaims(new JSONObject(additionalClaims));
+        String encodedState = jwtState.getEncodedJwt();
+
+        AuthorizationRequest authorizationRequest = new AuthorizationRequest(responseTypes, clientId, scopes, redirectUri, nonce);
+        authorizationRequest.setState(encodedState);
+
+        AuthorizationResponse authorizationResponse = authenticateResourceOwnerAndGrantAccess(
+                authorizationEndpoint, authorizationRequest, userId, userSecret);
+
+        assertNotNull(authorizationResponse.getLocation(), "The location is null");
+        assertNotNull(authorizationResponse.getAccessToken(), "The accessToken is null");
+        assertNotNull(authorizationResponse.getTokenType(), "The tokenType is null");
+        assertNotNull(authorizationResponse.getIdToken(), "The idToken is null");
+        assertNotNull(authorizationResponse.getState(), "The state is null");
+
+        String state = authorizationResponse.getState();
+
+        // 3. Validate state
+        Jwt jwt = Jwt.parse(state);
+        boolean validJwt = cryptoProvider.verifySignature(jwt.getSigningInput(), jwt.getEncodedSignature(), keyId,
+                null, null, SignatureAlgorithm.PS384);
+        assertTrue(validJwt);
+    }
+
+    @Parameters({"userId", "userSecret", "redirectUris", "redirectUri", "sectorIdentifierUri",
+            "keyStoreFile", "keyStoreSecret", "dnName", "PS512_keyId"})
+    @Test
+    public void encodeClaimsInStateParameterPS512(
+            final String userId, final String userSecret, final String redirectUris, final String redirectUri,
+            final String sectorIdentifierUri, final String keyStoreFile, final String keyStoreSecret,
+            final String dnName, final String keyId) throws Exception {
+        showTitle("encodeClaimsInStateParameterPS512");
+
+        List<ResponseType> responseTypes = Arrays.asList(
+                ResponseType.TOKEN,
+                ResponseType.ID_TOKEN);
+
+        // 1. Register client
+        RegisterRequest registerRequest = new RegisterRequest(ApplicationType.WEB, "oxAuth test app",
+                StringUtils.spaceSeparatedToList(redirectUris));
+        registerRequest.setResponseTypes(responseTypes);
+        registerRequest.setSectorIdentifierUri(sectorIdentifierUri);
+
+        RegisterClient registerClient = new RegisterClient(registrationEndpoint);
+        registerClient.setRequest(registerRequest);
+        RegisterResponse registerResponse = registerClient.exec();
+
+        showClient(registerClient);
+        assertEquals(registerResponse.getStatus(), 200, "Unexpected response code: " + registerResponse.getEntity());
+        assertNotNull(registerResponse.getClientId());
+        assertNotNull(registerResponse.getClientSecret());
+        assertNotNull(registerResponse.getRegistrationAccessToken());
+        assertNotNull(registerResponse.getClientIdIssuedAt());
+        assertNotNull(registerResponse.getClientSecretExpiresAt());
+
+        String clientId = registerResponse.getClientId();
+
+        // 2. Request authorization
+        OxAuthCryptoProvider cryptoProvider = new OxAuthCryptoProvider(keyStoreFile, keyStoreSecret, dnName);
+
+        List<String> scopes = Arrays.asList("openid", "profile", "address", "email");
+        String nonce = UUID.randomUUID().toString();
+        String rfp = UUID.randomUUID().toString();
+        String jti = UUID.randomUUID().toString();
+
+        JwtState jwtState = new JwtState(SignatureAlgorithm.PS512, cryptoProvider);
+        jwtState.setKeyId(keyId);
+        jwtState.setRfp(rfp);
+        jwtState.setJti(jti);
+        jwtState.setAdditionalClaims(new JSONObject(additionalClaims));
+        String encodedState = jwtState.getEncodedJwt();
+
+        AuthorizationRequest authorizationRequest = new AuthorizationRequest(responseTypes, clientId, scopes, redirectUri, nonce);
+        authorizationRequest.setState(encodedState);
+
+        AuthorizationResponse authorizationResponse = authenticateResourceOwnerAndGrantAccess(
+                authorizationEndpoint, authorizationRequest, userId, userSecret);
+
+        assertNotNull(authorizationResponse.getLocation(), "The location is null");
+        assertNotNull(authorizationResponse.getAccessToken(), "The accessToken is null");
+        assertNotNull(authorizationResponse.getTokenType(), "The tokenType is null");
+        assertNotNull(authorizationResponse.getIdToken(), "The idToken is null");
+        assertNotNull(authorizationResponse.getState(), "The state is null");
+
+        String state = authorizationResponse.getState();
+
+        // 3. Validate state
+        Jwt jwt = Jwt.parse(state);
+        boolean validJwt = cryptoProvider.verifySignature(jwt.getSigningInput(), jwt.getEncodedSignature(), keyId,
+                null, null, SignatureAlgorithm.PS512);
+        assertTrue(validJwt);
+    }
+
+    @Parameters({"userId", "userSecret", "redirectUris", "redirectUri", "sectorIdentifierUri",
+            "keyStoreFile", "keyStoreSecret", "dnName", "RS256_keyId", "clientJwksUri"})
+    @Test
+    public void encodeClaimsInStateParameterAlgRSAOAEPEncA256GCM(
+            final String userId, final String userSecret, final String redirectUris, final String redirectUri,
+            final String sectorIdentifierUri, final String keyStoreFile, final String keyStoreSecret,
+            final String dnName, final String keyId, final String clientJwksUri) throws Exception {
+        showTitle("encodeClaimsInStateParameterAlgRSAOAEPEncA256GCM");
+
+        List<ResponseType> responseTypes = Arrays.asList(
+                ResponseType.TOKEN,
+                ResponseType.ID_TOKEN);
+
+        // 1. Register client
+        RegisterRequest registerRequest = new RegisterRequest(ApplicationType.WEB, "oxAuth test app",
+                StringUtils.spaceSeparatedToList(redirectUris));
+        registerRequest.setResponseTypes(responseTypes);
+        registerRequest.setSectorIdentifierUri(sectorIdentifierUri);
+
+        RegisterClient registerClient = new RegisterClient(registrationEndpoint);
+        registerClient.setRequest(registerRequest);
+        RegisterResponse registerResponse = registerClient.exec();
+
+        showClient(registerClient);
+        assertEquals(registerResponse.getStatus(), 200, "Unexpected response code: " + registerResponse.getEntity());
+        assertNotNull(registerResponse.getClientId());
+        assertNotNull(registerResponse.getClientSecret());
+        assertNotNull(registerResponse.getRegistrationAccessToken());
+        assertNotNull(registerResponse.getClientIdIssuedAt());
+        assertNotNull(registerResponse.getClientSecretExpiresAt());
+
+        String clientId = registerResponse.getClientId();
+
+        // 2. Request authorization
+        JSONObject jwks = JwtUtil.getJSONWebKeys(clientJwksUri);
+        OxAuthCryptoProvider cryptoProvider = new OxAuthCryptoProvider(keyStoreFile, keyStoreSecret, dnName);
+
+        List<String> scopes = Arrays.asList("openid", "profile", "address", "email");
+        String nonce = UUID.randomUUID().toString();
+        String rfp = UUID.randomUUID().toString();
+        String jti = UUID.randomUUID().toString();
+
+        JwtState jwtState = new JwtState(KeyEncryptionAlgorithm.RSA_OAEP, BlockEncryptionAlgorithm.A256GCM, cryptoProvider);
+        jwtState.setKeyId(keyId);
+        jwtState.setRfp(rfp);
+        jwtState.setJti(jti);
+        jwtState.setAdditionalClaims(new JSONObject(additionalClaims));
+        String encodedState = jwtState.getEncodedJwt(jwks);
+
+        AuthorizationRequest authorizationRequest = new AuthorizationRequest(responseTypes, clientId, scopes, redirectUri, nonce);
+        authorizationRequest.setState(encodedState);
+
+        AuthorizationResponse authorizationResponse = authenticateResourceOwnerAndGrantAccess(
+                authorizationEndpoint, authorizationRequest, userId, userSecret);
+
+        assertNotNull(authorizationResponse.getLocation(), "The location is null");
+        assertNotNull(authorizationResponse.getAccessToken(), "The accessToken is null");
+        assertNotNull(authorizationResponse.getTokenType(), "The tokenType is null");
+        assertNotNull(authorizationResponse.getIdToken(), "The idToken is null");
+        assertNotNull(authorizationResponse.getState(), "The state is null");
+
+        String state = authorizationResponse.getState();
+
+        // 3. Decrypt state
+        PrivateKey privateKey = cryptoProvider.getPrivateKey(keyId);
+        Jwe jwe = Jwe.parse(state, privateKey, null);
+        assertNotNull(jwe.getClaims().getClaimAsString(KID));
+        assertNotNull(jwe.getClaims().getClaimAsString(RFP));
+        assertNotNull(jwe.getClaims().getClaimAsString(JTI));
+        assertNotNull(jwe.getClaims().getClaimAsJSON(ADDITIONAL_CLAIMS));
+
+        JSONObject addClaims = jwe.getClaims().getClaimAsJSON(ADDITIONAL_CLAIMS);
+        assertEquals(addClaims.getString("first_name"), "Javier");
+        assertEquals(addClaims.getString("last_name"), "Rojas");
+        assertEquals(addClaims.getInt("age"), 34);
+        assertNotNull(addClaims.getJSONArray("more"));
+        assertEquals(addClaims.getJSONArray("more").length(), 2);
+    }
+
+    @Parameters({"userId", "userSecret", "redirectUris", "redirectUri", "sectorIdentifierUri",
+            "keyStoreFile", "keyStoreSecret", "dnName", "RS256_keyId", "clientJwksUri"})
+    @Test
+    public void encodeClaimsInStateParameterAlgRSA15EncA128CBCPLUSHS256(
+            final String userId, final String userSecret, final String redirectUris, final String redirectUri,
+            final String sectorIdentifierUri, final String keyStoreFile, final String keyStoreSecret,
+            final String dnName, final String keyId, final String clientJwksUri) throws Exception {
+        showTitle("encodeClaimsInStateParameterAlgRSA15EncA128CBCPLUSHS256");
+
+        List<ResponseType> responseTypes = Arrays.asList(
+                ResponseType.TOKEN,
+                ResponseType.ID_TOKEN);
+
+        // 1. Register client
+        RegisterRequest registerRequest = new RegisterRequest(ApplicationType.WEB, "oxAuth test app",
+                StringUtils.spaceSeparatedToList(redirectUris));
+        registerRequest.setResponseTypes(responseTypes);
+        registerRequest.setSectorIdentifierUri(sectorIdentifierUri);
+
+        RegisterClient registerClient = new RegisterClient(registrationEndpoint);
+        registerClient.setRequest(registerRequest);
+        RegisterResponse registerResponse = registerClient.exec();
+
+        showClient(registerClient);
+        assertEquals(registerResponse.getStatus(), 200, "Unexpected response code: " + registerResponse.getEntity());
+        assertNotNull(registerResponse.getClientId());
+        assertNotNull(registerResponse.getClientSecret());
+        assertNotNull(registerResponse.getRegistrationAccessToken());
+        assertNotNull(registerResponse.getClientIdIssuedAt());
+        assertNotNull(registerResponse.getClientSecretExpiresAt());
+
+        String clientId = registerResponse.getClientId();
+
+        // 2. Request authorization
+        JSONObject jwks = JwtUtil.getJSONWebKeys(clientJwksUri);
+        OxAuthCryptoProvider cryptoProvider = new OxAuthCryptoProvider(keyStoreFile, keyStoreSecret, dnName);
+
+        List<String> scopes = Arrays.asList("openid", "profile", "address", "email");
+        String nonce = UUID.randomUUID().toString();
+        String rfp = UUID.randomUUID().toString();
+        String jti = UUID.randomUUID().toString();
+
+        JwtState jwtState = new JwtState(KeyEncryptionAlgorithm.RSA1_5, BlockEncryptionAlgorithm.A128CBC_PLUS_HS256, cryptoProvider);
+        jwtState.setKeyId(keyId);
+        jwtState.setRfp(rfp);
+        jwtState.setJti(jti);
+        jwtState.setAdditionalClaims(new JSONObject(additionalClaims));
+        String encodedState = jwtState.getEncodedJwt(jwks);
+
+        AuthorizationRequest authorizationRequest = new AuthorizationRequest(responseTypes, clientId, scopes, redirectUri, nonce);
+        authorizationRequest.setState(encodedState);
+
+        AuthorizationResponse authorizationResponse = authenticateResourceOwnerAndGrantAccess(
+                authorizationEndpoint, authorizationRequest, userId, userSecret);
+
+        assertNotNull(authorizationResponse.getLocation(), "The location is null");
+        assertNotNull(authorizationResponse.getAccessToken(), "The accessToken is null");
+        assertNotNull(authorizationResponse.getTokenType(), "The tokenType is null");
+        assertNotNull(authorizationResponse.getIdToken(), "The idToken is null");
+        assertNotNull(authorizationResponse.getState(), "The state is null");
+
+        String state = authorizationResponse.getState();
+
+        // 3. Decrypt state
+        PrivateKey privateKey = cryptoProvider.getPrivateKey(keyId);
+        Jwe jwe = Jwe.parse(state, privateKey, null);
+        assertNotNull(jwe.getClaims().getClaimAsString(KID));
+        assertNotNull(jwe.getClaims().getClaimAsString(RFP));
+        assertNotNull(jwe.getClaims().getClaimAsString(JTI));
+        assertNotNull(jwe.getClaims().getClaimAsJSON(ADDITIONAL_CLAIMS));
+
+        JSONObject addClaims = jwe.getClaims().getClaimAsJSON(ADDITIONAL_CLAIMS);
+        assertEquals(addClaims.getString("first_name"), "Javier");
+        assertEquals(addClaims.getString("last_name"), "Rojas");
+        assertEquals(addClaims.getInt("age"), 34);
+        assertNotNull(addClaims.getJSONArray("more"));
+        assertEquals(addClaims.getJSONArray("more").length(), 2);
+    }
+
+    @Parameters({"userId", "userSecret", "redirectUris", "redirectUri", "sectorIdentifierUri",
+            "keyStoreFile", "keyStoreSecret", "dnName", "RS256_keyId", "clientJwksUri"})
+    @Test
+    public void encodeClaimsInStateParameterAlgRSA15EncA256CBCPLUSHS512(
+            final String userId, final String userSecret, final String redirectUris, final String redirectUri,
+            final String sectorIdentifierUri, final String keyStoreFile, final String keyStoreSecret,
+            final String dnName, final String keyId, final String clientJwksUri) throws Exception {
+        showTitle("encodeClaimsInStateParameterAlgRSA15EncA256CBCPLUSHS512");
+
+        List<ResponseType> responseTypes = Arrays.asList(
+                ResponseType.TOKEN,
+                ResponseType.ID_TOKEN);
+
+        // 1. Register client
+        RegisterRequest registerRequest = new RegisterRequest(ApplicationType.WEB, "oxAuth test app",
+                StringUtils.spaceSeparatedToList(redirectUris));
+        registerRequest.setResponseTypes(responseTypes);
+        registerRequest.setSectorIdentifierUri(sectorIdentifierUri);
+
+        RegisterClient registerClient = new RegisterClient(registrationEndpoint);
+        registerClient.setRequest(registerRequest);
+        RegisterResponse registerResponse = registerClient.exec();
+
+        showClient(registerClient);
+        assertEquals(registerResponse.getStatus(), 200, "Unexpected response code: " + registerResponse.getEntity());
+        assertNotNull(registerResponse.getClientId());
+        assertNotNull(registerResponse.getClientSecret());
+        assertNotNull(registerResponse.getRegistrationAccessToken());
+        assertNotNull(registerResponse.getClientIdIssuedAt());
+        assertNotNull(registerResponse.getClientSecretExpiresAt());
+
+        String clientId = registerResponse.getClientId();
+
+        // 2. Request authorization
+        JSONObject jwks = JwtUtil.getJSONWebKeys(clientJwksUri);
+        OxAuthCryptoProvider cryptoProvider = new OxAuthCryptoProvider(keyStoreFile, keyStoreSecret, dnName);
+
+        List<String> scopes = Arrays.asList("openid", "profile", "address", "email");
+        String nonce = UUID.randomUUID().toString();
+        String rfp = UUID.randomUUID().toString();
+        String jti = UUID.randomUUID().toString();
+
+        JwtState jwtState = new JwtState(KeyEncryptionAlgorithm.RSA1_5, BlockEncryptionAlgorithm.A256CBC_PLUS_HS512, cryptoProvider);
+        jwtState.setKeyId(keyId);
+        jwtState.setRfp(rfp);
+        jwtState.setJti(jti);
+        jwtState.setAdditionalClaims(new JSONObject(additionalClaims));
+        String encodedState = jwtState.getEncodedJwt(jwks);
+
+        AuthorizationRequest authorizationRequest = new AuthorizationRequest(responseTypes, clientId, scopes, redirectUri, nonce);
+        authorizationRequest.setState(encodedState);
+
+        AuthorizationResponse authorizationResponse = authenticateResourceOwnerAndGrantAccess(
+                authorizationEndpoint, authorizationRequest, userId, userSecret);
+
+        assertNotNull(authorizationResponse.getLocation(), "The location is null");
+        assertNotNull(authorizationResponse.getAccessToken(), "The accessToken is null");
+        assertNotNull(authorizationResponse.getTokenType(), "The tokenType is null");
+        assertNotNull(authorizationResponse.getIdToken(), "The idToken is null");
+        assertNotNull(authorizationResponse.getState(), "The state is null");
+
+        String state = authorizationResponse.getState();
+
+        // 3. Decrypt state
+        PrivateKey privateKey = cryptoProvider.getPrivateKey(keyId);
+        Jwe jwe = Jwe.parse(state, privateKey, null);
+        assertNotNull(jwe.getClaims().getClaimAsString(KID));
+        assertNotNull(jwe.getClaims().getClaimAsString(RFP));
+        assertNotNull(jwe.getClaims().getClaimAsString(JTI));
+        assertNotNull(jwe.getClaims().getClaimAsJSON(ADDITIONAL_CLAIMS));
+
+        JSONObject addClaims = jwe.getClaims().getClaimAsJSON(ADDITIONAL_CLAIMS);
+        assertEquals(addClaims.getString("first_name"), "Javier");
+        assertEquals(addClaims.getString("last_name"), "Rojas");
+        assertEquals(addClaims.getInt("age"), 34);
+        assertNotNull(addClaims.getJSONArray("more"));
+        assertEquals(addClaims.getJSONArray("more").length(), 2);
+    }
+
+    @Parameters({"userId", "userSecret", "redirectUris", "redirectUri", "sectorIdentifierUri"})
+    @Test
+    public void encodeClaimsInStateParameterAlgA128KWEncA128GCM(
+            final String userId, final String userSecret, final String redirectUris, final String redirectUri,
+            final String sectorIdentifierUri) throws Exception {
+        showTitle("encodeClaimsInStateParameterAlgA128KWEncA128GCM");
+
+        List<ResponseType> responseTypes = Arrays.asList(
+                ResponseType.TOKEN,
+                ResponseType.ID_TOKEN);
+
+        // 1. Register client
+        RegisterRequest registerRequest = new RegisterRequest(ApplicationType.WEB, "oxAuth test app",
+                StringUtils.spaceSeparatedToList(redirectUris));
+        registerRequest.setResponseTypes(responseTypes);
+        registerRequest.setSectorIdentifierUri(sectorIdentifierUri);
+
+        RegisterClient registerClient = new RegisterClient(registrationEndpoint);
+        registerClient.setRequest(registerRequest);
+        RegisterResponse registerResponse = registerClient.exec();
+
+        showClient(registerClient);
+        assertEquals(registerResponse.getStatus(), 200, "Unexpected response code: " + registerResponse.getEntity());
+        assertNotNull(registerResponse.getClientId());
+        assertNotNull(registerResponse.getClientSecret());
+        assertNotNull(registerResponse.getRegistrationAccessToken());
+        assertNotNull(registerResponse.getClientIdIssuedAt());
+        assertNotNull(registerResponse.getClientSecretExpiresAt());
+
+        String clientId = registerResponse.getClientId();
+        String clientSecret = registerResponse.getClientSecret();
+
+        // 2. Request authorization
+        List<String> scopes = Arrays.asList("openid", "profile", "address", "email");
+        String nonce = UUID.randomUUID().toString();
+        String rfp = UUID.randomUUID().toString();
+        String jti = UUID.randomUUID().toString();
+
+        JwtState jwtState = new JwtState(KeyEncryptionAlgorithm.A128KW, BlockEncryptionAlgorithm.A128GCM, clientSecret);
+        jwtState.setRfp(rfp);
+        jwtState.setJti(jti);
+        jwtState.setAdditionalClaims(new JSONObject(additionalClaims));
+        String encodedState = jwtState.getEncodedJwt();
+
+        AuthorizationRequest authorizationRequest = new AuthorizationRequest(responseTypes, clientId, scopes, redirectUri, nonce);
+        authorizationRequest.setState(encodedState);
+
+        AuthorizationResponse authorizationResponse = authenticateResourceOwnerAndGrantAccess(
+                authorizationEndpoint, authorizationRequest, userId, userSecret);
+
+        assertNotNull(authorizationResponse.getLocation(), "The location is null");
+        assertNotNull(authorizationResponse.getAccessToken(), "The accessToken is null");
+        assertNotNull(authorizationResponse.getTokenType(), "The tokenType is null");
+        assertNotNull(authorizationResponse.getIdToken(), "The idToken is null");
+        assertNotNull(authorizationResponse.getState(), "The state is null");
+
+        String state = authorizationResponse.getState();
+
+        // 3. Decrypt state
+        Jwe jwe = Jwe.parse(state, null, clientSecret.getBytes());
+        assertNotNull(jwe.getClaims().getClaimAsString(RFP));
+        assertNotNull(jwe.getClaims().getClaimAsString(JTI));
+        assertNotNull(jwe.getClaims().getClaimAsJSON(ADDITIONAL_CLAIMS));
+
+        JSONObject addClaims = jwe.getClaims().getClaimAsJSON(ADDITIONAL_CLAIMS);
+        assertEquals(addClaims.getString("first_name"), "Javier");
+        assertEquals(addClaims.getString("last_name"), "Rojas");
+        assertEquals(addClaims.getInt("age"), 34);
+        assertNotNull(addClaims.getJSONArray("more"));
+        assertEquals(addClaims.getJSONArray("more").length(), 2);
+    }
+
+    @Parameters({"userId", "userSecret", "redirectUris", "redirectUri", "sectorIdentifierUri"})
+    @Test
+    public void encodeClaimsInStateParameterAlgA256KWEncA256GCM(
+            final String userId, final String userSecret, final String redirectUris, final String redirectUri,
+            final String sectorIdentifierUri) throws Exception {
+        showTitle("encodeClaimsInStateParameterAlgA256KWEncA256GCM");
+
+        List<ResponseType> responseTypes = Arrays.asList(
+                ResponseType.TOKEN,
+                ResponseType.ID_TOKEN);
+
+        // 1. Register client
+        RegisterRequest registerRequest = new RegisterRequest(ApplicationType.WEB, "oxAuth test app",
+                StringUtils.spaceSeparatedToList(redirectUris));
+        registerRequest.setResponseTypes(responseTypes);
+        registerRequest.setSectorIdentifierUri(sectorIdentifierUri);
+
+        RegisterClient registerClient = new RegisterClient(registrationEndpoint);
+        registerClient.setRequest(registerRequest);
+        RegisterResponse registerResponse = registerClient.exec();
+
+        showClient(registerClient);
+        assertEquals(registerResponse.getStatus(), 200, "Unexpected response code: " + registerResponse.getEntity());
+        assertNotNull(registerResponse.getClientId());
+        assertNotNull(registerResponse.getClientSecret());
+        assertNotNull(registerResponse.getRegistrationAccessToken());
+        assertNotNull(registerResponse.getClientIdIssuedAt());
+        assertNotNull(registerResponse.getClientSecretExpiresAt());
+
+        String clientId = registerResponse.getClientId();
+        String clientSecret = registerResponse.getClientSecret();
+
+        // 2. Request authorization
+        List<String> scopes = Arrays.asList("openid", "profile", "address", "email");
+        String nonce = UUID.randomUUID().toString();
+        String rfp = UUID.randomUUID().toString();
+        String jti = UUID.randomUUID().toString();
+
+        JwtState jwtState = new JwtState(KeyEncryptionAlgorithm.A256KW, BlockEncryptionAlgorithm.A256GCM, clientSecret);
+        jwtState.setRfp(rfp);
+        jwtState.setJti(jti);
+        jwtState.setAdditionalClaims(new JSONObject(additionalClaims));
+        String encodedState = jwtState.getEncodedJwt();
+
+        AuthorizationRequest authorizationRequest = new AuthorizationRequest(responseTypes, clientId, scopes, redirectUri, nonce);
+        authorizationRequest.setState(encodedState);
+
+        AuthorizationResponse authorizationResponse = authenticateResourceOwnerAndGrantAccess(
+                authorizationEndpoint, authorizationRequest, userId, userSecret);
+
+        assertNotNull(authorizationResponse.getLocation(), "The location is null");
+        assertNotNull(authorizationResponse.getAccessToken(), "The accessToken is null");
+        assertNotNull(authorizationResponse.getTokenType(), "The tokenType is null");
+        assertNotNull(authorizationResponse.getIdToken(), "The idToken is null");
+        assertNotNull(authorizationResponse.getState(), "The state is null");
+
+        String state = authorizationResponse.getState();
+
+        // 3. Decrypt state
+        Jwe jwe = Jwe.parse(state, null, clientSecret.getBytes());
+        assertNotNull(jwe.getClaims().getClaimAsString(RFP));
+        assertNotNull(jwe.getClaims().getClaimAsString(JTI));
+        assertNotNull(jwe.getClaims().getClaimAsJSON(ADDITIONAL_CLAIMS));
+
+        JSONObject addClaims = jwe.getClaims().getClaimAsJSON(ADDITIONAL_CLAIMS);
+        assertEquals(addClaims.getString("first_name"), "Javier");
+        assertEquals(addClaims.getString("last_name"), "Rojas");
+        assertEquals(addClaims.getInt("age"), 34);
+        assertNotNull(addClaims.getJSONArray("more"));
+        assertEquals(addClaims.getJSONArray("more").length(), 2);
+    }
+
+    @Test
+    public void jwtStateNONETest() throws Exception {
+        showTitle("jwtStateNONETest");
+
+        AbstractCryptoProvider cryptoProvider = createCryptoProviderWithAllowedNone();
+
+        String rfp = UUID.randomUUID().toString();
+        String jti = UUID.randomUUID().toString();
+
+        JwtState jwtState = new JwtState(SignatureAlgorithm.NONE, cryptoProvider);
+        jwtState.setRfp(rfp);
+        jwtState.setJti(jti);
+        jwtState.setAdditionalClaims(new JSONObject(additionalClaims));
+
+        String encodedState = jwtState.getEncodedJwt();
+        assertNotNull(encodedState);
+        System.out.println("Encoded State: " + encodedState);
+
+        Jwt jwt = Jwt.parse(encodedState);
+        boolean validJwt = cryptoProvider.verifySignature(jwt.getSigningInput(), jwt.getEncodedSignature(), null,
+                null, null, SignatureAlgorithm.NONE);
+        assertTrue(validJwt);
+    }
+
+    @Test
+    public void jwtStateHS256Test() throws Exception {
+        showTitle("jwtStateHS256Test");
+
+        OxAuthCryptoProvider cryptoProvider = new OxAuthCryptoProvider();
+        String sharedKey = "shared_key";
+
+        String rfp = UUID.randomUUID().toString();
+        String jti = UUID.randomUUID().toString();
+
+        JwtState jwtState = new JwtState(SignatureAlgorithm.HS256, sharedKey, cryptoProvider);
+        jwtState.setRfp(rfp);
+        jwtState.setJti(jti);
+        jwtState.setAdditionalClaims(new JSONObject(additionalClaims));
+
+        String encodedState = jwtState.getEncodedJwt();
+        assertNotNull(encodedState);
+        System.out.println("Signed JWS State: " + encodedState);
+
+        Jwt jwt = Jwt.parse(encodedState);
+        boolean validJwt = cryptoProvider.verifySignature(jwt.getSigningInput(), jwt.getEncodedSignature(), null,
+                null, sharedKey, SignatureAlgorithm.HS256);
+        assertTrue(validJwt);
+    }
+
+    @Test
+    public void jwtStateHS384Test() throws Exception {
+        showTitle("jwtStateHS384Test");
+
+        OxAuthCryptoProvider cryptoProvider = new OxAuthCryptoProvider();
+        String sharedKey = "shared_key";
+
+        String rfp = UUID.randomUUID().toString();
+        String jti = UUID.randomUUID().toString();
+
+        JwtState jwtState = new JwtState(SignatureAlgorithm.HS384, sharedKey, cryptoProvider);
+        jwtState.setRfp(rfp);
+        jwtState.setJti(jti);
+        jwtState.setAdditionalClaims(new JSONObject(additionalClaims));
+
+        String encodedState = jwtState.getEncodedJwt();
+        assertNotNull(encodedState);
+        System.out.println("Signed JWS State: " + encodedState);
+
+        Jwt jwt = Jwt.parse(encodedState);
+        boolean validJwt = cryptoProvider.verifySignature(jwt.getSigningInput(), jwt.getEncodedSignature(), null,
+                null, sharedKey, SignatureAlgorithm.HS384);
+        assertTrue(validJwt);
+    }
+
+    @Test
+    public void jwtStateHS512Test() throws Exception {
+        showTitle("jwtStateHS512Test");
+
+        OxAuthCryptoProvider cryptoProvider = new OxAuthCryptoProvider();
+        String sharedKey = "shared_key";
+
+        String rfp = UUID.randomUUID().toString();
+        String jti = UUID.randomUUID().toString();
+
+        JwtState jwtState = new JwtState(SignatureAlgorithm.HS512, sharedKey, cryptoProvider);
+        jwtState.setRfp(rfp);
+        jwtState.setJti(jti);
+        jwtState.setAdditionalClaims(new JSONObject(additionalClaims));
+
+        String encodedState = jwtState.getEncodedJwt();
+        assertNotNull(encodedState);
+        System.out.println("Signed JWS State: " + encodedState);
+
+        Jwt jwt = Jwt.parse(encodedState);
+        boolean validJwt = cryptoProvider.verifySignature(jwt.getSigningInput(), jwt.getEncodedSignature(), null,
+                null, sharedKey, SignatureAlgorithm.HS512);
+        assertTrue(validJwt);
+    }
+
+    @Parameters({"keyStoreFile", "keyStoreSecret", "dnName", "RS256_keyId"})
+    @Test
+    public void jwtStateRS256Test(final String keyStoreFile, final String keyStoreSecret,
+                                  final String dnName, final String keyId) throws Exception {
+        showTitle("jwtStateRS256Test");
+
+        OxAuthCryptoProvider cryptoProvider = new OxAuthCryptoProvider(keyStoreFile, keyStoreSecret, dnName);
+
+        String rfp = UUID.randomUUID().toString();
+        String jti = UUID.randomUUID().toString();
+
+        JwtState jwtState = new JwtState(SignatureAlgorithm.RS256, cryptoProvider);
+        jwtState.setKeyId(keyId);
+        jwtState.setRfp(rfp);
+        jwtState.setJti(jti);
+        jwtState.setAdditionalClaims(new JSONObject(additionalClaims));
+
+        String encodedState = jwtState.getEncodedJwt();
+        assertNotNull(encodedState);
+        System.out.println("Signed JWS State: " + encodedState);
+
+        Jwt jwt = Jwt.parse(encodedState);
+        boolean validJwt = cryptoProvider.verifySignature(jwt.getSigningInput(), jwt.getEncodedSignature(), keyId,
+                null, null, SignatureAlgorithm.RS256);
+        assertTrue(validJwt);
+    }
+
+    @Parameters({"keyStoreFile", "keyStoreSecret", "dnName", "RS384_keyId"})
+    @Test
+    public void jwtStateRS384Test(final String keyStoreFile, final String keyStoreSecret,
+                                  final String dnName, final String keyId) throws Exception {
+        showTitle("jwtStateRS384Test");
+
+        OxAuthCryptoProvider cryptoProvider = new OxAuthCryptoProvider(keyStoreFile, keyStoreSecret, dnName);
+
+        String rfp = UUID.randomUUID().toString();
+        String jti = UUID.randomUUID().toString();
+
+        JwtState jwtState = new JwtState(SignatureAlgorithm.RS384, cryptoProvider);
+        jwtState.setKeyId(keyId);
+        jwtState.setRfp(rfp);
+        jwtState.setJti(jti);
+        jwtState.setAdditionalClaims(new JSONObject(additionalClaims));
+
+        String encodedState = jwtState.getEncodedJwt();
+        assertNotNull(encodedState);
+        System.out.println("Signed JWS State: " + encodedState);
+
+        Jwt jwt = Jwt.parse(encodedState);
+        boolean validJwt = cryptoProvider.verifySignature(jwt.getSigningInput(), jwt.getEncodedSignature(), keyId,
+                null, null, SignatureAlgorithm.RS384);
+        assertTrue(validJwt);
+    }
+
+    @Parameters({"keyStoreFile", "keyStoreSecret", "dnName", "RS512_keyId"})
+    @Test
+    public void jwtStateRS512Test(final String keyStoreFile, final String keyStoreSecret,
+                                  final String dnName, final String keyId) throws Exception {
+        showTitle("jwtStateRS512Test");
+
+        OxAuthCryptoProvider cryptoProvider = new OxAuthCryptoProvider(keyStoreFile, keyStoreSecret, dnName);
+
+        String rfp = UUID.randomUUID().toString();
+        String jti = UUID.randomUUID().toString();
+
+        JwtState jwtState = new JwtState(SignatureAlgorithm.RS512, cryptoProvider);
+        jwtState.setKeyId(keyId);
+        jwtState.setRfp(rfp);
+        jwtState.setJti(jti);
+        jwtState.setAdditionalClaims(new JSONObject(additionalClaims));
+
+        String encodedState = jwtState.getEncodedJwt();
+        assertNotNull(encodedState);
+        System.out.println("Signed JWS State: " + encodedState);
+
+        Jwt jwt = Jwt.parse(encodedState);
+        boolean validJwt = cryptoProvider.verifySignature(jwt.getSigningInput(), jwt.getEncodedSignature(), keyId,
+                null, null, SignatureAlgorithm.RS512);
+        assertTrue(validJwt);
+    }
+
+    @Parameters({"keyStoreFile", "keyStoreSecret", "dnName", "ES256_keyId"})
+    @Test
+    public void jwtStateES256Test(final String keyStoreFile, final String keyStoreSecret,
+                                  final String dnName, final String keyId) throws Exception {
+        showTitle("jwtStateES256Test");
+
+        OxAuthCryptoProvider cryptoProvider = new OxAuthCryptoProvider(keyStoreFile, keyStoreSecret, dnName);
+
+        String rfp = UUID.randomUUID().toString();
+        String jti = UUID.randomUUID().toString();
+
+        JwtState jwtState = new JwtState(SignatureAlgorithm.ES256, cryptoProvider);
+        jwtState.setKeyId(keyId);
+        jwtState.setRfp(rfp);
+        jwtState.setJti(jti);
+        jwtState.setAdditionalClaims(new JSONObject(additionalClaims));
+
+        String encodedState = jwtState.getEncodedJwt();
+        assertNotNull(encodedState);
+        System.out.println("Signed JWS State: " + encodedState);
+
+        Jwt jwt = Jwt.parse(encodedState);
+        boolean validJwt = cryptoProvider.verifySignature(jwt.getSigningInput(), jwt.getEncodedSignature(), keyId,
+                null, null, SignatureAlgorithm.ES256);
+        assertTrue(validJwt);
+    }
+
+    @Parameters({"keyStoreFile", "keyStoreSecret", "dnName", "ES384_keyId"})
+    @Test
+    public void jwtStateES384Test(final String keyStoreFile, final String keyStoreSecret,
+                                  final String dnName, final String keyId) throws Exception {
+        showTitle("jwtStateES384Test");
+
+        OxAuthCryptoProvider cryptoProvider = new OxAuthCryptoProvider(keyStoreFile, keyStoreSecret, dnName);
+
+        String rfp = UUID.randomUUID().toString();
+        String jti = UUID.randomUUID().toString();
+
+        JwtState jwtState = new JwtState(SignatureAlgorithm.ES384, cryptoProvider);
+        jwtState.setKeyId(keyId);
+        jwtState.setRfp(rfp);
+        jwtState.setJti(jti);
+        jwtState.setAdditionalClaims(new JSONObject(additionalClaims));
+
+        String encodedState = jwtState.getEncodedJwt();
+        assertNotNull(encodedState);
+        System.out.println("Signed JWS State: " + encodedState);
+
+        Jwt jwt = Jwt.parse(encodedState);
+        boolean validJwt = cryptoProvider.verifySignature(jwt.getSigningInput(), jwt.getEncodedSignature(), keyId,
+                null, null, SignatureAlgorithm.ES384);
+        assertTrue(validJwt);
+    }
+
+    @Parameters({"keyStoreFile", "keyStoreSecret", "dnName", "ES512_keyId"})
+    @Test
+    public void jwtStateES512Test(final String keyStoreFile, final String keyStoreSecret,
+                                  final String dnName, final String keyId) throws Exception {
+        showTitle("jwtStateES512Test");
+
+        OxAuthCryptoProvider cryptoProvider = new OxAuthCryptoProvider(keyStoreFile, keyStoreSecret, dnName);
+
+        String rfp = UUID.randomUUID().toString();
+        String jti = UUID.randomUUID().toString();
+
+        JwtState jwtState = new JwtState(SignatureAlgorithm.ES512, cryptoProvider);
+        jwtState.setKeyId(keyId);
+        jwtState.setRfp(rfp);
+        jwtState.setJti(jti);
+        jwtState.setAdditionalClaims(new JSONObject(additionalClaims));
+
+        String encodedState = jwtState.getEncodedJwt();
+        assertNotNull(encodedState);
+        System.out.println("Signed JWS State: " + encodedState);
+
+        Jwt jwt = Jwt.parse(encodedState);
+        boolean validJwt = cryptoProvider.verifySignature(jwt.getSigningInput(), jwt.getEncodedSignature(), keyId,
+                null, null, SignatureAlgorithm.ES512);
+        assertTrue(validJwt);
+    }
+
+    @Parameters({"keyStoreFile", "keyStoreSecret", "dnName", "PS256_keyId"})
+    @Test
+    public void jwtStatePS256Test(final String keyStoreFile, final String keyStoreSecret,
+                                  final String dnName, final String keyId) throws Exception {
+        showTitle("jwtStatePS256Test");
+
+        OxAuthCryptoProvider cryptoProvider = new OxAuthCryptoProvider(keyStoreFile, keyStoreSecret, dnName);
+
+        String rfp = UUID.randomUUID().toString();
+        String jti = UUID.randomUUID().toString();
+
+        JwtState jwtState = new JwtState(SignatureAlgorithm.PS256, cryptoProvider);
+        jwtState.setKeyId(keyId);
+        jwtState.setRfp(rfp);
+        jwtState.setJti(jti);
+        jwtState.setAdditionalClaims(new JSONObject(additionalClaims));
+
+        String encodedState = jwtState.getEncodedJwt();
+        assertNotNull(encodedState);
+        System.out.println("Signed JWS State: " + encodedState);
+
+        Jwt jwt = Jwt.parse(encodedState);
+        boolean validJwt = cryptoProvider.verifySignature(jwt.getSigningInput(), jwt.getEncodedSignature(), keyId,
+                null, null, SignatureAlgorithm.PS256);
+        assertTrue(validJwt);
+    }
+
+    @Parameters({"keyStoreFile", "keyStoreSecret", "dnName", "PS384_keyId"})
+    @Test
+    public void jwtStatePS384Test(final String keyStoreFile, final String keyStoreSecret,
+                                  final String dnName, final String keyId) throws Exception {
+        showTitle("jwtStatePS384Test");
+
+        OxAuthCryptoProvider cryptoProvider = new OxAuthCryptoProvider(keyStoreFile, keyStoreSecret, dnName);
+
+        String rfp = UUID.randomUUID().toString();
+        String jti = UUID.randomUUID().toString();
+
+        JwtState jwtState = new JwtState(SignatureAlgorithm.PS384, cryptoProvider);
+        jwtState.setKeyId(keyId);
+        jwtState.setRfp(rfp);
+        jwtState.setJti(jti);
+        jwtState.setAdditionalClaims(new JSONObject(additionalClaims));
+
+        String encodedState = jwtState.getEncodedJwt();
+        assertNotNull(encodedState);
+        System.out.println("Signed JWS State: " + encodedState);
+
+        Jwt jwt = Jwt.parse(encodedState);
+        boolean validJwt = cryptoProvider.verifySignature(jwt.getSigningInput(), jwt.getEncodedSignature(), keyId,
+                null, null, SignatureAlgorithm.PS384);
+        assertTrue(validJwt);
+    }
+
+    @Parameters({"keyStoreFile", "keyStoreSecret", "dnName", "PS512_keyId"})
+    @Test
+    public void jwtStatePS512Test(final String keyStoreFile, final String keyStoreSecret,
+                                  final String dnName, final String keyId) throws Exception {
+        showTitle("jwtStatePS512Test");
+
+        OxAuthCryptoProvider cryptoProvider = new OxAuthCryptoProvider(keyStoreFile, keyStoreSecret, dnName);
+
+        String rfp = UUID.randomUUID().toString();
+        String jti = UUID.randomUUID().toString();
+
+        JwtState jwtState = new JwtState(SignatureAlgorithm.PS512, cryptoProvider);
+        jwtState.setKeyId(keyId);
+        jwtState.setRfp(rfp);
+        jwtState.setJti(jti);
+        jwtState.setAdditionalClaims(new JSONObject(additionalClaims));
+
+        String encodedState = jwtState.getEncodedJwt();
+        assertNotNull(encodedState);
+        System.out.println("Signed JWS State: " + encodedState);
+
+        Jwt jwt = Jwt.parse(encodedState);
+        boolean validJwt = cryptoProvider.verifySignature(jwt.getSigningInput(), jwt.getEncodedSignature(), keyId,
+                null, null, SignatureAlgorithm.PS512);
+        assertTrue(validJwt);
+    }
+
+    @Parameters({"keyStoreFile", "keyStoreSecret", "dnName", "RS256_keyId", "clientJwksUri"})
+    @Test
+    public void jwtStateAlgRSAOAEPEncA256GCMTest(
+            final String keyStoreFile, final String keyStoreSecret, final String dnName, final String keyId,
+            final String clientJwksUri) throws Exception {
+        showTitle("jwtStateAlgRSAOAEPEncA256GCMTest");
+
+        JSONObject jwks = JwtUtil.getJSONWebKeys(clientJwksUri);
+        OxAuthCryptoProvider cryptoProvider = new OxAuthCryptoProvider(keyStoreFile, keyStoreSecret, dnName);
+
+        String rfp = UUID.randomUUID().toString();
+        String jti = UUID.randomUUID().toString();
+
+        JwtState jwtState = new JwtState(KeyEncryptionAlgorithm.RSA_OAEP, BlockEncryptionAlgorithm.A256GCM, cryptoProvider);
+        jwtState.setKeyId(keyId);
+        jwtState.setRfp(rfp);
+        jwtState.setJti(jti);
+        jwtState.setAdditionalClaims(new JSONObject(additionalClaims));
+
+        String encodedState = jwtState.getEncodedJwt(jwks);
+        assertNotNull(encodedState);
+        System.out.println("Encrypted JWE State: " + encodedState);
+
+        PrivateKey privateKey = cryptoProvider.getPrivateKey(keyId);
+        Jwe jwe = Jwe.parse(encodedState, privateKey, null);
+        assertNotNull(jwe.getClaims().getClaimAsString(KID));
+        assertNotNull(jwe.getClaims().getClaimAsString(RFP));
+        assertNotNull(jwe.getClaims().getClaimAsString(JTI));
+        assertNotNull(jwe.getClaims().getClaimAsJSON(ADDITIONAL_CLAIMS));
+
+        JSONObject addClaims = jwe.getClaims().getClaimAsJSON(ADDITIONAL_CLAIMS);
+        assertEquals(addClaims.getString("first_name"), "Javier");
+        assertEquals(addClaims.getString("last_name"), "Rojas");
+        assertEquals(addClaims.getInt("age"), 34);
+        assertNotNull(addClaims.getJSONArray("more"));
+        assertEquals(addClaims.getJSONArray("more").length(), 2);
+    }
+
+    @Parameters({"keyStoreFile", "keyStoreSecret", "dnName", "RS256_keyId", "clientJwksUri"})
+    @Test
+    public void jwtStateAlgRSA15EncA128CBCPLUSHS256Test(
+            final String keyStoreFile, final String keyStoreSecret, final String dnName, final String keyId,
+            final String clientJwksUri) throws Exception {
+        showTitle("jwtStateAlgRSA15EncA128CBCPLUSHS256Test");
+
+        JSONObject jwks = JwtUtil.getJSONWebKeys(clientJwksUri);
+        OxAuthCryptoProvider cryptoProvider = new OxAuthCryptoProvider(keyStoreFile, keyStoreSecret, dnName);
+
+        String rfp = UUID.randomUUID().toString();
+        String jti = UUID.randomUUID().toString();
+
+        JwtState jwtState = new JwtState(KeyEncryptionAlgorithm.RSA1_5, BlockEncryptionAlgorithm.A128CBC_PLUS_HS256, cryptoProvider);
+        jwtState.setKeyId(keyId);
+        jwtState.setRfp(rfp);
+        jwtState.setJti(jti);
+        jwtState.setAdditionalClaims(new JSONObject(additionalClaims));
+
+        String encodedState = jwtState.getEncodedJwt(jwks);
+        assertNotNull(encodedState);
+        System.out.println("Encrypted JWE State: " + encodedState);
+
+        PrivateKey privateKey = cryptoProvider.getPrivateKey(keyId);
+        Jwe jwe = Jwe.parse(encodedState, privateKey, null);
+        assertNotNull(jwe.getClaims().getClaimAsString(KID));
+        assertNotNull(jwe.getClaims().getClaimAsString(RFP));
+        assertNotNull(jwe.getClaims().getClaimAsString(JTI));
+        assertNotNull(jwe.getClaims().getClaimAsJSON(ADDITIONAL_CLAIMS));
+
+        JSONObject addClaims = jwe.getClaims().getClaimAsJSON(ADDITIONAL_CLAIMS);
+        assertEquals(addClaims.getString("first_name"), "Javier");
+        assertEquals(addClaims.getString("last_name"), "Rojas");
+        assertEquals(addClaims.getInt("age"), 34);
+        assertNotNull(addClaims.getJSONArray("more"));
+        assertEquals(addClaims.getJSONArray("more").length(), 2);
+    }
+
+    @Parameters({"keyStoreFile", "keyStoreSecret", "dnName", "RS256_keyId", "clientJwksUri"})
+    @Test
+    public void jwtStateAlgRSA15EncA256CBCPLUSHS512Test(
+            final String keyStoreFile, final String keyStoreSecret, final String dnName, final String keyId,
+            final String clientJwksUri) throws Exception {
+        showTitle("jwtStateAlgRSA15EncA256CBCPLUSHS512Test");
+
+        JSONObject jwks = JwtUtil.getJSONWebKeys(clientJwksUri);
+        OxAuthCryptoProvider cryptoProvider = new OxAuthCryptoProvider(keyStoreFile, keyStoreSecret, dnName);
+
+        String rfp = UUID.randomUUID().toString();
+        String jti = UUID.randomUUID().toString();
+
+        JwtState jwtState = new JwtState(KeyEncryptionAlgorithm.RSA1_5, BlockEncryptionAlgorithm.A256CBC_PLUS_HS512, cryptoProvider);
+        jwtState.setKeyId(keyId);
+        jwtState.setRfp(rfp);
+        jwtState.setJti(jti);
+        jwtState.setAdditionalClaims(new JSONObject(additionalClaims));
+
+        String encodedState = jwtState.getEncodedJwt(jwks);
+        assertNotNull(encodedState);
+        System.out.println("Encrypted JWE State: " + encodedState);
+
+        PrivateKey privateKey = cryptoProvider.getPrivateKey(keyId);
+        Jwe jwe = Jwe.parse(encodedState, privateKey, null);
+        assertNotNull(jwe.getClaims().getClaimAsString(KID));
+        assertNotNull(jwe.getClaims().getClaimAsString(RFP));
+        assertNotNull(jwe.getClaims().getClaimAsString(JTI));
+        assertNotNull(jwe.getClaims().getClaimAsJSON(ADDITIONAL_CLAIMS));
+
+        JSONObject addClaims = jwe.getClaims().getClaimAsJSON(ADDITIONAL_CLAIMS);
+        assertEquals(addClaims.getString("first_name"), "Javier");
+        assertEquals(addClaims.getString("last_name"), "Rojas");
+        assertEquals(addClaims.getInt("age"), 34);
+        assertNotNull(addClaims.getJSONArray("more"));
+        assertEquals(addClaims.getJSONArray("more").length(), 2);
+    }
+
+    @Test
+    public void jwtStateAlgA128KWEncA128GCMTest() throws Exception {
+        showTitle("jwtStateAlgA128KWEncA128GCMTest");
+
+        String sharedKey = "shared_key";
+
+        String rfp = UUID.randomUUID().toString();
+        String jti = UUID.randomUUID().toString();
+
+        JwtState jwtState = new JwtState(KeyEncryptionAlgorithm.A128KW, BlockEncryptionAlgorithm.A128GCM, sharedKey);
+        jwtState.setRfp(rfp);
+        jwtState.setJti(jti);
+        jwtState.setAdditionalClaims(new JSONObject(additionalClaims));
+
+        String encodedState = jwtState.getEncodedJwt();
+        assertNotNull(encodedState);
+        System.out.println("Encrypted JWE State: " + encodedState);
+
+        Jwe jwe = Jwe.parse(encodedState, null, sharedKey.getBytes());
+        assertNotNull(jwe.getClaims().getClaimAsString(RFP));
+        assertNotNull(jwe.getClaims().getClaimAsString(JTI));
+        assertNotNull(jwe.getClaims().getClaimAsJSON(ADDITIONAL_CLAIMS));
+
+        JSONObject addClaims = jwe.getClaims().getClaimAsJSON(ADDITIONAL_CLAIMS);
+        assertEquals(addClaims.getString("first_name"), "Javier");
+        assertEquals(addClaims.getString("last_name"), "Rojas");
+        assertEquals(addClaims.getInt("age"), 34);
+        assertNotNull(addClaims.getJSONArray("more"));
+        assertEquals(addClaims.getJSONArray("more").length(), 2);
+    }
+
+    @Test
+    public void jwtStateAlgA256KWEncA256GCMTest() throws Exception {
+        showTitle("jwtStateAlgA256KWEncA256GCMTest");
+
+        String sharedKey = "shared_key";
+
+        String rfp = UUID.randomUUID().toString();
+        String jti = UUID.randomUUID().toString();
+
+        JwtState jwtState = new JwtState(KeyEncryptionAlgorithm.A256KW, BlockEncryptionAlgorithm.A256GCM, sharedKey);
+        jwtState.setRfp(rfp);
+        jwtState.setJti(jti);
+        jwtState.setAdditionalClaims(new JSONObject(additionalClaims));
+
+        String encodedState = jwtState.getEncodedJwt();
+        assertNotNull(encodedState);
+        System.out.println("Encrypted JWE State: " + encodedState);
+
+        Jwe jwe = Jwe.parse(encodedState, null, sharedKey.getBytes());
+        assertNotNull(jwe.getClaims().getClaimAsString(RFP));
+        assertNotNull(jwe.getClaims().getClaimAsString(JTI));
+        assertNotNull(jwe.getClaims().getClaimAsJSON(ADDITIONAL_CLAIMS));
+
+        JSONObject addClaims = jwe.getClaims().getClaimAsJSON(ADDITIONAL_CLAIMS);
+        assertEquals(addClaims.getString("first_name"), "Javier");
+        assertEquals(addClaims.getString("last_name"), "Rojas");
+        assertEquals(addClaims.getInt("age"), 34);
+        assertNotNull(addClaims.getJSONArray("more"));
+        assertEquals(addClaims.getJSONArray("more").length(), 2);
+    }
+}
\ No newline at end of file
diff --git a/oxAuth/Client/src/test/java/org/gluu/oxauth/ws/rs/EndSessionRestWebServiceHttpTest.java b/oxAuth/Client/src/test/java/org/gluu/oxauth/ws/rs/EndSessionRestWebServiceHttpTest.java
new file mode 100644
index 00000000..7ffa2cd6
--- /dev/null
+++ b/oxAuth/Client/src/test/java/org/gluu/oxauth/ws/rs/EndSessionRestWebServiceHttpTest.java
@@ -0,0 +1,261 @@
+/*
+ * oxAuth is available under the MIT License (2008). See http://opensource.org/licenses/MIT for full text.
+ *
+ * Copyright (c) 2014, Gluu
+ */
+
+package org.gluu.oxauth.ws.rs;
+
+import static org.testng.Assert.assertEquals;
+import static org.testng.Assert.assertNotNull;
+import static org.testng.Assert.assertTrue;
+
+import java.util.ArrayList;
+import java.util.Arrays;
+import java.util.List;
+import java.util.UUID;
+
+import javax.ws.rs.core.Response.Status;
+
+import org.gluu.oxauth.BaseTest;
+import org.gluu.oxauth.client.AuthorizationRequest;
+import org.gluu.oxauth.client.AuthorizationResponse;
+import org.gluu.oxauth.client.EndSessionClient;
+import org.gluu.oxauth.client.EndSessionRequest;
+import org.gluu.oxauth.client.EndSessionResponse;
+import org.gluu.oxauth.client.RegisterClient;
+import org.gluu.oxauth.client.RegisterRequest;
+import org.gluu.oxauth.client.RegisterResponse;
+import org.gluu.oxauth.model.common.ResponseType;
+import org.gluu.oxauth.model.register.ApplicationType;
+import org.gluu.oxauth.model.session.EndSessionErrorResponseType;
+import org.gluu.oxauth.model.util.StringUtils;
+import org.testng.annotations.Parameters;
+import org.testng.annotations.Test;
+
+import com.google.common.collect.Lists;
+
+/**
+ * Functional tests for End Session Web Services (HTTP)
+ *
+ * @author Javier Rojas Blum
+ * @version August 9, 2017
+ */
+public class EndSessionRestWebServiceHttpTest extends BaseTest {
+
+    @Parameters({"userId", "userSecret", "redirectUri", "redirectUris", "postLogoutRedirectUri", "logoutUri", "sectorIdentifierUri"})
+    @Test
+    public void requestEndSession(
+            final String userId, final String userSecret, final String redirectUri, final String redirectUris,
+            final String postLogoutRedirectUri, final String logoutUri, final String sectorIdentifierUri) throws Exception {
+        showTitle("requestEndSession by id_token");
+
+        // 1. OpenID Connect Dynamic Registration
+        RegisterRequest registerRequest = new RegisterRequest(ApplicationType.WEB, "oxAuth test app",
+                StringUtils.spaceSeparatedToList(redirectUris));
+        registerRequest.setResponseTypes(Arrays.asList(ResponseType.TOKEN, ResponseType.ID_TOKEN));
+        registerRequest.setPostLogoutRedirectUris(Arrays.asList(postLogoutRedirectUri));
+        registerRequest.setFrontChannelLogoutUris(Lists.newArrayList(logoutUri));
+        registerRequest.setSectorIdentifierUri(sectorIdentifierUri);
+
+        RegisterClient registerClient = new RegisterClient(registrationEndpoint);
+        registerClient.setRequest(registerRequest);
+        RegisterResponse response = registerClient.exec();
+
+        showClient(registerClient);
+        assertEquals(response.getStatus(), 200, "Unexpected response code: " + response.getEntity());
+        assertNotNull(response.getClientId());
+        assertNotNull(response.getClientSecret());
+        assertNotNull(response.getRegistrationAccessToken());
+        assertNotNull(response.getClientSecretExpiresAt());
+
+        String clientId = response.getClientId();
+
+        // 2. Request authorization
+        List<ResponseType> responseTypes = new ArrayList<ResponseType>();
+        responseTypes.add(ResponseType.TOKEN);
+        responseTypes.add(ResponseType.ID_TOKEN);
+        List<String> scopes = new ArrayList<String>();
+        scopes.add("openid");
+        scopes.add("profile");
+        scopes.add("address");
+        scopes.add("email");
+        String nonce = UUID.randomUUID().toString();
+        String state = UUID.randomUUID().toString();
+
+        AuthorizationRequest authorizationRequest = new AuthorizationRequest(responseTypes, clientId, scopes, redirectUri, nonce);
+        authorizationRequest.setState(state);
+
+        AuthorizationResponse authorizationResponse = authenticateResourceOwnerAndGrantAccess(
+                authorizationEndpoint, authorizationRequest, userId, userSecret);
+
+        assertNotNull(authorizationResponse.getLocation(), "The location is null");
+        assertNotNull(authorizationResponse.getAccessToken(), "The access token is null");
+        assertEquals(authorizationResponse.getState(), state);
+        assertNotNull(authorizationResponse.getTokenType(), "The token type is null");
+        assertNotNull(authorizationResponse.getExpiresIn(), "The expires in value is null");
+        assertNotNull(authorizationResponse.getScope(), "The scope must be null");
+        assertNotNull(authorizationResponse.getSessionId(), "The session_id is null");
+        assertNotNull(authorizationResponse.getSid(), "The sid is null");
+
+        String idToken = authorizationResponse.getIdToken();
+
+        // 3. End session
+        String endSessionId1 = UUID.randomUUID().toString();
+        EndSessionRequest endSessionRequest1 = new EndSessionRequest(idToken, postLogoutRedirectUri, endSessionId1);
+        endSessionRequest1.setSid(authorizationResponse.getSid());
+
+        EndSessionClient endSessionClient = new EndSessionClient(endSessionEndpoint);
+        endSessionClient.setRequest(endSessionRequest1);
+
+        EndSessionResponse endSessionResponse1 = endSessionClient.exec();
+
+        showClient(endSessionClient);
+        assertEquals(endSessionResponse1.getStatus(), 200);
+        assertNotNull(endSessionResponse1.getHtmlPage(), "The HTML page is null");
+
+        // silly validation of html content returned by server but at least it verifies that logout_uri and post_logout_uri are present
+        assertTrue(endSessionResponse1.getHtmlPage().contains("<html>"), "The HTML page is null");
+        assertTrue(endSessionResponse1.getHtmlPage().contains(logoutUri), "logout_uri is not present on html page");
+        assertTrue(endSessionResponse1.getHtmlPage().contains(postLogoutRedirectUri), "postLogoutRedirectUri is not present on html page");
+        // assertEquals(endSessionResponse.getState(), endSessionId); // commented out, for http-based logout we get html page
+
+        // 4. End session with an already ended session
+        String endSessionId2 = UUID.randomUUID().toString();
+        EndSessionRequest endSessionRequest2 = new EndSessionRequest(idToken, postLogoutRedirectUri, endSessionId2);
+        endSessionRequest2.setSid(authorizationResponse.getSid());
+
+        EndSessionClient endSessionClient2 = new EndSessionClient(endSessionEndpoint);
+        endSessionClient2.setRequest(endSessionRequest2);
+
+        EndSessionResponse endSessionResponse2 = endSessionClient2.exec();
+
+        showClient(endSessionClient2);
+        assertStatusOrRedirect(endSessionResponse2.getStatus(), Status.BAD_REQUEST.getStatusCode());
+        assertEquals(endSessionResponse2.getErrorType(), EndSessionErrorResponseType.INVALID_GRANT_AND_SESSION);
+    }
+
+    public static void assertStatusOrRedirect(int actualStatus, int expectedStatus) {
+        assertTrue(actualStatus == expectedStatus || actualStatus == Status.FOUND.getStatusCode());
+    }
+
+    @Parameters({"userId", "userSecret", "redirectUri", "redirectUris", "postLogoutRedirectUri", "logoutUri", "sectorIdentifierUri"})
+    @Test
+    public void requestEndSessionWithSessionId(
+            final String userId, final String userSecret, final String redirectUri, final String redirectUris,
+            final String postLogoutRedirectUri, final String logoutUri, final String sectorIdentifierUri) throws Exception {
+        showTitle("requestEndSession by session_id");
+
+        // 1. OpenID Connect Dynamic Registration
+        RegisterRequest registerRequest = new RegisterRequest(ApplicationType.WEB, "oxAuth test app",
+                StringUtils.spaceSeparatedToList(redirectUris));
+        registerRequest.setResponseTypes(Arrays.asList(ResponseType.TOKEN, ResponseType.ID_TOKEN));
+        registerRequest.setPostLogoutRedirectUris(Arrays.asList(postLogoutRedirectUri));
+        registerRequest.setFrontChannelLogoutUris(Lists.newArrayList(logoutUri));
+        registerRequest.setSectorIdentifierUri(sectorIdentifierUri);
+
+        RegisterClient registerClient = new RegisterClient(registrationEndpoint);
+        registerClient.setRequest(registerRequest);
+        RegisterResponse response = registerClient.exec();
+
+        showClient(registerClient);
+        assertEquals(response.getStatus(), 200, "Unexpected response code: " + response.getEntity());
+        assertNotNull(response.getClientId());
+        assertNotNull(response.getClientSecret());
+        assertNotNull(response.getRegistrationAccessToken());
+        assertNotNull(response.getClientSecretExpiresAt());
+
+        String clientId = response.getClientId();
+
+        // 2. Request authorization
+        List<ResponseType> responseTypes = new ArrayList<ResponseType>();
+        responseTypes.add(ResponseType.TOKEN);
+        responseTypes.add(ResponseType.ID_TOKEN);
+        List<String> scopes = new ArrayList<String>();
+        scopes.add("openid");
+        scopes.add("profile");
+        scopes.add("address");
+        scopes.add("email");
+        String nonce = UUID.randomUUID().toString();
+        String state = UUID.randomUUID().toString();
+
+        AuthorizationRequest authorizationRequest = new AuthorizationRequest(responseTypes, clientId, scopes, redirectUri, nonce);
+        authorizationRequest.setState(state);
+
+        AuthorizationResponse authorizationResponse = authenticateResourceOwnerAndGrantAccess(
+                authorizationEndpoint, authorizationRequest, userId, userSecret);
+
+        assertNotNull(authorizationResponse.getLocation(), "The location is null");
+        assertNotNull(authorizationResponse.getAccessToken(), "The access token is null");
+        assertEquals(authorizationResponse.getState(), state);
+        assertNotNull(authorizationResponse.getTokenType(), "The token type is null");
+        assertNotNull(authorizationResponse.getExpiresIn(), "The expires in value is null");
+        assertNotNull(authorizationResponse.getScope(), "The scope must be null");
+        assertNotNull(authorizationResponse.getSessionId(), "The session_id is null");
+
+        // 3. End session
+        String endSessionId1 = UUID.randomUUID().toString();
+        EndSessionRequest endSessionRequest1 = new EndSessionRequest(null, postLogoutRedirectUri, endSessionId1);
+        endSessionRequest1.setSid(authorizationResponse.getSid());
+
+        EndSessionClient endSessionClient = new EndSessionClient(endSessionEndpoint);
+        endSessionClient.setRequest(endSessionRequest1);
+
+        EndSessionResponse endSessionResponse1 = endSessionClient.exec();
+
+        showClient(endSessionClient);
+        assertEquals(endSessionResponse1.getStatus(), 200);
+        assertNotNull(endSessionResponse1.getHtmlPage(), "The HTML page is null");
+
+        // silly validation of html content returned by server but at least it verifies that logout_uri and post_logout_uri are present
+        assertTrue(endSessionResponse1.getHtmlPage().contains("<html>"), "The HTML page is null");
+        assertTrue(endSessionResponse1.getHtmlPage().contains(logoutUri), "logout_uri is not present on html page");
+        assertTrue(endSessionResponse1.getHtmlPage().contains(postLogoutRedirectUri), "postLogoutRedirectUri is not present on html page");
+        // assertEquals(endSessionResponse.getState(), endSessionId); // commented out, for http-based logout we get html page
+
+        // 4. End session with an already ended session
+        String endSessionId2 = UUID.randomUUID().toString();
+        EndSessionRequest endSessionRequest2 = new EndSessionRequest(null, postLogoutRedirectUri, endSessionId2);
+        endSessionRequest2.setSid(authorizationResponse.getSid());
+
+        EndSessionClient endSessionClient2 = new EndSessionClient(endSessionEndpoint);
+        endSessionClient2.setRequest(endSessionRequest2);
+
+        EndSessionResponse endSessionResponse2 = endSessionClient2.exec();
+
+        showClient(endSessionClient2);
+        assertStatusOrRedirect(endSessionResponse2.getStatus(), Status.BAD_REQUEST.getStatusCode());
+        assertEquals(endSessionResponse2.getErrorType(), EndSessionErrorResponseType.INVALID_GRANT_AND_SESSION);
+    }
+
+    @Test
+    public void requestEndSessionFail1() throws Exception {
+        showTitle("requestEndSessionFail1");
+
+        EndSessionClient endSessionClient = new EndSessionClient(endSessionEndpoint);
+        EndSessionResponse response = endSessionClient.execEndSession(null, null, null);
+
+        showClient(endSessionClient);
+        assertEquals(response.getStatus(), 400, "Unexpected response code. Entity: " + response.getEntity());
+        assertNotNull(response.getEntity(), "The entity is null");
+        assertNotNull(response.getErrorType(), "The error type is null");
+        assertNotNull(response.getErrorDescription(), "The error description is null");
+    }
+
+    @Parameters({"postLogoutRedirectUri"})
+    @Test
+    public void requestEndSessionFail2(final String postLogoutRedirectUri) throws Exception {
+        showTitle("requestEndSessionFail2");
+
+        String state = UUID.randomUUID().toString();
+
+        EndSessionClient endSessionClient = new EndSessionClient(endSessionEndpoint);
+        EndSessionResponse response = endSessionClient.execEndSession("INVALID_ACCESS_TOKEN", postLogoutRedirectUri, state);
+
+        showClient(endSessionClient);
+        assertStatusOrRedirect(response.getStatus(), Status.BAD_REQUEST.getStatusCode());
+        assertNotNull(response.getEntity(), "The entity is null");
+        assertNotNull(response.getErrorType(), "The error type is null");
+        assertNotNull(response.getErrorDescription(), "The error description is null");
+    }
+}
\ No newline at end of file
diff --git a/oxAuth/Client/src/test/java/org/gluu/oxauth/ws/rs/GluuConfigurationWebServiceHttpTest.java b/oxAuth/Client/src/test/java/org/gluu/oxauth/ws/rs/GluuConfigurationWebServiceHttpTest.java
new file mode 100644
index 00000000..1f01e722
--- /dev/null
+++ b/oxAuth/Client/src/test/java/org/gluu/oxauth/ws/rs/GluuConfigurationWebServiceHttpTest.java
@@ -0,0 +1,25 @@
+package org.gluu.oxauth.ws.rs;
+
+import static org.testng.Assert.assertEquals;
+import static org.testng.Assert.assertNotNull;
+
+import org.gluu.oxauth.BaseTest;
+import org.gluu.oxauth.client.GluuConfigurationClient;
+import org.gluu.oxauth.client.GluuConfigurationResponse;
+import org.testng.annotations.Test;
+
+/**
+ * Created by eugeniuparvan on 8/12/16.
+ */
+public class GluuConfigurationWebServiceHttpTest extends BaseTest {
+
+    @Test
+    public void requestGluuConfiguration() throws Exception {
+        GluuConfigurationClient client = new GluuConfigurationClient(gluuConfigurationEndpoint);
+        GluuConfigurationResponse response = client.execGluuConfiguration();
+
+        showClient(client);
+        assertEquals(response.getStatus(), 200, "Unexpected response code. Entity: " + response.getEntity());
+        assertNotNull(response.getEntity(), "The entity is null");
+    }
+}
diff --git a/oxAuth/Client/src/test/java/org/gluu/oxauth/ws/rs/GrantTypesRestrictionHttpTest.java b/oxAuth/Client/src/test/java/org/gluu/oxauth/ws/rs/GrantTypesRestrictionHttpTest.java
new file mode 100644
index 00000000..20348f0a
--- /dev/null
+++ b/oxAuth/Client/src/test/java/org/gluu/oxauth/ws/rs/GrantTypesRestrictionHttpTest.java
@@ -0,0 +1,750 @@
+/*
+ * oxAuth is available under the MIT License (2008). See http://opensource.org/licenses/MIT for full text.
+ *
+ * Copyright (c) 2014, Gluu
+ */
+
+package org.gluu.oxauth.ws.rs;
+
+import static org.gluu.oxauth.model.register.RegisterRequestParam.APPLICATION_TYPE;
+import static org.gluu.oxauth.model.register.RegisterRequestParam.SCOPE;
+import static org.testng.Assert.assertEquals;
+import static org.testng.Assert.assertNotNull;
+import static org.testng.Assert.assertNull;
+import static org.testng.Assert.assertTrue;
+
+import java.util.Arrays;
+import java.util.List;
+import java.util.UUID;
+
+import org.gluu.oxauth.BaseTest;
+import org.gluu.oxauth.client.AuthorizationRequest;
+import org.gluu.oxauth.client.AuthorizationResponse;
+import org.gluu.oxauth.client.AuthorizeClient;
+import org.gluu.oxauth.client.EndSessionClient;
+import org.gluu.oxauth.client.EndSessionRequest;
+import org.gluu.oxauth.client.EndSessionResponse;
+import org.gluu.oxauth.client.JwkClient;
+import org.gluu.oxauth.client.RegisterClient;
+import org.gluu.oxauth.client.RegisterRequest;
+import org.gluu.oxauth.client.RegisterResponse;
+import org.gluu.oxauth.client.TokenClient;
+import org.gluu.oxauth.client.TokenRequest;
+import org.gluu.oxauth.client.TokenResponse;
+import org.gluu.oxauth.client.UserInfoClient;
+import org.gluu.oxauth.client.UserInfoResponse;
+import org.gluu.oxauth.model.common.AuthenticationMethod;
+import org.gluu.oxauth.model.common.GrantType;
+import org.gluu.oxauth.model.common.ResponseType;
+import org.gluu.oxauth.model.common.SubjectType;
+import org.gluu.oxauth.model.crypto.signature.RSAPublicKey;
+import org.gluu.oxauth.model.crypto.signature.SignatureAlgorithm;
+import org.gluu.oxauth.model.jws.RSASigner;
+import org.gluu.oxauth.model.jwt.Jwt;
+import org.gluu.oxauth.model.jwt.JwtClaimName;
+import org.gluu.oxauth.model.jwt.JwtHeaderName;
+import org.gluu.oxauth.model.register.ApplicationType;
+import org.gluu.oxauth.model.util.StringUtils;
+import org.testng.ITestContext;
+import org.testng.annotations.DataProvider;
+import org.testng.annotations.Test;
+
+import com.google.common.collect.Lists;
+
+/**
+ * @author Javier Rojas Blum
+ * @version November 29, 2017
+ */
+public class GrantTypesRestrictionHttpTest extends BaseTest {
+
+    @Test(dataProvider = "grantTypesRestrictionDataProvider")
+    public void grantTypesRestriction(
+            final List<ResponseType> responseTypes, final List<ResponseType> expectedResponseTypes,
+            final List<GrantType> grantTypes, final List<GrantType> expectedGrantTypes,
+            final String userId, final String userSecret,
+            final String redirectUris, final String redirectUri, final String sectorIdentifierUri,
+            final String postLogoutRedirectUri, final String logoutUri) throws Exception {
+        showTitle("grantTypesRestriction");
+
+        List<String> scopes = Arrays.asList("openid", "profile", "address", "email", "user_name");
+
+        // 1. Register client
+        RegisterRequest registerRequest = new RegisterRequest(ApplicationType.WEB, "oxAuth test app",
+                StringUtils.spaceSeparatedToList(redirectUris));
+        registerRequest.setResponseTypes(responseTypes);
+        registerRequest.setGrantTypes(grantTypes);
+        registerRequest.setScope(scopes);
+        registerRequest.setSubjectType(SubjectType.PAIRWISE);
+        registerRequest.setSectorIdentifierUri(sectorIdentifierUri);
+        registerRequest.setPostLogoutRedirectUris(Arrays.asList(postLogoutRedirectUri));
+        registerRequest.setFrontChannelLogoutUris(Lists.newArrayList(logoutUri));
+
+        RegisterClient registerClient = new RegisterClient(registrationEndpoint);
+        registerClient.setRequest(registerRequest);
+        RegisterResponse registerResponse = registerClient.exec();
+
+        showClient(registerClient);
+        assertEquals(registerResponse.getStatus(), 200);
+        assertNotNull(registerResponse.getClientId());
+        assertNotNull(registerResponse.getClientSecret());
+        assertNotNull(registerResponse.getRegistrationAccessToken());
+        assertNotNull(registerResponse.getClientIdIssuedAt());
+        assertNotNull(registerResponse.getClientSecretExpiresAt());
+        assertNotNull(registerResponse.getResponseTypes());
+        assertTrue(registerResponse.getResponseTypes().containsAll(expectedResponseTypes));
+        assertNotNull(registerResponse.getGrantTypes());
+        assertTrue(registerResponse.getGrantTypes().containsAll(expectedGrantTypes));
+
+        String clientId = registerResponse.getClientId();
+        String clientSecret = registerResponse.getClientSecret();
+        String registrationAccessToken = registerResponse.getRegistrationAccessToken();
+        String registrationClientUri = registerResponse.getRegistrationClientUri();
+
+        // 2. Client read
+        RegisterRequest readRequest = new RegisterRequest(registrationAccessToken);
+
+        RegisterClient readClient = new RegisterClient(registrationClientUri);
+        readClient.setRequest(readRequest);
+        RegisterResponse readResponse = registerClient.exec();
+
+        showClient(registerClient);
+        assertEquals(readResponse.getStatus(), 200);
+        assertNotNull(readResponse.getClientId());
+        assertNotNull(readResponse.getClientSecret());
+        assertNotNull(readResponse.getRegistrationAccessToken());
+        assertNotNull(readResponse.getRegistrationClientUri());
+        assertNotNull(readResponse.getClientSecretExpiresAt());
+        assertNotNull(readResponse.getClaims().get(APPLICATION_TYPE.toString()));
+        assertNotNull(readResponse.getClaims().get(SCOPE.toString()));
+        assertNotNull(readResponse.getResponseTypes());
+        assertTrue(readResponse.getResponseTypes().containsAll(expectedResponseTypes));
+        assertNotNull(readResponse.getGrantTypes());
+        assertTrue(readResponse.getGrantTypes().containsAll(expectedGrantTypes));
+
+        // 3. Request authorization
+        String nonce = UUID.randomUUID().toString();
+        String state = UUID.randomUUID().toString();
+
+        AuthorizationRequest authorizationRequest = new AuthorizationRequest(expectedResponseTypes, clientId, scopes, redirectUri, nonce);
+        authorizationRequest.setState(state);
+
+        if (expectedResponseTypes.size() == 0) {
+            AuthorizeClient authorizeClient = new AuthorizeClient(authorizationEndpoint);
+            authorizeClient.setRequest(authorizationRequest);
+            AuthorizationResponse authorizationResponse = authorizeClient.exec();
+
+            showClient(authorizeClient);
+            assertEquals(authorizationResponse.getStatus(), 302);
+            assertNotNull(authorizationResponse.getLocation());
+            assertNotNull(authorizationResponse.getErrorType());
+            assertNotNull(authorizationResponse.getErrorDescription());
+            assertNotNull(authorizationResponse.getState());
+
+            return;
+        }
+
+        AuthorizationResponse authorizationResponse = authenticateResourceOwnerAndGrantAccess(
+                authorizationEndpoint, authorizationRequest, userId, userSecret);
+
+        String scope = authorizationResponse.getScope();
+        String authorizationCode = null;
+        String accessToken = null;
+        String idToken = null;
+        String refreshToken = null;
+
+        assertNotNull(authorizationResponse.getLocation());
+        assertNotNull(authorizationResponse.getState());
+        assertNotNull(authorizationResponse.getScope());
+        if (expectedResponseTypes.contains(ResponseType.CODE)) {
+            assertNotNull(authorizationResponse.getCode());
+
+            authorizationCode = authorizationResponse.getCode();
+        }
+        if (expectedResponseTypes.contains(ResponseType.TOKEN)) {
+            assertNotNull(authorizationResponse.getAccessToken());
+
+            accessToken = authorizationResponse.getAccessToken();
+        }
+        if (expectedResponseTypes.contains(ResponseType.ID_TOKEN)) {
+            assertNotNull(authorizationResponse.getIdToken());
+
+            idToken = authorizationResponse.getIdToken();
+
+            // 4. Validate id_token
+            Jwt jwt = Jwt.parse(idToken);
+            assertNotNull(jwt.getHeader().getClaimAsString(JwtHeaderName.TYPE));
+            assertNotNull(jwt.getHeader().getClaimAsString(JwtHeaderName.ALGORITHM));
+            assertNotNull(jwt.getClaims().getClaimAsString(JwtClaimName.ISSUER));
+            assertNotNull(jwt.getClaims().getClaimAsString(JwtClaimName.AUDIENCE));
+            assertNotNull(jwt.getClaims().getClaimAsString(JwtClaimName.EXPIRATION_TIME));
+            assertNotNull(jwt.getClaims().getClaimAsString(JwtClaimName.ISSUED_AT));
+            assertNotNull(jwt.getClaims().getClaimAsString(JwtClaimName.SUBJECT_IDENTIFIER));
+            assertNotNull(jwt.getClaims().getClaimAsString(JwtClaimName.AUTHENTICATION_TIME));
+
+            RSAPublicKey publicKey = JwkClient.getRSAPublicKey(
+                    jwksUri,
+                    jwt.getHeader().getClaimAsString(JwtHeaderName.KEY_ID));
+            RSASigner rsaSigner = new RSASigner(SignatureAlgorithm.RS256, publicKey);
+
+            assertTrue(rsaSigner.validate(jwt));
+
+            if (expectedResponseTypes.contains(ResponseType.CODE)) {
+                assertNotNull(jwt.getClaims().getClaimAsString(JwtClaimName.CODE_HASH));
+                assertTrue(rsaSigner.validateAuthorizationCode(authorizationCode, jwt));
+            }
+            if (expectedResponseTypes.contains(ResponseType.TOKEN)) {
+                assertNotNull(jwt.getClaims().getClaimAsString(JwtClaimName.ACCESS_TOKEN_HASH));
+                assertTrue(rsaSigner.validateAccessToken(accessToken, jwt));
+            }
+        }
+
+        if (expectedResponseTypes.contains(ResponseType.CODE)) {
+            // 5. Request access token using the authorization code.
+            TokenRequest tokenRequest = new TokenRequest(GrantType.AUTHORIZATION_CODE);
+            tokenRequest.setCode(authorizationCode);
+            tokenRequest.setRedirectUri(redirectUri);
+            tokenRequest.setAuthUsername(clientId);
+            tokenRequest.setAuthPassword(clientSecret);
+            tokenRequest.setAuthenticationMethod(AuthenticationMethod.CLIENT_SECRET_BASIC);
+
+            TokenClient tokenClient = new TokenClient(tokenEndpoint);
+            tokenClient.setRequest(tokenRequest);
+            TokenResponse tokenResponse = tokenClient.exec();
+
+            showClient(tokenClient);
+            assertEquals(tokenResponse.getStatus(), 200);
+            assertNotNull(tokenResponse.getEntity());
+            assertNotNull(tokenResponse.getAccessToken());
+            assertNotNull(tokenResponse.getExpiresIn());
+            assertNotNull(tokenResponse.getTokenType());
+
+            if (expectedGrantTypes.contains(GrantType.REFRESH_TOKEN)) {
+                assertNotNull(tokenResponse.getRefreshToken());
+
+                refreshToken = tokenResponse.getRefreshToken();
+
+                // 6. Request new access token using the refresh token.
+                TokenClient refreshTokenClient = new TokenClient(tokenEndpoint);
+                TokenResponse refreshTokenResponse = refreshTokenClient.execRefreshToken(scope, refreshToken, clientId, clientSecret);
+
+                showClient(refreshTokenClient);
+                assertEquals(refreshTokenResponse.getStatus(), 200);
+                assertNotNull(refreshTokenResponse.getEntity());
+                assertNotNull(refreshTokenResponse.getAccessToken());
+                assertNotNull(refreshTokenResponse.getTokenType());
+                assertNotNull(refreshTokenResponse.getRefreshToken());
+                assertNotNull(refreshTokenResponse.getScope());
+
+                accessToken = refreshTokenResponse.getAccessToken();
+            } else {
+                assertNull(tokenResponse.getRefreshToken());
+            }
+        }
+
+        if (accessToken != null) {
+            // 7. Request user info
+            UserInfoClient userInfoClient = new UserInfoClient(userInfoEndpoint);
+            UserInfoResponse userInfoResponse = userInfoClient.execUserInfo(accessToken);
+
+            showClient(userInfoClient);
+            assertEquals(userInfoResponse.getStatus(), 200);
+            assertNotNull(userInfoResponse.getClaim(JwtClaimName.SUBJECT_IDENTIFIER));
+            assertNotNull(userInfoResponse.getClaim(JwtClaimName.NAME));
+            assertNotNull(userInfoResponse.getClaim(JwtClaimName.FAMILY_NAME));
+            assertNotNull(userInfoResponse.getClaim(JwtClaimName.EMAIL));
+            assertNotNull(userInfoResponse.getClaim(JwtClaimName.ADDRESS));
+
+            if (idToken != null) {
+                // 8. End session
+                String endSessionId = UUID.randomUUID().toString();
+                EndSessionRequest endSessionRequest = new EndSessionRequest(idToken, postLogoutRedirectUri, endSessionId);
+                endSessionRequest.setSid(authorizationResponse.getSid());
+
+                EndSessionClient endSessionClient = new EndSessionClient(endSessionEndpoint);
+                endSessionClient.setRequest(endSessionRequest);
+
+                EndSessionResponse endSessionResponse = endSessionClient.exec();
+
+                showClient(endSessionClient);
+                assertEquals(endSessionResponse.getStatus(), 200);
+                assertNotNull(endSessionResponse.getHtmlPage());
+
+                // silly validation of html content returned by server but at least it verifies that logout_uri and post_logout_uri are present
+                assertTrue(endSessionResponse.getHtmlPage().contains("<html>"));
+                assertTrue(endSessionResponse.getHtmlPage().contains(logoutUri));
+                assertTrue(endSessionResponse.getHtmlPage().contains(postLogoutRedirectUri));
+                // assertEquals(endSessionResponse.getState(), endSessionId); // commented out, for http-based logout we get html page
+            }
+        }
+    }
+
+    @DataProvider(name = "grantTypesRestrictionDataProvider")
+    public Object[][] omittedResponseTypesFailDataProvider(ITestContext context) {
+        String userId = context.getCurrentXmlTest().getParameter("userId");
+        String userSecret = context.getCurrentXmlTest().getParameter("userSecret");
+        String redirectUris = context.getCurrentXmlTest().getParameter("redirectUris");
+        String redirectUri = context.getCurrentXmlTest().getParameter("redirectUri");
+        String sectorIdentifierUri = context.getCurrentXmlTest().getParameter("sectorIdentifierUri");
+        String postLogoutRedirectUri = context.getCurrentXmlTest().getParameter("postLogoutRedirectUri");
+        String logoutUri = context.getCurrentXmlTest().getParameter("logoutUri");
+
+        return new Object[][]{
+                {
+                        Arrays.asList(),
+                        Arrays.asList(ResponseType.CODE),
+                        Arrays.asList(),
+                        Arrays.asList(GrantType.AUTHORIZATION_CODE, GrantType.REFRESH_TOKEN),
+                        userId, userSecret, redirectUris, redirectUri, sectorIdentifierUri, postLogoutRedirectUri, logoutUri
+                },
+                {
+                        Arrays.asList(ResponseType.CODE),
+                        Arrays.asList(ResponseType.CODE),
+                        Arrays.asList(),
+                        Arrays.asList(GrantType.AUTHORIZATION_CODE, GrantType.REFRESH_TOKEN),
+                        userId, userSecret, redirectUris, redirectUri, sectorIdentifierUri, postLogoutRedirectUri, logoutUri
+                },
+                {
+                        Arrays.asList(ResponseType.TOKEN),
+                        Arrays.asList(ResponseType.TOKEN),
+                        Arrays.asList(),
+                        Arrays.asList(GrantType.IMPLICIT),
+                        userId, userSecret, redirectUris, redirectUri, sectorIdentifierUri, postLogoutRedirectUri, logoutUri
+                },
+                {
+                        Arrays.asList(ResponseType.ID_TOKEN),
+                        Arrays.asList(ResponseType.ID_TOKEN),
+                        Arrays.asList(),
+                        Arrays.asList(GrantType.IMPLICIT),
+                        userId, userSecret, redirectUris, redirectUri, sectorIdentifierUri, postLogoutRedirectUri, logoutUri
+                },
+                {
+                        Arrays.asList(ResponseType.TOKEN, ResponseType.ID_TOKEN),
+                        Arrays.asList(ResponseType.TOKEN, ResponseType.ID_TOKEN),
+                        Arrays.asList(),
+                        Arrays.asList(GrantType.IMPLICIT),
+                        userId, userSecret, redirectUris, redirectUri, sectorIdentifierUri, postLogoutRedirectUri, logoutUri
+                },
+                {
+                        Arrays.asList(ResponseType.CODE, ResponseType.ID_TOKEN),
+                        Arrays.asList(ResponseType.CODE, ResponseType.ID_TOKEN),
+                        Arrays.asList(),
+                        Arrays.asList(GrantType.AUTHORIZATION_CODE, GrantType.IMPLICIT, GrantType.REFRESH_TOKEN),
+                        userId, userSecret, redirectUris, redirectUri, sectorIdentifierUri, postLogoutRedirectUri, logoutUri
+                },
+                {
+                        Arrays.asList(ResponseType.CODE, ResponseType.TOKEN),
+                        Arrays.asList(ResponseType.CODE, ResponseType.TOKEN),
+                        Arrays.asList(),
+                        Arrays.asList(GrantType.AUTHORIZATION_CODE, GrantType.IMPLICIT, GrantType.REFRESH_TOKEN),
+                        userId, userSecret, redirectUris, redirectUri, sectorIdentifierUri, postLogoutRedirectUri, logoutUri
+                },
+                {
+                        Arrays.asList(ResponseType.CODE, ResponseType.TOKEN, ResponseType.ID_TOKEN),
+                        Arrays.asList(ResponseType.CODE, ResponseType.TOKEN, ResponseType.ID_TOKEN),
+                        Arrays.asList(),
+                        Arrays.asList(GrantType.AUTHORIZATION_CODE, GrantType.IMPLICIT, GrantType.REFRESH_TOKEN),
+                        userId, userSecret, redirectUris, redirectUri, sectorIdentifierUri, postLogoutRedirectUri, logoutUri
+                },
+                //
+                {
+                        Arrays.asList(),
+                        Arrays.asList(ResponseType.CODE),
+                        Arrays.asList(GrantType.AUTHORIZATION_CODE),
+                        Arrays.asList(GrantType.AUTHORIZATION_CODE, GrantType.REFRESH_TOKEN),
+                        userId, userSecret, redirectUris, redirectUri, sectorIdentifierUri, postLogoutRedirectUri, logoutUri
+                },
+                {
+                        Arrays.asList(),
+                        Arrays.asList(ResponseType.TOKEN),
+                        Arrays.asList(GrantType.IMPLICIT),
+                        Arrays.asList(GrantType.IMPLICIT),
+                        userId, userSecret, redirectUris, redirectUri, sectorIdentifierUri, postLogoutRedirectUri, logoutUri
+                },
+                {
+                        Arrays.asList(),
+                        Arrays.asList(ResponseType.CODE, ResponseType.TOKEN),
+                        Arrays.asList(GrantType.AUTHORIZATION_CODE, GrantType.IMPLICIT),
+                        Arrays.asList(GrantType.AUTHORIZATION_CODE, GrantType.REFRESH_TOKEN, GrantType.IMPLICIT),
+                        userId, userSecret, redirectUris, redirectUri, sectorIdentifierUri, postLogoutRedirectUri, logoutUri
+                },
+                {
+                        Arrays.asList(),
+                        Arrays.asList(),
+                        Arrays.asList(GrantType.REFRESH_TOKEN),
+                        Arrays.asList(GrantType.REFRESH_TOKEN),
+                        userId, userSecret, redirectUris, redirectUri, sectorIdentifierUri, postLogoutRedirectUri, logoutUri
+                },
+                {
+                        Arrays.asList(),
+                        Arrays.asList(),
+                        Arrays.asList(GrantType.RESOURCE_OWNER_PASSWORD_CREDENTIALS),
+                        Arrays.asList(GrantType.RESOURCE_OWNER_PASSWORD_CREDENTIALS),
+                        userId, userSecret, redirectUris, redirectUri, sectorIdentifierUri, postLogoutRedirectUri, logoutUri
+                },
+                {
+                        Arrays.asList(),
+                        Arrays.asList(),
+                        Arrays.asList(GrantType.CLIENT_CREDENTIALS),
+                        Arrays.asList(GrantType.CLIENT_CREDENTIALS),
+                        userId, userSecret, redirectUris, redirectUri, sectorIdentifierUri, postLogoutRedirectUri, logoutUri
+                },
+                {
+                        Arrays.asList(),
+                        Arrays.asList(),
+                        Arrays.asList(GrantType.OXAUTH_UMA_TICKET),
+                        Arrays.asList(GrantType.OXAUTH_UMA_TICKET),
+                        userId, userSecret, redirectUris, redirectUri, sectorIdentifierUri, postLogoutRedirectUri, logoutUri
+                },
+                //
+                {
+                        Arrays.asList(ResponseType.CODE),
+                        Arrays.asList(ResponseType.CODE),
+                        Arrays.asList(GrantType.AUTHORIZATION_CODE),
+                        Arrays.asList(GrantType.AUTHORIZATION_CODE, GrantType.REFRESH_TOKEN),
+                        userId, userSecret, redirectUris, redirectUri, sectorIdentifierUri, postLogoutRedirectUri, logoutUri
+                },
+                {
+                        Arrays.asList(ResponseType.CODE),
+                        Arrays.asList(ResponseType.CODE, ResponseType.TOKEN),
+                        Arrays.asList(GrantType.IMPLICIT),
+                        Arrays.asList(GrantType.AUTHORIZATION_CODE, GrantType.REFRESH_TOKEN, GrantType.IMPLICIT),
+                        userId, userSecret, redirectUris, redirectUri, sectorIdentifierUri, postLogoutRedirectUri, logoutUri
+                },
+                {
+                        Arrays.asList(ResponseType.CODE),
+                        Arrays.asList(ResponseType.CODE, ResponseType.TOKEN),
+                        Arrays.asList(GrantType.AUTHORIZATION_CODE, GrantType.IMPLICIT),
+                        Arrays.asList(GrantType.AUTHORIZATION_CODE, GrantType.REFRESH_TOKEN, GrantType.IMPLICIT),
+                        userId, userSecret, redirectUris, redirectUri, sectorIdentifierUri, postLogoutRedirectUri, logoutUri
+                },
+                {
+                        Arrays.asList(ResponseType.CODE),
+                        Arrays.asList(ResponseType.CODE),
+                        Arrays.asList(GrantType.REFRESH_TOKEN),
+                        Arrays.asList(GrantType.AUTHORIZATION_CODE, GrantType.REFRESH_TOKEN),
+                        userId, userSecret, redirectUris, redirectUri, sectorIdentifierUri, postLogoutRedirectUri, logoutUri
+                },
+                {
+                        Arrays.asList(ResponseType.CODE),
+                        Arrays.asList(ResponseType.CODE),
+                        Arrays.asList(GrantType.RESOURCE_OWNER_PASSWORD_CREDENTIALS),
+                        Arrays.asList(GrantType.AUTHORIZATION_CODE, GrantType.REFRESH_TOKEN, GrantType.RESOURCE_OWNER_PASSWORD_CREDENTIALS),
+                        userId, userSecret, redirectUris, redirectUri, sectorIdentifierUri, postLogoutRedirectUri, logoutUri
+                },
+                {
+                        Arrays.asList(ResponseType.CODE),
+                        Arrays.asList(ResponseType.CODE),
+                        Arrays.asList(GrantType.CLIENT_CREDENTIALS),
+                        Arrays.asList(GrantType.AUTHORIZATION_CODE, GrantType.REFRESH_TOKEN, GrantType.CLIENT_CREDENTIALS),
+                        userId, userSecret, redirectUris, redirectUri, sectorIdentifierUri, postLogoutRedirectUri, logoutUri
+                },
+                {
+                        Arrays.asList(ResponseType.CODE),
+                        Arrays.asList(ResponseType.CODE),
+                        Arrays.asList(GrantType.OXAUTH_UMA_TICKET),
+                        Arrays.asList(GrantType.AUTHORIZATION_CODE, GrantType.REFRESH_TOKEN, GrantType.OXAUTH_UMA_TICKET),
+                        userId, userSecret, redirectUris, redirectUri, sectorIdentifierUri, postLogoutRedirectUri, logoutUri
+                },
+                //
+                {
+                        Arrays.asList(ResponseType.TOKEN),
+                        Arrays.asList(ResponseType.CODE, ResponseType.TOKEN),
+                        Arrays.asList(GrantType.AUTHORIZATION_CODE),
+                        Arrays.asList(GrantType.AUTHORIZATION_CODE, GrantType.REFRESH_TOKEN, GrantType.IMPLICIT),
+                        userId, userSecret, redirectUris, redirectUri, sectorIdentifierUri, postLogoutRedirectUri, logoutUri
+                },
+                {
+                        Arrays.asList(ResponseType.TOKEN),
+                        Arrays.asList(ResponseType.TOKEN),
+                        Arrays.asList(GrantType.IMPLICIT),
+                        Arrays.asList(GrantType.IMPLICIT),
+                        userId, userSecret, redirectUris, redirectUri, sectorIdentifierUri, postLogoutRedirectUri, logoutUri
+                },
+                {
+                        Arrays.asList(ResponseType.TOKEN),
+                        Arrays.asList(ResponseType.CODE, ResponseType.TOKEN),
+                        Arrays.asList(GrantType.AUTHORIZATION_CODE, GrantType.IMPLICIT),
+                        Arrays.asList(GrantType.AUTHORIZATION_CODE, GrantType.REFRESH_TOKEN, GrantType.IMPLICIT),
+                        userId, userSecret, redirectUris, redirectUri, sectorIdentifierUri, postLogoutRedirectUri, logoutUri
+                },
+                {
+                        Arrays.asList(ResponseType.TOKEN),
+                        Arrays.asList(ResponseType.TOKEN),
+                        Arrays.asList(GrantType.REFRESH_TOKEN),
+                        Arrays.asList(GrantType.IMPLICIT, GrantType.REFRESH_TOKEN),
+                        userId, userSecret, redirectUris, redirectUri, sectorIdentifierUri, postLogoutRedirectUri, logoutUri
+                },
+                {
+                        Arrays.asList(ResponseType.TOKEN),
+                        Arrays.asList(ResponseType.TOKEN),
+                        Arrays.asList(GrantType.RESOURCE_OWNER_PASSWORD_CREDENTIALS),
+                        Arrays.asList(GrantType.IMPLICIT, GrantType.RESOURCE_OWNER_PASSWORD_CREDENTIALS),
+                        userId, userSecret, redirectUris, redirectUri, sectorIdentifierUri, postLogoutRedirectUri, logoutUri
+                },
+                {
+                        Arrays.asList(ResponseType.TOKEN),
+                        Arrays.asList(ResponseType.TOKEN),
+                        Arrays.asList(GrantType.CLIENT_CREDENTIALS),
+                        Arrays.asList(GrantType.IMPLICIT, GrantType.CLIENT_CREDENTIALS),
+                        userId, userSecret, redirectUris, redirectUri, sectorIdentifierUri, postLogoutRedirectUri, logoutUri
+                },
+                {
+                        Arrays.asList(ResponseType.TOKEN),
+                        Arrays.asList(ResponseType.TOKEN),
+                        Arrays.asList(GrantType.OXAUTH_UMA_TICKET),
+                        Arrays.asList(GrantType.IMPLICIT, GrantType.OXAUTH_UMA_TICKET),
+                        userId, userSecret, redirectUris, redirectUri, sectorIdentifierUri, postLogoutRedirectUri, logoutUri
+                },
+                //
+                {
+                        Arrays.asList(ResponseType.ID_TOKEN),
+                        Arrays.asList(ResponseType.CODE, ResponseType.ID_TOKEN),
+                        Arrays.asList(GrantType.AUTHORIZATION_CODE),
+                        Arrays.asList(GrantType.AUTHORIZATION_CODE, GrantType.REFRESH_TOKEN, GrantType.IMPLICIT),
+                        userId, userSecret, redirectUris, redirectUri, sectorIdentifierUri, postLogoutRedirectUri, logoutUri
+                },
+                {
+                        Arrays.asList(ResponseType.ID_TOKEN),
+                        Arrays.asList(ResponseType.ID_TOKEN),
+                        Arrays.asList(GrantType.IMPLICIT),
+                        Arrays.asList(GrantType.IMPLICIT),
+                        userId, userSecret, redirectUris, redirectUri, sectorIdentifierUri, postLogoutRedirectUri, logoutUri
+                },
+                {
+                        Arrays.asList(ResponseType.ID_TOKEN),
+                        Arrays.asList(ResponseType.CODE, ResponseType.ID_TOKEN),
+                        Arrays.asList(GrantType.AUTHORIZATION_CODE, GrantType.IMPLICIT),
+                        Arrays.asList(GrantType.AUTHORIZATION_CODE, GrantType.REFRESH_TOKEN, GrantType.IMPLICIT),
+                        userId, userSecret, redirectUris, redirectUri, sectorIdentifierUri, postLogoutRedirectUri, logoutUri
+                },
+                {
+                        Arrays.asList(ResponseType.ID_TOKEN),
+                        Arrays.asList(ResponseType.ID_TOKEN),
+                        Arrays.asList(GrantType.REFRESH_TOKEN),
+                        Arrays.asList(GrantType.IMPLICIT, GrantType.REFRESH_TOKEN),
+                        userId, userSecret, redirectUris, redirectUri, sectorIdentifierUri, postLogoutRedirectUri, logoutUri
+                },
+                {
+                        Arrays.asList(ResponseType.ID_TOKEN),
+                        Arrays.asList(ResponseType.ID_TOKEN),
+                        Arrays.asList(GrantType.RESOURCE_OWNER_PASSWORD_CREDENTIALS),
+                        Arrays.asList(GrantType.IMPLICIT, GrantType.RESOURCE_OWNER_PASSWORD_CREDENTIALS),
+                        userId, userSecret, redirectUris, redirectUri, sectorIdentifierUri, postLogoutRedirectUri, logoutUri
+                },
+                {
+                        Arrays.asList(ResponseType.ID_TOKEN),
+                        Arrays.asList(ResponseType.ID_TOKEN),
+                        Arrays.asList(GrantType.CLIENT_CREDENTIALS),
+                        Arrays.asList(GrantType.IMPLICIT, GrantType.CLIENT_CREDENTIALS),
+                        userId, userSecret, redirectUris, redirectUri, sectorIdentifierUri, postLogoutRedirectUri, logoutUri
+                },
+                {
+                        Arrays.asList(ResponseType.ID_TOKEN),
+                        Arrays.asList(ResponseType.ID_TOKEN),
+                        Arrays.asList(GrantType.OXAUTH_UMA_TICKET),
+                        Arrays.asList(GrantType.IMPLICIT, GrantType.OXAUTH_UMA_TICKET),
+                        userId, userSecret, redirectUris, redirectUri, sectorIdentifierUri, postLogoutRedirectUri, logoutUri
+                },
+                //
+                {
+                        Arrays.asList(ResponseType.TOKEN, ResponseType.ID_TOKEN),
+                        Arrays.asList(ResponseType.CODE, ResponseType.TOKEN, ResponseType.ID_TOKEN),
+                        Arrays.asList(GrantType.AUTHORIZATION_CODE),
+                        Arrays.asList(GrantType.AUTHORIZATION_CODE, GrantType.REFRESH_TOKEN, GrantType.IMPLICIT),
+                        userId, userSecret, redirectUris, redirectUri, sectorIdentifierUri, postLogoutRedirectUri, logoutUri
+                },
+                {
+                        Arrays.asList(ResponseType.TOKEN, ResponseType.ID_TOKEN),
+                        Arrays.asList(ResponseType.TOKEN, ResponseType.ID_TOKEN),
+                        Arrays.asList(GrantType.IMPLICIT),
+                        Arrays.asList(GrantType.IMPLICIT),
+                        userId, userSecret, redirectUris, redirectUri, sectorIdentifierUri, postLogoutRedirectUri, logoutUri
+                },
+                {
+                        Arrays.asList(ResponseType.TOKEN, ResponseType.ID_TOKEN),
+                        Arrays.asList(ResponseType.CODE, ResponseType.TOKEN, ResponseType.ID_TOKEN),
+                        Arrays.asList(GrantType.AUTHORIZATION_CODE, GrantType.IMPLICIT),
+                        Arrays.asList(GrantType.AUTHORIZATION_CODE, GrantType.REFRESH_TOKEN, GrantType.IMPLICIT),
+                        userId, userSecret, redirectUris, redirectUri, sectorIdentifierUri, postLogoutRedirectUri, logoutUri
+                },
+                {
+                        Arrays.asList(ResponseType.TOKEN, ResponseType.ID_TOKEN),
+                        Arrays.asList(ResponseType.TOKEN, ResponseType.ID_TOKEN),
+                        Arrays.asList(GrantType.REFRESH_TOKEN),
+                        Arrays.asList(GrantType.IMPLICIT, GrantType.REFRESH_TOKEN),
+                        userId, userSecret, redirectUris, redirectUri, sectorIdentifierUri, postLogoutRedirectUri, logoutUri
+                },
+                {
+                        Arrays.asList(ResponseType.TOKEN, ResponseType.ID_TOKEN),
+                        Arrays.asList(ResponseType.TOKEN, ResponseType.ID_TOKEN),
+                        Arrays.asList(GrantType.RESOURCE_OWNER_PASSWORD_CREDENTIALS),
+                        Arrays.asList(GrantType.IMPLICIT, GrantType.RESOURCE_OWNER_PASSWORD_CREDENTIALS),
+                        userId, userSecret, redirectUris, redirectUri, sectorIdentifierUri, postLogoutRedirectUri, logoutUri
+                },
+                {
+                        Arrays.asList(ResponseType.TOKEN, ResponseType.ID_TOKEN),
+                        Arrays.asList(ResponseType.TOKEN, ResponseType.ID_TOKEN),
+                        Arrays.asList(GrantType.CLIENT_CREDENTIALS),
+                        Arrays.asList(GrantType.IMPLICIT, GrantType.CLIENT_CREDENTIALS),
+                        userId, userSecret, redirectUris, redirectUri, sectorIdentifierUri, postLogoutRedirectUri, logoutUri
+                },
+                {
+                        Arrays.asList(ResponseType.TOKEN, ResponseType.ID_TOKEN),
+                        Arrays.asList(ResponseType.TOKEN, ResponseType.ID_TOKEN),
+                        Arrays.asList(GrantType.OXAUTH_UMA_TICKET),
+                        Arrays.asList(GrantType.IMPLICIT, GrantType.OXAUTH_UMA_TICKET),
+                        userId, userSecret, redirectUris, redirectUri, sectorIdentifierUri, postLogoutRedirectUri, logoutUri
+                },
+                //
+                {
+                        Arrays.asList(ResponseType.CODE, ResponseType.ID_TOKEN),
+                        Arrays.asList(ResponseType.CODE, ResponseType.ID_TOKEN),
+                        Arrays.asList(GrantType.AUTHORIZATION_CODE),
+                        Arrays.asList(GrantType.AUTHORIZATION_CODE, GrantType.REFRESH_TOKEN, GrantType.IMPLICIT),
+                        userId, userSecret, redirectUris, redirectUri, sectorIdentifierUri, postLogoutRedirectUri, logoutUri
+                },
+                {
+                        Arrays.asList(ResponseType.CODE, ResponseType.ID_TOKEN),
+                        Arrays.asList(ResponseType.CODE, ResponseType.TOKEN, ResponseType.ID_TOKEN),
+                        Arrays.asList(GrantType.IMPLICIT),
+                        Arrays.asList(GrantType.AUTHORIZATION_CODE, GrantType.REFRESH_TOKEN, GrantType.IMPLICIT),
+                        userId, userSecret, redirectUris, redirectUri, sectorIdentifierUri, postLogoutRedirectUri, logoutUri
+                },
+                {
+                        Arrays.asList(ResponseType.CODE, ResponseType.ID_TOKEN),
+                        Arrays.asList(ResponseType.CODE, ResponseType.TOKEN, ResponseType.ID_TOKEN),
+                        Arrays.asList(GrantType.AUTHORIZATION_CODE, GrantType.IMPLICIT),
+                        Arrays.asList(GrantType.AUTHORIZATION_CODE, GrantType.REFRESH_TOKEN, GrantType.IMPLICIT),
+                        userId, userSecret, redirectUris, redirectUri, sectorIdentifierUri, postLogoutRedirectUri, logoutUri
+                },
+                {
+                        Arrays.asList(ResponseType.CODE, ResponseType.ID_TOKEN),
+                        Arrays.asList(ResponseType.CODE, ResponseType.TOKEN, ResponseType.ID_TOKEN),
+                        Arrays.asList(GrantType.REFRESH_TOKEN),
+                        Arrays.asList(GrantType.AUTHORIZATION_CODE, GrantType.IMPLICIT, GrantType.REFRESH_TOKEN),
+                        userId, userSecret, redirectUris, redirectUri, sectorIdentifierUri, postLogoutRedirectUri, logoutUri
+                },
+                {
+                        Arrays.asList(ResponseType.CODE, ResponseType.ID_TOKEN),
+                        Arrays.asList(ResponseType.CODE, ResponseType.TOKEN, ResponseType.ID_TOKEN),
+                        Arrays.asList(GrantType.RESOURCE_OWNER_PASSWORD_CREDENTIALS),
+                        Arrays.asList(GrantType.AUTHORIZATION_CODE, GrantType.REFRESH_TOKEN, GrantType.IMPLICIT, GrantType.RESOURCE_OWNER_PASSWORD_CREDENTIALS),
+                        userId, userSecret, redirectUris, redirectUri, sectorIdentifierUri, postLogoutRedirectUri, logoutUri
+                },
+                {
+                        Arrays.asList(ResponseType.CODE, ResponseType.ID_TOKEN),
+                        Arrays.asList(ResponseType.CODE, ResponseType.TOKEN, ResponseType.ID_TOKEN),
+                        Arrays.asList(GrantType.CLIENT_CREDENTIALS),
+                        Arrays.asList(GrantType.AUTHORIZATION_CODE, GrantType.REFRESH_TOKEN, GrantType.IMPLICIT, GrantType.CLIENT_CREDENTIALS),
+                        userId, userSecret, redirectUris, redirectUri, sectorIdentifierUri, postLogoutRedirectUri, logoutUri
+                },
+                {
+                        Arrays.asList(ResponseType.CODE, ResponseType.ID_TOKEN),
+                        Arrays.asList(ResponseType.CODE, ResponseType.TOKEN, ResponseType.ID_TOKEN),
+                        Arrays.asList(GrantType.OXAUTH_UMA_TICKET),
+                        Arrays.asList(GrantType.AUTHORIZATION_CODE, GrantType.REFRESH_TOKEN, GrantType.IMPLICIT, GrantType.OXAUTH_UMA_TICKET),
+                        userId, userSecret, redirectUris, redirectUri, sectorIdentifierUri, postLogoutRedirectUri, logoutUri
+                },
+                //
+                {
+                        Arrays.asList(ResponseType.CODE, ResponseType.TOKEN),
+                        Arrays.asList(ResponseType.CODE, ResponseType.TOKEN),
+                        Arrays.asList(GrantType.AUTHORIZATION_CODE),
+                        Arrays.asList(GrantType.AUTHORIZATION_CODE, GrantType.REFRESH_TOKEN, GrantType.IMPLICIT),
+                        userId, userSecret, redirectUris, redirectUri, sectorIdentifierUri, postLogoutRedirectUri, logoutUri
+                },
+                {
+                        Arrays.asList(ResponseType.CODE, ResponseType.TOKEN),
+                        Arrays.asList(ResponseType.CODE, ResponseType.TOKEN),
+                        Arrays.asList(GrantType.IMPLICIT),
+                        Arrays.asList(GrantType.AUTHORIZATION_CODE, GrantType.REFRESH_TOKEN, GrantType.IMPLICIT),
+                        userId, userSecret, redirectUris, redirectUri, sectorIdentifierUri, postLogoutRedirectUri, logoutUri
+                },
+                {
+                        Arrays.asList(ResponseType.CODE, ResponseType.TOKEN),
+                        Arrays.asList(ResponseType.CODE, ResponseType.TOKEN),
+                        Arrays.asList(GrantType.AUTHORIZATION_CODE, GrantType.IMPLICIT),
+                        Arrays.asList(GrantType.AUTHORIZATION_CODE, GrantType.REFRESH_TOKEN, GrantType.IMPLICIT),
+                        userId, userSecret, redirectUris, redirectUri, sectorIdentifierUri, postLogoutRedirectUri, logoutUri
+                },
+                {
+                        Arrays.asList(ResponseType.CODE, ResponseType.TOKEN),
+                        Arrays.asList(ResponseType.CODE, ResponseType.TOKEN),
+                        Arrays.asList(GrantType.REFRESH_TOKEN),
+                        Arrays.asList(GrantType.AUTHORIZATION_CODE, GrantType.IMPLICIT, GrantType.REFRESH_TOKEN),
+                        userId, userSecret, redirectUris, redirectUri, sectorIdentifierUri, postLogoutRedirectUri, logoutUri
+                },
+                {
+                        Arrays.asList(ResponseType.CODE, ResponseType.TOKEN),
+                        Arrays.asList(ResponseType.CODE, ResponseType.TOKEN),
+                        Arrays.asList(GrantType.RESOURCE_OWNER_PASSWORD_CREDENTIALS),
+                        Arrays.asList(GrantType.AUTHORIZATION_CODE, GrantType.REFRESH_TOKEN, GrantType.IMPLICIT, GrantType.RESOURCE_OWNER_PASSWORD_CREDENTIALS),
+                        userId, userSecret, redirectUris, redirectUri, sectorIdentifierUri, postLogoutRedirectUri, logoutUri
+                },
+                {
+                        Arrays.asList(ResponseType.CODE, ResponseType.TOKEN),
+                        Arrays.asList(ResponseType.CODE, ResponseType.TOKEN),
+                        Arrays.asList(GrantType.CLIENT_CREDENTIALS),
+                        Arrays.asList(GrantType.AUTHORIZATION_CODE, GrantType.REFRESH_TOKEN, GrantType.IMPLICIT, GrantType.CLIENT_CREDENTIALS),
+                        userId, userSecret, redirectUris, redirectUri, sectorIdentifierUri, postLogoutRedirectUri, logoutUri
+                },
+                {
+                        Arrays.asList(ResponseType.CODE, ResponseType.TOKEN),
+                        Arrays.asList(ResponseType.CODE, ResponseType.TOKEN),
+                        Arrays.asList(GrantType.OXAUTH_UMA_TICKET),
+                        Arrays.asList(GrantType.AUTHORIZATION_CODE, GrantType.REFRESH_TOKEN, GrantType.IMPLICIT, GrantType.OXAUTH_UMA_TICKET),
+                        userId, userSecret, redirectUris, redirectUri, sectorIdentifierUri, postLogoutRedirectUri, logoutUri
+                },
+                //
+                {
+                        Arrays.asList(ResponseType.CODE, ResponseType.TOKEN, ResponseType.ID_TOKEN),
+                        Arrays.asList(ResponseType.CODE, ResponseType.TOKEN, ResponseType.ID_TOKEN),
+                        Arrays.asList(GrantType.AUTHORIZATION_CODE),
+                        Arrays.asList(GrantType.AUTHORIZATION_CODE, GrantType.REFRESH_TOKEN, GrantType.IMPLICIT),
+                        userId, userSecret, redirectUris, redirectUri, sectorIdentifierUri, postLogoutRedirectUri, logoutUri
+                },
+                {
+                        Arrays.asList(ResponseType.CODE, ResponseType.TOKEN, ResponseType.ID_TOKEN),
+                        Arrays.asList(ResponseType.CODE, ResponseType.TOKEN, ResponseType.ID_TOKEN),
+                        Arrays.asList(GrantType.IMPLICIT),
+                        Arrays.asList(GrantType.AUTHORIZATION_CODE, GrantType.REFRESH_TOKEN, GrantType.IMPLICIT),
+                        userId, userSecret, redirectUris, redirectUri, sectorIdentifierUri, postLogoutRedirectUri, logoutUri
+                },
+                {
+                        Arrays.asList(ResponseType.CODE, ResponseType.TOKEN, ResponseType.ID_TOKEN),
+                        Arrays.asList(ResponseType.CODE, ResponseType.TOKEN, ResponseType.ID_TOKEN),
+                        Arrays.asList(GrantType.AUTHORIZATION_CODE, GrantType.IMPLICIT),
+                        Arrays.asList(GrantType.AUTHORIZATION_CODE, GrantType.REFRESH_TOKEN, GrantType.IMPLICIT),
+                        userId, userSecret, redirectUris, redirectUri, sectorIdentifierUri, postLogoutRedirectUri, logoutUri
+                },
+                {
+                        Arrays.asList(ResponseType.CODE, ResponseType.TOKEN, ResponseType.ID_TOKEN),
+                        Arrays.asList(ResponseType.CODE, ResponseType.TOKEN, ResponseType.ID_TOKEN),
+                        Arrays.asList(GrantType.REFRESH_TOKEN),
+                        Arrays.asList(GrantType.AUTHORIZATION_CODE, GrantType.IMPLICIT, GrantType.REFRESH_TOKEN),
+                        userId, userSecret, redirectUris, redirectUri, sectorIdentifierUri, postLogoutRedirectUri, logoutUri
+                },
+                {
+                        Arrays.asList(ResponseType.CODE, ResponseType.TOKEN, ResponseType.ID_TOKEN),
+                        Arrays.asList(ResponseType.CODE, ResponseType.TOKEN, ResponseType.ID_TOKEN),
+                        Arrays.asList(GrantType.RESOURCE_OWNER_PASSWORD_CREDENTIALS),
+                        Arrays.asList(GrantType.AUTHORIZATION_CODE, GrantType.REFRESH_TOKEN, GrantType.IMPLICIT, GrantType.RESOURCE_OWNER_PASSWORD_CREDENTIALS),
+                        userId, userSecret, redirectUris, redirectUri, sectorIdentifierUri, postLogoutRedirectUri, logoutUri
+                },
+                {
+                        Arrays.asList(ResponseType.CODE, ResponseType.TOKEN, ResponseType.ID_TOKEN),
+                        Arrays.asList(ResponseType.CODE, ResponseType.TOKEN, ResponseType.ID_TOKEN),
+                        Arrays.asList(GrantType.CLIENT_CREDENTIALS),
+                        Arrays.asList(GrantType.AUTHORIZATION_CODE, GrantType.REFRESH_TOKEN, GrantType.IMPLICIT, GrantType.CLIENT_CREDENTIALS),
+                        userId, userSecret, redirectUris, redirectUri, sectorIdentifierUri, postLogoutRedirectUri, logoutUri
+                },
+                {
+                        Arrays.asList(ResponseType.CODE, ResponseType.TOKEN, ResponseType.ID_TOKEN),
+                        Arrays.asList(ResponseType.CODE, ResponseType.TOKEN, ResponseType.ID_TOKEN),
+                        Arrays.asList(GrantType.OXAUTH_UMA_TICKET),
+                        Arrays.asList(GrantType.AUTHORIZATION_CODE, GrantType.REFRESH_TOKEN, GrantType.IMPLICIT, GrantType.OXAUTH_UMA_TICKET),
+                        userId, userSecret, redirectUris, redirectUri, sectorIdentifierUri, postLogoutRedirectUri, logoutUri
+                },
+        };
+    }
+}
diff --git a/oxAuth/Client/src/test/java/org/gluu/oxauth/ws/rs/IndividualClaimsRequestsTest.java b/oxAuth/Client/src/test/java/org/gluu/oxauth/ws/rs/IndividualClaimsRequestsTest.java
new file mode 100644
index 00000000..c141b9ca
--- /dev/null
+++ b/oxAuth/Client/src/test/java/org/gluu/oxauth/ws/rs/IndividualClaimsRequestsTest.java
@@ -0,0 +1,2414 @@
+/*
+ * oxAuth is available under the MIT License (2008). See http://opensource.org/licenses/MIT for full text.
+ *
+ * Copyright (c) 2014, Gluu
+ */
+
+package org.gluu.oxauth.ws.rs;
+
+import static org.testng.Assert.assertEquals;
+import static org.testng.Assert.assertNotNull;
+import static org.testng.Assert.assertNull;
+import static org.testng.Assert.assertTrue;
+
+import java.security.PrivateKey;
+import java.util.Arrays;
+import java.util.List;
+import java.util.UUID;
+
+import org.gluu.oxauth.BaseTest;
+import org.gluu.oxauth.client.AuthorizationRequest;
+import org.gluu.oxauth.client.AuthorizationResponse;
+import org.gluu.oxauth.client.JwkClient;
+import org.gluu.oxauth.client.JwkResponse;
+import org.gluu.oxauth.client.RegisterClient;
+import org.gluu.oxauth.client.RegisterRequest;
+import org.gluu.oxauth.client.RegisterResponse;
+import org.gluu.oxauth.client.UserInfoClient;
+import org.gluu.oxauth.client.UserInfoResponse;
+import org.gluu.oxauth.client.model.authorize.Claim;
+import org.gluu.oxauth.client.model.authorize.ClaimValue;
+import org.gluu.oxauth.client.model.authorize.JwtAuthorizationRequest;
+import org.gluu.oxauth.model.common.ResponseType;
+import org.gluu.oxauth.model.crypto.AbstractCryptoProvider;
+import org.gluu.oxauth.model.crypto.OxAuthCryptoProvider;
+import org.gluu.oxauth.model.crypto.encryption.BlockEncryptionAlgorithm;
+import org.gluu.oxauth.model.crypto.encryption.KeyEncryptionAlgorithm;
+import org.gluu.oxauth.model.crypto.signature.ECDSAPublicKey;
+import org.gluu.oxauth.model.crypto.signature.RSAPublicKey;
+import org.gluu.oxauth.model.crypto.signature.SignatureAlgorithm;
+import org.gluu.oxauth.model.jwe.Jwe;
+import org.gluu.oxauth.model.jwk.Algorithm;
+import org.gluu.oxauth.model.jws.ECDSASigner;
+import org.gluu.oxauth.model.jws.HMACSigner;
+import org.gluu.oxauth.model.jws.PlainTextSignature;
+import org.gluu.oxauth.model.jws.RSASigner;
+import org.gluu.oxauth.model.jwt.Jwt;
+import org.gluu.oxauth.model.jwt.JwtClaimName;
+import org.gluu.oxauth.model.jwt.JwtHeaderName;
+import org.gluu.oxauth.model.register.ApplicationType;
+import org.gluu.oxauth.model.util.JwtUtil;
+import org.gluu.oxauth.model.util.StringUtils;
+import org.gluu.oxauth.model.util.Util;
+import org.json.JSONObject;
+import org.testng.annotations.Parameters;
+import org.testng.annotations.Test;
+
+/**
+ * @author Javier Rojas Blum
+ * @version February 12, 2019
+ */
+public class IndividualClaimsRequestsTest extends BaseTest {
+
+    public static final String ACR_VALUE = "basic";
+
+    @Parameters({"userId", "userSecret", "redirectUris", "redirectUri", "sectorIdentifierUri"})
+    @Test
+    public void requestClaimsIndividuallyRequestObjectSigningAlgNoneUserInfoSignedResponseJson(
+            final String userId, final String userSecret, final String redirectUris, final String redirectUri,
+            final String sectorIdentifierUri) throws Exception {
+        showTitle("requestClaimsIndividuallyRequestObjectSigningAlgNoneUserInfoSignedResponseJson");
+
+        List<ResponseType> responseTypes = Arrays.asList(
+                ResponseType.TOKEN,
+                ResponseType.ID_TOKEN);
+
+        // 1. Register client
+        RegisterRequest registerRequest = new RegisterRequest(ApplicationType.WEB, "oxAuth test app",
+                StringUtils.spaceSeparatedToList(redirectUris));
+        registerRequest.setResponseTypes(responseTypes);
+        registerRequest.setSectorIdentifierUri(sectorIdentifierUri);
+        registerRequest.setRequestObjectSigningAlg(SignatureAlgorithm.NONE);
+        registerRequest.setIdTokenSignedResponseAlg(SignatureAlgorithm.NONE);
+        registerRequest.setClaims(Arrays.asList(
+                JwtClaimName.NAME,
+                JwtClaimName.NICKNAME,
+                JwtClaimName.GIVEN_NAME,
+                JwtClaimName.FAMILY_NAME,
+                JwtClaimName.PICTURE,
+                JwtClaimName.ZONEINFO,
+                JwtClaimName.LOCALE,
+                JwtClaimName.ADDRESS_STREET_ADDRESS,
+                JwtClaimName.ADDRESS_LOCALITY,
+                JwtClaimName.ADDRESS_REGION,
+                JwtClaimName.ADDRESS_POSTAL_CODE,
+                JwtClaimName.ADDRESS_COUNTRY));
+
+        RegisterClient registerClient = newRegisterClient(registerRequest);
+        RegisterResponse registerResponse = registerClient.exec();
+
+        showClient(registerClient);
+        assertEquals(registerResponse.getStatus(), 200, "Unexpected response code: " + registerResponse.getEntity());
+        assertNotNull(registerResponse.getClientId());
+        assertNotNull(registerResponse.getClientSecret());
+        assertNotNull(registerResponse.getRegistrationAccessToken());
+        assertNotNull(registerResponse.getClientIdIssuedAt());
+        assertNotNull(registerResponse.getClientSecretExpiresAt());
+
+        String clientId = registerResponse.getClientId();
+        String clientSecret = registerResponse.getClientSecret();
+
+        // 2. Request authorization
+        AbstractCryptoProvider cryptoProvider = createCryptoProviderWithAllowedNone();
+
+        List<String> scopes = Arrays.asList("openid", "clientinfo");
+        String nonce = UUID.randomUUID().toString();
+        String state = UUID.randomUUID().toString();
+
+        AuthorizationRequest authorizationRequest = new AuthorizationRequest(responseTypes, clientId, scopes, redirectUri, nonce);
+        authorizationRequest.setState(state);
+
+        JwtAuthorizationRequest jwtAuthorizationRequest = new JwtAuthorizationRequest(
+                authorizationRequest, SignatureAlgorithm.NONE, clientSecret, cryptoProvider);
+        jwtAuthorizationRequest.addUserInfoClaim(new Claim(JwtClaimName.NAME, ClaimValue.createNull()));
+        jwtAuthorizationRequest.addUserInfoClaim(new Claim(JwtClaimName.NICKNAME, ClaimValue.createEssential(false)));
+        jwtAuthorizationRequest.addUserInfoClaim(new Claim(JwtClaimName.GIVEN_NAME, ClaimValue.createEssential(false)));
+        jwtAuthorizationRequest.addUserInfoClaim(new Claim(JwtClaimName.FAMILY_NAME, ClaimValue.createEssential(false)));
+        jwtAuthorizationRequest.addUserInfoClaim(new Claim(JwtClaimName.EMAIL, ClaimValue.createNull()));
+        jwtAuthorizationRequest.addUserInfoClaim(new Claim(JwtClaimName.EMAIL_VERIFIED, ClaimValue.createNull()));
+        jwtAuthorizationRequest.addUserInfoClaim(new Claim(JwtClaimName.PICTURE, ClaimValue.createEssential(false)));
+        jwtAuthorizationRequest.addUserInfoClaim(new Claim(JwtClaimName.ZONEINFO, ClaimValue.createNull()));
+        jwtAuthorizationRequest.addUserInfoClaim(new Claim(JwtClaimName.LOCALE, ClaimValue.createNull()));
+        jwtAuthorizationRequest.addUserInfoClaim(new Claim(JwtClaimName.ADDRESS_STREET_ADDRESS, ClaimValue.createNull()));
+        jwtAuthorizationRequest.addUserInfoClaim(new Claim(JwtClaimName.ADDRESS_LOCALITY, ClaimValue.createNull()));
+        jwtAuthorizationRequest.addUserInfoClaim(new Claim(JwtClaimName.ADDRESS_REGION, ClaimValue.createNull()));
+        jwtAuthorizationRequest.addUserInfoClaim(new Claim(JwtClaimName.ADDRESS_POSTAL_CODE, ClaimValue.createNull()));
+        jwtAuthorizationRequest.addUserInfoClaim(new Claim(JwtClaimName.ADDRESS_COUNTRY, ClaimValue.createNull()));
+        jwtAuthorizationRequest.addIdTokenClaim(new Claim(JwtClaimName.AUTHENTICATION_TIME, ClaimValue.createNull()));
+        jwtAuthorizationRequest.addIdTokenClaim(new Claim(JwtClaimName.AUTHENTICATION_CONTEXT_CLASS_REFERENCE, ClaimValue.createValueList(new String[]{ACR_VALUE})));
+        jwtAuthorizationRequest.addIdTokenClaim(new Claim(JwtClaimName.NAME, ClaimValue.createEssential(true)));
+        jwtAuthorizationRequest.addIdTokenClaim(new Claim(JwtClaimName.NICKNAME, ClaimValue.createEssential(false)));
+        jwtAuthorizationRequest.addIdTokenClaim(new Claim(JwtClaimName.GIVEN_NAME, ClaimValue.createEssential(false)));
+        jwtAuthorizationRequest.addIdTokenClaim(new Claim(JwtClaimName.FAMILY_NAME, ClaimValue.createEssential(false)));
+        jwtAuthorizationRequest.addIdTokenClaim(new Claim(JwtClaimName.EMAIL, ClaimValue.createNull()));
+        jwtAuthorizationRequest.addIdTokenClaim(new Claim(JwtClaimName.EMAIL_VERIFIED, ClaimValue.createNull()));
+        jwtAuthorizationRequest.getIdTokenMember().setMaxAge(86400);
+        String authJwt = jwtAuthorizationRequest.getEncodedJwt();
+        authorizationRequest.setRequest(authJwt);
+
+        AuthorizationResponse authorizationResponse = authenticateResourceOwnerAndGrantAccess(
+                authorizationEndpoint, authorizationRequest, userId, userSecret);
+
+        assertNotNull(authorizationResponse.getLocation(), "The location is null");
+        assertNotNull(authorizationResponse.getAccessToken(), "The accessToken is null");
+        assertNotNull(authorizationResponse.getTokenType(), "The tokenType is null");
+        assertNotNull(authorizationResponse.getIdToken(), "The idToken is null");
+        assertNotNull(authorizationResponse.getState(), "The state is null");
+
+        String idToken = authorizationResponse.getIdToken();
+        String accessToken = authorizationResponse.getAccessToken();
+
+        // 3. Validate id_token
+        Jwt jwt = Jwt.parse(idToken);
+        assertNotNull(jwt.getHeader().getClaimAsString(JwtHeaderName.TYPE));
+        assertNotNull(jwt.getHeader().getClaimAsString(JwtHeaderName.ALGORITHM));
+        assertNotNull(jwt.getClaims().getClaimAsString(JwtClaimName.ISSUER));
+        assertNotNull(jwt.getClaims().getClaimAsString(JwtClaimName.AUDIENCE));
+        assertNotNull(jwt.getClaims().getClaimAsString(JwtClaimName.EXPIRATION_TIME));
+        assertNotNull(jwt.getClaims().getClaimAsString(JwtClaimName.ISSUED_AT));
+        assertNotNull(jwt.getClaims().getClaimAsString(JwtClaimName.SUBJECT_IDENTIFIER));
+        assertNotNull(jwt.getClaims().getClaimAsString(JwtClaimName.ACCESS_TOKEN_HASH));
+        assertNotNull(jwt.getClaims().getClaimAsString(JwtClaimName.AUTHENTICATION_TIME));
+        assertNotNull(jwt.getClaims().getClaimAsString(JwtClaimName.NAME));
+        assertNotNull(jwt.getClaims().getClaimAsString(JwtClaimName.NICKNAME));
+        assertNotNull(jwt.getClaims().getClaimAsString(JwtClaimName.GIVEN_NAME));
+        assertNotNull(jwt.getClaims().getClaimAsString(JwtClaimName.FAMILY_NAME));
+        assertNull(jwt.getClaims().getClaimAsString(JwtClaimName.EMAIL));
+        assertNull(jwt.getClaims().getClaimAsString(JwtClaimName.EMAIL_VERIFIED));
+
+        PlainTextSignature signer = new PlainTextSignature();
+        assertTrue(signer.validate(jwt));
+
+        // 4. Request user info
+        UserInfoClient userInfoClient = new UserInfoClient(userInfoEndpoint);
+        UserInfoResponse userInfoResponse = userInfoClient.execUserInfo(accessToken);
+
+        showClient(userInfoClient);
+        assertEquals(userInfoResponse.getStatus(), 200, "Unexpected response code: " + userInfoResponse.getStatus());
+        assertNotNull(userInfoResponse.getClaim(JwtClaimName.SUBJECT_IDENTIFIER));
+        assertNotNull(userInfoResponse.getClaim(JwtClaimName.NAME));
+        assertNotNull(userInfoResponse.getClaim(JwtClaimName.NICKNAME));
+        assertNotNull(userInfoResponse.getClaim(JwtClaimName.GIVEN_NAME));
+        assertNotNull(userInfoResponse.getClaim(JwtClaimName.FAMILY_NAME));
+        assertNull(userInfoResponse.getClaim(JwtClaimName.EMAIL));
+        assertNull(userInfoResponse.getClaim(JwtClaimName.EMAIL_VERIFIED));
+        assertNotNull(userInfoResponse.getClaim(JwtClaimName.PICTURE));
+        assertNotNull(userInfoResponse.getClaim(JwtClaimName.ZONEINFO));
+        assertNotNull(userInfoResponse.getClaim(JwtClaimName.LOCALE));
+        assertNotNull(userInfoResponse.getClaim(JwtClaimName.ADDRESS_STREET_ADDRESS));
+        assertNotNull(userInfoResponse.getClaim(JwtClaimName.ADDRESS_LOCALITY));
+        assertNotNull(userInfoResponse.getClaim(JwtClaimName.ADDRESS_REGION));
+        assertNotNull(userInfoResponse.getClaim(JwtClaimName.ADDRESS_COUNTRY));
+    }
+
+    @Parameters({"userId", "userSecret", "redirectUris", "redirectUri", "sectorIdentifierUri"})
+    @Test
+    public void requestClaimsIndividuallyRequestObjectSigningAlgNoneUserInfoSignedResponsAlgNone(
+            final String userId, final String userSecret, final String redirectUris, final String redirectUri,
+            final String sectorIdentifierUri) throws Exception {
+        showTitle("requestClaimsIndividuallyRequestObjectSigningAlgNoneUserInfoSignedResponsAlgNone");
+
+        List<ResponseType> responseTypes = Arrays.asList(
+                ResponseType.TOKEN,
+                ResponseType.ID_TOKEN);
+
+        // 1. Register client
+        RegisterRequest registerRequest = new RegisterRequest(ApplicationType.WEB, "oxAuth test app",
+                StringUtils.spaceSeparatedToList(redirectUris));
+        registerRequest.setResponseTypes(responseTypes);
+        registerRequest.setSectorIdentifierUri(sectorIdentifierUri);
+        registerRequest.setRequestObjectSigningAlg(SignatureAlgorithm.NONE);
+        registerRequest.setUserInfoSignedResponseAlg(SignatureAlgorithm.NONE);
+        registerRequest.setIdTokenSignedResponseAlg(SignatureAlgorithm.NONE);
+        registerRequest.setClaims(Arrays.asList(
+                JwtClaimName.NAME,
+                JwtClaimName.NICKNAME,
+                JwtClaimName.GIVEN_NAME,
+                JwtClaimName.FAMILY_NAME,
+                JwtClaimName.PICTURE,
+                JwtClaimName.ZONEINFO,
+                JwtClaimName.LOCALE,
+                JwtClaimName.ADDRESS_STREET_ADDRESS,
+                JwtClaimName.ADDRESS_LOCALITY,
+                JwtClaimName.ADDRESS_REGION,
+                JwtClaimName.ADDRESS_POSTAL_CODE,
+                JwtClaimName.ADDRESS_COUNTRY));
+
+        RegisterClient registerClient = newRegisterClient(registerRequest);
+        RegisterResponse registerResponse = registerClient.exec();
+
+        showClient(registerClient);
+        assertEquals(registerResponse.getStatus(), 200, "Unexpected response code: " + registerResponse.getEntity());
+        assertNotNull(registerResponse.getClientId());
+        assertNotNull(registerResponse.getClientSecret());
+        assertNotNull(registerResponse.getRegistrationAccessToken());
+        assertNotNull(registerResponse.getClientIdIssuedAt());
+        assertNotNull(registerResponse.getClientSecretExpiresAt());
+
+        String clientId = registerResponse.getClientId();
+        String clientSecret = registerResponse.getClientSecret();
+
+        // 2. Request authorization
+        AbstractCryptoProvider cryptoProvider = createCryptoProviderWithAllowedNone();
+
+        List<String> scopes = Arrays.asList("openid", "clientinfo");
+        String nonce = UUID.randomUUID().toString();
+        String state = UUID.randomUUID().toString();
+
+        AuthorizationRequest authorizationRequest = new AuthorizationRequest(responseTypes, clientId, scopes, redirectUri, nonce);
+        authorizationRequest.setState(state);
+
+        JwtAuthorizationRequest jwtAuthorizationRequest = new JwtAuthorizationRequest(
+                authorizationRequest, SignatureAlgorithm.NONE, clientSecret, cryptoProvider);
+        jwtAuthorizationRequest.addUserInfoClaim(new Claim(JwtClaimName.NAME, ClaimValue.createNull()));
+        jwtAuthorizationRequest.addUserInfoClaim(new Claim(JwtClaimName.NICKNAME, ClaimValue.createEssential(false)));
+        jwtAuthorizationRequest.addUserInfoClaim(new Claim(JwtClaimName.GIVEN_NAME, ClaimValue.createEssential(false)));
+        jwtAuthorizationRequest.addUserInfoClaim(new Claim(JwtClaimName.FAMILY_NAME, ClaimValue.createEssential(false)));
+        jwtAuthorizationRequest.addUserInfoClaim(new Claim(JwtClaimName.EMAIL, ClaimValue.createNull()));
+        jwtAuthorizationRequest.addUserInfoClaim(new Claim(JwtClaimName.EMAIL_VERIFIED, ClaimValue.createNull()));
+        jwtAuthorizationRequest.addUserInfoClaim(new Claim(JwtClaimName.PICTURE, ClaimValue.createEssential(false)));
+        jwtAuthorizationRequest.addUserInfoClaim(new Claim(JwtClaimName.ZONEINFO, ClaimValue.createNull()));
+        jwtAuthorizationRequest.addUserInfoClaim(new Claim(JwtClaimName.LOCALE, ClaimValue.createNull()));
+        jwtAuthorizationRequest.addUserInfoClaim(new Claim(JwtClaimName.ADDRESS_STREET_ADDRESS, ClaimValue.createNull()));
+        jwtAuthorizationRequest.addUserInfoClaim(new Claim(JwtClaimName.ADDRESS_LOCALITY, ClaimValue.createNull()));
+        jwtAuthorizationRequest.addUserInfoClaim(new Claim(JwtClaimName.ADDRESS_REGION, ClaimValue.createNull()));
+        jwtAuthorizationRequest.addUserInfoClaim(new Claim(JwtClaimName.ADDRESS_POSTAL_CODE, ClaimValue.createNull()));
+        jwtAuthorizationRequest.addUserInfoClaim(new Claim(JwtClaimName.ADDRESS_COUNTRY, ClaimValue.createNull()));
+        jwtAuthorizationRequest.addIdTokenClaim(new Claim(JwtClaimName.AUTHENTICATION_TIME, ClaimValue.createNull()));
+        jwtAuthorizationRequest.addIdTokenClaim(new Claim(JwtClaimName.AUTHENTICATION_CONTEXT_CLASS_REFERENCE, ClaimValue.createValueList(new String[]{ACR_VALUE})));
+        jwtAuthorizationRequest.addIdTokenClaim(new Claim(JwtClaimName.NAME, ClaimValue.createEssential(true)));
+        jwtAuthorizationRequest.addIdTokenClaim(new Claim(JwtClaimName.NICKNAME, ClaimValue.createEssential(false)));
+        jwtAuthorizationRequest.addIdTokenClaim(new Claim(JwtClaimName.GIVEN_NAME, ClaimValue.createEssential(false)));
+        jwtAuthorizationRequest.addIdTokenClaim(new Claim(JwtClaimName.FAMILY_NAME, ClaimValue.createEssential(false)));
+        jwtAuthorizationRequest.addIdTokenClaim(new Claim(JwtClaimName.EMAIL, ClaimValue.createNull()));
+        jwtAuthorizationRequest.addIdTokenClaim(new Claim(JwtClaimName.EMAIL_VERIFIED, ClaimValue.createNull()));
+        jwtAuthorizationRequest.getIdTokenMember().setMaxAge(86400);
+        String authJwt = jwtAuthorizationRequest.getEncodedJwt();
+        authorizationRequest.setRequest(authJwt);
+
+        AuthorizationResponse authorizationResponse = authenticateResourceOwnerAndGrantAccess(
+                authorizationEndpoint, authorizationRequest, userId, userSecret);
+
+        assertNotNull(authorizationResponse.getLocation(), "The location is null");
+        assertNotNull(authorizationResponse.getAccessToken(), "The accessToken is null");
+        assertNotNull(authorizationResponse.getTokenType(), "The tokenType is null");
+        assertNotNull(authorizationResponse.getIdToken(), "The idToken is null");
+        assertNotNull(authorizationResponse.getState(), "The state is null");
+
+        String idToken = authorizationResponse.getIdToken();
+        String accessToken = authorizationResponse.getAccessToken();
+
+        // 3. Validate id_token
+        Jwt jwt = Jwt.parse(idToken);
+        assertNotNull(jwt.getHeader().getClaimAsString(JwtHeaderName.TYPE));
+        assertNotNull(jwt.getHeader().getClaimAsString(JwtHeaderName.ALGORITHM));
+        assertNotNull(jwt.getClaims().getClaimAsString(JwtClaimName.ISSUER));
+        assertNotNull(jwt.getClaims().getClaimAsString(JwtClaimName.AUDIENCE));
+        assertNotNull(jwt.getClaims().getClaimAsString(JwtClaimName.EXPIRATION_TIME));
+        assertNotNull(jwt.getClaims().getClaimAsString(JwtClaimName.ISSUED_AT));
+        assertNotNull(jwt.getClaims().getClaimAsString(JwtClaimName.SUBJECT_IDENTIFIER));
+        assertNotNull(jwt.getClaims().getClaimAsString(JwtClaimName.ACCESS_TOKEN_HASH));
+        assertNotNull(jwt.getClaims().getClaimAsString(JwtClaimName.AUTHENTICATION_TIME));
+        assertNotNull(jwt.getClaims().getClaimAsString(JwtClaimName.NAME));
+        assertNotNull(jwt.getClaims().getClaimAsString(JwtClaimName.NICKNAME));
+        assertNotNull(jwt.getClaims().getClaimAsString(JwtClaimName.GIVEN_NAME));
+        assertNotNull(jwt.getClaims().getClaimAsString(JwtClaimName.FAMILY_NAME));
+        assertNull(jwt.getClaims().getClaimAsString(JwtClaimName.EMAIL));
+        assertNull(jwt.getClaims().getClaimAsString(JwtClaimName.EMAIL_VERIFIED));
+
+        PlainTextSignature signer = new PlainTextSignature();
+        assertTrue(signer.validate(jwt));
+
+        // 4. Request user info
+        UserInfoClient userInfoClient = new UserInfoClient(userInfoEndpoint);
+        UserInfoResponse userInfoResponse = userInfoClient.execUserInfo(accessToken);
+
+        showClient(userInfoClient);
+        assertEquals(userInfoResponse.getStatus(), 200, "Unexpected response code: " + userInfoResponse.getStatus());
+        assertNotNull(userInfoResponse.getClaim(JwtClaimName.SUBJECT_IDENTIFIER));
+        assertNotNull(userInfoResponse.getClaim(JwtClaimName.NAME));
+        assertNotNull(userInfoResponse.getClaim(JwtClaimName.NICKNAME));
+        assertNotNull(userInfoResponse.getClaim(JwtClaimName.GIVEN_NAME));
+        assertNotNull(userInfoResponse.getClaim(JwtClaimName.FAMILY_NAME));
+        assertNull(userInfoResponse.getClaim(JwtClaimName.EMAIL));
+        assertNull(userInfoResponse.getClaim(JwtClaimName.EMAIL_VERIFIED));
+        assertNotNull(userInfoResponse.getClaim(JwtClaimName.PICTURE));
+        assertNotNull(userInfoResponse.getClaim(JwtClaimName.ZONEINFO));
+        assertNotNull(userInfoResponse.getClaim(JwtClaimName.LOCALE));
+        assertNotNull(userInfoResponse.getClaim(JwtClaimName.ADDRESS_STREET_ADDRESS));
+        assertNotNull(userInfoResponse.getClaim(JwtClaimName.ADDRESS_LOCALITY));
+        assertNotNull(userInfoResponse.getClaim(JwtClaimName.ADDRESS_REGION));
+        assertNotNull(userInfoResponse.getClaim(JwtClaimName.ADDRESS_COUNTRY));
+    }
+
+    @Parameters({"userId", "userSecret", "redirectUris", "redirectUri", "sectorIdentifierUri"})
+    @Test
+    public void requestClaimsIndividuallyRequestObjectSigningAlgHS256UserInfoSignedResponseAlgHS256(
+            final String userId, final String userSecret, final String redirectUris, final String redirectUri,
+            final String sectorIdentifierUri) throws Exception {
+        showTitle("requestClaimsIndividuallyRequestObjectSigningAlgHS256UserInfoSignedResponseAlgHS256");
+
+        List<ResponseType> responseTypes = Arrays.asList(
+                ResponseType.TOKEN,
+                ResponseType.ID_TOKEN);
+
+        // 1. Register client
+        RegisterRequest registerRequest = new RegisterRequest(ApplicationType.WEB, "oxAuth test app",
+                StringUtils.spaceSeparatedToList(redirectUris));
+        registerRequest.setResponseTypes(responseTypes);
+        registerRequest.setSectorIdentifierUri(sectorIdentifierUri);
+        registerRequest.setIdTokenSignedResponseAlg(SignatureAlgorithm.HS256);
+        registerRequest.setRequestObjectSigningAlg(SignatureAlgorithm.HS256);
+        registerRequest.setUserInfoSignedResponseAlg(SignatureAlgorithm.HS256);
+        registerRequest.setClaims(Arrays.asList(
+                JwtClaimName.NAME,
+                JwtClaimName.NICKNAME,
+                JwtClaimName.GIVEN_NAME,
+                JwtClaimName.FAMILY_NAME,
+                JwtClaimName.PICTURE,
+                JwtClaimName.ZONEINFO,
+                JwtClaimName.LOCALE,
+                JwtClaimName.ADDRESS_STREET_ADDRESS,
+                JwtClaimName.ADDRESS_LOCALITY,
+                JwtClaimName.ADDRESS_REGION,
+                JwtClaimName.ADDRESS_POSTAL_CODE,
+                JwtClaimName.ADDRESS_COUNTRY));
+
+        RegisterClient registerClient = new RegisterClient(registrationEndpoint);
+        registerClient.setRequest(registerRequest);
+        RegisterResponse registerResponse = registerClient.exec();
+
+        showClient(registerClient);
+        assertEquals(registerResponse.getStatus(), 200, "Unexpected response code: " + registerResponse.getEntity());
+        assertNotNull(registerResponse.getClientId());
+        assertNotNull(registerResponse.getClientSecret());
+        assertNotNull(registerResponse.getRegistrationAccessToken());
+        assertNotNull(registerResponse.getClientIdIssuedAt());
+        assertNotNull(registerResponse.getClientSecretExpiresAt());
+
+        String clientId = registerResponse.getClientId();
+        String clientSecret = registerResponse.getClientSecret();
+
+        // 2. Request authorization
+        OxAuthCryptoProvider cryptoProvider = new OxAuthCryptoProvider();
+
+        List<String> scopes = Arrays.asList("openid", "clientinfo");
+        String nonce = UUID.randomUUID().toString();
+        String state = UUID.randomUUID().toString();
+
+        AuthorizationRequest authorizationRequest = new AuthorizationRequest(responseTypes, clientId, scopes, redirectUri, nonce);
+        authorizationRequest.setState(state);
+
+        JwtAuthorizationRequest jwtAuthorizationRequest = new JwtAuthorizationRequest(
+                authorizationRequest, SignatureAlgorithm.HS256, clientSecret, cryptoProvider);
+        jwtAuthorizationRequest.addUserInfoClaim(new Claim(JwtClaimName.NAME, ClaimValue.createNull()));
+        jwtAuthorizationRequest.addUserInfoClaim(new Claim(JwtClaimName.NICKNAME, ClaimValue.createEssential(false)));
+        jwtAuthorizationRequest.addUserInfoClaim(new Claim(JwtClaimName.GIVEN_NAME, ClaimValue.createEssential(false)));
+        jwtAuthorizationRequest.addUserInfoClaim(new Claim(JwtClaimName.FAMILY_NAME, ClaimValue.createEssential(false)));
+        jwtAuthorizationRequest.addUserInfoClaim(new Claim(JwtClaimName.EMAIL, ClaimValue.createNull()));
+        jwtAuthorizationRequest.addUserInfoClaim(new Claim(JwtClaimName.EMAIL_VERIFIED, ClaimValue.createNull()));
+        jwtAuthorizationRequest.addUserInfoClaim(new Claim(JwtClaimName.PICTURE, ClaimValue.createEssential(false)));
+        jwtAuthorizationRequest.addUserInfoClaim(new Claim(JwtClaimName.ZONEINFO, ClaimValue.createNull()));
+        jwtAuthorizationRequest.addUserInfoClaim(new Claim(JwtClaimName.LOCALE, ClaimValue.createNull()));
+        jwtAuthorizationRequest.addUserInfoClaim(new Claim(JwtClaimName.ADDRESS_STREET_ADDRESS, ClaimValue.createNull()));
+        jwtAuthorizationRequest.addUserInfoClaim(new Claim(JwtClaimName.ADDRESS_LOCALITY, ClaimValue.createNull()));
+        jwtAuthorizationRequest.addUserInfoClaim(new Claim(JwtClaimName.ADDRESS_REGION, ClaimValue.createNull()));
+        jwtAuthorizationRequest.addUserInfoClaim(new Claim(JwtClaimName.ADDRESS_POSTAL_CODE, ClaimValue.createNull()));
+        jwtAuthorizationRequest.addUserInfoClaim(new Claim(JwtClaimName.ADDRESS_COUNTRY, ClaimValue.createNull()));
+        jwtAuthorizationRequest.addIdTokenClaim(new Claim(JwtClaimName.AUTHENTICATION_TIME, ClaimValue.createNull()));
+        jwtAuthorizationRequest.addIdTokenClaim(new Claim(JwtClaimName.AUTHENTICATION_CONTEXT_CLASS_REFERENCE, ClaimValue.createValueList(new String[]{ACR_VALUE})));
+        jwtAuthorizationRequest.addIdTokenClaim(new Claim(JwtClaimName.NAME, ClaimValue.createEssential(true)));
+        jwtAuthorizationRequest.addIdTokenClaim(new Claim(JwtClaimName.NICKNAME, ClaimValue.createEssential(false)));
+        jwtAuthorizationRequest.addIdTokenClaim(new Claim(JwtClaimName.GIVEN_NAME, ClaimValue.createEssential(false)));
+        jwtAuthorizationRequest.addIdTokenClaim(new Claim(JwtClaimName.FAMILY_NAME, ClaimValue.createEssential(false)));
+        jwtAuthorizationRequest.addIdTokenClaim(new Claim(JwtClaimName.EMAIL, ClaimValue.createNull()));
+        jwtAuthorizationRequest.addIdTokenClaim(new Claim(JwtClaimName.EMAIL_VERIFIED, ClaimValue.createNull()));
+        jwtAuthorizationRequest.getIdTokenMember().setMaxAge(86400);
+        String authJwt = jwtAuthorizationRequest.getEncodedJwt();
+        authorizationRequest.setRequest(authJwt);
+
+        AuthorizationResponse authorizationResponse = authenticateResourceOwnerAndGrantAccess(
+                authorizationEndpoint, authorizationRequest, userId, userSecret);
+
+        assertNotNull(authorizationResponse.getLocation(), "The location is null");
+        assertNotNull(authorizationResponse.getAccessToken(), "The accessToken is null");
+        assertNotNull(authorizationResponse.getTokenType(), "The tokenType is null");
+        assertNotNull(authorizationResponse.getIdToken(), "The idToken is null");
+        assertNotNull(authorizationResponse.getState(), "The state is null");
+
+        String idToken = authorizationResponse.getIdToken();
+        String accessToken = authorizationResponse.getAccessToken();
+
+        // 3. Validate id_token
+        Jwt jwt = Jwt.parse(idToken);
+        assertNotNull(jwt.getHeader().getClaimAsString(JwtHeaderName.TYPE));
+        assertNotNull(jwt.getHeader().getClaimAsString(JwtHeaderName.ALGORITHM));
+        assertNotNull(jwt.getClaims().getClaimAsString(JwtClaimName.ISSUER));
+        assertNotNull(jwt.getClaims().getClaimAsString(JwtClaimName.AUDIENCE));
+        assertNotNull(jwt.getClaims().getClaimAsString(JwtClaimName.EXPIRATION_TIME));
+        assertNotNull(jwt.getClaims().getClaimAsString(JwtClaimName.ISSUED_AT));
+        assertNotNull(jwt.getClaims().getClaimAsString(JwtClaimName.SUBJECT_IDENTIFIER));
+        assertNotNull(jwt.getClaims().getClaimAsString(JwtClaimName.ACCESS_TOKEN_HASH));
+        assertNotNull(jwt.getClaims().getClaimAsString(JwtClaimName.AUTHENTICATION_TIME));
+        assertNotNull(jwt.getClaims().getClaimAsString(JwtClaimName.NAME));
+        assertNotNull(jwt.getClaims().getClaimAsString(JwtClaimName.NICKNAME));
+        assertNotNull(jwt.getClaims().getClaimAsString(JwtClaimName.GIVEN_NAME));
+        assertNotNull(jwt.getClaims().getClaimAsString(JwtClaimName.FAMILY_NAME));
+        assertNull(jwt.getClaims().getClaimAsString(JwtClaimName.EMAIL));
+        assertNull(jwt.getClaims().getClaimAsString(JwtClaimName.EMAIL_VERIFIED));
+
+        HMACSigner hmacSigner = new HMACSigner(SignatureAlgorithm.HS256, clientSecret);
+        assertTrue(hmacSigner.validate(jwt));
+
+        // 4. Request user info
+        UserInfoClient userInfoClient = new UserInfoClient(userInfoEndpoint);
+        userInfoClient.setSharedKey(clientSecret);
+        UserInfoResponse userInfoResponse = userInfoClient.execUserInfo(accessToken);
+
+        showClient(userInfoClient);
+        assertEquals(userInfoResponse.getStatus(), 200, "Unexpected response code: " + userInfoResponse.getStatus());
+        assertNotNull(userInfoResponse.getClaim(JwtClaimName.SUBJECT_IDENTIFIER));
+        assertNotNull(userInfoResponse.getClaim(JwtClaimName.NAME));
+        assertNotNull(userInfoResponse.getClaim(JwtClaimName.NICKNAME));
+        assertNotNull(userInfoResponse.getClaim(JwtClaimName.GIVEN_NAME));
+        assertNotNull(userInfoResponse.getClaim(JwtClaimName.FAMILY_NAME));
+        assertNull(userInfoResponse.getClaim(JwtClaimName.EMAIL));
+        assertNull(userInfoResponse.getClaim(JwtClaimName.EMAIL_VERIFIED));
+        assertNotNull(userInfoResponse.getClaim(JwtClaimName.PICTURE));
+        assertNotNull(userInfoResponse.getClaim(JwtClaimName.ZONEINFO));
+        assertNotNull(userInfoResponse.getClaim(JwtClaimName.LOCALE));
+        assertNotNull(userInfoResponse.getClaim(JwtClaimName.ADDRESS_STREET_ADDRESS));
+        assertNotNull(userInfoResponse.getClaim(JwtClaimName.ADDRESS_LOCALITY));
+        assertNotNull(userInfoResponse.getClaim(JwtClaimName.ADDRESS_REGION));
+        assertNotNull(userInfoResponse.getClaim(JwtClaimName.ADDRESS_COUNTRY));
+    }
+
+    @Parameters({"userId", "userSecret", "redirectUris", "redirectUri", "sectorIdentifierUri"})
+    @Test
+    public void requestClaimsIndividuallyRequestObjectSigningAlgHS384UserInfoSignedResponseAlgHS384(
+            final String userId, final String userSecret, final String redirectUris, final String redirectUri,
+            final String sectorIdentifierUri) throws Exception {
+        showTitle("requestClaimsIndividuallyRequestObjectSigningAlgHS384UserInfoSignedResponseAlgHS384");
+
+        List<ResponseType> responseTypes = Arrays.asList(
+                ResponseType.TOKEN,
+                ResponseType.ID_TOKEN);
+
+        // 1. Register client
+        RegisterRequest registerRequest = new RegisterRequest(ApplicationType.WEB, "oxAuth test app",
+                StringUtils.spaceSeparatedToList(redirectUris));
+        registerRequest.setResponseTypes(responseTypes);
+        registerRequest.setSectorIdentifierUri(sectorIdentifierUri);
+        registerRequest.setIdTokenSignedResponseAlg(SignatureAlgorithm.HS384);
+        registerRequest.setRequestObjectSigningAlg(SignatureAlgorithm.HS384);
+        registerRequest.setUserInfoSignedResponseAlg(SignatureAlgorithm.HS384);
+        registerRequest.setClaims(Arrays.asList(
+                JwtClaimName.NAME,
+                JwtClaimName.NICKNAME,
+                JwtClaimName.GIVEN_NAME,
+                JwtClaimName.FAMILY_NAME,
+                JwtClaimName.PICTURE,
+                JwtClaimName.ZONEINFO,
+                JwtClaimName.LOCALE,
+                JwtClaimName.ADDRESS_STREET_ADDRESS,
+                JwtClaimName.ADDRESS_LOCALITY,
+                JwtClaimName.ADDRESS_REGION,
+                JwtClaimName.ADDRESS_POSTAL_CODE,
+                JwtClaimName.ADDRESS_COUNTRY));
+
+        RegisterClient registerClient = new RegisterClient(registrationEndpoint);
+        registerClient.setRequest(registerRequest);
+        RegisterResponse registerResponse = registerClient.exec();
+
+        showClient(registerClient);
+        assertEquals(registerResponse.getStatus(), 200, "Unexpected response code: " + registerResponse.getEntity());
+        assertNotNull(registerResponse.getClientId());
+        assertNotNull(registerResponse.getClientSecret());
+        assertNotNull(registerResponse.getRegistrationAccessToken());
+        assertNotNull(registerResponse.getClientIdIssuedAt());
+        assertNotNull(registerResponse.getClientSecretExpiresAt());
+
+        String clientId = registerResponse.getClientId();
+        String clientSecret = registerResponse.getClientSecret();
+
+        // 2. Request authorization
+        OxAuthCryptoProvider cryptoProvider = new OxAuthCryptoProvider();
+
+        List<String> scopes = Arrays.asList("openid", "clientinfo");
+        String nonce = UUID.randomUUID().toString();
+        String state = UUID.randomUUID().toString();
+
+        AuthorizationRequest authorizationRequest = new AuthorizationRequest(responseTypes, clientId, scopes, redirectUri, nonce);
+        authorizationRequest.setState(state);
+
+        JwtAuthorizationRequest jwtAuthorizationRequest = new JwtAuthorizationRequest(
+                authorizationRequest, SignatureAlgorithm.HS384, clientSecret, cryptoProvider);
+        jwtAuthorizationRequest.addUserInfoClaim(new Claim(JwtClaimName.NAME, ClaimValue.createNull()));
+        jwtAuthorizationRequest.addUserInfoClaim(new Claim(JwtClaimName.NICKNAME, ClaimValue.createEssential(false)));
+        jwtAuthorizationRequest.addUserInfoClaim(new Claim(JwtClaimName.GIVEN_NAME, ClaimValue.createEssential(false)));
+        jwtAuthorizationRequest.addUserInfoClaim(new Claim(JwtClaimName.FAMILY_NAME, ClaimValue.createEssential(false)));
+        jwtAuthorizationRequest.addUserInfoClaim(new Claim(JwtClaimName.EMAIL, ClaimValue.createNull()));
+        jwtAuthorizationRequest.addUserInfoClaim(new Claim(JwtClaimName.EMAIL_VERIFIED, ClaimValue.createNull()));
+        jwtAuthorizationRequest.addUserInfoClaim(new Claim(JwtClaimName.PICTURE, ClaimValue.createEssential(false)));
+        jwtAuthorizationRequest.addUserInfoClaim(new Claim(JwtClaimName.ZONEINFO, ClaimValue.createNull()));
+        jwtAuthorizationRequest.addUserInfoClaim(new Claim(JwtClaimName.LOCALE, ClaimValue.createNull()));
+        jwtAuthorizationRequest.addUserInfoClaim(new Claim(JwtClaimName.ADDRESS_STREET_ADDRESS, ClaimValue.createNull()));
+        jwtAuthorizationRequest.addUserInfoClaim(new Claim(JwtClaimName.ADDRESS_LOCALITY, ClaimValue.createNull()));
+        jwtAuthorizationRequest.addUserInfoClaim(new Claim(JwtClaimName.ADDRESS_REGION, ClaimValue.createNull()));
+        jwtAuthorizationRequest.addUserInfoClaim(new Claim(JwtClaimName.ADDRESS_POSTAL_CODE, ClaimValue.createNull()));
+        jwtAuthorizationRequest.addUserInfoClaim(new Claim(JwtClaimName.ADDRESS_COUNTRY, ClaimValue.createNull()));
+        jwtAuthorizationRequest.addIdTokenClaim(new Claim(JwtClaimName.AUTHENTICATION_TIME, ClaimValue.createNull()));
+        jwtAuthorizationRequest.addIdTokenClaim(new Claim(JwtClaimName.AUTHENTICATION_CONTEXT_CLASS_REFERENCE, ClaimValue.createValueList(new String[]{ACR_VALUE})));
+        jwtAuthorizationRequest.addIdTokenClaim(new Claim(JwtClaimName.NAME, ClaimValue.createEssential(true)));
+        jwtAuthorizationRequest.addIdTokenClaim(new Claim(JwtClaimName.NICKNAME, ClaimValue.createEssential(false)));
+        jwtAuthorizationRequest.addIdTokenClaim(new Claim(JwtClaimName.GIVEN_NAME, ClaimValue.createEssential(false)));
+        jwtAuthorizationRequest.addIdTokenClaim(new Claim(JwtClaimName.FAMILY_NAME, ClaimValue.createEssential(false)));
+        jwtAuthorizationRequest.addIdTokenClaim(new Claim(JwtClaimName.EMAIL, ClaimValue.createNull()));
+        jwtAuthorizationRequest.addIdTokenClaim(new Claim(JwtClaimName.EMAIL_VERIFIED, ClaimValue.createNull()));
+        jwtAuthorizationRequest.getIdTokenMember().setMaxAge(86400);
+        String authJwt = jwtAuthorizationRequest.getEncodedJwt();
+        authorizationRequest.setRequest(authJwt);
+
+        AuthorizationResponse authorizationResponse = authenticateResourceOwnerAndGrantAccess(
+                authorizationEndpoint, authorizationRequest, userId, userSecret);
+
+        assertNotNull(authorizationResponse.getLocation(), "The location is null");
+        assertNotNull(authorizationResponse.getAccessToken(), "The accessToken is null");
+        assertNotNull(authorizationResponse.getTokenType(), "The tokenType is null");
+        assertNotNull(authorizationResponse.getIdToken(), "The idToken is null");
+        assertNotNull(authorizationResponse.getState(), "The state is null");
+
+        String idToken = authorizationResponse.getIdToken();
+        String accessToken = authorizationResponse.getAccessToken();
+
+        // 3. Validate id_token
+        Jwt jwt = Jwt.parse(idToken);
+        assertNotNull(jwt.getHeader().getClaimAsString(JwtHeaderName.TYPE));
+        assertNotNull(jwt.getHeader().getClaimAsString(JwtHeaderName.ALGORITHM));
+        assertNotNull(jwt.getClaims().getClaimAsString(JwtClaimName.ISSUER));
+        assertNotNull(jwt.getClaims().getClaimAsString(JwtClaimName.AUDIENCE));
+        assertNotNull(jwt.getClaims().getClaimAsString(JwtClaimName.EXPIRATION_TIME));
+        assertNotNull(jwt.getClaims().getClaimAsString(JwtClaimName.ISSUED_AT));
+        assertNotNull(jwt.getClaims().getClaimAsString(JwtClaimName.SUBJECT_IDENTIFIER));
+        assertNotNull(jwt.getClaims().getClaimAsString(JwtClaimName.ACCESS_TOKEN_HASH));
+        assertNotNull(jwt.getClaims().getClaimAsString(JwtClaimName.AUTHENTICATION_TIME));
+        assertNotNull(jwt.getClaims().getClaimAsString(JwtClaimName.NAME));
+        assertNotNull(jwt.getClaims().getClaimAsString(JwtClaimName.NICKNAME));
+        assertNotNull(jwt.getClaims().getClaimAsString(JwtClaimName.GIVEN_NAME));
+        assertNotNull(jwt.getClaims().getClaimAsString(JwtClaimName.FAMILY_NAME));
+        assertNull(jwt.getClaims().getClaimAsString(JwtClaimName.EMAIL));
+        assertNull(jwt.getClaims().getClaimAsString(JwtClaimName.EMAIL_VERIFIED));
+
+        HMACSigner hmacSigner = new HMACSigner(SignatureAlgorithm.HS384, clientSecret);
+        assertTrue(hmacSigner.validate(jwt));
+
+        // 4. Request user info
+        UserInfoClient userInfoClient = new UserInfoClient(userInfoEndpoint);
+        userInfoClient.setSharedKey(clientSecret);
+        UserInfoResponse userInfoResponse = userInfoClient.execUserInfo(accessToken);
+
+        showClient(userInfoClient);
+        assertEquals(userInfoResponse.getStatus(), 200, "Unexpected response code: " + userInfoResponse.getStatus());
+        assertNotNull(userInfoResponse.getClaim(JwtClaimName.SUBJECT_IDENTIFIER));
+        assertNotNull(userInfoResponse.getClaim(JwtClaimName.NAME));
+        assertNotNull(userInfoResponse.getClaim(JwtClaimName.NICKNAME));
+        assertNotNull(userInfoResponse.getClaim(JwtClaimName.GIVEN_NAME));
+        assertNotNull(userInfoResponse.getClaim(JwtClaimName.FAMILY_NAME));
+        assertNull(userInfoResponse.getClaim(JwtClaimName.EMAIL));
+        assertNull(userInfoResponse.getClaim(JwtClaimName.EMAIL_VERIFIED));
+        assertNotNull(userInfoResponse.getClaim(JwtClaimName.PICTURE));
+        assertNotNull(userInfoResponse.getClaim(JwtClaimName.ZONEINFO));
+        assertNotNull(userInfoResponse.getClaim(JwtClaimName.LOCALE));
+        assertNotNull(userInfoResponse.getClaim(JwtClaimName.ADDRESS_STREET_ADDRESS));
+        assertNotNull(userInfoResponse.getClaim(JwtClaimName.ADDRESS_LOCALITY));
+        assertNotNull(userInfoResponse.getClaim(JwtClaimName.ADDRESS_REGION));
+        assertNotNull(userInfoResponse.getClaim(JwtClaimName.ADDRESS_COUNTRY));
+    }
+
+    @Parameters({"userId", "userSecret", "redirectUris", "redirectUri", "sectorIdentifierUri"})
+    @Test
+    public void requestClaimsIndividuallyRequestObjectSigningAlgHS512UserInfoSignedResponseAlgHS512(
+            final String userId, final String userSecret, final String redirectUris, final String redirectUri,
+            final String sectorIdentifierUri) throws Exception {
+        showTitle("requestClaimsIndividuallyRequestObjectSigningAlgHS512UserInfoSignedResponseAlgHS512");
+
+        List<ResponseType> responseTypes = Arrays.asList(
+                ResponseType.TOKEN,
+                ResponseType.ID_TOKEN);
+
+        // 1. Register client
+        RegisterRequest registerRequest = new RegisterRequest(ApplicationType.WEB, "oxAuth test app",
+                StringUtils.spaceSeparatedToList(redirectUris));
+        registerRequest.setResponseTypes(responseTypes);
+        registerRequest.setSectorIdentifierUri(sectorIdentifierUri);
+        registerRequest.setIdTokenSignedResponseAlg(SignatureAlgorithm.HS512);
+        registerRequest.setRequestObjectSigningAlg(SignatureAlgorithm.HS512);
+        registerRequest.setUserInfoSignedResponseAlg(SignatureAlgorithm.HS512);
+        registerRequest.setClaims(Arrays.asList(
+                JwtClaimName.NAME,
+                JwtClaimName.NICKNAME,
+                JwtClaimName.GIVEN_NAME,
+                JwtClaimName.FAMILY_NAME,
+                JwtClaimName.PICTURE,
+                JwtClaimName.ZONEINFO,
+                JwtClaimName.LOCALE,
+                JwtClaimName.ADDRESS_STREET_ADDRESS,
+                JwtClaimName.ADDRESS_LOCALITY,
+                JwtClaimName.ADDRESS_REGION,
+                JwtClaimName.ADDRESS_POSTAL_CODE,
+                JwtClaimName.ADDRESS_COUNTRY));
+
+        RegisterClient registerClient = new RegisterClient(registrationEndpoint);
+        registerClient.setRequest(registerRequest);
+        RegisterResponse registerResponse = registerClient.exec();
+
+        showClient(registerClient);
+        assertEquals(registerResponse.getStatus(), 200, "Unexpected response code: " + registerResponse.getEntity());
+        assertNotNull(registerResponse.getClientId());
+        assertNotNull(registerResponse.getClientSecret());
+        assertNotNull(registerResponse.getRegistrationAccessToken());
+        assertNotNull(registerResponse.getClientIdIssuedAt());
+        assertNotNull(registerResponse.getClientSecretExpiresAt());
+
+        String clientId = registerResponse.getClientId();
+        String clientSecret = registerResponse.getClientSecret();
+
+        // 2. Request authorization
+        OxAuthCryptoProvider cryptoProvider = new OxAuthCryptoProvider();
+
+        List<String> scopes = Arrays.asList("openid", "clientinfo");
+        String nonce = UUID.randomUUID().toString();
+        String state = UUID.randomUUID().toString();
+
+        AuthorizationRequest authorizationRequest = new AuthorizationRequest(responseTypes, clientId, scopes, redirectUri, nonce);
+        authorizationRequest.setState(state);
+
+        JwtAuthorizationRequest jwtAuthorizationRequest = new JwtAuthorizationRequest(
+                authorizationRequest, SignatureAlgorithm.HS512, clientSecret, cryptoProvider);
+        jwtAuthorizationRequest.addUserInfoClaim(new Claim(JwtClaimName.NAME, ClaimValue.createNull()));
+        jwtAuthorizationRequest.addUserInfoClaim(new Claim(JwtClaimName.NICKNAME, ClaimValue.createEssential(false)));
+        jwtAuthorizationRequest.addUserInfoClaim(new Claim(JwtClaimName.GIVEN_NAME, ClaimValue.createEssential(false)));
+        jwtAuthorizationRequest.addUserInfoClaim(new Claim(JwtClaimName.FAMILY_NAME, ClaimValue.createEssential(false)));
+        jwtAuthorizationRequest.addUserInfoClaim(new Claim(JwtClaimName.EMAIL, ClaimValue.createNull()));
+        jwtAuthorizationRequest.addUserInfoClaim(new Claim(JwtClaimName.EMAIL_VERIFIED, ClaimValue.createNull()));
+        jwtAuthorizationRequest.addUserInfoClaim(new Claim(JwtClaimName.PICTURE, ClaimValue.createEssential(false)));
+        jwtAuthorizationRequest.addUserInfoClaim(new Claim(JwtClaimName.ZONEINFO, ClaimValue.createNull()));
+        jwtAuthorizationRequest.addUserInfoClaim(new Claim(JwtClaimName.LOCALE, ClaimValue.createNull()));
+        jwtAuthorizationRequest.addUserInfoClaim(new Claim(JwtClaimName.ADDRESS_STREET_ADDRESS, ClaimValue.createNull()));
+        jwtAuthorizationRequest.addUserInfoClaim(new Claim(JwtClaimName.ADDRESS_LOCALITY, ClaimValue.createNull()));
+        jwtAuthorizationRequest.addUserInfoClaim(new Claim(JwtClaimName.ADDRESS_REGION, ClaimValue.createNull()));
+        jwtAuthorizationRequest.addUserInfoClaim(new Claim(JwtClaimName.ADDRESS_POSTAL_CODE, ClaimValue.createNull()));
+        jwtAuthorizationRequest.addUserInfoClaim(new Claim(JwtClaimName.ADDRESS_COUNTRY, ClaimValue.createNull()));
+        jwtAuthorizationRequest.addIdTokenClaim(new Claim(JwtClaimName.AUTHENTICATION_TIME, ClaimValue.createNull()));
+        jwtAuthorizationRequest.addIdTokenClaim(new Claim(JwtClaimName.AUTHENTICATION_CONTEXT_CLASS_REFERENCE, ClaimValue.createValueList(new String[]{ACR_VALUE})));
+        jwtAuthorizationRequest.addIdTokenClaim(new Claim(JwtClaimName.NAME, ClaimValue.createEssential(true)));
+        jwtAuthorizationRequest.addIdTokenClaim(new Claim(JwtClaimName.NICKNAME, ClaimValue.createEssential(false)));
+        jwtAuthorizationRequest.addIdTokenClaim(new Claim(JwtClaimName.GIVEN_NAME, ClaimValue.createEssential(false)));
+        jwtAuthorizationRequest.addIdTokenClaim(new Claim(JwtClaimName.FAMILY_NAME, ClaimValue.createEssential(false)));
+        jwtAuthorizationRequest.addIdTokenClaim(new Claim(JwtClaimName.EMAIL, ClaimValue.createNull()));
+        jwtAuthorizationRequest.addIdTokenClaim(new Claim(JwtClaimName.EMAIL_VERIFIED, ClaimValue.createNull()));
+        jwtAuthorizationRequest.getIdTokenMember().setMaxAge(86400);
+        String authJwt = jwtAuthorizationRequest.getEncodedJwt();
+        authorizationRequest.setRequest(authJwt);
+
+        AuthorizationResponse authorizationResponse = authenticateResourceOwnerAndGrantAccess(
+                authorizationEndpoint, authorizationRequest, userId, userSecret);
+
+        assertNotNull(authorizationResponse.getLocation(), "The location is null");
+        assertNotNull(authorizationResponse.getAccessToken(), "The accessToken is null");
+        assertNotNull(authorizationResponse.getTokenType(), "The tokenType is null");
+        assertNotNull(authorizationResponse.getIdToken(), "The idToken is null");
+        assertNotNull(authorizationResponse.getState(), "The state is null");
+
+        String idToken = authorizationResponse.getIdToken();
+        String accessToken = authorizationResponse.getAccessToken();
+
+        // 3. Validate id_token
+        Jwt jwt = Jwt.parse(idToken);
+        assertNotNull(jwt.getHeader().getClaimAsString(JwtHeaderName.TYPE));
+        assertNotNull(jwt.getHeader().getClaimAsString(JwtHeaderName.ALGORITHM));
+        assertNotNull(jwt.getClaims().getClaimAsString(JwtClaimName.ISSUER));
+        assertNotNull(jwt.getClaims().getClaimAsString(JwtClaimName.AUDIENCE));
+        assertNotNull(jwt.getClaims().getClaimAsString(JwtClaimName.EXPIRATION_TIME));
+        assertNotNull(jwt.getClaims().getClaimAsString(JwtClaimName.ISSUED_AT));
+        assertNotNull(jwt.getClaims().getClaimAsString(JwtClaimName.SUBJECT_IDENTIFIER));
+        assertNotNull(jwt.getClaims().getClaimAsString(JwtClaimName.ACCESS_TOKEN_HASH));
+        assertNotNull(jwt.getClaims().getClaimAsString(JwtClaimName.AUTHENTICATION_TIME));
+        assertNotNull(jwt.getClaims().getClaimAsString(JwtClaimName.NAME));
+        assertNotNull(jwt.getClaims().getClaimAsString(JwtClaimName.NICKNAME));
+        assertNotNull(jwt.getClaims().getClaimAsString(JwtClaimName.GIVEN_NAME));
+        assertNotNull(jwt.getClaims().getClaimAsString(JwtClaimName.FAMILY_NAME));
+        assertNull(jwt.getClaims().getClaimAsString(JwtClaimName.EMAIL));
+        assertNull(jwt.getClaims().getClaimAsString(JwtClaimName.EMAIL_VERIFIED));
+
+        HMACSigner hmacSigner = new HMACSigner(SignatureAlgorithm.HS512, clientSecret);
+        assertTrue(hmacSigner.validate(jwt));
+
+        // 4. Request user info
+        UserInfoClient userInfoClient = new UserInfoClient(userInfoEndpoint);
+        userInfoClient.setSharedKey(clientSecret);
+        UserInfoResponse userInfoResponse = userInfoClient.execUserInfo(accessToken);
+
+        showClient(userInfoClient);
+        assertEquals(userInfoResponse.getStatus(), 200, "Unexpected response code: " + userInfoResponse.getStatus());
+        assertNotNull(userInfoResponse.getClaim(JwtClaimName.SUBJECT_IDENTIFIER));
+        assertNotNull(userInfoResponse.getClaim(JwtClaimName.NAME));
+        assertNotNull(userInfoResponse.getClaim(JwtClaimName.NICKNAME));
+        assertNotNull(userInfoResponse.getClaim(JwtClaimName.GIVEN_NAME));
+        assertNotNull(userInfoResponse.getClaim(JwtClaimName.FAMILY_NAME));
+        assertNull(userInfoResponse.getClaim(JwtClaimName.EMAIL));
+        assertNull(userInfoResponse.getClaim(JwtClaimName.EMAIL_VERIFIED));
+        assertNotNull(userInfoResponse.getClaim(JwtClaimName.PICTURE));
+        assertNotNull(userInfoResponse.getClaim(JwtClaimName.ZONEINFO));
+        assertNotNull(userInfoResponse.getClaim(JwtClaimName.LOCALE));
+        assertNotNull(userInfoResponse.getClaim(JwtClaimName.ADDRESS_STREET_ADDRESS));
+        assertNotNull(userInfoResponse.getClaim(JwtClaimName.ADDRESS_LOCALITY));
+        assertNotNull(userInfoResponse.getClaim(JwtClaimName.ADDRESS_REGION));
+        assertNotNull(userInfoResponse.getClaim(JwtClaimName.ADDRESS_COUNTRY));
+    }
+
+    @Parameters({"userId", "userSecret", "redirectUris", "redirectUri", "sectorIdentifierUri", "RS256_keyId",
+            "dnName", "keyStoreFile", "keyStoreSecret", "clientJwksUri"})
+    @Test
+    public void requestClaimsIndividuallyRequestObjectSigningAlgRS256UserInfoSignedResponseAlgRS256(
+            final String userId, final String userSecret, final String redirectUris, final String redirectUri,
+            final String sectorIdentifierUri, final String keyId, final String dnName, final String keyStoreFile,
+            final String keyStoreSecret, final String clientJwksUri) throws Exception {
+        showTitle("requestClaimsIndividuallyRequestObjectSigningAlgRS256UserInfoSignedResponseAlgRS256");
+
+        List<ResponseType> responseTypes = Arrays.asList(
+                ResponseType.TOKEN,
+                ResponseType.ID_TOKEN);
+
+        // 1. Register client
+        RegisterRequest registerRequest = new RegisterRequest(ApplicationType.WEB, "oxAuth test app",
+                StringUtils.spaceSeparatedToList(redirectUris));
+        registerRequest.setResponseTypes(responseTypes);
+        registerRequest.setJwksUri(clientJwksUri);
+        registerRequest.setSectorIdentifierUri(sectorIdentifierUri);
+        registerRequest.setIdTokenSignedResponseAlg(SignatureAlgorithm.RS256);
+        registerRequest.setRequestObjectSigningAlg(SignatureAlgorithm.RS256);
+        registerRequest.setUserInfoSignedResponseAlg(SignatureAlgorithm.RS256);
+        registerRequest.setClaims(Arrays.asList(
+                JwtClaimName.NAME,
+                JwtClaimName.NICKNAME,
+                JwtClaimName.GIVEN_NAME,
+                JwtClaimName.FAMILY_NAME,
+                JwtClaimName.PICTURE,
+                JwtClaimName.ZONEINFO,
+                JwtClaimName.LOCALE,
+                JwtClaimName.ADDRESS_STREET_ADDRESS,
+                JwtClaimName.ADDRESS_LOCALITY,
+                JwtClaimName.ADDRESS_REGION,
+                JwtClaimName.ADDRESS_POSTAL_CODE,
+                JwtClaimName.ADDRESS_COUNTRY));
+
+        RegisterClient registerClient = new RegisterClient(registrationEndpoint);
+        registerClient.setRequest(registerRequest);
+        RegisterResponse registerResponse = registerClient.exec();
+
+        showClient(registerClient);
+        assertEquals(registerResponse.getStatus(), 200, "Unexpected response code: " + registerResponse.getEntity());
+        assertNotNull(registerResponse.getClientId());
+        assertNotNull(registerResponse.getClientSecret());
+        assertNotNull(registerResponse.getRegistrationAccessToken());
+        assertNotNull(registerResponse.getClientIdIssuedAt());
+        assertNotNull(registerResponse.getClientSecretExpiresAt());
+
+        String clientId = registerResponse.getClientId();
+
+        // 2. Request authorization
+        OxAuthCryptoProvider cryptoProvider = new OxAuthCryptoProvider(keyStoreFile, keyStoreSecret, dnName);
+
+        List<String> scopes = Arrays.asList("openid", "clientinfo");
+        String nonce = UUID.randomUUID().toString();
+        String state = UUID.randomUUID().toString();
+
+        AuthorizationRequest authorizationRequest = new AuthorizationRequest(responseTypes, clientId, scopes, redirectUri, nonce);
+        authorizationRequest.setState(state);
+
+        JwtAuthorizationRequest jwtAuthorizationRequest = new JwtAuthorizationRequest(
+                authorizationRequest, SignatureAlgorithm.RS256, cryptoProvider);
+        jwtAuthorizationRequest.setKeyId(keyId);
+        jwtAuthorizationRequest.addUserInfoClaim(new Claim(JwtClaimName.NAME, ClaimValue.createNull()));
+        jwtAuthorizationRequest.addUserInfoClaim(new Claim(JwtClaimName.NICKNAME, ClaimValue.createEssential(false)));
+        jwtAuthorizationRequest.addUserInfoClaim(new Claim(JwtClaimName.GIVEN_NAME, ClaimValue.createEssential(false)));
+        jwtAuthorizationRequest.addUserInfoClaim(new Claim(JwtClaimName.FAMILY_NAME, ClaimValue.createEssential(false)));
+        jwtAuthorizationRequest.addUserInfoClaim(new Claim(JwtClaimName.EMAIL, ClaimValue.createNull()));
+        jwtAuthorizationRequest.addUserInfoClaim(new Claim(JwtClaimName.EMAIL_VERIFIED, ClaimValue.createNull()));
+        jwtAuthorizationRequest.addUserInfoClaim(new Claim(JwtClaimName.PICTURE, ClaimValue.createEssential(false)));
+        jwtAuthorizationRequest.addUserInfoClaim(new Claim(JwtClaimName.ZONEINFO, ClaimValue.createNull()));
+        jwtAuthorizationRequest.addUserInfoClaim(new Claim(JwtClaimName.LOCALE, ClaimValue.createNull()));
+        jwtAuthorizationRequest.addUserInfoClaim(new Claim(JwtClaimName.ADDRESS_STREET_ADDRESS, ClaimValue.createNull()));
+        jwtAuthorizationRequest.addUserInfoClaim(new Claim(JwtClaimName.ADDRESS_LOCALITY, ClaimValue.createNull()));
+        jwtAuthorizationRequest.addUserInfoClaim(new Claim(JwtClaimName.ADDRESS_REGION, ClaimValue.createNull()));
+        jwtAuthorizationRequest.addUserInfoClaim(new Claim(JwtClaimName.ADDRESS_POSTAL_CODE, ClaimValue.createNull()));
+        jwtAuthorizationRequest.addUserInfoClaim(new Claim(JwtClaimName.ADDRESS_COUNTRY, ClaimValue.createNull()));
+        jwtAuthorizationRequest.addIdTokenClaim(new Claim(JwtClaimName.AUTHENTICATION_TIME, ClaimValue.createNull()));
+        jwtAuthorizationRequest.addIdTokenClaim(new Claim(JwtClaimName.AUTHENTICATION_CONTEXT_CLASS_REFERENCE, ClaimValue.createValueList(new String[]{ACR_VALUE})));
+        jwtAuthorizationRequest.addIdTokenClaim(new Claim(JwtClaimName.NAME, ClaimValue.createEssential(true)));
+        jwtAuthorizationRequest.addIdTokenClaim(new Claim(JwtClaimName.NICKNAME, ClaimValue.createEssential(false)));
+        jwtAuthorizationRequest.addIdTokenClaim(new Claim(JwtClaimName.GIVEN_NAME, ClaimValue.createEssential(false)));
+        jwtAuthorizationRequest.addIdTokenClaim(new Claim(JwtClaimName.FAMILY_NAME, ClaimValue.createEssential(false)));
+        jwtAuthorizationRequest.addIdTokenClaim(new Claim(JwtClaimName.EMAIL, ClaimValue.createNull()));
+        jwtAuthorizationRequest.addIdTokenClaim(new Claim(JwtClaimName.EMAIL_VERIFIED, ClaimValue.createNull()));
+        jwtAuthorizationRequest.getIdTokenMember().setMaxAge(86400);
+        String authJwt = jwtAuthorizationRequest.getEncodedJwt();
+        authorizationRequest.setRequest(authJwt);
+
+        AuthorizationResponse authorizationResponse = authenticateResourceOwnerAndGrantAccess(
+                authorizationEndpoint, authorizationRequest, userId, userSecret);
+
+        assertNotNull(authorizationResponse.getLocation(), "The location is null");
+        assertNotNull(authorizationResponse.getAccessToken(), "The accessToken is null");
+        assertNotNull(authorizationResponse.getTokenType(), "The tokenType is null");
+        assertNotNull(authorizationResponse.getIdToken(), "The idToken is null");
+        assertNotNull(authorizationResponse.getState(), "The state is null");
+
+        String idToken = authorizationResponse.getIdToken();
+        String accessToken = authorizationResponse.getAccessToken();
+
+        // 3. Validate id_token
+        Jwt jwt = Jwt.parse(idToken);
+        assertNotNull(jwt.getHeader().getClaimAsString(JwtHeaderName.TYPE));
+        assertNotNull(jwt.getHeader().getClaimAsString(JwtHeaderName.ALGORITHM));
+        assertNotNull(jwt.getClaims().getClaimAsString(JwtClaimName.ISSUER));
+        assertNotNull(jwt.getClaims().getClaimAsString(JwtClaimName.AUDIENCE));
+        assertNotNull(jwt.getClaims().getClaimAsString(JwtClaimName.EXPIRATION_TIME));
+        assertNotNull(jwt.getClaims().getClaimAsString(JwtClaimName.ISSUED_AT));
+        assertNotNull(jwt.getClaims().getClaimAsString(JwtClaimName.SUBJECT_IDENTIFIER));
+        assertNotNull(jwt.getClaims().getClaimAsString(JwtClaimName.ACCESS_TOKEN_HASH));
+        assertNotNull(jwt.getClaims().getClaimAsString(JwtClaimName.AUTHENTICATION_TIME));
+        assertNotNull(jwt.getClaims().getClaimAsString(JwtClaimName.NAME));
+        assertNotNull(jwt.getClaims().getClaimAsString(JwtClaimName.NICKNAME));
+        assertNotNull(jwt.getClaims().getClaimAsString(JwtClaimName.GIVEN_NAME));
+        assertNotNull(jwt.getClaims().getClaimAsString(JwtClaimName.FAMILY_NAME));
+        assertNull(jwt.getClaims().getClaimAsString(JwtClaimName.EMAIL));
+        assertNull(jwt.getClaims().getClaimAsString(JwtClaimName.EMAIL_VERIFIED));
+
+        RSAPublicKey publicKey = JwkClient.getRSAPublicKey(
+                jwksUri,
+                jwt.getHeader().getClaimAsString(JwtHeaderName.KEY_ID));
+        RSASigner rsaSigner = new RSASigner(SignatureAlgorithm.RS256, publicKey);
+
+        assertTrue(rsaSigner.validate(jwt));
+
+        // 4. Request user info
+        UserInfoClient userInfoClient = new UserInfoClient(userInfoEndpoint);
+        userInfoClient.setJwksUri(jwksUri);
+        UserInfoResponse userInfoResponse = userInfoClient.execUserInfo(accessToken);
+
+        showClient(userInfoClient);
+        assertEquals(userInfoResponse.getStatus(), 200, "Unexpected response code: " + userInfoResponse.getStatus());
+        assertNotNull(userInfoResponse.getClaim(JwtClaimName.SUBJECT_IDENTIFIER));
+        assertNotNull(userInfoResponse.getClaim(JwtClaimName.NAME));
+        assertNotNull(userInfoResponse.getClaim(JwtClaimName.NICKNAME));
+        assertNotNull(userInfoResponse.getClaim(JwtClaimName.GIVEN_NAME));
+        assertNotNull(userInfoResponse.getClaim(JwtClaimName.FAMILY_NAME));
+        assertNull(userInfoResponse.getClaim(JwtClaimName.EMAIL));
+        assertNull(userInfoResponse.getClaim(JwtClaimName.EMAIL_VERIFIED));
+        assertNotNull(userInfoResponse.getClaim(JwtClaimName.PICTURE));
+        assertNotNull(userInfoResponse.getClaim(JwtClaimName.ZONEINFO));
+        assertNotNull(userInfoResponse.getClaim(JwtClaimName.LOCALE));
+        assertNotNull(userInfoResponse.getClaim(JwtClaimName.ADDRESS_STREET_ADDRESS));
+        assertNotNull(userInfoResponse.getClaim(JwtClaimName.ADDRESS_LOCALITY));
+        assertNotNull(userInfoResponse.getClaim(JwtClaimName.ADDRESS_REGION));
+        assertNotNull(userInfoResponse.getClaim(JwtClaimName.ADDRESS_COUNTRY));
+    }
+
+    @Parameters({"userId", "userSecret", "redirectUris", "redirectUri", "sectorIdentifierUri", "RS384_keyId",
+            "dnName", "keyStoreFile", "keyStoreSecret", "clientJwksUri"})
+    @Test
+    public void requestClaimsIndividuallyRequestObjectSigningAlgRS384UserInfoSignedResponseAlgRS384(
+            final String userId, final String userSecret, final String redirectUris, final String redirectUri,
+            final String sectorIdentifierUri, final String keyId, final String dnName, final String keyStoreFile,
+            final String keyStoreSecret, final String clientJwksUri) throws Exception {
+        showTitle("requestClaimsIndividuallyRequestObjectSigningAlgRS384UserInfoSignedResponseAlgRS384");
+
+        List<ResponseType> responseTypes = Arrays.asList(
+                ResponseType.TOKEN,
+                ResponseType.ID_TOKEN);
+
+        // 1. Register client
+        RegisterRequest registerRequest = new RegisterRequest(ApplicationType.WEB, "oxAuth test app",
+                StringUtils.spaceSeparatedToList(redirectUris));
+        registerRequest.setResponseTypes(responseTypes);
+        registerRequest.setJwksUri(clientJwksUri);
+        registerRequest.setSectorIdentifierUri(sectorIdentifierUri);
+        registerRequest.setIdTokenSignedResponseAlg(SignatureAlgorithm.RS384);
+        registerRequest.setRequestObjectSigningAlg(SignatureAlgorithm.RS384);
+        registerRequest.setUserInfoSignedResponseAlg(SignatureAlgorithm.RS384);
+        registerRequest.setClaims(Arrays.asList(
+                JwtClaimName.NAME,
+                JwtClaimName.NICKNAME,
+                JwtClaimName.GIVEN_NAME,
+                JwtClaimName.FAMILY_NAME,
+                JwtClaimName.PICTURE,
+                JwtClaimName.ZONEINFO,
+                JwtClaimName.LOCALE,
+                JwtClaimName.ADDRESS_STREET_ADDRESS,
+                JwtClaimName.ADDRESS_LOCALITY,
+                JwtClaimName.ADDRESS_REGION,
+                JwtClaimName.ADDRESS_POSTAL_CODE,
+                JwtClaimName.ADDRESS_COUNTRY));
+
+        RegisterClient registerClient = new RegisterClient(registrationEndpoint);
+        registerClient.setRequest(registerRequest);
+        RegisterResponse registerResponse = registerClient.exec();
+
+        showClient(registerClient);
+        assertEquals(registerResponse.getStatus(), 200, "Unexpected response code: " + registerResponse.getEntity());
+        assertNotNull(registerResponse.getClientId());
+        assertNotNull(registerResponse.getClientSecret());
+        assertNotNull(registerResponse.getRegistrationAccessToken());
+        assertNotNull(registerResponse.getClientIdIssuedAt());
+        assertNotNull(registerResponse.getClientSecretExpiresAt());
+
+        String clientId = registerResponse.getClientId();
+
+        // 2. Request authorization
+        OxAuthCryptoProvider cryptoProvider = new OxAuthCryptoProvider(keyStoreFile, keyStoreSecret, dnName);
+
+        List<String> scopes = Arrays.asList("openid", "clientinfo");
+        String nonce = UUID.randomUUID().toString();
+        String state = UUID.randomUUID().toString();
+
+        AuthorizationRequest authorizationRequest = new AuthorizationRequest(responseTypes, clientId, scopes, redirectUri, nonce);
+        authorizationRequest.setState(state);
+
+        JwtAuthorizationRequest jwtAuthorizationRequest = new JwtAuthorizationRequest(
+                authorizationRequest, SignatureAlgorithm.RS384, cryptoProvider);
+        jwtAuthorizationRequest.setKeyId(keyId);
+        jwtAuthorizationRequest.addUserInfoClaim(new Claim(JwtClaimName.NAME, ClaimValue.createNull()));
+        jwtAuthorizationRequest.addUserInfoClaim(new Claim(JwtClaimName.NICKNAME, ClaimValue.createEssential(false)));
+        jwtAuthorizationRequest.addUserInfoClaim(new Claim(JwtClaimName.GIVEN_NAME, ClaimValue.createEssential(false)));
+        jwtAuthorizationRequest.addUserInfoClaim(new Claim(JwtClaimName.FAMILY_NAME, ClaimValue.createEssential(false)));
+        jwtAuthorizationRequest.addUserInfoClaim(new Claim(JwtClaimName.EMAIL, ClaimValue.createNull()));
+        jwtAuthorizationRequest.addUserInfoClaim(new Claim(JwtClaimName.EMAIL_VERIFIED, ClaimValue.createNull()));
+        jwtAuthorizationRequest.addUserInfoClaim(new Claim(JwtClaimName.PICTURE, ClaimValue.createEssential(false)));
+        jwtAuthorizationRequest.addUserInfoClaim(new Claim(JwtClaimName.ZONEINFO, ClaimValue.createNull()));
+        jwtAuthorizationRequest.addUserInfoClaim(new Claim(JwtClaimName.LOCALE, ClaimValue.createNull()));
+        jwtAuthorizationRequest.addUserInfoClaim(new Claim(JwtClaimName.ADDRESS_STREET_ADDRESS, ClaimValue.createNull()));
+        jwtAuthorizationRequest.addUserInfoClaim(new Claim(JwtClaimName.ADDRESS_LOCALITY, ClaimValue.createNull()));
+        jwtAuthorizationRequest.addUserInfoClaim(new Claim(JwtClaimName.ADDRESS_REGION, ClaimValue.createNull()));
+        jwtAuthorizationRequest.addUserInfoClaim(new Claim(JwtClaimName.ADDRESS_POSTAL_CODE, ClaimValue.createNull()));
+        jwtAuthorizationRequest.addUserInfoClaim(new Claim(JwtClaimName.ADDRESS_COUNTRY, ClaimValue.createNull()));
+        jwtAuthorizationRequest.addIdTokenClaim(new Claim(JwtClaimName.AUTHENTICATION_TIME, ClaimValue.createNull()));
+        jwtAuthorizationRequest.addIdTokenClaim(new Claim(JwtClaimName.AUTHENTICATION_CONTEXT_CLASS_REFERENCE, ClaimValue.createValueList(new String[]{ACR_VALUE})));
+        jwtAuthorizationRequest.addIdTokenClaim(new Claim(JwtClaimName.NAME, ClaimValue.createEssential(true)));
+        jwtAuthorizationRequest.addIdTokenClaim(new Claim(JwtClaimName.NICKNAME, ClaimValue.createEssential(false)));
+        jwtAuthorizationRequest.addIdTokenClaim(new Claim(JwtClaimName.GIVEN_NAME, ClaimValue.createEssential(false)));
+        jwtAuthorizationRequest.addIdTokenClaim(new Claim(JwtClaimName.FAMILY_NAME, ClaimValue.createEssential(false)));
+        jwtAuthorizationRequest.addIdTokenClaim(new Claim(JwtClaimName.EMAIL, ClaimValue.createNull()));
+        jwtAuthorizationRequest.addIdTokenClaim(new Claim(JwtClaimName.EMAIL_VERIFIED, ClaimValue.createNull()));
+        jwtAuthorizationRequest.getIdTokenMember().setMaxAge(86400);
+        String authJwt = jwtAuthorizationRequest.getEncodedJwt();
+        authorizationRequest.setRequest(authJwt);
+
+        AuthorizationResponse authorizationResponse = authenticateResourceOwnerAndGrantAccess(
+                authorizationEndpoint, authorizationRequest, userId, userSecret);
+
+        assertNotNull(authorizationResponse.getLocation(), "The location is null");
+        assertNotNull(authorizationResponse.getAccessToken(), "The accessToken is null");
+        assertNotNull(authorizationResponse.getTokenType(), "The tokenType is null");
+        assertNotNull(authorizationResponse.getIdToken(), "The idToken is null");
+        assertNotNull(authorizationResponse.getState(), "The state is null");
+
+        String idToken = authorizationResponse.getIdToken();
+        String accessToken = authorizationResponse.getAccessToken();
+
+        // 3. Validate id_token
+        Jwt jwt = Jwt.parse(idToken);
+        assertNotNull(jwt.getHeader().getClaimAsString(JwtHeaderName.TYPE));
+        assertNotNull(jwt.getHeader().getClaimAsString(JwtHeaderName.ALGORITHM));
+        assertNotNull(jwt.getClaims().getClaimAsString(JwtClaimName.ISSUER));
+        assertNotNull(jwt.getClaims().getClaimAsString(JwtClaimName.AUDIENCE));
+        assertNotNull(jwt.getClaims().getClaimAsString(JwtClaimName.EXPIRATION_TIME));
+        assertNotNull(jwt.getClaims().getClaimAsString(JwtClaimName.ISSUED_AT));
+        assertNotNull(jwt.getClaims().getClaimAsString(JwtClaimName.SUBJECT_IDENTIFIER));
+        assertNotNull(jwt.getClaims().getClaimAsString(JwtClaimName.ACCESS_TOKEN_HASH));
+        assertNotNull(jwt.getClaims().getClaimAsString(JwtClaimName.AUTHENTICATION_TIME));
+        assertNotNull(jwt.getClaims().getClaimAsString(JwtClaimName.NAME));
+        assertNotNull(jwt.getClaims().getClaimAsString(JwtClaimName.NICKNAME));
+        assertNotNull(jwt.getClaims().getClaimAsString(JwtClaimName.GIVEN_NAME));
+        assertNotNull(jwt.getClaims().getClaimAsString(JwtClaimName.FAMILY_NAME));
+        assertNull(jwt.getClaims().getClaimAsString(JwtClaimName.EMAIL));
+        assertNull(jwt.getClaims().getClaimAsString(JwtClaimName.EMAIL_VERIFIED));
+
+        RSAPublicKey publicKey = JwkClient.getRSAPublicKey(
+                jwksUri,
+                jwt.getHeader().getClaimAsString(JwtHeaderName.KEY_ID));
+        RSASigner rsaSigner = new RSASigner(SignatureAlgorithm.RS384, publicKey);
+
+        assertTrue(rsaSigner.validate(jwt));
+
+        // 4. Request user info
+        UserInfoClient userInfoClient = new UserInfoClient(userInfoEndpoint);
+        userInfoClient.setJwksUri(jwksUri);
+        UserInfoResponse userInfoResponse = userInfoClient.execUserInfo(accessToken);
+
+        showClient(userInfoClient);
+        assertEquals(userInfoResponse.getStatus(), 200, "Unexpected response code: " + userInfoResponse.getStatus());
+        assertNotNull(userInfoResponse.getClaim(JwtClaimName.SUBJECT_IDENTIFIER));
+        assertNotNull(userInfoResponse.getClaim(JwtClaimName.NAME));
+        assertNotNull(userInfoResponse.getClaim(JwtClaimName.NICKNAME));
+        assertNotNull(userInfoResponse.getClaim(JwtClaimName.GIVEN_NAME));
+        assertNotNull(userInfoResponse.getClaim(JwtClaimName.FAMILY_NAME));
+        assertNull(userInfoResponse.getClaim(JwtClaimName.EMAIL));
+        assertNull(userInfoResponse.getClaim(JwtClaimName.EMAIL_VERIFIED));
+        assertNotNull(userInfoResponse.getClaim(JwtClaimName.PICTURE));
+        assertNotNull(userInfoResponse.getClaim(JwtClaimName.ZONEINFO));
+        assertNotNull(userInfoResponse.getClaim(JwtClaimName.LOCALE));
+        assertNotNull(userInfoResponse.getClaim(JwtClaimName.ADDRESS_STREET_ADDRESS));
+        assertNotNull(userInfoResponse.getClaim(JwtClaimName.ADDRESS_LOCALITY));
+        assertNotNull(userInfoResponse.getClaim(JwtClaimName.ADDRESS_REGION));
+        assertNotNull(userInfoResponse.getClaim(JwtClaimName.ADDRESS_COUNTRY));
+    }
+
+    @Parameters({"userId", "userSecret", "redirectUris", "redirectUri", "sectorIdentifierUri", "RS512_keyId",
+            "dnName", "keyStoreFile", "keyStoreSecret", "clientJwksUri"})
+    @Test
+    public void requestClaimsIndividuallyRequestObjectSigningAlgRS512UserInfoSignedResponseAlgRS512(
+            final String userId, final String userSecret, final String redirectUris, final String redirectUri,
+            final String sectorIdentifierUri, final String keyId, final String dnName, final String keyStoreFile,
+            final String keyStoreSecret, final String clientJwksUri) throws Exception {
+        showTitle("requestClaimsIndividuallyRequestObjectSigningAlgRS512UserInfoSignedResponseAlgRS512");
+
+        List<ResponseType> responseTypes = Arrays.asList(
+                ResponseType.TOKEN,
+                ResponseType.ID_TOKEN);
+
+        // 1. Register client
+        RegisterRequest registerRequest = new RegisterRequest(ApplicationType.WEB, "oxAuth test app",
+                StringUtils.spaceSeparatedToList(redirectUris));
+        registerRequest.setResponseTypes(responseTypes);
+        registerRequest.setJwksUri(clientJwksUri);
+        registerRequest.setSectorIdentifierUri(sectorIdentifierUri);
+        registerRequest.setIdTokenSignedResponseAlg(SignatureAlgorithm.RS512);
+        registerRequest.setRequestObjectSigningAlg(SignatureAlgorithm.RS512);
+        registerRequest.setUserInfoSignedResponseAlg(SignatureAlgorithm.RS512);
+        registerRequest.setClaims(Arrays.asList(
+                JwtClaimName.NAME,
+                JwtClaimName.NICKNAME,
+                JwtClaimName.GIVEN_NAME,
+                JwtClaimName.FAMILY_NAME,
+                JwtClaimName.PICTURE,
+                JwtClaimName.ZONEINFO,
+                JwtClaimName.LOCALE,
+                JwtClaimName.ADDRESS_STREET_ADDRESS,
+                JwtClaimName.ADDRESS_LOCALITY,
+                JwtClaimName.ADDRESS_REGION,
+                JwtClaimName.ADDRESS_POSTAL_CODE,
+                JwtClaimName.ADDRESS_COUNTRY));
+
+        RegisterClient registerClient = new RegisterClient(registrationEndpoint);
+        registerClient.setRequest(registerRequest);
+        RegisterResponse registerResponse = registerClient.exec();
+
+        showClient(registerClient);
+        assertEquals(registerResponse.getStatus(), 200, "Unexpected response code: " + registerResponse.getEntity());
+        assertNotNull(registerResponse.getClientId());
+        assertNotNull(registerResponse.getClientSecret());
+        assertNotNull(registerResponse.getRegistrationAccessToken());
+        assertNotNull(registerResponse.getClientIdIssuedAt());
+        assertNotNull(registerResponse.getClientSecretExpiresAt());
+
+        String clientId = registerResponse.getClientId();
+
+        // 2. Request authorization
+        OxAuthCryptoProvider cryptoProvider = new OxAuthCryptoProvider(keyStoreFile, keyStoreSecret, dnName);
+
+        List<String> scopes = Arrays.asList("openid", "clientinfo");
+        String nonce = UUID.randomUUID().toString();
+        String state = UUID.randomUUID().toString();
+
+        AuthorizationRequest authorizationRequest = new AuthorizationRequest(responseTypes, clientId, scopes, redirectUri, nonce);
+        authorizationRequest.setState(state);
+
+        JwtAuthorizationRequest jwtAuthorizationRequest = new JwtAuthorizationRequest(
+                authorizationRequest, SignatureAlgorithm.RS512, cryptoProvider);
+        jwtAuthorizationRequest.setKeyId(keyId);
+        jwtAuthorizationRequest.addUserInfoClaim(new Claim(JwtClaimName.NAME, ClaimValue.createNull()));
+        jwtAuthorizationRequest.addUserInfoClaim(new Claim(JwtClaimName.NICKNAME, ClaimValue.createEssential(false)));
+        jwtAuthorizationRequest.addUserInfoClaim(new Claim(JwtClaimName.GIVEN_NAME, ClaimValue.createEssential(false)));
+        jwtAuthorizationRequest.addUserInfoClaim(new Claim(JwtClaimName.FAMILY_NAME, ClaimValue.createEssential(false)));
+        jwtAuthorizationRequest.addUserInfoClaim(new Claim(JwtClaimName.EMAIL, ClaimValue.createNull()));
+        jwtAuthorizationRequest.addUserInfoClaim(new Claim(JwtClaimName.EMAIL_VERIFIED, ClaimValue.createNull()));
+        jwtAuthorizationRequest.addUserInfoClaim(new Claim(JwtClaimName.PICTURE, ClaimValue.createEssential(false)));
+        jwtAuthorizationRequest.addUserInfoClaim(new Claim(JwtClaimName.ZONEINFO, ClaimValue.createNull()));
+        jwtAuthorizationRequest.addUserInfoClaim(new Claim(JwtClaimName.LOCALE, ClaimValue.createNull()));
+        jwtAuthorizationRequest.addUserInfoClaim(new Claim(JwtClaimName.ADDRESS_STREET_ADDRESS, ClaimValue.createNull()));
+        jwtAuthorizationRequest.addUserInfoClaim(new Claim(JwtClaimName.ADDRESS_LOCALITY, ClaimValue.createNull()));
+        jwtAuthorizationRequest.addUserInfoClaim(new Claim(JwtClaimName.ADDRESS_REGION, ClaimValue.createNull()));
+        jwtAuthorizationRequest.addUserInfoClaim(new Claim(JwtClaimName.ADDRESS_POSTAL_CODE, ClaimValue.createNull()));
+        jwtAuthorizationRequest.addUserInfoClaim(new Claim(JwtClaimName.ADDRESS_COUNTRY, ClaimValue.createNull()));
+        jwtAuthorizationRequest.addIdTokenClaim(new Claim(JwtClaimName.AUTHENTICATION_TIME, ClaimValue.createNull()));
+        jwtAuthorizationRequest.addIdTokenClaim(new Claim(JwtClaimName.AUTHENTICATION_CONTEXT_CLASS_REFERENCE, ClaimValue.createValueList(new String[]{ACR_VALUE})));
+        jwtAuthorizationRequest.addIdTokenClaim(new Claim(JwtClaimName.NAME, ClaimValue.createEssential(true)));
+        jwtAuthorizationRequest.addIdTokenClaim(new Claim(JwtClaimName.NICKNAME, ClaimValue.createEssential(false)));
+        jwtAuthorizationRequest.addIdTokenClaim(new Claim(JwtClaimName.GIVEN_NAME, ClaimValue.createEssential(false)));
+        jwtAuthorizationRequest.addIdTokenClaim(new Claim(JwtClaimName.FAMILY_NAME, ClaimValue.createEssential(false)));
+        jwtAuthorizationRequest.addIdTokenClaim(new Claim(JwtClaimName.EMAIL, ClaimValue.createNull()));
+        jwtAuthorizationRequest.addIdTokenClaim(new Claim(JwtClaimName.EMAIL_VERIFIED, ClaimValue.createNull()));
+        jwtAuthorizationRequest.getIdTokenMember().setMaxAge(86400);
+        String authJwt = jwtAuthorizationRequest.getEncodedJwt();
+        authorizationRequest.setRequest(authJwt);
+
+        AuthorizationResponse authorizationResponse = authenticateResourceOwnerAndGrantAccess(
+                authorizationEndpoint, authorizationRequest, userId, userSecret);
+
+        assertNotNull(authorizationResponse.getLocation(), "The location is null");
+        assertNotNull(authorizationResponse.getAccessToken(), "The accessToken is null");
+        assertNotNull(authorizationResponse.getTokenType(), "The tokenType is null");
+        assertNotNull(authorizationResponse.getIdToken(), "The idToken is null");
+        assertNotNull(authorizationResponse.getState(), "The state is null");
+
+        String idToken = authorizationResponse.getIdToken();
+        String accessToken = authorizationResponse.getAccessToken();
+
+        // 3. Validate id_token
+        Jwt jwt = Jwt.parse(idToken);
+        assertNotNull(jwt.getHeader().getClaimAsString(JwtHeaderName.TYPE));
+        assertNotNull(jwt.getHeader().getClaimAsString(JwtHeaderName.ALGORITHM));
+        assertNotNull(jwt.getClaims().getClaimAsString(JwtClaimName.ISSUER));
+        assertNotNull(jwt.getClaims().getClaimAsString(JwtClaimName.AUDIENCE));
+        assertNotNull(jwt.getClaims().getClaimAsString(JwtClaimName.EXPIRATION_TIME));
+        assertNotNull(jwt.getClaims().getClaimAsString(JwtClaimName.ISSUED_AT));
+        assertNotNull(jwt.getClaims().getClaimAsString(JwtClaimName.SUBJECT_IDENTIFIER));
+        assertNotNull(jwt.getClaims().getClaimAsString(JwtClaimName.ACCESS_TOKEN_HASH));
+        assertNotNull(jwt.getClaims().getClaimAsString(JwtClaimName.AUTHENTICATION_TIME));
+        assertNotNull(jwt.getClaims().getClaimAsString(JwtClaimName.NAME));
+        assertNotNull(jwt.getClaims().getClaimAsString(JwtClaimName.NICKNAME));
+        assertNotNull(jwt.getClaims().getClaimAsString(JwtClaimName.GIVEN_NAME));
+        assertNotNull(jwt.getClaims().getClaimAsString(JwtClaimName.FAMILY_NAME));
+        assertNull(jwt.getClaims().getClaimAsString(JwtClaimName.EMAIL));
+        assertNull(jwt.getClaims().getClaimAsString(JwtClaimName.EMAIL_VERIFIED));
+
+        RSAPublicKey publicKey = JwkClient.getRSAPublicKey(
+                jwksUri,
+                jwt.getHeader().getClaimAsString(JwtHeaderName.KEY_ID));
+        RSASigner rsaSigner = new RSASigner(SignatureAlgorithm.RS512, publicKey);
+
+        assertTrue(rsaSigner.validate(jwt));
+
+        // 4. Request user info
+        UserInfoClient userInfoClient = new UserInfoClient(userInfoEndpoint);
+        userInfoClient.setJwksUri(jwksUri);
+        UserInfoResponse userInfoResponse = userInfoClient.execUserInfo(accessToken);
+
+        showClient(userInfoClient);
+        assertEquals(userInfoResponse.getStatus(), 200, "Unexpected response code: " + userInfoResponse.getStatus());
+        assertNotNull(userInfoResponse.getClaim(JwtClaimName.SUBJECT_IDENTIFIER));
+        assertNotNull(userInfoResponse.getClaim(JwtClaimName.NAME));
+        assertNotNull(userInfoResponse.getClaim(JwtClaimName.NICKNAME));
+        assertNotNull(userInfoResponse.getClaim(JwtClaimName.GIVEN_NAME));
+        assertNotNull(userInfoResponse.getClaim(JwtClaimName.FAMILY_NAME));
+        assertNull(userInfoResponse.getClaim(JwtClaimName.EMAIL));
+        assertNull(userInfoResponse.getClaim(JwtClaimName.EMAIL_VERIFIED));
+        assertNotNull(userInfoResponse.getClaim(JwtClaimName.PICTURE));
+        assertNotNull(userInfoResponse.getClaim(JwtClaimName.ZONEINFO));
+        assertNotNull(userInfoResponse.getClaim(JwtClaimName.LOCALE));
+        assertNotNull(userInfoResponse.getClaim(JwtClaimName.ADDRESS_STREET_ADDRESS));
+        assertNotNull(userInfoResponse.getClaim(JwtClaimName.ADDRESS_LOCALITY));
+        assertNotNull(userInfoResponse.getClaim(JwtClaimName.ADDRESS_REGION));
+        assertNotNull(userInfoResponse.getClaim(JwtClaimName.ADDRESS_COUNTRY));
+    }
+
+    @Parameters({"userId", "userSecret", "redirectUris", "redirectUri", "sectorIdentifierUri", "ES256_keyId",
+            "dnName", "keyStoreFile", "keyStoreSecret", "clientJwksUri"})
+    @Test
+    public void requestClaimsIndividuallyRequestObjectSigningAlgES256UserInfoSignedResponseAlgES256(
+            final String userId, final String userSecret, final String redirectUris, final String redirectUri,
+            final String sectorIdentifierUri, final String keyId, final String dnName, final String keyStoreFile,
+            final String keyStoreSecret, final String clientJwksUri) throws Exception {
+        showTitle("requestClaimsIndividuallyRequestObjectSigningAlgES256UserInfoSignedResponseAlgES256");
+
+        List<ResponseType> responseTypes = Arrays.asList(
+                ResponseType.TOKEN,
+                ResponseType.ID_TOKEN);
+
+        // 1. Register client
+        RegisterRequest registerRequest = new RegisterRequest(ApplicationType.WEB, "oxAuth test app",
+                StringUtils.spaceSeparatedToList(redirectUris));
+        registerRequest.setResponseTypes(responseTypes);
+        registerRequest.setJwksUri(clientJwksUri);
+        registerRequest.setSectorIdentifierUri(sectorIdentifierUri);
+        registerRequest.setIdTokenSignedResponseAlg(SignatureAlgorithm.ES256);
+        registerRequest.setRequestObjectSigningAlg(SignatureAlgorithm.ES256);
+        registerRequest.setUserInfoSignedResponseAlg(SignatureAlgorithm.ES256);
+        registerRequest.setClaims(Arrays.asList(
+                JwtClaimName.NAME,
+                JwtClaimName.NICKNAME,
+                JwtClaimName.GIVEN_NAME,
+                JwtClaimName.FAMILY_NAME,
+                JwtClaimName.PICTURE,
+                JwtClaimName.ZONEINFO,
+                JwtClaimName.LOCALE,
+                JwtClaimName.ADDRESS_STREET_ADDRESS,
+                JwtClaimName.ADDRESS_LOCALITY,
+                JwtClaimName.ADDRESS_REGION,
+                JwtClaimName.ADDRESS_POSTAL_CODE,
+                JwtClaimName.ADDRESS_COUNTRY));
+
+        RegisterClient registerClient = new RegisterClient(registrationEndpoint);
+        registerClient.setRequest(registerRequest);
+        RegisterResponse registerResponse = registerClient.exec();
+
+        showClient(registerClient);
+        assertEquals(registerResponse.getStatus(), 200, "Unexpected response code: " + registerResponse.getEntity());
+        assertNotNull(registerResponse.getClientId());
+        assertNotNull(registerResponse.getClientSecret());
+        assertNotNull(registerResponse.getRegistrationAccessToken());
+        assertNotNull(registerResponse.getClientIdIssuedAt());
+        assertNotNull(registerResponse.getClientSecretExpiresAt());
+
+        String clientId = registerResponse.getClientId();
+
+        // 2. Request authorization
+        OxAuthCryptoProvider cryptoProvider = new OxAuthCryptoProvider(keyStoreFile, keyStoreSecret, dnName);
+
+        List<String> scopes = Arrays.asList("openid", "clientinfo");
+        String nonce = UUID.randomUUID().toString();
+        String state = UUID.randomUUID().toString();
+
+        AuthorizationRequest authorizationRequest = new AuthorizationRequest(responseTypes, clientId, scopes, redirectUri, nonce);
+        authorizationRequest.setState(state);
+
+        JwtAuthorizationRequest jwtAuthorizationRequest = new JwtAuthorizationRequest(
+                authorizationRequest, SignatureAlgorithm.ES256, cryptoProvider);
+        jwtAuthorizationRequest.setKeyId(keyId);
+        jwtAuthorizationRequest.addUserInfoClaim(new Claim(JwtClaimName.NAME, ClaimValue.createNull()));
+        jwtAuthorizationRequest.addUserInfoClaim(new Claim(JwtClaimName.NICKNAME, ClaimValue.createEssential(false)));
+        jwtAuthorizationRequest.addUserInfoClaim(new Claim(JwtClaimName.GIVEN_NAME, ClaimValue.createEssential(false)));
+        jwtAuthorizationRequest.addUserInfoClaim(new Claim(JwtClaimName.FAMILY_NAME, ClaimValue.createEssential(false)));
+        jwtAuthorizationRequest.addUserInfoClaim(new Claim(JwtClaimName.EMAIL, ClaimValue.createNull()));
+        jwtAuthorizationRequest.addUserInfoClaim(new Claim(JwtClaimName.EMAIL_VERIFIED, ClaimValue.createNull()));
+        jwtAuthorizationRequest.addUserInfoClaim(new Claim(JwtClaimName.PICTURE, ClaimValue.createEssential(false)));
+        jwtAuthorizationRequest.addUserInfoClaim(new Claim(JwtClaimName.ZONEINFO, ClaimValue.createNull()));
+        jwtAuthorizationRequest.addUserInfoClaim(new Claim(JwtClaimName.LOCALE, ClaimValue.createNull()));
+        jwtAuthorizationRequest.addUserInfoClaim(new Claim(JwtClaimName.ADDRESS_STREET_ADDRESS, ClaimValue.createNull()));
+        jwtAuthorizationRequest.addUserInfoClaim(new Claim(JwtClaimName.ADDRESS_LOCALITY, ClaimValue.createNull()));
+        jwtAuthorizationRequest.addUserInfoClaim(new Claim(JwtClaimName.ADDRESS_REGION, ClaimValue.createNull()));
+        jwtAuthorizationRequest.addUserInfoClaim(new Claim(JwtClaimName.ADDRESS_POSTAL_CODE, ClaimValue.createNull()));
+        jwtAuthorizationRequest.addUserInfoClaim(new Claim(JwtClaimName.ADDRESS_COUNTRY, ClaimValue.createNull()));
+        jwtAuthorizationRequest.addIdTokenClaim(new Claim(JwtClaimName.AUTHENTICATION_TIME, ClaimValue.createNull()));
+        jwtAuthorizationRequest.addIdTokenClaim(new Claim(JwtClaimName.AUTHENTICATION_CONTEXT_CLASS_REFERENCE, ClaimValue.createValueList(new String[]{ACR_VALUE})));
+        jwtAuthorizationRequest.addIdTokenClaim(new Claim(JwtClaimName.NAME, ClaimValue.createEssential(true)));
+        jwtAuthorizationRequest.addIdTokenClaim(new Claim(JwtClaimName.NICKNAME, ClaimValue.createEssential(false)));
+        jwtAuthorizationRequest.addIdTokenClaim(new Claim(JwtClaimName.GIVEN_NAME, ClaimValue.createEssential(false)));
+        jwtAuthorizationRequest.addIdTokenClaim(new Claim(JwtClaimName.FAMILY_NAME, ClaimValue.createEssential(false)));
+        jwtAuthorizationRequest.addIdTokenClaim(new Claim(JwtClaimName.EMAIL, ClaimValue.createNull()));
+        jwtAuthorizationRequest.addIdTokenClaim(new Claim(JwtClaimName.EMAIL_VERIFIED, ClaimValue.createNull()));
+        jwtAuthorizationRequest.getIdTokenMember().setMaxAge(86400);
+        String authJwt = jwtAuthorizationRequest.getEncodedJwt();
+        authorizationRequest.setRequest(authJwt);
+
+        AuthorizationResponse authorizationResponse = authenticateResourceOwnerAndGrantAccess(
+                authorizationEndpoint, authorizationRequest, userId, userSecret);
+
+        assertNotNull(authorizationResponse.getLocation(), "The location is null");
+        assertNotNull(authorizationResponse.getAccessToken(), "The accessToken is null");
+        assertNotNull(authorizationResponse.getTokenType(), "The tokenType is null");
+        assertNotNull(authorizationResponse.getIdToken(), "The idToken is null");
+        assertNotNull(authorizationResponse.getState(), "The state is null");
+
+        String idToken = authorizationResponse.getIdToken();
+        String accessToken = authorizationResponse.getAccessToken();
+
+        // 3. Validate id_token
+        Jwt jwt = Jwt.parse(idToken);
+        assertNotNull(jwt.getHeader().getClaimAsString(JwtHeaderName.TYPE));
+        assertNotNull(jwt.getHeader().getClaimAsString(JwtHeaderName.ALGORITHM));
+        assertNotNull(jwt.getClaims().getClaimAsString(JwtClaimName.ISSUER));
+        assertNotNull(jwt.getClaims().getClaimAsString(JwtClaimName.AUDIENCE));
+        assertNotNull(jwt.getClaims().getClaimAsString(JwtClaimName.EXPIRATION_TIME));
+        assertNotNull(jwt.getClaims().getClaimAsString(JwtClaimName.ISSUED_AT));
+        assertNotNull(jwt.getClaims().getClaimAsString(JwtClaimName.SUBJECT_IDENTIFIER));
+        assertNotNull(jwt.getClaims().getClaimAsString(JwtClaimName.ACCESS_TOKEN_HASH));
+        assertNotNull(jwt.getClaims().getClaimAsString(JwtClaimName.AUTHENTICATION_TIME));
+        assertNotNull(jwt.getClaims().getClaimAsString(JwtClaimName.NAME));
+        assertNotNull(jwt.getClaims().getClaimAsString(JwtClaimName.NICKNAME));
+        assertNotNull(jwt.getClaims().getClaimAsString(JwtClaimName.GIVEN_NAME));
+        assertNotNull(jwt.getClaims().getClaimAsString(JwtClaimName.FAMILY_NAME));
+        assertNull(jwt.getClaims().getClaimAsString(JwtClaimName.EMAIL));
+        assertNull(jwt.getClaims().getClaimAsString(JwtClaimName.EMAIL_VERIFIED));
+
+        ECDSAPublicKey publicKey = JwkClient.getECDSAPublicKey(
+                jwksUri,
+                jwt.getHeader().getClaimAsString(JwtHeaderName.KEY_ID));
+        ECDSASigner ecdsaSigner = new ECDSASigner(SignatureAlgorithm.ES256, publicKey);
+
+        assertTrue(ecdsaSigner.validate(jwt));
+
+        // 4. Request user info
+        UserInfoClient userInfoClient = new UserInfoClient(userInfoEndpoint);
+        userInfoClient.setJwksUri(jwksUri);
+        UserInfoResponse userInfoResponse = userInfoClient.execUserInfo(accessToken);
+
+        showClient(userInfoClient);
+        assertEquals(userInfoResponse.getStatus(), 200, "Unexpected response code: " + userInfoResponse.getStatus());
+        assertNotNull(userInfoResponse.getClaim(JwtClaimName.SUBJECT_IDENTIFIER));
+        assertNotNull(userInfoResponse.getClaim(JwtClaimName.NAME));
+        assertNotNull(userInfoResponse.getClaim(JwtClaimName.NICKNAME));
+        assertNotNull(userInfoResponse.getClaim(JwtClaimName.GIVEN_NAME));
+        assertNotNull(userInfoResponse.getClaim(JwtClaimName.FAMILY_NAME));
+        assertNull(userInfoResponse.getClaim(JwtClaimName.EMAIL));
+        assertNull(userInfoResponse.getClaim(JwtClaimName.EMAIL_VERIFIED));
+        assertNotNull(userInfoResponse.getClaim(JwtClaimName.PICTURE));
+        assertNotNull(userInfoResponse.getClaim(JwtClaimName.ZONEINFO));
+        assertNotNull(userInfoResponse.getClaim(JwtClaimName.LOCALE));
+        assertNotNull(userInfoResponse.getClaim(JwtClaimName.ADDRESS_STREET_ADDRESS));
+        assertNotNull(userInfoResponse.getClaim(JwtClaimName.ADDRESS_LOCALITY));
+        assertNotNull(userInfoResponse.getClaim(JwtClaimName.ADDRESS_REGION));
+        assertNotNull(userInfoResponse.getClaim(JwtClaimName.ADDRESS_COUNTRY));
+    }
+
+    @Parameters({"userId", "userSecret", "redirectUris", "redirectUri", "sectorIdentifierUri", "ES384_keyId",
+            "dnName", "keyStoreFile", "keyStoreSecret", "clientJwksUri"})
+    @Test
+    public void requestClaimsIndividuallyRequestObjectSigningAlgES384UserInfoSignedResponseAlgES384(
+            final String userId, final String userSecret, final String redirectUris, final String redirectUri,
+            final String sectorIdentifierUri, final String keyId, final String dnName, final String keyStoreFile,
+            final String keyStoreSecret, final String clientJwksUri) throws Exception {
+        showTitle("requestClaimsIndividuallyRequestObjectSigningAlgES384UserInfoSignedResponseAlgES384");
+
+        List<ResponseType> responseTypes = Arrays.asList(
+                ResponseType.TOKEN,
+                ResponseType.ID_TOKEN);
+
+        // 1. Register client
+        RegisterRequest registerRequest = new RegisterRequest(ApplicationType.WEB, "oxAuth test app",
+                StringUtils.spaceSeparatedToList(redirectUris));
+        registerRequest.setResponseTypes(responseTypes);
+        registerRequest.setJwksUri(clientJwksUri);
+        registerRequest.setSectorIdentifierUri(sectorIdentifierUri);
+        registerRequest.setIdTokenSignedResponseAlg(SignatureAlgorithm.ES384);
+        registerRequest.setRequestObjectSigningAlg(SignatureAlgorithm.ES384);
+        registerRequest.setUserInfoSignedResponseAlg(SignatureAlgorithm.ES384);
+        registerRequest.setClaims(Arrays.asList(
+                JwtClaimName.NAME,
+                JwtClaimName.NICKNAME,
+                JwtClaimName.GIVEN_NAME,
+                JwtClaimName.FAMILY_NAME,
+                JwtClaimName.PICTURE,
+                JwtClaimName.ZONEINFO,
+                JwtClaimName.LOCALE,
+                JwtClaimName.ADDRESS_STREET_ADDRESS,
+                JwtClaimName.ADDRESS_LOCALITY,
+                JwtClaimName.ADDRESS_REGION,
+                JwtClaimName.ADDRESS_POSTAL_CODE,
+                JwtClaimName.ADDRESS_COUNTRY));
+
+        RegisterClient registerClient = new RegisterClient(registrationEndpoint);
+        registerClient.setRequest(registerRequest);
+        RegisterResponse registerResponse = registerClient.exec();
+
+        showClient(registerClient);
+        assertEquals(registerResponse.getStatus(), 200, "Unexpected response code: " + registerResponse.getEntity());
+        assertNotNull(registerResponse.getClientId());
+        assertNotNull(registerResponse.getClientSecret());
+        assertNotNull(registerResponse.getRegistrationAccessToken());
+        assertNotNull(registerResponse.getClientIdIssuedAt());
+        assertNotNull(registerResponse.getClientSecretExpiresAt());
+
+        String clientId = registerResponse.getClientId();
+
+        // 2. Request authorization
+        OxAuthCryptoProvider cryptoProvider = new OxAuthCryptoProvider(keyStoreFile, keyStoreSecret, dnName);
+
+        List<String> scopes = Arrays.asList("openid", "clientinfo");
+        String nonce = UUID.randomUUID().toString();
+        String state = UUID.randomUUID().toString();
+
+        AuthorizationRequest authorizationRequest = new AuthorizationRequest(responseTypes, clientId, scopes, redirectUri, nonce);
+        authorizationRequest.setState(state);
+
+        JwtAuthorizationRequest jwtAuthorizationRequest = new JwtAuthorizationRequest(
+                authorizationRequest, SignatureAlgorithm.ES384, cryptoProvider);
+        jwtAuthorizationRequest.setKeyId(keyId);
+        jwtAuthorizationRequest.addUserInfoClaim(new Claim(JwtClaimName.NAME, ClaimValue.createNull()));
+        jwtAuthorizationRequest.addUserInfoClaim(new Claim(JwtClaimName.NICKNAME, ClaimValue.createEssential(false)));
+        jwtAuthorizationRequest.addUserInfoClaim(new Claim(JwtClaimName.GIVEN_NAME, ClaimValue.createEssential(false)));
+        jwtAuthorizationRequest.addUserInfoClaim(new Claim(JwtClaimName.FAMILY_NAME, ClaimValue.createEssential(false)));
+        jwtAuthorizationRequest.addUserInfoClaim(new Claim(JwtClaimName.EMAIL, ClaimValue.createNull()));
+        jwtAuthorizationRequest.addUserInfoClaim(new Claim(JwtClaimName.EMAIL_VERIFIED, ClaimValue.createNull()));
+        jwtAuthorizationRequest.addUserInfoClaim(new Claim(JwtClaimName.PICTURE, ClaimValue.createEssential(false)));
+        jwtAuthorizationRequest.addUserInfoClaim(new Claim(JwtClaimName.ZONEINFO, ClaimValue.createNull()));
+        jwtAuthorizationRequest.addUserInfoClaim(new Claim(JwtClaimName.LOCALE, ClaimValue.createNull()));
+        jwtAuthorizationRequest.addUserInfoClaim(new Claim(JwtClaimName.ADDRESS_STREET_ADDRESS, ClaimValue.createNull()));
+        jwtAuthorizationRequest.addUserInfoClaim(new Claim(JwtClaimName.ADDRESS_LOCALITY, ClaimValue.createNull()));
+        jwtAuthorizationRequest.addUserInfoClaim(new Claim(JwtClaimName.ADDRESS_REGION, ClaimValue.createNull()));
+        jwtAuthorizationRequest.addUserInfoClaim(new Claim(JwtClaimName.ADDRESS_POSTAL_CODE, ClaimValue.createNull()));
+        jwtAuthorizationRequest.addUserInfoClaim(new Claim(JwtClaimName.ADDRESS_COUNTRY, ClaimValue.createNull()));
+        jwtAuthorizationRequest.addIdTokenClaim(new Claim(JwtClaimName.AUTHENTICATION_TIME, ClaimValue.createNull()));
+        jwtAuthorizationRequest.addIdTokenClaim(new Claim(JwtClaimName.AUTHENTICATION_CONTEXT_CLASS_REFERENCE, ClaimValue.createValueList(new String[]{ACR_VALUE})));
+        jwtAuthorizationRequest.addIdTokenClaim(new Claim(JwtClaimName.NAME, ClaimValue.createEssential(true)));
+        jwtAuthorizationRequest.addIdTokenClaim(new Claim(JwtClaimName.NICKNAME, ClaimValue.createEssential(false)));
+        jwtAuthorizationRequest.addIdTokenClaim(new Claim(JwtClaimName.GIVEN_NAME, ClaimValue.createEssential(false)));
+        jwtAuthorizationRequest.addIdTokenClaim(new Claim(JwtClaimName.FAMILY_NAME, ClaimValue.createEssential(false)));
+        jwtAuthorizationRequest.addIdTokenClaim(new Claim(JwtClaimName.EMAIL, ClaimValue.createNull()));
+        jwtAuthorizationRequest.addIdTokenClaim(new Claim(JwtClaimName.EMAIL_VERIFIED, ClaimValue.createNull()));
+        jwtAuthorizationRequest.getIdTokenMember().setMaxAge(86400);
+        String authJwt = jwtAuthorizationRequest.getEncodedJwt();
+        authorizationRequest.setRequest(authJwt);
+
+        AuthorizationResponse authorizationResponse = authenticateResourceOwnerAndGrantAccess(
+                authorizationEndpoint, authorizationRequest, userId, userSecret);
+
+        assertNotNull(authorizationResponse.getLocation(), "The location is null");
+        assertNotNull(authorizationResponse.getAccessToken(), "The accessToken is null");
+        assertNotNull(authorizationResponse.getTokenType(), "The tokenType is null");
+        assertNotNull(authorizationResponse.getIdToken(), "The idToken is null");
+        assertNotNull(authorizationResponse.getState(), "The state is null");
+
+        String idToken = authorizationResponse.getIdToken();
+        String accessToken = authorizationResponse.getAccessToken();
+
+        // 3. Validate id_token
+        Jwt jwt = Jwt.parse(idToken);
+        assertNotNull(jwt.getHeader().getClaimAsString(JwtHeaderName.TYPE));
+        assertNotNull(jwt.getHeader().getClaimAsString(JwtHeaderName.ALGORITHM));
+        assertNotNull(jwt.getClaims().getClaimAsString(JwtClaimName.ISSUER));
+        assertNotNull(jwt.getClaims().getClaimAsString(JwtClaimName.AUDIENCE));
+        assertNotNull(jwt.getClaims().getClaimAsString(JwtClaimName.EXPIRATION_TIME));
+        assertNotNull(jwt.getClaims().getClaimAsString(JwtClaimName.ISSUED_AT));
+        assertNotNull(jwt.getClaims().getClaimAsString(JwtClaimName.SUBJECT_IDENTIFIER));
+        assertNotNull(jwt.getClaims().getClaimAsString(JwtClaimName.ACCESS_TOKEN_HASH));
+        assertNotNull(jwt.getClaims().getClaimAsString(JwtClaimName.AUTHENTICATION_TIME));
+        assertNotNull(jwt.getClaims().getClaimAsString(JwtClaimName.NAME));
+        assertNotNull(jwt.getClaims().getClaimAsString(JwtClaimName.NICKNAME));
+        assertNotNull(jwt.getClaims().getClaimAsString(JwtClaimName.GIVEN_NAME));
+        assertNotNull(jwt.getClaims().getClaimAsString(JwtClaimName.FAMILY_NAME));
+        assertNull(jwt.getClaims().getClaimAsString(JwtClaimName.EMAIL));
+        assertNull(jwt.getClaims().getClaimAsString(JwtClaimName.EMAIL_VERIFIED));
+
+        ECDSAPublicKey publicKey = JwkClient.getECDSAPublicKey(
+                jwksUri,
+                jwt.getHeader().getClaimAsString(JwtHeaderName.KEY_ID));
+        ECDSASigner ecdsaSigner = new ECDSASigner(SignatureAlgorithm.ES384, publicKey);
+
+        assertTrue(ecdsaSigner.validate(jwt));
+
+        // 4. Request user info
+        UserInfoClient userInfoClient = new UserInfoClient(userInfoEndpoint);
+        userInfoClient.setJwksUri(jwksUri);
+        UserInfoResponse userInfoResponse = userInfoClient.execUserInfo(accessToken);
+
+        showClient(userInfoClient);
+        assertEquals(userInfoResponse.getStatus(), 200, "Unexpected response code: " + userInfoResponse.getStatus());
+        assertNotNull(userInfoResponse.getClaim(JwtClaimName.SUBJECT_IDENTIFIER));
+        assertNotNull(userInfoResponse.getClaim(JwtClaimName.NAME));
+        assertNotNull(userInfoResponse.getClaim(JwtClaimName.NICKNAME));
+        assertNotNull(userInfoResponse.getClaim(JwtClaimName.GIVEN_NAME));
+        assertNotNull(userInfoResponse.getClaim(JwtClaimName.FAMILY_NAME));
+        assertNull(userInfoResponse.getClaim(JwtClaimName.EMAIL));
+        assertNull(userInfoResponse.getClaim(JwtClaimName.EMAIL_VERIFIED));
+        assertNotNull(userInfoResponse.getClaim(JwtClaimName.PICTURE));
+        assertNotNull(userInfoResponse.getClaim(JwtClaimName.ZONEINFO));
+        assertNotNull(userInfoResponse.getClaim(JwtClaimName.LOCALE));
+        assertNotNull(userInfoResponse.getClaim(JwtClaimName.ADDRESS_STREET_ADDRESS));
+        assertNotNull(userInfoResponse.getClaim(JwtClaimName.ADDRESS_LOCALITY));
+        assertNotNull(userInfoResponse.getClaim(JwtClaimName.ADDRESS_REGION));
+        assertNotNull(userInfoResponse.getClaim(JwtClaimName.ADDRESS_COUNTRY));
+    }
+
+    @Parameters({"userId", "userSecret", "redirectUris", "redirectUri", "sectorIdentifierUri", "ES512_keyId",
+            "dnName", "keyStoreFile", "keyStoreSecret", "clientJwksUri"})
+    @Test
+    public void requestClaimsIndividuallyRequestObjectSigningAlgES512UserInfoSignedResponseAlgES512(
+            final String userId, final String userSecret, final String redirectUris, final String redirectUri,
+            final String sectorIdentifierUri, final String keyId, final String dnName, final String keyStoreFile,
+            final String keyStoreSecret, final String clientJwksUri) throws Exception {
+        showTitle("requestClaimsIndividuallyRequestObjectSigningAlgES512UserInfoSignedResponseAlgES512");
+
+        List<ResponseType> responseTypes = Arrays.asList(
+                ResponseType.TOKEN,
+                ResponseType.ID_TOKEN);
+
+        // 1. Register client
+        RegisterRequest registerRequest = new RegisterRequest(ApplicationType.WEB, "oxAuth test app",
+                StringUtils.spaceSeparatedToList(redirectUris));
+        registerRequest.setResponseTypes(responseTypes);
+        registerRequest.setJwksUri(clientJwksUri);
+        registerRequest.setSectorIdentifierUri(sectorIdentifierUri);
+        registerRequest.setIdTokenSignedResponseAlg(SignatureAlgorithm.ES512);
+        registerRequest.setRequestObjectSigningAlg(SignatureAlgorithm.ES512);
+        registerRequest.setUserInfoSignedResponseAlg(SignatureAlgorithm.ES512);
+        registerRequest.setClaims(Arrays.asList(
+                JwtClaimName.NAME,
+                JwtClaimName.NICKNAME,
+                JwtClaimName.GIVEN_NAME,
+                JwtClaimName.FAMILY_NAME,
+                JwtClaimName.PICTURE,
+                JwtClaimName.ZONEINFO,
+                JwtClaimName.LOCALE,
+                JwtClaimName.ADDRESS_STREET_ADDRESS,
+                JwtClaimName.ADDRESS_LOCALITY,
+                JwtClaimName.ADDRESS_REGION,
+                JwtClaimName.ADDRESS_POSTAL_CODE,
+                JwtClaimName.ADDRESS_COUNTRY));
+
+        RegisterClient registerClient = new RegisterClient(registrationEndpoint);
+        registerClient.setRequest(registerRequest);
+        RegisterResponse registerResponse = registerClient.exec();
+
+        showClient(registerClient);
+        assertEquals(registerResponse.getStatus(), 200, "Unexpected response code: " + registerResponse.getEntity());
+        assertNotNull(registerResponse.getClientId());
+        assertNotNull(registerResponse.getClientSecret());
+        assertNotNull(registerResponse.getRegistrationAccessToken());
+        assertNotNull(registerResponse.getClientIdIssuedAt());
+        assertNotNull(registerResponse.getClientSecretExpiresAt());
+
+        String clientId = registerResponse.getClientId();
+
+        // 2. Request authorization
+        OxAuthCryptoProvider cryptoProvider = new OxAuthCryptoProvider(keyStoreFile, keyStoreSecret, dnName);
+
+        List<String> scopes = Arrays.asList("openid", "clientinfo");
+        String nonce = UUID.randomUUID().toString();
+        String state = UUID.randomUUID().toString();
+
+        AuthorizationRequest authorizationRequest = new AuthorizationRequest(responseTypes, clientId, scopes, redirectUri, nonce);
+        authorizationRequest.setState(state);
+
+        JwtAuthorizationRequest jwtAuthorizationRequest = new JwtAuthorizationRequest(
+                authorizationRequest, SignatureAlgorithm.ES512, cryptoProvider);
+        jwtAuthorizationRequest.setKeyId(keyId);
+        jwtAuthorizationRequest.addUserInfoClaim(new Claim(JwtClaimName.NAME, ClaimValue.createNull()));
+        jwtAuthorizationRequest.addUserInfoClaim(new Claim(JwtClaimName.NICKNAME, ClaimValue.createEssential(false)));
+        jwtAuthorizationRequest.addUserInfoClaim(new Claim(JwtClaimName.GIVEN_NAME, ClaimValue.createEssential(false)));
+        jwtAuthorizationRequest.addUserInfoClaim(new Claim(JwtClaimName.FAMILY_NAME, ClaimValue.createEssential(false)));
+        jwtAuthorizationRequest.addUserInfoClaim(new Claim(JwtClaimName.EMAIL, ClaimValue.createNull()));
+        jwtAuthorizationRequest.addUserInfoClaim(new Claim(JwtClaimName.EMAIL_VERIFIED, ClaimValue.createNull()));
+        jwtAuthorizationRequest.addUserInfoClaim(new Claim(JwtClaimName.PICTURE, ClaimValue.createEssential(false)));
+        jwtAuthorizationRequest.addUserInfoClaim(new Claim(JwtClaimName.ZONEINFO, ClaimValue.createNull()));
+        jwtAuthorizationRequest.addUserInfoClaim(new Claim(JwtClaimName.LOCALE, ClaimValue.createNull()));
+        jwtAuthorizationRequest.addUserInfoClaim(new Claim(JwtClaimName.ADDRESS_STREET_ADDRESS, ClaimValue.createNull()));
+        jwtAuthorizationRequest.addUserInfoClaim(new Claim(JwtClaimName.ADDRESS_LOCALITY, ClaimValue.createNull()));
+        jwtAuthorizationRequest.addUserInfoClaim(new Claim(JwtClaimName.ADDRESS_REGION, ClaimValue.createNull()));
+        jwtAuthorizationRequest.addUserInfoClaim(new Claim(JwtClaimName.ADDRESS_POSTAL_CODE, ClaimValue.createNull()));
+        jwtAuthorizationRequest.addUserInfoClaim(new Claim(JwtClaimName.ADDRESS_COUNTRY, ClaimValue.createNull()));
+        jwtAuthorizationRequest.addIdTokenClaim(new Claim(JwtClaimName.AUTHENTICATION_TIME, ClaimValue.createNull()));
+        jwtAuthorizationRequest.addIdTokenClaim(new Claim(JwtClaimName.AUTHENTICATION_CONTEXT_CLASS_REFERENCE, ClaimValue.createValueList(new String[]{ACR_VALUE})));
+        jwtAuthorizationRequest.addIdTokenClaim(new Claim(JwtClaimName.NAME, ClaimValue.createEssential(true)));
+        jwtAuthorizationRequest.addIdTokenClaim(new Claim(JwtClaimName.NICKNAME, ClaimValue.createEssential(false)));
+        jwtAuthorizationRequest.addIdTokenClaim(new Claim(JwtClaimName.GIVEN_NAME, ClaimValue.createEssential(false)));
+        jwtAuthorizationRequest.addIdTokenClaim(new Claim(JwtClaimName.FAMILY_NAME, ClaimValue.createEssential(false)));
+        jwtAuthorizationRequest.addIdTokenClaim(new Claim(JwtClaimName.EMAIL, ClaimValue.createNull()));
+        jwtAuthorizationRequest.addIdTokenClaim(new Claim(JwtClaimName.EMAIL_VERIFIED, ClaimValue.createNull()));
+        jwtAuthorizationRequest.getIdTokenMember().setMaxAge(86400);
+        String authJwt = jwtAuthorizationRequest.getEncodedJwt();
+        authorizationRequest.setRequest(authJwt);
+
+        AuthorizationResponse authorizationResponse = authenticateResourceOwnerAndGrantAccess(
+                authorizationEndpoint, authorizationRequest, userId, userSecret);
+
+        assertNotNull(authorizationResponse.getLocation(), "The location is null");
+        assertNotNull(authorizationResponse.getAccessToken(), "The accessToken is null");
+        assertNotNull(authorizationResponse.getTokenType(), "The tokenType is null");
+        assertNotNull(authorizationResponse.getIdToken(), "The idToken is null");
+        assertNotNull(authorizationResponse.getState(), "The state is null");
+
+        String idToken = authorizationResponse.getIdToken();
+        String accessToken = authorizationResponse.getAccessToken();
+
+        // 3. Validate id_token
+        Jwt jwt = Jwt.parse(idToken);
+        assertNotNull(jwt.getHeader().getClaimAsString(JwtHeaderName.TYPE));
+        assertNotNull(jwt.getHeader().getClaimAsString(JwtHeaderName.ALGORITHM));
+        assertNotNull(jwt.getClaims().getClaimAsString(JwtClaimName.ISSUER));
+        assertNotNull(jwt.getClaims().getClaimAsString(JwtClaimName.AUDIENCE));
+        assertNotNull(jwt.getClaims().getClaimAsString(JwtClaimName.EXPIRATION_TIME));
+        assertNotNull(jwt.getClaims().getClaimAsString(JwtClaimName.ISSUED_AT));
+        assertNotNull(jwt.getClaims().getClaimAsString(JwtClaimName.SUBJECT_IDENTIFIER));
+        assertNotNull(jwt.getClaims().getClaimAsString(JwtClaimName.ACCESS_TOKEN_HASH));
+        assertNotNull(jwt.getClaims().getClaimAsString(JwtClaimName.AUTHENTICATION_TIME));
+        assertNotNull(jwt.getClaims().getClaimAsString(JwtClaimName.NAME));
+        assertNotNull(jwt.getClaims().getClaimAsString(JwtClaimName.NICKNAME));
+        assertNotNull(jwt.getClaims().getClaimAsString(JwtClaimName.GIVEN_NAME));
+        assertNotNull(jwt.getClaims().getClaimAsString(JwtClaimName.FAMILY_NAME));
+        assertNull(jwt.getClaims().getClaimAsString(JwtClaimName.EMAIL));
+        assertNull(jwt.getClaims().getClaimAsString(JwtClaimName.EMAIL_VERIFIED));
+
+        ECDSAPublicKey publicKey = JwkClient.getECDSAPublicKey(
+                jwksUri,
+                jwt.getHeader().getClaimAsString(JwtHeaderName.KEY_ID));
+        ECDSASigner ecdsaSigner = new ECDSASigner(SignatureAlgorithm.ES512, publicKey);
+
+        assertTrue(ecdsaSigner.validate(jwt));
+
+        // 4. Request user info
+        UserInfoClient userInfoClient = new UserInfoClient(userInfoEndpoint);
+        userInfoClient.setJwksUri(jwksUri);
+        UserInfoResponse userInfoResponse = userInfoClient.execUserInfo(accessToken);
+
+        showClient(userInfoClient);
+        assertEquals(userInfoResponse.getStatus(), 200, "Unexpected response code: " + userInfoResponse.getStatus());
+        assertNotNull(userInfoResponse.getClaim(JwtClaimName.SUBJECT_IDENTIFIER));
+        assertNotNull(userInfoResponse.getClaim(JwtClaimName.NAME));
+        assertNotNull(userInfoResponse.getClaim(JwtClaimName.NICKNAME));
+        assertNotNull(userInfoResponse.getClaim(JwtClaimName.GIVEN_NAME));
+        assertNotNull(userInfoResponse.getClaim(JwtClaimName.FAMILY_NAME));
+        assertNull(userInfoResponse.getClaim(JwtClaimName.EMAIL));
+        assertNull(userInfoResponse.getClaim(JwtClaimName.EMAIL_VERIFIED));
+        assertNotNull(userInfoResponse.getClaim(JwtClaimName.PICTURE));
+        assertNotNull(userInfoResponse.getClaim(JwtClaimName.ZONEINFO));
+        assertNotNull(userInfoResponse.getClaim(JwtClaimName.LOCALE));
+        assertNotNull(userInfoResponse.getClaim(JwtClaimName.ADDRESS_STREET_ADDRESS));
+        assertNotNull(userInfoResponse.getClaim(JwtClaimName.ADDRESS_LOCALITY));
+        assertNotNull(userInfoResponse.getClaim(JwtClaimName.ADDRESS_REGION));
+        assertNotNull(userInfoResponse.getClaim(JwtClaimName.ADDRESS_COUNTRY));
+    }
+
+    @Parameters({"userId", "userSecret", "redirectUris", "redirectUri", "sectorIdentifierUri"})
+    @Test
+    public void requestClaimsIndividuallyRequestObjectEncryptionAlgA128KWEncA128GCMUserInfoEncryptedResponseAlgA128KWEncA128GCM(
+            final String userId, final String userSecret, final String redirectUris, final String redirectUri,
+            final String sectorIdentifierUri) throws Exception {
+        showTitle("requestClaimsIndividuallyRequestObjectEncryptionAlgA128KWEncA128GCMUserInfoEncryptedResponseAlgA128KWEncA128GCM");
+
+        List<ResponseType> responseTypes = Arrays.asList(
+                ResponseType.TOKEN,
+                ResponseType.ID_TOKEN);
+
+        // 1. Register client
+        RegisterRequest registerRequest = new RegisterRequest(ApplicationType.WEB, "oxAuth test app",
+                StringUtils.spaceSeparatedToList(redirectUris));
+        registerRequest.setResponseTypes(responseTypes);
+        registerRequest.setSectorIdentifierUri(sectorIdentifierUri);
+        registerRequest.setIdTokenEncryptedResponseAlg(KeyEncryptionAlgorithm.A128KW);
+        registerRequest.setIdTokenEncryptedResponseEnc(BlockEncryptionAlgorithm.A128GCM);
+        registerRequest.setRequestObjectEncryptionAlg(KeyEncryptionAlgorithm.A128KW);
+        registerRequest.setRequestObjectEncryptionEnc(BlockEncryptionAlgorithm.A128GCM);
+        registerRequest.setUserInfoEncryptedResponseAlg(KeyEncryptionAlgorithm.A128KW);
+        registerRequest.setUserInfoEncryptedResponseEnc(BlockEncryptionAlgorithm.A128GCM);
+        registerRequest.setClaims(Arrays.asList(
+                JwtClaimName.NAME,
+                JwtClaimName.NICKNAME,
+                JwtClaimName.GIVEN_NAME,
+                JwtClaimName.FAMILY_NAME,
+                JwtClaimName.PICTURE,
+                JwtClaimName.ZONEINFO,
+                JwtClaimName.LOCALE,
+                JwtClaimName.ADDRESS_STREET_ADDRESS,
+                JwtClaimName.ADDRESS_LOCALITY,
+                JwtClaimName.ADDRESS_REGION,
+                JwtClaimName.ADDRESS_POSTAL_CODE,
+                JwtClaimName.ADDRESS_COUNTRY));
+
+        RegisterClient registerClient = new RegisterClient(registrationEndpoint);
+        registerClient.setRequest(registerRequest);
+        RegisterResponse registerResponse = registerClient.exec();
+
+        showClient(registerClient);
+        assertEquals(registerResponse.getStatus(), 200, "Unexpected response code: " + registerResponse.getEntity());
+        assertNotNull(registerResponse.getClientId());
+        assertNotNull(registerResponse.getClientSecret());
+        assertNotNull(registerResponse.getRegistrationAccessToken());
+        assertNotNull(registerResponse.getClientIdIssuedAt());
+        assertNotNull(registerResponse.getClientSecretExpiresAt());
+
+        String clientId = registerResponse.getClientId();
+        String clientSecret = registerResponse.getClientSecret();
+
+        // 2. Request authorization
+        List<String> scopes = Arrays.asList("openid", "clientinfo");
+        String nonce = UUID.randomUUID().toString();
+        String state = UUID.randomUUID().toString();
+
+        AuthorizationRequest authorizationRequest = new AuthorizationRequest(responseTypes, clientId, scopes, redirectUri, nonce);
+        authorizationRequest.setState(state);
+
+        JwtAuthorizationRequest jwtAuthorizationRequest = new JwtAuthorizationRequest(
+                authorizationRequest,
+                KeyEncryptionAlgorithm.A128KW,
+                BlockEncryptionAlgorithm.A128GCM,
+                clientSecret);
+        jwtAuthorizationRequest.addUserInfoClaim(new Claim(JwtClaimName.NAME, ClaimValue.createNull()));
+        jwtAuthorizationRequest.addUserInfoClaim(new Claim(JwtClaimName.NICKNAME, ClaimValue.createEssential(false)));
+        jwtAuthorizationRequest.addUserInfoClaim(new Claim(JwtClaimName.GIVEN_NAME, ClaimValue.createEssential(false)));
+        jwtAuthorizationRequest.addUserInfoClaim(new Claim(JwtClaimName.FAMILY_NAME, ClaimValue.createEssential(false)));
+        jwtAuthorizationRequest.addUserInfoClaim(new Claim(JwtClaimName.EMAIL, ClaimValue.createNull()));
+        jwtAuthorizationRequest.addUserInfoClaim(new Claim(JwtClaimName.EMAIL_VERIFIED, ClaimValue.createNull()));
+        jwtAuthorizationRequest.addUserInfoClaim(new Claim(JwtClaimName.PICTURE, ClaimValue.createEssential(false)));
+        jwtAuthorizationRequest.addUserInfoClaim(new Claim(JwtClaimName.ZONEINFO, ClaimValue.createNull()));
+        jwtAuthorizationRequest.addUserInfoClaim(new Claim(JwtClaimName.LOCALE, ClaimValue.createNull()));
+        jwtAuthorizationRequest.addUserInfoClaim(new Claim(JwtClaimName.ADDRESS_STREET_ADDRESS, ClaimValue.createNull()));
+        jwtAuthorizationRequest.addUserInfoClaim(new Claim(JwtClaimName.ADDRESS_LOCALITY, ClaimValue.createNull()));
+        jwtAuthorizationRequest.addUserInfoClaim(new Claim(JwtClaimName.ADDRESS_REGION, ClaimValue.createNull()));
+        jwtAuthorizationRequest.addUserInfoClaim(new Claim(JwtClaimName.ADDRESS_POSTAL_CODE, ClaimValue.createNull()));
+        jwtAuthorizationRequest.addUserInfoClaim(new Claim(JwtClaimName.ADDRESS_COUNTRY, ClaimValue.createNull()));
+        jwtAuthorizationRequest.addIdTokenClaim(new Claim(JwtClaimName.AUTHENTICATION_TIME, ClaimValue.createNull()));
+        jwtAuthorizationRequest.addIdTokenClaim(new Claim(JwtClaimName.AUTHENTICATION_CONTEXT_CLASS_REFERENCE, ClaimValue.createValueList(new String[]{ACR_VALUE})));
+        jwtAuthorizationRequest.addIdTokenClaim(new Claim(JwtClaimName.NAME, ClaimValue.createEssential(true)));
+        jwtAuthorizationRequest.addIdTokenClaim(new Claim(JwtClaimName.NICKNAME, ClaimValue.createEssential(false)));
+        jwtAuthorizationRequest.addIdTokenClaim(new Claim(JwtClaimName.GIVEN_NAME, ClaimValue.createEssential(false)));
+        jwtAuthorizationRequest.addIdTokenClaim(new Claim(JwtClaimName.FAMILY_NAME, ClaimValue.createEssential(false)));
+        jwtAuthorizationRequest.addIdTokenClaim(new Claim(JwtClaimName.EMAIL, ClaimValue.createNull()));
+        jwtAuthorizationRequest.addIdTokenClaim(new Claim(JwtClaimName.EMAIL_VERIFIED, ClaimValue.createNull()));
+        jwtAuthorizationRequest.getIdTokenMember().setMaxAge(86400);
+        String authJwt = jwtAuthorizationRequest.getEncodedJwt();
+        authorizationRequest.setRequest(authJwt);
+
+        AuthorizationResponse authorizationResponse = authenticateResourceOwnerAndGrantAccess(
+                authorizationEndpoint, authorizationRequest, userId, userSecret);
+
+        assertNotNull(authorizationResponse.getLocation(), "The location is null");
+        assertNotNull(authorizationResponse.getAccessToken(), "The accessToken is null");
+        assertNotNull(authorizationResponse.getTokenType(), "The tokenType is null");
+        assertNotNull(authorizationResponse.getIdToken(), "The idToken is null");
+        assertNotNull(authorizationResponse.getState(), "The state is null");
+
+        String idToken = authorizationResponse.getIdToken();
+        String accessToken = authorizationResponse.getAccessToken();
+
+        // 3. Validate id_token
+        Jwe jwe = Jwe.parse(idToken, null, clientSecret.getBytes(Util.UTF8_STRING_ENCODING));
+        assertNotNull(jwe.getHeader().getClaimAsString(JwtHeaderName.TYPE));
+        assertNotNull(jwe.getHeader().getClaimAsString(JwtHeaderName.ALGORITHM));
+        assertNotNull(jwe.getClaims().getClaimAsString(JwtClaimName.ISSUER));
+        assertNotNull(jwe.getClaims().getClaimAsString(JwtClaimName.AUDIENCE));
+        assertNotNull(jwe.getClaims().getClaimAsString(JwtClaimName.EXPIRATION_TIME));
+        assertNotNull(jwe.getClaims().getClaimAsString(JwtClaimName.ISSUED_AT));
+        assertNotNull(jwe.getClaims().getClaimAsString(JwtClaimName.SUBJECT_IDENTIFIER));
+        assertNotNull(jwe.getClaims().getClaimAsString(JwtClaimName.ACCESS_TOKEN_HASH));
+        assertNotNull(jwe.getClaims().getClaimAsString(JwtClaimName.AUTHENTICATION_TIME));
+        assertNotNull(jwe.getClaims().getClaimAsString(JwtClaimName.NAME));
+        assertNotNull(jwe.getClaims().getClaimAsString(JwtClaimName.NICKNAME));
+        assertNotNull(jwe.getClaims().getClaimAsString(JwtClaimName.GIVEN_NAME));
+        assertNotNull(jwe.getClaims().getClaimAsString(JwtClaimName.FAMILY_NAME));
+        assertNull(jwe.getClaims().getClaimAsString(JwtClaimName.EMAIL));
+        assertNull(jwe.getClaims().getClaimAsString(JwtClaimName.EMAIL_VERIFIED));
+
+        // 4. Request user info
+        UserInfoClient userInfoClient = new UserInfoClient(userInfoEndpoint);
+        userInfoClient.setSharedKey(clientSecret);
+        UserInfoResponse userInfoResponse = userInfoClient.execUserInfo(accessToken);
+
+        showClient(userInfoClient);
+        assertEquals(userInfoResponse.getStatus(), 200, "Unexpected response code: " + userInfoResponse.getStatus());
+        assertNotNull(userInfoResponse.getClaim(JwtClaimName.SUBJECT_IDENTIFIER));
+        assertNotNull(userInfoResponse.getClaim(JwtClaimName.NAME));
+        assertNotNull(userInfoResponse.getClaim(JwtClaimName.NICKNAME));
+        assertNotNull(userInfoResponse.getClaim(JwtClaimName.GIVEN_NAME));
+        assertNotNull(userInfoResponse.getClaim(JwtClaimName.FAMILY_NAME));
+        assertNull(userInfoResponse.getClaim(JwtClaimName.EMAIL));
+        assertNull(userInfoResponse.getClaim(JwtClaimName.EMAIL_VERIFIED));
+        assertNotNull(userInfoResponse.getClaim(JwtClaimName.PICTURE));
+        assertNotNull(userInfoResponse.getClaim(JwtClaimName.ZONEINFO));
+        assertNotNull(userInfoResponse.getClaim(JwtClaimName.LOCALE));
+        assertNotNull(userInfoResponse.getClaim(JwtClaimName.ADDRESS_STREET_ADDRESS));
+        assertNotNull(userInfoResponse.getClaim(JwtClaimName.ADDRESS_LOCALITY));
+        assertNotNull(userInfoResponse.getClaim(JwtClaimName.ADDRESS_REGION));
+        assertNotNull(userInfoResponse.getClaim(JwtClaimName.ADDRESS_COUNTRY));
+    }
+
+    @Parameters({"userId", "userSecret", "redirectUris", "redirectUri", "sectorIdentifierUri"})
+    @Test
+    public void requestClaimsIndividuallyRequestObjectEncryptionAlgA256KWEncA256GCMUserInfoEncryptedResponseAlgA256KWEncA256GCM(
+            final String userId, final String userSecret, final String redirectUris, final String redirectUri,
+            final String sectorIdentifierUri) throws Exception {
+        showTitle("requestClaimsIndividuallyRequestObjectEncryptionAlgA256KWEncA256GCMUserInfoEncryptedResponseAlgA256KWEncA256GCM");
+
+        List<ResponseType> responseTypes = Arrays.asList(
+                ResponseType.TOKEN,
+                ResponseType.ID_TOKEN);
+
+        // 1. Register client
+        RegisterRequest registerRequest = new RegisterRequest(ApplicationType.WEB, "oxAuth test app",
+                StringUtils.spaceSeparatedToList(redirectUris));
+        registerRequest.setResponseTypes(responseTypes);
+        registerRequest.setSectorIdentifierUri(sectorIdentifierUri);
+        registerRequest.setIdTokenEncryptedResponseAlg(KeyEncryptionAlgorithm.A256KW);
+        registerRequest.setIdTokenEncryptedResponseEnc(BlockEncryptionAlgorithm.A256GCM);
+        registerRequest.setRequestObjectEncryptionAlg(KeyEncryptionAlgorithm.A256KW);
+        registerRequest.setRequestObjectEncryptionEnc(BlockEncryptionAlgorithm.A256GCM);
+        registerRequest.setUserInfoEncryptedResponseAlg(KeyEncryptionAlgorithm.A256KW);
+        registerRequest.setUserInfoEncryptedResponseEnc(BlockEncryptionAlgorithm.A256GCM);
+        registerRequest.setClaims(Arrays.asList(
+                JwtClaimName.NAME,
+                JwtClaimName.NICKNAME,
+                JwtClaimName.GIVEN_NAME,
+                JwtClaimName.FAMILY_NAME,
+                JwtClaimName.PICTURE,
+                JwtClaimName.ZONEINFO,
+                JwtClaimName.LOCALE,
+                JwtClaimName.ADDRESS_STREET_ADDRESS,
+                JwtClaimName.ADDRESS_LOCALITY,
+                JwtClaimName.ADDRESS_REGION,
+                JwtClaimName.ADDRESS_POSTAL_CODE,
+                JwtClaimName.ADDRESS_COUNTRY));
+
+        RegisterClient registerClient = new RegisterClient(registrationEndpoint);
+        registerClient.setRequest(registerRequest);
+        RegisterResponse registerResponse = registerClient.exec();
+
+        showClient(registerClient);
+        assertEquals(registerResponse.getStatus(), 200, "Unexpected response code: " + registerResponse.getEntity());
+        assertNotNull(registerResponse.getClientId());
+        assertNotNull(registerResponse.getClientSecret());
+        assertNotNull(registerResponse.getRegistrationAccessToken());
+        assertNotNull(registerResponse.getClientIdIssuedAt());
+        assertNotNull(registerResponse.getClientSecretExpiresAt());
+
+        String clientId = registerResponse.getClientId();
+        String clientSecret = registerResponse.getClientSecret();
+
+        // 2. Request authorization
+        List<String> scopes = Arrays.asList("openid", "clientinfo");
+        String nonce = UUID.randomUUID().toString();
+        String state = UUID.randomUUID().toString();
+
+        AuthorizationRequest authorizationRequest = new AuthorizationRequest(responseTypes, clientId, scopes, redirectUri, nonce);
+        authorizationRequest.setState(state);
+
+        JwtAuthorizationRequest jwtAuthorizationRequest = new JwtAuthorizationRequest(
+                authorizationRequest,
+                KeyEncryptionAlgorithm.A256KW,
+                BlockEncryptionAlgorithm.A256GCM,
+                clientSecret);
+        jwtAuthorizationRequest.addUserInfoClaim(new Claim(JwtClaimName.NAME, ClaimValue.createNull()));
+        jwtAuthorizationRequest.addUserInfoClaim(new Claim(JwtClaimName.NICKNAME, ClaimValue.createEssential(false)));
+        jwtAuthorizationRequest.addUserInfoClaim(new Claim(JwtClaimName.GIVEN_NAME, ClaimValue.createEssential(false)));
+        jwtAuthorizationRequest.addUserInfoClaim(new Claim(JwtClaimName.FAMILY_NAME, ClaimValue.createEssential(false)));
+        jwtAuthorizationRequest.addUserInfoClaim(new Claim(JwtClaimName.EMAIL, ClaimValue.createNull()));
+        jwtAuthorizationRequest.addUserInfoClaim(new Claim(JwtClaimName.EMAIL_VERIFIED, ClaimValue.createNull()));
+        jwtAuthorizationRequest.addUserInfoClaim(new Claim(JwtClaimName.PICTURE, ClaimValue.createEssential(false)));
+        jwtAuthorizationRequest.addUserInfoClaim(new Claim(JwtClaimName.ZONEINFO, ClaimValue.createNull()));
+        jwtAuthorizationRequest.addUserInfoClaim(new Claim(JwtClaimName.LOCALE, ClaimValue.createNull()));
+        jwtAuthorizationRequest.addUserInfoClaim(new Claim(JwtClaimName.ADDRESS_STREET_ADDRESS, ClaimValue.createNull()));
+        jwtAuthorizationRequest.addUserInfoClaim(new Claim(JwtClaimName.ADDRESS_LOCALITY, ClaimValue.createNull()));
+        jwtAuthorizationRequest.addUserInfoClaim(new Claim(JwtClaimName.ADDRESS_REGION, ClaimValue.createNull()));
+        jwtAuthorizationRequest.addUserInfoClaim(new Claim(JwtClaimName.ADDRESS_POSTAL_CODE, ClaimValue.createNull()));
+        jwtAuthorizationRequest.addUserInfoClaim(new Claim(JwtClaimName.ADDRESS_COUNTRY, ClaimValue.createNull()));
+        jwtAuthorizationRequest.addIdTokenClaim(new Claim(JwtClaimName.AUTHENTICATION_TIME, ClaimValue.createNull()));
+        jwtAuthorizationRequest.addIdTokenClaim(new Claim(JwtClaimName.AUTHENTICATION_CONTEXT_CLASS_REFERENCE, ClaimValue.createValueList(new String[]{ACR_VALUE})));
+        jwtAuthorizationRequest.addIdTokenClaim(new Claim(JwtClaimName.NAME, ClaimValue.createEssential(true)));
+        jwtAuthorizationRequest.addIdTokenClaim(new Claim(JwtClaimName.NICKNAME, ClaimValue.createEssential(false)));
+        jwtAuthorizationRequest.addIdTokenClaim(new Claim(JwtClaimName.GIVEN_NAME, ClaimValue.createEssential(false)));
+        jwtAuthorizationRequest.addIdTokenClaim(new Claim(JwtClaimName.FAMILY_NAME, ClaimValue.createEssential(false)));
+        jwtAuthorizationRequest.addIdTokenClaim(new Claim(JwtClaimName.EMAIL, ClaimValue.createNull()));
+        jwtAuthorizationRequest.addIdTokenClaim(new Claim(JwtClaimName.EMAIL_VERIFIED, ClaimValue.createNull()));
+        jwtAuthorizationRequest.getIdTokenMember().setMaxAge(86400);
+        String authJwt = jwtAuthorizationRequest.getEncodedJwt();
+        authorizationRequest.setRequest(authJwt);
+
+        AuthorizationResponse authorizationResponse = authenticateResourceOwnerAndGrantAccess(
+                authorizationEndpoint, authorizationRequest, userId, userSecret);
+
+        assertNotNull(authorizationResponse.getLocation(), "The location is null");
+        assertNotNull(authorizationResponse.getAccessToken(), "The accessToken is null");
+        assertNotNull(authorizationResponse.getTokenType(), "The tokenType is null");
+        assertNotNull(authorizationResponse.getIdToken(), "The idToken is null");
+        assertNotNull(authorizationResponse.getState(), "The state is null");
+
+        String idToken = authorizationResponse.getIdToken();
+        String accessToken = authorizationResponse.getAccessToken();
+
+        // 3. Validate id_token
+        Jwe jwe = Jwe.parse(idToken, null, clientSecret.getBytes(Util.UTF8_STRING_ENCODING));
+        assertNotNull(jwe.getHeader().getClaimAsString(JwtHeaderName.TYPE));
+        assertNotNull(jwe.getHeader().getClaimAsString(JwtHeaderName.ALGORITHM));
+        assertNotNull(jwe.getClaims().getClaimAsString(JwtClaimName.ISSUER));
+        assertNotNull(jwe.getClaims().getClaimAsString(JwtClaimName.AUDIENCE));
+        assertNotNull(jwe.getClaims().getClaimAsString(JwtClaimName.EXPIRATION_TIME));
+        assertNotNull(jwe.getClaims().getClaimAsString(JwtClaimName.ISSUED_AT));
+        assertNotNull(jwe.getClaims().getClaimAsString(JwtClaimName.SUBJECT_IDENTIFIER));
+        assertNotNull(jwe.getClaims().getClaimAsString(JwtClaimName.ACCESS_TOKEN_HASH));
+        assertNotNull(jwe.getClaims().getClaimAsString(JwtClaimName.AUTHENTICATION_TIME));
+        assertNotNull(jwe.getClaims().getClaimAsString(JwtClaimName.NAME));
+        assertNotNull(jwe.getClaims().getClaimAsString(JwtClaimName.NICKNAME));
+        assertNotNull(jwe.getClaims().getClaimAsString(JwtClaimName.GIVEN_NAME));
+        assertNotNull(jwe.getClaims().getClaimAsString(JwtClaimName.FAMILY_NAME));
+        assertNull(jwe.getClaims().getClaimAsString(JwtClaimName.EMAIL));
+        assertNull(jwe.getClaims().getClaimAsString(JwtClaimName.EMAIL_VERIFIED));
+
+        // 4. Request user info
+        UserInfoClient userInfoClient = new UserInfoClient(userInfoEndpoint);
+        userInfoClient.setSharedKey(clientSecret);
+        UserInfoResponse userInfoResponse = userInfoClient.execUserInfo(accessToken);
+
+        showClient(userInfoClient);
+        assertEquals(userInfoResponse.getStatus(), 200, "Unexpected response code: " + userInfoResponse.getStatus());
+        assertNotNull(userInfoResponse.getClaim(JwtClaimName.SUBJECT_IDENTIFIER));
+        assertNotNull(userInfoResponse.getClaim(JwtClaimName.NAME));
+        assertNotNull(userInfoResponse.getClaim(JwtClaimName.NICKNAME));
+        assertNotNull(userInfoResponse.getClaim(JwtClaimName.GIVEN_NAME));
+        assertNotNull(userInfoResponse.getClaim(JwtClaimName.FAMILY_NAME));
+        assertNull(userInfoResponse.getClaim(JwtClaimName.EMAIL));
+        assertNull(userInfoResponse.getClaim(JwtClaimName.EMAIL_VERIFIED));
+        assertNotNull(userInfoResponse.getClaim(JwtClaimName.PICTURE));
+        assertNotNull(userInfoResponse.getClaim(JwtClaimName.ZONEINFO));
+        assertNotNull(userInfoResponse.getClaim(JwtClaimName.LOCALE));
+        assertNotNull(userInfoResponse.getClaim(JwtClaimName.ADDRESS_STREET_ADDRESS));
+        assertNotNull(userInfoResponse.getClaim(JwtClaimName.ADDRESS_LOCALITY));
+        assertNotNull(userInfoResponse.getClaim(JwtClaimName.ADDRESS_REGION));
+        assertNotNull(userInfoResponse.getClaim(JwtClaimName.ADDRESS_COUNTRY));
+    }
+
+    @Parameters({"userId", "userSecret", "redirectUris", "redirectUri", "sectorIdentifierUri", "dnName", "keyStoreFile",
+            "keyStoreSecret", "RSA1_5_keyId", "clientJwksUri"})
+    @Test
+    public void requestClaimsIndividuallyRequestObjectEncryptionAlgRSA1_5EncA128CBC_PLUS_HS256UserInfoEncryptedResponseAlgRSA1_5EncA128CBC_PLUS_HS256(
+            final String userId, final String userSecret, final String redirectUris, final String redirectUri,
+            final String sectorIdentifierUri, final String dnName, final String keyStoreFile,
+            final String keyStoreSecret, final String clientKeyId, final String clientJwksUri) throws Exception {
+        showTitle("requestClaimsIndividuallyRequestObjectEncryptionAlgRSA1_5EncA128CBC_PLUS_HS256UserInfoEncryptedResponseAlgRSA1_5EncA128CBC_PLUS_HS256");
+
+        List<ResponseType> responseTypes = Arrays.asList(
+                ResponseType.TOKEN,
+                ResponseType.ID_TOKEN);
+
+        // 1. Register client
+        RegisterRequest registerRequest = new RegisterRequest(ApplicationType.WEB, "oxAuth test app",
+                StringUtils.spaceSeparatedToList(redirectUris));
+        registerRequest.setResponseTypes(responseTypes);
+        registerRequest.setSectorIdentifierUri(sectorIdentifierUri);
+        registerRequest.setJwksUri(clientJwksUri);
+        registerRequest.setIdTokenEncryptedResponseAlg(KeyEncryptionAlgorithm.RSA1_5);
+        registerRequest.setIdTokenEncryptedResponseEnc(BlockEncryptionAlgorithm.A128CBC_PLUS_HS256);
+        registerRequest.setRequestObjectEncryptionAlg(KeyEncryptionAlgorithm.RSA1_5);
+        registerRequest.setRequestObjectEncryptionEnc(BlockEncryptionAlgorithm.A128CBC_PLUS_HS256);
+        registerRequest.setUserInfoEncryptedResponseAlg(KeyEncryptionAlgorithm.RSA1_5);
+        registerRequest.setUserInfoEncryptedResponseEnc(BlockEncryptionAlgorithm.A128CBC_PLUS_HS256);
+        registerRequest.setClaims(Arrays.asList(
+                JwtClaimName.NAME,
+                JwtClaimName.NICKNAME,
+                JwtClaimName.GIVEN_NAME,
+                JwtClaimName.FAMILY_NAME,
+                JwtClaimName.PICTURE,
+                JwtClaimName.ZONEINFO,
+                JwtClaimName.LOCALE,
+                JwtClaimName.ADDRESS_STREET_ADDRESS,
+                JwtClaimName.ADDRESS_LOCALITY,
+                JwtClaimName.ADDRESS_REGION,
+                JwtClaimName.ADDRESS_POSTAL_CODE,
+                JwtClaimName.ADDRESS_COUNTRY));
+
+        RegisterClient registerClient = new RegisterClient(registrationEndpoint);
+        registerClient.setRequest(registerRequest);
+        RegisterResponse registerResponse = registerClient.exec();
+
+        showClient(registerClient);
+        assertEquals(registerResponse.getStatus(), 200, "Unexpected response code: " + registerResponse.getEntity());
+        assertNotNull(registerResponse.getClientId());
+        assertNotNull(registerResponse.getClientSecret());
+        assertNotNull(registerResponse.getRegistrationAccessToken());
+        assertNotNull(registerResponse.getClientIdIssuedAt());
+        assertNotNull(registerResponse.getClientSecretExpiresAt());
+
+        String clientId = registerResponse.getClientId();
+        String clientSecret = registerResponse.getClientSecret();
+
+        // 2. Choose encryption key
+        JwkClient jwkClient = new JwkClient(jwksUri);
+        JwkResponse jwkResponse = jwkClient.exec();
+        String serverKeyId = jwkResponse.getKeyId(Algorithm.RSA1_5);
+        assertNotNull(serverKeyId);
+
+        // 3. Request authorization
+        JSONObject jwks = JwtUtil.getJSONWebKeys(jwksUri);
+        OxAuthCryptoProvider cryptoProvider = new OxAuthCryptoProvider(keyStoreFile, keyStoreSecret, dnName);
+
+        List<String> scopes = Arrays.asList("openid", "clientinfo");
+        String nonce = UUID.randomUUID().toString();
+        String state = UUID.randomUUID().toString();
+
+        AuthorizationRequest authorizationRequest = new AuthorizationRequest(responseTypes, clientId, scopes, redirectUri, nonce);
+        authorizationRequest.setState(state);
+
+        JwtAuthorizationRequest jwtAuthorizationRequest = new JwtAuthorizationRequest(authorizationRequest,
+                KeyEncryptionAlgorithm.RSA1_5, BlockEncryptionAlgorithm.A128CBC_PLUS_HS256, cryptoProvider);
+        jwtAuthorizationRequest.setKeyId(serverKeyId);
+        jwtAuthorizationRequest.addUserInfoClaim(new Claim(JwtClaimName.NAME, ClaimValue.createNull()));
+        jwtAuthorizationRequest.addUserInfoClaim(new Claim(JwtClaimName.NICKNAME, ClaimValue.createEssential(false)));
+        jwtAuthorizationRequest.addUserInfoClaim(new Claim(JwtClaimName.GIVEN_NAME, ClaimValue.createEssential(false)));
+        jwtAuthorizationRequest.addUserInfoClaim(new Claim(JwtClaimName.FAMILY_NAME, ClaimValue.createEssential(false)));
+        jwtAuthorizationRequest.addUserInfoClaim(new Claim(JwtClaimName.EMAIL, ClaimValue.createNull()));
+        jwtAuthorizationRequest.addUserInfoClaim(new Claim(JwtClaimName.EMAIL_VERIFIED, ClaimValue.createNull()));
+        jwtAuthorizationRequest.addUserInfoClaim(new Claim(JwtClaimName.PICTURE, ClaimValue.createEssential(false)));
+        jwtAuthorizationRequest.addUserInfoClaim(new Claim(JwtClaimName.ZONEINFO, ClaimValue.createNull()));
+        jwtAuthorizationRequest.addUserInfoClaim(new Claim(JwtClaimName.LOCALE, ClaimValue.createNull()));
+        jwtAuthorizationRequest.addUserInfoClaim(new Claim(JwtClaimName.ADDRESS_STREET_ADDRESS, ClaimValue.createNull()));
+        jwtAuthorizationRequest.addUserInfoClaim(new Claim(JwtClaimName.ADDRESS_LOCALITY, ClaimValue.createNull()));
+        jwtAuthorizationRequest.addUserInfoClaim(new Claim(JwtClaimName.ADDRESS_REGION, ClaimValue.createNull()));
+        jwtAuthorizationRequest.addUserInfoClaim(new Claim(JwtClaimName.ADDRESS_POSTAL_CODE, ClaimValue.createNull()));
+        jwtAuthorizationRequest.addUserInfoClaim(new Claim(JwtClaimName.ADDRESS_COUNTRY, ClaimValue.createNull()));
+        jwtAuthorizationRequest.addIdTokenClaim(new Claim(JwtClaimName.AUTHENTICATION_TIME, ClaimValue.createNull()));
+        jwtAuthorizationRequest.addIdTokenClaim(new Claim(JwtClaimName.AUTHENTICATION_CONTEXT_CLASS_REFERENCE, ClaimValue.createValueList(new String[]{ACR_VALUE})));
+        jwtAuthorizationRequest.addIdTokenClaim(new Claim(JwtClaimName.NAME, ClaimValue.createEssential(true)));
+        jwtAuthorizationRequest.addIdTokenClaim(new Claim(JwtClaimName.NICKNAME, ClaimValue.createEssential(false)));
+        jwtAuthorizationRequest.addIdTokenClaim(new Claim(JwtClaimName.GIVEN_NAME, ClaimValue.createEssential(false)));
+        jwtAuthorizationRequest.addIdTokenClaim(new Claim(JwtClaimName.FAMILY_NAME, ClaimValue.createEssential(false)));
+        jwtAuthorizationRequest.addIdTokenClaim(new Claim(JwtClaimName.EMAIL, ClaimValue.createNull()));
+        jwtAuthorizationRequest.addIdTokenClaim(new Claim(JwtClaimName.EMAIL_VERIFIED, ClaimValue.createNull()));
+        jwtAuthorizationRequest.getIdTokenMember().setMaxAge(86400);
+        String authJwt = jwtAuthorizationRequest.getEncodedJwt(jwks);
+        authorizationRequest.setRequest(authJwt);
+
+        AuthorizationResponse authorizationResponse = authenticateResourceOwnerAndGrantAccess(
+                authorizationEndpoint, authorizationRequest, userId, userSecret);
+
+        assertNotNull(authorizationResponse.getLocation(), "The location is null");
+        assertNotNull(authorizationResponse.getAccessToken(), "The accessToken is null");
+        assertNotNull(authorizationResponse.getTokenType(), "The tokenType is null");
+        assertNotNull(authorizationResponse.getIdToken(), "The idToken is null");
+        assertNotNull(authorizationResponse.getState(), "The state is null");
+
+        String idToken = authorizationResponse.getIdToken();
+        String accessToken = authorizationResponse.getAccessToken();
+
+        // 4. Validate id_token
+        PrivateKey privateKey = cryptoProvider.getPrivateKey(clientKeyId);
+
+        Jwe jwe = Jwe.parse(idToken, privateKey, null);
+        assertNotNull(jwe.getHeader().getClaimAsString(JwtHeaderName.TYPE));
+        assertNotNull(jwe.getHeader().getClaimAsString(JwtHeaderName.ALGORITHM));
+        assertNotNull(jwe.getClaims().getClaimAsString(JwtClaimName.ISSUER));
+        assertNotNull(jwe.getClaims().getClaimAsString(JwtClaimName.AUDIENCE));
+        assertNotNull(jwe.getClaims().getClaimAsString(JwtClaimName.EXPIRATION_TIME));
+        assertNotNull(jwe.getClaims().getClaimAsString(JwtClaimName.ISSUED_AT));
+        assertNotNull(jwe.getClaims().getClaimAsString(JwtClaimName.SUBJECT_IDENTIFIER));
+        assertNotNull(jwe.getClaims().getClaimAsString(JwtClaimName.ACCESS_TOKEN_HASH));
+        assertNotNull(jwe.getClaims().getClaimAsString(JwtClaimName.AUTHENTICATION_TIME));
+        assertNotNull(jwe.getClaims().getClaimAsString(JwtClaimName.NAME));
+        assertNotNull(jwe.getClaims().getClaimAsString(JwtClaimName.NICKNAME));
+        assertNotNull(jwe.getClaims().getClaimAsString(JwtClaimName.GIVEN_NAME));
+        assertNotNull(jwe.getClaims().getClaimAsString(JwtClaimName.FAMILY_NAME));
+        assertNull(jwe.getClaims().getClaimAsString(JwtClaimName.EMAIL));
+        assertNull(jwe.getClaims().getClaimAsString(JwtClaimName.EMAIL_VERIFIED));
+
+        // 5. Request user info
+        UserInfoClient userInfoClient = new UserInfoClient(userInfoEndpoint);
+        userInfoClient.setPrivateKey(privateKey);
+        UserInfoResponse userInfoResponse = userInfoClient.execUserInfo(accessToken);
+
+        showClient(userInfoClient);
+        assertEquals(userInfoResponse.getStatus(), 200, "Unexpected response code: " + userInfoResponse.getStatus());
+        assertNotNull(userInfoResponse.getClaim(JwtClaimName.SUBJECT_IDENTIFIER));
+        assertNotNull(userInfoResponse.getClaim(JwtClaimName.NAME));
+        assertNotNull(userInfoResponse.getClaim(JwtClaimName.NICKNAME));
+        assertNotNull(userInfoResponse.getClaim(JwtClaimName.GIVEN_NAME));
+        assertNotNull(userInfoResponse.getClaim(JwtClaimName.FAMILY_NAME));
+        assertNull(userInfoResponse.getClaim(JwtClaimName.EMAIL));
+        assertNull(userInfoResponse.getClaim(JwtClaimName.EMAIL_VERIFIED));
+        assertNotNull(userInfoResponse.getClaim(JwtClaimName.PICTURE));
+        assertNotNull(userInfoResponse.getClaim(JwtClaimName.ZONEINFO));
+        assertNotNull(userInfoResponse.getClaim(JwtClaimName.LOCALE));
+        assertNotNull(userInfoResponse.getClaim(JwtClaimName.ADDRESS_STREET_ADDRESS));
+        assertNotNull(userInfoResponse.getClaim(JwtClaimName.ADDRESS_LOCALITY));
+        assertNotNull(userInfoResponse.getClaim(JwtClaimName.ADDRESS_REGION));
+        assertNotNull(userInfoResponse.getClaim(JwtClaimName.ADDRESS_COUNTRY));
+    }
+
+    @Parameters({"userId", "userSecret", "redirectUris", "redirectUri", "sectorIdentifierUri", "dnName", "keyStoreFile",
+            "keyStoreSecret", "RSA1_5_keyId", "clientJwksUri"})
+    @Test
+    public void requestClaimsIndividuallyRequestObjectEncryptionAlgRSA1_5EncA256CBC_PLUS_HS512UserInfoEncryptedResponseAlgRSA1_5EncA256CBC_PLUS_HS512(
+            final String userId, final String userSecret, final String redirectUris, final String redirectUri,
+            final String sectorIdentifierUri, final String dnName, final String keyStoreFile,
+            final String keyStoreSecret, final String clientKeyId, final String clientJwksUri) throws Exception {
+        showTitle("requestClaimsIndividuallyRequestObjectEncryptionAlgRSA1_5EncA256CBC_PLUS_HS512UserInfoEncryptedResponseAlgRSA1_5EncA256CBC_PLUS_HS512");
+
+        List<ResponseType> responseTypes = Arrays.asList(
+                ResponseType.TOKEN,
+                ResponseType.ID_TOKEN);
+
+        // 1. Register client
+        RegisterRequest registerRequest = new RegisterRequest(ApplicationType.WEB, "oxAuth test app",
+                StringUtils.spaceSeparatedToList(redirectUris));
+        registerRequest.setResponseTypes(responseTypes);
+        registerRequest.setSectorIdentifierUri(sectorIdentifierUri);
+        registerRequest.setJwksUri(clientJwksUri);
+        registerRequest.setIdTokenEncryptedResponseAlg(KeyEncryptionAlgorithm.RSA1_5);
+        registerRequest.setIdTokenEncryptedResponseEnc(BlockEncryptionAlgorithm.A256CBC_PLUS_HS512);
+        registerRequest.setRequestObjectEncryptionAlg(KeyEncryptionAlgorithm.RSA1_5);
+        registerRequest.setRequestObjectEncryptionEnc(BlockEncryptionAlgorithm.A256CBC_PLUS_HS512);
+        registerRequest.setUserInfoEncryptedResponseAlg(KeyEncryptionAlgorithm.RSA1_5);
+        registerRequest.setUserInfoEncryptedResponseEnc(BlockEncryptionAlgorithm.A256CBC_PLUS_HS512);
+        registerRequest.setClaims(Arrays.asList(
+                JwtClaimName.NAME,
+                JwtClaimName.NICKNAME,
+                JwtClaimName.GIVEN_NAME,
+                JwtClaimName.FAMILY_NAME,
+                JwtClaimName.PICTURE,
+                JwtClaimName.ZONEINFO,
+                JwtClaimName.LOCALE,
+                JwtClaimName.ADDRESS_STREET_ADDRESS,
+                JwtClaimName.ADDRESS_LOCALITY,
+                JwtClaimName.ADDRESS_REGION,
+                JwtClaimName.ADDRESS_POSTAL_CODE,
+                JwtClaimName.ADDRESS_COUNTRY));
+
+        RegisterClient registerClient = new RegisterClient(registrationEndpoint);
+        registerClient.setRequest(registerRequest);
+        RegisterResponse registerResponse = registerClient.exec();
+
+        showClient(registerClient);
+        assertEquals(registerResponse.getStatus(), 200, "Unexpected response code: " + registerResponse.getEntity());
+        assertNotNull(registerResponse.getClientId());
+        assertNotNull(registerResponse.getClientSecret());
+        assertNotNull(registerResponse.getRegistrationAccessToken());
+        assertNotNull(registerResponse.getClientIdIssuedAt());
+        assertNotNull(registerResponse.getClientSecretExpiresAt());
+
+        String clientId = registerResponse.getClientId();
+        String clientSecret = registerResponse.getClientSecret();
+
+        // 2. Choose encryption key
+        JwkClient jwkClient = new JwkClient(jwksUri);
+        JwkResponse jwkResponse = jwkClient.exec();
+        String serverKeyId = jwkResponse.getKeyId(Algorithm.RSA1_5);
+        assertNotNull(serverKeyId);
+
+        // 3. Request authorization
+        JSONObject jwks = JwtUtil.getJSONWebKeys(jwksUri);
+        OxAuthCryptoProvider cryptoProvider = new OxAuthCryptoProvider(keyStoreFile, keyStoreSecret, dnName);
+
+        List<String> scopes = Arrays.asList("openid", "clientinfo");
+        String nonce = UUID.randomUUID().toString();
+        String state = UUID.randomUUID().toString();
+
+        AuthorizationRequest authorizationRequest = new AuthorizationRequest(responseTypes, clientId, scopes, redirectUri, nonce);
+        authorizationRequest.setState(state);
+
+        JwtAuthorizationRequest jwtAuthorizationRequest = new JwtAuthorizationRequest(authorizationRequest,
+                KeyEncryptionAlgorithm.RSA1_5, BlockEncryptionAlgorithm.A256CBC_PLUS_HS512, cryptoProvider);
+        jwtAuthorizationRequest.setKeyId(serverKeyId);
+        jwtAuthorizationRequest.addUserInfoClaim(new Claim(JwtClaimName.NAME, ClaimValue.createNull()));
+        jwtAuthorizationRequest.addUserInfoClaim(new Claim(JwtClaimName.NICKNAME, ClaimValue.createEssential(false)));
+        jwtAuthorizationRequest.addUserInfoClaim(new Claim(JwtClaimName.GIVEN_NAME, ClaimValue.createEssential(false)));
+        jwtAuthorizationRequest.addUserInfoClaim(new Claim(JwtClaimName.FAMILY_NAME, ClaimValue.createEssential(false)));
+        jwtAuthorizationRequest.addUserInfoClaim(new Claim(JwtClaimName.EMAIL, ClaimValue.createNull()));
+        jwtAuthorizationRequest.addUserInfoClaim(new Claim(JwtClaimName.EMAIL_VERIFIED, ClaimValue.createNull()));
+        jwtAuthorizationRequest.addUserInfoClaim(new Claim(JwtClaimName.PICTURE, ClaimValue.createEssential(false)));
+        jwtAuthorizationRequest.addUserInfoClaim(new Claim(JwtClaimName.ZONEINFO, ClaimValue.createNull()));
+        jwtAuthorizationRequest.addUserInfoClaim(new Claim(JwtClaimName.LOCALE, ClaimValue.createNull()));
+        jwtAuthorizationRequest.addUserInfoClaim(new Claim(JwtClaimName.ADDRESS_STREET_ADDRESS, ClaimValue.createNull()));
+        jwtAuthorizationRequest.addUserInfoClaim(new Claim(JwtClaimName.ADDRESS_LOCALITY, ClaimValue.createNull()));
+        jwtAuthorizationRequest.addUserInfoClaim(new Claim(JwtClaimName.ADDRESS_REGION, ClaimValue.createNull()));
+        jwtAuthorizationRequest.addUserInfoClaim(new Claim(JwtClaimName.ADDRESS_POSTAL_CODE, ClaimValue.createNull()));
+        jwtAuthorizationRequest.addUserInfoClaim(new Claim(JwtClaimName.ADDRESS_COUNTRY, ClaimValue.createNull()));
+        jwtAuthorizationRequest.addIdTokenClaim(new Claim(JwtClaimName.AUTHENTICATION_TIME, ClaimValue.createNull()));
+        jwtAuthorizationRequest.addIdTokenClaim(new Claim(JwtClaimName.AUTHENTICATION_CONTEXT_CLASS_REFERENCE, ClaimValue.createValueList(new String[]{ACR_VALUE})));
+        jwtAuthorizationRequest.addIdTokenClaim(new Claim(JwtClaimName.NAME, ClaimValue.createEssential(true)));
+        jwtAuthorizationRequest.addIdTokenClaim(new Claim(JwtClaimName.NICKNAME, ClaimValue.createEssential(false)));
+        jwtAuthorizationRequest.addIdTokenClaim(new Claim(JwtClaimName.GIVEN_NAME, ClaimValue.createEssential(false)));
+        jwtAuthorizationRequest.addIdTokenClaim(new Claim(JwtClaimName.FAMILY_NAME, ClaimValue.createEssential(false)));
+        jwtAuthorizationRequest.addIdTokenClaim(new Claim(JwtClaimName.EMAIL, ClaimValue.createNull()));
+        jwtAuthorizationRequest.addIdTokenClaim(new Claim(JwtClaimName.EMAIL_VERIFIED, ClaimValue.createNull()));
+        jwtAuthorizationRequest.getIdTokenMember().setMaxAge(86400);
+        String authJwt = jwtAuthorizationRequest.getEncodedJwt(jwks);
+        authorizationRequest.setRequest(authJwt);
+
+        AuthorizationResponse authorizationResponse = authenticateResourceOwnerAndGrantAccess(
+                authorizationEndpoint, authorizationRequest, userId, userSecret);
+
+        assertNotNull(authorizationResponse.getLocation(), "The location is null");
+        assertNotNull(authorizationResponse.getAccessToken(), "The accessToken is null");
+        assertNotNull(authorizationResponse.getTokenType(), "The tokenType is null");
+        assertNotNull(authorizationResponse.getIdToken(), "The idToken is null");
+        assertNotNull(authorizationResponse.getState(), "The state is null");
+
+        String idToken = authorizationResponse.getIdToken();
+        String accessToken = authorizationResponse.getAccessToken();
+
+        // 4. Validate id_token
+        PrivateKey privateKey = cryptoProvider.getPrivateKey(clientKeyId);
+
+        Jwe jwe = Jwe.parse(idToken, privateKey, null);
+        assertNotNull(jwe.getHeader().getClaimAsString(JwtHeaderName.TYPE));
+        assertNotNull(jwe.getHeader().getClaimAsString(JwtHeaderName.ALGORITHM));
+        assertNotNull(jwe.getClaims().getClaimAsString(JwtClaimName.ISSUER));
+        assertNotNull(jwe.getClaims().getClaimAsString(JwtClaimName.AUDIENCE));
+        assertNotNull(jwe.getClaims().getClaimAsString(JwtClaimName.EXPIRATION_TIME));
+        assertNotNull(jwe.getClaims().getClaimAsString(JwtClaimName.ISSUED_AT));
+        assertNotNull(jwe.getClaims().getClaimAsString(JwtClaimName.SUBJECT_IDENTIFIER));
+        assertNotNull(jwe.getClaims().getClaimAsString(JwtClaimName.ACCESS_TOKEN_HASH));
+        assertNotNull(jwe.getClaims().getClaimAsString(JwtClaimName.AUTHENTICATION_TIME));
+        assertNotNull(jwe.getClaims().getClaimAsString(JwtClaimName.NAME));
+        assertNotNull(jwe.getClaims().getClaimAsString(JwtClaimName.NICKNAME));
+        assertNotNull(jwe.getClaims().getClaimAsString(JwtClaimName.GIVEN_NAME));
+        assertNotNull(jwe.getClaims().getClaimAsString(JwtClaimName.FAMILY_NAME));
+        assertNull(jwe.getClaims().getClaimAsString(JwtClaimName.EMAIL));
+        assertNull(jwe.getClaims().getClaimAsString(JwtClaimName.EMAIL_VERIFIED));
+
+        // 5. Request user info
+        UserInfoClient userInfoClient = new UserInfoClient(userInfoEndpoint);
+        userInfoClient.setPrivateKey(privateKey);
+        UserInfoResponse userInfoResponse = userInfoClient.execUserInfo(accessToken);
+
+        showClient(userInfoClient);
+        assertEquals(userInfoResponse.getStatus(), 200, "Unexpected response code: " + userInfoResponse.getStatus());
+        assertNotNull(userInfoResponse.getClaim(JwtClaimName.SUBJECT_IDENTIFIER));
+        assertNotNull(userInfoResponse.getClaim(JwtClaimName.NAME));
+        assertNotNull(userInfoResponse.getClaim(JwtClaimName.NICKNAME));
+        assertNotNull(userInfoResponse.getClaim(JwtClaimName.GIVEN_NAME));
+        assertNotNull(userInfoResponse.getClaim(JwtClaimName.FAMILY_NAME));
+        assertNull(userInfoResponse.getClaim(JwtClaimName.EMAIL));
+        assertNull(userInfoResponse.getClaim(JwtClaimName.EMAIL_VERIFIED));
+        assertNotNull(userInfoResponse.getClaim(JwtClaimName.PICTURE));
+        assertNotNull(userInfoResponse.getClaim(JwtClaimName.ZONEINFO));
+        assertNotNull(userInfoResponse.getClaim(JwtClaimName.LOCALE));
+        assertNotNull(userInfoResponse.getClaim(JwtClaimName.ADDRESS_STREET_ADDRESS));
+        assertNotNull(userInfoResponse.getClaim(JwtClaimName.ADDRESS_LOCALITY));
+        assertNotNull(userInfoResponse.getClaim(JwtClaimName.ADDRESS_REGION));
+        assertNotNull(userInfoResponse.getClaim(JwtClaimName.ADDRESS_COUNTRY));
+    }
+
+    @Parameters({"userId", "userSecret", "redirectUris", "redirectUri", "sectorIdentifierUri", "dnName", "keyStoreFile",
+            "keyStoreSecret", "RSA_OAEP_keyId", "clientJwksUri"})
+    @Test
+    public void requestClaimsIndividuallyRequestObjectEncryptionAlgRSA_OAEPEncA256GCMUserInfoEncryptedResponseAlgRSA_OAEPEncA256GCM(
+            final String userId, final String userSecret, final String redirectUris, final String redirectUri,
+            final String sectorIdentifierUri, final String dnName, final String keyStoreFile,
+            final String keyStoreSecret, final String clientKeyId, final String clientJwksUri) throws Exception {
+        showTitle("requestClaimsIndividuallyRequestObjectEncryptionAlgRSA_OAEPEncA256GCMUserInfoEncryptedResponseAlgRSA_OAEPEncA256GCM");
+
+        List<ResponseType> responseTypes = Arrays.asList(
+                ResponseType.TOKEN,
+                ResponseType.ID_TOKEN);
+
+        // 1. Register client
+        RegisterRequest registerRequest = new RegisterRequest(ApplicationType.WEB, "oxAuth test app",
+                StringUtils.spaceSeparatedToList(redirectUris));
+        registerRequest.setResponseTypes(responseTypes);
+        registerRequest.setSectorIdentifierUri(sectorIdentifierUri);
+        registerRequest.setJwksUri(clientJwksUri);
+        registerRequest.setIdTokenEncryptedResponseAlg(KeyEncryptionAlgorithm.RSA_OAEP);
+        registerRequest.setIdTokenEncryptedResponseEnc(BlockEncryptionAlgorithm.A256GCM);
+        registerRequest.setRequestObjectEncryptionAlg(KeyEncryptionAlgorithm.RSA_OAEP);
+        registerRequest.setRequestObjectEncryptionEnc(BlockEncryptionAlgorithm.A256GCM);
+        registerRequest.setUserInfoEncryptedResponseAlg(KeyEncryptionAlgorithm.RSA_OAEP);
+        registerRequest.setUserInfoEncryptedResponseEnc(BlockEncryptionAlgorithm.A256GCM);
+        registerRequest.setClaims(Arrays.asList(
+                JwtClaimName.NAME,
+                JwtClaimName.NICKNAME,
+                JwtClaimName.GIVEN_NAME,
+                JwtClaimName.FAMILY_NAME,
+                JwtClaimName.PICTURE,
+                JwtClaimName.ZONEINFO,
+                JwtClaimName.LOCALE,
+                JwtClaimName.ADDRESS_STREET_ADDRESS,
+                JwtClaimName.ADDRESS_LOCALITY,
+                JwtClaimName.ADDRESS_REGION,
+                JwtClaimName.ADDRESS_POSTAL_CODE,
+                JwtClaimName.ADDRESS_COUNTRY));
+
+        RegisterClient registerClient = new RegisterClient(registrationEndpoint);
+        registerClient.setRequest(registerRequest);
+        RegisterResponse registerResponse = registerClient.exec();
+
+        showClient(registerClient);
+        assertEquals(registerResponse.getStatus(), 200, "Unexpected response code: " + registerResponse.getEntity());
+        assertNotNull(registerResponse.getClientId());
+        assertNotNull(registerResponse.getClientSecret());
+        assertNotNull(registerResponse.getRegistrationAccessToken());
+        assertNotNull(registerResponse.getClientIdIssuedAt());
+        assertNotNull(registerResponse.getClientSecretExpiresAt());
+
+        String clientId = registerResponse.getClientId();
+        String clientSecret = registerResponse.getClientSecret();
+
+        // 2. Choose encryption key
+        JwkClient jwkClient = new JwkClient(jwksUri);
+        JwkResponse jwkResponse = jwkClient.exec();
+        String serverKeyId = jwkResponse.getKeyId(Algorithm.RSA_OAEP);
+        assertNotNull(serverKeyId);
+
+        // 3. Request authorization
+        JSONObject jwks = JwtUtil.getJSONWebKeys(jwksUri);
+        OxAuthCryptoProvider cryptoProvider = new OxAuthCryptoProvider(keyStoreFile, keyStoreSecret, dnName);
+
+        List<String> scopes = Arrays.asList("openid", "clientinfo");
+        String nonce = UUID.randomUUID().toString();
+        String state = UUID.randomUUID().toString();
+
+        AuthorizationRequest authorizationRequest = new AuthorizationRequest(responseTypes, clientId, scopes, redirectUri, nonce);
+        authorizationRequest.setState(state);
+
+        JwtAuthorizationRequest jwtAuthorizationRequest = new JwtAuthorizationRequest(authorizationRequest,
+                KeyEncryptionAlgorithm.RSA_OAEP, BlockEncryptionAlgorithm.A256GCM, cryptoProvider);
+        jwtAuthorizationRequest.setKeyId(serverKeyId);
+        jwtAuthorizationRequest.addUserInfoClaim(new Claim(JwtClaimName.NAME, ClaimValue.createNull()));
+        jwtAuthorizationRequest.addUserInfoClaim(new Claim(JwtClaimName.NICKNAME, ClaimValue.createEssential(false)));
+        jwtAuthorizationRequest.addUserInfoClaim(new Claim(JwtClaimName.GIVEN_NAME, ClaimValue.createEssential(false)));
+        jwtAuthorizationRequest.addUserInfoClaim(new Claim(JwtClaimName.FAMILY_NAME, ClaimValue.createEssential(false)));
+        jwtAuthorizationRequest.addUserInfoClaim(new Claim(JwtClaimName.EMAIL, ClaimValue.createNull()));
+        jwtAuthorizationRequest.addUserInfoClaim(new Claim(JwtClaimName.EMAIL_VERIFIED, ClaimValue.createNull()));
+        jwtAuthorizationRequest.addUserInfoClaim(new Claim(JwtClaimName.PICTURE, ClaimValue.createEssential(false)));
+        jwtAuthorizationRequest.addUserInfoClaim(new Claim(JwtClaimName.ZONEINFO, ClaimValue.createNull()));
+        jwtAuthorizationRequest.addUserInfoClaim(new Claim(JwtClaimName.LOCALE, ClaimValue.createNull()));
+        jwtAuthorizationRequest.addUserInfoClaim(new Claim(JwtClaimName.ADDRESS_STREET_ADDRESS, ClaimValue.createNull()));
+        jwtAuthorizationRequest.addUserInfoClaim(new Claim(JwtClaimName.ADDRESS_LOCALITY, ClaimValue.createNull()));
+        jwtAuthorizationRequest.addUserInfoClaim(new Claim(JwtClaimName.ADDRESS_REGION, ClaimValue.createNull()));
+        jwtAuthorizationRequest.addUserInfoClaim(new Claim(JwtClaimName.ADDRESS_POSTAL_CODE, ClaimValue.createNull()));
+        jwtAuthorizationRequest.addUserInfoClaim(new Claim(JwtClaimName.ADDRESS_COUNTRY, ClaimValue.createNull()));
+        jwtAuthorizationRequest.addIdTokenClaim(new Claim(JwtClaimName.AUTHENTICATION_TIME, ClaimValue.createNull()));
+        jwtAuthorizationRequest.addIdTokenClaim(new Claim(JwtClaimName.AUTHENTICATION_CONTEXT_CLASS_REFERENCE, ClaimValue.createValueList(new String[]{ACR_VALUE})));
+        jwtAuthorizationRequest.addIdTokenClaim(new Claim(JwtClaimName.NAME, ClaimValue.createEssential(true)));
+        jwtAuthorizationRequest.addIdTokenClaim(new Claim(JwtClaimName.NICKNAME, ClaimValue.createEssential(false)));
+        jwtAuthorizationRequest.addIdTokenClaim(new Claim(JwtClaimName.GIVEN_NAME, ClaimValue.createEssential(false)));
+        jwtAuthorizationRequest.addIdTokenClaim(new Claim(JwtClaimName.FAMILY_NAME, ClaimValue.createEssential(false)));
+        jwtAuthorizationRequest.addIdTokenClaim(new Claim(JwtClaimName.EMAIL, ClaimValue.createNull()));
+        jwtAuthorizationRequest.addIdTokenClaim(new Claim(JwtClaimName.EMAIL_VERIFIED, ClaimValue.createNull()));
+        jwtAuthorizationRequest.getIdTokenMember().setMaxAge(86400);
+        String authJwt = jwtAuthorizationRequest.getEncodedJwt(jwks);
+        authorizationRequest.setRequest(authJwt);
+
+        AuthorizationResponse authorizationResponse = authenticateResourceOwnerAndGrantAccess(
+                authorizationEndpoint, authorizationRequest, userId, userSecret);
+
+        assertNotNull(authorizationResponse.getLocation(), "The location is null");
+        assertNotNull(authorizationResponse.getAccessToken(), "The accessToken is null");
+        assertNotNull(authorizationResponse.getTokenType(), "The tokenType is null");
+        assertNotNull(authorizationResponse.getIdToken(), "The idToken is null");
+        assertNotNull(authorizationResponse.getState(), "The state is null");
+
+        String idToken = authorizationResponse.getIdToken();
+        String accessToken = authorizationResponse.getAccessToken();
+
+        // 4. Validate id_token
+        PrivateKey privateKey = cryptoProvider.getPrivateKey(clientKeyId);
+
+        Jwe jwe = Jwe.parse(idToken, privateKey, null);
+        assertNotNull(jwe.getHeader().getClaimAsString(JwtHeaderName.TYPE));
+        assertNotNull(jwe.getHeader().getClaimAsString(JwtHeaderName.ALGORITHM));
+        assertNotNull(jwe.getClaims().getClaimAsString(JwtClaimName.ISSUER));
+        assertNotNull(jwe.getClaims().getClaimAsString(JwtClaimName.AUDIENCE));
+        assertNotNull(jwe.getClaims().getClaimAsString(JwtClaimName.EXPIRATION_TIME));
+        assertNotNull(jwe.getClaims().getClaimAsString(JwtClaimName.ISSUED_AT));
+        assertNotNull(jwe.getClaims().getClaimAsString(JwtClaimName.SUBJECT_IDENTIFIER));
+        assertNotNull(jwe.getClaims().getClaimAsString(JwtClaimName.ACCESS_TOKEN_HASH));
+        assertNotNull(jwe.getClaims().getClaimAsString(JwtClaimName.AUTHENTICATION_TIME));
+        assertNotNull(jwe.getClaims().getClaimAsString(JwtClaimName.NAME));
+        assertNotNull(jwe.getClaims().getClaimAsString(JwtClaimName.NICKNAME));
+        assertNotNull(jwe.getClaims().getClaimAsString(JwtClaimName.GIVEN_NAME));
+        assertNotNull(jwe.getClaims().getClaimAsString(JwtClaimName.FAMILY_NAME));
+        assertNull(jwe.getClaims().getClaimAsString(JwtClaimName.EMAIL));
+        assertNull(jwe.getClaims().getClaimAsString(JwtClaimName.EMAIL_VERIFIED));
+
+        // 5. Request user info
+        UserInfoClient userInfoClient = new UserInfoClient(userInfoEndpoint);
+        userInfoClient.setPrivateKey(privateKey);
+        UserInfoResponse userInfoResponse = userInfoClient.execUserInfo(accessToken);
+
+        showClient(userInfoClient);
+        assertEquals(userInfoResponse.getStatus(), 200, "Unexpected response code: " + userInfoResponse.getStatus());
+        assertNotNull(userInfoResponse.getClaim(JwtClaimName.SUBJECT_IDENTIFIER));
+        assertNotNull(userInfoResponse.getClaim(JwtClaimName.NAME));
+        assertNotNull(userInfoResponse.getClaim(JwtClaimName.NICKNAME));
+        assertNotNull(userInfoResponse.getClaim(JwtClaimName.GIVEN_NAME));
+        assertNotNull(userInfoResponse.getClaim(JwtClaimName.FAMILY_NAME));
+        assertNull(userInfoResponse.getClaim(JwtClaimName.EMAIL));
+        assertNull(userInfoResponse.getClaim(JwtClaimName.EMAIL_VERIFIED));
+        assertNotNull(userInfoResponse.getClaim(JwtClaimName.PICTURE));
+        assertNotNull(userInfoResponse.getClaim(JwtClaimName.ZONEINFO));
+        assertNotNull(userInfoResponse.getClaim(JwtClaimName.LOCALE));
+        assertNotNull(userInfoResponse.getClaim(JwtClaimName.ADDRESS_STREET_ADDRESS));
+        assertNotNull(userInfoResponse.getClaim(JwtClaimName.ADDRESS_LOCALITY));
+        assertNotNull(userInfoResponse.getClaim(JwtClaimName.ADDRESS_REGION));
+        assertNotNull(userInfoResponse.getClaim(JwtClaimName.ADDRESS_COUNTRY));
+    }
+}
\ No newline at end of file
diff --git a/oxAuth/Client/src/test/java/org/gluu/oxauth/ws/rs/IntrospectionWsHttpTest.java b/oxAuth/Client/src/test/java/org/gluu/oxauth/ws/rs/IntrospectionWsHttpTest.java
new file mode 100644
index 00000000..0e77b37f
--- /dev/null
+++ b/oxAuth/Client/src/test/java/org/gluu/oxauth/ws/rs/IntrospectionWsHttpTest.java
@@ -0,0 +1,77 @@
+/*
+ * oxAuth is available under the MIT License (2008). See http://opensource.org/licenses/MIT for full text.
+ *
+ * Copyright (c) 2014, Gluu
+ */
+
+package org.gluu.oxauth.ws.rs;
+
+import static org.testng.Assert.assertFalse;
+import static org.testng.Assert.assertNotNull;
+import static org.testng.Assert.assertTrue;
+
+import org.gluu.oxauth.BaseTest;
+import org.gluu.oxauth.client.BaseRequest;
+import org.gluu.oxauth.client.service.ClientFactory;
+import org.gluu.oxauth.client.service.IntrospectionService;
+import org.gluu.oxauth.client.uma.wrapper.UmaClient;
+import org.gluu.oxauth.model.common.IntrospectionResponse;
+import org.gluu.oxauth.model.jwt.Jwt;
+import org.gluu.oxauth.model.uma.wrapper.Token;
+import org.jboss.resteasy.client.jaxrs.ClientHttpEngine;
+import org.testng.annotations.Parameters;
+import org.testng.annotations.Test;
+
+/**
+ * @author Yuriy Zabrovarnyy
+ * @version 0.9, 17/09/2013
+ */
+
+public class IntrospectionWsHttpTest extends BaseTest {
+
+    @Test
+    @Parameters({"umaPatClientId", "umaPatClientSecret"})
+    public void bearer(final String umaPatClientId, final String umaPatClientSecret) throws Exception {
+        final Token authorization = UmaClient.requestPat(tokenEndpoint, umaPatClientId, umaPatClientSecret);
+        final Token tokenToIntrospect = UmaClient.requestPat(tokenEndpoint, umaPatClientId, umaPatClientSecret);
+
+        final IntrospectionService introspectionService = ClientFactory.instance().createIntrospectionService(introspectionEndpoint);
+        final IntrospectionResponse introspectionResponse = introspectionService.introspectToken("Bearer " + authorization.getAccessToken(), tokenToIntrospect.getAccessToken());
+        assertTrue(introspectionResponse != null && introspectionResponse.isActive());
+    }
+
+    @Test
+    @Parameters({"umaPatClientId", "umaPatClientSecret"})
+    public void bearerWithResponseAsJwt(final String umaPatClientId, final String umaPatClientSecret) throws Exception {
+        final ClientHttpEngine engine = clientEngine(true);
+        final Token authorization = UmaClient.requestPat(tokenEndpoint, umaPatClientId, umaPatClientSecret, engine);
+        final Token tokenToIntrospect = UmaClient.requestPat(tokenEndpoint, umaPatClientId, umaPatClientSecret, engine);
+
+        final IntrospectionService introspectionService = ClientFactory.instance().createIntrospectionService(introspectionEndpoint, engine);
+        final String jwtAsString = introspectionService.introspectTokenWithResponseAsJwt("Bearer " + authorization.getAccessToken(), tokenToIntrospect.getAccessToken(), true);
+        final Jwt jwt = Jwt.parse(jwtAsString);
+        assertTrue(Boolean.parseBoolean(jwt.getClaims().getClaimAsString("active")));
+    }
+
+    @Test
+    @Parameters({"umaPatClientId", "umaPatClientSecret"})
+    public void basicAuthentication(final String umaPatClientId, final String umaPatClientSecret) throws Exception {
+        final Token tokenToIntrospect = UmaClient.requestPat(tokenEndpoint, umaPatClientId, umaPatClientSecret, clientEngine(true));
+
+        final IntrospectionService introspectionService = ClientFactory.instance().createIntrospectionService(introspectionEndpoint, clientEngine(true));
+        final IntrospectionResponse introspectionResponse = introspectionService.introspectToken("Basic " + BaseRequest.getEncodedCredentials(umaPatClientId, umaPatClientSecret), tokenToIntrospect.getAccessToken());
+        assertTrue(introspectionResponse != null && introspectionResponse.isActive());
+    }
+
+    @Test
+    @Parameters({"umaPatClientId", "umaPatClientSecret"})
+    public void introspectWithValidAuthorizationButInvalidTokenShouldReturnActiveFalse(final String umaPatClientId, final String umaPatClientSecret) throws Exception {
+        final Token authorization = UmaClient.requestPat(tokenEndpoint, umaPatClientId, umaPatClientSecret, clientEngine(true));
+
+        final IntrospectionService introspectionService = ClientFactory.instance().createIntrospectionService(introspectionEndpoint, clientEngine(true));
+        final IntrospectionResponse introspectionResponse = introspectionService.introspectToken("Bearer " + authorization.getAccessToken(), "invalid_token");
+        assertNotNull(introspectionResponse);
+        assertFalse(introspectionResponse.isActive());
+    }
+
+}
diff --git a/oxAuth/Client/src/test/java/org/gluu/oxauth/ws/rs/JwkRestWebServiceHttpTest.java b/oxAuth/Client/src/test/java/org/gluu/oxauth/ws/rs/JwkRestWebServiceHttpTest.java
new file mode 100644
index 00000000..65e2cf9c
--- /dev/null
+++ b/oxAuth/Client/src/test/java/org/gluu/oxauth/ws/rs/JwkRestWebServiceHttpTest.java
@@ -0,0 +1,72 @@
+/*
+ * oxAuth is available under the MIT License (2008). See http://opensource.org/licenses/MIT for full text.
+ *
+ * Copyright (c) 2014, Gluu
+ */
+
+package org.gluu.oxauth.ws.rs;
+
+import static org.testng.Assert.assertEquals;
+import static org.testng.Assert.assertNotNull;
+import static org.testng.Assert.assertTrue;
+
+import org.gluu.oxauth.BaseTest;
+import org.gluu.oxauth.client.JwkClient;
+import org.gluu.oxauth.client.JwkResponse;
+import org.gluu.oxauth.model.jwk.JSONWebKey;
+import org.testng.annotations.Parameters;
+import org.testng.annotations.Test;
+
+/**
+ * Functional tests for JWK Web Services (HTTP)
+ *
+ * @author Javier Rojas Blum
+ * @version June 25, 2016
+ */
+public class JwkRestWebServiceHttpTest extends BaseTest {
+
+    @Test
+    public void requestJwks() throws Exception {
+        showTitle("requestJwks");
+
+        JwkClient jwkClient = new JwkClient(jwksUri);
+        JwkResponse response = jwkClient.exec();
+
+        showClient(jwkClient);
+        assertEquals(response.getStatus(), 200, "Unexpected response code: " + response.getEntity());
+        assertNotNull(response.getEntity(), "Unexpected result: entity is null");
+        assertNotNull(response.getJwks(), "Unexpected result: jwks is null");
+        assertNotNull(response.getJwks().getKeys(), "Unexpected result: keys is null");
+        assertTrue(response.getJwks().getKeys().size() > 0, "Unexpected result: keys is empty");
+
+        for (JSONWebKey JSONWebKey : response.getJwks().getKeys()) {
+            assertNotNull(JSONWebKey.getKid(), "Unexpected result: kid is null");
+            assertNotNull(JSONWebKey.getUse(), "Unexpected result: use is null");
+            assertNotNull(JSONWebKey.getAlg(), "Unexpected result: alg is null");
+        }
+        //assertEquals(response.getJwks().getKeys().size(), 11, "The list of keys are not all that could be supported.");
+    }
+
+    @Parameters({"clientJwksUri"})
+    @Test
+    public void requestClientJwks(final String clientJwksUri) throws Exception {
+        showTitle("requestJwks");
+
+        JwkClient jwkClient = new JwkClient(clientJwksUri);
+        JwkResponse response = jwkClient.exec();
+
+        showClient(jwkClient);
+        assertEquals(response.getStatus(), 200, "Unexpected response code: " + response.getEntity());
+        assertNotNull(response.getEntity(), "Unexpected result: entity is null");
+        assertNotNull(response.getJwks(), "Unexpected result: jwks is null");
+        assertNotNull(response.getJwks().getKeys(), "Unexpected result: keys is null");
+        assertTrue(response.getJwks().getKeys().size() > 0, "Unexpected result: keys is empty");
+
+        for (JSONWebKey JSONWebKey : response.getJwks().getKeys()) {
+            assertNotNull(JSONWebKey.getKid(), "Unexpected result: kid is null");
+            assertNotNull(JSONWebKey.getUse(), "Unexpected result: use is null");
+            assertNotNull(JSONWebKey.getAlg(), "Unexpected result: alg is null");
+        }
+        //assertEquals(response.getJwks().getKeys().size(), 11, "The list of keys are not all that could be supported.");
+    }
+}
\ No newline at end of file
diff --git a/oxAuth/Client/src/test/java/org/gluu/oxauth/ws/rs/MultiStepAuthorizationCodeFlowHttpTest.java b/oxAuth/Client/src/test/java/org/gluu/oxauth/ws/rs/MultiStepAuthorizationCodeFlowHttpTest.java
new file mode 100644
index 00000000..6325a934
--- /dev/null
+++ b/oxAuth/Client/src/test/java/org/gluu/oxauth/ws/rs/MultiStepAuthorizationCodeFlowHttpTest.java
@@ -0,0 +1,135 @@
+/*
+ * oxAuth is available under the MIT License (2008). See http://opensource.org/licenses/MIT for full text.
+ *
+ * Copyright (c) 2014, Gluu
+ */
+
+package org.gluu.oxauth.ws.rs;
+
+import static org.testng.Assert.assertEquals;
+import static org.testng.Assert.assertNotNull;
+
+import java.util.Arrays;
+import java.util.List;
+import java.util.UUID;
+
+import org.gluu.oxauth.BaseTest;
+import org.gluu.oxauth.client.AuthorizationRequest;
+import org.gluu.oxauth.client.AuthorizationResponse;
+import org.gluu.oxauth.client.RegisterClient;
+import org.gluu.oxauth.client.RegisterRequest;
+import org.gluu.oxauth.client.RegisterResponse;
+import org.gluu.oxauth.client.TokenClient;
+import org.gluu.oxauth.client.TokenRequest;
+import org.gluu.oxauth.client.TokenResponse;
+import org.gluu.oxauth.model.common.AuthenticationMethod;
+import org.gluu.oxauth.model.common.GrantType;
+import org.gluu.oxauth.model.common.ResponseType;
+import org.gluu.oxauth.model.common.SubjectType;
+import org.gluu.oxauth.model.register.ApplicationType;
+import org.gluu.oxauth.model.util.StringUtils;
+import org.testng.annotations.Parameters;
+import org.testng.annotations.Test;
+
+/**
+ * Test cases for the multi step authorization code flow (HTTP)
+ *
+ * @author Yuriy Movchan
+ * @version November 29, 2017
+ */
+public class MultiStepAuthorizationCodeFlowHttpTest extends BaseTest {
+
+    /**
+     * Test for the complete multi-step Authorization Code Flow.
+     */
+    @Parameters({"userId", "userSecret", "redirectUris", "redirectUri", "sectorIdentifierUri"})
+    @Test
+    public void authorizationMultiStepCodeFlow(
+            final String userId, final String userSecret, final String redirectUris, final String redirectUri,
+            final String sectorIdentifierUri) throws Exception {
+        showTitle("authorizationMultiStepCodeFlow");
+
+        List<ResponseType> responseTypes = Arrays.asList(
+                ResponseType.CODE,
+                ResponseType.ID_TOKEN);
+        List<String> scopes = Arrays.asList("openid", "profile", "address", "email", "phone", "user_name");
+
+        // 1. Register client
+        RegisterResponse registerResponse = registerClient(redirectUris, responseTypes, scopes, sectorIdentifierUri);
+
+        String clientId = registerResponse.getClientId();
+        String clientSecret = registerResponse.getClientSecret();
+
+        // 2. Request authorization and receive the authorization code.
+        String nonce = UUID.randomUUID().toString();
+        AuthorizationResponse authorizationResponse = requestAuthorization(userId, userSecret, redirectUri, responseTypes, scopes, clientId, nonce, 2);
+
+        String authorizationCode = authorizationResponse.getCode();
+
+        assertNotNull(authorizationCode, "The authorization code is null");
+        assertNotNull(authorizationResponse.getScope(), "The authorization scope is null");
+        assertNotNull(authorizationResponse.getIdToken(), "The authorization id_token is null");
+
+        // 3. Request access token using the authorization code.
+        TokenRequest tokenRequest = new TokenRequest(GrantType.AUTHORIZATION_CODE);
+        tokenRequest.setCode(authorizationCode);
+        tokenRequest.setRedirectUri(redirectUri);
+        tokenRequest.setAuthUsername(clientId);
+        tokenRequest.setAuthPassword(clientSecret);
+        tokenRequest.setAuthenticationMethod(AuthenticationMethod.CLIENT_SECRET_BASIC);
+
+        TokenClient tokenClient1 = new TokenClient(tokenEndpoint);
+        tokenClient1.setRequest(tokenRequest);
+        TokenResponse tokenResponse1 = tokenClient1.exec();
+
+        showClient(tokenClient1);
+        assertEquals(tokenResponse1.getStatus(), 200, "Unexpected response code: " + tokenResponse1.getStatus());
+        assertNotNull(tokenResponse1.getEntity(), "The entity is null");
+        assertNotNull(tokenResponse1.getAccessToken(), "The access token is null");
+        assertNotNull(tokenResponse1.getExpiresIn(), "The expires in value is null");
+        assertNotNull(tokenResponse1.getTokenType(), "The token type is null");
+        assertNotNull(tokenResponse1.getRefreshToken(), "The refresh token is null");
+    }
+
+    private AuthorizationResponse requestAuthorization(final String userId, final String userSecret, final String redirectUri,
+                                                       List<ResponseType> responseTypes, List<String> scopes, String clientId, String nonce, int countAuthzSteps) {
+        String state = UUID.randomUUID().toString();
+
+        AuthorizationRequest authorizationRequest = new AuthorizationRequest(responseTypes, clientId, scopes, redirectUri, nonce);
+        authorizationRequest.setState(state);
+
+        AuthorizationResponse authorizationResponse = authenticateResourceOwnerAndGrantAccess(
+                authorizationEndpoint, authorizationRequest, userId, userSecret,
+                true, false, countAuthzSteps);
+
+        assertNotNull(authorizationResponse.getLocation(), "The location is null");
+        assertNotNull(authorizationResponse.getCode(), "The authorization code is null");
+        assertNotNull(authorizationResponse.getState(), "The state is null");
+        assertNotNull(authorizationResponse.getScope(), "The scope is null");
+        return authorizationResponse;
+    }
+
+    private RegisterResponse registerClient(
+            final String redirectUris, List<ResponseType> responseTypes, List<String> scopes, String sectorIdentifierUri) {
+        RegisterRequest registerRequest = new RegisterRequest(ApplicationType.WEB, "oxAuth test app",
+                StringUtils.spaceSeparatedToList(redirectUris));
+        registerRequest.setResponseTypes(responseTypes);
+        registerRequest.setScope(scopes);
+        registerRequest.setSubjectType(SubjectType.PAIRWISE);
+        registerRequest.setSectorIdentifierUri(sectorIdentifierUri);
+
+        RegisterClient registerClient = new RegisterClient(registrationEndpoint);
+        registerClient.setRequest(registerRequest);
+        RegisterResponse registerResponse = registerClient.exec();
+
+        showClient(registerClient);
+        assertEquals(registerResponse.getStatus(), 200, "Unexpected response code: " + registerResponse.getEntity());
+        assertNotNull(registerResponse.getClientId());
+        assertNotNull(registerResponse.getClientSecret());
+        assertNotNull(registerResponse.getRegistrationAccessToken());
+        assertNotNull(registerResponse.getClientIdIssuedAt());
+        assertNotNull(registerResponse.getClientSecretExpiresAt());
+        return registerResponse;
+    }
+
+}
\ No newline at end of file
diff --git a/oxAuth/Client/src/test/java/org/gluu/oxauth/ws/rs/MultivaluedClaims.java b/oxAuth/Client/src/test/java/org/gluu/oxauth/ws/rs/MultivaluedClaims.java
new file mode 100644
index 00000000..1a7e103c
--- /dev/null
+++ b/oxAuth/Client/src/test/java/org/gluu/oxauth/ws/rs/MultivaluedClaims.java
@@ -0,0 +1,3529 @@
+/*
+ * oxAuth is available under the MIT License (2008). See http://opensource.org/licenses/MIT for full text.
+ *
+ * Copyright (c) 2014, Gluu
+ */
+
+package org.gluu.oxauth.ws.rs;
+
+import static org.testng.Assert.assertEquals;
+import static org.testng.Assert.assertNotNull;
+import static org.testng.Assert.assertTrue;
+
+import java.security.PrivateKey;
+import java.util.Arrays;
+import java.util.List;
+import java.util.UUID;
+
+import org.gluu.oxauth.BaseTest;
+import org.gluu.oxauth.client.AuthorizationRequest;
+import org.gluu.oxauth.client.AuthorizationResponse;
+import org.gluu.oxauth.client.AuthorizeClient;
+import org.gluu.oxauth.client.JwkClient;
+import org.gluu.oxauth.client.JwkResponse;
+import org.gluu.oxauth.client.RegisterClient;
+import org.gluu.oxauth.client.RegisterRequest;
+import org.gluu.oxauth.client.RegisterResponse;
+import org.gluu.oxauth.client.UserInfoClient;
+import org.gluu.oxauth.client.UserInfoRequest;
+import org.gluu.oxauth.client.UserInfoResponse;
+import org.gluu.oxauth.client.model.authorize.Claim;
+import org.gluu.oxauth.client.model.authorize.ClaimValue;
+import org.gluu.oxauth.client.model.authorize.JwtAuthorizationRequest;
+import org.gluu.oxauth.model.common.ResponseType;
+import org.gluu.oxauth.model.crypto.AbstractCryptoProvider;
+import org.gluu.oxauth.model.crypto.OxAuthCryptoProvider;
+import org.gluu.oxauth.model.crypto.encryption.BlockEncryptionAlgorithm;
+import org.gluu.oxauth.model.crypto.encryption.KeyEncryptionAlgorithm;
+import org.gluu.oxauth.model.crypto.signature.ECDSAPublicKey;
+import org.gluu.oxauth.model.crypto.signature.RSAPublicKey;
+import org.gluu.oxauth.model.crypto.signature.SignatureAlgorithm;
+import org.gluu.oxauth.model.jwe.Jwe;
+import org.gluu.oxauth.model.jwk.Algorithm;
+import org.gluu.oxauth.model.jws.ECDSASigner;
+import org.gluu.oxauth.model.jws.HMACSigner;
+import org.gluu.oxauth.model.jws.PlainTextSignature;
+import org.gluu.oxauth.model.jws.RSASigner;
+import org.gluu.oxauth.model.jwt.Jwt;
+import org.gluu.oxauth.model.jwt.JwtClaimName;
+import org.gluu.oxauth.model.jwt.JwtHeaderName;
+import org.gluu.oxauth.model.register.ApplicationType;
+import org.gluu.oxauth.model.util.JwtUtil;
+import org.gluu.oxauth.model.util.StringUtils;
+import org.gluu.oxauth.model.util.Util;
+import org.json.JSONObject;
+import org.testng.annotations.Parameters;
+import org.testng.annotations.Test;
+
+/**
+ * Note: In order to run this tests, set legacyIdTokenClaims to true.
+ *
+ * @author Javier Rojas Blum
+ * @version March 8, 2019
+ */
+public class MultivaluedClaims extends BaseTest {
+
+    @Parameters({"userId", "userSecret", "redirectUri", "redirectUris", "sectorIdentifierUri"})
+    @Test
+    public void authorizationRequestWithMultivaluedClaimNone(
+            final String userId, final String userSecret, final String redirectUri, final String redirectUris,
+            final String sectorIdentifierUri) throws Exception {
+        showTitle("authorizationRequestWithMultivaluedClaimNone");
+
+        List<ResponseType> responseTypes = Arrays.asList(ResponseType.TOKEN, ResponseType.ID_TOKEN);
+
+        // 1. Register client
+        RegisterRequest registerRequest = new RegisterRequest(ApplicationType.WEB, "oxAuth test app",
+                StringUtils.spaceSeparatedToList(redirectUris));
+        registerRequest.setResponseTypes(responseTypes);
+        registerRequest.setSectorIdentifierUri(sectorIdentifierUri);
+        registerRequest.setIdTokenSignedResponseAlg(SignatureAlgorithm.NONE);
+        registerRequest.setUserInfoSignedResponseAlg(SignatureAlgorithm.NONE);
+        registerRequest.addCustomAttribute("oxIncludeClaimsInIdToken", "true");
+
+        RegisterClient registerClient = new RegisterClient(registrationEndpoint);
+        registerClient.setRequest(registerRequest);
+        RegisterResponse registerResponse = registerClient.exec();
+
+        showClient(registerClient);
+        assertEquals(registerResponse.getStatus(), 200, "Unexpected response code: " + registerResponse.getEntity());
+        assertNotNull(registerResponse.getClientId());
+        assertNotNull(registerResponse.getClientSecret());
+        assertNotNull(registerResponse.getRegistrationAccessToken());
+        assertNotNull(registerResponse.getClientIdIssuedAt());
+        assertNotNull(registerResponse.getClientSecretExpiresAt());
+
+        String clientId = registerResponse.getClientId();
+
+        // 2. Request authorization
+        List<String> scopes = Arrays.asList("openid", "test");
+        String nonce = UUID.randomUUID().toString();
+        String state = UUID.randomUUID().toString();
+
+        AuthorizationRequest authorizationRequest = new AuthorizationRequest(responseTypes, clientId, scopes, redirectUri, nonce);
+        authorizationRequest.setState(state);
+
+        AuthorizeClient authorizeClient = new AuthorizeClient(authorizationEndpoint);
+        authorizeClient.setRequest(authorizationRequest);
+
+        AuthorizationResponse authorizationResponse = authenticateResourceOwnerAndGrantAccess(
+                authorizationEndpoint, authorizationRequest, userId, userSecret);
+
+        assertNotNull(authorizationResponse.getLocation(), "The location is null");
+        assertNotNull(authorizationResponse.getAccessToken(), "The accessToken is null");
+        assertNotNull(authorizationResponse.getTokenType(), "The tokenType is null");
+        assertNotNull(authorizationResponse.getIdToken(), "The idToken is null");
+        assertNotNull(authorizationResponse.getState(), "The state is null");
+
+        String idToken = authorizationResponse.getIdToken();
+        String accessToken = authorizationResponse.getAccessToken();
+
+        // 3. Validate id_token
+        Jwt jwt = Jwt.parse(idToken);
+        assertNotNull(jwt.getHeader().getClaimAsString(JwtHeaderName.TYPE));
+        assertNotNull(jwt.getHeader().getClaimAsString(JwtHeaderName.ALGORITHM));
+        assertNotNull(jwt.getClaims().getClaimAsString(JwtClaimName.ISSUER));
+        assertNotNull(jwt.getClaims().getClaimAsString(JwtClaimName.AUDIENCE));
+        assertNotNull(jwt.getClaims().getClaimAsString(JwtClaimName.EXPIRATION_TIME));
+        assertNotNull(jwt.getClaims().getClaimAsString(JwtClaimName.ISSUED_AT));
+        assertNotNull(jwt.getClaims().getClaimAsString(JwtClaimName.SUBJECT_IDENTIFIER));
+        assertNotNull(jwt.getClaims().getClaimAsString(JwtClaimName.ACCESS_TOKEN_HASH));
+        assertNotNull(jwt.getClaims().getClaimAsString(JwtClaimName.AUTHENTICATION_TIME));
+        assertNotNull(jwt.getClaims().getClaimAsStringList("member_of"));
+        assertTrue(jwt.getClaims().getClaimAsStringList("member_of").size() > 1);
+
+        PlainTextSignature signer = new PlainTextSignature();
+        assertTrue(signer.validate(jwt));
+
+        // 4. Request user info
+        UserInfoRequest userInfoRequest = new UserInfoRequest(accessToken);
+        UserInfoClient userInfoClient = new UserInfoClient(userInfoEndpoint);
+        userInfoClient.setRequest(userInfoRequest);
+        UserInfoResponse userInfoResponse = userInfoClient.exec();
+
+        showClient(userInfoClient);
+        assertEquals(userInfoResponse.getStatus(), 200, "Unexpected response code: " + userInfoResponse.getStatus());
+        assertNotNull(userInfoResponse.getClaim(JwtClaimName.SUBJECT_IDENTIFIER));
+        assertNotNull(userInfoResponse.getClaim(JwtClaimName.AUDIENCE));
+        assertNotNull(userInfoResponse.getClaim(JwtClaimName.ISSUER));
+        assertNotNull(userInfoResponse.getClaim("member_of"));
+        assertTrue(userInfoResponse.getClaim("member_of").size() > 1);
+    }
+
+    @Parameters({"userId", "userSecret", "redirectUri", "redirectUris", "sectorIdentifierUri"})
+    @Test
+    public void authorizationRequestWithMultivaluedClaimHS256(
+            final String userId, final String userSecret, final String redirectUri, final String redirectUris,
+            final String sectorIdentifierUri) throws Exception {
+        showTitle("authorizationRequestWithMultivaluedClaimHS256");
+
+        List<ResponseType> responseTypes = Arrays.asList(ResponseType.TOKEN, ResponseType.ID_TOKEN);
+
+        // 1. Register client
+        RegisterRequest registerRequest = new RegisterRequest(ApplicationType.WEB, "oxAuth test app",
+                StringUtils.spaceSeparatedToList(redirectUris));
+        registerRequest.setResponseTypes(responseTypes);
+        registerRequest.setSectorIdentifierUri(sectorIdentifierUri);
+        registerRequest.setIdTokenSignedResponseAlg(SignatureAlgorithm.HS256);
+        registerRequest.setUserInfoSignedResponseAlg(SignatureAlgorithm.HS256);
+        registerRequest.addCustomAttribute("oxIncludeClaimsInIdToken", "true");
+
+        RegisterClient registerClient = new RegisterClient(registrationEndpoint);
+        registerClient.setRequest(registerRequest);
+        RegisterResponse registerResponse = registerClient.exec();
+
+        showClient(registerClient);
+        assertEquals(registerResponse.getStatus(), 200, "Unexpected response code: " + registerResponse.getEntity());
+        assertNotNull(registerResponse.getClientId());
+        assertNotNull(registerResponse.getClientSecret());
+        assertNotNull(registerResponse.getRegistrationAccessToken());
+        assertNotNull(registerResponse.getClientIdIssuedAt());
+        assertNotNull(registerResponse.getClientSecretExpiresAt());
+
+        String clientId = registerResponse.getClientId();
+        String clientSecret = registerResponse.getClientSecret();
+
+        // 2. Request authorization
+        List<String> scopes = Arrays.asList("openid", "test");
+        String nonce = UUID.randomUUID().toString();
+        String state = UUID.randomUUID().toString();
+
+        AuthorizationRequest authorizationRequest = new AuthorizationRequest(responseTypes, clientId, scopes, redirectUri, nonce);
+        authorizationRequest.setState(state);
+
+        AuthorizeClient authorizeClient = new AuthorizeClient(authorizationEndpoint);
+        authorizeClient.setRequest(authorizationRequest);
+
+        AuthorizationResponse authorizationResponse = authenticateResourceOwnerAndGrantAccess(
+                authorizationEndpoint, authorizationRequest, userId, userSecret);
+
+        assertNotNull(authorizationResponse.getLocation(), "The location is null");
+        assertNotNull(authorizationResponse.getAccessToken(), "The accessToken is null");
+        assertNotNull(authorizationResponse.getTokenType(), "The tokenType is null");
+        assertNotNull(authorizationResponse.getIdToken(), "The idToken is null");
+        assertNotNull(authorizationResponse.getState(), "The state is null");
+
+        String idToken = authorizationResponse.getIdToken();
+        String accessToken = authorizationResponse.getAccessToken();
+
+        // 3. Validate id_token
+        Jwt jwt = Jwt.parse(idToken);
+        assertNotNull(jwt.getHeader().getClaimAsString(JwtHeaderName.TYPE));
+        assertNotNull(jwt.getHeader().getClaimAsString(JwtHeaderName.ALGORITHM));
+        assertNotNull(jwt.getClaims().getClaimAsString(JwtClaimName.ISSUER));
+        assertNotNull(jwt.getClaims().getClaimAsString(JwtClaimName.AUDIENCE));
+        assertNotNull(jwt.getClaims().getClaimAsString(JwtClaimName.EXPIRATION_TIME));
+        assertNotNull(jwt.getClaims().getClaimAsString(JwtClaimName.ISSUED_AT));
+        assertNotNull(jwt.getClaims().getClaimAsString(JwtClaimName.SUBJECT_IDENTIFIER));
+        assertNotNull(jwt.getClaims().getClaimAsString(JwtClaimName.ACCESS_TOKEN_HASH));
+        assertNotNull(jwt.getClaims().getClaimAsString(JwtClaimName.AUTHENTICATION_TIME));
+        assertNotNull(jwt.getClaims().getClaimAsStringList("member_of"));
+        assertTrue(jwt.getClaims().getClaimAsStringList("member_of").size() > 1);
+
+        HMACSigner hmacSigner = new HMACSigner(SignatureAlgorithm.HS256, clientSecret);
+        assertTrue(hmacSigner.validate(jwt));
+
+        // 4. Request user info
+        UserInfoRequest userInfoRequest = new UserInfoRequest(accessToken);
+        UserInfoClient userInfoClient = new UserInfoClient(userInfoEndpoint);
+        userInfoClient.setRequest(userInfoRequest);
+        userInfoClient.setSharedKey(clientSecret);
+        UserInfoResponse userInfoResponse = userInfoClient.exec();
+
+        showClient(userInfoClient);
+        assertEquals(userInfoResponse.getStatus(), 200, "Unexpected response code: " + userInfoResponse.getStatus());
+        assertNotNull(userInfoResponse.getClaim(JwtClaimName.SUBJECT_IDENTIFIER));
+        assertNotNull(userInfoResponse.getClaim("member_of"));
+        assertTrue(userInfoResponse.getClaim("member_of").size() > 1);
+    }
+
+    @Parameters({"userId", "userSecret", "redirectUri", "redirectUris", "sectorIdentifierUri"})
+    @Test
+    public void authorizationRequestWithMultivaluedClaimHS384(
+            final String userId, final String userSecret, final String redirectUri, final String redirectUris,
+            final String sectorIdentifierUri) throws Exception {
+        showTitle("authorizationRequestWithMultivaluedClaimHS384");
+
+        List<ResponseType> responseTypes = Arrays.asList(ResponseType.TOKEN, ResponseType.ID_TOKEN);
+
+        // 1. Register client
+        RegisterRequest registerRequest = new RegisterRequest(ApplicationType.WEB, "oxAuth test app",
+                StringUtils.spaceSeparatedToList(redirectUris));
+        registerRequest.setResponseTypes(responseTypes);
+        registerRequest.setSectorIdentifierUri(sectorIdentifierUri);
+        registerRequest.setIdTokenSignedResponseAlg(SignatureAlgorithm.HS384);
+        registerRequest.setUserInfoSignedResponseAlg(SignatureAlgorithm.HS384);
+        registerRequest.addCustomAttribute("oxIncludeClaimsInIdToken", "true");
+
+        RegisterClient registerClient = new RegisterClient(registrationEndpoint);
+        registerClient.setRequest(registerRequest);
+        RegisterResponse registerResponse = registerClient.exec();
+
+        showClient(registerClient);
+        assertEquals(registerResponse.getStatus(), 200, "Unexpected response code: " + registerResponse.getEntity());
+        assertNotNull(registerResponse.getClientId());
+        assertNotNull(registerResponse.getClientSecret());
+        assertNotNull(registerResponse.getRegistrationAccessToken());
+        assertNotNull(registerResponse.getClientIdIssuedAt());
+        assertNotNull(registerResponse.getClientSecretExpiresAt());
+
+        String clientId = registerResponse.getClientId();
+        String clientSecret = registerResponse.getClientSecret();
+
+        // 2. Request authorization
+        List<String> scopes = Arrays.asList("openid", "test");
+        String nonce = UUID.randomUUID().toString();
+        String state = UUID.randomUUID().toString();
+
+        AuthorizationRequest authorizationRequest = new AuthorizationRequest(responseTypes, clientId, scopes, redirectUri, nonce);
+        authorizationRequest.setState(state);
+
+        AuthorizeClient authorizeClient = new AuthorizeClient(authorizationEndpoint);
+        authorizeClient.setRequest(authorizationRequest);
+
+        AuthorizationResponse authorizationResponse = authenticateResourceOwnerAndGrantAccess(
+                authorizationEndpoint, authorizationRequest, userId, userSecret);
+
+        assertNotNull(authorizationResponse.getLocation(), "The location is null");
+        assertNotNull(authorizationResponse.getAccessToken(), "The accessToken is null");
+        assertNotNull(authorizationResponse.getTokenType(), "The tokenType is null");
+        assertNotNull(authorizationResponse.getIdToken(), "The idToken is null");
+        assertNotNull(authorizationResponse.getState(), "The state is null");
+
+        String idToken = authorizationResponse.getIdToken();
+        String accessToken = authorizationResponse.getAccessToken();
+
+        // 3. Validate id_token
+        Jwt jwt = Jwt.parse(idToken);
+        assertNotNull(jwt.getHeader().getClaimAsString(JwtHeaderName.TYPE));
+        assertNotNull(jwt.getHeader().getClaimAsString(JwtHeaderName.ALGORITHM));
+        assertNotNull(jwt.getClaims().getClaimAsString(JwtClaimName.ISSUER));
+        assertNotNull(jwt.getClaims().getClaimAsString(JwtClaimName.AUDIENCE));
+        assertNotNull(jwt.getClaims().getClaimAsString(JwtClaimName.EXPIRATION_TIME));
+        assertNotNull(jwt.getClaims().getClaimAsString(JwtClaimName.ISSUED_AT));
+        assertNotNull(jwt.getClaims().getClaimAsString(JwtClaimName.SUBJECT_IDENTIFIER));
+        assertNotNull(jwt.getClaims().getClaimAsString(JwtClaimName.ACCESS_TOKEN_HASH));
+        assertNotNull(jwt.getClaims().getClaimAsString(JwtClaimName.AUTHENTICATION_TIME));
+        assertNotNull(jwt.getClaims().getClaimAsStringList("member_of"));
+        assertTrue(jwt.getClaims().getClaimAsStringList("member_of").size() > 1);
+
+        HMACSigner hmacSigner = new HMACSigner(SignatureAlgorithm.HS384, clientSecret);
+        assertTrue(hmacSigner.validate(jwt));
+
+        // 4. Request user info
+        UserInfoRequest userInfoRequest = new UserInfoRequest(accessToken);
+        UserInfoClient userInfoClient = new UserInfoClient(userInfoEndpoint);
+        userInfoClient.setRequest(userInfoRequest);
+        userInfoClient.setSharedKey(clientSecret);
+        UserInfoResponse userInfoResponse = userInfoClient.exec();
+
+        showClient(userInfoClient);
+        assertEquals(userInfoResponse.getStatus(), 200, "Unexpected response code: " + userInfoResponse.getStatus());
+        assertNotNull(userInfoResponse.getClaim(JwtClaimName.SUBJECT_IDENTIFIER));
+        assertNotNull(userInfoResponse.getClaim("member_of"));
+        assertTrue(userInfoResponse.getClaim("member_of").size() > 1);
+    }
+
+    @Parameters({"userId", "userSecret", "redirectUri", "redirectUris", "sectorIdentifierUri"})
+    @Test
+    public void authorizationRequestWithMultivaluedClaimHS512(
+            final String userId, final String userSecret, final String redirectUri, final String redirectUris,
+            final String sectorIdentifierUri) throws Exception {
+        showTitle("authorizationRequestWithMultivaluedClaimHS512");
+
+        List<ResponseType> responseTypes = Arrays.asList(ResponseType.TOKEN, ResponseType.ID_TOKEN);
+
+        // 1. Register client
+        RegisterRequest registerRequest = new RegisterRequest(ApplicationType.WEB, "oxAuth test app",
+                StringUtils.spaceSeparatedToList(redirectUris));
+        registerRequest.setResponseTypes(responseTypes);
+        registerRequest.setSectorIdentifierUri(sectorIdentifierUri);
+        registerRequest.setIdTokenSignedResponseAlg(SignatureAlgorithm.HS512);
+        registerRequest.setUserInfoSignedResponseAlg(SignatureAlgorithm.HS512);
+        registerRequest.addCustomAttribute("oxIncludeClaimsInIdToken", "true");
+
+        RegisterClient registerClient = new RegisterClient(registrationEndpoint);
+        registerClient.setRequest(registerRequest);
+        RegisterResponse registerResponse = registerClient.exec();
+
+        showClient(registerClient);
+        assertEquals(registerResponse.getStatus(), 200, "Unexpected response code: " + registerResponse.getEntity());
+        assertNotNull(registerResponse.getClientId());
+        assertNotNull(registerResponse.getClientSecret());
+        assertNotNull(registerResponse.getRegistrationAccessToken());
+        assertNotNull(registerResponse.getClientIdIssuedAt());
+        assertNotNull(registerResponse.getClientSecretExpiresAt());
+
+        String clientId = registerResponse.getClientId();
+        String clientSecret = registerResponse.getClientSecret();
+
+        // 2. Request authorization
+        List<String> scopes = Arrays.asList("openid", "test");
+        String nonce = UUID.randomUUID().toString();
+        String state = UUID.randomUUID().toString();
+
+        AuthorizationRequest authorizationRequest = new AuthorizationRequest(responseTypes, clientId, scopes, redirectUri, nonce);
+        authorizationRequest.setState(state);
+
+        AuthorizeClient authorizeClient = new AuthorizeClient(authorizationEndpoint);
+        authorizeClient.setRequest(authorizationRequest);
+
+        AuthorizationResponse authorizationResponse = authenticateResourceOwnerAndGrantAccess(
+                authorizationEndpoint, authorizationRequest, userId, userSecret);
+
+        assertNotNull(authorizationResponse.getLocation(), "The location is null");
+        assertNotNull(authorizationResponse.getAccessToken(), "The accessToken is null");
+        assertNotNull(authorizationResponse.getTokenType(), "The tokenType is null");
+        assertNotNull(authorizationResponse.getIdToken(), "The idToken is null");
+        assertNotNull(authorizationResponse.getState(), "The state is null");
+
+        String idToken = authorizationResponse.getIdToken();
+        String accessToken = authorizationResponse.getAccessToken();
+
+        // 3. Validate id_token
+        Jwt jwt = Jwt.parse(idToken);
+        assertNotNull(jwt.getHeader().getClaimAsString(JwtHeaderName.TYPE));
+        assertNotNull(jwt.getHeader().getClaimAsString(JwtHeaderName.ALGORITHM));
+        assertNotNull(jwt.getClaims().getClaimAsString(JwtClaimName.ISSUER));
+        assertNotNull(jwt.getClaims().getClaimAsString(JwtClaimName.AUDIENCE));
+        assertNotNull(jwt.getClaims().getClaimAsString(JwtClaimName.EXPIRATION_TIME));
+        assertNotNull(jwt.getClaims().getClaimAsString(JwtClaimName.ISSUED_AT));
+        assertNotNull(jwt.getClaims().getClaimAsString(JwtClaimName.SUBJECT_IDENTIFIER));
+        assertNotNull(jwt.getClaims().getClaimAsString(JwtClaimName.ACCESS_TOKEN_HASH));
+        assertNotNull(jwt.getClaims().getClaimAsString(JwtClaimName.AUTHENTICATION_TIME));
+        assertNotNull(jwt.getClaims().getClaimAsStringList("member_of"));
+        assertTrue(jwt.getClaims().getClaimAsStringList("member_of").size() > 1);
+
+        HMACSigner hmacSigner = new HMACSigner(SignatureAlgorithm.HS512, clientSecret);
+        assertTrue(hmacSigner.validate(jwt));
+
+        // 4. Request user info
+        UserInfoRequest userInfoRequest = new UserInfoRequest(accessToken);
+        UserInfoClient userInfoClient = new UserInfoClient(userInfoEndpoint);
+        userInfoClient.setRequest(userInfoRequest);
+        userInfoClient.setSharedKey(clientSecret);
+        UserInfoResponse userInfoResponse = userInfoClient.exec();
+
+        showClient(userInfoClient);
+        assertEquals(userInfoResponse.getStatus(), 200, "Unexpected response code: " + userInfoResponse.getStatus());
+        assertNotNull(userInfoResponse.getClaim(JwtClaimName.SUBJECT_IDENTIFIER));
+        assertNotNull(userInfoResponse.getClaim("member_of"));
+        assertTrue(userInfoResponse.getClaim("member_of").size() > 1);
+    }
+
+    @Parameters({"userId", "userSecret", "redirectUri", "redirectUris", "sectorIdentifierUri"})
+    @Test
+    public void authorizationRequestWithMultivaluedClaimRS256(
+            final String userId, final String userSecret, final String redirectUri, final String redirectUris,
+            final String sectorIdentifierUri) throws Exception {
+        showTitle("authorizationRequestWithMultivaluedClaimRS256");
+
+        List<ResponseType> responseTypes = Arrays.asList(ResponseType.TOKEN, ResponseType.ID_TOKEN);
+
+        // 1. Register client
+        RegisterRequest registerRequest = new RegisterRequest(ApplicationType.WEB, "oxAuth test app",
+                StringUtils.spaceSeparatedToList(redirectUris));
+        registerRequest.setResponseTypes(responseTypes);
+        registerRequest.setSectorIdentifierUri(sectorIdentifierUri);
+        registerRequest.setUserInfoSignedResponseAlg(SignatureAlgorithm.RS256);
+        registerRequest.addCustomAttribute("oxIncludeClaimsInIdToken", "true");
+
+        RegisterClient registerClient = new RegisterClient(registrationEndpoint);
+        registerClient.setRequest(registerRequest);
+        RegisterResponse registerResponse = registerClient.exec();
+
+        showClient(registerClient);
+        assertEquals(registerResponse.getStatus(), 200, "Unexpected response code: " + registerResponse.getEntity());
+        assertNotNull(registerResponse.getClientId());
+        assertNotNull(registerResponse.getClientSecret());
+        assertNotNull(registerResponse.getRegistrationAccessToken());
+        assertNotNull(registerResponse.getClientIdIssuedAt());
+        assertNotNull(registerResponse.getClientSecretExpiresAt());
+
+        String clientId = registerResponse.getClientId();
+
+        // 2. Request authorization
+        List<String> scopes = Arrays.asList("openid", "test");
+        String nonce = UUID.randomUUID().toString();
+        String state = UUID.randomUUID().toString();
+
+        AuthorizationRequest authorizationRequest = new AuthorizationRequest(responseTypes, clientId, scopes, redirectUri, nonce);
+        authorizationRequest.setState(state);
+
+        AuthorizeClient authorizeClient = new AuthorizeClient(authorizationEndpoint);
+        authorizeClient.setRequest(authorizationRequest);
+
+        AuthorizationResponse authorizationResponse = authenticateResourceOwnerAndGrantAccess(
+                authorizationEndpoint, authorizationRequest, userId, userSecret);
+
+        assertNotNull(authorizationResponse.getLocation(), "The location is null");
+        assertNotNull(authorizationResponse.getAccessToken(), "The accessToken is null");
+        assertNotNull(authorizationResponse.getTokenType(), "The tokenType is null");
+        assertNotNull(authorizationResponse.getIdToken(), "The idToken is null");
+        assertNotNull(authorizationResponse.getState(), "The state is null");
+
+        String idToken = authorizationResponse.getIdToken();
+        String accessToken = authorizationResponse.getAccessToken();
+
+        // 3. Validate id_token
+        Jwt jwt = Jwt.parse(idToken);
+        assertNotNull(jwt.getHeader().getClaimAsString(JwtHeaderName.TYPE));
+        assertNotNull(jwt.getHeader().getClaimAsString(JwtHeaderName.ALGORITHM));
+        assertNotNull(jwt.getClaims().getClaimAsString(JwtClaimName.ISSUER));
+        assertNotNull(jwt.getClaims().getClaimAsString(JwtClaimName.AUDIENCE));
+        assertNotNull(jwt.getClaims().getClaimAsString(JwtClaimName.EXPIRATION_TIME));
+        assertNotNull(jwt.getClaims().getClaimAsString(JwtClaimName.ISSUED_AT));
+        assertNotNull(jwt.getClaims().getClaimAsString(JwtClaimName.SUBJECT_IDENTIFIER));
+        assertNotNull(jwt.getClaims().getClaimAsString(JwtClaimName.ACCESS_TOKEN_HASH));
+        assertNotNull(jwt.getClaims().getClaimAsString(JwtClaimName.AUTHENTICATION_TIME));
+        assertNotNull(jwt.getClaims().getClaimAsStringList("member_of"));
+        assertTrue(jwt.getClaims().getClaimAsStringList("member_of").size() > 1);
+
+        RSAPublicKey publicKey = JwkClient.getRSAPublicKey(
+                jwksUri,
+                jwt.getHeader().getClaimAsString(JwtHeaderName.KEY_ID));
+        RSASigner rsaSigner = new RSASigner(SignatureAlgorithm.RS256, publicKey);
+
+        assertTrue(rsaSigner.validate(jwt));
+
+        // 4. Request user info
+        UserInfoRequest userInfoRequest = new UserInfoRequest(accessToken);
+        UserInfoClient userInfoClient = new UserInfoClient(userInfoEndpoint);
+        userInfoClient.setRequest(userInfoRequest);
+        userInfoClient.setJwksUri(jwksUri);
+        UserInfoResponse userInfoResponse = userInfoClient.exec();
+
+        showClient(userInfoClient);
+        assertEquals(userInfoResponse.getStatus(), 200, "Unexpected response code: " + userInfoResponse.getStatus());
+        assertNotNull(userInfoResponse.getClaim(JwtClaimName.SUBJECT_IDENTIFIER));
+        assertNotNull(userInfoResponse.getClaim("member_of"));
+        assertTrue(userInfoResponse.getClaim("member_of").size() > 1);
+    }
+
+    @Parameters({"userId", "userSecret", "redirectUri", "redirectUris", "sectorIdentifierUri"})
+    @Test
+    public void authorizationRequestWithMultivaluedClaimRS384(
+            final String userId, final String userSecret, final String redirectUri, final String redirectUris,
+            final String sectorIdentifierUri) throws Exception {
+        showTitle("authorizationRequestWithMultivaluedClaimRS384");
+
+        List<ResponseType> responseTypes = Arrays.asList(ResponseType.TOKEN, ResponseType.ID_TOKEN);
+
+        // 1. Register client
+        RegisterRequest registerRequest = new RegisterRequest(ApplicationType.WEB, "oxAuth test app",
+                StringUtils.spaceSeparatedToList(redirectUris));
+        registerRequest.setResponseTypes(responseTypes);
+        registerRequest.setSectorIdentifierUri(sectorIdentifierUri);
+        registerRequest.setIdTokenSignedResponseAlg(SignatureAlgorithm.RS384);
+        registerRequest.setUserInfoSignedResponseAlg(SignatureAlgorithm.RS384);
+        registerRequest.addCustomAttribute("oxIncludeClaimsInIdToken", "true");
+
+        RegisterClient registerClient = new RegisterClient(registrationEndpoint);
+        registerClient.setRequest(registerRequest);
+        RegisterResponse registerResponse = registerClient.exec();
+
+        showClient(registerClient);
+        assertEquals(registerResponse.getStatus(), 200, "Unexpected response code: " + registerResponse.getEntity());
+        assertNotNull(registerResponse.getClientId());
+        assertNotNull(registerResponse.getClientSecret());
+        assertNotNull(registerResponse.getRegistrationAccessToken());
+        assertNotNull(registerResponse.getClientIdIssuedAt());
+        assertNotNull(registerResponse.getClientSecretExpiresAt());
+
+        String clientId = registerResponse.getClientId();
+
+        // 2. Request authorization
+        List<String> scopes = Arrays.asList("openid", "test");
+        String nonce = UUID.randomUUID().toString();
+        String state = UUID.randomUUID().toString();
+
+        AuthorizationRequest authorizationRequest = new AuthorizationRequest(responseTypes, clientId, scopes, redirectUri, nonce);
+        authorizationRequest.setState(state);
+
+        AuthorizeClient authorizeClient = new AuthorizeClient(authorizationEndpoint);
+        authorizeClient.setRequest(authorizationRequest);
+
+        AuthorizationResponse authorizationResponse = authenticateResourceOwnerAndGrantAccess(
+                authorizationEndpoint, authorizationRequest, userId, userSecret);
+
+        assertNotNull(authorizationResponse.getLocation(), "The location is null");
+        assertNotNull(authorizationResponse.getAccessToken(), "The accessToken is null");
+        assertNotNull(authorizationResponse.getTokenType(), "The tokenType is null");
+        assertNotNull(authorizationResponse.getIdToken(), "The idToken is null");
+        assertNotNull(authorizationResponse.getState(), "The state is null");
+
+        String idToken = authorizationResponse.getIdToken();
+        String accessToken = authorizationResponse.getAccessToken();
+
+        // 3. Validate id_token
+        Jwt jwt = Jwt.parse(idToken);
+        assertNotNull(jwt.getHeader().getClaimAsString(JwtHeaderName.TYPE));
+        assertNotNull(jwt.getHeader().getClaimAsString(JwtHeaderName.ALGORITHM));
+        assertNotNull(jwt.getClaims().getClaimAsString(JwtClaimName.ISSUER));
+        assertNotNull(jwt.getClaims().getClaimAsString(JwtClaimName.AUDIENCE));
+        assertNotNull(jwt.getClaims().getClaimAsString(JwtClaimName.EXPIRATION_TIME));
+        assertNotNull(jwt.getClaims().getClaimAsString(JwtClaimName.ISSUED_AT));
+        assertNotNull(jwt.getClaims().getClaimAsString(JwtClaimName.SUBJECT_IDENTIFIER));
+        assertNotNull(jwt.getClaims().getClaimAsString(JwtClaimName.ACCESS_TOKEN_HASH));
+        assertNotNull(jwt.getClaims().getClaimAsString(JwtClaimName.AUTHENTICATION_TIME));
+        assertNotNull(jwt.getClaims().getClaimAsStringList("member_of"));
+        assertTrue(jwt.getClaims().getClaimAsStringList("member_of").size() > 1);
+
+        RSAPublicKey publicKey = JwkClient.getRSAPublicKey(
+                jwksUri,
+                jwt.getHeader().getClaimAsString(JwtHeaderName.KEY_ID));
+        RSASigner rsaSigner = new RSASigner(SignatureAlgorithm.RS384, publicKey);
+
+        assertTrue(rsaSigner.validate(jwt));
+
+        // 4. Request user info
+        UserInfoRequest userInfoRequest = new UserInfoRequest(accessToken);
+        UserInfoClient userInfoClient = new UserInfoClient(userInfoEndpoint);
+        userInfoClient.setRequest(userInfoRequest);
+        userInfoClient.setJwksUri(jwksUri);
+        UserInfoResponse userInfoResponse = userInfoClient.exec();
+
+        showClient(userInfoClient);
+        assertEquals(userInfoResponse.getStatus(), 200, "Unexpected response code: " + userInfoResponse.getStatus());
+        assertNotNull(userInfoResponse.getClaim(JwtClaimName.SUBJECT_IDENTIFIER));
+        assertNotNull(userInfoResponse.getClaim("member_of"));
+        assertTrue(userInfoResponse.getClaim("member_of").size() > 1);
+    }
+
+    @Parameters({"userId", "userSecret", "redirectUri", "redirectUris", "sectorIdentifierUri"})
+    @Test
+    public void authorizationRequestWithMultivaluedClaimRS512(
+            final String userId, final String userSecret, final String redirectUri, final String redirectUris,
+            final String sectorIdentifierUri) throws Exception {
+        showTitle("authorizationRequestWithMultivaluedClaimRS512");
+
+        List<ResponseType> responseTypes = Arrays.asList(ResponseType.TOKEN, ResponseType.ID_TOKEN);
+
+        // 1. Register client
+        RegisterRequest registerRequest = new RegisterRequest(ApplicationType.WEB, "oxAuth test app",
+                StringUtils.spaceSeparatedToList(redirectUris));
+        registerRequest.setResponseTypes(responseTypes);
+        registerRequest.setSectorIdentifierUri(sectorIdentifierUri);
+        registerRequest.setIdTokenSignedResponseAlg(SignatureAlgorithm.RS512);
+        registerRequest.setUserInfoSignedResponseAlg(SignatureAlgorithm.RS512);
+        registerRequest.addCustomAttribute("oxIncludeClaimsInIdToken", "true");
+
+        RegisterClient registerClient = new RegisterClient(registrationEndpoint);
+        registerClient.setRequest(registerRequest);
+        RegisterResponse registerResponse = registerClient.exec();
+
+        showClient(registerClient);
+        assertEquals(registerResponse.getStatus(), 200, "Unexpected response code: " + registerResponse.getEntity());
+        assertNotNull(registerResponse.getClientId());
+        assertNotNull(registerResponse.getClientSecret());
+        assertNotNull(registerResponse.getRegistrationAccessToken());
+        assertNotNull(registerResponse.getClientIdIssuedAt());
+        assertNotNull(registerResponse.getClientSecretExpiresAt());
+
+        String clientId = registerResponse.getClientId();
+
+        // 2. Request authorization
+        List<String> scopes = Arrays.asList("openid", "test");
+        String nonce = UUID.randomUUID().toString();
+        String state = UUID.randomUUID().toString();
+
+        AuthorizationRequest authorizationRequest = new AuthorizationRequest(responseTypes, clientId, scopes, redirectUri, nonce);
+        authorizationRequest.setState(state);
+
+        AuthorizeClient authorizeClient = new AuthorizeClient(authorizationEndpoint);
+        authorizeClient.setRequest(authorizationRequest);
+
+        AuthorizationResponse authorizationResponse = authenticateResourceOwnerAndGrantAccess(
+                authorizationEndpoint, authorizationRequest, userId, userSecret);
+
+        assertNotNull(authorizationResponse.getLocation(), "The location is null");
+        assertNotNull(authorizationResponse.getAccessToken(), "The accessToken is null");
+        assertNotNull(authorizationResponse.getTokenType(), "The tokenType is null");
+        assertNotNull(authorizationResponse.getIdToken(), "The idToken is null");
+        assertNotNull(authorizationResponse.getState(), "The state is null");
+
+        String idToken = authorizationResponse.getIdToken();
+        String accessToken = authorizationResponse.getAccessToken();
+
+        // 3. Validate id_token
+        Jwt jwt = Jwt.parse(idToken);
+        assertNotNull(jwt.getHeader().getClaimAsString(JwtHeaderName.TYPE));
+        assertNotNull(jwt.getHeader().getClaimAsString(JwtHeaderName.ALGORITHM));
+        assertNotNull(jwt.getClaims().getClaimAsString(JwtClaimName.ISSUER));
+        assertNotNull(jwt.getClaims().getClaimAsString(JwtClaimName.AUDIENCE));
+        assertNotNull(jwt.getClaims().getClaimAsString(JwtClaimName.EXPIRATION_TIME));
+        assertNotNull(jwt.getClaims().getClaimAsString(JwtClaimName.ISSUED_AT));
+        assertNotNull(jwt.getClaims().getClaimAsString(JwtClaimName.SUBJECT_IDENTIFIER));
+        assertNotNull(jwt.getClaims().getClaimAsString(JwtClaimName.ACCESS_TOKEN_HASH));
+        assertNotNull(jwt.getClaims().getClaimAsString(JwtClaimName.AUTHENTICATION_TIME));
+        assertNotNull(jwt.getClaims().getClaimAsStringList("member_of"));
+        assertTrue(jwt.getClaims().getClaimAsStringList("member_of").size() > 1);
+
+        RSAPublicKey publicKey = JwkClient.getRSAPublicKey(
+                jwksUri,
+                jwt.getHeader().getClaimAsString(JwtHeaderName.KEY_ID));
+        RSASigner rsaSigner = new RSASigner(SignatureAlgorithm.RS512, publicKey);
+
+        assertTrue(rsaSigner.validate(jwt));
+
+        // 4. Request user info
+        UserInfoRequest userInfoRequest = new UserInfoRequest(accessToken);
+        UserInfoClient userInfoClient = new UserInfoClient(userInfoEndpoint);
+        userInfoClient.setRequest(userInfoRequest);
+        userInfoClient.setJwksUri(jwksUri);
+        UserInfoResponse userInfoResponse = userInfoClient.exec();
+
+        showClient(userInfoClient);
+        assertEquals(userInfoResponse.getStatus(), 200, "Unexpected response code: " + userInfoResponse.getStatus());
+        assertNotNull(userInfoResponse.getClaim(JwtClaimName.SUBJECT_IDENTIFIER));
+        assertNotNull(userInfoResponse.getClaim("member_of"));
+        assertTrue(userInfoResponse.getClaim("member_of").size() > 1);
+    }
+
+    @Parameters({"userId", "userSecret", "redirectUri", "redirectUris", "sectorIdentifierUri"})
+    @Test
+    public void authorizationRequestWithMultivaluedClaimES256(
+            final String userId, final String userSecret, final String redirectUri, final String redirectUris,
+            final String sectorIdentifierUri) throws Exception {
+        showTitle("authorizationRequestWithMultivaluedClaimES256");
+
+        List<ResponseType> responseTypes = Arrays.asList(ResponseType.TOKEN, ResponseType.ID_TOKEN);
+
+        // 1. Register client
+        RegisterRequest registerRequest = new RegisterRequest(ApplicationType.WEB, "oxAuth test app",
+                StringUtils.spaceSeparatedToList(redirectUris));
+        registerRequest.setResponseTypes(responseTypes);
+        registerRequest.setSectorIdentifierUri(sectorIdentifierUri);
+        registerRequest.setIdTokenSignedResponseAlg(SignatureAlgorithm.ES256);
+        registerRequest.setUserInfoSignedResponseAlg(SignatureAlgorithm.ES256);
+        registerRequest.addCustomAttribute("oxIncludeClaimsInIdToken", "true");
+
+        RegisterClient registerClient = new RegisterClient(registrationEndpoint);
+        registerClient.setRequest(registerRequest);
+        RegisterResponse registerResponse = registerClient.exec();
+
+        showClient(registerClient);
+        assertEquals(registerResponse.getStatus(), 200, "Unexpected response code: " + registerResponse.getEntity());
+        assertNotNull(registerResponse.getClientId());
+        assertNotNull(registerResponse.getClientSecret());
+        assertNotNull(registerResponse.getRegistrationAccessToken());
+        assertNotNull(registerResponse.getClientIdIssuedAt());
+        assertNotNull(registerResponse.getClientSecretExpiresAt());
+
+        String clientId = registerResponse.getClientId();
+
+        // 2. Request authorization
+        List<String> scopes = Arrays.asList("openid", "test");
+        String nonce = UUID.randomUUID().toString();
+        String state = UUID.randomUUID().toString();
+
+        AuthorizationRequest authorizationRequest = new AuthorizationRequest(responseTypes, clientId, scopes, redirectUri, nonce);
+        authorizationRequest.setState(state);
+
+        AuthorizeClient authorizeClient = new AuthorizeClient(authorizationEndpoint);
+        authorizeClient.setRequest(authorizationRequest);
+
+        AuthorizationResponse authorizationResponse = authenticateResourceOwnerAndGrantAccess(
+                authorizationEndpoint, authorizationRequest, userId, userSecret);
+
+        assertNotNull(authorizationResponse.getLocation(), "The location is null");
+        assertNotNull(authorizationResponse.getAccessToken(), "The accessToken is null");
+        assertNotNull(authorizationResponse.getTokenType(), "The tokenType is null");
+        assertNotNull(authorizationResponse.getIdToken(), "The idToken is null");
+        assertNotNull(authorizationResponse.getState(), "The state is null");
+
+        String idToken = authorizationResponse.getIdToken();
+        String accessToken = authorizationResponse.getAccessToken();
+
+        // 3. Validate id_token
+        Jwt jwt = Jwt.parse(idToken);
+        assertNotNull(jwt.getHeader().getClaimAsString(JwtHeaderName.TYPE));
+        assertNotNull(jwt.getHeader().getClaimAsString(JwtHeaderName.ALGORITHM));
+        assertNotNull(jwt.getClaims().getClaimAsString(JwtClaimName.ISSUER));
+        assertNotNull(jwt.getClaims().getClaimAsString(JwtClaimName.AUDIENCE));
+        assertNotNull(jwt.getClaims().getClaimAsString(JwtClaimName.EXPIRATION_TIME));
+        assertNotNull(jwt.getClaims().getClaimAsString(JwtClaimName.ISSUED_AT));
+        assertNotNull(jwt.getClaims().getClaimAsString(JwtClaimName.SUBJECT_IDENTIFIER));
+        assertNotNull(jwt.getClaims().getClaimAsString(JwtClaimName.ACCESS_TOKEN_HASH));
+        assertNotNull(jwt.getClaims().getClaimAsString(JwtClaimName.AUTHENTICATION_TIME));
+        assertNotNull(jwt.getClaims().getClaimAsStringList("member_of"));
+        assertTrue(jwt.getClaims().getClaimAsStringList("member_of").size() > 1);
+
+        ECDSAPublicKey publicKey = JwkClient.getECDSAPublicKey(
+                jwksUri,
+                jwt.getHeader().getClaimAsString(JwtHeaderName.KEY_ID));
+        ECDSASigner ecdsaSigner = new ECDSASigner(SignatureAlgorithm.ES256, publicKey);
+
+        assertTrue(ecdsaSigner.validate(jwt));
+
+        // 4. Request user info
+        UserInfoRequest userInfoRequest = new UserInfoRequest(accessToken);
+        UserInfoClient userInfoClient = new UserInfoClient(userInfoEndpoint);
+        userInfoClient.setRequest(userInfoRequest);
+        userInfoClient.setJwksUri(jwksUri);
+        UserInfoResponse userInfoResponse = userInfoClient.exec();
+
+        showClient(userInfoClient);
+        assertEquals(userInfoResponse.getStatus(), 200, "Unexpected response code: " + userInfoResponse.getStatus());
+        assertNotNull(userInfoResponse.getClaim(JwtClaimName.SUBJECT_IDENTIFIER));
+        assertNotNull(userInfoResponse.getClaim("member_of"));
+        assertTrue(userInfoResponse.getClaim("member_of").size() > 1);
+    }
+
+    @Parameters({"userId", "userSecret", "redirectUri", "redirectUris", "sectorIdentifierUri"})
+    @Test
+    public void authorizationRequestWithMultivaluedClaimES384(
+            final String userId, final String userSecret, final String redirectUri, final String redirectUris,
+            final String sectorIdentifierUri) throws Exception {
+        showTitle("authorizationRequestWithMultivaluedClaimES384");
+
+        List<ResponseType> responseTypes = Arrays.asList(ResponseType.TOKEN, ResponseType.ID_TOKEN);
+
+        // 1. Register client
+        RegisterRequest registerRequest = new RegisterRequest(ApplicationType.WEB, "oxAuth test app",
+                StringUtils.spaceSeparatedToList(redirectUris));
+        registerRequest.setResponseTypes(responseTypes);
+        registerRequest.setSectorIdentifierUri(sectorIdentifierUri);
+        registerRequest.setIdTokenSignedResponseAlg(SignatureAlgorithm.ES384);
+        registerRequest.setUserInfoSignedResponseAlg(SignatureAlgorithm.ES384);
+        registerRequest.addCustomAttribute("oxIncludeClaimsInIdToken", "true");
+
+        RegisterClient registerClient = new RegisterClient(registrationEndpoint);
+        registerClient.setRequest(registerRequest);
+        RegisterResponse registerResponse = registerClient.exec();
+
+        showClient(registerClient);
+        assertEquals(registerResponse.getStatus(), 200, "Unexpected response code: " + registerResponse.getEntity());
+        assertNotNull(registerResponse.getClientId());
+        assertNotNull(registerResponse.getClientSecret());
+        assertNotNull(registerResponse.getRegistrationAccessToken());
+        assertNotNull(registerResponse.getClientIdIssuedAt());
+        assertNotNull(registerResponse.getClientSecretExpiresAt());
+
+        String clientId = registerResponse.getClientId();
+
+        // 2. Request authorization
+        List<String> scopes = Arrays.asList("openid", "test");
+        String nonce = UUID.randomUUID().toString();
+        String state = UUID.randomUUID().toString();
+
+        AuthorizationRequest authorizationRequest = new AuthorizationRequest(responseTypes, clientId, scopes, redirectUri, nonce);
+        authorizationRequest.setState(state);
+
+        AuthorizeClient authorizeClient = new AuthorizeClient(authorizationEndpoint);
+        authorizeClient.setRequest(authorizationRequest);
+
+        AuthorizationResponse authorizationResponse = authenticateResourceOwnerAndGrantAccess(
+                authorizationEndpoint, authorizationRequest, userId, userSecret);
+
+        assertNotNull(authorizationResponse.getLocation(), "The location is null");
+        assertNotNull(authorizationResponse.getAccessToken(), "The accessToken is null");
+        assertNotNull(authorizationResponse.getTokenType(), "The tokenType is null");
+        assertNotNull(authorizationResponse.getIdToken(), "The idToken is null");
+        assertNotNull(authorizationResponse.getState(), "The state is null");
+
+        String idToken = authorizationResponse.getIdToken();
+        String accessToken = authorizationResponse.getAccessToken();
+
+        // 3. Validate id_token
+        Jwt jwt = Jwt.parse(idToken);
+        assertNotNull(jwt.getHeader().getClaimAsString(JwtHeaderName.TYPE));
+        assertNotNull(jwt.getHeader().getClaimAsString(JwtHeaderName.ALGORITHM));
+        assertNotNull(jwt.getClaims().getClaimAsString(JwtClaimName.ISSUER));
+        assertNotNull(jwt.getClaims().getClaimAsString(JwtClaimName.AUDIENCE));
+        assertNotNull(jwt.getClaims().getClaimAsString(JwtClaimName.EXPIRATION_TIME));
+        assertNotNull(jwt.getClaims().getClaimAsString(JwtClaimName.ISSUED_AT));
+        assertNotNull(jwt.getClaims().getClaimAsString(JwtClaimName.SUBJECT_IDENTIFIER));
+        assertNotNull(jwt.getClaims().getClaimAsString(JwtClaimName.ACCESS_TOKEN_HASH));
+        assertNotNull(jwt.getClaims().getClaimAsString(JwtClaimName.AUTHENTICATION_TIME));
+        assertNotNull(jwt.getClaims().getClaimAsStringList("member_of"));
+        assertTrue(jwt.getClaims().getClaimAsStringList("member_of").size() > 1);
+
+        ECDSAPublicKey publicKey = JwkClient.getECDSAPublicKey(
+                jwksUri,
+                jwt.getHeader().getClaimAsString(JwtHeaderName.KEY_ID));
+        ECDSASigner ecdsaSigner = new ECDSASigner(SignatureAlgorithm.ES384, publicKey);
+
+        assertTrue(ecdsaSigner.validate(jwt));
+
+        // 4. Request user info
+        UserInfoRequest userInfoRequest = new UserInfoRequest(accessToken);
+        UserInfoClient userInfoClient = new UserInfoClient(userInfoEndpoint);
+        userInfoClient.setRequest(userInfoRequest);
+        userInfoClient.setJwksUri(jwksUri);
+        UserInfoResponse userInfoResponse = userInfoClient.exec();
+
+        showClient(userInfoClient);
+        assertEquals(userInfoResponse.getStatus(), 200, "Unexpected response code: " + userInfoResponse.getStatus());
+        assertNotNull(userInfoResponse.getClaim(JwtClaimName.SUBJECT_IDENTIFIER));
+        assertNotNull(userInfoResponse.getClaim("member_of"));
+        assertTrue(userInfoResponse.getClaim("member_of").size() > 1);
+    }
+
+    @Parameters({"userId", "userSecret", "redirectUri", "redirectUris", "sectorIdentifierUri"})
+    @Test
+    public void authorizationRequestWithMultivaluedClaimES512(
+            final String userId, final String userSecret, final String redirectUri, final String redirectUris,
+            final String sectorIdentifierUri) throws Exception {
+        showTitle("authorizationRequestWithMultivaluedClaimES512");
+
+        List<ResponseType> responseTypes = Arrays.asList(ResponseType.TOKEN, ResponseType.ID_TOKEN);
+
+        // 1. Register client
+        RegisterRequest registerRequest = new RegisterRequest(ApplicationType.WEB, "oxAuth test app",
+                StringUtils.spaceSeparatedToList(redirectUris));
+        registerRequest.setResponseTypes(responseTypes);
+        registerRequest.setSectorIdentifierUri(sectorIdentifierUri);
+        registerRequest.setIdTokenSignedResponseAlg(SignatureAlgorithm.ES512);
+        registerRequest.setUserInfoSignedResponseAlg(SignatureAlgorithm.ES512);
+        registerRequest.addCustomAttribute("oxIncludeClaimsInIdToken", "true");
+
+        RegisterClient registerClient = new RegisterClient(registrationEndpoint);
+        registerClient.setRequest(registerRequest);
+        RegisterResponse registerResponse = registerClient.exec();
+
+        showClient(registerClient);
+        assertEquals(registerResponse.getStatus(), 200, "Unexpected response code: " + registerResponse.getEntity());
+        assertNotNull(registerResponse.getClientId());
+        assertNotNull(registerResponse.getClientSecret());
+        assertNotNull(registerResponse.getRegistrationAccessToken());
+        assertNotNull(registerResponse.getClientIdIssuedAt());
+        assertNotNull(registerResponse.getClientSecretExpiresAt());
+
+        String clientId = registerResponse.getClientId();
+
+        // 2. Request authorization
+        List<String> scopes = Arrays.asList("openid", "test");
+        String nonce = UUID.randomUUID().toString();
+        String state = UUID.randomUUID().toString();
+
+        AuthorizationRequest authorizationRequest = new AuthorizationRequest(responseTypes, clientId, scopes, redirectUri, nonce);
+        authorizationRequest.setState(state);
+
+        AuthorizeClient authorizeClient = new AuthorizeClient(authorizationEndpoint);
+        authorizeClient.setRequest(authorizationRequest);
+
+        AuthorizationResponse authorizationResponse = authenticateResourceOwnerAndGrantAccess(
+                authorizationEndpoint, authorizationRequest, userId, userSecret);
+
+        assertNotNull(authorizationResponse.getLocation(), "The location is null");
+        assertNotNull(authorizationResponse.getAccessToken(), "The accessToken is null");
+        assertNotNull(authorizationResponse.getTokenType(), "The tokenType is null");
+        assertNotNull(authorizationResponse.getIdToken(), "The idToken is null");
+        assertNotNull(authorizationResponse.getState(), "The state is null");
+
+        String idToken = authorizationResponse.getIdToken();
+        String accessToken = authorizationResponse.getAccessToken();
+
+        // 3. Validate id_token
+        Jwt jwt = Jwt.parse(idToken);
+        assertNotNull(jwt.getHeader().getClaimAsString(JwtHeaderName.TYPE));
+        assertNotNull(jwt.getHeader().getClaimAsString(JwtHeaderName.ALGORITHM));
+        assertNotNull(jwt.getClaims().getClaimAsString(JwtClaimName.ISSUER));
+        assertNotNull(jwt.getClaims().getClaimAsString(JwtClaimName.AUDIENCE));
+        assertNotNull(jwt.getClaims().getClaimAsString(JwtClaimName.EXPIRATION_TIME));
+        assertNotNull(jwt.getClaims().getClaimAsString(JwtClaimName.ISSUED_AT));
+        assertNotNull(jwt.getClaims().getClaimAsString(JwtClaimName.SUBJECT_IDENTIFIER));
+        assertNotNull(jwt.getClaims().getClaimAsString(JwtClaimName.ACCESS_TOKEN_HASH));
+        assertNotNull(jwt.getClaims().getClaimAsString(JwtClaimName.AUTHENTICATION_TIME));
+        assertNotNull(jwt.getClaims().getClaimAsStringList("member_of"));
+        assertTrue(jwt.getClaims().getClaimAsStringList("member_of").size() > 1);
+
+        ECDSAPublicKey publicKey = JwkClient.getECDSAPublicKey(
+                jwksUri,
+                jwt.getHeader().getClaimAsString(JwtHeaderName.KEY_ID));
+        ECDSASigner ecdsaSigner = new ECDSASigner(SignatureAlgorithm.ES512, publicKey);
+
+        assertTrue(ecdsaSigner.validate(jwt));
+
+        // 4. Request user info
+        UserInfoRequest userInfoRequest = new UserInfoRequest(accessToken);
+        UserInfoClient userInfoClient = new UserInfoClient(userInfoEndpoint);
+        userInfoClient.setRequest(userInfoRequest);
+        userInfoClient.setJwksUri(jwksUri);
+        UserInfoResponse userInfoResponse = userInfoClient.exec();
+
+        showClient(userInfoClient);
+        assertEquals(userInfoResponse.getStatus(), 200, "Unexpected response code: " + userInfoResponse.getStatus());
+        assertNotNull(userInfoResponse.getClaim(JwtClaimName.SUBJECT_IDENTIFIER));
+        assertNotNull(userInfoResponse.getClaim("member_of"));
+        assertTrue(userInfoResponse.getClaim("member_of").size() > 1);
+    }
+
+    @Parameters({"userId", "userSecret", "redirectUri", "redirectUris", "sectorIdentifierUri"})
+    @Test
+    public void authorizationRequestWithMultivaluedClaimPS256(
+            final String userId, final String userSecret, final String redirectUri, final String redirectUris,
+            final String sectorIdentifierUri) throws Exception {
+        showTitle("authorizationRequestWithMultivaluedClaimPS256");
+
+        List<ResponseType> responseTypes = Arrays.asList(ResponseType.TOKEN, ResponseType.ID_TOKEN);
+
+        // 1. Register client
+        RegisterRequest registerRequest = new RegisterRequest(ApplicationType.WEB, "oxAuth test app",
+                StringUtils.spaceSeparatedToList(redirectUris));
+        registerRequest.setResponseTypes(responseTypes);
+        registerRequest.setSectorIdentifierUri(sectorIdentifierUri);
+        registerRequest.setUserInfoSignedResponseAlg(SignatureAlgorithm.PS256);
+        registerRequest.setIdTokenSignedResponseAlg(SignatureAlgorithm.PS256);
+        registerRequest.addCustomAttribute("oxIncludeClaimsInIdToken", "true");
+
+        RegisterClient registerClient = new RegisterClient(registrationEndpoint);
+        registerClient.setRequest(registerRequest);
+        RegisterResponse registerResponse = registerClient.exec();
+
+        showClient(registerClient);
+        assertEquals(registerResponse.getStatus(), 200, "Unexpected response code: " + registerResponse.getEntity());
+        assertNotNull(registerResponse.getClientId());
+        assertNotNull(registerResponse.getClientSecret());
+        assertNotNull(registerResponse.getRegistrationAccessToken());
+        assertNotNull(registerResponse.getClientIdIssuedAt());
+        assertNotNull(registerResponse.getClientSecretExpiresAt());
+
+        String clientId = registerResponse.getClientId();
+
+        // 2. Request authorization
+        List<String> scopes = Arrays.asList("openid", "test");
+        String nonce = UUID.randomUUID().toString();
+        String state = UUID.randomUUID().toString();
+
+        AuthorizationRequest authorizationRequest = new AuthorizationRequest(responseTypes, clientId, scopes, redirectUri, nonce);
+        authorizationRequest.setState(state);
+
+        AuthorizeClient authorizeClient = new AuthorizeClient(authorizationEndpoint);
+        authorizeClient.setRequest(authorizationRequest);
+
+        AuthorizationResponse authorizationResponse = authenticateResourceOwnerAndGrantAccess(
+                authorizationEndpoint, authorizationRequest, userId, userSecret);
+
+        assertNotNull(authorizationResponse.getLocation(), "The location is null");
+        assertNotNull(authorizationResponse.getAccessToken(), "The accessToken is null");
+        assertNotNull(authorizationResponse.getTokenType(), "The tokenType is null");
+        assertNotNull(authorizationResponse.getIdToken(), "The idToken is null");
+        assertNotNull(authorizationResponse.getState(), "The state is null");
+
+        String idToken = authorizationResponse.getIdToken();
+        String accessToken = authorizationResponse.getAccessToken();
+
+        // 3. Validate id_token
+        Jwt jwt = Jwt.parse(idToken);
+        assertNotNull(jwt.getHeader().getClaimAsString(JwtHeaderName.TYPE));
+        assertNotNull(jwt.getHeader().getClaimAsString(JwtHeaderName.ALGORITHM));
+        assertNotNull(jwt.getClaims().getClaimAsString(JwtClaimName.ISSUER));
+        assertNotNull(jwt.getClaims().getClaimAsString(JwtClaimName.AUDIENCE));
+        assertNotNull(jwt.getClaims().getClaimAsString(JwtClaimName.EXPIRATION_TIME));
+        assertNotNull(jwt.getClaims().getClaimAsString(JwtClaimName.ISSUED_AT));
+        assertNotNull(jwt.getClaims().getClaimAsString(JwtClaimName.SUBJECT_IDENTIFIER));
+        assertNotNull(jwt.getClaims().getClaimAsString(JwtClaimName.ACCESS_TOKEN_HASH));
+        assertNotNull(jwt.getClaims().getClaimAsString(JwtClaimName.AUTHENTICATION_TIME));
+        assertNotNull(jwt.getClaims().getClaimAsStringList("member_of"));
+        assertTrue(jwt.getClaims().getClaimAsStringList("member_of").size() > 1);
+
+
+        RSAPublicKey publicKey = JwkClient.getRSAPublicKey(
+                jwksUri,
+                jwt.getHeader().getClaimAsString(JwtHeaderName.KEY_ID));
+        RSASigner rsaSigner = new RSASigner(SignatureAlgorithm.PS256, publicKey);
+
+        assertTrue(rsaSigner.validate(jwt));
+
+        // 4. Request user info
+        UserInfoRequest userInfoRequest = new UserInfoRequest(accessToken);
+        UserInfoClient userInfoClient = new UserInfoClient(userInfoEndpoint);
+        userInfoClient.setRequest(userInfoRequest);
+        userInfoClient.setJwksUri(jwksUri);
+        UserInfoResponse userInfoResponse = userInfoClient.exec();
+
+        showClient(userInfoClient);
+        assertEquals(userInfoResponse.getStatus(), 200, "Unexpected response code: " + userInfoResponse.getStatus());
+        assertNotNull(userInfoResponse.getClaim(JwtClaimName.SUBJECT_IDENTIFIER));
+        assertNotNull(userInfoResponse.getClaim("member_of"));
+        assertTrue(userInfoResponse.getClaim("member_of").size() > 1);
+    }
+
+    @Parameters({"userId", "userSecret", "redirectUri", "redirectUris", "sectorIdentifierUri"})
+    @Test
+    public void authorizationRequestWithMultivaluedClaimPS384(
+            final String userId, final String userSecret, final String redirectUri, final String redirectUris,
+            final String sectorIdentifierUri) throws Exception {
+        showTitle("authorizationRequestWithMultivaluedClaimPS384");
+
+        List<ResponseType> responseTypes = Arrays.asList(ResponseType.TOKEN, ResponseType.ID_TOKEN);
+
+        // 1. Register client
+        RegisterRequest registerRequest = new RegisterRequest(ApplicationType.WEB, "oxAuth test app",
+                StringUtils.spaceSeparatedToList(redirectUris));
+        registerRequest.setResponseTypes(responseTypes);
+        registerRequest.setSectorIdentifierUri(sectorIdentifierUri);
+        registerRequest.setUserInfoSignedResponseAlg(SignatureAlgorithm.PS384);
+        registerRequest.setIdTokenSignedResponseAlg(SignatureAlgorithm.PS384);
+        registerRequest.addCustomAttribute("oxIncludeClaimsInIdToken", "true");
+
+        RegisterClient registerClient = new RegisterClient(registrationEndpoint);
+        registerClient.setRequest(registerRequest);
+        RegisterResponse registerResponse = registerClient.exec();
+
+        showClient(registerClient);
+        assertEquals(registerResponse.getStatus(), 200, "Unexpected response code: " + registerResponse.getEntity());
+        assertNotNull(registerResponse.getClientId());
+        assertNotNull(registerResponse.getClientSecret());
+        assertNotNull(registerResponse.getRegistrationAccessToken());
+        assertNotNull(registerResponse.getClientIdIssuedAt());
+        assertNotNull(registerResponse.getClientSecretExpiresAt());
+
+        String clientId = registerResponse.getClientId();
+
+        // 2. Request authorization
+        List<String> scopes = Arrays.asList("openid", "test");
+        String nonce = UUID.randomUUID().toString();
+        String state = UUID.randomUUID().toString();
+
+        AuthorizationRequest authorizationRequest = new AuthorizationRequest(responseTypes, clientId, scopes, redirectUri, nonce);
+        authorizationRequest.setState(state);
+
+        AuthorizeClient authorizeClient = new AuthorizeClient(authorizationEndpoint);
+        authorizeClient.setRequest(authorizationRequest);
+
+        AuthorizationResponse authorizationResponse = authenticateResourceOwnerAndGrantAccess(
+                authorizationEndpoint, authorizationRequest, userId, userSecret);
+
+        assertNotNull(authorizationResponse.getLocation(), "The location is null");
+        assertNotNull(authorizationResponse.getAccessToken(), "The accessToken is null");
+        assertNotNull(authorizationResponse.getTokenType(), "The tokenType is null");
+        assertNotNull(authorizationResponse.getIdToken(), "The idToken is null");
+        assertNotNull(authorizationResponse.getState(), "The state is null");
+
+        String idToken = authorizationResponse.getIdToken();
+        String accessToken = authorizationResponse.getAccessToken();
+
+        // 3. Validate id_token
+        Jwt jwt = Jwt.parse(idToken);
+        assertNotNull(jwt.getHeader().getClaimAsString(JwtHeaderName.TYPE));
+        assertNotNull(jwt.getHeader().getClaimAsString(JwtHeaderName.ALGORITHM));
+        assertNotNull(jwt.getClaims().getClaimAsString(JwtClaimName.ISSUER));
+        assertNotNull(jwt.getClaims().getClaimAsString(JwtClaimName.AUDIENCE));
+        assertNotNull(jwt.getClaims().getClaimAsString(JwtClaimName.EXPIRATION_TIME));
+        assertNotNull(jwt.getClaims().getClaimAsString(JwtClaimName.ISSUED_AT));
+        assertNotNull(jwt.getClaims().getClaimAsString(JwtClaimName.SUBJECT_IDENTIFIER));
+        assertNotNull(jwt.getClaims().getClaimAsString(JwtClaimName.ACCESS_TOKEN_HASH));
+        assertNotNull(jwt.getClaims().getClaimAsString(JwtClaimName.AUTHENTICATION_TIME));
+        assertNotNull(jwt.getClaims().getClaimAsStringList("member_of"));
+        assertTrue(jwt.getClaims().getClaimAsStringList("member_of").size() > 1);
+
+
+        RSAPublicKey publicKey = JwkClient.getRSAPublicKey(
+                jwksUri,
+                jwt.getHeader().getClaimAsString(JwtHeaderName.KEY_ID));
+        RSASigner rsaSigner = new RSASigner(SignatureAlgorithm.PS384, publicKey);
+
+        assertTrue(rsaSigner.validate(jwt));
+
+        // 4. Request user info
+        UserInfoRequest userInfoRequest = new UserInfoRequest(accessToken);
+        UserInfoClient userInfoClient = new UserInfoClient(userInfoEndpoint);
+        userInfoClient.setRequest(userInfoRequest);
+        userInfoClient.setJwksUri(jwksUri);
+        UserInfoResponse userInfoResponse = userInfoClient.exec();
+
+        showClient(userInfoClient);
+        assertEquals(userInfoResponse.getStatus(), 200, "Unexpected response code: " + userInfoResponse.getStatus());
+        assertNotNull(userInfoResponse.getClaim(JwtClaimName.SUBJECT_IDENTIFIER));
+        assertNotNull(userInfoResponse.getClaim("member_of"));
+        assertTrue(userInfoResponse.getClaim("member_of").size() > 1);
+    }
+
+    @Parameters({"userId", "userSecret", "redirectUri", "redirectUris", "sectorIdentifierUri"})
+    @Test
+    public void authorizationRequestWithMultivaluedClaimPS512(
+            final String userId, final String userSecret, final String redirectUri, final String redirectUris,
+            final String sectorIdentifierUri) throws Exception {
+        showTitle("authorizationRequestWithMultivaluedClaimPS512");
+
+        List<ResponseType> responseTypes = Arrays.asList(ResponseType.TOKEN, ResponseType.ID_TOKEN);
+
+        // 1. Register client
+        RegisterRequest registerRequest = new RegisterRequest(ApplicationType.WEB, "oxAuth test app",
+                StringUtils.spaceSeparatedToList(redirectUris));
+        registerRequest.setResponseTypes(responseTypes);
+        registerRequest.setSectorIdentifierUri(sectorIdentifierUri);
+        registerRequest.setUserInfoSignedResponseAlg(SignatureAlgorithm.PS512);
+        registerRequest.setIdTokenSignedResponseAlg(SignatureAlgorithm.PS512);
+        registerRequest.addCustomAttribute("oxIncludeClaimsInIdToken", "true");
+
+        RegisterClient registerClient = new RegisterClient(registrationEndpoint);
+        registerClient.setRequest(registerRequest);
+        RegisterResponse registerResponse = registerClient.exec();
+
+        showClient(registerClient);
+        assertEquals(registerResponse.getStatus(), 200, "Unexpected response code: " + registerResponse.getEntity());
+        assertNotNull(registerResponse.getClientId());
+        assertNotNull(registerResponse.getClientSecret());
+        assertNotNull(registerResponse.getRegistrationAccessToken());
+        assertNotNull(registerResponse.getClientIdIssuedAt());
+        assertNotNull(registerResponse.getClientSecretExpiresAt());
+
+        String clientId = registerResponse.getClientId();
+
+        // 2. Request authorization
+        List<String> scopes = Arrays.asList("openid", "test");
+        String nonce = UUID.randomUUID().toString();
+        String state = UUID.randomUUID().toString();
+
+        AuthorizationRequest authorizationRequest = new AuthorizationRequest(responseTypes, clientId, scopes, redirectUri, nonce);
+        authorizationRequest.setState(state);
+
+        AuthorizeClient authorizeClient = new AuthorizeClient(authorizationEndpoint);
+        authorizeClient.setRequest(authorizationRequest);
+
+        AuthorizationResponse authorizationResponse = authenticateResourceOwnerAndGrantAccess(
+                authorizationEndpoint, authorizationRequest, userId, userSecret);
+
+        assertNotNull(authorizationResponse.getLocation(), "The location is null");
+        assertNotNull(authorizationResponse.getAccessToken(), "The accessToken is null");
+        assertNotNull(authorizationResponse.getTokenType(), "The tokenType is null");
+        assertNotNull(authorizationResponse.getIdToken(), "The idToken is null");
+        assertNotNull(authorizationResponse.getState(), "The state is null");
+
+        String idToken = authorizationResponse.getIdToken();
+        String accessToken = authorizationResponse.getAccessToken();
+
+        // 3. Validate id_token
+        Jwt jwt = Jwt.parse(idToken);
+        assertNotNull(jwt.getHeader().getClaimAsString(JwtHeaderName.TYPE));
+        assertNotNull(jwt.getHeader().getClaimAsString(JwtHeaderName.ALGORITHM));
+        assertNotNull(jwt.getClaims().getClaimAsString(JwtClaimName.ISSUER));
+        assertNotNull(jwt.getClaims().getClaimAsString(JwtClaimName.AUDIENCE));
+        assertNotNull(jwt.getClaims().getClaimAsString(JwtClaimName.EXPIRATION_TIME));
+        assertNotNull(jwt.getClaims().getClaimAsString(JwtClaimName.ISSUED_AT));
+        assertNotNull(jwt.getClaims().getClaimAsString(JwtClaimName.SUBJECT_IDENTIFIER));
+        assertNotNull(jwt.getClaims().getClaimAsString(JwtClaimName.ACCESS_TOKEN_HASH));
+        assertNotNull(jwt.getClaims().getClaimAsString(JwtClaimName.AUTHENTICATION_TIME));
+        assertNotNull(jwt.getClaims().getClaimAsStringList("member_of"));
+        assertTrue(jwt.getClaims().getClaimAsStringList("member_of").size() > 1);
+
+
+        RSAPublicKey publicKey = JwkClient.getRSAPublicKey(
+                jwksUri,
+                jwt.getHeader().getClaimAsString(JwtHeaderName.KEY_ID));
+        RSASigner rsaSigner = new RSASigner(SignatureAlgorithm.PS512, publicKey);
+
+        assertTrue(rsaSigner.validate(jwt));
+
+        // 4. Request user info
+        UserInfoRequest userInfoRequest = new UserInfoRequest(accessToken);
+        UserInfoClient userInfoClient = new UserInfoClient(userInfoEndpoint);
+        userInfoClient.setRequest(userInfoRequest);
+        userInfoClient.setJwksUri(jwksUri);
+        UserInfoResponse userInfoResponse = userInfoClient.exec();
+
+        showClient(userInfoClient);
+        assertEquals(userInfoResponse.getStatus(), 200, "Unexpected response code: " + userInfoResponse.getStatus());
+        assertNotNull(userInfoResponse.getClaim(JwtClaimName.SUBJECT_IDENTIFIER));
+        assertNotNull(userInfoResponse.getClaim("member_of"));
+        assertTrue(userInfoResponse.getClaim("member_of").size() > 1);
+    }
+
+    @Parameters({"userId", "userSecret", "redirectUri", "redirectUris", "sectorIdentifierUri"})
+    @Test
+    public void authorizationRequestWithMultivaluedClaimAlgA128KWEncA128GCM(
+            final String userId, final String userSecret, final String redirectUri, final String redirectUris,
+            final String sectorIdentifierUri) throws Exception {
+        showTitle("authorizationRequestWithMultivaluedClaimAlgA128KWEncA128GCM");
+
+        List<ResponseType> responseTypes = Arrays.asList(ResponseType.TOKEN, ResponseType.ID_TOKEN);
+
+        // 1. Register client
+        RegisterRequest registerRequest = new RegisterRequest(ApplicationType.WEB, "oxAuth test app",
+                StringUtils.spaceSeparatedToList(redirectUris));
+        registerRequest.setResponseTypes(responseTypes);
+        registerRequest.setSectorIdentifierUri(sectorIdentifierUri);
+        registerRequest.setIdTokenEncryptedResponseAlg(KeyEncryptionAlgorithm.A128KW);
+        registerRequest.setIdTokenEncryptedResponseEnc(BlockEncryptionAlgorithm.A128GCM);
+        registerRequest.setUserInfoEncryptedResponseAlg(KeyEncryptionAlgorithm.A128KW);
+        registerRequest.setUserInfoEncryptedResponseEnc(BlockEncryptionAlgorithm.A128GCM);
+        registerRequest.addCustomAttribute("oxIncludeClaimsInIdToken", "true");
+
+        RegisterClient registerClient = new RegisterClient(registrationEndpoint);
+        registerClient.setRequest(registerRequest);
+        RegisterResponse registerResponse = registerClient.exec();
+
+        showClient(registerClient);
+        assertEquals(registerResponse.getStatus(), 200, "Unexpected response code: " + registerResponse.getEntity());
+        assertNotNull(registerResponse.getClientId());
+        assertNotNull(registerResponse.getClientSecret());
+        assertNotNull(registerResponse.getRegistrationAccessToken());
+        assertNotNull(registerResponse.getClientIdIssuedAt());
+        assertNotNull(registerResponse.getClientSecretExpiresAt());
+
+        String clientId = registerResponse.getClientId();
+        String clientSecret = registerResponse.getClientSecret();
+
+        // 2. Request authorization
+        List<String> scopes = Arrays.asList("openid", "test");
+        String nonce = UUID.randomUUID().toString();
+        String state = UUID.randomUUID().toString();
+
+        AuthorizationRequest authorizationRequest = new AuthorizationRequest(responseTypes, clientId, scopes, redirectUri, nonce);
+        authorizationRequest.setState(state);
+
+        AuthorizeClient authorizeClient = new AuthorizeClient(authorizationEndpoint);
+        authorizeClient.setRequest(authorizationRequest);
+
+        AuthorizationResponse authorizationResponse = authenticateResourceOwnerAndGrantAccess(
+                authorizationEndpoint, authorizationRequest, userId, userSecret);
+
+        assertNotNull(authorizationResponse.getLocation(), "The location is null");
+        assertNotNull(authorizationResponse.getAccessToken(), "The accessToken is null");
+        assertNotNull(authorizationResponse.getTokenType(), "The tokenType is null");
+        assertNotNull(authorizationResponse.getIdToken(), "The idToken is null");
+        assertNotNull(authorizationResponse.getState(), "The state is null");
+
+        String idToken = authorizationResponse.getIdToken();
+        String accessToken = authorizationResponse.getAccessToken();
+
+        // 3. Validate id_token
+        Jwe jwe = Jwe.parse(idToken, null, clientSecret.getBytes(Util.UTF8_STRING_ENCODING));
+        assertNotNull(jwe.getHeader().getClaimAsString(JwtHeaderName.TYPE));
+        assertNotNull(jwe.getHeader().getClaimAsString(JwtHeaderName.ALGORITHM));
+        assertNotNull(jwe.getClaims().getClaimAsString(JwtClaimName.ISSUER));
+        assertNotNull(jwe.getClaims().getClaimAsString(JwtClaimName.AUDIENCE));
+        assertNotNull(jwe.getClaims().getClaimAsString(JwtClaimName.EXPIRATION_TIME));
+        assertNotNull(jwe.getClaims().getClaimAsString(JwtClaimName.ISSUED_AT));
+        assertNotNull(jwe.getClaims().getClaimAsString(JwtClaimName.SUBJECT_IDENTIFIER));
+        assertNotNull(jwe.getClaims().getClaimAsString(JwtClaimName.ACCESS_TOKEN_HASH));
+        assertNotNull(jwe.getClaims().getClaimAsString(JwtClaimName.AUTHENTICATION_TIME));
+        assertNotNull(jwe.getClaims().getClaimAsStringList("member_of"));
+        assertTrue(jwe.getClaims().getClaimAsStringList("member_of").size() > 1);
+
+        // 4. Request user info
+        UserInfoRequest userInfoRequest = new UserInfoRequest(accessToken);
+        UserInfoClient userInfoClient = new UserInfoClient(userInfoEndpoint);
+        userInfoClient.setRequest(userInfoRequest);
+        userInfoClient.setSharedKey(clientSecret);
+        UserInfoResponse userInfoResponse = userInfoClient.exec();
+
+        showClient(userInfoClient);
+        assertEquals(userInfoResponse.getStatus(), 200, "Unexpected response code: " + userInfoResponse.getStatus());
+        assertNotNull(userInfoResponse.getClaim(JwtClaimName.SUBJECT_IDENTIFIER));
+        assertNotNull(userInfoResponse.getClaim("member_of"));
+        assertTrue(userInfoResponse.getClaim("member_of").size() > 1);
+    }
+
+    @Parameters({"userId", "userSecret", "redirectUri", "redirectUris", "sectorIdentifierUri"})
+    @Test
+    public void authorizationRequestWithMultivaluedClaimAlgA256KWEncA256GCM(
+            final String userId, final String userSecret, final String redirectUri, final String redirectUris,
+            final String sectorIdentifierUri) throws Exception {
+        showTitle("authorizationRequestWithMultivaluedClaimAlgA256KWEncA256GCM");
+
+        List<ResponseType> responseTypes = Arrays.asList(ResponseType.TOKEN, ResponseType.ID_TOKEN);
+
+        // 1. Register client
+        RegisterRequest registerRequest = new RegisterRequest(ApplicationType.WEB, "oxAuth test app",
+                StringUtils.spaceSeparatedToList(redirectUris));
+        registerRequest.setResponseTypes(responseTypes);
+        registerRequest.setSectorIdentifierUri(sectorIdentifierUri);
+        registerRequest.setIdTokenEncryptedResponseAlg(KeyEncryptionAlgorithm.A256KW);
+        registerRequest.setIdTokenEncryptedResponseEnc(BlockEncryptionAlgorithm.A256GCM);
+        registerRequest.setUserInfoEncryptedResponseAlg(KeyEncryptionAlgorithm.A256KW);
+        registerRequest.setUserInfoEncryptedResponseEnc(BlockEncryptionAlgorithm.A256GCM);
+        registerRequest.addCustomAttribute("oxIncludeClaimsInIdToken", "true");
+
+        RegisterClient registerClient = new RegisterClient(registrationEndpoint);
+        registerClient.setRequest(registerRequest);
+        RegisterResponse registerResponse = registerClient.exec();
+
+        showClient(registerClient);
+        assertEquals(registerResponse.getStatus(), 200, "Unexpected response code: " + registerResponse.getEntity());
+        assertNotNull(registerResponse.getClientId());
+        assertNotNull(registerResponse.getClientSecret());
+        assertNotNull(registerResponse.getRegistrationAccessToken());
+        assertNotNull(registerResponse.getClientIdIssuedAt());
+        assertNotNull(registerResponse.getClientSecretExpiresAt());
+
+        String clientId = registerResponse.getClientId();
+        String clientSecret = registerResponse.getClientSecret();
+
+        // 2. Request authorization
+        List<String> scopes = Arrays.asList("openid", "test");
+        String nonce = UUID.randomUUID().toString();
+        String state = UUID.randomUUID().toString();
+
+        AuthorizationRequest authorizationRequest = new AuthorizationRequest(responseTypes, clientId, scopes, redirectUri, nonce);
+        authorizationRequest.setState(state);
+
+        AuthorizeClient authorizeClient = new AuthorizeClient(authorizationEndpoint);
+        authorizeClient.setRequest(authorizationRequest);
+
+        AuthorizationResponse authorizationResponse = authenticateResourceOwnerAndGrantAccess(
+                authorizationEndpoint, authorizationRequest, userId, userSecret);
+
+        assertNotNull(authorizationResponse.getLocation(), "The location is null");
+        assertNotNull(authorizationResponse.getAccessToken(), "The accessToken is null");
+        assertNotNull(authorizationResponse.getTokenType(), "The tokenType is null");
+        assertNotNull(authorizationResponse.getIdToken(), "The idToken is null");
+        assertNotNull(authorizationResponse.getState(), "The state is null");
+
+        String idToken = authorizationResponse.getIdToken();
+        String accessToken = authorizationResponse.getAccessToken();
+
+        // 3. Validate id_token
+        Jwe jwe = Jwe.parse(idToken, null, clientSecret.getBytes(Util.UTF8_STRING_ENCODING));
+        assertNotNull(jwe.getHeader().getClaimAsString(JwtHeaderName.TYPE));
+        assertNotNull(jwe.getHeader().getClaimAsString(JwtHeaderName.ALGORITHM));
+        assertNotNull(jwe.getClaims().getClaimAsString(JwtClaimName.ISSUER));
+        assertNotNull(jwe.getClaims().getClaimAsString(JwtClaimName.AUDIENCE));
+        assertNotNull(jwe.getClaims().getClaimAsString(JwtClaimName.EXPIRATION_TIME));
+        assertNotNull(jwe.getClaims().getClaimAsString(JwtClaimName.ISSUED_AT));
+        assertNotNull(jwe.getClaims().getClaimAsString(JwtClaimName.SUBJECT_IDENTIFIER));
+        assertNotNull(jwe.getClaims().getClaimAsString(JwtClaimName.ACCESS_TOKEN_HASH));
+        assertNotNull(jwe.getClaims().getClaimAsString(JwtClaimName.AUTHENTICATION_TIME));
+        assertNotNull(jwe.getClaims().getClaimAsStringList("member_of"));
+        assertTrue(jwe.getClaims().getClaimAsStringList("member_of").size() > 1);
+
+        // 4. Request user info
+        UserInfoRequest userInfoRequest = new UserInfoRequest(accessToken);
+        UserInfoClient userInfoClient = new UserInfoClient(userInfoEndpoint);
+        userInfoClient.setRequest(userInfoRequest);
+        userInfoClient.setSharedKey(clientSecret);
+        UserInfoResponse userInfoResponse = userInfoClient.exec();
+
+        showClient(userInfoClient);
+        assertEquals(userInfoResponse.getStatus(), 200, "Unexpected response code: " + userInfoResponse.getStatus());
+        assertNotNull(userInfoResponse.getClaim(JwtClaimName.SUBJECT_IDENTIFIER));
+        assertNotNull(userInfoResponse.getClaim("member_of"));
+        assertTrue(userInfoResponse.getClaim("member_of").size() > 1);
+    }
+
+    @Parameters({"userId", "userSecret", "redirectUri", "redirectUris",
+            "clientJwksUri", "RSA1_5_keyId", "keyStoreFile", "keyStoreSecret",
+            "sectorIdentifierUri"})
+    @Test
+    public void authorizationRequestWithMultivaluedClaimAlgRSA15EncA128CBCPLUSHS256(
+            final String userId, final String userSecret, final String redirectUri, final String redirectUris,
+            final String clientJwksUri, final String keyId, final String keyStoreFile, final String keyStoreSecret,
+            final String sectorIdentifierUri) throws Exception {
+        showTitle("authorizationRequestWithMultivaluedClaimAlgRSA15EncA128CBCPLUSHS256");
+
+        List<ResponseType> responseTypes = Arrays.asList(ResponseType.TOKEN, ResponseType.ID_TOKEN);
+
+        // 1. Register client
+        RegisterRequest registerRequest = new RegisterRequest(ApplicationType.WEB, "oxAuth test app",
+                StringUtils.spaceSeparatedToList(redirectUris));
+        registerRequest.setResponseTypes(responseTypes);
+        registerRequest.setSectorIdentifierUri(sectorIdentifierUri);
+        registerRequest.setJwksUri(clientJwksUri);
+        registerRequest.setIdTokenEncryptedResponseAlg(KeyEncryptionAlgorithm.RSA1_5);
+        registerRequest.setIdTokenEncryptedResponseEnc(BlockEncryptionAlgorithm.A128CBC_PLUS_HS256);
+        registerRequest.setUserInfoEncryptedResponseAlg(KeyEncryptionAlgorithm.RSA1_5);
+        registerRequest.setUserInfoEncryptedResponseEnc(BlockEncryptionAlgorithm.A128CBC_PLUS_HS256);
+        registerRequest.addCustomAttribute("oxIncludeClaimsInIdToken", "true");
+
+        RegisterClient registerClient = new RegisterClient(registrationEndpoint);
+        registerClient.setRequest(registerRequest);
+        RegisterResponse registerResponse = registerClient.exec();
+
+        showClient(registerClient);
+        assertEquals(registerResponse.getStatus(), 200, "Unexpected response code: " + registerResponse.getEntity());
+        assertNotNull(registerResponse.getClientId());
+        assertNotNull(registerResponse.getClientSecret());
+        assertNotNull(registerResponse.getRegistrationAccessToken());
+        assertNotNull(registerResponse.getClientIdIssuedAt());
+        assertNotNull(registerResponse.getClientSecretExpiresAt());
+
+        String clientId = registerResponse.getClientId();
+
+        // 2. Request authorization
+        List<String> scopes = Arrays.asList("openid", "test");
+        String nonce = UUID.randomUUID().toString();
+        String state = UUID.randomUUID().toString();
+
+        AuthorizationRequest authorizationRequest = new AuthorizationRequest(responseTypes, clientId, scopes, redirectUri, nonce);
+        authorizationRequest.setState(state);
+
+        AuthorizeClient authorizeClient = new AuthorizeClient(authorizationEndpoint);
+        authorizeClient.setRequest(authorizationRequest);
+
+        AuthorizationResponse authorizationResponse = authenticateResourceOwnerAndGrantAccess(
+                authorizationEndpoint, authorizationRequest, userId, userSecret);
+
+        assertNotNull(authorizationResponse.getLocation(), "The location is null");
+        assertNotNull(authorizationResponse.getAccessToken(), "The accessToken is null");
+        assertNotNull(authorizationResponse.getTokenType(), "The tokenType is null");
+        assertNotNull(authorizationResponse.getIdToken(), "The idToken is null");
+        assertNotNull(authorizationResponse.getState(), "The state is null");
+
+        String idToken = authorizationResponse.getIdToken();
+        String accessToken = authorizationResponse.getAccessToken();
+
+        // 3. Validate id_token
+        OxAuthCryptoProvider cryptoProvider = new OxAuthCryptoProvider(keyStoreFile, keyStoreSecret, null);
+        PrivateKey privateKey = cryptoProvider.getPrivateKey(keyId);
+
+        Jwe jwe = Jwe.parse(idToken, privateKey, null);
+        assertNotNull(jwe.getHeader().getClaimAsString(JwtHeaderName.TYPE));
+        assertNotNull(jwe.getHeader().getClaimAsString(JwtHeaderName.ALGORITHM));
+        assertNotNull(jwe.getClaims().getClaimAsString(JwtClaimName.ISSUER));
+        assertNotNull(jwe.getClaims().getClaimAsString(JwtClaimName.AUDIENCE));
+        assertNotNull(jwe.getClaims().getClaimAsString(JwtClaimName.EXPIRATION_TIME));
+        assertNotNull(jwe.getClaims().getClaimAsString(JwtClaimName.ISSUED_AT));
+        assertNotNull(jwe.getClaims().getClaimAsString(JwtClaimName.SUBJECT_IDENTIFIER));
+        assertNotNull(jwe.getClaims().getClaimAsString(JwtClaimName.ACCESS_TOKEN_HASH));
+        assertNotNull(jwe.getClaims().getClaimAsString(JwtClaimName.AUTHENTICATION_TIME));
+        assertNotNull(jwe.getClaims().getClaimAsStringList("member_of"));
+        assertTrue(jwe.getClaims().getClaimAsStringList("member_of").size() > 1);
+
+        // 4. Request user info
+        UserInfoRequest userInfoRequest = new UserInfoRequest(accessToken);
+        UserInfoClient userInfoClient = new UserInfoClient(userInfoEndpoint);
+        userInfoClient.setRequest(userInfoRequest);
+        userInfoClient.setPrivateKey(privateKey);
+        UserInfoResponse userInfoResponse = userInfoClient.exec();
+
+        showClient(userInfoClient);
+        assertEquals(userInfoResponse.getStatus(), 200, "Unexpected response code: " + userInfoResponse.getStatus());
+        assertNotNull(userInfoResponse.getClaim(JwtClaimName.SUBJECT_IDENTIFIER));
+        assertNotNull(userInfoResponse.getClaim("member_of"));
+        assertTrue(userInfoResponse.getClaim("member_of").size() > 1);
+    }
+
+    @Parameters({"userId", "userSecret", "redirectUri", "redirectUris",
+            "clientJwksUri", "RSA1_5_keyId", "keyStoreFile", "keyStoreSecret",
+            "sectorIdentifierUri"})
+    @Test
+    public void authorizationRequestWithMultivaluedClaimAlgRSA15EncA256CBCPLUSHS512(
+            final String userId, final String userSecret, final String redirectUri, final String redirectUris,
+            final String clientJwksUri, final String keyId, final String keyStoreFile, final String keyStoreSecret,
+            final String sectorIdentifierUri) throws Exception {
+        showTitle("authorizationRequestWithMultivaluedClaimAlgRSA15EncA256CBCPLUSHS512");
+
+        List<ResponseType> responseTypes = Arrays.asList(ResponseType.TOKEN, ResponseType.ID_TOKEN);
+
+        // 1. Register client
+        RegisterRequest registerRequest = new RegisterRequest(ApplicationType.WEB, "oxAuth test app",
+                StringUtils.spaceSeparatedToList(redirectUris));
+        registerRequest.setResponseTypes(responseTypes);
+        registerRequest.setSectorIdentifierUri(sectorIdentifierUri);
+        registerRequest.setJwksUri(clientJwksUri);
+        registerRequest.setIdTokenEncryptedResponseAlg(KeyEncryptionAlgorithm.RSA1_5);
+        registerRequest.setIdTokenEncryptedResponseEnc(BlockEncryptionAlgorithm.A256CBC_PLUS_HS512);
+        registerRequest.setUserInfoEncryptedResponseAlg(KeyEncryptionAlgorithm.RSA1_5);
+        registerRequest.setUserInfoEncryptedResponseEnc(BlockEncryptionAlgorithm.A256CBC_PLUS_HS512);
+        registerRequest.addCustomAttribute("oxIncludeClaimsInIdToken", "true");
+
+        RegisterClient registerClient = new RegisterClient(registrationEndpoint);
+        registerClient.setRequest(registerRequest);
+        RegisterResponse registerResponse = registerClient.exec();
+
+        showClient(registerClient);
+        assertEquals(registerResponse.getStatus(), 200, "Unexpected response code: " + registerResponse.getEntity());
+        assertNotNull(registerResponse.getClientId());
+        assertNotNull(registerResponse.getClientSecret());
+        assertNotNull(registerResponse.getRegistrationAccessToken());
+        assertNotNull(registerResponse.getClientIdIssuedAt());
+        assertNotNull(registerResponse.getClientSecretExpiresAt());
+
+        String clientId = registerResponse.getClientId();
+
+        // 2. Request authorization
+        List<String> scopes = Arrays.asList("openid", "test");
+        String nonce = UUID.randomUUID().toString();
+        String state = UUID.randomUUID().toString();
+
+        AuthorizationRequest authorizationRequest = new AuthorizationRequest(responseTypes, clientId, scopes, redirectUri, nonce);
+        authorizationRequest.setState(state);
+
+        AuthorizeClient authorizeClient = new AuthorizeClient(authorizationEndpoint);
+        authorizeClient.setRequest(authorizationRequest);
+
+        AuthorizationResponse authorizationResponse = authenticateResourceOwnerAndGrantAccess(
+                authorizationEndpoint, authorizationRequest, userId, userSecret);
+
+        assertNotNull(authorizationResponse.getLocation(), "The location is null");
+        assertNotNull(authorizationResponse.getAccessToken(), "The accessToken is null");
+        assertNotNull(authorizationResponse.getTokenType(), "The tokenType is null");
+        assertNotNull(authorizationResponse.getIdToken(), "The idToken is null");
+        assertNotNull(authorizationResponse.getState(), "The state is null");
+
+        String idToken = authorizationResponse.getIdToken();
+        String accessToken = authorizationResponse.getAccessToken();
+
+        // 3. Validate id_token
+        OxAuthCryptoProvider cryptoProvider = new OxAuthCryptoProvider(keyStoreFile, keyStoreSecret, null);
+        PrivateKey privateKey = cryptoProvider.getPrivateKey(keyId);
+
+        Jwe jwe = Jwe.parse(idToken, privateKey, null);
+        assertNotNull(jwe.getHeader().getClaimAsString(JwtHeaderName.TYPE));
+        assertNotNull(jwe.getHeader().getClaimAsString(JwtHeaderName.ALGORITHM));
+        assertNotNull(jwe.getClaims().getClaimAsString(JwtClaimName.ISSUER));
+        assertNotNull(jwe.getClaims().getClaimAsString(JwtClaimName.AUDIENCE));
+        assertNotNull(jwe.getClaims().getClaimAsString(JwtClaimName.EXPIRATION_TIME));
+        assertNotNull(jwe.getClaims().getClaimAsString(JwtClaimName.ISSUED_AT));
+        assertNotNull(jwe.getClaims().getClaimAsString(JwtClaimName.SUBJECT_IDENTIFIER));
+        assertNotNull(jwe.getClaims().getClaimAsString(JwtClaimName.ACCESS_TOKEN_HASH));
+        assertNotNull(jwe.getClaims().getClaimAsString(JwtClaimName.AUTHENTICATION_TIME));
+        assertNotNull(jwe.getClaims().getClaimAsStringList("member_of"));
+        assertTrue(jwe.getClaims().getClaimAsStringList("member_of").size() > 1);
+
+        // 4. Request user info
+        UserInfoRequest userInfoRequest = new UserInfoRequest(accessToken);
+        UserInfoClient userInfoClient = new UserInfoClient(userInfoEndpoint);
+        userInfoClient.setRequest(userInfoRequest);
+        userInfoClient.setPrivateKey(privateKey);
+        UserInfoResponse userInfoResponse = userInfoClient.exec();
+
+        showClient(userInfoClient);
+        assertEquals(userInfoResponse.getStatus(), 200, "Unexpected response code: " + userInfoResponse.getStatus());
+        assertNotNull(userInfoResponse.getClaim(JwtClaimName.SUBJECT_IDENTIFIER));
+        assertNotNull(userInfoResponse.getClaim("member_of"));
+        assertTrue(userInfoResponse.getClaim("member_of").size() > 1);
+    }
+
+    @Parameters({"userId", "userSecret", "redirectUri", "redirectUris",
+            "clientJwksUri", "RSA_OAEP_keyId", "keyStoreFile", "keyStoreSecret",
+            "sectorIdentifierUri"})
+    @Test
+    public void authorizationRequestWithMultivaluedClaimAlgRSAOAEPEncA256GCM(
+            final String userId, final String userSecret, final String redirectUri, final String redirectUris,
+            final String clientJwksUri, final String keyId, final String keyStoreFile, final String keyStoreSecret,
+            final String sectorIdentifierUri) throws Exception {
+        showTitle("authorizationRequestWithMultivaluedClaimAlgRSAOAEPEncA256GCM");
+
+        List<ResponseType> responseTypes = Arrays.asList(ResponseType.TOKEN, ResponseType.ID_TOKEN);
+
+        // 1. Register client
+        RegisterRequest registerRequest = new RegisterRequest(ApplicationType.WEB, "oxAuth test app",
+                StringUtils.spaceSeparatedToList(redirectUris));
+        registerRequest.setResponseTypes(responseTypes);
+        registerRequest.setSectorIdentifierUri(sectorIdentifierUri);
+        registerRequest.setJwksUri(clientJwksUri);
+        registerRequest.setIdTokenEncryptedResponseAlg(KeyEncryptionAlgorithm.RSA_OAEP);
+        registerRequest.setIdTokenEncryptedResponseEnc(BlockEncryptionAlgorithm.A256GCM);
+        registerRequest.setUserInfoEncryptedResponseAlg(KeyEncryptionAlgorithm.RSA_OAEP);
+        registerRequest.setUserInfoEncryptedResponseEnc(BlockEncryptionAlgorithm.A256GCM);
+        registerRequest.addCustomAttribute("oxIncludeClaimsInIdToken", "true");
+
+        RegisterClient registerClient = new RegisterClient(registrationEndpoint);
+        registerClient.setRequest(registerRequest);
+        RegisterResponse registerResponse = registerClient.exec();
+
+        showClient(registerClient);
+        assertEquals(registerResponse.getStatus(), 200, "Unexpected response code: " + registerResponse.getEntity());
+        assertNotNull(registerResponse.getClientId());
+        assertNotNull(registerResponse.getClientSecret());
+        assertNotNull(registerResponse.getRegistrationAccessToken());
+        assertNotNull(registerResponse.getClientIdIssuedAt());
+        assertNotNull(registerResponse.getClientSecretExpiresAt());
+
+        String clientId = registerResponse.getClientId();
+
+        // 2. Request authorization
+        List<String> scopes = Arrays.asList("openid", "test");
+        String nonce = UUID.randomUUID().toString();
+        String state = UUID.randomUUID().toString();
+
+        AuthorizationRequest authorizationRequest = new AuthorizationRequest(responseTypes, clientId, scopes, redirectUri, nonce);
+        authorizationRequest.setState(state);
+
+        AuthorizeClient authorizeClient = new AuthorizeClient(authorizationEndpoint);
+        authorizeClient.setRequest(authorizationRequest);
+
+        AuthorizationResponse authorizationResponse = authenticateResourceOwnerAndGrantAccess(
+                authorizationEndpoint, authorizationRequest, userId, userSecret);
+
+        assertNotNull(authorizationResponse.getLocation(), "The location is null");
+        assertNotNull(authorizationResponse.getAccessToken(), "The accessToken is null");
+        assertNotNull(authorizationResponse.getTokenType(), "The tokenType is null");
+        assertNotNull(authorizationResponse.getIdToken(), "The idToken is null");
+        assertNotNull(authorizationResponse.getState(), "The state is null");
+
+        String idToken = authorizationResponse.getIdToken();
+        String accessToken = authorizationResponse.getAccessToken();
+
+        // 3. Validate id_token
+        OxAuthCryptoProvider cryptoProvider = new OxAuthCryptoProvider(keyStoreFile, keyStoreSecret, null);
+        PrivateKey privateKey = cryptoProvider.getPrivateKey(keyId);
+
+        Jwe jwe = Jwe.parse(idToken, privateKey, null);
+        assertNotNull(jwe.getHeader().getClaimAsString(JwtHeaderName.TYPE));
+        assertNotNull(jwe.getHeader().getClaimAsString(JwtHeaderName.ALGORITHM));
+        assertNotNull(jwe.getClaims().getClaimAsString(JwtClaimName.ISSUER));
+        assertNotNull(jwe.getClaims().getClaimAsString(JwtClaimName.AUDIENCE));
+        assertNotNull(jwe.getClaims().getClaimAsString(JwtClaimName.EXPIRATION_TIME));
+        assertNotNull(jwe.getClaims().getClaimAsString(JwtClaimName.ISSUED_AT));
+        assertNotNull(jwe.getClaims().getClaimAsString(JwtClaimName.SUBJECT_IDENTIFIER));
+        assertNotNull(jwe.getClaims().getClaimAsString(JwtClaimName.ACCESS_TOKEN_HASH));
+        assertNotNull(jwe.getClaims().getClaimAsString(JwtClaimName.AUTHENTICATION_TIME));
+        assertNotNull(jwe.getClaims().getClaimAsStringList("member_of"));
+        assertTrue(jwe.getClaims().getClaimAsStringList("member_of").size() > 1);
+
+        // 4. Request user info
+        UserInfoRequest userInfoRequest = new UserInfoRequest(accessToken);
+        UserInfoClient userInfoClient = new UserInfoClient(userInfoEndpoint);
+        userInfoClient.setRequest(userInfoRequest);
+        userInfoClient.setPrivateKey(privateKey);
+        UserInfoResponse userInfoResponse = userInfoClient.exec();
+
+        showClient(userInfoClient);
+        assertEquals(userInfoResponse.getStatus(), 200, "Unexpected response code: " + userInfoResponse.getStatus());
+        assertNotNull(userInfoResponse.getClaim(JwtClaimName.SUBJECT_IDENTIFIER));
+        assertNotNull(userInfoResponse.getClaim("member_of"));
+        assertTrue(userInfoResponse.getClaim("member_of").size() > 1);
+    }
+
+    @Parameters({"userId", "userSecret", "redirectUri", "redirectUris", "sectorIdentifierUri"})
+    @Test
+    public void authorizationRequestObjectWithMultivaluedClaimNone(
+            final String userId, final String userSecret, final String redirectUri, final String redirectUris,
+            final String sectorIdentifierUri) throws Exception {
+        showTitle("authorizationRequestObjectWithMultivaluedClaimNone");
+
+        List<ResponseType> responseTypes = Arrays.asList(ResponseType.TOKEN, ResponseType.ID_TOKEN);
+
+        // 1. Register client
+        RegisterRequest registerRequest = new RegisterRequest(ApplicationType.WEB, "oxAuth test app",
+                StringUtils.spaceSeparatedToList(redirectUris));
+        registerRequest.setResponseTypes(responseTypes);
+        registerRequest.setSectorIdentifierUri(sectorIdentifierUri);
+        registerRequest.setIdTokenSignedResponseAlg(SignatureAlgorithm.NONE);
+        registerRequest.setUserInfoSignedResponseAlg(SignatureAlgorithm.NONE);
+        registerRequest.setRequestObjectSigningAlg(SignatureAlgorithm.NONE);
+        registerRequest.setClaims(Arrays.asList("member_of"));
+
+        RegisterClient registerClient = new RegisterClient(registrationEndpoint);
+        registerClient.setRequest(registerRequest);
+        RegisterResponse registerResponse = registerClient.exec();
+
+        showClient(registerClient);
+        assertEquals(registerResponse.getStatus(), 200, "Unexpected response code: " + registerResponse.getEntity());
+        assertNotNull(registerResponse.getClientId());
+        assertNotNull(registerResponse.getClientSecret());
+        assertNotNull(registerResponse.getRegistrationAccessToken());
+        assertNotNull(registerResponse.getClientIdIssuedAt());
+        assertNotNull(registerResponse.getClientSecretExpiresAt());
+
+        String clientId = registerResponse.getClientId();
+
+        // 2. Request authorization
+        AbstractCryptoProvider cryptoProvider = createCryptoProviderWithAllowedNone();
+
+        List<String> scopes = Arrays.asList("openid");
+        String nonce = UUID.randomUUID().toString();
+        String state = UUID.randomUUID().toString();
+
+        AuthorizationRequest authorizationRequest = new AuthorizationRequest(responseTypes, clientId, scopes, redirectUri, nonce);
+        authorizationRequest.setState(state);
+
+        JwtAuthorizationRequest jwtAuthorizationRequest = new JwtAuthorizationRequest(authorizationRequest, SignatureAlgorithm.NONE, null, cryptoProvider);
+        jwtAuthorizationRequest.addIdTokenClaim(new Claim(JwtClaimName.AUTHENTICATION_TIME, ClaimValue.createEssential(true)));
+        jwtAuthorizationRequest.addIdTokenClaim(new Claim("member_of", ClaimValue.createEssential(true)));
+        jwtAuthorizationRequest.addUserInfoClaim(new Claim("member_of", ClaimValue.createEssential(true)));
+        String authJwt = jwtAuthorizationRequest.getEncodedJwt();
+        authorizationRequest.setRequest(authJwt);
+
+        AuthorizeClient authorizeClient = new AuthorizeClient(authorizationEndpoint);
+        authorizeClient.setRequest(authorizationRequest);
+
+        AuthorizationResponse authorizationResponse = authenticateResourceOwnerAndGrantAccess(
+                authorizationEndpoint, authorizationRequest, userId, userSecret);
+
+        assertNotNull(authorizationResponse.getLocation(), "The location is null");
+        assertNotNull(authorizationResponse.getAccessToken(), "The accessToken is null");
+        assertNotNull(authorizationResponse.getTokenType(), "The tokenType is null");
+        assertNotNull(authorizationResponse.getIdToken(), "The idToken is null");
+        assertNotNull(authorizationResponse.getState(), "The state is null");
+
+        String idToken = authorizationResponse.getIdToken();
+        String accessToken = authorizationResponse.getAccessToken();
+
+        // 3. Validate id_token
+        Jwt jwt = Jwt.parse(idToken);
+        assertNotNull(jwt.getHeader().getClaimAsString(JwtHeaderName.TYPE));
+        assertNotNull(jwt.getHeader().getClaimAsString(JwtHeaderName.ALGORITHM));
+        assertNotNull(jwt.getClaims().getClaimAsString(JwtClaimName.ISSUER));
+        assertNotNull(jwt.getClaims().getClaimAsString(JwtClaimName.AUDIENCE));
+        assertNotNull(jwt.getClaims().getClaimAsString(JwtClaimName.EXPIRATION_TIME));
+        assertNotNull(jwt.getClaims().getClaimAsString(JwtClaimName.ISSUED_AT));
+        assertNotNull(jwt.getClaims().getClaimAsString(JwtClaimName.SUBJECT_IDENTIFIER));
+        assertNotNull(jwt.getClaims().getClaimAsString(JwtClaimName.ACCESS_TOKEN_HASH));
+        assertNotNull(jwt.getClaims().getClaimAsString(JwtClaimName.AUTHENTICATION_TIME));
+        assertNotNull(jwt.getClaims().getClaimAsStringList("member_of"));
+        assertTrue(jwt.getClaims().getClaimAsStringList("member_of").size() > 1);
+
+        PlainTextSignature signer = new PlainTextSignature();
+        assertTrue(signer.validate(jwt));
+
+        // 4. Request user info
+        UserInfoRequest userInfoRequest = new UserInfoRequest(accessToken);
+        UserInfoClient userInfoClient = new UserInfoClient(userInfoEndpoint);
+        userInfoClient.setRequest(userInfoRequest);
+        UserInfoResponse userInfoResponse = userInfoClient.exec();
+
+        showClient(userInfoClient);
+        assertEquals(userInfoResponse.getStatus(), 200, "Unexpected response code: " + userInfoResponse.getStatus());
+        assertNotNull(userInfoResponse.getClaim(JwtClaimName.SUBJECT_IDENTIFIER));
+        assertNotNull(userInfoResponse.getClaim("member_of"));
+        assertTrue(userInfoResponse.getClaim("member_of").size() > 1);
+    }
+
+    @Parameters({"userId", "userSecret", "redirectUri", "redirectUris", "dnName", "keyStoreFile", "keyStoreSecret",
+            "sectorIdentifierUri"})
+    @Test
+    public void authorizationRequestObjectWithMultivaluedClaimHS256(
+            final String userId, final String userSecret, final String redirectUri, final String redirectUris,
+            final String dnName, final String keyStoreFile, final String keyStoreSecret, final String sectorIdentifierUri) throws Exception {
+        showTitle("authorizationRequestObjectWithMultivaluedClaimHS256");
+
+        List<ResponseType> responseTypes = Arrays.asList(ResponseType.TOKEN, ResponseType.ID_TOKEN);
+
+        // 1. Register client
+        RegisterRequest registerRequest = new RegisterRequest(ApplicationType.WEB, "oxAuth test app",
+                StringUtils.spaceSeparatedToList(redirectUris));
+        registerRequest.setResponseTypes(responseTypes);
+        registerRequest.setSectorIdentifierUri(sectorIdentifierUri);
+        registerRequest.setIdTokenSignedResponseAlg(SignatureAlgorithm.HS256);
+        registerRequest.setUserInfoSignedResponseAlg(SignatureAlgorithm.HS256);
+        registerRequest.setRequestObjectSigningAlg(SignatureAlgorithm.HS256);
+        registerRequest.setClaims(Arrays.asList("member_of"));
+
+        RegisterClient registerClient = new RegisterClient(registrationEndpoint);
+        registerClient.setRequest(registerRequest);
+        RegisterResponse registerResponse = registerClient.exec();
+
+        showClient(registerClient);
+        assertEquals(registerResponse.getStatus(), 200, "Unexpected response code: " + registerResponse.getEntity());
+        assertNotNull(registerResponse.getClientId());
+        assertNotNull(registerResponse.getClientSecret());
+        assertNotNull(registerResponse.getRegistrationAccessToken());
+        assertNotNull(registerResponse.getClientIdIssuedAt());
+        assertNotNull(registerResponse.getClientSecretExpiresAt());
+
+        String clientId = registerResponse.getClientId();
+        String clientSecret = registerResponse.getClientSecret();
+
+        // 2. Request authorization
+        OxAuthCryptoProvider cryptoProvider = new OxAuthCryptoProvider(keyStoreFile, keyStoreSecret, dnName);
+
+        List<String> scopes = Arrays.asList("openid");
+        String nonce = UUID.randomUUID().toString();
+        String state = UUID.randomUUID().toString();
+
+        AuthorizationRequest authorizationRequest = new AuthorizationRequest(responseTypes, clientId, scopes, redirectUri, nonce);
+        authorizationRequest.setState(state);
+
+        JwtAuthorizationRequest jwtAuthorizationRequest = new JwtAuthorizationRequest(authorizationRequest, SignatureAlgorithm.HS256, clientSecret, cryptoProvider);
+        jwtAuthorizationRequest.addIdTokenClaim(new Claim(JwtClaimName.AUTHENTICATION_TIME, ClaimValue.createEssential(true)));
+        jwtAuthorizationRequest.addIdTokenClaim(new Claim("member_of", ClaimValue.createEssential(true)));
+        jwtAuthorizationRequest.addUserInfoClaim(new Claim("member_of", ClaimValue.createEssential(true)));
+        String authJwt = jwtAuthorizationRequest.getEncodedJwt();
+        authorizationRequest.setRequest(authJwt);
+
+        AuthorizeClient authorizeClient = new AuthorizeClient(authorizationEndpoint);
+        authorizeClient.setRequest(authorizationRequest);
+
+        AuthorizationResponse authorizationResponse = authenticateResourceOwnerAndGrantAccess(
+                authorizationEndpoint, authorizationRequest, userId, userSecret);
+
+        assertNotNull(authorizationResponse.getLocation(), "The location is null");
+        assertNotNull(authorizationResponse.getAccessToken(), "The accessToken is null");
+        assertNotNull(authorizationResponse.getTokenType(), "The tokenType is null");
+        assertNotNull(authorizationResponse.getIdToken(), "The idToken is null");
+        assertNotNull(authorizationResponse.getState(), "The state is null");
+
+        String idToken = authorizationResponse.getIdToken();
+        String accessToken = authorizationResponse.getAccessToken();
+
+        // 3. Validate id_token
+        Jwt jwt = Jwt.parse(idToken);
+        assertNotNull(jwt.getHeader().getClaimAsString(JwtHeaderName.TYPE));
+        assertNotNull(jwt.getHeader().getClaimAsString(JwtHeaderName.ALGORITHM));
+        assertNotNull(jwt.getClaims().getClaimAsString(JwtClaimName.ISSUER));
+        assertNotNull(jwt.getClaims().getClaimAsString(JwtClaimName.AUDIENCE));
+        assertNotNull(jwt.getClaims().getClaimAsString(JwtClaimName.EXPIRATION_TIME));
+        assertNotNull(jwt.getClaims().getClaimAsString(JwtClaimName.ISSUED_AT));
+        assertNotNull(jwt.getClaims().getClaimAsString(JwtClaimName.SUBJECT_IDENTIFIER));
+        assertNotNull(jwt.getClaims().getClaimAsString(JwtClaimName.ACCESS_TOKEN_HASH));
+        assertNotNull(jwt.getClaims().getClaimAsString(JwtClaimName.AUTHENTICATION_TIME));
+        assertNotNull(jwt.getClaims().getClaimAsStringList("member_of"));
+        assertTrue(jwt.getClaims().getClaimAsStringList("member_of").size() > 1);
+
+        HMACSigner hmacSigner = new HMACSigner(SignatureAlgorithm.HS256, clientSecret);
+        assertTrue(hmacSigner.validate(jwt));
+
+        // 4. Request user info
+        UserInfoRequest userInfoRequest = new UserInfoRequest(accessToken);
+        UserInfoClient userInfoClient = new UserInfoClient(userInfoEndpoint);
+        userInfoClient.setRequest(userInfoRequest);
+        userInfoClient.setSharedKey(clientSecret);
+        UserInfoResponse userInfoResponse = userInfoClient.exec();
+
+        showClient(userInfoClient);
+        assertEquals(userInfoResponse.getStatus(), 200, "Unexpected response code: " + userInfoResponse.getStatus());
+        assertNotNull(userInfoResponse.getClaim(JwtClaimName.SUBJECT_IDENTIFIER));
+        assertNotNull(userInfoResponse.getClaim("member_of"));
+        assertTrue(userInfoResponse.getClaim("member_of").size() > 1);
+    }
+
+    @Parameters({"userId", "userSecret", "redirectUri", "redirectUris", "dnName", "keyStoreFile", "keyStoreSecret",
+            "sectorIdentifierUri"})
+    @Test
+    public void authorizationRequestObjectWithMultivaluedClaimHS384(
+            final String userId, final String userSecret, final String redirectUri, final String redirectUris,
+            final String dnName, final String keyStoreFile, final String keyStoreSecret, final String sectorIdentifierUri) throws Exception {
+        showTitle("authorizationRequestObjectWithMultivaluedClaimHS384");
+
+        List<ResponseType> responseTypes = Arrays.asList(ResponseType.TOKEN, ResponseType.ID_TOKEN);
+
+        // 1. Register client
+        RegisterRequest registerRequest = new RegisterRequest(ApplicationType.WEB, "oxAuth test app",
+                StringUtils.spaceSeparatedToList(redirectUris));
+        registerRequest.setResponseTypes(responseTypes);
+        registerRequest.setSectorIdentifierUri(sectorIdentifierUri);
+        registerRequest.setIdTokenSignedResponseAlg(SignatureAlgorithm.HS384);
+        registerRequest.setUserInfoSignedResponseAlg(SignatureAlgorithm.HS384);
+        registerRequest.setRequestObjectSigningAlg(SignatureAlgorithm.HS384);
+        registerRequest.setClaims(Arrays.asList("member_of"));
+
+        RegisterClient registerClient = new RegisterClient(registrationEndpoint);
+        registerClient.setRequest(registerRequest);
+        RegisterResponse registerResponse = registerClient.exec();
+
+        showClient(registerClient);
+        assertEquals(registerResponse.getStatus(), 200, "Unexpected response code: " + registerResponse.getEntity());
+        assertNotNull(registerResponse.getClientId());
+        assertNotNull(registerResponse.getClientSecret());
+        assertNotNull(registerResponse.getRegistrationAccessToken());
+        assertNotNull(registerResponse.getClientIdIssuedAt());
+        assertNotNull(registerResponse.getClientSecretExpiresAt());
+
+        String clientId = registerResponse.getClientId();
+        String clientSecret = registerResponse.getClientSecret();
+
+        // 2. Request authorization
+        OxAuthCryptoProvider cryptoProvider = new OxAuthCryptoProvider(keyStoreFile, keyStoreSecret, dnName);
+
+        List<String> scopes = Arrays.asList("openid");
+        String nonce = UUID.randomUUID().toString();
+        String state = UUID.randomUUID().toString();
+
+        AuthorizationRequest authorizationRequest = new AuthorizationRequest(responseTypes, clientId, scopes, redirectUri, nonce);
+        authorizationRequest.setState(state);
+
+        JwtAuthorizationRequest jwtAuthorizationRequest = new JwtAuthorizationRequest(authorizationRequest, SignatureAlgorithm.HS384, clientSecret, cryptoProvider);
+        jwtAuthorizationRequest.addIdTokenClaim(new Claim(JwtClaimName.AUTHENTICATION_TIME, ClaimValue.createEssential(true)));
+        jwtAuthorizationRequest.addIdTokenClaim(new Claim("member_of", ClaimValue.createEssential(true)));
+        jwtAuthorizationRequest.addUserInfoClaim(new Claim("member_of", ClaimValue.createEssential(true)));
+        String authJwt = jwtAuthorizationRequest.getEncodedJwt();
+        authorizationRequest.setRequest(authJwt);
+
+        AuthorizeClient authorizeClient = new AuthorizeClient(authorizationEndpoint);
+        authorizeClient.setRequest(authorizationRequest);
+
+        AuthorizationResponse authorizationResponse = authenticateResourceOwnerAndGrantAccess(
+                authorizationEndpoint, authorizationRequest, userId, userSecret);
+
+        assertNotNull(authorizationResponse.getLocation(), "The location is null");
+        assertNotNull(authorizationResponse.getAccessToken(), "The accessToken is null");
+        assertNotNull(authorizationResponse.getTokenType(), "The tokenType is null");
+        assertNotNull(authorizationResponse.getIdToken(), "The idToken is null");
+        assertNotNull(authorizationResponse.getState(), "The state is null");
+
+        String idToken = authorizationResponse.getIdToken();
+        String accessToken = authorizationResponse.getAccessToken();
+
+        // 3. Validate id_token
+        Jwt jwt = Jwt.parse(idToken);
+        assertNotNull(jwt.getHeader().getClaimAsString(JwtHeaderName.TYPE));
+        assertNotNull(jwt.getHeader().getClaimAsString(JwtHeaderName.ALGORITHM));
+        assertNotNull(jwt.getClaims().getClaimAsString(JwtClaimName.ISSUER));
+        assertNotNull(jwt.getClaims().getClaimAsString(JwtClaimName.AUDIENCE));
+        assertNotNull(jwt.getClaims().getClaimAsString(JwtClaimName.EXPIRATION_TIME));
+        assertNotNull(jwt.getClaims().getClaimAsString(JwtClaimName.ISSUED_AT));
+        assertNotNull(jwt.getClaims().getClaimAsString(JwtClaimName.SUBJECT_IDENTIFIER));
+        assertNotNull(jwt.getClaims().getClaimAsString(JwtClaimName.ACCESS_TOKEN_HASH));
+        assertNotNull(jwt.getClaims().getClaimAsString(JwtClaimName.AUTHENTICATION_TIME));
+        assertNotNull(jwt.getClaims().getClaimAsStringList("member_of"));
+        assertTrue(jwt.getClaims().getClaimAsStringList("member_of").size() > 1);
+
+        HMACSigner hmacSigner = new HMACSigner(SignatureAlgorithm.HS384, clientSecret);
+        assertTrue(hmacSigner.validate(jwt));
+
+        // 4. Request user info
+        UserInfoRequest userInfoRequest = new UserInfoRequest(accessToken);
+        UserInfoClient userInfoClient = new UserInfoClient(userInfoEndpoint);
+        userInfoClient.setRequest(userInfoRequest);
+        userInfoClient.setSharedKey(clientSecret);
+        UserInfoResponse userInfoResponse = userInfoClient.exec();
+
+        showClient(userInfoClient);
+        assertEquals(userInfoResponse.getStatus(), 200, "Unexpected response code: " + userInfoResponse.getStatus());
+        assertNotNull(userInfoResponse.getClaim(JwtClaimName.SUBJECT_IDENTIFIER));
+        assertNotNull(userInfoResponse.getClaim("member_of"));
+        assertTrue(userInfoResponse.getClaim("member_of").size() > 1);
+    }
+
+    @Parameters({"userId", "userSecret", "redirectUri", "redirectUris", "dnName", "keyStoreFile", "keyStoreSecret",
+            "sectorIdentifierUri"})
+    @Test
+    public void authorizationRequestObjectWithMultivaluedClaimHS512(
+            final String userId, final String userSecret, final String redirectUri, final String redirectUris,
+            final String dnName, final String keyStoreFile, final String keyStoreSecret, final String sectorIdentifierUri) throws Exception {
+        showTitle("authorizationRequestObjectWithMultivaluedClaimHS512");
+
+        List<ResponseType> responseTypes = Arrays.asList(ResponseType.TOKEN, ResponseType.ID_TOKEN);
+
+        // 1. Register client
+        RegisterRequest registerRequest = new RegisterRequest(ApplicationType.WEB, "oxAuth test app",
+                StringUtils.spaceSeparatedToList(redirectUris));
+        registerRequest.setResponseTypes(responseTypes);
+        registerRequest.setSectorIdentifierUri(sectorIdentifierUri);
+        registerRequest.setIdTokenSignedResponseAlg(SignatureAlgorithm.HS512);
+        registerRequest.setUserInfoSignedResponseAlg(SignatureAlgorithm.HS512);
+        registerRequest.setRequestObjectSigningAlg(SignatureAlgorithm.HS512);
+        registerRequest.setClaims(Arrays.asList("member_of"));
+
+        RegisterClient registerClient = new RegisterClient(registrationEndpoint);
+        registerClient.setRequest(registerRequest);
+        RegisterResponse registerResponse = registerClient.exec();
+
+        showClient(registerClient);
+        assertEquals(registerResponse.getStatus(), 200, "Unexpected response code: " + registerResponse.getEntity());
+        assertNotNull(registerResponse.getClientId());
+        assertNotNull(registerResponse.getClientSecret());
+        assertNotNull(registerResponse.getRegistrationAccessToken());
+        assertNotNull(registerResponse.getClientIdIssuedAt());
+        assertNotNull(registerResponse.getClientSecretExpiresAt());
+
+        String clientId = registerResponse.getClientId();
+        String clientSecret = registerResponse.getClientSecret();
+
+        // 2. Request authorization
+        OxAuthCryptoProvider cryptoProvider = new OxAuthCryptoProvider(keyStoreFile, keyStoreSecret, dnName);
+
+        List<String> scopes = Arrays.asList("openid");
+        String nonce = UUID.randomUUID().toString();
+        String state = UUID.randomUUID().toString();
+
+        AuthorizationRequest authorizationRequest = new AuthorizationRequest(responseTypes, clientId, scopes, redirectUri, nonce);
+        authorizationRequest.setState(state);
+
+        JwtAuthorizationRequest jwtAuthorizationRequest = new JwtAuthorizationRequest(authorizationRequest, SignatureAlgorithm.HS512, clientSecret, cryptoProvider);
+        jwtAuthorizationRequest.addIdTokenClaim(new Claim(JwtClaimName.AUTHENTICATION_TIME, ClaimValue.createEssential(true)));
+        jwtAuthorizationRequest.addIdTokenClaim(new Claim("member_of", ClaimValue.createEssential(true)));
+        jwtAuthorizationRequest.addUserInfoClaim(new Claim("member_of", ClaimValue.createEssential(true)));
+        String authJwt = jwtAuthorizationRequest.getEncodedJwt();
+        authorizationRequest.setRequest(authJwt);
+
+        AuthorizeClient authorizeClient = new AuthorizeClient(authorizationEndpoint);
+        authorizeClient.setRequest(authorizationRequest);
+
+        AuthorizationResponse authorizationResponse = authenticateResourceOwnerAndGrantAccess(
+                authorizationEndpoint, authorizationRequest, userId, userSecret);
+
+        assertNotNull(authorizationResponse.getLocation(), "The location is null");
+        assertNotNull(authorizationResponse.getAccessToken(), "The accessToken is null");
+        assertNotNull(authorizationResponse.getTokenType(), "The tokenType is null");
+        assertNotNull(authorizationResponse.getIdToken(), "The idToken is null");
+        assertNotNull(authorizationResponse.getState(), "The state is null");
+
+        String idToken = authorizationResponse.getIdToken();
+        String accessToken = authorizationResponse.getAccessToken();
+
+        // 3. Validate id_token
+        Jwt jwt = Jwt.parse(idToken);
+        assertNotNull(jwt.getHeader().getClaimAsString(JwtHeaderName.TYPE));
+        assertNotNull(jwt.getHeader().getClaimAsString(JwtHeaderName.ALGORITHM));
+        assertNotNull(jwt.getClaims().getClaimAsString(JwtClaimName.ISSUER));
+        assertNotNull(jwt.getClaims().getClaimAsString(JwtClaimName.AUDIENCE));
+        assertNotNull(jwt.getClaims().getClaimAsString(JwtClaimName.EXPIRATION_TIME));
+        assertNotNull(jwt.getClaims().getClaimAsString(JwtClaimName.ISSUED_AT));
+        assertNotNull(jwt.getClaims().getClaimAsString(JwtClaimName.SUBJECT_IDENTIFIER));
+        assertNotNull(jwt.getClaims().getClaimAsString(JwtClaimName.ACCESS_TOKEN_HASH));
+        assertNotNull(jwt.getClaims().getClaimAsString(JwtClaimName.AUTHENTICATION_TIME));
+        assertNotNull(jwt.getClaims().getClaimAsStringList("member_of"));
+        assertTrue(jwt.getClaims().getClaimAsStringList("member_of").size() > 1);
+
+        HMACSigner hmacSigner = new HMACSigner(SignatureAlgorithm.HS512, clientSecret);
+        assertTrue(hmacSigner.validate(jwt));
+
+        // 4. Request user info
+        UserInfoRequest userInfoRequest = new UserInfoRequest(accessToken);
+        UserInfoClient userInfoClient = new UserInfoClient(userInfoEndpoint);
+        userInfoClient.setRequest(userInfoRequest);
+        userInfoClient.setSharedKey(clientSecret);
+        UserInfoResponse userInfoResponse = userInfoClient.exec();
+
+        showClient(userInfoClient);
+        assertEquals(userInfoResponse.getStatus(), 200, "Unexpected response code: " + userInfoResponse.getStatus());
+        assertNotNull(userInfoResponse.getClaim(JwtClaimName.SUBJECT_IDENTIFIER));
+        assertNotNull(userInfoResponse.getClaim("member_of"));
+        assertTrue(userInfoResponse.getClaim("member_of").size() > 1);
+    }
+
+    @Parameters({"userId", "userSecret", "redirectUri", "redirectUris", "dnName", "keyStoreFile", "keyStoreSecret",
+            "sectorIdentifierUri", "RS256_keyId", "clientJwksUri"})
+    @Test
+    public void authorizationRequestObjectWithMultivaluedClaimRS256(
+            final String userId, final String userSecret, final String redirectUri, final String redirectUris,
+            final String dnName, final String keyStoreFile, final String keyStoreSecret,
+            final String sectorIdentifierUri, final String keyId, final String clientJwksUri) throws Exception {
+        showTitle("authorizationRequestObjectWithMultivaluedClaimRS256");
+
+        List<ResponseType> responseTypes = Arrays.asList(ResponseType.TOKEN, ResponseType.ID_TOKEN);
+
+        // 1. Register client
+        RegisterRequest registerRequest = new RegisterRequest(ApplicationType.WEB, "oxAuth test app",
+                StringUtils.spaceSeparatedToList(redirectUris));
+        registerRequest.setResponseTypes(responseTypes);
+        registerRequest.setSectorIdentifierUri(sectorIdentifierUri);
+        registerRequest.setIdTokenSignedResponseAlg(SignatureAlgorithm.RS256);
+        registerRequest.setUserInfoSignedResponseAlg(SignatureAlgorithm.RS256);
+        registerRequest.setRequestObjectSigningAlg(SignatureAlgorithm.RS256);
+        registerRequest.setJwksUri(clientJwksUri);
+        registerRequest.setClaims(Arrays.asList("member_of"));
+
+        RegisterClient registerClient = new RegisterClient(registrationEndpoint);
+        registerClient.setRequest(registerRequest);
+        RegisterResponse registerResponse = registerClient.exec();
+
+        showClient(registerClient);
+        assertEquals(registerResponse.getStatus(), 200, "Unexpected response code: " + registerResponse.getEntity());
+        assertNotNull(registerResponse.getClientId());
+        assertNotNull(registerResponse.getClientSecret());
+        assertNotNull(registerResponse.getRegistrationAccessToken());
+        assertNotNull(registerResponse.getClientIdIssuedAt());
+        assertNotNull(registerResponse.getClientSecretExpiresAt());
+
+        String clientId = registerResponse.getClientId();
+
+        // 2. Request authorization
+        OxAuthCryptoProvider cryptoProvider = new OxAuthCryptoProvider(keyStoreFile, keyStoreSecret, dnName);
+
+        List<String> scopes = Arrays.asList("openid");
+        String nonce = UUID.randomUUID().toString();
+        String state = UUID.randomUUID().toString();
+
+        AuthorizationRequest authorizationRequest = new AuthorizationRequest(responseTypes, clientId, scopes, redirectUri, nonce);
+        authorizationRequest.setState(state);
+
+        JwtAuthorizationRequest jwtAuthorizationRequest = new JwtAuthorizationRequest(authorizationRequest, SignatureAlgorithm.RS256, cryptoProvider);
+        jwtAuthorizationRequest.setKeyId(keyId);
+        jwtAuthorizationRequest.addIdTokenClaim(new Claim(JwtClaimName.AUTHENTICATION_TIME, ClaimValue.createEssential(true)));
+        jwtAuthorizationRequest.addIdTokenClaim(new Claim("member_of", ClaimValue.createEssential(true)));
+        jwtAuthorizationRequest.addUserInfoClaim(new Claim("member_of", ClaimValue.createEssential(true)));
+        String authJwt = jwtAuthorizationRequest.getEncodedJwt();
+        authorizationRequest.setRequest(authJwt);
+
+        AuthorizeClient authorizeClient = new AuthorizeClient(authorizationEndpoint);
+        authorizeClient.setRequest(authorizationRequest);
+
+        AuthorizationResponse authorizationResponse = authenticateResourceOwnerAndGrantAccess(
+                authorizationEndpoint, authorizationRequest, userId, userSecret);
+
+        assertNotNull(authorizationResponse.getLocation(), "The location is null");
+        assertNotNull(authorizationResponse.getAccessToken(), "The accessToken is null");
+        assertNotNull(authorizationResponse.getTokenType(), "The tokenType is null");
+        assertNotNull(authorizationResponse.getIdToken(), "The idToken is null");
+        assertNotNull(authorizationResponse.getState(), "The state is null");
+
+        String idToken = authorizationResponse.getIdToken();
+        String accessToken = authorizationResponse.getAccessToken();
+
+        // 3. Validate id_token
+        Jwt jwt = Jwt.parse(idToken);
+        assertNotNull(jwt.getHeader().getClaimAsString(JwtHeaderName.TYPE));
+        assertNotNull(jwt.getHeader().getClaimAsString(JwtHeaderName.ALGORITHM));
+        assertNotNull(jwt.getClaims().getClaimAsString(JwtClaimName.ISSUER));
+        assertNotNull(jwt.getClaims().getClaimAsString(JwtClaimName.AUDIENCE));
+        assertNotNull(jwt.getClaims().getClaimAsString(JwtClaimName.EXPIRATION_TIME));
+        assertNotNull(jwt.getClaims().getClaimAsString(JwtClaimName.ISSUED_AT));
+        assertNotNull(jwt.getClaims().getClaimAsString(JwtClaimName.SUBJECT_IDENTIFIER));
+        assertNotNull(jwt.getClaims().getClaimAsString(JwtClaimName.ACCESS_TOKEN_HASH));
+        assertNotNull(jwt.getClaims().getClaimAsString(JwtClaimName.AUTHENTICATION_TIME));
+        assertNotNull(jwt.getClaims().getClaimAsStringList("member_of"));
+        assertTrue(jwt.getClaims().getClaimAsStringList("member_of").size() > 1);
+
+        RSAPublicKey publicKey = JwkClient.getRSAPublicKey(
+                jwksUri,
+                jwt.getHeader().getClaimAsString(JwtHeaderName.KEY_ID));
+        RSASigner rsaSigner = new RSASigner(SignatureAlgorithm.RS256, publicKey);
+
+        assertTrue(rsaSigner.validate(jwt));
+
+        // 4. Request user info
+        UserInfoRequest userInfoRequest = new UserInfoRequest(accessToken);
+        UserInfoClient userInfoClient = new UserInfoClient(userInfoEndpoint);
+        userInfoClient.setRequest(userInfoRequest);
+        userInfoClient.setJwksUri(jwksUri);
+        UserInfoResponse userInfoResponse = userInfoClient.exec();
+
+        showClient(userInfoClient);
+        assertEquals(userInfoResponse.getStatus(), 200, "Unexpected response code: " + userInfoResponse.getStatus());
+        assertNotNull(userInfoResponse.getClaim(JwtClaimName.SUBJECT_IDENTIFIER));
+        assertNotNull(userInfoResponse.getClaim("member_of"));
+        assertTrue(userInfoResponse.getClaim("member_of").size() > 1);
+    }
+
+    @Parameters({"userId", "userSecret", "redirectUri", "redirectUris", "dnName", "keyStoreFile", "keyStoreSecret",
+            "sectorIdentifierUri", "RS384_keyId", "clientJwksUri"})
+    @Test
+    public void authorizationRequestObjectWithMultivaluedClaimRS384(
+            final String userId, final String userSecret, final String redirectUri, final String redirectUris,
+            final String dnName, final String keyStoreFile, final String keyStoreSecret,
+            final String sectorIdentifierUri, final String keyId, final String clientJwksUri) throws Exception {
+        showTitle("authorizationRequestObjectWithMultivaluedClaimRS384");
+
+        List<ResponseType> responseTypes = Arrays.asList(ResponseType.TOKEN, ResponseType.ID_TOKEN);
+
+        // 1. Register client
+        RegisterRequest registerRequest = new RegisterRequest(ApplicationType.WEB, "oxAuth test app",
+                StringUtils.spaceSeparatedToList(redirectUris));
+        registerRequest.setResponseTypes(responseTypes);
+        registerRequest.setSectorIdentifierUri(sectorIdentifierUri);
+        registerRequest.setIdTokenSignedResponseAlg(SignatureAlgorithm.RS384);
+        registerRequest.setUserInfoSignedResponseAlg(SignatureAlgorithm.RS384);
+        registerRequest.setRequestObjectSigningAlg(SignatureAlgorithm.RS384);
+        registerRequest.setJwksUri(clientJwksUri);
+        registerRequest.setClaims(Arrays.asList("member_of"));
+
+        RegisterClient registerClient = new RegisterClient(registrationEndpoint);
+        registerClient.setRequest(registerRequest);
+        RegisterResponse registerResponse = registerClient.exec();
+
+        showClient(registerClient);
+        assertEquals(registerResponse.getStatus(), 200, "Unexpected response code: " + registerResponse.getEntity());
+        assertNotNull(registerResponse.getClientId());
+        assertNotNull(registerResponse.getClientSecret());
+        assertNotNull(registerResponse.getRegistrationAccessToken());
+        assertNotNull(registerResponse.getClientIdIssuedAt());
+        assertNotNull(registerResponse.getClientSecretExpiresAt());
+
+        String clientId = registerResponse.getClientId();
+
+        // 2. Request authorization
+        OxAuthCryptoProvider cryptoProvider = new OxAuthCryptoProvider(keyStoreFile, keyStoreSecret, dnName);
+
+        List<String> scopes = Arrays.asList("openid");
+        String nonce = UUID.randomUUID().toString();
+        String state = UUID.randomUUID().toString();
+
+        AuthorizationRequest authorizationRequest = new AuthorizationRequest(responseTypes, clientId, scopes, redirectUri, nonce);
+        authorizationRequest.setState(state);
+
+        JwtAuthorizationRequest jwtAuthorizationRequest = new JwtAuthorizationRequest(authorizationRequest, SignatureAlgorithm.RS384, cryptoProvider);
+        jwtAuthorizationRequest.setKeyId(keyId);
+        jwtAuthorizationRequest.addIdTokenClaim(new Claim(JwtClaimName.AUTHENTICATION_TIME, ClaimValue.createEssential(true)));
+        jwtAuthorizationRequest.addIdTokenClaim(new Claim("member_of", ClaimValue.createEssential(true)));
+        jwtAuthorizationRequest.addUserInfoClaim(new Claim("member_of", ClaimValue.createEssential(true)));
+        String authJwt = jwtAuthorizationRequest.getEncodedJwt();
+        authorizationRequest.setRequest(authJwt);
+
+        AuthorizeClient authorizeClient = new AuthorizeClient(authorizationEndpoint);
+        authorizeClient.setRequest(authorizationRequest);
+
+        AuthorizationResponse authorizationResponse = authenticateResourceOwnerAndGrantAccess(
+                authorizationEndpoint, authorizationRequest, userId, userSecret);
+
+        assertNotNull(authorizationResponse.getLocation(), "The location is null");
+        assertNotNull(authorizationResponse.getAccessToken(), "The accessToken is null");
+        assertNotNull(authorizationResponse.getTokenType(), "The tokenType is null");
+        assertNotNull(authorizationResponse.getIdToken(), "The idToken is null");
+        assertNotNull(authorizationResponse.getState(), "The state is null");
+
+        String idToken = authorizationResponse.getIdToken();
+        String accessToken = authorizationResponse.getAccessToken();
+
+        // 3. Validate id_token
+        Jwt jwt = Jwt.parse(idToken);
+        assertNotNull(jwt.getHeader().getClaimAsString(JwtHeaderName.TYPE));
+        assertNotNull(jwt.getHeader().getClaimAsString(JwtHeaderName.ALGORITHM));
+        assertNotNull(jwt.getClaims().getClaimAsString(JwtClaimName.ISSUER));
+        assertNotNull(jwt.getClaims().getClaimAsString(JwtClaimName.AUDIENCE));
+        assertNotNull(jwt.getClaims().getClaimAsString(JwtClaimName.EXPIRATION_TIME));
+        assertNotNull(jwt.getClaims().getClaimAsString(JwtClaimName.ISSUED_AT));
+        assertNotNull(jwt.getClaims().getClaimAsString(JwtClaimName.SUBJECT_IDENTIFIER));
+        assertNotNull(jwt.getClaims().getClaimAsString(JwtClaimName.ACCESS_TOKEN_HASH));
+        assertNotNull(jwt.getClaims().getClaimAsString(JwtClaimName.AUTHENTICATION_TIME));
+        assertNotNull(jwt.getClaims().getClaimAsStringList("member_of"));
+        assertTrue(jwt.getClaims().getClaimAsStringList("member_of").size() > 1);
+
+        RSAPublicKey publicKey = JwkClient.getRSAPublicKey(
+                jwksUri,
+                jwt.getHeader().getClaimAsString(JwtHeaderName.KEY_ID));
+        RSASigner rsaSigner = new RSASigner(SignatureAlgorithm.RS384, publicKey);
+
+        assertTrue(rsaSigner.validate(jwt));
+
+        // 4. Request user info
+        UserInfoRequest userInfoRequest = new UserInfoRequest(accessToken);
+        UserInfoClient userInfoClient = new UserInfoClient(userInfoEndpoint);
+        userInfoClient.setRequest(userInfoRequest);
+        userInfoClient.setJwksUri(jwksUri);
+        UserInfoResponse userInfoResponse = userInfoClient.exec();
+
+        showClient(userInfoClient);
+        assertEquals(userInfoResponse.getStatus(), 200, "Unexpected response code: " + userInfoResponse.getStatus());
+        assertNotNull(userInfoResponse.getClaim(JwtClaimName.SUBJECT_IDENTIFIER));
+        assertNotNull(userInfoResponse.getClaim("member_of"));
+        assertTrue(userInfoResponse.getClaim("member_of").size() > 1);
+    }
+
+    @Parameters({"userId", "userSecret", "redirectUri", "redirectUris", "dnName", "keyStoreFile", "keyStoreSecret",
+            "sectorIdentifierUri", "RS512_keyId", "clientJwksUri"})
+    @Test
+    public void authorizationRequestObjectWithMultivaluedClaimRS512(
+            final String userId, final String userSecret, final String redirectUri, final String redirectUris,
+            final String dnName, final String keyStoreFile, final String keyStoreSecret,
+            final String sectorIdentifierUri, final String keyId, final String clientJwksUri) throws Exception {
+        showTitle("authorizationRequestObjectWithMultivaluedClaimRS512");
+
+        List<ResponseType> responseTypes = Arrays.asList(ResponseType.TOKEN, ResponseType.ID_TOKEN);
+
+        // 1. Register client
+        RegisterRequest registerRequest = new RegisterRequest(ApplicationType.WEB, "oxAuth test app",
+                StringUtils.spaceSeparatedToList(redirectUris));
+        registerRequest.setResponseTypes(responseTypes);
+        registerRequest.setSectorIdentifierUri(sectorIdentifierUri);
+        registerRequest.setIdTokenSignedResponseAlg(SignatureAlgorithm.RS512);
+        registerRequest.setUserInfoSignedResponseAlg(SignatureAlgorithm.RS512);
+        registerRequest.setRequestObjectSigningAlg(SignatureAlgorithm.RS512);
+        registerRequest.setJwksUri(clientJwksUri);
+        registerRequest.setClaims(Arrays.asList("member_of"));
+
+        RegisterClient registerClient = new RegisterClient(registrationEndpoint);
+        registerClient.setRequest(registerRequest);
+        RegisterResponse registerResponse = registerClient.exec();
+
+        showClient(registerClient);
+        assertEquals(registerResponse.getStatus(), 200, "Unexpected response code: " + registerResponse.getEntity());
+        assertNotNull(registerResponse.getClientId());
+        assertNotNull(registerResponse.getClientSecret());
+        assertNotNull(registerResponse.getRegistrationAccessToken());
+        assertNotNull(registerResponse.getClientIdIssuedAt());
+        assertNotNull(registerResponse.getClientSecretExpiresAt());
+
+        String clientId = registerResponse.getClientId();
+
+        // 2. Request authorization
+        OxAuthCryptoProvider cryptoProvider = new OxAuthCryptoProvider(keyStoreFile, keyStoreSecret, dnName);
+
+        List<String> scopes = Arrays.asList("openid");
+        String nonce = UUID.randomUUID().toString();
+        String state = UUID.randomUUID().toString();
+
+        AuthorizationRequest authorizationRequest = new AuthorizationRequest(responseTypes, clientId, scopes, redirectUri, nonce);
+        authorizationRequest.setState(state);
+
+        JwtAuthorizationRequest jwtAuthorizationRequest = new JwtAuthorizationRequest(authorizationRequest, SignatureAlgorithm.RS512, cryptoProvider);
+        jwtAuthorizationRequest.setKeyId(keyId);
+        jwtAuthorizationRequest.addIdTokenClaim(new Claim(JwtClaimName.AUTHENTICATION_TIME, ClaimValue.createEssential(true)));
+        jwtAuthorizationRequest.addIdTokenClaim(new Claim("member_of", ClaimValue.createEssential(true)));
+        jwtAuthorizationRequest.addUserInfoClaim(new Claim("member_of", ClaimValue.createEssential(true)));
+        String authJwt = jwtAuthorizationRequest.getEncodedJwt();
+        authorizationRequest.setRequest(authJwt);
+
+        AuthorizeClient authorizeClient = new AuthorizeClient(authorizationEndpoint);
+        authorizeClient.setRequest(authorizationRequest);
+
+        AuthorizationResponse authorizationResponse = authenticateResourceOwnerAndGrantAccess(
+                authorizationEndpoint, authorizationRequest, userId, userSecret);
+
+        assertNotNull(authorizationResponse.getLocation(), "The location is null");
+        assertNotNull(authorizationResponse.getAccessToken(), "The accessToken is null");
+        assertNotNull(authorizationResponse.getTokenType(), "The tokenType is null");
+        assertNotNull(authorizationResponse.getIdToken(), "The idToken is null");
+        assertNotNull(authorizationResponse.getState(), "The state is null");
+
+        String idToken = authorizationResponse.getIdToken();
+        String accessToken = authorizationResponse.getAccessToken();
+
+        // 3. Validate id_token
+        Jwt jwt = Jwt.parse(idToken);
+        assertNotNull(jwt.getHeader().getClaimAsString(JwtHeaderName.TYPE));
+        assertNotNull(jwt.getHeader().getClaimAsString(JwtHeaderName.ALGORITHM));
+        assertNotNull(jwt.getClaims().getClaimAsString(JwtClaimName.ISSUER));
+        assertNotNull(jwt.getClaims().getClaimAsString(JwtClaimName.AUDIENCE));
+        assertNotNull(jwt.getClaims().getClaimAsString(JwtClaimName.EXPIRATION_TIME));
+        assertNotNull(jwt.getClaims().getClaimAsString(JwtClaimName.ISSUED_AT));
+        assertNotNull(jwt.getClaims().getClaimAsString(JwtClaimName.SUBJECT_IDENTIFIER));
+        assertNotNull(jwt.getClaims().getClaimAsString(JwtClaimName.ACCESS_TOKEN_HASH));
+        assertNotNull(jwt.getClaims().getClaimAsString(JwtClaimName.AUTHENTICATION_TIME));
+        assertNotNull(jwt.getClaims().getClaimAsStringList("member_of"));
+        assertTrue(jwt.getClaims().getClaimAsStringList("member_of").size() > 1);
+
+        RSAPublicKey publicKey = JwkClient.getRSAPublicKey(
+                jwksUri,
+                jwt.getHeader().getClaimAsString(JwtHeaderName.KEY_ID));
+        RSASigner rsaSigner = new RSASigner(SignatureAlgorithm.RS512, publicKey);
+
+        assertTrue(rsaSigner.validate(jwt));
+
+        // 4. Request user info
+        UserInfoRequest userInfoRequest = new UserInfoRequest(accessToken);
+        UserInfoClient userInfoClient = new UserInfoClient(userInfoEndpoint);
+        userInfoClient.setRequest(userInfoRequest);
+        userInfoClient.setJwksUri(jwksUri);
+        UserInfoResponse userInfoResponse = userInfoClient.exec();
+
+        showClient(userInfoClient);
+        assertEquals(userInfoResponse.getStatus(), 200, "Unexpected response code: " + userInfoResponse.getStatus());
+        assertNotNull(userInfoResponse.getClaim(JwtClaimName.SUBJECT_IDENTIFIER));
+        assertNotNull(userInfoResponse.getClaim("member_of"));
+        assertTrue(userInfoResponse.getClaim("member_of").size() > 1);
+    }
+
+    @Parameters({"userId", "userSecret", "redirectUri", "redirectUris", "dnName", "keyStoreFile", "keyStoreSecret",
+            "sectorIdentifierUri", "ES256_keyId", "clientJwksUri"})
+    @Test
+    public void authorizationRequestObjectWithMultivaluedClaimES256(
+            final String userId, final String userSecret, final String redirectUri, final String redirectUris,
+            final String dnName, final String keyStoreFile, final String keyStoreSecret,
+            final String sectorIdentifierUri, final String keyId, final String clientJwksUri) throws Exception {
+        showTitle("authorizationRequestObjectWithMultivaluedClaimES256");
+
+        List<ResponseType> responseTypes = Arrays.asList(ResponseType.TOKEN, ResponseType.ID_TOKEN);
+
+        // 1. Register client
+        RegisterRequest registerRequest = new RegisterRequest(ApplicationType.WEB, "oxAuth test app",
+                StringUtils.spaceSeparatedToList(redirectUris));
+        registerRequest.setResponseTypes(responseTypes);
+        registerRequest.setSectorIdentifierUri(sectorIdentifierUri);
+        registerRequest.setIdTokenSignedResponseAlg(SignatureAlgorithm.ES256);
+        registerRequest.setUserInfoSignedResponseAlg(SignatureAlgorithm.ES256);
+        registerRequest.setRequestObjectSigningAlg(SignatureAlgorithm.ES256);
+        registerRequest.setJwksUri(clientJwksUri);
+        registerRequest.setClaims(Arrays.asList("member_of"));
+
+        RegisterClient registerClient = new RegisterClient(registrationEndpoint);
+        registerClient.setRequest(registerRequest);
+        RegisterResponse registerResponse = registerClient.exec();
+
+        showClient(registerClient);
+        assertEquals(registerResponse.getStatus(), 200, "Unexpected response code: " + registerResponse.getEntity());
+        assertNotNull(registerResponse.getClientId());
+        assertNotNull(registerResponse.getClientSecret());
+        assertNotNull(registerResponse.getRegistrationAccessToken());
+        assertNotNull(registerResponse.getClientIdIssuedAt());
+        assertNotNull(registerResponse.getClientSecretExpiresAt());
+
+        String clientId = registerResponse.getClientId();
+
+        // 2. Request authorization
+        OxAuthCryptoProvider cryptoProvider = new OxAuthCryptoProvider(keyStoreFile, keyStoreSecret, dnName);
+
+        List<String> scopes = Arrays.asList("openid");
+        String nonce = UUID.randomUUID().toString();
+        String state = UUID.randomUUID().toString();
+
+        AuthorizationRequest authorizationRequest = new AuthorizationRequest(responseTypes, clientId, scopes, redirectUri, nonce);
+        authorizationRequest.setState(state);
+
+        JwtAuthorizationRequest jwtAuthorizationRequest = new JwtAuthorizationRequest(authorizationRequest, SignatureAlgorithm.ES256, cryptoProvider);
+        jwtAuthorizationRequest.setKeyId(keyId);
+        jwtAuthorizationRequest.addIdTokenClaim(new Claim(JwtClaimName.AUTHENTICATION_TIME, ClaimValue.createEssential(true)));
+        jwtAuthorizationRequest.addIdTokenClaim(new Claim("member_of", ClaimValue.createEssential(true)));
+        jwtAuthorizationRequest.addUserInfoClaim(new Claim("member_of", ClaimValue.createEssential(true)));
+        String authJwt = jwtAuthorizationRequest.getEncodedJwt();
+        authorizationRequest.setRequest(authJwt);
+
+        AuthorizeClient authorizeClient = new AuthorizeClient(authorizationEndpoint);
+        authorizeClient.setRequest(authorizationRequest);
+
+        AuthorizationResponse authorizationResponse = authenticateResourceOwnerAndGrantAccess(
+                authorizationEndpoint, authorizationRequest, userId, userSecret);
+
+        assertNotNull(authorizationResponse.getLocation(), "The location is null");
+        assertNotNull(authorizationResponse.getAccessToken(), "The accessToken is null");
+        assertNotNull(authorizationResponse.getTokenType(), "The tokenType is null");
+        assertNotNull(authorizationResponse.getIdToken(), "The idToken is null");
+        assertNotNull(authorizationResponse.getState(), "The state is null");
+
+        String idToken = authorizationResponse.getIdToken();
+        String accessToken = authorizationResponse.getAccessToken();
+
+        // 3. Validate id_token
+        Jwt jwt = Jwt.parse(idToken);
+        assertNotNull(jwt.getHeader().getClaimAsString(JwtHeaderName.TYPE));
+        assertNotNull(jwt.getHeader().getClaimAsString(JwtHeaderName.ALGORITHM));
+        assertNotNull(jwt.getClaims().getClaimAsString(JwtClaimName.ISSUER));
+        assertNotNull(jwt.getClaims().getClaimAsString(JwtClaimName.AUDIENCE));
+        assertNotNull(jwt.getClaims().getClaimAsString(JwtClaimName.EXPIRATION_TIME));
+        assertNotNull(jwt.getClaims().getClaimAsString(JwtClaimName.ISSUED_AT));
+        assertNotNull(jwt.getClaims().getClaimAsString(JwtClaimName.SUBJECT_IDENTIFIER));
+        assertNotNull(jwt.getClaims().getClaimAsString(JwtClaimName.ACCESS_TOKEN_HASH));
+        assertNotNull(jwt.getClaims().getClaimAsString(JwtClaimName.AUTHENTICATION_TIME));
+        assertNotNull(jwt.getClaims().getClaimAsStringList("member_of"));
+        assertTrue(jwt.getClaims().getClaimAsStringList("member_of").size() > 1);
+
+        ECDSAPublicKey publicKey = JwkClient.getECDSAPublicKey(
+                jwksUri,
+                jwt.getHeader().getClaimAsString(JwtHeaderName.KEY_ID));
+        ECDSASigner ecdsaSigner = new ECDSASigner(SignatureAlgorithm.ES256, publicKey);
+
+        assertTrue(ecdsaSigner.validate(jwt));
+
+        // 4. Request user info
+        UserInfoRequest userInfoRequest = new UserInfoRequest(accessToken);
+        UserInfoClient userInfoClient = new UserInfoClient(userInfoEndpoint);
+        userInfoClient.setRequest(userInfoRequest);
+        userInfoClient.setJwksUri(jwksUri);
+        UserInfoResponse userInfoResponse = userInfoClient.exec();
+
+        showClient(userInfoClient);
+        assertEquals(userInfoResponse.getStatus(), 200, "Unexpected response code: " + userInfoResponse.getStatus());
+        assertNotNull(userInfoResponse.getClaim(JwtClaimName.SUBJECT_IDENTIFIER));
+        assertNotNull(userInfoResponse.getClaim("member_of"));
+        assertTrue(userInfoResponse.getClaim("member_of").size() > 1);
+    }
+
+    @Parameters({"userId", "userSecret", "redirectUri", "redirectUris", "dnName", "keyStoreFile", "keyStoreSecret",
+            "sectorIdentifierUri", "ES384_keyId", "clientJwksUri"})
+    @Test
+    public void authorizationRequestObjectWithMultivaluedClaimES384(
+            final String userId, final String userSecret, final String redirectUri, final String redirectUris,
+            final String dnName, final String keyStoreFile, final String keyStoreSecret,
+            final String sectorIdentifierUri, final String keyId, final String clientJwksUri) throws Exception {
+        showTitle("authorizationRequestObjectWithMultivaluedClaimES384");
+
+        List<ResponseType> responseTypes = Arrays.asList(ResponseType.TOKEN, ResponseType.ID_TOKEN);
+
+        // 1. Register client
+        RegisterRequest registerRequest = new RegisterRequest(ApplicationType.WEB, "oxAuth test app",
+                StringUtils.spaceSeparatedToList(redirectUris));
+        registerRequest.setResponseTypes(responseTypes);
+        registerRequest.setSectorIdentifierUri(sectorIdentifierUri);
+        registerRequest.setIdTokenSignedResponseAlg(SignatureAlgorithm.ES384);
+        registerRequest.setUserInfoSignedResponseAlg(SignatureAlgorithm.ES384);
+        registerRequest.setRequestObjectSigningAlg(SignatureAlgorithm.ES384);
+        registerRequest.setJwksUri(clientJwksUri);
+        registerRequest.setClaims(Arrays.asList("member_of"));
+
+        RegisterClient registerClient = new RegisterClient(registrationEndpoint);
+        registerClient.setRequest(registerRequest);
+        RegisterResponse registerResponse = registerClient.exec();
+
+        showClient(registerClient);
+        assertEquals(registerResponse.getStatus(), 200, "Unexpected response code: " + registerResponse.getEntity());
+        assertNotNull(registerResponse.getClientId());
+        assertNotNull(registerResponse.getClientSecret());
+        assertNotNull(registerResponse.getRegistrationAccessToken());
+        assertNotNull(registerResponse.getClientIdIssuedAt());
+        assertNotNull(registerResponse.getClientSecretExpiresAt());
+
+        String clientId = registerResponse.getClientId();
+
+        // 2. Request authorization
+        OxAuthCryptoProvider cryptoProvider = new OxAuthCryptoProvider(keyStoreFile, keyStoreSecret, dnName);
+
+        List<String> scopes = Arrays.asList("openid");
+        String nonce = UUID.randomUUID().toString();
+        String state = UUID.randomUUID().toString();
+
+        AuthorizationRequest authorizationRequest = new AuthorizationRequest(responseTypes, clientId, scopes, redirectUri, nonce);
+        authorizationRequest.setState(state);
+
+        JwtAuthorizationRequest jwtAuthorizationRequest = new JwtAuthorizationRequest(authorizationRequest, SignatureAlgorithm.ES384, cryptoProvider);
+        jwtAuthorizationRequest.setKeyId(keyId);
+        jwtAuthorizationRequest.addIdTokenClaim(new Claim(JwtClaimName.AUTHENTICATION_TIME, ClaimValue.createEssential(true)));
+        jwtAuthorizationRequest.addIdTokenClaim(new Claim("member_of", ClaimValue.createEssential(true)));
+        jwtAuthorizationRequest.addUserInfoClaim(new Claim("member_of", ClaimValue.createEssential(true)));
+        String authJwt = jwtAuthorizationRequest.getEncodedJwt();
+        authorizationRequest.setRequest(authJwt);
+
+        AuthorizeClient authorizeClient = new AuthorizeClient(authorizationEndpoint);
+        authorizeClient.setRequest(authorizationRequest);
+
+        AuthorizationResponse authorizationResponse = authenticateResourceOwnerAndGrantAccess(
+                authorizationEndpoint, authorizationRequest, userId, userSecret);
+
+        assertNotNull(authorizationResponse.getLocation(), "The location is null");
+        assertNotNull(authorizationResponse.getAccessToken(), "The accessToken is null");
+        assertNotNull(authorizationResponse.getTokenType(), "The tokenType is null");
+        assertNotNull(authorizationResponse.getIdToken(), "The idToken is null");
+        assertNotNull(authorizationResponse.getState(), "The state is null");
+
+        String idToken = authorizationResponse.getIdToken();
+        String accessToken = authorizationResponse.getAccessToken();
+
+        // 3. Validate id_token
+        Jwt jwt = Jwt.parse(idToken);
+        assertNotNull(jwt.getHeader().getClaimAsString(JwtHeaderName.TYPE));
+        assertNotNull(jwt.getHeader().getClaimAsString(JwtHeaderName.ALGORITHM));
+        assertNotNull(jwt.getClaims().getClaimAsString(JwtClaimName.ISSUER));
+        assertNotNull(jwt.getClaims().getClaimAsString(JwtClaimName.AUDIENCE));
+        assertNotNull(jwt.getClaims().getClaimAsString(JwtClaimName.EXPIRATION_TIME));
+        assertNotNull(jwt.getClaims().getClaimAsString(JwtClaimName.ISSUED_AT));
+        assertNotNull(jwt.getClaims().getClaimAsString(JwtClaimName.SUBJECT_IDENTIFIER));
+        assertNotNull(jwt.getClaims().getClaimAsString(JwtClaimName.ACCESS_TOKEN_HASH));
+        assertNotNull(jwt.getClaims().getClaimAsString(JwtClaimName.AUTHENTICATION_TIME));
+        assertNotNull(jwt.getClaims().getClaimAsStringList("member_of"));
+        assertTrue(jwt.getClaims().getClaimAsStringList("member_of").size() > 1);
+
+        ECDSAPublicKey publicKey = JwkClient.getECDSAPublicKey(
+                jwksUri,
+                jwt.getHeader().getClaimAsString(JwtHeaderName.KEY_ID));
+        ECDSASigner ecdsaSigner = new ECDSASigner(SignatureAlgorithm.ES384, publicKey);
+
+        assertTrue(ecdsaSigner.validate(jwt));
+
+        // 4. Request user info
+        UserInfoRequest userInfoRequest = new UserInfoRequest(accessToken);
+        UserInfoClient userInfoClient = new UserInfoClient(userInfoEndpoint);
+        userInfoClient.setRequest(userInfoRequest);
+        userInfoClient.setJwksUri(jwksUri);
+        UserInfoResponse userInfoResponse = userInfoClient.exec();
+
+        showClient(userInfoClient);
+        assertEquals(userInfoResponse.getStatus(), 200, "Unexpected response code: " + userInfoResponse.getStatus());
+        assertNotNull(userInfoResponse.getClaim(JwtClaimName.SUBJECT_IDENTIFIER));
+        assertNotNull(userInfoResponse.getClaim("member_of"));
+        assertTrue(userInfoResponse.getClaim("member_of").size() > 1);
+    }
+
+    @Parameters({"userId", "userSecret", "redirectUri", "redirectUris", "dnName", "keyStoreFile", "keyStoreSecret",
+            "sectorIdentifierUri", "ES512_keyId", "clientJwksUri"})
+    @Test
+    public void authorizationRequestObjectWithMultivaluedClaimES512(
+            final String userId, final String userSecret, final String redirectUri, final String redirectUris,
+            final String dnName, final String keyStoreFile, final String keyStoreSecret,
+            final String sectorIdentifierUri, final String keyId, final String clientJwksUri) throws Exception {
+        showTitle("authorizationRequestObjectWithMultivaluedClaimES512");
+
+        List<ResponseType> responseTypes = Arrays.asList(ResponseType.TOKEN, ResponseType.ID_TOKEN);
+
+        // 1. Register client
+        RegisterRequest registerRequest = new RegisterRequest(ApplicationType.WEB, "oxAuth test app",
+                StringUtils.spaceSeparatedToList(redirectUris));
+        registerRequest.setResponseTypes(responseTypes);
+        registerRequest.setSectorIdentifierUri(sectorIdentifierUri);
+        registerRequest.setIdTokenSignedResponseAlg(SignatureAlgorithm.ES512);
+        registerRequest.setUserInfoSignedResponseAlg(SignatureAlgorithm.ES512);
+        registerRequest.setRequestObjectSigningAlg(SignatureAlgorithm.ES512);
+        registerRequest.setJwksUri(clientJwksUri);
+        registerRequest.setClaims(Arrays.asList("member_of"));
+
+        RegisterClient registerClient = new RegisterClient(registrationEndpoint);
+        registerClient.setRequest(registerRequest);
+        RegisterResponse registerResponse = registerClient.exec();
+
+        showClient(registerClient);
+        assertEquals(registerResponse.getStatus(), 200, "Unexpected response code: " + registerResponse.getEntity());
+        assertNotNull(registerResponse.getClientId());
+        assertNotNull(registerResponse.getClientSecret());
+        assertNotNull(registerResponse.getRegistrationAccessToken());
+        assertNotNull(registerResponse.getClientIdIssuedAt());
+        assertNotNull(registerResponse.getClientSecretExpiresAt());
+
+        String clientId = registerResponse.getClientId();
+
+        // 2. Request authorization
+        OxAuthCryptoProvider cryptoProvider = new OxAuthCryptoProvider(keyStoreFile, keyStoreSecret, dnName);
+
+        List<String> scopes = Arrays.asList("openid");
+        String nonce = UUID.randomUUID().toString();
+        String state = UUID.randomUUID().toString();
+
+        AuthorizationRequest authorizationRequest = new AuthorizationRequest(responseTypes, clientId, scopes, redirectUri, nonce);
+        authorizationRequest.setState(state);
+
+        JwtAuthorizationRequest jwtAuthorizationRequest = new JwtAuthorizationRequest(authorizationRequest, SignatureAlgorithm.ES512, cryptoProvider);
+        jwtAuthorizationRequest.setKeyId(keyId);
+        jwtAuthorizationRequest.addIdTokenClaim(new Claim(JwtClaimName.AUTHENTICATION_TIME, ClaimValue.createEssential(true)));
+        jwtAuthorizationRequest.addIdTokenClaim(new Claim("member_of", ClaimValue.createEssential(true)));
+        jwtAuthorizationRequest.addUserInfoClaim(new Claim("member_of", ClaimValue.createEssential(true)));
+        String authJwt = jwtAuthorizationRequest.getEncodedJwt();
+        authorizationRequest.setRequest(authJwt);
+
+        AuthorizeClient authorizeClient = new AuthorizeClient(authorizationEndpoint);
+        authorizeClient.setRequest(authorizationRequest);
+
+        AuthorizationResponse authorizationResponse = authenticateResourceOwnerAndGrantAccess(
+                authorizationEndpoint, authorizationRequest, userId, userSecret);
+
+        assertNotNull(authorizationResponse.getLocation(), "The location is null");
+        assertNotNull(authorizationResponse.getAccessToken(), "The accessToken is null");
+        assertNotNull(authorizationResponse.getTokenType(), "The tokenType is null");
+        assertNotNull(authorizationResponse.getIdToken(), "The idToken is null");
+        assertNotNull(authorizationResponse.getState(), "The state is null");
+
+        String idToken = authorizationResponse.getIdToken();
+        String accessToken = authorizationResponse.getAccessToken();
+
+        // 3. Validate id_token
+        Jwt jwt = Jwt.parse(idToken);
+        assertNotNull(jwt.getHeader().getClaimAsString(JwtHeaderName.TYPE));
+        assertNotNull(jwt.getHeader().getClaimAsString(JwtHeaderName.ALGORITHM));
+        assertNotNull(jwt.getClaims().getClaimAsString(JwtClaimName.ISSUER));
+        assertNotNull(jwt.getClaims().getClaimAsString(JwtClaimName.AUDIENCE));
+        assertNotNull(jwt.getClaims().getClaimAsString(JwtClaimName.EXPIRATION_TIME));
+        assertNotNull(jwt.getClaims().getClaimAsString(JwtClaimName.ISSUED_AT));
+        assertNotNull(jwt.getClaims().getClaimAsString(JwtClaimName.SUBJECT_IDENTIFIER));
+        assertNotNull(jwt.getClaims().getClaimAsString(JwtClaimName.ACCESS_TOKEN_HASH));
+        assertNotNull(jwt.getClaims().getClaimAsString(JwtClaimName.AUTHENTICATION_TIME));
+        assertNotNull(jwt.getClaims().getClaimAsStringList("member_of"));
+        assertTrue(jwt.getClaims().getClaimAsStringList("member_of").size() > 1);
+
+        ECDSAPublicKey publicKey = JwkClient.getECDSAPublicKey(
+                jwksUri,
+                jwt.getHeader().getClaimAsString(JwtHeaderName.KEY_ID));
+        ECDSASigner ecdsaSigner = new ECDSASigner(SignatureAlgorithm.ES512, publicKey);
+
+        assertTrue(ecdsaSigner.validate(jwt));
+
+        // 4. Request user info
+        UserInfoRequest userInfoRequest = new UserInfoRequest(accessToken);
+        UserInfoClient userInfoClient = new UserInfoClient(userInfoEndpoint);
+        userInfoClient.setRequest(userInfoRequest);
+        userInfoClient.setJwksUri(jwksUri);
+        UserInfoResponse userInfoResponse = userInfoClient.exec();
+
+        showClient(userInfoClient);
+        assertEquals(userInfoResponse.getStatus(), 200, "Unexpected response code: " + userInfoResponse.getStatus());
+        assertNotNull(userInfoResponse.getClaim(JwtClaimName.SUBJECT_IDENTIFIER));
+        assertNotNull(userInfoResponse.getClaim("member_of"));
+        assertTrue(userInfoResponse.getClaim("member_of").size() > 1);
+    }
+
+    @Parameters({"userId", "userSecret", "redirectUri", "redirectUris", "dnName", "keyStoreFile", "keyStoreSecret",
+            "sectorIdentifierUri", "PS256_keyId", "clientJwksUri"})
+    @Test
+    public void authorizationRequestObjectWithMultivaluedClaimPS256(
+            final String userId, final String userSecret, final String redirectUri, final String redirectUris,
+            final String dnName, final String keyStoreFile, final String keyStoreSecret,
+            final String sectorIdentifierUri, final String keyId, final String clientJwksUri) throws Exception {
+        showTitle("authorizationRequestObjectWithMultivaluedClaimPS256");
+
+        List<ResponseType> responseTypes = Arrays.asList(ResponseType.TOKEN, ResponseType.ID_TOKEN);
+
+        // 1. Register client
+        RegisterRequest registerRequest = new RegisterRequest(ApplicationType.WEB, "oxAuth test app",
+                StringUtils.spaceSeparatedToList(redirectUris));
+        registerRequest.setResponseTypes(responseTypes);
+        registerRequest.setSectorIdentifierUri(sectorIdentifierUri);
+        registerRequest.setIdTokenSignedResponseAlg(SignatureAlgorithm.PS256);
+        registerRequest.setUserInfoSignedResponseAlg(SignatureAlgorithm.PS256);
+        registerRequest.setRequestObjectSigningAlg(SignatureAlgorithm.PS256);
+        registerRequest.setJwksUri(clientJwksUri);
+        registerRequest.setClaims(Arrays.asList("member_of"));
+
+        RegisterClient registerClient = new RegisterClient(registrationEndpoint);
+        registerClient.setRequest(registerRequest);
+        RegisterResponse registerResponse = registerClient.exec();
+
+        showClient(registerClient);
+        assertEquals(registerResponse.getStatus(), 200, "Unexpected response code: " + registerResponse.getEntity());
+        assertNotNull(registerResponse.getClientId());
+        assertNotNull(registerResponse.getClientSecret());
+        assertNotNull(registerResponse.getRegistrationAccessToken());
+        assertNotNull(registerResponse.getClientIdIssuedAt());
+        assertNotNull(registerResponse.getClientSecretExpiresAt());
+
+        String clientId = registerResponse.getClientId();
+
+        // 2. Request authorization
+        OxAuthCryptoProvider cryptoProvider = new OxAuthCryptoProvider(keyStoreFile, keyStoreSecret, dnName);
+
+        List<String> scopes = Arrays.asList("openid");
+        String nonce = UUID.randomUUID().toString();
+        String state = UUID.randomUUID().toString();
+
+        AuthorizationRequest authorizationRequest = new AuthorizationRequest(responseTypes, clientId, scopes, redirectUri, nonce);
+        authorizationRequest.setState(state);
+
+        JwtAuthorizationRequest jwtAuthorizationRequest = new JwtAuthorizationRequest(authorizationRequest, SignatureAlgorithm.PS256, cryptoProvider);
+        jwtAuthorizationRequest.setKeyId(keyId);
+        jwtAuthorizationRequest.addIdTokenClaim(new Claim(JwtClaimName.AUTHENTICATION_TIME, ClaimValue.createEssential(true)));
+        jwtAuthorizationRequest.addIdTokenClaim(new Claim("member_of", ClaimValue.createEssential(true)));
+        jwtAuthorizationRequest.addUserInfoClaim(new Claim("member_of", ClaimValue.createEssential(true)));
+        String authJwt = jwtAuthorizationRequest.getEncodedJwt();
+        authorizationRequest.setRequest(authJwt);
+
+        AuthorizeClient authorizeClient = new AuthorizeClient(authorizationEndpoint);
+        authorizeClient.setRequest(authorizationRequest);
+
+        AuthorizationResponse authorizationResponse = authenticateResourceOwnerAndGrantAccess(
+                authorizationEndpoint, authorizationRequest, userId, userSecret);
+
+        assertNotNull(authorizationResponse.getLocation(), "The location is null");
+        assertNotNull(authorizationResponse.getAccessToken(), "The accessToken is null");
+        assertNotNull(authorizationResponse.getTokenType(), "The tokenType is null");
+        assertNotNull(authorizationResponse.getIdToken(), "The idToken is null");
+        assertNotNull(authorizationResponse.getState(), "The state is null");
+
+        String idToken = authorizationResponse.getIdToken();
+        String accessToken = authorizationResponse.getAccessToken();
+
+        // 3. Validate id_token
+        Jwt jwt = Jwt.parse(idToken);
+        assertNotNull(jwt.getHeader().getClaimAsString(JwtHeaderName.TYPE));
+        assertNotNull(jwt.getHeader().getClaimAsString(JwtHeaderName.ALGORITHM));
+        assertNotNull(jwt.getClaims().getClaimAsString(JwtClaimName.ISSUER));
+        assertNotNull(jwt.getClaims().getClaimAsString(JwtClaimName.AUDIENCE));
+        assertNotNull(jwt.getClaims().getClaimAsString(JwtClaimName.EXPIRATION_TIME));
+        assertNotNull(jwt.getClaims().getClaimAsString(JwtClaimName.ISSUED_AT));
+        assertNotNull(jwt.getClaims().getClaimAsString(JwtClaimName.SUBJECT_IDENTIFIER));
+        assertNotNull(jwt.getClaims().getClaimAsString(JwtClaimName.ACCESS_TOKEN_HASH));
+        assertNotNull(jwt.getClaims().getClaimAsString(JwtClaimName.AUTHENTICATION_TIME));
+        assertNotNull(jwt.getClaims().getClaimAsStringList("member_of"));
+        assertTrue(jwt.getClaims().getClaimAsStringList("member_of").size() > 1);
+
+        RSAPublicKey publicKey = JwkClient.getRSAPublicKey(
+                jwksUri,
+                jwt.getHeader().getClaimAsString(JwtHeaderName.KEY_ID));
+        RSASigner rsaSigner = new RSASigner(SignatureAlgorithm.PS256, publicKey);
+
+        assertTrue(rsaSigner.validate(jwt));
+
+        // 4. Request user info
+        UserInfoRequest userInfoRequest = new UserInfoRequest(accessToken);
+        UserInfoClient userInfoClient = new UserInfoClient(userInfoEndpoint);
+        userInfoClient.setRequest(userInfoRequest);
+        userInfoClient.setJwksUri(jwksUri);
+        UserInfoResponse userInfoResponse = userInfoClient.exec();
+
+        showClient(userInfoClient);
+        assertEquals(userInfoResponse.getStatus(), 200, "Unexpected response code: " + userInfoResponse.getStatus());
+        assertNotNull(userInfoResponse.getClaim(JwtClaimName.SUBJECT_IDENTIFIER));
+        assertNotNull(userInfoResponse.getClaim("member_of"));
+        assertTrue(userInfoResponse.getClaim("member_of").size() > 1);
+    }
+
+    @Parameters({"userId", "userSecret", "redirectUri", "redirectUris", "dnName", "keyStoreFile", "keyStoreSecret",
+            "sectorIdentifierUri", "PS384_keyId", "clientJwksUri"})
+    @Test
+    public void authorizationRequestObjectWithMultivaluedClaimPS384(
+            final String userId, final String userSecret, final String redirectUri, final String redirectUris,
+            final String dnName, final String keyStoreFile, final String keyStoreSecret,
+            final String sectorIdentifierUri, final String keyId, final String clientJwksUri) throws Exception {
+        showTitle("authorizationRequestObjectWithMultivaluedClaimPS384");
+
+        List<ResponseType> responseTypes = Arrays.asList(ResponseType.TOKEN, ResponseType.ID_TOKEN);
+
+        // 1. Register client
+        RegisterRequest registerRequest = new RegisterRequest(ApplicationType.WEB, "oxAuth test app",
+                StringUtils.spaceSeparatedToList(redirectUris));
+        registerRequest.setResponseTypes(responseTypes);
+        registerRequest.setSectorIdentifierUri(sectorIdentifierUri);
+        registerRequest.setIdTokenSignedResponseAlg(SignatureAlgorithm.PS384);
+        registerRequest.setUserInfoSignedResponseAlg(SignatureAlgorithm.PS384);
+        registerRequest.setRequestObjectSigningAlg(SignatureAlgorithm.PS384);
+        registerRequest.setJwksUri(clientJwksUri);
+        registerRequest.setClaims(Arrays.asList("member_of"));
+
+        RegisterClient registerClient = new RegisterClient(registrationEndpoint);
+        registerClient.setRequest(registerRequest);
+        RegisterResponse registerResponse = registerClient.exec();
+
+        showClient(registerClient);
+        assertEquals(registerResponse.getStatus(), 200, "Unexpected response code: " + registerResponse.getEntity());
+        assertNotNull(registerResponse.getClientId());
+        assertNotNull(registerResponse.getClientSecret());
+        assertNotNull(registerResponse.getRegistrationAccessToken());
+        assertNotNull(registerResponse.getClientIdIssuedAt());
+        assertNotNull(registerResponse.getClientSecretExpiresAt());
+
+        String clientId = registerResponse.getClientId();
+
+        // 2. Request authorization
+        OxAuthCryptoProvider cryptoProvider = new OxAuthCryptoProvider(keyStoreFile, keyStoreSecret, dnName);
+
+        List<String> scopes = Arrays.asList("openid");
+        String nonce = UUID.randomUUID().toString();
+        String state = UUID.randomUUID().toString();
+
+        AuthorizationRequest authorizationRequest = new AuthorizationRequest(responseTypes, clientId, scopes, redirectUri, nonce);
+        authorizationRequest.setState(state);
+
+        JwtAuthorizationRequest jwtAuthorizationRequest = new JwtAuthorizationRequest(authorizationRequest, SignatureAlgorithm.PS384, cryptoProvider);
+        jwtAuthorizationRequest.setKeyId(keyId);
+        jwtAuthorizationRequest.addIdTokenClaim(new Claim(JwtClaimName.AUTHENTICATION_TIME, ClaimValue.createEssential(true)));
+        jwtAuthorizationRequest.addIdTokenClaim(new Claim("member_of", ClaimValue.createEssential(true)));
+        jwtAuthorizationRequest.addUserInfoClaim(new Claim("member_of", ClaimValue.createEssential(true)));
+        String authJwt = jwtAuthorizationRequest.getEncodedJwt();
+        authorizationRequest.setRequest(authJwt);
+
+        AuthorizeClient authorizeClient = new AuthorizeClient(authorizationEndpoint);
+        authorizeClient.setRequest(authorizationRequest);
+
+        AuthorizationResponse authorizationResponse = authenticateResourceOwnerAndGrantAccess(
+                authorizationEndpoint, authorizationRequest, userId, userSecret);
+
+        assertNotNull(authorizationResponse.getLocation(), "The location is null");
+        assertNotNull(authorizationResponse.getAccessToken(), "The accessToken is null");
+        assertNotNull(authorizationResponse.getTokenType(), "The tokenType is null");
+        assertNotNull(authorizationResponse.getIdToken(), "The idToken is null");
+        assertNotNull(authorizationResponse.getState(), "The state is null");
+
+        String idToken = authorizationResponse.getIdToken();
+        String accessToken = authorizationResponse.getAccessToken();
+
+        // 3. Validate id_token
+        Jwt jwt = Jwt.parse(idToken);
+        assertNotNull(jwt.getHeader().getClaimAsString(JwtHeaderName.TYPE));
+        assertNotNull(jwt.getHeader().getClaimAsString(JwtHeaderName.ALGORITHM));
+        assertNotNull(jwt.getClaims().getClaimAsString(JwtClaimName.ISSUER));
+        assertNotNull(jwt.getClaims().getClaimAsString(JwtClaimName.AUDIENCE));
+        assertNotNull(jwt.getClaims().getClaimAsString(JwtClaimName.EXPIRATION_TIME));
+        assertNotNull(jwt.getClaims().getClaimAsString(JwtClaimName.ISSUED_AT));
+        assertNotNull(jwt.getClaims().getClaimAsString(JwtClaimName.SUBJECT_IDENTIFIER));
+        assertNotNull(jwt.getClaims().getClaimAsString(JwtClaimName.ACCESS_TOKEN_HASH));
+        assertNotNull(jwt.getClaims().getClaimAsString(JwtClaimName.AUTHENTICATION_TIME));
+        assertNotNull(jwt.getClaims().getClaimAsStringList("member_of"));
+        assertTrue(jwt.getClaims().getClaimAsStringList("member_of").size() > 1);
+
+        RSAPublicKey publicKey = JwkClient.getRSAPublicKey(
+                jwksUri,
+                jwt.getHeader().getClaimAsString(JwtHeaderName.KEY_ID));
+        RSASigner rsaSigner = new RSASigner(SignatureAlgorithm.PS384, publicKey);
+
+        assertTrue(rsaSigner.validate(jwt));
+
+        // 4. Request user info
+        UserInfoRequest userInfoRequest = new UserInfoRequest(accessToken);
+        UserInfoClient userInfoClient = new UserInfoClient(userInfoEndpoint);
+        userInfoClient.setRequest(userInfoRequest);
+        userInfoClient.setJwksUri(jwksUri);
+        UserInfoResponse userInfoResponse = userInfoClient.exec();
+
+        showClient(userInfoClient);
+        assertEquals(userInfoResponse.getStatus(), 200, "Unexpected response code: " + userInfoResponse.getStatus());
+        assertNotNull(userInfoResponse.getClaim(JwtClaimName.SUBJECT_IDENTIFIER));
+        assertNotNull(userInfoResponse.getClaim("member_of"));
+        assertTrue(userInfoResponse.getClaim("member_of").size() > 1);
+    }
+
+    @Parameters({"userId", "userSecret", "redirectUri", "redirectUris", "dnName", "keyStoreFile", "keyStoreSecret",
+            "sectorIdentifierUri", "PS512_keyId", "clientJwksUri"})
+    @Test
+    public void authorizationRequestObjectWithMultivaluedClaimPS512(
+            final String userId, final String userSecret, final String redirectUri, final String redirectUris,
+            final String dnName, final String keyStoreFile, final String keyStoreSecret,
+            final String sectorIdentifierUri, final String keyId, final String clientJwksUri) throws Exception {
+        showTitle("authorizationRequestObjectWithMultivaluedClaimPS512");
+
+        List<ResponseType> responseTypes = Arrays.asList(ResponseType.TOKEN, ResponseType.ID_TOKEN);
+
+        // 1. Register client
+        RegisterRequest registerRequest = new RegisterRequest(ApplicationType.WEB, "oxAuth test app",
+                StringUtils.spaceSeparatedToList(redirectUris));
+        registerRequest.setResponseTypes(responseTypes);
+        registerRequest.setSectorIdentifierUri(sectorIdentifierUri);
+        registerRequest.setIdTokenSignedResponseAlg(SignatureAlgorithm.PS512);
+        registerRequest.setUserInfoSignedResponseAlg(SignatureAlgorithm.PS512);
+        registerRequest.setRequestObjectSigningAlg(SignatureAlgorithm.PS512);
+        registerRequest.setJwksUri(clientJwksUri);
+        registerRequest.setClaims(Arrays.asList("member_of"));
+
+        RegisterClient registerClient = new RegisterClient(registrationEndpoint);
+        registerClient.setRequest(registerRequest);
+        RegisterResponse registerResponse = registerClient.exec();
+
+        showClient(registerClient);
+        assertEquals(registerResponse.getStatus(), 200, "Unexpected response code: " + registerResponse.getEntity());
+        assertNotNull(registerResponse.getClientId());
+        assertNotNull(registerResponse.getClientSecret());
+        assertNotNull(registerResponse.getRegistrationAccessToken());
+        assertNotNull(registerResponse.getClientIdIssuedAt());
+        assertNotNull(registerResponse.getClientSecretExpiresAt());
+
+        String clientId = registerResponse.getClientId();
+
+        // 2. Request authorization
+        OxAuthCryptoProvider cryptoProvider = new OxAuthCryptoProvider(keyStoreFile, keyStoreSecret, dnName);
+
+        List<String> scopes = Arrays.asList("openid");
+        String nonce = UUID.randomUUID().toString();
+        String state = UUID.randomUUID().toString();
+
+        AuthorizationRequest authorizationRequest = new AuthorizationRequest(responseTypes, clientId, scopes, redirectUri, nonce);
+        authorizationRequest.setState(state);
+
+        JwtAuthorizationRequest jwtAuthorizationRequest = new JwtAuthorizationRequest(authorizationRequest, SignatureAlgorithm.PS512, cryptoProvider);
+        jwtAuthorizationRequest.setKeyId(keyId);
+        jwtAuthorizationRequest.addIdTokenClaim(new Claim(JwtClaimName.AUTHENTICATION_TIME, ClaimValue.createEssential(true)));
+        jwtAuthorizationRequest.addIdTokenClaim(new Claim("member_of", ClaimValue.createEssential(true)));
+        jwtAuthorizationRequest.addUserInfoClaim(new Claim("member_of", ClaimValue.createEssential(true)));
+        String authJwt = jwtAuthorizationRequest.getEncodedJwt();
+        authorizationRequest.setRequest(authJwt);
+
+        AuthorizeClient authorizeClient = new AuthorizeClient(authorizationEndpoint);
+        authorizeClient.setRequest(authorizationRequest);
+
+        AuthorizationResponse authorizationResponse = authenticateResourceOwnerAndGrantAccess(
+                authorizationEndpoint, authorizationRequest, userId, userSecret);
+
+        assertNotNull(authorizationResponse.getLocation(), "The location is null");
+        assertNotNull(authorizationResponse.getAccessToken(), "The accessToken is null");
+        assertNotNull(authorizationResponse.getTokenType(), "The tokenType is null");
+        assertNotNull(authorizationResponse.getIdToken(), "The idToken is null");
+        assertNotNull(authorizationResponse.getState(), "The state is null");
+
+        String idToken = authorizationResponse.getIdToken();
+        String accessToken = authorizationResponse.getAccessToken();
+
+        // 3. Validate id_token
+        Jwt jwt = Jwt.parse(idToken);
+        assertNotNull(jwt.getHeader().getClaimAsString(JwtHeaderName.TYPE));
+        assertNotNull(jwt.getHeader().getClaimAsString(JwtHeaderName.ALGORITHM));
+        assertNotNull(jwt.getClaims().getClaimAsString(JwtClaimName.ISSUER));
+        assertNotNull(jwt.getClaims().getClaimAsString(JwtClaimName.AUDIENCE));
+        assertNotNull(jwt.getClaims().getClaimAsString(JwtClaimName.EXPIRATION_TIME));
+        assertNotNull(jwt.getClaims().getClaimAsString(JwtClaimName.ISSUED_AT));
+        assertNotNull(jwt.getClaims().getClaimAsString(JwtClaimName.SUBJECT_IDENTIFIER));
+        assertNotNull(jwt.getClaims().getClaimAsString(JwtClaimName.ACCESS_TOKEN_HASH));
+        assertNotNull(jwt.getClaims().getClaimAsString(JwtClaimName.AUTHENTICATION_TIME));
+        assertNotNull(jwt.getClaims().getClaimAsStringList("member_of"));
+        assertTrue(jwt.getClaims().getClaimAsStringList("member_of").size() > 1);
+
+        RSAPublicKey publicKey = JwkClient.getRSAPublicKey(
+                jwksUri,
+                jwt.getHeader().getClaimAsString(JwtHeaderName.KEY_ID));
+        RSASigner rsaSigner = new RSASigner(SignatureAlgorithm.PS512, publicKey);
+
+        assertTrue(rsaSigner.validate(jwt));
+
+        // 4. Request user info
+        UserInfoRequest userInfoRequest = new UserInfoRequest(accessToken);
+        UserInfoClient userInfoClient = new UserInfoClient(userInfoEndpoint);
+        userInfoClient.setRequest(userInfoRequest);
+        userInfoClient.setJwksUri(jwksUri);
+        UserInfoResponse userInfoResponse = userInfoClient.exec();
+
+        showClient(userInfoClient);
+        assertEquals(userInfoResponse.getStatus(), 200, "Unexpected response code: " + userInfoResponse.getStatus());
+        assertNotNull(userInfoResponse.getClaim(JwtClaimName.SUBJECT_IDENTIFIER));
+        assertNotNull(userInfoResponse.getClaim("member_of"));
+        assertTrue(userInfoResponse.getClaim("member_of").size() > 1);
+    }
+
+    @Parameters({"userId", "userSecret", "redirectUri", "redirectUris", "sectorIdentifierUri"})
+    @Test
+    public void authorizationRequestObjectWithMultivaluedClaimAlgA128KWEncA128GCM(
+            final String userId, final String userSecret, final String redirectUri, final String redirectUris,
+            final String sectorIdentifierUri) throws Exception {
+        showTitle("authorizationRequestObjectWithMultivaluedClaimAlgA128KWEncA128GCM");
+
+        List<ResponseType> responseTypes = Arrays.asList(ResponseType.TOKEN, ResponseType.ID_TOKEN);
+
+        // 1. Register client
+        RegisterRequest registerRequest = new RegisterRequest(ApplicationType.WEB, "oxAuth test app",
+                StringUtils.spaceSeparatedToList(redirectUris));
+        registerRequest.setResponseTypes(responseTypes);
+        registerRequest.setSectorIdentifierUri(sectorIdentifierUri);
+        registerRequest.setIdTokenEncryptedResponseAlg(KeyEncryptionAlgorithm.A128KW);
+        registerRequest.setIdTokenEncryptedResponseEnc(BlockEncryptionAlgorithm.A128GCM);
+        registerRequest.setUserInfoEncryptedResponseAlg(KeyEncryptionAlgorithm.A128KW);
+        registerRequest.setUserInfoEncryptedResponseEnc(BlockEncryptionAlgorithm.A128GCM);
+        registerRequest.setRequestObjectEncryptionAlg(KeyEncryptionAlgorithm.A128KW);
+        registerRequest.setRequestObjectEncryptionEnc(BlockEncryptionAlgorithm.A128GCM);
+        registerRequest.setClaims(Arrays.asList("member_of"));
+
+        RegisterClient registerClient = new RegisterClient(registrationEndpoint);
+        registerClient.setRequest(registerRequest);
+        RegisterResponse registerResponse = registerClient.exec();
+
+        showClient(registerClient);
+        assertEquals(registerResponse.getStatus(), 200, "Unexpected response code: " + registerResponse.getEntity());
+        assertNotNull(registerResponse.getClientId());
+        assertNotNull(registerResponse.getClientSecret());
+        assertNotNull(registerResponse.getRegistrationAccessToken());
+        assertNotNull(registerResponse.getClientIdIssuedAt());
+        assertNotNull(registerResponse.getClientSecretExpiresAt());
+
+        String clientId = registerResponse.getClientId();
+        String clientSecret = registerResponse.getClientSecret();
+
+        // 2. Request authorization
+        List<String> scopes = Arrays.asList("openid");
+        String nonce = UUID.randomUUID().toString();
+        String state = UUID.randomUUID().toString();
+
+        AuthorizationRequest authorizationRequest = new AuthorizationRequest(responseTypes, clientId, scopes, redirectUri, nonce);
+        authorizationRequest.setState(state);
+
+        JwtAuthorizationRequest jwtAuthorizationRequest = new JwtAuthorizationRequest(
+                authorizationRequest,
+                KeyEncryptionAlgorithm.A128KW,
+                BlockEncryptionAlgorithm.A128GCM,
+                clientSecret);
+        jwtAuthorizationRequest.addIdTokenClaim(new Claim(JwtClaimName.AUTHENTICATION_TIME, ClaimValue.createEssential(true)));
+        jwtAuthorizationRequest.addIdTokenClaim(new Claim("member_of", ClaimValue.createEssential(true)));
+        jwtAuthorizationRequest.addUserInfoClaim(new Claim("member_of", ClaimValue.createEssential(true)));
+        String authJwt = jwtAuthorizationRequest.getEncodedJwt();
+        authorizationRequest.setRequest(authJwt);
+
+        AuthorizeClient authorizeClient = new AuthorizeClient(authorizationEndpoint);
+        authorizeClient.setRequest(authorizationRequest);
+
+        AuthorizationResponse authorizationResponse = authenticateResourceOwnerAndGrantAccess(
+                authorizationEndpoint, authorizationRequest, userId, userSecret);
+
+        assertNotNull(authorizationResponse.getLocation(), "The location is null");
+        assertNotNull(authorizationResponse.getAccessToken(), "The accessToken is null");
+        assertNotNull(authorizationResponse.getTokenType(), "The tokenType is null");
+        assertNotNull(authorizationResponse.getIdToken(), "The idToken is null");
+        assertNotNull(authorizationResponse.getState(), "The state is null");
+
+        String idToken = authorizationResponse.getIdToken();
+        String accessToken = authorizationResponse.getAccessToken();
+
+        // 3. Validate id_token
+        Jwe jwe = Jwe.parse(idToken, null, clientSecret.getBytes(Util.UTF8_STRING_ENCODING));
+        assertNotNull(jwe.getHeader().getClaimAsString(JwtHeaderName.TYPE));
+        assertNotNull(jwe.getHeader().getClaimAsString(JwtHeaderName.ALGORITHM));
+        assertNotNull(jwe.getClaims().getClaimAsString(JwtClaimName.ISSUER));
+        assertNotNull(jwe.getClaims().getClaimAsString(JwtClaimName.AUDIENCE));
+        assertNotNull(jwe.getClaims().getClaimAsString(JwtClaimName.EXPIRATION_TIME));
+        assertNotNull(jwe.getClaims().getClaimAsString(JwtClaimName.ISSUED_AT));
+        assertNotNull(jwe.getClaims().getClaimAsString(JwtClaimName.SUBJECT_IDENTIFIER));
+        assertNotNull(jwe.getClaims().getClaimAsString(JwtClaimName.ACCESS_TOKEN_HASH));
+        assertNotNull(jwe.getClaims().getClaimAsString(JwtClaimName.AUTHENTICATION_TIME));
+        assertNotNull(jwe.getClaims().getClaimAsStringList("member_of"));
+        assertTrue(jwe.getClaims().getClaimAsStringList("member_of").size() > 1);
+
+        // 4. Request user info
+        UserInfoRequest userInfoRequest = new UserInfoRequest(accessToken);
+        UserInfoClient userInfoClient = new UserInfoClient(userInfoEndpoint);
+        userInfoClient.setRequest(userInfoRequest);
+        userInfoClient.setSharedKey(clientSecret);
+        UserInfoResponse userInfoResponse = userInfoClient.exec();
+
+        showClient(userInfoClient);
+        assertEquals(userInfoResponse.getStatus(), 200, "Unexpected response code: " + userInfoResponse.getStatus());
+        assertNotNull(userInfoResponse.getClaim(JwtClaimName.SUBJECT_IDENTIFIER));
+        assertNotNull(userInfoResponse.getClaim("member_of"));
+        assertTrue(userInfoResponse.getClaim("member_of").size() > 1);
+    }
+
+    @Parameters({"userId", "userSecret", "redirectUri", "redirectUris", "sectorIdentifierUri"})
+    @Test
+    public void authorizationRequestObjectWithMultivaluedClaimAlgA256KWEncA256GCM(
+            final String userId, final String userSecret, final String redirectUri, final String redirectUris,
+            final String sectorIdentifierUri) throws Exception {
+        showTitle("authorizationRequestObjectWithMultivaluedClaimAlgA256KWEncA256GCM");
+
+        List<ResponseType> responseTypes = Arrays.asList(ResponseType.TOKEN, ResponseType.ID_TOKEN);
+
+        // 1. Register client
+        RegisterRequest registerRequest = new RegisterRequest(ApplicationType.WEB, "oxAuth test app",
+                StringUtils.spaceSeparatedToList(redirectUris));
+        registerRequest.setResponseTypes(responseTypes);
+        registerRequest.setSectorIdentifierUri(sectorIdentifierUri);
+        registerRequest.setIdTokenEncryptedResponseAlg(KeyEncryptionAlgorithm.A256KW);
+        registerRequest.setIdTokenEncryptedResponseEnc(BlockEncryptionAlgorithm.A256GCM);
+        registerRequest.setUserInfoEncryptedResponseAlg(KeyEncryptionAlgorithm.A256KW);
+        registerRequest.setUserInfoEncryptedResponseEnc(BlockEncryptionAlgorithm.A256GCM);
+        registerRequest.setRequestObjectEncryptionAlg(KeyEncryptionAlgorithm.A256KW);
+        registerRequest.setRequestObjectEncryptionEnc(BlockEncryptionAlgorithm.A256GCM);
+        registerRequest.setClaims(Arrays.asList("member_of"));
+
+        RegisterClient registerClient = new RegisterClient(registrationEndpoint);
+        registerClient.setRequest(registerRequest);
+        RegisterResponse registerResponse = registerClient.exec();
+
+        showClient(registerClient);
+        assertEquals(registerResponse.getStatus(), 200, "Unexpected response code: " + registerResponse.getEntity());
+        assertNotNull(registerResponse.getClientId());
+        assertNotNull(registerResponse.getClientSecret());
+        assertNotNull(registerResponse.getRegistrationAccessToken());
+        assertNotNull(registerResponse.getClientIdIssuedAt());
+        assertNotNull(registerResponse.getClientSecretExpiresAt());
+
+        String clientId = registerResponse.getClientId();
+        String clientSecret = registerResponse.getClientSecret();
+
+        // 2. Request authorization
+        List<String> scopes = Arrays.asList("openid");
+        String nonce = UUID.randomUUID().toString();
+        String state = UUID.randomUUID().toString();
+
+        AuthorizationRequest authorizationRequest = new AuthorizationRequest(responseTypes, clientId, scopes, redirectUri, nonce);
+        authorizationRequest.setState(state);
+
+        JwtAuthorizationRequest jwtAuthorizationRequest = new JwtAuthorizationRequest(
+                authorizationRequest,
+                KeyEncryptionAlgorithm.A256KW,
+                BlockEncryptionAlgorithm.A256GCM,
+                clientSecret);
+        jwtAuthorizationRequest.addIdTokenClaim(new Claim(JwtClaimName.AUTHENTICATION_TIME, ClaimValue.createEssential(true)));
+        jwtAuthorizationRequest.addIdTokenClaim(new Claim("member_of", ClaimValue.createEssential(true)));
+        jwtAuthorizationRequest.addUserInfoClaim(new Claim("member_of", ClaimValue.createEssential(true)));
+        String authJwt = jwtAuthorizationRequest.getEncodedJwt();
+        authorizationRequest.setRequest(authJwt);
+
+        AuthorizeClient authorizeClient = new AuthorizeClient(authorizationEndpoint);
+        authorizeClient.setRequest(authorizationRequest);
+
+        AuthorizationResponse authorizationResponse = authenticateResourceOwnerAndGrantAccess(
+                authorizationEndpoint, authorizationRequest, userId, userSecret);
+
+        assertNotNull(authorizationResponse.getLocation(), "The location is null");
+        assertNotNull(authorizationResponse.getAccessToken(), "The accessToken is null");
+        assertNotNull(authorizationResponse.getTokenType(), "The tokenType is null");
+        assertNotNull(authorizationResponse.getIdToken(), "The idToken is null");
+        assertNotNull(authorizationResponse.getState(), "The state is null");
+
+        String idToken = authorizationResponse.getIdToken();
+        String accessToken = authorizationResponse.getAccessToken();
+
+        // 3. Validate id_token
+        Jwe jwe = Jwe.parse(idToken, null, clientSecret.getBytes(Util.UTF8_STRING_ENCODING));
+        assertNotNull(jwe.getHeader().getClaimAsString(JwtHeaderName.TYPE));
+        assertNotNull(jwe.getHeader().getClaimAsString(JwtHeaderName.ALGORITHM));
+        assertNotNull(jwe.getClaims().getClaimAsString(JwtClaimName.ISSUER));
+        assertNotNull(jwe.getClaims().getClaimAsString(JwtClaimName.AUDIENCE));
+        assertNotNull(jwe.getClaims().getClaimAsString(JwtClaimName.EXPIRATION_TIME));
+        assertNotNull(jwe.getClaims().getClaimAsString(JwtClaimName.ISSUED_AT));
+        assertNotNull(jwe.getClaims().getClaimAsString(JwtClaimName.SUBJECT_IDENTIFIER));
+        assertNotNull(jwe.getClaims().getClaimAsString(JwtClaimName.ACCESS_TOKEN_HASH));
+        assertNotNull(jwe.getClaims().getClaimAsString(JwtClaimName.AUTHENTICATION_TIME));
+        assertNotNull(jwe.getClaims().getClaimAsStringList("member_of"));
+        assertTrue(jwe.getClaims().getClaimAsStringList("member_of").size() > 1);
+
+        // 4. Request user info
+        UserInfoRequest userInfoRequest = new UserInfoRequest(accessToken);
+        UserInfoClient userInfoClient = new UserInfoClient(userInfoEndpoint);
+        userInfoClient.setRequest(userInfoRequest);
+        userInfoClient.setSharedKey(clientSecret);
+        UserInfoResponse userInfoResponse = userInfoClient.exec();
+
+        showClient(userInfoClient);
+        assertEquals(userInfoResponse.getStatus(), 200, "Unexpected response code: " + userInfoResponse.getStatus());
+        assertNotNull(userInfoResponse.getClaim(JwtClaimName.SUBJECT_IDENTIFIER));
+        assertNotNull(userInfoResponse.getClaim("member_of"));
+        assertTrue(userInfoResponse.getClaim("member_of").size() > 1);
+    }
+
+    @Parameters({"userId", "userSecret", "redirectUri", "redirectUris",
+            "dnName", "keyStoreFile", "keyStoreSecret", "RSA1_5_keyId",
+            "clientJwksUri", "sectorIdentifierUri"})
+    @Test
+    public void authorizationRequestObjectWithMultivaluedClaimAlgRSA15EncA128CBCPLUSHS256(
+            final String userId, final String userSecret, final String redirectUri, final String redirectUris,
+            final String dnName, final String keyStoreFile, final String keyStoreSecret, final String clientKeyId,
+            final String clientJwksUri, final String sectorIdentifierUri) throws Exception {
+        showTitle("authorizationRequestObjectWithMultivaluedClaimAlgRSA15EncA128CBCPLUSHS256");
+
+        List<ResponseType> responseTypes = Arrays.asList(ResponseType.TOKEN, ResponseType.ID_TOKEN);
+
+        // 1. Register client
+        RegisterRequest registerRequest = new RegisterRequest(ApplicationType.WEB, "oxAuth test app",
+                StringUtils.spaceSeparatedToList(redirectUris));
+        registerRequest.setResponseTypes(responseTypes);
+        registerRequest.setSectorIdentifierUri(sectorIdentifierUri);
+        registerRequest.setJwksUri(clientJwksUri);
+        registerRequest.setIdTokenEncryptedResponseAlg(KeyEncryptionAlgorithm.RSA1_5);
+        registerRequest.setIdTokenEncryptedResponseEnc(BlockEncryptionAlgorithm.A128CBC_PLUS_HS256);
+        registerRequest.setUserInfoEncryptedResponseAlg(KeyEncryptionAlgorithm.RSA1_5);
+        registerRequest.setUserInfoEncryptedResponseEnc(BlockEncryptionAlgorithm.A128CBC_PLUS_HS256);
+        registerRequest.setRequestObjectEncryptionAlg(KeyEncryptionAlgorithm.RSA1_5);
+        registerRequest.setRequestObjectEncryptionEnc(BlockEncryptionAlgorithm.A128CBC_PLUS_HS256);
+        registerRequest.setClaims(Arrays.asList("member_of"));
+
+        RegisterClient registerClient = new RegisterClient(registrationEndpoint);
+        registerClient.setRequest(registerRequest);
+        RegisterResponse registerResponse = registerClient.exec();
+
+        showClient(registerClient);
+        assertEquals(registerResponse.getStatus(), 200, "Unexpected response code: " + registerResponse.getEntity());
+        assertNotNull(registerResponse.getClientId());
+        assertNotNull(registerResponse.getClientSecret());
+        assertNotNull(registerResponse.getRegistrationAccessToken());
+        assertNotNull(registerResponse.getClientIdIssuedAt());
+        assertNotNull(registerResponse.getClientSecretExpiresAt());
+
+        String clientId = registerResponse.getClientId();
+
+        // 2. Choose encryption key
+        JwkClient jwkClient = new JwkClient(jwksUri);
+        JwkResponse jwkResponse = jwkClient.exec();
+        String serverKeyId = jwkResponse.getKeyId(Algorithm.RSA1_5);
+        assertNotNull(serverKeyId);
+
+        // 3. Request authorization
+        JSONObject jwks = JwtUtil.getJSONWebKeys(jwksUri);
+        OxAuthCryptoProvider cryptoProvider = new OxAuthCryptoProvider(keyStoreFile, keyStoreSecret, dnName);
+
+        List<String> scopes = Arrays.asList("openid");
+        String nonce = UUID.randomUUID().toString();
+        String state = UUID.randomUUID().toString();
+
+        AuthorizationRequest authorizationRequest = new AuthorizationRequest(responseTypes, clientId, scopes, redirectUri, nonce);
+        authorizationRequest.setState(state);
+
+        JwtAuthorizationRequest jwtAuthorizationRequest = new JwtAuthorizationRequest(authorizationRequest,
+                KeyEncryptionAlgorithm.RSA1_5, BlockEncryptionAlgorithm.A128CBC_PLUS_HS256, cryptoProvider);
+        jwtAuthorizationRequest.setKeyId(serverKeyId);
+        jwtAuthorizationRequest.addIdTokenClaim(new Claim(JwtClaimName.AUTHENTICATION_TIME, ClaimValue.createEssential(true)));
+        jwtAuthorizationRequest.addIdTokenClaim(new Claim("member_of", ClaimValue.createEssential(true)));
+        jwtAuthorizationRequest.addUserInfoClaim(new Claim("member_of", ClaimValue.createEssential(true)));
+        String authJwt = jwtAuthorizationRequest.getEncodedJwt(jwks);
+        authorizationRequest.setRequest(authJwt);
+
+        AuthorizeClient authorizeClient = new AuthorizeClient(authorizationEndpoint);
+        authorizeClient.setRequest(authorizationRequest);
+
+        AuthorizationResponse authorizationResponse = authenticateResourceOwnerAndGrantAccess(
+                authorizationEndpoint, authorizationRequest, userId, userSecret);
+
+        assertNotNull(authorizationResponse.getLocation(), "The location is null");
+        assertNotNull(authorizationResponse.getAccessToken(), "The accessToken is null");
+        assertNotNull(authorizationResponse.getTokenType(), "The tokenType is null");
+        assertNotNull(authorizationResponse.getIdToken(), "The idToken is null");
+        assertNotNull(authorizationResponse.getState(), "The state is null");
+
+        String idToken = authorizationResponse.getIdToken();
+        String accessToken = authorizationResponse.getAccessToken();
+
+        // 4. Validate id_token
+        PrivateKey privateKey = cryptoProvider.getPrivateKey(clientKeyId);
+
+        Jwe jwe = Jwe.parse(idToken, privateKey, null);
+        assertNotNull(jwe.getHeader().getClaimAsString(JwtHeaderName.TYPE));
+        assertNotNull(jwe.getHeader().getClaimAsString(JwtHeaderName.ALGORITHM));
+        assertNotNull(jwe.getClaims().getClaimAsString(JwtClaimName.ISSUER));
+        assertNotNull(jwe.getClaims().getClaimAsString(JwtClaimName.AUDIENCE));
+        assertNotNull(jwe.getClaims().getClaimAsString(JwtClaimName.EXPIRATION_TIME));
+        assertNotNull(jwe.getClaims().getClaimAsString(JwtClaimName.ISSUED_AT));
+        assertNotNull(jwe.getClaims().getClaimAsString(JwtClaimName.SUBJECT_IDENTIFIER));
+        assertNotNull(jwe.getClaims().getClaimAsString(JwtClaimName.ACCESS_TOKEN_HASH));
+        assertNotNull(jwe.getClaims().getClaimAsString(JwtClaimName.AUTHENTICATION_TIME));
+        assertNotNull(jwe.getClaims().getClaimAsStringList("member_of"));
+        assertTrue(jwe.getClaims().getClaimAsStringList("member_of").size() > 1);
+
+        // 5. Request user info
+        UserInfoRequest userInfoRequest = new UserInfoRequest(accessToken);
+        UserInfoClient userInfoClient = new UserInfoClient(userInfoEndpoint);
+        userInfoClient.setRequest(userInfoRequest);
+        userInfoClient.setPrivateKey(privateKey);
+        UserInfoResponse userInfoResponse = userInfoClient.exec();
+
+        showClient(userInfoClient);
+        assertEquals(userInfoResponse.getStatus(), 200, "Unexpected response code: " + userInfoResponse.getStatus());
+        assertNotNull(userInfoResponse.getClaim(JwtClaimName.SUBJECT_IDENTIFIER));
+        assertNotNull(userInfoResponse.getClaim("member_of"));
+        assertTrue(userInfoResponse.getClaim("member_of").size() > 1);
+    }
+
+    @Parameters({"userId", "userSecret", "redirectUri", "redirectUris",
+            "dnName", "keyStoreFile", "keyStoreSecret", "RSA1_5_keyId",
+            "clientJwksUri", "sectorIdentifierUri"})
+    @Test
+    public void authorizationRequestObjectWithMultivaluedClaimAlgRSA15EncA256CBCPLUSHS512(
+            final String userId, final String userSecret, final String redirectUri, final String redirectUris,
+            final String dnName, final String keyStoreFile, final String keyStoreSecret, final String clientKeyId,
+            final String clientJwksUri, final String sectorIdentifierUri) throws Exception {
+        showTitle("authorizationRequestObjectWithMultivaluedClaimAlgRSA15EncA256CBCPLUSHS512");
+
+        List<ResponseType> responseTypes = Arrays.asList(ResponseType.TOKEN, ResponseType.ID_TOKEN);
+
+        // 1. Register client
+        RegisterRequest registerRequest = new RegisterRequest(ApplicationType.WEB, "oxAuth test app",
+                StringUtils.spaceSeparatedToList(redirectUris));
+        registerRequest.setResponseTypes(responseTypes);
+        registerRequest.setSectorIdentifierUri(sectorIdentifierUri);
+        registerRequest.setJwksUri(clientJwksUri);
+        registerRequest.setIdTokenEncryptedResponseAlg(KeyEncryptionAlgorithm.RSA1_5);
+        registerRequest.setIdTokenEncryptedResponseEnc(BlockEncryptionAlgorithm.A256CBC_PLUS_HS512);
+        registerRequest.setUserInfoEncryptedResponseAlg(KeyEncryptionAlgorithm.RSA1_5);
+        registerRequest.setUserInfoEncryptedResponseEnc(BlockEncryptionAlgorithm.A256CBC_PLUS_HS512);
+        registerRequest.setRequestObjectEncryptionAlg(KeyEncryptionAlgorithm.RSA1_5);
+        registerRequest.setRequestObjectEncryptionEnc(BlockEncryptionAlgorithm.A256CBC_PLUS_HS512);
+        registerRequest.setClaims(Arrays.asList("member_of"));
+
+        RegisterClient registerClient = new RegisterClient(registrationEndpoint);
+        registerClient.setRequest(registerRequest);
+        RegisterResponse registerResponse = registerClient.exec();
+
+        showClient(registerClient);
+        assertEquals(registerResponse.getStatus(), 200, "Unexpected response code: " + registerResponse.getEntity());
+        assertNotNull(registerResponse.getClientId());
+        assertNotNull(registerResponse.getClientSecret());
+        assertNotNull(registerResponse.getRegistrationAccessToken());
+        assertNotNull(registerResponse.getClientIdIssuedAt());
+        assertNotNull(registerResponse.getClientSecretExpiresAt());
+
+        String clientId = registerResponse.getClientId();
+
+        // 2. Choose encryption key
+        JwkClient jwkClient = new JwkClient(jwksUri);
+        JwkResponse jwkResponse = jwkClient.exec();
+        String serverKeyId = jwkResponse.getKeyId(Algorithm.RSA1_5);
+        assertNotNull(serverKeyId);
+
+        // 3. Request authorization
+        JSONObject jwks = JwtUtil.getJSONWebKeys(jwksUri);
+        OxAuthCryptoProvider cryptoProvider = new OxAuthCryptoProvider(keyStoreFile, keyStoreSecret, dnName);
+
+        List<String> scopes = Arrays.asList("openid");
+        String nonce = UUID.randomUUID().toString();
+        String state = UUID.randomUUID().toString();
+
+        AuthorizationRequest authorizationRequest = new AuthorizationRequest(responseTypes, clientId, scopes, redirectUri, nonce);
+        authorizationRequest.setState(state);
+
+        JwtAuthorizationRequest jwtAuthorizationRequest = new JwtAuthorizationRequest(authorizationRequest,
+                KeyEncryptionAlgorithm.RSA1_5, BlockEncryptionAlgorithm.A256CBC_PLUS_HS512, cryptoProvider);
+        jwtAuthorizationRequest.setKeyId(serverKeyId);
+        jwtAuthorizationRequest.addIdTokenClaim(new Claim(JwtClaimName.AUTHENTICATION_TIME, ClaimValue.createEssential(true)));
+        jwtAuthorizationRequest.addIdTokenClaim(new Claim("member_of", ClaimValue.createEssential(true)));
+        jwtAuthorizationRequest.addUserInfoClaim(new Claim("member_of", ClaimValue.createEssential(true)));
+        String authJwt = jwtAuthorizationRequest.getEncodedJwt(jwks);
+        authorizationRequest.setRequest(authJwt);
+
+        AuthorizeClient authorizeClient = new AuthorizeClient(authorizationEndpoint);
+        authorizeClient.setRequest(authorizationRequest);
+
+        AuthorizationResponse authorizationResponse = authenticateResourceOwnerAndGrantAccess(
+                authorizationEndpoint, authorizationRequest, userId, userSecret);
+
+        assertNotNull(authorizationResponse.getLocation(), "The location is null");
+        assertNotNull(authorizationResponse.getAccessToken(), "The accessToken is null");
+        assertNotNull(authorizationResponse.getTokenType(), "The tokenType is null");
+        assertNotNull(authorizationResponse.getIdToken(), "The idToken is null");
+        assertNotNull(authorizationResponse.getState(), "The state is null");
+
+        String idToken = authorizationResponse.getIdToken();
+        String accessToken = authorizationResponse.getAccessToken();
+
+        // 4. Validate id_token
+        PrivateKey privateKey = cryptoProvider.getPrivateKey(clientKeyId);
+
+        Jwe jwe = Jwe.parse(idToken, privateKey, null);
+        assertNotNull(jwe.getHeader().getClaimAsString(JwtHeaderName.TYPE));
+        assertNotNull(jwe.getHeader().getClaimAsString(JwtHeaderName.ALGORITHM));
+        assertNotNull(jwe.getClaims().getClaimAsString(JwtClaimName.ISSUER));
+        assertNotNull(jwe.getClaims().getClaimAsString(JwtClaimName.AUDIENCE));
+        assertNotNull(jwe.getClaims().getClaimAsString(JwtClaimName.EXPIRATION_TIME));
+        assertNotNull(jwe.getClaims().getClaimAsString(JwtClaimName.ISSUED_AT));
+        assertNotNull(jwe.getClaims().getClaimAsString(JwtClaimName.SUBJECT_IDENTIFIER));
+        assertNotNull(jwe.getClaims().getClaimAsString(JwtClaimName.ACCESS_TOKEN_HASH));
+        assertNotNull(jwe.getClaims().getClaimAsString(JwtClaimName.AUTHENTICATION_TIME));
+        assertNotNull(jwe.getClaims().getClaimAsStringList("member_of"));
+        assertTrue(jwe.getClaims().getClaimAsStringList("member_of").size() > 1);
+
+        // 5. Request user info
+        UserInfoRequest userInfoRequest = new UserInfoRequest(accessToken);
+        UserInfoClient userInfoClient = new UserInfoClient(userInfoEndpoint);
+        userInfoClient.setRequest(userInfoRequest);
+        userInfoClient.setPrivateKey(privateKey);
+        UserInfoResponse userInfoResponse = userInfoClient.exec();
+
+        showClient(userInfoClient);
+        assertEquals(userInfoResponse.getStatus(), 200, "Unexpected response code: " + userInfoResponse.getStatus());
+        assertNotNull(userInfoResponse.getClaim(JwtClaimName.SUBJECT_IDENTIFIER));
+        assertNotNull(userInfoResponse.getClaim("member_of"));
+        assertTrue(userInfoResponse.getClaim("member_of").size() > 1);
+    }
+
+    @Parameters({"userId", "userSecret", "redirectUri", "redirectUris",
+            "dnName", "keyStoreFile", "keyStoreSecret", "RSA_OAEP_keyId",
+            "clientJwksUri", "sectorIdentifierUri"})
+    @Test
+    public void authorizationRequestObjectWithMultivaluedClaimAlgRSAOAEPEncA256GCM(
+            final String userId, final String userSecret, final String redirectUri, final String redirectUris,
+            final String dnName, final String keyStoreFile, final String keyStoreSecret, final String clientKeyId,
+            final String clientJwksUri, final String sectorIdentifierUri) throws Exception {
+        showTitle("authorizationRequestObjectWithMultivaluedClaimAlgRSAOAEPEncA256GCM");
+
+        List<ResponseType> responseTypes = Arrays.asList(ResponseType.TOKEN, ResponseType.ID_TOKEN);
+
+        // 1. Register client
+        RegisterRequest registerRequest = new RegisterRequest(ApplicationType.WEB, "oxAuth test app",
+                StringUtils.spaceSeparatedToList(redirectUris));
+        registerRequest.setResponseTypes(responseTypes);
+        registerRequest.setSectorIdentifierUri(sectorIdentifierUri);
+        registerRequest.setJwksUri(clientJwksUri);
+        registerRequest.setIdTokenEncryptedResponseAlg(KeyEncryptionAlgorithm.RSA_OAEP);
+        registerRequest.setIdTokenEncryptedResponseEnc(BlockEncryptionAlgorithm.A256GCM);
+        registerRequest.setUserInfoEncryptedResponseAlg(KeyEncryptionAlgorithm.RSA_OAEP);
+        registerRequest.setUserInfoEncryptedResponseEnc(BlockEncryptionAlgorithm.A256GCM);
+        registerRequest.setRequestObjectEncryptionAlg(KeyEncryptionAlgorithm.RSA_OAEP);
+        registerRequest.setRequestObjectEncryptionEnc(BlockEncryptionAlgorithm.A256GCM);
+        registerRequest.setClaims(Arrays.asList("member_of"));
+
+        RegisterClient registerClient = new RegisterClient(registrationEndpoint);
+        registerClient.setRequest(registerRequest);
+        RegisterResponse registerResponse = registerClient.exec();
+
+        showClient(registerClient);
+        assertEquals(registerResponse.getStatus(), 200, "Unexpected response code: " + registerResponse.getEntity());
+        assertNotNull(registerResponse.getClientId());
+        assertNotNull(registerResponse.getClientSecret());
+        assertNotNull(registerResponse.getRegistrationAccessToken());
+        assertNotNull(registerResponse.getClientIdIssuedAt());
+        assertNotNull(registerResponse.getClientSecretExpiresAt());
+
+        String clientId = registerResponse.getClientId();
+
+        // 2. Choose encryption key
+        JwkClient jwkClient = new JwkClient(jwksUri);
+        JwkResponse jwkResponse = jwkClient.exec();
+        String serverKeyId = jwkResponse.getKeyId(Algorithm.RSA_OAEP);
+        assertNotNull(serverKeyId);
+
+        // 3. Request authorization
+        JSONObject jwks = JwtUtil.getJSONWebKeys(jwksUri);
+        OxAuthCryptoProvider cryptoProvider = new OxAuthCryptoProvider(keyStoreFile, keyStoreSecret, dnName);
+
+        List<String> scopes = Arrays.asList("openid");
+        String nonce = UUID.randomUUID().toString();
+        String state = UUID.randomUUID().toString();
+
+        AuthorizationRequest authorizationRequest = new AuthorizationRequest(responseTypes, clientId, scopes, redirectUri, nonce);
+        authorizationRequest.setState(state);
+
+        JwtAuthorizationRequest jwtAuthorizationRequest = new JwtAuthorizationRequest(authorizationRequest,
+                KeyEncryptionAlgorithm.RSA_OAEP, BlockEncryptionAlgorithm.A256GCM, cryptoProvider);
+        jwtAuthorizationRequest.setKeyId(serverKeyId);
+        jwtAuthorizationRequest.addIdTokenClaim(new Claim(JwtClaimName.AUTHENTICATION_TIME, ClaimValue.createEssential(true)));
+        jwtAuthorizationRequest.addIdTokenClaim(new Claim("member_of", ClaimValue.createEssential(true)));
+        jwtAuthorizationRequest.addUserInfoClaim(new Claim("member_of", ClaimValue.createEssential(true)));
+        String authJwt = jwtAuthorizationRequest.getEncodedJwt(jwks);
+        authorizationRequest.setRequest(authJwt);
+
+        AuthorizeClient authorizeClient = new AuthorizeClient(authorizationEndpoint);
+        authorizeClient.setRequest(authorizationRequest);
+
+        AuthorizationResponse authorizationResponse = authenticateResourceOwnerAndGrantAccess(
+                authorizationEndpoint, authorizationRequest, userId, userSecret);
+
+        assertNotNull(authorizationResponse.getLocation(), "The location is null");
+        assertNotNull(authorizationResponse.getAccessToken(), "The accessToken is null");
+        assertNotNull(authorizationResponse.getTokenType(), "The tokenType is null");
+        assertNotNull(authorizationResponse.getIdToken(), "The idToken is null");
+        assertNotNull(authorizationResponse.getState(), "The state is null");
+
+        String idToken = authorizationResponse.getIdToken();
+        String accessToken = authorizationResponse.getAccessToken();
+
+        // 4. Validate id_token
+        PrivateKey privateKey = cryptoProvider.getPrivateKey(clientKeyId);
+
+        Jwe jwe = Jwe.parse(idToken, privateKey, null);
+        assertNotNull(jwe.getHeader().getClaimAsString(JwtHeaderName.TYPE));
+        assertNotNull(jwe.getHeader().getClaimAsString(JwtHeaderName.ALGORITHM));
+        assertNotNull(jwe.getClaims().getClaimAsString(JwtClaimName.ISSUER));
+        assertNotNull(jwe.getClaims().getClaimAsString(JwtClaimName.AUDIENCE));
+        assertNotNull(jwe.getClaims().getClaimAsString(JwtClaimName.EXPIRATION_TIME));
+        assertNotNull(jwe.getClaims().getClaimAsString(JwtClaimName.ISSUED_AT));
+        assertNotNull(jwe.getClaims().getClaimAsString(JwtClaimName.SUBJECT_IDENTIFIER));
+        assertNotNull(jwe.getClaims().getClaimAsString(JwtClaimName.ACCESS_TOKEN_HASH));
+        assertNotNull(jwe.getClaims().getClaimAsString(JwtClaimName.AUTHENTICATION_TIME));
+        assertNotNull(jwe.getClaims().getClaimAsStringList("member_of"));
+        assertTrue(jwe.getClaims().getClaimAsStringList("member_of").size() > 1);
+
+        // 5. Request user info
+        UserInfoRequest userInfoRequest = new UserInfoRequest(accessToken);
+        UserInfoClient userInfoClient = new UserInfoClient(userInfoEndpoint);
+        userInfoClient.setRequest(userInfoRequest);
+        userInfoClient.setPrivateKey(privateKey);
+        UserInfoResponse userInfoResponse = userInfoClient.exec();
+
+        showClient(userInfoClient);
+        assertEquals(userInfoResponse.getStatus(), 200, "Unexpected response code: " + userInfoResponse.getStatus());
+        assertNotNull(userInfoResponse.getClaim(JwtClaimName.SUBJECT_IDENTIFIER));
+        assertNotNull(userInfoResponse.getClaim("member_of"));
+        assertTrue(userInfoResponse.getClaim("member_of").size() > 1);
+    }
+}
\ No newline at end of file
diff --git a/oxAuth/Client/src/test/java/org/gluu/oxauth/ws/rs/OpenIDConnectDiscoveryHttpTest.java b/oxAuth/Client/src/test/java/org/gluu/oxauth/ws/rs/OpenIDConnectDiscoveryHttpTest.java
new file mode 100644
index 00000000..480526ef
--- /dev/null
+++ b/oxAuth/Client/src/test/java/org/gluu/oxauth/ws/rs/OpenIDConnectDiscoveryHttpTest.java
@@ -0,0 +1,244 @@
+/*
+ * oxAuth is available under the MIT License (2008). See http://opensource.org/licenses/MIT for full text.
+ *
+ * Copyright (c) 2014, Gluu
+ */
+
+package org.gluu.oxauth.ws.rs;
+
+import static org.testng.Assert.assertEquals;
+import static org.testng.Assert.assertNotNull;
+import static org.testng.Assert.assertTrue;
+
+import org.gluu.oxauth.BaseTest;
+import org.gluu.oxauth.client.OpenIdConnectDiscoveryClient;
+import org.gluu.oxauth.client.OpenIdConnectDiscoveryRequest;
+import org.gluu.oxauth.client.OpenIdConnectDiscoveryResponse;
+import org.testng.annotations.Parameters;
+import org.testng.annotations.Test;
+
+/**
+ * Functional tests for SWD Web Services (HTTP)
+ *
+ * @author Javier Rojas Blum Date: 12.7.2011
+ */
+public class OpenIDConnectDiscoveryHttpTest extends BaseTest {
+
+    @Test
+    public void emailNormalization1() throws Exception {
+        String resource = "acct:joe@example.com";
+        String expectedHost = "example.com";
+        String expectedPath = null;
+
+        OpenIdConnectDiscoveryRequest openIdConnectDiscoveryRequest = new OpenIdConnectDiscoveryRequest(resource);
+        assertEquals(openIdConnectDiscoveryRequest.getResource(), resource);
+        assertEquals(openIdConnectDiscoveryRequest.getHost(), expectedHost);
+        assertEquals(openIdConnectDiscoveryRequest.getPath(), expectedPath);
+    }
+
+    @Test
+    public void emailNormalization2() throws Exception {
+        String resource = "joe@example.com";
+        String expectedHost = "example.com";
+        String expectedPath = null;
+
+        OpenIdConnectDiscoveryRequest openIdConnectDiscoveryRequest = new OpenIdConnectDiscoveryRequest(resource);
+        assertEquals(openIdConnectDiscoveryRequest.getResource(), resource);
+        assertEquals(openIdConnectDiscoveryRequest.getHost(), expectedHost);
+        assertEquals(openIdConnectDiscoveryRequest.getPath(), expectedPath);
+    }
+
+    @Test
+    public void emailNormalization3() throws Exception {
+        String resource = "acct:joe@example.com:8080";
+        String expectedHost = "example.com:8080";
+        String expectedPath = null;
+
+        OpenIdConnectDiscoveryRequest openIdConnectDiscoveryRequest = new OpenIdConnectDiscoveryRequest(resource);
+        assertEquals(openIdConnectDiscoveryRequest.getResource(), resource);
+        assertEquals(openIdConnectDiscoveryRequest.getHost(), expectedHost);
+        assertEquals(openIdConnectDiscoveryRequest.getPath(), expectedPath);
+    }
+
+    @Test
+    public void emailNormalization4() throws Exception {
+        String resource = "joe@example.com:8080";
+        String expectedHost = "example.com:8080";
+        String expectedPath = null;
+
+        OpenIdConnectDiscoveryRequest openIdConnectDiscoveryRequest = new OpenIdConnectDiscoveryRequest(resource);
+        assertEquals(openIdConnectDiscoveryRequest.getResource(), resource);
+        assertEquals(openIdConnectDiscoveryRequest.getHost(), expectedHost);
+        assertEquals(openIdConnectDiscoveryRequest.getPath(), expectedPath);
+    }
+
+    @Test
+    public void emailNormalization5() throws Exception {
+        String resource = "joe@localhost";
+        String expectedHost = "localhost";
+        String expectedPath = null;
+
+        OpenIdConnectDiscoveryRequest openIdConnectDiscoveryRequest = new OpenIdConnectDiscoveryRequest(resource);
+        assertEquals(openIdConnectDiscoveryRequest.getResource(), resource);
+        assertEquals(openIdConnectDiscoveryRequest.getHost(), expectedHost);
+        assertEquals(openIdConnectDiscoveryRequest.getPath(), expectedPath);
+    }
+
+    @Test
+    public void emailNormalization6() throws Exception {
+        String resource = "joe@localhost:8080";
+        String expectedHost = "localhost:8080";
+        String expectedPath = null;
+
+        OpenIdConnectDiscoveryRequest openIdConnectDiscoveryRequest = new OpenIdConnectDiscoveryRequest(resource);
+        assertEquals(openIdConnectDiscoveryRequest.getResource(), resource);
+        assertEquals(openIdConnectDiscoveryRequest.getHost(), expectedHost);
+        assertEquals(openIdConnectDiscoveryRequest.getPath(), expectedPath);
+    }
+
+    @Test
+    public void urlNormalization1() throws Exception {
+        String resource = "https://example.com";
+        String expectedHost = "example.com";
+        String expectedPath = null;
+
+        OpenIdConnectDiscoveryRequest openIdConnectDiscoveryRequest = new OpenIdConnectDiscoveryRequest(resource);
+        assertEquals(openIdConnectDiscoveryRequest.getResource(), resource);
+        assertEquals(openIdConnectDiscoveryRequest.getHost(), expectedHost);
+        assertEquals(openIdConnectDiscoveryRequest.getPath(), expectedPath);
+    }
+
+    @Test
+    public void urlNormalization2() throws Exception {
+        String resource = "https://example.com/joe";
+        String expectedHost = "example.com";
+        String expectedPath = "/joe";
+
+        OpenIdConnectDiscoveryRequest openIdConnectDiscoveryRequest = new OpenIdConnectDiscoveryRequest(resource);
+        assertEquals(openIdConnectDiscoveryRequest.getResource(), resource);
+        assertEquals(openIdConnectDiscoveryRequest.getHost(), expectedHost);
+        assertEquals(openIdConnectDiscoveryRequest.getPath(), expectedPath);
+    }
+
+    @Test
+    public void urlNormalization3() throws Exception {
+        String resource = "https://example.com:8080/";
+        String expectedHost = "example.com:8080";
+        String expectedPath = null;
+
+        OpenIdConnectDiscoveryRequest openIdConnectDiscoveryRequest = new OpenIdConnectDiscoveryRequest(resource);
+        assertEquals(openIdConnectDiscoveryRequest.getResource(), resource);
+        assertEquals(openIdConnectDiscoveryRequest.getHost(), expectedHost);
+        assertEquals(openIdConnectDiscoveryRequest.getPath(), expectedPath);
+    }
+
+    @Test
+    public void urlNormalization4() throws Exception {
+        String resource = "https://example.com:8080/joe";
+        String expectedHost = "example.com:8080";
+        String expectedPath = "/joe";
+
+        OpenIdConnectDiscoveryRequest openIdConnectDiscoveryRequest = new OpenIdConnectDiscoveryRequest(resource);
+        assertEquals(openIdConnectDiscoveryRequest.getResource(), resource);
+        assertEquals(openIdConnectDiscoveryRequest.getHost(), expectedHost);
+        assertEquals(openIdConnectDiscoveryRequest.getPath(), expectedPath);
+    }
+
+    @Test
+    public void urlNormalization5() throws Exception {
+        String resource = "https://example.com:8080/joe#fragment";
+        String expectedHost = "example.com:8080";
+        String expectedPath = "/joe";
+
+        OpenIdConnectDiscoveryRequest openIdConnectDiscoveryRequest = new OpenIdConnectDiscoveryRequest(resource);
+        assertEquals(openIdConnectDiscoveryRequest.getResource(), resource);
+        assertEquals(openIdConnectDiscoveryRequest.getHost(), expectedHost);
+        assertEquals(openIdConnectDiscoveryRequest.getPath(), expectedPath);
+    }
+
+    @Test
+    public void urlNormalization6() throws Exception {
+        String resource = "https://example.com:8080/joe?param=value";
+        String expectedHost = "example.com:8080";
+        String expectedPath = "/joe";
+
+        OpenIdConnectDiscoveryRequest openIdConnectDiscoveryRequest = new OpenIdConnectDiscoveryRequest(resource);
+        assertEquals(openIdConnectDiscoveryRequest.getResource(), resource);
+        assertEquals(openIdConnectDiscoveryRequest.getHost(), expectedHost);
+        assertEquals(openIdConnectDiscoveryRequest.getPath(), expectedPath);
+    }
+
+    @Test
+    public void urlNormalization7() throws Exception {
+        String resource = "https://example.com:8080/joe?param1=foo&param2=bar#fragment";
+        String expectedHost = "example.com:8080";
+        String expectedPath = "/joe";
+
+        OpenIdConnectDiscoveryRequest openIdConnectDiscoveryRequest = new OpenIdConnectDiscoveryRequest(resource);
+        assertEquals(openIdConnectDiscoveryRequest.getResource(), resource);
+        assertEquals(openIdConnectDiscoveryRequest.getHost(), expectedHost);
+        assertEquals(openIdConnectDiscoveryRequest.getPath(), expectedPath);
+    }
+
+    @Test
+    public void hostNormalization1() throws Exception {
+        String resource = "example.com";
+        String expectedHost = "example.com";
+        String expectedPath = null;
+
+        OpenIdConnectDiscoveryRequest openIdConnectDiscoveryRequest = new OpenIdConnectDiscoveryRequest(resource);
+        assertEquals(openIdConnectDiscoveryRequest.getResource(), resource);
+        assertEquals(openIdConnectDiscoveryRequest.getHost(), expectedHost);
+        assertEquals(openIdConnectDiscoveryRequest.getPath(), expectedPath);
+    }
+
+    @Test
+    public void hostNormalization2() throws Exception {
+        String resource = "example.com:8080";
+        String expectedHost = "example.com:8080";
+        String expectedPath = null;
+
+        OpenIdConnectDiscoveryRequest openIdConnectDiscoveryRequest = new OpenIdConnectDiscoveryRequest(resource);
+        assertEquals(openIdConnectDiscoveryRequest.getResource(), resource);
+        assertEquals(openIdConnectDiscoveryRequest.getHost(), expectedHost);
+        assertEquals(openIdConnectDiscoveryRequest.getPath(), expectedPath);
+    }
+
+    @Test
+    public void hostNormalization3() throws Exception {
+        String resource = "example.com/path";
+        String expectedHost = "example.com";
+        String expectedPath = "/path";
+
+        OpenIdConnectDiscoveryRequest openIdConnectDiscoveryRequest = new OpenIdConnectDiscoveryRequest(resource);
+        assertEquals(openIdConnectDiscoveryRequest.getResource(), resource);
+        assertEquals(openIdConnectDiscoveryRequest.getHost(), expectedHost);
+        assertEquals(openIdConnectDiscoveryRequest.getPath(), expectedPath);
+    }
+
+    @Test
+    public void hostNormalization4() throws Exception {
+        String resource = "example.com:8080/path";
+        String expectedHost = "example.com:8080";
+        String expectedPath = "/path";
+
+        OpenIdConnectDiscoveryRequest openIdConnectDiscoveryRequest = new OpenIdConnectDiscoveryRequest(resource);
+        assertEquals(openIdConnectDiscoveryRequest.getResource(), resource);
+        assertEquals(openIdConnectDiscoveryRequest.getHost(), expectedHost);
+        assertEquals(openIdConnectDiscoveryRequest.getPath(), expectedPath);
+    }
+
+    @Parameters({"swdResource"})
+    @Test
+    public void requestOpenIdConnectDiscovery(final String resource) throws Exception {
+        showTitle("requestOpenIdConnectDiscovery");
+
+        OpenIdConnectDiscoveryClient client = new OpenIdConnectDiscoveryClient(resource);
+        OpenIdConnectDiscoveryResponse response = client.exec();
+
+        showClient(client);
+        assertEquals(response.getStatus(), 200, "Unexpected response code");
+        assertNotNull(response.getSubject());
+        assertTrue(response.getLinks().size() > 0);
+    }
+}
\ No newline at end of file
diff --git a/oxAuth/Client/src/test/java/org/gluu/oxauth/ws/rs/OpenIDRequestObjectHttpTest.java b/oxAuth/Client/src/test/java/org/gluu/oxauth/ws/rs/OpenIDRequestObjectHttpTest.java
new file mode 100644
index 00000000..2bc0160a
--- /dev/null
+++ b/oxAuth/Client/src/test/java/org/gluu/oxauth/ws/rs/OpenIDRequestObjectHttpTest.java
@@ -0,0 +1,2890 @@
+/*
+ * oxAuth is available under the MIT License (2008). See http://opensource.org/licenses/MIT for full text.
+ *
+ * Copyright (c) 2014, Gluu
+ */
+
+package org.gluu.oxauth.ws.rs;
+
+import org.gluu.oxauth.BaseTest;
+import org.gluu.oxauth.client.*;
+import org.gluu.oxauth.client.model.authorize.Claim;
+import org.gluu.oxauth.client.model.authorize.ClaimValue;
+import org.gluu.oxauth.client.model.authorize.JwtAuthorizationRequest;
+import org.gluu.oxauth.model.common.Prompt;
+import org.gluu.oxauth.model.common.ResponseType;
+import org.gluu.oxauth.model.crypto.AbstractCryptoProvider;
+import org.gluu.oxauth.model.crypto.OxAuthCryptoProvider;
+import org.gluu.oxauth.model.crypto.encryption.BlockEncryptionAlgorithm;
+import org.gluu.oxauth.model.crypto.encryption.KeyEncryptionAlgorithm;
+import org.gluu.oxauth.model.crypto.signature.SignatureAlgorithm;
+import org.gluu.oxauth.model.jwk.Algorithm;
+import org.gluu.oxauth.model.jwt.JwtClaimName;
+import org.gluu.oxauth.model.register.ApplicationType;
+import org.gluu.oxauth.model.util.Base64Util;
+import org.gluu.oxauth.model.util.JwtUtil;
+import org.gluu.oxauth.model.util.StringUtils;
+import org.gluu.util.StringHelper;
+import org.json.JSONObject;
+import org.testng.annotations.Optional;
+import org.testng.annotations.Parameters;
+import org.testng.annotations.Test;
+
+import java.io.BufferedWriter;
+import java.io.File;
+import java.io.FileWriter;
+import java.io.IOException;
+import java.security.NoSuchAlgorithmException;
+import java.security.NoSuchProviderException;
+import java.util.Arrays;
+import java.util.List;
+import java.util.UUID;
+
+import static org.testng.Assert.*;
+
+/**
+ * Functional tests for OpenID Request Object (HTTP)
+ *
+ * @author Javier Rojas Blum
+ * @version February 12, 2019
+ */
+public class OpenIDRequestObjectHttpTest extends BaseTest {
+
+    public static final String ACR_VALUE = "basic";
+
+    @Parameters({"userId", "userSecret", "redirectUris", "redirectUri", "sectorIdentifierUri"})
+    @Test
+    public void requestParameterMethod1(
+            final String userId, final String userSecret, final String redirectUris, final String redirectUri,
+            final String sectorIdentifierUri) throws Exception {
+        showTitle("requestParameterMethod1");
+
+        List<ResponseType> responseTypes = Arrays.asList(
+                ResponseType.TOKEN,
+                ResponseType.ID_TOKEN);
+
+        // 1. Register client
+        RegisterRequest registerRequest = new RegisterRequest(ApplicationType.WEB, "oxAuth test app",
+                StringUtils.spaceSeparatedToList(redirectUris));
+        registerRequest.setResponseTypes(responseTypes);
+        registerRequest.setSectorIdentifierUri(sectorIdentifierUri);
+
+        RegisterClient registerClient = new RegisterClient(registrationEndpoint);
+        registerClient.setRequest(registerRequest);
+        RegisterResponse registerResponse = registerClient.exec();
+
+        showClient(registerClient);
+        assertEquals(registerResponse.getStatus(), 200, "Unexpected response code: " + registerResponse.getEntity());
+        assertNotNull(registerResponse.getClientId());
+        assertNotNull(registerResponse.getClientSecret());
+        assertNotNull(registerResponse.getRegistrationAccessToken());
+        assertNotNull(registerResponse.getClientIdIssuedAt());
+        assertNotNull(registerResponse.getClientSecretExpiresAt());
+
+        String clientId = registerResponse.getClientId();
+        String clientSecret = registerResponse.getClientSecret();
+
+        // 2. Request authorization
+        OxAuthCryptoProvider cryptoProvider = new OxAuthCryptoProvider();
+
+        List<String> scopes = Arrays.asList("openid", "profile", "address", "email");
+        String nonce = UUID.randomUUID().toString();
+        String state = UUID.randomUUID().toString();
+
+        AuthorizationRequest authorizationRequest = new AuthorizationRequest(responseTypes, clientId, scopes, redirectUri, nonce);
+        authorizationRequest.setState(state);
+
+        JwtAuthorizationRequest jwtAuthorizationRequest = new JwtAuthorizationRequest(
+                authorizationRequest, SignatureAlgorithm.HS256, clientSecret, cryptoProvider);
+        jwtAuthorizationRequest.addUserInfoClaim(new Claim(JwtClaimName.NAME, ClaimValue.createNull()));
+        jwtAuthorizationRequest.addUserInfoClaim(new Claim(JwtClaimName.NICKNAME, ClaimValue.createEssential(false)));
+        jwtAuthorizationRequest.addUserInfoClaim(new Claim(JwtClaimName.EMAIL, ClaimValue.createNull()));
+        jwtAuthorizationRequest.addUserInfoClaim(new Claim(JwtClaimName.EMAIL_VERIFIED, ClaimValue.createNull()));
+        jwtAuthorizationRequest.addUserInfoClaim(new Claim(JwtClaimName.PICTURE, ClaimValue.createEssential(false)));
+        jwtAuthorizationRequest.addIdTokenClaim(new Claim(JwtClaimName.AUTHENTICATION_TIME, ClaimValue.createNull()));
+        jwtAuthorizationRequest.addIdTokenClaim(new Claim(JwtClaimName.AUTHENTICATION_CONTEXT_CLASS_REFERENCE, ClaimValue.createValueList(new String[]{ACR_VALUE})));
+        jwtAuthorizationRequest.getIdTokenMember().setMaxAge(86400);
+        String authJwt = jwtAuthorizationRequest.getEncodedJwt();
+        authorizationRequest.setRequest(authJwt);
+
+        AuthorizationResponse authorizationResponse = authenticateResourceOwnerAndGrantAccess(
+                authorizationEndpoint, authorizationRequest, userId, userSecret);
+
+        assertNotNull(authorizationResponse.getLocation(), "The location is null");
+        assertNotNull(authorizationResponse.getAccessToken(), "The accessToken is null");
+        assertNotNull(authorizationResponse.getTokenType(), "The tokenType is null");
+        assertNotNull(authorizationResponse.getIdToken(), "The idToken is null");
+        assertNotNull(authorizationResponse.getState(), "The state is null");
+
+        String accessToken = authorizationResponse.getAccessToken();
+
+        // 3. Request user info
+        UserInfoClient userInfoClient = new UserInfoClient(userInfoEndpoint);
+        UserInfoResponse userInfoResponse = userInfoClient.execUserInfo(accessToken);
+
+        showClient(userInfoClient);
+        assertEquals(userInfoResponse.getStatus(), 200, "Unexpected response code: " + userInfoResponse.getStatus());
+        assertNotNull(userInfoResponse.getClaim(JwtClaimName.SUBJECT_IDENTIFIER));
+        assertNotNull(userInfoResponse.getClaim(JwtClaimName.NAME));
+        assertNotNull(userInfoResponse.getClaim(JwtClaimName.GIVEN_NAME));
+        assertNotNull(userInfoResponse.getClaim(JwtClaimName.FAMILY_NAME));
+        assertNotNull(userInfoResponse.getClaim(JwtClaimName.EMAIL));
+        assertNotNull(userInfoResponse.getClaim(JwtClaimName.ZONEINFO));
+        assertNotNull(userInfoResponse.getClaim(JwtClaimName.LOCALE));
+        assertNotNull(userInfoResponse.getClaim(JwtClaimName.ADDRESS));
+    }
+
+    @Parameters({"userId", "userSecret", "redirectUris", "redirectUri", "sectorIdentifierUri"})
+    @Test
+    public void requestParameterMethod2(
+            final String userId, final String userSecret, final String redirectUris, final String redirectUri,
+            final String sectorIdentifierUri) throws Exception {
+        showTitle("requestParameterMethod2");
+
+        List<ResponseType> responseTypes = Arrays.asList(
+                ResponseType.TOKEN,
+                ResponseType.ID_TOKEN);
+
+        // 1. Register client
+        RegisterRequest registerRequest = new RegisterRequest(ApplicationType.WEB, "oxAuth test app",
+                StringUtils.spaceSeparatedToList(redirectUris));
+        registerRequest.setResponseTypes(responseTypes);
+        registerRequest.setSectorIdentifierUri(sectorIdentifierUri);
+
+        RegisterClient registerClient = new RegisterClient(registrationEndpoint);
+        registerClient.setRequest(registerRequest);
+        RegisterResponse registerResponse = registerClient.exec();
+
+        showClient(registerClient);
+        assertEquals(registerResponse.getStatus(), 200, "Unexpected response code: " + registerResponse.getEntity());
+        assertNotNull(registerResponse.getClientId());
+        assertNotNull(registerResponse.getClientSecret());
+        assertNotNull(registerResponse.getRegistrationAccessToken());
+        assertNotNull(registerResponse.getClientIdIssuedAt());
+        assertNotNull(registerResponse.getClientSecretExpiresAt());
+
+        String clientId = registerResponse.getClientId();
+        String clientSecret = registerResponse.getClientSecret();
+
+        // 2. Request authorization
+        OxAuthCryptoProvider cryptoProvider = new OxAuthCryptoProvider();
+
+        List<String> scopes = Arrays.asList("openid", "profile", "address", "email");
+        String nonce = UUID.randomUUID().toString();
+        String state = UUID.randomUUID().toString();
+
+        AuthorizationRequest authorizationRequest = new AuthorizationRequest(responseTypes, clientId, scopes, redirectUri, nonce);
+        authorizationRequest.setState(state);
+
+        JwtAuthorizationRequest jwtAuthorizationRequest = new JwtAuthorizationRequest(
+                authorizationRequest, SignatureAlgorithm.HS256, clientSecret, cryptoProvider);
+        jwtAuthorizationRequest.addUserInfoClaim(new Claim(JwtClaimName.NAME, ClaimValue.createNull()));
+        jwtAuthorizationRequest.addUserInfoClaim(new Claim(JwtClaimName.NICKNAME, ClaimValue.createEssential(false)));
+        jwtAuthorizationRequest.addUserInfoClaim(new Claim(JwtClaimName.EMAIL, ClaimValue.createNull()));
+        jwtAuthorizationRequest.addUserInfoClaim(new Claim(JwtClaimName.EMAIL_VERIFIED, ClaimValue.createNull()));
+        jwtAuthorizationRequest.addUserInfoClaim(new Claim(JwtClaimName.PICTURE, ClaimValue.createEssential(false)));
+        jwtAuthorizationRequest.addIdTokenClaim(new Claim(JwtClaimName.AUTHENTICATION_TIME, ClaimValue.createNull()));
+        jwtAuthorizationRequest.addIdTokenClaim(new Claim(JwtClaimName.AUTHENTICATION_CONTEXT_CLASS_REFERENCE, ClaimValue.createValueList(new String[]{ACR_VALUE})));
+        jwtAuthorizationRequest.getIdTokenMember().setMaxAge(86400);
+        String authJwt = jwtAuthorizationRequest.getEncodedJwt();
+        authorizationRequest.setRequest(authJwt);
+
+        AuthorizationResponse authorizationResponse = authenticateResourceOwnerAndGrantAccess(
+                authorizationEndpoint, authorizationRequest, userId, userSecret);
+
+        assertNotNull(authorizationResponse.getLocation(), "The location is null");
+        assertNotNull(authorizationResponse.getAccessToken(), "The accessToken is null");
+        assertNotNull(authorizationResponse.getTokenType(), "The tokenType is null");
+        assertNotNull(authorizationResponse.getState(), "The state is null");
+
+        String accessToken = authorizationResponse.getAccessToken();
+
+        // 3. Request user info
+        UserInfoClient userInfoClient = new UserInfoClient(userInfoEndpoint);
+        UserInfoResponse response2 = userInfoClient.execUserInfo(accessToken);
+
+        showClient(userInfoClient);
+        assertEquals(response2.getStatus(), 200, "Unexpected response code: " + response2.getStatus());
+        assertNotNull(response2.getClaim(JwtClaimName.SUBJECT_IDENTIFIER));
+        assertNotNull(response2.getClaim(JwtClaimName.NAME));
+        assertNotNull(response2.getClaim(JwtClaimName.GIVEN_NAME));
+        assertNotNull(response2.getClaim(JwtClaimName.FAMILY_NAME));
+        assertNotNull(response2.getClaim(JwtClaimName.EMAIL));
+        assertNotNull(response2.getClaim(JwtClaimName.ZONEINFO));
+        assertNotNull(response2.getClaim(JwtClaimName.LOCALE));
+        assertNotNull(response2.getClaim(JwtClaimName.ADDRESS));
+    }
+
+    @Parameters({"userId", "userSecret", "redirectUris", "redirectUri", "sectorIdentifierUri"})
+    @Test
+    public void requestParameterMethod3(
+            final String userId, final String userSecret, final String redirectUris, final String redirectUri,
+            final String sectorIdentifierUri) throws Exception {
+        showTitle("requestParameterMethod3");
+
+        List<ResponseType> responseTypes = Arrays.asList(ResponseType.CODE);
+
+        // 1. Register client
+        RegisterRequest registerRequest = new RegisterRequest(ApplicationType.WEB, "oxAuth test app",
+                StringUtils.spaceSeparatedToList(redirectUris));
+        registerRequest.setResponseTypes(responseTypes);
+        registerRequest.setSectorIdentifierUri(sectorIdentifierUri);
+
+        RegisterClient registerClient = new RegisterClient(registrationEndpoint);
+        registerClient.setRequest(registerRequest);
+        RegisterResponse registerResponse = registerClient.exec();
+
+        showClient(registerClient);
+        assertEquals(registerResponse.getStatus(), 200, "Unexpected response code: " + registerResponse.getEntity());
+        assertNotNull(registerResponse.getClientId());
+        assertNotNull(registerResponse.getClientSecret());
+        assertNotNull(registerResponse.getRegistrationAccessToken());
+        assertNotNull(registerResponse.getClientIdIssuedAt());
+        assertNotNull(registerResponse.getClientSecretExpiresAt());
+
+        String clientId = registerResponse.getClientId();
+        String clientSecret = registerResponse.getClientSecret();
+
+        // 2. Request authorization
+        OxAuthCryptoProvider cryptoProvider = new OxAuthCryptoProvider();
+
+        List<String> scopes = Arrays.asList("openid");
+        String state = "STATE0";
+
+        AuthorizationRequest authorizationRequest = new AuthorizationRequest(responseTypes, clientId, scopes, redirectUri, null);
+        authorizationRequest.setState(state);
+
+        JwtAuthorizationRequest jwtAuthorizationRequest = new JwtAuthorizationRequest(
+                authorizationRequest, SignatureAlgorithm.HS256, clientSecret, cryptoProvider);
+        jwtAuthorizationRequest.addUserInfoClaim(new Claim("name", ClaimValue.createNull()));
+        jwtAuthorizationRequest.getIdTokenMember().setMaxAge(86400);
+        String authJwt = jwtAuthorizationRequest.getEncodedJwt();
+        authorizationRequest.setRequest(authJwt);
+
+        AuthorizationResponse authorizationResponse = authenticateResourceOwnerAndGrantAccess(
+                authorizationEndpoint, authorizationRequest, userId, userSecret);
+
+        assertNotNull(authorizationResponse.getLocation(), "The location is null");
+        assertNotNull(authorizationResponse.getCode(), "The code is null");
+    }
+
+    @Parameters({"userId", "userSecret", "redirectUris", "redirectUri", "sectorIdentifierUri"})
+    @Test
+    public void requestParameterMethod4(
+            final String userId, final String userSecret, final String redirectUris, final String redirectUri,
+            final String sectorIdentifierUri) throws Exception {
+        showTitle("requestParameterMethod4");
+
+        List<ResponseType> responseTypes = Arrays.asList(ResponseType.TOKEN);
+
+        // 1. Register client
+        RegisterRequest registerRequest = new RegisterRequest(ApplicationType.WEB, "oxAuth test app",
+                StringUtils.spaceSeparatedToList(redirectUris));
+        registerRequest.setResponseTypes(responseTypes);
+        registerRequest.setSectorIdentifierUri(sectorIdentifierUri);
+
+        RegisterClient registerClient = new RegisterClient(registrationEndpoint);
+        registerClient.setRequest(registerRequest);
+        RegisterResponse registerResponse = registerClient.exec();
+
+        showClient(registerClient);
+        assertEquals(registerResponse.getStatus(), 200, "Unexpected response code: " + registerResponse.getEntity());
+        assertNotNull(registerResponse.getClientId());
+        assertNotNull(registerResponse.getClientSecret());
+        assertNotNull(registerResponse.getRegistrationAccessToken());
+        assertNotNull(registerResponse.getClientIdIssuedAt());
+        assertNotNull(registerResponse.getClientSecretExpiresAt());
+
+        String clientId = registerResponse.getClientId();
+        String clientSecret = registerResponse.getClientSecret();
+
+        // 2. Request authorization
+        OxAuthCryptoProvider cryptoProvider = new OxAuthCryptoProvider();
+
+        List<String> scopes = Arrays.asList("openid");
+        String state = UUID.randomUUID().toString();
+        String nonce = UUID.randomUUID().toString();
+
+        AuthorizationRequest authorizationRequest = new AuthorizationRequest(responseTypes, clientId, scopes, redirectUri, nonce);
+        authorizationRequest.setState(state);
+
+        JwtAuthorizationRequest jwtAuthorizationRequest = new JwtAuthorizationRequest(
+                authorizationRequest, SignatureAlgorithm.HS384, clientSecret, cryptoProvider);
+        jwtAuthorizationRequest.addIdTokenClaim(new Claim(JwtClaimName.SUBJECT_IDENTIFIER, ClaimValue.createSingleValue(userId)));
+        String authJwt = jwtAuthorizationRequest.getEncodedJwt();
+        authorizationRequest.setRequest(authJwt);
+
+        AuthorizationResponse authorizationResponse = authenticateResourceOwnerAndGrantAccess(
+                authorizationEndpoint, authorizationRequest, userId, userSecret);
+
+        assertNotNull(authorizationResponse.getLocation(), "The location is null");
+        assertNotNull(authorizationResponse.getAccessToken(), "The accessToken is null");
+        assertNotNull(authorizationResponse.getTokenType(), "The tokenType is null");
+        assertNotNull(authorizationResponse.getState(), "The state is null");
+    }
+
+    @Parameters({"userId", "userSecret", "redirectUris", "redirectUri", "sectorIdentifierUri"})
+    @Test
+    public void requestParameterMethod5(
+            final String userId, final String userSecret, final String redirectUris, final String redirectUri,
+            final String sectorIdentifierUri) throws Exception {
+        showTitle("requestParameterMethod5");
+
+        List<ResponseType> responseTypes = Arrays.asList(ResponseType.TOKEN);
+
+        // 1. Register client
+        RegisterRequest registerRequest = new RegisterRequest(ApplicationType.WEB, "oxAuth test app",
+                StringUtils.spaceSeparatedToList(redirectUris));
+        registerRequest.setResponseTypes(responseTypes);
+        registerRequest.setSectorIdentifierUri(sectorIdentifierUri);
+
+        RegisterClient registerClient = new RegisterClient(registrationEndpoint);
+        registerClient.setRequest(registerRequest);
+        RegisterResponse registerResponse = registerClient.exec();
+
+        showClient(registerClient);
+        assertEquals(registerResponse.getStatus(), 200, "Unexpected response code: " + registerResponse.getEntity());
+        assertNotNull(registerResponse.getClientId());
+        assertNotNull(registerResponse.getClientSecret());
+        assertNotNull(registerResponse.getRegistrationAccessToken());
+        assertNotNull(registerResponse.getClientIdIssuedAt());
+        assertNotNull(registerResponse.getClientSecretExpiresAt());
+
+        String clientId = registerResponse.getClientId();
+        String clientSecret = registerResponse.getClientSecret();
+
+        // 2. Request authorization
+        OxAuthCryptoProvider cryptoProvider = new OxAuthCryptoProvider();
+
+        List<String> scopes = Arrays.asList("openid");
+        String state = UUID.randomUUID().toString();
+        String nonce = UUID.randomUUID().toString();
+
+        AuthorizationRequest authorizationRequest = new AuthorizationRequest(responseTypes, clientId, scopes, redirectUri, nonce);
+        authorizationRequest.setState(state);
+
+        JwtAuthorizationRequest jwtAuthorizationRequest = new JwtAuthorizationRequest(
+                authorizationRequest, SignatureAlgorithm.HS512, clientSecret, cryptoProvider);
+        jwtAuthorizationRequest.addIdTokenClaim(new Claim(JwtClaimName.SUBJECT_IDENTIFIER, ClaimValue.createSingleValue(userId)));
+        String authJwt = jwtAuthorizationRequest.getEncodedJwt();
+        authorizationRequest.setRequest(authJwt);
+
+        AuthorizationResponse authorizationResponse = authenticateResourceOwnerAndGrantAccess(
+                authorizationEndpoint, authorizationRequest, userId, userSecret);
+
+        assertNotNull(authorizationResponse.getLocation(), "The location is null");
+        assertNotNull(authorizationResponse.getAccessToken(), "The accessToken is null");
+        assertNotNull(authorizationResponse.getTokenType(), "The tokenType is null");
+        assertNotNull(authorizationResponse.getState(), "The state is null");
+    }
+
+    @Parameters({"userId", "userSecret", "redirectUris", "redirectUri", "sectorIdentifierUri"})
+    @Test
+    public void requestParameterMethod6(
+            final String userId, final String userSecret, final String redirectUris, final String redirectUri,
+            final String sectorIdentifierUri) throws Exception {
+        showTitle("requestParameterMethod6");
+
+        List<ResponseType> responseTypes = Arrays.asList(ResponseType.TOKEN);
+
+        // 1. Register client
+        RegisterRequest registerRequest = new RegisterRequest(ApplicationType.WEB, "oxAuth test app",
+                StringUtils.spaceSeparatedToList(redirectUris));
+        registerRequest.setResponseTypes(responseTypes);
+        registerRequest.setSectorIdentifierUri(sectorIdentifierUri);
+        registerRequest.setClaims(Arrays.asList(JwtClaimName.NAME));
+
+        RegisterClient registerClient = new RegisterClient(registrationEndpoint);
+        registerClient.setRequest(registerRequest);
+        RegisterResponse registerResponse = registerClient.exec();
+
+        showClient(registerClient);
+        assertEquals(registerResponse.getStatus(), 200, "Unexpected response code: " + registerResponse.getEntity());
+        assertNotNull(registerResponse.getClientId());
+        assertNotNull(registerResponse.getClientSecret());
+        assertNotNull(registerResponse.getRegistrationAccessToken());
+        assertNotNull(registerResponse.getClientIdIssuedAt());
+        assertNotNull(registerResponse.getClientSecretExpiresAt());
+
+        String clientId = registerResponse.getClientId();
+        String clientSecret = registerResponse.getClientSecret();
+
+        // 2. Request authorization
+        OxAuthCryptoProvider cryptoProvider = new OxAuthCryptoProvider();
+
+        List<String> scopes = Arrays.asList("openid");
+        String nonce = UUID.randomUUID().toString();
+        String state = UUID.randomUUID().toString();
+
+        AuthorizationRequest authorizationRequest = new AuthorizationRequest(responseTypes, clientId, scopes, redirectUri, nonce);
+        authorizationRequest.setState(state);
+
+        JwtAuthorizationRequest jwtAuthorizationRequest = new JwtAuthorizationRequest(authorizationRequest, SignatureAlgorithm.HS256, clientSecret, cryptoProvider);
+        jwtAuthorizationRequest.getIdTokenMember().setMaxAge(86400);
+        jwtAuthorizationRequest.addUserInfoClaim(new Claim("name", ClaimValue.createEssential(true)));
+        String authJwt = jwtAuthorizationRequest.getEncodedJwt();
+        authorizationRequest.setRequest(authJwt);
+
+        AuthorizationResponse authorizationResponse = authenticateResourceOwnerAndGrantAccess(
+                authorizationEndpoint, authorizationRequest, userId, userSecret);
+
+        assertNotNull(authorizationResponse.getLocation(), "The location is null");
+        assertNotNull(authorizationResponse.getAccessToken(), "The accessToken is null");
+        assertNotNull(authorizationResponse.getTokenType(), "The tokenType is null");
+        assertNotNull(authorizationResponse.getState(), "The state is null");
+
+        String accessToken = authorizationResponse.getAccessToken();
+
+        // 3. Request user info
+        UserInfoClient userInfoClient = new UserInfoClient(userInfoEndpoint);
+        UserInfoResponse userInfoResponse = userInfoClient.execUserInfo(accessToken);
+
+        showClient(userInfoClient);
+        assertEquals(userInfoResponse.getStatus(), 200, "Unexpected response code: " + userInfoResponse.getStatus());
+        assertNotNull(userInfoResponse.getClaim(JwtClaimName.SUBJECT_IDENTIFIER));
+        assertNotNull(userInfoResponse.getClaim(JwtClaimName.NAME));
+    }
+
+    @Parameters({"userId", "userSecret", "redirectUri", "redirectUris", "clientJwksUri",
+            "RS256_keyId", "dnName", "keyStoreFile", "keyStoreSecret", "sectorIdentifierUri"})
+    @Test
+    public void requestParameterMethodRS256(
+            final String userId, final String userSecret, final String redirectUri, final String redirectUris,
+            final String jwksUri, final String keyId, final String dnName, final String keyStoreFile,
+            final String keyStoreSecret, final String sectorIdentifierUri) throws Exception {
+        showTitle("requestParameterMethodRS256");
+
+        List<ResponseType> responseTypes = Arrays.asList(ResponseType.TOKEN, ResponseType.ID_TOKEN);
+
+        // 1. Dynamic Client Registration
+        RegisterRequest registerRequest = new RegisterRequest(ApplicationType.WEB, "oxAuth test app",
+                StringUtils.spaceSeparatedToList(redirectUris));
+        registerRequest.setResponseTypes(responseTypes);
+        registerRequest.setJwksUri(jwksUri);
+        registerRequest.setRequestObjectSigningAlg(SignatureAlgorithm.RS256);
+        registerRequest.addCustomAttribute("oxAuthTrustedClient", "true");
+        registerRequest.setSectorIdentifierUri(sectorIdentifierUri);
+
+        RegisterClient registerClient = new RegisterClient(registrationEndpoint);
+        registerClient.setRequest(registerRequest);
+        RegisterResponse response = registerClient.exec();
+
+        showClient(registerClient);
+        assertEquals(response.getStatus(), 200, "Unexpected response code: " + response.getEntity());
+        assertNotNull(response.getClientId());
+        assertNotNull(response.getClientSecret());
+        assertNotNull(response.getRegistrationAccessToken());
+        assertNotNull(response.getClientSecretExpiresAt());
+
+        String clientId = response.getClientId();
+
+        // 2. Request authorization
+        OxAuthCryptoProvider cryptoProvider = new OxAuthCryptoProvider(keyStoreFile, keyStoreSecret, dnName);
+
+        List<String> scopes = Arrays.asList("openid", "profile", "address", "email");
+        String nonce = UUID.randomUUID().toString();
+        String state = UUID.randomUUID().toString();
+
+        AuthorizationRequest request = new AuthorizationRequest(responseTypes, clientId, scopes, redirectUri, nonce);
+        request.setState(state);
+        request.setAuthUsername(userId);
+        request.setAuthPassword(userSecret);
+        request.getPrompts().add(Prompt.NONE);
+
+        JwtAuthorizationRequest jwtAuthorizationRequest = new JwtAuthorizationRequest(request, SignatureAlgorithm.RS256, cryptoProvider);
+        jwtAuthorizationRequest.setKeyId(keyId);
+        jwtAuthorizationRequest.addUserInfoClaim(new Claim(JwtClaimName.NAME, ClaimValue.createNull()));
+        jwtAuthorizationRequest.addUserInfoClaim(new Claim(JwtClaimName.NICKNAME, ClaimValue.createEssential(false)));
+        jwtAuthorizationRequest.addUserInfoClaim(new Claim(JwtClaimName.EMAIL, ClaimValue.createNull()));
+        jwtAuthorizationRequest.addUserInfoClaim(new Claim(JwtClaimName.EMAIL_VERIFIED, ClaimValue.createNull()));
+        jwtAuthorizationRequest.addUserInfoClaim(new Claim(JwtClaimName.PICTURE, ClaimValue.createEssential(false)));
+        jwtAuthorizationRequest.addIdTokenClaim(new Claim(JwtClaimName.AUTHENTICATION_TIME, ClaimValue.createNull()));
+        jwtAuthorizationRequest.addIdTokenClaim(new Claim(JwtClaimName.AUTHENTICATION_CONTEXT_CLASS_REFERENCE, ClaimValue.createValueList(new String[]{ACR_VALUE})));
+        jwtAuthorizationRequest.getIdTokenMember().setMaxAge(86400);
+        String authJwt = jwtAuthorizationRequest.getEncodedJwt();
+        request.setRequest(authJwt);
+
+        AuthorizeClient authorizeClient = new AuthorizeClient(authorizationEndpoint);
+        authorizeClient.setRequest(request);
+        AuthorizationResponse response1 = authorizeClient.exec();
+
+        showClient(authorizeClient);
+        assertEquals(response1.getStatus(), 302, "Unexpected response code: " + response1.getStatus());
+        assertNotNull(response1.getLocation(), "The location is null");
+        assertNotNull(response1.getAccessToken(), "The accessToken is null");
+        assertNotNull(response1.getTokenType(), "The tokenType is null");
+        assertNotNull(response1.getIdToken(), "The idToken is null");
+        assertNotNull(response1.getState(), "The state is null");
+
+        String accessToken = response1.getAccessToken();
+
+        // 3. Request user info
+        UserInfoClient userInfoClient = new UserInfoClient(userInfoEndpoint);
+        UserInfoResponse response3 = userInfoClient.execUserInfo(accessToken);
+
+        showClient(userInfoClient);
+        assertEquals(response3.getStatus(), 200, "Unexpected response code: " + response3.getStatus());
+        assertNotNull(response3.getClaim(JwtClaimName.SUBJECT_IDENTIFIER));
+        assertNotNull(response3.getClaim(JwtClaimName.NAME));
+        assertNotNull(response3.getClaim(JwtClaimName.GIVEN_NAME));
+        assertNotNull(response3.getClaim(JwtClaimName.FAMILY_NAME));
+        assertNotNull(response3.getClaim(JwtClaimName.EMAIL));
+        assertNotNull(response3.getClaim(JwtClaimName.ZONEINFO));
+        assertNotNull(response3.getClaim(JwtClaimName.LOCALE));
+    }
+
+    @Parameters({"userId", "userSecret", "redirectUri", "redirectUris", "clientJwksUri",
+            "RS384_keyId", "dnName", "keyStoreFile", "keyStoreSecret", "sectorIdentifierUri"})
+    @Test
+    public void requestParameterMethodRS384(
+            final String userId, final String userSecret, final String redirectUri, final String redirectUris,
+            final String jwksUri, final String keyId, final String dnName, final String keyStoreFile,
+            final String keyStoreSecret, final String sectorIdentifierUri) throws Exception {
+        showTitle("requestParameterMethodRS384");
+
+        List<ResponseType> responseTypes = Arrays.asList(ResponseType.TOKEN, ResponseType.ID_TOKEN);
+
+        // 1. Dynamic Client Registration
+        RegisterRequest registerRequest = new RegisterRequest(ApplicationType.WEB, "oxAuth test app",
+                StringUtils.spaceSeparatedToList(redirectUris));
+        registerRequest.setResponseTypes(responseTypes);
+        registerRequest.setJwksUri(jwksUri);
+        registerRequest.setRequestObjectSigningAlg(SignatureAlgorithm.RS384);
+        registerRequest.addCustomAttribute("oxAuthTrustedClient", "true");
+        registerRequest.setSectorIdentifierUri(sectorIdentifierUri);
+
+        RegisterClient registerClient = new RegisterClient(registrationEndpoint);
+        registerClient.setRequest(registerRequest);
+        RegisterResponse response = registerClient.exec();
+
+        showClient(registerClient);
+        assertEquals(response.getStatus(), 200, "Unexpected response code: " + response.getEntity());
+        assertNotNull(response.getClientId());
+        assertNotNull(response.getClientSecret());
+        assertNotNull(response.getRegistrationAccessToken());
+        assertNotNull(response.getClientSecretExpiresAt());
+
+        String clientId = response.getClientId();
+
+        // 2. Request authorization
+        OxAuthCryptoProvider cryptoProvider = new OxAuthCryptoProvider(keyStoreFile, keyStoreSecret, dnName);
+
+        List<String> scopes = Arrays.asList("openid", "profile", "address", "email");
+        String nonce = UUID.randomUUID().toString();
+        String state = UUID.randomUUID().toString();
+
+        AuthorizationRequest request = new AuthorizationRequest(responseTypes, clientId, scopes, redirectUri, nonce);
+        request.setState(state);
+        request.setAuthUsername(userId);
+        request.setAuthPassword(userSecret);
+        request.getPrompts().add(Prompt.NONE);
+
+        JwtAuthorizationRequest jwtAuthorizationRequest = new JwtAuthorizationRequest(
+                request, SignatureAlgorithm.RS384, cryptoProvider);
+        jwtAuthorizationRequest.setKeyId(keyId);
+        jwtAuthorizationRequest.addUserInfoClaim(new Claim(JwtClaimName.NAME, ClaimValue.createNull()));
+        jwtAuthorizationRequest.addUserInfoClaim(new Claim(JwtClaimName.NICKNAME, ClaimValue.createEssential(false)));
+        jwtAuthorizationRequest.addUserInfoClaim(new Claim(JwtClaimName.EMAIL, ClaimValue.createNull()));
+        jwtAuthorizationRequest.addUserInfoClaim(new Claim(JwtClaimName.EMAIL_VERIFIED, ClaimValue.createNull()));
+        jwtAuthorizationRequest.addUserInfoClaim(new Claim(JwtClaimName.PICTURE, ClaimValue.createEssential(false)));
+        jwtAuthorizationRequest.addIdTokenClaim(new Claim(JwtClaimName.AUTHENTICATION_TIME, ClaimValue.createNull()));
+        jwtAuthorizationRequest.addIdTokenClaim(new Claim(JwtClaimName.AUTHENTICATION_CONTEXT_CLASS_REFERENCE, ClaimValue.createValueList(new String[]{ACR_VALUE})));
+        jwtAuthorizationRequest.getIdTokenMember().setMaxAge(86400);
+        String authJwt = jwtAuthorizationRequest.getEncodedJwt();
+        request.setRequest(authJwt);
+
+        AuthorizeClient authorizeClient = new AuthorizeClient(authorizationEndpoint);
+        authorizeClient.setRequest(request);
+        AuthorizationResponse response1 = authorizeClient.exec();
+
+        showClient(authorizeClient);
+        assertEquals(response1.getStatus(), 302, "Unexpected response code: " + response1.getStatus());
+        assertNotNull(response1.getLocation(), "The location is null");
+        assertNotNull(response1.getAccessToken(), "The accessToken is null");
+        assertNotNull(response1.getTokenType(), "The tokenType is null");
+        assertNotNull(response1.getIdToken(), "The idToken is null");
+        assertNotNull(response1.getState(), "The state is null");
+
+        String accessToken = response1.getAccessToken();
+
+        // 3. Request user info
+        UserInfoClient userInfoClient = new UserInfoClient(userInfoEndpoint);
+        UserInfoResponse response3 = userInfoClient.execUserInfo(accessToken);
+
+        showClient(userInfoClient);
+        assertEquals(response3.getStatus(), 200, "Unexpected response code: " + response3.getStatus());
+        assertNotNull(response3.getClaim(JwtClaimName.SUBJECT_IDENTIFIER));
+        assertNotNull(response3.getClaim(JwtClaimName.NAME));
+        assertNotNull(response3.getClaim(JwtClaimName.GIVEN_NAME));
+        assertNotNull(response3.getClaim(JwtClaimName.FAMILY_NAME));
+        assertNotNull(response3.getClaim(JwtClaimName.EMAIL));
+        assertNotNull(response3.getClaim(JwtClaimName.ZONEINFO));
+        assertNotNull(response3.getClaim(JwtClaimName.LOCALE));
+    }
+
+    @Parameters({"userId", "userSecret", "redirectUri", "redirectUris", "clientJwksUri",
+            "RS512_keyId", "dnName", "keyStoreFile", "keyStoreSecret", "sectorIdentifierUri"})
+    @Test
+    public void requestParameterMethodRS512(
+            final String userId, final String userSecret, final String redirectUri, final String redirectUris,
+            final String jwksUri, final String keyId, final String dnName, final String keyStoreFile,
+            final String keyStoreSecret, final String sectorIdentifierUri) throws Exception {
+        showTitle("requestParameterMethodRS512");
+
+        List<ResponseType> responseTypes = Arrays.asList(ResponseType.TOKEN, ResponseType.ID_TOKEN);
+
+        // Dynamic Client Registration
+        RegisterRequest registerRequest = new RegisterRequest(ApplicationType.WEB, "oxAuth test app",
+                StringUtils.spaceSeparatedToList(redirectUris));
+        registerRequest.setResponseTypes(responseTypes);
+        registerRequest.setJwksUri(jwksUri);
+        registerRequest.setRequestObjectSigningAlg(SignatureAlgorithm.RS512);
+        registerRequest.addCustomAttribute("oxAuthTrustedClient", "true");
+        registerRequest.setSectorIdentifierUri(sectorIdentifierUri);
+
+        RegisterClient registerClient = new RegisterClient(registrationEndpoint);
+        registerClient.setRequest(registerRequest);
+        RegisterResponse response = registerClient.exec();
+
+        showClient(registerClient);
+        assertEquals(response.getStatus(), 200, "Unexpected response code: " + response.getEntity());
+        assertNotNull(response.getClientId());
+        assertNotNull(response.getClientSecret());
+        assertNotNull(response.getRegistrationAccessToken());
+        assertNotNull(response.getClientSecretExpiresAt());
+
+        String clientId = response.getClientId();
+
+        OxAuthCryptoProvider cryptoProvider = new OxAuthCryptoProvider(keyStoreFile, keyStoreSecret, dnName);
+
+        List<String> scopes = Arrays.asList("openid", "profile", "address", "email");
+        String nonce = UUID.randomUUID().toString();
+        String state = UUID.randomUUID().toString();
+
+        AuthorizationRequest request = new AuthorizationRequest(responseTypes, clientId, scopes, redirectUri, nonce);
+        request.setState(state);
+        request.setAuthUsername(userId);
+        request.setAuthPassword(userSecret);
+        request.getPrompts().add(Prompt.NONE);
+
+        JwtAuthorizationRequest jwtAuthorizationRequest = new JwtAuthorizationRequest(request, SignatureAlgorithm.RS512, cryptoProvider);
+        jwtAuthorizationRequest.setKeyId(keyId);
+        jwtAuthorizationRequest.addUserInfoClaim(new Claim(JwtClaimName.NAME, ClaimValue.createNull()));
+        jwtAuthorizationRequest.addUserInfoClaim(new Claim(JwtClaimName.NICKNAME, ClaimValue.createEssential(false)));
+        jwtAuthorizationRequest.addUserInfoClaim(new Claim(JwtClaimName.EMAIL, ClaimValue.createNull()));
+        jwtAuthorizationRequest.addUserInfoClaim(new Claim(JwtClaimName.EMAIL_VERIFIED, ClaimValue.createNull()));
+        jwtAuthorizationRequest.addUserInfoClaim(new Claim(JwtClaimName.PICTURE, ClaimValue.createEssential(false)));
+        jwtAuthorizationRequest.addIdTokenClaim(new Claim(JwtClaimName.AUTHENTICATION_TIME, ClaimValue.createNull()));
+        jwtAuthorizationRequest.addIdTokenClaim(new Claim(JwtClaimName.AUTHENTICATION_CONTEXT_CLASS_REFERENCE, ClaimValue.createValueList(new String[]{ACR_VALUE})));
+        jwtAuthorizationRequest.getIdTokenMember().setMaxAge(86400);
+        String authJwt = jwtAuthorizationRequest.getEncodedJwt();
+        request.setRequest(authJwt);
+
+        AuthorizeClient authorizeClient = new AuthorizeClient(authorizationEndpoint);
+        authorizeClient.setRequest(request);
+        AuthorizationResponse response1 = authorizeClient.exec();
+
+        showClient(authorizeClient);
+        assertEquals(response1.getStatus(), 302, "Unexpected response code: " + response1.getStatus());
+        assertNotNull(response1.getLocation(), "The location is null");
+        assertNotNull(response1.getAccessToken(), "The accessToken is null");
+        assertNotNull(response1.getTokenType(), "The tokenType is null");
+        assertNotNull(response1.getIdToken(), "The idToken is null");
+        assertNotNull(response1.getState(), "The state is null");
+
+        String accessToken = response1.getAccessToken();
+
+        // Request user info
+        UserInfoClient userInfoClient = new UserInfoClient(userInfoEndpoint);
+        UserInfoResponse response3 = userInfoClient.execUserInfo(accessToken);
+
+        showClient(userInfoClient);
+        assertEquals(response3.getStatus(), 200, "Unexpected response code: " + response3.getStatus());
+        assertNotNull(response3.getClaim(JwtClaimName.SUBJECT_IDENTIFIER));
+        assertNotNull(response3.getClaim(JwtClaimName.NAME));
+        assertNotNull(response3.getClaim(JwtClaimName.GIVEN_NAME));
+        assertNotNull(response3.getClaim(JwtClaimName.FAMILY_NAME));
+        assertNotNull(response3.getClaim(JwtClaimName.EMAIL));
+        assertNotNull(response3.getClaim(JwtClaimName.ZONEINFO));
+        assertNotNull(response3.getClaim(JwtClaimName.LOCALE));
+    }
+
+    @Parameters({"userId", "userSecret", "redirectUri", "redirectUris", "clientJwksUri",
+            "ES256_keyId", "dnName", "keyStoreFile", "keyStoreSecret", "sectorIdentifierUri"})
+    @Test
+    public void requestParameterMethodES256(
+            final String userId, final String userSecret, final String redirectUri, final String redirectUris,
+            final String jwksUri, final String keyId, final String dnName, final String keyStoreFile,
+            final String keyStoreSecret, final String sectorIdentifierUri) throws Exception {
+        showTitle("requestParameterMethodES256");
+
+        List<ResponseType> responseTypes = Arrays.asList(ResponseType.TOKEN, ResponseType.ID_TOKEN);
+
+        // 1. Dynamic Client Registration
+        RegisterRequest registerRequest = new RegisterRequest(ApplicationType.WEB, "oxAuth test app",
+                StringUtils.spaceSeparatedToList(redirectUris));
+        registerRequest.setResponseTypes(responseTypes);
+        registerRequest.setJwksUri(jwksUri);
+        registerRequest.setRequestObjectSigningAlg(SignatureAlgorithm.ES256);
+        registerRequest.addCustomAttribute("oxAuthTrustedClient", "true");
+        registerRequest.setSectorIdentifierUri(sectorIdentifierUri);
+
+        RegisterClient registerClient = new RegisterClient(registrationEndpoint);
+        registerClient.setRequest(registerRequest);
+        RegisterResponse response = registerClient.exec();
+
+        showClient(registerClient);
+        assertEquals(response.getStatus(), 200, "Unexpected response code: " + response.getEntity());
+        assertNotNull(response.getClientId());
+        assertNotNull(response.getClientSecret());
+        assertNotNull(response.getRegistrationAccessToken());
+        assertNotNull(response.getClientSecretExpiresAt());
+
+        String clientId = response.getClientId();
+
+        // 2. Request authorization
+        OxAuthCryptoProvider cryptoProvider = new OxAuthCryptoProvider(keyStoreFile, keyStoreSecret, dnName);
+
+        List<String> scopes = Arrays.asList("openid", "profile", "address", "email");
+        String nonce = UUID.randomUUID().toString();
+        String state = UUID.randomUUID().toString();
+
+        AuthorizationRequest request = new AuthorizationRequest(responseTypes, clientId, scopes, redirectUri, nonce);
+        request.setState(state);
+        request.setAuthUsername(userId);
+        request.setAuthPassword(userSecret);
+        request.getPrompts().add(Prompt.NONE);
+
+        JwtAuthorizationRequest jwtAuthorizationRequest = new JwtAuthorizationRequest(request, SignatureAlgorithm.ES256, cryptoProvider);
+        jwtAuthorizationRequest.setKeyId(keyId);
+        jwtAuthorizationRequest.addUserInfoClaim(new Claim(JwtClaimName.NAME, ClaimValue.createNull()));
+        jwtAuthorizationRequest.addUserInfoClaim(new Claim(JwtClaimName.NICKNAME, ClaimValue.createEssential(false)));
+        jwtAuthorizationRequest.addUserInfoClaim(new Claim(JwtClaimName.EMAIL, ClaimValue.createNull()));
+        jwtAuthorizationRequest.addUserInfoClaim(new Claim(JwtClaimName.EMAIL_VERIFIED, ClaimValue.createNull()));
+        jwtAuthorizationRequest.addUserInfoClaim(new Claim(JwtClaimName.PICTURE, ClaimValue.createEssential(false)));
+        jwtAuthorizationRequest.addIdTokenClaim(new Claim(JwtClaimName.AUTHENTICATION_TIME, ClaimValue.createNull()));
+        jwtAuthorizationRequest.addIdTokenClaim(new Claim(JwtClaimName.AUTHENTICATION_CONTEXT_CLASS_REFERENCE, ClaimValue.createValueList(new String[]{ACR_VALUE})));
+        jwtAuthorizationRequest.getIdTokenMember().setMaxAge(86400);
+        String authJwt = jwtAuthorizationRequest.getEncodedJwt();
+        request.setRequest(authJwt);
+
+        AuthorizeClient authorizeClient = new AuthorizeClient(authorizationEndpoint);
+        authorizeClient.setRequest(request);
+        AuthorizationResponse response1 = authorizeClient.exec();
+
+        showClient(authorizeClient);
+        assertEquals(response1.getStatus(), 302, "Unexpected response code: " + response1.getStatus());
+        assertNotNull(response1.getLocation(), "The location is null");
+        assertNotNull(response1.getAccessToken(), "The accessToken is null");
+        assertNotNull(response1.getTokenType(), "The tokenType is null");
+        assertNotNull(response1.getIdToken(), "The idToken is null");
+        assertNotNull(response1.getState(), "The state is null");
+
+        String accessToken = response1.getAccessToken();
+
+        // 3. Request user info
+        UserInfoClient userInfoClient = new UserInfoClient(userInfoEndpoint);
+        UserInfoResponse response3 = userInfoClient.execUserInfo(accessToken);
+
+        showClient(userInfoClient);
+        assertEquals(response3.getStatus(), 200, "Unexpected response code: " + response3.getStatus());
+        assertNotNull(response3.getClaim(JwtClaimName.SUBJECT_IDENTIFIER));
+        assertNotNull(response3.getClaim(JwtClaimName.NAME));
+        assertNotNull(response3.getClaim(JwtClaimName.GIVEN_NAME));
+        assertNotNull(response3.getClaim(JwtClaimName.FAMILY_NAME));
+        assertNotNull(response3.getClaim(JwtClaimName.EMAIL));
+        assertNotNull(response3.getClaim(JwtClaimName.ZONEINFO));
+        assertNotNull(response3.getClaim(JwtClaimName.LOCALE));
+        assertNotNull(response3.getClaim(JwtClaimName.ADDRESS));
+    }
+
+    @Parameters({"userId", "userSecret", "redirectUri", "redirectUris", "clientJwksUri",
+            "ES384_keyId", "dnName", "keyStoreFile", "keyStoreSecret", "sectorIdentifierUri"})
+    @Test
+    public void requestParameterMethodES384(
+            final String userId, final String userSecret, final String redirectUri, final String redirectUris,
+            final String jwksUri, final String keyId, final String dnName, final String keyStoreFile,
+            final String keyStoreSecret, final String sectorIdentifierUri) throws Exception {
+        showTitle("requestParameterMethodES384");
+
+        List<ResponseType> responseTypes = Arrays.asList(ResponseType.TOKEN, ResponseType.ID_TOKEN);
+
+        // 1. Dynamic Client Registration
+        RegisterRequest registerRequest = new RegisterRequest(ApplicationType.WEB, "oxAuth test app",
+                StringUtils.spaceSeparatedToList(redirectUris));
+        registerRequest.setResponseTypes(responseTypes);
+        registerRequest.setJwksUri(jwksUri);
+        registerRequest.setRequestObjectSigningAlg(SignatureAlgorithm.ES384);
+        registerRequest.addCustomAttribute("oxAuthTrustedClient", "true");
+        registerRequest.setSectorIdentifierUri(sectorIdentifierUri);
+
+        RegisterClient registerClient = new RegisterClient(registrationEndpoint);
+        registerClient.setRequest(registerRequest);
+        registerClient.setExecutor(clientEngine(true));
+        RegisterResponse response = registerClient.exec();
+
+        showClient(registerClient);
+        assertEquals(response.getStatus(), 200, "Unexpected response code: " + response.getEntity());
+        assertNotNull(response.getClientId());
+        assertNotNull(response.getClientSecret());
+        assertNotNull(response.getRegistrationAccessToken());
+        assertNotNull(response.getClientSecretExpiresAt());
+
+        String clientId = response.getClientId();
+        String clientSecret = response.getClientSecret();
+
+        // 2. Request authorization
+        OxAuthCryptoProvider cryptoProvider = new OxAuthCryptoProvider(keyStoreFile, keyStoreSecret, dnName);
+
+        List<String> scopes = Arrays.asList("openid", "profile", "address", "email");
+        String nonce = UUID.randomUUID().toString();
+        String state = UUID.randomUUID().toString();
+
+        AuthorizationRequest request = new AuthorizationRequest(responseTypes, clientId, scopes, redirectUri, nonce);
+        request.setState(state);
+        request.setAuthUsername(userId);
+        request.setAuthPassword(userSecret);
+        request.getPrompts().add(Prompt.NONE);
+
+        JwtAuthorizationRequest jwtAuthorizationRequest = new JwtAuthorizationRequest(request, SignatureAlgorithm.ES384, cryptoProvider);
+        jwtAuthorizationRequest.setKeyId(keyId);
+        jwtAuthorizationRequest.addUserInfoClaim(new Claim(JwtClaimName.NAME, ClaimValue.createNull()));
+        jwtAuthorizationRequest.addUserInfoClaim(new Claim(JwtClaimName.NICKNAME, ClaimValue.createEssential(false)));
+        jwtAuthorizationRequest.addUserInfoClaim(new Claim(JwtClaimName.EMAIL, ClaimValue.createNull()));
+        jwtAuthorizationRequest.addUserInfoClaim(new Claim(JwtClaimName.EMAIL_VERIFIED, ClaimValue.createNull()));
+        jwtAuthorizationRequest.addUserInfoClaim(new Claim(JwtClaimName.PICTURE, ClaimValue.createEssential(false)));
+        jwtAuthorizationRequest.addIdTokenClaim(new Claim(JwtClaimName.AUTHENTICATION_TIME, ClaimValue.createNull()));
+        jwtAuthorizationRequest.addIdTokenClaim(new Claim(JwtClaimName.AUTHENTICATION_CONTEXT_CLASS_REFERENCE, ClaimValue.createValueList(new String[]{ACR_VALUE})));
+        jwtAuthorizationRequest.getIdTokenMember().setMaxAge(86400);
+        String authJwt = jwtAuthorizationRequest.getEncodedJwt();
+        request.setRequest(authJwt);
+
+        AuthorizeClient authorizeClient = new AuthorizeClient(authorizationEndpoint);
+        authorizeClient.setRequest(request);
+        authorizeClient.setExecutor(clientEngine(true));
+        AuthorizationResponse response1 = authorizeClient.exec();
+
+        showClient(authorizeClient);
+        assertEquals(response1.getStatus(), 302, "Unexpected response code: " + response1.getStatus());
+        assertNotNull(response1.getLocation(), "The location is null");
+        assertNotNull(response1.getAccessToken(), "The accessToken is null");
+        assertNotNull(response1.getTokenType(), "The tokenType is null");
+        assertNotNull(response1.getIdToken(), "The idToken is null");
+        assertNotNull(response1.getState(), "The state is null");
+
+        String accessToken = response1.getAccessToken();
+
+        // 3. Request user info
+        UserInfoClient userInfoClient = new UserInfoClient(userInfoEndpoint);
+        userInfoClient.setExecutor(clientEngine(true));
+        UserInfoResponse response3 = userInfoClient.execUserInfo(accessToken);
+
+        showClient(userInfoClient);
+        assertEquals(response3.getStatus(), 200, "Unexpected response code: " + response3.getStatus());
+        assertNotNull(response3.getClaim(JwtClaimName.SUBJECT_IDENTIFIER));
+        assertNotNull(response3.getClaim(JwtClaimName.NAME));
+        assertNotNull(response3.getClaim(JwtClaimName.GIVEN_NAME));
+        assertNotNull(response3.getClaim(JwtClaimName.FAMILY_NAME));
+        assertNotNull(response3.getClaim(JwtClaimName.EMAIL));
+        assertNotNull(response3.getClaim(JwtClaimName.ZONEINFO));
+        assertNotNull(response3.getClaim(JwtClaimName.LOCALE));
+        assertNotNull(response3.getClaim(JwtClaimName.ADDRESS));
+    }
+
+    @Parameters({"userId", "userSecret", "redirectUri", "redirectUris", "clientJwksUri",
+            "ES512_keyId", "dnName", "keyStoreFile", "keyStoreSecret", "sectorIdentifierUri"})
+    @Test
+    public void requestParameterMethodES512(
+            final String userId, final String userSecret, final String redirectUri, final String redirectUris,
+            final String jwksUri, final String keyId, final String dnName, final String keyStoreFile,
+            final String keyStoreSecret, final String sectorIdentifierUri) throws Exception {
+        showTitle("requestParameterMethodES512");
+
+        List<ResponseType> responseTypes = Arrays.asList(ResponseType.TOKEN, ResponseType.ID_TOKEN);
+
+        // 1. Dynamic Client Registration
+        RegisterRequest registerRequest = new RegisterRequest(ApplicationType.WEB, "oxAuth test app",
+                StringUtils.spaceSeparatedToList(redirectUris));
+        registerRequest.setResponseTypes(responseTypes);
+        registerRequest.setJwksUri(jwksUri);
+        registerRequest.setRequestObjectSigningAlg(SignatureAlgorithm.ES512);
+        registerRequest.addCustomAttribute("oxAuthTrustedClient", "true");
+        registerRequest.setSectorIdentifierUri(sectorIdentifierUri);
+
+        RegisterClient registerClient = new RegisterClient(registrationEndpoint);
+        registerClient.setRequest(registerRequest);
+        RegisterResponse response = registerClient.exec();
+
+        showClient(registerClient);
+        assertEquals(response.getStatus(), 200, "Unexpected response code: " + response.getEntity());
+        assertNotNull(response.getClientId());
+        assertNotNull(response.getClientSecret());
+        assertNotNull(response.getRegistrationAccessToken());
+        assertNotNull(response.getClientSecretExpiresAt());
+
+        String clientId = response.getClientId();
+
+        // 2. Request authorization
+        OxAuthCryptoProvider cryptoProvider = new OxAuthCryptoProvider(keyStoreFile, keyStoreSecret, dnName);
+
+        List<String> scopes = Arrays.asList("openid", "profile", "address", "email");
+        String nonce = UUID.randomUUID().toString();
+        String state = UUID.randomUUID().toString();
+
+        AuthorizationRequest request = new AuthorizationRequest(responseTypes, clientId, scopes, redirectUri, nonce);
+        request.setState(state);
+        request.setAuthUsername(userId);
+        request.setAuthPassword(userSecret);
+        request.getPrompts().add(Prompt.NONE);
+
+        JwtAuthorizationRequest jwtAuthorizationRequest = new JwtAuthorizationRequest(request, SignatureAlgorithm.ES512, cryptoProvider);
+        jwtAuthorizationRequest.setKeyId(keyId);
+        jwtAuthorizationRequest.addUserInfoClaim(new Claim(JwtClaimName.NAME, ClaimValue.createNull()));
+        jwtAuthorizationRequest.addUserInfoClaim(new Claim(JwtClaimName.NICKNAME, ClaimValue.createEssential(false)));
+        jwtAuthorizationRequest.addUserInfoClaim(new Claim(JwtClaimName.EMAIL, ClaimValue.createNull()));
+        jwtAuthorizationRequest.addUserInfoClaim(new Claim(JwtClaimName.EMAIL_VERIFIED, ClaimValue.createNull()));
+        jwtAuthorizationRequest.addUserInfoClaim(new Claim(JwtClaimName.PICTURE, ClaimValue.createEssential(false)));
+        jwtAuthorizationRequest.addIdTokenClaim(new Claim(JwtClaimName.AUTHENTICATION_TIME, ClaimValue.createNull()));
+        jwtAuthorizationRequest.addIdTokenClaim(new Claim(JwtClaimName.AUTHENTICATION_CONTEXT_CLASS_REFERENCE, ClaimValue.createValueList(new String[]{ACR_VALUE})));
+        jwtAuthorizationRequest.getIdTokenMember().setMaxAge(86400);
+        String authJwt = jwtAuthorizationRequest.getEncodedJwt();
+        request.setRequest(authJwt);
+
+        AuthorizeClient authorizeClient = new AuthorizeClient(authorizationEndpoint);
+        authorizeClient.setRequest(request);
+        AuthorizationResponse response1 = authorizeClient.exec();
+
+        showClient(authorizeClient);
+        assertEquals(response1.getStatus(), 302, "Unexpected response code: " + response1.getStatus());
+        assertNotNull(response1.getLocation(), "The location is null");
+        assertNotNull(response1.getAccessToken(), "The accessToken is null");
+        assertNotNull(response1.getTokenType(), "The tokenType is null");
+        assertNotNull(response1.getIdToken(), "The idToken is null");
+        assertNotNull(response1.getState(), "The state is null");
+
+        String accessToken = response1.getAccessToken();
+
+        // 3. Request user info
+        UserInfoClient userInfoClient = new UserInfoClient(userInfoEndpoint);
+        UserInfoResponse response3 = userInfoClient.execUserInfo(accessToken);
+
+        showClient(userInfoClient);
+        assertEquals(response3.getStatus(), 200, "Unexpected response code: " + response3.getStatus());
+        assertNotNull(response3.getClaim(JwtClaimName.SUBJECT_IDENTIFIER));
+        assertNotNull(response3.getClaim(JwtClaimName.NAME));
+        assertNotNull(response3.getClaim(JwtClaimName.GIVEN_NAME));
+        assertNotNull(response3.getClaim(JwtClaimName.FAMILY_NAME));
+        assertNotNull(response3.getClaim(JwtClaimName.EMAIL));
+        assertNotNull(response3.getClaim(JwtClaimName.ZONEINFO));
+        assertNotNull(response3.getClaim(JwtClaimName.LOCALE));
+    }
+
+    @Parameters({"userId", "userSecret", "redirectUri", "redirectUris", "clientJwksUri",
+            "PS256_keyId", "dnName", "keyStoreFile", "keyStoreSecret", "sectorIdentifierUri"})
+    @Test
+    public void requestParameterMethodPS256(
+            final String userId, final String userSecret, final String redirectUri, final String redirectUris,
+            final String jwksUri, final String keyId, final String dnName, final String keyStoreFile,
+            final String keyStoreSecret, final String sectorIdentifierUri) throws Exception {
+        showTitle("requestParameterMethodPS256");
+
+        List<ResponseType> responseTypes = Arrays.asList(ResponseType.TOKEN, ResponseType.ID_TOKEN);
+
+        // 1. Dynamic Client Registration
+        RegisterRequest registerRequest = new RegisterRequest(ApplicationType.WEB, "oxAuth test app",
+                StringUtils.spaceSeparatedToList(redirectUris));
+        registerRequest.setResponseTypes(responseTypes);
+        registerRequest.setJwksUri(jwksUri);
+        registerRequest.setRequestObjectSigningAlg(SignatureAlgorithm.PS256);
+        registerRequest.addCustomAttribute("oxAuthTrustedClient", "true");
+        registerRequest.setSectorIdentifierUri(sectorIdentifierUri);
+
+        RegisterClient registerClient = new RegisterClient(registrationEndpoint);
+        registerClient.setRequest(registerRequest);
+        RegisterResponse response = registerClient.exec();
+
+        showClient(registerClient);
+        assertEquals(response.getStatus(), 200, "Unexpected response code: " + response.getEntity());
+        assertNotNull(response.getClientId());
+        assertNotNull(response.getClientSecret());
+        assertNotNull(response.getRegistrationAccessToken());
+        assertNotNull(response.getClientSecretExpiresAt());
+
+        String clientId = response.getClientId();
+
+        // 2. Request authorization
+        OxAuthCryptoProvider cryptoProvider = new OxAuthCryptoProvider(keyStoreFile, keyStoreSecret, dnName);
+
+        List<String> scopes = Arrays.asList("openid", "profile", "address", "email");
+        String nonce = UUID.randomUUID().toString();
+        String state = UUID.randomUUID().toString();
+
+        AuthorizationRequest request = new AuthorizationRequest(responseTypes, clientId, scopes, redirectUri, nonce);
+        request.setState(state);
+        request.setAuthUsername(userId);
+        request.setAuthPassword(userSecret);
+        request.getPrompts().add(Prompt.NONE);
+
+        JwtAuthorizationRequest jwtAuthorizationRequest = new JwtAuthorizationRequest(request, SignatureAlgorithm.PS256, cryptoProvider);
+        jwtAuthorizationRequest.setKeyId(keyId);
+        jwtAuthorizationRequest.addUserInfoClaim(new Claim(JwtClaimName.NAME, ClaimValue.createNull()));
+        jwtAuthorizationRequest.addUserInfoClaim(new Claim(JwtClaimName.NICKNAME, ClaimValue.createEssential(false)));
+        jwtAuthorizationRequest.addUserInfoClaim(new Claim(JwtClaimName.EMAIL, ClaimValue.createNull()));
+        jwtAuthorizationRequest.addUserInfoClaim(new Claim(JwtClaimName.EMAIL_VERIFIED, ClaimValue.createNull()));
+        jwtAuthorizationRequest.addUserInfoClaim(new Claim(JwtClaimName.PICTURE, ClaimValue.createEssential(false)));
+        jwtAuthorizationRequest.addIdTokenClaim(new Claim(JwtClaimName.AUTHENTICATION_TIME, ClaimValue.createNull()));
+        jwtAuthorizationRequest.addIdTokenClaim(new Claim(JwtClaimName.AUTHENTICATION_CONTEXT_CLASS_REFERENCE, ClaimValue.createValueList(new String[]{ACR_VALUE})));
+        jwtAuthorizationRequest.getIdTokenMember().setMaxAge(86400);
+        String authJwt = jwtAuthorizationRequest.getEncodedJwt();
+        request.setRequest(authJwt);
+
+        AuthorizeClient authorizeClient = new AuthorizeClient(authorizationEndpoint);
+        authorizeClient.setRequest(request);
+        AuthorizationResponse response1 = authorizeClient.exec();
+
+        showClient(authorizeClient);
+        assertEquals(response1.getStatus(), 302, "Unexpected response code: " + response1.getStatus());
+        assertNotNull(response1.getLocation(), "The location is null");
+        assertNotNull(response1.getAccessToken(), "The accessToken is null");
+        assertNotNull(response1.getTokenType(), "The tokenType is null");
+        assertNotNull(response1.getIdToken(), "The idToken is null");
+        assertNotNull(response1.getState(), "The state is null");
+
+        String accessToken = response1.getAccessToken();
+
+        // 3. Request user info
+        UserInfoClient userInfoClient = new UserInfoClient(userInfoEndpoint);
+        UserInfoResponse response3 = userInfoClient.execUserInfo(accessToken);
+
+        showClient(userInfoClient);
+        assertEquals(response3.getStatus(), 200, "Unexpected response code: " + response3.getStatus());
+        assertNotNull(response3.getClaim(JwtClaimName.SUBJECT_IDENTIFIER));
+        assertNotNull(response3.getClaim(JwtClaimName.NAME));
+        assertNotNull(response3.getClaim(JwtClaimName.GIVEN_NAME));
+        assertNotNull(response3.getClaim(JwtClaimName.FAMILY_NAME));
+        assertNotNull(response3.getClaim(JwtClaimName.EMAIL));
+        assertNotNull(response3.getClaim(JwtClaimName.ZONEINFO));
+        assertNotNull(response3.getClaim(JwtClaimName.LOCALE));
+    }
+
+    @Parameters({"userId", "userSecret", "redirectUri", "redirectUris", "clientJwksUri",
+            "PS384_keyId", "dnName", "keyStoreFile", "keyStoreSecret", "sectorIdentifierUri"})
+    @Test
+    public void requestParameterMethodPS384(
+            final String userId, final String userSecret, final String redirectUri, final String redirectUris,
+            final String jwksUri, final String keyId, final String dnName, final String keyStoreFile,
+            final String keyStoreSecret, final String sectorIdentifierUri) throws Exception {
+        showTitle("requestParameterMethodPS384");
+
+        List<ResponseType> responseTypes = Arrays.asList(ResponseType.TOKEN, ResponseType.ID_TOKEN);
+
+        // 1. Dynamic Client Registration
+        RegisterRequest registerRequest = new RegisterRequest(ApplicationType.WEB, "oxAuth test app",
+                StringUtils.spaceSeparatedToList(redirectUris));
+        registerRequest.setResponseTypes(responseTypes);
+        registerRequest.setJwksUri(jwksUri);
+        registerRequest.setRequestObjectSigningAlg(SignatureAlgorithm.PS384);
+        registerRequest.addCustomAttribute("oxAuthTrustedClient", "true");
+        registerRequest.setSectorIdentifierUri(sectorIdentifierUri);
+
+        RegisterClient registerClient = new RegisterClient(registrationEndpoint);
+        registerClient.setRequest(registerRequest);
+        RegisterResponse response = registerClient.exec();
+
+        showClient(registerClient);
+        assertEquals(response.getStatus(), 200, "Unexpected response code: " + response.getEntity());
+        assertNotNull(response.getClientId());
+        assertNotNull(response.getClientSecret());
+        assertNotNull(response.getRegistrationAccessToken());
+        assertNotNull(response.getClientSecretExpiresAt());
+
+        String clientId = response.getClientId();
+
+        // 2. Request authorization
+        OxAuthCryptoProvider cryptoProvider = new OxAuthCryptoProvider(keyStoreFile, keyStoreSecret, dnName);
+
+        List<String> scopes = Arrays.asList("openid", "profile", "address", "email");
+        String nonce = UUID.randomUUID().toString();
+        String state = UUID.randomUUID().toString();
+
+        AuthorizationRequest request = new AuthorizationRequest(responseTypes, clientId, scopes, redirectUri, nonce);
+        request.setState(state);
+        request.setAuthUsername(userId);
+        request.setAuthPassword(userSecret);
+        request.getPrompts().add(Prompt.NONE);
+
+        JwtAuthorizationRequest jwtAuthorizationRequest = new JwtAuthorizationRequest(request, SignatureAlgorithm.PS384, cryptoProvider);
+        jwtAuthorizationRequest.setKeyId(keyId);
+        jwtAuthorizationRequest.addUserInfoClaim(new Claim(JwtClaimName.NAME, ClaimValue.createNull()));
+        jwtAuthorizationRequest.addUserInfoClaim(new Claim(JwtClaimName.NICKNAME, ClaimValue.createEssential(false)));
+        jwtAuthorizationRequest.addUserInfoClaim(new Claim(JwtClaimName.EMAIL, ClaimValue.createNull()));
+        jwtAuthorizationRequest.addUserInfoClaim(new Claim(JwtClaimName.EMAIL_VERIFIED, ClaimValue.createNull()));
+        jwtAuthorizationRequest.addUserInfoClaim(new Claim(JwtClaimName.PICTURE, ClaimValue.createEssential(false)));
+        jwtAuthorizationRequest.addIdTokenClaim(new Claim(JwtClaimName.AUTHENTICATION_TIME, ClaimValue.createNull()));
+        jwtAuthorizationRequest.addIdTokenClaim(new Claim(JwtClaimName.AUTHENTICATION_CONTEXT_CLASS_REFERENCE, ClaimValue.createValueList(new String[]{ACR_VALUE})));
+        jwtAuthorizationRequest.getIdTokenMember().setMaxAge(86400);
+        String authJwt = jwtAuthorizationRequest.getEncodedJwt();
+        request.setRequest(authJwt);
+
+        AuthorizeClient authorizeClient = new AuthorizeClient(authorizationEndpoint);
+        authorizeClient.setRequest(request);
+        AuthorizationResponse response1 = authorizeClient.exec();
+
+        showClient(authorizeClient);
+        assertEquals(response1.getStatus(), 302, "Unexpected response code: " + response1.getStatus());
+        assertNotNull(response1.getLocation(), "The location is null");
+        assertNotNull(response1.getAccessToken(), "The accessToken is null");
+        assertNotNull(response1.getTokenType(), "The tokenType is null");
+        assertNotNull(response1.getIdToken(), "The idToken is null");
+        assertNotNull(response1.getState(), "The state is null");
+
+        String accessToken = response1.getAccessToken();
+
+        // 3. Request user info
+        UserInfoClient userInfoClient = new UserInfoClient(userInfoEndpoint);
+        UserInfoResponse response3 = userInfoClient.execUserInfo(accessToken);
+
+        showClient(userInfoClient);
+        assertEquals(response3.getStatus(), 200, "Unexpected response code: " + response3.getStatus());
+        assertNotNull(response3.getClaim(JwtClaimName.SUBJECT_IDENTIFIER));
+        assertNotNull(response3.getClaim(JwtClaimName.NAME));
+        assertNotNull(response3.getClaim(JwtClaimName.GIVEN_NAME));
+        assertNotNull(response3.getClaim(JwtClaimName.FAMILY_NAME));
+        assertNotNull(response3.getClaim(JwtClaimName.EMAIL));
+        assertNotNull(response3.getClaim(JwtClaimName.ZONEINFO));
+        assertNotNull(response3.getClaim(JwtClaimName.LOCALE));
+    }
+
+    @Parameters({"userId", "userSecret", "redirectUri", "redirectUris", "clientJwksUri",
+            "PS512_keyId", "dnName", "keyStoreFile", "keyStoreSecret", "sectorIdentifierUri"})
+    @Test
+    public void requestParameterMethodPS512(
+            final String userId, final String userSecret, final String redirectUri, final String redirectUris,
+            final String jwksUri, final String keyId, final String dnName, final String keyStoreFile,
+            final String keyStoreSecret, final String sectorIdentifierUri) throws Exception {
+        showTitle("requestParameterMethodPS512");
+
+        List<ResponseType> responseTypes = Arrays.asList(ResponseType.TOKEN, ResponseType.ID_TOKEN);
+
+        // 1. Dynamic Client Registration
+        RegisterRequest registerRequest = new RegisterRequest(ApplicationType.WEB, "oxAuth test app",
+                StringUtils.spaceSeparatedToList(redirectUris));
+        registerRequest.setResponseTypes(responseTypes);
+        registerRequest.setJwksUri(jwksUri);
+        registerRequest.setRequestObjectSigningAlg(SignatureAlgorithm.PS512);
+        registerRequest.addCustomAttribute("oxAuthTrustedClient", "true");
+        registerRequest.setSectorIdentifierUri(sectorIdentifierUri);
+
+        RegisterClient registerClient = new RegisterClient(registrationEndpoint);
+        registerClient.setRequest(registerRequest);
+        RegisterResponse response = registerClient.exec();
+
+        showClient(registerClient);
+        assertEquals(response.getStatus(), 200, "Unexpected response code: " + response.getEntity());
+        assertNotNull(response.getClientId());
+        assertNotNull(response.getClientSecret());
+        assertNotNull(response.getRegistrationAccessToken());
+        assertNotNull(response.getClientSecretExpiresAt());
+
+        String clientId = response.getClientId();
+
+        // 2. Request authorization
+        OxAuthCryptoProvider cryptoProvider = new OxAuthCryptoProvider(keyStoreFile, keyStoreSecret, dnName);
+
+        List<String> scopes = Arrays.asList("openid", "profile", "address", "email");
+        String nonce = UUID.randomUUID().toString();
+        String state = UUID.randomUUID().toString();
+
+        AuthorizationRequest request = new AuthorizationRequest(responseTypes, clientId, scopes, redirectUri, nonce);
+        request.setState(state);
+        request.setAuthUsername(userId);
+        request.setAuthPassword(userSecret);
+        request.getPrompts().add(Prompt.NONE);
+
+        JwtAuthorizationRequest jwtAuthorizationRequest = new JwtAuthorizationRequest(request, SignatureAlgorithm.PS512, cryptoProvider);
+        jwtAuthorizationRequest.setKeyId(keyId);
+        jwtAuthorizationRequest.addUserInfoClaim(new Claim(JwtClaimName.NAME, ClaimValue.createNull()));
+        jwtAuthorizationRequest.addUserInfoClaim(new Claim(JwtClaimName.NICKNAME, ClaimValue.createEssential(false)));
+        jwtAuthorizationRequest.addUserInfoClaim(new Claim(JwtClaimName.EMAIL, ClaimValue.createNull()));
+        jwtAuthorizationRequest.addUserInfoClaim(new Claim(JwtClaimName.EMAIL_VERIFIED, ClaimValue.createNull()));
+        jwtAuthorizationRequest.addUserInfoClaim(new Claim(JwtClaimName.PICTURE, ClaimValue.createEssential(false)));
+        jwtAuthorizationRequest.addIdTokenClaim(new Claim(JwtClaimName.AUTHENTICATION_TIME, ClaimValue.createNull()));
+        jwtAuthorizationRequest.addIdTokenClaim(new Claim(JwtClaimName.AUTHENTICATION_CONTEXT_CLASS_REFERENCE, ClaimValue.createValueList(new String[]{ACR_VALUE})));
+        jwtAuthorizationRequest.getIdTokenMember().setMaxAge(86400);
+        String authJwt = jwtAuthorizationRequest.getEncodedJwt();
+        request.setRequest(authJwt);
+
+        AuthorizeClient authorizeClient = new AuthorizeClient(authorizationEndpoint);
+        authorizeClient.setRequest(request);
+        AuthorizationResponse response1 = authorizeClient.exec();
+
+        showClient(authorizeClient);
+        assertEquals(response1.getStatus(), 302, "Unexpected response code: " + response1.getStatus());
+        assertNotNull(response1.getLocation(), "The location is null");
+        assertNotNull(response1.getAccessToken(), "The accessToken is null");
+        assertNotNull(response1.getTokenType(), "The tokenType is null");
+        assertNotNull(response1.getIdToken(), "The idToken is null");
+        assertNotNull(response1.getState(), "The state is null");
+
+        String accessToken = response1.getAccessToken();
+
+        // 3. Request user info
+        UserInfoClient userInfoClient = new UserInfoClient(userInfoEndpoint);
+        UserInfoResponse response3 = userInfoClient.execUserInfo(accessToken);
+
+        showClient(userInfoClient);
+        assertEquals(response3.getStatus(), 200, "Unexpected response code: " + response3.getStatus());
+        assertNotNull(response3.getClaim(JwtClaimName.SUBJECT_IDENTIFIER));
+        assertNotNull(response3.getClaim(JwtClaimName.NAME));
+        assertNotNull(response3.getClaim(JwtClaimName.GIVEN_NAME));
+        assertNotNull(response3.getClaim(JwtClaimName.FAMILY_NAME));
+        assertNotNull(response3.getClaim(JwtClaimName.EMAIL));
+        assertNotNull(response3.getClaim(JwtClaimName.ZONEINFO));
+        assertNotNull(response3.getClaim(JwtClaimName.LOCALE));
+    }
+
+    @Parameters({"userId", "userSecret", "redirectUri", "redirectUris", "clientJwksUri",
+            "RS256_keyId", "dnName", "keyStoreFile", "keyStoreSecret", "sectorIdentifierUri"})
+    @Test
+    public void requestParameterMethodRS256X509Cert(
+            final String userId, final String userSecret, final String redirectUri, final String redirectUris,
+            final String jwksUri, final String keyId, final String dnName, final String keyStoreFile,
+            final String keyStoreSecret, final String sectorIdentifierUri) throws Exception {
+        showTitle("requestParameterMethodRS256X509Cert");
+
+        List<ResponseType> responseTypes = Arrays.asList(ResponseType.TOKEN, ResponseType.ID_TOKEN);
+
+        // 1. Dynamic Client Registration
+        RegisterRequest registerRequest = new RegisterRequest(ApplicationType.WEB, "oxAuth test app",
+                StringUtils.spaceSeparatedToList(redirectUris));
+        registerRequest.setResponseTypes(responseTypes);
+        registerRequest.setJwksUri(jwksUri);
+        registerRequest.setRequestObjectSigningAlg(SignatureAlgorithm.RS256);
+        registerRequest.addCustomAttribute("oxAuthTrustedClient", "true");
+        registerRequest.setSectorIdentifierUri(sectorIdentifierUri);
+
+        RegisterClient registerClient = new RegisterClient(registrationEndpoint);
+        registerClient.setRequest(registerRequest);
+        RegisterResponse response = registerClient.exec();
+
+        showClient(registerClient);
+        assertEquals(response.getStatus(), 200, "Unexpected response code: " + response.getEntity());
+        assertNotNull(response.getClientId());
+        assertNotNull(response.getClientSecret());
+        assertNotNull(response.getRegistrationAccessToken());
+        assertNotNull(response.getClientSecretExpiresAt());
+
+        String clientId = response.getClientId();
+
+        // 2. Request authorization
+        OxAuthCryptoProvider cryptoProvider = new OxAuthCryptoProvider(keyStoreFile, keyStoreSecret, dnName);
+
+        List<String> scopes = Arrays.asList("openid", "profile", "address", "email");
+        String nonce = UUID.randomUUID().toString();
+        String state = UUID.randomUUID().toString();
+
+        AuthorizationRequest request = new AuthorizationRequest(responseTypes, clientId, scopes, redirectUri, nonce);
+        request.setState(state);
+        request.setAuthUsername(userId);
+        request.setAuthPassword(userSecret);
+        request.getPrompts().add(Prompt.NONE);
+
+        JwtAuthorizationRequest jwtAuthorizationRequest = new JwtAuthorizationRequest(request, SignatureAlgorithm.RS256, cryptoProvider);
+        jwtAuthorizationRequest.setKeyId(keyId);
+        jwtAuthorizationRequest.addUserInfoClaim(new Claim(JwtClaimName.NAME, ClaimValue.createNull()));
+        jwtAuthorizationRequest.addUserInfoClaim(new Claim(JwtClaimName.NICKNAME, ClaimValue.createEssential(false)));
+        jwtAuthorizationRequest.addUserInfoClaim(new Claim(JwtClaimName.EMAIL, ClaimValue.createNull()));
+        jwtAuthorizationRequest.addUserInfoClaim(new Claim(JwtClaimName.EMAIL_VERIFIED, ClaimValue.createNull()));
+        jwtAuthorizationRequest.addUserInfoClaim(new Claim(JwtClaimName.PICTURE, ClaimValue.createEssential(false)));
+        jwtAuthorizationRequest.addIdTokenClaim(new Claim(JwtClaimName.AUTHENTICATION_TIME, ClaimValue.createNull()));
+        jwtAuthorizationRequest.addIdTokenClaim(new Claim(JwtClaimName.AUTHENTICATION_CONTEXT_CLASS_REFERENCE, ClaimValue.createValueList(new String[]{ACR_VALUE})));
+        jwtAuthorizationRequest.getIdTokenMember().setMaxAge(86400);
+        String authJwt = jwtAuthorizationRequest.getEncodedJwt();
+        request.setRequest(authJwt);
+
+        AuthorizeClient authorizeClient = new AuthorizeClient(authorizationEndpoint);
+        authorizeClient.setRequest(request);
+        AuthorizationResponse response1 = authorizeClient.exec();
+
+        showClient(authorizeClient);
+        assertEquals(response1.getStatus(), 302, "Unexpected response code: " + response1.getStatus());
+        assertNotNull(response1.getLocation(), "The location is null");
+        assertNotNull(response1.getAccessToken(), "The accessToken is null");
+        assertNotNull(response1.getTokenType(), "The tokenType is null");
+        assertNotNull(response1.getIdToken(), "The idToken is null");
+        assertNotNull(response1.getState(), "The state is null");
+
+        String accessToken = response1.getAccessToken();
+
+        // 3. Request user info
+        UserInfoClient userInfoClient = new UserInfoClient(userInfoEndpoint);
+        UserInfoResponse response3 = userInfoClient.execUserInfo(accessToken);
+
+        showClient(userInfoClient);
+        assertEquals(response3.getStatus(), 200, "Unexpected response code: " + response3.getStatus());
+        assertNotNull(response3.getClaim(JwtClaimName.SUBJECT_IDENTIFIER));
+        assertNotNull(response3.getClaim(JwtClaimName.NAME));
+        assertNotNull(response3.getClaim(JwtClaimName.GIVEN_NAME));
+        assertNotNull(response3.getClaim(JwtClaimName.FAMILY_NAME));
+        assertNotNull(response3.getClaim(JwtClaimName.EMAIL));
+        assertNotNull(response3.getClaim(JwtClaimName.ZONEINFO));
+        assertNotNull(response3.getClaim(JwtClaimName.LOCALE));
+    }
+
+    @Parameters({"userId", "userSecret", "redirectUri", "redirectUris", "clientJwksUri",
+            "RS384_keyId", "dnName", "keyStoreFile", "keyStoreSecret", "sectorIdentifierUri"})
+    @Test
+    public void requestParameterMethodRS384X509Cert(
+            final String userId, final String userSecret, final String redirectUri, final String redirectUris,
+            final String jwksUri, final String keyId, final String dnName, final String keyStoreFile,
+            final String keyStoreSecret, final String sectorIdentifierUri) throws Exception {
+        showTitle("requestParameterMethodRS384X509Cert");
+
+        List<ResponseType> responseTypes = Arrays.asList(ResponseType.TOKEN, ResponseType.ID_TOKEN);
+
+        // 1. Dynamic Client Registration
+        RegisterRequest registerRequest = new RegisterRequest(ApplicationType.WEB, "oxAuth test app",
+                StringUtils.spaceSeparatedToList(redirectUris));
+        registerRequest.setResponseTypes(responseTypes);
+        registerRequest.setJwksUri(jwksUri);
+        registerRequest.setRequestObjectSigningAlg(SignatureAlgorithm.RS384);
+        registerRequest.addCustomAttribute("oxAuthTrustedClient", "true");
+        registerRequest.setSectorIdentifierUri(sectorIdentifierUri);
+
+        RegisterClient registerClient = new RegisterClient(registrationEndpoint);
+        registerClient.setRequest(registerRequest);
+        RegisterResponse response = registerClient.exec();
+
+        showClient(registerClient);
+        assertEquals(response.getStatus(), 200, "Unexpected response code: " + response.getEntity());
+        assertNotNull(response.getClientId());
+        assertNotNull(response.getClientSecret());
+        assertNotNull(response.getRegistrationAccessToken());
+        assertNotNull(response.getClientSecretExpiresAt());
+
+        String clientId = response.getClientId();
+
+        // 2. Request authorization
+        OxAuthCryptoProvider cryptoProvider = new OxAuthCryptoProvider(keyStoreFile, keyStoreSecret, dnName);
+
+        List<String> scopes = Arrays.asList("openid", "profile", "address", "email");
+        String nonce = UUID.randomUUID().toString();
+        String state = UUID.randomUUID().toString();
+
+        AuthorizationRequest request = new AuthorizationRequest(responseTypes, clientId, scopes, redirectUri, nonce);
+        request.setState(state);
+        request.setAuthUsername(userId);
+        request.setAuthPassword(userSecret);
+        request.getPrompts().add(Prompt.NONE);
+
+        JwtAuthorizationRequest jwtAuthorizationRequest = new JwtAuthorizationRequest(request, SignatureAlgorithm.RS384, cryptoProvider);
+        jwtAuthorizationRequest.setKeyId(keyId);
+        jwtAuthorizationRequest.addUserInfoClaim(new Claim(JwtClaimName.NAME, ClaimValue.createNull()));
+        jwtAuthorizationRequest.addUserInfoClaim(new Claim(JwtClaimName.NICKNAME, ClaimValue.createEssential(false)));
+        jwtAuthorizationRequest.addUserInfoClaim(new Claim(JwtClaimName.EMAIL, ClaimValue.createNull()));
+        jwtAuthorizationRequest.addUserInfoClaim(new Claim(JwtClaimName.EMAIL_VERIFIED, ClaimValue.createNull()));
+        jwtAuthorizationRequest.addUserInfoClaim(new Claim(JwtClaimName.PICTURE, ClaimValue.createEssential(false)));
+        jwtAuthorizationRequest.addIdTokenClaim(new Claim(JwtClaimName.AUTHENTICATION_TIME, ClaimValue.createNull()));
+        jwtAuthorizationRequest.addIdTokenClaim(new Claim(JwtClaimName.AUTHENTICATION_CONTEXT_CLASS_REFERENCE, ClaimValue.createValueList(new String[]{ACR_VALUE})));
+        jwtAuthorizationRequest.getIdTokenMember().setMaxAge(86400);
+        String authJwt = jwtAuthorizationRequest.getEncodedJwt();
+        request.setRequest(authJwt);
+
+        AuthorizeClient authorizeClient = new AuthorizeClient(authorizationEndpoint);
+        authorizeClient.setRequest(request);
+        AuthorizationResponse response1 = authorizeClient.exec();
+
+        showClient(authorizeClient);
+        assertEquals(response1.getStatus(), 302, "Unexpected response code: " + response1.getStatus());
+        assertNotNull(response1.getLocation(), "The location is null");
+        assertNotNull(response1.getAccessToken(), "The accessToken is null");
+        assertNotNull(response1.getTokenType(), "The tokenType is null");
+        assertNotNull(response1.getIdToken(), "The idToken is null");
+        assertNotNull(response1.getState(), "The state is null");
+
+        String accessToken = response1.getAccessToken();
+
+        // 3. Request user info
+        UserInfoClient userInfoClient = new UserInfoClient(userInfoEndpoint);
+        UserInfoResponse response3 = userInfoClient.execUserInfo(accessToken);
+
+        showClient(userInfoClient);
+        assertEquals(response3.getStatus(), 200, "Unexpected response code: " + response3.getStatus());
+        assertNotNull(response3.getClaim(JwtClaimName.SUBJECT_IDENTIFIER));
+        assertNotNull(response3.getClaim(JwtClaimName.NAME));
+        assertNotNull(response3.getClaim(JwtClaimName.GIVEN_NAME));
+        assertNotNull(response3.getClaim(JwtClaimName.FAMILY_NAME));
+        assertNotNull(response3.getClaim(JwtClaimName.EMAIL));
+        assertNotNull(response3.getClaim(JwtClaimName.ZONEINFO));
+        assertNotNull(response3.getClaim(JwtClaimName.LOCALE));
+    }
+
+    @Parameters({"userId", "userSecret", "redirectUri", "redirectUris", "clientJwksUri",
+            "RS512_keyId", "dnName", "keyStoreFile", "keyStoreSecret", "sectorIdentifierUri"})
+    @Test
+    public void requestParameterMethodRS512X509Cert(
+            final String userId, final String userSecret, final String redirectUri, final String redirectUris,
+            final String jwksUri, final String keyId, final String dnName, final String keyStoreFile,
+            final String keyStoreSecret, final String sectorIdentifierUri) throws Exception {
+        showTitle("requestParameterMethodRS512X509Cert");
+
+        List<ResponseType> responseTypes = Arrays.asList(ResponseType.TOKEN, ResponseType.ID_TOKEN);
+
+        // 1. Dynamic Client Registration
+        RegisterRequest registerRequest = new RegisterRequest(ApplicationType.WEB, "oxAuth test app",
+                StringUtils.spaceSeparatedToList(redirectUris));
+        registerRequest.setResponseTypes(responseTypes);
+        registerRequest.setJwksUri(jwksUri);
+        registerRequest.setRequestObjectSigningAlg(SignatureAlgorithm.RS512);
+        registerRequest.addCustomAttribute("oxAuthTrustedClient", "true");
+        registerRequest.setSectorIdentifierUri(sectorIdentifierUri);
+
+        RegisterClient registerClient = new RegisterClient(registrationEndpoint);
+        registerClient.setRequest(registerRequest);
+        RegisterResponse response = registerClient.exec();
+
+        showClient(registerClient);
+        assertEquals(response.getStatus(), 200, "Unexpected response code: " + response.getEntity());
+        assertNotNull(response.getClientId());
+        assertNotNull(response.getClientSecret());
+        assertNotNull(response.getRegistrationAccessToken());
+        assertNotNull(response.getClientSecretExpiresAt());
+
+        String clientId = response.getClientId();
+
+        // 2. Request authorization
+        OxAuthCryptoProvider cryptoProvider = new OxAuthCryptoProvider(keyStoreFile, keyStoreSecret, dnName);
+
+        List<String> scopes = Arrays.asList("openid", "profile", "address", "email");
+        String nonce = UUID.randomUUID().toString();
+        String state = UUID.randomUUID().toString();
+
+        AuthorizationRequest request = new AuthorizationRequest(responseTypes, clientId, scopes, redirectUri, nonce);
+        request.setState(state);
+        request.setAuthUsername(userId);
+        request.setAuthPassword(userSecret);
+        request.getPrompts().add(Prompt.NONE);
+
+        JwtAuthorizationRequest jwtAuthorizationRequest = new JwtAuthorizationRequest(request, SignatureAlgorithm.RS512, cryptoProvider);
+        jwtAuthorizationRequest.setKeyId(keyId);
+        jwtAuthorizationRequest.addUserInfoClaim(new Claim(JwtClaimName.NAME, ClaimValue.createNull()));
+        jwtAuthorizationRequest.addUserInfoClaim(new Claim(JwtClaimName.NICKNAME, ClaimValue.createEssential(false)));
+        jwtAuthorizationRequest.addUserInfoClaim(new Claim(JwtClaimName.EMAIL, ClaimValue.createNull()));
+        jwtAuthorizationRequest.addUserInfoClaim(new Claim(JwtClaimName.EMAIL_VERIFIED, ClaimValue.createNull()));
+        jwtAuthorizationRequest.addUserInfoClaim(new Claim(JwtClaimName.PICTURE, ClaimValue.createEssential(false)));
+        jwtAuthorizationRequest.addIdTokenClaim(new Claim(JwtClaimName.AUTHENTICATION_TIME, ClaimValue.createNull()));
+        jwtAuthorizationRequest.addIdTokenClaim(new Claim(JwtClaimName.AUTHENTICATION_CONTEXT_CLASS_REFERENCE, ClaimValue.createValueList(new String[]{ACR_VALUE})));
+        jwtAuthorizationRequest.getIdTokenMember().setMaxAge(86400);
+        String authJwt = jwtAuthorizationRequest.getEncodedJwt();
+        request.setRequest(authJwt);
+
+        AuthorizeClient authorizeClient = new AuthorizeClient(authorizationEndpoint);
+        authorizeClient.setRequest(request);
+        AuthorizationResponse response1 = authorizeClient.exec();
+
+        showClient(authorizeClient);
+        assertEquals(response1.getStatus(), 302, "Unexpected response code: " + response1.getStatus());
+        assertNotNull(response1.getLocation(), "The location is null");
+        assertNotNull(response1.getAccessToken(), "The accessToken is null");
+        assertNotNull(response1.getTokenType(), "The tokenType is null");
+        assertNotNull(response1.getIdToken(), "The idToken is null");
+        assertNotNull(response1.getState(), "The state is null");
+
+        String accessToken = response1.getAccessToken();
+
+        // 3. Request user info
+        UserInfoClient userInfoClient = new UserInfoClient(userInfoEndpoint);
+        UserInfoResponse response3 = userInfoClient.execUserInfo(accessToken);
+
+        showClient(userInfoClient);
+        assertEquals(response3.getStatus(), 200, "Unexpected response code: " + response3.getStatus());
+        assertNotNull(response3.getClaim(JwtClaimName.SUBJECT_IDENTIFIER));
+        assertNotNull(response3.getClaim(JwtClaimName.NAME));
+        assertNotNull(response3.getClaim(JwtClaimName.GIVEN_NAME));
+        assertNotNull(response3.getClaim(JwtClaimName.FAMILY_NAME));
+        assertNotNull(response3.getClaim(JwtClaimName.EMAIL));
+        assertNotNull(response3.getClaim(JwtClaimName.ZONEINFO));
+        assertNotNull(response3.getClaim(JwtClaimName.LOCALE));
+    }
+
+    @Parameters({"userId", "userSecret", "redirectUri", "redirectUris", "clientJwksUri",
+            "ES256_keyId", "dnName", "keyStoreFile", "keyStoreSecret", "sectorIdentifierUri"})
+    @Test
+    public void requestParameterMethodES256X509Cert(
+            final String userId, final String userSecret, final String redirectUri, final String redirectUris,
+            final String jwksUri, final String keyId, final String dnName, final String keyStoreFile,
+            final String keyStoreSecret, final String sectorIdentifierUri) throws Exception {
+        showTitle("requestParameterMethodES256X509Cert");
+
+        List<ResponseType> responseTypes = Arrays.asList(ResponseType.TOKEN, ResponseType.ID_TOKEN);
+
+        // 1. Dynamic Client Registration
+        RegisterRequest registerRequest = new RegisterRequest(ApplicationType.WEB, "oxAuth test app",
+                StringUtils.spaceSeparatedToList(redirectUris));
+        registerRequest.setResponseTypes(responseTypes);
+        registerRequest.setJwksUri(jwksUri);
+        registerRequest.setRequestObjectSigningAlg(SignatureAlgorithm.ES256);
+        registerRequest.addCustomAttribute("oxAuthTrustedClient", "true");
+        registerRequest.setSectorIdentifierUri(sectorIdentifierUri);
+
+        RegisterClient registerClient = new RegisterClient(registrationEndpoint);
+        registerClient.setRequest(registerRequest);
+        RegisterResponse response = registerClient.exec();
+
+        showClient(registerClient);
+        assertEquals(response.getStatus(), 200, "Unexpected response code: " + response.getEntity());
+        assertNotNull(response.getClientId());
+        assertNotNull(response.getClientSecret());
+        assertNotNull(response.getRegistrationAccessToken());
+        assertNotNull(response.getClientSecretExpiresAt());
+
+        String clientId = response.getClientId();
+
+        // 2. Request authorization
+        OxAuthCryptoProvider cryptoProvider = new OxAuthCryptoProvider(keyStoreFile, keyStoreSecret, dnName);
+
+        List<String> scopes = Arrays.asList("openid", "profile", "address", "email");
+        String nonce = UUID.randomUUID().toString();
+        String state = UUID.randomUUID().toString();
+
+        AuthorizationRequest request = new AuthorizationRequest(responseTypes, clientId, scopes, redirectUri, nonce);
+        request.setState(state);
+        request.setAuthUsername(userId);
+        request.setAuthPassword(userSecret);
+        request.getPrompts().add(Prompt.NONE);
+
+        JwtAuthorizationRequest jwtAuthorizationRequest = new JwtAuthorizationRequest(request, SignatureAlgorithm.ES256, cryptoProvider);
+        jwtAuthorizationRequest.setKeyId(keyId);
+        jwtAuthorizationRequest.addUserInfoClaim(new Claim(JwtClaimName.NAME, ClaimValue.createNull()));
+        jwtAuthorizationRequest.addUserInfoClaim(new Claim(JwtClaimName.NICKNAME, ClaimValue.createEssential(false)));
+        jwtAuthorizationRequest.addUserInfoClaim(new Claim(JwtClaimName.EMAIL, ClaimValue.createNull()));
+        jwtAuthorizationRequest.addUserInfoClaim(new Claim(JwtClaimName.EMAIL_VERIFIED, ClaimValue.createNull()));
+        jwtAuthorizationRequest.addUserInfoClaim(new Claim(JwtClaimName.PICTURE, ClaimValue.createEssential(false)));
+        jwtAuthorizationRequest.addIdTokenClaim(new Claim(JwtClaimName.AUTHENTICATION_TIME, ClaimValue.createNull()));
+        jwtAuthorizationRequest.addIdTokenClaim(new Claim(JwtClaimName.AUTHENTICATION_CONTEXT_CLASS_REFERENCE, ClaimValue.createValueList(new String[]{ACR_VALUE})));
+        jwtAuthorizationRequest.getIdTokenMember().setMaxAge(86400);
+        String authJwt = jwtAuthorizationRequest.getEncodedJwt();
+        request.setRequest(authJwt);
+
+        AuthorizeClient authorizeClient = new AuthorizeClient(authorizationEndpoint);
+        authorizeClient.setRequest(request);
+        AuthorizationResponse response1 = authorizeClient.exec();
+
+        showClient(authorizeClient);
+        assertEquals(response1.getStatus(), 302, "Unexpected response code: " + response1.getStatus());
+        assertNotNull(response1.getLocation(), "The location is null");
+        assertNotNull(response1.getAccessToken(), "The accessToken is null");
+        assertNotNull(response1.getTokenType(), "The tokenType is null");
+        assertNotNull(response1.getIdToken(), "The idToken is null");
+        assertNotNull(response1.getState(), "The state is null");
+
+        String accessToken = response1.getAccessToken();
+
+        // 3. Request user info
+        UserInfoClient userInfoClient = new UserInfoClient(userInfoEndpoint);
+        UserInfoResponse response3 = userInfoClient.execUserInfo(accessToken);
+
+        showClient(userInfoClient);
+        assertEquals(response3.getStatus(), 200, "Unexpected response code: " + response3.getStatus());
+        assertNotNull(response3.getClaim(JwtClaimName.SUBJECT_IDENTIFIER));
+        assertNotNull(response3.getClaim(JwtClaimName.NAME));
+        assertNotNull(response3.getClaim(JwtClaimName.GIVEN_NAME));
+        assertNotNull(response3.getClaim(JwtClaimName.FAMILY_NAME));
+        assertNotNull(response3.getClaim(JwtClaimName.EMAIL));
+        assertNotNull(response3.getClaim(JwtClaimName.ZONEINFO));
+        assertNotNull(response3.getClaim(JwtClaimName.LOCALE));
+        assertNotNull(response3.getClaim(JwtClaimName.ADDRESS));
+    }
+
+    @Parameters({"userId", "userSecret", "redirectUri", "redirectUris", "clientJwksUri",
+            "ES384_keyId", "dnName", "keyStoreFile", "keyStoreSecret", "sectorIdentifierUri"})
+    @Test
+    public void requestParameterMethodES384X509Cert(
+            final String userId, final String userSecret, final String redirectUri, final String redirectUris,
+            final String jwksUri, final String keyId, final String dnName, final String keyStoreFile,
+            final String keyStoreSecret, final String sectorIdentifierUri) throws Exception {
+        showTitle("requestParameterMethodES384X509Cert");
+
+        List<ResponseType> responseTypes = Arrays.asList(ResponseType.TOKEN, ResponseType.ID_TOKEN);
+
+        // 1. Dynamic Client Registration
+        RegisterRequest registerRequest = new RegisterRequest(ApplicationType.WEB, "oxAuth test app",
+                StringUtils.spaceSeparatedToList(redirectUris));
+        registerRequest.setResponseTypes(responseTypes);
+        registerRequest.setJwksUri(jwksUri);
+        registerRequest.setRequestObjectSigningAlg(SignatureAlgorithm.ES384);
+        registerRequest.addCustomAttribute("oxAuthTrustedClient", "true");
+        registerRequest.setSectorIdentifierUri(sectorIdentifierUri);
+
+        RegisterClient registerClient = new RegisterClient(registrationEndpoint);
+        registerClient.setRequest(registerRequest);
+        RegisterResponse response = registerClient.exec();
+
+        showClient(registerClient);
+        assertEquals(response.getStatus(), 200, "Unexpected response code: " + response.getEntity());
+        assertNotNull(response.getClientId());
+        assertNotNull(response.getClientSecret());
+        assertNotNull(response.getRegistrationAccessToken());
+        assertNotNull(response.getClientSecretExpiresAt());
+
+        String clientId = response.getClientId();
+
+        // 2. Request authorization
+        OxAuthCryptoProvider cryptoProvider = new OxAuthCryptoProvider(keyStoreFile, keyStoreSecret, dnName);
+
+        List<String> scopes = Arrays.asList("openid", "profile", "address", "email");
+        String nonce = UUID.randomUUID().toString();
+        String state = UUID.randomUUID().toString();
+
+        AuthorizationRequest request = new AuthorizationRequest(responseTypes, clientId, scopes, redirectUri, nonce);
+        request.setState(state);
+        request.setAuthUsername(userId);
+        request.setAuthPassword(userSecret);
+        request.getPrompts().add(Prompt.NONE);
+
+        JwtAuthorizationRequest jwtAuthorizationRequest = new JwtAuthorizationRequest(request, SignatureAlgorithm.ES384, cryptoProvider);
+        jwtAuthorizationRequest.setKeyId(keyId);
+        jwtAuthorizationRequest.addUserInfoClaim(new Claim(JwtClaimName.NAME, ClaimValue.createNull()));
+        jwtAuthorizationRequest.addUserInfoClaim(new Claim(JwtClaimName.NICKNAME, ClaimValue.createEssential(false)));
+        jwtAuthorizationRequest.addUserInfoClaim(new Claim(JwtClaimName.EMAIL, ClaimValue.createNull()));
+        jwtAuthorizationRequest.addUserInfoClaim(new Claim(JwtClaimName.EMAIL_VERIFIED, ClaimValue.createNull()));
+        jwtAuthorizationRequest.addUserInfoClaim(new Claim(JwtClaimName.PICTURE, ClaimValue.createEssential(false)));
+        jwtAuthorizationRequest.addIdTokenClaim(new Claim(JwtClaimName.AUTHENTICATION_TIME, ClaimValue.createNull()));
+        jwtAuthorizationRequest.addIdTokenClaim(new Claim(JwtClaimName.AUTHENTICATION_CONTEXT_CLASS_REFERENCE, ClaimValue.createValueList(new String[]{ACR_VALUE})));
+        jwtAuthorizationRequest.getIdTokenMember().setMaxAge(86400);
+        String authJwt = jwtAuthorizationRequest.getEncodedJwt();
+        request.setRequest(authJwt);
+
+        AuthorizeClient authorizeClient = new AuthorizeClient(authorizationEndpoint);
+        authorizeClient.setRequest(request);
+        AuthorizationResponse response1 = authorizeClient.exec();
+
+        showClient(authorizeClient);
+        assertEquals(response1.getStatus(), 302, "Unexpected response code: " + response1.getStatus());
+        assertNotNull(response1.getLocation(), "The location is null");
+        assertNotNull(response1.getAccessToken(), "The accessToken is null");
+        assertNotNull(response1.getTokenType(), "The tokenType is null");
+        assertNotNull(response1.getIdToken(), "The idToken is null");
+        assertNotNull(response1.getState(), "The state is null");
+
+        String accessToken = response1.getAccessToken();
+
+        // 3. Request user info
+        UserInfoClient userInfoClient = new UserInfoClient(userInfoEndpoint);
+        UserInfoResponse response3 = userInfoClient.execUserInfo(accessToken);
+
+        showClient(userInfoClient);
+        assertEquals(response3.getStatus(), 200, "Unexpected response code: " + response3.getStatus());
+        assertNotNull(response3.getClaim(JwtClaimName.SUBJECT_IDENTIFIER));
+        assertNotNull(response3.getClaim(JwtClaimName.NAME));
+        assertNotNull(response3.getClaim(JwtClaimName.GIVEN_NAME));
+        assertNotNull(response3.getClaim(JwtClaimName.FAMILY_NAME));
+        assertNotNull(response3.getClaim(JwtClaimName.EMAIL));
+        assertNotNull(response3.getClaim(JwtClaimName.ZONEINFO));
+        assertNotNull(response3.getClaim(JwtClaimName.LOCALE));
+        assertNotNull(response3.getClaim(JwtClaimName.ADDRESS));
+    }
+
+    @Parameters({"userId", "userSecret", "redirectUri", "redirectUris", "clientJwksUri",
+            "ES512_keyId", "dnName", "keyStoreFile", "keyStoreSecret", "sectorIdentifierUri"})
+    @Test
+    public void requestParameterMethodES512X509Cert(
+            final String userId, final String userSecret, final String redirectUri, final String redirectUris,
+            final String jwksUri, final String keyId, final String dnName, final String keyStoreFile,
+            final String keyStoreSecret, final String sectorIdentifierUri) throws Exception {
+        showTitle("requestParameterMethodES512X509Cert");
+
+        List<ResponseType> responseTypes = Arrays.asList(ResponseType.TOKEN, ResponseType.ID_TOKEN);
+
+        // 1. Dynamic Client Registration
+        RegisterRequest registerRequest = new RegisterRequest(ApplicationType.WEB, "oxAuth test app",
+                StringUtils.spaceSeparatedToList(redirectUris));
+        registerRequest.setResponseTypes(responseTypes);
+        registerRequest.setJwksUri(jwksUri);
+        registerRequest.setRequestObjectSigningAlg(SignatureAlgorithm.ES512);
+        registerRequest.addCustomAttribute("oxAuthTrustedClient", "true");
+        registerRequest.setSectorIdentifierUri(sectorIdentifierUri);
+
+        RegisterClient registerClient = new RegisterClient(registrationEndpoint);
+        registerClient.setRequest(registerRequest);
+        RegisterResponse response = registerClient.exec();
+
+        showClient(registerClient);
+        assertEquals(response.getStatus(), 200, "Unexpected response code: " + response.getEntity());
+        assertNotNull(response.getClientId());
+        assertNotNull(response.getClientSecret());
+        assertNotNull(response.getRegistrationAccessToken());
+        assertNotNull(response.getClientSecretExpiresAt());
+
+        String clientId = response.getClientId();
+
+        // 2. Request authorization
+        OxAuthCryptoProvider cryptoProvider = new OxAuthCryptoProvider(keyStoreFile, keyStoreSecret, dnName);
+
+        List<String> scopes = Arrays.asList("openid", "profile", "address", "email");
+        String nonce = UUID.randomUUID().toString();
+        String state = UUID.randomUUID().toString();
+
+        AuthorizationRequest request = new AuthorizationRequest(responseTypes, clientId, scopes, redirectUri, nonce);
+        request.setState(state);
+        request.setAuthUsername(userId);
+        request.setAuthPassword(userSecret);
+        request.getPrompts().add(Prompt.NONE);
+
+        JwtAuthorizationRequest jwtAuthorizationRequest = new JwtAuthorizationRequest(request, SignatureAlgorithm.ES512, cryptoProvider);
+        jwtAuthorizationRequest.setKeyId(keyId);
+        jwtAuthorizationRequest.addUserInfoClaim(new Claim(JwtClaimName.NAME, ClaimValue.createNull()));
+        jwtAuthorizationRequest.addUserInfoClaim(new Claim(JwtClaimName.NICKNAME, ClaimValue.createEssential(false)));
+        jwtAuthorizationRequest.addUserInfoClaim(new Claim(JwtClaimName.EMAIL, ClaimValue.createNull()));
+        jwtAuthorizationRequest.addUserInfoClaim(new Claim(JwtClaimName.EMAIL_VERIFIED, ClaimValue.createNull()));
+        jwtAuthorizationRequest.addUserInfoClaim(new Claim(JwtClaimName.PICTURE, ClaimValue.createEssential(false)));
+        jwtAuthorizationRequest.addIdTokenClaim(new Claim(JwtClaimName.AUTHENTICATION_TIME, ClaimValue.createNull()));
+        jwtAuthorizationRequest.addIdTokenClaim(new Claim(JwtClaimName.AUTHENTICATION_CONTEXT_CLASS_REFERENCE, ClaimValue.createValueList(new String[]{ACR_VALUE})));
+        jwtAuthorizationRequest.getIdTokenMember().setMaxAge(86400);
+        String authJwt = jwtAuthorizationRequest.getEncodedJwt();
+        request.setRequest(authJwt);
+
+        AuthorizeClient authorizeClient = new AuthorizeClient(authorizationEndpoint);
+        authorizeClient.setRequest(request);
+        AuthorizationResponse response1 = authorizeClient.exec();
+
+        showClient(authorizeClient);
+        assertEquals(response1.getStatus(), 302, "Unexpected response code: " + response1.getStatus());
+        assertNotNull(response1.getLocation(), "The location is null");
+        assertNotNull(response1.getAccessToken(), "The accessToken is null");
+        assertNotNull(response1.getTokenType(), "The tokenType is null");
+        assertNotNull(response1.getIdToken(), "The idToken is null");
+        assertNotNull(response1.getState(), "The state is null");
+
+        String accessToken = response1.getAccessToken();
+
+        // 3. Request user info
+        UserInfoClient userInfoClient = new UserInfoClient(userInfoEndpoint);
+        UserInfoResponse response3 = userInfoClient.execUserInfo(accessToken);
+
+        showClient(userInfoClient);
+        assertEquals(response3.getStatus(), 200, "Unexpected response code: " + response3.getStatus());
+        assertNotNull(response3.getClaim(JwtClaimName.SUBJECT_IDENTIFIER));
+        assertNotNull(response3.getClaim(JwtClaimName.NAME));
+        assertNotNull(response3.getClaim(JwtClaimName.GIVEN_NAME));
+        assertNotNull(response3.getClaim(JwtClaimName.FAMILY_NAME));
+        assertNotNull(response3.getClaim(JwtClaimName.EMAIL));
+        assertNotNull(response3.getClaim(JwtClaimName.ZONEINFO));
+        assertNotNull(response3.getClaim(JwtClaimName.LOCALE));
+    }
+
+    @Parameters({"userId", "userSecret", "redirectUris", "redirectUri", "sectorIdentifierUri"})
+    @Test
+    public void requestParameterMethodFail1(
+            final String userId, final String userSecret, final String redirectUris, final String redirectUri,
+            final String sectorIdentifierUri) {
+        try {
+            showTitle("requestParameterMethodFail1");
+
+            List<ResponseType> responseTypes = Arrays.asList(ResponseType.TOKEN, ResponseType.ID_TOKEN);
+
+            // 1. Dynamic Client Registration
+            RegisterRequest registerRequest = new RegisterRequest(ApplicationType.WEB, "oxAuth test app",
+                    StringUtils.spaceSeparatedToList(redirectUris));
+            registerRequest.setResponseTypes(responseTypes);
+            registerRequest.addCustomAttribute("oxAuthTrustedClient", "true");
+            registerRequest.setSectorIdentifierUri(sectorIdentifierUri);
+
+            RegisterClient registerClient = new RegisterClient(registrationEndpoint);
+            registerClient.setRequest(registerRequest);
+            RegisterResponse registerResponse = registerClient.exec();
+
+            showClient(registerClient);
+            assertEquals(registerResponse.getStatus(), 200, "Unexpected response code: " + registerResponse.getEntity());
+            assertNotNull(registerResponse.getClientId());
+            assertNotNull(registerResponse.getClientSecret());
+            assertNotNull(registerResponse.getRegistrationAccessToken());
+            assertNotNull(registerResponse.getClientSecretExpiresAt());
+
+            String clientId = registerResponse.getClientId();
+
+            // 2. Authorization Request
+            List<String> scopes = Arrays.asList("openid", "profile", "address", "email");
+            String nonce = UUID.randomUUID().toString();
+            String state = UUID.randomUUID().toString();
+
+            AuthorizationRequest authorizationRequest = new AuthorizationRequest(responseTypes, clientId, scopes, redirectUri, nonce);
+            authorizationRequest.setState(state);
+            authorizationRequest.setRequest("INVALID_REQUEST_OBJECT");
+            authorizationRequest.setAuthUsername(userId);
+            authorizationRequest.setAuthPassword(userSecret);
+
+            AuthorizeClient authorizeClient = new AuthorizeClient(authorizationEndpoint);
+            authorizeClient.setRequest(authorizationRequest);
+            AuthorizationResponse response = authorizeClient.exec();
+
+            showClient(authorizeClient);
+            assertEquals(response.getStatus(), 302, "Unexpected response code: " + response.getStatus());
+            assertNotNull(response.getLocation(), "The location is null");
+            assertNotNull(response.getErrorType(), "The error type is null");
+            assertNotNull(response.getErrorDescription(), "The error description is null");
+            assertNotNull(response.getState(), "The state is null");
+        } catch (Exception e) {
+            fail(e.getMessage(), e);
+        }
+    }
+
+    @Parameters({"userId", "userSecret", "redirectUris", "redirectUri", "sectorIdentifierUri"})
+    @Test
+    public void requestParameterMethodFail2(
+            final String userId, final String userSecret, final String redirectUris, final String redirectUri,
+            final String sectorIdentifierUri) {
+        try {
+            showTitle("requestParameterMethodFail2");
+
+            List<ResponseType> responseTypes = Arrays.asList(ResponseType.TOKEN, ResponseType.ID_TOKEN);
+
+            // 1. Dynamic Client Registration
+            RegisterRequest registerRequest = new RegisterRequest(ApplicationType.WEB, "oxAuth test app",
+                    StringUtils.spaceSeparatedToList(redirectUris));
+            registerRequest.setResponseTypes(responseTypes);
+            registerRequest.addCustomAttribute("oxAuthTrustedClient", "true");
+            registerRequest.setSectorIdentifierUri(sectorIdentifierUri);
+
+            RegisterClient registerClient = new RegisterClient(registrationEndpoint);
+            registerClient.setRequest(registerRequest);
+            RegisterResponse registerResponse = registerClient.exec();
+
+            showClient(registerClient);
+            assertEquals(registerResponse.getStatus(), 200, "Unexpected response code: " + registerResponse.getEntity());
+            assertNotNull(registerResponse.getClientId());
+            assertNotNull(registerResponse.getClientSecret());
+            assertNotNull(registerResponse.getRegistrationAccessToken());
+            assertNotNull(registerResponse.getClientSecretExpiresAt());
+
+            String clientId = registerResponse.getClientId();
+            String clientSecret = registerResponse.getClientSecret();
+
+            // 2. Authorization Request
+            OxAuthCryptoProvider cryptoProvider = new OxAuthCryptoProvider();
+
+            List<String> scopes = Arrays.asList("openid", "profile", "address", "email");
+            String nonce = UUID.randomUUID().toString();
+            String state = UUID.randomUUID().toString();
+
+            AuthorizationRequest authorizationRequest = new AuthorizationRequest(responseTypes, clientId, scopes, redirectUri, nonce);
+            authorizationRequest.setState(state);
+            authorizationRequest.setAuthUsername(userId);
+            authorizationRequest.setAuthPassword(userSecret);
+
+            JwtAuthorizationRequest jwtAuthorizationRequest = new JwtAuthorizationRequest(authorizationRequest, SignatureAlgorithm.HS256, clientSecret, cryptoProvider);
+            jwtAuthorizationRequest.addUserInfoClaim(new Claim(JwtClaimName.NAME, ClaimValue.createNull()));
+            jwtAuthorizationRequest.addUserInfoClaim(new Claim(JwtClaimName.NICKNAME, ClaimValue.createEssential(false)));
+            jwtAuthorizationRequest.addUserInfoClaim(new Claim(JwtClaimName.EMAIL, ClaimValue.createNull()));
+            jwtAuthorizationRequest.addUserInfoClaim(new Claim(JwtClaimName.EMAIL_VERIFIED, ClaimValue.createNull()));
+            jwtAuthorizationRequest.addUserInfoClaim(new Claim(JwtClaimName.PICTURE, ClaimValue.createEssential(false)));
+            jwtAuthorizationRequest.addIdTokenClaim(new Claim(JwtClaimName.AUTHENTICATION_TIME, ClaimValue.createNull()));
+            jwtAuthorizationRequest.addIdTokenClaim(new Claim(JwtClaimName.AUTHENTICATION_CONTEXT_CLASS_REFERENCE, ClaimValue.createValueList(new String[]{ACR_VALUE})));
+            jwtAuthorizationRequest.getIdTokenMember().setMaxAge(86400);
+            String authJwt = jwtAuthorizationRequest.getEncodedJwt();
+            authorizationRequest.setRequest(authJwt + "INVALID_KEY");
+
+            AuthorizeClient authorizeClient = new AuthorizeClient(authorizationEndpoint);
+            authorizeClient.setRequest(authorizationRequest);
+            AuthorizationResponse response = authorizeClient.exec();
+
+            showClient(authorizeClient);
+            assertEquals(response.getStatus(), 302, "Unexpected response code: " + response.getStatus());
+            assertNotNull(response.getLocation(), "The location is null");
+            assertNotNull(response.getErrorType(), "The error type is null");
+            assertNotNull(response.getErrorDescription(), "The error description is null");
+            assertNotNull(response.getState(), "The state is null");
+        } catch (Exception e) {
+            fail(e.getMessage(), e);
+        }
+    }
+
+    @Parameters({"userId", "userSecret", "redirectUris", "redirectUri", "sectorIdentifierUri"})
+    @Test
+    public void requestParameterMethodFail3(
+            final String userId, final String userSecret, final String redirectUris, final String redirectUri,
+            final String sectorIdentifierUri) {
+        try {
+            showTitle("requestParameterMethodFail3");
+
+            List<ResponseType> responseTypes = Arrays.asList(ResponseType.TOKEN, ResponseType.ID_TOKEN);
+
+            // 1. Dynamic Client Registration
+            RegisterRequest registerRequest = new RegisterRequest(ApplicationType.WEB, "oxAuth test app",
+                    StringUtils.spaceSeparatedToList(redirectUris));
+            registerRequest.setResponseTypes(responseTypes);
+            registerRequest.addCustomAttribute("oxAuthTrustedClient", "true");
+            registerRequest.setSectorIdentifierUri(sectorIdentifierUri);
+
+            RegisterClient registerClient = new RegisterClient(registrationEndpoint);
+            registerClient.setRequest(registerRequest);
+            RegisterResponse registerResponse = registerClient.exec();
+
+            showClient(registerClient);
+            assertEquals(registerResponse.getStatus(), 200, "Unexpected response code: " + registerResponse.getEntity());
+            assertNotNull(registerResponse.getClientId());
+            assertNotNull(registerResponse.getClientSecret());
+            assertNotNull(registerResponse.getRegistrationAccessToken());
+            assertNotNull(registerResponse.getClientSecretExpiresAt());
+
+            String clientId = registerResponse.getClientId();
+            String clientSecret = registerResponse.getClientSecret();
+
+            // 2. Authorization Request
+            OxAuthCryptoProvider cryptoProvider = new OxAuthCryptoProvider();
+
+            List<String> scopes = Arrays.asList("openid", "profile", "address", "email");
+            String nonce = UUID.randomUUID().toString();
+            String state = UUID.randomUUID().toString();
+
+            AuthorizationRequest request = new AuthorizationRequest(responseTypes, clientId, scopes, redirectUri, nonce);
+            request.setState(state);
+            request.setAuthUsername(userId);
+            request.setAuthPassword(userSecret);
+
+            JwtAuthorizationRequest jwtAuthorizationRequest = new JwtAuthorizationRequest(request, SignatureAlgorithm.HS256, clientSecret, cryptoProvider);
+            jwtAuthorizationRequest.addUserInfoClaim(new Claim(JwtClaimName.NAME, ClaimValue.createNull()));
+            jwtAuthorizationRequest.addUserInfoClaim(new Claim(JwtClaimName.NICKNAME, ClaimValue.createEssential(false)));
+            jwtAuthorizationRequest.addUserInfoClaim(new Claim(JwtClaimName.EMAIL, ClaimValue.createNull()));
+            jwtAuthorizationRequest.addUserInfoClaim(new Claim(JwtClaimName.EMAIL_VERIFIED, ClaimValue.createNull()));
+            jwtAuthorizationRequest.addUserInfoClaim(new Claim(JwtClaimName.PICTURE, ClaimValue.createEssential(false)));
+            jwtAuthorizationRequest.addIdTokenClaim(new Claim(JwtClaimName.AUTHENTICATION_TIME, ClaimValue.createNull()));
+            jwtAuthorizationRequest.addIdTokenClaim(new Claim(JwtClaimName.AUTHENTICATION_CONTEXT_CLASS_REFERENCE, ClaimValue.createValueList(new String[]{ACR_VALUE})));
+            jwtAuthorizationRequest.getIdTokenMember().setMaxAge(86400);
+            jwtAuthorizationRequest.setClientId("INVALID_CLIENT_ID");
+            String authJwt = jwtAuthorizationRequest.getEncodedJwt();
+            request.setRequest(authJwt);
+
+            AuthorizeClient authorizeClient = new AuthorizeClient(authorizationEndpoint);
+            authorizeClient.setRequest(request);
+            AuthorizationResponse response = authorizeClient.exec();
+
+            showClient(authorizeClient);
+            assertEquals(response.getStatus(), 302, "Unexpected response code: " + response.getStatus());
+            assertNotNull(response.getLocation(), "The location is null");
+            assertNotNull(response.getErrorType(), "The error type is null");
+            assertNotNull(response.getErrorDescription(), "The error description is null");
+            assertNotNull(response.getState(), "The state is null");
+        } catch (Exception e) {
+            fail(e.getMessage(), e);
+        }
+    }
+
+    @Parameters({"userId", "userSecret", "redirectUris", "redirectUri", "sectorIdentifierUri"})
+    @Test
+    public void requestParameterMethodFail4(
+            final String userId, final String userSecret, final String redirectUris, final String redirectUri,
+            final String sectorIdentifierUri) {
+        try {
+            showTitle("requestParameterMethodFail4");
+
+            List<ResponseType> responseTypes = Arrays.asList(ResponseType.TOKEN);
+
+            // 1. Dynamic Client Registration
+            RegisterRequest registerRequest = new RegisterRequest(ApplicationType.WEB, "oxAuth test app",
+                    StringUtils.spaceSeparatedToList(redirectUris));
+            registerRequest.setResponseTypes(responseTypes);
+            registerRequest.addCustomAttribute("oxAuthTrustedClient", "true");
+            registerRequest.setSectorIdentifierUri(sectorIdentifierUri);
+
+            RegisterClient registerClient = new RegisterClient(registrationEndpoint);
+            registerClient.setRequest(registerRequest);
+            RegisterResponse registerResponse = registerClient.exec();
+
+            showClient(registerClient);
+            assertEquals(registerResponse.getStatus(), 200, "Unexpected response code: " + registerResponse.getEntity());
+            assertNotNull(registerResponse.getClientId());
+            assertNotNull(registerResponse.getClientSecret());
+            assertNotNull(registerResponse.getRegistrationAccessToken());
+            assertNotNull(registerResponse.getClientSecretExpiresAt());
+
+            String clientId = registerResponse.getClientId();
+            String clientSecret = registerResponse.getClientSecret();
+
+            // 2. Authorization Request
+            OxAuthCryptoProvider cryptoProvider = new OxAuthCryptoProvider();
+
+            List<String> scopes = Arrays.asList("openid");
+            String nonce = UUID.randomUUID().toString();
+            String state = UUID.randomUUID().toString();
+
+            AuthorizationRequest request = new AuthorizationRequest(responseTypes, clientId, scopes, redirectUri, nonce);
+            request.setState(state);
+            request.setAuthUsername(userId);
+            request.setAuthPassword(userSecret);
+
+            JwtAuthorizationRequest jwtAuthorizationRequest = new JwtAuthorizationRequest(request, SignatureAlgorithm.HS256, clientSecret, cryptoProvider);
+            jwtAuthorizationRequest.addIdTokenClaim(new Claim(JwtClaimName.SUBJECT_IDENTIFIER, ClaimValue.createSingleValue("INVALID_USER_ID")));
+            String authJwt = jwtAuthorizationRequest.getEncodedJwt();
+            request.setRequest(authJwt);
+
+            AuthorizeClient authorizeClient = new AuthorizeClient(authorizationEndpoint);
+            authorizeClient.setRequest(request);
+            AuthorizationResponse response = authorizeClient.exec();
+
+            showClient(authorizeClient);
+            assertEquals(response.getStatus(), 302, "Unexpected response code: " + response.getStatus());
+            assertNotNull(response.getLocation(), "The location is null");
+            assertNotNull(response.getErrorType(), "The error type is null");
+            assertNotNull(response.getErrorDescription(), "The error description is null");
+            assertNotNull(response.getState(), "The state is null");
+        } catch (Exception e) {
+            fail(e.getMessage(), e);
+        }
+    }
+
+    @Parameters({"userId", "userSecret", "redirectUris", "redirectUri", "requestFileBasePath", "requestFileBaseUrl", "sectorIdentifierUri"})
+    @Test // This tests requires a place to publish a request object via HTTPS
+    public void requestFileMethod(
+            final String userId, final String userSecret, final String redirectUris, final String redirectUri,
+            @Optional final String requestFileBasePath, final String requestFileBaseUrl, final String sectorIdentifierUri) throws Exception {
+        showTitle("requestFileMethod");
+
+        if (StringHelper.isEmpty(requestFileBasePath)) {
+            return;
+        }
+
+        List<ResponseType> responseTypes = Arrays.asList(
+                ResponseType.TOKEN,
+                ResponseType.ID_TOKEN);
+
+        // 1. Register client
+        RegisterRequest registerRequest = new RegisterRequest(ApplicationType.WEB, "oxAuth test app",
+                StringUtils.spaceSeparatedToList(redirectUris));
+        registerRequest.setResponseTypes(responseTypes);
+        registerRequest.setSectorIdentifierUri(sectorIdentifierUri);
+
+        RegisterClient registerClient = new RegisterClient(registrationEndpoint);
+        registerClient.setRequest(registerRequest);
+        RegisterResponse registerResponse = registerClient.exec();
+
+        showClient(registerClient);
+        assertEquals(registerResponse.getStatus(), 200, "Unexpected response code: " + registerResponse.getEntity());
+        assertNotNull(registerResponse.getClientId());
+        assertNotNull(registerResponse.getClientSecret());
+        assertNotNull(registerResponse.getRegistrationAccessToken());
+        assertNotNull(registerResponse.getClientIdIssuedAt());
+        assertNotNull(registerResponse.getClientSecretExpiresAt());
+
+        String clientId = registerResponse.getClientId();
+        String clientSecret = registerResponse.getClientSecret();
+
+        // 2. Request Authorization
+        OxAuthCryptoProvider cryptoProvider = new OxAuthCryptoProvider();
+
+        List<String> scopes = Arrays.asList("openid", "profile", "address", "email");
+        String nonce = UUID.randomUUID().toString();
+        String state = UUID.randomUUID().toString();
+
+        AuthorizationRequest authorizationRequest = new AuthorizationRequest(responseTypes, clientId, scopes, redirectUri, nonce);
+        authorizationRequest.setState(state);
+
+        try {
+            JwtAuthorizationRequest jwtAuthorizationRequest = new JwtAuthorizationRequest(authorizationRequest, SignatureAlgorithm.HS256, clientSecret, cryptoProvider);
+            jwtAuthorizationRequest.addUserInfoClaim(new Claim(JwtClaimName.NAME, ClaimValue.createNull()));
+            jwtAuthorizationRequest.addUserInfoClaim(new Claim(JwtClaimName.NICKNAME, ClaimValue.createEssential(false)));
+            jwtAuthorizationRequest.addUserInfoClaim(new Claim(JwtClaimName.EMAIL, ClaimValue.createNull()));
+            jwtAuthorizationRequest.addUserInfoClaim(new Claim(JwtClaimName.EMAIL_VERIFIED, ClaimValue.createNull()));
+            jwtAuthorizationRequest.addUserInfoClaim(new Claim(JwtClaimName.PICTURE, ClaimValue.createEssential(false)));
+            jwtAuthorizationRequest.addIdTokenClaim(new Claim(JwtClaimName.AUTHENTICATION_TIME, ClaimValue.createNull()));
+            jwtAuthorizationRequest.addIdTokenClaim(new Claim(JwtClaimName.AUTHENTICATION_CONTEXT_CLASS_REFERENCE, ClaimValue.createValueList(new String[]{ACR_VALUE})));
+            jwtAuthorizationRequest.getIdTokenMember().setMaxAge(86400);
+            String authJwt = jwtAuthorizationRequest.getEncodedJwt();
+            String hash = Base64Util.base64urlencode(JwtUtil.getMessageDigestSHA256(authJwt));
+            String fileName = UUID.randomUUID().toString() + ".txt";
+            String filePath = requestFileBasePath + File.separator + fileName;
+            String fileUrl = requestFileBaseUrl + "/" + fileName;// + "#" + hash;
+            FileWriter fw = new FileWriter(filePath);
+            BufferedWriter bw = new BufferedWriter(fw);
+            bw.write(authJwt);
+            bw.close();
+            fw.close();
+            authorizationRequest.setRequestUri(fileUrl);
+            System.out.println("Request JWT: " + authJwt);
+            System.out.println("Request File Path: " + filePath);
+            System.out.println("Request File URL: " + fileUrl);
+        } catch (IOException e) {
+            e.printStackTrace();
+            fail(e.getMessage());
+        } catch (NoSuchAlgorithmException e) {
+            e.printStackTrace();
+            fail(e.getMessage());
+        } catch (NoSuchProviderException e) {
+            e.printStackTrace();
+            fail(e.getMessage());
+        }
+
+        AuthorizeClient authorizeClient = new AuthorizeClient(authorizationEndpoint);
+        authorizeClient.setRequest(authorizationRequest);
+
+        AuthorizationResponse authorizationResponse = authenticateResourceOwnerAndGrantAccess(
+                authorizationEndpoint, authorizationRequest, userId, userSecret);
+
+        assertNotNull(authorizationResponse.getLocation(), "The location is null");
+        assertNotNull(authorizationResponse.getAccessToken(), "The accessToken is null");
+        assertNotNull(authorizationResponse.getTokenType(), "The tokenType is null");
+        assertNotNull(authorizationResponse.getState(), "The state is null");
+    }
+
+    @Parameters({"userId", "userSecret", "redirectUris", "redirectUri", "sectorIdentifierUri"})
+    @Test
+    public void requestFileMethodFail1(
+            final String userId, final String userSecret, final String redirectUris, final String redirectUri,
+            final String sectorIdentifierUri) {
+        try {
+            showTitle("requestFileMethodFail1");
+
+            List<ResponseType> responseTypes = Arrays.asList(
+                    ResponseType.TOKEN,
+                    ResponseType.ID_TOKEN);
+
+            // 1. Register client
+            RegisterRequest registerRequest = new RegisterRequest(ApplicationType.WEB, "oxAuth test app",
+                    StringUtils.spaceSeparatedToList(redirectUris));
+            registerRequest.setResponseTypes(responseTypes);
+            registerRequest.setSectorIdentifierUri(sectorIdentifierUri);
+
+            RegisterClient registerClient = new RegisterClient(registrationEndpoint);
+            registerClient.setRequest(registerRequest);
+            RegisterResponse registerResponse = registerClient.exec();
+
+            showClient(registerClient);
+            assertEquals(registerResponse.getStatus(), 200, "Unexpected response code: " + registerResponse.getEntity());
+            assertNotNull(registerResponse.getClientId());
+            assertNotNull(registerResponse.getClientSecret());
+            assertNotNull(registerResponse.getRegistrationAccessToken());
+            assertNotNull(registerResponse.getClientIdIssuedAt());
+            assertNotNull(registerResponse.getClientSecretExpiresAt());
+
+            String clientId = registerResponse.getClientId();
+
+            // 2. Request Authorization
+            List<String> scopes = Arrays.asList("openid", "profile", "address", "email");
+            String nonce = UUID.randomUUID().toString();
+            String state = UUID.randomUUID().toString();
+
+            AuthorizationRequest authorizationRequest = new AuthorizationRequest(responseTypes, clientId, scopes, redirectUri, nonce);
+            authorizationRequest.setState(state);
+            authorizationRequest.setAuthUsername(userId);
+            authorizationRequest.setAuthPassword(userSecret);
+
+            authorizationRequest.setRequest("FAKE_REQUEST");
+            authorizationRequest.setRequestUri("FAKE_REQUEST_URI");
+
+            AuthorizeClient authorizeClient = new AuthorizeClient(authorizationEndpoint);
+            authorizeClient.setRequest(authorizationRequest);
+            AuthorizationResponse response = authorizeClient.exec();
+
+            showClient(authorizeClient);
+            assertEquals(response.getStatus(), 302, "Unexpected response code: " + response.getStatus());
+            assertNotNull(response.getLocation(), "The location is null");
+            assertNotNull(response.getErrorType(), "The error type is null");
+            assertNotNull(response.getErrorDescription(), "The error description is null");
+            assertNotNull(response.getState(), "The state is null");
+        } catch (Exception e) {
+            fail(e.getMessage(), e);
+        }
+    }
+
+    @Parameters({"userId", "userSecret", "redirectUris", "redirectUri", "requestFileBaseUrl", "sectorIdentifierUri"})
+    @Test
+    public void requestFileMethodFail2(
+            final String userId, final String userSecret, final String redirectUris, final String redirectUri,
+            final String requestFileBaseUrl, final String sectorIdentifierUri) {
+        try {
+            showTitle("requestFileMethodFail2");
+
+            List<ResponseType> responseTypes = Arrays.asList(
+                    ResponseType.TOKEN,
+                    ResponseType.ID_TOKEN);
+
+            // 1. Register client
+            RegisterRequest registerRequest = new RegisterRequest(ApplicationType.WEB, "oxAuth test app",
+                    StringUtils.spaceSeparatedToList(redirectUris));
+            registerRequest.setResponseTypes(responseTypes);
+            registerRequest.setSectorIdentifierUri(sectorIdentifierUri);
+
+            RegisterClient registerClient = newRegisterClient(registerRequest);
+            RegisterResponse registerResponse = registerClient.exec();
+
+            showClient(registerClient);
+            assertEquals(registerResponse.getStatus(), 200, "Unexpected response code: " + registerResponse.getEntity());
+            assertNotNull(registerResponse.getClientId());
+            assertNotNull(registerResponse.getClientSecret());
+            assertNotNull(registerResponse.getRegistrationAccessToken());
+            assertNotNull(registerResponse.getClientIdIssuedAt());
+            assertNotNull(registerResponse.getClientSecretExpiresAt());
+
+            String clientId = registerResponse.getClientId();
+
+            // 2. Authorization Request
+            List<String> scopes = Arrays.asList("openid", "profile", "address", "email");
+            String nonce = UUID.randomUUID().toString();
+            String state = UUID.randomUUID().toString();
+
+            AuthorizationRequest authorizationRequest = new AuthorizationRequest(responseTypes, clientId, scopes, redirectUri, nonce);
+            authorizationRequest.setState(state);
+            authorizationRequest.setAuthUsername(userId);
+            authorizationRequest.setAuthPassword(userSecret);
+
+            authorizationRequest.setRequestUri(requestFileBaseUrl + "/FAKE_REQUEST_URI");
+
+            AuthorizeClient authorizeClient = newAuthorizeClient(authorizationRequest);
+            AuthorizationResponse response = authorizeClient.exec();
+
+            showClient(authorizeClient);
+            assertEquals(response.getStatus(), 400, "Unexpected response code: " + response.getStatus());
+            assertNotNull(response.getErrorType(), "The error type is null");
+            assertNotNull(response.getErrorDescription(), "The error description is null");
+            assertNotNull(response.getState(), "The state is null");
+        } catch (Exception e) {
+            fail(e.getMessage(), e);
+        }
+    }
+
+    @Parameters({"userId", "userSecret", "redirectUris", "redirectUri", "requestFileBasePath", "requestFileBaseUrl", "sectorIdentifierUri"})
+    @Test // This tests requires a place to publish a request object via HTTPS
+    public void requestFileMethodFail3(
+            final String userId, final String userSecret, final String redirectUris, final String redirectUri,
+            @Optional final String requestFileBasePath, final String requestFileBaseUrl, final String sectorIdentifierUri) throws Exception {
+        showTitle("requestFileMethodFail3");
+
+        if (StringHelper.isEmpty(requestFileBasePath)) {
+            return;
+        }
+
+        List<ResponseType> responseTypes = Arrays.asList(
+                ResponseType.TOKEN,
+                ResponseType.ID_TOKEN);
+
+        // 1. Register client
+        RegisterRequest registerRequest = new RegisterRequest(ApplicationType.WEB, "oxAuth test app",
+                StringUtils.spaceSeparatedToList(redirectUris));
+        registerRequest.setResponseTypes(responseTypes);
+        registerRequest.setSectorIdentifierUri(sectorIdentifierUri);
+
+        RegisterClient registerClient = new RegisterClient(registrationEndpoint);
+        registerClient.setRequest(registerRequest);
+        RegisterResponse registerResponse = registerClient.exec();
+
+        showClient(registerClient);
+        assertEquals(registerResponse.getStatus(), 200, "Unexpected response code: " + registerResponse.getEntity());
+        assertNotNull(registerResponse.getClientId());
+        assertNotNull(registerResponse.getClientSecret());
+        assertNotNull(registerResponse.getRegistrationAccessToken());
+        assertNotNull(registerResponse.getClientIdIssuedAt());
+        assertNotNull(registerResponse.getClientSecretExpiresAt());
+
+        String clientId = registerResponse.getClientId();
+        String clientSecret = registerResponse.getClientSecret();
+
+        // 2. Authorization Request
+        OxAuthCryptoProvider cryptoProvider = new OxAuthCryptoProvider();
+
+        List<String> scopes = Arrays.asList("openid", "profile", "address", "email");
+        String nonce = UUID.randomUUID().toString();
+        String state = UUID.randomUUID().toString();
+
+        AuthorizationRequest authorizationRequest = new AuthorizationRequest(responseTypes, clientId, scopes, redirectUri, nonce);
+        authorizationRequest.setState(state);
+        authorizationRequest.setAuthUsername(userId);
+        authorizationRequest.setAuthPassword(userSecret);
+        authorizationRequest.getPrompts().add(Prompt.NONE);
+
+        try {
+            JwtAuthorizationRequest jwtAuthorizationRequest = new JwtAuthorizationRequest(authorizationRequest, SignatureAlgorithm.HS256, clientSecret, cryptoProvider);
+            jwtAuthorizationRequest.addUserInfoClaim(new Claim(JwtClaimName.NAME, ClaimValue.createNull()));
+            jwtAuthorizationRequest.addUserInfoClaim(new Claim(JwtClaimName.NICKNAME, ClaimValue.createEssential(false)));
+            jwtAuthorizationRequest.addUserInfoClaim(new Claim(JwtClaimName.EMAIL, ClaimValue.createNull()));
+            jwtAuthorizationRequest.addUserInfoClaim(new Claim(JwtClaimName.EMAIL_VERIFIED, ClaimValue.createNull()));
+            jwtAuthorizationRequest.addUserInfoClaim(new Claim(JwtClaimName.PICTURE, ClaimValue.createEssential(false)));
+            jwtAuthorizationRequest.addIdTokenClaim(new Claim(JwtClaimName.AUTHENTICATION_TIME, ClaimValue.createNull()));
+            jwtAuthorizationRequest.addIdTokenClaim(new Claim(JwtClaimName.AUTHENTICATION_CONTEXT_CLASS_REFERENCE, ClaimValue.createValueList(new String[]{ACR_VALUE})));
+            jwtAuthorizationRequest.getIdTokenMember().setMaxAge(86400);
+            String authJwt = jwtAuthorizationRequest.getEncodedJwt();
+            String hash = "INVALID_HASH";
+            String fileName = UUID.randomUUID().toString() + ".txt";
+            String filePath = requestFileBasePath + File.separator + fileName;
+            String fileUrl = requestFileBaseUrl + "/" + fileName + "#" + hash;
+            FileWriter fw = new FileWriter(filePath);
+            BufferedWriter bw = new BufferedWriter(fw);
+            bw.write(authJwt);
+            bw.close();
+            fw.close();
+            authorizationRequest.setRequestUri(fileUrl);
+            System.out.println("Request JWT: " + authJwt);
+            System.out.println("Request File Path: " + filePath);
+            System.out.println("Request File URL: " + fileUrl);
+        } catch (IOException e) {
+            e.printStackTrace();
+            fail(e.getMessage());
+        }
+
+        AuthorizeClient authorizeClient = new AuthorizeClient(authorizationEndpoint);
+        authorizeClient.setRequest(authorizationRequest);
+        AuthorizationResponse response = authorizeClient.exec();
+
+        showClient(authorizeClient);
+        assertEquals(response.getStatus(), 302, "Unexpected response code: " + response.getStatus());
+        assertNotNull(response.getLocation(), "The location is null");
+        assertNotNull(response.getErrorType(), "The error type is null");
+        assertNotNull(response.getErrorDescription(), "The error description is null");
+        assertNotNull(response.getState(), "The state is null");
+    }
+
+    @Parameters({"userId", "userSecret", "redirectUri", "redirectUris", "sectorIdentifierUri"})
+    @Test
+    public void requestParameterMethodAlgNone(
+            final String userId, final String userSecret, final String redirectUri, final String redirectUris,
+            final String sectorIdentifierUri) {
+        try {
+            showTitle("requestParameterMethodAlgNone");
+
+            List<ResponseType> responseTypes = Arrays.asList(ResponseType.TOKEN, ResponseType.ID_TOKEN);
+
+            // 1. Dynamic Client Registration
+            RegisterRequest registerRequest = new RegisterRequest(ApplicationType.WEB, "oxAuth test app",
+                    StringUtils.spaceSeparatedToList(redirectUris));
+            registerRequest.setResponseTypes(responseTypes);
+            registerRequest.setRequestObjectSigningAlg(SignatureAlgorithm.NONE);
+            registerRequest.addCustomAttribute("oxAuthTrustedClient", "true");
+            registerRequest.setSectorIdentifierUri(sectorIdentifierUri);
+
+            RegisterClient registerClient = new RegisterClient(registrationEndpoint);
+            registerClient.setRequest(registerRequest);
+            RegisterResponse response = registerClient.exec();
+
+            showClient(registerClient);
+            assertEquals(response.getStatus(), 200, "Unexpected response code: " + response.getEntity());
+            assertNotNull(response.getClientId());
+            assertNotNull(response.getClientSecret());
+            assertNotNull(response.getRegistrationAccessToken());
+            assertNotNull(response.getClientSecretExpiresAt());
+
+            String clientId = response.getClientId();
+
+            // 2. Request authorization
+            AbstractCryptoProvider cryptoProvider = createCryptoProviderWithAllowedNone();
+
+            List<String> scopes = Arrays.asList("openid", "profile", "address", "email");
+            String nonce = UUID.randomUUID().toString();
+            String state = UUID.randomUUID().toString();
+
+            AuthorizationRequest request = new AuthorizationRequest(responseTypes, clientId, scopes, redirectUri, nonce);
+            request.setState(state);
+            request.setAuthUsername(userId);
+            request.setAuthPassword(userSecret);
+            request.getPrompts().add(Prompt.NONE);
+
+            JwtAuthorizationRequest jwtAuthorizationRequest = new JwtAuthorizationRequest(request, SignatureAlgorithm.NONE, cryptoProvider);
+            jwtAuthorizationRequest.addUserInfoClaim(new Claim(JwtClaimName.NAME, ClaimValue.createNull()));
+            jwtAuthorizationRequest.addUserInfoClaim(new Claim(JwtClaimName.NICKNAME, ClaimValue.createEssential(false)));
+            jwtAuthorizationRequest.addUserInfoClaim(new Claim(JwtClaimName.EMAIL, ClaimValue.createNull()));
+            jwtAuthorizationRequest.addUserInfoClaim(new Claim(JwtClaimName.EMAIL_VERIFIED, ClaimValue.createNull()));
+            jwtAuthorizationRequest.addUserInfoClaim(new Claim(JwtClaimName.PICTURE, ClaimValue.createEssential(false)));
+            jwtAuthorizationRequest.addIdTokenClaim(new Claim(JwtClaimName.AUTHENTICATION_TIME, ClaimValue.createNull()));
+            jwtAuthorizationRequest.addIdTokenClaim(new Claim(JwtClaimName.AUTHENTICATION_CONTEXT_CLASS_REFERENCE, ClaimValue.createValueList(new String[]{ACR_VALUE})));
+            jwtAuthorizationRequest.getIdTokenMember().setMaxAge(86400);
+            String authJwt = jwtAuthorizationRequest.getEncodedJwt();
+            request.setRequest(authJwt);
+
+            AuthorizeClient authorizeClient = new AuthorizeClient(authorizationEndpoint);
+            authorizeClient.setRequest(request);
+            AuthorizationResponse response1 = authorizeClient.exec();
+
+            showClient(authorizeClient);
+            assertEquals(response1.getStatus(), 302, "Unexpected response code: " + response1.getStatus());
+            assertNotNull(response1.getLocation(), "The location is null");
+            assertNotNull(response1.getAccessToken(), "The accessToken is null");
+            assertNotNull(response1.getTokenType(), "The tokenType is null");
+            assertNotNull(response1.getIdToken(), "The idToken is null");
+            assertNotNull(response1.getState(), "The state is null");
+
+            String accessToken = response1.getAccessToken();
+
+            // 3. Request user info
+            UserInfoClient userInfoClient = new UserInfoClient(userInfoEndpoint);
+            UserInfoResponse response3 = userInfoClient.execUserInfo(accessToken);
+
+            showClient(userInfoClient);
+            assertEquals(response3.getStatus(), 200, "Unexpected response code: " + response3.getStatus());
+            assertNotNull(response3.getClaim(JwtClaimName.SUBJECT_IDENTIFIER));
+            assertNotNull(response3.getClaim(JwtClaimName.NAME));
+            assertNotNull(response3.getClaim(JwtClaimName.GIVEN_NAME));
+            assertNotNull(response3.getClaim(JwtClaimName.FAMILY_NAME));
+            assertNotNull(response3.getClaim(JwtClaimName.EMAIL));
+            assertNotNull(response3.getClaim(JwtClaimName.ZONEINFO));
+            assertNotNull(response3.getClaim(JwtClaimName.LOCALE));
+            assertNotNull(response3.getClaim(JwtClaimName.ADDRESS));
+        } catch (Exception e) {
+            fail(e.getMessage(), e);
+        }
+    }
+
+    @Parameters({"userId", "userSecret", "redirectUri", "redirectUris", "sectorIdentifierUri"})
+    @Test
+    public void requestParameterMethodAlgRSAOAEPEncA256GCM(
+            final String userId, final String userSecret, final String redirectUri, final String redirectUris,
+            final String sectorIdentifierUri) {
+        try {
+            showTitle("requestParameterMethodAlgRSAOAEPEncA256GCM");
+
+            List<ResponseType> responseTypes = Arrays.asList(ResponseType.TOKEN, ResponseType.ID_TOKEN);
+
+            // 1. Dynamic Client Registration
+            RegisterRequest registerRequest = new RegisterRequest(ApplicationType.WEB, "oxAuth test app",
+                    StringUtils.spaceSeparatedToList(redirectUris));
+            registerRequest.setResponseTypes(responseTypes);
+            registerRequest.addCustomAttribute("oxAuthTrustedClient", "true");
+            registerRequest.setSectorIdentifierUri(sectorIdentifierUri);
+
+            RegisterClient registerClient = new RegisterClient(registrationEndpoint);
+            registerClient.setRequest(registerRequest);
+            RegisterResponse response = registerClient.exec();
+
+            showClient(registerClient);
+            assertEquals(response.getStatus(), 200, "Unexpected response code: " + response.getEntity());
+            assertNotNull(response.getClientId());
+            assertNotNull(response.getClientSecret());
+            assertNotNull(response.getRegistrationAccessToken());
+            assertNotNull(response.getClientSecretExpiresAt());
+
+            String clientId = response.getClientId();
+
+            // 2. Choose encryption key
+            JwkClient jwkClient = new JwkClient(jwksUri);
+            JwkResponse jwkResponse = jwkClient.exec();
+            String keyId = jwkResponse.getKeyId(Algorithm.RSA_OAEP);
+            assertNotNull(keyId);
+
+            // 3. Request authorization
+            JSONObject jwks = JwtUtil.getJSONWebKeys(jwksUri);
+            OxAuthCryptoProvider cryptoProvider = new OxAuthCryptoProvider();
+
+            List<String> scopes = Arrays.asList("openid", "profile", "address", "email");
+            String nonce = UUID.randomUUID().toString();
+            String state = UUID.randomUUID().toString();
+
+            AuthorizationRequest request = new AuthorizationRequest(responseTypes, clientId, scopes, redirectUri, nonce);
+            request.setState(state);
+            request.setAuthUsername(userId);
+            request.setAuthPassword(userSecret);
+            request.getPrompts().add(Prompt.NONE);
+
+            JwtAuthorizationRequest jwtAuthorizationRequest = new JwtAuthorizationRequest(request,
+                    KeyEncryptionAlgorithm.RSA_OAEP, BlockEncryptionAlgorithm.A256GCM, cryptoProvider);
+            jwtAuthorizationRequest.setKeyId(keyId);
+            jwtAuthorizationRequest.addUserInfoClaim(new Claim(JwtClaimName.NAME, ClaimValue.createNull()));
+            jwtAuthorizationRequest.addUserInfoClaim(new Claim(JwtClaimName.NICKNAME, ClaimValue.createEssential(false)));
+            jwtAuthorizationRequest.addUserInfoClaim(new Claim(JwtClaimName.EMAIL, ClaimValue.createNull()));
+            jwtAuthorizationRequest.addUserInfoClaim(new Claim(JwtClaimName.EMAIL_VERIFIED, ClaimValue.createNull()));
+            jwtAuthorizationRequest.addUserInfoClaim(new Claim(JwtClaimName.PICTURE, ClaimValue.createEssential(false)));
+            jwtAuthorizationRequest.addIdTokenClaim(new Claim(JwtClaimName.AUTHENTICATION_TIME, ClaimValue.createNull()));
+            jwtAuthorizationRequest.addIdTokenClaim(new Claim(JwtClaimName.AUTHENTICATION_CONTEXT_CLASS_REFERENCE, ClaimValue.createValueList(new String[]{ACR_VALUE})));
+            jwtAuthorizationRequest.getIdTokenMember().setMaxAge(86400);
+            String authJwt = jwtAuthorizationRequest.getEncodedJwt(jwks);
+            request.setRequest(authJwt);
+
+            AuthorizeClient authorizeClient = new AuthorizeClient(authorizationEndpoint);
+            authorizeClient.setRequest(request);
+            AuthorizationResponse response1 = authorizeClient.exec();
+
+            showClient(authorizeClient);
+            assertEquals(response1.getStatus(), 302, "Unexpected response code: " + response1.getStatus());
+            assertNotNull(response1.getLocation(), "The location is null");
+            assertNotNull(response1.getAccessToken(), "The accessToken is null");
+            assertNotNull(response1.getTokenType(), "The tokenType is null");
+            assertNotNull(response1.getIdToken(), "The idToken is null");
+            assertNotNull(response1.getState(), "The state is null");
+
+            String accessToken = response1.getAccessToken();
+
+            // 4. Request user info
+            UserInfoClient userInfoClient = new UserInfoClient(userInfoEndpoint);
+            UserInfoResponse response3 = userInfoClient.execUserInfo(accessToken);
+
+            showClient(userInfoClient);
+            assertEquals(response3.getStatus(), 200, "Unexpected response code: " + response3.getStatus());
+            assertNotNull(response3.getClaim(JwtClaimName.SUBJECT_IDENTIFIER));
+            assertNotNull(response3.getClaim(JwtClaimName.NAME));
+            assertNotNull(response3.getClaim(JwtClaimName.GIVEN_NAME));
+            assertNotNull(response3.getClaim(JwtClaimName.FAMILY_NAME));
+            assertNotNull(response3.getClaim(JwtClaimName.EMAIL));
+            assertNotNull(response3.getClaim(JwtClaimName.ZONEINFO));
+            assertNotNull(response3.getClaim(JwtClaimName.LOCALE));
+            assertNotNull(response3.getClaim(JwtClaimName.ADDRESS));
+        } catch (Exception e) {
+            fail(e.getMessage(), e);
+        }
+    }
+
+    @Parameters({"userId", "userSecret", "redirectUri", "redirectUris", "sectorIdentifierUri"})
+    @Test
+    public void requestParameterMethodAlgRSA15EncA128CBCPLUSHS256(
+            final String userId, final String userSecret, final String redirectUri, final String redirectUris,
+            final String sectorIdentifierUri) {
+        try {
+            showTitle("requestParameterMethodAlgRSA15EncA128CBCPLUSHS256");
+
+            List<ResponseType> responseTypes = Arrays.asList(ResponseType.TOKEN, ResponseType.ID_TOKEN);
+
+            // 1. Dynamic Client Registration
+            RegisterRequest registerRequest = new RegisterRequest(ApplicationType.WEB, "oxAuth test app",
+                    StringUtils.spaceSeparatedToList(redirectUris));
+            registerRequest.setResponseTypes(responseTypes);
+            registerRequest.addCustomAttribute("oxAuthTrustedClient", "true");
+            registerRequest.setSectorIdentifierUri(sectorIdentifierUri);
+
+            RegisterClient registerClient = new RegisterClient(registrationEndpoint);
+            registerClient.setRequest(registerRequest);
+            RegisterResponse response = registerClient.exec();
+
+            showClient(registerClient);
+            assertEquals(response.getStatus(), 200, "Unexpected response code: " + response.getEntity());
+            assertNotNull(response.getClientId());
+            assertNotNull(response.getClientSecret());
+            assertNotNull(response.getRegistrationAccessToken());
+            assertNotNull(response.getClientSecretExpiresAt());
+
+            String clientId = response.getClientId();
+
+            // 2. Choose encryption key
+            JwkClient jwkClient = new JwkClient(jwksUri);
+            JwkResponse jwkResponse = jwkClient.exec();
+            String keyId = jwkResponse.getKeyId(Algorithm.RSA1_5);
+            assertNotNull(keyId);
+
+            // 3. Request authorization
+            JSONObject jwks = JwtUtil.getJSONWebKeys(jwksUri);
+            OxAuthCryptoProvider cryptoProvider = new OxAuthCryptoProvider();
+
+            List<String> scopes = Arrays.asList("openid", "profile", "address", "email");
+            String nonce = UUID.randomUUID().toString();
+            String state = UUID.randomUUID().toString();
+
+            AuthorizationRequest request = new AuthorizationRequest(responseTypes, clientId, scopes, redirectUri, nonce);
+            request.setState(state);
+            request.setAuthUsername(userId);
+            request.setAuthPassword(userSecret);
+            request.getPrompts().add(Prompt.NONE);
+
+            JwtAuthorizationRequest jwtAuthorizationRequest = new JwtAuthorizationRequest(request,
+                    KeyEncryptionAlgorithm.RSA1_5, BlockEncryptionAlgorithm.A128CBC_PLUS_HS256, cryptoProvider);
+            jwtAuthorizationRequest.setKeyId(keyId);
+            jwtAuthorizationRequest.addUserInfoClaim(new Claim(JwtClaimName.NAME, ClaimValue.createNull()));
+            jwtAuthorizationRequest.addUserInfoClaim(new Claim(JwtClaimName.NICKNAME, ClaimValue.createEssential(false)));
+            jwtAuthorizationRequest.addUserInfoClaim(new Claim(JwtClaimName.EMAIL, ClaimValue.createNull()));
+            jwtAuthorizationRequest.addUserInfoClaim(new Claim(JwtClaimName.EMAIL_VERIFIED, ClaimValue.createNull()));
+            jwtAuthorizationRequest.addUserInfoClaim(new Claim(JwtClaimName.PICTURE, ClaimValue.createEssential(false)));
+            jwtAuthorizationRequest.addIdTokenClaim(new Claim(JwtClaimName.AUTHENTICATION_TIME, ClaimValue.createNull()));
+            jwtAuthorizationRequest.addIdTokenClaim(new Claim(JwtClaimName.AUTHENTICATION_CONTEXT_CLASS_REFERENCE, ClaimValue.createValueList(new String[]{ACR_VALUE})));
+            jwtAuthorizationRequest.getIdTokenMember().setMaxAge(86400);
+            String authJwt = jwtAuthorizationRequest.getEncodedJwt(jwks);
+            request.setRequest(authJwt);
+
+            AuthorizeClient authorizeClient = new AuthorizeClient(authorizationEndpoint);
+            authorizeClient.setRequest(request);
+            AuthorizationResponse response1 = authorizeClient.exec();
+
+            showClient(authorizeClient);
+            assertEquals(response1.getStatus(), 302, "Unexpected response code: " + response1.getStatus());
+            assertNotNull(response1.getLocation(), "The location is null");
+            assertNotNull(response1.getAccessToken(), "The accessToken is null");
+            assertNotNull(response1.getTokenType(), "The tokenType is null");
+            assertNotNull(response1.getIdToken(), "The idToken is null");
+            assertNotNull(response1.getState(), "The state is null");
+
+            String accessToken = response1.getAccessToken();
+
+            // 4. Request user info
+            UserInfoClient userInfoClient = new UserInfoClient(userInfoEndpoint);
+            UserInfoResponse response3 = userInfoClient.execUserInfo(accessToken);
+
+            showClient(userInfoClient);
+            assertEquals(response3.getStatus(), 200, "Unexpected response code: " + response3.getStatus());
+            assertNotNull(response3.getClaim(JwtClaimName.SUBJECT_IDENTIFIER));
+            assertNotNull(response3.getClaim(JwtClaimName.NAME));
+            assertNotNull(response3.getClaim(JwtClaimName.GIVEN_NAME));
+            assertNotNull(response3.getClaim(JwtClaimName.FAMILY_NAME));
+            assertNotNull(response3.getClaim(JwtClaimName.EMAIL));
+            assertNotNull(response3.getClaim(JwtClaimName.ZONEINFO));
+            assertNotNull(response3.getClaim(JwtClaimName.LOCALE));
+            assertNotNull(response3.getClaim(JwtClaimName.ADDRESS));
+        } catch (Exception e) {
+            fail(e.getMessage(), e);
+        }
+    }
+
+    @Parameters({"userId", "userSecret", "redirectUri", "redirectUris", "sectorIdentifierUri"})
+    @Test
+    public void requestParameterMethodAlgRSA15EncA256CBCPLUSHS512(
+            final String userId, final String userSecret, final String redirectUri, final String redirectUris,
+            final String sectorIdentifierUri) {
+        try {
+            showTitle("requestParameterMethodAlgRSA15EncA256CBCPLUSHS512");
+
+            List<ResponseType> responseTypes = Arrays.asList(ResponseType.TOKEN, ResponseType.ID_TOKEN);
+
+            // 1. Dynamic Client Registration
+            RegisterRequest registerRequest = new RegisterRequest(ApplicationType.WEB, "oxAuth test app",
+                    StringUtils.spaceSeparatedToList(redirectUris));
+            registerRequest.setResponseTypes(responseTypes);
+            registerRequest.addCustomAttribute("oxAuthTrustedClient", "true");
+            registerRequest.setSectorIdentifierUri(sectorIdentifierUri);
+
+            RegisterClient registerClient = new RegisterClient(registrationEndpoint);
+            registerClient.setRequest(registerRequest);
+            RegisterResponse response = registerClient.exec();
+
+            showClient(registerClient);
+            assertEquals(response.getStatus(), 200, "Unexpected response code: " + response.getEntity());
+            assertNotNull(response.getClientId());
+            assertNotNull(response.getClientSecret());
+            assertNotNull(response.getRegistrationAccessToken());
+            assertNotNull(response.getClientSecretExpiresAt());
+
+            String clientId = response.getClientId();
+
+            // 2. Choose encryption key
+            JwkClient jwkClient = new JwkClient(jwksUri);
+            JwkResponse jwkResponse = jwkClient.exec();
+            String keyId = jwkResponse.getKeyId(Algorithm.RSA1_5);
+            assertNotNull(keyId);
+
+            // 3. Request authorization
+            JSONObject jwks = JwtUtil.getJSONWebKeys(jwksUri);
+            OxAuthCryptoProvider cryptoProvider = new OxAuthCryptoProvider();
+
+            List<String> scopes = Arrays.asList("openid", "profile", "address", "email");
+            String nonce = UUID.randomUUID().toString();
+            String state = UUID.randomUUID().toString();
+
+            AuthorizationRequest request = new AuthorizationRequest(responseTypes, clientId, scopes, redirectUri, nonce);
+            request.setState(state);
+            request.setAuthUsername(userId);
+            request.setAuthPassword(userSecret);
+            request.getPrompts().add(Prompt.NONE);
+
+            JwtAuthorizationRequest jwtAuthorizationRequest = new JwtAuthorizationRequest(request,
+                    KeyEncryptionAlgorithm.RSA1_5, BlockEncryptionAlgorithm.A256CBC_PLUS_HS512, cryptoProvider);
+            jwtAuthorizationRequest.setKeyId(keyId);
+            jwtAuthorizationRequest.addUserInfoClaim(new Claim(JwtClaimName.NAME, ClaimValue.createNull()));
+            jwtAuthorizationRequest.addUserInfoClaim(new Claim(JwtClaimName.NICKNAME, ClaimValue.createEssential(false)));
+            jwtAuthorizationRequest.addUserInfoClaim(new Claim(JwtClaimName.EMAIL, ClaimValue.createNull()));
+            jwtAuthorizationRequest.addUserInfoClaim(new Claim(JwtClaimName.EMAIL_VERIFIED, ClaimValue.createNull()));
+            jwtAuthorizationRequest.addUserInfoClaim(new Claim(JwtClaimName.PICTURE, ClaimValue.createEssential(false)));
+            jwtAuthorizationRequest.addIdTokenClaim(new Claim(JwtClaimName.AUTHENTICATION_TIME, ClaimValue.createNull()));
+            jwtAuthorizationRequest.addIdTokenClaim(new Claim(JwtClaimName.AUTHENTICATION_CONTEXT_CLASS_REFERENCE, ClaimValue.createValueList(new String[]{ACR_VALUE})));
+            jwtAuthorizationRequest.getIdTokenMember().setMaxAge(86400);
+            String authJwt = jwtAuthorizationRequest.getEncodedJwt(jwks);
+            request.setRequest(authJwt);
+
+            AuthorizeClient authorizeClient = new AuthorizeClient(authorizationEndpoint);
+            authorizeClient.setRequest(request);
+            AuthorizationResponse response1 = authorizeClient.exec();
+
+            showClient(authorizeClient);
+            assertEquals(response1.getStatus(), 302, "Unexpected response code: " + response1.getStatus());
+            assertNotNull(response1.getLocation(), "The location is null");
+            assertNotNull(response1.getAccessToken(), "The accessToken is null");
+            assertNotNull(response1.getTokenType(), "The tokenType is null");
+            assertNotNull(response1.getIdToken(), "The idToken is null");
+            assertNotNull(response1.getState(), "The state is null");
+
+            String accessToken = response1.getAccessToken();
+
+            // 4. Request user info
+            UserInfoClient userInfoClient = new UserInfoClient(userInfoEndpoint);
+            UserInfoResponse response3 = userInfoClient.execUserInfo(accessToken);
+
+            showClient(userInfoClient);
+            assertEquals(response3.getStatus(), 200, "Unexpected response code: " + response3.getStatus());
+            assertNotNull(response3.getClaim(JwtClaimName.SUBJECT_IDENTIFIER));
+            assertNotNull(response3.getClaim(JwtClaimName.NAME));
+            assertNotNull(response3.getClaim(JwtClaimName.GIVEN_NAME));
+            assertNotNull(response3.getClaim(JwtClaimName.FAMILY_NAME));
+            assertNotNull(response3.getClaim(JwtClaimName.EMAIL));
+            assertNotNull(response3.getClaim(JwtClaimName.ZONEINFO));
+            assertNotNull(response3.getClaim(JwtClaimName.LOCALE));
+            assertNotNull(response3.getClaim(JwtClaimName.ADDRESS));
+        } catch (Exception e) {
+            fail(e.getMessage(), e);
+        }
+    }
+
+    @Parameters({"userId", "userSecret", "redirectUri", "redirectUris", "sectorIdentifierUri"})
+    @Test
+    public void requestParameterMethodAlgA128KWEncA128GCM(
+            final String userId, final String userSecret, final String redirectUri, final String redirectUris,
+            final String sectorIdentifierUri) {
+        try {
+            showTitle("requestParameterMethodAlgA128KWEncA128GCM");
+
+            List<ResponseType> responseTypes = Arrays.asList(ResponseType.TOKEN, ResponseType.ID_TOKEN);
+
+            // 1. Dynamic Client Registration
+            RegisterRequest registerRequest = new RegisterRequest(ApplicationType.WEB, "oxAuth test app",
+                    StringUtils.spaceSeparatedToList(redirectUris));
+            registerRequest.setResponseTypes(responseTypes);
+            registerRequest.addCustomAttribute("oxAuthTrustedClient", "true");
+            registerRequest.setSectorIdentifierUri(sectorIdentifierUri);
+
+            RegisterClient registerClient = new RegisterClient(registrationEndpoint);
+            registerClient.setRequest(registerRequest);
+            RegisterResponse response = registerClient.exec();
+
+            showClient(registerClient);
+            assertEquals(response.getStatus(), 200, "Unexpected response code: " + response.getEntity());
+            assertNotNull(response.getClientId());
+            assertNotNull(response.getClientSecret());
+            assertNotNull(response.getRegistrationAccessToken());
+            assertNotNull(response.getClientSecretExpiresAt());
+
+            String clientId = response.getClientId();
+            String clientSecret = response.getClientSecret();
+
+            // 2. Request authorization
+            List<String> scopes = Arrays.asList("openid", "profile", "address", "email");
+            String nonce = UUID.randomUUID().toString();
+            String state = UUID.randomUUID().toString();
+
+            AuthorizationRequest request = new AuthorizationRequest(responseTypes, clientId, scopes, redirectUri, nonce);
+            request.setState(state);
+            request.setAuthUsername(userId);
+            request.setAuthPassword(userSecret);
+            request.getPrompts().add(Prompt.NONE);
+
+            JwtAuthorizationRequest jwtAuthorizationRequest = new JwtAuthorizationRequest(
+                    request, KeyEncryptionAlgorithm.A128KW, BlockEncryptionAlgorithm.A128GCM, clientSecret);
+            jwtAuthorizationRequest.addUserInfoClaim(new Claim(JwtClaimName.NAME, ClaimValue.createNull()));
+            jwtAuthorizationRequest.addUserInfoClaim(new Claim(JwtClaimName.NICKNAME, ClaimValue.createEssential(false)));
+            jwtAuthorizationRequest.addUserInfoClaim(new Claim(JwtClaimName.EMAIL, ClaimValue.createNull()));
+            jwtAuthorizationRequest.addUserInfoClaim(new Claim(JwtClaimName.EMAIL_VERIFIED, ClaimValue.createNull()));
+            jwtAuthorizationRequest.addUserInfoClaim(new Claim(JwtClaimName.PICTURE, ClaimValue.createEssential(false)));
+            jwtAuthorizationRequest.addIdTokenClaim(new Claim(JwtClaimName.AUTHENTICATION_TIME, ClaimValue.createNull()));
+            jwtAuthorizationRequest.addIdTokenClaim(new Claim(JwtClaimName.AUTHENTICATION_CONTEXT_CLASS_REFERENCE, ClaimValue.createValueList(new String[]{ACR_VALUE})));
+            jwtAuthorizationRequest.getIdTokenMember().setMaxAge(86400);
+            String authJwt = jwtAuthorizationRequest.getEncodedJwt();
+            request.setRequest(authJwt);
+
+            AuthorizeClient authorizeClient = new AuthorizeClient(authorizationEndpoint);
+            authorizeClient.setRequest(request);
+            AuthorizationResponse response1 = authorizeClient.exec();
+
+            showClient(authorizeClient);
+            assertEquals(response1.getStatus(), 302, "Unexpected response code: " + response1.getStatus());
+            assertNotNull(response1.getLocation(), "The location is null");
+            assertNotNull(response1.getAccessToken(), "The accessToken is null");
+            assertNotNull(response1.getTokenType(), "The tokenType is null");
+            assertNotNull(response1.getIdToken(), "The idToken is null");
+            assertNotNull(response1.getState(), "The state is null");
+
+            String accessToken = response1.getAccessToken();
+
+            // 3. Request user info
+            UserInfoClient userInfoClient = new UserInfoClient(userInfoEndpoint);
+            UserInfoResponse response3 = userInfoClient.execUserInfo(accessToken);
+
+            showClient(userInfoClient);
+            assertEquals(response3.getStatus(), 200, "Unexpected response code: " + response3.getStatus());
+            assertNotNull(response3.getClaim(JwtClaimName.SUBJECT_IDENTIFIER));
+            assertNotNull(response3.getClaim(JwtClaimName.NAME));
+            assertNotNull(response3.getClaim(JwtClaimName.GIVEN_NAME));
+            assertNotNull(response3.getClaim(JwtClaimName.FAMILY_NAME));
+            assertNotNull(response3.getClaim(JwtClaimName.EMAIL));
+            assertNotNull(response3.getClaim(JwtClaimName.ZONEINFO));
+            assertNotNull(response3.getClaim(JwtClaimName.LOCALE));
+            assertNotNull(response3.getClaim(JwtClaimName.ADDRESS));
+        } catch (Exception e) {
+            fail(e.getMessage(), e);
+        }
+    }
+
+    @Parameters({"userId", "userSecret", "redirectUri", "redirectUris", "sectorIdentifierUri"})
+    @Test
+    public void requestParameterMethodAlgA256KWEncA256GCM(
+            final String userId, final String userSecret, final String redirectUri, final String redirectUris,
+            final String sectorIdentifierUri) {
+        try {
+            showTitle("requestParameterMethodAlgA256KWEncA256GCM");
+
+            List<ResponseType> responseTypes = Arrays.asList(ResponseType.TOKEN, ResponseType.ID_TOKEN);
+
+            // 1. Dynamic Client Registration
+            RegisterRequest registerRequest = new RegisterRequest(ApplicationType.WEB, "oxAuth test app",
+                    StringUtils.spaceSeparatedToList(redirectUris));
+            registerRequest.setResponseTypes(responseTypes);
+            registerRequest.addCustomAttribute("oxAuthTrustedClient", "true");
+            registerRequest.setSectorIdentifierUri(sectorIdentifierUri);
+
+            RegisterClient registerClient = new RegisterClient(registrationEndpoint);
+            registerClient.setRequest(registerRequest);
+            RegisterResponse response = registerClient.exec();
+
+            showClient(registerClient);
+            assertEquals(response.getStatus(), 200, "Unexpected response code: " + response.getEntity());
+            assertNotNull(response.getClientId());
+            assertNotNull(response.getClientSecret());
+            assertNotNull(response.getRegistrationAccessToken());
+            assertNotNull(response.getClientSecretExpiresAt());
+
+            String clientId = response.getClientId();
+            String clientSecret = response.getClientSecret();
+
+            // 2. Request authorization
+            List<String> scopes = Arrays.asList("openid", "profile", "address", "email");
+            String nonce = UUID.randomUUID().toString();
+            String state = UUID.randomUUID().toString();
+
+            AuthorizationRequest request = new AuthorizationRequest(responseTypes, clientId, scopes, redirectUri, nonce);
+            request.setState(state);
+            request.setAuthUsername(userId);
+            request.setAuthPassword(userSecret);
+            request.getPrompts().add(Prompt.NONE);
+
+            JwtAuthorizationRequest jwtAuthorizationRequest = new JwtAuthorizationRequest(
+                    request, KeyEncryptionAlgorithm.A256KW, BlockEncryptionAlgorithm.A256GCM, clientSecret);
+            jwtAuthorizationRequest.addUserInfoClaim(new Claim(JwtClaimName.NAME, ClaimValue.createNull()));
+            jwtAuthorizationRequest.addUserInfoClaim(new Claim(JwtClaimName.NICKNAME, ClaimValue.createEssential(false)));
+            jwtAuthorizationRequest.addUserInfoClaim(new Claim(JwtClaimName.EMAIL, ClaimValue.createNull()));
+            jwtAuthorizationRequest.addUserInfoClaim(new Claim(JwtClaimName.EMAIL_VERIFIED, ClaimValue.createNull()));
+            jwtAuthorizationRequest.addUserInfoClaim(new Claim(JwtClaimName.PICTURE, ClaimValue.createEssential(false)));
+            jwtAuthorizationRequest.addIdTokenClaim(new Claim(JwtClaimName.AUTHENTICATION_TIME, ClaimValue.createNull()));
+            jwtAuthorizationRequest.addIdTokenClaim(new Claim(JwtClaimName.AUTHENTICATION_CONTEXT_CLASS_REFERENCE, ClaimValue.createValueList(new String[]{ACR_VALUE})));
+            jwtAuthorizationRequest.getIdTokenMember().setMaxAge(86400);
+            String authJwt = jwtAuthorizationRequest.getEncodedJwt();
+            request.setRequest(authJwt);
+
+            AuthorizeClient authorizeClient = new AuthorizeClient(authorizationEndpoint);
+            authorizeClient.setRequest(request);
+            AuthorizationResponse response1 = authorizeClient.exec();
+
+            showClient(authorizeClient);
+            assertEquals(response1.getStatus(), 302, "Unexpected response code: " + response1.getStatus());
+            assertNotNull(response1.getLocation(), "The location is null");
+            assertNotNull(response1.getAccessToken(), "The accessToken is null");
+            assertNotNull(response1.getTokenType(), "The tokenType is null");
+            assertNotNull(response1.getIdToken(), "The idToken is null");
+            assertNotNull(response1.getState(), "The state is null");
+
+            String accessToken = response1.getAccessToken();
+
+            // 3. Request user info
+            UserInfoClient userInfoClient = new UserInfoClient(userInfoEndpoint);
+            UserInfoResponse response3 = userInfoClient.execUserInfo(accessToken);
+
+            showClient(userInfoClient);
+            assertEquals(response3.getStatus(), 200, "Unexpected response code: " + response3.getStatus());
+            assertNotNull(response3.getClaim(JwtClaimName.SUBJECT_IDENTIFIER));
+            assertNotNull(response3.getClaim(JwtClaimName.NAME));
+            assertNotNull(response3.getClaim(JwtClaimName.GIVEN_NAME));
+            assertNotNull(response3.getClaim(JwtClaimName.FAMILY_NAME));
+            assertNotNull(response3.getClaim(JwtClaimName.EMAIL));
+            assertNotNull(response3.getClaim(JwtClaimName.ZONEINFO));
+            assertNotNull(response3.getClaim(JwtClaimName.LOCALE));
+            assertNotNull(response3.getClaim(JwtClaimName.ADDRESS));
+        } catch (Exception e) {
+            fail(e.getMessage(), e);
+        }
+    }
+}
\ No newline at end of file
diff --git a/oxAuth/Client/src/test/java/org/gluu/oxauth/ws/rs/PersistClientAuthorizationsHttpTest.java b/oxAuth/Client/src/test/java/org/gluu/oxauth/ws/rs/PersistClientAuthorizationsHttpTest.java
new file mode 100644
index 00000000..5ddd4a13
--- /dev/null
+++ b/oxAuth/Client/src/test/java/org/gluu/oxauth/ws/rs/PersistClientAuthorizationsHttpTest.java
@@ -0,0 +1,565 @@
+/*
+ * oxAuth is available under the MIT License (2008). See http://opensource.org/licenses/MIT for full text.
+ *
+ * Copyright (c) 2014, Gluu
+ */
+
+package org.gluu.oxauth.ws.rs;
+
+import static org.testng.Assert.assertEquals;
+import static org.testng.Assert.assertNotNull;
+
+import java.util.Arrays;
+import java.util.List;
+import java.util.UUID;
+
+import org.gluu.oxauth.BaseTest;
+import org.gluu.oxauth.client.AuthorizationRequest;
+import org.gluu.oxauth.client.AuthorizationResponse;
+import org.gluu.oxauth.client.AuthorizeClient;
+import org.gluu.oxauth.client.RegisterClient;
+import org.gluu.oxauth.client.RegisterRequest;
+import org.gluu.oxauth.client.RegisterResponse;
+import org.gluu.oxauth.client.TokenClient;
+import org.gluu.oxauth.client.TokenRequest;
+import org.gluu.oxauth.client.TokenResponse;
+import org.gluu.oxauth.model.common.AuthenticationMethod;
+import org.gluu.oxauth.model.common.GrantType;
+import org.gluu.oxauth.model.common.Prompt;
+import org.gluu.oxauth.model.common.ResponseType;
+import org.gluu.oxauth.model.register.ApplicationType;
+import org.gluu.oxauth.model.util.StringUtils;
+import org.testng.annotations.Parameters;
+import org.testng.annotations.Test;
+
+/**
+ * @author Javier Rojas Blum
+ * @version November 10, 2017
+ */
+public class PersistClientAuthorizationsHttpTest extends BaseTest {
+
+    @Parameters({"userId", "userSecret", "redirectUris", "redirectUri", "sectorIdentifierUri"})
+    @Test
+    public void persistentClientAuthorizations(
+            final String userId, final String userSecret, final String redirectUris, final String redirectUri,
+            final String sectorIdentifierUri) throws Exception {
+        showTitle("persistentClientAuthorizations");
+
+        List<ResponseType> responseTypes = Arrays.asList(ResponseType.CODE, ResponseType.ID_TOKEN);
+
+        // 1. Register client
+        RegisterRequest registerRequest = new RegisterRequest(ApplicationType.WEB, "oxAuth test app",
+                StringUtils.spaceSeparatedToList(redirectUris));
+        registerRequest.setResponseTypes(responseTypes);
+        registerRequest.setSectorIdentifierUri(sectorIdentifierUri);
+
+        RegisterClient registerClient = new RegisterClient(registrationEndpoint);
+        registerClient.setRequest(registerRequest);
+        RegisterResponse registerResponse = registerClient.exec();
+
+        showClient(registerClient);
+        assertEquals(registerResponse.getStatus(), 200, "Unexpected response code: " + registerResponse.getEntity());
+        assertNotNull(registerResponse.getClientId());
+        assertNotNull(registerResponse.getClientSecret());
+        assertNotNull(registerResponse.getRegistrationAccessToken());
+        assertNotNull(registerResponse.getClientIdIssuedAt());
+        assertNotNull(registerResponse.getClientSecretExpiresAt());
+
+        String clientId = registerResponse.getClientId();
+        String clientSecret = registerResponse.getClientSecret();
+
+        String sessionId = null;
+        {
+            // 2. Request authorization
+            // Scopes: openid, profile
+            // Authenticate user with login password then authorize.
+            List<String> scopes = Arrays.asList("openid", "profile");
+            String nonce = UUID.randomUUID().toString();
+            String state = UUID.randomUUID().toString();
+
+            AuthorizationRequest authorizationRequest = new AuthorizationRequest(responseTypes, clientId, scopes, redirectUri, nonce);
+            authorizationRequest.setState(state);
+
+            AuthorizationResponse authorizationResponse = authenticateResourceOwnerAndGrantAccess(
+                    authorizationEndpoint, authorizationRequest, userId, userSecret);
+
+            assertNotNull(authorizationResponse.getLocation());
+            assertNotNull(authorizationResponse.getCode());
+            assertNotNull(authorizationResponse.getIdToken());
+            assertNotNull(authorizationResponse.getState());
+
+            String authorizationCode = authorizationResponse.getCode();
+            sessionId = authorizationResponse.getSessionId();
+
+            // 3. Request access token using the authorization code.
+            TokenRequest tokenRequest = new TokenRequest(GrantType.AUTHORIZATION_CODE);
+            tokenRequest.setCode(authorizationCode);
+            tokenRequest.setRedirectUri(redirectUri);
+            tokenRequest.setAuthUsername(clientId);
+            tokenRequest.setAuthPassword(clientSecret);
+            tokenRequest.setAuthenticationMethod(AuthenticationMethod.CLIENT_SECRET_BASIC);
+
+            TokenClient tokenClient = new TokenClient(tokenEndpoint);
+            tokenClient.setRequest(tokenRequest);
+            TokenResponse tokenResponse = tokenClient.exec();
+
+            showClient(tokenClient);
+            assertEquals(tokenResponse.getStatus(), 200, "Unexpected response code: " + tokenResponse.getStatus());
+            assertNotNull(tokenResponse.getEntity());
+            assertNotNull(tokenResponse.getAccessToken());
+            assertNotNull(tokenResponse.getExpiresIn());
+            assertNotNull(tokenResponse.getTokenType());
+            assertNotNull(tokenResponse.getRefreshToken());
+        }
+
+        {
+            // 4. Request authorization
+            // Scopes: openid, profile
+            // Authenticate user with login password, do not show authorize page because those scopes are already authorized.
+            List<String> scopes = Arrays.asList("openid", "profile");
+            String nonce = UUID.randomUUID().toString();
+            String state = UUID.randomUUID().toString();
+
+            AuthorizationRequest authorizationRequest = new AuthorizationRequest(responseTypes, clientId, scopes, redirectUri, nonce);
+            authorizationRequest.setState(state);
+
+            AuthorizationResponse authorizationResponse = authenticateResourceOwner(
+                    authorizationEndpoint, authorizationRequest, userId, userSecret, false);
+
+            assertNotNull(authorizationResponse.getLocation());
+            assertNotNull(authorizationResponse.getCode());
+            assertNotNull(authorizationResponse.getIdToken());
+            assertNotNull(authorizationResponse.getState());
+
+            String authorizationCode = authorizationResponse.getCode();
+
+            // 5. Request access token using the authorization code.
+            TokenRequest tokenRequest = new TokenRequest(GrantType.AUTHORIZATION_CODE);
+            tokenRequest.setCode(authorizationCode);
+            tokenRequest.setRedirectUri(redirectUri);
+            tokenRequest.setAuthUsername(clientId);
+            tokenRequest.setAuthPassword(clientSecret);
+            tokenRequest.setAuthenticationMethod(AuthenticationMethod.CLIENT_SECRET_BASIC);
+
+            TokenClient tokenClient = new TokenClient(tokenEndpoint);
+            tokenClient.setRequest(tokenRequest);
+            TokenResponse tokenResponse = tokenClient.exec();
+
+            showClient(tokenClient);
+            assertEquals(tokenResponse.getStatus(), 200, "Unexpected response code: " + tokenResponse.getStatus());
+            assertNotNull(tokenResponse.getEntity());
+            assertNotNull(tokenResponse.getAccessToken());
+            assertNotNull(tokenResponse.getExpiresIn());
+            assertNotNull(tokenResponse.getTokenType());
+            assertNotNull(tokenResponse.getRefreshToken());
+        }
+
+        {
+            // 6. Request authorization
+            // Scopes: openid, address, email
+            // Authenticate user with login password then authorize.
+            // It shows authorize page because those scopes are not yet authorized.
+            List<String> scopes = Arrays.asList("openid", "address", "email");
+            String nonce = UUID.randomUUID().toString();
+            String state = UUID.randomUUID().toString();
+
+            AuthorizationRequest authorizationRequest = new AuthorizationRequest(responseTypes, clientId, scopes, redirectUri, nonce);
+            authorizationRequest.setState(state);
+
+            AuthorizationResponse authorizationResponse = authenticateResourceOwnerAndGrantAccess(
+                    authorizationEndpoint, authorizationRequest, userId, userSecret, false);
+
+            assertNotNull(authorizationResponse.getLocation());
+            assertNotNull(authorizationResponse.getCode());
+            assertNotNull(authorizationResponse.getIdToken());
+            assertNotNull(authorizationResponse.getState());
+
+            String authorizationCode = authorizationResponse.getCode();
+
+            // 7. Request access token using the authorization code.
+            TokenRequest tokenRequest = new TokenRequest(GrantType.AUTHORIZATION_CODE);
+            tokenRequest.setCode(authorizationCode);
+            tokenRequest.setRedirectUri(redirectUri);
+            tokenRequest.setAuthUsername(clientId);
+            tokenRequest.setAuthPassword(clientSecret);
+            tokenRequest.setAuthenticationMethod(AuthenticationMethod.CLIENT_SECRET_BASIC);
+
+            TokenClient tokenClient = new TokenClient(tokenEndpoint);
+            tokenClient.setRequest(tokenRequest);
+            TokenResponse tokenResponse = tokenClient.exec();
+
+            showClient(tokenClient);
+            assertEquals(tokenResponse.getStatus(), 200, "Unexpected response code: " + tokenResponse.getStatus());
+            assertNotNull(tokenResponse.getEntity());
+            assertNotNull(tokenResponse.getAccessToken());
+            assertNotNull(tokenResponse.getExpiresIn());
+            assertNotNull(tokenResponse.getTokenType());
+            assertNotNull(tokenResponse.getRefreshToken());
+        }
+
+        {
+            // 8. Request authorization
+            // Scopes: openid, profile, address, email
+            // Authenticate user with login password, do not show authorize page because those scopes are already authorized.
+            List<String> scopes = Arrays.asList("openid", "profile", "address", "email");
+            String nonce = UUID.randomUUID().toString();
+            String state = UUID.randomUUID().toString();
+
+            AuthorizationRequest authorizationRequest = new AuthorizationRequest(responseTypes, clientId, scopes, redirectUri, nonce);
+            authorizationRequest.setState(state);
+
+            AuthorizationResponse authorizationResponse = authenticateResourceOwner(
+                    authorizationEndpoint, authorizationRequest, userId, userSecret, false);
+
+            assertNotNull(authorizationResponse.getLocation());
+            assertNotNull(authorizationResponse.getCode());
+            assertNotNull(authorizationResponse.getIdToken());
+            assertNotNull(authorizationResponse.getState());
+
+            String authorizationCode = authorizationResponse.getCode();
+
+            // 9. Request access token using the authorization code.
+            TokenRequest tokenRequest = new TokenRequest(GrantType.AUTHORIZATION_CODE);
+            tokenRequest.setCode(authorizationCode);
+            tokenRequest.setRedirectUri(redirectUri);
+            tokenRequest.setAuthUsername(clientId);
+            tokenRequest.setAuthPassword(clientSecret);
+            tokenRequest.setAuthenticationMethod(AuthenticationMethod.CLIENT_SECRET_BASIC);
+
+            TokenClient tokenClient = new TokenClient(tokenEndpoint);
+            tokenClient.setRequest(tokenRequest);
+            TokenResponse tokenResponse = tokenClient.exec();
+
+            showClient(tokenClient);
+            assertEquals(tokenResponse.getStatus(), 200, "Unexpected response code: " + tokenResponse.getStatus());
+            assertNotNull(tokenResponse.getEntity());
+            assertNotNull(tokenResponse.getAccessToken());
+            assertNotNull(tokenResponse.getExpiresIn());
+            assertNotNull(tokenResponse.getTokenType());
+            assertNotNull(tokenResponse.getRefreshToken());
+        }
+
+        {
+            // 10. Request authorization
+            // Scopes: openid, profile, address, email
+            // Do not show authenticate page because we are including the session_id in the authorization request and the session is already authenticated.
+            // Do not show authorize page because those scopes are already authorized.
+            List<String> scopes = Arrays.asList("openid", "profile", "address", "email");
+            String nonce = UUID.randomUUID().toString();
+            String state = UUID.randomUUID().toString();
+
+            AuthorizationRequest authorizationRequest = new AuthorizationRequest(responseTypes, clientId, scopes, redirectUri, nonce);
+            authorizationRequest.setState(state);
+            authorizationRequest.getPrompts().add(Prompt.NONE);
+            authorizationRequest.setSessionId(sessionId);
+
+            AuthorizeClient authorizeClient = new AuthorizeClient(authorizationEndpoint);
+            authorizeClient.setRequest(authorizationRequest);
+
+            AuthorizationResponse authorizationResponse = authorizeClient.exec();
+
+            assertNotNull(authorizationResponse.getLocation());
+            assertNotNull(authorizationResponse.getCode());
+            assertNotNull(authorizationResponse.getState());
+            assertNotNull(authorizationResponse.getScope());
+
+            String authorizationCode = authorizationResponse.getCode();
+
+            // 11. Get Access Token
+            TokenRequest tokenRequest = new TokenRequest(GrantType.AUTHORIZATION_CODE);
+            tokenRequest.setCode(authorizationCode);
+            tokenRequest.setRedirectUri(redirectUri);
+            tokenRequest.setAuthUsername(clientId);
+            tokenRequest.setAuthPassword(clientSecret);
+            tokenRequest.setAuthenticationMethod(AuthenticationMethod.CLIENT_SECRET_BASIC);
+
+            TokenClient tokenClient = new TokenClient(tokenEndpoint);
+            tokenClient.setRequest(tokenRequest);
+            TokenResponse tokenResponse = tokenClient.exec();
+
+            showClient(tokenClient);
+            assertEquals(tokenResponse.getStatus(), 200, "Unexpected response code: " + tokenResponse.getStatus());
+            assertNotNull(tokenResponse.getEntity(), "The entity is null");
+            assertNotNull(tokenResponse.getAccessToken(), "The access token is null");
+            assertNotNull(tokenResponse.getExpiresIn(), "The expires in value is null");
+            assertNotNull(tokenResponse.getTokenType(), "The token type is null");
+            assertNotNull(tokenResponse.getRefreshToken(), "The refresh token is null");
+        }
+    }
+
+    @Parameters({"userId", "userSecret", "redirectUris", "redirectUri", "sectorIdentifierUri"})
+    @Test
+    public void persistentClientAuthorizationsSameSession(
+            final String userId, final String userSecret, final String redirectUris, final String redirectUri,
+            final String sectorIdentifierUri) throws Exception {
+        showTitle("persistentClientAuthorizationsSameSession");
+
+        List<ResponseType> responseTypes = Arrays.asList(ResponseType.CODE, ResponseType.ID_TOKEN);
+
+        // 1. Register client
+        RegisterRequest registerRequest = new RegisterRequest(ApplicationType.WEB, "oxAuth test app",
+                StringUtils.spaceSeparatedToList(redirectUris));
+        registerRequest.setResponseTypes(responseTypes);
+        registerRequest.setSectorIdentifierUri(sectorIdentifierUri);
+
+        RegisterClient registerClient = new RegisterClient(registrationEndpoint);
+        registerClient.setRequest(registerRequest);
+        RegisterResponse registerResponse = registerClient.exec();
+
+        showClient(registerClient);
+        assertEquals(registerResponse.getStatus(), 200, "Unexpected response code: " + registerResponse.getEntity());
+        assertNotNull(registerResponse.getClientId());
+        assertNotNull(registerResponse.getClientSecret());
+        assertNotNull(registerResponse.getRegistrationAccessToken());
+        assertNotNull(registerResponse.getClientIdIssuedAt());
+        assertNotNull(registerResponse.getClientSecretExpiresAt());
+
+        String clientId = registerResponse.getClientId();
+        String clientSecret = registerResponse.getClientSecret();
+
+        String sessionId = null;
+        {
+            // 2. Request authorization
+            // Scopes: openid, profile
+            // Authenticate user with login password then authorize.
+            List<String> scopes = Arrays.asList("openid", "profile");
+            String nonce = UUID.randomUUID().toString();
+            String state = UUID.randomUUID().toString();
+
+            AuthorizationRequest authorizationRequest = new AuthorizationRequest(responseTypes, clientId, scopes, redirectUri, nonce);
+            authorizationRequest.setState(state);
+
+            AuthorizationResponse authorizationResponse = authenticateResourceOwnerAndGrantAccess(
+                    authorizationEndpoint, authorizationRequest, userId, userSecret);
+
+            assertNotNull(authorizationResponse.getLocation());
+            assertNotNull(authorizationResponse.getCode());
+            assertNotNull(authorizationResponse.getIdToken());
+            assertNotNull(authorizationResponse.getState());
+
+            String authorizationCode = authorizationResponse.getCode();
+            sessionId = authorizationResponse.getSessionId();
+
+            // 3. Request access token using the authorization code.
+            TokenRequest tokenRequest = new TokenRequest(GrantType.AUTHORIZATION_CODE);
+            tokenRequest.setCode(authorizationCode);
+            tokenRequest.setRedirectUri(redirectUri);
+            tokenRequest.setAuthUsername(clientId);
+            tokenRequest.setAuthPassword(clientSecret);
+            tokenRequest.setAuthenticationMethod(AuthenticationMethod.CLIENT_SECRET_BASIC);
+
+            TokenClient tokenClient = new TokenClient(tokenEndpoint);
+            tokenClient.setRequest(tokenRequest);
+            TokenResponse tokenResponse = tokenClient.exec();
+
+            showClient(tokenClient);
+            assertEquals(tokenResponse.getStatus(), 200, "Unexpected response code: " + tokenResponse.getStatus());
+            assertNotNull(tokenResponse.getEntity());
+            assertNotNull(tokenResponse.getAccessToken());
+            assertNotNull(tokenResponse.getExpiresIn());
+            assertNotNull(tokenResponse.getTokenType());
+            assertNotNull(tokenResponse.getRefreshToken());
+        }
+
+        {
+            // 4. Request authorization
+            // Scopes: openid, profile
+            // Do not show authorize page because those scopes are already authorized.
+            List<String> scopes = Arrays.asList("openid", "profile");
+            String nonce = UUID.randomUUID().toString();
+            String state = UUID.randomUUID().toString();
+
+            AuthorizationRequest authorizationRequest = new AuthorizationRequest(responseTypes, clientId, scopes, redirectUri, nonce);
+            authorizationRequest.setState(state);
+            authorizationRequest.setSessionId(sessionId);
+
+            AuthorizationResponse authorizationResponse = authenticateResourceOwner(
+                    authorizationEndpoint, authorizationRequest, null, null, false);
+
+            assertNotNull(authorizationResponse.getLocation());
+            assertNotNull(authorizationResponse.getCode());
+            assertNotNull(authorizationResponse.getIdToken());
+            assertNotNull(authorizationResponse.getState());
+
+            String authorizationCode = authorizationResponse.getCode();
+
+            // 5. Request access token using the authorization code.
+            TokenRequest tokenRequest = new TokenRequest(GrantType.AUTHORIZATION_CODE);
+            tokenRequest.setCode(authorizationCode);
+            tokenRequest.setRedirectUri(redirectUri);
+            tokenRequest.setAuthUsername(clientId);
+            tokenRequest.setAuthPassword(clientSecret);
+            tokenRequest.setAuthenticationMethod(AuthenticationMethod.CLIENT_SECRET_BASIC);
+
+            TokenClient tokenClient = new TokenClient(tokenEndpoint);
+            tokenClient.setRequest(tokenRequest);
+            TokenResponse tokenResponse = tokenClient.exec();
+
+            showClient(tokenClient);
+            assertEquals(tokenResponse.getStatus(), 200, "Unexpected response code: " + tokenResponse.getStatus());
+            assertNotNull(tokenResponse.getEntity());
+            assertNotNull(tokenResponse.getAccessToken());
+            assertNotNull(tokenResponse.getExpiresIn());
+            assertNotNull(tokenResponse.getTokenType());
+            assertNotNull(tokenResponse.getRefreshToken());
+        }
+
+        {
+            // 6. Request authorization
+            // Scopes: openid, address, email
+            // Shows authorize page because some scopes are not yet authorized.
+            List<String> scopes = Arrays.asList("openid", "address", "email");
+            String nonce = UUID.randomUUID().toString();
+            String state = UUID.randomUUID().toString();
+
+            AuthorizationRequest authorizationRequest = new AuthorizationRequest(responseTypes, clientId, scopes, redirectUri, nonce);
+            authorizationRequest.setState(state);
+            authorizationRequest.setSessionId(sessionId);
+
+            AuthorizationResponse authorizationResponse = authenticateResourceOwnerAndGrantAccess(
+                    authorizationEndpoint, authorizationRequest, null, null, false);
+
+            assertNotNull(authorizationResponse.getLocation());
+            assertNotNull(authorizationResponse.getCode());
+            assertNotNull(authorizationResponse.getIdToken());
+            assertNotNull(authorizationResponse.getState());
+
+            String authorizationCode = authorizationResponse.getCode();
+
+            // 7. Request access token using the authorization code.
+            TokenRequest tokenRequest = new TokenRequest(GrantType.AUTHORIZATION_CODE);
+            tokenRequest.setCode(authorizationCode);
+            tokenRequest.setRedirectUri(redirectUri);
+            tokenRequest.setAuthUsername(clientId);
+            tokenRequest.setAuthPassword(clientSecret);
+            tokenRequest.setAuthenticationMethod(AuthenticationMethod.CLIENT_SECRET_BASIC);
+
+            TokenClient tokenClient = new TokenClient(tokenEndpoint);
+            tokenClient.setRequest(tokenRequest);
+            TokenResponse tokenResponse = tokenClient.exec();
+
+            showClient(tokenClient);
+            assertEquals(tokenResponse.getStatus(), 200, "Unexpected response code: " + tokenResponse.getStatus());
+            assertNotNull(tokenResponse.getEntity());
+            assertNotNull(tokenResponse.getAccessToken());
+            assertNotNull(tokenResponse.getExpiresIn());
+            assertNotNull(tokenResponse.getTokenType());
+            assertNotNull(tokenResponse.getRefreshToken());
+        }
+
+        {
+            // 8. Request authorization
+            // Scopes: openid, profile, address, email
+            // Do not show authorize page because those scopes are already authorized.
+            List<String> scopes = Arrays.asList("openid", "profile", "address", "email");
+            String nonce = UUID.randomUUID().toString();
+            String state = UUID.randomUUID().toString();
+
+            AuthorizationRequest authorizationRequest = new AuthorizationRequest(responseTypes, clientId, scopes, redirectUri, nonce);
+            authorizationRequest.setState(state);
+            authorizationRequest.setSessionId(sessionId);
+
+            AuthorizationResponse authorizationResponse = authenticateResourceOwner(
+                    authorizationEndpoint, authorizationRequest, null, null, false);
+
+            assertNotNull(authorizationResponse.getLocation());
+            assertNotNull(authorizationResponse.getCode());
+            assertNotNull(authorizationResponse.getIdToken());
+            assertNotNull(authorizationResponse.getState());
+
+            String authorizationCode = authorizationResponse.getCode();
+
+            // 9. Request access token using the authorization code.
+            TokenRequest tokenRequest = new TokenRequest(GrantType.AUTHORIZATION_CODE);
+            tokenRequest.setCode(authorizationCode);
+            tokenRequest.setRedirectUri(redirectUri);
+            tokenRequest.setAuthUsername(clientId);
+            tokenRequest.setAuthPassword(clientSecret);
+            tokenRequest.setAuthenticationMethod(AuthenticationMethod.CLIENT_SECRET_BASIC);
+
+            TokenClient tokenClient = new TokenClient(tokenEndpoint);
+            tokenClient.setRequest(tokenRequest);
+            TokenResponse tokenResponse = tokenClient.exec();
+
+            showClient(tokenClient);
+            assertEquals(tokenResponse.getStatus(), 200, "Unexpected response code: " + tokenResponse.getStatus());
+            assertNotNull(tokenResponse.getEntity());
+            assertNotNull(tokenResponse.getAccessToken());
+            assertNotNull(tokenResponse.getExpiresIn());
+            assertNotNull(tokenResponse.getTokenType());
+            assertNotNull(tokenResponse.getRefreshToken());
+        }
+    }
+
+    @Parameters({"userId", "userSecret", "redirectUris", "redirectUri", "sectorIdentifierUri"})
+    @Test
+    public void doNotPersistAuthorizationWhenPreAuthorized(
+            final String userId, final String userSecret, final String redirectUris, final String redirectUri,
+            final String sectorIdentifierUri) throws Exception {
+        showTitle("doNotPersistAuthorizationWhenPreAuthorized");
+
+        List<ResponseType> responseTypes = Arrays.asList(ResponseType.CODE, ResponseType.ID_TOKEN);
+
+        // 1. Register client
+        RegisterRequest registerRequest = new RegisterRequest(ApplicationType.WEB, "oxAuth test app",
+                StringUtils.spaceSeparatedToList(redirectUris));
+        registerRequest.setResponseTypes(responseTypes);
+        registerRequest.setSectorIdentifierUri(sectorIdentifierUri);
+        registerRequest.addCustomAttribute("oxAuthTrustedClient", "true");
+
+        RegisterClient registerClient = new RegisterClient(registrationEndpoint);
+        registerClient.setRequest(registerRequest);
+        RegisterResponse registerResponse = registerClient.exec();
+
+        showClient(registerClient);
+        assertEquals(registerResponse.getStatus(), 200, "Unexpected response code: " + registerResponse.getEntity());
+        assertNotNull(registerResponse.getClientId());
+        assertNotNull(registerResponse.getClientSecret());
+        assertNotNull(registerResponse.getRegistrationAccessToken());
+        assertNotNull(registerResponse.getClientIdIssuedAt());
+        assertNotNull(registerResponse.getClientSecretExpiresAt());
+
+        String clientId = registerResponse.getClientId();
+        String clientSecret = registerResponse.getClientSecret();
+
+        // 2. Request authorization
+        // Scopes: openid, profile
+        // Authenticate user with login password, do not show authorize page because the client is pre-authorized.
+        List<String> scopes = Arrays.asList("openid", "profile");
+        String nonce = UUID.randomUUID().toString();
+        String state = UUID.randomUUID().toString();
+
+        AuthorizationRequest authorizationRequest = new AuthorizationRequest(responseTypes, clientId, scopes, redirectUri, nonce);
+        authorizationRequest.setState(state);
+
+        AuthorizationResponse authorizationResponse = authenticateResourceOwner(
+                authorizationEndpoint, authorizationRequest, userId, userSecret, false);
+
+        assertNotNull(authorizationResponse.getLocation());
+        assertNotNull(authorizationResponse.getCode());
+        assertNotNull(authorizationResponse.getIdToken());
+        assertNotNull(authorizationResponse.getState());
+
+        String authorizationCode = authorizationResponse.getCode();
+
+        // 3. Request access token using the authorization code.
+        TokenRequest tokenRequest = new TokenRequest(GrantType.AUTHORIZATION_CODE);
+        tokenRequest.setCode(authorizationCode);
+        tokenRequest.setRedirectUri(redirectUri);
+        tokenRequest.setAuthUsername(clientId);
+        tokenRequest.setAuthPassword(clientSecret);
+        tokenRequest.setAuthenticationMethod(AuthenticationMethod.CLIENT_SECRET_BASIC);
+
+        TokenClient tokenClient = new TokenClient(tokenEndpoint);
+        tokenClient.setRequest(tokenRequest);
+        TokenResponse tokenResponse = tokenClient.exec();
+
+        showClient(tokenClient);
+        assertEquals(tokenResponse.getStatus(), 200, "Unexpected response code: " + tokenResponse.getStatus());
+        assertNotNull(tokenResponse.getEntity());
+        assertNotNull(tokenResponse.getAccessToken());
+        assertNotNull(tokenResponse.getExpiresIn());
+        assertNotNull(tokenResponse.getTokenType());
+        assertNotNull(tokenResponse.getRefreshToken());
+    }
+}
diff --git a/oxAuth/Client/src/test/java/org/gluu/oxauth/ws/rs/PkceHttpTest.java b/oxAuth/Client/src/test/java/org/gluu/oxauth/ws/rs/PkceHttpTest.java
new file mode 100644
index 00000000..f3e05337
--- /dev/null
+++ b/oxAuth/Client/src/test/java/org/gluu/oxauth/ws/rs/PkceHttpTest.java
@@ -0,0 +1,216 @@
+/*
+ * oxAuth is available under the MIT License (2008). See http://opensource.org/licenses/MIT for full text.
+ *
+ * Copyright (c) 2014, Gluu
+ */
+
+package org.gluu.oxauth.ws.rs;
+
+import static org.gluu.oxauth.client.Asserter.assertOk;
+import static org.testng.Assert.assertEquals;
+import static org.testng.Assert.assertNotNull;
+import static org.testng.Assert.assertNull;
+import static org.testng.Assert.assertTrue;
+
+import java.util.Arrays;
+import java.util.List;
+import java.util.UUID;
+
+import org.gluu.oxauth.BaseTest;
+import org.gluu.oxauth.client.AuthorizationRequest;
+import org.gluu.oxauth.client.AuthorizationResponse;
+import org.gluu.oxauth.client.JwkClient;
+import org.gluu.oxauth.client.RegisterClient;
+import org.gluu.oxauth.client.RegisterRequest;
+import org.gluu.oxauth.client.RegisterResponse;
+import org.gluu.oxauth.client.TokenClient;
+import org.gluu.oxauth.client.TokenRequest;
+import org.gluu.oxauth.client.TokenResponse;
+import org.gluu.oxauth.model.authorize.CodeVerifier;
+import org.gluu.oxauth.model.common.AuthenticationMethod;
+import org.gluu.oxauth.model.common.GrantType;
+import org.gluu.oxauth.model.common.ResponseType;
+import org.gluu.oxauth.model.crypto.signature.RSAPublicKey;
+import org.gluu.oxauth.model.crypto.signature.SignatureAlgorithm;
+import org.gluu.oxauth.model.jws.RSASigner;
+import org.gluu.oxauth.model.jwt.Jwt;
+import org.gluu.oxauth.model.jwt.JwtClaimName;
+import org.gluu.oxauth.model.jwt.JwtHeaderName;
+import org.gluu.oxauth.model.register.ApplicationType;
+import org.gluu.oxauth.model.util.StringUtils;
+import org.testng.annotations.Parameters;
+import org.testng.annotations.Test;
+
+/**
+ * @author Yuriy Zabrovarnyy
+ * @author Javier Rojas Blum
+ * @version March 3, 2017
+ */
+
+public class PkceHttpTest extends BaseTest {
+
+    @Parameters({"redirectUris", "userId", "userSecret", "redirectUri", "sectorIdentifierUri"})
+    @Test
+    public void tokenWithPkceCheck(
+            final String redirectUris, final String userId, final String userSecret, final String redirectUri,
+            final String sectorIdentifierUri) throws Exception {
+        showTitle("tokenWithPkceCheck");
+
+        // 1. Register client
+        List<ResponseType> responseTypes = Arrays.asList(ResponseType.CODE, ResponseType.ID_TOKEN);
+
+        RegisterRequest registerRequest = new RegisterRequest(ApplicationType.WEB, "oxAuth test app",
+                StringUtils.spaceSeparatedToList(redirectUris));
+        registerRequest.setTokenEndpointAuthMethod(AuthenticationMethod.CLIENT_SECRET_POST);
+        registerRequest.setSectorIdentifierUri(sectorIdentifierUri);
+        registerRequest.setResponseTypes(responseTypes);
+
+        RegisterClient registerClient = new RegisterClient(registrationEndpoint);
+        registerClient.setRequest(registerRequest);
+        RegisterResponse registerResponse = registerClient.exec();
+
+        showClient(registerClient);
+        assertOk(registerResponse);
+        assertNotNull(registerResponse.getRegistrationAccessToken());
+
+        // 3. Request authorization
+        List<String> scopes = Arrays.asList(
+                "openid",
+                "profile",
+                "address",
+                "email");
+        String state = UUID.randomUUID().toString();
+        String nonce = UUID.randomUUID().toString();
+
+        AuthorizationRequest authorizationRequest = new AuthorizationRequest(responseTypes, registerResponse.getClientId(), scopes, redirectUri, nonce);
+        authorizationRequest.setState(state);
+        CodeVerifier verifier = authorizationRequest.generateAndSetCodeChallengeWithMethod();
+
+        AuthorizationResponse authorizationResponse = authenticateResourceOwnerAndGrantAccess(
+                authorizationEndpoint, authorizationRequest, userId, userSecret);
+
+        assertNotNull(authorizationResponse.getLocation(), "The location is null");
+        assertNotNull(authorizationResponse.getCode(), "The authorization code is null");
+        assertNotNull(authorizationResponse.getIdToken(), "The ID Token is null");
+        assertNotNull(authorizationResponse.getState(), "The state is null");
+        assertNotNull(authorizationResponse.getScope(), "The scope is null");
+
+        String authorizationCode = authorizationResponse.getCode();
+        String idToken = authorizationResponse.getIdToken();
+
+        // 4. Validate id_token
+        Jwt jwt = Jwt.parse(idToken);
+        assertNotNull(jwt.getHeader().getClaimAsString(JwtHeaderName.TYPE));
+        assertNotNull(jwt.getHeader().getClaimAsString(JwtHeaderName.ALGORITHM));
+        assertNotNull(jwt.getClaims().getClaimAsString(JwtClaimName.ISSUER));
+        assertNotNull(jwt.getClaims().getClaimAsString(JwtClaimName.AUDIENCE));
+        assertNotNull(jwt.getClaims().getClaimAsString(JwtClaimName.EXPIRATION_TIME));
+        assertNotNull(jwt.getClaims().getClaimAsString(JwtClaimName.ISSUED_AT));
+        assertNotNull(jwt.getClaims().getClaimAsString(JwtClaimName.SUBJECT_IDENTIFIER));
+        assertNotNull(jwt.getClaims().getClaimAsString(JwtClaimName.CODE_HASH));
+        assertNotNull(jwt.getClaims().getClaimAsString(JwtClaimName.AUTHENTICATION_TIME));
+
+        RSAPublicKey publicKey = JwkClient.getRSAPublicKey(
+                jwksUri,
+                jwt.getHeader().getClaimAsString(JwtHeaderName.KEY_ID));
+        RSASigner rsaSigner = new RSASigner(SignatureAlgorithm.RS256, publicKey);
+
+        assertTrue(rsaSigner.validate(jwt));
+
+        // 5. Get Access Token
+        TokenRequest tokenRequest = new TokenRequest(GrantType.AUTHORIZATION_CODE);
+        tokenRequest.setCode(authorizationCode);
+        tokenRequest.setRedirectUri(redirectUri);
+        tokenRequest.setAuthUsername(registerResponse.getClientId());
+        tokenRequest.setAuthPassword(registerResponse.getClientSecret());
+        tokenRequest.setAuthenticationMethod(AuthenticationMethod.CLIENT_SECRET_POST);
+        tokenRequest.setCodeVerifier(verifier.getCodeVerifier());
+
+        TokenClient tokenClient = new TokenClient(tokenEndpoint);
+        tokenClient.setRequest(tokenRequest);
+        TokenResponse tokenResponse = tokenClient.exec();
+
+        showClient(tokenClient);
+        assertEquals(tokenResponse.getStatus(), 200, "Unexpected response code: " + tokenResponse.getStatus());
+        assertNotNull(tokenResponse.getEntity(), "The entity is null");
+        assertNotNull(tokenResponse.getAccessToken(), "The access token is null");
+        assertNotNull(tokenResponse.getExpiresIn(), "The expires in value is null");
+        assertNotNull(tokenResponse.getTokenType(), "The token type is null");
+        assertNotNull(tokenResponse.getRefreshToken(), "The refresh token is null");
+
+    }
+
+    @Parameters({"redirectUris", "userId", "userSecret", "redirectUri", "sectorIdentifierUri"})
+    @Test
+    public void invalidCodeVerifier(
+            final String redirectUris, final String userId, final String userSecret, final String redirectUri,
+            final String sectorIdentifierUri) throws Exception {
+        showTitle("invalidCodeVerifier");
+
+        // 1. Register client
+        RegisterRequest registerRequest = new RegisterRequest(ApplicationType.WEB, "oxAuth test app",
+                StringUtils.spaceSeparatedToList(redirectUris));
+        registerRequest.setTokenEndpointAuthMethod(AuthenticationMethod.CLIENT_SECRET_POST);
+        registerRequest.setSectorIdentifierUri(sectorIdentifierUri);
+
+        RegisterClient registerClient = new RegisterClient(registrationEndpoint);
+        registerClient.setRequest(registerRequest);
+        RegisterResponse registerResponse = registerClient.exec();
+
+        showClient(registerClient);
+        assertOk(registerResponse);
+        assertNotNull(registerResponse.getRegistrationAccessToken());
+
+        // 3. Request authorization
+        List<ResponseType> responseTypes = Arrays.asList(ResponseType.CODE);
+        List<String> scopes = Arrays.asList(
+                "openid",
+                "profile",
+                "address",
+                "email");
+        String state = UUID.randomUUID().toString();
+
+        AuthorizationRequest authorizationRequest = new AuthorizationRequest(responseTypes, registerResponse.getClientId(), scopes, redirectUri, null);
+        authorizationRequest.setState(state);
+        authorizationRequest.generateAndSetCodeChallengeWithMethod(); // PKCE is set !!!
+
+        AuthorizationResponse authorizationResponse = authenticateResourceOwnerAndGrantAccess(
+                authorizationEndpoint, authorizationRequest, userId, userSecret);
+
+        assertNotNull(authorizationResponse.getLocation(), "The location is null");
+        assertNotNull(authorizationResponse.getCode(), "The authorization code is null");
+        assertNotNull(authorizationResponse.getState(), "The state is null");
+        assertNotNull(authorizationResponse.getScope(), "The scope is null");
+        assertNull(authorizationResponse.getIdToken(), "The id token is not null");
+
+        String authorizationCode = authorizationResponse.getCode();
+
+        // 4. Get Access Token with invalid code verifier
+        TokenRequest tokenRequest = new TokenRequest(GrantType.AUTHORIZATION_CODE);
+        tokenRequest.setCode(authorizationCode);
+        tokenRequest.setRedirectUri(redirectUri);
+        tokenRequest.setAuthUsername(registerResponse.getClientId());
+        tokenRequest.setAuthPassword(registerResponse.getClientSecret());
+        tokenRequest.setAuthenticationMethod(AuthenticationMethod.CLIENT_SECRET_POST);
+        tokenRequest.setCodeVerifier("invalid_code_verifier");
+
+        TokenClient tokenClient = new TokenClient(tokenEndpoint);
+        tokenClient.setRequest(tokenRequest);
+        TokenResponse tokenResponse = tokenClient.exec();
+
+        showClient(tokenClient);
+        assertEquals(tokenResponse.getStatus(), 401, "Unexpected response code: " + tokenResponse.getStatus());
+        assertNull(tokenResponse.getAccessToken(), "The access token is null");
+
+        // 5. Get Access Token without code verifier
+        tokenRequest.setCodeVerifier(null);
+
+        tokenClient.setRequest(tokenRequest);
+        tokenResponse = tokenClient.exec();
+
+        showClient(tokenClient);
+        assertEquals(tokenResponse.getStatus(), 401, "Unexpected response code: " + tokenResponse.getStatus());
+        assertNull(tokenResponse.getAccessToken(), "The access token is null");
+
+    }
+}
diff --git a/oxAuth/Client/src/test/java/org/gluu/oxauth/ws/rs/RegistrationRestWebServiceHttpTest.java b/oxAuth/Client/src/test/java/org/gluu/oxauth/ws/rs/RegistrationRestWebServiceHttpTest.java
new file mode 100644
index 00000000..b756e197
--- /dev/null
+++ b/oxAuth/Client/src/test/java/org/gluu/oxauth/ws/rs/RegistrationRestWebServiceHttpTest.java
@@ -0,0 +1,699 @@
+/*
+ * oxAuth is available under the MIT License (2008). See http://opensource.org/licenses/MIT for full text.
+ *
+ * Copyright (c) 2014, Gluu
+ */
+
+package org.gluu.oxauth.ws.rs;
+
+import static org.gluu.oxauth.model.common.GrantType.AUTHORIZATION_CODE;
+import static org.gluu.oxauth.model.common.GrantType.CLIENT_CREDENTIALS;
+import static org.gluu.oxauth.model.common.GrantType.IMPLICIT;
+import static org.gluu.oxauth.model.common.GrantType.OXAUTH_UMA_TICKET;
+import static org.gluu.oxauth.model.common.GrantType.REFRESH_TOKEN;
+import static org.gluu.oxauth.model.common.GrantType.RESOURCE_OWNER_PASSWORD_CREDENTIALS;
+import static org.gluu.oxauth.model.common.ResponseType.CODE;
+import static org.gluu.oxauth.model.common.ResponseType.ID_TOKEN;
+import static org.gluu.oxauth.model.common.ResponseType.TOKEN;
+import static org.gluu.oxauth.model.register.RegisterRequestParam.ACCESS_TOKEN_AS_JWT;
+import static org.gluu.oxauth.model.register.RegisterRequestParam.ACCESS_TOKEN_SIGNING_ALG;
+import static org.gluu.oxauth.model.register.RegisterRequestParam.APPLICATION_TYPE;
+import static org.gluu.oxauth.model.register.RegisterRequestParam.BACKCHANNEL_LOGOUT_SESSION_REQUIRED;
+import static org.gluu.oxauth.model.register.RegisterRequestParam.BACKCHANNEL_LOGOUT_URI;
+import static org.gluu.oxauth.model.register.RegisterRequestParam.CLIENT_NAME;
+import static org.gluu.oxauth.model.register.RegisterRequestParam.CONTACTS;
+import static org.gluu.oxauth.model.register.RegisterRequestParam.FRONT_CHANNEL_LOGOUT_SESSION_REQUIRED;
+import static org.gluu.oxauth.model.register.RegisterRequestParam.FRONT_CHANNEL_LOGOUT_URI;
+import static org.gluu.oxauth.model.register.RegisterRequestParam.ID_TOKEN_ENCRYPTED_RESPONSE_ALG;
+import static org.gluu.oxauth.model.register.RegisterRequestParam.ID_TOKEN_ENCRYPTED_RESPONSE_ENC;
+import static org.gluu.oxauth.model.register.RegisterRequestParam.ID_TOKEN_SIGNED_RESPONSE_ALG;
+import static org.gluu.oxauth.model.register.RegisterRequestParam.JWKS_URI;
+import static org.gluu.oxauth.model.register.RegisterRequestParam.LOGO_URI;
+import static org.gluu.oxauth.model.register.RegisterRequestParam.POLICY_URI;
+import static org.gluu.oxauth.model.register.RegisterRequestParam.REDIRECT_URIS;
+import static org.gluu.oxauth.model.register.RegisterRequestParam.REQUEST_OBJECT_ENCRYPTION_ALG;
+import static org.gluu.oxauth.model.register.RegisterRequestParam.REQUEST_OBJECT_ENCRYPTION_ENC;
+import static org.gluu.oxauth.model.register.RegisterRequestParam.REQUEST_OBJECT_SIGNING_ALG;
+import static org.gluu.oxauth.model.register.RegisterRequestParam.REQUEST_URIS;
+import static org.gluu.oxauth.model.register.RegisterRequestParam.REQUIRE_AUTH_TIME;
+import static org.gluu.oxauth.model.register.RegisterRequestParam.RPT_AS_JWT;
+import static org.gluu.oxauth.model.register.RegisterRequestParam.SCOPE;
+import static org.gluu.oxauth.model.register.RegisterRequestParam.SECTOR_IDENTIFIER_URI;
+import static org.gluu.oxauth.model.register.RegisterRequestParam.SOFTWARE_ID;
+import static org.gluu.oxauth.model.register.RegisterRequestParam.SOFTWARE_VERSION;
+import static org.gluu.oxauth.model.register.RegisterRequestParam.SUBJECT_TYPE;
+import static org.gluu.oxauth.model.register.RegisterRequestParam.TOKEN_ENDPOINT_AUTH_METHOD;
+import static org.gluu.oxauth.model.register.RegisterRequestParam.TOKEN_ENDPOINT_AUTH_SIGNING_ALG;
+import static org.gluu.oxauth.model.register.RegisterRequestParam.USERINFO_ENCRYPTED_RESPONSE_ALG;
+import static org.gluu.oxauth.model.register.RegisterRequestParam.USERINFO_ENCRYPTED_RESPONSE_ENC;
+import static org.gluu.oxauth.model.register.RegisterRequestParam.USERINFO_SIGNED_RESPONSE_ALG;
+import static org.testng.Assert.assertEquals;
+import static org.testng.Assert.assertNotNull;
+import static org.testng.Assert.assertTrue;
+
+import java.util.ArrayList;
+import java.util.Arrays;
+import java.util.Collections;
+import java.util.List;
+import java.util.UUID;
+
+import javax.ws.rs.HttpMethod;
+
+import org.gluu.oxauth.BaseTest;
+import org.gluu.oxauth.client.RegisterClient;
+import org.gluu.oxauth.client.RegisterRequest;
+import org.gluu.oxauth.client.RegisterResponse;
+import org.gluu.oxauth.model.common.AuthenticationMethod;
+import org.gluu.oxauth.model.common.GrantType;
+import org.gluu.oxauth.model.common.ResponseType;
+import org.gluu.oxauth.model.common.SubjectType;
+import org.gluu.oxauth.model.crypto.encryption.BlockEncryptionAlgorithm;
+import org.gluu.oxauth.model.crypto.encryption.KeyEncryptionAlgorithm;
+import org.gluu.oxauth.model.crypto.signature.SignatureAlgorithm;
+import org.gluu.oxauth.model.register.ApplicationType;
+import org.gluu.oxauth.model.util.StringUtils;
+import org.gluu.oxauth.model.util.Util;
+import org.json.JSONArray;
+import org.testng.annotations.Parameters;
+import org.testng.annotations.Test;
+
+import com.google.common.collect.Lists;
+
+/**
+ * Functional tests for Client Registration Web Services (HTTP)
+ *
+ * @author Javier Rojas Blum
+ * @author Yuriy Zabrovarnyy
+ * @version May 28, 2020
+ */
+public class RegistrationRestWebServiceHttpTest extends BaseTest {
+
+    private String registrationAccessToken1;
+    private String registrationClientUri1;
+    private String registrationAccessToken2;
+    private String registrationClientUri2;
+
+    @Parameters({"redirectUris", "sectorIdentifierUri"})
+    @Test
+    public void requestClientAssociate1(final String redirectUris, final String sectorIdentifierUri) throws Exception {
+        showTitle("requestClientAssociate1");
+
+        // 1. Register Client
+        RegisterRequest registerRequest = new RegisterRequest(ApplicationType.WEB, "oxAuth test app",
+                StringUtils.spaceSeparatedToList(redirectUris));
+        registerRequest.setSectorIdentifierUri(sectorIdentifierUri);
+        registerRequest.setGrantTypes(Arrays.asList(
+                AUTHORIZATION_CODE,
+                IMPLICIT,
+                RESOURCE_OWNER_PASSWORD_CREDENTIALS,
+                CLIENT_CREDENTIALS,
+                REFRESH_TOKEN,
+                OXAUTH_UMA_TICKET));
+        registerRequest.setResponseTypes(Arrays.asList(
+                CODE,
+                TOKEN,
+                ID_TOKEN
+        ));
+
+        RegisterClient registerClient = new RegisterClient(registrationEndpoint);
+        registerClient.setRequest(registerRequest);
+        RegisterResponse registerResponse = registerClient.exec();
+
+        showClient(registerClient);
+        assertEquals(registerResponse.getStatus(), 200, "Unexpected response code: " + registerResponse.getEntity());
+        assertNotNull(registerResponse.getClientId());
+        assertNotNull(registerResponse.getClientSecret());
+        assertNotNull(registerResponse.getRegistrationAccessToken());
+        assertNotNull(registerResponse.getClientSecretExpiresAt());
+
+        String registrationAccessToken = registerResponse.getRegistrationAccessToken();
+        String registrationClientUri = registerResponse.getRegistrationClientUri();
+
+        // 2. Client Update
+        String newClientName = "New Client Name";
+
+        RegisterRequest clientUpdateRequest = new RegisterRequest(registrationAccessToken);
+        clientUpdateRequest.setHttpMethod(HttpMethod.PUT);
+        clientUpdateRequest.setClientName(newClientName);
+
+        RegisterClient clientUpdateClient = new RegisterClient(registrationClientUri);
+        clientUpdateClient.setRequest(clientUpdateRequest);
+        RegisterResponse clientUpdateResponse = clientUpdateClient.exec();
+
+        showClient(clientUpdateClient);
+        assertEquals(clientUpdateResponse.getStatus(), 200, "Unexpected response code: " + clientUpdateResponse.getEntity());
+        assertEquals(clientUpdateResponse.getClaims().get(CLIENT_NAME.toString()), newClientName);
+        assertEquals(clientUpdateResponse.getClientId(), registerResponse.getClientId());
+        assertEquals(clientUpdateResponse.getClientSecret(), registerResponse.getClientSecret());
+        assertEquals(clientUpdateResponse.getRegistrationAccessToken(), registerResponse.getRegistrationAccessToken());
+        assertEquals(clientUpdateResponse.getRegistrationClientUri(), registerResponse.getRegistrationClientUri());
+        assertEquals(clientUpdateResponse.getClientIdIssuedAt(), registerResponse.getClientIdIssuedAt());
+        assertEquals(clientUpdateResponse.getClientSecretExpiresAt(), registerResponse.getClientSecretExpiresAt());
+        assertEquals(clientUpdateResponse.getResponseTypes(), registerResponse.getResponseTypes());
+        assertEquals(clientUpdateResponse.getGrantTypes(), registerResponse.getGrantTypes());
+        assertEquals(clientUpdateResponse.getClaims().get(REDIRECT_URIS.toString()), registerResponse.getClaims().get(REDIRECT_URIS.toString()));
+        assertEquals(clientUpdateResponse.getClaims().get(APPLICATION_TYPE.toString()), registerResponse.getClaims().get(APPLICATION_TYPE.toString()));
+        assertEquals(clientUpdateResponse.getClaims().get(SECTOR_IDENTIFIER_URI.toString()), registerResponse.getClaims().get(SECTOR_IDENTIFIER_URI.toString()));
+        assertEquals(clientUpdateResponse.getClaims().get(SUBJECT_TYPE.toString()), registerResponse.getClaims().get(SUBJECT_TYPE.toString()));
+        assertEquals(clientUpdateResponse.getClaims().get(ID_TOKEN_SIGNED_RESPONSE_ALG.toString()), registerResponse.getClaims().get(ID_TOKEN_SIGNED_RESPONSE_ALG.toString()));
+        assertEquals(clientUpdateResponse.getClaims().get(TOKEN_ENDPOINT_AUTH_METHOD.toString()), registerResponse.getClaims().get(TOKEN_ENDPOINT_AUTH_METHOD.toString()));
+        assertEquals(clientUpdateResponse.getClaims().get(REQUIRE_AUTH_TIME.toString()), registerResponse.getClaims().get(REQUIRE_AUTH_TIME.toString()));
+        assertEquals(clientUpdateResponse.getClaims().get(RPT_AS_JWT.toString()), registerResponse.getClaims().get(RPT_AS_JWT.toString()));
+        assertEquals(clientUpdateResponse.getClaims().get(ACCESS_TOKEN_AS_JWT.toString()), registerResponse.getClaims().get(ACCESS_TOKEN_AS_JWT.toString()));
+        assertEquals(clientUpdateResponse.getClaims().get(ACCESS_TOKEN_SIGNING_ALG.toString()), registerResponse.getClaims().get(ACCESS_TOKEN_SIGNING_ALG.toString()));
+        assertEquals(clientUpdateResponse.getClaims().get(FRONT_CHANNEL_LOGOUT_SESSION_REQUIRED.toString()), registerResponse.getClaims().get(FRONT_CHANNEL_LOGOUT_SESSION_REQUIRED.toString()));
+
+        assertNotNull(clientUpdateResponse.getClaims().get(SCOPE.toString()));
+        assertNotNull(registerResponse.getClaims().get(SCOPE.toString()));
+
+        List<String> clientUpdateResponseScopes = Util.splittedStringAsList(clientUpdateResponse.getClaims().get(SCOPE.toString()), " ");
+        List<String> registerResponseScopes = Util.splittedStringAsList(registerResponse.getClaims().get(SCOPE.toString()), " ");
+        Collections.sort(clientUpdateResponseScopes);
+        Collections.sort(registerResponseScopes);
+		assertEquals(clientUpdateResponseScopes,registerResponseScopes);
+    }
+
+    @Parameters({"redirectUris", "sectorIdentifierUri", "logoutUri"})
+    @Test
+    public void requestClientAssociate2(final String redirectUris, final String sectorIdentifierUri,
+                                        final String logoutUri) throws Exception {
+        showTitle("requestClientAssociate2");
+
+        RegisterRequest registerRequest = new RegisterRequest(ApplicationType.WEB, "oxAuth test app",
+                StringUtils.spaceSeparatedToList(redirectUris));
+        registerRequest.setContacts(Arrays.asList("javier@gluu.org", "javier.rojas.blum@gmail.com"));
+        registerRequest.setScope(Arrays.asList("openid", "address", "profile", "email", "phone", "clientinfo", "invalid_scope"));
+        registerRequest.setLogoUri("http://www.gluu.org/wp-content/themes/gluursn/images/logo.png");
+        registerRequest.setTokenEndpointAuthMethod(AuthenticationMethod.CLIENT_SECRET_JWT);
+        registerRequest.setPolicyUri("http://www.gluu.org/policy");
+        registerRequest.setJwksUri("http://www.gluu.org/jwks");
+        registerRequest.setSectorIdentifierUri(sectorIdentifierUri);
+        registerRequest.setSubjectType(SubjectType.PAIRWISE);
+        registerRequest.setRequestUris(Arrays.asList("http://www.gluu.org/request"));
+        registerRequest.setFrontChannelLogoutUris(Lists.newArrayList(logoutUri));
+        registerRequest.setFrontChannelLogoutSessionRequired(true);
+        registerRequest.setBackchannelLogoutUris(Lists.newArrayList(logoutUri));
+        registerRequest.setBackchannelLogoutSessionRequired(true);
+        registerRequest.setIdTokenSignedResponseAlg(SignatureAlgorithm.RS512);
+        registerRequest.setIdTokenEncryptedResponseAlg(KeyEncryptionAlgorithm.RSA1_5);
+        registerRequest.setIdTokenEncryptedResponseEnc(BlockEncryptionAlgorithm.A128CBC_PLUS_HS256);
+        registerRequest.setUserInfoSignedResponseAlg(SignatureAlgorithm.RS384);
+        registerRequest.setUserInfoEncryptedResponseAlg(KeyEncryptionAlgorithm.A128KW);
+        registerRequest.setUserInfoEncryptedResponseEnc(BlockEncryptionAlgorithm.A128GCM);
+        registerRequest.setRequestObjectSigningAlg(SignatureAlgorithm.RS256);
+        registerRequest.setRequestObjectEncryptionAlg(KeyEncryptionAlgorithm.A256KW);
+        registerRequest.setRequestObjectEncryptionEnc(BlockEncryptionAlgorithm.A256CBC_PLUS_HS512);
+        registerRequest.setTokenEndpointAuthMethod(AuthenticationMethod.CLIENT_SECRET_JWT);
+        registerRequest.setTokenEndpointAuthSigningAlg(SignatureAlgorithm.ES256);
+
+        RegisterClient registerClient = new RegisterClient(registrationEndpoint);
+        registerClient.setRequest(registerRequest);
+        registerClient.setExecutor(clientEngine(true));
+        RegisterResponse response = registerClient.exec();
+
+        showClient(registerClient);
+        assertEquals(response.getStatus(), 200, "Unexpected response code: " + response.getEntity());
+        assertNotNull(response.getClientId());
+        assertNotNull(response.getClientSecret());
+        assertNotNull(response.getRegistrationAccessToken());
+        assertNotNull(response.getClientSecretExpiresAt());
+        assertNotNull(response.getClaims().get(SCOPE.toString()));
+        assertTrue(Boolean.parseBoolean(response.getClaims().get(BACKCHANNEL_LOGOUT_SESSION_REQUIRED.toString())));
+        assertEquals(logoutUri, new JSONArray(response.getClaims().get(BACKCHANNEL_LOGOUT_URI.toString())).getString(0));
+        assertNotNull(response.getClaims().get(FRONT_CHANNEL_LOGOUT_SESSION_REQUIRED.toString()));
+        assertTrue(Boolean.parseBoolean(response.getClaims().get(FRONT_CHANNEL_LOGOUT_SESSION_REQUIRED.toString())));
+        assertNotNull(response.getClaims().get(FRONT_CHANNEL_LOGOUT_URI.toString()));
+        assertEquals(logoutUri, new JSONArray(response.getClaims().get(FRONT_CHANNEL_LOGOUT_URI.toString())).getString(0));
+        assertNotNull(response.getClaims().get(ID_TOKEN_SIGNED_RESPONSE_ALG.toString()));
+        assertEquals(SignatureAlgorithm.RS512,
+                SignatureAlgorithm.fromString(response.getClaims().get(ID_TOKEN_SIGNED_RESPONSE_ALG.toString())));
+        assertNotNull(response.getClaims().get(ID_TOKEN_ENCRYPTED_RESPONSE_ALG.toString()));
+        assertEquals(KeyEncryptionAlgorithm.RSA1_5,
+                KeyEncryptionAlgorithm.fromName(response.getClaims().get(ID_TOKEN_ENCRYPTED_RESPONSE_ALG.toString())));
+        assertNotNull(response.getClaims().get(ID_TOKEN_ENCRYPTED_RESPONSE_ENC.toString()));
+        assertEquals(BlockEncryptionAlgorithm.A128CBC_PLUS_HS256,
+                BlockEncryptionAlgorithm.fromName(response.getClaims().get(ID_TOKEN_ENCRYPTED_RESPONSE_ENC.toString())));
+        assertNotNull(response.getClaims().get(USERINFO_SIGNED_RESPONSE_ALG.toString()));
+        assertEquals(SignatureAlgorithm.RS384,
+                SignatureAlgorithm.fromString(response.getClaims().get(USERINFO_SIGNED_RESPONSE_ALG.toString())));
+        assertNotNull(response.getClaims().get(USERINFO_ENCRYPTED_RESPONSE_ALG.toString()));
+        assertEquals(KeyEncryptionAlgorithm.A128KW,
+                KeyEncryptionAlgorithm.fromName(response.getClaims().get(USERINFO_ENCRYPTED_RESPONSE_ALG.toString())));
+        assertNotNull(response.getClaims().get(USERINFO_ENCRYPTED_RESPONSE_ENC.toString()));
+        assertEquals(BlockEncryptionAlgorithm.A128GCM,
+                BlockEncryptionAlgorithm.fromName(response.getClaims().get(USERINFO_ENCRYPTED_RESPONSE_ENC.toString())));
+        assertNotNull(response.getClaims().get(REQUEST_OBJECT_SIGNING_ALG.toString()));
+        assertEquals(SignatureAlgorithm.RS256,
+                SignatureAlgorithm.fromString(response.getClaims().get(REQUEST_OBJECT_SIGNING_ALG.toString())));
+        assertNotNull(response.getClaims().get(REQUEST_OBJECT_ENCRYPTION_ALG.toString()));
+        assertEquals(KeyEncryptionAlgorithm.A256KW,
+                KeyEncryptionAlgorithm.fromName(response.getClaims().get(REQUEST_OBJECT_ENCRYPTION_ALG.toString())));
+        assertNotNull(response.getClaims().get(REQUEST_OBJECT_ENCRYPTION_ENC.toString()));
+        assertEquals(BlockEncryptionAlgorithm.A256CBC_PLUS_HS512,
+                BlockEncryptionAlgorithm.fromName(response.getClaims().get(REQUEST_OBJECT_ENCRYPTION_ENC.toString())));
+        assertNotNull(response.getClaims().get(TOKEN_ENDPOINT_AUTH_METHOD.toString()));
+        assertEquals(AuthenticationMethod.CLIENT_SECRET_JWT,
+                AuthenticationMethod.fromString(response.getClaims().get(TOKEN_ENDPOINT_AUTH_METHOD.toString())));
+        assertNotNull(response.getClaims().get(TOKEN_ENDPOINT_AUTH_SIGNING_ALG.toString()));
+        assertEquals(SignatureAlgorithm.ES256,
+                SignatureAlgorithm.fromString(response.getClaims().get(TOKEN_ENDPOINT_AUTH_SIGNING_ALG.toString())));
+        JSONArray scopesJsonArray = new JSONArray(StringUtils.spaceSeparatedToList(response.getClaims().get(SCOPE.toString())));
+        List<String> scopes = new ArrayList<String>();
+        for (int i = 0; i < scopesJsonArray.length(); i++) {
+            scopes.add(scopesJsonArray.get(i).toString());
+        }
+        assertTrue(scopes.contains("openid"));
+        assertTrue(scopes.contains("address"));
+        assertTrue(scopes.contains("email"));
+        assertTrue(scopes.contains("profile"));
+        assertTrue(scopes.contains("phone"));
+        assertTrue(scopes.contains("clientinfo"));
+
+        registrationAccessToken1 = response.getRegistrationAccessToken();
+        registrationClientUri1 = response.getRegistrationClientUri();
+    }
+
+    @Parameters({"redirectUris", "sectorIdentifierUri"})
+    @Test
+    public void requestClientAssociate3(final String redirectUris, final String sectorIdentifierUri) throws Exception {
+        showTitle("requestClientAssociate3");
+        String softwareId = UUID.randomUUID().toString();
+        String softwareVersion = "version_3.1.5";
+        RegisterRequest registerRequest = new RegisterRequest(ApplicationType.WEB, "oxAuth test app",
+                StringUtils.spaceSeparatedToList(redirectUris));
+        registerRequest.setSectorIdentifierUri(sectorIdentifierUri);
+        registerRequest.setSoftwareId(softwareId);
+        registerRequest.setSoftwareVersion(softwareVersion);
+        RegisterClient registerClient = new RegisterClient(registrationEndpoint);
+        registerClient.setRequest(registerRequest);
+        RegisterResponse response = registerClient.exec();
+        showClient(registerClient);
+        assertEquals(response.getStatus(), 200, "Unexpected response code: " + response.getEntity());
+        assertNotNull(response.getClientId());
+        assertNotNull(response.getClientSecret());
+        assertNotNull(response.getRegistrationAccessToken());
+        assertNotNull(response.getClientSecretExpiresAt());
+        assertTrue(response.getClaims().containsKey(SOFTWARE_ID.toString()));
+        assertEquals(response.getClaims().get(SOFTWARE_ID.toString()), softwareId);
+        assertTrue(response.getClaims().containsKey(SOFTWARE_VERSION.toString()));
+        assertEquals(response.getClaims().get(SOFTWARE_VERSION.toString()), softwareVersion);
+    }
+
+    @Test(dependsOnMethods = "requestClientAssociate2")
+    public void requestClientUpdate() throws Exception {
+        showTitle("requestClientUpdate");
+
+        final String logoUriNewValue = "http://www.gluu.org/test/yuriy/logo.png";
+        final String contact1NewValue = "yuriy@gluu.org";
+        final String contact2NewValue = "yuriyz@gmail.com";
+
+        final RegisterRequest registerRequest = new RegisterRequest(registrationAccessToken1);
+        registerRequest.setHttpMethod(HttpMethod.PUT);
+        registerRequest.setContacts(Arrays.asList(contact1NewValue, contact2NewValue));
+        registerRequest.setLogoUri(logoUriNewValue);
+
+        final RegisterClient registerClient = new RegisterClient(registrationClientUri1);
+        registerClient.setRequest(registerRequest);
+        registerClient.setExecutor(clientEngine(true));
+        final RegisterResponse response = registerClient.exec();
+
+        showClient(registerClient);
+        assertEquals(response.getStatus(), 200, "Unexpected response code: " + response.getEntity());
+        assertNotNull(response.getClientId());
+
+        // check whether info is really updated
+        final String responseContacts = response.getClaims().get(CONTACTS.toString());
+        final String responseLogoUri = response.getClaims().get(LOGO_URI.toString());
+
+        assertTrue(responseContacts.contains(contact1NewValue) && responseContacts.contains(contact2NewValue));
+        assertNotNull(responseLogoUri.equals(logoUriNewValue));
+    }
+
+    @Test(dependsOnMethods = "requestClientAssociate2")
+    public void requestClientRead() throws Exception {
+        showTitle("requestClientRead");
+
+        RegisterRequest registerRequest = new RegisterRequest(registrationAccessToken1);
+
+        RegisterClient registerClient = new RegisterClient(registrationClientUri1);
+        registerClient.setRequest(registerRequest);
+        RegisterResponse response = registerClient.exec();
+
+        showClient(registerClient);
+        assertEquals(response.getStatus(), 200, "Unexpected response code: " + response.getEntity());
+        assertNotNull(response.getClientId());
+        assertNotNull(response.getClientSecret());
+        assertNotNull(response.getRegistrationAccessToken());
+        assertNotNull(response.getRegistrationClientUri());
+        assertNotNull(response.getClientSecretExpiresAt());
+        assertNotNull(response.getClaims().get(APPLICATION_TYPE.toString()));
+        assertNotNull(response.getClaims().get(POLICY_URI.toString()));
+        assertNotNull(response.getClaims().get(REQUEST_OBJECT_SIGNING_ALG.toString()));
+        assertNotNull(response.getClaims().get(CONTACTS.toString()));
+        assertNotNull(response.getClaims().get(SECTOR_IDENTIFIER_URI.toString()));
+        assertNotNull(response.getClaims().get(SUBJECT_TYPE.toString()));
+        assertNotNull(response.getClaims().get(ID_TOKEN_SIGNED_RESPONSE_ALG.toString()));
+        assertNotNull(response.getClaims().get(JWKS_URI.toString()));
+        assertNotNull(response.getClaims().get(CLIENT_NAME.toString()));
+        assertNotNull(response.getClaims().get(LOGO_URI.toString()));
+        assertNotNull(response.getClaims().get(REQUEST_URIS.toString()));
+        assertNotNull(response.getClaims().get(SCOPE.toString()));
+    }
+
+    @Parameters({"redirectUris", "sectorIdentifierUri", "logoutUri"})
+    @Test
+    public void requestClientAssociate3(final String redirectUris, final String sectorIdentifierUri,
+                                        final String logoutUri) throws Exception {
+        showTitle("requestClientAssociate3");
+
+        RegisterRequest registerRequest = new RegisterRequest(ApplicationType.WEB, "oxAuth test app",
+                StringUtils.spaceSeparatedToList(redirectUris));
+        registerRequest.setPostLogoutRedirectUris(Lists.newArrayList(logoutUri));
+        registerRequest.setSectorIdentifierUri(sectorIdentifierUri); //
+        registerRequest.setSubjectType(SubjectType.PAIRWISE);
+        registerRequest.setGrantTypes(Arrays.asList(GrantType.IMPLICIT));
+        registerRequest.setResponseTypes(Arrays.asList(ResponseType.TOKEN, ResponseType.ID_TOKEN));
+        registerRequest.setScope(Arrays.asList("openid", "profile", "email"));
+        registerRequest.setTokenEndpointAuthMethod(AuthenticationMethod.CLIENT_SECRET_POST);
+        registerRequest.setFrontChannelLogoutSessionRequired(true);
+        registerRequest.addCustomAttribute("oxAuthTrustedClient", "true");
+
+        RegisterClient registerClient = new RegisterClient(registrationEndpoint);
+        registerClient.setRequest(registerRequest);
+        registerClient.setExecutor(clientEngine(true));
+        RegisterResponse response = registerClient.exec();
+
+        showClient(registerClient);
+        assertEquals(response.getStatus(), 200, "Unexpected response code: " + response.getEntity());
+        assertNotNull(response.getClientId());
+        assertNotNull(response.getClientSecret());
+        assertNotNull(response.getRegistrationAccessToken());
+        assertNotNull(response.getClientSecretExpiresAt());
+        assertNotNull(response.getClaims().get(SCOPE.toString()));
+        assertNotNull(response.getClaims().get(FRONT_CHANNEL_LOGOUT_SESSION_REQUIRED.toString()));
+        assertTrue(Boolean.parseBoolean(response.getClaims().get(FRONT_CHANNEL_LOGOUT_SESSION_REQUIRED.toString())));
+        assertNotNull(response.getClaims().get(ID_TOKEN_SIGNED_RESPONSE_ALG.toString()));
+        assertEquals(SignatureAlgorithm.RS256,
+                SignatureAlgorithm.fromString(response.getClaims().get(ID_TOKEN_SIGNED_RESPONSE_ALG.toString())));
+        assertEquals(AuthenticationMethod.CLIENT_SECRET_POST,
+                AuthenticationMethod.fromString(response.getClaims().get(TOKEN_ENDPOINT_AUTH_METHOD.toString())));
+        JSONArray scopesJsonArray = new JSONArray(StringUtils.spaceSeparatedToList(response.getClaims().get(SCOPE.toString())));
+        List<String> scopes = new ArrayList<String>();
+        for (int i = 0; i < scopesJsonArray.length(); i++) {
+            scopes.add(scopesJsonArray.get(i).toString());
+        }
+        assertTrue(scopes.contains("openid"));
+        assertTrue(scopes.contains("email"));
+        assertTrue(scopes.contains("profile"));
+
+        registrationAccessToken2 = response.getRegistrationAccessToken();
+        registrationClientUri2 = response.getRegistrationClientUri();
+    }
+
+    @Test(dependsOnMethods = "requestClientAssociate3")
+    public void requestClientUpdate3() throws Exception {
+        showTitle("requestClientUpdate3");
+
+        final String clientName = "Dynamically Registered Client #1 update_1";
+
+        final RegisterRequest registerRequest = new RegisterRequest(registrationAccessToken2);
+        registerRequest.setHttpMethod(HttpMethod.PUT);
+
+        registerRequest.setRedirectUris(Arrays.asList("https://localhost:8443/auth"));
+        registerRequest.setPostLogoutRedirectUris(Arrays.asList("https://localhost:8443/auth"));
+        registerRequest.setApplicationType(ApplicationType.WEB);
+        registerRequest.setClientName(clientName);
+        registerRequest.setSubjectType(SubjectType.PUBLIC);
+        registerRequest.setGrantTypes(Arrays.asList(GrantType.IMPLICIT));
+        registerRequest.setResponseTypes(Arrays.asList(ResponseType.TOKEN, ResponseType.ID_TOKEN));
+        registerRequest.setScope(Arrays.asList("openid", "address", "profile", "email", "phone", "clientinfo", "invalid_scope"));
+        registerRequest.setTokenEndpointAuthMethod(AuthenticationMethod.CLIENT_SECRET_POST);
+        registerRequest.setFrontChannelLogoutSessionRequired(true);
+        registerRequest.addCustomAttribute("oxAuthTrustedClient", "true");
+
+        final RegisterClient registerClient = new RegisterClient(registrationClientUri2);
+        registerClient.setRequest(registerRequest);
+        registerClient.setExecutor(clientEngine(true));
+        final RegisterResponse response = registerClient.exec();
+
+        showClient(registerClient);
+        assertEquals(response.getStatus(), 200, "Unexpected response code: " + response.getEntity());
+        assertNotNull(response.getClientId());
+
+        assertTrue(response.getClaims().containsKey(CLIENT_NAME.toString()));
+        assertEquals(clientName, response.getClaims().get(CLIENT_NAME.toString()));
+        JSONArray scopesJsonArray = new JSONArray(StringUtils.spaceSeparatedToList(response.getClaims().get(SCOPE.toString())));
+        List<String> scopes = new ArrayList<String>();
+        for (int i = 0; i < scopesJsonArray.length(); i++) {
+            scopes.add(scopesJsonArray.get(i).toString());
+        }
+        assertTrue(scopes.contains("openid"));
+        assertTrue(scopes.contains("address"));
+        assertTrue(scopes.contains("email"));
+        assertTrue(scopes.contains("profile"));
+        assertTrue(scopes.contains("phone"));
+        assertTrue(scopes.contains("clientinfo"));
+    }
+
+    @Parameters({"redirectUris", "sectorIdentifierUri"})
+    @Test
+    // ATTENTION : uncomment test annotation only if 112-customAttributes.ldif (located in server test resources)
+    // is loaded by ldap server.
+    public void requestClientRegistrationWithCustomAttributes(
+            final String redirectUris, final String sectorIdentifierUri) throws Exception {
+        showTitle("requestClientRegistrationWithCustomAttributes");
+
+        final RegisterRequest request = new RegisterRequest(ApplicationType.WEB, "oxAuth test app",
+                StringUtils.spaceSeparatedToList(redirectUris));
+
+        // custom attribute must be declared in oxauth-config.xml in dynamic-registration-custom-attribute tag
+        request.addCustomAttribute("myCustomAttr1", "customAttrValue1");
+        request.addCustomAttribute("myCustomAttr2", "customAttrValue2");
+        request.setSectorIdentifierUri(sectorIdentifierUri);
+
+        final RegisterClient registerClient = new RegisterClient(registrationEndpoint);
+        registerClient.setRequest(request);
+        final RegisterResponse response = registerClient.exec();
+
+        showClient(registerClient);
+        assertEquals(response.getStatus(), 200, "Unexpected response code: " + response.getEntity());
+        assertNotNull(response.getClientId());
+        assertNotNull(response.getClientSecret());
+        assertNotNull(response.getRegistrationAccessToken());
+        assertNotNull(response.getClientSecretExpiresAt());
+    }
+
+    @Test
+    public void failRegistration_whenRedirectUriIsNotSetForResponseTypeCode() throws Exception {
+        showTitle("failRegistration_whenRedirectUriIsNotSetForResponseTypeCode");
+
+        RegisterRequest request = new RegisterRequest();
+        request.setResponseTypes(Lists.newArrayList(ResponseType.CODE));
+
+        RegisterClient registerClient = new RegisterClient(registrationEndpoint);
+        registerClient.setExecutor(clientEngine(true));
+        registerClient.setRequest(request);
+        RegisterResponse response = registerClient.exec();
+
+        showClient(registerClient);
+        assertEquals(response.getStatus(), 400, "Unexpected response code: " + response.getEntity());
+        assertNotNull(response.getEntity(), "The entity is null");
+        assertNotNull(response.getErrorType(), "The error type is null");
+        assertNotNull(response.getErrorDescription(), "The error description is null");
+    }
+
+    @Test
+    public void requestClientRegistrationFail3() throws Exception {
+        showTitle("requestClientRegistrationFail3");
+
+        RegisterClient registerClient = new RegisterClient(registrationEndpoint);
+        RegisterResponse response = registerClient.execRegister(ApplicationType.WEB, "oxAuth test app",
+                Arrays.asList("https://client.example.com/cb#fail_fragment"));
+
+        showClient(registerClient);
+        assertEquals(response.getStatus(), 400, "Unexpected response code: " + response.getEntity());
+        assertNotNull(response.getEntity(), "The entity is null");
+        assertNotNull(response.getErrorType(), "The error type is null");
+        assertNotNull(response.getErrorDescription(), "The error description is null");
+    }
+
+    @Parameters({"redirectUris"})
+    @Test
+    public void requestClientRegistrationFail4(final String redirectUris) throws Exception {
+        showTitle("requestClientRegistrationFail4");
+
+        RegisterRequest registerRequest = new RegisterRequest(ApplicationType.WEB, "oxAuth test app",
+                StringUtils.spaceSeparatedToList(redirectUris));
+        registerRequest.setIdTokenSignedResponseAlg(SignatureAlgorithm.NONE); // id_token signature cannot be none
+
+        RegisterClient registerClient = new RegisterClient(registrationEndpoint);
+        registerClient.setRequest(registerRequest);
+        registerClient.setExecutor(clientEngine(true));
+        RegisterResponse response = registerClient.exec();
+
+        showClient(registerClient);
+        assertEquals(response.getStatus(), 400);
+        assertNotNull(response.getEntity());
+        assertNotNull(response.getErrorType());
+        assertNotNull(response.getErrorDescription());
+    }
+
+    @Parameters({"redirectUris"})
+    @Test
+    public void registerWithCustomURI(final String redirectUris) throws Exception {
+        showTitle("registerWithCustomURI");
+
+        List<String> redirectUriList = Lists.newArrayList(StringUtils.spaceSeparatedToList(redirectUris));
+        redirectUriList.add("myschema://client.example.com/cb"); // URI with custom schema
+
+        RegisterRequest registerRequest = new RegisterRequest(ApplicationType.NATIVE, "oxAuth native test app with custom schema in URI",
+                redirectUriList);
+        registerRequest.setSubjectType(SubjectType.PUBLIC);
+
+        RegisterClient registerClient = new RegisterClient(registrationEndpoint);
+        registerClient.setExecutor(clientEngine(true));
+        registerClient.setRequest(registerRequest);
+        RegisterResponse response = registerClient.exec();
+
+        showClient(registerClient);
+        assertEquals(response.getStatus(), 200, "Unexpected response code: " + response.getEntity());
+        assertNotNull(response.getClientId());
+        assertNotNull(response.getClientSecret());
+        assertNotNull(response.getRegistrationAccessToken());
+        assertNotNull(response.getClientSecretExpiresAt());
+    }
+
+    @Parameters({"redirectUris", "sectorIdentifierUri"})
+    @Test
+    public void registerWithApplicationTypeNativeAndSubjectTypePairwise(
+            final String redirectUris, final String sectorIdentifierUri) throws Exception {
+        showTitle("registerWithApplicationTypeNativeAndSubjectTypePairwise");
+
+        List<String> redirectUriList = Lists.newArrayList(StringUtils.spaceSeparatedToList(redirectUris));
+
+        RegisterRequest registerRequest = new RegisterRequest(ApplicationType.NATIVE, "oxAuth native test app",
+                redirectUriList);
+        registerRequest.setSubjectType(SubjectType.PAIRWISE);
+        registerRequest.setSectorIdentifierUri(sectorIdentifierUri);
+
+        RegisterClient registerClient = new RegisterClient(registrationEndpoint);
+        registerClient.setExecutor(clientEngine(true));
+        registerClient.setRequest(registerRequest);
+        RegisterResponse response = registerClient.exec();
+
+        showClient(registerClient);
+        assertEquals(response.getStatus(), 200, "Unexpected response code: " + response.getEntity());
+        assertNotNull(response.getClientId());
+        assertNotNull(response.getClientSecret());
+        assertNotNull(response.getRegistrationAccessToken());
+        assertNotNull(response.getClientSecretExpiresAt());
+    }
+
+    @Parameters({"redirectUris"})
+    @Test
+    public void registerWithHttp1(final String redirectUris) throws Exception {
+        showTitle("registerWithHttp1");
+
+        List<String> redirectUriList = Lists.newArrayList(StringUtils.spaceSeparatedToList(redirectUris));
+        redirectUriList.add("http://localhost/cb"); // URI with HTTP schema
+
+        RegisterRequest registerRequest = new RegisterRequest(ApplicationType.WEB, "oxAuth web test app with HTTP schema in URI",
+                redirectUriList);
+        registerRequest.setSubjectType(SubjectType.PUBLIC);
+
+        RegisterClient registerClient = new RegisterClient(registrationEndpoint);
+        registerClient.setExecutor(clientEngine(true));
+        registerClient.setRequest(registerRequest);
+        RegisterResponse response = registerClient.exec();
+
+        showClient(registerClient);
+        assertEquals(response.getStatus(), 200, "Unexpected response code: " + response.getEntity());
+        assertNotNull(response.getClientId());
+        assertNotNull(response.getClientSecret());
+        assertNotNull(response.getRegistrationAccessToken());
+        assertNotNull(response.getClientSecretExpiresAt());
+    }
+
+    @Parameters({"redirectUris"})
+    @Test
+    public void registerWithHttp2(final String redirectUris) throws Exception {
+        showTitle("registerWithHttp2");
+
+        List<String> redirectUriList = Lists.newArrayList(StringUtils.spaceSeparatedToList(redirectUris));
+        redirectUriList.add("http://127.0.0.1/cb"); // URI with HTTP schema
+
+        RegisterRequest registerRequest = new RegisterRequest(ApplicationType.WEB, "oxAuth web test app with HTTP schema in URI",
+                redirectUriList);
+        registerRequest.setSubjectType(SubjectType.PUBLIC);
+
+        RegisterClient registerClient = new RegisterClient(registrationEndpoint);
+        registerClient.setExecutor(clientEngine(true));
+        registerClient.setRequest(registerRequest);
+        RegisterResponse response = registerClient.exec();
+
+        showClient(registerClient);
+        assertEquals(response.getStatus(), 200, "Unexpected response code: " + response.getEntity());
+        assertNotNull(response.getClientId());
+        assertNotNull(response.getClientSecret());
+        assertNotNull(response.getRegistrationAccessToken());
+        assertNotNull(response.getClientSecretExpiresAt());
+    }
+
+    @Parameters({"redirectUris"})
+    @Test
+    public void registerWithHttpFail(final String redirectUris) throws Exception {
+        showTitle("registerWithHttpFail");
+
+        List<String> redirectUriList = Lists.newArrayList(StringUtils.spaceSeparatedToList(redirectUris));
+        redirectUriList.add("http://www.example.com/cb"); // URI with HTTP schema
+
+        RegisterRequest registerRequest = new RegisterRequest(ApplicationType.WEB, "oxAuth web test app with HTTP schema in URI",
+                redirectUriList);
+        registerRequest.setSubjectType(SubjectType.PUBLIC);
+
+        RegisterClient registerClient = new RegisterClient(registrationEndpoint);
+        registerClient.setExecutor(clientEngine(true));
+        registerClient.setRequest(registerRequest);
+        RegisterResponse response = registerClient.exec();
+
+        showClient(registerClient);
+        assertEquals(response.getStatus(), 400);
+        assertNotNull(response.getEntity());
+        assertNotNull(response.getErrorType());
+        assertNotNull(response.getErrorDescription());
+    }
+
+    @Parameters({"redirectUris"})
+    @Test
+    public void deleteClient(final String redirectUris) throws Exception {
+        showTitle("deleteClient");
+
+        List<String> redirectUriList = Lists.newArrayList(StringUtils.spaceSeparatedToList(redirectUris));
+
+        RegisterRequest registerRequest = new RegisterRequest(ApplicationType.WEB, "oxAuth web test app with HTTP schema in URI", redirectUriList);
+        registerRequest.setSubjectType(SubjectType.PUBLIC);
+
+        RegisterClient registerClient = new RegisterClient(registrationEndpoint);
+        registerClient.setExecutor(clientEngine(true));
+        registerClient.setRequest(registerRequest);
+        RegisterResponse response = registerClient.exec();
+
+        showClient(registerClient);
+        assertEquals(response.getStatus(), 200, "Unexpected response code: " + response.getEntity());
+        assertNotNull(response.getClientId());
+        assertNotNull(response.getClientSecret());
+        assertNotNull(response.getRegistrationAccessToken());
+        assertNotNull(response.getClientSecretExpiresAt());
+
+        registerRequest = new RegisterRequest(response.getRegistrationAccessToken());
+        registerRequest.setHttpMethod(HttpMethod.DELETE);
+
+        RegisterClient deleteClient = new RegisterClient(response.getRegistrationClientUri());
+        deleteClient.setRequest(registerRequest);
+        deleteClient.setExecutor(clientEngine(true));
+        RegisterResponse deleteResponse = deleteClient.exec();
+
+        showClient(deleteClient);
+        assertEquals(deleteResponse.getStatus(), 204, "Unexpected response code: " + response.getEntity());
+    }
+}
\ No newline at end of file
diff --git a/oxAuth/Client/src/test/java/org/gluu/oxauth/ws/rs/RegistrationWithSoftwareStatement.java b/oxAuth/Client/src/test/java/org/gluu/oxauth/ws/rs/RegistrationWithSoftwareStatement.java
new file mode 100644
index 00000000..081151fd
--- /dev/null
+++ b/oxAuth/Client/src/test/java/org/gluu/oxauth/ws/rs/RegistrationWithSoftwareStatement.java
@@ -0,0 +1,490 @@
+/*
+ * oxAuth is available under the MIT License (2008). See http://opensource.org/licenses/MIT for full text.
+ *
+ * Copyright (c) 2014, Gluu
+ */
+
+package org.gluu.oxauth.ws.rs;
+
+import static org.gluu.oxauth.model.register.RegisterRequestParam.APPLICATION_TYPE;
+import static org.gluu.oxauth.model.register.RegisterRequestParam.CLIENT_NAME;
+import static org.gluu.oxauth.model.register.RegisterRequestParam.CONTACTS;
+import static org.gluu.oxauth.model.register.RegisterRequestParam.FRONT_CHANNEL_LOGOUT_SESSION_REQUIRED;
+import static org.gluu.oxauth.model.register.RegisterRequestParam.FRONT_CHANNEL_LOGOUT_URI;
+import static org.gluu.oxauth.model.register.RegisterRequestParam.ID_TOKEN_ENCRYPTED_RESPONSE_ALG;
+import static org.gluu.oxauth.model.register.RegisterRequestParam.ID_TOKEN_ENCRYPTED_RESPONSE_ENC;
+import static org.gluu.oxauth.model.register.RegisterRequestParam.ID_TOKEN_SIGNED_RESPONSE_ALG;
+import static org.gluu.oxauth.model.register.RegisterRequestParam.JWKS_URI;
+import static org.gluu.oxauth.model.register.RegisterRequestParam.LOGO_URI;
+import static org.gluu.oxauth.model.register.RegisterRequestParam.POLICY_URI;
+import static org.gluu.oxauth.model.register.RegisterRequestParam.REDIRECT_URIS;
+import static org.gluu.oxauth.model.register.RegisterRequestParam.REQUEST_OBJECT_ENCRYPTION_ALG;
+import static org.gluu.oxauth.model.register.RegisterRequestParam.REQUEST_OBJECT_ENCRYPTION_ENC;
+import static org.gluu.oxauth.model.register.RegisterRequestParam.REQUEST_OBJECT_SIGNING_ALG;
+import static org.gluu.oxauth.model.register.RegisterRequestParam.REQUEST_URIS;
+import static org.gluu.oxauth.model.register.RegisterRequestParam.SCOPE;
+import static org.gluu.oxauth.model.register.RegisterRequestParam.SECTOR_IDENTIFIER_URI;
+import static org.gluu.oxauth.model.register.RegisterRequestParam.SOFTWARE_ID;
+import static org.gluu.oxauth.model.register.RegisterRequestParam.SOFTWARE_STATEMENT;
+import static org.gluu.oxauth.model.register.RegisterRequestParam.SOFTWARE_VERSION;
+import static org.gluu.oxauth.model.register.RegisterRequestParam.SUBJECT_TYPE;
+import static org.gluu.oxauth.model.register.RegisterRequestParam.TOKEN_ENDPOINT_AUTH_METHOD;
+import static org.gluu.oxauth.model.register.RegisterRequestParam.TOKEN_ENDPOINT_AUTH_SIGNING_ALG;
+import static org.gluu.oxauth.model.register.RegisterRequestParam.USERINFO_ENCRYPTED_RESPONSE_ALG;
+import static org.gluu.oxauth.model.register.RegisterRequestParam.USERINFO_ENCRYPTED_RESPONSE_ENC;
+import static org.gluu.oxauth.model.register.RegisterRequestParam.USERINFO_SIGNED_RESPONSE_ALG;
+import static org.testng.Assert.assertEquals;
+import static org.testng.Assert.assertNotNull;
+import static org.testng.Assert.assertTrue;
+
+import java.util.ArrayList;
+import java.util.Arrays;
+import java.util.List;
+import java.util.UUID;
+
+import org.gluu.oxauth.BaseTest;
+import org.gluu.oxauth.client.RegisterClient;
+import org.gluu.oxauth.client.RegisterRequest;
+import org.gluu.oxauth.client.RegisterResponse;
+import org.gluu.oxauth.client.model.SoftwareStatement;
+import org.gluu.oxauth.model.common.AuthenticationMethod;
+import org.gluu.oxauth.model.common.SubjectType;
+import org.gluu.oxauth.model.crypto.OxAuthCryptoProvider;
+import org.gluu.oxauth.model.crypto.encryption.BlockEncryptionAlgorithm;
+import org.gluu.oxauth.model.crypto.encryption.KeyEncryptionAlgorithm;
+import org.gluu.oxauth.model.crypto.signature.SignatureAlgorithm;
+import org.gluu.oxauth.model.register.ApplicationType;
+import org.gluu.oxauth.model.util.StringUtils;
+import org.gluu.oxauth.model.util.Util;
+import org.json.JSONArray;
+import org.testng.annotations.Parameters;
+import org.testng.annotations.Test;
+
+import com.google.common.collect.Lists;
+
+/**
+ * @author Javier Rojas Blum
+ * @version December 4, 2018
+ */
+public class RegistrationWithSoftwareStatement extends BaseTest {
+
+    private String registrationAccessToken1;
+    private String registrationClientUri1;
+    private String registrationAccessToken2;
+    private String registrationClientUri2;
+
+    /**
+     * Verify signature with JWKS_URI
+     */
+    @Parameters({"redirectUris", "sectorIdentifierUri", "logoutUri", "keyStoreFile", "keyStoreSecret", "dnName",
+            "RS256_keyId", "clientJwksUri"})
+    @Test
+    public void requestClientAssociate1(final String redirectUris, final String sectorIdentifierUri,
+                                        final String logoutUri, final String keyStoreFile, final String keyStoreSecret,
+                                        final String dnName, final String keyId, final String clientJwksUri) throws Exception {
+        showTitle("requestClientAssociate1");
+
+        String softwareId = UUID.randomUUID().toString();
+        String softwareVersion = "version_3.1.5";
+
+        OxAuthCryptoProvider cryptoProvider = new OxAuthCryptoProvider(keyStoreFile, keyStoreSecret, dnName);
+        SoftwareStatement softwareStatement = new SoftwareStatement(SignatureAlgorithm.RS256, cryptoProvider);
+        softwareStatement.setKeyId(keyId);
+        softwareStatement.getClaims().put(APPLICATION_TYPE.toString(), ApplicationType.WEB);
+        softwareStatement.getClaims().put(CLIENT_NAME.toString(), "oxAuth test app");
+        softwareStatement.getClaims().put(REDIRECT_URIS.toString(), StringUtils.spaceSeparatedToList(redirectUris));
+        softwareStatement.getClaims().put(CONTACTS.toString(), Arrays.asList("javier@gluu.org", "javier.rojas.blum@gmail.com"));
+        softwareStatement.getClaims().put(SCOPE.toString(), Util.listAsString(Arrays.asList("openid", "address", "profile", "email", "phone", "clientinfo", "invalid_scope")));
+        softwareStatement.getClaims().put(LOGO_URI.toString(), "http://www.gluu.org/wp-content/themes/gluursn/images/logo.png");
+        softwareStatement.getClaims().put(TOKEN_ENDPOINT_AUTH_METHOD.toString(), AuthenticationMethod.CLIENT_SECRET_JWT);
+        softwareStatement.getClaims().put(POLICY_URI.toString(), "http://www.gluu.org/policy");
+        softwareStatement.getClaims().put(JWKS_URI.toString(), clientJwksUri);
+        softwareStatement.getClaims().put(SECTOR_IDENTIFIER_URI.toString(), sectorIdentifierUri);
+        softwareStatement.getClaims().put(SUBJECT_TYPE.toString(), SubjectType.PAIRWISE);
+        softwareStatement.getClaims().put(REQUEST_URIS.toString(), Arrays.asList("http://www.gluu.org/request"));
+        softwareStatement.getClaims().put(FRONT_CHANNEL_LOGOUT_URI.toString(), Lists.newArrayList(logoutUri));
+        softwareStatement.getClaims().put(FRONT_CHANNEL_LOGOUT_SESSION_REQUIRED.toString(), true);
+        softwareStatement.getClaims().put(ID_TOKEN_SIGNED_RESPONSE_ALG.toString(), SignatureAlgorithm.RS512);
+        softwareStatement.getClaims().put(ID_TOKEN_ENCRYPTED_RESPONSE_ALG.toString(), KeyEncryptionAlgorithm.RSA1_5);
+        softwareStatement.getClaims().put(ID_TOKEN_ENCRYPTED_RESPONSE_ENC.toString(), BlockEncryptionAlgorithm.A128CBC_PLUS_HS256);
+        softwareStatement.getClaims().put(USERINFO_SIGNED_RESPONSE_ALG.toString(), SignatureAlgorithm.RS384);
+        softwareStatement.getClaims().put(USERINFO_ENCRYPTED_RESPONSE_ALG.toString(), KeyEncryptionAlgorithm.A128KW);
+        softwareStatement.getClaims().put(USERINFO_ENCRYPTED_RESPONSE_ENC.toString(), BlockEncryptionAlgorithm.A128GCM);
+        softwareStatement.getClaims().put(REQUEST_OBJECT_SIGNING_ALG.toString(), SignatureAlgorithm.RS256);
+        softwareStatement.getClaims().put(REQUEST_OBJECT_ENCRYPTION_ALG.toString(), KeyEncryptionAlgorithm.A256KW);
+        softwareStatement.getClaims().put(REQUEST_OBJECT_ENCRYPTION_ENC.toString(), BlockEncryptionAlgorithm.A256CBC_PLUS_HS512);
+        softwareStatement.getClaims().put(TOKEN_ENDPOINT_AUTH_METHOD.toString(), AuthenticationMethod.CLIENT_SECRET_JWT);
+        softwareStatement.getClaims().put(TOKEN_ENDPOINT_AUTH_SIGNING_ALG.toString(), SignatureAlgorithm.ES256);
+        softwareStatement.getClaims().put(SOFTWARE_ID.toString(), softwareId);
+        softwareStatement.getClaims().put(SOFTWARE_VERSION.toString(), softwareVersion);
+        String encodedSoftwareStatement = softwareStatement.getEncodedJwt();
+
+        RegisterRequest registerRequest = new RegisterRequest();
+        registerRequest.setSoftwareStatement(encodedSoftwareStatement);
+
+        RegisterClient registerClient = new RegisterClient(registrationEndpoint);
+        registerClient.setRequest(registerRequest);
+        registerClient.setExecutor(clientEngine(true));
+        RegisterResponse response = registerClient.exec();
+
+        showClient(registerClient);
+        assertEquals(response.getStatus(), 200, "Unexpected response code: " + response.getEntity());
+        assertNotNull(response.getClientId());
+        assertNotNull(response.getClientSecret());
+        assertNotNull(response.getRegistrationAccessToken());
+        assertNotNull(response.getClientSecretExpiresAt());
+        assertNotNull(response.getClaims().get(SCOPE.toString()));
+        assertNotNull(response.getClaims().get(FRONT_CHANNEL_LOGOUT_SESSION_REQUIRED.toString()));
+        assertTrue(Boolean.parseBoolean(response.getClaims().get(FRONT_CHANNEL_LOGOUT_SESSION_REQUIRED.toString())));
+        assertNotNull(response.getClaims().get(FRONT_CHANNEL_LOGOUT_URI.toString()));
+        assertTrue(new JSONArray(response.getClaims().get(FRONT_CHANNEL_LOGOUT_URI.toString())).getString(0).equals(logoutUri));
+        assertNotNull(response.getClaims().get(ID_TOKEN_SIGNED_RESPONSE_ALG.toString()));
+        assertEquals(SignatureAlgorithm.RS512,
+                SignatureAlgorithm.fromString(response.getClaims().get(ID_TOKEN_SIGNED_RESPONSE_ALG.toString())));
+        assertNotNull(response.getClaims().get(ID_TOKEN_ENCRYPTED_RESPONSE_ALG.toString()));
+        assertEquals(KeyEncryptionAlgorithm.RSA1_5,
+                KeyEncryptionAlgorithm.fromName(response.getClaims().get(ID_TOKEN_ENCRYPTED_RESPONSE_ALG.toString())));
+        assertNotNull(response.getClaims().get(ID_TOKEN_ENCRYPTED_RESPONSE_ENC.toString()));
+        assertEquals(BlockEncryptionAlgorithm.A128CBC_PLUS_HS256,
+                BlockEncryptionAlgorithm.fromName(response.getClaims().get(ID_TOKEN_ENCRYPTED_RESPONSE_ENC.toString())));
+        assertNotNull(response.getClaims().get(USERINFO_SIGNED_RESPONSE_ALG.toString()));
+        assertEquals(SignatureAlgorithm.RS384,
+                SignatureAlgorithm.fromString(response.getClaims().get(USERINFO_SIGNED_RESPONSE_ALG.toString())));
+        assertNotNull(response.getClaims().get(USERINFO_ENCRYPTED_RESPONSE_ALG.toString()));
+        assertEquals(KeyEncryptionAlgorithm.A128KW,
+                KeyEncryptionAlgorithm.fromName(response.getClaims().get(USERINFO_ENCRYPTED_RESPONSE_ALG.toString())));
+        assertNotNull(response.getClaims().get(USERINFO_ENCRYPTED_RESPONSE_ENC.toString()));
+        assertEquals(BlockEncryptionAlgorithm.A128GCM,
+                BlockEncryptionAlgorithm.fromName(response.getClaims().get(USERINFO_ENCRYPTED_RESPONSE_ENC.toString())));
+        assertNotNull(response.getClaims().get(REQUEST_OBJECT_SIGNING_ALG.toString()));
+        assertEquals(SignatureAlgorithm.RS256,
+                SignatureAlgorithm.fromString(response.getClaims().get(REQUEST_OBJECT_SIGNING_ALG.toString())));
+        assertNotNull(response.getClaims().get(REQUEST_OBJECT_ENCRYPTION_ALG.toString()));
+        assertEquals(KeyEncryptionAlgorithm.A256KW,
+                KeyEncryptionAlgorithm.fromName(response.getClaims().get(REQUEST_OBJECT_ENCRYPTION_ALG.toString())));
+        assertNotNull(response.getClaims().get(REQUEST_OBJECT_ENCRYPTION_ENC.toString()));
+        assertEquals(BlockEncryptionAlgorithm.A256CBC_PLUS_HS512,
+                BlockEncryptionAlgorithm.fromName(response.getClaims().get(REQUEST_OBJECT_ENCRYPTION_ENC.toString())));
+        assertNotNull(response.getClaims().get(TOKEN_ENDPOINT_AUTH_METHOD.toString()));
+        assertEquals(AuthenticationMethod.CLIENT_SECRET_JWT,
+                AuthenticationMethod.fromString(response.getClaims().get(TOKEN_ENDPOINT_AUTH_METHOD.toString())));
+        assertNotNull(response.getClaims().get(TOKEN_ENDPOINT_AUTH_SIGNING_ALG.toString()));
+        assertEquals(SignatureAlgorithm.ES256,
+                SignatureAlgorithm.fromString(response.getClaims().get(TOKEN_ENDPOINT_AUTH_SIGNING_ALG.toString())));
+        JSONArray scopesJsonArray = new JSONArray(StringUtils.spaceSeparatedToList(response.getClaims().get(SCOPE.toString())));
+        List<String> scopes = new ArrayList<String>();
+        for (int i = 0; i < scopesJsonArray.length(); i++) {
+            scopes.add(scopesJsonArray.get(i).toString());
+        }
+        assertTrue(scopes.contains("openid"));
+        assertTrue(scopes.contains("address"));
+        assertTrue(scopes.contains("email"));
+        assertTrue(scopes.contains("profile"));
+        assertTrue(scopes.contains("phone"));
+        assertTrue(scopes.contains("clientinfo"));
+        assertTrue(response.getClaims().containsKey(SOFTWARE_ID.toString()));
+        assertEquals(response.getClaims().get(SOFTWARE_ID.toString()), softwareId);
+        assertTrue(response.getClaims().containsKey(SOFTWARE_VERSION.toString()));
+        assertEquals(response.getClaims().get(SOFTWARE_VERSION.toString()), softwareVersion);
+        assertTrue(response.getClaims().containsKey(SOFTWARE_STATEMENT.toString()));
+
+        registrationAccessToken1 = response.getRegistrationAccessToken();
+        registrationClientUri1 = response.getRegistrationClientUri();
+    }
+
+    /**
+     * Verify signature with JWKS
+     */
+    @Parameters({"redirectUris", "sectorIdentifierUri", "logoutUri", "keyStoreFile", "keyStoreSecret", "dnName",
+            "RS256_keyId", "clientJwksUri"})
+    @Test
+    public void requestClientAssociate2(final String redirectUris, final String sectorIdentifierUri,
+                                        final String logoutUri, final String keyStoreFile, final String keyStoreSecret,
+                                        final String dnName, final String keyId, final String clientJwksUri) throws Exception {
+        showTitle("requestClientAssociate2");
+
+        String softwareId = UUID.randomUUID().toString();
+        String softwareVersion = "version_3.1.5";
+
+        OxAuthCryptoProvider cryptoProvider = new OxAuthCryptoProvider(keyStoreFile, keyStoreSecret, dnName);
+        SoftwareStatement softwareStatement = new SoftwareStatement(SignatureAlgorithm.RS256, cryptoProvider);
+        softwareStatement.setKeyId(keyId);
+        softwareStatement.getClaims().put(APPLICATION_TYPE.toString(), ApplicationType.WEB);
+        softwareStatement.getClaims().put(CLIENT_NAME.toString(), "oxAuth test app");
+        softwareStatement.getClaims().put(REDIRECT_URIS.toString(), StringUtils.spaceSeparatedToList(redirectUris));
+        softwareStatement.getClaims().put(CONTACTS.toString(), Arrays.asList("javier@gluu.org", "javier.rojas.blum@gmail.com"));
+        softwareStatement.getClaims().put(SCOPE.toString(), Util.listAsString(Arrays.asList("openid", "address", "profile", "email", "phone", "clientinfo", "invalid_scope")));
+        softwareStatement.getClaims().put(LOGO_URI.toString(), "http://www.gluu.org/wp-content/themes/gluursn/images/logo.png");
+        softwareStatement.getClaims().put(TOKEN_ENDPOINT_AUTH_METHOD.toString(), AuthenticationMethod.CLIENT_SECRET_JWT);
+        softwareStatement.getClaims().put(POLICY_URI.toString(), "http://www.gluu.org/policy");
+        softwareStatement.getClaims().put(JWKS_URI.toString(), clientJwksUri);
+        softwareStatement.getClaims().put(SECTOR_IDENTIFIER_URI.toString(), sectorIdentifierUri);
+        softwareStatement.getClaims().put(SUBJECT_TYPE.toString(), SubjectType.PAIRWISE);
+        softwareStatement.getClaims().put(REQUEST_URIS.toString(), Arrays.asList("http://www.gluu.org/request"));
+        softwareStatement.getClaims().put(FRONT_CHANNEL_LOGOUT_URI.toString(), Lists.newArrayList(logoutUri));
+        softwareStatement.getClaims().put(FRONT_CHANNEL_LOGOUT_SESSION_REQUIRED.toString(), true);
+        softwareStatement.getClaims().put(ID_TOKEN_SIGNED_RESPONSE_ALG.toString(), SignatureAlgorithm.RS512);
+        softwareStatement.getClaims().put(ID_TOKEN_ENCRYPTED_RESPONSE_ALG.toString(), KeyEncryptionAlgorithm.RSA1_5);
+        softwareStatement.getClaims().put(ID_TOKEN_ENCRYPTED_RESPONSE_ENC.toString(), BlockEncryptionAlgorithm.A128CBC_PLUS_HS256);
+        softwareStatement.getClaims().put(USERINFO_SIGNED_RESPONSE_ALG.toString(), SignatureAlgorithm.RS384);
+        softwareStatement.getClaims().put(USERINFO_ENCRYPTED_RESPONSE_ALG.toString(), KeyEncryptionAlgorithm.A128KW);
+        softwareStatement.getClaims().put(USERINFO_ENCRYPTED_RESPONSE_ENC.toString(), BlockEncryptionAlgorithm.A128GCM);
+        softwareStatement.getClaims().put(REQUEST_OBJECT_SIGNING_ALG.toString(), SignatureAlgorithm.RS256);
+        softwareStatement.getClaims().put(REQUEST_OBJECT_ENCRYPTION_ALG.toString(), KeyEncryptionAlgorithm.A256KW);
+        softwareStatement.getClaims().put(REQUEST_OBJECT_ENCRYPTION_ENC.toString(), BlockEncryptionAlgorithm.A256CBC_PLUS_HS512);
+        softwareStatement.getClaims().put(TOKEN_ENDPOINT_AUTH_METHOD.toString(), AuthenticationMethod.CLIENT_SECRET_JWT);
+        softwareStatement.getClaims().put(TOKEN_ENDPOINT_AUTH_SIGNING_ALG.toString(), SignatureAlgorithm.ES256);
+        softwareStatement.getClaims().put(SOFTWARE_ID.toString(), softwareId);
+        softwareStatement.getClaims().put(SOFTWARE_VERSION.toString(), softwareVersion);
+        String encodedSoftwareStatement = softwareStatement.getEncodedJwt();
+
+        RegisterRequest registerRequest = new RegisterRequest();
+        registerRequest.setSoftwareStatement(encodedSoftwareStatement);
+
+        RegisterClient registerClient = new RegisterClient(registrationEndpoint);
+        registerClient.setRequest(registerRequest);
+        registerClient.setExecutor(clientEngine(true));
+        RegisterResponse response = registerClient.exec();
+
+        showClient(registerClient);
+        assertEquals(response.getStatus(), 200, "Unexpected response code: " + response.getEntity());
+        assertNotNull(response.getClientId());
+        assertNotNull(response.getClientSecret());
+        assertNotNull(response.getRegistrationAccessToken());
+        assertNotNull(response.getClientSecretExpiresAt());
+        assertNotNull(response.getClaims().get(SCOPE.toString()));
+        assertNotNull(response.getClaims().get(FRONT_CHANNEL_LOGOUT_SESSION_REQUIRED.toString()));
+        assertTrue(Boolean.parseBoolean(response.getClaims().get(FRONT_CHANNEL_LOGOUT_SESSION_REQUIRED.toString())));
+        assertNotNull(response.getClaims().get(FRONT_CHANNEL_LOGOUT_URI.toString()));
+        assertTrue(new JSONArray(response.getClaims().get(FRONT_CHANNEL_LOGOUT_URI.toString())).getString(0).equals(logoutUri));
+        assertNotNull(response.getClaims().get(ID_TOKEN_SIGNED_RESPONSE_ALG.toString()));
+        assertEquals(SignatureAlgorithm.RS512,
+                SignatureAlgorithm.fromString(response.getClaims().get(ID_TOKEN_SIGNED_RESPONSE_ALG.toString())));
+        assertNotNull(response.getClaims().get(ID_TOKEN_ENCRYPTED_RESPONSE_ALG.toString()));
+        assertEquals(KeyEncryptionAlgorithm.RSA1_5,
+                KeyEncryptionAlgorithm.fromName(response.getClaims().get(ID_TOKEN_ENCRYPTED_RESPONSE_ALG.toString())));
+        assertNotNull(response.getClaims().get(ID_TOKEN_ENCRYPTED_RESPONSE_ENC.toString()));
+        assertEquals(BlockEncryptionAlgorithm.A128CBC_PLUS_HS256,
+                BlockEncryptionAlgorithm.fromName(response.getClaims().get(ID_TOKEN_ENCRYPTED_RESPONSE_ENC.toString())));
+        assertNotNull(response.getClaims().get(USERINFO_SIGNED_RESPONSE_ALG.toString()));
+        assertEquals(SignatureAlgorithm.RS384,
+                SignatureAlgorithm.fromString(response.getClaims().get(USERINFO_SIGNED_RESPONSE_ALG.toString())));
+        assertNotNull(response.getClaims().get(USERINFO_ENCRYPTED_RESPONSE_ALG.toString()));
+        assertEquals(KeyEncryptionAlgorithm.A128KW,
+                KeyEncryptionAlgorithm.fromName(response.getClaims().get(USERINFO_ENCRYPTED_RESPONSE_ALG.toString())));
+        assertNotNull(response.getClaims().get(USERINFO_ENCRYPTED_RESPONSE_ENC.toString()));
+        assertEquals(BlockEncryptionAlgorithm.A128GCM,
+                BlockEncryptionAlgorithm.fromName(response.getClaims().get(USERINFO_ENCRYPTED_RESPONSE_ENC.toString())));
+        assertNotNull(response.getClaims().get(REQUEST_OBJECT_SIGNING_ALG.toString()));
+        assertEquals(SignatureAlgorithm.RS256,
+                SignatureAlgorithm.fromString(response.getClaims().get(REQUEST_OBJECT_SIGNING_ALG.toString())));
+        assertNotNull(response.getClaims().get(REQUEST_OBJECT_ENCRYPTION_ALG.toString()));
+        assertEquals(KeyEncryptionAlgorithm.A256KW,
+                KeyEncryptionAlgorithm.fromName(response.getClaims().get(REQUEST_OBJECT_ENCRYPTION_ALG.toString())));
+        assertNotNull(response.getClaims().get(REQUEST_OBJECT_ENCRYPTION_ENC.toString()));
+        assertEquals(BlockEncryptionAlgorithm.A256CBC_PLUS_HS512,
+                BlockEncryptionAlgorithm.fromName(response.getClaims().get(REQUEST_OBJECT_ENCRYPTION_ENC.toString())));
+        assertNotNull(response.getClaims().get(TOKEN_ENDPOINT_AUTH_METHOD.toString()));
+        assertEquals(AuthenticationMethod.CLIENT_SECRET_JWT,
+                AuthenticationMethod.fromString(response.getClaims().get(TOKEN_ENDPOINT_AUTH_METHOD.toString())));
+        assertNotNull(response.getClaims().get(TOKEN_ENDPOINT_AUTH_SIGNING_ALG.toString()));
+        assertEquals(SignatureAlgorithm.ES256,
+                SignatureAlgorithm.fromString(response.getClaims().get(TOKEN_ENDPOINT_AUTH_SIGNING_ALG.toString())));
+        JSONArray scopesJsonArray = new JSONArray(StringUtils.spaceSeparatedToList(response.getClaims().get(SCOPE.toString())));
+        List<String> scopes = new ArrayList<String>();
+        for (int i = 0; i < scopesJsonArray.length(); i++) {
+            scopes.add(scopesJsonArray.get(i).toString());
+        }
+        assertTrue(scopes.contains("openid"));
+        assertTrue(scopes.contains("address"));
+        assertTrue(scopes.contains("email"));
+        assertTrue(scopes.contains("profile"));
+        assertTrue(scopes.contains("phone"));
+        assertTrue(scopes.contains("clientinfo"));
+        assertTrue(response.getClaims().containsKey(SOFTWARE_ID.toString()));
+        assertEquals(response.getClaims().get(SOFTWARE_ID.toString()), softwareId);
+        assertTrue(response.getClaims().containsKey(SOFTWARE_VERSION.toString()));
+        assertEquals(response.getClaims().get(SOFTWARE_VERSION.toString()), softwareVersion);
+        assertTrue(response.getClaims().containsKey(SOFTWARE_STATEMENT.toString()));
+
+        registrationAccessToken2 = response.getRegistrationAccessToken();
+        registrationClientUri2 = response.getRegistrationClientUri();
+    }
+
+    @Test(dependsOnMethods = "requestClientAssociate1")
+    public void requestClientRead1() throws Exception {
+        showTitle("requestClientRead1");
+
+        RegisterRequest registerRequest = new RegisterRequest(registrationAccessToken1);
+
+        RegisterClient registerClient = new RegisterClient(registrationClientUri1);
+        registerClient.setRequest(registerRequest);
+        RegisterResponse response = registerClient.exec();
+
+        showClient(registerClient);
+        assertEquals(response.getStatus(), 200, "Unexpected response code: " + response.getEntity());
+        assertNotNull(response.getClientId());
+        assertNotNull(response.getClientSecret());
+        assertNotNull(response.getRegistrationAccessToken());
+        assertNotNull(response.getClientSecretExpiresAt());
+        assertNotNull(response.getClaims().get(SCOPE.toString()));
+        assertNotNull(response.getClaims().get(FRONT_CHANNEL_LOGOUT_SESSION_REQUIRED.toString()));
+        assertTrue(Boolean.parseBoolean(response.getClaims().get(FRONT_CHANNEL_LOGOUT_SESSION_REQUIRED.toString())));
+        assertNotNull(response.getClaims().get(FRONT_CHANNEL_LOGOUT_URI.toString()));
+        assertNotNull(response.getClaims().get(ID_TOKEN_SIGNED_RESPONSE_ALG.toString()));
+        assertEquals(SignatureAlgorithm.RS512,
+                SignatureAlgorithm.fromString(response.getClaims().get(ID_TOKEN_SIGNED_RESPONSE_ALG.toString())));
+        assertNotNull(response.getClaims().get(ID_TOKEN_ENCRYPTED_RESPONSE_ALG.toString()));
+        assertEquals(KeyEncryptionAlgorithm.RSA1_5,
+                KeyEncryptionAlgorithm.fromName(response.getClaims().get(ID_TOKEN_ENCRYPTED_RESPONSE_ALG.toString())));
+        assertNotNull(response.getClaims().get(ID_TOKEN_ENCRYPTED_RESPONSE_ENC.toString()));
+        assertEquals(BlockEncryptionAlgorithm.A128CBC_PLUS_HS256,
+                BlockEncryptionAlgorithm.fromName(response.getClaims().get(ID_TOKEN_ENCRYPTED_RESPONSE_ENC.toString())));
+        assertNotNull(response.getClaims().get(USERINFO_SIGNED_RESPONSE_ALG.toString()));
+        assertEquals(SignatureAlgorithm.RS384,
+                SignatureAlgorithm.fromString(response.getClaims().get(USERINFO_SIGNED_RESPONSE_ALG.toString())));
+        assertNotNull(response.getClaims().get(USERINFO_ENCRYPTED_RESPONSE_ALG.toString()));
+        assertEquals(KeyEncryptionAlgorithm.A128KW,
+                KeyEncryptionAlgorithm.fromName(response.getClaims().get(USERINFO_ENCRYPTED_RESPONSE_ALG.toString())));
+        assertNotNull(response.getClaims().get(USERINFO_ENCRYPTED_RESPONSE_ENC.toString()));
+        assertEquals(BlockEncryptionAlgorithm.A128GCM,
+                BlockEncryptionAlgorithm.fromName(response.getClaims().get(USERINFO_ENCRYPTED_RESPONSE_ENC.toString())));
+        assertNotNull(response.getClaims().get(REQUEST_OBJECT_SIGNING_ALG.toString()));
+        assertEquals(SignatureAlgorithm.RS256,
+                SignatureAlgorithm.fromString(response.getClaims().get(REQUEST_OBJECT_SIGNING_ALG.toString())));
+        assertNotNull(response.getClaims().get(REQUEST_OBJECT_ENCRYPTION_ALG.toString()));
+        assertEquals(KeyEncryptionAlgorithm.A256KW,
+                KeyEncryptionAlgorithm.fromName(response.getClaims().get(REQUEST_OBJECT_ENCRYPTION_ALG.toString())));
+        assertNotNull(response.getClaims().get(REQUEST_OBJECT_ENCRYPTION_ENC.toString()));
+        assertEquals(BlockEncryptionAlgorithm.A256CBC_PLUS_HS512,
+                BlockEncryptionAlgorithm.fromName(response.getClaims().get(REQUEST_OBJECT_ENCRYPTION_ENC.toString())));
+        assertNotNull(response.getClaims().get(TOKEN_ENDPOINT_AUTH_METHOD.toString()));
+        assertEquals(AuthenticationMethod.CLIENT_SECRET_JWT,
+                AuthenticationMethod.fromString(response.getClaims().get(TOKEN_ENDPOINT_AUTH_METHOD.toString())));
+        assertNotNull(response.getClaims().get(TOKEN_ENDPOINT_AUTH_SIGNING_ALG.toString()));
+        assertEquals(SignatureAlgorithm.ES256,
+                SignatureAlgorithm.fromString(response.getClaims().get(TOKEN_ENDPOINT_AUTH_SIGNING_ALG.toString())));
+        JSONArray scopesJsonArray = new JSONArray(StringUtils.spaceSeparatedToList(response.getClaims().get(SCOPE.toString())));
+        List<String> scopes = new ArrayList<String>();
+        for (int i = 0; i < scopesJsonArray.length(); i++) {
+            scopes.add(scopesJsonArray.get(i).toString());
+        }
+        assertTrue(scopes.contains("openid"));
+        assertTrue(scopes.contains("address"));
+        assertTrue(scopes.contains("email"));
+        assertTrue(scopes.contains("profile"));
+        assertTrue(scopes.contains("phone"));
+        assertTrue(scopes.contains("clientinfo"));
+        assertTrue(response.getClaims().containsKey(SOFTWARE_ID.toString()));
+        assertTrue(response.getClaims().containsKey(SOFTWARE_VERSION.toString()));
+        assertTrue(response.getClaims().containsKey(SOFTWARE_STATEMENT.toString()));
+    }
+
+    @Test(dependsOnMethods = "requestClientAssociate2")
+    public void requestClientRead2() throws Exception {
+        showTitle("requestClientRead2");
+
+        RegisterRequest registerRequest = new RegisterRequest(registrationAccessToken2);
+
+        RegisterClient registerClient = new RegisterClient(registrationClientUri2);
+        registerClient.setRequest(registerRequest);
+        RegisterResponse response = registerClient.exec();
+
+        showClient(registerClient);
+        assertEquals(response.getStatus(), 200, "Unexpected response code: " + response.getEntity());
+        assertNotNull(response.getClientId());
+        assertNotNull(response.getClientSecret());
+        assertNotNull(response.getRegistrationAccessToken());
+        assertNotNull(response.getClientSecretExpiresAt());
+        assertNotNull(response.getClaims().get(SCOPE.toString()));
+        assertNotNull(response.getClaims().get(FRONT_CHANNEL_LOGOUT_SESSION_REQUIRED.toString()));
+        assertTrue(Boolean.parseBoolean(response.getClaims().get(FRONT_CHANNEL_LOGOUT_SESSION_REQUIRED.toString())));
+        assertNotNull(response.getClaims().get(FRONT_CHANNEL_LOGOUT_URI.toString()));
+        assertNotNull(response.getClaims().get(ID_TOKEN_SIGNED_RESPONSE_ALG.toString()));
+        assertEquals(SignatureAlgorithm.RS512,
+                SignatureAlgorithm.fromString(response.getClaims().get(ID_TOKEN_SIGNED_RESPONSE_ALG.toString())));
+        assertNotNull(response.getClaims().get(ID_TOKEN_ENCRYPTED_RESPONSE_ALG.toString()));
+        assertEquals(KeyEncryptionAlgorithm.RSA1_5,
+                KeyEncryptionAlgorithm.fromName(response.getClaims().get(ID_TOKEN_ENCRYPTED_RESPONSE_ALG.toString())));
+        assertNotNull(response.getClaims().get(ID_TOKEN_ENCRYPTED_RESPONSE_ENC.toString()));
+        assertEquals(BlockEncryptionAlgorithm.A128CBC_PLUS_HS256,
+                BlockEncryptionAlgorithm.fromName(response.getClaims().get(ID_TOKEN_ENCRYPTED_RESPONSE_ENC.toString())));
+        assertNotNull(response.getClaims().get(USERINFO_SIGNED_RESPONSE_ALG.toString()));
+        assertEquals(SignatureAlgorithm.RS384,
+                SignatureAlgorithm.fromString(response.getClaims().get(USERINFO_SIGNED_RESPONSE_ALG.toString())));
+        assertNotNull(response.getClaims().get(USERINFO_ENCRYPTED_RESPONSE_ALG.toString()));
+        assertEquals(KeyEncryptionAlgorithm.A128KW,
+                KeyEncryptionAlgorithm.fromName(response.getClaims().get(USERINFO_ENCRYPTED_RESPONSE_ALG.toString())));
+        assertNotNull(response.getClaims().get(USERINFO_ENCRYPTED_RESPONSE_ENC.toString()));
+        assertEquals(BlockEncryptionAlgorithm.A128GCM,
+                BlockEncryptionAlgorithm.fromName(response.getClaims().get(USERINFO_ENCRYPTED_RESPONSE_ENC.toString())));
+        assertNotNull(response.getClaims().get(REQUEST_OBJECT_SIGNING_ALG.toString()));
+        assertEquals(SignatureAlgorithm.RS256,
+                SignatureAlgorithm.fromString(response.getClaims().get(REQUEST_OBJECT_SIGNING_ALG.toString())));
+        assertNotNull(response.getClaims().get(REQUEST_OBJECT_ENCRYPTION_ALG.toString()));
+        assertEquals(KeyEncryptionAlgorithm.A256KW,
+                KeyEncryptionAlgorithm.fromName(response.getClaims().get(REQUEST_OBJECT_ENCRYPTION_ALG.toString())));
+        assertNotNull(response.getClaims().get(REQUEST_OBJECT_ENCRYPTION_ENC.toString()));
+        assertEquals(BlockEncryptionAlgorithm.A256CBC_PLUS_HS512,
+                BlockEncryptionAlgorithm.fromName(response.getClaims().get(REQUEST_OBJECT_ENCRYPTION_ENC.toString())));
+        assertNotNull(response.getClaims().get(TOKEN_ENDPOINT_AUTH_METHOD.toString()));
+        assertEquals(AuthenticationMethod.CLIENT_SECRET_JWT,
+                AuthenticationMethod.fromString(response.getClaims().get(TOKEN_ENDPOINT_AUTH_METHOD.toString())));
+        assertNotNull(response.getClaims().get(TOKEN_ENDPOINT_AUTH_SIGNING_ALG.toString()));
+        assertEquals(SignatureAlgorithm.ES256,
+                SignatureAlgorithm.fromString(response.getClaims().get(TOKEN_ENDPOINT_AUTH_SIGNING_ALG.toString())));
+        JSONArray scopesJsonArray = new JSONArray(StringUtils.spaceSeparatedToList(response.getClaims().get(SCOPE.toString())));
+        List<String> scopes = new ArrayList<String>();
+        for (int i = 0; i < scopesJsonArray.length(); i++) {
+            scopes.add(scopesJsonArray.get(i).toString());
+        }
+        assertTrue(scopes.contains("openid"));
+        assertTrue(scopes.contains("address"));
+        assertTrue(scopes.contains("email"));
+        assertTrue(scopes.contains("profile"));
+        assertTrue(scopes.contains("phone"));
+        assertTrue(scopes.contains("clientinfo"));
+        assertTrue(response.getClaims().containsKey(SOFTWARE_ID.toString()));
+        assertTrue(response.getClaims().containsKey(SOFTWARE_VERSION.toString()));
+        assertTrue(response.getClaims().containsKey(SOFTWARE_STATEMENT.toString()));
+    }
+
+    @Test
+    public void requestClientRegistrationFail1() throws Exception {
+        showTitle("requestClientRegistrationFail1");
+
+        RegisterRequest registerRequest = new RegisterRequest();
+        registerRequest.setSoftwareStatement("INVALID_SOFTWARE_STATEMENT");
+
+        RegisterClient registerClient = new RegisterClient(registrationEndpoint);
+        registerClient.setRequest(registerRequest);
+        registerClient.setExecutor(clientEngine(true));
+        RegisterResponse response = registerClient.exec();
+
+        showClient(registerClient);
+        assertEquals(response.getStatus(), 400);
+        assertNotNull(response.getEntity());
+        assertNotNull(response.getErrorType());
+        assertNotNull(response.getErrorDescription());
+    }
+
+    @Test
+    public void requestClientRegistrationFail2() throws Exception {
+        showTitle("requestClientRegistrationFail2");
+
+        RegisterRequest registerRequest = new RegisterRequest();
+        // Test with invalid signature
+        registerRequest.setSoftwareStatement("eyJhbGciOiJSUzI1NiIsImtpZCI6IjQ4YmZhOGE0LWM4YTctNGEwOS1hZTk4LWJmMzI1ZDc0OTExOSJ9.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.LtrjFNPRXHArcZbAv0vcYMcOdsQG8jZ0qkNPkmAQlHwyoJN1F3jv6OI8-rdu-55osStX39_NPYjpjHwzakhi3XN0pO_b1HL6sXAkhJ-UfQ7jNgtElfJ39b0maONdEJl4nblNhEho2-SbfO_OIOIFJha-OcsTS9-DUJ6umRNfaIoNhioFzrVj8rDK-MWNcXQNCKvj4IPgH2hW7adAuj6Du1k7BdtH-IeIVb1ZCjnOl9IETbq7wyc4xL6tILw40oelgVyyHCFbIWZOJJI8n59U8DlqIBqYx0lCOjIY-BH6DLxZ1PxGrXxqMRJx1h64Oh9QxuzK-GzUY4bFInnvv3Gf3g");
+
+        RegisterClient registerClient = new RegisterClient(registrationEndpoint);
+        registerClient.setRequest(registerRequest);
+        registerClient.setExecutor(clientEngine(true));
+        RegisterResponse response = registerClient.exec();
+
+        showClient(registerClient);
+        assertEquals(response.getStatus(), 400);
+        assertNotNull(response.getEntity());
+        assertNotNull(response.getErrorType());
+        assertNotNull(response.getErrorDescription());
+    }
+}
\ No newline at end of file
diff --git a/oxAuth/Client/src/test/java/org/gluu/oxauth/ws/rs/ResponseTypesRestrictionHttpTest.java b/oxAuth/Client/src/test/java/org/gluu/oxauth/ws/rs/ResponseTypesRestrictionHttpTest.java
new file mode 100644
index 00000000..57178bf0
--- /dev/null
+++ b/oxAuth/Client/src/test/java/org/gluu/oxauth/ws/rs/ResponseTypesRestrictionHttpTest.java
@@ -0,0 +1,663 @@
+/*
+ * oxAuth is available under the MIT License (2008). See http://opensource.org/licenses/MIT for full text.
+ *
+ * Copyright (c) 2014, Gluu
+ */
+
+package org.gluu.oxauth.ws.rs;
+
+import static org.gluu.oxauth.model.register.RegisterRequestParam.APPLICATION_TYPE;
+import static org.gluu.oxauth.model.register.RegisterRequestParam.CLIENT_NAME;
+import static org.gluu.oxauth.model.register.RegisterRequestParam.ID_TOKEN_SIGNED_RESPONSE_ALG;
+import static org.gluu.oxauth.model.register.RegisterRequestParam.REDIRECT_URIS;
+import static org.gluu.oxauth.model.register.RegisterRequestParam.RESPONSE_TYPES;
+import static org.gluu.oxauth.model.register.RegisterRequestParam.SCOPE;
+import static org.testng.Assert.assertEquals;
+import static org.testng.Assert.assertNotNull;
+import static org.testng.Assert.assertNull;
+import static org.testng.Assert.assertTrue;
+
+import java.util.Arrays;
+import java.util.List;
+import java.util.UUID;
+
+import org.gluu.oxauth.BaseTest;
+import org.gluu.oxauth.client.AuthorizationRequest;
+import org.gluu.oxauth.client.AuthorizationResponse;
+import org.gluu.oxauth.client.AuthorizeClient;
+import org.gluu.oxauth.client.JwkClient;
+import org.gluu.oxauth.client.RegisterClient;
+import org.gluu.oxauth.client.RegisterRequest;
+import org.gluu.oxauth.client.RegisterResponse;
+import org.gluu.oxauth.client.TokenClient;
+import org.gluu.oxauth.client.TokenRequest;
+import org.gluu.oxauth.client.TokenResponse;
+import org.gluu.oxauth.model.common.AuthenticationMethod;
+import org.gluu.oxauth.model.common.GrantType;
+import org.gluu.oxauth.model.common.Prompt;
+import org.gluu.oxauth.model.common.ResponseType;
+import org.gluu.oxauth.model.crypto.signature.RSAPublicKey;
+import org.gluu.oxauth.model.crypto.signature.SignatureAlgorithm;
+import org.gluu.oxauth.model.jws.RSASigner;
+import org.gluu.oxauth.model.jwt.Jwt;
+import org.gluu.oxauth.model.jwt.JwtClaimName;
+import org.gluu.oxauth.model.jwt.JwtHeaderName;
+import org.gluu.oxauth.model.register.ApplicationType;
+import org.gluu.oxauth.model.util.StringUtils;
+import org.testng.ITestContext;
+import org.testng.annotations.DataProvider;
+import org.testng.annotations.Parameters;
+import org.testng.annotations.Test;
+
+/**
+ * @author Javier Rojas Blum
+ * @version November 29, 2017
+ */
+public class ResponseTypesRestrictionHttpTest extends BaseTest {
+
+    /**
+     * Registering without provide the response_types param, should register the Client using only
+     * the <code>code</code> response type.
+     */
+    @Parameters({"redirectUris", "userId", "userSecret", "redirectUri", "sectorIdentifierUri"})
+    @Test
+    public void omittedResponseTypes(
+            final String redirectUris, final String userId, final String userSecret, final String redirectUri,
+            final String sectorIdentifierUri) throws Exception {
+        showTitle("omittedResponseTypes");
+
+        // 1. Register client
+        RegisterRequest registerRequest = new RegisterRequest(ApplicationType.WEB, "oxAuth test app",
+                StringUtils.spaceSeparatedToList(redirectUris));
+        registerRequest.setTokenEndpointAuthMethod(AuthenticationMethod.CLIENT_SECRET_POST);
+        registerRequest.setSectorIdentifierUri(sectorIdentifierUri);
+
+        RegisterClient registerClient = new RegisterClient(registrationEndpoint);
+        registerClient.setRequest(registerRequest);
+        RegisterResponse registerResponse = registerClient.exec();
+
+        showClient(registerClient);
+        assertEquals(registerResponse.getStatus(), 200, "Unexpected response code: " + registerResponse.getEntity());
+        assertNotNull(registerResponse.getClientId());
+        assertNotNull(registerResponse.getClientSecret());
+        assertNotNull(registerResponse.getRegistrationAccessToken());
+        assertNotNull(registerResponse.getClientIdIssuedAt());
+        assertNotNull(registerResponse.getClientSecretExpiresAt());
+
+        String clientId = registerResponse.getClientId();
+        String clientSecret = registerResponse.getClientSecret();
+        String registrationAccessToken = registerResponse.getRegistrationAccessToken();
+        String registrationClientUri = registerResponse.getRegistrationClientUri();
+
+        // 2. Client read
+        RegisterRequest readClientRequest = new RegisterRequest(registrationAccessToken);
+
+        RegisterClient readClient = new RegisterClient(registrationClientUri);
+        readClient.setRequest(readClientRequest);
+        RegisterResponse readClientResponse = readClient.exec();
+
+        showClient(readClient);
+        assertEquals(readClientResponse.getStatus(), 200, "Unexpected response code: " + readClientResponse.getEntity());
+        assertNotNull(readClientResponse.getClientId());
+        assertNotNull(readClientResponse.getClientSecret());
+        assertNotNull(readClientResponse.getClientIdIssuedAt());
+        assertNotNull(readClientResponse.getClientSecretExpiresAt());
+
+        assertNotNull(readClientResponse.getClaims().get(RESPONSE_TYPES.toString()));
+        assertNotNull(readClientResponse.getClaims().get(REDIRECT_URIS.toString()));
+        assertNotNull(readClientResponse.getClaims().get(APPLICATION_TYPE.toString()));
+        assertNotNull(readClientResponse.getClaims().get(CLIENT_NAME.toString()));
+        assertNotNull(readClientResponse.getClaims().get(ID_TOKEN_SIGNED_RESPONSE_ALG.toString()));
+        assertNotNull(readClientResponse.getClaims().get(SCOPE.toString()));
+
+        // 3. Request authorization
+        List<ResponseType> responseTypes = Arrays.asList(ResponseType.CODE);
+        List<String> scopes = Arrays.asList(
+                "openid",
+                "profile",
+                "address",
+                "email");
+        String state = UUID.randomUUID().toString();
+
+        AuthorizationRequest authorizationRequest = new AuthorizationRequest(responseTypes, clientId, scopes, redirectUri, null);
+        authorizationRequest.setState(state);
+
+        AuthorizationResponse authorizationResponse = authenticateResourceOwnerAndGrantAccess(
+                authorizationEndpoint, authorizationRequest, userId, userSecret);
+
+        assertNotNull(authorizationResponse.getLocation(), "The location is null");
+        assertNotNull(authorizationResponse.getCode(), "The authorization code is null");
+        assertNotNull(authorizationResponse.getState(), "The state is null");
+        assertNotNull(authorizationResponse.getScope(), "The scope is null");
+
+        String authorizationCode = authorizationResponse.getCode();
+
+        // 4. Get Access Token
+        TokenRequest tokenRequest = new TokenRequest(GrantType.AUTHORIZATION_CODE);
+        tokenRequest.setCode(authorizationCode);
+        tokenRequest.setRedirectUri(redirectUri);
+        tokenRequest.setAuthUsername(clientId);
+        tokenRequest.setAuthPassword(clientSecret);
+        tokenRequest.setAuthenticationMethod(AuthenticationMethod.CLIENT_SECRET_POST);
+
+        TokenClient tokenClient = new TokenClient(tokenEndpoint);
+        tokenClient.setRequest(tokenRequest);
+        TokenResponse tokenResponse = tokenClient.exec();
+
+        showClient(tokenClient);
+        assertEquals(tokenResponse.getStatus(), 200, "Unexpected response code: " + tokenResponse.getStatus());
+        assertNotNull(tokenResponse.getEntity(), "The entity is null");
+        assertNotNull(tokenResponse.getAccessToken(), "The access token is null");
+        assertNotNull(tokenResponse.getExpiresIn(), "The expires in value is null");
+        assertNotNull(tokenResponse.getTokenType(), "The token type is null");
+        assertNotNull(tokenResponse.getRefreshToken(), "The refresh token is null");
+    }
+
+    @DataProvider(name = "omittedResponseTypesFailDataProvider")
+    public Object[][] omittedResponseTypesFailDataProvider(ITestContext context) {
+        String redirectUris = context.getCurrentXmlTest().getParameter("redirectUris");
+        String userId = context.getCurrentXmlTest().getParameter("userId");
+        String userSecret = context.getCurrentXmlTest().getParameter("userSecret");
+        String redirectUri = context.getCurrentXmlTest().getParameter("redirectUri");
+        String sectorIdentifierUri = context.getCurrentXmlTest().getParameter("sectorIdentifierUri");
+
+        return new Object[][]{
+                {redirectUris, redirectUri, userId, userSecret, Arrays.asList(ResponseType.CODE, ResponseType.ID_TOKEN), sectorIdentifierUri},
+                {redirectUris, redirectUri, userId, userSecret, Arrays.asList(ResponseType.TOKEN), sectorIdentifierUri},
+                {redirectUris, redirectUri, userId, userSecret, Arrays.asList(ResponseType.TOKEN, ResponseType.ID_TOKEN), sectorIdentifierUri},
+                {redirectUris, redirectUri, userId, userSecret, Arrays.asList(ResponseType.CODE, ResponseType.TOKEN), sectorIdentifierUri},
+                {redirectUris, redirectUri, userId, userSecret, Arrays.asList(ResponseType.CODE, ResponseType.TOKEN, ResponseType.ID_TOKEN), sectorIdentifierUri},
+                {redirectUris, redirectUri, userId, userSecret, Arrays.asList(ResponseType.ID_TOKEN), sectorIdentifierUri},
+        };
+    }
+
+    /**
+     * Authorization request with the other Response types combination should fail.
+     */
+    @Test(dataProvider = "omittedResponseTypesFailDataProvider")
+    public void omittedResponseTypesFail(
+            final String redirectUris, final String redirectUri, final String userId, final String userSecret,
+            final List<ResponseType> responseTypes, final String sectorIdentifierUri) throws Exception {
+        showTitle("omittedResponseTypesFail");
+
+        // 1. Register client
+        RegisterRequest registerRequest = new RegisterRequest(ApplicationType.WEB, "oxAuth test app",
+                StringUtils.spaceSeparatedToList(redirectUris));
+        registerRequest.setSectorIdentifierUri(sectorIdentifierUri);
+
+        RegisterClient registerClient = new RegisterClient(registrationEndpoint);
+        registerClient.setRequest(registerRequest);
+        RegisterResponse registerResponse = registerClient.exec();
+
+        showClient(registerClient);
+        assertEquals(registerResponse.getStatus(), 200, "Unexpected response code: " + registerResponse.getEntity());
+        assertNotNull(registerResponse.getClientId());
+        assertNotNull(registerResponse.getClientSecret());
+        assertNotNull(registerResponse.getRegistrationAccessToken());
+        assertNotNull(registerResponse.getClientIdIssuedAt());
+        assertNotNull(registerResponse.getClientSecretExpiresAt());
+
+        String clientId = registerResponse.getClientId();
+        String registrationAccessToken = registerResponse.getRegistrationAccessToken();
+        String registrationClientUri = registerResponse.getRegistrationClientUri();
+
+        // 2. Client read
+        RegisterRequest readClientRequest = new RegisterRequest(registrationAccessToken);
+
+        RegisterClient readClient = new RegisterClient(registrationClientUri);
+        readClient.setRequest(readClientRequest);
+        RegisterResponse readClientResponse = readClient.exec();
+
+        showClient(readClient);
+        assertEquals(readClientResponse.getStatus(), 200, "Unexpected response code: " + readClientResponse.getEntity());
+        assertNotNull(readClientResponse.getClientId());
+        assertNotNull(readClientResponse.getClientSecret());
+        assertNotNull(readClientResponse.getClientIdIssuedAt());
+        assertNotNull(readClientResponse.getClientSecretExpiresAt());
+
+        assertNotNull(readClientResponse.getClaims().get(RESPONSE_TYPES.toString()));
+        assertNotNull(readClientResponse.getClaims().get(REDIRECT_URIS.toString()));
+        assertNotNull(readClientResponse.getClaims().get(APPLICATION_TYPE.toString()));
+        assertNotNull(readClientResponse.getClaims().get(CLIENT_NAME.toString()));
+        assertNotNull(readClientResponse.getClaims().get(ID_TOKEN_SIGNED_RESPONSE_ALG.toString()));
+        assertNotNull(readClientResponse.getClaims().get(SCOPE.toString()));
+
+        // 3. Request authorization
+        List<String> scopes = Arrays.asList(
+                "openid",
+                "profile",
+                "address",
+                "email");
+        String state = UUID.randomUUID().toString();
+
+        AuthorizationRequest authorizationRequest = new AuthorizationRequest(responseTypes, clientId, scopes, redirectUri, null);
+        authorizationRequest.setState(state);
+        authorizationRequest.setAuthUsername(userId);
+        authorizationRequest.setAuthPassword(userSecret);
+        authorizationRequest.getPrompts().add(Prompt.NONE);
+
+        AuthorizeClient authorizeClient = new AuthorizeClient(authorizationEndpoint);
+        authorizeClient.setRequest(authorizationRequest);
+        AuthorizationResponse authorizationResponse = authorizeClient.exec();
+
+        showClient(authorizeClient);
+        assertTrue(authorizationResponse.getStatus() == 302
+                || authorizationResponse.getStatus() == 400, "Unexpected response code: " + authorizationResponse.getStatus());
+        assertNotNull(authorizationResponse.getErrorType(), "The error type is null");
+        assertNotNull(authorizationResponse.getErrorDescription(), "The error description is null");
+    }
+
+    /**
+     * Registering with the response_types param <code>code, id_token</code>.
+     */
+    @Parameters({"redirectUris", "userId", "userSecret", "redirectUri", "sectorIdentifierUri"})
+    @Test
+    public void responseTypesCodeIdToken(
+            final String redirectUris, final String userId, final String userSecret, final String redirectUri,
+            final String sectorIdentifierUri) throws Exception {
+        showTitle("responseTypesCodeIdToken");
+
+        List<ResponseType> responseTypes = Arrays.asList(
+                ResponseType.CODE,
+                ResponseType.ID_TOKEN);
+
+        // 1. Register client
+        RegisterRequest registerRequest = new RegisterRequest(ApplicationType.WEB, "oxAuth test app",
+                StringUtils.spaceSeparatedToList(redirectUris));
+        registerRequest.setResponseTypes(responseTypes);
+        registerRequest.setTokenEndpointAuthMethod(AuthenticationMethod.CLIENT_SECRET_POST);
+        registerRequest.setSectorIdentifierUri(sectorIdentifierUri);
+
+        RegisterClient registerClient = new RegisterClient(registrationEndpoint);
+        registerClient.setRequest(registerRequest);
+        RegisterResponse registerResponse = registerClient.exec();
+
+        showClient(registerClient);
+        assertEquals(registerResponse.getStatus(), 200, "Unexpected response code: " + registerResponse.getEntity());
+        assertNotNull(registerResponse.getClientId());
+        assertNotNull(registerResponse.getClientSecret());
+        assertNotNull(registerResponse.getRegistrationAccessToken());
+        assertNotNull(registerResponse.getClientIdIssuedAt());
+        assertNotNull(registerResponse.getClientSecretExpiresAt());
+
+        String clientId = registerResponse.getClientId();
+        String clientSecret = registerResponse.getClientSecret();
+        String registrationAccessToken = registerResponse.getRegistrationAccessToken();
+        String registrationClientUri = registerResponse.getRegistrationClientUri();
+
+        // 2. Client read
+        RegisterRequest readClientRequest = new RegisterRequest(registrationAccessToken);
+
+        RegisterClient readClient = new RegisterClient(registrationClientUri);
+        readClient.setRequest(readClientRequest);
+        RegisterResponse readClientResponse = readClient.exec();
+
+        showClient(readClient);
+        assertEquals(readClientResponse.getStatus(), 200, "Unexpected response code: " + readClientResponse.getEntity());
+        assertNotNull(readClientResponse.getClientId());
+        assertNotNull(readClientResponse.getClientSecret());
+        assertNotNull(readClientResponse.getClientIdIssuedAt());
+        assertNotNull(readClientResponse.getClientSecretExpiresAt());
+
+        assertNotNull(readClientResponse.getClaims().get(RESPONSE_TYPES.toString()));
+        assertNotNull(readClientResponse.getClaims().get(REDIRECT_URIS.toString()));
+        assertNotNull(readClientResponse.getClaims().get(APPLICATION_TYPE.toString()));
+        assertNotNull(readClientResponse.getClaims().get(CLIENT_NAME.toString()));
+        assertNotNull(readClientResponse.getClaims().get(ID_TOKEN_SIGNED_RESPONSE_ALG.toString()));
+        assertNotNull(readClientResponse.getClaims().get(SCOPE.toString()));
+
+        // 3. Request authorization
+        List<String> scopes = Arrays.asList(
+                "openid",
+                "profile",
+                "address",
+                "email");
+        String state = UUID.randomUUID().toString();
+        String nonce = UUID.randomUUID().toString();
+
+        AuthorizationRequest authorizationRequest = new AuthorizationRequest(responseTypes, clientId, scopes, redirectUri, nonce);
+        authorizationRequest.setState(state);
+
+        AuthorizationResponse authorizationResponse = authenticateResourceOwnerAndGrantAccess(
+                authorizationEndpoint, authorizationRequest, userId, userSecret);
+
+        assertNotNull(authorizationResponse.getLocation(), "The location is null");
+        assertNotNull(authorizationResponse.getCode(), "The authorization code is null");
+        assertNotNull(authorizationResponse.getIdToken(), "The id token is null");
+        assertNotNull(authorizationResponse.getState(), "The state is null");
+        assertNotNull(authorizationResponse.getScope(), "The scope is null");
+
+        String authorizationCode = authorizationResponse.getCode();
+        String idToken = authorizationResponse.getIdToken();
+
+        // 4. Validate code and id_token
+        Jwt jwt = Jwt.parse(idToken);
+        assertNotNull(jwt.getHeader().getClaimAsString(JwtHeaderName.TYPE));
+        assertNotNull(jwt.getHeader().getClaimAsString(JwtHeaderName.ALGORITHM));
+        assertNotNull(jwt.getClaims().getClaimAsString(JwtClaimName.ISSUER));
+        assertNotNull(jwt.getClaims().getClaimAsString(JwtClaimName.AUDIENCE));
+        assertNotNull(jwt.getClaims().getClaimAsString(JwtClaimName.EXPIRATION_TIME));
+        assertNotNull(jwt.getClaims().getClaimAsString(JwtClaimName.ISSUED_AT));
+        assertNotNull(jwt.getClaims().getClaimAsString(JwtClaimName.SUBJECT_IDENTIFIER));
+        assertNotNull(jwt.getClaims().getClaimAsString(JwtClaimName.CODE_HASH));
+        assertNotNull(jwt.getClaims().getClaimAsString(JwtClaimName.AUTHENTICATION_TIME));
+
+        RSAPublicKey publicKey = JwkClient.getRSAPublicKey(
+                jwksUri,
+                jwt.getHeader().getClaimAsString(JwtHeaderName.KEY_ID));
+        RSASigner rsaSigner = new RSASigner(SignatureAlgorithm.RS256, publicKey);
+
+        assertTrue(rsaSigner.validate(jwt));
+        assertTrue(rsaSigner.validateAuthorizationCode(authorizationCode, jwt));
+
+        // 5. Get Access Token
+        TokenRequest tokenRequest = new TokenRequest(GrantType.AUTHORIZATION_CODE);
+        tokenRequest.setCode(authorizationCode);
+        tokenRequest.setRedirectUri(redirectUri);
+        tokenRequest.setAuthUsername(clientId);
+        tokenRequest.setAuthPassword(clientSecret);
+        tokenRequest.setAuthenticationMethod(AuthenticationMethod.CLIENT_SECRET_POST);
+
+        TokenClient tokenClient = new TokenClient(tokenEndpoint);
+        tokenClient.setRequest(tokenRequest);
+        TokenResponse tokenResponse1 = tokenClient.exec();
+
+        showClient(tokenClient);
+        assertEquals(tokenResponse1.getStatus(), 200, "Unexpected response code: " + tokenResponse1.getStatus());
+        assertNotNull(tokenResponse1.getEntity(), "The entity is null");
+        assertNotNull(tokenResponse1.getAccessToken(), "The access token is null");
+        assertNotNull(tokenResponse1.getExpiresIn(), "The expires in value is null");
+        assertNotNull(tokenResponse1.getTokenType(), "The token type is null");
+        assertNotNull(tokenResponse1.getRefreshToken(), "The refresh token is null");
+    }
+
+    @DataProvider(name = "responseTypesCodeIdTokenFailDataProvider")
+    public Object[][] responseTypesCodeIdTokenFailDataProvider(ITestContext context) {
+        String redirectUris = context.getCurrentXmlTest().getParameter("redirectUris");
+        String redirectUri = context.getCurrentXmlTest().getParameter("redirectUri");
+        String userId = context.getCurrentXmlTest().getParameter("userId");
+        String userSecret = context.getCurrentXmlTest().getParameter("userSecret");
+        String sectorIdentifierUri = context.getCurrentXmlTest().getParameter("sectorIdentifierUri");
+
+        return new Object[][]{
+                {redirectUris, redirectUri, userId, userSecret, Arrays.asList(ResponseType.TOKEN), sectorIdentifierUri},
+                {redirectUris, redirectUri, userId, userSecret, Arrays.asList(ResponseType.TOKEN, ResponseType.ID_TOKEN), sectorIdentifierUri},
+                {redirectUris, redirectUri, userId, userSecret, Arrays.asList(ResponseType.CODE, ResponseType.TOKEN), sectorIdentifierUri},
+                {redirectUris, redirectUri, userId, userSecret, Arrays.asList(ResponseType.CODE, ResponseType.TOKEN, ResponseType.ID_TOKEN), sectorIdentifierUri},
+        };
+    }
+
+    /**
+     * Authorization request with the other Response types combination should fail.
+     */
+    @Test(dataProvider = "responseTypesCodeIdTokenFailDataProvider")
+    public void responseTypesCodeIdTokenFail(
+            final String redirectUris, final String redirectUri, final String userId, final String userSecret,
+            final List<ResponseType> responseTypes, final String sectorIdentifierUri) throws Exception {
+        showTitle("responseTypesCodeIdTokenFail");
+
+        // 1. Register client
+        RegisterRequest registerRequest = new RegisterRequest(ApplicationType.WEB, "oxAuth test app",
+                StringUtils.spaceSeparatedToList(redirectUris));
+        registerRequest.setResponseTypes(Arrays.asList(
+                ResponseType.CODE,
+                ResponseType.ID_TOKEN));
+        registerRequest.setSectorIdentifierUri(sectorIdentifierUri);
+
+        RegisterClient registerClient = new RegisterClient(registrationEndpoint);
+        registerClient.setRequest(registerRequest);
+        RegisterResponse registerResponse = registerClient.exec();
+
+        showClient(registerClient);
+        assertEquals(registerResponse.getStatus(), 200, "Unexpected response code: " + registerResponse.getEntity());
+        assertNotNull(registerResponse.getClientId());
+        assertNotNull(registerResponse.getClientSecret());
+        assertNotNull(registerResponse.getRegistrationAccessToken());
+        assertNotNull(registerResponse.getClientIdIssuedAt());
+        assertNotNull(registerResponse.getClientSecretExpiresAt());
+
+        String clientId = registerResponse.getClientId();
+        String registrationAccessToken = registerResponse.getRegistrationAccessToken();
+        String registrationClientUri = registerResponse.getRegistrationClientUri();
+
+        // 2. Client read
+        RegisterRequest readClientRequest = new RegisterRequest(registrationAccessToken);
+
+        RegisterClient readClient = new RegisterClient(registrationClientUri);
+        readClient.setRequest(readClientRequest);
+        RegisterResponse readClientResponse = readClient.exec();
+
+        showClient(readClient);
+        assertEquals(readClientResponse.getStatus(), 200, "Unexpected response code: " + readClientResponse.getEntity());
+        assertNotNull(readClientResponse.getClientId());
+        assertNotNull(readClientResponse.getClientSecret());
+        assertNotNull(readClientResponse.getClientIdIssuedAt());
+        assertNotNull(readClientResponse.getClientSecretExpiresAt());
+
+        assertNotNull(readClientResponse.getClaims().get(RESPONSE_TYPES.toString()));
+        assertNotNull(readClientResponse.getClaims().get(REDIRECT_URIS.toString()));
+        assertNotNull(readClientResponse.getClaims().get(APPLICATION_TYPE.toString()));
+        assertNotNull(readClientResponse.getClaims().get(CLIENT_NAME.toString()));
+        assertNotNull(readClientResponse.getClaims().get(ID_TOKEN_SIGNED_RESPONSE_ALG.toString()));
+        assertNotNull(readClientResponse.getClaims().get(SCOPE.toString()));
+
+        // 3. Request authorization
+        List<String> scopes = Arrays.asList(
+                "openid",
+                "profile",
+                "address",
+                "email");
+        String state = UUID.randomUUID().toString();
+
+        AuthorizationRequest authorizationRequest = new AuthorizationRequest(responseTypes, clientId, scopes, redirectUri, null);
+        authorizationRequest.setState(state);
+        authorizationRequest.setAuthUsername(userId);
+        authorizationRequest.setAuthPassword(userSecret);
+        authorizationRequest.getPrompts().add(Prompt.NONE);
+
+        AuthorizeClient authorizeClient = new AuthorizeClient(authorizationEndpoint);
+        authorizeClient.setRequest(authorizationRequest);
+        AuthorizationResponse authorizationResponse = authorizeClient.exec();
+
+        showClient(authorizeClient);
+        assertTrue(authorizationResponse.getStatus() == 302
+                || authorizationResponse.getStatus() == 400, "Unexpected response code: " + authorizationResponse.getStatus());
+        assertNotNull(authorizationResponse.getErrorType(), "The error type is null");
+        assertNotNull(authorizationResponse.getErrorDescription(), "The error description is null");
+    }
+
+    @Parameters({"redirectUris", "userId", "userSecret", "redirectUri", "sectorIdentifierUri"})
+    @Test
+    public void responseTypesTokenIdToken(
+            final String redirectUris, final String userId, final String userSecret, final String redirectUri,
+            final String sectorIdentifierUri) throws Exception {
+        showTitle("responseTypesTokenIdToken");
+
+        List<ResponseType> responseTypes = Arrays.asList(
+                ResponseType.TOKEN,
+                ResponseType.ID_TOKEN);
+
+        // 1. Register client
+        RegisterRequest registerRequest = new RegisterRequest(ApplicationType.WEB, "oxAuth test app",
+                StringUtils.spaceSeparatedToList(redirectUris));
+        registerRequest.setResponseTypes(responseTypes);
+        registerRequest.setSectorIdentifierUri(sectorIdentifierUri);
+
+        RegisterClient registerClient = new RegisterClient(registrationEndpoint);
+        registerClient.setRequest(registerRequest);
+        RegisterResponse registerResponse = registerClient.exec();
+
+        showClient(registerClient);
+        assertEquals(registerResponse.getStatus(), 200, "Unexpected response code: " + registerResponse.getEntity());
+        assertNotNull(registerResponse.getClientId());
+        assertNotNull(registerResponse.getClientSecret());
+        assertNotNull(registerResponse.getRegistrationAccessToken());
+        assertNotNull(registerResponse.getClientIdIssuedAt());
+        assertNotNull(registerResponse.getClientSecretExpiresAt());
+
+        String clientId = registerResponse.getClientId();
+        String registrationAccessToken = registerResponse.getRegistrationAccessToken();
+        String registrationClientUri = registerResponse.getRegistrationClientUri();
+
+        // 2. Client read
+        RegisterRequest readClientRequest = new RegisterRequest(registrationAccessToken);
+
+        RegisterClient readClient = new RegisterClient(registrationClientUri);
+        readClient.setRequest(readClientRequest);
+        RegisterResponse readClientResponse = readClient.exec();
+
+        showClient(readClient);
+        assertEquals(readClientResponse.getStatus(), 200, "Unexpected response code: " + readClientResponse.getEntity());
+        assertNotNull(readClientResponse.getClientId());
+        assertNotNull(readClientResponse.getClientSecret());
+        assertNotNull(readClientResponse.getClientIdIssuedAt());
+        assertNotNull(readClientResponse.getClientSecretExpiresAt());
+
+        assertNotNull(readClientResponse.getClaims().get(RESPONSE_TYPES.toString()));
+        assertNotNull(readClientResponse.getClaims().get(REDIRECT_URIS.toString()));
+        assertNotNull(readClientResponse.getClaims().get(APPLICATION_TYPE.toString()));
+        assertNotNull(readClientResponse.getClaims().get(CLIENT_NAME.toString()));
+        assertNotNull(readClientResponse.getClaims().get(ID_TOKEN_SIGNED_RESPONSE_ALG.toString()));
+        assertNotNull(readClientResponse.getClaims().get(SCOPE.toString()));
+
+        // 3. Request authorization
+        List<String> scopes = Arrays.asList(
+                "openid",
+                "profile",
+                "address",
+                "email");
+        String nonce = UUID.randomUUID().toString();
+        String state = UUID.randomUUID().toString();
+
+        AuthorizationRequest authorizationRequest = new AuthorizationRequest(
+                responseTypes, clientId, scopes, redirectUri, nonce);
+        authorizationRequest.setState(state);
+
+        AuthorizationResponse authorizationResponse = authenticateResourceOwnerAndGrantAccess(
+                authorizationEndpoint, authorizationRequest, userId, userSecret);
+
+        assertNotNull(authorizationResponse.getLocation(), "The location is null");
+        assertNull(authorizationResponse.getCode(), "The authorization code is null");
+        assertNotNull(authorizationResponse.getAccessToken(), "The access token is null");
+        assertNotNull(authorizationResponse.getIdToken(), "The id token is null");
+        assertNotNull(authorizationResponse.getState(), "The state is null");
+        assertNotNull(authorizationResponse.getScope(), "The scope is null");
+
+        String accessToken = authorizationResponse.getAccessToken();
+        String idToken = authorizationResponse.getIdToken();
+
+        // 4. Validate code and id_token
+        Jwt jwt = Jwt.parse(idToken);
+        assertNotNull(jwt.getHeader().getClaimAsString(JwtHeaderName.TYPE));
+        assertNotNull(jwt.getHeader().getClaimAsString(JwtHeaderName.ALGORITHM));
+        assertNotNull(jwt.getClaims().getClaimAsString(JwtClaimName.ISSUER));
+        assertNotNull(jwt.getClaims().getClaimAsString(JwtClaimName.AUDIENCE));
+        assertNotNull(jwt.getClaims().getClaimAsString(JwtClaimName.EXPIRATION_TIME));
+        assertNotNull(jwt.getClaims().getClaimAsString(JwtClaimName.ISSUED_AT));
+        assertNotNull(jwt.getClaims().getClaimAsString(JwtClaimName.SUBJECT_IDENTIFIER));
+        assertNotNull(jwt.getClaims().getClaimAsString(JwtClaimName.ACCESS_TOKEN_HASH));
+        assertNotNull(jwt.getClaims().getClaimAsString(JwtClaimName.AUTHENTICATION_TIME));
+
+        RSAPublicKey publicKey = JwkClient.getRSAPublicKey(
+                jwksUri,
+                jwt.getHeader().getClaimAsString(JwtHeaderName.KEY_ID));
+        RSASigner rsaSigner = new RSASigner(SignatureAlgorithm.RS256, publicKey);
+
+        assertTrue(rsaSigner.validate(jwt));
+        assertTrue(rsaSigner.validateAccessToken(accessToken, jwt));
+    }
+
+    @DataProvider(name = "responseTypesTokenIdTokenFailDataProvider")
+    public Object[][] responseTypesTokenIdTokenFailDataProvider(ITestContext context) {
+        String redirectUris = context.getCurrentXmlTest().getParameter("redirectUris");
+        String redirectUri = context.getCurrentXmlTest().getParameter("redirectUri");
+        String userId = context.getCurrentXmlTest().getParameter("userId");
+        String userSecret = context.getCurrentXmlTest().getParameter("userSecret");
+        String sectorIdentifierUri = context.getCurrentXmlTest().getParameter("sectorIdentifierUri");
+
+        return new Object[][]{
+                {redirectUris, redirectUri, userId, userSecret, Arrays.asList(ResponseType.CODE), sectorIdentifierUri},
+                {redirectUris, redirectUri, userId, userSecret, Arrays.asList(ResponseType.CODE, ResponseType.ID_TOKEN), sectorIdentifierUri},
+                {redirectUris, redirectUri, userId, userSecret, Arrays.asList(ResponseType.CODE, ResponseType.TOKEN), sectorIdentifierUri},
+                {redirectUris, redirectUri, userId, userSecret, Arrays.asList(ResponseType.CODE, ResponseType.TOKEN, ResponseType.ID_TOKEN), sectorIdentifierUri},
+        };
+    }
+
+    @Test(dataProvider = "responseTypesTokenIdTokenFailDataProvider")
+    public void responseTypesTokenIdTokenFail(
+            final String redirectUris, final String redirectUri, final String userId, final String userSecret,
+            final List<ResponseType> responseTypes, final String sectorIdentifierUri) throws Exception {
+        showTitle("responseTypesTokenIdTokenFail");
+
+        // 1. Register client
+        RegisterRequest registerRequest = new RegisterRequest(ApplicationType.WEB, "oxAuth test app",
+                StringUtils.spaceSeparatedToList(redirectUris));
+        registerRequest.setResponseTypes(Arrays.asList(
+                ResponseType.TOKEN,
+                ResponseType.ID_TOKEN));
+        registerRequest.setSectorIdentifierUri(sectorIdentifierUri);
+
+        RegisterClient registerClient = new RegisterClient(registrationEndpoint);
+        registerClient.setRequest(registerRequest);
+        RegisterResponse registerResponse = registerClient.exec();
+
+        showClient(registerClient);
+        assertEquals(registerResponse.getStatus(), 200, "Unexpected response code: " + registerResponse.getEntity());
+        assertNotNull(registerResponse.getClientId());
+        assertNotNull(registerResponse.getClientSecret());
+        assertNotNull(registerResponse.getRegistrationAccessToken());
+        assertNotNull(registerResponse.getClientIdIssuedAt());
+        assertNotNull(registerResponse.getClientSecretExpiresAt());
+
+        String clientId = registerResponse.getClientId();
+        String registrationAccessToken = registerResponse.getRegistrationAccessToken();
+        String registrationClientUri = registerResponse.getRegistrationClientUri();
+
+        // 2. Client read
+        RegisterRequest readClientRequest = new RegisterRequest(registrationAccessToken);
+
+        RegisterClient readClient = new RegisterClient(registrationClientUri);
+        readClient.setRequest(readClientRequest);
+        RegisterResponse readClientResponse = readClient.exec();
+
+        showClient(readClient);
+        assertEquals(readClientResponse.getStatus(), 200, "Unexpected response code: " + readClientResponse.getEntity());
+        assertNotNull(readClientResponse.getClientId());
+        assertNotNull(readClientResponse.getClientSecret());
+        assertNotNull(readClientResponse.getClientIdIssuedAt());
+        assertNotNull(readClientResponse.getClientSecretExpiresAt());
+
+        assertNotNull(readClientResponse.getClaims().get(RESPONSE_TYPES.toString()));
+        assertNotNull(readClientResponse.getClaims().get(REDIRECT_URIS.toString()));
+        assertNotNull(readClientResponse.getClaims().get(APPLICATION_TYPE.toString()));
+        assertNotNull(readClientResponse.getClaims().get(CLIENT_NAME.toString()));
+        assertNotNull(readClientResponse.getClaims().get(ID_TOKEN_SIGNED_RESPONSE_ALG.toString()));
+        assertNotNull(readClientResponse.getClaims().get(SCOPE.toString()));
+
+        // 3. Request authorization
+        List<String> scopes = Arrays.asList(
+                "openid",
+                "profile",
+                "address",
+                "email");
+        String nonce = UUID.randomUUID().toString();
+        String state = UUID.randomUUID().toString();
+
+        AuthorizationRequest authorizationRequest = new AuthorizationRequest(
+                responseTypes, clientId, scopes, redirectUri, nonce);
+        authorizationRequest.setState(state);
+        authorizationRequest.setAuthUsername(userId);
+        authorizationRequest.setAuthPassword(userSecret);
+        authorizationRequest.getPrompts().add(Prompt.NONE);
+
+        AuthorizeClient authorizeClient = new AuthorizeClient(authorizationEndpoint);
+        authorizeClient.setRequest(authorizationRequest);
+        AuthorizationResponse authorizationResponse = authorizeClient.exec();
+
+        showClient(authorizeClient);
+        assertTrue(authorizationResponse.getStatus() == 302
+                || authorizationResponse.getStatus() == 400, "Unexpected response code: " + authorizationResponse.getStatus());
+        assertNotNull(authorizationResponse.getErrorType(), "The error type is null");
+        assertNotNull(authorizationResponse.getErrorDescription(), "The error description is null");
+    }
+}
\ No newline at end of file
diff --git a/oxAuth/Client/src/test/java/org/gluu/oxauth/ws/rs/RevokeSessionHttpTest.java b/oxAuth/Client/src/test/java/org/gluu/oxauth/ws/rs/RevokeSessionHttpTest.java
new file mode 100644
index 00000000..858d2537
--- /dev/null
+++ b/oxAuth/Client/src/test/java/org/gluu/oxauth/ws/rs/RevokeSessionHttpTest.java
@@ -0,0 +1,91 @@
+package org.gluu.oxauth.ws.rs;
+
+import static org.gluu.oxauth.client.Asserter.assertOk;
+import static org.testng.Assert.assertEquals;
+import static org.testng.Assert.assertNotNull;
+
+import java.util.Arrays;
+import java.util.List;
+import java.util.UUID;
+
+import org.gluu.oxauth.BaseTest;
+import org.gluu.oxauth.client.AuthorizationRequest;
+import org.gluu.oxauth.client.AuthorizationResponse;
+import org.gluu.oxauth.client.RegisterClient;
+import org.gluu.oxauth.client.RegisterRequest;
+import org.gluu.oxauth.client.RegisterResponse;
+import org.gluu.oxauth.client.RevokeSessionClient;
+import org.gluu.oxauth.client.RevokeSessionRequest;
+import org.gluu.oxauth.client.RevokeSessionResponse;
+import org.gluu.oxauth.model.common.AuthenticationMethod;
+import org.gluu.oxauth.model.common.ResponseType;
+import org.gluu.oxauth.model.register.ApplicationType;
+import org.gluu.oxauth.model.util.StringUtils;
+import org.testng.annotations.Parameters;
+import org.testng.annotations.Test;
+
+/**
+ * @author Yuriy Zabrovarnyy
+ */
+public class RevokeSessionHttpTest extends BaseTest {
+
+    @Parameters({"redirectUris", "userId", "userSecret", "redirectUri", "sectorIdentifierUri", "umaPatClientId", "umaPatClientSecret"})
+    @Test
+    public void revokeSession(
+            final String redirectUris, final String userId, final String userSecret, final String redirectUri,
+            final String sectorIdentifierUri, String umaPatClientId, String umaPatClientSecret) throws Exception {
+        showTitle("revokeSession");
+
+        final AuthenticationMethod authnMethod = AuthenticationMethod.CLIENT_SECRET_BASIC;
+
+        // 1. Register client
+        List<ResponseType> responseTypes = Arrays.asList(ResponseType.CODE, ResponseType.ID_TOKEN);
+
+        RegisterRequest registerRequest = new RegisterRequest(ApplicationType.WEB, "oxAuth test app",
+                StringUtils.spaceSeparatedToList(redirectUris));
+
+        registerRequest.setTokenEndpointAuthMethod(authnMethod);
+        registerRequest.setSectorIdentifierUri(sectorIdentifierUri);
+        registerRequest.setResponseTypes(responseTypes);
+
+        RegisterClient registerClient = newRegisterClient(registerRequest);
+        RegisterResponse registerResponse = registerClient.exec();
+
+        showClient(registerClient);
+        assertOk(registerResponse);
+        assertNotNull(registerResponse.getRegistrationAccessToken());
+
+        // 3. Request authorization
+        List<String> scopes = Arrays.asList(
+                "openid",
+                "profile",
+                "address",
+                "email");
+        String state = UUID.randomUUID().toString();
+        String nonce = UUID.randomUUID().toString();
+
+        AuthorizationRequest authorizationRequest = new AuthorizationRequest(responseTypes, registerResponse.getClientId(), scopes, redirectUri, nonce);
+        authorizationRequest.setState(state);
+
+        AuthorizationResponse authorizationResponse = authenticateResourceOwnerAndGrantAccess(
+                authorizationEndpoint, authorizationRequest, userId, userSecret);
+
+        assertNotNull(authorizationResponse.getLocation(), "The location is null");
+        assertNotNull(authorizationResponse.getCode(), "The authorization code is null");
+        assertNotNull(authorizationResponse.getIdToken(), "The ID Token is null");
+        assertNotNull(authorizationResponse.getState(), "The state is null");
+        assertNotNull(authorizationResponse.getScope(), "The scope is null");
+
+        RevokeSessionRequest revokeSessionRequest = new RevokeSessionRequest("uid", "test");
+        revokeSessionRequest.setAuthenticationMethod(authnMethod);
+        revokeSessionRequest.setAuthUsername(umaPatClientId); // it must be client with revoke_session scope
+        revokeSessionRequest.setAuthPassword(umaPatClientSecret);
+
+        RevokeSessionClient revokeSessionClient = newRevokeSessionClient(revokeSessionRequest);
+        final RevokeSessionResponse revokeSessionResponse = revokeSessionClient.exec();
+
+        showClient(revokeSessionClient);
+
+        assertEquals(revokeSessionResponse.getStatus(), 200);
+    }
+}
diff --git a/oxAuth/Client/src/test/java/org/gluu/oxauth/ws/rs/SSOWithMultipleBackendServicesHttpTest.java b/oxAuth/Client/src/test/java/org/gluu/oxauth/ws/rs/SSOWithMultipleBackendServicesHttpTest.java
new file mode 100644
index 00000000..f68b1153
--- /dev/null
+++ b/oxAuth/Client/src/test/java/org/gluu/oxauth/ws/rs/SSOWithMultipleBackendServicesHttpTest.java
@@ -0,0 +1,372 @@
+/*
+ * oxAuth is available under the MIT License (2008). See http://opensource.org/licenses/MIT for full text.
+ *
+ * Copyright (c) 2014, Gluu
+ */
+
+package org.gluu.oxauth.ws.rs;
+
+import static org.testng.Assert.assertEquals;
+import static org.testng.Assert.assertNotNull;
+
+import java.util.Arrays;
+import java.util.UUID;
+
+import org.gluu.oxauth.BaseTest;
+import org.gluu.oxauth.client.AuthorizationRequest;
+import org.gluu.oxauth.client.AuthorizationResponse;
+import org.gluu.oxauth.client.AuthorizeClient;
+import org.gluu.oxauth.client.RegisterClient;
+import org.gluu.oxauth.client.RegisterRequest;
+import org.gluu.oxauth.client.RegisterResponse;
+import org.gluu.oxauth.client.TokenClient;
+import org.gluu.oxauth.client.TokenRequest;
+import org.gluu.oxauth.client.TokenResponse;
+import org.gluu.oxauth.client.UserInfoClient;
+import org.gluu.oxauth.client.UserInfoResponse;
+import org.gluu.oxauth.model.common.AuthenticationMethod;
+import org.gluu.oxauth.model.common.AuthorizationMethod;
+import org.gluu.oxauth.model.common.GrantType;
+import org.gluu.oxauth.model.common.Prompt;
+import org.gluu.oxauth.model.common.ResponseType;
+import org.gluu.oxauth.model.jwt.JwtClaimName;
+import org.gluu.oxauth.model.register.ApplicationType;
+import org.gluu.oxauth.model.util.StringUtils;
+import org.testng.annotations.Parameters;
+import org.testng.annotations.Test;
+
+/**
+ * Functional tests for SSO with Multiple Backend Services (HTTP)
+ *
+ * @author Javier Rojas Blum
+ * @version August 9, 2017
+ */
+public class SSOWithMultipleBackendServicesHttpTest extends BaseTest {
+
+    @Parameters({"redirectUris", "userId", "userSecret", "redirectUri", "sectorIdentifierUri"})
+    @Test
+    public void sessionWorkFlow1(
+            final String redirectUris, final String userId, final String userSecret, final String redirectUri,
+            final String sectorIdentifierUri) throws Exception {
+        showTitle("sessionWorkFlow1");
+
+        // Register client
+        RegisterRequest registerRequest = new RegisterRequest(ApplicationType.WEB, "oxAuth test app",
+                StringUtils.spaceSeparatedToList(redirectUris));
+        registerRequest.setTokenEndpointAuthMethod(AuthenticationMethod.CLIENT_SECRET_BASIC);
+        registerRequest.setSectorIdentifierUri(sectorIdentifierUri);
+
+        RegisterClient registerClient = new RegisterClient(registrationEndpoint);
+        registerClient.setRequest(registerRequest);
+        RegisterResponse registerResponse = registerClient.exec();
+
+        showClient(registerClient);
+        assertEquals(registerResponse.getStatus(), 200, "Unexpected response code: " + registerResponse.getEntity());
+        assertNotNull(registerResponse.getClientId());
+        assertNotNull(registerResponse.getClientSecret());
+        assertNotNull(registerResponse.getRegistrationAccessToken());
+        assertNotNull(registerResponse.getClientIdIssuedAt());
+        assertNotNull(registerResponse.getClientSecretExpiresAt());
+
+        String clientId = registerResponse.getClientId();
+        String clientSecret = registerResponse.getClientSecret();
+
+        String state1 = UUID.randomUUID().toString();
+
+        AuthorizationRequest authorizationRequest1 = new AuthorizationRequest(
+                Arrays.asList(ResponseType.CODE),
+                clientId,
+                Arrays.asList("openid", "profile", "email"),
+                redirectUri,
+                null);
+
+        authorizationRequest1.setState(state1);
+        authorizationRequest1.setRequestSessionId(true);
+
+        AuthorizationResponse authorizationResponse1 = authenticateResourceOwnerAndGrantAccess(
+                authorizationEndpoint, authorizationRequest1, userId, userSecret);
+
+        assertNotNull(authorizationResponse1.getLocation(), "The location is null");
+        assertNotNull(authorizationResponse1.getCode(), "The authorization code is null");
+        assertNotNull(authorizationResponse1.getSessionId(), "The session id is null");
+        assertNotNull(authorizationResponse1.getScope(), "The scope is null");
+        assertNotNull(authorizationResponse1.getState(), "The state is null");
+        assertEquals(authorizationResponse1.getState(), state1);
+
+        String code1 = authorizationResponse1.getCode();
+        String sessionId = authorizationResponse1.getSessionId();
+
+        // TV sends the code to the Backend
+        // We don't use httpClient and cookieStore during this call
+
+        ////////////////////////////////////////////////
+        //             Backend  1 side. Code 1        //
+        ////////////////////////////////////////////////
+
+        // Get the access token
+        TokenClient tokenClient1 = new TokenClient(tokenEndpoint);
+        TokenResponse tokenResponse1 = tokenClient1.execAuthorizationCode(code1, redirectUri, clientId, clientSecret);
+
+        showClient(tokenClient1);
+        assertEquals(tokenResponse1.getStatus(), 200, "Unexpected response code: " + tokenResponse1.getStatus());
+        assertNotNull(tokenResponse1.getEntity(), "The entity is null");
+        assertNotNull(tokenResponse1.getAccessToken(), "The access token is null");
+        assertNotNull(tokenResponse1.getExpiresIn(), "The expires in value is null");
+        assertNotNull(tokenResponse1.getTokenType(), "The token type is null");
+        assertNotNull(tokenResponse1.getRefreshToken(), "The refresh token is null");
+
+        String accessToken1 = tokenResponse1.getAccessToken();
+
+        // Get the user's claims
+        UserInfoClient userInfoClient1 = new UserInfoClient(userInfoEndpoint);
+        UserInfoResponse userInfoResponse1 = userInfoClient1.execUserInfo(accessToken1);
+
+        showClient(userInfoClient1);
+        assertEquals(userInfoResponse1.getStatus(), 200, "Unexpected response code: " + userInfoResponse1.getStatus());
+        assertNotNull(userInfoResponse1.getClaim(JwtClaimName.SUBJECT_IDENTIFIER), "Unexpected result: subject not found");
+        assertNotNull(userInfoResponse1.getClaim(JwtClaimName.NAME), "Unexpected result: name not found");
+        assertNotNull(userInfoResponse1.getClaim(JwtClaimName.GIVEN_NAME), "Unexpected result: given_name not found");
+        assertNotNull(userInfoResponse1.getClaim(JwtClaimName.FAMILY_NAME), "Unexpected result: family_name not found");
+        assertNotNull(userInfoResponse1.getClaim(JwtClaimName.EMAIL), "Unexpected result: email not found");
+
+
+        ////////////////////////////////////////////////
+        //             TV side. Code 2                //
+        ////////////////////////////////////////////////
+
+        String state2 = UUID.randomUUID().toString();
+
+        AuthorizationRequest authorizationRequest2 = new AuthorizationRequest(
+                Arrays.asList(ResponseType.CODE),
+                clientId,
+                Arrays.asList("openid", "profile", "email"),
+                redirectUri,
+                null);
+
+        authorizationRequest2.getPrompts().add(Prompt.NONE);
+        authorizationRequest2.setState(state2);
+        authorizationRequest2.setSessionId(sessionId);
+
+        AuthorizeClient authorizeClient2 = new AuthorizeClient(authorizationEndpoint);
+        authorizeClient2.setRequest(authorizationRequest2);
+        AuthorizationResponse authorizationResponse2 = authorizeClient2.exec();
+
+        showClient(authorizeClient2);
+        assertEquals(authorizationResponse2.getStatus(), 302, "Unexpected response code: " + authorizationResponse2.getStatus());
+        assertNotNull(authorizationResponse2.getLocation(), "The location is null");
+        assertNotNull(authorizationResponse2.getCode(), "The authorization code is null");
+        assertNotNull(authorizationResponse2.getScope(), "The scope is null");
+        assertNotNull(authorizationResponse2.getState(), "The state is null");
+        assertEquals(authorizationResponse2.getState(), state2);
+
+        String code2 = authorizationResponse2.getCode();
+
+        // TV sends the code to the Backend
+        // We don't use httpClient and cookieStore during this call
+
+        ////////////////////////////////////////////////
+        //             Backend  2 side. Code 2        //
+        ////////////////////////////////////////////////
+
+        // Get the access token
+        TokenClient tokenClient2 = new TokenClient(tokenEndpoint);
+        TokenResponse tokenResponse2 = tokenClient2.execAuthorizationCode(code2, redirectUri, clientId, clientSecret);
+
+        showClient(tokenClient2);
+        assertEquals(tokenResponse2.getStatus(), 200, "Unexpected response code: " + tokenResponse2.getStatus());
+        assertNotNull(tokenResponse2.getEntity(), "The entity is null");
+        assertNotNull(tokenResponse2.getAccessToken(), "The access token is null");
+        assertNotNull(tokenResponse2.getExpiresIn(), "The expires in value is null");
+        assertNotNull(tokenResponse2.getTokenType(), "The token type is null");
+        assertNotNull(tokenResponse2.getRefreshToken(), "The refresh token is null");
+
+        String accessToken2 = tokenResponse2.getAccessToken();
+
+        // Get the user's claims
+        UserInfoClient userInfoClient2 = new UserInfoClient(userInfoEndpoint);
+        UserInfoResponse userInfoResponse2 = userInfoClient2.execUserInfo(accessToken2);
+
+        showClient(userInfoClient2);
+        assertEquals(userInfoResponse2.getStatus(), 200, "Unexpected response code: " + userInfoResponse2.getStatus());
+        assertNotNull(userInfoResponse2.getClaim(JwtClaimName.SUBJECT_IDENTIFIER), "Unexpected result: subject not found");
+        assertNotNull(userInfoResponse2.getClaim(JwtClaimName.NAME), "Unexpected result: name not found");
+        assertNotNull(userInfoResponse2.getClaim(JwtClaimName.GIVEN_NAME), "Unexpected result: given_name not found");
+        assertNotNull(userInfoResponse2.getClaim(JwtClaimName.FAMILY_NAME), "Unexpected result: family_name not found");
+        assertNotNull(userInfoResponse2.getClaim(JwtClaimName.EMAIL), "Unexpected result: email not found");
+    }
+
+    @Parameters({"redirectUris", "redirectUri", "userInum", "userEmail", "sectorIdentifierUri"})
+    @Test
+    public void sessionWorkFlow2(
+            final String redirectUris, final String redirectUri, final String userInum, final String userEmail,
+            final String sectorIdentifierUri) throws Exception {
+        showTitle("sessionWorkFlow2");
+
+        // Register client
+        RegisterRequest registerRequest = new RegisterRequest(ApplicationType.WEB, "oxAuth test app",
+                StringUtils.spaceSeparatedToList(redirectUris));
+        registerRequest.setTokenEndpointAuthMethod(AuthenticationMethod.CLIENT_SECRET_POST);
+        registerRequest.setSectorIdentifierUri(sectorIdentifierUri);
+
+        RegisterClient registerClient = new RegisterClient(registrationEndpoint);
+        registerClient.setRequest(registerRequest);
+        RegisterResponse registerResponse = registerClient.exec();
+
+        showClient(registerClient);
+        assertEquals(registerResponse.getStatus(), 200, "Unexpected response code: " + registerResponse.getEntity());
+        assertNotNull(registerResponse.getClientId());
+        assertNotNull(registerResponse.getClientSecret());
+        assertNotNull(registerResponse.getRegistrationAccessToken());
+        assertNotNull(registerResponse.getClientIdIssuedAt());
+        assertNotNull(registerResponse.getClientSecretExpiresAt());
+
+        String clientId = registerResponse.getClientId();
+        String clientSecret = registerResponse.getClientSecret();
+
+        // Authorization code flow to authenticate on B1
+
+        String state1 = UUID.randomUUID().toString();
+
+        AuthorizationRequest authorizationRequest1 = new AuthorizationRequest(
+                Arrays.asList(ResponseType.CODE),
+                clientId,
+                Arrays.asList("openid", "profile", "email"),
+                redirectUri,
+                null);
+
+        authorizationRequest1.addCustomParameter("mail", userEmail);
+        authorizationRequest1.addCustomParameter("inum", userInum);
+        authorizationRequest1.getPrompts().add(Prompt.NONE);
+        authorizationRequest1.setState(state1);
+        authorizationRequest1.setAuthorizationMethod(AuthorizationMethod.FORM_ENCODED_BODY_PARAMETER);
+        authorizationRequest1.setRequestSessionId(true);
+
+        AuthorizationResponse authorizationResponse1 = authorizationRequestAndGrantAccess(
+                authorizationEndpoint, authorizationRequest1);
+
+        assertNotNull(authorizationResponse1.getLocation(), "The location is null");
+        assertNotNull(authorizationResponse1.getCode(), "The authorization code is null");
+        assertNotNull(authorizationResponse1.getSessionId(), "The session id is null");
+        assertNotNull(authorizationResponse1.getScope(), "The scope is null");
+        assertNotNull(authorizationResponse1.getState(), "The state is null");
+        assertEquals(authorizationRequest1.getState(), state1);
+
+        String authorizationCode1 = authorizationResponse1.getCode();
+        String sessionId = authorizationResponse1.getSessionId();
+
+        TokenRequest tokenRequest1 = new TokenRequest(GrantType.AUTHORIZATION_CODE);
+        tokenRequest1.setCode(authorizationCode1);
+        tokenRequest1.setRedirectUri(redirectUri);
+        tokenRequest1.setAuthUsername(clientId);
+        tokenRequest1.setAuthPassword(clientSecret);
+        tokenRequest1.setAuthenticationMethod(AuthenticationMethod.CLIENT_SECRET_POST);
+
+        TokenClient tokenClient1 = new TokenClient(tokenEndpoint);
+        tokenClient1.setRequest(tokenRequest1);
+        TokenResponse tokenResponse1 = tokenClient1.exec();
+
+        showClient(tokenClient1);
+        assertEquals(tokenResponse1.getStatus(), 200, "Unexpected response code: " + tokenResponse1.getStatus());
+        assertNotNull(tokenResponse1.getEntity(), "The entity is null");
+        assertNotNull(tokenResponse1.getAccessToken(), "The access token is null");
+        assertNotNull(tokenResponse1.getExpiresIn(), "The expires in value is null");
+        assertNotNull(tokenResponse1.getTokenType(), "The token type is null");
+        assertNotNull(tokenResponse1.getRefreshToken(), "The refresh token is null");
+
+        // User wants to authenticate on B2 (without sending its credentials)
+
+        String state2 = UUID.randomUUID().toString();
+
+        AuthorizationRequest authorizationRequest2 = new AuthorizationRequest(
+                Arrays.asList(ResponseType.CODE),
+                clientId,
+                Arrays.asList("openid", "profile", "email"),
+                redirectUri,
+                null);
+
+        authorizationRequest2.getPrompts().add(Prompt.NONE);
+        authorizationRequest2.setState(state2);
+        authorizationRequest2.setSessionId(sessionId);
+
+        AuthorizeClient authorizeClient2 = new AuthorizeClient(authorizationEndpoint);
+        authorizeClient2.setRequest(authorizationRequest2);
+        AuthorizationResponse authorizationResponse2 = authorizeClient2.exec();
+
+        showClient(authorizeClient2);
+        assertEquals(authorizationResponse2.getStatus(), 302, "Unexpected response code: " + authorizationResponse2.getStatus());
+        assertNotNull(authorizationResponse2.getLocation(), "The location is null");
+        assertNotNull(authorizationResponse2.getCode(), "The authorization code is null");
+        assertNotNull(authorizationResponse2.getScope(), "The scope is null");
+        assertNotNull(authorizationResponse2.getState(), "The state is null");
+        assertEquals(authorizationResponse2.getState(), state2);
+
+        String authorizationCode2 = authorizationResponse2.getCode();
+
+        TokenRequest tokenRequest2 = new TokenRequest(GrantType.AUTHORIZATION_CODE);
+        tokenRequest2.setCode(authorizationCode2);
+        tokenRequest2.setRedirectUri(redirectUri);
+        tokenRequest2.setAuthUsername(clientId);
+        tokenRequest2.setAuthPassword(clientSecret);
+        tokenRequest2.setAuthenticationMethod(AuthenticationMethod.CLIENT_SECRET_POST);
+
+        TokenClient tokenClient2 = new TokenClient(tokenEndpoint);
+        tokenClient2.setRequest(tokenRequest2);
+        TokenResponse tokenResponse2 = tokenClient2.exec();
+
+        showClient(tokenClient2);
+        assertEquals(tokenResponse2.getStatus(), 200, "Unexpected response code: " + tokenResponse2.getStatus());
+        assertNotNull(tokenResponse2.getEntity(), "The entity is null");
+        assertNotNull(tokenResponse2.getAccessToken(), "The access token is null");
+        assertNotNull(tokenResponse2.getExpiresIn(), "The expires in value is null");
+        assertNotNull(tokenResponse2.getTokenType(), "The token type is null");
+        assertNotNull(tokenResponse2.getRefreshToken(), "The refresh token is null");
+
+        // User wants to authenticate on B3 (without sending its credentials)
+
+        String state3 = UUID.randomUUID().toString();
+
+        AuthorizationRequest authorizationRequest3 = new AuthorizationRequest(
+                Arrays.asList(ResponseType.CODE),
+                clientId,
+                Arrays.asList("openid", "profile", "email"),
+                redirectUri,
+                null);
+
+        authorizationRequest3.getPrompts().add(Prompt.NONE);
+        authorizationRequest3.setState(state3);
+        authorizationRequest3.setSessionId(sessionId);
+
+        AuthorizeClient authorizeClient3 = new AuthorizeClient(authorizationEndpoint);
+        authorizeClient3.setRequest(authorizationRequest3);
+        AuthorizationResponse authorizationResponse3 = authorizeClient3.exec();
+
+        showClient(authorizeClient3);
+        assertEquals(authorizationResponse3.getStatus(), 302, "Unexpected response code: " + authorizationResponse3.getStatus());
+        assertNotNull(authorizationResponse3.getLocation(), "The location is null");
+        assertNotNull(authorizationResponse3.getCode(), "The authorization code is null");
+        assertNotNull(authorizationResponse3.getScope(), "The scope is null");
+        assertNotNull(authorizationResponse3.getState(), "The state is null");
+        assertEquals(authorizationResponse3.getState(), state3);
+
+        String authorizationCode3 = authorizationResponse3.getCode();
+
+        TokenRequest tokenRequest3 = new TokenRequest(GrantType.AUTHORIZATION_CODE);
+        tokenRequest3.setCode(authorizationCode3);
+        tokenRequest3.setRedirectUri(redirectUri);
+        tokenRequest3.setAuthUsername(clientId);
+        tokenRequest3.setAuthPassword(clientSecret);
+        tokenRequest3.setAuthenticationMethod(AuthenticationMethod.CLIENT_SECRET_POST);
+
+        TokenClient tokenClient3 = new TokenClient(tokenEndpoint);
+        tokenClient3.setRequest(tokenRequest3);
+        TokenResponse tokenResponse3 = tokenClient3.exec();
+
+        showClient(tokenClient3);
+        assertEquals(tokenResponse3.getStatus(), 200, "Unexpected response code: " + tokenResponse3.getStatus());
+        assertNotNull(tokenResponse3.getEntity(), "The entity is null");
+        assertNotNull(tokenResponse3.getAccessToken(), "The access token is null");
+        assertNotNull(tokenResponse3.getExpiresIn(), "The expires in value is null");
+        assertNotNull(tokenResponse3.getTokenType(), "The token type is null");
+        assertNotNull(tokenResponse3.getRefreshToken(), "The refresh token is null");
+    }
+}
\ No newline at end of file
diff --git a/oxAuth/Client/src/test/java/org/gluu/oxauth/ws/rs/SectorIdentifierUrlVerificationHttpTest.java b/oxAuth/Client/src/test/java/org/gluu/oxauth/ws/rs/SectorIdentifierUrlVerificationHttpTest.java
new file mode 100644
index 00000000..37af5fa0
--- /dev/null
+++ b/oxAuth/Client/src/test/java/org/gluu/oxauth/ws/rs/SectorIdentifierUrlVerificationHttpTest.java
@@ -0,0 +1,450 @@
+/*
+ * oxAuth is available under the MIT License (2008). See http://opensource.org/licenses/MIT for full text.
+ *
+ * Copyright (c) 2014, Gluu
+ */
+
+package org.gluu.oxauth.ws.rs;
+
+import static org.testng.Assert.assertEquals;
+import static org.testng.Assert.assertNotEquals;
+import static org.testng.Assert.assertNotNull;
+import static org.testng.Assert.assertTrue;
+
+import java.util.Arrays;
+import java.util.List;
+import java.util.UUID;
+
+import org.gluu.oxauth.BaseTest;
+import org.gluu.oxauth.client.AuthorizationRequest;
+import org.gluu.oxauth.client.AuthorizationResponse;
+import org.gluu.oxauth.client.AuthorizeClient;
+import org.gluu.oxauth.client.JwkClient;
+import org.gluu.oxauth.client.RegisterClient;
+import org.gluu.oxauth.client.RegisterRequest;
+import org.gluu.oxauth.client.RegisterResponse;
+import org.gluu.oxauth.client.TokenClient;
+import org.gluu.oxauth.client.TokenRequest;
+import org.gluu.oxauth.client.TokenResponse;
+import org.gluu.oxauth.client.UserInfoClient;
+import org.gluu.oxauth.client.UserInfoResponse;
+import org.gluu.oxauth.model.common.AuthenticationMethod;
+import org.gluu.oxauth.model.common.GrantType;
+import org.gluu.oxauth.model.common.Prompt;
+import org.gluu.oxauth.model.common.ResponseType;
+import org.gluu.oxauth.model.common.SubjectType;
+import org.gluu.oxauth.model.crypto.signature.RSAPublicKey;
+import org.gluu.oxauth.model.crypto.signature.SignatureAlgorithm;
+import org.gluu.oxauth.model.jws.RSASigner;
+import org.gluu.oxauth.model.jwt.Jwt;
+import org.gluu.oxauth.model.jwt.JwtClaimName;
+import org.gluu.oxauth.model.jwt.JwtHeaderName;
+import org.gluu.oxauth.model.register.ApplicationType;
+import org.gluu.oxauth.model.util.StringUtils;
+import org.testng.annotations.Parameters;
+import org.testng.annotations.Test;
+
+/**
+ * Functional tests for Sector Identifier URI Verification (HTTP)
+ *
+ * @author Javier Rojas Blum
+ * @version May 7, 2019
+ */
+public class SectorIdentifierUrlVerificationHttpTest extends BaseTest {
+
+    // Run this test with both pairwiseIdType persistent and algorithmic
+    // And ensure shareSubjectIdBetweenClientsWithSameSectorId is set to false
+    @Parameters({"redirectUris", "sectorIdentifierUri", "redirectUri", "userId", "userSecret"})
+    @Test(enabled = false)
+    public void pairwiseSectorIdentifierTypeToPreventSubjectIdentifierCorrelation(
+            final String redirectUris, final String sectorIdentifierUri, final String redirectUri,
+            final String userId, final String userSecret) throws Exception {
+        showTitle("pairwiseSectorIdentifierTypeToPreventSubjectIdentifierCorrelation");
+
+        RegisterResponse registerResponse1 = requestClientRegistration(redirectUris, sectorIdentifierUri);
+        RegisterResponse registerResponse2 = requestClientRegistration(redirectUris, sectorIdentifierUri);
+
+        String sub1 = requestAuthorizationCodeWithPairwiseSectorIdentifierType(redirectUri, userId, userSecret,
+                registerResponse1.getClientId(),
+                registerResponse1.getClientSecret(),
+                registerResponse1.getResponseTypes());
+        String sub2 = requestAuthorizationCodeWithPairwiseSectorIdentifierType(redirectUri, userId, userSecret,
+                registerResponse2.getClientId(),
+                registerResponse2.getClientSecret(),
+                registerResponse2.getResponseTypes());
+
+        assertNotEquals(sub1, sub2, "Each client must receive a different sub value");
+
+        String sub3 = requestAuthorizationCodeWithPairwiseSectorIdentifierType(redirectUri, userId, userSecret,
+                registerResponse1.getClientId(),
+                registerResponse1.getClientSecret(),
+                registerResponse1.getResponseTypes());
+        String sub4 = requestAuthorizationCodeWithPairwiseSectorIdentifierType(redirectUri, userId, userSecret,
+                registerResponse2.getClientId(),
+                registerResponse2.getClientSecret(),
+                registerResponse2.getResponseTypes());
+
+        assertEquals(sub1, sub3, "Same client must receive the same sub value");
+        assertEquals(sub2, sub4, "Same client must receive the same sub value");
+    }
+
+    // Run this test with both pairwiseIdType persistent and algorithmic
+    // And ensure shareSubjectIdBetweenClientsWithSameSectorId is set to true
+    @Parameters({"redirectUris", "sectorIdentifierUri", "redirectUri", "userId", "userSecret"})
+    @Test(enabled = true)
+    public void shareSubjectIdBetweenClientsWithSameSectorId(
+            final String redirectUris, final String sectorIdentifierUri, final String redirectUri,
+            final String userId, final String userSecret) throws Exception {
+        showTitle("shareSubjectIdBetweenClientsWithSameSectorId");
+
+        RegisterResponse registerResponse1 = requestClientRegistration(redirectUris, sectorIdentifierUri);
+        RegisterResponse registerResponse2 = requestClientRegistration(redirectUris, sectorIdentifierUri);
+
+        String sub1 = requestAuthorizationCodeWithPairwiseSectorIdentifierType(redirectUri, userId, userSecret,
+                registerResponse1.getClientId(),
+                registerResponse1.getClientSecret(),
+                registerResponse1.getResponseTypes());
+        String sub2 = requestAuthorizationCodeWithPairwiseSectorIdentifierType(redirectUri, userId, userSecret,
+                registerResponse2.getClientId(),
+                registerResponse2.getClientSecret(),
+                registerResponse2.getResponseTypes());
+
+        assertEquals(sub1, sub2, "Each client must share the same sub value");
+
+        String sub3 = requestAuthorizationCodeWithPairwiseSectorIdentifierType(redirectUri, userId, userSecret,
+                registerResponse1.getClientId(),
+                registerResponse1.getClientSecret(),
+                registerResponse1.getResponseTypes());
+        String sub4 = requestAuthorizationCodeWithPairwiseSectorIdentifierType(redirectUri, userId, userSecret,
+                registerResponse2.getClientId(),
+                registerResponse2.getClientSecret(),
+                registerResponse2.getResponseTypes());
+
+        assertEquals(sub1, sub3, "Same client must receive the same sub value");
+        assertEquals(sub2, sub4, "Same client must receive the same sub value");
+    }
+
+    public RegisterResponse requestClientRegistration(
+            final String redirectUris, final String sectorIdentifierUri) {
+        List<ResponseType> responseTypes = Arrays.asList(
+                ResponseType.CODE,
+                ResponseType.ID_TOKEN);
+
+        // Register client with Sector Identifier URL
+        RegisterRequest registerRequest = new RegisterRequest(ApplicationType.WEB, "oxAuth test app",
+                StringUtils.spaceSeparatedToList(redirectUris));
+        registerRequest.addCustomAttribute("oxAuthTrustedClient", "true");
+        registerRequest.setResponseTypes(responseTypes);
+        registerRequest.setSubjectType(SubjectType.PAIRWISE);
+        registerRequest.setSectorIdentifierUri(sectorIdentifierUri);
+        registerRequest.setTokenEndpointAuthMethod(AuthenticationMethod.CLIENT_SECRET_POST);
+
+        RegisterClient registerClient = new RegisterClient(registrationEndpoint);
+        registerClient.setRequest(registerRequest);
+        RegisterResponse registerResponse = registerClient.exec();
+
+        showClient(registerClient);
+        assertEquals(registerResponse.getStatus(), 200, "Unexpected response code: " + registerResponse.getEntity());
+        assertNotNull(registerResponse.getClientId());
+        assertNotNull(registerResponse.getClientSecret());
+        assertNotNull(registerResponse.getRegistrationAccessToken());
+        assertNotNull(registerResponse.getClientSecretExpiresAt());
+
+        return registerResponse;
+    }
+
+    public String requestAuthorizationCodeWithPairwiseSectorIdentifierType(
+            final String redirectUri, final String userId, final String userSecret,
+            final String clientId, final String clientSecret, final List<ResponseType> responseTypes) throws Exception {
+
+        // 1. Request authorization and receive the authorization code.
+        List<String> scopes = Arrays.asList(
+                "openid",
+                "profile",
+                "address",
+                "email");
+        String state = UUID.randomUUID().toString();
+        String nonce = UUID.randomUUID().toString();
+
+        AuthorizationRequest authorizationRequest = new AuthorizationRequest(responseTypes, clientId, scopes, redirectUri, nonce);
+        authorizationRequest.setState(state);
+        authorizationRequest.setAuthUsername(userId);
+        authorizationRequest.setAuthPassword(userSecret);
+        authorizationRequest.getPrompts().add(Prompt.NONE);
+
+        AuthorizeClient authorizeClient = new AuthorizeClient(authorizationEndpoint);
+        authorizeClient.setRequest(authorizationRequest);
+        AuthorizationResponse authorizationResponse = authorizeClient.exec();
+
+        showClient(authorizeClient);
+        assertEquals(authorizationResponse.getStatus(), 302, "Unexpected response code: " + authorizationResponse.getStatus());
+        assertNotNull(authorizationResponse.getLocation(), "The location is null");
+        assertNotNull(authorizationResponse.getCode(), "The authorization code is null");
+        assertNotNull(authorizationResponse.getState(), "The state is null");
+        assertNotNull(authorizationResponse.getScope(), "The scope is null");
+        assertEquals(authorizationResponse.getState(), state);
+
+        String authorizationCode = authorizationResponse.getCode();
+        String idToken = authorizationResponse.getIdToken();
+
+        // 2. Validate id_token
+        Jwt jwt = Jwt.parse(idToken);
+        assertNotNull(jwt.getHeader().getClaimAsString(JwtHeaderName.TYPE));
+        assertNotNull(jwt.getHeader().getClaimAsString(JwtHeaderName.ALGORITHM));
+        assertNotNull(jwt.getClaims().getClaimAsString(JwtClaimName.SUBJECT_IDENTIFIER));
+        assertNotNull(jwt.getClaims().getClaimAsString(JwtClaimName.ISSUER));
+        assertNotNull(jwt.getClaims().getClaimAsString(JwtClaimName.AUDIENCE));
+        assertNotNull(jwt.getClaims().getClaimAsString(JwtClaimName.EXPIRATION_TIME));
+        assertNotNull(jwt.getClaims().getClaimAsString(JwtClaimName.ISSUED_AT));
+        assertNotNull(jwt.getClaims().getClaimAsString(JwtClaimName.SUBJECT_IDENTIFIER));
+        assertNotNull(jwt.getClaims().getClaimAsString(JwtClaimName.CODE_HASH));
+        assertNotNull(jwt.getClaims().getClaimAsString(JwtClaimName.AUTHENTICATION_TIME));
+
+        RSAPublicKey publicKey = JwkClient.getRSAPublicKey(
+                jwksUri,
+                jwt.getHeader().getClaimAsString(JwtHeaderName.KEY_ID));
+        RSASigner rsaSigner = new RSASigner(SignatureAlgorithm.RS256, publicKey);
+
+        assertTrue(rsaSigner.validate(jwt));
+
+        String sub = jwt.getClaims().getClaimAsString(JwtClaimName.SUBJECT_IDENTIFIER);
+
+        // 3. Request access token using the authorization code.
+        TokenRequest tokenRequest = new TokenRequest(GrantType.AUTHORIZATION_CODE);
+        tokenRequest.setCode(authorizationCode);
+        tokenRequest.setRedirectUri(redirectUri);
+        tokenRequest.setAuthUsername(clientId);
+        tokenRequest.setAuthPassword(clientSecret);
+        tokenRequest.setAuthenticationMethod(AuthenticationMethod.CLIENT_SECRET_POST);
+
+        TokenClient tokenClient = new TokenClient(tokenEndpoint);
+        tokenClient.setRequest(tokenRequest);
+        TokenResponse tokenResponse = tokenClient.exec();
+
+        showClient(tokenClient);
+        assertEquals(tokenResponse.getStatus(), 200, "Unexpected response code: " + tokenResponse.getStatus());
+        assertNotNull(tokenResponse.getEntity(), "The entity is null");
+        assertNotNull(tokenResponse.getAccessToken(), "The access token is null");
+        assertNotNull(tokenResponse.getExpiresIn(), "The expires in value is null");
+        assertNotNull(tokenResponse.getTokenType(), "The token type is null");
+        assertNotNull(tokenResponse.getRefreshToken(), "The refresh token is null");
+
+        String accessToken = tokenResponse.getAccessToken();
+
+        // 4. Request user info
+        UserInfoClient userInfoClient = new UserInfoClient(userInfoEndpoint);
+        UserInfoResponse userInfoResponse = userInfoClient.execUserInfo(accessToken);
+
+        showClient(userInfoClient);
+        assertEquals(userInfoResponse.getStatus(), 200, "Unexpected response code: " + userInfoResponse.getStatus());
+        assertNotNull(userInfoResponse.getClaim(JwtClaimName.SUBJECT_IDENTIFIER));
+        assertNotNull(userInfoResponse.getClaim(JwtClaimName.NAME));
+        assertNotNull(userInfoResponse.getClaim(JwtClaimName.GIVEN_NAME));
+        assertNotNull(userInfoResponse.getClaim(JwtClaimName.FAMILY_NAME));
+        assertNotNull(userInfoResponse.getClaim(JwtClaimName.EMAIL));
+        assertNotNull(userInfoResponse.getClaim(JwtClaimName.ZONEINFO));
+        assertNotNull(userInfoResponse.getClaim(JwtClaimName.LOCALE));
+
+        return sub;
+    }
+
+    @Parameters({"redirectUris", "redirectUri", "userId", "userSecret"})
+    @Test
+    public void publicSectorIdentifierType(
+            final String redirectUris, final String redirectUri, final String userId, final String userSecret) throws Exception {
+        showTitle("publicSectorIdentifierType");
+
+        String sub1 = requestAuthorizationCodeWithPublicSectorIdentifierType(redirectUris, redirectUri, userId, userSecret);
+        String sub2 = requestAuthorizationCodeWithPublicSectorIdentifierType(redirectUris, redirectUri, userId, userSecret);
+
+        assertEquals(sub1, sub2, "Each client must receive the same sub value");
+    }
+
+    public String requestAuthorizationCodeWithPublicSectorIdentifierType(
+            final String redirectUris, final String redirectUri, final String userId, final String userSecret) throws Exception {
+        List<ResponseType> responseTypes = Arrays.asList(
+                ResponseType.CODE,
+                ResponseType.ID_TOKEN);
+
+        // 1. Register client with Sector Identifier URL
+        RegisterRequest registerRequest = new RegisterRequest(ApplicationType.WEB, "oxAuth test app",
+                StringUtils.spaceSeparatedToList(redirectUris));
+        registerRequest.addCustomAttribute("oxAuthTrustedClient", "true");
+        registerRequest.setResponseTypes(responseTypes);
+        registerRequest.setSubjectType(SubjectType.PUBLIC);
+        registerRequest.setTokenEndpointAuthMethod(AuthenticationMethod.CLIENT_SECRET_POST);
+
+        RegisterClient registerClient = new RegisterClient(registrationEndpoint);
+        registerClient.setRequest(registerRequest);
+        RegisterResponse registerResponse = registerClient.exec();
+
+        showClient(registerClient);
+        assertEquals(registerResponse.getStatus(), 200, "Unexpected response code: " + registerResponse.getEntity());
+        assertNotNull(registerResponse.getClientId());
+        assertNotNull(registerResponse.getClientSecret());
+        assertNotNull(registerResponse.getRegistrationAccessToken());
+        assertNotNull(registerResponse.getClientSecretExpiresAt());
+
+        String clientId = registerResponse.getClientId();
+        String clientSecret = registerResponse.getClientSecret();
+
+        // 2. Request authorization and receive the authorization code.
+        List<String> scopes = Arrays.asList(
+                "openid",
+                "profile",
+                "address",
+                "email");
+        String state = UUID.randomUUID().toString();
+        String nonce = UUID.randomUUID().toString();
+
+        AuthorizationRequest authorizationRequest = new AuthorizationRequest(responseTypes, clientId, scopes, redirectUri, nonce);
+        authorizationRequest.setState(state);
+        authorizationRequest.setAuthUsername(userId);
+        authorizationRequest.setAuthPassword(userSecret);
+        authorizationRequest.getPrompts().add(Prompt.NONE);
+
+        AuthorizeClient authorizeClient = new AuthorizeClient(authorizationEndpoint);
+        authorizeClient.setRequest(authorizationRequest);
+        AuthorizationResponse authorizationResponse = authorizeClient.exec();
+
+        showClient(authorizeClient);
+        assertEquals(authorizationResponse.getStatus(), 302, "Unexpected response code: " + authorizationResponse.getStatus());
+        assertNotNull(authorizationResponse.getLocation(), "The location is null");
+        assertNotNull(authorizationResponse.getCode(), "The authorization code is null");
+        assertNotNull(authorizationResponse.getState(), "The state is null");
+        assertNotNull(authorizationResponse.getScope(), "The scope is null");
+        assertEquals(authorizationResponse.getState(), state);
+
+        String authorizationCode = authorizationResponse.getCode();
+        String idToken = authorizationResponse.getIdToken();
+
+        // 3. Validate id_token
+        Jwt jwt = Jwt.parse(idToken);
+        assertNotNull(jwt.getHeader().getClaimAsString(JwtHeaderName.TYPE));
+        assertNotNull(jwt.getHeader().getClaimAsString(JwtHeaderName.ALGORITHM));
+        assertNotNull(jwt.getClaims().getClaimAsString(JwtClaimName.SUBJECT_IDENTIFIER));
+        assertNotNull(jwt.getClaims().getClaimAsString(JwtClaimName.ISSUER));
+        assertNotNull(jwt.getClaims().getClaimAsString(JwtClaimName.AUDIENCE));
+        assertNotNull(jwt.getClaims().getClaimAsString(JwtClaimName.EXPIRATION_TIME));
+        assertNotNull(jwt.getClaims().getClaimAsString(JwtClaimName.ISSUED_AT));
+        assertNotNull(jwt.getClaims().getClaimAsString(JwtClaimName.SUBJECT_IDENTIFIER));
+        assertNotNull(jwt.getClaims().getClaimAsString(JwtClaimName.CODE_HASH));
+        assertNotNull(jwt.getClaims().getClaimAsString(JwtClaimName.AUTHENTICATION_TIME));
+
+        RSAPublicKey publicKey = JwkClient.getRSAPublicKey(
+                jwksUri,
+                jwt.getHeader().getClaimAsString(JwtHeaderName.KEY_ID));
+        RSASigner rsaSigner = new RSASigner(SignatureAlgorithm.RS256, publicKey);
+
+        assertTrue(rsaSigner.validate(jwt));
+
+        String sub = jwt.getClaims().getClaimAsString(JwtClaimName.SUBJECT_IDENTIFIER);
+
+        // 4. Request access token using the authorization code.
+        TokenRequest tokenRequest = new TokenRequest(GrantType.AUTHORIZATION_CODE);
+        tokenRequest.setCode(authorizationCode);
+        tokenRequest.setRedirectUri(redirectUri);
+        tokenRequest.setAuthUsername(clientId);
+        tokenRequest.setAuthPassword(clientSecret);
+        tokenRequest.setAuthenticationMethod(AuthenticationMethod.CLIENT_SECRET_POST);
+
+        TokenClient tokenClient = new TokenClient(tokenEndpoint);
+        tokenClient.setRequest(tokenRequest);
+        TokenResponse tokenResponse = tokenClient.exec();
+
+        showClient(tokenClient);
+        assertEquals(tokenResponse.getStatus(), 200, "Unexpected response code: " + tokenResponse.getStatus());
+        assertNotNull(tokenResponse.getEntity(), "The entity is null");
+        assertNotNull(tokenResponse.getAccessToken(), "The access token is null");
+        assertNotNull(tokenResponse.getExpiresIn(), "The expires in value is null");
+        assertNotNull(tokenResponse.getTokenType(), "The token type is null");
+        assertNotNull(tokenResponse.getRefreshToken(), "The refresh token is null");
+
+        String accessToken = tokenResponse.getAccessToken();
+
+        // 5. Request user info
+        UserInfoClient userInfoClient = new UserInfoClient(userInfoEndpoint);
+        UserInfoResponse userInfoResponse = userInfoClient.execUserInfo(accessToken);
+
+        showClient(userInfoClient);
+        assertEquals(userInfoResponse.getStatus(), 200, "Unexpected response code: " + userInfoResponse.getStatus());
+        assertNotNull(userInfoResponse.getClaim(JwtClaimName.SUBJECT_IDENTIFIER));
+        assertNotNull(userInfoResponse.getClaim(JwtClaimName.NAME));
+        assertNotNull(userInfoResponse.getClaim(JwtClaimName.GIVEN_NAME));
+        assertNotNull(userInfoResponse.getClaim(JwtClaimName.FAMILY_NAME));
+        assertNotNull(userInfoResponse.getClaim(JwtClaimName.EMAIL));
+        assertNotNull(userInfoResponse.getClaim(JwtClaimName.ZONEINFO));
+        assertNotNull(userInfoResponse.getClaim(JwtClaimName.LOCALE));
+
+        return sub;
+    }
+
+    @Parameters({"redirectUris"})
+    @Test
+    public void sectorIdentifierUrlVerificationFail1(final String redirectUris) throws Exception {
+        showTitle("sectorIdentifierUrlVerificationFail1");
+
+        RegisterRequest registerRequest = new RegisterRequest(ApplicationType.WEB, "oxAuth test app",
+                StringUtils.spaceSeparatedToList(redirectUris));
+        registerRequest.addCustomAttribute("oxAuthTrustedClient", "true");
+        registerRequest.setSectorIdentifierUri("https://INVALID_SECTOR_IDENTIFIER_URL");
+
+        RegisterClient registerClient = new RegisterClient(registrationEndpoint);
+        registerClient.setRequest(registerRequest);
+        RegisterResponse response = registerClient.exec();
+
+        showClient(registerClient);
+        assertEquals(response.getStatus(), 400, "Unexpected response code: " + response.getEntity());
+        assertNotNull(response.getEntity(), "The entity is null");
+        assertNotNull(response.getErrorType(), "The error type is null");
+        assertNotNull(response.getErrorDescription(), "The error description is null");
+    }
+
+    @Parameters({"sectorIdentifierUri"})
+    @Test
+    public void sectorIdentifierUrlVerificationFail2(final String sectorIdentifierUri) throws Exception {
+        showTitle("sectorIdentifierUrlVerificationFail2");
+
+        String redirectUris = "https://INVALID_REDIRECT_URI https://client.example.com/cb https://client.example.com/cb1 https://client.example.com/cb2";
+
+        RegisterRequest registerRequest = new RegisterRequest(ApplicationType.WEB, "oxAuth test app",
+                StringUtils.spaceSeparatedToList(redirectUris));
+        registerRequest.addCustomAttribute("oxAuthTrustedClient", "true");
+        registerRequest.setSectorIdentifierUri(sectorIdentifierUri);
+
+        RegisterClient registerClient = new RegisterClient(registrationEndpoint);
+        registerClient.setRequest(registerRequest);
+        RegisterResponse response = registerClient.exec();
+
+        showClient(registerClient);
+        assertEquals(response.getStatus(), 400, "Unexpected response code: " + response.getEntity());
+        assertNotNull(response.getEntity(), "The entity is null");
+        assertNotNull(response.getErrorType(), "The error type is null");
+        assertNotNull(response.getErrorDescription(), "The error description is null");
+    }
+
+    /**
+     * Register with pairwise Subject Type and without Sector Identifier URI must fail because there are multiple
+     * hostnames in the Redirect URI list.
+     */
+    @Parameters({"redirectUris"})
+    @Test
+    public void sectorIdentifierUrlVerificationFail3(final String redirectUris) throws Exception {
+        showTitle("sectorIdentifierUrlVerificationFail3");
+
+        RegisterRequest registerRequest = new RegisterRequest(ApplicationType.WEB, "oxAuth test app",
+                StringUtils.spaceSeparatedToList(redirectUris));
+        registerRequest.setSubjectType(SubjectType.PAIRWISE);
+        registerRequest.setSectorIdentifierUri(null);
+
+        RegisterClient registerClient = new RegisterClient(registrationEndpoint);
+        registerClient.setRequest(registerRequest);
+        RegisterResponse response = registerClient.exec();
+
+        showClient(registerClient);
+        assertEquals(response.getStatus(), 400, "Unexpected response code: " + response.getEntity());
+        assertNotNull(response.getEntity(), "The entity is null");
+        assertNotNull(response.getErrorType(), "The error type is null");
+        assertNotNull(response.getErrorDescription(), "The error description is null");
+    }
+}
\ No newline at end of file
diff --git a/oxAuth/Client/src/test/java/org/gluu/oxauth/ws/rs/SelectAccountHttpTest.java b/oxAuth/Client/src/test/java/org/gluu/oxauth/ws/rs/SelectAccountHttpTest.java
new file mode 100644
index 00000000..3fbee6d2
--- /dev/null
+++ b/oxAuth/Client/src/test/java/org/gluu/oxauth/ws/rs/SelectAccountHttpTest.java
@@ -0,0 +1,210 @@
+package org.gluu.oxauth.ws.rs;
+
+import static org.testng.Assert.assertEquals;
+import static org.testng.Assert.assertNotEquals;
+import static org.testng.Assert.assertNotNull;
+import static org.testng.Assert.assertTrue;
+
+import java.util.Arrays;
+import java.util.List;
+import java.util.UUID;
+
+import org.apache.logging.log4j.util.Strings;
+import org.gluu.oxauth.BaseTest;
+import org.gluu.oxauth.client.AuthorizationRequest;
+import org.gluu.oxauth.client.AuthorizationResponse;
+import org.gluu.oxauth.client.AuthorizeClient;
+import org.gluu.oxauth.client.RegisterClient;
+import org.gluu.oxauth.client.RegisterRequest;
+import org.gluu.oxauth.client.RegisterResponse;
+import org.gluu.oxauth.model.common.Prompt;
+import org.gluu.oxauth.model.common.ResponseType;
+import org.gluu.oxauth.model.common.SubjectType;
+import org.gluu.oxauth.model.exception.InvalidJwtException;
+import org.gluu.oxauth.model.jwt.Jwt;
+import org.gluu.oxauth.model.jwt.JwtClaimName;
+import org.gluu.oxauth.model.jwt.JwtHeaderName;
+import org.gluu.oxauth.model.register.ApplicationType;
+import org.gluu.oxauth.model.util.StringUtils;
+import org.gluu.oxauth.page.LoginPage;
+import org.gluu.oxauth.page.PageConfig;
+import org.gluu.oxauth.page.SelectPage;
+import org.json.JSONArray;
+import org.openqa.selenium.htmlunit.HtmlUnitDriver;
+import org.testng.annotations.AfterTest;
+import org.testng.annotations.BeforeTest;
+import org.testng.annotations.Parameters;
+import org.testng.annotations.Test;
+
+import com.google.common.collect.Lists;
+
+/**
+ * @author Yuriy Zabrovarnyy
+ */
+public class SelectAccountHttpTest extends BaseTest {
+
+    private PageConfig pageConfig;
+
+    @BeforeTest
+    public void setUp() {
+        driver = new HtmlUnitDriver(true);
+        pageConfig = newPageConfig(driver);
+    }
+
+    @AfterTest
+    public void tearDown() {
+        driver.quit();
+        driver = null;
+        pageConfig = null;
+    }
+
+    @Parameters({"userId", "userSecret", "userId2", "userSecret2", "redirectUris", "redirectUri", "sectorIdentifierUri"})
+    @Test
+    public void selectAccountTest(final String userId, final String userSecret,
+                              final String userId2, final String userSecret2,
+                              final String redirectUris, final String redirectUri, String sectorIdentifierUri) throws Exception {
+        showTitle("authorizationCodeFlow");
+
+        List<ResponseType> responseTypes = Arrays.asList(ResponseType.CODE, ResponseType.ID_TOKEN);
+        List<String> scopes = Arrays.asList("openid", "profile", "address", "email", "phone", "user_name");
+
+        RegisterResponse registerResponse = registerClient(redirectUris, responseTypes, scopes, sectorIdentifierUri);
+
+        output("1. Account1 : Request authorization and receive the code and id_token");
+        AuthorizationResponse authorizationResponse = requestAuthorization(userId, userSecret, redirectUri, responseTypes, scopes, registerResponse.getClientId(), randomUUID());
+
+        assertNotNull(authorizationResponse, "The authorization response is null");
+        assertNotNull(authorizationResponse.getCode(), "The code is null");
+        assertIdToken(authorizationResponse.getIdToken());
+        String account1SessionId = assertSessionIdCookie();
+
+        output("2. Account2 : Request authorization with prompt=select_account and receive the code and id_token");
+        AuthorizationResponse responseFromSelectAccount = selectAccount(userId2, userSecret2, redirectUri, responseTypes, scopes, registerResponse.getClientId(), randomUUID());
+
+        assertNotNull(responseFromSelectAccount, "The authorization response is null");
+        assertNotNull(responseFromSelectAccount.getCode(), "The code is null");
+        assertIdToken(responseFromSelectAccount.getIdToken());
+        String account2SessionId = assertSessionIdCookie();
+        assertNotEquals(account1SessionId, account2SessionId);
+
+        output("3. Go again to Select Accounts : we should have 2 accounts");
+        AuthorizationRequest authorizationRequest = new AuthorizationRequest(responseTypes, registerResponse.getClientId(), scopes, redirectUri, randomUUID());
+        authorizationRequest.setState(randomUUID());
+        authorizationRequest.setPrompts(Lists.newArrayList(Prompt.SELECT_ACCOUNT));
+
+        output("4. both Account 1 and Account 2 sessions must be in current_sessions cookie");
+        assertEquals(account2SessionId, assertSessionIdCookie());
+        List<Object> currentSessions = new JSONArray(driver.manage().getCookieNamed("current_sessions").getValue()).toList();
+        assertTrue(currentSessions.contains(account1SessionId));
+        assertTrue(currentSessions.contains(account2SessionId));
+
+        output("5. Check that we have 2 buttons for Account 1 and Account 2");
+        final SelectPage selectPage = SelectPage.navigate(pageConfig, authorizationEndpoint + "?" + authorizationRequest.getQueryString());
+        assertNotNull(selectPage.getAccountButton("oxAuth Test User"));
+        assertNotNull(selectPage.getAccountButton("oxAuth Test User2"));
+
+        output("6. Switch back to Account 1");
+        selectPage.switchAccount(selectPage.getAccountButton("oxAuth Test User"));
+        assertEquals(account1SessionId, assertSessionIdCookie()); // check session_id really corresponds to Account 1
+    }
+
+    private String assertSessionIdCookie() {
+        final String value = driver.manage().getCookieNamed("session_id").getValue();
+        assertTrue(Strings.isNotBlank(value), "The session_id is blank");
+        output("Cookie session_id: " + value);
+        return value;
+    }
+
+    private void assertIdToken(String idToken) throws InvalidJwtException {
+        Jwt jwt = Jwt.parse(idToken);
+        assertNotNull(jwt.getHeader().getClaimAsString(JwtHeaderName.TYPE));
+        assertNotNull(jwt.getHeader().getClaimAsString(JwtHeaderName.ALGORITHM));
+        assertNotNull(jwt.getClaims().getClaimAsString(JwtClaimName.ISSUER));
+        assertNotNull(jwt.getClaims().getClaimAsString(JwtClaimName.AUDIENCE));
+        assertNotNull(jwt.getClaims().getClaimAsString(JwtClaimName.EXPIRATION_TIME));
+        assertNotNull(jwt.getClaims().getClaimAsString(JwtClaimName.ISSUED_AT));
+    }
+
+    private AuthorizationResponse selectAccount(final String userId, final String userSecret, final String redirectUri,
+                                                List<ResponseType> responseTypes, List<String> scopes, String clientId, String nonce) {
+        String state = UUID.randomUUID().toString();
+
+        AuthorizationRequest authorizationRequest = new AuthorizationRequest(responseTypes, clientId, scopes, redirectUri, nonce);
+        authorizationRequest.setState(state);
+        authorizationRequest.setPrompts(Lists.newArrayList(Prompt.SELECT_ACCOUNT));
+
+        String authorizationRequestUrl = authorizationEndpoint + "?" + authorizationRequest.getQueryString();
+
+        final SelectPage selectPage = SelectPage.navigate(pageConfig, authorizationRequestUrl);
+
+        final String currentUrl = driver.getCurrentUrl();
+        final LoginPage loginPage = selectPage.clickOnLoginAsAnotherUser();
+
+        loginPage.enterUsername(userId);
+        loginPage.enterPassword(userSecret);
+        loginPage.getLoginButton().click();
+        if (ENABLE_REDIRECT_TO_LOGIN_PAGE) {
+            loginPage.waitForPageSwitch(currentUrl);
+        }
+
+        String authorizationResponseStr = acceptAuthorization(driver, authorizationRequest.getRedirectUri());
+
+
+        AuthorizationResponse authorizationResponse = buildAuthorizationResponse(authorizationRequest, driver, authorizationResponseStr);
+
+        assertNotNull(authorizationResponse.getLocation(), "The location is null");
+        assertNotNull(authorizationResponse.getCode(), "The authorization code is null");
+        assertNotNull(authorizationResponse.getState(), "The state is null");
+        assertNotNull(authorizationResponse.getScope(), "The scope is null");
+        return authorizationResponse;
+    }
+
+    public AuthorizationResponse authorize(AuthorizationRequest authorizationRequest, String userId, String userSecret, int authzSteps) {
+        AuthorizeClient authorizeClient = processAuthentication(driver, authorizationEndpoint, authorizationRequest,
+                userId, userSecret);
+
+        int remainAuthzSteps = authzSteps;
+
+        String authorizationResponseStr = null;
+        do {
+            authorizationResponseStr = acceptAuthorization(driver, authorizationRequest.getRedirectUri());
+            remainAuthzSteps--;
+        } while (remainAuthzSteps >= 1);
+
+        return buildAuthorizationResponse(authorizationRequest, driver, authorizeClient, authorizationResponseStr);
+    }
+
+    private AuthorizationResponse requestAuthorization(final String userId, final String userSecret, final String redirectUri,
+                                                       List<ResponseType> responseTypes, List<String> scopes, String clientId, String nonce) {
+        AuthorizationRequest authorizationRequest = new AuthorizationRequest(responseTypes, clientId, scopes, redirectUri, nonce);
+        authorizationRequest.setState(randomUUID());
+
+        AuthorizationResponse authorizationResponse = authorize(authorizationRequest, userId, userSecret, 1);
+
+        assertNotNull(authorizationResponse.getLocation(), "The location is null");
+        assertNotNull(authorizationResponse.getCode(), "The authorization code is null");
+        assertNotNull(authorizationResponse.getState(), "The state is null");
+        assertNotNull(authorizationResponse.getScope(), "The scope is null");
+        return authorizationResponse;
+    }
+
+    private RegisterResponse registerClient(String redirectUris, List<ResponseType> responseTypes, List<String> scopes, String sectorIdentifierUri) {
+        RegisterRequest registerRequest = new RegisterRequest(ApplicationType.WEB, "oxAuth select accounts test app", StringUtils.spaceSeparatedToList(redirectUris));
+        registerRequest.setResponseTypes(responseTypes);
+        registerRequest.setScope(scopes);
+        registerRequest.setSubjectType(SubjectType.PAIRWISE);
+        registerRequest.setSectorIdentifierUri(sectorIdentifierUri);
+
+        RegisterClient registerClient = newRegisterClient(registerRequest);
+        RegisterResponse registerResponse = registerClient.exec();
+
+        showClient(registerClient);
+        assertEquals(registerResponse.getStatus(), 200, "Unexpected response code: " + registerResponse.getEntity());
+        assertNotNull(registerResponse.getClientId());
+        assertNotNull(registerResponse.getClientSecret());
+        assertNotNull(registerResponse.getRegistrationAccessToken());
+        assertNotNull(registerResponse.getClientIdIssuedAt());
+        assertNotNull(registerResponse.getClientSecretExpiresAt());
+        return registerResponse;
+    }
+}
diff --git a/oxAuth/Client/src/test/java/org/gluu/oxauth/ws/rs/SpontaneousScopeHttpTest.java b/oxAuth/Client/src/test/java/org/gluu/oxauth/ws/rs/SpontaneousScopeHttpTest.java
new file mode 100644
index 00000000..b2e76108
--- /dev/null
+++ b/oxAuth/Client/src/test/java/org/gluu/oxauth/ws/rs/SpontaneousScopeHttpTest.java
@@ -0,0 +1,109 @@
+package org.gluu.oxauth.ws.rs;
+
+import static org.testng.Assert.assertEquals;
+import static org.testng.Assert.assertFalse;
+import static org.testng.Assert.assertNotNull;
+import static org.testng.Assert.assertTrue;
+
+import java.security.KeyManagementException;
+import java.security.KeyStoreException;
+import java.security.NoSuchAlgorithmException;
+import java.security.UnrecoverableKeyException;
+import java.util.Arrays;
+import java.util.List;
+import java.util.UUID;
+
+import org.gluu.oxauth.BaseTest;
+import org.gluu.oxauth.client.AuthorizationRequest;
+import org.gluu.oxauth.client.AuthorizationResponse;
+import org.gluu.oxauth.client.RegisterClient;
+import org.gluu.oxauth.client.RegisterRequest;
+import org.gluu.oxauth.client.RegisterResponse;
+import org.gluu.oxauth.model.common.ResponseType;
+import org.gluu.oxauth.model.register.ApplicationType;
+import org.gluu.oxauth.model.util.StringUtils;
+import org.testng.annotations.Parameters;
+import org.testng.annotations.Test;
+
+import com.google.common.collect.Lists;
+
+/**
+ * @author Yuriy Zabrovarnyy
+ */
+public class SpontaneousScopeHttpTest extends BaseTest {
+
+    @Parameters({"userId", "userSecret", "redirectUri"})
+    @Test
+    public void spontaneousScope(final String userId, final String userSecret, final String redirectUri) throws Exception {
+        showTitle("spontaneousScope");
+
+        List<ResponseType> responseTypes = Arrays.asList(ResponseType.CODE, ResponseType.ID_TOKEN, ResponseType.TOKEN);
+
+        RegisterResponse registerResponse = registerClient(redirectUri, responseTypes);
+
+        String clientId = registerResponse.getClientId();
+
+        // Request authorization and receive the authorization code.
+        List<String> scopes = Lists.newArrayList("openid", "profile", "address", "email", "phone", "user_name",
+                "transaction:245", "transaction:8645");
+        AuthorizationResponse authorizationResponse = requestAuthorization(userId, userSecret, redirectUri, responseTypes, scopes, clientId);
+
+        final String[] responseScopes = authorizationResponse.getScope().split(" ");
+
+        // Validate spontaneous scopes are present
+        assertTrue(Arrays.asList(responseScopes).contains("transaction:245"));
+        assertTrue(Arrays.asList(responseScopes).contains("transaction:8645"));
+        assertFalse(Arrays.asList(responseScopes).contains("transaction:not_requested"));
+    }
+
+    private RegisterResponse registerClient(String redirectUris, List<ResponseType> responseTypes) throws UnrecoverableKeyException, NoSuchAlgorithmException, KeyStoreException, KeyManagementException {
+        RegisterRequest registerRequest = new RegisterRequest(ApplicationType.WEB, "Spontaneous scope test", StringUtils.spaceSeparatedToList(redirectUris));
+        registerRequest.setResponseTypes(responseTypes);
+        registerRequest.setScope(Lists.newArrayList("openid", "profile", "address", "email", "phone", "user_name"));
+
+        // 1. allow spontaneous scopes (off by default)
+        // 2. set spontaneous scope regular expression. In this example `transaction:345236456`
+        registerRequest.setAllowSpontaneousScopes(true);
+        registerRequest.setSpontaneousScopes(Lists.newArrayList("^transaction:.+$"));
+
+        RegisterClient registerClient = new RegisterClient(registrationEndpoint);
+        registerClient.setExecutor(clientEngine(true));
+        registerClient.setRequest(registerRequest);
+        RegisterResponse registerResponse = registerClient.exec();
+
+        showClient(registerClient);
+        assertEquals(registerResponse.getStatus(), 200, "Unexpected response code: " + registerResponse.getEntity());
+        assertNotNull(registerResponse.getClientId());
+        assertNotNull(registerResponse.getClientSecret());
+        assertNotNull(registerResponse.getRegistrationAccessToken());
+        assertNotNull(registerResponse.getClientIdIssuedAt());
+        assertNotNull(registerResponse.getClientSecretExpiresAt());
+        return registerResponse;
+    }
+
+    private AuthorizationResponse requestAuthorization(final String userId, final String userSecret, final String redirectUri,
+                                                       List<ResponseType> responseTypes, List<String> scopes, String clientId) {
+        String state = UUID.randomUUID().toString();
+        String nonce = UUID.randomUUID().toString();
+
+        AuthorizationRequest authorizationRequest = new AuthorizationRequest(responseTypes, clientId, scopes, redirectUri, nonce);
+        authorizationRequest.setState(state);
+
+        AuthorizationResponse authorizationResponse = authenticateResourceOwnerAndGrantAccess(
+                authorizationEndpoint, authorizationRequest, userId, userSecret);
+
+        assertNotNull(authorizationResponse.getLocation(), "The location is null");
+        assertNotNull(authorizationResponse.getCode(), "The authorization code is null");
+        assertNotNull(authorizationResponse.getState(), "The state is null");
+        assertNotNull(authorizationResponse.getScope(), "The scope is null");
+        return authorizationResponse;
+    }
+
+    /*
+    public static void main(String[] args) throws JsonProcessingException {
+        System.out.println(Pattern.matches("^transaction:.+$", "openid"));
+        System.out.println(Pattern.matches("^transaction:.+$", "transaction"));
+        System.out.println(Pattern.matches("^transaction:.+$", "transaction:"));
+        System.out.println(Pattern.matches("^transaction:.+$", "transaction:bla"));
+    }*/
+}
diff --git a/oxAuth/Client/src/test/java/org/gluu/oxauth/ws/rs/TokenBindingHttpTest.java b/oxAuth/Client/src/test/java/org/gluu/oxauth/ws/rs/TokenBindingHttpTest.java
new file mode 100644
index 00000000..ec35794a
--- /dev/null
+++ b/oxAuth/Client/src/test/java/org/gluu/oxauth/ws/rs/TokenBindingHttpTest.java
@@ -0,0 +1,130 @@
+package org.gluu.oxauth.ws.rs;
+
+import static org.testng.Assert.assertEquals;
+import static org.testng.Assert.assertNotNull;
+
+import java.security.KeyManagementException;
+import java.security.KeyStoreException;
+import java.security.NoSuchAlgorithmException;
+import java.security.UnrecoverableKeyException;
+import java.util.Arrays;
+import java.util.List;
+import java.util.UUID;
+
+import org.gluu.oxauth.BaseTest;
+import org.gluu.oxauth.client.AuthorizationRequest;
+import org.gluu.oxauth.client.AuthorizationResponse;
+import org.gluu.oxauth.client.AuthorizeClient;
+import org.gluu.oxauth.client.RegisterClient;
+import org.gluu.oxauth.client.RegisterRequest;
+import org.gluu.oxauth.client.RegisterResponse;
+import org.gluu.oxauth.model.common.GrantType;
+import org.gluu.oxauth.model.common.Prompt;
+import org.gluu.oxauth.model.common.ResponseType;
+import org.gluu.oxauth.model.jwt.Jwt;
+import org.gluu.oxauth.model.jwt.JwtClaimName;
+import org.gluu.oxauth.model.register.ApplicationType;
+import org.gluu.oxauth.model.util.StringUtils;
+import org.jboss.resteasy.client.jaxrs.engines.ApacheHttpClient43Engine;
+import org.testng.Assert;
+import org.testng.annotations.Parameters;
+import org.testng.annotations.Test;
+
+/**
+ * @author Yuriy Zabrovarnyy
+ */
+public class TokenBindingHttpTest extends BaseTest {
+
+    public static final String ENCODED_TOKEN_BINDING_MESSAGE = "ARIAAgBBQCfsI1D1sTq5mvT_2H_dihNIvuHJCHGjHPJchPavNbGrOo26-2JgT_IsbvZd4daDFbirYBIwJ-TK1rh8FzrC-psAQO4Au9xPupLSkhwT9Y" +
+            "n9aSvHXFsMLh4d4cEBKGP1clJtsfUFGDw-8HQSKwgKFN3WfZGq27y8NB3NAM1oNzvqVOIAAAECAEFArPIiuZxj9gK0dWhIcG63r2-sZ8V3LX9gpNl8Um_oGOtmwoP1v0VHNI" +
+            "HEOzW3BOqcBLvUzVEG6a6KGEj3GrFcqQBA9YxqHPBIuDui_aQ1SoRGKyBEhaG2i-Wke3erRb1YwC7nTgrpqqJG3z1P8bt7cjZN6TpOyktdSSK7OJgiApwG7AAA";
+    public static final String EXPECTED_ID_HASH = "suMuxh_IlrP-Zrj33LuQOQ5rX039cmBe-wt2df3BrUQ";
+
+    @Parameters({"userId", "userSecret", "redirectUris", "redirectUri", "sectorIdentifierUri"})
+    @Test
+    public void tokenBindingWithImplicitFlow(final String userId, final String userSecret,
+                                            final String redirectUris, final String redirectUri,
+                                            final String sectorIdentifierUri) throws Exception {
+        showTitle("tokenBindingWithImplicitFlow");
+
+        List<ResponseType> responseTypes = Arrays.asList(
+                ResponseType.TOKEN,
+                ResponseType.ID_TOKEN
+        );
+        List<GrantType> grantTypes = Arrays.asList(
+                GrantType.RESOURCE_OWNER_PASSWORD_CREDENTIALS
+        );
+
+        // 1. Register client
+        RegisterResponse registerResponse = registerClient(redirectUri, responseTypes, grantTypes, sectorIdentifierUri);
+        String clientId = registerResponse.getClientId();
+
+        // 2. Request authorization
+        AuthorizationResponse authorizationResponse = requestAuthorization(userId, userSecret, redirectUri, responseTypes, clientId);
+
+        Jwt jwt = Jwt.parse(authorizationResponse.getIdToken());
+        Assert.assertEquals(EXPECTED_ID_HASH, jwt.getClaims().getClaimAsJSON(JwtClaimName.CNF).optString(JwtClaimName.TOKEN_BINDING_HASH));
+    }
+
+    private AuthorizationResponse requestAuthorization(final String userId, final String userSecret, final String redirectUri,
+                                                       List<ResponseType> responseTypes, String clientId) throws UnrecoverableKeyException, NoSuchAlgorithmException, KeyStoreException, KeyManagementException {
+        List<String> scopes = Arrays.asList("openid", "profile", "address", "email");
+        return requestAuthorization(userId, userSecret, redirectUri, responseTypes, clientId, scopes);
+    }
+
+    private AuthorizationResponse requestAuthorization(
+            final String userId, final String userSecret, final String redirectUri, List<ResponseType> responseTypes,
+            String clientId, List<String> scopes) throws UnrecoverableKeyException, NoSuchAlgorithmException, KeyStoreException, KeyManagementException {
+        String nonce = UUID.randomUUID().toString();
+        String state = UUID.randomUUID().toString();
+
+        AuthorizationRequest authorizationRequest = new AuthorizationRequest(
+                responseTypes, clientId, scopes, redirectUri, nonce);
+        authorizationRequest.setState(state);
+        authorizationRequest.setAuthUsername(userId);
+        authorizationRequest.setAuthPassword(userSecret);
+        authorizationRequest.getPrompts().add(Prompt.NONE);
+
+        AuthorizeClient authorizeClient = new AuthorizeClient(authorizationEndpoint);
+        authorizeClient.setExecutor(new ApacheHttpClient43Engine(createHttpClientTrustAll()));
+        authorizeClient.setRequest(authorizationRequest);
+        authorizeClient.getHeaders().put("Sec-Token-Binding", ENCODED_TOKEN_BINDING_MESSAGE);
+
+        AuthorizationResponse authorizationResponse = authorizeClient.exec();
+        showClient(authorizeClient);
+
+        assertNotNull(authorizationResponse.getLocation(), "The location is null");
+        assertNotNull(authorizationResponse.getAccessToken(), "The access token is null");
+        assertNotNull(authorizationResponse.getState(), "The state is null");
+        assertNotNull(authorizationResponse.getTokenType(), "The token type is null");
+        assertNotNull(authorizationResponse.getExpiresIn(), "The expires in value is null");
+        assertNotNull(authorizationResponse.getScope(), "The scope must be null");
+        assertNotNull(authorizationResponse.getIdToken(), "The id token must be null");
+        return authorizationResponse;
+    }
+
+    private RegisterResponse registerClient(final String redirectUris, final List<ResponseType> responseTypes,
+                                            final List<GrantType> grantTypes, final String sectorIdentifierUri) throws UnrecoverableKeyException, NoSuchAlgorithmException, KeyStoreException, KeyManagementException {
+        RegisterRequest registerRequest = new RegisterRequest(ApplicationType.WEB, "oxAuth test app",
+                StringUtils.spaceSeparatedToList(redirectUris));
+        registerRequest.setResponseTypes(responseTypes);
+        registerRequest.setGrantTypes(grantTypes);
+        registerRequest.addCustomAttribute("oxAuthTrustedClient", "true");
+        registerRequest.setIdTokenTokenBindingCnf(JwtClaimName.TOKEN_BINDING_HASH); // token binding hash for cnf
+
+        RegisterClient registerClient = new RegisterClient(registrationEndpoint);
+        registerClient.setExecutor(new ApacheHttpClient43Engine(createHttpClientTrustAll()));
+        registerClient.setRequest(registerRequest);
+        RegisterResponse registerResponse = registerClient.exec();
+
+        showClient(registerClient);
+        assertEquals(registerResponse.getStatus(), 200, "Unexpected response code: " + registerResponse.getEntity());
+        assertNotNull(registerResponse.getClientId());
+        assertNotNull(registerResponse.getClientSecret());
+        assertNotNull(registerResponse.getRegistrationAccessToken());
+        assertNotNull(registerResponse.getClientIdIssuedAt());
+        assertNotNull(registerResponse.getClientSecretExpiresAt());
+
+        return registerResponse;
+    }
+}
diff --git a/oxAuth/Client/src/test/java/org/gluu/oxauth/ws/rs/TokenEncryptionHttpTest.java b/oxAuth/Client/src/test/java/org/gluu/oxauth/ws/rs/TokenEncryptionHttpTest.java
new file mode 100644
index 00000000..a0a706ea
--- /dev/null
+++ b/oxAuth/Client/src/test/java/org/gluu/oxauth/ws/rs/TokenEncryptionHttpTest.java
@@ -0,0 +1,425 @@
+/*
+ * oxAuth is available under the MIT License (2008). See http://opensource.org/licenses/MIT for full text.
+ *
+ * Copyright (c) 2014, Gluu
+ */
+
+package org.gluu.oxauth.ws.rs;
+
+import static org.testng.Assert.assertEquals;
+import static org.testng.Assert.assertNotNull;
+import static org.testng.Assert.fail;
+
+import java.security.PrivateKey;
+import java.util.Arrays;
+import java.util.List;
+
+import org.gluu.oxauth.BaseTest;
+import org.gluu.oxauth.client.RegisterClient;
+import org.gluu.oxauth.client.RegisterRequest;
+import org.gluu.oxauth.client.RegisterResponse;
+import org.gluu.oxauth.client.TokenClient;
+import org.gluu.oxauth.client.TokenRequest;
+import org.gluu.oxauth.client.TokenResponse;
+import org.gluu.oxauth.model.common.GrantType;
+import org.gluu.oxauth.model.crypto.OxAuthCryptoProvider;
+import org.gluu.oxauth.model.crypto.encryption.BlockEncryptionAlgorithm;
+import org.gluu.oxauth.model.crypto.encryption.KeyEncryptionAlgorithm;
+import org.gluu.oxauth.model.jwe.Jwe;
+import org.gluu.oxauth.model.jwt.JwtClaimName;
+import org.gluu.oxauth.model.jwt.JwtHeaderName;
+import org.gluu.oxauth.model.register.ApplicationType;
+import org.gluu.oxauth.model.util.StringUtils;
+import org.gluu.oxauth.model.util.Util;
+import org.testng.annotations.Parameters;
+
+/**
+ * @author Javier Rojas Blum
+ * @version September 3, 2018
+ */
+@Deprecated
+public class TokenEncryptionHttpTest extends BaseTest {
+
+    @Parameters({"userId", "userSecret", "redirectUris", "clientJwksUri",
+            "RS256_enc_keyId", "keyStoreFile", "keyStoreSecret", "sectorIdentifierUri"})
+    //@Test // Before run this test, set openidScopeBackwardCompatibility to true
+    @Deprecated
+    public void requestIdTokenAlgRSAOAEPEncA256GCM(
+            final String userId, final String userSecret, final String redirectUris, final String jwksUri,
+            final String keyId, final String keyStoreFile, final String keyStoreSecret, final String sectorIdentifierUri) {
+        try {
+            showTitle("requestIdTokenAlgRSAOAEPEncA256GCM");
+
+            List<GrantType> grantTypes = Arrays.asList(
+                    GrantType.RESOURCE_OWNER_PASSWORD_CREDENTIALS
+            );
+
+            // 1. Dynamic Client Registration
+            RegisterRequest registerRequest = new RegisterRequest(ApplicationType.WEB, "oxAuth test app",
+                    StringUtils.spaceSeparatedToList(redirectUris));
+            registerRequest.setJwksUri(jwksUri);
+            registerRequest.setIdTokenEncryptedResponseAlg(KeyEncryptionAlgorithm.RSA_OAEP);
+            registerRequest.setIdTokenEncryptedResponseEnc(BlockEncryptionAlgorithm.A256GCM);
+            registerRequest.addCustomAttribute("oxAuthTrustedClient", "true");
+            registerRequest.setSectorIdentifierUri(sectorIdentifierUri);
+            registerRequest.setGrantTypes(grantTypes);
+
+            RegisterClient registerClient = new RegisterClient(registrationEndpoint);
+            registerClient.setRequest(registerRequest);
+            RegisterResponse response = registerClient.exec();
+
+            showClient(registerClient);
+            assertEquals(response.getStatus(), 200, "Unexpected response code: " + response.getEntity());
+            assertNotNull(response.getClientId());
+            assertNotNull(response.getClientSecret());
+            assertNotNull(response.getRegistrationAccessToken());
+            assertNotNull(response.getClientSecretExpiresAt());
+
+            String clientId = response.getClientId();
+            String clientSecret = response.getClientSecret();
+
+            // 2. Request authorization
+            TokenRequest tokenRequest = new TokenRequest(GrantType.RESOURCE_OWNER_PASSWORD_CREDENTIALS);
+            tokenRequest.setUsername(userId);
+            tokenRequest.setPassword(userSecret);
+            tokenRequest.setScope("openid");
+            tokenRequest.setAuthUsername(clientId);
+            tokenRequest.setAuthPassword(clientSecret);
+
+            TokenClient tokenClient = new TokenClient(tokenEndpoint);
+            tokenClient.setRequest(tokenRequest);
+            TokenResponse tokenResponse = tokenClient.exec();
+
+            showClient(tokenClient);
+            assertEquals(tokenResponse.getStatus(), 200, "Unexpected response code: " + tokenResponse.getStatus());
+            assertNotNull(tokenResponse.getEntity(), "The entity is null");
+            assertNotNull(tokenResponse.getAccessToken(), "The access token is null");
+            assertNotNull(tokenResponse.getTokenType(), "The token type is null");
+            assertNotNull(tokenResponse.getRefreshToken(), "The refresh token is null");
+            assertNotNull(tokenResponse.getScope(), "The scope is null");
+            assertNotNull(tokenResponse.getIdToken(), "The id token is null");
+
+            String idToken = tokenResponse.getIdToken();
+
+            // 3. Read Encrypted ID Token
+            OxAuthCryptoProvider cryptoProvider = new OxAuthCryptoProvider(keyStoreFile, keyStoreSecret, null);
+            PrivateKey privateKey = cryptoProvider.getPrivateKey(keyId);
+
+            Jwe jwe = Jwe.parse(idToken, privateKey, null);
+            assertNotNull(jwe.getHeader().getClaimAsString(JwtHeaderName.TYPE));
+            assertNotNull(jwe.getHeader().getClaimAsString(JwtHeaderName.ALGORITHM));
+            assertNotNull(jwe.getClaims().getClaimAsString(JwtClaimName.ISSUER));
+            assertNotNull(jwe.getClaims().getClaimAsString(JwtClaimName.AUDIENCE));
+            assertNotNull(jwe.getClaims().getClaimAsString(JwtClaimName.EXPIRATION_TIME));
+            assertNotNull(jwe.getClaims().getClaimAsString(JwtClaimName.ISSUED_AT));
+            assertNotNull(jwe.getClaims().getClaimAsString(JwtClaimName.SUBJECT_IDENTIFIER));
+            assertNotNull(jwe.getClaims().getClaimAsString(JwtClaimName.OX_OPENID_CONNECT_VERSION));
+        } catch (Exception ex) {
+            fail(ex.getMessage(), ex);
+        }
+    }
+
+    @Parameters({"userId", "userSecret", "redirectUris", "clientJwksUri",
+            "RS256_enc_keyId", "keyStoreFile", "keyStoreSecret", "sectorIdentifierUri"})
+    //@Test // Before run this test, set openidScopeBackwardCompatibility to true
+    @Deprecated
+    public void requestIdTokenAlgRSA15EncA128CBCPLUSHS256(
+            final String userId, final String userSecret, final String redirectUris, final String jwksUri,
+            final String keyId, final String keyStoreFile, final String keyStoreSecret, final String sectorIdentifierUri) {
+        try {
+            showTitle("requestIdTokenAlgRSA15EncA128CBCPLUSHS256");
+
+            List<GrantType> grantTypes = Arrays.asList(
+                    GrantType.RESOURCE_OWNER_PASSWORD_CREDENTIALS
+            );
+
+            // 1. Dynamic Client Registration
+            RegisterRequest registerRequest = new RegisterRequest(ApplicationType.WEB, "oxAuth test app",
+                    StringUtils.spaceSeparatedToList(redirectUris));
+            registerRequest.setJwksUri(jwksUri);
+            registerRequest.setIdTokenEncryptedResponseAlg(KeyEncryptionAlgorithm.RSA1_5);
+            registerRequest.setIdTokenEncryptedResponseEnc(BlockEncryptionAlgorithm.A128CBC_PLUS_HS256);
+            registerRequest.addCustomAttribute("oxAuthTrustedClient", "true");
+            registerRequest.setSectorIdentifierUri(sectorIdentifierUri);
+            registerRequest.setGrantTypes(grantTypes);
+
+            RegisterClient registerClient = new RegisterClient(registrationEndpoint);
+            registerClient.setRequest(registerRequest);
+            RegisterResponse response = registerClient.exec();
+
+            showClient(registerClient);
+            assertEquals(response.getStatus(), 200, "Unexpected response code: " + response.getEntity());
+            assertNotNull(response.getClientId());
+            assertNotNull(response.getClientSecret());
+            assertNotNull(response.getRegistrationAccessToken());
+            assertNotNull(response.getClientSecretExpiresAt());
+
+            String clientId = response.getClientId();
+            String clientSecret = response.getClientSecret();
+
+            // 2. Request authorization
+            TokenRequest tokenRequest = new TokenRequest(GrantType.RESOURCE_OWNER_PASSWORD_CREDENTIALS);
+            tokenRequest.setUsername(userId);
+            tokenRequest.setPassword(userSecret);
+            tokenRequest.setScope("openid");
+            tokenRequest.setAuthUsername(clientId);
+            tokenRequest.setAuthPassword(clientSecret);
+
+            TokenClient tokenClient = new TokenClient(tokenEndpoint);
+            tokenClient.setRequest(tokenRequest);
+            TokenResponse tokenResponse = tokenClient.exec();
+
+            showClient(tokenClient);
+            assertEquals(tokenResponse.getStatus(), 200, "Unexpected response code: " + tokenResponse.getStatus());
+            assertNotNull(tokenResponse.getEntity(), "The entity is null");
+            assertNotNull(tokenResponse.getAccessToken(), "The access token is null");
+            assertNotNull(tokenResponse.getTokenType(), "The token type is null");
+            assertNotNull(tokenResponse.getRefreshToken(), "The refresh token is null");
+            assertNotNull(tokenResponse.getScope(), "The scope is null");
+            assertNotNull(tokenResponse.getIdToken(), "The id token is null");
+
+            String idToken = tokenResponse.getIdToken();
+
+            // 3. Read Encrypted ID Token
+            OxAuthCryptoProvider cryptoProvider = new OxAuthCryptoProvider(keyStoreFile, keyStoreSecret, null);
+            PrivateKey privateKey = cryptoProvider.getPrivateKey(keyId);
+
+            Jwe jwe = Jwe.parse(idToken, privateKey, null);
+            assertNotNull(jwe.getHeader().getClaimAsString(JwtHeaderName.TYPE));
+            assertNotNull(jwe.getHeader().getClaimAsString(JwtHeaderName.ALGORITHM));
+            assertNotNull(jwe.getClaims().getClaimAsString(JwtClaimName.ISSUER));
+            assertNotNull(jwe.getClaims().getClaimAsString(JwtClaimName.AUDIENCE));
+            assertNotNull(jwe.getClaims().getClaimAsString(JwtClaimName.EXPIRATION_TIME));
+            assertNotNull(jwe.getClaims().getClaimAsString(JwtClaimName.ISSUED_AT));
+            assertNotNull(jwe.getClaims().getClaimAsString(JwtClaimName.SUBJECT_IDENTIFIER));
+            assertNotNull(jwe.getClaims().getClaimAsString(JwtClaimName.OX_OPENID_CONNECT_VERSION));
+        } catch (Exception ex) {
+            fail(ex.getMessage(), ex);
+        }
+    }
+
+    @Parameters({"userId", "userSecret", "redirectUris", "clientJwksUri",
+            "RS256_enc_keyId", "keyStoreFile", "keyStoreSecret", "sectorIdentifierUri"})
+    //@Test // Before run this test, set openidScopeBackwardCompatibility to true
+    @Deprecated
+    public void requestIdTokenAlgRSA15EncA256CBCPLUSHS512(
+            final String userId, final String userSecret, final String redirectUris, final String jwksUri,
+            final String keyId, final String keyStoreFile, final String keyStoreSecret, final String sectorIdentifierUri) {
+        try {
+            showTitle("requestIdTokenAlgRSA15EncA256CBCPLUSHS512");
+
+            List<GrantType> grantTypes = Arrays.asList(
+                    GrantType.RESOURCE_OWNER_PASSWORD_CREDENTIALS
+            );
+
+            // 1. Dynamic Client Registration
+            RegisterRequest registerRequest = new RegisterRequest(ApplicationType.WEB, "oxAuth test app",
+                    StringUtils.spaceSeparatedToList(redirectUris));
+            registerRequest.setJwksUri(jwksUri);
+            registerRequest.setIdTokenEncryptedResponseAlg(KeyEncryptionAlgorithm.RSA1_5);
+            registerRequest.setIdTokenEncryptedResponseEnc(BlockEncryptionAlgorithm.A256CBC_PLUS_HS512);
+            registerRequest.addCustomAttribute("oxAuthTrustedClient", "true");
+            registerRequest.setSectorIdentifierUri(sectorIdentifierUri);
+            registerRequest.setGrantTypes(grantTypes);
+
+            RegisterClient registerClient = new RegisterClient(registrationEndpoint);
+            registerClient.setRequest(registerRequest);
+            RegisterResponse response = registerClient.exec();
+
+            showClient(registerClient);
+            assertEquals(response.getStatus(), 200, "Unexpected response code: " + response.getEntity());
+            assertNotNull(response.getClientId());
+            assertNotNull(response.getClientSecret());
+            assertNotNull(response.getRegistrationAccessToken());
+            assertNotNull(response.getClientSecretExpiresAt());
+
+            String clientId = response.getClientId();
+            String clientSecret = response.getClientSecret();
+
+            // 2. Request authorization
+            TokenRequest tokenRequest = new TokenRequest(GrantType.RESOURCE_OWNER_PASSWORD_CREDENTIALS);
+            tokenRequest.setUsername(userId);
+            tokenRequest.setPassword(userSecret);
+            tokenRequest.setScope("openid");
+            tokenRequest.setAuthUsername(clientId);
+            tokenRequest.setAuthPassword(clientSecret);
+
+            TokenClient tokenClient = new TokenClient(tokenEndpoint);
+            tokenClient.setRequest(tokenRequest);
+            TokenResponse tokenResponse = tokenClient.exec();
+
+            showClient(tokenClient);
+            assertEquals(tokenResponse.getStatus(), 200, "Unexpected response code: " + tokenResponse.getStatus());
+            assertNotNull(tokenResponse.getEntity(), "The entity is null");
+            assertNotNull(tokenResponse.getAccessToken(), "The access token is null");
+            assertNotNull(tokenResponse.getTokenType(), "The token type is null");
+            assertNotNull(tokenResponse.getRefreshToken(), "The refresh token is null");
+            assertNotNull(tokenResponse.getScope(), "The scope is null");
+            assertNotNull(tokenResponse.getIdToken(), "The id token is null");
+
+            String idToken = tokenResponse.getIdToken();
+
+            // 3. Read Encrypted ID Token
+            OxAuthCryptoProvider cryptoProvider = new OxAuthCryptoProvider(keyStoreFile, keyStoreSecret, null);
+            PrivateKey privateKey = cryptoProvider.getPrivateKey(keyId);
+
+            Jwe jwe = Jwe.parse(idToken, privateKey, null);
+            assertNotNull(jwe.getHeader().getClaimAsString(JwtHeaderName.TYPE));
+            assertNotNull(jwe.getHeader().getClaimAsString(JwtHeaderName.ALGORITHM));
+            assertNotNull(jwe.getClaims().getClaimAsString(JwtClaimName.ISSUER));
+            assertNotNull(jwe.getClaims().getClaimAsString(JwtClaimName.AUDIENCE));
+            assertNotNull(jwe.getClaims().getClaimAsString(JwtClaimName.EXPIRATION_TIME));
+            assertNotNull(jwe.getClaims().getClaimAsString(JwtClaimName.ISSUED_AT));
+            assertNotNull(jwe.getClaims().getClaimAsString(JwtClaimName.SUBJECT_IDENTIFIER));
+            assertNotNull(jwe.getClaims().getClaimAsString(JwtClaimName.OX_OPENID_CONNECT_VERSION));
+        } catch (Exception ex) {
+            fail(ex.getMessage(), ex);
+        }
+    }
+
+    @Parameters({"userId", "userSecret", "redirectUris", "sectorIdentifierUri"})
+    //@Test // Before run this test, set openidScopeBackwardCompatibility to true
+    @Deprecated
+    public void requestIdTokenAlgA128KWEncA128GCM(
+            final String userId, final String userSecret, final String redirectUris, final String sectorIdentifierUri) {
+        try {
+            showTitle("requestIdTokenAlgA128KWEncA128GCM");
+
+            List<GrantType> grantTypes = Arrays.asList(
+                    GrantType.RESOURCE_OWNER_PASSWORD_CREDENTIALS
+            );
+
+            // 1. Dynamic Client Registration
+            RegisterRequest registerRequest = new RegisterRequest(ApplicationType.WEB, "oxAuth test app",
+                    StringUtils.spaceSeparatedToList(redirectUris));
+            registerRequest.setIdTokenEncryptedResponseAlg(KeyEncryptionAlgorithm.A128KW);
+            registerRequest.setIdTokenEncryptedResponseEnc(BlockEncryptionAlgorithm.A128GCM);
+            registerRequest.addCustomAttribute("oxAuthTrustedClient", "true");
+            registerRequest.setSectorIdentifierUri(sectorIdentifierUri);
+            registerRequest.setGrantTypes(grantTypes);
+
+            RegisterClient registerClient = new RegisterClient(registrationEndpoint);
+            registerClient.setRequest(registerRequest);
+            RegisterResponse response = registerClient.exec();
+
+            showClient(registerClient);
+            assertEquals(response.getStatus(), 200, "Unexpected response code: " + response.getEntity());
+            assertNotNull(response.getClientId());
+            assertNotNull(response.getClientSecret());
+            assertNotNull(response.getRegistrationAccessToken());
+            assertNotNull(response.getClientSecretExpiresAt());
+
+            String clientId = response.getClientId();
+            String clientSecret = response.getClientSecret();
+
+            // 2. Request authorization
+            TokenRequest tokenRequest = new TokenRequest(GrantType.RESOURCE_OWNER_PASSWORD_CREDENTIALS);
+            tokenRequest.setUsername(userId);
+            tokenRequest.setPassword(userSecret);
+            tokenRequest.setScope("openid");
+            tokenRequest.setAuthUsername(clientId);
+            tokenRequest.setAuthPassword(clientSecret);
+
+            TokenClient tokenClient = new TokenClient(tokenEndpoint);
+            tokenClient.setRequest(tokenRequest);
+            TokenResponse tokenResponse = tokenClient.exec();
+
+            showClient(tokenClient);
+            assertEquals(tokenResponse.getStatus(), 200, "Unexpected response code: " + tokenResponse.getStatus());
+            assertNotNull(tokenResponse.getEntity(), "The entity is null");
+            assertNotNull(tokenResponse.getAccessToken(), "The access token is null");
+            assertNotNull(tokenResponse.getTokenType(), "The token type is null");
+            assertNotNull(tokenResponse.getRefreshToken(), "The refresh token is null");
+            assertNotNull(tokenResponse.getScope(), "The scope is null");
+            assertNotNull(tokenResponse.getIdToken(), "The id token is null");
+
+            String idToken = tokenResponse.getIdToken();
+
+            // 3. Read Encrypted ID Token
+            Jwe jwe = Jwe.parse(idToken, null, clientSecret.getBytes(Util.UTF8_STRING_ENCODING));
+            assertNotNull(jwe.getHeader().getClaimAsString(JwtHeaderName.TYPE));
+            assertNotNull(jwe.getHeader().getClaimAsString(JwtHeaderName.ALGORITHM));
+            assertNotNull(jwe.getClaims().getClaimAsString(JwtClaimName.ISSUER));
+            assertNotNull(jwe.getClaims().getClaimAsString(JwtClaimName.AUDIENCE));
+            assertNotNull(jwe.getClaims().getClaimAsString(JwtClaimName.EXPIRATION_TIME));
+            assertNotNull(jwe.getClaims().getClaimAsString(JwtClaimName.ISSUED_AT));
+            assertNotNull(jwe.getClaims().getClaimAsString(JwtClaimName.SUBJECT_IDENTIFIER));
+            assertNotNull(jwe.getClaims().getClaimAsString(JwtClaimName.OX_OPENID_CONNECT_VERSION));
+        } catch (Exception ex) {
+            fail(ex.getMessage(), ex);
+        }
+    }
+
+    @Parameters({"userId", "userSecret", "redirectUris", "sectorIdentifierUri"})
+    //@Test // Before run this test, set openidScopeBackwardCompatibility to true
+    @Deprecated
+    public void requestIdTokenAlgA256KWEncA256GCM(
+            final String userId, final String userSecret, final String redirectUris, final String sectorIdentifierUri) {
+        try {
+            showTitle("requestIdTokenAlgA256KWEncA256GCM");
+
+            List<GrantType> grantTypes = Arrays.asList(
+                    GrantType.RESOURCE_OWNER_PASSWORD_CREDENTIALS
+            );
+
+            // 1. Dynamic Client Registration
+            RegisterRequest registerRequest = new RegisterRequest(ApplicationType.WEB, "oxAuth test app",
+                    StringUtils.spaceSeparatedToList(redirectUris));
+            registerRequest.setIdTokenEncryptedResponseAlg(KeyEncryptionAlgorithm.A256KW);
+            registerRequest.setIdTokenEncryptedResponseEnc(BlockEncryptionAlgorithm.A256GCM);
+            registerRequest.addCustomAttribute("oxAuthTrustedClient", "true");
+            registerRequest.setSectorIdentifierUri(sectorIdentifierUri);
+            registerRequest.setGrantTypes(grantTypes);
+
+            RegisterClient registerClient = new RegisterClient(registrationEndpoint);
+            registerClient.setRequest(registerRequest);
+            RegisterResponse response = registerClient.exec();
+
+            showClient(registerClient);
+            assertEquals(response.getStatus(), 200, "Unexpected response code: " + response.getEntity());
+            assertNotNull(response.getClientId());
+            assertNotNull(response.getClientSecret());
+            assertNotNull(response.getRegistrationAccessToken());
+            assertNotNull(response.getClientSecretExpiresAt());
+
+            String clientId = response.getClientId();
+            String clientSecret = response.getClientSecret();
+
+            // 2. Request authorization
+            TokenRequest tokenRequest = new TokenRequest(GrantType.RESOURCE_OWNER_PASSWORD_CREDENTIALS);
+            tokenRequest.setUsername(userId);
+            tokenRequest.setPassword(userSecret);
+            tokenRequest.setScope("openid");
+            tokenRequest.setAuthUsername(clientId);
+            tokenRequest.setAuthPassword(clientSecret);
+
+            TokenClient tokenClient = new TokenClient(tokenEndpoint);
+            tokenClient.setRequest(tokenRequest);
+            TokenResponse tokenResponse = tokenClient.exec();
+
+            showClient(tokenClient);
+            assertEquals(tokenResponse.getStatus(), 200, "Unexpected response code: " + tokenResponse.getStatus());
+            assertNotNull(tokenResponse.getEntity(), "The entity is null");
+            assertNotNull(tokenResponse.getAccessToken(), "The access token is null");
+            assertNotNull(tokenResponse.getTokenType(), "The token type is null");
+            assertNotNull(tokenResponse.getRefreshToken(), "The refresh token is null");
+            assertNotNull(tokenResponse.getScope(), "The scope is null");
+            assertNotNull(tokenResponse.getIdToken(), "The id token is null");
+
+            String idToken = tokenResponse.getIdToken();
+
+            // 3. Read Encrypted ID Token
+            Jwe jwe = Jwe.parse(idToken, null, clientSecret.getBytes(Util.UTF8_STRING_ENCODING));
+            assertNotNull(jwe.getHeader().getClaimAsString(JwtHeaderName.TYPE));
+            assertNotNull(jwe.getHeader().getClaimAsString(JwtHeaderName.ALGORITHM));
+            assertNotNull(jwe.getClaims().getClaimAsString(JwtClaimName.ISSUER));
+            assertNotNull(jwe.getClaims().getClaimAsString(JwtClaimName.AUDIENCE));
+            assertNotNull(jwe.getClaims().getClaimAsString(JwtClaimName.EXPIRATION_TIME));
+            assertNotNull(jwe.getClaims().getClaimAsString(JwtClaimName.ISSUED_AT));
+            assertNotNull(jwe.getClaims().getClaimAsString(JwtClaimName.SUBJECT_IDENTIFIER));
+            assertNotNull(jwe.getClaims().getClaimAsString(JwtClaimName.OX_OPENID_CONNECT_VERSION));
+        } catch (Exception ex) {
+            fail(ex.getMessage(), ex);
+        }
+    }
+}
\ No newline at end of file
diff --git a/oxAuth/Client/src/test/java/org/gluu/oxauth/ws/rs/TokenEndpointAuthMethodRestrictionHttpTest.java b/oxAuth/Client/src/test/java/org/gluu/oxauth/ws/rs/TokenEndpointAuthMethodRestrictionHttpTest.java
new file mode 100644
index 00000000..275559a9
--- /dev/null
+++ b/oxAuth/Client/src/test/java/org/gluu/oxauth/ws/rs/TokenEndpointAuthMethodRestrictionHttpTest.java
@@ -0,0 +1,10674 @@
+/*
+ * oxAuth is available under the MIT License (2008). See http://opensource.org/licenses/MIT for full text.
+ *
+ * Copyright (c) 2014, Gluu
+ */
+
+package org.gluu.oxauth.ws.rs;
+
+import static org.gluu.oxauth.model.register.RegisterRequestParam.APPLICATION_TYPE;
+import static org.gluu.oxauth.model.register.RegisterRequestParam.CLIENT_NAME;
+import static org.gluu.oxauth.model.register.RegisterRequestParam.ID_TOKEN_SIGNED_RESPONSE_ALG;
+import static org.gluu.oxauth.model.register.RegisterRequestParam.REDIRECT_URIS;
+import static org.gluu.oxauth.model.register.RegisterRequestParam.RESPONSE_TYPES;
+import static org.gluu.oxauth.model.register.RegisterRequestParam.SCOPE;
+import static org.gluu.oxauth.model.register.RegisterRequestParam.TOKEN_ENDPOINT_AUTH_METHOD;
+import static org.gluu.oxauth.model.register.RegisterRequestParam.TOKEN_ENDPOINT_AUTH_SIGNING_ALG;
+import static org.testng.Assert.assertEquals;
+import static org.testng.Assert.assertNotNull;
+import static org.testng.Assert.assertNull;
+import static org.testng.Assert.assertTrue;
+
+import java.util.Arrays;
+import java.util.List;
+import java.util.UUID;
+
+import org.gluu.oxauth.BaseTest;
+import org.gluu.oxauth.client.AuthorizationRequest;
+import org.gluu.oxauth.client.AuthorizationResponse;
+import org.gluu.oxauth.client.RegisterClient;
+import org.gluu.oxauth.client.RegisterRequest;
+import org.gluu.oxauth.client.RegisterResponse;
+import org.gluu.oxauth.client.TokenClient;
+import org.gluu.oxauth.client.TokenRequest;
+import org.gluu.oxauth.client.TokenResponse;
+import org.gluu.oxauth.model.common.AuthenticationMethod;
+import org.gluu.oxauth.model.common.GrantType;
+import org.gluu.oxauth.model.common.ResponseType;
+import org.gluu.oxauth.model.crypto.OxAuthCryptoProvider;
+import org.gluu.oxauth.model.crypto.signature.SignatureAlgorithm;
+import org.gluu.oxauth.model.register.ApplicationType;
+import org.gluu.oxauth.model.util.StringUtils;
+import org.testng.annotations.Parameters;
+import org.testng.annotations.Test;
+
+/**
+ * @author Javier Rojas Blum
+ * @version February 8, 2019
+ */
+public class TokenEndpointAuthMethodRestrictionHttpTest extends BaseTest {
+
+    /**
+     * Register a client without specify a Token Endpoint Auth Method.
+     * Read client to check whether it is using the default Token Endpoint Auth Method <code>client_secret_basic</code>.
+     */
+    @Parameters({"redirectUris", "sectorIdentifierUri"})
+    @Test
+    public void omittedTokenEndpointAuthMethod(final String redirectUris, final String sectorIdentifierUri) throws Exception {
+        showTitle("omittedTokenEndpointAuthMethod");
+
+        // 1. Register client
+        RegisterRequest registerRequest = new RegisterRequest(ApplicationType.WEB, "oxAuth test app",
+                StringUtils.spaceSeparatedToList(redirectUris));
+        registerRequest.setSectorIdentifierUri(sectorIdentifierUri);
+
+        RegisterClient registerClient = new RegisterClient(registrationEndpoint);
+        registerClient.setRequest(registerRequest);
+        RegisterResponse registerResponse = registerClient.exec();
+
+        showClient(registerClient);
+        assertEquals(registerResponse.getStatus(), 200, "Unexpected response code: " + registerResponse.getEntity());
+        assertNotNull(registerResponse.getClientId());
+        assertNotNull(registerResponse.getClientSecret());
+        assertNotNull(registerResponse.getRegistrationAccessToken());
+        assertNotNull(registerResponse.getClientIdIssuedAt());
+        assertNotNull(registerResponse.getClientSecretExpiresAt());
+
+        String registrationAccessToken = registerResponse.getRegistrationAccessToken();
+        String registrationClientUri = registerResponse.getRegistrationClientUri();
+
+        // 2. Client read
+        RegisterRequest readClientRequest = new RegisterRequest(registrationAccessToken);
+
+        RegisterClient readClient = new RegisterClient(registrationClientUri);
+        readClient.setRequest(readClientRequest);
+        RegisterResponse readClientResponse = readClient.exec();
+
+        showClient(readClient);
+        assertEquals(readClientResponse.getStatus(), 200, "Unexpected response code: " + readClientResponse.getEntity());
+        assertNotNull(readClientResponse.getClientId());
+        assertNotNull(readClientResponse.getClientSecret());
+        assertNotNull(readClientResponse.getClientIdIssuedAt());
+        assertNotNull(readClientResponse.getClientSecretExpiresAt());
+
+        assertTrue(readClientResponse.getClaims().containsKey(TOKEN_ENDPOINT_AUTH_METHOD.toString()));
+        assertEquals(readClientResponse.getClaims().get(TOKEN_ENDPOINT_AUTH_METHOD.toString()),
+                AuthenticationMethod.CLIENT_SECRET_BASIC.toString());
+        assertNotNull(readClientResponse.getClaims().get(RESPONSE_TYPES.toString()));
+        assertNotNull(readClientResponse.getClaims().get(REDIRECT_URIS.toString()));
+        assertNotNull(readClientResponse.getClaims().get(APPLICATION_TYPE.toString()));
+        assertNotNull(readClientResponse.getClaims().get(CLIENT_NAME.toString()));
+        assertNotNull(readClientResponse.getClaims().get(ID_TOKEN_SIGNED_RESPONSE_ALG.toString()));
+        assertNotNull(readClientResponse.getClaims().get(SCOPE.toString()));
+    }
+
+    /**
+     * Register a client with Token Endpoint Auth Method <code>client_secret_basic</code>.
+     * Read client to check whether it is using the Token Endpoint Auth Method <code>client_secret_basic</code>.
+     * Request authorization code.
+     * Call to Token Endpoint with Auth Method <code>client_secret_basic</code>.
+     */
+    @Parameters({"redirectUris", "redirectUri", "userId", "userSecret", "sectorIdentifierUri"})
+    @Test
+    public void tokenEndpointAuthMethodClientSecretBasic(
+            final String redirectUris, final String redirectUri, final String userId, final String userSecret,
+            final String sectorIdentifierUri) throws Exception {
+        showTitle("tokenEndpointAuthMethodClientSecretBasic");
+
+        // 1. Register client
+        RegisterRequest registerRequest = new RegisterRequest(ApplicationType.WEB, "oxAuth test app",
+                StringUtils.spaceSeparatedToList(redirectUris));
+        registerRequest.setTokenEndpointAuthMethod(AuthenticationMethod.CLIENT_SECRET_BASIC);
+        registerRequest.setSectorIdentifierUri(sectorIdentifierUri);
+
+        RegisterClient registerClient = new RegisterClient(registrationEndpoint);
+        registerClient.setRequest(registerRequest);
+        RegisterResponse registerResponse = registerClient.exec();
+
+        showClient(registerClient);
+        assertEquals(registerResponse.getStatus(), 200, "Unexpected response code: " + registerResponse.getEntity());
+        assertNotNull(registerResponse.getClientId());
+        assertNotNull(registerResponse.getClientSecret());
+        assertNotNull(registerResponse.getRegistrationAccessToken());
+        assertNotNull(registerResponse.getClientIdIssuedAt());
+        assertNotNull(registerResponse.getClientSecretExpiresAt());
+
+        String clientId = registerResponse.getClientId();
+        String clientSecret = registerResponse.getClientSecret();
+        String registrationAccessToken = registerResponse.getRegistrationAccessToken();
+        String registrationClientUri = registerResponse.getRegistrationClientUri();
+
+        // 2. Client read
+        RegisterRequest readClientRequest = new RegisterRequest(registrationAccessToken);
+
+        RegisterClient readClient = new RegisterClient(registrationClientUri);
+        readClient.setRequest(readClientRequest);
+        RegisterResponse readClientResponse = readClient.exec();
+
+        showClient(readClient);
+        assertEquals(readClientResponse.getStatus(), 200, "Unexpected response code: " + readClientResponse.getEntity());
+        assertNotNull(readClientResponse.getClientId());
+        assertNotNull(readClientResponse.getClientSecret());
+        assertNotNull(readClientResponse.getClientIdIssuedAt());
+        assertNotNull(readClientResponse.getClientSecretExpiresAt());
+
+        assertTrue(readClientResponse.getClaims().containsKey(TOKEN_ENDPOINT_AUTH_METHOD.toString()));
+        assertEquals(readClientResponse.getClaims().get(TOKEN_ENDPOINT_AUTH_METHOD.toString()),
+                AuthenticationMethod.CLIENT_SECRET_BASIC.toString());
+        assertNotNull(readClientResponse.getClaims().get(RESPONSE_TYPES.toString()));
+        assertNotNull(readClientResponse.getClaims().get(REDIRECT_URIS.toString()));
+        assertNotNull(readClientResponse.getClaims().get(APPLICATION_TYPE.toString()));
+        assertNotNull(readClientResponse.getClaims().get(CLIENT_NAME.toString()));
+        assertNotNull(readClientResponse.getClaims().get(ID_TOKEN_SIGNED_RESPONSE_ALG.toString()));
+        assertNotNull(readClientResponse.getClaims().get(SCOPE.toString()));
+
+        // 3. Request authorization
+        List<ResponseType> responseTypes = Arrays.asList(ResponseType.CODE);
+        List<String> scopes = Arrays.asList(
+                "openid",
+                "profile",
+                "address",
+                "email");
+        String state = UUID.randomUUID().toString();
+
+        AuthorizationRequest authorizationRequest = new AuthorizationRequest(responseTypes, clientId, scopes, redirectUri, null);
+        authorizationRequest.setState(state);
+
+        AuthorizationResponse authorizationResponse = authenticateResourceOwnerAndGrantAccess(
+                authorizationEndpoint, authorizationRequest, userId, userSecret);
+
+        assertNotNull(authorizationResponse.getLocation(), "The location is null");
+        assertNotNull(authorizationResponse.getCode(), "The authorization code is null");
+        assertNotNull(authorizationResponse.getState(), "The state is null");
+        assertNotNull(authorizationResponse.getScope(), "The scope is null");
+        assertNull(authorizationResponse.getIdToken(), "The id token is not null");
+
+        String authorizationCode = authorizationResponse.getCode();
+
+        // 4. Get Access Token
+        TokenRequest tokenRequest = new TokenRequest(GrantType.AUTHORIZATION_CODE);
+        tokenRequest.setCode(authorizationCode);
+        tokenRequest.setRedirectUri(redirectUri);
+        tokenRequest.setAuthUsername(clientId);
+        tokenRequest.setAuthPassword(clientSecret);
+        tokenRequest.setAuthenticationMethod(AuthenticationMethod.CLIENT_SECRET_BASIC);
+
+        TokenClient tokenClient = new TokenClient(tokenEndpoint);
+        tokenClient.setRequest(tokenRequest);
+        TokenResponse tokenResponse = tokenClient.exec();
+
+        showClient(tokenClient);
+        assertEquals(tokenResponse.getStatus(), 200, "Unexpected response code: " + tokenResponse.getStatus());
+        assertNotNull(tokenResponse.getEntity(), "The entity is null");
+        assertNotNull(tokenResponse.getAccessToken(), "The access token is null");
+        assertNotNull(tokenResponse.getExpiresIn(), "The expires in value is null");
+        assertNotNull(tokenResponse.getTokenType(), "The token type is null");
+        assertNotNull(tokenResponse.getRefreshToken(), "The refresh token is null");
+    }
+
+    /**
+     * Fail 1: Call to Token Endpoint with Auth Method <code>client_secret_post</code> should fail.
+     */
+    @Parameters({"redirectUris", "redirectUri", "userId", "userSecret", "sectorIdentifierUri"})
+    @Test
+    public void tokenEndpointAuthMethodClientSecretBasicFail1(
+            final String redirectUris, final String redirectUri, final String userId, final String userSecret,
+            final String sectorIdentifierUri) throws Exception {
+        showTitle("tokenEndpointAuthMethodClientSecretBasicFail1");
+
+        // 1. Register client
+        RegisterRequest registerRequest = new RegisterRequest(ApplicationType.WEB, "oxAuth test app",
+                StringUtils.spaceSeparatedToList(redirectUris));
+        registerRequest.setTokenEndpointAuthMethod(AuthenticationMethod.CLIENT_SECRET_BASIC);
+        registerRequest.setSectorIdentifierUri(sectorIdentifierUri);
+
+        RegisterClient registerClient = new RegisterClient(registrationEndpoint);
+        registerClient.setRequest(registerRequest);
+        RegisterResponse registerResponse = registerClient.exec();
+
+        showClient(registerClient);
+        assertEquals(registerResponse.getStatus(), 200, "Unexpected response code: " + registerResponse.getEntity());
+        assertNotNull(registerResponse.getClientId());
+        assertNotNull(registerResponse.getClientSecret());
+        assertNotNull(registerResponse.getRegistrationAccessToken());
+        assertNotNull(registerResponse.getClientIdIssuedAt());
+        assertNotNull(registerResponse.getClientSecretExpiresAt());
+
+        String clientId = registerResponse.getClientId();
+        String clientSecret = registerResponse.getClientSecret();
+        String registrationAccessToken = registerResponse.getRegistrationAccessToken();
+        String registrationClientUri = registerResponse.getRegistrationClientUri();
+
+        // 2. Client read
+        RegisterRequest readClientRequest = new RegisterRequest(registrationAccessToken);
+
+        RegisterClient readClient = new RegisterClient(registrationClientUri);
+        readClient.setRequest(readClientRequest);
+        RegisterResponse readClientResponse = readClient.exec();
+
+        showClient(readClient);
+        assertEquals(readClientResponse.getStatus(), 200, "Unexpected response code: " + readClientResponse.getEntity());
+        assertNotNull(readClientResponse.getClientId());
+        assertNotNull(readClientResponse.getClientSecret());
+        assertNotNull(readClientResponse.getClientIdIssuedAt());
+        assertNotNull(readClientResponse.getClientSecretExpiresAt());
+
+        assertTrue(readClientResponse.getClaims().containsKey(TOKEN_ENDPOINT_AUTH_METHOD.toString()));
+        assertEquals(readClientResponse.getClaims().get(TOKEN_ENDPOINT_AUTH_METHOD.toString()),
+                AuthenticationMethod.CLIENT_SECRET_BASIC.toString());
+        assertNotNull(readClientResponse.getClaims().get(RESPONSE_TYPES.toString()));
+        assertNotNull(readClientResponse.getClaims().get(REDIRECT_URIS.toString()));
+        assertNotNull(readClientResponse.getClaims().get(APPLICATION_TYPE.toString()));
+        assertNotNull(readClientResponse.getClaims().get(CLIENT_NAME.toString()));
+        assertNotNull(readClientResponse.getClaims().get(ID_TOKEN_SIGNED_RESPONSE_ALG.toString()));
+        assertNotNull(readClientResponse.getClaims().get(SCOPE.toString()));
+
+        // 3. Request authorization
+        List<ResponseType> responseTypes = Arrays.asList(ResponseType.CODE);
+        List<String> scopes = Arrays.asList(
+                "openid",
+                "profile",
+                "address",
+                "email");
+        String state = UUID.randomUUID().toString();
+
+        AuthorizationRequest authorizationRequest = new AuthorizationRequest(responseTypes, clientId, scopes, redirectUri, null);
+        authorizationRequest.setState(state);
+
+        AuthorizationResponse authorizationResponse = authenticateResourceOwnerAndGrantAccess(
+                authorizationEndpoint, authorizationRequest, userId, userSecret);
+
+        assertNotNull(authorizationResponse.getLocation(), "The location is null");
+        assertNotNull(authorizationResponse.getCode(), "The authorization code is null");
+        assertNotNull(authorizationResponse.getState(), "The state is null");
+        assertNotNull(authorizationResponse.getScope(), "The scope is null");
+        assertNull(authorizationResponse.getIdToken(), "The id token is not null");
+
+        String authorizationCode = authorizationResponse.getCode();
+
+        // 4. Get Access Token
+        TokenRequest tokenRequest = new TokenRequest(GrantType.AUTHORIZATION_CODE);
+        tokenRequest.setCode(authorizationCode);
+        tokenRequest.setRedirectUri(redirectUri);
+        tokenRequest.setAuthUsername(clientId);
+        tokenRequest.setAuthPassword(clientSecret);
+        tokenRequest.setAuthenticationMethod(AuthenticationMethod.CLIENT_SECRET_POST);
+
+        TokenClient tokenClient = new TokenClient(tokenEndpoint);
+        tokenClient.setRequest(tokenRequest);
+        TokenResponse tokenResponse = tokenClient.exec();
+
+        showClient(tokenClient);
+        assertEquals(tokenResponse.getStatus(), 401, "Unexpected response code: " + tokenResponse.getStatus());
+        assertNotNull(tokenResponse.getErrorType(), "The error type is null");
+        assertNotNull(tokenResponse.getErrorDescription(), "The error description is null");
+    }
+
+    /**
+     * Fail 2: Call to Token Endpoint with Auth Method <code>client_secret_jwt</code> should fail.
+     */
+    @Parameters({"redirectUris", "redirectUri", "userId", "userSecret", "sectorIdentifierUri"})
+    @Test
+    public void tokenEndpointAuthMethodClientSecretBasicFail2(
+            final String redirectUris, final String redirectUri, final String userId, final String userSecret,
+            final String sectorIdentifierUri) throws Exception {
+        showTitle("tokenEndpointAuthMethodClientSecretBasicFail2");
+
+        // 1. Register client
+        RegisterRequest registerRequest = new RegisterRequest(ApplicationType.WEB, "oxAuth test app",
+                StringUtils.spaceSeparatedToList(redirectUris));
+        registerRequest.setTokenEndpointAuthMethod(AuthenticationMethod.CLIENT_SECRET_BASIC);
+        registerRequest.setSectorIdentifierUri(sectorIdentifierUri);
+
+        RegisterClient registerClient = new RegisterClient(registrationEndpoint);
+        registerClient.setRequest(registerRequest);
+        RegisterResponse registerResponse = registerClient.exec();
+
+        showClient(registerClient);
+        assertEquals(registerResponse.getStatus(), 200, "Unexpected response code: " + registerResponse.getEntity());
+        assertNotNull(registerResponse.getClientId());
+        assertNotNull(registerResponse.getClientSecret());
+        assertNotNull(registerResponse.getRegistrationAccessToken());
+        assertNotNull(registerResponse.getClientIdIssuedAt());
+        assertNotNull(registerResponse.getClientSecretExpiresAt());
+
+        String clientId = registerResponse.getClientId();
+        String clientSecret = registerResponse.getClientSecret();
+        String registrationAccessToken = registerResponse.getRegistrationAccessToken();
+        String registrationClientUri = registerResponse.getRegistrationClientUri();
+
+        // 2. Client read
+        RegisterRequest readClientRequest = new RegisterRequest(registrationAccessToken);
+
+        RegisterClient readClient = new RegisterClient(registrationClientUri);
+        readClient.setRequest(readClientRequest);
+        RegisterResponse readClientResponse = readClient.exec();
+
+        showClient(readClient);
+        assertEquals(readClientResponse.getStatus(), 200, "Unexpected response code: " + readClientResponse.getEntity());
+        assertNotNull(readClientResponse.getClientId());
+        assertNotNull(readClientResponse.getClientSecret());
+        assertNotNull(readClientResponse.getClientIdIssuedAt());
+        assertNotNull(readClientResponse.getClientSecretExpiresAt());
+
+        assertTrue(readClientResponse.getClaims().containsKey(TOKEN_ENDPOINT_AUTH_METHOD.toString()));
+        assertEquals(readClientResponse.getClaims().get(TOKEN_ENDPOINT_AUTH_METHOD.toString()),
+                AuthenticationMethod.CLIENT_SECRET_BASIC.toString());
+        assertNotNull(readClientResponse.getClaims().get(RESPONSE_TYPES.toString()));
+        assertNotNull(readClientResponse.getClaims().get(REDIRECT_URIS.toString()));
+        assertNotNull(readClientResponse.getClaims().get(APPLICATION_TYPE.toString()));
+        assertNotNull(readClientResponse.getClaims().get(CLIENT_NAME.toString()));
+        assertNotNull(readClientResponse.getClaims().get(ID_TOKEN_SIGNED_RESPONSE_ALG.toString()));
+        assertNotNull(readClientResponse.getClaims().get(SCOPE.toString()));
+
+        // 3. Request authorization
+        List<ResponseType> responseTypes = Arrays.asList(ResponseType.CODE);
+        List<String> scopes = Arrays.asList(
+                "openid",
+                "profile",
+                "address",
+                "email");
+        String state = UUID.randomUUID().toString();
+
+        AuthorizationRequest authorizationRequest = new AuthorizationRequest(responseTypes, clientId, scopes, redirectUri, null);
+        authorizationRequest.setState(state);
+
+        AuthorizationResponse authorizationResponse = authenticateResourceOwnerAndGrantAccess(
+                authorizationEndpoint, authorizationRequest, userId, userSecret);
+
+        assertNotNull(authorizationResponse.getLocation(), "The location is null");
+        assertNotNull(authorizationResponse.getCode(), "The authorization code is null");
+        assertNotNull(authorizationResponse.getState(), "The state is null");
+        assertNotNull(authorizationResponse.getScope(), "The scope is null");
+        assertNull(authorizationResponse.getIdToken(), "The id token is not null");
+
+        String authorizationCode = authorizationResponse.getCode();
+
+        // 4. Get Access Token
+        TokenRequest tokenRequest = new TokenRequest(GrantType.AUTHORIZATION_CODE);
+        tokenRequest.setAudience(tokenEndpoint);
+        tokenRequest.setCode(authorizationCode);
+        tokenRequest.setRedirectUri(redirectUri);
+        tokenRequest.setAuthUsername(clientId);
+        tokenRequest.setAuthPassword(clientSecret);
+        tokenRequest.setAuthenticationMethod(AuthenticationMethod.CLIENT_SECRET_JWT);
+
+        TokenClient tokenClient = new TokenClient(tokenEndpoint);
+        tokenClient.setRequest(tokenRequest);
+        TokenResponse tokenResponse = tokenClient.exec();
+
+        showClient(tokenClient);
+        assertEquals(tokenResponse.getStatus(), 401, "Unexpected response code: " + tokenResponse.getStatus());
+        assertNotNull(tokenResponse.getErrorType(), "The error type is null");
+        assertNotNull(tokenResponse.getErrorDescription(), "The error description is null");
+    }
+
+    /**
+     * Fail 3: Call to Token Endpoint with Auth Method <code>private_key_jwt</code> should fail.
+     */
+    @Parameters({"redirectUris", "redirectUri", "userId", "userSecret", "RS256_keyId", "keyStoreFile", "keyStoreSecret",
+            "sectorIdentifierUri"})
+    @Test
+    public void tokenEndpointAuthMethodClientSecretBasicFail3(
+            final String redirectUris, final String redirectUri, final String userId, final String userSecret,
+            final String keyId, final String keyStoreFile, final String keyStoreSecret, final String sectorIdentifierUri) throws Exception {
+        showTitle("tokenEndpointAuthMethodClientSecretBasicFail3");
+
+        // 1. Register client
+        RegisterRequest registerRequest = new RegisterRequest(ApplicationType.WEB, "oxAuth test app",
+                StringUtils.spaceSeparatedToList(redirectUris));
+        registerRequest.setTokenEndpointAuthMethod(AuthenticationMethod.CLIENT_SECRET_BASIC);
+        registerRequest.setSectorIdentifierUri(sectorIdentifierUri);
+
+        RegisterClient registerClient = new RegisterClient(registrationEndpoint);
+        registerClient.setRequest(registerRequest);
+        RegisterResponse registerResponse = registerClient.exec();
+
+        showClient(registerClient);
+        assertEquals(registerResponse.getStatus(), 200, "Unexpected response code: " + registerResponse.getEntity());
+        assertNotNull(registerResponse.getClientId());
+        assertNotNull(registerResponse.getClientSecret());
+        assertNotNull(registerResponse.getRegistrationAccessToken());
+        assertNotNull(registerResponse.getClientIdIssuedAt());
+        assertNotNull(registerResponse.getClientSecretExpiresAt());
+
+        String clientId = registerResponse.getClientId();
+        String clientSecret = registerResponse.getClientSecret();
+        String registrationAccessToken = registerResponse.getRegistrationAccessToken();
+        String registrationClientUri = registerResponse.getRegistrationClientUri();
+
+        // 2. Client read
+        RegisterRequest readClientRequest = new RegisterRequest(registrationAccessToken);
+
+        RegisterClient readClient = new RegisterClient(registrationClientUri);
+        readClient.setRequest(readClientRequest);
+        RegisterResponse readClientResponse = readClient.exec();
+
+        showClient(readClient);
+        assertEquals(readClientResponse.getStatus(), 200, "Unexpected response code: " + readClientResponse.getEntity());
+        assertNotNull(readClientResponse.getClientId());
+        assertNotNull(readClientResponse.getClientSecret());
+        assertNotNull(readClientResponse.getClientIdIssuedAt());
+        assertNotNull(readClientResponse.getClientSecretExpiresAt());
+
+        assertTrue(readClientResponse.getClaims().containsKey(TOKEN_ENDPOINT_AUTH_METHOD.toString()));
+        assertEquals(readClientResponse.getClaims().get(TOKEN_ENDPOINT_AUTH_METHOD.toString()),
+                AuthenticationMethod.CLIENT_SECRET_BASIC.toString());
+        assertNotNull(readClientResponse.getClaims().get(RESPONSE_TYPES.toString()));
+        assertNotNull(readClientResponse.getClaims().get(REDIRECT_URIS.toString()));
+        assertNotNull(readClientResponse.getClaims().get(APPLICATION_TYPE.toString()));
+        assertNotNull(readClientResponse.getClaims().get(CLIENT_NAME.toString()));
+        assertNotNull(readClientResponse.getClaims().get(ID_TOKEN_SIGNED_RESPONSE_ALG.toString()));
+        assertNotNull(readClientResponse.getClaims().get(SCOPE.toString()));
+
+        // 3. Request authorization
+        List<ResponseType> responseTypes = Arrays.asList(ResponseType.CODE);
+        List<String> scopes = Arrays.asList(
+                "openid",
+                "profile",
+                "address",
+                "email");
+        String state = UUID.randomUUID().toString();
+
+        AuthorizationRequest authorizationRequest = new AuthorizationRequest(responseTypes, clientId, scopes, redirectUri, null);
+        authorizationRequest.setState(state);
+
+        AuthorizationResponse authorizationResponse = authenticateResourceOwnerAndGrantAccess(
+                authorizationEndpoint, authorizationRequest, userId, userSecret);
+
+        assertNotNull(authorizationResponse.getLocation(), "The location is null");
+        assertNotNull(authorizationResponse.getCode(), "The authorization code is null");
+        assertNotNull(authorizationResponse.getState(), "The state is null");
+        assertNotNull(authorizationResponse.getScope(), "The scope is null");
+        assertNull(authorizationResponse.getIdToken(), "The id token is not null");
+
+        String authorizationCode = authorizationResponse.getCode();
+
+        // 4. Get Access Token
+        OxAuthCryptoProvider cryptoProvider = new OxAuthCryptoProvider(keyStoreFile, keyStoreSecret, null);
+
+        TokenRequest tokenRequest = new TokenRequest(GrantType.AUTHORIZATION_CODE);
+        tokenRequest.setAuthenticationMethod(AuthenticationMethod.PRIVATE_KEY_JWT);
+        tokenRequest.setAlgorithm(SignatureAlgorithm.RS256);
+        tokenRequest.setKeyId(keyId);
+        tokenRequest.setCryptoProvider(cryptoProvider);
+        tokenRequest.setAudience(tokenEndpoint);
+        tokenRequest.setCode(authorizationCode);
+        tokenRequest.setRedirectUri(redirectUri);
+        tokenRequest.setAuthUsername(clientId);
+        tokenRequest.setAuthPassword(clientSecret);
+
+
+        TokenClient tokenClient = new TokenClient(tokenEndpoint);
+        tokenClient.setRequest(tokenRequest);
+        TokenResponse tokenResponse = tokenClient.exec();
+
+        showClient(tokenClient);
+        assertEquals(tokenResponse.getStatus(), 401, "Unexpected response code: " + tokenResponse.getStatus());
+        assertNotNull(tokenResponse.getErrorType(), "The error type is null");
+        assertNotNull(tokenResponse.getErrorDescription(), "The error description is null");
+    }
+
+    /**
+     * Register a client with Token Endpoint Auth Method <code>client_secret_post</code>.
+     * Read client to check whether it is using the Token Endpoint Auth Method <code>client_secret_post</code>.
+     * Request authorization code.
+     * Call to Token Endpoint with Auth Method <code>client_secret_post</code>.
+     */
+    @Parameters({"redirectUris", "redirectUri", "userId", "userSecret", "sectorIdentifierUri"})
+    @Test
+    public void tokenEndpointAuthMethodClientSecretPost(
+            final String redirectUris, final String redirectUri, final String userId, final String userSecret,
+            final String sectorIdentifierUri) throws Exception {
+        showTitle("tokenEndpointAuthMethodClientSecretPost");
+
+        // 1. Register client
+        RegisterRequest registerRequest = new RegisterRequest(ApplicationType.WEB, "oxAuth test app",
+                StringUtils.spaceSeparatedToList(redirectUris));
+        registerRequest.setTokenEndpointAuthMethod(AuthenticationMethod.CLIENT_SECRET_POST);
+        registerRequest.setSectorIdentifierUri(sectorIdentifierUri);
+
+        RegisterClient registerClient = new RegisterClient(registrationEndpoint);
+        registerClient.setRequest(registerRequest);
+        RegisterResponse registerResponse = registerClient.exec();
+
+        showClient(registerClient);
+        assertEquals(registerResponse.getStatus(), 200, "Unexpected response code: " + registerResponse.getEntity());
+        assertNotNull(registerResponse.getClientId());
+        assertNotNull(registerResponse.getClientSecret());
+        assertNotNull(registerResponse.getRegistrationAccessToken());
+        assertNotNull(registerResponse.getClientIdIssuedAt());
+        assertNotNull(registerResponse.getClientSecretExpiresAt());
+
+        String clientId = registerResponse.getClientId();
+        String clientSecret = registerResponse.getClientSecret();
+        String registrationAccessToken = registerResponse.getRegistrationAccessToken();
+        String registrationClientUri = registerResponse.getRegistrationClientUri();
+
+        // 2. Client read
+        RegisterRequest readClientRequest = new RegisterRequest(registrationAccessToken);
+
+        RegisterClient readClient = new RegisterClient(registrationClientUri);
+        readClient.setRequest(readClientRequest);
+        RegisterResponse readClientResponse = readClient.exec();
+
+        showClient(readClient);
+        assertEquals(readClientResponse.getStatus(), 200, "Unexpected response code: " + readClientResponse.getEntity());
+        assertNotNull(readClientResponse.getClientId());
+        assertNotNull(readClientResponse.getClientSecret());
+        assertNotNull(readClientResponse.getClientIdIssuedAt());
+        assertNotNull(readClientResponse.getClientSecretExpiresAt());
+
+        assertTrue(readClientResponse.getClaims().containsKey(TOKEN_ENDPOINT_AUTH_METHOD.toString()));
+        assertEquals(readClientResponse.getClaims().get(TOKEN_ENDPOINT_AUTH_METHOD.toString()),
+                AuthenticationMethod.CLIENT_SECRET_POST.toString());
+        assertNotNull(readClientResponse.getClaims().get(RESPONSE_TYPES.toString()));
+        assertNotNull(readClientResponse.getClaims().get(REDIRECT_URIS.toString()));
+        assertNotNull(readClientResponse.getClaims().get(APPLICATION_TYPE.toString()));
+        assertNotNull(readClientResponse.getClaims().get(CLIENT_NAME.toString()));
+        assertNotNull(readClientResponse.getClaims().get(ID_TOKEN_SIGNED_RESPONSE_ALG.toString()));
+        assertNotNull(readClientResponse.getClaims().get(SCOPE.toString()));
+
+        // 3. Request authorization
+        List<ResponseType> responseTypes = Arrays.asList(ResponseType.CODE);
+        List<String> scopes = Arrays.asList(
+                "openid",
+                "profile",
+                "address",
+                "email");
+        String state = UUID.randomUUID().toString();
+
+        AuthorizationRequest authorizationRequest = new AuthorizationRequest(responseTypes, clientId, scopes, redirectUri, null);
+        authorizationRequest.setState(state);
+
+        AuthorizationResponse authorizationResponse = authenticateResourceOwnerAndGrantAccess(
+                authorizationEndpoint, authorizationRequest, userId, userSecret);
+
+        assertNotNull(authorizationResponse.getLocation(), "The location is null");
+        assertNotNull(authorizationResponse.getCode(), "The authorization code is null");
+        assertNotNull(authorizationResponse.getState(), "The state is null");
+        assertNotNull(authorizationResponse.getScope(), "The scope is null");
+        assertNull(authorizationResponse.getIdToken(), "The id token is not null");
+
+        String authorizationCode = authorizationResponse.getCode();
+
+        // 4. Get Access Token
+        TokenRequest tokenRequest = new TokenRequest(GrantType.AUTHORIZATION_CODE);
+        tokenRequest.setCode(authorizationCode);
+        tokenRequest.setRedirectUri(redirectUri);
+        tokenRequest.setAuthUsername(clientId);
+        tokenRequest.setAuthPassword(clientSecret);
+        tokenRequest.setAuthenticationMethod(AuthenticationMethod.CLIENT_SECRET_POST);
+
+        TokenClient tokenClient = new TokenClient(tokenEndpoint);
+        tokenClient.setRequest(tokenRequest);
+        TokenResponse tokenResponse = tokenClient.exec();
+
+        showClient(tokenClient);
+        assertEquals(tokenResponse.getStatus(), 200, "Unexpected response code: " + tokenResponse.getStatus());
+        assertNotNull(tokenResponse.getEntity(), "The entity is null");
+        assertNotNull(tokenResponse.getAccessToken(), "The access token is null");
+        assertNotNull(tokenResponse.getExpiresIn(), "The expires in value is null");
+        assertNotNull(tokenResponse.getTokenType(), "The token type is null");
+        assertNotNull(tokenResponse.getRefreshToken(), "The refresh token is null");
+    }
+
+    /**
+     * Fail 1: Call to Token Endpoint with Auth Method <code>client_secret_basic</code> should fail.
+     */
+    @Parameters({"redirectUris", "redirectUri", "userId", "userSecret", "sectorIdentifierUri"})
+    @Test
+    public void tokenEndpointAuthMethodClientSecretPostFail1(
+            final String redirectUris, final String redirectUri, final String userId, final String userSecret,
+            final String sectorIdentifierUri) throws Exception {
+        showTitle("tokenEndpointAuthMethodClientSecretPostFail1");
+
+        // 1. Register client
+        RegisterRequest registerRequest = new RegisterRequest(ApplicationType.WEB, "oxAuth test app",
+                StringUtils.spaceSeparatedToList(redirectUris));
+        registerRequest.setTokenEndpointAuthMethod(AuthenticationMethod.CLIENT_SECRET_POST);
+        registerRequest.setSectorIdentifierUri(sectorIdentifierUri);
+
+        RegisterClient registerClient = new RegisterClient(registrationEndpoint);
+        registerClient.setRequest(registerRequest);
+        RegisterResponse registerResponse = registerClient.exec();
+
+        showClient(registerClient);
+        assertEquals(registerResponse.getStatus(), 200, "Unexpected response code: " + registerResponse.getEntity());
+        assertNotNull(registerResponse.getClientId());
+        assertNotNull(registerResponse.getClientSecret());
+        assertNotNull(registerResponse.getRegistrationAccessToken());
+        assertNotNull(registerResponse.getClientIdIssuedAt());
+        assertNotNull(registerResponse.getClientSecretExpiresAt());
+
+        String clientId = registerResponse.getClientId();
+        String clientSecret = registerResponse.getClientSecret();
+        String registrationAccessToken = registerResponse.getRegistrationAccessToken();
+        String registrationClientUri = registerResponse.getRegistrationClientUri();
+
+        // 2. Client read
+        RegisterRequest readClientRequest = new RegisterRequest(registrationAccessToken);
+
+        RegisterClient readClient = new RegisterClient(registrationClientUri);
+        readClient.setRequest(readClientRequest);
+        RegisterResponse readClientResponse = readClient.exec();
+
+        showClient(readClient);
+        assertEquals(readClientResponse.getStatus(), 200, "Unexpected response code: " + readClientResponse.getEntity());
+        assertNotNull(readClientResponse.getClientId());
+        assertNotNull(readClientResponse.getClientSecret());
+        assertNotNull(readClientResponse.getClientIdIssuedAt());
+        assertNotNull(readClientResponse.getClientSecretExpiresAt());
+
+        assertTrue(readClientResponse.getClaims().containsKey(TOKEN_ENDPOINT_AUTH_METHOD.toString()));
+        assertEquals(readClientResponse.getClaims().get(TOKEN_ENDPOINT_AUTH_METHOD.toString()),
+                AuthenticationMethod.CLIENT_SECRET_POST.toString());
+        assertNotNull(readClientResponse.getClaims().get(RESPONSE_TYPES.toString()));
+        assertNotNull(readClientResponse.getClaims().get(REDIRECT_URIS.toString()));
+        assertNotNull(readClientResponse.getClaims().get(APPLICATION_TYPE.toString()));
+        assertNotNull(readClientResponse.getClaims().get(CLIENT_NAME.toString()));
+        assertNotNull(readClientResponse.getClaims().get(ID_TOKEN_SIGNED_RESPONSE_ALG.toString()));
+        assertNotNull(readClientResponse.getClaims().get(SCOPE.toString()));
+
+        // 3. Request authorization
+        List<ResponseType> responseTypes = Arrays.asList(ResponseType.CODE);
+        List<String> scopes = Arrays.asList(
+                "openid",
+                "profile",
+                "address",
+                "email");
+        String state = UUID.randomUUID().toString();
+
+        AuthorizationRequest authorizationRequest = new AuthorizationRequest(responseTypes, clientId, scopes, redirectUri, null);
+        authorizationRequest.setState(state);
+
+        AuthorizationResponse authorizationResponse = authenticateResourceOwnerAndGrantAccess(
+                authorizationEndpoint, authorizationRequest, userId, userSecret);
+
+        assertNotNull(authorizationResponse.getLocation(), "The location is null");
+        assertNotNull(authorizationResponse.getCode(), "The authorization code is null");
+        assertNotNull(authorizationResponse.getState(), "The state is null");
+        assertNotNull(authorizationResponse.getScope(), "The scope is null");
+        assertNull(authorizationResponse.getIdToken(), "The id token is not null");
+
+        String authorizationCode = authorizationResponse.getCode();
+
+        // 4. Get Access Token
+        TokenRequest tokenRequest = new TokenRequest(GrantType.AUTHORIZATION_CODE);
+        tokenRequest.setCode(authorizationCode);
+        tokenRequest.setRedirectUri(redirectUri);
+        tokenRequest.setAuthUsername(clientId);
+        tokenRequest.setAuthPassword(clientSecret);
+        tokenRequest.setAuthenticationMethod(AuthenticationMethod.CLIENT_SECRET_BASIC);
+
+        TokenClient tokenClient = new TokenClient(tokenEndpoint);
+        tokenClient.setRequest(tokenRequest);
+        TokenResponse tokenResponse = tokenClient.exec();
+
+        showClient(tokenClient);
+        assertEquals(tokenResponse.getStatus(), 401, "Unexpected response code: " + tokenResponse.getStatus());
+        assertNotNull(tokenResponse.getErrorType(), "The error type is null");
+        assertNotNull(tokenResponse.getErrorDescription(), "The error description is null");
+    }
+
+    /**
+     * Fail 2: Call to Token Endpoint with Auth Method <code>client_secret_jwt</code> should fail.
+     */
+    @Parameters({"redirectUris", "redirectUri", "userId", "userSecret", "sectorIdentifierUri"})
+    @Test
+    public void tokenEndpointAuthMethodClientSecretPostFail2(
+            final String redirectUris, final String redirectUri, final String userId, final String userSecret,
+            final String sectorIdentifierUri) throws Exception {
+        showTitle("tokenEndpointAuthMethodClientSecretPostFail2");
+
+        // 1. Register client
+        RegisterRequest registerRequest = new RegisterRequest(ApplicationType.WEB, "oxAuth test app",
+                StringUtils.spaceSeparatedToList(redirectUris));
+        registerRequest.setTokenEndpointAuthMethod(AuthenticationMethod.CLIENT_SECRET_POST);
+        registerRequest.setSectorIdentifierUri(sectorIdentifierUri);
+
+        RegisterClient registerClient = new RegisterClient(registrationEndpoint);
+        registerClient.setRequest(registerRequest);
+        RegisterResponse registerResponse = registerClient.exec();
+
+        showClient(registerClient);
+        assertEquals(registerResponse.getStatus(), 200, "Unexpected response code: " + registerResponse.getEntity());
+        assertNotNull(registerResponse.getClientId());
+        assertNotNull(registerResponse.getClientSecret());
+        assertNotNull(registerResponse.getRegistrationAccessToken());
+        assertNotNull(registerResponse.getClientIdIssuedAt());
+        assertNotNull(registerResponse.getClientSecretExpiresAt());
+
+        String clientId = registerResponse.getClientId();
+        String clientSecret = registerResponse.getClientSecret();
+        String registrationAccessToken = registerResponse.getRegistrationAccessToken();
+        String registrationClientUri = registerResponse.getRegistrationClientUri();
+
+        // 2. Client read
+        RegisterRequest readClientRequest = new RegisterRequest(registrationAccessToken);
+
+        RegisterClient readClient = new RegisterClient(registrationClientUri);
+        readClient.setRequest(readClientRequest);
+        RegisterResponse readClientResponse = readClient.exec();
+
+        showClient(readClient);
+        assertEquals(readClientResponse.getStatus(), 200, "Unexpected response code: " + readClientResponse.getEntity());
+        assertNotNull(readClientResponse.getClientId());
+        assertNotNull(readClientResponse.getClientSecret());
+        assertNotNull(readClientResponse.getClientIdIssuedAt());
+        assertNotNull(readClientResponse.getClientSecretExpiresAt());
+
+        assertTrue(readClientResponse.getClaims().containsKey(TOKEN_ENDPOINT_AUTH_METHOD.toString()));
+        assertEquals(readClientResponse.getClaims().get(TOKEN_ENDPOINT_AUTH_METHOD.toString()),
+                AuthenticationMethod.CLIENT_SECRET_POST.toString());
+        assertNotNull(readClientResponse.getClaims().get(RESPONSE_TYPES.toString()));
+        assertNotNull(readClientResponse.getClaims().get(REDIRECT_URIS.toString()));
+        assertNotNull(readClientResponse.getClaims().get(APPLICATION_TYPE.toString()));
+        assertNotNull(readClientResponse.getClaims().get(CLIENT_NAME.toString()));
+        assertNotNull(readClientResponse.getClaims().get(ID_TOKEN_SIGNED_RESPONSE_ALG.toString()));
+        assertNotNull(readClientResponse.getClaims().get(SCOPE.toString()));
+
+        // 3. Request authorization
+        List<ResponseType> responseTypes = Arrays.asList(ResponseType.CODE);
+        List<String> scopes = Arrays.asList(
+                "openid",
+                "profile",
+                "address",
+                "email");
+        String state = UUID.randomUUID().toString();
+
+        AuthorizationRequest authorizationRequest = new AuthorizationRequest(responseTypes, clientId, scopes, redirectUri, null);
+        authorizationRequest.setState(state);
+
+        AuthorizationResponse authorizationResponse = authenticateResourceOwnerAndGrantAccess(
+                authorizationEndpoint, authorizationRequest, userId, userSecret);
+
+        assertNotNull(authorizationResponse.getLocation(), "The location is null");
+        assertNotNull(authorizationResponse.getCode(), "The authorization code is null");
+        assertNotNull(authorizationResponse.getState(), "The state is null");
+        assertNotNull(authorizationResponse.getScope(), "The scope is null");
+        assertNull(authorizationResponse.getIdToken(), "The id token is not null");
+
+        String authorizationCode = authorizationResponse.getCode();
+
+        // 4. Get Access Token
+        TokenRequest tokenRequest = new TokenRequest(GrantType.AUTHORIZATION_CODE);
+        tokenRequest.setAudience(tokenEndpoint);
+        tokenRequest.setCode(authorizationCode);
+        tokenRequest.setRedirectUri(redirectUri);
+        tokenRequest.setAuthUsername(clientId);
+        tokenRequest.setAuthPassword(clientSecret);
+        tokenRequest.setAuthenticationMethod(AuthenticationMethod.CLIENT_SECRET_JWT);
+
+        TokenClient tokenClient = new TokenClient(tokenEndpoint);
+        tokenClient.setRequest(tokenRequest);
+        TokenResponse tokenResponse = tokenClient.exec();
+
+        showClient(tokenClient);
+        assertEquals(tokenResponse.getStatus(), 401, "Unexpected response code: " + tokenResponse.getStatus());
+        assertNotNull(tokenResponse.getErrorType(), "The error type is null");
+        assertNotNull(tokenResponse.getErrorDescription(), "The error description is null");
+    }
+
+    /**
+     * Fail 3: Call to Token Endpoint with Auth Method <code>private_key_jwt</code> should fail.
+     */
+    @Parameters({"redirectUris", "redirectUri", "userId", "userSecret", "RS256_keyId", "keyStoreFile", "keyStoreSecret",
+            "sectorIdentifierUri"})
+    @Test
+    public void tokenEndpointAuthMethodClientSecretPostFail3(
+            final String redirectUris, final String redirectUri, final String userId, final String userSecret,
+            final String keyId, final String keyStoreFile, final String keyStoreSecret, final String sectorIdentifierUri) throws Exception {
+        showTitle("tokenEndpointAuthMethodClientSecretPostFail3");
+
+        // 1. Register client
+        RegisterRequest registerRequest = new RegisterRequest(ApplicationType.WEB, "oxAuth test app",
+                StringUtils.spaceSeparatedToList(redirectUris));
+        registerRequest.setTokenEndpointAuthMethod(AuthenticationMethod.CLIENT_SECRET_POST);
+        registerRequest.setSectorIdentifierUri(sectorIdentifierUri);
+
+        RegisterClient registerClient = new RegisterClient(registrationEndpoint);
+        registerClient.setRequest(registerRequest);
+        RegisterResponse registerResponse = registerClient.exec();
+
+        showClient(registerClient);
+        assertEquals(registerResponse.getStatus(), 200, "Unexpected response code: " + registerResponse.getEntity());
+        assertNotNull(registerResponse.getClientId());
+        assertNotNull(registerResponse.getClientSecret());
+        assertNotNull(registerResponse.getRegistrationAccessToken());
+        assertNotNull(registerResponse.getClientIdIssuedAt());
+        assertNotNull(registerResponse.getClientSecretExpiresAt());
+
+        String clientId = registerResponse.getClientId();
+        String clientSecret = registerResponse.getClientSecret();
+        String registrationAccessToken = registerResponse.getRegistrationAccessToken();
+        String registrationClientUri = registerResponse.getRegistrationClientUri();
+
+        // 2. Client read
+        RegisterRequest readClientRequest = new RegisterRequest(registrationAccessToken);
+
+        RegisterClient readClient = new RegisterClient(registrationClientUri);
+        readClient.setRequest(readClientRequest);
+        RegisterResponse readClientResponse = readClient.exec();
+
+        showClient(readClient);
+        assertEquals(readClientResponse.getStatus(), 200, "Unexpected response code: " + readClientResponse.getEntity());
+        assertNotNull(readClientResponse.getClientId());
+        assertNotNull(readClientResponse.getClientSecret());
+        assertNotNull(readClientResponse.getClientIdIssuedAt());
+        assertNotNull(readClientResponse.getClientSecretExpiresAt());
+
+        assertTrue(readClientResponse.getClaims().containsKey(TOKEN_ENDPOINT_AUTH_METHOD.toString()));
+        assertEquals(readClientResponse.getClaims().get(TOKEN_ENDPOINT_AUTH_METHOD.toString()),
+                AuthenticationMethod.CLIENT_SECRET_POST.toString());
+        assertNotNull(readClientResponse.getClaims().get(RESPONSE_TYPES.toString()));
+        assertNotNull(readClientResponse.getClaims().get(REDIRECT_URIS.toString()));
+        assertNotNull(readClientResponse.getClaims().get(APPLICATION_TYPE.toString()));
+        assertNotNull(readClientResponse.getClaims().get(CLIENT_NAME.toString()));
+        assertNotNull(readClientResponse.getClaims().get(ID_TOKEN_SIGNED_RESPONSE_ALG.toString()));
+        assertNotNull(readClientResponse.getClaims().get(SCOPE.toString()));
+
+        // 3. Request authorization
+        List<ResponseType> responseTypes = Arrays.asList(ResponseType.CODE);
+        List<String> scopes = Arrays.asList(
+                "openid",
+                "profile",
+                "address",
+                "email");
+        String state = UUID.randomUUID().toString();
+
+        AuthorizationRequest authorizationRequest = new AuthorizationRequest(responseTypes, clientId, scopes, redirectUri, null);
+        authorizationRequest.setState(state);
+
+        AuthorizationResponse authorizationResponse = authenticateResourceOwnerAndGrantAccess(
+                authorizationEndpoint, authorizationRequest, userId, userSecret);
+
+        assertNotNull(authorizationResponse.getLocation(), "The location is null");
+        assertNotNull(authorizationResponse.getCode(), "The authorization code is null");
+        assertNotNull(authorizationResponse.getState(), "The state is null");
+        assertNotNull(authorizationResponse.getScope(), "The scope is null");
+        assertNull(authorizationResponse.getIdToken(), "The id token is not null");
+
+        String authorizationCode = authorizationResponse.getCode();
+
+        // 4. Get Access Token
+        OxAuthCryptoProvider cryptoProvider = new OxAuthCryptoProvider(keyStoreFile, keyStoreSecret, null);
+
+        TokenRequest tokenRequest = new TokenRequest(GrantType.AUTHORIZATION_CODE);
+        tokenRequest.setAuthenticationMethod(AuthenticationMethod.PRIVATE_KEY_JWT);
+        tokenRequest.setAlgorithm(SignatureAlgorithm.RS256);
+        tokenRequest.setKeyId(keyId);
+        tokenRequest.setCryptoProvider(cryptoProvider);
+        tokenRequest.setAudience(tokenEndpoint);
+        tokenRequest.setCode(authorizationCode);
+        tokenRequest.setRedirectUri(redirectUri);
+        tokenRequest.setAuthUsername(clientId);
+        tokenRequest.setAuthPassword(clientSecret);
+
+
+        TokenClient tokenClient = new TokenClient(tokenEndpoint);
+        tokenClient.setRequest(tokenRequest);
+        TokenResponse tokenResponse = tokenClient.exec();
+
+        showClient(tokenClient);
+        assertEquals(tokenResponse.getStatus(), 401, "Unexpected response code: " + tokenResponse.getStatus());
+        assertNotNull(tokenResponse.getErrorType(), "The error type is null");
+        assertNotNull(tokenResponse.getErrorDescription(), "The error description is null");
+    }
+
+    /**
+     * Register a client with Token Endpoint Auth Method <code>client_secret_jwt</code>.
+     * Read client to check whether it is using the Token Endpoint Auth Method <code>client_secret_jwt</code>.
+     * Request authorization code.
+     * Call to Token Endpoint with Auth Method <code>client_secret_Jwt</code>.
+     */
+    @Parameters({"redirectUris", "redirectUri", "userId", "userSecret", "dnName", "keyStoreFile", "keyStoreSecret",
+            "sectorIdentifierUri"})
+    @Test
+    public void tokenEndpointAuthMethodClientSecretJwt(
+            final String redirectUris, final String redirectUri, final String userId, final String userSecret,
+            final String dnName, final String keyStoreFile, final String keyStoreSecret, final String sectorIdentifierUri) throws Exception {
+        showTitle("tokenEndpointAuthMethodClientSecretJwt");
+
+        // 1. Register client
+        RegisterRequest registerRequest = new RegisterRequest(ApplicationType.WEB, "oxAuth test app",
+                StringUtils.spaceSeparatedToList(redirectUris));
+        registerRequest.setTokenEndpointAuthMethod(AuthenticationMethod.CLIENT_SECRET_JWT);
+        registerRequest.setSectorIdentifierUri(sectorIdentifierUri);
+
+        RegisterClient registerClient = new RegisterClient(registrationEndpoint);
+        registerClient.setRequest(registerRequest);
+        RegisterResponse registerResponse = registerClient.exec();
+
+        showClient(registerClient);
+        assertEquals(registerResponse.getStatus(), 200, "Unexpected response code: " + registerResponse.getEntity());
+        assertNotNull(registerResponse.getClientId());
+        assertNotNull(registerResponse.getClientSecret());
+        assertNotNull(registerResponse.getRegistrationAccessToken());
+        assertNotNull(registerResponse.getClientIdIssuedAt());
+        assertNotNull(registerResponse.getClientSecretExpiresAt());
+
+        String clientId = registerResponse.getClientId();
+        String clientSecret = registerResponse.getClientSecret();
+        String registrationAccessToken = registerResponse.getRegistrationAccessToken();
+        String registrationClientUri = registerResponse.getRegistrationClientUri();
+
+        // 2. Client read
+        RegisterRequest readClientRequest = new RegisterRequest(registrationAccessToken);
+
+        RegisterClient readClient = new RegisterClient(registrationClientUri);
+        readClient.setRequest(readClientRequest);
+        RegisterResponse readClientResponse = readClient.exec();
+
+        showClient(readClient);
+        assertEquals(readClientResponse.getStatus(), 200, "Unexpected response code: " + readClientResponse.getEntity());
+        assertNotNull(readClientResponse.getClientId());
+        assertNotNull(readClientResponse.getClientSecret());
+        assertNotNull(readClientResponse.getClientIdIssuedAt());
+        assertNotNull(readClientResponse.getClientSecretExpiresAt());
+
+        assertTrue(readClientResponse.getClaims().containsKey(TOKEN_ENDPOINT_AUTH_METHOD.toString()));
+        assertEquals(readClientResponse.getClaims().get(TOKEN_ENDPOINT_AUTH_METHOD.toString()),
+                AuthenticationMethod.CLIENT_SECRET_JWT.toString());
+        assertNotNull(readClientResponse.getClaims().get(RESPONSE_TYPES.toString()));
+        assertNotNull(readClientResponse.getClaims().get(REDIRECT_URIS.toString()));
+        assertNotNull(readClientResponse.getClaims().get(APPLICATION_TYPE.toString()));
+        assertNotNull(readClientResponse.getClaims().get(CLIENT_NAME.toString()));
+        assertNotNull(readClientResponse.getClaims().get(ID_TOKEN_SIGNED_RESPONSE_ALG.toString()));
+        assertNotNull(readClientResponse.getClaims().get(SCOPE.toString()));
+
+        // 3. Request authorization
+        List<ResponseType> responseTypes = Arrays.asList(ResponseType.CODE);
+        List<String> scopes = Arrays.asList(
+                "openid",
+                "profile",
+                "address",
+                "email");
+        String state = UUID.randomUUID().toString();
+
+        AuthorizationRequest authorizationRequest = new AuthorizationRequest(responseTypes, clientId, scopes, redirectUri, null);
+        authorizationRequest.setState(state);
+
+        AuthorizationResponse authorizationResponse = authenticateResourceOwnerAndGrantAccess(
+                authorizationEndpoint, authorizationRequest, userId, userSecret);
+
+        assertNotNull(authorizationResponse.getLocation(), "The location is null");
+        assertNotNull(authorizationResponse.getCode(), "The authorization code is null");
+        assertNotNull(authorizationResponse.getState(), "The state is null");
+        assertNotNull(authorizationResponse.getScope(), "The scope is null");
+        assertNull(authorizationResponse.getIdToken(), "The id token is not null");
+
+        String authorizationCode = authorizationResponse.getCode();
+
+        // 4. Get Access Token
+        OxAuthCryptoProvider cryptoProvider = new OxAuthCryptoProvider(keyStoreFile, keyStoreSecret, dnName);
+
+        TokenRequest tokenRequest = new TokenRequest(GrantType.AUTHORIZATION_CODE);
+        tokenRequest.setAudience(tokenEndpoint);
+        tokenRequest.setCode(authorizationCode);
+        tokenRequest.setRedirectUri(redirectUri);
+        tokenRequest.setAuthUsername(clientId);
+        tokenRequest.setAuthPassword(clientSecret);
+        tokenRequest.setAuthenticationMethod(AuthenticationMethod.CLIENT_SECRET_JWT);
+        tokenRequest.setCryptoProvider(cryptoProvider);
+
+        TokenClient tokenClient = new TokenClient(tokenEndpoint);
+        tokenClient.setRequest(tokenRequest);
+        TokenResponse tokenResponse = tokenClient.exec();
+
+        showClient(tokenClient);
+        assertEquals(tokenResponse.getStatus(), 200, "Unexpected response code: " + tokenResponse.getStatus());
+        assertNotNull(tokenResponse.getEntity(), "The entity is null");
+        assertNotNull(tokenResponse.getAccessToken(), "The access token is null");
+        assertNotNull(tokenResponse.getExpiresIn(), "The expires in value is null");
+        assertNotNull(tokenResponse.getTokenType(), "The token type is null");
+        assertNotNull(tokenResponse.getRefreshToken(), "The refresh token is null");
+    }
+
+    /**
+     * If token_endpoint_auth_signing_alg is omitted in client registration,
+     * only symmetric algorithm supported by the OP and the RP can be used.
+     */
+    @Parameters({"redirectUris", "redirectUri", "userId", "userSecret", "dnName", "keyStoreFile", "keyStoreSecret",
+            "sectorIdentifierUri"})
+    @Test
+    public void tokenEndpointAuthMethodClientSecretJwtHS256(
+            final String redirectUris, final String redirectUri, final String userId, final String userSecret,
+            final String dnName, final String keyStoreFile, final String keyStoreSecret, final String sectorIdentifierUri) throws Exception {
+        showTitle("tokenEndpointAuthMethodClientSecretJwtHS256");
+
+        // 1. Register client
+        RegisterRequest registerRequest = new RegisterRequest(ApplicationType.WEB, "oxAuth test app",
+                StringUtils.spaceSeparatedToList(redirectUris));
+        registerRequest.setTokenEndpointAuthMethod(AuthenticationMethod.CLIENT_SECRET_JWT);
+        registerRequest.setSectorIdentifierUri(sectorIdentifierUri);
+
+        RegisterClient registerClient = new RegisterClient(registrationEndpoint);
+        registerClient.setRequest(registerRequest);
+        RegisterResponse registerResponse = registerClient.exec();
+
+        showClient(registerClient);
+        assertEquals(registerResponse.getStatus(), 200, "Unexpected response code: " + registerResponse.getEntity());
+        assertNotNull(registerResponse.getClientId());
+        assertNotNull(registerResponse.getClientSecret());
+        assertNotNull(registerResponse.getRegistrationAccessToken());
+        assertNotNull(registerResponse.getClientIdIssuedAt());
+        assertNotNull(registerResponse.getClientSecretExpiresAt());
+
+        String clientId = registerResponse.getClientId();
+        String clientSecret = registerResponse.getClientSecret();
+        String registrationAccessToken = registerResponse.getRegistrationAccessToken();
+        String registrationClientUri = registerResponse.getRegistrationClientUri();
+
+        // 2. Client read
+        RegisterRequest readClientRequest = new RegisterRequest(registrationAccessToken);
+
+        RegisterClient readClient = new RegisterClient(registrationClientUri);
+        readClient.setRequest(readClientRequest);
+        RegisterResponse readClientResponse = readClient.exec();
+
+        showClient(readClient);
+        assertEquals(readClientResponse.getStatus(), 200, "Unexpected response code: " + readClientResponse.getEntity());
+        assertNotNull(readClientResponse.getClientId());
+        assertNotNull(readClientResponse.getClientSecret());
+        assertNotNull(readClientResponse.getClientIdIssuedAt());
+        assertNotNull(readClientResponse.getClientSecretExpiresAt());
+
+        assertTrue(readClientResponse.getClaims().containsKey(TOKEN_ENDPOINT_AUTH_METHOD.toString()));
+        assertEquals(readClientResponse.getClaims().get(TOKEN_ENDPOINT_AUTH_METHOD.toString()),
+                AuthenticationMethod.CLIENT_SECRET_JWT.toString());
+        assertNotNull(readClientResponse.getClaims().get(RESPONSE_TYPES.toString()));
+        assertNotNull(readClientResponse.getClaims().get(REDIRECT_URIS.toString()));
+        assertNotNull(readClientResponse.getClaims().get(APPLICATION_TYPE.toString()));
+        assertNotNull(readClientResponse.getClaims().get(CLIENT_NAME.toString()));
+        assertNotNull(readClientResponse.getClaims().get(ID_TOKEN_SIGNED_RESPONSE_ALG.toString()));
+        assertNotNull(readClientResponse.getClaims().get(SCOPE.toString()));
+
+        // 3. Request authorization
+        List<ResponseType> responseTypes = Arrays.asList(ResponseType.CODE);
+        List<String> scopes = Arrays.asList(
+                "openid",
+                "profile",
+                "address",
+                "email");
+        String state = UUID.randomUUID().toString();
+
+        AuthorizationRequest authorizationRequest = new AuthorizationRequest(responseTypes, clientId, scopes, redirectUri, null);
+        authorizationRequest.setState(state);
+
+        AuthorizationResponse authorizationResponse = authenticateResourceOwnerAndGrantAccess(
+                authorizationEndpoint, authorizationRequest, userId, userSecret);
+
+        assertNotNull(authorizationResponse.getLocation(), "The location is null");
+        assertNotNull(authorizationResponse.getCode(), "The authorization code is null");
+        assertNotNull(authorizationResponse.getState(), "The state is null");
+        assertNotNull(authorizationResponse.getScope(), "The scope is null");
+        assertNull(authorizationResponse.getIdToken(), "The id token is not null");
+
+        String authorizationCode = authorizationResponse.getCode();
+
+        // 4. Get Access Token
+        OxAuthCryptoProvider cryptoProvider = new OxAuthCryptoProvider(keyStoreFile, keyStoreSecret, dnName);
+
+        TokenRequest tokenRequest = new TokenRequest(GrantType.AUTHORIZATION_CODE);
+        tokenRequest.setAudience(tokenEndpoint);
+        tokenRequest.setCode(authorizationCode);
+        tokenRequest.setRedirectUri(redirectUri);
+        tokenRequest.setAuthUsername(clientId);
+        tokenRequest.setAuthPassword(clientSecret);
+        tokenRequest.setAuthenticationMethod(AuthenticationMethod.CLIENT_SECRET_JWT);
+        tokenRequest.setAlgorithm(SignatureAlgorithm.HS256);
+        tokenRequest.setCryptoProvider(cryptoProvider);
+
+        TokenClient tokenClient = new TokenClient(tokenEndpoint);
+        tokenClient.setRequest(tokenRequest);
+        TokenResponse tokenResponse = tokenClient.exec();
+
+        showClient(tokenClient);
+        assertEquals(tokenResponse.getStatus(), 200, "Unexpected response code: " + tokenResponse.getStatus());
+        assertNotNull(tokenResponse.getEntity(), "The entity is null");
+        assertNotNull(tokenResponse.getAccessToken(), "The access token is null");
+        assertNotNull(tokenResponse.getExpiresIn(), "The expires in value is null");
+        assertNotNull(tokenResponse.getTokenType(), "The token type is null");
+        assertNotNull(tokenResponse.getRefreshToken(), "The refresh token is null");
+    }
+
+    /**
+     * If token_endpoint_auth_signing_alg is omitted in client registration,
+     * only symmetric algorithm supported by the OP and the RP can be used.
+     */
+    @Parameters({"redirectUris", "redirectUri", "userId", "userSecret", "dnName", "keyStoreFile", "keyStoreSecret",
+            "sectorIdentifierUri"})
+    @Test
+    public void tokenEndpointAuthMethodClientSecretJwtHS384(
+            final String redirectUris, final String redirectUri, final String userId, final String userSecret,
+            final String dnName, final String keyStoreFile, final String keyStoreSecret, final String sectorIdentifierUri) throws Exception {
+        showTitle("tokenEndpointAuthMethodClientSecretJwtHS384");
+
+        // 1. Register client
+        RegisterRequest registerRequest = new RegisterRequest(ApplicationType.WEB, "oxAuth test app",
+                StringUtils.spaceSeparatedToList(redirectUris));
+        registerRequest.setTokenEndpointAuthMethod(AuthenticationMethod.CLIENT_SECRET_JWT);
+        registerRequest.setSectorIdentifierUri(sectorIdentifierUri);
+
+        RegisterClient registerClient = new RegisterClient(registrationEndpoint);
+        registerClient.setRequest(registerRequest);
+        RegisterResponse registerResponse = registerClient.exec();
+
+        showClient(registerClient);
+        assertEquals(registerResponse.getStatus(), 200, "Unexpected response code: " + registerResponse.getEntity());
+        assertNotNull(registerResponse.getClientId());
+        assertNotNull(registerResponse.getClientSecret());
+        assertNotNull(registerResponse.getRegistrationAccessToken());
+        assertNotNull(registerResponse.getClientIdIssuedAt());
+        assertNotNull(registerResponse.getClientSecretExpiresAt());
+
+        String clientId = registerResponse.getClientId();
+        String clientSecret = registerResponse.getClientSecret();
+        String registrationAccessToken = registerResponse.getRegistrationAccessToken();
+        String registrationClientUri = registerResponse.getRegistrationClientUri();
+
+        // 2. Client read
+        RegisterRequest readClientRequest = new RegisterRequest(registrationAccessToken);
+
+        RegisterClient readClient = new RegisterClient(registrationClientUri);
+        readClient.setRequest(readClientRequest);
+        RegisterResponse readClientResponse = readClient.exec();
+
+        showClient(readClient);
+        assertEquals(readClientResponse.getStatus(), 200, "Unexpected response code: " + readClientResponse.getEntity());
+        assertNotNull(readClientResponse.getClientId());
+        assertNotNull(readClientResponse.getClientSecret());
+        assertNotNull(readClientResponse.getClientIdIssuedAt());
+        assertNotNull(readClientResponse.getClientSecretExpiresAt());
+
+        assertTrue(readClientResponse.getClaims().containsKey(TOKEN_ENDPOINT_AUTH_METHOD.toString()));
+        assertEquals(readClientResponse.getClaims().get(TOKEN_ENDPOINT_AUTH_METHOD.toString()),
+                AuthenticationMethod.CLIENT_SECRET_JWT.toString());
+        assertNotNull(readClientResponse.getClaims().get(RESPONSE_TYPES.toString()));
+        assertNotNull(readClientResponse.getClaims().get(REDIRECT_URIS.toString()));
+        assertNotNull(readClientResponse.getClaims().get(APPLICATION_TYPE.toString()));
+        assertNotNull(readClientResponse.getClaims().get(CLIENT_NAME.toString()));
+        assertNotNull(readClientResponse.getClaims().get(ID_TOKEN_SIGNED_RESPONSE_ALG.toString()));
+        assertNotNull(readClientResponse.getClaims().get(SCOPE.toString()));
+
+        // 3. Request authorization
+        List<ResponseType> responseTypes = Arrays.asList(ResponseType.CODE);
+        List<String> scopes = Arrays.asList(
+                "openid",
+                "profile",
+                "address",
+                "email");
+        String state = UUID.randomUUID().toString();
+
+        AuthorizationRequest authorizationRequest = new AuthorizationRequest(responseTypes, clientId, scopes, redirectUri, null);
+        authorizationRequest.setState(state);
+
+        AuthorizationResponse authorizationResponse = authenticateResourceOwnerAndGrantAccess(
+                authorizationEndpoint, authorizationRequest, userId, userSecret);
+
+        assertNotNull(authorizationResponse.getLocation(), "The location is null");
+        assertNotNull(authorizationResponse.getCode(), "The authorization code is null");
+        assertNotNull(authorizationResponse.getState(), "The state is null");
+        assertNotNull(authorizationResponse.getScope(), "The scope is null");
+        assertNull(authorizationResponse.getIdToken(), "The id token is not null");
+
+        String authorizationCode = authorizationResponse.getCode();
+
+        // 4. Get Access Token
+        OxAuthCryptoProvider cryptoProvider = new OxAuthCryptoProvider(keyStoreFile, keyStoreSecret, dnName);
+
+        TokenRequest tokenRequest = new TokenRequest(GrantType.AUTHORIZATION_CODE);
+        tokenRequest.setAudience(tokenEndpoint);
+        tokenRequest.setCode(authorizationCode);
+        tokenRequest.setRedirectUri(redirectUri);
+        tokenRequest.setAuthUsername(clientId);
+        tokenRequest.setAuthPassword(clientSecret);
+        tokenRequest.setAuthenticationMethod(AuthenticationMethod.CLIENT_SECRET_JWT);
+        tokenRequest.setAlgorithm(SignatureAlgorithm.HS384);
+        tokenRequest.setCryptoProvider(cryptoProvider);
+
+        TokenClient tokenClient = new TokenClient(tokenEndpoint);
+        tokenClient.setRequest(tokenRequest);
+        TokenResponse tokenResponse = tokenClient.exec();
+
+        showClient(tokenClient);
+        assertEquals(tokenResponse.getStatus(), 200, "Unexpected response code: " + tokenResponse.getStatus());
+        assertNotNull(tokenResponse.getEntity(), "The entity is null");
+        assertNotNull(tokenResponse.getAccessToken(), "The access token is null");
+        assertNotNull(tokenResponse.getExpiresIn(), "The expires in value is null");
+        assertNotNull(tokenResponse.getTokenType(), "The token type is null");
+        assertNotNull(tokenResponse.getRefreshToken(), "The refresh token is null");
+    }
+
+    /**
+     * If token_endpoint_auth_signing_alg is omitted in client registration,
+     * any algorithm supported by the OP and the RP can be used.
+     */
+    @Parameters({"redirectUris", "redirectUri", "userId", "userSecret", "dnName", "keyStoreFile", "keyStoreSecret",
+            "sectorIdentifierUri"})
+    @Test
+    public void tokenEndpointAuthMethodClientSecretJwtHS512(
+            final String redirectUris, final String redirectUri, final String userId, final String userSecret,
+            final String dnName, final String keyStoreFile, final String keyStoreSecret, final String sectorIdentifierUri) throws Exception {
+        showTitle("tokenEndpointAuthMethodClientSecretJwtHS512");
+
+        // 1. Register client
+        RegisterRequest registerRequest = new RegisterRequest(ApplicationType.WEB, "oxAuth test app",
+                StringUtils.spaceSeparatedToList(redirectUris));
+        registerRequest.setTokenEndpointAuthMethod(AuthenticationMethod.CLIENT_SECRET_JWT);
+        registerRequest.setSectorIdentifierUri(sectorIdentifierUri);
+
+        RegisterClient registerClient = new RegisterClient(registrationEndpoint);
+        registerClient.setRequest(registerRequest);
+        RegisterResponse registerResponse = registerClient.exec();
+
+        showClient(registerClient);
+        assertEquals(registerResponse.getStatus(), 200, "Unexpected response code: " + registerResponse.getEntity());
+        assertNotNull(registerResponse.getClientId());
+        assertNotNull(registerResponse.getClientSecret());
+        assertNotNull(registerResponse.getRegistrationAccessToken());
+        assertNotNull(registerResponse.getClientIdIssuedAt());
+        assertNotNull(registerResponse.getClientSecretExpiresAt());
+
+        String clientId = registerResponse.getClientId();
+        String clientSecret = registerResponse.getClientSecret();
+        String registrationAccessToken = registerResponse.getRegistrationAccessToken();
+        String registrationClientUri = registerResponse.getRegistrationClientUri();
+
+        // 2. Client read
+        RegisterRequest readClientRequest = new RegisterRequest(registrationAccessToken);
+
+        RegisterClient readClient = new RegisterClient(registrationClientUri);
+        readClient.setRequest(readClientRequest);
+        RegisterResponse readClientResponse = readClient.exec();
+
+        showClient(readClient);
+        assertEquals(readClientResponse.getStatus(), 200, "Unexpected response code: " + readClientResponse.getEntity());
+        assertNotNull(readClientResponse.getClientId());
+        assertNotNull(readClientResponse.getClientSecret());
+        assertNotNull(readClientResponse.getClientIdIssuedAt());
+        assertNotNull(readClientResponse.getClientSecretExpiresAt());
+
+        assertTrue(readClientResponse.getClaims().containsKey(TOKEN_ENDPOINT_AUTH_METHOD.toString()));
+        assertEquals(readClientResponse.getClaims().get(TOKEN_ENDPOINT_AUTH_METHOD.toString()),
+                AuthenticationMethod.CLIENT_SECRET_JWT.toString());
+        assertNotNull(readClientResponse.getClaims().get(RESPONSE_TYPES.toString()));
+        assertNotNull(readClientResponse.getClaims().get(REDIRECT_URIS.toString()));
+        assertNotNull(readClientResponse.getClaims().get(APPLICATION_TYPE.toString()));
+        assertNotNull(readClientResponse.getClaims().get(CLIENT_NAME.toString()));
+        assertNotNull(readClientResponse.getClaims().get(ID_TOKEN_SIGNED_RESPONSE_ALG.toString()));
+        assertNotNull(readClientResponse.getClaims().get(SCOPE.toString()));
+
+        // 3. Request authorization
+        List<ResponseType> responseTypes = Arrays.asList(ResponseType.CODE);
+        List<String> scopes = Arrays.asList(
+                "openid",
+                "profile",
+                "address",
+                "email");
+        String state = UUID.randomUUID().toString();
+
+        AuthorizationRequest authorizationRequest = new AuthorizationRequest(responseTypes, clientId, scopes, redirectUri, null);
+        authorizationRequest.setState(state);
+
+        AuthorizationResponse authorizationResponse = authenticateResourceOwnerAndGrantAccess(
+                authorizationEndpoint, authorizationRequest, userId, userSecret);
+
+        assertNotNull(authorizationResponse.getLocation(), "The location is null");
+        assertNotNull(authorizationResponse.getCode(), "The authorization code is null");
+        assertNotNull(authorizationResponse.getState(), "The state is null");
+        assertNotNull(authorizationResponse.getScope(), "The scope is null");
+        assertNull(authorizationResponse.getIdToken(), "The id token is not null");
+
+        String authorizationCode = authorizationResponse.getCode();
+
+        // 4. Get Access Token
+        OxAuthCryptoProvider cryptoProvider = new OxAuthCryptoProvider(keyStoreFile, keyStoreSecret, dnName);
+
+        TokenRequest tokenRequest = new TokenRequest(GrantType.AUTHORIZATION_CODE);
+        tokenRequest.setAudience(tokenEndpoint);
+        tokenRequest.setCode(authorizationCode);
+        tokenRequest.setRedirectUri(redirectUri);
+        tokenRequest.setAuthUsername(clientId);
+        tokenRequest.setAuthPassword(clientSecret);
+        tokenRequest.setAuthenticationMethod(AuthenticationMethod.CLIENT_SECRET_JWT);
+        tokenRequest.setAlgorithm(SignatureAlgorithm.HS512);
+        tokenRequest.setCryptoProvider(cryptoProvider);
+
+        TokenClient tokenClient = new TokenClient(tokenEndpoint);
+        tokenClient.setRequest(tokenRequest);
+        TokenResponse tokenResponse = tokenClient.exec();
+
+        showClient(tokenClient);
+        assertEquals(tokenResponse.getStatus(), 200, "Unexpected response code: " + tokenResponse.getStatus());
+        assertNotNull(tokenResponse.getEntity(), "The entity is null");
+        assertNotNull(tokenResponse.getAccessToken(), "The access token is null");
+        assertNotNull(tokenResponse.getExpiresIn(), "The expires in value is null");
+        assertNotNull(tokenResponse.getTokenType(), "The token type is null");
+        assertNotNull(tokenResponse.getRefreshToken(), "The refresh token is null");
+    }
+
+    /**
+     * If token_endpoint_auth_signing_alg is omitted in client registration,
+     * only symmetric algorithm supported by the OP and the RP can be used.
+     */
+    @Parameters({"redirectUris", "redirectUri", "userId", "userSecret", "dnName", "keyStoreFile", "keyStoreSecret",
+            "RS256_keyId", "sectorIdentifierUri"})
+    @Test
+    public void tokenEndpointAuthMethodClientSecretJwtRS256Fail(
+            final String redirectUris, final String redirectUri, final String userId, final String userSecret,
+            final String dnName, final String keyStoreFile, final String keyStoreSecret, final String keyId,
+            final String sectorIdentifierUri) throws Exception {
+        showTitle("tokenEndpointAuthMethodClientSecretJwtRS256Fail");
+
+        // 1. Register client
+        RegisterRequest registerRequest = new RegisterRequest(ApplicationType.WEB, "oxAuth test app",
+                StringUtils.spaceSeparatedToList(redirectUris));
+        registerRequest.setTokenEndpointAuthMethod(AuthenticationMethod.CLIENT_SECRET_JWT);
+        registerRequest.setSectorIdentifierUri(sectorIdentifierUri);
+
+        RegisterClient registerClient = new RegisterClient(registrationEndpoint);
+        registerClient.setRequest(registerRequest);
+        RegisterResponse registerResponse = registerClient.exec();
+
+        showClient(registerClient);
+        assertEquals(registerResponse.getStatus(), 200, "Unexpected response code: " + registerResponse.getEntity());
+        assertNotNull(registerResponse.getClientId());
+        assertNotNull(registerResponse.getClientSecret());
+        assertNotNull(registerResponse.getRegistrationAccessToken());
+        assertNotNull(registerResponse.getClientIdIssuedAt());
+        assertNotNull(registerResponse.getClientSecretExpiresAt());
+
+        String clientId = registerResponse.getClientId();
+        String clientSecret = registerResponse.getClientSecret();
+        String registrationAccessToken = registerResponse.getRegistrationAccessToken();
+        String registrationClientUri = registerResponse.getRegistrationClientUri();
+
+        // 2. Client read
+        RegisterRequest readClientRequest = new RegisterRequest(registrationAccessToken);
+
+        RegisterClient readClient = new RegisterClient(registrationClientUri);
+        readClient.setRequest(readClientRequest);
+        RegisterResponse readClientResponse = readClient.exec();
+
+        showClient(readClient);
+        assertEquals(readClientResponse.getStatus(), 200, "Unexpected response code: " + readClientResponse.getEntity());
+        assertNotNull(readClientResponse.getClientId());
+        assertNotNull(readClientResponse.getClientSecret());
+        assertNotNull(readClientResponse.getClientIdIssuedAt());
+        assertNotNull(readClientResponse.getClientSecretExpiresAt());
+
+        assertTrue(readClientResponse.getClaims().containsKey(TOKEN_ENDPOINT_AUTH_METHOD.toString()));
+        assertEquals(readClientResponse.getClaims().get(TOKEN_ENDPOINT_AUTH_METHOD.toString()),
+                AuthenticationMethod.CLIENT_SECRET_JWT.toString());
+        assertNotNull(readClientResponse.getClaims().get(RESPONSE_TYPES.toString()));
+        assertNotNull(readClientResponse.getClaims().get(REDIRECT_URIS.toString()));
+        assertNotNull(readClientResponse.getClaims().get(APPLICATION_TYPE.toString()));
+        assertNotNull(readClientResponse.getClaims().get(CLIENT_NAME.toString()));
+        assertNotNull(readClientResponse.getClaims().get(ID_TOKEN_SIGNED_RESPONSE_ALG.toString()));
+        assertNotNull(readClientResponse.getClaims().get(SCOPE.toString()));
+
+        // 3. Request authorization
+        List<ResponseType> responseTypes = Arrays.asList(ResponseType.CODE);
+        List<String> scopes = Arrays.asList(
+                "openid",
+                "profile",
+                "address",
+                "email");
+        String state = UUID.randomUUID().toString();
+
+        AuthorizationRequest authorizationRequest = new AuthorizationRequest(responseTypes, clientId, scopes, redirectUri, null);
+        authorizationRequest.setState(state);
+
+        AuthorizationResponse authorizationResponse = authenticateResourceOwnerAndGrantAccess(
+                authorizationEndpoint, authorizationRequest, userId, userSecret);
+
+        assertNotNull(authorizationResponse.getLocation(), "The location is null");
+        assertNotNull(authorizationResponse.getCode(), "The authorization code is null");
+        assertNotNull(authorizationResponse.getState(), "The state is null");
+        assertNotNull(authorizationResponse.getScope(), "The scope is null");
+        assertNull(authorizationResponse.getIdToken(), "The id token is not null");
+
+        String authorizationCode = authorizationResponse.getCode();
+
+        // 4. Get Access Token
+        OxAuthCryptoProvider cryptoProvider = new OxAuthCryptoProvider(keyStoreFile, keyStoreSecret, dnName);
+
+        TokenRequest tokenRequest = new TokenRequest(GrantType.AUTHORIZATION_CODE);
+        tokenRequest.setAudience(tokenEndpoint);
+        tokenRequest.setCode(authorizationCode);
+        tokenRequest.setRedirectUri(redirectUri);
+        tokenRequest.setAuthUsername(clientId);
+        tokenRequest.setAuthPassword(clientSecret);
+        tokenRequest.setAuthenticationMethod(AuthenticationMethod.CLIENT_SECRET_JWT);
+        tokenRequest.setAlgorithm(SignatureAlgorithm.RS256);
+        tokenRequest.setKeyId(keyId);
+        tokenRequest.setCryptoProvider(cryptoProvider);
+
+        TokenClient tokenClient = new TokenClient(tokenEndpoint);
+        tokenClient.setRequest(tokenRequest);
+        TokenResponse tokenResponse = tokenClient.exec();
+
+        showClient(tokenClient);
+        assertEquals(tokenResponse.getStatus(), 401, "Unexpected response code: " + tokenResponse.getStatus());
+        assertNotNull(tokenResponse.getErrorType(), "The error type is null");
+        assertNotNull(tokenResponse.getErrorDescription(), "The error description is null");
+    }
+
+    /**
+     * If token_endpoint_auth_signing_alg is omitted in client registration,
+     * only symmetric algorithm supported by the OP and the RP can be used.
+     */
+    @Parameters({"redirectUris", "redirectUri", "userId", "userSecret", "dnName", "keyStoreFile", "keyStoreSecret",
+            "RS384_keyId", "sectorIdentifierUri"})
+    @Test
+    public void tokenEndpointAuthMethodClientSecretJwtRS384Fail(
+            final String redirectUris, final String redirectUri, final String userId, final String userSecret,
+            final String dnName, final String keyStoreFile, final String keyStoreSecret, final String keyId,
+            final String sectorIdentifierUri) throws Exception {
+        showTitle("tokenEndpointAuthMethodClientSecretJwtRS384Fail");
+
+        // 1. Register client
+        RegisterRequest registerRequest = new RegisterRequest(ApplicationType.WEB, "oxAuth test app",
+                StringUtils.spaceSeparatedToList(redirectUris));
+        registerRequest.setTokenEndpointAuthMethod(AuthenticationMethod.CLIENT_SECRET_JWT);
+        registerRequest.setSectorIdentifierUri(sectorIdentifierUri);
+
+        RegisterClient registerClient = new RegisterClient(registrationEndpoint);
+        registerClient.setRequest(registerRequest);
+        RegisterResponse registerResponse = registerClient.exec();
+
+        showClient(registerClient);
+        assertEquals(registerResponse.getStatus(), 200, "Unexpected response code: " + registerResponse.getEntity());
+        assertNotNull(registerResponse.getClientId());
+        assertNotNull(registerResponse.getClientSecret());
+        assertNotNull(registerResponse.getRegistrationAccessToken());
+        assertNotNull(registerResponse.getClientIdIssuedAt());
+        assertNotNull(registerResponse.getClientSecretExpiresAt());
+
+        String clientId = registerResponse.getClientId();
+        String clientSecret = registerResponse.getClientSecret();
+        String registrationAccessToken = registerResponse.getRegistrationAccessToken();
+        String registrationClientUri = registerResponse.getRegistrationClientUri();
+
+        // 2. Client read
+        RegisterRequest readClientRequest = new RegisterRequest(registrationAccessToken);
+
+        RegisterClient readClient = new RegisterClient(registrationClientUri);
+        readClient.setRequest(readClientRequest);
+        RegisterResponse readClientResponse = readClient.exec();
+
+        showClient(readClient);
+        assertEquals(readClientResponse.getStatus(), 200, "Unexpected response code: " + readClientResponse.getEntity());
+        assertNotNull(readClientResponse.getClientId());
+        assertNotNull(readClientResponse.getClientSecret());
+        assertNotNull(readClientResponse.getClientIdIssuedAt());
+        assertNotNull(readClientResponse.getClientSecretExpiresAt());
+
+        assertTrue(readClientResponse.getClaims().containsKey(TOKEN_ENDPOINT_AUTH_METHOD.toString()));
+        assertEquals(readClientResponse.getClaims().get(TOKEN_ENDPOINT_AUTH_METHOD.toString()),
+                AuthenticationMethod.CLIENT_SECRET_JWT.toString());
+        assertNotNull(readClientResponse.getClaims().get(RESPONSE_TYPES.toString()));
+        assertNotNull(readClientResponse.getClaims().get(REDIRECT_URIS.toString()));
+        assertNotNull(readClientResponse.getClaims().get(APPLICATION_TYPE.toString()));
+        assertNotNull(readClientResponse.getClaims().get(CLIENT_NAME.toString()));
+        assertNotNull(readClientResponse.getClaims().get(ID_TOKEN_SIGNED_RESPONSE_ALG.toString()));
+        assertNotNull(readClientResponse.getClaims().get(SCOPE.toString()));
+
+        // 3. Request authorization
+        List<ResponseType> responseTypes = Arrays.asList(ResponseType.CODE);
+        List<String> scopes = Arrays.asList(
+                "openid",
+                "profile",
+                "address",
+                "email");
+        String state = UUID.randomUUID().toString();
+
+        AuthorizationRequest authorizationRequest = new AuthorizationRequest(responseTypes, clientId, scopes, redirectUri, null);
+        authorizationRequest.setState(state);
+
+        AuthorizationResponse authorizationResponse = authenticateResourceOwnerAndGrantAccess(
+                authorizationEndpoint, authorizationRequest, userId, userSecret);
+
+        assertNotNull(authorizationResponse.getLocation(), "The location is null");
+        assertNotNull(authorizationResponse.getCode(), "The authorization code is null");
+        assertNotNull(authorizationResponse.getState(), "The state is null");
+        assertNotNull(authorizationResponse.getScope(), "The scope is null");
+        assertNull(authorizationResponse.getIdToken(), "The id token is not null");
+
+        String authorizationCode = authorizationResponse.getCode();
+
+        // 4. Get Access Token
+        OxAuthCryptoProvider cryptoProvider = new OxAuthCryptoProvider(keyStoreFile, keyStoreSecret, dnName);
+
+        TokenRequest tokenRequest = new TokenRequest(GrantType.AUTHORIZATION_CODE);
+        tokenRequest.setAudience(tokenEndpoint);
+        tokenRequest.setCode(authorizationCode);
+        tokenRequest.setRedirectUri(redirectUri);
+        tokenRequest.setAuthUsername(clientId);
+        tokenRequest.setAuthPassword(clientSecret);
+        tokenRequest.setAuthenticationMethod(AuthenticationMethod.CLIENT_SECRET_JWT);
+        tokenRequest.setAlgorithm(SignatureAlgorithm.RS384);
+        tokenRequest.setKeyId(keyId);
+        tokenRequest.setCryptoProvider(cryptoProvider);
+
+        TokenClient tokenClient = new TokenClient(tokenEndpoint);
+        tokenClient.setRequest(tokenRequest);
+        TokenResponse tokenResponse = tokenClient.exec();
+
+        showClient(tokenClient);
+        assertEquals(tokenResponse.getStatus(), 401, "Unexpected response code: " + tokenResponse.getStatus());
+        assertNotNull(tokenResponse.getErrorType(), "The error type is null");
+        assertNotNull(tokenResponse.getErrorDescription(), "The error description is null");
+    }
+
+    /**
+     * If token_endpoint_auth_signing_alg is omitted in client registration,
+     * only symmetric algorithm supported by the OP and the RP can be used.
+     */
+    @Parameters({"redirectUris", "redirectUri", "userId", "userSecret", "dnName", "keyStoreFile", "keyStoreSecret",
+            "RS512_keyId", "sectorIdentifierUri"})
+    @Test
+    public void tokenEndpointAuthMethodClientSecretJwtRS512Fail(
+            final String redirectUris, final String redirectUri, final String userId, final String userSecret,
+            final String dnName, final String keyStoreFile, final String keyStoreSecret, final String keyId,
+            final String sectorIdentifierUri) throws Exception {
+        showTitle("tokenEndpointAuthMethodClientSecretJwtRS512Fail");
+
+        // 1. Register client
+        RegisterRequest registerRequest = new RegisterRequest(ApplicationType.WEB, "oxAuth test app",
+                StringUtils.spaceSeparatedToList(redirectUris));
+        registerRequest.setTokenEndpointAuthMethod(AuthenticationMethod.CLIENT_SECRET_JWT);
+        registerRequest.setSectorIdentifierUri(sectorIdentifierUri);
+
+        RegisterClient registerClient = new RegisterClient(registrationEndpoint);
+        registerClient.setRequest(registerRequest);
+        RegisterResponse registerResponse = registerClient.exec();
+
+        showClient(registerClient);
+        assertEquals(registerResponse.getStatus(), 200, "Unexpected response code: " + registerResponse.getEntity());
+        assertNotNull(registerResponse.getClientId());
+        assertNotNull(registerResponse.getClientSecret());
+        assertNotNull(registerResponse.getRegistrationAccessToken());
+        assertNotNull(registerResponse.getClientIdIssuedAt());
+        assertNotNull(registerResponse.getClientSecretExpiresAt());
+
+        String clientId = registerResponse.getClientId();
+        String clientSecret = registerResponse.getClientSecret();
+        String registrationAccessToken = registerResponse.getRegistrationAccessToken();
+        String registrationClientUri = registerResponse.getRegistrationClientUri();
+
+        // 2. Client read
+        RegisterRequest readClientRequest = new RegisterRequest(registrationAccessToken);
+
+        RegisterClient readClient = new RegisterClient(registrationClientUri);
+        readClient.setRequest(readClientRequest);
+        RegisterResponse readClientResponse = readClient.exec();
+
+        showClient(readClient);
+        assertEquals(readClientResponse.getStatus(), 200, "Unexpected response code: " + readClientResponse.getEntity());
+        assertNotNull(readClientResponse.getClientId());
+        assertNotNull(readClientResponse.getClientSecret());
+        assertNotNull(readClientResponse.getClientIdIssuedAt());
+        assertNotNull(readClientResponse.getClientSecretExpiresAt());
+
+        assertTrue(readClientResponse.getClaims().containsKey(TOKEN_ENDPOINT_AUTH_METHOD.toString()));
+        assertEquals(readClientResponse.getClaims().get(TOKEN_ENDPOINT_AUTH_METHOD.toString()),
+                AuthenticationMethod.CLIENT_SECRET_JWT.toString());
+        assertNotNull(readClientResponse.getClaims().get(RESPONSE_TYPES.toString()));
+        assertNotNull(readClientResponse.getClaims().get(REDIRECT_URIS.toString()));
+        assertNotNull(readClientResponse.getClaims().get(APPLICATION_TYPE.toString()));
+        assertNotNull(readClientResponse.getClaims().get(CLIENT_NAME.toString()));
+        assertNotNull(readClientResponse.getClaims().get(ID_TOKEN_SIGNED_RESPONSE_ALG.toString()));
+        assertNotNull(readClientResponse.getClaims().get(SCOPE.toString()));
+
+        // 3. Request authorization
+        List<ResponseType> responseTypes = Arrays.asList(ResponseType.CODE);
+        List<String> scopes = Arrays.asList(
+                "openid",
+                "profile",
+                "address",
+                "email");
+        String state = UUID.randomUUID().toString();
+
+        AuthorizationRequest authorizationRequest = new AuthorizationRequest(responseTypes, clientId, scopes, redirectUri, null);
+        authorizationRequest.setState(state);
+
+        AuthorizationResponse authorizationResponse = authenticateResourceOwnerAndGrantAccess(
+                authorizationEndpoint, authorizationRequest, userId, userSecret);
+
+        assertNotNull(authorizationResponse.getLocation(), "The location is null");
+        assertNotNull(authorizationResponse.getCode(), "The authorization code is null");
+        assertNotNull(authorizationResponse.getState(), "The state is null");
+        assertNotNull(authorizationResponse.getScope(), "The scope is null");
+        assertNull(authorizationResponse.getIdToken(), "The id token is not null");
+
+        String authorizationCode = authorizationResponse.getCode();
+
+        // 4. Get Access Token
+        OxAuthCryptoProvider cryptoProvider = new OxAuthCryptoProvider(keyStoreFile, keyStoreSecret, dnName);
+
+        TokenRequest tokenRequest = new TokenRequest(GrantType.AUTHORIZATION_CODE);
+        tokenRequest.setAudience(tokenEndpoint);
+        tokenRequest.setCode(authorizationCode);
+        tokenRequest.setRedirectUri(redirectUri);
+        tokenRequest.setAuthUsername(clientId);
+        tokenRequest.setAuthPassword(clientSecret);
+        tokenRequest.setAuthenticationMethod(AuthenticationMethod.CLIENT_SECRET_JWT);
+        tokenRequest.setAlgorithm(SignatureAlgorithm.RS512);
+        tokenRequest.setKeyId(keyId);
+        tokenRequest.setCryptoProvider(cryptoProvider);
+
+        TokenClient tokenClient = new TokenClient(tokenEndpoint);
+        tokenClient.setRequest(tokenRequest);
+        TokenResponse tokenResponse = tokenClient.exec();
+
+        showClient(tokenClient);
+        assertEquals(tokenResponse.getStatus(), 401, "Unexpected response code: " + tokenResponse.getStatus());
+        assertNotNull(tokenResponse.getErrorType(), "The error type is null");
+        assertNotNull(tokenResponse.getErrorDescription(), "The error description is null");
+    }
+
+    /**
+     * If token_endpoint_auth_signing_alg is omitted in client registration,
+     * only symmetric algorithm supported by the OP and the RP can be used.
+     */
+    @Parameters({"redirectUris", "redirectUri", "userId", "userSecret", "dnName", "keyStoreFile", "keyStoreSecret",
+            "ES256_keyId", "sectorIdentifierUri"})
+    @Test
+    public void tokenEndpointAuthMethodClientSecretJwtES256Fail(
+            final String redirectUris, final String redirectUri, final String userId, final String userSecret,
+            final String dnName, final String keyStoreFile, final String keyStoreSecret, final String keyId,
+            final String sectorIdentifierUri) throws Exception {
+        showTitle("tokenEndpointAuthMethodClientSecretJwtES256Fail");
+
+        // 1. Register client
+        RegisterRequest registerRequest = new RegisterRequest(ApplicationType.WEB, "oxAuth test app",
+                StringUtils.spaceSeparatedToList(redirectUris));
+        registerRequest.setTokenEndpointAuthMethod(AuthenticationMethod.CLIENT_SECRET_JWT);
+        registerRequest.setSectorIdentifierUri(sectorIdentifierUri);
+
+        RegisterClient registerClient = new RegisterClient(registrationEndpoint);
+        registerClient.setRequest(registerRequest);
+        RegisterResponse registerResponse = registerClient.exec();
+
+        showClient(registerClient);
+        assertEquals(registerResponse.getStatus(), 200, "Unexpected response code: " + registerResponse.getEntity());
+        assertNotNull(registerResponse.getClientId());
+        assertNotNull(registerResponse.getClientSecret());
+        assertNotNull(registerResponse.getRegistrationAccessToken());
+        assertNotNull(registerResponse.getClientIdIssuedAt());
+        assertNotNull(registerResponse.getClientSecretExpiresAt());
+
+        String clientId = registerResponse.getClientId();
+        String clientSecret = registerResponse.getClientSecret();
+        String registrationAccessToken = registerResponse.getRegistrationAccessToken();
+        String registrationClientUri = registerResponse.getRegistrationClientUri();
+
+        // 2. Client read
+        RegisterRequest readClientRequest = new RegisterRequest(registrationAccessToken);
+
+        RegisterClient readClient = new RegisterClient(registrationClientUri);
+        readClient.setRequest(readClientRequest);
+        RegisterResponse readClientResponse = readClient.exec();
+
+        showClient(readClient);
+        assertEquals(readClientResponse.getStatus(), 200, "Unexpected response code: " + readClientResponse.getEntity());
+        assertNotNull(readClientResponse.getClientId());
+        assertNotNull(readClientResponse.getClientSecret());
+        assertNotNull(readClientResponse.getClientIdIssuedAt());
+        assertNotNull(readClientResponse.getClientSecretExpiresAt());
+
+        assertTrue(readClientResponse.getClaims().containsKey(TOKEN_ENDPOINT_AUTH_METHOD.toString()));
+        assertEquals(readClientResponse.getClaims().get(TOKEN_ENDPOINT_AUTH_METHOD.toString()),
+                AuthenticationMethod.CLIENT_SECRET_JWT.toString());
+        assertNotNull(readClientResponse.getClaims().get(RESPONSE_TYPES.toString()));
+        assertNotNull(readClientResponse.getClaims().get(REDIRECT_URIS.toString()));
+        assertNotNull(readClientResponse.getClaims().get(APPLICATION_TYPE.toString()));
+        assertNotNull(readClientResponse.getClaims().get(CLIENT_NAME.toString()));
+        assertNotNull(readClientResponse.getClaims().get(ID_TOKEN_SIGNED_RESPONSE_ALG.toString()));
+        assertNotNull(readClientResponse.getClaims().get(SCOPE.toString()));
+
+        // 3. Request authorization
+        List<ResponseType> responseTypes = Arrays.asList(ResponseType.CODE);
+        List<String> scopes = Arrays.asList(
+                "openid",
+                "profile",
+                "address",
+                "email");
+        String state = UUID.randomUUID().toString();
+
+        AuthorizationRequest authorizationRequest = new AuthorizationRequest(responseTypes, clientId, scopes, redirectUri, null);
+        authorizationRequest.setState(state);
+
+        AuthorizationResponse authorizationResponse = authenticateResourceOwnerAndGrantAccess(
+                authorizationEndpoint, authorizationRequest, userId, userSecret);
+
+        assertNotNull(authorizationResponse.getLocation(), "The location is null");
+        assertNotNull(authorizationResponse.getCode(), "The authorization code is null");
+        assertNotNull(authorizationResponse.getState(), "The state is null");
+        assertNotNull(authorizationResponse.getScope(), "The scope is null");
+        assertNull(authorizationResponse.getIdToken(), "The id token is not null");
+
+        String authorizationCode = authorizationResponse.getCode();
+
+        // 4. Get Access Token
+        OxAuthCryptoProvider cryptoProvider = new OxAuthCryptoProvider(keyStoreFile, keyStoreSecret, dnName);
+
+        TokenRequest tokenRequest = new TokenRequest(GrantType.AUTHORIZATION_CODE);
+        tokenRequest.setAudience(tokenEndpoint);
+        tokenRequest.setCode(authorizationCode);
+        tokenRequest.setRedirectUri(redirectUri);
+        tokenRequest.setAuthUsername(clientId);
+        tokenRequest.setAuthPassword(clientSecret);
+        tokenRequest.setAuthenticationMethod(AuthenticationMethod.CLIENT_SECRET_JWT);
+        tokenRequest.setAlgorithm(SignatureAlgorithm.ES256);
+        tokenRequest.setKeyId(keyId);
+        tokenRequest.setCryptoProvider(cryptoProvider);
+
+        TokenClient tokenClient = new TokenClient(tokenEndpoint);
+        tokenClient.setRequest(tokenRequest);
+        TokenResponse tokenResponse = tokenClient.exec();
+
+        showClient(tokenClient);
+        assertEquals(tokenResponse.getStatus(), 401, "Unexpected response code: " + tokenResponse.getStatus());
+        assertNotNull(tokenResponse.getErrorType(), "The error type is null");
+        assertNotNull(tokenResponse.getErrorDescription(), "The error description is null");
+    }
+
+    /**
+     * If token_endpoint_auth_signing_alg is omitted in client registration,
+     * only symmetric algorithm supported by the OP and the RP can be used.
+     */
+    @Parameters({"redirectUris", "redirectUri", "userId", "userSecret", "dnName", "keyStoreFile", "keyStoreSecret",
+            "ES384_keyId", "sectorIdentifierUri"})
+    @Test
+    public void tokenEndpointAuthMethodClientSecretJwtES384Fail(
+            final String redirectUris, final String redirectUri, final String userId, final String userSecret,
+            final String dnName, final String keyStoreFile, final String keyStoreSecret, final String keyId,
+            final String sectorIdentifierUri) throws Exception {
+        showTitle("tokenEndpointAuthMethodClientSecretJwtES384Fail");
+
+        // 1. Register client
+        RegisterRequest registerRequest = new RegisterRequest(ApplicationType.WEB, "oxAuth test app",
+                StringUtils.spaceSeparatedToList(redirectUris));
+        registerRequest.setTokenEndpointAuthMethod(AuthenticationMethod.CLIENT_SECRET_JWT);
+        registerRequest.setSectorIdentifierUri(sectorIdentifierUri);
+
+        RegisterClient registerClient = new RegisterClient(registrationEndpoint);
+        registerClient.setRequest(registerRequest);
+        RegisterResponse registerResponse = registerClient.exec();
+
+        showClient(registerClient);
+        assertEquals(registerResponse.getStatus(), 200, "Unexpected response code: " + registerResponse.getEntity());
+        assertNotNull(registerResponse.getClientId());
+        assertNotNull(registerResponse.getClientSecret());
+        assertNotNull(registerResponse.getRegistrationAccessToken());
+        assertNotNull(registerResponse.getClientIdIssuedAt());
+        assertNotNull(registerResponse.getClientSecretExpiresAt());
+
+        String clientId = registerResponse.getClientId();
+        String clientSecret = registerResponse.getClientSecret();
+        String registrationAccessToken = registerResponse.getRegistrationAccessToken();
+        String registrationClientUri = registerResponse.getRegistrationClientUri();
+
+        // 2. Client read
+        RegisterRequest readClientRequest = new RegisterRequest(registrationAccessToken);
+
+        RegisterClient readClient = new RegisterClient(registrationClientUri);
+        readClient.setRequest(readClientRequest);
+        RegisterResponse readClientResponse = readClient.exec();
+
+        showClient(readClient);
+        assertEquals(readClientResponse.getStatus(), 200, "Unexpected response code: " + readClientResponse.getEntity());
+        assertNotNull(readClientResponse.getClientId());
+        assertNotNull(readClientResponse.getClientSecret());
+        assertNotNull(readClientResponse.getClientIdIssuedAt());
+        assertNotNull(readClientResponse.getClientSecretExpiresAt());
+
+        assertTrue(readClientResponse.getClaims().containsKey(TOKEN_ENDPOINT_AUTH_METHOD.toString()));
+        assertEquals(readClientResponse.getClaims().get(TOKEN_ENDPOINT_AUTH_METHOD.toString()),
+                AuthenticationMethod.CLIENT_SECRET_JWT.toString());
+        assertNotNull(readClientResponse.getClaims().get(RESPONSE_TYPES.toString()));
+        assertNotNull(readClientResponse.getClaims().get(REDIRECT_URIS.toString()));
+        assertNotNull(readClientResponse.getClaims().get(APPLICATION_TYPE.toString()));
+        assertNotNull(readClientResponse.getClaims().get(CLIENT_NAME.toString()));
+        assertNotNull(readClientResponse.getClaims().get(ID_TOKEN_SIGNED_RESPONSE_ALG.toString()));
+        assertNotNull(readClientResponse.getClaims().get(SCOPE.toString()));
+
+        // 3. Request authorization
+        List<ResponseType> responseTypes = Arrays.asList(ResponseType.CODE);
+        List<String> scopes = Arrays.asList(
+                "openid",
+                "profile",
+                "address",
+                "email");
+        String state = UUID.randomUUID().toString();
+
+        AuthorizationRequest authorizationRequest = new AuthorizationRequest(responseTypes, clientId, scopes, redirectUri, null);
+        authorizationRequest.setState(state);
+
+        AuthorizationResponse authorizationResponse = authenticateResourceOwnerAndGrantAccess(
+                authorizationEndpoint, authorizationRequest, userId, userSecret);
+
+        assertNotNull(authorizationResponse.getLocation(), "The location is null");
+        assertNotNull(authorizationResponse.getCode(), "The authorization code is null");
+        assertNotNull(authorizationResponse.getState(), "The state is null");
+        assertNotNull(authorizationResponse.getScope(), "The scope is null");
+        assertNull(authorizationResponse.getIdToken(), "The id token is not null");
+
+        String authorizationCode = authorizationResponse.getCode();
+
+        // 4. Get Access Token
+        OxAuthCryptoProvider cryptoProvider = new OxAuthCryptoProvider(keyStoreFile, keyStoreSecret, dnName);
+
+        TokenRequest tokenRequest = new TokenRequest(GrantType.AUTHORIZATION_CODE);
+        tokenRequest.setAudience(tokenEndpoint);
+        tokenRequest.setCode(authorizationCode);
+        tokenRequest.setRedirectUri(redirectUri);
+        tokenRequest.setAuthUsername(clientId);
+        tokenRequest.setAuthPassword(clientSecret);
+        tokenRequest.setAuthenticationMethod(AuthenticationMethod.CLIENT_SECRET_JWT);
+        tokenRequest.setAlgorithm(SignatureAlgorithm.ES384);
+        tokenRequest.setKeyId(keyId);
+        tokenRequest.setCryptoProvider(cryptoProvider);
+
+        TokenClient tokenClient = new TokenClient(tokenEndpoint);
+        tokenClient.setRequest(tokenRequest);
+        TokenResponse tokenResponse = tokenClient.exec();
+
+        showClient(tokenClient);
+        assertEquals(tokenResponse.getStatus(), 401, "Unexpected response code: " + tokenResponse.getStatus());
+        assertNotNull(tokenResponse.getErrorType(), "The error type is null");
+        assertNotNull(tokenResponse.getErrorDescription(), "The error description is null");
+    }
+
+    /**
+     * If token_endpoint_auth_signing_alg is omitted in client registration,
+     * only symmetric algorithm supported by the OP and the RP can be used.
+     */
+    @Parameters({"redirectUris", "redirectUri", "userId", "userSecret", "dnName", "keyStoreFile", "keyStoreSecret",
+            "ES512_keyId", "sectorIdentifierUri"})
+    @Test
+    public void tokenEndpointAuthMethodClientSecretJwtES512Fail(
+            final String redirectUris, final String redirectUri, final String userId, final String userSecret,
+            final String dnName, final String keyStoreFile, final String keyStoreSecret, final String keyId,
+            final String sectorIdentifierUri) throws Exception {
+        showTitle("tokenEndpointAuthMethodClientSecretJwtES512Fail");
+
+        // 1. Register client
+        RegisterRequest registerRequest = new RegisterRequest(ApplicationType.WEB, "oxAuth test app",
+                StringUtils.spaceSeparatedToList(redirectUris));
+        registerRequest.setTokenEndpointAuthMethod(AuthenticationMethod.CLIENT_SECRET_JWT);
+        registerRequest.setSectorIdentifierUri(sectorIdentifierUri);
+
+        RegisterClient registerClient = new RegisterClient(registrationEndpoint);
+        registerClient.setRequest(registerRequest);
+        RegisterResponse registerResponse = registerClient.exec();
+
+        showClient(registerClient);
+        assertEquals(registerResponse.getStatus(), 200, "Unexpected response code: " + registerResponse.getEntity());
+        assertNotNull(registerResponse.getClientId());
+        assertNotNull(registerResponse.getClientSecret());
+        assertNotNull(registerResponse.getRegistrationAccessToken());
+        assertNotNull(registerResponse.getClientIdIssuedAt());
+        assertNotNull(registerResponse.getClientSecretExpiresAt());
+
+        String clientId = registerResponse.getClientId();
+        String clientSecret = registerResponse.getClientSecret();
+        String registrationAccessToken = registerResponse.getRegistrationAccessToken();
+        String registrationClientUri = registerResponse.getRegistrationClientUri();
+
+        // 2. Client read
+        RegisterRequest readClientRequest = new RegisterRequest(registrationAccessToken);
+
+        RegisterClient readClient = new RegisterClient(registrationClientUri);
+        readClient.setRequest(readClientRequest);
+        RegisterResponse readClientResponse = readClient.exec();
+
+        showClient(readClient);
+        assertEquals(readClientResponse.getStatus(), 200, "Unexpected response code: " + readClientResponse.getEntity());
+        assertNotNull(readClientResponse.getClientId());
+        assertNotNull(readClientResponse.getClientSecret());
+        assertNotNull(readClientResponse.getClientIdIssuedAt());
+        assertNotNull(readClientResponse.getClientSecretExpiresAt());
+
+        assertTrue(readClientResponse.getClaims().containsKey(TOKEN_ENDPOINT_AUTH_METHOD.toString()));
+        assertEquals(readClientResponse.getClaims().get(TOKEN_ENDPOINT_AUTH_METHOD.toString()),
+                AuthenticationMethod.CLIENT_SECRET_JWT.toString());
+        assertNotNull(readClientResponse.getClaims().get(RESPONSE_TYPES.toString()));
+        assertNotNull(readClientResponse.getClaims().get(REDIRECT_URIS.toString()));
+        assertNotNull(readClientResponse.getClaims().get(APPLICATION_TYPE.toString()));
+        assertNotNull(readClientResponse.getClaims().get(CLIENT_NAME.toString()));
+        assertNotNull(readClientResponse.getClaims().get(ID_TOKEN_SIGNED_RESPONSE_ALG.toString()));
+        assertNotNull(readClientResponse.getClaims().get(SCOPE.toString()));
+
+        // 3. Request authorization
+        List<ResponseType> responseTypes = Arrays.asList(ResponseType.CODE);
+        List<String> scopes = Arrays.asList(
+                "openid",
+                "profile",
+                "address",
+                "email");
+        String state = UUID.randomUUID().toString();
+
+        AuthorizationRequest authorizationRequest = new AuthorizationRequest(responseTypes, clientId, scopes, redirectUri, null);
+        authorizationRequest.setState(state);
+
+        AuthorizationResponse authorizationResponse = authenticateResourceOwnerAndGrantAccess(
+                authorizationEndpoint, authorizationRequest, userId, userSecret);
+
+        assertNotNull(authorizationResponse.getLocation(), "The location is null");
+        assertNotNull(authorizationResponse.getCode(), "The authorization code is null");
+        assertNotNull(authorizationResponse.getState(), "The state is null");
+        assertNotNull(authorizationResponse.getScope(), "The scope is null");
+        assertNull(authorizationResponse.getIdToken(), "The id token is not null");
+
+        String authorizationCode = authorizationResponse.getCode();
+
+        // 4. Get Access Token
+        OxAuthCryptoProvider cryptoProvider = new OxAuthCryptoProvider(keyStoreFile, keyStoreSecret, dnName);
+
+        TokenRequest tokenRequest = new TokenRequest(GrantType.AUTHORIZATION_CODE);
+        tokenRequest.setAudience(tokenEndpoint);
+        tokenRequest.setCode(authorizationCode);
+        tokenRequest.setRedirectUri(redirectUri);
+        tokenRequest.setAuthUsername(clientId);
+        tokenRequest.setAuthPassword(clientSecret);
+        tokenRequest.setAuthenticationMethod(AuthenticationMethod.CLIENT_SECRET_JWT);
+        tokenRequest.setAlgorithm(SignatureAlgorithm.ES512);
+        tokenRequest.setKeyId(keyId);
+        tokenRequest.setCryptoProvider(cryptoProvider);
+
+        TokenClient tokenClient = new TokenClient(tokenEndpoint);
+        tokenClient.setRequest(tokenRequest);
+        TokenResponse tokenResponse = tokenClient.exec();
+
+        showClient(tokenClient);
+        assertEquals(tokenResponse.getStatus(), 401, "Unexpected response code: " + tokenResponse.getStatus());
+        assertNotNull(tokenResponse.getErrorType(), "The error type is null");
+        assertNotNull(tokenResponse.getErrorDescription(), "The error description is null");
+    }
+
+    /**
+     * If token_endpoint_auth_signing_alg is omitted in client registration,
+     * only symmetric algorithm supported by the OP and the RP can be used.
+     */
+    @Parameters({"redirectUris", "redirectUri", "userId", "userSecret", "dnName", "keyStoreFile", "keyStoreSecret",
+            "PS256_keyId", "sectorIdentifierUri"})
+    @Test
+    public void tokenEndpointAuthMethodClientSecretJwtPS256Fail(
+            final String redirectUris, final String redirectUri, final String userId, final String userSecret,
+            final String dnName, final String keyStoreFile, final String keyStoreSecret, final String keyId,
+            final String sectorIdentifierUri) throws Exception {
+        showTitle("tokenEndpointAuthMethodClientSecretJwtPS256Fail");
+
+        // 1. Register client
+        RegisterRequest registerRequest = new RegisterRequest(ApplicationType.WEB, "oxAuth test app",
+                StringUtils.spaceSeparatedToList(redirectUris));
+        registerRequest.setTokenEndpointAuthMethod(AuthenticationMethod.CLIENT_SECRET_JWT);
+        registerRequest.setSectorIdentifierUri(sectorIdentifierUri);
+
+        RegisterClient registerClient = new RegisterClient(registrationEndpoint);
+        registerClient.setRequest(registerRequest);
+        RegisterResponse registerResponse = registerClient.exec();
+
+        showClient(registerClient);
+        assertEquals(registerResponse.getStatus(), 200, "Unexpected response code: " + registerResponse.getEntity());
+        assertNotNull(registerResponse.getClientId());
+        assertNotNull(registerResponse.getClientSecret());
+        assertNotNull(registerResponse.getRegistrationAccessToken());
+        assertNotNull(registerResponse.getClientIdIssuedAt());
+        assertNotNull(registerResponse.getClientSecretExpiresAt());
+
+        String clientId = registerResponse.getClientId();
+        String clientSecret = registerResponse.getClientSecret();
+        String registrationAccessToken = registerResponse.getRegistrationAccessToken();
+        String registrationClientUri = registerResponse.getRegistrationClientUri();
+
+        // 2. Client read
+        RegisterRequest readClientRequest = new RegisterRequest(registrationAccessToken);
+
+        RegisterClient readClient = new RegisterClient(registrationClientUri);
+        readClient.setRequest(readClientRequest);
+        RegisterResponse readClientResponse = readClient.exec();
+
+        showClient(readClient);
+        assertEquals(readClientResponse.getStatus(), 200, "Unexpected response code: " + readClientResponse.getEntity());
+        assertNotNull(readClientResponse.getClientId());
+        assertNotNull(readClientResponse.getClientSecret());
+        assertNotNull(readClientResponse.getClientIdIssuedAt());
+        assertNotNull(readClientResponse.getClientSecretExpiresAt());
+
+        assertTrue(readClientResponse.getClaims().containsKey(TOKEN_ENDPOINT_AUTH_METHOD.toString()));
+        assertEquals(readClientResponse.getClaims().get(TOKEN_ENDPOINT_AUTH_METHOD.toString()),
+                AuthenticationMethod.CLIENT_SECRET_JWT.toString());
+        assertNotNull(readClientResponse.getClaims().get(RESPONSE_TYPES.toString()));
+        assertNotNull(readClientResponse.getClaims().get(REDIRECT_URIS.toString()));
+        assertNotNull(readClientResponse.getClaims().get(APPLICATION_TYPE.toString()));
+        assertNotNull(readClientResponse.getClaims().get(CLIENT_NAME.toString()));
+        assertNotNull(readClientResponse.getClaims().get(ID_TOKEN_SIGNED_RESPONSE_ALG.toString()));
+        assertNotNull(readClientResponse.getClaims().get(SCOPE.toString()));
+
+        // 3. Request authorization
+        List<ResponseType> responseTypes = Arrays.asList(ResponseType.CODE);
+        List<String> scopes = Arrays.asList(
+                "openid",
+                "profile",
+                "address",
+                "email");
+        String state = UUID.randomUUID().toString();
+
+        AuthorizationRequest authorizationRequest = new AuthorizationRequest(responseTypes, clientId, scopes, redirectUri, null);
+        authorizationRequest.setState(state);
+
+        AuthorizationResponse authorizationResponse = authenticateResourceOwnerAndGrantAccess(
+                authorizationEndpoint, authorizationRequest, userId, userSecret);
+
+        assertNotNull(authorizationResponse.getLocation(), "The location is null");
+        assertNotNull(authorizationResponse.getCode(), "The authorization code is null");
+        assertNotNull(authorizationResponse.getState(), "The state is null");
+        assertNotNull(authorizationResponse.getScope(), "The scope is null");
+        assertNull(authorizationResponse.getIdToken(), "The id token is not null");
+
+        String authorizationCode = authorizationResponse.getCode();
+
+        // 4. Get Access Token
+        OxAuthCryptoProvider cryptoProvider = new OxAuthCryptoProvider(keyStoreFile, keyStoreSecret, dnName);
+
+        TokenRequest tokenRequest = new TokenRequest(GrantType.AUTHORIZATION_CODE);
+        tokenRequest.setAudience(tokenEndpoint);
+        tokenRequest.setCode(authorizationCode);
+        tokenRequest.setRedirectUri(redirectUri);
+        tokenRequest.setAuthUsername(clientId);
+        tokenRequest.setAuthPassword(clientSecret);
+        tokenRequest.setAuthenticationMethod(AuthenticationMethod.CLIENT_SECRET_JWT);
+        tokenRequest.setAlgorithm(SignatureAlgorithm.PS256);
+        tokenRequest.setKeyId(keyId);
+        tokenRequest.setCryptoProvider(cryptoProvider);
+
+        TokenClient tokenClient = new TokenClient(tokenEndpoint);
+        tokenClient.setRequest(tokenRequest);
+        TokenResponse tokenResponse = tokenClient.exec();
+
+        showClient(tokenClient);
+        assertEquals(tokenResponse.getStatus(), 401, "Unexpected response code: " + tokenResponse.getStatus());
+        assertNotNull(tokenResponse.getErrorType(), "The error type is null");
+        assertNotNull(tokenResponse.getErrorDescription(), "The error description is null");
+    }
+
+    /**
+     * If token_endpoint_auth_signing_alg is omitted in client registration,
+     * only symmetric algorithm supported by the OP and the RP can be used.
+     */
+    @Parameters({"redirectUris", "redirectUri", "userId", "userSecret", "dnName", "keyStoreFile", "keyStoreSecret",
+            "PS384_keyId", "sectorIdentifierUri"})
+    @Test
+    public void tokenEndpointAuthMethodClientSecretJwtPS384Fail(
+            final String redirectUris, final String redirectUri, final String userId, final String userSecret,
+            final String dnName, final String keyStoreFile, final String keyStoreSecret, final String keyId,
+            final String sectorIdentifierUri) throws Exception {
+        showTitle("tokenEndpointAuthMethodClientSecretJwtPS384Fail");
+
+        // 1. Register client
+        RegisterRequest registerRequest = new RegisterRequest(ApplicationType.WEB, "oxAuth test app",
+                StringUtils.spaceSeparatedToList(redirectUris));
+        registerRequest.setTokenEndpointAuthMethod(AuthenticationMethod.CLIENT_SECRET_JWT);
+        registerRequest.setSectorIdentifierUri(sectorIdentifierUri);
+
+        RegisterClient registerClient = new RegisterClient(registrationEndpoint);
+        registerClient.setRequest(registerRequest);
+        RegisterResponse registerResponse = registerClient.exec();
+
+        showClient(registerClient);
+        assertEquals(registerResponse.getStatus(), 200, "Unexpected response code: " + registerResponse.getEntity());
+        assertNotNull(registerResponse.getClientId());
+        assertNotNull(registerResponse.getClientSecret());
+        assertNotNull(registerResponse.getRegistrationAccessToken());
+        assertNotNull(registerResponse.getClientIdIssuedAt());
+        assertNotNull(registerResponse.getClientSecretExpiresAt());
+
+        String clientId = registerResponse.getClientId();
+        String clientSecret = registerResponse.getClientSecret();
+        String registrationAccessToken = registerResponse.getRegistrationAccessToken();
+        String registrationClientUri = registerResponse.getRegistrationClientUri();
+
+        // 2. Client read
+        RegisterRequest readClientRequest = new RegisterRequest(registrationAccessToken);
+
+        RegisterClient readClient = new RegisterClient(registrationClientUri);
+        readClient.setRequest(readClientRequest);
+        RegisterResponse readClientResponse = readClient.exec();
+
+        showClient(readClient);
+        assertEquals(readClientResponse.getStatus(), 200, "Unexpected response code: " + readClientResponse.getEntity());
+        assertNotNull(readClientResponse.getClientId());
+        assertNotNull(readClientResponse.getClientSecret());
+        assertNotNull(readClientResponse.getClientIdIssuedAt());
+        assertNotNull(readClientResponse.getClientSecretExpiresAt());
+
+        assertTrue(readClientResponse.getClaims().containsKey(TOKEN_ENDPOINT_AUTH_METHOD.toString()));
+        assertEquals(readClientResponse.getClaims().get(TOKEN_ENDPOINT_AUTH_METHOD.toString()),
+                AuthenticationMethod.CLIENT_SECRET_JWT.toString());
+        assertNotNull(readClientResponse.getClaims().get(RESPONSE_TYPES.toString()));
+        assertNotNull(readClientResponse.getClaims().get(REDIRECT_URIS.toString()));
+        assertNotNull(readClientResponse.getClaims().get(APPLICATION_TYPE.toString()));
+        assertNotNull(readClientResponse.getClaims().get(CLIENT_NAME.toString()));
+        assertNotNull(readClientResponse.getClaims().get(ID_TOKEN_SIGNED_RESPONSE_ALG.toString()));
+        assertNotNull(readClientResponse.getClaims().get(SCOPE.toString()));
+
+        // 3. Request authorization
+        List<ResponseType> responseTypes = Arrays.asList(ResponseType.CODE);
+        List<String> scopes = Arrays.asList(
+                "openid",
+                "profile",
+                "address",
+                "email");
+        String state = UUID.randomUUID().toString();
+
+        AuthorizationRequest authorizationRequest = new AuthorizationRequest(responseTypes, clientId, scopes, redirectUri, null);
+        authorizationRequest.setState(state);
+
+        AuthorizationResponse authorizationResponse = authenticateResourceOwnerAndGrantAccess(
+                authorizationEndpoint, authorizationRequest, userId, userSecret);
+
+        assertNotNull(authorizationResponse.getLocation(), "The location is null");
+        assertNotNull(authorizationResponse.getCode(), "The authorization code is null");
+        assertNotNull(authorizationResponse.getState(), "The state is null");
+        assertNotNull(authorizationResponse.getScope(), "The scope is null");
+        assertNull(authorizationResponse.getIdToken(), "The id token is not null");
+
+        String authorizationCode = authorizationResponse.getCode();
+
+        // 4. Get Access Token
+        OxAuthCryptoProvider cryptoProvider = new OxAuthCryptoProvider(keyStoreFile, keyStoreSecret, dnName);
+
+        TokenRequest tokenRequest = new TokenRequest(GrantType.AUTHORIZATION_CODE);
+        tokenRequest.setAudience(tokenEndpoint);
+        tokenRequest.setCode(authorizationCode);
+        tokenRequest.setRedirectUri(redirectUri);
+        tokenRequest.setAuthUsername(clientId);
+        tokenRequest.setAuthPassword(clientSecret);
+        tokenRequest.setAuthenticationMethod(AuthenticationMethod.CLIENT_SECRET_JWT);
+        tokenRequest.setAlgorithm(SignatureAlgorithm.PS384);
+        tokenRequest.setKeyId(keyId);
+        tokenRequest.setCryptoProvider(cryptoProvider);
+
+        TokenClient tokenClient = new TokenClient(tokenEndpoint);
+        tokenClient.setRequest(tokenRequest);
+        TokenResponse tokenResponse = tokenClient.exec();
+
+        showClient(tokenClient);
+        assertEquals(tokenResponse.getStatus(), 401, "Unexpected response code: " + tokenResponse.getStatus());
+        assertNotNull(tokenResponse.getErrorType(), "The error type is null");
+        assertNotNull(tokenResponse.getErrorDescription(), "The error description is null");
+    }
+
+    /**
+     * If token_endpoint_auth_signing_alg is omitted in client registration,
+     * only symmetric algorithm supported by the OP and the RP can be used.
+     */
+    @Parameters({"redirectUris", "redirectUri", "userId", "userSecret", "dnName", "keyStoreFile", "keyStoreSecret",
+            "PS512_keyId", "sectorIdentifierUri"})
+    @Test
+    public void tokenEndpointAuthMethodClientSecretJwtPS512Fail(
+            final String redirectUris, final String redirectUri, final String userId, final String userSecret,
+            final String dnName, final String keyStoreFile, final String keyStoreSecret, final String keyId,
+            final String sectorIdentifierUri) throws Exception {
+        showTitle("tokenEndpointAuthMethodClientSecretJwtPS512Fail");
+
+        // 1. Register client
+        RegisterRequest registerRequest = new RegisterRequest(ApplicationType.WEB, "oxAuth test app",
+                StringUtils.spaceSeparatedToList(redirectUris));
+        registerRequest.setTokenEndpointAuthMethod(AuthenticationMethod.CLIENT_SECRET_JWT);
+        registerRequest.setSectorIdentifierUri(sectorIdentifierUri);
+
+        RegisterClient registerClient = new RegisterClient(registrationEndpoint);
+        registerClient.setRequest(registerRequest);
+        RegisterResponse registerResponse = registerClient.exec();
+
+        showClient(registerClient);
+        assertEquals(registerResponse.getStatus(), 200, "Unexpected response code: " + registerResponse.getEntity());
+        assertNotNull(registerResponse.getClientId());
+        assertNotNull(registerResponse.getClientSecret());
+        assertNotNull(registerResponse.getRegistrationAccessToken());
+        assertNotNull(registerResponse.getClientIdIssuedAt());
+        assertNotNull(registerResponse.getClientSecretExpiresAt());
+
+        String clientId = registerResponse.getClientId();
+        String clientSecret = registerResponse.getClientSecret();
+        String registrationAccessToken = registerResponse.getRegistrationAccessToken();
+        String registrationClientUri = registerResponse.getRegistrationClientUri();
+
+        // 2. Client read
+        RegisterRequest readClientRequest = new RegisterRequest(registrationAccessToken);
+
+        RegisterClient readClient = new RegisterClient(registrationClientUri);
+        readClient.setRequest(readClientRequest);
+        RegisterResponse readClientResponse = readClient.exec();
+
+        showClient(readClient);
+        assertEquals(readClientResponse.getStatus(), 200, "Unexpected response code: " + readClientResponse.getEntity());
+        assertNotNull(readClientResponse.getClientId());
+        assertNotNull(readClientResponse.getClientSecret());
+        assertNotNull(readClientResponse.getClientIdIssuedAt());
+        assertNotNull(readClientResponse.getClientSecretExpiresAt());
+
+        assertTrue(readClientResponse.getClaims().containsKey(TOKEN_ENDPOINT_AUTH_METHOD.toString()));
+        assertEquals(readClientResponse.getClaims().get(TOKEN_ENDPOINT_AUTH_METHOD.toString()),
+                AuthenticationMethod.CLIENT_SECRET_JWT.toString());
+        assertNotNull(readClientResponse.getClaims().get(RESPONSE_TYPES.toString()));
+        assertNotNull(readClientResponse.getClaims().get(REDIRECT_URIS.toString()));
+        assertNotNull(readClientResponse.getClaims().get(APPLICATION_TYPE.toString()));
+        assertNotNull(readClientResponse.getClaims().get(CLIENT_NAME.toString()));
+        assertNotNull(readClientResponse.getClaims().get(ID_TOKEN_SIGNED_RESPONSE_ALG.toString()));
+        assertNotNull(readClientResponse.getClaims().get(SCOPE.toString()));
+
+        // 3. Request authorization
+        List<ResponseType> responseTypes = Arrays.asList(ResponseType.CODE);
+        List<String> scopes = Arrays.asList(
+                "openid",
+                "profile",
+                "address",
+                "email");
+        String state = UUID.randomUUID().toString();
+
+        AuthorizationRequest authorizationRequest = new AuthorizationRequest(responseTypes, clientId, scopes, redirectUri, null);
+        authorizationRequest.setState(state);
+
+        AuthorizationResponse authorizationResponse = authenticateResourceOwnerAndGrantAccess(
+                authorizationEndpoint, authorizationRequest, userId, userSecret);
+
+        assertNotNull(authorizationResponse.getLocation(), "The location is null");
+        assertNotNull(authorizationResponse.getCode(), "The authorization code is null");
+        assertNotNull(authorizationResponse.getState(), "The state is null");
+        assertNotNull(authorizationResponse.getScope(), "The scope is null");
+        assertNull(authorizationResponse.getIdToken(), "The id token is not null");
+
+        String authorizationCode = authorizationResponse.getCode();
+
+        // 4. Get Access Token
+        OxAuthCryptoProvider cryptoProvider = new OxAuthCryptoProvider(keyStoreFile, keyStoreSecret, dnName);
+
+        TokenRequest tokenRequest = new TokenRequest(GrantType.AUTHORIZATION_CODE);
+        tokenRequest.setAudience(tokenEndpoint);
+        tokenRequest.setCode(authorizationCode);
+        tokenRequest.setRedirectUri(redirectUri);
+        tokenRequest.setAuthUsername(clientId);
+        tokenRequest.setAuthPassword(clientSecret);
+        tokenRequest.setAuthenticationMethod(AuthenticationMethod.CLIENT_SECRET_JWT);
+        tokenRequest.setAlgorithm(SignatureAlgorithm.PS512);
+        tokenRequest.setKeyId(keyId);
+        tokenRequest.setCryptoProvider(cryptoProvider);
+
+        TokenClient tokenClient = new TokenClient(tokenEndpoint);
+        tokenClient.setRequest(tokenRequest);
+        TokenResponse tokenResponse = tokenClient.exec();
+
+        showClient(tokenClient);
+        assertEquals(tokenResponse.getStatus(), 401, "Unexpected response code: " + tokenResponse.getStatus());
+        assertNotNull(tokenResponse.getErrorType(), "The error type is null");
+        assertNotNull(tokenResponse.getErrorDescription(), "The error description is null");
+    }
+
+    @Parameters({"redirectUris", "redirectUri", "userId", "userSecret", "dnName", "keyStoreFile", "keyStoreSecret",
+            "sectorIdentifierUri"})
+    @Test
+    public void tokenEndpointAuthMethodClientSecretJwtSigningAlgHS256(
+            final String redirectUris, final String redirectUri, final String userId, final String userSecret,
+            final String dnName, final String keyStoreFile, final String keyStoreSecret, final String sectorIdentifierUri) throws Exception {
+        showTitle("tokenEndpointAuthMethodClientSecretJwtSigningAlgHS256");
+
+        // 1. Register client
+        RegisterRequest registerRequest = new RegisterRequest(ApplicationType.WEB, "oxAuth test app",
+                StringUtils.spaceSeparatedToList(redirectUris));
+        registerRequest.setTokenEndpointAuthMethod(AuthenticationMethod.CLIENT_SECRET_JWT);
+        registerRequest.setTokenEndpointAuthSigningAlg(SignatureAlgorithm.HS256);
+        registerRequest.setSectorIdentifierUri(sectorIdentifierUri);
+
+        RegisterClient registerClient = new RegisterClient(registrationEndpoint);
+        registerClient.setRequest(registerRequest);
+        RegisterResponse registerResponse = registerClient.exec();
+
+        showClient(registerClient);
+        assertEquals(registerResponse.getStatus(), 200, "Unexpected response code: " + registerResponse.getEntity());
+        assertNotNull(registerResponse.getClientId());
+        assertNotNull(registerResponse.getClientSecret());
+        assertNotNull(registerResponse.getRegistrationAccessToken());
+        assertNotNull(registerResponse.getClientIdIssuedAt());
+        assertNotNull(registerResponse.getClientSecretExpiresAt());
+
+        String clientId = registerResponse.getClientId();
+        String clientSecret = registerResponse.getClientSecret();
+        String registrationAccessToken = registerResponse.getRegistrationAccessToken();
+        String registrationClientUri = registerResponse.getRegistrationClientUri();
+
+        // 2. Client read
+        RegisterRequest readClientRequest = new RegisterRequest(registrationAccessToken);
+
+        RegisterClient readClient = new RegisterClient(registrationClientUri);
+        readClient.setRequest(readClientRequest);
+        RegisterResponse readClientResponse = readClient.exec();
+
+        showClient(readClient);
+        assertEquals(readClientResponse.getStatus(), 200, "Unexpected response code: " + readClientResponse.getEntity());
+        assertNotNull(readClientResponse.getClientId());
+        assertNotNull(readClientResponse.getClientSecret());
+        assertNotNull(readClientResponse.getClientIdIssuedAt());
+        assertNotNull(readClientResponse.getClientSecretExpiresAt());
+
+        assertTrue(readClientResponse.getClaims().containsKey(TOKEN_ENDPOINT_AUTH_METHOD.toString()));
+        assertEquals(readClientResponse.getClaims().get(TOKEN_ENDPOINT_AUTH_METHOD.toString()),
+                AuthenticationMethod.CLIENT_SECRET_JWT.toString());
+        assertTrue(readClientResponse.getClaims().containsKey(TOKEN_ENDPOINT_AUTH_SIGNING_ALG.toString()));
+        assertEquals(readClientResponse.getClaims().get(TOKEN_ENDPOINT_AUTH_SIGNING_ALG.toString()),
+                SignatureAlgorithm.HS256.toString());
+        assertNotNull(readClientResponse.getClaims().get(RESPONSE_TYPES.toString()));
+        assertNotNull(readClientResponse.getClaims().get(REDIRECT_URIS.toString()));
+        assertNotNull(readClientResponse.getClaims().get(APPLICATION_TYPE.toString()));
+        assertNotNull(readClientResponse.getClaims().get(CLIENT_NAME.toString()));
+        assertNotNull(readClientResponse.getClaims().get(ID_TOKEN_SIGNED_RESPONSE_ALG.toString()));
+        assertNotNull(readClientResponse.getClaims().get(SCOPE.toString()));
+
+        // 3. Request authorization
+        List<ResponseType> responseTypes = Arrays.asList(ResponseType.CODE);
+        List<String> scopes = Arrays.asList(
+                "openid",
+                "profile",
+                "address",
+                "email");
+        String state = UUID.randomUUID().toString();
+
+        AuthorizationRequest authorizationRequest = new AuthorizationRequest(responseTypes, clientId, scopes, redirectUri, null);
+        authorizationRequest.setState(state);
+
+        AuthorizationResponse authorizationResponse = authenticateResourceOwnerAndGrantAccess(
+                authorizationEndpoint, authorizationRequest, userId, userSecret);
+
+        assertNotNull(authorizationResponse.getLocation(), "The location is null");
+        assertNotNull(authorizationResponse.getCode(), "The authorization code is null");
+        assertNotNull(authorizationResponse.getState(), "The state is null");
+        assertNotNull(authorizationResponse.getScope(), "The scope is null");
+        assertNull(authorizationResponse.getIdToken(), "The id token is not null");
+
+        String authorizationCode = authorizationResponse.getCode();
+
+        // 4. Get Access Token
+        OxAuthCryptoProvider cryptoProvider = new OxAuthCryptoProvider(keyStoreFile, keyStoreSecret, dnName);
+
+        TokenRequest tokenRequest = new TokenRequest(GrantType.AUTHORIZATION_CODE);
+        tokenRequest.setAudience(tokenEndpoint);
+        tokenRequest.setCode(authorizationCode);
+        tokenRequest.setRedirectUri(redirectUri);
+        tokenRequest.setAuthUsername(clientId);
+        tokenRequest.setAuthPassword(clientSecret);
+        tokenRequest.setAuthenticationMethod(AuthenticationMethod.CLIENT_SECRET_JWT);
+        tokenRequest.setAlgorithm(SignatureAlgorithm.HS256);
+        tokenRequest.setCryptoProvider(cryptoProvider);
+
+        TokenClient tokenClient = new TokenClient(tokenEndpoint);
+        tokenClient.setRequest(tokenRequest);
+        TokenResponse tokenResponse = tokenClient.exec();
+
+        showClient(tokenClient);
+        assertEquals(tokenResponse.getStatus(), 200, "Unexpected response code: " + tokenResponse.getStatus());
+        assertNotNull(tokenResponse.getEntity(), "The entity is null");
+        assertNotNull(tokenResponse.getAccessToken(), "The access token is null");
+        assertNotNull(tokenResponse.getExpiresIn(), "The expires in value is null");
+        assertNotNull(tokenResponse.getTokenType(), "The token type is null");
+        assertNotNull(tokenResponse.getRefreshToken(), "The refresh token is null");
+    }
+
+    @Parameters({"redirectUris", "redirectUri", "userId", "userSecret", "dnName", "keyStoreFile", "keyStoreSecret",
+            "sectorIdentifierUri"})
+    @Test
+    public void tokenEndpointAuthMethodClientSecretJwtSigningAlgHS256Fail1(
+            final String redirectUris, final String redirectUri, final String userId, final String userSecret,
+            final String dnName, final String keyStoreFile, final String keyStoreSecret, final String sectorIdentifierUri) throws Exception {
+        showTitle("tokenEndpointAuthMethodClientSecretJwtSigningAlgHS256Fail1");
+
+        // 1. Register client
+        RegisterRequest registerRequest = new RegisterRequest(ApplicationType.WEB, "oxAuth test app",
+                StringUtils.spaceSeparatedToList(redirectUris));
+        registerRequest.setTokenEndpointAuthMethod(AuthenticationMethod.CLIENT_SECRET_JWT);
+        registerRequest.setTokenEndpointAuthSigningAlg(SignatureAlgorithm.HS256);
+        registerRequest.setSectorIdentifierUri(sectorIdentifierUri);
+
+        RegisterClient registerClient = new RegisterClient(registrationEndpoint);
+        registerClient.setRequest(registerRequest);
+        RegisterResponse registerResponse = registerClient.exec();
+
+        showClient(registerClient);
+        assertEquals(registerResponse.getStatus(), 200, "Unexpected response code: " + registerResponse.getEntity());
+        assertNotNull(registerResponse.getClientId());
+        assertNotNull(registerResponse.getClientSecret());
+        assertNotNull(registerResponse.getRegistrationAccessToken());
+        assertNotNull(registerResponse.getClientIdIssuedAt());
+        assertNotNull(registerResponse.getClientSecretExpiresAt());
+
+        String clientId = registerResponse.getClientId();
+        String clientSecret = registerResponse.getClientSecret();
+        String registrationAccessToken = registerResponse.getRegistrationAccessToken();
+        String registrationClientUri = registerResponse.getRegistrationClientUri();
+
+        // 2. Client read
+        RegisterRequest readClientRequest = new RegisterRequest(registrationAccessToken);
+
+        RegisterClient readClient = new RegisterClient(registrationClientUri);
+        readClient.setRequest(readClientRequest);
+        RegisterResponse readClientResponse = readClient.exec();
+
+        showClient(readClient);
+        assertEquals(readClientResponse.getStatus(), 200, "Unexpected response code: " + readClientResponse.getEntity());
+        assertNotNull(readClientResponse.getClientId());
+        assertNotNull(readClientResponse.getClientSecret());
+        assertNotNull(readClientResponse.getClientIdIssuedAt());
+        assertNotNull(readClientResponse.getClientSecretExpiresAt());
+
+        assertTrue(readClientResponse.getClaims().containsKey(TOKEN_ENDPOINT_AUTH_METHOD.toString()));
+        assertEquals(readClientResponse.getClaims().get(TOKEN_ENDPOINT_AUTH_METHOD.toString()),
+                AuthenticationMethod.CLIENT_SECRET_JWT.toString());
+        assertTrue(readClientResponse.getClaims().containsKey(TOKEN_ENDPOINT_AUTH_SIGNING_ALG.toString()));
+        assertEquals(readClientResponse.getClaims().get(TOKEN_ENDPOINT_AUTH_SIGNING_ALG.toString()),
+                SignatureAlgorithm.HS256.toString());
+        assertNotNull(readClientResponse.getClaims().get(RESPONSE_TYPES.toString()));
+        assertNotNull(readClientResponse.getClaims().get(REDIRECT_URIS.toString()));
+        assertNotNull(readClientResponse.getClaims().get(APPLICATION_TYPE.toString()));
+        assertNotNull(readClientResponse.getClaims().get(CLIENT_NAME.toString()));
+        assertNotNull(readClientResponse.getClaims().get(ID_TOKEN_SIGNED_RESPONSE_ALG.toString()));
+        assertNotNull(readClientResponse.getClaims().get(SCOPE.toString()));
+
+        // 3. Request authorization
+        List<ResponseType> responseTypes = Arrays.asList(ResponseType.CODE);
+        List<String> scopes = Arrays.asList(
+                "openid",
+                "profile",
+                "address",
+                "email");
+        String state = UUID.randomUUID().toString();
+
+        AuthorizationRequest authorizationRequest = new AuthorizationRequest(responseTypes, clientId, scopes, redirectUri, null);
+        authorizationRequest.setState(state);
+
+        AuthorizationResponse authorizationResponse = authenticateResourceOwnerAndGrantAccess(
+                authorizationEndpoint, authorizationRequest, userId, userSecret);
+
+        assertNotNull(authorizationResponse.getLocation(), "The location is null");
+        assertNotNull(authorizationResponse.getCode(), "The authorization code is null");
+        assertNotNull(authorizationResponse.getState(), "The state is null");
+        assertNotNull(authorizationResponse.getScope(), "The scope is null");
+        assertNull(authorizationResponse.getIdToken(), "The id token is not null");
+
+        String authorizationCode = authorizationResponse.getCode();
+
+        // 4. Get Access Token
+        OxAuthCryptoProvider cryptoProvider = new OxAuthCryptoProvider(keyStoreFile, keyStoreSecret, dnName);
+
+        TokenRequest tokenRequest = new TokenRequest(GrantType.AUTHORIZATION_CODE);
+        tokenRequest.setAudience(tokenEndpoint);
+        tokenRequest.setCode(authorizationCode);
+        tokenRequest.setRedirectUri(redirectUri);
+        tokenRequest.setAuthUsername(clientId);
+        tokenRequest.setAuthPassword(clientSecret);
+        tokenRequest.setAuthenticationMethod(AuthenticationMethod.CLIENT_SECRET_JWT);
+        tokenRequest.setAlgorithm(SignatureAlgorithm.HS384);
+        tokenRequest.setCryptoProvider(cryptoProvider);
+
+        TokenClient tokenClient = new TokenClient(tokenEndpoint);
+        tokenClient.setRequest(tokenRequest);
+        TokenResponse tokenResponse = tokenClient.exec();
+
+        showClient(tokenClient);
+        assertEquals(tokenResponse.getStatus(), 401, "Unexpected response code: " + tokenResponse.getStatus());
+        assertNotNull(tokenResponse.getErrorType(), "The error type is null");
+        assertNotNull(tokenResponse.getErrorDescription(), "The error description is null");
+    }
+
+    @Parameters({"redirectUris", "redirectUri", "userId", "userSecret", "dnName", "keyStoreFile", "keyStoreSecret",
+            "sectorIdentifierUri"})
+    @Test
+    public void tokenEndpointAuthMethodClientSecretJwtSigningAlgHS256Fail2(
+            final String redirectUris, final String redirectUri, final String userId, final String userSecret,
+            final String dnName, final String keyStoreFile, final String keyStoreSecret, final String sectorIdentifierUri) throws Exception {
+        showTitle("tokenEndpointAuthMethodClientSecretJwtSigningAlgHS256Fail2");
+
+        // 1. Register client
+        RegisterRequest registerRequest = new RegisterRequest(ApplicationType.WEB, "oxAuth test app",
+                StringUtils.spaceSeparatedToList(redirectUris));
+        registerRequest.setTokenEndpointAuthMethod(AuthenticationMethod.CLIENT_SECRET_JWT);
+        registerRequest.setTokenEndpointAuthSigningAlg(SignatureAlgorithm.HS256);
+        registerRequest.setSectorIdentifierUri(sectorIdentifierUri);
+
+        RegisterClient registerClient = new RegisterClient(registrationEndpoint);
+        registerClient.setRequest(registerRequest);
+        RegisterResponse registerResponse = registerClient.exec();
+
+        showClient(registerClient);
+        assertEquals(registerResponse.getStatus(), 200, "Unexpected response code: " + registerResponse.getEntity());
+        assertNotNull(registerResponse.getClientId());
+        assertNotNull(registerResponse.getClientSecret());
+        assertNotNull(registerResponse.getRegistrationAccessToken());
+        assertNotNull(registerResponse.getClientIdIssuedAt());
+        assertNotNull(registerResponse.getClientSecretExpiresAt());
+
+        String clientId = registerResponse.getClientId();
+        String clientSecret = registerResponse.getClientSecret();
+        String registrationAccessToken = registerResponse.getRegistrationAccessToken();
+        String registrationClientUri = registerResponse.getRegistrationClientUri();
+
+        // 2. Client read
+        RegisterRequest readClientRequest = new RegisterRequest(registrationAccessToken);
+
+        RegisterClient readClient = new RegisterClient(registrationClientUri);
+        readClient.setRequest(readClientRequest);
+        RegisterResponse readClientResponse = readClient.exec();
+
+        showClient(readClient);
+        assertEquals(readClientResponse.getStatus(), 200, "Unexpected response code: " + readClientResponse.getEntity());
+        assertNotNull(readClientResponse.getClientId());
+        assertNotNull(readClientResponse.getClientSecret());
+        assertNotNull(readClientResponse.getClientIdIssuedAt());
+        assertNotNull(readClientResponse.getClientSecretExpiresAt());
+
+        assertTrue(readClientResponse.getClaims().containsKey(TOKEN_ENDPOINT_AUTH_METHOD.toString()));
+        assertEquals(readClientResponse.getClaims().get(TOKEN_ENDPOINT_AUTH_METHOD.toString()),
+                AuthenticationMethod.CLIENT_SECRET_JWT.toString());
+        assertTrue(readClientResponse.getClaims().containsKey(TOKEN_ENDPOINT_AUTH_SIGNING_ALG.toString()));
+        assertEquals(readClientResponse.getClaims().get(TOKEN_ENDPOINT_AUTH_SIGNING_ALG.toString()),
+                SignatureAlgorithm.HS256.toString());
+        assertNotNull(readClientResponse.getClaims().get(RESPONSE_TYPES.toString()));
+        assertNotNull(readClientResponse.getClaims().get(REDIRECT_URIS.toString()));
+        assertNotNull(readClientResponse.getClaims().get(APPLICATION_TYPE.toString()));
+        assertNotNull(readClientResponse.getClaims().get(CLIENT_NAME.toString()));
+        assertNotNull(readClientResponse.getClaims().get(ID_TOKEN_SIGNED_RESPONSE_ALG.toString()));
+        assertNotNull(readClientResponse.getClaims().get(SCOPE.toString()));
+
+        // 3. Request authorization
+        List<ResponseType> responseTypes = Arrays.asList(ResponseType.CODE);
+        List<String> scopes = Arrays.asList(
+                "openid",
+                "profile",
+                "address",
+                "email");
+        String state = UUID.randomUUID().toString();
+
+        AuthorizationRequest authorizationRequest = new AuthorizationRequest(responseTypes, clientId, scopes, redirectUri, null);
+        authorizationRequest.setState(state);
+
+        AuthorizationResponse authorizationResponse = authenticateResourceOwnerAndGrantAccess(
+                authorizationEndpoint, authorizationRequest, userId, userSecret);
+
+        assertNotNull(authorizationResponse.getLocation(), "The location is null");
+        assertNotNull(authorizationResponse.getCode(), "The authorization code is null");
+        assertNotNull(authorizationResponse.getState(), "The state is null");
+        assertNotNull(authorizationResponse.getScope(), "The scope is null");
+        assertNull(authorizationResponse.getIdToken(), "The id token is not null");
+
+        String authorizationCode = authorizationResponse.getCode();
+
+        // 4. Get Access Token
+        OxAuthCryptoProvider cryptoProvider = new OxAuthCryptoProvider(keyStoreFile, keyStoreSecret, dnName);
+
+        TokenRequest tokenRequest = new TokenRequest(GrantType.AUTHORIZATION_CODE);
+        tokenRequest.setAudience(tokenEndpoint);
+        tokenRequest.setCode(authorizationCode);
+        tokenRequest.setRedirectUri(redirectUri);
+        tokenRequest.setAuthUsername(clientId);
+        tokenRequest.setAuthPassword(clientSecret);
+        tokenRequest.setAuthenticationMethod(AuthenticationMethod.CLIENT_SECRET_JWT);
+        tokenRequest.setAlgorithm(SignatureAlgorithm.HS512);
+        tokenRequest.setCryptoProvider(cryptoProvider);
+
+        TokenClient tokenClient = new TokenClient(tokenEndpoint);
+        tokenClient.setRequest(tokenRequest);
+        TokenResponse tokenResponse = tokenClient.exec();
+
+        showClient(tokenClient);
+        assertEquals(tokenResponse.getStatus(), 401, "Unexpected response code: " + tokenResponse.getStatus());
+        assertNotNull(tokenResponse.getErrorType(), "The error type is null");
+        assertNotNull(tokenResponse.getErrorDescription(), "The error description is null");
+    }
+
+    @Parameters({"redirectUris", "redirectUri", "userId", "userSecret", "dnName", "keyStoreFile", "keyStoreSecret",
+            "sectorIdentifierUri"})
+    @Test
+    public void tokenEndpointAuthMethodClientSecretJwtSigningAlgHS384(
+            final String redirectUris, final String redirectUri, final String userId, final String userSecret,
+            final String dnName, final String keyStoreFile, final String keyStoreSecret, final String sectorIdentifierUri) throws Exception {
+        showTitle("tokenEndpointAuthMethodClientSecretJwtSigningAlgHS384");
+
+        // 1. Register client
+        RegisterRequest registerRequest = new RegisterRequest(ApplicationType.WEB, "oxAuth test app",
+                StringUtils.spaceSeparatedToList(redirectUris));
+        registerRequest.setTokenEndpointAuthMethod(AuthenticationMethod.CLIENT_SECRET_JWT);
+        registerRequest.setTokenEndpointAuthSigningAlg(SignatureAlgorithm.HS384);
+        registerRequest.setSectorIdentifierUri(sectorIdentifierUri);
+
+        RegisterClient registerClient = new RegisterClient(registrationEndpoint);
+        registerClient.setRequest(registerRequest);
+        RegisterResponse registerResponse = registerClient.exec();
+
+        showClient(registerClient);
+        assertEquals(registerResponse.getStatus(), 200, "Unexpected response code: " + registerResponse.getEntity());
+        assertNotNull(registerResponse.getClientId());
+        assertNotNull(registerResponse.getClientSecret());
+        assertNotNull(registerResponse.getRegistrationAccessToken());
+        assertNotNull(registerResponse.getClientIdIssuedAt());
+        assertNotNull(registerResponse.getClientSecretExpiresAt());
+
+        String clientId = registerResponse.getClientId();
+        String clientSecret = registerResponse.getClientSecret();
+        String registrationAccessToken = registerResponse.getRegistrationAccessToken();
+        String registrationClientUri = registerResponse.getRegistrationClientUri();
+
+        // 2. Client read
+        RegisterRequest readClientRequest = new RegisterRequest(registrationAccessToken);
+
+        RegisterClient readClient = new RegisterClient(registrationClientUri);
+        readClient.setRequest(readClientRequest);
+        RegisterResponse readClientResponse = readClient.exec();
+
+        showClient(readClient);
+        assertEquals(readClientResponse.getStatus(), 200, "Unexpected response code: " + readClientResponse.getEntity());
+        assertNotNull(readClientResponse.getClientId());
+        assertNotNull(readClientResponse.getClientSecret());
+        assertNotNull(readClientResponse.getClientIdIssuedAt());
+        assertNotNull(readClientResponse.getClientSecretExpiresAt());
+
+        assertTrue(readClientResponse.getClaims().containsKey(TOKEN_ENDPOINT_AUTH_METHOD.toString()));
+        assertEquals(readClientResponse.getClaims().get(TOKEN_ENDPOINT_AUTH_METHOD.toString()),
+                AuthenticationMethod.CLIENT_SECRET_JWT.toString());
+        assertTrue(readClientResponse.getClaims().containsKey(TOKEN_ENDPOINT_AUTH_SIGNING_ALG.toString()));
+        assertEquals(readClientResponse.getClaims().get(TOKEN_ENDPOINT_AUTH_SIGNING_ALG.toString()),
+                SignatureAlgorithm.HS384.toString());
+        assertNotNull(readClientResponse.getClaims().get(RESPONSE_TYPES.toString()));
+        assertNotNull(readClientResponse.getClaims().get(REDIRECT_URIS.toString()));
+        assertNotNull(readClientResponse.getClaims().get(APPLICATION_TYPE.toString()));
+        assertNotNull(readClientResponse.getClaims().get(CLIENT_NAME.toString()));
+        assertNotNull(readClientResponse.getClaims().get(ID_TOKEN_SIGNED_RESPONSE_ALG.toString()));
+        assertNotNull(readClientResponse.getClaims().get(SCOPE.toString()));
+
+        // 3. Request authorization
+        List<ResponseType> responseTypes = Arrays.asList(ResponseType.CODE);
+        List<String> scopes = Arrays.asList(
+                "openid",
+                "profile",
+                "address",
+                "email");
+        String state = UUID.randomUUID().toString();
+
+        AuthorizationRequest authorizationRequest = new AuthorizationRequest(responseTypes, clientId, scopes, redirectUri, null);
+        authorizationRequest.setState(state);
+
+        AuthorizationResponse authorizationResponse = authenticateResourceOwnerAndGrantAccess(
+                authorizationEndpoint, authorizationRequest, userId, userSecret);
+
+        assertNotNull(authorizationResponse.getLocation(), "The location is null");
+        assertNotNull(authorizationResponse.getCode(), "The authorization code is null");
+        assertNotNull(authorizationResponse.getState(), "The state is null");
+        assertNotNull(authorizationResponse.getScope(), "The scope is null");
+        assertNull(authorizationResponse.getIdToken(), "The id token is not null");
+
+        String authorizationCode = authorizationResponse.getCode();
+
+        // 4. Get Access Token
+        OxAuthCryptoProvider cryptoProvider = new OxAuthCryptoProvider(keyStoreFile, keyStoreSecret, dnName);
+
+        TokenRequest tokenRequest = new TokenRequest(GrantType.AUTHORIZATION_CODE);
+        tokenRequest.setAudience(tokenEndpoint);
+        tokenRequest.setCode(authorizationCode);
+        tokenRequest.setRedirectUri(redirectUri);
+        tokenRequest.setAuthUsername(clientId);
+        tokenRequest.setAuthPassword(clientSecret);
+        tokenRequest.setAuthenticationMethod(AuthenticationMethod.CLIENT_SECRET_JWT);
+        tokenRequest.setAlgorithm(SignatureAlgorithm.HS384);
+        tokenRequest.setCryptoProvider(cryptoProvider);
+
+        TokenClient tokenClient = new TokenClient(tokenEndpoint);
+        tokenClient.setRequest(tokenRequest);
+        TokenResponse tokenResponse = tokenClient.exec();
+
+        showClient(tokenClient);
+        assertEquals(tokenResponse.getStatus(), 200, "Unexpected response code: " + tokenResponse.getStatus());
+        assertNotNull(tokenResponse.getEntity(), "The entity is null");
+        assertNotNull(tokenResponse.getAccessToken(), "The access token is null");
+        assertNotNull(tokenResponse.getExpiresIn(), "The expires in value is null");
+        assertNotNull(tokenResponse.getTokenType(), "The token type is null");
+        assertNotNull(tokenResponse.getRefreshToken(), "The refresh token is null");
+    }
+
+    @Parameters({"redirectUris", "redirectUri", "userId", "userSecret", "dnName", "keyStoreFile", "keyStoreSecret",
+            "sectorIdentifierUri"})
+    @Test
+    public void tokenEndpointAuthMethodClientSecretJwtSigningAlgHS384Fail1(
+            final String redirectUris, final String redirectUri, final String userId, final String userSecret,
+            final String dnName, final String keyStoreFile, final String keyStoreSecret, final String sectorIdentifierUri) throws Exception {
+        showTitle("tokenEndpointAuthMethodClientSecretJwtSigningAlgHS384Fail1");
+
+        // 1. Register client
+        RegisterRequest registerRequest = new RegisterRequest(ApplicationType.WEB, "oxAuth test app",
+                StringUtils.spaceSeparatedToList(redirectUris));
+        registerRequest.setTokenEndpointAuthMethod(AuthenticationMethod.CLIENT_SECRET_JWT);
+        registerRequest.setTokenEndpointAuthSigningAlg(SignatureAlgorithm.HS384);
+        registerRequest.setSectorIdentifierUri(sectorIdentifierUri);
+
+        RegisterClient registerClient = new RegisterClient(registrationEndpoint);
+        registerClient.setRequest(registerRequest);
+        RegisterResponse registerResponse = registerClient.exec();
+
+        showClient(registerClient);
+        assertEquals(registerResponse.getStatus(), 200, "Unexpected response code: " + registerResponse.getEntity());
+        assertNotNull(registerResponse.getClientId());
+        assertNotNull(registerResponse.getClientSecret());
+        assertNotNull(registerResponse.getRegistrationAccessToken());
+        assertNotNull(registerResponse.getClientIdIssuedAt());
+        assertNotNull(registerResponse.getClientSecretExpiresAt());
+
+        String clientId = registerResponse.getClientId();
+        String clientSecret = registerResponse.getClientSecret();
+        String registrationAccessToken = registerResponse.getRegistrationAccessToken();
+        String registrationClientUri = registerResponse.getRegistrationClientUri();
+
+        // 2. Client read
+        RegisterRequest readClientRequest = new RegisterRequest(registrationAccessToken);
+
+        RegisterClient readClient = new RegisterClient(registrationClientUri);
+        readClient.setRequest(readClientRequest);
+        RegisterResponse readClientResponse = readClient.exec();
+
+        showClient(readClient);
+        assertEquals(readClientResponse.getStatus(), 200, "Unexpected response code: " + readClientResponse.getEntity());
+        assertNotNull(readClientResponse.getClientId());
+        assertNotNull(readClientResponse.getClientSecret());
+        assertNotNull(readClientResponse.getClientIdIssuedAt());
+        assertNotNull(readClientResponse.getClientSecretExpiresAt());
+
+        assertTrue(readClientResponse.getClaims().containsKey(TOKEN_ENDPOINT_AUTH_METHOD.toString()));
+        assertEquals(readClientResponse.getClaims().get(TOKEN_ENDPOINT_AUTH_METHOD.toString()),
+                AuthenticationMethod.CLIENT_SECRET_JWT.toString());
+        assertTrue(readClientResponse.getClaims().containsKey(TOKEN_ENDPOINT_AUTH_SIGNING_ALG.toString()));
+        assertEquals(readClientResponse.getClaims().get(TOKEN_ENDPOINT_AUTH_SIGNING_ALG.toString()),
+                SignatureAlgorithm.HS384.toString());
+        assertNotNull(readClientResponse.getClaims().get(RESPONSE_TYPES.toString()));
+        assertNotNull(readClientResponse.getClaims().get(REDIRECT_URIS.toString()));
+        assertNotNull(readClientResponse.getClaims().get(APPLICATION_TYPE.toString()));
+        assertNotNull(readClientResponse.getClaims().get(CLIENT_NAME.toString()));
+        assertNotNull(readClientResponse.getClaims().get(ID_TOKEN_SIGNED_RESPONSE_ALG.toString()));
+        assertNotNull(readClientResponse.getClaims().get(SCOPE.toString()));
+
+        // 3. Request authorization
+        List<ResponseType> responseTypes = Arrays.asList(ResponseType.CODE);
+        List<String> scopes = Arrays.asList(
+                "openid",
+                "profile",
+                "address",
+                "email");
+        String state = UUID.randomUUID().toString();
+
+        AuthorizationRequest authorizationRequest = new AuthorizationRequest(responseTypes, clientId, scopes, redirectUri, null);
+        authorizationRequest.setState(state);
+
+        AuthorizationResponse authorizationResponse = authenticateResourceOwnerAndGrantAccess(
+                authorizationEndpoint, authorizationRequest, userId, userSecret);
+
+        assertNotNull(authorizationResponse.getLocation(), "The location is null");
+        assertNotNull(authorizationResponse.getCode(), "The authorization code is null");
+        assertNotNull(authorizationResponse.getState(), "The state is null");
+        assertNotNull(authorizationResponse.getScope(), "The scope is null");
+        assertNull(authorizationResponse.getIdToken(), "The id token is not null");
+
+        String authorizationCode = authorizationResponse.getCode();
+
+        // 4. Get Access Token
+        OxAuthCryptoProvider cryptoProvider = new OxAuthCryptoProvider(keyStoreFile, keyStoreSecret, dnName);
+
+        TokenRequest tokenRequest = new TokenRequest(GrantType.AUTHORIZATION_CODE);
+        tokenRequest.setAudience(tokenEndpoint);
+        tokenRequest.setCode(authorizationCode);
+        tokenRequest.setRedirectUri(redirectUri);
+        tokenRequest.setAuthUsername(clientId);
+        tokenRequest.setAuthPassword(clientSecret);
+        tokenRequest.setAuthenticationMethod(AuthenticationMethod.CLIENT_SECRET_JWT);
+        tokenRequest.setAlgorithm(SignatureAlgorithm.HS256);
+        tokenRequest.setCryptoProvider(cryptoProvider);
+
+        TokenClient tokenClient = new TokenClient(tokenEndpoint);
+        tokenClient.setRequest(tokenRequest);
+        TokenResponse tokenResponse = tokenClient.exec();
+
+        showClient(tokenClient);
+        assertEquals(tokenResponse.getStatus(), 401, "Unexpected response code: " + tokenResponse.getStatus());
+        assertNotNull(tokenResponse.getErrorType(), "The error type is null");
+        assertNotNull(tokenResponse.getErrorDescription(), "The error description is null");
+    }
+
+    @Parameters({"redirectUris", "redirectUri", "userId", "userSecret", "dnName", "keyStoreFile", "keyStoreSecret",
+            "sectorIdentifierUri"})
+    @Test
+    public void tokenEndpointAuthMethodClientSecretJwtSigningAlgHS384Fail2(
+            final String redirectUris, final String redirectUri, final String userId, final String userSecret,
+            final String dnName, final String keyStoreFile, final String keyStoreSecret, final String sectorIdentifierUri) throws Exception {
+        showTitle("tokenEndpointAuthMethodClientSecretJwtSigningAlgHS384Fail2");
+
+        // 1. Register client
+        RegisterRequest registerRequest = new RegisterRequest(ApplicationType.WEB, "oxAuth test app",
+                StringUtils.spaceSeparatedToList(redirectUris));
+        registerRequest.setTokenEndpointAuthMethod(AuthenticationMethod.CLIENT_SECRET_JWT);
+        registerRequest.setTokenEndpointAuthSigningAlg(SignatureAlgorithm.HS384);
+        registerRequest.setSectorIdentifierUri(sectorIdentifierUri);
+
+        RegisterClient registerClient = new RegisterClient(registrationEndpoint);
+        registerClient.setRequest(registerRequest);
+        RegisterResponse registerResponse = registerClient.exec();
+
+        showClient(registerClient);
+        assertEquals(registerResponse.getStatus(), 200, "Unexpected response code: " + registerResponse.getEntity());
+        assertNotNull(registerResponse.getClientId());
+        assertNotNull(registerResponse.getClientSecret());
+        assertNotNull(registerResponse.getRegistrationAccessToken());
+        assertNotNull(registerResponse.getClientIdIssuedAt());
+        assertNotNull(registerResponse.getClientSecretExpiresAt());
+
+        String clientId = registerResponse.getClientId();
+        String clientSecret = registerResponse.getClientSecret();
+        String registrationAccessToken = registerResponse.getRegistrationAccessToken();
+        String registrationClientUri = registerResponse.getRegistrationClientUri();
+
+        // 2. Client read
+        RegisterRequest readClientRequest = new RegisterRequest(registrationAccessToken);
+
+        RegisterClient readClient = new RegisterClient(registrationClientUri);
+        readClient.setRequest(readClientRequest);
+        RegisterResponse readClientResponse = readClient.exec();
+
+        showClient(readClient);
+        assertEquals(readClientResponse.getStatus(), 200, "Unexpected response code: " + readClientResponse.getEntity());
+        assertNotNull(readClientResponse.getClientId());
+        assertNotNull(readClientResponse.getClientSecret());
+        assertNotNull(readClientResponse.getClientIdIssuedAt());
+        assertNotNull(readClientResponse.getClientSecretExpiresAt());
+
+        assertTrue(readClientResponse.getClaims().containsKey(TOKEN_ENDPOINT_AUTH_METHOD.toString()));
+        assertEquals(readClientResponse.getClaims().get(TOKEN_ENDPOINT_AUTH_METHOD.toString()),
+                AuthenticationMethod.CLIENT_SECRET_JWT.toString());
+        assertTrue(readClientResponse.getClaims().containsKey(TOKEN_ENDPOINT_AUTH_SIGNING_ALG.toString()));
+        assertEquals(readClientResponse.getClaims().get(TOKEN_ENDPOINT_AUTH_SIGNING_ALG.toString()),
+                SignatureAlgorithm.HS384.toString());
+        assertNotNull(readClientResponse.getClaims().get(RESPONSE_TYPES.toString()));
+        assertNotNull(readClientResponse.getClaims().get(REDIRECT_URIS.toString()));
+        assertNotNull(readClientResponse.getClaims().get(APPLICATION_TYPE.toString()));
+        assertNotNull(readClientResponse.getClaims().get(CLIENT_NAME.toString()));
+        assertNotNull(readClientResponse.getClaims().get(ID_TOKEN_SIGNED_RESPONSE_ALG.toString()));
+        assertNotNull(readClientResponse.getClaims().get(SCOPE.toString()));
+
+        // 3. Request authorization
+        List<ResponseType> responseTypes = Arrays.asList(ResponseType.CODE);
+        List<String> scopes = Arrays.asList(
+                "openid",
+                "profile",
+                "address",
+                "email");
+        String state = UUID.randomUUID().toString();
+
+        AuthorizationRequest authorizationRequest = new AuthorizationRequest(responseTypes, clientId, scopes, redirectUri, null);
+        authorizationRequest.setState(state);
+
+        AuthorizationResponse authorizationResponse = authenticateResourceOwnerAndGrantAccess(
+                authorizationEndpoint, authorizationRequest, userId, userSecret);
+
+        assertNotNull(authorizationResponse.getLocation(), "The location is null");
+        assertNotNull(authorizationResponse.getCode(), "The authorization code is null");
+        assertNotNull(authorizationResponse.getState(), "The state is null");
+        assertNotNull(authorizationResponse.getScope(), "The scope is null");
+        assertNull(authorizationResponse.getIdToken(), "The id token is not null");
+
+        String authorizationCode = authorizationResponse.getCode();
+
+        // 4. Get Access Token
+        OxAuthCryptoProvider cryptoProvider = new OxAuthCryptoProvider(keyStoreFile, keyStoreSecret, dnName);
+
+        TokenRequest tokenRequest = new TokenRequest(GrantType.AUTHORIZATION_CODE);
+        tokenRequest.setAudience(tokenEndpoint);
+        tokenRequest.setCode(authorizationCode);
+        tokenRequest.setRedirectUri(redirectUri);
+        tokenRequest.setAuthUsername(clientId);
+        tokenRequest.setAuthPassword(clientSecret);
+        tokenRequest.setAuthenticationMethod(AuthenticationMethod.CLIENT_SECRET_JWT);
+        tokenRequest.setAlgorithm(SignatureAlgorithm.HS512);
+        tokenRequest.setCryptoProvider(cryptoProvider);
+
+        TokenClient tokenClient = new TokenClient(tokenEndpoint);
+        tokenClient.setRequest(tokenRequest);
+        TokenResponse tokenResponse = tokenClient.exec();
+
+        showClient(tokenClient);
+        assertEquals(tokenResponse.getStatus(), 401, "Unexpected response code: " + tokenResponse.getStatus());
+        assertNotNull(tokenResponse.getErrorType(), "The error type is null");
+        assertNotNull(tokenResponse.getErrorDescription(), "The error description is null");
+    }
+
+    @Parameters({"redirectUris", "redirectUri", "userId", "userSecret", "dnName", "keyStoreFile", "keyStoreSecret",
+            "sectorIdentifierUri"})
+    @Test
+    public void tokenEndpointAuthMethodClientSecretJwtSigningAlgHS512(
+            final String redirectUris, final String redirectUri, final String userId, final String userSecret,
+            final String dnName, final String keyStoreFile, final String keyStoreSecret, final String sectorIdentifierUri) throws Exception {
+        showTitle("tokenEndpointAuthMethodClientSecretJwtSigningAlgHS512");
+
+        // 1. Register client
+        RegisterRequest registerRequest = new RegisterRequest(ApplicationType.WEB, "oxAuth test app",
+                StringUtils.spaceSeparatedToList(redirectUris));
+        registerRequest.setTokenEndpointAuthMethod(AuthenticationMethod.CLIENT_SECRET_JWT);
+        registerRequest.setTokenEndpointAuthSigningAlg(SignatureAlgorithm.HS512);
+        registerRequest.setSectorIdentifierUri(sectorIdentifierUri);
+
+        RegisterClient registerClient = new RegisterClient(registrationEndpoint);
+        registerClient.setRequest(registerRequest);
+        RegisterResponse registerResponse = registerClient.exec();
+
+        showClient(registerClient);
+        assertEquals(registerResponse.getStatus(), 200, "Unexpected response code: " + registerResponse.getEntity());
+        assertNotNull(registerResponse.getClientId());
+        assertNotNull(registerResponse.getClientSecret());
+        assertNotNull(registerResponse.getRegistrationAccessToken());
+        assertNotNull(registerResponse.getClientIdIssuedAt());
+        assertNotNull(registerResponse.getClientSecretExpiresAt());
+
+        String clientId = registerResponse.getClientId();
+        String clientSecret = registerResponse.getClientSecret();
+        String registrationAccessToken = registerResponse.getRegistrationAccessToken();
+        String registrationClientUri = registerResponse.getRegistrationClientUri();
+
+        // 2. Client read
+        RegisterRequest readClientRequest = new RegisterRequest(registrationAccessToken);
+
+        RegisterClient readClient = new RegisterClient(registrationClientUri);
+        readClient.setRequest(readClientRequest);
+        RegisterResponse readClientResponse = readClient.exec();
+
+        showClient(readClient);
+        assertEquals(readClientResponse.getStatus(), 200, "Unexpected response code: " + readClientResponse.getEntity());
+        assertNotNull(readClientResponse.getClientId());
+        assertNotNull(readClientResponse.getClientSecret());
+        assertNotNull(readClientResponse.getClientIdIssuedAt());
+        assertNotNull(readClientResponse.getClientSecretExpiresAt());
+
+        assertTrue(readClientResponse.getClaims().containsKey(TOKEN_ENDPOINT_AUTH_METHOD.toString()));
+        assertEquals(readClientResponse.getClaims().get(TOKEN_ENDPOINT_AUTH_METHOD.toString()),
+                AuthenticationMethod.CLIENT_SECRET_JWT.toString());
+        assertTrue(readClientResponse.getClaims().containsKey(TOKEN_ENDPOINT_AUTH_SIGNING_ALG.toString()));
+        assertEquals(readClientResponse.getClaims().get(TOKEN_ENDPOINT_AUTH_SIGNING_ALG.toString()),
+                SignatureAlgorithm.HS512.toString());
+        assertNotNull(readClientResponse.getClaims().get(RESPONSE_TYPES.toString()));
+        assertNotNull(readClientResponse.getClaims().get(REDIRECT_URIS.toString()));
+        assertNotNull(readClientResponse.getClaims().get(APPLICATION_TYPE.toString()));
+        assertNotNull(readClientResponse.getClaims().get(CLIENT_NAME.toString()));
+        assertNotNull(readClientResponse.getClaims().get(ID_TOKEN_SIGNED_RESPONSE_ALG.toString()));
+        assertNotNull(readClientResponse.getClaims().get(SCOPE.toString()));
+
+        // 3. Request authorization
+        List<ResponseType> responseTypes = Arrays.asList(ResponseType.CODE);
+        List<String> scopes = Arrays.asList(
+                "openid",
+                "profile",
+                "address",
+                "email");
+        String state = UUID.randomUUID().toString();
+
+        AuthorizationRequest authorizationRequest = new AuthorizationRequest(responseTypes, clientId, scopes, redirectUri, null);
+        authorizationRequest.setState(state);
+
+        AuthorizationResponse authorizationResponse = authenticateResourceOwnerAndGrantAccess(
+                authorizationEndpoint, authorizationRequest, userId, userSecret);
+
+        assertNotNull(authorizationResponse.getLocation(), "The location is null");
+        assertNotNull(authorizationResponse.getCode(), "The authorization code is null");
+        assertNotNull(authorizationResponse.getState(), "The state is null");
+        assertNotNull(authorizationResponse.getScope(), "The scope is null");
+        assertNull(authorizationResponse.getIdToken(), "The id token is not null");
+
+        String authorizationCode = authorizationResponse.getCode();
+
+        // 4. Get Access Token
+        OxAuthCryptoProvider cryptoProvider = new OxAuthCryptoProvider(keyStoreFile, keyStoreSecret, dnName);
+
+        TokenRequest tokenRequest = new TokenRequest(GrantType.AUTHORIZATION_CODE);
+        tokenRequest.setAudience(tokenEndpoint);
+        tokenRequest.setCode(authorizationCode);
+        tokenRequest.setRedirectUri(redirectUri);
+        tokenRequest.setAuthUsername(clientId);
+        tokenRequest.setAuthPassword(clientSecret);
+        tokenRequest.setAuthenticationMethod(AuthenticationMethod.CLIENT_SECRET_JWT);
+        tokenRequest.setAlgorithm(SignatureAlgorithm.HS512);
+        tokenRequest.setCryptoProvider(cryptoProvider);
+
+        TokenClient tokenClient = new TokenClient(tokenEndpoint);
+        tokenClient.setRequest(tokenRequest);
+        TokenResponse tokenResponse = tokenClient.exec();
+
+        showClient(tokenClient);
+        assertEquals(tokenResponse.getStatus(), 200, "Unexpected response code: " + tokenResponse.getStatus());
+        assertNotNull(tokenResponse.getEntity(), "The entity is null");
+        assertNotNull(tokenResponse.getAccessToken(), "The access token is null");
+        assertNotNull(tokenResponse.getExpiresIn(), "The expires in value is null");
+        assertNotNull(tokenResponse.getTokenType(), "The token type is null");
+        assertNotNull(tokenResponse.getRefreshToken(), "The refresh token is null");
+    }
+
+    @Parameters({"redirectUris", "redirectUri", "userId", "userSecret", "dnName", "keyStoreFile", "keyStoreSecret",
+            "sectorIdentifierUri"})
+    @Test
+    public void tokenEndpointAuthMethodClientSecretJwtSigningAlgHS512Fail1(
+            final String redirectUris, final String redirectUri, final String userId, final String userSecret,
+            final String dnName, final String keyStoreFile, final String keyStoreSecret, final String sectorIdentifierUri) throws Exception {
+        showTitle("tokenEndpointAuthMethodClientSecretJwtSigningAlgHS512Fail1");
+
+        // 1. Register client
+        RegisterRequest registerRequest = new RegisterRequest(ApplicationType.WEB, "oxAuth test app",
+                StringUtils.spaceSeparatedToList(redirectUris));
+        registerRequest.setTokenEndpointAuthMethod(AuthenticationMethod.CLIENT_SECRET_JWT);
+        registerRequest.setTokenEndpointAuthSigningAlg(SignatureAlgorithm.HS512);
+        registerRequest.setSectorIdentifierUri(sectorIdentifierUri);
+
+        RegisterClient registerClient = new RegisterClient(registrationEndpoint);
+        registerClient.setRequest(registerRequest);
+        RegisterResponse registerResponse = registerClient.exec();
+
+        showClient(registerClient);
+        assertEquals(registerResponse.getStatus(), 200, "Unexpected response code: " + registerResponse.getEntity());
+        assertNotNull(registerResponse.getClientId());
+        assertNotNull(registerResponse.getClientSecret());
+        assertNotNull(registerResponse.getRegistrationAccessToken());
+        assertNotNull(registerResponse.getClientIdIssuedAt());
+        assertNotNull(registerResponse.getClientSecretExpiresAt());
+
+        String clientId = registerResponse.getClientId();
+        String clientSecret = registerResponse.getClientSecret();
+        String registrationAccessToken = registerResponse.getRegistrationAccessToken();
+        String registrationClientUri = registerResponse.getRegistrationClientUri();
+
+        // 2. Client read
+        RegisterRequest readClientRequest = new RegisterRequest(registrationAccessToken);
+
+        RegisterClient readClient = new RegisterClient(registrationClientUri);
+        readClient.setRequest(readClientRequest);
+        RegisterResponse readClientResponse = readClient.exec();
+
+        showClient(readClient);
+        assertEquals(readClientResponse.getStatus(), 200, "Unexpected response code: " + readClientResponse.getEntity());
+        assertNotNull(readClientResponse.getClientId());
+        assertNotNull(readClientResponse.getClientSecret());
+        assertNotNull(readClientResponse.getClientIdIssuedAt());
+        assertNotNull(readClientResponse.getClientSecretExpiresAt());
+
+        assertTrue(readClientResponse.getClaims().containsKey(TOKEN_ENDPOINT_AUTH_METHOD.toString()));
+        assertEquals(readClientResponse.getClaims().get(TOKEN_ENDPOINT_AUTH_METHOD.toString()),
+                AuthenticationMethod.CLIENT_SECRET_JWT.toString());
+        assertTrue(readClientResponse.getClaims().containsKey(TOKEN_ENDPOINT_AUTH_SIGNING_ALG.toString()));
+        assertEquals(readClientResponse.getClaims().get(TOKEN_ENDPOINT_AUTH_SIGNING_ALG.toString()),
+                SignatureAlgorithm.HS512.toString());
+        assertNotNull(readClientResponse.getClaims().get(RESPONSE_TYPES.toString()));
+        assertNotNull(readClientResponse.getClaims().get(REDIRECT_URIS.toString()));
+        assertNotNull(readClientResponse.getClaims().get(APPLICATION_TYPE.toString()));
+        assertNotNull(readClientResponse.getClaims().get(CLIENT_NAME.toString()));
+        assertNotNull(readClientResponse.getClaims().get(ID_TOKEN_SIGNED_RESPONSE_ALG.toString()));
+        assertNotNull(readClientResponse.getClaims().get(SCOPE.toString()));
+
+        // 3. Request authorization
+        List<ResponseType> responseTypes = Arrays.asList(ResponseType.CODE);
+        List<String> scopes = Arrays.asList(
+                "openid",
+                "profile",
+                "address",
+                "email");
+        String state = UUID.randomUUID().toString();
+
+        AuthorizationRequest authorizationRequest = new AuthorizationRequest(responseTypes, clientId, scopes, redirectUri, null);
+        authorizationRequest.setState(state);
+
+        AuthorizationResponse authorizationResponse = authenticateResourceOwnerAndGrantAccess(
+                authorizationEndpoint, authorizationRequest, userId, userSecret);
+
+        assertNotNull(authorizationResponse.getLocation(), "The location is null");
+        assertNotNull(authorizationResponse.getCode(), "The authorization code is null");
+        assertNotNull(authorizationResponse.getState(), "The state is null");
+        assertNotNull(authorizationResponse.getScope(), "The scope is null");
+        assertNull(authorizationResponse.getIdToken(), "The id token is not null");
+
+        String authorizationCode = authorizationResponse.getCode();
+
+        // 4. Get Access Token
+        OxAuthCryptoProvider cryptoProvider = new OxAuthCryptoProvider(keyStoreFile, keyStoreSecret, dnName);
+
+        TokenRequest tokenRequest = new TokenRequest(GrantType.AUTHORIZATION_CODE);
+        tokenRequest.setAudience(tokenEndpoint);
+        tokenRequest.setCode(authorizationCode);
+        tokenRequest.setRedirectUri(redirectUri);
+        tokenRequest.setAuthUsername(clientId);
+        tokenRequest.setAuthPassword(clientSecret);
+        tokenRequest.setAuthenticationMethod(AuthenticationMethod.CLIENT_SECRET_JWT);
+        tokenRequest.setAlgorithm(SignatureAlgorithm.HS256);
+        tokenRequest.setCryptoProvider(cryptoProvider);
+
+        TokenClient tokenClient = new TokenClient(tokenEndpoint);
+        tokenClient.setRequest(tokenRequest);
+        TokenResponse tokenResponse = tokenClient.exec();
+
+        showClient(tokenClient);
+        assertEquals(tokenResponse.getStatus(), 401, "Unexpected response code: " + tokenResponse.getStatus());
+        assertNotNull(tokenResponse.getErrorType(), "The error type is null");
+        assertNotNull(tokenResponse.getErrorDescription(), "The error description is null");
+    }
+
+    @Parameters({"redirectUris", "redirectUri", "userId", "userSecret", "dnName", "keyStoreFile", "keyStoreSecret",
+            "sectorIdentifierUri"})
+    @Test
+    public void tokenEndpointAuthMethodClientSecretJwtSigningAlgHS512Fail2(
+            final String redirectUris, final String redirectUri, final String userId, final String userSecret,
+            final String dnName, final String keyStoreFile, final String keyStoreSecret, final String sectorIdentifierUri) throws Exception {
+        showTitle("tokenEndpointAuthMethodClientSecretJwtSigningAlgHS512Fail2");
+
+        // 1. Register client
+        RegisterRequest registerRequest = new RegisterRequest(ApplicationType.WEB, "oxAuth test app",
+                StringUtils.spaceSeparatedToList(redirectUris));
+        registerRequest.setTokenEndpointAuthMethod(AuthenticationMethod.CLIENT_SECRET_JWT);
+        registerRequest.setTokenEndpointAuthSigningAlg(SignatureAlgorithm.HS512);
+        registerRequest.setSectorIdentifierUri(sectorIdentifierUri);
+
+        RegisterClient registerClient = new RegisterClient(registrationEndpoint);
+        registerClient.setRequest(registerRequest);
+        RegisterResponse registerResponse = registerClient.exec();
+
+        showClient(registerClient);
+        assertEquals(registerResponse.getStatus(), 200, "Unexpected response code: " + registerResponse.getEntity());
+        assertNotNull(registerResponse.getClientId());
+        assertNotNull(registerResponse.getClientSecret());
+        assertNotNull(registerResponse.getRegistrationAccessToken());
+        assertNotNull(registerResponse.getClientIdIssuedAt());
+        assertNotNull(registerResponse.getClientSecretExpiresAt());
+
+        String clientId = registerResponse.getClientId();
+        String clientSecret = registerResponse.getClientSecret();
+        String registrationAccessToken = registerResponse.getRegistrationAccessToken();
+        String registrationClientUri = registerResponse.getRegistrationClientUri();
+
+        // 2. Client read
+        RegisterRequest readClientRequest = new RegisterRequest(registrationAccessToken);
+
+        RegisterClient readClient = new RegisterClient(registrationClientUri);
+        readClient.setRequest(readClientRequest);
+        RegisterResponse readClientResponse = readClient.exec();
+
+        showClient(readClient);
+        assertEquals(readClientResponse.getStatus(), 200, "Unexpected response code: " + readClientResponse.getEntity());
+        assertNotNull(readClientResponse.getClientId());
+        assertNotNull(readClientResponse.getClientSecret());
+        assertNotNull(readClientResponse.getClientIdIssuedAt());
+        assertNotNull(readClientResponse.getClientSecretExpiresAt());
+
+        assertTrue(readClientResponse.getClaims().containsKey(TOKEN_ENDPOINT_AUTH_METHOD.toString()));
+        assertEquals(readClientResponse.getClaims().get(TOKEN_ENDPOINT_AUTH_METHOD.toString()),
+                AuthenticationMethod.CLIENT_SECRET_JWT.toString());
+        assertTrue(readClientResponse.getClaims().containsKey(TOKEN_ENDPOINT_AUTH_SIGNING_ALG.toString()));
+        assertEquals(readClientResponse.getClaims().get(TOKEN_ENDPOINT_AUTH_SIGNING_ALG.toString()),
+                SignatureAlgorithm.HS512.toString());
+        assertNotNull(readClientResponse.getClaims().get(RESPONSE_TYPES.toString()));
+        assertNotNull(readClientResponse.getClaims().get(REDIRECT_URIS.toString()));
+        assertNotNull(readClientResponse.getClaims().get(APPLICATION_TYPE.toString()));
+        assertNotNull(readClientResponse.getClaims().get(CLIENT_NAME.toString()));
+        assertNotNull(readClientResponse.getClaims().get(ID_TOKEN_SIGNED_RESPONSE_ALG.toString()));
+        assertNotNull(readClientResponse.getClaims().get(SCOPE.toString()));
+
+        // 3. Request authorization
+        List<ResponseType> responseTypes = Arrays.asList(ResponseType.CODE);
+        List<String> scopes = Arrays.asList(
+                "openid",
+                "profile",
+                "address",
+                "email");
+        String state = UUID.randomUUID().toString();
+
+        AuthorizationRequest authorizationRequest = new AuthorizationRequest(responseTypes, clientId, scopes, redirectUri, null);
+        authorizationRequest.setState(state);
+
+        AuthorizationResponse authorizationResponse = authenticateResourceOwnerAndGrantAccess(
+                authorizationEndpoint, authorizationRequest, userId, userSecret);
+
+        assertNotNull(authorizationResponse.getLocation(), "The location is null");
+        assertNotNull(authorizationResponse.getCode(), "The authorization code is null");
+        assertNotNull(authorizationResponse.getState(), "The state is null");
+        assertNotNull(authorizationResponse.getScope(), "The scope is null");
+        assertNull(authorizationResponse.getIdToken(), "The id token is not null");
+
+        String authorizationCode = authorizationResponse.getCode();
+
+        // 4. Get Access Token
+        OxAuthCryptoProvider cryptoProvider = new OxAuthCryptoProvider(keyStoreFile, keyStoreSecret, dnName);
+
+        TokenRequest tokenRequest = new TokenRequest(GrantType.AUTHORIZATION_CODE);
+        tokenRequest.setAudience(tokenEndpoint);
+        tokenRequest.setCode(authorizationCode);
+        tokenRequest.setRedirectUri(redirectUri);
+        tokenRequest.setAuthUsername(clientId);
+        tokenRequest.setAuthPassword(clientSecret);
+        tokenRequest.setAuthenticationMethod(AuthenticationMethod.CLIENT_SECRET_JWT);
+        tokenRequest.setAlgorithm(SignatureAlgorithm.HS384);
+        tokenRequest.setCryptoProvider(cryptoProvider);
+
+        TokenClient tokenClient = new TokenClient(tokenEndpoint);
+        tokenClient.setRequest(tokenRequest);
+        TokenResponse tokenResponse = tokenClient.exec();
+
+        showClient(tokenClient);
+        assertEquals(tokenResponse.getStatus(), 401, "Unexpected response code: " + tokenResponse.getStatus());
+        assertNotNull(tokenResponse.getErrorType(), "The error type is null");
+        assertNotNull(tokenResponse.getErrorDescription(), "The error description is null");
+    }
+
+    /**
+     * Fail 1: Call to Token Endpoint with Auth Method <code>client_secret_basic</code> should fail.
+     */
+    @Parameters({"redirectUris", "redirectUri", "userId", "userSecret", "sectorIdentifierUri"})
+    @Test
+    public void tokenEndpointAuthMethodClientSecretJwtFail1(
+            final String redirectUris, final String redirectUri, final String userId, final String userSecret,
+            final String sectorIdentifierUri) throws Exception {
+        showTitle("tokenEndpointAuthMethodClientSecretJwtFail1");
+
+        // 1. Register client
+        RegisterRequest registerRequest = new RegisterRequest(ApplicationType.WEB, "oxAuth test app",
+                StringUtils.spaceSeparatedToList(redirectUris));
+        registerRequest.setTokenEndpointAuthMethod(AuthenticationMethod.CLIENT_SECRET_JWT);
+        registerRequest.setSectorIdentifierUri(sectorIdentifierUri);
+
+        RegisterClient registerClient = new RegisterClient(registrationEndpoint);
+        registerClient.setRequest(registerRequest);
+        RegisterResponse registerResponse = registerClient.exec();
+
+        showClient(registerClient);
+        assertEquals(registerResponse.getStatus(), 200, "Unexpected response code: " + registerResponse.getEntity());
+        assertNotNull(registerResponse.getClientId());
+        assertNotNull(registerResponse.getClientSecret());
+        assertNotNull(registerResponse.getRegistrationAccessToken());
+        assertNotNull(registerResponse.getClientIdIssuedAt());
+        assertNotNull(registerResponse.getClientSecretExpiresAt());
+
+        String clientId = registerResponse.getClientId();
+        String clientSecret = registerResponse.getClientSecret();
+        String registrationAccessToken = registerResponse.getRegistrationAccessToken();
+        String registrationClientUri = registerResponse.getRegistrationClientUri();
+
+        // 2. Client read
+        RegisterRequest readClientRequest = new RegisterRequest(registrationAccessToken);
+
+        RegisterClient readClient = new RegisterClient(registrationClientUri);
+        readClient.setRequest(readClientRequest);
+        RegisterResponse readClientResponse = readClient.exec();
+
+        showClient(readClient);
+        assertEquals(readClientResponse.getStatus(), 200, "Unexpected response code: " + readClientResponse.getEntity());
+        assertNotNull(readClientResponse.getClientId());
+        assertNotNull(readClientResponse.getClientSecret());
+        assertNotNull(readClientResponse.getClientIdIssuedAt());
+        assertNotNull(readClientResponse.getClientSecretExpiresAt());
+
+        assertTrue(readClientResponse.getClaims().containsKey(TOKEN_ENDPOINT_AUTH_METHOD.toString()));
+        assertEquals(readClientResponse.getClaims().get(TOKEN_ENDPOINT_AUTH_METHOD.toString()),
+                AuthenticationMethod.CLIENT_SECRET_JWT.toString());
+        assertNotNull(readClientResponse.getClaims().get(RESPONSE_TYPES.toString()));
+        assertNotNull(readClientResponse.getClaims().get(REDIRECT_URIS.toString()));
+        assertNotNull(readClientResponse.getClaims().get(APPLICATION_TYPE.toString()));
+        assertNotNull(readClientResponse.getClaims().get(CLIENT_NAME.toString()));
+        assertNotNull(readClientResponse.getClaims().get(ID_TOKEN_SIGNED_RESPONSE_ALG.toString()));
+        assertNotNull(readClientResponse.getClaims().get(SCOPE.toString()));
+
+        // 3. Request authorization
+        List<ResponseType> responseTypes = Arrays.asList(ResponseType.CODE);
+        List<String> scopes = Arrays.asList(
+                "openid",
+                "profile",
+                "address",
+                "email");
+        String state = UUID.randomUUID().toString();
+
+        AuthorizationRequest authorizationRequest = new AuthorizationRequest(responseTypes, clientId, scopes, redirectUri, null);
+        authorizationRequest.setState(state);
+
+        AuthorizationResponse authorizationResponse = authenticateResourceOwnerAndGrantAccess(
+                authorizationEndpoint, authorizationRequest, userId, userSecret);
+
+        assertNotNull(authorizationResponse.getLocation(), "The location is null");
+        assertNotNull(authorizationResponse.getCode(), "The authorization code is null");
+        assertNotNull(authorizationResponse.getState(), "The state is null");
+        assertNotNull(authorizationResponse.getScope(), "The scope is null");
+        assertNull(authorizationResponse.getIdToken(), "The id token is not null");
+
+        String authorizationCode = authorizationResponse.getCode();
+
+        // 4. Get Access Token
+        TokenRequest tokenRequest = new TokenRequest(GrantType.AUTHORIZATION_CODE);
+        tokenRequest.setCode(authorizationCode);
+        tokenRequest.setRedirectUri(redirectUri);
+        tokenRequest.setAuthUsername(clientId);
+        tokenRequest.setAuthPassword(clientSecret);
+        tokenRequest.setAuthenticationMethod(AuthenticationMethod.CLIENT_SECRET_BASIC);
+
+        TokenClient tokenClient = new TokenClient(tokenEndpoint);
+        tokenClient.setRequest(tokenRequest);
+        TokenResponse tokenResponse = tokenClient.exec();
+
+        showClient(tokenClient);
+        assertEquals(tokenResponse.getStatus(), 401, "Unexpected response code: " + tokenResponse.getStatus());
+        assertNotNull(tokenResponse.getErrorType(), "The error type is null");
+        assertNotNull(tokenResponse.getErrorDescription(), "The error description is null");
+    }
+
+    /**
+     * Fail 2: Call to Token Endpoint with Auth Method <code>client_secret_post</code> should fail.
+     */
+    @Parameters({"redirectUris", "redirectUri", "userId", "userSecret", "sectorIdentifierUri"})
+    @Test
+    public void tokenEndpointAuthMethodClientSecretJwtFail2(
+            final String redirectUris, final String redirectUri, final String userId, final String userSecret,
+            final String sectorIdentifierUri) throws Exception {
+        showTitle("tokenEndpointAuthMethodClientSecretJwtFail2");
+
+        // 1. Register client
+        RegisterRequest registerRequest = new RegisterRequest(ApplicationType.WEB, "oxAuth test app",
+                StringUtils.spaceSeparatedToList(redirectUris));
+        registerRequest.setTokenEndpointAuthMethod(AuthenticationMethod.CLIENT_SECRET_JWT);
+        registerRequest.setSectorIdentifierUri(sectorIdentifierUri);
+
+        RegisterClient registerClient = new RegisterClient(registrationEndpoint);
+        registerClient.setRequest(registerRequest);
+        RegisterResponse registerResponse = registerClient.exec();
+
+        showClient(registerClient);
+        assertEquals(registerResponse.getStatus(), 200, "Unexpected response code: " + registerResponse.getEntity());
+        assertNotNull(registerResponse.getClientId());
+        assertNotNull(registerResponse.getClientSecret());
+        assertNotNull(registerResponse.getRegistrationAccessToken());
+        assertNotNull(registerResponse.getClientIdIssuedAt());
+        assertNotNull(registerResponse.getClientSecretExpiresAt());
+
+        String clientId = registerResponse.getClientId();
+        String clientSecret = registerResponse.getClientSecret();
+        String registrationAccessToken = registerResponse.getRegistrationAccessToken();
+        String registrationClientUri = registerResponse.getRegistrationClientUri();
+
+        // 2. Client read
+        RegisterRequest readClientRequest = new RegisterRequest(registrationAccessToken);
+
+        RegisterClient readClient = new RegisterClient(registrationClientUri);
+        readClient.setRequest(readClientRequest);
+        RegisterResponse readClientResponse = readClient.exec();
+
+        showClient(readClient);
+        assertEquals(readClientResponse.getStatus(), 200, "Unexpected response code: " + readClientResponse.getEntity());
+        assertNotNull(readClientResponse.getClientId());
+        assertNotNull(readClientResponse.getClientSecret());
+        assertNotNull(readClientResponse.getClientIdIssuedAt());
+        assertNotNull(readClientResponse.getClientSecretExpiresAt());
+
+        assertTrue(readClientResponse.getClaims().containsKey(TOKEN_ENDPOINT_AUTH_METHOD.toString()));
+        assertEquals(readClientResponse.getClaims().get(TOKEN_ENDPOINT_AUTH_METHOD.toString()),
+                AuthenticationMethod.CLIENT_SECRET_JWT.toString());
+        assertNotNull(readClientResponse.getClaims().get(RESPONSE_TYPES.toString()));
+        assertNotNull(readClientResponse.getClaims().get(REDIRECT_URIS.toString()));
+        assertNotNull(readClientResponse.getClaims().get(APPLICATION_TYPE.toString()));
+        assertNotNull(readClientResponse.getClaims().get(CLIENT_NAME.toString()));
+        assertNotNull(readClientResponse.getClaims().get(ID_TOKEN_SIGNED_RESPONSE_ALG.toString()));
+        assertNotNull(readClientResponse.getClaims().get(SCOPE.toString()));
+
+        // 3. Request authorization
+        List<ResponseType> responseTypes = Arrays.asList(ResponseType.CODE);
+        List<String> scopes = Arrays.asList(
+                "openid",
+                "profile",
+                "address",
+                "email");
+        String state = UUID.randomUUID().toString();
+
+        AuthorizationRequest authorizationRequest = new AuthorizationRequest(responseTypes, clientId, scopes, redirectUri, null);
+        authorizationRequest.setState(state);
+
+        AuthorizationResponse authorizationResponse = authenticateResourceOwnerAndGrantAccess(
+                authorizationEndpoint, authorizationRequest, userId, userSecret);
+
+        assertNotNull(authorizationResponse.getLocation(), "The location is null");
+        assertNotNull(authorizationResponse.getCode(), "The authorization code is null");
+        assertNotNull(authorizationResponse.getState(), "The state is null");
+        assertNotNull(authorizationResponse.getScope(), "The scope is null");
+        assertNull(authorizationResponse.getIdToken(), "The id token is not null");
+
+        String authorizationCode = authorizationResponse.getCode();
+
+        // 4. Get Access Token
+        TokenRequest tokenRequest = new TokenRequest(GrantType.AUTHORIZATION_CODE);
+        tokenRequest.setCode(authorizationCode);
+        tokenRequest.setRedirectUri(redirectUri);
+        tokenRequest.setAuthUsername(clientId);
+        tokenRequest.setAuthPassword(clientSecret);
+        tokenRequest.setAuthenticationMethod(AuthenticationMethod.CLIENT_SECRET_POST);
+
+        TokenClient tokenClient = new TokenClient(tokenEndpoint);
+        tokenClient.setRequest(tokenRequest);
+        TokenResponse tokenResponse = tokenClient.exec();
+
+        showClient(tokenClient);
+        assertEquals(tokenResponse.getStatus(), 401, "Unexpected response code: " + tokenResponse.getStatus());
+        assertNotNull(tokenResponse.getErrorType(), "The error type is null");
+        assertNotNull(tokenResponse.getErrorDescription(), "The error description is null");
+    }
+
+    /**
+     * Fail 3: Call to Token Endpoint with Auth Method <code>private_key_jwt</code> should fail.
+     */
+    @Parameters({"redirectUris", "redirectUri", "userId", "userSecret", "RS256_keyId", "keyStoreFile", "keyStoreSecret",
+            "sectorIdentifierUri"})
+    @Test
+    public void tokenEndpointAuthMethodClientSecretJwtFail3(
+            final String redirectUris, final String redirectUri, final String userId, final String userSecret,
+            final String keyId, final String keyStoreFile, final String keyStoreSecret, final String sectorIdentifierUri) throws Exception {
+        showTitle("tokenEndpointAuthMethodClientSecretJwtFail3");
+
+        // 1. Register client
+        RegisterRequest registerRequest = new RegisterRequest(ApplicationType.WEB, "oxAuth test app",
+                StringUtils.spaceSeparatedToList(redirectUris));
+        registerRequest.setTokenEndpointAuthMethod(AuthenticationMethod.CLIENT_SECRET_JWT);
+        registerRequest.setSectorIdentifierUri(sectorIdentifierUri);
+
+        RegisterClient registerClient = new RegisterClient(registrationEndpoint);
+        registerClient.setRequest(registerRequest);
+        RegisterResponse registerResponse = registerClient.exec();
+
+        showClient(registerClient);
+        assertEquals(registerResponse.getStatus(), 200, "Unexpected response code: " + registerResponse.getEntity());
+        assertNotNull(registerResponse.getClientId());
+        assertNotNull(registerResponse.getClientSecret());
+        assertNotNull(registerResponse.getRegistrationAccessToken());
+        assertNotNull(registerResponse.getClientIdIssuedAt());
+        assertNotNull(registerResponse.getClientSecretExpiresAt());
+
+        String clientId = registerResponse.getClientId();
+        String clientSecret = registerResponse.getClientSecret();
+        String registrationAccessToken = registerResponse.getRegistrationAccessToken();
+        String registrationClientUri = registerResponse.getRegistrationClientUri();
+
+        // 2. Client read
+        RegisterRequest readClientRequest = new RegisterRequest(registrationAccessToken);
+
+        RegisterClient readClient = new RegisterClient(registrationClientUri);
+        readClient.setRequest(readClientRequest);
+        RegisterResponse readClientResponse = readClient.exec();
+
+        showClient(readClient);
+        assertEquals(readClientResponse.getStatus(), 200, "Unexpected response code: " + readClientResponse.getEntity());
+        assertNotNull(readClientResponse.getClientId());
+        assertNotNull(readClientResponse.getClientSecret());
+        assertNotNull(readClientResponse.getClientIdIssuedAt());
+        assertNotNull(readClientResponse.getClientSecretExpiresAt());
+
+        assertTrue(readClientResponse.getClaims().containsKey(TOKEN_ENDPOINT_AUTH_METHOD.toString()));
+        assertEquals(readClientResponse.getClaims().get(TOKEN_ENDPOINT_AUTH_METHOD.toString()),
+                AuthenticationMethod.CLIENT_SECRET_JWT.toString());
+        assertNotNull(readClientResponse.getClaims().get(RESPONSE_TYPES.toString()));
+        assertNotNull(readClientResponse.getClaims().get(REDIRECT_URIS.toString()));
+        assertNotNull(readClientResponse.getClaims().get(APPLICATION_TYPE.toString()));
+        assertNotNull(readClientResponse.getClaims().get(CLIENT_NAME.toString()));
+        assertNotNull(readClientResponse.getClaims().get(ID_TOKEN_SIGNED_RESPONSE_ALG.toString()));
+        assertNotNull(readClientResponse.getClaims().get(SCOPE.toString()));
+
+        // 3. Request authorization
+        List<ResponseType> responseTypes = Arrays.asList(ResponseType.CODE);
+        List<String> scopes = Arrays.asList(
+                "openid",
+                "profile",
+                "address",
+                "email");
+        String state = UUID.randomUUID().toString();
+
+        AuthorizationRequest authorizationRequest = new AuthorizationRequest(responseTypes, clientId, scopes, redirectUri, null);
+        authorizationRequest.setState(state);
+
+        AuthorizationResponse authorizationResponse = authenticateResourceOwnerAndGrantAccess(
+                authorizationEndpoint, authorizationRequest, userId, userSecret);
+
+        assertNotNull(authorizationResponse.getLocation(), "The location is null");
+        assertNotNull(authorizationResponse.getCode(), "The authorization code is null");
+        assertNotNull(authorizationResponse.getState(), "The state is null");
+        assertNotNull(authorizationResponse.getScope(), "The scope is null");
+        assertNull(authorizationResponse.getIdToken(), "The id token is not null");
+
+        String authorizationCode = authorizationResponse.getCode();
+
+        // 4. Get Access Token
+        OxAuthCryptoProvider cryptoProvider = new OxAuthCryptoProvider(keyStoreFile, keyStoreSecret, null);
+
+        TokenRequest tokenRequest = new TokenRequest(GrantType.AUTHORIZATION_CODE);
+        tokenRequest.setAuthenticationMethod(AuthenticationMethod.PRIVATE_KEY_JWT);
+        tokenRequest.setAlgorithm(SignatureAlgorithm.RS256);
+        tokenRequest.setKeyId(keyId);
+        tokenRequest.setCryptoProvider(cryptoProvider);
+        tokenRequest.setAudience(tokenEndpoint);
+        tokenRequest.setCode(authorizationCode);
+        tokenRequest.setRedirectUri(redirectUri);
+        tokenRequest.setAuthUsername(clientId);
+        tokenRequest.setAuthPassword(clientSecret);
+
+
+        TokenClient tokenClient = new TokenClient(tokenEndpoint);
+        tokenClient.setRequest(tokenRequest);
+        TokenResponse tokenResponse = tokenClient.exec();
+
+        showClient(tokenClient);
+        assertEquals(tokenResponse.getStatus(), 401, "Unexpected response code: " + tokenResponse.getStatus());
+        assertNotNull(tokenResponse.getErrorType(), "The error type is null");
+        assertNotNull(tokenResponse.getErrorDescription(), "The error description is null");
+    }
+
+    /**
+     * Register a client with Token Endpoint Auth Method <code>private_key_jwt</code>.
+     * Read client to check whether it is using the Token Endpoint Auth Method <code>private_key_jwt</code>.
+     * Request authorization code.
+     * Call to Token Endpoint with Auth Method <code>private_key_jwt</code>.
+     */
+    @Parameters({"redirectUris", "redirectUri", "userId", "userSecret", "clientJwksUri", "RS256_keyId", "dnName",
+            "keyStoreFile", "keyStoreSecret", "sectorIdentifierUri"})
+    @Test
+    public void tokenEndpointAuthMethodPrivateKeyJwt(
+            final String redirectUris, final String redirectUri, final String userId, final String userSecret,
+            final String clientJwksUri, final String keyId, final String dnName, final String keyStoreFile,
+            final String keyStoreSecret, final String sectorIdentifierUri) throws Exception {
+        showTitle("tokenEndpointAuthMethodPrivateKeyJwt");
+
+        // 1. Register client
+        RegisterRequest registerRequest = new RegisterRequest(ApplicationType.WEB, "oxAuth test app",
+                StringUtils.spaceSeparatedToList(redirectUris));
+        registerRequest.setTokenEndpointAuthMethod(AuthenticationMethod.PRIVATE_KEY_JWT);
+        registerRequest.setJwksUri(clientJwksUri);
+        registerRequest.setSectorIdentifierUri(sectorIdentifierUri);
+
+        RegisterClient registerClient = new RegisterClient(registrationEndpoint);
+        registerClient.setRequest(registerRequest);
+        RegisterResponse registerResponse = registerClient.exec();
+
+        showClient(registerClient);
+        assertEquals(registerResponse.getStatus(), 200, "Unexpected response code: " + registerResponse.getEntity());
+        assertNotNull(registerResponse.getClientId());
+        assertNotNull(registerResponse.getClientSecret());
+        assertNotNull(registerResponse.getRegistrationAccessToken());
+        assertNotNull(registerResponse.getClientIdIssuedAt());
+        assertNotNull(registerResponse.getClientSecretExpiresAt());
+
+        String clientId = registerResponse.getClientId();
+        String registrationAccessToken = registerResponse.getRegistrationAccessToken();
+        String registrationClientUri = registerResponse.getRegistrationClientUri();
+
+        // 2. Client read
+        RegisterRequest readClientRequest = new RegisterRequest(registrationAccessToken);
+
+        RegisterClient readClient = new RegisterClient(registrationClientUri);
+        readClient.setRequest(readClientRequest);
+        RegisterResponse readClientResponse = readClient.exec();
+
+        showClient(readClient);
+        assertEquals(readClientResponse.getStatus(), 200, "Unexpected response code: " + readClientResponse.getEntity());
+        assertNotNull(readClientResponse.getClientId());
+        assertNotNull(readClientResponse.getClientSecret());
+        assertNotNull(readClientResponse.getClientIdIssuedAt());
+        assertNotNull(readClientResponse.getClientSecretExpiresAt());
+
+        assertTrue(readClientResponse.getClaims().containsKey(TOKEN_ENDPOINT_AUTH_METHOD.toString()));
+        assertEquals(readClientResponse.getClaims().get(TOKEN_ENDPOINT_AUTH_METHOD.toString()),
+                AuthenticationMethod.PRIVATE_KEY_JWT.toString());
+        assertNotNull(readClientResponse.getClaims().get(RESPONSE_TYPES.toString()));
+        assertNotNull(readClientResponse.getClaims().get(REDIRECT_URIS.toString()));
+        assertNotNull(readClientResponse.getClaims().get(APPLICATION_TYPE.toString()));
+        assertNotNull(readClientResponse.getClaims().get(CLIENT_NAME.toString()));
+        assertNotNull(readClientResponse.getClaims().get(ID_TOKEN_SIGNED_RESPONSE_ALG.toString()));
+        assertNotNull(readClientResponse.getClaims().get(SCOPE.toString()));
+
+        // 3. Request authorization
+        List<ResponseType> responseTypes = Arrays.asList(ResponseType.CODE);
+        List<String> scopes = Arrays.asList(
+                "openid",
+                "profile",
+                "address",
+                "email");
+        String state = UUID.randomUUID().toString();
+
+        AuthorizationRequest authorizationRequest = new AuthorizationRequest(responseTypes, clientId, scopes, redirectUri, null);
+        authorizationRequest.setState(state);
+
+        AuthorizationResponse authorizationResponse = authenticateResourceOwnerAndGrantAccess(
+                authorizationEndpoint, authorizationRequest, userId, userSecret);
+
+        assertNotNull(authorizationResponse.getLocation(), "The location is null");
+        assertNotNull(authorizationResponse.getCode(), "The authorization code is null");
+        assertNotNull(authorizationResponse.getState(), "The state is null");
+        assertNotNull(authorizationResponse.getScope(), "The scope is null");
+        assertNull(authorizationResponse.getIdToken(), "The id token is not null");
+
+        String authorizationCode = authorizationResponse.getCode();
+
+        // 4. Get Access Token
+        OxAuthCryptoProvider cryptoProvider = new OxAuthCryptoProvider(keyStoreFile, keyStoreSecret, dnName);
+
+        TokenRequest tokenRequest = new TokenRequest(GrantType.AUTHORIZATION_CODE);
+        tokenRequest.setAuthenticationMethod(AuthenticationMethod.PRIVATE_KEY_JWT);
+        tokenRequest.setAlgorithm(SignatureAlgorithm.RS256);
+        tokenRequest.setCryptoProvider(cryptoProvider);
+        tokenRequest.setKeyId(keyId);
+        tokenRequest.setAudience(tokenEndpoint);
+        tokenRequest.setCode(authorizationCode);
+        tokenRequest.setRedirectUri(redirectUri);
+        tokenRequest.setAuthUsername(clientId);
+
+        TokenClient tokenClient = new TokenClient(tokenEndpoint);
+        tokenClient.setRequest(tokenRequest);
+        TokenResponse tokenResponse = tokenClient.exec();
+
+        showClient(tokenClient);
+        assertEquals(tokenResponse.getStatus(), 200, "Unexpected response code: " + tokenResponse.getStatus());
+        assertNotNull(tokenResponse.getEntity(), "The entity is null");
+        assertNotNull(tokenResponse.getAccessToken(), "The access token is null");
+        assertNotNull(tokenResponse.getExpiresIn(), "The expires in value is null");
+        assertNotNull(tokenResponse.getTokenType(), "The token type is null");
+        assertNotNull(tokenResponse.getRefreshToken(), "The refresh token is null");
+    }
+
+    /**
+     * Fail 1: Call to Token Endpoint with Auth Method <code>client_secret_basic</code> should fail.
+     */
+    @Parameters({"redirectUris", "redirectUri", "userId", "userSecret", "sectorIdentifierUri"})
+    @Test
+    public void tokenEndpointAuthMethodPrivateKeyJwtFail1(
+            final String redirectUris, final String redirectUri, final String userId, final String userSecret,
+            final String sectorIdentifierUri) throws Exception {
+        showTitle("tokenEndpointAuthMethodPrivateKeyJwtFail1");
+
+        // 1. Register client
+        RegisterRequest registerRequest = new RegisterRequest(ApplicationType.WEB, "oxAuth test app",
+                StringUtils.spaceSeparatedToList(redirectUris));
+        registerRequest.setJwksUri(jwksUri);
+        registerRequest.setTokenEndpointAuthMethod(AuthenticationMethod.PRIVATE_KEY_JWT);
+        registerRequest.setSectorIdentifierUri(sectorIdentifierUri);
+
+        RegisterClient registerClient = new RegisterClient(registrationEndpoint);
+        registerClient.setRequest(registerRequest);
+        RegisterResponse registerResponse = registerClient.exec();
+
+        showClient(registerClient);
+        assertEquals(registerResponse.getStatus(), 200, "Unexpected response code: " + registerResponse.getEntity());
+        assertNotNull(registerResponse.getClientId());
+        assertNotNull(registerResponse.getClientSecret());
+        assertNotNull(registerResponse.getRegistrationAccessToken());
+        assertNotNull(registerResponse.getClientIdIssuedAt());
+        assertNotNull(registerResponse.getClientSecretExpiresAt());
+
+        String clientId = registerResponse.getClientId();
+        String clientSecret = registerResponse.getClientSecret();
+        String registrationAccessToken = registerResponse.getRegistrationAccessToken();
+        String registrationClientUri = registerResponse.getRegistrationClientUri();
+
+        // 2. Client read
+        RegisterRequest readClientRequest = new RegisterRequest(registrationAccessToken);
+
+        RegisterClient readClient = new RegisterClient(registrationClientUri);
+        readClient.setRequest(readClientRequest);
+        RegisterResponse readClientResponse = readClient.exec();
+
+        showClient(readClient);
+        assertEquals(readClientResponse.getStatus(), 200, "Unexpected response code: " + readClientResponse.getEntity());
+        assertNotNull(readClientResponse.getClientId());
+        assertNotNull(readClientResponse.getClientSecret());
+        assertNotNull(readClientResponse.getClientIdIssuedAt());
+        assertNotNull(readClientResponse.getClientSecretExpiresAt());
+
+        assertTrue(readClientResponse.getClaims().containsKey(TOKEN_ENDPOINT_AUTH_METHOD.toString()));
+        assertEquals(readClientResponse.getClaims().get(TOKEN_ENDPOINT_AUTH_METHOD.toString()),
+                AuthenticationMethod.PRIVATE_KEY_JWT.toString());
+        assertNotNull(readClientResponse.getClaims().get(RESPONSE_TYPES.toString()));
+        assertNotNull(readClientResponse.getClaims().get(REDIRECT_URIS.toString()));
+        assertNotNull(readClientResponse.getClaims().get(APPLICATION_TYPE.toString()));
+        assertNotNull(readClientResponse.getClaims().get(CLIENT_NAME.toString()));
+        assertNotNull(readClientResponse.getClaims().get(ID_TOKEN_SIGNED_RESPONSE_ALG.toString()));
+        assertNotNull(readClientResponse.getClaims().get(SCOPE.toString()));
+
+        // 3. Request authorization
+        List<ResponseType> responseTypes = Arrays.asList(ResponseType.CODE);
+        List<String> scopes = Arrays.asList(
+                "openid",
+                "profile",
+                "address",
+                "email");
+        String state = UUID.randomUUID().toString();
+
+        AuthorizationRequest authorizationRequest = new AuthorizationRequest(responseTypes, clientId, scopes, redirectUri, null);
+        authorizationRequest.setState(state);
+
+        AuthorizationResponse authorizationResponse = authenticateResourceOwnerAndGrantAccess(
+                authorizationEndpoint, authorizationRequest, userId, userSecret);
+
+        assertNotNull(authorizationResponse.getLocation(), "The location is null");
+        assertNotNull(authorizationResponse.getCode(), "The authorization code is null");
+        assertNotNull(authorizationResponse.getState(), "The state is null");
+        assertNotNull(authorizationResponse.getScope(), "The scope is null");
+        assertNull(authorizationResponse.getIdToken(), "The id token is not null");
+
+        String authorizationCode = authorizationResponse.getCode();
+
+        // 4. Get Access Token
+        TokenRequest tokenRequest = new TokenRequest(GrantType.AUTHORIZATION_CODE);
+        tokenRequest.setCode(authorizationCode);
+        tokenRequest.setRedirectUri(redirectUri);
+        tokenRequest.setAuthUsername(clientId);
+        tokenRequest.setAuthPassword(clientSecret);
+        tokenRequest.setAuthenticationMethod(AuthenticationMethod.CLIENT_SECRET_BASIC);
+
+        TokenClient tokenClient = new TokenClient(tokenEndpoint);
+        tokenClient.setRequest(tokenRequest);
+        TokenResponse tokenResponse = tokenClient.exec();
+
+        showClient(tokenClient);
+        assertEquals(tokenResponse.getStatus(), 401, "Unexpected response code: " + tokenResponse.getStatus());
+        assertNotNull(tokenResponse.getErrorType(), "The error type is null");
+        assertNotNull(tokenResponse.getErrorDescription(), "The error description is null");
+    }
+
+    /**
+     * Fail 2: Call to Token Endpoint with Auth Method <code>client_secret_post</code> should fail.
+     */
+    @Parameters({"redirectUris", "redirectUri", "userId", "userSecret", "sectorIdentifierUri"})
+    @Test
+    public void tokenEndpointAuthMethodPrivateKeyJwtFail2(
+            final String redirectUris, final String redirectUri, final String userId, final String userSecret,
+            final String sectorIdentifierUri) throws Exception {
+        showTitle("tokenEndpointAuthMethodPrivateKeyJwtFail2");
+
+        // 1. Register client
+        RegisterRequest registerRequest = new RegisterRequest(ApplicationType.WEB, "oxAuth test app",
+                StringUtils.spaceSeparatedToList(redirectUris));
+        registerRequest.setJwksUri(jwksUri);
+        registerRequest.setTokenEndpointAuthMethod(AuthenticationMethod.PRIVATE_KEY_JWT);
+        registerRequest.setSectorIdentifierUri(sectorIdentifierUri);
+
+        RegisterClient registerClient = new RegisterClient(registrationEndpoint);
+        registerClient.setRequest(registerRequest);
+        RegisterResponse registerResponse = registerClient.exec();
+
+        showClient(registerClient);
+        assertEquals(registerResponse.getStatus(), 200, "Unexpected response code: " + registerResponse.getEntity());
+        assertNotNull(registerResponse.getClientId());
+        assertNotNull(registerResponse.getClientSecret());
+        assertNotNull(registerResponse.getRegistrationAccessToken());
+        assertNotNull(registerResponse.getClientIdIssuedAt());
+        assertNotNull(registerResponse.getClientSecretExpiresAt());
+
+        String clientId = registerResponse.getClientId();
+        String clientSecret = registerResponse.getClientSecret();
+        String registrationAccessToken = registerResponse.getRegistrationAccessToken();
+        String registrationClientUri = registerResponse.getRegistrationClientUri();
+
+        // 2. Client read
+        RegisterRequest readClientRequest = new RegisterRequest(registrationAccessToken);
+
+        RegisterClient readClient = new RegisterClient(registrationClientUri);
+        readClient.setRequest(readClientRequest);
+        RegisterResponse readClientResponse = readClient.exec();
+
+        showClient(readClient);
+        assertEquals(readClientResponse.getStatus(), 200, "Unexpected response code: " + readClientResponse.getEntity());
+        assertNotNull(readClientResponse.getClientId());
+        assertNotNull(readClientResponse.getClientSecret());
+        assertNotNull(readClientResponse.getClientIdIssuedAt());
+        assertNotNull(readClientResponse.getClientSecretExpiresAt());
+
+        assertTrue(readClientResponse.getClaims().containsKey(TOKEN_ENDPOINT_AUTH_METHOD.toString()));
+        assertEquals(readClientResponse.getClaims().get(TOKEN_ENDPOINT_AUTH_METHOD.toString()),
+                AuthenticationMethod.PRIVATE_KEY_JWT.toString());
+        assertNotNull(readClientResponse.getClaims().get(RESPONSE_TYPES.toString()));
+        assertNotNull(readClientResponse.getClaims().get(REDIRECT_URIS.toString()));
+        assertNotNull(readClientResponse.getClaims().get(APPLICATION_TYPE.toString()));
+        assertNotNull(readClientResponse.getClaims().get(CLIENT_NAME.toString()));
+        assertNotNull(readClientResponse.getClaims().get(ID_TOKEN_SIGNED_RESPONSE_ALG.toString()));
+        assertNotNull(readClientResponse.getClaims().get(SCOPE.toString()));
+
+        // 3. Request authorization
+        List<ResponseType> responseTypes = Arrays.asList(ResponseType.CODE);
+        List<String> scopes = Arrays.asList(
+                "openid",
+                "profile",
+                "address",
+                "email");
+        String state = UUID.randomUUID().toString();
+
+        AuthorizationRequest authorizationRequest = new AuthorizationRequest(responseTypes, clientId, scopes, redirectUri, null);
+        authorizationRequest.setState(state);
+
+        AuthorizationResponse authorizationResponse = authenticateResourceOwnerAndGrantAccess(
+                authorizationEndpoint, authorizationRequest, userId, userSecret);
+
+        assertNotNull(authorizationResponse.getLocation(), "The location is null");
+        assertNotNull(authorizationResponse.getCode(), "The authorization code is null");
+        assertNotNull(authorizationResponse.getState(), "The state is null");
+        assertNotNull(authorizationResponse.getScope(), "The scope is null");
+        assertNull(authorizationResponse.getIdToken(), "The id token is not null");
+
+        String authorizationCode = authorizationResponse.getCode();
+
+        // 4. Get Access Token
+        TokenRequest tokenRequest = new TokenRequest(GrantType.AUTHORIZATION_CODE);
+        tokenRequest.setCode(authorizationCode);
+        tokenRequest.setRedirectUri(redirectUri);
+        tokenRequest.setAuthUsername(clientId);
+        tokenRequest.setAuthPassword(clientSecret);
+        tokenRequest.setAuthenticationMethod(AuthenticationMethod.CLIENT_SECRET_POST);
+
+        TokenClient tokenClient = new TokenClient(tokenEndpoint);
+        tokenClient.setRequest(tokenRequest);
+        TokenResponse tokenResponse = tokenClient.exec();
+
+        showClient(tokenClient);
+        assertEquals(tokenResponse.getStatus(), 401, "Unexpected response code: " + tokenResponse.getStatus());
+        assertNotNull(tokenResponse.getErrorType(), "The error type is null");
+        assertNotNull(tokenResponse.getErrorDescription(), "The error description is null");
+    }
+
+    /**
+     * Fail 3: Call to Token Endpoint with Auth Method <code>client_secret_jwt</code> should fail.
+     */
+    @Parameters({"redirectUris", "redirectUri", "userId", "userSecret", "sectorIdentifierUri"})
+    @Test
+    public void tokenEndpointAuthMethodPrivateKeyJwtFail3(
+            final String redirectUris, final String redirectUri, final String userId, final String userSecret,
+            final String sectorIdentifierUri) throws Exception {
+        showTitle("tokenEndpointAuthMethodPrivateKeyJwtFail3");
+
+        // 1. Register client
+        RegisterRequest registerRequest = new RegisterRequest(ApplicationType.WEB, "oxAuth test app",
+                StringUtils.spaceSeparatedToList(redirectUris));
+        registerRequest.setJwksUri(jwksUri);
+        registerRequest.setTokenEndpointAuthMethod(AuthenticationMethod.PRIVATE_KEY_JWT);
+        registerRequest.setSectorIdentifierUri(sectorIdentifierUri);
+
+        RegisterClient registerClient = new RegisterClient(registrationEndpoint);
+        registerClient.setRequest(registerRequest);
+        RegisterResponse registerResponse = registerClient.exec();
+
+        showClient(registerClient);
+        assertEquals(registerResponse.getStatus(), 200, "Unexpected response code: " + registerResponse.getEntity());
+        assertNotNull(registerResponse.getClientId());
+        assertNotNull(registerResponse.getClientSecret());
+        assertNotNull(registerResponse.getRegistrationAccessToken());
+        assertNotNull(registerResponse.getClientIdIssuedAt());
+        assertNotNull(registerResponse.getClientSecretExpiresAt());
+
+        String clientId = registerResponse.getClientId();
+        String clientSecret = registerResponse.getClientSecret();
+        String registrationAccessToken = registerResponse.getRegistrationAccessToken();
+        String registrationClientUri = registerResponse.getRegistrationClientUri();
+
+        // 2. Client read
+        RegisterRequest readClientRequest = new RegisterRequest(registrationAccessToken);
+
+        RegisterClient readClient = new RegisterClient(registrationClientUri);
+        readClient.setRequest(readClientRequest);
+        RegisterResponse readClientResponse = readClient.exec();
+
+        showClient(readClient);
+        assertEquals(readClientResponse.getStatus(), 200, "Unexpected response code: " + readClientResponse.getEntity());
+        assertNotNull(readClientResponse.getClientId());
+        assertNotNull(readClientResponse.getClientSecret());
+        assertNotNull(readClientResponse.getClientIdIssuedAt());
+        assertNotNull(readClientResponse.getClientSecretExpiresAt());
+
+        assertTrue(readClientResponse.getClaims().containsKey(TOKEN_ENDPOINT_AUTH_METHOD.toString()));
+        assertEquals(readClientResponse.getClaims().get(TOKEN_ENDPOINT_AUTH_METHOD.toString()),
+                AuthenticationMethod.PRIVATE_KEY_JWT.toString());
+        assertNotNull(readClientResponse.getClaims().get(RESPONSE_TYPES.toString()));
+        assertNotNull(readClientResponse.getClaims().get(REDIRECT_URIS.toString()));
+        assertNotNull(readClientResponse.getClaims().get(APPLICATION_TYPE.toString()));
+        assertNotNull(readClientResponse.getClaims().get(CLIENT_NAME.toString()));
+        assertNotNull(readClientResponse.getClaims().get(ID_TOKEN_SIGNED_RESPONSE_ALG.toString()));
+        assertNotNull(readClientResponse.getClaims().get(SCOPE.toString()));
+
+        // 3. Request authorization
+        List<ResponseType> responseTypes = Arrays.asList(ResponseType.CODE);
+        List<String> scopes = Arrays.asList(
+                "openid",
+                "profile",
+                "address",
+                "email");
+        String state = UUID.randomUUID().toString();
+
+        AuthorizationRequest authorizationRequest = new AuthorizationRequest(responseTypes, clientId, scopes, redirectUri, null);
+        authorizationRequest.setState(state);
+
+        AuthorizationResponse authorizationResponse = authenticateResourceOwnerAndGrantAccess(
+                authorizationEndpoint, authorizationRequest, userId, userSecret);
+
+        assertNotNull(authorizationResponse.getLocation(), "The location is null");
+        assertNotNull(authorizationResponse.getCode(), "The authorization code is null");
+        assertNotNull(authorizationResponse.getState(), "The state is null");
+        assertNotNull(authorizationResponse.getScope(), "The scope is null");
+        assertNull(authorizationResponse.getIdToken(), "The id token is not null");
+
+        String authorizationCode = authorizationResponse.getCode();
+
+        // 4. Get Access Token
+        TokenRequest tokenRequest = new TokenRequest(GrantType.AUTHORIZATION_CODE);
+        tokenRequest.setAudience(tokenEndpoint);
+        tokenRequest.setCode(authorizationCode);
+        tokenRequest.setRedirectUri(redirectUri);
+        tokenRequest.setAuthUsername(clientId);
+        tokenRequest.setAuthPassword(clientSecret);
+        tokenRequest.setAuthenticationMethod(AuthenticationMethod.CLIENT_SECRET_JWT);
+
+        TokenClient tokenClient = new TokenClient(tokenEndpoint);
+        tokenClient.setRequest(tokenRequest);
+        TokenResponse tokenResponse = tokenClient.exec();
+
+        showClient(tokenClient);
+        assertEquals(tokenResponse.getStatus(), 401, "Unexpected response code: " + tokenResponse.getStatus());
+        assertNotNull(tokenResponse.getErrorType(), "The error type is null");
+        assertNotNull(tokenResponse.getErrorDescription(), "The error description is null");
+    }
+
+    @Parameters({"redirectUris", "redirectUri", "userId", "userSecret", "clientJwksUri", "RS256_keyId", "dnName",
+            "keyStoreFile", "keyStoreSecret", "sectorIdentifierUri"})
+    @Test
+    public void tokenEndpointAuthMethodPrivateKeyJwtRS256(
+            final String redirectUris, final String redirectUri, final String userId, final String userSecret,
+            final String clientJwksUri, final String keyId, final String dnName, final String keyStoreFile,
+            final String keyStoreSecret, final String sectorIdentifierUri) throws Exception {
+        showTitle("tokenEndpointAuthMethodPrivateKeyJwtRS256");
+
+        // 1. Register client
+        RegisterRequest registerRequest = new RegisterRequest(ApplicationType.WEB, "oxAuth test app",
+                StringUtils.spaceSeparatedToList(redirectUris));
+        registerRequest.setTokenEndpointAuthMethod(AuthenticationMethod.PRIVATE_KEY_JWT);
+        registerRequest.setJwksUri(clientJwksUri);
+        registerRequest.setSectorIdentifierUri(sectorIdentifierUri);
+
+        RegisterClient registerClient = new RegisterClient(registrationEndpoint);
+        registerClient.setRequest(registerRequest);
+        RegisterResponse registerResponse = registerClient.exec();
+
+        showClient(registerClient);
+        assertEquals(registerResponse.getStatus(), 200, "Unexpected response code: " + registerResponse.getEntity());
+        assertNotNull(registerResponse.getClientId());
+        assertNotNull(registerResponse.getClientSecret());
+        assertNotNull(registerResponse.getRegistrationAccessToken());
+        assertNotNull(registerResponse.getClientIdIssuedAt());
+        assertNotNull(registerResponse.getClientSecretExpiresAt());
+
+        String clientId = registerResponse.getClientId();
+        String registrationAccessToken = registerResponse.getRegistrationAccessToken();
+        String registrationClientUri = registerResponse.getRegistrationClientUri();
+
+        // 2. Client read
+        RegisterRequest readClientRequest = new RegisterRequest(registrationAccessToken);
+
+        RegisterClient readClient = new RegisterClient(registrationClientUri);
+        readClient.setRequest(readClientRequest);
+        RegisterResponse readClientResponse = readClient.exec();
+
+        showClient(readClient);
+        assertEquals(readClientResponse.getStatus(), 200, "Unexpected response code: " + readClientResponse.getEntity());
+        assertNotNull(readClientResponse.getClientId());
+        assertNotNull(readClientResponse.getClientSecret());
+        assertNotNull(readClientResponse.getClientIdIssuedAt());
+        assertNotNull(readClientResponse.getClientSecretExpiresAt());
+
+        assertTrue(readClientResponse.getClaims().containsKey(TOKEN_ENDPOINT_AUTH_METHOD.toString()));
+        assertEquals(readClientResponse.getClaims().get(TOKEN_ENDPOINT_AUTH_METHOD.toString()),
+                AuthenticationMethod.PRIVATE_KEY_JWT.toString());
+        assertNotNull(readClientResponse.getClaims().get(RESPONSE_TYPES.toString()));
+        assertNotNull(readClientResponse.getClaims().get(REDIRECT_URIS.toString()));
+        assertNotNull(readClientResponse.getClaims().get(APPLICATION_TYPE.toString()));
+        assertNotNull(readClientResponse.getClaims().get(CLIENT_NAME.toString()));
+        assertNotNull(readClientResponse.getClaims().get(ID_TOKEN_SIGNED_RESPONSE_ALG.toString()));
+        assertNotNull(readClientResponse.getClaims().get(SCOPE.toString()));
+
+        // 3. Request authorization
+        List<ResponseType> responseTypes = Arrays.asList(ResponseType.CODE);
+        List<String> scopes = Arrays.asList(
+                "openid",
+                "profile",
+                "address",
+                "email");
+        String state = UUID.randomUUID().toString();
+
+        AuthorizationRequest authorizationRequest = new AuthorizationRequest(responseTypes, clientId, scopes, redirectUri, null);
+        authorizationRequest.setState(state);
+
+        AuthorizationResponse authorizationResponse = authenticateResourceOwnerAndGrantAccess(
+                authorizationEndpoint, authorizationRequest, userId, userSecret);
+
+        assertNotNull(authorizationResponse.getLocation(), "The location is null");
+        assertNotNull(authorizationResponse.getCode(), "The authorization code is null");
+        assertNotNull(authorizationResponse.getState(), "The state is null");
+        assertNotNull(authorizationResponse.getScope(), "The scope is null");
+        assertNull(authorizationResponse.getIdToken(), "The id token is not null");
+
+        String authorizationCode = authorizationResponse.getCode();
+
+        // 4. Get Access Token
+        OxAuthCryptoProvider cryptoProvider = new OxAuthCryptoProvider(keyStoreFile, keyStoreSecret, dnName);
+
+        TokenRequest tokenRequest = new TokenRequest(GrantType.AUTHORIZATION_CODE);
+        tokenRequest.setAuthenticationMethod(AuthenticationMethod.PRIVATE_KEY_JWT);
+        tokenRequest.setAlgorithm(SignatureAlgorithm.RS256);
+        tokenRequest.setCryptoProvider(cryptoProvider);
+        tokenRequest.setKeyId(keyId);
+        tokenRequest.setAudience(tokenEndpoint);
+        tokenRequest.setCode(authorizationCode);
+        tokenRequest.setRedirectUri(redirectUri);
+        tokenRequest.setAuthUsername(clientId);
+
+        TokenClient tokenClient = new TokenClient(tokenEndpoint);
+        tokenClient.setRequest(tokenRequest);
+        TokenResponse tokenResponse = tokenClient.exec();
+
+        showClient(tokenClient);
+        assertEquals(tokenResponse.getStatus(), 200, "Unexpected response code: " + tokenResponse.getStatus());
+        assertNotNull(tokenResponse.getEntity(), "The entity is null");
+        assertNotNull(tokenResponse.getAccessToken(), "The access token is null");
+        assertNotNull(tokenResponse.getExpiresIn(), "The expires in value is null");
+        assertNotNull(tokenResponse.getTokenType(), "The token type is null");
+        assertNotNull(tokenResponse.getRefreshToken(), "The refresh token is null");
+    }
+
+    @Parameters({"redirectUris", "redirectUri", "userId", "userSecret", "clientJwksUri", "RS384_keyId", "dnName",
+            "keyStoreFile", "keyStoreSecret", "sectorIdentifierUri"})
+    @Test
+    public void tokenEndpointAuthMethodPrivateKeyJwtRS384(
+            final String redirectUris, final String redirectUri, final String userId, final String userSecret,
+            final String clientJwksUri, final String keyId, final String dnName, final String keyStoreFile,
+            final String keyStoreSecret, final String sectorIdentifierUri) throws Exception {
+        showTitle("tokenEndpointAuthMethodPrivateKeyJwtRS384");
+
+        // 1. Register client
+        RegisterRequest registerRequest = new RegisterRequest(ApplicationType.WEB, "oxAuth test app",
+                StringUtils.spaceSeparatedToList(redirectUris));
+        registerRequest.setTokenEndpointAuthMethod(AuthenticationMethod.PRIVATE_KEY_JWT);
+        registerRequest.setJwksUri(clientJwksUri);
+        registerRequest.setSectorIdentifierUri(sectorIdentifierUri);
+
+        RegisterClient registerClient = new RegisterClient(registrationEndpoint);
+        registerClient.setRequest(registerRequest);
+        RegisterResponse registerResponse = registerClient.exec();
+
+        showClient(registerClient);
+        assertEquals(registerResponse.getStatus(), 200, "Unexpected response code: " + registerResponse.getEntity());
+        assertNotNull(registerResponse.getClientId());
+        assertNotNull(registerResponse.getClientSecret());
+        assertNotNull(registerResponse.getRegistrationAccessToken());
+        assertNotNull(registerResponse.getClientIdIssuedAt());
+        assertNotNull(registerResponse.getClientSecretExpiresAt());
+
+        String clientId = registerResponse.getClientId();
+        String registrationAccessToken = registerResponse.getRegistrationAccessToken();
+        String registrationClientUri = registerResponse.getRegistrationClientUri();
+
+        // 2. Client read
+        RegisterRequest readClientRequest = new RegisterRequest(registrationAccessToken);
+
+        RegisterClient readClient = new RegisterClient(registrationClientUri);
+        readClient.setRequest(readClientRequest);
+        RegisterResponse readClientResponse = readClient.exec();
+
+        showClient(readClient);
+        assertEquals(readClientResponse.getStatus(), 200, "Unexpected response code: " + readClientResponse.getEntity());
+        assertNotNull(readClientResponse.getClientId());
+        assertNotNull(readClientResponse.getClientSecret());
+        assertNotNull(readClientResponse.getClientIdIssuedAt());
+        assertNotNull(readClientResponse.getClientSecretExpiresAt());
+
+        assertTrue(readClientResponse.getClaims().containsKey(TOKEN_ENDPOINT_AUTH_METHOD.toString()));
+        assertEquals(readClientResponse.getClaims().get(TOKEN_ENDPOINT_AUTH_METHOD.toString()),
+                AuthenticationMethod.PRIVATE_KEY_JWT.toString());
+        assertNotNull(readClientResponse.getClaims().get(RESPONSE_TYPES.toString()));
+        assertNotNull(readClientResponse.getClaims().get(REDIRECT_URIS.toString()));
+        assertNotNull(readClientResponse.getClaims().get(APPLICATION_TYPE.toString()));
+        assertNotNull(readClientResponse.getClaims().get(CLIENT_NAME.toString()));
+        assertNotNull(readClientResponse.getClaims().get(ID_TOKEN_SIGNED_RESPONSE_ALG.toString()));
+        assertNotNull(readClientResponse.getClaims().get(SCOPE.toString()));
+
+        // 3. Request authorization
+        List<ResponseType> responseTypes = Arrays.asList(ResponseType.CODE);
+        List<String> scopes = Arrays.asList(
+                "openid",
+                "profile",
+                "address",
+                "email");
+        String state = UUID.randomUUID().toString();
+
+        AuthorizationRequest authorizationRequest = new AuthorizationRequest(responseTypes, clientId, scopes, redirectUri, null);
+        authorizationRequest.setState(state);
+
+        AuthorizationResponse authorizationResponse = authenticateResourceOwnerAndGrantAccess(
+                authorizationEndpoint, authorizationRequest, userId, userSecret);
+
+        assertNotNull(authorizationResponse.getLocation(), "The location is null");
+        assertNotNull(authorizationResponse.getCode(), "The authorization code is null");
+        assertNotNull(authorizationResponse.getState(), "The state is null");
+        assertNotNull(authorizationResponse.getScope(), "The scope is null");
+        assertNull(authorizationResponse.getIdToken(), "The id token is not null");
+
+        String authorizationCode = authorizationResponse.getCode();
+
+        // 4. Get Access Token
+        OxAuthCryptoProvider cryptoProvider = new OxAuthCryptoProvider(keyStoreFile, keyStoreSecret, dnName);
+
+        TokenRequest tokenRequest = new TokenRequest(GrantType.AUTHORIZATION_CODE);
+        tokenRequest.setAuthenticationMethod(AuthenticationMethod.PRIVATE_KEY_JWT);
+        tokenRequest.setAlgorithm(SignatureAlgorithm.RS384);
+        tokenRequest.setCryptoProvider(cryptoProvider);
+        tokenRequest.setKeyId(keyId);
+        tokenRequest.setAudience(tokenEndpoint);
+        tokenRequest.setCode(authorizationCode);
+        tokenRequest.setRedirectUri(redirectUri);
+        tokenRequest.setAuthUsername(clientId);
+
+        TokenClient tokenClient = new TokenClient(tokenEndpoint);
+        tokenClient.setRequest(tokenRequest);
+        TokenResponse tokenResponse = tokenClient.exec();
+
+        showClient(tokenClient);
+        assertEquals(tokenResponse.getStatus(), 200, "Unexpected response code: " + tokenResponse.getStatus());
+        assertNotNull(tokenResponse.getEntity(), "The entity is null");
+        assertNotNull(tokenResponse.getAccessToken(), "The access token is null");
+        assertNotNull(tokenResponse.getExpiresIn(), "The expires in value is null");
+        assertNotNull(tokenResponse.getTokenType(), "The token type is null");
+        assertNotNull(tokenResponse.getRefreshToken(), "The refresh token is null");
+    }
+
+    @Parameters({"redirectUris", "redirectUri", "userId", "userSecret", "clientJwksUri", "RS512_keyId", "dnName",
+            "keyStoreFile", "keyStoreSecret", "sectorIdentifierUri"})
+    @Test
+    public void tokenEndpointAuthMethodPrivateKeyJwtRS512(
+            final String redirectUris, final String redirectUri, final String userId, final String userSecret,
+            final String clientJwksUri, final String keyId, final String dnName, final String keyStoreFile,
+            final String keyStoreSecret, final String sectorIdentifierUri) throws Exception {
+        showTitle("tokenEndpointAuthMethodPrivateKeyJwtRS512");
+
+        // 1. Register client
+        RegisterRequest registerRequest = new RegisterRequest(ApplicationType.WEB, "oxAuth test app",
+                StringUtils.spaceSeparatedToList(redirectUris));
+        registerRequest.setTokenEndpointAuthMethod(AuthenticationMethod.PRIVATE_KEY_JWT);
+        registerRequest.setJwksUri(clientJwksUri);
+        registerRequest.setSectorIdentifierUri(sectorIdentifierUri);
+
+        RegisterClient registerClient = new RegisterClient(registrationEndpoint);
+        registerClient.setRequest(registerRequest);
+        RegisterResponse registerResponse = registerClient.exec();
+
+        showClient(registerClient);
+        assertEquals(registerResponse.getStatus(), 200, "Unexpected response code: " + registerResponse.getEntity());
+        assertNotNull(registerResponse.getClientId());
+        assertNotNull(registerResponse.getClientSecret());
+        assertNotNull(registerResponse.getRegistrationAccessToken());
+        assertNotNull(registerResponse.getClientIdIssuedAt());
+        assertNotNull(registerResponse.getClientSecretExpiresAt());
+
+        String clientId = registerResponse.getClientId();
+        String registrationAccessToken = registerResponse.getRegistrationAccessToken();
+        String registrationClientUri = registerResponse.getRegistrationClientUri();
+
+        // 2. Client read
+        RegisterRequest readClientRequest = new RegisterRequest(registrationAccessToken);
+
+        RegisterClient readClient = new RegisterClient(registrationClientUri);
+        readClient.setRequest(readClientRequest);
+        RegisterResponse readClientResponse = readClient.exec();
+
+        showClient(readClient);
+        assertEquals(readClientResponse.getStatus(), 200, "Unexpected response code: " + readClientResponse.getEntity());
+        assertNotNull(readClientResponse.getClientId());
+        assertNotNull(readClientResponse.getClientSecret());
+        assertNotNull(readClientResponse.getClientIdIssuedAt());
+        assertNotNull(readClientResponse.getClientSecretExpiresAt());
+
+        assertTrue(readClientResponse.getClaims().containsKey(TOKEN_ENDPOINT_AUTH_METHOD.toString()));
+        assertEquals(readClientResponse.getClaims().get(TOKEN_ENDPOINT_AUTH_METHOD.toString()),
+                AuthenticationMethod.PRIVATE_KEY_JWT.toString());
+        assertNotNull(readClientResponse.getClaims().get(RESPONSE_TYPES.toString()));
+        assertNotNull(readClientResponse.getClaims().get(REDIRECT_URIS.toString()));
+        assertNotNull(readClientResponse.getClaims().get(APPLICATION_TYPE.toString()));
+        assertNotNull(readClientResponse.getClaims().get(CLIENT_NAME.toString()));
+        assertNotNull(readClientResponse.getClaims().get(ID_TOKEN_SIGNED_RESPONSE_ALG.toString()));
+        assertNotNull(readClientResponse.getClaims().get(SCOPE.toString()));
+
+        // 3. Request authorization
+        List<ResponseType> responseTypes = Arrays.asList(ResponseType.CODE);
+        List<String> scopes = Arrays.asList(
+                "openid",
+                "profile",
+                "address",
+                "email");
+        String state = UUID.randomUUID().toString();
+
+        AuthorizationRequest authorizationRequest = new AuthorizationRequest(responseTypes, clientId, scopes, redirectUri, null);
+        authorizationRequest.setState(state);
+
+        AuthorizationResponse authorizationResponse = authenticateResourceOwnerAndGrantAccess(
+                authorizationEndpoint, authorizationRequest, userId, userSecret);
+
+        assertNotNull(authorizationResponse.getLocation(), "The location is null");
+        assertNotNull(authorizationResponse.getCode(), "The authorization code is null");
+        assertNotNull(authorizationResponse.getState(), "The state is null");
+        assertNotNull(authorizationResponse.getScope(), "The scope is null");
+        assertNull(authorizationResponse.getIdToken(), "The id token is not null");
+
+        String authorizationCode = authorizationResponse.getCode();
+
+        // 4. Get Access Token
+        OxAuthCryptoProvider cryptoProvider = new OxAuthCryptoProvider(keyStoreFile, keyStoreSecret, dnName);
+
+        TokenRequest tokenRequest = new TokenRequest(GrantType.AUTHORIZATION_CODE);
+        tokenRequest.setAuthenticationMethod(AuthenticationMethod.PRIVATE_KEY_JWT);
+        tokenRequest.setAlgorithm(SignatureAlgorithm.RS512);
+        tokenRequest.setCryptoProvider(cryptoProvider);
+        tokenRequest.setKeyId(keyId);
+        tokenRequest.setAudience(tokenEndpoint);
+        tokenRequest.setCode(authorizationCode);
+        tokenRequest.setRedirectUri(redirectUri);
+        tokenRequest.setAuthUsername(clientId);
+
+        TokenClient tokenClient = new TokenClient(tokenEndpoint);
+        tokenClient.setRequest(tokenRequest);
+        TokenResponse tokenResponse = tokenClient.exec();
+
+        showClient(tokenClient);
+        assertEquals(tokenResponse.getStatus(), 200, "Unexpected response code: " + tokenResponse.getStatus());
+        assertNotNull(tokenResponse.getEntity(), "The entity is null");
+        assertNotNull(tokenResponse.getAccessToken(), "The access token is null");
+        assertNotNull(tokenResponse.getExpiresIn(), "The expires in value is null");
+        assertNotNull(tokenResponse.getTokenType(), "The token type is null");
+        assertNotNull(tokenResponse.getRefreshToken(), "The refresh token is null");
+    }
+
+    @Parameters({"redirectUris", "redirectUri", "userId", "userSecret", "clientJwksUri", "ES256_keyId", "dnName",
+            "keyStoreFile", "keyStoreSecret", "sectorIdentifierUri"})
+    @Test
+    public void tokenEndpointAuthMethodPrivateKeyJwtES256(
+            final String redirectUris, final String redirectUri, final String userId, final String userSecret,
+            final String clientJwksUri, final String keyId, final String dnName, final String keyStoreFile,
+            final String keyStoreSecret, final String sectorIdentifierUri) throws Exception {
+        showTitle("tokenEndpointAuthMethodPrivateKeyJwtES256");
+
+        // 1. Register client
+        RegisterRequest registerRequest = new RegisterRequest(ApplicationType.WEB, "oxAuth test app",
+                StringUtils.spaceSeparatedToList(redirectUris));
+        registerRequest.setTokenEndpointAuthMethod(AuthenticationMethod.PRIVATE_KEY_JWT);
+        registerRequest.setJwksUri(clientJwksUri);
+        registerRequest.setSectorIdentifierUri(sectorIdentifierUri);
+
+        RegisterClient registerClient = new RegisterClient(registrationEndpoint);
+        registerClient.setRequest(registerRequest);
+        RegisterResponse registerResponse = registerClient.exec();
+
+        showClient(registerClient);
+        assertEquals(registerResponse.getStatus(), 200, "Unexpected response code: " + registerResponse.getEntity());
+        assertNotNull(registerResponse.getClientId());
+        assertNotNull(registerResponse.getClientSecret());
+        assertNotNull(registerResponse.getRegistrationAccessToken());
+        assertNotNull(registerResponse.getClientIdIssuedAt());
+        assertNotNull(registerResponse.getClientSecretExpiresAt());
+
+        String clientId = registerResponse.getClientId();
+        String registrationAccessToken = registerResponse.getRegistrationAccessToken();
+        String registrationClientUri = registerResponse.getRegistrationClientUri();
+
+        // 2. Client read
+        RegisterRequest readClientRequest = new RegisterRequest(registrationAccessToken);
+
+        RegisterClient readClient = new RegisterClient(registrationClientUri);
+        readClient.setRequest(readClientRequest);
+        RegisterResponse readClientResponse = readClient.exec();
+
+        showClient(readClient);
+        assertEquals(readClientResponse.getStatus(), 200, "Unexpected response code: " + readClientResponse.getEntity());
+        assertNotNull(readClientResponse.getClientId());
+        assertNotNull(readClientResponse.getClientSecret());
+        assertNotNull(readClientResponse.getClientIdIssuedAt());
+        assertNotNull(readClientResponse.getClientSecretExpiresAt());
+
+        assertTrue(readClientResponse.getClaims().containsKey(TOKEN_ENDPOINT_AUTH_METHOD.toString()));
+        assertEquals(readClientResponse.getClaims().get(TOKEN_ENDPOINT_AUTH_METHOD.toString()),
+                AuthenticationMethod.PRIVATE_KEY_JWT.toString());
+        assertNotNull(readClientResponse.getClaims().get(RESPONSE_TYPES.toString()));
+        assertNotNull(readClientResponse.getClaims().get(REDIRECT_URIS.toString()));
+        assertNotNull(readClientResponse.getClaims().get(APPLICATION_TYPE.toString()));
+        assertNotNull(readClientResponse.getClaims().get(CLIENT_NAME.toString()));
+        assertNotNull(readClientResponse.getClaims().get(ID_TOKEN_SIGNED_RESPONSE_ALG.toString()));
+        assertNotNull(readClientResponse.getClaims().get(SCOPE.toString()));
+
+        // 3. Request authorization
+        List<ResponseType> responseTypes = Arrays.asList(ResponseType.CODE);
+        List<String> scopes = Arrays.asList(
+                "openid",
+                "profile",
+                "address",
+                "email");
+        String state = UUID.randomUUID().toString();
+
+        AuthorizationRequest authorizationRequest = new AuthorizationRequest(responseTypes, clientId, scopes, redirectUri, null);
+        authorizationRequest.setState(state);
+
+        AuthorizationResponse authorizationResponse = authenticateResourceOwnerAndGrantAccess(
+                authorizationEndpoint, authorizationRequest, userId, userSecret);
+
+        assertNotNull(authorizationResponse.getLocation(), "The location is null");
+        assertNotNull(authorizationResponse.getCode(), "The authorization code is null");
+        assertNotNull(authorizationResponse.getState(), "The state is null");
+        assertNotNull(authorizationResponse.getScope(), "The scope is null");
+        assertNull(authorizationResponse.getIdToken(), "The id token is not null");
+
+        String authorizationCode = authorizationResponse.getCode();
+
+        // 4. Get Access Token
+        OxAuthCryptoProvider cryptoProvider = new OxAuthCryptoProvider(keyStoreFile, keyStoreSecret, dnName);
+
+        TokenRequest tokenRequest = new TokenRequest(GrantType.AUTHORIZATION_CODE);
+        tokenRequest.setAuthenticationMethod(AuthenticationMethod.PRIVATE_KEY_JWT);
+        tokenRequest.setAlgorithm(SignatureAlgorithm.ES256);
+        tokenRequest.setCryptoProvider(cryptoProvider);
+        tokenRequest.setKeyId(keyId);
+        tokenRequest.setAudience(tokenEndpoint);
+        tokenRequest.setCode(authorizationCode);
+        tokenRequest.setRedirectUri(redirectUri);
+        tokenRequest.setAuthUsername(clientId);
+
+        TokenClient tokenClient = new TokenClient(tokenEndpoint);
+        tokenClient.setRequest(tokenRequest);
+        TokenResponse tokenResponse = tokenClient.exec();
+
+        showClient(tokenClient);
+        assertEquals(tokenResponse.getStatus(), 200, "Unexpected response code: " + tokenResponse.getStatus());
+        assertNotNull(tokenResponse.getEntity(), "The entity is null");
+        assertNotNull(tokenResponse.getAccessToken(), "The access token is null");
+        assertNotNull(tokenResponse.getExpiresIn(), "The expires in value is null");
+        assertNotNull(tokenResponse.getTokenType(), "The token type is null");
+        assertNotNull(tokenResponse.getRefreshToken(), "The refresh token is null");
+    }
+
+    @Parameters({"redirectUris", "redirectUri", "userId", "userSecret", "clientJwksUri", "ES384_keyId", "dnName",
+            "keyStoreFile", "keyStoreSecret", "sectorIdentifierUri"})
+    @Test
+    public void tokenEndpointAuthMethodPrivateKeyJwtES384(
+            final String redirectUris, final String redirectUri, final String userId, final String userSecret,
+            final String clientJwksUri, final String keyId, final String dnName, final String keyStoreFile,
+            final String keyStoreSecret, final String sectorIdentifierUri) throws Exception {
+        showTitle("tokenEndpointAuthMethodPrivateKeyJwtES384");
+
+        // 1. Register client
+        RegisterRequest registerRequest = new RegisterRequest(ApplicationType.WEB, "oxAuth test app",
+                StringUtils.spaceSeparatedToList(redirectUris));
+        registerRequest.setTokenEndpointAuthMethod(AuthenticationMethod.PRIVATE_KEY_JWT);
+        registerRequest.setJwksUri(clientJwksUri);
+        registerRequest.setSectorIdentifierUri(sectorIdentifierUri);
+
+        RegisterClient registerClient = new RegisterClient(registrationEndpoint);
+        registerClient.setRequest(registerRequest);
+        RegisterResponse registerResponse = registerClient.exec();
+
+        showClient(registerClient);
+        assertEquals(registerResponse.getStatus(), 200, "Unexpected response code: " + registerResponse.getEntity());
+        assertNotNull(registerResponse.getClientId());
+        assertNotNull(registerResponse.getClientSecret());
+        assertNotNull(registerResponse.getRegistrationAccessToken());
+        assertNotNull(registerResponse.getClientIdIssuedAt());
+        assertNotNull(registerResponse.getClientSecretExpiresAt());
+
+        String clientId = registerResponse.getClientId();
+        String registrationAccessToken = registerResponse.getRegistrationAccessToken();
+        String registrationClientUri = registerResponse.getRegistrationClientUri();
+
+        // 2. Client read
+        RegisterRequest readClientRequest = new RegisterRequest(registrationAccessToken);
+
+        RegisterClient readClient = new RegisterClient(registrationClientUri);
+        readClient.setRequest(readClientRequest);
+        RegisterResponse readClientResponse = readClient.exec();
+
+        showClient(readClient);
+        assertEquals(readClientResponse.getStatus(), 200, "Unexpected response code: " + readClientResponse.getEntity());
+        assertNotNull(readClientResponse.getClientId());
+        assertNotNull(readClientResponse.getClientSecret());
+        assertNotNull(readClientResponse.getClientIdIssuedAt());
+        assertNotNull(readClientResponse.getClientSecretExpiresAt());
+
+        assertTrue(readClientResponse.getClaims().containsKey(TOKEN_ENDPOINT_AUTH_METHOD.toString()));
+        assertEquals(readClientResponse.getClaims().get(TOKEN_ENDPOINT_AUTH_METHOD.toString()),
+                AuthenticationMethod.PRIVATE_KEY_JWT.toString());
+        assertNotNull(readClientResponse.getClaims().get(RESPONSE_TYPES.toString()));
+        assertNotNull(readClientResponse.getClaims().get(REDIRECT_URIS.toString()));
+        assertNotNull(readClientResponse.getClaims().get(APPLICATION_TYPE.toString()));
+        assertNotNull(readClientResponse.getClaims().get(CLIENT_NAME.toString()));
+        assertNotNull(readClientResponse.getClaims().get(ID_TOKEN_SIGNED_RESPONSE_ALG.toString()));
+        assertNotNull(readClientResponse.getClaims().get(SCOPE.toString()));
+
+        // 3. Request authorization
+        List<ResponseType> responseTypes = Arrays.asList(ResponseType.CODE);
+        List<String> scopes = Arrays.asList(
+                "openid",
+                "profile",
+                "address",
+                "email");
+        String state = UUID.randomUUID().toString();
+
+        AuthorizationRequest authorizationRequest = new AuthorizationRequest(responseTypes, clientId, scopes, redirectUri, null);
+        authorizationRequest.setState(state);
+
+        AuthorizationResponse authorizationResponse = authenticateResourceOwnerAndGrantAccess(
+                authorizationEndpoint, authorizationRequest, userId, userSecret);
+
+        assertNotNull(authorizationResponse.getLocation(), "The location is null");
+        assertNotNull(authorizationResponse.getCode(), "The authorization code is null");
+        assertNotNull(authorizationResponse.getState(), "The state is null");
+        assertNotNull(authorizationResponse.getScope(), "The scope is null");
+        assertNull(authorizationResponse.getIdToken(), "The id token is not null");
+
+        String authorizationCode = authorizationResponse.getCode();
+
+        // 4. Get Access Token
+        OxAuthCryptoProvider cryptoProvider = new OxAuthCryptoProvider(keyStoreFile, keyStoreSecret, dnName);
+
+        TokenRequest tokenRequest = new TokenRequest(GrantType.AUTHORIZATION_CODE);
+        tokenRequest.setAuthenticationMethod(AuthenticationMethod.PRIVATE_KEY_JWT);
+        tokenRequest.setAlgorithm(SignatureAlgorithm.ES384);
+        tokenRequest.setCryptoProvider(cryptoProvider);
+        tokenRequest.setKeyId(keyId);
+        tokenRequest.setAudience(tokenEndpoint);
+        tokenRequest.setCode(authorizationCode);
+        tokenRequest.setRedirectUri(redirectUri);
+        tokenRequest.setAuthUsername(clientId);
+
+        TokenClient tokenClient = new TokenClient(tokenEndpoint);
+        tokenClient.setRequest(tokenRequest);
+        TokenResponse tokenResponse = tokenClient.exec();
+
+        showClient(tokenClient);
+        assertEquals(tokenResponse.getStatus(), 200, "Unexpected response code: " + tokenResponse.getStatus());
+        assertNotNull(tokenResponse.getEntity(), "The entity is null");
+        assertNotNull(tokenResponse.getAccessToken(), "The access token is null");
+        assertNotNull(tokenResponse.getExpiresIn(), "The expires in value is null");
+        assertNotNull(tokenResponse.getTokenType(), "The token type is null");
+        assertNotNull(tokenResponse.getRefreshToken(), "The refresh token is null");
+    }
+
+    @Parameters({"redirectUris", "redirectUri", "userId", "userSecret", "clientJwksUri", "ES512_keyId", "dnName",
+            "keyStoreFile", "keyStoreSecret", "sectorIdentifierUri"})
+    @Test
+    public void tokenEndpointAuthMethodPrivateKeyJwtES512(
+            final String redirectUris, final String redirectUri, final String userId, final String userSecret,
+            final String clientJwksUri, final String keyId, final String dnName, final String keyStoreFile,
+            final String keyStoreSecret, final String sectorIdentifierUri) throws Exception {
+        showTitle("tokenEndpointAuthMethodPrivateKeyJwtES512");
+
+        // 1. Register client
+        RegisterRequest registerRequest = new RegisterRequest(ApplicationType.WEB, "oxAuth test app",
+                StringUtils.spaceSeparatedToList(redirectUris));
+        registerRequest.setTokenEndpointAuthMethod(AuthenticationMethod.PRIVATE_KEY_JWT);
+        registerRequest.setJwksUri(clientJwksUri);
+        registerRequest.setSectorIdentifierUri(sectorIdentifierUri);
+
+        RegisterClient registerClient = new RegisterClient(registrationEndpoint);
+        registerClient.setRequest(registerRequest);
+        RegisterResponse registerResponse = registerClient.exec();
+
+        showClient(registerClient);
+        assertEquals(registerResponse.getStatus(), 200, "Unexpected response code: " + registerResponse.getEntity());
+        assertNotNull(registerResponse.getClientId());
+        assertNotNull(registerResponse.getClientSecret());
+        assertNotNull(registerResponse.getRegistrationAccessToken());
+        assertNotNull(registerResponse.getClientIdIssuedAt());
+        assertNotNull(registerResponse.getClientSecretExpiresAt());
+
+        String clientId = registerResponse.getClientId();
+        String registrationAccessToken = registerResponse.getRegistrationAccessToken();
+        String registrationClientUri = registerResponse.getRegistrationClientUri();
+
+        // 2. Client read
+        RegisterRequest readClientRequest = new RegisterRequest(registrationAccessToken);
+
+        RegisterClient readClient = new RegisterClient(registrationClientUri);
+        readClient.setRequest(readClientRequest);
+        RegisterResponse readClientResponse = readClient.exec();
+
+        showClient(readClient);
+        assertEquals(readClientResponse.getStatus(), 200, "Unexpected response code: " + readClientResponse.getEntity());
+        assertNotNull(readClientResponse.getClientId());
+        assertNotNull(readClientResponse.getClientSecret());
+        assertNotNull(readClientResponse.getClientIdIssuedAt());
+        assertNotNull(readClientResponse.getClientSecretExpiresAt());
+
+        assertTrue(readClientResponse.getClaims().containsKey(TOKEN_ENDPOINT_AUTH_METHOD.toString()));
+        assertEquals(readClientResponse.getClaims().get(TOKEN_ENDPOINT_AUTH_METHOD.toString()),
+                AuthenticationMethod.PRIVATE_KEY_JWT.toString());
+        assertNotNull(readClientResponse.getClaims().get(RESPONSE_TYPES.toString()));
+        assertNotNull(readClientResponse.getClaims().get(REDIRECT_URIS.toString()));
+        assertNotNull(readClientResponse.getClaims().get(APPLICATION_TYPE.toString()));
+        assertNotNull(readClientResponse.getClaims().get(CLIENT_NAME.toString()));
+        assertNotNull(readClientResponse.getClaims().get(ID_TOKEN_SIGNED_RESPONSE_ALG.toString()));
+        assertNotNull(readClientResponse.getClaims().get(SCOPE.toString()));
+
+        // 3. Request authorization
+        List<ResponseType> responseTypes = Arrays.asList(ResponseType.CODE);
+        List<String> scopes = Arrays.asList(
+                "openid",
+                "profile",
+                "address",
+                "email");
+        String state = UUID.randomUUID().toString();
+
+        AuthorizationRequest authorizationRequest = new AuthorizationRequest(responseTypes, clientId, scopes, redirectUri, null);
+        authorizationRequest.setState(state);
+
+        AuthorizationResponse authorizationResponse = authenticateResourceOwnerAndGrantAccess(
+                authorizationEndpoint, authorizationRequest, userId, userSecret);
+
+        assertNotNull(authorizationResponse.getLocation(), "The location is null");
+        assertNotNull(authorizationResponse.getCode(), "The authorization code is null");
+        assertNotNull(authorizationResponse.getState(), "The state is null");
+        assertNotNull(authorizationResponse.getScope(), "The scope is null");
+        assertNull(authorizationResponse.getIdToken(), "The id token is not null");
+
+        String authorizationCode = authorizationResponse.getCode();
+
+        // 4. Get Access Token
+        OxAuthCryptoProvider cryptoProvider = new OxAuthCryptoProvider(keyStoreFile, keyStoreSecret, dnName);
+
+        TokenRequest tokenRequest = new TokenRequest(GrantType.AUTHORIZATION_CODE);
+        tokenRequest.setAuthenticationMethod(AuthenticationMethod.PRIVATE_KEY_JWT);
+        tokenRequest.setAlgorithm(SignatureAlgorithm.ES512);
+        tokenRequest.setCryptoProvider(cryptoProvider);
+        tokenRequest.setKeyId(keyId);
+        tokenRequest.setAudience(tokenEndpoint);
+        tokenRequest.setCode(authorizationCode);
+        tokenRequest.setRedirectUri(redirectUri);
+        tokenRequest.setAuthUsername(clientId);
+
+        TokenClient tokenClient = new TokenClient(tokenEndpoint);
+        tokenClient.setRequest(tokenRequest);
+        TokenResponse tokenResponse = tokenClient.exec();
+
+        showClient(tokenClient);
+        assertEquals(tokenResponse.getStatus(), 200, "Unexpected response code: " + tokenResponse.getStatus());
+        assertNotNull(tokenResponse.getEntity(), "The entity is null");
+        assertNotNull(tokenResponse.getAccessToken(), "The access token is null");
+        assertNotNull(tokenResponse.getExpiresIn(), "The expires in value is null");
+        assertNotNull(tokenResponse.getTokenType(), "The token type is null");
+        assertNotNull(tokenResponse.getRefreshToken(), "The refresh token is null");
+    }
+
+    @Parameters({"redirectUris", "redirectUri", "userId", "userSecret", "clientJwksUri", "PS256_keyId", "dnName",
+            "keyStoreFile", "keyStoreSecret", "sectorIdentifierUri"})
+    @Test
+    public void tokenEndpointAuthMethodPrivateKeyJwtPS256(
+            final String redirectUris, final String redirectUri, final String userId, final String userSecret,
+            final String clientJwksUri, final String keyId, final String dnName, final String keyStoreFile,
+            final String keyStoreSecret, final String sectorIdentifierUri) throws Exception {
+        showTitle("tokenEndpointAuthMethodPrivateKeyJwtPS256");
+
+        // 1. Register client
+        RegisterRequest registerRequest = new RegisterRequest(ApplicationType.WEB, "oxAuth test app",
+                StringUtils.spaceSeparatedToList(redirectUris));
+        registerRequest.setTokenEndpointAuthMethod(AuthenticationMethod.PRIVATE_KEY_JWT);
+        registerRequest.setJwksUri(clientJwksUri);
+        registerRequest.setSectorIdentifierUri(sectorIdentifierUri);
+
+        RegisterClient registerClient = new RegisterClient(registrationEndpoint);
+        registerClient.setRequest(registerRequest);
+        RegisterResponse registerResponse = registerClient.exec();
+
+        showClient(registerClient);
+        assertEquals(registerResponse.getStatus(), 200, "Unexpected response code: " + registerResponse.getEntity());
+        assertNotNull(registerResponse.getClientId());
+        assertNotNull(registerResponse.getClientSecret());
+        assertNotNull(registerResponse.getRegistrationAccessToken());
+        assertNotNull(registerResponse.getClientIdIssuedAt());
+        assertNotNull(registerResponse.getClientSecretExpiresAt());
+
+        String clientId = registerResponse.getClientId();
+        String registrationAccessToken = registerResponse.getRegistrationAccessToken();
+        String registrationClientUri = registerResponse.getRegistrationClientUri();
+
+        // 2. Client read
+        RegisterRequest readClientRequest = new RegisterRequest(registrationAccessToken);
+
+        RegisterClient readClient = new RegisterClient(registrationClientUri);
+        readClient.setRequest(readClientRequest);
+        RegisterResponse readClientResponse = readClient.exec();
+
+        showClient(readClient);
+        assertEquals(readClientResponse.getStatus(), 200, "Unexpected response code: " + readClientResponse.getEntity());
+        assertNotNull(readClientResponse.getClientId());
+        assertNotNull(readClientResponse.getClientSecret());
+        assertNotNull(readClientResponse.getClientIdIssuedAt());
+        assertNotNull(readClientResponse.getClientSecretExpiresAt());
+
+        assertTrue(readClientResponse.getClaims().containsKey(TOKEN_ENDPOINT_AUTH_METHOD.toString()));
+        assertEquals(readClientResponse.getClaims().get(TOKEN_ENDPOINT_AUTH_METHOD.toString()),
+                AuthenticationMethod.PRIVATE_KEY_JWT.toString());
+        assertNotNull(readClientResponse.getClaims().get(RESPONSE_TYPES.toString()));
+        assertNotNull(readClientResponse.getClaims().get(REDIRECT_URIS.toString()));
+        assertNotNull(readClientResponse.getClaims().get(APPLICATION_TYPE.toString()));
+        assertNotNull(readClientResponse.getClaims().get(CLIENT_NAME.toString()));
+        assertNotNull(readClientResponse.getClaims().get(ID_TOKEN_SIGNED_RESPONSE_ALG.toString()));
+        assertNotNull(readClientResponse.getClaims().get(SCOPE.toString()));
+
+        // 3. Request authorization
+        List<ResponseType> responseTypes = Arrays.asList(ResponseType.CODE);
+        List<String> scopes = Arrays.asList(
+                "openid",
+                "profile",
+                "address",
+                "email");
+        String state = UUID.randomUUID().toString();
+
+        AuthorizationRequest authorizationRequest = new AuthorizationRequest(responseTypes, clientId, scopes, redirectUri, null);
+        authorizationRequest.setState(state);
+
+        AuthorizationResponse authorizationResponse = authenticateResourceOwnerAndGrantAccess(
+                authorizationEndpoint, authorizationRequest, userId, userSecret);
+
+        assertNotNull(authorizationResponse.getLocation(), "The location is null");
+        assertNotNull(authorizationResponse.getCode(), "The authorization code is null");
+        assertNotNull(authorizationResponse.getState(), "The state is null");
+        assertNotNull(authorizationResponse.getScope(), "The scope is null");
+        assertNull(authorizationResponse.getIdToken(), "The id token is not null");
+
+        String authorizationCode = authorizationResponse.getCode();
+
+        // 4. Get Access Token
+        OxAuthCryptoProvider cryptoProvider = new OxAuthCryptoProvider(keyStoreFile, keyStoreSecret, dnName);
+
+        TokenRequest tokenRequest = new TokenRequest(GrantType.AUTHORIZATION_CODE);
+        tokenRequest.setAuthenticationMethod(AuthenticationMethod.PRIVATE_KEY_JWT);
+        tokenRequest.setAlgorithm(SignatureAlgorithm.PS256);
+        tokenRequest.setCryptoProvider(cryptoProvider);
+        tokenRequest.setKeyId(keyId);
+        tokenRequest.setAudience(tokenEndpoint);
+        tokenRequest.setCode(authorizationCode);
+        tokenRequest.setRedirectUri(redirectUri);
+        tokenRequest.setAuthUsername(clientId);
+
+        TokenClient tokenClient = new TokenClient(tokenEndpoint);
+        tokenClient.setRequest(tokenRequest);
+        TokenResponse tokenResponse = tokenClient.exec();
+
+        showClient(tokenClient);
+        assertEquals(tokenResponse.getStatus(), 200, "Unexpected response code: " + tokenResponse.getStatus());
+        assertNotNull(tokenResponse.getEntity(), "The entity is null");
+        assertNotNull(tokenResponse.getAccessToken(), "The access token is null");
+        assertNotNull(tokenResponse.getExpiresIn(), "The expires in value is null");
+        assertNotNull(tokenResponse.getTokenType(), "The token type is null");
+        assertNotNull(tokenResponse.getRefreshToken(), "The refresh token is null");
+    }
+
+    @Parameters({"redirectUris", "redirectUri", "userId", "userSecret", "clientJwksUri", "PS384_keyId", "dnName",
+            "keyStoreFile", "keyStoreSecret", "sectorIdentifierUri"})
+    @Test
+    public void tokenEndpointAuthMethodPrivateKeyJwtPS384(
+            final String redirectUris, final String redirectUri, final String userId, final String userSecret,
+            final String clientJwksUri, final String keyId, final String dnName, final String keyStoreFile,
+            final String keyStoreSecret, final String sectorIdentifierUri) throws Exception {
+        showTitle("tokenEndpointAuthMethodPrivateKeyJwtPS384");
+
+        // 1. Register client
+        RegisterRequest registerRequest = new RegisterRequest(ApplicationType.WEB, "oxAuth test app",
+                StringUtils.spaceSeparatedToList(redirectUris));
+        registerRequest.setTokenEndpointAuthMethod(AuthenticationMethod.PRIVATE_KEY_JWT);
+        registerRequest.setJwksUri(clientJwksUri);
+        registerRequest.setSectorIdentifierUri(sectorIdentifierUri);
+
+        RegisterClient registerClient = new RegisterClient(registrationEndpoint);
+        registerClient.setRequest(registerRequest);
+        RegisterResponse registerResponse = registerClient.exec();
+
+        showClient(registerClient);
+        assertEquals(registerResponse.getStatus(), 200, "Unexpected response code: " + registerResponse.getEntity());
+        assertNotNull(registerResponse.getClientId());
+        assertNotNull(registerResponse.getClientSecret());
+        assertNotNull(registerResponse.getRegistrationAccessToken());
+        assertNotNull(registerResponse.getClientIdIssuedAt());
+        assertNotNull(registerResponse.getClientSecretExpiresAt());
+
+        String clientId = registerResponse.getClientId();
+        String registrationAccessToken = registerResponse.getRegistrationAccessToken();
+        String registrationClientUri = registerResponse.getRegistrationClientUri();
+
+        // 2. Client read
+        RegisterRequest readClientRequest = new RegisterRequest(registrationAccessToken);
+
+        RegisterClient readClient = new RegisterClient(registrationClientUri);
+        readClient.setRequest(readClientRequest);
+        RegisterResponse readClientResponse = readClient.exec();
+
+        showClient(readClient);
+        assertEquals(readClientResponse.getStatus(), 200, "Unexpected response code: " + readClientResponse.getEntity());
+        assertNotNull(readClientResponse.getClientId());
+        assertNotNull(readClientResponse.getClientSecret());
+        assertNotNull(readClientResponse.getClientIdIssuedAt());
+        assertNotNull(readClientResponse.getClientSecretExpiresAt());
+
+        assertTrue(readClientResponse.getClaims().containsKey(TOKEN_ENDPOINT_AUTH_METHOD.toString()));
+        assertEquals(readClientResponse.getClaims().get(TOKEN_ENDPOINT_AUTH_METHOD.toString()),
+                AuthenticationMethod.PRIVATE_KEY_JWT.toString());
+        assertNotNull(readClientResponse.getClaims().get(RESPONSE_TYPES.toString()));
+        assertNotNull(readClientResponse.getClaims().get(REDIRECT_URIS.toString()));
+        assertNotNull(readClientResponse.getClaims().get(APPLICATION_TYPE.toString()));
+        assertNotNull(readClientResponse.getClaims().get(CLIENT_NAME.toString()));
+        assertNotNull(readClientResponse.getClaims().get(ID_TOKEN_SIGNED_RESPONSE_ALG.toString()));
+        assertNotNull(readClientResponse.getClaims().get(SCOPE.toString()));
+
+        // 3. Request authorization
+        List<ResponseType> responseTypes = Arrays.asList(ResponseType.CODE);
+        List<String> scopes = Arrays.asList(
+                "openid",
+                "profile",
+                "address",
+                "email");
+        String state = UUID.randomUUID().toString();
+
+        AuthorizationRequest authorizationRequest = new AuthorizationRequest(responseTypes, clientId, scopes, redirectUri, null);
+        authorizationRequest.setState(state);
+
+        AuthorizationResponse authorizationResponse = authenticateResourceOwnerAndGrantAccess(
+                authorizationEndpoint, authorizationRequest, userId, userSecret);
+
+        assertNotNull(authorizationResponse.getLocation(), "The location is null");
+        assertNotNull(authorizationResponse.getCode(), "The authorization code is null");
+        assertNotNull(authorizationResponse.getState(), "The state is null");
+        assertNotNull(authorizationResponse.getScope(), "The scope is null");
+        assertNull(authorizationResponse.getIdToken(), "The id token is not null");
+
+        String authorizationCode = authorizationResponse.getCode();
+
+        // 4. Get Access Token
+        OxAuthCryptoProvider cryptoProvider = new OxAuthCryptoProvider(keyStoreFile, keyStoreSecret, dnName);
+
+        TokenRequest tokenRequest = new TokenRequest(GrantType.AUTHORIZATION_CODE);
+        tokenRequest.setAuthenticationMethod(AuthenticationMethod.PRIVATE_KEY_JWT);
+        tokenRequest.setAlgorithm(SignatureAlgorithm.PS384);
+        tokenRequest.setCryptoProvider(cryptoProvider);
+        tokenRequest.setKeyId(keyId);
+        tokenRequest.setAudience(tokenEndpoint);
+        tokenRequest.setCode(authorizationCode);
+        tokenRequest.setRedirectUri(redirectUri);
+        tokenRequest.setAuthUsername(clientId);
+
+        TokenClient tokenClient = new TokenClient(tokenEndpoint);
+        tokenClient.setRequest(tokenRequest);
+        TokenResponse tokenResponse = tokenClient.exec();
+
+        showClient(tokenClient);
+        assertEquals(tokenResponse.getStatus(), 200, "Unexpected response code: " + tokenResponse.getStatus());
+        assertNotNull(tokenResponse.getEntity(), "The entity is null");
+        assertNotNull(tokenResponse.getAccessToken(), "The access token is null");
+        assertNotNull(tokenResponse.getExpiresIn(), "The expires in value is null");
+        assertNotNull(tokenResponse.getTokenType(), "The token type is null");
+        assertNotNull(tokenResponse.getRefreshToken(), "The refresh token is null");
+    }
+
+    @Parameters({"redirectUris", "redirectUri", "userId", "userSecret", "clientJwksUri", "PS512_keyId", "dnName",
+            "keyStoreFile", "keyStoreSecret", "sectorIdentifierUri"})
+    @Test
+    public void tokenEndpointAuthMethodPrivateKeyJwtPS512(
+            final String redirectUris, final String redirectUri, final String userId, final String userSecret,
+            final String clientJwksUri, final String keyId, final String dnName, final String keyStoreFile,
+            final String keyStoreSecret, final String sectorIdentifierUri) throws Exception {
+        showTitle("tokenEndpointAuthMethodPrivateKeyJwtPS512");
+
+        // 1. Register client
+        RegisterRequest registerRequest = new RegisterRequest(ApplicationType.WEB, "oxAuth test app",
+                StringUtils.spaceSeparatedToList(redirectUris));
+        registerRequest.setTokenEndpointAuthMethod(AuthenticationMethod.PRIVATE_KEY_JWT);
+        registerRequest.setJwksUri(clientJwksUri);
+        registerRequest.setSectorIdentifierUri(sectorIdentifierUri);
+
+        RegisterClient registerClient = new RegisterClient(registrationEndpoint);
+        registerClient.setRequest(registerRequest);
+        RegisterResponse registerResponse = registerClient.exec();
+
+        showClient(registerClient);
+        assertEquals(registerResponse.getStatus(), 200, "Unexpected response code: " + registerResponse.getEntity());
+        assertNotNull(registerResponse.getClientId());
+        assertNotNull(registerResponse.getClientSecret());
+        assertNotNull(registerResponse.getRegistrationAccessToken());
+        assertNotNull(registerResponse.getClientIdIssuedAt());
+        assertNotNull(registerResponse.getClientSecretExpiresAt());
+
+        String clientId = registerResponse.getClientId();
+        String registrationAccessToken = registerResponse.getRegistrationAccessToken();
+        String registrationClientUri = registerResponse.getRegistrationClientUri();
+
+        // 2. Client read
+        RegisterRequest readClientRequest = new RegisterRequest(registrationAccessToken);
+
+        RegisterClient readClient = new RegisterClient(registrationClientUri);
+        readClient.setRequest(readClientRequest);
+        RegisterResponse readClientResponse = readClient.exec();
+
+        showClient(readClient);
+        assertEquals(readClientResponse.getStatus(), 200, "Unexpected response code: " + readClientResponse.getEntity());
+        assertNotNull(readClientResponse.getClientId());
+        assertNotNull(readClientResponse.getClientSecret());
+        assertNotNull(readClientResponse.getClientIdIssuedAt());
+        assertNotNull(readClientResponse.getClientSecretExpiresAt());
+
+        assertTrue(readClientResponse.getClaims().containsKey(TOKEN_ENDPOINT_AUTH_METHOD.toString()));
+        assertEquals(readClientResponse.getClaims().get(TOKEN_ENDPOINT_AUTH_METHOD.toString()),
+                AuthenticationMethod.PRIVATE_KEY_JWT.toString());
+        assertNotNull(readClientResponse.getClaims().get(RESPONSE_TYPES.toString()));
+        assertNotNull(readClientResponse.getClaims().get(REDIRECT_URIS.toString()));
+        assertNotNull(readClientResponse.getClaims().get(APPLICATION_TYPE.toString()));
+        assertNotNull(readClientResponse.getClaims().get(CLIENT_NAME.toString()));
+        assertNotNull(readClientResponse.getClaims().get(ID_TOKEN_SIGNED_RESPONSE_ALG.toString()));
+        assertNotNull(readClientResponse.getClaims().get(SCOPE.toString()));
+
+        // 3. Request authorization
+        List<ResponseType> responseTypes = Arrays.asList(ResponseType.CODE);
+        List<String> scopes = Arrays.asList(
+                "openid",
+                "profile",
+                "address",
+                "email");
+        String state = UUID.randomUUID().toString();
+
+        AuthorizationRequest authorizationRequest = new AuthorizationRequest(responseTypes, clientId, scopes, redirectUri, null);
+        authorizationRequest.setState(state);
+
+        AuthorizationResponse authorizationResponse = authenticateResourceOwnerAndGrantAccess(
+                authorizationEndpoint, authorizationRequest, userId, userSecret);
+
+        assertNotNull(authorizationResponse.getLocation(), "The location is null");
+        assertNotNull(authorizationResponse.getCode(), "The authorization code is null");
+        assertNotNull(authorizationResponse.getState(), "The state is null");
+        assertNotNull(authorizationResponse.getScope(), "The scope is null");
+        assertNull(authorizationResponse.getIdToken(), "The id token is not null");
+
+        String authorizationCode = authorizationResponse.getCode();
+
+        // 4. Get Access Token
+        OxAuthCryptoProvider cryptoProvider = new OxAuthCryptoProvider(keyStoreFile, keyStoreSecret, dnName);
+
+        TokenRequest tokenRequest = new TokenRequest(GrantType.AUTHORIZATION_CODE);
+        tokenRequest.setAuthenticationMethod(AuthenticationMethod.PRIVATE_KEY_JWT);
+        tokenRequest.setAlgorithm(SignatureAlgorithm.PS512);
+        tokenRequest.setCryptoProvider(cryptoProvider);
+        tokenRequest.setKeyId(keyId);
+        tokenRequest.setAudience(tokenEndpoint);
+        tokenRequest.setCode(authorizationCode);
+        tokenRequest.setRedirectUri(redirectUri);
+        tokenRequest.setAuthUsername(clientId);
+
+        TokenClient tokenClient = new TokenClient(tokenEndpoint);
+        tokenClient.setRequest(tokenRequest);
+        TokenResponse tokenResponse = tokenClient.exec();
+
+        showClient(tokenClient);
+        assertEquals(tokenResponse.getStatus(), 200, "Unexpected response code: " + tokenResponse.getStatus());
+        assertNotNull(tokenResponse.getEntity(), "The entity is null");
+        assertNotNull(tokenResponse.getAccessToken(), "The access token is null");
+        assertNotNull(tokenResponse.getExpiresIn(), "The expires in value is null");
+        assertNotNull(tokenResponse.getTokenType(), "The token type is null");
+        assertNotNull(tokenResponse.getRefreshToken(), "The refresh token is null");
+    }
+
+    @Parameters({"redirectUris", "redirectUri", "userId", "userSecret", "clientJwksUri", "RS256_keyId", "dnName",
+            "keyStoreFile", "keyStoreSecret", "sectorIdentifierUri"})
+    @Test
+    public void tokenEndpointAuthMethodPrivateKeyJwtSigningAlgRS256(
+            final String redirectUris, final String redirectUri, final String userId, final String userSecret,
+            final String clientJwksUri, final String keyId, final String dnName, final String keyStoreFile,
+            final String keyStoreSecret, final String sectorIdentifierUri) throws Exception {
+        showTitle("tokenEndpointAuthMethodPrivateKeyJwtSigningAlgRS256");
+
+        // 1. Register client
+        RegisterRequest registerRequest = new RegisterRequest(ApplicationType.WEB, "oxAuth test app",
+                StringUtils.spaceSeparatedToList(redirectUris));
+        registerRequest.setTokenEndpointAuthMethod(AuthenticationMethod.PRIVATE_KEY_JWT);
+        registerRequest.setTokenEndpointAuthSigningAlg(SignatureAlgorithm.RS256);
+        registerRequest.setJwksUri(clientJwksUri);
+        registerRequest.setSectorIdentifierUri(sectorIdentifierUri);
+
+        RegisterClient registerClient = new RegisterClient(registrationEndpoint);
+        registerClient.setRequest(registerRequest);
+        RegisterResponse registerResponse = registerClient.exec();
+
+        showClient(registerClient);
+        assertEquals(registerResponse.getStatus(), 200, "Unexpected response code: " + registerResponse.getEntity());
+        assertNotNull(registerResponse.getClientId());
+        assertNotNull(registerResponse.getClientSecret());
+        assertNotNull(registerResponse.getRegistrationAccessToken());
+        assertNotNull(registerResponse.getClientIdIssuedAt());
+        assertNotNull(registerResponse.getClientSecretExpiresAt());
+
+        String clientId = registerResponse.getClientId();
+        String registrationAccessToken = registerResponse.getRegistrationAccessToken();
+        String registrationClientUri = registerResponse.getRegistrationClientUri();
+
+        // 2. Client read
+        RegisterRequest readClientRequest = new RegisterRequest(registrationAccessToken);
+
+        RegisterClient readClient = new RegisterClient(registrationClientUri);
+        readClient.setRequest(readClientRequest);
+        RegisterResponse readClientResponse = readClient.exec();
+
+        showClient(readClient);
+        assertEquals(readClientResponse.getStatus(), 200, "Unexpected response code: " + readClientResponse.getEntity());
+        assertNotNull(readClientResponse.getClientId());
+        assertNotNull(readClientResponse.getClientSecret());
+        assertNotNull(readClientResponse.getClientIdIssuedAt());
+        assertNotNull(readClientResponse.getClientSecretExpiresAt());
+
+        assertTrue(readClientResponse.getClaims().containsKey(TOKEN_ENDPOINT_AUTH_METHOD.toString()));
+        assertEquals(readClientResponse.getClaims().get(TOKEN_ENDPOINT_AUTH_METHOD.toString()),
+                AuthenticationMethod.PRIVATE_KEY_JWT.toString());
+        assertTrue(readClientResponse.getClaims().containsKey(TOKEN_ENDPOINT_AUTH_SIGNING_ALG.toString()));
+        assertEquals(readClientResponse.getClaims().get(TOKEN_ENDPOINT_AUTH_SIGNING_ALG.toString()),
+                SignatureAlgorithm.RS256.toString());
+        assertNotNull(readClientResponse.getClaims().get(RESPONSE_TYPES.toString()));
+        assertNotNull(readClientResponse.getClaims().get(REDIRECT_URIS.toString()));
+        assertNotNull(readClientResponse.getClaims().get(APPLICATION_TYPE.toString()));
+        assertNotNull(readClientResponse.getClaims().get(CLIENT_NAME.toString()));
+        assertNotNull(readClientResponse.getClaims().get(ID_TOKEN_SIGNED_RESPONSE_ALG.toString()));
+        assertNotNull(readClientResponse.getClaims().get(SCOPE.toString()));
+
+        // 3. Request authorization
+        List<ResponseType> responseTypes = Arrays.asList(ResponseType.CODE);
+        List<String> scopes = Arrays.asList(
+                "openid",
+                "profile",
+                "address",
+                "email");
+        String state = UUID.randomUUID().toString();
+
+        AuthorizationRequest authorizationRequest = new AuthorizationRequest(responseTypes, clientId, scopes, redirectUri, null);
+        authorizationRequest.setState(state);
+
+        AuthorizationResponse authorizationResponse = authenticateResourceOwnerAndGrantAccess(
+                authorizationEndpoint, authorizationRequest, userId, userSecret);
+
+        assertNotNull(authorizationResponse.getLocation(), "The location is null");
+        assertNotNull(authorizationResponse.getCode(), "The authorization code is null");
+        assertNotNull(authorizationResponse.getState(), "The state is null");
+        assertNotNull(authorizationResponse.getScope(), "The scope is null");
+        assertNull(authorizationResponse.getIdToken(), "The id token is not null");
+
+        String authorizationCode = authorizationResponse.getCode();
+
+        // 4. Get Access Token
+        OxAuthCryptoProvider cryptoProvider = new OxAuthCryptoProvider(keyStoreFile, keyStoreSecret, dnName);
+
+        TokenRequest tokenRequest = new TokenRequest(GrantType.AUTHORIZATION_CODE);
+        tokenRequest.setAuthenticationMethod(AuthenticationMethod.PRIVATE_KEY_JWT);
+        tokenRequest.setAlgorithm(SignatureAlgorithm.RS256);
+        tokenRequest.setCryptoProvider(cryptoProvider);
+        tokenRequest.setKeyId(keyId);
+        tokenRequest.setAudience(tokenEndpoint);
+        tokenRequest.setCode(authorizationCode);
+        tokenRequest.setRedirectUri(redirectUri);
+        tokenRequest.setAuthUsername(clientId);
+
+        TokenClient tokenClient = new TokenClient(tokenEndpoint);
+        tokenClient.setRequest(tokenRequest);
+        TokenResponse tokenResponse = tokenClient.exec();
+
+        showClient(tokenClient);
+        assertEquals(tokenResponse.getStatus(), 200, "Unexpected response code: " + tokenResponse.getStatus());
+        assertNotNull(tokenResponse.getEntity(), "The entity is null");
+        assertNotNull(tokenResponse.getAccessToken(), "The access token is null");
+        assertNotNull(tokenResponse.getExpiresIn(), "The expires in value is null");
+        assertNotNull(tokenResponse.getTokenType(), "The token type is null");
+        assertNotNull(tokenResponse.getRefreshToken(), "The refresh token is null");
+    }
+
+    @Parameters({"redirectUris", "redirectUri", "userId", "userSecret", "clientJwksUri", "RS384_keyId", "dnName",
+            "keyStoreFile", "keyStoreSecret", "sectorIdentifierUri"})
+    @Test
+    public void tokenEndpointAuthMethodPrivateKeyJwtSigningAlgRS256Fail1(
+            final String redirectUris, final String redirectUri, final String userId, final String userSecret,
+            final String clientJwksUri, final String keyId, final String dnName, final String keyStoreFile,
+            final String keyStoreSecret, final String sectorIdentifierUri) throws Exception {
+        showTitle("tokenEndpointAuthMethodPrivateKeyJwtSigningAlgRS256Fail1");
+
+        // 1. Register client
+        RegisterRequest registerRequest = new RegisterRequest(ApplicationType.WEB, "oxAuth test app",
+                StringUtils.spaceSeparatedToList(redirectUris));
+        registerRequest.setTokenEndpointAuthMethod(AuthenticationMethod.PRIVATE_KEY_JWT);
+        registerRequest.setTokenEndpointAuthSigningAlg(SignatureAlgorithm.RS256);
+        registerRequest.setJwksUri(clientJwksUri);
+        registerRequest.setSectorIdentifierUri(sectorIdentifierUri);
+
+        RegisterClient registerClient = new RegisterClient(registrationEndpoint);
+        registerClient.setRequest(registerRequest);
+        RegisterResponse registerResponse = registerClient.exec();
+
+        showClient(registerClient);
+        assertEquals(registerResponse.getStatus(), 200, "Unexpected response code: " + registerResponse.getEntity());
+        assertNotNull(registerResponse.getClientId());
+        assertNotNull(registerResponse.getClientSecret());
+        assertNotNull(registerResponse.getRegistrationAccessToken());
+        assertNotNull(registerResponse.getClientIdIssuedAt());
+        assertNotNull(registerResponse.getClientSecretExpiresAt());
+
+        String clientId = registerResponse.getClientId();
+        String registrationAccessToken = registerResponse.getRegistrationAccessToken();
+        String registrationClientUri = registerResponse.getRegistrationClientUri();
+
+        // 2. Client read
+        RegisterRequest readClientRequest = new RegisterRequest(registrationAccessToken);
+
+        RegisterClient readClient = new RegisterClient(registrationClientUri);
+        readClient.setRequest(readClientRequest);
+        RegisterResponse readClientResponse = readClient.exec();
+
+        showClient(readClient);
+        assertEquals(readClientResponse.getStatus(), 200, "Unexpected response code: " + readClientResponse.getEntity());
+        assertNotNull(readClientResponse.getClientId());
+        assertNotNull(readClientResponse.getClientSecret());
+        assertNotNull(readClientResponse.getClientIdIssuedAt());
+        assertNotNull(readClientResponse.getClientSecretExpiresAt());
+
+        assertTrue(readClientResponse.getClaims().containsKey(TOKEN_ENDPOINT_AUTH_METHOD.toString()));
+        assertEquals(readClientResponse.getClaims().get(TOKEN_ENDPOINT_AUTH_METHOD.toString()),
+                AuthenticationMethod.PRIVATE_KEY_JWT.toString());
+        assertTrue(readClientResponse.getClaims().containsKey(TOKEN_ENDPOINT_AUTH_SIGNING_ALG.toString()));
+        assertEquals(readClientResponse.getClaims().get(TOKEN_ENDPOINT_AUTH_SIGNING_ALG.toString()),
+                SignatureAlgorithm.RS256.toString());
+        assertNotNull(readClientResponse.getClaims().get(RESPONSE_TYPES.toString()));
+        assertNotNull(readClientResponse.getClaims().get(REDIRECT_URIS.toString()));
+        assertNotNull(readClientResponse.getClaims().get(APPLICATION_TYPE.toString()));
+        assertNotNull(readClientResponse.getClaims().get(CLIENT_NAME.toString()));
+        assertNotNull(readClientResponse.getClaims().get(ID_TOKEN_SIGNED_RESPONSE_ALG.toString()));
+        assertNotNull(readClientResponse.getClaims().get(SCOPE.toString()));
+
+        // 3. Request authorization
+        List<ResponseType> responseTypes = Arrays.asList(ResponseType.CODE);
+        List<String> scopes = Arrays.asList(
+                "openid",
+                "profile",
+                "address",
+                "email");
+        String state = UUID.randomUUID().toString();
+
+        AuthorizationRequest authorizationRequest = new AuthorizationRequest(responseTypes, clientId, scopes, redirectUri, null);
+        authorizationRequest.setState(state);
+
+        AuthorizationResponse authorizationResponse = authenticateResourceOwnerAndGrantAccess(
+                authorizationEndpoint, authorizationRequest, userId, userSecret);
+
+        assertNotNull(authorizationResponse.getLocation(), "The location is null");
+        assertNotNull(authorizationResponse.getCode(), "The authorization code is null");
+        assertNotNull(authorizationResponse.getState(), "The state is null");
+        assertNotNull(authorizationResponse.getScope(), "The scope is null");
+        assertNull(authorizationResponse.getIdToken(), "The id token is not null");
+
+        String authorizationCode = authorizationResponse.getCode();
+
+        // 4. Get Access Token
+        OxAuthCryptoProvider cryptoProvider = new OxAuthCryptoProvider(keyStoreFile, keyStoreSecret, dnName);
+
+        TokenRequest tokenRequest = new TokenRequest(GrantType.AUTHORIZATION_CODE);
+        tokenRequest.setAuthenticationMethod(AuthenticationMethod.PRIVATE_KEY_JWT);
+        tokenRequest.setAlgorithm(SignatureAlgorithm.RS384);
+        tokenRequest.setCryptoProvider(cryptoProvider);
+        tokenRequest.setKeyId(keyId);
+        tokenRequest.setAudience(tokenEndpoint);
+        tokenRequest.setCode(authorizationCode);
+        tokenRequest.setRedirectUri(redirectUri);
+        tokenRequest.setAuthUsername(clientId);
+
+        TokenClient tokenClient = new TokenClient(tokenEndpoint);
+        tokenClient.setRequest(tokenRequest);
+        TokenResponse tokenResponse = tokenClient.exec();
+
+        showClient(tokenClient);
+        assertEquals(tokenResponse.getStatus(), 401, "Unexpected response code: " + tokenResponse.getStatus());
+        assertNotNull(tokenResponse.getErrorType(), "The error type is null");
+        assertNotNull(tokenResponse.getErrorDescription(), "The error description is null");
+    }
+
+    @Parameters({"redirectUris", "redirectUri", "userId", "userSecret", "clientJwksUri", "RS512_keyId", "dnName",
+            "keyStoreFile", "keyStoreSecret", "sectorIdentifierUri"})
+    @Test
+    public void tokenEndpointAuthMethodPrivateKeyJwtSigningAlgRS256Fail2(
+            final String redirectUris, final String redirectUri, final String userId, final String userSecret,
+            final String clientJwksUri, final String keyId, final String dnName, final String keyStoreFile,
+            final String keyStoreSecret, final String sectorIdentifierUri) throws Exception {
+        showTitle("tokenEndpointAuthMethodPrivateKeyJwtSigningAlgRS256Fail2");
+
+        // 1. Register client
+        RegisterRequest registerRequest = new RegisterRequest(ApplicationType.WEB, "oxAuth test app",
+                StringUtils.spaceSeparatedToList(redirectUris));
+        registerRequest.setTokenEndpointAuthMethod(AuthenticationMethod.PRIVATE_KEY_JWT);
+        registerRequest.setTokenEndpointAuthSigningAlg(SignatureAlgorithm.RS256);
+        registerRequest.setJwksUri(clientJwksUri);
+        registerRequest.setSectorIdentifierUri(sectorIdentifierUri);
+
+        RegisterClient registerClient = new RegisterClient(registrationEndpoint);
+        registerClient.setRequest(registerRequest);
+        RegisterResponse registerResponse = registerClient.exec();
+
+        showClient(registerClient);
+        assertEquals(registerResponse.getStatus(), 200, "Unexpected response code: " + registerResponse.getEntity());
+        assertNotNull(registerResponse.getClientId());
+        assertNotNull(registerResponse.getClientSecret());
+        assertNotNull(registerResponse.getRegistrationAccessToken());
+        assertNotNull(registerResponse.getClientIdIssuedAt());
+        assertNotNull(registerResponse.getClientSecretExpiresAt());
+
+        String clientId = registerResponse.getClientId();
+        String registrationAccessToken = registerResponse.getRegistrationAccessToken();
+        String registrationClientUri = registerResponse.getRegistrationClientUri();
+
+        // 2. Client read
+        RegisterRequest readClientRequest = new RegisterRequest(registrationAccessToken);
+
+        RegisterClient readClient = new RegisterClient(registrationClientUri);
+        readClient.setRequest(readClientRequest);
+        RegisterResponse readClientResponse = readClient.exec();
+
+        showClient(readClient);
+        assertEquals(readClientResponse.getStatus(), 200, "Unexpected response code: " + readClientResponse.getEntity());
+        assertNotNull(readClientResponse.getClientId());
+        assertNotNull(readClientResponse.getClientSecret());
+        assertNotNull(readClientResponse.getClientIdIssuedAt());
+        assertNotNull(readClientResponse.getClientSecretExpiresAt());
+
+        assertTrue(readClientResponse.getClaims().containsKey(TOKEN_ENDPOINT_AUTH_METHOD.toString()));
+        assertEquals(readClientResponse.getClaims().get(TOKEN_ENDPOINT_AUTH_METHOD.toString()),
+                AuthenticationMethod.PRIVATE_KEY_JWT.toString());
+        assertTrue(readClientResponse.getClaims().containsKey(TOKEN_ENDPOINT_AUTH_SIGNING_ALG.toString()));
+        assertEquals(readClientResponse.getClaims().get(TOKEN_ENDPOINT_AUTH_SIGNING_ALG.toString()),
+                SignatureAlgorithm.RS256.toString());
+        assertNotNull(readClientResponse.getClaims().get(RESPONSE_TYPES.toString()));
+        assertNotNull(readClientResponse.getClaims().get(REDIRECT_URIS.toString()));
+        assertNotNull(readClientResponse.getClaims().get(APPLICATION_TYPE.toString()));
+        assertNotNull(readClientResponse.getClaims().get(CLIENT_NAME.toString()));
+        assertNotNull(readClientResponse.getClaims().get(ID_TOKEN_SIGNED_RESPONSE_ALG.toString()));
+        assertNotNull(readClientResponse.getClaims().get(SCOPE.toString()));
+
+        // 3. Request authorization
+        List<ResponseType> responseTypes = Arrays.asList(ResponseType.CODE);
+        List<String> scopes = Arrays.asList(
+                "openid",
+                "profile",
+                "address",
+                "email");
+        String state = UUID.randomUUID().toString();
+
+        AuthorizationRequest authorizationRequest = new AuthorizationRequest(responseTypes, clientId, scopes, redirectUri, null);
+        authorizationRequest.setState(state);
+
+        AuthorizationResponse authorizationResponse = authenticateResourceOwnerAndGrantAccess(
+                authorizationEndpoint, authorizationRequest, userId, userSecret);
+
+        assertNotNull(authorizationResponse.getLocation(), "The location is null");
+        assertNotNull(authorizationResponse.getCode(), "The authorization code is null");
+        assertNotNull(authorizationResponse.getState(), "The state is null");
+        assertNotNull(authorizationResponse.getScope(), "The scope is null");
+        assertNull(authorizationResponse.getIdToken(), "The id token is not null");
+
+        String authorizationCode = authorizationResponse.getCode();
+
+        // 4. Get Access Token
+        OxAuthCryptoProvider cryptoProvider = new OxAuthCryptoProvider(keyStoreFile, keyStoreSecret, dnName);
+
+        TokenRequest tokenRequest = new TokenRequest(GrantType.AUTHORIZATION_CODE);
+        tokenRequest.setAuthenticationMethod(AuthenticationMethod.PRIVATE_KEY_JWT);
+        tokenRequest.setAlgorithm(SignatureAlgorithm.RS512);
+        tokenRequest.setCryptoProvider(cryptoProvider);
+        tokenRequest.setKeyId(keyId);
+        tokenRequest.setAudience(tokenEndpoint);
+        tokenRequest.setCode(authorizationCode);
+        tokenRequest.setRedirectUri(redirectUri);
+        tokenRequest.setAuthUsername(clientId);
+
+        TokenClient tokenClient = new TokenClient(tokenEndpoint);
+        tokenClient.setRequest(tokenRequest);
+        TokenResponse tokenResponse = tokenClient.exec();
+
+        showClient(tokenClient);
+        assertEquals(tokenResponse.getStatus(), 401, "Unexpected response code: " + tokenResponse.getStatus());
+        assertNotNull(tokenResponse.getErrorType(), "The error type is null");
+        assertNotNull(tokenResponse.getErrorDescription(), "The error description is null");
+    }
+
+    @Parameters({"redirectUris", "redirectUri", "userId", "userSecret", "clientJwksUri", "ES256_keyId", "dnName",
+            "keyStoreFile", "keyStoreSecret", "sectorIdentifierUri"})
+    @Test
+    public void tokenEndpointAuthMethodPrivateKeyJwtSigningAlgRS256Fail3(
+            final String redirectUris, final String redirectUri, final String userId, final String userSecret,
+            final String clientJwksUri, final String keyId, final String dnName, final String keyStoreFile,
+            final String keyStoreSecret, final String sectorIdentifierUri) throws Exception {
+        showTitle("tokenEndpointAuthMethodPrivateKeyJwtSigningAlgRS256Fail3");
+
+        // 1. Register client
+        RegisterRequest registerRequest = new RegisterRequest(ApplicationType.WEB, "oxAuth test app",
+                StringUtils.spaceSeparatedToList(redirectUris));
+        registerRequest.setTokenEndpointAuthMethod(AuthenticationMethod.PRIVATE_KEY_JWT);
+        registerRequest.setTokenEndpointAuthSigningAlg(SignatureAlgorithm.RS256);
+        registerRequest.setJwksUri(clientJwksUri);
+        registerRequest.setSectorIdentifierUri(sectorIdentifierUri);
+
+        RegisterClient registerClient = new RegisterClient(registrationEndpoint);
+        registerClient.setRequest(registerRequest);
+        RegisterResponse registerResponse = registerClient.exec();
+
+        showClient(registerClient);
+        assertEquals(registerResponse.getStatus(), 200, "Unexpected response code: " + registerResponse.getEntity());
+        assertNotNull(registerResponse.getClientId());
+        assertNotNull(registerResponse.getClientSecret());
+        assertNotNull(registerResponse.getRegistrationAccessToken());
+        assertNotNull(registerResponse.getClientIdIssuedAt());
+        assertNotNull(registerResponse.getClientSecretExpiresAt());
+
+        String clientId = registerResponse.getClientId();
+        String registrationAccessToken = registerResponse.getRegistrationAccessToken();
+        String registrationClientUri = registerResponse.getRegistrationClientUri();
+
+        // 2. Client read
+        RegisterRequest readClientRequest = new RegisterRequest(registrationAccessToken);
+
+        RegisterClient readClient = new RegisterClient(registrationClientUri);
+        readClient.setRequest(readClientRequest);
+        RegisterResponse readClientResponse = readClient.exec();
+
+        showClient(readClient);
+        assertEquals(readClientResponse.getStatus(), 200, "Unexpected response code: " + readClientResponse.getEntity());
+        assertNotNull(readClientResponse.getClientId());
+        assertNotNull(readClientResponse.getClientSecret());
+        assertNotNull(readClientResponse.getClientIdIssuedAt());
+        assertNotNull(readClientResponse.getClientSecretExpiresAt());
+
+        assertTrue(readClientResponse.getClaims().containsKey(TOKEN_ENDPOINT_AUTH_METHOD.toString()));
+        assertEquals(readClientResponse.getClaims().get(TOKEN_ENDPOINT_AUTH_METHOD.toString()),
+                AuthenticationMethod.PRIVATE_KEY_JWT.toString());
+        assertTrue(readClientResponse.getClaims().containsKey(TOKEN_ENDPOINT_AUTH_SIGNING_ALG.toString()));
+        assertEquals(readClientResponse.getClaims().get(TOKEN_ENDPOINT_AUTH_SIGNING_ALG.toString()),
+                SignatureAlgorithm.RS256.toString());
+        assertNotNull(readClientResponse.getClaims().get(RESPONSE_TYPES.toString()));
+        assertNotNull(readClientResponse.getClaims().get(REDIRECT_URIS.toString()));
+        assertNotNull(readClientResponse.getClaims().get(APPLICATION_TYPE.toString()));
+        assertNotNull(readClientResponse.getClaims().get(CLIENT_NAME.toString()));
+        assertNotNull(readClientResponse.getClaims().get(ID_TOKEN_SIGNED_RESPONSE_ALG.toString()));
+        assertNotNull(readClientResponse.getClaims().get(SCOPE.toString()));
+
+        // 3. Request authorization
+        List<ResponseType> responseTypes = Arrays.asList(ResponseType.CODE);
+        List<String> scopes = Arrays.asList(
+                "openid",
+                "profile",
+                "address",
+                "email");
+        String state = UUID.randomUUID().toString();
+
+        AuthorizationRequest authorizationRequest = new AuthorizationRequest(responseTypes, clientId, scopes, redirectUri, null);
+        authorizationRequest.setState(state);
+
+        AuthorizationResponse authorizationResponse = authenticateResourceOwnerAndGrantAccess(
+                authorizationEndpoint, authorizationRequest, userId, userSecret);
+
+        assertNotNull(authorizationResponse.getLocation(), "The location is null");
+        assertNotNull(authorizationResponse.getCode(), "The authorization code is null");
+        assertNotNull(authorizationResponse.getState(), "The state is null");
+        assertNotNull(authorizationResponse.getScope(), "The scope is null");
+        assertNull(authorizationResponse.getIdToken(), "The id token is not null");
+
+        String authorizationCode = authorizationResponse.getCode();
+
+        // 4. Get Access Token
+        OxAuthCryptoProvider cryptoProvider = new OxAuthCryptoProvider(keyStoreFile, keyStoreSecret, dnName);
+
+        TokenRequest tokenRequest = new TokenRequest(GrantType.AUTHORIZATION_CODE);
+        tokenRequest.setAuthenticationMethod(AuthenticationMethod.PRIVATE_KEY_JWT);
+        tokenRequest.setAlgorithm(SignatureAlgorithm.ES256);
+        tokenRequest.setCryptoProvider(cryptoProvider);
+        tokenRequest.setKeyId(keyId);
+        tokenRequest.setAudience(tokenEndpoint);
+        tokenRequest.setCode(authorizationCode);
+        tokenRequest.setRedirectUri(redirectUri);
+        tokenRequest.setAuthUsername(clientId);
+
+        TokenClient tokenClient = new TokenClient(tokenEndpoint);
+        tokenClient.setRequest(tokenRequest);
+        TokenResponse tokenResponse = tokenClient.exec();
+
+        showClient(tokenClient);
+        assertEquals(tokenResponse.getStatus(), 401, "Unexpected response code: " + tokenResponse.getStatus());
+        assertNotNull(tokenResponse.getErrorType(), "The error type is null");
+        assertNotNull(tokenResponse.getErrorDescription(), "The error description is null");
+    }
+
+    @Parameters({"redirectUris", "redirectUri", "userId", "userSecret", "clientJwksUri", "ES384_keyId", "dnName",
+            "keyStoreFile", "keyStoreSecret", "sectorIdentifierUri"})
+    @Test
+    public void tokenEndpointAuthMethodPrivateKeyJwtSigningAlgRS256Fail4(
+            final String redirectUris, final String redirectUri, final String userId, final String userSecret,
+            final String clientJwksUri, final String keyId, final String dnName, final String keyStoreFile,
+            final String keyStoreSecret, final String sectorIdentifierUri) throws Exception {
+        showTitle("tokenEndpointAuthMethodPrivateKeyJwtSigningAlgRS256Fail4");
+
+        // 1. Register client
+        RegisterRequest registerRequest = new RegisterRequest(ApplicationType.WEB, "oxAuth test app",
+                StringUtils.spaceSeparatedToList(redirectUris));
+        registerRequest.setTokenEndpointAuthMethod(AuthenticationMethod.PRIVATE_KEY_JWT);
+        registerRequest.setTokenEndpointAuthSigningAlg(SignatureAlgorithm.RS256);
+        registerRequest.setJwksUri(clientJwksUri);
+        registerRequest.setSectorIdentifierUri(sectorIdentifierUri);
+
+        RegisterClient registerClient = new RegisterClient(registrationEndpoint);
+        registerClient.setRequest(registerRequest);
+        RegisterResponse registerResponse = registerClient.exec();
+
+        showClient(registerClient);
+        assertEquals(registerResponse.getStatus(), 200, "Unexpected response code: " + registerResponse.getEntity());
+        assertNotNull(registerResponse.getClientId());
+        assertNotNull(registerResponse.getClientSecret());
+        assertNotNull(registerResponse.getRegistrationAccessToken());
+        assertNotNull(registerResponse.getClientIdIssuedAt());
+        assertNotNull(registerResponse.getClientSecretExpiresAt());
+
+        String clientId = registerResponse.getClientId();
+        String registrationAccessToken = registerResponse.getRegistrationAccessToken();
+        String registrationClientUri = registerResponse.getRegistrationClientUri();
+
+        // 2. Client read
+        RegisterRequest readClientRequest = new RegisterRequest(registrationAccessToken);
+
+        RegisterClient readClient = new RegisterClient(registrationClientUri);
+        readClient.setRequest(readClientRequest);
+        RegisterResponse readClientResponse = readClient.exec();
+
+        showClient(readClient);
+        assertEquals(readClientResponse.getStatus(), 200, "Unexpected response code: " + readClientResponse.getEntity());
+        assertNotNull(readClientResponse.getClientId());
+        assertNotNull(readClientResponse.getClientSecret());
+        assertNotNull(readClientResponse.getClientIdIssuedAt());
+        assertNotNull(readClientResponse.getClientSecretExpiresAt());
+
+        assertTrue(readClientResponse.getClaims().containsKey(TOKEN_ENDPOINT_AUTH_METHOD.toString()));
+        assertEquals(readClientResponse.getClaims().get(TOKEN_ENDPOINT_AUTH_METHOD.toString()),
+                AuthenticationMethod.PRIVATE_KEY_JWT.toString());
+        assertTrue(readClientResponse.getClaims().containsKey(TOKEN_ENDPOINT_AUTH_SIGNING_ALG.toString()));
+        assertEquals(readClientResponse.getClaims().get(TOKEN_ENDPOINT_AUTH_SIGNING_ALG.toString()),
+                SignatureAlgorithm.RS256.toString());
+        assertNotNull(readClientResponse.getClaims().get(RESPONSE_TYPES.toString()));
+        assertNotNull(readClientResponse.getClaims().get(REDIRECT_URIS.toString()));
+        assertNotNull(readClientResponse.getClaims().get(APPLICATION_TYPE.toString()));
+        assertNotNull(readClientResponse.getClaims().get(CLIENT_NAME.toString()));
+        assertNotNull(readClientResponse.getClaims().get(ID_TOKEN_SIGNED_RESPONSE_ALG.toString()));
+        assertNotNull(readClientResponse.getClaims().get(SCOPE.toString()));
+
+        // 3. Request authorization
+        List<ResponseType> responseTypes = Arrays.asList(ResponseType.CODE);
+        List<String> scopes = Arrays.asList(
+                "openid",
+                "profile",
+                "address",
+                "email");
+        String state = UUID.randomUUID().toString();
+
+        AuthorizationRequest authorizationRequest = new AuthorizationRequest(responseTypes, clientId, scopes, redirectUri, null);
+        authorizationRequest.setState(state);
+
+        AuthorizationResponse authorizationResponse = authenticateResourceOwnerAndGrantAccess(
+                authorizationEndpoint, authorizationRequest, userId, userSecret);
+
+        assertNotNull(authorizationResponse.getLocation(), "The location is null");
+        assertNotNull(authorizationResponse.getCode(), "The authorization code is null");
+        assertNotNull(authorizationResponse.getState(), "The state is null");
+        assertNotNull(authorizationResponse.getScope(), "The scope is null");
+        assertNull(authorizationResponse.getIdToken(), "The id token is not null");
+
+        String authorizationCode = authorizationResponse.getCode();
+
+        // 4. Get Access Token
+        OxAuthCryptoProvider cryptoProvider = new OxAuthCryptoProvider(keyStoreFile, keyStoreSecret, dnName);
+
+        TokenRequest tokenRequest = new TokenRequest(GrantType.AUTHORIZATION_CODE);
+        tokenRequest.setAuthenticationMethod(AuthenticationMethod.PRIVATE_KEY_JWT);
+        tokenRequest.setAlgorithm(SignatureAlgorithm.ES384);
+        tokenRequest.setCryptoProvider(cryptoProvider);
+        tokenRequest.setKeyId(keyId);
+        tokenRequest.setAudience(tokenEndpoint);
+        tokenRequest.setCode(authorizationCode);
+        tokenRequest.setRedirectUri(redirectUri);
+        tokenRequest.setAuthUsername(clientId);
+
+        TokenClient tokenClient = new TokenClient(tokenEndpoint);
+        tokenClient.setRequest(tokenRequest);
+        TokenResponse tokenResponse = tokenClient.exec();
+
+        showClient(tokenClient);
+        assertEquals(tokenResponse.getStatus(), 401, "Unexpected response code: " + tokenResponse.getStatus());
+        assertNotNull(tokenResponse.getErrorType(), "The error type is null");
+        assertNotNull(tokenResponse.getErrorDescription(), "The error description is null");
+    }
+
+    @Parameters({"redirectUris", "redirectUri", "userId", "userSecret", "clientJwksUri", "ES512_keyId", "dnName",
+            "keyStoreFile", "keyStoreSecret", "sectorIdentifierUri"})
+    @Test
+    public void tokenEndpointAuthMethodPrivateKeyJwtSigningAlgRS256Fail5(
+            final String redirectUris, final String redirectUri, final String userId, final String userSecret,
+            final String clientJwksUri, final String keyId, final String dnName, final String keyStoreFile,
+            final String keyStoreSecret, final String sectorIdentifierUri) throws Exception {
+        showTitle("tokenEndpointAuthMethodPrivateKeyJwtSigningAlgRS256Fail5");
+
+        // 1. Register client
+        RegisterRequest registerRequest = new RegisterRequest(ApplicationType.WEB, "oxAuth test app",
+                StringUtils.spaceSeparatedToList(redirectUris));
+        registerRequest.setTokenEndpointAuthMethod(AuthenticationMethod.PRIVATE_KEY_JWT);
+        registerRequest.setTokenEndpointAuthSigningAlg(SignatureAlgorithm.RS256);
+        registerRequest.setJwksUri(clientJwksUri);
+        registerRequest.setSectorIdentifierUri(sectorIdentifierUri);
+
+        RegisterClient registerClient = new RegisterClient(registrationEndpoint);
+        registerClient.setRequest(registerRequest);
+        RegisterResponse registerResponse = registerClient.exec();
+
+        showClient(registerClient);
+        assertEquals(registerResponse.getStatus(), 200, "Unexpected response code: " + registerResponse.getEntity());
+        assertNotNull(registerResponse.getClientId());
+        assertNotNull(registerResponse.getClientSecret());
+        assertNotNull(registerResponse.getRegistrationAccessToken());
+        assertNotNull(registerResponse.getClientIdIssuedAt());
+        assertNotNull(registerResponse.getClientSecretExpiresAt());
+
+        String clientId = registerResponse.getClientId();
+        String registrationAccessToken = registerResponse.getRegistrationAccessToken();
+        String registrationClientUri = registerResponse.getRegistrationClientUri();
+
+        // 2. Client read
+        RegisterRequest readClientRequest = new RegisterRequest(registrationAccessToken);
+
+        RegisterClient readClient = new RegisterClient(registrationClientUri);
+        readClient.setRequest(readClientRequest);
+        RegisterResponse readClientResponse = readClient.exec();
+
+        showClient(readClient);
+        assertEquals(readClientResponse.getStatus(), 200, "Unexpected response code: " + readClientResponse.getEntity());
+        assertNotNull(readClientResponse.getClientId());
+        assertNotNull(readClientResponse.getClientSecret());
+        assertNotNull(readClientResponse.getClientIdIssuedAt());
+        assertNotNull(readClientResponse.getClientSecretExpiresAt());
+
+        assertTrue(readClientResponse.getClaims().containsKey(TOKEN_ENDPOINT_AUTH_METHOD.toString()));
+        assertEquals(readClientResponse.getClaims().get(TOKEN_ENDPOINT_AUTH_METHOD.toString()),
+                AuthenticationMethod.PRIVATE_KEY_JWT.toString());
+        assertTrue(readClientResponse.getClaims().containsKey(TOKEN_ENDPOINT_AUTH_SIGNING_ALG.toString()));
+        assertEquals(readClientResponse.getClaims().get(TOKEN_ENDPOINT_AUTH_SIGNING_ALG.toString()),
+                SignatureAlgorithm.RS256.toString());
+        assertNotNull(readClientResponse.getClaims().get(RESPONSE_TYPES.toString()));
+        assertNotNull(readClientResponse.getClaims().get(REDIRECT_URIS.toString()));
+        assertNotNull(readClientResponse.getClaims().get(APPLICATION_TYPE.toString()));
+        assertNotNull(readClientResponse.getClaims().get(CLIENT_NAME.toString()));
+        assertNotNull(readClientResponse.getClaims().get(ID_TOKEN_SIGNED_RESPONSE_ALG.toString()));
+        assertNotNull(readClientResponse.getClaims().get(SCOPE.toString()));
+
+        // 3. Request authorization
+        List<ResponseType> responseTypes = Arrays.asList(ResponseType.CODE);
+        List<String> scopes = Arrays.asList(
+                "openid",
+                "profile",
+                "address",
+                "email");
+        String state = UUID.randomUUID().toString();
+
+        AuthorizationRequest authorizationRequest = new AuthorizationRequest(responseTypes, clientId, scopes, redirectUri, null);
+        authorizationRequest.setState(state);
+
+        AuthorizationResponse authorizationResponse = authenticateResourceOwnerAndGrantAccess(
+                authorizationEndpoint, authorizationRequest, userId, userSecret);
+
+        assertNotNull(authorizationResponse.getLocation(), "The location is null");
+        assertNotNull(authorizationResponse.getCode(), "The authorization code is null");
+        assertNotNull(authorizationResponse.getState(), "The state is null");
+        assertNotNull(authorizationResponse.getScope(), "The scope is null");
+        assertNull(authorizationResponse.getIdToken(), "The id token is not null");
+
+        String authorizationCode = authorizationResponse.getCode();
+
+        // 4. Get Access Token
+        OxAuthCryptoProvider cryptoProvider = new OxAuthCryptoProvider(keyStoreFile, keyStoreSecret, dnName);
+
+        TokenRequest tokenRequest = new TokenRequest(GrantType.AUTHORIZATION_CODE);
+        tokenRequest.setAuthenticationMethod(AuthenticationMethod.PRIVATE_KEY_JWT);
+        tokenRequest.setAlgorithm(SignatureAlgorithm.ES512);
+        tokenRequest.setCryptoProvider(cryptoProvider);
+        tokenRequest.setKeyId(keyId);
+        tokenRequest.setAudience(tokenEndpoint);
+        tokenRequest.setCode(authorizationCode);
+        tokenRequest.setRedirectUri(redirectUri);
+        tokenRequest.setAuthUsername(clientId);
+
+        TokenClient tokenClient = new TokenClient(tokenEndpoint);
+        tokenClient.setRequest(tokenRequest);
+        TokenResponse tokenResponse = tokenClient.exec();
+
+        showClient(tokenClient);
+        assertEquals(tokenResponse.getStatus(), 401, "Unexpected response code: " + tokenResponse.getStatus());
+        assertNotNull(tokenResponse.getErrorType(), "The error type is null");
+        assertNotNull(tokenResponse.getErrorDescription(), "The error description is null");
+    }
+
+    @Parameters({"redirectUris", "redirectUri", "userId", "userSecret", "clientJwksUri", "RS384_keyId", "dnName",
+            "keyStoreFile", "keyStoreSecret", "sectorIdentifierUri"})
+    @Test
+    public void tokenEndpointAuthMethodPrivateKeyJwtSigningAlgRS384(
+            final String redirectUris, final String redirectUri, final String userId, final String userSecret,
+            final String clientJwksUri, final String keyId, final String dnName, final String keyStoreFile,
+            final String keyStoreSecret, final String sectorIdentifierUri) throws Exception {
+        showTitle("tokenEndpointAuthMethodPrivateKeyJwtSigningAlgRS384");
+
+        // 1. Register client
+        RegisterRequest registerRequest = new RegisterRequest(ApplicationType.WEB, "oxAuth test app",
+                StringUtils.spaceSeparatedToList(redirectUris));
+        registerRequest.setTokenEndpointAuthMethod(AuthenticationMethod.PRIVATE_KEY_JWT);
+        registerRequest.setTokenEndpointAuthSigningAlg(SignatureAlgorithm.RS384);
+        registerRequest.setJwksUri(clientJwksUri);
+        registerRequest.setSectorIdentifierUri(sectorIdentifierUri);
+
+        RegisterClient registerClient = new RegisterClient(registrationEndpoint);
+        registerClient.setRequest(registerRequest);
+        RegisterResponse registerResponse = registerClient.exec();
+
+        showClient(registerClient);
+        assertEquals(registerResponse.getStatus(), 200, "Unexpected response code: " + registerResponse.getEntity());
+        assertNotNull(registerResponse.getClientId());
+        assertNotNull(registerResponse.getClientSecret());
+        assertNotNull(registerResponse.getRegistrationAccessToken());
+        assertNotNull(registerResponse.getClientIdIssuedAt());
+        assertNotNull(registerResponse.getClientSecretExpiresAt());
+
+        String clientId = registerResponse.getClientId();
+        String registrationAccessToken = registerResponse.getRegistrationAccessToken();
+        String registrationClientUri = registerResponse.getRegistrationClientUri();
+
+        // 2. Client read
+        RegisterRequest readClientRequest = new RegisterRequest(registrationAccessToken);
+
+        RegisterClient readClient = new RegisterClient(registrationClientUri);
+        readClient.setRequest(readClientRequest);
+        RegisterResponse readClientResponse = readClient.exec();
+
+        showClient(readClient);
+        assertEquals(readClientResponse.getStatus(), 200, "Unexpected response code: " + readClientResponse.getEntity());
+        assertNotNull(readClientResponse.getClientId());
+        assertNotNull(readClientResponse.getClientSecret());
+        assertNotNull(readClientResponse.getClientIdIssuedAt());
+        assertNotNull(readClientResponse.getClientSecretExpiresAt());
+
+        assertTrue(readClientResponse.getClaims().containsKey(TOKEN_ENDPOINT_AUTH_METHOD.toString()));
+        assertEquals(readClientResponse.getClaims().get(TOKEN_ENDPOINT_AUTH_METHOD.toString()),
+                AuthenticationMethod.PRIVATE_KEY_JWT.toString());
+        assertTrue(readClientResponse.getClaims().containsKey(TOKEN_ENDPOINT_AUTH_SIGNING_ALG.toString()));
+        assertEquals(readClientResponse.getClaims().get(TOKEN_ENDPOINT_AUTH_SIGNING_ALG.toString()),
+                SignatureAlgorithm.RS384.toString());
+        assertNotNull(readClientResponse.getClaims().get(RESPONSE_TYPES.toString()));
+        assertNotNull(readClientResponse.getClaims().get(REDIRECT_URIS.toString()));
+        assertNotNull(readClientResponse.getClaims().get(APPLICATION_TYPE.toString()));
+        assertNotNull(readClientResponse.getClaims().get(CLIENT_NAME.toString()));
+        assertNotNull(readClientResponse.getClaims().get(ID_TOKEN_SIGNED_RESPONSE_ALG.toString()));
+        assertNotNull(readClientResponse.getClaims().get(SCOPE.toString()));
+
+        // 3. Request authorization
+        List<ResponseType> responseTypes = Arrays.asList(ResponseType.CODE);
+        List<String> scopes = Arrays.asList(
+                "openid",
+                "profile",
+                "address",
+                "email");
+        String state = UUID.randomUUID().toString();
+
+        AuthorizationRequest authorizationRequest = new AuthorizationRequest(responseTypes, clientId, scopes, redirectUri, null);
+        authorizationRequest.setState(state);
+
+        AuthorizationResponse authorizationResponse = authenticateResourceOwnerAndGrantAccess(
+                authorizationEndpoint, authorizationRequest, userId, userSecret);
+
+        assertNotNull(authorizationResponse.getLocation(), "The location is null");
+        assertNotNull(authorizationResponse.getCode(), "The authorization code is null");
+        assertNotNull(authorizationResponse.getState(), "The state is null");
+        assertNotNull(authorizationResponse.getScope(), "The scope is null");
+        assertNull(authorizationResponse.getIdToken(), "The id token is not null");
+
+        String authorizationCode = authorizationResponse.getCode();
+
+        // 4. Get Access Token
+        OxAuthCryptoProvider cryptoProvider = new OxAuthCryptoProvider(keyStoreFile, keyStoreSecret, dnName);
+
+        TokenRequest tokenRequest = new TokenRequest(GrantType.AUTHORIZATION_CODE);
+        tokenRequest.setAuthenticationMethod(AuthenticationMethod.PRIVATE_KEY_JWT);
+        tokenRequest.setAlgorithm(SignatureAlgorithm.RS384);
+        tokenRequest.setCryptoProvider(cryptoProvider);
+        tokenRequest.setKeyId(keyId);
+        tokenRequest.setAudience(tokenEndpoint);
+        tokenRequest.setCode(authorizationCode);
+        tokenRequest.setRedirectUri(redirectUri);
+        tokenRequest.setAuthUsername(clientId);
+
+        TokenClient tokenClient = new TokenClient(tokenEndpoint);
+        tokenClient.setRequest(tokenRequest);
+        TokenResponse tokenResponse = tokenClient.exec();
+
+        showClient(tokenClient);
+        assertEquals(tokenResponse.getStatus(), 200, "Unexpected response code: " + tokenResponse.getStatus());
+        assertNotNull(tokenResponse.getEntity(), "The entity is null");
+        assertNotNull(tokenResponse.getAccessToken(), "The access token is null");
+        assertNotNull(tokenResponse.getExpiresIn(), "The expires in value is null");
+        assertNotNull(tokenResponse.getTokenType(), "The token type is null");
+        assertNotNull(tokenResponse.getRefreshToken(), "The refresh token is null");
+    }
+
+    @Parameters({"redirectUris", "redirectUri", "userId", "userSecret", "clientJwksUri", "RS256_keyId", "dnName",
+            "keyStoreFile", "keyStoreSecret", "sectorIdentifierUri"})
+    @Test
+    public void tokenEndpointAuthMethodPrivateKeyJwtSigningAlgRS384Fail1(
+            final String redirectUris, final String redirectUri, final String userId, final String userSecret,
+            final String clientJwksUri, final String keyId, final String dnName, final String keyStoreFile,
+            final String keyStoreSecret, final String sectorIdentifierUri) throws Exception {
+        showTitle("tokenEndpointAuthMethodPrivateKeyJwtSigningAlgRS384Fail1");
+
+        // 1. Register client
+        RegisterRequest registerRequest = new RegisterRequest(ApplicationType.WEB, "oxAuth test app",
+                StringUtils.spaceSeparatedToList(redirectUris));
+        registerRequest.setTokenEndpointAuthMethod(AuthenticationMethod.PRIVATE_KEY_JWT);
+        registerRequest.setTokenEndpointAuthSigningAlg(SignatureAlgorithm.RS384);
+        registerRequest.setJwksUri(clientJwksUri);
+        registerRequest.setSectorIdentifierUri(sectorIdentifierUri);
+
+        RegisterClient registerClient = new RegisterClient(registrationEndpoint);
+        registerClient.setRequest(registerRequest);
+        RegisterResponse registerResponse = registerClient.exec();
+
+        showClient(registerClient);
+        assertEquals(registerResponse.getStatus(), 200, "Unexpected response code: " + registerResponse.getEntity());
+        assertNotNull(registerResponse.getClientId());
+        assertNotNull(registerResponse.getClientSecret());
+        assertNotNull(registerResponse.getRegistrationAccessToken());
+        assertNotNull(registerResponse.getClientIdIssuedAt());
+        assertNotNull(registerResponse.getClientSecretExpiresAt());
+
+        String clientId = registerResponse.getClientId();
+        String registrationAccessToken = registerResponse.getRegistrationAccessToken();
+        String registrationClientUri = registerResponse.getRegistrationClientUri();
+
+        // 2. Client read
+        RegisterRequest readClientRequest = new RegisterRequest(registrationAccessToken);
+
+        RegisterClient readClient = new RegisterClient(registrationClientUri);
+        readClient.setRequest(readClientRequest);
+        RegisterResponse readClientResponse = readClient.exec();
+
+        showClient(readClient);
+        assertEquals(readClientResponse.getStatus(), 200, "Unexpected response code: " + readClientResponse.getEntity());
+        assertNotNull(readClientResponse.getClientId());
+        assertNotNull(readClientResponse.getClientSecret());
+        assertNotNull(readClientResponse.getClientIdIssuedAt());
+        assertNotNull(readClientResponse.getClientSecretExpiresAt());
+
+        assertTrue(readClientResponse.getClaims().containsKey(TOKEN_ENDPOINT_AUTH_METHOD.toString()));
+        assertEquals(readClientResponse.getClaims().get(TOKEN_ENDPOINT_AUTH_METHOD.toString()),
+                AuthenticationMethod.PRIVATE_KEY_JWT.toString());
+        assertTrue(readClientResponse.getClaims().containsKey(TOKEN_ENDPOINT_AUTH_SIGNING_ALG.toString()));
+        assertEquals(readClientResponse.getClaims().get(TOKEN_ENDPOINT_AUTH_SIGNING_ALG.toString()),
+                SignatureAlgorithm.RS384.toString());
+        assertNotNull(readClientResponse.getClaims().get(RESPONSE_TYPES.toString()));
+        assertNotNull(readClientResponse.getClaims().get(REDIRECT_URIS.toString()));
+        assertNotNull(readClientResponse.getClaims().get(APPLICATION_TYPE.toString()));
+        assertNotNull(readClientResponse.getClaims().get(CLIENT_NAME.toString()));
+        assertNotNull(readClientResponse.getClaims().get(ID_TOKEN_SIGNED_RESPONSE_ALG.toString()));
+        assertNotNull(readClientResponse.getClaims().get(SCOPE.toString()));
+
+        // 3. Request authorization
+        List<ResponseType> responseTypes = Arrays.asList(ResponseType.CODE);
+        List<String> scopes = Arrays.asList(
+                "openid",
+                "profile",
+                "address",
+                "email");
+        String state = UUID.randomUUID().toString();
+
+        AuthorizationRequest authorizationRequest = new AuthorizationRequest(responseTypes, clientId, scopes, redirectUri, null);
+        authorizationRequest.setState(state);
+
+        AuthorizationResponse authorizationResponse = authenticateResourceOwnerAndGrantAccess(
+                authorizationEndpoint, authorizationRequest, userId, userSecret);
+
+        assertNotNull(authorizationResponse.getLocation(), "The location is null");
+        assertNotNull(authorizationResponse.getCode(), "The authorization code is null");
+        assertNotNull(authorizationResponse.getState(), "The state is null");
+        assertNotNull(authorizationResponse.getScope(), "The scope is null");
+        assertNull(authorizationResponse.getIdToken(), "The id token is not null");
+
+        String authorizationCode = authorizationResponse.getCode();
+
+        // 4. Get Access Token
+        OxAuthCryptoProvider cryptoProvider = new OxAuthCryptoProvider(keyStoreFile, keyStoreSecret, dnName);
+
+        TokenRequest tokenRequest = new TokenRequest(GrantType.AUTHORIZATION_CODE);
+        tokenRequest.setAuthenticationMethod(AuthenticationMethod.PRIVATE_KEY_JWT);
+        tokenRequest.setAlgorithm(SignatureAlgorithm.RS256);
+        tokenRequest.setCryptoProvider(cryptoProvider);
+        tokenRequest.setKeyId(keyId);
+        tokenRequest.setAudience(tokenEndpoint);
+        tokenRequest.setCode(authorizationCode);
+        tokenRequest.setRedirectUri(redirectUri);
+        tokenRequest.setAuthUsername(clientId);
+
+        TokenClient tokenClient = new TokenClient(tokenEndpoint);
+        tokenClient.setRequest(tokenRequest);
+        TokenResponse tokenResponse = tokenClient.exec();
+
+        showClient(tokenClient);
+        assertEquals(tokenResponse.getStatus(), 401, "Unexpected response code: " + tokenResponse.getStatus());
+        assertNotNull(tokenResponse.getErrorType(), "The error type is null");
+        assertNotNull(tokenResponse.getErrorDescription(), "The error description is null");
+    }
+
+    @Parameters({"redirectUris", "redirectUri", "userId", "userSecret", "clientJwksUri", "RS512_keyId", "dnName",
+            "keyStoreFile", "keyStoreSecret", "sectorIdentifierUri"})
+    @Test
+    public void tokenEndpointAuthMethodPrivateKeyJwtSigningAlgRS384Fail2(
+            final String redirectUris, final String redirectUri, final String userId, final String userSecret,
+            final String clientJwksUri, final String keyId, final String dnName, final String keyStoreFile,
+            final String keyStoreSecret, final String sectorIdentifierUri) throws Exception {
+        showTitle("tokenEndpointAuthMethodPrivateKeyJwtSigningAlgRS384Fail2");
+
+        // 1. Register client
+        RegisterRequest registerRequest = new RegisterRequest(ApplicationType.WEB, "oxAuth test app",
+                StringUtils.spaceSeparatedToList(redirectUris));
+        registerRequest.setTokenEndpointAuthMethod(AuthenticationMethod.PRIVATE_KEY_JWT);
+        registerRequest.setTokenEndpointAuthSigningAlg(SignatureAlgorithm.RS384);
+        registerRequest.setJwksUri(clientJwksUri);
+        registerRequest.setSectorIdentifierUri(sectorIdentifierUri);
+
+        RegisterClient registerClient = new RegisterClient(registrationEndpoint);
+        registerClient.setRequest(registerRequest);
+        RegisterResponse registerResponse = registerClient.exec();
+
+        showClient(registerClient);
+        assertEquals(registerResponse.getStatus(), 200, "Unexpected response code: " + registerResponse.getEntity());
+        assertNotNull(registerResponse.getClientId());
+        assertNotNull(registerResponse.getClientSecret());
+        assertNotNull(registerResponse.getRegistrationAccessToken());
+        assertNotNull(registerResponse.getClientIdIssuedAt());
+        assertNotNull(registerResponse.getClientSecretExpiresAt());
+
+        String clientId = registerResponse.getClientId();
+        String registrationAccessToken = registerResponse.getRegistrationAccessToken();
+        String registrationClientUri = registerResponse.getRegistrationClientUri();
+
+        // 2. Client read
+        RegisterRequest readClientRequest = new RegisterRequest(registrationAccessToken);
+
+        RegisterClient readClient = new RegisterClient(registrationClientUri);
+        readClient.setRequest(readClientRequest);
+        RegisterResponse readClientResponse = readClient.exec();
+
+        showClient(readClient);
+        assertEquals(readClientResponse.getStatus(), 200, "Unexpected response code: " + readClientResponse.getEntity());
+        assertNotNull(readClientResponse.getClientId());
+        assertNotNull(readClientResponse.getClientSecret());
+        assertNotNull(readClientResponse.getClientIdIssuedAt());
+        assertNotNull(readClientResponse.getClientSecretExpiresAt());
+
+        assertTrue(readClientResponse.getClaims().containsKey(TOKEN_ENDPOINT_AUTH_METHOD.toString()));
+        assertEquals(readClientResponse.getClaims().get(TOKEN_ENDPOINT_AUTH_METHOD.toString()),
+                AuthenticationMethod.PRIVATE_KEY_JWT.toString());
+        assertTrue(readClientResponse.getClaims().containsKey(TOKEN_ENDPOINT_AUTH_SIGNING_ALG.toString()));
+        assertEquals(readClientResponse.getClaims().get(TOKEN_ENDPOINT_AUTH_SIGNING_ALG.toString()),
+                SignatureAlgorithm.RS384.toString());
+        assertNotNull(readClientResponse.getClaims().get(RESPONSE_TYPES.toString()));
+        assertNotNull(readClientResponse.getClaims().get(REDIRECT_URIS.toString()));
+        assertNotNull(readClientResponse.getClaims().get(APPLICATION_TYPE.toString()));
+        assertNotNull(readClientResponse.getClaims().get(CLIENT_NAME.toString()));
+        assertNotNull(readClientResponse.getClaims().get(ID_TOKEN_SIGNED_RESPONSE_ALG.toString()));
+        assertNotNull(readClientResponse.getClaims().get(SCOPE.toString()));
+
+        // 3. Request authorization
+        List<ResponseType> responseTypes = Arrays.asList(ResponseType.CODE);
+        List<String> scopes = Arrays.asList(
+                "openid",
+                "profile",
+                "address",
+                "email");
+        String state = UUID.randomUUID().toString();
+
+        AuthorizationRequest authorizationRequest = new AuthorizationRequest(responseTypes, clientId, scopes, redirectUri, null);
+        authorizationRequest.setState(state);
+
+        AuthorizationResponse authorizationResponse = authenticateResourceOwnerAndGrantAccess(
+                authorizationEndpoint, authorizationRequest, userId, userSecret);
+
+        assertNotNull(authorizationResponse.getLocation(), "The location is null");
+        assertNotNull(authorizationResponse.getCode(), "The authorization code is null");
+        assertNotNull(authorizationResponse.getState(), "The state is null");
+        assertNotNull(authorizationResponse.getScope(), "The scope is null");
+        assertNull(authorizationResponse.getIdToken(), "The id token is not null");
+
+        String authorizationCode = authorizationResponse.getCode();
+
+        // 4. Get Access Token
+        OxAuthCryptoProvider cryptoProvider = new OxAuthCryptoProvider(keyStoreFile, keyStoreSecret, dnName);
+
+        TokenRequest tokenRequest = new TokenRequest(GrantType.AUTHORIZATION_CODE);
+        tokenRequest.setAuthenticationMethod(AuthenticationMethod.PRIVATE_KEY_JWT);
+        tokenRequest.setAlgorithm(SignatureAlgorithm.RS512);
+        tokenRequest.setCryptoProvider(cryptoProvider);
+        tokenRequest.setKeyId(keyId);
+        tokenRequest.setAudience(tokenEndpoint);
+        tokenRequest.setCode(authorizationCode);
+        tokenRequest.setRedirectUri(redirectUri);
+        tokenRequest.setAuthUsername(clientId);
+
+        TokenClient tokenClient = new TokenClient(tokenEndpoint);
+        tokenClient.setRequest(tokenRequest);
+        TokenResponse tokenResponse = tokenClient.exec();
+
+        showClient(tokenClient);
+        assertEquals(tokenResponse.getStatus(), 401, "Unexpected response code: " + tokenResponse.getStatus());
+        assertNotNull(tokenResponse.getErrorType(), "The error type is null");
+        assertNotNull(tokenResponse.getErrorDescription(), "The error description is null");
+    }
+
+    @Parameters({"redirectUris", "redirectUri", "userId", "userSecret", "clientJwksUri", "ES256_keyId", "dnName",
+            "keyStoreFile", "keyStoreSecret", "sectorIdentifierUri"})
+    @Test
+    public void tokenEndpointAuthMethodPrivateKeyJwtSigningAlgRS384Fail3(
+            final String redirectUris, final String redirectUri, final String userId, final String userSecret,
+            final String clientJwksUri, final String keyId, final String dnName, final String keyStoreFile,
+            final String keyStoreSecret, final String sectorIdentifierUri) throws Exception {
+        showTitle("tokenEndpointAuthMethodPrivateKeyJwtSigningAlgRS384Fail3");
+
+        // 1. Register client
+        RegisterRequest registerRequest = new RegisterRequest(ApplicationType.WEB, "oxAuth test app",
+                StringUtils.spaceSeparatedToList(redirectUris));
+        registerRequest.setTokenEndpointAuthMethod(AuthenticationMethod.PRIVATE_KEY_JWT);
+        registerRequest.setTokenEndpointAuthSigningAlg(SignatureAlgorithm.RS384);
+        registerRequest.setJwksUri(clientJwksUri);
+        registerRequest.setSectorIdentifierUri(sectorIdentifierUri);
+
+        RegisterClient registerClient = new RegisterClient(registrationEndpoint);
+        registerClient.setRequest(registerRequest);
+        RegisterResponse registerResponse = registerClient.exec();
+
+        showClient(registerClient);
+        assertEquals(registerResponse.getStatus(), 200, "Unexpected response code: " + registerResponse.getEntity());
+        assertNotNull(registerResponse.getClientId());
+        assertNotNull(registerResponse.getClientSecret());
+        assertNotNull(registerResponse.getRegistrationAccessToken());
+        assertNotNull(registerResponse.getClientIdIssuedAt());
+        assertNotNull(registerResponse.getClientSecretExpiresAt());
+
+        String clientId = registerResponse.getClientId();
+        String registrationAccessToken = registerResponse.getRegistrationAccessToken();
+        String registrationClientUri = registerResponse.getRegistrationClientUri();
+
+        // 2. Client read
+        RegisterRequest readClientRequest = new RegisterRequest(registrationAccessToken);
+
+        RegisterClient readClient = new RegisterClient(registrationClientUri);
+        readClient.setRequest(readClientRequest);
+        RegisterResponse readClientResponse = readClient.exec();
+
+        showClient(readClient);
+        assertEquals(readClientResponse.getStatus(), 200, "Unexpected response code: " + readClientResponse.getEntity());
+        assertNotNull(readClientResponse.getClientId());
+        assertNotNull(readClientResponse.getClientSecret());
+        assertNotNull(readClientResponse.getClientIdIssuedAt());
+        assertNotNull(readClientResponse.getClientSecretExpiresAt());
+
+        assertTrue(readClientResponse.getClaims().containsKey(TOKEN_ENDPOINT_AUTH_METHOD.toString()));
+        assertEquals(readClientResponse.getClaims().get(TOKEN_ENDPOINT_AUTH_METHOD.toString()),
+                AuthenticationMethod.PRIVATE_KEY_JWT.toString());
+        assertTrue(readClientResponse.getClaims().containsKey(TOKEN_ENDPOINT_AUTH_SIGNING_ALG.toString()));
+        assertEquals(readClientResponse.getClaims().get(TOKEN_ENDPOINT_AUTH_SIGNING_ALG.toString()),
+                SignatureAlgorithm.RS384.toString());
+        assertNotNull(readClientResponse.getClaims().get(RESPONSE_TYPES.toString()));
+        assertNotNull(readClientResponse.getClaims().get(REDIRECT_URIS.toString()));
+        assertNotNull(readClientResponse.getClaims().get(APPLICATION_TYPE.toString()));
+        assertNotNull(readClientResponse.getClaims().get(CLIENT_NAME.toString()));
+        assertNotNull(readClientResponse.getClaims().get(ID_TOKEN_SIGNED_RESPONSE_ALG.toString()));
+        assertNotNull(readClientResponse.getClaims().get(SCOPE.toString()));
+
+        // 3. Request authorization
+        List<ResponseType> responseTypes = Arrays.asList(ResponseType.CODE);
+        List<String> scopes = Arrays.asList(
+                "openid",
+                "profile",
+                "address",
+                "email");
+        String state = UUID.randomUUID().toString();
+
+        AuthorizationRequest authorizationRequest = new AuthorizationRequest(responseTypes, clientId, scopes, redirectUri, null);
+        authorizationRequest.setState(state);
+
+        AuthorizationResponse authorizationResponse = authenticateResourceOwnerAndGrantAccess(
+                authorizationEndpoint, authorizationRequest, userId, userSecret);
+
+        assertNotNull(authorizationResponse.getLocation(), "The location is null");
+        assertNotNull(authorizationResponse.getCode(), "The authorization code is null");
+        assertNotNull(authorizationResponse.getState(), "The state is null");
+        assertNotNull(authorizationResponse.getScope(), "The scope is null");
+        assertNull(authorizationResponse.getIdToken(), "The id token is not null");
+
+        String authorizationCode = authorizationResponse.getCode();
+
+        // 4. Get Access Token
+        OxAuthCryptoProvider cryptoProvider = new OxAuthCryptoProvider(keyStoreFile, keyStoreSecret, dnName);
+
+        TokenRequest tokenRequest = new TokenRequest(GrantType.AUTHORIZATION_CODE);
+        tokenRequest.setAuthenticationMethod(AuthenticationMethod.PRIVATE_KEY_JWT);
+        tokenRequest.setAlgorithm(SignatureAlgorithm.ES256);
+        tokenRequest.setCryptoProvider(cryptoProvider);
+        tokenRequest.setKeyId(keyId);
+        tokenRequest.setAudience(tokenEndpoint);
+        tokenRequest.setCode(authorizationCode);
+        tokenRequest.setRedirectUri(redirectUri);
+        tokenRequest.setAuthUsername(clientId);
+
+        TokenClient tokenClient = new TokenClient(tokenEndpoint);
+        tokenClient.setRequest(tokenRequest);
+        TokenResponse tokenResponse = tokenClient.exec();
+
+        showClient(tokenClient);
+        assertEquals(tokenResponse.getStatus(), 401, "Unexpected response code: " + tokenResponse.getStatus());
+        assertNotNull(tokenResponse.getErrorType(), "The error type is null");
+        assertNotNull(tokenResponse.getErrorDescription(), "The error description is null");
+    }
+
+    @Parameters({"redirectUris", "redirectUri", "userId", "userSecret", "clientJwksUri", "ES384_keyId", "dnName",
+            "keyStoreFile", "keyStoreSecret", "sectorIdentifierUri"})
+    @Test
+    public void tokenEndpointAuthMethodPrivateKeyJwtSigningAlgRS384Fail4(
+            final String redirectUris, final String redirectUri, final String userId, final String userSecret,
+            final String clientJwksUri, final String keyId, final String dnName, final String keyStoreFile,
+            final String keyStoreSecret, final String sectorIdentifierUri) throws Exception {
+        showTitle("tokenEndpointAuthMethodPrivateKeyJwtSigningAlgRS384Fail4");
+
+        // 1. Register client
+        RegisterRequest registerRequest = new RegisterRequest(ApplicationType.WEB, "oxAuth test app",
+                StringUtils.spaceSeparatedToList(redirectUris));
+        registerRequest.setTokenEndpointAuthMethod(AuthenticationMethod.PRIVATE_KEY_JWT);
+        registerRequest.setTokenEndpointAuthSigningAlg(SignatureAlgorithm.RS384);
+        registerRequest.setJwksUri(clientJwksUri);
+        registerRequest.setSectorIdentifierUri(sectorIdentifierUri);
+
+        RegisterClient registerClient = new RegisterClient(registrationEndpoint);
+        registerClient.setRequest(registerRequest);
+        RegisterResponse registerResponse = registerClient.exec();
+
+        showClient(registerClient);
+        assertEquals(registerResponse.getStatus(), 200, "Unexpected response code: " + registerResponse.getEntity());
+        assertNotNull(registerResponse.getClientId());
+        assertNotNull(registerResponse.getClientSecret());
+        assertNotNull(registerResponse.getRegistrationAccessToken());
+        assertNotNull(registerResponse.getClientIdIssuedAt());
+        assertNotNull(registerResponse.getClientSecretExpiresAt());
+
+        String clientId = registerResponse.getClientId();
+        String registrationAccessToken = registerResponse.getRegistrationAccessToken();
+        String registrationClientUri = registerResponse.getRegistrationClientUri();
+
+        // 2. Client read
+        RegisterRequest readClientRequest = new RegisterRequest(registrationAccessToken);
+
+        RegisterClient readClient = new RegisterClient(registrationClientUri);
+        readClient.setRequest(readClientRequest);
+        RegisterResponse readClientResponse = readClient.exec();
+
+        showClient(readClient);
+        assertEquals(readClientResponse.getStatus(), 200, "Unexpected response code: " + readClientResponse.getEntity());
+        assertNotNull(readClientResponse.getClientId());
+        assertNotNull(readClientResponse.getClientSecret());
+        assertNotNull(readClientResponse.getClientIdIssuedAt());
+        assertNotNull(readClientResponse.getClientSecretExpiresAt());
+
+        assertTrue(readClientResponse.getClaims().containsKey(TOKEN_ENDPOINT_AUTH_METHOD.toString()));
+        assertEquals(readClientResponse.getClaims().get(TOKEN_ENDPOINT_AUTH_METHOD.toString()),
+                AuthenticationMethod.PRIVATE_KEY_JWT.toString());
+        assertTrue(readClientResponse.getClaims().containsKey(TOKEN_ENDPOINT_AUTH_SIGNING_ALG.toString()));
+        assertEquals(readClientResponse.getClaims().get(TOKEN_ENDPOINT_AUTH_SIGNING_ALG.toString()),
+                SignatureAlgorithm.RS384.toString());
+        assertNotNull(readClientResponse.getClaims().get(RESPONSE_TYPES.toString()));
+        assertNotNull(readClientResponse.getClaims().get(REDIRECT_URIS.toString()));
+        assertNotNull(readClientResponse.getClaims().get(APPLICATION_TYPE.toString()));
+        assertNotNull(readClientResponse.getClaims().get(CLIENT_NAME.toString()));
+        assertNotNull(readClientResponse.getClaims().get(ID_TOKEN_SIGNED_RESPONSE_ALG.toString()));
+        assertNotNull(readClientResponse.getClaims().get(SCOPE.toString()));
+
+        // 3. Request authorization
+        List<ResponseType> responseTypes = Arrays.asList(ResponseType.CODE);
+        List<String> scopes = Arrays.asList(
+                "openid",
+                "profile",
+                "address",
+                "email");
+        String state = UUID.randomUUID().toString();
+
+        AuthorizationRequest authorizationRequest = new AuthorizationRequest(responseTypes, clientId, scopes, redirectUri, null);
+        authorizationRequest.setState(state);
+
+        AuthorizationResponse authorizationResponse = authenticateResourceOwnerAndGrantAccess(
+                authorizationEndpoint, authorizationRequest, userId, userSecret);
+
+        assertNotNull(authorizationResponse.getLocation(), "The location is null");
+        assertNotNull(authorizationResponse.getCode(), "The authorization code is null");
+        assertNotNull(authorizationResponse.getState(), "The state is null");
+        assertNotNull(authorizationResponse.getScope(), "The scope is null");
+        assertNull(authorizationResponse.getIdToken(), "The id token is not null");
+
+        String authorizationCode = authorizationResponse.getCode();
+
+        // 4. Get Access Token
+        OxAuthCryptoProvider cryptoProvider = new OxAuthCryptoProvider(keyStoreFile, keyStoreSecret, dnName);
+
+        TokenRequest tokenRequest = new TokenRequest(GrantType.AUTHORIZATION_CODE);
+        tokenRequest.setAuthenticationMethod(AuthenticationMethod.PRIVATE_KEY_JWT);
+        tokenRequest.setAlgorithm(SignatureAlgorithm.ES384);
+        tokenRequest.setCryptoProvider(cryptoProvider);
+        tokenRequest.setKeyId(keyId);
+        tokenRequest.setAudience(tokenEndpoint);
+        tokenRequest.setCode(authorizationCode);
+        tokenRequest.setRedirectUri(redirectUri);
+        tokenRequest.setAuthUsername(clientId);
+
+        TokenClient tokenClient = new TokenClient(tokenEndpoint);
+        tokenClient.setRequest(tokenRequest);
+        TokenResponse tokenResponse = tokenClient.exec();
+
+        showClient(tokenClient);
+        assertEquals(tokenResponse.getStatus(), 401, "Unexpected response code: " + tokenResponse.getStatus());
+        assertNotNull(tokenResponse.getErrorType(), "The error type is null");
+        assertNotNull(tokenResponse.getErrorDescription(), "The error description is null");
+    }
+
+    @Parameters({"redirectUris", "redirectUri", "userId", "userSecret", "clientJwksUri", "ES512_keyId", "dnName",
+            "keyStoreFile", "keyStoreSecret", "sectorIdentifierUri"})
+    @Test
+    public void tokenEndpointAuthMethodPrivateKeyJwtSigningAlgRS384Fail5(
+            final String redirectUris, final String redirectUri, final String userId, final String userSecret,
+            final String clientJwksUri, final String keyId, final String dnName, final String keyStoreFile,
+            final String keyStoreSecret, final String sectorIdentifierUri) throws Exception {
+        showTitle("tokenEndpointAuthMethodPrivateKeyJwtSigningAlgRS384Fail5");
+
+        // 1. Register client
+        RegisterRequest registerRequest = new RegisterRequest(ApplicationType.WEB, "oxAuth test app",
+                StringUtils.spaceSeparatedToList(redirectUris));
+        registerRequest.setTokenEndpointAuthMethod(AuthenticationMethod.PRIVATE_KEY_JWT);
+        registerRequest.setTokenEndpointAuthSigningAlg(SignatureAlgorithm.RS384);
+        registerRequest.setJwksUri(clientJwksUri);
+        registerRequest.setSectorIdentifierUri(sectorIdentifierUri);
+
+        RegisterClient registerClient = new RegisterClient(registrationEndpoint);
+        registerClient.setRequest(registerRequest);
+        RegisterResponse registerResponse = registerClient.exec();
+
+        showClient(registerClient);
+        assertEquals(registerResponse.getStatus(), 200, "Unexpected response code: " + registerResponse.getEntity());
+        assertNotNull(registerResponse.getClientId());
+        assertNotNull(registerResponse.getClientSecret());
+        assertNotNull(registerResponse.getRegistrationAccessToken());
+        assertNotNull(registerResponse.getClientIdIssuedAt());
+        assertNotNull(registerResponse.getClientSecretExpiresAt());
+
+        String clientId = registerResponse.getClientId();
+        String registrationAccessToken = registerResponse.getRegistrationAccessToken();
+        String registrationClientUri = registerResponse.getRegistrationClientUri();
+
+        // 2. Client read
+        RegisterRequest readClientRequest = new RegisterRequest(registrationAccessToken);
+
+        RegisterClient readClient = new RegisterClient(registrationClientUri);
+        readClient.setRequest(readClientRequest);
+        RegisterResponse readClientResponse = readClient.exec();
+
+        showClient(readClient);
+        assertEquals(readClientResponse.getStatus(), 200, "Unexpected response code: " + readClientResponse.getEntity());
+        assertNotNull(readClientResponse.getClientId());
+        assertNotNull(readClientResponse.getClientSecret());
+        assertNotNull(readClientResponse.getClientIdIssuedAt());
+        assertNotNull(readClientResponse.getClientSecretExpiresAt());
+
+        assertTrue(readClientResponse.getClaims().containsKey(TOKEN_ENDPOINT_AUTH_METHOD.toString()));
+        assertEquals(readClientResponse.getClaims().get(TOKEN_ENDPOINT_AUTH_METHOD.toString()),
+                AuthenticationMethod.PRIVATE_KEY_JWT.toString());
+        assertTrue(readClientResponse.getClaims().containsKey(TOKEN_ENDPOINT_AUTH_SIGNING_ALG.toString()));
+        assertEquals(readClientResponse.getClaims().get(TOKEN_ENDPOINT_AUTH_SIGNING_ALG.toString()),
+                SignatureAlgorithm.RS384.toString());
+        assertNotNull(readClientResponse.getClaims().get(RESPONSE_TYPES.toString()));
+        assertNotNull(readClientResponse.getClaims().get(REDIRECT_URIS.toString()));
+        assertNotNull(readClientResponse.getClaims().get(APPLICATION_TYPE.toString()));
+        assertNotNull(readClientResponse.getClaims().get(CLIENT_NAME.toString()));
+        assertNotNull(readClientResponse.getClaims().get(ID_TOKEN_SIGNED_RESPONSE_ALG.toString()));
+        assertNotNull(readClientResponse.getClaims().get(SCOPE.toString()));
+
+        // 3. Request authorization
+        List<ResponseType> responseTypes = Arrays.asList(ResponseType.CODE);
+        List<String> scopes = Arrays.asList(
+                "openid",
+                "profile",
+                "address",
+                "email");
+        String state = UUID.randomUUID().toString();
+
+        AuthorizationRequest authorizationRequest = new AuthorizationRequest(responseTypes, clientId, scopes, redirectUri, null);
+        authorizationRequest.setState(state);
+
+        AuthorizationResponse authorizationResponse = authenticateResourceOwnerAndGrantAccess(
+                authorizationEndpoint, authorizationRequest, userId, userSecret);
+
+        assertNotNull(authorizationResponse.getLocation(), "The location is null");
+        assertNotNull(authorizationResponse.getCode(), "The authorization code is null");
+        assertNotNull(authorizationResponse.getState(), "The state is null");
+        assertNotNull(authorizationResponse.getScope(), "The scope is null");
+        assertNull(authorizationResponse.getIdToken(), "The id token is not null");
+
+        String authorizationCode = authorizationResponse.getCode();
+
+        // 4. Get Access Token
+        OxAuthCryptoProvider cryptoProvider = new OxAuthCryptoProvider(keyStoreFile, keyStoreSecret, dnName);
+
+        TokenRequest tokenRequest = new TokenRequest(GrantType.AUTHORIZATION_CODE);
+        tokenRequest.setAuthenticationMethod(AuthenticationMethod.PRIVATE_KEY_JWT);
+        tokenRequest.setAlgorithm(SignatureAlgorithm.ES512);
+        tokenRequest.setCryptoProvider(cryptoProvider);
+        tokenRequest.setKeyId(keyId);
+        tokenRequest.setAudience(tokenEndpoint);
+        tokenRequest.setCode(authorizationCode);
+        tokenRequest.setRedirectUri(redirectUri);
+        tokenRequest.setAuthUsername(clientId);
+
+        TokenClient tokenClient = new TokenClient(tokenEndpoint);
+        tokenClient.setRequest(tokenRequest);
+        TokenResponse tokenResponse = tokenClient.exec();
+
+        showClient(tokenClient);
+        assertEquals(tokenResponse.getStatus(), 401, "Unexpected response code: " + tokenResponse.getStatus());
+        assertNotNull(tokenResponse.getErrorType(), "The error type is null");
+        assertNotNull(tokenResponse.getErrorDescription(), "The error description is null");
+    }
+
+    @Parameters({"redirectUris", "redirectUri", "userId", "userSecret", "clientJwksUri", "RS512_keyId", "dnName",
+            "keyStoreFile", "keyStoreSecret", "sectorIdentifierUri"})
+    @Test
+    public void tokenEndpointAuthMethodPrivateKeyJwtSigningAlgRS512(
+            final String redirectUris, final String redirectUri, final String userId, final String userSecret,
+            final String clientJwksUri, final String keyId, final String dnName, final String keyStoreFile,
+            final String keyStoreSecret, final String sectorIdentifierUri) throws Exception {
+        showTitle("tokenEndpointAuthMethodPrivateKeyJwtSigningAlgRS512");
+
+        // 1. Register client
+        RegisterRequest registerRequest = new RegisterRequest(ApplicationType.WEB, "oxAuth test app",
+                StringUtils.spaceSeparatedToList(redirectUris));
+        registerRequest.setTokenEndpointAuthMethod(AuthenticationMethod.PRIVATE_KEY_JWT);
+        registerRequest.setTokenEndpointAuthSigningAlg(SignatureAlgorithm.RS512);
+        registerRequest.setJwksUri(clientJwksUri);
+        registerRequest.setSectorIdentifierUri(sectorIdentifierUri);
+
+        RegisterClient registerClient = new RegisterClient(registrationEndpoint);
+        registerClient.setRequest(registerRequest);
+        RegisterResponse registerResponse = registerClient.exec();
+
+        showClient(registerClient);
+        assertEquals(registerResponse.getStatus(), 200, "Unexpected response code: " + registerResponse.getEntity());
+        assertNotNull(registerResponse.getClientId());
+        assertNotNull(registerResponse.getClientSecret());
+        assertNotNull(registerResponse.getRegistrationAccessToken());
+        assertNotNull(registerResponse.getClientIdIssuedAt());
+        assertNotNull(registerResponse.getClientSecretExpiresAt());
+
+        String clientId = registerResponse.getClientId();
+        String registrationAccessToken = registerResponse.getRegistrationAccessToken();
+        String registrationClientUri = registerResponse.getRegistrationClientUri();
+
+        // 2. Client read
+        RegisterRequest readClientRequest = new RegisterRequest(registrationAccessToken);
+
+        RegisterClient readClient = new RegisterClient(registrationClientUri);
+        readClient.setRequest(readClientRequest);
+        RegisterResponse readClientResponse = readClient.exec();
+
+        showClient(readClient);
+        assertEquals(readClientResponse.getStatus(), 200, "Unexpected response code: " + readClientResponse.getEntity());
+        assertNotNull(readClientResponse.getClientId());
+        assertNotNull(readClientResponse.getClientSecret());
+        assertNotNull(readClientResponse.getClientIdIssuedAt());
+        assertNotNull(readClientResponse.getClientSecretExpiresAt());
+
+        assertTrue(readClientResponse.getClaims().containsKey(TOKEN_ENDPOINT_AUTH_METHOD.toString()));
+        assertEquals(readClientResponse.getClaims().get(TOKEN_ENDPOINT_AUTH_METHOD.toString()),
+                AuthenticationMethod.PRIVATE_KEY_JWT.toString());
+        assertTrue(readClientResponse.getClaims().containsKey(TOKEN_ENDPOINT_AUTH_SIGNING_ALG.toString()));
+        assertEquals(readClientResponse.getClaims().get(TOKEN_ENDPOINT_AUTH_SIGNING_ALG.toString()),
+                SignatureAlgorithm.RS512.toString());
+        assertNotNull(readClientResponse.getClaims().get(RESPONSE_TYPES.toString()));
+        assertNotNull(readClientResponse.getClaims().get(REDIRECT_URIS.toString()));
+        assertNotNull(readClientResponse.getClaims().get(APPLICATION_TYPE.toString()));
+        assertNotNull(readClientResponse.getClaims().get(CLIENT_NAME.toString()));
+        assertNotNull(readClientResponse.getClaims().get(ID_TOKEN_SIGNED_RESPONSE_ALG.toString()));
+        assertNotNull(readClientResponse.getClaims().get(SCOPE.toString()));
+
+        // 3. Request authorization
+        List<ResponseType> responseTypes = Arrays.asList(ResponseType.CODE);
+        List<String> scopes = Arrays.asList(
+                "openid",
+                "profile",
+                "address",
+                "email");
+        String state = UUID.randomUUID().toString();
+
+        AuthorizationRequest authorizationRequest = new AuthorizationRequest(responseTypes, clientId, scopes, redirectUri, null);
+        authorizationRequest.setState(state);
+
+        AuthorizationResponse authorizationResponse = authenticateResourceOwnerAndGrantAccess(
+                authorizationEndpoint, authorizationRequest, userId, userSecret);
+
+        assertNotNull(authorizationResponse.getLocation(), "The location is null");
+        assertNotNull(authorizationResponse.getCode(), "The authorization code is null");
+        assertNotNull(authorizationResponse.getState(), "The state is null");
+        assertNotNull(authorizationResponse.getScope(), "The scope is null");
+        assertNull(authorizationResponse.getIdToken(), "The id token is not null");
+
+        String authorizationCode = authorizationResponse.getCode();
+
+        // 4. Get Access Token
+        OxAuthCryptoProvider cryptoProvider = new OxAuthCryptoProvider(keyStoreFile, keyStoreSecret, dnName);
+
+        TokenRequest tokenRequest = new TokenRequest(GrantType.AUTHORIZATION_CODE);
+        tokenRequest.setAuthenticationMethod(AuthenticationMethod.PRIVATE_KEY_JWT);
+        tokenRequest.setAlgorithm(SignatureAlgorithm.RS512);
+        tokenRequest.setCryptoProvider(cryptoProvider);
+        tokenRequest.setKeyId(keyId);
+        tokenRequest.setAudience(tokenEndpoint);
+        tokenRequest.setCode(authorizationCode);
+        tokenRequest.setRedirectUri(redirectUri);
+        tokenRequest.setAuthUsername(clientId);
+
+        TokenClient tokenClient = new TokenClient(tokenEndpoint);
+        tokenClient.setRequest(tokenRequest);
+        TokenResponse tokenResponse = tokenClient.exec();
+
+        showClient(tokenClient);
+        assertEquals(tokenResponse.getStatus(), 200, "Unexpected response code: " + tokenResponse.getStatus());
+        assertNotNull(tokenResponse.getEntity(), "The entity is null");
+        assertNotNull(tokenResponse.getAccessToken(), "The access token is null");
+        assertNotNull(tokenResponse.getExpiresIn(), "The expires in value is null");
+        assertNotNull(tokenResponse.getTokenType(), "The token type is null");
+        assertNotNull(tokenResponse.getRefreshToken(), "The refresh token is null");
+    }
+
+    @Parameters({"redirectUris", "redirectUri", "userId", "userSecret", "clientJwksUri", "RS256_keyId", "dnName",
+            "keyStoreFile", "keyStoreSecret", "sectorIdentifierUri"})
+    @Test
+    public void tokenEndpointAuthMethodPrivateKeyJwtSigningAlgRS512Fail1(
+            final String redirectUris, final String redirectUri, final String userId, final String userSecret,
+            final String clientJwksUri, final String keyId, final String dnName, final String keyStoreFile,
+            final String keyStoreSecret, final String sectorIdentifierUri) throws Exception {
+        showTitle("tokenEndpointAuthMethodPrivateKeyJwtSigningAlgRS512Fail1");
+
+        // 1. Register client
+        RegisterRequest registerRequest = new RegisterRequest(ApplicationType.WEB, "oxAuth test app",
+                StringUtils.spaceSeparatedToList(redirectUris));
+        registerRequest.setTokenEndpointAuthMethod(AuthenticationMethod.PRIVATE_KEY_JWT);
+        registerRequest.setTokenEndpointAuthSigningAlg(SignatureAlgorithm.RS512);
+        registerRequest.setJwksUri(clientJwksUri);
+        registerRequest.setSectorIdentifierUri(sectorIdentifierUri);
+
+        RegisterClient registerClient = new RegisterClient(registrationEndpoint);
+        registerClient.setRequest(registerRequest);
+        RegisterResponse registerResponse = registerClient.exec();
+
+        showClient(registerClient);
+        assertEquals(registerResponse.getStatus(), 200, "Unexpected response code: " + registerResponse.getEntity());
+        assertNotNull(registerResponse.getClientId());
+        assertNotNull(registerResponse.getClientSecret());
+        assertNotNull(registerResponse.getRegistrationAccessToken());
+        assertNotNull(registerResponse.getClientIdIssuedAt());
+        assertNotNull(registerResponse.getClientSecretExpiresAt());
+
+        String clientId = registerResponse.getClientId();
+        String registrationAccessToken = registerResponse.getRegistrationAccessToken();
+        String registrationClientUri = registerResponse.getRegistrationClientUri();
+
+        // 2. Client read
+        RegisterRequest readClientRequest = new RegisterRequest(registrationAccessToken);
+
+        RegisterClient readClient = new RegisterClient(registrationClientUri);
+        readClient.setRequest(readClientRequest);
+        RegisterResponse readClientResponse = readClient.exec();
+
+        showClient(readClient);
+        assertEquals(readClientResponse.getStatus(), 200, "Unexpected response code: " + readClientResponse.getEntity());
+        assertNotNull(readClientResponse.getClientId());
+        assertNotNull(readClientResponse.getClientSecret());
+        assertNotNull(readClientResponse.getClientIdIssuedAt());
+        assertNotNull(readClientResponse.getClientSecretExpiresAt());
+
+        assertTrue(readClientResponse.getClaims().containsKey(TOKEN_ENDPOINT_AUTH_METHOD.toString()));
+        assertEquals(readClientResponse.getClaims().get(TOKEN_ENDPOINT_AUTH_METHOD.toString()),
+                AuthenticationMethod.PRIVATE_KEY_JWT.toString());
+        assertTrue(readClientResponse.getClaims().containsKey(TOKEN_ENDPOINT_AUTH_SIGNING_ALG.toString()));
+        assertEquals(readClientResponse.getClaims().get(TOKEN_ENDPOINT_AUTH_SIGNING_ALG.toString()),
+                SignatureAlgorithm.RS512.toString());
+        assertNotNull(readClientResponse.getClaims().get(RESPONSE_TYPES.toString()));
+        assertNotNull(readClientResponse.getClaims().get(REDIRECT_URIS.toString()));
+        assertNotNull(readClientResponse.getClaims().get(APPLICATION_TYPE.toString()));
+        assertNotNull(readClientResponse.getClaims().get(CLIENT_NAME.toString()));
+        assertNotNull(readClientResponse.getClaims().get(ID_TOKEN_SIGNED_RESPONSE_ALG.toString()));
+        assertNotNull(readClientResponse.getClaims().get(SCOPE.toString()));
+
+        // 3. Request authorization
+        List<ResponseType> responseTypes = Arrays.asList(ResponseType.CODE);
+        List<String> scopes = Arrays.asList(
+                "openid",
+                "profile",
+                "address",
+                "email");
+        String state = UUID.randomUUID().toString();
+
+        AuthorizationRequest authorizationRequest = new AuthorizationRequest(responseTypes, clientId, scopes, redirectUri, null);
+        authorizationRequest.setState(state);
+
+        AuthorizationResponse authorizationResponse = authenticateResourceOwnerAndGrantAccess(
+                authorizationEndpoint, authorizationRequest, userId, userSecret);
+
+        assertNotNull(authorizationResponse.getLocation(), "The location is null");
+        assertNotNull(authorizationResponse.getCode(), "The authorization code is null");
+        assertNotNull(authorizationResponse.getState(), "The state is null");
+        assertNotNull(authorizationResponse.getScope(), "The scope is null");
+        assertNull(authorizationResponse.getIdToken(), "The id token is not null");
+
+        String authorizationCode = authorizationResponse.getCode();
+
+        // 4. Get Access Token
+        OxAuthCryptoProvider cryptoProvider = new OxAuthCryptoProvider(keyStoreFile, keyStoreSecret, dnName);
+
+        TokenRequest tokenRequest = new TokenRequest(GrantType.AUTHORIZATION_CODE);
+        tokenRequest.setAuthenticationMethod(AuthenticationMethod.PRIVATE_KEY_JWT);
+        tokenRequest.setAlgorithm(SignatureAlgorithm.RS256);
+        tokenRequest.setCryptoProvider(cryptoProvider);
+        tokenRequest.setKeyId(keyId);
+        tokenRequest.setAudience(tokenEndpoint);
+        tokenRequest.setCode(authorizationCode);
+        tokenRequest.setRedirectUri(redirectUri);
+        tokenRequest.setAuthUsername(clientId);
+
+        TokenClient tokenClient = new TokenClient(tokenEndpoint);
+        tokenClient.setRequest(tokenRequest);
+        TokenResponse tokenResponse = tokenClient.exec();
+
+        showClient(tokenClient);
+        assertEquals(tokenResponse.getStatus(), 401, "Unexpected response code: " + tokenResponse.getStatus());
+        assertNotNull(tokenResponse.getErrorType(), "The error type is null");
+        assertNotNull(tokenResponse.getErrorDescription(), "The error description is null");
+    }
+
+    @Parameters({"redirectUris", "redirectUri", "userId", "userSecret", "clientJwksUri", "RS384_keyId", "dnName",
+            "keyStoreFile", "keyStoreSecret", "sectorIdentifierUri"})
+    @Test
+    public void tokenEndpointAuthMethodPrivateKeyJwtSigningAlgRS512Fail2(
+            final String redirectUris, final String redirectUri, final String userId, final String userSecret,
+            final String clientJwksUri, final String keyId, final String dnName, final String keyStoreFile,
+            final String keyStoreSecret, final String sectorIdentifierUri) throws Exception {
+        showTitle("tokenEndpointAuthMethodPrivateKeyJwtSigningAlgRS512Fail2");
+
+        // 1. Register client
+        RegisterRequest registerRequest = new RegisterRequest(ApplicationType.WEB, "oxAuth test app",
+                StringUtils.spaceSeparatedToList(redirectUris));
+        registerRequest.setTokenEndpointAuthMethod(AuthenticationMethod.PRIVATE_KEY_JWT);
+        registerRequest.setTokenEndpointAuthSigningAlg(SignatureAlgorithm.RS512);
+        registerRequest.setJwksUri(clientJwksUri);
+        registerRequest.setSectorIdentifierUri(sectorIdentifierUri);
+
+        RegisterClient registerClient = new RegisterClient(registrationEndpoint);
+        registerClient.setRequest(registerRequest);
+        RegisterResponse registerResponse = registerClient.exec();
+
+        showClient(registerClient);
+        assertEquals(registerResponse.getStatus(), 200, "Unexpected response code: " + registerResponse.getEntity());
+        assertNotNull(registerResponse.getClientId());
+        assertNotNull(registerResponse.getClientSecret());
+        assertNotNull(registerResponse.getRegistrationAccessToken());
+        assertNotNull(registerResponse.getClientIdIssuedAt());
+        assertNotNull(registerResponse.getClientSecretExpiresAt());
+
+        String clientId = registerResponse.getClientId();
+        String registrationAccessToken = registerResponse.getRegistrationAccessToken();
+        String registrationClientUri = registerResponse.getRegistrationClientUri();
+
+        // 2. Client read
+        RegisterRequest readClientRequest = new RegisterRequest(registrationAccessToken);
+
+        RegisterClient readClient = new RegisterClient(registrationClientUri);
+        readClient.setRequest(readClientRequest);
+        RegisterResponse readClientResponse = readClient.exec();
+
+        showClient(readClient);
+        assertEquals(readClientResponse.getStatus(), 200, "Unexpected response code: " + readClientResponse.getEntity());
+        assertNotNull(readClientResponse.getClientId());
+        assertNotNull(readClientResponse.getClientSecret());
+        assertNotNull(readClientResponse.getClientIdIssuedAt());
+        assertNotNull(readClientResponse.getClientSecretExpiresAt());
+
+        assertTrue(readClientResponse.getClaims().containsKey(TOKEN_ENDPOINT_AUTH_METHOD.toString()));
+        assertEquals(readClientResponse.getClaims().get(TOKEN_ENDPOINT_AUTH_METHOD.toString()),
+                AuthenticationMethod.PRIVATE_KEY_JWT.toString());
+        assertTrue(readClientResponse.getClaims().containsKey(TOKEN_ENDPOINT_AUTH_SIGNING_ALG.toString()));
+        assertEquals(readClientResponse.getClaims().get(TOKEN_ENDPOINT_AUTH_SIGNING_ALG.toString()),
+                SignatureAlgorithm.RS512.toString());
+        assertNotNull(readClientResponse.getClaims().get(RESPONSE_TYPES.toString()));
+        assertNotNull(readClientResponse.getClaims().get(REDIRECT_URIS.toString()));
+        assertNotNull(readClientResponse.getClaims().get(APPLICATION_TYPE.toString()));
+        assertNotNull(readClientResponse.getClaims().get(CLIENT_NAME.toString()));
+        assertNotNull(readClientResponse.getClaims().get(ID_TOKEN_SIGNED_RESPONSE_ALG.toString()));
+        assertNotNull(readClientResponse.getClaims().get(SCOPE.toString()));
+
+        // 3. Request authorization
+        List<ResponseType> responseTypes = Arrays.asList(ResponseType.CODE);
+        List<String> scopes = Arrays.asList(
+                "openid",
+                "profile",
+                "address",
+                "email");
+        String state = UUID.randomUUID().toString();
+
+        AuthorizationRequest authorizationRequest = new AuthorizationRequest(responseTypes, clientId, scopes, redirectUri, null);
+        authorizationRequest.setState(state);
+
+        AuthorizationResponse authorizationResponse = authenticateResourceOwnerAndGrantAccess(
+                authorizationEndpoint, authorizationRequest, userId, userSecret);
+
+        assertNotNull(authorizationResponse.getLocation(), "The location is null");
+        assertNotNull(authorizationResponse.getCode(), "The authorization code is null");
+        assertNotNull(authorizationResponse.getState(), "The state is null");
+        assertNotNull(authorizationResponse.getScope(), "The scope is null");
+        assertNull(authorizationResponse.getIdToken(), "The id token is not null");
+
+        String authorizationCode = authorizationResponse.getCode();
+
+        // 4. Get Access Token
+        OxAuthCryptoProvider cryptoProvider = new OxAuthCryptoProvider(keyStoreFile, keyStoreSecret, dnName);
+
+        TokenRequest tokenRequest = new TokenRequest(GrantType.AUTHORIZATION_CODE);
+        tokenRequest.setAuthenticationMethod(AuthenticationMethod.PRIVATE_KEY_JWT);
+        tokenRequest.setAlgorithm(SignatureAlgorithm.RS384);
+        tokenRequest.setCryptoProvider(cryptoProvider);
+        tokenRequest.setKeyId(keyId);
+        tokenRequest.setAudience(tokenEndpoint);
+        tokenRequest.setCode(authorizationCode);
+        tokenRequest.setRedirectUri(redirectUri);
+        tokenRequest.setAuthUsername(clientId);
+
+        TokenClient tokenClient = new TokenClient(tokenEndpoint);
+        tokenClient.setRequest(tokenRequest);
+        TokenResponse tokenResponse = tokenClient.exec();
+
+        showClient(tokenClient);
+        assertEquals(tokenResponse.getStatus(), 401, "Unexpected response code: " + tokenResponse.getStatus());
+        assertNotNull(tokenResponse.getErrorType(), "The error type is null");
+        assertNotNull(tokenResponse.getErrorDescription(), "The error description is null");
+    }
+
+    @Parameters({"redirectUris", "redirectUri", "userId", "userSecret", "clientJwksUri", "ES256_keyId", "dnName",
+            "keyStoreFile", "keyStoreSecret", "sectorIdentifierUri"})
+    @Test
+    public void tokenEndpointAuthMethodPrivateKeyJwtSigningAlgRS512Fail3(
+            final String redirectUris, final String redirectUri, final String userId, final String userSecret,
+            final String clientJwksUri, final String keyId, final String dnName, final String keyStoreFile,
+            final String keyStoreSecret, final String sectorIdentifierUri) throws Exception {
+        showTitle("tokenEndpointAuthMethodPrivateKeyJwtSigningAlgRS512Fail3");
+
+        // 1. Register client
+        RegisterRequest registerRequest = new RegisterRequest(ApplicationType.WEB, "oxAuth test app",
+                StringUtils.spaceSeparatedToList(redirectUris));
+        registerRequest.setTokenEndpointAuthMethod(AuthenticationMethod.PRIVATE_KEY_JWT);
+        registerRequest.setTokenEndpointAuthSigningAlg(SignatureAlgorithm.RS512);
+        registerRequest.setJwksUri(clientJwksUri);
+        registerRequest.setSectorIdentifierUri(sectorIdentifierUri);
+
+        RegisterClient registerClient = new RegisterClient(registrationEndpoint);
+        registerClient.setRequest(registerRequest);
+        RegisterResponse registerResponse = registerClient.exec();
+
+        showClient(registerClient);
+        assertEquals(registerResponse.getStatus(), 200, "Unexpected response code: " + registerResponse.getEntity());
+        assertNotNull(registerResponse.getClientId());
+        assertNotNull(registerResponse.getClientSecret());
+        assertNotNull(registerResponse.getRegistrationAccessToken());
+        assertNotNull(registerResponse.getClientIdIssuedAt());
+        assertNotNull(registerResponse.getClientSecretExpiresAt());
+
+        String clientId = registerResponse.getClientId();
+        String registrationAccessToken = registerResponse.getRegistrationAccessToken();
+        String registrationClientUri = registerResponse.getRegistrationClientUri();
+
+        // 2. Client read
+        RegisterRequest readClientRequest = new RegisterRequest(registrationAccessToken);
+
+        RegisterClient readClient = new RegisterClient(registrationClientUri);
+        readClient.setRequest(readClientRequest);
+        RegisterResponse readClientResponse = readClient.exec();
+
+        showClient(readClient);
+        assertEquals(readClientResponse.getStatus(), 200, "Unexpected response code: " + readClientResponse.getEntity());
+        assertNotNull(readClientResponse.getClientId());
+        assertNotNull(readClientResponse.getClientSecret());
+        assertNotNull(readClientResponse.getClientIdIssuedAt());
+        assertNotNull(readClientResponse.getClientSecretExpiresAt());
+
+        assertTrue(readClientResponse.getClaims().containsKey(TOKEN_ENDPOINT_AUTH_METHOD.toString()));
+        assertEquals(readClientResponse.getClaims().get(TOKEN_ENDPOINT_AUTH_METHOD.toString()),
+                AuthenticationMethod.PRIVATE_KEY_JWT.toString());
+        assertTrue(readClientResponse.getClaims().containsKey(TOKEN_ENDPOINT_AUTH_SIGNING_ALG.toString()));
+        assertEquals(readClientResponse.getClaims().get(TOKEN_ENDPOINT_AUTH_SIGNING_ALG.toString()),
+                SignatureAlgorithm.RS512.toString());
+        assertNotNull(readClientResponse.getClaims().get(RESPONSE_TYPES.toString()));
+        assertNotNull(readClientResponse.getClaims().get(REDIRECT_URIS.toString()));
+        assertNotNull(readClientResponse.getClaims().get(APPLICATION_TYPE.toString()));
+        assertNotNull(readClientResponse.getClaims().get(CLIENT_NAME.toString()));
+        assertNotNull(readClientResponse.getClaims().get(ID_TOKEN_SIGNED_RESPONSE_ALG.toString()));
+        assertNotNull(readClientResponse.getClaims().get(SCOPE.toString()));
+
+        // 3. Request authorization
+        List<ResponseType> responseTypes = Arrays.asList(ResponseType.CODE);
+        List<String> scopes = Arrays.asList(
+                "openid",
+                "profile",
+                "address",
+                "email");
+        String state = UUID.randomUUID().toString();
+
+        AuthorizationRequest authorizationRequest = new AuthorizationRequest(responseTypes, clientId, scopes, redirectUri, null);
+        authorizationRequest.setState(state);
+
+        AuthorizationResponse authorizationResponse = authenticateResourceOwnerAndGrantAccess(
+                authorizationEndpoint, authorizationRequest, userId, userSecret);
+
+        assertNotNull(authorizationResponse.getLocation(), "The location is null");
+        assertNotNull(authorizationResponse.getCode(), "The authorization code is null");
+        assertNotNull(authorizationResponse.getState(), "The state is null");
+        assertNotNull(authorizationResponse.getScope(), "The scope is null");
+        assertNull(authorizationResponse.getIdToken(), "The id token is not null");
+
+        String authorizationCode = authorizationResponse.getCode();
+
+        // 4. Get Access Token
+        OxAuthCryptoProvider cryptoProvider = new OxAuthCryptoProvider(keyStoreFile, keyStoreSecret, dnName);
+
+        TokenRequest tokenRequest = new TokenRequest(GrantType.AUTHORIZATION_CODE);
+        tokenRequest.setAuthenticationMethod(AuthenticationMethod.PRIVATE_KEY_JWT);
+        tokenRequest.setAlgorithm(SignatureAlgorithm.ES256);
+        tokenRequest.setCryptoProvider(cryptoProvider);
+        tokenRequest.setKeyId(keyId);
+        tokenRequest.setAudience(tokenEndpoint);
+        tokenRequest.setCode(authorizationCode);
+        tokenRequest.setRedirectUri(redirectUri);
+        tokenRequest.setAuthUsername(clientId);
+
+        TokenClient tokenClient = new TokenClient(tokenEndpoint);
+        tokenClient.setRequest(tokenRequest);
+        TokenResponse tokenResponse = tokenClient.exec();
+
+        showClient(tokenClient);
+        assertEquals(tokenResponse.getStatus(), 401, "Unexpected response code: " + tokenResponse.getStatus());
+        assertNotNull(tokenResponse.getErrorType(), "The error type is null");
+        assertNotNull(tokenResponse.getErrorDescription(), "The error description is null");
+    }
+
+    @Parameters({"redirectUris", "redirectUri", "userId", "userSecret", "clientJwksUri", "ES384_keyId", "dnName",
+            "keyStoreFile", "keyStoreSecret", "sectorIdentifierUri"})
+    @Test
+    public void tokenEndpointAuthMethodPrivateKeyJwtSigningAlgRS512Fail4(
+            final String redirectUris, final String redirectUri, final String userId, final String userSecret,
+            final String clientJwksUri, final String keyId, final String dnName, final String keyStoreFile,
+            final String keyStoreSecret, final String sectorIdentifierUri) throws Exception {
+        showTitle("tokenEndpointAuthMethodPrivateKeyJwtSigningAlgRS512Fail4");
+
+        // 1. Register client
+        RegisterRequest registerRequest = new RegisterRequest(ApplicationType.WEB, "oxAuth test app",
+                StringUtils.spaceSeparatedToList(redirectUris));
+        registerRequest.setTokenEndpointAuthMethod(AuthenticationMethod.PRIVATE_KEY_JWT);
+        registerRequest.setTokenEndpointAuthSigningAlg(SignatureAlgorithm.RS512);
+        registerRequest.setJwksUri(clientJwksUri);
+        registerRequest.setSectorIdentifierUri(sectorIdentifierUri);
+
+        RegisterClient registerClient = new RegisterClient(registrationEndpoint);
+        registerClient.setRequest(registerRequest);
+        RegisterResponse registerResponse = registerClient.exec();
+
+        showClient(registerClient);
+        assertEquals(registerResponse.getStatus(), 200, "Unexpected response code: " + registerResponse.getEntity());
+        assertNotNull(registerResponse.getClientId());
+        assertNotNull(registerResponse.getClientSecret());
+        assertNotNull(registerResponse.getRegistrationAccessToken());
+        assertNotNull(registerResponse.getClientIdIssuedAt());
+        assertNotNull(registerResponse.getClientSecretExpiresAt());
+
+        String clientId = registerResponse.getClientId();
+        String registrationAccessToken = registerResponse.getRegistrationAccessToken();
+        String registrationClientUri = registerResponse.getRegistrationClientUri();
+
+        // 2. Client read
+        RegisterRequest readClientRequest = new RegisterRequest(registrationAccessToken);
+
+        RegisterClient readClient = new RegisterClient(registrationClientUri);
+        readClient.setRequest(readClientRequest);
+        RegisterResponse readClientResponse = readClient.exec();
+
+        showClient(readClient);
+        assertEquals(readClientResponse.getStatus(), 200, "Unexpected response code: " + readClientResponse.getEntity());
+        assertNotNull(readClientResponse.getClientId());
+        assertNotNull(readClientResponse.getClientSecret());
+        assertNotNull(readClientResponse.getClientIdIssuedAt());
+        assertNotNull(readClientResponse.getClientSecretExpiresAt());
+
+        assertTrue(readClientResponse.getClaims().containsKey(TOKEN_ENDPOINT_AUTH_METHOD.toString()));
+        assertEquals(readClientResponse.getClaims().get(TOKEN_ENDPOINT_AUTH_METHOD.toString()),
+                AuthenticationMethod.PRIVATE_KEY_JWT.toString());
+        assertTrue(readClientResponse.getClaims().containsKey(TOKEN_ENDPOINT_AUTH_SIGNING_ALG.toString()));
+        assertEquals(readClientResponse.getClaims().get(TOKEN_ENDPOINT_AUTH_SIGNING_ALG.toString()),
+                SignatureAlgorithm.RS512.toString());
+        assertNotNull(readClientResponse.getClaims().get(RESPONSE_TYPES.toString()));
+        assertNotNull(readClientResponse.getClaims().get(REDIRECT_URIS.toString()));
+        assertNotNull(readClientResponse.getClaims().get(APPLICATION_TYPE.toString()));
+        assertNotNull(readClientResponse.getClaims().get(CLIENT_NAME.toString()));
+        assertNotNull(readClientResponse.getClaims().get(ID_TOKEN_SIGNED_RESPONSE_ALG.toString()));
+        assertNotNull(readClientResponse.getClaims().get(SCOPE.toString()));
+
+        // 3. Request authorization
+        List<ResponseType> responseTypes = Arrays.asList(ResponseType.CODE);
+        List<String> scopes = Arrays.asList(
+                "openid",
+                "profile",
+                "address",
+                "email");
+        String state = UUID.randomUUID().toString();
+
+        AuthorizationRequest authorizationRequest = new AuthorizationRequest(responseTypes, clientId, scopes, redirectUri, null);
+        authorizationRequest.setState(state);
+
+        AuthorizationResponse authorizationResponse = authenticateResourceOwnerAndGrantAccess(
+                authorizationEndpoint, authorizationRequest, userId, userSecret);
+
+        assertNotNull(authorizationResponse.getLocation(), "The location is null");
+        assertNotNull(authorizationResponse.getCode(), "The authorization code is null");
+        assertNotNull(authorizationResponse.getState(), "The state is null");
+        assertNotNull(authorizationResponse.getScope(), "The scope is null");
+        assertNull(authorizationResponse.getIdToken(), "The id token is not null");
+
+        String authorizationCode = authorizationResponse.getCode();
+
+        // 4. Get Access Token
+        OxAuthCryptoProvider cryptoProvider = new OxAuthCryptoProvider(keyStoreFile, keyStoreSecret, dnName);
+
+        TokenRequest tokenRequest = new TokenRequest(GrantType.AUTHORIZATION_CODE);
+        tokenRequest.setAuthenticationMethod(AuthenticationMethod.PRIVATE_KEY_JWT);
+        tokenRequest.setAlgorithm(SignatureAlgorithm.ES384);
+        tokenRequest.setCryptoProvider(cryptoProvider);
+        tokenRequest.setKeyId(keyId);
+        tokenRequest.setAudience(tokenEndpoint);
+        tokenRequest.setCode(authorizationCode);
+        tokenRequest.setRedirectUri(redirectUri);
+        tokenRequest.setAuthUsername(clientId);
+
+        TokenClient tokenClient = new TokenClient(tokenEndpoint);
+        tokenClient.setRequest(tokenRequest);
+        TokenResponse tokenResponse = tokenClient.exec();
+
+        showClient(tokenClient);
+        assertEquals(tokenResponse.getStatus(), 401, "Unexpected response code: " + tokenResponse.getStatus());
+        assertNotNull(tokenResponse.getErrorType(), "The error type is null");
+        assertNotNull(tokenResponse.getErrorDescription(), "The error description is null");
+    }
+
+    @Parameters({"redirectUris", "redirectUri", "userId", "userSecret", "clientJwksUri", "ES512_keyId", "dnName",
+            "keyStoreFile", "keyStoreSecret", "sectorIdentifierUri"})
+    @Test
+    public void tokenEndpointAuthMethodPrivateKeyJwtSigningAlgRS512Fail5(
+            final String redirectUris, final String redirectUri, final String userId, final String userSecret,
+            final String clientJwksUri, final String keyId, final String dnName, final String keyStoreFile,
+            final String keyStoreSecret, final String sectorIdentifierUri) throws Exception {
+        showTitle("tokenEndpointAuthMethodPrivateKeyJwtSigningAlgRS512Fail5");
+
+        // 1. Register client
+        RegisterRequest registerRequest = new RegisterRequest(ApplicationType.WEB, "oxAuth test app",
+                StringUtils.spaceSeparatedToList(redirectUris));
+        registerRequest.setTokenEndpointAuthMethod(AuthenticationMethod.PRIVATE_KEY_JWT);
+        registerRequest.setTokenEndpointAuthSigningAlg(SignatureAlgorithm.RS512);
+        registerRequest.setJwksUri(clientJwksUri);
+        registerRequest.setSectorIdentifierUri(sectorIdentifierUri);
+
+        RegisterClient registerClient = new RegisterClient(registrationEndpoint);
+        registerClient.setRequest(registerRequest);
+        RegisterResponse registerResponse = registerClient.exec();
+
+        showClient(registerClient);
+        assertEquals(registerResponse.getStatus(), 200, "Unexpected response code: " + registerResponse.getEntity());
+        assertNotNull(registerResponse.getClientId());
+        assertNotNull(registerResponse.getClientSecret());
+        assertNotNull(registerResponse.getRegistrationAccessToken());
+        assertNotNull(registerResponse.getClientIdIssuedAt());
+        assertNotNull(registerResponse.getClientSecretExpiresAt());
+
+        String clientId = registerResponse.getClientId();
+        String registrationAccessToken = registerResponse.getRegistrationAccessToken();
+        String registrationClientUri = registerResponse.getRegistrationClientUri();
+
+        // 2. Client read
+        RegisterRequest readClientRequest = new RegisterRequest(registrationAccessToken);
+
+        RegisterClient readClient = new RegisterClient(registrationClientUri);
+        readClient.setRequest(readClientRequest);
+        RegisterResponse readClientResponse = readClient.exec();
+
+        showClient(readClient);
+        assertEquals(readClientResponse.getStatus(), 200, "Unexpected response code: " + readClientResponse.getEntity());
+        assertNotNull(readClientResponse.getClientId());
+        assertNotNull(readClientResponse.getClientSecret());
+        assertNotNull(readClientResponse.getClientIdIssuedAt());
+        assertNotNull(readClientResponse.getClientSecretExpiresAt());
+
+        assertTrue(readClientResponse.getClaims().containsKey(TOKEN_ENDPOINT_AUTH_METHOD.toString()));
+        assertEquals(readClientResponse.getClaims().get(TOKEN_ENDPOINT_AUTH_METHOD.toString()),
+                AuthenticationMethod.PRIVATE_KEY_JWT.toString());
+        assertTrue(readClientResponse.getClaims().containsKey(TOKEN_ENDPOINT_AUTH_SIGNING_ALG.toString()));
+        assertEquals(readClientResponse.getClaims().get(TOKEN_ENDPOINT_AUTH_SIGNING_ALG.toString()),
+                SignatureAlgorithm.RS512.toString());
+        assertNotNull(readClientResponse.getClaims().get(RESPONSE_TYPES.toString()));
+        assertNotNull(readClientResponse.getClaims().get(REDIRECT_URIS.toString()));
+        assertNotNull(readClientResponse.getClaims().get(APPLICATION_TYPE.toString()));
+        assertNotNull(readClientResponse.getClaims().get(CLIENT_NAME.toString()));
+        assertNotNull(readClientResponse.getClaims().get(ID_TOKEN_SIGNED_RESPONSE_ALG.toString()));
+        assertNotNull(readClientResponse.getClaims().get(SCOPE.toString()));
+
+        // 3. Request authorization
+        List<ResponseType> responseTypes = Arrays.asList(ResponseType.CODE);
+        List<String> scopes = Arrays.asList(
+                "openid",
+                "profile",
+                "address",
+                "email");
+        String state = UUID.randomUUID().toString();
+
+        AuthorizationRequest authorizationRequest = new AuthorizationRequest(responseTypes, clientId, scopes, redirectUri, null);
+        authorizationRequest.setState(state);
+
+        AuthorizationResponse authorizationResponse = authenticateResourceOwnerAndGrantAccess(
+                authorizationEndpoint, authorizationRequest, userId, userSecret);
+
+        assertNotNull(authorizationResponse.getLocation(), "The location is null");
+        assertNotNull(authorizationResponse.getCode(), "The authorization code is null");
+        assertNotNull(authorizationResponse.getState(), "The state is null");
+        assertNotNull(authorizationResponse.getScope(), "The scope is null");
+        assertNull(authorizationResponse.getIdToken(), "The id token is not null");
+
+        String authorizationCode = authorizationResponse.getCode();
+
+        // 4. Get Access Token
+        OxAuthCryptoProvider cryptoProvider = new OxAuthCryptoProvider(keyStoreFile, keyStoreSecret, dnName);
+
+        TokenRequest tokenRequest = new TokenRequest(GrantType.AUTHORIZATION_CODE);
+        tokenRequest.setAuthenticationMethod(AuthenticationMethod.PRIVATE_KEY_JWT);
+        tokenRequest.setAlgorithm(SignatureAlgorithm.ES512);
+        tokenRequest.setCryptoProvider(cryptoProvider);
+        tokenRequest.setKeyId(keyId);
+        tokenRequest.setAudience(tokenEndpoint);
+        tokenRequest.setCode(authorizationCode);
+        tokenRequest.setRedirectUri(redirectUri);
+        tokenRequest.setAuthUsername(clientId);
+
+        TokenClient tokenClient = new TokenClient(tokenEndpoint);
+        tokenClient.setRequest(tokenRequest);
+        TokenResponse tokenResponse = tokenClient.exec();
+
+        showClient(tokenClient);
+        assertEquals(tokenResponse.getStatus(), 401, "Unexpected response code: " + tokenResponse.getStatus());
+        assertNotNull(tokenResponse.getErrorType(), "The error type is null");
+        assertNotNull(tokenResponse.getErrorDescription(), "The error description is null");
+    }
+
+    @Parameters({"redirectUris", "redirectUri", "userId", "userSecret", "clientJwksUri", "ES256_keyId", "dnName",
+            "keyStoreFile", "keyStoreSecret", "sectorIdentifierUri"})
+    @Test
+    public void tokenEndpointAuthMethodPrivateKeyJwtSigningAlgES256(
+            final String redirectUris, final String redirectUri, final String userId, final String userSecret,
+            final String clientJwksUri, final String keyId, final String dnName, final String keyStoreFile,
+            final String keyStoreSecret, final String sectorIdentifierUri) throws Exception {
+        showTitle("tokenEndpointAuthMethodPrivateKeyJwtSigningAlgES256");
+
+        // 1. Register client
+        RegisterRequest registerRequest = new RegisterRequest(ApplicationType.WEB, "oxAuth test app",
+                StringUtils.spaceSeparatedToList(redirectUris));
+        registerRequest.setTokenEndpointAuthMethod(AuthenticationMethod.PRIVATE_KEY_JWT);
+        registerRequest.setTokenEndpointAuthSigningAlg(SignatureAlgorithm.ES256);
+        registerRequest.setJwksUri(clientJwksUri);
+        registerRequest.setSectorIdentifierUri(sectorIdentifierUri);
+
+        RegisterClient registerClient = new RegisterClient(registrationEndpoint);
+        registerClient.setRequest(registerRequest);
+        RegisterResponse registerResponse = registerClient.exec();
+
+        showClient(registerClient);
+        assertEquals(registerResponse.getStatus(), 200, "Unexpected response code: " + registerResponse.getEntity());
+        assertNotNull(registerResponse.getClientId());
+        assertNotNull(registerResponse.getClientSecret());
+        assertNotNull(registerResponse.getRegistrationAccessToken());
+        assertNotNull(registerResponse.getClientIdIssuedAt());
+        assertNotNull(registerResponse.getClientSecretExpiresAt());
+
+        String clientId = registerResponse.getClientId();
+        String registrationAccessToken = registerResponse.getRegistrationAccessToken();
+        String registrationClientUri = registerResponse.getRegistrationClientUri();
+
+        // 2. Client read
+        RegisterRequest readClientRequest = new RegisterRequest(registrationAccessToken);
+
+        RegisterClient readClient = new RegisterClient(registrationClientUri);
+        readClient.setRequest(readClientRequest);
+        RegisterResponse readClientResponse = readClient.exec();
+
+        showClient(readClient);
+        assertEquals(readClientResponse.getStatus(), 200, "Unexpected response code: " + readClientResponse.getEntity());
+        assertNotNull(readClientResponse.getClientId());
+        assertNotNull(readClientResponse.getClientSecret());
+        assertNotNull(readClientResponse.getClientIdIssuedAt());
+        assertNotNull(readClientResponse.getClientSecretExpiresAt());
+
+        assertTrue(readClientResponse.getClaims().containsKey(TOKEN_ENDPOINT_AUTH_METHOD.toString()));
+        assertEquals(readClientResponse.getClaims().get(TOKEN_ENDPOINT_AUTH_METHOD.toString()),
+                AuthenticationMethod.PRIVATE_KEY_JWT.toString());
+        assertTrue(readClientResponse.getClaims().containsKey(TOKEN_ENDPOINT_AUTH_SIGNING_ALG.toString()));
+        assertEquals(readClientResponse.getClaims().get(TOKEN_ENDPOINT_AUTH_SIGNING_ALG.toString()),
+                SignatureAlgorithm.ES256.toString());
+        assertNotNull(readClientResponse.getClaims().get(RESPONSE_TYPES.toString()));
+        assertNotNull(readClientResponse.getClaims().get(REDIRECT_URIS.toString()));
+        assertNotNull(readClientResponse.getClaims().get(APPLICATION_TYPE.toString()));
+        assertNotNull(readClientResponse.getClaims().get(CLIENT_NAME.toString()));
+        assertNotNull(readClientResponse.getClaims().get(ID_TOKEN_SIGNED_RESPONSE_ALG.toString()));
+        assertNotNull(readClientResponse.getClaims().get(SCOPE.toString()));
+
+        // 3. Request authorization
+        List<ResponseType> responseTypes = Arrays.asList(ResponseType.CODE);
+        List<String> scopes = Arrays.asList(
+                "openid",
+                "profile",
+                "address",
+                "email");
+        String state = UUID.randomUUID().toString();
+
+        AuthorizationRequest authorizationRequest = new AuthorizationRequest(responseTypes, clientId, scopes, redirectUri, null);
+        authorizationRequest.setState(state);
+
+        AuthorizationResponse authorizationResponse = authenticateResourceOwnerAndGrantAccess(
+                authorizationEndpoint, authorizationRequest, userId, userSecret);
+
+        assertNotNull(authorizationResponse.getLocation(), "The location is null");
+        assertNotNull(authorizationResponse.getCode(), "The authorization code is null");
+        assertNotNull(authorizationResponse.getState(), "The state is null");
+        assertNotNull(authorizationResponse.getScope(), "The scope is null");
+        assertNull(authorizationResponse.getIdToken(), "The id token is not null");
+
+        String authorizationCode = authorizationResponse.getCode();
+
+        // 4. Get Access Token
+        OxAuthCryptoProvider cryptoProvider = new OxAuthCryptoProvider(keyStoreFile, keyStoreSecret, dnName);
+
+        TokenRequest tokenRequest = new TokenRequest(GrantType.AUTHORIZATION_CODE);
+        tokenRequest.setAuthenticationMethod(AuthenticationMethod.PRIVATE_KEY_JWT);
+        tokenRequest.setAlgorithm(SignatureAlgorithm.ES256);
+        tokenRequest.setCryptoProvider(cryptoProvider);
+        tokenRequest.setKeyId(keyId);
+        tokenRequest.setAudience(tokenEndpoint);
+        tokenRequest.setCode(authorizationCode);
+        tokenRequest.setRedirectUri(redirectUri);
+        tokenRequest.setAuthUsername(clientId);
+
+        TokenClient tokenClient = new TokenClient(tokenEndpoint);
+        tokenClient.setRequest(tokenRequest);
+        TokenResponse tokenResponse = tokenClient.exec();
+
+        showClient(tokenClient);
+        assertEquals(tokenResponse.getStatus(), 200, "Unexpected response code: " + tokenResponse.getStatus());
+        assertNotNull(tokenResponse.getEntity(), "The entity is null");
+        assertNotNull(tokenResponse.getAccessToken(), "The access token is null");
+        assertNotNull(tokenResponse.getExpiresIn(), "The expires in value is null");
+        assertNotNull(tokenResponse.getTokenType(), "The token type is null");
+        assertNotNull(tokenResponse.getRefreshToken(), "The refresh token is null");
+    }
+
+    @Parameters({"redirectUris", "redirectUri", "userId", "userSecret", "clientJwksUri", "RS256_keyId", "dnName",
+            "keyStoreFile", "keyStoreSecret", "sectorIdentifierUri"})
+    @Test
+    public void tokenEndpointAuthMethodPrivateKeyJwtSigningAlgES256Fail1(
+            final String redirectUris, final String redirectUri, final String userId, final String userSecret,
+            final String clientJwksUri, final String keyId, final String dnName, final String keyStoreFile,
+            final String keyStoreSecret, final String sectorIdentifierUri) throws Exception {
+        showTitle("tokenEndpointAuthMethodPrivateKeyJwtSigningAlgES256Fail1");
+
+        // 1. Register client
+        RegisterRequest registerRequest = new RegisterRequest(ApplicationType.WEB, "oxAuth test app",
+                StringUtils.spaceSeparatedToList(redirectUris));
+        registerRequest.setTokenEndpointAuthMethod(AuthenticationMethod.PRIVATE_KEY_JWT);
+        registerRequest.setTokenEndpointAuthSigningAlg(SignatureAlgorithm.ES256);
+        registerRequest.setJwksUri(clientJwksUri);
+        registerRequest.setSectorIdentifierUri(sectorIdentifierUri);
+
+        RegisterClient registerClient = new RegisterClient(registrationEndpoint);
+        registerClient.setRequest(registerRequest);
+        RegisterResponse registerResponse = registerClient.exec();
+
+        showClient(registerClient);
+        assertEquals(registerResponse.getStatus(), 200, "Unexpected response code: " + registerResponse.getEntity());
+        assertNotNull(registerResponse.getClientId());
+        assertNotNull(registerResponse.getClientSecret());
+        assertNotNull(registerResponse.getRegistrationAccessToken());
+        assertNotNull(registerResponse.getClientIdIssuedAt());
+        assertNotNull(registerResponse.getClientSecretExpiresAt());
+
+        String clientId = registerResponse.getClientId();
+        String registrationAccessToken = registerResponse.getRegistrationAccessToken();
+        String registrationClientUri = registerResponse.getRegistrationClientUri();
+
+        // 2. Client read
+        RegisterRequest readClientRequest = new RegisterRequest(registrationAccessToken);
+
+        RegisterClient readClient = new RegisterClient(registrationClientUri);
+        readClient.setRequest(readClientRequest);
+        RegisterResponse readClientResponse = readClient.exec();
+
+        showClient(readClient);
+        assertEquals(readClientResponse.getStatus(), 200, "Unexpected response code: " + readClientResponse.getEntity());
+        assertNotNull(readClientResponse.getClientId());
+        assertNotNull(readClientResponse.getClientSecret());
+        assertNotNull(readClientResponse.getClientIdIssuedAt());
+        assertNotNull(readClientResponse.getClientSecretExpiresAt());
+
+        assertTrue(readClientResponse.getClaims().containsKey(TOKEN_ENDPOINT_AUTH_METHOD.toString()));
+        assertEquals(readClientResponse.getClaims().get(TOKEN_ENDPOINT_AUTH_METHOD.toString()),
+                AuthenticationMethod.PRIVATE_KEY_JWT.toString());
+        assertTrue(readClientResponse.getClaims().containsKey(TOKEN_ENDPOINT_AUTH_SIGNING_ALG.toString()));
+        assertEquals(readClientResponse.getClaims().get(TOKEN_ENDPOINT_AUTH_SIGNING_ALG.toString()),
+                SignatureAlgorithm.ES256.toString());
+        assertNotNull(readClientResponse.getClaims().get(RESPONSE_TYPES.toString()));
+        assertNotNull(readClientResponse.getClaims().get(REDIRECT_URIS.toString()));
+        assertNotNull(readClientResponse.getClaims().get(APPLICATION_TYPE.toString()));
+        assertNotNull(readClientResponse.getClaims().get(CLIENT_NAME.toString()));
+        assertNotNull(readClientResponse.getClaims().get(ID_TOKEN_SIGNED_RESPONSE_ALG.toString()));
+        assertNotNull(readClientResponse.getClaims().get(SCOPE.toString()));
+
+        // 3. Request authorization
+        List<ResponseType> responseTypes = Arrays.asList(ResponseType.CODE);
+        List<String> scopes = Arrays.asList(
+                "openid",
+                "profile",
+                "address",
+                "email");
+        String state = UUID.randomUUID().toString();
+
+        AuthorizationRequest authorizationRequest = new AuthorizationRequest(responseTypes, clientId, scopes, redirectUri, null);
+        authorizationRequest.setState(state);
+
+        AuthorizationResponse authorizationResponse = authenticateResourceOwnerAndGrantAccess(
+                authorizationEndpoint, authorizationRequest, userId, userSecret);
+
+        assertNotNull(authorizationResponse.getLocation(), "The location is null");
+        assertNotNull(authorizationResponse.getCode(), "The authorization code is null");
+        assertNotNull(authorizationResponse.getState(), "The state is null");
+        assertNotNull(authorizationResponse.getScope(), "The scope is null");
+        assertNull(authorizationResponse.getIdToken(), "The id token is not null");
+
+        String authorizationCode = authorizationResponse.getCode();
+
+        // 4. Get Access Token
+        OxAuthCryptoProvider cryptoProvider = new OxAuthCryptoProvider(keyStoreFile, keyStoreSecret, dnName);
+
+        TokenRequest tokenRequest = new TokenRequest(GrantType.AUTHORIZATION_CODE);
+        tokenRequest.setAuthenticationMethod(AuthenticationMethod.PRIVATE_KEY_JWT);
+        tokenRequest.setAlgorithm(SignatureAlgorithm.RS256);
+        tokenRequest.setCryptoProvider(cryptoProvider);
+        tokenRequest.setKeyId(keyId);
+        tokenRequest.setAudience(tokenEndpoint);
+        tokenRequest.setCode(authorizationCode);
+        tokenRequest.setRedirectUri(redirectUri);
+        tokenRequest.setAuthUsername(clientId);
+
+        TokenClient tokenClient = new TokenClient(tokenEndpoint);
+        tokenClient.setRequest(tokenRequest);
+        TokenResponse tokenResponse = tokenClient.exec();
+
+        showClient(tokenClient);
+        assertEquals(tokenResponse.getStatus(), 401, "Unexpected response code: " + tokenResponse.getStatus());
+        assertNotNull(tokenResponse.getErrorType(), "The error type is null");
+        assertNotNull(tokenResponse.getErrorDescription(), "The error description is null");
+    }
+
+    @Parameters({"redirectUris", "redirectUri", "userId", "userSecret", "clientJwksUri", "RS384_keyId", "dnName",
+            "keyStoreFile", "keyStoreSecret", "sectorIdentifierUri"})
+    @Test
+    public void tokenEndpointAuthMethodPrivateKeyJwtSigningAlgES256Fail2(
+            final String redirectUris, final String redirectUri, final String userId, final String userSecret,
+            final String clientJwksUri, final String keyId, final String dnName, final String keyStoreFile,
+            final String keyStoreSecret, final String sectorIdentifierUri) throws Exception {
+        showTitle("tokenEndpointAuthMethodPrivateKeyJwtSigningAlgES256Fail2");
+
+        // 1. Register client
+        RegisterRequest registerRequest = new RegisterRequest(ApplicationType.WEB, "oxAuth test app",
+                StringUtils.spaceSeparatedToList(redirectUris));
+        registerRequest.setTokenEndpointAuthMethod(AuthenticationMethod.PRIVATE_KEY_JWT);
+        registerRequest.setTokenEndpointAuthSigningAlg(SignatureAlgorithm.ES256);
+        registerRequest.setJwksUri(clientJwksUri);
+        registerRequest.setSectorIdentifierUri(sectorIdentifierUri);
+
+        RegisterClient registerClient = new RegisterClient(registrationEndpoint);
+        registerClient.setRequest(registerRequest);
+        RegisterResponse registerResponse = registerClient.exec();
+
+        showClient(registerClient);
+        assertEquals(registerResponse.getStatus(), 200, "Unexpected response code: " + registerResponse.getEntity());
+        assertNotNull(registerResponse.getClientId());
+        assertNotNull(registerResponse.getClientSecret());
+        assertNotNull(registerResponse.getRegistrationAccessToken());
+        assertNotNull(registerResponse.getClientIdIssuedAt());
+        assertNotNull(registerResponse.getClientSecretExpiresAt());
+
+        String clientId = registerResponse.getClientId();
+        String registrationAccessToken = registerResponse.getRegistrationAccessToken();
+        String registrationClientUri = registerResponse.getRegistrationClientUri();
+
+        // 2. Client read
+        RegisterRequest readClientRequest = new RegisterRequest(registrationAccessToken);
+
+        RegisterClient readClient = new RegisterClient(registrationClientUri);
+        readClient.setRequest(readClientRequest);
+        RegisterResponse readClientResponse = readClient.exec();
+
+        showClient(readClient);
+        assertEquals(readClientResponse.getStatus(), 200, "Unexpected response code: " + readClientResponse.getEntity());
+        assertNotNull(readClientResponse.getClientId());
+        assertNotNull(readClientResponse.getClientSecret());
+        assertNotNull(readClientResponse.getClientIdIssuedAt());
+        assertNotNull(readClientResponse.getClientSecretExpiresAt());
+
+        assertTrue(readClientResponse.getClaims().containsKey(TOKEN_ENDPOINT_AUTH_METHOD.toString()));
+        assertEquals(readClientResponse.getClaims().get(TOKEN_ENDPOINT_AUTH_METHOD.toString()),
+                AuthenticationMethod.PRIVATE_KEY_JWT.toString());
+        assertTrue(readClientResponse.getClaims().containsKey(TOKEN_ENDPOINT_AUTH_SIGNING_ALG.toString()));
+        assertEquals(readClientResponse.getClaims().get(TOKEN_ENDPOINT_AUTH_SIGNING_ALG.toString()),
+                SignatureAlgorithm.ES256.toString());
+        assertNotNull(readClientResponse.getClaims().get(RESPONSE_TYPES.toString()));
+        assertNotNull(readClientResponse.getClaims().get(REDIRECT_URIS.toString()));
+        assertNotNull(readClientResponse.getClaims().get(APPLICATION_TYPE.toString()));
+        assertNotNull(readClientResponse.getClaims().get(CLIENT_NAME.toString()));
+        assertNotNull(readClientResponse.getClaims().get(ID_TOKEN_SIGNED_RESPONSE_ALG.toString()));
+        assertNotNull(readClientResponse.getClaims().get(SCOPE.toString()));
+
+        // 3. Request authorization
+        List<ResponseType> responseTypes = Arrays.asList(ResponseType.CODE);
+        List<String> scopes = Arrays.asList(
+                "openid",
+                "profile",
+                "address",
+                "email");
+        String state = UUID.randomUUID().toString();
+
+        AuthorizationRequest authorizationRequest = new AuthorizationRequest(responseTypes, clientId, scopes, redirectUri, null);
+        authorizationRequest.setState(state);
+
+        AuthorizationResponse authorizationResponse = authenticateResourceOwnerAndGrantAccess(
+                authorizationEndpoint, authorizationRequest, userId, userSecret);
+
+        assertNotNull(authorizationResponse.getLocation(), "The location is null");
+        assertNotNull(authorizationResponse.getCode(), "The authorization code is null");
+        assertNotNull(authorizationResponse.getState(), "The state is null");
+        assertNotNull(authorizationResponse.getScope(), "The scope is null");
+        assertNull(authorizationResponse.getIdToken(), "The id token is not null");
+
+        String authorizationCode = authorizationResponse.getCode();
+
+        // 4. Get Access Token
+        OxAuthCryptoProvider cryptoProvider = new OxAuthCryptoProvider(keyStoreFile, keyStoreSecret, dnName);
+
+        TokenRequest tokenRequest = new TokenRequest(GrantType.AUTHORIZATION_CODE);
+        tokenRequest.setAuthenticationMethod(AuthenticationMethod.PRIVATE_KEY_JWT);
+        tokenRequest.setAlgorithm(SignatureAlgorithm.RS384);
+        tokenRequest.setCryptoProvider(cryptoProvider);
+        tokenRequest.setKeyId(keyId);
+        tokenRequest.setAudience(tokenEndpoint);
+        tokenRequest.setCode(authorizationCode);
+        tokenRequest.setRedirectUri(redirectUri);
+        tokenRequest.setAuthUsername(clientId);
+
+        TokenClient tokenClient = new TokenClient(tokenEndpoint);
+        tokenClient.setRequest(tokenRequest);
+        TokenResponse tokenResponse = tokenClient.exec();
+
+        showClient(tokenClient);
+        assertEquals(tokenResponse.getStatus(), 401, "Unexpected response code: " + tokenResponse.getStatus());
+        assertNotNull(tokenResponse.getErrorType(), "The error type is null");
+        assertNotNull(tokenResponse.getErrorDescription(), "The error description is null");
+    }
+
+    @Parameters({"redirectUris", "redirectUri", "userId", "userSecret", "clientJwksUri", "RS512_keyId", "dnName",
+            "keyStoreFile", "keyStoreSecret", "sectorIdentifierUri"})
+    @Test
+    public void tokenEndpointAuthMethodPrivateKeyJwtSigningAlgES256Fail3(
+            final String redirectUris, final String redirectUri, final String userId, final String userSecret,
+            final String clientJwksUri, final String keyId, final String dnName, final String keyStoreFile,
+            final String keyStoreSecret, final String sectorIdentifierUri) throws Exception {
+        showTitle("tokenEndpointAuthMethodPrivateKeyJwtSigningAlgES256Fail3");
+
+        // 1. Register client
+        RegisterRequest registerRequest = new RegisterRequest(ApplicationType.WEB, "oxAuth test app",
+                StringUtils.spaceSeparatedToList(redirectUris));
+        registerRequest.setTokenEndpointAuthMethod(AuthenticationMethod.PRIVATE_KEY_JWT);
+        registerRequest.setTokenEndpointAuthSigningAlg(SignatureAlgorithm.ES256);
+        registerRequest.setJwksUri(clientJwksUri);
+        registerRequest.setSectorIdentifierUri(sectorIdentifierUri);
+
+        RegisterClient registerClient = new RegisterClient(registrationEndpoint);
+        registerClient.setRequest(registerRequest);
+        RegisterResponse registerResponse = registerClient.exec();
+
+        showClient(registerClient);
+        assertEquals(registerResponse.getStatus(), 200, "Unexpected response code: " + registerResponse.getEntity());
+        assertNotNull(registerResponse.getClientId());
+        assertNotNull(registerResponse.getClientSecret());
+        assertNotNull(registerResponse.getRegistrationAccessToken());
+        assertNotNull(registerResponse.getClientIdIssuedAt());
+        assertNotNull(registerResponse.getClientSecretExpiresAt());
+
+        String clientId = registerResponse.getClientId();
+        String registrationAccessToken = registerResponse.getRegistrationAccessToken();
+        String registrationClientUri = registerResponse.getRegistrationClientUri();
+
+        // 2. Client read
+        RegisterRequest readClientRequest = new RegisterRequest(registrationAccessToken);
+
+        RegisterClient readClient = new RegisterClient(registrationClientUri);
+        readClient.setRequest(readClientRequest);
+        RegisterResponse readClientResponse = readClient.exec();
+
+        showClient(readClient);
+        assertEquals(readClientResponse.getStatus(), 200, "Unexpected response code: " + readClientResponse.getEntity());
+        assertNotNull(readClientResponse.getClientId());
+        assertNotNull(readClientResponse.getClientSecret());
+        assertNotNull(readClientResponse.getClientIdIssuedAt());
+        assertNotNull(readClientResponse.getClientSecretExpiresAt());
+
+        assertTrue(readClientResponse.getClaims().containsKey(TOKEN_ENDPOINT_AUTH_METHOD.toString()));
+        assertEquals(readClientResponse.getClaims().get(TOKEN_ENDPOINT_AUTH_METHOD.toString()),
+                AuthenticationMethod.PRIVATE_KEY_JWT.toString());
+        assertTrue(readClientResponse.getClaims().containsKey(TOKEN_ENDPOINT_AUTH_SIGNING_ALG.toString()));
+        assertEquals(readClientResponse.getClaims().get(TOKEN_ENDPOINT_AUTH_SIGNING_ALG.toString()),
+                SignatureAlgorithm.ES256.toString());
+        assertNotNull(readClientResponse.getClaims().get(RESPONSE_TYPES.toString()));
+        assertNotNull(readClientResponse.getClaims().get(REDIRECT_URIS.toString()));
+        assertNotNull(readClientResponse.getClaims().get(APPLICATION_TYPE.toString()));
+        assertNotNull(readClientResponse.getClaims().get(CLIENT_NAME.toString()));
+        assertNotNull(readClientResponse.getClaims().get(ID_TOKEN_SIGNED_RESPONSE_ALG.toString()));
+        assertNotNull(readClientResponse.getClaims().get(SCOPE.toString()));
+
+        // 3. Request authorization
+        List<ResponseType> responseTypes = Arrays.asList(ResponseType.CODE);
+        List<String> scopes = Arrays.asList(
+                "openid",
+                "profile",
+                "address",
+                "email");
+        String state = UUID.randomUUID().toString();
+
+        AuthorizationRequest authorizationRequest = new AuthorizationRequest(responseTypes, clientId, scopes, redirectUri, null);
+        authorizationRequest.setState(state);
+
+        AuthorizationResponse authorizationResponse = authenticateResourceOwnerAndGrantAccess(
+                authorizationEndpoint, authorizationRequest, userId, userSecret);
+
+        assertNotNull(authorizationResponse.getLocation(), "The location is null");
+        assertNotNull(authorizationResponse.getCode(), "The authorization code is null");
+        assertNotNull(authorizationResponse.getState(), "The state is null");
+        assertNotNull(authorizationResponse.getScope(), "The scope is null");
+        assertNull(authorizationResponse.getIdToken(), "The id token is not null");
+
+        String authorizationCode = authorizationResponse.getCode();
+
+        // 4. Get Access Token
+        OxAuthCryptoProvider cryptoProvider = new OxAuthCryptoProvider(keyStoreFile, keyStoreSecret, dnName);
+
+        TokenRequest tokenRequest = new TokenRequest(GrantType.AUTHORIZATION_CODE);
+        tokenRequest.setAuthenticationMethod(AuthenticationMethod.PRIVATE_KEY_JWT);
+        tokenRequest.setAlgorithm(SignatureAlgorithm.RS512);
+        tokenRequest.setCryptoProvider(cryptoProvider);
+        tokenRequest.setKeyId(keyId);
+        tokenRequest.setAudience(tokenEndpoint);
+        tokenRequest.setCode(authorizationCode);
+        tokenRequest.setRedirectUri(redirectUri);
+        tokenRequest.setAuthUsername(clientId);
+
+        TokenClient tokenClient = new TokenClient(tokenEndpoint);
+        tokenClient.setRequest(tokenRequest);
+        TokenResponse tokenResponse = tokenClient.exec();
+
+        showClient(tokenClient);
+        assertEquals(tokenResponse.getStatus(), 401, "Unexpected response code: " + tokenResponse.getStatus());
+        assertNotNull(tokenResponse.getErrorType(), "The error type is null");
+        assertNotNull(tokenResponse.getErrorDescription(), "The error description is null");
+    }
+
+    @Parameters({"redirectUris", "redirectUri", "userId", "userSecret", "clientJwksUri", "ES384_keyId", "dnName",
+            "keyStoreFile", "keyStoreSecret", "sectorIdentifierUri"})
+    @Test
+    public void tokenEndpointAuthMethodPrivateKeyJwtSigningAlgES256Fail4(
+            final String redirectUris, final String redirectUri, final String userId, final String userSecret,
+            final String clientJwksUri, final String keyId, final String dnName, final String keyStoreFile,
+            final String keyStoreSecret, final String sectorIdentifierUri) throws Exception {
+        showTitle("tokenEndpointAuthMethodPrivateKeyJwtSigningAlgES256Fail4");
+
+        // 1. Register client
+        RegisterRequest registerRequest = new RegisterRequest(ApplicationType.WEB, "oxAuth test app",
+                StringUtils.spaceSeparatedToList(redirectUris));
+        registerRequest.setTokenEndpointAuthMethod(AuthenticationMethod.PRIVATE_KEY_JWT);
+        registerRequest.setTokenEndpointAuthSigningAlg(SignatureAlgorithm.ES256);
+        registerRequest.setJwksUri(clientJwksUri);
+        registerRequest.setSectorIdentifierUri(sectorIdentifierUri);
+
+        RegisterClient registerClient = new RegisterClient(registrationEndpoint);
+        registerClient.setRequest(registerRequest);
+        RegisterResponse registerResponse = registerClient.exec();
+
+        showClient(registerClient);
+        assertEquals(registerResponse.getStatus(), 200, "Unexpected response code: " + registerResponse.getEntity());
+        assertNotNull(registerResponse.getClientId());
+        assertNotNull(registerResponse.getClientSecret());
+        assertNotNull(registerResponse.getRegistrationAccessToken());
+        assertNotNull(registerResponse.getClientIdIssuedAt());
+        assertNotNull(registerResponse.getClientSecretExpiresAt());
+
+        String clientId = registerResponse.getClientId();
+        String registrationAccessToken = registerResponse.getRegistrationAccessToken();
+        String registrationClientUri = registerResponse.getRegistrationClientUri();
+
+        // 2. Client read
+        RegisterRequest readClientRequest = new RegisterRequest(registrationAccessToken);
+
+        RegisterClient readClient = new RegisterClient(registrationClientUri);
+        readClient.setRequest(readClientRequest);
+        RegisterResponse readClientResponse = readClient.exec();
+
+        showClient(readClient);
+        assertEquals(readClientResponse.getStatus(), 200, "Unexpected response code: " + readClientResponse.getEntity());
+        assertNotNull(readClientResponse.getClientId());
+        assertNotNull(readClientResponse.getClientSecret());
+        assertNotNull(readClientResponse.getClientIdIssuedAt());
+        assertNotNull(readClientResponse.getClientSecretExpiresAt());
+
+        assertTrue(readClientResponse.getClaims().containsKey(TOKEN_ENDPOINT_AUTH_METHOD.toString()));
+        assertEquals(readClientResponse.getClaims().get(TOKEN_ENDPOINT_AUTH_METHOD.toString()),
+                AuthenticationMethod.PRIVATE_KEY_JWT.toString());
+        assertTrue(readClientResponse.getClaims().containsKey(TOKEN_ENDPOINT_AUTH_SIGNING_ALG.toString()));
+        assertEquals(readClientResponse.getClaims().get(TOKEN_ENDPOINT_AUTH_SIGNING_ALG.toString()),
+                SignatureAlgorithm.ES256.toString());
+        assertNotNull(readClientResponse.getClaims().get(RESPONSE_TYPES.toString()));
+        assertNotNull(readClientResponse.getClaims().get(REDIRECT_URIS.toString()));
+        assertNotNull(readClientResponse.getClaims().get(APPLICATION_TYPE.toString()));
+        assertNotNull(readClientResponse.getClaims().get(CLIENT_NAME.toString()));
+        assertNotNull(readClientResponse.getClaims().get(ID_TOKEN_SIGNED_RESPONSE_ALG.toString()));
+        assertNotNull(readClientResponse.getClaims().get(SCOPE.toString()));
+
+        // 3. Request authorization
+        List<ResponseType> responseTypes = Arrays.asList(ResponseType.CODE);
+        List<String> scopes = Arrays.asList(
+                "openid",
+                "profile",
+                "address",
+                "email");
+        String state = UUID.randomUUID().toString();
+
+        AuthorizationRequest authorizationRequest = new AuthorizationRequest(responseTypes, clientId, scopes, redirectUri, null);
+        authorizationRequest.setState(state);
+
+        AuthorizationResponse authorizationResponse = authenticateResourceOwnerAndGrantAccess(
+                authorizationEndpoint, authorizationRequest, userId, userSecret);
+
+        assertNotNull(authorizationResponse.getLocation(), "The location is null");
+        assertNotNull(authorizationResponse.getCode(), "The authorization code is null");
+        assertNotNull(authorizationResponse.getState(), "The state is null");
+        assertNotNull(authorizationResponse.getScope(), "The scope is null");
+        assertNull(authorizationResponse.getIdToken(), "The id token is not null");
+
+        String authorizationCode = authorizationResponse.getCode();
+
+        // 4. Get Access Token
+        OxAuthCryptoProvider cryptoProvider = new OxAuthCryptoProvider(keyStoreFile, keyStoreSecret, dnName);
+
+        TokenRequest tokenRequest = new TokenRequest(GrantType.AUTHORIZATION_CODE);
+        tokenRequest.setAuthenticationMethod(AuthenticationMethod.PRIVATE_KEY_JWT);
+        tokenRequest.setAlgorithm(SignatureAlgorithm.ES384);
+        tokenRequest.setCryptoProvider(cryptoProvider);
+        tokenRequest.setKeyId(keyId);
+        tokenRequest.setAudience(tokenEndpoint);
+        tokenRequest.setCode(authorizationCode);
+        tokenRequest.setRedirectUri(redirectUri);
+        tokenRequest.setAuthUsername(clientId);
+
+        TokenClient tokenClient = new TokenClient(tokenEndpoint);
+        tokenClient.setRequest(tokenRequest);
+        TokenResponse tokenResponse = tokenClient.exec();
+
+        showClient(tokenClient);
+        assertEquals(tokenResponse.getStatus(), 401, "Unexpected response code: " + tokenResponse.getStatus());
+        assertNotNull(tokenResponse.getErrorType(), "The error type is null");
+        assertNotNull(tokenResponse.getErrorDescription(), "The error description is null");
+    }
+
+    @Parameters({"redirectUris", "redirectUri", "userId", "userSecret", "clientJwksUri", "ES512_keyId", "dnName",
+            "keyStoreFile", "keyStoreSecret", "sectorIdentifierUri"})
+    @Test
+    public void tokenEndpointAuthMethodPrivateKeyJwtSigningAlgES256Fail5(
+            final String redirectUris, final String redirectUri, final String userId, final String userSecret,
+            final String clientJwksUri, final String keyId, final String dnName, final String keyStoreFile,
+            final String keyStoreSecret, final String sectorIdentifierUri) throws Exception {
+        showTitle("tokenEndpointAuthMethodPrivateKeyJwtSigningAlgES256Fail5");
+
+        // 1. Register client
+        RegisterRequest registerRequest = new RegisterRequest(ApplicationType.WEB, "oxAuth test app",
+                StringUtils.spaceSeparatedToList(redirectUris));
+        registerRequest.setTokenEndpointAuthMethod(AuthenticationMethod.PRIVATE_KEY_JWT);
+        registerRequest.setTokenEndpointAuthSigningAlg(SignatureAlgorithm.ES256);
+        registerRequest.setJwksUri(clientJwksUri);
+        registerRequest.setSectorIdentifierUri(sectorIdentifierUri);
+
+        RegisterClient registerClient = new RegisterClient(registrationEndpoint);
+        registerClient.setRequest(registerRequest);
+        RegisterResponse registerResponse = registerClient.exec();
+
+        showClient(registerClient);
+        assertEquals(registerResponse.getStatus(), 200, "Unexpected response code: " + registerResponse.getEntity());
+        assertNotNull(registerResponse.getClientId());
+        assertNotNull(registerResponse.getClientSecret());
+        assertNotNull(registerResponse.getRegistrationAccessToken());
+        assertNotNull(registerResponse.getClientIdIssuedAt());
+        assertNotNull(registerResponse.getClientSecretExpiresAt());
+
+        String clientId = registerResponse.getClientId();
+        String registrationAccessToken = registerResponse.getRegistrationAccessToken();
+        String registrationClientUri = registerResponse.getRegistrationClientUri();
+
+        // 2. Client read
+        RegisterRequest readClientRequest = new RegisterRequest(registrationAccessToken);
+
+        RegisterClient readClient = new RegisterClient(registrationClientUri);
+        readClient.setRequest(readClientRequest);
+        RegisterResponse readClientResponse = readClient.exec();
+
+        showClient(readClient);
+        assertEquals(readClientResponse.getStatus(), 200, "Unexpected response code: " + readClientResponse.getEntity());
+        assertNotNull(readClientResponse.getClientId());
+        assertNotNull(readClientResponse.getClientSecret());
+        assertNotNull(readClientResponse.getClientIdIssuedAt());
+        assertNotNull(readClientResponse.getClientSecretExpiresAt());
+
+        assertTrue(readClientResponse.getClaims().containsKey(TOKEN_ENDPOINT_AUTH_METHOD.toString()));
+        assertEquals(readClientResponse.getClaims().get(TOKEN_ENDPOINT_AUTH_METHOD.toString()),
+                AuthenticationMethod.PRIVATE_KEY_JWT.toString());
+        assertTrue(readClientResponse.getClaims().containsKey(TOKEN_ENDPOINT_AUTH_SIGNING_ALG.toString()));
+        assertEquals(readClientResponse.getClaims().get(TOKEN_ENDPOINT_AUTH_SIGNING_ALG.toString()),
+                SignatureAlgorithm.ES256.toString());
+        assertNotNull(readClientResponse.getClaims().get(RESPONSE_TYPES.toString()));
+        assertNotNull(readClientResponse.getClaims().get(REDIRECT_URIS.toString()));
+        assertNotNull(readClientResponse.getClaims().get(APPLICATION_TYPE.toString()));
+        assertNotNull(readClientResponse.getClaims().get(CLIENT_NAME.toString()));
+        assertNotNull(readClientResponse.getClaims().get(ID_TOKEN_SIGNED_RESPONSE_ALG.toString()));
+        assertNotNull(readClientResponse.getClaims().get(SCOPE.toString()));
+
+        // 3. Request authorization
+        List<ResponseType> responseTypes = Arrays.asList(ResponseType.CODE);
+        List<String> scopes = Arrays.asList(
+                "openid",
+                "profile",
+                "address",
+                "email");
+        String state = UUID.randomUUID().toString();
+
+        AuthorizationRequest authorizationRequest = new AuthorizationRequest(responseTypes, clientId, scopes, redirectUri, null);
+        authorizationRequest.setState(state);
+
+        AuthorizationResponse authorizationResponse = authenticateResourceOwnerAndGrantAccess(
+                authorizationEndpoint, authorizationRequest, userId, userSecret);
+
+        assertNotNull(authorizationResponse.getLocation(), "The location is null");
+        assertNotNull(authorizationResponse.getCode(), "The authorization code is null");
+        assertNotNull(authorizationResponse.getState(), "The state is null");
+        assertNotNull(authorizationResponse.getScope(), "The scope is null");
+        assertNull(authorizationResponse.getIdToken(), "The id token is not null");
+
+        String authorizationCode = authorizationResponse.getCode();
+
+        // 4. Get Access Token
+        OxAuthCryptoProvider cryptoProvider = new OxAuthCryptoProvider(keyStoreFile, keyStoreSecret, dnName);
+
+        TokenRequest tokenRequest = new TokenRequest(GrantType.AUTHORIZATION_CODE);
+        tokenRequest.setAuthenticationMethod(AuthenticationMethod.PRIVATE_KEY_JWT);
+        tokenRequest.setAlgorithm(SignatureAlgorithm.ES512);
+        tokenRequest.setCryptoProvider(cryptoProvider);
+        tokenRequest.setKeyId(keyId);
+        tokenRequest.setAudience(tokenEndpoint);
+        tokenRequest.setCode(authorizationCode);
+        tokenRequest.setRedirectUri(redirectUri);
+        tokenRequest.setAuthUsername(clientId);
+
+        TokenClient tokenClient = new TokenClient(tokenEndpoint);
+        tokenClient.setRequest(tokenRequest);
+        TokenResponse tokenResponse = tokenClient.exec();
+
+        showClient(tokenClient);
+        assertEquals(tokenResponse.getStatus(), 401, "Unexpected response code: " + tokenResponse.getStatus());
+        assertNotNull(tokenResponse.getErrorType(), "The error type is null");
+        assertNotNull(tokenResponse.getErrorDescription(), "The error description is null");
+    }
+
+    @Parameters({"redirectUris", "redirectUri", "userId", "userSecret", "clientJwksUri", "ES384_keyId", "dnName",
+            "keyStoreFile", "keyStoreSecret", "sectorIdentifierUri"})
+    @Test
+    public void tokenEndpointAuthMethodPrivateKeyJwtSigningAlgES384(
+            final String redirectUris, final String redirectUri, final String userId, final String userSecret,
+            final String clientJwksUri, final String keyId, final String dnName, final String keyStoreFile,
+            final String keyStoreSecret, final String sectorIdentifierUri) throws Exception {
+        showTitle("tokenEndpointAuthMethodPrivateKeyJwtSigningAlgES384");
+
+        // 1. Register client
+        RegisterRequest registerRequest = new RegisterRequest(ApplicationType.WEB, "oxAuth test app",
+                StringUtils.spaceSeparatedToList(redirectUris));
+        registerRequest.setTokenEndpointAuthMethod(AuthenticationMethod.PRIVATE_KEY_JWT);
+        registerRequest.setTokenEndpointAuthSigningAlg(SignatureAlgorithm.ES384);
+        registerRequest.setJwksUri(clientJwksUri);
+        registerRequest.setSectorIdentifierUri(sectorIdentifierUri);
+
+        RegisterClient registerClient = new RegisterClient(registrationEndpoint);
+        registerClient.setRequest(registerRequest);
+        RegisterResponse registerResponse = registerClient.exec();
+
+        showClient(registerClient);
+        assertEquals(registerResponse.getStatus(), 200, "Unexpected response code: " + registerResponse.getEntity());
+        assertNotNull(registerResponse.getClientId());
+        assertNotNull(registerResponse.getClientSecret());
+        assertNotNull(registerResponse.getRegistrationAccessToken());
+        assertNotNull(registerResponse.getClientIdIssuedAt());
+        assertNotNull(registerResponse.getClientSecretExpiresAt());
+
+        String clientId = registerResponse.getClientId();
+        String registrationAccessToken = registerResponse.getRegistrationAccessToken();
+        String registrationClientUri = registerResponse.getRegistrationClientUri();
+
+        // 2. Client read
+        RegisterRequest readClientRequest = new RegisterRequest(registrationAccessToken);
+
+        RegisterClient readClient = new RegisterClient(registrationClientUri);
+        readClient.setRequest(readClientRequest);
+        RegisterResponse readClientResponse = readClient.exec();
+
+        showClient(readClient);
+        assertEquals(readClientResponse.getStatus(), 200, "Unexpected response code: " + readClientResponse.getEntity());
+        assertNotNull(readClientResponse.getClientId());
+        assertNotNull(readClientResponse.getClientSecret());
+        assertNotNull(readClientResponse.getClientIdIssuedAt());
+        assertNotNull(readClientResponse.getClientSecretExpiresAt());
+
+        assertTrue(readClientResponse.getClaims().containsKey(TOKEN_ENDPOINT_AUTH_METHOD.toString()));
+        assertEquals(readClientResponse.getClaims().get(TOKEN_ENDPOINT_AUTH_METHOD.toString()),
+                AuthenticationMethod.PRIVATE_KEY_JWT.toString());
+        assertTrue(readClientResponse.getClaims().containsKey(TOKEN_ENDPOINT_AUTH_SIGNING_ALG.toString()));
+        assertEquals(readClientResponse.getClaims().get(TOKEN_ENDPOINT_AUTH_SIGNING_ALG.toString()),
+                SignatureAlgorithm.ES384.toString());
+        assertNotNull(readClientResponse.getClaims().get(RESPONSE_TYPES.toString()));
+        assertNotNull(readClientResponse.getClaims().get(REDIRECT_URIS.toString()));
+        assertNotNull(readClientResponse.getClaims().get(APPLICATION_TYPE.toString()));
+        assertNotNull(readClientResponse.getClaims().get(CLIENT_NAME.toString()));
+        assertNotNull(readClientResponse.getClaims().get(ID_TOKEN_SIGNED_RESPONSE_ALG.toString()));
+        assertNotNull(readClientResponse.getClaims().get(SCOPE.toString()));
+
+        // 3. Request authorization
+        List<ResponseType> responseTypes = Arrays.asList(ResponseType.CODE);
+        List<String> scopes = Arrays.asList(
+                "openid",
+                "profile",
+                "address",
+                "email");
+        String state = UUID.randomUUID().toString();
+
+        AuthorizationRequest authorizationRequest = new AuthorizationRequest(responseTypes, clientId, scopes, redirectUri, null);
+        authorizationRequest.setState(state);
+
+        AuthorizationResponse authorizationResponse = authenticateResourceOwnerAndGrantAccess(
+                authorizationEndpoint, authorizationRequest, userId, userSecret);
+
+        assertNotNull(authorizationResponse.getLocation(), "The location is null");
+        assertNotNull(authorizationResponse.getCode(), "The authorization code is null");
+        assertNotNull(authorizationResponse.getState(), "The state is null");
+        assertNotNull(authorizationResponse.getScope(), "The scope is null");
+        assertNull(authorizationResponse.getIdToken(), "The id token is not null");
+
+        String authorizationCode = authorizationResponse.getCode();
+
+        // 4. Get Access Token
+        OxAuthCryptoProvider cryptoProvider = new OxAuthCryptoProvider(keyStoreFile, keyStoreSecret, dnName);
+
+        TokenRequest tokenRequest = new TokenRequest(GrantType.AUTHORIZATION_CODE);
+        tokenRequest.setAuthenticationMethod(AuthenticationMethod.PRIVATE_KEY_JWT);
+        tokenRequest.setAlgorithm(SignatureAlgorithm.ES384);
+        tokenRequest.setCryptoProvider(cryptoProvider);
+        tokenRequest.setKeyId(keyId);
+        tokenRequest.setAudience(tokenEndpoint);
+        tokenRequest.setCode(authorizationCode);
+        tokenRequest.setRedirectUri(redirectUri);
+        tokenRequest.setAuthUsername(clientId);
+
+        TokenClient tokenClient = new TokenClient(tokenEndpoint);
+        tokenClient.setRequest(tokenRequest);
+        TokenResponse tokenResponse = tokenClient.exec();
+
+        showClient(tokenClient);
+        assertEquals(tokenResponse.getStatus(), 200, "Unexpected response code: " + tokenResponse.getStatus());
+        assertNotNull(tokenResponse.getEntity(), "The entity is null");
+        assertNotNull(tokenResponse.getAccessToken(), "The access token is null");
+        assertNotNull(tokenResponse.getExpiresIn(), "The expires in value is null");
+        assertNotNull(tokenResponse.getTokenType(), "The token type is null");
+        assertNotNull(tokenResponse.getRefreshToken(), "The refresh token is null");
+    }
+
+    @Parameters({"redirectUris", "redirectUri", "userId", "userSecret", "clientJwksUri", "RS256_keyId", "dnName",
+            "keyStoreFile", "keyStoreSecret", "sectorIdentifierUri"})
+    @Test
+    public void tokenEndpointAuthMethodPrivateKeyJwtSigningAlgES384Fail1(
+            final String redirectUris, final String redirectUri, final String userId, final String userSecret,
+            final String clientJwksUri, final String keyId, final String dnName, final String keyStoreFile,
+            final String keyStoreSecret, final String sectorIdentifierUri) throws Exception {
+        showTitle("tokenEndpointAuthMethodPrivateKeyJwtSigningAlgES384Fail1");
+
+        // 1. Register client
+        RegisterRequest registerRequest = new RegisterRequest(ApplicationType.WEB, "oxAuth test app",
+                StringUtils.spaceSeparatedToList(redirectUris));
+        registerRequest.setTokenEndpointAuthMethod(AuthenticationMethod.PRIVATE_KEY_JWT);
+        registerRequest.setTokenEndpointAuthSigningAlg(SignatureAlgorithm.ES384);
+        registerRequest.setJwksUri(clientJwksUri);
+        registerRequest.setSectorIdentifierUri(sectorIdentifierUri);
+
+        RegisterClient registerClient = new RegisterClient(registrationEndpoint);
+        registerClient.setRequest(registerRequest);
+        RegisterResponse registerResponse = registerClient.exec();
+
+        showClient(registerClient);
+        assertEquals(registerResponse.getStatus(), 200, "Unexpected response code: " + registerResponse.getEntity());
+        assertNotNull(registerResponse.getClientId());
+        assertNotNull(registerResponse.getClientSecret());
+        assertNotNull(registerResponse.getRegistrationAccessToken());
+        assertNotNull(registerResponse.getClientIdIssuedAt());
+        assertNotNull(registerResponse.getClientSecretExpiresAt());
+
+        String clientId = registerResponse.getClientId();
+        String registrationAccessToken = registerResponse.getRegistrationAccessToken();
+        String registrationClientUri = registerResponse.getRegistrationClientUri();
+
+        // 2. Client read
+        RegisterRequest readClientRequest = new RegisterRequest(registrationAccessToken);
+
+        RegisterClient readClient = new RegisterClient(registrationClientUri);
+        readClient.setRequest(readClientRequest);
+        RegisterResponse readClientResponse = readClient.exec();
+
+        showClient(readClient);
+        assertEquals(readClientResponse.getStatus(), 200, "Unexpected response code: " + readClientResponse.getEntity());
+        assertNotNull(readClientResponse.getClientId());
+        assertNotNull(readClientResponse.getClientSecret());
+        assertNotNull(readClientResponse.getClientIdIssuedAt());
+        assertNotNull(readClientResponse.getClientSecretExpiresAt());
+
+        assertTrue(readClientResponse.getClaims().containsKey(TOKEN_ENDPOINT_AUTH_METHOD.toString()));
+        assertEquals(readClientResponse.getClaims().get(TOKEN_ENDPOINT_AUTH_METHOD.toString()),
+                AuthenticationMethod.PRIVATE_KEY_JWT.toString());
+        assertTrue(readClientResponse.getClaims().containsKey(TOKEN_ENDPOINT_AUTH_SIGNING_ALG.toString()));
+        assertEquals(readClientResponse.getClaims().get(TOKEN_ENDPOINT_AUTH_SIGNING_ALG.toString()),
+                SignatureAlgorithm.ES384.toString());
+        assertNotNull(readClientResponse.getClaims().get(RESPONSE_TYPES.toString()));
+        assertNotNull(readClientResponse.getClaims().get(REDIRECT_URIS.toString()));
+        assertNotNull(readClientResponse.getClaims().get(APPLICATION_TYPE.toString()));
+        assertNotNull(readClientResponse.getClaims().get(CLIENT_NAME.toString()));
+        assertNotNull(readClientResponse.getClaims().get(ID_TOKEN_SIGNED_RESPONSE_ALG.toString()));
+        assertNotNull(readClientResponse.getClaims().get(SCOPE.toString()));
+
+        // 3. Request authorization
+        List<ResponseType> responseTypes = Arrays.asList(ResponseType.CODE);
+        List<String> scopes = Arrays.asList(
+                "openid",
+                "profile",
+                "address",
+                "email");
+        String state = UUID.randomUUID().toString();
+
+        AuthorizationRequest authorizationRequest = new AuthorizationRequest(responseTypes, clientId, scopes, redirectUri, null);
+        authorizationRequest.setState(state);
+
+        AuthorizationResponse authorizationResponse = authenticateResourceOwnerAndGrantAccess(
+                authorizationEndpoint, authorizationRequest, userId, userSecret);
+
+        assertNotNull(authorizationResponse.getLocation(), "The location is null");
+        assertNotNull(authorizationResponse.getCode(), "The authorization code is null");
+        assertNotNull(authorizationResponse.getState(), "The state is null");
+        assertNotNull(authorizationResponse.getScope(), "The scope is null");
+        assertNull(authorizationResponse.getIdToken(), "The id token is not null");
+
+        String authorizationCode = authorizationResponse.getCode();
+
+        // 4. Get Access Token
+        OxAuthCryptoProvider cryptoProvider = new OxAuthCryptoProvider(keyStoreFile, keyStoreSecret, dnName);
+
+        TokenRequest tokenRequest = new TokenRequest(GrantType.AUTHORIZATION_CODE);
+        tokenRequest.setAuthenticationMethod(AuthenticationMethod.PRIVATE_KEY_JWT);
+        tokenRequest.setAlgorithm(SignatureAlgorithm.RS256);
+        tokenRequest.setCryptoProvider(cryptoProvider);
+        tokenRequest.setKeyId(keyId);
+        tokenRequest.setAudience(tokenEndpoint);
+        tokenRequest.setCode(authorizationCode);
+        tokenRequest.setRedirectUri(redirectUri);
+        tokenRequest.setAuthUsername(clientId);
+
+        TokenClient tokenClient = new TokenClient(tokenEndpoint);
+        tokenClient.setRequest(tokenRequest);
+        TokenResponse tokenResponse = tokenClient.exec();
+
+        showClient(tokenClient);
+        assertEquals(tokenResponse.getStatus(), 401, "Unexpected response code: " + tokenResponse.getStatus());
+        assertNotNull(tokenResponse.getErrorType(), "The error type is null");
+        assertNotNull(tokenResponse.getErrorDescription(), "The error description is null");
+    }
+
+    @Parameters({"redirectUris", "redirectUri", "userId", "userSecret", "clientJwksUri", "RS384_keyId", "dnName",
+            "keyStoreFile", "keyStoreSecret", "sectorIdentifierUri"})
+    @Test
+    public void tokenEndpointAuthMethodPrivateKeyJwtSigningAlgES384Fail2(
+            final String redirectUris, final String redirectUri, final String userId, final String userSecret,
+            final String clientJwksUri, final String keyId, final String dnName, final String keyStoreFile,
+            final String keyStoreSecret, final String sectorIdentifierUri) throws Exception {
+        showTitle("tokenEndpointAuthMethodPrivateKeyJwtSigningAlgES384Fail2");
+
+        // 1. Register client
+        RegisterRequest registerRequest = new RegisterRequest(ApplicationType.WEB, "oxAuth test app",
+                StringUtils.spaceSeparatedToList(redirectUris));
+        registerRequest.setTokenEndpointAuthMethod(AuthenticationMethod.PRIVATE_KEY_JWT);
+        registerRequest.setTokenEndpointAuthSigningAlg(SignatureAlgorithm.ES384);
+        registerRequest.setJwksUri(clientJwksUri);
+        registerRequest.setSectorIdentifierUri(sectorIdentifierUri);
+
+        RegisterClient registerClient = new RegisterClient(registrationEndpoint);
+        registerClient.setRequest(registerRequest);
+        RegisterResponse registerResponse = registerClient.exec();
+
+        showClient(registerClient);
+        assertEquals(registerResponse.getStatus(), 200, "Unexpected response code: " + registerResponse.getEntity());
+        assertNotNull(registerResponse.getClientId());
+        assertNotNull(registerResponse.getClientSecret());
+        assertNotNull(registerResponse.getRegistrationAccessToken());
+        assertNotNull(registerResponse.getClientIdIssuedAt());
+        assertNotNull(registerResponse.getClientSecretExpiresAt());
+
+        String clientId = registerResponse.getClientId();
+        String registrationAccessToken = registerResponse.getRegistrationAccessToken();
+        String registrationClientUri = registerResponse.getRegistrationClientUri();
+
+        // 2. Client read
+        RegisterRequest readClientRequest = new RegisterRequest(registrationAccessToken);
+
+        RegisterClient readClient = new RegisterClient(registrationClientUri);
+        readClient.setRequest(readClientRequest);
+        RegisterResponse readClientResponse = readClient.exec();
+
+        showClient(readClient);
+        assertEquals(readClientResponse.getStatus(), 200, "Unexpected response code: " + readClientResponse.getEntity());
+        assertNotNull(readClientResponse.getClientId());
+        assertNotNull(readClientResponse.getClientSecret());
+        assertNotNull(readClientResponse.getClientIdIssuedAt());
+        assertNotNull(readClientResponse.getClientSecretExpiresAt());
+
+        assertTrue(readClientResponse.getClaims().containsKey(TOKEN_ENDPOINT_AUTH_METHOD.toString()));
+        assertEquals(readClientResponse.getClaims().get(TOKEN_ENDPOINT_AUTH_METHOD.toString()),
+                AuthenticationMethod.PRIVATE_KEY_JWT.toString());
+        assertTrue(readClientResponse.getClaims().containsKey(TOKEN_ENDPOINT_AUTH_SIGNING_ALG.toString()));
+        assertEquals(readClientResponse.getClaims().get(TOKEN_ENDPOINT_AUTH_SIGNING_ALG.toString()),
+                SignatureAlgorithm.ES384.toString());
+        assertNotNull(readClientResponse.getClaims().get(RESPONSE_TYPES.toString()));
+        assertNotNull(readClientResponse.getClaims().get(REDIRECT_URIS.toString()));
+        assertNotNull(readClientResponse.getClaims().get(APPLICATION_TYPE.toString()));
+        assertNotNull(readClientResponse.getClaims().get(CLIENT_NAME.toString()));
+        assertNotNull(readClientResponse.getClaims().get(ID_TOKEN_SIGNED_RESPONSE_ALG.toString()));
+        assertNotNull(readClientResponse.getClaims().get(SCOPE.toString()));
+
+        // 3. Request authorization
+        List<ResponseType> responseTypes = Arrays.asList(ResponseType.CODE);
+        List<String> scopes = Arrays.asList(
+                "openid",
+                "profile",
+                "address",
+                "email");
+        String state = UUID.randomUUID().toString();
+
+        AuthorizationRequest authorizationRequest = new AuthorizationRequest(responseTypes, clientId, scopes, redirectUri, null);
+        authorizationRequest.setState(state);
+
+        AuthorizationResponse authorizationResponse = authenticateResourceOwnerAndGrantAccess(
+                authorizationEndpoint, authorizationRequest, userId, userSecret);
+
+        assertNotNull(authorizationResponse.getLocation(), "The location is null");
+        assertNotNull(authorizationResponse.getCode(), "The authorization code is null");
+        assertNotNull(authorizationResponse.getState(), "The state is null");
+        assertNotNull(authorizationResponse.getScope(), "The scope is null");
+        assertNull(authorizationResponse.getIdToken(), "The id token is not null");
+
+        String authorizationCode = authorizationResponse.getCode();
+
+        // 4. Get Access Token
+        OxAuthCryptoProvider cryptoProvider = new OxAuthCryptoProvider(keyStoreFile, keyStoreSecret, dnName);
+
+        TokenRequest tokenRequest = new TokenRequest(GrantType.AUTHORIZATION_CODE);
+        tokenRequest.setAuthenticationMethod(AuthenticationMethod.PRIVATE_KEY_JWT);
+        tokenRequest.setAlgorithm(SignatureAlgorithm.RS384);
+        tokenRequest.setCryptoProvider(cryptoProvider);
+        tokenRequest.setKeyId(keyId);
+        tokenRequest.setAudience(tokenEndpoint);
+        tokenRequest.setCode(authorizationCode);
+        tokenRequest.setRedirectUri(redirectUri);
+        tokenRequest.setAuthUsername(clientId);
+
+        TokenClient tokenClient = new TokenClient(tokenEndpoint);
+        tokenClient.setRequest(tokenRequest);
+        TokenResponse tokenResponse = tokenClient.exec();
+
+        showClient(tokenClient);
+        assertEquals(tokenResponse.getStatus(), 401, "Unexpected response code: " + tokenResponse.getStatus());
+        assertNotNull(tokenResponse.getErrorType(), "The error type is null");
+        assertNotNull(tokenResponse.getErrorDescription(), "The error description is null");
+    }
+
+    @Parameters({"redirectUris", "redirectUri", "userId", "userSecret", "clientJwksUri", "RS512_keyId", "dnName",
+            "keyStoreFile", "keyStoreSecret", "sectorIdentifierUri"})
+    @Test
+    public void tokenEndpointAuthMethodPrivateKeyJwtSigningAlgES384Fail3(
+            final String redirectUris, final String redirectUri, final String userId, final String userSecret,
+            final String clientJwksUri, final String keyId, final String dnName, final String keyStoreFile,
+            final String keyStoreSecret, final String sectorIdentifierUri) throws Exception {
+        showTitle("tokenEndpointAuthMethodPrivateKeyJwtSigningAlgES384Fail3");
+
+        // 1. Register client
+        RegisterRequest registerRequest = new RegisterRequest(ApplicationType.WEB, "oxAuth test app",
+                StringUtils.spaceSeparatedToList(redirectUris));
+        registerRequest.setTokenEndpointAuthMethod(AuthenticationMethod.PRIVATE_KEY_JWT);
+        registerRequest.setTokenEndpointAuthSigningAlg(SignatureAlgorithm.ES384);
+        registerRequest.setJwksUri(clientJwksUri);
+        registerRequest.setSectorIdentifierUri(sectorIdentifierUri);
+
+        RegisterClient registerClient = new RegisterClient(registrationEndpoint);
+        registerClient.setRequest(registerRequest);
+        RegisterResponse registerResponse = registerClient.exec();
+
+        showClient(registerClient);
+        assertEquals(registerResponse.getStatus(), 200, "Unexpected response code: " + registerResponse.getEntity());
+        assertNotNull(registerResponse.getClientId());
+        assertNotNull(registerResponse.getClientSecret());
+        assertNotNull(registerResponse.getRegistrationAccessToken());
+        assertNotNull(registerResponse.getClientIdIssuedAt());
+        assertNotNull(registerResponse.getClientSecretExpiresAt());
+
+        String clientId = registerResponse.getClientId();
+        String registrationAccessToken = registerResponse.getRegistrationAccessToken();
+        String registrationClientUri = registerResponse.getRegistrationClientUri();
+
+        // 2. Client read
+        RegisterRequest readClientRequest = new RegisterRequest(registrationAccessToken);
+
+        RegisterClient readClient = new RegisterClient(registrationClientUri);
+        readClient.setRequest(readClientRequest);
+        RegisterResponse readClientResponse = readClient.exec();
+
+        showClient(readClient);
+        assertEquals(readClientResponse.getStatus(), 200, "Unexpected response code: " + readClientResponse.getEntity());
+        assertNotNull(readClientResponse.getClientId());
+        assertNotNull(readClientResponse.getClientSecret());
+        assertNotNull(readClientResponse.getClientIdIssuedAt());
+        assertNotNull(readClientResponse.getClientSecretExpiresAt());
+
+        assertTrue(readClientResponse.getClaims().containsKey(TOKEN_ENDPOINT_AUTH_METHOD.toString()));
+        assertEquals(readClientResponse.getClaims().get(TOKEN_ENDPOINT_AUTH_METHOD.toString()),
+                AuthenticationMethod.PRIVATE_KEY_JWT.toString());
+        assertTrue(readClientResponse.getClaims().containsKey(TOKEN_ENDPOINT_AUTH_SIGNING_ALG.toString()));
+        assertEquals(readClientResponse.getClaims().get(TOKEN_ENDPOINT_AUTH_SIGNING_ALG.toString()),
+                SignatureAlgorithm.ES384.toString());
+        assertNotNull(readClientResponse.getClaims().get(RESPONSE_TYPES.toString()));
+        assertNotNull(readClientResponse.getClaims().get(REDIRECT_URIS.toString()));
+        assertNotNull(readClientResponse.getClaims().get(APPLICATION_TYPE.toString()));
+        assertNotNull(readClientResponse.getClaims().get(CLIENT_NAME.toString()));
+        assertNotNull(readClientResponse.getClaims().get(ID_TOKEN_SIGNED_RESPONSE_ALG.toString()));
+        assertNotNull(readClientResponse.getClaims().get(SCOPE.toString()));
+
+        // 3. Request authorization
+        List<ResponseType> responseTypes = Arrays.asList(ResponseType.CODE);
+        List<String> scopes = Arrays.asList(
+                "openid",
+                "profile",
+                "address",
+                "email");
+        String state = UUID.randomUUID().toString();
+
+        AuthorizationRequest authorizationRequest = new AuthorizationRequest(responseTypes, clientId, scopes, redirectUri, null);
+        authorizationRequest.setState(state);
+
+        AuthorizationResponse authorizationResponse = authenticateResourceOwnerAndGrantAccess(
+                authorizationEndpoint, authorizationRequest, userId, userSecret);
+
+        assertNotNull(authorizationResponse.getLocation(), "The location is null");
+        assertNotNull(authorizationResponse.getCode(), "The authorization code is null");
+        assertNotNull(authorizationResponse.getState(), "The state is null");
+        assertNotNull(authorizationResponse.getScope(), "The scope is null");
+        assertNull(authorizationResponse.getIdToken(), "The id token is not null");
+
+        String authorizationCode = authorizationResponse.getCode();
+
+        // 4. Get Access Token
+        OxAuthCryptoProvider cryptoProvider = new OxAuthCryptoProvider(keyStoreFile, keyStoreSecret, dnName);
+
+        TokenRequest tokenRequest = new TokenRequest(GrantType.AUTHORIZATION_CODE);
+        tokenRequest.setAuthenticationMethod(AuthenticationMethod.PRIVATE_KEY_JWT);
+        tokenRequest.setAlgorithm(SignatureAlgorithm.RS512);
+        tokenRequest.setCryptoProvider(cryptoProvider);
+        tokenRequest.setKeyId(keyId);
+        tokenRequest.setAudience(tokenEndpoint);
+        tokenRequest.setCode(authorizationCode);
+        tokenRequest.setRedirectUri(redirectUri);
+        tokenRequest.setAuthUsername(clientId);
+
+        TokenClient tokenClient = new TokenClient(tokenEndpoint);
+        tokenClient.setRequest(tokenRequest);
+        TokenResponse tokenResponse = tokenClient.exec();
+
+        showClient(tokenClient);
+        assertEquals(tokenResponse.getStatus(), 401, "Unexpected response code: " + tokenResponse.getStatus());
+        assertNotNull(tokenResponse.getErrorType(), "The error type is null");
+        assertNotNull(tokenResponse.getErrorDescription(), "The error description is null");
+    }
+
+    @Parameters({"redirectUris", "redirectUri", "userId", "userSecret", "clientJwksUri", "ES256_keyId", "dnName",
+            "keyStoreFile", "keyStoreSecret", "sectorIdentifierUri"})
+    @Test
+    public void tokenEndpointAuthMethodPrivateKeyJwtSigningAlgES384Fail4(
+            final String redirectUris, final String redirectUri, final String userId, final String userSecret,
+            final String clientJwksUri, final String keyId, final String dnName, final String keyStoreFile,
+            final String keyStoreSecret, final String sectorIdentifierUri) throws Exception {
+        showTitle("tokenEndpointAuthMethodPrivateKeyJwtSigningAlgES384Fail4");
+
+        // 1. Register client
+        RegisterRequest registerRequest = new RegisterRequest(ApplicationType.WEB, "oxAuth test app",
+                StringUtils.spaceSeparatedToList(redirectUris));
+        registerRequest.setTokenEndpointAuthMethod(AuthenticationMethod.PRIVATE_KEY_JWT);
+        registerRequest.setTokenEndpointAuthSigningAlg(SignatureAlgorithm.ES384);
+        registerRequest.setJwksUri(clientJwksUri);
+        registerRequest.setSectorIdentifierUri(sectorIdentifierUri);
+
+        RegisterClient registerClient = new RegisterClient(registrationEndpoint);
+        registerClient.setRequest(registerRequest);
+        RegisterResponse registerResponse = registerClient.exec();
+
+        showClient(registerClient);
+        assertEquals(registerResponse.getStatus(), 200, "Unexpected response code: " + registerResponse.getEntity());
+        assertNotNull(registerResponse.getClientId());
+        assertNotNull(registerResponse.getClientSecret());
+        assertNotNull(registerResponse.getRegistrationAccessToken());
+        assertNotNull(registerResponse.getClientIdIssuedAt());
+        assertNotNull(registerResponse.getClientSecretExpiresAt());
+
+        String clientId = registerResponse.getClientId();
+        String registrationAccessToken = registerResponse.getRegistrationAccessToken();
+        String registrationClientUri = registerResponse.getRegistrationClientUri();
+
+        // 2. Client read
+        RegisterRequest readClientRequest = new RegisterRequest(registrationAccessToken);
+
+        RegisterClient readClient = new RegisterClient(registrationClientUri);
+        readClient.setRequest(readClientRequest);
+        RegisterResponse readClientResponse = readClient.exec();
+
+        showClient(readClient);
+        assertEquals(readClientResponse.getStatus(), 200, "Unexpected response code: " + readClientResponse.getEntity());
+        assertNotNull(readClientResponse.getClientId());
+        assertNotNull(readClientResponse.getClientSecret());
+        assertNotNull(readClientResponse.getClientIdIssuedAt());
+        assertNotNull(readClientResponse.getClientSecretExpiresAt());
+
+        assertTrue(readClientResponse.getClaims().containsKey(TOKEN_ENDPOINT_AUTH_METHOD.toString()));
+        assertEquals(readClientResponse.getClaims().get(TOKEN_ENDPOINT_AUTH_METHOD.toString()),
+                AuthenticationMethod.PRIVATE_KEY_JWT.toString());
+        assertTrue(readClientResponse.getClaims().containsKey(TOKEN_ENDPOINT_AUTH_SIGNING_ALG.toString()));
+        assertEquals(readClientResponse.getClaims().get(TOKEN_ENDPOINT_AUTH_SIGNING_ALG.toString()),
+                SignatureAlgorithm.ES384.toString());
+        assertNotNull(readClientResponse.getClaims().get(RESPONSE_TYPES.toString()));
+        assertNotNull(readClientResponse.getClaims().get(REDIRECT_URIS.toString()));
+        assertNotNull(readClientResponse.getClaims().get(APPLICATION_TYPE.toString()));
+        assertNotNull(readClientResponse.getClaims().get(CLIENT_NAME.toString()));
+        assertNotNull(readClientResponse.getClaims().get(ID_TOKEN_SIGNED_RESPONSE_ALG.toString()));
+        assertNotNull(readClientResponse.getClaims().get(SCOPE.toString()));
+
+        // 3. Request authorization
+        List<ResponseType> responseTypes = Arrays.asList(ResponseType.CODE);
+        List<String> scopes = Arrays.asList(
+                "openid",
+                "profile",
+                "address",
+                "email");
+        String state = UUID.randomUUID().toString();
+
+        AuthorizationRequest authorizationRequest = new AuthorizationRequest(responseTypes, clientId, scopes, redirectUri, null);
+        authorizationRequest.setState(state);
+
+        AuthorizationResponse authorizationResponse = authenticateResourceOwnerAndGrantAccess(
+                authorizationEndpoint, authorizationRequest, userId, userSecret);
+
+        assertNotNull(authorizationResponse.getLocation(), "The location is null");
+        assertNotNull(authorizationResponse.getCode(), "The authorization code is null");
+        assertNotNull(authorizationResponse.getState(), "The state is null");
+        assertNotNull(authorizationResponse.getScope(), "The scope is null");
+        assertNull(authorizationResponse.getIdToken(), "The id token is not null");
+
+        String authorizationCode = authorizationResponse.getCode();
+
+        // 4. Get Access Token
+        OxAuthCryptoProvider cryptoProvider = new OxAuthCryptoProvider(keyStoreFile, keyStoreSecret, dnName);
+
+        TokenRequest tokenRequest = new TokenRequest(GrantType.AUTHORIZATION_CODE);
+        tokenRequest.setAuthenticationMethod(AuthenticationMethod.PRIVATE_KEY_JWT);
+        tokenRequest.setAlgorithm(SignatureAlgorithm.ES256);
+        tokenRequest.setCryptoProvider(cryptoProvider);
+        tokenRequest.setKeyId(keyId);
+        tokenRequest.setAudience(tokenEndpoint);
+        tokenRequest.setCode(authorizationCode);
+        tokenRequest.setRedirectUri(redirectUri);
+        tokenRequest.setAuthUsername(clientId);
+
+        TokenClient tokenClient = new TokenClient(tokenEndpoint);
+        tokenClient.setRequest(tokenRequest);
+        TokenResponse tokenResponse = tokenClient.exec();
+
+        showClient(tokenClient);
+        assertEquals(tokenResponse.getStatus(), 401, "Unexpected response code: " + tokenResponse.getStatus());
+        assertNotNull(tokenResponse.getErrorType(), "The error type is null");
+        assertNotNull(tokenResponse.getErrorDescription(), "The error description is null");
+    }
+
+    @Parameters({"redirectUris", "redirectUri", "userId", "userSecret", "clientJwksUri", "ES512_keyId", "dnName",
+            "keyStoreFile", "keyStoreSecret", "sectorIdentifierUri"})
+    @Test
+    public void tokenEndpointAuthMethodPrivateKeyJwtSigningAlgES384Fail5(
+            final String redirectUris, final String redirectUri, final String userId, final String userSecret,
+            final String clientJwksUri, final String keyId, final String dnName, final String keyStoreFile,
+            final String keyStoreSecret, final String sectorIdentifierUri) throws Exception {
+        showTitle("tokenEndpointAuthMethodPrivateKeyJwtSigningAlgES384Fail5");
+
+        // 1. Register client
+        RegisterRequest registerRequest = new RegisterRequest(ApplicationType.WEB, "oxAuth test app",
+                StringUtils.spaceSeparatedToList(redirectUris));
+        registerRequest.setTokenEndpointAuthMethod(AuthenticationMethod.PRIVATE_KEY_JWT);
+        registerRequest.setTokenEndpointAuthSigningAlg(SignatureAlgorithm.ES384);
+        registerRequest.setJwksUri(clientJwksUri);
+        registerRequest.setSectorIdentifierUri(sectorIdentifierUri);
+
+        RegisterClient registerClient = new RegisterClient(registrationEndpoint);
+        registerClient.setRequest(registerRequest);
+        RegisterResponse registerResponse = registerClient.exec();
+
+        showClient(registerClient);
+        assertEquals(registerResponse.getStatus(), 200, "Unexpected response code: " + registerResponse.getEntity());
+        assertNotNull(registerResponse.getClientId());
+        assertNotNull(registerResponse.getClientSecret());
+        assertNotNull(registerResponse.getRegistrationAccessToken());
+        assertNotNull(registerResponse.getClientIdIssuedAt());
+        assertNotNull(registerResponse.getClientSecretExpiresAt());
+
+        String clientId = registerResponse.getClientId();
+        String registrationAccessToken = registerResponse.getRegistrationAccessToken();
+        String registrationClientUri = registerResponse.getRegistrationClientUri();
+
+        // 2. Client read
+        RegisterRequest readClientRequest = new RegisterRequest(registrationAccessToken);
+
+        RegisterClient readClient = new RegisterClient(registrationClientUri);
+        readClient.setRequest(readClientRequest);
+        RegisterResponse readClientResponse = readClient.exec();
+
+        showClient(readClient);
+        assertEquals(readClientResponse.getStatus(), 200, "Unexpected response code: " + readClientResponse.getEntity());
+        assertNotNull(readClientResponse.getClientId());
+        assertNotNull(readClientResponse.getClientSecret());
+        assertNotNull(readClientResponse.getClientIdIssuedAt());
+        assertNotNull(readClientResponse.getClientSecretExpiresAt());
+
+        assertTrue(readClientResponse.getClaims().containsKey(TOKEN_ENDPOINT_AUTH_METHOD.toString()));
+        assertEquals(readClientResponse.getClaims().get(TOKEN_ENDPOINT_AUTH_METHOD.toString()),
+                AuthenticationMethod.PRIVATE_KEY_JWT.toString());
+        assertTrue(readClientResponse.getClaims().containsKey(TOKEN_ENDPOINT_AUTH_SIGNING_ALG.toString()));
+        assertEquals(readClientResponse.getClaims().get(TOKEN_ENDPOINT_AUTH_SIGNING_ALG.toString()),
+                SignatureAlgorithm.ES384.toString());
+        assertNotNull(readClientResponse.getClaims().get(RESPONSE_TYPES.toString()));
+        assertNotNull(readClientResponse.getClaims().get(REDIRECT_URIS.toString()));
+        assertNotNull(readClientResponse.getClaims().get(APPLICATION_TYPE.toString()));
+        assertNotNull(readClientResponse.getClaims().get(CLIENT_NAME.toString()));
+        assertNotNull(readClientResponse.getClaims().get(ID_TOKEN_SIGNED_RESPONSE_ALG.toString()));
+        assertNotNull(readClientResponse.getClaims().get(SCOPE.toString()));
+
+        // 3. Request authorization
+        List<ResponseType> responseTypes = Arrays.asList(ResponseType.CODE);
+        List<String> scopes = Arrays.asList(
+                "openid",
+                "profile",
+                "address",
+                "email");
+        String state = UUID.randomUUID().toString();
+
+        AuthorizationRequest authorizationRequest = new AuthorizationRequest(responseTypes, clientId, scopes, redirectUri, null);
+        authorizationRequest.setState(state);
+
+        AuthorizationResponse authorizationResponse = authenticateResourceOwnerAndGrantAccess(
+                authorizationEndpoint, authorizationRequest, userId, userSecret);
+
+        assertNotNull(authorizationResponse.getLocation(), "The location is null");
+        assertNotNull(authorizationResponse.getCode(), "The authorization code is null");
+        assertNotNull(authorizationResponse.getState(), "The state is null");
+        assertNotNull(authorizationResponse.getScope(), "The scope is null");
+        assertNull(authorizationResponse.getIdToken(), "The id token is not null");
+
+        String authorizationCode = authorizationResponse.getCode();
+
+        // 4. Get Access Token
+        OxAuthCryptoProvider cryptoProvider = new OxAuthCryptoProvider(keyStoreFile, keyStoreSecret, dnName);
+
+        TokenRequest tokenRequest = new TokenRequest(GrantType.AUTHORIZATION_CODE);
+        tokenRequest.setAuthenticationMethod(AuthenticationMethod.PRIVATE_KEY_JWT);
+        tokenRequest.setAlgorithm(SignatureAlgorithm.ES512);
+        tokenRequest.setCryptoProvider(cryptoProvider);
+        tokenRequest.setKeyId(keyId);
+        tokenRequest.setAudience(tokenEndpoint);
+        tokenRequest.setCode(authorizationCode);
+        tokenRequest.setRedirectUri(redirectUri);
+        tokenRequest.setAuthUsername(clientId);
+
+        TokenClient tokenClient = new TokenClient(tokenEndpoint);
+        tokenClient.setRequest(tokenRequest);
+        TokenResponse tokenResponse = tokenClient.exec();
+
+        showClient(tokenClient);
+        assertEquals(tokenResponse.getStatus(), 401, "Unexpected response code: " + tokenResponse.getStatus());
+        assertNotNull(tokenResponse.getErrorType(), "The error type is null");
+        assertNotNull(tokenResponse.getErrorDescription(), "The error description is null");
+    }
+
+    @Parameters({"redirectUris", "redirectUri", "userId", "userSecret", "clientJwksUri", "ES512_keyId", "dnName",
+            "keyStoreFile", "keyStoreSecret", "sectorIdentifierUri"})
+    @Test
+    public void tokenEndpointAuthMethodPrivateKeyJwtSigningAlgES512(
+            final String redirectUris, final String redirectUri, final String userId, final String userSecret,
+            final String clientJwksUri, final String keyId, final String dnName, final String keyStoreFile,
+            final String keyStoreSecret, final String sectorIdentifierUri) throws Exception {
+        showTitle("tokenEndpointAuthMethodPrivateKeyJwtSigningAlgES512");
+
+        // 1. Register client
+        RegisterRequest registerRequest = new RegisterRequest(ApplicationType.WEB, "oxAuth test app",
+                StringUtils.spaceSeparatedToList(redirectUris));
+        registerRequest.setTokenEndpointAuthMethod(AuthenticationMethod.PRIVATE_KEY_JWT);
+        registerRequest.setTokenEndpointAuthSigningAlg(SignatureAlgorithm.ES512);
+        registerRequest.setJwksUri(clientJwksUri);
+        registerRequest.setSectorIdentifierUri(sectorIdentifierUri);
+
+        RegisterClient registerClient = new RegisterClient(registrationEndpoint);
+        registerClient.setRequest(registerRequest);
+        RegisterResponse registerResponse = registerClient.exec();
+
+        showClient(registerClient);
+        assertEquals(registerResponse.getStatus(), 200, "Unexpected response code: " + registerResponse.getEntity());
+        assertNotNull(registerResponse.getClientId());
+        assertNotNull(registerResponse.getClientSecret());
+        assertNotNull(registerResponse.getRegistrationAccessToken());
+        assertNotNull(registerResponse.getClientIdIssuedAt());
+        assertNotNull(registerResponse.getClientSecretExpiresAt());
+
+        String clientId = registerResponse.getClientId();
+        String registrationAccessToken = registerResponse.getRegistrationAccessToken();
+        String registrationClientUri = registerResponse.getRegistrationClientUri();
+
+        // 2. Client read
+        RegisterRequest readClientRequest = new RegisterRequest(registrationAccessToken);
+
+        RegisterClient readClient = new RegisterClient(registrationClientUri);
+        readClient.setRequest(readClientRequest);
+        RegisterResponse readClientResponse = readClient.exec();
+
+        showClient(readClient);
+        assertEquals(readClientResponse.getStatus(), 200, "Unexpected response code: " + readClientResponse.getEntity());
+        assertNotNull(readClientResponse.getClientId());
+        assertNotNull(readClientResponse.getClientSecret());
+        assertNotNull(readClientResponse.getClientIdIssuedAt());
+        assertNotNull(readClientResponse.getClientSecretExpiresAt());
+
+        assertTrue(readClientResponse.getClaims().containsKey(TOKEN_ENDPOINT_AUTH_METHOD.toString()));
+        assertEquals(readClientResponse.getClaims().get(TOKEN_ENDPOINT_AUTH_METHOD.toString()),
+                AuthenticationMethod.PRIVATE_KEY_JWT.toString());
+        assertTrue(readClientResponse.getClaims().containsKey(TOKEN_ENDPOINT_AUTH_SIGNING_ALG.toString()));
+        assertEquals(readClientResponse.getClaims().get(TOKEN_ENDPOINT_AUTH_SIGNING_ALG.toString()),
+                SignatureAlgorithm.ES512.toString());
+        assertNotNull(readClientResponse.getClaims().get(RESPONSE_TYPES.toString()));
+        assertNotNull(readClientResponse.getClaims().get(REDIRECT_URIS.toString()));
+        assertNotNull(readClientResponse.getClaims().get(APPLICATION_TYPE.toString()));
+        assertNotNull(readClientResponse.getClaims().get(CLIENT_NAME.toString()));
+        assertNotNull(readClientResponse.getClaims().get(ID_TOKEN_SIGNED_RESPONSE_ALG.toString()));
+        assertNotNull(readClientResponse.getClaims().get(SCOPE.toString()));
+
+        // 3. Request authorization
+        List<ResponseType> responseTypes = Arrays.asList(ResponseType.CODE);
+        List<String> scopes = Arrays.asList(
+                "openid",
+                "profile",
+                "address",
+                "email");
+        String state = UUID.randomUUID().toString();
+
+        AuthorizationRequest authorizationRequest = new AuthorizationRequest(responseTypes, clientId, scopes, redirectUri, null);
+        authorizationRequest.setState(state);
+
+        AuthorizationResponse authorizationResponse = authenticateResourceOwnerAndGrantAccess(
+                authorizationEndpoint, authorizationRequest, userId, userSecret);
+
+        assertNotNull(authorizationResponse.getLocation(), "The location is null");
+        assertNotNull(authorizationResponse.getCode(), "The authorization code is null");
+        assertNotNull(authorizationResponse.getState(), "The state is null");
+        assertNotNull(authorizationResponse.getScope(), "The scope is null");
+        assertNull(authorizationResponse.getIdToken(), "The id token is not null");
+
+        String authorizationCode = authorizationResponse.getCode();
+
+        // 4. Get Access Token
+        OxAuthCryptoProvider cryptoProvider = new OxAuthCryptoProvider(keyStoreFile, keyStoreSecret, dnName);
+
+        TokenRequest tokenRequest = new TokenRequest(GrantType.AUTHORIZATION_CODE);
+        tokenRequest.setAuthenticationMethod(AuthenticationMethod.PRIVATE_KEY_JWT);
+        tokenRequest.setAlgorithm(SignatureAlgorithm.ES512);
+        tokenRequest.setCryptoProvider(cryptoProvider);
+        tokenRequest.setKeyId(keyId);
+        tokenRequest.setAudience(tokenEndpoint);
+        tokenRequest.setCode(authorizationCode);
+        tokenRequest.setRedirectUri(redirectUri);
+        tokenRequest.setAuthUsername(clientId);
+
+        TokenClient tokenClient = new TokenClient(tokenEndpoint);
+        tokenClient.setRequest(tokenRequest);
+        TokenResponse tokenResponse = tokenClient.exec();
+
+        showClient(tokenClient);
+        assertEquals(tokenResponse.getStatus(), 200, "Unexpected response code: " + tokenResponse.getStatus());
+        assertNotNull(tokenResponse.getEntity(), "The entity is null");
+        assertNotNull(tokenResponse.getAccessToken(), "The access token is null");
+        assertNotNull(tokenResponse.getExpiresIn(), "The expires in value is null");
+        assertNotNull(tokenResponse.getTokenType(), "The token type is null");
+        assertNotNull(tokenResponse.getRefreshToken(), "The refresh token is null");
+    }
+
+    @Parameters({"redirectUris", "redirectUri", "userId", "userSecret", "clientJwksUri", "RS256_keyId", "dnName",
+            "keyStoreFile", "keyStoreSecret", "sectorIdentifierUri"})
+    @Test
+    public void tokenEndpointAuthMethodPrivateKeyJwtSigningAlgES512Fail1(
+            final String redirectUris, final String redirectUri, final String userId, final String userSecret,
+            final String clientJwksUri, final String keyId, final String dnName, final String keyStoreFile,
+            final String keyStoreSecret, final String sectorIdentifierUri) throws Exception {
+        showTitle("tokenEndpointAuthMethodPrivateKeyJwtSigningAlgES512Fail1");
+
+        // 1. Register client
+        RegisterRequest registerRequest = new RegisterRequest(ApplicationType.WEB, "oxAuth test app",
+                StringUtils.spaceSeparatedToList(redirectUris));
+        registerRequest.setTokenEndpointAuthMethod(AuthenticationMethod.PRIVATE_KEY_JWT);
+        registerRequest.setTokenEndpointAuthSigningAlg(SignatureAlgorithm.ES512);
+        registerRequest.setJwksUri(clientJwksUri);
+        registerRequest.setSectorIdentifierUri(sectorIdentifierUri);
+
+        RegisterClient registerClient = new RegisterClient(registrationEndpoint);
+        registerClient.setRequest(registerRequest);
+        RegisterResponse registerResponse = registerClient.exec();
+
+        showClient(registerClient);
+        assertEquals(registerResponse.getStatus(), 200, "Unexpected response code: " + registerResponse.getEntity());
+        assertNotNull(registerResponse.getClientId());
+        assertNotNull(registerResponse.getClientSecret());
+        assertNotNull(registerResponse.getRegistrationAccessToken());
+        assertNotNull(registerResponse.getClientIdIssuedAt());
+        assertNotNull(registerResponse.getClientSecretExpiresAt());
+
+        String clientId = registerResponse.getClientId();
+        String registrationAccessToken = registerResponse.getRegistrationAccessToken();
+        String registrationClientUri = registerResponse.getRegistrationClientUri();
+
+        // 2. Client read
+        RegisterRequest readClientRequest = new RegisterRequest(registrationAccessToken);
+
+        RegisterClient readClient = new RegisterClient(registrationClientUri);
+        readClient.setRequest(readClientRequest);
+        RegisterResponse readClientResponse = readClient.exec();
+
+        showClient(readClient);
+        assertEquals(readClientResponse.getStatus(), 200, "Unexpected response code: " + readClientResponse.getEntity());
+        assertNotNull(readClientResponse.getClientId());
+        assertNotNull(readClientResponse.getClientSecret());
+        assertNotNull(readClientResponse.getClientIdIssuedAt());
+        assertNotNull(readClientResponse.getClientSecretExpiresAt());
+
+        assertTrue(readClientResponse.getClaims().containsKey(TOKEN_ENDPOINT_AUTH_METHOD.toString()));
+        assertEquals(readClientResponse.getClaims().get(TOKEN_ENDPOINT_AUTH_METHOD.toString()),
+                AuthenticationMethod.PRIVATE_KEY_JWT.toString());
+        assertTrue(readClientResponse.getClaims().containsKey(TOKEN_ENDPOINT_AUTH_SIGNING_ALG.toString()));
+        assertEquals(readClientResponse.getClaims().get(TOKEN_ENDPOINT_AUTH_SIGNING_ALG.toString()),
+                SignatureAlgorithm.ES512.toString());
+        assertNotNull(readClientResponse.getClaims().get(RESPONSE_TYPES.toString()));
+        assertNotNull(readClientResponse.getClaims().get(REDIRECT_URIS.toString()));
+        assertNotNull(readClientResponse.getClaims().get(APPLICATION_TYPE.toString()));
+        assertNotNull(readClientResponse.getClaims().get(CLIENT_NAME.toString()));
+        assertNotNull(readClientResponse.getClaims().get(ID_TOKEN_SIGNED_RESPONSE_ALG.toString()));
+        assertNotNull(readClientResponse.getClaims().get(SCOPE.toString()));
+
+        // 3. Request authorization
+        List<ResponseType> responseTypes = Arrays.asList(ResponseType.CODE);
+        List<String> scopes = Arrays.asList(
+                "openid",
+                "profile",
+                "address",
+                "email");
+        String state = UUID.randomUUID().toString();
+
+        AuthorizationRequest authorizationRequest = new AuthorizationRequest(responseTypes, clientId, scopes, redirectUri, null);
+        authorizationRequest.setState(state);
+
+        AuthorizationResponse authorizationResponse = authenticateResourceOwnerAndGrantAccess(
+                authorizationEndpoint, authorizationRequest, userId, userSecret);
+
+        assertNotNull(authorizationResponse.getLocation(), "The location is null");
+        assertNotNull(authorizationResponse.getCode(), "The authorization code is null");
+        assertNotNull(authorizationResponse.getState(), "The state is null");
+        assertNotNull(authorizationResponse.getScope(), "The scope is null");
+        assertNull(authorizationResponse.getIdToken(), "The id token is not null");
+
+        String authorizationCode = authorizationResponse.getCode();
+
+        // 4. Get Access Token
+        OxAuthCryptoProvider cryptoProvider = new OxAuthCryptoProvider(keyStoreFile, keyStoreSecret, dnName);
+
+        TokenRequest tokenRequest = new TokenRequest(GrantType.AUTHORIZATION_CODE);
+        tokenRequest.setAuthenticationMethod(AuthenticationMethod.PRIVATE_KEY_JWT);
+        tokenRequest.setAlgorithm(SignatureAlgorithm.RS256);
+        tokenRequest.setCryptoProvider(cryptoProvider);
+        tokenRequest.setKeyId(keyId);
+        tokenRequest.setAudience(tokenEndpoint);
+        tokenRequest.setCode(authorizationCode);
+        tokenRequest.setRedirectUri(redirectUri);
+        tokenRequest.setAuthUsername(clientId);
+
+        TokenClient tokenClient = new TokenClient(tokenEndpoint);
+        tokenClient.setRequest(tokenRequest);
+        TokenResponse tokenResponse = tokenClient.exec();
+
+        showClient(tokenClient);
+        assertEquals(tokenResponse.getStatus(), 401, "Unexpected response code: " + tokenResponse.getStatus());
+        assertNotNull(tokenResponse.getErrorType(), "The error type is null");
+        assertNotNull(tokenResponse.getErrorDescription(), "The error description is null");
+    }
+
+    @Parameters({"redirectUris", "redirectUri", "userId", "userSecret", "clientJwksUri", "RS384_keyId", "dnName",
+            "keyStoreFile", "keyStoreSecret", "sectorIdentifierUri"})
+    @Test
+    public void tokenEndpointAuthMethodPrivateKeyJwtSigningAlgES512Fail2(
+            final String redirectUris, final String redirectUri, final String userId, final String userSecret,
+            final String clientJwksUri, final String keyId, final String dnName, final String keyStoreFile,
+            final String keyStoreSecret, final String sectorIdentifierUri) throws Exception {
+        showTitle("tokenEndpointAuthMethodPrivateKeyJwtSigningAlgES512Fail2");
+
+        // 1. Register client
+        RegisterRequest registerRequest = new RegisterRequest(ApplicationType.WEB, "oxAuth test app",
+                StringUtils.spaceSeparatedToList(redirectUris));
+        registerRequest.setTokenEndpointAuthMethod(AuthenticationMethod.PRIVATE_KEY_JWT);
+        registerRequest.setTokenEndpointAuthSigningAlg(SignatureAlgorithm.ES512);
+        registerRequest.setJwksUri(clientJwksUri);
+        registerRequest.setSectorIdentifierUri(sectorIdentifierUri);
+
+        RegisterClient registerClient = new RegisterClient(registrationEndpoint);
+        registerClient.setRequest(registerRequest);
+        RegisterResponse registerResponse = registerClient.exec();
+
+        showClient(registerClient);
+        assertEquals(registerResponse.getStatus(), 200, "Unexpected response code: " + registerResponse.getEntity());
+        assertNotNull(registerResponse.getClientId());
+        assertNotNull(registerResponse.getClientSecret());
+        assertNotNull(registerResponse.getRegistrationAccessToken());
+        assertNotNull(registerResponse.getClientIdIssuedAt());
+        assertNotNull(registerResponse.getClientSecretExpiresAt());
+
+        String clientId = registerResponse.getClientId();
+        String registrationAccessToken = registerResponse.getRegistrationAccessToken();
+        String registrationClientUri = registerResponse.getRegistrationClientUri();
+
+        // 2. Client read
+        RegisterRequest readClientRequest = new RegisterRequest(registrationAccessToken);
+
+        RegisterClient readClient = new RegisterClient(registrationClientUri);
+        readClient.setRequest(readClientRequest);
+        RegisterResponse readClientResponse = readClient.exec();
+
+        showClient(readClient);
+        assertEquals(readClientResponse.getStatus(), 200, "Unexpected response code: " + readClientResponse.getEntity());
+        assertNotNull(readClientResponse.getClientId());
+        assertNotNull(readClientResponse.getClientSecret());
+        assertNotNull(readClientResponse.getClientIdIssuedAt());
+        assertNotNull(readClientResponse.getClientSecretExpiresAt());
+
+        assertTrue(readClientResponse.getClaims().containsKey(TOKEN_ENDPOINT_AUTH_METHOD.toString()));
+        assertEquals(readClientResponse.getClaims().get(TOKEN_ENDPOINT_AUTH_METHOD.toString()),
+                AuthenticationMethod.PRIVATE_KEY_JWT.toString());
+        assertTrue(readClientResponse.getClaims().containsKey(TOKEN_ENDPOINT_AUTH_SIGNING_ALG.toString()));
+        assertEquals(readClientResponse.getClaims().get(TOKEN_ENDPOINT_AUTH_SIGNING_ALG.toString()),
+                SignatureAlgorithm.ES512.toString());
+        assertNotNull(readClientResponse.getClaims().get(RESPONSE_TYPES.toString()));
+        assertNotNull(readClientResponse.getClaims().get(REDIRECT_URIS.toString()));
+        assertNotNull(readClientResponse.getClaims().get(APPLICATION_TYPE.toString()));
+        assertNotNull(readClientResponse.getClaims().get(CLIENT_NAME.toString()));
+        assertNotNull(readClientResponse.getClaims().get(ID_TOKEN_SIGNED_RESPONSE_ALG.toString()));
+        assertNotNull(readClientResponse.getClaims().get(SCOPE.toString()));
+
+        // 3. Request authorization
+        List<ResponseType> responseTypes = Arrays.asList(ResponseType.CODE);
+        List<String> scopes = Arrays.asList(
+                "openid",
+                "profile",
+                "address",
+                "email");
+        String state = UUID.randomUUID().toString();
+
+        AuthorizationRequest authorizationRequest = new AuthorizationRequest(responseTypes, clientId, scopes, redirectUri, null);
+        authorizationRequest.setState(state);
+
+        AuthorizationResponse authorizationResponse = authenticateResourceOwnerAndGrantAccess(
+                authorizationEndpoint, authorizationRequest, userId, userSecret);
+
+        assertNotNull(authorizationResponse.getLocation(), "The location is null");
+        assertNotNull(authorizationResponse.getCode(), "The authorization code is null");
+        assertNotNull(authorizationResponse.getState(), "The state is null");
+        assertNotNull(authorizationResponse.getScope(), "The scope is null");
+        assertNull(authorizationResponse.getIdToken(), "The id token is not null");
+
+        String authorizationCode = authorizationResponse.getCode();
+
+        // 4. Get Access Token
+        OxAuthCryptoProvider cryptoProvider = new OxAuthCryptoProvider(keyStoreFile, keyStoreSecret, dnName);
+
+        TokenRequest tokenRequest = new TokenRequest(GrantType.AUTHORIZATION_CODE);
+        tokenRequest.setAuthenticationMethod(AuthenticationMethod.PRIVATE_KEY_JWT);
+        tokenRequest.setAlgorithm(SignatureAlgorithm.RS384);
+        tokenRequest.setCryptoProvider(cryptoProvider);
+        tokenRequest.setKeyId(keyId);
+        tokenRequest.setAudience(tokenEndpoint);
+        tokenRequest.setCode(authorizationCode);
+        tokenRequest.setRedirectUri(redirectUri);
+        tokenRequest.setAuthUsername(clientId);
+
+        TokenClient tokenClient = new TokenClient(tokenEndpoint);
+        tokenClient.setRequest(tokenRequest);
+        TokenResponse tokenResponse = tokenClient.exec();
+
+        showClient(tokenClient);
+        assertEquals(tokenResponse.getStatus(), 401, "Unexpected response code: " + tokenResponse.getStatus());
+        assertNotNull(tokenResponse.getErrorType(), "The error type is null");
+        assertNotNull(tokenResponse.getErrorDescription(), "The error description is null");
+    }
+
+    @Parameters({"redirectUris", "redirectUri", "userId", "userSecret", "clientJwksUri", "RS512_keyId", "dnName",
+            "keyStoreFile", "keyStoreSecret", "sectorIdentifierUri"})
+    @Test
+    public void tokenEndpointAuthMethodPrivateKeyJwtSigningAlgES512Fail3(
+            final String redirectUris, final String redirectUri, final String userId, final String userSecret,
+            final String clientJwksUri, final String keyId, final String dnName, final String keyStoreFile,
+            final String keyStoreSecret, final String sectorIdentifierUri) throws Exception {
+        showTitle("tokenEndpointAuthMethodPrivateKeyJwtSigningAlgES512Fail3");
+
+        // 1. Register client
+        RegisterRequest registerRequest = new RegisterRequest(ApplicationType.WEB, "oxAuth test app",
+                StringUtils.spaceSeparatedToList(redirectUris));
+        registerRequest.setTokenEndpointAuthMethod(AuthenticationMethod.PRIVATE_KEY_JWT);
+        registerRequest.setTokenEndpointAuthSigningAlg(SignatureAlgorithm.ES512);
+        registerRequest.setJwksUri(clientJwksUri);
+        registerRequest.setSectorIdentifierUri(sectorIdentifierUri);
+
+        RegisterClient registerClient = new RegisterClient(registrationEndpoint);
+        registerClient.setRequest(registerRequest);
+        RegisterResponse registerResponse = registerClient.exec();
+
+        showClient(registerClient);
+        assertEquals(registerResponse.getStatus(), 200, "Unexpected response code: " + registerResponse.getEntity());
+        assertNotNull(registerResponse.getClientId());
+        assertNotNull(registerResponse.getClientSecret());
+        assertNotNull(registerResponse.getRegistrationAccessToken());
+        assertNotNull(registerResponse.getClientIdIssuedAt());
+        assertNotNull(registerResponse.getClientSecretExpiresAt());
+
+        String clientId = registerResponse.getClientId();
+        String registrationAccessToken = registerResponse.getRegistrationAccessToken();
+        String registrationClientUri = registerResponse.getRegistrationClientUri();
+
+        // 2. Client read
+        RegisterRequest readClientRequest = new RegisterRequest(registrationAccessToken);
+
+        RegisterClient readClient = new RegisterClient(registrationClientUri);
+        readClient.setRequest(readClientRequest);
+        RegisterResponse readClientResponse = readClient.exec();
+
+        showClient(readClient);
+        assertEquals(readClientResponse.getStatus(), 200, "Unexpected response code: " + readClientResponse.getEntity());
+        assertNotNull(readClientResponse.getClientId());
+        assertNotNull(readClientResponse.getClientSecret());
+        assertNotNull(readClientResponse.getClientIdIssuedAt());
+        assertNotNull(readClientResponse.getClientSecretExpiresAt());
+
+        assertTrue(readClientResponse.getClaims().containsKey(TOKEN_ENDPOINT_AUTH_METHOD.toString()));
+        assertEquals(readClientResponse.getClaims().get(TOKEN_ENDPOINT_AUTH_METHOD.toString()),
+                AuthenticationMethod.PRIVATE_KEY_JWT.toString());
+        assertTrue(readClientResponse.getClaims().containsKey(TOKEN_ENDPOINT_AUTH_SIGNING_ALG.toString()));
+        assertEquals(readClientResponse.getClaims().get(TOKEN_ENDPOINT_AUTH_SIGNING_ALG.toString()),
+                SignatureAlgorithm.ES512.toString());
+        assertNotNull(readClientResponse.getClaims().get(RESPONSE_TYPES.toString()));
+        assertNotNull(readClientResponse.getClaims().get(REDIRECT_URIS.toString()));
+        assertNotNull(readClientResponse.getClaims().get(APPLICATION_TYPE.toString()));
+        assertNotNull(readClientResponse.getClaims().get(CLIENT_NAME.toString()));
+        assertNotNull(readClientResponse.getClaims().get(ID_TOKEN_SIGNED_RESPONSE_ALG.toString()));
+        assertNotNull(readClientResponse.getClaims().get(SCOPE.toString()));
+
+        // 3. Request authorization
+        List<ResponseType> responseTypes = Arrays.asList(ResponseType.CODE);
+        List<String> scopes = Arrays.asList(
+                "openid",
+                "profile",
+                "address",
+                "email");
+        String state = UUID.randomUUID().toString();
+
+        AuthorizationRequest authorizationRequest = new AuthorizationRequest(responseTypes, clientId, scopes, redirectUri, null);
+        authorizationRequest.setState(state);
+
+        AuthorizationResponse authorizationResponse = authenticateResourceOwnerAndGrantAccess(
+                authorizationEndpoint, authorizationRequest, userId, userSecret);
+
+        assertNotNull(authorizationResponse.getLocation(), "The location is null");
+        assertNotNull(authorizationResponse.getCode(), "The authorization code is null");
+        assertNotNull(authorizationResponse.getState(), "The state is null");
+        assertNotNull(authorizationResponse.getScope(), "The scope is null");
+        assertNull(authorizationResponse.getIdToken(), "The id token is not null");
+
+        String authorizationCode = authorizationResponse.getCode();
+
+        // 4. Get Access Token
+        OxAuthCryptoProvider cryptoProvider = new OxAuthCryptoProvider(keyStoreFile, keyStoreSecret, dnName);
+
+        TokenRequest tokenRequest = new TokenRequest(GrantType.AUTHORIZATION_CODE);
+        tokenRequest.setAuthenticationMethod(AuthenticationMethod.PRIVATE_KEY_JWT);
+        tokenRequest.setAlgorithm(SignatureAlgorithm.RS512);
+        tokenRequest.setCryptoProvider(cryptoProvider);
+        tokenRequest.setKeyId(keyId);
+        tokenRequest.setAudience(tokenEndpoint);
+        tokenRequest.setCode(authorizationCode);
+        tokenRequest.setRedirectUri(redirectUri);
+        tokenRequest.setAuthUsername(clientId);
+
+        TokenClient tokenClient = new TokenClient(tokenEndpoint);
+        tokenClient.setRequest(tokenRequest);
+        TokenResponse tokenResponse = tokenClient.exec();
+
+        showClient(tokenClient);
+        assertEquals(tokenResponse.getStatus(), 401, "Unexpected response code: " + tokenResponse.getStatus());
+        assertNotNull(tokenResponse.getErrorType(), "The error type is null");
+        assertNotNull(tokenResponse.getErrorDescription(), "The error description is null");
+    }
+
+    @Parameters({"redirectUris", "redirectUri", "userId", "userSecret", "clientJwksUri", "ES256_keyId", "dnName",
+            "keyStoreFile", "keyStoreSecret", "sectorIdentifierUri"})
+    @Test
+    public void tokenEndpointAuthMethodPrivateKeyJwtSigningAlgES512Fail4(
+            final String redirectUris, final String redirectUri, final String userId, final String userSecret,
+            final String clientJwksUri, final String keyId, final String dnName, final String keyStoreFile,
+            final String keyStoreSecret, final String sectorIdentifierUri) throws Exception {
+        showTitle("tokenEndpointAuthMethodPrivateKeyJwtSigningAlgES512Fail4");
+
+        // 1. Register client
+        RegisterRequest registerRequest = new RegisterRequest(ApplicationType.WEB, "oxAuth test app",
+                StringUtils.spaceSeparatedToList(redirectUris));
+        registerRequest.setTokenEndpointAuthMethod(AuthenticationMethod.PRIVATE_KEY_JWT);
+        registerRequest.setTokenEndpointAuthSigningAlg(SignatureAlgorithm.ES512);
+        registerRequest.setJwksUri(clientJwksUri);
+        registerRequest.setSectorIdentifierUri(sectorIdentifierUri);
+
+        RegisterClient registerClient = new RegisterClient(registrationEndpoint);
+        registerClient.setRequest(registerRequest);
+        RegisterResponse registerResponse = registerClient.exec();
+
+        showClient(registerClient);
+        assertEquals(registerResponse.getStatus(), 200, "Unexpected response code: " + registerResponse.getEntity());
+        assertNotNull(registerResponse.getClientId());
+        assertNotNull(registerResponse.getClientSecret());
+        assertNotNull(registerResponse.getRegistrationAccessToken());
+        assertNotNull(registerResponse.getClientIdIssuedAt());
+        assertNotNull(registerResponse.getClientSecretExpiresAt());
+
+        String clientId = registerResponse.getClientId();
+        String registrationAccessToken = registerResponse.getRegistrationAccessToken();
+        String registrationClientUri = registerResponse.getRegistrationClientUri();
+
+        // 2. Client read
+        RegisterRequest readClientRequest = new RegisterRequest(registrationAccessToken);
+
+        RegisterClient readClient = new RegisterClient(registrationClientUri);
+        readClient.setRequest(readClientRequest);
+        RegisterResponse readClientResponse = readClient.exec();
+
+        showClient(readClient);
+        assertEquals(readClientResponse.getStatus(), 200, "Unexpected response code: " + readClientResponse.getEntity());
+        assertNotNull(readClientResponse.getClientId());
+        assertNotNull(readClientResponse.getClientSecret());
+        assertNotNull(readClientResponse.getClientIdIssuedAt());
+        assertNotNull(readClientResponse.getClientSecretExpiresAt());
+
+        assertTrue(readClientResponse.getClaims().containsKey(TOKEN_ENDPOINT_AUTH_METHOD.toString()));
+        assertEquals(readClientResponse.getClaims().get(TOKEN_ENDPOINT_AUTH_METHOD.toString()),
+                AuthenticationMethod.PRIVATE_KEY_JWT.toString());
+        assertTrue(readClientResponse.getClaims().containsKey(TOKEN_ENDPOINT_AUTH_SIGNING_ALG.toString()));
+        assertEquals(readClientResponse.getClaims().get(TOKEN_ENDPOINT_AUTH_SIGNING_ALG.toString()),
+                SignatureAlgorithm.ES512.toString());
+        assertNotNull(readClientResponse.getClaims().get(RESPONSE_TYPES.toString()));
+        assertNotNull(readClientResponse.getClaims().get(REDIRECT_URIS.toString()));
+        assertNotNull(readClientResponse.getClaims().get(APPLICATION_TYPE.toString()));
+        assertNotNull(readClientResponse.getClaims().get(CLIENT_NAME.toString()));
+        assertNotNull(readClientResponse.getClaims().get(ID_TOKEN_SIGNED_RESPONSE_ALG.toString()));
+        assertNotNull(readClientResponse.getClaims().get(SCOPE.toString()));
+
+        // 3. Request authorization
+        List<ResponseType> responseTypes = Arrays.asList(ResponseType.CODE);
+        List<String> scopes = Arrays.asList(
+                "openid",
+                "profile",
+                "address",
+                "email");
+        String state = UUID.randomUUID().toString();
+
+        AuthorizationRequest authorizationRequest = new AuthorizationRequest(responseTypes, clientId, scopes, redirectUri, null);
+        authorizationRequest.setState(state);
+
+        AuthorizationResponse authorizationResponse = authenticateResourceOwnerAndGrantAccess(
+                authorizationEndpoint, authorizationRequest, userId, userSecret);
+
+        assertNotNull(authorizationResponse.getLocation(), "The location is null");
+        assertNotNull(authorizationResponse.getCode(), "The authorization code is null");
+        assertNotNull(authorizationResponse.getState(), "The state is null");
+        assertNotNull(authorizationResponse.getScope(), "The scope is null");
+        assertNull(authorizationResponse.getIdToken(), "The id token is not null");
+
+        String authorizationCode = authorizationResponse.getCode();
+
+        // 4. Get Access Token
+        OxAuthCryptoProvider cryptoProvider = new OxAuthCryptoProvider(keyStoreFile, keyStoreSecret, dnName);
+
+        TokenRequest tokenRequest = new TokenRequest(GrantType.AUTHORIZATION_CODE);
+        tokenRequest.setAuthenticationMethod(AuthenticationMethod.PRIVATE_KEY_JWT);
+        tokenRequest.setAlgorithm(SignatureAlgorithm.ES256);
+        tokenRequest.setCryptoProvider(cryptoProvider);
+        tokenRequest.setKeyId(keyId);
+        tokenRequest.setAudience(tokenEndpoint);
+        tokenRequest.setCode(authorizationCode);
+        tokenRequest.setRedirectUri(redirectUri);
+        tokenRequest.setAuthUsername(clientId);
+
+        TokenClient tokenClient = new TokenClient(tokenEndpoint);
+        tokenClient.setRequest(tokenRequest);
+        TokenResponse tokenResponse = tokenClient.exec();
+
+        showClient(tokenClient);
+        assertEquals(tokenResponse.getStatus(), 401, "Unexpected response code: " + tokenResponse.getStatus());
+        assertNotNull(tokenResponse.getErrorType(), "The error type is null");
+        assertNotNull(tokenResponse.getErrorDescription(), "The error description is null");
+    }
+
+    @Parameters({"redirectUris", "redirectUri", "userId", "userSecret", "clientJwksUri", "ES384_keyId", "dnName",
+            "keyStoreFile", "keyStoreSecret", "sectorIdentifierUri"})
+    @Test
+    public void tokenEndpointAuthMethodPrivateKeyJwtSigningAlgES512Fail5(
+            final String redirectUris, final String redirectUri, final String userId, final String userSecret,
+            final String clientJwksUri, final String keyId, final String dnName, final String keyStoreFile,
+            final String keyStoreSecret, final String sectorIdentifierUri) throws Exception {
+        showTitle("tokenEndpointAuthMethodPrivateKeyJwtSigningAlgES512Fail5");
+
+        // 1. Register client
+        RegisterRequest registerRequest = new RegisterRequest(ApplicationType.WEB, "oxAuth test app",
+                StringUtils.spaceSeparatedToList(redirectUris));
+        registerRequest.setTokenEndpointAuthMethod(AuthenticationMethod.PRIVATE_KEY_JWT);
+        registerRequest.setTokenEndpointAuthSigningAlg(SignatureAlgorithm.ES512);
+        registerRequest.setJwksUri(clientJwksUri);
+        registerRequest.setSectorIdentifierUri(sectorIdentifierUri);
+
+        RegisterClient registerClient = new RegisterClient(registrationEndpoint);
+        registerClient.setRequest(registerRequest);
+        RegisterResponse registerResponse = registerClient.exec();
+
+        showClient(registerClient);
+        assertEquals(registerResponse.getStatus(), 200, "Unexpected response code: " + registerResponse.getEntity());
+        assertNotNull(registerResponse.getClientId());
+        assertNotNull(registerResponse.getClientSecret());
+        assertNotNull(registerResponse.getRegistrationAccessToken());
+        assertNotNull(registerResponse.getClientIdIssuedAt());
+        assertNotNull(registerResponse.getClientSecretExpiresAt());
+
+        String clientId = registerResponse.getClientId();
+        String registrationAccessToken = registerResponse.getRegistrationAccessToken();
+        String registrationClientUri = registerResponse.getRegistrationClientUri();
+
+        // 2. Client read
+        RegisterRequest readClientRequest = new RegisterRequest(registrationAccessToken);
+
+        RegisterClient readClient = new RegisterClient(registrationClientUri);
+        readClient.setRequest(readClientRequest);
+        RegisterResponse readClientResponse = readClient.exec();
+
+        showClient(readClient);
+        assertEquals(readClientResponse.getStatus(), 200, "Unexpected response code: " + readClientResponse.getEntity());
+        assertNotNull(readClientResponse.getClientId());
+        assertNotNull(readClientResponse.getClientSecret());
+        assertNotNull(readClientResponse.getClientIdIssuedAt());
+        assertNotNull(readClientResponse.getClientSecretExpiresAt());
+
+        assertTrue(readClientResponse.getClaims().containsKey(TOKEN_ENDPOINT_AUTH_METHOD.toString()));
+        assertEquals(readClientResponse.getClaims().get(TOKEN_ENDPOINT_AUTH_METHOD.toString()),
+                AuthenticationMethod.PRIVATE_KEY_JWT.toString());
+        assertTrue(readClientResponse.getClaims().containsKey(TOKEN_ENDPOINT_AUTH_SIGNING_ALG.toString()));
+        assertEquals(readClientResponse.getClaims().get(TOKEN_ENDPOINT_AUTH_SIGNING_ALG.toString()),
+                SignatureAlgorithm.ES512.toString());
+        assertNotNull(readClientResponse.getClaims().get(RESPONSE_TYPES.toString()));
+        assertNotNull(readClientResponse.getClaims().get(REDIRECT_URIS.toString()));
+        assertNotNull(readClientResponse.getClaims().get(APPLICATION_TYPE.toString()));
+        assertNotNull(readClientResponse.getClaims().get(CLIENT_NAME.toString()));
+        assertNotNull(readClientResponse.getClaims().get(ID_TOKEN_SIGNED_RESPONSE_ALG.toString()));
+        assertNotNull(readClientResponse.getClaims().get(SCOPE.toString()));
+
+        // 3. Request authorization
+        List<ResponseType> responseTypes = Arrays.asList(ResponseType.CODE);
+        List<String> scopes = Arrays.asList(
+                "openid",
+                "profile",
+                "address",
+                "email");
+        String state = UUID.randomUUID().toString();
+
+        AuthorizationRequest authorizationRequest = new AuthorizationRequest(responseTypes, clientId, scopes, redirectUri, null);
+        authorizationRequest.setState(state);
+
+        AuthorizationResponse authorizationResponse = authenticateResourceOwnerAndGrantAccess(
+                authorizationEndpoint, authorizationRequest, userId, userSecret);
+
+        assertNotNull(authorizationResponse.getLocation(), "The location is null");
+        assertNotNull(authorizationResponse.getCode(), "The authorization code is null");
+        assertNotNull(authorizationResponse.getState(), "The state is null");
+        assertNotNull(authorizationResponse.getScope(), "The scope is null");
+        assertNull(authorizationResponse.getIdToken(), "The id token is not null");
+
+        String authorizationCode = authorizationResponse.getCode();
+
+        // 4. Get Access Token
+        OxAuthCryptoProvider cryptoProvider = new OxAuthCryptoProvider(keyStoreFile, keyStoreSecret, dnName);
+
+        TokenRequest tokenRequest = new TokenRequest(GrantType.AUTHORIZATION_CODE);
+        tokenRequest.setAuthenticationMethod(AuthenticationMethod.PRIVATE_KEY_JWT);
+        tokenRequest.setAlgorithm(SignatureAlgorithm.ES384);
+        tokenRequest.setCryptoProvider(cryptoProvider);
+        tokenRequest.setKeyId(keyId);
+        tokenRequest.setAudience(tokenEndpoint);
+        tokenRequest.setCode(authorizationCode);
+        tokenRequest.setRedirectUri(redirectUri);
+        tokenRequest.setAuthUsername(clientId);
+
+        TokenClient tokenClient = new TokenClient(tokenEndpoint);
+        tokenClient.setRequest(tokenRequest);
+        TokenResponse tokenResponse = tokenClient.exec();
+
+        showClient(tokenClient);
+        assertEquals(tokenResponse.getStatus(), 401, "Unexpected response code: " + tokenResponse.getStatus());
+        assertNotNull(tokenResponse.getErrorType(), "The error type is null");
+        assertNotNull(tokenResponse.getErrorDescription(), "The error description is null");
+    }
+
+    @Parameters({"redirectUris", "redirectUri", "userId", "userSecret", "clientJwksUri", "PS256_keyId", "dnName",
+            "keyStoreFile", "keyStoreSecret", "sectorIdentifierUri"})
+    @Test
+    public void tokenEndpointAuthMethodPrivateKeyJwtSigningAlgPS256(
+            final String redirectUris, final String redirectUri, final String userId, final String userSecret,
+            final String clientJwksUri, final String keyId, final String dnName, final String keyStoreFile,
+            final String keyStoreSecret, final String sectorIdentifierUri) throws Exception {
+        showTitle("tokenEndpointAuthMethodPrivateKeyJwtSigningAlgPS256");
+
+        // 1. Register client
+        RegisterRequest registerRequest = new RegisterRequest(ApplicationType.WEB, "oxAuth test app",
+                StringUtils.spaceSeparatedToList(redirectUris));
+        registerRequest.setTokenEndpointAuthMethod(AuthenticationMethod.PRIVATE_KEY_JWT);
+        registerRequest.setTokenEndpointAuthSigningAlg(SignatureAlgorithm.PS256);
+        registerRequest.setJwksUri(clientJwksUri);
+        registerRequest.setSectorIdentifierUri(sectorIdentifierUri);
+
+        RegisterClient registerClient = new RegisterClient(registrationEndpoint);
+        registerClient.setRequest(registerRequest);
+        RegisterResponse registerResponse = registerClient.exec();
+
+        showClient(registerClient);
+        assertEquals(registerResponse.getStatus(), 200, "Unexpected response code: " + registerResponse.getEntity());
+        assertNotNull(registerResponse.getClientId());
+        assertNotNull(registerResponse.getClientSecret());
+        assertNotNull(registerResponse.getRegistrationAccessToken());
+        assertNotNull(registerResponse.getClientIdIssuedAt());
+        assertNotNull(registerResponse.getClientSecretExpiresAt());
+
+        String clientId = registerResponse.getClientId();
+        String registrationAccessToken = registerResponse.getRegistrationAccessToken();
+        String registrationClientUri = registerResponse.getRegistrationClientUri();
+
+        // 2. Client read
+        RegisterRequest readClientRequest = new RegisterRequest(registrationAccessToken);
+
+        RegisterClient readClient = new RegisterClient(registrationClientUri);
+        readClient.setRequest(readClientRequest);
+        RegisterResponse readClientResponse = readClient.exec();
+
+        showClient(readClient);
+        assertEquals(readClientResponse.getStatus(), 200, "Unexpected response code: " + readClientResponse.getEntity());
+        assertNotNull(readClientResponse.getClientId());
+        assertNotNull(readClientResponse.getClientSecret());
+        assertNotNull(readClientResponse.getClientIdIssuedAt());
+        assertNotNull(readClientResponse.getClientSecretExpiresAt());
+
+        assertTrue(readClientResponse.getClaims().containsKey(TOKEN_ENDPOINT_AUTH_METHOD.toString()));
+        assertEquals(readClientResponse.getClaims().get(TOKEN_ENDPOINT_AUTH_METHOD.toString()),
+                AuthenticationMethod.PRIVATE_KEY_JWT.toString());
+        assertTrue(readClientResponse.getClaims().containsKey(TOKEN_ENDPOINT_AUTH_SIGNING_ALG.toString()));
+        assertEquals(readClientResponse.getClaims().get(TOKEN_ENDPOINT_AUTH_SIGNING_ALG.toString()),
+                SignatureAlgorithm.PS256.toString());
+        assertNotNull(readClientResponse.getClaims().get(RESPONSE_TYPES.toString()));
+        assertNotNull(readClientResponse.getClaims().get(REDIRECT_URIS.toString()));
+        assertNotNull(readClientResponse.getClaims().get(APPLICATION_TYPE.toString()));
+        assertNotNull(readClientResponse.getClaims().get(CLIENT_NAME.toString()));
+        assertNotNull(readClientResponse.getClaims().get(ID_TOKEN_SIGNED_RESPONSE_ALG.toString()));
+        assertNotNull(readClientResponse.getClaims().get(SCOPE.toString()));
+
+        // 3. Request authorization
+        List<ResponseType> responseTypes = Arrays.asList(ResponseType.CODE);
+        List<String> scopes = Arrays.asList(
+                "openid",
+                "profile",
+                "address",
+                "email");
+        String state = UUID.randomUUID().toString();
+
+        AuthorizationRequest authorizationRequest = new AuthorizationRequest(responseTypes, clientId, scopes, redirectUri, null);
+        authorizationRequest.setState(state);
+
+        AuthorizationResponse authorizationResponse = authenticateResourceOwnerAndGrantAccess(
+                authorizationEndpoint, authorizationRequest, userId, userSecret);
+
+        assertNotNull(authorizationResponse.getLocation(), "The location is null");
+        assertNotNull(authorizationResponse.getCode(), "The authorization code is null");
+        assertNotNull(authorizationResponse.getState(), "The state is null");
+        assertNotNull(authorizationResponse.getScope(), "The scope is null");
+        assertNull(authorizationResponse.getIdToken(), "The id token is not null");
+
+        String authorizationCode = authorizationResponse.getCode();
+
+        // 4. Get Access Token
+        OxAuthCryptoProvider cryptoProvider = new OxAuthCryptoProvider(keyStoreFile, keyStoreSecret, dnName);
+
+        TokenRequest tokenRequest = new TokenRequest(GrantType.AUTHORIZATION_CODE);
+        tokenRequest.setAuthenticationMethod(AuthenticationMethod.PRIVATE_KEY_JWT);
+        tokenRequest.setAlgorithm(SignatureAlgorithm.PS256);
+        tokenRequest.setCryptoProvider(cryptoProvider);
+        tokenRequest.setKeyId(keyId);
+        tokenRequest.setAudience(tokenEndpoint);
+        tokenRequest.setCode(authorizationCode);
+        tokenRequest.setRedirectUri(redirectUri);
+        tokenRequest.setAuthUsername(clientId);
+
+        TokenClient tokenClient = new TokenClient(tokenEndpoint);
+        tokenClient.setRequest(tokenRequest);
+        TokenResponse tokenResponse = tokenClient.exec();
+
+        showClient(tokenClient);
+        assertEquals(tokenResponse.getStatus(), 200, "Unexpected response code: " + tokenResponse.getStatus());
+        assertNotNull(tokenResponse.getEntity(), "The entity is null");
+        assertNotNull(tokenResponse.getAccessToken(), "The access token is null");
+        assertNotNull(tokenResponse.getExpiresIn(), "The expires in value is null");
+        assertNotNull(tokenResponse.getTokenType(), "The token type is null");
+        assertNotNull(tokenResponse.getRefreshToken(), "The refresh token is null");
+    }
+
+    @Parameters({"redirectUris", "redirectUri", "userId", "userSecret", "clientJwksUri", "PS384_keyId", "dnName",
+            "keyStoreFile", "keyStoreSecret", "sectorIdentifierUri"})
+    @Test
+    public void tokenEndpointAuthMethodPrivateKeyJwtSigningAlgPS256Fail1(
+            final String redirectUris, final String redirectUri, final String userId, final String userSecret,
+            final String clientJwksUri, final String keyId, final String dnName, final String keyStoreFile,
+            final String keyStoreSecret, final String sectorIdentifierUri) throws Exception {
+        showTitle("tokenEndpointAuthMethodPrivateKeyJwtSigningAlgPS256Fail1");
+
+        // 1. Register client
+        RegisterRequest registerRequest = new RegisterRequest(ApplicationType.WEB, "oxAuth test app",
+                StringUtils.spaceSeparatedToList(redirectUris));
+        registerRequest.setTokenEndpointAuthMethod(AuthenticationMethod.PRIVATE_KEY_JWT);
+        registerRequest.setTokenEndpointAuthSigningAlg(SignatureAlgorithm.PS256);
+        registerRequest.setJwksUri(clientJwksUri);
+        registerRequest.setSectorIdentifierUri(sectorIdentifierUri);
+
+        RegisterClient registerClient = new RegisterClient(registrationEndpoint);
+        registerClient.setRequest(registerRequest);
+        RegisterResponse registerResponse = registerClient.exec();
+
+        showClient(registerClient);
+        assertEquals(registerResponse.getStatus(), 200, "Unexpected response code: " + registerResponse.getEntity());
+        assertNotNull(registerResponse.getClientId());
+        assertNotNull(registerResponse.getClientSecret());
+        assertNotNull(registerResponse.getRegistrationAccessToken());
+        assertNotNull(registerResponse.getClientIdIssuedAt());
+        assertNotNull(registerResponse.getClientSecretExpiresAt());
+
+        String clientId = registerResponse.getClientId();
+        String registrationAccessToken = registerResponse.getRegistrationAccessToken();
+        String registrationClientUri = registerResponse.getRegistrationClientUri();
+
+        // 2. Client read
+        RegisterRequest readClientRequest = new RegisterRequest(registrationAccessToken);
+
+        RegisterClient readClient = new RegisterClient(registrationClientUri);
+        readClient.setRequest(readClientRequest);
+        RegisterResponse readClientResponse = readClient.exec();
+
+        showClient(readClient);
+        assertEquals(readClientResponse.getStatus(), 200, "Unexpected response code: " + readClientResponse.getEntity());
+        assertNotNull(readClientResponse.getClientId());
+        assertNotNull(readClientResponse.getClientSecret());
+        assertNotNull(readClientResponse.getClientIdIssuedAt());
+        assertNotNull(readClientResponse.getClientSecretExpiresAt());
+
+        assertTrue(readClientResponse.getClaims().containsKey(TOKEN_ENDPOINT_AUTH_METHOD.toString()));
+        assertEquals(readClientResponse.getClaims().get(TOKEN_ENDPOINT_AUTH_METHOD.toString()),
+                AuthenticationMethod.PRIVATE_KEY_JWT.toString());
+        assertTrue(readClientResponse.getClaims().containsKey(TOKEN_ENDPOINT_AUTH_SIGNING_ALG.toString()));
+        assertEquals(readClientResponse.getClaims().get(TOKEN_ENDPOINT_AUTH_SIGNING_ALG.toString()),
+                SignatureAlgorithm.PS256.toString());
+        assertNotNull(readClientResponse.getClaims().get(RESPONSE_TYPES.toString()));
+        assertNotNull(readClientResponse.getClaims().get(REDIRECT_URIS.toString()));
+        assertNotNull(readClientResponse.getClaims().get(APPLICATION_TYPE.toString()));
+        assertNotNull(readClientResponse.getClaims().get(CLIENT_NAME.toString()));
+        assertNotNull(readClientResponse.getClaims().get(ID_TOKEN_SIGNED_RESPONSE_ALG.toString()));
+        assertNotNull(readClientResponse.getClaims().get(SCOPE.toString()));
+
+        // 3. Request authorization
+        List<ResponseType> responseTypes = Arrays.asList(ResponseType.CODE);
+        List<String> scopes = Arrays.asList(
+                "openid",
+                "profile",
+                "address",
+                "email");
+        String state = UUID.randomUUID().toString();
+
+        AuthorizationRequest authorizationRequest = new AuthorizationRequest(responseTypes, clientId, scopes, redirectUri, null);
+        authorizationRequest.setState(state);
+
+        AuthorizationResponse authorizationResponse = authenticateResourceOwnerAndGrantAccess(
+                authorizationEndpoint, authorizationRequest, userId, userSecret);
+
+        assertNotNull(authorizationResponse.getLocation(), "The location is null");
+        assertNotNull(authorizationResponse.getCode(), "The authorization code is null");
+        assertNotNull(authorizationResponse.getState(), "The state is null");
+        assertNotNull(authorizationResponse.getScope(), "The scope is null");
+        assertNull(authorizationResponse.getIdToken(), "The id token is not null");
+
+        String authorizationCode = authorizationResponse.getCode();
+
+        // 4. Get Access Token
+        OxAuthCryptoProvider cryptoProvider = new OxAuthCryptoProvider(keyStoreFile, keyStoreSecret, dnName);
+
+        TokenRequest tokenRequest = new TokenRequest(GrantType.AUTHORIZATION_CODE);
+        tokenRequest.setAuthenticationMethod(AuthenticationMethod.PRIVATE_KEY_JWT);
+        tokenRequest.setAlgorithm(SignatureAlgorithm.PS384);
+        tokenRequest.setCryptoProvider(cryptoProvider);
+        tokenRequest.setKeyId(keyId);
+        tokenRequest.setAudience(tokenEndpoint);
+        tokenRequest.setCode(authorizationCode);
+        tokenRequest.setRedirectUri(redirectUri);
+        tokenRequest.setAuthUsername(clientId);
+
+        TokenClient tokenClient = new TokenClient(tokenEndpoint);
+        tokenClient.setRequest(tokenRequest);
+        TokenResponse tokenResponse = tokenClient.exec();
+
+        showClient(tokenClient);
+        assertEquals(tokenResponse.getStatus(), 401, "Unexpected response code: " + tokenResponse.getStatus());
+        assertNotNull(tokenResponse.getErrorType(), "The error type is null");
+        assertNotNull(tokenResponse.getErrorDescription(), "The error description is null");
+    }
+
+    @Parameters({"redirectUris", "redirectUri", "userId", "userSecret", "clientJwksUri", "PS512_keyId", "dnName",
+            "keyStoreFile", "keyStoreSecret", "sectorIdentifierUri"})
+    @Test
+    public void tokenEndpointAuthMethodPrivateKeyJwtSigningAlgPS256Fail2(
+            final String redirectUris, final String redirectUri, final String userId, final String userSecret,
+            final String clientJwksUri, final String keyId, final String dnName, final String keyStoreFile,
+            final String keyStoreSecret, final String sectorIdentifierUri) throws Exception {
+        showTitle("tokenEndpointAuthMethodPrivateKeyJwtSigningAlgPS256Fail2");
+
+        // 1. Register client
+        RegisterRequest registerRequest = new RegisterRequest(ApplicationType.WEB, "oxAuth test app",
+                StringUtils.spaceSeparatedToList(redirectUris));
+        registerRequest.setTokenEndpointAuthMethod(AuthenticationMethod.PRIVATE_KEY_JWT);
+        registerRequest.setTokenEndpointAuthSigningAlg(SignatureAlgorithm.PS256);
+        registerRequest.setJwksUri(clientJwksUri);
+        registerRequest.setSectorIdentifierUri(sectorIdentifierUri);
+
+        RegisterClient registerClient = new RegisterClient(registrationEndpoint);
+        registerClient.setRequest(registerRequest);
+        RegisterResponse registerResponse = registerClient.exec();
+
+        showClient(registerClient);
+        assertEquals(registerResponse.getStatus(), 200, "Unexpected response code: " + registerResponse.getEntity());
+        assertNotNull(registerResponse.getClientId());
+        assertNotNull(registerResponse.getClientSecret());
+        assertNotNull(registerResponse.getRegistrationAccessToken());
+        assertNotNull(registerResponse.getClientIdIssuedAt());
+        assertNotNull(registerResponse.getClientSecretExpiresAt());
+
+        String clientId = registerResponse.getClientId();
+        String registrationAccessToken = registerResponse.getRegistrationAccessToken();
+        String registrationClientUri = registerResponse.getRegistrationClientUri();
+
+        // 2. Client read
+        RegisterRequest readClientRequest = new RegisterRequest(registrationAccessToken);
+
+        RegisterClient readClient = new RegisterClient(registrationClientUri);
+        readClient.setRequest(readClientRequest);
+        RegisterResponse readClientResponse = readClient.exec();
+
+        showClient(readClient);
+        assertEquals(readClientResponse.getStatus(), 200, "Unexpected response code: " + readClientResponse.getEntity());
+        assertNotNull(readClientResponse.getClientId());
+        assertNotNull(readClientResponse.getClientSecret());
+        assertNotNull(readClientResponse.getClientIdIssuedAt());
+        assertNotNull(readClientResponse.getClientSecretExpiresAt());
+
+        assertTrue(readClientResponse.getClaims().containsKey(TOKEN_ENDPOINT_AUTH_METHOD.toString()));
+        assertEquals(readClientResponse.getClaims().get(TOKEN_ENDPOINT_AUTH_METHOD.toString()),
+                AuthenticationMethod.PRIVATE_KEY_JWT.toString());
+        assertTrue(readClientResponse.getClaims().containsKey(TOKEN_ENDPOINT_AUTH_SIGNING_ALG.toString()));
+        assertEquals(readClientResponse.getClaims().get(TOKEN_ENDPOINT_AUTH_SIGNING_ALG.toString()),
+                SignatureAlgorithm.PS256.toString());
+        assertNotNull(readClientResponse.getClaims().get(RESPONSE_TYPES.toString()));
+        assertNotNull(readClientResponse.getClaims().get(REDIRECT_URIS.toString()));
+        assertNotNull(readClientResponse.getClaims().get(APPLICATION_TYPE.toString()));
+        assertNotNull(readClientResponse.getClaims().get(CLIENT_NAME.toString()));
+        assertNotNull(readClientResponse.getClaims().get(ID_TOKEN_SIGNED_RESPONSE_ALG.toString()));
+        assertNotNull(readClientResponse.getClaims().get(SCOPE.toString()));
+
+        // 3. Request authorization
+        List<ResponseType> responseTypes = Arrays.asList(ResponseType.CODE);
+        List<String> scopes = Arrays.asList(
+                "openid",
+                "profile",
+                "address",
+                "email");
+        String state = UUID.randomUUID().toString();
+
+        AuthorizationRequest authorizationRequest = new AuthorizationRequest(responseTypes, clientId, scopes, redirectUri, null);
+        authorizationRequest.setState(state);
+
+        AuthorizationResponse authorizationResponse = authenticateResourceOwnerAndGrantAccess(
+                authorizationEndpoint, authorizationRequest, userId, userSecret);
+
+        assertNotNull(authorizationResponse.getLocation(), "The location is null");
+        assertNotNull(authorizationResponse.getCode(), "The authorization code is null");
+        assertNotNull(authorizationResponse.getState(), "The state is null");
+        assertNotNull(authorizationResponse.getScope(), "The scope is null");
+        assertNull(authorizationResponse.getIdToken(), "The id token is not null");
+
+        String authorizationCode = authorizationResponse.getCode();
+
+        // 4. Get Access Token
+        OxAuthCryptoProvider cryptoProvider = new OxAuthCryptoProvider(keyStoreFile, keyStoreSecret, dnName);
+
+        TokenRequest tokenRequest = new TokenRequest(GrantType.AUTHORIZATION_CODE);
+        tokenRequest.setAuthenticationMethod(AuthenticationMethod.PRIVATE_KEY_JWT);
+        tokenRequest.setAlgorithm(SignatureAlgorithm.PS512);
+        tokenRequest.setCryptoProvider(cryptoProvider);
+        tokenRequest.setKeyId(keyId);
+        tokenRequest.setAudience(tokenEndpoint);
+        tokenRequest.setCode(authorizationCode);
+        tokenRequest.setRedirectUri(redirectUri);
+        tokenRequest.setAuthUsername(clientId);
+
+        TokenClient tokenClient = new TokenClient(tokenEndpoint);
+        tokenClient.setRequest(tokenRequest);
+        TokenResponse tokenResponse = tokenClient.exec();
+
+        showClient(tokenClient);
+        assertEquals(tokenResponse.getStatus(), 401, "Unexpected response code: " + tokenResponse.getStatus());
+        assertNotNull(tokenResponse.getErrorType(), "The error type is null");
+        assertNotNull(tokenResponse.getErrorDescription(), "The error description is null");
+    }
+
+    @Parameters({"redirectUris", "redirectUri", "userId", "userSecret", "clientJwksUri", "ES256_keyId", "dnName",
+            "keyStoreFile", "keyStoreSecret", "sectorIdentifierUri"})
+    @Test
+    public void tokenEndpointAuthMethodPrivateKeyJwtSigningAlgPS256Fail3(
+            final String redirectUris, final String redirectUri, final String userId, final String userSecret,
+            final String clientJwksUri, final String keyId, final String dnName, final String keyStoreFile,
+            final String keyStoreSecret, final String sectorIdentifierUri) throws Exception {
+        showTitle("tokenEndpointAuthMethodPrivateKeyJwtSigningAlgPS256Fail3");
+
+        // 1. Register client
+        RegisterRequest registerRequest = new RegisterRequest(ApplicationType.WEB, "oxAuth test app",
+                StringUtils.spaceSeparatedToList(redirectUris));
+        registerRequest.setTokenEndpointAuthMethod(AuthenticationMethod.PRIVATE_KEY_JWT);
+        registerRequest.setTokenEndpointAuthSigningAlg(SignatureAlgorithm.PS256);
+        registerRequest.setJwksUri(clientJwksUri);
+        registerRequest.setSectorIdentifierUri(sectorIdentifierUri);
+
+        RegisterClient registerClient = new RegisterClient(registrationEndpoint);
+        registerClient.setRequest(registerRequest);
+        RegisterResponse registerResponse = registerClient.exec();
+
+        showClient(registerClient);
+        assertEquals(registerResponse.getStatus(), 200, "Unexpected response code: " + registerResponse.getEntity());
+        assertNotNull(registerResponse.getClientId());
+        assertNotNull(registerResponse.getClientSecret());
+        assertNotNull(registerResponse.getRegistrationAccessToken());
+        assertNotNull(registerResponse.getClientIdIssuedAt());
+        assertNotNull(registerResponse.getClientSecretExpiresAt());
+
+        String clientId = registerResponse.getClientId();
+        String registrationAccessToken = registerResponse.getRegistrationAccessToken();
+        String registrationClientUri = registerResponse.getRegistrationClientUri();
+
+        // 2. Client read
+        RegisterRequest readClientRequest = new RegisterRequest(registrationAccessToken);
+
+        RegisterClient readClient = new RegisterClient(registrationClientUri);
+        readClient.setRequest(readClientRequest);
+        RegisterResponse readClientResponse = readClient.exec();
+
+        showClient(readClient);
+        assertEquals(readClientResponse.getStatus(), 200, "Unexpected response code: " + readClientResponse.getEntity());
+        assertNotNull(readClientResponse.getClientId());
+        assertNotNull(readClientResponse.getClientSecret());
+        assertNotNull(readClientResponse.getClientIdIssuedAt());
+        assertNotNull(readClientResponse.getClientSecretExpiresAt());
+
+        assertTrue(readClientResponse.getClaims().containsKey(TOKEN_ENDPOINT_AUTH_METHOD.toString()));
+        assertEquals(readClientResponse.getClaims().get(TOKEN_ENDPOINT_AUTH_METHOD.toString()),
+                AuthenticationMethod.PRIVATE_KEY_JWT.toString());
+        assertTrue(readClientResponse.getClaims().containsKey(TOKEN_ENDPOINT_AUTH_SIGNING_ALG.toString()));
+        assertEquals(readClientResponse.getClaims().get(TOKEN_ENDPOINT_AUTH_SIGNING_ALG.toString()),
+                SignatureAlgorithm.PS256.toString());
+        assertNotNull(readClientResponse.getClaims().get(RESPONSE_TYPES.toString()));
+        assertNotNull(readClientResponse.getClaims().get(REDIRECT_URIS.toString()));
+        assertNotNull(readClientResponse.getClaims().get(APPLICATION_TYPE.toString()));
+        assertNotNull(readClientResponse.getClaims().get(CLIENT_NAME.toString()));
+        assertNotNull(readClientResponse.getClaims().get(ID_TOKEN_SIGNED_RESPONSE_ALG.toString()));
+        assertNotNull(readClientResponse.getClaims().get(SCOPE.toString()));
+
+        // 3. Request authorization
+        List<ResponseType> responseTypes = Arrays.asList(ResponseType.CODE);
+        List<String> scopes = Arrays.asList(
+                "openid",
+                "profile",
+                "address",
+                "email");
+        String state = UUID.randomUUID().toString();
+
+        AuthorizationRequest authorizationRequest = new AuthorizationRequest(responseTypes, clientId, scopes, redirectUri, null);
+        authorizationRequest.setState(state);
+
+        AuthorizationResponse authorizationResponse = authenticateResourceOwnerAndGrantAccess(
+                authorizationEndpoint, authorizationRequest, userId, userSecret);
+
+        assertNotNull(authorizationResponse.getLocation(), "The location is null");
+        assertNotNull(authorizationResponse.getCode(), "The authorization code is null");
+        assertNotNull(authorizationResponse.getState(), "The state is null");
+        assertNotNull(authorizationResponse.getScope(), "The scope is null");
+        assertNull(authorizationResponse.getIdToken(), "The id token is not null");
+
+        String authorizationCode = authorizationResponse.getCode();
+
+        // 4. Get Access Token
+        OxAuthCryptoProvider cryptoProvider = new OxAuthCryptoProvider(keyStoreFile, keyStoreSecret, dnName);
+
+        TokenRequest tokenRequest = new TokenRequest(GrantType.AUTHORIZATION_CODE);
+        tokenRequest.setAuthenticationMethod(AuthenticationMethod.PRIVATE_KEY_JWT);
+        tokenRequest.setAlgorithm(SignatureAlgorithm.ES256);
+        tokenRequest.setCryptoProvider(cryptoProvider);
+        tokenRequest.setKeyId(keyId);
+        tokenRequest.setAudience(tokenEndpoint);
+        tokenRequest.setCode(authorizationCode);
+        tokenRequest.setRedirectUri(redirectUri);
+        tokenRequest.setAuthUsername(clientId);
+
+        TokenClient tokenClient = new TokenClient(tokenEndpoint);
+        tokenClient.setRequest(tokenRequest);
+        TokenResponse tokenResponse = tokenClient.exec();
+
+        showClient(tokenClient);
+        assertEquals(tokenResponse.getStatus(), 401, "Unexpected response code: " + tokenResponse.getStatus());
+        assertNotNull(tokenResponse.getErrorType(), "The error type is null");
+        assertNotNull(tokenResponse.getErrorDescription(), "The error description is null");
+    }
+
+    @Parameters({"redirectUris", "redirectUri", "userId", "userSecret", "clientJwksUri", "PS384_keyId", "dnName",
+            "keyStoreFile", "keyStoreSecret", "sectorIdentifierUri"})
+    @Test
+    public void tokenEndpointAuthMethodPrivateKeyJwtSigningAlgPS256Fail4(
+            final String redirectUris, final String redirectUri, final String userId, final String userSecret,
+            final String clientJwksUri, final String keyId, final String dnName, final String keyStoreFile,
+            final String keyStoreSecret, final String sectorIdentifierUri) throws Exception {
+        showTitle("tokenEndpointAuthMethodPrivateKeyJwtSigningAlgPS256Fail4");
+
+        // 1. Register client
+        RegisterRequest registerRequest = new RegisterRequest(ApplicationType.WEB, "oxAuth test app",
+                StringUtils.spaceSeparatedToList(redirectUris));
+        registerRequest.setTokenEndpointAuthMethod(AuthenticationMethod.PRIVATE_KEY_JWT);
+        registerRequest.setTokenEndpointAuthSigningAlg(SignatureAlgorithm.PS256);
+        registerRequest.setJwksUri(clientJwksUri);
+        registerRequest.setSectorIdentifierUri(sectorIdentifierUri);
+
+        RegisterClient registerClient = new RegisterClient(registrationEndpoint);
+        registerClient.setRequest(registerRequest);
+        RegisterResponse registerResponse = registerClient.exec();
+
+        showClient(registerClient);
+        assertEquals(registerResponse.getStatus(), 200, "Unexpected response code: " + registerResponse.getEntity());
+        assertNotNull(registerResponse.getClientId());
+        assertNotNull(registerResponse.getClientSecret());
+        assertNotNull(registerResponse.getRegistrationAccessToken());
+        assertNotNull(registerResponse.getClientIdIssuedAt());
+        assertNotNull(registerResponse.getClientSecretExpiresAt());
+
+        String clientId = registerResponse.getClientId();
+        String registrationAccessToken = registerResponse.getRegistrationAccessToken();
+        String registrationClientUri = registerResponse.getRegistrationClientUri();
+
+        // 2. Client read
+        RegisterRequest readClientRequest = new RegisterRequest(registrationAccessToken);
+
+        RegisterClient readClient = new RegisterClient(registrationClientUri);
+        readClient.setRequest(readClientRequest);
+        RegisterResponse readClientResponse = readClient.exec();
+
+        showClient(readClient);
+        assertEquals(readClientResponse.getStatus(), 200, "Unexpected response code: " + readClientResponse.getEntity());
+        assertNotNull(readClientResponse.getClientId());
+        assertNotNull(readClientResponse.getClientSecret());
+        assertNotNull(readClientResponse.getClientIdIssuedAt());
+        assertNotNull(readClientResponse.getClientSecretExpiresAt());
+
+        assertTrue(readClientResponse.getClaims().containsKey(TOKEN_ENDPOINT_AUTH_METHOD.toString()));
+        assertEquals(readClientResponse.getClaims().get(TOKEN_ENDPOINT_AUTH_METHOD.toString()),
+                AuthenticationMethod.PRIVATE_KEY_JWT.toString());
+        assertTrue(readClientResponse.getClaims().containsKey(TOKEN_ENDPOINT_AUTH_SIGNING_ALG.toString()));
+        assertEquals(readClientResponse.getClaims().get(TOKEN_ENDPOINT_AUTH_SIGNING_ALG.toString()),
+                SignatureAlgorithm.PS256.toString());
+        assertNotNull(readClientResponse.getClaims().get(RESPONSE_TYPES.toString()));
+        assertNotNull(readClientResponse.getClaims().get(REDIRECT_URIS.toString()));
+        assertNotNull(readClientResponse.getClaims().get(APPLICATION_TYPE.toString()));
+        assertNotNull(readClientResponse.getClaims().get(CLIENT_NAME.toString()));
+        assertNotNull(readClientResponse.getClaims().get(ID_TOKEN_SIGNED_RESPONSE_ALG.toString()));
+        assertNotNull(readClientResponse.getClaims().get(SCOPE.toString()));
+
+        // 3. Request authorization
+        List<ResponseType> responseTypes = Arrays.asList(ResponseType.CODE);
+        List<String> scopes = Arrays.asList(
+                "openid",
+                "profile",
+                "address",
+                "email");
+        String state = UUID.randomUUID().toString();
+
+        AuthorizationRequest authorizationRequest = new AuthorizationRequest(responseTypes, clientId, scopes, redirectUri, null);
+        authorizationRequest.setState(state);
+
+        AuthorizationResponse authorizationResponse = authenticateResourceOwnerAndGrantAccess(
+                authorizationEndpoint, authorizationRequest, userId, userSecret);
+
+        assertNotNull(authorizationResponse.getLocation(), "The location is null");
+        assertNotNull(authorizationResponse.getCode(), "The authorization code is null");
+        assertNotNull(authorizationResponse.getState(), "The state is null");
+        assertNotNull(authorizationResponse.getScope(), "The scope is null");
+        assertNull(authorizationResponse.getIdToken(), "The id token is not null");
+
+        String authorizationCode = authorizationResponse.getCode();
+
+        // 4. Get Access Token
+        OxAuthCryptoProvider cryptoProvider = new OxAuthCryptoProvider(keyStoreFile, keyStoreSecret, dnName);
+
+        TokenRequest tokenRequest = new TokenRequest(GrantType.AUTHORIZATION_CODE);
+        tokenRequest.setAuthenticationMethod(AuthenticationMethod.PRIVATE_KEY_JWT);
+        tokenRequest.setAlgorithm(SignatureAlgorithm.PS384);
+        tokenRequest.setCryptoProvider(cryptoProvider);
+        tokenRequest.setKeyId(keyId);
+        tokenRequest.setAudience(tokenEndpoint);
+        tokenRequest.setCode(authorizationCode);
+        tokenRequest.setRedirectUri(redirectUri);
+        tokenRequest.setAuthUsername(clientId);
+
+        TokenClient tokenClient = new TokenClient(tokenEndpoint);
+        tokenClient.setRequest(tokenRequest);
+        TokenResponse tokenResponse = tokenClient.exec();
+
+        showClient(tokenClient);
+        assertEquals(tokenResponse.getStatus(), 401, "Unexpected response code: " + tokenResponse.getStatus());
+        assertNotNull(tokenResponse.getErrorType(), "The error type is null");
+        assertNotNull(tokenResponse.getErrorDescription(), "The error description is null");
+    }
+
+    @Parameters({"redirectUris", "redirectUri", "userId", "userSecret", "clientJwksUri", "ES512_keyId", "dnName",
+            "keyStoreFile", "keyStoreSecret", "sectorIdentifierUri"})
+    @Test
+    public void tokenEndpointAuthMethodPrivateKeyJwtSigningAlgPS256Fail5(
+            final String redirectUris, final String redirectUri, final String userId, final String userSecret,
+            final String clientJwksUri, final String keyId, final String dnName, final String keyStoreFile,
+            final String keyStoreSecret, final String sectorIdentifierUri) throws Exception {
+        showTitle("tokenEndpointAuthMethodPrivateKeyJwtSigningAlgPS256Fail5");
+
+        // 1. Register client
+        RegisterRequest registerRequest = new RegisterRequest(ApplicationType.WEB, "oxAuth test app",
+                StringUtils.spaceSeparatedToList(redirectUris));
+        registerRequest.setTokenEndpointAuthMethod(AuthenticationMethod.PRIVATE_KEY_JWT);
+        registerRequest.setTokenEndpointAuthSigningAlg(SignatureAlgorithm.PS256);
+        registerRequest.setJwksUri(clientJwksUri);
+        registerRequest.setSectorIdentifierUri(sectorIdentifierUri);
+
+        RegisterClient registerClient = new RegisterClient(registrationEndpoint);
+        registerClient.setRequest(registerRequest);
+        RegisterResponse registerResponse = registerClient.exec();
+
+        showClient(registerClient);
+        assertEquals(registerResponse.getStatus(), 200, "Unexpected response code: " + registerResponse.getEntity());
+        assertNotNull(registerResponse.getClientId());
+        assertNotNull(registerResponse.getClientSecret());
+        assertNotNull(registerResponse.getRegistrationAccessToken());
+        assertNotNull(registerResponse.getClientIdIssuedAt());
+        assertNotNull(registerResponse.getClientSecretExpiresAt());
+
+        String clientId = registerResponse.getClientId();
+        String registrationAccessToken = registerResponse.getRegistrationAccessToken();
+        String registrationClientUri = registerResponse.getRegistrationClientUri();
+
+        // 2. Client read
+        RegisterRequest readClientRequest = new RegisterRequest(registrationAccessToken);
+
+        RegisterClient readClient = new RegisterClient(registrationClientUri);
+        readClient.setRequest(readClientRequest);
+        RegisterResponse readClientResponse = readClient.exec();
+
+        showClient(readClient);
+        assertEquals(readClientResponse.getStatus(), 200, "Unexpected response code: " + readClientResponse.getEntity());
+        assertNotNull(readClientResponse.getClientId());
+        assertNotNull(readClientResponse.getClientSecret());
+        assertNotNull(readClientResponse.getClientIdIssuedAt());
+        assertNotNull(readClientResponse.getClientSecretExpiresAt());
+
+        assertTrue(readClientResponse.getClaims().containsKey(TOKEN_ENDPOINT_AUTH_METHOD.toString()));
+        assertEquals(readClientResponse.getClaims().get(TOKEN_ENDPOINT_AUTH_METHOD.toString()),
+                AuthenticationMethod.PRIVATE_KEY_JWT.toString());
+        assertTrue(readClientResponse.getClaims().containsKey(TOKEN_ENDPOINT_AUTH_SIGNING_ALG.toString()));
+        assertEquals(readClientResponse.getClaims().get(TOKEN_ENDPOINT_AUTH_SIGNING_ALG.toString()),
+                SignatureAlgorithm.PS256.toString());
+        assertNotNull(readClientResponse.getClaims().get(RESPONSE_TYPES.toString()));
+        assertNotNull(readClientResponse.getClaims().get(REDIRECT_URIS.toString()));
+        assertNotNull(readClientResponse.getClaims().get(APPLICATION_TYPE.toString()));
+        assertNotNull(readClientResponse.getClaims().get(CLIENT_NAME.toString()));
+        assertNotNull(readClientResponse.getClaims().get(ID_TOKEN_SIGNED_RESPONSE_ALG.toString()));
+        assertNotNull(readClientResponse.getClaims().get(SCOPE.toString()));
+
+        // 3. Request authorization
+        List<ResponseType> responseTypes = Arrays.asList(ResponseType.CODE);
+        List<String> scopes = Arrays.asList(
+                "openid",
+                "profile",
+                "address",
+                "email");
+        String state = UUID.randomUUID().toString();
+
+        AuthorizationRequest authorizationRequest = new AuthorizationRequest(responseTypes, clientId, scopes, redirectUri, null);
+        authorizationRequest.setState(state);
+
+        AuthorizationResponse authorizationResponse = authenticateResourceOwnerAndGrantAccess(
+                authorizationEndpoint, authorizationRequest, userId, userSecret);
+
+        assertNotNull(authorizationResponse.getLocation(), "The location is null");
+        assertNotNull(authorizationResponse.getCode(), "The authorization code is null");
+        assertNotNull(authorizationResponse.getState(), "The state is null");
+        assertNotNull(authorizationResponse.getScope(), "The scope is null");
+        assertNull(authorizationResponse.getIdToken(), "The id token is not null");
+
+        String authorizationCode = authorizationResponse.getCode();
+
+        // 4. Get Access Token
+        OxAuthCryptoProvider cryptoProvider = new OxAuthCryptoProvider(keyStoreFile, keyStoreSecret, dnName);
+
+        TokenRequest tokenRequest = new TokenRequest(GrantType.AUTHORIZATION_CODE);
+        tokenRequest.setAuthenticationMethod(AuthenticationMethod.PRIVATE_KEY_JWT);
+        tokenRequest.setAlgorithm(SignatureAlgorithm.ES512);
+        tokenRequest.setCryptoProvider(cryptoProvider);
+        tokenRequest.setKeyId(keyId);
+        tokenRequest.setAudience(tokenEndpoint);
+        tokenRequest.setCode(authorizationCode);
+        tokenRequest.setRedirectUri(redirectUri);
+        tokenRequest.setAuthUsername(clientId);
+
+        TokenClient tokenClient = new TokenClient(tokenEndpoint);
+        tokenClient.setRequest(tokenRequest);
+        TokenResponse tokenResponse = tokenClient.exec();
+
+        showClient(tokenClient);
+        assertEquals(tokenResponse.getStatus(), 401, "Unexpected response code: " + tokenResponse.getStatus());
+        assertNotNull(tokenResponse.getErrorType(), "The error type is null");
+        assertNotNull(tokenResponse.getErrorDescription(), "The error description is null");
+    }
+
+    @Parameters({"redirectUris", "redirectUri", "userId", "userSecret", "clientJwksUri", "PS384_keyId", "dnName",
+            "keyStoreFile", "keyStoreSecret", "sectorIdentifierUri"})
+    @Test
+    public void tokenEndpointAuthMethodPrivateKeyJwtSigningAlgPS384(
+            final String redirectUris, final String redirectUri, final String userId, final String userSecret,
+            final String clientJwksUri, final String keyId, final String dnName, final String keyStoreFile,
+            final String keyStoreSecret, final String sectorIdentifierUri) throws Exception {
+        showTitle("tokenEndpointAuthMethodPrivateKeyJwtSigningAlgPS384");
+
+        // 1. Register client
+        RegisterRequest registerRequest = new RegisterRequest(ApplicationType.WEB, "oxAuth test app",
+                StringUtils.spaceSeparatedToList(redirectUris));
+        registerRequest.setTokenEndpointAuthMethod(AuthenticationMethod.PRIVATE_KEY_JWT);
+        registerRequest.setTokenEndpointAuthSigningAlg(SignatureAlgorithm.PS384);
+        registerRequest.setJwksUri(clientJwksUri);
+        registerRequest.setSectorIdentifierUri(sectorIdentifierUri);
+
+        RegisterClient registerClient = new RegisterClient(registrationEndpoint);
+        registerClient.setRequest(registerRequest);
+        RegisterResponse registerResponse = registerClient.exec();
+
+        showClient(registerClient);
+        assertEquals(registerResponse.getStatus(), 200, "Unexpected response code: " + registerResponse.getEntity());
+        assertNotNull(registerResponse.getClientId());
+        assertNotNull(registerResponse.getClientSecret());
+        assertNotNull(registerResponse.getRegistrationAccessToken());
+        assertNotNull(registerResponse.getClientIdIssuedAt());
+        assertNotNull(registerResponse.getClientSecretExpiresAt());
+
+        String clientId = registerResponse.getClientId();
+        String registrationAccessToken = registerResponse.getRegistrationAccessToken();
+        String registrationClientUri = registerResponse.getRegistrationClientUri();
+
+        // 2. Client read
+        RegisterRequest readClientRequest = new RegisterRequest(registrationAccessToken);
+
+        RegisterClient readClient = new RegisterClient(registrationClientUri);
+        readClient.setRequest(readClientRequest);
+        RegisterResponse readClientResponse = readClient.exec();
+
+        showClient(readClient);
+        assertEquals(readClientResponse.getStatus(), 200, "Unexpected response code: " + readClientResponse.getEntity());
+        assertNotNull(readClientResponse.getClientId());
+        assertNotNull(readClientResponse.getClientSecret());
+        assertNotNull(readClientResponse.getClientIdIssuedAt());
+        assertNotNull(readClientResponse.getClientSecretExpiresAt());
+
+        assertTrue(readClientResponse.getClaims().containsKey(TOKEN_ENDPOINT_AUTH_METHOD.toString()));
+        assertEquals(readClientResponse.getClaims().get(TOKEN_ENDPOINT_AUTH_METHOD.toString()),
+                AuthenticationMethod.PRIVATE_KEY_JWT.toString());
+        assertTrue(readClientResponse.getClaims().containsKey(TOKEN_ENDPOINT_AUTH_SIGNING_ALG.toString()));
+        assertEquals(readClientResponse.getClaims().get(TOKEN_ENDPOINT_AUTH_SIGNING_ALG.toString()),
+                SignatureAlgorithm.PS384.toString());
+        assertNotNull(readClientResponse.getClaims().get(RESPONSE_TYPES.toString()));
+        assertNotNull(readClientResponse.getClaims().get(REDIRECT_URIS.toString()));
+        assertNotNull(readClientResponse.getClaims().get(APPLICATION_TYPE.toString()));
+        assertNotNull(readClientResponse.getClaims().get(CLIENT_NAME.toString()));
+        assertNotNull(readClientResponse.getClaims().get(ID_TOKEN_SIGNED_RESPONSE_ALG.toString()));
+        assertNotNull(readClientResponse.getClaims().get(SCOPE.toString()));
+
+        // 3. Request authorization
+        List<ResponseType> responseTypes = Arrays.asList(ResponseType.CODE);
+        List<String> scopes = Arrays.asList(
+                "openid",
+                "profile",
+                "address",
+                "email");
+        String state = UUID.randomUUID().toString();
+
+        AuthorizationRequest authorizationRequest = new AuthorizationRequest(responseTypes, clientId, scopes, redirectUri, null);
+        authorizationRequest.setState(state);
+
+        AuthorizationResponse authorizationResponse = authenticateResourceOwnerAndGrantAccess(
+                authorizationEndpoint, authorizationRequest, userId, userSecret);
+
+        assertNotNull(authorizationResponse.getLocation(), "The location is null");
+        assertNotNull(authorizationResponse.getCode(), "The authorization code is null");
+        assertNotNull(authorizationResponse.getState(), "The state is null");
+        assertNotNull(authorizationResponse.getScope(), "The scope is null");
+        assertNull(authorizationResponse.getIdToken(), "The id token is not null");
+
+        String authorizationCode = authorizationResponse.getCode();
+
+        // 4. Get Access Token
+        OxAuthCryptoProvider cryptoProvider = new OxAuthCryptoProvider(keyStoreFile, keyStoreSecret, dnName);
+
+        TokenRequest tokenRequest = new TokenRequest(GrantType.AUTHORIZATION_CODE);
+        tokenRequest.setAuthenticationMethod(AuthenticationMethod.PRIVATE_KEY_JWT);
+        tokenRequest.setAlgorithm(SignatureAlgorithm.PS384);
+        tokenRequest.setCryptoProvider(cryptoProvider);
+        tokenRequest.setKeyId(keyId);
+        tokenRequest.setAudience(tokenEndpoint);
+        tokenRequest.setCode(authorizationCode);
+        tokenRequest.setRedirectUri(redirectUri);
+        tokenRequest.setAuthUsername(clientId);
+
+        TokenClient tokenClient = new TokenClient(tokenEndpoint);
+        tokenClient.setRequest(tokenRequest);
+        TokenResponse tokenResponse = tokenClient.exec();
+
+        showClient(tokenClient);
+        assertEquals(tokenResponse.getStatus(), 200, "Unexpected response code: " + tokenResponse.getStatus());
+        assertNotNull(tokenResponse.getEntity(), "The entity is null");
+        assertNotNull(tokenResponse.getAccessToken(), "The access token is null");
+        assertNotNull(tokenResponse.getExpiresIn(), "The expires in value is null");
+        assertNotNull(tokenResponse.getTokenType(), "The token type is null");
+        assertNotNull(tokenResponse.getRefreshToken(), "The refresh token is null");
+    }
+
+    @Parameters({"redirectUris", "redirectUri", "userId", "userSecret", "clientJwksUri", "RS256_keyId", "dnName",
+            "keyStoreFile", "keyStoreSecret", "sectorIdentifierUri"})
+    @Test
+    public void tokenEndpointAuthMethodPrivateKeyJwtSigningAlgPS384Fail1(
+            final String redirectUris, final String redirectUri, final String userId, final String userSecret,
+            final String clientJwksUri, final String keyId, final String dnName, final String keyStoreFile,
+            final String keyStoreSecret, final String sectorIdentifierUri) throws Exception {
+        showTitle("tokenEndpointAuthMethodPrivateKeyJwtSigningAlgPS384Fail1");
+
+        // 1. Register client
+        RegisterRequest registerRequest = new RegisterRequest(ApplicationType.WEB, "oxAuth test app",
+                StringUtils.spaceSeparatedToList(redirectUris));
+        registerRequest.setTokenEndpointAuthMethod(AuthenticationMethod.PRIVATE_KEY_JWT);
+        registerRequest.setTokenEndpointAuthSigningAlg(SignatureAlgorithm.PS384);
+        registerRequest.setJwksUri(clientJwksUri);
+        registerRequest.setSectorIdentifierUri(sectorIdentifierUri);
+
+        RegisterClient registerClient = newRegisterClient(registerRequest);
+        RegisterResponse registerResponse = registerClient.exec();
+
+        showClient(registerClient);
+        assertEquals(registerResponse.getStatus(), 200, "Unexpected response code: " + registerResponse.getEntity());
+        assertNotNull(registerResponse.getClientId());
+        assertNotNull(registerResponse.getClientSecret());
+        assertNotNull(registerResponse.getRegistrationAccessToken());
+        assertNotNull(registerResponse.getClientIdIssuedAt());
+        assertNotNull(registerResponse.getClientSecretExpiresAt());
+
+        String clientId = registerResponse.getClientId();
+        String registrationAccessToken = registerResponse.getRegistrationAccessToken();
+        String registrationClientUri = registerResponse.getRegistrationClientUri();
+
+        // 2. Client read
+        RegisterRequest readClientRequest = new RegisterRequest(registrationAccessToken);
+
+        RegisterClient readClient = new RegisterClient(registrationClientUri);
+        readClient.setRequest(readClientRequest);
+        readClient.setExecutor(clientEngine(true));
+        RegisterResponse readClientResponse = readClient.exec();
+
+        showClient(readClient);
+        assertEquals(readClientResponse.getStatus(), 200, "Unexpected response code: " + readClientResponse.getEntity());
+        assertNotNull(readClientResponse.getClientId());
+        assertNotNull(readClientResponse.getClientSecret());
+        assertNotNull(readClientResponse.getClientIdIssuedAt());
+        assertNotNull(readClientResponse.getClientSecretExpiresAt());
+
+        assertTrue(readClientResponse.getClaims().containsKey(TOKEN_ENDPOINT_AUTH_METHOD.toString()));
+        assertEquals(readClientResponse.getClaims().get(TOKEN_ENDPOINT_AUTH_METHOD.toString()),
+                AuthenticationMethod.PRIVATE_KEY_JWT.toString());
+        assertTrue(readClientResponse.getClaims().containsKey(TOKEN_ENDPOINT_AUTH_SIGNING_ALG.toString()));
+        assertEquals(readClientResponse.getClaims().get(TOKEN_ENDPOINT_AUTH_SIGNING_ALG.toString()),
+                SignatureAlgorithm.PS384.toString());
+        assertNotNull(readClientResponse.getClaims().get(RESPONSE_TYPES.toString()));
+        assertNotNull(readClientResponse.getClaims().get(REDIRECT_URIS.toString()));
+        assertNotNull(readClientResponse.getClaims().get(APPLICATION_TYPE.toString()));
+        assertNotNull(readClientResponse.getClaims().get(CLIENT_NAME.toString()));
+        assertNotNull(readClientResponse.getClaims().get(ID_TOKEN_SIGNED_RESPONSE_ALG.toString()));
+        assertNotNull(readClientResponse.getClaims().get(SCOPE.toString()));
+
+        // 3. Request authorization
+        List<ResponseType> responseTypes = Arrays.asList(ResponseType.CODE);
+        List<String> scopes = Arrays.asList(
+                "openid",
+                "profile",
+                "address",
+                "email");
+        String state = UUID.randomUUID().toString();
+
+        AuthorizationRequest authorizationRequest = new AuthorizationRequest(responseTypes, clientId, scopes, redirectUri, null);
+        authorizationRequest.setState(state);
+
+        AuthorizationResponse authorizationResponse = authenticateResourceOwnerAndGrantAccess(
+                authorizationEndpoint, authorizationRequest, userId, userSecret);
+
+        assertNotNull(authorizationResponse.getLocation(), "The location is null");
+        assertNotNull(authorizationResponse.getCode(), "The authorization code is null");
+        assertNotNull(authorizationResponse.getState(), "The state is null");
+        assertNotNull(authorizationResponse.getScope(), "The scope is null");
+        assertNull(authorizationResponse.getIdToken(), "The id token is not null");
+
+        String authorizationCode = authorizationResponse.getCode();
+
+        // 4. Get Access Token
+        OxAuthCryptoProvider cryptoProvider = new OxAuthCryptoProvider(keyStoreFile, keyStoreSecret, dnName);
+
+        TokenRequest tokenRequest = new TokenRequest(GrantType.AUTHORIZATION_CODE);
+        tokenRequest.setAuthenticationMethod(AuthenticationMethod.PRIVATE_KEY_JWT);
+        tokenRequest.setAlgorithm(SignatureAlgorithm.RS256);
+        tokenRequest.setCryptoProvider(cryptoProvider);
+        tokenRequest.setKeyId(keyId);
+        tokenRequest.setAudience(tokenEndpoint);
+        tokenRequest.setCode(authorizationCode);
+        tokenRequest.setRedirectUri(redirectUri);
+        tokenRequest.setAuthUsername(clientId);
+
+        TokenClient tokenClient = newTokenClient(tokenRequest);
+        TokenResponse tokenResponse = tokenClient.exec();
+
+        showClient(tokenClient);
+        assertEquals(tokenResponse.getStatus(), 401, "Unexpected response code: " + tokenResponse.getStatus());
+        assertNotNull(tokenResponse.getErrorType(), "The error type is null");
+        assertNotNull(tokenResponse.getErrorDescription(), "The error description is null");
+    }
+
+    @Parameters({"redirectUris", "redirectUri", "userId", "userSecret", "clientJwksUri", "RS512_keyId", "dnName",
+            "keyStoreFile", "keyStoreSecret", "sectorIdentifierUri"})
+    @Test
+    public void tokenEndpointAuthMethodPrivateKeyJwtSigningAlgPS384Fail2(
+            final String redirectUris, final String redirectUri, final String userId, final String userSecret,
+            final String clientJwksUri, final String keyId, final String dnName, final String keyStoreFile,
+            final String keyStoreSecret, final String sectorIdentifierUri) throws Exception {
+        showTitle("tokenEndpointAuthMethodPrivateKeyJwtSigningAlgPS384Fail2");
+
+        // 1. Register client
+        RegisterRequest registerRequest = new RegisterRequest(ApplicationType.WEB, "oxAuth test app",
+                StringUtils.spaceSeparatedToList(redirectUris));
+        registerRequest.setTokenEndpointAuthMethod(AuthenticationMethod.PRIVATE_KEY_JWT);
+        registerRequest.setTokenEndpointAuthSigningAlg(SignatureAlgorithm.PS384);
+        registerRequest.setJwksUri(clientJwksUri);
+        registerRequest.setSectorIdentifierUri(sectorIdentifierUri);
+
+        RegisterClient registerClient = new RegisterClient(registrationEndpoint);
+        registerClient.setRequest(registerRequest);
+        RegisterResponse registerResponse = registerClient.exec();
+
+        showClient(registerClient);
+        assertEquals(registerResponse.getStatus(), 200, "Unexpected response code: " + registerResponse.getEntity());
+        assertNotNull(registerResponse.getClientId());
+        assertNotNull(registerResponse.getClientSecret());
+        assertNotNull(registerResponse.getRegistrationAccessToken());
+        assertNotNull(registerResponse.getClientIdIssuedAt());
+        assertNotNull(registerResponse.getClientSecretExpiresAt());
+
+        String clientId = registerResponse.getClientId();
+        String registrationAccessToken = registerResponse.getRegistrationAccessToken();
+        String registrationClientUri = registerResponse.getRegistrationClientUri();
+
+        // 2. Client read
+        RegisterRequest readClientRequest = new RegisterRequest(registrationAccessToken);
+
+        RegisterClient readClient = new RegisterClient(registrationClientUri);
+        readClient.setRequest(readClientRequest);
+        RegisterResponse readClientResponse = readClient.exec();
+
+        showClient(readClient);
+        assertEquals(readClientResponse.getStatus(), 200, "Unexpected response code: " + readClientResponse.getEntity());
+        assertNotNull(readClientResponse.getClientId());
+        assertNotNull(readClientResponse.getClientSecret());
+        assertNotNull(readClientResponse.getClientIdIssuedAt());
+        assertNotNull(readClientResponse.getClientSecretExpiresAt());
+
+        assertTrue(readClientResponse.getClaims().containsKey(TOKEN_ENDPOINT_AUTH_METHOD.toString()));
+        assertEquals(readClientResponse.getClaims().get(TOKEN_ENDPOINT_AUTH_METHOD.toString()),
+                AuthenticationMethod.PRIVATE_KEY_JWT.toString());
+        assertTrue(readClientResponse.getClaims().containsKey(TOKEN_ENDPOINT_AUTH_SIGNING_ALG.toString()));
+        assertEquals(readClientResponse.getClaims().get(TOKEN_ENDPOINT_AUTH_SIGNING_ALG.toString()),
+                SignatureAlgorithm.PS384.toString());
+        assertNotNull(readClientResponse.getClaims().get(RESPONSE_TYPES.toString()));
+        assertNotNull(readClientResponse.getClaims().get(REDIRECT_URIS.toString()));
+        assertNotNull(readClientResponse.getClaims().get(APPLICATION_TYPE.toString()));
+        assertNotNull(readClientResponse.getClaims().get(CLIENT_NAME.toString()));
+        assertNotNull(readClientResponse.getClaims().get(ID_TOKEN_SIGNED_RESPONSE_ALG.toString()));
+        assertNotNull(readClientResponse.getClaims().get(SCOPE.toString()));
+
+        // 3. Request authorization
+        List<ResponseType> responseTypes = Arrays.asList(ResponseType.CODE);
+        List<String> scopes = Arrays.asList(
+                "openid",
+                "profile",
+                "address",
+                "email");
+        String state = UUID.randomUUID().toString();
+
+        AuthorizationRequest authorizationRequest = new AuthorizationRequest(responseTypes, clientId, scopes, redirectUri, null);
+        authorizationRequest.setState(state);
+
+        AuthorizationResponse authorizationResponse = authenticateResourceOwnerAndGrantAccess(
+                authorizationEndpoint, authorizationRequest, userId, userSecret);
+
+        assertNotNull(authorizationResponse.getLocation(), "The location is null");
+        assertNotNull(authorizationResponse.getCode(), "The authorization code is null");
+        assertNotNull(authorizationResponse.getState(), "The state is null");
+        assertNotNull(authorizationResponse.getScope(), "The scope is null");
+        assertNull(authorizationResponse.getIdToken(), "The id token is not null");
+
+        String authorizationCode = authorizationResponse.getCode();
+
+        // 4. Get Access Token
+        OxAuthCryptoProvider cryptoProvider = new OxAuthCryptoProvider(keyStoreFile, keyStoreSecret, dnName);
+
+        TokenRequest tokenRequest = new TokenRequest(GrantType.AUTHORIZATION_CODE);
+        tokenRequest.setAuthenticationMethod(AuthenticationMethod.PRIVATE_KEY_JWT);
+        tokenRequest.setAlgorithm(SignatureAlgorithm.RS512);
+        tokenRequest.setCryptoProvider(cryptoProvider);
+        tokenRequest.setKeyId(keyId);
+        tokenRequest.setAudience(tokenEndpoint);
+        tokenRequest.setCode(authorizationCode);
+        tokenRequest.setRedirectUri(redirectUri);
+        tokenRequest.setAuthUsername(clientId);
+
+        TokenClient tokenClient = new TokenClient(tokenEndpoint);
+        tokenClient.setRequest(tokenRequest);
+        TokenResponse tokenResponse = tokenClient.exec();
+
+        showClient(tokenClient);
+        assertEquals(tokenResponse.getStatus(), 401, "Unexpected response code: " + tokenResponse.getStatus());
+        assertNotNull(tokenResponse.getErrorType(), "The error type is null");
+        assertNotNull(tokenResponse.getErrorDescription(), "The error description is null");
+    }
+
+    @Parameters({"redirectUris", "redirectUri", "userId", "userSecret", "clientJwksUri", "ES256_keyId", "dnName",
+            "keyStoreFile", "keyStoreSecret", "sectorIdentifierUri"})
+    @Test
+    public void tokenEndpointAuthMethodPrivateKeyJwtSigningAlgPS384Fail3(
+            final String redirectUris, final String redirectUri, final String userId, final String userSecret,
+            final String clientJwksUri, final String keyId, final String dnName, final String keyStoreFile,
+            final String keyStoreSecret, final String sectorIdentifierUri) throws Exception {
+        showTitle("tokenEndpointAuthMethodPrivateKeyJwtSigningAlgPS384Fail3");
+
+        // 1. Register client
+        RegisterRequest registerRequest = new RegisterRequest(ApplicationType.WEB, "oxAuth test app",
+                StringUtils.spaceSeparatedToList(redirectUris));
+        registerRequest.setTokenEndpointAuthMethod(AuthenticationMethod.PRIVATE_KEY_JWT);
+        registerRequest.setTokenEndpointAuthSigningAlg(SignatureAlgorithm.PS384);
+        registerRequest.setJwksUri(clientJwksUri);
+        registerRequest.setSectorIdentifierUri(sectorIdentifierUri);
+
+        RegisterClient registerClient = new RegisterClient(registrationEndpoint);
+        registerClient.setRequest(registerRequest);
+        RegisterResponse registerResponse = registerClient.exec();
+
+        showClient(registerClient);
+        assertEquals(registerResponse.getStatus(), 200, "Unexpected response code: " + registerResponse.getEntity());
+        assertNotNull(registerResponse.getClientId());
+        assertNotNull(registerResponse.getClientSecret());
+        assertNotNull(registerResponse.getRegistrationAccessToken());
+        assertNotNull(registerResponse.getClientIdIssuedAt());
+        assertNotNull(registerResponse.getClientSecretExpiresAt());
+
+        String clientId = registerResponse.getClientId();
+        String registrationAccessToken = registerResponse.getRegistrationAccessToken();
+        String registrationClientUri = registerResponse.getRegistrationClientUri();
+
+        // 2. Client read
+        RegisterRequest readClientRequest = new RegisterRequest(registrationAccessToken);
+
+        RegisterClient readClient = new RegisterClient(registrationClientUri);
+        readClient.setRequest(readClientRequest);
+        RegisterResponse readClientResponse = readClient.exec();
+
+        showClient(readClient);
+        assertEquals(readClientResponse.getStatus(), 200, "Unexpected response code: " + readClientResponse.getEntity());
+        assertNotNull(readClientResponse.getClientId());
+        assertNotNull(readClientResponse.getClientSecret());
+        assertNotNull(readClientResponse.getClientIdIssuedAt());
+        assertNotNull(readClientResponse.getClientSecretExpiresAt());
+
+        assertTrue(readClientResponse.getClaims().containsKey(TOKEN_ENDPOINT_AUTH_METHOD.toString()));
+        assertEquals(readClientResponse.getClaims().get(TOKEN_ENDPOINT_AUTH_METHOD.toString()),
+                AuthenticationMethod.PRIVATE_KEY_JWT.toString());
+        assertTrue(readClientResponse.getClaims().containsKey(TOKEN_ENDPOINT_AUTH_SIGNING_ALG.toString()));
+        assertEquals(readClientResponse.getClaims().get(TOKEN_ENDPOINT_AUTH_SIGNING_ALG.toString()),
+                SignatureAlgorithm.PS384.toString());
+        assertNotNull(readClientResponse.getClaims().get(RESPONSE_TYPES.toString()));
+        assertNotNull(readClientResponse.getClaims().get(REDIRECT_URIS.toString()));
+        assertNotNull(readClientResponse.getClaims().get(APPLICATION_TYPE.toString()));
+        assertNotNull(readClientResponse.getClaims().get(CLIENT_NAME.toString()));
+        assertNotNull(readClientResponse.getClaims().get(ID_TOKEN_SIGNED_RESPONSE_ALG.toString()));
+        assertNotNull(readClientResponse.getClaims().get(SCOPE.toString()));
+
+        // 3. Request authorization
+        List<ResponseType> responseTypes = Arrays.asList(ResponseType.CODE);
+        List<String> scopes = Arrays.asList(
+                "openid",
+                "profile",
+                "address",
+                "email");
+        String state = UUID.randomUUID().toString();
+
+        AuthorizationRequest authorizationRequest = new AuthorizationRequest(responseTypes, clientId, scopes, redirectUri, null);
+        authorizationRequest.setState(state);
+
+        AuthorizationResponse authorizationResponse = authenticateResourceOwnerAndGrantAccess(
+                authorizationEndpoint, authorizationRequest, userId, userSecret);
+
+        assertNotNull(authorizationResponse.getLocation(), "The location is null");
+        assertNotNull(authorizationResponse.getCode(), "The authorization code is null");
+        assertNotNull(authorizationResponse.getState(), "The state is null");
+        assertNotNull(authorizationResponse.getScope(), "The scope is null");
+        assertNull(authorizationResponse.getIdToken(), "The id token is not null");
+
+        String authorizationCode = authorizationResponse.getCode();
+
+        // 4. Get Access Token
+        OxAuthCryptoProvider cryptoProvider = new OxAuthCryptoProvider(keyStoreFile, keyStoreSecret, dnName);
+
+        TokenRequest tokenRequest = new TokenRequest(GrantType.AUTHORIZATION_CODE);
+        tokenRequest.setAuthenticationMethod(AuthenticationMethod.PRIVATE_KEY_JWT);
+        tokenRequest.setAlgorithm(SignatureAlgorithm.ES256);
+        tokenRequest.setCryptoProvider(cryptoProvider);
+        tokenRequest.setKeyId(keyId);
+        tokenRequest.setAudience(tokenEndpoint);
+        tokenRequest.setCode(authorizationCode);
+        tokenRequest.setRedirectUri(redirectUri);
+        tokenRequest.setAuthUsername(clientId);
+
+        TokenClient tokenClient = new TokenClient(tokenEndpoint);
+        tokenClient.setRequest(tokenRequest);
+        TokenResponse tokenResponse = tokenClient.exec();
+
+        showClient(tokenClient);
+        assertEquals(tokenResponse.getStatus(), 401, "Unexpected response code: " + tokenResponse.getStatus());
+        assertNotNull(tokenResponse.getErrorType(), "The error type is null");
+        assertNotNull(tokenResponse.getErrorDescription(), "The error description is null");
+    }
+
+    @Parameters({"redirectUris", "redirectUri", "userId", "userSecret", "clientJwksUri", "ES384_keyId", "dnName",
+            "keyStoreFile", "keyStoreSecret", "sectorIdentifierUri"})
+    @Test
+    public void tokenEndpointAuthMethodPrivateKeyJwtSigningAlgPS384Fail4(
+            final String redirectUris, final String redirectUri, final String userId, final String userSecret,
+            final String clientJwksUri, final String keyId, final String dnName, final String keyStoreFile,
+            final String keyStoreSecret, final String sectorIdentifierUri) throws Exception {
+        showTitle("tokenEndpointAuthMethodPrivateKeyJwtSigningAlgPS384Fail4");
+
+        // 1. Register client
+        RegisterRequest registerRequest = new RegisterRequest(ApplicationType.WEB, "oxAuth test app",
+                StringUtils.spaceSeparatedToList(redirectUris));
+        registerRequest.setTokenEndpointAuthMethod(AuthenticationMethod.PRIVATE_KEY_JWT);
+        registerRequest.setTokenEndpointAuthSigningAlg(SignatureAlgorithm.PS384);
+        registerRequest.setJwksUri(clientJwksUri);
+        registerRequest.setSectorIdentifierUri(sectorIdentifierUri);
+
+        RegisterClient registerClient = new RegisterClient(registrationEndpoint);
+        registerClient.setRequest(registerRequest);
+        RegisterResponse registerResponse = registerClient.exec();
+
+        showClient(registerClient);
+        assertEquals(registerResponse.getStatus(), 200, "Unexpected response code: " + registerResponse.getEntity());
+        assertNotNull(registerResponse.getClientId());
+        assertNotNull(registerResponse.getClientSecret());
+        assertNotNull(registerResponse.getRegistrationAccessToken());
+        assertNotNull(registerResponse.getClientIdIssuedAt());
+        assertNotNull(registerResponse.getClientSecretExpiresAt());
+
+        String clientId = registerResponse.getClientId();
+        String registrationAccessToken = registerResponse.getRegistrationAccessToken();
+        String registrationClientUri = registerResponse.getRegistrationClientUri();
+
+        // 2. Client read
+        RegisterRequest readClientRequest = new RegisterRequest(registrationAccessToken);
+
+        RegisterClient readClient = new RegisterClient(registrationClientUri);
+        readClient.setRequest(readClientRequest);
+        RegisterResponse readClientResponse = readClient.exec();
+
+        showClient(readClient);
+        assertEquals(readClientResponse.getStatus(), 200, "Unexpected response code: " + readClientResponse.getEntity());
+        assertNotNull(readClientResponse.getClientId());
+        assertNotNull(readClientResponse.getClientSecret());
+        assertNotNull(readClientResponse.getClientIdIssuedAt());
+        assertNotNull(readClientResponse.getClientSecretExpiresAt());
+
+        assertTrue(readClientResponse.getClaims().containsKey(TOKEN_ENDPOINT_AUTH_METHOD.toString()));
+        assertEquals(readClientResponse.getClaims().get(TOKEN_ENDPOINT_AUTH_METHOD.toString()),
+                AuthenticationMethod.PRIVATE_KEY_JWT.toString());
+        assertTrue(readClientResponse.getClaims().containsKey(TOKEN_ENDPOINT_AUTH_SIGNING_ALG.toString()));
+        assertEquals(readClientResponse.getClaims().get(TOKEN_ENDPOINT_AUTH_SIGNING_ALG.toString()),
+                SignatureAlgorithm.PS384.toString());
+        assertNotNull(readClientResponse.getClaims().get(RESPONSE_TYPES.toString()));
+        assertNotNull(readClientResponse.getClaims().get(REDIRECT_URIS.toString()));
+        assertNotNull(readClientResponse.getClaims().get(APPLICATION_TYPE.toString()));
+        assertNotNull(readClientResponse.getClaims().get(CLIENT_NAME.toString()));
+        assertNotNull(readClientResponse.getClaims().get(ID_TOKEN_SIGNED_RESPONSE_ALG.toString()));
+        assertNotNull(readClientResponse.getClaims().get(SCOPE.toString()));
+
+        // 3. Request authorization
+        List<ResponseType> responseTypes = Arrays.asList(ResponseType.CODE);
+        List<String> scopes = Arrays.asList(
+                "openid",
+                "profile",
+                "address",
+                "email");
+        String state = UUID.randomUUID().toString();
+
+        AuthorizationRequest authorizationRequest = new AuthorizationRequest(responseTypes, clientId, scopes, redirectUri, null);
+        authorizationRequest.setState(state);
+
+        AuthorizationResponse authorizationResponse = authenticateResourceOwnerAndGrantAccess(
+                authorizationEndpoint, authorizationRequest, userId, userSecret);
+
+        assertNotNull(authorizationResponse.getLocation(), "The location is null");
+        assertNotNull(authorizationResponse.getCode(), "The authorization code is null");
+        assertNotNull(authorizationResponse.getState(), "The state is null");
+        assertNotNull(authorizationResponse.getScope(), "The scope is null");
+        assertNull(authorizationResponse.getIdToken(), "The id token is not null");
+
+        String authorizationCode = authorizationResponse.getCode();
+
+        // 4. Get Access Token
+        OxAuthCryptoProvider cryptoProvider = new OxAuthCryptoProvider(keyStoreFile, keyStoreSecret, dnName);
+
+        TokenRequest tokenRequest = new TokenRequest(GrantType.AUTHORIZATION_CODE);
+        tokenRequest.setAuthenticationMethod(AuthenticationMethod.PRIVATE_KEY_JWT);
+        tokenRequest.setAlgorithm(SignatureAlgorithm.ES384);
+        tokenRequest.setCryptoProvider(cryptoProvider);
+        tokenRequest.setKeyId(keyId);
+        tokenRequest.setAudience(tokenEndpoint);
+        tokenRequest.setCode(authorizationCode);
+        tokenRequest.setRedirectUri(redirectUri);
+        tokenRequest.setAuthUsername(clientId);
+
+        TokenClient tokenClient = new TokenClient(tokenEndpoint);
+        tokenClient.setRequest(tokenRequest);
+        TokenResponse tokenResponse = tokenClient.exec();
+
+        showClient(tokenClient);
+        assertEquals(tokenResponse.getStatus(), 401, "Unexpected response code: " + tokenResponse.getStatus());
+        assertNotNull(tokenResponse.getErrorType(), "The error type is null");
+        assertNotNull(tokenResponse.getErrorDescription(), "The error description is null");
+    }
+
+    @Parameters({"redirectUris", "redirectUri", "userId", "userSecret", "clientJwksUri", "ES512_keyId", "dnName",
+            "keyStoreFile", "keyStoreSecret", "sectorIdentifierUri"})
+    @Test
+    public void tokenEndpointAuthMethodPrivateKeyJwtSigningAlgPS384Fail5(
+            final String redirectUris, final String redirectUri, final String userId, final String userSecret,
+            final String clientJwksUri, final String keyId, final String dnName, final String keyStoreFile,
+            final String keyStoreSecret, final String sectorIdentifierUri) throws Exception {
+        showTitle("tokenEndpointAuthMethodPrivateKeyJwtSigningAlgPS384Fail5");
+
+        // 1. Register client
+        RegisterRequest registerRequest = new RegisterRequest(ApplicationType.WEB, "oxAuth test app",
+                StringUtils.spaceSeparatedToList(redirectUris));
+        registerRequest.setTokenEndpointAuthMethod(AuthenticationMethod.PRIVATE_KEY_JWT);
+        registerRequest.setTokenEndpointAuthSigningAlg(SignatureAlgorithm.PS384);
+        registerRequest.setJwksUri(clientJwksUri);
+        registerRequest.setSectorIdentifierUri(sectorIdentifierUri);
+
+        RegisterClient registerClient = new RegisterClient(registrationEndpoint);
+        registerClient.setRequest(registerRequest);
+        RegisterResponse registerResponse = registerClient.exec();
+
+        showClient(registerClient);
+        assertEquals(registerResponse.getStatus(), 200, "Unexpected response code: " + registerResponse.getEntity());
+        assertNotNull(registerResponse.getClientId());
+        assertNotNull(registerResponse.getClientSecret());
+        assertNotNull(registerResponse.getRegistrationAccessToken());
+        assertNotNull(registerResponse.getClientIdIssuedAt());
+        assertNotNull(registerResponse.getClientSecretExpiresAt());
+
+        String clientId = registerResponse.getClientId();
+        String registrationAccessToken = registerResponse.getRegistrationAccessToken();
+        String registrationClientUri = registerResponse.getRegistrationClientUri();
+
+        // 2. Client read
+        RegisterRequest readClientRequest = new RegisterRequest(registrationAccessToken);
+
+        RegisterClient readClient = new RegisterClient(registrationClientUri);
+        readClient.setRequest(readClientRequest);
+        RegisterResponse readClientResponse = readClient.exec();
+
+        showClient(readClient);
+        assertEquals(readClientResponse.getStatus(), 200, "Unexpected response code: " + readClientResponse.getEntity());
+        assertNotNull(readClientResponse.getClientId());
+        assertNotNull(readClientResponse.getClientSecret());
+        assertNotNull(readClientResponse.getClientIdIssuedAt());
+        assertNotNull(readClientResponse.getClientSecretExpiresAt());
+
+        assertTrue(readClientResponse.getClaims().containsKey(TOKEN_ENDPOINT_AUTH_METHOD.toString()));
+        assertEquals(readClientResponse.getClaims().get(TOKEN_ENDPOINT_AUTH_METHOD.toString()),
+                AuthenticationMethod.PRIVATE_KEY_JWT.toString());
+        assertTrue(readClientResponse.getClaims().containsKey(TOKEN_ENDPOINT_AUTH_SIGNING_ALG.toString()));
+        assertEquals(readClientResponse.getClaims().get(TOKEN_ENDPOINT_AUTH_SIGNING_ALG.toString()),
+                SignatureAlgorithm.PS384.toString());
+        assertNotNull(readClientResponse.getClaims().get(RESPONSE_TYPES.toString()));
+        assertNotNull(readClientResponse.getClaims().get(REDIRECT_URIS.toString()));
+        assertNotNull(readClientResponse.getClaims().get(APPLICATION_TYPE.toString()));
+        assertNotNull(readClientResponse.getClaims().get(CLIENT_NAME.toString()));
+        assertNotNull(readClientResponse.getClaims().get(ID_TOKEN_SIGNED_RESPONSE_ALG.toString()));
+        assertNotNull(readClientResponse.getClaims().get(SCOPE.toString()));
+
+        // 3. Request authorization
+        List<ResponseType> responseTypes = Arrays.asList(ResponseType.CODE);
+        List<String> scopes = Arrays.asList(
+                "openid",
+                "profile",
+                "address",
+                "email");
+        String state = UUID.randomUUID().toString();
+
+        AuthorizationRequest authorizationRequest = new AuthorizationRequest(responseTypes, clientId, scopes, redirectUri, null);
+        authorizationRequest.setState(state);
+
+        AuthorizationResponse authorizationResponse = authenticateResourceOwnerAndGrantAccess(
+                authorizationEndpoint, authorizationRequest, userId, userSecret);
+
+        assertNotNull(authorizationResponse.getLocation(), "The location is null");
+        assertNotNull(authorizationResponse.getCode(), "The authorization code is null");
+        assertNotNull(authorizationResponse.getState(), "The state is null");
+        assertNotNull(authorizationResponse.getScope(), "The scope is null");
+        assertNull(authorizationResponse.getIdToken(), "The id token is not null");
+
+        String authorizationCode = authorizationResponse.getCode();
+
+        // 4. Get Access Token
+        OxAuthCryptoProvider cryptoProvider = new OxAuthCryptoProvider(keyStoreFile, keyStoreSecret, dnName);
+
+        TokenRequest tokenRequest = new TokenRequest(GrantType.AUTHORIZATION_CODE);
+        tokenRequest.setAuthenticationMethod(AuthenticationMethod.PRIVATE_KEY_JWT);
+        tokenRequest.setAlgorithm(SignatureAlgorithm.ES512);
+        tokenRequest.setCryptoProvider(cryptoProvider);
+        tokenRequest.setKeyId(keyId);
+        tokenRequest.setAudience(tokenEndpoint);
+        tokenRequest.setCode(authorizationCode);
+        tokenRequest.setRedirectUri(redirectUri);
+        tokenRequest.setAuthUsername(clientId);
+
+        TokenClient tokenClient = new TokenClient(tokenEndpoint);
+        tokenClient.setRequest(tokenRequest);
+        TokenResponse tokenResponse = tokenClient.exec();
+
+        showClient(tokenClient);
+        assertEquals(tokenResponse.getStatus(), 401, "Unexpected response code: " + tokenResponse.getStatus());
+        assertNotNull(tokenResponse.getErrorType(), "The error type is null");
+        assertNotNull(tokenResponse.getErrorDescription(), "The error description is null");
+    }
+
+    @Parameters({"redirectUris", "redirectUri", "userId", "userSecret", "clientJwksUri", "PS512_keyId", "dnName",
+            "keyStoreFile", "keyStoreSecret", "sectorIdentifierUri"})
+    @Test
+    public void tokenEndpointAuthMethodPrivateKeyJwtSigningAlgPS512(
+            final String redirectUris, final String redirectUri, final String userId, final String userSecret,
+            final String clientJwksUri, final String keyId, final String dnName, final String keyStoreFile,
+            final String keyStoreSecret, final String sectorIdentifierUri) throws Exception {
+        showTitle("tokenEndpointAuthMethodPrivateKeyJwtSigningAlgPS512");
+
+        // 1. Register client
+        RegisterRequest registerRequest = new RegisterRequest(ApplicationType.WEB, "oxAuth test app",
+                StringUtils.spaceSeparatedToList(redirectUris));
+        registerRequest.setTokenEndpointAuthMethod(AuthenticationMethod.PRIVATE_KEY_JWT);
+        registerRequest.setTokenEndpointAuthSigningAlg(SignatureAlgorithm.PS512);
+        registerRequest.setJwksUri(clientJwksUri);
+        registerRequest.setSectorIdentifierUri(sectorIdentifierUri);
+
+        RegisterClient registerClient = new RegisterClient(registrationEndpoint);
+        registerClient.setRequest(registerRequest);
+        RegisterResponse registerResponse = registerClient.exec();
+
+        showClient(registerClient);
+        assertEquals(registerResponse.getStatus(), 200, "Unexpected response code: " + registerResponse.getEntity());
+        assertNotNull(registerResponse.getClientId());
+        assertNotNull(registerResponse.getClientSecret());
+        assertNotNull(registerResponse.getRegistrationAccessToken());
+        assertNotNull(registerResponse.getClientIdIssuedAt());
+        assertNotNull(registerResponse.getClientSecretExpiresAt());
+
+        String clientId = registerResponse.getClientId();
+        String registrationAccessToken = registerResponse.getRegistrationAccessToken();
+        String registrationClientUri = registerResponse.getRegistrationClientUri();
+
+        // 2. Client read
+        RegisterRequest readClientRequest = new RegisterRequest(registrationAccessToken);
+
+        RegisterClient readClient = new RegisterClient(registrationClientUri);
+        readClient.setRequest(readClientRequest);
+        RegisterResponse readClientResponse = readClient.exec();
+
+        showClient(readClient);
+        assertEquals(readClientResponse.getStatus(), 200, "Unexpected response code: " + readClientResponse.getEntity());
+        assertNotNull(readClientResponse.getClientId());
+        assertNotNull(readClientResponse.getClientSecret());
+        assertNotNull(readClientResponse.getClientIdIssuedAt());
+        assertNotNull(readClientResponse.getClientSecretExpiresAt());
+
+        assertTrue(readClientResponse.getClaims().containsKey(TOKEN_ENDPOINT_AUTH_METHOD.toString()));
+        assertEquals(readClientResponse.getClaims().get(TOKEN_ENDPOINT_AUTH_METHOD.toString()),
+                AuthenticationMethod.PRIVATE_KEY_JWT.toString());
+        assertTrue(readClientResponse.getClaims().containsKey(TOKEN_ENDPOINT_AUTH_SIGNING_ALG.toString()));
+        assertEquals(readClientResponse.getClaims().get(TOKEN_ENDPOINT_AUTH_SIGNING_ALG.toString()),
+                SignatureAlgorithm.PS512.toString());
+        assertNotNull(readClientResponse.getClaims().get(RESPONSE_TYPES.toString()));
+        assertNotNull(readClientResponse.getClaims().get(REDIRECT_URIS.toString()));
+        assertNotNull(readClientResponse.getClaims().get(APPLICATION_TYPE.toString()));
+        assertNotNull(readClientResponse.getClaims().get(CLIENT_NAME.toString()));
+        assertNotNull(readClientResponse.getClaims().get(ID_TOKEN_SIGNED_RESPONSE_ALG.toString()));
+        assertNotNull(readClientResponse.getClaims().get(SCOPE.toString()));
+
+        // 3. Request authorization
+        List<ResponseType> responseTypes = Arrays.asList(ResponseType.CODE);
+        List<String> scopes = Arrays.asList(
+                "openid",
+                "profile",
+                "address",
+                "email");
+        String state = UUID.randomUUID().toString();
+
+        AuthorizationRequest authorizationRequest = new AuthorizationRequest(responseTypes, clientId, scopes, redirectUri, null);
+        authorizationRequest.setState(state);
+
+        AuthorizationResponse authorizationResponse = authenticateResourceOwnerAndGrantAccess(
+                authorizationEndpoint, authorizationRequest, userId, userSecret);
+
+        assertNotNull(authorizationResponse.getLocation(), "The location is null");
+        assertNotNull(authorizationResponse.getCode(), "The authorization code is null");
+        assertNotNull(authorizationResponse.getState(), "The state is null");
+        assertNotNull(authorizationResponse.getScope(), "The scope is null");
+        assertNull(authorizationResponse.getIdToken(), "The id token is not null");
+
+        String authorizationCode = authorizationResponse.getCode();
+
+        // 4. Get Access Token
+        OxAuthCryptoProvider cryptoProvider = new OxAuthCryptoProvider(keyStoreFile, keyStoreSecret, dnName);
+
+        TokenRequest tokenRequest = new TokenRequest(GrantType.AUTHORIZATION_CODE);
+        tokenRequest.setAuthenticationMethod(AuthenticationMethod.PRIVATE_KEY_JWT);
+        tokenRequest.setAlgorithm(SignatureAlgorithm.PS512);
+        tokenRequest.setCryptoProvider(cryptoProvider);
+        tokenRequest.setKeyId(keyId);
+        tokenRequest.setAudience(tokenEndpoint);
+        tokenRequest.setCode(authorizationCode);
+        tokenRequest.setRedirectUri(redirectUri);
+        tokenRequest.setAuthUsername(clientId);
+
+        TokenClient tokenClient = new TokenClient(tokenEndpoint);
+        tokenClient.setRequest(tokenRequest);
+        TokenResponse tokenResponse = tokenClient.exec();
+
+        showClient(tokenClient);
+        assertEquals(tokenResponse.getStatus(), 200, "Unexpected response code: " + tokenResponse.getStatus());
+        assertNotNull(tokenResponse.getEntity(), "The entity is null");
+        assertNotNull(tokenResponse.getAccessToken(), "The access token is null");
+        assertNotNull(tokenResponse.getExpiresIn(), "The expires in value is null");
+        assertNotNull(tokenResponse.getTokenType(), "The token type is null");
+        assertNotNull(tokenResponse.getRefreshToken(), "The refresh token is null");
+    }
+
+    @Parameters({"redirectUris", "redirectUri", "userId", "userSecret", "clientJwksUri", "PS256_keyId", "dnName",
+            "keyStoreFile", "keyStoreSecret", "sectorIdentifierUri"})
+    @Test
+    public void tokenEndpointAuthMethodPrivateKeyJwtSigningAlgPS512Fail1(
+            final String redirectUris, final String redirectUri, final String userId, final String userSecret,
+            final String clientJwksUri, final String keyId, final String dnName, final String keyStoreFile,
+            final String keyStoreSecret, final String sectorIdentifierUri) throws Exception {
+        showTitle("tokenEndpointAuthMethodPrivateKeyJwtSigningAlgPS512Fail1");
+
+        // 1. Register client
+        RegisterRequest registerRequest = new RegisterRequest(ApplicationType.WEB, "oxAuth test app",
+                StringUtils.spaceSeparatedToList(redirectUris));
+        registerRequest.setTokenEndpointAuthMethod(AuthenticationMethod.PRIVATE_KEY_JWT);
+        registerRequest.setTokenEndpointAuthSigningAlg(SignatureAlgorithm.PS512);
+        registerRequest.setJwksUri(clientJwksUri);
+        registerRequest.setSectorIdentifierUri(sectorIdentifierUri);
+
+        RegisterClient registerClient = new RegisterClient(registrationEndpoint);
+        registerClient.setRequest(registerRequest);
+        RegisterResponse registerResponse = registerClient.exec();
+
+        showClient(registerClient);
+        assertEquals(registerResponse.getStatus(), 200, "Unexpected response code: " + registerResponse.getEntity());
+        assertNotNull(registerResponse.getClientId());
+        assertNotNull(registerResponse.getClientSecret());
+        assertNotNull(registerResponse.getRegistrationAccessToken());
+        assertNotNull(registerResponse.getClientIdIssuedAt());
+        assertNotNull(registerResponse.getClientSecretExpiresAt());
+
+        String clientId = registerResponse.getClientId();
+        String registrationAccessToken = registerResponse.getRegistrationAccessToken();
+        String registrationClientUri = registerResponse.getRegistrationClientUri();
+
+        // 2. Client read
+        RegisterRequest readClientRequest = new RegisterRequest(registrationAccessToken);
+
+        RegisterClient readClient = new RegisterClient(registrationClientUri);
+        readClient.setRequest(readClientRequest);
+        RegisterResponse readClientResponse = readClient.exec();
+
+        showClient(readClient);
+        assertEquals(readClientResponse.getStatus(), 200, "Unexpected response code: " + readClientResponse.getEntity());
+        assertNotNull(readClientResponse.getClientId());
+        assertNotNull(readClientResponse.getClientSecret());
+        assertNotNull(readClientResponse.getClientIdIssuedAt());
+        assertNotNull(readClientResponse.getClientSecretExpiresAt());
+
+        assertTrue(readClientResponse.getClaims().containsKey(TOKEN_ENDPOINT_AUTH_METHOD.toString()));
+        assertEquals(readClientResponse.getClaims().get(TOKEN_ENDPOINT_AUTH_METHOD.toString()),
+                AuthenticationMethod.PRIVATE_KEY_JWT.toString());
+        assertTrue(readClientResponse.getClaims().containsKey(TOKEN_ENDPOINT_AUTH_SIGNING_ALG.toString()));
+        assertEquals(readClientResponse.getClaims().get(TOKEN_ENDPOINT_AUTH_SIGNING_ALG.toString()),
+                SignatureAlgorithm.PS512.toString());
+        assertNotNull(readClientResponse.getClaims().get(RESPONSE_TYPES.toString()));
+        assertNotNull(readClientResponse.getClaims().get(REDIRECT_URIS.toString()));
+        assertNotNull(readClientResponse.getClaims().get(APPLICATION_TYPE.toString()));
+        assertNotNull(readClientResponse.getClaims().get(CLIENT_NAME.toString()));
+        assertNotNull(readClientResponse.getClaims().get(ID_TOKEN_SIGNED_RESPONSE_ALG.toString()));
+        assertNotNull(readClientResponse.getClaims().get(SCOPE.toString()));
+
+        // 3. Request authorization
+        List<ResponseType> responseTypes = Arrays.asList(ResponseType.CODE);
+        List<String> scopes = Arrays.asList(
+                "openid",
+                "profile",
+                "address",
+                "email");
+        String state = UUID.randomUUID().toString();
+
+        AuthorizationRequest authorizationRequest = new AuthorizationRequest(responseTypes, clientId, scopes, redirectUri, null);
+        authorizationRequest.setState(state);
+
+        AuthorizationResponse authorizationResponse = authenticateResourceOwnerAndGrantAccess(
+                authorizationEndpoint, authorizationRequest, userId, userSecret);
+
+        assertNotNull(authorizationResponse.getLocation(), "The location is null");
+        assertNotNull(authorizationResponse.getCode(), "The authorization code is null");
+        assertNotNull(authorizationResponse.getState(), "The state is null");
+        assertNotNull(authorizationResponse.getScope(), "The scope is null");
+        assertNull(authorizationResponse.getIdToken(), "The id token is not null");
+
+        String authorizationCode = authorizationResponse.getCode();
+
+        // 4. Get Access Token
+        OxAuthCryptoProvider cryptoProvider = new OxAuthCryptoProvider(keyStoreFile, keyStoreSecret, dnName);
+
+        TokenRequest tokenRequest = new TokenRequest(GrantType.AUTHORIZATION_CODE);
+        tokenRequest.setAuthenticationMethod(AuthenticationMethod.PRIVATE_KEY_JWT);
+        tokenRequest.setAlgorithm(SignatureAlgorithm.RS256);
+        tokenRequest.setCryptoProvider(cryptoProvider);
+        tokenRequest.setKeyId(keyId);
+        tokenRequest.setAudience(tokenEndpoint);
+        tokenRequest.setCode(authorizationCode);
+        tokenRequest.setRedirectUri(redirectUri);
+        tokenRequest.setAuthUsername(clientId);
+
+        TokenClient tokenClient = new TokenClient(tokenEndpoint);
+        tokenClient.setRequest(tokenRequest);
+        TokenResponse tokenResponse = tokenClient.exec();
+
+        showClient(tokenClient);
+        assertEquals(tokenResponse.getStatus(), 401, "Unexpected response code: " + tokenResponse.getStatus());
+        assertNotNull(tokenResponse.getErrorType(), "The error type is null");
+        assertNotNull(tokenResponse.getErrorDescription(), "The error description is null");
+    }
+
+    @Parameters({"redirectUris", "redirectUri", "userId", "userSecret", "clientJwksUri", "RS384_keyId", "dnName",
+            "keyStoreFile", "keyStoreSecret", "sectorIdentifierUri"})
+    @Test
+    public void tokenEndpointAuthMethodPrivateKeyJwtSigningAlgPS512Fail2(
+            final String redirectUris, final String redirectUri, final String userId, final String userSecret,
+            final String clientJwksUri, final String keyId, final String dnName, final String keyStoreFile,
+            final String keyStoreSecret, final String sectorIdentifierUri) throws Exception {
+        showTitle("tokenEndpointAuthMethodPrivateKeyJwtSigningAlgPS512Fail2");
+
+        // 1. Register client
+        RegisterRequest registerRequest = new RegisterRequest(ApplicationType.WEB, "oxAuth test app",
+                StringUtils.spaceSeparatedToList(redirectUris));
+        registerRequest.setTokenEndpointAuthMethod(AuthenticationMethod.PRIVATE_KEY_JWT);
+        registerRequest.setTokenEndpointAuthSigningAlg(SignatureAlgorithm.PS512);
+        registerRequest.setJwksUri(clientJwksUri);
+        registerRequest.setSectorIdentifierUri(sectorIdentifierUri);
+
+        RegisterClient registerClient = new RegisterClient(registrationEndpoint);
+        registerClient.setRequest(registerRequest);
+        RegisterResponse registerResponse = registerClient.exec();
+
+        showClient(registerClient);
+        assertEquals(registerResponse.getStatus(), 200, "Unexpected response code: " + registerResponse.getEntity());
+        assertNotNull(registerResponse.getClientId());
+        assertNotNull(registerResponse.getClientSecret());
+        assertNotNull(registerResponse.getRegistrationAccessToken());
+        assertNotNull(registerResponse.getClientIdIssuedAt());
+        assertNotNull(registerResponse.getClientSecretExpiresAt());
+
+        String clientId = registerResponse.getClientId();
+        String registrationAccessToken = registerResponse.getRegistrationAccessToken();
+        String registrationClientUri = registerResponse.getRegistrationClientUri();
+
+        // 2. Client read
+        RegisterRequest readClientRequest = new RegisterRequest(registrationAccessToken);
+
+        RegisterClient readClient = new RegisterClient(registrationClientUri);
+        readClient.setRequest(readClientRequest);
+        RegisterResponse readClientResponse = readClient.exec();
+
+        showClient(readClient);
+        assertEquals(readClientResponse.getStatus(), 200, "Unexpected response code: " + readClientResponse.getEntity());
+        assertNotNull(readClientResponse.getClientId());
+        assertNotNull(readClientResponse.getClientSecret());
+        assertNotNull(readClientResponse.getClientIdIssuedAt());
+        assertNotNull(readClientResponse.getClientSecretExpiresAt());
+
+        assertTrue(readClientResponse.getClaims().containsKey(TOKEN_ENDPOINT_AUTH_METHOD.toString()));
+        assertEquals(readClientResponse.getClaims().get(TOKEN_ENDPOINT_AUTH_METHOD.toString()),
+                AuthenticationMethod.PRIVATE_KEY_JWT.toString());
+        assertTrue(readClientResponse.getClaims().containsKey(TOKEN_ENDPOINT_AUTH_SIGNING_ALG.toString()));
+        assertEquals(readClientResponse.getClaims().get(TOKEN_ENDPOINT_AUTH_SIGNING_ALG.toString()),
+                SignatureAlgorithm.PS512.toString());
+        assertNotNull(readClientResponse.getClaims().get(RESPONSE_TYPES.toString()));
+        assertNotNull(readClientResponse.getClaims().get(REDIRECT_URIS.toString()));
+        assertNotNull(readClientResponse.getClaims().get(APPLICATION_TYPE.toString()));
+        assertNotNull(readClientResponse.getClaims().get(CLIENT_NAME.toString()));
+        assertNotNull(readClientResponse.getClaims().get(ID_TOKEN_SIGNED_RESPONSE_ALG.toString()));
+        assertNotNull(readClientResponse.getClaims().get(SCOPE.toString()));
+
+        // 3. Request authorization
+        List<ResponseType> responseTypes = Arrays.asList(ResponseType.CODE);
+        List<String> scopes = Arrays.asList(
+                "openid",
+                "profile",
+                "address",
+                "email");
+        String state = UUID.randomUUID().toString();
+
+        AuthorizationRequest authorizationRequest = new AuthorizationRequest(responseTypes, clientId, scopes, redirectUri, null);
+        authorizationRequest.setState(state);
+
+        AuthorizationResponse authorizationResponse = authenticateResourceOwnerAndGrantAccess(
+                authorizationEndpoint, authorizationRequest, userId, userSecret);
+
+        assertNotNull(authorizationResponse.getLocation(), "The location is null");
+        assertNotNull(authorizationResponse.getCode(), "The authorization code is null");
+        assertNotNull(authorizationResponse.getState(), "The state is null");
+        assertNotNull(authorizationResponse.getScope(), "The scope is null");
+        assertNull(authorizationResponse.getIdToken(), "The id token is not null");
+
+        String authorizationCode = authorizationResponse.getCode();
+
+        // 4. Get Access Token
+        OxAuthCryptoProvider cryptoProvider = new OxAuthCryptoProvider(keyStoreFile, keyStoreSecret, dnName);
+
+        TokenRequest tokenRequest = new TokenRequest(GrantType.AUTHORIZATION_CODE);
+        tokenRequest.setAuthenticationMethod(AuthenticationMethod.PRIVATE_KEY_JWT);
+        tokenRequest.setAlgorithm(SignatureAlgorithm.RS384);
+        tokenRequest.setCryptoProvider(cryptoProvider);
+        tokenRequest.setKeyId(keyId);
+        tokenRequest.setAudience(tokenEndpoint);
+        tokenRequest.setCode(authorizationCode);
+        tokenRequest.setRedirectUri(redirectUri);
+        tokenRequest.setAuthUsername(clientId);
+
+        TokenClient tokenClient = new TokenClient(tokenEndpoint);
+        tokenClient.setRequest(tokenRequest);
+        TokenResponse tokenResponse = tokenClient.exec();
+
+        showClient(tokenClient);
+        assertEquals(tokenResponse.getStatus(), 401, "Unexpected response code: " + tokenResponse.getStatus());
+        assertNotNull(tokenResponse.getErrorType(), "The error type is null");
+        assertNotNull(tokenResponse.getErrorDescription(), "The error description is null");
+    }
+
+    @Parameters({"redirectUris", "redirectUri", "userId", "userSecret", "clientJwksUri", "ES256_keyId", "dnName",
+            "keyStoreFile", "keyStoreSecret", "sectorIdentifierUri"})
+    @Test
+    public void tokenEndpointAuthMethodPrivateKeyJwtSigningAlgPS512Fail3(
+            final String redirectUris, final String redirectUri, final String userId, final String userSecret,
+            final String clientJwksUri, final String keyId, final String dnName, final String keyStoreFile,
+            final String keyStoreSecret, final String sectorIdentifierUri) throws Exception {
+        showTitle("tokenEndpointAuthMethodPrivateKeyJwtSigningAlgPS512Fail3");
+
+        // 1. Register client
+        RegisterRequest registerRequest = new RegisterRequest(ApplicationType.WEB, "oxAuth test app",
+                StringUtils.spaceSeparatedToList(redirectUris));
+        registerRequest.setTokenEndpointAuthMethod(AuthenticationMethod.PRIVATE_KEY_JWT);
+        registerRequest.setTokenEndpointAuthSigningAlg(SignatureAlgorithm.PS512);
+        registerRequest.setJwksUri(clientJwksUri);
+        registerRequest.setSectorIdentifierUri(sectorIdentifierUri);
+
+        RegisterClient registerClient = new RegisterClient(registrationEndpoint);
+        registerClient.setRequest(registerRequest);
+        RegisterResponse registerResponse = registerClient.exec();
+
+        showClient(registerClient);
+        assertEquals(registerResponse.getStatus(), 200, "Unexpected response code: " + registerResponse.getEntity());
+        assertNotNull(registerResponse.getClientId());
+        assertNotNull(registerResponse.getClientSecret());
+        assertNotNull(registerResponse.getRegistrationAccessToken());
+        assertNotNull(registerResponse.getClientIdIssuedAt());
+        assertNotNull(registerResponse.getClientSecretExpiresAt());
+
+        String clientId = registerResponse.getClientId();
+        String registrationAccessToken = registerResponse.getRegistrationAccessToken();
+        String registrationClientUri = registerResponse.getRegistrationClientUri();
+
+        // 2. Client read
+        RegisterRequest readClientRequest = new RegisterRequest(registrationAccessToken);
+
+        RegisterClient readClient = new RegisterClient(registrationClientUri);
+        readClient.setRequest(readClientRequest);
+        RegisterResponse readClientResponse = readClient.exec();
+
+        showClient(readClient);
+        assertEquals(readClientResponse.getStatus(), 200, "Unexpected response code: " + readClientResponse.getEntity());
+        assertNotNull(readClientResponse.getClientId());
+        assertNotNull(readClientResponse.getClientSecret());
+        assertNotNull(readClientResponse.getClientIdIssuedAt());
+        assertNotNull(readClientResponse.getClientSecretExpiresAt());
+
+        assertTrue(readClientResponse.getClaims().containsKey(TOKEN_ENDPOINT_AUTH_METHOD.toString()));
+        assertEquals(readClientResponse.getClaims().get(TOKEN_ENDPOINT_AUTH_METHOD.toString()),
+                AuthenticationMethod.PRIVATE_KEY_JWT.toString());
+        assertTrue(readClientResponse.getClaims().containsKey(TOKEN_ENDPOINT_AUTH_SIGNING_ALG.toString()));
+        assertEquals(readClientResponse.getClaims().get(TOKEN_ENDPOINT_AUTH_SIGNING_ALG.toString()),
+                SignatureAlgorithm.PS512.toString());
+        assertNotNull(readClientResponse.getClaims().get(RESPONSE_TYPES.toString()));
+        assertNotNull(readClientResponse.getClaims().get(REDIRECT_URIS.toString()));
+        assertNotNull(readClientResponse.getClaims().get(APPLICATION_TYPE.toString()));
+        assertNotNull(readClientResponse.getClaims().get(CLIENT_NAME.toString()));
+        assertNotNull(readClientResponse.getClaims().get(ID_TOKEN_SIGNED_RESPONSE_ALG.toString()));
+        assertNotNull(readClientResponse.getClaims().get(SCOPE.toString()));
+
+        // 3. Request authorization
+        List<ResponseType> responseTypes = Arrays.asList(ResponseType.CODE);
+        List<String> scopes = Arrays.asList(
+                "openid",
+                "profile",
+                "address",
+                "email");
+        String state = UUID.randomUUID().toString();
+
+        AuthorizationRequest authorizationRequest = new AuthorizationRequest(responseTypes, clientId, scopes, redirectUri, null);
+        authorizationRequest.setState(state);
+
+        AuthorizationResponse authorizationResponse = authenticateResourceOwnerAndGrantAccess(
+                authorizationEndpoint, authorizationRequest, userId, userSecret);
+
+        assertNotNull(authorizationResponse.getLocation(), "The location is null");
+        assertNotNull(authorizationResponse.getCode(), "The authorization code is null");
+        assertNotNull(authorizationResponse.getState(), "The state is null");
+        assertNotNull(authorizationResponse.getScope(), "The scope is null");
+        assertNull(authorizationResponse.getIdToken(), "The id token is not null");
+
+        String authorizationCode = authorizationResponse.getCode();
+
+        // 4. Get Access Token
+        OxAuthCryptoProvider cryptoProvider = new OxAuthCryptoProvider(keyStoreFile, keyStoreSecret, dnName);
+
+        TokenRequest tokenRequest = new TokenRequest(GrantType.AUTHORIZATION_CODE);
+        tokenRequest.setAuthenticationMethod(AuthenticationMethod.PRIVATE_KEY_JWT);
+        tokenRequest.setAlgorithm(SignatureAlgorithm.ES256);
+        tokenRequest.setCryptoProvider(cryptoProvider);
+        tokenRequest.setKeyId(keyId);
+        tokenRequest.setAudience(tokenEndpoint);
+        tokenRequest.setCode(authorizationCode);
+        tokenRequest.setRedirectUri(redirectUri);
+        tokenRequest.setAuthUsername(clientId);
+
+        TokenClient tokenClient = new TokenClient(tokenEndpoint);
+        tokenClient.setRequest(tokenRequest);
+        TokenResponse tokenResponse = tokenClient.exec();
+
+        showClient(tokenClient);
+        assertEquals(tokenResponse.getStatus(), 401, "Unexpected response code: " + tokenResponse.getStatus());
+        assertNotNull(tokenResponse.getErrorType(), "The error type is null");
+        assertNotNull(tokenResponse.getErrorDescription(), "The error description is null");
+    }
+
+    @Parameters({"redirectUris", "redirectUri", "userId", "userSecret", "clientJwksUri", "ES384_keyId", "dnName",
+            "keyStoreFile", "keyStoreSecret", "sectorIdentifierUri"})
+    @Test
+    public void tokenEndpointAuthMethodPrivateKeyJwtSigningAlgPS512Fail4(
+            final String redirectUris, final String redirectUri, final String userId, final String userSecret,
+            final String clientJwksUri, final String keyId, final String dnName, final String keyStoreFile,
+            final String keyStoreSecret, final String sectorIdentifierUri) throws Exception {
+        showTitle("tokenEndpointAuthMethodPrivateKeyJwtSigningAlgPS512Fail4");
+
+        // 1. Register client
+        RegisterRequest registerRequest = new RegisterRequest(ApplicationType.WEB, "oxAuth test app",
+                StringUtils.spaceSeparatedToList(redirectUris));
+        registerRequest.setTokenEndpointAuthMethod(AuthenticationMethod.PRIVATE_KEY_JWT);
+        registerRequest.setTokenEndpointAuthSigningAlg(SignatureAlgorithm.PS512);
+        registerRequest.setJwksUri(clientJwksUri);
+        registerRequest.setSectorIdentifierUri(sectorIdentifierUri);
+
+        RegisterClient registerClient = new RegisterClient(registrationEndpoint);
+        registerClient.setRequest(registerRequest);
+        RegisterResponse registerResponse = registerClient.exec();
+
+        showClient(registerClient);
+        assertEquals(registerResponse.getStatus(), 200, "Unexpected response code: " + registerResponse.getEntity());
+        assertNotNull(registerResponse.getClientId());
+        assertNotNull(registerResponse.getClientSecret());
+        assertNotNull(registerResponse.getRegistrationAccessToken());
+        assertNotNull(registerResponse.getClientIdIssuedAt());
+        assertNotNull(registerResponse.getClientSecretExpiresAt());
+
+        String clientId = registerResponse.getClientId();
+        String registrationAccessToken = registerResponse.getRegistrationAccessToken();
+        String registrationClientUri = registerResponse.getRegistrationClientUri();
+
+        // 2. Client read
+        RegisterRequest readClientRequest = new RegisterRequest(registrationAccessToken);
+
+        RegisterClient readClient = new RegisterClient(registrationClientUri);
+        readClient.setRequest(readClientRequest);
+        RegisterResponse readClientResponse = readClient.exec();
+
+        showClient(readClient);
+        assertEquals(readClientResponse.getStatus(), 200, "Unexpected response code: " + readClientResponse.getEntity());
+        assertNotNull(readClientResponse.getClientId());
+        assertNotNull(readClientResponse.getClientSecret());
+        assertNotNull(readClientResponse.getClientIdIssuedAt());
+        assertNotNull(readClientResponse.getClientSecretExpiresAt());
+
+        assertTrue(readClientResponse.getClaims().containsKey(TOKEN_ENDPOINT_AUTH_METHOD.toString()));
+        assertEquals(readClientResponse.getClaims().get(TOKEN_ENDPOINT_AUTH_METHOD.toString()),
+                AuthenticationMethod.PRIVATE_KEY_JWT.toString());
+        assertTrue(readClientResponse.getClaims().containsKey(TOKEN_ENDPOINT_AUTH_SIGNING_ALG.toString()));
+        assertEquals(readClientResponse.getClaims().get(TOKEN_ENDPOINT_AUTH_SIGNING_ALG.toString()),
+                SignatureAlgorithm.PS512.toString());
+        assertNotNull(readClientResponse.getClaims().get(RESPONSE_TYPES.toString()));
+        assertNotNull(readClientResponse.getClaims().get(REDIRECT_URIS.toString()));
+        assertNotNull(readClientResponse.getClaims().get(APPLICATION_TYPE.toString()));
+        assertNotNull(readClientResponse.getClaims().get(CLIENT_NAME.toString()));
+        assertNotNull(readClientResponse.getClaims().get(ID_TOKEN_SIGNED_RESPONSE_ALG.toString()));
+        assertNotNull(readClientResponse.getClaims().get(SCOPE.toString()));
+
+        // 3. Request authorization
+        List<ResponseType> responseTypes = Arrays.asList(ResponseType.CODE);
+        List<String> scopes = Arrays.asList(
+                "openid",
+                "profile",
+                "address",
+                "email");
+        String state = UUID.randomUUID().toString();
+
+        AuthorizationRequest authorizationRequest = new AuthorizationRequest(responseTypes, clientId, scopes, redirectUri, null);
+        authorizationRequest.setState(state);
+
+        AuthorizationResponse authorizationResponse = authenticateResourceOwnerAndGrantAccess(
+                authorizationEndpoint, authorizationRequest, userId, userSecret);
+
+        assertNotNull(authorizationResponse.getLocation(), "The location is null");
+        assertNotNull(authorizationResponse.getCode(), "The authorization code is null");
+        assertNotNull(authorizationResponse.getState(), "The state is null");
+        assertNotNull(authorizationResponse.getScope(), "The scope is null");
+        assertNull(authorizationResponse.getIdToken(), "The id token is not null");
+
+        String authorizationCode = authorizationResponse.getCode();
+
+        // 4. Get Access Token
+        OxAuthCryptoProvider cryptoProvider = new OxAuthCryptoProvider(keyStoreFile, keyStoreSecret, dnName);
+
+        TokenRequest tokenRequest = new TokenRequest(GrantType.AUTHORIZATION_CODE);
+        tokenRequest.setAuthenticationMethod(AuthenticationMethod.PRIVATE_KEY_JWT);
+        tokenRequest.setAlgorithm(SignatureAlgorithm.ES384);
+        tokenRequest.setCryptoProvider(cryptoProvider);
+        tokenRequest.setKeyId(keyId);
+        tokenRequest.setAudience(tokenEndpoint);
+        tokenRequest.setCode(authorizationCode);
+        tokenRequest.setRedirectUri(redirectUri);
+        tokenRequest.setAuthUsername(clientId);
+
+        TokenClient tokenClient = new TokenClient(tokenEndpoint);
+        tokenClient.setRequest(tokenRequest);
+        TokenResponse tokenResponse = tokenClient.exec();
+
+        showClient(tokenClient);
+        assertEquals(tokenResponse.getStatus(), 401, "Unexpected response code: " + tokenResponse.getStatus());
+        assertNotNull(tokenResponse.getErrorType(), "The error type is null");
+        assertNotNull(tokenResponse.getErrorDescription(), "The error description is null");
+    }
+
+    @Parameters({"redirectUris", "redirectUri", "userId", "userSecret", "clientJwksUri", "ES512_keyId", "dnName",
+            "keyStoreFile", "keyStoreSecret", "sectorIdentifierUri"})
+    @Test
+    public void tokenEndpointAuthMethodPrivateKeyJwtSigningAlgPS512Fail5(
+            final String redirectUris, final String redirectUri, final String userId, final String userSecret,
+            final String clientJwksUri, final String keyId, final String dnName, final String keyStoreFile,
+            final String keyStoreSecret, final String sectorIdentifierUri) throws Exception {
+        showTitle("tokenEndpointAuthMethodPrivateKeyJwtSigningAlgPS512Fail5");
+
+        // 1. Register client
+        RegisterRequest registerRequest = new RegisterRequest(ApplicationType.WEB, "oxAuth test app",
+                StringUtils.spaceSeparatedToList(redirectUris));
+        registerRequest.setTokenEndpointAuthMethod(AuthenticationMethod.PRIVATE_KEY_JWT);
+        registerRequest.setTokenEndpointAuthSigningAlg(SignatureAlgorithm.PS512);
+        registerRequest.setJwksUri(clientJwksUri);
+        registerRequest.setSectorIdentifierUri(sectorIdentifierUri);
+
+        RegisterClient registerClient = new RegisterClient(registrationEndpoint);
+        registerClient.setRequest(registerRequest);
+        RegisterResponse registerResponse = registerClient.exec();
+
+        showClient(registerClient);
+        assertEquals(registerResponse.getStatus(), 200, "Unexpected response code: " + registerResponse.getEntity());
+        assertNotNull(registerResponse.getClientId());
+        assertNotNull(registerResponse.getClientSecret());
+        assertNotNull(registerResponse.getRegistrationAccessToken());
+        assertNotNull(registerResponse.getClientIdIssuedAt());
+        assertNotNull(registerResponse.getClientSecretExpiresAt());
+
+        String clientId = registerResponse.getClientId();
+        String registrationAccessToken = registerResponse.getRegistrationAccessToken();
+        String registrationClientUri = registerResponse.getRegistrationClientUri();
+
+        // 2. Client read
+        RegisterRequest readClientRequest = new RegisterRequest(registrationAccessToken);
+
+        RegisterClient readClient = new RegisterClient(registrationClientUri);
+        readClient.setRequest(readClientRequest);
+        RegisterResponse readClientResponse = readClient.exec();
+
+        showClient(readClient);
+        assertEquals(readClientResponse.getStatus(), 200, "Unexpected response code: " + readClientResponse.getEntity());
+        assertNotNull(readClientResponse.getClientId());
+        assertNotNull(readClientResponse.getClientSecret());
+        assertNotNull(readClientResponse.getClientIdIssuedAt());
+        assertNotNull(readClientResponse.getClientSecretExpiresAt());
+
+        assertTrue(readClientResponse.getClaims().containsKey(TOKEN_ENDPOINT_AUTH_METHOD.toString()));
+        assertEquals(readClientResponse.getClaims().get(TOKEN_ENDPOINT_AUTH_METHOD.toString()),
+                AuthenticationMethod.PRIVATE_KEY_JWT.toString());
+        assertTrue(readClientResponse.getClaims().containsKey(TOKEN_ENDPOINT_AUTH_SIGNING_ALG.toString()));
+        assertEquals(readClientResponse.getClaims().get(TOKEN_ENDPOINT_AUTH_SIGNING_ALG.toString()),
+                SignatureAlgorithm.PS512.toString());
+        assertNotNull(readClientResponse.getClaims().get(RESPONSE_TYPES.toString()));
+        assertNotNull(readClientResponse.getClaims().get(REDIRECT_URIS.toString()));
+        assertNotNull(readClientResponse.getClaims().get(APPLICATION_TYPE.toString()));
+        assertNotNull(readClientResponse.getClaims().get(CLIENT_NAME.toString()));
+        assertNotNull(readClientResponse.getClaims().get(ID_TOKEN_SIGNED_RESPONSE_ALG.toString()));
+        assertNotNull(readClientResponse.getClaims().get(SCOPE.toString()));
+
+        // 3. Request authorization
+        List<ResponseType> responseTypes = Arrays.asList(ResponseType.CODE);
+        List<String> scopes = Arrays.asList(
+                "openid",
+                "profile",
+                "address",
+                "email");
+        String state = UUID.randomUUID().toString();
+
+        AuthorizationRequest authorizationRequest = new AuthorizationRequest(responseTypes, clientId, scopes, redirectUri, null);
+        authorizationRequest.setState(state);
+
+        AuthorizationResponse authorizationResponse = authenticateResourceOwnerAndGrantAccess(
+                authorizationEndpoint, authorizationRequest, userId, userSecret);
+
+        assertNotNull(authorizationResponse.getLocation(), "The location is null");
+        assertNotNull(authorizationResponse.getCode(), "The authorization code is null");
+        assertNotNull(authorizationResponse.getState(), "The state is null");
+        assertNotNull(authorizationResponse.getScope(), "The scope is null");
+        assertNull(authorizationResponse.getIdToken(), "The id token is not null");
+
+        String authorizationCode = authorizationResponse.getCode();
+
+        // 4. Get Access Token
+        OxAuthCryptoProvider cryptoProvider = new OxAuthCryptoProvider(keyStoreFile, keyStoreSecret, dnName);
+
+        TokenRequest tokenRequest = new TokenRequest(GrantType.AUTHORIZATION_CODE);
+        tokenRequest.setAuthenticationMethod(AuthenticationMethod.PRIVATE_KEY_JWT);
+        tokenRequest.setAlgorithm(SignatureAlgorithm.ES512);
+        tokenRequest.setCryptoProvider(cryptoProvider);
+        tokenRequest.setKeyId(keyId);
+        tokenRequest.setAudience(tokenEndpoint);
+        tokenRequest.setCode(authorizationCode);
+        tokenRequest.setRedirectUri(redirectUri);
+        tokenRequest.setAuthUsername(clientId);
+
+        TokenClient tokenClient = new TokenClient(tokenEndpoint);
+        tokenClient.setRequest(tokenRequest);
+        TokenResponse tokenResponse = tokenClient.exec();
+
+        showClient(tokenClient);
+        assertEquals(tokenResponse.getStatus(), 401, "Unexpected response code: " + tokenResponse.getStatus());
+        assertNotNull(tokenResponse.getErrorType(), "The error type is null");
+        assertNotNull(tokenResponse.getErrorDescription(), "The error description is null");
+    }
+}
\ No newline at end of file
diff --git a/oxAuth/Client/src/test/java/org/gluu/oxauth/ws/rs/TokenRestWebServiceHttpTest.java b/oxAuth/Client/src/test/java/org/gluu/oxauth/ws/rs/TokenRestWebServiceHttpTest.java
new file mode 100644
index 00000000..eb40280e
--- /dev/null
+++ b/oxAuth/Client/src/test/java/org/gluu/oxauth/ws/rs/TokenRestWebServiceHttpTest.java
@@ -0,0 +1,1460 @@
+/*
+ * oxAuth is available under the MIT License (2008). See http://opensource.org/licenses/MIT for full text.
+ *
+ * Copyright (c) 2014, Gluu
+ */
+
+package org.gluu.oxauth.ws.rs;
+
+import static org.testng.Assert.assertEquals;
+import static org.testng.Assert.assertNotNull;
+
+import java.util.ArrayList;
+import java.util.Arrays;
+import java.util.List;
+
+import org.gluu.oxauth.BaseTest;
+import org.gluu.oxauth.client.RegisterClient;
+import org.gluu.oxauth.client.RegisterRequest;
+import org.gluu.oxauth.client.RegisterResponse;
+import org.gluu.oxauth.client.TokenClient;
+import org.gluu.oxauth.client.TokenRequest;
+import org.gluu.oxauth.client.TokenResponse;
+import org.gluu.oxauth.model.common.AuthenticationMethod;
+import org.gluu.oxauth.model.common.GrantType;
+import org.gluu.oxauth.model.common.ResponseType;
+import org.gluu.oxauth.model.crypto.OxAuthCryptoProvider;
+import org.gluu.oxauth.model.crypto.signature.SignatureAlgorithm;
+import org.gluu.oxauth.model.register.ApplicationType;
+import org.gluu.oxauth.model.util.StringUtils;
+import org.testng.annotations.Parameters;
+import org.testng.annotations.Test;
+
+/**
+ * Functional tests for Token Web Services (HTTP)
+ *
+ * @author Javier Rojas Blum
+ * @version March 9, 2019
+ */
+public class TokenRestWebServiceHttpTest extends BaseTest {
+
+    @Parameters({"redirectUris", "redirectUri", "sectorIdentifierUri"})
+    @Test
+    public void requestAccessTokenFail(final String redirectUris, final String redirectUri, final String sectorIdentifierUri) throws Exception {
+        showTitle("requestAccessTokenFail");
+
+        List<ResponseType> responseTypes = new ArrayList<ResponseType>();
+
+        // 1. Register client
+        RegisterRequest registerRequest = new RegisterRequest(ApplicationType.WEB, "oxAuth test app",
+                StringUtils.spaceSeparatedToList(redirectUris));
+        registerRequest.setResponseTypes(responseTypes);
+        registerRequest.setSectorIdentifierUri(sectorIdentifierUri);
+
+        RegisterClient registerClient = new RegisterClient(registrationEndpoint);
+        registerClient.setRequest(registerRequest);
+        RegisterResponse registerResponse = registerClient.exec();
+
+        showClient(registerClient);
+        assertEquals(registerResponse.getStatus(), 200, "Unexpected response code: " + registerResponse.getEntity());
+        assertNotNull(registerResponse.getClientId());
+        assertNotNull(registerResponse.getClientSecret());
+        assertNotNull(registerResponse.getRegistrationAccessToken());
+        assertNotNull(registerResponse.getClientIdIssuedAt());
+        assertNotNull(registerResponse.getClientSecretExpiresAt());
+
+        String clientId = registerResponse.getClientId();
+        String clientSecret = registerResponse.getClientSecret();
+
+        // 2. Request with invalid Authorization Code
+        String code = "INVALID_AUTHORIZATION_CODE";
+
+        TokenClient tokenClient = new TokenClient(tokenEndpoint);
+        TokenResponse response = tokenClient.execAuthorizationCode(code, redirectUri, clientId, clientSecret);
+
+        showClient(tokenClient);
+        assertEquals(response.getStatus(), 400, "Unexpected response code: " + response.getStatus());
+        assertNotNull(response.getEntity(), "The entity is null");
+        assertNotNull(response.getErrorType(), "The error type is null");
+        assertNotNull(response.getErrorDescription(), "The error description is null");
+    }
+
+    @Parameters({"userId", "userSecret", "redirectUris", "sectorIdentifierUri"})
+    @Test
+    public void requestAccessTokenPassword(
+            final String userId, final String userSecret, final String redirectUris, final String sectorIdentifierUri) throws Exception {
+        showTitle("requestAccessTokenPassword");
+
+        List<ResponseType> responseTypes = new ArrayList<ResponseType>();
+        List<GrantType> grantTypes = Arrays.asList(
+                GrantType.RESOURCE_OWNER_PASSWORD_CREDENTIALS
+        );
+
+        // 1. Register client
+        RegisterRequest registerRequest = new RegisterRequest(ApplicationType.WEB, "oxAuth test app",
+                StringUtils.spaceSeparatedToList(redirectUris));
+        registerRequest.setResponseTypes(responseTypes);
+        registerRequest.setGrantTypes(grantTypes);
+        registerRequest.setSectorIdentifierUri(sectorIdentifierUri);
+
+        RegisterClient registerClient = new RegisterClient(registrationEndpoint);
+        registerClient.setRequest(registerRequest);
+        RegisterResponse registerResponse = registerClient.exec();
+
+        showClient(registerClient);
+        assertEquals(registerResponse.getStatus(), 200, "Unexpected response code: " + registerResponse.getEntity());
+        assertNotNull(registerResponse.getClientId());
+        assertNotNull(registerResponse.getClientSecret());
+        assertNotNull(registerResponse.getRegistrationAccessToken());
+        assertNotNull(registerResponse.getClientIdIssuedAt());
+        assertNotNull(registerResponse.getClientSecretExpiresAt());
+
+        String clientId = registerResponse.getClientId();
+        String clientSecret = registerResponse.getClientSecret();
+
+        // 2. Request Resource Owner Credentials Grant
+        String username = userId;
+        String password = userSecret;
+
+        TokenClient tokenClient = new TokenClient(tokenEndpoint);
+        TokenResponse tokenResponse = tokenClient.execResourceOwnerPasswordCredentialsGrant(username, password, null,
+                clientId, clientSecret);
+
+        showClient(tokenClient);
+        assertEquals(tokenResponse.getStatus(), 200, "Unexpected response code: " + tokenResponse.getStatus());
+        assertNotNull(tokenResponse.getEntity(), "The entity is null");
+        assertNotNull(tokenResponse.getAccessToken(), "The access token is null");
+        assertNotNull(tokenResponse.getTokenType(), "The token type is null");
+    }
+
+    @Parameters({"userId", "userSecret", "redirectUris", "sectorIdentifierUri"})
+    @Test
+    public void requestAccessTokenPasswordFail(
+            final String userId, final String userSecret, final String redirectUris, final String sectorIdentifierUri) throws Exception {
+        showTitle("requestAccessTokenPasswordFail");
+
+        List<ResponseType> responseTypes = new ArrayList<ResponseType>();
+        List<GrantType> grantTypes = Arrays.asList(
+                GrantType.RESOURCE_OWNER_PASSWORD_CREDENTIALS
+        );
+
+        // 1. Register client
+        RegisterRequest registerRequest = new RegisterRequest(ApplicationType.WEB, "oxAuth test app",
+                StringUtils.spaceSeparatedToList(redirectUris));
+        registerRequest.setResponseTypes(responseTypes);
+        registerRequest.setGrantTypes(grantTypes);
+        registerRequest.setSectorIdentifierUri(sectorIdentifierUri);
+
+        RegisterClient registerClient = new RegisterClient(registrationEndpoint);
+        registerClient.setRequest(registerRequest);
+        RegisterResponse registerResponse = registerClient.exec();
+
+        showClient(registerClient);
+        assertEquals(registerResponse.getStatus(), 200, "Unexpected response code: " + registerResponse.getEntity());
+        assertNotNull(registerResponse.getClientId());
+        assertNotNull(registerResponse.getClientSecret());
+        assertNotNull(registerResponse.getRegistrationAccessToken());
+        assertNotNull(registerResponse.getClientIdIssuedAt());
+        assertNotNull(registerResponse.getClientSecretExpiresAt());
+
+        String clientId = registerResponse.getClientId();
+        String clientSecret = registerResponse.getClientSecret();
+
+        // 2. Request Resource Owner Credentials Grant
+        String username = userId;
+        String password = "BAD_PASSWORD";
+
+        TokenClient tokenClient = new TokenClient(tokenEndpoint);
+        TokenResponse tokenResponse = tokenClient.execResourceOwnerPasswordCredentialsGrant(username, password, null,
+                clientId, clientSecret);
+
+        showClient(tokenClient);
+        assertEquals(tokenResponse.getStatus(), 401, "Unexpected response code: " + tokenResponse.getStatus());
+        assertNotNull(tokenResponse.getEntity(), "The entity is null");
+        assertNotNull(tokenResponse.getErrorType(), "The error type is null");
+        assertNotNull(tokenResponse.getErrorDescription(), "The error description is null");
+    }
+
+    @Parameters({"redirectUris", "userId", "userSecret", "sectorIdentifierUri"})
+    @Test
+    public void requestAccessTokenWithClientSecretPost(
+            final String redirectUris, final String userId, final String userSecret, final String sectorIdentifierUri) throws Exception {
+        showTitle("requestAccessTokenWithClientSecretPost");
+
+        List<GrantType> grantTypes = Arrays.asList(
+                GrantType.RESOURCE_OWNER_PASSWORD_CREDENTIALS
+        );
+
+        // 1. Register client
+        RegisterRequest registerRequest = new RegisterRequest(ApplicationType.WEB, "oxAuth test app",
+                StringUtils.spaceSeparatedToList(redirectUris));
+        registerRequest.setTokenEndpointAuthMethod(AuthenticationMethod.CLIENT_SECRET_POST);
+        registerRequest.setSectorIdentifierUri(sectorIdentifierUri);
+        registerRequest.setGrantTypes(grantTypes);
+
+        RegisterClient registerClient = new RegisterClient(registrationEndpoint);
+        registerClient.setRequest(registerRequest);
+        RegisterResponse registerResponse = registerClient.exec();
+
+        showClient(registerClient);
+        assertEquals(registerResponse.getStatus(), 200, "Unexpected response code: " + registerResponse.getEntity());
+        assertNotNull(registerResponse.getClientId());
+        assertNotNull(registerResponse.getClientSecret());
+        assertNotNull(registerResponse.getRegistrationAccessToken());
+        assertNotNull(registerResponse.getClientIdIssuedAt());
+        assertNotNull(registerResponse.getClientSecretExpiresAt());
+
+        String clientId = registerResponse.getClientId();
+        String clientSecret = registerResponse.getClientSecret();
+
+        TokenRequest request = new TokenRequest(GrantType.RESOURCE_OWNER_PASSWORD_CREDENTIALS);
+        request.setUsername(userId);
+        request.setPassword(userSecret);
+        request.setAuthUsername(clientId);
+        request.setAuthPassword(clientSecret);
+        request.setAuthenticationMethod(AuthenticationMethod.CLIENT_SECRET_POST);
+
+        TokenClient tokenClient = new TokenClient(tokenEndpoint);
+        tokenClient.setRequest(request);
+        TokenResponse response1 = tokenClient.exec();
+
+        showClient(tokenClient);
+        assertEquals(response1.getStatus(), 200, "Unexpected response code: " + response1.getStatus());
+        assertNotNull(response1.getEntity(), "The entity is null");
+        assertNotNull(response1.getAccessToken(), "The access token is null");
+        assertNotNull(response1.getTokenType(), "The token type is null");
+    }
+
+    @Parameters({"redirectUris", "userId", "userSecret", "dnName", "keyStoreFile", "keyStoreSecret", "sectorIdentifierUri"})
+    @Test
+    public void requestAccessTokenWithClientSecretJwtHS256(
+            final String redirectUris, final String userId, final String userSecret, final String dnName,
+            final String keyStoreFile, final String keyStoreSecret, final String sectorIdentifierUri) throws Exception {
+        showTitle("requestAccessTokenWithClientSecretJwtHS256");
+
+        List<GrantType> grantTypes = Arrays.asList(
+                GrantType.RESOURCE_OWNER_PASSWORD_CREDENTIALS
+        );
+
+        // Register client
+        RegisterRequest registerRequest = new RegisterRequest(ApplicationType.WEB, "oxAuth test app",
+                StringUtils.spaceSeparatedToList(redirectUris));
+        registerRequest.setTokenEndpointAuthMethod(AuthenticationMethod.CLIENT_SECRET_JWT);
+        registerRequest.setSectorIdentifierUri(sectorIdentifierUri);
+        registerRequest.setGrantTypes(grantTypes);
+
+        RegisterClient registerClient = new RegisterClient(registrationEndpoint);
+        registerClient.setRequest(registerRequest);
+        RegisterResponse registerResponse = registerClient.exec();
+
+        showClient(registerClient);
+        assertEquals(registerResponse.getStatus(), 200, "Unexpected response code: " + registerResponse.getEntity());
+        assertNotNull(registerResponse.getClientId());
+        assertNotNull(registerResponse.getClientSecret());
+        assertNotNull(registerResponse.getRegistrationAccessToken());
+        assertNotNull(registerResponse.getClientIdIssuedAt());
+        assertNotNull(registerResponse.getClientSecretExpiresAt());
+
+        String clientId = registerResponse.getClientId();
+        String clientSecret = registerResponse.getClientSecret();
+
+        OxAuthCryptoProvider cryptoProvider = new OxAuthCryptoProvider(keyStoreFile, keyStoreSecret, dnName);
+
+        TokenRequest tokenRequest = new TokenRequest(GrantType.RESOURCE_OWNER_PASSWORD_CREDENTIALS);
+        tokenRequest.setUsername(userId);
+        tokenRequest.setPassword(userSecret);
+        tokenRequest.setAuthUsername(clientId);
+        tokenRequest.setAuthPassword(clientSecret);
+        tokenRequest.setAuthenticationMethod(AuthenticationMethod.CLIENT_SECRET_JWT);
+        tokenRequest.setCryptoProvider(cryptoProvider);
+        tokenRequest.setAudience(tokenEndpoint);
+
+        TokenClient tokenClient = new TokenClient(tokenEndpoint);
+        tokenClient.setRequest(tokenRequest);
+        TokenResponse response1 = tokenClient.exec();
+
+        showClient(tokenClient);
+        assertEquals(response1.getStatus(), 200, "Unexpected response code: " + response1.getStatus());
+        assertNotNull(response1.getEntity(), "The entity is null");
+        assertNotNull(response1.getAccessToken(), "The access token is null");
+        assertNotNull(response1.getTokenType(), "The token type is null");
+    }
+
+    @Parameters({"redirectUris", "userId", "userSecret", "dnName", "keyStoreFile", "keyStoreSecret", "sectorIdentifierUri"})
+    @Test
+    public void requestAccessTokenWithClientSecretJwtHS384(
+            final String redirectUris, final String userId, final String userSecret, final String dnName,
+            final String keyStoreFile, final String keyStoreSecret, final String sectorIdentifierUri) throws Exception {
+        showTitle("requestAccessTokenWithClientSecretJwtHS384");
+
+        List<GrantType> grantTypes = Arrays.asList(
+                GrantType.RESOURCE_OWNER_PASSWORD_CREDENTIALS
+        );
+
+        // Register client
+        RegisterRequest registerRequest = new RegisterRequest(ApplicationType.WEB, "oxAuth test app",
+                StringUtils.spaceSeparatedToList(redirectUris));
+        registerRequest.setTokenEndpointAuthMethod(AuthenticationMethod.CLIENT_SECRET_JWT);
+        registerRequest.setSectorIdentifierUri(sectorIdentifierUri);
+        registerRequest.setGrantTypes(grantTypes);
+
+        RegisterClient registerClient = new RegisterClient(registrationEndpoint);
+        registerClient.setRequest(registerRequest);
+        RegisterResponse registerResponse = registerClient.exec();
+
+        showClient(registerClient);
+        assertEquals(registerResponse.getStatus(), 200, "Unexpected response code: " + registerResponse.getEntity());
+        assertNotNull(registerResponse.getClientId());
+        assertNotNull(registerResponse.getClientSecret());
+        assertNotNull(registerResponse.getRegistrationAccessToken());
+        assertNotNull(registerResponse.getClientIdIssuedAt());
+        assertNotNull(registerResponse.getClientSecretExpiresAt());
+
+        String clientId = registerResponse.getClientId();
+        String clientSecret = registerResponse.getClientSecret();
+
+        OxAuthCryptoProvider cryptoProvider = new OxAuthCryptoProvider(keyStoreFile, keyStoreSecret, dnName);
+
+        TokenRequest tokenRequest = new TokenRequest(GrantType.RESOURCE_OWNER_PASSWORD_CREDENTIALS);
+        tokenRequest.setUsername(userId);
+        tokenRequest.setPassword(userSecret);
+        tokenRequest.setAuthUsername(clientId);
+        tokenRequest.setAuthPassword(clientSecret);
+        tokenRequest.setAuthenticationMethod(AuthenticationMethod.CLIENT_SECRET_JWT);
+        tokenRequest.setCryptoProvider(cryptoProvider);
+        tokenRequest.setAlgorithm(SignatureAlgorithm.HS384);
+        tokenRequest.setAudience(tokenEndpoint);
+
+        TokenClient tokenClient = new TokenClient(tokenEndpoint);
+        tokenClient.setRequest(tokenRequest);
+        TokenResponse response1 = tokenClient.exec();
+
+        showClient(tokenClient);
+        assertEquals(response1.getStatus(), 200, "Unexpected response code: " + response1.getStatus());
+        assertNotNull(response1.getEntity(), "The entity is null");
+        assertNotNull(response1.getAccessToken(), "The access token is null");
+        assertNotNull(response1.getTokenType(), "The token type is null");
+    }
+
+    @Parameters({"redirectUris", "userId", "userSecret", "dnName", "keyStoreFile", "keyStoreSecret", "sectorIdentifierUri"})
+    @Test
+    public void requestAccessTokenWithClientSecretJwtHS512(
+            final String redirectUris, final String userId, final String userSecret, final String dnName,
+            final String keyStoreFile, final String keyStoreSecret, final String sectorIdentifierUri) throws Exception {
+        showTitle("requestAccessTokenWithClientSecretJwtHS512");
+
+        List<GrantType> grantTypes = Arrays.asList(
+                GrantType.RESOURCE_OWNER_PASSWORD_CREDENTIALS
+        );
+
+        // Register client
+        RegisterRequest registerRequest = new RegisterRequest(ApplicationType.WEB, "oxAuth test app",
+                StringUtils.spaceSeparatedToList(redirectUris));
+        registerRequest.setTokenEndpointAuthMethod(AuthenticationMethod.CLIENT_SECRET_JWT);
+        registerRequest.setSectorIdentifierUri(sectorIdentifierUri);
+        registerRequest.setGrantTypes(grantTypes);
+
+        RegisterClient registerClient = new RegisterClient(registrationEndpoint);
+        registerClient.setRequest(registerRequest);
+        RegisterResponse registerResponse = registerClient.exec();
+
+        showClient(registerClient);
+        assertEquals(registerResponse.getStatus(), 200, "Unexpected response code: " + registerResponse.getEntity());
+        assertNotNull(registerResponse.getClientId());
+        assertNotNull(registerResponse.getClientSecret());
+        assertNotNull(registerResponse.getRegistrationAccessToken());
+        assertNotNull(registerResponse.getClientIdIssuedAt());
+        assertNotNull(registerResponse.getClientSecretExpiresAt());
+
+        String clientId = registerResponse.getClientId();
+        String clientSecret = registerResponse.getClientSecret();
+
+        OxAuthCryptoProvider cryptoProvider = new OxAuthCryptoProvider(keyStoreFile, keyStoreSecret, dnName);
+
+        TokenRequest tokenRequest = new TokenRequest(GrantType.RESOURCE_OWNER_PASSWORD_CREDENTIALS);
+        tokenRequest.setUsername(userId);
+        tokenRequest.setPassword(userSecret);
+        tokenRequest.setAuthUsername(clientId);
+        tokenRequest.setAuthPassword(clientSecret);
+        tokenRequest.setAuthenticationMethod(AuthenticationMethod.CLIENT_SECRET_JWT);
+        tokenRequest.setCryptoProvider(cryptoProvider);
+        tokenRequest.setAlgorithm(SignatureAlgorithm.HS512);
+        tokenRequest.setAudience(tokenEndpoint);
+
+        TokenClient tokenClient = new TokenClient(tokenEndpoint);
+        tokenClient.setRequest(tokenRequest);
+        TokenResponse response1 = tokenClient.exec();
+
+        showClient(tokenClient);
+        assertEquals(response1.getStatus(), 200, "Unexpected response code: " + response1.getStatus());
+        assertNotNull(response1.getEntity(), "The entity is null");
+        assertNotNull(response1.getAccessToken(), "The access token is null");
+        assertNotNull(response1.getTokenType(), "The token type is null");
+    }
+
+    @Parameters({"userId", "userSecret", "redirectUris", "clientJwksUri", "RS256_keyId", "dnName", "keyStoreFile",
+            "keyStoreSecret", "sectorIdentifierUri"})
+    @Test
+    public void requestAccessTokenWithClientSecretJwtRS256(
+            final String userId, final String userSecret, final String redirectUris, final String jwksUri,
+            final String keyId, final String dnName, final String keyStoreFile, final String keyStoreSecret,
+            final String sectorIdentifierUri) throws Exception {
+        showTitle("requestAccessTokenWithClientSecretJwtRS256");
+
+        List<GrantType> grantTypes = Arrays.asList(
+                GrantType.RESOURCE_OWNER_PASSWORD_CREDENTIALS
+        );
+
+        // 1. Dynamic Client Registration
+        RegisterRequest registerRequest = new RegisterRequest(ApplicationType.WEB, "oxAuth test app",
+                StringUtils.spaceSeparatedToList(redirectUris));
+        registerRequest.setJwksUri(jwksUri);
+        registerRequest.setTokenEndpointAuthMethod(AuthenticationMethod.PRIVATE_KEY_JWT);
+        registerRequest.addCustomAttribute("oxAuthTrustedClient", "true");
+        registerRequest.setSectorIdentifierUri(sectorIdentifierUri);
+        registerRequest.setGrantTypes(grantTypes);
+
+        RegisterClient registerClient = new RegisterClient(registrationEndpoint);
+        registerClient.setRequest(registerRequest);
+        RegisterResponse registerResponse = registerClient.exec();
+
+        showClient(registerClient);
+        assertEquals(registerResponse.getStatus(), 200, "Unexpected response code: " + registerResponse.getEntity());
+        assertNotNull(registerResponse.getClientId());
+        assertNotNull(registerResponse.getClientSecret());
+        assertNotNull(registerResponse.getRegistrationAccessToken());
+        assertNotNull(registerResponse.getClientSecretExpiresAt());
+
+        String clientId = registerResponse.getClientId();
+        String clientSecret = registerResponse.getClientSecret();
+
+        // 2. Request authorization
+        OxAuthCryptoProvider cryptoProvider = new OxAuthCryptoProvider(keyStoreFile, keyStoreSecret, dnName);
+
+        TokenRequest tokenRequest = new TokenRequest(GrantType.RESOURCE_OWNER_PASSWORD_CREDENTIALS);
+        tokenRequest.setUsername(userId);
+        tokenRequest.setPassword(userSecret);
+
+        tokenRequest.setAuthUsername(clientId);
+        tokenRequest.setAuthPassword(clientSecret);
+        tokenRequest.setAuthenticationMethod(AuthenticationMethod.PRIVATE_KEY_JWT);
+        tokenRequest.setAlgorithm(SignatureAlgorithm.RS256);
+        tokenRequest.setCryptoProvider(cryptoProvider);
+        tokenRequest.setKeyId(keyId);
+        tokenRequest.setAudience(tokenEndpoint);
+
+        TokenClient tokenClient = new TokenClient(tokenEndpoint);
+        tokenClient.setRequest(tokenRequest);
+        TokenResponse tokenResponse = tokenClient.exec();
+
+        showClient(tokenClient);
+        assertEquals(tokenResponse.getStatus(), 200, "Unexpected response code: " + tokenResponse.getStatus());
+        assertNotNull(tokenResponse.getEntity(), "The entity is null");
+        assertNotNull(tokenResponse.getAccessToken(), "The access token is null");
+        assertNotNull(tokenResponse.getTokenType(), "The token type is null");
+    }
+
+    @Parameters({"userId", "userSecret", "redirectUris", "clientJwksUri", "RS384_keyId", "dnName", "keyStoreFile",
+            "keyStoreSecret", "sectorIdentifierUri"})
+    @Test
+    public void requestAccessTokenWithClientSecretJwtRS384(
+            final String userId, final String userSecret, final String redirectUris, final String jwksUri,
+            final String keyId, final String dnName, final String keyStoreFile, final String keyStoreSecret,
+            final String sectorIdentifierUri) throws Exception {
+        showTitle("requestAccessTokenWithClientSecretJwtRS384");
+
+        List<GrantType> grantTypes = Arrays.asList(
+                GrantType.RESOURCE_OWNER_PASSWORD_CREDENTIALS
+        );
+
+        // 1. Dynamic Client Registration
+        RegisterRequest registerRequest = new RegisterRequest(ApplicationType.WEB, "oxAuth test app",
+                StringUtils.spaceSeparatedToList(redirectUris));
+        registerRequest.setJwksUri(jwksUri);
+        registerRequest.setTokenEndpointAuthMethod(AuthenticationMethod.PRIVATE_KEY_JWT);
+        registerRequest.addCustomAttribute("oxAuthTrustedClient", "true");
+        registerRequest.setSectorIdentifierUri(sectorIdentifierUri);
+        registerRequest.setGrantTypes(grantTypes);
+
+        RegisterClient registerClient = new RegisterClient(registrationEndpoint);
+        registerClient.setRequest(registerRequest);
+        RegisterResponse registerResponse = registerClient.exec();
+
+        showClient(registerClient);
+        assertEquals(registerResponse.getStatus(), 200, "Unexpected response code: " + registerResponse.getEntity());
+        assertNotNull(registerResponse.getClientId());
+        assertNotNull(registerResponse.getClientSecret());
+        assertNotNull(registerResponse.getRegistrationAccessToken());
+        assertNotNull(registerResponse.getClientSecretExpiresAt());
+
+        String clientId = registerResponse.getClientId();
+        String clientSecret = registerResponse.getClientSecret();
+
+        // 2. Request authorization
+        OxAuthCryptoProvider cryptoProvider = new OxAuthCryptoProvider(keyStoreFile, keyStoreSecret, dnName);
+
+        TokenRequest tokenRequest = new TokenRequest(GrantType.RESOURCE_OWNER_PASSWORD_CREDENTIALS);
+        tokenRequest.setUsername(userId);
+        tokenRequest.setPassword(userSecret);
+
+        tokenRequest.setAuthUsername(clientId);
+        tokenRequest.setAuthPassword(clientSecret);
+        tokenRequest.setAuthenticationMethod(AuthenticationMethod.PRIVATE_KEY_JWT);
+        tokenRequest.setAlgorithm(SignatureAlgorithm.RS384);
+        tokenRequest.setCryptoProvider(cryptoProvider);
+        tokenRequest.setKeyId(keyId);
+        tokenRequest.setAudience(tokenEndpoint);
+
+        TokenClient tokenClient = new TokenClient(tokenEndpoint);
+        tokenClient.setRequest(tokenRequest);
+        TokenResponse tokenResponse = tokenClient.exec();
+
+        showClient(tokenClient);
+        assertEquals(tokenResponse.getStatus(), 200, "Unexpected response code: " + tokenResponse.getStatus());
+        assertNotNull(tokenResponse.getEntity(), "The entity is null");
+        assertNotNull(tokenResponse.getAccessToken(), "The access token is null");
+        assertNotNull(tokenResponse.getTokenType(), "The token type is null");
+    }
+
+    @Parameters({"userId", "userSecret", "redirectUris", "clientJwksUri", "RS512_keyId", "dnName", "keyStoreFile",
+            "keyStoreSecret", "sectorIdentifierUri"})
+    @Test
+    public void requestAccessTokenWithClientSecretJwtRS512(
+            final String userId, final String userSecret, final String redirectUris, final String jwksUri,
+            final String keyId, final String dnName, final String keyStoreFile, final String keyStoreSecret,
+            final String sectorIdentifierUri) throws Exception {
+        showTitle("requestAccessTokenWithClientSecretJwtRS512");
+
+        List<GrantType> grantTypes = Arrays.asList(
+                GrantType.RESOURCE_OWNER_PASSWORD_CREDENTIALS
+        );
+
+        // 1. Dynamic Client Registration
+        RegisterRequest registerRequest = new RegisterRequest(ApplicationType.WEB, "oxAuth test app",
+                StringUtils.spaceSeparatedToList(redirectUris));
+        registerRequest.setJwksUri(jwksUri);
+        registerRequest.setTokenEndpointAuthMethod(AuthenticationMethod.PRIVATE_KEY_JWT);
+        registerRequest.addCustomAttribute("oxAuthTrustedClient", "true");
+        registerRequest.setSectorIdentifierUri(sectorIdentifierUri);
+        registerRequest.setGrantTypes(grantTypes);
+
+        RegisterClient registerClient = new RegisterClient(registrationEndpoint);
+        registerClient.setRequest(registerRequest);
+        RegisterResponse registerResponse = registerClient.exec();
+
+        showClient(registerClient);
+        assertEquals(registerResponse.getStatus(), 200, "Unexpected response code: " + registerResponse.getEntity());
+        assertNotNull(registerResponse.getClientId());
+        assertNotNull(registerResponse.getClientSecret());
+        assertNotNull(registerResponse.getRegistrationAccessToken());
+        assertNotNull(registerResponse.getClientSecretExpiresAt());
+
+        String clientId = registerResponse.getClientId();
+        String clientSecret = registerResponse.getClientSecret();
+
+        // 2. Request authorization
+        OxAuthCryptoProvider cryptoProvider = new OxAuthCryptoProvider(keyStoreFile, keyStoreSecret, dnName);
+
+        TokenRequest tokenRequest = new TokenRequest(GrantType.RESOURCE_OWNER_PASSWORD_CREDENTIALS);
+        tokenRequest.setUsername(userId);
+        tokenRequest.setPassword(userSecret);
+        tokenRequest.setAuthUsername(clientId);
+        tokenRequest.setAuthPassword(clientSecret);
+        tokenRequest.setAuthenticationMethod(AuthenticationMethod.PRIVATE_KEY_JWT);
+        tokenRequest.setAlgorithm(SignatureAlgorithm.RS512);
+        tokenRequest.setCryptoProvider(cryptoProvider);
+        tokenRequest.setKeyId(keyId);
+        tokenRequest.setAudience(tokenEndpoint);
+
+        TokenClient tokenClient = new TokenClient(tokenEndpoint);
+        tokenClient.setRequest(tokenRequest);
+        TokenResponse tokenResponse = tokenClient.exec();
+
+        showClient(tokenClient);
+        assertEquals(tokenResponse.getStatus(), 200, "Unexpected response code: " + tokenResponse.getStatus());
+        assertNotNull(tokenResponse.getEntity(), "The entity is null");
+        assertNotNull(tokenResponse.getAccessToken(), "The access token is null");
+        assertNotNull(tokenResponse.getTokenType(), "The token type is null");
+    }
+
+    @Parameters({"userId", "userSecret", "redirectUris", "clientJwksUri", "ES256_keyId", "dnName", "keyStoreFile",
+            "keyStoreSecret", "sectorIdentifierUri"})
+    @Test
+    public void requestAccessTokenWithClientSecretJwtES256(
+            final String userId, final String userSecret, final String redirectUris, final String jwksUri,
+            final String keyId, final String dnName, final String keyStoreFile, final String keyStoreSecret,
+            final String sectorIdentifierUri) throws Exception {
+        showTitle("requestAccessTokenWithClientSecretJwtES256");
+
+        List<GrantType> grantTypes = Arrays.asList(
+                GrantType.RESOURCE_OWNER_PASSWORD_CREDENTIALS
+        );
+
+        // 1. Dynamic Client Registration
+        RegisterRequest registerRequest = new RegisterRequest(ApplicationType.WEB, "oxAuth test app",
+                StringUtils.spaceSeparatedToList(redirectUris));
+        registerRequest.setJwksUri(jwksUri);
+        registerRequest.setTokenEndpointAuthMethod(AuthenticationMethod.PRIVATE_KEY_JWT);
+        registerRequest.addCustomAttribute("oxAuthTrustedClient", "true");
+        registerRequest.setSectorIdentifierUri(sectorIdentifierUri);
+        registerRequest.setGrantTypes(grantTypes);
+
+        RegisterClient registerClient = new RegisterClient(registrationEndpoint);
+        registerClient.setRequest(registerRequest);
+        RegisterResponse registerResponse = registerClient.exec();
+
+        showClient(registerClient);
+        assertEquals(registerResponse.getStatus(), 200, "Unexpected response code: " + registerResponse.getEntity());
+        assertNotNull(registerResponse.getClientId());
+        assertNotNull(registerResponse.getClientSecret());
+        assertNotNull(registerResponse.getRegistrationAccessToken());
+        assertNotNull(registerResponse.getClientSecretExpiresAt());
+
+        String clientId = registerResponse.getClientId();
+        String clientSecret = registerResponse.getClientSecret();
+
+        // 2. Request authorization
+        OxAuthCryptoProvider cryptoProvider = new OxAuthCryptoProvider(keyStoreFile, keyStoreSecret, dnName);
+
+        TokenRequest tokenRequest = new TokenRequest(GrantType.RESOURCE_OWNER_PASSWORD_CREDENTIALS);
+        tokenRequest.setUsername(userId);
+        tokenRequest.setPassword(userSecret);
+
+        tokenRequest.setAuthUsername(clientId);
+        tokenRequest.setAuthPassword(clientSecret);
+        tokenRequest.setAuthenticationMethod(AuthenticationMethod.PRIVATE_KEY_JWT);
+        tokenRequest.setAlgorithm(SignatureAlgorithm.ES256);
+        tokenRequest.setCryptoProvider(cryptoProvider);
+        tokenRequest.setKeyId(keyId);
+        tokenRequest.setAudience(tokenEndpoint);
+
+        TokenClient tokenClient = new TokenClient(tokenEndpoint);
+        tokenClient.setRequest(tokenRequest);
+        TokenResponse response1 = tokenClient.exec();
+
+        showClient(tokenClient);
+        assertEquals(response1.getStatus(), 200, "Unexpected response code: " + response1.getStatus());
+        assertNotNull(response1.getEntity(), "The entity is null");
+        assertNotNull(response1.getAccessToken(), "The access token is null");
+        assertNotNull(response1.getTokenType(), "The token type is null");
+    }
+
+    @Parameters({"userId", "userSecret", "redirectUris", "clientJwksUri", "ES384_keyId", "dnName", "keyStoreFile",
+            "keyStoreSecret", "sectorIdentifierUri"})
+    @Test
+    public void requestAccessTokenWithClientSecretJwtES384(
+            final String userId, final String userSecret, final String redirectUris, final String jwksUri,
+            final String keyId, final String dnName, final String keyStoreFile, final String keyStoreSecret,
+            final String sectorIdentifierUri) throws Exception {
+        showTitle("requestAccessTokenWithClientSecretJwtES384");
+
+        List<GrantType> grantTypes = Arrays.asList(
+                GrantType.RESOURCE_OWNER_PASSWORD_CREDENTIALS
+        );
+
+        // 1. Dynamic Client Registration
+        RegisterRequest registerRequest = new RegisterRequest(ApplicationType.WEB, "oxAuth test app",
+                StringUtils.spaceSeparatedToList(redirectUris));
+        registerRequest.setJwksUri(jwksUri);
+        registerRequest.setTokenEndpointAuthMethod(AuthenticationMethod.PRIVATE_KEY_JWT);
+        registerRequest.addCustomAttribute("oxAuthTrustedClient", "true");
+        registerRequest.setSectorIdentifierUri(sectorIdentifierUri);
+        registerRequest.setGrantTypes(grantTypes);
+
+        RegisterClient registerClient = new RegisterClient(registrationEndpoint);
+        registerClient.setRequest(registerRequest);
+        RegisterResponse registerResponse = registerClient.exec();
+
+        showClient(registerClient);
+        assertEquals(registerResponse.getStatus(), 200, "Unexpected response code: " + registerResponse.getEntity());
+        assertNotNull(registerResponse.getClientId());
+        assertNotNull(registerResponse.getClientSecret());
+        assertNotNull(registerResponse.getRegistrationAccessToken());
+        assertNotNull(registerResponse.getClientSecretExpiresAt());
+
+        String clientId = registerResponse.getClientId();
+        String clientSecret = registerResponse.getClientSecret();
+
+        // 2. Request authorization
+        OxAuthCryptoProvider cryptoProvider = new OxAuthCryptoProvider(keyStoreFile, keyStoreSecret, dnName);
+
+        TokenRequest tokenRequest = new TokenRequest(GrantType.RESOURCE_OWNER_PASSWORD_CREDENTIALS);
+        tokenRequest.setUsername(userId);
+        tokenRequest.setPassword(userSecret);
+
+        tokenRequest.setAuthUsername(clientId);
+        tokenRequest.setAuthPassword(clientSecret);
+        tokenRequest.setAuthenticationMethod(AuthenticationMethod.PRIVATE_KEY_JWT);
+        tokenRequest.setAlgorithm(SignatureAlgorithm.ES384);
+        tokenRequest.setCryptoProvider(cryptoProvider);
+        tokenRequest.setKeyId(keyId);
+        tokenRequest.setAudience(tokenEndpoint);
+
+        TokenClient tokenClient = new TokenClient(tokenEndpoint);
+        tokenClient.setRequest(tokenRequest);
+        TokenResponse tokenResponse = tokenClient.exec();
+
+        showClient(tokenClient);
+        assertEquals(tokenResponse.getStatus(), 200, "Unexpected response code: " + tokenResponse.getStatus());
+        assertNotNull(tokenResponse.getEntity(), "The entity is null");
+        assertNotNull(tokenResponse.getAccessToken(), "The access token is null");
+        assertNotNull(tokenResponse.getTokenType(), "The token type is null");
+    }
+
+    @Parameters({"userId", "userSecret", "redirectUris", "clientJwksUri", "ES512_keyId", "dnName", "keyStoreFile",
+            "keyStoreSecret", "sectorIdentifierUri"})
+    @Test
+    public void requestAccessTokenWithClientSecretJwtES512(
+            final String userId, final String userSecret, final String redirectUris, final String jwksUri,
+            final String keyId, final String dnName, final String keyStoreFile, final String keyStoreSecret,
+            final String sectorIdentifierUri) throws Exception {
+        showTitle("requestAccessTokenWithClientSecretJwtES512");
+
+        List<GrantType> grantTypes = Arrays.asList(
+                GrantType.RESOURCE_OWNER_PASSWORD_CREDENTIALS
+        );
+
+        // 1. Dynamic Client Registration
+        RegisterRequest registerRequest = new RegisterRequest(ApplicationType.WEB, "oxAuth test app",
+                StringUtils.spaceSeparatedToList(redirectUris));
+        registerRequest.setJwksUri(jwksUri);
+        registerRequest.setTokenEndpointAuthMethod(AuthenticationMethod.PRIVATE_KEY_JWT);
+        registerRequest.addCustomAttribute("oxAuthTrustedClient", "true");
+        registerRequest.setSectorIdentifierUri(sectorIdentifierUri);
+        registerRequest.setGrantTypes(grantTypes);
+
+        RegisterClient registerClient = new RegisterClient(registrationEndpoint);
+        registerClient.setRequest(registerRequest);
+        RegisterResponse registerResponse = registerClient.exec();
+
+        showClient(registerClient);
+        assertEquals(registerResponse.getStatus(), 200, "Unexpected response code: " + registerResponse.getEntity());
+        assertNotNull(registerResponse.getClientId());
+        assertNotNull(registerResponse.getClientSecret());
+        assertNotNull(registerResponse.getRegistrationAccessToken());
+        assertNotNull(registerResponse.getClientSecretExpiresAt());
+
+        String clientId = registerResponse.getClientId();
+        String clientSecret = registerResponse.getClientSecret();
+
+        // 2. Request authorization
+        OxAuthCryptoProvider cryptoProvider = new OxAuthCryptoProvider(keyStoreFile, keyStoreSecret, dnName);
+
+        TokenRequest tokenRequest = new TokenRequest(GrantType.RESOURCE_OWNER_PASSWORD_CREDENTIALS);
+        tokenRequest.setUsername(userId);
+        tokenRequest.setPassword(userSecret);
+
+        tokenRequest.setAuthUsername(clientId);
+        tokenRequest.setAuthPassword(clientSecret);
+        tokenRequest.setAuthenticationMethod(AuthenticationMethod.PRIVATE_KEY_JWT);
+        tokenRequest.setAlgorithm(SignatureAlgorithm.ES512);
+        tokenRequest.setCryptoProvider(cryptoProvider);
+        tokenRequest.setKeyId(keyId);
+        tokenRequest.setAudience(tokenEndpoint);
+
+        TokenClient tokenClient = new TokenClient(tokenEndpoint);
+        tokenClient.setRequest(tokenRequest);
+        TokenResponse tokenResponse = tokenClient.exec();
+
+        showClient(tokenClient);
+        assertEquals(tokenResponse.getStatus(), 200, "Unexpected response code: " + tokenResponse.getStatus());
+        assertNotNull(tokenResponse.getEntity(), "The entity is null");
+        assertNotNull(tokenResponse.getAccessToken(), "The access token is null");
+        assertNotNull(tokenResponse.getTokenType(), "The token type is null");
+    }
+
+    @Parameters({"userId", "userSecret", "redirectUris", "clientJwksUri", "PS256_keyId", "dnName", "keyStoreFile",
+            "keyStoreSecret", "sectorIdentifierUri"})
+    @Test
+    public void requestAccessTokenWithClientSecretJwtPS256(
+            final String userId, final String userSecret, final String redirectUris, final String jwksUri,
+            final String keyId, final String dnName, final String keyStoreFile, final String keyStoreSecret,
+            final String sectorIdentifierUri) throws Exception {
+        showTitle("requestAccessTokenWithClientSecretJwtPS256");
+
+        List<GrantType> grantTypes = Arrays.asList(
+                GrantType.RESOURCE_OWNER_PASSWORD_CREDENTIALS
+        );
+
+        // 1. Dynamic Client Registration
+        RegisterRequest registerRequest = new RegisterRequest(ApplicationType.WEB, "oxAuth test app",
+                StringUtils.spaceSeparatedToList(redirectUris));
+        registerRequest.setJwksUri(jwksUri);
+        registerRequest.setTokenEndpointAuthMethod(AuthenticationMethod.PRIVATE_KEY_JWT);
+        registerRequest.addCustomAttribute("oxAuthTrustedClient", "true");
+        registerRequest.setSectorIdentifierUri(sectorIdentifierUri);
+        registerRequest.setGrantTypes(grantTypes);
+
+        RegisterClient registerClient = new RegisterClient(registrationEndpoint);
+        registerClient.setRequest(registerRequest);
+        RegisterResponse registerResponse = registerClient.exec();
+
+        showClient(registerClient);
+        assertEquals(registerResponse.getStatus(), 200, "Unexpected response code: " + registerResponse.getEntity());
+        assertNotNull(registerResponse.getClientId());
+        assertNotNull(registerResponse.getClientSecret());
+        assertNotNull(registerResponse.getRegistrationAccessToken());
+        assertNotNull(registerResponse.getClientSecretExpiresAt());
+
+        String clientId = registerResponse.getClientId();
+        String clientSecret = registerResponse.getClientSecret();
+
+        // 2. Request authorization
+        OxAuthCryptoProvider cryptoProvider = new OxAuthCryptoProvider(keyStoreFile, keyStoreSecret, dnName);
+
+        TokenRequest tokenRequest = new TokenRequest(GrantType.RESOURCE_OWNER_PASSWORD_CREDENTIALS);
+        tokenRequest.setUsername(userId);
+        tokenRequest.setPassword(userSecret);
+
+        tokenRequest.setAuthUsername(clientId);
+        tokenRequest.setAuthPassword(clientSecret);
+        tokenRequest.setAuthenticationMethod(AuthenticationMethod.PRIVATE_KEY_JWT);
+        tokenRequest.setAlgorithm(SignatureAlgorithm.PS256);
+        tokenRequest.setCryptoProvider(cryptoProvider);
+        tokenRequest.setKeyId(keyId);
+        tokenRequest.setAudience(tokenEndpoint);
+
+        TokenClient tokenClient = new TokenClient(tokenEndpoint);
+        tokenClient.setRequest(tokenRequest);
+        TokenResponse tokenResponse = tokenClient.exec();
+
+        showClient(tokenClient);
+        assertEquals(tokenResponse.getStatus(), 200, "Unexpected response code: " + tokenResponse.getStatus());
+        assertNotNull(tokenResponse.getEntity(), "The entity is null");
+        assertNotNull(tokenResponse.getAccessToken(), "The access token is null");
+        assertNotNull(tokenResponse.getTokenType(), "The token type is null");
+    }
+
+    @Parameters({"userId", "userSecret", "redirectUris", "clientJwksUri", "PS384_keyId", "dnName", "keyStoreFile",
+            "keyStoreSecret", "sectorIdentifierUri"})
+    @Test
+    public void requestAccessTokenWithClientSecretJwtPS384(
+            final String userId, final String userSecret, final String redirectUris, final String jwksUri,
+            final String keyId, final String dnName, final String keyStoreFile, final String keyStoreSecret,
+            final String sectorIdentifierUri) throws Exception {
+        showTitle("requestAccessTokenWithClientSecretJwtPS384");
+
+        List<GrantType> grantTypes = Arrays.asList(
+                GrantType.RESOURCE_OWNER_PASSWORD_CREDENTIALS
+        );
+
+        // 1. Dynamic Client Registration
+        RegisterRequest registerRequest = new RegisterRequest(ApplicationType.WEB, "oxAuth test app",
+                StringUtils.spaceSeparatedToList(redirectUris));
+        registerRequest.setJwksUri(jwksUri);
+        registerRequest.setTokenEndpointAuthMethod(AuthenticationMethod.PRIVATE_KEY_JWT);
+        registerRequest.addCustomAttribute("oxAuthTrustedClient", "true");
+        registerRequest.setSectorIdentifierUri(sectorIdentifierUri);
+        registerRequest.setGrantTypes(grantTypes);
+
+        RegisterClient registerClient = new RegisterClient(registrationEndpoint);
+        registerClient.setRequest(registerRequest);
+        RegisterResponse registerResponse = registerClient.exec();
+
+        showClient(registerClient);
+        assertEquals(registerResponse.getStatus(), 200, "Unexpected response code: " + registerResponse.getEntity());
+        assertNotNull(registerResponse.getClientId());
+        assertNotNull(registerResponse.getClientSecret());
+        assertNotNull(registerResponse.getRegistrationAccessToken());
+        assertNotNull(registerResponse.getClientSecretExpiresAt());
+
+        String clientId = registerResponse.getClientId();
+        String clientSecret = registerResponse.getClientSecret();
+
+        // 2. Request authorization
+        OxAuthCryptoProvider cryptoProvider = new OxAuthCryptoProvider(keyStoreFile, keyStoreSecret, dnName);
+
+        TokenRequest tokenRequest = new TokenRequest(GrantType.RESOURCE_OWNER_PASSWORD_CREDENTIALS);
+        tokenRequest.setUsername(userId);
+        tokenRequest.setPassword(userSecret);
+
+        tokenRequest.setAuthUsername(clientId);
+        tokenRequest.setAuthPassword(clientSecret);
+        tokenRequest.setAuthenticationMethod(AuthenticationMethod.PRIVATE_KEY_JWT);
+        tokenRequest.setAlgorithm(SignatureAlgorithm.PS384);
+        tokenRequest.setCryptoProvider(cryptoProvider);
+        tokenRequest.setKeyId(keyId);
+        tokenRequest.setAudience(tokenEndpoint);
+
+        TokenClient tokenClient = new TokenClient(tokenEndpoint);
+        tokenClient.setRequest(tokenRequest);
+        TokenResponse tokenResponse = tokenClient.exec();
+
+        showClient(tokenClient);
+        assertEquals(tokenResponse.getStatus(), 200, "Unexpected response code: " + tokenResponse.getStatus());
+        assertNotNull(tokenResponse.getEntity(), "The entity is null");
+        assertNotNull(tokenResponse.getAccessToken(), "The access token is null");
+        assertNotNull(tokenResponse.getTokenType(), "The token type is null");
+    }
+
+    @Parameters({"userId", "userSecret", "redirectUris", "clientJwksUri", "PS512_keyId", "dnName", "keyStoreFile",
+            "keyStoreSecret", "sectorIdentifierUri"})
+    @Test
+    public void requestAccessTokenWithClientSecretJwtPS512(
+            final String userId, final String userSecret, final String redirectUris, final String jwksUri,
+            final String keyId, final String dnName, final String keyStoreFile, final String keyStoreSecret,
+            final String sectorIdentifierUri) throws Exception {
+        showTitle("requestAccessTokenWithClientSecretJwtPS512");
+
+        List<GrantType> grantTypes = Arrays.asList(
+                GrantType.RESOURCE_OWNER_PASSWORD_CREDENTIALS
+        );
+
+        // 1. Dynamic Client Registration
+        RegisterRequest registerRequest = new RegisterRequest(ApplicationType.WEB, "oxAuth test app",
+                StringUtils.spaceSeparatedToList(redirectUris));
+        registerRequest.setJwksUri(jwksUri);
+        registerRequest.setTokenEndpointAuthMethod(AuthenticationMethod.PRIVATE_KEY_JWT);
+        registerRequest.addCustomAttribute("oxAuthTrustedClient", "true");
+        registerRequest.setSectorIdentifierUri(sectorIdentifierUri);
+        registerRequest.setGrantTypes(grantTypes);
+
+        RegisterClient registerClient = new RegisterClient(registrationEndpoint);
+        registerClient.setRequest(registerRequest);
+        RegisterResponse registerResponse = registerClient.exec();
+
+        showClient(registerClient);
+        assertEquals(registerResponse.getStatus(), 200, "Unexpected response code: " + registerResponse.getEntity());
+        assertNotNull(registerResponse.getClientId());
+        assertNotNull(registerResponse.getClientSecret());
+        assertNotNull(registerResponse.getRegistrationAccessToken());
+        assertNotNull(registerResponse.getClientSecretExpiresAt());
+
+        String clientId = registerResponse.getClientId();
+        String clientSecret = registerResponse.getClientSecret();
+
+        // 2. Request authorization
+        OxAuthCryptoProvider cryptoProvider = new OxAuthCryptoProvider(keyStoreFile, keyStoreSecret, dnName);
+
+        TokenRequest tokenRequest = new TokenRequest(GrantType.RESOURCE_OWNER_PASSWORD_CREDENTIALS);
+        tokenRequest.setUsername(userId);
+        tokenRequest.setPassword(userSecret);
+        tokenRequest.setAuthUsername(clientId);
+        tokenRequest.setAuthPassword(clientSecret);
+        tokenRequest.setAuthenticationMethod(AuthenticationMethod.PRIVATE_KEY_JWT);
+        tokenRequest.setAlgorithm(SignatureAlgorithm.PS512);
+        tokenRequest.setCryptoProvider(cryptoProvider);
+        tokenRequest.setKeyId(keyId);
+        tokenRequest.setAudience(tokenEndpoint);
+
+        TokenClient tokenClient = new TokenClient(tokenEndpoint);
+        tokenClient.setRequest(tokenRequest);
+        TokenResponse tokenResponse = tokenClient.exec();
+
+        showClient(tokenClient);
+        assertEquals(tokenResponse.getStatus(), 200, "Unexpected response code: " + tokenResponse.getStatus());
+        assertNotNull(tokenResponse.getEntity(), "The entity is null");
+        assertNotNull(tokenResponse.getAccessToken(), "The access token is null");
+        assertNotNull(tokenResponse.getTokenType(), "The token type is null");
+    }
+
+    @Parameters({"userId", "userSecret", "redirectUris", "clientJwksUri", "RS256_keyId", "dnName", "keyStoreFile",
+            "keyStoreSecret", "sectorIdentifierUri"})
+    @Test
+    public void requestAccessTokenWithClientSecretJwtRS256X509Cert(
+            final String userId, final String userSecret, final String redirectUris, final String jwksUri,
+            final String keyId, final String dnName, final String keyStoreFile, final String keyStoreSecret,
+            final String sectorIdentifierUri) throws Exception {
+        showTitle("requestAccessTokenWithClientSecretJwtRS256X509Cert");
+
+        List<GrantType> grantTypes = Arrays.asList(
+                GrantType.RESOURCE_OWNER_PASSWORD_CREDENTIALS
+        );
+
+        // 1. Dynamic Client Registration
+        RegisterRequest registerRequest = new RegisterRequest(ApplicationType.WEB, "oxAuth test app",
+                StringUtils.spaceSeparatedToList(redirectUris));
+        registerRequest.setJwksUri(jwksUri);
+        registerRequest.setTokenEndpointAuthMethod(AuthenticationMethod.PRIVATE_KEY_JWT);
+        registerRequest.addCustomAttribute("oxAuthTrustedClient", "true");
+        registerRequest.setSectorIdentifierUri(sectorIdentifierUri);
+        registerRequest.setGrantTypes(grantTypes);
+
+        RegisterClient registerClient = new RegisterClient(registrationEndpoint);
+        registerClient.setRequest(registerRequest);
+        RegisterResponse registerResponse = registerClient.exec();
+
+        showClient(registerClient);
+        assertEquals(registerResponse.getStatus(), 200, "Unexpected response code: " + registerResponse.getEntity());
+        assertNotNull(registerResponse.getClientId());
+        assertNotNull(registerResponse.getClientSecret());
+        assertNotNull(registerResponse.getRegistrationAccessToken());
+        assertNotNull(registerResponse.getClientSecretExpiresAt());
+
+        String clientId = registerResponse.getClientId();
+        String clientSecret = registerResponse.getClientSecret();
+
+        // 2. Request authorization
+        OxAuthCryptoProvider cryptoProvider = new OxAuthCryptoProvider(keyStoreFile, keyStoreSecret, dnName);
+
+        TokenRequest tokenRequest = new TokenRequest(GrantType.RESOURCE_OWNER_PASSWORD_CREDENTIALS);
+        tokenRequest.setUsername(userId);
+        tokenRequest.setPassword(userSecret);
+
+        tokenRequest.setAuthUsername(clientId);
+        tokenRequest.setAuthPassword(clientSecret);
+        tokenRequest.setAuthenticationMethod(AuthenticationMethod.PRIVATE_KEY_JWT);
+        tokenRequest.setAlgorithm(SignatureAlgorithm.RS256);
+        tokenRequest.setCryptoProvider(cryptoProvider);
+        tokenRequest.setKeyId(keyId);
+        tokenRequest.setAudience(tokenEndpoint);
+
+        TokenClient tokenClient = new TokenClient(tokenEndpoint);
+        tokenClient.setRequest(tokenRequest);
+        TokenResponse tokenResponse = tokenClient.exec();
+
+        showClient(tokenClient);
+        assertEquals(tokenResponse.getStatus(), 200, "Unexpected response code: " + tokenResponse.getStatus());
+        assertNotNull(tokenResponse.getEntity(), "The entity is null");
+        assertNotNull(tokenResponse.getAccessToken(), "The access token is null");
+        assertNotNull(tokenResponse.getTokenType(), "The token type is null");
+    }
+
+    @Parameters({"userId", "userSecret", "redirectUris", "clientJwksUri", "RS384_keyId", "dnName", "keyStoreFile",
+            "keyStoreSecret", "sectorIdentifierUri"})
+    @Test
+    public void requestAccessTokenWithClientSecretJwtRS384X509Cert(
+            final String userId, final String userSecret, final String redirectUris, final String jwksUri,
+            final String keyId, final String dnName, final String keyStoreFile, final String keyStoreSecret,
+            final String sectorIdentifierUri) throws Exception {
+        showTitle("requestAccessTokenWithClientSecretJwtRS384X509Cert");
+
+        List<GrantType> grantTypes = Arrays.asList(
+                GrantType.RESOURCE_OWNER_PASSWORD_CREDENTIALS
+        );
+
+        // 1. Dynamic Client Registration
+        RegisterRequest registerRequest = new RegisterRequest(ApplicationType.WEB, "oxAuth test app",
+                StringUtils.spaceSeparatedToList(redirectUris));
+        registerRequest.setJwksUri(jwksUri);
+        registerRequest.setTokenEndpointAuthMethod(AuthenticationMethod.PRIVATE_KEY_JWT);
+        registerRequest.addCustomAttribute("oxAuthTrustedClient", "true");
+        registerRequest.setSectorIdentifierUri(sectorIdentifierUri);
+        registerRequest.setGrantTypes(grantTypes);
+
+        RegisterClient registerClient = new RegisterClient(registrationEndpoint);
+        registerClient.setRequest(registerRequest);
+        RegisterResponse registerResponse = registerClient.exec();
+
+        showClient(registerClient);
+        assertEquals(registerResponse.getStatus(), 200, "Unexpected response code: " + registerResponse.getEntity());
+        assertNotNull(registerResponse.getClientId());
+        assertNotNull(registerResponse.getClientSecret());
+        assertNotNull(registerResponse.getRegistrationAccessToken());
+        assertNotNull(registerResponse.getClientSecretExpiresAt());
+
+        String clientId = registerResponse.getClientId();
+        String clientSecret = registerResponse.getClientSecret();
+
+        // 2. Request authorization
+        OxAuthCryptoProvider cryptoProvider = new OxAuthCryptoProvider(keyStoreFile, keyStoreSecret, dnName);
+
+        TokenRequest tokenRequest = new TokenRequest(GrantType.RESOURCE_OWNER_PASSWORD_CREDENTIALS);
+        tokenRequest.setUsername(userId);
+        tokenRequest.setPassword(userSecret);
+
+        tokenRequest.setAuthUsername(clientId);
+        tokenRequest.setAuthPassword(clientSecret);
+        tokenRequest.setAuthenticationMethod(AuthenticationMethod.PRIVATE_KEY_JWT);
+        tokenRequest.setAlgorithm(SignatureAlgorithm.RS384);
+        tokenRequest.setCryptoProvider(cryptoProvider);
+        tokenRequest.setKeyId(keyId);
+        tokenRequest.setAudience(tokenEndpoint);
+
+        TokenClient tokenClient = new TokenClient(tokenEndpoint);
+        tokenClient.setRequest(tokenRequest);
+        TokenResponse tokenResponse = tokenClient.exec();
+
+        showClient(tokenClient);
+        assertEquals(tokenResponse.getStatus(), 200, "Unexpected response code: " + tokenResponse.getStatus());
+        assertNotNull(tokenResponse.getEntity(), "The entity is null");
+        assertNotNull(tokenResponse.getAccessToken(), "The access token is null");
+        assertNotNull(tokenResponse.getTokenType(), "The token type is null");
+    }
+
+    @Parameters({"userId", "userSecret", "redirectUris", "clientJwksUri", "RS512_keyId", "dnName", "keyStoreFile",
+            "keyStoreSecret", "sectorIdentifierUri"})
+    @Test
+    public void requestAccessTokenWithClientSecretJwtRS512X509Cert(
+            final String userId, final String userSecret, final String redirectUris, final String jwksUri,
+            final String keyId, final String dnName, final String keyStoreFile, final String keyStoreSecret,
+            final String sectorIdentifierUri) throws Exception {
+        showTitle("requestAccessTokenWithClientSecretJwtRS512X509Cert");
+
+        List<GrantType> grantTypes = Arrays.asList(
+                GrantType.RESOURCE_OWNER_PASSWORD_CREDENTIALS
+        );
+
+        // 1. Dynamic Client Registration
+        RegisterRequest registerRequest = new RegisterRequest(ApplicationType.WEB, "oxAuth test app",
+                StringUtils.spaceSeparatedToList(redirectUris));
+        registerRequest.setJwksUri(jwksUri);
+        registerRequest.setTokenEndpointAuthMethod(AuthenticationMethod.PRIVATE_KEY_JWT);
+        registerRequest.addCustomAttribute("oxAuthTrustedClient", "true");
+        registerRequest.setSectorIdentifierUri(sectorIdentifierUri);
+        registerRequest.setGrantTypes(grantTypes);
+
+        RegisterClient registerClient = new RegisterClient(registrationEndpoint);
+        registerClient.setRequest(registerRequest);
+        RegisterResponse registerResponse = registerClient.exec();
+
+        showClient(registerClient);
+        assertEquals(registerResponse.getStatus(), 200, "Unexpected response code: " + registerResponse.getEntity());
+        assertNotNull(registerResponse.getClientId());
+        assertNotNull(registerResponse.getClientSecret());
+        assertNotNull(registerResponse.getRegistrationAccessToken());
+        assertNotNull(registerResponse.getClientSecretExpiresAt());
+
+        String clientId = registerResponse.getClientId();
+        String clientSecret = registerResponse.getClientSecret();
+
+        // 2. Request authorization
+        OxAuthCryptoProvider cryptoProvider = new OxAuthCryptoProvider(keyStoreFile, keyStoreSecret, dnName);
+
+        TokenRequest tokenRequest = new TokenRequest(GrantType.RESOURCE_OWNER_PASSWORD_CREDENTIALS);
+        tokenRequest.setUsername(userId);
+        tokenRequest.setPassword(userSecret);
+        tokenRequest.setAuthUsername(clientId);
+        tokenRequest.setAuthPassword(clientSecret);
+        tokenRequest.setAuthenticationMethod(AuthenticationMethod.PRIVATE_KEY_JWT);
+        tokenRequest.setAlgorithm(SignatureAlgorithm.RS512);
+        tokenRequest.setCryptoProvider(cryptoProvider);
+        tokenRequest.setKeyId(keyId);
+        tokenRequest.setAudience(tokenEndpoint);
+
+        TokenClient tokenClient = new TokenClient(tokenEndpoint);
+        tokenClient.setRequest(tokenRequest);
+        TokenResponse tokenResponse = tokenClient.exec();
+
+        showClient(tokenClient);
+        assertEquals(tokenResponse.getStatus(), 200, "Unexpected response code: " + tokenResponse.getStatus());
+        assertNotNull(tokenResponse.getEntity(), "The entity is null");
+        assertNotNull(tokenResponse.getAccessToken(), "The access token is null");
+        assertNotNull(tokenResponse.getTokenType(), "The token type is null");
+    }
+
+    @Parameters({"userId", "userSecret", "redirectUris", "clientJwksUri", "ES256_keyId", "dnName", "keyStoreFile",
+            "keyStoreSecret", "sectorIdentifierUri"})
+    @Test
+    public void requestAccessTokenWithClientSecretJwtES256X509Cert(
+            final String userId, final String userSecret, final String redirectUris, final String jwksUri,
+            final String keyId, final String dnName, final String keyStoreFile, final String keyStoreSecret,
+            final String sectorIdentifierUri) throws Exception {
+        showTitle("requestAccessTokenWithClientSecretJwtES256X509Cert");
+
+        List<GrantType> grantTypes = Arrays.asList(
+                GrantType.RESOURCE_OWNER_PASSWORD_CREDENTIALS
+        );
+
+        // 1. Dynamic Client Registration
+        RegisterRequest registerRequest = new RegisterRequest(ApplicationType.WEB, "oxAuth test app",
+                StringUtils.spaceSeparatedToList(redirectUris));
+        registerRequest.setJwksUri(jwksUri);
+        registerRequest.setTokenEndpointAuthMethod(AuthenticationMethod.PRIVATE_KEY_JWT);
+        registerRequest.addCustomAttribute("oxAuthTrustedClient", "true");
+        registerRequest.setSectorIdentifierUri(sectorIdentifierUri);
+        registerRequest.setGrantTypes(grantTypes);
+
+        RegisterClient registerClient = new RegisterClient(registrationEndpoint);
+        registerClient.setRequest(registerRequest);
+        RegisterResponse registerResponse = registerClient.exec();
+
+        showClient(registerClient);
+        assertEquals(registerResponse.getStatus(), 200, "Unexpected response code: " + registerResponse.getEntity());
+        assertNotNull(registerResponse.getClientId());
+        assertNotNull(registerResponse.getClientSecret());
+        assertNotNull(registerResponse.getRegistrationAccessToken());
+        assertNotNull(registerResponse.getClientSecretExpiresAt());
+
+        String clientId = registerResponse.getClientId();
+        String clientSecret = registerResponse.getClientSecret();
+
+        // 2. Request authorization
+        OxAuthCryptoProvider cryptoProvider = new OxAuthCryptoProvider(keyStoreFile, keyStoreSecret, dnName);
+
+        TokenRequest tokenRequest = new TokenRequest(GrantType.RESOURCE_OWNER_PASSWORD_CREDENTIALS);
+        tokenRequest.setUsername(userId);
+        tokenRequest.setPassword(userSecret);
+
+        tokenRequest.setAuthUsername(clientId);
+        tokenRequest.setAuthPassword(clientSecret);
+        tokenRequest.setAuthenticationMethod(AuthenticationMethod.PRIVATE_KEY_JWT);
+        tokenRequest.setAlgorithm(SignatureAlgorithm.ES256);
+        tokenRequest.setCryptoProvider(cryptoProvider);
+        tokenRequest.setKeyId(keyId);
+        tokenRequest.setAudience(tokenEndpoint);
+
+        TokenClient tokenClient = new TokenClient(tokenEndpoint);
+        tokenClient.setRequest(tokenRequest);
+        TokenResponse tokenResponse = tokenClient.exec();
+
+        showClient(tokenClient);
+        assertEquals(tokenResponse.getStatus(), 200, "Unexpected response code: " + tokenResponse.getStatus());
+        assertNotNull(tokenResponse.getEntity(), "The entity is null");
+        assertNotNull(tokenResponse.getAccessToken(), "The access token is null");
+        assertNotNull(tokenResponse.getTokenType(), "The token type is null");
+    }
+
+    @Parameters({"userId", "userSecret", "redirectUris", "clientJwksUri", "ES384_keyId", "dnName", "keyStoreFile",
+            "keyStoreSecret", "sectorIdentifierUri"})
+    @Test
+    public void requestAccessTokenWithClientSecretJwtES384X509Cert(
+            final String userId, final String userSecret, final String redirectUris, final String jwksUri,
+            final String keyId, final String dnName, final String keyStoreFile, final String keyStoreSecret,
+            final String sectorIdentifierUri) throws Exception {
+        showTitle("requestAccessTokenWithClientSecretJwtES384X509Cert");
+
+        List<GrantType> grantTypes = Arrays.asList(
+                GrantType.RESOURCE_OWNER_PASSWORD_CREDENTIALS
+        );
+
+        // 1. Dynamic Client Registration
+        RegisterRequest registerRequest = new RegisterRequest(ApplicationType.WEB, "oxAuth test app",
+                StringUtils.spaceSeparatedToList(redirectUris));
+        registerRequest.setJwksUri(jwksUri);
+        registerRequest.setTokenEndpointAuthMethod(AuthenticationMethod.PRIVATE_KEY_JWT);
+        registerRequest.addCustomAttribute("oxAuthTrustedClient", "true");
+        registerRequest.setSectorIdentifierUri(sectorIdentifierUri);
+        registerRequest.setGrantTypes(grantTypes);
+
+        RegisterClient registerClient = new RegisterClient(registrationEndpoint);
+        registerClient.setRequest(registerRequest);
+        RegisterResponse registerResponse = registerClient.exec();
+
+        showClient(registerClient);
+        assertEquals(registerResponse.getStatus(), 200, "Unexpected response code: " + registerResponse.getEntity());
+        assertNotNull(registerResponse.getClientId());
+        assertNotNull(registerResponse.getClientSecret());
+        assertNotNull(registerResponse.getRegistrationAccessToken());
+        assertNotNull(registerResponse.getClientSecretExpiresAt());
+
+        String clientId = registerResponse.getClientId();
+        String clientSecret = registerResponse.getClientSecret();
+
+        // 2. Request authorization
+        OxAuthCryptoProvider cryptoProvider = new OxAuthCryptoProvider(keyStoreFile, keyStoreSecret, dnName);
+
+        TokenRequest tokenRequest = new TokenRequest(GrantType.RESOURCE_OWNER_PASSWORD_CREDENTIALS);
+        tokenRequest.setUsername(userId);
+        tokenRequest.setPassword(userSecret);
+
+        tokenRequest.setAuthUsername(clientId);
+        tokenRequest.setAuthPassword(clientSecret);
+        tokenRequest.setAuthenticationMethod(AuthenticationMethod.PRIVATE_KEY_JWT);
+        tokenRequest.setAlgorithm(SignatureAlgorithm.ES384);
+        tokenRequest.setCryptoProvider(cryptoProvider);
+        tokenRequest.setKeyId(keyId);
+        tokenRequest.setAudience(tokenEndpoint);
+
+        TokenClient tokenClient = new TokenClient(tokenEndpoint);
+        tokenClient.setRequest(tokenRequest);
+        TokenResponse tokenResponse = tokenClient.exec();
+
+        showClient(tokenClient);
+        assertEquals(tokenResponse.getStatus(), 200, "Unexpected response code: " + tokenResponse.getStatus());
+        assertNotNull(tokenResponse.getEntity(), "The entity is null");
+        assertNotNull(tokenResponse.getAccessToken(), "The access token is null");
+        assertNotNull(tokenResponse.getTokenType(), "The token type is null");
+    }
+
+    @Parameters({"userId", "userSecret", "redirectUris", "clientJwksUri", "ES512_keyId", "dnName", "keyStoreFile",
+            "keyStoreSecret", "sectorIdentifierUri"})
+    @Test
+    public void requestAccessTokenWithClientSecretJwtES512X509Cert(
+            final String userId, final String userSecret, final String redirectUris, final String jwksUri,
+            final String keyId, final String dnName, final String keyStoreFile, final String keyStoreSecret,
+            final String sectorIdentifierUri) throws Exception {
+        showTitle("requestAccessTokenWithClientSecretJwtES512X509Cert");
+
+        List<GrantType> grantTypes = Arrays.asList(
+                GrantType.RESOURCE_OWNER_PASSWORD_CREDENTIALS
+        );
+
+        // 1. Dynamic Client Registration
+        RegisterRequest registerRequest = new RegisterRequest(ApplicationType.WEB, "oxAuth test app",
+                StringUtils.spaceSeparatedToList(redirectUris));
+        registerRequest.setJwksUri(jwksUri);
+        registerRequest.setTokenEndpointAuthMethod(AuthenticationMethod.PRIVATE_KEY_JWT);
+        registerRequest.addCustomAttribute("oxAuthTrustedClient", "true");
+        registerRequest.setSectorIdentifierUri(sectorIdentifierUri);
+        registerRequest.setGrantTypes(grantTypes);
+
+        RegisterClient registerClient = new RegisterClient(registrationEndpoint);
+        registerClient.setRequest(registerRequest);
+        RegisterResponse registerResponse = registerClient.exec();
+
+        showClient(registerClient);
+        assertEquals(registerResponse.getStatus(), 200, "Unexpected response code: " + registerResponse.getEntity());
+        assertNotNull(registerResponse.getClientId());
+        assertNotNull(registerResponse.getClientSecret());
+        assertNotNull(registerResponse.getRegistrationAccessToken());
+        assertNotNull(registerResponse.getClientSecretExpiresAt());
+
+        String clientId = registerResponse.getClientId();
+        String clientSecret = registerResponse.getClientSecret();
+
+        // 2. Request authorization
+        OxAuthCryptoProvider cryptoProvider = new OxAuthCryptoProvider(keyStoreFile, keyStoreSecret, dnName);
+
+        TokenRequest tokenRequest = new TokenRequest(GrantType.RESOURCE_OWNER_PASSWORD_CREDENTIALS);
+        tokenRequest.setUsername(userId);
+        tokenRequest.setPassword(userSecret);
+
+        tokenRequest.setAuthUsername(clientId);
+        tokenRequest.setAuthPassword(clientSecret);
+        tokenRequest.setAuthenticationMethod(AuthenticationMethod.PRIVATE_KEY_JWT);
+        tokenRequest.setAlgorithm(SignatureAlgorithm.ES512);
+        tokenRequest.setCryptoProvider(cryptoProvider);
+        tokenRequest.setKeyId(keyId);
+        tokenRequest.setAudience(tokenEndpoint);
+
+        TokenClient tokenClient = new TokenClient(tokenEndpoint);
+        tokenClient.setRequest(tokenRequest);
+        TokenResponse tokenResponse = tokenClient.exec();
+
+        showClient(tokenClient);
+        assertEquals(tokenResponse.getStatus(), 200, "Unexpected response code: " + tokenResponse.getStatus());
+        assertNotNull(tokenResponse.getEntity(), "The entity is null");
+        assertNotNull(tokenResponse.getAccessToken(), "The access token is null");
+        assertNotNull(tokenResponse.getTokenType(), "The token type is null");
+    }
+
+    @Parameters({"userId", "userSecret", "redirectUris", "sectorIdentifierUri"})
+    @Test
+    public void requestAccessTokenWithClientSecretJwtFail(
+            final String userId, final String userSecret, final String redirectUris, final String sectorIdentifierUri) throws Exception {
+        showTitle("requestAccessTokenWithClientSecretJwtFail");
+
+        List<ResponseType> responseTypes = new ArrayList<ResponseType>();
+
+        // 1. Register client
+        RegisterRequest registerRequest = new RegisterRequest(ApplicationType.WEB, "oxAuth test app",
+                StringUtils.spaceSeparatedToList(redirectUris));
+        registerRequest.setResponseTypes(responseTypes);
+        registerRequest.setSectorIdentifierUri(sectorIdentifierUri);
+
+        RegisterClient registerClient = new RegisterClient(registrationEndpoint);
+        registerClient.setRequest(registerRequest);
+        RegisterResponse registerResponse = registerClient.exec();
+
+        showClient(registerClient);
+        assertEquals(registerResponse.getStatus(), 200, "Unexpected response code: " + registerResponse.getEntity());
+        assertNotNull(registerResponse.getClientId());
+        assertNotNull(registerResponse.getClientSecret());
+        assertNotNull(registerResponse.getRegistrationAccessToken());
+        assertNotNull(registerResponse.getClientIdIssuedAt());
+        assertNotNull(registerResponse.getClientSecretExpiresAt());
+
+        String clientId = registerResponse.getClientId();
+
+        // 2. Request with invalid Client Secret
+        String username = userId;
+        String password = userSecret;
+
+        TokenRequest request = new TokenRequest(GrantType.RESOURCE_OWNER_PASSWORD_CREDENTIALS);
+        request.setUsername(username);
+        request.setPassword(password);
+        request.setAuthUsername(clientId);
+        request.setAuthPassword("INVALID_CLIENT_SECRET");
+        request.setAuthenticationMethod(AuthenticationMethod.CLIENT_SECRET_JWT);
+        request.setAudience(tokenEndpoint);
+
+        TokenClient tokenClient = new TokenClient(tokenEndpoint);
+        tokenClient.setRequest(request);
+        TokenResponse response = tokenClient.exec();
+
+        showClient(tokenClient);
+        assertEquals(response.getStatus(), 401, "Unexpected response code: " + response.getStatus());
+        assertNotNull(response.getEntity(), "The entity is null");
+        assertNotNull(response.getErrorType(), "The error type is null");
+        assertNotNull(response.getErrorDescription(), "The error description is null");
+    }
+
+    @Parameters({"redirectUris", "sectorIdentifierUri"})
+    @Test
+    public void requestAccessTokenClientCredentials(final String redirectUris, final String sectorIdentifierUri) throws Exception {
+        showTitle("requestAccessTokenClientCredentials");
+
+        List<ResponseType> responseTypes = new ArrayList<ResponseType>();
+        List<GrantType> grantTypes = Arrays.asList(
+                GrantType.CLIENT_CREDENTIALS
+        );
+
+        // 1. Register client
+        RegisterRequest registerRequest = new RegisterRequest(ApplicationType.WEB, "oxAuth test app",
+                StringUtils.spaceSeparatedToList(redirectUris));
+        registerRequest.setResponseTypes(responseTypes);
+        registerRequest.setGrantTypes(grantTypes);
+        registerRequest.setSectorIdentifierUri(sectorIdentifierUri);
+
+        RegisterClient registerClient = new RegisterClient(registrationEndpoint);
+        registerClient.setRequest(registerRequest);
+        RegisterResponse registerResponse = registerClient.exec();
+
+        showClient(registerClient);
+        assertEquals(registerResponse.getStatus(), 200, "Unexpected response code: " + registerResponse.getEntity());
+        assertNotNull(registerResponse.getClientId());
+        assertNotNull(registerResponse.getClientSecret());
+        assertNotNull(registerResponse.getRegistrationAccessToken());
+        assertNotNull(registerResponse.getClientIdIssuedAt());
+        assertNotNull(registerResponse.getClientSecretExpiresAt());
+
+        String clientId = registerResponse.getClientId();
+        String clientSecret = registerResponse.getClientSecret();
+
+        // 2. Request Client Credentials Grant
+        String scope = "storage";
+
+        TokenClient tokenClient = new TokenClient(tokenEndpoint);
+        TokenResponse response = tokenClient.execClientCredentialsGrant(scope, clientId, clientSecret);
+
+        showClient(tokenClient);
+        assertEquals(response.getStatus(), 200, "Unexpected response code: " + response.getStatus());
+        assertNotNull(response.getEntity(), "The entity is null");
+        assertNotNull(response.getAccessToken(), "The access token is null");
+        assertNotNull(response.getTokenType(), "The token type is null");
+        assertNotNull(response.getScope(), "The scope is null");
+    }
+
+    @Parameters({"redirectUris", "sectorIdentifierUri"})
+    @Test
+    public void refreshingAccessTokenFail(final String redirectUris, final String sectorIdentifierUri) throws Exception {
+        showTitle("refreshingAccessTokenFail");
+
+        List<ResponseType> responseTypes = new ArrayList<ResponseType>();
+
+        // 1. Register client
+        RegisterRequest registerRequest = new RegisterRequest(ApplicationType.WEB, "oxAuth test app",
+                StringUtils.spaceSeparatedToList(redirectUris));
+        registerRequest.setResponseTypes(responseTypes);
+        registerRequest.setSectorIdentifierUri(sectorIdentifierUri);
+
+        RegisterClient registerClient = new RegisterClient(registrationEndpoint);
+        registerClient.setRequest(registerRequest);
+        RegisterResponse registerResponse = registerClient.exec();
+
+        showClient(registerClient);
+        assertEquals(registerResponse.getStatus(), 200, "Unexpected response code: " + registerResponse.getEntity());
+        assertNotNull(registerResponse.getClientId());
+        assertNotNull(registerResponse.getClientSecret());
+        assertNotNull(registerResponse.getRegistrationAccessToken());
+        assertNotNull(registerResponse.getClientIdIssuedAt());
+        assertNotNull(registerResponse.getClientSecretExpiresAt());
+
+        String clientId = registerResponse.getClientId();
+        String clientSecret = registerResponse.getClientSecret();
+
+        // 2. Request Refresh Token
+        String scope = "email read_stream manage_pages";
+        String refreshToken = "tGzv3JOkF0XG5Qx2TlKWIA";
+
+        TokenClient tokenClient = new TokenClient(tokenEndpoint);
+        TokenResponse response = tokenClient.execRefreshToken(scope, refreshToken, clientId, clientSecret);
+
+        showClient(tokenClient);
+        assertEquals(response.getStatus(), 400, "Unexpected response code: " + response.getStatus());
+        assertNotNull(response.getEntity(), "The entity is null");
+        assertNotNull(response.getErrorType(), "The error type is null");
+        assertNotNull(response.getErrorDescription(), "The error description is null");
+    }
+}
\ No newline at end of file
diff --git a/oxAuth/Client/src/test/java/org/gluu/oxauth/ws/rs/TokenRevocationTest.java b/oxAuth/Client/src/test/java/org/gluu/oxauth/ws/rs/TokenRevocationTest.java
new file mode 100644
index 00000000..2efb8301
--- /dev/null
+++ b/oxAuth/Client/src/test/java/org/gluu/oxauth/ws/rs/TokenRevocationTest.java
@@ -0,0 +1,981 @@
+/*
+ * oxAuth is available under the MIT License (2008). See http://opensource.org/licenses/MIT for full text.
+ *
+ * Copyright (c) 2014, Gluu
+ */
+
+package org.gluu.oxauth.ws.rs;
+
+import static org.testng.Assert.assertEquals;
+import static org.testng.Assert.assertNotNull;
+import static org.testng.Assert.assertNull;
+import static org.testng.Assert.assertTrue;
+
+import java.util.Arrays;
+import java.util.List;
+import java.util.UUID;
+
+import org.gluu.oxauth.BaseTest;
+import org.gluu.oxauth.client.AuthorizationRequest;
+import org.gluu.oxauth.client.AuthorizationResponse;
+import org.gluu.oxauth.client.JwkClient;
+import org.gluu.oxauth.client.RegisterClient;
+import org.gluu.oxauth.client.RegisterRequest;
+import org.gluu.oxauth.client.RegisterResponse;
+import org.gluu.oxauth.client.TokenClient;
+import org.gluu.oxauth.client.TokenRequest;
+import org.gluu.oxauth.client.TokenResponse;
+import org.gluu.oxauth.client.TokenRevocationClient;
+import org.gluu.oxauth.client.TokenRevocationRequest;
+import org.gluu.oxauth.client.TokenRevocationResponse;
+import org.gluu.oxauth.client.UserInfoClient;
+import org.gluu.oxauth.client.UserInfoResponse;
+import org.gluu.oxauth.model.common.AuthenticationMethod;
+import org.gluu.oxauth.model.common.GrantType;
+import org.gluu.oxauth.model.common.ResponseType;
+import org.gluu.oxauth.model.common.SubjectType;
+import org.gluu.oxauth.model.common.TokenTypeHint;
+import org.gluu.oxauth.model.crypto.signature.RSAPublicKey;
+import org.gluu.oxauth.model.crypto.signature.SignatureAlgorithm;
+import org.gluu.oxauth.model.jws.RSASigner;
+import org.gluu.oxauth.model.jwt.Jwt;
+import org.gluu.oxauth.model.jwt.JwtClaimName;
+import org.gluu.oxauth.model.jwt.JwtHeaderName;
+import org.gluu.oxauth.model.register.ApplicationType;
+import org.gluu.oxauth.model.util.StringUtils;
+import org.testng.annotations.Parameters;
+import org.testng.annotations.Test;
+
+/**
+ * The oxAuth authorization server's revocation policy acts as follows:
+ * The revocation of a particular token cause the revocation of related
+ * tokens and the underlying authorization grant.  If the particular
+ * token is a refresh token, then the authorization server will also
+ * invalidate all access tokens based on the same authorization grant.
+ * If the token passed to the request is an access token, the server will
+ * revoke the respective refresh token as well.
+ *
+ * @author Javier Rojas Blum
+ * @version May 14, 2019
+ */
+public class TokenRevocationTest extends BaseTest {
+
+    @Parameters({"userId", "userSecret", "redirectUris", "redirectUri", "sectorIdentifierUri"})
+    @Test
+    public void requestTokenRevocation_withPublicClient(
+            final String userId, final String userSecret, final String redirectUris, final String redirectUri, final String sectorIdentifierUri) {
+        showTitle("requestTokenRevocation_withPublicClient");
+
+        List<ResponseType> responseTypes = Arrays.asList(ResponseType.CODE, ResponseType.ID_TOKEN, ResponseType.TOKEN);
+        List<String> scopes = Arrays.asList("openid", "profile", "address", "email", "phone", "user_name");
+
+        // 1. Register client
+        RegisterResponse registerResponse = registerPublicClient(redirectUris, responseTypes, scopes, sectorIdentifierUri);
+
+        String clientId = registerResponse.getClientId();
+
+        // 2. Request authorization and receive the authorization code.
+        String nonce = UUID.randomUUID().toString();
+        AuthorizationResponse authorizationResponse = requestAuthorization(userId, userSecret, redirectUri, responseTypes, scopes, clientId, nonce);
+
+        String accessToken = authorizationResponse.getAccessToken();
+
+        // 3. Request user info
+        UserInfoClient userInfoClient1 = new UserInfoClient(userInfoEndpoint);
+        UserInfoResponse userInfoResponse1 = userInfoClient1.execUserInfo(accessToken);
+
+        showClient(userInfoClient1);
+        assertEquals(userInfoResponse1.getStatus(), 200, "Unexpected response code: " + userInfoResponse1.getStatus());
+        assertNotNull(userInfoResponse1.getClaim(JwtClaimName.NAME));
+
+        // 4. Request token revocation
+        TokenRevocationRequest revocationRequest = new TokenRevocationRequest();
+        revocationRequest.setToken(accessToken);
+        revocationRequest.setTokenTypeHint(TokenTypeHint.ACCESS_TOKEN);
+        revocationRequest.setAuthUsername(clientId);
+
+        TokenRevocationClient revocationClient = new TokenRevocationClient(tokenRevocationEndpoint);
+        revocationClient.setRequest(revocationRequest);
+
+        TokenRevocationResponse revocationResponse = revocationClient.exec();
+
+        showClient(revocationClient);
+        assertEquals(revocationResponse.getStatus(), 200, "Unexpected response code: " + revocationResponse.getStatus());
+
+        // 5. Request user info with the revoked access token should fail
+        UserInfoClient userInfoClient2 = new UserInfoClient(userInfoEndpoint);
+        UserInfoResponse userInfoResponse2 = userInfoClient2.execUserInfo(accessToken);
+
+        showClient(userInfoClient2);
+        assertEquals(userInfoResponse2.getStatus(), 401, "Unexpected response code: " + userInfoResponse2.getStatus());
+        assertNotNull(userInfoResponse2.getErrorType(), "Unexpected result: errorType not found");
+        assertNotNull(userInfoResponse2.getErrorDescription(), "Unexpected result: errorDescription not found");
+    }
+
+    @Parameters({"userId", "userSecret", "redirectUris", "redirectUri", "sectorIdentifierUri"})
+    @Test
+    public void requestTokenRevocation1(
+            final String userId, final String userSecret, final String redirectUris, final String redirectUri,
+            final String sectorIdentifierUri) throws Exception {
+        showTitle("requestTokenRevocation1");
+
+        List<ResponseType> responseTypes = Arrays.asList(
+                ResponseType.CODE,
+                ResponseType.ID_TOKEN);
+        List<String> scopes = Arrays.asList("openid", "profile", "address", "email", "phone", "user_name");
+
+        // 1. Register client
+        RegisterResponse registerResponse = registerClient(redirectUris, responseTypes, scopes, sectorIdentifierUri);
+
+        String clientId = registerResponse.getClientId();
+        String clientSecret = registerResponse.getClientSecret();
+
+        // 2. Request authorization and receive the authorization code.
+        String nonce = UUID.randomUUID().toString();
+        AuthorizationResponse authorizationResponse = requestAuthorization(userId, userSecret, redirectUri, responseTypes, scopes, clientId, nonce);
+
+        String scope = authorizationResponse.getScope();
+        String authorizationCode = authorizationResponse.getCode();
+        String idToken = authorizationResponse.getIdToken();
+
+        // 3. Request access token using the authorization code.
+        TokenRequest tokenRequest1 = new TokenRequest(GrantType.AUTHORIZATION_CODE);
+        tokenRequest1.setCode(authorizationCode);
+        tokenRequest1.setRedirectUri(redirectUri);
+        tokenRequest1.setAuthUsername(clientId);
+        tokenRequest1.setAuthPassword(clientSecret);
+        tokenRequest1.setAuthenticationMethod(AuthenticationMethod.CLIENT_SECRET_BASIC);
+
+        TokenClient tokenClient1 = new TokenClient(tokenEndpoint);
+        tokenClient1.setRequest(tokenRequest1);
+        TokenResponse tokenResponse1 = tokenClient1.exec();
+
+        showClient(tokenClient1);
+        assertEquals(tokenResponse1.getStatus(), 200, "Unexpected response code: " + tokenResponse1.getStatus());
+        assertNotNull(tokenResponse1.getEntity(), "The entity is null");
+        assertNotNull(tokenResponse1.getAccessToken(), "The access token is null");
+        assertNotNull(tokenResponse1.getExpiresIn(), "The expires in value is null");
+        assertNotNull(tokenResponse1.getTokenType(), "The token type is null");
+        assertNotNull(tokenResponse1.getRefreshToken(), "The refresh token is null");
+
+        String refreshToken = tokenResponse1.getRefreshToken();
+
+        // 4. Validate id_token
+        Jwt jwt = Jwt.parse(idToken);
+        assertNotNull(jwt.getHeader().getClaimAsString(JwtHeaderName.TYPE));
+        assertNotNull(jwt.getHeader().getClaimAsString(JwtHeaderName.ALGORITHM));
+        assertNotNull(jwt.getClaims().getClaimAsString(JwtClaimName.ISSUER));
+        assertNotNull(jwt.getClaims().getClaimAsString(JwtClaimName.AUDIENCE));
+        assertNotNull(jwt.getClaims().getClaimAsString(JwtClaimName.EXPIRATION_TIME));
+        assertNotNull(jwt.getClaims().getClaimAsString(JwtClaimName.ISSUED_AT));
+        assertNotNull(jwt.getClaims().getClaimAsString(JwtClaimName.SUBJECT_IDENTIFIER));
+        assertNotNull(jwt.getClaims().getClaimAsString(JwtClaimName.CODE_HASH));
+        assertNotNull(jwt.getClaims().getClaimAsString(JwtClaimName.AUTHENTICATION_TIME));
+        assertNotNull(jwt.getClaims().getClaimAsString(JwtClaimName.OX_OPENID_CONNECT_VERSION));
+
+        RSAPublicKey publicKey = JwkClient.getRSAPublicKey(
+                jwksUri,
+                jwt.getHeader().getClaimAsString(JwtHeaderName.KEY_ID));
+        RSASigner rsaSigner = new RSASigner(SignatureAlgorithm.RS256, publicKey);
+
+        assertTrue(rsaSigner.validate(jwt));
+
+        // 5. Request new access token using the refresh token.
+        TokenClient tokenClient2 = new TokenClient(tokenEndpoint);
+        TokenResponse tokenResponse2 = tokenClient2.execRefreshToken(scope, refreshToken, clientId, clientSecret);
+
+        showClient(tokenClient2);
+        assertEquals(tokenResponse2.getStatus(), 200, "Unexpected response code: " + tokenResponse2.getStatus());
+        assertNotNull(tokenResponse2.getEntity(), "The entity is null");
+        assertNotNull(tokenResponse2.getAccessToken(), "The access token is null");
+        assertNotNull(tokenResponse2.getTokenType(), "The token type is null");
+        assertNotNull(tokenResponse2.getRefreshToken(), "The refresh token is null");
+        assertNotNull(tokenResponse2.getScope(), "The scope is null");
+
+        String accessToken2 = tokenResponse2.getAccessToken();
+        String refreshToken2 = tokenResponse2.getRefreshToken();
+
+        // 6. Request user info
+        UserInfoClient userInfoClient1 = new UserInfoClient(userInfoEndpoint);
+        UserInfoResponse userInfoResponse1 = userInfoClient1.execUserInfo(accessToken2);
+
+        showClient(userInfoClient1);
+        assertEquals(userInfoResponse1.getStatus(), 200, "Unexpected response code: " + userInfoResponse1.getStatus());
+        assertNotNull(userInfoResponse1.getClaim(JwtClaimName.SUBJECT_IDENTIFIER));
+        assertNotNull(userInfoResponse1.getClaim(JwtClaimName.NAME));
+        assertNotNull(userInfoResponse1.getClaim(JwtClaimName.BIRTHDATE));
+        assertNotNull(userInfoResponse1.getClaim(JwtClaimName.FAMILY_NAME));
+        assertNotNull(userInfoResponse1.getClaim(JwtClaimName.GENDER));
+        assertNotNull(userInfoResponse1.getClaim(JwtClaimName.GIVEN_NAME));
+        assertNotNull(userInfoResponse1.getClaim(JwtClaimName.MIDDLE_NAME));
+        assertNotNull(userInfoResponse1.getClaim(JwtClaimName.NICKNAME));
+        assertNotNull(userInfoResponse1.getClaim(JwtClaimName.PICTURE));
+        assertNotNull(userInfoResponse1.getClaim(JwtClaimName.PREFERRED_USERNAME));
+        assertNotNull(userInfoResponse1.getClaim(JwtClaimName.PROFILE));
+        assertNotNull(userInfoResponse1.getClaim(JwtClaimName.WEBSITE));
+        assertNotNull(userInfoResponse1.getClaim(JwtClaimName.EMAIL));
+        assertNotNull(userInfoResponse1.getClaim(JwtClaimName.EMAIL_VERIFIED));
+        assertNotNull(userInfoResponse1.getClaim(JwtClaimName.PHONE_NUMBER));
+        assertNotNull(userInfoResponse1.getClaim(JwtClaimName.PHONE_NUMBER_VERIFIED));
+        assertNotNull(userInfoResponse1.getClaim(JwtClaimName.ADDRESS));
+        assertNotNull(userInfoResponse1.getClaim(JwtClaimName.LOCALE));
+        assertNotNull(userInfoResponse1.getClaim(JwtClaimName.ZONEINFO));
+        assertNotNull(userInfoResponse1.getClaim(JwtClaimName.USER_NAME));
+        assertNull(userInfoResponse1.getClaim("org_name"));
+        assertNull(userInfoResponse1.getClaim("work_phone"));
+
+        // 7. Request refresh token revocation
+        TokenRevocationRequest tokenRevocationRequest1 = new TokenRevocationRequest();
+        tokenRevocationRequest1.setToken(refreshToken2);
+        tokenRevocationRequest1.setTokenTypeHint(TokenTypeHint.REFRESH_TOKEN);
+        tokenRevocationRequest1.setAuthUsername(clientId);
+        tokenRevocationRequest1.setAuthPassword(clientSecret);
+
+        TokenRevocationClient tokenRevocationClient1 = new TokenRevocationClient(tokenRevocationEndpoint);
+        tokenRevocationClient1.setRequest(tokenRevocationRequest1);
+
+        TokenRevocationResponse tokenRevocationResponse1 = tokenRevocationClient1.exec();
+
+        showClient(tokenRevocationClient1);
+        assertEquals(tokenRevocationResponse1.getStatus(), 200, "Unexpected response code: " + tokenRevocationResponse1.getStatus());
+
+        // 8. Request new access token using the revoked refresh token should fail.
+        TokenClient tokenClient3 = new TokenClient(tokenEndpoint);
+        TokenResponse tokenResponse3 = tokenClient3.execRefreshToken(scope, refreshToken2, clientId, clientSecret);
+
+        showClient(tokenClient3);
+        assertEquals(tokenResponse3.getStatus(), 400, "Unexpected response code: " + tokenResponse3.getStatus());
+        assertNotNull(tokenResponse3.getEntity(), "The entity is null");
+        assertNotNull(tokenResponse3.getErrorType(), "The error type is null");
+        assertNotNull(tokenResponse3.getErrorDescription(), "The error description is null");
+
+        // 9. Request token revocation
+        TokenRevocationRequest tokenRevocationRequest2 = new TokenRevocationRequest();
+        tokenRevocationRequest2.setToken(accessToken2);
+        tokenRevocationRequest2.setTokenTypeHint(TokenTypeHint.ACCESS_TOKEN);
+        tokenRevocationRequest2.setAuthUsername(clientId);
+        tokenRevocationRequest2.setAuthPassword(clientSecret);
+
+        TokenRevocationClient tokenRevocationClient2 = new TokenRevocationClient(tokenRevocationEndpoint);
+        tokenRevocationClient2.setRequest(tokenRevocationRequest2);
+
+        TokenRevocationResponse tokenRevocationResponse2 = tokenRevocationClient2.exec();
+
+        showClient(tokenRevocationClient2);
+        assertEquals(tokenRevocationResponse2.getStatus(), 200, "Unexpected response code: " + tokenRevocationResponse2.getStatus());
+
+        // 10. Request user info with the revoked access token should fail
+        UserInfoClient userInfoClient2 = new UserInfoClient(userInfoEndpoint);
+        UserInfoResponse userInfoResponse2 = userInfoClient2.execUserInfo(accessToken2);
+
+        showClient(userInfoClient2);
+        assertEquals(userInfoResponse2.getStatus(), 401, "Unexpected response code: " + userInfoResponse2.getStatus());
+        assertNotNull(userInfoResponse2.getErrorType(), "Unexpected result: errorType not found");
+        assertNotNull(userInfoResponse2.getErrorDescription(), "Unexpected result: errorDescription not found");
+    }
+
+    @Parameters({"userId", "userSecret", "redirectUris", "redirectUri", "sectorIdentifierUri"})
+    @Test
+    public void requestTokenRevocation2(
+            final String userId, final String userSecret, final String redirectUris, final String redirectUri,
+            final String sectorIdentifierUri) throws Exception {
+        showTitle("requestTokenRevocation2");
+
+        List<ResponseType> responseTypes = Arrays.asList(
+                ResponseType.CODE,
+                ResponseType.ID_TOKEN);
+        List<String> scopes = Arrays.asList("openid", "profile", "address", "email", "phone", "user_name");
+
+        // 1. Register client
+        RegisterResponse registerResponse = registerClient(redirectUris, responseTypes, scopes, sectorIdentifierUri);
+
+        String clientId = registerResponse.getClientId();
+        String clientSecret = registerResponse.getClientSecret();
+
+        // 2. Request authorization and receive the authorization code.
+        String nonce = UUID.randomUUID().toString();
+        AuthorizationResponse authorizationResponse = requestAuthorization(userId, userSecret, redirectUri, responseTypes, scopes, clientId, nonce);
+
+        String scope = authorizationResponse.getScope();
+        String authorizationCode = authorizationResponse.getCode();
+        String idToken = authorizationResponse.getIdToken();
+
+        // 3. Request access token using the authorization code.
+        TokenRequest tokenRequest = new TokenRequest(GrantType.AUTHORIZATION_CODE);
+        tokenRequest.setCode(authorizationCode);
+        tokenRequest.setRedirectUri(redirectUri);
+        tokenRequest.setAuthUsername(clientId);
+        tokenRequest.setAuthPassword(clientSecret);
+        tokenRequest.setAuthenticationMethod(AuthenticationMethod.CLIENT_SECRET_BASIC);
+
+        TokenClient tokenClient1 = new TokenClient(tokenEndpoint);
+        tokenClient1.setRequest(tokenRequest);
+        TokenResponse tokenResponse1 = tokenClient1.exec();
+
+        showClient(tokenClient1);
+        assertEquals(tokenResponse1.getStatus(), 200, "Unexpected response code: " + tokenResponse1.getStatus());
+        assertNotNull(tokenResponse1.getEntity(), "The entity is null");
+        assertNotNull(tokenResponse1.getAccessToken(), "The access token is null");
+        assertNotNull(tokenResponse1.getExpiresIn(), "The expires in value is null");
+        assertNotNull(tokenResponse1.getTokenType(), "The token type is null");
+        assertNotNull(tokenResponse1.getRefreshToken(), "The refresh token is null");
+
+        String accessToken = tokenResponse1.getAccessToken();
+        String refreshToken = tokenResponse1.getRefreshToken();
+
+        // 4. Validate id_token
+        Jwt jwt = Jwt.parse(idToken);
+        assertNotNull(jwt.getHeader().getClaimAsString(JwtHeaderName.TYPE));
+        assertNotNull(jwt.getHeader().getClaimAsString(JwtHeaderName.ALGORITHM));
+        assertNotNull(jwt.getClaims().getClaimAsString(JwtClaimName.ISSUER));
+        assertNotNull(jwt.getClaims().getClaimAsString(JwtClaimName.AUDIENCE));
+        assertNotNull(jwt.getClaims().getClaimAsString(JwtClaimName.EXPIRATION_TIME));
+        assertNotNull(jwt.getClaims().getClaimAsString(JwtClaimName.ISSUED_AT));
+        assertNotNull(jwt.getClaims().getClaimAsString(JwtClaimName.SUBJECT_IDENTIFIER));
+        assertNotNull(jwt.getClaims().getClaimAsString(JwtClaimName.CODE_HASH));
+        assertNotNull(jwt.getClaims().getClaimAsString(JwtClaimName.AUTHENTICATION_TIME));
+        assertNotNull(jwt.getClaims().getClaimAsString(JwtClaimName.OX_OPENID_CONNECT_VERSION));
+
+        RSAPublicKey publicKey = JwkClient.getRSAPublicKey(
+                jwksUri,
+                jwt.getHeader().getClaimAsString(JwtHeaderName.KEY_ID));
+        RSASigner rsaSigner = new RSASigner(SignatureAlgorithm.RS256, publicKey);
+
+        assertTrue(rsaSigner.validate(jwt));
+
+        // 6. Request user info
+        UserInfoClient userInfoClient1 = new UserInfoClient(userInfoEndpoint);
+        UserInfoResponse userInfoResponse1 = userInfoClient1.execUserInfo(accessToken);
+
+        showClient(userInfoClient1);
+        assertEquals(userInfoResponse1.getStatus(), 200, "Unexpected response code: " + userInfoResponse1.getStatus());
+        assertNotNull(userInfoResponse1.getClaim(JwtClaimName.SUBJECT_IDENTIFIER));
+        assertNotNull(userInfoResponse1.getClaim(JwtClaimName.NAME));
+        assertNotNull(userInfoResponse1.getClaim(JwtClaimName.BIRTHDATE));
+        assertNotNull(userInfoResponse1.getClaim(JwtClaimName.FAMILY_NAME));
+        assertNotNull(userInfoResponse1.getClaim(JwtClaimName.GENDER));
+        assertNotNull(userInfoResponse1.getClaim(JwtClaimName.GIVEN_NAME));
+        assertNotNull(userInfoResponse1.getClaim(JwtClaimName.MIDDLE_NAME));
+        assertNotNull(userInfoResponse1.getClaim(JwtClaimName.NICKNAME));
+        assertNotNull(userInfoResponse1.getClaim(JwtClaimName.PICTURE));
+        assertNotNull(userInfoResponse1.getClaim(JwtClaimName.PREFERRED_USERNAME));
+        assertNotNull(userInfoResponse1.getClaim(JwtClaimName.PROFILE));
+        assertNotNull(userInfoResponse1.getClaim(JwtClaimName.WEBSITE));
+        assertNotNull(userInfoResponse1.getClaim(JwtClaimName.EMAIL));
+        assertNotNull(userInfoResponse1.getClaim(JwtClaimName.EMAIL_VERIFIED));
+        assertNotNull(userInfoResponse1.getClaim(JwtClaimName.PHONE_NUMBER));
+        assertNotNull(userInfoResponse1.getClaim(JwtClaimName.PHONE_NUMBER_VERIFIED));
+        assertNotNull(userInfoResponse1.getClaim(JwtClaimName.ADDRESS));
+        assertNotNull(userInfoResponse1.getClaim(JwtClaimName.LOCALE));
+        assertNotNull(userInfoResponse1.getClaim(JwtClaimName.ZONEINFO));
+        assertNotNull(userInfoResponse1.getClaim(JwtClaimName.USER_NAME));
+        assertNull(userInfoResponse1.getClaim("org_name"));
+        assertNull(userInfoResponse1.getClaim("work_phone"));
+
+        // 7. Request access token revocation
+        TokenRevocationRequest tokenRevocationRequest2 = new TokenRevocationRequest();
+        tokenRevocationRequest2.setToken(accessToken);
+        tokenRevocationRequest2.setTokenTypeHint(TokenTypeHint.ACCESS_TOKEN);
+        tokenRevocationRequest2.setAuthUsername(clientId);
+        tokenRevocationRequest2.setAuthPassword(clientSecret);
+
+        TokenRevocationClient tokenRevocationClient2 = new TokenRevocationClient(tokenRevocationEndpoint);
+        tokenRevocationClient2.setRequest(tokenRevocationRequest2);
+
+        TokenRevocationResponse tokenRevocationResponse2 = tokenRevocationClient2.exec();
+
+        showClient(tokenRevocationClient2);
+        assertEquals(tokenRevocationResponse2.getStatus(), 200, "Unexpected response code: " + tokenRevocationResponse2.getStatus());
+
+        // 8. Request user info with the revoked access token must fail
+        UserInfoClient userInfoClient2 = new UserInfoClient(userInfoEndpoint);
+        UserInfoResponse userInfoResponse2 = userInfoClient2.execUserInfo(accessToken);
+
+        showClient(userInfoClient2);
+        assertEquals(userInfoResponse2.getStatus(), 401, "Unexpected response code: " + userInfoResponse2.getStatus());
+        assertNotNull(userInfoResponse2.getErrorType(), "Unexpected result: errorType not found");
+        assertNotNull(userInfoResponse2.getErrorDescription(), "Unexpected result: errorDescription not found");
+
+        // 9. Request new access token using the refresh token must fail.
+        TokenClient tokenClient2 = new TokenClient(tokenEndpoint);
+        TokenResponse tokenResponse2 = tokenClient2.execRefreshToken(scope, refreshToken, clientId, clientSecret);
+
+        showClient(tokenClient2);
+        assertEquals(tokenResponse2.getStatus(), 400, "Unexpected response code: " + tokenResponse2.getStatus());
+        assertNotNull(tokenResponse2.getEntity(), "The entity is null");
+        assertNotNull(tokenResponse2.getErrorType(), "The error type is null");
+        assertNotNull(tokenResponse2.getErrorDescription(), "The error description is null");
+    }
+
+    @Parameters({"userId", "userSecret", "redirectUris", "redirectUri", "sectorIdentifierUri"})
+    @Test
+    public void requestTokenRevocation3(
+            final String userId, final String userSecret, final String redirectUris, final String redirectUri,
+            final String sectorIdentifierUri) throws Exception {
+        showTitle("requestTokenRevocation3");
+
+        List<ResponseType> responseTypes = Arrays.asList(
+                ResponseType.CODE,
+                ResponseType.ID_TOKEN);
+        List<String> scopes = Arrays.asList("openid", "profile", "address", "email", "phone", "user_name");
+
+        // 1. Register client
+        RegisterResponse registerResponse = registerClient(redirectUris, responseTypes, scopes, sectorIdentifierUri);
+
+        String clientId = registerResponse.getClientId();
+        String clientSecret = registerResponse.getClientSecret();
+
+        // 2. Request authorization and receive the authorization code.
+        String nonce = UUID.randomUUID().toString();
+        AuthorizationResponse authorizationResponse = requestAuthorization(userId, userSecret, redirectUri, responseTypes, scopes, clientId, nonce);
+
+        String scope = authorizationResponse.getScope();
+        String authorizationCode = authorizationResponse.getCode();
+        String idToken = authorizationResponse.getIdToken();
+
+        // 3. Request access token using the authorization code.
+        TokenRequest tokenRequest = new TokenRequest(GrantType.AUTHORIZATION_CODE);
+        tokenRequest.setCode(authorizationCode);
+        tokenRequest.setRedirectUri(redirectUri);
+        tokenRequest.setAuthUsername(clientId);
+        tokenRequest.setAuthPassword(clientSecret);
+        tokenRequest.setAuthenticationMethod(AuthenticationMethod.CLIENT_SECRET_BASIC);
+
+        TokenClient tokenClient1 = new TokenClient(tokenEndpoint);
+        tokenClient1.setRequest(tokenRequest);
+        TokenResponse tokenResponse1 = tokenClient1.exec();
+
+        showClient(tokenClient1);
+        assertEquals(tokenResponse1.getStatus(), 200, "Unexpected response code: " + tokenResponse1.getStatus());
+        assertNotNull(tokenResponse1.getEntity(), "The entity is null");
+        assertNotNull(tokenResponse1.getAccessToken(), "The access token is null");
+        assertNotNull(tokenResponse1.getExpiresIn(), "The expires in value is null");
+        assertNotNull(tokenResponse1.getTokenType(), "The token type is null");
+        assertNotNull(tokenResponse1.getRefreshToken(), "The refresh token is null");
+
+        String accessToken = tokenResponse1.getAccessToken();
+        String refreshToken = tokenResponse1.getRefreshToken();
+
+        // 4. Validate id_token
+        Jwt jwt = Jwt.parse(idToken);
+        assertNotNull(jwt.getHeader().getClaimAsString(JwtHeaderName.TYPE));
+        assertNotNull(jwt.getHeader().getClaimAsString(JwtHeaderName.ALGORITHM));
+        assertNotNull(jwt.getClaims().getClaimAsString(JwtClaimName.ISSUER));
+        assertNotNull(jwt.getClaims().getClaimAsString(JwtClaimName.AUDIENCE));
+        assertNotNull(jwt.getClaims().getClaimAsString(JwtClaimName.EXPIRATION_TIME));
+        assertNotNull(jwt.getClaims().getClaimAsString(JwtClaimName.ISSUED_AT));
+        assertNotNull(jwt.getClaims().getClaimAsString(JwtClaimName.SUBJECT_IDENTIFIER));
+        assertNotNull(jwt.getClaims().getClaimAsString(JwtClaimName.CODE_HASH));
+        assertNotNull(jwt.getClaims().getClaimAsString(JwtClaimName.AUTHENTICATION_TIME));
+        assertNotNull(jwt.getClaims().getClaimAsString(JwtClaimName.OX_OPENID_CONNECT_VERSION));
+
+        RSAPublicKey publicKey = JwkClient.getRSAPublicKey(
+                jwksUri,
+                jwt.getHeader().getClaimAsString(JwtHeaderName.KEY_ID));
+        RSASigner rsaSigner = new RSASigner(SignatureAlgorithm.RS256, publicKey);
+
+        assertTrue(rsaSigner.validate(jwt));
+
+        // 5. Request refresh token revocation
+        TokenRevocationRequest tokenRevocationRequest1 = new TokenRevocationRequest();
+        tokenRevocationRequest1.setToken(refreshToken);
+        tokenRevocationRequest1.setTokenTypeHint(TokenTypeHint.REFRESH_TOKEN);
+        tokenRevocationRequest1.setAuthUsername(clientId);
+        tokenRevocationRequest1.setAuthPassword(clientSecret);
+
+        TokenRevocationClient tokenRevocationClient1 = new TokenRevocationClient(tokenRevocationEndpoint);
+        tokenRevocationClient1.setRequest(tokenRevocationRequest1);
+
+        TokenRevocationResponse tokenRevocationResponse1 = tokenRevocationClient1.exec();
+
+        showClient(tokenRevocationClient1);
+        assertEquals(tokenRevocationResponse1.getStatus(), 200, "Unexpected response code: " + tokenRevocationResponse1.getStatus());
+
+        // 6. Request new access token using revoked refresh token.
+        TokenClient tokenClient2 = new TokenClient(tokenEndpoint);
+        TokenResponse tokenResponse2 = tokenClient2.execRefreshToken(scope, refreshToken, clientId, clientSecret);
+
+        showClient(tokenClient2);
+        assertEquals(tokenResponse2.getStatus(), 400, "Unexpected response code: " + tokenResponse2.getStatus());
+        assertNotNull(tokenResponse2.getEntity(), "The entity is null");
+        assertNotNull(tokenResponse2.getErrorType(), "The error type is null");
+        assertNotNull(tokenResponse2.getErrorDescription(), "The error description is null");
+
+        // 7. Request user info must fail
+        UserInfoClient userInfoClient1 = new UserInfoClient(userInfoEndpoint);
+        UserInfoResponse userInfoResponse1 = userInfoClient1.execUserInfo(accessToken);
+
+        showClient(userInfoClient1);
+        assertEquals(userInfoResponse1.getStatus(), 401, "Unexpected response code: " + userInfoResponse1.getStatus());
+        assertNotNull(userInfoResponse1.getErrorType(), "Unexpected result: errorType not found");
+        assertNotNull(userInfoResponse1.getErrorDescription(), "Unexpected result: errorDescription not found");
+
+        // 8. Request access token revocation
+        TokenRevocationRequest tokenRevocationRequest2 = new TokenRevocationRequest();
+        tokenRevocationRequest2.setToken(accessToken);
+        tokenRevocationRequest2.setTokenTypeHint(TokenTypeHint.ACCESS_TOKEN);
+        tokenRevocationRequest2.setAuthUsername(clientId);
+        tokenRevocationRequest2.setAuthPassword(clientSecret);
+
+        TokenRevocationClient tokenRevocationClient2 = new TokenRevocationClient(tokenRevocationEndpoint);
+        tokenRevocationClient2.setRequest(tokenRevocationRequest2);
+
+        TokenRevocationResponse tokenRevocationResponse2 = tokenRevocationClient2.exec();
+
+        showClient(tokenRevocationClient2);
+        assertEquals(tokenRevocationResponse2.getStatus(), 200, "Unexpected response code: " + tokenRevocationResponse2.getStatus());
+
+        // 9. Request user info with the revoked access token should fail
+        UserInfoClient userInfoClient2 = new UserInfoClient(userInfoEndpoint);
+        UserInfoResponse userInfoResponse2 = userInfoClient2.execUserInfo(accessToken);
+
+        showClient(userInfoClient2);
+        assertEquals(userInfoResponse2.getStatus(), 401, "Unexpected response code: " + userInfoResponse2.getStatus());
+        assertNotNull(userInfoResponse2.getErrorType(), "Unexpected result: errorType not found");
+        assertNotNull(userInfoResponse2.getErrorDescription(), "Unexpected result: errorDescription not found");
+    }
+
+    @Parameters({"userId", "userSecret", "redirectUris", "redirectUri", "sectorIdentifierUri"})
+    @Test
+    public void requestTokenRevocationOptionalTokenTypeHint(
+            final String userId, final String userSecret, final String redirectUris, final String redirectUri,
+            final String sectorIdentifierUri) throws Exception {
+        showTitle("requestTokenRevocationOptionalTokenTypeHint");
+
+        List<ResponseType> responseTypes = Arrays.asList(
+                ResponseType.CODE,
+                ResponseType.ID_TOKEN);
+        List<String> scopes = Arrays.asList("openid", "profile", "address", "email", "phone", "user_name");
+
+        // 1. Register client
+        RegisterResponse registerResponse = registerClient(redirectUris, responseTypes, scopes, sectorIdentifierUri);
+
+        String clientId = registerResponse.getClientId();
+        String clientSecret = registerResponse.getClientSecret();
+
+        // 2. Request authorization and receive the authorization code.
+        String nonce = UUID.randomUUID().toString();
+        AuthorizationResponse authorizationResponse = requestAuthorization(userId, userSecret, redirectUri, responseTypes, scopes, clientId, nonce);
+
+        String scope = authorizationResponse.getScope();
+        String authorizationCode = authorizationResponse.getCode();
+        String idToken = authorizationResponse.getIdToken();
+
+        // 3. Request access token using the authorization code.
+        TokenRequest tokenRequest = new TokenRequest(GrantType.AUTHORIZATION_CODE);
+        tokenRequest.setCode(authorizationCode);
+        tokenRequest.setRedirectUri(redirectUri);
+        tokenRequest.setAuthUsername(clientId);
+        tokenRequest.setAuthPassword(clientSecret);
+        tokenRequest.setAuthenticationMethod(AuthenticationMethod.CLIENT_SECRET_BASIC);
+
+        TokenClient tokenClient1 = new TokenClient(tokenEndpoint);
+        tokenClient1.setRequest(tokenRequest);
+        TokenResponse tokenResponse1 = tokenClient1.exec();
+
+        showClient(tokenClient1);
+        assertEquals(tokenResponse1.getStatus(), 200, "Unexpected response code: " + tokenResponse1.getStatus());
+        assertNotNull(tokenResponse1.getEntity(), "The entity is null");
+        assertNotNull(tokenResponse1.getAccessToken(), "The access token is null");
+        assertNotNull(tokenResponse1.getExpiresIn(), "The expires in value is null");
+        assertNotNull(tokenResponse1.getTokenType(), "The token type is null");
+        assertNotNull(tokenResponse1.getRefreshToken(), "The refresh token is null");
+
+        String refreshToken = tokenResponse1.getRefreshToken();
+
+        // 4. Validate id_token
+        Jwt jwt = Jwt.parse(idToken);
+        assertNotNull(jwt.getHeader().getClaimAsString(JwtHeaderName.TYPE));
+        assertNotNull(jwt.getHeader().getClaimAsString(JwtHeaderName.ALGORITHM));
+        assertNotNull(jwt.getClaims().getClaimAsString(JwtClaimName.ISSUER));
+        assertNotNull(jwt.getClaims().getClaimAsString(JwtClaimName.AUDIENCE));
+        assertNotNull(jwt.getClaims().getClaimAsString(JwtClaimName.EXPIRATION_TIME));
+        assertNotNull(jwt.getClaims().getClaimAsString(JwtClaimName.ISSUED_AT));
+        assertNotNull(jwt.getClaims().getClaimAsString(JwtClaimName.SUBJECT_IDENTIFIER));
+        assertNotNull(jwt.getClaims().getClaimAsString(JwtClaimName.CODE_HASH));
+        assertNotNull(jwt.getClaims().getClaimAsString(JwtClaimName.AUTHENTICATION_TIME));
+        assertNotNull(jwt.getClaims().getClaimAsString(JwtClaimName.OX_OPENID_CONNECT_VERSION));
+
+        RSAPublicKey publicKey = JwkClient.getRSAPublicKey(
+                jwksUri,
+                jwt.getHeader().getClaimAsString(JwtHeaderName.KEY_ID));
+        RSASigner rsaSigner = new RSASigner(SignatureAlgorithm.RS256, publicKey);
+
+        assertTrue(rsaSigner.validate(jwt));
+
+        // 5. Request new access token using the refresh token.
+        TokenClient tokenClient2 = new TokenClient(tokenEndpoint);
+        TokenResponse tokenResponse2 = tokenClient2.execRefreshToken(scope, refreshToken, clientId, clientSecret);
+
+        showClient(tokenClient2);
+        assertEquals(tokenResponse2.getStatus(), 200, "Unexpected response code: " + tokenResponse2.getStatus());
+        assertNotNull(tokenResponse2.getEntity(), "The entity is null");
+        assertNotNull(tokenResponse2.getAccessToken(), "The access token is null");
+        assertNotNull(tokenResponse2.getTokenType(), "The token type is null");
+        assertNotNull(tokenResponse2.getRefreshToken(), "The refresh token is null");
+        assertNotNull(tokenResponse2.getScope(), "The scope is null");
+
+        String accessToken = tokenResponse2.getAccessToken();
+        String refreshToken2 = tokenResponse2.getRefreshToken();
+
+        // 6. Request user info
+        UserInfoClient userInfoClient1 = new UserInfoClient(userInfoEndpoint);
+        UserInfoResponse userInfoResponse1 = userInfoClient1.execUserInfo(accessToken);
+
+        showClient(userInfoClient1);
+        assertEquals(userInfoResponse1.getStatus(), 200, "Unexpected response code: " + userInfoResponse1.getStatus());
+        assertNotNull(userInfoResponse1.getClaim(JwtClaimName.SUBJECT_IDENTIFIER));
+        assertNotNull(userInfoResponse1.getClaim(JwtClaimName.NAME));
+        assertNotNull(userInfoResponse1.getClaim(JwtClaimName.BIRTHDATE));
+        assertNotNull(userInfoResponse1.getClaim(JwtClaimName.FAMILY_NAME));
+        assertNotNull(userInfoResponse1.getClaim(JwtClaimName.GENDER));
+        assertNotNull(userInfoResponse1.getClaim(JwtClaimName.GIVEN_NAME));
+        assertNotNull(userInfoResponse1.getClaim(JwtClaimName.MIDDLE_NAME));
+        assertNotNull(userInfoResponse1.getClaim(JwtClaimName.NICKNAME));
+        assertNotNull(userInfoResponse1.getClaim(JwtClaimName.PICTURE));
+        assertNotNull(userInfoResponse1.getClaim(JwtClaimName.PREFERRED_USERNAME));
+        assertNotNull(userInfoResponse1.getClaim(JwtClaimName.PROFILE));
+        assertNotNull(userInfoResponse1.getClaim(JwtClaimName.WEBSITE));
+        assertNotNull(userInfoResponse1.getClaim(JwtClaimName.EMAIL));
+        assertNotNull(userInfoResponse1.getClaim(JwtClaimName.EMAIL_VERIFIED));
+        assertNotNull(userInfoResponse1.getClaim(JwtClaimName.PHONE_NUMBER));
+        assertNotNull(userInfoResponse1.getClaim(JwtClaimName.PHONE_NUMBER_VERIFIED));
+        assertNotNull(userInfoResponse1.getClaim(JwtClaimName.ADDRESS));
+        assertNotNull(userInfoResponse1.getClaim(JwtClaimName.LOCALE));
+        assertNotNull(userInfoResponse1.getClaim(JwtClaimName.ZONEINFO));
+        assertNotNull(userInfoResponse1.getClaim(JwtClaimName.USER_NAME));
+        assertNull(userInfoResponse1.getClaim("org_name"));
+        assertNull(userInfoResponse1.getClaim("work_phone"));
+
+        // 7. Request refresh token revocation
+        TokenRevocationRequest tokenRevocationRequest1 = new TokenRevocationRequest();
+        tokenRevocationRequest1.setToken(refreshToken2);
+        tokenRevocationRequest1.setAuthUsername(clientId);
+        tokenRevocationRequest1.setAuthPassword(clientSecret);
+
+        TokenRevocationClient tokenRevocationClient1 = new TokenRevocationClient(tokenRevocationEndpoint);
+        tokenRevocationClient1.setRequest(tokenRevocationRequest1);
+
+        TokenRevocationResponse tokenRevocationResponse1 = tokenRevocationClient1.exec();
+
+        showClient(tokenRevocationClient1);
+        assertEquals(tokenRevocationResponse1.getStatus(), 200, "Unexpected response code: " + tokenRevocationResponse1.getStatus());
+
+        // 8. Request new access token using the revoked refresh token should fail.
+        TokenClient tokenClient3 = new TokenClient(tokenEndpoint);
+        TokenResponse tokenResponse3 = tokenClient3.execRefreshToken(scope, refreshToken2, clientId, clientSecret);
+
+        showClient(tokenClient3);
+        assertEquals(tokenResponse3.getStatus(), 400, "Unexpected response code: " + tokenResponse2.getStatus());
+        assertNotNull(tokenResponse3.getEntity(), "The entity is null");
+        assertNotNull(tokenResponse3.getErrorType(), "The error type is null");
+        assertNotNull(tokenResponse3.getErrorDescription(), "The error description is null");
+
+        // 9. Request token revocation
+        TokenRevocationRequest tokenRevocationRequest2 = new TokenRevocationRequest();
+        tokenRevocationRequest2.setToken(accessToken);
+        tokenRevocationRequest2.setAuthUsername(clientId);
+        tokenRevocationRequest2.setAuthPassword(clientSecret);
+
+        TokenRevocationClient tokenRevocationClient2 = new TokenRevocationClient(tokenRevocationEndpoint);
+        tokenRevocationClient2.setRequest(tokenRevocationRequest2);
+
+        TokenRevocationResponse tokenRevocationResponse2 = tokenRevocationClient2.exec();
+
+        showClient(tokenRevocationClient2);
+        assertEquals(tokenRevocationResponse2.getStatus(), 200, "Unexpected response code: " + tokenRevocationResponse2.getStatus());
+
+        // 10. Request user info with the revoked access token should fail
+        UserInfoClient userInfoClient2 = new UserInfoClient(userInfoEndpoint);
+        UserInfoResponse userInfoResponse2 = userInfoClient2.execUserInfo(accessToken);
+
+        showClient(userInfoClient2);
+        assertEquals(userInfoResponse2.getStatus(), 401, "Unexpected response code: " + userInfoResponse2.getStatus());
+        assertNotNull(userInfoResponse2.getErrorType(), "Unexpected result: errorType not found");
+        assertNotNull(userInfoResponse2.getErrorDescription(), "Unexpected result: errorDescription not found");
+    }
+
+    @Parameters({"userId", "userSecret", "redirectUris", "redirectUri", "sectorIdentifierUri"})
+    @Test
+    public void requestTokenRevocationFail1(
+            final String userId, final String userSecret, final String redirectUris, final String redirectUri,
+            final String sectorIdentifierUri) {
+        showTitle("requestTokenRevocationFail1");
+
+        List<ResponseType> responseTypes = Arrays.asList(
+                ResponseType.CODE,
+                ResponseType.ID_TOKEN);
+        List<String> scopes = Arrays.asList("openid", "profile", "address", "email", "phone", "user_name");
+
+        // 1. Register client
+        RegisterResponse registerResponse = registerClient(redirectUris, responseTypes, scopes, sectorIdentifierUri);
+
+        String clientId = registerResponse.getClientId();
+        String clientSecret = registerResponse.getClientSecret();
+
+        // 2. Request authorization and receive the authorization code.
+        String nonce = UUID.randomUUID().toString();
+        AuthorizationResponse authorizationResponse = requestAuthorization(userId, userSecret, redirectUri, responseTypes, scopes, clientId, nonce);
+
+        String authorizationCode = authorizationResponse.getCode();
+
+        // 3. Request access token using the authorization code.
+        TokenRequest tokenRequest = new TokenRequest(GrantType.AUTHORIZATION_CODE);
+        tokenRequest.setCode(authorizationCode);
+        tokenRequest.setRedirectUri(redirectUri);
+        tokenRequest.setAuthUsername(clientId);
+        tokenRequest.setAuthPassword(clientSecret);
+        tokenRequest.setAuthenticationMethod(AuthenticationMethod.CLIENT_SECRET_BASIC);
+
+        TokenClient tokenClient = new TokenClient(tokenEndpoint);
+        tokenClient.setRequest(tokenRequest);
+        TokenResponse tokenResponse = tokenClient.exec();
+
+        showClient(tokenClient);
+        assertEquals(tokenResponse.getStatus(), 200, "Unexpected response code: " + tokenResponse.getStatus());
+        assertNotNull(tokenResponse.getEntity(), "The entity is null");
+        assertNotNull(tokenResponse.getAccessToken(), "The access token is null");
+        assertNotNull(tokenResponse.getExpiresIn(), "The expires in value is null");
+        assertNotNull(tokenResponse.getTokenType(), "The token type is null");
+        assertNotNull(tokenResponse.getRefreshToken(), "The refresh token is null");
+
+        String refreshToken = tokenResponse.getRefreshToken();
+
+        // 4. Request refresh token revocation
+        TokenRevocationRequest tokenRevocationRequest = new TokenRevocationRequest();
+        tokenRevocationRequest.setToken(refreshToken);
+        tokenRevocationRequest.setTokenTypeHint(TokenTypeHint.REFRESH_TOKEN);
+        tokenRevocationRequest.setAuthUsername(clientId);
+        tokenRevocationRequest.setAuthPassword("INVALID_CLIENT_SECRET");
+
+        TokenRevocationClient tokenRevocationClient = new TokenRevocationClient(tokenRevocationEndpoint);
+        tokenRevocationClient.setRequest(tokenRevocationRequest);
+
+        TokenRevocationResponse tokenRevocationResponse = tokenRevocationClient.exec();
+
+        showClient(tokenRevocationClient);
+        assertEquals(tokenRevocationResponse.getStatus(), 401, "Unexpected response code: " + tokenRevocationResponse.getStatus());
+        assertNotNull(tokenRevocationResponse.getEntity(), "The entity is null");
+        assertNotNull(tokenRevocationResponse.getErrorType(), "The error type is null");
+        assertNotNull(tokenRevocationResponse.getErrorDescription(), "The error description is null");
+    }
+
+    @Parameters({"userId", "userSecret", "redirectUris", "redirectUri", "sectorIdentifierUri"})
+    @Test
+    public void requestTokenRevocationFail2(
+            final String userId, final String userSecret, final String redirectUris, final String redirectUri,
+            final String sectorIdentifierUri) {
+        showTitle("requestTokenRevocationFail2");
+
+        List<ResponseType> responseTypes = Arrays.asList(
+                ResponseType.CODE,
+                ResponseType.ID_TOKEN);
+        List<String> scopes = Arrays.asList("openid", "profile", "address", "email", "phone", "user_name");
+
+        // 1. Register client
+        RegisterResponse registerResponse = registerClient(redirectUris, responseTypes, scopes, sectorIdentifierUri);
+
+        String clientId = registerResponse.getClientId();
+        String clientSecret = registerResponse.getClientSecret();
+
+        // 2. Request authorization and receive the authorization code.
+        String nonce = UUID.randomUUID().toString();
+        AuthorizationResponse authorizationResponse = requestAuthorization(userId, userSecret, redirectUri, responseTypes, scopes, clientId, nonce);
+
+        String authorizationCode = authorizationResponse.getCode();
+
+        // 3. Request access token using the authorization code.
+        TokenRequest tokenRequest = new TokenRequest(GrantType.AUTHORIZATION_CODE);
+        tokenRequest.setCode(authorizationCode);
+        tokenRequest.setRedirectUri(redirectUri);
+        tokenRequest.setAuthUsername(clientId);
+        tokenRequest.setAuthPassword(clientSecret);
+        tokenRequest.setAuthenticationMethod(AuthenticationMethod.CLIENT_SECRET_BASIC);
+
+        TokenClient tokenClient = new TokenClient(tokenEndpoint);
+        tokenClient.setRequest(tokenRequest);
+        TokenResponse tokenResponse = tokenClient.exec();
+
+        showClient(tokenClient);
+        assertEquals(tokenResponse.getStatus(), 200, "Unexpected response code: " + tokenResponse.getStatus());
+        assertNotNull(tokenResponse.getEntity(), "The entity is null");
+        assertNotNull(tokenResponse.getAccessToken(), "The access token is null");
+        assertNotNull(tokenResponse.getExpiresIn(), "The expires in value is null");
+        assertNotNull(tokenResponse.getTokenType(), "The token type is null");
+        assertNotNull(tokenResponse.getRefreshToken(), "The refresh token is null");
+
+        String accessToken = tokenResponse.getAccessToken();
+
+        // 4. Request refresh token revocation: Invalid tokens do not cause an error.
+        TokenRevocationRequest tokenRevocationRequest = new TokenRevocationRequest();
+        tokenRevocationRequest.setToken("INVALID_ACCESS_TOKEN");
+        tokenRevocationRequest.setTokenTypeHint(TokenTypeHint.ACCESS_TOKEN);
+        tokenRevocationRequest.setAuthUsername(clientId);
+        tokenRevocationRequest.setAuthPassword(clientSecret);
+
+        TokenRevocationClient tokenRevocationClient = new TokenRevocationClient(tokenRevocationEndpoint);
+        tokenRevocationClient.setRequest(tokenRevocationRequest);
+
+        TokenRevocationResponse tokenRevocationResponse = tokenRevocationClient.exec();
+
+        showClient(tokenRevocationClient);
+        assertEquals(tokenRevocationResponse.getStatus(), 200, "Unexpected response code: " + tokenRevocationResponse.getStatus());
+
+        // 5. Request user info
+        UserInfoClient userInfoClient = new UserInfoClient(userInfoEndpoint);
+        UserInfoResponse userInfoResponse = userInfoClient.execUserInfo(accessToken);
+
+        showClient(userInfoClient);
+        assertEquals(userInfoResponse.getStatus(), 200, "Unexpected response code: " + userInfoResponse.getStatus());
+        assertNotNull(userInfoResponse.getClaim(JwtClaimName.SUBJECT_IDENTIFIER));
+        assertNotNull(userInfoResponse.getClaim(JwtClaimName.NAME));
+        assertNotNull(userInfoResponse.getClaim(JwtClaimName.BIRTHDATE));
+        assertNotNull(userInfoResponse.getClaim(JwtClaimName.FAMILY_NAME));
+        assertNotNull(userInfoResponse.getClaim(JwtClaimName.GENDER));
+        assertNotNull(userInfoResponse.getClaim(JwtClaimName.GIVEN_NAME));
+        assertNotNull(userInfoResponse.getClaim(JwtClaimName.MIDDLE_NAME));
+        assertNotNull(userInfoResponse.getClaim(JwtClaimName.NICKNAME));
+        assertNotNull(userInfoResponse.getClaim(JwtClaimName.PICTURE));
+        assertNotNull(userInfoResponse.getClaim(JwtClaimName.PREFERRED_USERNAME));
+        assertNotNull(userInfoResponse.getClaim(JwtClaimName.PROFILE));
+        assertNotNull(userInfoResponse.getClaim(JwtClaimName.WEBSITE));
+        assertNotNull(userInfoResponse.getClaim(JwtClaimName.EMAIL));
+        assertNotNull(userInfoResponse.getClaim(JwtClaimName.EMAIL_VERIFIED));
+        assertNotNull(userInfoResponse.getClaim(JwtClaimName.PHONE_NUMBER));
+        assertNotNull(userInfoResponse.getClaim(JwtClaimName.PHONE_NUMBER_VERIFIED));
+        assertNotNull(userInfoResponse.getClaim(JwtClaimName.ADDRESS));
+        assertNotNull(userInfoResponse.getClaim(JwtClaimName.LOCALE));
+        assertNotNull(userInfoResponse.getClaim(JwtClaimName.ZONEINFO));
+        assertNotNull(userInfoResponse.getClaim(JwtClaimName.USER_NAME));
+        assertNull(userInfoResponse.getClaim("org_name"));
+        assertNull(userInfoResponse.getClaim("work_phone"));
+    }
+
+    @Parameters({"userId", "userSecret", "redirectUris", "redirectUri", "sectorIdentifierUri"})
+    @Test
+    public void requestTokenRevocationFail3(
+            final String userId, final String userSecret, final String redirectUris, final String redirectUri,
+            final String sectorIdentifierUri) {
+        showTitle("requestTokenRevocationFail3");
+
+        List<ResponseType> responseTypes = Arrays.asList(
+                ResponseType.CODE,
+                ResponseType.ID_TOKEN);
+        List<String> scopes = Arrays.asList("openid", "profile", "address", "email", "phone", "user_name");
+
+        // 1. Register client
+        RegisterResponse registerResponse = registerClient(redirectUris, responseTypes, scopes, sectorIdentifierUri);
+
+        String clientId = registerResponse.getClientId();
+        String clientSecret = registerResponse.getClientSecret();
+
+        // 2. Request authorization and receive the authorization code.
+        String nonce = UUID.randomUUID().toString();
+        AuthorizationResponse authorizationResponse = requestAuthorization(userId, userSecret, redirectUri, responseTypes, scopes, clientId, nonce);
+
+        String authorizationCode = authorizationResponse.getCode();
+
+        // 3. Request access token using the authorization code.
+        TokenRequest tokenRequest = new TokenRequest(GrantType.AUTHORIZATION_CODE);
+        tokenRequest.setCode(authorizationCode);
+        tokenRequest.setRedirectUri(redirectUri);
+        tokenRequest.setAuthUsername(clientId);
+        tokenRequest.setAuthPassword(clientSecret);
+        tokenRequest.setAuthenticationMethod(AuthenticationMethod.CLIENT_SECRET_BASIC);
+
+        TokenClient tokenClient = new TokenClient(tokenEndpoint);
+        tokenClient.setRequest(tokenRequest);
+        TokenResponse tokenResponse = tokenClient.exec();
+
+        showClient(tokenClient);
+        assertEquals(tokenResponse.getStatus(), 200, "Unexpected response code: " + tokenResponse.getStatus());
+        assertNotNull(tokenResponse.getEntity(), "The entity is null");
+        assertNotNull(tokenResponse.getAccessToken(), "The access token is null");
+        assertNotNull(tokenResponse.getExpiresIn(), "The expires in value is null");
+        assertNotNull(tokenResponse.getTokenType(), "The token type is null");
+        assertNotNull(tokenResponse.getRefreshToken(), "The refresh token is null");
+
+        String refreshToken = tokenResponse.getRefreshToken();
+
+        // 4. Request token revocation without required parameter token
+        TokenRevocationRequest tokenRevocationRequest = new TokenRevocationRequest();
+        tokenRevocationRequest.setToken(null);
+        tokenRevocationRequest.setAuthUsername(clientId);
+        tokenRevocationRequest.setAuthPassword(clientSecret);
+
+        TokenRevocationClient tokenRevocationClient = new TokenRevocationClient(tokenRevocationEndpoint);
+        tokenRevocationClient.setRequest(tokenRevocationRequest);
+
+        TokenRevocationResponse tokenRevocationResponse = tokenRevocationClient.exec();
+
+        showClient(tokenRevocationClient);
+        assertEquals(tokenRevocationResponse.getStatus(), 400, "Unexpected response code: " + tokenRevocationResponse.getStatus());
+        assertNotNull(tokenRevocationResponse.getEntity(), "The entity is null");
+        assertNotNull(tokenRevocationResponse.getErrorType(), "The error type is null");
+        assertNotNull(tokenRevocationResponse.getErrorDescription(), "The error description is null");
+    }
+
+    private AuthorizationResponse requestAuthorization(final String userId, final String userSecret, final String redirectUri,
+                                                       List<ResponseType> responseTypes, List<String> scopes, String clientId, String nonce) {
+        String state = UUID.randomUUID().toString();
+
+        AuthorizationRequest authorizationRequest = new AuthorizationRequest(responseTypes, clientId, scopes, redirectUri, nonce);
+        authorizationRequest.setState(state);
+
+        AuthorizationResponse authorizationResponse = authenticateResourceOwnerAndGrantAccess(
+                authorizationEndpoint, authorizationRequest, userId, userSecret);
+
+        assertNotNull(authorizationResponse.getLocation(), "The location is null");
+        assertNotNull(authorizationResponse.getCode(), "The authorization code is null");
+        assertNotNull(authorizationResponse.getState(), "The state is null");
+        assertNotNull(authorizationResponse.getScope(), "The scope is null");
+        return authorizationResponse;
+    }
+
+    private RegisterResponse registerClient(
+            final String redirectUris, List<ResponseType> responseTypes, List<String> scopes, String sectorIdentifierUri) {
+        RegisterRequest registerRequest = new RegisterRequest(ApplicationType.WEB, "oxAuth test app",
+                StringUtils.spaceSeparatedToList(redirectUris));
+        registerRequest.setResponseTypes(responseTypes);
+        registerRequest.setScope(scopes);
+        registerRequest.setSubjectType(SubjectType.PAIRWISE);
+        registerRequest.setSectorIdentifierUri(sectorIdentifierUri);
+
+        RegisterClient registerClient = new RegisterClient(registrationEndpoint);
+        registerClient.setRequest(registerRequest);
+        RegisterResponse registerResponse = registerClient.exec();
+
+        showClient(registerClient);
+        assertEquals(registerResponse.getStatus(), 200, "Unexpected response code: " + registerResponse.getEntity());
+        assertNotNull(registerResponse.getClientId());
+        assertNotNull(registerResponse.getClientSecret());
+        assertNotNull(registerResponse.getRegistrationAccessToken());
+        assertNotNull(registerResponse.getClientIdIssuedAt());
+        assertNotNull(registerResponse.getClientSecretExpiresAt());
+        return registerResponse;
+    }
+
+    private RegisterResponse registerPublicClient(String redirectUris, List<ResponseType> responseTypes, List<String> scopes, String sectorIdentifierUri) {
+        RegisterRequest registerRequest = new RegisterRequest(ApplicationType.WEB, "oxAuth test app",
+                StringUtils.spaceSeparatedToList(redirectUris));
+        registerRequest.setResponseTypes(responseTypes);
+        registerRequest.setScope(scopes);
+        registerRequest.setSubjectType(SubjectType.PAIRWISE);
+        registerRequest.setSectorIdentifierUri(sectorIdentifierUri);
+        registerRequest.setAuthenticationMethod(AuthenticationMethod.NONE);
+        registerRequest.setTokenEndpointAuthMethod(AuthenticationMethod.NONE);
+
+        RegisterClient registerClient = new RegisterClient(registrationEndpoint);
+        registerClient.setRequest(registerRequest);
+        RegisterResponse registerResponse = registerClient.exec();
+
+        showClient(registerClient);
+        assertEquals(registerResponse.getStatus(), 200, "Unexpected response code: " + registerResponse.getEntity());
+        assertNotNull(registerResponse.getClientId());
+//        assertNull(registerResponse.getClientSecret());
+        assertNotNull(registerResponse.getRegistrationAccessToken());
+        assertNotNull(registerResponse.getClientIdIssuedAt());
+        assertNotNull(registerResponse.getClientSecretExpiresAt());
+        return registerResponse;
+    }
+}
diff --git a/oxAuth/Client/src/test/java/org/gluu/oxauth/ws/rs/TokenSignaturesHttpTest.java b/oxAuth/Client/src/test/java/org/gluu/oxauth/ws/rs/TokenSignaturesHttpTest.java
new file mode 100644
index 00000000..c2675f10
--- /dev/null
+++ b/oxAuth/Client/src/test/java/org/gluu/oxauth/ws/rs/TokenSignaturesHttpTest.java
@@ -0,0 +1,1258 @@
+/*
+ * oxAuth is available under the MIT License (2008). See http://opensource.org/licenses/MIT for full text.
+ *
+ * Copyright (c) 2014, Gluu
+ */
+
+package org.gluu.oxauth.ws.rs;
+
+import static org.testng.Assert.assertEquals;
+import static org.testng.Assert.assertNotNull;
+import static org.testng.Assert.assertNull;
+import static org.testng.Assert.assertTrue;
+import static org.testng.Assert.fail;
+
+import java.io.UnsupportedEncodingException;
+import java.math.BigInteger;
+import java.security.NoSuchAlgorithmException;
+import java.security.NoSuchProviderException;
+import java.util.Arrays;
+import java.util.List;
+import java.util.UUID;
+
+import org.gluu.oxauth.BaseTest;
+import org.gluu.oxauth.client.AuthorizationRequest;
+import org.gluu.oxauth.client.AuthorizationResponse;
+import org.gluu.oxauth.client.AuthorizeClient;
+import org.gluu.oxauth.client.JwkClient;
+import org.gluu.oxauth.client.JwkResponse;
+import org.gluu.oxauth.client.RegisterClient;
+import org.gluu.oxauth.client.RegisterRequest;
+import org.gluu.oxauth.client.RegisterResponse;
+import org.gluu.oxauth.client.TokenClient;
+import org.gluu.oxauth.client.TokenRequest;
+import org.gluu.oxauth.client.TokenResponse;
+import org.gluu.oxauth.model.common.AuthenticationMethod;
+import org.gluu.oxauth.model.common.GrantType;
+import org.gluu.oxauth.model.common.Prompt;
+import org.gluu.oxauth.model.common.ResponseType;
+import org.gluu.oxauth.model.crypto.AbstractCryptoProvider;
+import org.gluu.oxauth.model.crypto.OxAuthCryptoProvider;
+import org.gluu.oxauth.model.crypto.signature.SignatureAlgorithm;
+import org.gluu.oxauth.model.jwt.Jwt;
+import org.gluu.oxauth.model.jwt.JwtHeaderName;
+import org.gluu.oxauth.model.register.ApplicationType;
+import org.gluu.oxauth.model.util.JwtUtil;
+import org.gluu.oxauth.model.util.StringUtils;
+import org.testng.annotations.Parameters;
+import org.testng.annotations.Test;
+
+/**
+ * @author Javier Rojas Blum
+ * @version February 8, 2019
+ */
+public class TokenSignaturesHttpTest extends BaseTest {
+
+    @Parameters({"redirectUris", "userId", "userSecret", "redirectUri", "sectorIdentifierUri"})
+    @Test
+    public void requestAuthorizationIdTokenNone(
+            final String redirectUris, final String userId, final String userSecret, final String redirectUri,
+            final String sectorIdentifierUri) throws Exception {
+        showTitle("requestAuthorizationIdTokenNone");
+
+        List<ResponseType> responseTypes = Arrays.asList(ResponseType.CODE);
+
+        // 1. Registration
+        RegisterRequest registerRequest = new RegisterRequest(ApplicationType.WEB, "oxAuth test app",
+                StringUtils.spaceSeparatedToList(redirectUris));
+        registerRequest.setContacts(Arrays.asList("javier@gluu.org", "javier.rojas.blum@gmail.com"));
+        registerRequest.setResponseTypes(responseTypes);
+        registerRequest.setIdTokenSignedResponseAlg(SignatureAlgorithm.NONE);
+        registerRequest.setSectorIdentifierUri(sectorIdentifierUri);
+
+        RegisterClient registerClient = new RegisterClient(registrationEndpoint);
+        registerClient.setRequest(registerRequest);
+        RegisterResponse registerResponse = registerClient.exec();
+
+        showClient(registerClient);
+        assertEquals(registerResponse.getStatus(), 200);
+        assertNotNull(registerResponse.getClientId());
+        assertNotNull(registerResponse.getClientSecret());
+        assertNotNull(registerResponse.getRegistrationAccessToken());
+        assertNotNull(registerResponse.getClientSecretExpiresAt());
+
+        String clientId = registerResponse.getClientId();
+        String clientSecret = registerResponse.getClientSecret();
+
+        // 2. Request authorization and receive the authorization code.
+        List<String> scopes = Arrays.asList(
+                "openid",
+                "profile",
+                "address",
+                "email");
+        String nonce = UUID.randomUUID().toString();
+        String state = UUID.randomUUID().toString();
+
+        AuthorizationRequest authorizationRequest = new AuthorizationRequest(responseTypes, clientId, scopes, redirectUri, nonce);
+        authorizationRequest.setState(state);
+
+        AuthorizationResponse authorizationResponse = authenticateResourceOwnerAndGrantAccess(
+                authorizationEndpoint, authorizationRequest, userId, userSecret);
+
+        assertNotNull(authorizationResponse.getLocation());
+        assertNotNull(authorizationResponse.getCode());
+        assertNotNull(authorizationResponse.getState());
+        assertNotNull(authorizationResponse.getScope());
+        assertNull(authorizationResponse.getIdToken());
+
+        String scope = authorizationResponse.getScope();
+        String authorizationCode = authorizationResponse.getCode();
+
+        // 3. Request access token using the authorization code.
+        TokenRequest tokenRequest = new TokenRequest(GrantType.AUTHORIZATION_CODE);
+        tokenRequest.setCode(authorizationCode);
+        tokenRequest.setRedirectUri(redirectUri);
+        tokenRequest.setAuthUsername(clientId);
+        tokenRequest.setAuthPassword(clientSecret);
+        tokenRequest.setAuthenticationMethod(AuthenticationMethod.CLIENT_SECRET_BASIC);
+
+        TokenClient tokenClient = new TokenClient(tokenEndpoint);
+        tokenClient.setRequest(tokenRequest);
+        TokenResponse tokenResponse = tokenClient.exec();
+
+        showClient(tokenClient);
+        assertEquals(tokenResponse.getStatus(), 200);
+        assertNotNull(tokenResponse.getEntity());
+        assertNotNull(tokenResponse.getAccessToken());
+        assertNotNull(tokenResponse.getExpiresIn());
+        assertNotNull(tokenResponse.getTokenType());
+        assertNotNull(tokenResponse.getRefreshToken());
+
+        String idToken = tokenResponse.getIdToken();
+
+        // 3. Validate id_token
+        Jwt jwt = Jwt.parse(idToken);
+
+        AbstractCryptoProvider cryptoProvider = createCryptoProviderWithAllowedNone();
+        boolean validJwt = cryptoProvider.verifySignature(jwt.getSigningInput(), jwt.getEncodedSignature(), null,
+                null, null, SignatureAlgorithm.NONE);
+        assertTrue(validJwt);
+    }
+
+    @Parameters({"redirectUris", "userId", "userSecret", "redirectUri", "sectorIdentifierUri"})
+    @Test
+    public void requestAuthorizationIdTokenHS256(
+            final String redirectUris, final String userId, final String userSecret, final String redirectUri,
+            final String sectorIdentifierUri) throws Exception {
+        showTitle("requestAuthorizationIdTokenHS256");
+
+        List<ResponseType> responseTypes = Arrays.asList(ResponseType.ID_TOKEN);
+
+        // 1. Registration
+        RegisterRequest registerRequest = new RegisterRequest(ApplicationType.WEB, "oxAuth test app",
+                StringUtils.spaceSeparatedToList(redirectUris));
+        registerRequest.setContacts(Arrays.asList("javier@gluu.org", "javier.rojas.blum@gmail.com"));
+        registerRequest.setResponseTypes(responseTypes);
+        registerRequest.setIdTokenSignedResponseAlg(SignatureAlgorithm.HS256);
+        registerRequest.addCustomAttribute("oxAuthTrustedClient", "true");
+        registerRequest.setSectorIdentifierUri(sectorIdentifierUri);
+
+        RegisterClient registerClient = new RegisterClient(registrationEndpoint);
+        registerClient.setRequest(registerRequest);
+        RegisterResponse registerResponse = registerClient.exec();
+
+        showClient(registerClient);
+        assertEquals(registerResponse.getStatus(), 200, "Unexpected response code: " + registerResponse.getEntity());
+        assertNotNull(registerResponse.getClientId());
+        assertNotNull(registerResponse.getClientSecret());
+        assertNotNull(registerResponse.getRegistrationAccessToken());
+        assertNotNull(registerResponse.getClientSecretExpiresAt());
+
+        String clientId = registerResponse.getClientId();
+        String clientSecret = registerResponse.getClientSecret();
+
+        // 2. Request Authorization
+        List<String> scopes = Arrays.asList(
+                "openid",
+                "profile",
+                "address",
+                "email");
+        String nonce = UUID.randomUUID().toString();
+        String state = UUID.randomUUID().toString();
+
+        AuthorizationRequest authorizationRequest = new AuthorizationRequest(responseTypes, clientId, scopes, redirectUri, nonce);
+        authorizationRequest.setState(state);
+        authorizationRequest.setAuthUsername(userId);
+        authorizationRequest.setAuthPassword(userSecret);
+        authorizationRequest.getPrompts().add(Prompt.NONE);
+
+        AuthorizeClient authorizeClient = new AuthorizeClient(authorizationEndpoint);
+        authorizeClient.setRequest(authorizationRequest);
+        AuthorizationResponse authorizationResponse = authorizeClient.exec();
+
+        showClient(authorizeClient);
+        assertEquals(authorizationResponse.getStatus(), 302, "Unexpected response code: " + authorizationResponse.getStatus());
+        assertNotNull(authorizationResponse.getLocation(), "The location is null");
+        assertNotNull(authorizationResponse.getIdToken(), "The idToken is null");
+        assertNotNull(authorizationResponse.getState(), "The state is null");
+
+        String idToken = authorizationResponse.getIdToken();
+
+        // 3. Validate id_token
+        Jwt jwt = Jwt.parse(idToken);
+
+        OxAuthCryptoProvider cryptoProvider = new OxAuthCryptoProvider();
+        boolean validJwt = cryptoProvider.verifySignature(jwt.getSigningInput(), jwt.getEncodedSignature(), null,
+                null, clientSecret, SignatureAlgorithm.HS256);
+        assertTrue(validJwt);
+    }
+
+    @Parameters({"redirectUris", "userId", "userSecret", "redirectUri", "sectorIdentifierUri"})
+    @Test
+    public void requestAuthorizationIdTokenHS384(
+            final String redirectUris, final String userId, final String userSecret, final String redirectUri,
+            final String sectorIdentifierUri) throws Exception {
+        showTitle("requestAuthorizationIdTokenHS384");
+
+        List<ResponseType> responseTypes = Arrays.asList(ResponseType.ID_TOKEN);
+
+        // 1. Registration
+        RegisterRequest registerRequest = new RegisterRequest(ApplicationType.WEB, "oxAuth test app",
+                StringUtils.spaceSeparatedToList(redirectUris));
+        registerRequest.setContacts(Arrays.asList("javier@gluu.org", "javier.rojas.blum@gmail.com"));
+        registerRequest.setResponseTypes(responseTypes);
+        registerRequest.setIdTokenSignedResponseAlg(SignatureAlgorithm.HS384);
+        registerRequest.addCustomAttribute("oxAuthTrustedClient", "true");
+        registerRequest.setSectorIdentifierUri(sectorIdentifierUri);
+
+        RegisterClient registerClient = new RegisterClient(registrationEndpoint);
+        registerClient.setRequest(registerRequest);
+        RegisterResponse registerResponse = registerClient.exec();
+
+        showClient(registerClient);
+        assertEquals(registerResponse.getStatus(), 200, "Unexpected response code: " + registerResponse.getEntity());
+        assertNotNull(registerResponse.getClientId());
+        assertNotNull(registerResponse.getClientSecret());
+        assertNotNull(registerResponse.getRegistrationAccessToken());
+        assertNotNull(registerResponse.getClientSecretExpiresAt());
+
+        String clientId = registerResponse.getClientId();
+        String clientSecret = registerResponse.getClientSecret();
+
+        // 2. Request Authorization
+        List<String> scopes = Arrays.asList(
+                "openid",
+                "profile",
+                "address",
+                "email");
+        String nonce = UUID.randomUUID().toString();
+        String state = UUID.randomUUID().toString();
+
+        AuthorizationRequest authorizationRequest = new AuthorizationRequest(responseTypes, clientId, scopes, redirectUri, nonce);
+        authorizationRequest.setState(state);
+        authorizationRequest.setAuthUsername(userId);
+        authorizationRequest.setAuthPassword(userSecret);
+        authorizationRequest.getPrompts().add(Prompt.NONE);
+
+        AuthorizeClient authorizeClient = new AuthorizeClient(authorizationEndpoint);
+        authorizeClient.setRequest(authorizationRequest);
+        AuthorizationResponse authorizationResponse = authorizeClient.exec();
+
+        showClient(authorizeClient);
+        assertEquals(authorizationResponse.getStatus(), 302, "Unexpected response code: " + authorizationResponse.getStatus());
+        assertNotNull(authorizationResponse.getLocation(), "The location is null");
+        assertNotNull(authorizationResponse.getIdToken(), "The idToken is null");
+        assertNotNull(authorizationResponse.getState(), "The state is null");
+
+        String idToken = authorizationResponse.getIdToken();
+
+        // 3. Validate id_token
+        Jwt jwt = Jwt.parse(idToken);
+
+        OxAuthCryptoProvider cryptoProvider = new OxAuthCryptoProvider();
+        boolean validJwt = cryptoProvider.verifySignature(jwt.getSigningInput(), jwt.getEncodedSignature(), null,
+                null, clientSecret, SignatureAlgorithm.HS384);
+        assertTrue(validJwt);
+    }
+
+    @Parameters({"redirectUris", "userId", "userSecret", "redirectUri", "sectorIdentifierUri"})
+    @Test
+    public void requestAuthorizationIdTokenHS512(
+            final String redirectUris, final String userId, final String userSecret, final String redirectUri,
+            final String sectorIdentifierUri) throws Exception {
+        showTitle("requestAuthorizationIdTokenHS512");
+
+        List<ResponseType> responseTypes = Arrays.asList(ResponseType.ID_TOKEN);
+
+        // 1. Registration
+        RegisterRequest registerRequest = new RegisterRequest(ApplicationType.WEB, "oxAuth test app",
+                StringUtils.spaceSeparatedToList(redirectUris));
+        registerRequest.setContacts(Arrays.asList("javier@gluu.org", "javier.rojas.blum@gmail.com"));
+        registerRequest.setResponseTypes(responseTypes);
+        registerRequest.setIdTokenSignedResponseAlg(SignatureAlgorithm.HS512);
+        registerRequest.addCustomAttribute("oxAuthTrustedClient", "true");
+        registerRequest.setSectorIdentifierUri(sectorIdentifierUri);
+
+        RegisterClient registerClient = new RegisterClient(registrationEndpoint);
+        registerClient.setRequest(registerRequest);
+        RegisterResponse registerResponse = registerClient.exec();
+
+        showClient(registerClient);
+        assertEquals(registerResponse.getStatus(), 200, "Unexpected response code: " + registerResponse.getEntity());
+        assertNotNull(registerResponse.getClientId());
+        assertNotNull(registerResponse.getClientSecret());
+        assertNotNull(registerResponse.getRegistrationAccessToken());
+        assertNotNull(registerResponse.getClientSecretExpiresAt());
+
+        String clientId = registerResponse.getClientId();
+        String clientSecret = registerResponse.getClientSecret();
+
+        // 2. Request Authorization
+        List<String> scopes = Arrays.asList(
+                "openid",
+                "profile",
+                "address",
+                "email");
+        String nonce = UUID.randomUUID().toString();
+        String state = UUID.randomUUID().toString();
+
+        AuthorizationRequest request = new AuthorizationRequest(responseTypes, clientId, scopes, redirectUri, nonce);
+        request.setState(state);
+        request.setAuthUsername(userId);
+        request.setAuthPassword(userSecret);
+        request.getPrompts().add(Prompt.NONE);
+
+        AuthorizeClient authorizeClient = new AuthorizeClient(authorizationEndpoint);
+        authorizeClient.setRequest(request);
+        AuthorizationResponse authorizationResponse = authorizeClient.exec();
+
+        showClient(authorizeClient);
+        assertEquals(authorizationResponse.getStatus(), 302, "Unexpected response code: " + authorizationResponse.getStatus());
+        assertNotNull(authorizationResponse.getLocation(), "The location is null");
+        assertNotNull(authorizationResponse.getIdToken(), "The idToken is null");
+        assertNotNull(authorizationResponse.getState(), "The state is null");
+
+        String idToken = authorizationResponse.getIdToken();
+
+        // 3. Validate id_token
+        Jwt jwt = Jwt.parse(idToken);
+
+        OxAuthCryptoProvider cryptoProvider = new OxAuthCryptoProvider();
+        boolean validJwt = cryptoProvider.verifySignature(jwt.getSigningInput(), jwt.getEncodedSignature(), null,
+                null, clientSecret, SignatureAlgorithm.HS512);
+        assertTrue(validJwt);
+    }
+
+    @Parameters({"redirectUris", "userId", "userSecret", "redirectUri", "sectorIdentifierUri"})
+    @Test
+    public void requestAuthorizationIdTokenRS256(
+            final String redirectUris, final String userId, final String userSecret, final String redirectUri,
+            final String sectorIdentifierUri) throws Exception {
+        showTitle("requestAuthorizationIdTokenRS256");
+
+        List<ResponseType> responseTypes = Arrays.asList(ResponseType.ID_TOKEN);
+
+        // 1. Registration
+        RegisterRequest registerRequest = new RegisterRequest(ApplicationType.WEB, "oxAuth test app",
+                StringUtils.spaceSeparatedToList(redirectUris));
+        registerRequest.setContacts(Arrays.asList("javier@gluu.org", "javier.rojas.blum@gmail.com"));
+        registerRequest.setResponseTypes(responseTypes);
+        registerRequest.setIdTokenSignedResponseAlg(SignatureAlgorithm.RS256);
+        registerRequest.addCustomAttribute("oxAuthTrustedClient", "true");
+        registerRequest.setSectorIdentifierUri(sectorIdentifierUri);
+
+        RegisterClient registerClient = new RegisterClient(registrationEndpoint);
+        registerClient.setRequest(registerRequest);
+        RegisterResponse registerResponse = registerClient.exec();
+
+        showClient(registerClient);
+        assertEquals(registerResponse.getStatus(), 200, "Unexpected response code: " + registerResponse.getEntity());
+        assertNotNull(registerResponse.getClientId());
+        assertNotNull(registerResponse.getClientSecret());
+        assertNotNull(registerResponse.getRegistrationAccessToken());
+        assertNotNull(registerResponse.getClientSecretExpiresAt());
+
+        String clientId = registerResponse.getClientId();
+
+        // 2. Request Authorization
+        List<String> scopes = Arrays.asList(
+                "openid",
+                "profile",
+                "address",
+                "email");
+        String nonce = UUID.randomUUID().toString();
+        String state = UUID.randomUUID().toString();
+
+        AuthorizationRequest authorizationRequest = new AuthorizationRequest(responseTypes, clientId, scopes, redirectUri, nonce);
+        authorizationRequest.setState(state);
+        authorizationRequest.setAuthUsername(userId);
+        authorizationRequest.setAuthPassword(userSecret);
+        authorizationRequest.getPrompts().add(Prompt.NONE);
+
+        AuthorizeClient authorizeClient = new AuthorizeClient(authorizationEndpoint);
+        authorizeClient.setRequest(authorizationRequest);
+        AuthorizationResponse authorizationResponse = authorizeClient.exec();
+
+        showClient(authorizeClient);
+        assertEquals(authorizationResponse.getStatus(), 302, "Unexpected response code: " + authorizationResponse.getStatus());
+        assertNotNull(authorizationResponse.getLocation(), "The location is null");
+        assertNotNull(authorizationResponse.getIdToken(), "The idToken is null");
+        assertNotNull(authorizationResponse.getState(), "The state is null");
+
+        String idToken = authorizationResponse.getIdToken();
+
+        // 3. Validate id_token
+        Jwt jwt = Jwt.parse(idToken);
+        String keyId = jwt.getHeader().getClaimAsString(JwtHeaderName.KEY_ID);
+        JwkClient jwkClient = new JwkClient(jwksUri);
+        JwkResponse jwkResponse = jwkClient.exec();
+
+        OxAuthCryptoProvider cryptoProvider = new OxAuthCryptoProvider();
+        boolean validJwt = cryptoProvider.verifySignature(jwt.getSigningInput(), jwt.getEncodedSignature(), keyId,
+                jwkResponse.getJwks().toJSONObject(), null, SignatureAlgorithm.RS256);
+        assertTrue(validJwt);
+    }
+
+    @Parameters({"redirectUris", "userId", "userSecret", "redirectUri", "sectorIdentifierUri"})
+    @Test
+    public void requestAuthorizationIdTokenRS384(
+            final String redirectUris, final String userId, final String userSecret, final String redirectUri,
+            final String sectorIdentifierUri) throws Exception {
+        showTitle("requestAuthorizationIdTokenRS384");
+
+        List<ResponseType> responseTypes = Arrays.asList(ResponseType.ID_TOKEN);
+
+        // 1. Registration
+        RegisterRequest registerRequest = new RegisterRequest(ApplicationType.WEB, "oxAuth test app",
+                StringUtils.spaceSeparatedToList(redirectUris));
+        registerRequest.setContacts(Arrays.asList("javier@gluu.org", "javier.rojas.blum@gmail.com"));
+        registerRequest.setResponseTypes(responseTypes);
+        registerRequest.setIdTokenSignedResponseAlg(SignatureAlgorithm.RS384);
+        registerRequest.addCustomAttribute("oxAuthTrustedClient", "true");
+        registerRequest.setSectorIdentifierUri(sectorIdentifierUri);
+
+        RegisterClient registerClient = new RegisterClient(registrationEndpoint);
+        registerClient.setRequest(registerRequest);
+        RegisterResponse registerResponse = registerClient.exec();
+
+        showClient(registerClient);
+        assertEquals(registerResponse.getStatus(), 200, "Unexpected response code: " + registerResponse.getEntity());
+        assertNotNull(registerResponse.getClientId());
+        assertNotNull(registerResponse.getClientSecret());
+        assertNotNull(registerResponse.getRegistrationAccessToken());
+        assertNotNull(registerResponse.getClientSecretExpiresAt());
+
+        String clientId = registerResponse.getClientId();
+
+        // 2. Request Authorization
+        List<String> scopes = Arrays.asList(
+                "openid",
+                "profile",
+                "address",
+                "email");
+        String nonce = UUID.randomUUID().toString();
+        String state = UUID.randomUUID().toString();
+
+        AuthorizationRequest authorizationRequest = new AuthorizationRequest(responseTypes, clientId, scopes, redirectUri, nonce);
+        authorizationRequest.setState(state);
+        authorizationRequest.setAuthUsername(userId);
+        authorizationRequest.setAuthPassword(userSecret);
+        authorizationRequest.getPrompts().add(Prompt.NONE);
+
+        AuthorizeClient authorizeClient = new AuthorizeClient(authorizationEndpoint);
+        authorizeClient.setRequest(authorizationRequest);
+        AuthorizationResponse authorizationResponse = authorizeClient.exec();
+
+        showClient(authorizeClient);
+        assertEquals(authorizationResponse.getStatus(), 302, "Unexpected response code: " + authorizationResponse.getStatus());
+        assertNotNull(authorizationResponse.getLocation(), "The location is null");
+        assertNotNull(authorizationResponse.getIdToken(), "The idToken is null");
+        assertNotNull(authorizationResponse.getState(), "The state is null");
+
+        String idToken = authorizationResponse.getIdToken();
+
+        // 3. Validate id_token
+        Jwt jwt = Jwt.parse(idToken);
+        String keyId = jwt.getHeader().getClaimAsString(JwtHeaderName.KEY_ID);
+        JwkClient jwkClient = new JwkClient(jwksUri);
+        JwkResponse jwkResponse = jwkClient.exec();
+
+        OxAuthCryptoProvider cryptoProvider = new OxAuthCryptoProvider();
+        boolean validJwt = cryptoProvider.verifySignature(jwt.getSigningInput(), jwt.getEncodedSignature(), keyId,
+                jwkResponse.getJwks().toJSONObject(), null, SignatureAlgorithm.RS384);
+        assertTrue(validJwt);
+    }
+
+    @Parameters({"redirectUris", "userId", "userSecret", "redirectUri", "sectorIdentifierUri"})
+    @Test
+    public void requestAuthorizationIdTokenRS512(
+            final String redirectUris, final String userId, final String userSecret, final String redirectUri,
+            final String sectorIdentifierUri) throws Exception {
+        showTitle("requestAuthorizationIdTokenRS512");
+
+        List<ResponseType> responseTypes = Arrays.asList(ResponseType.ID_TOKEN);
+
+        // 1. Registration
+        RegisterRequest registerRequest = new RegisterRequest(ApplicationType.WEB, "oxAuth test app",
+                StringUtils.spaceSeparatedToList(redirectUris));
+        registerRequest.setContacts(Arrays.asList("javier@gluu.org", "javier.rojas.blum@gmail.com"));
+        registerRequest.setResponseTypes(responseTypes);
+        registerRequest.setIdTokenSignedResponseAlg(SignatureAlgorithm.RS512);
+        registerRequest.addCustomAttribute("oxAuthTrustedClient", "true");
+        registerRequest.setSectorIdentifierUri(sectorIdentifierUri);
+
+        RegisterClient registerClient = new RegisterClient(registrationEndpoint);
+        registerClient.setRequest(registerRequest);
+        RegisterResponse registerResponse = registerClient.exec();
+
+        showClient(registerClient);
+        assertEquals(registerResponse.getStatus(), 200, "Unexpected response code: " + registerResponse.getEntity());
+        assertNotNull(registerResponse.getClientId());
+        assertNotNull(registerResponse.getClientSecret());
+        assertNotNull(registerResponse.getRegistrationAccessToken());
+        assertNotNull(registerResponse.getClientSecretExpiresAt());
+
+        String clientId = registerResponse.getClientId();
+
+        // 2. Request Authorization
+        List<String> scopes = Arrays.asList(
+                "openid",
+                "profile",
+                "address",
+                "email");
+        String nonce = UUID.randomUUID().toString();
+        String state = UUID.randomUUID().toString();
+
+        AuthorizationRequest authorizationRequest = new AuthorizationRequest(responseTypes, clientId, scopes, redirectUri, nonce);
+        authorizationRequest.setState(state);
+        authorizationRequest.setAuthUsername(userId);
+        authorizationRequest.setAuthPassword(userSecret);
+        authorizationRequest.getPrompts().add(Prompt.NONE);
+
+        AuthorizeClient authorizeClient = new AuthorizeClient(authorizationEndpoint);
+        authorizeClient.setRequest(authorizationRequest);
+        AuthorizationResponse authorizationResponse = authorizeClient.exec();
+
+        showClient(authorizeClient);
+        assertEquals(authorizationResponse.getStatus(), 302, "Unexpected response code: " + authorizationResponse.getStatus());
+        assertNotNull(authorizationResponse.getLocation(), "The location is null");
+        assertNotNull(authorizationResponse.getIdToken(), "The idToken is null");
+        assertNotNull(authorizationResponse.getState(), "The state is null");
+
+        String idToken = authorizationResponse.getIdToken();
+
+        // 3. Validate id_token
+        Jwt jwt = Jwt.parse(idToken);
+        String keyId = jwt.getHeader().getClaimAsString(JwtHeaderName.KEY_ID);
+        JwkClient jwkClient = new JwkClient(jwksUri);
+        JwkResponse jwkResponse = jwkClient.exec();
+
+        OxAuthCryptoProvider cryptoProvider = new OxAuthCryptoProvider();
+        boolean validJwt = cryptoProvider.verifySignature(jwt.getSigningInput(), jwt.getEncodedSignature(), keyId,
+                jwkResponse.getJwks().toJSONObject(), null, SignatureAlgorithm.RS512);
+        assertTrue(validJwt);
+    }
+
+    @Parameters({"redirectUris", "userId", "userSecret", "redirectUri", "sectorIdentifierUri"})
+    @Test
+    public void requestAuthorizationIdTokenES256(
+            final String redirectUris, final String userId, final String userSecret, final String redirectUri,
+            final String sectorIdentifierUri) throws Exception {
+        showTitle("requestAuthorizationIdTokenES256");
+
+        List<ResponseType> responseTypes = Arrays.asList(ResponseType.ID_TOKEN);
+
+        // 1. Registration
+        RegisterRequest registerRequest = new RegisterRequest(ApplicationType.WEB, "oxAuth test app",
+                StringUtils.spaceSeparatedToList(redirectUris));
+        registerRequest.setContacts(Arrays.asList("javier@gluu.org", "javier.rojas.blum@gmail.com"));
+        registerRequest.setResponseTypes(responseTypes);
+        registerRequest.setIdTokenSignedResponseAlg(SignatureAlgorithm.ES256);
+        registerRequest.setSectorIdentifierUri(sectorIdentifierUri);
+
+        RegisterClient registerClient = new RegisterClient(registrationEndpoint);
+        registerClient.setRequest(registerRequest);
+        RegisterResponse registerResponse = registerClient.exec();
+
+        showClient(registerClient);
+        assertEquals(registerResponse.getStatus(), 200, "Unexpected response code: " + registerResponse.getEntity());
+        assertNotNull(registerResponse.getClientId());
+        assertNotNull(registerResponse.getClientSecret());
+        assertNotNull(registerResponse.getRegistrationAccessToken());
+        assertNotNull(registerResponse.getClientSecretExpiresAt());
+
+        String clientId = registerResponse.getClientId();
+
+        // 2. Request Authorization
+        List<String> scopes = Arrays.asList(
+                "openid",
+                "profile",
+                "address",
+                "email");
+        String nonce = UUID.randomUUID().toString();
+        String state = UUID.randomUUID().toString();
+
+        AuthorizationRequest authorizationRequest = new AuthorizationRequest(responseTypes, clientId, scopes, redirectUri, nonce);
+        authorizationRequest.setState(state);
+
+        AuthorizationResponse authorizationResponse = authenticateResourceOwnerAndGrantAccess(
+                authorizationEndpoint, authorizationRequest, userId, userSecret);
+
+        assertNotNull(authorizationResponse.getLocation(), "The location is null");
+        assertNotNull(authorizationResponse.getIdToken(), "The idToken is null");
+        assertNotNull(authorizationResponse.getState(), "The state is null");
+
+        String idToken = authorizationResponse.getIdToken();
+
+        // 3. Validate id_token
+        Jwt jwt = Jwt.parse(idToken);
+        String keyId = jwt.getHeader().getClaimAsString(JwtHeaderName.KEY_ID);
+        JwkClient jwkClient = new JwkClient(jwksUri);
+        JwkResponse jwkResponse = jwkClient.exec();
+
+        OxAuthCryptoProvider cryptoProvider = new OxAuthCryptoProvider();
+        boolean validJwt = cryptoProvider.verifySignature(jwt.getSigningInput(), jwt.getEncodedSignature(), keyId,
+                jwkResponse.getJwks().toJSONObject(), null, SignatureAlgorithm.ES256);
+        assertTrue(validJwt);
+    }
+
+    @Parameters({"redirectUris", "userId", "userSecret", "redirectUri", "sectorIdentifierUri"})
+    @Test
+    public void requestAuthorizationIdTokenES384(
+            final String redirectUris, final String userId, final String userSecret, final String redirectUri,
+            final String sectorIdentifierUri) throws Exception {
+        showTitle("requestAuthorizationIdTokenES384");
+
+        List<ResponseType> responseTypes = Arrays.asList(ResponseType.ID_TOKEN);
+
+        // 1. Registration
+        RegisterRequest registerRequest = new RegisterRequest(ApplicationType.WEB, "oxAuth test app",
+                StringUtils.spaceSeparatedToList(redirectUris));
+        registerRequest.setContacts(Arrays.asList("javier@gluu.org", "javier.rojas.blum@gmail.com"));
+        registerRequest.setResponseTypes(responseTypes);
+        registerRequest.setIdTokenSignedResponseAlg(SignatureAlgorithm.ES384);
+        registerRequest.setSectorIdentifierUri(sectorIdentifierUri);
+
+        RegisterClient registerClient = new RegisterClient(registrationEndpoint);
+        registerClient.setRequest(registerRequest);
+        RegisterResponse registerResponse = registerClient.exec();
+
+        showClient(registerClient);
+        assertEquals(registerResponse.getStatus(), 200, "Unexpected response code: " + registerResponse.getEntity());
+        assertNotNull(registerResponse.getClientId());
+        assertNotNull(registerResponse.getClientSecret());
+        assertNotNull(registerResponse.getRegistrationAccessToken());
+        assertNotNull(registerResponse.getClientSecretExpiresAt());
+
+        String clientId = registerResponse.getClientId();
+
+        // 2. Request Authorization
+        List<String> scopes = Arrays.asList(
+                "openid",
+                "profile",
+                "address",
+                "email");
+        String nonce = UUID.randomUUID().toString();
+        String state = UUID.randomUUID().toString();
+
+        AuthorizationRequest authorizationRequest = new AuthorizationRequest(responseTypes, clientId, scopes, redirectUri, nonce);
+        authorizationRequest.setState(state);
+
+        AuthorizationResponse authorizationResponse = authenticateResourceOwnerAndGrantAccess(
+                authorizationEndpoint, authorizationRequest, userId, userSecret);
+
+        assertNotNull(authorizationResponse.getLocation(), "The location is null");
+        assertNotNull(authorizationResponse.getIdToken(), "The idToken is null");
+        assertNotNull(authorizationResponse.getState(), "The state is null");
+
+        String idToken = authorizationResponse.getIdToken();
+
+        // 3. Validate id_token
+        Jwt jwt = Jwt.parse(idToken);
+        String keyId = jwt.getHeader().getClaimAsString(JwtHeaderName.KEY_ID);
+        JwkClient jwkClient = new JwkClient(jwksUri);
+        JwkResponse jwkResponse = jwkClient.exec();
+
+        OxAuthCryptoProvider cryptoProvider = new OxAuthCryptoProvider();
+        boolean validJwt = cryptoProvider.verifySignature(jwt.getSigningInput(), jwt.getEncodedSignature(), keyId,
+                jwkResponse.getJwks().toJSONObject(), null, SignatureAlgorithm.ES384);
+        assertTrue(validJwt);
+    }
+
+    @Parameters({"redirectUris", "userId", "userSecret", "redirectUri", "sectorIdentifierUri"})
+    @Test
+    public void requestAuthorizationIdTokenES512(
+            final String redirectUris, final String userId, final String userSecret, final String redirectUri,
+            final String sectorIdentifierUri) throws Exception {
+        showTitle("requestAuthorizationIdTokenES512");
+
+        List<ResponseType> responseTypes = Arrays.asList(ResponseType.ID_TOKEN);
+
+        // 1. Registration
+        RegisterRequest registerRequest = new RegisterRequest(ApplicationType.WEB, "oxAuth test app",
+                StringUtils.spaceSeparatedToList(redirectUris));
+        registerRequest.setContacts(Arrays.asList("javier@gluu.org", "javier.rojas.blum@gmail.com"));
+        registerRequest.setResponseTypes(responseTypes);
+        registerRequest.setIdTokenSignedResponseAlg(SignatureAlgorithm.ES512);
+        registerRequest.setSectorIdentifierUri(sectorIdentifierUri);
+
+        RegisterClient registerClient = new RegisterClient(registrationEndpoint);
+        registerClient.setRequest(registerRequest);
+        RegisterResponse registerResponse = registerClient.exec();
+
+        showClient(registerClient);
+        assertEquals(registerResponse.getStatus(), 200, "Unexpected response code: " + registerResponse.getEntity());
+        assertNotNull(registerResponse.getClientId());
+        assertNotNull(registerResponse.getClientSecret());
+        assertNotNull(registerResponse.getRegistrationAccessToken());
+        assertNotNull(registerResponse.getClientSecretExpiresAt());
+
+        String clientId = registerResponse.getClientId();
+
+        // 2. Request Authorization
+        List<String> scopes = Arrays.asList(
+                "openid",
+                "profile",
+                "address",
+                "email");
+        String nonce = UUID.randomUUID().toString();
+        String state = UUID.randomUUID().toString();
+
+        AuthorizationRequest authorizationRequest = new AuthorizationRequest(responseTypes, clientId, scopes, redirectUri, nonce);
+        authorizationRequest.setState(state);
+
+        AuthorizationResponse authorizationResponse = authenticateResourceOwnerAndGrantAccess(
+                authorizationEndpoint, authorizationRequest, userId, userSecret);
+
+        assertNotNull(authorizationResponse.getLocation(), "The location is null");
+        assertNotNull(authorizationResponse.getIdToken(), "The idToken is null");
+        assertNotNull(authorizationResponse.getState(), "The state is null");
+
+        String idToken = authorizationResponse.getIdToken();
+
+        // 3. Validate id_token
+        Jwt jwt = Jwt.parse(idToken);
+        String keyId = jwt.getHeader().getClaimAsString(JwtHeaderName.KEY_ID);
+        JwkClient jwkClient = new JwkClient(jwksUri);
+        JwkResponse jwkResponse = jwkClient.exec();
+
+        OxAuthCryptoProvider cryptoProvider = new OxAuthCryptoProvider();
+        boolean validJwt = cryptoProvider.verifySignature(jwt.getSigningInput(), jwt.getEncodedSignature(), keyId,
+                jwkResponse.getJwks().toJSONObject(), null, SignatureAlgorithm.ES512);
+        assertTrue(validJwt);
+    }
+
+    @Parameters({"redirectUris", "userId", "userSecret", "redirectUri", "sectorIdentifierUri"})
+    @Test
+    public void requestAuthorizationIdTokenPS256(
+            final String redirectUris, final String userId, final String userSecret, final String redirectUri,
+            final String sectorIdentifierUri) throws Exception {
+        showTitle("requestAuthorizationIdTokenPS256");
+
+        List<ResponseType> responseTypes = Arrays.asList(ResponseType.ID_TOKEN);
+
+        // 1. Registration
+        RegisterRequest registerRequest = new RegisterRequest(ApplicationType.WEB, "oxAuth test app",
+                StringUtils.spaceSeparatedToList(redirectUris));
+        registerRequest.setContacts(Arrays.asList("javier@gluu.org", "javier.rojas.blum@gmail.com"));
+        registerRequest.setResponseTypes(responseTypes);
+        registerRequest.setIdTokenSignedResponseAlg(SignatureAlgorithm.PS256);
+        registerRequest.addCustomAttribute("oxAuthTrustedClient", "true");
+        registerRequest.setSectorIdentifierUri(sectorIdentifierUri);
+
+        RegisterClient registerClient = new RegisterClient(registrationEndpoint);
+        registerClient.setRequest(registerRequest);
+        RegisterResponse registerResponse = registerClient.exec();
+
+        showClient(registerClient);
+        assertEquals(registerResponse.getStatus(), 200, "Unexpected response code: " + registerResponse.getEntity());
+        assertNotNull(registerResponse.getClientId());
+        assertNotNull(registerResponse.getClientSecret());
+        assertNotNull(registerResponse.getRegistrationAccessToken());
+        assertNotNull(registerResponse.getClientSecretExpiresAt());
+
+        String clientId = registerResponse.getClientId();
+
+        // 2. Request Authorization
+        List<String> scopes = Arrays.asList(
+                "openid",
+                "profile",
+                "address",
+                "email");
+        String nonce = UUID.randomUUID().toString();
+        String state = UUID.randomUUID().toString();
+
+        AuthorizationRequest authorizationRequest = new AuthorizationRequest(responseTypes, clientId, scopes, redirectUri, nonce);
+        authorizationRequest.setState(state);
+        authorizationRequest.setAuthUsername(userId);
+        authorizationRequest.setAuthPassword(userSecret);
+        authorizationRequest.getPrompts().add(Prompt.NONE);
+
+        AuthorizeClient authorizeClient = new AuthorizeClient(authorizationEndpoint);
+        authorizeClient.setRequest(authorizationRequest);
+        AuthorizationResponse authorizationResponse = authorizeClient.exec();
+
+        showClient(authorizeClient);
+        assertEquals(authorizationResponse.getStatus(), 302, "Unexpected response code: " + authorizationResponse.getStatus());
+        assertNotNull(authorizationResponse.getLocation(), "The location is null");
+        assertNotNull(authorizationResponse.getIdToken(), "The idToken is null");
+        assertNotNull(authorizationResponse.getState(), "The state is null");
+
+        String idToken = authorizationResponse.getIdToken();
+
+        // 3. Validate id_token
+        Jwt jwt = Jwt.parse(idToken);
+        String keyId = jwt.getHeader().getClaimAsString(JwtHeaderName.KEY_ID);
+        JwkClient jwkClient = new JwkClient(jwksUri);
+        JwkResponse jwkResponse = jwkClient.exec();
+
+        OxAuthCryptoProvider cryptoProvider = new OxAuthCryptoProvider();
+        boolean validJwt = cryptoProvider.verifySignature(jwt.getSigningInput(), jwt.getEncodedSignature(), keyId,
+                jwkResponse.getJwks().toJSONObject(), null, SignatureAlgorithm.PS256);
+        assertTrue(validJwt);
+    }
+
+    @Parameters({"redirectUris", "userId", "userSecret", "redirectUri", "sectorIdentifierUri"})
+    @Test
+    public void requestAuthorizationIdTokenPRS384(
+            final String redirectUris, final String userId, final String userSecret, final String redirectUri,
+            final String sectorIdentifierUri) throws Exception {
+        showTitle("requestAuthorizationIdTokenPS384");
+
+        List<ResponseType> responseTypes = Arrays.asList(ResponseType.ID_TOKEN);
+
+        // 1. Registration
+        RegisterRequest registerRequest = new RegisterRequest(ApplicationType.WEB, "oxAuth test app",
+                StringUtils.spaceSeparatedToList(redirectUris));
+        registerRequest.setContacts(Arrays.asList("javier@gluu.org", "javier.rojas.blum@gmail.com"));
+        registerRequest.setResponseTypes(responseTypes);
+        registerRequest.setIdTokenSignedResponseAlg(SignatureAlgorithm.PS384);
+        registerRequest.addCustomAttribute("oxAuthTrustedClient", "true");
+        registerRequest.setSectorIdentifierUri(sectorIdentifierUri);
+
+        RegisterClient registerClient = new RegisterClient(registrationEndpoint);
+        registerClient.setRequest(registerRequest);
+        RegisterResponse registerResponse = registerClient.exec();
+
+        showClient(registerClient);
+        assertEquals(registerResponse.getStatus(), 200, "Unexpected response code: " + registerResponse.getEntity());
+        assertNotNull(registerResponse.getClientId());
+        assertNotNull(registerResponse.getClientSecret());
+        assertNotNull(registerResponse.getRegistrationAccessToken());
+        assertNotNull(registerResponse.getClientSecretExpiresAt());
+
+        String clientId = registerResponse.getClientId();
+
+        // 2. Request Authorization
+        List<String> scopes = Arrays.asList(
+                "openid",
+                "profile",
+                "address",
+                "email");
+        String nonce = UUID.randomUUID().toString();
+        String state = UUID.randomUUID().toString();
+
+        AuthorizationRequest authorizationRequest = new AuthorizationRequest(responseTypes, clientId, scopes, redirectUri, nonce);
+        authorizationRequest.setState(state);
+        authorizationRequest.setAuthUsername(userId);
+        authorizationRequest.setAuthPassword(userSecret);
+        authorizationRequest.getPrompts().add(Prompt.NONE);
+
+        AuthorizeClient authorizeClient = new AuthorizeClient(authorizationEndpoint);
+        authorizeClient.setRequest(authorizationRequest);
+        AuthorizationResponse authorizationResponse = authorizeClient.exec();
+
+        showClient(authorizeClient);
+        assertEquals(authorizationResponse.getStatus(), 302, "Unexpected response code: " + authorizationResponse.getStatus());
+        assertNotNull(authorizationResponse.getLocation(), "The location is null");
+        assertNotNull(authorizationResponse.getIdToken(), "The idToken is null");
+        assertNotNull(authorizationResponse.getState(), "The state is null");
+
+        String idToken = authorizationResponse.getIdToken();
+
+        // 3. Validate id_token
+        Jwt jwt = Jwt.parse(idToken);
+        String keyId = jwt.getHeader().getClaimAsString(JwtHeaderName.KEY_ID);
+        JwkClient jwkClient = new JwkClient(jwksUri);
+        JwkResponse jwkResponse = jwkClient.exec();
+
+        OxAuthCryptoProvider cryptoProvider = new OxAuthCryptoProvider();
+        boolean validJwt = cryptoProvider.verifySignature(jwt.getSigningInput(), jwt.getEncodedSignature(), keyId,
+                jwkResponse.getJwks().toJSONObject(), null, SignatureAlgorithm.PS384);
+        assertTrue(validJwt);
+    }
+
+    @Parameters({"redirectUris", "userId", "userSecret", "redirectUri", "sectorIdentifierUri"})
+    @Test
+    public void requestAuthorizationIdTokenPS512(
+            final String redirectUris, final String userId, final String userSecret, final String redirectUri,
+            final String sectorIdentifierUri) throws Exception {
+        showTitle("requestAuthorizationIdTokenPS512");
+
+        List<ResponseType> responseTypes = Arrays.asList(ResponseType.ID_TOKEN);
+
+        // 1. Registration
+        RegisterRequest registerRequest = new RegisterRequest(ApplicationType.WEB, "oxAuth test app",
+                StringUtils.spaceSeparatedToList(redirectUris));
+        registerRequest.setContacts(Arrays.asList("javier@gluu.org", "javier.rojas.blum@gmail.com"));
+        registerRequest.setResponseTypes(responseTypes);
+        registerRequest.setIdTokenSignedResponseAlg(SignatureAlgorithm.PS512);
+        registerRequest.addCustomAttribute("oxAuthTrustedClient", "true");
+        registerRequest.setSectorIdentifierUri(sectorIdentifierUri);
+
+        RegisterClient registerClient = new RegisterClient(registrationEndpoint);
+        registerClient.setRequest(registerRequest);
+        RegisterResponse registerResponse = registerClient.exec();
+
+        showClient(registerClient);
+        assertEquals(registerResponse.getStatus(), 200, "Unexpected response code: " + registerResponse.getEntity());
+        assertNotNull(registerResponse.getClientId());
+        assertNotNull(registerResponse.getClientSecret());
+        assertNotNull(registerResponse.getRegistrationAccessToken());
+        assertNotNull(registerResponse.getClientSecretExpiresAt());
+
+        String clientId = registerResponse.getClientId();
+
+        // 2. Request Authorization
+        List<String> scopes = Arrays.asList(
+                "openid",
+                "profile",
+                "address",
+                "email");
+        String nonce = UUID.randomUUID().toString();
+        String state = UUID.randomUUID().toString();
+
+        AuthorizationRequest authorizationRequest = new AuthorizationRequest(responseTypes, clientId, scopes, redirectUri, nonce);
+        authorizationRequest.setState(state);
+        authorizationRequest.setAuthUsername(userId);
+        authorizationRequest.setAuthPassword(userSecret);
+        authorizationRequest.getPrompts().add(Prompt.NONE);
+
+        AuthorizeClient authorizeClient = new AuthorizeClient(authorizationEndpoint);
+        authorizeClient.setRequest(authorizationRequest);
+        AuthorizationResponse authorizationResponse = authorizeClient.exec();
+
+        showClient(authorizeClient);
+        assertEquals(authorizationResponse.getStatus(), 302, "Unexpected response code: " + authorizationResponse.getStatus());
+        assertNotNull(authorizationResponse.getLocation(), "The location is null");
+        assertNotNull(authorizationResponse.getIdToken(), "The idToken is null");
+        assertNotNull(authorizationResponse.getState(), "The state is null");
+
+        String idToken = authorizationResponse.getIdToken();
+
+        // 3. Validate id_token
+        Jwt jwt = Jwt.parse(idToken);
+        String keyId = jwt.getHeader().getClaimAsString(JwtHeaderName.KEY_ID);
+        JwkClient jwkClient = new JwkClient(jwksUri);
+        JwkResponse jwkResponse = jwkClient.exec();
+
+        OxAuthCryptoProvider cryptoProvider = new OxAuthCryptoProvider();
+        boolean validJwt = cryptoProvider.verifySignature(jwt.getSigningInput(), jwt.getEncodedSignature(), keyId,
+                jwkResponse.getJwks().toJSONObject(), null, SignatureAlgorithm.PS512);
+        assertTrue(validJwt);
+    }
+
+    @Test
+    public void printAlgorithmsAndProviders() {
+        showTitle("printAlgorithmsAndProviders");
+
+        JwtUtil.printAlgorithmsAndProviders();
+    }
+
+    @Test
+    public void hs256() {
+        try {
+            showTitle("hs256");
+
+            String signingInput = "eyJhbGciOiJIUzI1NiJ9.eyJub25jZSI6ICI2Qm9HN1QwR0RUZ2wiLCAiaWRfdG9rZW4iOiB7Im1heF9hZ2UiOiA4NjQwMH0sICJzdGF0ZSI6ICJTVEFURTAiLCAicmVkaXJlY3RfdXJpIjogImh0dHBzOi8vbG9jYWxob3N0L2NhbGxiYWNrMSIsICJ1c2VyaW5mbyI6IHsiY2xhaW1zIjogeyJuYW1lIjogbnVsbH19LCAiY2xpZW50X2lkIjogIkAhMTExMSEwMDA4IUU2NTQuQjQ2MCIsICJzY29wZSI6IFsib3BlbmlkIl0sICJyZXNwb25zZV90eXBlIjogWyJjb2RlIl19";
+            String secret = "071d68a5-9eb0-47fb-8608-f54a0d9c8ede";
+
+            OxAuthCryptoProvider cryptoProvider = new OxAuthCryptoProvider();
+            String encodedSignature = cryptoProvider.sign(signingInput, null, secret, SignatureAlgorithm.HS256);
+
+            System.out.println("Encoded Signature: " + encodedSignature);
+            assertEquals(encodedSignature, "BQwm1HCz0cjHYbulWMumkhZgyb2dD93uScXmC6Fv8Ik");
+        } catch (Exception e) {
+            fail(e.getMessage(), e);
+        }
+    }
+
+    @Test
+    public void hs384() {
+        try {
+            showTitle("hs384");
+
+            String signingInput = "eyJhbGciOiJIUzI1NiJ9.eyJub25jZSI6ICI2Qm9HN1QwR0RUZ2wiLCAiaWRfdG9rZW4iOiB7Im1heF9hZ2UiOiA4NjQwMH0sICJzdGF0ZSI6ICJTVEFURTAiLCAicmVkaXJlY3RfdXJpIjogImh0dHBzOi8vbG9jYWxob3N0L2NhbGxiYWNrMSIsICJ1c2VyaW5mbyI6IHsiY2xhaW1zIjogeyJuYW1lIjogbnVsbH19LCAiY2xpZW50X2lkIjogIkAhMTExMSEwMDA4IUU2NTQuQjQ2MCIsICJzY29wZSI6IFsib3BlbmlkIl0sICJyZXNwb25zZV90eXBlIjogWyJjb2RlIl19";
+            String secret = "071d68a5-9eb0-47fb-8608-f54a0d9c8ede";
+
+            OxAuthCryptoProvider cryptoProvider = new OxAuthCryptoProvider();
+            String encodedSignature = cryptoProvider.sign(signingInput, null, secret, SignatureAlgorithm.HS384);
+
+            System.out.println("Encoded Signature: " + encodedSignature);
+            assertEquals(encodedSignature, "pe7gU1XxroqizSzucuHOor36L-M9_XPZ7KZcR6JW6xQAa2fmTLSDCc02fNER9atB");
+        } catch (Exception e) {
+            fail(e.getMessage(), e);
+        }
+    }
+
+    @Test
+    public void hs512() {
+        try {
+            showTitle("hs512");
+
+            String signingInput = "eyJhbGciOiJIUzI1NiJ9.eyJub25jZSI6ICI2Qm9HN1QwR0RUZ2wiLCAiaWRfdG9rZW4iOiB7Im1heF9hZ2UiOiA4NjQwMH0sICJzdGF0ZSI6ICJTVEFURTAiLCAicmVkaXJlY3RfdXJpIjogImh0dHBzOi8vbG9jYWxob3N0L2NhbGxiYWNrMSIsICJ1c2VyaW5mbyI6IHsiY2xhaW1zIjogeyJuYW1lIjogbnVsbH19LCAiY2xpZW50X2lkIjogIkAhMTExMSEwMDA4IUU2NTQuQjQ2MCIsICJzY29wZSI6IFsib3BlbmlkIl0sICJyZXNwb25zZV90eXBlIjogWyJjb2RlIl19";
+            String secret = "071d68a5-9eb0-47fb-8608-f54a0d9c8ede";
+
+            OxAuthCryptoProvider cryptoProvider = new OxAuthCryptoProvider();
+            String encodedSignature = cryptoProvider.sign(signingInput, null, secret, SignatureAlgorithm.HS512);
+
+            System.out.println("Encoded Signature: " + encodedSignature);
+            assertEquals(encodedSignature, "IZsXiRrRfP9eNFj6snm_MGEnrtfvX8vOF43Z-FuFkRj29y0WUaPR50IXRDI5uGatJvVdr_i7eJCJ4N_EwwrIhQ");
+        } catch (Exception e) {
+            fail(e.getMessage(), e);
+        }
+    }
+
+    @Parameters({"clientJwksUri", "RS256_keyId", "dnName", "keyStoreFile", "keyStoreSecret"})
+    @Test
+    public void testRS256(final String clientJwksUri, final String keyId, final String dnName,
+                          final String keyStoreFile, final String keyStoreSecret) {
+        try {
+            showTitle("Test RS256");
+
+            JwkClient jwkClient = new JwkClient(clientJwksUri);
+            JwkResponse jwkResponse = jwkClient.exec();
+
+            String signingInput = "eyJhbGciOiJIUzI1NiJ9.eyJub25jZSI6ICI2Qm9HN1QwR0RUZ2wiLCAiaWRfdG9rZW4iOiB7Im1heF9hZ2UiOiA4NjQwMH0sICJzdGF0ZSI6ICJTVEFURTAiLCAicmVkaXJlY3RfdXJpIjogImh0dHBzOi8vbG9jYWxob3N0L2NhbGxiYWNrMSIsICJ1c2VyaW5mbyI6IHsiY2xhaW1zIjogeyJuYW1lIjogbnVsbH19LCAiY2xpZW50X2lkIjogIkAhMTExMSEwMDA4IUU2NTQuQjQ2MCIsICJzY29wZSI6IFsib3BlbmlkIl0sICJyZXNwb25zZV90eXBlIjogWyJjb2RlIl19";
+
+            OxAuthCryptoProvider cryptoProvider = new OxAuthCryptoProvider(keyStoreFile, keyStoreSecret, dnName);
+            String encodedSignature = cryptoProvider.sign(signingInput, keyId, null, SignatureAlgorithm.RS256);
+
+            System.out.println("Encoded Signature: " + encodedSignature);
+
+            boolean signatureVerified = cryptoProvider.verifySignature(
+                    signingInput, encodedSignature, keyId, jwkResponse.getJwks().toJSONObject(), null,
+                    SignatureAlgorithm.RS256);
+            assertTrue(signatureVerified, "Invalid signature");
+        } catch (Exception e) {
+            fail(e.getMessage(), e);
+        }
+    }
+
+    @Parameters({"clientJwksUri", "RS384_keyId", "dnName", "keyStoreFile", "keyStoreSecret"})
+    @Test
+    public void testRS384(final String clientJwksUri, final String keyId, final String dnName,
+                          final String keyStoreFile, final String keyStoreSecret) {
+        try {
+            showTitle("Test RS384");
+
+            JwkClient jwkClient = new JwkClient(clientJwksUri);
+            JwkResponse jwkResponse = jwkClient.exec();
+
+            String signingInput = "eyJhbGciOiJIUzI1NiJ9.eyJub25jZSI6ICI2Qm9HN1QwR0RUZ2wiLCAiaWRfdG9rZW4iOiB7Im1heF9hZ2UiOiA4NjQwMH0sICJzdGF0ZSI6ICJTVEFURTAiLCAicmVkaXJlY3RfdXJpIjogImh0dHBzOi8vbG9jYWxob3N0L2NhbGxiYWNrMSIsICJ1c2VyaW5mbyI6IHsiY2xhaW1zIjogeyJuYW1lIjogbnVsbH19LCAiY2xpZW50X2lkIjogIkAhMTExMSEwMDA4IUU2NTQuQjQ2MCIsICJzY29wZSI6IFsib3BlbmlkIl0sICJyZXNwb25zZV90eXBlIjogWyJjb2RlIl19";
+
+            OxAuthCryptoProvider cryptoProvider = new OxAuthCryptoProvider(keyStoreFile, keyStoreSecret, dnName);
+            String encodedSignature = cryptoProvider.sign(signingInput, keyId, null, SignatureAlgorithm.RS384);
+
+            System.out.println("Encoded Signature: " + encodedSignature);
+
+            boolean signatureVerified = cryptoProvider.verifySignature(
+                    signingInput, encodedSignature, keyId, jwkResponse.getJwks().toJSONObject(), null,
+                    SignatureAlgorithm.RS384);
+            assertTrue(signatureVerified, "Invalid signature");
+        } catch (Exception e) {
+            fail(e.getMessage(), e);
+        }
+    }
+
+    @Parameters({"clientJwksUri", "RS512_keyId", "dnName", "keyStoreFile", "keyStoreSecret"})
+    @Test
+    public void testRS512(final String clientJwksUri, final String keyId, final String dnName,
+                          final String keyStoreFile, final String keyStoreSecret) {
+        try {
+            showTitle("Test RS512");
+
+            JwkClient jwkClient = new JwkClient(clientJwksUri);
+            JwkResponse jwkResponse = jwkClient.exec();
+
+            String signingInput = "eyJhbGciOiJIUzI1NiJ9.eyJub25jZSI6ICI2Qm9HN1QwR0RUZ2wiLCAiaWRfdG9rZW4iOiB7Im1heF9hZ2UiOiA4NjQwMH0sICJzdGF0ZSI6ICJTVEFURTAiLCAicmVkaXJlY3RfdXJpIjogImh0dHBzOi8vbG9jYWxob3N0L2NhbGxiYWNrMSIsICJ1c2VyaW5mbyI6IHsiY2xhaW1zIjogeyJuYW1lIjogbnVsbH19LCAiY2xpZW50X2lkIjogIkAhMTExMSEwMDA4IUU2NTQuQjQ2MCIsICJzY29wZSI6IFsib3BlbmlkIl0sICJyZXNwb25zZV90eXBlIjogWyJjb2RlIl19";
+
+            OxAuthCryptoProvider cryptoProvider = new OxAuthCryptoProvider(keyStoreFile, keyStoreSecret, dnName);
+            String encodedSignature = cryptoProvider.sign(signingInput, keyId, null, SignatureAlgorithm.RS512);
+
+            System.out.println("Encoded Signature: " + encodedSignature);
+
+            boolean signatureVerified = cryptoProvider.verifySignature(
+                    signingInput, encodedSignature, keyId, jwkResponse.getJwks().toJSONObject(), null,
+                    SignatureAlgorithm.RS512);
+            assertTrue(signatureVerified, "Invalid signature");
+        } catch (Exception e) {
+            fail(e.getMessage(), e);
+        }
+    }
+
+    @Parameters({"clientJwksUri", "ES256_keyId", "dnName", "keyStoreFile", "keyStoreSecret"})
+    @Test
+    public void testES256(final String clientJwksUri, final String keyId, final String dnName,
+                          final String keyStoreFile, final String keyStoreSecret) {
+        try {
+            showTitle("Test ES256");
+
+            JwkClient jwkClient = new JwkClient(clientJwksUri);
+            JwkResponse jwkResponse = jwkClient.exec();
+
+            String signingInput = "eyJhbGciOiJIUzI1NiJ9.eyJub25jZSI6ICI2Qm9HN1QwR0RUZ2wiLCAiaWRfdG9rZW4iOiB7Im1heF9hZ2UiOiA4NjQwMH0sICJzdGF0ZSI6ICJTVEFURTAiLCAicmVkaXJlY3RfdXJpIjogImh0dHBzOi8vbG9jYWxob3N0L2NhbGxiYWNrMSIsICJ1c2VyaW5mbyI6IHsiY2xhaW1zIjogeyJuYW1lIjogbnVsbH19LCAiY2xpZW50X2lkIjogIkAhMTExMSEwMDA4IUU2NTQuQjQ2MCIsICJzY29wZSI6IFsib3BlbmlkIl0sICJyZXNwb25zZV90eXBlIjogWyJjb2RlIl19";
+
+            OxAuthCryptoProvider cryptoProvider = new OxAuthCryptoProvider(keyStoreFile, keyStoreSecret, dnName);
+            String encodedSignature = cryptoProvider.sign(signingInput, keyId, null, SignatureAlgorithm.ES256);
+
+            System.out.println("Encoded Signature: " + encodedSignature);
+
+            boolean signatureVerified = cryptoProvider.verifySignature(
+                    signingInput, encodedSignature, keyId, jwkResponse.getJwks().toJSONObject(), null,
+                    SignatureAlgorithm.ES256);
+            assertTrue(signatureVerified, "Invalid signature");
+        } catch (Exception e) {
+            fail(e.getMessage(), e);
+        }
+    }
+
+    @Parameters({"clientJwksUri", "ES384_keyId", "dnName", "keyStoreFile", "keyStoreSecret"})
+    @Test
+    public void testES384(final String clientJwksUri, final String keyId, final String dnName,
+                          final String keyStoreFile, final String keyStoreSecret) {
+        try {
+            showTitle("Test ES384");
+
+            JwkClient jwkClient = new JwkClient(clientJwksUri);
+            JwkResponse jwkResponse = jwkClient.exec();
+
+            String signingInput = "eyJhbGciOiJIUzI1NiJ9.eyJub25jZSI6ICI2Qm9HN1QwR0RUZ2wiLCAiaWRfdG9rZW4iOiB7Im1heF9hZ2UiOiA4NjQwMH0sICJzdGF0ZSI6ICJTVEFURTAiLCAicmVkaXJlY3RfdXJpIjogImh0dHBzOi8vbG9jYWxob3N0L2NhbGxiYWNrMSIsICJ1c2VyaW5mbyI6IHsiY2xhaW1zIjogeyJuYW1lIjogbnVsbH19LCAiY2xpZW50X2lkIjogIkAhMTExMSEwMDA4IUU2NTQuQjQ2MCIsICJzY29wZSI6IFsib3BlbmlkIl0sICJyZXNwb25zZV90eXBlIjogWyJjb2RlIl19";
+
+            OxAuthCryptoProvider cryptoProvider = new OxAuthCryptoProvider(keyStoreFile, keyStoreSecret, dnName);
+            String encodedSignature = cryptoProvider.sign(signingInput, keyId, null, SignatureAlgorithm.ES384);
+
+            System.out.println("Encoded Signature: " + encodedSignature);
+
+            boolean signatureVerified = cryptoProvider.verifySignature(
+                    signingInput, encodedSignature, keyId, jwkResponse.getJwks().toJSONObject(), null,
+                    SignatureAlgorithm.ES384);
+            assertTrue(signatureVerified, "Invalid signature");
+        } catch (Exception e) {
+            fail(e.getMessage(), e);
+        }
+    }
+
+    @Parameters({"clientJwksUri", "ES512_keyId", "dnName", "keyStoreFile", "keyStoreSecret"})
+    @Test
+    public void testES512(final String clientJwksUri, final String keyId, final String dnName,
+                          final String keyStoreFile, final String keyStoreSecret) {
+        try {
+            showTitle("Test ES512");
+
+            JwkClient jwkClient = new JwkClient(clientJwksUri);
+            JwkResponse jwkResponse = jwkClient.exec();
+
+            String signingInput = "eyJhbGciOiJIUzI1NiJ9.eyJub25jZSI6ICI2Qm9HN1QwR0RUZ2wiLCAiaWRfdG9rZW4iOiB7Im1heF9hZ2UiOiA4NjQwMH0sICJzdGF0ZSI6ICJTVEFURTAiLCAicmVkaXJlY3RfdXJpIjogImh0dHBzOi8vbG9jYWxob3N0L2NhbGxiYWNrMSIsICJ1c2VyaW5mbyI6IHsiY2xhaW1zIjogeyJuYW1lIjogbnVsbH19LCAiY2xpZW50X2lkIjogIkAhMTExMSEwMDA4IUU2NTQuQjQ2MCIsICJzY29wZSI6IFsib3BlbmlkIl0sICJyZXNwb25zZV90eXBlIjogWyJjb2RlIl19";
+
+            OxAuthCryptoProvider cryptoProvider = new OxAuthCryptoProvider(keyStoreFile, keyStoreSecret, dnName);
+            String encodedSignature = cryptoProvider.sign(signingInput, keyId, null, SignatureAlgorithm.ES512);
+
+            System.out.println("Encoded Signature: " + encodedSignature);
+
+            boolean signatureVerified = cryptoProvider.verifySignature(
+                    signingInput, encodedSignature, keyId, jwkResponse.getJwks().toJSONObject(), null,
+                    SignatureAlgorithm.ES512);
+            assertTrue(signatureVerified, "Invalid signature");
+        } catch (Exception e) {
+            fail(e.getMessage(), e);
+        }
+    }
+
+    @Test
+    public void getMessageDigestSHA256() {
+        showTitle("sha256");
+
+        try {
+            String input = "The quick brown fox jumps over the lazy dog";
+            System.out.println("Input: " + input);
+
+            byte[] digest = JwtUtil.getMessageDigestSHA256(input);
+
+            BigInteger result = new BigInteger(1, digest);
+            BigInteger expectedResult = new BigInteger("d7a8fbb307d7809469ca9abcb0082e4f8d5651e46d3cdb762d02d0bf37c9e592", 16);
+
+            System.out.println("Result  : " + result);
+            System.out.println("Expected: " + expectedResult);
+
+            assertEquals(result, expectedResult);
+        } catch (NoSuchProviderException e) {
+            e.printStackTrace();
+            fail(e.getMessage());
+        } catch (NoSuchAlgorithmException e) {
+            e.printStackTrace();
+            fail(e.getMessage());
+        } catch (UnsupportedEncodingException e) {
+            e.printStackTrace();
+            fail(e.getMessage());
+        }
+    }
+
+    @Test
+    public void getMessageDigestSHA384() {
+        showTitle("sha384");
+
+        try {
+            String input = "The quick brown fox jumps over the lazy dog";
+            System.out.println("Input: " + input);
+
+            byte[] digest = JwtUtil.getMessageDigestSHA384(input);
+
+            BigInteger result = new BigInteger(1, digest);
+            BigInteger expectedResult = new BigInteger("ca737f1014a48f4c0b6dd43cb177b0afd9e5169367544c494011e3317dbf9a509cb1e5dc1e85a941bbee3d7f2afbc9b1", 16);
+
+            System.out.println("Result   : " + result);
+            System.out.println("Expected : " + expectedResult);
+
+            assertEquals(result, expectedResult);
+        } catch (NoSuchProviderException e) {
+            e.printStackTrace();
+            fail(e.getMessage());
+        } catch (NoSuchAlgorithmException e) {
+            e.printStackTrace();
+            fail(e.getMessage());
+        } catch (UnsupportedEncodingException e) {
+            e.printStackTrace();
+            fail(e.getMessage());
+        }
+    }
+
+    @Test
+    public void getMessageDigestSHA512() {
+        showTitle("sha512");
+
+        try {
+            String input = "The quick brown fox jumps over the lazy dog";
+            System.out.println("Input: " + input);
+
+            byte[] digest = JwtUtil.getMessageDigestSHA512(input);
+
+            BigInteger result = new BigInteger(1, digest);
+            BigInteger expectedResult = new BigInteger("07e547d9586f6a73f73fbac0435ed76951218fb7d0c8d788a309d785436bbb642e93a252a954f23912547d1e8a3b5ed6e1bfd7097821233fa0538f3db854fee6", 16);
+
+            System.out.println("Result   : " + result);
+            System.out.println("Expected : " + expectedResult);
+
+            assertEquals(result, expectedResult);
+        } catch (NoSuchProviderException e) {
+            e.printStackTrace();
+            fail(e.getMessage());
+        } catch (NoSuchAlgorithmException e) {
+            e.printStackTrace();
+            fail(e.getMessage());
+        } catch (UnsupportedEncodingException e) {
+            e.printStackTrace();
+            fail(e.getMessage());
+        }
+    }
+}
\ No newline at end of file
diff --git a/oxAuth/Client/src/test/java/org/gluu/oxauth/ws/rs/UILocales.java b/oxAuth/Client/src/test/java/org/gluu/oxauth/ws/rs/UILocales.java
new file mode 100644
index 00000000..1af4632f
--- /dev/null
+++ b/oxAuth/Client/src/test/java/org/gluu/oxauth/ws/rs/UILocales.java
@@ -0,0 +1,111 @@
+/*
+ * oxAuth is available under the MIT License (2008). See http://opensource.org/licenses/MIT for full text.
+ *
+ * Copyright (c) 2014, Gluu
+ */
+
+package org.gluu.oxauth.ws.rs;
+
+import static org.gluu.oxauth.model.register.RegisterRequestParam.APPLICATION_TYPE;
+import static org.gluu.oxauth.model.register.RegisterRequestParam.CLIENT_NAME;
+import static org.gluu.oxauth.model.register.RegisterRequestParam.ID_TOKEN_SIGNED_RESPONSE_ALG;
+import static org.gluu.oxauth.model.register.RegisterRequestParam.REDIRECT_URIS;
+import static org.gluu.oxauth.model.register.RegisterRequestParam.RESPONSE_TYPES;
+import static org.gluu.oxauth.model.register.RegisterRequestParam.SCOPE;
+import static org.testng.Assert.assertEquals;
+import static org.testng.Assert.assertNotNull;
+
+import java.util.Arrays;
+import java.util.List;
+import java.util.UUID;
+
+import org.gluu.oxauth.BaseTest;
+import org.gluu.oxauth.client.AuthorizationRequest;
+import org.gluu.oxauth.client.AuthorizationResponse;
+import org.gluu.oxauth.client.RegisterClient;
+import org.gluu.oxauth.client.RegisterRequest;
+import org.gluu.oxauth.client.RegisterResponse;
+import org.gluu.oxauth.model.common.ResponseType;
+import org.gluu.oxauth.model.register.ApplicationType;
+import org.gluu.oxauth.model.util.StringUtils;
+import org.testng.annotations.Parameters;
+import org.testng.annotations.Test;
+
+/**
+ * @author Javier Rojas Blum
+ * @version November 29, 2017
+ */
+public class UILocales extends BaseTest {
+
+    @Parameters({"userId", "userSecret", "redirectUris", "redirectUri", "sectorIdentifierUri"})
+    @Test
+    public void uiLocales(
+            final String userId, final String userSecret, final String redirectUris, final String redirectUri,
+            final String sectorIdentifierUri) throws Exception {
+        showTitle("uiLocales");
+
+        //List<ResponseType> responseTypes = Arrays.asList(ResponseType.TOKEN, ResponseType.ID_TOKEN);
+        List<ResponseType> responseTypes = Arrays.asList(ResponseType.TOKEN);
+
+        // 1. Register client
+        RegisterRequest registerRequest = new RegisterRequest(ApplicationType.WEB, "oxAuth test app",
+                StringUtils.spaceSeparatedToList(redirectUris));
+        registerRequest.setResponseTypes(responseTypes);
+        registerRequest.setSectorIdentifierUri(sectorIdentifierUri);
+
+        RegisterClient registerClient = new RegisterClient(registrationEndpoint);
+        registerClient.setRequest(registerRequest);
+        RegisterResponse registerResponse = registerClient.exec();
+
+        showClient(registerClient);
+        assertEquals(registerResponse.getStatus(), 200, "Unexpected response code: " + registerResponse.getEntity());
+        assertNotNull(registerResponse.getClientId());
+        assertNotNull(registerResponse.getClientSecret());
+        assertNotNull(registerResponse.getRegistrationAccessToken());
+        assertNotNull(registerResponse.getClientIdIssuedAt());
+        assertNotNull(registerResponse.getClientSecretExpiresAt());
+
+        String clientId = registerResponse.getClientId();
+        String registrationAccessToken = registerResponse.getRegistrationAccessToken();
+        String registrationClientUri = registerResponse.getRegistrationClientUri();
+
+        // 2. Client read
+        RegisterRequest readClientRequest = new RegisterRequest(registrationAccessToken);
+
+        RegisterClient readClient = new RegisterClient(registrationClientUri);
+        readClient.setRequest(readClientRequest);
+        RegisterResponse readClientResponse = readClient.exec();
+
+        showClient(readClient);
+        assertEquals(readClientResponse.getStatus(), 200, "Unexpected response code: " + readClientResponse.getEntity());
+        assertNotNull(readClientResponse.getClientId());
+        assertNotNull(readClientResponse.getClientSecret());
+        assertNotNull(readClientResponse.getClientIdIssuedAt());
+        assertNotNull(readClientResponse.getClientSecretExpiresAt());
+
+        assertNotNull(readClientResponse.getClaims().get(RESPONSE_TYPES.toString()));
+        assertNotNull(readClientResponse.getClaims().get(REDIRECT_URIS.toString()));
+        assertNotNull(readClientResponse.getClaims().get(APPLICATION_TYPE.toString()));
+        assertNotNull(readClientResponse.getClaims().get(CLIENT_NAME.toString()));
+        assertNotNull(readClientResponse.getClaims().get(ID_TOKEN_SIGNED_RESPONSE_ALG.toString()));
+        assertNotNull(readClientResponse.getClaims().get(SCOPE.toString()));
+
+        // 3. Request authorization
+        List<String> scopes = Arrays.asList("openid", "profile", "address", "email");
+        String nonce = UUID.randomUUID().toString();
+        String state = UUID.randomUUID().toString();
+
+        AuthorizationRequest authorizationRequest = new AuthorizationRequest(responseTypes, clientId, scopes, redirectUri, nonce);
+        authorizationRequest.setState(state);
+
+        AuthorizationResponse authorizationResponse = authenticateResourceOwnerAndGrantAccess(
+                authorizationEndpoint, authorizationRequest, userId, userSecret);
+
+        assertNotNull(authorizationResponse.getLocation(), "The location is null");
+        assertNotNull(authorizationResponse.getAccessToken(), "The access token is null");
+        assertNotNull(authorizationResponse.getState(), "The state is null");
+        assertNotNull(authorizationResponse.getTokenType(), "The token type is null");
+        assertNotNull(authorizationResponse.getExpiresIn(), "The expires in value is null");
+        assertNotNull(authorizationResponse.getScope(), "The scope must be null");
+    }
+}
\ No newline at end of file
diff --git a/oxAuth/Client/src/test/java/org/gluu/oxauth/ws/rs/UserAuthenticationFilterHttpTest.java b/oxAuth/Client/src/test/java/org/gluu/oxauth/ws/rs/UserAuthenticationFilterHttpTest.java
new file mode 100644
index 00000000..4d102dd2
--- /dev/null
+++ b/oxAuth/Client/src/test/java/org/gluu/oxauth/ws/rs/UserAuthenticationFilterHttpTest.java
@@ -0,0 +1,320 @@
+/*
+ * oxAuth is available under the MIT License (2008). See http://opensource.org/licenses/MIT for full text.
+ *
+ * Copyright (c) 2014, Gluu
+ */
+
+package org.gluu.oxauth.ws.rs;
+
+import static org.testng.Assert.assertEquals;
+import static org.testng.Assert.assertNotNull;
+
+import java.util.Arrays;
+import java.util.List;
+import java.util.UUID;
+
+import org.gluu.oxauth.BaseTest;
+import org.gluu.oxauth.client.AuthorizationRequest;
+import org.gluu.oxauth.client.AuthorizationResponse;
+import org.gluu.oxauth.client.RegisterClient;
+import org.gluu.oxauth.client.RegisterRequest;
+import org.gluu.oxauth.client.RegisterResponse;
+import org.gluu.oxauth.client.TokenClient;
+import org.gluu.oxauth.client.TokenRequest;
+import org.gluu.oxauth.client.TokenResponse;
+import org.gluu.oxauth.model.common.AuthenticationMethod;
+import org.gluu.oxauth.model.common.AuthorizationMethod;
+import org.gluu.oxauth.model.common.GrantType;
+import org.gluu.oxauth.model.common.Prompt;
+import org.gluu.oxauth.model.common.ResponseType;
+import org.gluu.oxauth.model.crypto.OxAuthCryptoProvider;
+import org.gluu.oxauth.model.register.ApplicationType;
+import org.gluu.oxauth.model.util.StringUtils;
+import org.testng.annotations.Parameters;
+import org.testng.annotations.Test;
+
+/**
+ * @author Javier Rojas Blum
+ * @version March 9, 2019
+ */
+public class UserAuthenticationFilterHttpTest extends BaseTest {
+
+    @Parameters({"redirectUris", "userInum", "userEmail", "sectorIdentifierUri"})
+    @Test
+    public void requestAccessTokenCustomAuth1(
+            final String redirectUris, final String userInum, final String userEmail, final String sectorIdentifierUri) throws Exception {
+        showTitle("requestAccessTokenCustomAuth1");
+
+        List<GrantType> grantTypes = Arrays.asList(
+                GrantType.RESOURCE_OWNER_PASSWORD_CREDENTIALS
+        );
+
+        RegisterRequest registerRequest = new RegisterRequest(ApplicationType.WEB, "oxAuth test app",
+                StringUtils.spaceSeparatedToList(redirectUris));
+        registerRequest.setTokenEndpointAuthMethod(AuthenticationMethod.CLIENT_SECRET_POST);
+        registerRequest.setSectorIdentifierUri(sectorIdentifierUri);
+        registerRequest.setGrantTypes(grantTypes);
+
+        RegisterClient registerClient = new RegisterClient(registrationEndpoint);
+        registerClient.setRequest(registerRequest);
+        RegisterResponse registerResponse = registerClient.exec();
+
+        showClient(registerClient);
+        assertEquals(registerResponse.getStatus(), 200, "Unexpected response code: " + registerResponse.getEntity());
+        assertNotNull(registerResponse.getClientId());
+        assertNotNull(registerResponse.getClientSecret());
+        assertNotNull(registerResponse.getRegistrationAccessToken());
+        assertNotNull(registerResponse.getClientIdIssuedAt());
+        assertNotNull(registerResponse.getClientSecretExpiresAt());
+
+        String clientId = registerResponse.getClientId();
+        String clientSecret = registerResponse.getClientSecret();
+
+        TokenRequest tokenRequest = new TokenRequest(GrantType.RESOURCE_OWNER_PASSWORD_CREDENTIALS);
+        tokenRequest.setAuthUsername(clientId);
+        tokenRequest.setAuthPassword(clientSecret);
+        tokenRequest.addCustomParameter("mail", userEmail);
+        tokenRequest.addCustomParameter("inum", userInum);
+        tokenRequest.setAuthenticationMethod(AuthenticationMethod.CLIENT_SECRET_POST);
+
+        TokenClient tokenClient = new TokenClient(tokenEndpoint);
+        tokenClient.setRequest(tokenRequest);
+        TokenResponse response1 = tokenClient.exec();
+
+        showClient(tokenClient);
+        assertEquals(response1.getStatus(), 200, "Unexpected response code: " + response1.getStatus());
+        assertNotNull(response1.getEntity(), "The entity is null");
+        assertNotNull(response1.getAccessToken(), "The access token is null");
+        assertNotNull(response1.getTokenType(), "The token type is null");
+    }
+
+    @Parameters({"redirectUris", "userId", "userSecret", "sectorIdentifierUri"})
+    @Test
+    public void requestAccessTokenCustomAuth2(
+            final String redirectUris, final String userId, final String userSecret, final String sectorIdentifierUri) throws Exception {
+        showTitle("requestAccessTokenCustomAuth2");
+
+        List<GrantType> grantTypes = Arrays.asList(
+                GrantType.RESOURCE_OWNER_PASSWORD_CREDENTIALS
+        );
+
+        RegisterRequest registerRequest = new RegisterRequest(ApplicationType.WEB, "oxAuth test app",
+                StringUtils.spaceSeparatedToList(redirectUris));
+        registerRequest.setTokenEndpointAuthMethod(AuthenticationMethod.CLIENT_SECRET_POST);
+        registerRequest.setSectorIdentifierUri(sectorIdentifierUri);
+        registerRequest.setGrantTypes(grantTypes);
+
+        RegisterClient registerClient = new RegisterClient(registrationEndpoint);
+        registerClient.setRequest(registerRequest);
+        RegisterResponse registerResponse = registerClient.exec();
+
+        showClient(registerClient);
+        assertEquals(registerResponse.getStatus(), 200, "Unexpected response code: " + registerResponse.getEntity());
+        assertNotNull(registerResponse.getClientId());
+        assertNotNull(registerResponse.getClientSecret());
+        assertNotNull(registerResponse.getRegistrationAccessToken());
+        assertNotNull(registerResponse.getClientIdIssuedAt());
+        assertNotNull(registerResponse.getClientSecretExpiresAt());
+
+        String clientId = registerResponse.getClientId();
+        String clientSecret = registerResponse.getClientSecret();
+
+        TokenRequest tokenRequest = new TokenRequest(GrantType.RESOURCE_OWNER_PASSWORD_CREDENTIALS);
+        tokenRequest.setAuthUsername(clientId);
+        tokenRequest.setAuthPassword(clientSecret);
+        tokenRequest.addCustomParameter("uid", userId);
+        tokenRequest.addCustomParameter("pwd", userSecret);
+        tokenRequest.setAuthenticationMethod(AuthenticationMethod.CLIENT_SECRET_POST);
+
+        TokenClient tokenClient = new TokenClient(tokenEndpoint);
+        tokenClient.setRequest(tokenRequest);
+        TokenResponse response1 = tokenClient.exec();
+
+        showClient(tokenClient);
+        assertEquals(response1.getStatus(), 200, "Unexpected response code: " + response1.getStatus());
+        assertNotNull(response1.getEntity(), "The entity is null");
+        assertNotNull(response1.getAccessToken(), "The access token is null");
+        assertNotNull(response1.getTokenType(), "The token type is null");
+    }
+
+    @Parameters({"redirectUris", "userInum", "userEmail", "sectorIdentifierUri"})
+    @Test
+    public void requestAccessTokenCustomAuth3(
+            final String redirectUris, final String userInum, final String userEmail, final String sectorIdentifierUri) throws Exception {
+        showTitle("requestAccessTokenCustomAuth3");
+
+        List<GrantType> grantTypes = Arrays.asList(
+                GrantType.RESOURCE_OWNER_PASSWORD_CREDENTIALS
+        );
+
+        RegisterRequest registerRequest = new RegisterRequest(ApplicationType.WEB, "oxAuth test app",
+                StringUtils.spaceSeparatedToList(redirectUris));
+        registerRequest.setTokenEndpointAuthMethod(AuthenticationMethod.CLIENT_SECRET_BASIC);
+        registerRequest.setSectorIdentifierUri(sectorIdentifierUri);
+        registerRequest.setGrantTypes(grantTypes);
+
+        RegisterClient registerClient = new RegisterClient(registrationEndpoint);
+        registerClient.setRequest(registerRequest);
+        RegisterResponse registerResponse = registerClient.exec();
+
+        showClient(registerClient);
+        assertEquals(registerResponse.getStatus(), 200, "Unexpected response code: " + registerResponse.getEntity());
+        assertNotNull(registerResponse.getClientId());
+        assertNotNull(registerResponse.getClientSecret());
+        assertNotNull(registerResponse.getRegistrationAccessToken());
+        assertNotNull(registerResponse.getClientIdIssuedAt());
+        assertNotNull(registerResponse.getClientSecretExpiresAt());
+
+        String clientId = registerResponse.getClientId();
+        String clientSecret = registerResponse.getClientSecret();
+
+        TokenRequest tokenRequest = new TokenRequest(GrantType.RESOURCE_OWNER_PASSWORD_CREDENTIALS);
+        tokenRequest.setAuthUsername(clientId);
+        tokenRequest.setAuthPassword(clientSecret);
+        tokenRequest.addCustomParameter("mail", userEmail);
+        tokenRequest.addCustomParameter("inum", userInum);
+        tokenRequest.setAuthenticationMethod(AuthenticationMethod.CLIENT_SECRET_BASIC);
+
+        TokenClient tokenClient = new TokenClient(tokenEndpoint);
+        tokenClient.setRequest(tokenRequest);
+        TokenResponse response1 = tokenClient.exec();
+
+        showClient(tokenClient);
+        assertEquals(response1.getStatus(), 200, "Unexpected response code: " + response1.getStatus());
+        assertNotNull(response1.getEntity(), "The entity is null");
+        assertNotNull(response1.getAccessToken(), "The access token is null");
+        assertNotNull(response1.getTokenType(), "The token type is null");
+    }
+
+    @Parameters({"userId", "userSecret", "redirectUris", "sectorIdentifierUri"})
+    @Test
+    public void requestAccessTokenCustomAuth4(
+            final String userId, final String userSecret, final String redirectUris, final String sectorIdentifierUri) throws Exception {
+        showTitle("requestAccessTokenCustomAuth4");
+
+        List<GrantType> grantTypes = Arrays.asList(
+                GrantType.RESOURCE_OWNER_PASSWORD_CREDENTIALS
+        );
+
+        RegisterRequest registerRequest = new RegisterRequest(ApplicationType.WEB, "oxAuth test app",
+                StringUtils.spaceSeparatedToList(redirectUris));
+        registerRequest.setTokenEndpointAuthMethod(AuthenticationMethod.CLIENT_SECRET_JWT);
+        registerRequest.setSectorIdentifierUri(sectorIdentifierUri);
+        registerRequest.setGrantTypes(grantTypes);
+
+        RegisterClient registerClient = new RegisterClient(registrationEndpoint);
+        registerClient.setRequest(registerRequest);
+        RegisterResponse registerResponse = registerClient.exec();
+
+        showClient(registerClient);
+        assertEquals(registerResponse.getStatus(), 200, "Unexpected response code: " + registerResponse.getEntity());
+        assertNotNull(registerResponse.getClientId());
+        assertNotNull(registerResponse.getClientSecret());
+        assertNotNull(registerResponse.getRegistrationAccessToken());
+        assertNotNull(registerResponse.getClientIdIssuedAt());
+        assertNotNull(registerResponse.getClientSecretExpiresAt());
+
+        String clientId = registerResponse.getClientId();
+        String clientSecret = registerResponse.getClientSecret();
+
+        OxAuthCryptoProvider cryptoProvider = new OxAuthCryptoProvider();
+
+        TokenRequest tokenRequest = new TokenRequest(GrantType.RESOURCE_OWNER_PASSWORD_CREDENTIALS);
+        tokenRequest.setAuthUsername(clientId);
+        tokenRequest.setAuthPassword(clientSecret);
+        tokenRequest.addCustomParameter("uid", userId);
+        tokenRequest.addCustomParameter("pwd", userSecret);
+        tokenRequest.setAudience(tokenEndpoint);
+        tokenRequest.setAuthenticationMethod(AuthenticationMethod.CLIENT_SECRET_JWT);
+        tokenRequest.setCryptoProvider(cryptoProvider);
+
+        TokenClient tokenClient = new TokenClient(tokenEndpoint);
+        tokenClient.setRequest(tokenRequest);
+        TokenResponse response1 = tokenClient.exec();
+
+        showClient(tokenClient);
+        assertEquals(response1.getStatus(), 200, "Unexpected response code: " + response1.getStatus());
+        assertNotNull(response1.getEntity(), "The entity is null");
+        assertNotNull(response1.getAccessToken(), "The access token is null");
+        assertNotNull(response1.getTokenType(), "The token type is null");
+    }
+
+    @Parameters({"redirectUris", "redirectUri", "userInum", "userEmail", "sectorIdentifierUri"})
+    @Test
+    public void requestAccessTokenCustomAuth5(
+            final String redirectUris, final String redirectUri, final String userInum, final String userEmail,
+            final String sectorIdentifierUri) throws Exception {
+        showTitle("requestAccessTokenCustomAuth5");
+
+        List<ResponseType> responseTypes = Arrays.asList(
+                ResponseType.CODE,
+                ResponseType.ID_TOKEN);
+
+        // 1. Register client.
+        RegisterRequest registerRequest = new RegisterRequest(ApplicationType.WEB, "oxAuth test app",
+                StringUtils.spaceSeparatedToList(redirectUris));
+        registerRequest.setResponseTypes(responseTypes);
+        registerRequest.setTokenEndpointAuthMethod(AuthenticationMethod.CLIENT_SECRET_POST);
+        registerRequest.setSectorIdentifierUri(sectorIdentifierUri);
+
+        RegisterClient registerClient = new RegisterClient(registrationEndpoint);
+        registerClient.setRequest(registerRequest);
+        RegisterResponse registerResponse = registerClient.exec();
+
+        showClient(registerClient);
+        assertEquals(registerResponse.getStatus(), 200, "Unexpected response code: " + registerResponse.getEntity());
+        assertNotNull(registerResponse.getClientId());
+        assertNotNull(registerResponse.getClientSecret());
+        assertNotNull(registerResponse.getRegistrationAccessToken());
+        assertNotNull(registerResponse.getClientIdIssuedAt());
+        assertNotNull(registerResponse.getClientSecretExpiresAt());
+
+        String clientId = registerResponse.getClientId();
+        String clientSecret = registerResponse.getClientSecret();
+
+        // 2. Request authorization and receive the authorization code.
+        List<String> scopes = Arrays.asList(
+                "openid",
+                "profile",
+                "address",
+                "email");
+        String state = UUID.randomUUID().toString();
+        String nonce = UUID.randomUUID().toString();
+
+        AuthorizationRequest authorizationRequest = new AuthorizationRequest(responseTypes, clientId, scopes, redirectUri, nonce);
+        authorizationRequest.setState(state);
+        authorizationRequest.getPrompts().add(Prompt.NONE);
+        authorizationRequest.addCustomParameter("mail", userEmail);
+        authorizationRequest.addCustomParameter("inum", userInum);
+        authorizationRequest.setAuthorizationMethod(AuthorizationMethod.FORM_ENCODED_BODY_PARAMETER);
+
+        AuthorizationResponse authorizationResponse = authorizationRequestAndGrantAccess(
+                authorizationEndpoint, authorizationRequest);
+
+        assertNotNull(authorizationResponse.getLocation(), "The location is null");
+        assertNotNull(authorizationResponse.getCode(), "The authorization code is null");
+        assertNotNull(authorizationResponse.getState(), "The state is null");
+        assertNotNull(authorizationResponse.getScope(), "The scope is null");
+
+        String authorizationCode = authorizationResponse.getCode();
+
+        // 3. Request access token using the authorization code.
+        TokenRequest tokenRequest = new TokenRequest(GrantType.AUTHORIZATION_CODE);
+        tokenRequest.setCode(authorizationCode);
+        tokenRequest.setRedirectUri(redirectUri);
+        tokenRequest.setAuthUsername(clientId);
+        tokenRequest.setAuthPassword(clientSecret);
+        tokenRequest.setAuthenticationMethod(AuthenticationMethod.CLIENT_SECRET_POST);
+
+        TokenClient tokenClient1 = new TokenClient(tokenEndpoint);
+        tokenClient1.setRequest(tokenRequest);
+        TokenResponse response2 = tokenClient1.exec();
+
+        showClient(tokenClient1);
+        assertEquals(response2.getStatus(), 200, "Unexpected response code: " + response2.getStatus());
+        assertNotNull(response2.getEntity(), "The entity is null");
+        assertNotNull(response2.getAccessToken(), "The access token is null");
+        assertNotNull(response2.getExpiresIn(), "The expires in value is null");
+        assertNotNull(response2.getTokenType(), "The token type is null");
+    }
+}
\ No newline at end of file
diff --git a/oxAuth/Client/src/test/java/org/gluu/oxauth/ws/rs/UserInfoRestWebServiceHttpTest.java b/oxAuth/Client/src/test/java/org/gluu/oxauth/ws/rs/UserInfoRestWebServiceHttpTest.java
new file mode 100644
index 00000000..1a7311cc
--- /dev/null
+++ b/oxAuth/Client/src/test/java/org/gluu/oxauth/ws/rs/UserInfoRestWebServiceHttpTest.java
@@ -0,0 +1,1868 @@
+/*
+ * oxAuth is available under the MIT License (2008). See http://opensource.org/licenses/MIT for full text.
+ *
+ * Copyright (c) 2014, Gluu
+ */
+
+package org.gluu.oxauth.ws.rs;
+
+import static org.testng.Assert.assertEquals;
+import static org.testng.Assert.assertNotNull;
+import static org.testng.Assert.assertNull;
+import static org.testng.Assert.fail;
+
+import java.security.PrivateKey;
+import java.util.ArrayList;
+import java.util.Arrays;
+import java.util.List;
+import java.util.UUID;
+
+import org.gluu.oxauth.BaseTest;
+import org.gluu.oxauth.client.AuthorizationRequest;
+import org.gluu.oxauth.client.AuthorizationResponse;
+import org.gluu.oxauth.client.RegisterClient;
+import org.gluu.oxauth.client.RegisterRequest;
+import org.gluu.oxauth.client.RegisterResponse;
+import org.gluu.oxauth.client.TokenClient;
+import org.gluu.oxauth.client.TokenRequest;
+import org.gluu.oxauth.client.TokenResponse;
+import org.gluu.oxauth.client.UserInfoClient;
+import org.gluu.oxauth.client.UserInfoRequest;
+import org.gluu.oxauth.client.UserInfoResponse;
+import org.gluu.oxauth.client.model.authorize.Claim;
+import org.gluu.oxauth.client.model.authorize.ClaimValue;
+import org.gluu.oxauth.client.model.authorize.JwtAuthorizationRequest;
+import org.gluu.oxauth.client.model.authorize.UserInfoMember;
+import org.gluu.oxauth.model.common.AuthenticationMethod;
+import org.gluu.oxauth.model.common.AuthorizationMethod;
+import org.gluu.oxauth.model.common.GrantType;
+import org.gluu.oxauth.model.common.ResponseType;
+import org.gluu.oxauth.model.common.SubjectType;
+import org.gluu.oxauth.model.crypto.OxAuthCryptoProvider;
+import org.gluu.oxauth.model.crypto.encryption.BlockEncryptionAlgorithm;
+import org.gluu.oxauth.model.crypto.encryption.KeyEncryptionAlgorithm;
+import org.gluu.oxauth.model.crypto.signature.SignatureAlgorithm;
+import org.gluu.oxauth.model.jwt.JwtClaimName;
+import org.gluu.oxauth.model.register.ApplicationType;
+import org.gluu.oxauth.model.util.StringUtils;
+import org.json.JSONObject;
+import org.testng.annotations.Parameters;
+import org.testng.annotations.Test;
+
+/**
+ * Functional tests for User Info Web Services (HTTP)
+ *
+ * @author Javier Rojas Blum
+ * @version May 14, 2019
+ */
+public class UserInfoRestWebServiceHttpTest extends BaseTest {
+
+    @Parameters({"userId", "userSecret", "redirectUris", "redirectUri", "sectorIdentifierUri"})
+    @Test
+    public void requestUserInfoImplicitFlow(final String userId, final String userSecret,
+                                            final String redirectUris, final String redirectUri,
+                                            final String sectorIdentifierUri) {
+        showTitle("requestUserInfoImplicitFlow");
+
+        List<ResponseType> responseTypes = Arrays.asList(
+                ResponseType.TOKEN,
+                ResponseType.ID_TOKEN
+        );
+        List<GrantType> grantTypes = Arrays.asList(
+                GrantType.RESOURCE_OWNER_PASSWORD_CREDENTIALS
+        );
+
+        // 1. Register client
+        RegisterResponse registerResponse = registerClient(redirectUris, responseTypes, grantTypes, sectorIdentifierUri);
+        String clientId = registerResponse.getClientId();
+
+        // 2. Request authorization
+        AuthorizationResponse response1 = requestAuthorization(userId, userSecret, redirectUri, responseTypes, clientId);
+
+        String accessToken = response1.getAccessToken();
+
+        // 3. Request user info
+        UserInfoClient userInfoClient = new UserInfoClient(userInfoEndpoint);
+        UserInfoResponse response2 = userInfoClient.execUserInfo(accessToken);
+
+        showClient(userInfoClient);
+        assertEquals(response2.getStatus(), 200, "Unexpected response code: " + response2.getStatus());
+        assertNotNull(response2.getClaim(JwtClaimName.SUBJECT_IDENTIFIER));
+        assertNotNull(response2.getClaim(JwtClaimName.NAME));
+        assertNotNull(response2.getClaim(JwtClaimName.GIVEN_NAME));
+        assertNotNull(response2.getClaim(JwtClaimName.FAMILY_NAME));
+        assertNotNull(response2.getClaim(JwtClaimName.EMAIL));
+        assertNotNull(response2.getClaim(JwtClaimName.ZONEINFO));
+        assertNotNull(response2.getClaim(JwtClaimName.LOCALE));
+        assertNotNull(response2.getClaim(JwtClaimName.ADDRESS));
+        assertNull(response2.getClaim("org_name"));
+        assertNull(response2.getClaim("work_phone"));
+    }
+
+    @Parameters({"userId", "userSecret", "redirectUris", "redirectUri", "sectorIdentifierUri"})
+    @Test
+    public void requestUserInfoWithNotAllowedScopeImplicitFlow(final String userId, final String userSecret,
+                                                               final String redirectUris, final String redirectUri,
+                                                               final String sectorIdentifierUri) {
+        showTitle("requestUserInfoWithNotAllowedScopeImplicitFlow");
+
+        List<ResponseType> responseTypes = Arrays.asList(
+                ResponseType.TOKEN,
+                ResponseType.ID_TOKEN
+        );
+        List<GrantType> grantTypes = Arrays.asList(
+                GrantType.RESOURCE_OWNER_PASSWORD_CREDENTIALS
+        );
+
+        // 1. Register client
+        RegisterResponse registerResponse = registerClient(redirectUris, responseTypes, grantTypes, sectorIdentifierUri);
+        String clientId = registerResponse.getClientId();
+
+        // 2. Request authorization
+        List<String> scopes = Arrays.asList("openid", "profile", "address", "email", "mobile_phone");
+        AuthorizationResponse response1 = requestAuthorization(userId, userSecret, redirectUri, responseTypes, clientId, scopes);
+
+        String accessToken = response1.getAccessToken();
+
+        // 3. Request user info
+        UserInfoClient userInfoClient = new UserInfoClient(userInfoEndpoint);
+        UserInfoResponse response2 = userInfoClient.execUserInfo(accessToken);
+
+        showClient(userInfoClient);
+        assertEquals(response2.getStatus(), 200, "Unexpected response code: " + response2.getStatus());
+        assertNotNull(response2.getClaim(JwtClaimName.SUBJECT_IDENTIFIER));
+        assertNotNull(response2.getClaim(JwtClaimName.NAME));
+        assertNotNull(response2.getClaim(JwtClaimName.GIVEN_NAME));
+        assertNotNull(response2.getClaim(JwtClaimName.FAMILY_NAME));
+        assertNotNull(response2.getClaim(JwtClaimName.EMAIL));
+        assertNotNull(response2.getClaim(JwtClaimName.ZONEINFO));
+        assertNotNull(response2.getClaim(JwtClaimName.LOCALE));
+        assertNotNull(response2.getClaim(JwtClaimName.ADDRESS));
+        assertNull(response2.getClaim("phone_mobile_number"));
+    }
+
+    @Parameters({"userId", "userSecret", "redirectUris", "redirectUri", "sectorIdentifierUri"})
+    @Test
+    public void requestUserInfoDynamicScopesImplicitFlow(final String userId, final String userSecret,
+                                                         final String redirectUris, final String redirectUri,
+                                                         final String sectorIdentifierUri) {
+        showTitle("requestUserInfoDynamicScopesImplicitFlow");
+
+        List<ResponseType> responseTypes = Arrays.asList(
+                ResponseType.TOKEN,
+                ResponseType.ID_TOKEN
+        );
+        List<GrantType> grantTypes = Arrays.asList(
+                GrantType.RESOURCE_OWNER_PASSWORD_CREDENTIALS
+        );
+        List<String> scopes = Arrays.asList("openid", "profile", "address", "email", "org_name", "work_phone");
+
+        // 1. Register client
+        RegisterResponse registerResponse = registerClient(redirectUris, responseTypes, grantTypes, sectorIdentifierUri);
+        String clientId = registerResponse.getClientId();
+
+        // 2. Request authorization
+        AuthorizationResponse response1 = requestAuthorization(userId, userSecret, redirectUri, responseTypes, clientId, scopes);
+
+        String accessToken = response1.getAccessToken();
+
+        // 3. Request user info
+        UserInfoClient userInfoClient = new UserInfoClient(userInfoEndpoint);
+        UserInfoResponse response2 = userInfoClient.execUserInfo(accessToken);
+
+        showClient(userInfoClient);
+        assertEquals(response2.getStatus(), 200, "Unexpected response code: " + response2.getStatus());
+        assertNotNull(response2.getClaim(JwtClaimName.SUBJECT_IDENTIFIER));
+        assertNotNull(response2.getClaim(JwtClaimName.NAME));
+        assertNotNull(response2.getClaim(JwtClaimName.GIVEN_NAME));
+        assertNotNull(response2.getClaim(JwtClaimName.FAMILY_NAME));
+        assertNotNull(response2.getClaim(JwtClaimName.EMAIL));
+        assertNotNull(response2.getClaim(JwtClaimName.ZONEINFO));
+        assertNotNull(response2.getClaim(JwtClaimName.LOCALE));
+        assertNotNull(response2.getClaim(JwtClaimName.ADDRESS));
+        assertNotNull(response2.getClaim("org_name"));
+        assertNotNull(response2.getClaim("work_phone"));
+    }
+
+    @Parameters({"userId", "userSecret", "redirectUris", "sectorIdentifierUri"})
+    @Test
+    public void requestUserInfoPasswordFlow(final String userId, final String userSecret,
+                                            final String redirectUris, final String sectorIdentifierUri) {
+        showTitle("requestUserInfoPasswordFlow");
+
+        List<ResponseType> responseTypes = new ArrayList<ResponseType>();
+        List<GrantType> grantTypes = Arrays.asList(
+                GrantType.RESOURCE_OWNER_PASSWORD_CREDENTIALS
+        );
+
+        RegisterResponse registerResponse = registerClient(redirectUris, responseTypes, grantTypes, sectorIdentifierUri);
+        String clientId = registerResponse.getClientId();
+        String clientSecret = registerResponse.getClientSecret();
+
+        // 2. Request authorization
+        String username = userId;
+        String password = userSecret;
+        String scope = "openid profile address email";
+
+        TokenClient tokenClient = new TokenClient(tokenEndpoint);
+        TokenResponse response1 = tokenClient.execResourceOwnerPasswordCredentialsGrant(username, password, scope,
+                clientId, clientSecret);
+
+        showClient(tokenClient);
+        assertEquals(response1.getStatus(), 200, "Unexpected response code: " + response1.getStatus());
+        assertNotNull(response1.getEntity(), "The entity is null");
+        assertNotNull(response1.getAccessToken(), "The access token is null");
+        assertNotNull(response1.getTokenType(), "The token type is null");
+        assertNotNull(response1.getScope(), "The scope is null");
+
+        String accessToken = response1.getAccessToken();
+
+        // 3. Request user info
+        UserInfoClient userInfoClient = new UserInfoClient(userInfoEndpoint);
+        UserInfoResponse response2 = userInfoClient.execUserInfo(accessToken);
+
+        showClient(userInfoClient);
+        assertEquals(response2.getStatus(), 200, "Unexpected response code: " + response2.getStatus());
+        assertNotNull(response2.getClaim(JwtClaimName.SUBJECT_IDENTIFIER));
+        assertNotNull(response2.getClaim(JwtClaimName.NAME));
+        assertNotNull(response2.getClaim(JwtClaimName.GIVEN_NAME));
+        assertNotNull(response2.getClaim(JwtClaimName.FAMILY_NAME));
+        assertNotNull(response2.getClaim(JwtClaimName.EMAIL));
+        assertNotNull(response2.getClaim(JwtClaimName.ZONEINFO));
+        assertNotNull(response2.getClaim(JwtClaimName.LOCALE));
+        assertNull(response2.getClaim("org_name"));
+        assertNull(response2.getClaim("work_phone"));
+    }
+
+    @Parameters({"userId", "userSecret", "redirectUris", "sectorIdentifierUri"})
+    @Test
+    public void requestUserInfoWithNotAllowedScopePasswordFlow(final String userId, final String userSecret,
+                                                               final String redirectUris, final String sectorIdentifierUri) {
+        showTitle("requestUserInfoWithNotAllowedScopePasswordFlow");
+
+        List<ResponseType> responseTypes = new ArrayList<ResponseType>();
+        List<GrantType> grantTypes = Arrays.asList(
+                GrantType.RESOURCE_OWNER_PASSWORD_CREDENTIALS
+        );
+
+        RegisterResponse registerResponse = registerClient(redirectUris, responseTypes, grantTypes, sectorIdentifierUri);
+        String clientId = registerResponse.getClientId();
+        String clientSecret = registerResponse.getClientSecret();
+
+        // 2. Request authorization
+        String username = userId;
+        String password = userSecret;
+        String scope = "openid profile address email mobile_phone";
+
+        TokenClient tokenClient = new TokenClient(tokenEndpoint);
+        TokenResponse response1 = tokenClient.execResourceOwnerPasswordCredentialsGrant(username, password, scope,
+                clientId, clientSecret);
+
+        showClient(tokenClient);
+        assertEquals(response1.getStatus(), 200, "Unexpected response code: " + response1.getStatus());
+        assertNotNull(response1.getEntity(), "The entity is null");
+        assertNotNull(response1.getAccessToken(), "The access token is null");
+        assertNotNull(response1.getTokenType(), "The token type is null");
+        assertNotNull(response1.getScope(), "The scope is null");
+
+        String accessToken = response1.getAccessToken();
+
+        // 3. Request user info
+        UserInfoClient userInfoClient = new UserInfoClient(userInfoEndpoint);
+        UserInfoResponse response2 = userInfoClient.execUserInfo(accessToken);
+
+        showClient(userInfoClient);
+        assertEquals(response2.getStatus(), 200, "Unexpected response code: " + response2.getStatus());
+        assertNotNull(response2.getClaim(JwtClaimName.SUBJECT_IDENTIFIER));
+        assertNotNull(response2.getClaim(JwtClaimName.NAME));
+        assertNotNull(response2.getClaim(JwtClaimName.GIVEN_NAME));
+        assertNotNull(response2.getClaim(JwtClaimName.FAMILY_NAME));
+        assertNotNull(response2.getClaim(JwtClaimName.EMAIL));
+        assertNotNull(response2.getClaim(JwtClaimName.ZONEINFO));
+        assertNotNull(response2.getClaim(JwtClaimName.LOCALE));
+        assertNull(response2.getClaim("phone_mobile_number"));
+    }
+
+    @Parameters({"userId", "userSecret", "redirectUris", "sectorIdentifierUri"})
+    @Test
+    public void requestUserInfoDynamicScopesPasswordFlow(final String userId, final String userSecret,
+                                                         final String redirectUris, final String sectorIdentifierUri) {
+        showTitle("requestUserInfoDynamicScopesPasswordFlow");
+
+        List<ResponseType> responseTypes = new ArrayList<ResponseType>();
+        List<GrantType> grantTypes = Arrays.asList(
+                GrantType.RESOURCE_OWNER_PASSWORD_CREDENTIALS
+        );
+
+        RegisterResponse registerResponse = registerClient(redirectUris, responseTypes, grantTypes, sectorIdentifierUri);
+        String clientId = registerResponse.getClientId();
+        String clientSecret = registerResponse.getClientSecret();
+
+        // 2. Request authorization
+        String username = userId;
+        String password = userSecret;
+        String scope = "openid profile address email org_name work_phone";
+
+        TokenClient tokenClient = new TokenClient(tokenEndpoint);
+        TokenResponse response1 = tokenClient.execResourceOwnerPasswordCredentialsGrant(username, password, scope,
+                clientId, clientSecret);
+
+        showClient(tokenClient);
+        assertEquals(response1.getStatus(), 200, "Unexpected response code: " + response1.getStatus());
+        assertNotNull(response1.getEntity(), "The entity is null");
+        assertNotNull(response1.getAccessToken(), "The access token is null");
+        assertNotNull(response1.getTokenType(), "The token type is null");
+        assertNotNull(response1.getScope(), "The scope is null");
+
+        String accessToken = response1.getAccessToken();
+
+        // 3. Request user info
+        UserInfoClient userInfoClient = new UserInfoClient(userInfoEndpoint);
+        UserInfoResponse response2 = userInfoClient.execUserInfo(accessToken);
+
+        showClient(userInfoClient);
+        assertEquals(response2.getStatus(), 200, "Unexpected response code: " + response2.getStatus());
+        assertNotNull(response2.getClaim(JwtClaimName.SUBJECT_IDENTIFIER));
+        assertNotNull(response2.getClaim(JwtClaimName.NAME));
+        assertNotNull(response2.getClaim(JwtClaimName.GIVEN_NAME));
+        assertNotNull(response2.getClaim(JwtClaimName.FAMILY_NAME));
+        assertNotNull(response2.getClaim(JwtClaimName.EMAIL));
+        assertNotNull(response2.getClaim(JwtClaimName.ZONEINFO));
+        assertNotNull(response2.getClaim(JwtClaimName.LOCALE));
+        assertNotNull(response2.getClaim("org_name"));
+        assertNotNull(response2.getClaim("work_phone"));
+    }
+
+    @Test
+    public void requestUserInfoInvalidRequest() {
+        showTitle("requestUserInfoInvalidRequest");
+
+        UserInfoClient userInfoClient = new UserInfoClient(userInfoEndpoint);
+        UserInfoResponse response = userInfoClient.execUserInfo(null);
+
+        showClient(userInfoClient);
+        assertEquals(response.getStatus(), 400, "Unexpected response code: " + response.getStatus());
+        assertNotNull(response.getErrorType(), "Unexpected result: errorType not found");
+        assertNotNull(response.getErrorDescription(), "Unexpected result: errorDescription not found");
+    }
+
+    @Test
+    public void requestUserInfoInvalidToken() {
+        showTitle("requestUserInfoInvalidToken");
+
+        UserInfoClient userInfoClient = new UserInfoClient(userInfoEndpoint);
+        UserInfoResponse response = userInfoClient.execUserInfo("INVALID_ACCESS_TOKEN");
+
+        showClient(userInfoClient);
+        assertEquals(response.getStatus(), 401, "Unexpected response code: " + response.getStatus());
+        assertNotNull(response.getErrorType(), "Unexpected result: errorType not found");
+        assertNotNull(response.getErrorDescription(), "Unexpected result: errorDescription not found");
+    }
+
+    @Parameters({"userId", "userSecret", "redirectUris", "redirectUri", "sectorIdentifierUri"})
+    @Test
+    public void requestUserInfoInsufficientScope(final String userId, final String userSecret,
+                                                 final String redirectUris, final String redirectUri,
+                                                 final String sectorIdentifierUri) {
+        showTitle("requestUserInfoInsufficientScope");
+
+        List<ResponseType> responseTypes = Arrays.asList(
+                ResponseType.TOKEN,
+                ResponseType.ID_TOKEN
+        );
+        List<GrantType> grantTypes = Arrays.asList(
+                GrantType.RESOURCE_OWNER_PASSWORD_CREDENTIALS
+        );
+
+        RegisterResponse registerResponse = registerClient(redirectUris, responseTypes, grantTypes, sectorIdentifierUri);
+        String clientId = registerResponse.getClientId();
+
+        // 2. Request authorization
+        List<String> scopes = Arrays.asList("picture");
+        String nonce = UUID.randomUUID().toString();
+        String state = UUID.randomUUID().toString();
+
+        AuthorizationRequest authorizationRequest = new AuthorizationRequest(responseTypes, clientId, scopes, redirectUri, nonce);
+        authorizationRequest.setState(state);
+
+        AuthorizationResponse authorizationResponse = authenticateResourceOwnerAndGrantAccess(
+                authorizationEndpoint, authorizationRequest, userId, userSecret);
+
+        assertNotNull(authorizationResponse.getLocation(), "The location is null");
+        assertNotNull(authorizationResponse.getAccessToken(), "The access token is null");
+        assertNotNull(authorizationResponse.getState(), "The state is null");
+        assertNotNull(authorizationResponse.getTokenType(), "The token type is null");
+        assertNotNull(authorizationResponse.getExpiresIn(), "The expires in value is null");
+        assertNull(authorizationResponse.getScope(), "The scope must be null"); // null because picture scope is not sufficient
+        assertNotNull(authorizationResponse.getIdToken(), "The id token must be null");
+
+        String accessToken = authorizationResponse.getAccessToken();
+
+        // 3. Request user info
+        UserInfoClient userInfoClient = new UserInfoClient(userInfoEndpoint);
+        UserInfoResponse userInfoResponse = userInfoClient.execUserInfo(accessToken);
+
+        showClient(userInfoClient);
+        assertEquals(userInfoResponse.getStatus(), 403, "Unexpected response code: " + userInfoResponse.getStatus());
+        assertNotNull(userInfoResponse.getErrorType(), "Unexpected result: errorType not found");
+        assertNotNull(userInfoResponse.getErrorDescription(), "Unexpected result: errorDescription not found");
+    }
+
+    @Parameters({"redirectUris", "redirectUri", "userId", "userSecret", "sectorIdentifierUri"})
+    @Test
+    public void requestUserInfoExpiredAccessToken(final String redirectUris, final String redirectUri,
+                                                  final String userId, final String userSecret,
+                                                  final String sectorIdentifierUri) throws Exception {
+        showTitle("requestUserInfoRS256");
+
+        List<ResponseType> responseTypes = Arrays.asList(
+                ResponseType.TOKEN,
+                ResponseType.ID_TOKEN);
+
+        // 1. Dynamic Registration
+        RegisterRequest registerRequest = new RegisterRequest(ApplicationType.WEB, "oxAuth test app",
+                StringUtils.spaceSeparatedToList(redirectUris));
+        registerRequest.setResponseTypes(responseTypes);
+        registerRequest.setUserInfoSignedResponseAlg(SignatureAlgorithm.RS256);
+        registerRequest.setSubjectType(SubjectType.PAIRWISE);
+        registerRequest.setSectorIdentifierUri(sectorIdentifierUri);
+        registerRequest.setAccessTokenLifetime(3);
+
+        RegisterClient registerClient = new RegisterClient(registrationEndpoint);
+        registerClient.setRequest(registerRequest);
+        RegisterResponse registerResponse = registerClient.exec();
+
+        showClient(registerClient);
+        assertEquals(registerResponse.getStatus(), 200, "Unexpected response code: " + registerResponse.getEntity());
+        assertNotNull(registerResponse.getClientId());
+        assertNotNull(registerResponse.getClientSecret());
+        assertNotNull(registerResponse.getRegistrationAccessToken());
+        assertNotNull(registerResponse.getClientSecretExpiresAt());
+
+        String clientId = registerResponse.getClientId();
+
+        AuthorizationResponse authorizationResponse = requestAuthorization(userId, userSecret, redirectUri, responseTypes, clientId);
+
+        String accessToken = authorizationResponse.getAccessToken();
+
+        {
+            // 3. Request user info
+            UserInfoClient userInfoClient = new UserInfoClient(userInfoEndpoint);
+            userInfoClient.setJwksUri(jwksUri);
+            UserInfoResponse userInfoResponse = userInfoClient.execUserInfo(accessToken);
+
+            showClient(userInfoClient);
+            assertEquals(userInfoResponse.getStatus(), 200, "Unexpected response code: " + userInfoResponse.getStatus());
+            assertNotNull(userInfoResponse.getClaim(JwtClaimName.SUBJECT_IDENTIFIER));
+            assertNotNull(userInfoResponse.getClaim(JwtClaimName.ISSUER));
+            assertNotNull(userInfoResponse.getClaim(JwtClaimName.AUDIENCE));
+            assertNotNull(userInfoResponse.getClaim(JwtClaimName.NAME));
+            assertNotNull(userInfoResponse.getClaim(JwtClaimName.GIVEN_NAME));
+            assertNotNull(userInfoResponse.getClaim(JwtClaimName.FAMILY_NAME));
+            assertNotNull(userInfoResponse.getClaim(JwtClaimName.PICTURE));
+            assertNotNull(userInfoResponse.getClaim(JwtClaimName.EMAIL));
+            assertNotNull(userInfoResponse.getClaim(JwtClaimName.ZONEINFO));
+            assertNotNull(userInfoResponse.getClaim(JwtClaimName.LOCALE));
+        }
+
+        Thread.sleep(4000);
+
+        {
+            // 3. Request user info with expired access token
+            UserInfoClient userInfoClient = new UserInfoClient(userInfoEndpoint);
+            userInfoClient.setJwksUri(jwksUri);
+            UserInfoResponse userInfoResponse = userInfoClient.execUserInfo(accessToken);
+
+            showClient(userInfoClient);
+            assertEquals(userInfoResponse.getStatus(), 401, "Unexpected response code: " + userInfoResponse.getStatus());
+            assertNotNull(userInfoResponse.getErrorType(), "Unexpected result: errorType not found");
+            assertNotNull(userInfoResponse.getErrorDescription(), "Unexpected result: errorDescription not found");
+        }
+    }
+
+    @Parameters({"userId", "userSecret", "redirectUris", "redirectUri", "sectorIdentifierUri"})
+    @Test
+    public void requestUserInfoAdditionalClaims(final String userId, final String userSecret,
+                                                final String redirectUris, final String redirectUri,
+                                                final String sectorIdentifierUri) throws Exception {
+        showTitle("requestUserInfoAdditionalClaims");
+
+        List<ResponseType> responseTypes = Arrays.asList(ResponseType.TOKEN);
+        List<GrantType> grantTypes = Arrays.asList(
+                GrantType.RESOURCE_OWNER_PASSWORD_CREDENTIALS
+        );
+
+        // 1. Client Registration
+        RegisterRequest registerRequest = new RegisterRequest(ApplicationType.WEB, "oxAuth test app",
+                StringUtils.spaceSeparatedToList(redirectUris));
+        registerRequest.setResponseTypes(responseTypes);
+        registerRequest.setGrantTypes(grantTypes);
+        registerRequest.setSectorIdentifierUri(sectorIdentifierUri);
+        registerRequest.setSubjectType(SubjectType.PAIRWISE);
+        registerRequest.setClaims(Arrays.asList(
+                "iname",
+                "o"));
+
+        RegisterClient registerClient = new RegisterClient(registrationEndpoint);
+        registerClient.setRequest(registerRequest);
+        RegisterResponse registerResponse = registerClient.exec();
+
+        showClient(registerClient);
+        assertEquals(registerResponse.getStatus(), 200, "Unexpected response code: " + registerResponse.getEntity());
+        assertNotNull(registerResponse.getClientId());
+        assertNotNull(registerResponse.getClientSecret());
+        assertNotNull(registerResponse.getRegistrationAccessToken());
+        assertNotNull(registerResponse.getClientIdIssuedAt());
+        assertNotNull(registerResponse.getClientSecretExpiresAt());
+
+        String clientId = registerResponse.getClientId();
+        String clientSecret = registerResponse.getClientSecret();
+
+        // 2. Request authorization
+        OxAuthCryptoProvider cryptoProvider = new OxAuthCryptoProvider();
+
+        List<String> scopes = Arrays.asList("openid", "profile", "address", "email");
+        String nonce = UUID.randomUUID().toString();
+        String state = UUID.randomUUID().toString();
+
+        AuthorizationRequest authorizationRequest = new AuthorizationRequest(
+                responseTypes, clientId, scopes, redirectUri, nonce);
+        authorizationRequest.setState(state);
+
+        JwtAuthorizationRequest jwtAuthorizationRequest = new JwtAuthorizationRequest(
+                authorizationRequest, SignatureAlgorithm.HS256, clientSecret, cryptoProvider);
+        jwtAuthorizationRequest.addUserInfoClaim(new Claim("invalid", ClaimValue.createEssential(false)));
+        jwtAuthorizationRequest.addUserInfoClaim(new Claim("iname", ClaimValue.createNull()));
+        //jwtAuthorizationRequest.addUserInfoClaim(new Claim("gluuStatus", ClaimValue.createEssential(true)));
+        //jwtAuthorizationRequest.addUserInfoClaim(new Claim("gluuWhitePagesListed", ClaimValue.createEssential(true)));
+        jwtAuthorizationRequest.addUserInfoClaim(new Claim("o", ClaimValue.createEssential(true)));
+        String authJwt = jwtAuthorizationRequest.getEncodedJwt();
+        authorizationRequest.setRequest(authJwt);
+
+        AuthorizationResponse authorizationResponse = authenticateResourceOwnerAndGrantAccess(
+                authorizationEndpoint, authorizationRequest, userId, userSecret);
+
+        assertNotNull(authorizationResponse.getLocation(), "The location is null");
+        assertNotNull(authorizationResponse.getAccessToken(), "The access token is null");
+        assertNotNull(authorizationResponse.getState(), "The state is null");
+        assertNotNull(authorizationResponse.getTokenType(), "The token type is null");
+        assertNotNull(authorizationResponse.getExpiresIn(), "The expires in value is null");
+        assertNotNull(authorizationResponse.getScope(), "The scope must be null");
+
+        String accessToken = authorizationResponse.getAccessToken();
+
+        // 3. Request user info (AUTHORIZATION_REQUEST_HEADER_FIELD)
+        UserInfoRequest userInfoRequest = new UserInfoRequest(accessToken);
+        userInfoRequest.setAuthorizationMethod(AuthorizationMethod.AUTHORIZATION_REQUEST_HEADER_FIELD);
+        UserInfoClient userInfoClient = new UserInfoClient(userInfoEndpoint);
+        userInfoClient.setRequest(userInfoRequest);
+        UserInfoResponse userInfoResponse = userInfoClient.exec();
+
+        showClient(userInfoClient);
+        assertEquals(userInfoResponse.getStatus(), 200, "Unexpected response code: " + userInfoResponse.getStatus());
+        assertNotNull(userInfoResponse.getClaim(JwtClaimName.SUBJECT_IDENTIFIER));
+        assertNotNull(userInfoResponse.getClaim(JwtClaimName.NAME));
+        assertNotNull(userInfoResponse.getClaim(JwtClaimName.GIVEN_NAME));
+        assertNotNull(userInfoResponse.getClaim(JwtClaimName.FAMILY_NAME));
+        assertNotNull(userInfoResponse.getClaim(JwtClaimName.EMAIL));
+        assertNotNull(userInfoResponse.getClaim(JwtClaimName.ZONEINFO));
+        assertNotNull(userInfoResponse.getClaim(JwtClaimName.LOCALE));
+
+        // Custom Claims
+        assertNotNull(userInfoResponse.getClaim("iname"), "Unexpected result: iname not found");
+        //assertNotNull(response2.getClaim("gluuStatus"), "Unexpected result: gluuStatus not found");
+        //assertNotNull(response2.getClaim("gluuWhitePagesListed"), "Unexpected result: gluuWhitePagesListed not found");
+        assertNotNull(userInfoResponse.getClaim("o"), "Unexpected result: organization not found");
+
+        // 4. Request user info (FORM_ENCODED_BODY_PARAMETER)
+        UserInfoRequest userInfoRequest2 = new UserInfoRequest(accessToken);
+        userInfoRequest2.setAuthorizationMethod(AuthorizationMethod.FORM_ENCODED_BODY_PARAMETER);
+        UserInfoClient userInfoClient2 = new UserInfoClient(userInfoEndpoint);
+        userInfoClient2.setRequest(userInfoRequest2);
+        UserInfoResponse response3 = userInfoClient2.exec();
+
+        showClient(userInfoClient2);
+        assertEquals(response3.getStatus(), 200, "Unexpected response code: " + response3.getStatus());
+        assertNotNull(response3.getClaim(JwtClaimName.SUBJECT_IDENTIFIER));
+        assertNotNull(response3.getClaim(JwtClaimName.NAME));
+        assertNotNull(response3.getClaim(JwtClaimName.GIVEN_NAME));
+        assertNotNull(response3.getClaim(JwtClaimName.FAMILY_NAME));
+        assertNotNull(response3.getClaim(JwtClaimName.EMAIL));
+        assertNotNull(response3.getClaim(JwtClaimName.ZONEINFO));
+        assertNotNull(response3.getClaim(JwtClaimName.LOCALE));
+
+        // 5. Request user info (URL_QUERY_PARAMETER)
+        UserInfoRequest userInfoRequest3 = new UserInfoRequest(accessToken);
+        userInfoRequest3.setAuthorizationMethod(AuthorizationMethod.URL_QUERY_PARAMETER);
+        UserInfoClient userInfoClient3 = new UserInfoClient(userInfoEndpoint);
+        userInfoClient3.setRequest(userInfoRequest3);
+        UserInfoResponse response4 = userInfoClient3.exec();
+
+        showClient(userInfoClient3);
+        assertEquals(response4.getStatus(), 200, "Unexpected response code: " + response4.getStatus());
+        assertNotNull(response4.getClaim(JwtClaimName.SUBJECT_IDENTIFIER));
+        assertNotNull(response4.getClaim(JwtClaimName.NAME));
+        assertNotNull(response4.getClaim(JwtClaimName.GIVEN_NAME));
+        assertNotNull(response4.getClaim(JwtClaimName.FAMILY_NAME));
+        assertNotNull(response4.getClaim(JwtClaimName.EMAIL));
+        assertNotNull(response4.getClaim(JwtClaimName.ZONEINFO));
+        assertNotNull(response4.getClaim(JwtClaimName.LOCALE));
+    }
+
+    @Parameters({"userId", "userSecret", "redirectUris", "redirectUri", "sectorIdentifierUri", "clientJwksUri",
+            "postLogoutRedirectUri"})
+    @Test
+    public void claimsRequestWithEssentialNameClaim(
+            final String userId, final String userSecret, final String redirectUris, final String redirectUri,
+            final String sectorIdentifierUri, final String clientJwksUri, final String postLogoutRedirectUri) throws Exception {
+        showTitle("claimsRequestWithEssentialNameClaim");
+
+        List<ResponseType> responseTypes = Arrays.asList(ResponseType.CODE);
+        List<GrantType> grantTypes = Arrays.asList(
+                GrantType.AUTHORIZATION_CODE
+        );
+
+        // 1. Dynamic Registration
+        RegisterRequest registerRequest = new RegisterRequest(ApplicationType.WEB, "oxAuth test app",
+                StringUtils.spaceSeparatedToList(redirectUris));
+        registerRequest.setContacts(Arrays.asList("javier@gluu.org", "javier.rojas.blum@gmail.com"));
+        registerRequest.setResponseTypes(responseTypes);
+        registerRequest.setGrantTypes(grantTypes);
+        registerRequest.setJwksUri(clientJwksUri);
+        registerRequest.setPostLogoutRedirectUris(Arrays.asList(postLogoutRedirectUri));
+        registerRequest.setSectorIdentifierUri(sectorIdentifierUri);
+        registerRequest.setSubjectType(SubjectType.PAIRWISE);
+
+        RegisterClient registerClient = new RegisterClient(registrationEndpoint);
+        registerClient.setRequest(registerRequest);
+        RegisterResponse registerResponse = registerClient.exec();
+
+        showClient(registerClient);
+        assertEquals(registerResponse.getStatus(), 200, "Unexpected response code: " + registerResponse.getEntity());
+        assertNotNull(registerResponse.getClientId());
+        assertNotNull(registerResponse.getClientSecret());
+        assertNotNull(registerResponse.getRegistrationAccessToken());
+        assertNotNull(registerResponse.getClientIdIssuedAt());
+        assertNotNull(registerResponse.getClientSecretExpiresAt());
+
+        String clientId = registerResponse.getClientId();
+        String clientSecret = registerResponse.getClientSecret();
+
+        // 2. Request authorization
+        OxAuthCryptoProvider cryptoProvider = new OxAuthCryptoProvider();
+
+        List<String> scopes = Arrays.asList("openid");
+        String nonce = UUID.randomUUID().toString();
+        String state = UUID.randomUUID().toString();
+
+        JSONObject claimsObj = new JSONObject();
+        UserInfoMember userInfoMember = new UserInfoMember();
+        userInfoMember.getClaims().add(new Claim("name", ClaimValue.createEssential(true)));
+        claimsObj.put("userinfo", userInfoMember.toJSONObject());
+
+        AuthorizationRequest authorizationRequest = new AuthorizationRequest(
+                responseTypes, clientId, scopes, redirectUri, nonce);
+        authorizationRequest.setState(state);
+        authorizationRequest.setClaims(claimsObj);
+
+        AuthorizationResponse authorizationResponse = authenticateResourceOwnerAndGrantAccess(
+                authorizationEndpoint, authorizationRequest, userId, userSecret);
+
+        assertNotNull(authorizationResponse.getLocation());
+        assertNotNull(authorizationResponse.getCode());
+        assertNotNull(authorizationResponse.getState());
+        assertNotNull(authorizationResponse.getScope());
+
+        String authorizationCode = authorizationResponse.getCode();
+
+        // 3. Request access token using the authorization code.
+        TokenRequest tokenRequest = new TokenRequest(GrantType.AUTHORIZATION_CODE);
+        tokenRequest.setCode(authorizationCode);
+        tokenRequest.setRedirectUri(redirectUri);
+        tokenRequest.setAuthUsername(clientId);
+        tokenRequest.setAuthPassword(clientSecret);
+        tokenRequest.setAuthenticationMethod(AuthenticationMethod.CLIENT_SECRET_BASIC);
+
+        TokenClient tokenClient = new TokenClient(tokenEndpoint);
+        tokenClient.setRequest(tokenRequest);
+        TokenResponse tokenResponse = tokenClient.exec();
+
+        showClient(tokenClient);
+        assertEquals(tokenResponse.getStatus(), 200, "Unexpected response code: " + tokenResponse.getStatus());
+        assertNotNull(tokenResponse.getEntity(), "The entity is null");
+        assertNotNull(tokenResponse.getAccessToken(), "The access token is null");
+        assertNotNull(tokenResponse.getExpiresIn(), "The expires in value is null");
+        assertNotNull(tokenResponse.getTokenType(), "The token type is null");
+        assertNotNull(tokenResponse.getRefreshToken(), "The refresh token is null");
+
+        String accessToken = tokenResponse.getAccessToken();
+
+        // 4. Request user info
+        UserInfoRequest userInfoRequest = new UserInfoRequest(accessToken);
+        UserInfoClient userInfoClient = new UserInfoClient(userInfoEndpoint);
+        userInfoClient.setRequest(userInfoRequest);
+        UserInfoResponse userInfoResponse = userInfoClient.exec();
+
+        showClient(userInfoClient);
+        assertEquals(userInfoResponse.getStatus(), 200, "Unexpected response code: " + userInfoResponse.getStatus());
+        assertNotNull(userInfoResponse.getClaim(JwtClaimName.SUBJECT_IDENTIFIER));
+        assertNotNull(userInfoResponse.getClaim(JwtClaimName.NAME));
+    }
+
+    @Parameters({"redirectUris", "redirectUri", "userId", "userSecret", "sectorIdentifierUri"})
+    @Test
+    public void requestUserInfoHS256(final String redirectUris, final String redirectUri,
+                                     final String userId, final String userSecret,
+                                     final String sectorIdentifierUri) {
+        showTitle("requestUserInfoHS256");
+
+        List<ResponseType> responseTypes = Arrays.asList(
+                ResponseType.TOKEN,
+                ResponseType.ID_TOKEN);
+
+        // 1. Dynamic Registration
+        RegisterRequest registerRequest = new RegisterRequest(ApplicationType.WEB, "oxAuth test app",
+                StringUtils.spaceSeparatedToList(redirectUris));
+        registerRequest.setResponseTypes(responseTypes);
+        registerRequest.setUserInfoSignedResponseAlg(SignatureAlgorithm.HS256);
+        registerRequest.setSubjectType(SubjectType.PAIRWISE);
+        registerRequest.setSectorIdentifierUri(sectorIdentifierUri);
+
+        RegisterClient registerClient = new RegisterClient(registrationEndpoint);
+        registerClient.setRequest(registerRequest);
+        RegisterResponse registerResponse = registerClient.exec();
+
+        showClient(registerClient);
+        assertEquals(registerResponse.getStatus(), 200, "Unexpected response code: " + registerResponse.getEntity());
+        assertNotNull(registerResponse.getClientId());
+        assertNotNull(registerResponse.getClientSecret());
+        assertNotNull(registerResponse.getRegistrationAccessToken());
+        assertNotNull(registerResponse.getClientSecretExpiresAt());
+
+        String clientId = registerResponse.getClientId();
+        String clientSecret = registerResponse.getClientSecret();
+
+        AuthorizationResponse authorizationResponse = requestAuthorization(userId, userSecret, redirectUri, responseTypes, clientId);
+
+        String accessToken = authorizationResponse.getAccessToken();
+
+        // 3. Request user info
+        UserInfoClient userInfoClient = new UserInfoClient(userInfoEndpoint);
+        userInfoClient.setSharedKey(clientSecret);
+        UserInfoResponse userInfoResponse = userInfoClient.execUserInfo(accessToken);
+
+        showClient(userInfoClient);
+        assertEquals(userInfoResponse.getStatus(), 200, "Unexpected response code: " + userInfoResponse.getStatus());
+        assertNotNull(userInfoResponse.getClaim(JwtClaimName.SUBJECT_IDENTIFIER));
+        assertNotNull(userInfoResponse.getClaim(JwtClaimName.ISSUER));
+        assertNotNull(userInfoResponse.getClaim(JwtClaimName.AUDIENCE));
+        assertNotNull(userInfoResponse.getClaim(JwtClaimName.NAME));
+        assertNotNull(userInfoResponse.getClaim(JwtClaimName.GIVEN_NAME));
+        assertNotNull(userInfoResponse.getClaim(JwtClaimName.FAMILY_NAME));
+        assertNotNull(userInfoResponse.getClaim(JwtClaimName.PICTURE));
+        assertNotNull(userInfoResponse.getClaim(JwtClaimName.EMAIL));
+        assertNotNull(userInfoResponse.getClaim(JwtClaimName.ZONEINFO));
+        assertNotNull(userInfoResponse.getClaim(JwtClaimName.LOCALE));
+    }
+
+    @Parameters({"redirectUris", "redirectUri", "userId", "userSecret", "sectorIdentifierUri"})
+    @Test
+    public void requestUserInfoHS384(final String redirectUris, final String redirectUri,
+                                     final String userId, final String userSecret,
+                                     final String sectorIdentifierUri) {
+        showTitle("requestUserInfoHS384");
+
+        List<ResponseType> responseTypes = Arrays.asList(
+                ResponseType.TOKEN,
+                ResponseType.ID_TOKEN);
+
+        // 1. Dynamic Registration
+        RegisterRequest registerRequest = new RegisterRequest(ApplicationType.WEB, "oxAuth test app",
+                StringUtils.spaceSeparatedToList(redirectUris));
+        registerRequest.setResponseTypes(responseTypes);
+        registerRequest.setUserInfoSignedResponseAlg(SignatureAlgorithm.HS384);
+        registerRequest.setSubjectType(SubjectType.PAIRWISE);
+        registerRequest.setSectorIdentifierUri(sectorIdentifierUri);
+
+        RegisterClient registerClient = new RegisterClient(registrationEndpoint);
+        registerClient.setRequest(registerRequest);
+        RegisterResponse registerResponse = registerClient.exec();
+
+        showClient(registerClient);
+        assertEquals(registerResponse.getStatus(), 200, "Unexpected response code: " + registerResponse.getEntity());
+        assertNotNull(registerResponse.getClientId());
+        assertNotNull(registerResponse.getClientSecret());
+        assertNotNull(registerResponse.getRegistrationAccessToken());
+        assertNotNull(registerResponse.getClientSecretExpiresAt());
+
+        String clientId = registerResponse.getClientId();
+        String clientSecret = registerResponse.getClientSecret();
+
+        AuthorizationResponse authorizationResponse = requestAuthorization(userId, userSecret, redirectUri, responseTypes, clientId);
+
+        String accessToken = authorizationResponse.getAccessToken();
+
+        // 3. Request user info
+        UserInfoClient userInfoClient = new UserInfoClient(userInfoEndpoint);
+        userInfoClient.setSharedKey(clientSecret);
+        UserInfoResponse userInfoResponse = userInfoClient.execUserInfo(accessToken);
+
+        showClient(userInfoClient);
+        assertEquals(userInfoResponse.getStatus(), 200, "Unexpected response code: " + userInfoResponse.getStatus());
+        assertNotNull(userInfoResponse.getClaim(JwtClaimName.SUBJECT_IDENTIFIER));
+        assertNotNull(userInfoResponse.getClaim(JwtClaimName.ISSUER));
+        assertNotNull(userInfoResponse.getClaim(JwtClaimName.AUDIENCE));
+        assertNotNull(userInfoResponse.getClaim(JwtClaimName.NAME));
+        assertNotNull(userInfoResponse.getClaim(JwtClaimName.GIVEN_NAME));
+        assertNotNull(userInfoResponse.getClaim(JwtClaimName.FAMILY_NAME));
+        assertNotNull(userInfoResponse.getClaim(JwtClaimName.PICTURE));
+        assertNotNull(userInfoResponse.getClaim(JwtClaimName.EMAIL));
+        assertNotNull(userInfoResponse.getClaim(JwtClaimName.ZONEINFO));
+        assertNotNull(userInfoResponse.getClaim(JwtClaimName.LOCALE));
+    }
+
+    @Parameters({"redirectUris", "redirectUri", "userId", "userSecret", "sectorIdentifierUri"})
+    @Test
+    public void requestUserInfoHS512(final String redirectUris, final String redirectUri,
+                                     final String userId, final String userSecret,
+                                     final String sectorIdentifierUri) {
+        showTitle("requestUserInfoHS512");
+
+        List<ResponseType> responseTypes = Arrays.asList(
+                ResponseType.TOKEN,
+                ResponseType.ID_TOKEN);
+
+        // 1. Dynamic Registration
+        RegisterRequest registerRequest = new RegisterRequest(ApplicationType.WEB, "oxAuth test app",
+                StringUtils.spaceSeparatedToList(redirectUris));
+        registerRequest.setResponseTypes(responseTypes);
+        registerRequest.setUserInfoSignedResponseAlg(SignatureAlgorithm.HS512);
+        registerRequest.setSubjectType(SubjectType.PAIRWISE);
+        registerRequest.setSectorIdentifierUri(sectorIdentifierUri);
+
+        RegisterClient registerClient = new RegisterClient(registrationEndpoint);
+        registerClient.setRequest(registerRequest);
+        RegisterResponse registerResponse = registerClient.exec();
+
+        showClient(registerClient);
+        assertEquals(registerResponse.getStatus(), 200, "Unexpected response code: " + registerResponse.getEntity());
+        assertNotNull(registerResponse.getClientId());
+        assertNotNull(registerResponse.getClientSecret());
+        assertNotNull(registerResponse.getRegistrationAccessToken());
+        assertNotNull(registerResponse.getClientSecretExpiresAt());
+
+        String clientId = registerResponse.getClientId();
+        String clientSecret = registerResponse.getClientSecret();
+
+        AuthorizationResponse authorizationResponse = requestAuthorization(userId, userSecret, redirectUri, responseTypes, clientId);
+
+        String accessToken = authorizationResponse.getAccessToken();
+
+        // 3. Request user info
+        UserInfoClient userInfoClient = new UserInfoClient(userInfoEndpoint);
+        userInfoClient.setSharedKey(clientSecret);
+        UserInfoResponse userInfoResponse = userInfoClient.execUserInfo(accessToken);
+
+        showClient(userInfoClient);
+        assertEquals(userInfoResponse.getStatus(), 200, "Unexpected response code: " + userInfoResponse.getStatus());
+        assertNotNull(userInfoResponse.getClaim(JwtClaimName.SUBJECT_IDENTIFIER));
+        assertNotNull(userInfoResponse.getClaim(JwtClaimName.ISSUER));
+        assertNotNull(userInfoResponse.getClaim(JwtClaimName.AUDIENCE));
+        assertNotNull(userInfoResponse.getClaim(JwtClaimName.NAME));
+        assertNotNull(userInfoResponse.getClaim(JwtClaimName.GIVEN_NAME));
+        assertNotNull(userInfoResponse.getClaim(JwtClaimName.FAMILY_NAME));
+        assertNotNull(userInfoResponse.getClaim(JwtClaimName.PICTURE));
+        assertNotNull(userInfoResponse.getClaim(JwtClaimName.EMAIL));
+        assertNotNull(userInfoResponse.getClaim(JwtClaimName.ZONEINFO));
+        assertNotNull(userInfoResponse.getClaim(JwtClaimName.LOCALE));
+    }
+
+    @Parameters({"redirectUris", "redirectUri", "userId", "userSecret", "sectorIdentifierUri"})
+    @Test
+    public void requestUserInfoRS256(final String redirectUris, final String redirectUri,
+                                     final String userId, final String userSecret,
+                                     final String sectorIdentifierUri) {
+        showTitle("requestUserInfoRS256");
+
+        List<ResponseType> responseTypes = Arrays.asList(
+                ResponseType.TOKEN,
+                ResponseType.ID_TOKEN);
+
+        // 1. Dynamic Registration
+        RegisterRequest registerRequest = new RegisterRequest(ApplicationType.WEB, "oxAuth test app",
+                StringUtils.spaceSeparatedToList(redirectUris));
+        registerRequest.setResponseTypes(responseTypes);
+        registerRequest.setUserInfoSignedResponseAlg(SignatureAlgorithm.RS256);
+        registerRequest.setSubjectType(SubjectType.PAIRWISE);
+        registerRequest.setSectorIdentifierUri(sectorIdentifierUri);
+
+        RegisterClient registerClient = new RegisterClient(registrationEndpoint);
+        registerClient.setRequest(registerRequest);
+        RegisterResponse registerResponse = registerClient.exec();
+
+        showClient(registerClient);
+        assertEquals(registerResponse.getStatus(), 200, "Unexpected response code: " + registerResponse.getEntity());
+        assertNotNull(registerResponse.getClientId());
+        assertNotNull(registerResponse.getClientSecret());
+        assertNotNull(registerResponse.getRegistrationAccessToken());
+        assertNotNull(registerResponse.getClientSecretExpiresAt());
+
+        String clientId = registerResponse.getClientId();
+
+        AuthorizationResponse authorizationResponse = requestAuthorization(userId, userSecret, redirectUri, responseTypes, clientId);
+
+        String accessToken = authorizationResponse.getAccessToken();
+
+        // 3. Request user info
+        UserInfoClient userInfoClient = new UserInfoClient(userInfoEndpoint);
+        userInfoClient.setJwksUri(jwksUri);
+        UserInfoResponse userInfoResponse = userInfoClient.execUserInfo(accessToken);
+
+        showClient(userInfoClient);
+        assertEquals(userInfoResponse.getStatus(), 200, "Unexpected response code: " + userInfoResponse.getStatus());
+        assertNotNull(userInfoResponse.getClaim(JwtClaimName.SUBJECT_IDENTIFIER));
+        assertNotNull(userInfoResponse.getClaim(JwtClaimName.ISSUER));
+        assertNotNull(userInfoResponse.getClaim(JwtClaimName.AUDIENCE));
+        assertNotNull(userInfoResponse.getClaim(JwtClaimName.NAME));
+        assertNotNull(userInfoResponse.getClaim(JwtClaimName.GIVEN_NAME));
+        assertNotNull(userInfoResponse.getClaim(JwtClaimName.FAMILY_NAME));
+        assertNotNull(userInfoResponse.getClaim(JwtClaimName.PICTURE));
+        assertNotNull(userInfoResponse.getClaim(JwtClaimName.EMAIL));
+        assertNotNull(userInfoResponse.getClaim(JwtClaimName.ZONEINFO));
+        assertNotNull(userInfoResponse.getClaim(JwtClaimName.LOCALE));
+    }
+
+    @Parameters({"redirectUris", "redirectUri", "userId", "userSecret", "sectorIdentifierUri"})
+    @Test
+    public void requestUserInfoRS384(final String redirectUris, final String redirectUri,
+                                     final String userId, final String userSecret,
+                                     final String sectorIdentifierUri) {
+        showTitle("requestUserInfoRS384");
+
+        List<ResponseType> responseTypes = Arrays.asList(
+                ResponseType.TOKEN,
+                ResponseType.ID_TOKEN);
+
+        // 1. Dynamic Registration
+        RegisterRequest registerRequest = new RegisterRequest(ApplicationType.WEB, "oxAuth test app",
+                StringUtils.spaceSeparatedToList(redirectUris));
+        registerRequest.setResponseTypes(responseTypes);
+        registerRequest.setUserInfoSignedResponseAlg(SignatureAlgorithm.RS384);
+        registerRequest.setSubjectType(SubjectType.PAIRWISE);
+        registerRequest.setSectorIdentifierUri(sectorIdentifierUri);
+
+        RegisterClient registerClient = new RegisterClient(registrationEndpoint);
+        registerClient.setRequest(registerRequest);
+        RegisterResponse registerResponse = registerClient.exec();
+
+        showClient(registerClient);
+        assertEquals(registerResponse.getStatus(), 200, "Unexpected response code: " + registerResponse.getEntity());
+        assertNotNull(registerResponse.getClientId());
+        assertNotNull(registerResponse.getClientSecret());
+        assertNotNull(registerResponse.getRegistrationAccessToken());
+        assertNotNull(registerResponse.getClientSecretExpiresAt());
+
+        String clientId = registerResponse.getClientId();
+
+        AuthorizationResponse authorizationResponse = requestAuthorization(userId, userSecret, redirectUri, responseTypes, clientId);
+
+        String accessToken = authorizationResponse.getAccessToken();
+
+        // 3. Request user info
+        UserInfoClient userInfoClient = new UserInfoClient(userInfoEndpoint);
+        userInfoClient.setJwksUri(jwksUri);
+        UserInfoResponse userInfoResponse = userInfoClient.execUserInfo(accessToken);
+
+        showClient(userInfoClient);
+        assertEquals(userInfoResponse.getStatus(), 200, "Unexpected response code: " + userInfoResponse.getStatus());
+        assertNotNull(userInfoResponse.getClaim(JwtClaimName.SUBJECT_IDENTIFIER));
+        assertNotNull(userInfoResponse.getClaim(JwtClaimName.ISSUER));
+        assertNotNull(userInfoResponse.getClaim(JwtClaimName.AUDIENCE));
+        assertNotNull(userInfoResponse.getClaim(JwtClaimName.NAME));
+        assertNotNull(userInfoResponse.getClaim(JwtClaimName.GIVEN_NAME));
+        assertNotNull(userInfoResponse.getClaim(JwtClaimName.FAMILY_NAME));
+        assertNotNull(userInfoResponse.getClaim(JwtClaimName.PICTURE));
+        assertNotNull(userInfoResponse.getClaim(JwtClaimName.EMAIL));
+        assertNotNull(userInfoResponse.getClaim(JwtClaimName.ZONEINFO));
+        assertNotNull(userInfoResponse.getClaim(JwtClaimName.LOCALE));
+    }
+
+    @Parameters({"redirectUris", "redirectUri", "userId", "userSecret", "sectorIdentifierUri"})
+    @Test
+    public void requestUserInfoRS512(final String redirectUris, final String redirectUri,
+                                     final String userId, final String userSecret,
+                                     final String sectorIdentifierUri) {
+        showTitle("requestUserInfoRS512");
+
+        List<ResponseType> responseTypes = Arrays.asList(
+                ResponseType.TOKEN,
+                ResponseType.ID_TOKEN);
+
+        // 1. Dynamic Registration
+        RegisterRequest registerRequest = new RegisterRequest(ApplicationType.WEB, "oxAuth test app",
+                StringUtils.spaceSeparatedToList(redirectUris));
+        registerRequest.setResponseTypes(responseTypes);
+        registerRequest.setUserInfoSignedResponseAlg(SignatureAlgorithm.RS512);
+        registerRequest.setSubjectType(SubjectType.PAIRWISE);
+        registerRequest.setSectorIdentifierUri(sectorIdentifierUri);
+
+        RegisterClient registerClient = new RegisterClient(registrationEndpoint);
+        registerClient.setRequest(registerRequest);
+        RegisterResponse registerResponse = registerClient.exec();
+
+        showClient(registerClient);
+        assertEquals(registerResponse.getStatus(), 200, "Unexpected response code: " + registerResponse.getEntity());
+        assertNotNull(registerResponse.getClientId());
+        assertNotNull(registerResponse.getClientSecret());
+        assertNotNull(registerResponse.getRegistrationAccessToken());
+        assertNotNull(registerResponse.getClientSecretExpiresAt());
+
+        String clientId = registerResponse.getClientId();
+
+        AuthorizationResponse authorizationResponse = requestAuthorization(userId, userSecret, redirectUri, responseTypes, clientId);
+
+        String accessToken = authorizationResponse.getAccessToken();
+
+        // 3. Request user info
+        UserInfoClient userInfoClient = new UserInfoClient(userInfoEndpoint);
+        userInfoClient.setJwksUri(jwksUri);
+        UserInfoResponse userInfoResponse = userInfoClient.execUserInfo(accessToken);
+
+        showClient(userInfoClient);
+        assertEquals(userInfoResponse.getStatus(), 200, "Unexpected response code: " + userInfoResponse.getStatus());
+        assertNotNull(userInfoResponse.getClaim(JwtClaimName.SUBJECT_IDENTIFIER));
+        assertNotNull(userInfoResponse.getClaim(JwtClaimName.ISSUER));
+        assertNotNull(userInfoResponse.getClaim(JwtClaimName.AUDIENCE));
+        assertNotNull(userInfoResponse.getClaim(JwtClaimName.NAME));
+        assertNotNull(userInfoResponse.getClaim(JwtClaimName.GIVEN_NAME));
+        assertNotNull(userInfoResponse.getClaim(JwtClaimName.FAMILY_NAME));
+        assertNotNull(userInfoResponse.getClaim(JwtClaimName.PICTURE));
+        assertNotNull(userInfoResponse.getClaim(JwtClaimName.EMAIL));
+        assertNotNull(userInfoResponse.getClaim(JwtClaimName.ZONEINFO));
+        assertNotNull(userInfoResponse.getClaim(JwtClaimName.LOCALE));
+    }
+
+    @Parameters({"redirectUris", "redirectUri", "userId", "userSecret", "sectorIdentifierUri"})
+    @Test
+    public void requestUserInfoES256(final String redirectUris, final String redirectUri,
+                                     final String userId, final String userSecret,
+                                     final String sectorIdentifierUri) {
+        showTitle("requestUserInfoES256");
+
+        List<ResponseType> responseTypes = Arrays.asList(
+                ResponseType.TOKEN,
+                ResponseType.ID_TOKEN);
+
+        // 1. Dynamic Registration
+        RegisterRequest registerRequest = new RegisterRequest(ApplicationType.WEB, "oxAuth test app",
+                StringUtils.spaceSeparatedToList(redirectUris));
+        registerRequest.setResponseTypes(responseTypes);
+        registerRequest.setUserInfoSignedResponseAlg(SignatureAlgorithm.ES256);
+        registerRequest.setSubjectType(SubjectType.PAIRWISE);
+        registerRequest.setSectorIdentifierUri(sectorIdentifierUri);
+
+        RegisterClient registerClient = new RegisterClient(registrationEndpoint);
+        registerClient.setRequest(registerRequest);
+        RegisterResponse registerResponse = registerClient.exec();
+
+        showClient(registerClient);
+        assertEquals(registerResponse.getStatus(), 200, "Unexpected response code: " + registerResponse.getEntity());
+        assertNotNull(registerResponse.getClientId());
+        assertNotNull(registerResponse.getClientSecret());
+        assertNotNull(registerResponse.getRegistrationAccessToken());
+        assertNotNull(registerResponse.getClientSecretExpiresAt());
+
+        String clientId = registerResponse.getClientId();
+
+        AuthorizationResponse authorizationResponse = requestAuthorization(userId, userSecret, redirectUri, responseTypes, clientId);
+
+        String accessToken = authorizationResponse.getAccessToken();
+
+        // 3. Request user info
+        UserInfoClient userInfoClient = new UserInfoClient(userInfoEndpoint);
+        userInfoClient.setJwksUri(jwksUri);
+        UserInfoResponse userInfoResponse = userInfoClient.execUserInfo(accessToken);
+
+        showClient(userInfoClient);
+        assertEquals(userInfoResponse.getStatus(), 200, "Unexpected response code: " + userInfoResponse.getStatus());
+        assertNotNull(userInfoResponse.getClaim(JwtClaimName.SUBJECT_IDENTIFIER));
+        assertNotNull(userInfoResponse.getClaim(JwtClaimName.ISSUER));
+        assertNotNull(userInfoResponse.getClaim(JwtClaimName.AUDIENCE));
+        assertNotNull(userInfoResponse.getClaim(JwtClaimName.NAME));
+        assertNotNull(userInfoResponse.getClaim(JwtClaimName.GIVEN_NAME));
+        assertNotNull(userInfoResponse.getClaim(JwtClaimName.FAMILY_NAME));
+        assertNotNull(userInfoResponse.getClaim(JwtClaimName.PICTURE));
+        assertNotNull(userInfoResponse.getClaim(JwtClaimName.EMAIL));
+        assertNotNull(userInfoResponse.getClaim(JwtClaimName.ZONEINFO));
+        assertNotNull(userInfoResponse.getClaim(JwtClaimName.LOCALE));
+    }
+
+    @Parameters({"redirectUris", "redirectUri", "userId", "userSecret", "sectorIdentifierUri"})
+    @Test
+    public void requestUserInfoES384(final String redirectUris, final String redirectUri,
+                                     final String userId, final String userSecret,
+                                     final String sectorIdentifierUri) {
+        showTitle("requestUserInfoES384");
+
+        List<ResponseType> responseTypes = Arrays.asList(
+                ResponseType.TOKEN,
+                ResponseType.ID_TOKEN);
+
+        // 1. Dynamic Registration
+        RegisterRequest registerRequest = new RegisterRequest(ApplicationType.WEB, "oxAuth test app",
+                StringUtils.spaceSeparatedToList(redirectUris));
+        registerRequest.setResponseTypes(responseTypes);
+        registerRequest.setUserInfoSignedResponseAlg(SignatureAlgorithm.ES384);
+        registerRequest.setSubjectType(SubjectType.PAIRWISE);
+        registerRequest.setSectorIdentifierUri(sectorIdentifierUri);
+
+        RegisterClient registerClient = new RegisterClient(registrationEndpoint);
+        registerClient.setRequest(registerRequest);
+        RegisterResponse registerResponse = registerClient.exec();
+
+        showClient(registerClient);
+        assertEquals(registerResponse.getStatus(), 200, "Unexpected response code: " + registerResponse.getEntity());
+        assertNotNull(registerResponse.getClientId());
+        assertNotNull(registerResponse.getClientSecret());
+        assertNotNull(registerResponse.getRegistrationAccessToken());
+        assertNotNull(registerResponse.getClientSecretExpiresAt());
+
+        String clientId = registerResponse.getClientId();
+
+        AuthorizationResponse authorizationResponse = requestAuthorization(userId, userSecret, redirectUri, responseTypes, clientId);
+
+        String accessToken = authorizationResponse.getAccessToken();
+
+        // 3. Request user info
+        UserInfoClient userInfoClient = new UserInfoClient(userInfoEndpoint);
+        userInfoClient.setJwksUri(jwksUri);
+        UserInfoResponse userInfoResponse = userInfoClient.execUserInfo(accessToken);
+
+        showClient(userInfoClient);
+        assertEquals(userInfoResponse.getStatus(), 200, "Unexpected response code: " + userInfoResponse.getStatus());
+        assertNotNull(userInfoResponse.getClaim(JwtClaimName.SUBJECT_IDENTIFIER));
+        assertNotNull(userInfoResponse.getClaim(JwtClaimName.ISSUER));
+        assertNotNull(userInfoResponse.getClaim(JwtClaimName.AUDIENCE));
+        assertNotNull(userInfoResponse.getClaim(JwtClaimName.NAME));
+        assertNotNull(userInfoResponse.getClaim(JwtClaimName.GIVEN_NAME));
+        assertNotNull(userInfoResponse.getClaim(JwtClaimName.FAMILY_NAME));
+        assertNotNull(userInfoResponse.getClaim(JwtClaimName.PICTURE));
+        assertNotNull(userInfoResponse.getClaim(JwtClaimName.EMAIL));
+        assertNotNull(userInfoResponse.getClaim(JwtClaimName.ZONEINFO));
+        assertNotNull(userInfoResponse.getClaim(JwtClaimName.LOCALE));
+    }
+
+    @Parameters({"redirectUris", "redirectUri", "userId", "userSecret", "sectorIdentifierUri"})
+    @Test
+    public void requestUserInfoES512(final String redirectUris, final String redirectUri,
+                                     final String userId, final String userSecret,
+                                     final String sectorIdentifierUri) {
+        showTitle("requestUserInfoES512");
+
+        List<ResponseType> responseTypes = Arrays.asList(
+                ResponseType.TOKEN,
+                ResponseType.ID_TOKEN);
+
+        // 1. Dynamic Registration
+        RegisterRequest registerRequest = new RegisterRequest(ApplicationType.WEB, "oxAuth test app",
+                StringUtils.spaceSeparatedToList(redirectUris));
+        registerRequest.setResponseTypes(responseTypes);
+        registerRequest.setUserInfoSignedResponseAlg(SignatureAlgorithm.ES512);
+        registerRequest.setSubjectType(SubjectType.PAIRWISE);
+        registerRequest.setSectorIdentifierUri(sectorIdentifierUri);
+
+        RegisterClient registerClient = new RegisterClient(registrationEndpoint);
+        registerClient.setRequest(registerRequest);
+        RegisterResponse registerResponse = registerClient.exec();
+
+        showClient(registerClient);
+        assertEquals(registerResponse.getStatus(), 200, "Unexpected response code: " + registerResponse.getEntity());
+        assertNotNull(registerResponse.getClientId());
+        assertNotNull(registerResponse.getClientSecret());
+        assertNotNull(registerResponse.getRegistrationAccessToken());
+        assertNotNull(registerResponse.getClientSecretExpiresAt());
+
+        String clientId = registerResponse.getClientId();
+
+        AuthorizationResponse authorizationResponse = requestAuthorization(userId, userSecret, redirectUri, responseTypes, clientId);
+
+        String accessToken = authorizationResponse.getAccessToken();
+
+        // 3. Request user info
+        UserInfoClient userInfoClient = new UserInfoClient(userInfoEndpoint);
+        userInfoClient.setJwksUri(jwksUri);
+        UserInfoResponse userInfoResponse = userInfoClient.execUserInfo(accessToken);
+
+        showClient(userInfoClient);
+        assertEquals(userInfoResponse.getStatus(), 200, "Unexpected response code: " + userInfoResponse.getStatus());
+        assertNotNull(userInfoResponse.getClaim(JwtClaimName.SUBJECT_IDENTIFIER));
+        assertNotNull(userInfoResponse.getClaim(JwtClaimName.ISSUER));
+        assertNotNull(userInfoResponse.getClaim(JwtClaimName.AUDIENCE));
+        assertNotNull(userInfoResponse.getClaim(JwtClaimName.NAME));
+        assertNotNull(userInfoResponse.getClaim(JwtClaimName.GIVEN_NAME));
+        assertNotNull(userInfoResponse.getClaim(JwtClaimName.FAMILY_NAME));
+        assertNotNull(userInfoResponse.getClaim(JwtClaimName.PICTURE));
+        assertNotNull(userInfoResponse.getClaim(JwtClaimName.EMAIL));
+        assertNotNull(userInfoResponse.getClaim(JwtClaimName.ZONEINFO));
+        assertNotNull(userInfoResponse.getClaim(JwtClaimName.LOCALE));
+    }
+
+    @Parameters({"redirectUris", "redirectUri", "userId", "userSecret", "sectorIdentifierUri"})
+    @Test
+    public void requestUserInfoPS256(final String redirectUris, final String redirectUri,
+                                     final String userId, final String userSecret,
+                                     final String sectorIdentifierUri) {
+        showTitle("requestUserInfoPS256");
+
+        List<ResponseType> responseTypes = Arrays.asList(
+                ResponseType.TOKEN,
+                ResponseType.ID_TOKEN);
+
+        // 1. Dynamic Registration
+        RegisterRequest registerRequest = new RegisterRequest(ApplicationType.WEB, "oxAuth test app",
+                StringUtils.spaceSeparatedToList(redirectUris));
+        registerRequest.setResponseTypes(responseTypes);
+        registerRequest.setUserInfoSignedResponseAlg(SignatureAlgorithm.PS256);
+        registerRequest.setSubjectType(SubjectType.PAIRWISE);
+        registerRequest.setSectorIdentifierUri(sectorIdentifierUri);
+
+        RegisterClient registerClient = new RegisterClient(registrationEndpoint);
+        registerClient.setRequest(registerRequest);
+        RegisterResponse registerResponse = registerClient.exec();
+
+        showClient(registerClient);
+        assertEquals(registerResponse.getStatus(), 200, "Unexpected response code: " + registerResponse.getEntity());
+        assertNotNull(registerResponse.getClientId());
+        assertNotNull(registerResponse.getClientSecret());
+        assertNotNull(registerResponse.getRegistrationAccessToken());
+        assertNotNull(registerResponse.getClientSecretExpiresAt());
+
+        String clientId = registerResponse.getClientId();
+
+        AuthorizationResponse authorizationResponse = requestAuthorization(userId, userSecret, redirectUri, responseTypes, clientId);
+
+        String accessToken = authorizationResponse.getAccessToken();
+
+        // 3. Request user info
+        UserInfoClient userInfoClient = new UserInfoClient(userInfoEndpoint);
+        userInfoClient.setJwksUri(jwksUri);
+        UserInfoResponse userInfoResponse = userInfoClient.execUserInfo(accessToken);
+
+        showClient(userInfoClient);
+        assertEquals(userInfoResponse.getStatus(), 200, "Unexpected response code: " + userInfoResponse.getStatus());
+        assertNotNull(userInfoResponse.getClaim(JwtClaimName.SUBJECT_IDENTIFIER));
+        assertNotNull(userInfoResponse.getClaim(JwtClaimName.ISSUER));
+        assertNotNull(userInfoResponse.getClaim(JwtClaimName.AUDIENCE));
+        assertNotNull(userInfoResponse.getClaim(JwtClaimName.NAME));
+        assertNotNull(userInfoResponse.getClaim(JwtClaimName.GIVEN_NAME));
+        assertNotNull(userInfoResponse.getClaim(JwtClaimName.FAMILY_NAME));
+        assertNotNull(userInfoResponse.getClaim(JwtClaimName.PICTURE));
+        assertNotNull(userInfoResponse.getClaim(JwtClaimName.EMAIL));
+        assertNotNull(userInfoResponse.getClaim(JwtClaimName.ZONEINFO));
+        assertNotNull(userInfoResponse.getClaim(JwtClaimName.LOCALE));
+    }
+
+    @Parameters({"redirectUris", "redirectUri", "userId", "userSecret", "sectorIdentifierUri"})
+    @Test
+    public void requestUserInfoPS384(final String redirectUris, final String redirectUri,
+                                     final String userId, final String userSecret,
+                                     final String sectorIdentifierUri) {
+        showTitle("requestUserInfoRS384");
+
+        List<ResponseType> responseTypes = Arrays.asList(
+                ResponseType.TOKEN,
+                ResponseType.ID_TOKEN);
+
+        // 1. Dynamic Registration
+        RegisterRequest registerRequest = new RegisterRequest(ApplicationType.WEB, "oxAuth test app",
+                StringUtils.spaceSeparatedToList(redirectUris));
+        registerRequest.setResponseTypes(responseTypes);
+        registerRequest.setUserInfoSignedResponseAlg(SignatureAlgorithm.PS384);
+        registerRequest.setSubjectType(SubjectType.PAIRWISE);
+        registerRequest.setSectorIdentifierUri(sectorIdentifierUri);
+
+        RegisterClient registerClient = new RegisterClient(registrationEndpoint);
+        registerClient.setRequest(registerRequest);
+        RegisterResponse registerResponse = registerClient.exec();
+
+        showClient(registerClient);
+        assertEquals(registerResponse.getStatus(), 200, "Unexpected response code: " + registerResponse.getEntity());
+        assertNotNull(registerResponse.getClientId());
+        assertNotNull(registerResponse.getClientSecret());
+        assertNotNull(registerResponse.getRegistrationAccessToken());
+        assertNotNull(registerResponse.getClientSecretExpiresAt());
+
+        String clientId = registerResponse.getClientId();
+
+        AuthorizationResponse authorizationResponse = requestAuthorization(userId, userSecret, redirectUri, responseTypes, clientId);
+
+        String accessToken = authorizationResponse.getAccessToken();
+
+        // 3. Request user info
+        UserInfoClient userInfoClient = new UserInfoClient(userInfoEndpoint);
+        userInfoClient.setJwksUri(jwksUri);
+        UserInfoResponse userInfoResponse = userInfoClient.execUserInfo(accessToken);
+
+        showClient(userInfoClient);
+        assertEquals(userInfoResponse.getStatus(), 200, "Unexpected response code: " + userInfoResponse.getStatus());
+        assertNotNull(userInfoResponse.getClaim(JwtClaimName.SUBJECT_IDENTIFIER));
+        assertNotNull(userInfoResponse.getClaim(JwtClaimName.ISSUER));
+        assertNotNull(userInfoResponse.getClaim(JwtClaimName.AUDIENCE));
+        assertNotNull(userInfoResponse.getClaim(JwtClaimName.NAME));
+        assertNotNull(userInfoResponse.getClaim(JwtClaimName.GIVEN_NAME));
+        assertNotNull(userInfoResponse.getClaim(JwtClaimName.FAMILY_NAME));
+        assertNotNull(userInfoResponse.getClaim(JwtClaimName.PICTURE));
+        assertNotNull(userInfoResponse.getClaim(JwtClaimName.EMAIL));
+        assertNotNull(userInfoResponse.getClaim(JwtClaimName.ZONEINFO));
+        assertNotNull(userInfoResponse.getClaim(JwtClaimName.LOCALE));
+    }
+
+    @Parameters({"redirectUris", "redirectUri", "userId", "userSecret", "sectorIdentifierUri"})
+    @Test
+    public void requestUserInfoPS512(final String redirectUris, final String redirectUri,
+                                     final String userId, final String userSecret,
+                                     final String sectorIdentifierUri) {
+        showTitle("requestUserInfoPS512");
+
+        List<ResponseType> responseTypes = Arrays.asList(
+                ResponseType.TOKEN,
+                ResponseType.ID_TOKEN);
+
+        // 1. Dynamic Registration
+        RegisterRequest registerRequest = new RegisterRequest(ApplicationType.WEB, "oxAuth test app",
+                StringUtils.spaceSeparatedToList(redirectUris));
+        registerRequest.setResponseTypes(responseTypes);
+        registerRequest.setUserInfoSignedResponseAlg(SignatureAlgorithm.PS512);
+        registerRequest.setSubjectType(SubjectType.PAIRWISE);
+        registerRequest.setSectorIdentifierUri(sectorIdentifierUri);
+
+        RegisterClient registerClient = new RegisterClient(registrationEndpoint);
+        registerClient.setRequest(registerRequest);
+        RegisterResponse registerResponse = registerClient.exec();
+
+        showClient(registerClient);
+        assertEquals(registerResponse.getStatus(), 200, "Unexpected response code: " + registerResponse.getEntity());
+        assertNotNull(registerResponse.getClientId());
+        assertNotNull(registerResponse.getClientSecret());
+        assertNotNull(registerResponse.getRegistrationAccessToken());
+        assertNotNull(registerResponse.getClientSecretExpiresAt());
+
+        String clientId = registerResponse.getClientId();
+
+        AuthorizationResponse authorizationResponse = requestAuthorization(userId, userSecret, redirectUri, responseTypes, clientId);
+
+        String accessToken = authorizationResponse.getAccessToken();
+
+        // 3. Request user info
+        UserInfoClient userInfoClient = new UserInfoClient(userInfoEndpoint);
+        userInfoClient.setJwksUri(jwksUri);
+        UserInfoResponse userInfoResponse = userInfoClient.execUserInfo(accessToken);
+
+        showClient(userInfoClient);
+        assertEquals(userInfoResponse.getStatus(), 200, "Unexpected response code: " + userInfoResponse.getStatus());
+        assertNotNull(userInfoResponse.getClaim(JwtClaimName.SUBJECT_IDENTIFIER));
+        assertNotNull(userInfoResponse.getClaim(JwtClaimName.ISSUER));
+        assertNotNull(userInfoResponse.getClaim(JwtClaimName.AUDIENCE));
+        assertNotNull(userInfoResponse.getClaim(JwtClaimName.NAME));
+        assertNotNull(userInfoResponse.getClaim(JwtClaimName.GIVEN_NAME));
+        assertNotNull(userInfoResponse.getClaim(JwtClaimName.FAMILY_NAME));
+        assertNotNull(userInfoResponse.getClaim(JwtClaimName.PICTURE));
+        assertNotNull(userInfoResponse.getClaim(JwtClaimName.EMAIL));
+        assertNotNull(userInfoResponse.getClaim(JwtClaimName.ZONEINFO));
+        assertNotNull(userInfoResponse.getClaim(JwtClaimName.LOCALE));
+    }
+
+    @Parameters({"redirectUris", "redirectUri", "userId", "userSecret",
+            "clientJwksUri", "sectorIdentifierUri", "RSA_OAEP_keyId", "keyStoreFile",
+            "keyStoreSecret"})
+    @Test
+    public void requestUserInfoAlgRSAOAEPEncA256GCM(
+            final String redirectUris, final String redirectUri, final String userId, final String userSecret,
+            final String jwksUri, final String sectorIdentifierUri, final String keyId, final String keyStoreFile,
+            final String keyStoreSecret) {
+        try {
+            showTitle("requestUserInfoAlgRSAOAEPEncA256GCM");
+
+            List<ResponseType> responseTypes = Arrays.asList(
+                    ResponseType.TOKEN,
+                    ResponseType.ID_TOKEN);
+
+            // 1. Dynamic Registration
+            RegisterRequest registerRequest = new RegisterRequest(ApplicationType.WEB, "oxAuth test app",
+                    StringUtils.spaceSeparatedToList(redirectUris));
+            registerRequest.setJwksUri(jwksUri);
+            registerRequest.setResponseTypes(responseTypes);
+            registerRequest.setUserInfoEncryptedResponseAlg(KeyEncryptionAlgorithm.RSA_OAEP);
+            registerRequest.setUserInfoEncryptedResponseEnc(BlockEncryptionAlgorithm.A256GCM);
+            registerRequest.setSubjectType(SubjectType.PAIRWISE);
+            registerRequest.setSectorIdentifierUri(sectorIdentifierUri);
+
+            RegisterClient registerClient = new RegisterClient(registrationEndpoint);
+            registerClient.setRequest(registerRequest);
+            RegisterResponse registerResponse = registerClient.exec();
+
+            showClient(registerClient);
+            assertEquals(registerResponse.getStatus(), 200, "Unexpected response code: " + registerResponse.getEntity());
+            assertNotNull(registerResponse.getClientId());
+            assertNotNull(registerResponse.getClientSecret());
+            assertNotNull(registerResponse.getRegistrationAccessToken());
+            assertNotNull(registerResponse.getClientSecretExpiresAt());
+
+            String clientId = registerResponse.getClientId();
+
+            AuthorizationResponse authorizationResponse = requestAuthorization(userId, userSecret, redirectUri, responseTypes, clientId);
+
+            String accessToken = authorizationResponse.getAccessToken();
+
+            // 3. Request user info (encrypted)
+            OxAuthCryptoProvider cryptoProvider = new OxAuthCryptoProvider(keyStoreFile, keyStoreSecret, null);
+            PrivateKey privateKey = cryptoProvider.getPrivateKey(keyId);
+
+            UserInfoRequest userInfoRequest = new UserInfoRequest(accessToken);
+
+            UserInfoClient userInfoClient = new UserInfoClient(userInfoEndpoint);
+            userInfoClient.setPrivateKey(privateKey);
+            userInfoClient.setRequest(userInfoRequest);
+            UserInfoResponse userInfoResponse = userInfoClient.exec();
+
+            showClient(userInfoClient);
+            assertEquals(userInfoResponse.getStatus(), 200, "Unexpected response code: " + userInfoResponse.getStatus());
+            assertNotNull(userInfoResponse.getClaim(JwtClaimName.SUBJECT_IDENTIFIER));
+            assertNotNull(userInfoResponse.getClaim(JwtClaimName.NAME));
+            assertNotNull(userInfoResponse.getClaim(JwtClaimName.GIVEN_NAME));
+            assertNotNull(userInfoResponse.getClaim(JwtClaimName.FAMILY_NAME));
+            assertNotNull(userInfoResponse.getClaim(JwtClaimName.PICTURE));
+            assertNotNull(userInfoResponse.getClaim(JwtClaimName.EMAIL));
+            assertNotNull(userInfoResponse.getClaim(JwtClaimName.ZONEINFO));
+            assertNotNull(userInfoResponse.getClaim(JwtClaimName.LOCALE));
+        } catch (Exception ex) {
+            fail(ex.getMessage(), ex);
+        }
+    }
+
+    @Parameters({"redirectUris", "redirectUri", "userId", "userSecret",
+            "clientJwksUri", "sectorIdentifierUri", "RSA1_5_keyId", "keyStoreFile",
+            "keyStoreSecret"})
+    @Test
+    public void requestUserInfoAlgRSA15EncA128CBCPLUSHS256(
+            final String redirectUris, final String redirectUri, final String userId, final String userSecret,
+            final String jwksUri, final String sectorIdentifierUri, final String keyId, final String keyStoreFile,
+            final String keyStoreSecret) {
+        try {
+            showTitle("requestUserInfoAlgRSA15EncA128CBCPLUSHS256");
+
+            List<ResponseType> responseTypes = Arrays.asList(
+                    ResponseType.TOKEN,
+                    ResponseType.ID_TOKEN);
+
+            // 1. Dynamic Registration
+            RegisterRequest registerRequest = new RegisterRequest(ApplicationType.WEB, "oxAuth test app",
+                    StringUtils.spaceSeparatedToList(redirectUris));
+            registerRequest.setJwksUri(jwksUri);
+            registerRequest.setResponseTypes(responseTypes);
+            registerRequest.setUserInfoEncryptedResponseAlg(KeyEncryptionAlgorithm.RSA1_5);
+            registerRequest.setUserInfoEncryptedResponseEnc(BlockEncryptionAlgorithm.A128CBC_PLUS_HS256);
+            registerRequest.setSubjectType(SubjectType.PAIRWISE);
+            registerRequest.setSectorIdentifierUri(sectorIdentifierUri);
+
+            RegisterClient registerClient = new RegisterClient(registrationEndpoint);
+            registerClient.setRequest(registerRequest);
+            RegisterResponse registerResponse = registerClient.exec();
+
+            showClient(registerClient);
+            assertEquals(registerResponse.getStatus(), 200, "Unexpected response code: " + registerResponse.getEntity());
+            assertNotNull(registerResponse.getClientId());
+            assertNotNull(registerResponse.getClientSecret());
+            assertNotNull(registerResponse.getRegistrationAccessToken());
+            assertNotNull(registerResponse.getClientSecretExpiresAt());
+
+            String clientId = registerResponse.getClientId();
+
+            AuthorizationResponse authorizationResponse = requestAuthorization(userId, userSecret, redirectUri, responseTypes, clientId);
+
+            String accessToken = authorizationResponse.getAccessToken();
+
+            // 3. Request user info (encrypted)
+            OxAuthCryptoProvider cryptoProvider = new OxAuthCryptoProvider(keyStoreFile, keyStoreSecret, null);
+            PrivateKey privateKey = cryptoProvider.getPrivateKey(keyId);
+
+            UserInfoRequest userInfoRequest = new UserInfoRequest(accessToken);
+
+            UserInfoClient userInfoClient = new UserInfoClient(userInfoEndpoint);
+            userInfoClient.setPrivateKey(privateKey);
+            userInfoClient.setRequest(userInfoRequest);
+            UserInfoResponse userInfoResponse = userInfoClient.exec();
+
+            showClient(userInfoClient);
+            assertEquals(userInfoResponse.getStatus(), 200, "Unexpected response code: " + userInfoResponse.getStatus());
+            assertNotNull(userInfoResponse.getClaim(JwtClaimName.SUBJECT_IDENTIFIER));
+            assertNotNull(userInfoResponse.getClaim(JwtClaimName.NAME));
+            assertNotNull(userInfoResponse.getClaim(JwtClaimName.GIVEN_NAME));
+            assertNotNull(userInfoResponse.getClaim(JwtClaimName.FAMILY_NAME));
+            assertNotNull(userInfoResponse.getClaim(JwtClaimName.PICTURE));
+            assertNotNull(userInfoResponse.getClaim(JwtClaimName.EMAIL));
+            assertNotNull(userInfoResponse.getClaim(JwtClaimName.ZONEINFO));
+            assertNotNull(userInfoResponse.getClaim(JwtClaimName.LOCALE));
+        } catch (Exception ex) {
+            fail(ex.getMessage(), ex);
+        }
+    }
+
+    @Parameters({"redirectUris", "redirectUri", "userId", "userSecret",
+            "clientJwksUri", "sectorIdentifierUri", "RSA1_5_keyId", "keyStoreFile",
+            "keyStoreSecret"})
+    @Test
+    public void requestUserInfoAlgRSA15EncA256CBCPLUSHS512(
+            final String redirectUris, final String redirectUri, final String userId, final String userSecret,
+            final String jwksUri, final String sectorIdentifierUri, final String keyId, final String keyStoreFile,
+            final String keyStoreSecret) {
+        try {
+            showTitle("requestUserInfoAlgRSA15EncA256CBCPLUSHS512");
+
+            List<ResponseType> responseTypes = Arrays.asList(
+                    ResponseType.TOKEN,
+                    ResponseType.ID_TOKEN);
+
+            // 1. Dynamic Registration
+            RegisterRequest registerRequest = new RegisterRequest(ApplicationType.WEB, "oxAuth test app",
+                    StringUtils.spaceSeparatedToList(redirectUris));
+            registerRequest.setJwksUri(jwksUri);
+            registerRequest.setResponseTypes(responseTypes);
+            registerRequest.setUserInfoEncryptedResponseAlg(KeyEncryptionAlgorithm.RSA1_5);
+            registerRequest.setUserInfoEncryptedResponseEnc(BlockEncryptionAlgorithm.A256CBC_PLUS_HS512);
+            registerRequest.setSubjectType(SubjectType.PAIRWISE);
+            registerRequest.setSectorIdentifierUri(sectorIdentifierUri);
+
+            RegisterClient registerClient = new RegisterClient(registrationEndpoint);
+            registerClient.setRequest(registerRequest);
+            RegisterResponse registerResponse = registerClient.exec();
+
+            showClient(registerClient);
+            assertEquals(registerResponse.getStatus(), 200, "Unexpected response code: " + registerResponse.getEntity());
+            assertNotNull(registerResponse.getClientId());
+            assertNotNull(registerResponse.getClientSecret());
+            assertNotNull(registerResponse.getRegistrationAccessToken());
+            assertNotNull(registerResponse.getClientSecretExpiresAt());
+
+            String clientId = registerResponse.getClientId();
+
+            AuthorizationResponse authorizationResponse = requestAuthorization(userId, userSecret, redirectUri, responseTypes, clientId);
+
+            String accessToken = authorizationResponse.getAccessToken();
+
+            // 3. Request user info (encrypted)
+            OxAuthCryptoProvider cryptoProvider = new OxAuthCryptoProvider(keyStoreFile, keyStoreSecret, null);
+            PrivateKey privateKey = cryptoProvider.getPrivateKey(keyId);
+
+            UserInfoRequest userInfoRequest = new UserInfoRequest(accessToken);
+
+            UserInfoClient userInfoClient = new UserInfoClient(userInfoEndpoint);
+            userInfoClient.setPrivateKey(privateKey);
+            userInfoClient.setRequest(userInfoRequest);
+            UserInfoResponse userInfoResponse = userInfoClient.exec();
+
+            showClient(userInfoClient);
+            assertEquals(userInfoResponse.getStatus(), 200, "Unexpected response code: " + userInfoResponse.getStatus());
+            assertNotNull(userInfoResponse.getClaim(JwtClaimName.SUBJECT_IDENTIFIER));
+            assertNotNull(userInfoResponse.getClaim(JwtClaimName.NAME));
+            assertNotNull(userInfoResponse.getClaim(JwtClaimName.GIVEN_NAME));
+            assertNotNull(userInfoResponse.getClaim(JwtClaimName.FAMILY_NAME));
+            assertNotNull(userInfoResponse.getClaim(JwtClaimName.PICTURE));
+            assertNotNull(userInfoResponse.getClaim(JwtClaimName.EMAIL));
+            assertNotNull(userInfoResponse.getClaim(JwtClaimName.ZONEINFO));
+            assertNotNull(userInfoResponse.getClaim(JwtClaimName.LOCALE));
+        } catch (Exception ex) {
+            fail(ex.getMessage(), ex);
+        }
+    }
+
+    @Parameters({"redirectUris", "redirectUri", "userId", "userSecret", "sectorIdentifierUri"})
+    @Test
+    public void requestUserInfoAlgA128KWEncA128GCM(final String redirectUris, final String redirectUri,
+                                                   final String userId, final String userSecret,
+                                                   final String sectorIdentifierUri) {
+        showTitle("requestUserInfoAlgA128KWEncA128GCM");
+
+        List<ResponseType> responseTypes = Arrays.asList(
+                ResponseType.TOKEN,
+                ResponseType.ID_TOKEN);
+
+        // 1. Dynamic Registration
+        RegisterRequest registerRequest = new RegisterRequest(ApplicationType.WEB, "oxAuth test app",
+                StringUtils.spaceSeparatedToList(redirectUris));
+        registerRequest.setResponseTypes(responseTypes);
+        registerRequest.setUserInfoEncryptedResponseAlg(KeyEncryptionAlgorithm.A128KW);
+        registerRequest.setUserInfoEncryptedResponseEnc(BlockEncryptionAlgorithm.A128GCM);
+        registerRequest.setSubjectType(SubjectType.PAIRWISE);
+        registerRequest.setSectorIdentifierUri(sectorIdentifierUri);
+
+        RegisterClient registerClient = new RegisterClient(registrationEndpoint);
+        registerClient.setRequest(registerRequest);
+        RegisterResponse registerResponse = registerClient.exec();
+
+        showClient(registerClient);
+        assertEquals(registerResponse.getStatus(), 200, "Unexpected response code: " + registerResponse.getEntity());
+        assertNotNull(registerResponse.getClientId());
+        assertNotNull(registerResponse.getClientSecret());
+        assertNotNull(registerResponse.getRegistrationAccessToken());
+        assertNotNull(registerResponse.getClientSecretExpiresAt());
+
+        String clientId = registerResponse.getClientId();
+        String clientSecret = registerResponse.getClientSecret();
+
+        AuthorizationResponse authorizationResponse = requestAuthorization(userId, userSecret, redirectUri, responseTypes, clientId);
+
+        String accessToken = authorizationResponse.getAccessToken();
+
+        // 3. Request user info (encrypted)
+        UserInfoRequest userInfoRequest = new UserInfoRequest(accessToken);
+
+        UserInfoClient userInfoClient = new UserInfoClient(userInfoEndpoint);
+        userInfoClient.setSharedKey(clientSecret);
+        userInfoClient.setRequest(userInfoRequest);
+        UserInfoResponse userInfoResponse = userInfoClient.exec();
+
+        showClient(userInfoClient);
+        assertEquals(userInfoResponse.getStatus(), 200, "Unexpected response code: " + userInfoResponse.getStatus());
+        assertNotNull(userInfoResponse.getClaim(JwtClaimName.SUBJECT_IDENTIFIER));
+        assertNotNull(userInfoResponse.getClaim(JwtClaimName.NAME));
+        assertNotNull(userInfoResponse.getClaim(JwtClaimName.GIVEN_NAME));
+        assertNotNull(userInfoResponse.getClaim(JwtClaimName.FAMILY_NAME));
+        assertNotNull(userInfoResponse.getClaim(JwtClaimName.PICTURE));
+        assertNotNull(userInfoResponse.getClaim(JwtClaimName.EMAIL));
+        assertNotNull(userInfoResponse.getClaim(JwtClaimName.ZONEINFO));
+        assertNotNull(userInfoResponse.getClaim(JwtClaimName.LOCALE));
+    }
+
+    @Parameters({"redirectUris", "redirectUri", "userId", "userSecret", "sectorIdentifierUri"})
+    @Test
+    public void requestUserInfoAlgA256KWEncA256GCM(final String redirectUris, final String redirectUri,
+                                                   final String userId, final String userSecret,
+                                                   final String sectorIdentifierUri) {
+        showTitle("requestUserInfoAlgA256KWEncA256GCM");
+
+        List<ResponseType> responseTypes = Arrays.asList(
+                ResponseType.TOKEN,
+                ResponseType.ID_TOKEN);
+
+        // 1. Dynamic Registration
+        RegisterRequest registerRequest = new RegisterRequest(ApplicationType.WEB, "oxAuth test app",
+                StringUtils.spaceSeparatedToList(redirectUris));
+        registerRequest.setResponseTypes(responseTypes);
+        registerRequest.setUserInfoEncryptedResponseAlg(KeyEncryptionAlgorithm.A256KW);
+        registerRequest.setUserInfoEncryptedResponseEnc(BlockEncryptionAlgorithm.A256GCM);
+        registerRequest.setSubjectType(SubjectType.PAIRWISE);
+        registerRequest.setSectorIdentifierUri(sectorIdentifierUri);
+
+        RegisterClient registerClient = new RegisterClient(registrationEndpoint);
+        registerClient.setRequest(registerRequest);
+        RegisterResponse registerResponse = registerClient.exec();
+
+        showClient(registerClient);
+        assertEquals(registerResponse.getStatus(), 200, "Unexpected response code: " + registerResponse.getEntity());
+        assertNotNull(registerResponse.getClientId());
+        assertNotNull(registerResponse.getClientSecret());
+        assertNotNull(registerResponse.getRegistrationAccessToken());
+        assertNotNull(registerResponse.getClientSecretExpiresAt());
+
+        String clientId = registerResponse.getClientId();
+        String clientSecret = registerResponse.getClientSecret();
+
+        AuthorizationResponse authorizationResponse = requestAuthorization(userId, userSecret, redirectUri, responseTypes, clientId);
+
+        String accessToken = authorizationResponse.getAccessToken();
+
+        // 3. Request user info (encrypted)
+        UserInfoRequest userInfoRequest = new UserInfoRequest(accessToken);
+
+        UserInfoClient userInfoClient = new UserInfoClient(userInfoEndpoint);
+        userInfoClient.setSharedKey(clientSecret);
+        userInfoClient.setRequest(userInfoRequest);
+        UserInfoResponse userInfoResponse = userInfoClient.exec();
+
+        showClient(userInfoClient);
+        assertEquals(userInfoResponse.getStatus(), 200, "Unexpected response code: " + userInfoResponse.getStatus());
+        assertNotNull(userInfoResponse.getClaim(JwtClaimName.SUBJECT_IDENTIFIER));
+        assertNotNull(userInfoResponse.getClaim(JwtClaimName.NAME));
+        assertNotNull(userInfoResponse.getClaim(JwtClaimName.GIVEN_NAME));
+        assertNotNull(userInfoResponse.getClaim(JwtClaimName.FAMILY_NAME));
+        assertNotNull(userInfoResponse.getClaim(JwtClaimName.PICTURE));
+        assertNotNull(userInfoResponse.getClaim(JwtClaimName.EMAIL));
+        assertNotNull(userInfoResponse.getClaim(JwtClaimName.ZONEINFO));
+        assertNotNull(userInfoResponse.getClaim(JwtClaimName.LOCALE));
+    }
+
+    private RegisterResponse registerClient(final String redirectUris, final List<ResponseType> responseTypes,
+                                            final List<GrantType> grantTypes, final String sectorIdentifierUri) {
+        RegisterRequest registerRequest = new RegisterRequest(ApplicationType.WEB, "oxAuth test app",
+                StringUtils.spaceSeparatedToList(redirectUris));
+        registerRequest.setResponseTypes(responseTypes);
+        registerRequest.setGrantTypes(grantTypes);
+        registerRequest.setSectorIdentifierUri(sectorIdentifierUri);
+        registerRequest.setSubjectType(SubjectType.PAIRWISE);
+
+        RegisterClient registerClient = new RegisterClient(registrationEndpoint);
+        registerClient.setRequest(registerRequest);
+        RegisterResponse registerResponse = registerClient.exec();
+
+        showClient(registerClient);
+        assertEquals(registerResponse.getStatus(), 200, "Unexpected response code: " + registerResponse.getEntity());
+        assertNotNull(registerResponse.getClientId());
+        assertNotNull(registerResponse.getClientSecret());
+        assertNotNull(registerResponse.getRegistrationAccessToken());
+        assertNotNull(registerResponse.getClientIdIssuedAt());
+        assertNotNull(registerResponse.getClientSecretExpiresAt());
+
+        return registerResponse;
+    }
+
+    private AuthorizationResponse requestAuthorization(final String userId, final String userSecret, final String redirectUri,
+                                                       List<ResponseType> responseTypes, String clientId) {
+        List<String> scopes = Arrays.asList("openid", "profile", "address", "email");
+        return requestAuthorization(userId, userSecret, redirectUri, responseTypes, clientId, scopes);
+    }
+
+    private AuthorizationResponse requestAuthorization(
+            final String userId, final String userSecret, final String redirectUri, List<ResponseType> responseTypes,
+            String clientId, List<String> scopes) {
+        String nonce = UUID.randomUUID().toString();
+        String state = UUID.randomUUID().toString();
+
+        AuthorizationRequest authorizationRequest = new AuthorizationRequest(
+                responseTypes, clientId, scopes, redirectUri, nonce);
+        authorizationRequest.setState(state);
+
+        AuthorizationResponse authorizationResponse = authenticateResourceOwnerAndGrantAccess(
+                authorizationEndpoint, authorizationRequest, userId, userSecret);
+
+        assertNotNull(authorizationResponse.getLocation(), "The location is null");
+        assertNotNull(authorizationResponse.getAccessToken(), "The access token is null");
+        assertNotNull(authorizationResponse.getState(), "The state is null");
+        assertNotNull(authorizationResponse.getTokenType(), "The token type is null");
+        assertNotNull(authorizationResponse.getExpiresIn(), "The expires in value is null");
+        assertNotNull(authorizationResponse.getScope(), "The scope must be null");
+        assertNotNull(authorizationResponse.getIdToken(), "The id token must be null");
+        return authorizationResponse;
+    }
+
+    @Parameters({"userId", "userSecret", "redirectUris", "redirectUri", "sectorIdentifierUri"})
+    @Test
+    public void requestUserInfoWithoutOpenidScope(final String userId, final String userSecret,
+                                                  final String redirectUris, final String redirectUri,
+                                                  final String sectorIdentifierUri) {
+        showTitle("requestUserInfoWithoutOpenidScope");
+
+        List<ResponseType> responseTypes = Arrays.asList(
+                ResponseType.TOKEN,
+                ResponseType.ID_TOKEN
+        );
+
+        // 1. Register client
+        RegisterRequest registerRequest = new RegisterRequest(ApplicationType.WEB, "oxAuth test app",
+                StringUtils.spaceSeparatedToList(redirectUris));
+        registerRequest.setResponseTypes(responseTypes);
+        registerRequest.setSectorIdentifierUri(sectorIdentifierUri);
+        registerRequest.setSubjectType(SubjectType.PAIRWISE);
+
+        RegisterClient registerClient = new RegisterClient(registrationEndpoint);
+        registerClient.setRequest(registerRequest);
+        RegisterResponse registerResponse = registerClient.exec();
+
+        showClient(registerClient);
+        assertEquals(registerResponse.getStatus(), 200, "Unexpected response code: " + registerResponse.getEntity());
+        assertNotNull(registerResponse.getClientId());
+        assertNotNull(registerResponse.getClientSecret());
+        assertNotNull(registerResponse.getRegistrationAccessToken());
+        assertNotNull(registerResponse.getClientIdIssuedAt());
+        assertNotNull(registerResponse.getClientSecretExpiresAt());
+
+        String clientId = registerResponse.getClientId();
+
+        // 2. Request authorization
+        List<String> scopes = Arrays.asList("profile", "address", "email");
+
+        String nonce = UUID.randomUUID().toString();
+        String state = UUID.randomUUID().toString();
+
+        AuthorizationRequest authorizationRequest = new AuthorizationRequest(
+                responseTypes, clientId, scopes, redirectUri, nonce);
+        authorizationRequest.setState(state);
+
+        AuthorizationResponse authorizationResponse = authenticateResourceOwnerAndGrantAccess(
+                authorizationEndpoint, authorizationRequest, userId, userSecret);
+
+        assertNotNull(authorizationResponse.getLocation(), "The location is null");
+        assertNotNull(authorizationResponse.getAccessToken(), "The access token is null");
+        assertNotNull(authorizationResponse.getState(), "The state is null");
+        assertNotNull(authorizationResponse.getTokenType(), "The token type is null");
+        assertNotNull(authorizationResponse.getExpiresIn(), "The expires in value is null");
+        assertNotNull(authorizationResponse.getScope(), "The scope must be null");
+        assertNotNull(authorizationResponse.getIdToken(), "The id token must be null");
+
+        String accessToken = authorizationResponse.getAccessToken();
+
+        // 3. Request user info
+        UserInfoClient userInfoClient = new UserInfoClient(userInfoEndpoint);
+        UserInfoResponse userInfoResponse = userInfoClient.execUserInfo(accessToken);
+
+        showClient(userInfoClient);
+        assertEquals(userInfoResponse.getStatus(), 403, "Unexpected response code: " + userInfoResponse.getStatus());
+        assertNotNull(userInfoResponse.getErrorType(), "Unexpected result: errorType not found");
+        assertNotNull(userInfoResponse.getErrorDescription(), "Unexpected result: errorDescription not found");
+    }
+
+    @Parameters({"redirectUris", "redirectUri", "userId", "userSecret", "sectorIdentifierUri"})
+    @Test
+    public void requestUserInfoSubjectTypePublic(final String redirectUris, final String redirectUri,
+                                     final String userId, final String userSecret,
+                                     final String sectorIdentifierUri) {
+        showTitle("requestUserInfoSubjectTypePublic");
+
+        List<ResponseType> responseTypes = Arrays.asList(
+                ResponseType.TOKEN,
+                ResponseType.ID_TOKEN);
+
+        // 1. Dynamic Registration
+        RegisterRequest registerRequest = new RegisterRequest(ApplicationType.WEB, "oxAuth Test app",
+                StringUtils.spaceSeparatedToList(redirectUris));
+        registerRequest.setResponseTypes(responseTypes);
+        registerRequest.setUserInfoSignedResponseAlg(SignatureAlgorithm.PS512);
+        registerRequest.setSubjectType(SubjectType.PUBLIC);
+        registerRequest.setSectorIdentifierUri(sectorIdentifierUri);
+
+        RegisterClient registerClient = new RegisterClient(registrationEndpoint);
+        registerClient.setRequest(registerRequest);
+        RegisterResponse registerResponse = registerClient.exec();
+
+        showClient(registerClient);
+        assertEquals(registerResponse.getStatus(), 200, "Unexpected response code: " + registerResponse.getEntity());
+        assertNotNull(registerResponse.getClientId());
+        assertNotNull(registerResponse.getClientSecret());
+        assertNotNull(registerResponse.getRegistrationAccessToken());
+        assertNotNull(registerResponse.getClientSecretExpiresAt());
+
+        String clientId = registerResponse.getClientId();
+
+        AuthorizationResponse authorizationResponse = requestAuthorization(userId, userSecret, redirectUri, responseTypes, clientId);
+
+        String accessToken = authorizationResponse.getAccessToken();
+
+        // 3. Request user info
+        UserInfoClient userInfoClient = new UserInfoClient(userInfoEndpoint);
+        userInfoClient.setJwksUri(jwksUri);
+        UserInfoResponse userInfoResponse = userInfoClient.execUserInfo(accessToken);
+
+        showClient(userInfoClient);
+        assertEquals(userInfoResponse.getStatus(), 200, "Unexpected response code: " + userInfoResponse.getStatus());
+        assertNotNull(userInfoResponse.getClaim(JwtClaimName.SUBJECT_IDENTIFIER));
+        assertNotNull(userInfoResponse.getClaim(JwtClaimName.ISSUER));
+        assertNotNull(userInfoResponse.getClaim(JwtClaimName.AUDIENCE));
+        assertNotNull(userInfoResponse.getClaim(JwtClaimName.NAME));
+        assertNotNull(userInfoResponse.getClaim(JwtClaimName.GIVEN_NAME));
+        assertNotNull(userInfoResponse.getClaim(JwtClaimName.FAMILY_NAME));
+        assertNotNull(userInfoResponse.getClaim(JwtClaimName.PICTURE));
+        assertNotNull(userInfoResponse.getClaim(JwtClaimName.EMAIL));
+        assertNotNull(userInfoResponse.getClaim(JwtClaimName.ZONEINFO));
+        assertNotNull(userInfoResponse.getClaim(JwtClaimName.LOCALE));
+    }
+}
\ No newline at end of file
diff --git a/oxAuth/Client/src/test/java/org/gluu/oxauth/ws/rs/ValidateIdTokenHashesTest.java b/oxAuth/Client/src/test/java/org/gluu/oxauth/ws/rs/ValidateIdTokenHashesTest.java
new file mode 100644
index 00000000..ec9b5a5a
--- /dev/null
+++ b/oxAuth/Client/src/test/java/org/gluu/oxauth/ws/rs/ValidateIdTokenHashesTest.java
@@ -0,0 +1,213 @@
+/*
+ * oxAuth is available under the MIT License (2008). See http://opensource.org/licenses/MIT for full text.
+ *
+ * Copyright (c) 2014, Gluu
+ */
+
+package org.gluu.oxauth.ws.rs;
+
+import static org.testng.Assert.assertEquals;
+import static org.testng.Assert.assertNotNull;
+import static org.testng.Assert.assertNull;
+import static org.testng.Assert.assertTrue;
+
+import java.util.Arrays;
+import java.util.List;
+import java.util.UUID;
+
+import org.gluu.oxauth.BaseTest;
+import org.gluu.oxauth.client.Asserter;
+import org.gluu.oxauth.client.AuthorizationRequest;
+import org.gluu.oxauth.client.AuthorizationResponse;
+import org.gluu.oxauth.client.JwkClient;
+import org.gluu.oxauth.client.RegisterClient;
+import org.gluu.oxauth.client.RegisterRequest;
+import org.gluu.oxauth.client.RegisterResponse;
+import org.gluu.oxauth.client.TokenClient;
+import org.gluu.oxauth.client.TokenRequest;
+import org.gluu.oxauth.client.TokenResponse;
+import org.gluu.oxauth.client.UserInfoClient;
+import org.gluu.oxauth.client.UserInfoResponse;
+import org.gluu.oxauth.model.common.AuthenticationMethod;
+import org.gluu.oxauth.model.common.GrantType;
+import org.gluu.oxauth.model.common.ResponseType;
+import org.gluu.oxauth.model.common.SubjectType;
+import org.gluu.oxauth.model.crypto.signature.RSAPublicKey;
+import org.gluu.oxauth.model.crypto.signature.SignatureAlgorithm;
+import org.gluu.oxauth.model.jws.RSASigner;
+import org.gluu.oxauth.model.jwt.Jwt;
+import org.gluu.oxauth.model.jwt.JwtClaimName;
+import org.gluu.oxauth.model.jwt.JwtHeaderName;
+import org.gluu.oxauth.model.register.ApplicationType;
+import org.gluu.oxauth.model.util.StringUtils;
+import org.testng.annotations.Parameters;
+import org.testng.annotations.Test;
+
+/**
+ * @author Javier Rojas Blum
+ * @version March 14, 2019
+ */
+public class ValidateIdTokenHashesTest extends BaseTest {
+
+    @Parameters({"userId", "userSecret", "redirectUris", "redirectUri", "sectorIdentifierUri"})
+    @Test
+    public void validateIdTokenHashes(
+            final String userId, final String userSecret, final String redirectUris, final String redirectUri,
+            final String sectorIdentifierUri) throws Exception {
+        showTitle("authorizationCodeFlow");
+
+        List<ResponseType> responseTypes = Arrays.asList(
+                ResponseType.CODE,
+                ResponseType.TOKEN,
+                ResponseType.ID_TOKEN);
+        List<String> scopes = Arrays.asList("openid", "profile", "address", "email", "phone", "user_name");
+
+        // 1. Register client
+        RegisterRequest registerRequest = new RegisterRequest(ApplicationType.WEB, "oxAuth test app",
+                StringUtils.spaceSeparatedToList(redirectUris));
+        registerRequest.setResponseTypes(responseTypes);
+        registerRequest.setScope(scopes);
+        registerRequest.setSubjectType(SubjectType.PAIRWISE);
+        registerRequest.setSectorIdentifierUri(sectorIdentifierUri);
+
+        RegisterClient registerClient = new RegisterClient(registrationEndpoint);
+        registerClient.setRequest(registerRequest);
+        RegisterResponse registerResponse = registerClient.exec();
+
+        showClient(registerClient);
+        assertEquals(registerResponse.getStatus(), 200, "Unexpected response code: " + registerResponse.getEntity());
+        assertNotNull(registerResponse.getClientId());
+        assertNotNull(registerResponse.getClientSecret());
+        assertNotNull(registerResponse.getRegistrationAccessToken());
+        assertNotNull(registerResponse.getClientIdIssuedAt());
+        assertNotNull(registerResponse.getClientSecretExpiresAt());
+
+        String clientId = registerResponse.getClientId();
+        String clientSecret = registerResponse.getClientSecret();
+
+        // 2. Request authorization and receive the authorization code.
+        String nonce = UUID.randomUUID().toString();
+        String stateParam = UUID.randomUUID().toString();
+
+        AuthorizationRequest authorizationRequest = new AuthorizationRequest(responseTypes, clientId, scopes, redirectUri, nonce);
+        authorizationRequest.setState(stateParam);
+
+        AuthorizationResponse authorizationResponse = authenticateResourceOwnerAndGrantAccess(
+                authorizationEndpoint, authorizationRequest, userId, userSecret);
+
+        assertNotNull(authorizationResponse.getLocation(), "The location is null");
+        assertNotNull(authorizationResponse.getCode(), "The authorization code is null");
+        assertNotNull(authorizationResponse.getScope(), "The scope is null");
+        assertNotNull(authorizationResponse.getState(), "The state is null");
+        assertEquals(authorizationResponse.getState(), stateParam);
+
+        String scope = authorizationResponse.getScope();
+        String authorizationCode = authorizationResponse.getCode();
+        String accessToken = authorizationResponse.getAccessToken();
+        String idToken = authorizationResponse.getIdToken();
+        String state = authorizationResponse.getState();
+
+        // 3. Validate id_token
+        Jwt jwt = Jwt.parse(idToken);
+        Asserter.assertIdToken(jwt);
+
+        RSAPublicKey publicKey = JwkClient.getRSAPublicKey(
+                jwksUri,
+                jwt.getHeader().getClaimAsString(JwtHeaderName.KEY_ID));
+        RSASigner rsaSigner = new RSASigner(SignatureAlgorithm.RS256, publicKey);
+
+        assertTrue(rsaSigner.validate(jwt));
+
+        assertNotNull(jwt.getClaims().getClaimAsString(JwtClaimName.CODE_HASH));
+        assertTrue(rsaSigner.validateAuthorizationCode(authorizationCode, jwt));
+
+        assertNotNull(jwt.getClaims().getClaimAsString(JwtClaimName.ACCESS_TOKEN_HASH));
+        assertTrue(rsaSigner.validateAccessToken(accessToken, jwt));
+
+        assertNotNull(jwt.getClaims().getClaimAsString(JwtClaimName.STATE_HASH));
+        assertTrue(rsaSigner.validateState(state, jwt));
+
+        // 4. Request access token using the authorization code.
+        TokenRequest tokenRequest = new TokenRequest(GrantType.AUTHORIZATION_CODE);
+        tokenRequest.setCode(authorizationCode);
+        tokenRequest.setRedirectUri(redirectUri);
+        tokenRequest.setAuthUsername(clientId);
+        tokenRequest.setAuthPassword(clientSecret);
+        tokenRequest.setAuthenticationMethod(AuthenticationMethod.CLIENT_SECRET_BASIC);
+
+        TokenClient tokenClient1 = new TokenClient(tokenEndpoint);
+        tokenClient1.setRequest(tokenRequest);
+        TokenResponse tokenResponse1 = tokenClient1.exec();
+
+        showClient(tokenClient1);
+        assertEquals(tokenResponse1.getStatus(), 200, "Unexpected response code: " + tokenResponse1.getStatus());
+        assertNotNull(tokenResponse1.getEntity(), "The entity is null");
+        assertNotNull(tokenResponse1.getAccessToken(), "The access token is null");
+        assertNotNull(tokenResponse1.getExpiresIn(), "The expires in value is null");
+        assertNotNull(tokenResponse1.getTokenType(), "The token type is null");
+        assertNotNull(tokenResponse1.getRefreshToken(), "The refresh token is null");
+
+        String refreshToken = tokenResponse1.getRefreshToken();
+        String idToken2 = tokenResponse1.getIdToken();
+        String accessToken2 = tokenResponse1.getAccessToken();
+
+        // 5. Validate id_token
+        Jwt jwt2 = Jwt.parse(idToken2);
+        Asserter.assertIdToken(jwt2);
+
+        RSAPublicKey publicKey2 = JwkClient.getRSAPublicKey(
+                jwksUri,
+                jwt2.getHeader().getClaimAsString(JwtHeaderName.KEY_ID));
+        RSASigner rsaSigner2 = new RSASigner(SignatureAlgorithm.RS256, publicKey2);
+
+        assertTrue(rsaSigner2.validate(jwt2));
+
+        assertNotNull(jwt2.getClaims().getClaimAsString(JwtClaimName.ACCESS_TOKEN_HASH));
+        assertTrue(rsaSigner2.validateAccessToken(accessToken2, jwt2));
+
+        assertNull(jwt2.getClaims().getClaimAsString(JwtClaimName.STATE_HASH));
+
+        // 6. Request new access token using the refresh token.
+        TokenClient tokenClient2 = new TokenClient(tokenEndpoint);
+        TokenResponse tokenResponse2 = tokenClient2.execRefreshToken(scope, refreshToken, clientId, clientSecret);
+
+        showClient(tokenClient2);
+        assertEquals(tokenResponse2.getStatus(), 200, "Unexpected response code: " + tokenResponse2.getStatus());
+        assertNotNull(tokenResponse2.getEntity(), "The entity is null");
+        assertNotNull(tokenResponse2.getAccessToken(), "The access token is null");
+        assertNotNull(tokenResponse2.getTokenType(), "The token type is null");
+        assertNotNull(tokenResponse2.getRefreshToken(), "The refresh token is null");
+        assertNotNull(tokenResponse2.getScope(), "The scope is null");
+
+        String accessToken3 = tokenResponse2.getAccessToken();
+
+        // 7. Request user info
+        UserInfoClient userInfoClient = new UserInfoClient(userInfoEndpoint);
+        UserInfoResponse userInfoResponse = userInfoClient.execUserInfo(accessToken3);
+
+        showClient(userInfoClient);
+        assertEquals(userInfoResponse.getStatus(), 200, "Unexpected response code: " + userInfoResponse.getStatus());
+        assertNotNull(userInfoResponse.getClaim(JwtClaimName.SUBJECT_IDENTIFIER));
+        assertNotNull(userInfoResponse.getClaim(JwtClaimName.NAME));
+        assertNotNull(userInfoResponse.getClaim(JwtClaimName.BIRTHDATE));
+        assertNotNull(userInfoResponse.getClaim(JwtClaimName.FAMILY_NAME));
+        assertNotNull(userInfoResponse.getClaim(JwtClaimName.GENDER));
+        assertNotNull(userInfoResponse.getClaim(JwtClaimName.GIVEN_NAME));
+        assertNotNull(userInfoResponse.getClaim(JwtClaimName.MIDDLE_NAME));
+        assertNotNull(userInfoResponse.getClaim(JwtClaimName.NICKNAME));
+        assertNotNull(userInfoResponse.getClaim(JwtClaimName.PICTURE));
+        assertNotNull(userInfoResponse.getClaim(JwtClaimName.PREFERRED_USERNAME));
+        assertNotNull(userInfoResponse.getClaim(JwtClaimName.PROFILE));
+        assertNotNull(userInfoResponse.getClaim(JwtClaimName.WEBSITE));
+        assertNotNull(userInfoResponse.getClaim(JwtClaimName.EMAIL));
+        assertNotNull(userInfoResponse.getClaim(JwtClaimName.EMAIL_VERIFIED));
+        assertNotNull(userInfoResponse.getClaim(JwtClaimName.PHONE_NUMBER));
+        assertNotNull(userInfoResponse.getClaim(JwtClaimName.PHONE_NUMBER_VERIFIED));
+        assertNotNull(userInfoResponse.getClaim(JwtClaimName.ADDRESS));
+        assertNotNull(userInfoResponse.getClaim(JwtClaimName.LOCALE));
+        assertNotNull(userInfoResponse.getClaim(JwtClaimName.ZONEINFO));
+        assertNotNull(userInfoResponse.getClaim(JwtClaimName.USER_NAME));
+        assertNull(userInfoResponse.getClaim("org_name"));
+        assertNull(userInfoResponse.getClaim("work_phone"));
+    }
+}
diff --git a/oxAuth/Client/src/test/java/org/gluu/oxauth/ws/rs/WebKeysTest.java b/oxAuth/Client/src/test/java/org/gluu/oxauth/ws/rs/WebKeysTest.java
new file mode 100644
index 00000000..d1f19be9
--- /dev/null
+++ b/oxAuth/Client/src/test/java/org/gluu/oxauth/ws/rs/WebKeysTest.java
@@ -0,0 +1,81 @@
+/*
+ * oxAuth is available under the MIT License (2008). See http://opensource.org/licenses/MIT for full text.
+ *
+ * Copyright (c) 2014, Gluu
+ */
+
+package org.gluu.oxauth.ws.rs;
+
+import static org.testng.Assert.assertEquals;
+
+import java.math.BigInteger;
+import java.security.PublicKey;
+import java.security.cert.CertificateException;
+import java.security.cert.X509Certificate;
+import java.security.interfaces.RSAPublicKey;
+
+import org.gluu.oxauth.BaseTest;
+import org.gluu.oxauth.model.util.Base64Util;
+import org.testng.ITestContext;
+import org.testng.annotations.DataProvider;
+import org.testng.annotations.Test;
+
+import sun.security.x509.X509CertImpl;
+
+/**
+ * @author Javier Rojas Blum
+ * @version February 25, 2017
+ */
+public class WebKeysTest extends BaseTest {
+
+    @Test(dataProvider = "webKeysDataProvider")
+    public void webKeyTest(final String n, final String e, final String x5c) throws CertificateException {
+        showTitle("webKeyTest");
+
+        byte[] nBytes = Base64Util.base64urldecode(n);
+        BigInteger modulus = new BigInteger(1, nBytes);
+
+        byte[] eBytes = Base64Util.base64urldecode(e);
+        BigInteger exponent = new BigInteger(1, eBytes);
+
+        System.out.println("n: " + n);
+        System.out.println("n: " + modulus);
+
+        System.out.println("e: " + e);
+        System.out.println("e: " + exponent);
+
+        byte[] certBytes = Base64Util.base64urldecode(x5c);
+        X509Certificate cert = new X509CertImpl(certBytes);
+
+        PublicKey publicKey = cert.getPublicKey();
+        RSAPublicKey rsaPublicKey = (RSAPublicKey) publicKey;
+        assertEquals(rsaPublicKey.getModulus(), modulus);
+        assertEquals(rsaPublicKey.getPublicExponent(), exponent);
+    }
+
+    @DataProvider(name = "webKeysDataProvider")
+    public Object[][] dataProvider(ITestContext context) {
+        return new Object[][]{
+                {
+                        "5awKF1MZSGSAAlujSf-dRzvrK9D_vV85BMn7fZ-x5E-So580TrTxT9-vgfmTWzhDr0f240DqR6ojF_NGXh8V3QhFRM9i2p7dg7M3LO-mfYlrJ_x2Rlw-EdvMmYargk5gaM7sRQKwWnU6ajRZIDw3XbrLDvGeLWZhH1-RzV3NjlJ_0c85bXhyLg_MT9NpnGTP4CePLF0dLuQwo4ktQkkW_BwPaSUhHgPYA-M6IA9S31_vQLB4ZyN00EpdO57fEbhutkzrpb9iiXJh82DD0D5Z2eYyQdMX_7pN9frLKVhoCUelzZ887it0oIlLfpe8WUzuiDHWYThzQiepQfMBRQMJhQ",
+                        "AQAB",
+                        "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"
+                },
+                {
+                        "vZXUxthj0LTSeeR_XMHaakLCIXd5Ua_4hNra-8UOP7ayhiY3c2KzpnmeWJ1SjPpbzS3O7Wc8AJSY_nrLzg9XjH5723cx_9TKbTVvE8_HQu5ZsUH7LgoT4yxMhvOFL6ir3RKEyOiOVFBBb4fWVGxwDchVkR26nBKK8RdAqCxnIEw1vkG6zHEPl1WBiK2IQ6JxhrrOLoTquHGBPc2qT_des8a6Xe6GlbUq1h-3bKAUXjjwSmJ36aau5aUNuvUlnPdEGcI25sTwRp7jCzuM1VN6a7y1nPkIYltYndOdP8EDGsrkS9pfQx1Z8HDdbw-lFGuOK5QFS53TfOfRtt0RQpy-Tw",
+                        "AQAB",
+                        "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"
+                },
+                {
+                        "1EV17EwdTr-qEuJpJisBbzxLA9dGQsxFEkXM-JM5XBV54S6Zeon-RymNlt5GiBpT-0fDXK3PNxt5R__cSbKOs6F_pRbGFSWxRxJgKHYp37eiW3PUee3rf6USIl6naj0HcHnycEiZxo2wwB1J12Iw3czqRbGhgcCusPO60EFdaTE3qH5owPLH_3FbdVcGd3BJFrKwT7CaWGfmtUsZtMDBii4tVUn8onaILYV4I0ZCwwvySB1jJbwd5gvMILz-GNMcvZ6-5k_ojQlaZrvmkzLjzi1y61PHGo_vLvpIlJ8EJpCtlZ8MQwadIT94bGXCHUta7B4XhxR5sLFmlShAzWdUcw",
+                        "AQAB",
+                        "MIIDBDCCAeygAwIBAgIhAO9HVmwNIiJv+DBg8oZ4EbnE+irSQ/NuKPf8pBCCew4iMA0GCSqGSIb3DQEBDAUAMCExHzAdBgNVBAMMFm94QXV0aCBDQSBDZXJ0aWZpY2F0ZXMwHhcNMTcwMjI1MDM0MjU1WhcNMTgwMjI1MDM0MzA0WjAhMR8wHQYDVQQDDBZveEF1dGggQ0EgQ2VydGlmaWNhdGVzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA1EV17EwdTr+qEuJpJisBbzxLA9dGQsxFEkXM+JM5XBV54S6Zeon+RymNlt5GiBpT+0fDXK3PNxt5R//cSbKOs6F/pRbGFSWxRxJgKHYp37eiW3PUee3rf6USIl6naj0HcHnycEiZxo2wwB1J12Iw3czqRbGhgcCusPO60EFdaTE3qH5owPLH/3FbdVcGd3BJFrKwT7CaWGfmtUsZtMDBii4tVUn8onaILYV4I0ZCwwvySB1jJbwd5gvMILz+GNMcvZ6+5k/ojQlaZrvmkzLjzi1y61PHGo/vLvpIlJ8EJpCtlZ8MQwadIT94bGXCHUta7B4XhxR5sLFmlShAzWdUcwIDAQABoycwJTAjBgNVHSUEHDAaBggrBgEFBQcDAQYIKwYBBQUHAwIGBFUdJQAwDQYJKoZIhvcNAQEMBQADggEBAK4BgzFnyInDQPJQPK0Z27fbDbxXmcNYr9hvM7+nH4TWcW/2NmiIVPIlwUJEVQ0u63fhhDzGGGKuLIyc/K0XU+QJ4+OtS6mxjlZFohPpVyXrEUYAYCSEukDSj/WBr90WrFTYIly+7h2qexm3GCPxqKrMiLUjTBNL/igjQPdu6A1NbBlTKGlYlcV5J8MZzh6+5pkpLgLyiNUUiq1qvcHgTxhxTtIjQnr2Og4a0ZVorq20mbv3tuVyNPJEZfNOQOMvgAa+s/gSlt03vi0i598T4L/MOhMUCWgNVuRf2Y6sSz1W7vErfRMocoFuXjexCneV2aWkURpiUXQM6o9dEgP03S0="
+                },
+                {
+                        "ucSlx1c0N7sGdpY1ly9tNH9OLzudC30HJiLMQPoxL9b_gXWx-MaErv7C7LxHuBKqT7Cq0SdvAued-bKxhlaNApfVQrbNbrF_tLo9oHgNqH4Jjil422EIBzjjSlaxkWBBhF3oIvmo1e3MAewWbq3sVTKUZKVKdAPVRe_8Ddt352FIBFTgU16lhXwnw3TmHcwxdwGJ719D9GOmtQyRZf_trSWEIORJJyHT8vueCWIgrCi2xEi_7XVWR7VLKl-gl1oxI2VYUrIRYDzBuT9vb0QAljN84Mbr-EDJs63BnPOJkK5pC_jTqKIViazo5CnITnOYAGXi7_JasllCfTSZUsSs2w",
+                        "AQAB",
+                        "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"
+                }
+        };
+    }
+}
diff --git a/oxAuth/Client/src/test/java/org/gluu/oxauth/ws/rs/deviceauthz/DeviceAuthzFlowHttpTest.java b/oxAuth/Client/src/test/java/org/gluu/oxauth/ws/rs/deviceauthz/DeviceAuthzFlowHttpTest.java
new file mode 100644
index 00000000..801196c6
--- /dev/null
+++ b/oxAuth/Client/src/test/java/org/gluu/oxauth/ws/rs/deviceauthz/DeviceAuthzFlowHttpTest.java
@@ -0,0 +1,609 @@
+/*
+ * oxAuth is available under the MIT License (2008). See http://opensource.org/licenses/MIT for full text.
+ *
+ * Copyright (c) 2014, Gluu
+ */
+
+package org.gluu.oxauth.ws.rs.deviceauthz;
+
+import static org.testng.Assert.assertEquals;
+import static org.testng.Assert.assertNotNull;
+import static org.testng.Assert.assertNull;
+import static org.testng.Assert.assertTrue;
+import static org.testng.Assert.fail;
+
+import java.security.KeyManagementException;
+import java.security.KeyStoreException;
+import java.security.NoSuchAlgorithmException;
+import java.security.UnrecoverableKeyException;
+import java.time.Duration;
+import java.util.Arrays;
+import java.util.Collections;
+import java.util.List;
+
+import org.gluu.oxauth.BaseTest;
+import org.gluu.oxauth.client.AuthorizationResponse;
+import org.gluu.oxauth.client.DeviceAuthzClient;
+import org.gluu.oxauth.client.DeviceAuthzRequest;
+import org.gluu.oxauth.client.DeviceAuthzResponse;
+import org.gluu.oxauth.client.JwkClient;
+import org.gluu.oxauth.client.RegisterResponse;
+import org.gluu.oxauth.client.TokenClient;
+import org.gluu.oxauth.client.TokenRequest;
+import org.gluu.oxauth.client.TokenResponse;
+import org.gluu.oxauth.client.UserInfoClient;
+import org.gluu.oxauth.client.UserInfoResponse;
+import org.gluu.oxauth.model.authorize.AuthorizeErrorResponseType;
+import org.gluu.oxauth.model.common.AuthenticationMethod;
+import org.gluu.oxauth.model.common.GrantType;
+import org.gluu.oxauth.model.crypto.signature.RSAPublicKey;
+import org.gluu.oxauth.model.crypto.signature.SignatureAlgorithm;
+import org.gluu.oxauth.model.exception.InvalidJwtException;
+import org.gluu.oxauth.model.jws.RSASigner;
+import org.gluu.oxauth.model.jwt.Jwt;
+import org.gluu.oxauth.model.jwt.JwtClaimName;
+import org.gluu.oxauth.model.jwt.JwtHeaderName;
+import org.gluu.oxauth.model.token.TokenErrorResponseType;
+import org.gluu.oxauth.model.util.StringUtils;
+import org.gluu.oxauth.page.DeviceAuthzPage;
+import org.gluu.oxauth.page.LoginPage;
+import org.gluu.oxauth.page.PageConfig;
+import org.openqa.selenium.By;
+import org.openqa.selenium.NoSuchElementException;
+import org.openqa.selenium.WebDriver;
+import org.openqa.selenium.WebElement;
+import org.openqa.selenium.support.ui.FluentWait;
+import org.openqa.selenium.support.ui.Wait;
+import org.testng.annotations.Parameters;
+import org.testng.annotations.Test;
+
+/**
+ * Test cases for device authorization page.
+ */
+public class DeviceAuthzFlowHttpTest extends BaseTest {
+
+    /**
+     * Device authorization complete flow.
+     */
+    @Parameters({"userId", "userSecret"})
+    @Test
+    public void deviceAuthzFlow(final String userId, final String userSecret) throws Exception {
+        showTitle("deviceAuthzFlow");
+
+        // 1. Init device authz request from WS
+        RegisterResponse registerResponse = DeviceAuthzRequestRegistrationTest.registerClientForDeviceAuthz(
+                AuthenticationMethod.CLIENT_SECRET_BASIC, Collections.singletonList(GrantType.DEVICE_CODE),
+                null, null, registrationEndpoint);
+        String clientId = registerResponse.getClientId();
+        String clientSecret = registerResponse.getClientSecret();
+
+        // 2. Device request registration
+        final List<String> scopes = Arrays.asList("openid", "profile", "address", "email", "phone", "user_name");
+        DeviceAuthzRequest deviceAuthzRequest = new DeviceAuthzRequest(clientId, scopes);
+        deviceAuthzRequest.setAuthUsername(clientId);
+        deviceAuthzRequest.setAuthPassword(clientSecret);
+
+        DeviceAuthzClient deviceAuthzClient = new DeviceAuthzClient(deviceAuthzEndpoint);
+        deviceAuthzClient.setRequest(deviceAuthzRequest);
+
+        DeviceAuthzResponse response = deviceAuthzClient.exec();
+
+        showClient(deviceAuthzClient);
+        DeviceAuthzRequestRegistrationTest.validateSuccessfulResponse(response);
+
+        // 3. Load device authz page, process user_code and authorization
+        WebDriver currentDriver = initWebDriver(false, true);
+        final PageConfig pageConfig = newPageConfig(currentDriver);
+        processDeviceAuthzPutUserCodeAndPressContinue(response.getUserCode(), currentDriver, false, pageConfig);
+        AuthorizationResponse authorizationResponse = processAuthorization(userId, userSecret, currentDriver);
+
+        stopWebDriver(false, currentDriver);
+        assertSuccessAuthzResponse(authorizationResponse);
+
+        // 4. Token request
+        TokenResponse tokenResponse1 = processTokens(clientId, clientSecret, response.getDeviceCode());
+        validateTokenSuccessfulResponse(tokenResponse1);
+
+        String refreshToken = tokenResponse1.getRefreshToken();
+        String idToken = tokenResponse1.getIdToken();
+
+        // 5. Validate id_token
+        verifyIdToken(idToken);
+
+        // 6. Request new access token using the refresh token.
+        TokenResponse tokenResponse2 = processNewTokenWithRefreshToken(StringUtils.implode(scopes, " "),
+                refreshToken, clientId, clientSecret);
+        validateTokenSuccessfulResponse(tokenResponse2);
+
+        String accessToken = tokenResponse2.getAccessToken();
+
+        // 7. Request user info
+        processUserInfo(accessToken);
+    }
+
+    /**
+     * Device authorization with access denied.
+     */
+    @Parameters({"userId", "userSecret"})
+    @Test
+    public void deviceAuthzFlowAccessDenied(final String userId, final String userSecret) throws Exception {
+        showTitle("deviceAuthzFlowAccessDenied");
+
+        // 1. Init device authz request from WS
+        RegisterResponse registerResponse = DeviceAuthzRequestRegistrationTest.registerClientForDeviceAuthz(
+                AuthenticationMethod.CLIENT_SECRET_BASIC, Collections.singletonList(GrantType.DEVICE_CODE),
+                null, null, registrationEndpoint);
+        String clientId = registerResponse.getClientId();
+        String clientSecret = registerResponse.getClientSecret();
+
+        // 2. Device request registration
+        final List<String> scopes = Arrays.asList("openid", "profile", "address", "email", "phone", "user_name");
+        DeviceAuthzRequest deviceAuthzRequest = new DeviceAuthzRequest(clientId, scopes);
+        deviceAuthzRequest.setAuthUsername(clientId);
+        deviceAuthzRequest.setAuthPassword(clientSecret);
+
+        DeviceAuthzClient deviceAuthzClient = new DeviceAuthzClient(deviceAuthzEndpoint);
+        deviceAuthzClient.setRequest(deviceAuthzRequest);
+
+        DeviceAuthzResponse response = deviceAuthzClient.exec();
+
+        showClient(deviceAuthzClient);
+        DeviceAuthzRequestRegistrationTest.validateSuccessfulResponse(response);
+
+        // 3. Load device authz page, process user_code and authorization
+        WebDriver currentDriver = initWebDriver(false, true);
+        final PageConfig pageConfig = newPageConfig(currentDriver);
+        AuthorizationResponse authorizationResponse = processDeviceAuthzDenyAccess(userId, userSecret,
+                response.getUserCode(), currentDriver, false, pageConfig);
+
+        validateErrorResponse(authorizationResponse, AuthorizeErrorResponseType.ACCESS_DENIED);
+
+        // 4. Token request
+        TokenResponse tokenResponse = processTokens(clientId, clientSecret, response.getDeviceCode());
+        assertNotNull(tokenResponse.getErrorType(), "Error expected, however no error was found");
+        assertNotNull(tokenResponse.getErrorDescription(), "Error description expected, however no error was found");
+        assertEquals(tokenResponse.getErrorType(), TokenErrorResponseType.ACCESS_DENIED, "Unexpected error");
+    }
+
+    /**
+     * Validate server denies brute forcing
+     */
+    @Test
+    public void preventBruteForcing() throws Exception {
+        showTitle("deviceAuthzFlow");
+
+        WebDriver currentDriver = initWebDriver(false, true);
+        final PageConfig pageConfig = newPageConfig(currentDriver);
+        List<WebElement> list = currentDriver.findElements(By.xpath("//*[contains(text(),'Too many failed attemps')]"));
+        byte limit = 10;
+        while (list.size() == 0 && limit > 0) {
+            processDeviceAuthzPutUserCodeAndPressContinue("ABCD-ABCD", currentDriver, false, pageConfig);
+            Thread.sleep(500);
+            list = currentDriver.findElements(By.xpath("//*[contains(text(),'Too many failed attemps')]"));
+            limit--;
+        }
+        stopWebDriver(false, currentDriver);
+        assertTrue(list.size() > 0 && limit > 0, "Brute forcing prevention not working correctly.");
+    }
+
+    /**
+     * Verifies that token endpoint should return slow down or authorization pending states when token is in process.
+     */
+    @Test
+    public void checkSlowDownOrPendingState() throws Exception {
+        showTitle("checkSlowDownOrPendingState");
+
+        // 1. Init device authz request from WS
+        RegisterResponse registerResponse = DeviceAuthzRequestRegistrationTest.registerClientForDeviceAuthz(
+                AuthenticationMethod.CLIENT_SECRET_BASIC, Collections.singletonList(GrantType.DEVICE_CODE),
+                null, null, registrationEndpoint);
+        String clientId = registerResponse.getClientId();
+        String clientSecret = registerResponse.getClientSecret();
+
+        // 2. Device request registration
+        final List<String> scopes = Arrays.asList("openid", "profile", "address", "email", "phone", "user_name");
+        DeviceAuthzRequest deviceAuthzRequest = new DeviceAuthzRequest(clientId, scopes);
+        deviceAuthzRequest.setAuthUsername(clientId);
+        deviceAuthzRequest.setAuthPassword(clientSecret);
+
+        DeviceAuthzClient deviceAuthzClient = new DeviceAuthzClient(deviceAuthzEndpoint);
+        deviceAuthzClient.setRequest(deviceAuthzRequest);
+
+        DeviceAuthzResponse response = deviceAuthzClient.exec();
+
+        showClient(deviceAuthzClient);
+        DeviceAuthzRequestRegistrationTest.validateSuccessfulResponse(response);
+
+        byte count = 3;
+        while (count > 0) {
+            TokenResponse tokenResponse = processTokens(clientId, clientSecret, response.getDeviceCode());
+            assertNotNull(tokenResponse.getErrorType(), "Error expected, however no error was found");
+            assertNotNull(tokenResponse.getErrorDescription(), "Error description expected, however no error was found");
+            assertTrue(tokenResponse.getErrorType() == TokenErrorResponseType.AUTHORIZATION_PENDING
+                    || tokenResponse.getErrorType() == TokenErrorResponseType.SLOW_DOWN, "Unexpected error");
+            Thread.sleep(200);
+            count--;
+        }
+    }
+
+    /**
+     * Attempts to get token with a wrong device_code, after that it attempts to get token twice,
+     * second one should be rejected.
+     */
+    @Parameters({"userId", "userSecret"})
+    @Test
+    public void attemptDifferentFailedValuesToTokenEndpoint(final String userId, final String userSecret) throws Exception {
+        showTitle("deviceAuthzFlow");
+
+        // 1. Init device authz request from WS
+        RegisterResponse registerResponse = DeviceAuthzRequestRegistrationTest.registerClientForDeviceAuthz(
+                AuthenticationMethod.CLIENT_SECRET_BASIC, Collections.singletonList(GrantType.DEVICE_CODE),
+                null, null, registrationEndpoint);
+        String clientId = registerResponse.getClientId();
+        String clientSecret = registerResponse.getClientSecret();
+
+        // 2. Device request registration
+        final List<String> scopes = Arrays.asList("openid", "profile", "address", "email", "phone", "user_name");
+        DeviceAuthzRequest deviceAuthzRequest = new DeviceAuthzRequest(clientId, scopes);
+        deviceAuthzRequest.setAuthUsername(clientId);
+        deviceAuthzRequest.setAuthPassword(clientSecret);
+
+        DeviceAuthzClient deviceAuthzClient = new DeviceAuthzClient(deviceAuthzEndpoint);
+        deviceAuthzClient.setRequest(deviceAuthzRequest);
+
+        DeviceAuthzResponse response = deviceAuthzClient.exec();
+
+        showClient(deviceAuthzClient);
+        DeviceAuthzRequestRegistrationTest.validateSuccessfulResponse(response);
+
+        // 3. Load device authz page, process user_code and authorization
+        WebDriver currentDriver = initWebDriver(false, true);
+        final PageConfig pageConfig = newPageConfig(currentDriver);
+        processDeviceAuthzPutUserCodeAndPressContinue(response.getUserCode(), currentDriver, false, pageConfig);
+        AuthorizationResponse authorizationResponse = processAuthorization(userId, userSecret, currentDriver);
+
+        stopWebDriver(false, currentDriver);
+        assertSuccessAuthzResponse(authorizationResponse);
+
+        // 4. Token request with a wrong device code
+        String wrongDeviceCode = "WRONG" + response.getDeviceCode();
+        TokenResponse tokenResponse1 = processTokens(clientId, clientSecret, wrongDeviceCode);
+        assertNotNull(tokenResponse1.getErrorType(), "Error expected, however no error was found");
+        assertNotNull(tokenResponse1.getErrorDescription(), "Error description expected, however no error was found");
+        assertEquals(tokenResponse1.getErrorType(), TokenErrorResponseType.EXPIRED_TOKEN, "Unexpected error");
+
+        // 5. Token request with a right device code value
+        tokenResponse1 = processTokens(clientId, clientSecret, response.getDeviceCode());
+        validateTokenSuccessfulResponse(tokenResponse1);
+
+        // 6. Try to get token again, however this should be rejected by the server
+        tokenResponse1 = processTokens(clientId, clientSecret, response.getDeviceCode());
+        assertNotNull(tokenResponse1.getErrorType(), "Error expected, however no error was found");
+        assertNotNull(tokenResponse1.getErrorDescription(), "Error description expected, however no error was found");
+        assertEquals(tokenResponse1.getErrorType(), TokenErrorResponseType.EXPIRED_TOKEN, "Unexpected error");
+    }
+
+    /**
+     * Process a complete device authorization flow using verification_uri_complete
+     */
+    @Parameters({"userId", "userSecret"})
+    @Test
+    public void deviceAuthzFlowWithCompleteVerificationUri(final String userId, final String userSecret) throws Exception {
+        showTitle("deviceAuthzFlow");
+
+        // 1. Init device authz request from WS
+        RegisterResponse registerResponse = DeviceAuthzRequestRegistrationTest.registerClientForDeviceAuthz(
+                AuthenticationMethod.CLIENT_SECRET_BASIC, Collections.singletonList(GrantType.DEVICE_CODE),
+                null, null, registrationEndpoint);
+        String clientId = registerResponse.getClientId();
+        String clientSecret = registerResponse.getClientSecret();
+
+        // 2. Device request registration
+        final List<String> scopes = Arrays.asList("openid", "profile", "address", "email", "phone", "user_name");
+        DeviceAuthzRequest deviceAuthzRequest = new DeviceAuthzRequest(clientId, scopes);
+        deviceAuthzRequest.setAuthUsername(clientId);
+        deviceAuthzRequest.setAuthPassword(clientSecret);
+
+        DeviceAuthzClient deviceAuthzClient = new DeviceAuthzClient(deviceAuthzEndpoint);
+        deviceAuthzClient.setRequest(deviceAuthzRequest);
+
+        DeviceAuthzResponse response = deviceAuthzClient.exec();
+
+        showClient(deviceAuthzClient);
+        DeviceAuthzRequestRegistrationTest.validateSuccessfulResponse(response);
+
+        // 3. Load device authz page, process user_code and authorization
+        WebDriver currentDriver = initWebDriver(false, true);
+        final PageConfig pageConfig = newPageConfig(currentDriver);
+        processDeviceAuthzPutUserCodeAndPressContinue(response.getUserCode(), currentDriver, true, pageConfig);
+        AuthorizationResponse authorizationResponse = processAuthorization(userId, userSecret, currentDriver);
+
+        stopWebDriver(false, currentDriver);
+        assertSuccessAuthzResponse(authorizationResponse);
+
+        // 4. Token request
+        TokenResponse tokenResponse1 = processTokens(clientId, clientSecret, response.getDeviceCode());
+        validateTokenSuccessfulResponse(tokenResponse1);
+
+        String refreshToken = tokenResponse1.getRefreshToken();
+        String idToken = tokenResponse1.getIdToken();
+
+        // 5. Validate id_token
+        verifyIdToken(idToken);
+
+        // 6. Request new access token using the refresh token.
+        TokenResponse tokenResponse2 = processNewTokenWithRefreshToken(StringUtils.implode(scopes, " "),
+                refreshToken, clientId, clientSecret);
+        validateTokenSuccessfulResponse(tokenResponse2);
+
+        String accessToken = tokenResponse2.getAccessToken();
+
+        // 7. Request user info
+        processUserInfo(accessToken);
+    }
+
+    /**
+     * Device authorization with access denied and using complete verification uri.
+     */
+    @Parameters({"userId", "userSecret"})
+    @Test
+    public void deviceAuthzFlowAccessDeniedWithCompleteVerificationUri(final String userId, final String userSecret) throws Exception {
+        showTitle("deviceAuthzFlowAccessDenied");
+
+        // 1. Init device authz request from WS
+        RegisterResponse registerResponse = DeviceAuthzRequestRegistrationTest.registerClientForDeviceAuthz(
+                AuthenticationMethod.CLIENT_SECRET_BASIC, Collections.singletonList(GrantType.DEVICE_CODE),
+                null, null, registrationEndpoint);
+        String clientId = registerResponse.getClientId();
+        String clientSecret = registerResponse.getClientSecret();
+
+        // 2. Device request registration
+        final List<String> scopes = Arrays.asList("openid", "profile", "address", "email", "phone", "user_name");
+        DeviceAuthzRequest deviceAuthzRequest = new DeviceAuthzRequest(clientId, scopes);
+        deviceAuthzRequest.setAuthUsername(clientId);
+        deviceAuthzRequest.setAuthPassword(clientSecret);
+
+        DeviceAuthzClient deviceAuthzClient = new DeviceAuthzClient(deviceAuthzEndpoint);
+        deviceAuthzClient.setRequest(deviceAuthzRequest);
+
+        DeviceAuthzResponse response = deviceAuthzClient.exec();
+
+        showClient(deviceAuthzClient);
+        DeviceAuthzRequestRegistrationTest.validateSuccessfulResponse(response);
+
+        // 3. Load device authz page, process user_code and authorization
+        WebDriver currentDriver = initWebDriver(false, true);
+        final PageConfig pageConfig = newPageConfig(currentDriver);
+        AuthorizationResponse authorizationResponse = processDeviceAuthzDenyAccess(userId, userSecret,
+                response.getUserCode(), currentDriver, true, pageConfig);
+
+        validateErrorResponse(authorizationResponse, AuthorizeErrorResponseType.ACCESS_DENIED);
+
+        // 4. Token request
+        TokenResponse tokenResponse = processTokens(clientId, clientSecret, response.getDeviceCode());
+        assertNotNull(tokenResponse.getErrorType(), "Error expected, however no error was found");
+        assertNotNull(tokenResponse.getErrorDescription(), "Error description expected, however no error was found");
+        assertEquals(tokenResponse.getErrorType(), TokenErrorResponseType.ACCESS_DENIED, "Unexpected error");
+    }
+
+    private void processUserInfo(String accessToken) throws UnrecoverableKeyException, NoSuchAlgorithmException,
+            KeyStoreException, KeyManagementException {
+        UserInfoClient userInfoClient = new UserInfoClient(userInfoEndpoint);
+        userInfoClient.setExecutor(clientEngine(true));
+        UserInfoResponse userInfoResponse = userInfoClient.execUserInfo(accessToken);
+
+        showClient(userInfoClient);
+        assertEquals(userInfoResponse.getStatus(), 200, "Unexpected response code: " + userInfoResponse.getStatus());
+        assertNotNull(userInfoResponse.getClaim(JwtClaimName.SUBJECT_IDENTIFIER));
+        assertNotNull(userInfoResponse.getClaim(JwtClaimName.NAME));
+        assertNotNull(userInfoResponse.getClaim(JwtClaimName.BIRTHDATE));
+        assertNotNull(userInfoResponse.getClaim(JwtClaimName.FAMILY_NAME));
+        assertNotNull(userInfoResponse.getClaim(JwtClaimName.GENDER));
+        assertNotNull(userInfoResponse.getClaim(JwtClaimName.GIVEN_NAME));
+        assertNotNull(userInfoResponse.getClaim(JwtClaimName.MIDDLE_NAME));
+        assertNotNull(userInfoResponse.getClaim(JwtClaimName.NICKNAME));
+        assertNotNull(userInfoResponse.getClaim(JwtClaimName.PICTURE));
+        assertNotNull(userInfoResponse.getClaim(JwtClaimName.PREFERRED_USERNAME));
+        assertNotNull(userInfoResponse.getClaim(JwtClaimName.PROFILE));
+        assertNotNull(userInfoResponse.getClaim(JwtClaimName.WEBSITE));
+        assertNotNull(userInfoResponse.getClaim(JwtClaimName.EMAIL));
+        assertNotNull(userInfoResponse.getClaim(JwtClaimName.EMAIL_VERIFIED));
+        assertNotNull(userInfoResponse.getClaim(JwtClaimName.PHONE_NUMBER));
+        assertNotNull(userInfoResponse.getClaim(JwtClaimName.PHONE_NUMBER_VERIFIED));
+        assertNotNull(userInfoResponse.getClaim(JwtClaimName.ADDRESS));
+        assertNotNull(userInfoResponse.getClaim(JwtClaimName.LOCALE));
+        assertNotNull(userInfoResponse.getClaim(JwtClaimName.ZONEINFO));
+        assertNotNull(userInfoResponse.getClaim(JwtClaimName.USER_NAME));
+        assertNull(userInfoResponse.getClaim("org_name"));
+        assertNull(userInfoResponse.getClaim("work_phone"));
+    }
+
+    private TokenResponse processNewTokenWithRefreshToken(String scopes, String refreshToken, String clientId,
+                                                          String clientSecret) throws UnrecoverableKeyException,
+            NoSuchAlgorithmException, KeyStoreException, KeyManagementException {
+        TokenClient tokenClient2 = new TokenClient(tokenEndpoint);
+        tokenClient2.setExecutor(clientEngine(true));
+        TokenResponse tokenResponse2 = tokenClient2.execRefreshToken(scopes, refreshToken, clientId, clientSecret);
+
+        showClient(tokenClient2);
+        assertEquals(tokenResponse2.getStatus(), 200, "Unexpected response code: " + tokenResponse2.getStatus());
+        assertNotNull(tokenResponse2.getEntity(), "The entity is null");
+        assertNotNull(tokenResponse2.getAccessToken(), "The access token is null");
+        assertNotNull(tokenResponse2.getTokenType(), "The token type is null");
+        assertNotNull(tokenResponse2.getRefreshToken(), "The refresh token is null");
+        assertNotNull(tokenResponse2.getScope(), "The scope is null");
+
+        return tokenResponse2;
+    }
+
+    private void verifyIdToken(String idToken) throws InvalidJwtException, UnrecoverableKeyException,
+            NoSuchAlgorithmException, KeyStoreException, KeyManagementException {
+        Jwt jwt = Jwt.parse(idToken);
+        assertNotNull(jwt.getHeader().getClaimAsString(JwtHeaderName.TYPE));
+        assertNotNull(jwt.getHeader().getClaimAsString(JwtHeaderName.ALGORITHM));
+        assertNotNull(jwt.getClaims().getClaimAsString(JwtClaimName.ISSUER));
+        assertNotNull(jwt.getClaims().getClaimAsString(JwtClaimName.AUDIENCE));
+        assertNotNull(jwt.getClaims().getClaimAsString(JwtClaimName.EXPIRATION_TIME));
+        assertNotNull(jwt.getClaims().getClaimAsString(JwtClaimName.ISSUED_AT));
+        assertNotNull(jwt.getClaims().getClaimAsString(JwtClaimName.SUBJECT_IDENTIFIER));
+        assertNotNull(jwt.getClaims().getClaimAsString(JwtClaimName.OX_OPENID_CONNECT_VERSION));
+
+        RSAPublicKey publicKey = JwkClient.getRSAPublicKey(
+                jwksUri,
+                jwt.getHeader().getClaimAsString(JwtHeaderName.KEY_ID), clientEngine(true));
+        RSASigner rsaSigner = new RSASigner(SignatureAlgorithm.RS256, publicKey);
+
+        assertTrue(rsaSigner.validate(jwt));
+    }
+
+    private TokenResponse processTokens(String clientId, String clientSecret, String deviceCode) {
+        TokenRequest tokenRequest = new TokenRequest(GrantType.DEVICE_CODE);
+        tokenRequest.setAuthUsername(clientId);
+        tokenRequest.setAuthPassword(clientSecret);;
+        tokenRequest.setAuthenticationMethod(AuthenticationMethod.CLIENT_SECRET_BASIC);
+        tokenRequest.setDeviceCode(deviceCode);
+
+        TokenClient tokenClient1 = newTokenClient(tokenRequest);
+        TokenResponse tokenResponse1 = tokenClient1.exec();
+
+        showClient(tokenClient1);
+
+        return tokenResponse1;
+    }
+
+    private void validateTokenSuccessfulResponse(TokenResponse tokenResponse) {
+        assertEquals(tokenResponse.getStatus(), 200, "Unexpected response code: " + tokenResponse.getStatus());
+        assertNotNull(tokenResponse.getEntity(), "The entity is null");
+        assertNotNull(tokenResponse.getAccessToken(), "The access token is null");
+        assertNotNull(tokenResponse.getExpiresIn(), "The expires in value is null");
+        assertNotNull(tokenResponse.getTokenType(), "The token type is null");
+        assertNotNull(tokenResponse.getRefreshToken(), "The refresh token is null");
+    }
+
+    private void assertSuccessAuthzResponse(final AuthorizationResponse authorizationResponse) {
+        assertNotNull(authorizationResponse.getCode());
+        assertNotNull(authorizationResponse.getState());
+        assertNull(authorizationResponse.getErrorType());
+    }
+
+    private void processDeviceAuthzPutUserCodeAndPressContinue(String userCode, WebDriver currentDriver,
+                                                               boolean complete, final PageConfig pageConfig) {
+        String deviceAuthzPageUrl = deviceAuthzEndpoint.replace("/restv1/device_authorization", "/device_authorization.htm")
+                + (complete ? "?user_code=" + userCode : "");
+        output("Device authz flow: page to navigate to put user_code:" + deviceAuthzPageUrl);
+
+        navigateToAuhorizationUrl(currentDriver, deviceAuthzPageUrl);
+
+        DeviceAuthzPage deviceAuthzPage = new DeviceAuthzPage(pageConfig);
+        if (!complete) {
+            deviceAuthzPage.fillUserCode(userCode);
+        }
+
+        deviceAuthzPage.clickContinueButton();
+    }
+
+    private AuthorizationResponse processAuthorization(String userId, String userSecret, WebDriver currentDriver) {
+        Wait<WebDriver> wait = new FluentWait<WebDriver>(driver)
+                .withTimeout(Duration.ofSeconds(PageConfig.WAIT_OPERATION_TIMEOUT))
+                .pollingEvery(Duration.ofMillis(500))
+                .ignoring(NoSuchElementException.class);
+
+        if (userSecret != null) {
+            final String previousUrl = currentDriver.getCurrentUrl();
+            WebElement loginButton = wait.until(d -> currentDriver.findElement(By.id(loginFormLoginButton)));
+
+            if (userId != null) {
+                WebElement usernameElement = currentDriver.findElement(By.id(loginFormUsername));
+                usernameElement.sendKeys(userId);
+            }
+
+            WebElement passwordElement = currentDriver.findElement(By.id(loginFormPassword));
+            passwordElement.sendKeys(userSecret);
+
+            loginButton.click();
+
+            if (ENABLE_REDIRECT_TO_LOGIN_PAGE) {
+                waitForPageSwitch(currentDriver, previousUrl);
+            }
+        }
+
+        acceptAuthorization(currentDriver, null);
+
+        String deviceAuthzResponseStr = currentDriver.getCurrentUrl();
+
+        output("Device authz redirection response url: " + deviceAuthzResponseStr);
+        return new AuthorizationResponse(deviceAuthzResponseStr);
+    }
+
+    private AuthorizationResponse processDeviceAuthzDenyAccess(String userId, String userSecret, String userCode,
+                                                               WebDriver currentDriver, boolean complete,
+                                                               final PageConfig pageConfig) {
+        String deviceAuthzPageUrl = deviceAuthzEndpoint.replace("/restv1/device_authorization", "/device_authorization.htm")
+                + (complete ? "?user_code=" + userCode : "");
+        output("Device authz flow: page to navigate to put user_code:" + deviceAuthzPageUrl);
+
+        navigateToAuhorizationUrl(currentDriver, deviceAuthzPageUrl);
+
+        DeviceAuthzPage deviceAuthzPage = new DeviceAuthzPage(pageConfig);
+
+        if (!complete) {
+            deviceAuthzPage.fillUserCode(userCode);
+        }
+        deviceAuthzPage.clickContinueButton();
+
+        Wait<WebDriver> wait = new FluentWait<WebDriver>(driver)
+                .withTimeout(Duration.ofSeconds(PageConfig.WAIT_OPERATION_TIMEOUT))
+                .pollingEvery(Duration.ofMillis(500))
+                .ignoring(NoSuchElementException.class);
+
+        if (userSecret != null) {
+            final String previousUrl = currentDriver.getCurrentUrl();
+
+            WebElement loginButton = wait.until(d -> currentDriver.findElement(By.id(loginFormLoginButton)));
+
+            LoginPage loginPage = new LoginPage(pageConfig);
+            loginPage.enterUsername(userId);
+            loginPage.enterPassword(userSecret);
+
+            loginButton.click();
+
+            if (ENABLE_REDIRECT_TO_LOGIN_PAGE) {
+                waitForPageSwitch(currentDriver, previousUrl);
+            }
+        }
+
+        denyAuthorization(currentDriver);
+
+        String deviceAuthzResponseStr = currentDriver.getCurrentUrl();
+        stopWebDriver(false, currentDriver);
+
+        output("Device authz redirection response url: " + deviceAuthzResponseStr);
+        return new AuthorizationResponse(deviceAuthzResponseStr);
+    }
+
+    protected void denyAuthorization(WebDriver currentDriver) {
+        String authorizationResponseStr = currentDriver.getCurrentUrl();
+
+        // Check for authorization form if client has no persistent authorization
+        if (!authorizationResponseStr.contains("#")) {
+            Wait<WebDriver> wait = new FluentWait<WebDriver>(driver)
+                    .withTimeout(Duration.ofSeconds(PageConfig.WAIT_OPERATION_TIMEOUT))
+                    .pollingEvery(Duration.ofMillis(500))
+                    .ignoring(NoSuchElementException.class);
+
+            WebElement doNotAllowButton = wait.until(d -> currentDriver.findElement(By.id(authorizeFormDoNotAllowButton)));
+            final String previousUrl2 = driver.getCurrentUrl();
+            doNotAllowButton.click();
+            waitForPageSwitch(driver, previousUrl2);
+        } else {
+            fail("The authorization form was expected to be shown.");
+        }
+    }
+
+    protected void validateErrorResponse(AuthorizationResponse response, AuthorizeErrorResponseType errorType) {
+        assertNotNull(response.getErrorType(), "Error expected, however no error was found");
+        assertNotNull(response.getErrorDescription(), "Error description expected, however no error was found");
+        assertEquals(response.getErrorType(), errorType, "Unexpected error");
+    }
+
+}
\ No newline at end of file
diff --git a/oxAuth/Client/src/test/java/org/gluu/oxauth/ws/rs/deviceauthz/DeviceAuthzRequestRegistrationTest.java b/oxAuth/Client/src/test/java/org/gluu/oxauth/ws/rs/deviceauthz/DeviceAuthzRequestRegistrationTest.java
new file mode 100644
index 00000000..03eb386a
--- /dev/null
+++ b/oxAuth/Client/src/test/java/org/gluu/oxauth/ws/rs/deviceauthz/DeviceAuthzRequestRegistrationTest.java
@@ -0,0 +1,273 @@
+/*
+ * oxAuth is available under the MIT License (2008). See http://opensource.org/licenses/MIT for full text.
+ *
+ * Copyright (c) 2014, Gluu
+ */
+
+package org.gluu.oxauth.ws.rs.deviceauthz;
+
+import static org.gluu.oxauth.model.util.StringUtils.EASY_TO_READ_CHARACTERS;
+import static org.testng.Assert.assertEquals;
+import static org.testng.Assert.assertNotNull;
+import static org.testng.Assert.assertNull;
+import static org.testng.Assert.assertTrue;
+
+import java.util.Arrays;
+import java.util.Collections;
+import java.util.List;
+
+import org.gluu.oxauth.BaseTest;
+import org.gluu.oxauth.client.DeviceAuthzClient;
+import org.gluu.oxauth.client.DeviceAuthzRequest;
+import org.gluu.oxauth.client.DeviceAuthzResponse;
+import org.gluu.oxauth.client.RegisterClient;
+import org.gluu.oxauth.client.RegisterRequest;
+import org.gluu.oxauth.client.RegisterResponse;
+import org.gluu.oxauth.model.authorize.DeviceAuthzErrorResponseType;
+import org.gluu.oxauth.model.common.AuthenticationMethod;
+import org.gluu.oxauth.model.common.GrantType;
+import org.gluu.oxauth.model.common.ResponseType;
+import org.gluu.oxauth.model.register.ApplicationType;
+import org.gluu.oxauth.model.util.StringUtils;
+import org.testng.annotations.Parameters;
+import org.testng.annotations.Test;
+
+/**
+ * Tests for WS used to register device authz requests.
+ */
+public class DeviceAuthzRequestRegistrationTest extends BaseTest {
+
+    /**
+     * Verifies normal flow with different scopes, AS should generate user_code, device_code and other data.
+     * It uses normal client_secret_basic authentication method.
+     */
+    @Test
+    public void deviceAuthzHappyFlow() {
+        showTitle("deviceAuthzHappyFlow");
+
+        // Register client
+        RegisterResponse registerResponse = registerClientForDeviceAuthz(AuthenticationMethod.CLIENT_SECRET_BASIC,
+                Collections.singletonList(GrantType.DEVICE_CODE), null, null, registrationEndpoint);
+        String clientId = registerResponse.getClientId();
+
+        // 1. OpenId, profile, address and email scopes
+        List<String> scopes = Arrays.asList("openid", "profile", "address", "email");
+        DeviceAuthzRequest authorizationRequest = new DeviceAuthzRequest(clientId, scopes);
+        authorizationRequest.setAuthUsername(clientId);
+        authorizationRequest.setAuthPassword(registerResponse.getClientSecret());
+
+        DeviceAuthzClient deviceAuthzClient = new DeviceAuthzClient(deviceAuthzEndpoint);
+        deviceAuthzClient.setRequest(authorizationRequest);
+
+        DeviceAuthzResponse response = deviceAuthzClient.exec();
+
+        showClient(deviceAuthzClient);
+        validateSuccessfulResponse(response);
+
+        // 2. Only openid scope
+        scopes = Collections.singletonList("openid");
+        authorizationRequest = new DeviceAuthzRequest(clientId, scopes);
+        authorizationRequest.setAuthUsername(clientId);
+        authorizationRequest.setAuthPassword(registerResponse.getClientSecret());
+
+        deviceAuthzClient = new DeviceAuthzClient(deviceAuthzEndpoint);
+        deviceAuthzClient.setRequest(authorizationRequest);
+
+        response = deviceAuthzClient.exec();
+
+        showClient(deviceAuthzClient);
+        validateSuccessfulResponse(response);
+    }
+
+    /**
+     * Verifies normal flow with different scopes, AS should generate user_code, device_code and other data.
+     * It uses normal none authentication method, therefore no client authentication is required.
+     */
+    @Test
+    public void deviceAuthzHappyFlowPublicClient() {
+        showTitle("deviceAuthzHappyFlowPublicClient");
+
+        // Register client
+        RegisterResponse registerResponse = registerClientForDeviceAuthz(AuthenticationMethod.NONE,
+                Collections.singletonList(GrantType.DEVICE_CODE), null, null, registrationEndpoint);
+        String clientId = registerResponse.getClientId();
+
+        // 1. OpenId, profile, address and email scopes
+        List<String> scopes = Arrays.asList("openid", "profile", "address", "email");
+        DeviceAuthzRequest authorizationRequest = new DeviceAuthzRequest(clientId, scopes);
+        authorizationRequest.setAuthenticationMethod(AuthenticationMethod.NONE);
+
+        DeviceAuthzClient deviceAuthzClient = new DeviceAuthzClient(deviceAuthzEndpoint);
+        deviceAuthzClient.setRequest(authorizationRequest);
+
+        DeviceAuthzResponse response = deviceAuthzClient.exec();
+
+        showClient(deviceAuthzClient);
+        validateSuccessfulResponse(response);
+
+        // 2. Only openid scope
+        scopes = Collections.singletonList("openid");
+        authorizationRequest = new DeviceAuthzRequest(clientId, scopes);
+        authorizationRequest.setAuthUsername(clientId);
+        authorizationRequest.setAuthPassword(registerResponse.getClientSecret());
+
+        deviceAuthzClient = new DeviceAuthzClient(deviceAuthzEndpoint);
+        deviceAuthzClient.setRequest(authorizationRequest);
+
+        response = deviceAuthzClient.exec();
+
+        showClient(deviceAuthzClient);
+        validateSuccessfulResponse(response);
+    }
+
+    /**
+     * Tests that the device authz request is rejected, since client doesnt support that grant type.
+     */
+    @Parameters({"redirectUris", "sectorIdentifierUri"})
+    @Test
+    public void deviceAuthzGrantTypeDoesntSupported(final String redirectUris, final String sectorIdentifierUri) {
+        showTitle("deviceAuthzGrantTypeDoesntSupported");
+
+        // Register client
+        RegisterResponse registerResponse = registerClientForDeviceAuthz(AuthenticationMethod.CLIENT_SECRET_BASIC,
+                Collections.singletonList(GrantType.AUTHORIZATION_CODE), redirectUris, sectorIdentifierUri, registrationEndpoint);
+        String clientId = registerResponse.getClientId();
+
+        // Device authz request registration
+        List<String> scopes = Arrays.asList("openid", "profile", "address", "email");
+        DeviceAuthzRequest authorizationRequest = new DeviceAuthzRequest(clientId, scopes);
+        authorizationRequest.setAuthUsername(clientId);
+        authorizationRequest.setAuthPassword(registerResponse.getClientSecret());
+
+        DeviceAuthzClient deviceAuthzClient = new DeviceAuthzClient(deviceAuthzEndpoint);
+        deviceAuthzClient.setRequest(authorizationRequest);
+
+        DeviceAuthzResponse response = deviceAuthzClient.exec();
+
+        showClient(deviceAuthzClient);
+        validateErrorResponse(response, 400, DeviceAuthzErrorResponseType.INVALID_GRANT);
+    }
+
+    /**
+     * AS should authenticate client requests, however these tests are trying to pass device authz requests with
+     * wrong client authn data.
+     */
+    @Test
+    public void deviceAuthzNoPublicClientHoweverIncorrectAuthSent() {
+        showTitle("deviceAuthzNoPublicClientHoweverIncorrectAuthSent");
+
+        // Register client
+        RegisterResponse registerResponse = registerClientForDeviceAuthz(AuthenticationMethod.CLIENT_SECRET_BASIC,
+                Collections.singletonList(GrantType.DEVICE_CODE), null, null, registrationEndpoint);
+        String clientId = registerResponse.getClientId();
+
+        // 1. No authentication data sent
+        List<String> scopes = Arrays.asList("openid", "profile", "address", "email");
+        DeviceAuthzRequest authorizationRequest = new DeviceAuthzRequest(clientId, scopes);
+        authorizationRequest.setAuthenticationMethod(AuthenticationMethod.NONE);
+
+        DeviceAuthzClient deviceAuthzClient = new DeviceAuthzClient(deviceAuthzEndpoint);
+        deviceAuthzClient.setRequest(authorizationRequest);
+
+        DeviceAuthzResponse response = deviceAuthzClient.exec();
+
+        showClient(deviceAuthzClient);
+        validateErrorResponse(response, 401, DeviceAuthzErrorResponseType.INVALID_CLIENT);
+
+        // 2. Invalid authentication
+        scopes = Arrays.asList("openid", "profile", "address", "email");
+        authorizationRequest = new DeviceAuthzRequest(clientId, scopes);
+        authorizationRequest.setAuthUsername(clientId);
+        authorizationRequest.setAuthPassword("invalid-client-id-" + System.currentTimeMillis());
+
+        deviceAuthzClient = new DeviceAuthzClient(deviceAuthzEndpoint);
+        deviceAuthzClient.setRequest(authorizationRequest);
+
+        response = deviceAuthzClient.exec();
+
+        showClient(deviceAuthzClient);
+        validateErrorResponse(response, 401, DeviceAuthzErrorResponseType.INVALID_CLIENT);
+    }
+
+    /**
+     * Client that doesnt require authn accept device authz requests even client sends authn data.
+     */
+    @Test
+    public void deviceAuthzPublicClientAndAuthSent() {
+        showTitle("deviceAuthzPublicClientAndAuthSent");
+
+        // Register client
+        RegisterResponse registerResponse = registerClientForDeviceAuthz(AuthenticationMethod.NONE,
+                Collections.singletonList(GrantType.DEVICE_CODE), null, null, registrationEndpoint);
+        String clientId = registerResponse.getClientId();
+
+        // Device authz request
+        List<String> scopes = Arrays.asList("openid", "profile", "address", "email");
+        DeviceAuthzRequest authorizationRequest = new DeviceAuthzRequest(clientId, scopes);
+        authorizationRequest.setAuthUsername(clientId);
+        authorizationRequest.setAuthPassword(registerResponse.getClientSecret());
+
+        DeviceAuthzClient deviceAuthzClient = new DeviceAuthzClient(deviceAuthzEndpoint);
+        deviceAuthzClient.setRequest(authorizationRequest);
+
+        DeviceAuthzResponse response = deviceAuthzClient.exec();
+
+        showClient(deviceAuthzClient);
+        validateSuccessfulResponse(response);
+    }
+
+    protected static RegisterResponse registerClientForDeviceAuthz(AuthenticationMethod authenticationMethod,
+                                                          List<GrantType> grantTypes, String redirectUris,
+                                                          String sectorIdentifierUri, String registrationEndpoint) {
+        List<ResponseType> responseTypes = Collections.singletonList(ResponseType.CODE);
+        List<String> scopes = Arrays.asList("openid", "profile", "address", "email", "phone", "user_name");
+
+        RegisterRequest registerRequest = new RegisterRequest(ApplicationType.WEB, "oxAuth test app",
+                StringUtils.spaceSeparatedToList(redirectUris));
+        registerRequest.setResponseTypes(responseTypes);
+        registerRequest.setGrantTypes(grantTypes);
+        registerRequest.setTokenEndpointAuthMethod(authenticationMethod);
+        registerRequest.setSectorIdentifierUri(sectorIdentifierUri);
+        registerRequest.setScope(scopes);
+
+        RegisterClient registerClient = new RegisterClient(registrationEndpoint);
+        registerClient.setRequest(registerRequest);
+        RegisterResponse registerResponse = registerClient.exec();
+
+        showClient(registerClient);
+        assertEquals(registerResponse.getStatus(), 200, "Unexpected response code: " + registerResponse.getEntity());
+        assertNotNull(registerResponse.getClientId());
+        assertNotNull(registerResponse.getClientSecret());
+        assertNotNull(registerResponse.getRegistrationAccessToken());
+        assertNotNull(registerResponse.getClientIdIssuedAt());
+        assertNotNull(registerResponse.getClientSecretExpiresAt());
+
+        return registerResponse;
+    }
+
+    protected static void validateSuccessfulResponse(DeviceAuthzResponse response) {
+        final String regex = "[" + EASY_TO_READ_CHARACTERS + "]{4}-[" + EASY_TO_READ_CHARACTERS + "]{4}";
+        assertEquals(response.getStatus(), 200, "Unexpected response code: " + response.getEntity());
+        assertNotNull(response.getUserCode(), "User code is null");
+        assertNotNull(response.getDeviceCode(), "Device code is null");
+        assertNotNull(response.getInterval(), "Interval is null");
+        assertTrue(response.getInterval() > 0, "Interval is null");
+        assertNotNull(response.getVerificationUri(), "Verification Uri is null");
+        assertNotNull(response.getVerificationUriComplete(), "Verification Uri complete is null");
+        assertTrue(response.getVerificationUri().length() > 10, "Invalid verification_uri");
+        assertTrue(response.getVerificationUriComplete().length() > 10, "Invalid verification_uri_complete");
+        assertNotNull(response.getExpiresIn(), "expires_in is null");
+        assertTrue(response.getExpiresIn() > 0, "expires_in contains an invalid value");
+        assertTrue(response.getUserCode().matches(regex));
+    }
+
+    protected static void validateErrorResponse(DeviceAuthzResponse response, int status, DeviceAuthzErrorResponseType errorType) {
+        assertEquals(response.getStatus(), status, "Unexpected response code: " + response.getEntity());
+        assertNotNull(response.getErrorType(), "Error expected, however no error was found");
+        assertNotNull(response.getErrorDescription(), "Error description expected, however no error was found");
+        assertEquals(response.getErrorType(), errorType, "Unexpected error");
+        assertNull(response.getUserCode(), "User code must not be null");
+        assertNull(response.getDeviceCode(), "Device code must not be null");
+    }
+
+}
\ No newline at end of file
diff --git a/oxAuth/Client/src/test/java/org/gluu/oxauth/ws/rs/internal/StatWSTest.java b/oxAuth/Client/src/test/java/org/gluu/oxauth/ws/rs/internal/StatWSTest.java
new file mode 100644
index 00000000..5a48f95e
--- /dev/null
+++ b/oxAuth/Client/src/test/java/org/gluu/oxauth/ws/rs/internal/StatWSTest.java
@@ -0,0 +1,38 @@
+package org.gluu.oxauth.ws.rs.internal;
+
+import static org.testng.Assert.assertTrue;
+
+import org.gluu.oxauth.BaseTest;
+import org.gluu.oxauth.client.service.ClientFactory;
+import org.gluu.oxauth.client.service.StatService;
+import org.gluu.oxauth.client.uma.wrapper.UmaClient;
+import org.gluu.oxauth.model.uma.wrapper.Token;
+import org.testng.annotations.Parameters;
+import org.testng.annotations.Test;
+
+import com.fasterxml.jackson.databind.JsonNode;
+
+/**
+ * @author Yuriy Zabrovarnyy
+ */
+public class StatWSTest extends BaseTest {
+
+    @Test(enabled = false)
+    @Parameters({"umaPatClientId", "umaPatClientSecret"})
+    public void stat(final String umaPatClientId, final String umaPatClientSecret) throws Exception {
+        final Token authorization = UmaClient.requestPat(tokenEndpoint, umaPatClientId, umaPatClientSecret);
+
+        final StatService service = ClientFactory.instance().createStatService(issuer + "/oxauth/restv1/internal/stat");
+        final JsonNode node = service.stat("Bearer " + authorization.getAccessToken(), "202101", null);
+        assertTrue(node != null && node.hasNonNull("response"));
+    }
+
+    @Test(enabled = false)
+    @Parameters({"umaPatClientId", "umaPatClientSecret"})
+    public void statPost(final String umaPatClientId, final String umaPatClientSecret) throws Exception {
+        final Token authorization = UmaClient.requestPat(tokenEndpoint, umaPatClientId, umaPatClientSecret);
+        final StatService service = ClientFactory.instance().createStatService(issuer + "/oxauth/restv1/internal/stat");
+        final JsonNode node = service.statPost(authorization.getAccessToken(), "202101", null);
+        assertTrue(node != null && node.hasNonNull("response"));
+    }
+}
diff --git a/oxAuth/Client/src/test/java/org/gluu/oxauth/ws/rs/uma/AccessProtectedResourceFlowHttpTest.java b/oxAuth/Client/src/test/java/org/gluu/oxauth/ws/rs/uma/AccessProtectedResourceFlowHttpTest.java
new file mode 100644
index 00000000..12b0452e
--- /dev/null
+++ b/oxAuth/Client/src/test/java/org/gluu/oxauth/ws/rs/uma/AccessProtectedResourceFlowHttpTest.java
@@ -0,0 +1,207 @@
+/*
+ * oxAuth is available under the MIT License (2008). See http://opensource.org/licenses/MIT for full text.
+ *
+ * Copyright (c) 2014, Gluu
+ */
+
+package org.gluu.oxauth.ws.rs.uma;
+
+import static org.gluu.oxauth.model.uma.UmaTestUtil.assert_;
+import static org.testng.Assert.assertEquals;
+import static org.testng.Assert.assertTrue;
+
+import java.io.UnsupportedEncodingException;
+
+import javax.ws.rs.ClientErrorException;
+import javax.ws.rs.core.Response;
+
+import org.apache.commons.codec.binary.Base64;
+import org.apache.commons.lang.StringUtils;
+import org.gluu.oxauth.BaseTest;
+import org.gluu.oxauth.client.uma.UmaClientFactory;
+import org.gluu.oxauth.client.uma.UmaRptIntrospectionService;
+import org.gluu.oxauth.client.uma.UmaTokenService;
+import org.gluu.oxauth.client.uma.wrapper.UmaClient;
+import org.gluu.oxauth.model.common.GrantType;
+import org.gluu.oxauth.model.uma.UmaMetadata;
+import org.gluu.oxauth.model.uma.UmaNeedInfoResponse;
+import org.gluu.oxauth.model.uma.UmaTokenResponse;
+import org.gluu.oxauth.model.uma.wrapper.Token;
+import org.gluu.oxauth.model.util.Util;
+import org.openqa.selenium.By;
+import org.testng.annotations.BeforeClass;
+import org.testng.annotations.Parameters;
+import org.testng.annotations.Test;
+
+/**
+ * Test flow for the accessing protected resource (HTTP)
+ *
+ * @author Yuriy Zabrovarnyy
+ * @author Yuriy Movchan
+ */
+public class AccessProtectedResourceFlowHttpTest extends BaseTest {
+
+    protected UmaMetadata metadata;
+
+    protected RegisterResourceFlowHttpTest registerResourceTest;
+    protected UmaRegisterPermissionFlowHttpTest permissionFlowTest;
+
+    protected UmaRptIntrospectionService rptStatusService;
+    protected UmaTokenService tokenService;
+
+    protected Token pat;
+    protected String rpt;
+    protected UmaNeedInfoResponse needInfo;
+    protected String claimsGatheringTicket;
+
+    @BeforeClass
+    @Parameters({"umaMetaDataUrl", "umaPatClientId", "umaPatClientSecret"})
+    public void init(final String umaMetaDataUrl, final String umaPatClientId, final String umaPatClientSecret) throws Exception {
+        this.metadata = UmaClientFactory.instance().createMetadataService(umaMetaDataUrl, clientEngine(true)).getMetadata();
+        assert_(this.metadata);
+
+        pat = UmaClient.requestPat(tokenEndpoint, umaPatClientId, umaPatClientSecret, clientEngine(true));
+        assert_(pat);
+
+        this.registerResourceTest = new RegisterResourceFlowHttpTest(this.metadata);
+        this.registerResourceTest.pat = this.pat;
+
+        this.permissionFlowTest = new UmaRegisterPermissionFlowHttpTest(this.metadata);
+        this.permissionFlowTest.registerResourceTest = this.registerResourceTest;
+
+        this.rptStatusService = UmaClientFactory.instance().createRptStatusService(metadata, clientEngine(true));
+        this.tokenService = UmaClientFactory.instance().createTokenService(metadata, clientEngine(true));
+    }
+
+    /**
+     * Register resource
+     */
+    @Test
+    public void registerResource() throws Exception {
+        showTitle("registerResource");
+        this.registerResourceTest.addResource();
+    }
+
+    /**
+     * RS registers permissions for specific resource.
+     */
+    @Test(dependsOnMethods = {"registerResource"})
+    public void rsRegisterPermissions() throws Exception {
+        showTitle("rsRegisterPermissions");
+        permissionFlowTest.testRegisterPermission();
+    }
+
+    /**
+     * RP requests RPT with ticket and gets needs_info error (not all claims are provided, so redirect to claims-gathering endpoint)
+     */
+    @Test(dependsOnMethods = {"rsRegisterPermissions"})
+    @Parameters({"umaPatClientId", "umaPatClientSecret"})
+    public void requestRptAndGetNeedsInfo(String umaPatClientId, String umaPatClientSecret) throws Exception {
+        showTitle("requestRptAndGetNeedsInfo");
+
+        try {
+            tokenService.requestRpt(
+                    "Basic " + encodeCredentials(umaPatClientId, umaPatClientSecret),
+                    GrantType.OXAUTH_UMA_TICKET.getValue(),
+                    permissionFlowTest.ticket,
+                    null, null, null, null, null);
+        } catch (ClientErrorException ex) {
+            // expected need_info error :
+            // sample:  {"error":"need_info","ticket":"c024311b-f451-41db-95aa-cd405f16eed4","required_claims":[{"issuer":["https://localhost:8443"],"name":"country","claim_token_format":["http://openid.net/specs/openid-connect-core-1_0.html#IDToken"],"claim_type":"string","friendly_name":"country"},{"issuer":["https://localhost:8443"],"name":"city","claim_token_format":["http://openid.net/specs/openid-connect-core-1_0.html#IDToken"],"claim_type":"string","friendly_name":"city"}],"redirect_user":"https://localhost:8443/restv1/uma/gather_claimsgathering_id=sampleClaimsGathering&&?gathering_id=sampleClaimsGathering&&"}
+            String entity = (String) ex.getResponse().readEntity(String.class);
+            System.out.println(entity);
+
+            assertEquals(ex.getResponse().getStatus(), Response.Status.FORBIDDEN.getStatusCode(), "Unexpected response status");
+
+            needInfo = Util.createJsonMapper().readValue(entity, UmaNeedInfoResponse.class);
+            assert_(needInfo);
+            return;
+        }
+
+        throw new AssertionError("need_info error was not returned");
+    }
+
+
+    @Test(dependsOnMethods = {"requestRptAndGetNeedsInfo"})
+    @Parameters({"umaPatClientId"})
+    public void claimsGathering(String umaPatClientId) throws Exception {
+        String gatheringUrl = needInfo.buildClaimsGatheringUrl(umaPatClientId, this.metadata.getClaimsInteractionEndpoint());
+
+        System.out.println(gatheringUrl);
+        System.out.println();
+        try {
+            startSelenium();
+            navigateToAuhorizationUrl(driver, gatheringUrl);
+            System.out.println(driver.getCurrentUrl());
+
+            driver.findElement(By.id("loginForm:country")).sendKeys("US");
+            driver.findElement(By.id("loginForm:gather")).click();
+
+            Thread.sleep(1000);
+            System.out.println(driver.getCurrentUrl());
+
+            driver.findElement(By.id("loginForm:city")).sendKeys("NY");
+            driver.findElement(By.id("loginForm:gather")).click();
+            Thread.sleep(1200);
+            // Finally after claims-redirect flow user gets redirect with new ticket
+            // Sample: https://client.example.com/cb?ticket=e8e7bc0b-75de-4939-a9b1-2425dab3d5ec
+            System.out.println(driver.getCurrentUrl());
+            claimsGatheringTicket = StringUtils.substringAfter(driver.getCurrentUrl(), "ticket=");
+        } finally {
+            stopSelenium();
+        }
+    }
+
+    /**
+     * Request RPT with all claims provided
+     */
+    @Test(dependsOnMethods = {"claimsGathering"})
+    @Parameters({"umaPatClientId", "umaPatClientSecret"})
+    public void successfulRptRequest(String umaPatClientId, String umaPatClientSecret) throws Exception {
+        showTitle("successfulRptRequest");
+
+        UmaTokenResponse response = tokenService.requestRpt(
+                "Basic " + encodeCredentials(umaPatClientId, umaPatClientSecret),
+                GrantType.OXAUTH_UMA_TICKET.getValue(),
+                claimsGatheringTicket,
+                null, null, null, null, null);
+        assert_(response);
+
+        this.rpt = response.getAccessToken();
+    }
+
+    @Test(dependsOnMethods = {"successfulRptRequest"})
+    @Parameters({"umaPatClientId", "umaPatClientSecret"})
+    public void repeatRptRequest(String umaPatClientId, String umaPatClientSecret) throws Exception {
+        showTitle("repeatRptRequest");
+        rsRegisterPermissions();
+        requestRptAndGetNeedsInfo(umaPatClientId, umaPatClientSecret);
+        claimsGathering(umaPatClientId);
+
+        showTitle("Request RPT with existing RPT (upgrade case) ... ");
+
+        UmaTokenResponse response = tokenService.requestRpt(
+                "Basic " + encodeCredentials(umaPatClientId, umaPatClientSecret),
+                GrantType.OXAUTH_UMA_TICKET.getValue(),
+                claimsGatheringTicket,
+                null, null, null, this.rpt, "oxd");
+        assert_(response);
+        assertTrue(response.getUpgraded());
+
+        this.rpt = response.getAccessToken();
+    }
+
+    /**
+     * RPT status request
+     */
+    @Test(dependsOnMethods = {"repeatRptRequest"})
+    @Parameters()
+    public void rptStatus() throws Exception {
+        showTitle("rptStatus");
+        assert_(this.rptStatusService.requestRptStatus("Bearer " + pat.getAccessToken(), rpt, ""));
+    }
+
+    public static String encodeCredentials(String username, String password) throws UnsupportedEncodingException {
+        return Base64.encodeBase64String(Util.getBytes(username + ":" + password));
+    }
+}
\ No newline at end of file
diff --git a/oxAuth/Client/src/test/java/org/gluu/oxauth/ws/rs/uma/ClientAuthenticationByAccessTokenHttpTest.java b/oxAuth/Client/src/test/java/org/gluu/oxauth/ws/rs/uma/ClientAuthenticationByAccessTokenHttpTest.java
new file mode 100644
index 00000000..758db113
--- /dev/null
+++ b/oxAuth/Client/src/test/java/org/gluu/oxauth/ws/rs/uma/ClientAuthenticationByAccessTokenHttpTest.java
@@ -0,0 +1,238 @@
+package org.gluu.oxauth.ws.rs.uma;
+
+import static org.gluu.oxauth.model.uma.UmaTestUtil.assert_;
+import static org.testng.Assert.assertEquals;
+import static org.testng.Assert.assertNotNull;
+
+import java.util.Arrays;
+import java.util.Collections;
+import java.util.List;
+import java.util.UUID;
+
+import javax.ws.rs.ClientErrorException;
+import javax.ws.rs.core.Response;
+
+import org.gluu.oxauth.BaseTest;
+import org.gluu.oxauth.client.AuthorizationRequest;
+import org.gluu.oxauth.client.AuthorizationResponse;
+import org.gluu.oxauth.client.AuthorizeClient;
+import org.gluu.oxauth.client.RegisterClient;
+import org.gluu.oxauth.client.RegisterRequest;
+import org.gluu.oxauth.client.RegisterResponse;
+import org.gluu.oxauth.client.TokenClient;
+import org.gluu.oxauth.client.TokenRequest;
+import org.gluu.oxauth.client.TokenResponse;
+import org.gluu.oxauth.client.uma.UmaClientFactory;
+import org.gluu.oxauth.client.uma.UmaRptIntrospectionService;
+import org.gluu.oxauth.client.uma.UmaTokenService;
+import org.gluu.oxauth.client.uma.wrapper.UmaClient;
+import org.gluu.oxauth.model.common.AuthenticationMethod;
+import org.gluu.oxauth.model.common.GrantType;
+import org.gluu.oxauth.model.common.Prompt;
+import org.gluu.oxauth.model.common.ResponseType;
+import org.gluu.oxauth.model.jwt.Jwt;
+import org.gluu.oxauth.model.jwt.JwtClaimName;
+import org.gluu.oxauth.model.jwt.JwtHeaderName;
+import org.gluu.oxauth.model.register.ApplicationType;
+import org.gluu.oxauth.model.uma.UmaMetadata;
+import org.gluu.oxauth.model.uma.UmaNeedInfoResponse;
+import org.gluu.oxauth.model.uma.wrapper.Token;
+import org.gluu.oxauth.model.util.Util;
+import org.testng.annotations.BeforeClass;
+import org.testng.annotations.Parameters;
+import org.testng.annotations.Test;
+
+/**
+ * @author yuriyz
+ */
+public class ClientAuthenticationByAccessTokenHttpTest extends BaseTest {
+
+    public static final String REDIRECT_URI = "https://client.example.com/cb3";
+    protected UmaMetadata metadata;
+
+    protected RegisterResourceFlowHttpTest registerResourceTest;
+    protected UmaRegisterPermissionFlowHttpTest permissionFlowTest;
+
+    protected UmaRptIntrospectionService rptStatusService;
+    protected UmaTokenService tokenService;
+
+    protected Token pat;
+    protected UmaNeedInfoResponse needInfo;
+
+    protected String clientId;
+    protected String clientSecret;
+    protected String userAccessToken;
+
+    @BeforeClass
+    @Parameters({"umaMetaDataUrl", "umaPatClientId", "umaPatClientSecret"})
+    public void init(final String umaMetaDataUrl, final String umaPatClientId, final String umaPatClientSecret) throws Exception {
+        this.metadata = UmaClientFactory.instance().createMetadataService(umaMetaDataUrl, clientEngine(true)).getMetadata();
+        assert_(this.metadata);
+
+        pat = UmaClient.requestPat(tokenEndpoint, umaPatClientId, umaPatClientSecret, clientEngine(true));
+        assert_(pat);
+
+        this.registerResourceTest = new RegisterResourceFlowHttpTest(this.metadata);
+        this.registerResourceTest.pat = this.pat;
+
+        this.permissionFlowTest = new UmaRegisterPermissionFlowHttpTest(this.metadata);
+        this.permissionFlowTest.registerResourceTest = this.registerResourceTest;
+
+        this.rptStatusService = UmaClientFactory.instance().createRptStatusService(metadata, clientEngine(true));
+        this.tokenService = UmaClientFactory.instance().createTokenService(metadata, clientEngine(true));
+    }
+
+    @Test
+    public void requestClientRegistrationWithCustomAttributes() throws Exception {
+        showTitle("requestClientRegistrationWithCustomAttributes");
+
+        List<ResponseType> responseTypes = Arrays.asList(
+                ResponseType.CODE,
+                ResponseType.TOKEN,
+                ResponseType.ID_TOKEN);
+        List<GrantType> grantTypes = Arrays.asList(
+                GrantType.RESOURCE_OWNER_PASSWORD_CREDENTIALS
+        );
+
+        RegisterRequest registerRequest = new RegisterRequest(ApplicationType.WEB, "oxAuth test app", Collections.singletonList(REDIRECT_URI));
+        registerRequest.setResponseTypes(responseTypes);
+        registerRequest.setGrantTypes(grantTypes);
+        registerRequest.setAuthenticationMethod(AuthenticationMethod.CLIENT_SECRET_BASIC);
+        registerRequest.addCustomAttribute("oxAuthTrustedClient", "true");
+
+        RegisterClient registerClient = new RegisterClient(registrationEndpoint);
+        registerClient.setExecutor(clientEngine(true));
+        registerClient.setRequest(registerRequest);
+        RegisterResponse response = registerClient.exec();
+
+        showClient(registerClient);
+        assertEquals(response.getStatus(), 200, "Unexpected response code: " + response.getEntity());
+        assertNotNull(response.getClientId());
+        assertNotNull(response.getClientSecret());
+        assertNotNull(response.getRegistrationAccessToken());
+        assertNotNull(response.getClientSecretExpiresAt());
+
+        clientId = response.getClientId();
+        clientSecret = response.getClientSecret();
+    }
+
+    @Parameters({"userId", "userSecret"})
+    @Test(dependsOnMethods = "requestClientRegistrationWithCustomAttributes")
+    public void requestAccessTokenCustomClientAuth1(final String userId, final String userSecret) throws Exception {
+        showTitle("requestAccessTokenCustomClientAuth1");
+
+        // 1. Request authorization and receive the authorization code.
+        List<ResponseType> responseTypes = Arrays.asList(
+                ResponseType.CODE,
+                ResponseType.ID_TOKEN);
+        List<String> scopes = Arrays.asList("openid", "profile", "address", "email");
+
+        String state = UUID.randomUUID().toString();
+        String nonce = UUID.randomUUID().toString();
+
+        AuthorizationRequest authorizationRequest = new AuthorizationRequest(responseTypes, clientId, scopes, REDIRECT_URI, nonce);
+        authorizationRequest.setState(state);
+        authorizationRequest.setAuthUsername(userId);
+        authorizationRequest.setAuthPassword(userSecret);
+        authorizationRequest.getPrompts().add(Prompt.NONE);
+
+        AuthorizeClient authorizeClient = new AuthorizeClient(authorizationEndpoint);
+        authorizeClient.setExecutor(clientEngine(true));
+        authorizeClient.setRequest(authorizationRequest);
+        AuthorizationResponse authorizationResponse = authorizeClient.exec();
+
+        showClient(authorizeClient);
+        assertEquals(authorizationResponse.getStatus(), 302, "Unexpected response code: " + authorizationResponse.getStatus());
+        assertNotNull(authorizationResponse.getLocation(), "The location is null");
+        assertNotNull(authorizationResponse.getCode(), "The code is null");
+        assertNotNull(authorizationResponse.getIdToken(), "The idToken is null");
+        assertNotNull(authorizationResponse.getState(), "The state is null");
+
+        String authorizationCode = authorizationResponse.getCode();
+        String idToken = authorizationResponse.getIdToken();
+
+        // 2. Validate code and id_token
+        Jwt jwt = Jwt.parse(idToken);
+        assertNotNull(jwt.getHeader().getClaimAsString(JwtHeaderName.TYPE));
+        assertNotNull(jwt.getHeader().getClaimAsString(JwtHeaderName.ALGORITHM));
+        assertNotNull(jwt.getClaims().getClaimAsString(JwtClaimName.ISSUER));
+        assertNotNull(jwt.getClaims().getClaimAsString(JwtClaimName.AUDIENCE));
+        assertNotNull(jwt.getClaims().getClaimAsString(JwtClaimName.EXPIRATION_TIME));
+        assertNotNull(jwt.getClaims().getClaimAsString(JwtClaimName.ISSUED_AT));
+        assertNotNull(jwt.getClaims().getClaimAsString(JwtClaimName.SUBJECT_IDENTIFIER));
+        assertNotNull(jwt.getClaims().getClaimAsString(JwtClaimName.CODE_HASH));
+        assertNotNull(jwt.getClaims().getClaimAsString(JwtClaimName.AUTHENTICATION_TIME));
+
+        // 3. Request access token using the authorization code.
+        TokenRequest tokenRequest = new TokenRequest(GrantType.AUTHORIZATION_CODE);
+        tokenRequest.setCode(authorizationCode);
+        tokenRequest.setRedirectUri(REDIRECT_URI);
+        tokenRequest.setAuthenticationMethod(AuthenticationMethod.CLIENT_SECRET_BASIC);
+        tokenRequest.setAuthUsername(clientId);
+        tokenRequest.setAuthPassword(clientSecret);
+
+        TokenClient tokenClient = new TokenClient(tokenEndpoint);
+        tokenClient.setExecutor(clientEngine(true));
+        tokenClient.setRequest(tokenRequest);
+        TokenResponse tokenResponse = tokenClient.exec();
+
+        showClient(tokenClient);
+        assertEquals(tokenResponse.getStatus(), 200, "Unexpected response code: " + tokenResponse.getStatus());
+        assertNotNull(tokenResponse.getEntity(), "The entity is null");
+        assertNotNull(tokenResponse.getAccessToken(), "The access token is null");
+        assertNotNull(tokenResponse.getExpiresIn(), "The expires in value is null");
+        assertNotNull(tokenResponse.getTokenType(), "The token type is null");
+        assertNotNull(tokenResponse.getRefreshToken(), "The refresh token is null");
+
+        userAccessToken = tokenResponse.getAccessToken();
+    }
+
+    /**
+     * Register resource
+     */
+    @Test(dependsOnMethods = "requestAccessTokenCustomClientAuth1")
+    public void registerResource() throws Exception {
+        showTitle("registerResource");
+        this.registerResourceTest.addResource();
+    }
+
+    /**
+     * RS registers permissions for specific resource.
+     */
+    @Test(dependsOnMethods = {"registerResource"})
+    public void rsRegisterPermissions() throws Exception {
+        showTitle("rsRegisterPermissions");
+        permissionFlowTest.testRegisterPermission();
+    }
+
+    /**
+     * RP requests RPT with ticket and gets needs_info error (not all claims are provided, so redirect to claims-gathering endpoint)
+     */
+    @Test(dependsOnMethods = {"rsRegisterPermissions"})
+    public void requestRptAndGetNeedsInfo() throws Exception {
+        showTitle("requestRptAndGetNeedsInfo");
+
+        try {
+            tokenService.requestRpt(
+                    "AccessToken " + userAccessToken,
+                    GrantType.OXAUTH_UMA_TICKET.getValue(),
+                    permissionFlowTest.ticket,
+                    null, null, null, null, null);
+        } catch (ClientErrorException ex) {
+            // expected need_info error :
+            // sample:  {"error":"need_info","ticket":"c024311b-f451-41db-95aa-cd405f16eed4","required_claims":[{"issuer":["https://localhost:8443"],"name":"country","claim_token_format":["http://openid.net/specs/openid-connect-core-1_0.html#IDToken"],"claim_type":"string","friendly_name":"country"},{"issuer":["https://localhost:8443"],"name":"city","claim_token_format":["http://openid.net/specs/openid-connect-core-1_0.html#IDToken"],"claim_type":"string","friendly_name":"city"}],"redirect_user":"https://localhost:8443/restv1/uma/gather_claimsgathering_id=sampleClaimsGathering&&?gathering_id=sampleClaimsGathering&&"}
+            String entity = (String) ex.getResponse().readEntity(String.class);
+            System.out.println(entity);
+
+            assertEquals(ex.getResponse().getStatus(), Response.Status.FORBIDDEN.getStatusCode(), "Unexpected response status");
+
+            needInfo = Util.createJsonMapper().readValue(entity, UmaNeedInfoResponse.class);
+            assert_(needInfo);
+            return;
+        }
+
+        // Expected result is to get need_info error. It means that client was authenticated successfully.
+        // If client fails to authenticate then we will get `401` invalid client error.
+        throw new AssertionError("need_info error was not returned");
+    }
+}
\ No newline at end of file
diff --git a/oxAuth/Client/src/test/java/org/gluu/oxauth/ws/rs/uma/MetaDataFlowHttpTest.java b/oxAuth/Client/src/test/java/org/gluu/oxauth/ws/rs/uma/MetaDataFlowHttpTest.java
new file mode 100644
index 00000000..7b0029a1
--- /dev/null
+++ b/oxAuth/Client/src/test/java/org/gluu/oxauth/ws/rs/uma/MetaDataFlowHttpTest.java
@@ -0,0 +1,48 @@
+/*
+ * oxAuth is available under the MIT License (2008). See http://opensource.org/licenses/MIT for full text.
+ *
+ * Copyright (c) 2014, Gluu
+ */
+
+package org.gluu.oxauth.ws.rs.uma;
+
+import javax.ws.rs.ClientErrorException;
+
+import org.gluu.oxauth.BaseTest;
+import org.gluu.oxauth.client.uma.UmaClientFactory;
+import org.gluu.oxauth.client.uma.UmaMetadataService;
+import org.gluu.oxauth.model.uma.UmaMetadata;
+import org.gluu.oxauth.model.uma.UmaTestUtil;
+import org.testng.annotations.Parameters;
+import org.testng.annotations.Test;
+
+/**
+ * Test cases for getting meta data configuration flow (HTTP)
+ *
+ * @author Yuriy Movchan Date: 11/05/2012
+ */
+public class MetaDataFlowHttpTest extends BaseTest {
+
+    /**
+     * Test for getting meta data configuration
+     */
+    @Test
+    @Parameters({"umaMetaDataUrl"})
+    public void testGetUmaMetaDataConfiguration(final String umaMetaDataUrl) throws Exception {
+        showTitle("testGetUmaMetaDataConfiguration");
+
+        UmaMetadataService metaDataConfigurationService = UmaClientFactory.instance().createMetadataService(umaMetaDataUrl, clientEngine(true));
+
+        // Get meta data
+        UmaMetadata c = null;
+        try {
+            c = metaDataConfigurationService.getMetadata();
+        } catch (ClientErrorException ex) {
+            System.err.println(ex.getResponse().readEntity(String.class));
+            throw ex;
+        }
+
+        UmaTestUtil.assert_(c);
+    }
+
+}
\ No newline at end of file
diff --git a/oxAuth/Client/src/test/java/org/gluu/oxauth/ws/rs/uma/ObtainPatTokenFlowHttpTest.java b/oxAuth/Client/src/test/java/org/gluu/oxauth/ws/rs/uma/ObtainPatTokenFlowHttpTest.java
new file mode 100644
index 00000000..1c951d2c
--- /dev/null
+++ b/oxAuth/Client/src/test/java/org/gluu/oxauth/ws/rs/uma/ObtainPatTokenFlowHttpTest.java
@@ -0,0 +1,62 @@
+/*
+ * oxAuth is available under the MIT License (2008). See http://opensource.org/licenses/MIT for full text.
+ *
+ * Copyright (c) 2014, Gluu
+ */
+
+package org.gluu.oxauth.ws.rs.uma;
+
+import static org.testng.Assert.assertEquals;
+import static org.testng.Assert.assertNotNull;
+
+import org.gluu.oxauth.BaseTest;
+import org.gluu.oxauth.client.TokenClient;
+import org.gluu.oxauth.client.TokenResponse;
+import org.gluu.oxauth.client.uma.wrapper.UmaClient;
+import org.gluu.oxauth.model.uma.UmaTestUtil;
+import org.gluu.oxauth.model.uma.wrapper.Token;
+import org.testng.annotations.Parameters;
+import org.testng.annotations.Test;
+
+/**
+ * Test cases for the obtaining UMA PAT token flow (HTTP)
+ *
+ * @author Yuriy Movchan Date: 10/03/2012
+ */
+public class ObtainPatTokenFlowHttpTest extends BaseTest {
+
+    protected Token m_pat;
+
+    /**
+     * Test for the obtaining UMA PAT token
+     */
+    @Test
+    @Parameters({"umaPatClientId", "umaPatClientSecret"})
+    public void testObtainPatTokenFlow(final String umaPatClientId, final String umaPatClientSecret) throws Exception {
+        showTitle("testObtainPatTokenFlow");
+
+        m_pat = UmaClient.requestPat(tokenEndpoint, umaPatClientId, umaPatClientSecret);
+        UmaTestUtil.assert_(m_pat);
+    }
+
+    /**
+     * Test for the obtaining UMA PAT token using refresh token
+     */
+    //@Test(dependsOnMethods = {"testObtainPatTokenFlow"})
+    @Parameters({"umaPatClientId", "umaPatClientSecret"})
+    public void testObtainPatTokenUsingRefreshTokenFlow(final String umaPatClientId, final String umaPatClientSecret) throws Exception {
+        showTitle("testObtainPatTokenUsingRefreshTokenFlow");
+
+        // Request new access token using the refresh token.
+        TokenClient tokenClient1 = new TokenClient(tokenEndpoint);
+        TokenResponse response1 = tokenClient1.execRefreshToken(m_pat.getScope(), m_pat.getRefreshToken(), umaPatClientId, umaPatClientSecret);
+
+        showClient(tokenClient1);
+        assertEquals(response1.getStatus(), 200, "Unexpected response code: " + response1.getStatus());
+        assertNotNull(response1.getEntity(), "The entity is null");
+        assertNotNull(response1.getAccessToken(), "The access token is null");
+        assertNotNull(response1.getTokenType(), "The token type is null");
+        assertNotNull(response1.getRefreshToken(), "The refresh token is null");
+        assertNotNull(response1.getScope(), "The scope is null");
+    }
+}
\ No newline at end of file
diff --git a/oxAuth/Client/src/test/java/org/gluu/oxauth/ws/rs/uma/RegisterResourceFlowHttpTest.java b/oxAuth/Client/src/test/java/org/gluu/oxauth/ws/rs/uma/RegisterResourceFlowHttpTest.java
new file mode 100644
index 00000000..37c0b5ee
--- /dev/null
+++ b/oxAuth/Client/src/test/java/org/gluu/oxauth/ws/rs/uma/RegisterResourceFlowHttpTest.java
@@ -0,0 +1,263 @@
+/*
+ * oxAuth is available under the MIT License (2008). See http://opensource.org/licenses/MIT for full text.
+ *
+ * Copyright (c) 2014, Gluu
+ */
+
+package org.gluu.oxauth.ws.rs.uma;
+
+import static org.testng.Assert.assertEquals;
+import static org.testng.Assert.assertNotNull;
+import static org.testng.Assert.assertNull;
+import static org.testng.Assert.assertTrue;
+
+import java.util.Arrays;
+import java.util.List;
+
+import javax.ws.rs.ClientErrorException;
+import javax.ws.rs.core.Response;
+
+import org.gluu.oxauth.BaseTest;
+import org.gluu.oxauth.client.uma.UmaClientFactory;
+import org.gluu.oxauth.client.uma.UmaResourceService;
+import org.gluu.oxauth.client.uma.wrapper.UmaClient;
+import org.gluu.oxauth.model.uma.UmaMetadata;
+import org.gluu.oxauth.model.uma.UmaResource;
+import org.gluu.oxauth.model.uma.UmaResourceResponse;
+import org.gluu.oxauth.model.uma.UmaResourceWithId;
+import org.gluu.oxauth.model.uma.UmaTestUtil;
+import org.gluu.oxauth.model.uma.wrapper.Token;
+import org.testng.annotations.BeforeClass;
+import org.testng.annotations.Parameters;
+import org.testng.annotations.Test;
+
+/**
+ * Test cases for the registering UMA resources
+ *
+ * @author Yuriy Zabrovarnyy
+ * @author Yuriy Movchan
+ */
+public class RegisterResourceFlowHttpTest extends BaseTest {
+
+    private static final String START_SCOPE_EXPRESSION = "{\"rule\": {\"and\": [{\"or\": [{\"var\": 0},{\"var\": 1}]},{\"var\": 2}]}," +
+            "  \"data\": [\"http://photoz.example.com/dev/actions/all\",\"http://photoz.example.com/dev/actions/add\",\"http://photoz.example.com/dev/actions/internalClient\"]}";
+    private static final String MODIFY_SCOPE_EXPRESSION = "{\"rule\": {\"or\": [{\"or\": [{\"var\": 0},{\"var\": 1}]},{\"var\": 2}]}," +
+            "  \"data\": [\"http://photoz.example.com/dev/actions/all\",\"http://photoz.example.com/dev/actions/add\",\"http://photoz.example.com/dev/actions/internalClient\"]}";
+
+    protected UmaMetadata metadata;
+    protected Token pat;
+
+    protected String resourceId;
+    protected String resourceIdWithScopeExpression;
+    protected UmaResourceService resourceService;
+
+    public RegisterResourceFlowHttpTest() {
+    }
+
+    public RegisterResourceFlowHttpTest(UmaMetadata metadataConfiguration) {
+        this.metadata = metadataConfiguration;
+    }
+
+    @BeforeClass
+    @Parameters({"umaMetaDataUrl", "umaPatClientId", "umaPatClientSecret"})
+    public void init(final String umaMetaDataUrl, final String umaPatClientId, final String umaPatClientSecret) throws Exception {
+        if (this.metadata == null) {
+            this.metadata = UmaClientFactory.instance().createMetadataService(umaMetaDataUrl, clientEngine(true)).getMetadata();
+            UmaTestUtil.assert_(this.metadata);
+        }
+
+        pat = UmaClient.requestPat(tokenEndpoint, umaPatClientId, umaPatClientSecret, clientEngine(true));
+        UmaTestUtil.assert_(pat);
+    }
+
+    public UmaResourceService getResourceService() throws Exception {
+        if (resourceService == null) {
+            resourceService = UmaClientFactory.instance().createResourceService(this.metadata, clientEngine(true));
+        }
+        return resourceService;
+    }
+
+    /**
+     * Add resource
+     */
+    @Test
+    public void addResource() throws Exception {
+        showTitle("addResource");
+        registerResource(Arrays.asList("http://photoz.example.com/dev/scopes/view", "http://photoz.example.com/dev/scopes/all"));
+        registerResourceWithScopeExpression(START_SCOPE_EXPRESSION);
+    }
+
+    public String registerResource(List<String> scopes) throws Exception {
+        try {
+            UmaResource resource = new UmaResource();
+            resource.setName("Photo Album");
+            resource.setIconUri("http://www.example.com/icons/flower.png");
+            resource.setScopes(scopes);
+            resource.setType("myType");
+
+            UmaResourceResponse resourceStatus = getResourceService().addResource("Bearer " + pat.getAccessToken(), resource);
+            UmaTestUtil.assert_(resourceStatus);
+
+            this.resourceId = resourceStatus.getId();
+            return this.resourceId;
+        } catch (ClientErrorException ex) {
+            System.err.println(ex.getResponse().readEntity(String.class));
+            throw ex;
+        }
+    }
+
+    public String registerResourceWithScopeExpression(String scopeExpression) throws Exception {
+        try {
+            UmaResource resource = new UmaResource();
+            resource.setName("Photo Album");
+            resource.setIconUri("http://www.example.com/icons/flower.png");
+            resource.setScopeExpression(scopeExpression);
+            resource.setType("myType");
+
+            UmaResourceResponse resourceStatus = getResourceService().addResource("Bearer " + pat.getAccessToken(), resource);
+            UmaTestUtil.assert_(resourceStatus);
+
+            this.resourceIdWithScopeExpression = resourceStatus.getId();
+            return this.resourceIdWithScopeExpression;
+        } catch (ClientErrorException ex) {
+            System.err.println(ex.getResponse().readEntity(String.class));
+            throw ex;
+        }
+    }
+
+    /**
+     * Resource modification
+     */
+    @Test(dependsOnMethods = {"addResource"})
+    public void modifyResource() throws Exception {
+        showTitle("modifyResource");
+
+        // Modify resource description
+        UmaResourceResponse resourceStatus = null;
+        try {
+            UmaResource resource = new UmaResource();
+            resource.setName("Photo Album 2");
+            resource.setIconUri("http://www.example.com/icons/flower.png");
+            resource.setScopes(Arrays.asList("http://photoz.example.com/dev/scopes/view", "http://photoz.example.com/dev/scopes/all"));
+            resource.setType("myType");
+
+            resourceStatus = getResourceService().updateResource("Bearer " + pat.getAccessToken(), this.resourceId, resource);
+        } catch (ClientErrorException ex) {
+            System.err.println(ex.getResponse().readEntity(String.class));
+            throw ex;
+        }
+
+        try {
+            UmaResource resource = new UmaResource();
+            resource.setName("Photo Album 2");
+            resource.setIconUri("http://www.example.com/icons/flower.png");
+            resource.setScopeExpression(MODIFY_SCOPE_EXPRESSION);
+            resource.setType("myType");
+
+            resourceStatus = getResourceService().updateResource("Bearer " + pat.getAccessToken(), this.resourceIdWithScopeExpression, resource);
+        } catch (ClientErrorException ex) {
+            System.err.println(ex.getResponse().readEntity(String.class));
+            throw ex;
+        }
+
+        assertNotNull(resourceStatus, "Resource status is null");
+        assertNotNull(this.resourceId, "Resource description id is null");
+    }
+
+    /**
+     * Test non existing UMA resource description modification
+     */
+    @Test(dependsOnMethods = {"modifyResource"})
+    public void modifyNotExistingResource() throws Exception {
+        showTitle("modifyNotExistingResource");
+
+        try {
+            UmaResource resource = new UmaResource();
+            resource.setName("Photo Album 3");
+            resource.setIconUri("http://www.example.com/icons/flower.png");
+            resource.setScopes(Arrays.asList("http://photoz.example.com/dev/scopes/view", "http://photoz.example.com/dev/scopes/all"));
+
+            getResourceService().updateResource("Bearer " + pat.getAccessToken(), "fake_resource_id", resource);
+        } catch (ClientErrorException ex) {
+            System.err.println(ex.getResponse().readEntity(String.class));
+            int status = ex.getResponse().getStatus();
+            assertTrue(status != Response.Status.OK.getStatusCode(), "Unexpected response status");
+        }
+    }
+
+    /**
+     * Test UMA resource description modification with invalid PAT
+     */
+    @Test(dependsOnMethods = {"modifyResource"})
+    public void testModifyResourceWithInvalidPat() throws Exception {
+        showTitle("testModifyResourceWithInvalidPat");
+
+        UmaResourceResponse resourceStatus = null;
+        try {
+            UmaResource resource = new UmaResource();
+            resource.setName("Photo Album 4");
+            resource.setIconUri("http://www.example.com/icons/flower.png");
+            resource.setScopes(Arrays.asList("http://photoz.example.com/dev/scopes/view", "http://photoz.example.com/dev/scopes/all"));
+
+            resourceStatus = getResourceService().updateResource("Bearer " + pat.getAccessToken() + "_invalid", this.resourceId + "_invalid", resource);
+        } catch (ClientErrorException ex) {
+            System.err.println(ex.getResponse().readEntity(String.class));
+            assertEquals(ex.getResponse().getStatus(), Response.Status.UNAUTHORIZED.getStatusCode(), "Unexpected response status");
+        }
+
+        assertNull(resourceStatus, "Resource status is not null");
+    }
+
+    /**
+     * Get resource
+     */
+    @Test(dependsOnMethods = {"modifyResource"})
+    public void getOneResource() throws Exception {
+        showTitle("getOneResource");
+
+        try {
+            UmaResourceWithId resource = getResourceService().getResource("Bearer " + pat.getAccessToken(), this.resourceId);
+            assertEquals(resource.getType(), "myType");
+
+            UmaResourceWithId resourceWithExpression = getResourceService().getResource("Bearer " + pat.getAccessToken(), this.resourceIdWithScopeExpression);
+            assertEquals(resourceWithExpression.getScopeExpression(), MODIFY_SCOPE_EXPRESSION);
+        } catch (ClientErrorException ex) {
+            System.err.println(ex.getResponse().readEntity(String.class));
+            throw ex;
+        }
+    }
+
+    /**
+     * Get resources
+     */
+    @Test(dependsOnMethods = {"getOneResource"})
+    public void getResources() throws Exception {
+        showTitle("getResources");
+
+        List<String> resources = null;
+        try {
+            resources = getResourceService().getResourceList("Bearer " + pat.getAccessToken(), "");
+        } catch (ClientErrorException ex) {
+            System.err.println(ex.getResponse().readEntity(String.class));
+            throw ex;
+        }
+
+        assertNotNull(resources, "Resources is null");
+        assertTrue(resources.contains(this.resourceId), "Resource list doesn't contain added resource");
+    }
+
+    /**
+     * Delete resource
+     */
+    @Test(dependsOnMethods = {"getResources"})
+    public void deleteResource() throws Exception {
+        showTitle("testDeleteResource");
+
+        try {
+            getResourceService().deleteResource("Bearer " + pat.getAccessToken(), this.resourceId);
+        } catch (ClientErrorException ex) {
+            System.err.println(ex.getResponse().readEntity(String.class));
+            throw ex;
+        }
+    }
+}
\ No newline at end of file
diff --git a/oxAuth/Client/src/test/java/org/gluu/oxauth/ws/rs/uma/ScopeHttpTest.java b/oxAuth/Client/src/test/java/org/gluu/oxauth/ws/rs/uma/ScopeHttpTest.java
new file mode 100644
index 00000000..4a6535a0
--- /dev/null
+++ b/oxAuth/Client/src/test/java/org/gluu/oxauth/ws/rs/uma/ScopeHttpTest.java
@@ -0,0 +1,32 @@
+/*
+ * oxAuth is available under the MIT License (2008). See http://opensource.org/licenses/MIT for full text.
+ *
+ * Copyright (c) 2014, Gluu
+ */
+
+package org.gluu.oxauth.ws.rs.uma;
+
+import org.gluu.oxauth.client.uma.UmaClientFactory;
+import org.gluu.oxauth.client.uma.UmaScopeService;
+import org.gluu.oxauth.model.uma.UmaMetadata;
+import org.gluu.oxauth.model.uma.UmaScopeDescription;
+import org.gluu.oxauth.model.uma.UmaTestUtil;
+import org.testng.annotations.Parameters;
+import org.testng.annotations.Test;
+
+/**
+ * @author Yuriy Zabrovarnyy
+ * @version 0.9, 22/04/2013
+ */
+
+public class ScopeHttpTest {
+
+    @Test
+    @Parameters({"umaMetaDataUrl"})
+    public void scopePresence(final String umaMetaDataUrl) {
+        final UmaMetadata metadata = UmaClientFactory.instance().createMetadataService(umaMetaDataUrl).getMetadata();
+        final UmaScopeService scopeService = UmaClientFactory.instance().createScopeService(metadata.getScopeEndpoint());
+        final UmaScopeDescription modifyScope = scopeService.getScope("modify");
+        UmaTestUtil.assert_(modifyScope);
+    }
+}
diff --git a/oxAuth/Client/src/test/java/org/gluu/oxauth/ws/rs/uma/UmaRegisterPermissionFlowHttpTest.java b/oxAuth/Client/src/test/java/org/gluu/oxauth/ws/rs/uma/UmaRegisterPermissionFlowHttpTest.java
new file mode 100644
index 00000000..ffa771bb
--- /dev/null
+++ b/oxAuth/Client/src/test/java/org/gluu/oxauth/ws/rs/uma/UmaRegisterPermissionFlowHttpTest.java
@@ -0,0 +1,130 @@
+/*
+ * oxAuth is available under the MIT License (2008). See http://opensource.org/licenses/MIT for full text.
+ *
+ * Copyright (c) 2014, Gluu
+ */
+
+package org.gluu.oxauth.ws.rs.uma;
+
+import static org.testng.Assert.assertNull;
+import static org.testng.Assert.assertTrue;
+
+import java.util.Arrays;
+import java.util.List;
+
+import javax.ws.rs.ClientErrorException;
+import javax.ws.rs.core.Response;
+
+import org.gluu.oxauth.BaseTest;
+import org.gluu.oxauth.client.uma.UmaClientFactory;
+import org.gluu.oxauth.client.uma.UmaPermissionService;
+import org.gluu.oxauth.model.uma.PermissionTicket;
+import org.gluu.oxauth.model.uma.UmaMetadata;
+import org.gluu.oxauth.model.uma.UmaPermission;
+import org.gluu.oxauth.model.uma.UmaPermissionList;
+import org.gluu.oxauth.model.uma.UmaTestUtil;
+import org.testng.annotations.AfterClass;
+import org.testng.annotations.BeforeClass;
+import org.testng.annotations.Parameters;
+import org.testng.annotations.Test;
+
+/**
+ * Test cases for the registering UMA permissions flow (HTTP)
+ *
+ * @author Yuriy Zabrovarnyy
+ * @author Yuriy Movchan
+ */
+public class UmaRegisterPermissionFlowHttpTest extends BaseTest {
+
+    protected UmaMetadata metadata;
+
+    protected RegisterResourceFlowHttpTest registerResourceTest;
+    protected String ticket;
+    protected UmaPermissionService permissionService;
+
+    public UmaRegisterPermissionFlowHttpTest() {
+    }
+
+    public UmaRegisterPermissionFlowHttpTest(UmaMetadata metadataConfiguration) {
+        this.metadata = metadataConfiguration;
+    }
+
+    @BeforeClass
+    @Parameters({"umaMetaDataUrl", "umaPatClientId", "umaPatClientSecret"})
+    public void init(final String umaMetaDataUrl, final String umaPatClientId, final String umaPatClientSecret) throws Exception {
+        if (this.metadata == null) {
+            this.metadata = UmaClientFactory.instance().createMetadataService(umaMetaDataUrl, clientEngine(true)).getMetadata();
+            UmaTestUtil.assert_(this.metadata);
+        }
+
+        this.registerResourceTest = new RegisterResourceFlowHttpTest(this.metadata);
+        this.registerResourceTest.setAuthorizationEndpoint(authorizationEndpoint);
+        this.registerResourceTest.setTokenEndpoint(tokenEndpoint);
+        this.registerResourceTest.init(umaMetaDataUrl, umaPatClientId, umaPatClientSecret);
+
+        this.registerResourceTest.addResource();
+    }
+
+    @AfterClass
+    public void clean() throws Exception {
+        this.registerResourceTest.deleteResource();
+    }
+
+    public UmaPermissionService getPermissionService() throws Exception {
+        if (permissionService == null) {
+            permissionService = UmaClientFactory.instance().createPermissionService(this.metadata, clientEngine(true));
+        }
+        return permissionService;
+    }
+
+    /**
+     * Test for registering permissions for resource
+     */
+    @Test
+    public void testRegisterPermission() throws Exception {
+        showTitle("testRegisterPermission");
+        registerResourcePermission(this.registerResourceTest.resourceId, Arrays.asList("http://photoz.example.com/dev/scopes/view"));
+    }
+
+    public String registerResourcePermission(List<String> scopes) throws Exception {
+        return registerResourcePermission(this.registerResourceTest.resourceId, scopes);
+    }
+
+    public String registerResourcePermission(String resourceId, List<String> scopes) throws Exception {
+
+        UmaPermission permission = new UmaPermission();
+        permission.setResourceId(resourceId);
+        permission.setScopes(scopes);
+
+        PermissionTicket ticket = getPermissionService().registerPermission(
+                "Bearer " + this.registerResourceTest.pat.getAccessToken(), UmaPermissionList.instance(permission));
+        UmaTestUtil.assert_(ticket);
+        this.ticket = ticket.getTicket();
+        return ticket.getTicket();
+    }
+
+    /**
+     * Test for registering permissions for resource
+     */
+    @Test
+    public void testRegisterPermissionForInvalidResource() throws Exception {
+        showTitle("testRegisterPermissionForInvalidResource");
+
+        UmaPermission permission = new UmaPermission();
+        permission.setResourceId(this.registerResourceTest.resourceId + "1");
+        permission.setScopes(Arrays.asList("http://photoz.example.com/dev/scopes/view", "http://photoz.example.com/dev/scopes/all"));
+
+        PermissionTicket ticket = null;
+        try {
+            ticket = getPermissionService().registerPermission(
+                    "Bearer " + this.registerResourceTest.pat.getAccessToken(), UmaPermissionList.instance(permission));
+        } catch (ClientErrorException ex) {
+            System.err.println(ex.getResponse().readEntity(String.class));
+            assertTrue(ex.getResponse().getStatus() != Response.Status.CREATED.getStatusCode() &&
+                    ex.getResponse().getStatus() != Response.Status.OK.getStatusCode()
+                    , "Unexpected response status");
+        }
+
+        assertNull(ticket, "Resource permission is not null");
+    }
+}
\ No newline at end of file
diff --git a/oxAuth/Client/src/test/java/org/gluu/oxauth/ws/rs/uma/UmaSpontaneousScopeHttpTest.java b/oxAuth/Client/src/test/java/org/gluu/oxauth/ws/rs/uma/UmaSpontaneousScopeHttpTest.java
new file mode 100644
index 00000000..b21b1935
--- /dev/null
+++ b/oxAuth/Client/src/test/java/org/gluu/oxauth/ws/rs/uma/UmaSpontaneousScopeHttpTest.java
@@ -0,0 +1,140 @@
+package org.gluu.oxauth.ws.rs.uma;
+
+import static org.gluu.oxauth.model.uma.UmaTestUtil.assert_;
+import static org.gluu.oxauth.ws.rs.uma.AccessProtectedResourceFlowHttpTest.encodeCredentials;
+import static org.junit.Assert.assertTrue;
+import static org.testng.Assert.assertEquals;
+import static org.testng.Assert.assertNotNull;
+
+import java.security.KeyManagementException;
+import java.security.KeyStoreException;
+import java.security.NoSuchAlgorithmException;
+import java.security.UnrecoverableKeyException;
+import java.util.Arrays;
+import java.util.List;
+
+import org.gluu.oxauth.BaseTest;
+import org.gluu.oxauth.client.RegisterClient;
+import org.gluu.oxauth.client.RegisterRequest;
+import org.gluu.oxauth.client.RegisterResponse;
+import org.gluu.oxauth.client.uma.UmaClientFactory;
+import org.gluu.oxauth.client.uma.UmaRptIntrospectionService;
+import org.gluu.oxauth.client.uma.UmaTokenService;
+import org.gluu.oxauth.client.uma.wrapper.UmaClient;
+import org.gluu.oxauth.model.common.GrantType;
+import org.gluu.oxauth.model.common.ResponseType;
+import org.gluu.oxauth.model.register.ApplicationType;
+import org.gluu.oxauth.model.uma.RptIntrospectionResponse;
+import org.gluu.oxauth.model.uma.UmaMetadata;
+import org.gluu.oxauth.model.uma.UmaTokenResponse;
+import org.gluu.oxauth.model.uma.wrapper.Token;
+import org.testng.annotations.BeforeClass;
+import org.testng.annotations.Parameters;
+import org.testng.annotations.Test;
+
+import com.google.common.collect.Lists;
+
+/**
+ * @author Yuriy Zabrovarnyy
+ */
+public class UmaSpontaneousScopeHttpTest extends BaseTest {
+
+    private static final String REDIRECT_URI = "https://cb.example.com";
+    public static final String USER_2_SCOPE = "/user/2";
+
+    private UmaMetadata metadata;
+
+    private RegisterResourceFlowHttpTest registerResourceTest;
+    private UmaRegisterPermissionFlowHttpTest permissionFlowTest;
+
+    private UmaRptIntrospectionService rptStatusService;
+    private UmaTokenService tokenService;
+
+    private Token pat;
+    private String rpt;
+    private RegisterResponse clientResponse;
+
+    private void registerClient() throws UnrecoverableKeyException, NoSuchAlgorithmException, KeyStoreException, KeyManagementException {
+        List<String> scopes = Lists.newArrayList(
+                "openid", "uma_protection", "profile", "address", "email", "phone", "user_name"
+        );
+
+        RegisterRequest registerRequest = new RegisterRequest(ApplicationType.WEB, "UMA Spontaneous scope test", Lists.newArrayList(REDIRECT_URI));
+        registerRequest.setResponseTypes(Arrays.asList(ResponseType.values()));
+        registerRequest.setGrantTypes(Arrays.asList(GrantType.values()));
+        registerRequest.setScope(scopes);
+        registerRequest.setAllowSpontaneousScopes(true); // allow spontaneous scopes (which are off by default)
+
+        RegisterClient registerClient = new RegisterClient(registrationEndpoint);
+        registerClient.setExecutor(clientEngine(true));
+        registerClient.setRequest(registerRequest);
+        clientResponse = registerClient.exec();
+
+        showClient(registerClient);
+        assertEquals(clientResponse.getStatus(), 200, "Unexpected response code: " + clientResponse.getEntity());
+        assertNotNull(clientResponse.getClientId());
+        assertNotNull(clientResponse.getClientSecret());
+        assertNotNull(clientResponse.getRegistrationAccessToken());
+        assertNotNull(clientResponse.getClientIdIssuedAt());
+        assertNotNull(clientResponse.getClientSecretExpiresAt());
+    }
+
+    @BeforeClass
+    @Parameters({"umaMetaDataUrl"})
+    public void init(final String umaMetaDataUrl) throws Exception {
+        this.metadata = UmaClientFactory.instance().createMetadataService(umaMetaDataUrl, clientEngine(true)).getMetadata();
+        assert_(this.metadata);
+
+        registerClient();
+
+        pat = UmaClient.requestPat(tokenEndpoint, clientResponse.getClientId(), clientResponse.getClientSecret(), clientEngine(true));
+        assert_(pat);
+
+        this.registerResourceTest = new RegisterResourceFlowHttpTest(this.metadata);
+        this.registerResourceTest.pat = this.pat;
+
+        this.permissionFlowTest = new UmaRegisterPermissionFlowHttpTest(this.metadata);
+        this.permissionFlowTest.registerResourceTest = this.registerResourceTest;
+
+        this.rptStatusService = UmaClientFactory.instance().createRptStatusService(metadata, clientEngine(true));
+        this.tokenService = UmaClientFactory.instance().createTokenService(metadata, clientEngine(true));
+    }
+
+    @Test
+    public void registerResource() throws Exception {
+        showTitle("registerResource");
+        this.registerResourceTest.registerResource(Lists.newArrayList("^/user/.+$"));
+    }
+
+
+    @Test(dependsOnMethods = {"registerResource"})
+    public void registerPermissions() throws Exception {
+        showTitle("registerPermissions");
+        permissionFlowTest.registerResourcePermission(Lists.newArrayList(USER_2_SCOPE));
+    }
+
+    @Test(dependsOnMethods = {"registerPermissions"})
+    public void successfulRptRequest() throws Exception {
+        showTitle("successfulRptRequest");
+
+        UmaTokenResponse response = tokenService.requestRpt(
+                "Basic " + encodeCredentials(clientResponse.getClientId(), clientResponse.getClientSecret()),
+                GrantType.OXAUTH_UMA_TICKET.getValue(),
+                permissionFlowTest.ticket,
+                null, null, null, null, null);
+        assert_(response);
+
+        this.rpt = response.getAccessToken();
+    }
+
+    @Test(dependsOnMethods = {"successfulRptRequest"})
+    @Parameters()
+    public void rptStatus() {
+        showTitle("rptStatus");
+        final RptIntrospectionResponse status = this.rptStatusService.requestRptStatus("Bearer " + pat.getAccessToken(), rpt, "");
+        assert_(status);
+
+        // at the end scope registered by permission must be present in RPT permission with scope allowed by spontaneous scope check
+        assertTrue(status.getPermissions().get(0).getScopes().contains(USER_2_SCOPE));
+    }
+}
diff --git a/oxAuth/Client/src/test/resources/clientkeystore.jks b/oxAuth/Client/src/test/resources/clientkeystore.jks
new file mode 100644
index 0000000000000000000000000000000000000000..8e247a12ddb95b694426ea071e5ff27e366c0890
GIT binary patch
literal 19673
zcmd431yE#7wyur4ySqa{;qLC%(9pQMyIbS#?k<hHLqp^4?%p)sI9z7FnR{kpZp@vT
z`=38fMP*b~WbN7&xpL=v_Pf@~xAV7i5D*Zsj|TtIKtU*goJQQtoF=9KZZ=j^0Gk1~
z0f3u>*$80FYGi1@!ezw8Y|Q@gMf0t`Tj7sa9$+9S2M`GgjvfjW0+bF66%-T_1R@ZW
z>=d`=x0~|Ja~pIsZL~hWZ)2Zcpd$5G9?s<9vEPqMLd~3XRrX15d!hU%rTHPTc`6&4
zM%6{vso(roCD4bL15uuxadq&j>@0467fi)3npI2BwdV2}$)=ZqsSz9tN$&P&o0xfm
zq;r40a+t&}#sdF@ppVcbp4kV=3%H|Y*y(BkTMki0a0>!kQ^7dIL9lE`^P49eWZ)1K
zzSt`LvYWKL6a?dC0#Ap+z);6m1>bI0-?KP^I|w_aHs(30aa)+Rvn&b=i#W{n+c~hT
zRLQB|>6dtE=az;;V~j&|Fk64jTJLE?BA(7k!<?+m3=E2$aJ>BW>?=N`gLM{8CMl(n
zEqk^d|JAldQ0-|9ug(chochnCjaO1ble@^3a?aG&KaV%01|vI=`@;fY9|QUJ(e(4c
z!9c;lNXTn{xg5+5+IGc6r-yieL%a!4ByAt(!CR0>f$4az&H&+{VCX`mCix-2A%LXJ
z#6UtQa5V^U1S~suVHam}5>a6iQ4>dJ3sVat17{N_AQ3hqGdGZhnFYwo3S{H>f{n-m
z{Od<{wlDw6PXuHFQJ|pzd{Qt_C`kGM2oQ4cfDjM}kQx{vMJHGSsVBK8`@Pin_hN^k
z-mD3Z`UMq%af~&Ql)B?UMZ3(?4F{f4x0CS7SLU&AFNcR)vwPZ<Ngl~zJ6oXGIuNG6
zr{E+*I5;ZC$|Elk)lr^f4+1~^?j^%Bc!@KjeoiYG#K()<T=O{1GlTF|siIy<buIj{
z@L5LjFyC3)tdJT=2_*j*142p&0w5j~%*TX;goFkM{on7vpddavLH>5&zyl&dfB~Uk
z!a_J9RW@niS`~%NW(KNTo5@8lB^83K6JwvuPWHvxH^v^<HrXqF-Ru>`cSD49haBa5
zgW0bQu248@so47jr|*G@fHcd$LL%#MSYy%oK1r+*;CXJ6vScqaWb7*`^r1M72SXIG
znf)L|Wm!;1jY>HdlyQ^Rh=qTozZm{;d`YIEBa-yT1!%y*WyHa3Yz#2vGUWiUnHrb^
zxY*eZ0j7qAhFpdwCO{T0gFi07^L!8xNKjxP#Ops^fDk8xJ*O9!D(2!ENYuV>4q8GK
zG9$XKlx1M2UI|z->HKY&AgJZ6tb^zw8wq5P?aQU|Y`$<z=Qy1=6CCZ*-uk1EZkl)O
z=@t14mNGgt6Ik~?p&Jl<mY;RK2@FiL{U(tg*IGtvyT4d)%k@DSrf{^8_p=OR6%viG
zUk>&8(=Ivp64-7#XE>-07amE+_`&TWwaJR$m<rxk#cm37Il5lA3sQmLb2>f`e9=@l
zg=$7x@7{a<Qo5ty=t!MBc>?*_Bb%P9VpKc+o7imuk<+GwmX+-t^CK*stH4H`<qlUt
z{d3Y6KNLezN1I(Hb0}V^*@9FWNhhL64xU_|elf!JljrA8PP161bPEaGb%F}i=VOWs
zlAw6zCzLzCcrbj4f})EEgG36e;IfdBc~sNLR7pgc$Hb78WC6`Z0=cyLd@om!fScP)
zpz2M+m=>yBS<EuXDIYaq!?LBgqaOVdXMp+P+Ir?n?RudK@V&-`C3pWt^+jp_jRj)g
zq%^XHW5{X<7GL!j*vl<?=;F7#u&@>`vL!7@9Ms!tVmdEbf@C3+Q$%kt`BHdPwaK7C
z{57reW>3!LJi{<(j<@}B7)x)ik+a=Xci5bVVcJ5&<A@vj{j&wFUPMew-)-%Uo|7yv
zew_7$Yk;Q9kI9s7iJ2r1z-72Q3v1m)?I02hx?0GK;iI4>gHjchVpsqAGxg|Tq4=tp
z+GoT#3fD`TIE`mDS{~b;L#%Pn;Uj!~Xe1*>ezP#fQ8I)26iV5FDu!#nylERhhhAIH
z8KT^hF5Vn0udNa`>qp>Fq+N2GXyOCdPk{gfF21u#H|?sU``=Qy8eL$ZH^njrM2yQ-
zST^4cXI>*YHbcK5aR`t5y&lC}>m^8tMPGbUt0B~Rq@358^gZ23O1b+zWRgT1^g5_J
z5eFg3`4hk@GR`C@ip5S8YNPZcI<HkJ%ErE2^^?XI;~XxIrf6B&dpF3WrS5@*u`jBc
z1l!=<S~Nz)HP!Nd-?bjA@9OnafA;k@3`^u+@-9qbuDjN@bhVx13jW}^3yf>!3F`MG
zAK5sPO6%yTJEZ~{XSuAXmA_+VEEv=?KX%xys}&}L9=pDC5ZLm&)?k4Nmm#+3N6{UK
z{Y+^wAYMJktnD8qC{vJjH0W29mHD3iWm7R*!MSY^RbzlIPu?*y;6$&4N=O~?OHzF%
zy?2G`4lje<RbW^=YEzD-3HE556OF0*m1ltlQjv9uo6vSCJPzxs>l#58Q_dVu&YU}j
z_ML8zE4R9v!962I=}WR<u7W!Kq(ww&mpz-^i%zkvUiaYeQOj4~^Y2*dS8%+XOsZ^T
z1X_b0OlDEl%nV}KB}Kl(>a%&+ktgRv_{{AG`spPg8a45CZ_KUV)Dg$n&F5D~`F{21
zSDN=f&ax2B56#ak4puj+s=NB0SjVPAJ86||#yI(z8FFQ1zmZ|XhSdjxj5aES6RNF9
z7TilIT+O-S$-W!aYqurE4oyd{8c(DO$IrfOl^wdeKX-HZIVs<sA>tZrPAHd^VI=xs
zoR>`bW1c0mOEOUPy+!v0M^~DxBiX*pMXi6{HNZjN9x<k?dUk2-W;XM!bnMw`*l_L;
zxTMk>)z&TYu8fd#?JsV)|N6x$Z<HF%41F8pFxw9!VY%plj-b=yv@b?BAG7xlZuzSp
z1&0O(f`fnf(X+q!QCWcp{MJQcNXA5sC6Zc}V8W`QT~`qymxu1FPIK=kHXtGt?1xJW
zxkm&AMSukPSN!1LyHd9Q#Fc&k(%+u=gPFhsL6Jc|{x=+0ASftE9LKtV?LHe=ZA~x{
z(yGrl`^%OPtBn&7F}B`Gx_%m$KqQ&$7;KZ?qAvFJ%*@+C(_wS;Y;`;`iA+$WeAl;g
zuoLS(cB5%>N(UmPU^V3_O`HKHukS&aRW$eb)SDKyD2}!XXx_2&cyUYJKLjokvAym{
z7wWW$jXZh9aO+LJYU5+~1vZy^3X$Q4Z%298Jy0H4wju9ebN2S$x`^tMDZg57Qy<9E
z%>pbA8Vb`9kDf)0`uxB8>$QGuixamyQ=CX?BZ6Ak_P0a$)T%>M5M9}X7>%l3KjWp<
z7ryuSLV7h-C*(vm(4`(Kta=>ZSkt@17(pR^R8I3!-~7k~4F(Ph0{XAJ^uM>^$54WT
z@V_1Iq>@qEPdK7GI;Wt<C^qhFK#GM8;yrNGg5{*-WZfw0s9&(S`8yrcfn+mbIpO$B
znBr=5YUgq17}d7E`EgA;-+gXHqxe1}6_9kJN;S7alQe?9y$rjSpQjYTxLV7=l^0!H
z?@<)6f#sTGSJAA~3Msx1+HZe~Z!xC5T0r&n%g!WbFZnpHLXd1{$$WYgIYtCpwO6`a
z+TPOsK6kSG1<%ZY)Is#qix@-x&s?l8{DoSChklI}7s0phxKavh28c;gyzejD2cH5e
zm_`n~4v;5}aeUyaj9AIXL=;ATUm4~b_(1@c>EEJXow-m#Se*!XTL*{h3-~MN3IBiz
zV{T?+Lw06k0MLZ<gXURS*a6(!ChP!a4z`bn5i^T1^Iu@%)%Bmj1l-a)dBk8EC+o?C
z_9rrJhWRp#Wp!)VJMZ_ZpX-->bN0`eU(O;rK~eJkqy=pxB#qY|Y+#Tm822$OzcG88
zeS3LKW5lBAP81Q>Dmlh-Tj7y4gSGhaErnrar#gEU!fkdEv_6T*&LB+32P8hssJ-So
z-n7zo$3oc0&H)OHndPkN1;o6Xgs9+v9UzqaYs9^M{EO;Mq-kU1#q2gPWv9ZRi6n>Z
zlW)|(L=z38!N*dw5_w0ZYQGw+E{dg=Bk;@-YxSb3pWh&1&3>lxgfus;R}>>SGuMEp
zdc_=vNj5U>D!p~`ijS<hf3q_qwmGXk4+e2x-z#<|EDgd|=UQKIwjeXMPG%jAyG<R5
zBUxv|oi$PI8KXukMBEnS9zq;p9+0%t_L^et_ZCS6`|w#7@#$i8sen57^9H!H<n_@)
zw%CKyLvW;~oR|RPNSj2+nn7a|PA=5v4RMU*Nt_-Lad0rb0bY5ewlu4l>vZv4Xqs&V
z!Y(|Rn-xncoBa+dnk^=>=jbyS9r2uFwz-}-n9uugerP_2&tvEFLKTTi7?kSnI+w$8
zJ#~=`?%r(y`Q`<OIbVYpPl&kpGj|FAnb%eO15O*?D0O-ei{0f=)i_js-y62BAn2|w
zSpP)-StTEz$pRt-WT^fHk8-e2oOU6hXv|5!n4YI(F6N(vqzpa77;<x1dBjaHxc%#m
zscgbU%5!7AJARh^C23bL`&Zq&`X`K%K9{Lu;9^BQk~AFcgG-4Ax!E#&P&m3WEFYd+
zogNEkznrzL#(Cn)Ve)BU@8$RN;8hy7+CkRbQVwC}{M=5ekTt4RF*n%YERn~isQ4)Y
zBVu%DzyrPZMTl(s`mMSLnQ+TvH&c+whVi#281wHY24+u1iZDp$1M5-DHjta+Kt+`9
z>s{oev@M@A6t~Vw6VotvyTL6an+TF_)K>!23sNKGsZx;VSC^iX<u?tYxd?>AyQ2n9
zgU!Zpbv2=LG$T8;5zc1Z?QOsgAs#laB$Y8r0o3|hSV7JFj@*S<=gx)y+wjY?F1*5=
zB%y%~E~o-Pr;aD&^@d2lf|N*BrECVgmLq5uONi1x!YMlh=W_%qu<;adt!R}C-h3E{
z)Bpm8N1mSBn97x>_u#tSY=iL>n5Qiz9$Rh8s-u7-e6q`b9Ji^$P1MKYy0LWDFcHN)
zyV7JYUW^tN(4_1GW0ez4G9lua?))x^|NhK3dgmO~Kz0D5G75y?&yUJ7i$vKu_CjOs
zq(St0-Zp@y4rt+;o>?c)<J7J8Vhi(ivk!S#;}AZL`f-f-gqYvXx=1`GlkIi$qlxdL
zsM*6!ZR}aV_~jy7ayX{1WKIp~Q~Uwn+ATZTRR8ma#C)G=sF^}X@njSuya(h9Bf)1z
zGV?-K@4GfHF4UsMsKqKDraT?~p=r?v7zZ%f@ho~Ck8~&S9L(=tAt*t6dN;wc`%oAQ
z___YwC=TlppWn2S!WYSVu!vqwxC81LMR!3kui9$EXW=30?@;_n9VowCBJIqV(~-5g
zzjeYvifVaNE+rBbZ6zh8btF2fTFPobvQ%_9GD2Vmbp19Z=n3T}fly;<_%^i^u1=Mc
z=5rQG)+C1@1>1dzSdK|FLyC3!{ZV&*u~&DQuMiavo#kM{_laULSv9bh?JEYMBX}w-
z@b7NQ{{bd=bLXrCgz@y|^xVqLH6%61i*V%+q<jZFvea(fG3b&1)~Cb&CosYN-vJYs
zhSgD|#}mOVI8rQBcqKBt<Eian;yZ9(as_uz&2SRn>+Rf=z_MBmB~tUWl)?uv6$ETy
zi(c)(T8O=TBz7sw+C6;9t25mMq%7vXgR@GN89Wlzyo#<RnjQjrc`GF?wF5;3J}=^a
z@fEryxpnEk$@$R~NLR9(gmzVZn987m8?@Z<DK1zZ&ObD~wwr+XTMX1;s<G2WjE84N
zxNGS1;&JUcRX;{t3}J1{Sx2pH0!|*xRX4_X4);ji6MKeW3tezHbR|xUl%X=lT27p2
z0)hFgb_O=rLnZ%c3Qr>aSFCwaJ`dBw$-9qRp*rzlZJ~1z3AqA9V*sX|W7KEm{~RVh
zZ1`uGm{u<J<Vq(uZ`I24f=CRcMLC{>t{$(LeSdJnU5VdGM_EH@PgW-3_OEJHm25~z
z?e4%A30Y}aAZ#|n2jNofHOU`kDpUW)5NQDUQaI}qqD9O*yrA+)+E*dja#$V>MsZ1+
zq%E~q9P}&9^IHPReOsl6L6^ukyy-gYi~;)1-rpiia=twpLW(v>ih{e1V?^AJQE`q?
z_ygH$;#z`_Erj}aOFTUeD^w49eI5JZGd>0Q8c<+Zg92ey#za(ocj1H)#s0SrZDRu2
z{*vx6MBH%~S7r>O#C4vdibhyI8Fh>~DAldS7ya!mt?JxYw<;;;RH}^7o-eJ}j0>bk
z9e-6OnAwau3`_tfT)+>Q;P{XR4L-Ca06ViGx1phlsS!83=^x6(Bj`Vai92$&4RcA=
zcRkQN;PY=#Qa_=4$gaxRW20V$+5AUUornZvJfT1Z0J(yr(G+*`*h=L*C^B<61Kjm0
z>}{CygYy^&rbqxV#YxdIGoy$!DD&R37{tC^Gi>@;iKVk~OF^XF)mKM0jFyr&^GLl>
z5+qxi`qFU3&SO53y-cyO=4{})nyI6JaCFje4nlc7k-rQi$}~~L5WEB;so~pEKWZdm
zStBD41FbXeN_w%FC^myg`DsgrVdH9YyhT>2&HWCmw2Q!ouhv41<*pmWgkCY?08DP~
zMegDt7nhQF&8UN|xeNW-!{>ba^*z&mCHzxvF+Ob2NIyhWUHvqn#Nve9?!-5@4vkqw
zV|SzIT8>)ccxa|tI$k@RArs2vS6%S0`-FYP)lfUQoC$%QAax=?9uw}SF$CR*3ne%l
z&u(Q-rw-$?eRW`=;**DeLK9+g<h4TIO+LIq35Ym(T{|U`#7om-K<KhN7z)=zvl9_y
zKzzxhpM_$8B)Mf{#g#^yW2i12To%k(xvyPjcAPxzg=!+vOpkbUe;$yBus=_H+8);A
zC>C%&q`#qMbe~8u(fG7=FK=bQ?)<yFLO&j&B_I6J51f*wa8kuX0#2kh-GZt~rxL!5
z_wL+Vi=EQ>(%)(H=`qZ0ZYa={|AIgK6GN<)lG!eIQ!KKc?p!v!QYUe&)j?p3{P)T0
z%dyxJIp2pt{jWzu@DIceyKZ|--d|h7io1={qd;L&YfK5lU7fdJ73H)thpJn1Dr9a+
zTi}LmP2GWVLswlZt6yh)N`LvJiQaS)ew6`8=JQ9mHndI;jTd;7E2gZ5OOtf;L`f1k
zu23i2h>T3L3|l0pRaU;O5{wD8hL1BvCc%H<d8l{F)nd-_v(rsU;=R5a-c7Aizk|$e
z`awSzO}DGUJMiMlwfBJTCI84hxA}fX1mv#~ACc?3fXa#D3<@Zh|Fm4|9Z~mFx4x!4
z=H2oDV)Yq>KaZBjCd?oVyNK*81w@H*nhl^X&sL9ltL-0@!B^^*FK%TC!M|<Bm_2uU
z`(x9ZVvjqg&v}ldHjd?afr_CL_YM5VyWq{q#Fj<brdJdZHc8Rbejpxs3`~H$Wb*X;
zBKozs5_((0cf(p41lwKd3Q*cn*4LGvILTJ5+rEWDe#)G_{YTGQ)&)4R%xam~HB~b-
z3NlfOb&Hh;xL)h4b6uQlPyz%;CLLiRFt^`uQcedii3O|pAhdf&o}~HC_-t~8_W6eL
z%xB$K6ZnC(&B@>REFwo5HklW&*yZ@PF{CATGObSFRvIUMo{V`Zq6O`WAnca$rqbSK
zT(+6t&@NGI7M?dS^cu@`k<c_4jwfF}YslA|i5Q%v(Wv4p5`@^3<sFS`@tf+*!a<{V
z$;%xhAl{?8t-2jH991+NYSzpM=aaa~p(TO;d~TT0JcRpEzP@L+t$K5R#gnPdKA-sW
z)hRSK4je{3MxBpX#k;y~w40^U=i(8&&**tx&N~bFO44B%XXI5Z2F`D@WwIK5gM@*m
zU&KRk1=D~ef<dgLJzjRu!)(LoPH98Oc2@h;Hw}UlfU!U2#~PDpZkDiIXl7wVyWUzL
zR^?&kThIKeYK#0DQi%0)L5p=7W|WxRhw+{yCxMP{I}cMYMSPx8yA9)r0Wjxw1B71+
z%=|#tzlRCC4`sp%7zjrESA{<YN#nV*$Yl(P=Di>j1cLD-ZoXZOsI!&r*_H}j<rXOX
zU&;g=kS*`ebfF(21!@8g0R|2UlK&@}`+sW}Fn?l?zv(Ub2qOsn`)UT~e+Pj4kRlZZ
z-IVr}%tB#<<jVbCSznOEbjjH^ww)uZXNi$+2ehI&uuc{)cE8)!S%iK-!pULW+2-BV
z5F(_AI}Kad)g>HHjX674i6-B0JkQx912}O}R+7|sPWjG-z_Rg(5-L%Q87{U%moR1&
z8>d07Cb=pko>M7rgChv6&9$^3r@}^0WR2Xk8it?Ay~YbwUZT+_D6`_}S-vn)Oaa3g
zw6A6IaaeNizPgTy`~)$kH%auexAF5-UKJ~8lAVg6uQ|TC_NqxEM*Cfa;LI%fONT+Y
z=e<bboY5bGig65RjWS{P<i8h`=cA$vca(F!Sd|8Q8Vs@8YVB8&n{ZG3Zvx2wyWRf`
zEg0k~MiwPtrHs;#TI11@lR&4oT-}q%GZN9xw_jb7(eo|5lH~B!8PQ$D#<@idT5QwO
zrt2FBFEZ}*DWVKV&LgEm_?CL=?uJrG^Fp$YF!W0EQ<Z#-24nqGp>*FM9+T^-%#A!d
z)Qq9Hm5<<JDOjfhAmVU3c6BYW(hSU_skA};CI(hEq?Wx+U};>xydfTi|H=Tt1AEkp
z_ikM_RCcSNDt57g9zka+Nr7816c<*?z2q!<S$lT7XCcxKn}c{?5Wi5|Nhh>!^6ctD
zvf?kc1MPP^wDdY%j`fZEtZ<iX3tQRwXxp17$t2({=T^C9A7foOnUb`ukw;QNfB6?^
zVPj)41)3NEI9XUZ0c=1+R)8U=DJ#H$1IWs4$_X^)HZ=YNTHYT28MK7niC0SK?Rmp^
z=M_Lq;wN6JXHN|+trX5dS@@-any1q={@4{lm?f48oGPh>U_6MwA8iO9)sR&VwcTSH
z)V2QnTdc8n3*ISA)Y`((@S!o2@5=%{8VA{2y24s$SWUkIb9LJQnhR`lSNs5Uj)>yy
z`dPcM@3XI`&$-<0MdZo5BNk#KsAG}2Z}>qdANI>=VK<{<o`Yfk_g!*Z0hrc7b@uM+
zG}C~m_PKUpp$8SK)uQcaDuES{33YAMv&0{n%@{xL=a1%wZEH^Vv*x>MM)}4SW5+YW
z@cXh|C6)Wh90H-^JQfkkK(Y@MX4hIy$Z>%>hog>OvlK^PBt{vrN6L<a-b;R4!t?IA
z?{934eZwd^i4NoTY2ITtV(vFRw63l7`<9k94KY`RQmkDZAS-ky(a9TA;QV_Fr1G+@
zuqi^7yP(782o8S>w0CF)CKdT!Y_oO~1=@x;g9Oa)ju@eoc0Sxi1E;(E1%V_q`T;-*
z2Cy0RRHf2Us>b?xtjSyhg_>sFLA$yr^P1fAop*c9*_789avH%O3Fgd`Y<?L==~HU-
zH?H^ii`V@O+=BWcyo!3506p3x><t%s$4*q*!b-y>djHxecb3<5&%8cxJlQ3($Q}*C
z5-BKDCFoL<8cA=FJU$ALLI(adOvqQ&p;kICpK#3r&vwnGf(O7a7yjae5oOz+p(tfy
zo+a2X$=;SS7E_=NmRwIoDN~5t`e~1QgdH4$KAS082^d^$L!!s*moWxpLj!J*#I5y|
ztbXwoHB!n!BZ^0NoZILJHoh=Mcj^<6LC<^BQt!YS;9<S92uy$MImg#74BDRJp>>t{
z6$1z4S~kBMKfUfNh=~5XAHqxSTwz{e5{lnLR#h!<<I68iL4Pw13Hs3XNh!rz3ou}h
z44ZTLr=JJLs9%Stqa=as2D)w~E)Ot8syer0A3sGdGk&+74N&uwlrzb)dbl`JWcl@I
zQt4<}j;DcSuvS~75_or)L=dMmA;VBWTB=o8g_--5JN`)K!S!=k)>dpeqrO}AX{l?Y
z!QV_6P9$5mz>CumJHhW;f9XRY_3M>mEB;yL0Qz(nomclG@?_#b6WS0enbBSP<wRi`
z(}`BtwKUSYQ58kk^7mE)^v|%t`R9~GpWIrSl%nSdze|XziyPSl1cfWUJ1KbizzLIq
z<ex1ce(vHW`@M8$nLR*R>`LDvUmiH}dPl(=uxE_UJpM2!vG#uBGmi%$gb}*-Xw#p^
z(TGn6EiLAV1w_NJHWKDXAQX$rXBmhIXxTmFo(5Urh?gGP<Rf9Sa!-}n1}C;YX3tz`
zGo**=EFIi3&#?OZE5s2gH~yq|&2H6aHEY6$^f&T~`mdNnR5{Zv*}2)H-UZVB2$@6L
z{l<`V)K9V4c*xD~=OlJnHSke;&OvMpoBR4ZC*YASRN`R}#+-8m@QYGN7Hep+jtwqq
zXEA6t>pv0pK5J=8p&~r@<i9h>x$Qru!zji;V1pZ*$)5d4l*#<;--ug`+=kJzzwI+U
zs>9^{!fPvgZ-SgoyE^O|L4&6<T>Go*%QQkv_CCiMC1~cEC(joD2!7w$c?}2Gvcu&$
zk&rdYE0%zeNA&#J#GurQ;srNC7$G`1PC6@J&NnsEcSop_MTh}oF?U-EU58_7P^txH
zLSO#WzlRo>4`_k-2uu9@16oKyN{NLjafV_$liyhVP<kk#V+yYKjZ>1KvC4}qqd^+o
z|7S`dV?AdKUnz}5nGw^K(knY|wLr8Fw1sApe&r(;Q6_-4fR-Ipqzi@Le8#pyo?w@R
za&MTRU~1PZ?QTGM>!}}a>e3q)H%8)Hg}1})zEx#tdGV@9lh#4vfia%w?{Mu!x`dyH
zpTP#9-_0sUGAm7@k~56pCJmMVSwgjKzY3kF=GSvzLaw)>P6BW`V2g>1JMdj^bvT;N
z_Y8X)G=`hrtVHva>09f)-S!Uv+#?vHgCy;{BSN`n*$$6rk<{6+SQb-k{8k=<r{U>*
zJql=or<>PBzrC}IyGWh3UH$^@7rHmW&}0OtW)KDxQi>sn6IO7=QKvd`cP?5fCNRfK
z|C<EzH}RCeN+9CeuZfyE-(@DE`Yc;JLn&l)q{<EjvR{3_T8~*)9Iom^|CX0z2ZDVD
zKMXid<+kgWdQQV0&wK)0i6`Iumg;Ec`4o~0KBxZm00MPJtv3D(J;10Qp{hV9PXF{a
z>foFHW_|?}kvz}ucE$ayGy-m#XCp>X$k4-1tKt3(7P$+F7nR+JT!XG?E5&L=HfSeL
zGz>cs9{ENpK>xAk=M()_aD*a@nXDfg<anI0s=lcariHfsdi=dL#&o7l%Lw7$_$3%_
zKrsp_4Far1*qn5pb2k(4_LL2sBY2hh=&!1J>_43k8BqKx)IRAKw~-7sxHpjX6w|b<
z6gs*GKdFWLgC<zGjZ940{-k+u8ykLPM;UShxJ=oN035~!T*mC2T*k~m&Od14ZvCIp
z1YRp)9=-0Zdo*5G(34_kn4SU48L}kzg?&wL#F>97)7L@W_)zA))~`-KQGLkq(fju^
z+8l9hqVyXv_Mgt~QnL8!cP3!N2r@QZ`NS2M@7+)?=%Q4IZ^T#m3&rKx_)k{(J6)+d
zIj144lD8OkeIKu!)Vd9N^_cObw~`#-C6oy#PJKIfhbrUm0-5vW#<zV{=7cvdaeby>
zFy}(HLU@hkNbRN0b{xj9ptH49R!#X`P=jCCe#kAw$++I3@8y%EAa@p~TgEX#hHjh}
z!=*p0-ks@Rpp&$UieLUXDt`}yx}Jt!H`awu<&8f_*#Vz`^#_wb>v2kL?rWQ!8l7!8
z(mJVZlIQ3#i_Y6~ssl@y4}igDEpU0f(Z!ZCQ|dfBQB2}eofbtfq|TOCW8i?&wY&)8
zA@kJ$$)76hHWJ@&&oGrwt9TkxXW}GgT}_`sFB5bL8sqcnb86klREhC%LoCPHp>V5+
z^b#^na~#*&Ch>4dS%cTmwH}o}Z2E;XU_OPx2rbd5_kEJ&QA{&z(TJudQRFoXe)Yst
z*T)-|TB~7&iz;Mk=Q@{?@xniL)JgV-O-4->gF$@1TO26Pg%*CCJX`?UXq}mbX2wkZ
zbP{`<Cu9OgUNzK(avizz{`UbKocJ{2r6ktZWcCc0y%v|lBS<E@APyywx0Fm%>86Q3
z<tgu<;;;1Hxa}5_K0R`_<2cgZH_sKJ<3VqSU3b1Y9gea^jKYUfxj8rBKOtf7PSO37
zQY2N?8uIfrKxiB+E+cuAx4N@6!H&!n(k}s5;b*0JmXC*E4v}s}S8G_r)G=SFD3n*q
zSwX3WbzRS4(lparb1@^B-m+k0wqLPpeq?=#ShgV}SF>fk=%GgQb-$v=dC9NUY{0XN
zCWe#*jG&=Hl!rnPv3>smS#b9v+|K&qm6yVWM~83;-%!1X782#ChzIFtkFmG$!D}&Q
zvEUBmcLmv)r<S4|<(9<JtOdk5YQ)}gEl*3WWwIou*?0&Gc5!KL_|a639Tp}k=uch-
zUqT(TxKHqT;47IYDYP3bnb3KHN!%sZ<y(lg%y=BGm-LYEKN;SS&@`nSWYj}MFp<0Y
zJxyH`2Ft;2Xy!=%q6_LXh;jIZd_q+UL-6>E&W%C84(98c7aOguuuBu_I|s37l>m<R
zT7bA)qwPXXL=ofBlA8|n!Kyd7M^+tWbFcVn1nX<i=7$ZCl~WbNW>rGY;wf~z;ER%F
zB=DJ~z%&E966hy2@JORcQbRv2=zC>lQl~;0qiaa2+*Om;(vUk~yJ^qfCkCx|6RMrf
zLSn==SP>$jNi{>@5KOzI-E<?8_P|`9YMGn%@+eJpF1J~wUNJ3enAowc@?{12ZR<)=
zZO@4_=A%<iM)&fYz=i?WWo+f8(cYU`re~F+r~Q4bwodH4Gp}@;U)Re|5WL^gjd@*5
zkgq*oGp~Ke)!xEDx7(KI>K77&GhWM1$hqb2FKy;2cpjYWvt@ujyRo3Jt_AulFaZHa
z3N((&Jn~Fv-eF!=>6Y?8-t)6SD(`I3iMl56hj}?@zE~*nhcMr-o3QQO;-Re~k6e}3
zaqH#`JcB>?Nm)#)0XV;1re^y=W!8Ol5K9kg#D|IPF|6dyVtC5OqTEXmQw}#t#E!?k
zlmAAZf0ccl>R%ZC_cUSuK@-*=5(vp(X<~qJcha-5ULV>U&3I?JVi`n$)ZDDunX5wZ
zwM5}`1nQq^ARk#1|3m}%=>3xhLh?UE1Gz0dHg^0$o$r#Bhzpg*!$xCnQ%oX@xIihr
zb?7@DPRVlz@NNpv$zg9;kaxW6^N_Lzr)mK^ro{4xO8QDLbM7a7Q<8M(0Y}3#kaAj?
zHS}p!U>&!Bm*)vJ@g7)>l1FEYDuPT;DMVC0@)e{g{EKs2!~`FJl3Ll<yM$oThtBzv
zi-D9naf2>`5Ovk30y+I=?6jO#HRX1o%kUB1^#K}gHE-q^1WGb`P5KX2D5~@>6Ov=;
zysjX_Hsp%%c;n>i4w;PntZMh~3N?A`{tQ`%FRor&d7Xp76ab#?c#LKvjS%I!m^J^R
z9?JH`cV2aM-xB+)bL0#aE9<1FzNLSYK>nEq@~_$b&l<?(9jYY>Mf~@CVtvG-hhIzc
zgYU#k<ws*@hbbiM^j-ih<&UMdNS8fd&>5X%KFHAex`5l)Ah;JZXhz(V#ZxEE#VtdZ
z9_{Fp)h$>)VHH{u2M^l#I)Pa+u)R>=F}$*a4m0go5pRscR0k(8-ST*e8(6!A?UYl3
z*>4ro;pXgmP-+I}A~Sp_<nknT=plkem_xnSQ`QVxH6KIu3n5}8maGMK%LZ~3-7k)@
zhQ;DnlOUQ8FWEeu+D%LdOto6;o?pDE!dhRoeA=6TdIWzFTl5?3D?jy03Yky5I0X4k
zB4>S-XC*f1jxzz<mxPu{0yGd6{kupf0%YWj{fF{DsD;DOnA6AzXaq1}=KM%0H8$V|
z7;><208C9dIk{L^xmk^kJ_4VA%IUuUI0Et`6&d2~|BzC8s$1PP!lkYrNTEY*NDE{e
zBbe=HocJC(ZrW{agY)|YANAH;=Z42P4~*eAwc?{L7o$qxG`?#*KOW6J>t;frU%_kq
zW(PD?sWPE%WpHG6jv%(dN?GZIX1n%HGHjSnzz|5^wG0T`rEEGapW<<LS<li6@H7BG
zZE>@+SQZqo_lg+|E-8oQKdh4(?IBoB_0~I`-TkyOk1X?ol<73Jz#t|UAZ-_axise@
zY)7{AUU9f1g&i*vCZNJbiuX!;S7<)=+*qwiL1Dq}ao8I^zdgf*if-sZW3NWfl&#~Z
z;QOoX)45OD29gR6Wb~Uz@$XL-^&(z)&Onf=t}otC6<194k?u_R1mmeztG|v6`twD!
z!H+hc4|S|E7YN+-%d|?CL8c}%>?!k&6pX>EvHC2<`e`2H)4Pmj!?}pxyPc$xA$Abk
zhAd?~LblLdYVb=dcm!ym8mQd(zcXJHt}Q42HY7nbOb76=CH5iz)QxOoS35FrGtZ5)
z%o;V9Ykc9ND;jI*t(dF+-tHlnuFER3qxDKaf~K`b!|hyIQD$E^r}$lnza^GWReBF~
z%LpZj0~;a6m^Ht5p1tv*Nr<&K__v~^0@v*4G5Mr57zst_h(uzQ*9nkL=_YJe6U_7=
z^}xvs?}}pp4v<lLi)e(=G^?JBOpZpKpxU@i*4Mee>A=2uDU|};bMJ|FCm0!q!4H1x
z9Apa|I901p(6m^04qIt7&rIGZhnbiIQ{W>PZYAR}Y~}dIaxB^m-3@1Sp(o0c8az2h
zU3)3mNoz|=e;;7tA`7xB98S380@b_Jz~-;`+@c{q+lwvTPZ%^3$m6;O$D?ILj^Y)5
zCu7oF;q>G=PYg{&ZDrsz;JP#lI%Lm*y_~#jkaX~{yiI{Ieb1_ztuppm+|2EG{IJ6O
zUAcyeQ)Z|W$DXNqtgMAnc1z@-{h2Og9@}0W)xZALT1X!tM0;c!RuZ?1RZiKlUZ|!d
zbtHH}Lw(kUodoV%f47)_ca?o^^rXs;opWF$AM0~J=aZ#`UQ|Xx7Nlj1iR=L;_EI0r
zZrv0LrFbrumwPLx4Q^R3o7dhg1iM3emIGgcu+m^+wD5aa^y~Lo8wIee%FvQPrX53F
z14c5TYIx2|8B7vlb#$oueWm6)UF38TQiIEU3<Vs;&WAPC!}OE0i|UdRK6apyOV)ZP
z+pZSkju}NByZW1;pn8@@OdrHO27h`>jfKMKSoPeUaN*V~sqvS=o`dM216f&r_C46=
zS==Wz`|%ZKjT(p3SKU<z8I=)_L`tHbBHeQ5tSOWUoIFy^uy@y^NOxRw8}D`3fLy*u
zr0p32LihUKsJC`E`4s^VV(jiYT#6s0(7SYby2WoKhE4@SR=bi0%gxi12kkEv;lD@N
z<v3U67#^Q5wowJ7!=-6(1)|c;!4|q#s_{<a?9?vjan|b4MJ<ZUW(Fz!@fbH`pdfp$
zZ=KsVW3!AOjL#7R2eGl%q!y0VZ$^wwgk-HM7ZUOfc(?;?S#VrIC=<2lFv;{d3hnwu
z`)7_F&TL}>+Hk^jEV6!yg_7a?lrMm2diHEzO)p9*)W@^0#LJxvdk&%)7)zXFe;fGn
zEFy|`c!g|uKp)+UjjinKJeh@&CpVMN_A0pg3$JQfdpF|66)Fq5%LI%INgmg?_Wyz{
zoo6LIYg{t^{OOU^Te*f>hwV_8;f_}~UV%aVV&yOQ{}fxm{wcP6^!^E3fd50VrT-z6
zG$Dz3oWRF1x}szm8g99P^|MRSo0d$7Ed$+#8|;s*ck0pp%<0T!YHBHM(!?rNTVK&y
z?1d$Pxk;a%>z~PVuA5U4F+tN_umv;q-sNN%Y1Y9~7c5_JfCL&eTfY4WLc0uWXcWJZ
z*~xwT!?n^Sz;51U(WZ<_){8U2WjY_{>z8|5WZU=6A$HM7{mN{(6S*OHa%8DA_8WGH
zXFq>28I@%Ou7&VPC~+667^GN?x~SkO;n)RU*x2kDdZ4A?P$i1u&{K74x-1m)2oa1R
zc-brP1#{@nbt9~Y9&>d;kx)_|h1Zn9=3Yowt#3s7fjZ3_x^Lx@+q0sq8vK8VE&rO`
z|BNlf0H+k$z9DM?x6Q?X$T8&awa4g#E(LOTJv^IUccQaoFm26#p)|Dj<1S!NiIE6t
zY3WrR#<ff>#s=-1GlT2G#53NYniS)H*FlV$`o#MBb*ff#@$^(spm7fqCn7|dedjbs
zW*yMG1fgweyjZbO1CklObI$};D69Bs$zRfk9q9GQ{I<(?QzsU~-+hFhiRRwFO$xmV
ztRG=WcwOi;1?fG7^cd;i;KDCYx#LKM9r{HhqP*AbB;Q8cgK<X#DpAAh3|XgT+g^C5
z<CM3IjF1^)D9Q~Y_x21dKksOQHOa_lo4G4if7hhg-=xK%AhJUo%$4HB=ny{B&#UnM
z16zQG%mzSaZc~7%k?DunV$5m`;O1gB{77CkWMgM#XE!!A{!6~eE%^t&d{pxMV<Aky
zsg8?D%l9qw!q97ds}m<iM<e2Ze5Y^66io#pD-XLz`ZTO4A>c+*$z=H^EEm^Z@`)B(
z7HrsrB8@Ak)B%WgSo#7qrX4!P0hV=qx^IYKYILkW;56`-NRM2GZ!Wl%q&u?fMd&F{
zYGqMgZI>l!Nq5XiwC4_u8OR&3$<c0C=F{8CktzK$Fg=w7cYSpvKh=HQf!p;oR}zn^
zBc+m|Qa(0zEt!FO52>TUx5PduY?I_KfBV)B$b`G!2X!(9ThedvQE-78TkN6#vAbu^
z2fBX&k|{v4Ahp>i=Qi^_&9L@W+wrS*^izQJ-z{38tskmw<45E9OSl;aE@<MtsZx-y
zfa66+;bzJ@x7piEdb%>0AW8{4*IEJiUj=30|Ni3h9~G3j{zE+(8Mq+`gp@Fi*>9$1
zl${;gsf#>J$4_jbpkP<m{<Ox>V=mv0A#Xr-qv7N4ahtWi8!mC|8_V{l+XBweI~}{h
zWAlqsL<xV9$;6E9wWw-Pr2iO{T;4Klx-7NmS1~>wMmIN<&;8f)%Kv6az|BE`CSc4U
z15Te0fO#CLo`O(B%&{5CC`!TlU*#^oeN8Wlm%94xf<a~wyt=omZ4pU)JHN@p4+b=G
zzoqYs=_Q3W!OR~LT=(-ebnyX3nW9LW!foVS0j&5C`Zd334H?JNSF5sCKzjUz*-Z_Z
zx!6Batk~I%xdCjPMjQYG7H(DmH;a+U$J2y^)#NYC{*&OJG5doH?tmk;HQgi&R2nt!
z(}NHW{4XlQ#81x5)J2n_(`NSf$slur;t4{4l_B;)zd&gj;PhLw-$@&wuK3<)o*4dV
zpB+4dI~aV0V>{+8gUUD|zWf>6L!gWjFTk=E{Wvt|P!r7zG5Fr+O!+D<U&;x>4lnY$
zpLT@_{K|A5q;{^(IFulnNDp6{r6`@*&U02R5~-P1aBQJm5j#RUo!yZfp^nSMO)l{(
zxoK-p<`?7);i3!C9VHvbzUlV6MP8B+h}440BP_cv1r`+R_CEOpLMn_QtJGd_s_Ewp
zRK4gcF=@uRAU5Kkc^m{w_k6AV$v;z_kkJ-#NBTUkuoyM2ms68#?i^n0Sit>Ncd`4v
z4~VVDk5W1>1j4Pv^r6|E5Wj?l&OfmDj_h%{Undfpy2lT8=6L0rx-vh{G|htKfdE}<
zHe1oto<i#NA%gCQiq39|JdP;^=%Q0Zaeiw$x&>dblTf-`LW^N@)1ez8WIvUR%}^*l
zN@x+ErMRmwGS=K~Fnpr5g&9a$phqpciPoproE?QkBp=r!J2C|N9`p<uZ#NV-R3q+7
zq5%fhO@!l&F2FQSkZSD@v2}MjFl5&3ujy>~p<j7#H|#(<Rd+gD<tOMTRO12>*^>)(
zZ5aKw_cei4`$i91XL)lD)?7|^Q$2{#lE~qnR95}$ok4ph^PY-S*TFId=WvE9^NR=b
z#H2<)mL0}DA(J7eS(?s!7;sleekImmAg=|ReXq8{d!rGeCkt%1OiL;oik?mwLy942
z`HW<4Z)!e@{b~5l7T;sDSX)=L#c4jA>;N09^>_&*t9JMJ@NzGDP=l_zzA~nmq;pFW
zcYMCrw%anob<S%j^~Nepm-oa)HV_NOkSw!ab%<oIA_{4o_L993@%6DuxU5n^qGKHE
zZNPQzIDD75aOgDw-v`sAqO!O~hiv>f%FQQqjwW5jDW;qr!*5r-NT}6jY2P$6OpNQM
zT2{gJ0*AndyE`_PC2{Ef-ouIsb6%&m#2^y_q8tAatiQJH2U5Su!13|uIY4s&9adCb
zJ&d?EDndMAf}RYVjujfp$)d8V`&Cr@li|KtL1W&QQucAK5p%8w6>4<^eyplOI75)t
z_~V1X2n)%M?+8N*X<f|a@I;zMN8vW+<fdCp7I{1frB_bw2K@mGwa#Zm2vF@x2Xog)
zT``E({bvPvc~OT%T{=3k#TshQr_Ceu4aKrke8yEEWa_Go$wb+yCSQ*h3DP%GXvxbk
z!{cZ@e;8Mnjy!OH`zJL8c@i>ratVhO^>oUDlU`Z(0S&Y{X4{g&Gu2V%VZ2vkL~(O#
zKHQjdtavrXb0Hbw$Mp$H>IV8~w@jqIz|hY1X0k^MCXji)fG39E&;DYub|Dc0C#ISW
z$ifvlG&9p)2h2mq3y|y~xoAtmg<pw%M4hi;<Xk{i<r7y1lzgrhps{VbOI6@Q>&B+0
z-}iPTzt_NdIYe*>_v+^NbG6t`=9U!_nS&BUUWK&4#N!;9Gxo7){8qdR)2;gDJk`gM
zZ|m<aW(FNJMU<|0J3Wk|7}ICMV9V>o2a%><P$BZGT8`eJS@7(uz|!a^?K761R;J6P
z{7zYIHAqp!l+4)~c}JYE-MOFIAxN`uR$Sy@vhAFOt*jbM{y26qeZ~E@;$U9iltTW_
z{ryAgwsAR4P9T!GrtXc*vMh!DLgqt}LYUMy3+~#{fn`TB`Tys*<$p^ZSP}A2R?t1<
zmzjm{O(K-ab<JgxzY~UODENh%UU(c|D6h=MM+FTQZ+|hCEyCarAUI2cdBT0W(oOM^
zWSq9g1Md42IQg_&*i_t$rK>|n&vcJvIzGU$4A;zBMT%uhHoRiSIEw9~&&uFlZCh<#
znEDuQd6`n2cbzt7?0vh^m*gfbV+}N@e;C2MgU_+nm8tptV6FUJZTlT9wyKt@U4<+3
z6|T38X)*e9B?k{uvO?Jg3neMMH{mBSLA4UG8hcqG#uf&o@tTHKAFj#{a?!oAs!q3^
z^sbce0<Nl!<<mT&O)SY_D`p5&rCj8=CXp;`Q`5?47FVUkp)Qn3sNnx5e*YihmL33%
zwPF+~Jkef%UfOXf5W%a;aNwi!n%SUk4b+SZUE*~6T-_kH9ee+c1N~1M`Y+>tUxnuT
zwZ%8qy!Y*Euh43{@s+|p?UVfgxX&BTMTWJ?@R5%lVqR=J#U8t6Y-re?HNPkVKLe<n
z-f*^r0mAb=ag!H|he*$w_Y>)rmv@XyEcRSMF5l@gd&CSq%Bv-^>QgG<(3%jRj65HG
za+Z+jK24C0zV;?g8)xWf&%X{GBxdtw|F-Gow9V-|%&lrFT$)TqmF+`|Q_qb#E+e*}
z_eJUxWG2i)l|8hClS9OsQ<ZpBRp7D}`^IFjP`2)0&zYmtl36a4er!)a$NvXS7;qVK
zuo!V0131`C3;=AbTx<XXHg0Bs2|Ein3!4#}0nmi?4+ZcR;^T;UV8F~j2!H|IH2xel
zCuV8m*4C~v&SvgBxnTUnKbq%@UOj)|Pj3Cfsx8n(Flc~7xbX2uAShb^!${+tdvCWd
zk|TA8t|_%Wz88UZP`HP!CeTacSEwjd49c;Bfq)4?j6R0QspeQ%5Z1ck9+QDds))>V
zm!!_vYuqO=LlR`yCgv|AYfba6#m4NfAhesWh;8P+$R*;#9};XbZfHrgK7PUH6$Fn=
z_gl9s>Dk=8)TafKeHM0;IQ;S4H6w`ujZ*LLPFL}F>jS9g2O7J6G{V2&F;c|O=wFhc
z$3mCxVu2WVTX{744Lv*$jKHPCFS?<~4S$2jVE;eiu_h4xzqVWWW3vZvP-t)w5Qy83
zRah8)YCSj9IG@>g=`n6dR4Y;^;`kO{*2DW{%6Uua^o{&WDp@YHbhP|WwU~*3yhr#7
zj7++coK?(<Y^?u;fWg2eL4aalByjw=@t`eRKj(5aVH7^uHjU*^NWS|?S~mM$UKf*h
zW`L0h14l7TGj+|hw4^+ao2RImTdHC_K7HkIl&FzOR_62hV@h&z8#A+*aBu*Ch6W!~
z(vbZll>RYI0fxq`AJvI096&?Uzic#e^HHJ*`BBpg@%|5UG7#b{Bd48ps)Y3+{;jO1
zQbjo8RqRc%_S;r!MEA5FKc&NhhI?u>?Fh>z4Ku&@^vkVjPg!OXOWRin-$f3)Br00`
zq14?C1I5o7RQ_`eP?l|&(w8ekTxp<5zaSH($>!~a%D#cBt=Ui&=^kQY{jv?PI~Pkn
zI+y`3gj*l=s_=qEn2vS}A7DgG5s?;~@;f0(Bsz~R)zi->b+_`$tku}`011(`<@X5w
zOe(+(kUP}^5w)SU2*N4lA>ud^fejMo6qk^Di>_E}S6{gu3`knut`b3_Gy#axsn3Wp
z*w5GgRuDns>?TzbZDNz_8g}t|4};glPFw{-GY<4bm+CUo&Z$;?`Retnwso%Ea-0Da
z)NDcG7(sQ*wL*>8L{S)~<3MbK(Jj4lDnUX#V7iibP#<;#@~hf_V+N#v9bBF+$mmHE
z+AzMDut2mktr7QYmqZE3Idj=Q1gqTxl-t`27MVaITikVyM0@Xd-D<I4P5AjsFd893
zW|x@^Y5@c)(4%5<ZM*r2@z?n1`5a?PhOk|yJ%QGBrKK0RzahvGK*Q29#*%a4&D83z
z3%g9#(h}s}S`)=npmyIqcZ7n7>vxcqg6Df&U8#LHq`1o_Rjj75+)$1;wrOFWY^pCt
zx$(p&zrU{Sg#egGvMI0?Prh{7qyx^0@JLC|lYxQE;^&g`2Lz1LBb22*?hfPXxiuA-
zcB4u4$T@LKs(Tp2t8&|pYAmQWyy3#ZT%Bb6)2YhCX@=(UkO-cw8i#N3gqB${a;^rl
zHQ#tbhZE9ux3jyZ%lhM+2d9!@gif7kjf2ybRf!j0VogYFX*Lj9%T-S8`O4toZdTx^
zw#zRH_E-XMWta$>_x(D{W4JalDu2E(RM+E<UGh9wHODyBHJIyo|KNNxiYFEKb03OZ
zKqa%<p2rNse-1QvPiw@0rvRXsJArlI1>>*Es?roBU&WZHW1PRj|J<A-H_J^MBTSI-
zz}J8jf8I0RRgaeKj=xQ0<mS(s)s7Wg(DjXC-9O8IxbMZGbqY)EX1{$?`DPSMv7lGY
zGk5@&HB6BJyp-3=WQJ2H;J84KGZA>09f#_ehiWgbO%g&ZP@<}k$lDZ06c1j7NW6bi
zTY`*>wvb<6D9m-Jx?SC}hkZ+he}m~vz1oOhiR+a2&(l!AYHWE?aN+VTY5OeqdvFOs
zXD1-{4AAr>vpzOL#Dv7f|4@=VZjyx&218(WA71W#%Fy8u#|w#TaCKW)p8R-fVoA+)
zQlEEAroLGfo7LsVA^!7mmFiH)k8C4|Lr(6<q%YVezc#xVIqGaNgmVSu+XL@DY1!@p
zoVEMx*N&XmB&3NpvB<4Z#Wd3&Jp8(HsJ3R&#Dv#8s!4}y-q{dXJwN@>ljbm9e8R8k
zjNN(AO0Ruh1kbs0R+T{loz>R~S^&JF$$lyGVjflPUx&P@o(!T3UZv)s>LtesRa~z_
zI3#j8uTZF=eJ%GEqWe5DJub48EYL~_(Pr)(kRvy2J<)Je#uD#i8eH`%p@=%+vwS6S
zd$StrqM-J(G4F(QsZTh+RtK`4I6%(q;r6#j83bF<yIXUDQ4mkXyVsdt9+p4Rm{7EQ
zudp|=MQRTwZ4Y3EoylnLYNnmL2PPJdXZnfImn$ZtHvs_OWdx5+_Km(|S|>lgl!vuQ
zt^S<{1OJEAytDM_`gjsZDnSho$n_gBug**VuRHQ*zioZIR-^XpIQ|xK5&x6w#Q#X-
z`M+&-a57Hil*d+1LTp12=lkQnZ3;^(9C^4BSoEv7HUmEZVu3|4zMu8xN{ZZ5)6aHq
zNu_XcD<DzqOXmHrnr=?*!d2^ieUgEuJXIgXw(kW5^VMLp*69_C(MUX%9l!BTI*#Uz
zpGDxVf6Gv##}$FZ|G2}lX0Y)S1e0%!M0aLbQya{*5s&^H=-x<#=2q)=3_9hm+W`-<
zhqrWtwa+qr-s!o?y10Xn<yPC9X4z;li_<4R)nu)xEw4xz>NAn!`v@gjs5IM(FsWNn
zE;AbMki<T_-J&ujGMpj7LbdLjEU_JUa53&10~$brq#1Kg;?nfL<{l~&vu>};D>v2|
zRhs^_<Tr7FaR?qQc29FUHbsW>=Zs}XjQPZrzYDVcdhZ~!Qsa=3PQv!h&OKUw0ac~3
z{JV}<OFH_0m@t!Z<7LH#*VAh~*dKei8J52-?lGSJ;NkmC$8&am|Fi9l`oBl-{%w63
zxckoaO?p#xe(D$AH+<z7I<M9|;$hO~Js}rvEzDi|MtH`ypCMPjRJwh?@$J_S(_D{T
zCKF=zP7KqZeCNbg%bM~j?-UF)BAi!rojuam;IUWSxVw3_qs{g<@5sfs=Vm2*DrqUv
zSpP@gA#cZ~9b4MG=j^lY|6lax-f1<Rq}oH_ED;jlqbkm_yDSg6`ef#gh*#_Q^PVvK
xWU+mVEZCA0=@Htw>eRY~z@28>b-X4{F@7NQ_TOHM@3SQ$Kc6g};eBHd0|2jL#v}j$

literal 0
HcmV?d00001

diff --git a/oxAuth/Client/src/test/resources/interop_Gluu_OX.properties b/oxAuth/Client/src/test/resources/interop_Gluu_OX.properties
new file mode 100644
index 00000000..854dbd45
--- /dev/null
+++ b/oxAuth/Client/src/test/resources/interop_Gluu_OX.properties
@@ -0,0 +1,44 @@
+swdResource=https://${test.server.name}
+#swdResource=https://localhost:8443
+#authorizationEndpoint = https://localhost:8443/restv1/authorize
+#tokenEndpoint = https://localhost:8443/restv1/token
+#userInfoEndpoint = https://localhost:8443/restv1/userinfo
+#checkSessionIFrame = https://localhost:8443/restv1/check_session
+#endSessionEndpoint = https://localhost:8443/restv1/end_session
+#jwksUri = https://localhost:8443/restv1/jwks
+#registrationEndpoint = https://localhost:8443/restv1/register
+
+userId = ${auth.user.uid}
+userSecret = ${auth.user.password}
+redirectUri = https://${test.server.name}/oxauth-rp/home.htm
+redirectUris = https://${test.server.name}/oxauth-rp/home.htm https://client.example.com/cb https://client.example.com/cb1 https://client.example.com/cb2
+sectorIdentifierUri = https://${test.server.name}/oxauth-client/test/resources/sector_identifier.js
+
+## Client Resources
+requestFileBasePath=/var/www/html/oxAuth
+requestFileBaseUrl=http://localhost/oxAuth
+clientJwksUri=https://${test.server.name}/oxauth-client/test/resources/jwks.json
+## RS256
+RS256_modulus=AJpGcIVu7fmQJLHXeAClhXaJD7SvuABjYiPcT9IbKFWGWj51GgD-CxtyrQGXT0ctGEEsXOzMZM40q-V7GR-5qkJ_OalVTTc_EeKAHao45bZPsPHLxvusNfrfpyhc6JjF2TQhoOqxbgMgQ9L6W9q9fSjgzx-tPlD0d3X0GZOEQ_NYGstZWRRBwHgsxA2IRYtwSH-v76yPpxF9poLIWdnBKtKfSr6UY7p1BrLmMm0DdMhjQLn6j4S_eB-p2WyBwObvsLqO6FdClpZFtGr82Km2uinpHvZ6KJ_MUEW1sijPPI3rIGbaUbLtQJwX5GVynAP5qU2qRVkcsrKt-GeNoz6QNLM
+RS256_privateExponent=RkIKAFpyehMRAwTTm8fFriPhSTI1I8ge66HroA3KIpjbBFKkEwue11M0QuM7sXhx8UxYzWaQCfCm0A1tdatCRKJYCivUzHImnPYnjFv5ETvdo2BgMEFPG_86ywD01I5Vyo3-EKPZLAdHnA90QXvGQhWPfieRl6CdvtP5ydqUb39aPazZKzPx4v6hj-7wrrwrQmYq-7li_urR2zhz5HvE_eE66i1xhGTI8VdV9VE2y06Zbzn54qL7kf0nsjvg4X9ERdXv4kkhRwSSc3CExJ-iNbo0n3nQ3KovhpA1FEzd9cwI_2EfLRIvVjJRMTnPHCLmz_8-Htn2Kpi3vV9MWHab8Q
+## RS384
+RS384_modulus=AJ125IzZ0TRSSoVas3jwMWuckyMujoGUUeDd8rLjTSCLlgUb3RiT9MbKfWdeCByme5MZ21lvMu6OmMFn8iDb5erLSBJ8bZFq6ruGIVzU8NI833IahlIO9m6JIR4L_go8Szu-1MYPGUjOKDsxc-Fp3fR-Kb0HFAEEs44t9vL9yMKjNeQeAp7Fo2AukDNEZqvEObP7XWLdJFA-TuAXE1f7o49lMr0y4Tqy2XeDKwfklO0bAnbSryZubRg2E7gjiwaiSYVIFphotLlpCd3N4MU46JjHA2dv1GtIe8749HinwhK1stes3PbZb9Gwm2LyK89iRJ35bCmDLnkwP0rTwTZ2Ul8
+RS384_privateExponent=NYqTtADsTaodhLKOi_TAGSMoNLJD6nOQU7GkMIdxVjugSyRqTU0h0eZQNbGXeIZzRlVobESPQOZjsn-xqNKcnvV4EDEW4HdGUXUOKw6MxC_GmnnCamyEBpnCFQFm4_wUaMA-gQnpQwQ2UcpC6Maindu4PXoGp0H9-75NVdpNRUDHO5xY2Ybp2kVv__sUWCKRLK7JaKRA3iGlXFpLPSy9DvmBjy27z1t_z58_vrPrVset7muMwMTwgfDv-EP3NBH4eTg7_Cy952MuhxaUUsHW85LZuv5t_rcoUF8kfDWcclP3a954lAzCbVjdngpvaShNbiTKAf9-bMQKG66v63W54Q
+## RS512
+RS512_modulus=AKuc75KyKNwteumhyN5Kxa4ipQZrE_ouULtMZmCYI3Y32oCv3wWkgmrprBo-yCK292wfn77dNdZ9h5OoY-6sDVG-OKi9uwXpFcopyqIdsYOrw-4FKHxpr_7b--cH6HRmGlSFKVJpwfvIjD9Mu8S9bhNgnXfbKoYLcANU7Vjtacr3MvX-U406eRXLI9lZNr6ViQxSJw3A7yYMo2XYMYhO-FHGOYeV815q7fJFUMoCUMNSWlCx-pUCVGg0PuCKlOhUGIoLqvuFqUnBNd0hoAJCtmqya4_e3DLNzOgr2HOEbX7kQEjpi0XdyQ0fbFTAYO9TpXT2gldnmOElZ4UE2lX8J6M
+RS512_privateExponent=doYyFGAFxmOG43tAbv63XthAn5kut_hq-6D9iDMrMsfKmlxdLNl81XhDy_CWaxtw8PU6cCj5uQUDsSB4vGuJ224EVc6ML73WtcR9VdAqPOVRsb9QQfUAf4XRibO1gUbPYpaBfpDaUBonesR1XqDyOGHe_9uXl_KoTzTFpEh8a5eCk9mwz85bb08PxQUut5DFdzPPyTi8_k3m7hry97I0TMbHUTiTqjgFpq2ZqSn4KQz77uft1oMwJLvlNHP6Fs25aVYrgAWw1DfTcCDwPAKxXlCD4ZPfGN2LmxZWCYxj1HLVKmQkrjX-FSgvpHs7YUqzJ19whmrTEtODnhWvZhTucQ
+## ES256
+ES256_d=AIiNVUvr6-ChpOv2F7HNXyS2pYuoLF3ZqF2kTP0XquzB
+## ES384
+ES384_d=S5iDyZaSar7cqcCKYFC1VGVKAXmwdOSHRMrwbrEd_WvmIYi3u8PwHFYAmA0PEwLF
+## ES512
+ES512_d=AbedxoxLdftbJpXMYWlcuJkEF6iRotCxYYbH18NyEuOka_vS5dLV6m6Bhx_y_y9NgTQzP5SGzfpkSpgF6JVG7eFL
+
+# Form Interaction
+loginFormUsername = loginForm:username
+loginFormPassword = loginForm:password
+loginFormLoginButton = loginForm:loginButton
+authorizeFormAllowButton = authorizeForm:allowButton
+authorizeFormDoNotAllowButton = authorizeForm:doNotAllowButton
+
+hostnameVerifier=allow_all
\ No newline at end of file
diff --git a/oxAuth/Client/src/test/resources/interop_NRI_PHP.properties b/oxAuth/Client/src/test/resources/interop_NRI_PHP.properties
new file mode 100644
index 00000000..b69d1a40
--- /dev/null
+++ b/oxAuth/Client/src/test/resources/interop_NRI_PHP.properties
@@ -0,0 +1,39 @@
+swdResource=https://connect.openid4.us
+authorizationEndpoint =
+tokenEndpoint =
+userInfoEndpoint =
+checkSessionIFrame =
+endSessionEndpoint =
+jwksUri =
+registrationEndpoint =
+
+userId = bob
+userSecret = underland
+redirectUri = https://${test.server.name}/oxauth-rp/home.htm?foo=bar
+redirectUris = https://${test.server.name}/oxauth-rp/home.htm https://client.example.com/cb https://client.example.com/cb1 https://client.example.com/cb2
+sectorIdentifierUri = https://${test.server.name}/oxauth-client/test/resources/sector_identifier.js
+
+## Client Resources
+clientJwksUri=https://${test.server.name}/oxauth-client/test/resources/jwks.json
+## RS256
+RS256_modulus=AJpGcIVu7fmQJLHXeAClhXaJD7SvuABjYiPcT9IbKFWGWj51GgD-CxtyrQGXT0ctGEEsXOzMZM40q-V7GR-5qkJ_OalVTTc_EeKAHao45bZPsPHLxvusNfrfpyhc6JjF2TQhoOqxbgMgQ9L6W9q9fSjgzx-tPlD0d3X0GZOEQ_NYGstZWRRBwHgsxA2IRYtwSH-v76yPpxF9poLIWdnBKtKfSr6UY7p1BrLmMm0DdMhjQLn6j4S_eB-p2WyBwObvsLqO6FdClpZFtGr82Km2uinpHvZ6KJ_MUEW1sijPPI3rIGbaUbLtQJwX5GVynAP5qU2qRVkcsrKt-GeNoz6QNLM
+RS256_privateExponent=RkIKAFpyehMRAwTTm8fFriPhSTI1I8ge66HroA3KIpjbBFKkEwue11M0QuM7sXhx8UxYzWaQCfCm0A1tdatCRKJYCivUzHImnPYnjFv5ETvdo2BgMEFPG_86ywD01I5Vyo3-EKPZLAdHnA90QXvGQhWPfieRl6CdvtP5ydqUb39aPazZKzPx4v6hj-7wrrwrQmYq-7li_urR2zhz5HvE_eE66i1xhGTI8VdV9VE2y06Zbzn54qL7kf0nsjvg4X9ERdXv4kkhRwSSc3CExJ-iNbo0n3nQ3KovhpA1FEzd9cwI_2EfLRIvVjJRMTnPHCLmz_8-Htn2Kpi3vV9MWHab8Q
+## RS384
+RS384_modulus=AJ125IzZ0TRSSoVas3jwMWuckyMujoGUUeDd8rLjTSCLlgUb3RiT9MbKfWdeCByme5MZ21lvMu6OmMFn8iDb5erLSBJ8bZFq6ruGIVzU8NI833IahlIO9m6JIR4L_go8Szu-1MYPGUjOKDsxc-Fp3fR-Kb0HFAEEs44t9vL9yMKjNeQeAp7Fo2AukDNEZqvEObP7XWLdJFA-TuAXE1f7o49lMr0y4Tqy2XeDKwfklO0bAnbSryZubRg2E7gjiwaiSYVIFphotLlpCd3N4MU46JjHA2dv1GtIe8749HinwhK1stes3PbZb9Gwm2LyK89iRJ35bCmDLnkwP0rTwTZ2Ul8
+RS384_privateExponent=NYqTtADsTaodhLKOi_TAGSMoNLJD6nOQU7GkMIdxVjugSyRqTU0h0eZQNbGXeIZzRlVobESPQOZjsn-xqNKcnvV4EDEW4HdGUXUOKw6MxC_GmnnCamyEBpnCFQFm4_wUaMA-gQnpQwQ2UcpC6Maindu4PXoGp0H9-75NVdpNRUDHO5xY2Ybp2kVv__sUWCKRLK7JaKRA3iGlXFpLPSy9DvmBjy27z1t_z58_vrPrVset7muMwMTwgfDv-EP3NBH4eTg7_Cy952MuhxaUUsHW85LZuv5t_rcoUF8kfDWcclP3a954lAzCbVjdngpvaShNbiTKAf9-bMQKG66v63W54Q
+## RS512
+RS512_modulus=AKuc75KyKNwteumhyN5Kxa4ipQZrE_ouULtMZmCYI3Y32oCv3wWkgmrprBo-yCK292wfn77dNdZ9h5OoY-6sDVG-OKi9uwXpFcopyqIdsYOrw-4FKHxpr_7b--cH6HRmGlSFKVJpwfvIjD9Mu8S9bhNgnXfbKoYLcANU7Vjtacr3MvX-U406eRXLI9lZNr6ViQxSJw3A7yYMo2XYMYhO-FHGOYeV815q7fJFUMoCUMNSWlCx-pUCVGg0PuCKlOhUGIoLqvuFqUnBNd0hoAJCtmqya4_e3DLNzOgr2HOEbX7kQEjpi0XdyQ0fbFTAYO9TpXT2gldnmOElZ4UE2lX8J6M
+RS512_privateExponent=doYyFGAFxmOG43tAbv63XthAn5kut_hq-6D9iDMrMsfKmlxdLNl81XhDy_CWaxtw8PU6cCj5uQUDsSB4vGuJ224EVc6ML73WtcR9VdAqPOVRsb9QQfUAf4XRibO1gUbPYpaBfpDaUBonesR1XqDyOGHe_9uXl_KoTzTFpEh8a5eCk9mwz85bb08PxQUut5DFdzPPyTi8_k3m7hry97I0TMbHUTiTqjgFpq2ZqSn4KQz77uft1oMwJLvlNHP6Fs25aVYrgAWw1DfTcCDwPAKxXlCD4ZPfGN2LmxZWCYxj1HLVKmQkrjX-FSgvpHs7YUqzJ19whmrTEtODnhWvZhTucQ
+## ES256
+ES256_d=AIiNVUvr6-ChpOv2F7HNXyS2pYuoLF3ZqF2kTP0XquzB
+## ES384
+ES384_d=S5iDyZaSar7cqcCKYFC1VGVKAXmwdOSHRMrwbrEd_WvmIYi3u8PwHFYAmA0PEwLF
+## ES512
+ES512_d=AbedxoxLdftbJpXMYWlcuJkEF6iRotCxYYbH18NyEuOka_vS5dLV6m6Bhx_y_y9NgTQzP5SGzfpkSpgF6JVG7eFL
+
+# Form Interaction
+loginFormUsername = username
+loginFormPassword = password
+loginFormLoginButton =
+authorizeFormAllowButton = confirmed
+authorizeFormDoNotAllowButton = cancel
\ No newline at end of file
diff --git a/oxAuth/Client/src/test/resources/interop_Nov_Matake_Test.properties b/oxAuth/Client/src/test/resources/interop_Nov_Matake_Test.properties
new file mode 100644
index 00000000..a4fda3cf
--- /dev/null
+++ b/oxAuth/Client/src/test/resources/interop_Nov_Matake_Test.properties
@@ -0,0 +1,39 @@
+swdResource=https://connect-op.heroku.com
+authorizationEndpoint =
+tokenEndpoint =
+userInfoEndpoint =
+checkSessionIFrame =
+endSessionEndpoint =
+jwksUri =
+registrationEndpoint =
+
+userId =
+userSecret =
+redirectUri = https://${test.server.name}/oxauth-rp/home.htm?foo=bar
+redirectUris = https://${test.server.name}/oxauth-rp/home.htm https://client.example.com/cb https://client.example.com/cb1 https://client.example.com/cb2
+sectorIdentifierUri = https://${test.server.name}/oxauth-client/test/resources/sector_identifier.js
+
+## Client Resources
+clientJwksUri=https://${test.server.name}/oxauth-client/test/resources/jwks.json
+## RS256
+RS256_modulus=AJpGcIVu7fmQJLHXeAClhXaJD7SvuABjYiPcT9IbKFWGWj51GgD-CxtyrQGXT0ctGEEsXOzMZM40q-V7GR-5qkJ_OalVTTc_EeKAHao45bZPsPHLxvusNfrfpyhc6JjF2TQhoOqxbgMgQ9L6W9q9fSjgzx-tPlD0d3X0GZOEQ_NYGstZWRRBwHgsxA2IRYtwSH-v76yPpxF9poLIWdnBKtKfSr6UY7p1BrLmMm0DdMhjQLn6j4S_eB-p2WyBwObvsLqO6FdClpZFtGr82Km2uinpHvZ6KJ_MUEW1sijPPI3rIGbaUbLtQJwX5GVynAP5qU2qRVkcsrKt-GeNoz6QNLM
+RS256_privateExponent=RkIKAFpyehMRAwTTm8fFriPhSTI1I8ge66HroA3KIpjbBFKkEwue11M0QuM7sXhx8UxYzWaQCfCm0A1tdatCRKJYCivUzHImnPYnjFv5ETvdo2BgMEFPG_86ywD01I5Vyo3-EKPZLAdHnA90QXvGQhWPfieRl6CdvtP5ydqUb39aPazZKzPx4v6hj-7wrrwrQmYq-7li_urR2zhz5HvE_eE66i1xhGTI8VdV9VE2y06Zbzn54qL7kf0nsjvg4X9ERdXv4kkhRwSSc3CExJ-iNbo0n3nQ3KovhpA1FEzd9cwI_2EfLRIvVjJRMTnPHCLmz_8-Htn2Kpi3vV9MWHab8Q
+## RS384
+RS384_modulus=AJ125IzZ0TRSSoVas3jwMWuckyMujoGUUeDd8rLjTSCLlgUb3RiT9MbKfWdeCByme5MZ21lvMu6OmMFn8iDb5erLSBJ8bZFq6ruGIVzU8NI833IahlIO9m6JIR4L_go8Szu-1MYPGUjOKDsxc-Fp3fR-Kb0HFAEEs44t9vL9yMKjNeQeAp7Fo2AukDNEZqvEObP7XWLdJFA-TuAXE1f7o49lMr0y4Tqy2XeDKwfklO0bAnbSryZubRg2E7gjiwaiSYVIFphotLlpCd3N4MU46JjHA2dv1GtIe8749HinwhK1stes3PbZb9Gwm2LyK89iRJ35bCmDLnkwP0rTwTZ2Ul8
+RS384_privateExponent=NYqTtADsTaodhLKOi_TAGSMoNLJD6nOQU7GkMIdxVjugSyRqTU0h0eZQNbGXeIZzRlVobESPQOZjsn-xqNKcnvV4EDEW4HdGUXUOKw6MxC_GmnnCamyEBpnCFQFm4_wUaMA-gQnpQwQ2UcpC6Maindu4PXoGp0H9-75NVdpNRUDHO5xY2Ybp2kVv__sUWCKRLK7JaKRA3iGlXFpLPSy9DvmBjy27z1t_z58_vrPrVset7muMwMTwgfDv-EP3NBH4eTg7_Cy952MuhxaUUsHW85LZuv5t_rcoUF8kfDWcclP3a954lAzCbVjdngpvaShNbiTKAf9-bMQKG66v63W54Q
+## RS512
+RS512_modulus=AKuc75KyKNwteumhyN5Kxa4ipQZrE_ouULtMZmCYI3Y32oCv3wWkgmrprBo-yCK292wfn77dNdZ9h5OoY-6sDVG-OKi9uwXpFcopyqIdsYOrw-4FKHxpr_7b--cH6HRmGlSFKVJpwfvIjD9Mu8S9bhNgnXfbKoYLcANU7Vjtacr3MvX-U406eRXLI9lZNr6ViQxSJw3A7yYMo2XYMYhO-FHGOYeV815q7fJFUMoCUMNSWlCx-pUCVGg0PuCKlOhUGIoLqvuFqUnBNd0hoAJCtmqya4_e3DLNzOgr2HOEbX7kQEjpi0XdyQ0fbFTAYO9TpXT2gldnmOElZ4UE2lX8J6M
+RS512_privateExponent=doYyFGAFxmOG43tAbv63XthAn5kut_hq-6D9iDMrMsfKmlxdLNl81XhDy_CWaxtw8PU6cCj5uQUDsSB4vGuJ224EVc6ML73WtcR9VdAqPOVRsb9QQfUAf4XRibO1gUbPYpaBfpDaUBonesR1XqDyOGHe_9uXl_KoTzTFpEh8a5eCk9mwz85bb08PxQUut5DFdzPPyTi8_k3m7hry97I0TMbHUTiTqjgFpq2ZqSn4KQz77uft1oMwJLvlNHP6Fs25aVYrgAWw1DfTcCDwPAKxXlCD4ZPfGN2LmxZWCYxj1HLVKmQkrjX-FSgvpHs7YUqzJ19whmrTEtODnhWvZhTucQ
+## ES256
+ES256_d=AIiNVUvr6-ChpOv2F7HNXyS2pYuoLF3ZqF2kTP0XquzB
+## ES384
+ES384_d=S5iDyZaSar7cqcCKYFC1VGVKAXmwdOSHRMrwbrEd_WvmIYi3u8PwHFYAmA0PEwLF
+## ES512
+ES512_d=AbedxoxLdftbJpXMYWlcuJkEF6iRotCxYYbH18NyEuOka_vS5dLV6m6Bhx_y_y9NgTQzP5SGzfpkSpgF6JVG7eFL
+
+# Form Interaction
+loginFormUsername =
+loginFormPassword =
+loginFormLoginButton =
+authorizeFormAllowButton =
+authorizeFormDoNotAllowButton =
\ No newline at end of file
diff --git a/oxAuth/Client/src/test/resources/interop_Oreo.properties b/oxAuth/Client/src/test/resources/interop_Oreo.properties
new file mode 100644
index 00000000..e69de29b
diff --git a/oxAuth/Client/src/test/resources/interop_Roland_Hedberg_Test.properties b/oxAuth/Client/src/test/resources/interop_Roland_Hedberg_Test.properties
new file mode 100644
index 00000000..dfb1e1f8
--- /dev/null
+++ b/oxAuth/Client/src/test/resources/interop_Roland_Hedberg_Test.properties
@@ -0,0 +1,39 @@
+#swdResource=https://xenosmilus2.umdc.umu.se:8091
+authorizationEndpoint = https://xenosmilus2.umdc.umu.se:8091/authorization
+tokenEndpoint = https://xenosmilus2.umdc.umu.se:8091/token
+userInfoEndpoint = https://xenosmilus2.umdc.umu.se:8091/userinfo
+checkSessionIFrame =
+endSessionEndpoint =
+jwksUri = https://xenosmilus2.umdc.umu.se:8091/static/jwks.json
+registrationEndpoint = https://xenosmilus2.umdc.umu.se:8091/registration
+
+userId = diana
+userSecret = krall
+redirectUri = https://${test.server.name}/oxauth-rp/home.htm?foo=bar
+redirectUris = https://${test.server.name}/oxauth-rp/home.htm https://client.example.com/cb https://client.example.com/cb1 https://client.example.com/cb2
+sectorIdentifierUri = https://${test.server.name}/oxauth-client/test/resources/sector_identifier.js
+
+## Client Resources
+clientJwksUri=https://${test.server.name}/oxauth-client/test/resources/jwks.json
+## RS256
+RS256_modulus=AJpGcIVu7fmQJLHXeAClhXaJD7SvuABjYiPcT9IbKFWGWj51GgD-CxtyrQGXT0ctGEEsXOzMZM40q-V7GR-5qkJ_OalVTTc_EeKAHao45bZPsPHLxvusNfrfpyhc6JjF2TQhoOqxbgMgQ9L6W9q9fSjgzx-tPlD0d3X0GZOEQ_NYGstZWRRBwHgsxA2IRYtwSH-v76yPpxF9poLIWdnBKtKfSr6UY7p1BrLmMm0DdMhjQLn6j4S_eB-p2WyBwObvsLqO6FdClpZFtGr82Km2uinpHvZ6KJ_MUEW1sijPPI3rIGbaUbLtQJwX5GVynAP5qU2qRVkcsrKt-GeNoz6QNLM
+RS256_privateExponent=RkIKAFpyehMRAwTTm8fFriPhSTI1I8ge66HroA3KIpjbBFKkEwue11M0QuM7sXhx8UxYzWaQCfCm0A1tdatCRKJYCivUzHImnPYnjFv5ETvdo2BgMEFPG_86ywD01I5Vyo3-EKPZLAdHnA90QXvGQhWPfieRl6CdvtP5ydqUb39aPazZKzPx4v6hj-7wrrwrQmYq-7li_urR2zhz5HvE_eE66i1xhGTI8VdV9VE2y06Zbzn54qL7kf0nsjvg4X9ERdXv4kkhRwSSc3CExJ-iNbo0n3nQ3KovhpA1FEzd9cwI_2EfLRIvVjJRMTnPHCLmz_8-Htn2Kpi3vV9MWHab8Q
+## RS384
+RS384_modulus=AJ125IzZ0TRSSoVas3jwMWuckyMujoGUUeDd8rLjTSCLlgUb3RiT9MbKfWdeCByme5MZ21lvMu6OmMFn8iDb5erLSBJ8bZFq6ruGIVzU8NI833IahlIO9m6JIR4L_go8Szu-1MYPGUjOKDsxc-Fp3fR-Kb0HFAEEs44t9vL9yMKjNeQeAp7Fo2AukDNEZqvEObP7XWLdJFA-TuAXE1f7o49lMr0y4Tqy2XeDKwfklO0bAnbSryZubRg2E7gjiwaiSYVIFphotLlpCd3N4MU46JjHA2dv1GtIe8749HinwhK1stes3PbZb9Gwm2LyK89iRJ35bCmDLnkwP0rTwTZ2Ul8
+RS384_privateExponent=NYqTtADsTaodhLKOi_TAGSMoNLJD6nOQU7GkMIdxVjugSyRqTU0h0eZQNbGXeIZzRlVobESPQOZjsn-xqNKcnvV4EDEW4HdGUXUOKw6MxC_GmnnCamyEBpnCFQFm4_wUaMA-gQnpQwQ2UcpC6Maindu4PXoGp0H9-75NVdpNRUDHO5xY2Ybp2kVv__sUWCKRLK7JaKRA3iGlXFpLPSy9DvmBjy27z1t_z58_vrPrVset7muMwMTwgfDv-EP3NBH4eTg7_Cy952MuhxaUUsHW85LZuv5t_rcoUF8kfDWcclP3a954lAzCbVjdngpvaShNbiTKAf9-bMQKG66v63W54Q
+## RS512
+RS512_modulus=AKuc75KyKNwteumhyN5Kxa4ipQZrE_ouULtMZmCYI3Y32oCv3wWkgmrprBo-yCK292wfn77dNdZ9h5OoY-6sDVG-OKi9uwXpFcopyqIdsYOrw-4FKHxpr_7b--cH6HRmGlSFKVJpwfvIjD9Mu8S9bhNgnXfbKoYLcANU7Vjtacr3MvX-U406eRXLI9lZNr6ViQxSJw3A7yYMo2XYMYhO-FHGOYeV815q7fJFUMoCUMNSWlCx-pUCVGg0PuCKlOhUGIoLqvuFqUnBNd0hoAJCtmqya4_e3DLNzOgr2HOEbX7kQEjpi0XdyQ0fbFTAYO9TpXT2gldnmOElZ4UE2lX8J6M
+RS512_privateExponent=doYyFGAFxmOG43tAbv63XthAn5kut_hq-6D9iDMrMsfKmlxdLNl81XhDy_CWaxtw8PU6cCj5uQUDsSB4vGuJ224EVc6ML73WtcR9VdAqPOVRsb9QQfUAf4XRibO1gUbPYpaBfpDaUBonesR1XqDyOGHe_9uXl_KoTzTFpEh8a5eCk9mwz85bb08PxQUut5DFdzPPyTi8_k3m7hry97I0TMbHUTiTqjgFpq2ZqSn4KQz77uft1oMwJLvlNHP6Fs25aVYrgAWw1DfTcCDwPAKxXlCD4ZPfGN2LmxZWCYxj1HLVKmQkrjX-FSgvpHs7YUqzJ19whmrTEtODnhWvZhTucQ
+## ES256
+ES256_d=AIiNVUvr6-ChpOv2F7HNXyS2pYuoLF3ZqF2kTP0XquzB
+## ES384
+ES384_d=S5iDyZaSar7cqcCKYFC1VGVKAXmwdOSHRMrwbrEd_WvmIYi3u8PwHFYAmA0PEwLF
+## ES512
+ES512_d=AbedxoxLdftbJpXMYWlcuJkEF6iRotCxYYbH18NyEuOka_vS5dLV6m6Bhx_y_y9NgTQzP5SGzfpkSpgF6JVG7eFL
+
+# Form Interaction
+loginFormUsername = login
+loginFormPassword = password
+loginFormLoginButton = form.commit
+authorizeFormAllowButton =
+authorizeFormDoNotAllowButton =
\ No newline at end of file
diff --git a/oxAuth/Client/src/test/resources/interop_Ryo_Ito_Test.properties b/oxAuth/Client/src/test/resources/interop_Ryo_Ito_Test.properties
new file mode 100644
index 00000000..e69de29b
diff --git a/oxAuth/Client/src/test/resources/interop_Wenou.properties b/oxAuth/Client/src/test/resources/interop_Wenou.properties
new file mode 100644
index 00000000..e69de29b
diff --git a/oxAuth/Client/src/test/resources/interop_rohe_config.py b/oxAuth/Client/src/test/resources/interop_rohe_config.py
new file mode 100644
index 00000000..99f4a1f4
--- /dev/null
+++ b/oxAuth/Client/src/test/resources/interop_rohe_config.py
@@ -0,0 +1,70 @@
+#!/usr/bin/env python
+
+import json
+
+info = {
+    "interaction": [{
+        "matches": {
+            "url": "https://${test.server.name}/oxauth/login.seam"
+        },
+        "page-type": "login",
+        "control": {
+            "type": "form",
+            "set": {
+                "loginForm:username": "${auth.user.uid}",
+                "loginForm:password": "${auth.user.password}"
+            }
+        }
+    }, {
+        "matches": {
+            "url": "https://${test.server.name}/oxauth/authorize.seam"
+        },
+        "page-type": "user-consent",
+        "control": {
+            "type": "form",
+            "click": "authorizeForm:allowButton"
+        }
+    }],
+    "provider": {
+        "version": {
+            "oauth": "2.0",
+            "openid": "3.0"
+        },
+        "dynamic": "https://${test.server.name}"
+    },
+    "features": {
+        "registration": True,
+        "discovery": True,
+        "session_management": False,
+        "key_export": True
+    },
+    "client": {
+        "redirect_uris": ["https://${test.server.name}/oxauth-rp/home.htm?foo=bar"],
+        "contact": ["yuriy@gluu.com"],
+        "application_type": "web",
+        "application_name": "OIC test tool",
+        "key_export_url": "https://${test.server.name}/oxauth-client/test/resources/jwks.json",
+        "keys": {
+            "RSA": {
+                "key": "keys/pyoidc",
+                "use": ["enc", "sig"]
+            }
+        },
+        "preferences": {
+            "subject_type": ["pairwise", "public"],
+            "request_object_signing_alg": ["RS256", "RS384", "RS512",
+                                           "HS512", "HS384", "HS256"],
+            "token_endpoint_auth_methods_supported": ["client_secret_basic",
+                                                      "client_secret_post",
+                                                      "client_secret_jwt",
+                                                      "private_key_jwt"],
+            "id_token_signed_response_alg": ["RS256", "RS384", "RS512",
+                                             "HS512", "HS384", "HS256"],
+            "default_max_age": 3600,
+            "require_auth_time": True,
+            "default_acr": ["2", "1"]
+        }
+    }
+}
+
+print json.dumps(info)
diff --git a/oxAuth/Client/src/test/resources/interop_rohe_python_config.json b/oxAuth/Client/src/test/resources/interop_rohe_python_config.json
new file mode 100644
index 00000000..f5cfa559
--- /dev/null
+++ b/oxAuth/Client/src/test/resources/interop_rohe_python_config.json
@@ -0,0 +1,35 @@
+#!/usr/bin/env python
+
+import json
+
+from default import DEFAULT
+
+info = DEFAULT.copy()
+
+info["provider"] = {"dynamic": "https://${test.server.name}"}
+
+info["interaction"] = [
+    {
+        "matches": {
+            "url": "https://${test.server.name}/oxauth/login.seam"
+        },
+        "page-type": "login",
+        "control": {
+            "type": "form",
+            "set": {"loginForm:username": "${auth.user.uid}",
+                    "loginForm:password": "${auth.user.password}"}
+        }
+    },
+    {
+        "matches": {
+            "url": "https://${test.server.name}/oxauth/authorize.seam"
+        },
+        "page-type": "user-consent",
+        "control": {
+            "type": "form",
+            "click": "authorizeForm:allowButton"
+        }
+    }
+]
+
+print json.dumps(info)
diff --git a/oxAuth/Client/src/test/resources/oxauth_test_client_keys.zip b/oxAuth/Client/src/test/resources/oxauth_test_client_keys.zip
new file mode 100644
index 0000000000000000000000000000000000000000..980322509687311c461ccda5bf34d0049430ebde
GIT binary patch
literal 9015
zcmai)Wl)_<wy-y@!QI{6-8Hxb2`(FVhm8~5-Q5Z91PBn^LU0JK8+X^6^Ua;Pr)KU~
zx4WvV`^S2Ebyrut^{#qU6`-II0e`hCXG^*NH~H@Y1%L){^fGaGvtl;0vj#f2v3}A)
z2H0hq>B|kSY289#0aX7Ld-HFxnEw&$26X)&fZ~4usvwk<|Gqi#{|;~gx;nbMm;qh?
zm5cG8eEyjW76ATF|92G4|An&gv~^{%admX~>wJIl{>hy0)UMlIS|;&1H!?YB)u-Dx
z?!}$RWZI`dMd8VCRUYJc*+A7xk}X~sc`GX~HN*WDWT3B4xVwEVVsg3m{wn$kKE5ue
z5lk0-U3`Cee|cPKn+kZ}EANTXKIDF(Wr`Pvq%IbWD%mCO!#p7or}CvOr0RSF;^jaD
zJh5&l8B959FlRsco9i_?QYw7%6~$;7G};%VyL;8SBdKFYqZWgvCBq6L+wSCia&(nF
zQaCB4RRlG`(7;-0<+Th<8~aJ$jbcsC0()6KgnBX-1*t^FFfsgQ#9HN1se;&AQWP?(
zGqis6zpN_ph?P)G){hh}j@H;NTB~&YL>dslKBN7X=V`;IvNs-=kb1m!at(Zxnc@2&
zI~J7?EiJVTS_;8NuFJI(qvA0tH@y(t#L$e2Qkg~o8`uiXtTtxIram&tm>QaQ$GmQb
zJvXwU?=Pf20DsO6_&&CzPx=Vs)kJ@&r)){;z$mhGR{3?#6e?sF_<P}+O=Rq~DH6c3
zrC`4vYofKmhT&n}X?5Ss9Y|kVkKsARQ_+9%AT+F^hV;G8rsW#i%Q?=akTe7<MRK+%
zF2D<KBQ1-A{^>c0H|vEs&maF6Rb;6MvLsMXoESq1TOFNY@)v3n`lY=Lz|}Z^0U}J0
z!zII<anov``f6cZ!zM6<8%h^nqH+~8mxDi*r*320sY3<|66PC`JCQ$fy4zDDY~<|W
zaX|LX0-lFGaaT3Zqbhy?z_Gtjc`^~@w3t}HR(i2P!z{pkqJbiIYkfQX<Dta8)yLU~
zIH`$rI4R`GES||QR{V$;CuA}bc%$EHSo)=EfxSz~#tQ5cSwu>iEYjo{lO%I(&Y=Xg
zAfC)H>c$c;s;-`>^&n8p3BtKMgS3k#btt>Mh9A029fr%#ds2HZXlvw6Y@R@A^qxvy
zV`7dW#fxX|uoCxe3kg&>28mCQk~+JRm<UUS+U5diJ2r4%;WfU_D2}<pELDbz%8Q7p
zjI$9J;7d>xTY6D;u4-Q+BN7OOm4C`R<_9Ak&!%A7vWZtyl;1+)V;LAuHYbBR+9S`%
zResbqTql61c}jB3aV%6v<?icYI1ndX%LL{b+RQg8Z~3mbq{(^vn{7Dos@2<hc3_hP
z=eu$RqK)SpqrI0069RlyM+Q&PjcJ|TvFc`4^5z}7`>agxn96H~6?ye!DaL+dc&w!D
z>s0-+io&pYlx!g=_Uo5q$hIh&4(Vl!b`nO)6XD8YiOOW*%i~G5Rqpl1`K8WOIxEeY
zszjXt=OkPlT22?z!6pOb*_6nzo!J{9!3bp>)hk*W21#V?+_`Kgv`1Y=Ft=q9iRI=}
zI~!es2hrGgcOcoG$Dh?)szJ?;B+A;5*qI^qDQ2wNP20ILpM$w)YY@eFtao4~DDL8>
zNTh>>!rXE+jC#TD0ixU@y1*BAOt&O0gXuN3h2GJ2vwLnT1iBm&ri$9p%zEr>n%{F<
zRJb>5e7tInG1CJnh$H)Exu?v_b&-Y5aV*rF-XkiUDZ@9Vg1gWAg56D}=5T9n@Z)hz
zW0v!E;*i&Tp5+~hcOYm|nk*u0Ja&|Dujnn4<u)hNEJ^U<SC_j5=OdRUEMrvlfI#Z~
zIkh?cX?w0cf4Ph`@2vOJp4Y?kgRS@1y_NR|)^|eUC^m||UaoGiRNPvk(AYV2)X=?9
zoEgPW4gf__ew8F!&`SXdw_T2qVAnMLUIsd^*<xaj(Mbcv7P93BU<1l+rG*T-UzmMa
zGt2Cqs-3#ZRQt2bgA+X*3XET2Qs~)c%og^Bvj(wQEEH5y)gEqoM-sRL0Ut4|!}3et
z)iis;d1-j3Z5W-S5<MojwM=Z@+6MP`-g7Kk`)R!{O4Ln=wu3WdC`R;keuIf=F9R)V
zXg{@R@bk~E-&PKJ5vjf5Ly(nUE!7#5re$s`Iu*rW;;iiEauM!5#cJaNw-DdrQfw?g
zzb&4iCG_Y<04$KPNgX|Rf=uuVyt&D9uYY2C)m)<A+zN|+r0D2TQafH}I7kPa8()1A
zg4V0*|D~hL!!UKNe{WI#E-hdl;3U;+Yb3N<196;QqHbv|KK@K2X(1WHiyd$-A-`&K
z4I-X-W1T10FpAgf$^>w8f~?75=Ok^f%r_fXG$u;;4a`0O6T`R?kU?LNNqp3b5d-VH
z221wc%T@Whai!ET2U8+b598|Q7Ffb}<^jbmk)c_oU|rIBgmvUd(un;@#Sci9d4Ac6
zZW)ueV9XL)%mL@Ejx{2Zb#eOJ4c4scCZD}8It~hN5#AEU3zdV4GKgPerd>Ws?M`I#
zT&rE>=LqECSOv@N?Qecz^R~@zs(JG3G?p2$;CJv)`IcaJ6so<7Gvn*4m!HojF-UP&
zTe_^fE@SBNX?_~E5yH4zbAGHhx3-b?$#~!%4qUk#)3FvUH48#fvO5p&v;PFVq+38n
z{S@TDL;j{uEZ{#~Xc^}zm!WwTJ)f*Ds=;4>v=2*0->auSi3EaRPDyH^OhW@?`Vcyo
z!N2xp1RdG`P+6ybybSrJy)oMBp&Q6KQcRnmavn%xxYT&pY$xx8pn42w#Q$95jMkk%
zu1KeEy;P9-898)%SVu-yUhz?6%+xN}(78`9Q=U{<5J9!>`%PsM9HRurfM7<s1pv=>
z#}aNVm!{i3G+VXHbqYX!4GR>U8ihxeV?y{~eA1UWo{-DGfwBu=q5r)RXx(|an+$J{
z5)XyxV($?kgxq>dWuhMWebV9VdNxzsL0REq`Uo>2mNR~%Zy^2Aq!z7d<A?|vISZXj
zM*+EOU*%I}-t<{ifK<2>2TUPy|Ctz(v?rC!s31D}rLeLInj{%=gzHWD5gMX|XoaMX
ziyMLrM6%LegL~E^M!%lKgUF1K3Xoq0$`;o<0%`WL`N@I!_FA%CI=AIiyGz*U?B>Qq
z%8AK8YE-cG+&v3<x4i)JQ`e^+CzFc~Y8mRIJDHlR8R;gYY<Qk6K`J}qxFjuCII7Sk
zNojw=eL408kmqZLcim&San6z!|B^o0#h@qJh|y!%s3zym(}~<U%xloNogfaP_Y~_k
zG4JoO+D<-80{rwJf?sfB5sH=xf*Q+mcTt9jGWl2%)7Yx-h2v(Fv^u{9*ArwZX?)G0
ze0Nw*kFBVDh0v_D4c0K+xL=5kHU*uMqH|URGA^}pI%UIZ^WI9mt$HkGR{ub4tn%C6
zpPDAmdM%R#zt0sWakQeTVk;D_o*|^s<@$@HwWEI-aEd^hG7nF}=eLHJ65F^I0$skG
z&m%P`x=mW6)a<jIc4&rklfSPtWIfHZ<6hWS%`t7GO$Od7CIb(hruaw{LyOoTYT3xo
z6+>I2eY+K5&Ry3CnddjI@$a=oC@UOy6boN6SNusu9D9bqJERxh&+NYI{#f~K8_`oM
z@!QvT&lld_IY=@6nM93}^BWgrzgcJ-HE%qBo53czKy%rD+YS{E+V45UzU>~KW{vMR
zTn{R1Z{|!t5a^H<q~33ax-6A7oqq1hzTs!ca;t)bVht>$|6pU$o!<DsWO1J6K@zi^
z`Gb%z6yuBfmCtI+B+U5@tiR2I7kOAatHL)sZ{_NhX;B_`&_vyI>^<~AX-$i01!8nZ
zT5L0JQ3=Wdu%7TsdDHZ!B(pMM-?uiF484jLFhs{x#97FU*2=y@C{x`x{(7yTq2mv2
zu<BNd_!&B-z8EX*c9^39$Sq>pPn8zIA3V6f1Z!NR1gUd{KRTb31(J`a7L8jd-1&e+
zjNOCMOEq9Jg?@jzJ|wt%{#*{xd4HolI|vL^8o9pGsis7RTy7oqf%viS=l!{ic@su6
zKY5U(Lo^{g0xtxEqub2N<M3Ci))~4)@I7*<+=2QQ{K#fNktES|Cotl<!M?+My=T&Y
zJ;3blc?G`m4BZT;1UZQfcZQ1X>gv(j>!;D!u3wuL-ebWcW$J9e=9=in$2m80qR8-7
zCU{<+yUk@dQk&xoySd6{Ghh@)#ZCD-qCcwethL{C6U-|H=8}ow5i)jVbqRdKZq!VS
zaSQ?EycZs*!P;m2k(s8k-GgoL(`Ri2Kby@c=oys=_$`%4`0tYZZi)KM`h+SPPZrYe
zPuD;N)Z9WkxTO(s3!Q?1zR3BA`nC3Mn~YlQ+!t9X7{0oEVtE{9x)_&q3F^KtRpN}~
zyq9MZ&v66|bRi!cJe3W4P}aF1-{RG$J&#8|YsWOuRT|rn*(pMVIg*yc5sq5d*ekVO
z?d-=B$(6SZqnf%L8<5~d?!+-pxf4g+iL`&z)e_I=^sZa7HqV<p>}Hzi-R=09{j#MF
zZOR5I#?b?oC)r5EQa-1G81h7mM#qww=2E%N*NqZw=Dbv(e;YaxO)r{smVCfIu^ml|
zSQB-Qxk_4q9t$yx&@aT=z*1Q<Vn4bqM3%NxMaS7@6Db&fan!obzO^<2L^68qU)*=#
z4!K77Zus_R&nXUh^BUtaWwAthM^|4P`x8^naXNsJX=_l$p<eqNUs<C)UiT|=4%3UU
zD<WTad7Yln22_U!#s@`74<;7hVpr%n(-$f`+|q`Lu85bK-_4?UYUr=eqZe|KX1m73
z>gdLj6gy8wk6@j{bQng>NUhFqbo5FTZ<Ube@YFl9WG=+O1fj@*zjx)^TLlTL5xyX%
z`HY;FSwuHQkHtzj?BRt~XOO1~Z!!dz$4xD5fi9)wXuon>KG7wf{;HrxVPK@~dbL{r
z^d=)hqd@#5*5IZvPjriOi+jWtDpIy|4bQ>cE?py?T{`6y=d7pDVN1~FpWJ=?F}GK8
zrO5{&mqCOGw-)ZID3b@2b&bB6VqV5f8o8b9D|)32>l!}&BPp%lRQWkquXyUVV1?%@
zvf28?-c@u+swazd(Hx*6hc<O37}@(s9655JY-;SHvPBg~MnT?tlMn1Cr3faC3hP0G
zKn&`UhrU)*Pd7@Et{oye^dqx+yAAa|=k22+r4<lY`4(VB%QJisD}Ti)bC2NfytE89
z!#*uZvpY^l_hhSFU>)*o`jwuL@}T5jP|Z~uiuXiRtg`^Y#k`{9r}j;|(aY~1{~TXK
zoj=Wp!(iM<kB!NJDaH=A@0AN4A-!#kB6*E5HxKflG|Dx8EXDSDV~{Z3(e#|N=OXM&
zlU`PLPFsB9Eg%%QQGbKkG1{nMj94ne!>q;}A<lSD?3nRBd?AC*0w)WzZB%zUrUy|+
zMkLElpa%^htugV_>4uX(YrsG5GjpT+vzO3Nx>rYKeC<>fc%gmhm~r;!wkp@|`r1C1
zvjugx`_&C#ofa1J00-P#M(bi#Xs?=n(bsKQHlK)8s3QkBoUK;w^RG8FUQdwKYesQn
zQ^(pZ$Iszkr)Oa8qQx}S#>zg(!%+iST-ApbKXv=Cc6z(@k0(hg9&-<MpUkC7vZ8bl
zjgw>b@Sv>Ld50Gw9cM2Wa2*kn8tCduj@Yj8A);$W0S~SctdncM=mrLlt(0x`-v`}K
zY)w0oeB=@qRe6Q3AsJ_K&@;JBJIf@QBy{G?qLFEL8G^>zL8!9axtAuT@A(}Ge`!!=
z;GY(hL$s-j7HBGvapi|qaE}gTRJWlds<>KhCsKCZ)?ifXoDS7bU^-){?ycJM@`9wa
z1I;IUb8#xqLEe=x<ilmAJwZKdp=Fx$Ly~!>D6%GF4DRNROz*~(q9+#dB?bfDFz;*f
z0yc$3Dt9I63=a`^`V1E&e3;mB>BIS4ke&mDmrq@rhg-%x*k@oPxepq@--#9=<(dB|
zZgr}^%3;IXd4j?2pnh$*z@^93*)8%braPHvS>d|>d?dl02cP(b@Y$H#Xp}u&vCu67
zh%>;{smVi4EKA>da?kUb8BqA!;rzR*DU+zbLwq2uPw6DwBP2!EsCjhx$massI^`j>
zDNHscU-<+6{0iz&*X}{ENmdQ;!~jFU4Lh{+90zX^8&sg3?VVqh;P@N9|J0cQ1S5?C
zSb<w8*L<AyizG)eL%u{=m2ocvnJudVw0=lO!hT_!^nb!@$828=yKk`EX!nj^bujpR
zC>bJp_$vQ0Y4&Mi<F1CwRT2kF?^8#?*3K1d5q}NLZS@2BfMl;~*f1sH2Rm!%*qt|r
zji^d`<AMm$bAD)bI<@cPGjn^+ie)bfau2s8>X&-pPaCz8rU76Q?AR`ya7k`0A6xF*
zX%Vb~kbd`*?Uf#4D0lydTwnj1SZ2STaEW(!)IE7WJwaFFx32uFW{_h2PtVj;YcGLd
zd>9#flte%aM%zKb>F5P>mtRR4w}<ECC!;f2Xni>ql{?(rjy;K7bVYmVanzJwA1xrw
zH~W9a)^bavR3e@*56^z_mr@~hU|ah%WI5D+fnba1Vlde5TzjLb9FI|M$U<LM*@eCo
ztQ)`~#u)O#tQ`z}5=6hp%;uzEG;kZUSK+^ZI);uHA^X*CN7(kO^#xZ_<dVK#1X>p*
zPF%8qr3|P~IJh>tPmANDw<<YLMmCtsO^fb%1y*qyEl;oPa41I2xGx9cTTfw37k20V
zHHT|Z!0u|xY)B*a`t3Kh;*ZTM1fs}nH`nw+5y)O1HA2IUewlk;I@|(_ib&_80<cBi
zpIE}Z48^|{Wzn#IL@&Cz)O92~yokTw;Rbd@tx*`w#PbXGEq%!2b!%jq+#;c`!7eD#
zzSO9U!Tp?uu!l`GW!Vzb{o{%w)vT;*ejU>zFst3I3|qSn?zxy$KB8lo$GT1L*W?Pn
zSFV~!C@|;;4t!KYE}O78cj~0~(#X)&pcH&qc|A;_+HcP8@*Ekt(#MfPzi}t(lu_Ot
z_DTrh<5qIV2rcF{jVw(3Fu)trt!%$>=fdsE5t_#t6ZS|9NsuvQalyKU{!Xof*q3^K
z6F<gXWp5c8Rq&sxP9O<l2m`8jo<&~%esXRT-{cE<8oeLjt)e&os-E7EWyJV3V$sGU
zJ47*H*8l~l+$#w%Dh%a(f_R4R9nTKk3C8z7#8muYeZ>h{$qOhb-&|r;L&Vlrh@%Ri
zf8rX1@SFJa_iSXnyXt3*v3=AY<3-W4SjU=~kr`)h8X@nKEjk7Z5_FDlM9Kwi!g-1a
z-$>h)m)|(wiPIF5S?5G*+8$1+F`Sa62_d|XB=)LDPR)6Lm&>x2L%K;LXe1Lu7|I;y
z4b>|2{~kE_CME;N=&uNY>8x^!IfJ(}1g0s<iTe6bClC0wKkGCUQRSk?JDxip#1s3&
zTys7vcKnIC-A=nRcT;v0{@b1v;*Z=uawlmr{JkNv1le5djM9}y9B4{h&cpbLsN=0U
z+B(nbCfxjzF5D3Z*igHkCx&mRiVrO-)3iY$x6wYrYXx=JZ*!=plQMlOKIzw}S%03c
zv;P1rui8|-2KY7&?sVN=+E=rVF}<Hq1C4`skMu!wgnuF+!8PN3l>hg8Y*t03oHwG!
zcvKc$uqCk)u@p68i47_0cVF*L24FbT7~&5_3~)TBcAPV>VB-O>K(XYPjy`;MCf_aO
z>@F-CU5DsgX^Skpp~FXEp~;g22C}rs(KMEd+%9{xawDAZ5nL!=ldQd^kMp>C{;(=*
z3y#CThH?qn20}DDLaT>w?K&m3?<~(*Y?W$y!wMz($V)Z%bvg(N!)8uWmM!rLj+(IK
zANM?22SpO0Bp`p-(7OTl8c%(wZ%al>$GewCxPRU-G+`MTQw;m!HVO6gbKU9{7bea6
z?jVGtm15!m;;iaZP{R=6F?L$%W==8Z_xOG>*P~QE_63NE%NVCrU}|v|#yxvlZJ!T=
zjkwi>`czg<ZU_Y&=p&z{>%TIY5aGS<&dM!}Wb|(O!zrm(;kAUgP~oQtEvjn_5|~d5
zbRb%~+vDuRh6e}seI4mv9b~QxxwDrYCq?|)YELfV*5LJoT(HW73$Z3-OYB-&O*!z1
zea2t#D%zNH&K0LeMkFURj(4+xYI+b8^0W8bl0sznzWO^|nWDE}Z8WHt%pJ7z6Ds7x
zHNvVfrE`t{hEc=Rcar3KNgwepLhKnisZ9oiQ%3>YhIndBA$3U9sxvq4&(#e3jIky2
z%%V<WWz2Xpws!-_y4K@Ichyh<zT}4e)n^s={!x5*KMn5}dOu-~aD8hU#g<+gTmv|x
zU|Ed4%PGgOp~*MUby`9vY@o-)oT0xk^8~Zw59{V79Eh$=ys<02T)u^QYNV9WTin@V
zfwCa2%EwSoT=<JSFzv$fJZYN5UAFf;7QX<+UT2#qP{}z3V4{gk#u+qt8`#cVjAz7V
z@sgn}Txe*(U)S&Ei317zD{XtMQ=ewg_&-PC=jA`zz{i-G?h|qW?Q43y(S{MDWj0U_
z++Aj2U7ZA*(LT=R9iLTuUD?Gezkeak>>aNf(>i6`tvrlw#MW$WzR!?-ZWt$U*1QuW
zuf@R7p{9jG5`b_ogmy)dd_}C<)Lw{6ER`xyTE&KWCWv6g&!46M-&L4MU)!%uYwmri
zW1Zk|A}qF|S^A0E?L^SN0oTgHmgS}=C9dWRQ_gAJ7+HRc5IG213;>NkCA*m3#NLmu
zY~0PE4P4|CvPZF|)*KD9u`IT1nH8^OSegtB33%zl#C2wCOS}ozsB$f^EKRlL1-H^=
z2csy(79+-%W1X=+PxkE7-nISg#4zo9k0C*L*jS^y>=}GG6^*!D=^@>Tcf<>LaflIp
z3%gtiy&M)3`riL=I)xV?<PWve_D((I7%=!idYt&6y>+cux9@IH3q9tJ1vBAQbTzrs
z@_X`w64x)1f#IW8ESk5DEl#?H$`6EM>YR8u^Xv)XS2b#nFo5>f5O*<<(@qOK`BwsZ
zCz%d9F|)H<AW);-*5!DV?JI&!+v8}#p1i)rUXIq&vbO>@3WU&Bo+Dxy?cIbJ7lCuJ
zbtYnKc8)X<3);VQ{8StaJt0m{C%)YYJi)l~l#)&KKSpFIy5n&$q=iIiOf{9{{oa*H
zLm)dyk+0i5=HlHHpnCD}GQi6h-h!dTV6a0{GQ87Ue8S|UYlPX6eee>~mHW+<=65V#
ztJainiP6t9kn{B9bJH41D9$|UM?O;?Nj9^Au~{ow+6(NejH=fM6JbSpwpcZ`Zm2(B
z3v%c}&!mZ8f)V74v=DXK@2`Gf-TaqXf6*fc)zxb_>O{1Z8jFD~%!m43>~ekOT!Zt^
z(Wo)0&QYQmMshrN!AzCo(gDn+RM})m%re8ZbFN*{t98`&-+hC1H>mPDovCH9)4CIU
zNVFf8Qz*ss2jDa%6L^<jU>eb?Jgs0fU|XZqKpgvUenCLOy$?uoDo8>el%Oe*Vnyfq
znIq78QTiCJiMUofEoYaRvSy^)up!AK5gDXFnUYHn;j(R1l{VG-sFx0Mf#AoLYJ~%x
zbHeZN8O(GkQUejsiRd>m(u%0zb+<VWV-ptQN~HyRwOoOj%XHL<EVKrhWS&6sDfZqh
z*PVxX(|psFLL`(bLnM|n1s~^=kIscWSjNSl*Yl9i)1Q+~x9@Afuuo1!s2`C|`@Q>?
z@h(dbXe}w*oou7|(nB5Nv5>U+BLb%L#aiC?7hLb)X%v$iKeO&o)$3MbmZ^4NEZH)e
zldun0ybFD-RtPRz`iWPoZzGgg5NQb2ll95eM>*C(TY_RoGDzBsx<<){)?Mm)Y)OEx
zV_D*yXfb!`qwYGBT|oO(d(gJB5}hyP%pvvYNz<fXAED#^ER)>jAQ~M@br4r<_O?rB
zeW6+7gWIsg(GgElIVTjQ7P~9v;mT)R=S7JHI9XLLLRx-e7oycFs5Y~(bbQGee7ycP
zN|I9Jf}?vwfzL+wS4pVG+8f5e3m}1BFg6|IqRX~_Nkf@0su)P-rCg>AwYvFsmoDNk
zBuB>Ff7Q>!^VaBX<>S}@7hufhXVmRv>iuZbzQ(c9Ev+hm^+wkq6ho6-L}sVijxA~s
zr8m)@6xd1{kAXAuQ{u<amv!U?AAJ+(iN?!s?FD1D`RPkU+fL+bZl_5ZrV3!Rm#b=r
z5MBrc80QyB@88~NL)(_=Vk#b|xHipiO#Eq7{N_Fln)d?jj8q!jZ+NA_1D*WWFf%!U
z@a@gDdK37DIwSfT%=x3eyCbRg5pW!WRXS~!%(LLs`i}K$ulH-QMP8i*>)_LRyfIKF
z>81arkP6Bk!LQKW9%98T7|vu|^lBzKd?*~bZ9~5}G+<vS)k1Eh=!4;Wn6LL_6qL0;
ziL#@+)P#5K=N#2~Y*s%?TnNt??T&dKg1pF6diw%qL-y-<DNg7h7czx2KIk1!=!h*)
z4ERF$2Owj@nT&ep2K*8I;TH83@m-u;;Id9Pb%F=b%uCp6fosn<$~rfGfuVt`@4J1I
zcxlg|d@y=Z{u5{psc1NTS$gb1VSc2Mo+)_uqw)F5;#{!S#uj;>7R+t;8i^MHf4}CU
z$xX{)hiHe&7Bl|I4+BO8cZ{rJ4Jdae%?_GptVK7?WaK@ss>*J3gF^JZUTH<57@^ul
z+V{Xox5VexCf+y10bfR5^PBhz_s_ox3^wSOwo;BL^OiM6Jk|+TR^~iaVYvtDAX%Kv
zClrXCx*aUz8QMSnCV0F&X6#a6P39j4;mAv7a-dD%A1@B?Xtd?E=B#n`*K*FMVtE%C
zxXDG!*)ktZMo$NFDc*fNiUV}sF3$x6-@p1yrBd<Q^LkP87ELCqyjhSmX5#nP@)Qzv
z+z1lLn#|D8OMIvG*?*w#1|ReYYUe)ez+FB*V2e0zTzGf>slL9W=f?*OfOqbQ|5RjS
zr)0gJk^WJd4ZnQU08P#J+~$EsDd+mNix~4aC1qWuQ_4&4l(-AH(?ksMaBYvd?47Yx
z`FGn9D%7r`ze#h^&{`>u%zR)rB=sJi%K@*vAS@rj;@2=Y56@o0mX}&jUzrYFeFc7S
zlF!EGw}<wiC{+=Bw&RfsA>#qa{M^Azof0$8-h#Cz1U^v+^nf)qC~6*07T#JDO~yj-
zW+*pX8{+6`E{v}s#qmEtk6=$2`#%5hg)NM0ic}}}Zj)x7i#++U^!2Egu5ILz)8sAz
zzmuD}nE_Jn>yt0tcrDPVz)Tqu18oR&#nG4T0MlKAM<z>$YO-wddoZ~<<wLbU{;RuW
zfzA^JQ9Gl><tZ10oeIg6b75Eji`4re>&E-=JDjQl96WcwOhqLb0Kgyt_#<XOKw?Av
z|FjO|e~K1jr{aH2|6THc|Ci+Pcg}w*9)ITu{Rij2g^z#0{t`a^4*PdUgBb94nBV^n
z`@8({5A0u}#y_zCqkjDT9%%lK4I25suzwRl;Qu9ps4Bp~{s{y?|LKYl0Kh!?U#tHD
Dn5*`6

literal 0
HcmV?d00001

diff --git a/oxAuth/Client/src/test/resources/testng-benchmark.xml b/oxAuth/Client/src/test/resources/testng-benchmark.xml
new file mode 100644
index 00000000..80ba7f77
--- /dev/null
+++ b/oxAuth/Client/src/test/resources/testng-benchmark.xml
@@ -0,0 +1,19 @@
+<!DOCTYPE suite SYSTEM "http://testng.org/testng-1.0.dtd" >
+
+<suite name="oxAuthClientBenchmark" parallel="false">
+
+    <!-- Authorization Benchmark test -->
+    <test name="Authorization Benchmark tests" enabled="true">
+        <classes>
+            <class name="org.gluu.oxauth.load.benchmark.BenchmarkRequestAuthorization"/>
+        </classes>
+    </test>
+
+    <!-- Access Token Benchmark test -->
+    <test name="Access Token Benchmark test" enabled="true">
+        <classes>
+            <class name="org.gluu.oxauth.load.benchmark.BenchmarkRequestAccessToken"/>
+        </classes>
+    </test>
+
+</suite>
\ No newline at end of file
diff --git a/oxAuth/Client/src/test/resources/testng-multi-authz.xml b/oxAuth/Client/src/test/resources/testng-multi-authz.xml
new file mode 100644
index 00000000..383e8fad
--- /dev/null
+++ b/oxAuth/Client/src/test/resources/testng-multi-authz.xml
@@ -0,0 +1,12 @@
+<!DOCTYPE suite SYSTEM "http://testng.org/testng-1.0.dtd" >
+
+<suite name="oxAuthClientMultiAuthz" parallel="false">
+
+    <!-- Authorization multi-step flow -->
+    <test name="Authorization multi-step flow" enabled="true">
+        <classes>
+            <class name="org.gluu.oxauth.ws.rs.MultiStepAuthorizationCodeFlowHttpTest"/>
+        </classes>
+    </test>
+
+</suite>
\ No newline at end of file
diff --git a/oxAuth/Client/src/test/resources/testng.properties b/oxAuth/Client/src/test/resources/testng.properties
new file mode 100644
index 00000000..a9181f5a
--- /dev/null
+++ b/oxAuth/Client/src/test/resources/testng.properties
@@ -0,0 +1,61 @@
+## Developer test ng properties (convenient way to run separate test without suite) ##
+swdResource=${swd.resource}
+userId=${auth.user.uid}
+userSecret=${auth.user.password}
+userId2=${auth.user2.uid}
+userSecret2=${auth.user2.password}
+userInum=${auth.user.inum}
+userEmail=${auth.user.email}
+clientId=${auth.client.id}
+clientSecret=${auth.client.secret}
+redirectUri=https://${test.server.name}/oxauth-rp/home.htm
+redirectUris=https://${test.server.name}/oxauth-rp/home.htm https://client.example.com/cb https://client.example.com/cb1 https://client.example.com/cb2
+#redirectUris=https://${test.server.name}/oxauth-rp/home.htm https://client.example.com/cb https://client.example.com/cb1 https://client.example.com/cb2 https://openid.implicit.client.test/login-callback.html
+logoutUri=https://${test.server.name}/oxauth-rp/home.htm
+postLogoutRedirectUri=https://client.example.com/pl
+initiateLoginUri=https://client.example.com/start-3rd-party-initiated-sso
+hostnameVerifier=default
+## By enabling this block, you require a place to publish files via HTTP or HTTPS
+#requestFileBasePath=/var/www/html/oxAuth
+requestFileBaseUrl=http://localhost/oxAuth
+sectorIdentifierUri=https://${test.server.name}/oxauth/sectoridentifier/${sector.identifier.id}
+#sectorIdentifierUri=https://${test.server.name}/sectoridentifier/${sector.identifier.id}
+
+umaMetaDataUrl=https://${test.server.name}/oxauth/restv1/uma2-configuration
+umaUserId=${uma.user.uid}
+umaUserSecret=${uma.user.password}
+umaPatClientId=${uma.pat.client.id}
+umaPatClientSecret=${uma.pat.client.secret}
+umaRedirectUri=https://client.example.com/cb?foo=bar
+umaClaimsRedirectUri=https://client.example.com/cb?foo=bar
+
+## Client Resources
+dnName=CN=oxAuth CA Certificates
+#keyStoreFile=/Users/JAVIER/tmp/mytestkeystore
+keyStoreFile=${clientKeyStoreFile}
+keyStoreSecret=${clientKeyStoreSecret}
+clientJwksUri=https://${test.server.name}/oxauth-client/test/resources/jwks.json
+#clientJwksUri=http://localhost/oxauth-client/test/resources/jwks.json
+#clientJwksUri=https://ce.gluu.test/resources/jwks.json
+RS256_keyId=6fb1859a-54d9-47c6-a293-92ce2cee63e0
+RS384_keyId=a68c61dd-f8f6-4faf-855b-fbbb8bee028a
+RS512_keyId=79d12e66-0baa-4b59-8a8b-bd3164260bf5
+ES256_keyId=a8b62c9d-65ea-4384-a491-e52924c4a0e3
+ES384_keyId=0b1a019f-fcfb-4d3d-981b-16b45355dfdf
+ES512_keyId=07c917ef-943f-4a9a-961c-d3cba28c81d5
+PS256_keyId=29cef404-59db-4ab9-8f5c-6da8d578d107
+PS384_keyId=6bd7cc0c-e176-4da9-b646-fe7782393dc0
+PS512_keyId=a614d6ae-e80f-469a-a304-51b9bbefc95f
+RSA_OAEP_keyId=d91db51d-0e7f-4225-99e5-164444c12d1a
+RSA1_5_keyId=a442f0ec-7237-40b3-b7f3-a6039f70d9bd
+
+# Form Interaction
+loginFormUsername = username
+loginFormPassword = password
+loginFormLoginButton = loginButton
+authorizeFormAllowButton = authorizeForm:allowButton
+authorizeFormDoNotAllowButton = authorizeForm:doNotAllowButton
+
+# CIBA
+backchannelClientNotificationEndpoint = https://${test.server.name}/oxauth-rp/home.htm
+backchannelUserCode = 59b335fb-a2df-4275-be43-1b8d3cc9a5c5
\ No newline at end of file
diff --git a/oxAuth/Client/src/test/resources/testng.xml b/oxAuth/Client/src/test/resources/testng.xml
new file mode 100644
index 00000000..d4102ae3
--- /dev/null
+++ b/oxAuth/Client/src/test/resources/testng.xml
@@ -0,0 +1,854 @@
+<!DOCTYPE suite SYSTEM "http://testng.org/testng-1.0.dtd" >
+
+<suite name="oxAuthClient" parallel="false">
+
+    <test name="JsonApplier Client test" enabled="true">
+        <classes>
+            <class name="org.gluu.oxauth.json.JsonApplierTest"/>
+        </classes>
+    </test>
+    <test name="RegisterRequest Client test" enabled="true">
+        <classes>
+            <class name="org.gluu.oxauth.client.RegisterRequestTest"/>
+        </classes>
+    </test>
+
+    <!-- Address claims test -->
+    <test name="Address claims test (HTTP)" enabled="true">
+        <classes>
+            <class name="org.gluu.oxauth.ws.rs.AddressClaimsTest"/>
+        </classes>
+    </test>
+
+    <!-- Application Type Restriction test -->
+    <test name="Application Type Restriction (HTTP)" enabled="true">
+        <classes>
+            <class name="org.gluu.oxauth.ws.rs.ApplicationTypeRestrictionHttpTest"/>
+        </classes>
+    </test>
+
+    <!-- Token binding -->
+
+    <test name="Token Binding test (HTTP)" enabled="true">
+        <classes>
+            <class name="org.gluu.oxauth.ws.rs.TokenBindingHttpTest"/>
+        </classes>
+    </test>
+
+    <!-- Access Token as JWT -->
+    <test name="Access Token as JWT test (HTTP)" enabled="true">
+        <classes>
+            <class name="org.gluu.oxauth.ws.rs.AccessTokenAsJwtHttpTest"/>
+        </classes>
+    </test>
+
+    <!-- Spontaneous scopes tests -->
+    <test name="Spontaneous Scope test (HTTP)" enabled="true">
+        <classes>
+            <class name="org.gluu.oxauth.ws.rs.SpontaneousScopeHttpTest"/>
+        </classes>
+    </test>
+    <test name="UMA Spontaneous Scope test (HTTP)" enabled="true">
+        <classes>
+            <class name="org.gluu.oxauth.ws.rs.uma.UmaSpontaneousScopeHttpTest"/>
+        </classes>
+    </test>
+
+    <test name="Select Account test (HTTP)" enabled="true">
+        <classes>
+            <class name="org.gluu.oxauth.ws.rs.SelectAccountHttpTest"/>
+        </classes>
+    </test>
+
+    <!-- Authorization Code Flow test -->
+    <test name="Authorization Code Flow test (HTTP)" enabled="true">
+        <classes>
+            <class name="org.gluu.oxauth.ws.rs.AuthorizationCodeFlowHttpTest"/>
+        </classes>
+    </test>
+
+    <!-- Authorization Response Custom Header test -->
+    <test name="Authorization Response Custom Header test" enabled="true">
+        <classes>
+            <class name="org.gluu.oxauth.ws.rs.AuthorizationResponseCustomHeaderTest"/>
+        </classes>
+    </test>
+
+    <!-- Authorization Response Mode -->
+    <test name="Authorization Response Mode (HTTP)" enabled="true">
+        <classes>
+            <class name="org.gluu.oxauth.ws.rs.AuthorizationResponseModeHttpTest"/>
+        </classes>
+    </test>
+
+    <!-- Authorize test -->
+    <test name="Authorize test (HTTP)" enabled="true">
+        <classes>
+            <class name="org.gluu.oxauth.ws.rs.AuthorizeRestWebServiceHttpTest"/>
+        </classes>
+    </test>
+
+    <!-- Authorize test -->
+    <test name="Authorize session id test (HTTP)" enabled="true">
+        <classes>
+            <class name="org.gluu.oxauth.ws.rs.AuthorizeSessionIdRestWebServiceHttpTest"/>
+        </classes>
+    </test>
+
+    <!-- Client Authentication Filter test -->
+    <test name="Client Authentication Filter test (HTTP)" enabled="true">
+        <classes>
+            <class name="org.gluu.oxauth.ws.rs.ClientAuthenticationFilterHttpTest"/>
+        </classes>
+    </test>
+
+    <!-- Client Credentials Grant test -->
+    <test name="Client Credentials Grant test (HTTP)" enabled="true">
+        <classes>
+            <class name="org.gluu.oxauth.ws.rs.ClientCredentialsGrantHttpTest"/>
+        </classes>
+    </test>
+
+    <!-- Client Info test  -->
+    <test name="Client Info test (HTTP)" enabled="true">
+        <classes>
+            <class name="org.gluu.oxauth.ws.rs.ClientInfoRestWebServiceHttpTest"/>
+        </classes>
+    </test>
+
+    <!-- Client Secret Basic test -->
+    <test name="Client Secret Basic test" enabled="true">
+        <classes>
+            <class name="org.gluu.oxauth.ws.rs.ClientSecretBasicTest"/>
+        </classes>
+    </test>
+
+    <!-- Client Specific Access Token Expiration -->
+    <test name="Client Specific Access Token Expiration" enabled="true">
+        <classes>
+            <class name="org.gluu.oxauth.ws.rs.ClientSpecificAccessTokenExpiration"/>
+        </classes>
+    </test>
+
+    <!-- Client White List Black List Redirect Uris -->
+    <test name="Client White List Black List Redirect Uris" enabled="true">
+        <classes>
+            <class name="org.gluu.oxauth.ws.rs.ClientWhiteListBlackListRedirectUris"/>
+        </classes>
+    </test>
+
+    <!-- Configuration test -->
+    <test name="Configuration test (HTTP)" enabled="true">
+        <classes>
+            <class name="org.gluu.oxauth.ws.rs.ConfigurationRestWebServiceHttpTest"/>
+        </classes>
+    </test>
+
+    <test name="Enable Client to restrict JavaScript Origins" enabled="true">
+        <classes>
+            <class name="org.gluu.oxauth.ws.rs.EnableClientToRestrictJavascriptOrigin"/>
+        </classes>
+    </test>
+
+    <test name="Encode claims in state parameter" enabled="true">
+        <classes>
+            <class name="org.gluu.oxauth.ws.rs.EncodeClaimsInStateParameter"/>
+        </classes>
+    </test>
+
+    <!-- End Session test -->
+    <test name="End Session test (HTTP)" enabled="true">
+        <classes>
+            <class name="org.gluu.oxauth.ws.rs.EndSessionRestWebServiceHttpTest"/>
+        </classes>
+    </test>
+
+    <test name="Grant Types Restriction (HTTP)" enabled="true">
+        <classes>
+            <class name="org.gluu.oxauth.ws.rs.GrantTypesRestrictionHttpTest"/>
+        </classes>
+    </test>
+
+    <test name="Individual Claims Requests test" enabled="true">
+        <classes>
+            <class name="org.gluu.oxauth.ws.rs.IndividualClaimsRequestsTest"/>
+        </classes>
+    </test>
+
+    <!-- JWK test -->
+    <test name="JWK test (HTTP)" enabled="true">
+        <classes>
+            <class name="org.gluu.oxauth.ws.rs.JwkRestWebServiceHttpTest"/>
+        </classes>
+    </test>
+
+    <test name="Multivalued claims" enabled="true">
+        <classes>
+            <class name="org.gluu.oxauth.ws.rs.MultivaluedClaims"/>
+        </classes>
+    </test>
+
+    <!-- OpenID Request Object test -->
+    <test name="OpenID Request Object test (HTTP)" enabled="true">
+        <classes>
+            <class name="org.gluu.oxauth.ws.rs.OpenIDRequestObjectHttpTest"/>
+        </classes>
+    </test>
+
+    <!-- PersistClientAuthorizationsHttpTest -->
+    <test name="Persist Client Authorizations test (HTTP)" enabled="true">
+        <classes>
+            <class name="org.gluu.oxauth.ws.rs.PersistClientAuthorizationsHttpTest"/>
+        </classes>
+    </test>
+
+    <!-- Register test -->
+    <test name="Register test (HTTP)" enabled="true">
+        <classes>
+            <class name="org.gluu.oxauth.ws.rs.RegistrationRestWebServiceHttpTest"/>
+        </classes>
+    </test>
+
+    <!-- Registration test with Software Statement -->
+    <test name="Registration test with Software Statement" enabled="true">
+        <classes>
+            <class name="org.gluu.oxauth.ws.rs.RegistrationWithSoftwareStatement"/>
+        </classes>
+    </test>
+
+    <!-- Sector Identifier URL Verification test -->
+    <test name="Sector Identifier URL Verification (HTTP)" enabled="true">
+        <classes>
+            <class name="org.gluu.oxauth.ws.rs.SectorIdentifierUrlVerificationHttpTest"/>
+        </classes>
+    </test>
+
+    <!-- SSO with Multiple Backend Services test -->
+    <test name="SSO with Multiple Backend Services test (HTTP)" enabled="true">
+        <classes>
+            <class name="org.gluu.oxauth.ws.rs.SSOWithMultipleBackendServicesHttpTest"/>
+        </classes>
+    </test>
+
+    <!-- OpenID Connect Discovery test -->
+    <test name="OpenID Connect Discovery test (HTTP)" enabled="true">
+        <classes>
+            <class name="org.gluu.oxauth.ws.rs.OpenIDConnectDiscoveryHttpTest"/>
+        </classes>
+    </test>
+
+    <!-- Token Endpoint Auth Method Restriction test -->
+    <test name="Token Endpoint Auth Method Restriction (HTTP)" enabled="true">
+        <classes>
+            <class name="org.gluu.oxauth.ws.rs.TokenEndpointAuthMethodRestrictionHttpTest"/>
+        </classes>
+    </test>
+
+    <!-- Token test -->
+    <test name="Token test (HTTP)" enabled="true">
+        <classes>
+            <class name="org.gluu.oxauth.ws.rs.TokenRestWebServiceHttpTest"/>
+        </classes>
+    </test>
+
+    <!-- Token revocation -->
+    <test name="Token revocation test (HTTP)" enabled="true">
+        <classes>
+            <class name="org.gluu.oxauth.ws.rs.TokenRevocationTest"/>
+        </classes>
+    </test>
+
+    <!-- Token Signatures test -->
+    <test name="Token Signatures test (HTTP)" enabled="true">
+        <classes>
+            <class name="org.gluu.oxauth.ws.rs.TokenSignaturesHttpTest"/>
+        </classes>
+    </test>
+
+    <!-- Token Encryption test -->
+    <test name="Token Encryption test (HTTP)" enabled="true">
+        <classes>
+            <class name="org.gluu.oxauth.ws.rs.TokenEncryptionHttpTest"/>
+        </classes>
+    </test>
+
+    <!-- User Authentication Filter test -->
+    <test name="User Authentication Filter test (HTTP)" enabled="true">
+        <classes>
+            <class name="org.gluu.oxauth.ws.rs.UserAuthenticationFilterHttpTest"/>
+        </classes>
+    </test>
+
+    <!-- User Info test -->
+    <test name="User Info test (HTTP)" enabled="true">
+        <classes>
+            <class name="org.gluu.oxauth.ws.rs.UserInfoRestWebServiceHttpTest"/>
+        </classes>
+    </test>
+
+    <test name="Validate Id Token Hashes test" enabled="true">
+        <classes>
+            <class name="org.gluu.oxauth.ws.rs.ValidateIdTokenHashesTest"/>
+        </classes>
+    </test>
+
+    <test name="Web Keys Test" enabled="true">
+        <classes>
+            <class name="org.gluu.oxauth.ws.rs.WebKeysTest"/>
+        </classes>
+    </test>
+
+    <!-- Dev tests-->
+    <test name="Custom token issuing test via session" enabled="false">
+        <classes>
+            <class name="org.gluu.oxauth.dev.TestSessionWorkflow"/>
+        </classes>
+    </test>
+
+    <!-- UMA tests -->
+    <test name="UMA : Getting UMA meta data configuration (HTTP)" enabled="true">
+        <classes>
+            <class name="org.gluu.oxauth.ws.rs.uma.MetaDataFlowHttpTest"/>
+        </classes>
+    </test>
+
+    <test name="UMA : Obtain PAT token test (HTTP)" enabled="true">
+        <classes>
+            <class name="org.gluu.oxauth.ws.rs.uma.ObtainPatTokenFlowHttpTest"/>
+        </classes>
+    </test>
+
+    <test name="UMA : Register resource test (HTTP)" enabled="true">
+        <classes>
+            <class name="org.gluu.oxauth.ws.rs.uma.RegisterResourceFlowHttpTest"/>
+        </classes>
+    </test>
+
+    <test name="Response Types Restriction (HTTP)" enabled="true">
+        <classes>
+            <class name="org.gluu.oxauth.ws.rs.ResponseTypesRestrictionHttpTest"/>
+        </classes>
+    </test>
+
+    <test name="UMA : Register UMA permissions test (HTTP)" enabled="true">
+        <classes>
+            <class name="org.gluu.oxauth.ws.rs.uma.UmaRegisterPermissionFlowHttpTest"/>
+        </classes>
+    </test>
+
+    <test name="UMA : Test for getting access to UMA protected resource (HTTP)" enabled="true">
+        <classes>
+            <class name="org.gluu.oxauth.ws.rs.uma.AccessProtectedResourceFlowHttpTest"/>
+        </classes>
+    </test>
+
+    <test name="UMA : Test for getting UMA scopes (HTTP)" enabled="true">
+        <classes>
+            <class name="org.gluu.oxauth.ws.rs.uma.ScopeHttpTest"/>
+        </classes>
+    </test>
+
+    <test name="Client authentication by Access Token" enabled="true">
+        <classes>
+            <class name="org.gluu.oxauth.ws.rs.uma.ClientAuthenticationByAccessTokenHttpTest"/>
+        </classes>
+    </test>
+
+    <test name="Introspection test (HTTP)" enabled="true">
+        <classes>
+            <class name="org.gluu.oxauth.ws.rs.IntrospectionWsHttpTest"/>
+        </classes>
+    </test>
+
+    <test name="PKCE test (HTTP)" enabled="true">
+        <classes>
+            <class name="org.gluu.oxauth.ws.rs.PkceHttpTest"/>
+        </classes>
+    </test>
+
+    <!-- OIC Interop Tests -->
+    <test name="OC5. FeatureTest-Accept Request Without redirect uri when One Registered" enabled="true">
+        <classes>
+            <class name="org.gluu.oxauth.interop.AcceptRequestWithoutRedirectUriWhenOneRegistered"/>
+        </classes>
+    </test>
+    <test name="OC5. FeatureTest-Accept Valid Asymmetric ID Token Signature" enabled="true">
+        <classes>
+            <class name="org.gluu.oxauth.interop.AcceptValidAsymmetricIdTokenSignature"/>
+        </classes>
+    </test>
+    <test name="OC5. FeatureTest-Accept Valid Symmetric ID Token Signature" enabled="true">
+        <classes>
+            <class name="org.gluu.oxauth.interop.AcceptValidSymmetricIdTokenSignature"/>
+        </classes>
+    </test>
+    <test name="OC5. FeatureTest-Can Discover Identifiers using E-Mail Syntax" enabled="true">
+        <classes>
+            <class name="org.gluu.oxauth.interop.CanDiscoverIdentifiersUsingEMailSyntax"/>
+        </classes>
+    </test>
+    <test name="OC5. FeatureTest-Can Discover Identifiers using URL Syntax" enabled="true">
+        <classes>
+            <class name="org.gluu.oxauth.interop.CanDiscoverIdentifiersUsingUrlSyntax"/>
+        </classes>
+    </test>
+    <test name="OC5. FeatureTest-Can Make Access Token Request with client secret basic Authentication" enabled="true">
+        <classes>
+            <class name="org.gluu.oxauth.interop.CanMakeAccessTokenRequestWithClientSecretBasicAuthentication"/>
+        </classes>
+    </test>
+    <test name="OC5. FeatureTest-Can Make Access Token Request with client secret jwt Authentication" enabled="true">
+        <classes>
+            <class name="org.gluu.oxauth.interop.CanMakeAccessTokenRequestWithClientSecretJwtAuthentication"/>
+        </classes>
+    </test>
+    <test name="OC5. FeatureTest-Can Make Access Token Request with client secret post Authentication" enabled="true">
+        <classes>
+            <class name="org.gluu.oxauth.interop.CanMakeAccessTokenRequestWithClientSecretPostAuthentication"/>
+        </classes>
+    </test>
+    <test name="OC5. FeatureTest-Can Make Access Token Request with private key jwt Authentication" enabled="true">
+        <classes>
+            <class name="org.gluu.oxauth.interop.CanMakeAccessTokenRequestWithPrivateKeyJwtAuthentication"/>
+        </classes>
+    </test>
+    <test name="OC5. FeatureTest-Can Provide Encrypted ID Token Response" enabled="true">
+        <classes>
+            <class name="org.gluu.oxauth.interop.CanProvideEncryptedIdTokenResponse"/>
+        </classes>
+    </test>
+    <test name="OC5. FeatureTest-Can Provide Encrypted UserInfo Response" enabled="true">
+        <classes>
+            <class name="org.gluu.oxauth.interop.CanProvideEncryptedUserInfoResponse"/>
+        </classes>
+    </test>
+    <test name="OC5. FeatureTest-Can Provide Signed UserInfo Response" enabled="true">
+        <classes>
+            <class name="org.gluu.oxauth.interop.CanProvideSignedUserInfoResponse"/>
+        </classes>
+    </test>
+    <test name="OC5. FeatureTest-Can Request and Use Claims in id token" enabled="true">
+        <classes>
+            <class name="org.gluu.oxauth.interop.CanRequestAndUseClaimsInIdToken"/>
+        </classes>
+    </test>
+    <test name="OC5. FeatureTest-Can Request and Use Encrypted ID Token Response" enabled="true">
+        <classes>
+            <class name="org.gluu.oxauth.interop.CanRequestAndUseEncryptedIdTokenResponse"/>
+        </classes>
+    </test>
+    <test name="OC5. FeatureTest-Can Request and Use Signed UserInfo Response" enabled="true">
+        <classes>
+            <class name="org.gluu.oxauth.interop.CanRequestAndUseSignedUserInfoResponse"/>
+        </classes>
+    </test>
+    <test name="OC5. FeatureTest-Displays Logo in Login Page" enabled="true">
+        <classes>
+            <class name="org.gluu.oxauth.interop.DisplaysLogoInLoginPage"/>
+        </classes>
+    </test>
+    <test name="OC5. FeatureTest-Displays Policy in Login Page" enabled="true">
+        <classes>
+            <class name="org.gluu.oxauth.interop.DisplaysPolicyUriInLoginPage"/>
+        </classes>
+    </test>
+    <test name="OC5. FeatureTest-Support WebFinger Discovery" enabled="true">
+        <classes>
+            <class name="org.gluu.oxauth.interop.SupportWebFingerDiscovery"/>
+        </classes>
+    </test>
+    <test name="OC5. FeatureTest-Enables Dynamic Registration" enabled="true">
+        <classes>
+            <class name="org.gluu.oxauth.interop.EnablesDynamicRegistration"/>
+        </classes>
+    </test>
+    <test name="OC5. FeatureTest-Ignores Extra Query Component in Request" enabled="true">
+        <classes>
+            <class name="org.gluu.oxauth.interop.IgnoresExtraQueryComponentInRequest"/>
+        </classes>
+    </test>
+    <test name="OC5. FeatureTest-Includes at hash in ID Token when Implicit Flow Used" enabled="true">
+        <classes>
+            <class name="org.gluu.oxauth.interop.IncludesAtHashInIdTokenWhenImplicitFlowUsed"/>
+        </classes>
+    </test>
+    <test name="OC5. FeatureTest-Includes c hash in ID Token when Code Flow Used" enabled="true">
+        <classes>
+            <class name="org.gluu.oxauth.interop.IncludesCHashInIdTokenWhenCodeFlowUsed"/>
+        </classes>
+    </test>
+    <test name="OPRegistrationJwks" enabled="true">
+        <classes>
+            <class name="org.gluu.oxauth.interop.OPRegistrationJwks"/>
+        </classes>
+    </test>
+    <test name="ProvidingAcrValues" enabled="true">
+        <classes>
+            <class name="org.gluu.oxauth.interop.ProvidingAcrValues"/>
+        </classes>
+    </test>
+    <test name="OC5. FeatureTest-Providing ID Token with Essential auth time Claim" enabled="true">
+        <classes>
+            <class name="org.gluu.oxauth.interop.ProvidingIdTokenWithEssentialAuthTimeClaim"/>
+        </classes>
+    </test>
+    <test name="OC5. FeatureTest-Providing ID Token with max age Restriction" enabled="true">
+        <classes>
+            <class name="org.gluu.oxauth.interop.ProvidingIdTokenWithMaxAgeRestriction"/>
+        </classes>
+    </test>
+    <test name="OC5. FeatureTest-Providing Individually Requested Essential and Voluntary Claims" enabled="true">
+        <classes>
+            <class name="org.gluu.oxauth.interop.ProvidingIndividuallyRequestedEssentialAndVoluntaryClaims"/>
+        </classes>
+    </test>
+    <test name="OC5. FeatureTest-Providing Individually Requested Essential Claims" enabled="true">
+        <classes>
+            <class name="org.gluu.oxauth.interop.ProvidingIndividuallyRequestedEssentialClaims"/>
+        </classes>
+    </test>
+    <test name="OC5. FeatureTest-Providing Individually Requested Voluntary Claims" enabled="true">
+        <classes>
+            <class name="org.gluu.oxauth.interop.ProvidingIndividuallyRequestedVoluntaryClaims"/>
+        </classes>
+    </test>
+    <test name="OC5. FeatureTest-Publish openid-configuration Discovery Information" enabled="true">
+        <classes>
+            <class name="org.gluu.oxauth.interop.PublishOpenIdConfigurationDiscoveryInformation"/>
+        </classes>
+    </test>
+    <test name="OC5. FeatureTest-Reject Invalid Asymmetric ID Token Signature" enabled="true">
+        <classes>
+            <class name="org.gluu.oxauth.interop.RejectInvalidAsymmetricIdTokenSignature"/>
+        </classes>
+    </test>
+    <test name="OC5. FeatureTest-Reject Invalid Symmetric ID Token Signature" enabled="true">
+        <classes>
+            <class name="org.gluu.oxauth.interop.RejectInvalidSymmetricIdTokenSignature"/>
+        </classes>
+    </test>
+    <test name="OC5. FeatureTest-Reject redirect uri Not Matching a Registered redirect uri" enabled="true">
+        <classes>
+            <class name="org.gluu.oxauth.interop.RejectRedirectUriNotMatchingARegisteredRedirectUri"/>
+        </classes>
+    </test>
+    <test name="OC5. FeatureTest-Reject Registration of redirect uri with Fragment" enabled="true">
+        <classes>
+            <class name="org.gluu.oxauth.interop.RejectRegistrationOfRedirectUriWithFragment"/>
+        </classes>
+    </test>
+    <test name="OC5. FeatureTest-Reject Requests Without nonce Using Implicit Flow" enabled="true">
+        <classes>
+            <class name="org.gluu.oxauth.interop.RejectRequestsWithoutNonceUsingImplicitFlow"/>
+        </classes>
+    </test>
+    <test name="OC5. FeatureTest-Reject Request Without redirect uri when Multiple Registered" enabled="true">
+        <classes>
+            <class name="org.gluu.oxauth.interop.RejectRequestWithoutRedirectUriWhenMultipleRegistered"/>
+        </classes>
+    </test>
+    <test name="OC5. FeatureTest-Reject Request Without response type" enabled="true">
+        <classes>
+            <class name="org.gluu.oxauth.interop.RejectRequestWithoutResponseType"/>
+        </classes>
+    </test>
+    <test name="OC5. FeatureTest-Rejects Incorrect at hash when Implicit Flow Used" enabled="true">
+        <classes>
+            <class name="org.gluu.oxauth.interop.RejectsIncorrectAtHashWhenImplicitFlowUsed"/>
+        </classes>
+    </test>
+    <test name="OC5. FeatureTest-Rejects Incorrect c hash when Code Flow Used" enabled="true">
+        <classes>
+            <class name="org.gluu.oxauth.interop.RejectsIncorrectCHashWhenCodeFlowUsed"/>
+        </classes>
+    </test>
+    <test name="OC5. FeatureTest-Rejects redirect uri when Query Parameter Does Not Match" enabled="true">
+        <classes>
+            <class name="org.gluu.oxauth.interop.RejectsRedirectUriWhenQueryParameterDoesNotMatch"/>
+        </classes>
+    </test>
+    <test name="OC5. FeatureTest-Rejects Second Use of Access Code" enabled="true">
+        <classes>
+            <class name="org.gluu.oxauth.interop.RejectsSecondUseOfAccessCode"/>
+        </classes>
+    </test>
+    <test name="OC5. FeatureTest-Rejects Sector Identifier Not Containing Registered redirect uri Values"
+          enabled="true">
+        <classes>
+            <class name="org.gluu.oxauth.interop.RejectsSectorIdentifierNotContainingRegisteredRedirectUriValues"/>
+        </classes>
+    </test>
+    <test name="OC5. FeatureTest-Requesting UserInfo Claims with OpenID Request Object" enabled="true">
+        <classes>
+            <class name="org.gluu.oxauth.interop.RequestingUserInfoClaimsWithOpenIdRequestObject"/>
+        </classes>
+    </test>
+    <test name="OC5. FeatureTest-Requesting UserInfo Claims with scope Values" enabled="true">
+        <classes>
+            <class name="org.gluu.oxauth.interop.RequestingUserInfoClaimsWithScopeValues"/>
+        </classes>
+    </test>
+    <test name="OC5. FeatureTest-Second Use of Access Code Revokes Previously Issued Access Token" enabled="true">
+        <classes>
+            <class name="org.gluu.oxauth.interop.SecondUseOfAccessCodeRevokesPreviouslyIssuedAccessToken"/>
+        </classes>
+    </test>
+    <test name="OC5. FeatureTest-Support Authentication to Token Endpoint using Form-Encoded Client Credentials in POST Body"
+          enabled="true">
+        <classes>
+            <class name="org.gluu.oxauth.interop.SupportAuthenticationToTokenEndpointUsingFormEncodedClientCredentialsInPostBody"/>
+        </classes>
+    </test>
+    <test name="OC5. FeatureTest-Support Authentication to Token Endpoint using HTTP Basic with POST" enabled="true">
+        <classes>
+            <class name="org.gluu.oxauth.interop.SupportAuthenticationToTokenEndpointUsingHttpBasicWithPost"/>
+        </classes>
+    </test>
+    <test name="OC5. FeatureTest-Support Authentication to Token Endpoint with Asymmetrically Signed JWTs"
+          enabled="true">
+        <classes>
+            <class name="org.gluu.oxauth.interop.SupportAuthenticationToTokenEndpointWithAsymmetricallySignedJWTs"/>
+        </classes>
+    </test>
+    <test name="OC5. FeatureTest-Support Authentication to Token Endpoint with Symmetrically Signed JWTs"
+          enabled="true">
+        <classes>
+            <class name="org.gluu.oxauth.interop.SupportAuthenticationToTokenEndpointWithSymmetricallySignedJWTs"/>
+        </classes>
+    </test>
+    <test name="OC5. FeatureTest-Support code Response Type" enabled="true">
+        <classes>
+            <class name="org.gluu.oxauth.interop.SupportCodeResponseType"/>
+        </classes>
+    </test>
+    <test name="OC5. FeatureTest-Support Combination of code id token token Response Types" enabled="true">
+        <classes>
+            <class name="org.gluu.oxauth.interop.SupportCombinationOfCodeIdTokenTokenResponseTypes"/>
+        </classes>
+    </test>
+    <test name="OC5. FeatureTest-Support Combination of code token Response Types" enabled="true">
+        <classes>
+            <class name="org.gluu.oxauth.interop.SupportCombinationOfCodeTokenResponseTypes"/>
+        </classes>
+    </test>
+    <test name="OC5. FeatureTest-Support Combination of id token code Response Types" enabled="true">
+        <classes>
+            <class name="org.gluu.oxauth.interop.SupportCombinationOfIdTokenCodeResponseTypes"/>
+        </classes>
+    </test>
+    <test name="OC5. FeatureTest-Support Combination of id token token Response Types" enabled="true">
+        <classes>
+            <class name="org.gluu.oxauth.interop.SupportCombinationOfIdTokenTokenResponseTypes"/>
+        </classes>
+    </test>
+    <test name="OC5. FeatureTest-Support display value page" enabled="true">
+        <classes>
+            <class name="org.gluu.oxauth.interop.SupportDisplayValuePage"/>
+        </classes>
+    </test>
+    <test name="OC5. FeatureTest-Support display value popup" enabled="true">
+        <classes>
+            <class name="org.gluu.oxauth.interop.SupportDisplayValuePopup"/>
+        </classes>
+    </test>
+    <test name="OC5. FeatureTest-Support id token Response Type" enabled="true">
+        <classes>
+            <class name="org.gluu.oxauth.interop.SupportIdTokenResponseType"/>
+        </classes>
+    </test>
+    <test name="OC5. FeatureTest-Support prompt value login" enabled="true">
+        <classes>
+            <class name="org.gluu.oxauth.interop.SupportPromptValueLogin"/>
+        </classes>
+    </test>
+    <test name="OC5. FeatureTest-Support prompt value none" enabled="true">
+        <classes>
+            <class name="org.gluu.oxauth.interop.SupportPromptValueNone"/>
+        </classes>
+    </test>
+    <test name="OC5. FeatureTest-Support Registration Read" enabled="true">
+        <classes>
+            <class name="org.gluu.oxauth.interop.SupportRegistrationRead"/>
+        </classes>
+    </test>
+    <test name="OC5. FeatureTest-Support Request File" enabled="false">
+        <classes>
+            <class name="org.gluu.oxauth.interop.SupportRequestFile"/>
+        </classes>
+    </test>
+    <test name="OC5. FeatureTest-Support claims Request Specifying sub Value" enabled="true">
+        <classes>
+            <class name="org.gluu.oxauth.interop.SupportClaimsRequestSpecifyingSubValue"/>
+        </classes>
+    </test>
+    <test name="OC5. FeatureTest-Support Requests Containing nonce" enabled="true">
+        <classes>
+            <class name="org.gluu.oxauth.interop.SupportRequestsContainingNonce"/>
+        </classes>
+    </test>
+    <test name="OC5. FeatureTest-Support Requests Without nonce" enabled="true">
+        <classes>
+            <class name="org.gluu.oxauth.interop.SupportRequestsWithoutNonce"/>
+        </classes>
+    </test>
+    <test name="OP-3rd_party-init-login" enabled="true">
+        <classes>
+            <class name="org.gluu.oxauth.interop.Supports3rdPartyInitLogin"/>
+        </classes>
+    </test>
+    <test name="OP-3rd_party-init-login-nohttps" enabled="true">
+        <classes>
+            <class name="org.gluu.oxauth.interop.Supports3rdPartyInitLoginNoHttps"/>
+        </classes>
+    </test>
+    <test name="OC5. FeatureTest-Supports Combining Claims Requested with scope and Request Object" enabled="true">
+        <classes>
+            <class name="org.gluu.oxauth.interop.SupportsCombiningClaimsRequestedWithScopeAndRequestObject"/>
+        </classes>
+    </test>
+    <test name="OC5. FeatureTest-Support scope Requesting address Claims" enabled="true">
+        <classes>
+            <class name="org.gluu.oxauth.interop.SupportScopeRequestingAddressClaims"/>
+        </classes>
+    </test>
+    <test name="OC5. FeatureTest-Support scope Requesting All Basic Claims" enabled="true">
+        <classes>
+            <class name="org.gluu.oxauth.interop.SupportScopeRequestingAllBasicClaims"/>
+        </classes>
+    </test>
+    <test name="OC5. FeatureTest-Support scope Requesting email Claims" enabled="true">
+        <classes>
+            <class name="org.gluu.oxauth.interop.SupportScopeRequestingEmailClaims"/>
+        </classes>
+    </test>
+    <test name="OC5. FeatureTest-Support scope Requesting No Specific Claims" enabled="true">
+        <classes>
+            <class name="org.gluu.oxauth.interop.SupportScopeRequestingNoSpecificClaims"/>
+        </classes>
+    </test>
+    <test name="OC5. FeatureTest-Support scope Requesting phone Claims" enabled="true">
+        <classes>
+            <class name="org.gluu.oxauth.interop.SupportScopeRequestingPhoneClaims"/>
+        </classes>
+    </test>
+    <test name="OC5. FeatureTest-Support scope Requesting profile Claims" enabled="true">
+        <classes>
+            <class name="org.gluu.oxauth.interop.SupportScopeRequestingProfileClaims"/>
+        </classes>
+    </test>
+    <test name="OC5. FeatureTest-Supports Returning Claims in ID Token" enabled="true">
+        <classes>
+            <class name="org.gluu.oxauth.interop.SupportsReturningClaimsInIdToken"/>
+        </classes>
+    </test>
+    <test name="OC5. FeatureTest-Supports Returning Different Claims in ID Token and UserInfo Endpoint" enabled="true">
+        <classes>
+            <class name="org.gluu.oxauth.interop.SupportsReturningDifferentClaimsInIdTokenAndUserInfoEndpoint"/>
+        </classes>
+    </test>
+    <test name="OC5. FeatureTest-Support token Response Type" enabled="true">
+        <classes>
+            <class name="org.gluu.oxauth.interop.SupportTokenResponseType"/>
+        </classes>
+    </test>
+    <test name="OC5. FeatureTest-UserInfo Endpoint" enabled="true">
+        <classes>
+            <class name="org.gluu.oxauth.interop.UserInfoEndpoint"/>
+        </classes>
+    </test>
+    <test name="OC5. FeatureTest-UserInfo Endpoint Access with Form-Encoded Body Method" enabled="true">
+        <classes>
+            <class name="org.gluu.oxauth.interop.UserInfoEndpointAccessWithFormEncodedBodyMethod"/>
+        </classes>
+    </test>
+    <test name="OC5. FeatureTest-UserInfo Endpoint Access with Header Method" enabled="true">
+        <classes>
+            <class name="org.gluu.oxauth.interop.UserInfoEndpointAccessWithHeaderMethod"/>
+        </classes>
+    </test>
+    <test name="OC5. FeatureTest-Uses Asymmetric ID Token Signatures" enabled="true">
+        <classes>
+            <class name="org.gluu.oxauth.interop.UsesAsymmetricIdTokenSignatures"/>
+        </classes>
+    </test>
+    <test name="OC5. FeatureTest-Uses Discovery" enabled="true">
+        <classes>
+            <class name="org.gluu.oxauth.interop.UsesDiscovery"/>
+        </classes>
+    </test>
+    <test name="OC5. FeatureTest-Uses Dynamic Registration" enabled="true">
+        <classes>
+            <class name="org.gluu.oxauth.interop.UsesDynamicRegistration"/>
+        </classes>
+    </test>
+    <test name="OC5. FeatureTest-Uses Symmetric ID Token Signatures" enabled="true">
+        <classes>
+            <class name="org.gluu.oxauth.interop.UsesSymmetricIdTokenSignatures"/>
+        </classes>
+    </test>
+    <test name="OC5. FeatureTest-Verifies Correct at hash when Implicit Flow Used" enabled="true">
+        <classes>
+            <class name="org.gluu.oxauth.interop.VerifiesCorrectAtHashWhenImplicitFlowUsed"/>
+        </classes>
+    </test>
+    <test name="OC5. FeatureTest-Verifies Correct c hash when Code Flow Used" enabled="true">
+        <classes>
+            <class name="org.gluu.oxauth.interop.VerifiesCorrectCHashWhenCodeFlowUsed"/>
+        </classes>
+    </test>
+
+    <!-- CIBA -->
+    <test name="CIBA Configuration Test" enabled="true">
+        <classes>
+            <class name="org.gluu.oxauth.ciba.ConfigurationTest"/>
+        </classes>
+    </test>
+    <test name="CIBA Dynamic Client Registration Test" enabled="true">
+        <classes>
+            <class name="org.gluu.oxauth.ciba.RegistrationTest"/>
+        </classes>
+    </test>
+    <test name="CIBA Ping Mode" enabled="true">
+        <classes>
+            <class name="org.gluu.oxauth.ciba.BackchannelAuthenticationPingMode"></class>
+        </classes>
+    </test>
+    <test name="CIBA Poll Mode" enabled="true">
+        <classes>
+            <class name="org.gluu.oxauth.ciba.BackchannelAuthenticationPollMode"></class>
+        </classes>
+    </test>
+    <test name="CIBA Push Mode" enabled="true">
+        <classes>
+            <class name="org.gluu.oxauth.ciba.BackchannelAuthenticationPushMode"></class>
+        </classes>
+    </test>
+    <test name="CIBA Expired Requests" enabled="true">
+        <classes>
+            <class name="org.gluu.oxauth.ciba.BackchannelAuthenticationExpiredRequestsTests"></class>
+        </classes>
+    </test>
+    <test name="CIBA Ping Mode JWT Requests" enabled="true">
+        <classes>
+            <class name="org.gluu.oxauth.ciba.CibaPingModeJwtAuthRequestTests"></class>
+        </classes>
+    </test>
+    <test name="CIBA Poll Mode JWT Requests" enabled="true">
+        <classes>
+            <class name="org.gluu.oxauth.ciba.CibaPollModeJwtAuthRequestTests"></class>
+        </classes>
+    </test>
+
+    <!-- Device authorization tests -->
+    <test name="Tests for Device Authz WS" enabled="true">
+        <classes>
+            <class name="org.gluu.oxauth.ws.rs.deviceauthz.DeviceAuthzRequestRegistrationTest"></class>
+        </classes>
+    </test>
+    <test name="Tests for Device Authz flow" enabled="true">
+        <classes>
+            <class name="org.gluu.oxauth.ws.rs.deviceauthz.DeviceAuthzFlowHttpTest"></class>
+        </classes>
+    </test>
+
+</suite>
diff --git a/oxAuth/LICENSE b/oxAuth/LICENSE
new file mode 100644
index 00000000..43f890fd
--- /dev/null
+++ b/oxAuth/LICENSE
@@ -0,0 +1,21 @@
+The MIT License (MIT)
+
+Copyright (c) 2020 Gluu, Inc
+
+Permission is hereby granted, free of charge, to any person obtaining a copy
+of this software and associated documentation files (the "Software"), to deal
+in the Software without restriction, including without limitation the rights
+to use, copy, modify, merge, publish, distribute, sublicense, and/or sell
+copies of the Software, and to permit persons to whom the Software is
+furnished to do so, subject to the following conditions:
+
+The above copyright notice and this permission notice shall be included in all
+copies or substantial portions of the Software.
+
+THE SOFTWARE IS PROVIDED "AS IS", WITHOUT WARRANTY OF ANY KIND, EXPRESS OR
+IMPLIED, INCLUDING BUT NOT LIMITED TO THE WARRANTIES OF MERCHANTABILITY,
+FITNESS FOR A PARTICULAR PURPOSE AND NONINFRINGEMENT. IN NO EVENT SHALL THE
+AUTHORS OR COPYRIGHT HOLDERS BE LIABLE FOR ANY CLAIM, DAMAGES OR OTHER
+LIABILITY, WHETHER IN AN ACTION OF CONTRACT, TORT OR OTHERWISE, ARISING FROM,
+OUT OF OR IN CONNECTION WITH THE SOFTWARE OR THE USE OR OTHER DEALINGS IN THE
+SOFTWARE.
diff --git a/oxAuth/Model/.gitignore b/oxAuth/Model/.gitignore
new file mode 100644
index 00000000..b83d2226
--- /dev/null
+++ b/oxAuth/Model/.gitignore
@@ -0,0 +1 @@
+/target/
diff --git a/oxAuth/Model/pom.xml b/oxAuth/Model/pom.xml
new file mode 100644
index 00000000..e5b2bc10
--- /dev/null
+++ b/oxAuth/Model/pom.xml
@@ -0,0 +1,170 @@
+<?xml version="1.0" encoding="UTF-8"?>
+<project xmlns="http://maven.apache.org/POM/4.0.0"
+	xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance"
+	xsi:schemaLocation="http://maven.apache.org/POM/4.0.0 http://maven.apache.org/xsd/maven-4.0.0.xsd">
+	<modelVersion>4.0.0</modelVersion>
+	<artifactId>oxauth-model</artifactId>
+	<name>oxAuth Model</name>
+	<packaging>jar</packaging>
+
+	<parent>
+		<groupId>org.gluu</groupId>
+		<artifactId>oxauth</artifactId>
+		<version>4.5.6-SNAPSHOT</version>
+	</parent>
+
+	<prerequisites>
+		<maven>${maven.min-version}</maven>
+	</prerequisites>
+
+	<build>
+		<finalName>oxauth-model</finalName>
+
+		<resources>
+			<resource>
+				<directory>src/main/resources</directory>
+				<includes>
+					<include>**/*.xml</include>
+					<include>**/*.properties</include>
+					<include>**/*.js</include>
+				</includes>
+			</resource>
+		</resources>
+
+		<testResources>
+			<testResource>
+				<directory>src/test/resources</directory>
+				<includes>
+					<include>**/*.json</include>
+					<include>**/*.xml</include>
+				</includes>
+			</testResource>
+		</testResources>
+
+		<plugins>
+			<plugin>
+				<groupId>org.apache.maven.plugins</groupId>
+				<artifactId>maven-surefire-plugin</artifactId>
+				<configuration>
+					<skipTests>false</skipTests>  <!-- set it to false when test sources appear -->
+				</configuration>
+			</plugin>
+		</plugins>
+	</build>
+
+	<dependencies>
+		<dependency>
+			<groupId>com.google.guava</groupId>
+			<artifactId>guava</artifactId>
+		</dependency>
+		<dependency>
+			<groupId>org.gluu</groupId>
+			<artifactId>oxeleven-client</artifactId>
+		</dependency>
+		<dependency>
+			<groupId>org.gluu</groupId>
+			<artifactId>oxeleven-model</artifactId>
+		</dependency>
+		<dependency>
+			<groupId>org.jboss.resteasy</groupId>
+			<artifactId>resteasy-jaxb-provider</artifactId>
+		</dependency>
+		<dependency>
+			<groupId>org.gluu</groupId>
+			<artifactId>gluu-orm-annotation</artifactId>
+		</dependency>
+		<dependency>
+			<groupId>org.gluu</groupId>
+			<artifactId>oxcore-util</artifactId>
+		</dependency>
+		<dependency>
+			<groupId>org.gluu</groupId>
+			<artifactId>oxcore-model</artifactId>
+		</dependency>
+		<dependency>
+			<groupId>org.jboss.resteasy</groupId>
+			<artifactId>resteasy-client</artifactId>
+		</dependency>
+		<dependency>
+		    <groupId>org.json</groupId>
+		    <artifactId>json</artifactId>
+		</dependency>
+		<dependency>
+			<groupId>com.fasterxml.jackson.datatype</groupId>
+			<artifactId>jackson-datatype-json-org </artifactId>
+		</dependency>
+		<dependency>
+			<groupId>com.fasterxml.jackson.module</groupId>
+			<artifactId>jackson-module-jaxb-annotations</artifactId>
+		</dependency>
+		<dependency>
+			<groupId>commons-codec</groupId>
+			<artifactId>commons-codec</artifactId>
+		</dependency>
+		<dependency>
+			<groupId>commons-lang</groupId>
+			<artifactId>commons-lang</artifactId>
+		</dependency>
+		<dependency>
+			<groupId>commons-io</groupId>
+			<artifactId>commons-io</artifactId>
+		</dependency>
+
+		<!-- Logging -->
+		<dependency>
+			<groupId>org.apache.logging.log4j</groupId>
+			<artifactId>log4j-api</artifactId>
+		</dependency>
+		<dependency>
+			<groupId>org.apache.logging.log4j</groupId>
+			<artifactId>log4j-1.2-api</artifactId>
+		</dependency>
+
+		<dependency>
+			<groupId>org.testng</groupId>
+			<artifactId>testng</artifactId>
+		</dependency>
+		
+		<!-- Security -->
+		<dependency>
+			<groupId>org.bouncycastle</groupId>
+			<artifactId>bcprov-jdk18on</artifactId>
+			<scope>provided</scope>
+		</dependency>
+		<dependency>
+			<groupId>org.bouncycastle</groupId>
+			<artifactId>bcpkix-jdk18on</artifactId>
+			<scope>provided</scope>
+		</dependency>
+
+		<dependency>
+			<groupId>com.nimbusds</groupId>
+			<artifactId>nimbus-jose-jwt</artifactId>
+		</dependency>
+		<dependency>
+			<groupId>org.bitbucket.b_c</groupId>
+			<artifactId>jose4j</artifactId>
+		</dependency>
+
+		<dependency>
+			<groupId>javax.validation</groupId>
+			<artifactId>validation-api</artifactId>
+		</dependency>
+        <dependency>
+            <groupId>org.jetbrains</groupId>
+            <artifactId>annotations</artifactId>
+        </dependency>
+		<dependency>
+			<groupId>com.sun.mail</groupId>
+			<artifactId>jakarta.mail</artifactId>
+		</dependency>
+
+        <!-- documentation -->
+		<dependency>
+			<groupId>com.wordnik</groupId>
+			<artifactId>swagger-annotations</artifactId>
+		</dependency>
+
+	</dependencies>
+	
+</project>
\ No newline at end of file
diff --git a/oxAuth/Model/src/main/java/org/gluu/oxauth/model/authorize/AuthorizeErrorResponseType.java b/oxAuth/Model/src/main/java/org/gluu/oxauth/model/authorize/AuthorizeErrorResponseType.java
new file mode 100644
index 00000000..ee8e3621
--- /dev/null
+++ b/oxAuth/Model/src/main/java/org/gluu/oxauth/model/authorize/AuthorizeErrorResponseType.java
@@ -0,0 +1,191 @@
+/*
+ * oxAuth is available under the MIT License (2008). See http://opensource.org/licenses/MIT for full text.
+ *
+ * Copyright (c) 2014, Gluu
+ */
+
+package org.gluu.oxauth.model.authorize;
+
+import org.gluu.oxauth.model.error.IErrorType;
+
+/**
+ * Error codes for authorization error responses.
+ *
+ * @author Javier Rojas Blum Date: 09.22.2011
+ */
+public enum AuthorizeErrorResponseType implements IErrorType {
+
+    /**
+     * The request is missing a required parameter, includes an
+     * invalid parameter value, includes a parameter more than
+     * once, or is otherwise malformed.
+     */
+    INVALID_REQUEST("invalid_request"),
+
+    /**
+     * The client is not authorized to request an authorization
+     * code / access token using this method.
+     */
+    UNAUTHORIZED_CLIENT("unauthorized_client"),
+
+    /**
+     * The client is disabled and can't request an access token using this method.
+     */
+    DISABLED_CLIENT("disabled_client"),
+
+    /**
+     * The resource owner or authorization server denied the request.
+     */
+    ACCESS_DENIED("access_denied"),
+
+    /**
+     * AS requires RP to re-send authorization request.
+     */
+    RETRY("retry"),
+
+    /**
+     * The authorization server does not support obtaining an access token using
+     * this method.
+     */
+    UNSUPPORTED_RESPONSE_TYPE("unsupported_response_type"),
+
+    /**
+     * The requested scope is invalid, unknown, or malformed.
+     */
+    INVALID_SCOPE("invalid_scope"),
+
+    /**
+     * The authorization server encountered an unexpected condition which
+     * prevented it from fulfilling the request.
+     */
+    SERVER_ERROR("server_error"),
+
+    /**
+     * The authorization server is currently unable to handle the request due to
+     * a temporary overloading or maintenance of the server.
+     */
+    TEMPORARILY_UNAVAILABLE("temporarily_unavailable"),
+
+    /**
+     * The redirect_uri in the Authorization Request does not match any of the
+     * Client's pre-registered redirect_uris.
+     */
+    INVALID_REQUEST_REDIRECT_URI("invalid_request_redirect_uri"),
+
+    /**
+     * The Authorization Server requires End-User authentication. This error MAY
+     * be returned when the prompt parameter in the Authorization Request is set
+     * to none to request that the Authorization Server should not display any
+     * user interfaces to the End-User, but the Authorization Request cannot be
+     * completed without displaying a user interface for user authentication.
+     */
+    LOGIN_REQUIRED("login_required"),
+
+    /**
+     * The End-User is required to select a session at the Authorization Server.
+     * The End-User MAY be authenticated at the Authorization Server with
+     * different associated accounts, but the End-User did not select a session.
+     * This error MAY be returned when the prompt parameter in the Authorization
+     * Request is set to none to request that the Authorization Server should
+     * not display any user interfaces to the End-User, but the Authorization
+     * Request cannot be completed without displaying a user interface to
+     * prompt for a session to use.
+     */
+    SESSION_SELECTION_REQUIRED("session_selection_required"),
+
+    /**
+     * The Authorization Server requires End-User consent. This error MAY be
+     * returned when the prompt parameter in the Authorization Request is set to
+     * none to request that the Authorization Server should not display any user
+     * interfaces to the End-User, but the Authorization Request cannot be
+     * completed without displaying a user interface for End-User consent.
+     */
+    CONSENT_REQUIRED("consent_required"),
+
+    /**
+     * The current logged in End-User at the Authorization Server does not match
+     * the requested user. This error MAY be returned when the prompt parameter
+     * in the Authorization Request is set to none to request that the Authorization
+     * Server should not display any user interfaces to the End-User, but the
+     * Authorization Request cannot be completed without displaying a user interface
+     * to prompt for the correct End-User authentication.
+     */
+    USER_MISMATCHED("user_mismatched"),
+
+    /**
+     * "request" parameter is supported by AS. But if it's switched off in configuration by setting
+     * requestParameterSupported=false then this error is returned from authorization endpoint.
+     */
+    REQUEST_NOT_SUPPORTED("request_not_supported"),
+
+    /**
+     * "request_uri" parameter is supported by AS. But if it's switched off in configuration by setting
+     * requestUriParameterSupported=false then this error is returned from authorization endpoint.
+     */
+    REQUEST_URI_NOT_SUPPORTED("request_uri_not_supported"),
+
+    /**
+     * The request_uri in the Authorization Request returns an error or invalid data.
+     */
+    INVALID_REQUEST_URI("invalid_request_uri"),
+
+    /**
+     * The request parameter contains an invalid OpenID Request Object.
+     */
+    INVALID_REQUEST_OBJECT("invalid_request_object"),
+
+    /**
+     * The authorization server can't handle user authentication due to session expiration
+     */
+    AUTHENTICATION_SESSION_INVALID("authentication_session_invalid"),
+
+    /**
+     * The authorization server can't handle user authentication due to error caused by ACR
+     */
+    INVALID_AUTHENTICATION_METHOD("invalid_authentication_method");
+
+    private final String paramName;
+
+    private AuthorizeErrorResponseType(String paramName) {
+        this.paramName = paramName;
+    }
+
+    /**
+     * Return the corresponding enumeration from a string parameter.
+     *
+     * @param param The parameter to be match.
+     * @return The <code>enumeration</code> if found, otherwise
+     *         <code>null</code>.
+     */
+    public static AuthorizeErrorResponseType fromString(String param) {
+        if (param != null) {
+            for (AuthorizeErrorResponseType err : AuthorizeErrorResponseType
+                    .values()) {
+                if (param.equals(err.paramName)) {
+                    return err;
+                }
+            }
+        }
+        return null;
+    }
+
+
+    /**
+     * Returns a string representation of the object. In this case, the lower
+     * case code of the error.
+     */
+    @Override
+    public String toString() {
+        return paramName;
+    }
+
+    /**
+     * Gets error parameter.
+     *
+     * @return error parameter
+     */
+    @Override
+    public String getParameter() {
+        return paramName;
+    }
+}
\ No newline at end of file
diff --git a/oxAuth/Model/src/main/java/org/gluu/oxauth/model/authorize/AuthorizeRequestParam.java b/oxAuth/Model/src/main/java/org/gluu/oxauth/model/authorize/AuthorizeRequestParam.java
new file mode 100644
index 00000000..6b1f9ac0
--- /dev/null
+++ b/oxAuth/Model/src/main/java/org/gluu/oxauth/model/authorize/AuthorizeRequestParam.java
@@ -0,0 +1,49 @@
+/*
+ * oxAuth is available under the MIT License (2008). See http://opensource.org/licenses/MIT for full text.
+ *
+ * Copyright (c) 2014, Gluu
+ */
+
+package org.gluu.oxauth.model.authorize;
+
+/**
+ * @author Javier Rojas Blum
+ * @version October 7, 2019
+ */
+public interface AuthorizeRequestParam {
+
+    String ACCESS_TOKEN = "access_token";
+    String RESPONSE_TYPE = "response_type";
+    String CLIENT_ID = "client_id";
+    String SCOPE = "scope";
+    String REDIRECT_URI = "redirect_uri";
+    String STATE = "state";
+    String RESPONSE_MODE = "response_mode";
+    String NONCE = "nonce";
+    String DISPLAY = "display";
+    String PROMPT = "prompt";
+    String MAX_AGE = "max_age";
+    String UI_LOCALES = "ui_locales";
+    String CLAIMS_LOCALES = "claims_locales";
+    String ID_TOKEN_HINT = "id_token_hint";
+    String LOGIN_HINT = "login_hint";
+    String ACR_VALUES = "acr_values";
+    String AMR_VALUES = "amr_values";
+    String CLAIMS = "claims";
+    String REGISTRATION = "registration";
+    String REQUEST = "request";
+    String REQUEST_URI = "request_uri";
+    String ORIGIN_HEADERS = "origin_headers";
+    String CODE_CHALLENGE = "code_challenge";
+    String CODE_CHALLENGE_METHOD = "code_challenge_method";
+    String CUSTOM_RESPONSE_HEADERS = "custom_response_headers";
+    String AUTH_REQ_ID = "auth_req_id";
+    String SID = "sid";
+
+    /**
+     * String that represents the End-User's login state at the OP.
+     */
+    String SESSION_ID = "session_id";
+
+    String REQUEST_SESSION_ID = "request_session_id";
+}
\ No newline at end of file
diff --git a/oxAuth/Model/src/main/java/org/gluu/oxauth/model/authorize/AuthorizeResponseParam.java b/oxAuth/Model/src/main/java/org/gluu/oxauth/model/authorize/AuthorizeResponseParam.java
new file mode 100644
index 00000000..49a4096a
--- /dev/null
+++ b/oxAuth/Model/src/main/java/org/gluu/oxauth/model/authorize/AuthorizeResponseParam.java
@@ -0,0 +1,31 @@
+/*
+ * oxAuth is available under the MIT License (2008). See http://opensource.org/licenses/MIT for full text.
+ *
+ * Copyright (c) 2014, Gluu
+ */
+
+package org.gluu.oxauth.model.authorize;
+
+/**
+ * @author Javier Rojas Blum
+ * @version August 9, 2017
+ */
+public interface AuthorizeResponseParam {
+
+    String CODE = "code";
+    String ACCESS_TOKEN = "access_token";
+    String TOKEN_TYPE = "token_type";
+    String EXPIRES_IN = "expires_in";
+    String SCOPE = "scope";
+    String ID_TOKEN = "id_token";
+    String STATE = "state";
+    String SESSION_STATE = "session_state";
+
+    /**
+     * String that represents the End-User's login state at the OP.
+     */
+    String SESSION_ID = "session_id";
+    String SID = "sid";
+
+    String ACR_VALUES = "acr_values";
+}
\ No newline at end of file
diff --git a/oxAuth/Model/src/main/java/org/gluu/oxauth/model/authorize/CodeVerifier.java b/oxAuth/Model/src/main/java/org/gluu/oxauth/model/authorize/CodeVerifier.java
new file mode 100644
index 00000000..e9eb3692
--- /dev/null
+++ b/oxAuth/Model/src/main/java/org/gluu/oxauth/model/authorize/CodeVerifier.java
@@ -0,0 +1,141 @@
+package org.gluu.oxauth.model.authorize;
+
+import com.google.common.base.Preconditions;
+import com.google.common.base.Strings;
+import org.apache.commons.codec.binary.Base64;
+import org.apache.commons.codec.binary.BaseNCodec;
+import org.apache.commons.codec.digest.DigestUtils;
+import org.apache.commons.lang.RandomStringUtils;
+
+/**
+ * @author Yuriy Zabrovarnyy
+ * @version 0.9, 21/03/2016
+ */
+
+public class CodeVerifier {
+
+    private static final int MAX_CODE_VERIFIER_LENGTH = 128;
+    private static final int MIN_CODE_VERIFIER_LENGTH = 43;
+    private static final byte[] EMPTY_BYTE_ARRAY = new byte[0];
+
+    public enum CodeChallengeMethod {
+        PLAIN("plain", ""),
+        S256("s256", "SHA-256");
+
+        private String pkceString;
+        private String messageDigestString;
+
+        private CodeChallengeMethod(String pkceString, String messageDigestString) {
+            this.pkceString = pkceString;
+            this.messageDigestString = messageDigestString;
+        }
+
+        public String getMessageDigestString() {
+            return messageDigestString;
+        }
+
+        public String getPkceString() {
+            return pkceString;
+        }
+
+        public static CodeChallengeMethod fromString(String value) {
+            for (CodeChallengeMethod type : values()) {
+                if (type.getPkceString().equalsIgnoreCase(value)) {
+                    return type;
+                }
+            }
+            return PLAIN;
+        }
+    }
+
+    private String codeVerifier;
+    private String codeChallenge;
+    private CodeChallengeMethod transformationType;
+
+    public CodeVerifier() {
+        this(CodeChallengeMethod.S256);
+    }
+
+    public CodeVerifier(CodeChallengeMethod transformationType) {
+        this.codeVerifier = generateCodeVerifier();
+        this.transformationType = transformationType;
+        this.codeChallenge = generateCodeChallenge(transformationType, codeVerifier);
+    }
+
+    public static String generateCodeChallenge(CodeChallengeMethod codeChallengeMethod, String codeVerifier) {
+        Preconditions.checkNotNull(codeChallengeMethod);
+        Preconditions.checkNotNull(codeVerifier);
+
+        switch (codeChallengeMethod) {
+            case PLAIN:
+                return codeVerifier;
+            case S256:
+                return s256(codeVerifier);
+        }
+        throw new RuntimeException("Unsupported code challenge method: " + codeChallengeMethod);
+    }
+
+    public static boolean matched(String codeChallenge, String codeChallengeMethod, String codeVerifier) {
+        return matched(codeChallenge, CodeChallengeMethod.fromString(codeChallengeMethod), codeVerifier);
+    }
+
+    public static boolean matched(String codeChallenge, CodeChallengeMethod codeChallengeMethod, String codeVerifier) {
+        if (Strings.isNullOrEmpty(codeChallenge) || codeChallengeMethod == null || Strings.isNullOrEmpty(codeVerifier)) {
+            return false;
+        }
+        return generateCodeChallenge(codeChallengeMethod, codeVerifier).equals(codeChallenge);
+    }
+
+    public static String s256(String codeVerifier) {
+        byte[] sha256 = DigestUtils.sha256(codeVerifier);
+        return base64UrlEncode(sha256);
+    }
+
+    public static String base64UrlEncode(byte[] input) {
+        Base64 base64 = new Base64(BaseNCodec.MIME_CHUNK_SIZE, EMPTY_BYTE_ARRAY, true);
+        return base64.encodeAsString(input);
+    }
+
+    public static String generateCodeVerifier() {
+        String alphabetic = "abcdefghijklmnopqrstuvwxyz";
+        String chars = alphabetic + alphabetic.toUpperCase()
+                + "1234567890" + "-._~";
+        String code = RandomStringUtils.random(MAX_CODE_VERIFIER_LENGTH, chars);
+        Preconditions.checkState(isCodeVerifierValid(code));
+        return code;
+    }
+
+    public static boolean isCodeVerifierValid(String codeVerifier) {
+        if (codeVerifier == null) {
+            return false;
+        }
+        int length = codeVerifier.length();
+        if (length > MAX_CODE_VERIFIER_LENGTH || length < MIN_CODE_VERIFIER_LENGTH) {
+            return false;
+        }
+        return true;
+    }
+
+    public String getCodeChallenge() {
+        return codeChallenge;
+    }
+
+    public String getCodeVerifier() {
+        return codeVerifier;
+    }
+
+    public CodeChallengeMethod getTransformationType() {
+        return transformationType;
+    }
+
+    @Override
+    public String toString() {
+        final StringBuilder sb = new StringBuilder();
+        sb.append("CodeVerifier");
+        sb.append("{codeVerifier='").append(codeVerifier).append('\'');
+        sb.append(", codeChallenge='").append(codeChallenge).append('\'');
+        sb.append(", transformationType=").append(transformationType);
+        sb.append('}');
+        return sb.toString();
+    }
+}
diff --git a/oxAuth/Model/src/main/java/org/gluu/oxauth/model/authorize/DeviceAuthorizationRequestParam.java b/oxAuth/Model/src/main/java/org/gluu/oxauth/model/authorize/DeviceAuthorizationRequestParam.java
new file mode 100644
index 00000000..28c13942
--- /dev/null
+++ b/oxAuth/Model/src/main/java/org/gluu/oxauth/model/authorize/DeviceAuthorizationRequestParam.java
@@ -0,0 +1,24 @@
+/*
+ * oxAuth is available under the MIT License (2008). See http://opensource.org/licenses/MIT for full text.
+ *
+ * Copyright (c) 2014, Gluu
+ */
+
+package org.gluu.oxauth.model.authorize;
+
+/**
+ * RFC8628 section 3.1
+ */
+public interface DeviceAuthorizationRequestParam {
+
+    /**
+     * The client identifier as described in Section 2.2 of [RFC6749].
+     */
+    String CLIENT_ID = "client_id";
+
+    /**
+     * The scope of the access request as defined by Section 3.3 of [RFC6749].
+     */
+    String SCOPE = "scope";
+
+}
\ No newline at end of file
diff --git a/oxAuth/Model/src/main/java/org/gluu/oxauth/model/authorize/DeviceAuthorizationResponseParam.java b/oxAuth/Model/src/main/java/org/gluu/oxauth/model/authorize/DeviceAuthorizationResponseParam.java
new file mode 100644
index 00000000..7bb301c5
--- /dev/null
+++ b/oxAuth/Model/src/main/java/org/gluu/oxauth/model/authorize/DeviceAuthorizationResponseParam.java
@@ -0,0 +1,50 @@
+/*
+ * oxAuth is available under the MIT License (2008). See http://opensource.org/licenses/MIT for full text.
+ *
+ * Copyright (c) 2014, Gluu
+ */
+
+package org.gluu.oxauth.model.authorize;
+
+/**
+ * RFC8628 section 3.2
+ */
+public interface DeviceAuthorizationResponseParam {
+
+    /**
+     * REQUIRED.  The device verification code.
+     */
+    String DEVICE_CODE = "device_code";
+
+    /**
+     * REQUIRED.  The end-user verification code.
+     */
+    String USER_CODE = "user_code";
+
+    /**
+     * REQUIRED.  The end-user verification URI on the authorization
+     * server.  The URI should be short and easy to remember as end users
+     * will be asked to manually type it into their user agent.
+     */
+    String VERIFICATION_URI = "verification_uri";
+
+    /**
+     * OPTIONAL.  A verification URI that includes the "user_code" (or
+     * other information with the same function as the "user_code"),
+     * which is designed for non-textual transmission.
+     */
+    String VERIFICATION_URI_COMPLETE = "verification_uri_complete";
+
+    /**
+     * REQUIRED.  The lifetime in seconds of the "device_code" and "user_code".
+     */
+    String EXPIRES_IN = "expires_in";
+
+    /**
+     * OPTIONAL.  The minimum amount of time in seconds that the client
+     * SHOULD wait between polling requests to the token endpoint.  If no
+     * value is provided, clients MUST use 5 as the default.
+     */
+    String INTERVAL = "interval";
+
+}
\ No newline at end of file
diff --git a/oxAuth/Model/src/main/java/org/gluu/oxauth/model/authorize/DeviceAuthzErrorResponseType.java b/oxAuth/Model/src/main/java/org/gluu/oxauth/model/authorize/DeviceAuthzErrorResponseType.java
new file mode 100644
index 00000000..1bfb5d85
--- /dev/null
+++ b/oxAuth/Model/src/main/java/org/gluu/oxauth/model/authorize/DeviceAuthzErrorResponseType.java
@@ -0,0 +1,63 @@
+/*
+ * oxAuth is available under the MIT License (2008). See http://opensource.org/licenses/MIT for full text.
+ *
+ * Copyright (c) 2014, Gluu
+ */
+
+package org.gluu.oxauth.model.authorize;
+
+import org.gluu.oxauth.model.error.IErrorType;
+
+/**
+ * Error codes for device authz error responses.
+ */
+public enum DeviceAuthzErrorResponseType implements IErrorType {
+
+    INVALID_CLIENT("invalid_client"),
+
+    INVALID_GRANT("invalid_grant"),
+    ;
+
+    private final String paramName;
+
+    private DeviceAuthzErrorResponseType(String paramName) {
+        this.paramName = paramName;
+    }
+
+    /**
+     * Return the corresponding enumeration from a string parameter.
+     *
+     * @param param The parameter to be match.
+     * @return The <code>enumeration</code> if found, otherwise
+     * <code>null</code>.
+     */
+    public static DeviceAuthzErrorResponseType fromString(String param) {
+        if (param != null) {
+            for (DeviceAuthzErrorResponseType err : DeviceAuthzErrorResponseType
+                    .values()) {
+                if (param.equals(err.paramName)) {
+                    return err;
+                }
+            }
+        }
+        return null;
+    }
+
+    /**
+     * Returns a string representation of the object. In this case, the lower case code of the error.
+     */
+    @Override
+    public String toString() {
+        return paramName;
+    }
+
+    /**
+     * Gets error parameter.
+     *
+     * @return error parameter
+     */
+    @Override
+    public String getParameter() {
+        return paramName;
+    }
+}
diff --git a/oxAuth/Model/src/main/java/org/gluu/oxauth/model/ciba/BackchannelAuthenticationErrorResponseType.java b/oxAuth/Model/src/main/java/org/gluu/oxauth/model/ciba/BackchannelAuthenticationErrorResponseType.java
new file mode 100644
index 00000000..2738b98e
--- /dev/null
+++ b/oxAuth/Model/src/main/java/org/gluu/oxauth/model/ciba/BackchannelAuthenticationErrorResponseType.java
@@ -0,0 +1,128 @@
+/*
+ * oxAuth is available under the MIT License (2008). See http://opensource.org/licenses/MIT for full text.
+ *
+ * Copyright (c) 2014, Gluu
+ */
+
+package org.gluu.oxauth.model.ciba;
+
+import org.gluu.oxauth.model.error.IErrorType;
+
+/**
+ * @author Javier Rojas Blum
+ * @version August 20, 2019
+ */
+public enum BackchannelAuthenticationErrorResponseType implements IErrorType {
+
+    // HTTP 400 Bad Request
+
+    /**
+     * The request is missing a required parameter, includes an invalid parameter
+     * value, includes a parameter more than once, contains more than one of the
+     * hints, or is otherwise malformed.
+     */
+    INVALID_REQUEST("invalid_request"),
+
+    /**
+     * The requested scope is invalid, unknown, or malformed.
+     */
+    INVALID_SCOPE("invalid_scope"),
+
+    /**
+     * The login_hint_token provided in the authentication request is not valid because
+     * it has expired.
+     */
+    EXPIRED_LOGIN_HINT_TOKEN("expired_login_hint_token"),
+
+    /**
+     * The OpenID Provider is not able to identify which end-user the Client wishes to
+     * be authenticated by means of the hint provided in the request (login_hint_token,
+     * id_token_hint or login_hint).
+     */
+    UNKNOWN_USER_ID("unknown_user_id"),
+
+    /**
+     * The Client is not authorized to use this authentication flow.
+     */
+    UNAUTHORIZED_CLIENT("unauthorized_client"),
+
+    /**
+     * User code is required but was missing from the request.
+     */
+    MISSING_USER_CODE("missing_user_code"),
+
+    /**
+     * User code was invalid.
+     */
+    INVALID_USER_CODE("invalid_user_code"),
+
+    /**
+     * The binding message is invalid or unacceptable for use in the context of the
+     * given request.
+     */
+    INVALID_BINDING_MESSAGE("invalid_binding_message"),
+
+    // HTTP 401 Unauthorized
+
+    /**
+     * Client authentication failed (e.g., invalid client credentials, unknown client, no
+     * client authentication included, or unsupported authentication method).
+     */
+    INVALID_CLIENT("invalid_client"),
+
+    /**
+     * The end-user has not registered a device to receive push notifications.
+     */
+    UNAUTHORIZED_END_USER_DEVICE("unauthorized_end_user_device"),
+
+    // HTTP 403 Forbidden
+
+    /**
+     * The resource owner or OpenID Provider denied the CIBA (Client Initiated
+     * Backchannel Authentication) request.
+     */
+    ACCESS_DENIED("access_denied");
+
+    private final String paramName;
+
+    BackchannelAuthenticationErrorResponseType(String paramName) {
+        this.paramName = paramName;
+    }
+
+    /**
+     * Returns the corresponding {@link BackchannelAuthenticationErrorResponseType} from a given string.
+     *
+     * @param param The string value to convert.
+     * @return The corresponding {@link BackchannelAuthenticationErrorResponseType}, otherwise <code>null</code>.
+     */
+    public static BackchannelAuthenticationErrorResponseType fromString(String param) {
+        if (param != null) {
+            for (BackchannelAuthenticationErrorResponseType err : BackchannelAuthenticationErrorResponseType.values()) {
+                if (param.equals(err.paramName)) {
+                    return err;
+                }
+            }
+        }
+        return null;
+    }
+
+    /**
+     * Returns a string representation of the object. In this case the parameter name.
+     *
+     * @return The string representation of the object.
+     */
+    @Override
+    public String toString() {
+        return paramName;
+    }
+
+    /**
+     * Gets error parameter.
+     *
+     * @return error parameter
+     */
+    @Override
+    public String getParameter() {
+        return paramName;
+    }
+}
\ No newline at end of file
diff --git a/oxAuth/Model/src/main/java/org/gluu/oxauth/model/ciba/BackchannelAuthenticationRequestParam.java b/oxAuth/Model/src/main/java/org/gluu/oxauth/model/ciba/BackchannelAuthenticationRequestParam.java
new file mode 100644
index 00000000..b166fc05
--- /dev/null
+++ b/oxAuth/Model/src/main/java/org/gluu/oxauth/model/ciba/BackchannelAuthenticationRequestParam.java
@@ -0,0 +1,80 @@
+/*
+ * oxAuth is available under the MIT License (2008). See http://opensource.org/licenses/MIT for full text.
+ *
+ * Copyright (c) 2014, Gluu
+ */
+
+package org.gluu.oxauth.model.ciba;
+
+/**
+ * @author Javier Rojas Blum
+ * @version May 28, 2020
+ */
+public interface BackchannelAuthenticationRequestParam {
+
+    /**
+     * The scope of the access request.
+     * CIBA authentication requests must contain the openid scope value.
+     * Other scope values may be present.
+     */
+    String SCOPE = "scope";
+
+    /**
+     * A bearer token provided by the Client that will be used by the OpenID Provider to authenticate the callback
+     * request to the Client. Required if the Client is registered to use Ping or Push modes.
+     */
+    String CLIENT_NOTIFICATION_TOKEN = "client_notification_token";
+
+    /**
+     * Requested Authentication Context Class Reference values.
+     */
+    String ACR_VALUES = "acr_values";
+
+    /**
+     * A token containing information identifying the end-user for whom authentication is being requested.
+     */
+    String LOGIN_HINT_TOKEN = "login_hint_token";
+
+    /**
+     * An ID Token previously issued to the Client by the OpenID Provider being passed back as a hint to identify
+     * the end-user for whom authentication is being requested.
+     */
+    String ID_TOKEN_HINT = "id_token_hint";
+
+    /**
+     * A hint to the OpenID Provider regarding the end-user for whom authentication is being requested.
+     */
+    String LOGIN_HINT = "login_hint";
+
+    /**
+     * A human readable identifier or message intended to be displayed on both the consumption device and the
+     * authentication device to interlock them together for the transaction by way of a visual cue for the end-user.
+     */
+    String BINDING_MESSAGE = "binding_message";
+
+    /**
+     * A secret code, such as password or pin, known only to the user but verifiable by the OP.
+     * The code is used to authorize sending an authentication request to user's authentication device.
+     */
+    String USER_CODE = "user_code";
+
+    /**
+     * A positive integer allowing the client to request the expires_in value for the auth_req_id the server will return.
+     */
+    String REQUESTED_EXPIRY = "requested_expiry";
+
+    /**
+     * An string containing all data about the request as a single JWT
+     */
+    String REQUEST = "request";
+
+    /**
+     * Url where OP could get the request object related to the authorization.
+     */
+    String REQUEST_URI = "request_uri";
+
+    String CLIENT_ID = "client_id";
+    String CLIENT_SECRET = "client_secret";
+    String CLIENT_ASSERTION_TYPE = "client_assertion_type";
+    String CLIENT_ASSERTION = "client_assertion";
+}
\ No newline at end of file
diff --git a/oxAuth/Model/src/main/java/org/gluu/oxauth/model/ciba/BackchannelAuthenticationResponseParam.java b/oxAuth/Model/src/main/java/org/gluu/oxauth/model/ciba/BackchannelAuthenticationResponseParam.java
new file mode 100644
index 00000000..fb13b6ff
--- /dev/null
+++ b/oxAuth/Model/src/main/java/org/gluu/oxauth/model/ciba/BackchannelAuthenticationResponseParam.java
@@ -0,0 +1,30 @@
+/*
+ * oxAuth is available under the MIT License (2008). See http://opensource.org/licenses/MIT for full text.
+ *
+ * Copyright (c) 2014, Gluu
+ */
+
+package org.gluu.oxauth.model.ciba;
+
+/**
+ * @author Javier Rojas Blum
+ * @version August 20, 2019
+ */
+public interface BackchannelAuthenticationResponseParam {
+
+    /**
+     * A unique identifier to identify the authentication request made by the Client.
+     */
+    String AUTH_REQ_ID = "auth_req_id";
+
+    /**
+     * The expiration time of the "auth_req_id" in seconds since the authentication request was received.
+     */
+    String EXPIRES_IN = "expires_in";
+
+    /**
+     * The minimum amount of time in seconds that the Client must wait between polling requests to the token endpoint.
+     * This parameter will only be present if the Client is registered to use the Poll or Ping modes.
+     */
+    String INTERVAL = "interval";
+}
\ No newline at end of file
diff --git a/oxAuth/Model/src/main/java/org/gluu/oxauth/model/ciba/BackchannelDeviceRegistrationErrorResponseType.java b/oxAuth/Model/src/main/java/org/gluu/oxauth/model/ciba/BackchannelDeviceRegistrationErrorResponseType.java
new file mode 100644
index 00000000..235450a0
--- /dev/null
+++ b/oxAuth/Model/src/main/java/org/gluu/oxauth/model/ciba/BackchannelDeviceRegistrationErrorResponseType.java
@@ -0,0 +1,84 @@
+/*
+ * oxAuth is available under the MIT License (2008). See http://opensource.org/licenses/MIT for full text.
+ *
+ * Copyright (c) 2014, Gluu
+ */
+
+package org.gluu.oxauth.model.ciba;
+
+import org.gluu.oxauth.model.error.IErrorType;
+
+/**
+ * @author Javier Rojas Blum
+ * @version August 20, 2019
+ */
+public enum BackchannelDeviceRegistrationErrorResponseType implements IErrorType {
+
+    // HTTP 400 Bad Request
+
+    /**
+     * The request is missing a required parameter, includes an invalid parameter value,
+     * includes a parameter more than once, or is otherwise malformed.
+     */
+    INVALID_REQUEST("invalid_request"),
+
+    /**
+     * The OpenID Provider is not able to identify the end-user.
+     */
+    UNKNOWN_USER_ID("unknown_user_id"),
+
+    /**
+     * The Client is not authorized to use this authentication flow.
+     */
+    UNAUTHORIZED_CLIENT("unauthorized_client"),
+
+    // HTTP 403 Forbidden
+
+    /**
+     * The resource owner or OpenID Provider denied the request.
+     */
+    ACCESS_DENIED("access_denied");
+
+    private final String paramName;
+
+    BackchannelDeviceRegistrationErrorResponseType(String paramName) {
+        this.paramName = paramName;
+    }
+
+    /**
+     * Returns the corresponding {@link BackchannelDeviceRegistrationErrorResponseType} from a given string.
+     *
+     * @param param The string value to convert.
+     * @return The corresponding {@link BackchannelDeviceRegistrationErrorResponseType}, otherwise <code>null</code>.
+     */
+    public static BackchannelDeviceRegistrationErrorResponseType fromString(String param) {
+        if (param != null) {
+            for (BackchannelDeviceRegistrationErrorResponseType err : BackchannelDeviceRegistrationErrorResponseType.values()) {
+                if (param.equals(err.paramName)) {
+                    return err;
+                }
+            }
+        }
+        return null;
+    }
+
+    /**
+     * Returns a string representation of the object. In this case the parameter name.
+     *
+     * @return The string representation of the object.
+     */
+    @Override
+    public String toString() {
+        return paramName;
+    }
+
+    /**
+     * Gets error parameter.
+     *
+     * @return error parameter
+     */
+    @Override
+    public String getParameter() {
+        return paramName;
+    }
+}
\ No newline at end of file
diff --git a/oxAuth/Model/src/main/java/org/gluu/oxauth/model/ciba/FirebaseCloudMessagingRequestParam.java b/oxAuth/Model/src/main/java/org/gluu/oxauth/model/ciba/FirebaseCloudMessagingRequestParam.java
new file mode 100644
index 00000000..d75da05e
--- /dev/null
+++ b/oxAuth/Model/src/main/java/org/gluu/oxauth/model/ciba/FirebaseCloudMessagingRequestParam.java
@@ -0,0 +1,41 @@
+/*
+ * oxAuth is available under the MIT License (2008). See http://opensource.org/licenses/MIT for full text.
+ *
+ * Copyright (c) 2014, Gluu
+ */
+
+package org.gluu.oxauth.model.ciba;
+
+/**
+ * @author Javier Rojas Blum
+ * @version August 20, 2019
+ */
+public interface FirebaseCloudMessagingRequestParam {
+
+    /**
+     * This parameter specifies the recipient of a message.
+     * The value can be a device's registration token, a device group's notification key, or a single topic.
+     */
+    String TO = "to";
+
+    /**
+     * This parameter specifies the predefined, user-visible key-value pairs of the notification payload.
+     */
+    String NOTIFICATION = "notification";
+
+    /**
+     * The notification's title.
+     * This field is not visible on iOS phones and tablets.
+     */
+    String TITLE = "title";
+
+    /**
+     * The notification's body text.
+     */
+    String BODY = "body";
+
+    /**
+     * The action associated with a user click on the notification.
+     */
+    String CLICK_ACTION = "click_action";
+}
\ No newline at end of file
diff --git a/oxAuth/Model/src/main/java/org/gluu/oxauth/model/ciba/FirebaseCloudMessagingResponseParam.java b/oxAuth/Model/src/main/java/org/gluu/oxauth/model/ciba/FirebaseCloudMessagingResponseParam.java
new file mode 100644
index 00000000..f8333cbb
--- /dev/null
+++ b/oxAuth/Model/src/main/java/org/gluu/oxauth/model/ciba/FirebaseCloudMessagingResponseParam.java
@@ -0,0 +1,41 @@
+/*
+ * oxAuth is available under the MIT License (2008). See http://opensource.org/licenses/MIT for full text.
+ *
+ * Copyright (c) 2014, Gluu
+ */
+
+package org.gluu.oxauth.model.ciba;
+
+/**
+ * @author Javier Rojas Blum
+ * @version August 20, 2019
+ */
+public interface FirebaseCloudMessagingResponseParam {
+
+    /**
+     * Unique ID (number) identifying the multicast message.
+     */
+    String MULTICAST_ID = "multicast_id";
+
+    /**
+     * Number of messages that were processed without an error.
+     */
+    String SUCCESS = "success";
+
+    /**
+     * Number of messages that could not be processed.
+     */
+    String FAILURE = "failure";
+
+    /**
+     * Array of objects representing the status of the messages processed.
+     * The objects are listed in the same order as the request (i.e., for each registration ID in the request,
+     * its result is listed in the same index in the response).
+     */
+    String RESULTS = "results";
+
+    /**
+     * String specifying a unique ID for each successfully processed message.
+     */
+    String MESSAGE_ID = "message_id";
+}
\ No newline at end of file
diff --git a/oxAuth/Model/src/main/java/org/gluu/oxauth/model/ciba/PushErrorRequestParam.java b/oxAuth/Model/src/main/java/org/gluu/oxauth/model/ciba/PushErrorRequestParam.java
new file mode 100644
index 00000000..ae5fe991
--- /dev/null
+++ b/oxAuth/Model/src/main/java/org/gluu/oxauth/model/ciba/PushErrorRequestParam.java
@@ -0,0 +1,19 @@
+/*
+ * oxAuth is available under the MIT License (2008). See http://opensource.org/licenses/MIT for full text.
+ *
+ * Copyright (c) 2014, Gluu
+ */
+
+package org.gluu.oxauth.model.ciba;
+
+/**
+ * @author Javier Rojas Blum
+ * @version May 9, 2019
+ */
+public interface PushErrorRequestParam {
+
+    String AUTHORIZATION_REQUEST_ID = "auth_req_id";
+    String ERROR = "error";
+    String ERROR_DESCRIPTION = "error_description";
+    String ERROR_URI = "error_uri";
+}
diff --git a/oxAuth/Model/src/main/java/org/gluu/oxauth/model/ciba/PushErrorResponseType.java b/oxAuth/Model/src/main/java/org/gluu/oxauth/model/ciba/PushErrorResponseType.java
new file mode 100644
index 00000000..4455b297
--- /dev/null
+++ b/oxAuth/Model/src/main/java/org/gluu/oxauth/model/ciba/PushErrorResponseType.java
@@ -0,0 +1,76 @@
+/*
+ * oxAuth is available under the MIT License (2008). See http://opensource.org/licenses/MIT for full text.
+ *
+ * Copyright (c) 2014, Gluu
+ */
+
+package org.gluu.oxauth.model.ciba;
+
+import org.gluu.oxauth.model.error.IErrorType;
+
+/**
+ * @author Javier Rojas Blum
+ * @version May 9, 2020
+ */
+public enum PushErrorResponseType implements IErrorType {
+
+    /**
+     * The end-user denied the authorization request.
+     */
+    ACCESS_DENIED("access_denied"),
+
+    /**
+     * The auth_req_id has expired. The Client will need to make a new Authentication Request.
+     */
+    EXPIRED_TOKEN("expired_token"),
+
+    /**
+     * The OpenID Provider encountered an unexpected condition that prevented it from successfully completing the
+     * transaction. This general case error code can be used to inform the Client that the CIBA transaction was
+     * unsuccessful for reasons other than those explicitly defined by access_denied and expired_token.
+     */
+    TRANSACTION_FAILED("transaction_failed");
+
+    private final String paramName;
+
+    PushErrorResponseType(String paramName) {
+        this.paramName = paramName;
+    }
+
+    /**
+     * Returns the corresponding {@link PushErrorResponseType} from a given string.
+     *
+     * @param param The string value to convert.
+     * @return The corresponding {@link PushErrorResponseType}, otherwise <code>null</code>.
+     */
+    public static PushErrorResponseType fromString(String param) {
+        if (param != null) {
+            for (PushErrorResponseType err : PushErrorResponseType.values()) {
+                if (param.equals(err.paramName)) {
+                    return err;
+                }
+            }
+        }
+        return null;
+    }
+
+    /**
+     * Returns a string representation of the object. In this case the parameter name.
+     *
+     * @return The string representation of the object.
+     */
+    @Override
+    public String toString() {
+        return paramName;
+    }
+
+    /**
+     * Gets error parameter.
+     *
+     * @return error parameter
+     */
+    @Override
+    public String getParameter() {
+        return paramName;
+    }
+}
diff --git a/oxAuth/Model/src/main/java/org/gluu/oxauth/model/ciba/PushTokenDeliveryRequestParam.java b/oxAuth/Model/src/main/java/org/gluu/oxauth/model/ciba/PushTokenDeliveryRequestParam.java
new file mode 100644
index 00000000..0c76f700
--- /dev/null
+++ b/oxAuth/Model/src/main/java/org/gluu/oxauth/model/ciba/PushTokenDeliveryRequestParam.java
@@ -0,0 +1,21 @@
+/*
+ * oxAuth is available under the MIT License (2008). See http://opensource.org/licenses/MIT for full text.
+ *
+ * Copyright (c) 2014, Gluu
+ */
+
+package org.gluu.oxauth.model.ciba;
+
+/**
+ * @author Javier Rojas Blum
+ * @version August 20, 2019
+ */
+public interface PushTokenDeliveryRequestParam {
+
+    String AUTHORIZATION_REQUEST_ID = "auth_req_id";
+    String ACCESS_TOKEN = "access_token";
+    String TOKEN_TYPE = "token_type";
+    String REFRESH_TOKEN = "refresh_token";
+    String EXPIRES_IN = "expires_in";
+    String ID_TOKEN = "id_token";
+}
\ No newline at end of file
diff --git a/oxAuth/Model/src/main/java/org/gluu/oxauth/model/common/AuthenticationMethod.java b/oxAuth/Model/src/main/java/org/gluu/oxauth/model/common/AuthenticationMethod.java
new file mode 100644
index 00000000..6523dca3
--- /dev/null
+++ b/oxAuth/Model/src/main/java/org/gluu/oxauth/model/common/AuthenticationMethod.java
@@ -0,0 +1,102 @@
+/*
+ * oxAuth is available under the MIT License (2008). See http://opensource.org/licenses/MIT for full text.
+ *
+ * Copyright (c) 2014, Gluu
+ */
+
+package org.gluu.oxauth.model.common;
+
+import com.fasterxml.jackson.annotation.JsonCreator;
+import com.fasterxml.jackson.annotation.JsonValue;
+
+/**
+ * @author Javier Rojas Blum Date: 03.23.2012
+ */
+public enum AuthenticationMethod {
+
+    /**
+     * Clients in possession of a client password authenticate with the Authorization Server
+     * using HTTP Basic authentication scheme. Default one if not client authentication is specified.
+     */
+    CLIENT_SECRET_BASIC("client_secret_basic"),
+
+    /**
+     * Clients in possession of a client password authenticate with the Authorization Server
+     * by including the client credentials in the request body.
+     */
+    CLIENT_SECRET_POST("client_secret_post"),
+
+    /**
+     * Clients in possession of a client password create a JWT using the HMAC-SHA algorithm.
+     * The HMAC (Hash-based Message Authentication Code) is calculated using the client_secret
+     * as the shared key.
+     */
+    CLIENT_SECRET_JWT("client_secret_jwt"),
+
+    /**
+     * Clients that have registered a public key sign a JWT using the RSA algorithm if a RSA
+     * key was registered or the ECDSA algorithm if an Elliptic Curve key was registered.
+     */
+    PRIVATE_KEY_JWT("private_key_jwt"),
+
+    /**
+     * Authenticates client by access token.
+     */
+    ACCESS_TOKEN("access_token"),
+
+    /**
+     * Indicates that client authentication to the authorization server
+     * will occur with mutual TLS utilizing the PKI method of associating
+     * a certificate to a client.
+     */
+    TLS_CLIENT_AUTH("tls_client_auth"),
+
+    /**
+     * Indicates that client authentication to the authorization server
+     * will occur using mutual TLS with the client utilizing a self-
+     * signed certificate.
+     */
+    SELF_SIGNED_TLS_CLIENT_AUTH("self_signed_tls_client_auth"),
+
+    /**
+     * The Client does not authenticate itself at the Token Endpoint, either because it uses only the Implicit Flow
+     * (and so does not use the Token Endpoint) or because it is a Public Client with no Client Secret or other
+     * authentication mechanism.
+     */
+    NONE("none");
+
+    private final String paramName;
+
+    private AuthenticationMethod(String paramName) {
+        this.paramName = paramName;
+    }
+
+    /**
+     * Returns the corresponding {@link AuthenticationMethod} for an authentication method parameter.
+     *
+     * @param param The parameter.
+     * @return The corresponding authentication method if found, otherwise
+     *         <code>null</code>.
+     */
+    @JsonCreator
+    public static AuthenticationMethod fromString(String param) {
+        if (param != null) {
+            for (AuthenticationMethod rt : AuthenticationMethod.values()) {
+                if (param.equals(rt.paramName)) {
+                    return rt;
+                }
+            }
+        }
+        return null;
+    }
+
+    /**
+     * Returns a string representation of the object. In this case the parameter
+     * name for the authentication method parameter.
+     */
+    @Override
+    @JsonValue
+    public String toString() {
+        return paramName;
+    }
+}
\ No newline at end of file
diff --git a/oxAuth/Model/src/main/java/org/gluu/oxauth/model/common/AuthorizationMethod.java b/oxAuth/Model/src/main/java/org/gluu/oxauth/model/common/AuthorizationMethod.java
new file mode 100644
index 00000000..45521035
--- /dev/null
+++ b/oxAuth/Model/src/main/java/org/gluu/oxauth/model/common/AuthorizationMethod.java
@@ -0,0 +1,68 @@
+/*
+ * oxAuth is available under the MIT License (2008). See http://opensource.org/licenses/MIT for full text.
+ *
+ * Copyright (c) 2014, Gluu
+ */
+
+package org.gluu.oxauth.model.common;
+
+/**
+ * @author Javier Rojas Blum Date: 03.30.2012
+ */
+public enum AuthorizationMethod {
+
+    /**
+     * When sending the access token in the "Authorization" request header
+     * field defined by HTTP/1.1, Part 7 [I-D.ietf-httpbis-p7-auth], the
+     * client uses the "Bearer" authentication scheme to transmit the access
+     * token.
+     */
+    AUTHORIZATION_REQUEST_HEADER_FIELD,
+    /**
+     * When sending the access token in the HTTP request entity-body, the
+     * client adds the access token to the request body using the
+     * "access_token" parameter.  The client MUST NOT use this method unless
+     * all of the following conditions are met:
+     * <p>
+     * - The HTTP request entity-header includes the "Content-Type" header
+     * field set to "application/x-www-form-urlencoded".
+     * <p>
+     * - The entity-body follows the encoding requirements of the
+     * "application/x-www-form-urlencoded" content-type as defined by
+     * HTML 4.01 [W3C.REC-html401-19991224].
+     * <p>
+     * - The HTTP request entity-body is single-part.
+     * <p>
+     * - The content to be encoded in the entity-body MUST consist entirely
+     * of ASCII [USASCII] characters.
+     * <p>
+     * - The HTTP request method is one for which the request body has
+     * defined semantics.  In particular, this means that the "GET"
+     * method MUST NOT be used.
+     * <p>
+     * The entity-body MAY include other request-specific parameters, in
+     * which case, the "access_token" parameter MUST be properly separated
+     * from the request-specific parameters using "&amp;" character(s) (ASCII
+     * code 38).
+     */
+    FORM_ENCODED_BODY_PARAMETER,
+    /**
+     * When sending the access token in the HTTP request URI, the client
+     * adds the access token to the request URI query component as defined
+     * by Uniform Resource Identifier (URI) [RFC3986] using the
+     * "access_token" parameter.
+     * <p>
+     * The HTTP request URI query can include other request-specific
+     * parameters, in which case, the "access_token" parameter MUST be
+     * properly separated from the request-specific parameters using "&amp;"
+     * character(s) (ASCII code 38).
+     * <p>
+     * Because of the security weaknesses associated with the URI method
+     * (see Section 5), including the high likelihood that the URL
+     * containing the access token will be logged, it SHOULD NOT be used
+     * unless it is impossible to transport the access token in the
+     * "Authorization" request header field or the HTTP request entity-body.
+     * Resource servers MAY support this method.
+     */
+    URL_QUERY_PARAMETER;
+}
\ No newline at end of file
diff --git a/oxAuth/Model/src/main/java/org/gluu/oxauth/model/common/BackchannelTokenDeliveryMode.java b/oxAuth/Model/src/main/java/org/gluu/oxauth/model/common/BackchannelTokenDeliveryMode.java
new file mode 100644
index 00000000..76eeb96d
--- /dev/null
+++ b/oxAuth/Model/src/main/java/org/gluu/oxauth/model/common/BackchannelTokenDeliveryMode.java
@@ -0,0 +1,94 @@
+/*
+ * oxAuth is available under the MIT License (2008). See http://opensource.org/licenses/MIT for full text.
+ *
+ * Copyright (c) 2014, Gluu
+ */
+
+package org.gluu.oxauth.model.common;
+
+import com.fasterxml.jackson.annotation.JsonCreator;
+import com.fasterxml.jackson.annotation.JsonValue;
+import org.gluu.persist.annotation.AttributeEnum;
+
+import java.util.HashMap;
+import java.util.Map;
+
+/**
+ * @author Javier Rojas Blum
+ * @version August 20, 2019
+ */
+public enum BackchannelTokenDeliveryMode implements HasParamName, AttributeEnum {
+
+    POLL("poll"),
+    PING("ping"),
+    PUSH("push");
+
+    private final String value;
+
+    private static Map<String, BackchannelTokenDeliveryMode> mapByValues = new HashMap<>();
+
+    static {
+        for (BackchannelTokenDeliveryMode enumType : values()) {
+            mapByValues.put(enumType.getValue(), enumType);
+        }
+    }
+
+    BackchannelTokenDeliveryMode (String value) {
+        this.value = value;
+    }
+
+    /**
+     * Gets param name.
+     *
+     * @return param name
+     */
+    public String getParamName() {
+        return value;
+    }
+
+    @Override
+    public String getValue() {
+        return value;
+    }
+
+    /**
+     * Returns the corresponding {@link BackchannelTokenDeliveryMode} for a parameter backchannel_token_delivery_mode of
+     * the access token requests.
+     *
+     * @param param The backchannel_token_delivery_mode parameter.
+     * @return The corresponding Backchannel Token Delivery Mode if found, otherwise
+     * <code>null</code>.
+     */
+    @JsonCreator
+    public static BackchannelTokenDeliveryMode fromString(String param) {
+        if (param != null) {
+            for (BackchannelTokenDeliveryMode deliveryMode : BackchannelTokenDeliveryMode.values()) {
+                if (param.equals(deliveryMode.value)) {
+                    return deliveryMode;
+                }
+            }
+        }
+
+        return null;
+    }
+
+    public static BackchannelTokenDeliveryMode getByValue(String value) {
+        return mapByValues.get(value);
+    }
+
+    public Enum<? extends AttributeEnum> resolveByValue(String value) {
+        return getByValue(value);
+    }
+
+    /**
+     * Returns a string representation of the object. In this case the parameter
+     * name for the backchannel_token_delivery_mode parameter.
+     *
+     * @return The string representation of the object.
+     */
+    @Override
+    @JsonValue
+    public String toString() {
+        return value;
+    }
+}
\ No newline at end of file
diff --git a/oxAuth/Model/src/main/java/org/gluu/oxauth/model/common/CallerType.java b/oxAuth/Model/src/main/java/org/gluu/oxauth/model/common/CallerType.java
new file mode 100644
index 00000000..db9a766c
--- /dev/null
+++ b/oxAuth/Model/src/main/java/org/gluu/oxauth/model/common/CallerType.java
@@ -0,0 +1,11 @@
+package org.gluu.oxauth.model.common;
+
+/**
+ * @author Yuriy Z
+ */
+public enum CallerType {
+    COMMON,
+    AUTHORIZE,
+    USERINFO,
+    ID_TOKEN
+}
diff --git a/oxAuth/Model/src/main/java/org/gluu/oxauth/model/common/Display.java b/oxAuth/Model/src/main/java/org/gluu/oxauth/model/common/Display.java
new file mode 100644
index 00000000..38ab1ade
--- /dev/null
+++ b/oxAuth/Model/src/main/java/org/gluu/oxauth/model/common/Display.java
@@ -0,0 +1,87 @@
+/*
+ * oxAuth is available under the MIT License (2008). See http://opensource.org/licenses/MIT for full text.
+ *
+ * Copyright (c) 2014, Gluu
+ */
+
+package org.gluu.oxauth.model.common;
+
+import com.fasterxml.jackson.annotation.JsonCreator;
+import com.fasterxml.jackson.annotation.JsonValue;
+
+/**
+ * An ASCII string value that specifies how the Authorization Server displays
+ * the authentication and consent user interface pages to the End-User.
+ *
+ * @author Javier Rojas Blum Date: 02.10.2012
+ */
+public enum Display implements HasParamName {
+
+    /**
+     * The Authorization Server SHOULD display authentication and consent UI
+     * consistent with a full user-agent page view. If the display parameter
+     * is not specified this is the default display mode.
+     */
+    PAGE("page"),
+    /**
+     * The Authorization Server SHOULD display authentication and consent UI
+     * consistent with a popup user-agent window. The popup user-agent window
+     * SHOULD be 450 pixels wide and 500 pixels tall.
+     */
+    POPUP("popup"),
+    /**
+     * The Authorization Server SHOULD display authentication and consent UI
+     * consistent with a device that leverages a touch interface.
+     * The Authorization Server MAY attempt to detect the touch device and
+     * further customize the interface.
+     */
+    TOUCH("touch"),
+    /**
+     * The Authorization Server SHOULD display authentication and consent UI
+     * consistent with a "feature phone" type display.
+     */
+    WAP("wap"),
+    /**
+     * The Authorization Server SHOULD display authentication and consent UI
+     * consistent with the limitations of an embedded user-agent.
+     */
+    EMBEDDED("embedded");
+
+    private final String paramName;
+
+    private Display(String paramName) {
+        this.paramName = paramName;
+    }
+
+    public String getParamName() {
+        return paramName;
+    }
+
+    /**
+     * Returns the corresponding {@link Display} for a parameter
+     * display of the authorization endpoint.
+     *
+     * @param param The parameter.
+     * @return The corresponding response type if found, otherwise <code>null</code>.
+     */
+    @JsonCreator
+    public static Display fromString(String param) {
+        if (param != null) {
+            for (Display rt : Display.values()) {
+                if (param.equals(rt.paramName)) {
+                    return rt;
+                }
+            }
+        }
+        return null;
+    }
+
+    /**
+     * Returns a string representation of the object. In this case the parameter name.
+     */
+    @Override
+    @JsonValue
+    public String toString() {
+        return paramName;
+    }
+}
\ No newline at end of file
diff --git a/oxAuth/Model/src/main/java/org/gluu/oxauth/model/common/GrantType.java b/oxAuth/Model/src/main/java/org/gluu/oxauth/model/common/GrantType.java
new file mode 100644
index 00000000..f757249e
--- /dev/null
+++ b/oxAuth/Model/src/main/java/org/gluu/oxauth/model/common/GrantType.java
@@ -0,0 +1,178 @@
+/*
+ * oxAuth is available under the MIT License (2008). See http://opensource.org/licenses/MIT for full text.
+ *
+ * Copyright (c) 2014, Gluu
+ */
+
+package org.gluu.oxauth.model.common;
+
+import com.fasterxml.jackson.annotation.JsonCreator;
+import com.fasterxml.jackson.annotation.JsonValue;
+import org.gluu.persist.annotation.AttributeEnum;
+
+import java.util.HashMap;
+import java.util.Map;
+
+/**
+ * This class allows to enumerate and identify the possible values of the
+ * parameter grant_type for access token requests.
+ *
+ * @author Javier Rojas Blum
+ * @version February 25, 2020
+ */
+public enum GrantType implements HasParamName, AttributeEnum {
+
+    NONE("none"),
+
+    /**
+     * The authorization code is obtained by using an authorization server as an
+     * intermediary between the client and resource owner. Instead of requesting
+     * authorization directly from the resource owner, the client directs the
+     * resource owner to an authorization server (via its user- agent as defined
+     * in [RFC2616]), which in turn directs the resource owner back to the
+     * client with the authorization code.
+     */
+    AUTHORIZATION_CODE("authorization_code"),
+
+    /**
+     * The implicit grant type is used to obtain access tokens (it does not
+     * support the issuance of refresh tokens) and is optimized for public
+     * clients known to operate a particular redirection URI.  These clients
+     * are typically implemented in a browser using a scripting language
+     * such as JavaScript.
+     */
+    IMPLICIT("implicit"),
+
+    /**
+     * The resource owner password credentials (i.e. username and password) can
+     * be used directly as an authorization grant to obtain an access token. The
+     * credentials should only be used when there is a high degree of trust
+     * between the resource owner and the client (e.g. its device operating
+     * system or a highly privileged application), and when other authorization
+     * grant types are not available (such as an authorization code).
+     */
+    RESOURCE_OWNER_PASSWORD_CREDENTIALS("password"),
+
+    /**
+     * The client credentials (or other forms of client authentication) can be
+     * used as an authorization grant when the authorization scope is limited to
+     * the protected resources under the control of the client, or to protected
+     * resources previously arranged with the authorization server. Client
+     * credentials are used as an authorization grant typically when the client
+     * is acting on its own behalf (the client is also the resource owner), or
+     * is requesting access to protected resources based on an authorization
+     * previously arranged with the authorization server.
+     */
+    CLIENT_CREDENTIALS("client_credentials"),
+
+    /**
+     * If the authorization server issued a refresh token to the client, the
+     * client makes a refresh request to the token endpoint.
+     */
+    REFRESH_TOKEN("refresh_token"),
+
+    /**
+     * Representing a requesting party, to use a permission ticket to request
+     * an OAuth 2.0 access token to gain access to a protected resource
+     * asynchronously from the time a resource owner grants access.
+     */
+    OXAUTH_UMA_TICKET("urn:ietf:params:oauth:grant-type:uma-ticket"),
+
+    /**
+     * CIBA (Client Initiated Backchannel Authentication) Grant Type.
+     */
+    CIBA("urn:openid:params:grant-type:ciba"),
+
+    /**
+     * Device Authorization Grant Type for OAuth 2.0
+     */
+    DEVICE_CODE("urn:ietf:params:oauth:grant-type:device_code"),
+    ;
+
+    private final String value;
+
+    private static Map<String, GrantType> mapByValues = new HashMap<String, GrantType>();
+
+    static {
+        for (GrantType enumType : values()) {
+            mapByValues.put(enumType.getValue(), enumType);
+        }
+    }
+
+    private GrantType() {
+        this.value = null;
+    }
+
+    private GrantType(String value) {
+        this.value = value;
+    }
+
+    /**
+     * Gets param name.
+     *
+     * @return param name
+     */
+    public String getParamName() {
+        return value;
+    }
+
+    @Override
+    public String getValue() {
+        return value;
+    }
+
+    /**
+     * Returns the corresponding {@link GrantType} for a parameter grant_type of
+     * the access token requests. For the extension grant type, the parameter
+     * should be a valid URI.
+     *
+     * @param param The grant_type parameter.
+     * @return The corresponding grant type if found, otherwise
+     * <code>null</code>.
+     */
+    @JsonCreator
+    public static GrantType fromString(String param) {
+        if (param != null) {
+            for (GrantType gt : GrantType.values()) {
+                if (param.equals(gt.value)) {
+                    return gt;
+                }
+            }
+        }
+
+        return null;
+    }
+
+    public static String[] toStringArray(GrantType[] grantTypes) {
+        if (grantTypes == null) {
+            return null;
+        }
+
+        String[] resultGrantTypes = new String[grantTypes.length];
+        for (int i = 0; i < grantTypes.length; i++) {
+            resultGrantTypes[i] = grantTypes[i].getValue();
+        }
+
+        return resultGrantTypes;
+    }
+
+    public static GrantType getByValue(String value) {
+        return mapByValues.get(value);
+    }
+
+    public Enum<? extends AttributeEnum> resolveByValue(String value) {
+        return getByValue(value);
+    }
+
+    /**
+     * Returns a string representation of the object. In this case the parameter
+     * name for the grant_type parameter.
+     *
+     * @return The string representation of the object.
+     */
+    @Override
+    @JsonValue
+    public String toString() {
+        return value;
+    }
+}
diff --git a/oxAuth/Model/src/main/java/org/gluu/oxauth/model/common/HasParamName.java b/oxAuth/Model/src/main/java/org/gluu/oxauth/model/common/HasParamName.java
new file mode 100644
index 00000000..393d0a6e
--- /dev/null
+++ b/oxAuth/Model/src/main/java/org/gluu/oxauth/model/common/HasParamName.java
@@ -0,0 +1,16 @@
+/*
+ * oxAuth is available under the MIT License (2008). See http://opensource.org/licenses/MIT for full text.
+ *
+ * Copyright (c) 2014, Gluu
+ */
+
+package org.gluu.oxauth.model.common;
+
+/**
+ * @author Yuriy Zabrovarnyy
+ * @version 0.9, 20/12/2012
+ */
+
+public interface HasParamName {
+    String getParamName();
+}
diff --git a/oxAuth/Model/src/main/java/org/gluu/oxauth/model/common/Holder.java b/oxAuth/Model/src/main/java/org/gluu/oxauth/model/common/Holder.java
new file mode 100644
index 00000000..cfc96442
--- /dev/null
+++ b/oxAuth/Model/src/main/java/org/gluu/oxauth/model/common/Holder.java
@@ -0,0 +1,32 @@
+/*
+ * oxAuth is available under the MIT License (2008). See http://opensource.org/licenses/MIT for full text.
+ *
+ * Copyright (c) 2014, Gluu
+ */
+
+package org.gluu.oxauth.model.common;
+
+/**
+ * @author Yuriy Zabrovarnyy
+ * @version 0.9, 15/03/2013
+ */
+
+public class Holder<T> {
+
+    private T m_t;
+
+    public Holder() {
+    }
+
+    public Holder(T p_t) {
+        m_t = p_t;
+    }
+
+    public T getT() {
+        return m_t;
+    }
+
+    public void setT(T p_t) {
+        m_t = p_t;
+    }
+}
diff --git a/oxAuth/Model/src/main/java/org/gluu/oxauth/model/common/Id.java b/oxAuth/Model/src/main/java/org/gluu/oxauth/model/common/Id.java
new file mode 100644
index 00000000..9e776ad7
--- /dev/null
+++ b/oxAuth/Model/src/main/java/org/gluu/oxauth/model/common/Id.java
@@ -0,0 +1,52 @@
+/*
+ * oxAuth is available under the MIT License (2008). See http://opensource.org/licenses/MIT for full text.
+ *
+ * Copyright (c) 2014, Gluu
+ */
+
+package org.gluu.oxauth.model.common;
+
+import java.io.Serializable;
+
+import javax.xml.bind.annotation.XmlElement;
+import javax.xml.bind.annotation.XmlRootElement;
+
+import com.fasterxml.jackson.annotation.JsonProperty;
+import org.jboss.resteasy.annotations.providers.jaxb.IgnoreMediaTypes;
+
+/**
+ * @author Yuriy Zabrovarnyy
+ * @version 0.9, 26/06/2013
+ */
+@IgnoreMediaTypes("application/*+json")
+@XmlRootElement
+public class Id implements Serializable {
+
+    private String id;
+
+    public Id() {
+    }
+
+    public Id(String p_id) {
+        id = p_id;
+    }
+
+    @JsonProperty(value = "id")
+    @XmlElement(name = "id")
+    public String getId() {
+        return id;
+    }
+
+    public void setId(String p_id) {
+        id = p_id;
+    }
+
+    @Override
+    public String toString() {
+        final StringBuilder sb = new StringBuilder();
+        sb.append("Id");
+        sb.append("{id='").append(id).append('\'');
+        sb.append('}');
+        return sb.toString();
+    }
+}
diff --git a/oxAuth/Model/src/main/java/org/gluu/oxauth/model/common/IdType.java b/oxAuth/Model/src/main/java/org/gluu/oxauth/model/common/IdType.java
new file mode 100644
index 00000000..392754c2
--- /dev/null
+++ b/oxAuth/Model/src/main/java/org/gluu/oxauth/model/common/IdType.java
@@ -0,0 +1,66 @@
+/*
+ * oxAuth is available under the MIT License (2008). See http://opensource.org/licenses/MIT for full text.
+ *
+ * Copyright (c) 2014, Gluu
+ */
+
+package org.gluu.oxauth.model.common;
+
+import org.apache.commons.lang.StringUtils;
+
+/**
+ * @author Yuriy Zabrovarnyy
+ * @version 0.9, 26/06/2013
+ */
+
+public enum IdType {
+
+    PEOPLE("people", "people", "0000", "New Unique People Inum Generator"),
+    ORGANIZATION("organization", "0001", "organization","New Unique Organization Inum Generator"),
+    CONFIGURATION("configuration", "configuration", "0002", "New Unique configuration Inum Generator"),
+    GROUP("group", "group", "0003", "New Unique Group Inum Generator"),
+    SERVER("server", "server", "0004", "New Unique Server Inum Generator"),
+    ATTRIBUTE("attribute", "attribute", "0005", "New Unique Attribute Inum Generator"),
+    TRUST_RELATIONSHIP("trelationship", "0006", "trustRelationship", "New Unique Trust Relationship Inum Generator"),
+    LINK_CONTRACTS("lcontracts", "linkContracts", "0007", "New Unique Link Contracts Inum Generator"),
+    CLIENTS("oclient", "openidConnectClient", "0008", "New Unique Openid Connect Client Inum Generator");
+
+    private final String m_type;
+    private final String m_value;
+    private final String m_inum;
+    private final String m_htmlText;
+
+    private IdType(String p_type, String p_value, String p_inum, String p_htmlText) {
+        m_type = p_type;
+        m_value = p_value;
+        m_inum = p_inum;
+        m_htmlText = p_htmlText;
+    }
+
+    public String getInum() {
+        return m_inum;
+    }
+
+    public String getHtmlText() {
+        return m_htmlText;
+    }
+
+    public String getType() {
+        return m_type;
+    }
+
+    public String getValue() {
+        return m_value;
+    }
+
+    public static IdType fromString(String p_string) {
+        if (StringUtils.isNotBlank(p_string)) {
+            for (IdType t : values()) {
+                if (t.getType().equalsIgnoreCase(p_string) || t.getValue().equalsIgnoreCase(p_string)) {
+                    return t;
+                }
+            }
+        }
+        return null;
+    }
+}
diff --git a/oxAuth/Model/src/main/java/org/gluu/oxauth/model/common/IntrospectionResponse.java b/oxAuth/Model/src/main/java/org/gluu/oxauth/model/common/IntrospectionResponse.java
new file mode 100644
index 00000000..50cebfaf
--- /dev/null
+++ b/oxAuth/Model/src/main/java/org/gluu/oxauth/model/common/IntrospectionResponse.java
@@ -0,0 +1,177 @@
+/*
+ * oxAuth is available under the MIT License (2008). See http://opensource.org/licenses/MIT for full text.
+ *
+ * Copyright (c) 2014, Gluu
+ */
+
+package org.gluu.oxauth.model.common;
+
+import com.fasterxml.jackson.databind.annotation.JsonDeserialize;
+import com.fasterxml.jackson.annotation.JsonIgnoreProperties;
+import com.fasterxml.jackson.annotation.JsonProperty;
+import com.fasterxml.jackson.annotation.JsonPropertyOrder;
+
+import org.gluu.oxauth.model.common.converter.ListConverter;
+import org.jboss.resteasy.annotations.providers.jaxb.IgnoreMediaTypes;
+
+import java.util.ArrayList;
+import java.util.Collection;
+import java.util.List;
+
+/**
+ * @author Yuriy Zabrovarnyy
+ * @version 0.9, 17/09/2013
+ */
+@JsonPropertyOrder({"active", "scope", "client_id", "username", "token_type", "exp", "iat", "sub", "aud", "iss", "jti", "acr_values"})
+// ignore jettison as it's recommended here: http://docs.jboss.org/resteasy/docs/2.3.4.Final/userguide/html/json.html
+@IgnoreMediaTypes("application/*+json")
+@JsonIgnoreProperties(ignoreUnknown = true)
+public class IntrospectionResponse {
+
+    @JsonProperty(value = "active")
+    private boolean active;   // according spec, must be "active" http://tools.ietf.org/html/draft-richer-oauth-introspection-03#section-2.2
+    @JsonProperty(value = "scope")
+    @JsonDeserialize(converter = ListConverter.class)	// Force use of List even when value in actual json content is String 
+    private List<String> scope;
+    @JsonProperty(value = "client_id")
+    private String clientId;
+    @JsonProperty(value = "username")
+    private String username;
+    @JsonProperty(value = "token_type")
+    private String tokenType;
+    @JsonProperty(value = "exp")
+    private Integer expiresAt;
+    @JsonProperty(value = "iat")
+    private Integer issuedAt;
+    @JsonProperty(value = "sub")
+    private String subject;
+    @JsonProperty(value = "aud")
+    private String audience;
+    @JsonProperty(value = "iss")
+    private String issuer;
+    @JsonProperty(value = "jti")
+    private String jti;
+    @JsonProperty(value = "acr_values")
+    private String acrValues;
+
+    public IntrospectionResponse() {
+    }
+
+    public IntrospectionResponse(boolean p_active) {
+        active = p_active;
+    }
+
+    public String getAcrValues() {
+        return acrValues;
+    }
+
+    public void setAcrValues(String p_authMode) {
+        acrValues = p_authMode;
+    }
+
+    public boolean isActive() {
+        return active;
+    }
+
+    public void setActive(boolean p_active) {
+        active = p_active;
+    }
+
+    public List<String> getScope() {
+        return scope;
+    }
+
+    public void setScope(Collection<String> scope) {
+        this.scope = scope != null ? new ArrayList<String>(scope) : new ArrayList<String>();;
+    }
+
+    public Integer getExpiresAt() {
+        return expiresAt;
+    }
+
+    public void setExpiresAt(Integer expiresAt) {
+        this.expiresAt = expiresAt;
+    }
+
+    public Integer getIssuedAt() {
+        return issuedAt;
+    }
+
+    public void setIssuedAt(Integer issuedAt) {
+        this.issuedAt = issuedAt;
+    }
+
+    public String getClientId() {
+        return clientId;
+    }
+
+    public void setClientId(String clientId) {
+        this.clientId = clientId;
+    }
+
+    public String getUsername() {
+        return username;
+    }
+
+    public void setUsername(String username) {
+        this.username = username;
+    }
+
+    public String getTokenType() {
+        return tokenType;
+    }
+
+    public void setTokenType(String tokenType) {
+        this.tokenType = tokenType;
+    }
+
+    public String getSubject() {
+        return subject;
+    }
+
+    public void setSub(String subject) {
+        this.subject = subject;
+    }
+
+    public String getAudience() {
+        return audience;
+    }
+
+    public void setAudience(String audience) {
+        this.audience = audience;
+    }
+
+    public String getIssuer() {
+        return issuer;
+    }
+
+    public void setIssuer(String issuer) {
+        this.issuer = issuer;
+    }
+
+    public String getJti() {
+        return jti;
+    }
+
+    public void setJti(String jti) {
+        this.jti = jti;
+    }
+
+    @Override
+    public String toString() {
+        return "IntrospectionResponse{" +
+                "active=" + active +
+                ", scope=" + scope +
+                ", clientId='" + clientId + '\'' +
+                ", username='" + username + '\'' +
+                ", tokenType='" + tokenType + '\'' +
+                ", expiresAt=" + expiresAt +
+                ", issuedAt=" + issuedAt +
+                ", subject='" + subject + '\'' +
+                ", audience='" + audience + '\'' +
+                ", issuer='" + issuer + '\'' +
+                ", jti='" + jti + '\'' +
+                ", acrValues='" + acrValues + '\'' +
+                '}';
+    }
+}
diff --git a/oxAuth/Model/src/main/java/org/gluu/oxauth/model/common/JSONable.java b/oxAuth/Model/src/main/java/org/gluu/oxauth/model/common/JSONable.java
new file mode 100644
index 00000000..42ea85a2
--- /dev/null
+++ b/oxAuth/Model/src/main/java/org/gluu/oxauth/model/common/JSONable.java
@@ -0,0 +1,18 @@
+/*
+ * oxAuth is available under the MIT License (2008). See http://opensource.org/licenses/MIT for full text.
+ *
+ * Copyright (c) 2014, Gluu
+ */
+
+package org.gluu.oxauth.model.common;
+
+import org.json.JSONException;
+import org.json.JSONObject;
+
+/**
+ * @author Javier Rojas Blum Date: 13.01.2013
+ */
+public interface JSONable {
+
+    JSONObject toJSONObject() throws JSONException;
+}
\ No newline at end of file
diff --git a/oxAuth/Model/src/main/java/org/gluu/oxauth/model/common/PairwiseIdType.java b/oxAuth/Model/src/main/java/org/gluu/oxauth/model/common/PairwiseIdType.java
new file mode 100644
index 00000000..3319a063
--- /dev/null
+++ b/oxAuth/Model/src/main/java/org/gluu/oxauth/model/common/PairwiseIdType.java
@@ -0,0 +1,41 @@
+package org.gluu.oxauth.model.common;
+
+import com.fasterxml.jackson.annotation.JsonCreator;
+import com.fasterxml.jackson.annotation.JsonValue;
+
+/**
+ * @author Javier Rojas Blum
+ * @version February 15, 2015
+ */
+public enum PairwiseIdType {
+
+    ALGORITHMIC("algorithmic"),
+    PERSISTENT("persistent");
+
+    private final String m_value;
+
+    private PairwiseIdType(String p_value) {
+        m_value = p_value;
+    }
+
+    public String getValue() {
+        return m_value;
+    }
+
+    @JsonCreator
+    public static PairwiseIdType fromString(String p_string) {
+        for (PairwiseIdType v : values()) {
+            if (v.getValue().equalsIgnoreCase(p_string)) {
+                return v;
+            }
+        }
+        return null;
+    }
+
+    @Override
+    @JsonValue
+    public String toString() {
+        return m_value;
+    }
+
+}
diff --git a/oxAuth/Model/src/main/java/org/gluu/oxauth/model/common/ProgrammingLanguage.java b/oxAuth/Model/src/main/java/org/gluu/oxauth/model/common/ProgrammingLanguage.java
new file mode 100644
index 00000000..b5c899b8
--- /dev/null
+++ b/oxAuth/Model/src/main/java/org/gluu/oxauth/model/common/ProgrammingLanguage.java
@@ -0,0 +1,47 @@
+/*
+ * oxAuth is available under the MIT License (2008). See http://opensource.org/licenses/MIT for full text.
+ *
+ * Copyright (c) 2014, Gluu
+ */
+
+package org.gluu.oxauth.model.common;
+
+import com.fasterxml.jackson.annotation.JsonCreator;
+import com.fasterxml.jackson.annotation.JsonValue;
+
+/**
+ * @author Yuriy Zabrovarnyy
+ * @version 0.9, 22/02/2013
+ */
+
+public enum ProgrammingLanguage {
+    PYTHON("Python"),
+    JAVA_SCRIPT("JavaScript");
+
+    private final String m_value;
+
+    private ProgrammingLanguage(String p_value) {
+        m_value = p_value;
+    }
+
+    public String getValue() {
+        return m_value;
+    }
+
+    @JsonCreator
+    public static ProgrammingLanguage fromString(String p_string) {
+        for (ProgrammingLanguage v : values()) {
+            if (v.getValue().equalsIgnoreCase(p_string)) {
+                return v;
+            }
+        }
+        return null;
+    }
+
+    @Override
+    @JsonValue
+    public String toString() {
+        return m_value;
+    }
+
+}
diff --git a/oxAuth/Model/src/main/java/org/gluu/oxauth/model/common/Prompt.java b/oxAuth/Model/src/main/java/org/gluu/oxauth/model/common/Prompt.java
new file mode 100644
index 00000000..bbab0d01
--- /dev/null
+++ b/oxAuth/Model/src/main/java/org/gluu/oxauth/model/common/Prompt.java
@@ -0,0 +1,116 @@
+/*
+ * oxAuth is available under the MIT License (2008). See http://opensource.org/licenses/MIT for full text.
+ *
+ * Copyright (c) 2014, Gluu
+ */
+
+package org.gluu.oxauth.model.common;
+
+import java.util.ArrayList;
+import java.util.List;
+
+import com.fasterxml.jackson.annotation.JsonCreator;
+import com.fasterxml.jackson.annotation.JsonValue;
+
+/**
+ * An ASCII string values that specifies whether the Authorization Server
+ * prompts the End-User for re-authentication and consent.
+ *
+ * @author Javier Rojas Blum Date: 02.10.2012
+ */
+public enum Prompt implements HasParamName {
+
+    /**
+     * The Authorization Server MUST NOT display any authentication or
+     * consent user interface pages. An error is returned if the End-User
+     * is not already authenticated or the Client does not have pre-configured
+     * consent for the requested scopes. This can be used as a method to
+     * check for existing authentication and/or consent.
+     */
+    NONE("none"),
+    /**
+     * The Authorization Server MUST prompt the End-User for re-authentication
+     */
+    LOGIN("login"),
+    /**
+     * The Authorization Server MUST prompt the End-User for consent before
+     * returning information to the Client.
+     */
+    CONSENT("consent"),
+    /**
+     * The Authorization Server MUST prompt the End-User to select a user account.
+     * This allows a user who has multiple accounts at the Authorization Server to
+     * select amongst the multiple accounts that they may have current sessions for.
+     */
+    SELECT_ACCOUNT("select_account");
+
+    private final String paramName;
+
+    private Prompt(String paramName) {
+        this.paramName = paramName;
+    }
+
+    /**
+     * Returns the corresponding {@link Prompt} for a parameter
+     * prompt of the authorization endpoint.
+     *
+     * @param param The parameter.
+     * @return The corresponding response type if found, otherwise <code>null</code>.
+     */
+    public static Prompt fromString(String param) {
+        if (param != null) {
+            for (Prompt rt : Prompt.values()) {
+                if (param.equals(rt.paramName)) {
+                    return rt;
+                }
+            }
+        }
+        return null;
+    }
+
+    /**
+     * Gets param name.
+     *
+     * @return param name
+     */
+    public String getParamName() {
+        return paramName;
+    }
+
+    /**
+     * Returns a list of the corresponding {@link Prompt} from a space-separated
+     * list of prompt parameters.
+     *
+     * @param paramList A space-separated list of prompt parameters.
+     * @param separator The separator of the string list.
+     * @return A list of the recognized response types.
+     */
+    @JsonCreator
+    public static List<Prompt> fromString(String paramList, String separator) {
+        List<Prompt> prompts = new ArrayList<Prompt>();
+
+        if (paramList != null && !paramList.isEmpty()) {
+            String[] params = paramList.split(separator);
+            for (String param : params) {
+                for (Prompt p : Prompt.values()) {
+                    if (param.equals(p.paramName)) {
+                        if (!prompts.contains(p)) {
+                            prompts.add(p);
+                        }
+                    }
+                }
+            }
+        }
+
+        return prompts;
+    }
+
+    /**
+     * Returns a string representation of the object. In this case the parameter name.
+     */
+    @Override
+    @JsonValue
+    public String toString() {
+        return paramName;
+    }
+}
\ No newline at end of file
diff --git a/oxAuth/Model/src/main/java/org/gluu/oxauth/model/common/ResponseMode.java b/oxAuth/Model/src/main/java/org/gluu/oxauth/model/common/ResponseMode.java
new file mode 100644
index 00000000..9758e784
--- /dev/null
+++ b/oxAuth/Model/src/main/java/org/gluu/oxauth/model/common/ResponseMode.java
@@ -0,0 +1,90 @@
+/*
+ * oxAuth is available under the MIT License (2008). See http://opensource.org/licenses/MIT for full text.
+ *
+ * Copyright (c) 2014, Gluu
+ */
+
+package org.gluu.oxauth.model.common;
+
+import com.fasterxml.jackson.annotation.JsonCreator;
+import com.fasterxml.jackson.annotation.JsonValue;
+import org.gluu.persist.annotation.AttributeEnum;
+
+import java.util.HashMap;
+import java.util.Map;
+
+/**
+ * @author Javier Rojas Blum
+ * @version July 10, 2019
+ */
+public enum ResponseMode implements HasParamName, AttributeEnum {
+
+    /**
+     * In this mode, Authorization Response parameters are encoded in the query string added to the redirect_uri when
+     * redirecting back to the Client.
+     */
+    QUERY("query"),
+    /**
+     * In this mode, Authorization Response parameters are encoded in the fragment added to the redirect_uri when
+     * redirecting back to the Client.
+     */
+    FRAGMENT("fragment"),
+    /**
+     * In this mode, Authorization Response parameters are encoded as HTML form values that are auto-submitted in the
+     * User Agent, and thus are transmitted via the HTTP POST method to the Client, with the result parameters being
+     * encoded in the body using the application/x-www-form-urlencoded format.
+     */
+    FORM_POST("form_post");
+
+    private final String value;
+
+    private static Map<String, ResponseMode> mapByValues = new HashMap<String, ResponseMode>();
+
+    static {
+        for (ResponseMode enumType : values()) {
+            mapByValues.put(enumType.getParamName(), enumType);
+        }
+    }
+
+    ResponseMode(String value) {
+        this.value = value;
+    }
+
+    public static ResponseMode getByValue(String value) {
+        return mapByValues.get(value);
+    }
+
+    @JsonCreator
+    public static ResponseMode fromString(String param) {
+        if (param != null) {
+            for (ResponseMode rm : ResponseMode.values()) {
+                if (param.equals(rm.value)) {
+                    return rm;
+                }
+            }
+        }
+
+        return null;
+    }
+
+    @Override
+    public String getParamName() {
+        return value;
+    }
+
+    @Override
+    @JsonValue
+    public String toString() {
+        return value;
+    }
+
+    @Override
+    public String getValue() {
+        return value;
+    }
+
+    @Override
+    public Enum<? extends AttributeEnum> resolveByValue(String value) {
+        return getByValue(value);
+    }
+}
\ No newline at end of file
diff --git a/oxAuth/Model/src/main/java/org/gluu/oxauth/model/common/ResponseType.java b/oxAuth/Model/src/main/java/org/gluu/oxauth/model/common/ResponseType.java
new file mode 100644
index 00000000..e5f0b8ca
--- /dev/null
+++ b/oxAuth/Model/src/main/java/org/gluu/oxauth/model/common/ResponseType.java
@@ -0,0 +1,182 @@
+/*
+ * oxAuth is available under the MIT License (2008). See http://opensource.org/licenses/MIT for full text.
+ *
+ * Copyright (c) 2014, Gluu
+ */
+
+package org.gluu.oxauth.model.common;
+
+import com.fasterxml.jackson.annotation.JsonCreator;
+import com.fasterxml.jackson.annotation.JsonProperty;
+import com.fasterxml.jackson.annotation.JsonValue;
+import com.google.common.collect.Lists;
+import org.gluu.persist.annotation.AttributeEnum;
+
+import java.util.ArrayList;
+import java.util.HashMap;
+import java.util.List;
+import java.util.Map;
+import java.util.stream.Collectors;
+
+/**
+ * <p>
+ * This class allows to enumerate and identify the possible values of the
+ * parameter response_type for the authorization endpoint.
+ * </p>
+ * <p>
+ * The client informs the authorization server of the desired grant type.
+ * </p>
+ * <p>
+ * The authorization endpoint is used by the authorization code grant type and
+ * implicit grant type flows.
+ * </p>
+ *
+ * @author Javier Rojas Blum
+ * @version July 18, 2017
+ */
+public enum ResponseType implements HasParamName, AttributeEnum {
+
+    /**
+     * Used for the authorization code grant type.
+     */
+	@JsonProperty("code")
+    CODE("code", "Authorization Code Grant Type"),
+    /**
+     * Used for the implicit grant type.
+     */
+	@JsonProperty("token")
+    TOKEN("token", "Implicit Grant Type"),
+    /**
+     * Include an ID Token in the authorization response.
+     */
+	@JsonProperty("id_token")
+    ID_TOKEN("id_token", "ID Token");
+
+    private final String value;
+    private final String displayName;
+
+    private static Map<String, ResponseType> mapByValues = new HashMap<String, ResponseType>();
+
+    static {
+        for (ResponseType enumType : values()) {
+            mapByValues.put(enumType.getValue(), enumType);
+        }
+    }
+
+    private ResponseType(String value, String displayName) {
+        this.value = value;
+        this.displayName = displayName;
+    }
+
+    /**
+     * Returns the corresponding {@link ResponseType} for a single parameter response_type.
+     *
+     * @param param The response_type parameter.
+     * @return The corresponding response type if found, otherwise <code>null</code>.
+     */
+    @JsonCreator
+    public static ResponseType fromString(String param) {
+        if (param != null) {
+            for (ResponseType rt : ResponseType.values()) {
+                if (param.equals(rt.value)) {
+                    return rt;
+                }
+            }
+        }
+
+        return null;
+    }
+
+    /**
+     * Gets param name.
+     *
+     * @return param name
+     */
+    public String getParamName() {
+        return value;
+    }
+
+    /**
+     * Gets display name
+     *
+     * @return display name name
+     */
+    public String getDisplayName() {
+        return displayName;
+    }
+
+    @Override
+    public String getValue() {
+        return value;
+    }
+
+    /**
+     * Returns a list of the corresponding {@link ResponseType} from a space-separated
+     * list of response_type parameters.
+     *
+     * @param paramList A space-separated list of response_type parameters.
+     * @param separator The separator of the string list.
+     * @return A list of the recognized response types.
+     */
+    public static List<ResponseType> fromString(String paramList, String separator) {
+        List<ResponseType> responseTypes = new ArrayList<ResponseType>();
+
+        if (paramList != null && !paramList.isEmpty()) {
+            String[] params = paramList.split(separator);
+            for (String param : params) {
+                for (ResponseType rt : ResponseType.values()) {
+                    if (param.equals(rt.value)) {
+                        if (!responseTypes.contains(rt)) {
+                            responseTypes.add(rt);
+                        }
+                    }
+                }
+            }
+        }
+
+        return responseTypes;
+    }
+
+    public static boolean isImplicitFlow(String responseTypes) {
+        return !responseTypes.contains("code") && (responseTypes.contains("id_token") || responseTypes.contains("token"));
+    }
+
+    public static List<String> toStringList(List<ResponseType> responseTypes) {
+        if (responseTypes == null) {
+            return Lists.newArrayList();
+        }
+        return responseTypes.stream().map(ResponseType::getValue).collect(Collectors.toList());
+    }
+
+    public static String[] toStringArray(ResponseType[] responseTypes) {
+        if (responseTypes == null) {
+            return null;
+        }
+
+        String[] resultResponseTypes = new String[responseTypes.length];
+        for (int i = 0; i < responseTypes.length; i++) {
+            resultResponseTypes[i] = responseTypes[i].getValue();
+        }
+
+        return resultResponseTypes;
+    }
+
+    public static ResponseType getByValue(String value) {
+        return mapByValues.get(value);
+    }
+
+    public Enum<? extends AttributeEnum> resolveByValue(String value) {
+        return getByValue(value);
+    }
+
+    /**
+     * Returns a string representation of the object. In this case the parameter
+     * name for the response_type parameter.
+     */
+    @Override
+    @JsonValue
+    public String toString() {
+        return value;
+    }
+
+}
\ No newline at end of file
diff --git a/oxAuth/Model/src/main/java/org/gluu/oxauth/model/common/ScopeConstants.java b/oxAuth/Model/src/main/java/org/gluu/oxauth/model/common/ScopeConstants.java
new file mode 100644
index 00000000..41481238
--- /dev/null
+++ b/oxAuth/Model/src/main/java/org/gluu/oxauth/model/common/ScopeConstants.java
@@ -0,0 +1,13 @@
+package org.gluu.oxauth.model.common;
+
+/**
+ * @author Yuriy Zabrovarnyy
+ */
+public class ScopeConstants {
+
+    public static final String OPENID = "openid";
+    public static final String OFFLINE_ACCESS = "offline_access";
+
+    private ScopeConstants() {
+    }
+}
diff --git a/oxAuth/Model/src/main/java/org/gluu/oxauth/model/common/ScopeType.java b/oxAuth/Model/src/main/java/org/gluu/oxauth/model/common/ScopeType.java
new file mode 100644
index 00000000..1630a4eb
--- /dev/null
+++ b/oxAuth/Model/src/main/java/org/gluu/oxauth/model/common/ScopeType.java
@@ -0,0 +1,128 @@
+/*
+ * oxAuth is available under the MIT License (2008). See http://opensource.org/licenses/MIT for full text.
+ *
+ * Copyright (c) 2014, Gluu
+ */
+
+package org.gluu.oxauth.model.common;
+
+import java.util.HashMap;
+import java.util.Map;
+
+import org.gluu.persist.annotation.AttributeEnum;
+
+import com.fasterxml.jackson.annotation.JsonCreator;
+import com.fasterxml.jackson.annotation.JsonValue;
+
+/**
+ * Scope types
+ *
+ * @author Yuriy Movchan
+ * @author Javier Rojas Blum
+ * @version January 19, 2017
+ */
+public enum ScopeType implements AttributeEnum {
+
+    /**
+     * Specify what access privileges are being requested for Access Tokens.
+     * The scopes associated with Access Tokens determine what resources will
+     * be available when they are used to access OAuth 2.0 protected endpoints.
+     * For OpenID Connect, scopes can be used to request that specific sets of
+     * information be made available as Claim Values.
+     * OpenID Connect defines the following scope values that are used to request Claims:
+     * <p>
+     * <ul>
+     * <li>
+     * <b>profile</b>. This scope value requests access to the End-User's default profile Claims,
+     * which are: name, family_name, given_name, middle_name, nickname, preferred_username, profile,
+     * picture, website, gender, birthdate, zoneinfo, locale, and updated_at.
+     * </li>
+     * <li>
+     * <b>email</b>. This scope value requests access to the email and email_verified Claims.
+     * </li>
+     * <li>
+     * <b>address</b>. This scope value requests access to the address Claim.
+     * </li>
+     * <li>
+     * <b>phone</b>. This scope value requests access to the phone_number and phone_number_verified Claims.
+     * </li>
+     * </ul>
+     * <p>
+     * The Claims requested by the profile, email, address, and phone scope values are returned from the
+     * UserInfo Endpoint.
+     */
+    OPENID("openid", "OpenID"),
+
+    /**
+     * Dynamic scope calls scripts which add claims dynamically.
+     */
+    DYNAMIC("dynamic", "Dynamic"),
+
+    UMA("uma", "UMA"),
+
+    SPONTANEOUS("spontaneous", "Spontaneous"),
+
+    /**
+     * OAuth 2.0 Scopes for any of their API's.
+     * This scope type would only have a description, but no claims.
+     * Once a client obtains this token, it may be passed to the backend API (let's say the calendar API).
+     */
+    OAUTH("oauth", "OAuth");
+
+    private final String value;
+    private final String displayName;
+
+    private static Map<String, ScopeType> mapByValues = new HashMap<String, ScopeType>();
+
+    static {
+        for (ScopeType enumType : values()) {
+            mapByValues.put(enumType.getValue(), enumType);
+        }
+    }
+
+    private ScopeType(String value, String displayName) {
+        this.value = value;
+        this.displayName = displayName;
+    }
+
+    @JsonCreator
+    public static ScopeType fromString(String param) {
+        if (param != null) {
+            for (ScopeType st : ScopeType.values()) {
+                if (param.equals(st.value)) {
+                    return st;
+                }
+            }
+        }
+        return null;
+    }
+
+    @Override
+    public String getValue() {
+        return value;
+    }
+
+    /**
+     * Gets display name
+     *
+     * @return display name name
+     */
+    public String getDisplayName() {
+        return displayName;
+    }
+
+    public static ScopeType getByValue(String value) {
+        return mapByValues.get(value);
+    }
+
+    public Enum<? extends AttributeEnum> resolveByValue(String value) {
+        return getByValue(value);
+    }
+
+    @Override
+    @JsonValue
+    public String toString() {
+        return value;
+    }
+
+}
\ No newline at end of file
diff --git a/oxAuth/Model/src/main/java/org/gluu/oxauth/model/common/SoftwareStatementValidationType.java b/oxAuth/Model/src/main/java/org/gluu/oxauth/model/common/SoftwareStatementValidationType.java
new file mode 100644
index 00000000..f68ecc92
--- /dev/null
+++ b/oxAuth/Model/src/main/java/org/gluu/oxauth/model/common/SoftwareStatementValidationType.java
@@ -0,0 +1,40 @@
+package org.gluu.oxauth.model.common;
+
+import com.fasterxml.jackson.annotation.JsonCreator;
+import org.apache.commons.lang.StringUtils;
+
+/**
+ * @author Yuriy Zabrovarnyy
+ */
+public enum SoftwareStatementValidationType {
+    NONE("none"),
+    JWKS("jwks"),
+    JWKS_URI("jwks_uri"),
+    SCRIPT("script");
+
+    public static final SoftwareStatementValidationType DEFAULT = SCRIPT;
+
+    private final String value;
+
+    SoftwareStatementValidationType(String value) {
+        this.value = value;
+    }
+
+    public String getValue() {
+        return value;
+    }
+
+    @JsonCreator
+    public static SoftwareStatementValidationType fromString(String param) {
+        if (StringUtils.isBlank(param)) {
+            return null;
+        }
+
+        for (SoftwareStatementValidationType v : SoftwareStatementValidationType.values()) {
+            if (param.equals(v.value)) {
+                return v;
+            }
+        }
+        return null;
+    }
+}
diff --git a/oxAuth/Model/src/main/java/org/gluu/oxauth/model/common/SubjectType.java b/oxAuth/Model/src/main/java/org/gluu/oxauth/model/common/SubjectType.java
new file mode 100644
index 00000000..0f0a147a
--- /dev/null
+++ b/oxAuth/Model/src/main/java/org/gluu/oxauth/model/common/SubjectType.java
@@ -0,0 +1,54 @@
+/*
+ * oxAuth is available under the MIT License (2008). See http://opensource.org/licenses/MIT for full text.
+ *
+ * Copyright (c) 2014, Gluu
+ */
+
+package org.gluu.oxauth.model.common;
+
+import com.fasterxml.jackson.annotation.JsonCreator;
+import com.fasterxml.jackson.annotation.JsonValue;
+
+/**
+ * @author Javier Rojas Blum Date: 05.11.2012
+ */
+public enum SubjectType {
+
+    PAIRWISE("pairwise"),
+    PUBLIC("public");
+
+    private final String paramName;
+
+    private SubjectType(String paramName) {
+        this.paramName = paramName;
+    }
+
+    /**
+     * Returns the corresponding {@link SubjectType} for an user id type parameter.
+     *
+     * @param param The parameter.
+     * @return The corresponding user id type if found, otherwise
+     *         <code>null</code>.
+     */
+    @JsonCreator
+    public static SubjectType fromString(String param) {
+        if (param != null) {
+            for (SubjectType uit : SubjectType.values()) {
+                if (param.equals(uit.paramName)) {
+                    return uit;
+                }
+            }
+        }
+        return null;
+    }
+
+    /**
+     * Returns a string representation of the object. In this case the parameter
+     * name for the user id type parameter.
+     */
+    @Override
+    @JsonValue
+    public String toString() {
+        return paramName;
+    }
+}
\ No newline at end of file
diff --git a/oxAuth/Model/src/main/java/org/gluu/oxauth/model/common/TokenType.java b/oxAuth/Model/src/main/java/org/gluu/oxauth/model/common/TokenType.java
new file mode 100644
index 00000000..4b5e3c7d
--- /dev/null
+++ b/oxAuth/Model/src/main/java/org/gluu/oxauth/model/common/TokenType.java
@@ -0,0 +1,64 @@
+/*
+ * oxAuth is available under the MIT License (2008). See http://opensource.org/licenses/MIT for full text.
+ *
+ * Copyright (c) 2014, Gluu
+ */
+
+package org.gluu.oxauth.model.common;
+
+import com.fasterxml.jackson.annotation.JsonCreator;
+import com.fasterxml.jackson.annotation.JsonValue;
+
+/**
+ * The access token type provides the client with the information required to
+ * successfully utilize the access token to make a protected resource request
+ * (along with type-specific attributes). The client MUST NOT use an access
+ * token if it does not understand or does not trust the token type.
+ *
+ * @author Javier Rojas Blum Date: 09.20.2011
+ */
+public enum TokenType {
+    /**
+     * The bearer token type is defined in [ietf-oauth-v2-bearer]
+     */
+    BEARER("bearer");
+
+    private final String name;
+
+    private TokenType(String name) {
+        this.name = name;
+    }
+
+    public String getName() {
+        return name;
+    }
+
+    /**
+     * Returns the corresponding {@link TokenType} for a parameter token_type.
+     *
+     * @param param The token_type parameter.
+     * @return The corresponding token type if found, otherwise
+     *         <code>null</code>.
+     */
+    @JsonCreator
+    public static TokenType fromString(String param) {
+        if (param != null) {
+            for (TokenType rt : TokenType.values()) {
+                if (param.equals(rt.name)) {
+                    return rt;
+                }
+            }
+        }
+        return null;
+    }
+
+    /**
+     * Returns a string representation of the object. In this case the parameter
+     * name for the token_type parameter.
+     */
+    @Override
+    @JsonValue
+    public String toString() {
+        return name;
+    }
+}
\ No newline at end of file
diff --git a/oxAuth/Model/src/main/java/org/gluu/oxauth/model/common/TokenTypeHint.java b/oxAuth/Model/src/main/java/org/gluu/oxauth/model/common/TokenTypeHint.java
new file mode 100644
index 00000000..902514d5
--- /dev/null
+++ b/oxAuth/Model/src/main/java/org/gluu/oxauth/model/common/TokenTypeHint.java
@@ -0,0 +1,94 @@
+/*
+ * oxAuth is available under the MIT License (2008). See http://opensource.org/licenses/MIT for full text.
+ *
+ * Copyright (c) 2014, Gluu
+ */
+
+package org.gluu.oxauth.model.common;
+
+import java.util.HashMap;
+import java.util.Map;
+
+import org.gluu.persist.annotation.AttributeEnum;
+
+import com.fasterxml.jackson.annotation.JsonCreator;
+import com.fasterxml.jackson.annotation.JsonValue;
+
+/**
+ * @author Javier Rojas Blum
+ * @version January 16, 2019
+ */
+public enum TokenTypeHint implements HasParamName, AttributeEnum {
+
+    /**
+     * An access token as defined in RFC6749, Section 1.4
+     */
+    ACCESS_TOKEN("access_token"),
+
+    /**
+     * A refresh token as defined in RFC6749, Section 1.5
+     */
+    REFRESH_TOKEN("refresh_token");
+
+    private final String value;
+
+    private static Map<String, TokenTypeHint> mapByValues = new HashMap<String, TokenTypeHint>();
+
+    static {
+        for (TokenTypeHint enumType : values()) {
+            mapByValues.put(enumType.getValue(), enumType);
+        }
+    }
+
+    TokenTypeHint(String value) {
+        this.value = value;
+    }
+
+    /**
+     * Gets param name.
+     *
+     * @return param name
+     */
+    @Override
+    public String getParamName() {
+        return value;
+    }
+
+    @Override
+    public String getValue() {
+        return value;
+    }
+
+    @JsonCreator
+    public static TokenTypeHint fromString(String param) {
+        if (param != null) {
+            for (TokenTypeHint tth : TokenTypeHint.values()) {
+                if (param.equals(tth.value)) {
+                    return tth;
+                }
+            }
+        }
+        return null;
+    }
+
+    public static TokenTypeHint getByValue(String value) {
+        return mapByValues.get(value);
+    }
+
+    @Override
+    public Enum<? extends AttributeEnum> resolveByValue(String s) {
+        return getByValue(value);
+    }
+
+    /**
+     * Returns a string representation of the object. In this case the parameter
+     * name for the grant_type parameter.
+     *
+     * @return The string representation of the object.
+     */
+    @Override
+    @JsonValue
+    public String toString() {
+        return value;
+    }
+}
diff --git a/oxAuth/Model/src/main/java/org/gluu/oxauth/model/common/WebKeyStorage.java b/oxAuth/Model/src/main/java/org/gluu/oxauth/model/common/WebKeyStorage.java
new file mode 100644
index 00000000..f0d778fc
--- /dev/null
+++ b/oxAuth/Model/src/main/java/org/gluu/oxauth/model/common/WebKeyStorage.java
@@ -0,0 +1,50 @@
+/*
+ * oxAuth is available under the MIT License (2008). See http://opensource.org/licenses/MIT for full text.
+ *
+ * Copyright (c) 2014, Gluu
+ */
+
+package org.gluu.oxauth.model.common;
+
+import com.fasterxml.jackson.annotation.JsonCreator;
+import com.fasterxml.jackson.annotation.JsonValue;
+
+/**
+ * @author Javier Rojas Blum
+ * @version June 15, 2016
+ */
+public enum WebKeyStorage {
+    KEYSTORE("keystore"),
+    PKCS11("pkcs11");
+
+    private final String value;
+
+    private WebKeyStorage(String value) {
+        this.value = value;
+    }
+
+    public String getValue() {
+        return value;
+    }
+
+    @JsonCreator
+    public static WebKeyStorage fromString(String string) {
+        for (WebKeyStorage v : values()) {
+            if (v.getValue().equalsIgnoreCase(string)) {
+                return v;
+            }
+        }
+        return KEYSTORE;
+    }
+
+    /**
+     * Returns a string representation of the object. In this case the parameter name.
+     *
+     * @return The string representation of the object.
+     */
+    @Override
+    @JsonValue
+    public String toString() {
+        return value;
+    }
+}
diff --git a/oxAuth/Model/src/main/java/org/gluu/oxauth/model/common/converter/ListConverter.java b/oxAuth/Model/src/main/java/org/gluu/oxauth/model/common/converter/ListConverter.java
new file mode 100644
index 00000000..61d569d1
--- /dev/null
+++ b/oxAuth/Model/src/main/java/org/gluu/oxauth/model/common/converter/ListConverter.java
@@ -0,0 +1,41 @@
+package org.gluu.oxauth.model.common.converter;
+
+import com.fasterxml.jackson.databind.util.StdConverter;
+
+import org.gluu.oxauth.model.util.StringUtils;
+
+import java.util.stream.Collectors;
+import java.util.stream.Stream;
+import java.util.List;
+import java.util.Objects;
+
+/**
+ * A class to facilitate two-step deserialization.
+ */
+public class ListConverter extends StdConverter<Object,List<String>> {
+	
+	/**
+	 * Converts a value to a List of Strings. Conversion is attempted only 
+	 * if parameter obj is already a String or a List. In case of String, a 
+	 * whitespace is assumed as elements separator 
+	 * @param obj Input object
+	 * @return A list of strings, null if obj is null or does not have the expected type 
+	 */
+	public List<String> convert(Object obj) {
+
+		if (obj != null) {
+			if (List.class.isAssignableFrom(obj.getClass())) {
+				// json data already looks like a list...
+				Stream<String> stream = List.class.cast(obj).stream()
+				    .filter(Objects::nonNull).map(Object::toString);
+				return stream.collect(Collectors.toList());
+				
+			} else if (String.class.equals(obj.getClass())) {
+				return StringUtils.spaceSeparatedToList(obj.toString());
+			} 
+		}
+		return null;
+		
+	}
+	
+}
diff --git a/oxAuth/Model/src/main/java/org/gluu/oxauth/model/configuration/AppConfiguration.java b/oxAuth/Model/src/main/java/org/gluu/oxauth/model/configuration/AppConfiguration.java
new file mode 100644
index 00000000..43a1f018
--- /dev/null
+++ b/oxAuth/Model/src/main/java/org/gluu/oxauth/model/configuration/AppConfiguration.java
@@ -0,0 +1,2237 @@
+/*
+ * oxAuth is available under the MIT License (2008). See http://opensource.org/licenses/MIT for full text.
+ *
+ * Copyright (c) 2014, Gluu
+ */
+
+package org.gluu.oxauth.model.configuration;
+
+import com.fasterxml.jackson.annotation.JsonIgnoreProperties;
+import com.google.common.collect.Lists;
+
+import org.gluu.oxauth.model.common.*;
+import org.gluu.oxauth.model.error.ErrorHandlingMethod;
+import org.gluu.oxauth.model.jwk.KeySelectionStrategy;
+
+import java.util.*;
+
+/**
+ * Represents the configuration JSON file.
+ *
+ * @author Javier Rojas Blum
+ * @author Yuriy Zabrovarnyy
+ * @author Yuriy Movchan
+ * @version November 20, 2019
+ */
+@JsonIgnoreProperties(ignoreUnknown = true)
+public class AppConfiguration implements Configuration {
+
+    public static final int DEFAULT_SESSION_ID_LIFETIME = 86400;
+    public static final KeySelectionStrategy DEFAULT_KEY_SELECTION_STRATEGY = KeySelectionStrategy.OLDER;
+    public static final String DEFAULT_STAT_SCOPE = "jans_stat";
+
+    private String issuer;
+    private String baseEndpoint;
+    private String authorizationEndpoint;
+    private String tokenEndpoint;
+    private String tokenRevocationEndpoint;
+    private String userInfoEndpoint;
+    private String clientInfoEndpoint;
+    private String checkSessionIFrame;
+    private String endSessionEndpoint;
+    private String jwksUri;
+    private String registrationEndpoint;
+    private String openIdDiscoveryEndpoint;
+    private String openIdConfigurationEndpoint;
+    private String idGenerationEndpoint;
+    private String introspectionEndpoint;
+    private String deviceAuthzEndpoint;
+
+    private int discoveryCacheLifetimeInMinutes = 60;
+    private int sectorIdentifierCacheLifetimeInMinutes = 1440;
+
+    private Boolean sessionAsJwt = false;
+    private Boolean forceRopcInAuthorizationEndpoint = false;
+
+    private String umaConfigurationEndpoint;
+    private Boolean umaRptAsJwt = false;
+    private int umaRptLifetime;
+    private int umaTicketLifetime;
+    private int umaPctLifetime;
+    private int umaResourceLifetime;
+    private Boolean umaAddScopesAutomatically;
+    private Boolean umaValidateClaimToken = false;
+    private Boolean umaGrantAccessIfNoPolicies = false;
+    private Boolean umaRestrictResourceToAssociatedClient = false;
+
+    private Boolean statEnabled = true;
+    private String statAuthorizationScope;
+    private int statTimerIntervalInSeconds;
+    private int statWebServiceIntervalLimitInSeconds;
+
+    private Boolean allowSpontaneousScopes = true;
+    private int spontaneousScopeLifetime;
+    private String openidSubAttribute;
+    private Set<Set<ResponseType>> responseTypesSupported;
+    private Set<ResponseMode> responseModesSupported;
+    private Set<GrantType> grantTypesSupported;
+    private List<String> subjectTypesSupported;
+    private String defaultSubjectType;
+    private List<String> userInfoSigningAlgValuesSupported;
+    private List<String> userInfoEncryptionAlgValuesSupported;
+    private List<String> userInfoEncryptionEncValuesSupported;
+    private List<String> idTokenSigningAlgValuesSupported;
+    private List<String> idTokenEncryptionAlgValuesSupported;
+    private List<String> idTokenEncryptionEncValuesSupported;
+    private List<String> requestObjectSigningAlgValuesSupported;
+    private List<String> requestObjectEncryptionAlgValuesSupported;
+    private List<String> requestObjectEncryptionEncValuesSupported;
+    private List<String> tokenEndpointAuthMethodsSupported;
+    private List<String> tokenEndpointAuthSigningAlgValuesSupported;
+    private List<String> dynamicRegistrationCustomAttributes;
+    private List<String> displayValuesSupported;
+    private List<String> claimTypesSupported;
+    private List<String> jwksAlgorithmsSupported;
+    private String serviceDocumentation;
+    private List<String> claimsLocalesSupported;
+    private List<String> idTokenTokenBindingCnfValuesSupported;
+    private List<String> uiLocalesSupported;
+    private Boolean claimsParameterSupported;
+    private Boolean requestParameterSupported;
+    private Boolean requestUriParameterSupported;
+    private Boolean requestUriHashVerificationEnabled;
+    private Boolean requireRequestUriRegistration;
+    private List<String> requestUriBlockList;
+    private String opPolicyUri;
+    private String opTosUri;
+    private int authorizationCodeLifetime;
+    private int refreshTokenLifetime;
+    private int idTokenLifetime;
+    private int accessTokenLifetime;
+
+    private int cleanServiceInterval;
+    private int cleanServiceBatchChunkSize = 100;
+
+    private Boolean keyRegenerationEnabled;
+    private int keyRegenerationInterval;
+    private String defaultSignatureAlgorithm;
+    private String oxOpenIdConnectVersion;
+    private String oxId;
+    private Boolean dynamicRegistrationEnabled;
+    private int dynamicRegistrationExpirationTime = -1;
+    private Boolean dynamicRegistrationPersistClientAuthorizations;
+    private Boolean trustedClientEnabled;
+    private Boolean skipAuthorizationForOpenIdScopeAndPairwiseId = false;
+    private Boolean dynamicRegistrationScopesParamEnabled;
+    private Boolean dynamicRegistrationDisableFallbackScopesAssigning;
+    private Boolean dynamicRegistrationPasswordGrantTypeEnabled = false;
+    private List<String> dynamicRegistrationAllowedPasswordGrantScopes;
+    private String dynamicRegistrationCustomObjectClass;
+    private List<String> personCustomObjectClassList;
+
+    private Boolean persistIdTokenInLdap = false;
+    private Boolean persistRefreshTokenInLdap = true;
+    private Boolean allowPostLogoutRedirectWithoutValidation = false;
+    private Boolean invalidateSessionCookiesAfterAuthorizationFlow = false;
+    private Boolean returnClientSecretOnRead = false;
+    private Boolean rejectJwtWithNoneAlg = true;
+    private Boolean expirationNotificatorEnabled = false;
+    private Boolean useNestedJwtDuringEncryption = true;
+    private int expirationNotificatorMapSizeLimit = 100000;
+    private int expirationNotificatorIntervalInSeconds = 600;
+
+    private Boolean useCacheForAllImplicitFlowObjects = false;
+
+    private Boolean authenticationFiltersEnabled;
+    private Boolean clientAuthenticationFiltersEnabled;
+    private Boolean clientRegDefaultToCodeFlowWithRefresh;
+    private Boolean grantTypesAndResponseTypesAutofixEnabled;
+    private List<AuthenticationFilter> authenticationFilters;
+    private List<ClientAuthenticationFilter> clientAuthenticationFilters;
+    private List<CorsConfigurationFilter> corsConfigurationFilters;
+
+    private int sessionIdUnusedLifetime;
+    private int sessionIdUnauthenticatedUnusedLifetime = 120; // 120 seconds
+    private Boolean sessionIdPersistOnPromptNone;
+    private Boolean sessionIdRequestParameterEnabled = false; // #1195
+    private Boolean changeSessionIdOnAuthentication = true;
+    private Boolean sessionIdPersistInCache = false;
+    /**
+     * SessionId will be expired after sessionIdLifetime seconds
+     */
+    private Integer sessionIdLifetime = DEFAULT_SESSION_ID_LIFETIME;
+    private Integer serverSessionIdLifetime = sessionIdLifetime; // by default same as sessionIdLifetime
+    private int configurationUpdateInterval;
+
+    private Boolean logNotFoundEntityAsError;
+    private Boolean enableClientGrantTypeUpdate;
+    private Set<GrantType> dynamicGrantTypeDefault;
+
+    private String cssLocation;
+    private String jsLocation;
+    private String imgLocation;
+    private int metricReporterInterval;
+    private int metricReporterKeepDataDays;
+    private Boolean metricReporterEnabled = true;
+    private String pairwiseIdType; // persistent, algorithmic
+    private String pairwiseCalculationKey;
+    private String pairwiseCalculationSalt;
+    private Boolean shareSubjectIdBetweenClientsWithSameSectorId = false;
+    private Boolean subjectIdentifierBasedOnWholeUriBackwardCompatibility = false; // todo remove in 5.0
+
+    private WebKeyStorage webKeysStorage;
+    private String dnName;
+    // oxAuth KeyStore
+    private String keyStoreFile;
+    private String keyStoreSecret;
+    private KeySelectionStrategy keySelectionStrategy = DEFAULT_KEY_SELECTION_STRATEGY;
+    private List<String> keyAlgsAllowedForGeneration = new ArrayList<>();
+
+    //oxEleven
+    private String oxElevenTestModeToken;
+    private String oxElevenGenerateKeyEndpoint;
+    private String oxElevenSignEndpoint;
+    private String oxElevenVerifySignatureEndpoint;
+    private String oxElevenDeleteKeyEndpoint;
+
+    private Boolean introspectionAccessTokenMustHaveUmaProtectionScope = false;
+    private Boolean introspectionSkipAuthorization;
+    private Boolean introspectionRestrictBasicAuthnToOwnTokens = false;
+
+    private Boolean endSessionWithAccessToken;
+    private String cookieDomain;
+    private Boolean enabledOAuthAuditLogging;
+    private Set<String> jmsBrokerURISet;
+    private String jmsUserName;
+    private String jmsPassword;
+    private Boolean allowWildcardRedirectUri;
+    private List<String> clientWhiteList;
+    private List<String> clientBlackList;
+    private Boolean legacyIdTokenClaims;
+    private Boolean customHeadersWithAuthorizationResponse;
+    private Boolean frontChannelLogoutSessionSupported;
+    private String loggingLevel;
+    private String loggingLayout;
+    private Boolean updateUserLastLogonTime;
+    private Boolean updateClientAccessTime;
+    private Boolean logClientIdOnClientAuthentication;
+    private Boolean logClientNameOnClientAuthentication;
+    private Boolean disableJdkLogger = true;
+    private Set<String> authorizationRequestCustomAllowedParameters;
+    private Boolean legacyDynamicRegistrationScopeParam;
+    private Boolean openidScopeBackwardCompatibility = false;
+    private Boolean disableU2fEndpoint = false;
+
+    private Boolean useLocalCache = false;
+    private Boolean fapiCompatibility = false;
+    private Boolean forceIdTokenHintPrecense = false;
+    private Boolean rejectEndSessionIfIdTokenExpired = false;
+    private Boolean allowEndSessionWithUnmatchedSid = false;
+    private Boolean forceOfflineAccessScopeToEnableRefreshToken = true;
+    private Boolean errorReasonEnabled  = false;
+    private Boolean removeRefreshTokensForClientOnLogout  = true;
+    private Boolean skipRefreshTokenDuringRefreshing  = false;
+    private Boolean refreshTokenExtendLifetimeOnRotation  = false;
+    private Boolean checkUserPresenceOnRefreshToken = false;
+    private Boolean consentGatheringScriptBackwardCompatibility = false; // means ignore client configuration (as defined in 4.2) and determine it globally (as in 4.1 and earlier)
+    private Boolean introspectionScriptBackwardCompatibility = false; // means ignore client configuration (as defined in 4.2) and determine it globally (as in 4.1 and earlier)
+    private Boolean introspectionResponseScopesBackwardCompatibility = false; // See #1499
+    private Boolean clientAuthorizationBackwardCompatibility = false; // search client authorization by filter (instead of key)
+
+    private String softwareStatementValidationType = SoftwareStatementValidationType.DEFAULT.getValue();
+    private String softwareStatementValidationClaimName;
+
+    private AuthenticationProtectionConfiguration authenticationProtectionConfiguration;
+
+    private ErrorHandlingMethod errorHandlingMethod = ErrorHandlingMethod.REMOTE;
+
+    private Boolean keepAuthenticatorAttributesOnAcrChange = false;
+    private Boolean disableAuthnForMaxAgeZero = false;
+    private int deviceAuthzRequestExpiresIn;
+    private int deviceAuthzTokenPollInterval;
+    private String deviceAuthzResponseTypeToProcessAuthz;
+
+    // CIBA
+    private String backchannelClientId;
+    private String backchannelRedirectUri;
+    private String backchannelAuthenticationEndpoint;
+    private String backchannelDeviceRegistrationEndpoint;
+    private List<String> backchannelTokenDeliveryModesSupported;
+    private List<String> backchannelAuthenticationRequestSigningAlgValuesSupported;
+    private Boolean backchannelUserCodeParameterSupported;
+    private String backchannelBindingMessagePattern;
+    private int backchannelAuthenticationResponseExpiresIn;
+    private int backchannelAuthenticationResponseInterval;
+    private List<String> backchannelLoginHintClaims;
+    private CIBAEndUserNotificationConfig cibaEndUserNotificationConfig;
+    private int backchannelRequestsProcessorJobIntervalSec;
+    private int backchannelRequestsProcessorJobChunkSize;
+    private int cibaGrantLifeExtraTimeSec;
+    private int cibaMaxExpirationTimeAllowedSec;
+    private Boolean cibaEnabled;
+
+    private Boolean return200OnClientRegistration = true;
+    private Map<String, String> dateFormatterPatterns = new HashMap<>();
+
+    private Boolean allowBlankValuesInDiscoveryResponse;
+
+    private Boolean skipAuthenticationFilterOptionsMethod = false;
+
+    public Boolean getSubjectIdentifierBasedOnWholeUriBackwardCompatibility() {
+        return subjectIdentifierBasedOnWholeUriBackwardCompatibility;
+    }
+
+    public void setSubjectIdentifierBasedOnWholeUriBackwardCompatibility(Boolean subjectIdentifierBasedOnWholeUriBackwardCompatibility) {
+        this.subjectIdentifierBasedOnWholeUriBackwardCompatibility = subjectIdentifierBasedOnWholeUriBackwardCompatibility;
+    }
+
+    public Boolean getLogNotFoundEntityAsError() {
+        if (logNotFoundEntityAsError == null) logNotFoundEntityAsError = false;
+        return logNotFoundEntityAsError;
+    }
+
+    public void setLogNotFoundEntityAsError(Boolean logNotFoundEntityAsError) {
+        this.logNotFoundEntityAsError = logNotFoundEntityAsError;
+    }
+
+    public Boolean getUseNestedJwtDuringEncryption() {
+        if (useNestedJwtDuringEncryption == null) useNestedJwtDuringEncryption = true;
+        return useNestedJwtDuringEncryption;
+    }
+
+    public void setUseNestedJwtDuringEncryption(Boolean useNestedJwtDuringEncryption) {
+        this.useNestedJwtDuringEncryption = useNestedJwtDuringEncryption;
+    }
+
+    public KeySelectionStrategy getKeySelectionStrategy() {
+        if (keySelectionStrategy == null) keySelectionStrategy = DEFAULT_KEY_SELECTION_STRATEGY;
+        return keySelectionStrategy;
+    }
+
+    public void setKeySelectionStrategy(KeySelectionStrategy keySelectionStrategy) {
+        this.keySelectionStrategy = keySelectionStrategy;
+    }
+
+    public List<String> getKeyAlgsAllowedForGeneration() {
+        if (keyAlgsAllowedForGeneration == null) keyAlgsAllowedForGeneration = new ArrayList<>();
+        return keyAlgsAllowedForGeneration;
+    }
+
+    public void setKeyAlgsAllowedForGeneration(List<String> keyAlgsAllowedForGeneration) {
+        this.keyAlgsAllowedForGeneration = keyAlgsAllowedForGeneration;
+    }
+
+    public int getDiscoveryCacheLifetimeInMinutes() {
+        return discoveryCacheLifetimeInMinutes;
+    }
+
+    public void setDiscoveryCacheLifetimeInMinutes(int discoveryCacheLifetimeInMinutes) {
+        this.discoveryCacheLifetimeInMinutes = discoveryCacheLifetimeInMinutes;
+    }
+
+    public int getSectorIdentifierCacheLifetimeInMinutes() {
+        return sectorIdentifierCacheLifetimeInMinutes;
+    }
+
+    public void setSectorIdentifierCacheLifetimeInMinutes(int sectorIdentifierCacheLifetimeInMinutes) {
+        this.sectorIdentifierCacheLifetimeInMinutes = sectorIdentifierCacheLifetimeInMinutes;
+    }
+
+    public String getSoftwareStatementValidationType() {
+        if (softwareStatementValidationType == null) return softwareStatementValidationType = SoftwareStatementValidationType.DEFAULT.getValue();
+        return softwareStatementValidationType;
+    }
+
+    public String getSoftwareStatementValidationClaimName() {
+        return softwareStatementValidationClaimName;
+    }
+
+    public void setSoftwareStatementValidationType(String softwareStatementValidationType) {
+        this.softwareStatementValidationType = softwareStatementValidationType;
+    }
+
+    public void setSoftwareStatementValidationClaimName(String softwareStatementValidationClaimName) {
+        this.softwareStatementValidationClaimName = softwareStatementValidationClaimName;
+    }
+
+    public Boolean getSkipRefreshTokenDuringRefreshing() {
+        if (skipRefreshTokenDuringRefreshing == null) skipRefreshTokenDuringRefreshing = false;
+        return skipRefreshTokenDuringRefreshing;
+    }
+
+    public void setSkipRefreshTokenDuringRefreshing(Boolean skipRefreshTokenDuringRefreshing) {
+        this.skipRefreshTokenDuringRefreshing = skipRefreshTokenDuringRefreshing;
+    }
+
+    public Boolean getClientAuthorizationBackwardCompatibility() {
+        if (clientAuthorizationBackwardCompatibility == null) clientAuthorizationBackwardCompatibility = false;
+        return clientAuthorizationBackwardCompatibility;
+    }
+
+    public void setClientAuthorizationBackwardCompatibility(Boolean clientAuthorizationBackwardCompatibility) {
+        this.clientAuthorizationBackwardCompatibility = clientAuthorizationBackwardCompatibility;
+    }
+    public Boolean getRefreshTokenExtendLifetimeOnRotation() {
+        if (refreshTokenExtendLifetimeOnRotation == null) refreshTokenExtendLifetimeOnRotation = false;
+        return refreshTokenExtendLifetimeOnRotation;
+    }
+
+    public void setRefreshTokenExtendLifetimeOnRotation(Boolean refreshTokenExtendLifetimeOnRotation) {
+        this.refreshTokenExtendLifetimeOnRotation = refreshTokenExtendLifetimeOnRotation;
+    }
+
+    public Boolean getCheckUserPresenceOnRefreshToken() {
+        if (checkUserPresenceOnRefreshToken == null) checkUserPresenceOnRefreshToken = false;
+        return checkUserPresenceOnRefreshToken;
+    }
+
+    public void setCheckUserPresenceOnRefreshToken(Boolean checkUserPresenceOnRefreshToken) {
+        this.checkUserPresenceOnRefreshToken = checkUserPresenceOnRefreshToken;
+    }
+
+    public Boolean getExpirationNotificatorEnabled() {
+        if (expirationNotificatorEnabled == null) expirationNotificatorEnabled = false;
+        return expirationNotificatorEnabled;
+    }
+
+    public void setExpirationNotificatorEnabled(Boolean expirationNotificatorEnabled) {
+        this.expirationNotificatorEnabled = expirationNotificatorEnabled;
+    }
+
+    public int getExpirationNotificatorMapSizeLimit() {
+        if (expirationNotificatorMapSizeLimit == 0) expirationNotificatorMapSizeLimit = 100000;
+        return expirationNotificatorMapSizeLimit;
+    }
+
+    public void setExpirationNotificatorMapSizeLimit(int expirationNotificatorMapSizeLimit) {
+        this.expirationNotificatorMapSizeLimit = expirationNotificatorMapSizeLimit;
+    }
+
+    public int getExpirationNotificatorIntervalInSeconds() {
+        return expirationNotificatorIntervalInSeconds;
+    }
+
+    public void setExpirationNotificatorIntervalInSeconds(int expirationNotificatorIntervalInSeconds) {
+        this.expirationNotificatorIntervalInSeconds = expirationNotificatorIntervalInSeconds;
+    }
+
+    public Boolean getRejectJwtWithNoneAlg() {
+        if (rejectJwtWithNoneAlg == null) rejectJwtWithNoneAlg = true;
+        return rejectJwtWithNoneAlg;
+    }
+
+    public void setRejectJwtWithNoneAlg(Boolean rejectJwtWithNoneAlg) {
+        this.rejectJwtWithNoneAlg = rejectJwtWithNoneAlg;
+    }
+
+    public Boolean getIntrospectionScriptBackwardCompatibility() {
+        if (introspectionScriptBackwardCompatibility == null) introspectionScriptBackwardCompatibility = false;
+        return introspectionScriptBackwardCompatibility;
+    }
+
+    public void setIntrospectionScriptBackwardCompatibility(Boolean introspectionScriptBackwardCompatibility) {
+        this.introspectionScriptBackwardCompatibility = introspectionScriptBackwardCompatibility;
+    }
+
+    public Boolean getIntrospectionResponseScopesBackwardCompatibility() {
+        if (introspectionResponseScopesBackwardCompatibility == null) introspectionResponseScopesBackwardCompatibility = false;
+        return introspectionScriptBackwardCompatibility;
+    }
+
+    public void setIntrospectionResponseScopesBackwardCompatibility(Boolean introspectionResponseScopesBackwardCompatibility) {
+        this.introspectionResponseScopesBackwardCompatibility = introspectionResponseScopesBackwardCompatibility;
+    }
+
+    public Boolean getConsentGatheringScriptBackwardCompatibility() {
+        if (consentGatheringScriptBackwardCompatibility == null) consentGatheringScriptBackwardCompatibility = false;
+        return consentGatheringScriptBackwardCompatibility;
+    }
+
+    public void setConsentGatheringScriptBackwardCompatibility(Boolean consentGatheringScriptBackwardCompatibility) {
+        this.consentGatheringScriptBackwardCompatibility = consentGatheringScriptBackwardCompatibility;
+    }
+
+    public Boolean getErrorReasonEnabled() {
+        if (errorReasonEnabled == null) errorReasonEnabled = false;
+        return errorReasonEnabled;
+    }
+
+    public void setErrorReasonEnabled(Boolean errorReasonEnabled) {
+        this.errorReasonEnabled = errorReasonEnabled;
+    }
+
+    public Boolean getForceOfflineAccessScopeToEnableRefreshToken() {
+        if (forceOfflineAccessScopeToEnableRefreshToken == null) forceOfflineAccessScopeToEnableRefreshToken = true;
+        return forceOfflineAccessScopeToEnableRefreshToken;
+    }
+
+    public void setForceOfflineAccessScopeToEnableRefreshToken(Boolean forceOfflineAccessScopeToEnableRefreshToken) {
+        this.forceOfflineAccessScopeToEnableRefreshToken = forceOfflineAccessScopeToEnableRefreshToken;
+    }
+
+    public Boolean getSessionIdPersistInCache() {
+        if (sessionIdPersistInCache == null) sessionIdPersistInCache = false;
+        return sessionIdPersistInCache;
+    }
+
+    public void setSessionIdPersistInCache(Boolean sessionIdPersistInCache) {
+        this.sessionIdPersistInCache = sessionIdPersistInCache;
+    }
+
+    public Boolean getChangeSessionIdOnAuthentication() {
+        if (changeSessionIdOnAuthentication == null) changeSessionIdOnAuthentication = true;
+        return changeSessionIdOnAuthentication;
+    }
+
+    public void setChangeSessionIdOnAuthentication(Boolean changeSessionIdOnAuthentication) {
+        this.changeSessionIdOnAuthentication = changeSessionIdOnAuthentication;
+    }
+
+    public Boolean getReturnClientSecretOnRead() {
+        if (returnClientSecretOnRead == null) returnClientSecretOnRead = false;
+        return returnClientSecretOnRead;
+    }
+
+    public void setReturnClientSecretOnRead(Boolean returnClientSecretOnRead) {
+        this.returnClientSecretOnRead = returnClientSecretOnRead;
+    }
+
+    public Boolean getFapiCompatibility() {
+        if (fapiCompatibility == null) fapiCompatibility = false;
+        return fapiCompatibility;
+    }
+
+    public void setFapiCompatibility(Boolean fapiCompatibility) {
+        this.fapiCompatibility = fapiCompatibility;
+    }
+
+    public Boolean getForceIdTokenHintPrecense() {
+        if (forceIdTokenHintPrecense == null) forceIdTokenHintPrecense = false;
+        return forceIdTokenHintPrecense;
+    }
+
+    public void setForceIdTokenHintPrecense(Boolean forceIdTokenHintPrecense) {
+        this.forceIdTokenHintPrecense = forceIdTokenHintPrecense;
+    }
+
+    public Boolean getRejectEndSessionIfIdTokenExpired() {
+        if (rejectEndSessionIfIdTokenExpired == null) rejectEndSessionIfIdTokenExpired = false;
+        return rejectEndSessionIfIdTokenExpired;
+    }
+
+    public void setRejectEndSessionIfIdTokenExpired(Boolean rejectEndSessionIfIdTokenExpired) {
+        this.rejectEndSessionIfIdTokenExpired = rejectEndSessionIfIdTokenExpired;
+    }
+
+    public Boolean getAllowEndSessionWithUnmatchedSid() {
+        if (allowEndSessionWithUnmatchedSid == null) allowEndSessionWithUnmatchedSid = false;
+        return allowEndSessionWithUnmatchedSid;
+    }
+
+    public void setAllowEndSessionWithUnmatchedSid(Boolean allowEndSessionWithUnmatchedSid) {
+        this.allowEndSessionWithUnmatchedSid = allowEndSessionWithUnmatchedSid;
+    }
+
+    public Boolean getRemoveRefreshTokensForClientOnLogout() {
+        if (removeRefreshTokensForClientOnLogout == null) removeRefreshTokensForClientOnLogout = true;
+        return removeRefreshTokensForClientOnLogout;
+    }
+
+    public void setRemoveRefreshTokensForClientOnLogout(Boolean removeRefreshTokensForClientOnLogout) {
+        this.removeRefreshTokensForClientOnLogout = removeRefreshTokensForClientOnLogout;
+    }
+
+    public Boolean getDisableJdkLogger() {
+        return disableJdkLogger;
+    }
+
+    public void setDisableJdkLogger(Boolean disableJdkLogger) {
+        this.disableJdkLogger = disableJdkLogger;
+    }
+
+    /**
+     * Used in ServletLoggingFilter to enable http request/response logging.
+     */
+    private Boolean httpLoggingEnabled;
+
+    /**
+     * Used in ServletLoggingFilter to exclude some paths from logger. Paths example: ["/oxauth/img", "/oxauth/stylesheet"]
+     */
+    private Set<String> httpLoggingExludePaths;
+
+    /**
+     * Path to external log4j2 configuration file. This property might be configured from oxTrust: /identity/logviewer/configure
+     */
+    private String externalLoggerConfiguration;
+
+    public Boolean getFrontChannelLogoutSessionSupported() {
+        return frontChannelLogoutSessionSupported;
+    }
+
+    public void setFrontChannelLogoutSessionSupported(
+            Boolean frontChannelLogoutSessionSupported) {
+        this.frontChannelLogoutSessionSupported = frontChannelLogoutSessionSupported;
+    }
+
+    public Boolean getIntrospectionAccessTokenMustHaveUmaProtectionScope() {
+        return introspectionAccessTokenMustHaveUmaProtectionScope;
+    }
+
+    public void setIntrospectionAccessTokenMustHaveUmaProtectionScope(Boolean introspectionAccessTokenMustHaveUmaProtectionScope) {
+        this.introspectionAccessTokenMustHaveUmaProtectionScope = introspectionAccessTokenMustHaveUmaProtectionScope;
+    }
+
+    public Boolean getIntrospectionSkipAuthorization() {
+        if (introspectionSkipAuthorization == null) introspectionSkipAuthorization = false;
+        return introspectionSkipAuthorization;
+    }
+
+    public void setIntrospectionSkipAuthorization(Boolean introspectionSkipAuthorization) {
+        this.introspectionSkipAuthorization = introspectionSkipAuthorization;
+    }
+
+    public Boolean getIntrospectionRestrictBasicAuthnToOwnTokens() {
+        if (introspectionRestrictBasicAuthnToOwnTokens == null) introspectionRestrictBasicAuthnToOwnTokens = false;
+        return introspectionRestrictBasicAuthnToOwnTokens;
+    }
+
+    public void setIntrospectionRestrictBasicAuthnToOwnTokens(Boolean introspectionRestrictBasicAuthnToOwnTokens) {
+        this.introspectionRestrictBasicAuthnToOwnTokens = introspectionRestrictBasicAuthnToOwnTokens;
+    }
+
+    public Boolean getUmaRptAsJwt() {
+        return umaRptAsJwt;
+    }
+
+    public void setUmaRptAsJwt(Boolean umaRptAsJwt) {
+        this.umaRptAsJwt = umaRptAsJwt;
+    }
+
+    public Boolean getForceRopcInAuthorizationEndpoint() {
+        if (forceRopcInAuthorizationEndpoint == null) forceRopcInAuthorizationEndpoint = false;
+        return forceRopcInAuthorizationEndpoint;
+    }
+
+    public void setForceRopcInAuthorizationEndpoint(Boolean forceRopcInAuthorizationEndpoint) {
+        this.forceRopcInAuthorizationEndpoint = forceRopcInAuthorizationEndpoint;
+    }
+
+    public Boolean getSessionAsJwt() {
+        return sessionAsJwt;
+    }
+
+    public void setSessionAsJwt(Boolean sessionAsJwt) {
+        this.sessionAsJwt = sessionAsJwt;
+    }
+
+    public Boolean getUmaAddScopesAutomatically() {
+        return umaAddScopesAutomatically;
+    }
+
+    public void setUmaAddScopesAutomatically(Boolean p_umaAddScopesAutomatically) {
+        umaAddScopesAutomatically = p_umaAddScopesAutomatically;
+    }
+
+    public Boolean getUmaValidateClaimToken() {
+        return umaValidateClaimToken;
+    }
+
+    public void setUmaValidateClaimToken(Boolean umaValidateClaimToken) {
+        this.umaValidateClaimToken = umaValidateClaimToken;
+    }
+
+    public Boolean getUmaGrantAccessIfNoPolicies() {
+        return umaGrantAccessIfNoPolicies;
+    }
+
+    public void setUmaGrantAccessIfNoPolicies(Boolean umaGrantAccessIfNoPolicies) {
+        this.umaGrantAccessIfNoPolicies = umaGrantAccessIfNoPolicies;
+    }
+
+    public Boolean getUmaRestrictResourceToAssociatedClient() {
+        return umaRestrictResourceToAssociatedClient;
+    }
+
+    public void setUmaRestrictResourceToAssociatedClient(Boolean umaRestrictResourceToAssociatedClient) {
+        this.umaRestrictResourceToAssociatedClient = umaRestrictResourceToAssociatedClient;
+    }
+
+    /**
+     * Returns the issuer identifier.
+     *
+     * @return The issuer identifier.
+     */
+    public String getIssuer() {
+        return issuer;
+    }
+
+    /**
+     * Sets the issuer identifier.
+     *
+     * @param issuer The issuer identifier.
+     */
+    public void setIssuer(String issuer) {
+        this.issuer = issuer;
+    }
+
+    /**
+     * Returns the base URI of the endpoints.
+     *
+     * @return The base URI of endpoints.
+     */
+    public String getBaseEndpoint() {
+        return baseEndpoint;
+    }
+
+    /**
+     * Sets the base URI of the endpoints.
+     *
+     * @param baseEndpoint The base URI of the endpoints.
+     */
+    public void setBaseEndpoint(String baseEndpoint) {
+        this.baseEndpoint = baseEndpoint;
+    }
+
+    /**
+     * Returns the URL of the Authentication and Authorization endpoint.
+     *
+     * @return The URL of the Authentication and Authorization endpoint.
+     */
+    public String getAuthorizationEndpoint() {
+        return authorizationEndpoint;
+    }
+
+    /**
+     * Sets the URL of the Authentication and Authorization endpoint.
+     *
+     * @param authorizationEndpoint The URL of the Authentication and Authorization endpoint.
+     */
+    public void setAuthorizationEndpoint(String authorizationEndpoint) {
+        this.authorizationEndpoint = authorizationEndpoint;
+    }
+
+    /**
+     * Returns the URL of the Token endpoint.
+     *
+     * @return The URL of the Token endpoint.
+     */
+    public String getTokenEndpoint() {
+        return tokenEndpoint;
+    }
+
+    /**
+     * Sets the URL of the Token endpoint.
+     *
+     * @param tokenEndpoint The URL of the Token endpoint.
+     */
+    public void setTokenEndpoint(String tokenEndpoint) {
+        this.tokenEndpoint = tokenEndpoint;
+    }
+
+    /**
+     * Returns the URL of the Token Revocation endpoint.
+     *
+     * @return The URL of the Token Revocation endpoint.
+     */
+    public String getTokenRevocationEndpoint() {
+        return tokenRevocationEndpoint;
+    }
+
+    /**
+     * Sets the URL of the Token Revocation endpoint.
+     *
+     * @param tokenRevocationEndpoint The URL of the Token Revocation endpoint.
+     */
+    public void setTokenRevocationEndpoint(String tokenRevocationEndpoint) {
+        this.tokenRevocationEndpoint = tokenRevocationEndpoint;
+    }
+
+    /**
+     * Returns the URL of the User Info endpoint.
+     *
+     * @return The URL of the User Info endpoint.
+     */
+    public String getUserInfoEndpoint() {
+        return userInfoEndpoint;
+    }
+
+    /**
+     * Sets the URL for the User Info endpoint.
+     *
+     * @param userInfoEndpoint The URL for the User Info endpoint.
+     */
+    public void setUserInfoEndpoint(String userInfoEndpoint) {
+        this.userInfoEndpoint = userInfoEndpoint;
+    }
+
+    /**
+     * Returns the URL od the Client Info endpoint.
+     *
+     * @return The URL of the Client Info endpoint.
+     */
+    public String getClientInfoEndpoint() {
+        return clientInfoEndpoint;
+    }
+
+    /**
+     * Sets the URL for the Client Info endpoint.
+     *
+     * @param clientInfoEndpoint The URL for the Client Info endpoint.
+     */
+    public void setClientInfoEndpoint(String clientInfoEndpoint) {
+        this.clientInfoEndpoint = clientInfoEndpoint;
+    }
+
+    /**
+     * Returns the URL of an OP endpoint that provides a page to support cross-origin
+     * communications for session state information with the RP client.
+     *
+     * @return The Check Session iFrame URL.
+     */
+    public String getCheckSessionIFrame() {
+        return checkSessionIFrame;
+    }
+
+    /**
+     * Sets the  URL of an OP endpoint that provides a page to support cross-origin
+     * communications for session state information with the RP client.
+     *
+     * @param checkSessionIFrame The Check Session iFrame URL.
+     */
+    public void setCheckSessionIFrame(String checkSessionIFrame) {
+        this.checkSessionIFrame = checkSessionIFrame;
+    }
+
+    /**
+     * Returns the URL of the End Session endpoint.
+     *
+     * @return The URL of the End Session endpoint.
+     */
+    public String getEndSessionEndpoint() {
+        return endSessionEndpoint;
+    }
+
+    /**
+     * Sets the URL of the End Session endpoint.
+     *
+     * @param endSessionEndpoint The URL of the End Session endpoint.
+     */
+    public void setEndSessionEndpoint(String endSessionEndpoint) {
+        this.endSessionEndpoint = endSessionEndpoint;
+    }
+
+    /**
+     * Returns the URL of the OP's JSON Web Key Set (JWK) document that contains the Server's signing key(s)
+     * that are used for signing responses to the Client.
+     * The JWK Set may also contain the Server's encryption key(s) that are used by the Client to encrypt
+     * requests to the Server.
+     *
+     * @return The URL of the OP's JSON Web Key Set (JWK) document.
+     */
+    public String getJwksUri() {
+        return jwksUri;
+    }
+
+    /**
+     * Sets the URL of the OP's JSON Web Key Set (JWK) document that contains the Server's signing key(s)
+     * that are used for signing responses to the Client.
+     * The JWK Set may also contain the Server's encryption key(s) that are used by the Client to encrypt
+     * requests to the Server.
+     *
+     * @param jwksUri The URL of the OP's JSON Web Key Set (JWK) document.
+     */
+    public void setJwksUri(String jwksUri) {
+        this.jwksUri = jwksUri;
+    }
+
+    /**
+     * Returns the URL of the Dynamic Client Registration endpoint.
+     *
+     * @return The URL of the Dynamic Client Registration endpoint.
+     */
+    public String getRegistrationEndpoint() {
+        return registrationEndpoint;
+    }
+
+    /**
+     * Sets the URL of the Dynamic Client Registration endpoint.
+     *
+     * @param registrationEndpoint The URL of the Dynamic Client Registration endpoint.
+     */
+    public void setRegistrationEndpoint(String registrationEndpoint) {
+        this.registrationEndpoint = registrationEndpoint;
+    }
+
+    public String getOpenIdDiscoveryEndpoint() {
+        return openIdDiscoveryEndpoint;
+    }
+
+    public void setOpenIdDiscoveryEndpoint(String openIdDiscoveryEndpoint) {
+        this.openIdDiscoveryEndpoint = openIdDiscoveryEndpoint;
+    }
+
+    public String getUmaConfigurationEndpoint() {
+        return umaConfigurationEndpoint;
+    }
+
+    public void setUmaConfigurationEndpoint(String p_umaConfigurationEndpoint) {
+        umaConfigurationEndpoint = p_umaConfigurationEndpoint;
+    }
+
+    public String getOpenidSubAttribute() {
+        return openidSubAttribute;
+    }
+
+    public void setOpenidSubAttribute(String openidSubAttribute) {
+        this.openidSubAttribute = openidSubAttribute;
+    }
+
+    public String getIdGenerationEndpoint() {
+        return idGenerationEndpoint;
+    }
+
+    public void setIdGenerationEndpoint(String p_idGenerationEndpoint) {
+        idGenerationEndpoint = p_idGenerationEndpoint;
+    }
+
+    public String getIntrospectionEndpoint() {
+        return introspectionEndpoint;
+    }
+
+    public void setIntrospectionEndpoint(String p_introspectionEndpoint) {
+        introspectionEndpoint = p_introspectionEndpoint;
+    }
+
+    public String getOpenIdConfigurationEndpoint() {
+        return openIdConfigurationEndpoint;
+    }
+
+    public void setOpenIdConfigurationEndpoint(String openIdConfigurationEndpoint) {
+        this.openIdConfigurationEndpoint = openIdConfigurationEndpoint;
+    }
+
+    public Set<Set<ResponseType>> getResponseTypesSupported() {
+        return responseTypesSupported;
+    }
+
+    public void setResponseTypesSupported(Set<Set<ResponseType>> responseTypesSupported) {
+        this.responseTypesSupported = responseTypesSupported;
+    }
+
+    public Set<ResponseMode> getResponseModesSupported() {
+        return responseModesSupported;
+    }
+
+    public void setResponseModesSupported(Set<ResponseMode> responseModesSupported) {
+        this.responseModesSupported = responseModesSupported;
+    }
+
+    public Set<GrantType> getGrantTypesSupported() {
+        return grantTypesSupported;
+    }
+
+    public void setGrantTypesSupported(Set<GrantType> grantTypesSupported) {
+        this.grantTypesSupported = grantTypesSupported;
+    }
+
+    public List<String> getSubjectTypesSupported() {
+        return subjectTypesSupported;
+    }
+
+    public void setSubjectTypesSupported(List<String> subjectTypesSupported) {
+        this.subjectTypesSupported = subjectTypesSupported;
+    }
+
+    public String getDefaultSubjectType() {
+        return defaultSubjectType;
+    }
+
+    public void setDefaultSubjectType(String defaultSubjectType) {
+        this.defaultSubjectType = defaultSubjectType;
+    }
+
+    public Boolean getStatEnabled() {
+        if (statEnabled == null) statEnabled = true;
+        return statEnabled;
+    }
+
+    public void setStatEnabled(Boolean statEnabled) {
+        this.statEnabled = statEnabled;
+    }
+
+    public String getStatAuthorizationScope() {
+        if (statAuthorizationScope == null) statAuthorizationScope = DEFAULT_STAT_SCOPE;
+        return statAuthorizationScope;
+    }
+
+    public void setStatAuthorizationScope(String statAuthorizationScope) {
+        this.statAuthorizationScope = statAuthorizationScope;
+    }
+
+    public int getStatWebServiceIntervalLimitInSeconds() {
+        return statWebServiceIntervalLimitInSeconds;
+    }
+
+    public void setStatWebServiceIntervalLimitInSeconds(int statWebServiceIntervalLimitInSeconds) {
+        this.statWebServiceIntervalLimitInSeconds = statWebServiceIntervalLimitInSeconds;
+    }
+
+    public int getStatTimerIntervalInSeconds() {
+        return statTimerIntervalInSeconds;
+    }
+
+    public void setStatTimerIntervalInSeconds(int statTimerIntervalInSeconds) {
+        this.statTimerIntervalInSeconds = statTimerIntervalInSeconds;
+    }
+
+    public List<String> getUserInfoSigningAlgValuesSupported() {
+        return userInfoSigningAlgValuesSupported;
+    }
+
+    public void setUserInfoSigningAlgValuesSupported(List<String> userInfoSigningAlgValuesSupported) {
+        this.userInfoSigningAlgValuesSupported = userInfoSigningAlgValuesSupported;
+    }
+
+    public List<String> getUserInfoEncryptionAlgValuesSupported() {
+        return userInfoEncryptionAlgValuesSupported;
+    }
+
+    public void setUserInfoEncryptionAlgValuesSupported(List<String> userInfoEncryptionAlgValuesSupported) {
+        this.userInfoEncryptionAlgValuesSupported = userInfoEncryptionAlgValuesSupported;
+    }
+
+    public List<String> getUserInfoEncryptionEncValuesSupported() {
+        return userInfoEncryptionEncValuesSupported;
+    }
+
+    public void setUserInfoEncryptionEncValuesSupported(List<String> userInfoEncryptionEncValuesSupported) {
+        this.userInfoEncryptionEncValuesSupported = userInfoEncryptionEncValuesSupported;
+    }
+
+    public List<String> getIdTokenSigningAlgValuesSupported() {
+        return idTokenSigningAlgValuesSupported;
+    }
+
+    public void setIdTokenSigningAlgValuesSupported(List<String> idTokenSigningAlgValuesSupported) {
+        this.idTokenSigningAlgValuesSupported = idTokenSigningAlgValuesSupported;
+    }
+
+    public List<String> getIdTokenEncryptionAlgValuesSupported() {
+        return idTokenEncryptionAlgValuesSupported;
+    }
+
+    public void setIdTokenEncryptionAlgValuesSupported(List<String> idTokenEncryptionAlgValuesSupported) {
+        this.idTokenEncryptionAlgValuesSupported = idTokenEncryptionAlgValuesSupported;
+    }
+
+    public List<String> getIdTokenEncryptionEncValuesSupported() {
+        return idTokenEncryptionEncValuesSupported;
+    }
+
+    public void setIdTokenEncryptionEncValuesSupported(List<String> idTokenEncryptionEncValuesSupported) {
+        this.idTokenEncryptionEncValuesSupported = idTokenEncryptionEncValuesSupported;
+    }
+
+    public List<String> getRequestObjectSigningAlgValuesSupported() {
+        return requestObjectSigningAlgValuesSupported;
+    }
+
+    public void setRequestObjectSigningAlgValuesSupported(List<String> requestObjectSigningAlgValuesSupported) {
+        this.requestObjectSigningAlgValuesSupported = requestObjectSigningAlgValuesSupported;
+    }
+
+    public List<String> getRequestObjectEncryptionAlgValuesSupported() {
+        return requestObjectEncryptionAlgValuesSupported;
+    }
+
+    public void setRequestObjectEncryptionAlgValuesSupported(List<String> requestObjectEncryptionAlgValuesSupported) {
+        this.requestObjectEncryptionAlgValuesSupported = requestObjectEncryptionAlgValuesSupported;
+    }
+
+    public List<String> getRequestObjectEncryptionEncValuesSupported() {
+        return requestObjectEncryptionEncValuesSupported;
+    }
+
+    public void setRequestObjectEncryptionEncValuesSupported(List<String> requestObjectEncryptionEncValuesSupported) {
+        this.requestObjectEncryptionEncValuesSupported = requestObjectEncryptionEncValuesSupported;
+    }
+
+    public List<String> getTokenEndpointAuthMethodsSupported() {
+        return tokenEndpointAuthMethodsSupported;
+    }
+
+    public void setTokenEndpointAuthMethodsSupported(List<String> tokenEndpointAuthMethodsSupported) {
+        this.tokenEndpointAuthMethodsSupported = tokenEndpointAuthMethodsSupported;
+    }
+
+    public List<String> getTokenEndpointAuthSigningAlgValuesSupported() {
+        return tokenEndpointAuthSigningAlgValuesSupported;
+    }
+
+    public void setTokenEndpointAuthSigningAlgValuesSupported(List<String> tokenEndpointAuthSigningAlgValuesSupported) {
+        this.tokenEndpointAuthSigningAlgValuesSupported = tokenEndpointAuthSigningAlgValuesSupported;
+    }
+
+    public List<String> getDynamicRegistrationCustomAttributes() {
+        return dynamicRegistrationCustomAttributes;
+    }
+
+    public void setDynamicRegistrationCustomAttributes(List<String> p_dynamicRegistrationCustomAttributes) {
+        dynamicRegistrationCustomAttributes = p_dynamicRegistrationCustomAttributes;
+    }
+
+    public List<String> getDisplayValuesSupported() {
+        return displayValuesSupported;
+    }
+
+    public void setDisplayValuesSupported(List<String> displayValuesSupported) {
+        this.displayValuesSupported = displayValuesSupported;
+    }
+
+    public List<String> getClaimTypesSupported() {
+        return claimTypesSupported;
+    }
+
+    public void setClaimTypesSupported(List<String> claimTypesSupported) {
+        this.claimTypesSupported = claimTypesSupported;
+    }
+
+    public List<String> getJwksAlgorithmsSupported() {
+        return jwksAlgorithmsSupported;
+    }
+
+    public void setJwksAlgorithmsSupported(List<String> jwksAlgorithmsSupported) {
+        this.jwksAlgorithmsSupported = jwksAlgorithmsSupported;
+    }
+
+    public String getServiceDocumentation() {
+        return serviceDocumentation;
+    }
+
+    public void setServiceDocumentation(String serviceDocumentation) {
+        this.serviceDocumentation = serviceDocumentation;
+    }
+
+    public List<String> getClaimsLocalesSupported() {
+        return claimsLocalesSupported;
+    }
+
+    public void setClaimsLocalesSupported(List<String> claimsLocalesSupported) {
+        this.claimsLocalesSupported = claimsLocalesSupported;
+    }
+
+    public List<String> getIdTokenTokenBindingCnfValuesSupported() {
+        if (idTokenTokenBindingCnfValuesSupported == null) {
+            idTokenTokenBindingCnfValuesSupported = new ArrayList<String>();
+        }
+        return idTokenTokenBindingCnfValuesSupported;
+    }
+
+    public void setIdTokenTokenBindingCnfValuesSupported(List<String> idTokenTokenBindingCnfValuesSupported) {
+        this.idTokenTokenBindingCnfValuesSupported = idTokenTokenBindingCnfValuesSupported;
+    }
+
+    public List<String> getUiLocalesSupported() {
+        return uiLocalesSupported;
+    }
+
+    public void setUiLocalesSupported(List<String> uiLocalesSupported) {
+        this.uiLocalesSupported = uiLocalesSupported;
+    }
+
+    public Boolean getClaimsParameterSupported() {
+        return claimsParameterSupported;
+    }
+
+    public void setClaimsParameterSupported(Boolean claimsParameterSupported) {
+        this.claimsParameterSupported = claimsParameterSupported;
+    }
+
+    public Boolean getRequestParameterSupported() {
+        return requestParameterSupported;
+    }
+
+    public void setRequestParameterSupported(Boolean requestParameterSupported) {
+        this.requestParameterSupported = requestParameterSupported;
+    }
+
+    public Boolean getRequestUriParameterSupported() {
+        return requestUriParameterSupported;
+    }
+
+    public void setRequestUriParameterSupported(Boolean requestUriParameterSupported) {
+        this.requestUriParameterSupported = requestUriParameterSupported;
+    }
+
+    public Boolean getRequireRequestUriRegistration() {
+        return requireRequestUriRegistration;
+    }
+
+    public void setRequireRequestUriRegistration(Boolean requireRequestUriRegistration) {
+        this.requireRequestUriRegistration = requireRequestUriRegistration;
+    }
+
+    public String getOpPolicyUri() {
+        return opPolicyUri;
+    }
+
+    public void setOpPolicyUri(String opPolicyUri) {
+        this.opPolicyUri = opPolicyUri;
+    }
+
+    public String getOpTosUri() {
+        return opTosUri;
+    }
+
+    public void setOpTosUri(String opTosUri) {
+        this.opTosUri = opTosUri;
+    }
+
+    public int getAuthorizationCodeLifetime() {
+        return authorizationCodeLifetime;
+    }
+
+    public void setAuthorizationCodeLifetime(int authorizationCodeLifetime) {
+        this.authorizationCodeLifetime = authorizationCodeLifetime;
+    }
+
+    public int getRefreshTokenLifetime() {
+        return refreshTokenLifetime;
+    }
+
+    public void setRefreshTokenLifetime(int refreshTokenLifetime) {
+        this.refreshTokenLifetime = refreshTokenLifetime;
+    }
+
+    public int getIdTokenLifetime() {
+        return idTokenLifetime;
+    }
+
+    public void setIdTokenLifetime(int idTokenLifetime) {
+        this.idTokenLifetime = idTokenLifetime;
+    }
+
+    public int getAccessTokenLifetime() {
+        return accessTokenLifetime;
+    }
+
+    public void setAccessTokenLifetime(int accessTokenLifetime) {
+        this.accessTokenLifetime = accessTokenLifetime;
+    }
+
+    public int getUmaRptLifetime() {
+        return umaRptLifetime;
+    }
+
+    public void setUmaRptLifetime(int umaRptLifetime) {
+        this.umaRptLifetime = umaRptLifetime;
+    }
+
+    public int getUmaTicketLifetime() {
+        return umaTicketLifetime;
+    }
+
+    public void setUmaTicketLifetime(int umaTicketLifetime) {
+        this.umaTicketLifetime = umaTicketLifetime;
+    }
+
+    public int getUmaResourceLifetime() {
+        return umaResourceLifetime;
+    }
+
+    public void setUmaResourceLifetime(int umaResourceLifetime) {
+        this.umaResourceLifetime = umaResourceLifetime;
+    }
+
+    public int getUmaPctLifetime() {
+        return umaPctLifetime;
+    }
+
+    public void setUmaPctLifetime(int umaPctLifetime) {
+        this.umaPctLifetime = umaPctLifetime;
+    }
+
+    public Boolean getAllowSpontaneousScopes() {
+        if (allowSpontaneousScopes == null) allowSpontaneousScopes = true;
+        return allowSpontaneousScopes;
+    }
+
+    public void setAllowSpontaneousScopes(Boolean allowSpontaneousScopes) {
+        this.allowSpontaneousScopes = allowSpontaneousScopes;
+    }
+
+    public int getSpontaneousScopeLifetime() {
+        return spontaneousScopeLifetime;
+    }
+
+    public void setSpontaneousScopeLifetime(int spontaneousScopeLifetime) {
+        this.spontaneousScopeLifetime = spontaneousScopeLifetime;
+    }
+
+    public int getCleanServiceInterval() {
+        return cleanServiceInterval;
+    }
+
+    public void setCleanServiceInterval(int p_cleanServiceInterval) {
+        cleanServiceInterval = p_cleanServiceInterval;
+    }
+
+    public int getCleanServiceBatchChunkSize() {
+        return cleanServiceBatchChunkSize;
+    }
+
+    public void setCleanServiceBatchChunkSize(int cleanServiceBatchChunkSize) {
+        this.cleanServiceBatchChunkSize = cleanServiceBatchChunkSize;
+    }
+
+    public Boolean getKeyRegenerationEnabled() {
+        return keyRegenerationEnabled;
+    }
+
+    public void setKeyRegenerationEnabled(Boolean keyRegenerationEnabled) {
+        this.keyRegenerationEnabled = keyRegenerationEnabled;
+    }
+
+    public int getKeyRegenerationInterval() {
+        return keyRegenerationInterval;
+    }
+
+    public void setKeyRegenerationInterval(int keyRegenerationInterval) {
+        this.keyRegenerationInterval = keyRegenerationInterval;
+    }
+
+    public String getDefaultSignatureAlgorithm() {
+        return defaultSignatureAlgorithm;
+    }
+
+    public void setDefaultSignatureAlgorithm(String defaultSignatureAlgorithm) {
+        this.defaultSignatureAlgorithm = defaultSignatureAlgorithm;
+    }
+
+    public String getOxOpenIdConnectVersion() {
+        return oxOpenIdConnectVersion;
+    }
+
+    public void setOxOpenIdConnectVersion(String oxOpenIdConnectVersion) {
+        this.oxOpenIdConnectVersion = oxOpenIdConnectVersion;
+    }
+
+    public String getOxId() {
+        return oxId;
+    }
+
+    public void setOxId(String oxId) {
+        this.oxId = oxId;
+    }
+
+    public Boolean getDynamicRegistrationEnabled() {
+        if (dynamicRegistrationEnabled == null) dynamicRegistrationEnabled = false;
+        return dynamicRegistrationEnabled;
+    }
+
+    public void setDynamicRegistrationEnabled(Boolean dynamicRegistrationEnabled) {
+        this.dynamicRegistrationEnabled = dynamicRegistrationEnabled;
+    }
+
+    public int getDynamicRegistrationExpirationTime() {
+        return dynamicRegistrationExpirationTime;
+    }
+
+    public void setDynamicRegistrationExpirationTime(int dynamicRegistrationExpirationTime) {
+        this.dynamicRegistrationExpirationTime = dynamicRegistrationExpirationTime;
+    }
+
+    public Boolean getDynamicRegistrationPersistClientAuthorizations() {
+        return dynamicRegistrationPersistClientAuthorizations;
+    }
+
+    public void setDynamicRegistrationPersistClientAuthorizations(Boolean dynamicRegistrationPersistClientAuthorizations) {
+        this.dynamicRegistrationPersistClientAuthorizations = dynamicRegistrationPersistClientAuthorizations;
+    }
+
+    public Boolean getTrustedClientEnabled() {
+        return trustedClientEnabled;
+    }
+
+    public void setTrustedClientEnabled(Boolean trustedClientEnabled) {
+        this.trustedClientEnabled = trustedClientEnabled;
+    }
+
+    public Boolean getSkipAuthorizationForOpenIdScopeAndPairwiseId() {
+        return skipAuthorizationForOpenIdScopeAndPairwiseId;
+    }
+
+    public void setSkipAuthorizationForOpenIdScopeAndPairwiseId(Boolean skipAuthorizationForOpenIdScopeAndPairwiseId) {
+        this.skipAuthorizationForOpenIdScopeAndPairwiseId = skipAuthorizationForOpenIdScopeAndPairwiseId;
+    }
+
+    public Boolean getDynamicRegistrationScopesParamEnabled() {
+        return dynamicRegistrationScopesParamEnabled;
+    }
+
+    public void setDynamicRegistrationScopesParamEnabled(Boolean dynamicRegistrationScopesParamEnabled) {
+        this.dynamicRegistrationScopesParamEnabled = dynamicRegistrationScopesParamEnabled;
+    }
+
+    public Boolean getDynamicRegistrationDisableFallbackScopesAssigning() {
+        if (dynamicRegistrationDisableFallbackScopesAssigning == null) dynamicRegistrationDisableFallbackScopesAssigning = false;
+        return dynamicRegistrationDisableFallbackScopesAssigning;
+    }
+
+    public void setDynamicRegistrationDisableFallbackScopesAssigning(Boolean dynamicRegistrationDisableFallbackScopesAssigning) {
+        this.dynamicRegistrationDisableFallbackScopesAssigning = dynamicRegistrationDisableFallbackScopesAssigning;
+    }
+
+    public Boolean getPersistIdTokenInLdap() {
+        return persistIdTokenInLdap;
+    }
+
+    public void setPersistIdTokenInLdap(Boolean persistIdTokenInLdap) {
+        this.persistIdTokenInLdap = persistIdTokenInLdap;
+    }
+
+    public Boolean getPersistRefreshTokenInLdap() {
+        return persistRefreshTokenInLdap;
+    }
+
+    public void setPersistRefreshTokenInLdap(Boolean persistRefreshTokenInLdap) {
+        this.persistRefreshTokenInLdap = persistRefreshTokenInLdap;
+    }
+
+    public Boolean getAllowPostLogoutRedirectWithoutValidation() {
+        if (allowPostLogoutRedirectWithoutValidation == null) allowPostLogoutRedirectWithoutValidation = false;
+        return allowPostLogoutRedirectWithoutValidation;
+    }
+
+    public void setAllowPostLogoutRedirectWithoutValidation(Boolean allowPostLogoutRedirectWithoutValidation) {
+        this.allowPostLogoutRedirectWithoutValidation = allowPostLogoutRedirectWithoutValidation;
+    }
+
+    public Boolean getInvalidateSessionCookiesAfterAuthorizationFlow() {
+        if (invalidateSessionCookiesAfterAuthorizationFlow == null) {
+            invalidateSessionCookiesAfterAuthorizationFlow = false;
+        }
+        return invalidateSessionCookiesAfterAuthorizationFlow;
+    }
+
+    public void setInvalidateSessionCookiesAfterAuthorizationFlow(Boolean invalidateSessionCookiesAfterAuthorizationFlow) {
+        this.invalidateSessionCookiesAfterAuthorizationFlow = invalidateSessionCookiesAfterAuthorizationFlow;
+    }
+
+    public Boolean getUseCacheForAllImplicitFlowObjects() {
+        return useCacheForAllImplicitFlowObjects;
+    }
+
+    public void setUseCacheForAllImplicitFlowObjects(Boolean useCacheForAllImplicitFlowObjects) {
+        this.useCacheForAllImplicitFlowObjects = useCacheForAllImplicitFlowObjects;
+    }
+
+    public String getDynamicRegistrationCustomObjectClass() {
+        return dynamicRegistrationCustomObjectClass;
+    }
+
+    public void setDynamicRegistrationCustomObjectClass(String p_dynamicRegistrationCustomObjectClass) {
+        dynamicRegistrationCustomObjectClass = p_dynamicRegistrationCustomObjectClass;
+    }
+
+    public List<String> getPersonCustomObjectClassList() {
+        return personCustomObjectClassList;
+    }
+
+    public void setPersonCustomObjectClassList(List<String> personCustomObjectClassList) {
+        this.personCustomObjectClassList = personCustomObjectClassList;
+    }
+
+    public Boolean getAuthenticationFiltersEnabled() {
+        return authenticationFiltersEnabled;
+    }
+
+    public void setAuthenticationFiltersEnabled(Boolean authenticationFiltersEnabled) {
+        this.authenticationFiltersEnabled = authenticationFiltersEnabled;
+    }
+
+    public Boolean getClientAuthenticationFiltersEnabled() {
+        return clientAuthenticationFiltersEnabled;
+    }
+
+    public void setClientAuthenticationFiltersEnabled(Boolean p_clientAuthenticationFiltersEnabled) {
+        clientAuthenticationFiltersEnabled = p_clientAuthenticationFiltersEnabled;
+    }
+
+    public List<AuthenticationFilter> getAuthenticationFilters() {
+        if (authenticationFilters == null) {
+            authenticationFilters = new ArrayList<AuthenticationFilter>();
+        }
+
+        return authenticationFilters;
+    }
+
+    public List<ClientAuthenticationFilter> getClientAuthenticationFilters() {
+        if (clientAuthenticationFilters == null) {
+            clientAuthenticationFilters = new ArrayList<ClientAuthenticationFilter>();
+        }
+
+        return clientAuthenticationFilters;
+    }
+
+
+    public List<CorsConfigurationFilter> getCorsConfigurationFilters() {
+        if (corsConfigurationFilters == null) {
+            corsConfigurationFilters = new ArrayList<CorsConfigurationFilter>();
+        }
+
+        return corsConfigurationFilters;
+    }
+
+    public int getSessionIdUnusedLifetime() {
+        return sessionIdUnusedLifetime;
+    }
+
+    public void setSessionIdUnusedLifetime(int p_sessionIdUnusedLifetime) {
+        sessionIdUnusedLifetime = p_sessionIdUnusedLifetime;
+    }
+
+    public int getSessionIdUnauthenticatedUnusedLifetime() {
+        return sessionIdUnauthenticatedUnusedLifetime;
+    }
+
+    public void setSessionIdUnauthenticatedUnusedLifetime(int sessionIdUnauthenticatedUnusedLifetime) {
+        this.sessionIdUnauthenticatedUnusedLifetime = sessionIdUnauthenticatedUnusedLifetime;
+    }
+
+    public Boolean getSessionIdPersistOnPromptNone() {
+        return sessionIdPersistOnPromptNone;
+    }
+
+    public void setSessionIdPersistOnPromptNone(Boolean sessionIdPersistOnPromptNone) {
+        this.sessionIdPersistOnPromptNone = sessionIdPersistOnPromptNone;
+    }
+
+    public Boolean getSessionIdRequestParameterEnabled() {
+        if (sessionIdRequestParameterEnabled == null) {
+            sessionIdRequestParameterEnabled = false;
+        }
+        return sessionIdRequestParameterEnabled;
+    }
+
+    public void setSessionIdRequestParameterEnabled(Boolean sessionIdRequestParameterEnabled) {
+        this.sessionIdRequestParameterEnabled = sessionIdRequestParameterEnabled;
+    }
+
+    public int getConfigurationUpdateInterval() {
+        return configurationUpdateInterval;
+    }
+
+    public void setConfigurationUpdateInterval(int p_configurationUpdateInterval) {
+        configurationUpdateInterval = p_configurationUpdateInterval;
+    }
+
+    public String getJsLocation() {
+        return jsLocation;
+    }
+
+    public void setJsLocation(String jsLocation) {
+        this.jsLocation = jsLocation;
+    }
+
+    public String getCssLocation() {
+        return cssLocation;
+    }
+
+    public void setCssLocation(String cssLocation) {
+        this.cssLocation = cssLocation;
+    }
+
+    public String getImgLocation() {
+        return imgLocation;
+    }
+
+    public void setImgLocation(String imgLocation) {
+        this.imgLocation = imgLocation;
+    }
+
+    public int getMetricReporterInterval() {
+        return metricReporterInterval;
+    }
+
+    public void setMetricReporterInterval(int metricReporterInterval) {
+        this.metricReporterInterval = metricReporterInterval;
+    }
+
+    public int getMetricReporterKeepDataDays() {
+        return metricReporterKeepDataDays;
+    }
+
+    public void setMetricReporterKeepDataDays(int metricReporterKeepDataDays) {
+        this.metricReporterKeepDataDays = metricReporterKeepDataDays;
+    }
+
+    public Boolean getMetricReporterEnabled() {
+        return metricReporterEnabled;
+    }
+
+    public void setMetricReporterEnabled(Boolean metricReporterEnabled) {
+        this.metricReporterEnabled = metricReporterEnabled;
+    }
+
+    public String getPairwiseIdType() {
+        return pairwiseIdType;
+    }
+
+    public void setPairwiseIdType(String pairwiseIdType) {
+        this.pairwiseIdType = pairwiseIdType;
+    }
+
+    public String getPairwiseCalculationKey() {
+        return pairwiseCalculationKey;
+    }
+
+    public void setPairwiseCalculationKey(String pairwiseCalculationKey) {
+        this.pairwiseCalculationKey = pairwiseCalculationKey;
+    }
+
+    public String getPairwiseCalculationSalt() {
+        return pairwiseCalculationSalt;
+    }
+
+    public void setPairwiseCalculationSalt(String pairwiseCalculationSalt) {
+        this.pairwiseCalculationSalt = pairwiseCalculationSalt;
+    }
+
+    public Boolean isShareSubjectIdBetweenClientsWithSameSectorId() {
+        return shareSubjectIdBetweenClientsWithSameSectorId;
+    }
+
+    public void setShareSubjectIdBetweenClientsWithSameSectorId(Boolean shareSubjectIdBetweenClientsWithSameSectorId) {
+        this.shareSubjectIdBetweenClientsWithSameSectorId = shareSubjectIdBetweenClientsWithSameSectorId;
+    }
+
+    public WebKeyStorage getWebKeysStorage() {
+        return webKeysStorage;
+    }
+
+    public void setWebKeysStorage(WebKeyStorage webKeysStorage) {
+        this.webKeysStorage = webKeysStorage;
+    }
+
+    public String getDnName() {
+        return dnName;
+    }
+
+    public void setDnName(String dnName) {
+        this.dnName = dnName;
+    }
+
+    public String getKeyStoreFile() {
+        return keyStoreFile;
+    }
+
+    public void setKeyStoreFile(String keyStoreFile) {
+        this.keyStoreFile = keyStoreFile;
+    }
+
+    public String getKeyStoreSecret() {
+        return keyStoreSecret;
+    }
+
+    public void setKeyStoreSecret(String keyStoreSecret) {
+        this.keyStoreSecret = keyStoreSecret;
+    }
+
+    public String getOxElevenTestModeToken() {
+        return oxElevenTestModeToken;
+    }
+
+    public void setOxElevenTestModeToken(String oxElevenTestModeToken) {
+        this.oxElevenTestModeToken = oxElevenTestModeToken;
+    }
+
+    public String getOxElevenGenerateKeyEndpoint() {
+        return oxElevenGenerateKeyEndpoint;
+    }
+
+    public void setOxElevenGenerateKeyEndpoint(String oxElevenGenerateKeyEndpoint) {
+        this.oxElevenGenerateKeyEndpoint = oxElevenGenerateKeyEndpoint;
+    }
+
+    public String getOxElevenSignEndpoint() {
+        return oxElevenSignEndpoint;
+    }
+
+    public void setOxElevenSignEndpoint(String oxElevenSignEndpoint) {
+        this.oxElevenSignEndpoint = oxElevenSignEndpoint;
+    }
+
+    public String getOxElevenVerifySignatureEndpoint() {
+        return oxElevenVerifySignatureEndpoint;
+    }
+
+    public void setOxElevenVerifySignatureEndpoint(String oxElevenVerifySignatureEndpoint) {
+        this.oxElevenVerifySignatureEndpoint = oxElevenVerifySignatureEndpoint;
+    }
+
+    public String getOxElevenDeleteKeyEndpoint() {
+        return oxElevenDeleteKeyEndpoint;
+    }
+
+    public void setOxElevenDeleteKeyEndpoint(String oxElevenDeleteKeyEndpoint) {
+        this.oxElevenDeleteKeyEndpoint = oxElevenDeleteKeyEndpoint;
+    }
+
+    public Boolean getEndSessionWithAccessToken() {
+        return endSessionWithAccessToken;
+    }
+
+    public void setEndSessionWithAccessToken(Boolean endSessionWithAccessToken) {
+        this.endSessionWithAccessToken = endSessionWithAccessToken;
+    }
+
+    public String getCookieDomain() {
+		return cookieDomain;
+	}
+
+	public void setCookieDomain(String cookieDomain) {
+		this.cookieDomain = cookieDomain;
+	}
+
+	public Boolean getEnabledOAuthAuditLogging() {
+        return enabledOAuthAuditLogging;
+    }
+
+    public void setEnabledOAuthAuditLogging(Boolean enabledOAuthAuditLogging) {
+        this.enabledOAuthAuditLogging = enabledOAuthAuditLogging;
+    }
+
+    public Set<String> getJmsBrokerURISet() {
+        return jmsBrokerURISet;
+    }
+
+    public void setJmsBrokerURISet(Set<String> jmsBrokerURISet) {
+        this.jmsBrokerURISet = jmsBrokerURISet;
+    }
+
+    public String getJmsUserName() {
+        return jmsUserName;
+    }
+
+    public void setJmsUserName(String jmsUserName) {
+        this.jmsUserName = jmsUserName;
+    }
+
+    public String getJmsPassword() {
+        return jmsPassword;
+    }
+
+    public void setJmsPassword(String jmsPassword) {
+        this.jmsPassword = jmsPassword;
+    }
+
+    public Boolean getAllowWildcardRedirectUri() {
+        return allowWildcardRedirectUri;
+    }
+
+    public void setAllowWildcardRedirectUri(Boolean allowWildcardRedirectUri) {
+        this.allowWildcardRedirectUri = allowWildcardRedirectUri;
+    }
+
+    public List<String> getClientWhiteList() {
+        return clientWhiteList;
+    }
+
+    public void setClientWhiteList(List<String> clientWhiteList) {
+        this.clientWhiteList = clientWhiteList;
+    }
+
+    public List<String> getClientBlackList() {
+        return clientBlackList;
+    }
+
+    public void setClientBlackList(List<String> clientBlackList) {
+        this.clientBlackList = clientBlackList;
+    }
+
+    public Boolean getLegacyIdTokenClaims() {
+        return legacyIdTokenClaims;
+    }
+
+    public void setLegacyIdTokenClaims(Boolean legacyIdTokenClaims) {
+        this.legacyIdTokenClaims = legacyIdTokenClaims;
+    }
+
+    public Boolean getCustomHeadersWithAuthorizationResponse() {
+        if (customHeadersWithAuthorizationResponse == null) {
+            return false;
+        }
+
+        return customHeadersWithAuthorizationResponse;
+    }
+
+    public void setCustomHeadersWithAuthorizationResponse(Boolean customHeadersWithAuthorizationResponse) {
+        this.customHeadersWithAuthorizationResponse = customHeadersWithAuthorizationResponse;
+    }
+
+    public Boolean getUpdateUserLastLogonTime() {
+        return updateUserLastLogonTime != null ? updateUserLastLogonTime : false;
+    }
+
+    public void setUpdateUserLastLogonTime(Boolean updateUserLastLogonTime) {
+        this.updateUserLastLogonTime = updateUserLastLogonTime;
+    }
+
+    public Boolean getUpdateClientAccessTime() {
+        return updateClientAccessTime != null ? updateClientAccessTime : false;
+    }
+
+    public void setUpdateClientAccessTime(Boolean updateClientAccessTime) {
+        this.updateClientAccessTime = updateClientAccessTime;
+    }
+
+    public Boolean getHttpLoggingEnabled() {
+        return httpLoggingEnabled;
+    }
+
+    public void setHttpLoggingEnabled(Boolean httpLoggingEnabled) {
+        this.httpLoggingEnabled = httpLoggingEnabled;
+    }
+
+    public Set<String> getHttpLoggingExludePaths() {
+        return httpLoggingExludePaths;
+    }
+
+    public void setHttpLoggingExludePaths(Set<String> httpLoggingExludePaths) {
+        this.httpLoggingExludePaths = httpLoggingExludePaths;
+    }
+
+    public String getLoggingLevel() {
+        return loggingLevel;
+    }
+
+    public void setLoggingLevel(String loggingLevel) {
+        this.loggingLevel = loggingLevel;
+    }
+
+    public String getLoggingLayout() {
+        return loggingLayout;
+    }
+
+    public void setLoggingLayout(String loggingLayout) {
+        this.loggingLayout = loggingLayout;
+    }
+
+    public Boolean getEnableClientGrantTypeUpdate() {
+        return enableClientGrantTypeUpdate;
+    }
+
+    public void setEnableClientGrantTypeUpdate(Boolean enableClientGrantTypeUpdate) {
+        this.enableClientGrantTypeUpdate = enableClientGrantTypeUpdate;
+    }
+
+    public Set<GrantType> getDynamicGrantTypeDefault() {
+        return dynamicGrantTypeDefault;
+    }
+
+    public void setDynamicGrantTypeDefault(Set<GrantType> dynamicGrantTypeDefault) {
+        this.dynamicGrantTypeDefault = dynamicGrantTypeDefault;
+    }
+
+    /**
+     * @return session_id lifetime. If null or value is zero or less then session_id lifetime is not set and will expire when browser session ends.
+     */
+    public Integer getSessionIdLifetime() {
+        return sessionIdLifetime;
+    }
+
+    public void setSessionIdLifetime(Integer sessionIdLifetime) {
+        this.sessionIdLifetime = sessionIdLifetime;
+    }
+
+    public Integer getServerSessionIdLifetime() {
+        return serverSessionIdLifetime;
+    }
+
+    public void setServerSessionIdLifetime(Integer serverSessionIdLifetime) {
+        this.serverSessionIdLifetime = serverSessionIdLifetime;
+    }
+
+    public Boolean getLogClientIdOnClientAuthentication() {
+        return logClientIdOnClientAuthentication;
+    }
+
+    public void setLogClientIdOnClientAuthentication(Boolean logClientIdOnClientAuthentication) {
+        this.logClientIdOnClientAuthentication = logClientIdOnClientAuthentication;
+    }
+
+    public Boolean getLogClientNameOnClientAuthentication() {
+        return logClientNameOnClientAuthentication;
+    }
+
+    public void setLogClientNameOnClientAuthentication(Boolean logClientNameOnClientAuthentication) {
+        this.logClientNameOnClientAuthentication = logClientNameOnClientAuthentication;
+    }
+
+    public String getExternalLoggerConfiguration() {
+        return externalLoggerConfiguration;
+    }
+
+    public void setExternalLoggerConfiguration(String externalLoggerConfiguration) {
+        this.externalLoggerConfiguration = externalLoggerConfiguration;
+    }
+
+    public Set<String> getAuthorizationRequestCustomAllowedParameters() {
+        return authorizationRequestCustomAllowedParameters;
+    }
+
+    public void setAuthorizationRequestCustomAllowedParameters(Set<String> authorizationRequestCustomAllowedParameters) {
+        this.authorizationRequestCustomAllowedParameters = authorizationRequestCustomAllowedParameters;
+    }
+
+    public Boolean getLegacyDynamicRegistrationScopeParam() {
+        return Boolean.TRUE.equals(legacyDynamicRegistrationScopeParam);
+    }
+
+    public void setLegacyDynamicRegistrationScopeParam(Boolean legacyDynamicRegistrationScopeParam) {
+        this.legacyDynamicRegistrationScopeParam = legacyDynamicRegistrationScopeParam;
+    }
+
+    public Boolean getOpenidScopeBackwardCompatibility() {
+        return openidScopeBackwardCompatibility;
+    }
+
+    public void setOpenidScopeBackwardCompatibility(Boolean openidScopeBackwardCompatibility) {
+        this.openidScopeBackwardCompatibility = openidScopeBackwardCompatibility;
+    }
+
+    public Boolean getDisableU2fEndpoint() {
+        return disableU2fEndpoint;
+    }
+
+    public void setDisableU2fEndpoint(Boolean disableU2fEndpoint) {
+        this.disableU2fEndpoint = disableU2fEndpoint;
+    }
+
+    public AuthenticationProtectionConfiguration getAuthenticationProtectionConfiguration() {
+        return authenticationProtectionConfiguration;
+    }
+
+    public void setAuthenticationProtectionConfiguration(AuthenticationProtectionConfiguration authenticationProtectionConfiguration) {
+        this.authenticationProtectionConfiguration = authenticationProtectionConfiguration;
+    }
+
+    public ErrorHandlingMethod getErrorHandlingMethod() {
+        return errorHandlingMethod;
+    }
+
+    public void setErrorHandlingMethod(ErrorHandlingMethod errorHandlingMethod) {
+        this.errorHandlingMethod = errorHandlingMethod;
+    }
+
+    public Boolean getUseLocalCache() {
+        return useLocalCache;
+    }
+
+    public void setUseLocalCache(Boolean useLocalCache) {
+        this.useLocalCache = useLocalCache;
+    }
+
+    public Boolean getKeepAuthenticatorAttributesOnAcrChange() {
+		return keepAuthenticatorAttributesOnAcrChange;
+	}
+
+	public void setKeepAuthenticatorAttributesOnAcrChange(Boolean keepAuthenticatorAttributesOnAcrChange) {
+		this.keepAuthenticatorAttributesOnAcrChange = keepAuthenticatorAttributesOnAcrChange;
+	}
+
+    public Boolean getDisableAuthnForMaxAgeZero() {
+        return disableAuthnForMaxAgeZero;
+    }
+
+    public void setDisableAuthnForMaxAgeZero(Boolean disableAuthnForMaxAgeZero) {
+        this.disableAuthnForMaxAgeZero = disableAuthnForMaxAgeZero;
+    }
+
+    public String getBackchannelClientId() {
+        return backchannelClientId;
+    }
+
+    public void setBackchannelClientId(String backchannelClientId) {
+        this.backchannelClientId = backchannelClientId;
+    }
+
+    public String getBackchannelRedirectUri() {
+        return backchannelRedirectUri;
+    }
+
+    public void setBackchannelRedirectUri(String backchannelRedirectUri) {
+        this.backchannelRedirectUri = backchannelRedirectUri;
+    }
+
+    public String getBackchannelAuthenticationEndpoint() {
+        return backchannelAuthenticationEndpoint;
+    }
+
+    public void setBackchannelAuthenticationEndpoint(String backchannelAuthenticationEndpoint) {
+        this.backchannelAuthenticationEndpoint = backchannelAuthenticationEndpoint;
+    }
+
+    public String getBackchannelDeviceRegistrationEndpoint() {
+        return backchannelDeviceRegistrationEndpoint;
+    }
+
+    public void setBackchannelDeviceRegistrationEndpoint(String backchannelDeviceRegistrationEndpoint) {
+        this.backchannelDeviceRegistrationEndpoint = backchannelDeviceRegistrationEndpoint;
+    }
+
+    public List<String> getBackchannelTokenDeliveryModesSupported() {
+        if (backchannelTokenDeliveryModesSupported == null) backchannelTokenDeliveryModesSupported = Lists.newArrayList();
+        return backchannelTokenDeliveryModesSupported;
+    }
+
+    public void setBackchannelTokenDeliveryModesSupported(List<String> backchannelTokenDeliveryModesSupported) {
+        this.backchannelTokenDeliveryModesSupported = backchannelTokenDeliveryModesSupported;
+    }
+
+    public List<String> getBackchannelAuthenticationRequestSigningAlgValuesSupported() {
+        if (backchannelAuthenticationRequestSigningAlgValuesSupported == null) backchannelAuthenticationRequestSigningAlgValuesSupported = Lists.newArrayList();
+        return backchannelAuthenticationRequestSigningAlgValuesSupported;
+    }
+
+    public void setBackchannelAuthenticationRequestSigningAlgValuesSupported(List<String> backchannelAuthenticationRequestSigningAlgValuesSupported) {
+        this.backchannelAuthenticationRequestSigningAlgValuesSupported = backchannelAuthenticationRequestSigningAlgValuesSupported;
+    }
+
+    public Boolean getBackchannelUserCodeParameterSupported() {
+        return backchannelUserCodeParameterSupported;
+    }
+
+    public void setBackchannelUserCodeParameterSupported(Boolean backchannelUserCodeParameterSupported) {
+        this.backchannelUserCodeParameterSupported = backchannelUserCodeParameterSupported;
+    }
+
+    public String getBackchannelBindingMessagePattern() {
+        return backchannelBindingMessagePattern;
+    }
+
+    public void setBackchannelBindingMessagePattern(String backchannelBindingMessagePattern) {
+        this.backchannelBindingMessagePattern = backchannelBindingMessagePattern;
+    }
+
+    /**
+     * Returns a number with a positive integer value indicating the expiration time
+     * of the "auth_req_id" in seconds since the authentication request was received.
+     *
+     * @return Default expires_in value.
+     */
+    public int getBackchannelAuthenticationResponseExpiresIn() {
+        return backchannelAuthenticationResponseExpiresIn;
+    }
+
+    public void setBackchannelAuthenticationResponseExpiresIn(int backchannelAuthenticationResponseExpiresIn) {
+        this.backchannelAuthenticationResponseExpiresIn = backchannelAuthenticationResponseExpiresIn;
+    }
+
+    /**
+     * Returns a number with a positive integer value indicating the minimum amount
+     * of time in seconds that the Client must wait between polling requests to the
+     * token endpoint.
+     * This parameter will only be present if the Client is registered to use the
+     * Poll or Ping modes.
+     *
+     * @return Interval value.
+     */
+    public int getBackchannelAuthenticationResponseInterval() {
+        return backchannelAuthenticationResponseInterval;
+    }
+
+    public void setBackchannelAuthenticationResponseInterval(int backchannelAuthenticationResponseInterval) {
+        this.backchannelAuthenticationResponseInterval = backchannelAuthenticationResponseInterval;
+    }
+
+    public List<String> getBackchannelLoginHintClaims() {
+        return backchannelLoginHintClaims;
+    }
+
+    public void setBackchannelLoginHintClaims(List<String> backchannelLoginHintClaims) {
+        this.backchannelLoginHintClaims = backchannelLoginHintClaims;
+    }
+
+    public CIBAEndUserNotificationConfig getCibaEndUserNotificationConfig() {
+        return cibaEndUserNotificationConfig;
+    }
+
+    public void setCibaEndUserNotificationConfig(CIBAEndUserNotificationConfig cibaEndUserNotificationConfig) {
+        this.cibaEndUserNotificationConfig = cibaEndUserNotificationConfig;
+    }
+
+    public List<String> getDynamicRegistrationAllowedPasswordGrantScopes() {
+        if (dynamicRegistrationAllowedPasswordGrantScopes == null) dynamicRegistrationAllowedPasswordGrantScopes = Lists.newArrayList();
+        return dynamicRegistrationAllowedPasswordGrantScopes;
+    }
+
+    public void setDynamicRegistrationAllowedPasswordGrantScopes(List<String> dynamicRegistrationAllowedPasswordGrantScopes) {
+        this.dynamicRegistrationAllowedPasswordGrantScopes = dynamicRegistrationAllowedPasswordGrantScopes;
+    }
+
+    /**
+     * Returns a flag to determinate if oxAuth supports password grant type for
+     * dynamic client registration.
+     * @return Boolean, true if it supports, false if it doesn't support.
+     */
+    public Boolean getDynamicRegistrationPasswordGrantTypeEnabled() {
+        return dynamicRegistrationPasswordGrantTypeEnabled;
+    }
+
+    /**
+     * This method sets the flag that define if oxAuth supports or not password
+     * grant type for dynamic client registration.
+     * @param dynamicRegistrationPasswordGrantTypeEnabled Boolean value for
+     *                                                    the flag.
+     */
+    public void setDynamicRegistrationPasswordGrantTypeEnabled(Boolean dynamicRegistrationPasswordGrantTypeEnabled) {
+        this.dynamicRegistrationPasswordGrantTypeEnabled = dynamicRegistrationPasswordGrantTypeEnabled;
+    }
+
+    public int getBackchannelRequestsProcessorJobIntervalSec() {
+        return backchannelRequestsProcessorJobIntervalSec;
+    }
+
+    public void setBackchannelRequestsProcessorJobIntervalSec(int backchannelRequestsProcessorJobIntervalSec) {
+        this.backchannelRequestsProcessorJobIntervalSec = backchannelRequestsProcessorJobIntervalSec;
+    }
+
+    public int getCibaGrantLifeExtraTimeSec() {
+        return cibaGrantLifeExtraTimeSec;
+    }
+
+    public void setCibaGrantLifeExtraTimeSec(int cibaGrantLifeExtraTimeSec) {
+        this.cibaGrantLifeExtraTimeSec = cibaGrantLifeExtraTimeSec;
+    }
+
+    public int getCibaMaxExpirationTimeAllowedSec() {
+        return cibaMaxExpirationTimeAllowedSec;
+    }
+
+    public void setCibaMaxExpirationTimeAllowedSec(int cibaMaxExpirationTimeAllowedSec) {
+        this.cibaMaxExpirationTimeAllowedSec = cibaMaxExpirationTimeAllowedSec;
+    }
+
+    public int getBackchannelRequestsProcessorJobChunkSize() {
+        return backchannelRequestsProcessorJobChunkSize;
+    }
+
+    public void setBackchannelRequestsProcessorJobChunkSize(int backchannelRequestsProcessorJobChunkSize) {
+        this.backchannelRequestsProcessorJobChunkSize = backchannelRequestsProcessorJobChunkSize;
+    }
+
+    public Boolean getClientRegDefaultToCodeFlowWithRefresh() {
+        if (clientRegDefaultToCodeFlowWithRefresh == null) clientRegDefaultToCodeFlowWithRefresh = false;
+        return clientRegDefaultToCodeFlowWithRefresh;
+    }
+
+    public void setClientRegDefaultToCodeFlowWithRefresh(Boolean clientRegDefaultToCodeFlowWithRefresh) {
+        this.clientRegDefaultToCodeFlowWithRefresh = clientRegDefaultToCodeFlowWithRefresh;
+    }
+
+    public Boolean getGrantTypesAndResponseTypesAutofixEnabled() {
+        if (grantTypesAndResponseTypesAutofixEnabled == null) grantTypesAndResponseTypesAutofixEnabled = false;
+        return grantTypesAndResponseTypesAutofixEnabled;
+    }
+
+    public void setGrantTypesAndResponseTypesAutofixEnabled(Boolean grantTypesAndResponseTypesAutofixEnabled) {
+        this.grantTypesAndResponseTypesAutofixEnabled = grantTypesAndResponseTypesAutofixEnabled;
+    }
+
+    public String getDeviceAuthzEndpoint() {
+        return deviceAuthzEndpoint;
+    }
+
+    public void setDeviceAuthzEndpoint(String deviceAuthzEndpoint) {
+        this.deviceAuthzEndpoint = deviceAuthzEndpoint;
+    }
+
+    public int getDeviceAuthzRequestExpiresIn() {
+        return deviceAuthzRequestExpiresIn;
+    }
+
+    public void setDeviceAuthzRequestExpiresIn(int deviceAuthzRequestExpiresIn) {
+        this.deviceAuthzRequestExpiresIn = deviceAuthzRequestExpiresIn;
+    }
+
+    public int getDeviceAuthzTokenPollInterval() {
+        return deviceAuthzTokenPollInterval;
+    }
+
+    public void setDeviceAuthzTokenPollInterval(int deviceAuthzTokenPollInterval) {
+        this.deviceAuthzTokenPollInterval = deviceAuthzTokenPollInterval;
+    }
+
+    public String getDeviceAuthzResponseTypeToProcessAuthz() {
+        return deviceAuthzResponseTypeToProcessAuthz;
+    }
+
+    public void setDeviceAuthzResponseTypeToProcessAuthz(String deviceAuthzResponseTypeToProcessAuthz) {
+        this.deviceAuthzResponseTypeToProcessAuthz = deviceAuthzResponseTypeToProcessAuthz;
+    }
+
+    public Boolean getCibaEnabled() {
+        if (cibaEnabled == null) {
+            return false;
+        }
+        return cibaEnabled;
+    }
+
+    public void setCibaEnabled(Boolean cibaEnabled) {
+        this.cibaEnabled = cibaEnabled;
+    }
+
+    public List<String> getRequestUriBlockList() {
+        if (requestUriBlockList == null) requestUriBlockList = Lists.newArrayList();
+        return requestUriBlockList;
+    }
+
+    public void setRequestUriBlockList(List<String> requestUriBlockList) {
+        this.requestUriBlockList = requestUriBlockList;
+    }
+
+    public Boolean getRequestUriHashVerificationEnabled() {
+        return requestUriHashVerificationEnabled != null ? requestUriHashVerificationEnabled : false;
+    }
+
+    public void setRequestUriHashVerificationEnabled(Boolean requestUriHashVerificationEnabled) {
+        this.requestUriHashVerificationEnabled = requestUriHashVerificationEnabled;
+    }
+
+    public Boolean getReturn200OnClientRegistration() {
+        return return200OnClientRegistration;
+    }
+
+    public void setReturn200OnClientRegistration(Boolean return200OnClientRegistration) {
+        this.return200OnClientRegistration = return200OnClientRegistration;
+    }
+
+    public Map<String, String> getDateFormatterPatterns() {
+        return dateFormatterPatterns;
+    }
+
+    public void setDateFormatterPatterns(Map<String, String> dateFormatterPatterns) {
+        this.dateFormatterPatterns = dateFormatterPatterns;
+    }
+
+    public Boolean isAllowBlankValuesInDiscoveryResponse() {
+        if (allowBlankValuesInDiscoveryResponse == null) allowBlankValuesInDiscoveryResponse = false;
+        return allowBlankValuesInDiscoveryResponse;
+    }
+
+    public void setAllowBlankValuesInDiscoveryResponse(Boolean allowBlankValuesInDiscoveryResponse) {
+        this.allowBlankValuesInDiscoveryResponse = allowBlankValuesInDiscoveryResponse;
+    }
+
+	public Boolean isSkipAuthenticationFilterOptionsMethod() {
+        if (skipAuthenticationFilterOptionsMethod == null) skipAuthenticationFilterOptionsMethod = false;
+		return skipAuthenticationFilterOptionsMethod;
+	}
+
+	public void setSkipAuthenticationFilterOptionsMethod(Boolean skipAuthenticationFilterOptionsMethod) {
+		this.skipAuthenticationFilterOptionsMethod = skipAuthenticationFilterOptionsMethod;
+	}
+
+}
\ No newline at end of file
diff --git a/oxAuth/Model/src/main/java/org/gluu/oxauth/model/configuration/AuthenticationFilter.java b/oxAuth/Model/src/main/java/org/gluu/oxauth/model/configuration/AuthenticationFilter.java
new file mode 100644
index 00000000..deed2e3b
--- /dev/null
+++ b/oxAuth/Model/src/main/java/org/gluu/oxauth/model/configuration/AuthenticationFilter.java
@@ -0,0 +1,23 @@
+/*
+ * oxAuth is available under the MIT License (2008). See http://opensource.org/licenses/MIT for full text.
+ *
+ * Copyright (c) 2014, Gluu
+ */
+
+package org.gluu.oxauth.model.configuration;
+
+import javax.xml.bind.annotation.XmlAccessType;
+import javax.xml.bind.annotation.XmlAccessorType;
+import javax.xml.bind.annotation.XmlType;
+
+/**
+ * Represents the authentication filter.
+ *
+ * @author Yuriy Movchan
+ * @author Javier Rojas Blum
+ * @version April 13, 2016
+ */
+@XmlAccessorType(XmlAccessType.FIELD)
+@XmlType(name = "auth-filter")
+public class AuthenticationFilter extends BaseFilter {
+}
diff --git a/oxAuth/Model/src/main/java/org/gluu/oxauth/model/configuration/AuthenticationProtectionConfiguration.java b/oxAuth/Model/src/main/java/org/gluu/oxauth/model/configuration/AuthenticationProtectionConfiguration.java
new file mode 100644
index 00000000..b24c0176
--- /dev/null
+++ b/oxAuth/Model/src/main/java/org/gluu/oxauth/model/configuration/AuthenticationProtectionConfiguration.java
@@ -0,0 +1,52 @@
+package org.gluu.oxauth.model.configuration;
+
+import com.fasterxml.jackson.annotation.JsonIgnoreProperties;
+
+/**
+ * Brute Force authentication configuration
+ *
+ * @author Yuriy Movchan Date: 08/22/2018
+ */
+@JsonIgnoreProperties(ignoreUnknown = true)
+public class AuthenticationProtectionConfiguration {
+
+    private int attemptExpiration;
+    private int maximumAllowedAttemptsWithoutDelay;
+
+    private int delayTime;
+    
+    private Boolean bruteForceProtectionEnabled;
+
+    public final int getAttemptExpiration() {
+        return attemptExpiration;
+    }
+
+    public final void setAttemptExpiration(int attemptExpiration) {
+        this.attemptExpiration = attemptExpiration;
+    }
+
+    public final int getMaximumAllowedAttemptsWithoutDelay() {
+        return maximumAllowedAttemptsWithoutDelay;
+    }
+
+    public final void setMaximumAllowedAttemptsWithoutDelay(int maximumAllowedAttemptsWithoutDelay) {
+        this.maximumAllowedAttemptsWithoutDelay = maximumAllowedAttemptsWithoutDelay;
+    }
+
+    public final int getDelayTime() {
+        return delayTime;
+    }
+
+    public final void setDelayTime(int delayTime) {
+        this.delayTime = delayTime;
+    }
+
+    public final Boolean getBruteForceProtectionEnabled() {
+        return bruteForceProtectionEnabled;
+    }
+
+    public final void setBruteForceProtectionEnabled(Boolean bruteForceProtectionEnabled) {
+        this.bruteForceProtectionEnabled = bruteForceProtectionEnabled;
+    }
+
+}
diff --git a/oxAuth/Model/src/main/java/org/gluu/oxauth/model/configuration/BaseFilter.java b/oxAuth/Model/src/main/java/org/gluu/oxauth/model/configuration/BaseFilter.java
new file mode 100644
index 00000000..9b7c104d
--- /dev/null
+++ b/oxAuth/Model/src/main/java/org/gluu/oxauth/model/configuration/BaseFilter.java
@@ -0,0 +1,71 @@
+/*
+ * oxAuth is available under the MIT License (2008). See http://opensource.org/licenses/MIT for full text.
+ *
+ * Copyright (c) 2014, Gluu
+ */
+
+package org.gluu.oxauth.model.configuration;
+
+import javax.xml.bind.annotation.XmlAccessType;
+import javax.xml.bind.annotation.XmlAccessorType;
+import javax.xml.bind.annotation.XmlElement;
+
+/**
+ * @author Yuriy Movchan
+ * @author Yuriy Zabrovarnyy
+ * @author Javier Rojas Blum
+ * @version April 13, 2016
+ */
+@XmlAccessorType(XmlAccessType.FIELD)
+public class BaseFilter {
+
+    @XmlElement(name = "filter", required = true)
+    private String filter;
+
+    @XmlElement(name = "bind", required = false)
+    private Boolean bind;
+
+    @XmlElement(name = "bind-password-attribute", required = false)
+    private String bindPasswordAttribute;
+
+    @XmlElement(name = "base-dn", required = true)
+    private String baseDn;
+
+    public String getFilter() {
+        return filter;
+    }
+
+    public void setFilter(String filter) {
+        this.filter = filter;
+    }
+
+    public Boolean getBind() {
+        return bind;
+    }
+
+    public void setBind(Boolean bind) {
+        this.bind = bind;
+    }
+
+    public String getBaseDn() {
+        return baseDn;
+    }
+
+    public void setBaseDn(String baseDn) {
+        this.baseDn = baseDn;
+    }
+
+    public String getBindPasswordAttribute() {
+        return bindPasswordAttribute;
+    }
+
+    public void setBindPasswordAttribute(String bindPasswordAttribute) {
+        this.bindPasswordAttribute = bindPasswordAttribute;
+    }
+
+    @Override
+    public String toString() {
+        return String.format("BaseFilter [filter=%s, bind=%s, bindPasswordAttribute=%s, baseDn=%s]", filter, bind, (bindPasswordAttribute == null ? null : "not_null"), baseDn);
+    }
+
+}
diff --git a/oxAuth/Model/src/main/java/org/gluu/oxauth/model/configuration/CIBAEndUserNotificationConfig.java b/oxAuth/Model/src/main/java/org/gluu/oxauth/model/configuration/CIBAEndUserNotificationConfig.java
new file mode 100644
index 00000000..c23b3377
--- /dev/null
+++ b/oxAuth/Model/src/main/java/org/gluu/oxauth/model/configuration/CIBAEndUserNotificationConfig.java
@@ -0,0 +1,105 @@
+/*
+ * oxAuth is available under the MIT License (2008). See http://opensource.org/licenses/MIT for full text.
+ *
+ * Copyright (c) 2014, Gluu
+ */
+
+package org.gluu.oxauth.model.configuration;
+
+/**
+ * @author Javier Rojas Blum
+ * @version August 20, 2019
+ */
+public class CIBAEndUserNotificationConfig {
+
+    private String apiKey;
+    private String authDomain;
+    private String databaseURL;
+    private String projectId;
+    private String storageBucket;
+    private String messagingSenderId;
+    private String appId;
+    private String notificationUrl;
+    private String notificationKey;
+    private String publicVapidKey;
+
+    public String getApiKey() {
+        return apiKey;
+    }
+
+    public void setApiKey(String apiKey) {
+        this.apiKey = apiKey;
+    }
+
+    public String getAuthDomain() {
+        return authDomain;
+    }
+
+    public void setAuthDomain(String authDomain) {
+        this.authDomain = authDomain;
+    }
+
+    public String getDatabaseURL() {
+        return databaseURL;
+    }
+
+    public void setDatabaseURL(String databaseURL) {
+        this.databaseURL = databaseURL;
+    }
+
+    public String getProjectId() {
+        return projectId;
+    }
+
+    public void setProjectId(String projectId) {
+        this.projectId = projectId;
+    }
+
+    public String getStorageBucket() {
+        return storageBucket;
+    }
+
+    public void setStorageBucket(String storageBucket) {
+        this.storageBucket = storageBucket;
+    }
+
+    public String getMessagingSenderId() {
+        return messagingSenderId;
+    }
+
+    public void setMessagingSenderId(String messagingSenderId) {
+        this.messagingSenderId = messagingSenderId;
+    }
+
+    public String getAppId() {
+        return appId;
+    }
+
+    public void setAppId(String appId) {
+        this.appId = appId;
+    }
+
+    public String getNotificationUrl() {
+        return notificationUrl;
+    }
+
+    public void setNotificationUrl(String notificationUrl) {
+        this.notificationUrl = notificationUrl;
+    }
+
+    public String getNotificationKey() {
+        return notificationKey;
+    }
+
+    public void setNotificationKey(String notificationKey) {
+        this.notificationKey = notificationKey;
+    }
+
+    public String getPublicVapidKey() {
+        return publicVapidKey;
+    }
+
+    public void setPublicVapidKey(String publicVapidKey) {
+        this.publicVapidKey = publicVapidKey;
+    }
+}
\ No newline at end of file
diff --git a/oxAuth/Model/src/main/java/org/gluu/oxauth/model/configuration/ClientAuthenticationFilter.java b/oxAuth/Model/src/main/java/org/gluu/oxauth/model/configuration/ClientAuthenticationFilter.java
new file mode 100644
index 00000000..ba1e113e
--- /dev/null
+++ b/oxAuth/Model/src/main/java/org/gluu/oxauth/model/configuration/ClientAuthenticationFilter.java
@@ -0,0 +1,21 @@
+/*
+ * oxAuth is available under the MIT License (2008). See http://opensource.org/licenses/MIT for full text.
+ *
+ * Copyright (c) 2014, Gluu
+ */
+
+package org.gluu.oxauth.model.configuration;
+
+import javax.xml.bind.annotation.XmlAccessType;
+import javax.xml.bind.annotation.XmlAccessorType;
+import javax.xml.bind.annotation.XmlType;
+
+/**
+ * @author Yuriy Zabrovarnyy
+ * @author Javier Rojas Blum
+ * @version April 13, 2016
+ */
+@XmlAccessorType(XmlAccessType.FIELD)
+@XmlType(name = "client-auth-filter")
+public class ClientAuthenticationFilter extends BaseFilter {
+}
diff --git a/oxAuth/Model/src/main/java/org/gluu/oxauth/model/configuration/Configuration.java b/oxAuth/Model/src/main/java/org/gluu/oxauth/model/configuration/Configuration.java
new file mode 100644
index 00000000..b43e6347
--- /dev/null
+++ b/oxAuth/Model/src/main/java/org/gluu/oxauth/model/configuration/Configuration.java
@@ -0,0 +1,10 @@
+package org.gluu.oxauth.model.configuration;
+
+/**
+ * base interface for all oxAuth configurations
+ *
+ * @author Yuriy Movchan
+ * @version 04/12/2017
+ */
+public interface Configuration {
+}
diff --git a/oxAuth/Model/src/main/java/org/gluu/oxauth/model/configuration/ConfigurationResponseClaim.java b/oxAuth/Model/src/main/java/org/gluu/oxauth/model/configuration/ConfigurationResponseClaim.java
new file mode 100644
index 00000000..4c349390
--- /dev/null
+++ b/oxAuth/Model/src/main/java/org/gluu/oxauth/model/configuration/ConfigurationResponseClaim.java
@@ -0,0 +1,77 @@
+/*
+ * oxAuth is available under the MIT License (2008). See http://opensource.org/licenses/MIT for full text.
+ *
+ * Copyright (c) 2014, Gluu
+ */
+
+package org.gluu.oxauth.model.configuration;
+
+/**
+ * @author Javier Rojas Blum
+ * @version August 20, 2019
+ */
+public interface ConfigurationResponseClaim {
+
+    String ISSUER = "issuer";
+    String AUTHORIZATION_ENDPOINT = "authorization_endpoint";
+    String TOKEN_ENDPOINT = "token_endpoint";
+    @Deprecated // remove in 5.x version
+    String TOKEN_REVOCATION_ENDPOINT = "token_revocation_endpoint";
+    String REVOCATION_ENDPOINT = "revocation_endpoint";
+    String SESSION_REVOCATION_ENDPOINT = "session_revocation_endpoint";
+    String USER_INFO_ENDPOINT = "userinfo_endpoint";
+    String CLIENT_INFO_ENDPOINT = "clientinfo_endpoint";
+    String CHECK_SESSION_IFRAME = "check_session_iframe";
+    String END_SESSION_ENDPOINT = "end_session_endpoint";
+    String JWKS_URI = "jwks_uri";
+    String REGISTRATION_ENDPOINT = "registration_endpoint";
+    String ID_GENERATION_ENDPOINT = "id_generation_endpoint";
+    String INTROSPECTION_ENDPOINT = "introspection_endpoint";
+    String DEVICE_AUTHZ_ENDPOINT = "device_authorization_endpoint";
+    String SCOPES_SUPPORTED = "scopes_supported";
+    String SCOPE_TO_CLAIMS_MAPPING = "scope_to_claims_mapping";
+    String RESPONSE_TYPES_SUPPORTED = "response_types_supported";
+    String RESPONSE_MODES_SUPPORTED = "response_modes_supported";
+    String GRANT_TYPES_SUPPORTED = "grant_types_supported";
+    String ACR_VALUES_SUPPORTED = "acr_values_supported";
+    String SUBJECT_TYPES_SUPPORTED = "subject_types_supported";
+    String USER_INFO_SIGNING_ALG_VALUES_SUPPORTED = "userinfo_signing_alg_values_supported";
+    String USER_INFO_ENCRYPTION_ALG_VALUES_SUPPORTED = "userinfo_encryption_alg_values_supported";
+    String USER_INFO_ENCRYPTION_ENC_VALUES_SUPPORTED = "userinfo_encryption_enc_values_supported";
+    String ID_TOKEN_SIGNING_ALG_VALUES_SUPPORTED = "id_token_signing_alg_values_supported";
+    String ID_TOKEN_ENCRYPTION_ALG_VALUES_SUPPORTED = "id_token_encryption_alg_values_supported";
+    String ID_TOKEN_ENCRYPTION_ENC_VALUES_SUPPORTED = "id_token_encryption_enc_values_supported";
+    String REQUEST_OBJECT_SIGNING_ALG_VALUES_SUPPORTED = "request_object_signing_alg_values_supported";
+    String REQUEST_OBJECT_ENCRYPTION_ALG_VALUES_SUPPORTED = "request_object_encryption_alg_values_supported";
+    String REQUEST_OBJECT_ENCRYPTION_ENC_VALUES_SUPPORTED = "request_object_encryption_enc_values_supported";
+    String TOKEN_ENDPOINT_AUTH_METHODS_SUPPORTED = "token_endpoint_auth_methods_supported";
+    String TOKEN_ENDPOINT_AUTH_SIGNING_ALG_VALUES_SUPPORTED = "token_endpoint_auth_signing_alg_values_supported";
+    String DISPLAY_VALUES_SUPPORTED = "display_values_supported";
+    String CLAIM_TYPES_SUPPORTED = "claim_types_supported";
+    String CLAIMS_SUPPORTED = "claims_supported";
+    String SERVICE_DOCUMENTATION = "service_documentation";
+    String CLAIMS_LOCALES_SUPPORTED = "claims_locales_supported";
+    String UI_LOCALES_SUPPORTED = "ui_locales_supported";
+    String CLAIMS_PARAMETER_SUPPORTED = "claims_parameter_supported";
+    String REQUEST_PARAMETER_SUPPORTED = "request_parameter_supported";
+    String REQUEST_URI_PARAMETER_SUPPORTED = "request_uri_parameter_supported";
+    String REQUIRE_REQUEST_URI_REGISTRATION = "require_request_uri_registration";
+    String OP_POLICY_URI = "op_policy_uri";
+    String OP_TOS_URI = "op_tos_uri";
+    String SCOPE_KEY = "scope";
+    String CLAIMS_KEY = "claims";
+    String ID_TOKEN_TOKEN_BINDING_CNF_VALUES_SUPPORTED = "id_token_token_binding_cnf_values_supported";
+    String TLS_CLIENT_CERTIFICATE_BOUND_ACCESS_TOKENS = "tls_client_certificate_bound_access_tokens";
+    String FRONTCHANNEL_LOGOUT_SUPPORTED = "frontchannel_logout_supported";
+    String FRONTCHANNEL_LOGOUT_SESSION_SUPPORTED = "frontchannel_logout_session_supported";
+    String AUTH_LEVEL_MAPPING = "auth_level_mapping";
+    String FRONT_CHANNEL_LOGOUT_SESSION_SUPPORTED = "frontchannel_logout_session_supported";
+    String BACKCHANNEL_LOGOUT_SUPPORTED = "backchannel_logout_supported";
+    String BACKCHANNEL_LOGOUT_SESSION_SUPPORTED = "backchannel_logout_session_supported";
+
+    // CIBA
+    String BACKCHANNEL_AUTHENTICATION_ENDPOINT = "backchannel_authentication_endpoint";
+    String BACKCHANNEL_TOKEN_DELIVERY_MODES_SUPPORTED = "backchannel_token_delivery_modes_supported";
+    String BACKCHANNEL_AUTHENTICATION_REQUEST_SIGNING_ALG_VALUES_SUPPORTED = "backchannel_authentication_request_signing_alg_values_supported";
+    String BACKCHANNEL_USER_CODE_PAREMETER_SUPPORTED = "backchannel_user_code_parameter_supported";
+}
\ No newline at end of file
diff --git a/oxAuth/Model/src/main/java/org/gluu/oxauth/model/configuration/CorsConfigurationFilter.java b/oxAuth/Model/src/main/java/org/gluu/oxauth/model/configuration/CorsConfigurationFilter.java
new file mode 100644
index 00000000..e74ef988
--- /dev/null
+++ b/oxAuth/Model/src/main/java/org/gluu/oxauth/model/configuration/CorsConfigurationFilter.java
@@ -0,0 +1,145 @@
+/*
+ * oxAuth is available under the MIT License (2008). See http://opensource.org/licenses/MIT for full text.
+ *
+ * Copyright (c) 2014, Gluu
+ */
+
+package org.gluu.oxauth.model.configuration;
+
+import org.apache.commons.lang.StringUtils;
+
+/**
+ * @author Javier Rojas Blum
+ * @version February 15, 2017
+ */
+public class CorsConfigurationFilter {
+
+    private String filterName;
+    private Boolean corsEnabled;
+    private String corsAllowedOrigins;
+    private String corsAllowedMethods;
+    private String corsAllowedHeaders;
+    private String corsExposedHeaders;
+    private Boolean corsSupportCredentials;
+    private Boolean corsLoggingEnabled;
+    private Integer corsPreflightMaxAge;
+    private Boolean corsRequestDecorate;
+
+    public static final Boolean DEFAULT_CORS_ENABLED = true;
+    public static final String DEFAULT_CORS_ALLOWED_ORIGINS = "*";
+    public static final String DEFAULT_CORS_ALLOWED_METHODS = "GET,POST,HEAD,OPTIONS";
+    public static final String DEFAULT_CORS_ALLOWED_HEADERS = "Origin,Accept,X-Requested-With,Content-Type,Access-Control-Request-Method,Access-Control-Request-Headers";
+    public static final String DEFAULT_CORS_EXPOSED_HEADERS = "";
+    public static final Boolean DEFAULT_CORS_SUPPORT_CREDENTIALS = true;
+    public static final Boolean DEFAULT_CORS_LOGGING_ENABLED = false;
+    public static final Integer DEFAULT_CORS_PREFLIGHT_MAX_AGE = 1800;
+    public static final Boolean DEFAULT_CORS_REQUEST_DECORATE = true;
+
+    public String getFilterName() {
+        return filterName;
+    }
+
+    public void setFilterName(String filterName) {
+        this.filterName = filterName;
+    }
+
+    public Boolean getCorsEnabled() {
+        if (corsEnabled == null) {
+            corsEnabled = DEFAULT_CORS_ENABLED;
+        }
+        return corsEnabled;
+    }
+
+    public void setCorsEnabled(Boolean corsEnabled) {
+        this.corsEnabled = corsEnabled;
+    }
+
+    public String getCorsAllowedOrigins() {
+        if (StringUtils.isEmpty(corsAllowedOrigins)) {
+            corsAllowedOrigins = DEFAULT_CORS_ALLOWED_ORIGINS;
+        }
+        return corsAllowedOrigins;
+    }
+
+    public void setCorsAllowedOrigins(String corsAllowedOrigins) {
+        this.corsAllowedOrigins = corsAllowedOrigins;
+    }
+
+    public String getCorsAllowedMethods() {
+        if (StringUtils.isEmpty(corsAllowedMethods)) {
+            corsAllowedMethods = DEFAULT_CORS_ALLOWED_METHODS;
+        }
+        return corsAllowedMethods;
+    }
+
+    public void setCorsAllowedMethods(String corsAllowedMethods) {
+        this.corsAllowedMethods = corsAllowedMethods;
+    }
+
+    public String getCorsAllowedHeaders() {
+        if (StringUtils.isEmpty(corsAllowedHeaders)) {
+            corsAllowedHeaders = DEFAULT_CORS_ALLOWED_HEADERS;
+        }
+        return corsAllowedHeaders;
+    }
+
+    public void setCorsAllowedHeaders(String corsAllowedHeaders) {
+        this.corsAllowedHeaders = corsAllowedHeaders;
+    }
+
+    public String getCorsExposedHeaders() {
+        if (StringUtils.isEmpty(corsExposedHeaders)) {
+            corsExposedHeaders = DEFAULT_CORS_EXPOSED_HEADERS;
+        }
+        return corsExposedHeaders;
+    }
+
+    public void setCorsExposedHeaders(String corsExposedHeaders) {
+        this.corsExposedHeaders = corsExposedHeaders;
+    }
+
+    public Boolean getCorsSupportCredentials() {
+        if (corsSupportCredentials == null) {
+            corsSupportCredentials = DEFAULT_CORS_SUPPORT_CREDENTIALS;
+        }
+
+        return corsSupportCredentials;
+    }
+
+    public void setCorsSupportCredentials(Boolean corsSupportCredentials) {
+        this.corsSupportCredentials = corsSupportCredentials;
+    }
+
+    public Boolean getCorsLoggingEnabled() {
+        if (corsLoggingEnabled == null) {
+            corsLoggingEnabled = DEFAULT_CORS_LOGGING_ENABLED;
+        }
+        return corsLoggingEnabled;
+    }
+
+    public void setCorsLoggingEnabled(Boolean corsLoggingEnabled) {
+        this.corsLoggingEnabled = corsLoggingEnabled;
+    }
+
+    public Integer getCorsPreflightMaxAge() {
+        if (corsPreflightMaxAge == null) {
+            corsPreflightMaxAge = DEFAULT_CORS_PREFLIGHT_MAX_AGE;
+        }
+        return corsPreflightMaxAge;
+    }
+
+    public void setCorsPreflightMaxAge(Integer corsPreflightMaxAge) {
+        this.corsPreflightMaxAge = corsPreflightMaxAge;
+    }
+
+    public Boolean getCorsRequestDecorate() {
+        if (corsRequestDecorate == null) {
+            corsRequestDecorate = DEFAULT_CORS_REQUEST_DECORATE;
+        }
+        return corsRequestDecorate;
+    }
+
+    public void setCorsRequestDecorate(Boolean corsRequestDecorate) {
+        this.corsRequestDecorate = corsRequestDecorate;
+    }
+}
diff --git a/oxAuth/Model/src/main/java/org/gluu/oxauth/model/crypto/AbstractCryptoProvider.java b/oxAuth/Model/src/main/java/org/gluu/oxauth/model/crypto/AbstractCryptoProvider.java
new file mode 100644
index 00000000..63eee238
--- /dev/null
+++ b/oxAuth/Model/src/main/java/org/gluu/oxauth/model/crypto/AbstractCryptoProvider.java
@@ -0,0 +1,235 @@
+/*
+ * oxAuth is available under the MIT License (2008). See http://opensource.org/licenses/MIT for full text.
+ *
+ * Copyright (c) 2014, Gluu
+ */
+package org.gluu.oxauth.model.crypto;
+
+import com.google.common.collect.Lists;
+import org.apache.log4j.Logger;
+import org.gluu.oxauth.model.configuration.AppConfiguration;
+import org.gluu.oxauth.model.crypto.signature.AlgorithmFamily;
+import org.gluu.oxauth.model.crypto.signature.ECEllipticCurve;
+import org.gluu.oxauth.model.crypto.signature.SignatureAlgorithm;
+import org.gluu.oxauth.model.jwk.Algorithm;
+import org.gluu.oxauth.model.jwk.JSONWebKey;
+import org.gluu.oxauth.model.jwk.JSONWebKeySet;
+import org.gluu.oxauth.model.jwk.Use;
+import org.gluu.oxauth.model.util.Base64Util;
+import org.json.JSONArray;
+import org.json.JSONObject;
+
+import java.math.BigInteger;
+import java.security.*;
+import java.security.KeyFactory;
+import java.security.PrivateKey;
+import java.security.PublicKey;
+import java.security.spec.*;
+import java.text.SimpleDateFormat;
+import java.util.*;
+
+import static org.gluu.oxauth.model.jwk.JWKParameter.*;
+
+/**
+ * @author Javier Rojas Blum
+ * @version February 12, 2019
+ */
+public abstract class AbstractCryptoProvider {
+
+    protected static final Logger LOG = Logger.getLogger(AbstractCryptoProvider.class);
+
+    private int keyRegenerationIntervalInDays = -1;
+
+    public JSONObject generateKey(Algorithm algorithm, Long expirationTime) throws Exception {
+        return generateKey(algorithm, expirationTime, Use.SIGNATURE);
+    }
+
+    public abstract JSONObject generateKey(Algorithm algorithm, Long expirationTime, Use use) throws Exception;
+
+    public abstract JSONObject generateKey(Algorithm algorithm, Long expirationTime, Use use, int keyLength) throws Exception;
+
+    public abstract String sign(String signingInput, String keyId, String sharedSecret, SignatureAlgorithm signatureAlgorithm) throws Exception;
+
+    public abstract boolean verifySignature(String signingInput, String encodedSignature, String keyId, JSONObject jwks, String sharedSecret, SignatureAlgorithm signatureAlgorithm) throws Exception;
+
+    public abstract boolean deleteKey(String keyId) throws Exception;
+
+    public abstract boolean containsKey(String keyId);
+
+    public List<String> getKeys() {
+        return Lists.newArrayList();
+    }
+
+    public abstract PrivateKey getPrivateKey(String keyId) throws Exception;
+
+    public String getKeyId(JSONWebKeySet jsonWebKeySet, Algorithm algorithm, Use use) throws Exception {
+        if (algorithm == null || AlgorithmFamily.HMAC.equals(algorithm.getFamily())) {
+            return null;
+        }
+        for (JSONWebKey key : jsonWebKeySet.getKeys()) {
+            if (algorithm == key.getAlg() && (use == null || use == key.getUse())) {
+                return key.getKid();
+            }
+        }
+
+        return null;
+    }
+
+    public static JSONObject generateJwks(AbstractCryptoProvider cryptoProvider, AppConfiguration configuration) {
+        GregorianCalendar expirationTime = new GregorianCalendar(TimeZone.getTimeZone("UTC"));
+        expirationTime.add(GregorianCalendar.HOUR, configuration.getKeyRegenerationInterval());
+        expirationTime.add(GregorianCalendar.SECOND, configuration.getIdTokenLifetime());
+
+        long expiration = expirationTime.getTimeInMillis();
+
+        final List<String> allowedAlgs = configuration.getKeyAlgsAllowedForGeneration();
+        JSONArray keys = new JSONArray();
+
+        for (Algorithm alg : Algorithm.values()) {
+            try {
+                if (!allowedAlgs.isEmpty() && !allowedAlgs.contains(alg.getParamName())) {
+                    LOG.debug("Key generation for " + alg + " is skipped because it's not allowed by keyAlgsAllowedForGeneration configuration property.");
+                    continue;
+                }
+                keys.put(cryptoProvider.generateKey(alg, expiration, alg.getUse()));
+            } catch (Exception ex) {
+                LOG.error("Algorithm: " + alg + ex.getMessage(), ex);
+            }
+        }
+
+        JSONObject jsonObject = new JSONObject();
+        jsonObject.put(JSON_WEB_KEY_SET, keys);
+
+        return jsonObject;
+    }
+
+    public PublicKey getPublicKey(String alias, JSONObject jwks, Algorithm requestedAlgorithm) throws Exception {
+        JSONArray webKeys = jwks.getJSONArray(JSON_WEB_KEY_SET);
+
+        try {
+            if (alias == null) {
+                if (webKeys.length() == 1) {
+                    JSONObject key = webKeys.getJSONObject(0);
+                    return processKey(requestedAlgorithm, alias, key);
+                } else {
+                    return null;
+                }
+            }
+            for (int i = 0; i < webKeys.length(); i++) {
+                JSONObject key = webKeys.getJSONObject(i);
+                if (alias.equals(key.getString(KEY_ID))) {
+                    PublicKey publicKey = processKey(requestedAlgorithm, alias, key);
+                    if (publicKey != null) {
+                        return publicKey;
+                    }
+                }
+            }
+        } catch (NoSuchAlgorithmException | InvalidKeySpecException | InvalidParameterSpecException |
+                 InvalidParameterException e) {
+            throw new Exception(e);
+        }
+
+        return null;
+    }
+
+    private PublicKey processKey(Algorithm requestedAlgorithm, String alias, JSONObject key) throws NoSuchAlgorithmException, InvalidKeySpecException, InvalidParameterSpecException, InvalidParameterException {
+        PublicKey publicKey = null;
+        AlgorithmFamily algorithmFamily = null;
+
+        if (key.has(ALGORITHM)) {
+            Algorithm algorithm = Algorithm.fromString(key.optString(ALGORITHM));
+
+            if (requestedAlgorithm != null && !requestedAlgorithm.equals(algorithm)) {
+                LOG.trace("kid matched but algorithm does not match. kid algorithm:" + algorithm
+                        + ", requestedAlgorithm:" + requestedAlgorithm + ", kid:" + alias);
+                return null;
+            }
+            algorithmFamily = algorithm.getFamily();
+        } else if (key.has(KEY_TYPE)) {
+            algorithmFamily = AlgorithmFamily.fromString(key.getString(KEY_TYPE));
+        } else {
+            throw new InvalidParameterException("Wrong key (JSONObject): doesn't contain 'alg' and 'kty' properties");
+        }
+
+        switch (algorithmFamily) {
+            case RSA: {
+                KeyFactory keyFactory = KeyFactory.getInstance("RSA");
+                RSAPublicKeySpec pubKeySpec = new RSAPublicKeySpec(
+                        new BigInteger(1, Base64Util.base64urldecode(key.getString(MODULUS))),
+                        new BigInteger(1, Base64Util.base64urldecode(key.getString(EXPONENT))));
+                publicKey = keyFactory.generatePublic(pubKeySpec);
+                break;
+            }
+            case EC: {
+                ECEllipticCurve curve = ECEllipticCurve.fromString(key.optString(CURVE));
+                AlgorithmParameters parameters = AlgorithmParameters.getInstance(AlgorithmFamily.EC.toString());
+                parameters.init(new ECGenParameterSpec(curve.getAlias()));
+                ECParameterSpec ecParameters = parameters.getParameterSpec(ECParameterSpec.class);
+                publicKey = KeyFactory.getInstance(AlgorithmFamily.EC.toString())
+                        .generatePublic(new ECPublicKeySpec(
+                                new ECPoint(
+                                        new BigInteger(1, Base64Util.base64urldecode(key.getString(X))),
+                                        new BigInteger(1, Base64Util.base64urldecode(key.getString(Y)))),
+                                ecParameters));
+                break;
+            }
+            default: {
+                throw new InvalidParameterException(String.format("Wrong AlgorithmFamily value: %s", algorithmFamily));
+            }
+        }
+
+        if (key.has(EXPIRATION_TIME)) {
+            checkKeyExpiration(alias, key.getLong(EXPIRATION_TIME));
+        }
+
+        return publicKey;
+    }
+
+    protected void checkKeyExpiration(String alias, Long expirationTime) {
+        try {
+            Date expirationDate = new Date(expirationTime);
+            SimpleDateFormat ft = new SimpleDateFormat("yyyy-MM-dd HH:mm:ss");
+            Date today = new Date();
+            long expiresInDays = (expirationTime - today.getTime()) / (24 * 60 * 60 * 1000);
+            if (expiresInDays == 0) {
+                LOG.warn("\nWARNING! Key will expire soon, alias: " + alias
+                        + "\n\tExpires On: " + ft.format(expirationDate)
+                        + "\n\tToday's Date: " + ft.format(today));
+                return;
+            }
+            if (expiresInDays < 0) {
+                LOG.warn("\nWARNING! Expired Key is used, alias: " + alias
+                        + "\n\tExpires On: " + ft.format(expirationDate)
+                        + "\n\tToday's Date: " + ft.format(today));
+                return;
+            }
+
+            // re-generation interval is unknown, therefore we default to 30 days period warning
+            if (keyRegenerationIntervalInDays <= 0 && expiresInDays < 30) {
+                LOG.warn("\nWARNING! Key with alias: " + alias
+                        + "\n\tExpires In: " + expiresInDays + " days"
+                        + "\n\tExpires On: " + ft.format(expirationDate)
+                        + "\n\tToday's Date: " + ft.format(today));
+                return;
+            }
+
+            if (expiresInDays < keyRegenerationIntervalInDays) {
+                LOG.warn("\nWARNING! Key with alias: " + alias
+                        + "\n\tExpires In: " + expiresInDays + " days"
+                        + "\n\tExpires On: " + ft.format(expirationDate)
+                        + "\n\tKey Regeneration In: " + keyRegenerationIntervalInDays + " days"
+                        + "\n\tToday's Date: " + ft.format(today));
+            }
+        } catch (Exception e) {
+            LOG.error("Failed to check key expiration.", e);
+        }
+    }
+
+    public int getKeyRegenerationIntervalInDays() {
+        return keyRegenerationIntervalInDays;
+    }
+
+    public void setKeyRegenerationIntervalInDays(int keyRegenerationIntervalInDays) {
+        this.keyRegenerationIntervalInDays = keyRegenerationIntervalInDays;
+    }
+}
\ No newline at end of file
diff --git a/oxAuth/Model/src/main/java/org/gluu/oxauth/model/crypto/Certificate.java b/oxAuth/Model/src/main/java/org/gluu/oxauth/model/crypto/Certificate.java
new file mode 100644
index 00000000..0c3ee695
--- /dev/null
+++ b/oxAuth/Model/src/main/java/org/gluu/oxauth/model/crypto/Certificate.java
@@ -0,0 +1,105 @@
+/*
+ * oxAuth is available under the MIT License (2008). See http://opensource.org/licenses/MIT for full text.
+ *
+ * Copyright (c) 2014, Gluu
+ */
+
+package org.gluu.oxauth.model.crypto;
+
+import org.bouncycastle.jcajce.provider.asymmetric.ec.BCECPublicKey;
+import org.bouncycastle.jcajce.provider.asymmetric.rsa.BCRSAPublicKey;
+import org.bouncycastle.openssl.jcajce.JcaPEMWriter;
+import org.json.JSONArray;
+import org.json.JSONException;
+import org.gluu.oxauth.model.crypto.signature.ECDSAPublicKey;
+import org.gluu.oxauth.model.crypto.signature.RSAPublicKey;
+import org.gluu.oxauth.model.crypto.signature.SignatureAlgorithm;
+import org.gluu.oxauth.model.util.StringUtils;
+
+import java.io.IOException;
+import java.io.StringWriter;
+import java.security.cert.X509Certificate;
+import java.security.interfaces.ECPublicKey;
+import java.util.Arrays;
+
+/**
+ * @author Javier Rojas Blum
+ * @version June 29, 2016
+ */
+public class Certificate {
+
+    private SignatureAlgorithm signatureAlgorithm;
+    private X509Certificate x509Certificate;
+
+    public Certificate(SignatureAlgorithm signatureAlgorithm, X509Certificate x509Certificate) {
+        this.signatureAlgorithm = signatureAlgorithm;
+        this.x509Certificate = x509Certificate;
+    }
+
+    public PublicKey getPublicKey() {
+        PublicKey publicKey = null;
+
+        if (x509Certificate != null && x509Certificate.getPublicKey() instanceof java.security.interfaces.RSAPublicKey) {
+            java.security.interfaces.RSAPublicKey jcersaPublicKey = (java.security.interfaces.RSAPublicKey) x509Certificate.getPublicKey();
+
+            publicKey = new RSAPublicKey(jcersaPublicKey.getModulus(), jcersaPublicKey.getPublicExponent());
+        } else if (x509Certificate != null && x509Certificate.getPublicKey() instanceof ECPublicKey) {
+            ECPublicKey jceecPublicKey = (ECPublicKey) x509Certificate.getPublicKey();
+
+            publicKey = new ECDSAPublicKey(signatureAlgorithm, jceecPublicKey.getW().getAffineX(), jceecPublicKey.getW().getAffineY());
+        }
+
+        return publicKey;
+    }
+
+    public RSAPublicKey getRsaPublicKey() {
+        RSAPublicKey rsaPublicKey = null;
+
+        if (x509Certificate != null && x509Certificate.getPublicKey() instanceof java.security.interfaces.RSAPublicKey) {
+            java.security.interfaces.RSAPublicKey publicKey = (java.security.interfaces.RSAPublicKey) x509Certificate.getPublicKey();
+            rsaPublicKey = new RSAPublicKey(publicKey.getModulus(), publicKey.getPublicExponent());
+        }
+
+        return rsaPublicKey;
+    }
+
+    public ECDSAPublicKey getEcdsaPublicKey() {
+        ECDSAPublicKey ecdsaPublicKey = null;
+
+        if (x509Certificate != null && x509Certificate.getPublicKey() instanceof ECPublicKey) {
+            ECPublicKey publicKey = (ECPublicKey) x509Certificate.getPublicKey();
+            ecdsaPublicKey = new ECDSAPublicKey(signatureAlgorithm, publicKey.getW().getAffineX(), publicKey.getW().getAffineY());
+        }
+
+        return ecdsaPublicKey;
+    }
+
+    public JSONArray toJSONArray() throws JSONException {
+        String cert = toString();
+
+        cert = cert.replace("\n", "");
+        cert = cert.replace("-----BEGIN CERTIFICATE-----", "");
+        cert = cert.replace("-----END CERTIFICATE-----", "");
+
+        return new JSONArray(Arrays.asList(cert));
+    }
+
+    @Override
+    public String toString() {
+        try {
+            StringWriter stringWriter = new StringWriter();
+            JcaPEMWriter pemWriter = new JcaPEMWriter(stringWriter);
+            try {
+                pemWriter.writeObject(x509Certificate);
+                pemWriter.flush();
+                return stringWriter.toString();
+            } finally {
+                pemWriter.close();
+            }
+        } catch (IOException e) {
+            return StringUtils.EMPTY_STRING;
+        } catch (Exception e) {
+            return StringUtils.EMPTY_STRING;
+        }
+    }
+}
\ No newline at end of file
diff --git a/oxAuth/Model/src/main/java/org/gluu/oxauth/model/crypto/CryptoProviderFactory.java b/oxAuth/Model/src/main/java/org/gluu/oxauth/model/crypto/CryptoProviderFactory.java
new file mode 100644
index 00000000..ac966833
--- /dev/null
+++ b/oxAuth/Model/src/main/java/org/gluu/oxauth/model/crypto/CryptoProviderFactory.java
@@ -0,0 +1,66 @@
+/*
+ * oxAuth is available under the MIT License (2008). See http://opensource.org/licenses/MIT for full text.
+ *
+ * Copyright (c) 2014, Gluu
+ */
+
+package org.gluu.oxauth.model.crypto;
+
+import org.apache.commons.lang.StringUtils;
+import org.gluu.oxauth.model.common.WebKeyStorage;
+import org.gluu.oxauth.model.configuration.AppConfiguration;
+
+/**
+ * @author Javier Rojas Blum
+ * @version April 25, 2017
+ */
+public class CryptoProviderFactory {
+
+    private static OxAuthCryptoProvider keyStoreProvider = null;
+
+    public static AbstractCryptoProvider getCryptoProvider(AppConfiguration configuration) throws Exception {
+        AbstractCryptoProvider cryptoProvider = null;
+        WebKeyStorage webKeyStorage = configuration.getWebKeysStorage();
+        if (webKeyStorage == null) {
+            return null;
+        }
+
+        switch (webKeyStorage) {
+            case KEYSTORE:
+                cryptoProvider = getKeyStoreProvider(configuration);
+
+                break;
+            case PKCS11:
+                cryptoProvider = new OxElevenCryptoProvider(
+                        configuration.getOxElevenGenerateKeyEndpoint(),
+                        configuration.getOxElevenSignEndpoint(),
+                        configuration.getOxElevenVerifySignatureEndpoint(),
+                        configuration.getOxElevenDeleteKeyEndpoint(),
+                        configuration.getOxElevenTestModeToken());
+                break;
+        }
+
+        if (configuration.getKeyRegenerationEnabled()) { // set interval only if re-generation is enabled
+            cryptoProvider.setKeyRegenerationIntervalInDays(configuration.getKeyRegenerationInterval() / 24);
+        }
+        return cryptoProvider;
+    }
+
+    private static AbstractCryptoProvider getKeyStoreProvider(AppConfiguration configuration) throws Exception {
+        if (keyStoreProvider != null &&
+                StringUtils.isNotBlank(keyStoreProvider.getKeyStoreFile()) &&
+                StringUtils.isNotBlank(keyStoreProvider.getKeyStoreSecret()) &&
+                StringUtils.isNotBlank(keyStoreProvider.getDnName()) &&
+                keyStoreProvider.getKeyStoreFile().equals(configuration.getKeyStoreFile()) &&
+                keyStoreProvider.getKeyStoreSecret().equals(configuration.getKeyStoreSecret()) &&
+                keyStoreProvider.getDnName().equals(configuration.getDnName())) {
+            return keyStoreProvider;
+        }
+
+        return keyStoreProvider = new OxAuthCryptoProvider(configuration.getKeyStoreFile(), configuration.getKeyStoreSecret(), configuration.getDnName(), configuration.getRejectJwtWithNoneAlg(), configuration.getKeySelectionStrategy());
+    }
+
+    public static void reset() {
+        keyStoreProvider = null;
+    }
+}
diff --git a/oxAuth/Model/src/main/java/org/gluu/oxauth/model/crypto/Key.java b/oxAuth/Model/src/main/java/org/gluu/oxauth/model/crypto/Key.java
new file mode 100644
index 00000000..ff14c8eb
--- /dev/null
+++ b/oxAuth/Model/src/main/java/org/gluu/oxauth/model/crypto/Key.java
@@ -0,0 +1,131 @@
+/*
+ * oxAuth is available under the MIT License (2008). See http://opensource.org/licenses/MIT for full text.
+ *
+ * Copyright (c) 2014, Gluu
+ */
+
+package org.gluu.oxauth.model.crypto;
+
+import static org.gluu.oxauth.model.jwk.JWKParameter.*;
+
+import org.json.JSONException;
+import org.json.JSONObject;
+import org.gluu.oxauth.model.common.JSONable;
+import org.gluu.oxauth.model.util.StringUtils;
+
+/**
+ * @author Javier Rojas Blum
+ * @version February 17, 2016
+ */
+public class Key<E extends PrivateKey, F extends PublicKey> implements JSONable {
+
+    private String keyType;
+    private String use;
+    private String algorithm;
+    private String keyId;
+    private Long expirationTime;
+    private Object curve;
+    private E privateKey;
+    private F publicKey;
+    private Certificate certificate;
+
+    public String getKeyType() {
+        return keyType;
+    }
+
+    public void setKeyType(String keyType) {
+        this.keyType = keyType;
+    }
+
+    public String getUse() {
+        return use;
+    }
+
+    public void setUse(String use) {
+        this.use = use;
+    }
+
+    public String getAlgorithm() {
+        return algorithm;
+    }
+
+    public void setAlgorithm(String algorithm) {
+        this.algorithm = algorithm;
+    }
+
+    public String getKeyId() {
+        return keyId;
+    }
+
+    public void setKeyId(String keyId) {
+        this.keyId = keyId;
+    }
+
+    public Long getExpirationTime() {
+        return expirationTime;
+    }
+
+    public void setExpirationTime(Long expirationTime) {
+        this.expirationTime = expirationTime;
+    }
+
+    public Object getCurve() {
+        return curve;
+    }
+
+    public void setCurve(Object curve) {
+        this.curve = curve;
+    }
+
+    public E getPrivateKey() {
+        return privateKey;
+    }
+
+    public void setPrivateKey(E privateKey) {
+        this.privateKey = privateKey;
+    }
+
+    public F getPublicKey() {
+        return publicKey;
+    }
+
+    public void setPublicKey(F publicKey) {
+        this.publicKey = publicKey;
+    }
+
+    public Certificate getCertificate() {
+        return certificate;
+    }
+
+    public void setCertificate(Certificate certificate) {
+        this.certificate = certificate;
+    }
+
+    @Override
+    public JSONObject toJSONObject() throws JSONException {
+        JSONObject jsonObject = new JSONObject();
+
+        jsonObject.put(KEY_TYPE, getKeyType());
+        jsonObject.put(KEY_USE, getUse());
+        jsonObject.put(ALGORITHM, getAlgorithm());
+        jsonObject.put(KEY_ID, getKeyId());
+        jsonObject.put(EXPIRATION_TIME, getExpirationTime() == null ? JSONObject.NULL : getExpirationTime());
+        jsonObject.put(CURVE, getCurve());
+        jsonObject.put(PRIVATE_KEY, getPrivateKey().toJSONObject());
+        jsonObject.put(PUBLIC_KEY, getPublicKey().toJSONObject());
+        jsonObject.put(CERTIFICATE_CHAIN, getCertificate().toJSONArray());
+
+        return jsonObject;
+    }
+
+    @Override
+    public String toString() {
+        try {
+            return toJSONObject().toString(4).replace("\\/", "/");
+        } catch (JSONException e) {
+            return StringUtils.EMPTY_STRING;
+        } catch (Exception e) {
+            return StringUtils.EMPTY_STRING;
+        }
+    }
+}
\ No newline at end of file
diff --git a/oxAuth/Model/src/main/java/org/gluu/oxauth/model/crypto/KeyFactory.java b/oxAuth/Model/src/main/java/org/gluu/oxauth/model/crypto/KeyFactory.java
new file mode 100644
index 00000000..0eabc766
--- /dev/null
+++ b/oxAuth/Model/src/main/java/org/gluu/oxauth/model/crypto/KeyFactory.java
@@ -0,0 +1,31 @@
+/*
+ * oxAuth is available under the MIT License (2008). See http://opensource.org/licenses/MIT for full text.
+ *
+ * Copyright (c) 2014, Gluu
+ */
+
+package org.gluu.oxauth.model.crypto;
+
+/**
+ * Factory to create asymmetric Public and Private Keys
+ *
+ * @author Javier Rojas Blum Date: 10.22.2012
+ */
+public abstract class KeyFactory<E extends PrivateKey, F extends PublicKey> {
+
+    public abstract E getPrivateKey();
+
+    public abstract F getPublicKey();
+
+    public abstract Certificate getCertificate();
+
+    public Key<E, F> getKey() {
+        Key key = new Key();
+
+        key.setPrivateKey(getPrivateKey());
+        key.setPublicKey(getPublicKey());
+        key.setCertificate(getCertificate());
+
+        return key;
+    }
+}
\ No newline at end of file
diff --git a/oxAuth/Model/src/main/java/org/gluu/oxauth/model/crypto/OxAuthCryptoProvider.java b/oxAuth/Model/src/main/java/org/gluu/oxauth/model/crypto/OxAuthCryptoProvider.java
new file mode 100644
index 00000000..363ff419
--- /dev/null
+++ b/oxAuth/Model/src/main/java/org/gluu/oxauth/model/crypto/OxAuthCryptoProvider.java
@@ -0,0 +1,585 @@
+/*
+ * oxAuth is available under the MIT License (2008). See http://opensource.org/licenses/MIT for full text.
+ *
+ * Copyright (c) 2014, Gluu
+ */
+
+package org.gluu.oxauth.model.crypto;
+
+import com.google.common.collect.Lists;
+import com.nimbusds.jose.JWSAlgorithm;
+import com.nimbusds.jose.crypto.impl.ECDSA;
+import org.apache.commons.codec.binary.Base64;
+import org.apache.commons.io.FilenameUtils;
+import org.apache.commons.lang.StringUtils;
+import org.apache.log4j.Logger;
+import org.bouncycastle.asn1.ASN1EncodableVector;
+import org.bouncycastle.asn1.ASN1ObjectIdentifier;
+import org.bouncycastle.asn1.DERSequence;
+import org.bouncycastle.asn1.x500.X500Name;
+import org.bouncycastle.asn1.x509.KeyPurposeId;
+import org.bouncycastle.cert.CertIOException;
+import org.bouncycastle.cert.X509CertificateHolder;
+import org.bouncycastle.cert.jcajce.JcaX509CertificateConverter;
+import org.bouncycastle.cert.jcajce.JcaX509v3CertificateBuilder;
+import org.bouncycastle.operator.ContentSigner;
+import org.bouncycastle.operator.OperatorCreationException;
+import org.bouncycastle.operator.jcajce.JcaContentSignerBuilder;
+import org.gluu.oxauth.model.configuration.AppConfiguration;
+import org.gluu.oxauth.model.crypto.signature.AlgorithmFamily;
+import org.gluu.oxauth.model.crypto.signature.SignatureAlgorithm;
+import org.gluu.oxauth.model.jwk.Algorithm;
+import org.gluu.oxauth.model.jwk.JSONWebKey;
+import org.gluu.oxauth.model.jwk.JSONWebKeySet;
+import org.gluu.oxauth.model.jwk.KeySelectionStrategy;
+import org.gluu.oxauth.model.jwk.Use;
+import org.gluu.oxauth.model.util.Base64Util;
+import org.gluu.oxauth.model.util.CertUtils;
+import org.gluu.oxauth.model.util.Util;
+import org.gluu.util.security.SecurityProviderUtility;
+import org.gluu.util.security.SecurityProviderUtility.SecurityModeType;
+import org.json.JSONArray;
+import org.json.JSONException;
+import org.json.JSONObject;
+
+import javax.crypto.Mac;
+import javax.crypto.SecretKey;
+import javax.crypto.spec.SecretKeySpec;
+import java.io.File;
+import java.io.FileInputStream;
+import java.io.FileOutputStream;
+import java.io.InputStream;
+import java.math.BigInteger;
+import java.security.Key;
+import java.security.PrivateKey;
+import java.security.PublicKey;
+import java.security.*;
+import java.security.cert.Certificate;
+import java.security.cert.CertificateException;
+import java.security.cert.X509Certificate;
+import java.security.interfaces.ECPublicKey;
+import java.security.interfaces.RSAPublicKey;
+import java.security.spec.ECGenParameterSpec;
+import java.util.*;
+import java.util.stream.Collectors;
+
+import static org.gluu.oxauth.model.jwk.JWKParameter.*;
+
+/**
+ * @author Javier Rojas Blum
+ * @author Yuriy Movchan
+ * @author Sergey Manoylo
+ * @version April 25, 2022
+ */
+public class OxAuthCryptoProvider extends AbstractCryptoProvider {
+
+    protected static final Logger LOG = Logger.getLogger(OxAuthCryptoProvider.class);
+
+    private KeyStore keyStore;
+    private String keyStoreFile;
+    private String keyStoreSecret;
+    private String dnName;
+    private final boolean rejectNoneAlg;
+    private final KeySelectionStrategy keySelectionStrategy;
+
+    public OxAuthCryptoProvider() throws Exception {
+        this(null, null, null);
+    }
+
+    public OxAuthCryptoProvider(String keyStoreFile, String keyStoreSecret, String dnName) throws Exception {
+        this(keyStoreFile, keyStoreSecret, dnName, false);
+    }
+
+    public OxAuthCryptoProvider(String keyStoreFile, String keyStoreSecret, String dnName, boolean rejectNoneAlg) throws Exception {
+        this(keyStoreFile, keyStoreSecret, dnName, rejectNoneAlg, AppConfiguration.DEFAULT_KEY_SELECTION_STRATEGY);
+    }
+
+    public OxAuthCryptoProvider(String keyStoreFile, String keyStoreSecret, String dnName, boolean rejectNoneAlg, KeySelectionStrategy keySelectionStrategy) throws Exception {
+        this.rejectNoneAlg = rejectNoneAlg;
+        this.keySelectionStrategy = keySelectionStrategy != null ? keySelectionStrategy : AppConfiguration.DEFAULT_KEY_SELECTION_STRATEGY;
+        if (!Util.isNullOrEmpty(keyStoreFile) && !Util.isNullOrEmpty(keyStoreSecret) /* && !Util.isNullOrEmpty(dnName) */) {
+            this.keyStoreFile = keyStoreFile;
+            this.keyStoreSecret = keyStoreSecret;
+            this.dnName = dnName;
+            SecurityProviderUtility.KeyStorageType keyStorageType = solveKeyStorageType();
+            switch (keyStorageType) {
+            case JKS_KS: {
+                keyStore = KeyStore.getInstance("JKS");
+                break;
+            }
+            case PKCS12_KS: {
+                keyStore = KeyStore.getInstance("PKCS12", SecurityProviderUtility.getBCProvider());
+                break;
+            }
+            case BCFKS_KS: {
+                keyStore = KeyStore.getInstance("BCFKS", SecurityProviderUtility.getBCProvider());
+                break;
+            }
+            }
+            try {
+                File f = new File(keyStoreFile);
+                if (!f.exists()) {
+                    keyStore.load(null, keyStoreSecret.toCharArray());
+                    FileOutputStream fos = new FileOutputStream(keyStoreFile);
+                    keyStore.store(fos, keyStoreSecret.toCharArray());
+                    fos.close();
+                }
+                final InputStream is = new FileInputStream(keyStoreFile);
+                keyStore.load(is, keyStoreSecret.toCharArray());
+                LOG.debug("Loaded keys from keystore.");
+                LOG.debug("Security Mode: " + SecurityProviderUtility.getSecurityMode().toString());
+                LOG.debug("Keystore Type: " + keyStorageType.toString());
+                LOG.trace("Loaded keys:"+ getKeys());
+            } catch (Exception e) {
+                LOG.error(e.getMessage(), e);
+                LOG.error("Check type of keystorage. Expected keystorage type: '" + keyStorageType.toString() + "'");
+            }
+        }
+    }
+
+    public void load(String keyStoreSecret) {
+        this.keyStoreSecret = keyStoreSecret;
+        SecurityProviderUtility.KeyStorageType keyStorageType = solveKeyStorageType();
+        try(InputStream is = new FileInputStream(keyStoreFile)) {
+            switch (keyStorageType) {
+            case JKS_KS: {
+                keyStore = KeyStore.getInstance("JKS");
+                break;
+            }
+            case PKCS12_KS: {
+                keyStore = KeyStore.getInstance("PKCS12", SecurityProviderUtility.getBCProvider());
+                break;
+            }
+            case BCFKS_KS: {
+                keyStore = KeyStore.getInstance("BCFKS", SecurityProviderUtility.getBCProvider());
+                break;
+            }
+            }
+            keyStore.load(is, keyStoreSecret.toCharArray());
+            LOG.debug("Loaded keys from keystore.");
+            LOG.debug("Security Mode: " + SecurityProviderUtility.getSecurityMode().toString());
+            LOG.debug("Keystore Type: " + keyStorageType.toString());
+            LOG.trace("Loaded keys:"+ getKeys());
+        } catch (Exception e) {
+            LOG.error(e.getMessage(), e);
+            LOG.error("Check type of keystorage. Expected keystorage type: '" + keyStorageType.toString() + "'");
+        }
+    }
+
+    public String getKeyStoreFile() {
+        return keyStoreFile;
+    }
+
+    public String getKeyStoreSecret() {
+        return keyStoreSecret;
+    }
+
+    public String getDnName() {
+        return dnName;
+    }
+
+    @Override
+    public JSONObject generateKey(Algorithm algorithm, Long expirationTime, Use use) throws Exception {
+        return generateKey(algorithm, expirationTime, use, 2048);
+    }
+
+    @Override
+    public JSONObject generateKey(Algorithm algorithm, Long expirationTime, Use use, int keyLength) throws Exception {
+
+        KeyPairGenerator keyGen = null;
+
+        SignatureAlgorithm signatureAlgorithm = SignatureAlgorithm.fromString(algorithm.getParamName());
+        if (signatureAlgorithm == null) {
+            signatureAlgorithm = SignatureAlgorithm.RS256;
+        }
+
+        if (algorithm == null) {
+            throw new RuntimeException("The signature algorithm parameter cannot be null");
+        } else if (AlgorithmFamily.RSA.equals(algorithm.getFamily())) {
+            keyGen = KeyPairGenerator.getInstance(algorithm.getFamily().toString(), SecurityProviderUtility.getBCProvider());
+            keyGen.initialize(keyLength, new SecureRandom());
+
+        } else if (AlgorithmFamily.EC.equals(algorithm.getFamily())) {
+            ECGenParameterSpec eccgen = new ECGenParameterSpec(signatureAlgorithm.getCurve().getAlias());
+            keyGen = KeyPairGenerator.getInstance(algorithm.getFamily().toString(), SecurityProviderUtility.getBCProvider());
+            keyGen.initialize(eccgen, new SecureRandom());
+        } else {
+            throw new RuntimeException("The provided signature algorithm parameter is not supported");
+        }
+
+        // Generate the key
+        KeyPair keyPair = keyGen.generateKeyPair();
+        java.security.PrivateKey pk = keyPair.getPrivate();
+
+        // Java API requires a certificate chain
+        X509Certificate cert = generateV3Certificate(keyPair, dnName, signatureAlgorithm.getAlgorithm(), expirationTime);
+        X509Certificate[] chain = new X509Certificate[1];
+        chain[0] = cert;
+
+        String alias = UUID.randomUUID().toString() + getKidSuffix(use, algorithm);
+        keyStore.setKeyEntry(alias, pk, keyStoreSecret.toCharArray(), chain);
+
+        final String oldAliasByAlgorithm = getAliasByAlgorithmForDeletion(algorithm, alias, use);
+        if (StringUtils.isNotBlank(oldAliasByAlgorithm)) {
+            keyStore.deleteEntry(oldAliasByAlgorithm);
+            LOG.trace("New key: " + alias + ", deleted key: " + oldAliasByAlgorithm);
+        }
+
+        FileOutputStream stream = new FileOutputStream(keyStoreFile);
+        keyStore.store(stream, keyStoreSecret.toCharArray());
+        stream.close();
+
+        PublicKey publicKey = keyPair.getPublic();
+
+        JSONObject jsonObject = new JSONObject();
+        jsonObject.put(KEY_TYPE, algorithm.getFamily());
+        jsonObject.put(KEY_ID, alias);
+        jsonObject.put(KEY_USE, use.getParamName());
+        jsonObject.put(ALGORITHM, algorithm.getParamName());
+        jsonObject.put(EXPIRATION_TIME, expirationTime);
+        if (publicKey instanceof RSAPublicKey) {
+            RSAPublicKey rsaPublicKey = (RSAPublicKey) publicKey;
+            jsonObject.put(MODULUS, Base64Util.base64urlencodeUnsignedBigInt(rsaPublicKey.getModulus()));
+            jsonObject.put(EXPONENT, Base64Util.base64urlencodeUnsignedBigInt(rsaPublicKey.getPublicExponent()));
+        } else if (publicKey instanceof ECPublicKey) {
+            ECPublicKey ecPublicKey = (ECPublicKey) publicKey;
+            jsonObject.put(CURVE, signatureAlgorithm.getCurve().getName());
+            jsonObject.put(X, Base64Util.base64urlencodeUnsignedBigInt(ecPublicKey.getW().getAffineX()));
+            jsonObject.put(Y, Base64Util.base64urlencodeUnsignedBigInt(ecPublicKey.getW().getAffineY()));
+        }
+        JSONArray x5c = new JSONArray();
+        x5c.put(Base64.encodeBase64String(cert.getEncoded()));
+        jsonObject.put(CERTIFICATE_CHAIN, x5c);
+
+        return jsonObject;
+    }
+
+    private static String getKidSuffix(Use use, Algorithm algorithm) {
+        return "_" + use.getParamName().toLowerCase() + "_" + algorithm.getParamName().toLowerCase();
+    }
+
+    public String getAliasByAlgorithmForDeletion(Algorithm algorithm, String newAlias, Use use) throws KeyStoreException {
+        for (String alias : Collections.list(keyStore.aliases())) {
+
+            if (newAlias.equals(alias)) { // skip newly created alias
+                continue;
+            }
+
+            if (alias.endsWith(getKidSuffix(use, algorithm))) {
+                return alias;
+            }
+        }
+        return null;
+    }
+
+    @Override
+    public boolean containsKey(String keyId) {
+        try {
+            if (StringUtils.isBlank(keyId)){
+                return false;
+            }
+            return keyStore.getKey(keyId, keyStoreSecret.toCharArray()) != null;
+        } catch (Exception e) {
+            LOG.error(e.getMessage(), e);
+            return false;
+        }
+    }
+
+    @Override
+    public String sign(String signingInput, String alias, String sharedSecret, SignatureAlgorithm signatureAlgorithm) throws Exception {
+        if (signatureAlgorithm == SignatureAlgorithm.NONE) {
+            return "";
+        } else if (AlgorithmFamily.HMAC.equals(signatureAlgorithm.getFamily())) {
+            SecretKey secretKey = new SecretKeySpec(sharedSecret.getBytes(Util.UTF8_STRING_ENCODING), signatureAlgorithm.getAlgorithm());
+            Mac mac = Mac.getInstance(signatureAlgorithm.getAlgorithm());
+            mac.init(secretKey);
+            byte[] sig = mac.doFinal(signingInput.getBytes());
+            return Base64Util.base64urlencode(sig);
+        } else { // EC or RSA
+            PrivateKey privateKey = getPrivateKey(alias);
+            if (privateKey == null) {
+                final String error = "Failed to find private key by kid: " + alias +
+                        ", signatureAlgorithm: " + signatureAlgorithm +
+                        "(check whether web keys JSON in persistence corresponds to keystore file), keySelectionStrategy: " + keySelectionStrategy;
+                LOG.error(error);
+                throw new RuntimeException(error);
+            }
+
+            Signature signer = Signature.getInstance(signatureAlgorithm.getAlgorithm(), SecurityProviderUtility.getBCProvider());
+            signer.initSign(privateKey);
+            signer.update(signingInput.getBytes());
+
+            byte[] signature = signer.sign();
+            if (AlgorithmFamily.EC.equals(signatureAlgorithm.getFamily())) {
+            	int signatureLenght = ECDSA.getSignatureByteArrayLength(JWSAlgorithm.parse(signatureAlgorithm.getName()));
+                signature = ECDSA.transcodeSignatureToConcat(signature, signatureLenght);
+            }
+
+            return Base64Util.base64urlencode(signature);
+        }
+    }
+
+    @Override
+    public boolean verifySignature(String signingInput, String encodedSignature, String alias, JSONObject jwks, String sharedSecret, SignatureAlgorithm signatureAlgorithm) throws Exception {
+        if (rejectNoneAlg && signatureAlgorithm == SignatureAlgorithm.NONE) {
+            LOG.trace("None algorithm is forbidden by `rejectJwtWithNoneAlg` property.");
+            return false;
+        }
+
+        if (signatureAlgorithm == SignatureAlgorithm.NONE) {
+            return Util.isNullOrEmpty(encodedSignature);
+        } else if (AlgorithmFamily.HMAC.equals(signatureAlgorithm.getFamily())) {
+            String expectedSignature = sign(signingInput, null, sharedSecret, signatureAlgorithm);
+            return expectedSignature.equals(encodedSignature);
+        } else { // EC or RSA
+            PublicKey publicKey = null;
+
+            try {
+                if (jwks == null) {
+                    publicKey = getPublicKey(alias);
+                } else {
+                    publicKey = getPublicKey(alias, jwks, signatureAlgorithm.getAlg());
+                }
+                if (publicKey == null) {
+                    return false;
+                }
+
+                byte[] signature = Base64Util.base64urldecode(encodedSignature);
+                byte[] signatureDer = signature;
+                if (AlgorithmFamily.EC.equals(signatureAlgorithm.getFamily())) {
+                	signatureDer = ECDSA.transcodeSignatureToDER(signatureDer);
+                }
+
+                Signature verifier = Signature.getInstance(signatureAlgorithm.getAlgorithm(), SecurityProviderUtility.getBCProvider());
+                verifier.initVerify(publicKey);
+                verifier.update(signingInput.getBytes());
+                try {
+                	return verifier.verify(signatureDer);
+                } catch (SignatureException e) {
+                	// Fall back to old format
+                	// TODO: remove in Gluu 5.0
+                	return verifier.verify(signature);
+                }
+            } catch (Exception e) {
+                LOG.error(e.getMessage(), e);
+                return false;
+            }
+        }
+    }
+
+    private String getJWKSValue(JSONObject jwks, String node) throws JSONException {
+        try {
+            return jwks.getString(node);
+        } catch (Exception ex) {
+            JSONObject publicKey = jwks.getJSONObject(PUBLIC_KEY);
+            return publicKey.getString(node);
+        }
+    }
+
+    @Override
+    public boolean deleteKey(String alias) throws Exception {
+        keyStore.deleteEntry(alias);
+        FileOutputStream stream = new FileOutputStream(keyStoreFile);
+        keyStore.store(stream, keyStoreSecret.toCharArray());
+        stream.close();
+        return true;
+    }
+
+    public PublicKey getPublicKey(String alias) {
+        PublicKey publicKey = null;
+
+        try {
+            if (Util.isNullOrEmpty(alias)) {
+                return null;
+            }
+
+            java.security.cert.Certificate certificate = keyStore.getCertificate(alias);
+            if (certificate == null) {
+                return null;
+            }
+            publicKey = certificate.getPublicKey();
+
+            checkKeyExpiration(alias);
+        } catch (KeyStoreException e) {
+            e.printStackTrace();
+        }
+
+        return publicKey;
+    }
+
+    public String getKeyId(JSONWebKeySet jsonWebKeySet, Algorithm algorithm, Use use) throws Exception {
+        if (algorithm == null || AlgorithmFamily.HMAC.equals(algorithm.getFamily())) {
+            return null;
+        }
+
+        String kid = null;
+        final List<JSONWebKey> keys = jsonWebKeySet.getKeys();
+        LOG.trace("WebKeys:" + keys.stream().map(JSONWebKey::getKid).collect(Collectors.toList()));
+        LOG.trace("KeyStoreKeys:" + getKeys());
+
+        List<JSONWebKey> keysByAlgAndUse = new ArrayList<>();
+
+        for (JSONWebKey key : keys) {
+            if (algorithm == key.getAlg() && (use == null || use == key.getUse())) {
+                kid = key.getKid();
+                Key keyFromStore = keyStore.getKey(kid, keyStoreSecret.toCharArray());
+                if (keyFromStore != null) {
+                    keysByAlgAndUse.add(key);
+                }
+            }
+        }
+
+        if (keysByAlgAndUse.isEmpty()) {
+            LOG.trace("kid is not in keystore, algorithm: " + algorithm + ", kid: " + kid + ", keyStorePath:" + keyStoreFile);
+            return kid;
+        }
+
+        if (LOG.isTraceEnabled())
+            LOG.trace("Select among keys (älg: "+ algorithm+", use: " + use + "): " + traceWithExp(keysByAlgAndUse));
+        final JSONWebKey selectedKey = keySelectionStrategy.select(keysByAlgAndUse);
+        final String selectedKid = selectedKey != null ? selectedKey.getKid() : null;
+        LOG.trace("Selected kid: " + selectedKid + ", keySelectionStrategy: " + keySelectionStrategy);
+        return selectedKid;
+    }
+
+    private String traceWithExp(List<JSONWebKey> list) {
+        StringBuilder sb = new StringBuilder("[");
+        for (JSONWebKey key : list)
+            sb.append("{\"kid\":").append(key.getKid()).append(",\"exp\":").append(key.getExp()).append("},");
+        sb.append("]");
+        return sb.toString();
+    }
+
+    public PrivateKey getPrivateKey(String alias)
+            throws UnrecoverableKeyException, NoSuchAlgorithmException, KeyStoreException {
+        if (Util.isNullOrEmpty(alias)) {
+            return null;
+        }
+
+        Key key = keyStore.getKey(alias, keyStoreSecret.toCharArray());
+        if (key == null) {
+            return null;
+        }
+        PrivateKey privateKey = (PrivateKey) key;
+
+        checkKeyExpiration(alias);
+
+        return privateKey;
+    }
+
+    public X509Certificate generateV3Certificate(KeyPair keyPair, String issuer, String signatureAlgorithm, Long expirationTime) throws CertIOException, OperatorCreationException, CertificateException {
+        PrivateKey privateKey = keyPair.getPrivate();
+        PublicKey publicKey = keyPair.getPublic();
+
+        // Signers name
+        X500Name issuerName = new X500Name(issuer);
+
+        // Subjects name - the same as we are self signed.
+        X500Name subjectName = new X500Name(issuer);
+
+        // Serial
+        BigInteger serial = new BigInteger(256, new SecureRandom());
+
+        // Not before
+        Date notBefore = new Date(System.currentTimeMillis() - 10000);
+        Date notAfter = new Date(expirationTime);
+
+        // Create the certificate - version 3
+        JcaX509v3CertificateBuilder builder = new JcaX509v3CertificateBuilder(issuerName, serial, notBefore, notAfter, subjectName, publicKey);
+
+        ASN1EncodableVector purposes = new ASN1EncodableVector();
+        purposes.add(KeyPurposeId.id_kp_serverAuth);
+        purposes.add(KeyPurposeId.id_kp_clientAuth);
+        purposes.add(KeyPurposeId.anyExtendedKeyUsage);
+
+        ASN1ObjectIdentifier extendedKeyUsage = new ASN1ObjectIdentifier("2.5.29.37").intern();
+        builder.addExtension(extendedKeyUsage, false, new DERSequence(purposes));
+
+        ContentSigner signer = new JcaContentSignerBuilder(signatureAlgorithm).setProvider(SecurityProviderUtility.getBCProvider()).build(privateKey);
+        X509CertificateHolder holder = builder.build(signer);
+        X509Certificate cert = new JcaX509CertificateConverter().setProvider(SecurityProviderUtility.getBCProvider()).getCertificate(holder);
+
+        return cert;
+    }
+
+    public List<String> getKeys() {
+        try {
+            return Collections.list(this.keyStore.aliases());
+        } catch (KeyStoreException e) {
+            LOG.error(e.getMessage(), e);
+            return Lists.newArrayList();
+        }
+    }
+
+    public SignatureAlgorithm getSignatureAlgorithm(String alias) throws KeyStoreException {
+        Certificate[] chain = keyStore.getCertificateChain(alias);
+        if ((chain == null) || chain.length == 0) {
+            return null;
+        }
+
+        X509Certificate cert = (X509Certificate) chain[0];
+        return CertUtils.getSignatureAlgorithm(cert);
+    }
+
+
+    private void checkKeyExpiration(String alias) {
+        try {
+            Date expirationDate = ((X509Certificate) keyStore.getCertificate(alias)).getNotAfter();
+            checkKeyExpiration(alias, expirationDate.getTime());
+        } catch (KeyStoreException e) {
+            e.printStackTrace();
+        }
+    }
+
+    public KeyStore getKeyStore() {
+        return keyStore;
+    }
+
+    /**
+     * Checks, if SecurityModeType value correspondent to the keystorage extension value
+     *
+     * @param extension extension value
+     * @param securityMode SecurityModeType value
+     * @return boolean result
+     */
+    public static boolean checkExtension(final String extension, final SecurityModeType securityMode) {
+        boolean res = false;
+        if (securityMode != null) {
+            res = securityMode.toString().equals(extension);
+        }
+        return res;
+    }
+
+    /**
+     * 
+     * @return
+     */
+    private SecurityProviderUtility.KeyStorageType solveKeyStorageType() {
+        SecurityProviderUtility.SecurityModeType securityMode = SecurityProviderUtility.getSecurityMode();
+        if (securityMode == null) {
+            throw new InvalidParameterException("Security Mode wasn't initialized. Call installBCProvider() before");
+        }
+        String keyStoreExt = FilenameUtils.getExtension(keyStoreFile);
+        SecurityProviderUtility.KeyStorageType keyStorageType = SecurityProviderUtility.KeyStorageType.fromExtension(keyStoreExt);
+        boolean ksTypeFound = false;
+        for (SecurityProviderUtility.KeyStorageType ksType : securityMode.getKeystorageTypes()) {
+            if (keyStorageType == ksType) {
+                ksTypeFound = true;
+                break;
+            }
+        }
+        if (!ksTypeFound) {
+            switch (securityMode) {
+            case BCFIPS_SECURITY_MODE: {
+                keyStorageType =  SecurityProviderUtility.KeyStorageType.BCFKS_KS;
+                break;
+            }
+            case BCPROV_SECURITY_MODE: {
+                keyStorageType = SecurityProviderUtility.KeyStorageType.PKCS12_KS;
+                break;
+            }
+            }
+        }
+        return keyStorageType;
+    }
+}
\ No newline at end of file
diff --git a/oxAuth/Model/src/main/java/org/gluu/oxauth/model/crypto/OxElevenCryptoProvider.java b/oxAuth/Model/src/main/java/org/gluu/oxauth/model/crypto/OxElevenCryptoProvider.java
new file mode 100644
index 00000000..7299186d
--- /dev/null
+++ b/oxAuth/Model/src/main/java/org/gluu/oxauth/model/crypto/OxElevenCryptoProvider.java
@@ -0,0 +1,168 @@
+/*
+ * oxAuth is available under the MIT License (2008). See http://opensource.org/licenses/MIT for full text.
+ *
+ * Copyright (c) 2014, Gluu
+ */
+
+package org.gluu.oxauth.model.crypto;
+
+import org.apache.http.HttpStatus;
+import org.gluu.oxauth.model.crypto.signature.SignatureAlgorithm;
+import org.gluu.oxauth.model.jwk.Algorithm;
+import org.gluu.oxauth.model.jwk.Use;
+import org.gluu.oxeleven.client.*;
+import org.gluu.oxeleven.model.JwksRequestParam;
+import org.gluu.oxeleven.model.KeyRequestParam;
+import org.json.JSONArray;
+import org.json.JSONException;
+import org.json.JSONObject;
+
+import java.security.PrivateKey;
+import java.security.SignatureException;
+import java.util.ArrayList;
+
+import static org.gluu.oxauth.model.jwk.JWKParameter.*;
+
+/**
+ * @author Javier Rojas Blum
+ * @version February 12, 2019
+ */
+public class OxElevenCryptoProvider extends AbstractCryptoProvider {
+
+    private String generateKeyEndpoint;
+    private String signEndpoint;
+    private String verifySignatureEndpoint;
+    private String deleteKeyEndpoint;
+    private String accessToken;
+
+    public OxElevenCryptoProvider(String generateKeyEndpoint, String signEndpoint, String verifySignatureEndpoint,
+                                  String deleteKeyEndpoint, String accessToken) {
+        this.generateKeyEndpoint = generateKeyEndpoint;
+        this.signEndpoint = signEndpoint;
+        this.verifySignatureEndpoint = verifySignatureEndpoint;
+        this.deleteKeyEndpoint = deleteKeyEndpoint;
+        this.accessToken = accessToken;
+    }
+
+    @Override
+    public boolean containsKey(String keyId) {
+        return false;
+    }
+
+    @Override
+    public JSONObject generateKey(Algorithm algorithm, Long expirationTime, Use use) throws Exception {
+        return generateKey(algorithm, expirationTime, use, 2048);
+    }
+
+    @Override
+    public JSONObject generateKey(Algorithm algorithm, Long expirationTime, Use use, int keyLength) throws Exception {
+        GenerateKeyRequest request = new GenerateKeyRequest();
+        request.setSignatureAlgorithm(algorithm.toString());
+        request.setExpirationTime(expirationTime);
+        request.setAccessToken(accessToken);
+
+        GenerateKeyClient client = new GenerateKeyClient(generateKeyEndpoint);
+        client.setRequest(request);
+
+        GenerateKeyResponse response = client.exec();
+        if (response.getStatus() == HttpStatus.SC_OK && response.getKeyId() != null) {
+            return response.getJSONEntity();
+        } else {
+            throw new Exception(response.getEntity());
+        }
+    }
+
+    @Override
+    public String sign(String signingInput, String keyId, String shardSecret, SignatureAlgorithm signatureAlgorithm) throws Exception {
+        SignRequest request = new SignRequest();
+        request.getSignRequestParam().setSigningInput(signingInput);
+        request.getSignRequestParam().setAlias(keyId);
+        request.getSignRequestParam().setSharedSecret(shardSecret);
+        request.getSignRequestParam().setSignatureAlgorithm(signatureAlgorithm.getName());
+        request.setAccessToken(accessToken);
+
+        SignClient client = new SignClient(signEndpoint);
+        client.setRequest(request);
+
+        SignResponse response = client.exec();
+        if (response.getStatus() == HttpStatus.SC_OK && response.getSignature() != null) {
+            return response.getSignature();
+        } else {
+            throw new Exception(response.getEntity());
+        }
+    }
+
+    @Override
+    public boolean verifySignature(String signingInput, String encodedSignature, String keyId, JSONObject jwks, String sharedSecret, SignatureAlgorithm signatureAlgorithm) throws Exception {
+        VerifySignatureRequest request = new VerifySignatureRequest();
+        request.getVerifySignatureRequestParam().setSigningInput(signingInput);
+        request.getVerifySignatureRequestParam().setSignature(encodedSignature);
+        request.getVerifySignatureRequestParam().setAlias(keyId);
+        request.getVerifySignatureRequestParam().setSharedSecret(sharedSecret);
+        request.getVerifySignatureRequestParam().setSignatureAlgorithm(signatureAlgorithm.getName());
+        request.setAccessToken(accessToken);
+        if (jwks != null) {
+            request.getVerifySignatureRequestParam().setJwksRequestParam(getJwksRequestParam(jwks));
+        }
+
+        VerifySignatureClient client = new VerifySignatureClient(verifySignatureEndpoint);
+        client.setRequest(request);
+
+        VerifySignatureResponse response = client.exec();
+        if (response.getStatus() == HttpStatus.SC_OK) {
+            return response.isVerified();
+        } else {
+            throw new SignatureException(response.getEntity());
+        }
+    }
+
+    private static JwksRequestParam getJwksRequestParam(JSONObject jwksJsonObject) throws JSONException {
+        JwksRequestParam jwks = new JwksRequestParam();
+        jwks.setKeyRequestParams(new ArrayList<>());
+
+        JSONArray keys = jwksJsonObject.getJSONArray(JSON_WEB_KEY_SET);
+        for (int i = 0; i < keys.length(); i++) {
+            jwks.getKeyRequestParams().add(mapToKeyRequestParam(keys.getJSONObject(i)));
+        }
+
+        return jwks;
+    }
+
+    private static KeyRequestParam mapToKeyRequestParam(JSONObject jwk) {
+        KeyRequestParam key = new KeyRequestParam();
+        key.setAlg(jwk.getString(ALGORITHM));
+        key.setKid(jwk.getString(KEY_ID));
+        key.setUse(jwk.getString(KEY_USE));
+        key.setKty(jwk.getString(KEY_TYPE));
+
+        key.setN(jwk.optString(MODULUS));
+        key.setE(jwk.optString(EXPONENT));
+
+        key.setCrv(jwk.optString(CURVE));
+        key.setX(jwk.optString(X));
+        key.setY(jwk.optString(Y));
+        return key;
+    }
+
+    @Override
+    public boolean deleteKey(String keyId) throws Exception {
+        DeleteKeyRequest request = new DeleteKeyRequest();
+        request.setAlias(keyId);
+        request.setAccessToken(accessToken);
+
+        DeleteKeyClient client = new DeleteKeyClient(deleteKeyEndpoint);
+        client.setRequest(request);
+
+        DeleteKeyResponse response = client.exec();
+        if (response.getStatus() == org.apache.http.HttpStatus.SC_OK) {
+            return response.isDeleted();
+        } else {
+            throw new Exception(response.getEntity());
+        }
+    }
+
+	@Override
+	public PrivateKey getPrivateKey(String keyId) {
+        throw new UnsupportedOperationException("Method not implemented.");
+	}
+}
\ No newline at end of file
diff --git a/oxAuth/Model/src/main/java/org/gluu/oxauth/model/crypto/PrivateKey.java b/oxAuth/Model/src/main/java/org/gluu/oxauth/model/crypto/PrivateKey.java
new file mode 100644
index 00000000..92a47c75
--- /dev/null
+++ b/oxAuth/Model/src/main/java/org/gluu/oxauth/model/crypto/PrivateKey.java
@@ -0,0 +1,40 @@
+/*
+ * oxAuth is available under the MIT License (2008). See http://opensource.org/licenses/MIT for full text.
+ *
+ * Copyright (c) 2014, Gluu
+ */
+
+package org.gluu.oxauth.model.crypto;
+
+import org.gluu.oxauth.model.common.JSONable;
+import org.gluu.oxauth.model.crypto.signature.SignatureAlgorithm;
+
+/**
+ * The Private Key for Cryptography algorithms
+ *
+ * @author Javier Rojas Blum
+ * @version June 25, 2016
+ */
+public abstract class PrivateKey implements JSONable {
+
+    private String keyId;
+
+    private SignatureAlgorithm signatureAlgorithm;
+
+    public String getKeyId() {
+        return keyId;
+    }
+
+    public void setKeyId(String keyId) {
+        this.keyId = keyId;
+    }
+
+    public SignatureAlgorithm getSignatureAlgorithm() {
+        return signatureAlgorithm;
+    }
+
+    public void setSignatureAlgorithm(SignatureAlgorithm signatureAlgorithm) {
+        this.signatureAlgorithm = signatureAlgorithm;
+    }
+
+}
\ No newline at end of file
diff --git a/oxAuth/Model/src/main/java/org/gluu/oxauth/model/crypto/PublicKey.java b/oxAuth/Model/src/main/java/org/gluu/oxauth/model/crypto/PublicKey.java
new file mode 100644
index 00000000..08ce819e
--- /dev/null
+++ b/oxAuth/Model/src/main/java/org/gluu/oxauth/model/crypto/PublicKey.java
@@ -0,0 +1,49 @@
+/*
+ * oxAuth is available under the MIT License (2008). See http://opensource.org/licenses/MIT for full text.
+ *
+ * Copyright (c) 2014, Gluu
+ */
+
+package org.gluu.oxauth.model.crypto;
+
+import org.gluu.oxauth.model.common.JSONable;
+import org.gluu.oxauth.model.crypto.signature.SignatureAlgorithm;
+
+/**
+ * The Public Key for Cryptography algorithms
+ *
+ * @author Javier Rojas Blum
+ * @version June 25, 2016
+ */
+public abstract class PublicKey implements JSONable {
+
+    private String keyId;
+
+    private SignatureAlgorithm signatureAlgorithm;
+
+    private Certificate certificate;
+
+    public String getKeyId() {
+        return keyId;
+    }
+
+    public void setKeyId(String keyId) {
+        this.keyId = keyId;
+    }
+
+    public SignatureAlgorithm getSignatureAlgorithm() {
+        return signatureAlgorithm;
+    }
+
+    public void setSignatureAlgorithm(SignatureAlgorithm signatureAlgorithm) {
+        this.signatureAlgorithm = signatureAlgorithm;
+    }
+
+    public Certificate getCertificate() {
+        return certificate;
+    }
+
+    public void setCertificate(Certificate certificate) {
+        this.certificate = certificate;
+    }
+}
\ No newline at end of file
diff --git a/oxAuth/Model/src/main/java/org/gluu/oxauth/model/crypto/binding/TokenBinding.java b/oxAuth/Model/src/main/java/org/gluu/oxauth/model/crypto/binding/TokenBinding.java
new file mode 100644
index 00000000..456358bc
--- /dev/null
+++ b/oxAuth/Model/src/main/java/org/gluu/oxauth/model/crypto/binding/TokenBinding.java
@@ -0,0 +1,60 @@
+package org.gluu.oxauth.model.crypto.binding;
+
+import java.util.Arrays;
+
+/**
+ * struct {
+ *    TokenBindingType tokenbinding_type;
+ *    TokenBindingID tokenbindingid;
+ *    opaque signature<64..2^16-1>;  Signature over the concatenation
+ *                                     of tokenbinding_type,
+ *                                     key_parameters and exported
+ *                                     keying material (EKM)
+ *    TB_Extension extensions<0..2^16-1>;
+ * } TokenBinding;
+ *
+ * @author Yuriy Zabrovarnyy
+ */
+public class TokenBinding {
+
+    private TokenBindingType tokenBindingType;
+    private TokenBindingID tokenBindingID;
+    private byte[] signature;
+    private TokenBindingExtension extension;
+
+    public TokenBinding() {
+    }
+
+    public TokenBinding(TokenBindingType tokenBindingType, TokenBindingID tokenBindingID, byte[] signature, TokenBindingExtension extension) {
+        this.tokenBindingType = tokenBindingType;
+        this.tokenBindingID = tokenBindingID;
+        this.signature = signature;
+        this.extension = extension;
+    }
+
+    public TokenBindingType getTokenBindingType() {
+        return tokenBindingType;
+    }
+
+    public TokenBindingID getTokenBindingID() {
+        return tokenBindingID;
+    }
+
+    public byte[] getSignature() {
+        return signature;
+    }
+
+    public TokenBindingExtension getExtension() {
+        return extension;
+    }
+
+    @Override
+    public String toString() {
+        return "TokenBinding{" +
+                "tokenBindingType=" + tokenBindingType +
+                ", tokenBindingID=" + tokenBindingID +
+                ", signature=" + Arrays.toString(signature) +
+                ", extension=" + extension +
+                '}';
+    }
+}
diff --git a/oxAuth/Model/src/main/java/org/gluu/oxauth/model/crypto/binding/TokenBindingExtension.java b/oxAuth/Model/src/main/java/org/gluu/oxauth/model/crypto/binding/TokenBindingExtension.java
new file mode 100644
index 00000000..828d5ebe
--- /dev/null
+++ b/oxAuth/Model/src/main/java/org/gluu/oxauth/model/crypto/binding/TokenBindingExtension.java
@@ -0,0 +1,41 @@
+package org.gluu.oxauth.model.crypto.binding;
+
+import java.util.Arrays;
+
+/**
+ * struct {
+ *     TB_ExtensionType extension_type;
+ *     opaque extension_data<0..2^16-1>;
+ * } TB_Extension;
+ *
+ * @author Yuriy Zabrovarnyy
+ */
+public class TokenBindingExtension {
+
+    private TokenBindingExtensionType extensionType;
+    private byte[] extensionData;
+
+    public TokenBindingExtension() {
+    }
+
+    public TokenBindingExtension(TokenBindingExtensionType extensionType, byte[] extensionData) {
+        this.extensionType = extensionType;
+        this.extensionData = extensionData;
+    }
+
+    public TokenBindingExtensionType getExtensionType() {
+        return extensionType;
+    }
+
+    public byte[] getExtensionData() {
+        return extensionData;
+    }
+
+    @Override
+    public String toString() {
+        return "TokenBindingExtension{" +
+                "extensionType=" + extensionType +
+                ", extensionData=" + Arrays.toString(extensionData) +
+                '}';
+    }
+}
diff --git a/oxAuth/Model/src/main/java/org/gluu/oxauth/model/crypto/binding/TokenBindingExtensionType.java b/oxAuth/Model/src/main/java/org/gluu/oxauth/model/crypto/binding/TokenBindingExtensionType.java
new file mode 100644
index 00000000..2436ff07
--- /dev/null
+++ b/oxAuth/Model/src/main/java/org/gluu/oxauth/model/crypto/binding/TokenBindingExtensionType.java
@@ -0,0 +1,12 @@
+package org.gluu.oxauth.model.crypto.binding;
+
+/**
+ * enum {
+ * (255)          No initial TB_ExtensionType registrations
+ * } TB_ExtensionType;
+ *
+ * @author Yuriy Zabrovarnyy
+ */
+public enum TokenBindingExtensionType {
+    UNKNOWN
+}
diff --git a/oxAuth/Model/src/main/java/org/gluu/oxauth/model/crypto/binding/TokenBindingID.java b/oxAuth/Model/src/main/java/org/gluu/oxauth/model/crypto/binding/TokenBindingID.java
new file mode 100644
index 00000000..82622f92
--- /dev/null
+++ b/oxAuth/Model/src/main/java/org/gluu/oxauth/model/crypto/binding/TokenBindingID.java
@@ -0,0 +1,54 @@
+package org.gluu.oxauth.model.crypto.binding;
+
+import org.apache.commons.codec.digest.DigestUtils;
+import org.gluu.oxauth.model.util.Base64Util;
+
+/**
+ * <pre>
+ * struct {
+ *    TokenBindingKeyParameters key_parameters;
+ *    uint16 key_length;       Length (in bytes) of the following TokenBindingID.TokenBindingPublicKey
+ *    select (key_parameters) {
+ *       case rsa2048_pkcs1.5:
+ *       case rsa2048_pss:
+ *          RSAPublicKey rsapubkey;
+ *       case ecdsap256:
+ *          TB_ECPoint point;
+ *    } TokenBindingPublicKey;
+ * } TokenBindingID;
+ * </pre>
+ *
+ * @author Yuriy Zabrovarnyy
+ */
+public class TokenBindingID {
+
+    private TokenBindingKeyParameters keyParameters;
+    private byte[] publicKey;
+    private byte[] raw;
+
+    public TokenBindingID(TokenBindingKeyParameters keyParameters, byte[] publicKey, byte[] raw) {
+        this.keyParameters = keyParameters;
+        this.publicKey = publicKey;
+        this.raw = raw;
+    }
+
+    public TokenBindingKeyParameters getKeyParameters() {
+        return keyParameters;
+    }
+
+    public byte[] getPublicKey() {
+        return publicKey;
+    }
+
+    public byte[] getRaw() {
+        return raw;
+    }
+
+    public byte[] sha256() {
+        return DigestUtils.sha256(raw);
+    }
+
+    public String sha256base64url() {
+        return Base64Util.base64urlencode(sha256());
+    }
+}
diff --git a/oxAuth/Model/src/main/java/org/gluu/oxauth/model/crypto/binding/TokenBindingKeyParameters.java b/oxAuth/Model/src/main/java/org/gluu/oxauth/model/crypto/binding/TokenBindingKeyParameters.java
new file mode 100644
index 00000000..32407e8a
--- /dev/null
+++ b/oxAuth/Model/src/main/java/org/gluu/oxauth/model/crypto/binding/TokenBindingKeyParameters.java
@@ -0,0 +1,49 @@
+package org.gluu.oxauth.model.crypto.binding;
+
+/**
+ * <pre>
+ *  enum {
+ *     rsa2048_pkcs1.5(0), rsa2048_pss(1), ecdsap256(2), (255)
+ *  } TokenBindingKeyParameters;
+ *  </pre>
+ *
+ * @author Yuriy Zabrovarnyy
+ */
+public enum TokenBindingKeyParameters {
+    RSA2048_PKCS1_5("rsa2048_pkcs1.5", 0),
+    RSA2048_PSS("rsa2048_pss", 1),
+    ECDSAP256("ecdsap256", 2);
+
+    private final String value;
+    private final int byteValue;
+
+    TokenBindingKeyParameters(String value, int byteValue) {
+        this.value = value;
+        this.byteValue = byteValue;
+    }
+
+    public String getValue() {
+        return value;
+    }
+
+    public int getByteValue() {
+        return byteValue;
+    }
+
+    public static TokenBindingKeyParameters valueOf(int byteValue) {
+        for (TokenBindingKeyParameters v : values()) {
+            if (v.getByteValue() == byteValue) {
+                return v;
+            }
+        }
+        throw new RuntimeException("Failed to identify TokenBindingKeyParameters by byteValue");
+    }
+
+    @Override
+    public String toString() {
+        return "TokenBindingKeyParameters{" +
+                "value='" + value + '\'' +
+                ", byteValue=" + byteValue +
+                "} " + super.toString();
+    }
+}
diff --git a/oxAuth/Model/src/main/java/org/gluu/oxauth/model/crypto/binding/TokenBindingMessage.java b/oxAuth/Model/src/main/java/org/gluu/oxauth/model/crypto/binding/TokenBindingMessage.java
new file mode 100644
index 00000000..71073107
--- /dev/null
+++ b/oxAuth/Model/src/main/java/org/gluu/oxauth/model/crypto/binding/TokenBindingMessage.java
@@ -0,0 +1,102 @@
+package org.gluu.oxauth.model.crypto.binding;
+
+import com.google.common.base.Function;
+import org.apache.commons.lang.StringUtils;
+import org.apache.log4j.Logger;
+import org.json.JSONException;
+import org.json.JSONObject;
+import org.gluu.oxauth.model.token.JsonWebResponse;
+
+import java.util.ArrayList;
+import java.util.List;
+
+/**
+ * <pre>
+ * struct {
+ *     TokenBinding tokenbindings<132..2^16-1>;
+ * } TokenBindingMessage;
+ * </pre>
+ *
+ * @author Yuriy Zabrovarnyy
+ */
+public class TokenBindingMessage {
+
+    private static final Logger log = Logger.getLogger(TokenBindingMessage.class);
+
+    private List<TokenBinding> tokenBindings = new ArrayList<TokenBinding>();
+
+    public TokenBindingMessage(String base64urlencoded) throws TokenBindingParseException {
+        this(TokenBindingMessageParser.parseBase64UrlEncoded(base64urlencoded));
+    }
+
+    public TokenBindingMessage(byte[] raw) throws TokenBindingParseException {
+        this(TokenBindingMessageParser.parseBytes(raw));
+    }
+
+    public TokenBindingMessage(List<TokenBinding> tokenBindings) {
+        this.tokenBindings = tokenBindings;
+    }
+
+    public List<TokenBinding> getTokenBindings() {
+        return tokenBindings;
+    }
+
+    public TokenBinding getFirstTokenBindingByType(TokenBindingType type) {
+        for (TokenBinding binding : tokenBindings) {
+            if (binding.getTokenBindingType() == type) {
+                return binding;
+            }
+        }
+        return null;
+    }
+
+    public static Function<JsonWebResponse, Void> createIdTokenTokingBindingPreprocessing(String tokenBindingMessageAsString, final String rpTokenBindingMessageHashClaimKey) throws TokenBindingParseException {
+        final boolean tokenBindingMessagePresent = StringUtils.isNotBlank(tokenBindingMessageAsString);
+        final boolean rpKeyPresent = StringUtils.isNotBlank(rpTokenBindingMessageHashClaimKey);
+
+        log.trace("TokenBindingMessage present: " + tokenBindingMessagePresent + ", rpCnfKey: " + rpTokenBindingMessageHashClaimKey);
+
+        if (tokenBindingMessagePresent && rpKeyPresent) {
+            TokenBindingMessage message = new TokenBindingMessage(tokenBindingMessageAsString);
+            final TokenBinding referredBinding = message.getFirstTokenBindingByType(TokenBindingType.REFERRED_TOKEN_BINDING);
+            return new Function<JsonWebResponse, Void>() {
+                @Override
+                public Void apply(JsonWebResponse jsonWebResponse) {
+                    setCnfClaim(jsonWebResponse, referredBinding.getTokenBindingID().sha256base64url(), rpTokenBindingMessageHashClaimKey);
+                    return null;
+                }
+            };
+        }
+        return null;
+    }
+
+    public static void setCnfClaim(JsonWebResponse jsonWebResponse, String tokenBindingIdHash, String rpTokenBindingMessageHashClaimKey) {
+        try {
+            JSONObject value = jsonWebResponse.getClaims().getClaimAsJSON("cnf");
+            if (value == null) {
+                value = new JSONObject();
+            }
+            value.put(rpTokenBindingMessageHashClaimKey, tokenBindingIdHash);
+
+            jsonWebResponse.getClaims().setClaim("cnf", value);
+        } catch (JSONException e) {
+            log.error("Failed to create cnf JSON object", e);
+        }
+    }
+
+    public static String getTokenBindingIdHashFromTokenBindingMessage(String tokenBindingMessageAsString, final String rpTokenBindingMessageHashClaimKey) throws TokenBindingParseException {
+        if (StringUtils.isNotBlank(tokenBindingMessageAsString) && StringUtils.isNotBlank(rpTokenBindingMessageHashClaimKey)) {
+            TokenBindingMessage message = new TokenBindingMessage(tokenBindingMessageAsString);
+            final TokenBinding referredBinding = message.getFirstTokenBindingByType(TokenBindingType.REFERRED_TOKEN_BINDING);
+            return referredBinding.getTokenBindingID().sha256base64url();
+        }
+        return null;
+    }
+
+    @Override
+    public String toString() {
+        return "TokenBindingMessage{" +
+                "tokenBindings=" + tokenBindings +
+                '}';
+    }
+}
diff --git a/oxAuth/Model/src/main/java/org/gluu/oxauth/model/crypto/binding/TokenBindingMessageParser.java b/oxAuth/Model/src/main/java/org/gluu/oxauth/model/crypto/binding/TokenBindingMessageParser.java
new file mode 100644
index 00000000..70e057a9
--- /dev/null
+++ b/oxAuth/Model/src/main/java/org/gluu/oxauth/model/crypto/binding/TokenBindingMessageParser.java
@@ -0,0 +1,80 @@
+package org.gluu.oxauth.model.crypto.binding;
+
+import com.google.common.base.Preconditions;
+import org.apache.log4j.Logger;
+import org.gluu.oxauth.model.util.Base64Util;
+import org.gluu.oxauth.model.util.ByteUtils;
+
+import java.io.ByteArrayInputStream;
+import java.util.ArrayList;
+import java.util.Arrays;
+import java.util.List;
+
+/**
+ * @author Yuriy Zabrovarnyy
+ */
+public class TokenBindingMessageParser {
+
+    private static final Logger log = Logger.getLogger(TokenBindingMessageParser.class);
+
+    private TokenBindingMessageParser() {
+    }
+
+    public static List<TokenBinding> parseBase64UrlEncoded(String base64UrlEncodedString) throws TokenBindingParseException {
+        return parseBytes(Base64Util.base64urldecode(base64UrlEncodedString));
+    }
+
+    public static List<TokenBinding> parseBytes(byte[] raw) throws TokenBindingParseException {
+        try {
+            int length = ByteUtils.twoBytesAsInt(raw[0], raw[1]);
+
+            if (length != (raw.length - 2)) {
+                log.error("Invalid token binding message. First two bytes length value: " + length + "does not match actual bytes length: " + raw.length);
+                throw new TokenBindingParseException("Invalid token binding message. First two bytes length value does not match actual bytes length.");
+            }
+
+            List<TokenBinding> result = new ArrayList<TokenBinding>();
+
+            TokenBindingStream stream = new TokenBindingStream(raw, 2, raw.length);
+            Preconditions.checkState(stream.getPos() == 2);
+
+            while (stream.available() > 0) {
+                int tokenTypeAsByteValue = stream.read();
+
+                TokenBindingType tokenBindingType = TokenBindingType.valueOf(tokenTypeAsByteValue);
+                if (tokenBindingType == null) {
+                    throw new TokenBindingParseException("Failed to identify TokenBindingType, byteValue: " + tokenTypeAsByteValue);
+                }
+
+                int fromID = stream.getPos();
+                int keyParametersAsByteValue = stream.read();
+
+                TokenBindingKeyParameters tokenBindingKeyParameters = TokenBindingKeyParameters.valueOf(keyParametersAsByteValue);
+                if (tokenBindingKeyParameters == null) {
+                    throw new TokenBindingParseException("Failed to identify TokenBindingKeyParameters, byteValue: " + keyParametersAsByteValue);
+                }
+
+                byte[] publicKey = readBytesWithSuffixLength(stream);
+                byte[] bindingIdRaw = Arrays.copyOfRange(raw, fromID, stream.getPos());
+
+                byte[] signature = readBytesWithSuffixLength(stream);
+                byte[] extensions = readBytesWithSuffixLength(stream);
+
+                TokenBindingID id = new TokenBindingID(tokenBindingKeyParameters, publicKey, bindingIdRaw);
+
+                result.add(new TokenBinding(tokenBindingType, id, signature, new TokenBindingExtension(TokenBindingExtensionType.UNKNOWN, extensions)));
+            }
+            return result;
+        } catch (Exception e) {
+            throw new TokenBindingParseException("Failed to parse TokenBindingMessage, raw: " + Base64Util.base64urlencode(raw), e);
+        }
+    }
+
+    private static byte[] readBytesWithSuffixLength(ByteArrayInputStream stream) {
+        int length = ByteUtils.twoIntsAsInt(stream.read(), stream.read());
+
+        byte[] data = new byte[length];
+        stream.read(data, 0, length);
+        return data;
+    }
+}
diff --git a/oxAuth/Model/src/main/java/org/gluu/oxauth/model/crypto/binding/TokenBindingParseException.java b/oxAuth/Model/src/main/java/org/gluu/oxauth/model/crypto/binding/TokenBindingParseException.java
new file mode 100644
index 00000000..de095acc
--- /dev/null
+++ b/oxAuth/Model/src/main/java/org/gluu/oxauth/model/crypto/binding/TokenBindingParseException.java
@@ -0,0 +1,26 @@
+package org.gluu.oxauth.model.crypto.binding;
+
+/**
+ * @author Yuriy Zabrovarnyy
+ */
+public class TokenBindingParseException extends Exception {
+
+    public TokenBindingParseException() {
+    }
+
+    public TokenBindingParseException(String message) {
+        super(message);
+    }
+
+    public TokenBindingParseException(String message, Throwable cause) {
+        super(message, cause);
+    }
+
+    public TokenBindingParseException(Throwable cause) {
+        super(cause);
+    }
+
+    public TokenBindingParseException(String message, Throwable cause, boolean enableSuppression, boolean writableStackTrace) {
+        super(message, cause, enableSuppression, writableStackTrace);
+    }
+}
diff --git a/oxAuth/Model/src/main/java/org/gluu/oxauth/model/crypto/binding/TokenBindingStream.java b/oxAuth/Model/src/main/java/org/gluu/oxauth/model/crypto/binding/TokenBindingStream.java
new file mode 100644
index 00000000..61b07fa4
--- /dev/null
+++ b/oxAuth/Model/src/main/java/org/gluu/oxauth/model/crypto/binding/TokenBindingStream.java
@@ -0,0 +1,20 @@
+package org.gluu.oxauth.model.crypto.binding;
+
+import java.io.ByteArrayInputStream;
+
+/**
+ * @author Yuriy Zabrovarnyy
+ */
+public class TokenBindingStream extends ByteArrayInputStream {
+    public TokenBindingStream(byte[] buf) {
+        super(buf);
+    }
+
+    public TokenBindingStream(byte[] buf, int offset, int length) {
+        super(buf, offset, length);
+    }
+
+    public int getPos() {
+        return pos;
+    }
+}
diff --git a/oxAuth/Model/src/main/java/org/gluu/oxauth/model/crypto/binding/TokenBindingType.java b/oxAuth/Model/src/main/java/org/gluu/oxauth/model/crypto/binding/TokenBindingType.java
new file mode 100644
index 00000000..70d9ad40
--- /dev/null
+++ b/oxAuth/Model/src/main/java/org/gluu/oxauth/model/crypto/binding/TokenBindingType.java
@@ -0,0 +1,48 @@
+package org.gluu.oxauth.model.crypto.binding;
+
+/**
+ * <pre>
+ * enum {
+ *    provided_token_binding(0), referred_token_binding(1), (255)
+ * } TokenBindingType;
+ * </pre>
+ *
+ * @author Yuriy Zabrovarnyy
+ */
+public enum TokenBindingType {
+    PROVIDED_TOKEN_BINDING("provided_token_binding", 0),
+    REFERRED_TOKEN_BINDING("referred_token_binding", 1);
+
+    private final String value;
+    private final int byteValue;
+
+    TokenBindingType(String value, int byteValue) {
+        this.value = value;
+        this.byteValue = byteValue;
+    }
+
+    public String getValue() {
+        return value;
+    }
+
+    public int getByteValue() {
+        return byteValue;
+    }
+
+    public static TokenBindingType valueOf(int byteValue) {
+        for (TokenBindingType v : values()) {
+            if (v.getByteValue() == byteValue) {
+                return v;
+            }
+        }
+        throw new RuntimeException("Failed to identify TokenBindingType by byteValue");
+    }
+
+    @Override
+    public String toString() {
+        return "TokenBindingType{" +
+                "value='" + value + '\'' +
+                ", byteValue=" + byteValue +
+                "} " + super.toString();
+    }
+}
diff --git a/oxAuth/Model/src/main/java/org/gluu/oxauth/model/crypto/encryption/BlockEncryptionAlgorithm.java b/oxAuth/Model/src/main/java/org/gluu/oxauth/model/crypto/encryption/BlockEncryptionAlgorithm.java
new file mode 100644
index 00000000..b22450e8
--- /dev/null
+++ b/oxAuth/Model/src/main/java/org/gluu/oxauth/model/crypto/encryption/BlockEncryptionAlgorithm.java
@@ -0,0 +1,103 @@
+/*
+ * oxAuth is available under the MIT License (2008). See http://opensource.org/licenses/MIT for full text.
+ *
+ * Copyright (c) 2014, Gluu
+ */
+
+package org.gluu.oxauth.model.crypto.encryption;
+
+import com.fasterxml.jackson.annotation.JsonCreator;
+import com.fasterxml.jackson.annotation.JsonValue;
+
+/**
+ * @author Javier Rojas Blum Date: 12.03.2012
+ */
+public enum BlockEncryptionAlgorithm {
+
+    A128CBC_PLUS_HS256("A128CBC+HS256", "CBC", "AES/CBC/PKCS5Padding", "SHA-256", "HMACSHA256", 256, 128, 128),
+    A256CBC_PLUS_HS512("A256CBC+HS512", "CBC", "AES/CBC/PKCS5Padding", "SHA-512", "HMACSHA512", 512, 128, 256),
+    A128GCM("A128GCM", "GCM", "AES/GCM/NoPadding", 128, 96),
+    A256GCM("A256GCM", "GCM", "AES/GCM/NoPadding", 256, 96);
+
+    private final String name;
+    private final String family;
+    private final String algorithm;
+    private final String messageDiggestAlgorithm;
+    private final String integrityValueAlgorithm;
+    private final int cmkLength;
+    private final int initVectorLength;
+    private final Integer cekLength;
+
+    private BlockEncryptionAlgorithm(String name, String family, String algorithm, int cmkLength, int initVectorLength) {
+        this.name = name;
+        this.family = family;
+        this.algorithm = algorithm;
+        this.messageDiggestAlgorithm = null;
+        this.integrityValueAlgorithm = null;
+        this.cmkLength = cmkLength;
+        this.initVectorLength=initVectorLength;
+        this.cekLength = null;
+    }
+
+    private BlockEncryptionAlgorithm(String name, String family, String algorithm, String messageDiggestAlgorithm,
+                                     String integrityValueAlgorithm, int cmkLength, int initVectorLength, int cekLength) {
+        this.name = name;
+        this.family = family;
+        this.algorithm = algorithm;
+        this.messageDiggestAlgorithm = messageDiggestAlgorithm;
+        this.integrityValueAlgorithm = integrityValueAlgorithm;
+        this.cmkLength = cmkLength;
+        this.initVectorLength=initVectorLength;
+        this.cekLength = cekLength;
+    }
+
+    public String getName() {
+        return name;
+    }
+
+    public String getFamily() {
+        return family;
+    }
+
+    public String getMessageDiggestAlgorithm() {
+        return messageDiggestAlgorithm;
+    }
+
+    public String getIntegrityValueAlgorithm() {
+        return integrityValueAlgorithm;
+    }
+
+    public String getAlgorithm() {
+        return algorithm;
+    }
+
+    public int getCmkLength() {
+        return cmkLength;
+    }
+
+    public int getInitVectorLength() {
+        return initVectorLength;
+    }
+
+    public Integer getCekLength() {
+        return cekLength;
+    }
+
+    @JsonCreator
+    public static BlockEncryptionAlgorithm fromName(String name) {
+        if (name != null) {
+            for (BlockEncryptionAlgorithm a : BlockEncryptionAlgorithm.values()) {
+                if (name.equals(a.name)) {
+                    return a;
+                }
+            }
+        }
+        return null;
+    }
+
+    @Override
+    @JsonValue
+    public String toString() {
+        return name;
+    }
+}
\ No newline at end of file
diff --git a/oxAuth/Model/src/main/java/org/gluu/oxauth/model/crypto/encryption/KeyEncryptionAlgorithm.java b/oxAuth/Model/src/main/java/org/gluu/oxauth/model/crypto/encryption/KeyEncryptionAlgorithm.java
new file mode 100644
index 00000000..cee83cba
--- /dev/null
+++ b/oxAuth/Model/src/main/java/org/gluu/oxauth/model/crypto/encryption/KeyEncryptionAlgorithm.java
@@ -0,0 +1,79 @@
+/*
+ * oxAuth is available under the MIT License (2008). See http://opensource.org/licenses/MIT for full text.
+ *
+ * Copyright (c) 2014, Gluu
+ */
+
+package org.gluu.oxauth.model.crypto.encryption;
+
+import com.fasterxml.jackson.annotation.JsonCreator;
+import com.fasterxml.jackson.annotation.JsonValue;
+import org.gluu.oxauth.model.jwk.Algorithm;
+
+/**
+ * @author Javier Rojas Blum Date: 12.03.2012
+ */
+public enum KeyEncryptionAlgorithm {
+
+    RSA1_5("RSA1_5", "RSA", "RSA/ECB/PKCS1Padding"),
+    RSA_OAEP("RSA-OAEP", "RSA", "RSA/ECB/OAEPWithSHA1AndMGF1Padding"),
+    A128KW("A128KW"),
+    A256KW("A256KW");
+    //DIR("dir"), // Not supported
+    //ECDH_ES("ECDH-ES"), // Not supported
+    //ECDH_ES_PLUS_A128KW("ECDH-ES+A128KW"), // Not supported
+    //ECDH_ES_A256KW("ECDH-ES+A256KW"); // Not supported
+
+    private final String name;
+    private final String family;
+    private final String algorithm;
+    private final Algorithm alg;
+
+    private KeyEncryptionAlgorithm(String name) {
+        this.name = name;
+        this.family = null;
+        this.algorithm = null;
+        this.alg = Algorithm.fromString(name);
+    }
+
+    private KeyEncryptionAlgorithm(String name, String family, String algorithm) {
+        this.name = name;
+        this.family = family;
+        this.algorithm = algorithm;
+        this.alg = Algorithm.fromString(name);
+    }
+
+    public Algorithm getAlg() {
+        return alg;
+    }
+
+    public String getName() {
+        return name;
+    }
+
+    public String getFamily() {
+        return family;
+    }
+
+    public String getAlgorithm() {
+        return algorithm;
+    }
+
+    @JsonCreator
+    public static KeyEncryptionAlgorithm fromName(String name) {
+        if (name != null) {
+            for (KeyEncryptionAlgorithm a : KeyEncryptionAlgorithm.values()) {
+                if (name.equals(a.name)) {
+                    return a;
+                }
+            }
+        }
+        return null;
+    }
+
+    @Override
+    @JsonValue
+    public String toString() {
+        return name;
+    }
+}
\ No newline at end of file
diff --git a/oxAuth/Model/src/main/java/org/gluu/oxauth/model/crypto/signature/AbstractSigner.java b/oxAuth/Model/src/main/java/org/gluu/oxauth/model/crypto/signature/AbstractSigner.java
new file mode 100644
index 00000000..68596264
--- /dev/null
+++ b/oxAuth/Model/src/main/java/org/gluu/oxauth/model/crypto/signature/AbstractSigner.java
@@ -0,0 +1,23 @@
+/*
+ * oxAuth is available under the MIT License (2008). See http://opensource.org/licenses/MIT for full text.
+ *
+ * Copyright (c) 2014, Gluu
+ */
+package org.gluu.oxauth.model.crypto.signature;
+
+/**
+ * @author Javier Rojas Blum
+ * @version April 22, 2016
+ */
+public abstract class AbstractSigner implements Signer {
+
+    private SignatureAlgorithm signatureAlgorithm;
+
+    protected AbstractSigner(SignatureAlgorithm signatureAlgorithm) {
+        this.signatureAlgorithm = signatureAlgorithm;
+    }
+
+    public SignatureAlgorithm getSignatureAlgorithm() {
+        return signatureAlgorithm;
+    }
+}
diff --git a/oxAuth/Model/src/main/java/org/gluu/oxauth/model/crypto/signature/AlgorithmFamily.java b/oxAuth/Model/src/main/java/org/gluu/oxauth/model/crypto/signature/AlgorithmFamily.java
new file mode 100644
index 00000000..93d12678
--- /dev/null
+++ b/oxAuth/Model/src/main/java/org/gluu/oxauth/model/crypto/signature/AlgorithmFamily.java
@@ -0,0 +1,50 @@
+/*
+ * oxAuth is available under the MIT License (2008). See http://opensource.org/licenses/MIT for full text.
+ *
+ * Copyright (c) 2014, Gluu
+ */
+
+package org.gluu.oxauth.model.crypto.signature;
+
+import com.fasterxml.jackson.annotation.JsonCreator;
+import com.fasterxml.jackson.annotation.JsonValue;
+
+/**
+ * @author Javier Rojas Blum
+ * @version February 12, 2019
+ */
+public enum AlgorithmFamily {
+    HMAC("HMAC"),
+    RSA("RSA"),
+    EC("EC");
+
+    private final String value;
+
+    AlgorithmFamily(String value) {
+        this.value = value;
+    }
+
+    public String getValue() {
+        return value;
+    }
+
+    @Override
+    @JsonValue
+    public String toString() {
+        return value;
+    }
+
+    @JsonCreator
+    public static AlgorithmFamily fromString(String param) {
+        if (param != null) {
+            for (AlgorithmFamily gt : AlgorithmFamily.values()) {
+                if (param.equals(gt.value)) {
+                    return gt;
+                }
+            }
+        }
+
+        return null;
+    }
+
+}
\ No newline at end of file
diff --git a/oxAuth/Model/src/main/java/org/gluu/oxauth/model/crypto/signature/AsymmetricSignatureAlgorithm.java b/oxAuth/Model/src/main/java/org/gluu/oxauth/model/crypto/signature/AsymmetricSignatureAlgorithm.java
new file mode 100644
index 00000000..47fb3ae7
--- /dev/null
+++ b/oxAuth/Model/src/main/java/org/gluu/oxauth/model/crypto/signature/AsymmetricSignatureAlgorithm.java
@@ -0,0 +1,138 @@
+/*
+ * oxAuth is available under the MIT License (2008). See http://opensource.org/licenses/MIT for full text.
+ *
+ * Copyright (c) 2014, Gluu
+ */
+
+package org.gluu.oxauth.model.crypto.signature;
+
+import com.fasterxml.jackson.annotation.JsonCreator;
+import com.fasterxml.jackson.annotation.JsonValue;
+import org.gluu.oxauth.model.common.HasParamName;
+import org.gluu.oxauth.model.jwt.JwtType;
+import org.gluu.persist.annotation.AttributeEnum;
+
+import java.util.ArrayList;
+import java.util.HashMap;
+import java.util.List;
+import java.util.Map;
+
+/**
+ * @author Javier Rojas Blum
+ * @version August 20, 2019
+ */
+public enum  AsymmetricSignatureAlgorithm implements HasParamName, AttributeEnum {
+
+    RS256("RS256", AlgorithmFamily.RSA, "SHA256WITHRSA"),
+    RS384("RS384", AlgorithmFamily.RSA, "SHA384WITHRSA"),
+    RS512("RS512", AlgorithmFamily.RSA, "SHA512WITHRSA"),
+    ES256("ES256", AlgorithmFamily.EC, "SHA256WITHECDSA", ECEllipticCurve.P_256),
+    ES384("ES384", AlgorithmFamily.EC, "SHA384WITHECDSA", ECEllipticCurve.P_384),
+    ES512("ES512", AlgorithmFamily.EC, "SHA512WITHECDSA", ECEllipticCurve.P_521),
+    PS256("PS256", AlgorithmFamily.RSA, "SHA256withRSAandMGF1"),
+    PS384("PS384", AlgorithmFamily.RSA, "SHA384withRSAandMGF1"),
+    PS512("PS512", AlgorithmFamily.RSA, "SHA512withRSAandMGF1");
+
+    private final String name;
+    private final AlgorithmFamily family;
+    private final String algorithm;
+    private final ECEllipticCurve curve;
+    private final JwtType jwtType;
+
+    private static Map<String, AsymmetricSignatureAlgorithm> mapByValues = new HashMap<>();
+
+    static {
+        for (AsymmetricSignatureAlgorithm enumType : values()) {
+            mapByValues.put(enumType.getValue(), enumType);
+        }
+    }
+
+    AsymmetricSignatureAlgorithm(String name, AlgorithmFamily family, String algorithm, ECEllipticCurve curve) {
+        this.name = name;
+        this.family = family;
+        this.algorithm = algorithm;
+        this.curve = curve;
+        this.jwtType = JwtType.JWT;
+    }
+
+    AsymmetricSignatureAlgorithm(String name, AlgorithmFamily family, String algorithm) {
+        this(name, family, algorithm, null);
+    }
+
+    @Override
+    public String getParamName() {
+        return name;
+    }
+
+    @Override
+    public String getValue() {
+        return name;
+    }
+
+    public AlgorithmFamily getFamily() {
+        return family;
+    }
+
+    public String getAlgorithm() {
+        return algorithm;
+    }
+
+    public ECEllipticCurve getCurve() {
+        return curve;
+    }
+
+    public JwtType getJwtType() {
+        return jwtType;
+    }
+
+    public static List<AsymmetricSignatureAlgorithm> fromString(String[] params) {
+        List<AsymmetricSignatureAlgorithm> asymmetricSignatureAlgorithms = new ArrayList<>();
+
+        for (String param : params) {
+            AsymmetricSignatureAlgorithm asymmetricSignatureAlgorithm = AsymmetricSignatureAlgorithm.fromString(param);
+            if (asymmetricSignatureAlgorithm != null) {
+                asymmetricSignatureAlgorithms.add(asymmetricSignatureAlgorithm);
+            }
+        }
+
+        return asymmetricSignatureAlgorithms;
+    }
+
+    /**
+     * Returns the corresponding {@link AsymmetricSignatureAlgorithm} for a parameter alg of the JWK endpoint.
+     *
+     * @param param The alg parameter.
+     * @return The corresponding alg if found, otherwise <code>null</code>.
+     */
+    @JsonCreator
+    public static AsymmetricSignatureAlgorithm fromString(String param) {
+        if (param != null) {
+            for (AsymmetricSignatureAlgorithm sa : AsymmetricSignatureAlgorithm.values()) {
+                if (param.equals(sa.name)) {
+                    return sa;
+                }
+            }
+        }
+        return null;
+    }
+
+    public static AsymmetricSignatureAlgorithm getByValue(String value) {
+        return mapByValues.get(value);
+    }
+
+    @Override
+    public Enum<? extends AttributeEnum> resolveByValue(String value) {
+        return getByValue(value);
+    }
+
+    /**
+     * Returns a string representation of the object. In this case the parameter name.
+     *
+     * @return The string representation of the object.
+     */
+    @Override
+    @JsonValue
+    public String toString() {
+        return name;
+    }
+}
\ No newline at end of file
diff --git a/oxAuth/Model/src/main/java/org/gluu/oxauth/model/crypto/signature/ECDSAKeyFactory.java b/oxAuth/Model/src/main/java/org/gluu/oxauth/model/crypto/signature/ECDSAKeyFactory.java
new file mode 100644
index 00000000..c7f635f7
--- /dev/null
+++ b/oxAuth/Model/src/main/java/org/gluu/oxauth/model/crypto/signature/ECDSAKeyFactory.java
@@ -0,0 +1,131 @@
+/*
+ * oxAuth is available under the MIT License (2008). See http://opensource.org/licenses/MIT for full text.
+ *
+ * Copyright (c) 2014, Gluu
+ */
+
+package org.gluu.oxauth.model.crypto.signature;
+
+import org.apache.commons.lang.StringUtils;
+import org.bouncycastle.asn1.ASN1EncodableVector;
+import org.bouncycastle.asn1.ASN1ObjectIdentifier;
+import org.bouncycastle.asn1.DERSequence;
+import org.bouncycastle.asn1.x500.X500Name;
+import org.bouncycastle.asn1.x509.KeyPurposeId;
+import org.bouncycastle.cert.CertIOException;
+import org.bouncycastle.cert.X509CertificateHolder;
+import org.bouncycastle.cert.jcajce.JcaX509CertificateConverter;
+import org.bouncycastle.cert.jcajce.JcaX509v3CertificateBuilder;
+import org.bouncycastle.operator.OperatorCreationException;
+import org.bouncycastle.operator.jcajce.JcaContentSignerBuilder;
+import org.gluu.oxauth.model.crypto.Certificate;
+import org.gluu.oxauth.model.crypto.KeyFactory;
+import org.gluu.util.security.SecurityProviderUtility;
+
+import java.math.BigInteger;
+import java.security.AlgorithmParameters;
+import java.security.InvalidAlgorithmParameterException;
+import java.security.InvalidParameterException;
+import java.security.KeyPair;
+import java.security.KeyPairGenerator;
+import java.security.NoSuchAlgorithmException;
+import java.security.SecureRandom;
+import java.security.cert.CertificateException;
+import java.security.cert.X509Certificate;
+import java.security.interfaces.ECPrivateKey;
+import java.security.interfaces.ECPublicKey;
+import java.security.spec.ECGenParameterSpec;
+import java.security.spec.ECParameterSpec;
+import java.security.spec.InvalidParameterSpecException;
+import java.util.Calendar;
+import java.util.Date;
+import java.util.GregorianCalendar;
+
+/**
+ * Factory to create asymmetric Public and Private Keys for the Elliptic Curve Digital Signature Algorithm (ECDSA)
+ *
+ * @author Javier Rojas Blum
+ * @version June 15, 2016
+ */
+public class ECDSAKeyFactory extends KeyFactory<ECDSAPrivateKey, ECDSAPublicKey> {
+
+    private SignatureAlgorithm signatureAlgorithm;
+    private KeyPair keyPair;
+
+    private ECDSAPrivateKey ecdsaPrivateKey;
+    private ECDSAPublicKey ecdsaPublicKey;
+    private Certificate certificate;
+
+    public ECDSAKeyFactory(SignatureAlgorithm signatureAlgorithm, String dnName) throws NoSuchAlgorithmException, InvalidParameterSpecException,
+            InvalidAlgorithmParameterException, OperatorCreationException, CertificateException, CertIOException {
+        if (signatureAlgorithm == null) {
+            throw new InvalidParameterException("The signature algorithm cannot be null");
+        }
+
+        this.signatureAlgorithm = signatureAlgorithm;
+
+        AlgorithmParameters parameters = AlgorithmParameters.getInstance("EC", SecurityProviderUtility.getBCProvider());
+
+        parameters.init(new ECGenParameterSpec(signatureAlgorithm.getCurve().getName()));
+        ECParameterSpec ecParameters = parameters.getParameterSpec(ECParameterSpec.class);
+
+        KeyPairGenerator keyGen = KeyPairGenerator.getInstance("EC", SecurityProviderUtility.getBCProvider());
+        keyGen.initialize(ecParameters, new SecureRandom());
+
+        keyPair = keyGen.generateKeyPair();
+
+        ECPrivateKey privateKeySpec = (ECPrivateKey) keyPair.getPrivate();
+        ECPublicKey publicKeySpec = (ECPublicKey) keyPair.getPublic();
+
+        BigInteger x = publicKeySpec.getW().getAffineX();
+        BigInteger y = publicKeySpec.getW().getAffineY();
+        BigInteger s = privateKeySpec.getS();
+
+        this.ecdsaPrivateKey = new ECDSAPrivateKey(s);
+        this.ecdsaPublicKey = new ECDSAPublicKey(signatureAlgorithm, x, y);
+
+        if (StringUtils.isNotBlank(dnName)) {
+            // Create certificate
+            GregorianCalendar startDate = new GregorianCalendar(); // time from which certificate is valid
+            GregorianCalendar expiryDate = new GregorianCalendar(); // time after which certificate is not valid
+            expiryDate.add(Calendar.YEAR, 1);
+
+            this.certificate = generateV3Certificate(startDate.getTime(), expiryDate.getTime(), dnName);
+        }
+    }
+
+    public Certificate generateV3Certificate(Date startDate, Date expirationDate, String dnName) throws OperatorCreationException, CertificateException, CertIOException {
+        BigInteger serialNumber = new BigInteger(1024, new SecureRandom()); // serial number for certificate
+        X500Name name = new X500Name(dnName);
+
+        JcaX509v3CertificateBuilder certGen = new JcaX509v3CertificateBuilder(name, serialNumber, startDate, expirationDate, name, keyPair.getPublic());
+
+        ASN1EncodableVector purposes = new ASN1EncodableVector();
+        purposes.add(KeyPurposeId.id_kp_serverAuth);
+        purposes.add(KeyPurposeId.id_kp_clientAuth);
+        purposes.add(KeyPurposeId.anyExtendedKeyUsage);
+
+        ASN1ObjectIdentifier extendedKeyUsage = new ASN1ObjectIdentifier("2.5.29.37").intern();
+        certGen.addExtension(extendedKeyUsage, false, new DERSequence(purposes));
+
+        X509CertificateHolder certHolder = certGen.build(new JcaContentSignerBuilder(signatureAlgorithm.getAlgorithm()).setProvider(SecurityProviderUtility.getBCProviderName()).build(keyPair.getPrivate()));
+        X509Certificate x509Certificate = new JcaX509CertificateConverter().setProvider(SecurityProviderUtility.getBCProviderName()).getCertificate(certHolder);
+
+        return new Certificate(signatureAlgorithm, x509Certificate);
+    }
+
+    @Override
+    public ECDSAPrivateKey getPrivateKey() {
+        return ecdsaPrivateKey;
+    }
+
+    @Override
+    public ECDSAPublicKey getPublicKey() {
+        return ecdsaPublicKey;
+    }
+
+    @Override
+    public Certificate getCertificate() {
+        return certificate;
+    }
+}
diff --git a/oxAuth/Model/src/main/java/org/gluu/oxauth/model/crypto/signature/ECDSAPrivateKey.java b/oxAuth/Model/src/main/java/org/gluu/oxauth/model/crypto/signature/ECDSAPrivateKey.java
new file mode 100644
index 00000000..66245380
--- /dev/null
+++ b/oxAuth/Model/src/main/java/org/gluu/oxauth/model/crypto/signature/ECDSAPrivateKey.java
@@ -0,0 +1,65 @@
+/*
+ * oxAuth is available under the MIT License (2008). See http://opensource.org/licenses/MIT for full text.
+ *
+ * Copyright (c) 2014, Gluu
+ */
+
+package org.gluu.oxauth.model.crypto.signature;
+
+import org.json.JSONException;
+import org.json.JSONObject;
+import org.gluu.oxauth.model.crypto.PrivateKey;
+import org.gluu.oxauth.model.util.Base64Util;
+import org.gluu.oxauth.model.util.StringUtils;
+
+import static org.gluu.oxauth.model.jwk.JWKParameter.*;
+
+import java.math.BigInteger;
+
+/**
+ * The Private Key for the Elliptic Curve Digital Signature Algorithm (ECDSA)
+ *
+ * @author Javier Rojas Blum
+ * @version July 31, 2016
+ */
+public class ECDSAPrivateKey extends PrivateKey {
+
+    private BigInteger d;
+
+    public ECDSAPrivateKey(BigInteger d) {
+        this.d = d;
+    }
+
+    public ECDSAPrivateKey(String d) {
+        this.d = new BigInteger(1, Base64Util.base64urldecode(d));
+    }
+
+    public BigInteger getD() {
+        return d;
+    }
+
+    public void setD(BigInteger d) {
+        this.d = d;
+    }
+
+    @Override
+    public JSONObject toJSONObject() throws JSONException {
+        JSONObject jsonObject = new JSONObject();
+        jsonObject.put(MODULUS, JSONObject.NULL);
+        jsonObject.put(EXPONENT, JSONObject.NULL);
+        jsonObject.put(D, Base64Util.base64urlencodeUnsignedBigInt(d));
+
+        return jsonObject;
+    }
+
+    @Override
+    public String toString() {
+        try {
+            return toJSONObject().toString(4);
+        } catch (JSONException e) {
+            return StringUtils.EMPTY_STRING;
+        } catch (Exception e) {
+            return StringUtils.EMPTY_STRING;
+        }
+    }
+}
\ No newline at end of file
diff --git a/oxAuth/Model/src/main/java/org/gluu/oxauth/model/crypto/signature/ECDSAPublicKey.java b/oxAuth/Model/src/main/java/org/gluu/oxauth/model/crypto/signature/ECDSAPublicKey.java
new file mode 100644
index 00000000..d20ab8f4
--- /dev/null
+++ b/oxAuth/Model/src/main/java/org/gluu/oxauth/model/crypto/signature/ECDSAPublicKey.java
@@ -0,0 +1,92 @@
+/*
+ * oxAuth is available under the MIT License (2008). See http://opensource.org/licenses/MIT for full text.
+ *
+ * Copyright (c) 2014, Gluu
+ */
+
+package org.gluu.oxauth.model.crypto.signature;
+
+import org.json.JSONException;
+import org.json.JSONObject;
+import org.gluu.oxauth.model.crypto.PublicKey;
+import org.gluu.oxauth.model.util.Base64Util;
+import org.gluu.oxauth.model.util.StringUtils;
+
+import static org.gluu.oxauth.model.jwk.JWKParameter.*;
+
+import java.math.BigInteger;
+
+/**
+ * The Public Key for the Elliptic Curve Digital Signature Algorithm (ECDSA)
+ *
+ * @author Javier Rojas Blum
+ * @version July 31, 2016
+ */
+public class ECDSAPublicKey extends PublicKey {
+
+    private static final String ECDSA_ALGORITHM = "EC";
+    private static final String USE = "sig";
+
+    private SignatureAlgorithm signatureAlgorithm;
+    private BigInteger x;
+    private BigInteger y;
+
+    public ECDSAPublicKey(SignatureAlgorithm signatureAlgorithm, BigInteger x, BigInteger y) {
+        this.signatureAlgorithm = signatureAlgorithm;
+        this.x = x;
+        this.y = y;
+    }
+
+    public ECDSAPublicKey(SignatureAlgorithm signatureAlgorithm, String x, String y) {
+        this(signatureAlgorithm,
+                new BigInteger(1, Base64Util.base64urldecode(x)),
+                new BigInteger(1, Base64Util.base64urldecode(y)));
+    }
+
+    public SignatureAlgorithm getSignatureAlgorithm() {
+        return signatureAlgorithm;
+    }
+
+    public void setSignatureAlgorithm(SignatureAlgorithm signatureAlgorithm) {
+        this.signatureAlgorithm = signatureAlgorithm;
+    }
+
+    public BigInteger getX() {
+        return x;
+    }
+
+    public void setX(BigInteger x) {
+        this.x = x;
+    }
+
+    public BigInteger getY() {
+        return y;
+    }
+
+    public void setY(BigInteger y) {
+        this.y = y;
+    }
+
+    @Override
+    public JSONObject toJSONObject() throws JSONException {
+        JSONObject jsonObject = new JSONObject();
+
+        jsonObject.put(MODULUS, JSONObject.NULL);
+        jsonObject.put(EXPONENT, JSONObject.NULL);
+        jsonObject.put(X, Base64Util.base64urlencodeUnsignedBigInt(x));
+        jsonObject.put(Y, Base64Util.base64urlencodeUnsignedBigInt(y));
+
+        return jsonObject;
+    }
+
+    @Override
+    public String toString() {
+        try {
+            return toJSONObject().toString(4);
+        } catch (JSONException e) {
+            return StringUtils.EMPTY_STRING;
+        } catch (Exception e) {
+            return StringUtils.EMPTY_STRING;
+        }
+    }
+}
\ No newline at end of file
diff --git a/oxAuth/Model/src/main/java/org/gluu/oxauth/model/crypto/signature/ECEllipticCurve.java b/oxAuth/Model/src/main/java/org/gluu/oxauth/model/crypto/signature/ECEllipticCurve.java
new file mode 100644
index 00000000..042408e2
--- /dev/null
+++ b/oxAuth/Model/src/main/java/org/gluu/oxauth/model/crypto/signature/ECEllipticCurve.java
@@ -0,0 +1,66 @@
+package org.gluu.oxauth.model.crypto.signature;
+
+import com.fasterxml.jackson.annotation.JsonCreator;
+import com.fasterxml.jackson.annotation.JsonValue;
+
+/**
+ * @author Javier Rojas Blum
+ * @version June 15, 2016
+ */
+public enum ECEllipticCurve {
+
+    P_256("P-256", "secp256r1", "1.2.840.10045.3.1.7"),
+    P_384("P-384", "secp384r1", "1.3.132.0.34"),
+    P_521("P-521", "secp521r1", "1.3.132.0.35");
+
+    private final String name;
+    private final String alias;
+    private final String oid;
+
+    private ECEllipticCurve(String name, String alias, String oid) {
+        this.name = name;
+        this.alias = alias;
+        this.oid = oid;
+    }
+
+    public String getName() {
+        return name;
+    }
+
+    public String getAlias() {
+        return alias;
+    }
+
+    public String getOid() {
+        return oid;
+    }
+
+    /**
+     * Returns the corresponding {@link ECEllipticCurve} for a parameter crv of the JWK endpoint.
+     *
+     * @param param The crv parameter.
+     * @return The corresponding curve if found, otherwise <code>null</code>.
+     */
+    @JsonCreator
+    public static ECEllipticCurve fromString(String param) {
+        if (param != null) {
+            for (ECEllipticCurve ec : ECEllipticCurve.values()) {
+                if (param.equals(ec.name) || param.equalsIgnoreCase(ec.name())) {
+                    return ec;
+                }
+            }
+        }
+        return null;
+    }
+
+    /**
+     * Returns a string representation of the object. In this case the parameter name.
+     *
+     * @return The string representation of the object.
+     */
+    @Override
+    @JsonValue
+    public String toString() {
+        return name;
+    }
+}
diff --git a/oxAuth/Model/src/main/java/org/gluu/oxauth/model/crypto/signature/RSAKeyFactory.java b/oxAuth/Model/src/main/java/org/gluu/oxauth/model/crypto/signature/RSAKeyFactory.java
new file mode 100644
index 00000000..73baa979
--- /dev/null
+++ b/oxAuth/Model/src/main/java/org/gluu/oxauth/model/crypto/signature/RSAKeyFactory.java
@@ -0,0 +1,141 @@
+/*
+ * oxAuth is available under the MIT License (2008). See http://opensource.org/licenses/MIT for full text.
+ *
+ * Copyright (c) 2014, Gluu
+ */
+
+package org.gluu.oxauth.model.crypto.signature;
+
+import org.apache.commons.lang.StringUtils;
+import org.bouncycastle.asn1.ASN1EncodableVector;
+import org.bouncycastle.asn1.ASN1ObjectIdentifier;
+import org.bouncycastle.asn1.DERSequence;
+import org.bouncycastle.asn1.x500.X500Name;
+import org.bouncycastle.asn1.x509.KeyPurposeId;
+import org.bouncycastle.cert.CertIOException;
+import org.bouncycastle.cert.X509CertificateHolder;
+import org.bouncycastle.cert.jcajce.JcaX509CertificateConverter;
+import org.bouncycastle.cert.jcajce.JcaX509v3CertificateBuilder;
+import org.bouncycastle.operator.OperatorCreationException;
+import org.bouncycastle.operator.jcajce.JcaContentSignerBuilder;
+import org.gluu.oxauth.model.crypto.Certificate;
+import org.gluu.oxauth.model.crypto.KeyFactory;
+import org.gluu.oxauth.model.jwk.JSONWebKey;
+import org.gluu.util.security.SecurityProviderUtility;
+
+import java.math.BigInteger;
+import java.security.InvalidParameterException;
+import java.security.KeyPair;
+import java.security.KeyPairGenerator;
+import java.security.NoSuchAlgorithmException;
+import java.security.SecureRandom;
+import java.security.cert.CertificateException;
+import java.security.cert.X509Certificate;
+import java.util.Calendar;
+import java.util.Date;
+import java.util.GregorianCalendar;
+
+/**
+ * Factory to create asymmetric Public and Private Keys for the RSA algorithm
+ *
+ * @author Javier Rojas Blum
+ * @version June 15, 2016
+ */
+@Deprecated
+public class RSAKeyFactory extends KeyFactory<RSAPrivateKey, RSAPublicKey> {
+
+    public static final int DEF_KEYLENGTH = 2048;
+
+    private SignatureAlgorithm signatureAlgorithm;
+    private KeyPair keyPair;
+
+    private RSAPrivateKey rsaPrivateKey;
+    private RSAPublicKey rsaPublicKey;
+    private Certificate certificate;
+
+    @Deprecated
+    public RSAKeyFactory(SignatureAlgorithm signatureAlgorithm, String dnName) throws NoSuchAlgorithmException, OperatorCreationException, CertificateException, CertIOException {
+        if (signatureAlgorithm == null) {
+            throw new InvalidParameterException("The signature algorithm cannot be null");
+        }
+
+        this.signatureAlgorithm = signatureAlgorithm;
+
+        KeyPairGenerator keyGen = KeyPairGenerator.getInstance("RSA", SecurityProviderUtility.getBCProvider());
+        keyGen.initialize(2048, new SecureRandom());
+
+        keyPair = keyGen.generateKeyPair();
+
+        java.security.interfaces.RSAPrivateKey jcersaPrivateCrtKey = (java.security.interfaces.RSAPrivateKey) keyPair.getPrivate();
+        java.security.interfaces.RSAPublicKey jcersaPublicKey = (java.security.interfaces.RSAPublicKey) keyPair.getPublic();
+
+        rsaPrivateKey = new RSAPrivateKey(jcersaPrivateCrtKey.getModulus(),
+                jcersaPrivateCrtKey.getPrivateExponent());
+
+        rsaPublicKey = new RSAPublicKey(jcersaPublicKey.getModulus(),
+                jcersaPublicKey.getPublicExponent());
+
+        if (StringUtils.isNotBlank(dnName)) {
+            // Create certificate
+            GregorianCalendar startDate = new GregorianCalendar(); // time from which certificate is valid
+            GregorianCalendar expiryDate = new GregorianCalendar(); // time after which certificate is not valid
+            expiryDate.add(Calendar.YEAR, 1);
+
+            this.certificate = generateV3Certificate(startDate.getTime(), expiryDate.getTime(), dnName);
+        }
+    }
+
+    public Certificate generateV3Certificate(Date startDate, Date expirationDate, String dnName) throws OperatorCreationException, CertificateException, CertIOException {
+        BigInteger serialNumber = new BigInteger(1024, new SecureRandom()); // serial number for certificate
+        X500Name name = new X500Name(dnName);
+
+        JcaX509v3CertificateBuilder certGen = new JcaX509v3CertificateBuilder(name, serialNumber, startDate, expirationDate, name, keyPair.getPublic());
+
+        ASN1EncodableVector purposes = new ASN1EncodableVector();
+        purposes.add(KeyPurposeId.id_kp_serverAuth);
+        purposes.add(KeyPurposeId.id_kp_clientAuth);
+        purposes.add(KeyPurposeId.anyExtendedKeyUsage);
+
+        ASN1ObjectIdentifier extendedKeyUsage = new ASN1ObjectIdentifier("2.5.29.37").intern();
+        certGen.addExtension(extendedKeyUsage, false, new DERSequence(purposes));
+
+        X509CertificateHolder certHolder = certGen.build(new JcaContentSignerBuilder(signatureAlgorithm.getAlgorithm()).setProvider(SecurityProviderUtility.getBCProviderName()).build(keyPair.getPrivate()));
+        X509Certificate x509Certificate = new JcaX509CertificateConverter().setProvider(SecurityProviderUtility.getBCProviderName()).getCertificate(certHolder);
+
+        return new Certificate(signatureAlgorithm, x509Certificate);
+    }
+
+    @Deprecated
+    public RSAKeyFactory(JSONWebKey p_key) {
+        if (p_key == null) {
+            throw new IllegalArgumentException("Key value must not be null.");
+        }
+
+        rsaPrivateKey = new RSAPrivateKey(
+                p_key.getN(),
+                p_key.getE());
+        rsaPublicKey = new RSAPublicKey(
+                p_key.getN(),
+                p_key.getE());
+        certificate = null;
+    }
+
+    public static RSAKeyFactory valueOf(JSONWebKey p_key) {
+        return new RSAKeyFactory(p_key);
+    }
+
+    @Override
+    public RSAPrivateKey getPrivateKey() {
+        return rsaPrivateKey;
+    }
+
+    @Override
+    public RSAPublicKey getPublicKey() {
+        return rsaPublicKey;
+    }
+
+    @Override
+    public Certificate getCertificate() {
+        return certificate;
+    }
+}
\ No newline at end of file
diff --git a/oxAuth/Model/src/main/java/org/gluu/oxauth/model/crypto/signature/RSAPrivateKey.java b/oxAuth/Model/src/main/java/org/gluu/oxauth/model/crypto/signature/RSAPrivateKey.java
new file mode 100644
index 00000000..48940650
--- /dev/null
+++ b/oxAuth/Model/src/main/java/org/gluu/oxauth/model/crypto/signature/RSAPrivateKey.java
@@ -0,0 +1,77 @@
+/*
+ * oxAuth is available under the MIT License (2008). See http://opensource.org/licenses/MIT for full text.
+ *
+ * Copyright (c) 2014, Gluu
+ */
+
+package org.gluu.oxauth.model.crypto.signature;
+
+import org.json.JSONException;
+import org.json.JSONObject;
+import org.gluu.oxauth.model.crypto.PrivateKey;
+import org.gluu.oxauth.model.util.Base64Util;
+import org.gluu.oxauth.model.util.StringUtils;
+
+import static org.gluu.oxauth.model.jwk.JWKParameter.*;
+
+import java.math.BigInteger;
+
+/**
+ * The Private Key for the RSA Algorithm
+ *
+ * @author Javier Rojas Blum
+ * @version July 31, 2016
+ */
+public class RSAPrivateKey extends PrivateKey {
+
+    private BigInteger modulus;
+    private BigInteger privateExponent;
+
+    public RSAPrivateKey(BigInteger modulus, BigInteger privateExponent) {
+        this.modulus = modulus;
+        this.privateExponent = privateExponent;
+    }
+
+    public RSAPrivateKey(String modulus, String privateExponent) {
+        this.modulus = new BigInteger(1, Base64Util.base64urldecode(modulus));
+        this.privateExponent = new BigInteger(1, Base64Util.base64urldecode(privateExponent));
+    }
+
+    public BigInteger getModulus() {
+        return modulus;
+    }
+
+    public void setModulus(BigInteger modulus) {
+        this.modulus = modulus;
+    }
+
+    public BigInteger getPrivateExponent() {
+        return privateExponent;
+    }
+
+    public void setPrivateExponent(BigInteger privateExponent) {
+        this.privateExponent = privateExponent;
+    }
+
+    @Override
+    public JSONObject toJSONObject() throws JSONException {
+        JSONObject jsonObject = new JSONObject();
+
+        jsonObject.put(MODULUS, Base64Util.base64urlencodeUnsignedBigInt(modulus));
+        jsonObject.put(EXPONENT, Base64Util.base64urlencodeUnsignedBigInt(privateExponent));
+        jsonObject.put(D, JSONObject.NULL);
+
+        return jsonObject;
+    }
+
+    @Override
+    public String toString() {
+        try {
+            return toJSONObject().toString(4);
+        } catch (JSONException e) {
+            return StringUtils.EMPTY_STRING;
+        } catch (Exception e) {
+            return StringUtils.EMPTY_STRING;
+        }
+    }
+}
\ No newline at end of file
diff --git a/oxAuth/Model/src/main/java/org/gluu/oxauth/model/crypto/signature/RSAPublicKey.java b/oxAuth/Model/src/main/java/org/gluu/oxauth/model/crypto/signature/RSAPublicKey.java
new file mode 100644
index 00000000..41a70742
--- /dev/null
+++ b/oxAuth/Model/src/main/java/org/gluu/oxauth/model/crypto/signature/RSAPublicKey.java
@@ -0,0 +1,81 @@
+/*
+ * oxAuth is available under the MIT License (2008). See http://opensource.org/licenses/MIT for full text.
+ *
+ * Copyright (c) 2014, Gluu
+ */
+
+package org.gluu.oxauth.model.crypto.signature;
+
+import org.json.JSONException;
+import org.json.JSONObject;
+import org.gluu.oxauth.model.crypto.PublicKey;
+import org.gluu.oxauth.model.util.Base64Util;
+import org.gluu.oxauth.model.util.StringUtils;
+
+import static org.gluu.oxauth.model.jwk.JWKParameter.*;
+
+import java.math.BigInteger;
+
+/**
+ * The Public Key for the RSA Algorithm
+ *
+ * @author Javier Rojas Blum
+ * @version July 31, 2016
+ */
+public class RSAPublicKey extends PublicKey {
+
+    private static final String RSA_ALGORITHM = "RSA";
+    private static final String USE = "sig";
+
+    private BigInteger modulus;
+    private BigInteger publicExponent;
+
+    public RSAPublicKey(BigInteger modulus, BigInteger publicExponent) {
+        this.modulus = modulus;
+        this.publicExponent = publicExponent;
+    }
+
+    public RSAPublicKey(String modulus, String publicExponent) {
+        this(new BigInteger(1, Base64Util.base64urldecode(modulus)),
+                new BigInteger(1, Base64Util.base64urldecode(publicExponent)));
+    }
+
+    public BigInteger getModulus() {
+        return modulus;
+    }
+
+    public void setModulus(BigInteger modulus) {
+        this.modulus = modulus;
+    }
+
+    public BigInteger getPublicExponent() {
+        return publicExponent;
+    }
+
+    public void setPublicExponent(BigInteger publicExponent) {
+        this.publicExponent = publicExponent;
+    }
+
+    @Override
+    public JSONObject toJSONObject() throws JSONException {
+        JSONObject jsonObject = new JSONObject();
+
+        jsonObject.put(MODULUS, Base64Util.base64urlencodeUnsignedBigInt(modulus));
+        jsonObject.put(EXPONENT, Base64Util.base64urlencodeUnsignedBigInt(publicExponent));
+        jsonObject.put(X, JSONObject.NULL);
+        jsonObject.put(Y, JSONObject.NULL);
+
+        return jsonObject;
+    }
+
+    @Override
+    public String toString() {
+        try {
+            return toJSONObject().toString(4);
+        } catch (JSONException e) {
+            return StringUtils.EMPTY_STRING;
+        } catch (Exception e) {
+            return StringUtils.EMPTY_STRING;
+        }
+    }
+}
\ No newline at end of file
diff --git a/oxAuth/Model/src/main/java/org/gluu/oxauth/model/crypto/signature/SignatureAlgorithm.java b/oxAuth/Model/src/main/java/org/gluu/oxauth/model/crypto/signature/SignatureAlgorithm.java
new file mode 100644
index 00000000..df5c1e2a
--- /dev/null
+++ b/oxAuth/Model/src/main/java/org/gluu/oxauth/model/crypto/signature/SignatureAlgorithm.java
@@ -0,0 +1,133 @@
+/*
+ * oxAuth is available under the MIT License (2008). See http://opensource.org/licenses/MIT for full text.
+ *
+ * Copyright (c) 2014, Gluu
+ */
+
+package org.gluu.oxauth.model.crypto.signature;
+
+import com.fasterxml.jackson.annotation.JsonCreator;
+import com.fasterxml.jackson.annotation.JsonValue;
+import com.nimbusds.jose.JWSAlgorithm;
+import org.gluu.oxauth.model.jwk.Algorithm;
+import org.gluu.oxauth.model.jwt.JwtType;
+
+import java.util.ArrayList;
+import java.util.List;
+
+/**
+ * @author Javier Rojas Blum
+ * @version February 12, 2019
+ */
+public enum SignatureAlgorithm {
+
+    NONE("none"),
+    HS256("HS256", AlgorithmFamily.HMAC, "HMACSHA256", JWSAlgorithm.HS256),
+    HS384("HS384", AlgorithmFamily.HMAC, "HMACSHA384", JWSAlgorithm.HS384),
+    HS512("HS512", AlgorithmFamily.HMAC, "HMACSHA512", JWSAlgorithm.HS512),
+    RS256("RS256", AlgorithmFamily.RSA, "SHA256WITHRSA", JWSAlgorithm.RS256),
+    RS384("RS384", AlgorithmFamily.RSA, "SHA384WITHRSA", JWSAlgorithm.RS384),
+    RS512("RS512", AlgorithmFamily.RSA, "SHA512WITHRSA", JWSAlgorithm.RS512),
+    ES256("ES256", AlgorithmFamily.EC, "SHA256WITHECDSA", ECEllipticCurve.P_256, JWSAlgorithm.ES256),
+    ES384("ES384", AlgorithmFamily.EC, "SHA384WITHECDSA", ECEllipticCurve.P_384, JWSAlgorithm.ES384),
+    ES512("ES512", AlgorithmFamily.EC, "SHA512WITHECDSA", ECEllipticCurve.P_521, JWSAlgorithm.ES512),
+    PS256("PS256", AlgorithmFamily.RSA, "SHA256withRSAandMGF1", JWSAlgorithm.PS256),
+    PS384("PS384", AlgorithmFamily.RSA, "SHA384withRSAandMGF1", JWSAlgorithm.PS384),
+    PS512("PS512", AlgorithmFamily.RSA, "SHA512withRSAandMGF1", JWSAlgorithm.PS512);
+
+    private final String name;
+    private final AlgorithmFamily family;
+    private final String algorithm;
+    private final ECEllipticCurve curve;
+    private final JwtType jwtType;
+    private final JWSAlgorithm jwsAlgorithm;
+    private final Algorithm alg;
+
+    SignatureAlgorithm(String name, AlgorithmFamily family, String algorithm, ECEllipticCurve curve, JWSAlgorithm jwsAlgorithm) {
+        this.name = name;
+        this.family = family;
+        this.algorithm = algorithm;
+        this.curve = curve;
+        this.jwtType = JwtType.JWT;
+        this.jwsAlgorithm = jwsAlgorithm;
+        this.alg = Algorithm.fromString(name);
+    }
+
+    SignatureAlgorithm(String name, AlgorithmFamily family, String algorithm, JWSAlgorithm jwsAlgorithm) {
+        this(name, family, algorithm, null, jwsAlgorithm);
+    }
+
+    SignatureAlgorithm(String name) {
+        this(name, null, null, null, null);
+    }
+
+    public Algorithm getAlg() {
+        return alg;
+    }
+
+    public String getName() {
+        return name;
+    }
+
+    public AlgorithmFamily getFamily() {
+        return family;
+    }
+
+    public String getAlgorithm() {
+        return algorithm;
+    }
+
+    public ECEllipticCurve getCurve() {
+        return curve;
+    }
+
+    public JwtType getJwtType() {
+        return jwtType;
+    }
+
+    public static List<SignatureAlgorithm> fromString(String[] params) {
+        List<SignatureAlgorithm> signatureAlgorithms = new ArrayList<SignatureAlgorithm>();
+
+        for (String param : params) {
+            SignatureAlgorithm signatureAlgorithm = SignatureAlgorithm.fromString(param);
+            if (signatureAlgorithm != null) {
+                signatureAlgorithms.add(signatureAlgorithm);
+            }
+        }
+
+        return signatureAlgorithms;
+    }
+
+    /**
+     * Returns the corresponding {@link SignatureAlgorithm} for a parameter alg of the JWK endpoint.
+     *
+     * @param param The alg parameter.
+     * @return The corresponding alg if found, otherwise <code>null</code>.
+     */
+    @JsonCreator
+    public static SignatureAlgorithm fromString(String param) {
+        if (param != null) {
+            for (SignatureAlgorithm sa : SignatureAlgorithm.values()) {
+                if (param.equals(sa.name)) {
+                    return sa;
+                }
+            }
+        }
+        return null;
+    }
+
+    /**
+     * Returns a string representation of the object. In this case the parameter name.
+     *
+     * @return The string representation of the object.
+     */
+    @Override
+    @JsonValue
+    public String toString() {
+        return name;
+    }
+
+    public JWSAlgorithm getJwsAlgorithm() {
+        return jwsAlgorithm;
+    }
+}
\ No newline at end of file
diff --git a/oxAuth/Model/src/main/java/org/gluu/oxauth/model/crypto/signature/Signer.java b/oxAuth/Model/src/main/java/org/gluu/oxauth/model/crypto/signature/Signer.java
new file mode 100644
index 00000000..e490b654
--- /dev/null
+++ b/oxAuth/Model/src/main/java/org/gluu/oxauth/model/crypto/signature/Signer.java
@@ -0,0 +1,18 @@
+/*
+ * oxAuth is available under the MIT License (2008). See http://opensource.org/licenses/MIT for full text.
+ *
+ * Copyright (c) 2014, Gluu
+ */
+
+package org.gluu.oxauth.model.crypto.signature;
+
+/**
+ * @author Javier Rojas Blum
+ * @version April 22, 2016
+ */
+public interface Signer {
+
+    public String sign(String signingInput) throws Exception;
+
+    public boolean verifySignature(String signingInput, String signature) throws Exception;
+}
diff --git a/oxAuth/Model/src/main/java/org/gluu/oxauth/model/discovery/OAuth2Discovery.java b/oxAuth/Model/src/main/java/org/gluu/oxauth/model/discovery/OAuth2Discovery.java
new file mode 100644
index 00000000..d09f0af6
--- /dev/null
+++ b/oxAuth/Model/src/main/java/org/gluu/oxauth/model/discovery/OAuth2Discovery.java
@@ -0,0 +1,324 @@
+package org.gluu.oxauth.model.discovery;
+
+import com.fasterxml.jackson.annotation.JsonIgnoreProperties;
+import com.fasterxml.jackson.annotation.JsonProperty;
+import com.fasterxml.jackson.annotation.JsonPropertyOrder;
+import org.jboss.resteasy.annotations.providers.jaxb.IgnoreMediaTypes;
+
+import javax.xml.bind.annotation.XmlElement;
+import javax.xml.bind.annotation.XmlRootElement;
+import java.util.Arrays;
+
+/**
+ * OAuth discovery
+ *
+ * @author yuriyz on 05/17/2017.
+ */
+@IgnoreMediaTypes("application/*+json")
+// try to ignore jettison as it's recommended here: http://docs.jboss.org/resteasy/docs/2.3.4.Final/userguide/html/json.html
+@JsonPropertyOrder({
+        "issuer",
+        "authorization_endpoint",
+        "token_endpoint",
+        "jwks_uri",
+        "registration_endpoint",
+        "response_types_supported",
+        "response_modes_supported",
+        "grant_types_supported",
+        "token_endpoint_auth_methods_supported",
+        "token_endpoint_auth_signing_alg_values_supported",
+        "service_documentation",
+        "ui_locales_supported",
+        "op_policy_uri",
+        "op_tos_uri",
+        "revocation_endpoint",
+        "revocation_endpoint_auth_methods_supported",
+        "revocation_endpoint_auth_signing_alg_values_supported",
+        "introspection_endpoint",
+        "introspection_endpoint_auth_methods_supported",
+        "introspection_endpoint_auth_signing_alg_values_supported",
+        "code_challenge_methods_supported"
+})
+@XmlRootElement
+@JsonIgnoreProperties(ignoreUnknown = true)
+public class OAuth2Discovery {
+
+    @JsonProperty(value = "issuer")
+    @XmlElement(name = "issuer")
+    private String issuer;
+
+    @JsonProperty(value = "authorization_endpoint")
+    @XmlElement(name = "authorization_endpoint")
+    private String authorizationEndpoint;
+
+    @JsonProperty(value = "token_endpoint")
+    @XmlElement(name = "token_endpoint")
+    private String tokenEndpoint;
+
+    @JsonProperty(value = "jwks_uri")
+    @XmlElement(name = "jwks_uri")
+    private String jwksUri;
+
+    @JsonProperty(value = "registration_endpoint")
+    @XmlElement(name = "registration_endpoint")
+    private String registrationEndpoint;
+
+    @JsonProperty(value = "response_types_supported")
+    @XmlElement(name = "response_types_supported")
+    private String[] responseTypesSupported;
+
+//    @JsonProperty(value = "response_modes_supported")
+//    @XmlElement(name = "response_modes_supported")
+//    private String[] responseModesSupported;
+
+    @JsonProperty(value = "grant_types_supported")
+    @XmlElement(name = "grant_types_supported")
+    private String[] grantTypesSupported;
+
+    @JsonProperty(value = "token_endpoint_auth_methods_supported")
+    @XmlElement(name = "token_endpoint_auth_methods_supported")
+    private String[] tokenEndpointAuthMethodsSupported;
+
+    @JsonProperty(value = "token_endpoint_auth_signing_alg_values_supported")
+    @XmlElement(name = "token_endpoint_auth_signing_alg_values_supported")
+    private String[] tokenEndpointAuthSigningAlgValuesSupported;
+
+    @JsonProperty(value = "service_documentation")
+    @XmlElement(name = "service_documentation")
+    private String serviceDocumentation;
+
+    @JsonProperty(value = "ui_locales_supported")
+    @XmlElement(name = "ui_locales_supported")
+    private String[] uiLocalesSupported;
+
+    @JsonProperty(value = "op_policy_uri")
+    @XmlElement(name = "op_policy_uri")
+    private String opPolicyUri;
+
+    @JsonProperty(value = "op_tos_uri")
+    @XmlElement(name = "op_tos_uri")
+    private String opTosUri;
+
+//    @JsonProperty(value = "revocation_endpoint")
+//    @XmlElement(name = "revocation_endpoint")
+//    private String revocationEndpoint;
+//
+//    @JsonProperty(value = "revocation_endpoint_auth_methods_supported")
+//    @XmlElement(name = "revocation_endpoint_auth_methods_supported")
+//    private String[] revocation_endpoint_auth_methods_supported;
+//
+//    @JsonProperty(value = "revocation_endpoint_auth_signing_alg_values_supported")
+//    @XmlElement(name = "revocation_endpoint_auth_signing_alg_values_supported")
+//    private String[] revocationEndpointAuthSigningAlgValuesSupported;
+
+    @JsonProperty(value = "introspection_endpoint")
+    @XmlElement(name = "introspection_endpoint")
+    private String introspectionEndpoint;
+
+//    @JsonProperty(value = "introspection_endpoint_auth_methods_supported")
+//    @XmlElement(name = "introspection_endpoint_auth_methods_supported")
+//    private String[] introspectionEndpointAuthMethodsSupported;
+//
+//    @JsonProperty(value = "introspection_endpoint_auth_signing_alg_values_supported")
+//    @XmlElement(name = "introspection_endpoint_auth_signing_alg_values_supported")
+//    private String[] introspectionEndpointAuthSigningAlgValuesSupported;
+
+    @JsonProperty(value = "code_challenge_methods_supported")
+    @XmlElement(name = "code_challenge_methods_supported")
+    private String[] codeChallengeMethodsSupported;
+
+    public String getIssuer() {
+        return issuer;
+    }
+
+    public void setIssuer(String issuer) {
+        this.issuer = issuer;
+    }
+
+    public String getAuthorizationEndpoint() {
+        return authorizationEndpoint;
+    }
+
+    public void setAuthorizationEndpoint(String authorizationEndpoint) {
+        this.authorizationEndpoint = authorizationEndpoint;
+    }
+
+    public String getTokenEndpoint() {
+        return tokenEndpoint;
+    }
+
+    public void setTokenEndpoint(String tokenEndpoint) {
+        this.tokenEndpoint = tokenEndpoint;
+    }
+
+    public String getJwksUri() {
+        return jwksUri;
+    }
+
+    public void setJwksUri(String jwksUri) {
+        this.jwksUri = jwksUri;
+    }
+
+    public String getRegistrationEndpoint() {
+        return registrationEndpoint;
+    }
+
+    public void setRegistrationEndpoint(String registrationEndpoint) {
+        this.registrationEndpoint = registrationEndpoint;
+    }
+
+    public String[] getResponseTypesSupported() {
+        return responseTypesSupported;
+    }
+
+    public void setResponseTypesSupported(String[] responseTypesSupported) {
+        this.responseTypesSupported = responseTypesSupported;
+    }
+
+//    public String[] getResponseModesSupported() {
+//        return responseModesSupported;
+//    }
+//
+//    public void setResponseModesSupported(String[] responseModesSupported) {
+//        this.responseModesSupported = responseModesSupported;
+//    }
+
+    public String[] getGrantTypesSupported() {
+        return grantTypesSupported;
+    }
+
+    public void setGrantTypesSupported(String[] grantTypesSupported) {
+        this.grantTypesSupported = grantTypesSupported;
+    }
+
+    public String[] getTokenEndpointAuthMethodsSupported() {
+        return tokenEndpointAuthMethodsSupported;
+    }
+
+    public void setTokenEndpointAuthMethodsSupported(String[] tokenEndpointAuthMethodsSupported) {
+        this.tokenEndpointAuthMethodsSupported = tokenEndpointAuthMethodsSupported;
+    }
+
+    public String[] getTokenEndpointAuthSigningAlgValuesSupported() {
+        return tokenEndpointAuthSigningAlgValuesSupported;
+    }
+
+    public void setTokenEndpointAuthSigningAlgValuesSupported(String[] tokenEndpointAuthSigningAlgValuesSupported) {
+        this.tokenEndpointAuthSigningAlgValuesSupported = tokenEndpointAuthSigningAlgValuesSupported;
+    }
+
+    public String getServiceDocumentation() {
+        return serviceDocumentation;
+    }
+
+    public void setServiceDocumentation(String serviceDocumentation) {
+        this.serviceDocumentation = serviceDocumentation;
+    }
+
+    public String[] getUiLocalesSupported() {
+        return uiLocalesSupported;
+    }
+
+    public void setUiLocalesSupported(String[] uiLocalesSupported) {
+        this.uiLocalesSupported = uiLocalesSupported;
+    }
+
+    public String getOpPolicyUri() {
+        return opPolicyUri;
+    }
+
+    public void setOpPolicyUri(String opPolicyUri) {
+        this.opPolicyUri = opPolicyUri;
+    }
+
+    public String getOpTosUri() {
+        return opTosUri;
+    }
+
+    public void setOpTosUri(String opTosUri) {
+        this.opTosUri = opTosUri;
+    }
+
+//    public String getRevocationEndpoint() {
+//        return revocationEndpoint;
+//    }
+//
+//    public void setRevocationEndpoint(String revocationEndpoint) {
+//        this.revocationEndpoint = revocationEndpoint;
+//    }
+//
+//    public String[] getRevocation_endpoint_auth_methods_supported() {
+//        return revocation_endpoint_auth_methods_supported;
+//    }
+//
+//    public void setRevocation_endpoint_auth_methods_supported(String[] revocation_endpoint_auth_methods_supported) {
+//        this.revocation_endpoint_auth_methods_supported = revocation_endpoint_auth_methods_supported;
+//    }
+//
+//    public String[] getRevocationEndpointAuthSigningAlgValuesSupported() {
+//        return revocationEndpointAuthSigningAlgValuesSupported;
+//    }
+//
+//    public void setRevocationEndpointAuthSigningAlgValuesSupported(String[] revocationEndpointAuthSigningAlgValuesSupported) {
+//        this.revocationEndpointAuthSigningAlgValuesSupported = revocationEndpointAuthSigningAlgValuesSupported;
+//    }
+
+    public String getIntrospectionEndpoint() {
+        return introspectionEndpoint;
+    }
+
+    public void setIntrospectionEndpoint(String introspectionEndpoint) {
+        this.introspectionEndpoint = introspectionEndpoint;
+    }
+
+//    public String[] getIntrospectionEndpointAuthMethodsSupported() {
+//        return introspectionEndpointAuthMethodsSupported;
+//    }
+//
+//    public void setIntrospectionEndpointAuthMethodsSupported(String[] introspectionEndpointAuthMethodsSupported) {
+//        this.introspectionEndpointAuthMethodsSupported = introspectionEndpointAuthMethodsSupported;
+//    }
+//
+//    public String[] getIntrospectionEndpointAuthSigningAlgValuesSupported() {
+//        return introspectionEndpointAuthSigningAlgValuesSupported;
+//    }
+//
+//    public void setIntrospectionEndpointAuthSigningAlgValuesSupported(String[] introspectionEndpointAuthSigningAlgValuesSupported) {
+//        this.introspectionEndpointAuthSigningAlgValuesSupported = introspectionEndpointAuthSigningAlgValuesSupported;
+//    }
+
+    public String[] getCodeChallengeMethodsSupported() {
+        return codeChallengeMethodsSupported;
+    }
+
+    public void setCodeChallengeMethodsSupported(String[] codeChallengeMethodsSupported) {
+        this.codeChallengeMethodsSupported = codeChallengeMethodsSupported;
+    }
+
+    @Override
+    public String toString() {
+        return "OAuth2Discovery{" +
+                "issuer='" + issuer + '\'' +
+                ", authorizationEndpoint='" + authorizationEndpoint + '\'' +
+                ", tokenEndpoint='" + tokenEndpoint + '\'' +
+                ", jwksUri='" + jwksUri + '\'' +
+                ", registrationEndpoint='" + registrationEndpoint + '\'' +
+                ", responseTypesSupported=" + Arrays.toString(responseTypesSupported) +
+//                ", responseModesSupported=" + Arrays.toString(responseModesSupported) +
+                ", grantTypesSupported=" + Arrays.toString(grantTypesSupported) +
+                ", tokenEndpointAuthMethodsSupported=" + Arrays.toString(tokenEndpointAuthMethodsSupported) +
+                ", tokenEndpointAuthSigningAlgValuesSupported=" + Arrays.toString(tokenEndpointAuthSigningAlgValuesSupported) +
+                ", serviceDocumentation='" + serviceDocumentation + '\'' +
+                ", uiLocalesSupported=" + Arrays.toString(uiLocalesSupported) +
+                ", opPolicyUri='" + opPolicyUri + '\'' +
+                ", opTosUri='" + opTosUri + '\'' +
+//                ", revocationEndpoint='" + revocationEndpoint + '\'' +
+//                ", revocation_endpoint_auth_methods_supported=" + Arrays.toString(revocation_endpoint_auth_methods_supported) +
+//                ", revocationEndpointAuthSigningAlgValuesSupported=" + Arrays.toString(revocationEndpointAuthSigningAlgValuesSupported) +
+                ", introspectionEndpoint='" + introspectionEndpoint + '\'' +
+//                ", introspectionEndpointAuthMethodsSupported=" + Arrays.toString(introspectionEndpointAuthMethodsSupported) +
+//                ", introspectionEndpointAuthSigningAlgValuesSupported=" + Arrays.toString(introspectionEndpointAuthSigningAlgValuesSupported) +
+                ", codeChallengeMethodsSupported=" + Arrays.toString(codeChallengeMethodsSupported) +
+                '}';
+    }
+}
diff --git a/oxAuth/Model/src/main/java/org/gluu/oxauth/model/discovery/WebFingerLink.java b/oxAuth/Model/src/main/java/org/gluu/oxauth/model/discovery/WebFingerLink.java
new file mode 100644
index 00000000..8ba70e98
--- /dev/null
+++ b/oxAuth/Model/src/main/java/org/gluu/oxauth/model/discovery/WebFingerLink.java
@@ -0,0 +1,32 @@
+/*
+ * oxAuth is available under the MIT License (2008). See http://opensource.org/licenses/MIT for full text.
+ *
+ * Copyright (c) 2014, Gluu
+ */
+
+package org.gluu.oxauth.model.discovery;
+
+/**
+ * @author Javier Rojas Blum Date: 01.28.2013
+ */
+public class WebFingerLink {
+
+    private String rel;
+    private String href;
+
+    public String getRel() {
+        return rel;
+    }
+
+    public void setRel(String rel) {
+        this.rel = rel;
+    }
+
+    public String getHref() {
+        return href;
+    }
+
+    public void setHref(String href) {
+        this.href = href;
+    }
+}
\ No newline at end of file
diff --git a/oxAuth/Model/src/main/java/org/gluu/oxauth/model/discovery/WebFingerParam.java b/oxAuth/Model/src/main/java/org/gluu/oxauth/model/discovery/WebFingerParam.java
new file mode 100644
index 00000000..d7f44537
--- /dev/null
+++ b/oxAuth/Model/src/main/java/org/gluu/oxauth/model/discovery/WebFingerParam.java
@@ -0,0 +1,34 @@
+/*
+ * oxAuth is available under the MIT License (2008). See http://opensource.org/licenses/MIT for full text.
+ *
+ * Copyright (c) 2014, Gluu
+ */
+
+package org.gluu.oxauth.model.discovery;
+
+/**
+ * @author Javier Rojas Blum Date: 09.16.2013
+ */
+public interface WebFingerParam {
+
+    /**
+     * Identifier of the target End-User that is the subject of the discovery request.
+     */
+    public static final String RESOURCE = "resource";
+
+    /**
+     * Server where a WebFinger service is hosted.
+     */
+    public static final String HOST = "host";
+
+    /**
+     * URI identifying the type of service whose location is requested.
+     */
+    public static final String REL = "rel";
+
+    public static final String REL_VALUE = "http://openid.net/specs/connect/1.0/issuer";
+
+    public static final String SUBJECT = "subject";
+    public static final String LINKS = "links";
+    public static final String HREF = "href";
+}
\ No newline at end of file
diff --git a/oxAuth/Model/src/main/java/org/gluu/oxauth/model/error/DefaultErrorResponse.java b/oxAuth/Model/src/main/java/org/gluu/oxauth/model/error/DefaultErrorResponse.java
new file mode 100644
index 00000000..900d8d73
--- /dev/null
+++ b/oxAuth/Model/src/main/java/org/gluu/oxauth/model/error/DefaultErrorResponse.java
@@ -0,0 +1,51 @@
+/*
+ * oxAuth is available under the MIT License (2008). See http://opensource.org/licenses/MIT for full text.
+ *
+ * Copyright (c) 2014, Gluu
+ */
+
+package org.gluu.oxauth.model.error;
+
+/**
+ * @author Yuriy Zabrovarnyy
+ * @version August 20, 2019
+ */
+public class DefaultErrorResponse extends ErrorResponse {
+
+    private IErrorType type;
+    private String state;
+
+    /**
+     * Returns the error response type.
+     *
+     * @return The error response type.
+     */
+    public IErrorType getType() {
+        return type;
+    }
+
+    /**
+     * Sets the {@link IErrorType} that represents the code of the error that occurred.
+     *
+     * @param type The error response type.
+     */
+    public void setType(IErrorType type) {
+        this.type = type;
+    }
+
+    @Override
+    public String getState() {
+        return state;
+    }
+
+    public void setState(String p_state) {
+        state = p_state;
+    }
+
+    @Override
+    public String getErrorCode() {
+        if (type != null)
+            return type.toString();
+        return null;
+    }
+}
diff --git a/oxAuth/Model/src/main/java/org/gluu/oxauth/model/error/ErrorHandlingMethod.java b/oxAuth/Model/src/main/java/org/gluu/oxauth/model/error/ErrorHandlingMethod.java
new file mode 100644
index 00000000..bf94cb84
--- /dev/null
+++ b/oxAuth/Model/src/main/java/org/gluu/oxauth/model/error/ErrorHandlingMethod.java
@@ -0,0 +1,116 @@
+/*
+ * oxAuth is available under the MIT License (2008). See http://opensource.org/licenses/MIT for full text.
+ *
+ * Copyright (c) 2014, Gluu
+ */
+
+package org.gluu.oxauth.model.error;
+
+import com.fasterxml.jackson.annotation.JsonCreator;
+import com.fasterxml.jackson.annotation.JsonValue;
+import org.gluu.oxauth.model.common.GrantType;
+import org.gluu.oxauth.model.common.HasParamName;
+import org.gluu.persist.annotation.AttributeEnum;
+
+import java.util.HashMap;
+import java.util.Map;
+
+/**
+ * This class define error handling methods
+ *
+ * @author Javier Rojas Blum
+ * @author Yuriy Movchan Date: 12/07/2018
+ */
+public enum ErrorHandlingMethod implements HasParamName, AttributeEnum {
+
+    INTERNAL("internal"),
+
+    REMOTE("remote");
+
+    private final String value;
+
+    private static Map<String, ErrorHandlingMethod> mapByValues = new HashMap<String, ErrorHandlingMethod>();
+
+    static {
+        for (ErrorHandlingMethod enumType : values()) {
+            mapByValues.put(enumType.getValue(), enumType);
+        }
+    }
+
+    private ErrorHandlingMethod() {
+        this.value = null;
+    }
+
+    private ErrorHandlingMethod(String value) {
+        this.value = value;
+    }
+
+    /**
+     * Gets param name.
+     *
+     * @return param name
+     */
+    public String getParamName() {
+        return value;
+    }
+
+    @Override
+    public String getValue() {
+        return value;
+    }
+
+    /**
+     * Returns the corresponding {@link GrantType} for a parameter grant_type of
+     * the access token requests. For the extension grant type, the parameter
+     * should be a valid URI.
+     *
+     * @param param The grant_type parameter.
+     * @return The corresponding grant type if found, otherwise
+     * <code>null</code>.
+     */
+    @JsonCreator
+    public static ErrorHandlingMethod fromString(String param) {
+        if (param != null) {
+            for (ErrorHandlingMethod hm : ErrorHandlingMethod.values()) {
+                if (param.equalsIgnoreCase(hm.value)) {
+                    return hm;
+                }
+            }
+        }
+
+        return null;
+    }
+
+    public static String[] toStringArray(ErrorHandlingMethod[] grantTypes) {
+        if (grantTypes == null) {
+            return null;
+        }
+
+        String[] resultGrantTypes = new String[grantTypes.length];
+        for (int i = 0; i < grantTypes.length; i++) {
+            resultGrantTypes[i] = grantTypes[i].getValue();
+        }
+
+        return resultGrantTypes;
+    }
+
+    public static ErrorHandlingMethod getByValue(String value) {
+        return mapByValues.get(value);
+    }
+
+    public Enum<? extends AttributeEnum> resolveByValue(String value) {
+        return getByValue(value);
+    }
+
+    /**
+     * Returns a string representation of the object. In this case the parameter
+     * name for the grant_type parameter.
+     *
+     * @return The string representation of the object.
+     */
+    @Override
+    @JsonValue
+    public String toString() {
+        return value;
+    }
+}
diff --git a/oxAuth/Model/src/main/java/org/gluu/oxauth/model/error/ErrorResponse.java b/oxAuth/Model/src/main/java/org/gluu/oxauth/model/error/ErrorResponse.java
new file mode 100644
index 00000000..34c3835d
--- /dev/null
+++ b/oxAuth/Model/src/main/java/org/gluu/oxauth/model/error/ErrorResponse.java
@@ -0,0 +1,189 @@
+/*
+ * oxAuth is available under the MIT License (2008). See http://opensource.org/licenses/MIT for full text.
+ *
+ * Copyright (c) 2014, Gluu
+ */
+
+package org.gluu.oxauth.model.error;
+
+import org.apache.commons.lang.StringUtils;
+import org.json.JSONException;
+import org.json.JSONObject;
+import org.slf4j.Logger;
+import org.slf4j.LoggerFactory;
+
+import java.io.UnsupportedEncodingException;
+import java.net.URLEncoder;
+
+/**
+ * Base class for error responses.
+ *
+ * @author Javier Rojas Blum
+ * @version August 20, 2019
+ */
+public abstract class ErrorResponse {
+
+    private final static Logger log = LoggerFactory.getLogger(ErrorResponse.class);
+
+	private int status;
+	private String errorDescription;
+	private String errorUri;
+	private String reason;
+
+	/**
+	 * Return the HTTP response status code.
+	 *
+	 * @return The response status.
+	 */
+	public int getStatus() {
+		return status;
+	}
+
+	/**
+	 * Sets the HTTP response status code.
+	 *
+	 * @param status The response status.
+	 */
+	public void setStatus(int status) {
+		this.status = status;
+	}
+
+	/**
+	 * Returns the error code of the response.
+	 *
+	 * @return The error code.
+	 */
+	public abstract String getErrorCode();
+
+	/**
+	 * If a valid state parameter was present in the request, it returns the
+	 * exact value received from the client.
+	 *
+	 * @return The state value of the request.
+	 */
+	public abstract String getState();
+
+	/**
+	 * Returns a human-readable UTF-8 encoded text providing additional
+	 * information, used to assist the client developer in understanding the
+	 * error that occurred.
+	 *
+	 * @return Description about the error.
+	 */
+	public String getErrorDescription() {
+		return errorDescription;
+	}
+
+	/**
+	 * Sets a human-readable UTF-8 encoded text providing additional
+	 * information, used to assist the client developer in understanding the
+	 * error that occurred.
+	 *
+	 * @param errorDescription
+	 *            Description about the error.
+	 */
+	public void setErrorDescription(String errorDescription) {
+		this.errorDescription = errorDescription;
+	}
+
+	/**
+	 * Return an URI identifying a human-readable web page with information
+	 * about the error, used to provide the client developer with additional
+	 * information about the error.
+	 *
+	 * @return URI with more information about the error.
+	 */
+	public String getErrorUri() {
+		return errorUri;
+	}
+
+	/**
+	 * Sets an URI identifying a human-readable web page with information about
+	 * the error, used to provide the client developer with additional
+	 * information about the error.
+	 *
+	 * @param errorUri
+	 *            URI with more information about the error.
+	 */
+	public void setErrorUri(String errorUri) {
+		this.errorUri = errorUri;
+	}
+
+    public String getReason() {
+        return reason;
+    }
+
+    public void setReason(String reason) {
+        this.reason = reason;
+    }
+
+    /**
+	 * Returns a query string representation of the object.
+	 *
+	 * @return The object represented in a query string.
+	 */
+	public String toQueryString() {
+		StringBuilder queryStringBuilder = new StringBuilder();
+
+		try {
+			queryStringBuilder.append("error=").append(getErrorCode());
+
+			if (errorDescription != null && !errorDescription.isEmpty()) {
+				queryStringBuilder.append("&error_description=").append(
+						URLEncoder.encode(errorDescription, "UTF-8"));
+			}
+
+			if (errorUri != null && !errorUri.isEmpty()) {
+				queryStringBuilder.append("&error_uri=").append(
+						URLEncoder.encode(errorUri, "UTF-8"));
+			}
+
+            if (StringUtils.isNotBlank(reason)) {
+                queryStringBuilder.append("&reason=").append(URLEncoder.encode(reason, "UTF-8"));
+            }
+
+			if (getState() != null && !getState().isEmpty()) {
+				queryStringBuilder.append("&state=").append(getState());
+			}
+		} catch (UnsupportedEncodingException e) {
+			log.error(e.getMessage(), e);
+			return null;
+		}
+
+		return queryStringBuilder.toString();
+	}
+
+	/**
+	 * Return a JSon string representation of the object.
+	 *
+	 * @return The object represented in a JSon string.
+	 */
+	public String toJSonString() {
+		JSONObject jsonObj = new JSONObject();
+
+		try {
+			jsonObj.put("error", getErrorCode());
+
+			if (errorDescription != null && !errorDescription.isEmpty()) {
+				jsonObj.put("error_description", errorDescription);
+			}
+
+			if (errorUri != null && !errorUri.isEmpty()) {
+				jsonObj.put("error_uri", errorUri);
+			}
+
+			if (StringUtils.isNotBlank(reason)) {
+			    jsonObj.put("reason", reason);
+            }
+
+			if (getState() != null && !getState().isEmpty()) {
+				jsonObj.put("state", getState());
+			}
+
+			return jsonObj.toString(4).replace("\\/", "/");
+		} catch (JSONException e) {
+			log.error(e.getMessage(), e);
+			return null;
+		}
+	}
+}
diff --git a/oxAuth/Model/src/main/java/org/gluu/oxauth/model/error/IErrorType.java b/oxAuth/Model/src/main/java/org/gluu/oxauth/model/error/IErrorType.java
new file mode 100644
index 00000000..8f835880
--- /dev/null
+++ b/oxAuth/Model/src/main/java/org/gluu/oxauth/model/error/IErrorType.java
@@ -0,0 +1,22 @@
+/*
+ * oxAuth is available under the MIT License (2008). See http://opensource.org/licenses/MIT for full text.
+ *
+ * Copyright (c) 2014, Gluu
+ */
+
+package org.gluu.oxauth.model.error;
+
+/**
+ * @author Yuriy Zabrovarnyy
+ * @version 0.9, 13/09/2012
+ */
+
+public interface IErrorType {
+
+    /**
+     * Gets error parameter.
+     *
+     * @return error parameter
+     */
+    public String getParameter();
+}
diff --git a/oxAuth/Model/src/main/java/org/gluu/oxauth/model/exception/InvalidClaimException.java b/oxAuth/Model/src/main/java/org/gluu/oxauth/model/exception/InvalidClaimException.java
new file mode 100644
index 00000000..f06973f0
--- /dev/null
+++ b/oxAuth/Model/src/main/java/org/gluu/oxauth/model/exception/InvalidClaimException.java
@@ -0,0 +1,17 @@
+/*
+ * oxAuth is available under the MIT License (2008). See http://opensource.org/licenses/MIT for full text.
+ *
+ * Copyright (c) 2014, Gluu
+ */
+
+package org.gluu.oxauth.model.exception;
+
+/**
+ * @author Javier Rojas Blum Date: 03.21.2012
+ */
+public class InvalidClaimException extends Exception {
+
+    public InvalidClaimException(String message) {
+        super(message);
+    }
+}
\ No newline at end of file
diff --git a/oxAuth/Model/src/main/java/org/gluu/oxauth/model/exception/InvalidJweException.java b/oxAuth/Model/src/main/java/org/gluu/oxauth/model/exception/InvalidJweException.java
new file mode 100644
index 00000000..4e36be68
--- /dev/null
+++ b/oxAuth/Model/src/main/java/org/gluu/oxauth/model/exception/InvalidJweException.java
@@ -0,0 +1,25 @@
+/*
+ * oxAuth is available under the MIT License (2008). See http://opensource.org/licenses/MIT for full text.
+ *
+ * Copyright (c) 2014, Gluu
+ */
+
+package org.gluu.oxauth.model.exception;
+
+/**
+ * @author Javier Rojas Blum Date: 12.06.2012
+ */
+public class InvalidJweException extends Exception {
+
+    public InvalidJweException(String message) {
+        super(message);
+    }
+
+    public InvalidJweException(String message, Throwable cause) {
+        super(message, cause);
+    }
+
+    public InvalidJweException(Throwable cause) {
+        super(cause);
+    }
+}
\ No newline at end of file
diff --git a/oxAuth/Model/src/main/java/org/gluu/oxauth/model/exception/InvalidJwtException.java b/oxAuth/Model/src/main/java/org/gluu/oxauth/model/exception/InvalidJwtException.java
new file mode 100644
index 00000000..4f848e9e
--- /dev/null
+++ b/oxAuth/Model/src/main/java/org/gluu/oxauth/model/exception/InvalidJwtException.java
@@ -0,0 +1,25 @@
+/*
+ * oxAuth is available under the MIT License (2008). See http://opensource.org/licenses/MIT for full text.
+ *
+ * Copyright (c) 2014, Gluu
+ */
+
+package org.gluu.oxauth.model.exception;
+
+/**
+ * @author Javier Rojas Blum Date: 03.09.2012
+ */
+public class InvalidJwtException extends Exception {
+
+    public InvalidJwtException(String message) {
+        super(message);
+    }
+
+    public InvalidJwtException(String message, Throwable cause) {
+        super(message, cause);
+    }
+
+    public InvalidJwtException(Throwable cause) {
+        super(cause);
+    }
+}
\ No newline at end of file
diff --git a/oxAuth/Model/src/main/java/org/gluu/oxauth/model/exception/InvalidParameterException.java b/oxAuth/Model/src/main/java/org/gluu/oxauth/model/exception/InvalidParameterException.java
new file mode 100644
index 00000000..e2da8b86
--- /dev/null
+++ b/oxAuth/Model/src/main/java/org/gluu/oxauth/model/exception/InvalidParameterException.java
@@ -0,0 +1,25 @@
+/*
+ * oxAuth is available under the MIT License (2008). See http://opensource.org/licenses/MIT for full text.
+ *
+ * Copyright (c) 2014, Gluu
+ */
+
+package org.gluu.oxauth.model.exception;
+
+/**
+ * @author Javier Rojas Blum Date: 10.22.2012
+ */
+public class InvalidParameterException extends Exception {
+
+    public InvalidParameterException(String message) {
+        super(message);
+    }
+
+    public InvalidParameterException(String message, Throwable cause) {
+        super(message, cause);
+    }
+
+    public InvalidParameterException(Throwable cause) {
+        super(cause);
+    }
+}
\ No newline at end of file
diff --git a/oxAuth/Model/src/main/java/org/gluu/oxauth/model/exception/SignatureException.java b/oxAuth/Model/src/main/java/org/gluu/oxauth/model/exception/SignatureException.java
new file mode 100644
index 00000000..904b4bc7
--- /dev/null
+++ b/oxAuth/Model/src/main/java/org/gluu/oxauth/model/exception/SignatureException.java
@@ -0,0 +1,25 @@
+/*
+ * oxAuth is available under the MIT License (2008). See http://opensource.org/licenses/MIT for full text.
+ *
+ * Copyright (c) 2014, Gluu
+ */
+
+package org.gluu.oxauth.model.exception;
+
+/**
+ * @author Javier Rojas Blum Date: 11.12.2012
+ */
+public class SignatureException extends Exception {
+
+    public SignatureException(String message) {
+        super(message);
+    }
+
+    public SignatureException(String message, Throwable cause) {
+        super(message, cause);
+    }
+
+    public SignatureException(Throwable cause) {
+        super(cause);
+    }
+}
\ No newline at end of file
diff --git a/oxAuth/Model/src/main/java/org/gluu/oxauth/model/fido/u2f/DeviceRegistrationStatus.java b/oxAuth/Model/src/main/java/org/gluu/oxauth/model/fido/u2f/DeviceRegistrationStatus.java
new file mode 100644
index 00000000..8bbf5186
--- /dev/null
+++ b/oxAuth/Model/src/main/java/org/gluu/oxauth/model/fido/u2f/DeviceRegistrationStatus.java
@@ -0,0 +1,72 @@
+/*
+ * oxAuth is available under the MIT License (2008). See http://opensource.org/licenses/MIT for full text.
+ *
+ * Copyright (c) 2014, Gluu
+ */
+
+package org.gluu.oxauth.model.fido.u2f;
+
+import java.util.HashMap;
+import java.util.Map;
+
+import org.gluu.persist.annotation.AttributeEnum;
+
+/**
+ * Device registration types
+ * 
+ * @author Yuriy Movchan Date: 06/02/2015
+ */
+public enum DeviceRegistrationStatus implements AttributeEnum {
+	//TODO: remove this class and reuse the one found in fido2-model
+    ACTIVE("active", "Active device registration"),
+	COMPROMISED("compromised", "Compromised device registration"),
+	MIGRATED("migrated", "Migrated to Fido2");
+
+    private final String value;
+	private final String displayName;
+
+	private static Map<String, DeviceRegistrationStatus> mapByValues = new HashMap<String, DeviceRegistrationStatus>();
+
+	static {
+		for (DeviceRegistrationStatus enumType : values()) {
+			mapByValues.put(enumType.getValue(), enumType);
+		}
+	}
+
+    private DeviceRegistrationStatus(String value, String displayName) {
+        this.value = value;
+        this.displayName = displayName;
+    }
+
+    public static DeviceRegistrationStatus fromString(String param) {
+    	return getByValue(param);
+    }
+
+	@Override
+	public String getValue() {
+		return value;
+	}
+
+	/**
+     * Gets display name
+     *
+     * @return display name name
+     */
+    public String getDisplayName() {
+		return displayName;
+	}
+
+	public static DeviceRegistrationStatus getByValue(String value) {
+		return mapByValues.get(value);
+	}
+
+	public Enum<? extends AttributeEnum> resolveByValue(String value) {
+		return getByValue(value);
+	}
+
+    @Override
+    public String toString() {
+        return value;
+    }
+
+}
\ No newline at end of file
diff --git a/oxAuth/Model/src/main/java/org/gluu/oxauth/model/fido/u2f/U2fConfiguration.java b/oxAuth/Model/src/main/java/org/gluu/oxauth/model/fido/u2f/U2fConfiguration.java
new file mode 100644
index 00000000..f665f49b
--- /dev/null
+++ b/oxAuth/Model/src/main/java/org/gluu/oxauth/model/fido/u2f/U2fConfiguration.java
@@ -0,0 +1,75 @@
+/*
+ * oxAuth is available under the MIT License (2008). See http://opensource.org/licenses/MIT for full text.
+ *
+ * Copyright (c) 2015, Gluu
+ */
+
+package org.gluu.oxauth.model.fido.u2f;
+
+import com.fasterxml.jackson.annotation.JsonProperty;
+import com.fasterxml.jackson.annotation.JsonPropertyOrder;
+import org.jboss.resteasy.annotations.providers.jaxb.IgnoreMediaTypes;
+
+/**
+ * FIDO U2F metadata configuration
+ *
+ * @author Yuriy Movchan Date: 05/13/2015
+ */
+@IgnoreMediaTypes("application/*+json")
+@JsonPropertyOrder({ "version", "issuer", "registration_endpoint", "authentication_endpoint" })
+public class U2fConfiguration {
+
+	@JsonProperty(value = "version")
+	private String version;
+
+	@JsonProperty(value = "issuer")
+	private String issuer;
+
+	@JsonProperty(value = "registration_endpoint")
+	private String registrationEndpoint;
+
+	@JsonProperty(value = "authentication_endpoint")
+	private String authenticationEndpoint;
+
+	public String getVersion() {
+		return version;
+	}
+
+	public void setVersion(String version) {
+		this.version = version;
+	}
+
+	public String getIssuer() {
+		return issuer;
+	}
+
+	public void setIssuer(String issuer) {
+		this.issuer = issuer;
+	}
+
+	public String getRegistrationEndpoint() {
+		return registrationEndpoint;
+	}
+
+	public void setRegistrationEndpoint(String registrationEndpoint) {
+		this.registrationEndpoint = registrationEndpoint;
+	}
+
+	public String getAuthenticationEndpoint() {
+		return authenticationEndpoint;
+	}
+
+	public void setAuthenticationEndpoint(String authenticationEndpoint) {
+		this.authenticationEndpoint = authenticationEndpoint;
+	}
+
+	@Override
+	public String toString() {
+		StringBuilder builder = new StringBuilder();
+		builder.append("U2fConfiguration [version=").append(version).append(", issuer=").append(issuer).append(", registrationEndpoint=")
+				.append(registrationEndpoint).append(", authenticationEndpoint=").append(authenticationEndpoint).append("]");
+		return builder.toString();
+	}
+
+
+}
diff --git a/oxAuth/Model/src/main/java/org/gluu/oxauth/model/fido/u2f/U2fConstants.java b/oxAuth/Model/src/main/java/org/gluu/oxauth/model/fido/u2f/U2fConstants.java
new file mode 100644
index 00000000..4b23fc2a
--- /dev/null
+++ b/oxAuth/Model/src/main/java/org/gluu/oxauth/model/fido/u2f/U2fConstants.java
@@ -0,0 +1,20 @@
+/*
+ * oxAuth is available under the MIT License (2008). See http://opensource.org/licenses/MIT for full text.
+ *
+ * Copyright (c) 2015, Gluu
+ */
+
+package org.gluu.oxauth.model.fido.u2f;
+
+/**
+ * Static FIDO U2F server variables
+ * 
+ * @author Yuriy Movchan Date: 05/14/2015
+ */
+public class U2fConstants {
+
+	public static final String U2F_PROTOCOL_VERSION = "U2F_V2";
+
+	public static final String U2F_ENROLLMENT_CODE_ATTRIBUTE = "oxEnrollmentCode";
+
+}
\ No newline at end of file
diff --git a/oxAuth/Model/src/main/java/org/gluu/oxauth/model/fido/u2f/U2fErrorResponseType.java b/oxAuth/Model/src/main/java/org/gluu/oxauth/model/fido/u2f/U2fErrorResponseType.java
new file mode 100644
index 00000000..a2773a7d
--- /dev/null
+++ b/oxAuth/Model/src/main/java/org/gluu/oxauth/model/fido/u2f/U2fErrorResponseType.java
@@ -0,0 +1,97 @@
+/*
+ * oxAuth is available under the MIT License (2008). See http://opensource.org/licenses/MIT for full text.
+ *
+ * Copyright (c) 2015, Gluu
+ */
+
+package org.gluu.oxauth.model.fido.u2f;
+
+import java.util.HashMap;
+import java.util.Map;
+
+import org.gluu.oxauth.model.error.IErrorType;
+
+/**
+ * Error codes for FIDO U2F server
+ * 
+ * @author Yuriy Movchan Date: 05/13/2015
+ */
+public enum U2fErrorResponseType implements IErrorType {
+
+	/**
+	 * The FIDO U2F server encountered an unexpected condition which prevented
+	 * it from fulfilling the request.
+	 */
+	SERVER_ERROR("server_error"),
+	
+	/**
+	 * The authentication or registration request contains invalid data or signature.
+	 */
+	INVALID_REQUEST("invalid_request"),
+
+	/**
+	 * The user has no registered devices needed to build authentication request.
+	 */
+	NO_ELIGABLE_DEVICES("no_eligable_devices"),
+
+	/**
+	 * The registered device was compromised.
+	 */
+	DEVICE_COMPROMISED("device_compromised"),
+
+	/**
+	 * The authentication or registration session was expired
+	 */
+	SESSION_EXPIRED("session_expired"),
+
+	/**
+	 * The user has registered device already.
+	 */
+	REGISTRATION_NOT_ALLOWED("registration_not_allowed");
+	
+
+	private static Map<String, U2fErrorResponseType> lookup = new HashMap<String, U2fErrorResponseType>();
+
+	static {
+		for (U2fErrorResponseType enumType : values()) {
+			lookup.put(enumType.getParameter(), enumType);
+		}
+	}
+
+	private final String paramName;
+
+	private U2fErrorResponseType(String paramName) {
+		this.paramName = paramName;
+	}
+
+	/**
+	 * Return the corresponding enumeration from a string parameter.
+	 * 
+	 * @param param
+	 *            The parameter to be match.
+	 * @return The <code>enumeration</code> if found, otherwise
+	 *         <code>null</code>.
+	 */
+	public static U2fErrorResponseType fromString(String param) {
+		return lookup.get(param);
+	}
+
+	/**
+	 * Returns a string representation of the object. In this case, the lower
+	 * case code of the error.
+	 */
+	@Override
+	public String toString() {
+		return paramName;
+	}
+
+	/**
+	 * Gets error parameter.
+	 * 
+	 * @return error parameter
+	 */
+	@Override
+	public String getParameter() {
+		return paramName;
+	}
+}
\ No newline at end of file
diff --git a/oxAuth/Model/src/main/java/org/gluu/oxauth/model/fido/u2f/exception/BadInputException.java b/oxAuth/Model/src/main/java/org/gluu/oxauth/model/fido/u2f/exception/BadInputException.java
new file mode 100644
index 00000000..efb0b70b
--- /dev/null
+++ b/oxAuth/Model/src/main/java/org/gluu/oxauth/model/fido/u2f/exception/BadInputException.java
@@ -0,0 +1,23 @@
+/*
+ * oxAuth is available under the MIT License (2008). See http://opensource.org/licenses/MIT for full text.
+ *
+ * Copyright (c) 2015, Gluu
+ */
+
+package org.gluu.oxauth.model.fido.u2f.exception;
+
+/**
+ * @author Yuriy Movchan Date: 05/13/2015
+ */
+public class BadInputException extends RuntimeException {
+
+	private static final long serialVersionUID = -2738024707341148557L;
+
+	public BadInputException(String message) {
+		super(message);
+	}
+
+	public BadInputException(String message, Throwable cause) {
+		super(message, cause);
+	}
+}
diff --git a/oxAuth/Model/src/main/java/org/gluu/oxauth/model/fido/u2f/exception/RegistrationNotAllowed.java b/oxAuth/Model/src/main/java/org/gluu/oxauth/model/fido/u2f/exception/RegistrationNotAllowed.java
new file mode 100644
index 00000000..79f67adb
--- /dev/null
+++ b/oxAuth/Model/src/main/java/org/gluu/oxauth/model/fido/u2f/exception/RegistrationNotAllowed.java
@@ -0,0 +1,23 @@
+/*
+ * oxAuth is available under the MIT License (2008). See http://opensource.org/licenses/MIT for full text.
+ *
+ * Copyright (c) 2015, Gluu
+ */
+
+package org.gluu.oxauth.model.fido.u2f.exception;
+
+/**
+ * @author Yuriy Movchan Date: 07/13/2016
+ */
+public class RegistrationNotAllowed extends RuntimeException {
+
+	private static final long serialVersionUID = -2738024707341148557L;
+
+	public RegistrationNotAllowed(String message) {
+		super(message);
+	}
+
+	public RegistrationNotAllowed(String message, Throwable cause) {
+		super(message, cause);
+	}
+}
diff --git a/oxAuth/Model/src/main/java/org/gluu/oxauth/model/fido/u2f/message/RawAuthenticateResponse.java b/oxAuth/Model/src/main/java/org/gluu/oxauth/model/fido/u2f/message/RawAuthenticateResponse.java
new file mode 100644
index 00000000..b0453da0
--- /dev/null
+++ b/oxAuth/Model/src/main/java/org/gluu/oxauth/model/fido/u2f/message/RawAuthenticateResponse.java
@@ -0,0 +1,61 @@
+/*
+ * oxAuth is available under the MIT License (2008). See http://opensource.org/licenses/MIT for full text.
+ *
+ * Copyright (c) 2014, Gluu
+ */
+
+package org.gluu.oxauth.model.fido.u2f.message;
+
+import org.gluu.oxauth.model.fido.u2f.exception.BadInputException;
+
+/**
+ * The authenticate response produced by the token/key, which is transformed by
+ * the client into an AuthenticateResponse and sent to the server.
+ *
+ * @author Yuriy Movchan Date: 05/14/2015
+ */
+public class RawAuthenticateResponse {
+	public static final byte USER_PRESENT_FLAG = 0x01;
+
+	private final byte userPresence;
+	private final long counter;
+	private final byte[] signature;
+
+	public RawAuthenticateResponse(byte userPresence, long counter, byte[] signature) {
+		this.userPresence = userPresence;
+		this.counter = counter;
+		this.signature = signature;
+	}
+
+	/**
+	 * Bit 0 is set to 1, which means that user presence was verified. (This
+	 * version of the protocol doesn't specify a way to request authentication
+	 * responses without requiring user presence.) A different value of bit 0,
+	 * as well as bits 1 through 7, are reserved for future use. The values of
+	 * bit 1 through 7 SHOULD be 0
+	 */
+	public byte getUserPresence() {
+		return userPresence;
+	}
+
+	/**
+	 * This is the big-endian representation of a counter value that the U2F
+	 * device increments every time it performs an authentication operation.
+	 */
+	public long getCounter() {
+		return counter;
+	}
+
+	/**
+	 * This is a ECDSA signature (on P-256)
+	 */
+	public byte[] getSignature() {
+		return signature;
+	}
+
+	public void checkUserPresence() throws BadInputException {
+		if (userPresence != USER_PRESENT_FLAG) {
+			throw new BadInputException("User presence invalid during authentication");
+		}
+	}
+}
diff --git a/oxAuth/Model/src/main/java/org/gluu/oxauth/model/fido/u2f/message/RawRegisterResponse.java b/oxAuth/Model/src/main/java/org/gluu/oxauth/model/fido/u2f/message/RawRegisterResponse.java
new file mode 100644
index 00000000..9e0771e5
--- /dev/null
+++ b/oxAuth/Model/src/main/java/org/gluu/oxauth/model/fido/u2f/message/RawRegisterResponse.java
@@ -0,0 +1,59 @@
+/*
+ * oxAuth is available under the MIT License (2008). See http://opensource.org/licenses/MIT for full text.
+ *
+ * Copyright (c) 2014, Gluu
+ */
+
+package org.gluu.oxauth.model.fido.u2f.message;
+
+import java.security.cert.X509Certificate;
+
+/**
+ * The register response produced by the token/key, which is transformed by the
+ * client into an RegisterResponse and sent to the server.
+ * 
+ * @author Yuriy Movchan Date: 05/14/2015
+ */
+public class RawRegisterResponse {
+
+	/**
+	 * The (uncompressed) x,y-representation of a curve point on the P-256 NIST
+	 * elliptic curve.
+	 */
+	private final byte[] userPublicKey;
+
+	/**
+	 * A handle that allows the U2F token to identify the generated key pair.
+	 */
+	private final byte[] keyHandle;
+	private final X509Certificate attestationCertificate;
+
+	/**
+	 * A ECDSA signature (on P-256)
+	 */
+	private final byte[] signature;
+
+	public RawRegisterResponse(byte[] userPublicKey, byte[] keyHandle, X509Certificate attestationCertificate, byte[] signature) {
+		this.userPublicKey = userPublicKey;
+		this.keyHandle = keyHandle;
+		this.attestationCertificate = attestationCertificate;
+		this.signature = signature;
+	}
+
+	public byte[] getUserPublicKey() {
+		return userPublicKey;
+	}
+
+	public byte[] getKeyHandle() {
+		return keyHandle;
+	}
+
+	public X509Certificate getAttestationCertificate() {
+		return attestationCertificate;
+	}
+
+	public byte[] getSignature() {
+		return signature;
+	}
+
+}
diff --git a/oxAuth/Model/src/main/java/org/gluu/oxauth/model/fido/u2f/protocol/AuthenticateRequest.java b/oxAuth/Model/src/main/java/org/gluu/oxauth/model/fido/u2f/protocol/AuthenticateRequest.java
new file mode 100644
index 00000000..a28a7266
--- /dev/null
+++ b/oxAuth/Model/src/main/java/org/gluu/oxauth/model/fido/u2f/protocol/AuthenticateRequest.java
@@ -0,0 +1,79 @@
+/*
+ /*
+ * oxAuth is available under the MIT License (2008). See http://opensource.org/licenses/MIT for full text.
+ *
+ * Copyright (c) 2015, Gluu
+ */
+
+package org.gluu.oxauth.model.fido.u2f.protocol;
+
+import java.io.Serializable;
+
+import com.fasterxml.jackson.annotation.JsonProperty;
+import org.gluu.oxauth.model.fido.u2f.U2fConstants;
+
+/**
+ * FIDO U2F device authentication request
+ *
+ * @author Yuriy Movchan Date: 05/13/2015
+ */
+public class AuthenticateRequest implements Serializable {
+
+	private static final long serialVersionUID = 8479635006453668632L;
+
+	/**
+	 * Version of the protocol that the to-be-registered U2F token must speak.
+	 * For the version of the protocol described herein, must be "U2F_V2"
+	 */
+	@JsonProperty
+	private final String version = U2fConstants.U2F_PROTOCOL_VERSION;
+
+	/**
+	 * The websafe-base64-encoded challenge.
+	 */
+	@JsonProperty
+	private final String challenge;
+
+	/**
+	 * The application id that the RP would like to assert. The U2F token will
+	 * enforce that the key handle provided above is associated with this
+	 * application id. The browser enforces that the calling origin belongs to
+	 * the application identified by the application id.
+	 */
+	@JsonProperty
+	private final String appId;
+
+	/**
+	 * websafe-base64 encoding of the key handle obtained from the U2F token
+	 * during registration.
+	 */
+	@JsonProperty
+	private final String keyHandle;
+
+	public AuthenticateRequest(@JsonProperty("challenge") String challenge, @JsonProperty("appId") String appId, @JsonProperty("keyHandle") String keyHandle) {
+		this.challenge = challenge;
+		this.appId = appId;
+		this.keyHandle = keyHandle;
+	}
+
+	public String getKeyHandle() {
+		return keyHandle;
+	}
+
+	public String getChallenge() {
+		return challenge;
+	}
+
+	public String getAppId() {
+		return appId;
+	}
+
+	@Override
+	public String toString() {
+		StringBuilder builder = new StringBuilder();
+		builder.append("AuthenticateRequest [version=").append(version).append(", challenge=").append(challenge).append(", appId=").append(appId)
+				.append(", keyHandle=").append(keyHandle).append("]");
+		return builder.toString();
+	}
+
+}
diff --git a/oxAuth/Model/src/main/java/org/gluu/oxauth/model/fido/u2f/protocol/AuthenticateRequestMessage.java b/oxAuth/Model/src/main/java/org/gluu/oxauth/model/fido/u2f/protocol/AuthenticateRequestMessage.java
new file mode 100644
index 00000000..09d76d0c
--- /dev/null
+++ b/oxAuth/Model/src/main/java/org/gluu/oxauth/model/fido/u2f/protocol/AuthenticateRequestMessage.java
@@ -0,0 +1,60 @@
+/*
+ * oxAuth is available under the MIT License (2008). See http://opensource.org/licenses/MIT for full text.
+ *
+ * Copyright (c) 2015, Gluu
+ */
+
+package org.gluu.oxauth.model.fido.u2f.protocol;
+
+import com.fasterxml.jackson.annotation.JsonIgnore;
+import com.fasterxml.jackson.annotation.JsonProperty;
+import org.gluu.oxauth.model.util.Util;
+
+import java.io.Serializable;
+import java.util.Collections;
+import java.util.List;
+
+/**
+ * FIDO U2F authentication request message
+ *
+ * @author Yuriy Movchan Date: 05/15/2015
+ */
+public class AuthenticateRequestMessage implements Serializable {
+
+	private static final long serialVersionUID = 5492097239884163697L;
+
+	@JsonProperty
+	private List<AuthenticateRequest> authenticateRequests;
+
+	public AuthenticateRequestMessage() {}
+
+	public AuthenticateRequestMessage(@JsonProperty("authenticateRequests") List<AuthenticateRequest> authenticateRequests) {
+		this.authenticateRequests = authenticateRequests;
+	}
+
+	public List<AuthenticateRequest> getAuthenticateRequests() {
+		return Collections.unmodifiableList(authenticateRequests);
+	}
+
+	public void setAuthenticateRequests(List<AuthenticateRequest> authenticateRequests) {
+		this.authenticateRequests = authenticateRequests;
+	}
+
+	@JsonIgnore
+	public String getRequestId() {
+		return Util.firstItem(authenticateRequests).getChallenge();
+	}
+
+	@JsonIgnore
+	public String getAppId() {
+		return Util.firstItem(authenticateRequests).getAppId();
+	}
+
+	@Override
+	public String toString() {
+		StringBuilder builder = new StringBuilder();
+		builder.append("AuthenticateRequestMessage [authenticateRequests=").append(authenticateRequests).append("]");
+		return builder.toString();
+	}
+
+}
diff --git a/oxAuth/Model/src/main/java/org/gluu/oxauth/model/fido/u2f/protocol/AuthenticateResponse.java b/oxAuth/Model/src/main/java/org/gluu/oxauth/model/fido/u2f/protocol/AuthenticateResponse.java
new file mode 100644
index 00000000..389a9942
--- /dev/null
+++ b/oxAuth/Model/src/main/java/org/gluu/oxauth/model/fido/u2f/protocol/AuthenticateResponse.java
@@ -0,0 +1,96 @@
+/*
+ * oxAuth is available under the MIT License (2008). See http://opensource.org/licenses/MIT for full text.
+ *
+ * Copyright (c) 2015, Gluu
+ */
+
+package org.gluu.oxauth.model.fido.u2f.protocol;
+
+import java.io.Serializable;
+
+import com.fasterxml.jackson.annotation.JsonIgnore;
+import com.fasterxml.jackson.annotation.JsonIgnoreProperties;
+import com.fasterxml.jackson.annotation.JsonProperty;
+import org.gluu.oxauth.model.fido.u2f.exception.BadInputException;
+import org.jboss.resteasy.annotations.providers.jaxb.IgnoreMediaTypes;
+import com.fasterxml.jackson.annotation.JsonInclude;
+import com.fasterxml.jackson.annotation.JsonInclude.Include;
+/**
+ * FIDO U2F device authentication response
+ *
+ * @author Yuriy Movchan Date: 05/13/2015
+ */
+@IgnoreMediaTypes("application/*+json")
+// try to ignore jettison as it's recommended here:
+// http://docs.jboss.org/resteasy/docs/2.3.4.Final/userguide/html/json.html
+@JsonIgnoreProperties(ignoreUnknown = true)
+public class AuthenticateResponse implements Serializable {
+
+	private static final long serialVersionUID = -4854326288654670000L;
+
+	/**
+	 * base64(UTF8(client data))
+	 */
+	@JsonProperty
+	private final String clientData;
+
+	@JsonIgnore
+	private transient ClientData clientDataRef;
+
+	/* base64(raw response from U2F device) */
+	@JsonProperty
+	private final String signatureData;
+
+	/* keyHandle originally passed */
+	@JsonProperty
+	private final String keyHandle;
+	/**
+	 * base64(UTF8(device data))
+	 */
+	@JsonProperty
+	@JsonInclude(JsonInclude.Include.NON_EMPTY)
+	private final String deviceData;
+
+	public String getDeviceData() {
+		return deviceData;
+	}
+
+	public AuthenticateResponse(@JsonProperty("clientData") String clientData, @JsonProperty("signatureData") String signatureData,
+			@JsonProperty("keyHandle") String keyHandle, @JsonProperty("deviceData") String deviceData) throws BadInputException {
+		this.clientData = clientData;
+		this.signatureData = signatureData;
+		this.keyHandle = keyHandle;
+		this.clientDataRef = new ClientData(clientData);
+		this.deviceData = deviceData;
+	}
+
+	public ClientData getClientData() {
+		return clientDataRef;
+	}
+
+	public String getClientDataRaw() {
+		return clientData;
+	}
+
+	public String getSignatureData() {
+		return signatureData;
+	}
+
+	public String getKeyHandle() {
+		return keyHandle;
+	}
+
+	@JsonIgnore
+	public String getRequestId() {
+		return getClientData().getChallenge();
+	}
+
+	@Override
+	public String toString() {
+		StringBuilder builder = new StringBuilder();
+		builder.append("AuthenticateResponse [clientData=").append(clientData).append(", signatureData=").append(signatureData).append(", keyHandle=")
+				.append(keyHandle).append(",deviceData=").append("]");
+		return builder.toString();
+	}
+
+}
diff --git a/oxAuth/Model/src/main/java/org/gluu/oxauth/model/fido/u2f/protocol/AuthenticateStatus.java b/oxAuth/Model/src/main/java/org/gluu/oxauth/model/fido/u2f/protocol/AuthenticateStatus.java
new file mode 100644
index 00000000..84f8e52a
--- /dev/null
+++ b/oxAuth/Model/src/main/java/org/gluu/oxauth/model/fido/u2f/protocol/AuthenticateStatus.java
@@ -0,0 +1,55 @@
+/*
+ * oxAuth is available under the MIT License (2008). See http://opensource.org/licenses/MIT for full text.
+ *
+ * Copyright (c) 2015, Gluu
+ */
+
+package org.gluu.oxauth.model.fido.u2f.protocol;
+
+import java.io.Serializable;
+
+import com.fasterxml.jackson.annotation.JsonIgnore;
+import com.fasterxml.jackson.annotation.JsonProperty;
+import org.gluu.oxauth.model.fido.u2f.exception.BadInputException;
+
+/**
+ * FIDO U2F device authentication status response
+ *
+ * @author Yuriy Movchan Date: 05/20/2015
+ */
+public class AuthenticateStatus implements Serializable {
+
+	private static final long serialVersionUID = -8287836230637556749L;
+
+	@JsonProperty
+	private final String status;
+
+	@JsonProperty
+	private final String challenge;
+
+	public AuthenticateStatus(@JsonProperty("status") String status, @JsonProperty("challenge") String challenge) throws BadInputException {
+		this.status = status;
+		this.challenge = challenge;
+	}
+
+	public String getStatus() {
+		return status;
+	}
+
+	public String getChallenge() {
+		return challenge;
+	}
+
+	@JsonIgnore
+	public String getRequestId() {
+		return challenge;
+	}
+
+	@Override
+	public String toString() {
+		StringBuilder builder = new StringBuilder();
+		builder.append("RegisterStatus [status=").append(status).append(", challenge=").append(challenge).append("]");
+		return builder.toString();
+	}
+
+}
diff --git a/oxAuth/Model/src/main/java/org/gluu/oxauth/model/fido/u2f/protocol/ClientData.java b/oxAuth/Model/src/main/java/org/gluu/oxauth/model/fido/u2f/protocol/ClientData.java
new file mode 100644
index 00000000..ce6464b3
--- /dev/null
+++ b/oxAuth/Model/src/main/java/org/gluu/oxauth/model/fido/u2f/protocol/ClientData.java
@@ -0,0 +1,73 @@
+/*
+ * oxAuth is available under the MIT License (2008). See http://opensource.org/licenses/MIT for full text.
+ *
+ * Copyright (c) 2015, Gluu
+ */
+
+package org.gluu.oxauth.model.fido.u2f.protocol;
+
+import java.io.IOException;
+import java.io.Serializable;
+
+import org.gluu.oxauth.model.fido.u2f.exception.BadInputException;
+import org.gluu.oxauth.model.util.Base64Util;
+
+import com.fasterxml.jackson.databind.JsonNode;
+import com.fasterxml.jackson.databind.ObjectMapper;
+
+/**
+ * FIDO U2F client data
+ *
+ * @author Yuriy Movchan Date: 05/13/2015
+ */
+public class ClientData implements Serializable {
+
+	private static final long serialVersionUID = -1483378146391551962L;
+
+	private static final String TYPE_PARAM = "typ";
+	private static final String CHALLENGE_PARAM = "challenge";
+	private static final String ORIGIN_PARAM = "origin";
+
+	private final String typ;
+	private final String challenge;
+	private final String origin;
+	private final String rawClientData;
+	private final JsonNode data;
+
+	public ClientData(String clientData) throws BadInputException {
+		this.rawClientData = new String(Base64Util.base64urldecode(clientData));
+		try {
+			this.data = new ObjectMapper().readTree(rawClientData);
+			this.typ = getString(TYPE_PARAM);
+			this.challenge = getString(CHALLENGE_PARAM);
+			this.origin = getString(ORIGIN_PARAM);
+		} catch (IOException ex) {
+			throw new BadInputException("Malformed ClientData", ex);
+		}
+	}
+
+	public String getTyp() {
+		return typ;
+	}
+
+	public String getChallenge() {
+		return challenge;
+	}
+
+	public String getOrigin() {
+		return origin;
+	}
+
+	public String getString(String key) {
+		return data.get(key).asText();
+	}
+
+	public String getRawClientData() {
+		return rawClientData;
+	}
+
+	@Override
+	public String toString() {
+		return rawClientData;
+	}
+}
diff --git a/oxAuth/Model/src/main/java/org/gluu/oxauth/model/fido/u2f/protocol/DeviceData.java b/oxAuth/Model/src/main/java/org/gluu/oxauth/model/fido/u2f/protocol/DeviceData.java
new file mode 100644
index 00000000..80118df2
--- /dev/null
+++ b/oxAuth/Model/src/main/java/org/gluu/oxauth/model/fido/u2f/protocol/DeviceData.java
@@ -0,0 +1,101 @@
+/*
+ * oxAuth is available under the MIT License (2008). See http://opensource.org/licenses/MIT for full text.
+ *
+ * Copyright (c) 2015, Gluu
+ */
+
+package org.gluu.oxauth.model.fido.u2f.protocol;
+
+import java.io.Serializable;
+import java.util.Map;
+
+import com.fasterxml.jackson.annotation.JsonIgnoreProperties;
+import com.fasterxml.jackson.annotation.JsonProperty;
+
+/**
+ * FIDO U2F device data
+ *
+ * @author Yuriy Movchan Date: 02/16/2016
+ */
+@JsonIgnoreProperties(ignoreUnknown = true)
+public class DeviceData implements Serializable {
+
+	private static final long serialVersionUID = -8173244116167488365L;
+
+	@JsonProperty(value = "uuid")
+	private final String uuid;
+
+	@JsonProperty(value = "push_token")
+	private final String pushToken;
+
+	@JsonProperty(value = "type")
+	private final String type;
+
+	@JsonProperty(value = "platform")
+	private final String platform;
+
+	@JsonProperty(value = "name")
+	private final String name;
+
+	@JsonProperty(value = "os_name")
+	private final String osName;
+
+	@JsonProperty(value = "os_version")
+	private final String osVersion;
+
+    @JsonProperty(value = "custom_data")
+    private final Map<String, String> customData;
+
+	public DeviceData(@JsonProperty(value = "uuid") String uuid, @JsonProperty(value = "token") String pushToken,
+			@JsonProperty(value = "type") String type, @JsonProperty(value = "platform") String platform,
+			@JsonProperty(value = "name") String name, @JsonProperty(value = "os_name") String osName,
+			@JsonProperty(value = "os_version") String osVersion, @JsonProperty(value = "custom_data") Map<String, String> customData) {
+		this.uuid = uuid;
+		this.pushToken = pushToken;
+		this.type = type;
+		this.platform = platform;
+		this.name = name;
+		this.osName = osName;
+		this.osVersion = osVersion;
+        this.customData = customData;
+	}
+
+	public String getUuid() {
+		return uuid;
+	}
+
+	public String getPushToken() {
+		return pushToken;
+	}
+
+	public String getType() {
+		return type;
+	}
+
+	public String getPlatform() {
+		return platform;
+	}
+
+	public String getName() {
+		return name;
+	}
+
+	public String getOsName() {
+		return osName;
+	}
+
+	public String getOsVersion() {
+		return osVersion;
+	}
+
+	public final Map<String, String> getCustomData() {
+        return customData;
+    }
+
+    @Override
+    public String toString() {
+        return "DeviceData [uuid=" + uuid + ", pushToken=" + pushToken + ", type=" + type + ", platform=" + platform + ", name=" + name + ", osName="
+                + osName + ", osVersion=" + osVersion + ", customData=" + customData + "]";
+    }
+
+}
diff --git a/oxAuth/Model/src/main/java/org/gluu/oxauth/model/fido/u2f/protocol/DeviceNotificationConf.java b/oxAuth/Model/src/main/java/org/gluu/oxauth/model/fido/u2f/protocol/DeviceNotificationConf.java
new file mode 100644
index 00000000..d9eaf34a
--- /dev/null
+++ b/oxAuth/Model/src/main/java/org/gluu/oxauth/model/fido/u2f/protocol/DeviceNotificationConf.java
@@ -0,0 +1,73 @@
+/*
+ * oxAuth is available under the MIT License (2008). See http://opensource.org/licenses/MIT for full text.
+ *
+ * Copyright (c) 2015, Gluu
+ */
+
+package org.gluu.oxauth.model.fido.u2f.protocol;
+
+import java.io.Serializable;
+import java.util.List;
+
+import com.fasterxml.jackson.annotation.JsonIgnoreProperties;
+import com.fasterxml.jackson.annotation.JsonInclude;
+import com.fasterxml.jackson.annotation.JsonProperty;
+
+/**
+ * FIDO2 U2F device notification configuration
+ *
+ * @author Yuriy Movchan Date: 03/21/2024
+ */
+@JsonIgnoreProperties(ignoreUnknown = true)
+@JsonInclude(JsonInclude.Include.NON_EMPTY)
+public class DeviceNotificationConf implements Serializable {
+
+	private static final long serialVersionUID = -8173244116167488365L;
+
+	@JsonProperty(value = "sns_endpoint_arn")
+	private String snsEndpointArn;
+
+	@JsonProperty(value = "sns_endpoint_arn_remove")
+	private String snsEndpointArnRemove;
+
+    @JsonProperty(value = "sns_endpoint_arn_history")
+    private List<String> snsEndpointArnHistory;
+
+	public DeviceNotificationConf(@JsonProperty(value = "sns_endpoint_arn") String snsEndpointArn, @JsonProperty(value = "sns_endpoint_arn_remove") String snsEndpointArnRemove,
+			@JsonProperty(value = "sns_endpoint_arn_history") List<String> snsEndpointArnHistory) {
+		this.snsEndpointArn = snsEndpointArn;
+		this.snsEndpointArnRemove = snsEndpointArnRemove;
+		this.snsEndpointArnHistory = snsEndpointArnHistory;
+	}
+
+	public String getSnsEndpointArn() {
+		return snsEndpointArn;
+	}
+
+	public void setSnsEndpointArn(String snsEndpointArn) {
+		this.snsEndpointArn = snsEndpointArn;
+	}
+
+	public String getSnsEndpointArnRemove() {
+		return snsEndpointArnRemove;
+	}
+
+	public void setSnsEndpointArnRemove(String snsEndpointArnRemove) {
+		this.snsEndpointArnRemove = snsEndpointArnRemove;
+	}
+
+	public List<String> getSnsEndpointArnHistory() {
+		return snsEndpointArnHistory;
+	}
+
+	public void setSnsEndpointArnHistory(List<String> snsEndpointArnHistory) {
+		this.snsEndpointArnHistory = snsEndpointArnHistory;
+	}
+
+	@Override
+	public String toString() {
+		return "Fido2DeviceNotificationConf [snsEndpointArn=" + snsEndpointArn + ", snsEndpointArnRemove="
+				+ snsEndpointArnRemove + ", snsEndpointArnHistory=" + snsEndpointArnHistory + "]";
+	}
+
+}
diff --git a/oxAuth/Model/src/main/java/org/gluu/oxauth/model/fido/u2f/protocol/RegisterRequest.java b/oxAuth/Model/src/main/java/org/gluu/oxauth/model/fido/u2f/protocol/RegisterRequest.java
new file mode 100644
index 00000000..6b8312ff
--- /dev/null
+++ b/oxAuth/Model/src/main/java/org/gluu/oxauth/model/fido/u2f/protocol/RegisterRequest.java
@@ -0,0 +1,71 @@
+/*
+ * oxAuth is available under the MIT License (2008). See http://opensource.org/licenses/MIT for full text.
+ *
+ * Copyright (c) 2015, Gluu
+ */
+
+package org.gluu.oxauth.model.fido.u2f.protocol;
+
+import java.io.Serializable;
+
+import com.fasterxml.jackson.annotation.JsonIgnore;
+import com.fasterxml.jackson.annotation.JsonProperty;
+import org.gluu.oxauth.model.fido.u2f.U2fConstants;
+
+/**
+ * FIDO U2F device registration request
+ *
+ * @author Yuriy Movchan Date: 05/13/2015
+ */
+public class RegisterRequest implements Serializable {
+
+	private static final long serialVersionUID = -7804531602792040593L;
+
+	/**
+	 * Version of the protocol that the to-be-registered U2F token must speak.
+	 * For the version of the protocol described herein, must be "U2F_V2"
+	 */
+	@JsonProperty
+	private final String version = U2fConstants.U2F_PROTOCOL_VERSION;
+
+	/**
+	 * The websafe-base64-encoded challenge.
+	 */
+	@JsonProperty
+	private final String challenge;
+
+	/**
+	 * The application id that the RP would like to assert. The U2F token will
+	 * enforce that the key handle provided above is associated with this
+	 * application id. The browser enforces that the calling origin belongs to
+	 * the application identified by the application id.
+	 */
+	@JsonProperty
+	private final String appId;
+
+	public RegisterRequest(@JsonProperty("challenge") String challenge, @JsonProperty("appId") String appId) {
+		this.challenge = challenge;
+		this.appId = appId;
+	}
+
+	public String getChallenge() {
+		return challenge;
+	}
+
+	public String getAppId() {
+		return appId;
+	}
+
+	@JsonIgnore
+	public String getRequestId() {
+		return getChallenge();
+	}
+
+	@Override
+	public String toString() {
+		StringBuilder builder = new StringBuilder();
+		builder.append("RegisterRequest [version=").append(version).append(", challenge=").append(challenge).append(", appId=").append(appId).append("]");
+		return builder.toString();
+	}
+
+}
diff --git a/oxAuth/Model/src/main/java/org/gluu/oxauth/model/fido/u2f/protocol/RegisterRequestMessage.java b/oxAuth/Model/src/main/java/org/gluu/oxauth/model/fido/u2f/protocol/RegisterRequestMessage.java
new file mode 100644
index 00000000..67824669
--- /dev/null
+++ b/oxAuth/Model/src/main/java/org/gluu/oxauth/model/fido/u2f/protocol/RegisterRequestMessage.java
@@ -0,0 +1,64 @@
+/*
+ * oxAuth is available under the MIT License (2008). See http://opensource.org/licenses/MIT for full text.
+ *
+ * Copyright (c) 2015, Gluu
+ */
+
+package org.gluu.oxauth.model.fido.u2f.protocol;
+
+import java.io.Serializable;
+import java.util.Collections;
+import java.util.List;
+
+import com.fasterxml.jackson.annotation.JsonIgnore;
+import com.fasterxml.jackson.annotation.JsonProperty;
+import org.gluu.oxauth.model.util.Util;
+
+/**
+ * FIDO U2F registration request message
+ *
+ * @author Yuriy Movchan Date: 05/15/2015
+ */
+public class RegisterRequestMessage implements Serializable {
+
+	private static final long serialVersionUID = -5554834606247337007L;
+
+	@JsonProperty
+	private final List<AuthenticateRequest> authenticateRequests;
+
+	@JsonProperty
+	private final List<RegisterRequest> registerRequests;
+
+	public RegisterRequestMessage(@JsonProperty("authenticateRequests") List<AuthenticateRequest> authenticateRequests,
+			@JsonProperty("registerRequests") List<RegisterRequest> registerRequests) {
+		this.authenticateRequests = authenticateRequests;
+		this.registerRequests = registerRequests;
+	}
+
+	public List<AuthenticateRequest> getAuthenticateRequests() {
+		return Collections.unmodifiableList(authenticateRequests);
+	}
+
+	public List<RegisterRequest> getRegisterRequests() {
+		return Collections.unmodifiableList(registerRequests);
+	}
+
+	@JsonIgnore
+	public RegisterRequest getRegisterRequest() {
+		return Util.firstItem(registerRequests);
+	}
+
+	@JsonIgnore
+	public String getRequestId() {
+		return Util.firstItem(registerRequests).getChallenge();
+	}
+
+	@Override
+	public String toString() {
+		StringBuilder builder = new StringBuilder();
+		builder.append("RegisterRequestMessage [authenticateRequests=").append(authenticateRequests).append(", registerRequests=").append(registerRequests)
+				.append("]");
+		return builder.toString();
+	}
+
+}
diff --git a/oxAuth/Model/src/main/java/org/gluu/oxauth/model/fido/u2f/protocol/RegisterResponse.java b/oxAuth/Model/src/main/java/org/gluu/oxauth/model/fido/u2f/protocol/RegisterResponse.java
new file mode 100644
index 00000000..e64b154f
--- /dev/null
+++ b/oxAuth/Model/src/main/java/org/gluu/oxauth/model/fido/u2f/protocol/RegisterResponse.java
@@ -0,0 +1,83 @@
+/*
+ * oxAuth is available under the MIT License (2008). See http://opensource.org/licenses/MIT for full text.
+ *
+ * Copyright (c) 2015, Gluu
+ */
+
+package org.gluu.oxauth.model.fido.u2f.protocol;
+
+import java.io.Serializable;
+
+import com.fasterxml.jackson.annotation.JsonIgnore;
+import com.fasterxml.jackson.annotation.JsonIgnoreProperties;
+import com.fasterxml.jackson.annotation.JsonProperty;
+import org.gluu.oxauth.model.fido.u2f.exception.BadInputException;
+import org.jboss.resteasy.annotations.providers.jaxb.IgnoreMediaTypes;
+
+/**
+ * FIDO U2F device registration response
+ *
+ * @author Yuriy Movchan Date: 05/13/2015
+ */
+@IgnoreMediaTypes("application/*+json")
+// try to ignore jettison as it's recommended here:
+// http://docs.jboss.org/resteasy/docs/2.3.4.Final/userguide/html/json.html
+@JsonIgnoreProperties(ignoreUnknown = true)
+public class RegisterResponse implements Serializable {
+
+	private static final long serialVersionUID = -4192863815075074953L;
+
+	/**
+	 * base64 (raw registration response message)
+	 */
+	@JsonProperty
+	private final String registrationData;
+
+	/**
+	 * base64(UTF8(client data))
+	 */
+	@JsonProperty
+	private final String clientData;
+
+	/**
+	 * base64(UTF8(device data))
+	 */
+	@JsonProperty
+	private final String deviceData;
+
+	@JsonIgnore
+	private transient ClientData clientDataRef;
+
+	public RegisterResponse(@JsonProperty("registrationData") String registrationData, @JsonProperty("clientData") String clientData, @JsonProperty("deviceData") String deviceData) throws BadInputException {
+		this.registrationData = registrationData;
+		this.clientData = clientData;
+		this.clientDataRef = new ClientData(clientData);
+		this.deviceData = deviceData;
+	}
+
+	public String getRegistrationData() {
+		return registrationData;
+	}
+
+	public ClientData getClientData() {
+		return clientDataRef;
+	}
+
+	public String getDeviceData() {
+		return deviceData;
+	}
+
+	@JsonIgnore
+	public String getRequestId() {
+		return getClientData().getChallenge();
+	}
+
+	@Override
+	public String toString() {
+		StringBuilder builder = new StringBuilder();
+		builder.append("RegisterResponse [registrationData=").append(registrationData).append(", clientData=").append(clientData).append(", deviceData=")
+				.append(deviceData).append("]");
+		return builder.toString();
+	}
+
+}
diff --git a/oxAuth/Model/src/main/java/org/gluu/oxauth/model/fido/u2f/protocol/RegisterStatus.java b/oxAuth/Model/src/main/java/org/gluu/oxauth/model/fido/u2f/protocol/RegisterStatus.java
new file mode 100644
index 00000000..d06ba9e3
--- /dev/null
+++ b/oxAuth/Model/src/main/java/org/gluu/oxauth/model/fido/u2f/protocol/RegisterStatus.java
@@ -0,0 +1,57 @@
+/*
+ * oxAuth is available under the MIT License (2008). See http://opensource.org/licenses/MIT for full text.
+ *
+ * Copyright (c) 2015, Gluu
+ */
+
+package org.gluu.oxauth.model.fido.u2f.protocol;
+
+import java.io.Serializable;
+
+import com.fasterxml.jackson.annotation.JsonIgnore;
+import com.fasterxml.jackson.annotation.JsonIgnoreProperties;
+import com.fasterxml.jackson.annotation.JsonProperty;
+import org.gluu.oxauth.model.fido.u2f.exception.BadInputException;
+
+/**
+ * FIDO U2F device registration status response
+ *
+ * @author Yuriy Movchan Date: 05/20/2015
+ */
+@JsonIgnoreProperties(ignoreUnknown = true)
+public class RegisterStatus implements Serializable {
+
+	private static final long serialVersionUID = -1113719742487477953L;
+
+	@JsonProperty
+	private final String status;
+
+	@JsonProperty
+	private final String challenge;
+
+	public RegisterStatus(@JsonProperty("status") String status, @JsonProperty("challenge") String challenge) throws BadInputException {
+		this.status = status;
+		this.challenge = challenge;
+	}
+
+	public String getStatus() {
+		return status;
+	}
+
+	public String getChallenge() {
+		return challenge;
+	}
+
+	@JsonIgnore
+	public String getRequestId() {
+		return challenge;
+	}
+
+	@Override
+	public String toString() {
+		StringBuilder builder = new StringBuilder();
+		builder.append("RegisterStatus [status=").append(status).append(", challenge=").append(challenge).append("]");
+		return builder.toString();
+	}
+
+}
diff --git a/oxAuth/Model/src/main/java/org/gluu/oxauth/model/gluu/GluuConfiguration.java b/oxAuth/Model/src/main/java/org/gluu/oxauth/model/gluu/GluuConfiguration.java
new file mode 100644
index 00000000..6241f13f
--- /dev/null
+++ b/oxAuth/Model/src/main/java/org/gluu/oxauth/model/gluu/GluuConfiguration.java
@@ -0,0 +1,82 @@
+/*
+ * oxAuth is available under the MIT License (2008). See http://opensource.org/licenses/MIT for full text.
+ *
+ * Copyright (c) 2014, Gluu
+ */
+
+package org.gluu.oxauth.model.gluu;
+
+import com.fasterxml.jackson.annotation.JsonProperty;
+import com.fasterxml.jackson.annotation.JsonPropertyOrder;
+import org.jboss.resteasy.annotations.providers.jaxb.IgnoreMediaTypes;
+
+import java.util.Map;
+import java.util.Set;
+
+/**
+ * Created by eugeniuparvan on 8/5/16.
+ */
+@IgnoreMediaTypes("application/*+json")
+@JsonPropertyOrder({
+        "id_generation_endpoint",
+        "introspection_endpoint",
+        "auth_level_mapping",
+        "scope_to_claims_mapping"
+})
+public class GluuConfiguration {
+
+    @JsonProperty(value = "id_generation_endpoint")
+    private String idGenerationEndpoint;
+
+    @JsonProperty(value = "introspection_endpoint")
+    private String introspectionEndpoint;
+
+    @JsonProperty(value = "auth_level_mapping")
+    private Map<Integer, Set<String>> authLevelMapping;
+
+    @JsonProperty(value = "scope_to_claims_mapping")
+    private Map<String, Set<String>> scopeToClaimsMapping;
+
+
+    public String getIdGenerationEndpoint() {
+        return idGenerationEndpoint;
+    }
+
+    public void setIdGenerationEndpoint(String idGenerationEndpoint) {
+        this.idGenerationEndpoint = idGenerationEndpoint;
+    }
+
+    public String getIntrospectionEndpoint() {
+        return introspectionEndpoint;
+    }
+
+    public void setIntrospectionEndpoint(String introspectionEndpoint) {
+        this.introspectionEndpoint = introspectionEndpoint;
+    }
+
+    public Map<Integer, Set<String>> getAuthLevelMapping() {
+        return authLevelMapping;
+    }
+
+    public void setAuthLevelMapping(Map<Integer, Set<String>> authLevelMapping) {
+        this.authLevelMapping = authLevelMapping;
+    }
+
+    public Map<String, Set<String>> getScopeToClaimsMapping() {
+        return scopeToClaimsMapping;
+    }
+
+    public void setScopeToClaimsMapping(Map<String, Set<String>> scopeToClaimsMapping) {
+        this.scopeToClaimsMapping = scopeToClaimsMapping;
+    }
+
+    @Override
+    public String toString() {
+        return "GluuConfiguration{" +
+                "idGenerationEndpoint='" + idGenerationEndpoint + '\'' +
+                ", introspectionEndpoint='" + introspectionEndpoint + '\'' +
+                ", authLevelMapping=" + authLevelMapping +
+                ", scopeToClaimsMapping=" + scopeToClaimsMapping +
+                '}';
+    }
+}
diff --git a/oxAuth/Model/src/main/java/org/gluu/oxauth/model/gluu/GluuErrorResponseType.java b/oxAuth/Model/src/main/java/org/gluu/oxauth/model/gluu/GluuErrorResponseType.java
new file mode 100644
index 00000000..e726df02
--- /dev/null
+++ b/oxAuth/Model/src/main/java/org/gluu/oxauth/model/gluu/GluuErrorResponseType.java
@@ -0,0 +1,66 @@
+/*
+ * oxAuth is available under the MIT License (2008). See http://opensource.org/licenses/MIT for full text.
+ *
+ * Copyright (c) 2014, Gluu
+ */
+
+package org.gluu.oxauth.model.gluu;
+
+import java.util.HashMap;
+import java.util.Map;
+
+import org.gluu.oxauth.model.error.IErrorType;
+
+public enum GluuErrorResponseType implements IErrorType {
+
+    /**
+     * The server encountered an unexpected condition which
+     * prevented it from fulfilling the request.
+     */
+    SERVER_ERROR("server_error");
+
+
+    private static Map<String, GluuErrorResponseType> lookup = new HashMap<String, GluuErrorResponseType>();
+
+    static {
+        for (GluuErrorResponseType enumType : values()) {
+            lookup.put(enumType.getParameter(), enumType);
+        }
+    }
+
+    private final String paramName;
+
+    private GluuErrorResponseType(String paramName) {
+        this.paramName = paramName;
+    }
+
+    /**
+     * Return the corresponding enumeration from a string parameter.
+     *
+     * @param param The parameter to be match.
+     * @return The <code>enumeration</code> if found, otherwise
+     * <code>null</code>.
+     */
+    public static GluuErrorResponseType fromString(String param) {
+        return lookup.get(param);
+    }
+
+    /**
+     * Returns a string representation of the object. In this case, the lower
+     * case code of the error.
+     */
+    @Override
+    public String toString() {
+        return paramName;
+    }
+
+    /**
+     * Gets error parameter.
+     *
+     * @return error parameter
+     */
+    @Override
+    public String getParameter() {
+        return paramName;
+    }
+}
\ No newline at end of file
diff --git a/oxAuth/Model/src/main/java/org/gluu/oxauth/model/json/JsonApplier.java b/oxAuth/Model/src/main/java/org/gluu/oxauth/model/json/JsonApplier.java
new file mode 100644
index 00000000..f4938770
--- /dev/null
+++ b/oxAuth/Model/src/main/java/org/gluu/oxauth/model/json/JsonApplier.java
@@ -0,0 +1,195 @@
+package org.gluu.oxauth.model.json;
+
+import org.apache.log4j.Logger;
+import org.json.JSONArray;
+import org.json.JSONObject;
+
+import java.lang.reflect.Field;
+import java.util.*;
+
+/**
+ * @author Yuriy Zabrovarnyy
+ */
+public class JsonApplier {
+
+    private static final Logger log = Logger.getLogger(JsonApplier.class);
+
+    private static final JsonApplier APPLIER = new JsonApplier();
+
+    private JsonApplier() {
+    }
+
+    public static JsonApplier getInstance() {
+        return APPLIER;
+    }
+
+    public void apply(Object source, JSONObject target) {
+        for (PropertyDefinition definition : PropertyDefinition.values()) {
+            apply(source, target, definition);
+        }
+    }
+
+    public void apply(Object source, Map<String, String> parameters) {
+        for (PropertyDefinition definition : PropertyDefinition.values()) {
+            apply(source, parameters, definition);
+        }
+    }
+
+    private void apply(Object source, Map<String, String> target, PropertyDefinition property) {
+        try {
+            if (!isAllowed(source, target, property, source.getClass())) {
+                return;
+            }
+
+            Field field = source.getClass().getDeclaredField(property.getJavaTargetPropertyName());
+            field.setAccessible(true);
+            Object value = field.get(source);
+            if (value == null) {
+                return;
+            }
+
+            if (String.class.isAssignableFrom(property.getJavaType())) {
+
+                target.put(property.getJsonName(), (String) value);
+                return;
+            }
+            if (Collection.class.isAssignableFrom(property.getJavaType())) {
+                Collection valueAsCollection = (Collection) field.get(source);
+                target.put(property.getJsonName(), new JSONArray(valueAsCollection).toString());
+            }
+        } catch (Exception e) {
+            log.error(e.getMessage(), e);
+        }
+    }
+
+    private void apply(Object source, JSONObject target, PropertyDefinition property) {
+        try {
+            if (!isAllowed(source, target, property, source.getClass())) {
+                return;
+            }
+
+            Field field = source.getClass().getDeclaredField(property.getJavaTargetPropertyName());
+            field.setAccessible(true);
+            Object value = field.get(source);
+
+            if (String.class.isAssignableFrom(property.getJavaType())) {
+                target.put(property.getJsonName(), value);
+                return;
+            }
+            if (Collection.class.isAssignableFrom(property.getJavaType())) {
+                Collection valueAsCollection = (Collection) field.get(source);
+                target.put(property.getJsonName(), valueAsCollection);
+            }
+        } catch (Exception e) {
+            log.error(e.getMessage(), e);
+        }
+    }
+
+    private boolean isAllowed(Object source, Object target, PropertyDefinition property, Class<?>... clazzesToCheck) {
+        if (source == null || target == null || property == null || clazzesToCheck == null || clazzesToCheck.length == 0) {
+            return false;
+        }
+
+        try {
+            final Set<String> allowedClasses = property.getJavaTargetsClassNamesAsStrings();
+
+            for (Class<?> clazzToCheck : clazzesToCheck) {
+                if (!allowedClasses.contains(clazzToCheck.getName())) {
+                    return false;
+                }
+
+                Field field = clazzToCheck.getDeclaredField(property.getJavaTargetPropertyName());
+
+                final Class javaType = property.getJavaType();
+                if (!field.getType().isAssignableFrom(javaType)) {
+                    return false;
+                }
+            }
+            return true;
+        } catch (Exception e) {
+            return false;
+        }
+    }
+
+    public void apply(JSONObject source, Object target) {
+        for (PropertyDefinition definition : PropertyDefinition.values()) {
+            apply(source, target, definition);
+        }
+    }
+
+    public void apply(JSONObject source, Object target, PropertyDefinition property) {
+        try {
+            if (!source.has(property.getJsonName())) {
+                return;
+            }
+            if (!isAllowed(source, target, property, target.getClass())) {
+                return;
+            }
+
+            Field field = target.getClass().getDeclaredField(property.getJavaTargetPropertyName());
+            field.setAccessible(true);
+
+
+            Object valueToSet = null;
+
+            if (String.class.isAssignableFrom(property.getJavaType())) {
+                valueToSet = source.optString(property.getJsonName());
+            }
+            if (Collection.class.isAssignableFrom(property.getJavaType())) {
+                final JSONArray jsonArray = source.getJSONArray(property.getJsonName());
+                valueToSet = jsonArray.toList();
+            }
+
+            field.set(target, valueToSet);
+        } catch (Exception e) {
+            log.error(e.getMessage(), e);
+        }
+    }
+
+    /**
+     * Transfer between two java objects
+     */
+    public void transfer(Object source, Object target) {
+        for (PropertyDefinition definition : PropertyDefinition.values()) {
+            transfer(source, target, definition);
+        }
+    }
+
+    private void transfer(Object source, Object target, PropertyDefinition property) {
+        try {
+            if (!isAllowed(source, target, property, source.getClass(), target.getClass())) {
+                return;
+            }
+
+            Field sourceField = source.getClass().getDeclaredField(property.getJavaTargetPropertyName());
+            sourceField.setAccessible(true);
+
+            Field targetField = target.getClass().getDeclaredField(property.getJavaTargetPropertyName());
+            targetField.setAccessible(true);
+
+
+            Object valueToSet = null;
+
+            if (String.class.isAssignableFrom(property.getJavaType()) || Collection.class.isAssignableFrom(property.getJavaType())) {
+                valueToSet = sourceField.get(source);
+            }
+
+            if (valueToSet != null) {
+                targetField.set(target, valueToSet);
+            }
+        } catch (Exception e) {
+            log.error(e.getMessage(), e);
+        }
+    }
+
+    public static List<String> getStringList(JSONArray jsonArray) {
+        List<String> values = new ArrayList<>();
+        for (int i = 0; i < jsonArray.length(); i++) {
+            String value = jsonArray.optString(i);
+            if (value != null) {
+                values.add(value);
+            }
+        }
+        return values;
+    }
+}
diff --git a/oxAuth/Model/src/main/java/org/gluu/oxauth/model/json/PropertyDefinition.java b/oxAuth/Model/src/main/java/org/gluu/oxauth/model/json/PropertyDefinition.java
new file mode 100644
index 00000000..a461b74c
--- /dev/null
+++ b/oxAuth/Model/src/main/java/org/gluu/oxauth/model/json/PropertyDefinition.java
@@ -0,0 +1,76 @@
+package org.gluu.oxauth.model.json;
+
+import com.google.common.collect.Sets;
+
+import java.util.List;
+import java.util.Set;
+import java.util.stream.Collectors;
+
+/**
+ * @author Yuriy Zabrovarnyy
+ */
+public enum PropertyDefinition {
+
+    ADDITIONAL_AUDIENCE(Sets.newHashSet(ClassNames.CLIENT_ATTRIBUTES, ClassNames.REGISTER_REQUEST), "additionalAudience", List.class, "additional_audience");
+
+    private final Set<ClassNames> javaTargetsClassNames;
+    private final Set<String> javaTargetsClassNamesAsStrings;
+    private final String javaTargetPropertyName;
+    private final Class javaType;
+    private final String jsonName;
+
+
+    PropertyDefinition(Set<ClassNames> javaTargetsClassNames, String javaTargetPropertyName, Class javaType, String jsonName) {
+        this.javaTargetsClassNames = javaTargetsClassNames;
+        this.javaTargetsClassNamesAsStrings = javaTargetsClassNames.stream().map(PropertyDefinition.ClassNames::getFullClassName).collect(Collectors.toSet());
+        this.javaTargetPropertyName = javaTargetPropertyName;
+        this.javaType = javaType;
+        this.jsonName = jsonName;
+    }
+
+    public Class getJavaType() {
+        return javaType;
+    }
+
+    public Set<ClassNames> getJavaTargetsClassNames() {
+        return javaTargetsClassNames;
+    }
+
+    public Set<String> getJavaTargetsClassNamesAsStrings() {
+        return javaTargetsClassNamesAsStrings;
+    }
+
+    public String getJavaTargetPropertyName() {
+        return javaTargetPropertyName;
+    }
+
+    public String getJsonName() {
+        return jsonName;
+    }
+
+    @Override
+    public String toString() {
+        return "PropertyDefinition{" +
+                "javaTargetsClassNames='" + javaTargetsClassNames + '\'' +
+                ", javaTargetPropertyName='" + javaTargetPropertyName + '\'' +
+                ", javaType='" + javaType + '\'' +
+                ", jsonName='" + jsonName + '\'' +
+                "} " + super.toString();
+    }
+
+    public enum ClassNames {
+
+        CLIENT_ATTRIBUTES("org.oxauth.persistence.model.ClientAttributes"),
+        REGISTER_REQUEST("org.gluu.oxauth.client.RegisterRequest");
+
+        private final String fullClassName;
+
+        ClassNames(String fullClassName) {
+            this.fullClassName = fullClassName;
+        }
+
+        public String getFullClassName() {
+            return fullClassName;
+        }
+    }
+}
\ No newline at end of file
diff --git a/oxAuth/Model/src/main/java/org/gluu/oxauth/model/jwe/AbstractJweDecrypter.java b/oxAuth/Model/src/main/java/org/gluu/oxauth/model/jwe/AbstractJweDecrypter.java
new file mode 100644
index 00000000..8abf8065
--- /dev/null
+++ b/oxAuth/Model/src/main/java/org/gluu/oxauth/model/jwe/AbstractJweDecrypter.java
@@ -0,0 +1,36 @@
+/*
+ * oxAuth is available under the MIT License (2008). See http://opensource.org/licenses/MIT for full text.
+ *
+ * Copyright (c) 2014, Gluu
+ */
+
+package org.gluu.oxauth.model.jwe;
+
+import org.gluu.oxauth.model.crypto.encryption.BlockEncryptionAlgorithm;
+import org.gluu.oxauth.model.crypto.encryption.KeyEncryptionAlgorithm;
+
+/**
+ * @author Javier Rojas Blum
+ * @version November 20, 2018
+ */
+public abstract class AbstractJweDecrypter implements JweDecrypter {
+
+    private KeyEncryptionAlgorithm keyEncryptionAlgorithm;
+    private BlockEncryptionAlgorithm blockEncryptionAlgorithm;
+
+    public KeyEncryptionAlgorithm getKeyEncryptionAlgorithm() {
+        return keyEncryptionAlgorithm;
+    }
+
+    public void setKeyEncryptionAlgorithm(KeyEncryptionAlgorithm keyEncryptionAlgorithm) {
+        this.keyEncryptionAlgorithm = keyEncryptionAlgorithm;
+    }
+
+    public BlockEncryptionAlgorithm getBlockEncryptionAlgorithm() {
+        return blockEncryptionAlgorithm;
+    }
+
+    public void setBlockEncryptionAlgorithm(BlockEncryptionAlgorithm blockEncryptionAlgorithm) {
+        this.blockEncryptionAlgorithm = blockEncryptionAlgorithm;
+    }
+}
\ No newline at end of file
diff --git a/oxAuth/Model/src/main/java/org/gluu/oxauth/model/jwe/AbstractJweEncrypter.java b/oxAuth/Model/src/main/java/org/gluu/oxauth/model/jwe/AbstractJweEncrypter.java
new file mode 100644
index 00000000..232b6506
--- /dev/null
+++ b/oxAuth/Model/src/main/java/org/gluu/oxauth/model/jwe/AbstractJweEncrypter.java
@@ -0,0 +1,33 @@
+/*
+ * oxAuth is available under the MIT License (2008). See http://opensource.org/licenses/MIT for full text.
+ *
+ * Copyright (c) 2014, Gluu
+ */
+
+package org.gluu.oxauth.model.jwe;
+
+import org.gluu.oxauth.model.crypto.encryption.BlockEncryptionAlgorithm;
+import org.gluu.oxauth.model.crypto.encryption.KeyEncryptionAlgorithm;
+
+/**
+ * @author Javier Rojas Blum
+ * @version November 20, 2018
+ */
+public abstract class AbstractJweEncrypter implements JweEncrypter {
+
+    private KeyEncryptionAlgorithm keyEncryptionAlgorithm;
+    private BlockEncryptionAlgorithm blockEncryptionAlgorithm;
+
+    protected AbstractJweEncrypter(KeyEncryptionAlgorithm keyEncryptionAlgorithm, BlockEncryptionAlgorithm blockEncryptionAlgorithm) {
+        this.keyEncryptionAlgorithm = keyEncryptionAlgorithm;
+        this.blockEncryptionAlgorithm = blockEncryptionAlgorithm;
+    }
+
+    public KeyEncryptionAlgorithm getKeyEncryptionAlgorithm() {
+        return keyEncryptionAlgorithm;
+    }
+
+    public BlockEncryptionAlgorithm getBlockEncryptionAlgorithm() {
+        return blockEncryptionAlgorithm;
+    }
+}
\ No newline at end of file
diff --git a/oxAuth/Model/src/main/java/org/gluu/oxauth/model/jwe/Jwe.java b/oxAuth/Model/src/main/java/org/gluu/oxauth/model/jwe/Jwe.java
new file mode 100644
index 00000000..11599a9d
--- /dev/null
+++ b/oxAuth/Model/src/main/java/org/gluu/oxauth/model/jwe/Jwe.java
@@ -0,0 +1,116 @@
+/*
+ * oxAuth is available under the MIT License (2008). See http://opensource.org/licenses/MIT for full text.
+ *
+ * Copyright (c) 2014, Gluu
+ */
+
+package org.gluu.oxauth.model.jwe;
+
+import java.security.PrivateKey;
+
+import org.gluu.oxauth.model.exception.InvalidJweException;
+import org.gluu.oxauth.model.exception.InvalidJwtException;
+import org.gluu.oxauth.model.jwt.Jwt;
+import org.gluu.oxauth.model.token.JsonWebResponse;
+
+/**
+ * @author Javier Rojas Blum
+ * @version July 29, 2016
+ */
+public class Jwe extends JsonWebResponse {
+
+    private String encodedHeader;
+    private String encodedEncryptedKey;
+    private String encodedInitializationVector;
+    private String encodedCiphertext;
+    private String encodedIntegrityValue;
+
+    private Jwt signedJWTPayload;
+
+    public Jwe() {
+        encodedHeader = null;
+        encodedEncryptedKey = null;
+        encodedInitializationVector = null;
+        encodedCiphertext = null;
+        encodedIntegrityValue = null;
+    }
+
+    public String getEncodedHeader() {
+        return encodedHeader;
+    }
+
+    public void setEncodedHeader(String encodedHeader) {
+        this.encodedHeader = encodedHeader;
+    }
+
+    public String getEncodedEncryptedKey() {
+        return encodedEncryptedKey;
+    }
+
+    public void setEncodedEncryptedKey(String encodedEncryptedKey) {
+        this.encodedEncryptedKey = encodedEncryptedKey;
+    }
+
+    public String getEncodedInitializationVector() {
+        return encodedInitializationVector;
+    }
+
+    public void setEncodedInitializationVector(String encodedInitializationVector) {
+        this.encodedInitializationVector = encodedInitializationVector;
+    }
+
+    public String getEncodedCiphertext() {
+        return encodedCiphertext;
+    }
+
+    public void setEncodedCiphertext(String encodedCiphertext) {
+        this.encodedCiphertext = encodedCiphertext;
+    }
+
+    public String getEncodedIntegrityValue() {
+        return encodedIntegrityValue;
+    }
+
+    public void setEncodedIntegrityValue(String encodedIntegrityValue) {
+        this.encodedIntegrityValue = encodedIntegrityValue;
+    }
+
+    public String getAdditionalAuthenticatedData() {
+        String additionalAuthenticatedData = encodedHeader + "."
+                + encodedEncryptedKey + "."
+                + encodedInitializationVector;
+
+        return additionalAuthenticatedData;
+    }
+
+    public static Jwe parse(String encodedJwe, PrivateKey privateKey, byte[] sharedSymmetricKey) throws InvalidJweException, InvalidJwtException {
+        Jwe jwe = null;
+
+        if (privateKey != null) {
+            JweDecrypter jweDecrypter = new JweDecrypterImpl(privateKey);
+            jwe = jweDecrypter.decrypt(encodedJwe);
+        } else if (sharedSymmetricKey != null) {
+            JweDecrypter jweDecrypter = new JweDecrypterImpl(sharedSymmetricKey);
+            jwe = jweDecrypter.decrypt(encodedJwe);
+        }
+
+        return jwe;
+    }
+
+    public Jwt getSignedJWTPayload() {
+        return signedJWTPayload;
+    }
+
+    public void setSignedJWTPayload(Jwt signedJWTPayload) {
+        this.signedJWTPayload = signedJWTPayload;
+    }
+
+    @Override
+    public String toString() {
+        return encodedHeader + "."
+                + encodedEncryptedKey + "."
+                + encodedInitializationVector + "."
+                + encodedCiphertext + "."
+                + encodedIntegrityValue;
+    }
+}
\ No newline at end of file
diff --git a/oxAuth/Model/src/main/java/org/gluu/oxauth/model/jwe/JweDecrypter.java b/oxAuth/Model/src/main/java/org/gluu/oxauth/model/jwe/JweDecrypter.java
new file mode 100644
index 00000000..eaf0cf0a
--- /dev/null
+++ b/oxAuth/Model/src/main/java/org/gluu/oxauth/model/jwe/JweDecrypter.java
@@ -0,0 +1,27 @@
+/*
+ * oxAuth is available under the MIT License (2008). See http://opensource.org/licenses/MIT for full text.
+ *
+ * Copyright (c) 2014, Gluu
+ */
+
+package org.gluu.oxauth.model.jwe;
+
+import org.gluu.oxauth.model.crypto.encryption.BlockEncryptionAlgorithm;
+import org.gluu.oxauth.model.crypto.encryption.KeyEncryptionAlgorithm;
+import org.gluu.oxauth.model.exception.InvalidJweException;
+
+/**
+ * @author Javier Rojas Blum Date: 12.04.2012
+ */
+public interface JweDecrypter {
+
+    public KeyEncryptionAlgorithm getKeyEncryptionAlgorithm();
+
+    public void setKeyEncryptionAlgorithm(KeyEncryptionAlgorithm keyEncryptionAlgorithm);
+
+    public BlockEncryptionAlgorithm getBlockEncryptionAlgorithm();
+
+    public void setBlockEncryptionAlgorithm(BlockEncryptionAlgorithm blockEncryptionAlgorithm);
+
+    public Jwe decrypt(String encryptedJwe) throws InvalidJweException;
+}
\ No newline at end of file
diff --git a/oxAuth/Model/src/main/java/org/gluu/oxauth/model/jwe/JweDecrypterImpl.java b/oxAuth/Model/src/main/java/org/gluu/oxauth/model/jwe/JweDecrypterImpl.java
new file mode 100644
index 00000000..530bc051
--- /dev/null
+++ b/oxAuth/Model/src/main/java/org/gluu/oxauth/model/jwe/JweDecrypterImpl.java
@@ -0,0 +1,126 @@
+/*
+ * oxAuth is available under the MIT License (2008). See http://opensource.org/licenses/MIT for full text.
+ *
+ * Copyright (c) 2014, Gluu
+ */
+
+package org.gluu.oxauth.model.jwe;
+
+import com.nimbusds.jose.JWEDecrypter;
+import com.nimbusds.jose.crypto.factories.DefaultJWEDecrypterFactory;
+import com.nimbusds.jwt.EncryptedJWT;
+import com.nimbusds.jwt.SignedJWT;
+import org.gluu.oxauth.model.crypto.encryption.BlockEncryptionAlgorithm;
+import org.gluu.oxauth.model.crypto.encryption.KeyEncryptionAlgorithm;
+import org.gluu.oxauth.model.crypto.signature.RSAPrivateKey;
+import org.gluu.oxauth.model.exception.InvalidJweException;
+import org.gluu.oxauth.model.exception.InvalidJwtException;
+import org.gluu.oxauth.model.jwt.Jwt;
+import org.gluu.oxauth.model.jwt.JwtClaims;
+import org.gluu.oxauth.model.jwt.JwtHeader;
+import org.gluu.oxauth.model.jwt.JwtHeaderName;
+import org.gluu.util.security.SecurityProviderUtility;
+
+import javax.crypto.spec.SecretKeySpec;
+import java.security.Key;
+import java.security.MessageDigest;
+import java.security.PrivateKey;
+import java.util.Arrays;
+
+/**
+ * @author Javier Rojas Blum
+ * @version November 20, 2018
+ */
+public class JweDecrypterImpl extends AbstractJweDecrypter {
+
+    private static final DefaultJWEDecrypterFactory DECRYPTER_FACTORY = new DefaultJWEDecrypterFactory();
+
+    private PrivateKey privateKey;
+    private RSAPrivateKey rsaPrivateKey;
+    private byte[] sharedSymmetricKey;
+
+    public JweDecrypterImpl(byte[] sharedSymmetricKey) {
+        if (sharedSymmetricKey != null) {
+            this.sharedSymmetricKey = sharedSymmetricKey.clone();
+        }
+    }
+
+    public JweDecrypterImpl(RSAPrivateKey rsaPrivateKey) {
+        this.rsaPrivateKey = rsaPrivateKey;
+    }
+
+    public JweDecrypterImpl(PrivateKey privateKey) {
+        this.privateKey = privateKey;
+    }
+
+    @Override
+    public Jwe decrypt(String encryptedJwe) throws InvalidJweException {
+        try {
+            String[] jweParts = encryptedJwe.split("\\.");
+            if (jweParts.length != 5) {
+                throw new InvalidJwtException("Invalid JWS format.");
+            }
+
+            String encodedHeader = jweParts[0];
+            String encodedEncryptedKey = jweParts[1];
+            String encodedInitializationVector = jweParts[2];
+            String encodedCipherText = jweParts[3];
+            String encodedIntegrityValue = jweParts[4];
+
+            Jwe jwe = new Jwe();
+            jwe.setEncodedHeader(encodedHeader);
+            jwe.setEncodedEncryptedKey(encodedEncryptedKey);
+            jwe.setEncodedInitializationVector(encodedInitializationVector);
+            jwe.setEncodedCiphertext(encodedCipherText);
+            jwe.setEncodedIntegrityValue(encodedIntegrityValue);
+            jwe.setHeader(new JwtHeader(encodedHeader));
+
+            EncryptedJWT encryptedJwt = EncryptedJWT.parse(encryptedJwe);
+
+            setKeyEncryptionAlgorithm(KeyEncryptionAlgorithm.fromName(jwe.getHeader().getClaimAsString(JwtHeaderName.ALGORITHM)));
+            setBlockEncryptionAlgorithm(BlockEncryptionAlgorithm.fromName(jwe.getHeader().getClaimAsString(JwtHeaderName.ENCRYPTION_METHOD)));
+
+            final KeyEncryptionAlgorithm keyEncryptionAlgorithm = getKeyEncryptionAlgorithm();
+            Key encriptionKey = null;
+            if (keyEncryptionAlgorithm == KeyEncryptionAlgorithm.RSA1_5 || keyEncryptionAlgorithm == KeyEncryptionAlgorithm.RSA_OAEP) {
+                encriptionKey = privateKey;
+            } else if (keyEncryptionAlgorithm == KeyEncryptionAlgorithm.A128KW || keyEncryptionAlgorithm == KeyEncryptionAlgorithm.A256KW) {
+                if (sharedSymmetricKey == null) {
+                    throw new InvalidJweException("The shared symmetric key is null");
+                }
+
+                int keyLength = 16;
+                if (keyEncryptionAlgorithm == KeyEncryptionAlgorithm.A256KW) {
+                    keyLength = 32;
+                }
+
+                if (sharedSymmetricKey.length != keyLength) {
+                    MessageDigest sha = MessageDigest.getInstance("SHA-256");
+                    sharedSymmetricKey = sha.digest(sharedSymmetricKey);
+                    sharedSymmetricKey = Arrays.copyOf(sharedSymmetricKey, keyLength);
+                }
+                encriptionKey = new SecretKeySpec(sharedSymmetricKey, 0, sharedSymmetricKey.length, "AES");
+            } else {
+                throw new InvalidJweException("The key encryption algorithm is not supported");
+            }
+
+            JWEDecrypter decrypter = DECRYPTER_FACTORY.createJWEDecrypter(encryptedJwt.getHeader(), encriptionKey);
+            decrypter.getJCAContext().setProvider(SecurityProviderUtility.getBCProvider());
+            encryptedJwt.decrypt(decrypter);
+
+            final SignedJWT signedJWT = encryptedJwt.getPayload().toSignedJWT();
+            if (signedJWT != null) {
+                final Jwt jwt = Jwt.parse(signedJWT.serialize());
+                jwe.setSignedJWTPayload(jwt);
+                jwe.setClaims(jwt != null ? jwt.getClaims() : null);
+            } else {
+                final String base64encodedPayload = encryptedJwt.getPayload().toString();
+                jwe.setClaims(new JwtClaims(base64encodedPayload));
+            }
+
+            return jwe;
+        } catch (Exception e) {
+            throw new InvalidJweException(e);
+        }
+    }
+}
\ No newline at end of file
diff --git a/oxAuth/Model/src/main/java/org/gluu/oxauth/model/jwe/JweEncrypter.java b/oxAuth/Model/src/main/java/org/gluu/oxauth/model/jwe/JweEncrypter.java
new file mode 100644
index 00000000..13b7d67a
--- /dev/null
+++ b/oxAuth/Model/src/main/java/org/gluu/oxauth/model/jwe/JweEncrypter.java
@@ -0,0 +1,17 @@
+/*
+ * oxAuth is available under the MIT License (2008). See http://opensource.org/licenses/MIT for full text.
+ *
+ * Copyright (c) 2014, Gluu
+ */
+
+package org.gluu.oxauth.model.jwe;
+
+import org.gluu.oxauth.model.exception.InvalidJweException;
+
+/**
+ * @author Javier Rojas Blum Date: 12.03.2012
+ */
+public interface JweEncrypter {
+
+    public Jwe encrypt(Jwe jwe) throws InvalidJweException;
+}
\ No newline at end of file
diff --git a/oxAuth/Model/src/main/java/org/gluu/oxauth/model/jwe/JweEncrypterImpl.java b/oxAuth/Model/src/main/java/org/gluu/oxauth/model/jwe/JweEncrypterImpl.java
new file mode 100644
index 00000000..da800e69
--- /dev/null
+++ b/oxAuth/Model/src/main/java/org/gluu/oxauth/model/jwe/JweEncrypterImpl.java
@@ -0,0 +1,121 @@
+/*
+ * oxAuth is available under the MIT License (2008). See http://opensource.org/licenses/MIT for full text.
+ *
+ * Copyright (c) 2014, Gluu
+ */
+
+package org.gluu.oxauth.model.jwe;
+
+import com.nimbusds.jose.*;
+import com.nimbusds.jose.crypto.AESEncrypter;
+import com.nimbusds.jose.crypto.RSAEncrypter;
+import com.nimbusds.jose.jwk.RSAKey;
+import com.nimbusds.jwt.SignedJWT;
+
+import java.io.UnsupportedEncodingException;
+import java.security.MessageDigest;
+import java.security.NoSuchAlgorithmException;
+import java.security.PublicKey;
+import java.security.interfaces.RSAPublicKey;
+import java.text.ParseException;
+import java.util.Arrays;
+
+import org.gluu.oxauth.model.crypto.encryption.BlockEncryptionAlgorithm;
+import org.gluu.oxauth.model.crypto.encryption.KeyEncryptionAlgorithm;
+import org.gluu.oxauth.model.exception.InvalidJweException;
+import org.gluu.oxauth.model.exception.InvalidJwtException;
+import org.gluu.oxauth.model.jwt.JwtHeader;
+import org.gluu.oxauth.model.jwt.JwtType;
+import org.gluu.oxauth.model.util.Base64Util;
+
+/**
+ * @author Javier Rojas Blum
+ * @version November 20, 2018
+ */
+public class JweEncrypterImpl extends AbstractJweEncrypter {
+
+    private PublicKey publicKey;
+    private byte[] sharedSymmetricKey;
+
+    public JweEncrypterImpl(KeyEncryptionAlgorithm keyEncryptionAlgorithm, BlockEncryptionAlgorithm blockEncryptionAlgorithm, byte[] sharedSymmetricKey) {
+        super(keyEncryptionAlgorithm, blockEncryptionAlgorithm);
+        if (sharedSymmetricKey != null) {
+            this.sharedSymmetricKey = sharedSymmetricKey.clone();
+        }
+    }
+
+    public JweEncrypterImpl(KeyEncryptionAlgorithm keyEncryptionAlgorithm, BlockEncryptionAlgorithm blockEncryptionAlgorithm, PublicKey publicKey) {
+        super(keyEncryptionAlgorithm, blockEncryptionAlgorithm);
+        this.publicKey = publicKey;
+    }
+
+    public JWEEncrypter createJweEncrypter() throws JOSEException, InvalidJweException, NoSuchAlgorithmException {
+        final KeyEncryptionAlgorithm keyEncryptionAlgorithm = getKeyEncryptionAlgorithm();
+        if (keyEncryptionAlgorithm == KeyEncryptionAlgorithm.RSA1_5 || keyEncryptionAlgorithm == KeyEncryptionAlgorithm.RSA_OAEP) {
+            return new RSAEncrypter(new RSAKey.Builder((RSAPublicKey) publicKey).build());
+        } else if (keyEncryptionAlgorithm == KeyEncryptionAlgorithm.A128KW || keyEncryptionAlgorithm == KeyEncryptionAlgorithm.A256KW) {
+            if (sharedSymmetricKey == null) {
+                throw new InvalidJweException("The shared symmetric key is null");
+            }
+
+            int keyLength = 16;
+            if (keyEncryptionAlgorithm == KeyEncryptionAlgorithm.A256KW) {
+                keyLength = 32;
+            }
+
+            if (sharedSymmetricKey.length != keyLength) {
+                MessageDigest sha = MessageDigest.getInstance("SHA-256");
+                sharedSymmetricKey = sha.digest(sharedSymmetricKey);
+                sharedSymmetricKey = Arrays.copyOf(sharedSymmetricKey, keyLength);
+            }
+
+            return new AESEncrypter(sharedSymmetricKey);
+        } else {
+            throw new InvalidJweException("The key encryption algorithm is not supported");
+        }
+    }
+
+    public static Payload createPayload(Jwe jwe) throws ParseException, InvalidJwtException, UnsupportedEncodingException {
+        if (jwe.getSignedJWTPayload() != null) {
+            return new Payload(SignedJWT.parse(jwe.getSignedJWTPayload().toString()));
+        }
+        return new Payload(Base64Util.base64urlencode(jwe.getClaims().toJsonString().getBytes("UTF-8")));
+    }
+
+    @Override
+    public Jwe encrypt(Jwe jwe) throws InvalidJweException {
+        try {
+            JWEEncrypter encrypter = createJweEncrypter();
+
+            if (jwe.getSignedJWTPayload() != null) {
+                jwe.getHeader().setContentType(JwtType.JWT);
+            }
+            JWEObject jweObject = new JWEObject(JWEHeader.parse(jwe.getHeader().toJsonObject().toString()), createPayload(jwe));
+
+            jweObject.encrypt(encrypter);
+            String encryptedJwe = jweObject.serialize();
+
+            String[] jweParts = encryptedJwe.split("\\.");
+            if (jweParts.length != 5) {
+                throw new InvalidJwtException("Invalid JWS format.");
+            }
+
+            String encodedHeader = jweParts[0];
+            String encodedEncryptedKey = jweParts[1];
+            String encodedInitializationVector = jweParts[2];
+            String encodedCipherText = jweParts[3];
+            String encodedIntegrityValue = jweParts[4];
+
+            jwe.setEncodedHeader(encodedHeader);
+            jwe.setEncodedEncryptedKey(encodedEncryptedKey);
+            jwe.setEncodedInitializationVector(encodedInitializationVector);
+            jwe.setEncodedCiphertext(encodedCipherText);
+            jwe.setEncodedIntegrityValue(encodedIntegrityValue);
+            jwe.setHeader(new JwtHeader(encodedHeader));
+
+            return jwe;
+        } catch (Exception e) {
+            throw new InvalidJweException(e);
+        }
+    }
+}
\ No newline at end of file
diff --git a/oxAuth/Model/src/main/java/org/gluu/oxauth/model/jwe/KeyDerivationFunction.java b/oxAuth/Model/src/main/java/org/gluu/oxauth/model/jwe/KeyDerivationFunction.java
new file mode 100644
index 00000000..b49f24bd
--- /dev/null
+++ b/oxAuth/Model/src/main/java/org/gluu/oxauth/model/jwe/KeyDerivationFunction.java
@@ -0,0 +1,102 @@
+/*
+ * oxAuth is available under the MIT License (2008). See http://opensource.org/licenses/MIT for full text.
+ *
+ * Copyright (c) 2014, Gluu
+ */
+
+package org.gluu.oxauth.model.jwe;
+
+import org.apache.commons.lang.ArrayUtils;
+import org.gluu.oxauth.model.crypto.encryption.BlockEncryptionAlgorithm;
+import org.gluu.oxauth.model.exception.InvalidParameterException;
+import org.gluu.oxauth.model.util.Base64Util;
+import org.gluu.oxauth.model.util.Util;
+import org.gluu.util.security.SecurityProviderUtility;
+
+import java.io.UnsupportedEncodingException;
+import java.security.MessageDigest;
+import java.security.NoSuchAlgorithmException;
+import java.security.NoSuchProviderException;
+import java.util.Arrays;
+
+/**
+ * @author Javier Rojas Blum
+ * @version July 31, 2016
+ */
+public class KeyDerivationFunction {
+
+    public static byte[] generateCek(byte[] cmk, BlockEncryptionAlgorithm blockEncryptionAlgorithm)
+            throws UnsupportedEncodingException, NoSuchProviderException, NoSuchAlgorithmException, InvalidParameterException {
+        if (cmk == null) {
+            throw new InvalidParameterException("The content master key (CMK) is null");
+        }
+        if (blockEncryptionAlgorithm == null) {
+            throw new InvalidParameterException("The block encryption algorithm is null");
+        }
+        if (blockEncryptionAlgorithm != BlockEncryptionAlgorithm.A128CBC_PLUS_HS256
+                && blockEncryptionAlgorithm != BlockEncryptionAlgorithm.A256CBC_PLUS_HS512) {
+            throw new InvalidParameterException("The block encryption algorithm is not supported");
+        }
+
+        byte[] round1 = Base64Util.unsignedToBytes(new int[]{0, 0, 0, 1});
+        byte[] outputBitSize = null;
+        if (blockEncryptionAlgorithm != BlockEncryptionAlgorithm.A128CBC_PLUS_HS256) {
+            outputBitSize = Base64Util.unsignedToBytes(new int[]{0, 0, 0, 128});
+        } else { //A256CBC_PLUS_HS512
+            outputBitSize = Base64Util.unsignedToBytes(new int[]{0, 0, 1, 0});
+        }
+        byte[] encValue = blockEncryptionAlgorithm.getName().getBytes(Util.UTF8_STRING_ENCODING);
+        byte[] epu = Base64Util.unsignedToBytes(new int[]{0, 0, 0, 0});
+        byte[] epv = Base64Util.unsignedToBytes(new int[]{0, 0, 0, 0});
+        byte[] label = "Encryption".getBytes(Util.UTF8_STRING_ENCODING);
+        byte[] round1Input = ArrayUtils.addAll(round1, cmk);
+        round1Input = ArrayUtils.addAll(round1Input, outputBitSize);
+        round1Input = ArrayUtils.addAll(round1Input, encValue);
+        round1Input = ArrayUtils.addAll(round1Input, epu);
+        round1Input = ArrayUtils.addAll(round1Input, epv);
+        round1Input = ArrayUtils.addAll(round1Input, label);
+
+        MessageDigest mda = MessageDigest.getInstance(blockEncryptionAlgorithm.getMessageDiggestAlgorithm(), SecurityProviderUtility.getBCProvider());
+        byte[] round1Hash = mda.digest(round1Input);
+        byte[] cek = Arrays.copyOf(round1Hash, blockEncryptionAlgorithm.getCekLength() / 8);
+
+        return cek;
+    }
+
+    public static byte[] generateCik(byte[] cmk, BlockEncryptionAlgorithm blockEncryptionAlgorithm)
+            throws UnsupportedEncodingException, NoSuchProviderException, NoSuchAlgorithmException, InvalidParameterException {
+        if (cmk == null) {
+            throw new InvalidParameterException("The content master key (CMK) is null");
+        }
+        if (blockEncryptionAlgorithm == null) {
+            throw new InvalidParameterException("The block encryption algorithm is null");
+        }
+        if (blockEncryptionAlgorithm != BlockEncryptionAlgorithm.A128CBC_PLUS_HS256
+                && blockEncryptionAlgorithm != BlockEncryptionAlgorithm.A256CBC_PLUS_HS512) {
+            throw new InvalidParameterException("The block encryption algorithm is not supported");
+        }
+
+        byte[] round1 = Base64Util.unsignedToBytes(new int[]{0, 0, 0, 1});
+        byte[] outputBitSize = null;
+        if (blockEncryptionAlgorithm != BlockEncryptionAlgorithm.A128CBC_PLUS_HS256) {
+            outputBitSize = Base64Util.unsignedToBytes(new int[]{0, 0, 1, 0});
+        } else { //A256CBC_PLUS_HS512
+            outputBitSize = Base64Util.unsignedToBytes(new int[]{0, 0, 2, 0});
+        }
+        byte[] encValue = blockEncryptionAlgorithm.getName().getBytes(Util.UTF8_STRING_ENCODING);
+        byte[] epu = Base64Util.unsignedToBytes(new int[]{0, 0, 0, 0});
+        byte[] epv = Base64Util.unsignedToBytes(new int[]{0, 0, 0, 0});
+        byte[] label = "Integrity".getBytes(Util.UTF8_STRING_ENCODING);
+        byte[] round1Input = ArrayUtils.addAll(round1, cmk);
+        round1Input = ArrayUtils.addAll(round1Input, outputBitSize);
+        round1Input = ArrayUtils.addAll(round1Input, encValue);
+        round1Input = ArrayUtils.addAll(round1Input, epu);
+        round1Input = ArrayUtils.addAll(round1Input, epv);
+        round1Input = ArrayUtils.addAll(round1Input, label);
+
+        MessageDigest mda = MessageDigest.getInstance(blockEncryptionAlgorithm.getMessageDiggestAlgorithm(), SecurityProviderUtility.getBCProvider());
+        byte[] cik = mda.digest(round1Input);
+
+        return cik;
+    }
+}
\ No newline at end of file
diff --git a/oxAuth/Model/src/main/java/org/gluu/oxauth/model/jwk/Algorithm.java b/oxAuth/Model/src/main/java/org/gluu/oxauth/model/jwk/Algorithm.java
new file mode 100644
index 00000000..aed085b2
--- /dev/null
+++ b/oxAuth/Model/src/main/java/org/gluu/oxauth/model/jwk/Algorithm.java
@@ -0,0 +1,115 @@
+/*
+ * oxAuth is available under the MIT License (2008). See http://opensource.org/licenses/MIT for full text.
+ *
+ * Copyright (c) 2014, Gluu
+ */
+
+package org.gluu.oxauth.model.jwk;
+
+import com.fasterxml.jackson.annotation.JsonCreator;
+import com.fasterxml.jackson.annotation.JsonValue;
+import org.gluu.oxauth.model.crypto.signature.AlgorithmFamily;
+import org.gluu.oxauth.model.util.StringUtils;
+import org.gluu.oxauth.model.crypto.signature.RSAKeyFactory;
+
+import java.util.ArrayList;
+import java.util.List;
+
+/**
+ * Identifies the cryptographic algorithm used with the key.
+ *
+ * @author Javier Rojas Blum
+ * @author Sergey Manoylo
+ * @version December 17, 2021
+ */
+@SuppressWarnings("java:S1874")
+public enum Algorithm {
+
+    // Signature
+    RS256("RS256", Use.SIGNATURE, AlgorithmFamily.RSA, RSAKeyFactory.DEF_KEYLENGTH),
+    RS384("RS384", Use.SIGNATURE, AlgorithmFamily.RSA, RSAKeyFactory.DEF_KEYLENGTH),
+    RS512("RS512", Use.SIGNATURE, AlgorithmFamily.RSA, RSAKeyFactory.DEF_KEYLENGTH),
+    ES256("ES256", Use.SIGNATURE, AlgorithmFamily.EC, 256),
+    ES384("ES384", Use.SIGNATURE, AlgorithmFamily.EC, 384),
+    ES512("ES512", Use.SIGNATURE, AlgorithmFamily.EC, 528),
+    PS256("PS256", Use.SIGNATURE, AlgorithmFamily.RSA, RSAKeyFactory.DEF_KEYLENGTH),
+    PS384("PS384", Use.SIGNATURE, AlgorithmFamily.RSA, RSAKeyFactory.DEF_KEYLENGTH),
+    PS512("PS512", Use.SIGNATURE, AlgorithmFamily.RSA, RSAKeyFactory.DEF_KEYLENGTH),
+
+    // Encryption
+    RSA1_5("RSA1_5", Use.ENCRYPTION, AlgorithmFamily.RSA, RSAKeyFactory.DEF_KEYLENGTH),
+    RSA_OAEP("RSA-OAEP", Use.ENCRYPTION, AlgorithmFamily.RSA, RSAKeyFactory.DEF_KEYLENGTH);
+
+    private final String paramName;
+    private final Use use;
+    private final AlgorithmFamily family;
+    private final int keyLength;
+
+    Algorithm(String paramName, Use use, AlgorithmFamily family, int keyLength) {
+        this.paramName = paramName;
+        this.use = use;
+        this.family = family;
+        this.keyLength = keyLength;	// bits
+    }
+
+    public String getParamName() {
+        return paramName;
+    }
+
+    public Use getUse() {
+        return use;
+    }
+
+    public AlgorithmFamily getFamily() {
+        return family;
+    }
+
+    public int getKeyLength() {
+        return keyLength;
+    }
+
+    /**
+     * Returns the corresponding {@link Algorithm} for a parameter.
+     *
+     * @param param The use parameter.
+     * @return The corresponding algorithm if found, otherwise <code>null</code>.
+     */
+    @JsonCreator
+    public static Algorithm fromString(String param) {
+        if (param != null) {
+            for (Algorithm algorithm : Algorithm.values()) {
+                if (param.equals(algorithm.paramName)) {
+                    return algorithm;
+                }
+            }
+        }
+        return null;
+    }
+
+    public static List<Algorithm> fromString(String[] params, Use use) {
+        List<Algorithm> algorithms = new ArrayList<Algorithm>();
+
+        for (String param : params) {
+            Algorithm algorithm = Algorithm.fromString(param);
+            if (algorithm != null && algorithm.use == use) {
+                algorithms.add(algorithm);
+            } else if (StringUtils.equals("RSA_OAEP", param)) {
+                algorithms.add(RSA_OAEP);
+            }
+        }
+
+        return algorithms;
+    }
+
+
+    /**
+     * Returns a string representation of the object. In this case the parameter name.
+     *
+     * @return The string representation of the object.
+     */
+    @Override
+    @JsonValue
+    public String toString() {
+        return paramName;
+    }
+}
\ No newline at end of file
diff --git a/oxAuth/Model/src/main/java/org/gluu/oxauth/model/jwk/JSONWebKey.java b/oxAuth/Model/src/main/java/org/gluu/oxauth/model/jwk/JSONWebKey.java
new file mode 100644
index 00000000..15f662f7
--- /dev/null
+++ b/oxAuth/Model/src/main/java/org/gluu/oxauth/model/jwk/JSONWebKey.java
@@ -0,0 +1,281 @@
+/*
+ * oxAuth is available under the MIT License (2008). See http://opensource.org/licenses/MIT for full text.
+ *
+ * Copyright (c) 2014, Gluu
+ */
+
+package org.gluu.oxauth.model.jwk;
+
+import org.gluu.oxauth.model.crypto.signature.ECEllipticCurve;
+import org.gluu.oxauth.model.util.StringUtils;
+import org.gluu.oxauth.model.util.Util;
+import org.json.JSONException;
+import org.json.JSONObject;
+
+import java.util.List;
+
+import static org.gluu.oxauth.model.jwk.JWKParameter.*;
+
+/**
+ * @author Javier Rojas Blum
+ * @version February 12, 2019
+ */
+public class JSONWebKey implements Comparable<JSONWebKey> {
+
+    private String kid;
+    private KeyType kty;
+    private Use use;
+    private Algorithm alg;
+    private Long exp;
+    private ECEllipticCurve crv;
+    private List<String> x5c;
+
+    /**
+     * Modulus
+     */
+    private String n;
+
+    /**
+     * Exponent
+     */
+    private String e;
+
+    private String x;
+    private String y;
+
+    public JSONWebKey() {
+    }
+
+    /**
+     * Returns the Key ID. The Key ID member can be used to match a specific key. This can be used, for instance,
+     * to choose among a set of keys within the JWK during key rollover.
+     *
+     * @return The Key ID.
+     */
+    public String getKid() {
+        return kid;
+    }
+
+    /**
+     * Sets the Key ID.
+     *
+     * @param kid The Key ID.
+     */
+    public void setKid(String kid) {
+        this.kid = kid;
+    }
+
+    public KeyType getKty() {
+        return kty;
+    }
+
+    public void setKty(KeyType kty) {
+        this.kty = kty;
+    }
+
+    /**
+     * Returns the intended use of the key: signature or encryption.
+     *
+     * @return The intended use of the key.
+     */
+    public Use getUse() {
+        return use;
+    }
+
+    /**
+     * Sets the intended use of the key: signature or encryption.
+     *
+     * @param use The intended use of the key.
+     */
+    public void setUse(Use use) {
+        this.use = use;
+    }
+
+    public Algorithm getAlg() {
+        return alg;
+    }
+
+    public void setAlg(Algorithm alg) {
+        this.alg = alg;
+    }
+
+    public Long getExp() {
+        return exp;
+    }
+
+    public void setExp(Long exp) {
+        this.exp = exp;
+    }
+
+    /**
+     * Returns the curve member that identifies the cryptographic curve used with the key.
+     *
+     * @return The curve member that identifies the cryptographic curve used with the key.
+     */
+    public ECEllipticCurve getCrv() {
+        return crv;
+    }
+
+    /**
+     * Sets the curve member that identifies the cryptographic curve used with the key.
+     *
+     * @param crv The curve member that identifies the cryptographic curve used with the key.
+     */
+    public void setCrv(ECEllipticCurve crv) {
+        this.crv = crv;
+    }
+
+    public List<String> getX5c() {
+        return x5c;
+    }
+
+    public void setX5c(List<String> x5c) {
+        this.x5c = x5c;
+    }
+
+    /**
+     * Returns the modulus value for the RSA public key. It is represented as the base64url encoding of the value's
+     * representation.
+     *
+     * @return The modulus value for the RSA public key.
+     */
+    public String getN() {
+        return n;
+    }
+
+    /**
+     * Sets the modulus value for the RSA public key.
+     *
+     * @param n The modulus value for the RSA public key.
+     */
+    public void setN(String n) {
+        this.n = n;
+    }
+
+    /**
+     * Returns the exponent value for the RSA public key.
+     *
+     * @return The exponent value for the RSA public key.
+     */
+    public String getE() {
+        return e;
+    }
+
+    /**
+     * Sets the exponent value for the RSA public key.
+     *
+     * @param e The exponent value for the RSA public key.
+     */
+    public void setE(String e) {
+        this.e = e;
+    }
+
+    /**
+     * Returns the x member that contains the x coordinate for the elliptic curve point. It is represented as the
+     * base64url encoding of the coordinate's big endian representation.
+     *
+     * @return The x member that contains the x coordinate for the elliptic curve point.
+     */
+    public String getX() {
+        return x;
+    }
+
+    /**
+     * Sets the x member that contains the x coordinate for the elliptic curve point.
+     *
+     * @param x The x member that contains the x coordinate for the elliptic curve point.
+     */
+    public void setX(String x) {
+        this.x = x;
+    }
+
+    /**
+     * Returns the y member that contains the x coordinate for the elliptic curve point. It is represented as the
+     * base64url encoding of the coordinate's big endian representation.
+     *
+     * @return The y member that contains the x coordinate for the elliptic curve point.
+     */
+    public String getY() {
+        return y;
+    }
+
+    /**
+     * Sets the y member that contains the y coordinate for the elliptic curve point.
+     *
+     * @param y The y member that contains the y coordinate for the elliptic curve point.
+     */
+    public void setY(String y) {
+        this.y = y;
+    }
+
+    public JSONObject toJSONObject() throws JSONException {
+        JSONObject jsonObj = new JSONObject();
+
+        jsonObj.put(KEY_ID, kid);
+        jsonObj.put(KEY_TYPE, kty);
+        if (use != null) {
+            jsonObj.put(KEY_USE, use.getParamName());
+        }
+        jsonObj.put(ALGORITHM, alg);
+        jsonObj.put(EXPIRATION_TIME, exp);
+        if (crv != null) {
+            jsonObj.put(CURVE, crv.getName());
+        }
+        if (!Util.isNullOrEmpty(n)) {
+            jsonObj.put(MODULUS, n);
+        }
+        if (!Util.isNullOrEmpty(e)) {
+            jsonObj.put(EXPONENT, e);
+        }
+        if (!Util.isNullOrEmpty(x)) {
+            jsonObj.put(X, x);
+        }
+        if (!Util.isNullOrEmpty(y)) {
+            jsonObj.put(Y, y);
+        }
+        if (x5c != null && !x5c.isEmpty()) {
+            jsonObj.put(CERTIFICATE_CHAIN, StringUtils.toJSONArray(x5c));
+        }
+
+        return jsonObj;
+    }
+
+    @Override
+    public int compareTo(JSONWebKey o) {
+        if (this.getExp() == null || o.getExp() == null) {
+            return 0;
+        }
+
+        return getExp().compareTo(o.getExp());
+    }
+
+    public static JSONWebKey fromJSONObject(JSONObject jwkJSONObject) throws JSONException {
+        JSONWebKey jwk = new JSONWebKey();
+
+        jwk.setKid(jwkJSONObject.optString(KEY_ID));
+        jwk.setKty(KeyType.fromString(jwkJSONObject.optString(KEY_TYPE)));
+        jwk.setUse(Use.fromString(jwkJSONObject.optString(KEY_USE)));
+        jwk.setAlg(Algorithm.fromString(jwkJSONObject.optString(ALGORITHM)));
+        if (jwkJSONObject.has(EXPIRATION_TIME)) {
+            jwk.setExp(jwkJSONObject.optLong(EXPIRATION_TIME));
+        }
+        jwk.setCrv(ECEllipticCurve.fromString(jwkJSONObject.optString(CURVE)));
+        if (jwkJSONObject.has(MODULUS)) {
+            jwk.setN(jwkJSONObject.optString(MODULUS));
+        }
+        if (jwkJSONObject.has(EXPONENT)) {
+            jwk.setE(jwkJSONObject.optString(EXPONENT));
+        }
+        if (jwkJSONObject.has(X)) {
+            jwk.setX(jwkJSONObject.optString(X));
+        }
+        if (jwkJSONObject.has(Y)) {
+            jwk.setY(jwkJSONObject.optString(Y));
+        }
+        if (jwkJSONObject.has(CERTIFICATE_CHAIN)) {
+            jwk.setX5c(StringUtils.toList(jwkJSONObject.optJSONArray(CERTIFICATE_CHAIN)));
+        }
+
+        return jwk;
+    }
+}
\ No newline at end of file
diff --git a/oxAuth/Model/src/main/java/org/gluu/oxauth/model/jwk/JSONWebKeySet.java b/oxAuth/Model/src/main/java/org/gluu/oxauth/model/jwk/JSONWebKeySet.java
new file mode 100644
index 00000000..e9b3a008
--- /dev/null
+++ b/oxAuth/Model/src/main/java/org/gluu/oxauth/model/jwk/JSONWebKeySet.java
@@ -0,0 +1,128 @@
+/*
+ * oxAuth is available under the MIT License (2008). See http://opensource.org/licenses/MIT for full text.
+ *
+ * Copyright (c) 2014, Gluu
+ */
+
+package org.gluu.oxauth.model.jwk;
+
+import org.apache.log4j.Logger;
+import org.json.JSONArray;
+import org.json.JSONException;
+import org.json.JSONObject;
+
+import com.fasterxml.jackson.core.JsonProcessingException;
+import com.fasterxml.jackson.databind.ObjectMapper;
+import com.fasterxml.jackson.datatype.jsonorg.JsonOrgModule;
+
+import org.gluu.oxauth.model.crypto.signature.AlgorithmFamily;
+import org.gluu.oxauth.model.crypto.signature.SignatureAlgorithm;
+
+import static org.gluu.oxauth.model.jwk.JWKParameter.JSON_WEB_KEY_SET;
+
+import java.util.ArrayList;
+import java.util.Collections;
+import java.util.List;
+
+/**
+ * @author Javier Rojas Blum
+ * @version February 12, 2019
+ */
+public class JSONWebKeySet {
+
+    private static final Logger LOG = Logger.getLogger(JSONWebKeySet.class);
+
+    private List<JSONWebKey> keys;
+
+    public JSONWebKeySet() {
+        keys = new ArrayList<JSONWebKey>();
+    }
+
+    public List<JSONWebKey> getKeys() {
+        return keys;
+    }
+
+    public void setKeys(List<JSONWebKey> keys) {
+        this.keys = keys;
+    }
+
+    public JSONWebKey getKey(String keyId) {
+        for (JSONWebKey jsonWebKey : keys) {
+            if (jsonWebKey.getKid().equals(keyId)) {
+                return jsonWebKey;
+            }
+        }
+
+        return null;
+    }
+
+    @Deprecated
+    public List<JSONWebKey> getKeys(SignatureAlgorithm algorithm) {
+        List<JSONWebKey> jsonWebKeys = new ArrayList<JSONWebKey>();
+
+        if (AlgorithmFamily.RSA.equals(algorithm.getFamily())) {
+            for (JSONWebKey jsonWebKey : keys) {
+                if (jsonWebKey.getAlg().equals(algorithm.getName())) {
+                    jsonWebKeys.add(jsonWebKey);
+                }
+            }
+        } else if (AlgorithmFamily.EC.equals(algorithm.getFamily())) {
+            for (JSONWebKey jsonWebKey : keys) {
+                if (jsonWebKey.getAlg().equals(algorithm.getName())) {
+                    jsonWebKeys.add(jsonWebKey);
+                }
+            }
+        }
+
+        Collections.sort(jsonWebKeys);
+        return jsonWebKeys;
+    }
+
+    public JSONObject toJSONObject() throws JSONException {
+        JSONObject jsonObj = new JSONObject();
+        JSONArray keys = new JSONArray();
+
+        for (JSONWebKey key : getKeys()) {
+            JSONObject jsonKeyValue = key.toJSONObject();
+
+            keys.put(jsonKeyValue);
+        }
+
+        jsonObj.put(JSON_WEB_KEY_SET, keys);
+        return jsonObj;
+    }
+
+    @Override
+    public String toString() {
+        try {
+            JSONObject jwks = toJSONObject();
+            return toPrettyJson(jwks).replace("\\/", "/");
+        } catch (JSONException e) {
+            LOG.error(e.getMessage(), e);
+            return null;
+        } catch (JsonProcessingException e) {
+            LOG.error(e.getMessage(), e);
+            return null;
+		}
+    }
+
+	private String toPrettyJson(JSONObject jsonObject) throws JsonProcessingException {
+		ObjectMapper mapper = new ObjectMapper();
+		mapper.registerModule(new JsonOrgModule());
+		return mapper.writerWithDefaultPrettyPrinter().writeValueAsString(jsonObject);
+	}
+
+    public static JSONWebKeySet fromJSONObject(JSONObject jwksJSONObject) throws JSONException {
+        JSONWebKeySet jwks = new JSONWebKeySet();
+
+        JSONArray jwksJsonArray = jwksJSONObject.getJSONArray(JSON_WEB_KEY_SET);
+        for (int i = 0; i < jwksJsonArray.length(); i++) {
+            JSONObject jwkJsonObject = jwksJsonArray.getJSONObject(i);
+
+            JSONWebKey jwk = JSONWebKey.fromJSONObject(jwkJsonObject);
+            jwks.getKeys().add(jwk);
+        }
+
+        return jwks;
+    }
+}
\ No newline at end of file
diff --git a/oxAuth/Model/src/main/java/org/gluu/oxauth/model/jwk/JWKParameter.java b/oxAuth/Model/src/main/java/org/gluu/oxauth/model/jwk/JWKParameter.java
new file mode 100644
index 00000000..fe222710
--- /dev/null
+++ b/oxAuth/Model/src/main/java/org/gluu/oxauth/model/jwk/JWKParameter.java
@@ -0,0 +1,31 @@
+/*
+ * oxAuth is available under the MIT License (2008). See http://opensource.org/licenses/MIT for full text.
+ *
+ * Copyright (c) 2014, Gluu
+ */
+
+package org.gluu.oxauth.model.jwk;
+
+/**
+ * @author Javier Rojas Blum
+ * @version February 17, 2016
+ */
+public interface JWKParameter {
+
+    public static final String JSON_WEB_KEY_SET = "keys";
+    public static final String KEY_TYPE = "kty";
+    public static final String KEY_USE = "use";
+    public static final String ALGORITHM = "alg";
+    public static final String KEY_ID = "kid";
+    public static final String EXPIRATION_TIME = "exp";
+    public static final String MODULUS = "n";
+    public static final String EXPONENT = "e";
+    public static final String CURVE = "crv";
+    public static final String X = "x";
+    public static final String Y = "y";
+    public static final String D = "d";
+    public static final String KEY_VALUE = "k";
+    public static final String CERTIFICATE_CHAIN = "x5c";
+    public static final String PRIVATE_KEY = "privateKey";
+    public static final String PUBLIC_KEY = "publicKey";
+}
\ No newline at end of file
diff --git a/oxAuth/Model/src/main/java/org/gluu/oxauth/model/jwk/KeySelectionStrategy.java b/oxAuth/Model/src/main/java/org/gluu/oxauth/model/jwk/KeySelectionStrategy.java
new file mode 100644
index 00000000..bd7d334f
--- /dev/null
+++ b/oxAuth/Model/src/main/java/org/gluu/oxauth/model/jwk/KeySelectionStrategy.java
@@ -0,0 +1,47 @@
+package org.gluu.oxauth.model.jwk;
+
+import com.fasterxml.jackson.annotation.JsonIgnore;
+import org.gluu.persist.annotation.AttributeEnum;
+
+import java.util.Collections;
+import java.util.List;
+
+/**
+ * @author Yuriy Zabrovarnyy
+ */
+public enum KeySelectionStrategy implements AttributeEnum {
+    OLDER,
+    NEWER,
+    FIRST;
+
+    @Override
+    public String getValue() {
+        return name();
+    }
+
+    @Override
+    public Enum<? extends AttributeEnum> resolveByValue(String s) {
+        try {
+            return valueOf(s);
+        } catch (IllegalArgumentException e) {
+            return null;
+        }
+    }
+
+    @JsonIgnore
+    public JSONWebKey select(List<JSONWebKey> list) {
+        if (list == null || list.isEmpty())
+            return null;
+
+        if (this == FIRST)
+            return list.iterator().next();
+
+        if (this == OLDER)
+            return Collections.min(list);
+
+        if (this == NEWER)
+            return Collections.max(list);
+
+        return null;
+    }
+}
diff --git a/oxAuth/Model/src/main/java/org/gluu/oxauth/model/jwk/KeyType.java b/oxAuth/Model/src/main/java/org/gluu/oxauth/model/jwk/KeyType.java
new file mode 100644
index 00000000..7a52f273
--- /dev/null
+++ b/oxAuth/Model/src/main/java/org/gluu/oxauth/model/jwk/KeyType.java
@@ -0,0 +1,64 @@
+/*
+ * oxAuth is available under the MIT License (2008). See http://opensource.org/licenses/MIT for full text.
+ *
+ * Copyright (c) 2014, Gluu
+ */
+
+package org.gluu.oxauth.model.jwk;
+
+import com.fasterxml.jackson.annotation.JsonCreator;
+import com.fasterxml.jackson.annotation.JsonValue;
+
+/**
+ * Identifies the cryptographic algorithm family used with the key.
+ *
+ * @author Javier Rojas Blum
+ * @version June 15, 2016
+ */
+public enum KeyType {
+
+    /**
+     * The Elliptic Curve Digital Signature Algorithm (ECDSA) is defined by FIPS 186‑3.
+     */
+    EC("EC"),
+
+    /**
+     * The RSA algorithm is defined by RFC 3447.
+     */
+    RSA("RSA");
+
+    private final String paramName;
+
+    private KeyType(String paramName) {
+        this.paramName = paramName;
+    }
+
+    /**
+     * Returns the corresponding {@link KeyType} for a parameter use of the JWK endpoint.
+     *
+     * @param param The use parameter.
+     * @return The corresponding algorithm family if found, otherwise <code>null</code>.
+     */
+    @JsonCreator
+    public static KeyType fromString(String param) {
+        if (param != null) {
+            for (KeyType keyType : KeyType.values()) {
+                if (param.equals(keyType.paramName)) {
+                    return keyType;
+                }
+            }
+        }
+        return null;
+    }
+
+    /**
+     * Returns a string representation of the object. In this case the parameter name.
+     *
+     * @return The string representation of the object.
+     */
+    @Override
+    @JsonValue
+    public String toString() {
+        return paramName;
+    }
+}
\ No newline at end of file
diff --git a/oxAuth/Model/src/main/java/org/gluu/oxauth/model/jwk/Use.java b/oxAuth/Model/src/main/java/org/gluu/oxauth/model/jwk/Use.java
new file mode 100644
index 00000000..8c660da5
--- /dev/null
+++ b/oxAuth/Model/src/main/java/org/gluu/oxauth/model/jwk/Use.java
@@ -0,0 +1,65 @@
+/*
+ * oxAuth is available under the MIT License (2008). See http://opensource.org/licenses/MIT for full text.
+ *
+ * Copyright (c) 2014, Gluu
+ */
+
+package org.gluu.oxauth.model.jwk;
+
+import com.fasterxml.jackson.annotation.JsonCreator;
+import com.fasterxml.jackson.annotation.JsonValue;
+
+/**
+ * @author Javier Rojas Blum
+ * @version June 15, 2016
+ */
+public enum Use {
+
+    /**
+     * Use this constant when the key is being used for signature.
+     */
+    SIGNATURE("sig"),
+    /**
+     * Use this constant when the key is being used for encryption.
+     */
+    ENCRYPTION("enc");
+
+    private final String paramName;
+
+    private Use(String paramName) {
+        this.paramName = paramName;
+    }
+
+    public String getParamName() {
+        return paramName;
+    }
+
+    /**
+     * Returns the corresponding {@link Use} for a parameter use of the JWK endpoint.
+     *
+     * @param param The use parameter.
+     * @return The corresponding use if found, otherwise <code>null</code>.
+     */
+    @JsonCreator
+    public static Use fromString(String param) {
+        if (param != null) {
+            for (Use use : Use.values()) {
+                if (param.equals(use.paramName) || param.equalsIgnoreCase(use.name())) {
+                    return use;
+                }
+            }
+        }
+        return null;
+    }
+
+    /**
+     * Returns a string representation of the object. In this case the parameter name.
+     *
+     * @return The string representation of the object.
+     */
+    @Override
+    @JsonValue
+    public String toString() {
+        return paramName;
+    }
+}
\ No newline at end of file
diff --git a/oxAuth/Model/src/main/java/org/gluu/oxauth/model/jws/AbstractJwsSigner.java b/oxAuth/Model/src/main/java/org/gluu/oxauth/model/jws/AbstractJwsSigner.java
new file mode 100644
index 00000000..c05a95d5
--- /dev/null
+++ b/oxAuth/Model/src/main/java/org/gluu/oxauth/model/jws/AbstractJwsSigner.java
@@ -0,0 +1,87 @@
+/*
+ * oxAuth is available under the MIT License (2008). See http://opensource.org/licenses/MIT for full text.
+ *
+ * Copyright (c) 2014, Gluu
+ */
+
+package org.gluu.oxauth.model.jws;
+
+import org.apache.commons.lang.StringUtils;
+import org.apache.log4j.Logger;
+import org.gluu.oxauth.model.crypto.signature.SignatureAlgorithm;
+import org.gluu.oxauth.model.exception.InvalidJwtException;
+import org.gluu.oxauth.model.jwt.Jwt;
+import org.gluu.oxauth.model.jwt.JwtClaimName;
+import org.gluu.oxauth.model.util.HashUtil;
+
+import java.security.SignatureException;
+
+/**
+ * @author Javier Rojas Blum
+ * @version March 14, 2019
+ */
+public abstract class AbstractJwsSigner implements JwsSigner {
+
+    private static final Logger LOG = Logger.getLogger(AbstractJwsSigner.class);
+
+    private SignatureAlgorithm signatureAlgorithm;
+
+    public AbstractJwsSigner(SignatureAlgorithm signatureAlgorithm) {
+        this.signatureAlgorithm = signatureAlgorithm;
+    }
+
+    @Override
+    public SignatureAlgorithm getSignatureAlgorithm() {
+        return signatureAlgorithm;
+    }
+
+    @Override
+    public Jwt sign(Jwt jwt) throws InvalidJwtException, SignatureException {
+        String signature = generateSignature(jwt.getSigningInput());
+        jwt.setEncodedSignature(signature);
+        return jwt;
+    }
+
+    @Override
+    public boolean validate(Jwt jwt) {
+        try {
+            String signingInput = jwt.getSigningInput();
+            String signature = jwt.getEncodedSignature();
+
+            return validateSignature(signingInput, signature);
+        } catch (InvalidJwtException e) {
+            LOG.error(e.getMessage(), e);
+            return false;
+        } catch (SignatureException e) {
+            LOG.error(e.getMessage(), e);
+            return false;
+        } catch (Exception e) {
+            LOG.error(e.getMessage(), e);
+            return false;
+        }
+    }
+
+    public boolean validateAuthorizationCode(String authorizationCode, Jwt idToken) {
+        return validateHash(authorizationCode, idToken.getClaims().getClaimAsString(JwtClaimName.CODE_HASH));
+    }
+
+    public boolean validateAccessToken(String accessToken, Jwt idToken) {
+        return validateHash(accessToken, idToken.getClaims().getClaimAsString(JwtClaimName.ACCESS_TOKEN_HASH));
+    }
+
+    public boolean validateState(String state, Jwt idToken) {
+        return validateHash(state, idToken.getClaims().getClaimAsString(JwtClaimName.STATE_HASH));
+    }
+
+    private boolean validateHash(String tokenCode, String tokenHash) {
+        if (StringUtils.isBlank(tokenCode) || StringUtils.isBlank(tokenHash)) {
+            return false;
+        }
+
+        return tokenHash.equals(HashUtil.getHash(tokenCode, signatureAlgorithm));
+    }
+
+    public abstract String generateSignature(String signingInput) throws SignatureException;
+
+    public abstract boolean validateSignature(String signingInput, String signature) throws SignatureException;
+}
\ No newline at end of file
diff --git a/oxAuth/Model/src/main/java/org/gluu/oxauth/model/jws/ECDSASigner.java b/oxAuth/Model/src/main/java/org/gluu/oxauth/model/jws/ECDSASigner.java
new file mode 100644
index 00000000..25342204
--- /dev/null
+++ b/oxAuth/Model/src/main/java/org/gluu/oxauth/model/jws/ECDSASigner.java
@@ -0,0 +1,168 @@
+/*
+ * oxAuth is available under the MIT License (2008). See http://opensource.org/licenses/MIT for full text.
+ *
+ * Copyright (c) 2014, Gluu
+ */
+
+package org.gluu.oxauth.model.jws;
+
+import java.io.UnsupportedEncodingException;
+import java.security.AlgorithmParameters;
+import java.security.InvalidKeyException;
+import java.security.KeyFactory;
+import java.security.NoSuchAlgorithmException;
+import java.security.PrivateKey;
+import java.security.PublicKey;
+import java.security.Signature;
+import java.security.SignatureException;
+import java.security.spec.ECGenParameterSpec;
+import java.security.spec.ECParameterSpec;
+import java.security.spec.ECPoint;
+import java.security.spec.ECPrivateKeySpec;
+import java.security.spec.ECPublicKeySpec;
+import java.security.spec.InvalidKeySpecException;
+import java.security.spec.KeySpec;
+
+import org.gluu.oxauth.model.crypto.Certificate;
+import org.gluu.oxauth.model.crypto.signature.AlgorithmFamily;
+import org.gluu.oxauth.model.crypto.signature.ECDSAPrivateKey;
+import org.gluu.oxauth.model.crypto.signature.ECDSAPublicKey;
+import org.gluu.oxauth.model.crypto.signature.SignatureAlgorithm;
+import org.gluu.oxauth.model.util.Base64Util;
+import org.gluu.oxauth.model.util.Util;
+import org.gluu.util.security.SecurityProviderUtility;
+
+import com.nimbusds.jose.JWSAlgorithm;
+import com.nimbusds.jose.crypto.impl.ECDSA;
+
+/**
+ * @author Javier Rojas Blum
+ * @version July 31, 2016
+ */
+public class ECDSASigner extends AbstractJwsSigner {
+
+    private ECDSAPrivateKey ecdsaPrivateKey;
+    private ECDSAPublicKey ecdsaPublicKey;
+
+    public ECDSASigner(SignatureAlgorithm signatureAlgorithm, ECDSAPrivateKey ecdsaPrivateKey) {
+        super(signatureAlgorithm);
+        this.ecdsaPrivateKey = ecdsaPrivateKey;
+    }
+
+    public ECDSASigner(SignatureAlgorithm signatureAlgorithm, ECDSAPublicKey ecdsaPublicKey) {
+        super(signatureAlgorithm);
+        this.ecdsaPublicKey = ecdsaPublicKey;
+    }
+
+    public ECDSASigner(SignatureAlgorithm signatureAlgorithm, Certificate certificate) {
+        super(signatureAlgorithm);
+        this.ecdsaPublicKey = certificate.getEcdsaPublicKey();
+    }
+
+    @Override
+    public String generateSignature(String signingInput) throws SignatureException {
+        if (getSignatureAlgorithm() == null) {
+            throw new SignatureException("The signature algorithm is null");
+        }
+        if (ecdsaPrivateKey == null) {
+            throw new SignatureException("The ECDSA private key is null");
+        }
+        if (signingInput == null) {
+            throw new SignatureException("The signing input is null");
+        }
+
+        try {
+            AlgorithmParameters parameters = AlgorithmParameters.getInstance("EC", SecurityProviderUtility.getBCProvider());
+            parameters.init(new ECGenParameterSpec(getSignatureAlgorithm().getCurve().getName()));
+            ECParameterSpec ecParameters = parameters.getParameterSpec(ECParameterSpec.class);
+
+            ECPrivateKeySpec privateKeySpec = new ECPrivateKeySpec(ecdsaPrivateKey.getD(), ecParameters);
+
+            KeyFactory keyFactory = KeyFactory.getInstance("EC", SecurityProviderUtility.getBCProvider());
+            PrivateKey privateKey = keyFactory.generatePrivate(privateKeySpec);
+
+            Signature signer = Signature.getInstance(getSignatureAlgorithm().getAlgorithm(), SecurityProviderUtility.getBCProvider());
+            signer.initSign(privateKey);
+            signer.update(signingInput.getBytes(Util.UTF8_STRING_ENCODING));
+
+            byte[] signature = signer.sign();
+            if (AlgorithmFamily.EC.equals(getSignatureAlgorithm().getFamily())) {
+            	int signatureLenght = ECDSA.getSignatureByteArrayLength(JWSAlgorithm.parse(getSignatureAlgorithm().getName()));
+                signature = ECDSA.transcodeSignatureToConcat(signature, signatureLenght);
+            }
+
+            return Base64Util.base64urlencode(signature);
+        } catch (InvalidKeySpecException e) {
+            throw new SignatureException(e);
+        } catch (InvalidKeyException e) {
+            throw new SignatureException(e);
+        } catch (NoSuchAlgorithmException e) {
+            throw new SignatureException(e);
+        } catch (UnsupportedEncodingException e) {
+            throw new SignatureException(e);
+        } catch (Exception e) {
+            throw new SignatureException(e);
+        }
+    }
+
+    @Override
+    public boolean validateSignature(String signingInput, String signature) throws SignatureException {
+        if (getSignatureAlgorithm() == null) {
+            throw new SignatureException("The signature algorithm is null");
+        }
+        if (ecdsaPublicKey == null) {
+            throw new SignatureException("The ECDSA public key is null");
+        }
+        if (signingInput == null) {
+            throw new SignatureException("The signing input is null");
+        }
+
+        String algorithm;
+        switch (getSignatureAlgorithm()) {
+            case ES256:
+                algorithm = "SHA256WITHECDSA";
+                break;
+            case ES384:
+                algorithm = "SHA384WITHECDSA";
+                break;
+            case ES512:
+                algorithm = "SHA512WITHECDSA";
+                break;
+            default:
+                throw new SignatureException("Unsupported signature algorithm");
+        }
+
+        try {
+            byte[] sigBytes = Base64Util.base64urldecode(signature);
+            if (AlgorithmFamily.EC.equals(getSignatureAlgorithm().getFamily())) {
+                sigBytes = ECDSA.transcodeSignatureToDER(sigBytes);
+            }
+            byte[] sigInBytes = signingInput.getBytes(Util.UTF8_STRING_ENCODING);
+
+            AlgorithmParameters parameters = AlgorithmParameters.getInstance("EC", SecurityProviderUtility.getBCProvider());
+            parameters.init(new ECGenParameterSpec(getSignatureAlgorithm().getCurve().getName()));
+            ECParameterSpec ecParameters = parameters.getParameterSpec(ECParameterSpec.class);
+
+            ECPoint pubPoint = new ECPoint(ecdsaPublicKey.getX(), ecdsaPublicKey.getY());
+            KeySpec publicKeySpec = new ECPublicKeySpec(pubPoint, ecParameters);
+
+            KeyFactory keyFactory = KeyFactory.getInstance("EC", SecurityProviderUtility.getBCProvider());
+            PublicKey publicKey = keyFactory.generatePublic(publicKeySpec);
+
+            Signature sig = Signature.getInstance(algorithm, SecurityProviderUtility.getBCProvider());
+            sig.initVerify(publicKey);
+            sig.update(sigInBytes);
+            return sig.verify(sigBytes);
+        } catch (InvalidKeySpecException e) {
+            throw new SignatureException(e);
+        } catch (InvalidKeyException e) {
+            throw new SignatureException(e);
+        } catch (NoSuchAlgorithmException e) {
+            throw new SignatureException(e);
+        } catch (UnsupportedEncodingException e) {
+            throw new SignatureException(e);
+        } catch (Exception e) {
+            throw new SignatureException(e);
+        }
+    }
+}
\ No newline at end of file
diff --git a/oxAuth/Model/src/main/java/org/gluu/oxauth/model/jws/HMACSigner.java b/oxAuth/Model/src/main/java/org/gluu/oxauth/model/jws/HMACSigner.java
new file mode 100644
index 00000000..263ed367
--- /dev/null
+++ b/oxAuth/Model/src/main/java/org/gluu/oxauth/model/jws/HMACSigner.java
@@ -0,0 +1,85 @@
+/*
+ * oxAuth is available under the MIT License (2008). See http://opensource.org/licenses/MIT for full text.
+ *
+ * Copyright (c) 2014, Gluu
+ */
+
+package org.gluu.oxauth.model.jws;
+
+import javax.crypto.Mac;
+import javax.crypto.SecretKey;
+import javax.crypto.spec.SecretKeySpec;
+
+import org.gluu.oxauth.model.crypto.signature.SignatureAlgorithm;
+import org.gluu.oxauth.model.util.Base64Util;
+import org.gluu.oxauth.model.util.StringUtils;
+import org.gluu.oxauth.model.util.Util;
+
+import java.io.UnsupportedEncodingException;
+import java.security.InvalidKeyException;
+import java.security.NoSuchAlgorithmException;
+import java.security.SignatureException;
+
+/**
+ * @author Javier Rojas Blum
+ * @version July 31, 2016
+ */
+public class HMACSigner extends AbstractJwsSigner {
+
+    private String sharedSecret;
+
+    public HMACSigner(SignatureAlgorithm signatureAlgorithm, String sharedSecret) {
+        super(signatureAlgorithm);
+        this.sharedSecret = sharedSecret;
+    }
+
+    @Override
+    public String generateSignature(String signingInput) throws SignatureException {
+        if (getSignatureAlgorithm() == null) {
+            throw new SignatureException("The signature algorithm is null");
+        }
+        if (sharedSecret == null) {
+            throw new SignatureException("The shared secret is null");
+        }
+        if (signingInput == null) {
+            throw new SignatureException("The signing input is null");
+        }
+
+        String algorithm;
+        switch (getSignatureAlgorithm()) {
+            case HS256:
+                algorithm = "HMACSHA256";
+                break;
+            case HS384:
+                algorithm = "HMACSHA384";
+                break;
+            case HS512:
+                algorithm = "HMACSHA512";
+                break;
+            default:
+                throw new SignatureException("Unsupported signature algorithm");
+        }
+
+        try {
+            SecretKey secretKey = new SecretKeySpec(sharedSecret.getBytes(Util.UTF8_STRING_ENCODING), algorithm);
+            Mac mac = Mac.getInstance(algorithm);
+            mac.init(secretKey);
+            byte[] sig = mac.doFinal(signingInput.getBytes(Util.UTF8_STRING_ENCODING));
+            return Base64Util.base64urlencode(sig);
+        } catch (NoSuchAlgorithmException e) {
+            throw new SignatureException(e);
+        } catch (InvalidKeyException e) {
+            throw new SignatureException(e);
+        } catch (UnsupportedEncodingException e) {
+            throw new SignatureException(e);
+        } catch (Exception e) {
+            throw new SignatureException(e);
+        }
+    }
+
+    @Override
+    public boolean validateSignature(String signingInput, String signature) throws SignatureException {
+        String expectedSignature = generateSignature(signingInput);
+        return StringUtils.nullToEmpty(signature).equals(StringUtils.nullToEmpty(expectedSignature));
+    }
+}
\ No newline at end of file
diff --git a/oxAuth/Model/src/main/java/org/gluu/oxauth/model/jws/JwsSigner.java b/oxAuth/Model/src/main/java/org/gluu/oxauth/model/jws/JwsSigner.java
new file mode 100644
index 00000000..3f8236a0
--- /dev/null
+++ b/oxAuth/Model/src/main/java/org/gluu/oxauth/model/jws/JwsSigner.java
@@ -0,0 +1,26 @@
+/*
+ * oxAuth is available under the MIT License (2008). See http://opensource.org/licenses/MIT for full text.
+ *
+ * Copyright (c) 2014, Gluu
+ */
+
+package org.gluu.oxauth.model.jws;
+
+import java.security.SignatureException;
+
+import org.gluu.oxauth.model.crypto.signature.SignatureAlgorithm;
+import org.gluu.oxauth.model.exception.InvalidJwtException;
+import org.gluu.oxauth.model.jwt.Jwt;
+
+/**
+ * @author Javier Rojas Blum
+ * @version February 8, 2019
+ */
+public interface JwsSigner {
+
+    SignatureAlgorithm getSignatureAlgorithm();
+
+    Jwt sign(Jwt jwt) throws InvalidJwtException, SignatureException;
+
+    boolean validate(Jwt jwt);
+}
\ No newline at end of file
diff --git a/oxAuth/Model/src/main/java/org/gluu/oxauth/model/jws/PlainTextSignature.java b/oxAuth/Model/src/main/java/org/gluu/oxauth/model/jws/PlainTextSignature.java
new file mode 100644
index 00000000..2cb2a1b7
--- /dev/null
+++ b/oxAuth/Model/src/main/java/org/gluu/oxauth/model/jws/PlainTextSignature.java
@@ -0,0 +1,33 @@
+/*
+ * oxAuth is available under the MIT License (2008). See http://opensource.org/licenses/MIT for full text.
+ *
+ * Copyright (c) 2014, Gluu
+ */
+
+package org.gluu.oxauth.model.jws;
+
+import java.security.SignatureException;
+
+import org.gluu.oxauth.model.crypto.signature.SignatureAlgorithm;
+import org.gluu.oxauth.model.util.StringUtils;
+
+/**
+ * @author Javier Rojas Blum
+ * @version October 26, 2017
+ */
+public class PlainTextSignature extends AbstractJwsSigner {
+
+    public PlainTextSignature() {
+        super(SignatureAlgorithm.NONE);
+    }
+
+    @Override
+    public String generateSignature(String signingInput) throws SignatureException {
+        return StringUtils.EMPTY_STRING;
+    }
+
+    @Override
+    public boolean validateSignature(String signingInput, String signature) throws SignatureException {
+        return StringUtils.EMPTY_STRING.equals(signature);
+    }
+}
\ No newline at end of file
diff --git a/oxAuth/Model/src/main/java/org/gluu/oxauth/model/jws/RSASigner.java b/oxAuth/Model/src/main/java/org/gluu/oxauth/model/jws/RSASigner.java
new file mode 100644
index 00000000..8a149594
--- /dev/null
+++ b/oxAuth/Model/src/main/java/org/gluu/oxauth/model/jws/RSASigner.java
@@ -0,0 +1,107 @@
+/*
+ * oxAuth is available under the MIT License (2008). See http://opensource.org/licenses/MIT for full text.
+ *
+ * Copyright (c) 2014, Gluu
+ */
+
+package org.gluu.oxauth.model.jws;
+
+import java.security.*;
+import java.security.spec.RSAPrivateKeySpec;
+import java.security.spec.RSAPublicKeySpec;
+
+import org.gluu.oxauth.model.crypto.Certificate;
+import org.gluu.oxauth.model.crypto.signature.RSAPrivateKey;
+import org.gluu.oxauth.model.crypto.signature.RSAPublicKey;
+import org.gluu.oxauth.model.crypto.signature.SignatureAlgorithm;
+import org.gluu.oxauth.model.util.Base64Util;
+import org.gluu.oxauth.model.util.Util;
+import org.gluu.util.security.SecurityProviderUtility;
+
+/**
+ * @author Javier Rojas Blum
+ * @version February 8, 2019
+ */
+public class RSASigner extends AbstractJwsSigner {
+
+    private RSAPrivateKey rsaPrivateKey;
+    private RSAPublicKey rsaPublicKey;
+
+    public RSASigner(SignatureAlgorithm signatureAlgorithm, RSAPrivateKey rsaPrivateKey) {
+        super(signatureAlgorithm);
+        this.rsaPrivateKey = rsaPrivateKey;
+    }
+
+    public RSASigner(SignatureAlgorithm signatureAlgorithm, RSAPublicKey rsaPublicKey) {
+        super(signatureAlgorithm);
+        this.rsaPublicKey = rsaPublicKey;
+    }
+
+    public RSASigner(SignatureAlgorithm signatureAlgorithm, Certificate certificate) {
+        super(signatureAlgorithm);
+        this.rsaPublicKey = certificate.getRsaPublicKey();
+    }
+
+    @Override
+    public String generateSignature(String signingInput) throws SignatureException {
+        if (getSignatureAlgorithm() == null) {
+            throw new SignatureException("The signature algorithm is null");
+        }
+        if (rsaPrivateKey == null) {
+            throw new SignatureException("The RSA private key is null");
+        }
+        if (signingInput == null) {
+            throw new SignatureException("The signing input is null");
+        }
+
+        try {
+            RSAPrivateKeySpec rsaPrivateKeySpec = new RSAPrivateKeySpec(
+                    rsaPrivateKey.getModulus(),
+                    rsaPrivateKey.getPrivateExponent());
+
+            KeyFactory keyFactory = KeyFactory.getInstance("RSA", SecurityProviderUtility.getBCProvider());
+            PrivateKey privateKey = keyFactory.generatePrivate(rsaPrivateKeySpec);
+
+            Signature signature = Signature.getInstance(getSignatureAlgorithm().getAlgorithm(), SecurityProviderUtility.getBCProvider());
+            signature.initSign(privateKey);
+            signature.update(signingInput.getBytes(Util.UTF8_STRING_ENCODING));
+
+            return Base64Util.base64urlencode(signature.sign());
+        } catch (Exception e) {
+            throw new SignatureException(e);
+        }
+    }
+
+    @Override
+    public boolean validateSignature(String signingInput, String signature) throws SignatureException {
+        if (getSignatureAlgorithm() == null) {
+            throw new SignatureException("The signature algorithm is null");
+        }
+        if (rsaPublicKey == null) {
+            throw new SignatureException("The RSA public key is null");
+        }
+        if (signingInput == null) {
+            throw new SignatureException("The signing input is null");
+        }
+
+        try {
+            byte[] sigBytes = Base64Util.base64urldecode(signature);
+            byte[] sigInBytes = signingInput.getBytes(Util.UTF8_STRING_ENCODING);
+
+            RSAPublicKeySpec rsaPublicKeySpec = new RSAPublicKeySpec(
+                    rsaPublicKey.getModulus(),
+                    rsaPublicKey.getPublicExponent());
+
+            KeyFactory keyFactory = KeyFactory.getInstance("RSA", SecurityProviderUtility.getBCProvider());
+            PublicKey publicKey = keyFactory.generatePublic(rsaPublicKeySpec);
+
+            Signature sign = Signature.getInstance(getSignatureAlgorithm().getAlgorithm(), SecurityProviderUtility.getBCProvider());
+            sign.initVerify(publicKey);
+            sign.update(sigInBytes);
+
+            return sign.verify(sigBytes);
+        } catch (Exception e) {
+            throw new SignatureException(e);
+        }
+    }
+}
\ No newline at end of file
diff --git a/oxAuth/Model/src/main/java/org/gluu/oxauth/model/jwt/Jwt.java b/oxAuth/Model/src/main/java/org/gluu/oxauth/model/jwt/Jwt.java
new file mode 100644
index 00000000..84a32317
--- /dev/null
+++ b/oxAuth/Model/src/main/java/org/gluu/oxauth/model/jwt/Jwt.java
@@ -0,0 +1,113 @@
+/*
+ * oxAuth is available under the MIT License (2008). See http://opensource.org/licenses/MIT for full text.
+ *
+ * Copyright (c) 2014, Gluu
+ */
+
+package org.gluu.oxauth.model.jwt;
+
+import org.apache.commons.lang.StringUtils;
+import org.apache.log4j.Logger;
+import org.gluu.oxauth.model.exception.InvalidJwtException;
+import org.gluu.oxauth.model.token.JsonWebResponse;
+
+/**
+ * JSON Web Token (JWT) is a compact token format intended for space constrained
+ * environments such as HTTP Authorization headers and URI query parameters.
+ * JWTs encode claims to be transmitted as a JSON object (as defined in RFC 4627)
+ * that is base64url encoded and digitally signed. Signing is accomplished using
+ * a JSON Web Signature (JWS). JWTs may also be optionally encrypted using JSON
+ * Web Encryption (JWE).
+ *
+ * @author Javier Rojas Blum
+ * @version May 3, 2017
+ */
+public class Jwt extends JsonWebResponse {
+
+    private static final Logger log = Logger.getLogger(Jwt.class);
+
+    private String encodedHeader;
+    private String encodedClaims;
+    private String encodedSignature;
+
+    private boolean loaded = false;
+
+    public Jwt() {
+        encodedHeader = null;
+        encodedClaims = null;
+        encodedSignature = null;
+    }
+
+    public String getEncodedSignature() {
+        return encodedSignature;
+    }
+
+    public void setEncodedSignature(String encodedSignature) {
+        this.encodedSignature = encodedSignature;
+    }
+
+    public String getSigningInput() throws InvalidJwtException {
+        if (loaded) {
+            return encodedHeader + "." + encodedClaims;
+        } else {
+            return header.toBase64JsonObject() + "." + claims.toBase64JsonObject();
+        }
+    }
+
+    public static Jwt parseSilently(String encodedJwt) {
+        try {
+            return parse(encodedJwt);
+        } catch (Exception e) {
+            log.trace(e.getMessage(), e);
+            return null;
+        }
+    }
+
+    public static Jwt parse(String encodedJwt) throws InvalidJwtException {
+        if (StringUtils.isBlank(encodedJwt)) {
+            return null;
+        }
+
+        String encodedHeader = null;
+        String encodedClaims = null;
+        String encodedSignature = null;
+
+        String[] jwtParts = encodedJwt.split("\\.");
+        if (jwtParts.length == 2) { // Signature Algorithm NONE
+            encodedHeader = jwtParts[0];
+            encodedClaims = jwtParts[1];
+            encodedSignature = "";
+        } else if (jwtParts.length == 3) {
+            encodedHeader = jwtParts[0];
+            encodedClaims = jwtParts[1];
+            encodedSignature = jwtParts[2];
+        } else {
+            throw new InvalidJwtException("Invalid JWT format.");
+        }
+
+        Jwt jwt = new Jwt();
+        jwt.setHeader(new JwtHeader(encodedHeader));
+        jwt.setClaims(new JwtClaims(encodedClaims));
+        jwt.setEncodedSignature(encodedSignature);
+        jwt.encodedHeader = encodedHeader;
+        jwt.encodedClaims = encodedClaims;
+        jwt.loaded = true;
+
+        return jwt;
+    }
+
+    @Override
+    public String toString() {
+        try {
+            if (encodedSignature == null) {
+                return getSigningInput() + ".";
+            } else {
+                return getSigningInput() + "." + encodedSignature;
+            }
+        } catch (InvalidJwtException e) {
+            e.printStackTrace();
+        }
+
+        return "";
+    }
+}
\ No newline at end of file
diff --git a/oxAuth/Model/src/main/java/org/gluu/oxauth/model/jwt/JwtClaimName.java b/oxAuth/Model/src/main/java/org/gluu/oxauth/model/jwt/JwtClaimName.java
new file mode 100644
index 00000000..2a0ea954
--- /dev/null
+++ b/oxAuth/Model/src/main/java/org/gluu/oxauth/model/jwt/JwtClaimName.java
@@ -0,0 +1,237 @@
+/*
+ * oxAuth is available under the MIT License (2008). See http://opensource.org/licenses/MIT for full text.
+ *
+ * Copyright (c) 2014, Gluu
+ */
+
+package org.gluu.oxauth.model.jwt;
+
+/**
+ * @author Javier Rojas Blum
+ * @version September 4, 2019
+ */
+public final class JwtClaimName {
+
+    // JWT
+    /**
+     * Expiration time on or after which the ID Token must not be accepted for processing.
+     * The processing of this parameter requires that the current date/time must be before
+     * the expiration date/time listed in the value.
+     */
+    public static final String EXPIRATION_TIME = "exp"; // ID Token
+    public static final String NOT_BEFORE = "nbf";
+    /**
+     * Time at which the JWT was issued. Its value is a JSON number representing the number
+     * of seconds from 1970-01-01T0:0:0Z as measured in UTC until the date/time.
+     */
+    public static final String ISSUED_AT = "iat"; // ID Token
+    /**
+     * Issuer Identifier for the Issuer of the response.
+     * The iss value is a case sensitive URL using the https scheme that contains scheme,
+     * host, and optionally, port number and path components and no query or fragment components.
+     */
+    public static final String ISSUER = "iss"; // ID Token
+    /**
+     * Audience(s) that this ID Token is intended for.
+     * It must contain the OAuth 2.0 client_id of the Relying Party as an audience value.
+     * It may also contain identifiers for other audiences. In the general case, the aud
+     * value is an array of case sensitive strings.
+     * In the common special case when there is one audience, the aud value may be a single
+     * case sensitive string.
+     */
+    public static final String AUDIENCE = "aud"; // ID Token
+    public static final String PRINCIPAL = "prn";
+    public static final String JWT_ID = "jti";
+    public static final String TYPE = "typ";
+
+    /**
+     * Authentication Methods References.
+     * <p>
+     * JSON array of strings that are identifiers for authentication methods used in the authentication.
+     * For instance, values might indicate that both password and OTP authentication methods were used.
+     * The definition of particular values to be used in the amr Claim is beyond the scope of this specification.
+     * Parties using this claim will need to agree upon the meanings of the values used, which may be context-specific.
+     * The amr value is an array of case sensitive strings.
+     */
+    public static final String AUTHENTICATION_METHOD_REFERENCES = "amr";
+
+    /**
+     * A locally unique and never reassigned identifier within the Issuer for the End-User,
+     * which is intended to be consumed by the Client.
+     */
+    public static final String SUBJECT_IDENTIFIER = "sub"; // User Info
+
+    public static final String TOKEN_BINDING_HASH = "tbh"; // token binding hash
+
+    public static final String CNF = "cnf";
+    /**
+     * Authorized party - the party to which the ID Token was issued.
+     * If present, it must contain the OAuth 2.0 Client ID of this party.
+     * This Claim is only needed when the ID Token has a single audience value and that
+     * audience is different than the authorized party.
+     * It may be included even when the authorized party is the same as the sole audience.
+     */
+    public static final String AUTHORIZED_PARTY = "azp"; // ID Token
+    /**
+     * Authentication Context Class Reference.
+     * String specifying an Authentication Context Class Reference value that identifies the
+     * Authentication Context Class that the authentication performed satisfied.
+     */
+    public static final String AUTHENTICATION_CONTEXT_CLASS_REFERENCE = "acr"; // ID Token
+    /**
+     * String value used to associate a Client session with an ID Token, and to mitigate replay attacks.
+     * The value is passed through unmodified from the Authentication Request to the ID Token.
+     * If present in the ID Token, Clients must verify that the nonce Claim Value is equal to the value
+     * of the nonce parameter sent in the Authentication Request.
+     * If present in the Authentication Request, Authorization Servers must include a nonce Claim in the
+     * ID Token with the Claim Value being the nonce value sent in the Authentication Request.
+     * Authorization Servers should perform no other processing on nonce values used.
+     * The nonce value is a case sensitive string.
+     */
+    public static final String NONCE = "nonce";
+    /**
+     * Time when the End-User authentication occurred.
+     * Its value is a JSON number representing the number of seconds from 1970-01-01T0:0:0Z
+     * as measured in UTC until the date/time.
+     * When a max_age request is made or when auth_time is requested as an Essential Claim,
+     * then this Claim is required; otherwise, its inclusion is optional.
+     */
+    public static final String AUTHENTICATION_TIME = "auth_time";
+    public static final String ACCESS_TOKEN_HASH = "at_hash";
+    public static final String CODE_HASH = "c_hash";
+    public static final String STATE_HASH = "s_hash";
+
+    // User Info
+    /**
+     * End-User's full name in displayable form including all name parts.
+     */
+    public static final String NAME = "name";
+    /**
+     * Given name or first name of the End-User.
+     */
+    public static final String GIVEN_NAME = "given_name";
+    /**
+     * Surname or last name of the End-User.
+     */
+    public static final String FAMILY_NAME = "family_name";
+    /**
+     * Middle name of the End-User.
+     */
+    public static final String MIDDLE_NAME = "middle_name";
+    /**
+     * Casual name of the End-User.
+     * For instance, a nickname value of Mike might be returned alongside a given_name value of Michael.
+     */
+    public static final String NICKNAME = "nickname";
+    /**
+     * Shorthand name that the End-User wishes to be referred to at the RP, such as janedoe or j.doe.
+     */
+    public static final String PREFERRED_USERNAME = "preferred_username";
+    /**
+     * URL of the End-User's profile page.
+     */
+    public static final String PROFILE = "profile";
+    /**
+     * URL of the End-User's profile picture.
+     */
+    public static final String PICTURE = "picture";
+    /**
+     * URL of the End-User's web page or blog.
+     */
+    public static final String WEBSITE = "website";
+    /**
+     * The End-User's preferred e-mail address.
+     */
+    public static final String EMAIL = "email";
+    /**
+     * The End-User's preferred userName.
+     */
+    public static final String USER_NAME = "user_name";
+    /**
+     * True if the End-User's e-mail address has been verified; otherwise false.
+     */
+    public static final String EMAIL_VERIFIED = "email_verified";
+    /**
+     * The End-User's gender: Values defined by this specification are female and male.
+     * Other values MAY be used when neither of the defined values are applicable.
+     */
+    public static final String GENDER = "gender";
+    /**
+     * The End-User's birthday.
+     */
+    public static final String BIRTHDATE = "birthdate";
+    /**
+     * String from zoneinfo time zone database. For example, Europe/Paris or America/Los_Angeles.
+     */
+    public static final String ZONEINFO = "zoneinfo";
+    /**
+     * The End-User's locale, represented as a BCP47 (RFC5646) language tag.
+     * This is typically an ISO 639-1 Alpha-2 (ISO639‑1) language code in lowercase and an ISO 3166-1 Alpha-2 (ISO3166‑1)
+     * country code in uppercase, separated by a dash. For example, en-US or fr-CA.
+     */
+    public static final String LOCALE = "locale";
+    /**
+     * The End-User's preferred telephone number.
+     * E.164 is RECOMMENDED as the format of this Claim. For example, +1 (425) 555-1212 or +56 (2) 687 2400.
+     */
+    public static final String PHONE_NUMBER = "phone_number";
+    /**
+     * True if the End-User's phone number has been verified; otherwise false. When this Claim Value is true,
+     * this means that the OP took affirmative steps to ensure that this phone number was controlled by the
+     * End-User at the time the verification was performed. The means by which a phone number is verified is
+     * context-specific, and dependent upon the trust framework or contractual agreements within which the
+     * parties are operating. When true, the phone_number Claim MUST be in E.164 format and any extensions
+     * MUST be represented in RFC 3966 format.
+     */
+    public static final String PHONE_NUMBER_VERIFIED = "phone_number_verified";
+    /**
+     * The End-User's preferred address.
+     */
+    public static final String ADDRESS = "address";
+    /**
+     * Time the End-User's information was last updated.
+     */
+    public static final String UPDATED_AT = "updated_at";
+    /**
+     * The full mailing address, formatted for display or use with a mailing label.
+     */
+    public static final String ADDRESS_FORMATTED = "formatted";
+    /**
+     * The full street address component, which may include house number, street name, PO BOX,
+     * and multi-line extended street address information.
+     */
+    public static final String ADDRESS_STREET_ADDRESS = "street_address";
+    /**
+     * The city or locality component.
+     */
+    public static final String ADDRESS_LOCALITY = "locality";
+    /**
+     * The state, province, prefecture or region component.
+     */
+    public static final String ADDRESS_REGION = "region";
+    /**
+     * The zip code or postal code component.
+     */
+    public static final String ADDRESS_POSTAL_CODE = "postal_code";
+    /**
+     * The country name component.
+     */
+    public static final String ADDRESS_COUNTRY = "country";
+
+    // Custom attributes
+    public static final String OX_OPENID_CONNECT_VERSION = "oxOpenIDConnectVersion";
+
+    // CIBA
+    public static final String REFRESH_TOKEN_HASH = "urn:openid:params:jwt:claim:rt_hash";
+    public static final String AUTH_REQ_ID = "urn:openid:params:jwt:claim:auth_req_id";
+
+    /**
+     * The caller references the constants using <tt>JwtClaimName.TYPE</tt>,
+     * and so on. Thus, the caller should be prevented from constructing objects of
+     * this class, by declaring this private constructor.
+     */
+    private JwtClaimName() {
+        // this prevents even the native class from calling this constructor as well
+        throw new AssertionError();
+    }
+}
\ No newline at end of file
diff --git a/oxAuth/Model/src/main/java/org/gluu/oxauth/model/jwt/JwtClaimSet.java b/oxAuth/Model/src/main/java/org/gluu/oxauth/model/jwt/JwtClaimSet.java
new file mode 100644
index 00000000..af1d9385
--- /dev/null
+++ b/oxAuth/Model/src/main/java/org/gluu/oxauth/model/jwt/JwtClaimSet.java
@@ -0,0 +1,373 @@
+/*
+ * oxAuth is available under the MIT License (2008). See http://opensource.org/licenses/MIT for full text.
+ *
+ * Copyright (c) 2014, Gluu
+ */
+
+package org.gluu.oxauth.model.jwt;
+
+import com.google.common.collect.Lists;
+import org.gluu.oxauth.model.exception.InvalidJwtException;
+import org.gluu.oxauth.model.json.JsonApplier;
+import org.gluu.oxauth.model.util.Base64Util;
+import org.json.JSONArray;
+import org.json.JSONException;
+import org.json.JSONObject;
+
+import java.math.BigDecimal;
+import java.nio.charset.StandardCharsets;
+import java.util.*;
+
+/**
+ * @author Javier Rojas Blum
+ * @version January 3, 2018
+ */
+public abstract class JwtClaimSet {
+
+    private Map<String, Object> claims;
+
+    protected JwtClaimSet() {
+        claims = new LinkedHashMap<>();
+    }
+
+    protected JwtClaimSet(JSONObject jsonObject) {
+        this();
+        load(jsonObject);
+    }
+
+    protected JwtClaimSet(String base64JsonObject) throws InvalidJwtException {
+        this();
+        load(base64JsonObject);
+    }
+
+    public Set<String> keys() {
+        return claims.keySet();
+    }
+
+    public Object getClaim(String key) {
+        return claims.get(key);
+    }
+
+    public boolean hasClaim(String key) {
+        return getClaim(key) != null;
+    }
+
+    public String getClaimAsString(String key) {
+        Object claim = getClaim(key);
+
+        if (claim != null) {
+            return claim.toString();
+        } else {
+            return null;
+        }
+    }
+
+    public JSONObject getClaimAsJSON(String key) {
+        String claim = getClaimAsString(key);
+
+        try {
+            if (claim != null) {
+                JSONObject json = null;
+                json = new JSONObject(claim);
+                return json;
+            }
+        } catch (JSONException e) {
+            e.printStackTrace();
+        }
+
+        return null;
+    }
+
+    public List<String> getClaimAsStringList(String key) {
+        List<String> list = new ArrayList<>();
+        Object value = getClaim(key);
+
+        try {
+            if (value instanceof JSONArray) {
+                JSONArray jsonArray = (JSONArray) value;
+                for (int i = 0; i < jsonArray.length(); i++) {
+                    list.add(jsonArray.getString(i));
+                }
+            } else {
+                String claim = getClaimAsString(key);
+                if (claim != null) {
+                    list.add(claim);
+                }
+            }
+        } catch (JSONException e) {
+            // ignore
+        }
+
+        return list;
+    }
+
+    public Date getClaimAsDate(String key) {
+        Object claim = getClaim(key);
+
+        if (claim != null) {
+            if (claim instanceof Date) {
+                return (Date) claim;
+            } else if (claim instanceof Integer) {
+                final long c = (Integer) claim;
+                final long date = c * 1000;
+                return new Date(date);
+            } else if (claim instanceof Long) {
+                return new Date((Long) claim * 1000);
+            } else if (claim instanceof Double) {
+                final double c = (Double) claim;
+                final BigDecimal bigDecimal = BigDecimal.valueOf(c);
+
+                long claimLong = bigDecimal.longValue();
+                claimLong = claimLong * 1000;
+
+                return new Date(claimLong);
+            } else {
+                return null;
+            }
+        } else {
+            return null;
+        }
+    }
+
+    public Integer getClaimAsInteger(String key) {
+        Object claim = getClaim(key);
+
+        if (claim != null) {
+            if (claim instanceof Integer) {
+                return (Integer) claim;
+            } else {
+                return null;
+            }
+        } else {
+            return null;
+        }
+    }
+
+    public Long getClaimAsLong(String key) {
+        Object claim = getClaim(key);
+
+        if (claim != null) {
+            if (claim instanceof Long) {
+                return (Long) claim;
+            } else {
+                return null;
+            }
+        } else {
+            return null;
+        }
+    }
+
+    public Character getClaimAsCharacter(String key) {
+        Object claim = getClaim(key);
+
+        if (claim != null) {
+            if (claim instanceof Character) {
+                return (Character) claim;
+            } else {
+                return null;
+            }
+        } else {
+            return null;
+        }
+    }
+
+    @SuppressWarnings("java:S3776")
+    public void setClaimObject(String key, Object value, boolean overrideValue) {
+        if (value == null) {
+            setNullClaim(key);
+        } else if (value instanceof String) {
+            if (overrideValue) {
+                setClaim(key, (String) value);
+            } else {
+                Object currentValue = getClaim(key);
+                String valueAsString = (String) value;
+
+                if (currentValue instanceof String) {
+                    if (!currentValue.equals(value)) {
+                        setClaim(key, Lists.newArrayList(currentValue.toString(), valueAsString));
+                    } else {
+                        setClaim(key, (String) value);
+                    }
+                } else if (currentValue instanceof List) {
+                    List<String> currentValueAsList = (List) currentValue;
+                    if (!currentValueAsList.contains(valueAsString)) {
+                        currentValueAsList.add(valueAsString);
+                    }
+                }
+            }
+        } else if (value instanceof Date) {
+            setClaim(key, (Date) value);
+        } else if (value instanceof Boolean) {
+            setClaim(key, (Boolean) value);
+        } else if (value instanceof Integer) {
+            setClaim(key, (Integer) value);
+        } else if (value instanceof Long) {
+            setClaim(key, (Long) value);
+        } else if (value instanceof Character) {
+            setClaim(key, (Character) value);
+        } else if (value instanceof List) {
+            setClaim(key, (List) value);
+        } else if (value instanceof JwtSubClaimObject) {
+            setClaim(key, (JwtSubClaimObject) value);
+        } else if (value instanceof JSONObject) {
+            setClaim(key, (JSONObject) value);
+        } else if (value instanceof JSONArray) {
+            setClaim(key, (JSONArray) value);
+        } else {
+            throw new UnsupportedOperationException("Claim value is not supported, key: " + key + ", value :" + value);
+        }
+    }
+
+    public void setNullClaim(String key) {
+        claims.put(key, null);
+    }
+
+    public void setClaim(String key, String value) {
+        claims.put(key, value);
+    }
+
+    public void setClaim(String key, Date value) {
+        claims.put(key, value);
+    }
+
+    public void setClaim(String key, Boolean value) {
+        claims.put(key, value);
+    }
+
+    public void setClaim(String key, Integer value) {
+        claims.put(key, value);
+    }
+
+    public void setClaim(String key, Long value) {
+        claims.put(key, value);
+    }
+
+    public void setClaim(String key, Character value) {
+        claims.put(key, value);
+    }
+
+    @SuppressWarnings("java:S3740")
+    public void setClaim(String key, List values) {
+        claims.put(key, values);
+    }
+
+    public void setClaim(String key, JwtSubClaimObject subClaimObject) {
+        claims.put(key, subClaimObject);
+    }
+
+    public void setClaim(String key, JSONObject values) {
+        claims.put(key, values);
+    }
+
+    public void setClaim(String key, JSONArray values) {
+        claims.put(key, values);
+    }
+
+    public void setClaimFromJsonObject(String key, Object attribute) {
+        if (attribute == null) {
+            return;
+        }
+
+        if (attribute instanceof JSONArray) {
+            claims.put(key, JsonApplier.getStringList((JSONArray) attribute));
+        } else {
+            String value = (String) attribute;
+            claims.put(key, value);
+        }
+    }
+
+    public void removeClaim(String key) {
+        claims.remove(key);
+    }
+
+    @SuppressWarnings("java:S3740")
+    public JSONObject toJsonObject() throws InvalidJwtException {
+        JSONObject jsonObject = new JSONObject();
+
+        try {
+            for (Map.Entry<String, Object> claim : claims.entrySet()) {
+                if (claim.getValue() instanceof Date) {
+                    Date date = (Date) claim.getValue();
+                    jsonObject.put(claim.getKey(), date.getTime() / 1000);
+                } else if (claim.getValue() instanceof JwtSubClaimObject) {
+                    JwtSubClaimObject subClaimObject = (JwtSubClaimObject) claim.getValue();
+                    jsonObject.put(subClaimObject.getName(), subClaimObject.toJsonObject());
+                } else if (claim.getValue() instanceof List) {
+                    List claimObjectList = (List) claim.getValue();
+                    JSONArray claimsJSONArray = new JSONArray();
+                    for (Object claimObj : claimObjectList) {
+                        claimsJSONArray.put(claimObj);
+                    }
+                    jsonObject.put(claim.getKey(), claimsJSONArray);
+                } else {
+                    jsonObject.put(claim.getKey(), claim.getValue());
+                }
+            }
+        } catch (Exception e) {
+            throw new InvalidJwtException(e);
+        }
+
+        return jsonObject;
+    }
+
+    public String toBase64JsonObject() throws InvalidJwtException {
+        String jsonObjectString = toJsonString();
+        byte[] jsonObjectBytes = jsonObjectString.getBytes(StandardCharsets.UTF_8);
+        return Base64Util.base64urlencode(jsonObjectBytes);
+    }
+
+    public String toJsonString() throws InvalidJwtException {
+        JSONObject jsonObject = toJsonObject();
+        String jsonObjectString = jsonObject.toString();
+        jsonObjectString = jsonObjectString.replace("\\/", "/");
+
+        return jsonObjectString;
+    }
+
+    public Map<String, List<String>> toMap() throws InvalidJwtException {
+        Map<String, List<String>> map = new HashMap<>();
+
+        try {
+            for (Map.Entry<String, Object> claim : claims.entrySet()) {
+                String key = claim.getKey();
+                Object value = claim.getValue();
+
+                List<String> values = new ArrayList<>();
+                if (value instanceof JSONArray) {
+                    JSONArray jsonArray = (JSONArray) value;
+                    for (int i = 0; i < jsonArray.length(); i++) {
+                        values.add(jsonArray.getString(i));
+                    }
+                } else if (value != null) {
+                    values.add(value.toString());
+                }
+
+                map.put(key, values);
+            }
+        } catch (JSONException e) {
+            throw new InvalidJwtException(e);
+        }
+
+        return map;
+    }
+
+    public void load(JSONObject jsonObject) {
+        claims.clear();
+
+        for (Iterator<String> it = jsonObject.keys(); it.hasNext(); ) {
+            String key = it.next();
+            Object value = jsonObject.opt(key);
+
+            claims.put(key, value);
+        }
+    }
+
+    public void load(String base64JsonObject) throws InvalidJwtException {
+        try {
+            String jsonObjectString = new String(Base64Util.base64urldecode(base64JsonObject), StandardCharsets.UTF_8);
+            load(new JSONObject(jsonObjectString));
+        } catch (Exception e) {
+            throw new InvalidJwtException(e);
+        }
+    }
+}
\ No newline at end of file
diff --git a/oxAuth/Model/src/main/java/org/gluu/oxauth/model/jwt/JwtClaims.java b/oxAuth/Model/src/main/java/org/gluu/oxauth/model/jwt/JwtClaims.java
new file mode 100644
index 00000000..8f29858f
--- /dev/null
+++ b/oxAuth/Model/src/main/java/org/gluu/oxauth/model/jwt/JwtClaims.java
@@ -0,0 +1,205 @@
+/*
+ * oxAuth is available under the MIT License (2008). See http://opensource.org/licenses/MIT for full text.
+ *
+ * Copyright (c) 2014, Gluu
+ */
+
+package org.gluu.oxauth.model.jwt;
+
+import com.google.common.collect.Lists;
+import org.apache.commons.lang.StringUtils;
+import org.gluu.oxauth.model.exception.InvalidJwtException;
+import org.json.JSONObject;
+
+import java.net.URI;
+import java.util.Collection;
+import java.util.Date;
+import java.util.List;
+import java.util.UUID;
+
+import static org.gluu.oxauth.model.jwt.JwtClaimName.*;
+
+/**
+ * @author Javier Rojas Blum Date: 11.09.2012
+ */
+public class JwtClaims extends JwtClaimSet {
+
+    public JwtClaims() {
+        super();
+    }
+
+    public JwtClaims(JSONObject jsonObject) {
+        super(jsonObject);
+    }
+
+    public JwtClaims(String base64JsonObject) throws InvalidJwtException {
+        super(base64JsonObject);
+    }
+
+    /**
+     * Identifies the expiration time on or after which the token MUST NOT be accepted for processing.
+     *
+     * @param expirationTime The expiration time.
+     */
+    public void setExpirationTime(Date expirationTime) {
+        setClaim(EXPIRATION_TIME, expirationTime);
+    }
+
+    /**
+     * Identifies the time before which the token MUST NOT be accepted for processing.
+     * The processing of the "nbf" claim requires that the current date/time MUST be after or equal to the not-before
+     * date/time listed in the "nbf" claim.
+     *
+     * @param notBefore The not-before date.
+     */
+    public void setNotBefore(Date notBefore) {
+        setClaim(NOT_BEFORE, notBefore);
+    }
+
+    /**
+     * Identifies the time at which the JWT was issued.
+     * This claim can be used to determine the age of the token.
+     *
+     * @param issuedAt The issue date.
+     */
+    public void setIssuedAt(Date issuedAt) {
+        setClaim(ISSUED_AT, issuedAt);
+    }
+
+    /**
+     * Identifies the principal that issued the JWT.
+     *
+     * @param issuer The issuer of the JWT.
+     */
+    public void setIssuer(String issuer) {
+        setClaim(ISSUER, issuer);
+    }
+
+    /**
+     * Identifies the principal that issued the JWT.
+     *
+     * @param issuer The issuer of the JWT.
+     */
+    public void setIssuer(URI issuer) {
+        if (issuer == null) {
+            setNullClaim(ISSUER);
+        } else {
+            setClaim(ISSUER, issuer.toString());
+        }
+    }
+
+    public void addAudience(String audience) {
+        if (StringUtils.isBlank(audience)) {
+            return;
+        }
+
+        if (!hasClaim(AUDIENCE)) {
+            setAudience(audience);
+            return;
+        }
+
+        List<String> value = Lists.newArrayList();
+        Object currentAudience = getClaim(AUDIENCE);
+        if (currentAudience instanceof String) {
+            value.add((String) currentAudience);
+        } else if (currentAudience instanceof Collection) {
+            value.addAll((Collection) currentAudience);
+        }
+        if (!value.contains(audience)) {
+            value.add(audience);
+        }
+
+        if (value.size() == 1) {
+            setAudience(value.iterator().next());
+            return;
+        }
+
+        setClaim(AUDIENCE, value);
+    }
+
+
+    /**
+     * Identifies the audience that the JWT is intended for.
+     * The principal intended to process the JWT MUST be identified with the value of the audience claim.
+     * If the principal processing the claim does not identify itself with the identifier in the "aud" claim
+     * value then the JWT MUST be rejected.
+     *
+     * @param audience The audience of the JWT.
+     */
+    public void setAudience(String audience) {
+        setClaim(AUDIENCE, audience);
+    }
+
+    /**
+     * Identifies the audience that the JWT is intended for.
+     * The principal intended to process the JWT MUST be identified with the value of the audience claim.
+     * If the principal processing the claim does not identify itself with the identifier in the "aud" claim
+     * value then the JWT MUST be rejected.
+     *
+     * @param audience The audience of the JWT.
+     */
+    public void setAudience(URI audience) {
+        if (audience == null) {
+            setNullClaim(AUDIENCE);
+        } else {
+            setClaim(AUDIENCE, audience.toString());
+        }
+    }
+
+    /**
+     * Identifies the subject of the JWT.
+     *
+     * @param subjectIdentifier The subject of the JWT.
+     */
+    public void setSubjectIdentifier(String subjectIdentifier) {
+        setClaim(SUBJECT_IDENTIFIER, subjectIdentifier);
+    }
+
+    /**
+     * Identifies the subject of the JWT.
+     *
+     * @param subjectIdentifier The subject of the JWT.
+     */
+    public void setSubjectIdentifier(URI subjectIdentifier) {
+        if (subjectIdentifier == null) {
+            setNullClaim(SUBJECT_IDENTIFIER);
+        } else {
+            setClaim(SUBJECT_IDENTIFIER, subjectIdentifier.toString());
+        }
+    }
+
+    /**
+     * Provides a unique identifier for the JWT.
+     *
+     * @param jwtId Unique identifier for the JWT.
+     */
+    public void setJwtId(String jwtId) {
+        setClaim(JWT_ID, jwtId);
+    }
+
+    /**
+     * Provides a unique identifier for the JWT.
+     *
+     * @param jwtId Unique identifier for the JWT.
+     */
+    public void setJwtId(UUID jwtId) {
+        if (jwtId == null) {
+            setNullClaim(JWT_ID);
+        } else {
+            setClaim(JWT_ID, jwtId.toString());
+        }
+    }
+
+    /**
+     * Declare a type for the contents of this JWT Claims Set.
+     *
+     * @param type The type of the JWT claims set.
+     */
+    public void setType(JwtType type) {
+        if (type == null) {
+            setNullClaim(TYPE);
+        } else {
+            setClaim(TYPE, type.toString());
+        }
+    }
+}
\ No newline at end of file
diff --git a/oxAuth/Model/src/main/java/org/gluu/oxauth/model/jwt/JwtHeader.java b/oxAuth/Model/src/main/java/org/gluu/oxauth/model/jwt/JwtHeader.java
new file mode 100644
index 00000000..c4ab4a96
--- /dev/null
+++ b/oxAuth/Model/src/main/java/org/gluu/oxauth/model/jwt/JwtHeader.java
@@ -0,0 +1,195 @@
+/*
+ * oxAuth is available under the MIT License (2008). See http://opensource.org/licenses/MIT for full text.
+ *
+ * Copyright (c) 2014, Gluu
+ */
+
+package org.gluu.oxauth.model.jwt;
+
+import org.gluu.oxauth.model.crypto.encryption.BlockEncryptionAlgorithm;
+import org.gluu.oxauth.model.crypto.encryption.KeyEncryptionAlgorithm;
+import org.gluu.oxauth.model.crypto.signature.SignatureAlgorithm;
+import org.gluu.oxauth.model.exception.InvalidJwtException;
+import org.json.JSONObject;
+
+import static org.gluu.oxauth.model.jwt.JwtHeaderName.*;
+
+/**
+ * @author Javier Rojas Blum
+ * @version June 15, 2016
+ */
+public class JwtHeader extends JwtClaimSet {
+
+    public JwtHeader() {
+        super();
+    }
+
+    public JwtHeader(JSONObject jsonObject) {
+        super(jsonObject);
+    }
+
+    public JwtHeader(String base64JsonObject) throws InvalidJwtException {
+        super(base64JsonObject);
+    }
+
+    public static JwtHeader instance() {
+        return new JwtHeader();
+    }
+
+    /**
+     * Declares the type of this object.
+     *
+     * @param type The type of this object.
+     */
+    public JwtHeader setType(JwtType type) {
+        if (type == null) {
+            setNullClaim(TYPE);
+        } else {
+            setClaim(TYPE, type.toString());
+        }
+        return this;
+    }
+
+    public SignatureAlgorithm getSignatureAlgorithm() {
+        String alg = getClaimAsString(ALGORITHM);
+        return SignatureAlgorithm.fromString(alg);
+    }
+
+    /**
+     * Identifies the cryptographic algorithm used to secure the JWS.
+     *
+     * @param algorithm The cryptographic algorithm.
+     */
+    public JwtHeader setAlgorithm(SignatureAlgorithm algorithm) {
+        if (algorithm == null) {
+            setNullClaim(ALGORITHM);
+        } else {
+            setClaim(ALGORITHM, algorithm.toString());
+        }
+        return this;
+    }
+
+    /**
+     * Identifies the cryptographic algorithm used to encrypt the JWE.
+     *
+     * @param algorithm The cryptographic algorithm.
+     */
+    public JwtHeader setAlgorithm(KeyEncryptionAlgorithm algorithm) {
+        if (algorithm == null) {
+            setNullClaim(ALGORITHM);
+        } else {
+            setClaim(ALGORITHM, algorithm.toString());
+        }
+        return this;
+    }
+
+    public String getKeyId() {
+        String keyId = getClaimAsString(KEY_ID);
+        return keyId;
+    }
+
+    /**
+     * Indicates which key was used to secure/encrypt the JWS/JWE.
+     *
+     * @param keyId The key id.
+     */
+    public JwtHeader setKeyId(String keyId) {
+        setClaim(KEY_ID, keyId);
+        return this;
+    }
+
+    /**
+     * In a JWS it is used to declare the type of the secured content (the Payload).
+     * In a JWE it is used to declare the type of the encrypted content (the Plaintext).
+     *
+     * @param contentType The content type.
+     */
+    public void setContentType(JwtType contentType) {
+        if (contentType == null) {
+            setNullClaim(CONTENT_TYPE);
+        } else {
+            setClaim(CONTENT_TYPE, contentType.toString());
+        }
+    }
+
+    public JwtType getContentType() {
+        return JwtType.fromString(getClaimAsString(CONTENT_TYPE));
+    }
+
+    /**
+     * Identifies the block encryption algorithm used to encrypt the Plaintext to produce the Cipher Text.
+     *
+     * @param encryptionMethod The JWE Encryption Method
+     */
+    public void setEncryptionMethod(BlockEncryptionAlgorithm encryptionMethod) {
+        if (encryptionMethod == null) {
+            setNullClaim(ENCRYPTION_METHOD);
+        } else {
+            setClaim(ENCRYPTION_METHOD, encryptionMethod.toString());
+        }
+    }
+
+    public BlockEncryptionAlgorithm getEncryptionMethod() {
+        return BlockEncryptionAlgorithm.fromName(getClaimAsString(ENCRYPTION_METHOD));
+    }
+
+    /**
+     * Value created by the originator for the use in key agreement algorithms.
+     *
+     * @param ephemeralPublicKey The Ephemeral Public Key.
+     */
+    public void setEphemeralPublicKey(String ephemeralPublicKey) {
+        setClaim(EPHEMERAL_PUBLIC_KEY, ephemeralPublicKey);
+    }
+
+    /**
+     * The "zip" (compression algorithm) applied to the Plaintext before encryption, if any.
+     * If present, the value of the "zip" header parameter MUST be the case sensitive string "DEF".
+     * Compression is performed with the DEFLATE algorithm.
+     *
+     * @param compressionAlgorithm The compression algorithm.
+     */
+    public void setCompressionAlgorithm(String compressionAlgorithm) {
+        setClaim(COMPRESSION_ALGORITHM, compressionAlgorithm);
+    }
+
+    /**
+     * The "apu" (agreement PartyUInfo) value for key agreement algorithms using it (such as "ECDH-ES"),
+     * represented as a base64url encoded string.
+     *
+     * @param agreementPartyUInfo The Agreement PartyUInfo.
+     */
+    public void setAgreementPartyUInfo(String agreementPartyUInfo) {
+        setClaim(AGREEMENT_PARTY_U_INFO, agreementPartyUInfo);
+    }
+
+    /**
+     * The "apv" (agreement PartyVInfo) value for key agreement algorithms using it (such as "ECDH-ES"),
+     * represented as a base64url encoded string.
+     *
+     * @param agreementPartyVInfo The Agreement PartyVInfo.
+     */
+    public void setAgreementPartyVInfo(String agreementPartyVInfo) {
+        setClaim(AGREEMENT_PARTY_V_INFO, agreementPartyVInfo);
+    }
+
+    /**
+     * The "epu" (encryption PartyUInfo) value for plaintext encryption algorithms using it
+     * (such as "A128CBC+HS256"), represented as a base64url encoded string.
+     *
+     * @param encryptionPartyUInfo The Encryption PartyUInfo.
+     */
+    public void setEncryptionPartyUInfo(String encryptionPartyUInfo) {
+        setClaim(ENCRYPTION_PARTY_U_INFO, encryptionPartyUInfo);
+    }
+
+    /**
+     * The "epv" (encryption PartyVInfo) value for plaintext encryption algorithms using it
+     * (such as "A128CBC+HS256"), represented as a base64url encoded string.
+     *
+     * @param encryptionPartyVInfo The Encryption PartyVInfo.
+     */
+    public void setEncryptionPartyVInfo(String encryptionPartyVInfo) {
+        setClaim(ENCRYPTION_PARTY_V_INFO, encryptionPartyVInfo);
+    }
+}
\ No newline at end of file
diff --git a/oxAuth/Model/src/main/java/org/gluu/oxauth/model/jwt/JwtHeaderName.java b/oxAuth/Model/src/main/java/org/gluu/oxauth/model/jwt/JwtHeaderName.java
new file mode 100644
index 00000000..713d94e7
--- /dev/null
+++ b/oxAuth/Model/src/main/java/org/gluu/oxauth/model/jwt/JwtHeaderName.java
@@ -0,0 +1,35 @@
+/*
+ * oxAuth is available under the MIT License (2008). See http://opensource.org/licenses/MIT for full text.
+ *
+ * Copyright (c) 2014, Gluu
+ */
+
+package org.gluu.oxauth.model.jwt;
+
+/**
+ * @author Javier Rojas Blum Date: 11.09.2012
+ */
+public final class JwtHeaderName {
+
+    public static final String TYPE = "typ";
+    public static final String ALGORITHM = "alg";
+    public static final String KEY_ID = "kid";
+    public static final String CONTENT_TYPE = "cty";
+    public static final String ENCRYPTION_METHOD = "enc";
+    public static final String EPHEMERAL_PUBLIC_KEY = "epk";
+    public static final String COMPRESSION_ALGORITHM = "zip";
+    public static final String AGREEMENT_PARTY_U_INFO = "apu";
+    public static final String AGREEMENT_PARTY_V_INFO = "apv";
+    public static final String ENCRYPTION_PARTY_U_INFO = "epu";
+    public static final String ENCRYPTION_PARTY_V_INFO = "epv";
+
+    /**
+     * The caller references the constants using <tt>JwtClaimName.TYPE</tt>,
+     * and so on. Thus, the caller should be prevented from constructing objects of
+     * this class, by declaring this private constructor.
+     */
+    private JwtHeaderName() {
+        // this prevents even the native class from calling this constructor as well
+        throw new AssertionError();
+    }
+}
diff --git a/oxAuth/Model/src/main/java/org/gluu/oxauth/model/jwt/JwtStateClaimName.java b/oxAuth/Model/src/main/java/org/gluu/oxauth/model/jwt/JwtStateClaimName.java
new file mode 100644
index 00000000..1277052b
--- /dev/null
+++ b/oxAuth/Model/src/main/java/org/gluu/oxauth/model/jwt/JwtStateClaimName.java
@@ -0,0 +1,106 @@
+/*
+ * oxAuth is available under the MIT License (2008). See http://opensource.org/licenses/MIT for full text.
+ *
+ * Copyright (c) 2014, Gluu
+ */
+
+package org.gluu.oxauth.model.jwt;
+
+/**
+ * @author Javier Rojas Blum
+ * @version May 3, 2017
+ */
+public interface JwtStateClaimName {
+
+    /**
+     * String containing a verifiable identifier for the browser session,
+     * that cannot be guessed by a third party.
+     * The verification of this element by the client protects it from
+     * accepting authorization responses generated in response to forged
+     * requests generated by third parties.
+     */
+    public static final String RFP = "rfp";
+
+    /**
+     * Identifier of the key used to sign this state token at the issuer.
+     * Identifier of the key used to encrypt this JWT state token at the issuer.
+     */
+    public static final String KID = "kid";
+
+    /**
+     * Timestamp of when this Authorization Request was issued.
+     */
+    public static final String IAT = "iat";
+
+    /**
+     * The expiration time claim identifies the expiration time on or after which
+     * the JWT MUST NOT be accepted for processing.
+     * The processing of the "exp" claim requires that the current date/time MUST
+     * be before the expiration date/time listed in the "exp" claim.
+     * Implementers MAY provide for some small leeway, usually no more than a
+     * few minutes, to account for clock skew.
+     * Its value MUST be a number containing an IntDate value.
+     */
+    public static final String EXP = "exp";
+
+    /**
+     * String identifying the party that issued this state value.
+     */
+    public static final String ISS = "iss";
+
+    /**
+     * String identifying the client that this state value is intended for.
+     */
+    public static final String AUD = "aud";
+
+    /**
+     * URI containing the location the user agent is to be redirected to after authorization.
+     */
+    public static final String TARGET_LINK_URI = "target_link_uri";
+
+    /**
+     * String identifying the authorization server that this request was sent to.
+     */
+    public static final String AS = "as";
+
+    /**
+     * The "jti" (JWT ID) claim provides a unique identifier for the JWT.
+     * The identifier value MUST be assigned in a manner that ensures that
+     * there is a negligible probability that the same value will be
+     * accidentally assigned to a different data object.
+     * The "jti" claim can be used to prevent the JWT from being replayed.
+     * The "jti" value is a case-sensitive string.
+     */
+    public static final String JTI = "jti";
+
+    /**
+     * Access Token hash value. Its value is the base64url encoding of the left-most half
+     * of the hash of the octets of the ASCII representation of the "access_token" value,
+     * where the hash algorithm used is the hash algorithm used in the "alg" parameter of
+     * the State Token's JWS header.
+     * For instance, if the "alg" is "RS256", hash the "access_token" value with SHA-256,
+     * then take the left-most 128 bits and base64url encode them.
+     * The "at_hash" value is a case sensitive string.
+     * This is REQUIRED if the JWT [RFC7519] state token is being produced by the AS and
+     * issued with a "access_token" in the authorization response.
+     */
+    public static final String AT_HASH = "at_hash";
+
+    /**
+     * Code hash value. Its value is the base64url encoding of the left-most half of the
+     * hash of the octets of the ASCII representation of the "code" value, where the hash
+     * algorithm used is the hash algorithm used in the "alg" header parameter of the
+     * State Token's JWS [RFC7515] header.
+     * For instance, if the "alg" is "HS512", hash the "code" value with SHA-512, then
+     * take the left-most 256 bits and base64url encode them.
+     * The "c_hash" value is a case sensitive string.
+     * This is REQUIRED if the JWT [RFC7519] state token is being produced by the AS and
+     * issued with a "code" in the authorization response.
+     */
+    public static final String C_HASH = "c_hash";
+
+    /**
+     * Additional claims
+     */
+    public static final String ADDITIONAL_CLAIMS = "additional_claims";
+}
diff --git a/oxAuth/Model/src/main/java/org/gluu/oxauth/model/jwt/JwtSubClaimObject.java b/oxAuth/Model/src/main/java/org/gluu/oxauth/model/jwt/JwtSubClaimObject.java
new file mode 100644
index 00000000..0ae5d46f
--- /dev/null
+++ b/oxAuth/Model/src/main/java/org/gluu/oxauth/model/jwt/JwtSubClaimObject.java
@@ -0,0 +1,36 @@
+package org.gluu.oxauth.model.jwt;
+
+import java.util.Map;
+
+/**
+ * @author Javier Rojas Blum
+ * @version Jun 10, 2015
+ */
+public class JwtSubClaimObject extends JwtClaimSet {
+
+    private String name;
+
+    public String getName() {
+        return name;
+    }
+
+    public void setName(String name) {
+        this.name = name;
+    }
+
+    public static JwtSubClaimObject fromMap(Map<String, String> map) {
+        JwtSubClaimObject result = new JwtSubClaimObject();
+        for (Map.Entry<String, String> entry : map.entrySet()) {
+            result.setClaim(entry.getKey(), entry.getValue());
+        }
+        return result;
+    }
+
+    public static JwtSubClaimObject fromBooleanMap(Map<String, Boolean> map) {
+        JwtSubClaimObject result = new JwtSubClaimObject();
+        for (Map.Entry<String, Boolean> entry : map.entrySet()) {
+            result.setClaim(entry.getKey(), entry.getValue());
+        }
+        return result;
+    }
+}
diff --git a/oxAuth/Model/src/main/java/org/gluu/oxauth/model/jwt/JwtType.java b/oxAuth/Model/src/main/java/org/gluu/oxauth/model/jwt/JwtType.java
new file mode 100644
index 00000000..ff837a01
--- /dev/null
+++ b/oxAuth/Model/src/main/java/org/gluu/oxauth/model/jwt/JwtType.java
@@ -0,0 +1,48 @@
+/*
+ * oxAuth is available under the MIT License (2008). See http://opensource.org/licenses/MIT for full text.
+ *
+ * Copyright (c) 2014, Gluu
+ */
+
+package org.gluu.oxauth.model.jwt;
+
+/**
+ * @author Javier Rojas Blum
+ * @version December 17, 2015
+ */
+public enum JwtType {
+
+    JWT("JWT");
+
+    private final String paramName;
+
+    JwtType(String paramName) {
+        this.paramName = paramName;
+    }
+
+    /**
+     * Returns the corresponding {@link JwtType} for a parameter.
+     *
+     * @param param The parameter.
+     * @return The corresponding JWT Type if found, otherwise <code>null</code>.
+     */
+    public static JwtType fromString(String param) {
+        if (param != null) {
+            for (JwtType t : JwtType.values()) {
+                if (param.equals(t.toString())) {
+                    return t;
+                }
+            }
+        }
+        return null;
+    }
+
+    public String getParamName() {
+        return paramName;
+    }
+
+    @Override
+    public String toString() {
+        return paramName;
+    }
+}
\ No newline at end of file
diff --git a/oxAuth/Model/src/main/java/org/gluu/oxauth/model/jwt/PureJwt.java b/oxAuth/Model/src/main/java/org/gluu/oxauth/model/jwt/PureJwt.java
new file mode 100644
index 00000000..dd97df7b
--- /dev/null
+++ b/oxAuth/Model/src/main/java/org/gluu/oxauth/model/jwt/PureJwt.java
@@ -0,0 +1,110 @@
+/*
+ * oxAuth is available under the MIT License (2008). See http://opensource.org/licenses/MIT for full text.
+ *
+ * Copyright (c) 2014, Gluu
+ */
+
+package org.gluu.oxauth.model.jwt;
+
+import org.apache.commons.lang.StringUtils;
+import org.gluu.oxauth.model.util.Base64Util;
+import org.gluu.oxauth.model.util.Util;
+
+import java.io.UnsupportedEncodingException;
+
+/**
+ * @author Yuriy Zabrovarnyy
+ * @author Javier Rojas Blum
+ * @version July 31, 2016
+ */
+
+public class PureJwt {
+
+    private final String m_encodedHeader;
+    private final String m_encodedPayload;
+    private final String m_encodedSignature;
+    private final String m_signingInput;
+
+    private final String m_decodedHeader;
+    private final String m_decodedPayload;
+
+    public PureJwt(String p_encodedHeader, String p_encodedPayload, String p_encodedSignature) {
+
+        m_encodedHeader = p_encodedHeader;
+        m_encodedPayload = p_encodedPayload;
+        m_encodedSignature = p_encodedSignature;
+        m_signingInput = m_encodedHeader + "." + m_encodedPayload;
+
+        String decodedPayloadTemp = null;
+        String decodedHeaderTemp = null;
+        try {
+            decodedHeaderTemp = new String(Base64Util.base64urldecode(p_encodedHeader), Util.UTF8_STRING_ENCODING);
+            decodedPayloadTemp = new String(Base64Util.base64urldecode(p_encodedPayload), Util.UTF8_STRING_ENCODING);
+        } catch (UnsupportedEncodingException e) {
+            e.printStackTrace();
+        }
+        m_decodedHeader = decodedHeaderTemp;
+        m_decodedPayload = decodedPayloadTemp;
+    }
+
+    public static PureJwt parse(String p_encodedString) {
+        if (StringUtils.isNotBlank(p_encodedString)) {
+            String[] jwtParts = p_encodedString.split("\\.");
+            if (jwtParts.length == 3) {
+                return new PureJwt(jwtParts[0], jwtParts[1], jwtParts[2]);
+            } else if (jwtParts.length == 2) {
+                return new PureJwt(jwtParts[0], jwtParts[1], "");
+            }
+        }
+        return null;
+    }
+
+    public String getDecodedHeader() {
+        return m_decodedHeader;
+    }
+
+    public String getDecodedPayload() {
+        return m_decodedPayload;
+    }
+
+    public String getSigningInput() {
+        return m_signingInput;
+    }
+
+    public String getEncodedHeader() {
+        return m_encodedHeader;
+    }
+
+    public String getEncodedPayload() {
+        return m_encodedPayload;
+    }
+
+    public String getEncodedSignature() {
+        return m_encodedSignature;
+    }
+
+    @Override
+    public boolean equals(Object o) {
+        if (this == o) return true;
+        if (o == null || getClass() != o.getClass()) return false;
+
+        PureJwt pureJwt = (PureJwt) o;
+
+        if (m_encodedHeader != null ? !m_encodedHeader.equals(pureJwt.m_encodedHeader) : pureJwt.m_encodedHeader != null)
+            return false;
+        if (m_encodedPayload != null ? !m_encodedPayload.equals(pureJwt.m_encodedPayload) : pureJwt.m_encodedPayload != null)
+            return false;
+        if (m_encodedSignature != null ? !m_encodedSignature.equals(pureJwt.m_encodedSignature) : pureJwt.m_encodedSignature != null)
+            return false;
+
+        return true;
+    }
+
+    @Override
+    public int hashCode() {
+        int result = m_encodedHeader != null ? m_encodedHeader.hashCode() : 0;
+        result = 31 * result + (m_encodedPayload != null ? m_encodedPayload.hashCode() : 0);
+        result = 31 * result + (m_encodedSignature != null ? m_encodedSignature.hashCode() : 0);
+        return result;
+    }
+}
diff --git a/oxAuth/Model/src/main/java/org/gluu/oxauth/model/register/ApplicationType.java b/oxAuth/Model/src/main/java/org/gluu/oxauth/model/register/ApplicationType.java
new file mode 100644
index 00000000..5d1339a9
--- /dev/null
+++ b/oxAuth/Model/src/main/java/org/gluu/oxauth/model/register/ApplicationType.java
@@ -0,0 +1,68 @@
+/*
+ * oxAuth is available under the MIT License (2008). See http://opensource.org/licenses/MIT for full text.
+ *
+ * Copyright (c) 2014, Gluu
+ */
+
+package org.gluu.oxauth.model.register;
+
+import com.fasterxml.jackson.annotation.JsonCreator;
+import com.fasterxml.jackson.annotation.JsonValue;
+
+/**
+ * @author Javier Rojas Blum Date: 01.12.2012
+ */
+public enum ApplicationType {
+
+    /**
+     * Clients incapable of maintaining the confidentiality of their credentials
+     * (e.g. clients executing on the resource owner's device such as an
+     * installed native application or a web browser-based application), and
+     * incapable of secure client authentication via any other mean.
+     */
+    NATIVE("native"),
+
+    /**
+     * Clients capable of maintaining the confidentiality of their credentials
+     * (e.g. client implemented on a secure server with restricted access to the
+     * client credentials), or capable of secure client authentication using
+     * other means.
+     */
+    WEB("web");
+
+    private final String paramName;
+
+    private ApplicationType(String paramName) {
+        this.paramName = paramName;
+    }
+
+    /**
+     * Returns the corresponding {@link ApplicationType} from a given string.
+     * The default if not specified is web.
+     *
+     * @param param The string value to convert.
+     * @return The corresponding {@link ApplicationType}, otherwise <code>null</code>.
+     */
+    @JsonCreator
+    public static ApplicationType fromString(String param) {
+        if (param != null) {
+            for (ApplicationType at : ApplicationType.values()) {
+                if (param.equals(at.paramName)) {
+                    return at;
+                }
+            }
+        }
+        return WEB;
+    }
+
+    /**
+     * Returns a string representation of the object. In this case the parameter name.
+     *
+     * @return The string representation of the object.
+     */
+    @Override
+    @JsonValue
+    public String toString() {
+        return paramName;
+    }
+}
\ No newline at end of file
diff --git a/oxAuth/Model/src/main/java/org/gluu/oxauth/model/register/RegisterErrorResponseType.java b/oxAuth/Model/src/main/java/org/gluu/oxauth/model/register/RegisterErrorResponseType.java
new file mode 100644
index 00000000..f2451806
--- /dev/null
+++ b/oxAuth/Model/src/main/java/org/gluu/oxauth/model/register/RegisterErrorResponseType.java
@@ -0,0 +1,97 @@
+/*
+ * oxAuth is available under the MIT License (2008). See http://opensource.org/licenses/MIT for full text.
+ *
+ * Copyright (c) 2014, Gluu
+ */
+
+package org.gluu.oxauth.model.register;
+
+import org.gluu.oxauth.model.error.IErrorType;
+
+/**
+ * Error codes for register error responses.
+ *
+ * @author Javier Rojas Blum
+ * @version 0.9 May 18, 2015
+ */
+public enum RegisterErrorResponseType implements IErrorType {
+
+    /**
+     * Value of one or more redirect_uris is invalid.
+     */
+    INVALID_REDIRECT_URI("invalid_redirect_uri"),
+
+    /**
+     * Value of one or more claims_redirect_uris is invalid.
+     */
+    INVALID_CLAIMS_REDIRECT_URI("invalid_claims_redirect_uri"),
+
+    /**
+     * The value of one of the Client Metadata fields is invalid and the server has rejected this request.
+     * Note that an Authorization Server MAY choose to substitute a valid value for any requested parameter
+     * of a Client's Metadata.
+     */
+    INVALID_CLIENT_METADATA("invalid_client_metadata"),
+    /**
+     * The access token provided is expired, revoked, malformed, or invalid for other reasons.
+     */
+    INVALID_TOKEN("invalid_token"),
+
+    /**
+     * Value of logout_uri is invalid.
+     */
+    INVALID_LOGOUT_URI("invalid_logout_uri"),
+
+    /**
+     * Invalid software statement.
+     */
+    INVALID_SOFTWARE_STATEMENT("invalid_software_statement"),
+
+    /**
+     * The authorization server denied the request.
+     */
+    ACCESS_DENIED("access_denied");
+
+    private final String paramName;
+
+    private RegisterErrorResponseType(String paramName) {
+        this.paramName = paramName;
+    }
+
+    /**
+     * Return the corresponding enumeration from a string parameter.
+     *
+     * @param param The parameter to be match.
+     * @return The <code>enumeration</code> if found, otherwise
+     * <code>null</code>.
+     */
+    public static RegisterErrorResponseType fromString(String param) {
+        if (param != null) {
+            for (RegisterErrorResponseType err : RegisterErrorResponseType
+                    .values()) {
+                if (param.equals(err.paramName)) {
+                    return err;
+                }
+            }
+        }
+        return null;
+    }
+
+    /**
+     * Returns a string representation of the object. In this case, the lower case code of the error.
+     */
+    @Override
+    public String toString() {
+        return paramName;
+    }
+
+    /**
+     * Gets error parameter.
+     *
+     * @return error parameter
+     */
+    @Override
+    public String getParameter() {
+        return paramName;
+    }
+}
diff --git a/oxAuth/Model/src/main/java/org/gluu/oxauth/model/register/RegisterRequestParam.java b/oxAuth/Model/src/main/java/org/gluu/oxauth/model/register/RegisterRequestParam.java
new file mode 100644
index 00000000..a17c13c1
--- /dev/null
+++ b/oxAuth/Model/src/main/java/org/gluu/oxauth/model/register/RegisterRequestParam.java
@@ -0,0 +1,391 @@
+/*
+ * oxAuth is available under the MIT License (2008). See http://opensource.org/licenses/MIT for full text.
+ *
+ * Copyright (c) 2014, Gluu
+ */
+
+package org.gluu.oxauth.model.register;
+
+import org.apache.commons.lang.StringUtils;
+
+/**
+ * Listed all standard parameters involved in client registration request.
+ *
+ * @author Yuriy Zabrovarnyy
+ * @author Javier Rojas Blum
+ * @version August 20, 2019
+ */
+
+public enum RegisterRequestParam {
+
+    /**
+     * Array of redirect URIs values used in the Authorization Code and Implicit grant types. One of the these
+     * registered redirect URI values must match the Scheme, Host, and Path segments of the redirect_uri parameter
+     * value used in each Authorization Request.
+     */
+    REDIRECT_URIS("redirect_uris"),
+
+    /**
+     * UMA2 : Array of The Claims Redirect URIs to which the client wishes the authorization server to direct
+     * the requesting party's user agent after completing its interaction.
+     * The URI MUST be absolute, MAY contain an application/x-www-form-urlencoded-formatted query parameter component
+     * that MUST be retained when adding additional parameters, and MUST NOT contain a fragment component.
+     * The client SHOULD pre-register its claims_redirect_uri with the authorization server, and the authorization server
+     * SHOULD require all clients to pre-register their claims redirection endpoints. Claims redirection URIs
+     * are different from the redirection URIs defined in [RFC6749] in that they are intended for the exclusive use
+     * of requesting parties and not resource owners. Therefore, authorization servers MUST NOT redirect requesting parties
+     * to pre-registered redirection URIs defined in [RFC6749] unless such URIs are also pre-registered specifically as
+     * claims redirection URIs. If the URI is pre-registered, this URI MUST exactly match one of the pre-registered claims
+     * redirection URIs, with the matching performed as described in Section 6.2.1 of [RFC3986] (Simple String Comparison).
+     */
+    CLAIMS_REDIRECT_URIS("claims_redirect_uri"),
+
+    /**
+     * JSON array containing a list of the OAuth 2.0 response_type values that the Client is declaring that it will
+     * restrict itself to using. If omitted, the default is that the Client will use only the code response type.
+     */
+    RESPONSE_TYPES("response_types"),
+
+    /**
+     * JSON array containing a list of the OAuth 2.0 grant types that the Client is declaring that it will restrict
+     * itself to using.
+     */
+    GRANT_TYPES("grant_types"),
+
+    /**
+     * Kind of the application. The default if not specified is web. The defined values are native or web.
+     * Web Clients using the OAuth implicit grant type must only register URLs using the https scheme as redirect_uris;
+     * they may not use localhost as the hostname.
+     * Native Clients must only register redirect_uris using custom URI schemes or URLs using the http: scheme with
+     * localhost as the hostname.
+     */
+    APPLICATION_TYPE("application_type"),
+
+    /**
+     * Array of e-mail addresses of people responsible for this Client. This may be used by some providers to enable a
+     * Web user interface to modify the Client information.
+     */
+    CONTACTS("contacts"),
+
+    /**
+     * Name of the Client to be presented to the user.
+     */
+    CLIENT_NAME("client_name"),
+
+    /**
+     * URL that references a logo for the Client application.
+     */
+    LOGO_URI("logo_uri"),
+
+    /**
+     * URL of the home page of the Client.
+     */
+    CLIENT_URI("client_uri"),
+
+    /**
+     * URL that the Relying Party Client provides to the End-User to read about the how the profile data will be used.
+     */
+    POLICY_URI("policy_uri"),
+
+    /**
+     * URL that the Relying Party Client provides to the End-User to read about the Relying Party's terms of service.
+     */
+    TOS_URI("tos_uri"),
+
+    /**
+     * URL for the Client's JSON Web Key Set (JWK) document containing key(s) that are used for signing requests to
+     * the OP. The JWK Set may also contain the Client's encryption keys(s) that are used by the OP to encrypt the
+     * responses to the Client.
+     */
+    JWKS_URI("jwks_uri"),
+
+    /**
+     * Client's JSON Web Key Set (JWK) document, passed by value. The semantics of the jwks parameter are the same as
+     * the jwks_uri parameter, other than that the JWK Set is passed by value, rather than by reference.
+     * This parameter is intended only to be used by Clients that, for some reason, are unable to use the jwks_uri
+     * parameter, for instance, by native applications that might not have a location to host the contents of the JWK
+     * Set. If a Client can use jwks_uri, it must not use jwks.
+     * One significant downside of jwks is that it does not enable key rotation (which jwks_uri does, as described in
+     * Section 10 of OpenID Connect Core 1.0). The jwks_uri and jwks parameters must not be used together.
+     */
+    JWKS("jwks"),
+
+    /**
+     * URL using the https scheme to be used in calculating Pseudonymous Identifiers by the OP.
+     * The URL references a file with a single JSON array of redirect_uri values.
+     */
+    SECTOR_IDENTIFIER_URI("sector_identifier_uri"),
+
+    /**
+     * Subject type requested for the Client ID. Valid types include pairwise and public.
+     */
+    SUBJECT_TYPE("subject_type"),
+
+    /**
+     * Whether to return RPT as signed JWT
+     */
+    RPT_AS_JWT("rpt_as_jwt"),
+
+    /**
+     * Whether to return access token as signed JWT
+     */
+    ACCESS_TOKEN_AS_JWT("access_token_as_jwt"),
+
+    /**
+     * Algorithm used for signing of JWT
+     */
+    ACCESS_TOKEN_SIGNING_ALG("access_token_signing_alg"),
+
+    /**
+     * JWS alg algorithm (JWA)0 required for the issued ID Token.
+     */
+    ID_TOKEN_SIGNED_RESPONSE_ALG("id_token_signed_response_alg"),
+
+    /**
+     * JWE alg algorithm (JWA) required for encrypting the ID Token.
+     */
+    ID_TOKEN_ENCRYPTED_RESPONSE_ALG("id_token_encrypted_response_alg"),
+
+    /**
+     * JWE enc algorithm (JWA) required for symmetric encryption of the ID Token.
+     */
+    ID_TOKEN_ENCRYPTED_RESPONSE_ENC("id_token_encrypted_response_enc"),
+
+    /**
+     * JWS alg algorithm (JWA) required for UserInfo Responses.
+     */
+    USERINFO_SIGNED_RESPONSE_ALG("userinfo_signed_response_alg"),
+
+    /**
+     * JWE alg algorithm (JWA) required for encrypting UserInfo Responses.
+     */
+    USERINFO_ENCRYPTED_RESPONSE_ALG("userinfo_encrypted_response_alg"),
+
+    /**
+     * JWE enc algorithm (JWA) required for symmetric encryption of UserInfo Responses.
+     */
+    USERINFO_ENCRYPTED_RESPONSE_ENC("userinfo_encrypted_response_enc"),
+
+    /**
+     * JWS alg algorithm (JWA) that must be required by the Authorization Server.
+     */
+    REQUEST_OBJECT_SIGNING_ALG("request_object_signing_alg"),
+
+    /**
+     * JWS alg algorithm (JWA) that must be used for signing Request Objects sent to the OP.
+     */
+    REQUEST_OBJECT_ENCRYPTION_ALG("request_object_encryption_alg"),
+
+    /**
+     * JWE enc algorithm (JWA) the RP is declaring that it may use for encrypting Request Objects sent to the OP.
+     */
+    REQUEST_OBJECT_ENCRYPTION_ENC("request_object_encryption_enc"),
+
+    /**
+     * Requested authentication method for the Token Endpoint.
+     */
+    TOKEN_ENDPOINT_AUTH_METHOD("token_endpoint_auth_method"),
+
+    /**
+     * JWS alg algorithm (JWA) that MUST be used for signing the JWT used to authenticate the Client at the
+     * Token Endpoint for the private_key_jwt and client_secret_jwt authentication methods.
+     */
+    TOKEN_ENDPOINT_AUTH_SIGNING_ALG("token_endpoint_auth_signing_alg"),
+
+    /**
+     * Default Maximum Authentication Age. Specifies that the End-User must be actively authenticated if the End-User
+     * was authenticated longer ago than the specified number of seconds. The max_age request parameter overrides this
+     * default value.
+     */
+    DEFAULT_MAX_AGE("default_max_age"),
+
+    /**
+     * Boolean value specifying whether the auth_time Claim in the ID Token is required. It is required when the value
+     * is true. The auth_time Claim request in the Request Object overrides this setting.
+     */
+    REQUIRE_AUTH_TIME("require_auth_time"),
+
+    /**
+     * Default requested Authentication Context Class Reference values. Array of strings that specifies the default acr
+     * values that the Authorization Server must use for processing requests from the Client.
+     */
+    DEFAULT_ACR_VALUES("default_acr_values"),
+
+    /**
+     * URI using the https scheme that the Authorization Server can call to initiate a login at the Client.
+     */
+    INITIATE_LOGIN_URI("initiate_login_uri"),
+
+    /**
+     * URL supplied by the RP to request that the user be redirected to this location after a logout has been performed,
+     */
+    POST_LOGOUT_REDIRECT_URIS("post_logout_redirect_uris"),
+
+    /**
+     * RP URL that will cause the RP to log itself out when rendered in an iframe by the OP.
+     * A sid (session ID) query parameter MAY be included by the OP to enable the RP to validate the request and
+     * to determine which of the potentially multiple sessions is to be logged out.
+     */
+    FRONT_CHANNEL_LOGOUT_URI("frontchannel_logout_uri"),
+
+    /**
+     * Boolean value specifying whether the RP requires that a sid (session ID) query parameter be included
+     * to identify the RP session at the OP when the logout_uri is used. If omitted, the default value is false.
+     */
+    FRONT_CHANNEL_LOGOUT_SESSION_REQUIRED("frontchannel_logout_session_required"),
+
+    /**
+     * RP URL that will cause the RP to log itself out when sent a Logout Token by the OP.
+     */
+    BACKCHANNEL_LOGOUT_URI("backchannel_logout_uri"),
+
+    /**
+     * Boolean value specifying whether the RP requires that a sid (session ID) Claim be included in the Logout Token to identify the RP session with the OP when the backchannel_logout_uri is used. If omitted, the default value is false.
+     */
+    BACKCHANNEL_LOGOUT_SESSION_REQUIRED("backchannel_logout_session_required"),
+
+    /**
+     * Array of request_uri values that are pre-registered by the Client for use at the Authorization Server.
+     */
+    REQUEST_URIS("request_uris"),
+
+    /**
+     * @deprecated This param will be removed in a future version because the correct is 'scope' not 'scopes', see (rfc7591).
+     */
+    SCOPES("scopes"),
+
+    /**
+     * String containing a space-separated list of claims that can be requested individually.
+     */
+    CLAIMS("claims"),
+
+    /**
+     * Optional string value specifying the JWT Confirmation Method member name (e.g. tbh) that the Relying Party expects when receiving Token Bound ID Tokens. The presence of this parameter indicates that the Relying Party supports Token Binding of ID Tokens. If omitted, the default is that the Relying Party does not support Token Binding of ID Tokens.
+     */
+    ID_TOKEN_TOKEN_BINDING_CNF("id_token_token_binding_cnf"),
+
+    /**
+     * string representation of the expected subject
+     * distinguished name of the certificate, which the OAuth client will
+     * use in mutual TLS authentication.
+     */
+    TLS_CLIENT_AUTH_SUBJECT_DN("tls_client_auth_subject_dn"),
+
+    /**
+     * boolean, whether to allow spontaneous scopes for client
+     */
+    ALLOW_SPONTANEOUS_SCOPES("allow_spontaneous_scopes"),
+
+    /**
+     * list of spontaneous scopes
+     */
+    SPONTANEOUS_SCOPES("spontaneous_scopes"),
+
+    /**
+     * boolean property which indicates whether to run introspection script and then include claims from result into access_token as JWT
+     */
+    RUN_INTROSPECTION_SCRIPT_BEFORE_ACCESS_TOKEN_CREATION_AS_JWT_AND_INCLUDE_CLAIMS("run_introspection_script_before_access_token_as_jwt_creation_and_include_claims"),
+
+    /**
+     * boolean property which indicates whether to keep client authorization after expiration
+     */
+    KEEP_CLIENT_AUTHORIZATION_AFTER_EXPIRATION("keep_client_authorization_after_expiration"),
+
+    /**
+     * String containing a space-separated list of scope values.
+     */
+    SCOPE("scope"),
+
+    /**
+     * Authorized JavaScript origins.
+     */
+    AUTHORIZED_ORIGINS("authorized_origins"),
+
+    /**
+     * Client-specific access token expiration. Set this value to null or zero to use the default value.
+     */
+    ACCESS_TOKEN_LIFETIME("access_token_lifetime"),
+
+    /**
+     * A unique identifier string (UUID) assigned by the client developer or software publisher used by
+     * registration endpoints to identify the client software to be dynamically registered.
+     */
+    SOFTWARE_ID("software_id"),
+
+    /**
+     * A version identifier string for the client software identified by "software_id".
+     * The value of the "software_version" should change on any update to the client software identified by the same
+     * "software_id".
+     */
+    SOFTWARE_VERSION("software_version"),
+
+    /**
+     * A software statement containing client metadata values about the client software as claims.
+     * This is a string value containing the entire signed JWT.
+     */
+    SOFTWARE_STATEMENT("software_statement"),
+
+    BACKCHANNEL_TOKEN_DELIVERY_MODE("backchannel_token_delivery_mode"),
+
+    BACKCHANNEL_CLIENT_NOTIFICATION_ENDPOINT("backchannel_client_notification_endpoint"),
+
+    BACKCHANNEL_AUTHENTICATION_REQUEST_SIGNING_ALG("backchannel_authentication_request_signing_alg"),
+
+    BACKCHANNEL_USER_CODE_PARAMETER("backchannel_user_code_parameter");
+
+    /**
+     * Parameter name
+     */
+    private final String name;
+
+    /**
+     * Constructor
+     *
+     * @param name parameter name
+     */
+    private RegisterRequestParam(String name) {
+        this.name = name;
+    }
+
+    /**
+     * Gets parameter name.
+     *
+     * @return parameter name
+     */
+    public String getName() {
+        return name;
+    }
+
+    /**
+     * Returns whether parameter is standard
+     *
+     * @param p_parameterName parameter name
+     * @return whether parameter is standard
+     */
+    public static boolean isStandard(String p_parameterName) {
+        if (StringUtils.isNotBlank(p_parameterName)) {
+            for (RegisterRequestParam t : values()) {
+                if (t.getName().equalsIgnoreCase(p_parameterName)) {
+                    return true;
+                }
+            }
+        }
+        return false;
+    }
+
+    /**
+     * Returns whether custom parameter is valid.
+     *
+     * @param p_parameterName parameter name
+     * @return whether custom parameter is valid
+     */
+    public static boolean isCustomParameterValid(String p_parameterName) {
+        return StringUtils.isNotBlank(p_parameterName) && !isStandard(p_parameterName);
+    }
+
+
+    @Override
+    public String toString() {
+        return name;
+    }
+}
\ No newline at end of file
diff --git a/oxAuth/Model/src/main/java/org/gluu/oxauth/model/register/RegisterResponseParam.java b/oxAuth/Model/src/main/java/org/gluu/oxauth/model/register/RegisterResponseParam.java
new file mode 100644
index 00000000..46d0837a
--- /dev/null
+++ b/oxAuth/Model/src/main/java/org/gluu/oxauth/model/register/RegisterResponseParam.java
@@ -0,0 +1,67 @@
+/*
+ * oxAuth is available under the MIT License (2008). See http://opensource.org/licenses/MIT for full text.
+ *
+ * Copyright (c) 2014, Gluu
+ */
+
+package org.gluu.oxauth.model.register;
+
+/**
+ * Listed all standard parameters involved in client registration response.
+ *
+ * @author Javier Rojas Blum
+ * @version 0.9, 03/23/2013
+ */
+public enum RegisterResponseParam {
+
+    /**
+     * Unique Client identifier.
+     */
+    CLIENT_ID("client_id"),
+
+    /**
+     * Client secret.
+     */
+    CLIENT_SECRET("client_secret"),
+
+    /**
+     * Access Token that is used by the Client to perform subsequent operations upon the resulting
+     * Client registration.
+     */
+    REGISTRATION_ACCESS_TOKEN("registration_access_token"),
+
+    /**
+     * Location where the Access Token can be used to perform subsequent operations upon the resulting
+     * Client registration.
+     */
+    REGISTRATION_CLIENT_URI("registration_client_uri"),
+
+    /**
+     * Time when the Client Identifier was issued.
+     */
+    CLIENT_ID_ISSUED_AT("client_id_issued_at"),
+
+    /**
+     * Time at which the client_secret will expire or 0 if it will not expire.
+     */
+    CLIENT_SECRET_EXPIRES_AT("client_secret_expires_at");
+
+    /**
+     * Parameter name
+     */
+    private final String name;
+
+    /**
+     * Constructor
+     *
+     * @param name parameter name
+     */
+    private RegisterResponseParam(String name) {
+        this.name = name;
+    }
+
+    @Override
+    public String toString() {
+        return name;
+    }
+}
\ No newline at end of file
diff --git a/oxAuth/Model/src/main/java/org/gluu/oxauth/model/session/EndSessionErrorResponseType.java b/oxAuth/Model/src/main/java/org/gluu/oxauth/model/session/EndSessionErrorResponseType.java
new file mode 100644
index 00000000..a66bd899
--- /dev/null
+++ b/oxAuth/Model/src/main/java/org/gluu/oxauth/model/session/EndSessionErrorResponseType.java
@@ -0,0 +1,91 @@
+/*
+ * oxAuth is available under the MIT License (2008). See http://opensource.org/licenses/MIT for full text.
+ *
+ * Copyright (c) 2014, Gluu
+ */
+
+package org.gluu.oxauth.model.session;
+
+import org.gluu.oxauth.model.error.IErrorType;
+
+/**
+ * Error codes for End Session error responses.
+ *
+ * @author Javier Rojas Blum Date: 12.16.2011
+ */
+public enum EndSessionErrorResponseType implements IErrorType {
+    /**
+     * The provided access token is invalid, or was issued to another client.
+     */
+    INVALID_GRANT("invalid_grant"),
+
+    /**
+     * The request is missing a required parameter, includes an unsupported parameter or parameter value, repeats a
+     * parameter, or is otherwise malformed.
+     */
+    INVALID_REQUEST("invalid_request"),
+
+    /**
+     * The provided access token and session state are invalid or were issued to another client.
+     */
+    INVALID_GRANT_AND_SESSION("invalid_grant_and_session"),
+
+    /**
+     * The provided session state is empty.
+     */
+    SESSION_NOT_PASSED("session_not_passed"),
+
+    /**
+     * The provided post logout uri is empty.
+     */
+    POST_LOGOUT_URI_NOT_PASSED("post_logout_uri_not_passed"),
+
+    /**
+     * The provided post logout uri is not associated with client
+     */
+    POST_LOGOUT_URI_NOT_ASSOCIATED_WITH_CLIENT("post_logout_uri_not_associated_with_client");
+
+    private final String paramName;
+
+    private EndSessionErrorResponseType(String paramName) {
+        this.paramName = paramName;
+    }
+
+    /**
+     * Returns the corresponding {@link EndSessionErrorResponseType} from a given string.
+     *
+     * @param param The string value to convert.
+     * @return The corresponding {@link EndSessionErrorResponseType}, otherwise <code>null</code>.
+     */
+    public static EndSessionErrorResponseType fromString(String param) {
+        if (param != null) {
+            for (EndSessionErrorResponseType err : EndSessionErrorResponseType
+                    .values()) {
+                if (param.equals(err.paramName)) {
+                    return err;
+                }
+            }
+        }
+        return null;
+    }
+
+    /**
+     * Returns a string representation of the object. In this case the parameter name.
+     *
+     * @return The string representation of the object.
+     */
+    @Override
+    public String toString() {
+        return paramName;
+    }
+
+    /**
+     * Gets error parameter.
+     *
+     * @return error parameter
+     */
+    @Override
+    public String getParameter() {
+        return paramName;
+    }
+}
\ No newline at end of file
diff --git a/oxAuth/Model/src/main/java/org/gluu/oxauth/model/session/EndSessionRequestParam.java b/oxAuth/Model/src/main/java/org/gluu/oxauth/model/session/EndSessionRequestParam.java
new file mode 100644
index 00000000..e1edf8da
--- /dev/null
+++ b/oxAuth/Model/src/main/java/org/gluu/oxauth/model/session/EndSessionRequestParam.java
@@ -0,0 +1,40 @@
+/*
+ * oxAuth is available under the MIT License (2008). See http://opensource.org/licenses/MIT for full text.
+ *
+ * Copyright (c) 2014, Gluu
+ */
+
+package org.gluu.oxauth.model.session;
+
+/**
+ * @author Javier Rojas Blum
+ * @version August 9, 2017
+ */
+public interface EndSessionRequestParam {
+
+    /**
+     * Previously issued ID Token passed to the logout endpoint as a hint about the End-User's current authenticated
+     * session with the Client.
+     */
+    public static final String ID_TOKEN_HINT = "id_token_hint";
+
+    /**
+     * URL to which the RP is requesting that the End-User's User-Agent be redirected after a logout has been performed.
+     */
+    public static final String POST_LOGOUT_REDIRECT_URI = "post_logout_redirect_uri";
+
+
+    /**
+     * Opaque value used by the RP to maintain state between the logout request and the callback to the endpoint
+     * specified by the post_logout_redirect_uri parameter. If included in the logout request, the OP passes this
+     * value back to the RP using the state query parameter when redirecting the User Agent back to the RP.
+     */
+    public static final String STATE = "state";
+
+    /**
+     * String that represents the End-User's login state at the OP.
+     */
+    String SESSION_ID = "session_id";
+
+    String SID = "sid";
+}
\ No newline at end of file
diff --git a/oxAuth/Model/src/main/java/org/gluu/oxauth/model/session/EndSessionResponseParam.java b/oxAuth/Model/src/main/java/org/gluu/oxauth/model/session/EndSessionResponseParam.java
new file mode 100644
index 00000000..1a5a8455
--- /dev/null
+++ b/oxAuth/Model/src/main/java/org/gluu/oxauth/model/session/EndSessionResponseParam.java
@@ -0,0 +1,15 @@
+package org.gluu.oxauth.model.session;
+
+/**
+ * @author Javier Rojas Blum
+ * @version 0.9 October 30, 2014
+ */
+public interface EndSessionResponseParam {
+
+    /**
+     * Opaque value used by the RP to maintain state between the logout request and the callback to the endpoint
+     * specified by the post_logout_redirect_uri parameter. If included in the logout request, the OP passes this
+     * value back to the RP using the state query parameter when redirecting the User Agent back to the RP.
+     */
+    public static final String STATE = "state";
+}
diff --git a/oxAuth/Model/src/main/java/org/gluu/oxauth/model/token/ClientAssertionType.java b/oxAuth/Model/src/main/java/org/gluu/oxauth/model/token/ClientAssertionType.java
new file mode 100644
index 00000000..c2084db8
--- /dev/null
+++ b/oxAuth/Model/src/main/java/org/gluu/oxauth/model/token/ClientAssertionType.java
@@ -0,0 +1,50 @@
+/*
+ * oxAuth is available under the MIT License (2008). See http://opensource.org/licenses/MIT for full text.
+ *
+ * Copyright (c) 2014, Gluu
+ */
+
+package org.gluu.oxauth.model.token;
+
+/**
+ * @author Javier Rojas Blum Date: 04.13.2012
+ */
+public enum ClientAssertionType {
+
+    JWT_BEARER("urn:ietf:params:oauth:client-assertion-type:jwt-bearer");
+
+    private final String paramName;
+
+    private ClientAssertionType(String paramName) {
+        this.paramName = paramName;
+    }
+
+    /**
+     * Returns the corresponding {@link ClientAssertionType} for a parameter client_assertion_type.
+     *
+     * @param param The client_assertion_type parameter.
+     * @return The corresponding token type if found, otherwise
+     *         <code>null</code>.
+     */
+    public static ClientAssertionType fromString(String param) {
+        if (param != null) {
+            for (ClientAssertionType cat : ClientAssertionType.values()) {
+                if (param.equals(cat.paramName)) {
+                    return cat;
+                }
+            }
+        }
+        return null;
+    }
+
+    /**
+     * Returns a string representation of the object. In this case the parameter
+     * name for the client_assertionType parameter.
+     *
+     * @return The string representation of the object.
+     */
+    @Override
+    public String toString() {
+        return paramName;
+    }
+}
\ No newline at end of file
diff --git a/oxAuth/Model/src/main/java/org/gluu/oxauth/model/token/JsonWebResponse.java b/oxAuth/Model/src/main/java/org/gluu/oxauth/model/token/JsonWebResponse.java
new file mode 100644
index 00000000..92bd31b1
--- /dev/null
+++ b/oxAuth/Model/src/main/java/org/gluu/oxauth/model/token/JsonWebResponse.java
@@ -0,0 +1,70 @@
+/*
+ * oxAuth is available under the MIT License (2008). See http://opensource.org/licenses/MIT for full text.
+ *
+ * Copyright (c) 2015, Gluu
+ */
+
+package org.gluu.oxauth.model.token;
+
+import org.gluu.oxauth.model.exception.InvalidJwtException;
+import org.gluu.oxauth.model.jwt.JwtClaims;
+import org.gluu.oxauth.model.jwt.JwtHeader;
+
+import java.io.Serializable;
+
+/**
+ * JSON Web Token is a compact token format intended for space constrained
+ * environments such as HTTP Authorization headers and URI query parameters.
+ *
+ * @author Yuriy Movchan Date: 06/30/2015
+ */
+public class JsonWebResponse implements Serializable {
+
+	private static final long serialVersionUID = -4141298937204111173L;
+
+	protected JwtHeader header;
+	protected JwtClaims claims;
+	
+	public JsonWebResponse() {
+        this.header = new JwtHeader();
+        this.claims = new JwtClaims();
+	}
+
+	public JwtHeader getHeader() {
+		return header;
+	}
+
+	public void setHeader(JwtHeader header) {
+		this.header = header;
+	}
+
+	public JwtClaims getClaims() {
+		return claims;
+	}
+
+    public void setClaim(String key, String value) {
+	    if (claims == null) {
+	        return;
+        }
+	    claims.setClaim(key, value);
+    }
+
+	public void setClaims(JwtClaims claims) {
+		this.claims = claims;
+	}
+
+	public String asString() {
+		try {
+			return claims.toJsonString();
+		} catch (InvalidJwtException ex) {
+			ex.printStackTrace();
+		}
+
+		return "";
+	}
+
+    @Override
+    public String toString() {
+        return asString();
+    }
+}
diff --git a/oxAuth/Model/src/main/java/org/gluu/oxauth/model/token/TokenErrorResponseType.java b/oxAuth/Model/src/main/java/org/gluu/oxauth/model/token/TokenErrorResponseType.java
new file mode 100644
index 00000000..1cd07c22
--- /dev/null
+++ b/oxAuth/Model/src/main/java/org/gluu/oxauth/model/token/TokenErrorResponseType.java
@@ -0,0 +1,125 @@
+/*
+ * oxAuth is available under the MIT License (2008). See http://opensource.org/licenses/MIT for full text.
+ *
+ * Copyright (c) 2014, Gluu
+ */
+
+package org.gluu.oxauth.model.token;
+
+import org.gluu.oxauth.model.error.IErrorType;
+
+/**
+ * @author Javier Rojas Date: 09.22.2011
+ */
+public enum TokenErrorResponseType implements IErrorType {
+    /**
+     * The request is missing a required parameter, includes an unsupported
+     * parameter or parameter value, repeats a parameter, includes multiple
+     * credentials, utilizes more than one mechanism for authenticating the
+     * client, or is otherwise malformed.
+     */
+    INVALID_REQUEST("invalid_request"),
+    /**
+     * Client authentication failed (e.g. unknown client, no client
+     * authentication included, or unsupported authentication method). The
+     * authorization server MAY return an HTTP 401 (Unauthorized) status code to
+     * indicate which HTTP authentication schemes are supported. If the client
+     * attempted to authenticate via the Authorization request header field, the
+     * authorization server MUST respond with an HTTP 401 (Unauthorized) status
+     * code, and include the WWW-Authenticate response header field matching the
+     * authentication scheme used by the client.
+     */
+    INVALID_CLIENT("invalid_client"),
+
+    /**
+     * The client is disabled and can't request an access token using this method.
+     */
+    DISABLED_CLIENT("disabled_client"),
+
+    /**
+     * The provided authorization grant is invalid, expired, revoked, does not
+     * match the redirection URI used in the authorization request, or was
+     * issued to another client.
+     */
+    INVALID_GRANT("invalid_grant"),
+    /**
+     * The authenticated client is not authorized to use this authorization
+     * grant type.
+     */
+    UNAUTHORIZED_CLIENT("unauthorized_client"),
+    /**
+     * The authorization grant type is not supported by the authorization
+     * server.
+     */
+    UNSUPPORTED_GRANT_TYPE("unsupported_grant_type"),
+    /**
+     * The requested scope is invalid, unknown, malformed, or exceeds the scope
+     * granted by the resource owner.
+     */
+    INVALID_SCOPE("invalid_scope"),
+
+    /**
+     * CIBA. The authorization request is still pending as the end-user hasn't yet been authenticated.
+     */
+    AUTHORIZATION_PENDING("authorization_pending"),
+
+    /**
+     * CIBA. A variant of "authorization_pending", the authorization request is still pending and
+     * polling should continue, but the interval MUST be increased by at least 5 seconds
+     * for this and all subsequent requests.
+     */
+    SLOW_DOWN("slow_down"),
+
+    /**
+     * CIBA. The auth_req_id has expired. The Client will need to make a new Authentication Request.
+     */
+    EXPIRED_TOKEN("expired_token"),
+
+    /**
+     * CIBA. The end-user denied the authorization request.
+     */
+    ACCESS_DENIED("access_denied");
+
+    private final String paramName;
+
+    private TokenErrorResponseType(String paramName) {
+        this.paramName = paramName;
+    }
+
+    /**
+     * Returns the corresponding {@link TokenErrorResponseType} from a given string.
+     *
+     * @param param The string value to convert.
+     * @return The corresponding {@link TokenErrorResponseType}, otherwise <code>null</code>.
+     */
+    public static TokenErrorResponseType fromString(String param) {
+        if (param != null) {
+            for (TokenErrorResponseType err : TokenErrorResponseType.values()) {
+                if (param.equals(err.paramName)) {
+                    return err;
+                }
+            }
+        }
+        return null;
+    }
+
+    /**
+     * Returns a string representation of the object. In this case the parameter name.
+     *
+     * @return The string representation of the object.
+     */
+    @Override
+    public String toString() {
+        return paramName;
+    }
+
+    /**
+     * Gets error parameter.
+     *
+     * @return error parameter
+     */
+    @Override
+    public String getParameter() {
+        return paramName;
+    }
+}
diff --git a/oxAuth/Model/src/main/java/org/gluu/oxauth/model/token/TokenRevocationErrorResponseType.java b/oxAuth/Model/src/main/java/org/gluu/oxauth/model/token/TokenRevocationErrorResponseType.java
new file mode 100644
index 00000000..3701d70b
--- /dev/null
+++ b/oxAuth/Model/src/main/java/org/gluu/oxauth/model/token/TokenRevocationErrorResponseType.java
@@ -0,0 +1,80 @@
+/*
+ * oxAuth is available under the MIT License (2008). See http://opensource.org/licenses/MIT for full text.
+ *
+ * Copyright (c) 2014, Gluu
+ */
+
+package org.gluu.oxauth.model.token;
+
+import java.util.HashMap;
+import java.util.Map;
+
+import org.gluu.oxauth.model.error.IErrorType;
+
+/**
+ * Error codes for token revocation error responses.
+ *
+ * @author Javier Rojas Blum
+ * @version January 16, 2019
+ */
+public enum TokenRevocationErrorResponseType implements IErrorType {
+
+    /**
+     * The authorization server does not support the revocation of the presented token type.
+     * That is, the client tried to revoke an access token on a server not supporting this feature.
+     */
+    UNSUPPORTED_TOKEN_TYPE("unsupported_token_type"),
+
+    /**
+     * The request is missing a required parameter, includes an unsupported
+     * parameter or parameter value, repeats a parameter, includes multiple
+     * credentials, utilizes more than one mechanism for authenticating the
+     * client, or is otherwise malformed.
+     */
+    INVALID_CLIENT("invalid_client"),
+
+    /**
+     * The request is missing a required parameter, includes an unsupported
+     * parameter or parameter value, repeats a parameter, includes multiple
+     * credentials, utilizes more than one mechanism for authenticating the
+     * client, or is otherwise malformed.
+     */
+    INVALID_REQUEST("invalid_request");
+
+    private final String paramName;
+
+    private static Map<String, TokenRevocationErrorResponseType> mapByValues = new HashMap<String, TokenRevocationErrorResponseType>();
+
+    static {
+        for (TokenRevocationErrorResponseType enumType : values()) {
+            mapByValues.put(enumType.getParameter(), enumType);
+        }
+    }
+
+    TokenRevocationErrorResponseType(String paramName) {
+        this.paramName = paramName;
+    }
+
+    public static TokenRevocationErrorResponseType getByValue(String value) {
+        return mapByValues.get(value);
+    }
+
+    /**
+     * Gets error parameter.
+     *
+     * @return error parameter
+     */
+    @Override
+    public String getParameter() {
+        return paramName;
+    }
+
+    /**
+     * Returns a string representation of the object. In this case, the lower
+     * case code of the error.
+     */
+    @Override
+    public String toString() {
+        return paramName;
+    }
+}
diff --git a/oxAuth/Model/src/main/java/org/gluu/oxauth/model/token/TokenRevocationRequestParam.java b/oxAuth/Model/src/main/java/org/gluu/oxauth/model/token/TokenRevocationRequestParam.java
new file mode 100644
index 00000000..42e211a5
--- /dev/null
+++ b/oxAuth/Model/src/main/java/org/gluu/oxauth/model/token/TokenRevocationRequestParam.java
@@ -0,0 +1,17 @@
+/*
+ * oxAuth is available under the MIT License (2008). See http://opensource.org/licenses/MIT for full text.
+ *
+ * Copyright (c) 2014, Gluu
+ */
+
+package org.gluu.oxauth.model.token;
+
+/**
+ * @author Javier Rojas Blum
+ * @version January 16, 2019
+ */
+public interface TokenRevocationRequestParam {
+
+    String TOKEN = "token";
+    String TOKEN_TYPE_HINT = "token_type_hint";
+}
diff --git a/oxAuth/Model/src/main/java/org/gluu/oxauth/model/uma/ClaimTokenFormatType.java b/oxAuth/Model/src/main/java/org/gluu/oxauth/model/uma/ClaimTokenFormatType.java
new file mode 100644
index 00000000..a208af62
--- /dev/null
+++ b/oxAuth/Model/src/main/java/org/gluu/oxauth/model/uma/ClaimTokenFormatType.java
@@ -0,0 +1,34 @@
+package org.gluu.oxauth.model.uma;
+
+/**
+ * @author yuriyz on 05/30/2017.
+ */
+public enum ClaimTokenFormatType {
+    ID_TOKEN("http://openid.net/specs/openid-connect-core-1_0.html#IDToken");
+
+    private String value;
+
+    ClaimTokenFormatType(String value) {
+        if (value == null || value.trim().isEmpty()) {
+            throw new IllegalArgumentException();
+        }
+        this.value = value;
+    }
+
+    public String getValue() {
+        return value;
+    }
+
+    public static ClaimTokenFormatType fromValue(String value) {
+        for (ClaimTokenFormatType type : values()) {
+            if (type.getValue().equals(value)) {
+                return type;
+            }
+        }
+        return null;
+    }
+
+    public static boolean isValueValid(String value) {
+        return fromValue(value) != null;
+    }
+}
diff --git a/oxAuth/Model/src/main/java/org/gluu/oxauth/model/uma/JsonLogic.java b/oxAuth/Model/src/main/java/org/gluu/oxauth/model/uma/JsonLogic.java
new file mode 100644
index 00000000..8f6ceefc
--- /dev/null
+++ b/oxAuth/Model/src/main/java/org/gluu/oxauth/model/uma/JsonLogic.java
@@ -0,0 +1,91 @@
+package org.gluu.oxauth.model.uma;
+
+import com.google.common.base.Preconditions;
+import org.apache.commons.io.IOUtils;
+import org.apache.commons.lang.StringUtils;
+import org.slf4j.Logger;
+import org.slf4j.LoggerFactory;
+
+import javax.script.Invocable;
+import javax.script.ScriptEngine;
+import javax.script.ScriptEngineManager;
+import javax.script.ScriptException;
+import java.io.InputStream;
+
+/**
+ * @author yuriyz
+ */
+public class JsonLogic {
+
+    private final static Logger LOG = LoggerFactory.getLogger(JsonLogic.class);
+
+    private static final JsonLogic INSTANCE = new JsonLogic();
+
+    private final ScriptEngine engine;
+
+    private JsonLogic() {
+        ScriptEngineManager factory = new ScriptEngineManager();
+        engine = factory.getEngineByName("nashorn");
+
+        Preconditions.checkNotNull(engine);
+
+        loadScript("json_logic.js");
+    }
+
+    private void loadJsonLogicJs() {
+        loadScript("json_logic.js");
+    }
+
+    private void loadScript(String scriptName) {
+        Preconditions.checkState(StringUtils.isNotBlank(scriptName));
+
+        InputStream stream = getClass().getClassLoader().getResourceAsStream(scriptName);
+        Preconditions.checkNotNull(stream);
+
+        try {
+            String script = IOUtils.toString(stream);
+            engine.eval(script);
+            LOG.trace("Loaded script, name: " + scriptName);
+        } catch (Exception e) {
+            LOG.error("Failed to load JavaScript script, name: " + scriptName, e);
+        } finally {
+            IOUtils.closeQuietly(stream);
+        }
+    }
+
+    public static JsonLogic getInstance() {
+        return INSTANCE;
+    }
+
+    public ScriptEngine getEngine() {
+        return engine;
+    }
+
+    public Invocable getInvocable() {
+        return (Invocable) engine;
+    }
+
+    public static Object eval(String script) throws ScriptException {
+        return getInstance().getEngine().eval(script);
+    }
+
+    public static Object invokeFunction(String name, Object... args) throws ScriptException, NoSuchMethodException {
+        return getInstance().getInvocable().invokeFunction(name, args);
+    }
+
+    public static boolean apply(String rule) throws ScriptException {
+        return applyObject(rule).equals(Boolean.TRUE);
+    }
+
+    public static boolean apply(String rule, String data) throws ScriptException {
+        return applyObject(rule, data).equals(Boolean.TRUE);
+    }
+
+    public static Object applyObject(String rule) throws ScriptException {
+        return eval("jsonLogic.apply( " + rule + " );");
+    }
+
+    public static Object applyObject(String rule, String data) throws ScriptException {
+        return eval("jsonLogic.apply( " + rule + ", " + data + " );");
+    }
+}
diff --git a/oxAuth/Model/src/main/java/org/gluu/oxauth/model/uma/JsonLogicNode.java b/oxAuth/Model/src/main/java/org/gluu/oxauth/model/uma/JsonLogicNode.java
new file mode 100644
index 00000000..c86323f7
--- /dev/null
+++ b/oxAuth/Model/src/main/java/org/gluu/oxauth/model/uma/JsonLogicNode.java
@@ -0,0 +1,74 @@
+package org.gluu.oxauth.model.uma;
+
+import com.fasterxml.jackson.annotation.JsonIgnore;
+import com.fasterxml.jackson.annotation.JsonProperty;
+import com.fasterxml.jackson.annotation.JsonPropertyOrder;
+import com.fasterxml.jackson.databind.JsonNode;
+
+import org.jboss.resteasy.annotations.providers.jaxb.IgnoreMediaTypes;
+
+import javax.xml.bind.annotation.XmlElement;
+import javax.xml.bind.annotation.XmlRootElement;
+import java.util.ArrayList;
+import java.util.List;
+
+/**
+ * @author yuriyz
+ */
+@IgnoreMediaTypes("application/*+json") // try to ignore jettison as it's recommended here: http://docs.jboss.org/resteasy/docs/2.3.4.Final/userguide/html/json.html
+@JsonPropertyOrder({ "ticket" })
+@XmlRootElement
+public class JsonLogicNode {
+
+    private JsonNode rule;
+    private List<String> data;
+
+    public JsonLogicNode() {
+    }
+
+    public JsonLogicNode(JsonNode rule, List<String> data) {
+        this.rule = rule;
+        this.data = data;
+    }
+
+    @JsonIgnore
+    public boolean isValid() {
+        return data != null && !data.isEmpty() && rule != null;
+    }
+
+    @JsonProperty(value = "rule")
+    @XmlElement(name = "rule")
+    public JsonNode getRule() {
+        return rule;
+    }
+
+    public void setRule(JsonNode rule) {
+        this.rule = rule;
+    }
+
+    @JsonProperty(value = "data")
+    @XmlElement(name = "data")
+    public List<String> getData() {
+        return data;
+    }
+
+    public void setData(List<String> data) {
+        this.data = data;
+    }
+
+    @JsonIgnore
+    public List<String> getDataCopy() {
+        if (data == null) {
+            return new ArrayList<String>();
+        }
+        return new ArrayList<String>(data);
+    }
+
+    @Override
+    public String toString() {
+        return "JsonLogicNode{" +
+                "rule=" + rule +
+                ", data=" + data +
+                '}';
+    }
+}
diff --git a/oxAuth/Model/src/main/java/org/gluu/oxauth/model/uma/JsonLogicNodeParser.java b/oxAuth/Model/src/main/java/org/gluu/oxauth/model/uma/JsonLogicNodeParser.java
new file mode 100644
index 00000000..4e1f00eb
--- /dev/null
+++ b/oxAuth/Model/src/main/java/org/gluu/oxauth/model/uma/JsonLogicNodeParser.java
@@ -0,0 +1,25 @@
+package org.gluu.oxauth.model.uma;
+
+import org.gluu.oxauth.model.util.Util;
+
+/**
+ * @author yuriyz
+ */
+public class JsonLogicNodeParser {
+
+    private JsonLogicNodeParser() {
+    }
+
+    public static JsonLogicNode parseNode(String json) {
+        try {
+            return Util.createJsonMapper().readValue(json, JsonLogicNode.class);
+        } catch (Exception e) {
+            return null;
+        }
+    }
+
+    public static boolean isNodeValid(String json) {
+        JsonLogicNode node = parseNode(json);
+        return node != null && node.isValid();
+    }
+}
diff --git a/oxAuth/Model/src/main/java/org/gluu/oxauth/model/uma/PermissionTicket.java b/oxAuth/Model/src/main/java/org/gluu/oxauth/model/uma/PermissionTicket.java
new file mode 100644
index 00000000..09e7d027
--- /dev/null
+++ b/oxAuth/Model/src/main/java/org/gluu/oxauth/model/uma/PermissionTicket.java
@@ -0,0 +1,63 @@
+/*
+ * oxAuth is available under the MIT License (2008). See http://opensource.org/licenses/MIT for full text.
+ *
+ * Copyright (c) 2014, Gluu
+ */
+
+package org.gluu.oxauth.model.uma;
+
+import com.fasterxml.jackson.annotation.JsonProperty;
+import com.fasterxml.jackson.annotation.JsonPropertyOrder;
+import org.jboss.resteasy.annotations.providers.jaxb.IgnoreMediaTypes;
+
+import javax.xml.bind.annotation.XmlElement;
+import javax.xml.bind.annotation.XmlRootElement;
+
+/**
+ * Resource set permission ticket
+ *
+ * @author Yuriy Zabrovarnyy
+ * @author Yuriy Movchan
+ */
+@IgnoreMediaTypes("application/*+json") // try to ignore jettison as it's recommended here: http://docs.jboss.org/resteasy/docs/2.3.4.Final/userguide/html/json.html
+@JsonPropertyOrder({ "ticket" })
+@XmlRootElement
+public class PermissionTicket {
+
+	private String ticket;
+
+	public PermissionTicket() {
+    }
+
+	public PermissionTicket(String ticket) {
+		this.ticket = ticket;
+	}
+
+    @JsonProperty(value = "ticket")
+    @XmlElement(name = "ticket")
+	public String getTicket() {
+		return ticket;
+	}
+
+	@Override
+	public boolean equals(Object o) {
+		if (this == o) return true;
+		if (o == null || getClass() != o.getClass()) return false;
+
+		PermissionTicket that = (PermissionTicket) o;
+
+		return !(ticket != null ? !ticket.equals(that.ticket) : that.ticket != null);
+
+	}
+
+	@Override
+	public int hashCode() {
+		return ticket != null ? ticket.hashCode() : 0;
+	}
+
+	@Override
+	public String toString() {
+		return "PermissionTiket [ticket=" + ticket + "]";
+	}
+
+}
diff --git a/oxAuth/Model/src/main/java/org/gluu/oxauth/model/uma/RPTResponse.java b/oxAuth/Model/src/main/java/org/gluu/oxauth/model/uma/RPTResponse.java
new file mode 100644
index 00000000..a03109ab
--- /dev/null
+++ b/oxAuth/Model/src/main/java/org/gluu/oxauth/model/uma/RPTResponse.java
@@ -0,0 +1,54 @@
+/*
+ * oxAuth is available under the MIT License (2008). See http://opensource.org/licenses/MIT for full text.
+ *
+ * Copyright (c) 2014, Gluu
+ */
+
+package org.gluu.oxauth.model.uma;
+
+import com.fasterxml.jackson.annotation.JsonIgnoreProperties;
+import com.fasterxml.jackson.annotation.JsonProperty;
+import com.fasterxml.jackson.annotation.JsonPropertyOrder;
+import org.jboss.resteasy.annotations.providers.jaxb.IgnoreMediaTypes;
+
+import javax.xml.bind.annotation.XmlElement;
+import javax.xml.bind.annotation.XmlRootElement;
+
+/**
+ * Requester permission token
+ * 
+ * @author Yuriy Movchan
+ * @author Yuriy Zabrovarnyy
+ * Date: 10/16/2012
+ */
+@IgnoreMediaTypes("application/*+json") // try to ignore jettison as it's recommended here: http://docs.jboss.org/resteasy/docs/2.3.4.Final/userguide/html/json.html
+@JsonPropertyOrder({ "rpt" })
+@JsonIgnoreProperties(ignoreUnknown = true)
+@XmlRootElement
+public class RPTResponse {
+
+	private String rpt;
+
+	public RPTResponse() {
+    }
+
+	public RPTResponse(String token) {
+		this.rpt = token;
+	}
+
+    @JsonProperty(value = "rpt")
+	@XmlElement(name = "rpt")
+	public String getRpt() {
+		return rpt;
+	}
+
+	public void setRpt(String rpt) {
+		this.rpt = rpt;
+	}
+
+	@Override
+	public String toString() {
+		return "RPTResponse [rpt=" + rpt + "]";
+	}
+
+}
diff --git a/oxAuth/Model/src/main/java/org/gluu/oxauth/model/uma/RptIntrospectionResponse.java b/oxAuth/Model/src/main/java/org/gluu/oxauth/model/uma/RptIntrospectionResponse.java
new file mode 100644
index 00000000..03dc1027
--- /dev/null
+++ b/oxAuth/Model/src/main/java/org/gluu/oxauth/model/uma/RptIntrospectionResponse.java
@@ -0,0 +1,181 @@
+/*
+ * oxAuth is available under the MIT License (2008). See http://opensource.org/licenses/MIT for full text.
+ *
+ * Copyright (c) 2014, Gluu
+ */
+
+package org.gluu.oxauth.model.uma;
+
+import com.fasterxml.jackson.annotation.JsonIgnoreProperties;
+import com.fasterxml.jackson.annotation.JsonProperty;
+import com.fasterxml.jackson.annotation.JsonPropertyOrder;
+import org.jboss.resteasy.annotations.providers.jaxb.IgnoreMediaTypes;
+
+import javax.xml.bind.annotation.XmlElement;
+import javax.xml.bind.annotation.XmlRootElement;
+import java.util.List;
+import java.util.Map;
+
+/**
+ * Token status response according to RPT introspection profile:
+ * http://docs.kantarainitiative.org/uma/draft-uma-core.html#uma-bearer-token-profile
+ *
+ * @author Yuriy Zabrovarnyy
+ * @author Yuriy Movchan
+ *         Date: 10/24/2012
+ */
+
+// ignore jettison as it's recommended here: http://docs.jboss.org/resteasy/docs/2.3.4.Final/userguide/html/json.html
+@IgnoreMediaTypes("application/*+json")
+@JsonPropertyOrder({"active", "exp", "iat", "nbf", "permissions", "client_id", "sub", "aud", "iss", "jti"})
+@XmlRootElement
+@JsonIgnoreProperties(ignoreUnknown = true)
+public class RptIntrospectionResponse {
+
+    private boolean active;   // according spec, must be "active" http://tools.ietf.org/html/draft-richer-oauth-introspection-03#section-2.2
+    private Integer expiresAt;
+    private Integer issuedAt;
+    private Integer nbf;
+    private String clientId;
+    private String sub;
+    private String aud;
+    private String iss;
+    private String jti;
+    private List<UmaPermission> permissions;
+    private Map<String, List<String>> pctClaims;
+
+    public RptIntrospectionResponse() {
+    }
+
+    public RptIntrospectionResponse(boolean status) {
+        this.active = status;
+    }
+
+    @JsonProperty(value = "aud")
+    @XmlElement(name = "aud")
+    public String getAud() {
+        return aud;
+    }
+
+    public void setAud(String aud) {
+        this.aud = aud;
+    }
+
+    @JsonProperty(value = "iss")
+    @XmlElement(name = "iss")
+    public String getIss() {
+        return iss;
+    }
+
+    public void setIss(String iss) {
+        this.iss = iss;
+    }
+
+    @JsonProperty(value = "jti")
+    @XmlElement(name = "jti")
+    public String getJti() {
+        return jti;
+    }
+
+    public void setJti(String jti) {
+        this.jti = jti;
+    }
+
+    @JsonProperty(value = "sub")
+    @XmlElement(name = "sub")
+    public String getSub() {
+        return sub;
+    }
+
+    public void setSub(String sub) {
+        this.sub = sub;
+    }
+
+    @JsonProperty(value = "client_id")
+    @XmlElement(name = "client_id")
+    public String getClientId() {
+        return clientId;
+    }
+
+    public void setClientId(String clientId) {
+        this.clientId = clientId;
+    }
+
+    @JsonProperty(value = "active")
+    @XmlElement(name = "active")
+    public boolean getActive() {
+        return active;
+    }
+
+    public void setActive(boolean status) {
+        this.active = status;
+    }
+
+    @JsonProperty(value = "nbf")
+    @XmlElement(name = "nbf")
+    public Integer getNbf() {
+        return nbf;
+    }
+
+    public void setNbf(Integer nbf) {
+        this.nbf = nbf;
+    }
+
+    @JsonProperty(value = "exp")
+    @XmlElement(name = "exp")
+    public Integer getExpiresAt() {
+        return expiresAt;
+    }
+
+    public void setExpiresAt(Integer expiresAt) {
+        this.expiresAt = expiresAt;
+    }
+
+    @JsonProperty(value = "iat")
+    @XmlElement(name = "iat")
+    public Integer getIssuedAt() {
+        return issuedAt;
+    }
+
+    public void setIssuedAt(Integer p_issuedAt) {
+        issuedAt = p_issuedAt;
+    }
+
+    @JsonProperty(value = "permissions")
+    @XmlElement(name = "permissions")
+    public List<UmaPermission> getPermissions() {
+        return permissions;
+    }
+
+    public void setPermissions(List<UmaPermission> p_permissions) {
+        permissions = p_permissions;
+    }
+
+    @JsonProperty(value = "pct_claims")
+    @XmlElement(name = "pct_claims")
+    public Map<String, List<String>> getPctClaims() {
+        return pctClaims;
+    }
+
+    public void setPctClaims(Map<String, List<String>> pctClaims) {
+        this.pctClaims = pctClaims;
+    }
+
+    @Override
+    public String toString() {
+        final StringBuilder sb = new StringBuilder();
+        sb.append("RptStatusResponse");
+        sb.append("{active=").append(active);
+        sb.append(", expiresAt=").append(expiresAt);
+        sb.append(", issuedAt=").append(issuedAt);
+        sb.append(", nbf=").append(nbf);
+        sb.append(", clientId=").append(clientId);
+        sb.append(", sub=").append(sub);
+        sb.append(", aud=").append(aud);
+        sb.append(", iss=").append(iss);
+        sb.append(", jti=").append(jti);
+        sb.append(", permissions=").append(permissions);
+        sb.append('}');
+        return sb.toString();
+    }
+}
diff --git a/oxAuth/Model/src/main/java/org/gluu/oxauth/model/uma/RptProfiles.java b/oxAuth/Model/src/main/java/org/gluu/oxauth/model/uma/RptProfiles.java
new file mode 100644
index 00000000..2caa5a31
--- /dev/null
+++ b/oxAuth/Model/src/main/java/org/gluu/oxauth/model/uma/RptProfiles.java
@@ -0,0 +1,21 @@
+package org.gluu.oxauth.model.uma;
+
+/**
+ * @author Yuriy Zabrovarnyy
+ * @version 0.9, 09/12/2015
+ */
+
+public enum RptProfiles {
+
+    BEARER("https://docs.kantarainitiative.org/uma/profiles/uma-token-bearer-1.0");
+
+    private String identifyingUri;
+
+    private RptProfiles(String identifyingUri) {
+        this.identifyingUri = identifyingUri;
+    }
+
+    public String getIdentifyingUri() {
+        return identifyingUri;
+    }
+}
diff --git a/oxAuth/Model/src/main/java/org/gluu/oxauth/model/uma/UmaConstants.java b/oxAuth/Model/src/main/java/org/gluu/oxauth/model/uma/UmaConstants.java
new file mode 100644
index 00000000..e279ed38
--- /dev/null
+++ b/oxAuth/Model/src/main/java/org/gluu/oxauth/model/uma/UmaConstants.java
@@ -0,0 +1,29 @@
+/*
+ * oxAuth is available under the MIT License (2008). See http://opensource.org/licenses/MIT for full text.
+ *
+ * Copyright (c) 2014, Gluu
+ */
+
+package org.gluu.oxauth.model.uma;
+
+/**
+ * @author Yuriy Movchan Date: 10/03/2012
+ */
+public class UmaConstants {
+
+    private UmaConstants() {
+    }
+
+    /*
+    * yuriyz 01/04/2013 : as it was emailed by Eve:
+    * We've been removing all the specialized content type extensions,
+    * and just sticking with application/json. I'll add an issue on our side
+    * to update the specs to remove those last few instances of application/xxx+json.
+    */
+    public static final String JSON_MEDIA_TYPE = "application/json";
+
+    public static final String GATHERING_ID = "gathering_id";
+
+    public static final String NO_SCRIPT = "no_script";
+
+}
diff --git a/oxAuth/Model/src/main/java/org/gluu/oxauth/model/uma/UmaErrorResponseType.java b/oxAuth/Model/src/main/java/org/gluu/oxauth/model/uma/UmaErrorResponseType.java
new file mode 100644
index 00000000..1f310450
--- /dev/null
+++ b/oxAuth/Model/src/main/java/org/gluu/oxauth/model/uma/UmaErrorResponseType.java
@@ -0,0 +1,218 @@
+/*
+ * oxAuth is available under the MIT License (2008). See http://opensource.org/licenses/MIT for full text.
+ *
+ * Copyright (c) 2014, Gluu
+ */
+
+package org.gluu.oxauth.model.uma;
+
+import org.gluu.oxauth.model.error.IErrorType;
+
+import java.util.HashMap;
+import java.util.Map;
+
+/**
+ * Error codes for UMA error responses.
+ * 
+ * @author Yuriy Movchan
+ * @author Yuriy Zabrovarnyy
+ * Date: 10.03.2012
+ */
+public enum UmaErrorResponseType implements IErrorType {
+
+	/**
+	 * The request is missing a required parameter, includes an unsupported
+	 * parameter or parameter value, or is otherwise malformed.
+	 */
+	INVALID_REQUEST("invalid_request"),
+
+	/**
+	 * The client is not authorized to request an access token using this
+	 * method.
+	 */
+	UNAUTHORIZED_CLIENT("unauthorized_client"),
+
+	/**
+	 * The client is disabled and can't request an access token using this method.
+	 */
+	DISABLED_CLIENT("disabled_client"),
+
+	/**
+	 * The resource owner or AM server denied the request.
+	 */
+	ACCESS_DENIED("access_denied"),
+
+	/**
+	 * The AM server does not support obtaining an access token using
+	 * this method.
+	 */
+	UNSUPPORTED_RESPONSE_TYPE("unsupported_response_type"),
+
+	/**
+	 * The requested scope is invalid, unknown, or malformed.
+	 */
+	INVALID_CLIENT_SCOPE("invalid_client_scope"),
+
+	/**
+	 * The AM server encountered an unexpected condition which
+	 * prevented it from fulfilling the request.
+	 */
+	SERVER_ERROR("server_error"),
+
+	/**
+	 * The AM server is currently unable to handle the request due to
+	 * a temporary overloading or maintenance of the server.
+	 */
+	TEMPORARILY_UNAVAILABLE("temporarily_unavailable"),
+
+	/**
+	 * The resource set that was requested to be deleted or updated at the AM
+	 * did not match the If-Match value present in the request.
+	 */
+	PRECONDITION_FAILED("precondition_failed"),
+
+	/**
+	 * The resource set requested from the AM cannot be found.
+	 */
+	NOT_FOUND("not_found"),
+
+	/**
+	 * The host request used an unsupported HTTP method.
+	 */
+	UNSUPPORTED_METHOD_TYPE("unsupported_method_type"),
+
+	/**
+	 * Forbidden by policy (policy returned false).
+	 */
+	FORBIDDEN_BY_POLICY("forbidden_by_policy"),
+	
+	/**
+	 * The access token expired.
+	 */
+	INVALID_TOKEN("invalid_token"),
+
+	/**
+	 * Grant type is not urn:ietf:params:oauth:grant-type:uma-ticket (required for UMA 2).
+	 */
+	INVALID_GRANT_TYPE("invalid_grant_type"),
+
+	/**
+	 * Invalid permission request.
+	 */
+	INVALID_PERMISSION_REQUEST("invalid_permission_request"),
+
+	/**
+	 * The provided resource id was not found at the AS.
+	 */
+	INVALID_RESOURCE_ID("invalid_resource_id"),
+
+	/**
+	 * At least one of the scopes included in the request was not registered previously by this host.
+	 */
+	INVALID_SCOPE("invalid_scope"),
+
+	/**
+	 * The provided client_id is not valid.
+	 */
+	INVALID_CLIENT_ID("invalid_client_id"),
+
+	/**
+	 * The provided invalid_claims_redirect_uri is not valid.
+	 */
+	INVALID_CLAIMS_REDIRECT_URI("invalid_claims_redirect_uri"),
+
+	/**
+	 * The provided ticket was not found at the AS.
+	 */
+	INVALID_TICKET("invalid_ticket"),
+
+	/**
+	 * The claims-gathering script name is not provided or otherwise failed to load script with this name(s).
+	 */
+	INVALID_CLAIMS_GATHERING_SCRIPT_NAME("invalid_claims_gathering_script_name"),
+
+	/**
+	 * The provided ticket has expired.
+	 */
+	EXPIRED_TICKET("expired_ticket"),
+
+	/**
+	 * The provided session is invalid.
+	 */
+	INVALID_SESSION("invalid_session"),
+
+	/**
+	 * The claim token format is blank or otherwise not supported (supported format is http://openid.net/specs/openid-connect-core-1_0.html#IDToken).
+	 */
+	INVALID_CLAIM_TOKEN_FORMAT("invalid_claim_token_format"),
+
+	/**
+	 * The claim token is not valid or unsupported. (If format is http://openid.net/specs/openid-connect-core-1_0.html#IDToken then claim token has to be ID Token).
+	 */
+	INVALID_CLAIM_TOKEN("invalid_claim_token"),
+
+	/**
+	 * PCT is invalid (revoked, expired or does not exist anymore on AS)
+	 */
+	INVALID_PCT("invalid_pct"),
+
+	/**
+	 * RPT is invalid (revoked, expired or does not exist anymore on AS)
+	 */
+	INVALID_RPT("invalid_rpt"),
+
+	/**
+	 * The requester is definitively not authorized for this permission according to user policy.
+	 */
+	NOT_AUTHORIZED_PERMISSION("not_authorized_permission"),
+	
+	/**
+	 * The AM is unable to determine whether the requester is authorized for this permission without gathering claims from the requesting party.
+	 */
+	NEED_CLAIMS("need_claims");
+
+    private static Map<String, UmaErrorResponseType> lookup = new HashMap<String, UmaErrorResponseType>();
+
+    static {
+        for (UmaErrorResponseType enumType : values()) {
+            lookup.put(enumType.getParameter(), enumType);
+        }
+    }
+
+	private final String paramName;
+
+	private UmaErrorResponseType(String paramName) {
+		this.paramName = paramName;
+	}
+
+	/**
+	 * Return the corresponding enumeration from a string parameter.
+	 * 
+	 * @param param
+	 *            The parameter to be match.
+	 * @return The <code>enumeration</code> if found, otherwise
+	 *         <code>null</code>.
+	 */
+	public static UmaErrorResponseType fromString(String param) {
+		return lookup.get(param);
+	}
+
+	/**
+	 * Returns a string representation of the object. In this case, the lower
+	 * case code of the error.
+	 */
+	@Override
+	public String toString() {
+		return paramName;
+	}
+
+	/**
+	 * Gets error parameter.
+	 * 
+	 * @return error parameter
+	 */
+	@Override
+	public String getParameter() {
+		return paramName;
+	}
+}
\ No newline at end of file
diff --git a/oxAuth/Model/src/main/java/org/gluu/oxauth/model/uma/UmaMetadata.java b/oxAuth/Model/src/main/java/org/gluu/oxauth/model/uma/UmaMetadata.java
new file mode 100644
index 00000000..783fe35a
--- /dev/null
+++ b/oxAuth/Model/src/main/java/org/gluu/oxauth/model/uma/UmaMetadata.java
@@ -0,0 +1,97 @@
+/*
+ * oxAuth is available under the MIT License (2008). See http://opensource.org/licenses/MIT for full text.
+ *
+ * Copyright (c) 2014, Gluu
+ */
+
+package org.gluu.oxauth.model.uma;
+
+import com.fasterxml.jackson.annotation.JsonIgnoreProperties;
+import com.fasterxml.jackson.annotation.JsonProperty;
+import org.gluu.oxauth.model.discovery.OAuth2Discovery;
+import org.jboss.resteasy.annotations.providers.jaxb.IgnoreMediaTypes;
+
+import javax.xml.bind.annotation.XmlElement;
+import javax.xml.bind.annotation.XmlRootElement;
+import java.util.Arrays;
+
+/**
+ * UMA2 metadata
+ */
+@IgnoreMediaTypes("application/*+json")
+// try to ignore jettison as it's recommended here: http://docs.jboss.org/resteasy/docs/2.3.4.Final/userguide/html/json.html
+@XmlRootElement
+@JsonIgnoreProperties(ignoreUnknown = true)
+public class UmaMetadata extends OAuth2Discovery {
+
+    @JsonProperty(value = "claims_interaction_endpoint")
+    @XmlElement(name = "claims_interaction_endpoint")
+    private String claimsInteractionEndpoint;
+
+    @JsonProperty(value = "uma_profiles_supported")
+    @XmlElement(name = "uma_profiles_supported")
+    private String[] umaProfilesSupported;
+
+    @JsonProperty(value = "permission_endpoint")
+    @XmlElement(name = "permission_endpoint")
+    private String permissionEndpoint;
+
+    @JsonProperty(value = "resource_registration_endpoint")
+    @XmlElement(name = "resource_registration_endpoint")
+    private String resourceRegistrationEndpoint;
+
+    @JsonProperty(value = "scope_endpoint")
+    @XmlElement(name = "scope_endpoint")
+    private String scopeEndpoint;
+
+    public String getClaimsInteractionEndpoint() {
+        return claimsInteractionEndpoint;
+    }
+
+    public void setClaimsInteractionEndpoint(String claimsInteractionEndpoint) {
+        this.claimsInteractionEndpoint = claimsInteractionEndpoint;
+    }
+
+    public String[] getUmaProfilesSupported() {
+        return umaProfilesSupported;
+    }
+
+    public void setUmaProfilesSupported(String[] umaProfilesSupported) {
+        this.umaProfilesSupported = umaProfilesSupported;
+    }
+
+    public String getPermissionEndpoint() {
+        return permissionEndpoint;
+    }
+
+    public void setPermissionEndpoint(String permissionEndpoint) {
+        this.permissionEndpoint = permissionEndpoint;
+    }
+
+    public String getResourceRegistrationEndpoint() {
+        return resourceRegistrationEndpoint;
+    }
+
+    public void setResourceRegistrationEndpoint(String resourceRegistrationEndpoint) {
+        this.resourceRegistrationEndpoint = resourceRegistrationEndpoint;
+    }
+
+    public String getScopeEndpoint() {
+        return scopeEndpoint;
+    }
+
+    public void setScopeEndpoint(String scopeEndpoint) {
+        this.scopeEndpoint = scopeEndpoint;
+    }
+
+    @Override
+    public String toString() {
+        return "UmaConfiguration{" +
+                "claimsInteractionEndpoint='" + claimsInteractionEndpoint + '\'' +
+                ", umaProfilesSupported=" + Arrays.toString(umaProfilesSupported) +
+                ", permissionEndpoint='" + permissionEndpoint + '\'' +
+                ", resourceRegistrationEndpoint='" + resourceRegistrationEndpoint + '\'' +
+                ", scopeEndpoint='" + scopeEndpoint + '\'' +
+                "} " + super.toString();
+    }
+}
diff --git a/oxAuth/Model/src/main/java/org/gluu/oxauth/model/uma/UmaNeedInfoResponse.java b/oxAuth/Model/src/main/java/org/gluu/oxauth/model/uma/UmaNeedInfoResponse.java
new file mode 100644
index 00000000..e9a6e3a2
--- /dev/null
+++ b/oxAuth/Model/src/main/java/org/gluu/oxauth/model/uma/UmaNeedInfoResponse.java
@@ -0,0 +1,74 @@
+package org.gluu.oxauth.model.uma;
+
+import com.fasterxml.jackson.annotation.JsonIgnoreProperties;
+import com.fasterxml.jackson.annotation.JsonProperty;
+import org.gluu.model.uma.ClaimDefinition;
+
+import java.io.Serializable;
+import java.util.List;
+
+/**
+ * @author Yuriy Zabrovarnyy
+ * @version 0.9, 14/04/2015
+ */
+@JsonIgnoreProperties(ignoreUnknown = true)
+public class UmaNeedInfoResponse implements Serializable {
+
+    @JsonProperty(value = "error")
+    private String error;
+    @JsonProperty(value = "required_claims")
+    private List<ClaimDefinition> requiredClaims;
+    @JsonProperty(value = "redirect_user")
+    private String redirectUser;
+    @JsonProperty(value = "ticket")
+    private String ticket;
+
+    public UmaNeedInfoResponse() {
+    }
+
+    public String getError() {
+        return error;
+    }
+
+    public void setError(String error) {
+        this.error = error;
+    }
+
+    public String getRedirectUser() {
+        return redirectUser;
+    }
+
+    public void setRedirectUser(String redirectUser) {
+        this.redirectUser = redirectUser;
+    }
+
+    public List<ClaimDefinition> getRequiredClaims() {
+        return requiredClaims;
+    }
+
+    public void setRequiredClaims(List<ClaimDefinition> requiredClaims) {
+        this.requiredClaims = requiredClaims;
+    }
+
+    public String getTicket() {
+        return ticket;
+    }
+
+    public void setTicket(String ticket) {
+        this.ticket = ticket;
+    }
+
+    /**
+     * Builds GET claims-gathering url. Note: it is strictly recommended to use POST http method.
+     *
+     * @return claims-gathering url for GET request.
+     */
+    public String buildClaimsGatheringUrl(String clientId, String claimsRedirectUri) {
+        String result = redirectUser;
+        result += result.contains("?") ? "&" : "?";
+        result += "client_id=" + clientId;
+        result += "&ticket=" + ticket;
+        result += "&claims_redirect_uri=" + claimsRedirectUri;
+        return result;
+    }
+}
diff --git a/oxAuth/Model/src/main/java/org/gluu/oxauth/model/uma/UmaPermission.java b/oxAuth/Model/src/main/java/org/gluu/oxauth/model/uma/UmaPermission.java
new file mode 100644
index 00000000..350b4141
--- /dev/null
+++ b/oxAuth/Model/src/main/java/org/gluu/oxauth/model/uma/UmaPermission.java
@@ -0,0 +1,102 @@
+/*
+ * oxAuth is available under the MIT License (2008). See http://opensource.org/licenses/MIT for full text.
+ *
+ * Copyright (c) 2014, Gluu
+ */
+
+package org.gluu.oxauth.model.uma;
+
+import com.fasterxml.jackson.annotation.JsonIgnoreProperties;
+import com.fasterxml.jackson.annotation.JsonProperty;
+import com.fasterxml.jackson.annotation.JsonPropertyOrder;
+import org.jboss.resteasy.annotations.providers.jaxb.IgnoreMediaTypes;
+
+import javax.xml.bind.annotation.XmlElement;
+import javax.xml.bind.annotation.XmlRootElement;
+import java.io.Serializable;
+import java.util.ArrayList;
+import java.util.List;
+import java.util.Map;
+
+/**
+ * UMA Permission. Used for both:
+ * 1. register permission ticket
+ * 2. by introspection RPT endpoint to return RPT status.
+ *
+ * @author Yuriy Zabrovarnyy
+ * @author Yuriy Movchan
+ */
+
+// try to ignore jettison as it's recommended here: http://docs.jboss.org/resteasy/docs/2.3.4.Final/userguide/html/json.html
+@IgnoreMediaTypes("application/*+json")
+@JsonPropertyOrder({"resource_id", "resource_scopes", "exp"})
+@JsonIgnoreProperties(ignoreUnknown = true)
+@XmlRootElement
+public class UmaPermission implements Serializable {
+
+    private String resourceId;
+    private List<String> scopes;
+    private Integer expiresAt;
+
+    private Map<String, String> params;
+
+    public UmaPermission() {
+    }
+
+    public UmaPermission(String resourceId, List<String> scopes) {
+        this.resourceId = resourceId;
+        this.scopes = scopes;
+    }
+
+    @JsonProperty(value = "resource_id")
+    @XmlElement(name = "resource_id")
+    public String getResourceId() {
+        return resourceId;
+    }
+
+    public void setResourceId(String resourceId) {
+        this.resourceId = resourceId;
+    }
+
+    @JsonProperty(value = "resource_scopes")
+    @XmlElement(name = "resource_scopes")
+    public List<String> getScopes() {
+        if (scopes == null) {
+            scopes = new ArrayList<>();
+        }
+        return scopes;
+    }
+
+    public void setScopes(List<String> scopes) {
+        this.scopes = scopes;
+    }
+
+    @JsonProperty(value = "exp")
+    @XmlElement(name = "exp")
+    public Integer getExpiresAt() {
+        return expiresAt;
+    }
+
+    public void setExpiresAt(Integer expiresAt) {
+        this.expiresAt = expiresAt;
+    }
+
+    @JsonProperty(value = "params")
+    @XmlElement(name = "params")
+    public Map<String, String> getParams() {
+        return params;
+    }
+
+    public void setParams(Map<String, String> params) {
+        this.params = params;
+    }
+
+    @Override
+    public String toString() {
+        return "UmaPermission{" +
+                "resourceId='" + resourceId + '\'' +
+                ", scopes=" + scopes +
+                ", expiresAt=" + expiresAt +
+                '}';
+    }
+}
diff --git a/oxAuth/Model/src/main/java/org/gluu/oxauth/model/uma/UmaPermissionList.java b/oxAuth/Model/src/main/java/org/gluu/oxauth/model/uma/UmaPermissionList.java
new file mode 100644
index 00000000..145e6897
--- /dev/null
+++ b/oxAuth/Model/src/main/java/org/gluu/oxauth/model/uma/UmaPermissionList.java
@@ -0,0 +1,26 @@
+package org.gluu.oxauth.model.uma;
+
+import com.fasterxml.jackson.annotation.JsonIgnore;
+import org.jboss.resteasy.annotations.providers.jaxb.IgnoreMediaTypes;
+
+import java.util.ArrayList;
+import java.util.Collections;
+
+/**
+ * @author yuriyz on 05/25/2017.
+ */
+@IgnoreMediaTypes("application/*+json")
+public class UmaPermissionList extends ArrayList<UmaPermission> {
+
+    @JsonIgnore
+    public UmaPermissionList addPermission(UmaPermission permission) {
+        add(permission);
+        return this;
+    }
+
+    public static UmaPermissionList instance(UmaPermission... permissions) {
+        UmaPermissionList instance = new UmaPermissionList();
+        Collections.addAll(instance, permissions);
+        return instance;
+    }
+}
diff --git a/oxAuth/Model/src/main/java/org/gluu/oxauth/model/uma/UmaResource.java b/oxAuth/Model/src/main/java/org/gluu/oxauth/model/uma/UmaResource.java
new file mode 100644
index 00000000..5d11c3e1
--- /dev/null
+++ b/oxAuth/Model/src/main/java/org/gluu/oxauth/model/uma/UmaResource.java
@@ -0,0 +1,158 @@
+/*
+ * oxAuth is available under the MIT License (2008). See http://opensource.org/licenses/MIT for full text.
+ *
+ * Copyright (c) 2014, Gluu
+ */
+
+package org.gluu.oxauth.model.uma;
+
+import com.fasterxml.jackson.annotation.JsonIgnore;
+import com.fasterxml.jackson.annotation.JsonIgnoreProperties;
+import com.fasterxml.jackson.annotation.JsonProperty;
+import com.fasterxml.jackson.annotation.JsonPropertyOrder;
+import org.apache.commons.lang.StringUtils;
+import org.jboss.resteasy.annotations.providers.jaxb.IgnoreMediaTypes;
+
+import javax.xml.bind.annotation.XmlElement;
+import javax.xml.bind.annotation.XmlRootElement;
+import java.util.List;
+
+/**
+ * Resource that needs protection by registering a resource description at the AS.
+ *
+ * @author Yuriy Zabrovarnyy
+ *         Date: 17/05/2017
+ */
+
+@IgnoreMediaTypes("application/*+json")
+// try to ignore jettison as it's recommended here: http://docs.jboss.org/resteasy/docs/2.3.4.Final/userguide/html/json.html
+@JsonPropertyOrder({"name", "uri", "type", "scopes", "scopeExpression", "icon_uri"})
+@JsonIgnoreProperties(ignoreUnknown = true)
+@XmlRootElement
+public class UmaResource {
+
+    private List<String> scopes;
+
+    private String scopeExpression;
+
+    private String description;
+
+    private String iconUri;
+
+    private String name;
+
+    private String type;
+
+    private Integer iat;
+
+    private Integer exp;
+
+    @JsonProperty(value = "iat")
+    @XmlElement(name = "iat")
+    public Integer getIat() {
+        return iat;
+    }
+
+    public void setIat(Integer iat) {
+        this.iat = iat;
+    }
+
+    @JsonProperty(value = "exp")
+    @XmlElement(name = "exp")
+    public Integer getExp() {
+        return exp;
+    }
+
+    public void setExp(Integer exp) {
+        this.exp = exp;
+    }
+
+    @JsonProperty(value = "description")
+    @XmlElement(name = "description")
+    public String getDescription() {
+        return description;
+    }
+
+    public void setDescription(String description) {
+        this.description = description;
+    }
+
+    @JsonProperty(value = "type")
+    @XmlElement(name = "type")
+    public String getType() {
+        return type;
+    }
+
+    public UmaResource setType(String p_type) {
+        type = p_type;
+        return this;
+    }
+
+    @JsonProperty(value = "name")
+    @XmlElement(name = "name")
+    public String getName() {
+        return name;
+    }
+
+    public UmaResource setName(String name) {
+        this.name = name;
+        return this;
+    }
+
+    @JsonProperty(value = "icon_uri")
+    @XmlElement(name = "icon_uri")
+    public String getIconUri() {
+        return iconUri;
+    }
+
+    public UmaResource setIconUri(String iconUri) {
+        this.iconUri = iconUri;
+        return this;
+    }
+
+    @JsonProperty(value = "resource_scopes")
+    @XmlElement(name = "resource_scopes")
+    public List<String> getScopes() {
+        return scopes;
+    }
+
+    public UmaResource setScopes(List<String> scopes) {
+        this.scopes = scopes;
+        return this;
+    }
+
+    @JsonProperty(value = "scope_expression")
+    @XmlElement(name = "scope_expression")
+    public String getScopeExpression() {
+        return scopeExpression;
+    }
+
+    public void setScopeExpression(String scopeExpression) {
+        assertValidExpression(scopeExpression);
+        this.scopeExpression = scopeExpression;
+    }
+
+    @JsonIgnore
+    public static void assertValidExpression(String scopeExpression) {
+        if (!isValidExpression(scopeExpression)) {
+            throw new RuntimeException("Scope expression is not valid json logic expression. Expression:" + scopeExpression);
+        }
+    }
+
+    @JsonIgnore
+    public static boolean isValidExpression(String scopeExpression) {
+        return StringUtils.isBlank(scopeExpression) || JsonLogicNodeParser.isNodeValid(scopeExpression);
+    }
+
+    @Override
+    public String toString() {
+        return "UmaResource{" +
+                "name='" + name + '\'' +
+                ", scopes=" + scopes +
+                ", scopeExpression=" + scopeExpression +
+                ", description='" + description + '\'' +
+                ", iconUri='" + iconUri + '\'' +
+                ", type='" + type + '\'' +
+                '}';
+    }
+}
diff --git a/oxAuth/Model/src/main/java/org/gluu/oxauth/model/uma/UmaResourceResponse.java b/oxAuth/Model/src/main/java/org/gluu/oxauth/model/uma/UmaResourceResponse.java
new file mode 100644
index 00000000..65160e65
--- /dev/null
+++ b/oxAuth/Model/src/main/java/org/gluu/oxauth/model/uma/UmaResourceResponse.java
@@ -0,0 +1,58 @@
+/*
+ * oxAuth is available under the MIT License (2008). See http://opensource.org/licenses/MIT for full text.
+ *
+ * Copyright (c) 2014, Gluu
+ */
+
+package org.gluu.oxauth.model.uma;
+
+import com.fasterxml.jackson.annotation.JsonIgnoreProperties;
+import com.fasterxml.jackson.annotation.JsonProperty;
+import com.fasterxml.jackson.annotation.JsonPropertyOrder;
+import org.jboss.resteasy.annotations.providers.jaxb.IgnoreMediaTypes;
+
+import javax.xml.bind.annotation.XmlElement;
+import javax.xml.bind.annotation.XmlRootElement;
+
+/**
+ * Resource description.
+ * 
+ * @author Yuriy Movchan
+ * @author Yuriy Zabrovarnyy
+ * Date: 10/03/2012
+ */
+@IgnoreMediaTypes("application/*+json") // try to ignore jettison as it's recommended here: http://docs.jboss.org/resteasy/docs/2.3.4.Final/userguide/html/json.html
+@JsonPropertyOrder({ "_id", "user_access_policy_uri" })
+@JsonIgnoreProperties(ignoreUnknown = true)
+@XmlRootElement
+public class UmaResourceResponse {
+
+	private String id;
+	private String userAccessPolicyUri;
+
+	@JsonProperty(value = "_id")
+	@XmlElement(name = "_id")
+	public String getId() {
+		return id;
+	}
+
+	public void setId(String id) {
+		this.id = id;
+	}
+
+    @JsonProperty(value = "user_access_policy_uri")
+	@XmlElement(name = "user_access_policy_uri")
+	public String getUserAccessPolicyUri() {
+		return userAccessPolicyUri;
+	}
+
+	public void setUserAccessPolicyUri(String userAccessPolicyUri) {
+		this.userAccessPolicyUri = userAccessPolicyUri;
+	}
+
+	@Override
+	public String toString() {
+		return "UmaResourceResponse [id=" + id + ", user_access_policy_uri=" + userAccessPolicyUri + "]";
+	}
+
+}
diff --git a/oxAuth/Model/src/main/java/org/gluu/oxauth/model/uma/UmaResourceWithId.java b/oxAuth/Model/src/main/java/org/gluu/oxauth/model/uma/UmaResourceWithId.java
new file mode 100644
index 00000000..f9abd65c
--- /dev/null
+++ b/oxAuth/Model/src/main/java/org/gluu/oxauth/model/uma/UmaResourceWithId.java
@@ -0,0 +1,46 @@
+/*
+ * oxAuth is available under the MIT License (2008). See http://opensource.org/licenses/MIT for full text.
+ *
+ * Copyright (c) 2014, Gluu
+ */
+
+package org.gluu.oxauth.model.uma;
+
+import com.fasterxml.jackson.annotation.JsonProperty;
+import com.fasterxml.jackson.annotation.JsonPropertyOrder;
+import org.jboss.resteasy.annotations.providers.jaxb.IgnoreMediaTypes;
+
+import javax.xml.bind.annotation.XmlElement;
+import javax.xml.bind.annotation.XmlRootElement;
+
+/**
+ * Resource that needs protection by registering a resource description
+ * at the AS.
+ *
+ * @author Yuriy Zabrovarnyy
+ * Date: 17/05/2017
+ */
+@IgnoreMediaTypes("application/*+json") // try to ignore jettison as it's recommended here: http://docs.jboss.org/resteasy/docs/2.3.4.Final/userguide/html/json.html
+@JsonPropertyOrder({ "_id", "_rev", "name", "iconUri", "scopes" })
+@XmlRootElement
+public class UmaResourceWithId extends UmaResource {
+
+	private String id;
+
+    @JsonProperty(value = "_id")
+	@XmlElement(name = "_id")
+	public String getId() {
+		return id;
+	}
+
+	public void setId(String id) {
+		this.id = id;
+	}
+
+	@Override
+	public String toString() {
+		return "UmaResourceWithId [id=" + id
+				+ ", toString()=" + super.toString() + "]";
+	}
+
+}
diff --git a/oxAuth/Model/src/main/java/org/gluu/oxauth/model/uma/UmaScopeDescription.java b/oxAuth/Model/src/main/java/org/gluu/oxauth/model/uma/UmaScopeDescription.java
new file mode 100644
index 00000000..59564966
--- /dev/null
+++ b/oxAuth/Model/src/main/java/org/gluu/oxauth/model/uma/UmaScopeDescription.java
@@ -0,0 +1,76 @@
+/*
+ * oxAuth is available under the MIT License (2008). See http://opensource.org/licenses/MIT for full text.
+ *
+ * Copyright (c) 2014, Gluu
+ */
+
+package org.gluu.oxauth.model.uma;
+
+import com.fasterxml.jackson.annotation.JsonIgnoreProperties;
+import com.fasterxml.jackson.annotation.JsonProperty;
+import com.fasterxml.jackson.annotation.JsonPropertyOrder;
+import org.jboss.resteasy.annotations.providers.jaxb.IgnoreMediaTypes;
+
+import javax.xml.bind.annotation.XmlElement;
+import javax.xml.bind.annotation.XmlRootElement;
+
+/**
+ * A scope is a bounded extent of access that is possible to perform on a
+ * resource set.
+ * 
+ * @author Yuriy Movchan
+ * @author Yuriy Zabrovarnyy
+ * Date: 10/03/2012
+ */
+@IgnoreMediaTypes("application/*+json") // try to ignore jettison as it's recommended here: http://docs.jboss.org/resteasy/docs/2.3.4.Final/userguide/html/json.html
+@JsonPropertyOrder({ "name", "icon_uri" })
+@JsonIgnoreProperties(ignoreUnknown = true)
+@XmlRootElement()
+public class UmaScopeDescription {
+
+	private String description;
+
+	private String iconUri;
+
+	private String name;
+
+	@JsonProperty(value = "description")
+	@XmlElement(name = "description")
+	public String getDescription() {
+		return description;
+	}
+
+	public void setDescription(String description) {
+		this.description = description;
+	}
+
+	@JsonProperty(value = "name")
+	@XmlElement(name = "name")
+	public String getName() {
+		return name;
+	}
+
+	public void setName(String name) {
+		this.name = name;
+	}
+
+    @JsonProperty(value = "icon_uri")
+	@XmlElement(name = "icon_uri")
+	public String getIconUri() {
+		return iconUri;
+	}
+
+	public void setIconUri(String iconUri) {
+		this.iconUri = iconUri;
+	}
+
+    @Override
+    public String toString() {
+        final StringBuilder sb = new StringBuilder();
+        sb.append("ScopeDescription");
+        sb.append("{iconUri='").append(iconUri).append('\'');
+        sb.append(", name='").append(name).append('\'');
+        sb.append('}');
+        return sb.toString();
+    }
+}
diff --git a/oxAuth/Model/src/main/java/org/gluu/oxauth/model/uma/UmaScopeType.java b/oxAuth/Model/src/main/java/org/gluu/oxauth/model/uma/UmaScopeType.java
new file mode 100644
index 00000000..157589ed
--- /dev/null
+++ b/oxAuth/Model/src/main/java/org/gluu/oxauth/model/uma/UmaScopeType.java
@@ -0,0 +1,42 @@
+/*
+ * oxAuth is available under the MIT License (2008). See http://opensource.org/licenses/MIT for full text.
+ *
+ * Copyright (c) 2014, Gluu
+ */
+
+package org.gluu.oxauth.model.uma;
+
+import java.util.HashMap;
+import java.util.Map;
+
+/**
+ * @author Yuriy Zabrovarnyy
+ * @version 0.9, 12/03/2013
+ */
+
+public enum UmaScopeType {
+
+    PROTECTION("uma_protection");
+
+    private static Map<String, UmaScopeType> lookup = new HashMap<String, UmaScopeType>();
+
+    static {
+        for (UmaScopeType enumType : values()) {
+            lookup.put(enumType.getValue(), enumType);
+        }
+    }
+
+    private String m_value;
+
+    private UmaScopeType(String p_value) {
+        m_value = p_value;
+    }
+
+    public String getValue() {
+        return m_value;
+    }
+
+    public static UmaScopeType fromValue(String p_value) {
+        return lookup.get(p_value);
+    }
+}
diff --git a/oxAuth/Model/src/main/java/org/gluu/oxauth/model/uma/UmaTokenResponse.java b/oxAuth/Model/src/main/java/org/gluu/oxauth/model/uma/UmaTokenResponse.java
new file mode 100644
index 00000000..6c2ee7b1
--- /dev/null
+++ b/oxAuth/Model/src/main/java/org/gluu/oxauth/model/uma/UmaTokenResponse.java
@@ -0,0 +1,77 @@
+package org.gluu.oxauth.model.uma;
+
+import com.fasterxml.jackson.annotation.JsonIgnoreProperties;
+import com.fasterxml.jackson.annotation.JsonProperty;
+import org.jboss.resteasy.annotations.providers.jaxb.IgnoreMediaTypes;
+
+import javax.xml.bind.annotation.XmlElement;
+import javax.xml.bind.annotation.XmlRootElement;
+import java.io.Serializable;
+
+/**
+ * @author yuriyz on 06/04/2017.
+ */
+@IgnoreMediaTypes("application/*+json")
+// try to ignore jettison as it's recommended here: http://docs.jboss.org/resteasy/docs/2.3.4.Final/userguide/html/json.html
+@XmlRootElement
+@JsonIgnoreProperties(ignoreUnknown = true)
+public class UmaTokenResponse implements Serializable {
+
+    @JsonProperty(value = "access_token")
+    @XmlElement(name = "access_token")
+    private String accessToken;
+
+    @JsonProperty(value = "token_type")
+    @XmlElement(name = "token_type")
+    private String tokenType = "Bearer";
+
+    @JsonProperty(value = "pct")
+    @XmlElement(name = "pct")
+    private String pct;
+
+    @JsonProperty(value = "upgraded")
+    @XmlElement(name = "upgraded")
+    private Boolean upgraded =false;
+
+    public String getAccessToken() {
+        return accessToken;
+    }
+
+    public void setAccessToken(String accessToken) {
+        this.accessToken = accessToken;
+    }
+
+    public String getTokenType() {
+        return tokenType;
+    }
+
+    public void setTokenType(String tokenType) {
+        this.tokenType = tokenType;
+    }
+
+    public String getPct() {
+        return pct;
+    }
+
+    public void setPct(String pct) {
+        this.pct = pct;
+    }
+
+    public Boolean getUpgraded() {
+        return upgraded;
+    }
+
+    public void setUpgraded(Boolean upgraded) {
+        this.upgraded = upgraded;
+    }
+
+    @Override
+    public String toString() {
+        return "UmaTokenResponse{" +
+                "accessToken='" + accessToken + '\'' +
+                ", tokenType='" + tokenType + '\'' +
+                ", pct='" + pct + '\'' +
+                ", upgraded=" + upgraded +
+                '}';
+    }
+}
diff --git a/oxAuth/Model/src/main/java/org/gluu/oxauth/model/uma/persistence/UmaPermission.java b/oxAuth/Model/src/main/java/org/gluu/oxauth/model/uma/persistence/UmaPermission.java
new file mode 100644
index 00000000..6dc875d1
--- /dev/null
+++ b/oxAuth/Model/src/main/java/org/gluu/oxauth/model/uma/persistence/UmaPermission.java
@@ -0,0 +1,205 @@
+/*
+ * oxAuth is available under the MIT License (2008). See http://opensource.org/licenses/MIT for full text.
+ *
+ * Copyright (c) 2014, Gluu
+ */
+
+package org.gluu.oxauth.model.uma.persistence;
+
+import com.google.common.collect.Maps;
+import org.gluu.oxauth.model.util.Pair;
+import org.gluu.persist.annotation.*;
+
+import java.io.Serializable;
+import java.time.Duration;
+import java.util.*;
+
+/**
+ * UMA permission
+ *
+ * @author Yuriy Zabrovarnyy
+ * @version 2.0, date: 17/05/2017
+ */
+@DataEntry
+@ObjectClass(value = "oxUmaResourcePermission")
+public class UmaPermission implements Serializable {
+
+    public static final String PCT = "pct";
+
+    @DN
+    private String dn;
+    @AttributeName(name = "oxStatus")
+    private String status;
+    @AttributeName(name = "oxTicket", consistency = true)
+    private String ticket;
+    @AttributeName(name = "oxConfigurationCode")
+    private String configurationCode;
+    @AttributeName(name = "exp")
+    private Date expirationDate;
+    @AttributeName(name = "del")
+    private boolean deletable = true;
+
+    @AttributeName(name = "oxResourceSetId")
+    private String resourceId;
+    @AttributeName(name = "oxAuthUmaScope")
+    private List<String> scopeDns;
+
+    @JsonObject
+    @AttributeName(name = "oxAttributes")
+    private Map<String, String> attributes;
+
+    @Expiration
+    private Integer ttl;
+
+    private boolean expired;
+
+    public UmaPermission() {
+    }
+
+    public UmaPermission(String resourceId, List<String> scopes, String ticket,
+                         String configurationCode, Pair<Date, Integer> expirationDate) {
+        this.resourceId = resourceId;
+        this.scopeDns = scopes;
+        this.ticket = ticket;
+        this.configurationCode = configurationCode;
+        this.expirationDate = expirationDate.getFirst();
+        this.ttl = expirationDate.getSecond();
+
+        checkExpired();
+    }
+
+    public Integer getTtl() {
+        return ttl;
+    }
+
+    public void setTtl(Integer ttl) {
+        this.ttl = ttl;
+    }
+
+    public void resetTtlFromExpirationDate() {
+        final long ttl = Duration.between(new Date().toInstant(), getExpirationDate().toInstant()).getSeconds();
+        setTtl((int) ttl);
+    }
+
+    public String getDn() {
+        return dn;
+    }
+
+    public void setDn(String p_dn) {
+        dn = p_dn;
+    }
+
+    public boolean isDeletable() {
+        return deletable;
+    }
+
+    public void setDeletable(boolean deletable) {
+        this.deletable = deletable;
+    }
+
+    public void checkExpired() {
+        checkExpired(new Date());
+    }
+
+    public void checkExpired(Date now) {
+        if (now.after(expirationDate) && deletable) {
+            expired = true;
+        }
+    }
+
+    public boolean isValid() {
+        return !expired;
+    }
+
+    public String getStatus() {
+        return status;
+    }
+
+    public void setStatus(String status) {
+        this.status = status;
+    }
+
+    public String getConfigurationCode() {
+        return configurationCode;
+    }
+
+    public void setConfigurationCode(String configurationCode) {
+        this.configurationCode = configurationCode;
+    }
+
+    public String getTicket() {
+        return ticket;
+    }
+
+    public void setTicket(String ticket) {
+        this.ticket = ticket;
+    }
+
+    public Date getExpirationDate() {
+        return expirationDate;
+    }
+
+    public void setExpirationDate(Date expirationDate) {
+        this.expirationDate = expirationDate;
+    }
+
+    public String getResourceId() {
+        return resourceId;
+    }
+
+    public void setResourceId(String resourceId) {
+        this.resourceId = resourceId;
+    }
+
+    public List<String> getScopeDns() {
+        if (scopeDns == null) {
+            scopeDns = new ArrayList<String>();
+        }
+        return scopeDns;
+    }
+
+    public void setScopeDns(List<String> p_scopeDns) {
+        scopeDns = p_scopeDns;
+    }
+
+    public Map<String, String> getAttributes() {
+        if (attributes == null) {
+            attributes = Maps.newHashMap();
+        }
+        return attributes;
+    }
+
+    public void setAttributes(Map<String, String> attributes) {
+        this.attributes = attributes != null ? attributes : new HashMap<String, String>();
+    }
+
+    @Override
+    public boolean equals(Object o) {
+        if (this == o) return true;
+        if (o == null || getClass() != o.getClass()) return false;
+
+        UmaPermission that = (UmaPermission) o;
+
+        return !(ticket != null ? !ticket.equals(that.ticket) : that.ticket != null);
+
+    }
+
+    @Override
+    public int hashCode() {
+        return ticket != null ? ticket.hashCode() : 0;
+    }
+
+    @Override
+    public String toString() {
+        return "UmaPermission{" +
+                "dn='" + dn + '\'' +
+                ", status='" + status + '\'' +
+                ", ticket='" + ticket + '\'' +
+                ", configurationCode='" + configurationCode + '\'' +
+                ", expirationDate=" + expirationDate +
+                ", resourceId='" + resourceId + '\'' +
+                ", scopeDns=" + scopeDns +
+                ", expired=" + expired +
+                '}';
+    }
+}
diff --git a/oxAuth/Model/src/main/java/org/gluu/oxauth/model/uma/persistence/UmaResource.java b/oxAuth/Model/src/main/java/org/gluu/oxauth/model/uma/persistence/UmaResource.java
new file mode 100644
index 00000000..c8cf74c0
--- /dev/null
+++ b/oxAuth/Model/src/main/java/org/gluu/oxauth/model/uma/persistence/UmaResource.java
@@ -0,0 +1,252 @@
+/*
+ * oxAuth is available under the MIT License (2008). See http://opensource.org/licenses/MIT for full text.
+ *
+ * Copyright (c) 2014, Gluu
+ */
+
+package org.gluu.oxauth.model.uma.persistence;
+
+import com.fasterxml.jackson.annotation.JsonIgnore;
+import com.google.common.collect.Lists;
+import org.gluu.persist.annotation.*;
+
+import javax.validation.constraints.NotNull;
+import java.io.Serializable;
+import java.time.Duration;
+import java.util.ArrayList;
+import java.util.Date;
+import java.util.List;
+
+/**
+ * Resource description.
+ *
+ * @author Yuriy Zabrovarnyy Date: 10/03/2012
+ */
+@DataEntry
+@ObjectClass(value = "oxUmaResource")
+public class UmaResource implements Serializable {
+
+    @DN
+    private String dn;
+
+    @AttributeName(ignoreDuringUpdate = true)
+    private String inum;
+
+    @AttributeName(name = "oxId")
+    private String id;
+
+    @NotNull(message = "Display name should be not empty")
+    @AttributeName(name = "displayName")
+    private String name;
+
+    @AttributeName(name = "oxFaviconImage")
+    private String iconUri;
+
+    @AttributeName(name = "oxAuthUmaScope", consistency = true)
+    private List<String> scopes;
+
+    @AttributeName(name = "oxScopeExpression", consistency = true)
+    private String scopeExpression;
+
+    @AttributeName(name = "oxAssociatedClient", consistency = true)
+    private List<String> clients;
+
+    @AttributeName(name = "oxResource")
+    private List<String> resources;
+
+    @AttributeName(name = "oxRevision")
+    private long rev;
+
+    @AttributeName(name = "owner")
+    private String creator;
+
+    @AttributeName(name = "description")
+    private String description;
+
+    @AttributeName(name = "oxType")
+    private String type;
+
+    @AttributeName(name = "iat")
+    private Date creationDate;
+
+    @AttributeName(name = "exp")
+    private Date expirationDate;
+
+    @AttributeName(name = "del")
+    private boolean deletable = true;
+
+    @Expiration
+    private Integer ttl;
+
+    public Integer getTtl() {
+        return ttl;
+    }
+
+    public void setTtl(Integer ttl) {
+        this.ttl = ttl;
+    }
+
+    public void resetTtlFromExpirationDate() {
+        final long ttl = Duration.between(new Date().toInstant(), getExpirationDate().toInstant()).getSeconds();
+        setTtl((int) ttl);
+    }
+
+    public boolean isDeletable() {
+        return deletable;
+    }
+
+    public void setDeletable(boolean deletable) {
+        this.deletable = deletable;
+    }
+
+    public String getScopeExpression() {
+        return scopeExpression;
+    }
+
+    public void setScopeExpression(String scopeExpression) {
+        this.scopeExpression = scopeExpression;
+    }
+
+    public String getDn() {
+        return dn;
+    }
+
+    public void setDn(String dn) {
+        this.dn = dn;
+    }
+
+    public String getDescription() {
+        return description;
+    }
+
+    public void setDescription(String description) {
+        this.description = description;
+    }
+
+    public String getInum() {
+        return inum;
+    }
+
+    public void setInum(String inum) {
+        this.inum = inum;
+    }
+
+    public String getId() {
+        return id;
+    }
+
+    public void setId(String id) {
+        this.id = id;
+    }
+
+    public List<String> getClients() {
+        if (clients == null) {
+            clients = new ArrayList<String>();
+        }
+        return clients;
+    }
+
+    public void setClients(List<String> p_clients) {
+        clients = p_clients;
+    }
+
+    public String getType() {
+        return type;
+    }
+
+    public void setType(String type) {
+        this.type = type;
+    }
+
+    public String getName() {
+        return name;
+    }
+
+    public void setName(String name) {
+        this.name = name;
+    }
+
+    public String getIconUri() {
+        return iconUri;
+    }
+
+    public void setIconUri(String iconUri) {
+        this.iconUri = iconUri;
+    }
+
+    public List<String> getScopes() {
+        if (scopes == null) scopes = Lists.newArrayList();
+        return scopes;
+    }
+
+    public void setScopes(List<String> scopes) {
+        this.scopes = scopes;
+    }
+
+    public List<String> getResources() {
+        return resources;
+    }
+
+    public void setResources(List<String> resources) {
+        this.resources = resources;
+    }
+
+    public long getRev() {
+        return rev;
+    }
+
+    public void setRev(long rev) {
+        this.rev = rev;
+    }
+
+    public String getCreator() {
+        return creator;
+    }
+
+    public void setCreator(String creator) {
+        this.creator = creator;
+    }
+
+    public Date getCreationDate() {
+        return creationDate;
+    }
+
+    public void setCreationDate(Date creationDate) {
+        this.creationDate = creationDate;
+    }
+
+    public Date getExpirationDate() {
+        return expirationDate;
+    }
+
+    public void setExpirationDate(Date expirationDate) {
+        this.expirationDate = expirationDate;
+    }
+
+    @JsonIgnore
+    public boolean isExpired() {
+        return expirationDate != null && new Date().after(expirationDate);
+    }
+
+    @Override
+    public String toString() {
+        return "UmaResource{" +
+                "dn='" + dn + '\'' +
+                ", inum='" + inum + '\'' +
+                ", id='" + id + '\'' +
+                ", name='" + name + '\'' +
+                ", iconUri='" + iconUri + '\'' +
+                ", scopes=" + scopes +
+                ", scopeExpression='" + scopeExpression + '\'' +
+                ", clients=" + clients +
+                ", resources=" + resources +
+                ", rev='" + rev + '\'' +
+                ", creator='" + creator + '\'' +
+                ", description='" + description + '\'' +
+                ", type='" + type + '\'' +
+                ", creationDate=" + creationDate +
+                ", expirationDate=" + expirationDate +
+                ", deletable=" + deletable +
+                '}';
+    }
+}
diff --git a/oxAuth/Model/src/main/java/org/gluu/oxauth/model/uma/wrapper/Token.java b/oxAuth/Model/src/main/java/org/gluu/oxauth/model/uma/wrapper/Token.java
new file mode 100644
index 00000000..3a2fa5ce
--- /dev/null
+++ b/oxAuth/Model/src/main/java/org/gluu/oxauth/model/uma/wrapper/Token.java
@@ -0,0 +1,89 @@
+/*
+ * oxAuth is available under the MIT License (2008). See http://opensource.org/licenses/MIT for full text.
+ *
+ * Copyright (c) 2014, Gluu
+ */
+
+package org.gluu.oxauth.model.uma.wrapper;
+
+import java.io.Serializable;
+
+/**
+ * @author Yuriy Zabrovarnyy
+ * @version 0.9, 15/03/2013
+ */
+
+public class Token implements Serializable {
+
+    private String authorizationCode;
+    private String scope;
+    private String accessToken;
+    private String refreshToken;
+    private String idToken;
+    private Integer expiresIn;
+
+    public Token() {
+    }
+
+    public Token(String authorizationCode, String refreshToken, String accessToken, String scope, Integer expiresIn) {
+        this.authorizationCode = authorizationCode;
+        this.refreshToken = refreshToken;
+        this.accessToken = accessToken;
+        this.scope = scope;
+        this.expiresIn = expiresIn;
+    }
+
+    public String getAuthorizationCode() {
+        return authorizationCode;
+    }
+
+    public Token setAuthorizationCode(String p_authorizationCode) {
+        authorizationCode = p_authorizationCode;
+        return this;
+    }
+
+    public String getRefreshToken() {
+        return refreshToken;
+    }
+
+    public Token setRefreshToken(String p_refreshToken) {
+        refreshToken = p_refreshToken;
+        return this;
+    }
+
+    public String getAccessToken() {
+        return accessToken;
+    }
+
+    public Token setAccessToken(String p_accessToken) {
+        accessToken = p_accessToken;
+        return this;
+    }
+
+    public String getScope() {
+        return scope;
+    }
+
+    public Token setScope(String p_scope) {
+        scope = p_scope;
+        return this;
+    }
+
+    public String getIdToken() {
+        return idToken;
+    }
+
+    public Token setIdToken(String p_idToken) {
+        idToken = p_idToken;
+        return this;
+    }
+
+	public Integer getExpiresIn() {
+		return expiresIn;
+	}
+
+	public void setExpiresIn(Integer expiresIn) {
+		this.expiresIn = expiresIn;
+	}
+
+}
diff --git a/oxAuth/Model/src/main/java/org/gluu/oxauth/model/userinfo/Schema.java b/oxAuth/Model/src/main/java/org/gluu/oxauth/model/userinfo/Schema.java
new file mode 100644
index 00000000..6ec795c0
--- /dev/null
+++ b/oxAuth/Model/src/main/java/org/gluu/oxauth/model/userinfo/Schema.java
@@ -0,0 +1,46 @@
+/*
+ * oxAuth is available under the MIT License (2008). See http://opensource.org/licenses/MIT for full text.
+ *
+ * Copyright (c) 2014, Gluu
+ */
+
+package org.gluu.oxauth.model.userinfo;
+
+/**
+ * @author Javier Rojas Date: 11.28.2011
+ */
+public enum Schema {
+
+    OPEN_ID("openid");
+
+    private final String paramName;
+
+    private Schema(String paramName) {
+        this.paramName = paramName;
+    }
+
+    /**
+     * Returns the corresponding {@link Schema} for a given parameter.
+     *
+     * @param param The schema parameter
+     * @return The corresponding schema if found, otherwise <code>null</code>.
+     */
+    public static Schema fromString(String param) {
+        if (param != null) {
+            for (Schema s : Schema.values()) {
+                if (param.equals(s.paramName)) {
+                    return s;
+                }
+            }
+        }
+        return null;
+    }
+
+    /**
+     * Returns a string representation of the object. In this case the parameter name.
+     */
+    @Override
+    public String toString() {
+        return paramName;
+    }
+}
\ No newline at end of file
diff --git a/oxAuth/Model/src/main/java/org/gluu/oxauth/model/userinfo/UserInfoErrorResponseType.java b/oxAuth/Model/src/main/java/org/gluu/oxauth/model/userinfo/UserInfoErrorResponseType.java
new file mode 100644
index 00000000..f20a2e61
--- /dev/null
+++ b/oxAuth/Model/src/main/java/org/gluu/oxauth/model/userinfo/UserInfoErrorResponseType.java
@@ -0,0 +1,63 @@
+/*
+ * oxAuth is available under the MIT License (2008). See http://opensource.org/licenses/MIT for full text.
+ *
+ * Copyright (c) 2014, Gluu
+ */
+
+package org.gluu.oxauth.model.userinfo;
+
+import org.gluu.oxauth.model.error.IErrorType;
+
+/**
+ * @author Javier Rojas Date: 11.30.2011
+ */
+public enum UserInfoErrorResponseType implements IErrorType {
+
+    /**
+     * The request is missing a required parameter, includes an unsupported parameter or parameter value, repeats
+     * the same parameter, uses more than one method for including an access token, or is otherwise malformed.
+     */
+    INVALID_REQUEST("invalid_request"),
+    /**
+     * The access token provided is expired, revoked, malformed, or invalid for other reasons. Try to request a
+     * new access token and retry the protected resource.
+     */
+    INVALID_TOKEN("invalid_token"),
+    /**
+     * The request requires higher privileges than provided by the access token.
+     */
+    INSUFFICIENT_SCOPE("insufficient_scope");
+
+    private final String paramName;
+
+    private UserInfoErrorResponseType(String paramName) {
+        this.paramName = paramName;
+    }
+
+    public static UserInfoErrorResponseType fromString(String param) {
+        if (param != null) {
+            for (UserInfoErrorResponseType err : UserInfoErrorResponseType.values()) {
+                if (param.equals(err.paramName)) {
+                    return err;
+                }
+            }
+        }
+
+        return null;
+    }
+
+    /**
+     * Returns a string representation of the object. In this case the parameter name.
+     *
+     * @return The string representation of the object.
+     */
+    @Override
+    public String toString() {
+        return paramName;
+    }
+
+    @Override
+    public String getParameter() {
+        return paramName;
+    }
+}
\ No newline at end of file
diff --git a/oxAuth/Model/src/main/java/org/gluu/oxauth/model/util/Base64Util.java b/oxAuth/Model/src/main/java/org/gluu/oxauth/model/util/Base64Util.java
new file mode 100644
index 00000000..252daa85
--- /dev/null
+++ b/oxAuth/Model/src/main/java/org/gluu/oxauth/model/util/Base64Util.java
@@ -0,0 +1,90 @@
+/*
+ * oxAuth is available under the MIT License (2008). See http://opensource.org/licenses/MIT for full text.
+ *
+ * Copyright (c) 2014, Gluu
+ */
+
+package org.gluu.oxauth.model.util;
+
+import java.io.UnsupportedEncodingException;
+import java.math.BigInteger;
+
+import org.apache.commons.codec.binary.Base64;
+
+/**
+ * @author Javier Rojas Blum
+ * @author Sergey Manoylo
+ * @version December 17, 2021 
+ */
+public class Base64Util {
+
+    public static String base64urlencode(byte[] arg) {
+        String s = Base64.encodeBase64String(arg); // Standard base64 encoder
+        s = s.split("=")[0]; // Remove any trailing '='s
+        s = s.replace('+', '-'); // 62nd char of encoding
+        s = s.replace('/', '_'); // 63rd char of encoding
+        return s;
+    }
+
+    public static byte[] base64urldecode(String arg) throws IllegalArgumentException {
+        String s = removePadding(arg);
+        return Base64.decodeBase64(s); // Standard base64 decoder
+    }
+
+    public static String base64urldecodeToString(String arg) throws IllegalArgumentException, UnsupportedEncodingException {
+        byte[] decoded = base64urldecode(arg);
+        return new String(decoded, "UTF-8");
+    }
+
+    public static String removePadding(String base64UrlEncoded) {
+		String s = base64UrlEncoded;
+        s = s.replace('-', '+'); // 62nd char of encoding
+        s = s.replace('_', '/'); // 63rd char of encoding
+        switch (s.length() % 4) // Pad with trailing '='s
+        {
+            case 0:
+                break; // No pad chars in this case
+            case 2:
+                s += "==";
+                break; // Two pad chars
+            case 3:
+                s += "=";
+                break; // One pad char
+            default:
+                throw new IllegalArgumentException("Illegal base64url string.");
+        }
+		return s;
+	}
+
+    public static String base64urlencodeUnsignedBigInt(final BigInteger bigInteger) {
+        return Base64Util.base64urlencode(bigIntegerToUnsignedByteArray(bigInteger));
+    }
+
+    public static byte[] unsignedToBytes(int[] plaintextUnsignedBytes) {
+        byte[] bytes = new byte[plaintextUnsignedBytes.length];
+
+        for (int i = 0; i < plaintextUnsignedBytes.length; i++) {
+            bytes[i] = (byte) plaintextUnsignedBytes[i];
+        }
+
+        return bytes;
+    }
+
+    public static String bytesToHex(byte[] bytes) {
+        StringBuilder result = new StringBuilder();
+        for (byte aByte : bytes) {
+            result.append(String.format("%02x", aByte));
+        }
+        return result.toString();
+    }
+
+    public static byte[] bigIntegerToUnsignedByteArray(final BigInteger bigInteger) {
+        byte[] array = bigInteger.toByteArray();
+        if (array[0] == 0) {
+            byte[] tmp = new byte[array.length - 1];
+            System.arraycopy(array, 1, tmp, 0, tmp.length);
+            array = tmp;
+        }
+        return array; 
+    }
+}
\ No newline at end of file
diff --git a/oxAuth/Model/src/main/java/org/gluu/oxauth/model/util/ByteUtils.java b/oxAuth/Model/src/main/java/org/gluu/oxauth/model/util/ByteUtils.java
new file mode 100644
index 00000000..7ad553a5
--- /dev/null
+++ b/oxAuth/Model/src/main/java/org/gluu/oxauth/model/util/ByteUtils.java
@@ -0,0 +1,22 @@
+package org.gluu.oxauth.model.util;
+
+/**
+ * @author Yuriy Zabrovarnyy
+ */
+public class ByteUtils {
+
+    private ByteUtils() {
+    }
+
+    public static int twoBytesAsInt(byte one, byte two) {
+        return (byteAsInt(one) << 8) | byteAsInt(two);
+    }
+
+    public static int twoIntsAsInt(int one, int two) {
+        return (one << 8) | two;
+    }
+
+    public static int byteAsInt(byte value) {
+        return value & 0xff;
+    }
+}
diff --git a/oxAuth/Model/src/main/java/org/gluu/oxauth/model/util/CertUtils.java b/oxAuth/Model/src/main/java/org/gluu/oxauth/model/util/CertUtils.java
new file mode 100644
index 00000000..e7d54dc1
--- /dev/null
+++ b/oxAuth/Model/src/main/java/org/gluu/oxauth/model/util/CertUtils.java
@@ -0,0 +1,177 @@
+package org.gluu.oxauth.model.util;
+
+import org.apache.commons.codec.digest.DigestUtils;
+import org.apache.commons.lang.StringUtils;
+import org.bouncycastle.asn1.x500.RDN;
+import org.bouncycastle.asn1.x500.X500Name;
+import org.bouncycastle.asn1.x500.style.BCStyle;
+import org.bouncycastle.asn1.x500.style.IETFUtils;
+import org.bouncycastle.cert.jcajce.JcaX509CertificateHolder;
+import org.bouncycastle.util.encoders.Base64;
+import org.gluu.oxauth.model.crypto.signature.SignatureAlgorithm;
+import org.jetbrains.annotations.NotNull;
+import org.jetbrains.annotations.Nullable;
+import org.slf4j.Logger;
+import org.slf4j.LoggerFactory;
+
+import java.io.ByteArrayInputStream;
+import java.io.InputStream;
+import java.security.AlgorithmParameters;
+import java.security.Principal;
+import java.security.cert.CertificateEncodingException;
+import java.security.cert.CertificateFactory;
+import java.security.cert.X509Certificate;
+import java.util.List;
+
+/**
+ * @author Yuriy Zabrovarnyy
+ */
+public class CertUtils {
+
+    private static final Logger log = LoggerFactory.getLogger(CertUtils.class);
+
+    private CertUtils() {
+    }
+
+    public static SignatureAlgorithm getSignatureAlgorithm(X509Certificate cert) {
+        String signAlgName = cert.getSigAlgName();
+
+        for (SignatureAlgorithm sa : SignatureAlgorithm.values()) {
+            if (signAlgName.equalsIgnoreCase(sa.getAlgorithm())) {
+                return sa;
+            }
+        }
+
+        /*
+        Ensures that SignatureAlgorithms `PS256`, `PS384`, and `PS512` work properly on JDK 11 and later without the need
+        for BouncyCastle.  Previous releases referenced a BouncyCastle-specific
+        algorithm name instead of the Java Security Standard Algorithm Name of
+        [`RSASSA-PSS`](https://docs.oracle.com/en/java/javase/11/docs/specs/security/standard-names.html#signature-algorithms).
+        This release ensures the standard name is used moving forward.
+         */
+        if ("RSASSA-PSS".equals(signAlgName)) {
+            AlgorithmParameters algorithmParameters = CertUtils.getAlgorithmParameters(cert);
+            if (algorithmParameters == null) {
+                return null;
+            }
+
+            String algParamString = algorithmParameters.toString();
+            if (algParamString.contains("SHA-256")) {
+                return SignatureAlgorithm.PS256;
+            }
+            if (algParamString.contains("SHA-384")) {
+                return SignatureAlgorithm.PS384;
+            }
+            if (algParamString.contains("SHA-512")) {
+                return SignatureAlgorithm.PS512;
+            }
+        }
+        return null;
+    }
+
+    public static AlgorithmParameters getAlgorithmParameters(X509Certificate cert) {
+        try {
+            AlgorithmParameters result = AlgorithmParameters.getInstance(cert.getSigAlgName());
+            result.init(cert.getSigAlgParams());
+            return result;
+        } catch (Exception e) {
+            log.error(e.getMessage(), e);
+        }
+        return null;
+    }
+
+    public static X509Certificate x509CertificateFromBytes(byte[] cert) {
+        try {
+            CertificateFactory certFactory = CertificateFactory.getInstance("X.509");
+            InputStream bais = new ByteArrayInputStream(cert);
+
+            return (X509Certificate) certFactory.generateCertificate(bais);
+        } catch (Exception ex) {
+            log.error("Failed to parse X.509 certificates from bytes", ex);
+        }
+
+        return null;
+    }
+
+    /**
+     *
+     * @param pem (e.g. "-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----";)
+     * @return x509 certificate
+     */
+    public static X509Certificate x509CertificateFromPem(String pem) {
+        pem = StringUtils.remove(pem, "-----BEGIN CERTIFICATE-----");
+        pem = StringUtils.remove(pem, "-----END CERTIFICATE-----");
+        return x509CertificateFromBytes(Base64.decode(pem));
+    }
+
+    public static String confirmationMethodHashS256(String certificateAsPem) {
+        if (org.apache.commons.lang.StringUtils.isBlank(certificateAsPem)) {
+            return "";
+        }
+        try {
+            certificateAsPem = org.apache.commons.lang.StringUtils.remove(certificateAsPem, "-----BEGIN CERTIFICATE-----");
+            certificateAsPem = org.apache.commons.lang.StringUtils.remove(certificateAsPem, "-----END CERTIFICATE-----");
+            certificateAsPem = StringUtils.replace(certificateAsPem, "\n", "");
+            return Base64Util.base64urlencode(DigestUtils.sha256(Base64.decode(certificateAsPem)));
+        } catch (Exception e) {
+            log.error("Failed to hash certificate: " + certificateAsPem, e);
+            return "";
+        }
+    }
+
+    @NotNull
+    public static String getCN(@Nullable X509Certificate cert) {
+        try {
+            if (cert == null) {
+                return "";
+            }
+            X500Name x500name = new JcaX509CertificateHolder(cert).getSubject();
+            final RDN[] rdns = x500name.getRDNs(BCStyle.CN);
+            if (rdns == null || rdns.length == 0) {
+                return "";
+            }
+            RDN cn = rdns[0];
+
+            if (cn != null && cn.getFirst() != null && cn.getFirst().getValue() != null) {
+                return IETFUtils.valueToString(cn.getFirst().getValue());
+            }
+        } catch (CertificateEncodingException e) {
+            log.error(e.getMessage(), e);
+        }
+        return "";
+    }
+
+    public static boolean equalsRdn(String rdn1, String rdn2) {
+        if (StringUtils.isBlank(rdn1) || StringUtils.isBlank(rdn2))
+            return false;
+
+        X500Name n1 = new X500Name (rdn1);
+        X500Name n2 = new X500Name (rdn2);
+
+        return n1.equals(n2);
+    }
+
+    public static X509Certificate getIssuer(final X509Certificate certificate, final List<X509Certificate> issuers) {
+
+        Principal certPrincipal = certificate.getIssuerDN();
+
+        X509Certificate issuer = null; 
+
+        for (int i = 0; i < issuers.size(); i++) {
+            X509Certificate currIssuer = issuers.get(i);
+            Principal currIssuerPrincipal = currIssuer.getSubjectDN();
+
+            if (certPrincipal.equals(currIssuerPrincipal)) {
+                issuer = currIssuer;
+                break;
+            }
+        }
+
+        if (issuer == null) {
+            issuer = certificate;
+        }
+
+        return issuer;
+    }
+
+}
diff --git a/oxAuth/Model/src/main/java/org/gluu/oxauth/model/util/HashUtil.java b/oxAuth/Model/src/main/java/org/gluu/oxauth/model/util/HashUtil.java
new file mode 100644
index 00000000..490fb2e0
--- /dev/null
+++ b/oxAuth/Model/src/main/java/org/gluu/oxauth/model/util/HashUtil.java
@@ -0,0 +1,50 @@
+package org.gluu.oxauth.model.util;
+
+import org.gluu.oxauth.model.crypto.signature.SignatureAlgorithm;
+import org.slf4j.Logger;
+import org.slf4j.LoggerFactory;
+
+/**
+ * @author Yuriy Zabrovarnyy
+ */
+public class HashUtil {
+
+    private final static Logger log = LoggerFactory.getLogger(HashUtil.class);
+
+    private HashUtil() {
+    }
+
+    public static String getHash(String input, SignatureAlgorithm signatureAlgorithm) {
+        try {
+            final byte[] digest;
+            if (signatureAlgorithm == SignatureAlgorithm.HS256 ||
+                    signatureAlgorithm == SignatureAlgorithm.RS256 ||
+                    signatureAlgorithm == SignatureAlgorithm.PS256 ||
+                    signatureAlgorithm == SignatureAlgorithm.ES256) {
+                digest = JwtUtil.getMessageDigestSHA256(input);
+            } else if (signatureAlgorithm == SignatureAlgorithm.HS384 ||
+                    signatureAlgorithm == SignatureAlgorithm.RS384 ||
+                    signatureAlgorithm == SignatureAlgorithm.PS384 ||
+                    signatureAlgorithm == SignatureAlgorithm.ES384) {
+                digest = JwtUtil.getMessageDigestSHA384(input);
+            } else if (signatureAlgorithm == SignatureAlgorithm.HS512 ||
+                    signatureAlgorithm == SignatureAlgorithm.RS512 ||
+                    signatureAlgorithm == SignatureAlgorithm.PS512 ||
+                    signatureAlgorithm == SignatureAlgorithm.ES512) {
+                digest = JwtUtil.getMessageDigestSHA512(input);
+            } else { // Default
+                digest = JwtUtil.getMessageDigestSHA256(input);
+            }
+
+            if (digest != null) {
+                byte[] lefMostHalf = new byte[digest.length / 2];
+                System.arraycopy(digest, 0, lefMostHalf, 0, lefMostHalf.length);
+                return Base64Util.base64urlencode(lefMostHalf);
+            }
+        } catch (Exception e) {
+            log.error("Failed to calculate hash.", e);
+        }
+
+        return null;
+    }
+}
diff --git a/oxAuth/Model/src/main/java/org/gluu/oxauth/model/util/JwtUtil.java b/oxAuth/Model/src/main/java/org/gluu/oxauth/model/util/JwtUtil.java
new file mode 100644
index 00000000..0b04871b
--- /dev/null
+++ b/oxAuth/Model/src/main/java/org/gluu/oxauth/model/util/JwtUtil.java
@@ -0,0 +1,289 @@
+/*
+ * oxAuth is available under the MIT License (2008). See http://opensource.org/licenses/MIT for full text.
+ *
+ * Copyright (c) 2014, Gluu
+ */
+
+package org.gluu.oxauth.model.util;
+
+import static org.gluu.oxauth.model.jwk.JWKParameter.ALGORITHM;
+import static org.gluu.oxauth.model.jwk.JWKParameter.CERTIFICATE_CHAIN;
+import static org.gluu.oxauth.model.jwk.JWKParameter.EXPONENT;
+import static org.gluu.oxauth.model.jwk.JWKParameter.JSON_WEB_KEY_SET;
+import static org.gluu.oxauth.model.jwk.JWKParameter.KEY_ID;
+import static org.gluu.oxauth.model.jwk.JWKParameter.MODULUS;
+import static org.gluu.oxauth.model.jwk.JWKParameter.PUBLIC_KEY;
+import static org.gluu.oxauth.model.jwk.JWKParameter.X;
+import static org.gluu.oxauth.model.jwk.JWKParameter.Y;
+
+import java.io.IOException;
+import java.io.StringReader;
+import java.io.UnsupportedEncodingException;
+import java.math.BigInteger;
+import java.security.MessageDigest;
+import java.security.NoSuchAlgorithmException;
+import java.security.NoSuchProviderException;
+import java.security.Provider;
+import java.security.Security;
+import java.security.cert.X509Certificate;
+import java.util.Set;
+
+import javax.ws.rs.client.ClientBuilder;
+import javax.ws.rs.core.Response;
+
+import org.apache.log4j.Logger;
+import org.bouncycastle.openssl.PEMParser;
+import org.gluu.oxauth.model.crypto.Certificate;
+import org.gluu.oxauth.model.crypto.PublicKey;
+import org.gluu.oxauth.model.crypto.signature.ECDSAPublicKey;
+import org.gluu.oxauth.model.crypto.signature.RSAPublicKey;
+import org.gluu.oxauth.model.crypto.signature.SignatureAlgorithm;
+import org.gluu.oxauth.model.jwt.Jwt;
+import org.gluu.util.StringHelper;
+import org.gluu.util.security.SecurityProviderUtility;
+import org.jboss.resteasy.client.jaxrs.ClientHttpEngine;
+import org.jboss.resteasy.client.jaxrs.ResteasyClientBuilder;
+import org.json.JSONArray;
+import org.json.JSONObject;
+
+import com.fasterxml.jackson.databind.ObjectMapper;
+import com.fasterxml.jackson.datatype.jsonorg.JsonOrgModule;
+
+/**
+ * @author Javier Rojas Blum
+ * @author Yuriy Movchan
+ * @version December 8, 2018
+ */
+public class JwtUtil {
+
+    private static final Logger log = Logger.getLogger(JwtUtil.class);
+
+    public static void printAlgorithmsAndProviders() {
+        Set<String> algorithms = Security.getAlgorithms("Signature");
+        for (String algorithm : algorithms) {
+            log.trace("Algorithm (Signature): " + algorithm);
+        }
+        algorithms = Security.getAlgorithms("MessageDigest");
+        for (String algorithm : algorithms) {
+            log.trace("Algorithm (MessageDigest): " + algorithm);
+        }
+        algorithms = Security.getAlgorithms("Cipher");
+        for (String algorithm : algorithms) {
+            log.trace("Algorithm (Cipher): " + algorithm);
+        }
+        algorithms = Security.getAlgorithms("Mac");
+        for (String algorithm : algorithms) {
+            log.trace("Algorithm (Mac): " + algorithm);
+        }
+        algorithms = Security.getAlgorithms("KeyStore");
+        for (String algorithm : algorithms) {
+            log.trace("Algorithm (KeyStore): " + algorithm);
+        }
+        Provider[] providers = Security.getProviders();
+        for (Provider provider : providers) {
+            log.trace("Provider: " + provider.getName());
+        }
+    }
+
+    public static String bytesToHex(byte[] bytes) {
+        final char[] hexArray = "0123456789abcdef".toCharArray();
+        char[] hexChars = new char[bytes.length * 2];
+        for (int j = 0; j < bytes.length; j++) {
+            int v = bytes[j] & 0xFF;
+            hexChars[j * 2] = hexArray[v >>> 4];
+            hexChars[j * 2 + 1] = hexArray[v & 0x0F];
+        }
+        return new String(hexChars);
+    }
+
+    public static byte[] getMessageDigestSHA256(String data)
+            throws NoSuchProviderException, NoSuchAlgorithmException, UnsupportedEncodingException {
+        MessageDigest mda = MessageDigest.getInstance("SHA-256", SecurityProviderUtility.getBCProvider());
+        return mda.digest(data.getBytes(Util.UTF8_STRING_ENCODING));
+    }
+
+    public static byte[] getMessageDigestSHA384(String data)
+            throws NoSuchProviderException, NoSuchAlgorithmException, UnsupportedEncodingException {
+        MessageDigest mda = MessageDigest.getInstance("SHA-384",SecurityProviderUtility.getBCProvider());
+        return mda.digest(data.getBytes(Util.UTF8_STRING_ENCODING));
+    }
+
+    public static byte[] getMessageDigestSHA512(String data)
+            throws NoSuchProviderException, NoSuchAlgorithmException, UnsupportedEncodingException {
+        MessageDigest mda = MessageDigest.getInstance("SHA-512", SecurityProviderUtility.getBCProvider());
+        return mda.digest(data.getBytes(Util.UTF8_STRING_ENCODING));
+    }
+
+    public static PublicKey getPublicKey(
+            String jwksUri, String jwks, SignatureAlgorithm signatureAlgorithm, String keyId) {
+        log.debug("Retrieving JWK...");
+
+        JSONObject jsonKeyValue = getJsonKey(jwksUri, jwks, keyId);
+
+        if (jsonKeyValue == null) {
+            return null;
+        }
+
+        org.gluu.oxauth.model.crypto.PublicKey publicKey = null;
+
+        try {
+            String resultKeyId = jsonKeyValue.getString(KEY_ID);
+            if (signatureAlgorithm == null) {
+                signatureAlgorithm = SignatureAlgorithm.fromString(jsonKeyValue.getString(ALGORITHM));
+                if (signatureAlgorithm == null) {
+                    log.error(String.format("Failed to determine key '%s' signature algorithm", resultKeyId));
+                    return null;
+                }
+            }
+
+            JSONObject jsonPublicKey = jsonKeyValue;
+            if (jsonKeyValue.has(PUBLIC_KEY)) {
+                // Use internal jwks.json format
+                jsonPublicKey = jsonKeyValue.getJSONObject(PUBLIC_KEY);
+            }
+
+            if (signatureAlgorithm == SignatureAlgorithm.RS256 || signatureAlgorithm == SignatureAlgorithm.RS384 || signatureAlgorithm == SignatureAlgorithm.RS512) {
+                //String alg = jsonKeyValue.getString(ALGORITHM);
+                //String use = jsonKeyValue.getString(KEY_USE);
+                String exp = jsonPublicKey.getString(EXPONENT);
+                String mod = jsonPublicKey.getString(MODULUS);
+
+                BigInteger publicExponent = new BigInteger(1, Base64Util.base64urldecode(exp));
+                BigInteger modulus = new BigInteger(1, Base64Util.base64urldecode(mod));
+
+                publicKey = new RSAPublicKey(modulus, publicExponent);
+            } else if (signatureAlgorithm == SignatureAlgorithm.ES256 || signatureAlgorithm == SignatureAlgorithm.ES384 || signatureAlgorithm == SignatureAlgorithm.ES512) {
+                //String alg = jsonKeyValue.getString(ALGORITHM);
+                //String use = jsonKeyValue.getString(KEY_USE);
+                //String crv = jsonKeyValue.getString(CURVE);
+                String xx = jsonPublicKey.getString(X);
+                String yy = jsonPublicKey.getString(Y);
+
+                BigInteger x = new BigInteger(1, Base64Util.base64urldecode(xx));
+                BigInteger y = new BigInteger(1, Base64Util.base64urldecode(yy));
+
+                publicKey = new ECDSAPublicKey(signatureAlgorithm, x, y);
+            }
+
+            if (publicKey != null && jsonKeyValue.has(CERTIFICATE_CHAIN)) {
+                final String BEGIN = "-----BEGIN CERTIFICATE-----";
+                final String END = "-----END CERTIFICATE-----";
+
+                JSONArray certChain = jsonKeyValue.getJSONArray(CERTIFICATE_CHAIN);
+                String certificateString = BEGIN + "\n" + certChain.getString(0) + "\n" + END;
+                StringReader sr = new StringReader(certificateString);
+                PEMParser pemReader = new PEMParser(sr);
+                X509Certificate cert = (X509Certificate) pemReader.readObject();
+                Certificate certificate = new Certificate(signatureAlgorithm, cert);
+                publicKey.setCertificate(certificate);
+            }
+            if (publicKey != null) {
+                publicKey.setKeyId(resultKeyId);
+                publicKey.setSignatureAlgorithm(signatureAlgorithm);
+            }
+        } catch (Exception ex) {
+            log.error(ex.getMessage(), ex);
+        }
+
+        return publicKey;
+    }
+
+    public static JSONObject getJsonKey(String jwksUri, String jwks, String keyId) {
+        log.debug("Retrieving JWK Key...");
+
+        JSONObject jsonKey = null;
+        try {
+            if (StringHelper.isEmpty(jwks)) {
+                javax.ws.rs.client.Client clientRequest = ClientBuilder.newClient();
+        		try {
+        			Response clientResponse = clientRequest.target(jwksUri).request().buildGet().invoke();
+
+	                int status = clientResponse.getStatus();
+	                log.debug(String.format("Status: %n%d", status));
+	
+	                if (status == 200) {
+	                    jwks = clientResponse.readEntity(String.class);
+	                    log.debug(String.format("JWK: %s", jwks));
+	                }
+        		} finally {
+        			clientRequest.close();
+        		}
+            }
+            if (StringHelper.isNotEmpty(jwks)) {
+                JSONObject jsonObject = new JSONObject(jwks);
+                JSONArray keys = jsonObject.getJSONArray(JSON_WEB_KEY_SET);
+                if (keys.length() > 0) {
+                    if (StringHelper.isEmpty(keyId)) {
+                        jsonKey = keys.getJSONObject(0);
+                    } else {
+                        for (int i = 0; i < keys.length(); i++) {
+                            JSONObject kv = keys.getJSONObject(i);
+                            if (kv.getString(KEY_ID).equals(keyId)) {
+                                jsonKey = kv;
+                                break;
+                            }
+                        }
+                    }
+                }
+            }
+        } catch (Exception ex) {
+            log.error(ex.getMessage(), ex);
+        }
+
+        return jsonKey;
+    }
+
+    public static JSONObject getJSONWebKeys(String jwksUri) {
+        return getJSONWebKeys(jwksUri, null);
+    }
+
+    public static JSONObject getJSONWebKeys(String jwksUri, ClientHttpEngine engine) {
+        log.debug("Retrieving jwks " + jwksUri + "...");
+
+        JSONObject jwks = null;
+        try {
+            if (!StringHelper.isEmpty(jwksUri)) {
+            	ClientBuilder clientBuilder = ResteasyClientBuilder.newBuilder();
+            	if (engine != null) {
+            		((ResteasyClientBuilder) clientBuilder).httpEngine(engine);
+            	}
+
+            	javax.ws.rs.client.Client clientRequest = clientBuilder.build();
+        		try {
+        			Response clientResponse = clientRequest.target(jwksUri).request().buildGet().invoke();
+
+	                int status = clientResponse.getStatus();
+	                log.debug(String.format("Status: %n%d", status));
+	
+	                if (status == 200) {
+	                    jwks = fromJson(clientResponse.readEntity(String.class));
+	                    log.debug(String.format("JWK: %s", jwks));
+	                }
+        		} finally {
+        			clientRequest.close();
+        		}
+            }
+        } catch (Exception ex) {
+            log.error(ex.getMessage(), ex);
+        }
+
+        return jwks;
+    }
+
+	public static JSONObject fromJson(String json) throws IOException {
+		ObjectMapper mapper = new ObjectMapper();
+		mapper.registerModule(new JsonOrgModule());
+		return mapper.readValue(json, JSONObject.class);
+	}
+
+	public static void transferIntoJwtClaims(JSONObject jsonObject, Jwt jwt) {
+        if (jsonObject == null || jwt == null) {
+            return;
+        }
+
+        for (String key : jsonObject.keySet()) {
+            final Object value = jsonObject.opt(key);
+            jwt.getClaims().setClaimObject(key, value, true);
+        }
+    }
+}
\ No newline at end of file
diff --git a/oxAuth/Model/src/main/java/org/gluu/oxauth/model/util/Pair.java b/oxAuth/Model/src/main/java/org/gluu/oxauth/model/util/Pair.java
new file mode 100644
index 00000000..c01e16ad
--- /dev/null
+++ b/oxAuth/Model/src/main/java/org/gluu/oxauth/model/util/Pair.java
@@ -0,0 +1,59 @@
+/*
+ * oxAuth is available under the MIT License (2008). See http://opensource.org/licenses/MIT for full text.
+ *
+ * Copyright (c) 2014, Gluu
+ */
+
+package org.gluu.oxauth.model.util;
+
+/**
+ * @author Javier Rojas Blum Date: 09.05.2012
+ */
+public class Pair<A, B> {
+
+    private A first;
+    private B second;
+
+    public Pair(A first, B second) {
+        this.first = first;
+        this.second = second;
+    }
+
+    public A getFirst() {
+        return first;
+    }
+
+    public void setFirst(A first) {
+        this.first = first;
+    }
+
+    public B getSecond() {
+        return second;
+    }
+
+    public void setSecond(B second) {
+        this.second = second;
+    }
+
+    @Override
+    public boolean equals(Object o) {
+        if (this == o) return true;
+        if (o == null || getClass() != o.getClass()) return false;
+
+        Pair pair = (Pair) o;
+
+        return !(first != null ? !first.equals(pair.first) : pair.first != null) && !(second != null ? !second.equals(pair.second) : pair.second != null);
+    }
+
+    @Override
+    public int hashCode() {
+        int result = first != null ? first.hashCode() : 0;
+        result = 31 * result + (second != null ? second.hashCode() : 0);
+        return result;
+    }
+
+    @Override
+    public String toString() {
+        return "(" + first + ", " + second + ")";
+    }
+}
\ No newline at end of file
diff --git a/oxAuth/Model/src/main/java/org/gluu/oxauth/model/util/QueryBuilder.java b/oxAuth/Model/src/main/java/org/gluu/oxauth/model/util/QueryBuilder.java
new file mode 100644
index 00000000..c904614c
--- /dev/null
+++ b/oxAuth/Model/src/main/java/org/gluu/oxauth/model/util/QueryBuilder.java
@@ -0,0 +1,66 @@
+package org.gluu.oxauth.model.util;
+
+import org.apache.commons.lang.StringUtils;
+import org.apache.log4j.Logger;
+
+import java.io.UnsupportedEncodingException;
+import java.net.URLEncoder;
+
+/**
+ * @author Yuriy Zabrovarnyy
+ */
+public class QueryBuilder {
+
+    private static final Logger LOG = Logger.getLogger(QueryBuilder.class);
+
+    private final StringBuilder builder;
+
+    public QueryBuilder() {
+        this(new StringBuilder());
+    }
+
+    public QueryBuilder(StringBuilder builder) {
+        this.builder = builder;
+    }
+
+    public static QueryBuilder instance() {
+        return new QueryBuilder();
+    }
+
+    public String build() {
+        return builder.toString();
+    }
+
+    public StringBuilder getBuilder() {
+        return builder;
+    }
+
+    public void appendIfNotNull(String key, Object value) {
+        if (value != null) {
+            append(key, value.toString());
+        }
+    }
+
+    public void append(String key, String value) {
+        try {
+            if (StringUtils.isNotBlank(value)) {
+                if (builder.length() > 0) {
+                    appendAmpersand();
+                }
+                builder.append(key).append("=").append(URLEncoder.encode(value, Util.UTF8_STRING_ENCODING));
+            }
+        } catch (UnsupportedEncodingException e) {
+            LOG.trace(e.getMessage(), e);
+        }
+    }
+
+    public void appendAmpersand() {
+        builder.append("&");
+    }
+
+    @Override
+    public String toString() {
+        return build();
+    }
+}
+
diff --git a/oxAuth/Model/src/main/java/org/gluu/oxauth/model/util/StringUtils.java b/oxAuth/Model/src/main/java/org/gluu/oxauth/model/util/StringUtils.java
new file mode 100644
index 00000000..e878cf76
--- /dev/null
+++ b/oxAuth/Model/src/main/java/org/gluu/oxauth/model/util/StringUtils.java
@@ -0,0 +1,204 @@
+/*
+ * oxAuth is available under the MIT License (2008). See http://opensource.org/licenses/MIT for full text.
+ *
+ * Copyright (c) 2014, Gluu
+ */
+
+package org.gluu.oxauth.model.util;
+
+import org.json.JSONArray;
+import org.json.JSONException;
+import org.gluu.oxauth.model.common.HasParamName;
+
+import java.io.UnsupportedEncodingException;
+import java.net.URLEncoder;
+import java.security.SecureRandom;
+import java.text.SimpleDateFormat;
+import java.util.*;
+
+import static org.apache.commons.lang.StringUtils.isNotBlank;
+
+/**
+ * @author Javier Rojas Blum
+ * @version July 18, 2017
+ */
+public class StringUtils {
+
+    public static final String EMPTY_STRING = "";
+    public static final String SPACE = " ";
+    public static final String EASY_TO_READ_CHARACTERS = "BCDFGHJKLMNPQRSTVWXZ";
+
+    public static String nullToEmpty(String str) {
+        if (str == null) {
+            return EMPTY_STRING;
+        } else {
+            return str;
+        }
+    }
+
+    public static boolean equals(String str1, String str2) {
+        if (str1 == null && str2 == null) {
+            return true;
+        } else if (str1 == null && str2 != null) {//note: str2!=null is always NOT null, see previous 'if' statement*/
+            return false;
+        } else if (str1 != null && str2 == null) {  //note: str1!=null is ALWAYS true
+            return false;
+        } else {
+            return str1 != null && str1.equals(str2);
+        }
+    }
+
+    /**
+     * Method to join array elements of type string
+     *
+     * @param inputArray Array which contains strings
+     * @param glueString String between each array element
+     * @return String containing all array elements separated by glue string.
+     */
+    public static String implode(String[] inputArray, String glueString) {
+        String output = EMPTY_STRING;
+
+        if (inputArray != null && inputArray.length > 0) {
+            StringBuilder sb = new StringBuilder();
+            sb.append(inputArray[0]);
+
+            for (int i = 1; i < inputArray.length; i++) {
+                sb.append(glueString);
+                sb.append(inputArray[i]);
+            }
+
+            output = sb.toString();
+        }
+
+        return output;
+    }
+
+    /**
+     * Method to join a list of elements of type string
+     *
+     * @param collection List which contains strings
+     * @param glueString String between each array element
+     * @return String containing all array elements separated by glue string.
+     */
+    public static String implode(Collection collection, String glueString) {
+        String output = EMPTY_STRING;
+
+        if (collection != null && !collection.isEmpty()) {
+            StringJoiner sb = new StringJoiner(glueString);
+
+            for (Object obj : collection) {
+                sb.add(obj.toString());
+            }
+
+            output = sb.toString();
+        }
+
+        return output;
+    }
+
+    public static String implodeEnum(List<? extends HasParamName> inputList, String glueString) {
+        String output = EMPTY_STRING;
+
+        if (inputList != null && !inputList.isEmpty()) {
+            StringBuilder sb = new StringBuilder();
+            sb.append(inputList.get(0));
+
+            for (int i = 1; i < inputList.size(); i++) {
+                sb.append(glueString);
+                sb.append(inputList.get(i).getParamName());
+            }
+
+            output = sb.toString();
+        }
+
+        return output;
+    }
+
+    public static List<String> spaceSeparatedToList(String spaceSeparatedString) {
+        List<String> list = new ArrayList<String>();
+
+        if (isNotBlank(spaceSeparatedString)) {
+            list = Arrays.asList(spaceSeparatedString.split(StringUtils.SPACE));
+        }
+
+        return list;
+    }
+
+    public static JSONArray toJSONArray(List inputList) {
+        JSONArray jsonArray = new JSONArray();
+
+        if (inputList != null && !inputList.isEmpty()) {
+            jsonArray = new JSONArray(inputList);
+        }
+
+        return jsonArray;
+    }
+
+    public static List<String> toList(JSONArray jsonArray) throws JSONException {
+        List<String> list = new ArrayList<String>();
+
+        if (jsonArray != null) {
+            for (int i = 0; i < jsonArray.length(); i++) {
+                list.add(jsonArray.getString(i));
+            }
+        }
+        return list;
+    }
+
+    public static Date parseSilently(String p_string) {
+        try {
+            SimpleDateFormat parser = new SimpleDateFormat("EEE MMM d HH:mm:ss zzz yyyy");
+            return parser.parse(p_string);
+        } catch (Exception e) {
+            return null;
+        }
+    }
+
+    public static void addQueryStringParam(StringBuilder p_queryStringBuilder, String key, Object value) throws UnsupportedEncodingException {
+        if (p_queryStringBuilder != null && isNotBlank(key) && value != null) {
+            if (p_queryStringBuilder.toString().length() > 0) {
+                p_queryStringBuilder.append("&");
+            }
+            p_queryStringBuilder.append(key).append("=")
+                    .append(URLEncoder.encode(value.toString(), Util.UTF8_STRING_ENCODING));
+        }
+    }
+
+    public static void addQueryStringParam(StringBuilder p_queryStringBuilder, String key, Collection value) throws UnsupportedEncodingException {
+        if (p_queryStringBuilder != null && isNotBlank(key) && value != null && !value.isEmpty()) {
+            if (p_queryStringBuilder.toString().length() > 0) {
+                p_queryStringBuilder.append("&");
+            }
+            p_queryStringBuilder.append(key).append("=")
+                    .append(URLEncoder.encode(value.toString(), Util.UTF8_STRING_ENCODING));
+        }
+    }
+
+    /**
+     * Generates a code using a base of 20 characters easy to read for users, using parametrized
+     * length separated by dashes with intervals of 4 characters.
+     */
+    public static String generateRandomReadableCode(byte length) {
+        StringBuilder sb = new StringBuilder();
+        SecureRandom sc = new SecureRandom();
+        for (int i = 0; i < length; i++) {
+            if (i % 4 == 0 && i > 0) {
+                sb.append('-');
+            }
+            char item = EASY_TO_READ_CHARACTERS.charAt(sc.nextInt(EASY_TO_READ_CHARACTERS.length()));
+            sb.append(item);
+        }
+        return sb.toString();
+    }
+
+    /**
+     * Generates a random code using a byte array as its seed.
+     * @param seedLength Length of the byte array
+     */
+    public static String generateRandomCode(byte seedLength) {
+        byte[] seed = new byte[seedLength];
+        new SecureRandom().nextBytes(seed);
+        return Util.byteArrayToHexString(seed);
+    }
+
+}
\ No newline at end of file
diff --git a/oxAuth/Model/src/main/java/org/gluu/oxauth/model/util/SubjectIdentifierGenerator.java b/oxAuth/Model/src/main/java/org/gluu/oxauth/model/util/SubjectIdentifierGenerator.java
new file mode 100644
index 00000000..acae0ed6
--- /dev/null
+++ b/oxAuth/Model/src/main/java/org/gluu/oxauth/model/util/SubjectIdentifierGenerator.java
@@ -0,0 +1,21 @@
+package org.gluu.oxauth.model.util;
+
+import org.gluu.oxauth.model.configuration.AppConfiguration;
+import org.gluu.oxauth.model.crypto.AbstractCryptoProvider;
+import org.gluu.oxauth.model.crypto.CryptoProviderFactory;
+import org.gluu.oxauth.model.crypto.signature.SignatureAlgorithm;
+
+/**
+ * @author Javier Rojas Blum
+ * @version July 31, 2016
+ */
+public class SubjectIdentifierGenerator {
+
+    public static String generatePairwiseSubjectIdentifier(String sectorIdentifier, String localAccountId, String key,
+                                                           String salt, AppConfiguration configuration) throws Exception {
+        AbstractCryptoProvider cryptoProvider = CryptoProviderFactory.getCryptoProvider(configuration);
+
+        String signingInput = sectorIdentifier + localAccountId + salt;
+        return cryptoProvider.sign(signingInput, null, key, SignatureAlgorithm.HS256);
+    }
+}
diff --git a/oxAuth/Model/src/main/java/org/gluu/oxauth/model/util/URLPatternList.java b/oxAuth/Model/src/main/java/org/gluu/oxauth/model/util/URLPatternList.java
new file mode 100644
index 00000000..ffbeb30d
--- /dev/null
+++ b/oxAuth/Model/src/main/java/org/gluu/oxauth/model/util/URLPatternList.java
@@ -0,0 +1,167 @@
+package org.gluu.oxauth.model.util;
+
+import org.apache.commons.lang3.StringUtils;
+import org.apache.log4j.Logger;
+
+import java.net.MalformedURLException;
+import java.net.URI;
+import java.util.ArrayList;
+import java.util.List;
+import java.util.regex.Matcher;
+import java.util.regex.Pattern;
+
+/**
+ * @author Javier Rojas Blum
+ * @version October 10, 2016
+ */
+public class URLPatternList {
+
+    private static final Logger LOG = Logger.getLogger(URLPatternList.class);
+
+    private List<URLPattern> urlPatternList;
+    private boolean wildcardEnabled = false;
+
+    public URLPatternList() {
+        this(new ArrayList<String>());
+    }
+
+    public URLPatternList(List<String> urlPatternList) {
+        this(urlPatternList, false);
+    }
+
+    public URLPatternList(List<String> urlPatternList, boolean wildcardEnabled) {
+        this.urlPatternList = new ArrayList<>();
+        this.wildcardEnabled = wildcardEnabled;
+
+        if (urlPatternList != null) {
+            for (String urlPattern : urlPatternList) {
+                addListEntry(urlPattern);
+            }
+        }
+    }
+
+    public boolean isUrlListed(String uri) {
+        if (urlPatternList == null) {
+            return true;
+        }
+
+        if (wildcardEnabled) {
+            uri = StringUtils.replace(uri, "*", "a");
+        }
+
+        URI parsedUri = URI.create(uri);
+
+        for (URLPattern pattern : urlPatternList) {
+            if (pattern.matches(parsedUri)) {
+                return true;
+            }
+        }
+
+        return false;
+    }
+
+    public void addListEntry(String urlPattern) {
+        if (urlPatternList == null) {
+            return;
+        }
+
+        if (urlPattern.compareTo("*") == 0) {
+            LOG.debug("Unlimited access to network resources");
+            urlPatternList = null;
+            return;
+        }
+
+        try {
+            Pattern parts = Pattern.compile("^((\\*|[A-Za-z-]+):(//)?)?(\\*|((\\*\\.)?[^*/:]+))?(:(\\d+))?(/.*)?");
+            Matcher m = parts.matcher(urlPattern);
+            if (m.matches()) {
+                String scheme = m.group(2);
+                String host = m.group(4);
+                // Special case for two urls which are allowed to have empty hosts
+                if (("file".equals(scheme) || "content".equals(scheme)) && host == null) host = "*";
+                String port = m.group(8);
+                String path = m.group(9);
+                if (scheme == null) {
+                    urlPatternList.add(new URLPattern("http", host, port, path));
+                    urlPatternList.add(new URLPattern("https", host, port, path));
+                } else {
+                    urlPatternList.add(new URLPattern(scheme, host, port, path));
+                }
+            }
+        } catch (Exception e) {
+            LOG.debug("Failed to add origin " + urlPattern);
+        }
+    }
+
+    public boolean isWildcardEnabled() {
+        return wildcardEnabled;
+    }
+
+    public void setWildcardEnabled(boolean wildcardEnabled) {
+        this.wildcardEnabled = wildcardEnabled;
+    }
+
+    private static class URLPattern {
+        public Pattern scheme;
+        public Pattern host;
+        public Integer port;
+        public Pattern path;
+
+        public URLPattern(String scheme, String host, String port, String path) throws MalformedURLException {
+            try {
+                if (scheme == null || "*".equals(scheme)) {
+                    this.scheme = null;
+                } else {
+                    this.scheme = Pattern.compile(regexFromPattern(scheme, false), Pattern.CASE_INSENSITIVE);
+                }
+                if ("*".equals(host)) {
+                    this.host = null;
+                } else if (host.startsWith("*.")) {
+                    this.host = Pattern.compile("([a-z0-9.-]*\\.)?" + regexFromPattern(host.substring(2), false), Pattern.CASE_INSENSITIVE);
+                } else {
+                    this.host = Pattern.compile(regexFromPattern(host, false), Pattern.CASE_INSENSITIVE);
+                }
+                if (port == null || "*".equals(port)) {
+                    this.port = null;
+                } else {
+                    this.port = Integer.parseInt(port, 10);
+                }
+                if (path == null || "/*".equals(path)) {
+                    this.path = null;
+                } else {
+                    this.path = Pattern.compile(regexFromPattern(path, true));
+                }
+            } catch (NumberFormatException e) {
+                throw new MalformedURLException("Port must be a number");
+            }
+        }
+
+        public boolean matches(URI uri) {
+            try {
+                final boolean schemaMatches = scheme == null || scheme.matcher(uri.getScheme()).matches();
+                final boolean hostMatches = host == null || host.matcher(uri.getHost()).matches();
+                final boolean portMatches = port == null || port.equals(uri.getPort());
+                final boolean pathMatches = path == null || path.matcher(uri.getPath()).matches();
+                return schemaMatches && hostMatches && portMatches && pathMatches;
+            } catch (Exception e) {
+                LOG.debug(e.toString());
+                return false;
+            }
+        }
+
+        private String regexFromPattern(String pattern, boolean allowWildcards) {
+            final String toReplace = "\\.[]{}()^$?+|";
+            StringBuilder regex = new StringBuilder();
+            for (int i = 0; i < pattern.length(); i++) {
+                char c = pattern.charAt(i);
+                if (c == '*' && allowWildcards) {
+                    regex.append(".");
+                } else if (toReplace.indexOf(c) > -1) {
+                    regex.append('\\');
+                }
+                regex.append(c);
+            }
+            return regex.toString();
+        }
+    }
+}
diff --git a/oxAuth/Model/src/main/java/org/gluu/oxauth/model/util/Util.java b/oxAuth/Model/src/main/java/org/gluu/oxauth/model/util/Util.java
new file mode 100644
index 00000000..00896756
--- /dev/null
+++ b/oxAuth/Model/src/main/java/org/gluu/oxauth/model/util/Util.java
@@ -0,0 +1,289 @@
+/*
+ * oxAuth is available under the MIT License (2008). See http://opensource.org/licenses/MIT for full text.
+ *
+ * Copyright (c) 2014, Gluu
+ */
+
+package org.gluu.oxauth.model.util;
+
+import com.fasterxml.jackson.annotation.JsonInclude.Include;
+import com.fasterxml.jackson.databind.AnnotationIntrospector;
+import com.fasterxml.jackson.databind.ObjectMapper;
+import com.fasterxml.jackson.databind.SerializationFeature;
+import com.fasterxml.jackson.databind.introspect.JacksonAnnotationIntrospector;
+import com.fasterxml.jackson.module.jaxb.JaxbAnnotationIntrospector;
+import org.apache.commons.lang.StringUtils;
+import org.apache.log4j.Logger;
+import org.gluu.oxauth.model.common.HasParamName;
+import org.gluu.persist.annotation.AttributeEnum;
+import org.json.JSONArray;
+import org.json.JSONException;
+import org.json.JSONObject;
+
+import java.io.IOException;
+import java.io.UnsupportedEncodingException;
+import java.lang.reflect.InvocationTargetException;
+import java.lang.reflect.Method;
+import java.security.MessageDigest;
+import java.security.NoSuchAlgorithmException;
+import java.util.*;
+
+/**
+ * @author Yuriy Zabrovarnyy
+ * @author Javier Rojas Blum
+ * @version September 4, 2019
+ */
+
+public class Util {
+
+    private static final Logger LOG = Logger.getLogger(Util.class);
+
+    public static final String UTF8_STRING_ENCODING = "UTF-8";
+
+    public static ObjectMapper createJsonMapper() {
+        final AnnotationIntrospector jaxb = new JaxbAnnotationIntrospector();
+        final AnnotationIntrospector jackson = new JacksonAnnotationIntrospector();
+
+        final AnnotationIntrospector pair = AnnotationIntrospector.pair(jackson, jaxb);
+
+        final ObjectMapper mapper = new ObjectMapper();
+        mapper.getDeserializationConfig().with(pair);
+        mapper.getSerializationConfig().with(pair);
+        return mapper;
+    }
+
+    public static String asJsonSilently(Object p_object) {
+        try {
+            return asJson(p_object);
+        } catch (IOException e) {
+            LOG.trace(e.getMessage(), e);
+            return "";
+        }
+    }
+
+    public static String asPrettyJson(Object p_object) throws IOException {
+        final ObjectMapper mapper = createJsonMapper().configure(SerializationFeature.WRAP_ROOT_VALUE, false);
+        mapper.setDefaultPropertyInclusion(Include.NON_EMPTY);
+        return mapper.writerWithDefaultPrettyPrinter().writeValueAsString(p_object);
+    }
+
+    public static String asJson(Object p_object) throws IOException {
+        final ObjectMapper mapper = createJsonMapper().configure(SerializationFeature.WRAP_ROOT_VALUE, false);
+        mapper.setDefaultPropertyInclusion(Include.NON_EMPTY);
+        return mapper.writeValueAsString(p_object);
+    }
+
+    public static byte[] getBytes(String p_str) throws UnsupportedEncodingException {
+        return p_str.getBytes(UTF8_STRING_ENCODING);
+    }
+
+    public static List<String> asList(JSONArray p_array) throws JSONException {
+        final List<String> result = new ArrayList<String>();
+        if (p_array != null) {
+            final int length = p_array.length();
+            if (length > 0) {
+                for (int i = 0; i < length; i++) {
+                    result.add(p_array.getString(i));
+                }
+            }
+        }
+        return result;
+    }
+
+    public static <T extends AttributeEnum> List<T> asEnumList(JSONArray p_array, Class<T> clazz)
+            throws JSONException, NoSuchMethodException, InvocationTargetException, IllegalAccessException {
+        final List<T> result = new ArrayList<T>();
+        if (p_array != null) {
+            final int length = p_array.length();
+            if (length > 0) {
+                for (int i = 0; i < length; i++) {
+                    Method method = clazz.getMethod("getByValue", String.class);
+                    result.add((T) method.invoke(null, new Object[]{p_array.getString(i)}));
+                }
+            }
+        }
+        return result;
+    }
+
+    public static void addToListIfHas(List<String> p_list, JSONObject jsonObj, String p_key) throws JSONException {
+        if (jsonObj != null && org.apache.commons.lang.StringUtils.isNotBlank(p_key) && jsonObj.has(p_key)) {
+            JSONArray array = jsonObj.getJSONArray(p_key);
+            if (p_list != null && array != null) {
+                p_list.addAll(asList(array));
+            }
+        }
+    }
+
+    public static void addToJSONObjectIfNotNull(JSONObject p_jsonObject, String key, Object value) throws JSONException {
+        if (p_jsonObject != null && value != null && StringUtils.isNotBlank(key)) {
+            p_jsonObject.put(key, value);
+        }
+    }
+
+    public static void addToJSONObjectIfNotNull(JSONObject p_jsonObject, String key, AttributeEnum value) throws JSONException {
+        if (p_jsonObject != null && value != null && StringUtils.isNotBlank(key)) {
+            p_jsonObject.put(key, value.getValue());
+        }
+    }
+
+    public static void addToJSONObjectIfNotNull(JSONObject p_jsonObject, String key, String[] value) throws JSONException {
+        if (p_jsonObject != null && value != null && StringUtils.isNotBlank(key)) {
+            p_jsonObject.put(key, new JSONArray(Arrays.asList(value)));
+        }
+    }
+
+    public static String asString(List<? extends HasParamName> p_list) {
+        final StringBuilder sb = new StringBuilder();
+        if (p_list != null && !p_list.isEmpty()) {
+            for (HasParamName p : p_list) {
+                sb.append(" ").append(p.getParamName());
+            }
+        }
+        return sb.toString().trim();
+    }
+
+    public static String listAsString(List<String> p_list) {
+        StringBuilder param = new StringBuilder();
+        if (p_list != null && !p_list.isEmpty()) {
+            for (String item : p_list) {
+                param.append(" ").append(item);
+            }
+        }
+        return param.toString().trim();
+    }
+
+    public static String mapAsString(Map<String, String> p_map) throws JSONException {
+        if (p_map == null || p_map.size() == 0) {
+            return null;
+        }
+
+        JSONArray jsonArray = new JSONArray();
+        for (String key : p_map.keySet()) {
+            JSONObject jsonObject = new JSONObject();
+            jsonObject.put(key, p_map.get(key));
+
+            jsonArray.put(jsonObject);
+        }
+
+        return jsonArray.toString();
+    }
+
+    public static boolean allNotBlank(String... p_strings) {
+        if (p_strings != null && p_strings.length > 0) {
+            for (String s : p_strings) {
+                if (org.apache.commons.lang.StringUtils.isBlank(s)) {
+                    return false;
+                }
+            }
+            return true;
+        }
+        return false;
+    }
+
+    public static List<String> splittedStringAsList(String p_string, String p_delimiter) {
+        final List<String> result = new ArrayList<String>();
+        if (StringUtils.isNotBlank(p_string)) {
+            final String[] array = p_string.split(p_delimiter);
+            if (array.length > 0) {
+                result.addAll(Arrays.asList(array));
+            }
+        }
+        return result;
+    }
+
+    public static List<String> jsonArrayStringAsList(String jsonString) throws JSONException {
+        final List<String> result = new ArrayList<String>();
+        if (StringUtils.isNotBlank(jsonString)) {
+            JSONArray jsonArray = new JSONArray(jsonString);
+
+            return asList(jsonArray);
+        }
+
+        return result;
+    }
+
+    public static JSONArray listToJsonArray(Collection<String> list) {
+        if (list == null) {
+        	return new JSONArray();
+        }
+
+        return new JSONArray(list);
+    }
+
+    /**
+     * @param jsonString [{"CustomHeader1":"custom_header_value_1"},.....,{"CustomHeaderN":"custom_header_value_N"}]
+     * @return
+     */
+    public static Map<String, String> jsonObjectArrayStringAsMap(String jsonString) throws JSONException {
+        Map<String, String> result = new HashMap<String, String>();
+
+        if (!isNullOrEmpty(jsonString)) {
+            JSONArray jsonArray = new JSONArray(jsonString);
+            for (int i = 0; i < jsonArray.length(); i++) {
+                JSONObject jsonObject = jsonArray.getJSONObject(i);
+
+                Iterator<String> keysIter = jsonObject.keys();
+                while (keysIter.hasNext()) {
+                    String key = keysIter.next();
+                    String value = jsonObject.getString(key);
+                    result.put(key, value);
+                }
+            }
+        }
+
+        return result;
+    }
+
+    public static <T> T firstItem(List<T> items) {
+        if (items == null) {
+            return null;
+        }
+
+        Iterator<T> iterator = items.iterator();
+        if (iterator.hasNext()) {
+            return iterator.next();
+        }
+
+        return null;
+    }
+
+    public static boolean isNullOrEmpty(String string) {
+        return string == null || string.length() == 0;
+    }
+
+    public static int parseIntSilently(String intString) {
+        return parseIntSilently(intString, -1);
+    }
+
+    public static int parseIntSilently(String intString, int defaultValue) {
+        try {
+            return Integer.parseInt(intString);
+        } catch (Exception e) {
+            return defaultValue;
+        }
+    }
+
+    // SHA-1 (160 bits)
+    public static String toSHA1HexString(String input) {
+        MessageDigest md = null;
+        try {
+            md = MessageDigest.getInstance("SHA-1");
+            return byteArrayToHexString(md.digest(input.getBytes()));
+        }
+        catch(NoSuchAlgorithmException e) {
+            e.printStackTrace();
+        }
+
+        return null;
+    }
+
+    public static String byteArrayToHexString(byte[] b) {
+        String result = "";
+        for (int i=0; i < b.length; i++) {
+            result +=
+                    Integer.toString( ( b[i] & 0xff ) + 0x100, 16).substring( 1 );
+        }
+        return result;
+    }
+
+}
diff --git a/oxAuth/Model/src/main/resources/json_logic.js b/oxAuth/Model/src/main/resources/json_logic.js
new file mode 100644
index 00000000..085235f1
--- /dev/null
+++ b/oxAuth/Model/src/main/resources/json_logic.js
@@ -0,0 +1,464 @@
+/* globals define,module */
+/*
+ Using a Universal Module Loader that should be browser, require, and AMD friendly
+ http://ricostacruz.com/cheatsheets/umdjs.html
+ */
+;(function(root, factory) {
+    if (typeof define === "function" && define.amd) {
+        define(factory);
+    } else if (typeof exports === "object") {
+        module.exports = factory();
+    } else {
+        root.jsonLogic = factory();
+    }
+}(this, function() {
+    "use strict";
+    /* globals console:false */
+
+    if ( ! Array.isArray) {
+        Array.isArray = function(arg) {
+            return Object.prototype.toString.call(arg) === "[object Array]";
+        };
+    }
+
+    /**
+     * Return an array that contains no duplicates (original not modified)
+     * @param  {array} array   Original reference array
+     * @return {array}         New array with no duplicates
+     */
+    function arrayUnique(array) {
+        var a = [];
+        for (var i=0, l=array.length; i<l; i++) {
+            if (a.indexOf(array[i]) === -1) {
+                a.push(array[i]);
+            }
+        }
+        return a;
+    }
+
+    var jsonLogic = {};
+    var operations = {
+        "==": function(a, b) {
+            return a == b;
+        },
+        "===": function(a, b) {
+            return a === b;
+        },
+        "!=": function(a, b) {
+            return a != b;
+        },
+        "!==": function(a, b) {
+            return a !== b;
+        },
+        ">": function(a, b) {
+            return a > b;
+        },
+        ">=": function(a, b) {
+            return a >= b;
+        },
+        "<": function(a, b, c) {
+            return (c === undefined) ? a < b : (a < b) && (b < c);
+        },
+        "<=": function(a, b, c) {
+            return (c === undefined) ? a <= b : (a <= b) && (b <= c);
+        },
+        "!!": function(a) {
+            return jsonLogic.truthy(a);
+        },
+        "!": function(a) {
+            return !jsonLogic.truthy(a);
+        },
+        "%": function(a, b) {
+            return a % b;
+        },
+        "log": function(a) {
+            console.log(a); return a;
+        },
+        "in": function(a, b) {
+            if(typeof b.indexOf === "undefined") return false;
+            return (b.indexOf(a) !== -1);
+        },
+        "cat": function() {
+            return Array.prototype.join.call(arguments, "");
+        },
+        "substr":function(source, start, end) {
+            if(end < 0){
+                // JavaScript doesn't support negative end, this emulates PHP behavior
+                var temp = String(source).substr(start);
+                return temp.substr(0, temp.length + end);
+            }
+            return String(source).substr(start, end);
+        },
+        "+": function() {
+            return Array.prototype.reduce.call(arguments, function(a, b) {
+                return parseFloat(a, 10) + parseFloat(b, 10);
+            }, 0);
+        },
+        "*": function() {
+            return Array.prototype.reduce.call(arguments, function(a, b) {
+                return parseFloat(a, 10) * parseFloat(b, 10);
+            });
+        },
+        "-": function(a, b) {
+            if(b === undefined) {
+                return -a;
+            }else{
+                return a - b;
+            }
+        },
+        "/": function(a, b) {
+            return a / b;
+        },
+        "min": function() {
+            return Math.min.apply(this, arguments);
+        },
+        "max": function() {
+            return Math.max.apply(this, arguments);
+        },
+        "merge": function() {
+            return Array.prototype.reduce.call(arguments, function(a, b) {
+                return a.concat(b);
+            }, []);
+        },
+        "var": function(a, b) {
+            var not_found = (b === undefined) ? null : b;
+            var data = this;
+            if(typeof a === "undefined" || a==="" || a===null) {
+                return data;
+            }
+            var sub_props = String(a).split(".");
+            for(var i = 0; i < sub_props.length; i++) {
+                if(data === null) {
+                    return not_found;
+                }
+                // Descending into data
+                data = data[sub_props[i]];
+                if(data === undefined) {
+                    return not_found;
+                }
+            }
+            return data;
+        },
+        "missing": function() {
+            /*
+             Missing can receive many keys as many arguments, like {"missing:[1,2]}
+             Missing can also receive *one* argument that is an array of keys,
+             which typically happens if it's actually acting on the output of another command
+             (like 'if' or 'merge')
+             */
+
+            var missing = [];
+            var keys = Array.isArray(arguments[0]) ? arguments[0] : arguments;
+
+            for(var i = 0; i < keys.length; i++) {
+                var key = keys[i];
+                var value = jsonLogic.apply({"var": key}, this);
+                if(value === null || value === "") {
+                    missing.push(key);
+                }
+            }
+
+            return missing;
+        },
+        "missing_some": function(need_count, options) {
+            // missing_some takes two arguments, how many (minimum) items must be present, and an array of keys (just like 'missing') to check for presence.
+            var are_missing = jsonLogic.apply({"missing": options}, this);
+
+            if(options.length - are_missing.length >= need_count) {
+                return [];
+            }else{
+                return are_missing;
+            }
+        },
+        "method": function(obj, method, args) {
+            return obj[method].apply(obj, args);
+        },
+
+    };
+
+    jsonLogic.is_logic = function(logic) {
+        return (
+            typeof logic === "object" && // An object
+            logic !== null && // but not null
+            ! Array.isArray(logic) && // and not an array
+            Object.keys(logic).length === 1 // with exactly one key
+        );
+    };
+
+    /*
+     This helper will defer to the JsonLogic spec as a tie-breaker when different language interpreters define different behavior for the truthiness of primitives.  E.g., PHP considers empty arrays to be falsy, but Javascript considers them to be truthy. JsonLogic, as an ecosystem, needs one consistent answer.
+
+     Spec and rationale here: http://jsonlogic.com/truthy
+     */
+    jsonLogic.truthy = function(value) {
+        if(Array.isArray(value) && value.length === 0) {
+            return false;
+        }
+        return !! value;
+    };
+
+
+    jsonLogic.get_operator = function(logic) {
+        return Object.keys(logic)[0];
+    };
+
+    jsonLogic.get_values = function(logic) {
+        return logic[jsonLogic.get_operator(logic)];
+    };
+
+    jsonLogic.apply = function(logic, data) {
+        // Does this array contain logic? Only one way to find out.
+        if(Array.isArray(logic)) {
+            return logic.map(function(l) {
+                return jsonLogic.apply(l, data);
+            });
+        }
+        // You've recursed to a primitive, stop!
+        if( ! jsonLogic.is_logic(logic) ) {
+            return logic;
+        }
+
+        data = data || {};
+
+        var op = jsonLogic.get_operator(logic);
+        var values = logic[op];
+        var i;
+        var current;
+        var scopedLogic, scopedData, filtered, initial;
+
+        // easy syntax for unary operators, like {"var" : "x"} instead of strict {"var" : ["x"]}
+        if( ! Array.isArray(values)) {
+            values = [values];
+        }
+
+        // 'if', 'and', and 'or' violate the normal rule of depth-first calculating consequents, let each manage recursion as needed.
+        if(op === "if" || op == "?:") {
+            /* 'if' should be called with a odd number of parameters, 3 or greater
+             This works on the pattern:
+             if( 0 ){ 1 }else{ 2 };
+             if( 0 ){ 1 }else if( 2 ){ 3 }else{ 4 };
+             if( 0 ){ 1 }else if( 2 ){ 3 }else if( 4 ){ 5 }else{ 6 };
+
+             The implementation is:
+             For pairs of values (0,1 then 2,3 then 4,5 etc)
+             If the first evaluates truthy, evaluate and return the second
+             If the first evaluates falsy, jump to the next pair (e.g, 0,1 to 2,3)
+             given one parameter, evaluate and return it. (it's an Else and all the If/ElseIf were false)
+             given 0 parameters, return NULL (not great practice, but there was no Else)
+             */
+            for(i = 0; i < values.length - 1; i += 2) {
+                if( jsonLogic.truthy( jsonLogic.apply(values[i], data) ) ) {
+                    return jsonLogic.apply(values[i+1], data);
+                }
+            }
+            if(values.length === i+1) return jsonLogic.apply(values[i], data);
+            return null;
+        }else if(op === "and") { // Return first falsy, or last
+            for(i=0; i < values.length; i+=1) {
+                current = jsonLogic.apply(values[i], data);
+                if( ! jsonLogic.truthy(current)) {
+                    return current;
+                }
+            }
+            return current; // Last
+        }else if(op === "or") {// Return first truthy, or last
+            for(i=0; i < values.length; i+=1) {
+                current = jsonLogic.apply(values[i], data);
+                if( jsonLogic.truthy(current) ) {
+                    return current;
+                }
+            }
+            return current; // Last
+
+
+
+
+        }else if(op === 'filter'){
+            scopedData = jsonLogic.apply(values[0], data);
+            scopedLogic = values[1];
+
+            if ( ! Array.isArray(scopedData)) {
+                return [];
+            }
+            // Return only the elements from the array in the first argument,
+            // that return truthy when passed to the logic in the second argument.
+            // For parity with JavaScript, reindex the returned array
+            return scopedData.filter(function(datum){
+                return jsonLogic.truthy( jsonLogic.apply(scopedLogic, datum));
+            });
+        }else if(op === 'map'){
+            scopedData = jsonLogic.apply(values[0], data);
+            scopedLogic = values[1];
+
+            if ( ! Array.isArray(scopedData)) {
+                return [];
+            }
+
+            return scopedData.map(function(datum){
+                return jsonLogic.apply(scopedLogic, datum);
+            });
+
+        }else if(op === 'reduce'){
+            scopedData = jsonLogic.apply(values[0], data);
+            scopedLogic = values[1];
+            initial = typeof values[2] !== 'undefined' ? values[2] : null;
+
+            if ( ! Array.isArray(scopedData)) {
+                return initial;
+            }
+
+            return scopedData.reduce(
+                function(accumulator, current){
+                    return jsonLogic.apply(
+                        scopedLogic,
+                        {'current':current, 'accumulator':accumulator}
+                    );
+                },
+                initial
+            );
+
+        }else if(op === "all") {
+            scopedData = jsonLogic.apply(values[0], data);
+            scopedLogic = values[1];
+            // All of an empty set is false. Note, some and none have correct fallback after the for loop
+            if( ! scopedData.length) {
+                return false;
+            }
+            for(i=0; i < scopedData.length; i+=1) {
+                if( ! jsonLogic.truthy( jsonLogic.apply(scopedLogic, scopedData[i]) )) {
+                    return false; // First falsy, short circuit
+                }
+            }
+            return true; // All were truthy
+        }else if(op === "none") {
+            filtered = jsonLogic.apply({'filter' : values}, data);
+            return filtered.length === 0;
+
+        }else if(op === "some") {
+            filtered = jsonLogic.apply({'filter' : values}, data);
+            return filtered.length > 0;
+        }
+
+        // Everyone else gets immediate depth-first recursion
+        values = values.map(function(val) {
+            return jsonLogic.apply(val, data);
+        });
+
+
+        // The operation is called with "data" bound to its "this" and "values" passed as arguments.
+        // Structured commands like % or > can name formal arguments while flexible commands (like missing or merge) can operate on the pseudo-array arguments
+        // https://developer.mozilla.org/en-US/docs/Web/JavaScript/Reference/Functions/arguments
+        if(typeof operations[op] === "function") {
+            return operations[op].apply(data, values);
+        }else if(op.indexOf(".") > 0) { // Contains a dot, and not in the 0th position
+            var sub_ops = String(op).split(".");
+            var operation = operations;
+            for(i = 0; i < sub_ops.length; i++) {
+                // Descending into operations
+                operation = operation[sub_ops[i]];
+                if(operation === undefined) {
+                    throw new Error("Unrecognized operation " + op +
+                        " (failed at " + sub_ops.slice(0, i+1).join(".") + ")");
+                }
+            }
+
+            return operation.apply(data, values);
+        }
+
+        throw new Error("Unrecognized operation " + op );
+    };
+
+    jsonLogic.uses_data = function(logic) {
+        var collection = [];
+
+        if( jsonLogic.is_logic(logic) ) {
+            var op = jsonLogic.get_operator(logic);
+            var values = logic[op];
+
+            if( ! Array.isArray(values)) {
+                values = [values];
+            }
+
+            if(op === "var") {
+                // This doesn't cover the case where the arg to var is itself a rule.
+                collection.push(values[0]);
+            }else{
+                // Recursion!
+                values.map(function(val) {
+                    collection.push.apply(collection, jsonLogic.uses_data(val) );
+                });
+            }
+        }
+
+        return arrayUnique(collection);
+    };
+
+    jsonLogic.add_operation = function(name, code) {
+        operations[name] = code;
+    };
+
+    jsonLogic.rm_operation = function(name) {
+        delete operations[name];
+    };
+
+    jsonLogic.rule_like = function(rule, pattern) {
+        // console.log("Is ". JSON.stringify(rule) . " like " . JSON.stringify(pattern) . "?");
+        if(pattern === rule) {
+            return true;
+        } // TODO : Deep object equivalency?
+        if(pattern === "@") {
+            return true;
+        } // Wildcard!
+        if(pattern === "number") {
+            return (typeof rule === "number");
+        }
+        if(pattern === "string") {
+            return (typeof rule === "string");
+        }
+        if(pattern === "array") {
+            // !logic test might be superfluous in JavaScript
+            return Array.isArray(rule) && ! jsonLogic.is_logic(rule);
+        }
+
+        if(jsonLogic.is_logic(pattern)) {
+            if(jsonLogic.is_logic(rule)) {
+                var pattern_op = jsonLogic.get_operator(pattern);
+                var rule_op = jsonLogic.get_operator(rule);
+
+                if(pattern_op === "@" || pattern_op === rule_op) {
+                    // echo "\nOperators match, go deeper\n";
+                    return jsonLogic.rule_like(
+                        jsonLogic.get_values(rule, false),
+                        jsonLogic.get_values(pattern, false)
+                    );
+                }
+            }
+            return false; // pattern is logic, rule isn't, can't be eq
+        }
+
+        if(Array.isArray(pattern)) {
+            if(Array.isArray(rule)) {
+                if(pattern.length !== rule.length) {
+                    return false;
+                }
+                /*
+                 Note, array order MATTERS, because we're using this array test logic to consider arguments, where order can matter. (e.g., + is commutative, but '-' or 'if' or 'var' are NOT)
+                 */
+                for(var i = 0; i < pattern.length; i += 1) {
+                    // If any fail, we fail
+                    if( ! jsonLogic.rule_like(rule[i], pattern[i])) {
+                        return false;
+                    }
+                }
+                return true; // If they *all* passed, we pass
+            }else{
+                return false; // Pattern is array, rule isn't
+            }
+        }
+
+        // Not logic, not array, not a === match for rule.
+        return false;
+    };
+
+    return jsonLogic;
+}));
\ No newline at end of file
diff --git a/oxAuth/Model/src/test/java/org/gluu/oxauth/model/authorize/CodeVerifierTest.java b/oxAuth/Model/src/test/java/org/gluu/oxauth/model/authorize/CodeVerifierTest.java
new file mode 100644
index 00000000..b7676e8a
--- /dev/null
+++ b/oxAuth/Model/src/test/java/org/gluu/oxauth/model/authorize/CodeVerifierTest.java
@@ -0,0 +1,56 @@
+package org.gluu.oxauth.model.authorize;
+
+import org.gluu.oxauth.model.authorize.CodeVerifier;
+import org.testng.annotations.Test;
+
+import java.io.UnsupportedEncodingException;
+import java.security.MessageDigest;
+import java.security.NoSuchAlgorithmException;
+
+import static org.testng.Assert.*;
+
+/**
+ * @author Yuriy Zabrovarnyy
+ * @version 0.9, 21/03/2016
+ */
+
+public class CodeVerifierTest {
+
+    @Test
+    public void verifierAndChallengeMatch() throws NoSuchAlgorithmException, UnsupportedEncodingException {
+        assertMatch(CodeVerifier.CodeChallengeMethod.PLAIN);
+        assertMatch(CodeVerifier.CodeChallengeMethod.S256);
+
+        assertFalse(CodeVerifier.matched(null, "", "invalid_code"));
+    }
+
+    @Test
+    public void verify() {
+        String codeChallenge = CodeVerifier.generateCodeChallenge(CodeVerifier.CodeChallengeMethod.S256, "dBjftJeZ4CVP-mB92K27uhbUJU1p1r_wW1gFWFOEjXk");
+
+        assertEquals(codeChallenge, "E9Melhoa2OwvFrEMTJguCHaoeK1t8URWbuGJSstw-cM");
+    }
+
+    @Test
+    public void codeVerificationGenerator() {
+        for (int i = 0; i < 10; i++) {
+            assertTrue(CodeVerifier.isCodeVerifierValid(CodeVerifier.generateCodeVerifier()));
+        }
+    }
+
+    private static void assertMatch(CodeVerifier.CodeChallengeMethod type) throws NoSuchAlgorithmException, UnsupportedEncodingException {
+        CodeVerifier verifier = new CodeVerifier(type);
+        System.out.println(verifier);
+
+        if (type == CodeVerifier.CodeChallengeMethod.PLAIN) {
+            assertEquals(verifier.getCodeChallenge(), verifier.getCodeVerifier());
+            return;
+        }
+
+        MessageDigest md = MessageDigest.getInstance(type.getMessageDigestString());
+        md.update(verifier.getCodeVerifier().getBytes("UTF-8")); // Change this to "UTF-16" if needed
+        byte[] digest = md.digest();
+
+        assertEquals(CodeVerifier.base64UrlEncode(digest), verifier.getCodeChallenge());
+    }
+}
diff --git a/oxAuth/Model/src/test/java/org/gluu/oxauth/model/crypto/binding/TokenBindingParserTest.java b/oxAuth/Model/src/test/java/org/gluu/oxauth/model/crypto/binding/TokenBindingParserTest.java
new file mode 100644
index 00000000..5a4f26eb
--- /dev/null
+++ b/oxAuth/Model/src/test/java/org/gluu/oxauth/model/crypto/binding/TokenBindingParserTest.java
@@ -0,0 +1,28 @@
+package org.gluu.oxauth.model.crypto.binding;
+
+import org.gluu.oxauth.model.crypto.binding.TokenBinding;
+import org.gluu.oxauth.model.crypto.binding.TokenBindingMessage;
+import org.gluu.oxauth.model.crypto.binding.TokenBindingParseException;
+import org.gluu.oxauth.model.crypto.binding.TokenBindingType;
+import org.testng.Assert;
+import org.testng.annotations.Test;
+
+/**
+ * @author Yuriy Zabrovarnyy
+ */
+public class TokenBindingParserTest {
+
+    @Test
+    public void testParsingAndSHA256hashOfTokenBindingId() throws TokenBindingParseException {
+        // values taken from spec: http://openid.net/specs/openid-connect-token-bound-authentication-1_0-03.html
+        String encoded = "ARIAAgBBQCfsI1D1sTq5mvT_2H_dihNIvuHJCHGjHPJchPavNbGrOo26-2JgT_IsbvZd4daDFbirYBIwJ-TK1rh8FzrC-psAQO4Au9xPupLSkhwT9Y" +
+                "n9aSvHXFsMLh4d4cEBKGP1clJtsfUFGDw-8HQSKwgKFN3WfZGq27y8NB3NAM1oNzvqVOIAAAECAEFArPIiuZxj9gK0dWhIcG63r2-sZ8V3LX9gpNl8Um_oGOtmwoP1v0VHNI" +
+                "HEOzW3BOqcBLvUzVEG6a6KGEj3GrFcqQBA9YxqHPBIuDui_aQ1SoRGKyBEhaG2i-Wke3erRb1YwC7nTgrpqqJG3z1P8bt7cjZN6TpOyktdSSK7OJgiApwG7AAA";
+        String expectedIdHash = "suMuxh_IlrP-Zrj33LuQOQ5rX039cmBe-wt2df3BrUQ";
+
+        TokenBindingMessage message = new TokenBindingMessage(encoded);
+        TokenBinding referredBinding = message.getFirstTokenBindingByType(TokenBindingType.REFERRED_TOKEN_BINDING);
+
+        Assert.assertEquals(expectedIdHash, referredBinding.getTokenBindingID().sha256base64url());
+    }
+}
diff --git a/oxAuth/Model/src/test/java/org/gluu/oxauth/model/jwt/JwtClaimsTest.java b/oxAuth/Model/src/test/java/org/gluu/oxauth/model/jwt/JwtClaimsTest.java
new file mode 100644
index 00000000..6a12b0eb
--- /dev/null
+++ b/oxAuth/Model/src/test/java/org/gluu/oxauth/model/jwt/JwtClaimsTest.java
@@ -0,0 +1,50 @@
+package org.gluu.oxauth.model.jwt;
+
+import com.google.common.collect.Lists;
+import org.testng.annotations.Test;
+
+import static org.testng.Assert.assertEquals;
+
+/**
+ * @author Yuriy Z
+ */
+public class JwtClaimsTest {
+
+    @Test
+    public void setClaimObject_whenSetSameValue_shouldNotCreateDuplicate() {
+        JwtClaims claims = new JwtClaims();
+        claims.addAudience("client1");
+
+        claims.setClaimObject("aud", "client1", false);
+        assertEquals(claims.getClaim("aud"), "client1");
+    }
+
+    @Test
+    public void setClaimObject_whenSetDifferentValues_shouldCreateCorrectArray() {
+        JwtClaims claims = new JwtClaims();
+        claims.addAudience("client1");
+
+        claims.setClaimObject("aud", "client2", false);
+        assertEquals(claims.getClaim("aud"), Lists.newArrayList("client1", "client2"));
+    }
+
+    @Test
+    public void setClaimObject_whenSetDifferentValue_shouldCreateCorrectArray() {
+        JwtClaims claims = new JwtClaims();
+        claims.addAudience("client1");
+
+        claims.setClaimObject("aud", "client2", false);
+        claims.setClaimObject("aud", "client3", false);
+        assertEquals(claims.getClaim("aud"), Lists.newArrayList("client1", "client2", "client3"));
+    }
+
+    @Test
+    public void setClaimObject_whenSetDifferentValueWithOverride_shouldOverrideValue() {
+        JwtClaims claims = new JwtClaims();
+        claims.addAudience("client1");
+
+        claims.setClaimObject("aud", "client2", false);
+        claims.setClaimObject("aud", "client3", true);
+        assertEquals(claims.getClaim("aud"), "client3");
+    }
+}
diff --git a/oxAuth/Model/src/test/java/org/gluu/oxauth/model/jwt/JwtTypeTest.java b/oxAuth/Model/src/test/java/org/gluu/oxauth/model/jwt/JwtTypeTest.java
new file mode 100644
index 00000000..3668fcff
--- /dev/null
+++ b/oxAuth/Model/src/test/java/org/gluu/oxauth/model/jwt/JwtTypeTest.java
@@ -0,0 +1,16 @@
+package org.gluu.oxauth.model.jwt;
+
+import org.testng.annotations.Test;
+
+import static org.testng.Assert.assertEquals;
+
+/**
+ * @author Yuriy Z
+ */
+public class JwtTypeTest {
+
+    @Test
+    public void jwtTypeHeader_mustBeUppercased() {
+        assertEquals(JwtType.JWT.toString(), "JWT");
+    }
+}
diff --git a/oxAuth/Model/src/test/java/org/gluu/oxauth/model/uma/JsonLogicNodeParserTest.java b/oxAuth/Model/src/test/java/org/gluu/oxauth/model/uma/JsonLogicNodeParserTest.java
new file mode 100644
index 00000000..2202b812
--- /dev/null
+++ b/oxAuth/Model/src/test/java/org/gluu/oxauth/model/uma/JsonLogicNodeParserTest.java
@@ -0,0 +1,26 @@
+package org.gluu.oxauth.model.uma;
+
+import org.apache.commons.io.IOUtils;
+import org.gluu.oxauth.model.uma.JsonLogicNode;
+import org.gluu.oxauth.model.uma.JsonLogicNodeParser;
+import org.testng.annotations.Test;
+
+import java.io.IOException;
+
+import static org.testng.Assert.assertNotNull;
+import static org.testng.Assert.assertTrue;
+
+/**
+ * @author yuriyz
+ */
+public class JsonLogicNodeParserTest {
+
+    @Test
+    public void parse() throws IOException {
+        String json = IOUtils.toString(JsonLogicNodeParserTest.class.getClassLoader().getResourceAsStream("json-logic-node.json"));
+        JsonLogicNode node = JsonLogicNodeParser.parseNode(json);
+
+        assertNotNull(node);
+        assertTrue(node.isValid());
+    }
+}
diff --git a/oxAuth/Model/src/test/java/org/gluu/oxauth/model/uma/JsonLogicTest.java b/oxAuth/Model/src/test/java/org/gluu/oxauth/model/uma/JsonLogicTest.java
new file mode 100644
index 00000000..f90c8d65
--- /dev/null
+++ b/oxAuth/Model/src/test/java/org/gluu/oxauth/model/uma/JsonLogicTest.java
@@ -0,0 +1,71 @@
+package org.gluu.oxauth.model.uma;
+
+import org.gluu.oxauth.model.uma.JsonLogic;
+import org.testng.Assert;
+import org.testng.annotations.Test;
+
+import javax.script.ScriptException;
+
+/**
+ * @author yuriyz
+ */
+public class JsonLogicTest {
+
+    @Test
+    public void testJsEngine() throws ScriptException, NoSuchMethodException {
+        JsonLogic.eval("var fun1 = function(name) {\n" +
+                "    print('Hi there from Javascript, ' + name);\n" +
+                "    return \"greetings from javascript\";\n" +
+                "};");
+        Object result = JsonLogic.invokeFunction("fun1", "");
+        Assert.assertEquals(result, "greetings from javascript");
+    }
+
+    @Test
+    public void testJsonLogic() throws ScriptException, NoSuchMethodException {
+        assertTrue("jsonLogic.apply( { \"==\" : [1, 1] } );");
+        assertFalse("jsonLogic.apply( { \"==\" : [1, 0] } );");
+
+        Assert.assertTrue(JsonLogic.apply("{ \"==\" : [1, 1] }"));
+        Assert.assertFalse(JsonLogic.apply("{ \"==\" : [1, 0] }"));
+
+        assertTrue("jsonLogic.apply(\n" +
+                "  {\"and\" : [\n" +
+                "    { \">\" : [3,1] },\n" +
+                "    { \"<\" : [1,3] }\n" +
+                "  ] }\n" +
+                ");");
+    }
+
+    @Test
+    public void umaSimulation() throws ScriptException {
+        String rule = "{" +
+                "    \"and\": [ {" +
+                "        \"or\": [" +
+                "          {\"var\": 0 }," +
+                "          {\"var\": 1 }" +
+                "        ]" +
+                "      }," +
+                "      {\"var\": 2 }" +
+                "    ]}";
+        Assert.assertTrue(JsonLogic.apply(rule, "[true, true, true]"));
+        Assert.assertTrue(JsonLogic.apply(rule, "[true, false, true]"));
+        Assert.assertTrue(JsonLogic.apply(rule, "[false, true, true]"));
+
+        Assert.assertFalse(JsonLogic.apply(rule, "[false, false, false]"));
+        Assert.assertFalse(JsonLogic.apply(rule, "[false, false, true]"));
+        Assert.assertFalse(JsonLogic.apply(rule, "[true, true, false]"));
+    }
+
+    private static void assertResult(String script, Boolean expectedResult) throws ScriptException {
+        Assert.assertEquals(JsonLogic.eval(script), expectedResult);
+    }
+
+    private static void assertTrue(String script) throws ScriptException {
+        assertResult(script, Boolean.TRUE);
+    }
+
+    private static void assertFalse(String script) throws ScriptException {
+        assertResult(script, Boolean.FALSE);
+    }
+}
diff --git a/oxAuth/Model/src/test/java/org/gluu/oxauth/model/uma/TestUtil.java b/oxAuth/Model/src/test/java/org/gluu/oxauth/model/uma/TestUtil.java
new file mode 100644
index 00000000..a54de934
--- /dev/null
+++ b/oxAuth/Model/src/test/java/org/gluu/oxauth/model/uma/TestUtil.java
@@ -0,0 +1,45 @@
+/*
+ * oxAuth is available under the MIT License (2008). See http://opensource.org/licenses/MIT for full text.
+ *
+ * Copyright (c) 2014, Gluu
+ */
+
+package org.gluu.oxauth.model.uma;
+
+import static org.testng.Assert.assertNotNull;
+import static org.testng.Assert.assertTrue;
+import static org.testng.Assert.fail;
+
+import org.apache.commons.lang.StringUtils;
+import org.apache.log4j.Logger;
+import org.json.JSONException;
+import org.json.JSONObject;
+
+/**
+ * @author Yuriy Zabrovarnyy
+ * @version 0.9, 16/10/2013
+ */
+
+public class TestUtil {
+
+    private static final Logger LOG = Logger.getLogger(TestUtil.class);
+
+    private TestUtil() {
+    }
+
+    public static void assertNotBlank(String p_str) {
+        assertTrue(StringUtils.isNotBlank(p_str));
+    }
+
+    public static void assertErrorResponse(String p_entity) {
+        assertNotNull(p_entity, "Unexpected result: " + p_entity);
+        try {
+            JSONObject jsonObj = new JSONObject(p_entity);
+            assertTrue(jsonObj.has("error"), "The error type is null");
+            assertTrue(jsonObj.has("error_description"), "The error description is null");
+        } catch (JSONException e) {
+            LOG.error(e.getMessage(), e);
+            fail(e.getMessage() + "\nResponse was: " + p_entity);
+        }
+    }
+}
diff --git a/oxAuth/Model/src/test/java/org/gluu/oxauth/model/uma/UmaTestUtil.java b/oxAuth/Model/src/test/java/org/gluu/oxauth/model/uma/UmaTestUtil.java
new file mode 100644
index 00000000..74c70aa8
--- /dev/null
+++ b/oxAuth/Model/src/test/java/org/gluu/oxauth/model/uma/UmaTestUtil.java
@@ -0,0 +1,107 @@
+/*
+ * oxAuth is available under the MIT License (2008). See http://opensource.org/licenses/MIT for full text.
+ *
+ * Copyright (c) 2014, Gluu
+ */
+
+package org.gluu.oxauth.model.uma;
+
+import static org.testng.Assert.assertNotNull;
+import static org.testng.Assert.assertTrue;
+
+import java.util.Arrays;
+
+import javax.ws.rs.core.Response;
+
+import org.apache.commons.lang.ArrayUtils;
+import org.apache.commons.lang.StringUtils;
+import org.gluu.oxauth.model.common.GrantType;
+import org.gluu.oxauth.model.common.Id;
+import org.gluu.oxauth.model.uma.wrapper.Token;
+
+/**
+ * @author Yuriy Zabrovarnyy
+ */
+public class UmaTestUtil {
+
+    private UmaTestUtil() {
+    }
+
+    public static void assert_(UmaScopeDescription p_scopeDescription) {
+        assertNotNull(p_scopeDescription, "Scope description is null");
+        assertTrue(StringUtils.isNotBlank(p_scopeDescription.getName()), "Scope name is empty");
+    }
+
+    public static void assert_(RptIntrospectionResponse p_rptStatus) {
+        assertNotNull(p_rptStatus, "Token response status is null");
+        assertTrue(p_rptStatus.getActive(), "Token is not active");
+        assertTrue(p_rptStatus.getPermissions() != null && !p_rptStatus.getPermissions().isEmpty(), "Permissions are empty.");
+        assertNotNull(p_rptStatus.getExpiresAt(), "Expiration date is null");
+    }
+
+    public static void assert_(UmaMetadata metadata) {
+        assertNotNull(metadata, "Metadata is null");
+        assertTrue(ArrayUtils.contains(metadata.getGrantTypesSupported(), GrantType.OXAUTH_UMA_TICKET.getValue()));
+        assertNotNull(metadata.getIssuer(), "Issuer isn't correct");
+        assertNotNull(metadata.getTokenEndpoint(), "Token endpoint isn't correct");
+        assertNotNull(metadata.getIntrospectionEndpoint(), "Introspection endpoint isn't correct");
+        assertNotNull(metadata.getResourceRegistrationEndpoint(), "Resource registration endpoint isn't correct");
+        assertNotNull(metadata.getPermissionEndpoint(), "Permission registration endpoint isn't correct");
+        assertNotNull(metadata.getAuthorizationEndpoint(), "Authorization request endpoint isn't correct");
+    }
+
+    public static void assert_(Token token) {
+        assertNotNull(token, "The token object is null");
+        assertNotNull(token.getAccessToken(), "The access token is null");
+        //assertNotNull(p_token.getRefreshToken(), "The refresh token is null");
+    }
+
+    public static void assert_(UmaResourceResponse resourceResponse) {
+        assertNotNull(resourceResponse, "Resource status is null");
+        assertNotNull(resourceResponse.getId(), "Resource description id is null");
+    }
+
+    public static UmaResource createResource() {
+        final UmaResource resource = new UmaResource();
+        resource.setName("Server Photo Album");
+        resource.setIconUri("http://www.example.com/icons/flower.png");
+        resource.setScopes(Arrays.asList("http://photoz.example.com/dev/scopes/view", "http://photoz.example.com/dev/scopes/all"));
+        resource.setType("myType");
+        return resource;
+    }
+
+    public static void assert_(PermissionTicket ticket) {
+        assertNotNull(ticket, "Ticket is null");
+        assertTrue(StringUtils.isNotBlank(ticket.getTicket()), "Ticket is empty");
+    }
+
+    public static void assert_(RPTResponse response) {
+        assertNotNull(response, "RPT response is null");
+        assertNotNull(response.getRpt(), "RPT is null");
+    }
+
+    public static void assert_(Response p_response) {
+        assertNotNull(p_response, "Response is null");
+        assertTrue(p_response.getStatus() == Response.Status.OK.getStatusCode(), "Response http code is not OK.");
+    }
+
+    public static void assert_(Id p_id) {
+        assertNotNull(p_id, "ID is null");
+        assertTrue(StringUtils.isNotBlank(p_id.getId()), "ID is blank");
+    }
+
+    public static void assert_(UmaTokenResponse response) {
+        assertNotNull(response, "UMA Token response is null");
+        assertNotNull(response.getAccessToken(), "RPT is null");
+        assertNotNull(response.getPct(), "PCT is null");
+    }
+
+    public static void assert_(UmaNeedInfoResponse response) {
+        assertNotNull(response, "UMA Need Info response is null");
+        assertTrue(StringUtils.isNotBlank(response.getError()), "need_info error is blank");
+        assertTrue(StringUtils.isNotBlank(response.getTicket()), "need_info ticket is blank");
+        assertTrue(response.getRequiredClaims() != null && !response.getRequiredClaims().isEmpty(), "need_info required claims are empty");
+        assertTrue(StringUtils.isNotBlank(response.getRedirectUser()), "need_info redirect user uri is blank");
+    }
+
+}
diff --git a/oxAuth/Model/src/test/java/org/gluu/oxauth/model/util/CertUtilsTest.java b/oxAuth/Model/src/test/java/org/gluu/oxauth/model/util/CertUtilsTest.java
new file mode 100644
index 00000000..adf7aef9
--- /dev/null
+++ b/oxAuth/Model/src/test/java/org/gluu/oxauth/model/util/CertUtilsTest.java
@@ -0,0 +1,49 @@
+package org.gluu.oxauth.model.util;
+
+import org.gluu.oxauth.model.util.CertUtils;
+import org.testng.Assert;
+import org.testng.annotations.Test;
+
+import static org.testng.Assert.assertFalse;
+import static org.testng.Assert.assertTrue;
+
+/**
+ * @author Yuriy Zabrovarnyy
+ */
+public class CertUtilsTest {
+
+    public static final String TEST_PEM_1 = "-----BEGIN CERTIFICATE-----\n" +
+            "MIIBBjCBrAIBAjAKBggqhkjOPQQDAjAPMQ0wCwYDVQQDDARtdGxzMB4XDTE4MTAx\n" +
+            "ODEyMzcwOVoXDTIyMDUwMjEyMzcwOVowDzENMAsGA1UEAwwEbXRsczBZMBMGByqG\n" +
+            "SM49AgEGCCqGSM49AwEHA0IABNcnyxwqV6hY8QnhxxzFQ03C7HKW9OylMbnQZjjJ\n" +
+            "/Au08/coZwxS7LfA4vOLS9WuneIXhbGGWvsDSb0tH6IxLm8wCgYIKoZIzj0EAwID\n" +
+            "SQAwRgIhAP0RC1E+vwJD/D1AGHGzuri+hlV/PpQEKTWUVeORWz83AiEA5x2eXZOV\n" +
+            "bUlJSGQgjwD5vaUaKlLR50Q2DmFfQj1L+SY=\n" +
+            "-----END CERTIFICATE-----";
+
+    public static final String TEST_PEM_2 = "-----BEGIN CERTIFICATE-----MIIBBjCBrAIBAjAKBggqhkjOPQQDAjAPMQ0wCwYDVQQDDARtdGxzMB4XDTE4MTAxODEyMzcwOVoXDTIyMDUwMjEyMzcwOVowDzENMAsGA1UEAwwEbXRsczBZMBMGByqGSM49AgEGCCqGSM49AwEHA0IABNcnyxwqV6hY8QnhxxzFQ03C7HKW9OylMbnQZjjJ/Au08/coZwxS7LfA4vOLS9WuneIXhbGGWvsDSb0tH6IxLm8wCgYIKoZIzj0EAwIDSQAwRgIhAP0RC1E+vwJD/D1AGHGzuri+hlV/PpQEKTWUVeORWz83AiEA5x2eXZOVbUlJSGQgjwD5vaUaKlLR50Q2DmFfQj1L+SY=-----END CERTIFICATE-----";
+    public static final String TEST_PEM_3 = "MIIBBjCBrAIBAjAKBggqhkjOPQQDAjAPMQ0wCwYDVQQDDARtdGxzMB4XDTE4MTAxODEyMzcwOVoXDTIyMDUwMjEyMzcwOVowDzENMAsGA1UEAwwEbXRsczBZMBMGByqGSM49AgEGCCqGSM49AwEHA0IABNcnyxwqV6hY8QnhxxzFQ03C7HKW9OylMbnQZjjJ/Au08/coZwxS7LfA4vOLS9WuneIXhbGGWvsDSb0tH6IxLm8wCgYIKoZIzj0EAwIDSQAwRgIhAP0RC1E+vwJD/D1AGHGzuri+hlV/PpQEKTWUVeORWz83AiEA5x2eXZOVbUlJSGQgjwD5vaUaKlLR50Q2DmFfQj1L+SY=";
+
+    @Test
+    public void s256() {
+        Assert.assertEquals("A4DtL2JmUMhAsvJj5tKyn64SqzmuXbMrJa0n761y5v0", CertUtils.confirmationMethodHashS256(TEST_PEM_1));
+        Assert.assertEquals("A4DtL2JmUMhAsvJj5tKyn64SqzmuXbMrJa0n761y5v0", CertUtils.confirmationMethodHashS256(TEST_PEM_2));
+        Assert.assertEquals("A4DtL2JmUMhAsvJj5tKyn64SqzmuXbMrJa0n761y5v0", CertUtils.confirmationMethodHashS256(TEST_PEM_3));
+    }
+
+    @Test
+    public void equalsRdn_withCorrectValues_shouldReturnTrueAndIgnoreOrder() {
+        String r1 = "C=GB,O=OpenBanking,OU=0015800000jfFGuAAM,CN=1g7yUiOr3p0QFnAB1UvInE";
+        String r2 = "CN=1g7yUiOr3p0QFnAB1UvInE, OU=0015800000jfFGuAAM, O=OpenBanking, C=GB";
+
+        assertTrue(CertUtils.equalsRdn(r1, r2));
+    }
+
+    @Test
+    public void equalsRdn_withWrongValues_shouldReturnFalse() {
+        String r1 = "C=FAILGB,O=OpenBanking,OU=0015800000jfFGuAAM,CN=1g7yUiOr3p0QFnAB1UvInE";
+        String r2 = "CN=1g7yUiOr3p0QFnAB1UvInE, OU=0015800000jfFGuAAM, O=OpenBanking, C=GB";
+
+        assertFalse(CertUtils.equalsRdn(r1, r2));
+    }
+}
diff --git a/oxAuth/Model/src/test/java/org/gluu/oxauth/model/util/HashUtilTest.java b/oxAuth/Model/src/test/java/org/gluu/oxauth/model/util/HashUtilTest.java
new file mode 100644
index 00000000..b35953f1
--- /dev/null
+++ b/oxAuth/Model/src/test/java/org/gluu/oxauth/model/util/HashUtilTest.java
@@ -0,0 +1,43 @@
+package org.gluu.oxauth.model.util;
+
+import static org.testng.Assert.assertEquals;
+
+import org.gluu.oxauth.model.crypto.signature.SignatureAlgorithm;
+import org.gluu.util.security.SecurityProviderUtility;
+import org.testng.annotations.Test;
+
+/**
+ * @author Yuriy Zabrovarnyy
+ */
+public class HashUtilTest {
+
+    static {
+        SecurityProviderUtility.installBCProvider();
+    }
+
+    private static final String INPUT = "a308bb8f-25b0-4b1f-85a6-778698a35a43";
+
+    @Test
+    public void s256Hash() {
+        assertEquals("hhNHO19gwnEguTE5SAK-GA", HashUtil.getHash(INPUT, SignatureAlgorithm.ES256));
+        assertEquals("hhNHO19gwnEguTE5SAK-GA", HashUtil.getHash(INPUT, SignatureAlgorithm.HS256));
+        assertEquals("hhNHO19gwnEguTE5SAK-GA", HashUtil.getHash(INPUT, SignatureAlgorithm.PS256));
+        assertEquals("hhNHO19gwnEguTE5SAK-GA", HashUtil.getHash(INPUT, SignatureAlgorithm.RS256));
+    }
+
+    @Test
+    public void s384Hash() {
+        assertEquals("W-f-EBbMtR-505d5wk4m78wd6qn1vQkZ", HashUtil.getHash(INPUT, SignatureAlgorithm.ES384));
+        assertEquals("W-f-EBbMtR-505d5wk4m78wd6qn1vQkZ", HashUtil.getHash(INPUT, SignatureAlgorithm.HS384));
+        assertEquals("W-f-EBbMtR-505d5wk4m78wd6qn1vQkZ", HashUtil.getHash(INPUT, SignatureAlgorithm.PS384));
+        assertEquals("W-f-EBbMtR-505d5wk4m78wd6qn1vQkZ", HashUtil.getHash(INPUT, SignatureAlgorithm.RS384));
+    }
+
+    @Test
+    public void s512Hash() {
+        assertEquals("CCmNwrkP_FbnPPpQ5f96xpXTDuzHSeGd3jGZ_JrPJo4", HashUtil.getHash(INPUT, SignatureAlgorithm.ES512));
+        assertEquals("CCmNwrkP_FbnPPpQ5f96xpXTDuzHSeGd3jGZ_JrPJo4", HashUtil.getHash(INPUT, SignatureAlgorithm.HS512));
+        assertEquals("CCmNwrkP_FbnPPpQ5f96xpXTDuzHSeGd3jGZ_JrPJo4", HashUtil.getHash(INPUT, SignatureAlgorithm.PS512));
+        assertEquals("CCmNwrkP_FbnPPpQ5f96xpXTDuzHSeGd3jGZ_JrPJo4", HashUtil.getHash(INPUT, SignatureAlgorithm.RS512));
+    }
+}
diff --git a/oxAuth/Model/src/test/java/org/gluu/oxauth/model/util/JwtUtilTest.java b/oxAuth/Model/src/test/java/org/gluu/oxauth/model/util/JwtUtilTest.java
new file mode 100644
index 00000000..6c21a9d6
--- /dev/null
+++ b/oxAuth/Model/src/test/java/org/gluu/oxauth/model/util/JwtUtilTest.java
@@ -0,0 +1,28 @@
+package org.gluu.oxauth.model.util;
+
+import org.gluu.oxauth.model.jwt.Jwt;
+import org.gluu.oxauth.model.jwt.JwtClaims;
+import org.json.JSONObject;
+import org.testng.annotations.Test;
+
+import static org.testng.Assert.assertEquals;
+
+/**
+ * @author Yuriy Zabrovarnyy
+ */
+public class JwtUtilTest {
+
+    @Test
+    public void transferIntoJwtClaimsTest() {
+        JSONObject json = new JSONObject();
+        json.put("active", true);
+        json.put("key", "valueTest");
+
+        Jwt jwt = new Jwt();
+        JwtUtil.transferIntoJwtClaims(json, jwt);
+
+        final JwtClaims claims = jwt.getClaims();
+        assertEquals("true", claims.getClaimAsString("active"));
+        assertEquals("valueTest", claims.getClaimAsString("key"));
+    }
+}
diff --git a/oxAuth/Model/src/test/java/org/gluu/oxauth/model/util/Tester.java b/oxAuth/Model/src/test/java/org/gluu/oxauth/model/util/Tester.java
new file mode 100644
index 00000000..77f91018
--- /dev/null
+++ b/oxAuth/Model/src/test/java/org/gluu/oxauth/model/util/Tester.java
@@ -0,0 +1,17 @@
+package org.gluu.oxauth.model.util;
+
+/**
+ * @author Yuriy Z
+ */
+public class Tester {
+    private Tester() {
+    }
+
+    public static void showTitle(String title) {
+        title = "TEST: " + title;
+
+        System.out.println("#######################################################");
+        System.out.println(title);
+        System.out.println("#######################################################");
+    }
+}
diff --git a/oxAuth/Model/src/test/java/org/gluu/oxauth/model/util/URLPatternListTest.java b/oxAuth/Model/src/test/java/org/gluu/oxauth/model/util/URLPatternListTest.java
new file mode 100644
index 00000000..f93bc40b
--- /dev/null
+++ b/oxAuth/Model/src/test/java/org/gluu/oxauth/model/util/URLPatternListTest.java
@@ -0,0 +1,54 @@
+package org.gluu.oxauth.model.util;
+
+import org.testng.annotations.Test;
+
+import java.util.Collections;
+import java.util.List;
+
+import static org.gluu.oxauth.model.util.Tester.showTitle;
+import static org.testng.Assert.assertTrue;
+import static org.testng.AssertJUnit.assertFalse;
+
+/**
+ * @author Yuriy Z
+ */
+public class URLPatternListTest {
+
+    @Test
+    public void isUrlListed_forUrlWithWildcard_shouldMatch() {
+        showTitle("isUrlListed_forUrlWithWildcard_shouldMatch");
+
+        List<String> urlPatterns = Collections.singletonList("*.gluu.org");
+
+        URLPatternList urlPatternList = new URLPatternList(urlPatterns, true);
+        assertTrue(urlPatternList.isUrlListed("https://*.gluu.org"));
+        assertTrue(urlPatternList.isUrlListed("https://abc.gluu.org"));
+    }
+
+    @Test
+    public void isUrlListed_forUrlWithoutWildcardSupport_shouldFail() {
+        showTitle("isUrlListed_forUrlWithoutWildcardSupport_shouldFail");
+
+        List<String> urlPatterns = Collections.singletonList("*.gluu.org");
+
+        URLPatternList urlPatternList = new URLPatternList(urlPatterns, false);
+        assertFalse(urlPatternList.isUrlListed("https://*.gluu.org"));
+        assertTrue(urlPatternList.isUrlListed("https://abc.gluu.org"));
+    }
+
+
+    @Test
+    public void isUrlListed_forAllowAll_shouldMatch() {
+        showTitle("isUrlListed_forAllowAll_shouldMatch");
+
+        List<String> urlPatterns = Collections.singletonList("*");
+
+        URLPatternList urlPatternList = new URLPatternList(urlPatterns, true);
+        assertTrue(urlPatternList.isUrlListed("https://*.gluu.org"));
+        assertTrue(urlPatternList.isUrlListed("https://abc.gluu.org"));
+
+        urlPatternList = new URLPatternList(urlPatterns, false);
+        assertTrue(urlPatternList.isUrlListed("https://*.gluu.org"));
+        assertTrue(urlPatternList.isUrlListed("https://abc.gluu.org"));
+    }
+}
diff --git a/oxAuth/Model/src/test/resources/json-logic-node.json b/oxAuth/Model/src/test/resources/json-logic-node.json
new file mode 100644
index 00000000..891e96f1
--- /dev/null
+++ b/oxAuth/Model/src/test/resources/json-logic-node.json
@@ -0,0 +1,18 @@
+{
+  "rule": {
+    "and": [
+      {
+        "or": [
+          {"var": 0},
+          {"var": 1}
+        ]
+      },
+      {"var": 2}
+    ]
+  },
+  "data": [
+    "http://photoz.example.com/dev/actions/all",
+    "http://photoz.example.com/dev/actions/add",
+    "http://photoz.example.com/dev/actions/internalClient"
+  ]
+}
\ No newline at end of file
diff --git a/oxAuth/Model/src/test/resources/testng-benchmark.xml b/oxAuth/Model/src/test/resources/testng-benchmark.xml
new file mode 100644
index 00000000..b27d76a1
--- /dev/null
+++ b/oxAuth/Model/src/test/resources/testng-benchmark.xml
@@ -0,0 +1,4 @@
+<!DOCTYPE suite SYSTEM "http://testng.org/testng-1.0.dtd" >
+
+<suite name="oxAuthModelBenchamrk" parallel="false">
+</suite>
\ No newline at end of file
diff --git a/oxAuth/Model/src/test/resources/testng-multi-authz.xml b/oxAuth/Model/src/test/resources/testng-multi-authz.xml
new file mode 100644
index 00000000..cfe493b5
--- /dev/null
+++ b/oxAuth/Model/src/test/resources/testng-multi-authz.xml
@@ -0,0 +1,4 @@
+<!DOCTYPE suite SYSTEM "http://testng.org/testng-1.0.dtd" >
+
+<suite name="oxAuthModelMultiAuthz" parallel="false">
+</suite>
\ No newline at end of file
diff --git a/oxAuth/Model/src/test/resources/testng.xml b/oxAuth/Model/src/test/resources/testng.xml
new file mode 100644
index 00000000..50b951f7
--- /dev/null
+++ b/oxAuth/Model/src/test/resources/testng.xml
@@ -0,0 +1,26 @@
+<!DOCTYPE suite SYSTEM "http://testng.org/testng-1.0.dtd" >
+
+<suite name="oxAuthModel" parallel="false">
+    <test name="Code Verifier (PKCE)" enabled="true">
+        <classes>
+            <class name="org.gluu.oxauth.model.authorize.CodeVerifierTest"/>
+        </classes>
+    </test>
+
+    <test name="JS Engine test" enabled="true">
+        <classes>
+            <class name="org.gluu.oxauth.model.uma.JsonLogicTest" />
+        </classes>
+    </test>
+    <test name="JsonLogic Node Parser Test" enabled="true">
+        <classes>
+            <class name="org.gluu.oxauth.model.uma.JsonLogicNodeParserTest" />
+        </classes>
+    </test>
+    <test name="CertUtils Test" enabled="true">
+        <classes>
+            <class name="org.gluu.oxauth.model.util.CertUtilsTest"/>
+        </classes>
+    </test>
+
+</suite>
\ No newline at end of file
diff --git a/oxAuth/README b/oxAuth/README
new file mode 100644
index 00000000..7a8df2c3
--- /dev/null
+++ b/oxAuth/README
@@ -0,0 +1,221 @@
+BUILD
+
+1. Install maven version 3.0.3 or later (see how to install maven here:
+   http://maven.apache.org/download.html#Installation)
+   Use JDK version 6 (not 5)
+
+2. Download the source code from the subversion repository located at:
+   https://svn.gluu.info/repository/openxdi/oxAuth
+
+3. Install gluu-core.jar using the command:
+   mvn install:install-file -Dfile=gluu-core.jar -DgroupId=org.gluu -DartifactId=gluu-core -Dversion=1.0 -Dpackaging=jar
+
+4. Configure the file Server/src/test/resources/conf/oxauth-ldap.properties
+
+5. Go to Client directory of oxAuth Project and run command: mvn clean install
+
+6. Go to Server directory of oxAuth Project and run command: mvn clean install
+
+
+
+DEPLOYMENT
+
+1. Use Tomcat 6.x or later
+
+2. Use JDK version 6 (not 5)
+
+3. Copy and edit the files located at Server/conf to TOMCAT_HOME/conf
+
+4. Copy the file Server/target/oxauth.war to TOMCAT_HOME/webapps
+
+
+To test the deployment:
+
+1. Edit the file Client/test/resources/testng.xml, change all the test attributes to enabled=“true� and point the URLs
+   to your deployment.
+
+2. Go to Client directory of oxAuth Project and run command: mvn test
+
+
+Testing with SSL and self signed certificate:
+
+1. openssl s_client -connect localhost:8443
+
+2. Cut and paste the certificate (including BEGIN and END lines) into a local file localhost.pem
+
+3. sudo keytool -import -alias localhost -keystore $JAVA_HOME/jre/lib/security/cacerts -file localhost.pem
+
+4. The default keystore password is: changeit
+
+
+JAVADOC
+
+1. Generate the documentation using the command: mvn javadoc:jar
+
+
+
+INTEGRATE oxAuth WITH YOUR SYSTEM
+
+1. Register your Web Application as a client in the file TOMCAT_HOME/conf/oxauth-registration.xml
+
+2. From step 1, make available in your Web Application the following oxAuth registration values:
+
+client-identifier
+client-secret
+redirection-uri
+
+3. In your web app add a link to the following URL (extra line breaks are for display purposes only):
+
+http://localhost:8080/oxauth/authorize?
+response_type=code
+&client_id=<your-client-identifier>
+&redirect_uri=<your-redirection-uri>
+&state=<state>
+
+Where:
+- response_type is mandatory and must be set to "code".
+- client_id is mandatory and must be set to the value from step 2.
+- redirect_uri is mandatory and must be set to the value from step 2.
+  It must be URL encoded, for example: https%3A%2F%2Fclient.example.com%2Fcb%3ffoo%3dbar
+  To encode it you can use: java.net.URLEncoder.encode(redirectUri, "UTF-8")
+- state is optional but recommended to prevent cross-site request forgery.
+  It is an opaque value used by the client to maintain state between the request and callback.
+  So, you generate a value, send it to oxAuth and the state value returned from oxAuth must be the same you sent.
+
+CODE:
+AuthorizationRequest authorizationRequest = new AuthorizationRequest(ResponseType.CODE, clientId);
+authorizationRequest.setRedirectUri(redirecturi);
+authorizationRequest.setState(state);
+String queryString = "http://localhost:8080/oxauth/authorize?" + authorizationRequest.getQueryString();
+// Put the queryString in a link or redirect to it.
+
+4. In this step oxAuth will ask the user to login if it is not already logged in, and request its permission.
+
+5. If the user grants permission, oxAuth will redirect to your redirect_uri and send an authorization code as parameter.
+   For example (extra line breaks are for display purposes only):
+
+<your-redirection-uri>?
+code=<authorization-code>
+&state=<state>
+
+If user denies the permission you will receive a response like:
+
+<your-redirection-uri>?
+error=access_denied
+&error_description=<description-about-the-error>
+&state=<state>
+
+6. Use the authorization code you receive in step 5 to request an access token:
+
+CODE:
+String credentials = clientIdentifier + ":" + clientSecret;
+String tokenUrl = "http://localhost:8080/oxauth/restv1/token";
+TokenClient tokenClient = new TokenClient(tokenUrl);
+TokenResponse response = tokenClient.execAuthorizationCode(authorizationCode, redirectUri, credentials);
+String accessToken = response.getAccessToken();
+
+Where:
+- authorizationCode Received in step 5
+- redirectUri Your redirect URI
+- credentials From step 2 concatenated with a colon in the middle:
+  credentials = clientIdentifier + ":" + clientSecret;
+
+7. To extract the information encoded in the accessToken (JWT):
+
+CODE:
+JwtToken jwtToken = new JwtToken(accessToken);
+
+jwtToken.getType();
+jwtToken.getAlgorithm();
+jwtToken.getJsonWebKeyUrl();
+jwtToken.getKeyId();
+jwtToken.getExpirationTime();
+jwtToken.getIssuedAt();
+jwtToken.getIssuer();
+jwtToken.getUserId();
+jwtToken.getAudience();
+jwtToken.getOxInum();
+jwtToken.getOxOpenIdConnectVersion();
+
+jwtToken.validateSignature(credentials));
+
+8. To validate your accessToken:
+
+CODE:
+validateUrl = "localhost:8080/oxauth/restv1/validate";
+ValidateTokenClient validateTokenClient = new ValidateTokenClient(validateTokenUrl);
+ValidateTokenResponse response = validateTokenClient.execValidateToken(accessToken);
+
+response.isValid();
+response.getExpiresIn(); // Value in seconds
+
+
+
+LOCALHOST TEST URL
+
+http://localhost:8080/oxauth/authorize?response_type=code&redirect_uri=https%3A%2F%2Fclient.example.com%2Fcb%3ffoo%3dbar&state=xyz&client_id=@!1111!0008!FF81!2D39
+http://localhost:8080/oxauth/authorize.seam?response_type=code&client_id=06fe985f-4111-41cf-a16d-434ff48f92a2.localhost&redirect_uri=http%3A%2F%2Flocalhost%2FoxServer&state=xyz
+
+
+
+REGISTRATION
+
+$ cat clients.ldif
+dn: ou=clients,o=gluu
+objectClass: organizationalUnit
+objectClass: top
+ou: clients
+
+$ ldapmodify --defaultAdd --port 1389 --bindDN 'cn=directory manager' --bindPassword secret --filename clients.ldif
+
+
+
+
+$ cat addClient.ldif
+dn: inum=@!1111!0000!6216!CCE6,ou=clients,o=gluu
+displayName: oxAuth test app
+inum: @!1111!0000!6216!CCE6
+objectClass: oxAuthClient
+objectClass: top
+oxAuthAppType: web
+oxAuthClientExpirationDate: 20120120152419.312Z
+oxAuthRedirectURI: https://client.example.com/cb
+oxAuthRedirectURI: https://client.example.com/cb1
+oxAuthRedirectURI: https://client.example.com/cb2
+oxAuthScope: openid
+oxAuthScope: profile
+oxAuthScope: address
+oxAuthScope: email
+oxAuthClientSecret: 607ae292-c8fe-486e-87d8-c28f84f8c0bd
+
+$ ldapmodify --defaultAdd --port 1389 --bindDN 'cn=directory manager' --bindPassword secret --filename addClient.ldif
+
+
+
+oxTrust
+client_id: @!1111!0008!C2EB!75F1
+
+oxPlus
+client_id: @!1111!0008!2A19!9A70
+
+oxServer
+client_id: @!1111!0008!7119!0560
+
+Gluu IDP
+client_id: @!1111!0008!45C0!BE6E
+
+Test
+client_id: @!1111!0008!FF81!2D39
+
+oxModel
+client_id: @!1111!0008!92C1!D277
+
+oxGraph
+client_id: @!1111!0008!0336!1008
+
+oxTestTool
+client_id: @!1111!0008!A64C!475C
+
+client_id: @!1111!0008!31FD!E7E7
+
+client_id: @!1111!0008!2D7F!97C2
diff --git a/oxAuth/README.md b/oxAuth/README.md
new file mode 100644
index 00000000..18912eb5
--- /dev/null
+++ b/oxAuth/README.md
@@ -0,0 +1,9 @@
+## oxAuth
+
+oxAuth is an open source OpenID Connect Provider (OP) and UMA Authorization Server (AS). The project also includes OpenID Connect Client code which can be used by websites to validate tokens. 
+
+oxAuth currently implements all required aspects of the OpenID Connect stack, including an OAuth 2.0 authorization server, Simple Web Discovery, Dynamic Client Registration, JSON Web Tokens, JSON Web Keys, and User Info Endpoint.
+
+**oxAuth is tightly coupled with [oxTrust](https://github.com/GluuFederation/oxTrust)**. 
+
+oxAuth configuration is stored in LDAP, and oxTrust is needed to generate the proper configuration. For deployment instructions, use the [Gluu Server documentation](https://gluu.org/docs/ce)
diff --git a/oxAuth/Server/.gitignore b/oxAuth/Server/.gitignore
new file mode 100644
index 00000000..bb4c543a
--- /dev/null
+++ b/oxAuth/Server/.gitignore
@@ -0,0 +1,4 @@
+/target/
+/test-output/
+/WebContent/
+/weld-validation-report.html
diff --git a/oxAuth/Server/.metadata/src/main/webapp/WEB-INF/.gitignore b/oxAuth/Server/.metadata/src/main/webapp/WEB-INF/.gitignore
new file mode 100644
index 00000000..4f9590ee
--- /dev/null
+++ b/oxAuth/Server/.metadata/src/main/webapp/WEB-INF/.gitignore
@@ -0,0 +1 @@
+/faces-config.pageflow
diff --git a/oxAuth/Server/conf/gluu-couchbase.properties b/oxAuth/Server/conf/gluu-couchbase.properties
new file mode 100644
index 00000000..80c9f49b
--- /dev/null
+++ b/oxAuth/Server/conf/gluu-couchbase.properties
@@ -0,0 +1,27 @@
+servers: ${config.couchbase.couchbase_servers}
+
+# Default scan consistency. Possible values are: not_bounded, request_plus, statement_plus
+connection.scan-consistency: not_bounded
+
+# Enable/disable DNS SRV lookup for the bootstrap nodes
+# Default dnsSrvEnabled is true
+connection.dns.use-lookup: false
+
+auth.userName: ${config.couchbase.couchbase_server_user}
+auth.userPassword: ${config.couchbase.encoded_couchbase_server_pw}
+
+buckets: ${config.couchbase.couchbase_buckets}
+
+bucket.default: ${config.couchbase.default_bucket}
+bucket.gluu_user.mapping: ${config.bucket.gluu_user.mapping}
+bucket.gluu_cache.mapping: ${config.bucket.gluu_cache.mapping}
+bucket.gluu_site.mapping: ${config.bucket.gluu_site.mapping}
+bucket.gluu_token.mapping: ${config.bucket.gluu_token.mapping}
+bucket.gluu_session.mapping: ${config.bucket.gluu_session.mapping}
+
+password.encryption.method: ${config.couchbase.encryption_method}
+
+ssl.trustStore.enable: ${config.couchbase.ssl_enabled}
+ssl.trustStore.file: ${config.couchbase.couchbaseTrustStoreFn}
+ssl.trustStore.pin: ${config.couchbase.encoded_couchbaseTrustStorePass}
+ssl.trustStore.type: pkcs12
diff --git a/oxAuth/Server/conf/gluu-ldap.properties b/oxAuth/Server/conf/gluu-ldap.properties
new file mode 100644
index 00000000..e9be44cb
--- /dev/null
+++ b/oxAuth/Server/conf/gluu-ldap.properties
@@ -0,0 +1,5 @@
+bindDN=${config.ldap.bindDN}
+bindPassword=${config.ldap.bindPassword}
+servers=${config.ldap.servers}
+maxconnections=${config.ldap.maxConnections}
+useSSL=${config.ldap.useSSL}
diff --git a/oxAuth/Server/conf/gluu-spanner.properties b/oxAuth/Server/conf/gluu-spanner.properties
new file mode 100644
index 00000000..199cbe8e
--- /dev/null
+++ b/oxAuth/Server/conf/gluu-spanner.properties
@@ -0,0 +1,25 @@
+connection.project=${config.spanner.connection.project}
+connection.instance=${config.spanner.connection.instance}
+connection.database=${config.spanner.connection.database}
+
+# Prefix connection.client-property.key=value will be coverterd to key=value
+# This is reserved for future usage
+#connection.client-property=clientPropertyValue
+
+# spanner creds or emulator
+connection.emulator-host=${config.spanner.connection.emulator-host}
+
+# Password hash method
+password.encryption.method=${config.spanner.password.encryption.method}
+
+# Max time needed to create connection pool in milliseconds
+connection.pool.create-max-wait-time-millis=${config.spanner.connection.pool.create-max-wait-time-millis}
+
+# Maximum allowed statement result set size
+statement.limit.default-maximum-result-size=${config.spanner.statement.limit.default-maximum-result-size}
+
+# Maximum allowed delete statement result set size
+statement.limit.maximum-result-delete-size=${config.spanner.statement.limit.maximum-result-delete-size}
+
+binaryAttributes=${config.spanner.binaryAttributes}
+certificateAttributes=${config.spanner.certificateAttributes}
diff --git a/oxAuth/Server/conf/gluu-sql.properties b/oxAuth/Server/conf/gluu-sql.properties
new file mode 100644
index 00000000..6fe38fde
--- /dev/null
+++ b/oxAuth/Server/conf/gluu-sql.properties
@@ -0,0 +1,25 @@
+db.schema.name=${config.sql.db.schema.name}
+
+connection.uri=${config.sql.connection.uri}
+
+connection.driver-property.serverTimezone=${config.sql.connection.driver-property.serverTimezone}
+
+auth.userName=${config.sql.auth.userName}
+auth.userPassword=${config.sql.auth.userPassword}
+
+# Password hash method
+password.encryption.method=${config.sql.password.encryption.method}
+
+# Connection pool size
+connection.pool.max-total=${config.sql.connection.pool.max-total}
+connection.pool.max-idle=${config.sql.connection.pool.max-idle}
+connection.pool.min-idle=${config.sql.connection.pool.min-idle}
+
+# Max time needed to create connection pool in milliseconds
+connection.pool.create-max-wait-time-millis=${config.sql.connection.pool.create-max-wait-time-millis}
+
+# Max wait 20 seconds
+connection.pool.max-wait-time-millis=${config.sql.connection.pool.max-wait-time-millis}
+
+# Allow to evict connection in pool after 30 minutes
+connection.pool.min-evictable-idle-time-millis=${config.sql.connection.pool.min-evictable-idle-time-millis}
diff --git a/oxAuth/Server/conf/gluu.properties b/oxAuth/Server/conf/gluu.properties
new file mode 100644
index 00000000..ce54d449
--- /dev/null
+++ b/oxAuth/Server/conf/gluu.properties
@@ -0,0 +1,8 @@
+persistence.type: ${config.persistence.type}
+
+oxauth_ConfigurationEntryDN=${config.generic.configurationEntryDN}
+
+certsDir=${config.generic.certsDir}
+
+binaryAttributes=objectGUID
+certificateAttributes=userCertificate
diff --git a/oxAuth/Server/conf/keystore.jks b/oxAuth/Server/conf/keystore.jks
new file mode 100644
index 0000000000000000000000000000000000000000..2ca9d51cad25f8b0d39c33352d85e2a66329a6da
GIT binary patch
literal 22029
zcmcG$byQqkw(gC)6Wm=w0foCuaCb>?cX#)o!QI{6o#5`l-Ccuzyl?lpxBKgHdUW@>
z=Z`gN7rTmrntRUmo6maIemi?R0|5a6`xr<c0~Cauozu`rkD1dDpvTP04q!1d00Q*b
zIP?MR%=$*m%tprS#>RRdFErg~e;x(_fdpgphj?Q|f`a=D1quO53x)~`3JC(?4{<C2
z=@Er^loYey^|is|p)FY4Bx1-;HrV*nNbsQ7(49=Ipqzl|z}M82R&&7Q*VO4NswO8W
zG5sWvLGQb=l(;sDy<PUCuvO6VJkmEg4F?TK-YGj-OQ4G)FdainC%H0ora;Rfuy=$V
z9Yei!B4~cCjRIwK=GbXneg__mC47y+zTgY3$FY+aQ{dd8r*qys2NWdn5L|OC%h@Ij
zqgx#=?S?4zWtH2j`-|Wf)h%rjo<Iu`c(25cI2mo1{74t8K6197RtT1Fh+-{t_dvkO
zdO%>i&E%nXe~^h%1~1|MgRMw#fa0{xiy;HC{k{T14qeWbH0j9RW&hPX7roUSSzZ;Z
z5v4THe}W=XP|x7d5_i`uviLkP?>JI`IoMqXQ)cQIA#r>>ufMu0$4eeU_p)0P(#(2v
z%0_B$sdxw(JXe;i@E1ZX3JYJjWOwIW%h>>zcxmS#R;kWHh`%tdjfCvpym6daH;rtn
zO+PnKwiw4?W26N5K5~}uo=_HY5tHg8&Usy3!HgT_WF^Q(?vg=~X_YK3naX2vhg2ea
zjaAWylR3N&Be#8YVfnRr&M(!>og~q=egq=EVAGIFD65<F-o|;&=Tu$3CRT9mD!p_1
zY-l5}I$)zGdKb*>(pA9BChpRG@7~=izTI?OT5^RKlZTqlyx#AYUejmPn=H`|Jh&fK
ziaILg6YksfkrxeC^j%g?8+kjRH-@V~CsH>@N$YUt*K#$woThT}FArq6pHrk`kbUF@
zoWvct9<K;vdT4rRC*{$w0wI$O+q%`*Oyj4BoHjXkeTmX?Sa$p*dx<!PEq6A{o&l#e
z^JC7G=ilo)z)hT0fdfv^=o8QLGy-LL(`SR4yyUD?XKGTWss$m5ObyLolQ+tFCJe-K
zQoU*nF+^N!#t|<}`PLW^N!M=RYGaQNd^?FS^}aa~1aKrnUPG`Gbm^G66$1I<4q$n5
zK)m(j>L8^8DxmdQ=bB=Jfsf@jyrV3*F{IK?HiYDbnN|59J5N$#xl?#Qry`X(g{Et{
zWB5=ixUA+)9qYCegz7N=33nb1KD^J5@Dm*&OB_S*<Sx*lK~?fIQzHBl7mB3@l2OUB
zvsNfz#OIsj;+v_Lm1@2r{z4V($5*Dd`Nduvn}K-nOHAmmG%(%cQf7v3iRc*UOJA!f
za@@>3K@H-YTi{}?d!N4+tSsnsWE*eo31f1lrrc4>zm?@u-Lh|+=ZpXwI8sfJm_?){
zP(y=!&K{K*2D-mp;?H<s+YHiH`l^Rca}hbVO4zc9_B%QCRgTY#wvrZqpXJ+mEro-c
z)fhWZurz0Dk-5z#4h6eb&N|{%oKAK^Lh`*-yJqL(A!t^Pc&^28<WHeQo!Bg|ecUKm
z?0OPUw6t3j)4b|;Yp-{KaO?QxxTFAPn2C5m0*r`erF#wRTR!%Yj1Z!*)6%2H+Apas
zY?O%k4pK`k=t-dNku)VptlG7+u_e4nuvOHtFma3%jTkz9(8<k&O?Vrs`Qs@_s7y6%
zRD@svK1;+ma5<2W(9_@bp|eAKoQrIlh&%wMu;MWTo^QKk0(7_l;F=^+!5GZXErD!I
z`FJu*t>QOGaE%SZ`kr(A%K<e&*8VNzGy;7QstxcHrQF5<0CQlUwd=^rMH<qCrq>Zm
zlI1543z`q{z2MKf38_xc%E$=<0&c_T4{pKe4@Q&?4h9MaM(mYFR|6i)L79l+L7IcB
zMf#c1vDlf)jn7_&+Md+smp7vz6fAA<m*59PP*6BVmTY83L@3yA!Cyd)z#+iEAVG5Q
z8FBybD`5VAXLCP3gprX1NW@401+D@Cj(}<7D(K{BN-Qi$ENo=&Xl86?pyz1hz(|ON
z2;^jB0x~f&GqEx;YGNTWG5(*Y9Gd^iukZ&Y{o~XB>yQ1Y^WgrV$RLdVpm1RRpr9c4
zez6B%r6oZG#ym4m*<0y|2BH}UGWTNG4y^~gtK_sDxIZJmF<72>Zo6(}m)v?z>Q^U6
zDuFAOCJr=0t>u@U{<d@f{PS8@8Oc{aaaT3Q1yNi0X75Yxu6yXUzaO;c21DL`Idi$P
zfQ@K}@Or*T1o5*L&##TRkg0qS*RZ1>(?oaAZNuv$8>@x%9myJ|#QwNd19#e!0%s-Q
zew2@blRM|AJk*ea+KDrVeA6qRw-)YUCJgwq;TX~tLljI#fcm8#F8X!Bs#|J@;L>$Z
zWr5CV>Vkn3aj#9!i>1%lOlo4Z*jNV@kqJd76RPjZm0t6m3Z3EaHwpvg8g=~|VBnx2
zpm|h`6pUmau^^y;_#<*KAM+w4Bs4ha|2YDKg7`QI^8X<2A74Kx2xr0=B2GqxJ;axR
zlQYV79@`KudJK2}9UNj4W-l@upE_twoxsSCI@Nl<nN5G3G2QE-fQ~Shxga+N#bu1X
zPtP%;v;X@2ob$A=W=<EZ;XZGhQ7ePg>RQ^wMu*NfVVVJuUYE!uiDfLexWBu#>vY*z
z@`;m}m&QVPQhex<N5F<g#!-Sl<CEmfell_YWV)WqE$b(N_sa!UZCGYP!8@{FocRwR
zv<j&8BZ%THCY`#!r1~idB^)V&8EU=R-DQE3nT=RK=4ypQGAZAxP{DJs1-=2MDQAz&
z{7$i2V?dFv5go$oqP0RGlWv@wh4PHfRFUmeEj+&Olw0$I#{Pv`j5s-rne^BV0F1`Q
zOaK;UATxlInNttIsLy810yN|_Fg9fS3$^^F`*_D3qu=yDK#O0e2hpkLm4|i3?~$bj
zH6|b0pP)w7wdYAAgxbPo5ddDwU%$<DQBf97AHOZUFec1w(XJevjqIkh)5dN&>i_U_
zV##JLsts#loo_(oek5NRxbq5>W#$IuqfE{6fJtyKz6i|TnV9NrmSw+1IJGC)TCfZX
z7U;&BR|9-HT(v6R3A(7Uj_|hTMtXgL1*XA01ycG<T`4QLvX~&v?mG%Jpl4NQ@g}2>
zAC|*-(^bIQ)wM77N1aLA`A&ZpS&I3)It1$Rk(VwXgW#`qi2ev3<^^6-c>*{boSBDM
zEh=Ovku_&NayW$;9SUu1%LoSr^O4#Uyb$1E|4KFZe^5{~7}24i|NKm_kM#KS02~w=
zTnGeWgDo6KDSVNLZ3M9|z_o2E)HW$ea0$trjS;)ufQw}~bCnLZ`wJc^?QBeU0}O|^
zM!&DkwxG@<h@J>?#d4_Ezn+DE^IwC10bvvcBSs3u3!?a(h*}L;^vZ^egOx!okR|0<
z#!pB_6H8=D9Rni)DIkd+rCXh>YYS;!g1<S2m>Y(BnBN%cml}zdjVeI+OC-pRjrCde
z_1TO7j0PNRA0%zW3g9r-2Lgc1Y-}GtHqZldd`uXBko0}<2T6l|ko4<6T$KJ0M~^OZ
zMyT-X*f2(nJ71$3hi@<3@*<l?)&*1+gksUc9M<`3u@jhAqf6ug_?H)oCCN0DV?{q!
z!oZ<rH&u5ce94e^aK|UngNtAMbGZ{db5R5l`=8*d(c9^hhiHs<ADAtN(bBtzEq(cp
z(QQQTuq7dw#uJA{=+Sgo0_oi-vKM?7rWn{zA#hXV((o}O!+!%g5PeU-x(u#d>)j(y
z$Bw_=#BL`3{LEvtuuDkU=s3OllP`JqsK%6&A<mYx=U``S?bc66KX!hYi(Vx4xF#3B
zAWV8@%sjqxA(v2q<bD*6RCd(rTct!Fl-H@GigFX8ZnCI?Z(HeU!K#gKASz!a*p<bd
zOzAA<a^@>_rTj5Q>zvk8`fP1|9<hE7C8bSTn@>WcsF=l&oG6ziuR>WXrdZ>r@*S*_
zrP<Pnz+gk~C2rU}u%A_MXHcjU=fhKL;ysk&%Xui$)d8f^eSnTbh6xwoCuy2rce<L4
z#nPsUKcV#70*3iVWx-;!MvJ@bxhBAc7#Q_sx1+da&z!xsY|vNXlU>|yd(|zKG!1DC
z!>thWt(h|GGY}!~BhE%0@&|=vm`wXdgRzi{OXOkjA%ifGg2Ow~I7cJ<gMU|N2WY;Z
zfZZ}A!c&OaPWE9uq|~7km2NY=J#u@e(%rEes`q9D=PEClBn=XveySbefaPC1e;dB&
zvQwo>j+5VNMeu@|{i-l@rq-3WgKCe)qf{A8UI*NZLlrP!b>d7wN5LksQu5$v9G>FJ
zy(;bI3PI<9^)iNTXv3}e?K~?e;E`cT*a0&R8UI5hV~?^8rS5D|34{IpWFcM4X^o&0
z6qur7u+tcKAo=U3zA?c)9i1Aaq0$rsfy1-?!-3dUQ7xp=n(P2spYKKI<f0SaMQ8z?
zSfb>X=tcX)uXj~U7Jr6p0-T-DUvVs>QjGl|@G0`xlMrLSlXQd)zrk^?cqh0)nphl+
zRi7Xy#HLTMMsq7h9Q1`S9;C?6V=N>UdACR09@C~k!p!CS^ntTmtK*ZXlfBU9EK3Mk
z#luB`bFb~$@X#|9nqGw5l@@wSsu5PM54WDD<{+~P(@hd_*Aq~Fo>*Mw-}d~HO#R^B
z<(7c^<`y@PawdRVFexO}>)X1_PKMh}MQixYXxj`2qcnI9L{sW*^_SS)&<}n43G5Lu
zW^L??DkG9IKnNU7EbbJ%Q0?*vHNNv*8oCisA2O4o4EqNWDE?#UAo=NAgsq%;5Ka)d
zbm1>0##JUpis8pxkE0iJoGgzwIzu)<Jk8w34SLHc-}WFvL?RZ%XKbQPtqC=)$tEnR
z(c>}pWIVsrDONnMjPJ=_wp6Hcm_kcy?Z@KdEsyf8Se%VV`t#)z=n{IQNJ<d!+tZ3{
zfhv49H98y^mtT*`Gw;lWh{LE)X41?2J!pOxV+Fz%E~vJAvhDorHPZ*dVj@M&5>IV~
z<**SVIHaBjo_g(il!e8BxbCz?tBM9+TPHhZ7(~!RJ$;(om};nzQuY?<s;Y|J)Ttsu
z`B*EPt3|ilCNF6w;9%gWPLw)^Seym*v&}~M$`LfV>PTU0kxgrsj}({@5{uELSbU4Y
zh12}_7J_w?H8JX_1<z?QN;a*C76aXDMPY!<#fl-(W_v`N(>YcLa5sABzR)_T!B|Ji
z=n;uc0U^<~{rq<m7&y!aNJD%~V5fhXz(_!nFgU3^JH%F2-l&nW`{bWgjBXtcZ|ALo
z*X#qrA=kP77ETc$LH_MY49NMvLB(00kj{9vysm{c&uMexg`Ji;b6>d0Df<S65$RSz
zoW91IAeW=u8{4`OKNmFUmAK+%a7LwenY~<6qQ2Y**XS{bI&gvq#Y-`On^2W2+2UOW
z?nAvcE+<s$bU;ceJdlLLuH;|~F_^GY4NGM5polct%~OHX{y+=H8rN+lbgQsB4-ia{
z4XUI$BY={GB2METu&&-TH0Bg2$^qX`+}jM~vi9k?4dc$oRD!+Czu1EhMy7PW>YTM{
z)==q(2z@^KQch7Se(^w&za8b(I<RO_OqcDX<;f&1bKP~7*4+>fUh!2jRAWYv@TIX5
z;+rCJ{|rgVu?6PLU2-u9-lN^WNyUHDV0^^zPr~K!5y74FWZv&HOi@mm>a?jXy@Sd@
z-``BB+OhimV?&{r*c=*iZ%Htk=O-Uh=kfD`)Yx~J7lITx+g0|}3uEcR4V3%Q*-10u
zIFT&z27>N5@u-Z_v^*af2K4r8J%mNknx|tBtB!0sk9wO!oTB1|n!vRMLrW>Dvazk1
z)q?bhLuwHpOvY{?8VGw2>k1c!u^!5ckB$=Keg`v^668n%OxC1|`qZ#>-FWWF2vytM
z!qfBcw(g#`ZvJ&B=t9tn)=Rk@?eGAK`f8&briAPFrG->QGvb>)s{<8n4p$r6w(49p
zt*5o`RVnR6YTc?;JayN3_xI3J_moz9)O|UBrUkvB5tE*=KBEx;$Y#L$LAWf201hT&
z1Ax8(lL0fM5s;OMljEy{naNip2WAeI53cY5bLu4gcm!ee`$w$sJ0{9>*Qo|YYv9V)
zCQOM*M{rleAQq!VQS~wPAKvg^`c{Z!q)*g%k8WoCTZ7>cspEbo@O!9%uf?b1<7^Q*
zb)1>y)Ywg;tFPS7IC$D4sd->`_W_tKrqzB{*JUztYsKY5#Zqx545*Zr%fh1|bn~&f
ztOL%p-_02qKz)8;O!kVVz)Oax#)atF_KNM9l7ndzFH|u{U2@SMvR9;Dr4^IEJ-uIc
zndSxGCFa44_IxS4KOV|NR)8-@5v}~fZmH;%+8E8b@hFg8kOun7<L3#98qJ?=?ZBUv
zflJr{GXL?Nj*9Lewr^wp{=2dQ+VW9S8a@X1f0dPn`H}CZ!&A|Tw~wYS_d(^25^GV&
zfQ6on`{~L+W(m2!0b}rgv8FIFeYDnWKqeq7GwUBU<*!ef7+IM9rB2(K5#|4aG2~}I
z2oO?meGrI8Y2z6!5bKKCvl=<>0;8qu7^B4-zeuNrSsgfsDW`~@WTy<Z;+rF+9G@|p
zpwOO%@HwE!0*d6yl!e6^0)?F0LL2%CtBDU8EnbP|niRD0lyA2Q?Ux#ai&T@CO!dV7
zgqp#@O+grqz!-U{x#NnIW9PYI_k^hIbQ4{Zz{BiTIn<~&oRKeLjr9mHIK)q#*9|1u
zCK|AwUQED%Abo}t-%P3m^u7BPSE99F(v$9u^NO=Ne_BoeX%^HC9_HL2PiQcT@m(mb
zg-)r-@BWM<Ig>FX2auT^2w-OAWCpP48!`eo*bR+7j+ph?S(uFs*jbqV+Uc2pJaT=6
zn(ZH{8k9613k=*gB+qNIg?ZzgoTF74jkik53O_%7mVZv8qL?_y1C{7Yt_loO>!GX4
zz@@007zn$)E%hMQRQYpIzDD`2$FggaDt9Nxz#_7fdO$e^$3DNxN=5(DPx*>E_t#xH
zjlHBV%9Or8$#QC5Xi4c9=sfIofA5o_q~pdHXeuGD?p^6lPq*1^XIkr@c9trUG$6hg
z-+s+pa*7pc0kC(WKYOi0r9&fC3M$hI$q3^;=-Ms6WD`A#O^0+2@!f+)o8pU)gPN?M
z?J-_ls1E3aA@vSLnMQ^}9-+`GNL%$yZe00H*&k{!)rT?ytCZH4Rhv28@<y>wBiWQ&
z(+?ycs&~!fTp`iyB<41TEUqiX7`eKz`tUV<mnEvkETTuVk^e4lz&?b2(6^8A?XUeL
zJjkyRmn#2tD=}-Ms^3!6=lBy5KS1Zk=_m_(V|zMr{w8f8{>8NUp9)ldY5$NnWZ-_m
zAP}ICq&5w_CbQc-9+%QH4R9@;f<RB$Wci6j^jd8PhP)~FAkFAI;Tt}NFF3QZKWCwj
z&fRB%gff~U`tI&4`NW>6KwQ)&P7se;V=&v1DcHV5hMvy&v2TOG8Q5UZ4o>+67WT!z
z%@BGMfkv0ur0@68+0rBHp(I^C>3=_jv?KfU*6RMBBo_p@U&KfG4gnJa?Wq_LM68yL
zrOH_=DMg*a->5XK6n`m$(W;bo&?Ohi1=A5B;JclT0^!^RX>MCM{CeUUcie5%J)8Fn
zD1rB6SqLVmRgYV8+8C=OEI8O9iSU`mY}*T^UVIqe2JmIk&}!Riyh^amqir@#_mQx;
z&1YeJlC_$;+M9HFVbTTwrEQf|^p^zW<YfJjR9F}ROdRYVX{Tqz4$$WWasu?3jM&(W
zIgMHMS^v5~^b-Eh+S-nog3(lx5wIu4Hc`3KFF&H3<9};!5X8Q8b7{<WnJVIwDw{Wg
zW?haV7%+62_Qh=HszcP?cSV5?rk7Y)?<C<to3}Kj8_H%Z9yyTZk#Rd{Nb<`Wby7LV
z6tAbuAW7X=Il!ke+u+R|&`j-!3rVRxGA?-8O_6vu?HeOAmytBBsNN&=keag+ls9e=
zPR#Y94C-H}=DjR*XCoDa&hzH;=Gx#p0yg9%^=ws{wI;u=SDm0ZizKr;A8+L@DF(|K
zO5(Ip-Kk7Im7(h^&E<CmIQK7mITq+V9=e$6!!9I#chkR$Q>;xbRKVAYAyZ<Y4f6e3
z`f98G{>xiYwQ|Z)zC1k_&3P5^1YO@q(nZDHkIU4!Sr%T9g@Ij`ufAAP&5H3ff<D^^
zZ2K^h5B?pg6!h0f>I6KHashPkaGgSfDmGr6K;E%1Mou@8o)l+#oi1T%zllSVoX9iW
zaCp6@kQ`K<@vD9A@5D6@`m^})nxT>mWVl($?*)fc+YLzCybY|IYi#aR-M4rO8rl9`
ztGLL~&pC${lBU*7V$i55iJA!W)J&yAF(Vla>@J@&?deyH>#fms`(h<EJZ&`l%PEq2
zkzeZlHYpAQ8W~n*$^Z$^qwF<H>fWUFPAjoPIVHl;?kl`cjq0V3Lt9{?_95v#fh+gT
z%0Eo1>T%Inix9k(QTG<zNG9jE&_SOcH-%WT4x6ipl%Lp&z7<R76x%?p>N1&CvDX?h
zWW5?kuR<MEZ0M$Yl}WANg)p4}jIZ(SmnYcb>C;B4DG87E#u+nft`7h#5G~{w`~yQh
zu8GRjcVoH~{v!>O(jbti{N0wnqIFikIz(tCuDN5aPB~~~UWNG4v^e9d9><WB?{|c*
zGa3dCc$Qz7QnmFgj0oxM7!L6aSPNE2qzzi%n%QQ<fw>^;NUQV^EE%d+4|d=A!zTKe
ziu(Lg@Wb$df?v61%Mb)P=+lkRvS=9G?gvzjt?lI=w9Mnz%09(Szz+n<rE05kv>h7H
zh7Wzd-0-<E*=z&`x0+&n`Tmd+N8fX4viykizLy|Q!~wdVb;||ATEC7I(Jb~;jLt65
z14$4@61I*S2KJG;)s+<Hw?pYOr&IGj_nu$&4+?kHzSpK{+RQM`$*qet258UZHiJ{d
zrKya_j^*4iDj<eJqMaVCHIDadZKGx>>L(KWaDrcE>T1xJ4-=cJ>&j~5IUNnBYEWA{
za+m^G{1`n<#|C-2#c5(KDvRB?@1-{rkyZfHp6yaHYzpk`bdD3%pT-<?ZlL8bX<cCh
zyT>AST3SLl#@Sfq6@D$pinVzU++1=3j@d%8>z7!1utu3_RwmXF_BTzNlUTf#WA>!#
zgt4fecvvawQO*4Y$B2Vg`N1M{(<3Xn`&C-+_#hAQjOOaI&Pku4YuN992k+!nBNw@c
z3R+zM9-<%m!4GyCWKh(D;z`mgaZyN<45tKkcon^NPenzL?}M2hMklQ*JDW3U!v}_k
zqk951wKOG=9L_~j*JOo0Wsi4y`g?&a6P#&R8>YAlZK#<n{_aQoJoj(!{a#Uy_r+u7
zu)Zi9qmo}BnY$7vqEg+_)6~bg-POy!1CpLx26nra0y>pt+v=%4-O99g#*0K#WJ!C?
z#*^aS(T^6t2*gKdtUAQ8su|QH4Q?ARA4C3b9{q>)A^qc<hkb%mHqLKD5C;`A-`>n5
zFei$%ygDR7Y4Ryzv;OHi0r)>%ANn}^$NG@Kzd!u~|2I0}_5qe!i7Vs-GI>`VJi(?`
z&H9cZ6>#Ny%JeU|S^ErdAAC{RRk4Xy*!26bnj^7MAv_&Vrg_Ym5?a6Zfdld2N^Ak&
zQvNw;M$oWH@XT;w2WX9{L!bqlJYCT1!An5YDRiPqau8ZQM3QCwA`qS^2`%rE6*R)a
z9`Dx?k^yEUvXte9zW*Ac7;(1jx{0wEMa37kby40eRc^v$D&}ZMYX~G#T}L~%P9s+i
zRiUF1cF`|2r|4<Bpz|)YPwKKw+vBK;CrVfuj7|)ezeV>T1IwRw+BEPF8_nIc9^PYx
z=ea6I-9CbY|MVb~qyEhSz(pp9Luol!q((<oRNI;GZ+61}Y+dkQi~FD5GaP#{vOA?F
z#Ry&WB5LoTu<H2bh6KM~YXQ>dUd-rRULTHJ_FlfssHyLlNONHop6t1YYZhX+s~}jF
zf*Cpom4|(yAXf#9arLgUt`)qo#ro|WYRzTUj#HY++coA?f(-t8)?7Iv!3DhuN{rxs
z`={v^p4(sWoK<}~`HG8CTx~9AH&~J%reOsJUOiAD*5zy_pb0AXf?%sg0HlR!J*Bsc
z2Wi2_ZbuD!ypQZiU61XUVg$yspW~>ZzeZ;O5O3TddOnq7Du72iXOBIlVw+L)2LxJn
zgIaBK|8#!8%s1^;$VCubwK;;T$y1<`@|_c@%n`g*c6b^4`J(q_sOB%w!e-27Yz*XN
z1sJij830%~jPwBd9C{pp4~<@*h1Hl@kJHfjFI~fH`9E{D_#fxUD+r95)(6{Tw+?$x
zUO@;KMLls4#ns-kX2%+dr7cuj&(Psrr*j_Z^k&cK?ft&Bx{p$pKlJTpw&T0jd4;Q&
zx1iIfsDrr7HCAds{IN@QWt^!nG!TK=g4=naa;r@?lW9y=raEA2v0r^xB!GT?#Pcj5
z*Rza7|4!V2W*xrFvC4kSu_608h6ss}|C?MG>--_F3yMH~hcYAknNvY;#%7<@MXmuK
z+HV_)z77x029^vas5rFG@>Er9QlN{I&4dfZcgrC#obEHEpC91uiuoo*Efh1NA}{WB
zVUe2SIl%-tr3~4ouQ58z3^J@}iM^1+Nd!UyZnS)AjA=wHAax_J5yi4Rg@grM1A;Qv
zz+>>=G)G<=>YZv$E^nt-z8DkKIc-zF`Gk{vF-rZ(wI5us$m{4xmQPd3Vq$hojcn4S
zzOGQ1l1ejg-{aabQz6yvm=%mzeLMqA40N$>H?!BCxWoU=^R{wQg%fk3uCG4&M#9s_
znB@07+o8&app44aee-Jqp6c^3S0MKh4w1ckGH$UcqCqLf)AY^)!+PBP%mJdKRWCAB
zF_X_+f%K8&3?KgS!C{v#hyK@-d~8g2u8}7~+snGPd#wb$APne-7~-?&Wq>fK85mpX
zRmVXXZ{noWV3y|c`4Zvj^%V293rBOK>1~;+<j}S$ZzL}fkMwc6b)5EFd@`KKt4nq#
zIF(v3El8&yqCjWgH(Pu&f-^omG2ADgy>NwPs>nEshU0I`;(n;dYl>psW+u_4bG&J-
z$1}mK&h|6)f^fm;#w4$D_t&a5Ctf5yq;iKKZN76f4z_7vgZ+{s#t{k{W`ztI+cNot
zi{JH7f_7-gHD~7G;SGtrA4gI7Tj8OkTV!=ocy4!&!I6vT*C26HWo~mH@DF8F#3Fmj
z2KD7<i<|^f&K-}Lx`RvBu7?@(1nD`YPwjgU6V7jKbd132S^JMV>2@T=&qc26_Dic(
zF}y`lEG{hqN1$nj+!Z%u3~Tt65BFu;WC{~uhidhqPj&JWpob;z{1kG$3+rJVa6KgR
zn$c;hkbUreaykZtK5bZ$_+N1zFB8K#zha)pq{pJFN9uPcj}xc0;PREyH@?AbBQqT6
z>~Yru^rG|H2r~-V(Y8oEqN00`LZ@3jmsQ>!f>F8*t~py!{Vp%o37LHHE`QeoT36-k
zDn*N!o*c+GPn<4uXjc0RC9TVwSzWai`ECh!46yGn^D{w}tRY4|S8x;Xq5J?!@7+5&
z<<TR5ZO1#F)vm(UQ&9g@rTV(>usPJ6-~`3vZpqC`lbfr)o9B6U(Lm<qr>(9;{Ig;?
zNm9AZ-j0|#;N1;0ScVQYj0{jV_y8(rtqE<c<2m8DRH5#Ydf1$2h?LC^mK!&dF|=y@
zVjl>RUQM+JHUv)sW{lpv9`a&khbB-~JGKe1dvNAjnz_oRQP_L|vZA?TqteoT$J{tx
z-=YO)us~^|Zq+^h#L}Gmn^+(B%_DnfDX?9|^!r1286P4o?%s~pv5)1^QyrlE#_QYd
zPd6Kn0X<#V*COpoxL#1L?#*(L#WjW(TI*%X-(g#`-7g+Ina=eQ`=F?hiSov~+i^>3
zV~ObX@SmhAHgd6_(qNim(sY5mlL~A6KggJ)N?@s&yswJuiw<yX^F@ano6X89<^P^q
z{y~iId6}3Z5aB;^gXjJ^yyDqw>O2v)SYjg^-j}zpk+P8Xw_-f}e;~#){jVTM3bw_0
zdW|NZgIF1>wIv~wwsQ<zS?^=4(!z?<@xuh9$IwLY4PR%{oFPUUpt@EtKgFvmCIrz2
z+Uz2L=5hS^b-@q+6+o}7Q(K9u>euHAI{a{&l&4IY1FqIaZ(}>uxItlg(s89KDwIRM
zk<=nm!EvI3S_c`uWt7#l!YzA>3qR5$0p7nO?=kQBJ<<BvD87)7U*^Q1WaWGzXLZn?
zH}VnJ1WgBAy2~32tt~Bz#LvQ^WrU?)a1exQ(XjLc+g#HNgN@A=krZu0g!`P;S-?Tm
zfBp?S_B66}Z!PAF?n$3v2VN6@KT1$UQHHZV0LQ*e(Ecjrcc3Zkgt{T#zlk7!BgTKk
z@K2n8;I>%u_x%3W5Rz&kH&)MV-y}$M=3h+v(dCvP@0<24G|Ib$=5}+(e(G#lEHidt
zi?#o@*8GZ`ktT^r=N}z@zrg8$Bw>Z})$gX5nWd?ihpg158K~FFDEG*FOqd{?NryXK
zEtUP8tWZ>H*!4ML$L_?Rba9b){@u2s%EeR<@qG#5(sY++u#;k9-xO^?QgN~+`pQlx
z)fqw0Dz{EAXg!;D`KVb%Kd?-nyrD+%&Fbks!tv@7${s*Yq$4OcB`@|w&-FcYFM(`%
zETa7Y3e<VAt~;mw2DLU|tUuk18GR1n#l%IVWd%Xu20KE%;<uf2z{p&zsDe2YJ%)w#
zUvNU-fZ5PMkJ<RcWWve;U@_L$18}l&7y*p+3=LTS7zRM#UqwjikH`N;f@fX_y|f||
zE{)5Ju61VQqfd(_OgI(tr;oMO+CKj}WnU0d?-Rk4{Q6^<ibcO;*gT0(9cF}pU7~*#
z8xD2fmRawm;7}LBOjvjC+xtt@Do=`L?ZU=mKMe=~##z)Z59<xNbX(=jDqmw2t*$OR
zFLj@Ec9q@+)Z=wQYOlXjcQnpaM6-U^PB~@bLZohy60=UD_Tmjz=L)iR{G5fBeNAnt
z$-uE<ZOw`x3{S6IOFst=wjfrto5LNmn@AW&*YT08M0qrUy)mJi5W|3y0FR%2T}x#}
zvTt%r5GQ=%`<rc`oru^u)C-#K-xU+k<_{UM{$u<f3I1WlAg*P8d0G>aUXvG(x)%zy
z9`b4Ti=upP40&EjO3dGAiT|nu|3B3d{~HOu4)XL-op`QGzVZi$=P}nnKK4&0;~C3+
z?i43OUrJ%}(xU~{-(k~-bUzR(PquFcPmPSaNeK~=8C(_Acc!^pOt`FZPr7}R%&{z-
zeG2#CuLi+E4|3O4cGujF1czzR{}YuE9NYwi(GZN0qTvD~d8oPYH!NrC+4NZqL=ndQ
z;WnViOggezrh-8X@Z)Hl)ti|35O;E<8}?BYj8W88mpgtnKwqOe|2y)hXDb!diPyaG
z01}0;^e>8u$hta&oz10|jg3lT^&Pz^0knU)_<^j3?3~6QZWdP7KXi8^<`1tpo1r0q
z)8Jzj%7~F&pPA#Y3j96fKNA3Hm|OF$huF_wz|!Q82!GHF{FcAZDGI%VfJo*sw=G6*
zz{P=kXr}05+;+pt`>`DVAOXC$FeXtaHT)t!q_Sydm>c>FrZr(M&f~Q?#YC-4;KA1&
zX%MAo1VJ1e<oZUJx(T}#H*6$nt9{@;#N3kyD>}WOqF{)Z$}4DK>60TozlQ|uAn;aP
zT(U4trm~+S)ig2cv{0{ZP0YBWa8$7hC**v`vhI~Pk_wQywNjQ)l6R0jjzVOr78(0P
z2D6XJ6qlguCIKz}5Q9lv$8ja7CTt#fk%*Efre_!&o8~hS;>X{&W%TaVhWPc6NZZ<X
zRIi~Pq`_gSwFBC^;m#IeYM+e9L=XBhyv!Ic#m*z!dZ0q=^gMWpzv#2cqzudF`_$T8
z8^z}1+aXSV?##K-3hKbnxnT{H(#6b7^G7W`iH@P1@~1pR#MhR?a730g<_fE%WyN>C
zu~c%Ei60%>joW=)GM{Wp^4{7eneTaK8VbT99e1b9`FR8Dx%6p!=}KHg!r@&HH^r05
z{JQjuU>~85mTJOr9g0kzf+o>VX19~+L{*2b<GpQB7x|gi(7QR2Sp&E=Wzpw2J9NtP
z%?)@MW!2U!@7|53;CrSFNLBdyzH*^e2HFct>I{2+Awcs?_!1-`eC$9xD6Ch;bc&}m
z%TJ_%$G9slB!e(_aDc07zzj9{Wv0q}O^Yl7XNy*m3Uy(`Z^bu9Oq#`X`O@~ZQMvPL
z0m6`gGC3;^QrcIs=RgHt*bw$M0kzr7q8b=K5a3KhfZ>uhXy3VPuT%6-mkNi^zy;Y|
zJ?XXU=G$%z6TG^r*Mcy}PQeW|B|~Yoc9i!0?mV?s65s=?YoiUtVwLl6mOX+}Tm?`}
zctTx6RkD{b^jtg`s%0waPa?gDH#&%*XivNDU=aBuR5KJF4z%S~k2**}3}zfBX$FHC
zoETtN26-I~n<~Iz2SR%{bW+{2wByjTklDioPVr*{VMZn|pI?Y>D^8qQs9AM9P`BC$
zYVO%hw9of$E&R-gjwb2Spwy|0&4+8?D03W8eHhHMBxOLW4)BMf%r8&URTY*1jNc0E
z$yFK5c~2w7-%%_VRFG4jMbe+WeJQDtMB@^_r(7u5PzTL!7&6w7rHxK<@|Zn$-2k?8
zq;7YOA+PEO>p|&j>tLI@(S+}0a`P<VA(lGP#lZ$pNy$aDy}|e543@;(C>{iym3f>w
zPxU8sEH8%M7TLdXo3r$Jd~v%QVFy88wRPMp>69Q3em5;R14@UTg`ih(-bWp!HhXk(
z@Xi&D1`HOv$ap)}YKw@QjJXb)x2*UNvHL_oOO>8(&{u_thv$ZZiOQ9e#d!BBhg3FU
zp#AEyqLjl#A|3`#U;1CU@lk;+6Rump7Ed%&Hlz4j5Xez{(kInyDY)*)B^*=6tMomb
zeNh+8L2<SOzcQ`)BCaIGX6^vG&vvWRbDUUKhlGaYlBKc>yvrMd0dk1CT&ZJyyN>|O
ziTh4F%Xg79g#&RA^?GE~SO~8dqzQA@qVA~1QTk8WP9&3UwS6u#FW-MXLZ4{7nD46w
zQg?4<Tx{r&n63AA>g8(|^%Pn5ejbr^TAC)@LW9fuma^#I;hv&_{A2pPdLgZA+c3A~
zvYj`ObgS*AI?bv|oW5916hW0QTp5|tLlq<JK^^DsW<PM~4_^!T$Lx3V*M&5c`bMvb
ztg4*ocN#`7u!ZJt+ldwaN(S~zQV*bpW7C%ZQ<DDQv9)Bs;ml|wg}Yp9c)iuwCi>&W
zn$N-A&?cU^Er}v8c^MiLBOZN40{v~Tn~Kxiug#m=7aeDDJ68yw#X9Qr9SX3Yw#ia|
zBqfqI3=Q_Wz;~%PBydJh$X_5XEEWkqvW|eE+w2QjIoCM0LW0Kha-ow2y+=y69%Y&8
z67|$6y10HRO3B+J!BstSht(pJe~+}(RyCXdWqo>lEXqA8GyX1JQ+z-q9vD*Ewf^A#
z;4123y^p*iU0G+*IueK*N5=k6rB1;z&H~Q@^J|ID9gWPRK>(b%$Sq`z6%3bM+Q?I$
zbJH!9&L+tk(#h*B*C%449mL<8&t<b6@5r=#tEldOPSWaI4Jn1f4Gs*Q8SHg};BvQ?
zQ$EN0Xa{hJUlc|Ba^Pr@)_B=NCikwLMrC}zr#E})TdxHO(JR+}N|*j(y$@h$TVw6F
zqB0ss&CZ3?aC{FbLu?spTqQ3*3w~>gni0q$SL8FDJ&)NWv0gNP&&JvJwGNT+o_7e1
zF*g?{lbsq`TGWLo7>V^u1QsMIbwc`1IdtTBg2{iqsx^Sqflzb^(j?{LZkBN6;RaN8
zB^+V#MUqBSSPEs}EYniBO%m+7)n-7YDD3~f{!J~oY-0pFtF~%-C!1}y0ZW<PWs(MW
zqL2{L6Uihk>=t@0!$drU3m1)*WTUU}iAcxIta0J5Fu|<HrpIKU4`BXaY5<FYp3#S`
z#fTGN#Hz;%WMkss-~h7zg`^+-|CunC+XuQDUs_OIXpQ=rTEz<A)?GJtwu917WFls3
z#@F3$1%32Y!q9?Ynij*L<4NI%#BRw}GrI>r+R4ZaCoxcs&OK)xq4rHoOd_|$6z?vL
zy`hrq_k?$=RR0V1!~!}xLm*2@)n}*!Sr)fVVLSc;1sHu7%ib6^D{#FHx>*CfH~F>o
z9KQ2rCPCErCS|7evuT7`w_ZL5-{oCHvYKDha<iWokLgUOe&WC8mKQ3rr0@kNG;DZ~
z4mI!e^*C$J&7{DV`kk~kgsQ|aXqvT<v#O$n9Y;ZJ*QL3L3e3VCqANR&eV50)<&tlp
z5RGM;jDO{I2%1%pQB6(b*SJ5F>jo*{P3X!)X6JZ}A}+oHAOLby!gtz9sLKjPs8|Vv
zveENm8C)i;q^Ojew^PhIqeosA5Nr%Kgw3Sem!00aKP7(Jp>c6~>;v7DnS-&ut2LVy
z<BZkAYtC+*eNJ}nJtD<}2=+ZHRTHhI>*E#<)XnvYZ1u|Ew3b7rMQ^jr)v)y!g$;WU
zR-f{q4w*~Nz8UK7;jbJ>;zBLwNVUc2;;itNjbS)+S+@t-`i%{g2j--*zn+~r8Q+rQ
zexZ`{21t3Yo6O;-Lomeawl^;a<?psaUmt`c++aG036CaViJP_3!1E-?arKDs!On$%
z&kbH1JJ}|5OkmUS#Vub;&TdwKEL2*#I^a{Afv-SDQB_`Y*nK$}gX<nmFlH$n&otUk
zO+!>c#5Bic>*{+eM$^}}7;)6)S1(4)yMI<aAB$w(V}7vWmA8#v;ap_KKwW>f)2!c<
zdK{AqLo1(iMs7nmONIDN+u<9^pbG_NEaak=-Xid;N{x(H+TLv>nh3VMCLP2j#T@jg
zmG;136=o?cQ4<6MP%aO+ovc!vun5IILGKGYJ9h-)qZAg@KZW*qz)<p4!?O`jWJzp}
z7m_xO+XIp5O7|-{-$ZLA-o}<ee@AV0!X97gL$|ZB&D_9f_3W2Zt42z1?=H679MM72
z2{#<#^?2_8Y8WVS7o;-p4lMb+ahQ&@V>tT*pqm;O(Z40~rh=|9z&;a2#hOYk6q07F
z=8bR;sykcyGt3a8X=q47+v}vflc*5fwf(zK9c=S>L|uff-(XtnFmGKnHnDK=iqSQ1
z*1hAYU56nkiOWTEAD7pOa&!(zE4)a9+V{1v$oOAS@i~?B`Aqw`N#Ik;=TF6H9$l?r
zhmG-GIKxUMp{3u*;}5|Wz~L@Ce+I-0RhRUnY+S+V#>dy}OXHI&;iU!MJc!1}k0@Xy
zD1!C0?=r?QS}1d>>Q6<mud84nq{m0IH|x)8+eU8Fhlj&C0Dh+juVo@G3K<6S4z+|M
zy{%un8{A&F7d=CIj-0cAaUQHS`{Xpmv|#x<^bsK>Sazvn#-B_gy6HchhdK!SB%v-&
zM08)eD$gdSw%EN-TsNq-u+bCO*d=S_iq;T?-|*SPJbmipFD1_E5r~&9BRz9ml=4k7
zM1z!geI(?|s3|m+fQY8D9HN<3o_Mn0ngg+Qsa$Y%k^?ee9x)qa*arF2yD~=x*ilbB
z=llW>K=P#NtH%FIjo6JrN*);_VZbiqU;s@yP5B$IL`EH(%YcFral$5Pu-6T5ANxBx
zmYnvqRzP%1T%pOaTNgAT0TT||MKv5-U%m~qA=eHJZbiJwKc@+POq-BV?Gw?22wIx{
zv@B)MiX7W^-A@~cMC|_34zc%tOB0Cyi7xlQvUO}eenN=3>1&;CfC(K}bF}pwR!!yY
zvts#$^=bWQiKaN>e2O$3&7^5e<WJ#?X%NlMp(L^}?K0NmMcv^^?A>Ex&eqWA8djui
zf|(YkO@*6uS#i~uYU@x&2;4(ooQ!3Lb3FylzzOq{t7jiP?6{+!>LEfKdIaBGN57L`
zU@qE=LxM8Jx3)=7rw>%4n_w+ukeeN72O)#nofmXlD*m3+-~9pawQo|Ih-!(pho!oR
zbNb_jfT#EPr(hkOE`)Can81T2dYh4wx1+;;>vQjoyKZSTU5X~x=NkxZ;JfvbF!m2U
zZH?$j1n7el+;1@nc<}wZ&z!I2bcZx_;7ZPI|2a*3#PCmDZW{Y!*A9xj&-6CAnr#t;
zOm9v;Bi<ujwPdG?NqXg?_t2)CY4gWRi7rwg!E(?J8COoO;7%SUUuR2}zl%Q<lg#kO
zFIzL|BzDI+YFyROCdFr}U8x0YC_*)ukT#re7q#cl{M0;GR0rA~AyR=khAsv53S$J%
z{JNI@vOfU3`y`2<<RnHT(Bx#FLcopH_|X6nlq|Dd8*<`TY-4590=%wf{Zy=Uq}!~`
zOxgrqLmj7BVXeAmKe0tB%QYfp*Ai8Cz-%pa1(p?!l)xpw<C36>DQLY0l=bD>V9<nV
z&m2mhZIAsTYq~--YL#%}&;dCS^NL8F%=kQEi-u7l;`V1&(CdBd^ZHoJ;{X_P09ihk
z`GAZc+t`8Z09H-|Jw{Gu4t+)-^IuJ}Oss!w2>UR}w$*>U_rKW?wk!)uvXe0R8B)#h
zcei~QR%FBQ=K&>;s;j8kye5OHN6vf6yI;pO;9@!_J3yWpz-?2)E_})63VXkXskox+
z4e0!!x<AOn&x!>+1==QVi(;&4TQ!a>At|Knd&iw%4n7X>RTL~AAfu2Desx?HRg|L2
z{G3VW0wIjVw=g>@>x@fUqwQaPz9rLvhD)^MP)RnlT-;ZM$vt9(xo@VJxWev{1w<g^
zm6&(g874=vkv&j=ZA{7h238Sr*!G~ms}%pRAxwAX-D?G{B;}J??;YNQ&_UAO&V-CJ
zg5RMHXn@%*1@qsCZvX0ru>Uf;e)wKl{uAHpf4?EDvsW4Pz3#NnPPeTHX}7f-SCWp^
ztQJQV?1tWHffDbcG<6QBk`LmSkd)6rx{#|L<tDsww8uh8u{t^4KJQ`vpXh2}f7uX5
z0`lOFSR;&?j)#Lh1ydif#(N0+aNXG-H(O0h-PbNr3j`zPjx{}9d^?t}tRs65C=w$7
zvgwWQtzbFRWi6ZH-dXY2O^S>__79_+kv@P4_;F3L0QHOk`Yaz#R(3``eO3;Z4@sHj
z599V9w^k7TVBL=<5#s$Ht*a0x>;vBu+V$}6T&(ApiM=znhDj*$PSUINr^bJvJhyPk
zNpz9w`a0QOp)<J-kMe+KV&>29spKFs)oGG`E8#m4PvcX!;(0|12pYtcg+bz!R8i%?
z5l6k@p!mreYz`kQzR-QG^aKOYAbA@Z)v<*xoo&W}&Q-k`hMHE?*uqX7^sY0($b!ky
zM4l-x^DklS(BkftXL>S$!(P=B+(-1H*x}+g!;Kgxv)Lc*J$lHS#23pl1I1D5<-18%
z-ehYfF}a6*Zo+#Hcc$~l**w`r5lLUp*aJKIM7+GZ#~+;~ZBT_lhjw<2ELWVrznr>B
z&wqtXohD8*=Ed`_;U>zrvsw1;3odgjU3~d&W3~Z4UlFfuGLJ61_{-xv%x-<D-{v`h
ze==5hSzh4x(}Z<5)81<TY{jlHl%ikJ$gQxJ%l)V!ax>Y`GkN~b?zszj>+V}nMi-r+
zVX~D%C3Z3W^e3}XSD6`PDOUYjI(@!02PpSmMNCP7(EFE1QTL@*9~EMg;#Re!LBa@M
z$%p=WF>`2F9sN<s*#uVb6tGp3WLrl@dt7bE_53JBDk-`EW51~uLn+N(pe`Ze4jj(%
za<4f)hBPyrmyB+Y72SF#uxF8h87X1Y0CI2`h@)W76%gMF-+zP7WL*Fb(sENxuJ@3*
zx0phXlN4n;_dN>v6?%X;hMKw-1>!*v>LpJ8J<}E0XwwnIQOb-wFYi0PA-s)zOTb64
z&;4rf3DLt9+E%S0QY3<5JF{Kc^v9$C1UgxrTpcb2v(=Fnqq3Ig=3^1LSw@e^6X5v@
z!#~^&9Lk)dIO+=-B`cJ1Z7fEib^V-t%%c<^=)Q%13c8JQy_z&D1B+{z=l74ijiGEd
z&u7)a6(`81qF(@=Sl#IR(r9B-!|`$&@X(Ngmjx02RVSNEf(vA_SPFKd5PS*(>o-T5
zM8Y@F$$8dInw5JNZWFOi^_XFs_PxkjVi*P$-AQ(@_tq%?Mnd#-S}fzI{iXmdC4IK3
zSP-XI`C2it_(I=Q0$P5qQ!(Z7HMB=`zb-W^3-H@+MhBbB04XUNlcq*1q-1@aPm#x>
z5e21>NF%H@WBOOiSFgu(9uC^5Th90t(Zstv^}_MGIcCjLXR#%hf)lW=V6bJM^PVjP
z$((|)dhc%#^GlIMd-!WqHA-%8SlVfS9<Ukeb&ZgJi&i(6Y=vpez=CRz_X+*Rgpsf|
zM!h4h<idh5zml!fU!Lv0A5KAGz}eN@eD`dr=x4k+97VF?*d8>k@Rb9%u)$p18=Zwn
z^N#j2+gt0cM?Vx3cP}&9lss8-$hT4KcT2Z2%rgd4;-5EQu|<*R@Sh(#@$JvA4t=-V
z_ih!FloCpnG|r0R@>3@>p#@{UF|ZqeAZ7g6F)xwo?AOhE$<iOz8rDZxb&SFoclPTE
zplH6pC3g>(9r3OwfV16JkT48cgMZ0dv;CypRPd|crt~ebCxFjB^?TU$qXgYaa+aaq
zg>s=($c!A13jFaeovkfAy4q{!`Jz|uF%-4V5n}%BmU6a&9pQBQ91@ND6pkHo`Yx|K
z;QQ(2n-eygus-1YTHyzsxElByLbE(rt2T3Vl(fVSE6N8~X_HWXhKR1Z^XX!#`9yb$
zPYhB4ferQoCzv^(WZV5yLhd>Oq8`6`^aYF*12KX)Qu*(uuz&E*35(U&@W%;mv1=y!
zVJhMUg(rS(a@0b`kY1;Mw%x_p{ioi!kNX$=lY1+Coc+T)NBr-5=l)j!Ip1NGdJ^-F
zo@T<pd-!)%cvlLl;<X8J91}Z|-r={JXuX6t#r_Az`%dC!(8SlsFva#hoeB@fE5&oo
zmr(YtWhPyaAqG`CB?_^nCzEga?dxsAk#$sOCt@1!?EW=L?_>SA^3YU+tR(PQO<7jf
z{Ls^++9>dr4LuzP`$e5elC2Idb)z090Nwo<jsXz<q!*+%$<?uZ7axA27uQlA9muoR
z!z|bt(*28*on75ewlLtEefBmR+dTx4_MS}*5>dU!USTv+4jFO8u0Hw*=<?@!LdDue
zE0^6kKaqrmB1EQnlhl}EORKS^$G)*pU<uo0zS|2`k$*V_W99x}^nVkO|Cx90UyJ*n
zP#wD&z^YW9dL`jz+vT~Wis#F^;<_6nQ`2L_SC+o!JOYu%A9rSpc_1SbvAaeb^fRqN
zfU3TQ`<BE|Dnc9C`IjjXhG3RK`_G)xiD{}R4dsezZ28>O^j{4yz$OHN^#i0&s;w{%
zu1c%<e$?M|pPRi#Ws$dGrtLy6PK!Tw2Zw%wJ1k4No1pSaAs)E@^qn?8BnKxtj<<BJ
zcRlk0)m794$zsT?HwCXlHzrb;cf8#q{`fLW_mfkcw?i~T0Q?~F0!gO6JC%Qn&EOYE
zarW6%5fYy9{>Z&AM}E<MHA|!M<CPSUxYVQf-|lDAjQESkVWTc!-xiO)a_RD#K^4sZ
znSJDX`W!|EMlAXOAQ1S6;h%*Cz`@AI4B#--Gx{JF#t%oG!C$cD?E|I%`#VC3wvP@r
z%Mw|3NRjbF6#jsosh~O+;YP!1Y$>GY$ZW5++b7X-TFUa++OTyCuiJ%at7i+pT#>MT
z`=Se4(05$I;*bNZikm1Ts(Yo^W6J<H7h1>|^uKkL9?J9>Ds6S08&~00An;hXl!Cc6
z<+5jXM;VVtkPBaYPahJ{#KCJx=m$Xr49n@FN&V#CGOaA?oEp}3vCr8qpS;h$qBtuH
z#qWNNx%Dr(bUOKT3JuC6-!xo#uh-6kVMdPm?ratfgLZ_K!la*H>VWdOtkN_%uCZ))
z?S}1JT=R40zLaU!g{jo!NSs8M+>+T$+;ma<-BnL#W8Bz^>{$2}pd-H|z5RkC*;-Dh
z#T2<MoG#J%t20JdLV0p!(niDr_nle-ALTdW<L0|C*dc-JH5u1EXXR`{FlcN7swNyf
z#nf0!eg67+?+MW)^{xc9FT4f}+E|0;5C&&`qzNz6O$vqeu{ukw^I#QSWe_B577G2e
z5T(8v!HV*Ep&Yg-r?}}X6IL&JGJ!@ddDPk_*9FDje};ak*S|J_eBA;=Md6iF*1P6L
zNOp6LZ;FU53e~YP*7%`)xGMe`3@;9qr}1+U=d<OVScQ=<hV=!{LQ<05-p>(Mb(m`D
z9nFGoB3#!8qw&-%8(L?+K1SH2?@d9BjR`4RSFeQPW^T>pjZ`|Ep8~xk{F$A_d~SOe
z9%1+AbI78!VWe6nNSL0j*tQTnuQvUzDjGg@A?T$>?lV}j&fCGJT~(c$r=wk8J-<=q
zxBs}{f(TMw`~R9b^KUk=J%D4-l2AMZWiXW5rLoqFpp05;r=_iwL?)KB)Gl_aZE6ec
zG}cl}t3+DSC23Vi(T+qLYb>!=Ev5FxGRC~~-Z`D~-kkH^{Pcdf=l%uvp6~hG&*!e$
z6+%ydNaAW-A*$@g+s(rL^PuNL>&NolxPq2Eoq5glloJ|GOYka(*1;E~!c#WoBA+=%
z-GT90)O#a6>{)Tt(_Qi$uluDFSV3ozso8{4Y3#;FO*xIRV@A<vA&<z5R$H|p+j-T?
z4yaowPc4b*G`xB8QhM#kfF%i|54~nM2}owGI??P01*G^vp^;k!!PI~U1sS;%cksrA
z*y->^rpQ}PU{kn=^v$k9wDqvO+$M1Yg`)d0T`zVoG}(oSZR#=2o$Z(RIfKK}Q0CZN
zB>ybv&f1JxboIgtBWCrh_3qJPUQv&;aAOL8y>`F-9_4bRONMA)oswWm7GqAUE0%@C
z3v3zA8*0LZ`O&}DpdKH#25tybV$^L<48>o1(J1T*AN>00g4;>9wi&)PPF~PyR<kCl
z1+S~|bTT@wBhj#K4Vu4eby1=?ZQv+A_!YhK0V3VM;Cz^h_UU1oR>xjTO0Q*b8zQLK
zP37~;^7EdOXmeL;fwvyo*-UzkK8_-^HE}=T`m+_d9s^E0#1`>S2`9I_m4+X-x=k+9
zxW@3=#D*PXOy#WiF!{{Phqj1Alp(t{pOV@MYJ2Q=FNCoO0a_h1)FbK5USH}J8c`@`
zr&lz46(!@ajqo9G+BI*gkLltqv=zyyaNlXbp=$gpC`3vRk-n74W7DfeaB%Eqi-9ZJ
z3V2kiHr1>Fu$|a~6h{79KQzqarR}-W7Dz(R&8LBrN?(b3{L{IIHs8M={lIc&>E<)y
z1FjP|bb=rvp3=vn_D(!3mfy|M+ko6VQsIfdRppbT{w9G%<HL>lI~fCU0+Z{Mg7SFr
zpgra~PQp6VKSRPhsb1Q&;#`lH!X4HxR3?7-2w$`^tITlsA-QuESf2C8spa3?Id+66
zS6NF2he4Z!#fCj9=XC^4`*HN6hS}mt?a(UAZyDYHk2^OCxEf?VpOU2B5+kou!`RMV
zuTP~hE>d&Z+x4O2XWc0p3WA{e@4xfC-ZCXpmQMcBePLF3!XP|%uC&>>*2*IKzQq(5
z^<xPpmYPKS>Uo6ug<!Tc16jE~PV9j0Vw?lscI$9DGp5OEFmyymd%I02!7~{GP`vAh
zOh{hZ-0SM%6p!))+zoQ}Pm(a+&zL<@KIoP<RIJaEz`e!r8}DDYB~tsnc9>CdtC62y
zQ4r?buB&4B+rZPyLn(|?%NXN@kRYqKE>yUDbw*M}ab)H==PZJo<94Qu<W)q>ZQimB
z8n0GuYOEm1U8egm%!29*N9_gtH1A<Wt4s7b|KkYqAKbYlaH7#+OS;DHVog=dM?!Yg
zPmR4!$I{Zn<f~Ftcu=MG@lMB2sRY<m3K3ye0;i{h@oTCOaN~|;rvTN5DgnX@O2Z^g
z;^cYap5eShz*H=dE;SjY#^I-Vruy~y2cU4YehC-B3a+|pH+C@!Kf&FZ461m&7HvOd
zB6rdw*Abvva#4che}ORY=wZ93knSsq*SE-}vK)2a%M0P<cc+o7Hrl>70)Emf#BM12
z6!a!7rY+bHhQ0zhkPW6>C4Cy3-8;}2Mp;%^hUP9hv~F2F6?xx4XTt3!?`{J{RP%9N
z^x^3(HVcy-BG{d!@cjIJpq(+#WvOlF=z2Oc?H|WN7hwd3m?HE8bpjB`gKu$+AP4Cn
z#K2g`1dKq!4FgO}O-xMx$><Ehzl%f%jIPz{VE@yU_gtP9flybIFbF)f{wB}9Mbj1^
zxDdXcC)L27I$n`yN0(K4W}u9N*6q*j%&*|!W6w<P{7vS#6zOILVD|L9;$?5);M<of
z!!#78)!w|=S506W_?q3ekC-%BUnIbL@TFUj6Ozg^E{2dcWh)|Z1z{*o)N|Kxf4Ad3
ze@5|(O;mEtO58Zk64{#gvyarTAi0if{^vo8n{uU&ofmikP0Dn0V3G045vc*$Yd;JU
zOjY8wKFK>&rO1x-8N7Sx#k$(OCx)<7HU=s|_mSJ##5AQF5sE*LeCcAgD1S_3?>kB%
zJrCX_Ps0P3_cxY;(@7qPcg2r%D_}e+d`HHD8$z7mBNPMm>iZqiS7obAIlx;kWdW`#
zX0XSZ6wH`dKF9hG7ZTs^_QC$a`d7+(rEkeO%>UknE898fP(Rp=EfPCuVex?<+MX}I
z_<bbk8xr{6ro7*fz`s<$|7pt0lNK|S@1Ra^ZQXVQg~;CROw&#4accy7p|yefPa-FT
zYL61*e}FeF+n#lQb29X~73bsgc89fS*R0{{iDN-B5DDJD_nt|wnpcp~{y@gKHdG#8
zE8}a3xdPk$2n!Yi1iw?IfU&c)na#+ns@qZRNmE5tb)}a2Pf}6GmGZ5^8#}L&{t8Sy
zNO^Gw8fex*%G+xJ2%Zze=b>$s?vBc(-kR5^@s=wrC<=FwtEa~DA^_sOb4_wN;S(Et
zf%q>X44r834LSRmV$-erBzDm#S&`3*XG}7#yj{)q0n2NuM(h1CkkH8F?Q)@Rxj+#Z
ztUll!vbW?Hg;zxG4yr;yVP=eueVJXW*xAo#`h-#B$hY{3uARy&BI-O3JtdR8-Eo(F
K#=KSu{r)$)yGY3Z

literal 0
HcmV?d00001

diff --git a/oxAuth/Server/conf/oxauth-config.json b/oxAuth/Server/conf/oxauth-config.json
new file mode 100644
index 00000000..30816eaf
--- /dev/null
+++ b/oxAuth/Server/conf/oxauth-config.json
@@ -0,0 +1,341 @@
+{
+    "issuer":"${config.oxauth.issuer}",
+    "loginPage":"${config.oxauth.contextPath}/login.htm",
+    "authorizationPage":"${config.oxauth.contextPath}/authorize.htm",
+    "baseEndpoint":"${config.oxauth.contextPath}/restv1",
+    "authorizationEndpoint":"${config.oxauth.contextPath}/restv1/authorize",
+    "tokenEndpoint":"${config.oxauth.contextPath}/restv1/token",
+    "tokenRevocationEndpoint": "${config.oxauth.contextPath}/restv1/revoke",
+    "userInfoEndpoint":"${config.oxauth.contextPath}/restv1/userinfo",
+    "clientInfoEndpoint":"${config.oxauth.contextPath}/restv1/clientinfo",
+    "checkSessionIFrame":"${config.oxauth.contextPath}/opiframe.htm",
+    "endSessionEndpoint":"${config.oxauth.contextPath}/restv1/end_session",
+    "jwksUri":"${config.oxauth.contextPath}/restv1/jwks",
+    "registrationEndpoint":"${config.oxauth.contextPath}/restv1/register",
+    "openIdDiscoveryEndpoint":"${config.oxauth.issuer}/.well-known/webfinger",
+    "openIdConfigurationEndpoint":"${config.oxauth.issuer}/.well-known/openid-configuration",
+    "idGenerationEndpoint":"${config.oxauth.contextPath}/restv1/id",
+    "introspectionEndpoint":"${config.oxauth.contextPath}/restv1/introspection",
+    "deviceAuthorizationEndpoint":"${config.oxauth.contextPath}/restv1/device_authorization",
+    "umaConfigurationEndpoint":"${config.oxauth.contextPath}/restv1/uma2-configuration",
+    "sectorIdentifierEndpoint":"${config.oxauth.contextPath}/sectoridentifier",
+    "oxElevenGenerateKeyEndpoint":"${config.oxauth.contextPath}/oxeleven/rest/oxeleven/generateKey",
+    "oxElevenSignEndpoint":"${config.oxauth.contextPath}/oxeleven/rest/oxeleven/sign",
+    "oxElevenVerifySignatureEndpoint":"${config.oxauth.contextPath}/oxeleven/rest/oxeleven/verifySignature",
+    "oxElevenDeleteKeyEndpoint":"${config.oxauth.contextPath}/oxeleven/rest/oxeleven/deleteKey",
+    "backchannelAuthenticationEndpoint":"${config.oxauth.contextPath}/restv1/bc-authorize",
+    "backchannelDeviceRegistrationEndpoint":"${config.oxauth.contextPath}/restv1/bc-deviceRegistration",
+    "openidSubAttribute":"inum",
+    "responseTypesSupported":[
+        ["code"],
+        ["code", "id_token"],
+        ["token"],
+        ["token", "id_token"],
+        ["code", "token"],
+        ["code", "token", "id_token"],
+        ["id_token"]
+    ],
+    "responseModesSupported":[
+        "query",
+        "fragment",
+        "form_post"
+    ],
+    "grantTypesSupported":[
+        "authorization_code",
+        "implicit",
+        "password",
+        "client_credentials",
+        "refresh_token",
+        "urn:ietf:params:oauth:grant-type:uma-ticket",
+        "urn:openid:params:grant-type:ciba",
+        "urn:ietf:params:oauth:grant-type:device_code"
+    ],
+    "subjectTypesSupported":[
+        "public",
+        "pairwise"
+    ],
+    "defaultSubjectType": "pairwise",
+    "userInfoSigningAlgValuesSupported":[
+        "HS256",
+        "HS384",
+        "HS512",
+        "RS256",
+        "RS384",
+        "RS512",
+        "ES256",
+        "ES384",
+        "ES512",
+        "ES512",
+        "PS256",
+        "PS384",
+        "PS512"
+    ],
+    "userInfoEncryptionAlgValuesSupported":[
+        "RSA1_5",
+        "RSA-OAEP",
+        "A128KW",
+        "A256KW"
+    ],
+    "userInfoEncryptionEncValuesSupported":[
+        "A128CBC+HS256",
+        "A256CBC+HS512",
+        "A128GCM",
+        "A256GCM"
+    ],
+    "idTokenSigningAlgValuesSupported":[
+        "none",
+        "HS256",
+        "HS384",
+        "HS512",
+        "RS256",
+        "RS384",
+        "RS512",
+        "ES256",
+        "ES384",
+        "ES512",
+        "ES512",
+        "PS256",
+        "PS384",
+        "PS512"
+    ],
+    "idTokenEncryptionAlgValuesSupported":[
+        "RSA1_5",
+        "RSA-OAEP",
+        "A128KW",
+        "A256KW"
+    ],
+    "idTokenEncryptionEncValuesSupported":[
+        "A128CBC+HS256",
+        "A256CBC+HS512",
+        "A128GCM",
+        "A256GCM"
+    ],
+    "requestObjectSigningAlgValuesSupported":[
+        "none",
+        "HS256",
+        "HS384",
+        "HS512",
+        "RS256",
+        "RS384",
+        "RS512",
+        "ES256",
+        "ES384",
+        "ES512",
+        "ES512",
+        "PS256",
+        "PS384",
+        "PS512"
+    ],
+    "requestObjectEncryptionAlgValuesSupported":[
+        "RSA1_5",
+        "RSA-OAEP",
+        "A128KW",
+        "A256KW"
+    ],
+    "requestObjectEncryptionEncValuesSupported":[
+        "A128CBC+HS256",
+        "A256CBC+HS512",
+        "A128GCM",
+        "A256GCM"
+    ],
+    "tokenEndpointAuthMethodsSupported":[
+        "client_secret_basic",
+        "client_secret_post",
+        "client_secret_jwt",
+        "private_key_jwt"
+    ],
+    "tokenEndpointAuthSigningAlgValuesSupported":[
+        "HS256",
+        "HS384",
+        "HS512",
+        "RS256",
+        "RS384",
+        "RS512",
+        "ES256",
+        "ES384",
+        "ES512",
+        "ES512",
+        "PS256",
+        "PS384",
+        "PS512"
+    ],
+    "dynamicRegistrationCustomAttributes":[
+        "oxAuthTrustedClient",
+        "oxIncludeClaimsInIdToken",
+        "myCustomAttr1",
+        "myCustomAttr2"
+    ],
+    "displayValuesSupported":[
+        "page",
+        "popup"
+    ],
+    "dynamicGrantTypeDefault":[
+        "authorization_code",
+        "implicit",
+        "password",
+        "client_credentials",
+        "refresh_token",
+        "urn:ietf:params:oauth:grant-type:uma-ticket",
+        "urn:openid:params:grant-type:ciba",
+        "urn:ietf:params:oauth:grant-type:device_code"
+    ],
+    "claimTypesSupported":[
+        "normal"
+    ],
+    "serviceDocumentation":"http://ox.gluu.org/doku.php?id=oxauth:home",
+    "claimsLocalesSupported":[
+        "en"
+    ],
+    "uiLocalesSupported":[
+        "en",
+        "es"
+    ],
+    "claimsParameterSupported":true,
+    "requestParameterSupported":true,
+    "requestUriParameterSupported":true,
+    "requireRequestUriRegistration":false,
+    "rejectJwtWithNoneAlg":false,
+    "opPolicyUri":"https://www.gluu.org/privacy-policy/",
+    "opTosUri":"https://www.gluu.org/terms/",
+    "authorizationCodeLifetime":${config.client.authorization-code-lifetime},
+    "refreshTokenLifetime":14400,
+    "idTokenLifetime":3600,
+    "accessTokenLifetime":300,
+    "umaRptLifetime":${config.uma.requester-permission-token-lifetime},
+    "umaPctLifetime":${config.uma.requester-permission-token-lifetime},
+    "umaAddScopesAutomatically":false,
+    "umaKeepClientDuringResourceRegistration":true,
+    "cleanServiceInterval":${config.client.clean-service-interval},
+    "keyRegenerationEnabled":false,
+    "keyRegenerationInterval":48,
+    "defaultSignatureAlgorithm":"RS256",
+    "oxOpenIdConnectVersion":"openidconnect-1.0",
+    "oxId":"https://${server.name}/oxid/service/gluu/inum",
+    "dynamicRegistrationEnabled":true,
+    "dynamicRegistrationPasswordGrantTypeEnabled":true,
+    "dynamicRegistrationExpirationTime":${config.client.dynamic-registration-expiration-time},
+    "dynamicRegistrationPersistClientAuthorizations":true,
+    "trustedClientEnabled":true,
+    "returnClientSecretOnRead":true,
+    "skipAuthorizationForOpenIdScopeAndPairwiseId": false,
+    "dynamicRegistrationScopesParamEnabled":true,
+    "dynamicRegistrationCustomObjectClass":"oxAuthClientCustomAttributes",
+    "personCustomObjectClassList":["gluuCustomPerson"],
+    "authenticationFiltersEnabled":true,
+    "clientAuthenticationFiltersEnabled":true,
+    "clientRegDefaultToCodeFlowWithRefresh":true,
+    "grantTypesAndResponseTypesAutofixEnabled": true,
+    "authenticationFilters":[
+        {
+            "filter":"(&(mail=*{0}*)(inum={1}))",
+            "bind":false,
+            "bindPasswordAttribute":null,
+            "baseDn":"ou=people,o=gluu"
+        },
+        {
+            "filter":"uid={0}",
+            "bind":true,
+            "bindPasswordAttribute":"pwd",
+            "baseDn":"ou=people,o=gluu"
+        }
+    ],
+    "clientAuthenticationFilters":[
+        {
+            "filter":"myCustomAttr1={0}",
+            "bind":false,
+            "bindPasswordAttribute":"oxAuthClientSecret",
+            "baseDn":"ou=clients,o=gluu"
+        }
+    ],
+    "applianceInum":"${config.oxauth.appliance}",
+    "sessionIdUnusedLifetime":86400,
+    "sessionIdUnauthenticatedUnusedLifetime":60,
+    "sessionIdEnabled":true,
+    "sessionIdPersistOnPromptNone":true,
+    "sessionIdLifetime":86400,
+    "forceOfflineAccessScopeToEnableRefreshToken":false,
+    "configurationUpdateInterval":3600,
+    "cssLocation":"${config.oxauth.contextPath}/stylesheet",
+    "jsLocation":"${config.oxauth.contextPath}/js",
+    "imgLocation":"${config.oxauth.contextPath}/img",
+    "metricReporterInterval":300,
+    "metricReporterKeepDataDays":15,
+    "pairwiseIdType":"${config.oxauth.pairwiseIdType}",
+    "pairwiseCalculationKey":"${config.oxauth.pairwiseCalculationKey}",
+    "pairwiseCalculationSalt": "${config.oxauth.pairwiseCalculationSalt}",
+    "shareSubjectIdBetweenClientsWithSameSectorId": true,
+    "webKeysStorage": "keystore",
+    "oxElevenTestModeToken": "${config.oxeleven.testModeToken}",
+    "dnName": "CN=oxAuth CA Certificates",
+    "keyStoreFile": "./conf/keystore.jks",
+    "keyStoreSecret": "secret",
+    "endSessionWithAccessToken":false,
+    "clientWhiteList": ["*"],
+    "clientBlackList": ["*.attacker.com/*"],
+    "legacyIdTokenClaims": false,
+    "customHeadersWithAuthorizationResponse": true,
+    "updateUserLastLogonTime": true,
+    "updateClientAccessTime":true,
+    "enableClientGrantTypeUpdate": true,
+    "corsConfigurationFilters": [
+        {
+            "filterName": "CorsFilter",
+            "corsAllowedOrigins": "*",
+            "corsAllowedMethods": "GET,POST,HEAD,OPTIONS",
+            "corsAllowedHeaders": "Origin,Authorization,Accept,X-Requested-With,Content-Type,Access-Control-Request-Method,Access-Control-Request-Headers",
+            "corsExposedHeaders": "",
+            "corsSupportCredentials": true,
+            "corsLoggingEnabled": false,
+            "corsPreflightMaxAge": 1800,
+            "corsRequestDecorate": true
+        }
+    ],
+    "logClientIdOnClientAuthentication": true,
+    "logClientNameOnClientAuthentication": false,
+    "authorizationRequestCustomAllowedParameters" : [
+        "customParam1",
+        "customParam2",
+        "customParam3"
+    ],
+    "legacyDynamicRegistrationScopeParam": false,
+    "openidScopeBackwardCompatibility": false,
+    "loggingLevel": "DEBUG",
+    "backchannelTokenDeliveryModesSupported": ["poll", "ping", "push"],
+    "backchannelAuthenticationRequestSigningAlgValuesSupported": [
+        "RS512",
+        "ES256",
+        "ES384",
+        "ES512",
+        "ES512",
+        "PS256",
+        "PS384",
+        "PS512"
+    ],
+    "backchannelClientId": "123-123-123",
+    "backchannelRedirectUri": "https://ce.gluu.info:8443/ciba/home.htm",
+    "backchannelUserCodeParameterSupported": true,
+    "backchannelBindingMessagePattern": "^[a-zA-Z0-9]{4,8}$",
+    "backchannelAuthenticationResponseExpiresIn": 3600,
+    "backchannelAuthenticationResponseInterval": 2,
+    "backchannelRequestsProcessorJobIntervalSec": 5,
+    "cibaGrantLifeExtraTimeSec": 180,
+    "cibaMaxExpirationTimeAllowedSec": 1800,
+    "backchannelLoginHintClaims": ["inum", "uid", "mail"],
+    "cibaEndUserNotificationConfig": {
+        "apiKey": "AIzaSyDwJtxZV-ApPlApt7HdXkleEZhseURgzHI",
+        "authDomain": "api-project-561176510817.firebaseapp.com",
+        "databaseURL": "https://api-project-561176510817.firebaseio.com",
+        "projectId": "api-project-561176510817",
+        "storageBucket": "api-project-561176510817.appspot.com",
+        "messagingSenderId": "561176510817",
+        "appId": "1:561176510817:web:8e327e72cd49e8d5",
+        "notificationUrl": "https://fcm.googleapis.com/fcm/send",
+        "notificationKey": "csyBj39m4uPHbs2oHeTw40KfgCiUbgxBKPPz6ZXgkpF4EMQvMOAHAoM7up1UlfHk9GD5QnqdMktzjpmEuKd5xlD2kRDhwMIJ8JYbTA5+Cv39CxuWOiFuuMPJZqg+VqT4X7Ne9sXvm3UtMe8PxmRAoXlSZ1kElT/AuQvC2+YyiqlmLpXoCU01waEtIajltap5TrFuXvAvkmYJjvCkFIdWsg==",
+        "publicVapidKey": "BOH-FKi3U-7cr5Wv3WeS8RJXXaGpf1R7tlgKSOvYCbFrJRaJER4kI_0xCNG22erHLAmiC78PAW53neERb3eiIO0"
+    },
+    "deviceAuthzRequestExpiresIn": 1800,
+    "deviceAuthzTokenPollInterval": 5,
+    "deviceAuthzResponseTypeToProcessAuthz": "code",
+    "return200OnClientRegistration": true,
+    "dateFormatterPatterns": {}
+}
diff --git a/oxAuth/Server/conf/oxauth-errors.json b/oxAuth/Server/conf/oxauth-errors.json
new file mode 100644
index 00000000..6a12fe64
--- /dev/null
+++ b/oxAuth/Server/conf/oxauth-errors.json
@@ -0,0 +1,454 @@
+{
+    "authorize":[
+        {
+            "id":"invalid_request",
+            "description":"The request is missing a required parameter, includes an unsupported parameter or parameter value, or is otherwise malformed.",
+            "uri":null
+        },
+        {
+            "id": "disabled_client",
+            "description": "The client is disabled and can't request an access token using this method.",
+            "uri":null
+        },
+        {
+            "id": "unauthorized_client",
+            "description": "The client is not authorized to request an access token using this method.",
+            "uri": null
+        },
+        {
+            "id":"access_denied",
+            "description":"The resource owner or authorization server denied the request.",
+            "uri":null
+        },
+        {
+            "id":"retry",
+            "description":"The authorization server requires RP to send authorization request again.",
+            "uri":null
+        },
+        {
+            "id":"unsupported_response_type",
+            "description":"The authorization server does not support obtaining an access token using this method.",
+            "uri":null
+        },
+        {
+            "id":"invalid_scope",
+            "description":"The requested scope is invalid, unknown, or malformed.",
+            "uri":null
+        },
+        {
+            "id":"server_error",
+            "description":"The authorization server encountered an unexpected condition which prevented it from fulfilling the request.",
+            "uri":null
+        },
+        {
+            "id":"temporarily_unavailable",
+            "description":"The authorization server is currently unable to handle the request due to a temporary overloading or maintenance of the server.",
+            "uri":null
+        },
+        {
+            "id":"invalid_request_redirect_uri",
+            "description":"The redirect_uri in the Authorization Request does not match any of the Client's pre-registered redirect_uris.",
+            "uri":null
+        },
+        {
+            "id":"login_required",
+            "description":"The Authorization Server requires End-User authentication. This error MAY be returned when the prompt parameter in the Authorization Request is set to none to request that the Authorization Server should not display any user interfaces to the End-User, but the Authorization Request cannot be completed without displaying a user interface for user authentication.",
+            "uri":null
+        },
+        {
+            "id":"session_selection_required",
+            "description":"The End-User is required to select a session at the Authorization Server. The End-User MAY be authenticated at the Authorization Server with different associated accounts, but the End-User did not select a session. This error MAY be returned when the prompt parameter in the Authorization Request is set to none to request that the Authorization Server should not display any user interfaces to the End-User, but the Authorization Request cannot be completed without displaying a user interface to prompt for a session to use.",
+            "uri":null
+        },
+        {
+            "id":"consent_required",
+            "description":"The Authorization Server requires End-User consent. This error MAY be returned when the prompt parameter in the Authorization Request is set to none to request that the Authorization Server should not display any user interfaces to the End-User, but the Authorization Request cannot be completed without displaying a user interface for End-User consent.",
+            "uri":null
+        },
+        {
+            "id":"user_mismatched",
+            "description":"The current logged in End-User at the Authorization Server does not match the requested user. This error MAY be returned when the prompt parameter in the Authorization Request is set to none to request that the Authorization Server should not display any user interfaces to the End-User, but the Authorization Request cannot be completed without displaying a user interface to prompt for the correct End-User authentication.",
+            "uri":null
+        },
+        {
+            "id":"request_not_supported",
+            "description":"The request parameter is not supported.",
+            "uri":null
+        },
+        {
+            "id":"request_uri_not_supported",
+            "description":"The request uri parameter is not supported.",
+            "uri":null
+        },
+        {
+            "id":"invalid_request_uri",
+            "description":"The request_uri in the Authorization Request returns an error or invalid data.",
+            "uri":null
+        },
+        {
+            "id":"invalid_request_object",
+            "description":"The request parameter contains an invalid OpenID Request Object.",
+            "uri":null
+        },
+        {
+            "id":"authentication_session_invalid",
+            "description":"The authorization server can't handle user authentication due to session expiration",
+            "uri":null
+        },
+        {
+            "id":"invalid_authentication_method",
+            "description":"The authorization server can't handle user authentication due to error caused by ACR",
+            "uri":null
+        }
+    ],
+    "clientInfo":[
+        {
+            "id":"invalid_request",
+            "description":"The request is missing a required parameter, includes an unsupported parameter or parameter value, repeats the same parameter, uses more than one method for including an access token, or is otherwise malformed.",
+            "uri":null
+        },
+        {
+            "id":"invalid_token",
+            "description":"The access token provided is expired, revoked, malformed, or invalid for other reasons. Try to request a new access token and retry the protected resource.",
+            "uri":null
+        }
+    ],
+    "endSession":[
+        {
+            "id": "invalid_grant_and_session",
+            "description": "The provided id token (or access token) or session state are invalid or were issued to another client.",
+            "uri": null
+        },
+        {
+            "id": "session_not_passed",
+            "description": "The provided session state is empty.",
+            "uri": null
+        },
+        {
+            "id": "post_logout_uri_not_passed",
+            "description": "The provided post logout uri is empty.",
+            "uri": null
+        },
+        {
+            "id": "post_logout_uri_not_associated_with_client",
+            "description": "The provided post logout uri is not associated with client.",
+            "uri": null
+        },
+        {
+            "id":"invalid_grant",
+            "description":"The provided access token is invalid, or was issued to another client.",
+            "uri":null
+        },
+        {
+            "id":"invalid_logout_uri",
+            "description":"The provided logout_uri is invalid.",
+            "uri":null
+        }
+    ],
+    "register":[
+        {
+            "id":"invalid_request",
+            "description":"The request is missing a required parameter, includes an unsupported parameter or parameter value, or is otherwise malformed.",
+            "uri":null
+        },
+        {
+            "id":"invalid_redirect_uri",
+            "description":"Value of one or more redirect_uris is invalid.",
+            "uri":null
+        },
+        {
+            "id":"invalid_client_metadata",
+            "description":"The value of one of the Client Metadata fields is invalid and the server has rejected this request. Note that an Authorization Server MAY choose to substitute a valid value for any requested parameter of a Client's Metadata.",
+            "uri":null
+        },
+        {
+            "id":"invalid_token",
+            "description":"The access token provided is expired, revoked, malformed, or invalid for other reasons.",
+            "uri":null
+        },
+        {
+            "id": "invalid_software_statement",
+            "description":"The software_statement is malformed or invalid.",
+            "uri":null
+        },
+        {
+            "id":"access_denied",
+            "description":"The authorization server denied the request.",
+            "uri":null
+        }
+    ],
+    "token":[
+        {
+            "id":"invalid_request",
+            "description":"The request is missing a required parameter, includes an unsupported parameter or parameter value, repeats a parameter, includes multiple credentials, utilizes more than one mechanism for authenticating the client, or is otherwise malformed.",
+            "uri":null
+        },
+        {
+            "id":"invalid_client",
+            "description":"Client authentication failed (e.g. unknown client, no client authentication included, or unsupported authentication method). The authorization server MAY return an HTTP 401 (Unauthorized) status code to indicate which HTTP authentication schemes are supported. If the client attempted to authenticate via the Authorization request header field, the authorization server MUST respond with an HTTP 401 (Unauthorized) status code, and include the WWW-Authenticate response header field matching the authentication scheme used by the client.",
+            "uri":null
+        },
+        {
+            "id": "disabled_client",
+            "description": "The client is disabled and can't request an access token using this method.",
+            "uri": null
+        },
+        {
+            "id":"invalid_grant",
+            "description":"The provided authorization grant is invalid, expired, revoked, does not match the redirection URI used in the authorization request, or was issued to another client.",
+            "uri":null
+        },
+        {
+            "id":"unauthorized_client",
+            "description":"The authenticated client is not authorized to use this authorization grant type.",
+            "uri":null
+        },
+        {
+            "id":"unsupported_grant_type",
+            "description":"The authorization grant type is not supported by the authorization server.",
+            "uri":null
+        },
+        {
+            "id":"invalid_scope",
+            "description":"The requested scope is invalid, unknown, malformed, or exceeds the scope granted by the resource owner.",
+            "uri":null
+        }
+    ],
+    "revoke":[
+        {
+            "id":"unsupported_token_type",
+            "description":"The authorization server does not support the revocation of the presented token type. That is, the client tried to revoke an access token on a server not supporting this feature.",
+            "uri":null
+        },
+        {
+            "id":"invalid_request",
+            "description":"The request is missing a required parameter, includes an unsupported parameter or parameter value, repeats a parameter, includes multiple credentials, utilizes more than one mechanism for authenticating the client, or is otherwise malformed.",
+            "uri":null
+        },
+        {
+            "id":"invalid_client",
+            "description":"Client authentication failed (e.g. unknown client, no client authentication included, or unsupported authentication method). The authorization server MAY return an HTTP 401 (Unauthorized) status code to indicate which HTTP authentication schemes are supported. If the client attempted to authenticate via the Authorization request header field, the authorization server MUST respond with an HTTP 401 (Unauthorized) status code, and include the WWW-Authenticate response header field matching the authentication scheme used by the client.",
+            "uri":null
+        }
+    ],
+    "uma":[
+        {
+            "id":"invalid_request",
+            "description":"The request is missing a required parameter, includes an unsupported parameter or parameter value, or is otherwise malformed.",
+            "uri":null
+        },
+        {
+            "id":"unauthorized_client",
+            "description":"The client is not authorized to request an access token using this method.",
+            "uri":null
+        },
+        {
+            "id": "disabled_client",
+            "description": "The client is disabled and can't request an access token using this method.",
+            "uri": null
+        },
+        {
+            "id":"access_denied",
+            "description":"The resource owner or AM server denied the request.",
+            "uri":null
+        },
+        {
+            "id":"unsupported_response_type",
+            "description":"The AM server does not support an access using this method.",
+            "uri":null
+        },
+        {
+            "id":"invalid_client_scope",
+            "description":"The requested scope is invalid, unknown, or malformed.",
+            "uri":null
+        },
+        {
+            "id":"server_error",
+            "description":"The AM server encountered an unexpected condition which prevented it from fulfilling the request.",
+            "uri":null
+        },
+        {
+            "id":"temporarily_unavailable",
+            "description":"The AM server is currently unable to handle the request due to a temporary overloading or maintenance of the server.",
+            "uri":null
+        },
+        {
+            "id":"precondition_failed",
+            "description":"The resource set that was requested to be deleted or updated at the AM did not match the If-Match value present in the request.",
+            "uri":null
+        },
+        {
+            "id":"not_found",
+            "description":"The resource set requested from the AM cannot be found.",
+            "uri":null
+        },
+        {
+            "id":"unsupported_method_type",
+            "description":"The host request used an unsupported HTTP method.",
+            "uri":null
+        },
+        {
+            "id":"invalid_token",
+            "description":"The access token expired.",
+            "uri":null
+        },
+        {
+            "id":"invalid_resource_set_id",
+            "description":"The provided resource set identifier was not found at the AM.",
+            "uri":null
+        },
+        {
+            "id":"invalid_scope",
+            "description":"At least one of the scopes included in the request was not registered previously by this host.",
+            "uri":null
+        },
+        {
+            "id":"invalid_requester_ticket",
+            "description":"The provided ticket was not found at the AM.",
+            "uri":null
+        },
+        {
+            "id":"expired_requester_ticket",
+            "description":"The provided ticket has expired.",
+            "uri":null
+        },
+        {
+            "id":"not_authorized_permission",
+            "description":"The requester is definitively not authorized for this permission according to user policy.",
+            "uri":null
+        },
+        {
+            "id":"need_claims",
+            "description":"The AM is unable to determine whether the requester is authorized for this permission without gathering claims from the requesting party.",
+            "uri":null
+        }
+    ],
+    "userInfo":[
+        {
+            "id":"invalid_request",
+            "description":"The request is missing a required parameter, includes an unsupported parameter or parameter value, repeats the same parameter, uses more than one method for including an access token, or is otherwise malformed.",
+            "uri":null
+        },
+        {
+            "id":"invalid_token",
+            "description":"The access token provided is expired, revoked, malformed, or invalid for other reasons. Try to request a new access token and retry the protected resource.",
+            "uri":null
+        },
+        {
+            "id":"insufficient_scope",
+            "description":"The request requires higher privileges than provided by the access token.",
+            "uri":null
+        }
+    ],
+    "fido":[
+        {
+            "id":"server_error",
+            "description":"The authorization server encountered an unexpected condition which prevented it from fulfilling the request.",
+            "uri":null
+        },
+        {
+            "id":"invalid_request",
+            "description":"The request is missing a required parameter, includes an unsupported parameter or parameter value, repeats the same parameter, has invalid signature, or is otherwise malformed.",
+            "uri":null
+        },
+        {
+            "id":"no_eligable_devices",
+            "description":"There are no devices registered.",
+            "uri":null
+        },
+        {
+            "id":"device_compromised",
+            "description":"All devices were compromised.",
+            "uri":null
+        },
+        {
+            "id":"session_expired",
+            "description":"The authentication or registration session was expired.",
+            "uri":null
+        },
+        {
+            "id":"registration_not_allowed",
+            "description":"The user has registered device already.",
+            "uri":null
+        }
+    ],
+    "backchannelAuthentication":[
+        {
+            "id": "invalid_request",
+            "description": "The request is missing a required parameter, includes an invalid parameter value, includes a parameter more than once, contains more than one of the hints, or is otherwise malformed.",
+            "uri": null
+        },
+        {
+            "id": "invalid_scope",
+            "description": "The requested scope is invalid, unknown, or malformed.",
+            "uri": null
+        },
+        {
+            "id": "expired_login_hint_token",
+            "description": "The login_hint_token provided in the authentication request is not valid because it has expired.",
+            "uri": null
+        },
+        {
+            "id": "unknown_user_id",
+            "description": "The OpenID Provider is not able to identify which end-user the Client wishes to be authenticated by means of the hint provided in the request (login_hint_token, id_token_hint or login_hint).",
+            "uri": null
+        },
+        {
+            "id": "unauthorized_client",
+            "description": "The Client is not authorized to use this authentication flow.",
+            "uri": null
+        },
+        {
+            "id": "missing_user_code",
+            "description": "User code is required but was missing from the request.",
+            "uri": null
+        },
+        {
+            "id": "invalid_user_code",
+            "description": "User code was invalid.",
+            "uri": null
+        },
+        {
+            "id": "invalid_binding_message",
+            "description": "The binding message is invalid or unacceptable for use in the context of the given request.",
+            "uri": null
+        },
+        {
+            "id": "invalid_client",
+            "description": "Client authentication failed (e.g., invalid client credentials, unknown client, no client authentication included, or unsupported authentication method).",
+            "uri": null
+        },
+        {
+            "id": "unauthorized_end_user_device",
+            "description": "The end-user has not registered a device to receive push notifications.",
+            "uri": null
+        },
+        {
+            "id": "access_denied",
+            "description": "The resource owner or OpenID Provider denied the CIBA (Client Initiated Backchannel Authentication) request.",
+            "uri": null
+        }
+    ],
+    "backchannelDeviceRegistration":[
+        {
+            "id": "invalid_request",
+            "description": "The request is missing a required parameter, includes an invalid parameter value, includes a parameter more than once, or is otherwise malformed.",
+            "uri": null
+        },
+        {
+            "id": "unknown_user_id",
+            "description": "The OpenID Provider is not able to identify the end-user.",
+            "uri": null
+        },
+        {
+            "id": "unauthorized_client",
+            "description": "The Client is not authorized to use this authentication flow.",
+            "uri": null
+        },
+        {
+            "id": "access_denied",
+            "description": "The resource owner or OpenID Provider denied the request.",
+            "uri": null
+        }
+    ]
+}
\ No newline at end of file
diff --git a/oxAuth/Server/conf/oxauth-static-conf.json b/oxAuth/Server/conf/oxauth-static-conf.json
new file mode 100644
index 00000000..777c6315
--- /dev/null
+++ b/oxAuth/Server/conf/oxauth-static-conf.json
@@ -0,0 +1,22 @@
+{
+    "baseDn": {
+        "configuration": "ou=configuration,o=gluu",
+        "people": "ou=people,o=gluu",
+        "groups": "ou=groups,o=gluu",
+        "clients": "ou=clients,o=gluu",
+        "sessions": "ou=sessions,o=gluu",
+        "tokens": "ou=tokens,o=gluu",
+        "authorizations": "ou=authorizations,o=gluu",
+        "scopes": "ou=scopes,o=gluu",
+        "attributes": "ou=attributes,o=gluu",
+        "sessionId": "ou=session,o=gluu",
+        "scripts": "ou=scripts,o=gluu",
+        "umaBase": "ou=uma,o=gluu",
+        "umaPolicy": "ou=policies,ou=uma,o=gluu",
+        "u2fBase": "ou=u2f,o=gluu",
+        "metric": "ou=statistic,o=metric",
+        "sectorIdentifiers": "ou=sector_identifiers,o=gluu",
+        "ciba": "ou=ciba,o=gluu",
+        "stat": "ou=stat,o=gluu"
+    }
+}
diff --git a/oxAuth/Server/conf/oxauth-web-keys.json b/oxAuth/Server/conf/oxauth-web-keys.json
new file mode 100644
index 00000000..2170ddf2
--- /dev/null
+++ b/oxAuth/Server/conf/oxauth-web-keys.json
@@ -0,0 +1,139 @@
+{
+  "keys": [
+    {
+      "kid": "15d79fe5-55de-4e3d-a6dd-9ce15e07b382",
+      "kty": "RSA",
+      "use": "sig",
+      "alg": "RS256",
+      "exp": 1581477928977,
+      "n": "oP4Z0lwOinfyWX3-sXCWghuRatQK8yqW63nYRQ_YfWRmIA3pXw4B-XJemhm4xFw9osOPkmv01KYLnzXLdYwGLeab4DS06UtEm8kHAv3WPvBhyEDtHaY_pUdDRo0Dyt4MFV64gAWu1LbM2yESMvzvXZ8H5SIj3o5smneO-r5F197wRSY9wUk6sMr1F7lNpPYO2Luv06RI3tHNzI56l56U9ZxaR8VElDGHqr_e93r3eEV3buYP20yus2u6yoQakiM3_ydYJTTNNAs0CNrYLHoSI3u1QAMgp3mH3TUCGjdMZXxQOeB5iCxvl24FdX3-on-LzrwAgn4-d-C8G-lorOGnsw",
+      "e": "AQAB",
+      "x5c": [
+        "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"
+      ]
+    },
+    {
+      "kid": "ffb5bb6e-0c86-4ee5-8fb1-1366b6eca189",
+      "kty": "RSA",
+      "use": "sig",
+      "alg": "RS384",
+      "exp": 1581477928977,
+      "n": "nxQO7TzhffJDWu4qopRDddk5ovw7JCbDx0MNLNwAdV-RZw-sEPZmcHkg-6W1Yal4G505jpq_afzwJhH89oaxYS9FczkDhZRLLwNnJ6xTcBvwhOYG_bbZlbBdvQVLUfchignboRhCL2c1J8lJnjwQRLdx1ScDKpMShhfNXroeea1t7oNBlU6FrintHQZKBiCbO8VusOBkZjlAp6ED5pbl4IQ6bn-99Ik7pBZTCfCk7-ULhg8mdvG-02-4WVXEBIj76UisJapH7_clpOKOfbrF12uoLKB1W3wyTE3yv_GbwLWUA61fSohZ0kEe_LauBGBSD8TSIanqaxbS9ZioABv4cQ",
+      "e": "AQAB",
+      "x5c": [
+        "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"
+      ]
+    },
+    {
+      "kid": "13a6a2cb-3bc3-4cae-82e9-e5a516288815",
+      "kty": "RSA",
+      "use": "sig",
+      "alg": "RS512",
+      "exp": 1581477928977,
+      "n": "1ZTOQjO3X7Neg2csOriPbtQXsa70-1Ks727stCtJt5IgpCWbXVqX0RYPFIrXmwS4doghTgi8TW7Np8CKlzfAzEZ2bgcTWW0iNkGea2i3puAsn5Kw8FfeBmUMO8hIdWZNyaJ8QO0DHqSYsNP3e3E7j_q0BIi1wUH-eMuMIRUW13JHBQEylLq7TNGcxbATZxfWnSRp51yFDwFx7qXAbFL51GLkkwt95meqlhFsEuUXVtcZ7JP8HTzC6sZBsyxeBICVAkD3bBO7ZVN-dHPmuvvC83peqo8smVo6K_MEXDH_bthDGJNhXFmPzwwH55kaYJCVGwvE5Ps5_aws6CksA1N2uw",
+      "e": "AQAB",
+      "x5c": [
+        "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"
+      ]
+    },
+    {
+      "kid": "e98f2a7c-0ff2-4313-939a-0b6f41d9cfd6",
+      "kty": "EC",
+      "use": "sig",
+      "alg": "ES256",
+      "exp": 1581477928977,
+      "crv": "P-256",
+      "x": "3zaKGVOK1x82yg3Dg3i70Ihwl5dB2A5qNjAYvGM6NMk",
+      "y": "ntwsCcBIGyIq05DAtQg4flnEgG_iQV34AGFED63ZiH0",
+      "x5c": [
+        "MIIBdzCCAR2gAwIBAgIgLukLCPwLSlTOMcmGnqMNsEVCZEmf1GrK6NANj4gHZnAwCgYIKoZIzj0EAwIwITEfMB0GA1UEAwwWb3hBdXRoIENBIENlcnRpZmljYXRlczAeFw0xOTAyMTIwMzI1MjBaFw0yMDAyMTIwMzI1MjhaMCExHzAdBgNVBAMMFm94QXV0aCBDQSBDZXJ0aWZpY2F0ZXMwWTATBgcqhkjOPQIBBggqhkjOPQMBBwNCAATfNooZU4rXHzbKDcODeLvQiHCXl0HYDmo2MBi8Yzo0yZ7cLAnASBsiKtOQwLUIOH5ZxIBv4kFd+ABhRA+t2Yh9oycwJTAjBgNVHSUEHDAaBggrBgEFBQcDAQYIKwYBBQUHAwIGBFUdJQAwCgYIKoZIzj0EAwIDSAAwRQIgDoQbhSUrlhGwLdd9oAWSCU0RpU4iONkclZgSRpYymswCIQClIY/LLNzPs7uHuNgL8+oE1MkK99XfyMRLyo9OjqUMkA=="
+      ]
+    },
+    {
+      "kid": "bc3dca3f-9358-4fba-968e-fadc5adc5c11",
+      "kty": "EC",
+      "use": "sig",
+      "alg": "ES384",
+      "exp": 1581477928977,
+      "crv": "P-384",
+      "x": "swXs-Fgg1L9QrpM4fOo6xaQYxjJm0mzmO5l1ZIAmQySq6dZW-YnR6CyTDK7r4vPH",
+      "y": "7GVlwCIeDQ8veFFY49E7uWc6bhrrwICXahdrdn-m5gvxxwMB56LeVeTdeelBySkT",
+      "x5c": [
+        "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"
+      ]
+    },
+    {
+      "kid": "2f081371-3593-4bd0-87de-4b3b743ec742",
+      "kty": "EC",
+      "use": "sig",
+      "alg": "ES512",
+      "exp": 1581477928977,
+      "crv": "P-521",
+      "x": "AQUib7U9Z9PiPHvwTNK1Crm-QTF8CZhQztcTslxzL6PQeoVaj_VD8z4vSBnTTsbTB-nuetKFQp23i8P19q4-Rvon",
+      "y": "d1fO6w3pupAWvA8lNkiNiOzSgTfiAApjbxUqx9CBhKbDlP7SHn4fAY-pb5zmwSxwLg9hEJfw-mKM6AVxIxT-uno",
+      "x5c": [
+        "MIIB/jCCAWCgAwIBAgIgCwDaynevgt5tRm5lr/lL0e4czouTAdTNLCamwpHBvhkwCgYIKoZIzj0EAwQwITEfMB0GA1UEAwwWb3hBdXRoIENBIENlcnRpZmljYXRlczAeFw0xOTAyMTIwMzI1MjBaFw0yMDAyMTIwMzI1MjhaMCExHzAdBgNVBAMMFm94QXV0aCBDQSBDZXJ0aWZpY2F0ZXMwgZswEAYHKoZIzj0CAQYFK4EEACMDgYYABAEFIm+1PWfT4jx78EzStQq5vkExfAmYUM7XE7Jccy+j0HqFWo/1Q/M+L0gZ007G0wfp7nrShUKdt4vD9fauPkb6JwB3V87rDem6kBa8DyU2SI2I7NKBN+IACmNvFSrH0IGEpsOU/tIefh8Bj6lvnObBLHAuD2EQl/D6YozoBXEjFP66eqMnMCUwIwYDVR0lBBwwGgYIKwYBBQUHAwEGCCsGAQUFBwMCBgRVHSUAMAoGCCqGSM49BAMEA4GLADCBhwJCAcGtxUENsE6RJ6HdqaoR0BzfrmSuR/yrCFuuTHNeJESiAl1EHT70044AOeQAuLvW6F/rfJLqwGXA06PaMUkb+mymAkFbtBqp7LaRU0NBx71KDCspaeJ9ELRHyRxvLUjXZG3ibc2vQbt7u9ObXvgeqLt/1s3PNbAosH4i2dbPby0GXG2Xpw=="
+      ]
+    },
+    {
+      "kid": "017919eb-2117-41af-b471-70ab5843dc44",
+      "kty": "RSA",
+      "use": "sig",
+      "alg": "PS256",
+      "exp": 1581477928977,
+      "n": "pHPcKM8W9S4pzmN-yfmvir-ZEVLyZyCSMjcOYehgsY9hlf5SxPcw9r4guAGW_Y2JUrzDXa17dPFS7lr8iDfh2TJeAMgvVixTJUbY-mdgpLzeu0ONsyft60ZZ_zeCsZf_zMQaUAcnxzUhCxe3n21uPwfRIlwQC2y1wb3n5qe-l0q6c3ezy3vrLV7mkDjFAD-X_A67StzMpHd_Px_8eKo8XQXtuuifCdIi5u_r4-ReFHAIA-DDcm_f4sEdjXJ8t7VJjsLqfYkpS3OdkiB4f2IME1DuYUKoXKfb8MAZxg5DQotE0T2XVzKRqrAYTMxgNCUXQ3Ge_3JCryRI7AI1O4whFQ",
+      "e": "AQAB",
+      "x5c": [
+        "MIIDazCCAh+gAwIBAgIgQ0a0sT+SQeE3WpaBFlIbhYqWX7d0Ww8VTN4u+3DkFeQwQQYJKoZIhvcNAQEKMDSgDzANBglghkgBZQMEAgEFAKEcMBoGCSqGSIb3DQEBCDANBglghkgBZQMEAgEFAKIDAgEgMCExHzAdBgNVBAMMFm94QXV0aCBDQSBDZXJ0aWZpY2F0ZXMwHhcNMTkwMjEyMDMyNTIwWhcNMjAwMjEyMDMyNTI4WjAhMR8wHQYDVQQDDBZveEF1dGggQ0EgQ2VydGlmaWNhdGVzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEApHPcKM8W9S4pzmN+yfmvir+ZEVLyZyCSMjcOYehgsY9hlf5SxPcw9r4guAGW/Y2JUrzDXa17dPFS7lr8iDfh2TJeAMgvVixTJUbY+mdgpLzeu0ONsyft60ZZ/zeCsZf/zMQaUAcnxzUhCxe3n21uPwfRIlwQC2y1wb3n5qe+l0q6c3ezy3vrLV7mkDjFAD+X/A67StzMpHd/Px/8eKo8XQXtuuifCdIi5u/r4+ReFHAIA+DDcm/f4sEdjXJ8t7VJjsLqfYkpS3OdkiB4f2IME1DuYUKoXKfb8MAZxg5DQotE0T2XVzKRqrAYTMxgNCUXQ3Ge/3JCryRI7AI1O4whFQIDAQABoycwJTAjBgNVHSUEHDAaBggrBgEFBQcDAQYIKwYBBQUHAwIGBFUdJQAwQQYJKoZIhvcNAQEKMDSgDzANBglghkgBZQMEAgEFAKEcMBoGCSqGSIb3DQEBCDANBglghkgBZQMEAgEFAKIDAgEgA4IBAQCR4IM1U6ya8Ul5cL982FYbgDXbeOSQTbHBZT6rnN12ygSbP5LtcBbnTU2L5N0ghcabtUAntLk79CFkS4tcD3baaB8VQZ9jvMahqs7RJ45ZVK2wGFCimpzatQgxtwxA3ucOFFa6CHN4U9ykgShgXvu4fctOD+II0XGI7+yoL5YLiBQK6KuZ9c4nfZkgxfYUjCqkh6EZj5I9qt3C3p7vEXhFZw5ryGnCmRu9XpCNQz3NvGuU6vCfXhR1kn5zjy+DC8cg1iGeYnongrlvx0gFRzfTmkQhPM3EjeVI6YGPgbHYy5TNriUFGijL9mD205tlP6jNCY7vCf7X6V86Xj1pBqXV"
+      ]
+    },
+    {
+      "kid": "79dea39d-a357-4ec1-a68b-73be33ef7ffa",
+      "kty": "RSA",
+      "use": "sig",
+      "alg": "PS384",
+      "exp": 1581477928977,
+      "n": "9oGR519MSgBAzHye7De6LB_FjzDFnuWQNuhuxX6vT1xzOysP_i9s63zieOGgqfR8z2KwmI1TA1KqlsW2Bt2kq-z5cXorxvJeVA6AYpbkVpB3DVxD8-VIouR6iPKCgQd83y-j9qwzrFRAb0W9Q96kRIsg-1s82t-Sh9CkAHiJ6ZPRH_X7u8neyt_cpi69mFloIIIar8X1XM9A7akDgSb4Qc_j7hE8KAVBXJbS6D7R2yvh1vYIzmM_oAovnFKHUWfKMWKqe3dis4ZW4VfoA0yz-quEdptYQYQlkv23-9eq-xgyV0YqGBfnrY2Vp-vOVv9Urn3VvlG-iv_zUcWsWbPEWQ",
+      "e": "AQAB",
+      "x5c": [
+        "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"
+      ]
+    },
+    {
+      "kid": "995f4140-287e-4ae7-b919-b2e66f9f5b5a",
+      "kty": "RSA",
+      "use": "sig",
+      "alg": "PS512",
+      "exp": 1581477928977,
+      "n": "vMU0sknxD-cjUHgZG0G3ulq0vchVA1T2JpxIGp_mLwqCAf6mv63gEqa3-eiwOJa2UYqcG024zGYmB2Ky9zgN5_FG1hxsUPuF0kFkt0HtZNbjMW4WXR1bCZjRpcJ7PR0fvkLrWiHniLDIIZ9u_ECKlkoHUHefhco0N5SBvYedAmVE2J95E-b9h1KL7dl44BXXjic-ieHvrMBLrGcyaEZ0cSpkMR9W3hLqbpskVIhVLClDd2KqaiXBu-8sfqZyl79wm-U4r5QfldvHj5aGUPQTeyMCpNF14GOCicui4G7J5TULPPGoEeLpCgsU90KhWGBzLTojTxkmbMenVywnp7K-lQ",
+      "e": "AQAB",
+      "x5c": [
+        "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"
+      ]
+    },
+    {
+      "kid": "6f6ff195-e76c-48ea-b8a8-ffbb45f3a9df",
+      "kty": "RSA",
+      "use": "enc",
+      "alg": "RSA-OAEP",
+      "exp": 1581477928977,
+      "n": "mRhr7pyxWj5zRqs1bmweMlx2kAqrwviRU9bbder3zgV7yM7C8z6-l9RkFZstsLJBpJl9r5CHDW8Hae-DKfjN6v3WgRz9LS5UXbKuEVaBw3gByffsl6NUJqEDV7sub3DItt8lbOu98VZFQqEk35e5RK0461URswWP4WWft9s7TuwaC8rBSQPE41B71XyMlm77ZZSmPj9N62Op2-7WodzHcj2N-BpnEl0DTL9-FxK7m44hgWtzuco0xEHHACfXZKrrGGpafRU2NnANIhLORDvuNXZAc0WC1f4YkeyNuuXdkEhe68NkvRu3P8QQhYunnXZiLRlyq0Fy8Zn5hGgJzlhkGw",
+      "e": "AQAB",
+      "x5c": [
+        "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"
+      ]
+    },
+    {
+      "kid": "ab8ece4b-111e-4a44-8063-8daec44076cc",
+      "kty": "RSA",
+      "use": "enc",
+      "alg": "RSA1_5",
+      "exp": 1581477928977,
+      "n": "3Qt0Z0TqgX8nv3gcLafO-o70rYLCzl-8kNr6rW3gWVO7KR0GF60eA1uJv-MNn4S1RlPr5wrhNHKQ6Z62N6hCQHekQOP5aEadb3m8f8L4VQ_P8Jo77uUz8Yngr8c9_G9OY8rNLd_IheS1Jj9qc8fExEVtmlWAMwsfmVxmfIDu9v3Jyd-c3QQLUzSP_zqxb1e4z9AVWGq_w2h5WO4FoexyitHAw3681lb7z3Z68nXtvrtlPvnJdBCTlgxI79mBzkPvbzfrbGdCylC8YRymhX-inHWG4N9ZZfmPUk-fsVabr5C290Fn4KYktLCisRpwxVjOO2etld1KBVwqoX0Opp0w3w",
+      "e": "AQAB",
+      "x5c": [
+        "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"
+      ]
+    }
+  ]
+}
\ No newline at end of file
diff --git a/oxAuth/Server/conf/salt b/oxAuth/Server/conf/salt
new file mode 100644
index 00000000..b1d581ac
--- /dev/null
+++ b/oxAuth/Server/conf/salt
@@ -0,0 +1 @@
+encodeSalt=${config.oxauth.salt}
\ No newline at end of file
diff --git a/oxAuth/Server/integrations.deprecatred/inwebo/InWeboExternalAuthenticator.py b/oxAuth/Server/integrations.deprecatred/inwebo/InWeboExternalAuthenticator.py
new file mode 100644
index 00000000..f608b9ce
--- /dev/null
+++ b/oxAuth/Server/integrations.deprecatred/inwebo/InWeboExternalAuthenticator.py
@@ -0,0 +1,234 @@
+# oxAuth is available under the MIT License (2008). See http://opensource.org/licenses/MIT for full text.
+# Copyright (c) 2016, Gluu
+#
+# Author: Yuriy Movchan
+#
+
+from org.gluu.oxauth.security import Identity
+from org.gluu.service.cdi.util import CdiUtil
+from org.gluu.model.custom.script.type.auth import PersonAuthenticationType
+from org.gluu.oxauth.service import UserService, AuthenticationService
+from org.gluu.oxauth.service.net import HttpService
+from org.gluu.service import XmlService
+from org.gluu.oxauth.service import EncryptionService 
+from org.gluu.util import StringHelper
+from org.gluu.util import ArrayHelper
+from java.lang import Boolean
+
+import java
+import sys
+import json
+
+class PersonAuthentication(PersonAuthenticationType):
+    def __init__(self, currentTimeMillis):
+        self.currentTimeMillis = currentTimeMillis
+        self.client = None
+
+    def init(self, configurationAttributes):
+        print "InWebo. Initialization"
+
+        iw_cert_store_type = configurationAttributes.get("iw_cert_store_type").getValue2()
+        iw_cert_path = configurationAttributes.get("iw_cert_path").getValue2()
+        iw_creds_file = configurationAttributes.get("iw_creds_file").getValue2()
+
+        # Load credentials from file
+        f = open(iw_creds_file, 'r')
+        try:
+            creds = json.loads(f.read())
+        except:
+            return False
+        finally:
+            f.close()
+
+        iw_cert_password = creds["CERT_PASSWORD"]
+        try:
+            encryptionService = CdiUtil.bean(EncryptionService)
+            iw_cert_password = encryptionService.decrypt(iw_cert_password)
+        except:
+            return False
+
+        httpService = CdiUtil.bean(HttpService)
+        self.client = httpService.getHttpsClient(None, None, None, iw_cert_store_type, iw_cert_path, iw_cert_password)
+        print "InWebo. Initialized successfully"
+
+        return True   
+
+    def destroy(self, configurationAttributes):
+        print "InWebo. Destroy"
+        print "InWebo. Destroyed successfully"
+        return True
+
+    def getApiVersion(self):
+        return 1
+
+    def isValidAuthenticationMethod(self, usageType, configurationAttributes):
+        return True
+
+    def getAlternativeAuthenticationMethod(self, usageType, configurationAttributes):
+        return None
+
+    def authenticate(self, configurationAttributes, requestParameters, step):
+        userService = CdiUtil.bean(UserService)
+        authenticationService = CdiUtil.bean(AuthenticationService)
+
+        identity = CdiUtil.bean(Identity)
+
+        iw_api_uri = configurationAttributes.get("iw_api_uri").getValue2()
+        iw_service_id = configurationAttributes.get("iw_service_id").getValue2()
+        iw_helium_enabled = Boolean(configurationAttributes.get("iw_helium_enabled").getValue2()).booleanValue()
+
+        if (iw_helium_enabled):
+            identity.setWorkingParameter("iw_count_login_steps", 1)
+
+        credentials = identity.getCredentials()
+
+        user_name = credentials.getUsername()
+
+        if (step == 1):
+            print "InWebo. Authenticate for step 1"
+
+            print "InWebo. Authenticate for step 1. iw_helium_enabled:", iw_helium_enabled
+            user_password = credentials.getPassword()
+            if (iw_helium_enabled):
+                login_array = requestParameters.get("login")
+                if ArrayHelper.isEmpty(login_array):
+                    print "InWebo. Authenticate for step 1. login is empty"
+                    return False
+    
+                user_name = login_array[0]
+
+                password_array = requestParameters.get("password")
+                if ArrayHelper.isEmpty(password_array):
+                    print "InWebo. Authenticate for step 1. password is empty"
+                    return False
+    
+                user_password = password_array[0]
+
+                response_validation = self.validateInweboToken(iw_api_uri, iw_service_id, user_name, user_password)
+                if (not response_validation):
+                    return False
+
+                logged_in = False
+                if (StringHelper.isNotEmptyString(user_name)):
+                    userService = CdiUtil.bean(UserService)
+                    logged_in = authenticationService.authenticate(user_name)
+    
+                return logged_in
+            else:
+                logged_in = False
+                if (StringHelper.isNotEmptyString(user_name) and StringHelper.isNotEmptyString(user_password)):
+                    userService = CdiUtil.bean(UserService)
+                    logged_in = authenticationService.authenticate(user_name, user_password)
+    
+                return logged_in
+            
+            return True
+        elif (step == 2):
+            print "InWebo. Authenticate for step 2"
+
+            passed_step1 = self.isPassedDefaultAuthentication
+            if (not passed_step1):
+                return False
+
+            iw_token_array = requestParameters.get("iw_token")
+            if ArrayHelper.isEmpty(iw_token_array):
+                print "InWebo. Authenticate for step 2. iw_token is empty"
+                return False
+
+            iw_token = iw_token_array[0]
+
+            response_validation = self.validateInweboToken(iw_api_uri, iw_service_id, user_name, iw_token)
+            
+            return response_validation
+        else:
+            return False
+
+    def prepareForStep(self, configurationAttributes, requestParameters, step):
+        if (step == 1):
+            print "InWebo. Prepare for step 1"
+            identity = CdiUtil.bean(Identity)
+
+            iw_helium_enabled = Boolean(configurationAttributes.get("iw_helium_enabled").getValue2()).booleanValue()
+            identity.setWorkingParameter("helium_enabled", iw_helium_enabled)
+
+            iw_helium_alias = None
+            if (iw_helium_enabled):
+                iw_helium_alias = configurationAttributes.get("iw_helium_alias").getValue2()
+                identity.setWorkingParameter("helium_alias", iw_helium_alias)
+
+            print "InWebo. Prepare for step 1. Helium status:", iw_helium_enabled
+
+        return True
+
+    def getExtraParametersForStep(self, configurationAttributes, step):
+        return None
+
+    def getCountAuthenticationSteps(self, configurationAttributes):
+        identity = CdiUtil.bean(Identity)
+        if (identity.isSetWorkingParameter("iw_count_login_steps")):
+            return identity.getWorkingParameter("iw_count_login_steps")
+        
+        return 2
+
+    def getPageForStep(self, configurationAttributes, step):
+        if (step == 1):
+            return "/auth/inwebo/iwlogin.xhtml"
+        if (step == 2):
+            return "/auth/inwebo/iwauthenticate.xhtml"
+        else:
+            return ""
+
+    def isPassedDefaultAuthentication(self):
+        identity = CdiUtil.bean(Identity)
+        credentials = identity.getCredentials()
+
+        user_name = credentials.getUsername()
+        passed_step1 = StringHelper.isNotEmptyString(user_name)
+
+        return passed_step1
+
+    def validateInweboToken(self, iw_api_uri, iw_service_id, user_name, iw_token):
+        httpService = CdiUtil.bean(HttpService)
+        xmlService = CdiUtil.bean(XmlService)
+
+        if StringHelper.isEmpty(iw_token):
+            print "InWebo. Token verification. iw_token is empty"
+            return False
+
+        request_uri = iw_api_uri + "?action=authenticate" + "&serviceId=" + httpService.encodeUrl(iw_service_id) + "&userId=" + httpService.encodeUrl(user_name) + "&token=" + httpService.encodeUrl(iw_token)
+        print "InWebo. Token verification. Attempting to send authentication request:", request_uri
+        # Execute request
+        http_response = httpService.executeGet(self.client, request_uri)
+            
+        # Validate response code
+        response_validation = httpService.isResponseStastusCodeOk(http_response)
+        if response_validation == False:
+            print "InWebo. Token verification. Get unsuccessful response code"
+            return False
+
+        authentication_response_bytes = httpService.getResponseContent(http_response)
+        print "InWebo. Token verification. Get response:", httpService.convertEntityToString(authentication_response_bytes)
+
+        # Validate authentication response
+        response_validation = httpService.isContentTypeXml(http_response)
+        if response_validation == False:
+            print "InWebo. Token verification. Get invalid response"
+            return False
+        
+        # Parse XML response
+        try:
+            xmlDocument = xmlService.getXmlDocument(authentication_response_bytes)
+        except Exception, err:
+            print "InWebo. Token verification. Failed to parse XML response:", err
+            return False
+
+        result_code = xmlService.getNodeValue(xmlDocument, "/authenticate", None)
+        print "InWebo. Token verification. Result after parsing XML response:", result_code
+        
+        response_validation = StringHelper.equals(result_code, "OK")
+        print "InWebo. Token verification. Result validation:", response_validation
+        
+        return response_validation
+
+    def logout(self, configurationAttributes, requestParameters):
+        return True
diff --git a/oxAuth/Server/integrations.deprecatred/oneid/OneIdExternalAuthenticator.py b/oxAuth/Server/integrations.deprecatred/oneid/OneIdExternalAuthenticator.py
new file mode 100644
index 00000000..77a7a278
--- /dev/null
+++ b/oxAuth/Server/integrations.deprecatred/oneid/OneIdExternalAuthenticator.py
@@ -0,0 +1,236 @@
+# oxAuth is available under the MIT License (2008). See http://opensource.org/licenses/MIT for full text.
+# Copyright (c) 2016, Gluu
+#
+# Author: Yuriy Movchan
+#
+
+import json
+from java.util import Arrays
+from oneid import OneID
+from org.apache.http.entity import ContentType
+from org.gluu.model.custom.script.type.auth import PersonAuthenticationType
+from org.gluu.oxauth.security import Identity
+from org.gluu.oxauth.service import UserService, AuthenticationService
+from org.gluu.oxauth.service.net import HttpService
+from org.gluu.service.cdi.util import CdiUtil
+from org.gluu.util import ArrayHelper
+from org.gluu.util import StringHelper
+
+
+class PersonAuthentication(PersonAuthenticationType):
+    def __init__(self, currentTimeMillis):
+        self.currentTimeMillis = currentTimeMillis
+
+    def init(self, configurationAttributes):
+        print "OneId. Initialization"
+        print "OneId. Initialized successfully"
+        return True   
+
+    def destroy(self, configurationAttributes):
+        print "OneId. Destroy"
+        print "OneId. Destroyed successfully"
+        return True
+
+    def getApiVersion(self):
+        return 1
+
+    def isValidAuthenticationMethod(self, usageType, configurationAttributes):
+        return True
+
+    def getAlternativeAuthenticationMethod(self, usageType, configurationAttributes):
+        return None
+
+    def authenticate(self, configurationAttributes, requestParameters, step):
+        identity = CdiUtil.bean(Identity)
+
+        userService = CdiUtil.bean(UserService)
+        authenticationService = CdiUtil.bean(AuthenticationService)
+        httpService = CdiUtil.bean(HttpService)
+
+        server_flag = configurationAttributes.get("oneid_server_flag").getValue2()
+        callback_attrs = configurationAttributes.get("oneid_callback_attrs").getValue2()
+        creds_file = configurationAttributes.get("oneid_creds_file").getValue2()
+
+        # Create OneID
+        authn = OneID(server_flag)
+
+        # Set path to credentials file
+        authn.creds_file = creds_file
+
+        if (step == 1):
+            print "OneId. Authenticate for step 1"
+
+            # Find OneID request
+            json_data_array = requestParameters.get("json_data")
+            if ArrayHelper.isEmpty(json_data_array):
+                print "OneId. Authenticate for step 1. json_data is empty"
+                return False
+
+            request = json_data_array[0]
+            print "OneId. Authenticate for step 1. request: " + request
+
+            if (StringHelper.isEmptyString(request)):
+                return False
+            
+            authn.set_credentials()
+
+            # Validate request
+            http_client = httpService.getHttpsClientDefaulTrustStore()
+            auth_data = httpService.encodeBase64(authn.api_id + ":" + authn.api_key)
+            http_response = httpService.executePost(http_client, authn.helper_server + "/validate", auth_data, request, ContentType.APPLICATION_JSON)
+            validation_content = httpService.convertEntityToString(httpService.getResponseContent(http_response))
+            print "OneId. Authenticate for step 1. validation_content: " + validation_content
+            
+            if (StringHelper.isEmptyString(validation_content)):
+                return False
+
+            validation_resp = json.loads(validation_content)
+            print "OneId. Authenticate for step 1. validation_resp: " + str(validation_resp)
+
+            if (not authn.success(validation_resp)):
+                return False
+
+            response = json.loads(request)
+            for x in validation_resp:
+                response[x] = validation_resp[x]
+
+            oneid_user_uid = response['uid']
+            print "OneId. Authenticate for step 1. oneid_user_uid: " + oneid_user_uid
+
+            # Check if the is user with specified oneid_user_uid
+            find_user_by_uid = userService.getUserByAttribute("oxExternalUid", "oneid:" + oneid_user_uid)
+
+            if (find_user_by_uid == None):
+                print "OneId. Authenticate for step 1. Failed to find user"
+                print "OneId. Authenticate for step 1. Setting count steps to 2"
+                identity.setWorkingParameter("oneid_count_login_steps", 2)
+                identity.setWorkingParameter("oneid_user_uid", oneid_user_uid)
+                return True
+
+            found_user_name = find_user_by_uid.getUserId()
+            print "OneId. Authenticate for step 1. found_user_name: " + found_user_name
+
+            identity = CdiUtil.bean(Identity)
+            credentials = identity.getCredentials()
+
+            credentials.setUsername(found_user_name)
+            credentials.setUser(find_user_by_uid)
+            
+            print "OneId. Authenticate for step 1. Setting count steps to 1"
+            identity.setWorkingParameter("oneid_count_login_steps", 1)
+
+            return True
+        elif (step == 2):
+            print "OneId. Authenticate for step 2"
+
+            sessionAttributes = identity.getSessionId().getSessionAttributes()
+            if (sessionAttributes == None) or not sessionAttributes.containsKey("oneid_user_uid"):
+                print "OneId. Authenticate for step 2. oneid_user_uid is empty"
+                return False
+
+            oneid_user_uid = sessionAttributes.get("oneid_user_uid")
+            passed_step1 = StringHelper.isNotEmptyString(oneid_user_uid)
+            if (not passed_step1):
+                return False
+
+            identity = CdiUtil.bean(Identity)
+            credentials = identity.getCredentials()
+
+            user_name = credentials.getUsername()
+            passed_step1 = StringHelper.isNotEmptyString(user_name)
+
+            if (not passed_step1):
+                return False
+
+            identity = CdiUtil.bean(Identity)
+            credentials = identity.getCredentials()
+
+            user_name = credentials.getUsername()
+            user_password = credentials.getPassword()
+            logged_in = False
+            if (StringHelper.isNotEmptyString(user_name) and StringHelper.isNotEmptyString(user_password)):
+                logged_in = authenticationService.authenticate(user_name, user_password)
+
+            if (not logged_in):
+                return False
+
+            # Check if there is user which has oneid_user_uid
+            # Avoid mapping OneID account to more than one IDP account
+            find_user_by_uid = userService.getUserByAttribute("oxExternalUid", "oneid:" + oneid_user_uid)
+
+            if (find_user_by_uid == None):
+                # Add oneid_user_uid to user one id UIDs
+                find_user_by_uid = userService.addUserAttribute(user_name, "oxExternalUid", "oneid:" + oneid_user_uid)
+                if (find_user_by_uid == None):
+                    print "OneId. Authenticate for step 2. Failed to update current user"
+                    return False
+
+                return True
+            else:
+                found_user_name = find_user_by_uid.getUserId()
+                print "OneId. Authenticate for step 2. found_user_name: " + found_user_name
+    
+                if StringHelper.equals(user_name, found_user_name):
+                    return True
+        
+            return False
+        else:
+            return False
+
+    def prepareForStep(self, configurationAttributes, requestParameters, step):
+        identity = CdiUtil.bean(Identity)
+        authenticationService = CdiUtil.bean(AuthenticationService)
+
+        server_flag = configurationAttributes.get("oneid_server_flag").getValue2()
+        callback_attrs = configurationAttributes.get("oneid_callback_attrs").getValue2()
+        creds_file = configurationAttributes.get("oneid_creds_file").getValue2()
+
+        # Create OneID
+        authn = OneID(server_flag)
+
+        # Set path to credentials file
+        authn.creds_file = creds_file 
+
+        if (step == 1):
+            print "OneId. Prepare for step 1"
+
+            facesContext = CdiUtil.bean(FacesContext)
+            request = facesContext.getExternalContext().getRequest()
+            validation_page = request.getContextPath() + "/postlogin.htm?" + "request_uri=&" + authenticationService.parametersAsString()
+            print "OneId. Prepare for step 1. validation_page: " + validation_page
+
+            oneid_login_button = authn.draw_signin_button(validation_page, callback_attrs, True)
+            print "OneId. Prepare for step 1. oneid_login_button: " + oneid_login_button
+            
+            identity.setWorkingParameter("oneid_login_button", oneid_login_button)
+            identity.setWorkingParameter("oneid_script_header", authn.script_header)
+            identity.setWorkingParameter("oneid_form_script", authn.oneid_form_script)
+
+            return True
+        elif (step == 2):
+            print "OneId. Prepare for step 2"
+
+            return True
+        else:
+            return False
+
+    def getExtraParametersForStep(self, configurationAttributes, step):
+        if (step == 2):
+            return Arrays.asList("oneid_user_uid")
+        
+        return None
+
+    def getCountAuthenticationSteps(self, configurationAttributes):
+        identity = CdiUtil.bean(Identity)
+        if (identity.isSetWorkingParameter("oneid_count_login_steps")):
+            return identity.getWorkingParameter("oneid_count_login_steps")
+        
+        return 2
+
+    def getPageForStep(self, configurationAttributes, step):
+        if (step == 1):
+            return "/auth/oneid/oneidlogin.xhtml"
+        return "/auth/oneid/oneidpostlogin.xhtml"
+
+    def logout(self, configurationAttributes, requestParameters):
+        return True
diff --git a/oxAuth/Server/integrations.deprecatred/oneid/docs/workflow.png b/oxAuth/Server/integrations.deprecatred/oneid/docs/workflow.png
new file mode 100644
index 0000000000000000000000000000000000000000..ff90de95f8f4a209237cf8422a84de18fc3c7189
GIT binary patch
literal 37612
zcmce;cRbep`#!EsA`ulKnzE9Wvbv%~D0{oh-i3&WyRKv;WEGhuo9t02BiWlsNcK#W
z&G)#f`?KEfKfd4J_+IbF<9!pZ>-BoRp67WU=W!h8)9bRr1*+|g+sVkts4mJ#DUp$F
zX&@upAVa<p|3cvq5Q+b6y(V`-ifo<qzv!a)Kr*reWEZ8*s@!@u@!3gI<;R-D+Wg;F
zS@-^|yL$1)27yZ#w`}PSD5X+wmhEoQY0lPG8EO+aSJ!M?_EvzeuJ+rt==*mQf?V0@
zyJ-xs&}`mtcDIK}uS8GD?K^fR9#1#z4+$9ln*Nl3dRDJtDJ<&*R}C#L;n$1CQ}4F=
zKi~8f+%={A^NqVdjn#%fU(?XWa{u!?1VZ+fKVM7Ac;^1|&*T(M4F7!1#@0o;Q_}0e
zAt~+OUy+d!iT~$sE;+lp@YRp*$fc3yIG=!k0AJraf3|bE)}OVswLdW$$w!GtT;1z&
z_2kKuJ$II^hTNV$ed=`UR&A7o#L=Vig0kwi3*Wxf*47Fg^Ypt<xu;p-7#Eji+ub0o
zx?pV`o$jPTa~|D~YI)Nia+RJFtADO6&h989dU$MC<r62IJGakcmzNY{GkLS5oSdA;
zRS#-rS@MEAtEbCO{QdXeb@f!ZG15(&J_-v9%P^=^czSZM+>360x;H&JnUj}SQBF>~
zz&0*4RQ*#_y13K#f%=Fux96uOJJR*Fw6w<QgTlkln71Z;`}XaEA4`rN2ebTgZlRUz
z^s|FCQ93;OnT8Z>hVSlfnbZwc8y+1MG5p})+S;0*pZ_xr&uHYhyxVSEfWXj?4t)uy
z?}ylkYnvuUM>W;dLV|)+G&P;(r#=T9ykKl-c<R)tYzIN(+9zM8rg#FYSj1fx#?woB
zUOT2|X4;OmCU&IhW@ToY`_j5Ce0jicQlEXko>_A_SIcU2(>Cgqw6r6{Cr_W^`Wm*K
zT^jqCVX$xCKHWllr@>%#VzO4HpxfHY>~MqIw|CoGUdp$$l=WgWHyV<5hGgLC_Zr?x
zKh~o}4GoQFr*7QUyRAsh!O0nZ>c%y5bMqTFW|pT*)+h6Na~<T3>%s(W2V|BOs{)UH
zt@M+y8>(Gho_Cz=`mwe=o#!yx_=x@2tLrsG;aUIUu3Rf7wnJQ8m-O}ZJ!Nm&e|_)E
zf8s>`?Rjegfxy%&iapw}jX1V}EV}C2wQC~}<imw-#4r#%v4NVNUy#3aiJYz1ZQWH>
zm7dLTs=HuEnM_=BY;3HE-4K@R$&)7wi;JuHU~eY|28Q}bu}|;bz5DPX0S}7x&H~%2
zaHNE?atrerhsK5nJ6Wx{o_gGMnCy~{TI(AeRMpp4BrkAVFP37zy7xR6!|=cWwv_GJ
zXYTG~9#^sYAL7^MI_Zjwi%V9%`-F#wdwEqo+{eG*SZ`CZ%CLX`#K3@|si~=n$sStT
z$IqVCmY4`Mh}#Wa>M~C&-N`EcLV2h@LXNXnBRR3Ft82dJc0*@pXKSm#i4)&S?^BAN
zd8W8iK&^1>`RSzOWQnzfuX;t!`<R%{h=|-L5?{Q0`F&zroz=?J>*<XfH>RYdAU5>w
zEDlDTaTF2|xLzV8lrMWkF|zi=rF6X_>(7OPH~OWp_bDlTE(RVkyVdO99`nWd)==%!
z_V#ux%+;$`7Z(@rZKb-l*Mm~(_z(JqIE5<?4noZB2#4beHedS8nfJtHzLXC)#;=;0
zi698hI8F(uX{XX3Bz70wc3hep#ams=IK{=qB`mDYvCT{Bq~Qk|!iS!s+k(3{V<#O$
zghhMd$K-760SSeLT0c5)Els+$iOTUBArbs0)NJLYrKJ@W_i3(~n##Bd3JBCzRmEft
z3=N$Y5#gAOS(=|-AE=_^`DE7evT4+9eRaOS!e?~2C0>y;xF=3-55Y4sGP0}Cj7Nqi
zbSIP0Lxt`)PW&~QxZt^Qb$!>0%!%am;v@kZGc%5;rIvk@6B7>~J{(D3Uz;y+a!|N-
zEq1JJGkd@>F|mjveUZ<vT)rILWtf^}7xOnZehWujT%3LNGZ8z1>@dzeo8DsY5+n;O
z-S_>PsbbMN_FZFmh3Yw9<cKRSUgIrUDUD}k<do(KRYYn_Ag7{AO;7I-%{T9$WMX2n
zu&}5|nV6ikv$JcXj%$y(s+pUg|HOg0vZ5kRJI|Wvzw6-ngu0LhrTBqxn_@QN$ml3X
z+GB239r2o@lX@OkgTl;AOe&3HTP0KJIgcH?T-eam)D%FifB7;^$J-o>4q8I_H9p~X
zq?MH~U8KwwR$VRY+$5W4{kc_qYb-8l?p}Xyg{rFR(9jU>CM`8px4`x=+l#a`>-DwO
zxejR`26}q>eS7yxNlQmaxUH4#lsH6OL52z!vNAXS@j{7%O^PQ};?_6GAL?~m_;%1S
zGs`pOAap*zc3hupQ6&1mefu`A_f9y?_tE&MW;z+dhduf(H<sqiyrfD?*07ik4i3vd
zCw(41e0KWg@rL@vZ)H1~7#S_CtlU;+Dt-3wrs)-h(Xa<r-C6juO`N&8v{NuUEHEmH
zm5C`lBt*!#b}!*W;8Dfm<*75`%=PixvO^S7bzlEP7CJ&i5DqQOeC>6a^(`oHI(M#2
z+otGnU{&_da|UrPt3NvCPIDxx6dKipq!%w$mzCY4vHd<!^<%t)Q!P5<ovM<W8aDZj
znf{9J-@kwOAVZM3c#*=&cGhLC>B5#RTe82H)Iam`^-WDpZFBj&EzT)XnUH>dv@3_R
z$kx|<v5&T==4ef3PEHOVA79Dp&ri4z3O3wtvRbN=Ho|4O@7~UlpI6I0cf~74^^~}|
zxw@`qnKT4_AN~AVnC(Sj;nMfP8m(nIWL?eM4{qZ>m58s<sk1Jwu5Cv=y}e^8#Fr=d
zf0nG<&=LB-el^?ZY%4?lRK)H`O(rUZ!CnuV%)j1k<e^(SRG+5%+E)3N-lx*fok0Ns
zF>`bccZ-+CI4hXr5);i3-t*({eVIn*T3c1tI&DK0$}1{3)Gk^Kzv2oH4!-%V@7;?R
zhn8}RizD?YX;@ek;!TTlrN<{+c%m;`<y<Sc{c|ElIp653uW(OaC%=ocq}?c%$F`um
zy*-4ce_&v4Zd5s}uZFi|2Q@Wv*UcL@_@eGy=0-%6d@H3S(ij+geeF2i>_tk2JO9dk
z^(rAbx#dK@Y`#VDBUXue`4=5uuZMaG{^(*T&{23!`1$iE7FD1Q3CWbPt|QlU%I@&$
z(vO40&D*xwDH9oWQookooJOG>2`Vf+&8Q-H;zV?+nq_pmca`Bu#w+;S)WpOX3R9in
zmFXOA^)#IrI)iK17@5?_$lTxeaTFj!33UJ9@?(`y3wPIBB#`qVjXj&1oRpVnq%$CV
zK$@XoL(&nh$t3#s-dXm&-CRETDUX6pL_~!2N7Wayy1KNM&dw;_@-{h(3h)!<so=sL
z%a5=A?g?#ra->b-zyV3CBfdA0=UPZFehG<nluboNMbyY0uBPNghUbzQ>g%_;zS+V?
ze0}ELBSN6_`Exr>RW&qZShM<vhbuqVXW5T7$H|4-nuRs(#B$FqrSKWN&o3xw@)8mf
z3Opk3{pe9zQqt0JlpFR-!JIEu8g1HZayH-`TzlT7Bd>3KJ&y=?%2m(s2o4S=`p2Am
zz{teZ;$=|z$Y`&}&o{;^%Wq!1AkxI%QVqC#uf|R1ydR6a#NNGoAMWM5tLOhXB0@f0
z@{4{3%4K_ND-FQ|Wz*bTmJUI8KBr}bJCI1j^8rQsEh`CXHVVuYJZ@`ibDZkF!nD2W
z!-r_rk((R#XJ}lK@RVBb?RgOSsj)?xAcJh+;E=0i?Z+Z!u9O{@kl;yEdg9^Oa=a5m
z`H9-vr~Cz`a+fdr57CCJxJ_9qUo?m~M_%CkV+=r#SGQ2AB<#tP#uh@PP28Zw8TD(*
zoA|mfo>F(h#tHk#&*&`4nRX!VLhLc~^THv)!A(2ou1fBovT$-L=%0JPRo$z9)v=o^
zEQ;du$Hwb+ogY75r=!}j;}GpdY3cjzVc(|h!osiB-DlK^{2Ch{Us)ke&W3B9+vFR5
ztXYfCnxSImBtl(KP_<g#!f+qrb(3fw?mz6jqN3lL2ybAOO7DyguKmdq8FD@p_xXAC
z6)(M>bZ<%@%dYH;KiDs+tE;cw<mBS2ZD=@3oEvF6_hXbrl=3()?>ZoJLBUX6c>Kb~
zu#ncMt9z%aDG&SJtVhBCI^xkSG&DBO#WDZ^6}@@W{r0UpP3h6DQWJ+X(<R0u&2x4&
z@6DTE1X!hPTj+bQH6u+J92^8neC}(mC*1YvQ_D_ZT=i#nrhCM&aqV@>`i_5@dU++~
zRo8<iQ)b3AkBW+l?s9Bv@fe2YAo0BH>_fz3;+<0d?*=7!Yzv<0>7O$j5l*H5YJ6oP
z4!_p+mTFIJ?EE9N8v+!+9={>w9-bGh;tPHE^xam2!`J%W-2*J_XlvU=C@m{%i<C?n
z>&!YTwoloGcLL86VVU?vx;{xGL^sQrYE=~2(RfexwTkUao8_0Z0&7BfZ9W$UF9)BY
zcoAwNkhmtAe*Q{OWTZmFqy#<!(2$BrC?zK5@1G~4l#Rr*?A-e7`0kgiEy;1PwyDjs
zwSF+?);%8F{Pu#m`Ef^&l{(?xxzU!&+FGu|hwm#&B!u)&OkC={Hw#p4%l7#DciW}E
zc5`wjqjFuzd939M#4&dc<ph9*oXx|-qsaM(l6>M#QxvUHRc=H)lcRj)-<!7GY9~rC
zwqJP@a>4(dRdauxnDBgOmdVA77l|~=%F0WP*QB*Lj|9t(3SOSuASUpxz;0M2x$<V>
z*nL|RY^`5Cm%PxOm4zE$-|r$siaOEaMMLw-v?&&!>@eN4>L;;wfcWv#C%2!SCZcwM
zvT<`~pLltBp{-I+*IS*)YWO+z`Ss0lHD{ircaFWT^HoQqQZ%!MA{={0JJMN;+TXu>
z_a!y2$6W6$E^5w-18Bt-E8@CP6DDXeV#n%PO7RV~L&&NNyYYEQt3KzH!^4ymE`p~H
zPrOasVPa!ob4WwISg<jYQ7Dh@Y5NiX{;vwhu*QjRE{i?SvG=$Nj8D#HWMp*q>{;|m
ztH1=pmLDa_GqSVi=I4i7b|%H0*l})?5AyQ8Z9CWceRv%vK7JV<zQFknnAUc_LZB)>
z>JH<+eNGb}Ga4Hkfr@q!NQhSKru43;n5Sa5h1gysC7BO=2*3?~?#i)HZOPv6%Xvfb
z?2(OB)`1MuZmZ+^;leg+gQ5DUau>=J(bXt3Z%n0sp0}NruzmY>wG@pjs;a>O0U4H^
zC)>tu2(vdm*t`i_*LO@Xg!ClD?yQ^=5Kx(nL>LT4xvhOsvYkH6!Ob0~od1dah<un-
zyrGd%qF(a!)D$U%cvy3$4=EV|JD?AFpOjh<JvL^(bV3CM9$V1INOOw21gn9#!Iw@v
zIz|hvQITt-<Kvud7c7Q97@nNEl#ZpEQ{}?mBKn`bx3x)A;7y=s!-V5>&tN3IEES`G
zr(Vt5qCgp|<N{kCZ|^X%Oc#cob#X0fNFgor%g35qTI6J8`Z{--%LP;!&bgM!;xZ2f
zRtfA(qn(P7($mxP))YB&#;z!)^_cj%*}iw1;wr1>#ykApTc7u3j1$rpcTGEV`gB-s
zMr`ce@Q>f$4f6A3-xd=U4dO8fz&5i|PNHhn%0TzTF=%XUtstlFa&%XbngV-3<4sn;
z`-|7D(9#M#(BOLH=eNE%9Ch^4lRmUTfBp3rng-LxXoRS4$sOGpYD#fYF|qaO^);LJ
z6wUhjdfc+LwKcNEB{?}e2Zy1j_q@C=0?+K>)mv$hSl_&Lt5ACMPVt2Uyu5xinWjzb
z&b0aFZAp=0w`mDz$MZ=2;s-Da><15$fW5Ep^4#dTD88oeOTy>%^(Dl`#YIKCdwPmr
zy=rW0`+?@yhk=`&2&l<A7x0$*+2^`CZVryB-rnBw@)vTUJktP{Px(zuU!OA9u6uAm
ztSsK%xw3H^t4rUPFIP=XKcWO<Q{r-oMB=xJZ8>ox<KwIncU(|fQEEd%LSDXniKzOH
z>wC0cgrKj|y@LcBJw5$p4xwpKetD_j`WJ#h(K{1Uv;n+2`6tYp4^dK5dP#jB3b%<A
zcMWTo|B<6pC*(Y5DkfIs;jy*iiAv43(Di=q0GawIiS?!NbZw9i8XA|vg(lGl`F`$u
zo^uT!JlqiF2294q&0SYlSLw^-_@#79o4Q}qa_*5!PZ}RT*uH^GGQMJb%iq}HWR0}I
z&@XqoB&MdS-tN6TTV7e|Q*mw2o;{9^j?UV3C^MJj<p*sS-#E?woaj8Lau(e)QU<45
z%EwG2pUX}ThChD%$j!|~BZ1r7$9GNYw)!?QGW(rrzbL0h)hk!7ls(uv-BYwos?_?$
zE^8}`npwt8+g6Vk?M}Hr^7-^p#mL<!8Xj?Ra3m%rB_YhqJg6+D3xUcMeiKxZ>fHLp
z&w7Sw>F8#`LTuZ-xlwrfmb0_1-)Y)%&@{{Q({AJKsh}<>pIAM}ah%p8eDI)R3Y$63
zhdcbugSk&_r=&b{bF7s!{Y`&g-vL@L?2y}YBN^8!yh(q!(9J*~FFP^E5(`L&x2X&Y
z45VXamH6weJ5p}0qb|z2`j>+L<jzWS{`2eqt2`R%sgaS9Uu=ERx}z*xNi3S~nx@)K
z_K*x}>B+sjb_6~$wOk+*DBG@Zm1@lW)%A@6JB3V{x8)i%(4|_awZw9}*lzASSLU&`
zMq^uylZpG)vA$Ql4?^B<e<YYtR$5BYsPZxTrohKXVyp`(n)!j`zdw%b{{lhy`;-1p
z*~hM9U71d^#^>*Aa7|&8ArM%_T|Pdp1t<h=JR0RfC_!d9xnma1$cC}co`_gd%-1dF
z)REHO)hFlz1#KKE)Eaq$s|-uq6l8!g)U~n^KHI1mv$2^%jJ9wkP%&^**_%o&<lma<
z2N>1W)%ErDjZ+#$bp&GVYHU1U$pKttu-CYhNHI6Q^kbYpl+M-FHA4f@4VW<2+^lrf
zNA1Tm-vjQng&g1z4Gk#5@-~`(4COHTaN=Q1Ow7G|Wyngv2lvhBMK3&JKEpsud(Fhe
z#L%!6$p(~%pn=Hffy!Il@tjmmsn54K7iU>?@U%tMKNBfCQ47ZCKKHKEe&{*)cg&)z
zNM02b77o4ogzcQiw<`0I#u)Yh&pYid4$tjFQdKF1xmG$3FgL&K$lbB`#9tm8B_v9K
z=kLtc38O$MMv9u%gk?*)xU3+dexIEUpRow9s;*wb+sez!m#nWX7Zw)2tnWFi)pV%n
z_B=Ie>Gti6qPJdUWz7!OgdzjsSElnEi-<8k2b=eX7^$af4Ngx3KK1%Y#ezKp<vTDi
zfXG5_%mjIr!`YZ+qF9))u)GYOQ1Hx|Gsll7fus<&?lvtVM8)sgZ0dC+)!pT%k&Xv0
z5Q#N2F>w??@&Ogo&#3j4_~7u3g@#SB(#U4wu1ndesgv#-Hi6y2`_t~-n~xo`_Ec0@
z+cv^f=BTKaY3NtFM*8%UwbN{X4+qWNe0_Wl65q_cXR^|YUyq|>3d!ww*%adG>3MIv
zLX@~Gc#2T{J0hH%oI*ls2};x~q8chHhL)CGDju>dqPL>IcvIAs<UR$-N<&af(*bkq
z&|mKLXMvc6twqr)0{}KeNkpNqo*k0kw(SA8cJ6KlhV80S7Q9-FBmJHNLxGCooo}4%
zK+&L{g$4%Nfl|XQe9E)&V-lXi8yLKQxNAj%^YHpoN6AR+<FGL2!Rp}5%uL`%@mt^i
z0#2$Um;XK|>U%&^PQYx-Ko;-UllW*$lnHC=DKKDdjg7Bd7Qd_6>=^L`0}ZYaIB^-^
z2t>A`ynJ0%m5Afiv*6&iv9{!N{gQhAs9|HdG&-tL;swe{TbGT6?C4QyYbOBAlwJ>j
zs{$XX7;!o$v2*(^hv&bRt-ir3BPU1qwF5WX0H8Ht(9FzibY$e1iglr<QRle_)IY}B
zEWm~DD05k!%$wAG?$DU3ohRJuqI@JUE<T<z_$Wha2%u{_LMS34qNTZc<EBjoqf=8;
zAmQA=RP*Q;uK>~I8U>eMn?ZHGd+%OWR@Rms%Nxm98P(nzPuGNSX*MUTr%y~wpqNnT
z8#JDsJ7D*@@FoijOLsX~DG)s^6)CGpTgSeb#^}ltAK{iP@w~v%R8>{UO6Ve90VmN9
z=VWJFn&+N+ZDuvO9@LF)i-rI$wtxeSg-)iSS8{T4K)@A*{lS9=gQxhbtE<CK-G~LC
z&B^(3cMIilPEL9^)i<k_wNLmEB?>Y!*Kgd|<x|0_o;ILa4$zAW?H?L4Ha8y|90b|+
zi*A03?Tcbd&IW{Vb??jASi%jSoDv`g?1>KW!+3%g9cj}=^Ljw89@I_#YxBKsCVO83
zku^k$Jy*s>>}O^^OnXsJk0rDWI|Jc+!I!ZO^r)NL`imDY05CZiVs7QJNKaQUgL4zi
zo>^O6CW!?o<F8(kQ&ZP}_|Vws{m4D{3VXnHWvsWTQT6VlM~|ZOv9K8T_xA@p;;08R
zCk|2?>~45i82D=>EHyrj=k_KB29#b}VLnrb4id;a3+&=`c-Fyq?ccvY=nl~7r()OF
z{gYwHcUWayETgdXGc5emr=3Wp$Qm{k1=(peE+=+mS${rF_^?xArBQ?N;Q>ibGs`Wl
zg}g1%xO<|%P<{uQ{l?YTs-xEfXlSuI^z?$}t;ejrJzTwq4ob?F{r&gQ=gnpV{y9#S
z8DaC0T1>GyNntxfvenWv&T}+>e!k^uj;mK=fS?0^z?hYkmZH-sSrg%~hD^bM?vEbQ
z{;G->nJn*aKGYofBDiTm2P-?;feel;3DW!Fevy-+qAS=UOhT423Z$3N$&>6vwBpqJ
zPJ+O5#%2N#JF4)^)6cKN-whFvZPo(zx*^jN)nZ}y6&)SX>wRxmR#uR%5kNnHjj&_u
ztE;`eywKU?f<Oi>19rY8&qg05p(0bot;lZpQB;&Z-YntDb5xYz$jCJkz&>>7MO>Vw
zhDJiWn%&ZuvIh<5d4RV7yzHa$Ko)J=$ujXNuc5Baw`Ks{H<8AfyAzR#$hu}=fSv2~
zNXEcw2RZox;zL#mabaO$4h|B-gw%W8*0%qt71L|G;d*S5*AA16yLU^)LwZ0~ZAQ$X
z)TybdVgE0K7seWaH2hIY$=fJU6T-a=6bs^rnUPUTN$ES-<7e2|$hhBs{#2{hFC)Zi
z?Gu-__~!DET$*)C@XpGuoDz`7H{ZH%7#$tOXOFZc?_qn9oox>m5&+WA+q=4<p%;<y
z>S~#FcmCP3Z(1EjYoNFe(^ggZ?9mJ{+IxOf9UCQC>GejT+xkaBYeo&IM|wrbu+_$q
z-wJGvtgI$m6P3Z+j@n<iP>H@cRPLoyRO}+Tzrf5}N$$3DYB_X^6Uzb<VmU%moORpe
zM3dvYl%!8PXE!o-6-$l0I{$F*mw^HMm4z9b;>GiPhnyF_UA=vK83bHodY!m=n{!Ai
zn@J86!v=LRX{%Qhw6vdg%gZ--d3&=HC%Ov)!<!o$FYD+aKDiluq}i{isWC*XVV!6R
zBvO`Vusv0qf-UOK636Q4->6?XUZE)+JrK|>6PqDqHT!BP7_#I*>qeSFP`79@?MIa=
zs!h4kY!ec5k+KdGbqZ|n8+9V#&=MZ8h$ZF5$(A%rT*9*+RR<k5KQ61<Zz`{U<w_G$
z0v%mocXzk`oyGe!w2X{NPs%`Y9;Ws3@$u2&F(FA38v6RZWo761<iTG-=jsmvF;7cC
zkJXlY*MWq7P#tCCxpWJIXfh2dsdG~Mo@W>(?yK4Bs=j4D2z=CAJa$j1SkMvruN{2l
z7-(qF3SM7bx@ldF3{SzPoogARk3@<#0=-J*;pp%u^qgvq>E1peL-(b;+GEd@dL}fV
zV5sZay%)@Xc({ek36uK$1Q`Nh<8rTYnpTeY^36}VRz!aQ_m*_6jzI(xE#bW%t0HdO
z6N+Ig10)F>f(+QcF~!1Dck5UVx({)S+AHs8W$o3t`x{o6^9NNKvbxUgVjGAH)iXcO
zc}nBn>6gZSHK2aZDk{v)&5^_>5EDlZA8zaD;C$IssMzGPIbrdw<hV6qlFefFkwMOs
zn4qwfooWsXmsx5g_kH(||9Anq&T}+1J>Swc%S>GqVTI~f8uEb-uv}Ko!=S>Op6Fj*
zE@i!4S1goU`@Otb^OfZOPT%${%Q}%{YmMwQXW506vsPIY{ay{1b4MejY>Iw_^uMmd
zHX5#v;0&!HZIIE?i{wtg3yA-sqM}eP&C<FYYz=HqNUwB+>YAE{XCnO9%E@`0hbJa#
zbvr-q?HUbgXCE6M_hUXYG&z~N;GKx7o2r@h{_Wf7i<7R1yU~_-;H&ql?s_yMBO?o+
z9eb+=zZ<^@l{thgm;%M<&8?YOX&-zw`nb-^&o4bCg{0;9x}7<7Y6q*h=$SLi-34~?
zNpF(y&Np_E-j9x8YiFnZB;FnDk^@*0q?WiBFLa8WRgVM)2L&BFZ-_NuprbptzA5JX
zqx~1jIXF0C^hb~1z^x*YHFBiC`Cbj&BEG(27nd1U=x@qh=yZC)GXZt^_R?HpS90Mg
z@Zdz6io8-%Mp_mHFd}@w4xsS6S&(RIl2p{R^B{R+SCE?I+Hz)t__F1Q+v4)_r%#{K
zwe#xB%MB|ZF<W(S9{CW$tA7XZ3hhC`>(}cf;Y-+tMa(%nJRBt79m;tQ0<+k0mdvDx
z4<(VllVaL3v+rov#}chL;$B~%OnosaN2HefVa&cXz)?Y;<a8m`r9Lw}D621-rEP2Y
zfvY)qj;>2{H*VfMOvEMjLGp2Sb_RbZ7s8d1mGzwBBtL(Y*zK1~S~dp{J_n9zYj4+k
z?H~{BWaWE}cgfQ7vIS4*Yk4olT@V4#eFJ-{th7~<Uh#>OMYe<6p&$g_KPe>i^T!V{
zv>Rv7{@p(*vC@LaEhH-XtS1Ide*B!_!KJO+oQKZefA9d2?A%-IDk~yP@9TNR{sUxv
zt;aF1pfI8EQ?PN>sHv*1qTrzSzXc?ZMqpHR69fl#Vo*qkv60c|V%KHhMiL9kM!cPw
zr@=+Nb0?_}_}twM!v!NP?Ma6T4d>aC$4EIxxDRRhSVvNevnTDKqQZL>XrF6~^}8N>
z;Yv`yIXi<71>0PKG*Ub=)DhL`nXi>PyJSz?B}<hDt}Wqx?KBHgTzJ$3^$V$7UC+s=
zElHKPc;On8DziN?K7KgY3Q6IU17ZWvW@Tlzfr5ep{9j;|VS3R|Ej&JXu@j~b``MDa
zyjI3LKlWtZ7hvU@NssIbQ7XKh9Ub2>())4F<~kKcm^!<?5UB(B{CXajf%XIml97>-
zR0APjLGbmGYkBirP28kYzPeyvGE0<T0+rC&Qu7wm8U#na|2j4~EGQ*QW66Nv!9KZ-
z+s1TIOo1Pgveebonm0p&^=>IxwqY_bHh%Bgu2ug0f*(0s*rqYjrUTjLY9Pm?KAX|6
z&(R%Kc<AFp=OrbZEal|1_=|;>ZJ}Vpmi?4ra6zssu2A+B^LK82cpwfvh7z_0(pAiP
z?qlIiPTyQKTwK7;166_9T|mR*hzVokm)AIvB3)cu@c-af@CxPC7q=g2gnp$q%2WB0
z=a7rH^;X?|yQF#Fd?Oee8$&$LYv-)0tv$4UyY|IW`T?t#?KcZ9Rw^Qc!$N?2G0!`?
z_pG~GT=qsGGkwG|zeRhBPzu+`3+SD;>8EZwIz}OXAoc?vKZb}QzBKZ@L+^I#{pH;;
zk67q;YPKm1=r_Fo8Oa_0<u5O{AFa7T&!1nQoZBI7^~_WJMb<t!&mr0vI%nv(y|<@}
z@OYs-9T5>(e0Oh~Y=e_k&lS$7tcfFo-49j$h8bHCZ5whvo$<PR_bzH6S~%?H>E05>
zqs<B2j*8D|FI>2Qe<a9Uxe{<qO}_AnzQrzq4ZiGl1GY|9R#wWNWJ33*-P~We|JeJl
z;X!NI0bmBxq}T&$2C)T|b&5$=o28{CcX#(K>*EzD7m$*Xh0RVvq@OZy=2^co|LxnW
zyu5~*8gzkAFCC$zpdh&?yy-cWl$4NBf+8Y{%-fE~Y3|suLoHPcnp|*r_-nviyd`=@
zg>WHx4$VLYT5)N|$Gg~wjo}|5kY7MgKu@ome?11jnB;d@E$*hSwNeF-PX0GwJ4g^o
z;&-Y4<hjV@lVsw^k6<k5^+n6~VMj!ty=QA{3uU3X)YZFv)20{)y3(oT)@ChLs%>%v
zRmDAi4CHL+2Z%H|Hj2;l1e-Q*3?Ywbv`8;{86SVa=7_hCPfJHf6raJ?dCmr97FDf=
z%<wQfel@X3i_0Y7+!|@)9w}hf%w+Rs=G&KZOU1_so}r<kfVGRW!=3BC{;uDvj?Ou$
zBLzYcyX;&Q*nFl(phb)L;K74{fF@Awi3=9a&V^_TU^zi72s?O}G}k-<Xx&ZsVeor)
zwg5PSHdC>NIZ`Wh=gu0i6PV&>&z_}#%3Ip{K=-(ib+-)p;?GYuW+(B;LyYMCC`QJa
zT5}1Gs_N<z&T}8o_I>y;0x2aQ<q2USY}2!!hDK8Vg4^;>tJrVqiV(=D=;;XEpFi*6
z(zuQti)M$!Y0K{EHP@BdJ;PBL_>i2<5CqKm^Uzf1OA5ld>5FFT&ma`$njE#vbVI|5
z;-TX?9eT>E6#w;UlwZs6@u>lB4Hl{)`h%cCSN1eKyk(D&#pig_kB=?HPBa#V_g(aN
zjT+K@Jd|WEu0d<wk>YcKlIXu-(^eV+1R)ihl<1Cej?WhD-w_UvW#iCX`=SUZC!e{|
z4|l=A5i6SAQP0(KvLlTw>NL&Dnh_8UjIBbXfH29vPm^i&NeBReNZh=n9$Zkc2r8AI
zpC7AG8z+M91o_EqM`?4jE#NLNdAG$d=keo0mLK1iNTo{e-M8=l{rj+t+-I5GMbHTG
z_4dA|86v*TQ!g=LY3YXSj5^ZtmFMRH5%`3JLgZe-6oz|5nMv+>`u?aZdR`y^j~)AH
zckRl!v+9iBZcA2gq4`Tep&s@=J(n42US8g~XZP;iV`gTCRt{eqIosTq^XPNqO2BsX
z`S2E-rqG{Gdil~A5bEa5oA8YtB<^Koe7xQ>C<iRjcsL%;1qHs7C%wJBwX%$TFCBTV
z%p!4T1sihPwrz2FL1w=mqSm)vkV??fPq-f(`SN83TG{SBd$w)edYmN~VsX*h(zwLR
zw{s|si<|p^BA&*BrUuKkJ}j|5GdK65fkpW)_$jd@&I9YN`^XegA7T0;r=Yla>C!-2
zS3*L<6A8CFXvcNGElem2SXSk*>^1!?|LxF+V#QgWi*~AltXvd17VQ<!w-98Yr6Ey)
z(?NN=kbdbXv9+Va4Q(F8J+a$A=VoW=a-~L|>A9``09|)pS{lis2(*>A#Egi!s@%9{
zZu_%fA+9=&AHN|Z?c=T*OU9Pgx&2hrc1x(m6l}0jK$PRELDO8ApHD-;$Mrxz^P)RC
z25aK!(@5aWb4cW<IzS}wP63hJu(NAf+G-j{o5OHLLt_L0@<c7TN{F=(ujI%zi(N!k
zgWorU$U}#8MMdRBP(gD#Tt&Hgc}Jm-5K}ZV?uwfyK*hrKnxB!iTLNK#mH=cR(E9P8
zEUpyo*lrYT;L23O`CS9&s)IQ-L+U_8bad?Tl7egW37>&ST-@QwV^e}e+0<y=q=i^1
z#t)VgC%MHLwL`)(9&!|IIDPEchlU0}JsD#Qi}1j}vP?@|U1nFe9yoB&QRV{=pE>gy
z>?8CP6dd20F-V~7#5oXBi@;wY+|T_i&^HOMs@`a7e&c_vUpc$)Afb2bp541!TkBO`
zT;&QY;)q^bopx(k$ji%{#|k{yv5)XobHj!W-s3^${GiMf$ThL!SCek)sx5m|fSzg|
zJaphdG^kAb;V%;tDGP)%(x*?~<=%gAq&6(?TY|N>$lOcoNYd7MI^_5=m!>`XQDW!U
zQr&G=VUNM$u2&o;E-Wnpdo>AY&2xnLkqNSrwoihXp;ga~l=h<dArI5kq@jC<Q`?k3
z9m}yFH~qWt#@DSyjc-4G{0K1Uw!Sv!*;-vahMr#M<OaEcO-$L;af4-0K8;ZH@v^qo
zQ&xVyKo|AA{e2Hv>LQo6MST(zLuzv5adC^w;Z}FE`vVo1FKB;U&lO>3zk7%K_;Ial
z(*Tv@FzDIa*@g3)DCp@$UR!$e=FL8SV|=P-ML&n~OG86L0gkTHcu&NA-BbR`rlu>0
zXm3vUxMHQLsHo=Rk@ipx(9&sZXuODz=NwE~vOp#W(TR}vefY4@ahhe{zQu(Z11i@z
zwpCzD3O167>XL-Z!gYd-j*bq<6mm9S?qd5aYa1JVb@j?jO9G+vH}i{9pq8#DU-qE;
zj!Gi^>0MS=K-j`aH4kUo;P9|r6^OC2vNE&ErG*8{-eTP&fljw?qYbDrJQ?;9E;ztP
zXoiReSQ-x;=mX{1Z+lrMTf>*q3#FLy3_G)ES81jtGQX6R6fWe_rAzooP#&%$jcgSR
z8KRG(G_1xmyPof(E<158BOi`Iz<Z>b*2~(u`_JyzI-8Yqs4KReL|*j#N*%G>5trrO
z526wQRolWXg~Tay2*AD@4q35d{iZ$frs5k7bC~y<_Q-$p%Qa1n$K!AJFirdY_$`_f
zA6YYVUpIp8y$+rQY~Bfe{_)PNVLbZaT(i=U1bQ@`-UrHd!OTVeRL~-1Oi{~Ei^(VV
zRabqc;BbmVS?rG&+QIFD3EaYG!)B@;Tn+#3V(Ve1<?Q}mAeZavzVTB654U(Eel6R3
zHtXsawh`i^?O!)G?$Ee#diRb>yL;$QXYKyOB_7HD|GTOD|Cwg=zhQ@ueOdqZ#3hT?
zP44%ME*<^r30b6p#=97jKt@(b{VAjV9t@jB<KNy~-8*L<@3BR4&(&74)6^+`WT&?!
zbCX?vb+)fhf&GtmM)v=qi~c`v`0{g9351*=ZJxQ>#&#HNNw4Tm8mlHMNIfJk{oIcq
zfUrQ_dSD0HR)M5ozD2h_J~noX0p1d-02wKXoqJF80X&JC4A4Ss;@@#Fu<BNQ0$VbA
z8=-@6qf!5U;{)VU+V=0!Q$XnfbX0hD>WY>YY#)s<!M>-heE%Nh{3nVQg1YWlGAcnZ
z?QCszPtO`SBEVxSku$&F$Nc~<a3B0rN{Ov?byi>*p#P>MCU)l8u(Ayx?E}StcAxwC
zQyk_Cw(^FC>7SFIK(xa6$WGjU+CD+Q<PKOzH2DzlA$`uAWFW|(I3u!ZU8yK3A?h~e
z-}p+RzErlgrKr%kEe?jJrKQn&8KRxH_co`3T)@14e|wtlIGh*3vS@hHRID#vtP0{#
zMqfwH2E_tFx7()z4D}M=-eRlNjh{h5yCozfyrlXE2T8`r_p(sANiUimlmrW3J#a#b
z3JPk^P6Fe<diBcNdpnR7gpKx&j`+AZSjvzMUvYiHzkt)r;0lk3urf46-~2w)5>1!}
zmpJ|ox&(k@K?=ID{{H^mN4q|L)OmC3N+Pv+meM5`U{b;d@Sn$z9|t9GdF|Tc$B$!k
zJp=~f*wF~7tEu4^7LM<<)f^leq9uUVf!Q0>C{zR7CE7ZGe{?<RIY+uD3JMC|zkd(E
zFg`6YF_G5m5FcMgM)Uo<ZL<Gn8+S428d+Fq1HZ7c!a2QIe`eZKiXB?Qw{O>--%(yT
z9*m|CbcDK!ii)Z#?z9`@2u_E;*P5frr1g4%`h)J7L|%I^qCN4a>4!~vauV83YHlO2
zCycl-LIlVNIM0p1hYAbCn(t|ci6?%3V65z<*qb0h!Y9u}M^{#2|9j2djcLpjH!>?-
zyy%shYIWz%9R-C)zy=W?8yinR1*kCGx^*jVFC!xZ_sLr{r=+VJp~ItI?QNtfe)xNp
zHw_xWa}t1x)rOfc4+yKB)7I8rI*a)OD>b4&XeNwiT-S$sOTh-Oj-os{+u_59p+I%3
zJ37uo{Fvd@&4PS}{>-@ck3ilajPPiN`ltXlANn#hk)Puoys(lh@bd7exg4NmGlVq+
z?|n&8(UHXZ+`4s(h5%j>TMn-gJ401gyP6XZ&11~7%(?g~J3BRVJRl00(<K`p4wj|w
zEzSlN)z{Z2vAz;$BCn&XtE{AypAPRSH8nM(`KLp0oq#JN&;PSTwA~k9@XL}6|CF=e
zzdsHPL=Ob!+oUdxo{=#OEhm)ir<Xz^A||J&-AEOy02>Q64Cw)Oj}Cn|S1@ky(IO{c
zJ_1}pM|-<<Z*fsVf=nV8C@HXE@ElpxC1sTFPZey{nF2rq&PJ?uG&Wv`a)F*oQ&V#$
z{UQcNutO{@Q!X9Bo`jm&OPZ1Rd1@yc8ymLYM&o~$a04mBfS}ifIwC6C<1$+ZhzJr4
zF4NZbb|F5#nYVv$Lgs(~jHaI?!1e2ZKm0K_2NXi0GvIDQEymc423HSU!Xez+&;UWC
zog)x}su3pb5anW@KhH64)42Aioza}9qq_PyuHy7*z|kd`<3vEa1A#Aelvh=8u(4f*
zv>|XR2V4^>X|Y)SIeB@ijXb{>IGXrnv6i~e?`mUm#74)jkI|`ukIC2eenmFI{*Y0!
z^6wwJB!~aX*+NDwM803=)5b=n{L(+;R=eTwJ3zKs=g*_MXG-aQg68_45v}ccDinTK
z_oDk*>Q)<h_DXAXf4Bbj#v6aRZf+FOu-f2$k80yKW;RhSy@<{8K{}7%lEVBGk%A5%
zygwzEjCou81+s{HZ46|mJ|4J!{pc?D6A(&~`$38K_R#<S6n6&?d?*=yfQ&-YOaJ2s
zKOgwG5Fg0JpQe~nV8@fkj)SVu#GyfEzw10z^w+mb<k5DoFcr3qX*2a{!Yz$Arzse<
z(PVv}nYk!04@fxh(qKcQ$X-GBN1MhEy4SxmrzG2NNplKblITV7CRtf_N=meQ%>Uf3
zWcHTmMRejwR7V43x?cY&nvH)S=-Sxmg0_c;hi6jv&nVl721>W-OYmSj_MduHWbx-c
zn5kL*Iw&g2kPuk5G1}*Z`Ttx4k|pie>t80}8WSKv!sSo>IQ&)c?{_m518T_*$DZr!
z`^!rTROIT)3i5GSKowXMlJkB^^AIiHj<OREA&9_e0KNr5rma+l#=N`mrVkAq(sd^u
zUOGZ|DDPJh&HJZ_HX4&IpA~c+B{lUFG$~oxYRqatyJ6tf+rMvLXQ`#%ei0=|EfD{q
zAvQNRLj}b47dVrLV$aZi!O9x#8(LtL8=IQW-xu7q14i4)KKKhz5W6ysYM|%4y10O~
zAUVPCHoi>4dL?(n&YZ#M(^b%pxNN0Fd$c_EX^^6KFrRM42Yvdqj5f*KE;lO+c2YR;
zpih%rDsTmW*9~g^*UI}7p97#F*NBLQLigbQeGp5g-T602EqV)RYB_iky`(a22W5FO
z%u`$2_4)Epv(Om`2nf&+@R?hw_a9^Mx&348$83Xyuv*!BW5tUXXJ%&uWey>fkt;1z
zerJ4lp^CeW2(<lCTl&Bo0#67E3d*)X=|Eq1>sMv`FI5oJddUe1pxk;3Z(1OWYiWh~
z`pTa_zqKZl1g7(E9E{L~BTz&{ldlY`h70FVsH(4rhKqb@pee-9ugt}Oyz>(R6+TLb
zk(D(nKmSySk(H$-kKUUPnOv#O|DzC>W~Ov$C8m~Kvqo_x`s1&l7USNLp71r)9W-;O
zG|8zkU7Z;DK{0;*{5c9Uq+Lk$=)nx)vbf~NyC<$}a?kyj%s~yh4Wu)YWwU*vik6Pf
zB?%Y?|4Suh{@2pn=A)+4+0}JiOjGUORcJqxoQ_m&L>y$TUOYe$vNQyNR@uZgbN)**
zGXAo0FiP$Ak^&R0ATOWu>Q$e98S=p5!UEh+7Y@-<?K?>twuA4TQFiB!9VC-rr^fFX
zGp0jvCL`EgzkZCDH$5$l!KcEz1vQ8?bSd$vtE+h@mc+K;4RY$yqm|9gj}<IUP4^0#
z2esdom6gqRIksujJ;+TTKWbpnK(8mJr77@)a@JK~jk_%^El0MYlr8ypK|OzO9;f1#
zvk!F8TTG2DlTZ&ih*>R*4>|RpKSwN&!IwMQe7G*|0g*^jrbzP_9=}t;T~gv<hTjM+
z-!ygsIHc}!P~@m<kC=oNCb__WV7f$3Q88X0awvUNc5M59mUm8t?h?0k5YAwx;02>#
zgSUi8^UJ3R0K9c+1peOa9c89G1glik)z%|wb@Io9j~5G?q4|Y{5|mE7IaOQz)Yw?q
z<Hx10aNgXwe!WrWOIR4=pSlp8^F@K(-2rMT$?)MPzGMph7Znv74A=(l5Y1l`si9q(
z5ElSxp>%KtR%K>ot*)-_WIp{OEG0WT8*7Y00+1je(Aw4I45zI(#s6-d_dJ4#D1>tg
z+?oN^7tQ4NwoLrSmmnM?Apo*~_RNAu1LS#*pvsxs|F+CCaz>on#FHQQyTohlBxNcC
zq$F5KNvsy29W+afj;(??$Do;DNYB47^yZl;uAr*`n%*o9g`?I>-2R!;+;SDj5ZdSH
z&`>*4ExI9CwqR4w(0GH*3WwFl&Q2p^V-F&+u{_JTPV3cQXYK9nDJ|MGtkFV15yDDh
zXmR?@Y(0z^ukA+xsLf3rZEa;`WIpCt?4det)$>LKJyS+AJzL-JN$6B>vxyB<jg~v^
z=}or2BD2?!ooC0a@{PRR|Jnj#@^0kC_4~iePc|(EsH0~IZ-1iztxY`Ncd_t9j1BDd
znEC!a){k)m^W8Rv=zDLicmF4FuqS?db?c_B2H9z@9Nz4giZ&EGc9bV<u&4Rxz42GM
zfBSCh-}laV;f<ACF8{_R?w3(!+!eORVD1ku)59oek|xB<e=dWCbQvvY6aHKVJ)TKp
z!GYF4cSnUe=n*NJ-{sj|$Q^^;_Uz<2zurlb2|+`4+6TQ5QR~;gL{nh`J=c*rQuxnu
z{Cn*4>v#Xn2)Sf<5}p<>ug$bpcDO>13+eYp4w2gPJ|mb*9(tqS6cUX3Q&<(NK@Y-9
z@UmlWy#qOm)omr?un74hx7lFK(Ntk{w5zKS$>N*V6$~8hDAOr+(KIWRITTxl$x9mx
zi!)FgN=pe9n|JNng%m`ZNIJ8p>;#P32QNGVELX3FGd}$4lc6>tl$TSdG*I0tuEFzz
zcEH&1B+ToOi!UXX`U(a@R>dIi!~P)5wV|RWI~9;>v1t15OGh^fQ5LT+U%mjVyokEj
zKHB?_7XW=~cdH9vht_lF!r0C_KVM%+;ge7^L5kf^rDeVFXg>#tOnC7yvJ1CQW6U`V
zbMp~JP^YlKL34Qzbe`&v2I6*oxnvz)`N$Jj?_Q3H#g^Z)ZQDHBj>CrsL8sz2;nsNc
z@S)|^T*k1@sbAMP!ay41zlGiic7F8Wzg|Iia&vNuFc=2#+jHwHm6y~tGqZiWcAag>
z;u`Po{|?_Lr!j0+KheyCH(-WnMT1g~fizSQL>&x~2{HCL9LPJZ>G~2#39xE_XKSh~
ziGs$|(t?88fV%OcTW{3)DbfdKr=J*g26L*P2KN5+33Pmmg+Q84!Abj(%V-j8Y^E_d
z-r`gc!XjcT#i!j?4(A*C93(>YtiiHzB#*B7oxr8K|4I)iC3%=P7@C+s8M<)(yz}kb
z7?qy<nDO<wpEw|%t%HO3^**ww3^gMYlcT}1P^Gu-WFe__U@*|3HbqhIKXn3rZ`e=D
z%gc{R(~amTC1zuu2DBaKKg`po7a*rbfaH7j4AzB<<WD8siidh`!P*I(H`lT=6AQ@7
z%8DKlv}P0r<Dp0Z<f(s}HLpy#ShqX3g|xpTZ<AQD>{j?PP&qKoM4}TQcs+f83VI+p
z8~6{^ON%Xv63F$Wp?lJ#0A?GmU;hT=Q&U}ykDG<4b@cGz#5#SeY838T(9FP;;2>q?
z<;AY|NurGE>Ggol5XaOF&{)wzzYi{CSa}^>{QAnU1is<r;<CSfU8CfVtC7(l3}xsJ
z*1vrz13y|HE<BCvxngN1BSS8H+rUdsR#qdV2)<DWGsPHa1u{4$RC00EVWwXiHw#SV
zf?V#+54j*|vMe^1-Og?nh#nRx<EqDp(SqYnke&4k?Kv9w+TNCz4+N|0!DzaFRW`gE
zaSRPqfT0d$9`afqFdf`LV<h$9<sSDpn2Ludli#?uv6~5b9?AvY_GN!LSbTsB1Q*Rs
zvEGk+XKaiq6YIDI1y%iPNs)N^0BM(R{?@K-BXa808%XbvJJ3uJ{SnI`F2st?3uj@?
zW@lzF<nc)65F=*QvA!4xU5F2og&pzf+S(e)lc}l-rU|tbni>&VL__1r-+#XY$kw~{
zWs7*QFdtt5R1M5IgXI1U>YH@lz``v#xf;hFC%_~)OQ2}lsUL0(2@4Om%d(Jp1G0nQ
ziCfIebHu>ofz_9%4Dj3yTu=RSHGw0bV1w#=goqBu|0jKvcvEeAdx-e>JUCpi5Kuy*
zeLq8ZxR&YfPm`em_6TD*7!{iVLe1IPzlb?1bn#o^>V{hwH~aRjWL**bhFk$M0BOPB
z5%t*2b6H9a7JCnh*X<^nTZ1|HMH{@GO_FZV2a#Ca+4&UHm$i_49dPOfGR_L-5M_nk
zkAY#h;pjMAT=@F6exbdWo9w^EYH*gw#VPT`f!ZH3ZwdFqgeVJYJUlcc>o|M_rLbmz
zez&u=h0We96Oai~AxExCfJZq*=ec|6P{7xuO7bts-#Aa@YHDO8O&)V&J0nwURGZrK
zMC@<V7L38^s;LbP3`miinVLdnTY$S9qL@OU^o0vMv3OVaqAf!%$iep0Y)WcgihuFK
zbdn0zYh(iqW@TukoD#z@(d+H!6NmAuOiWl0lB+w#{(%-4ql}Cjv$iC${^pp9q@;WM
zuXf9xk~G*tLpE>x6j}$SWe|s`8YPG@MkScyhXx04wBWvAcWpIJ6B>kXawm)E6P!yB
z9=?pAZsKGv1k8By9Y2uO#EwS8j8|j&+|wKs4E!FJcy28S)^?bvFrkp%UqYf?Od43?
zmh7HIL@>#v#4O6{=ll%sa#@&<afgOaI{D*jnTM*H8nWd8iUV{ryz=1@#n}M`uFDQQ
zMo8@7RN(q(*GRZe^Bt|8Nke2)gS51?faJ>p;g!|Z$;ruJ9J3&@2oe{GOIces@V!jp
zQ`r_&iGJ-k_y@2?pk~5CwPDvmYDgn77Vg6&Oh-l-BQZq3jL;YZN)-AVB0ee_wmB$s
zFfaxN21X|}wY0jB`*D0pi~~as2h`+$<(mp|A_S=%qUfD`YKeDDn$`m4gM$1SXH3Ar
z34#f8Z{%#ad}e65_}GeT8B**SnVF23zH)H*i6nxLLTHtgtfPBow6HZbJ+@x1GaKGz
zvvS*GeZm~t@a{Er%=AZS{2HKo0%yXrXZsl$&8@7&;8j8ATZ{p9^t7RC9iWWhfTG_d
zsa0i|iMfNvH0aN1_UyS}<J{cM1fmfa3j>QEpmpFc=LQoqvzSqJ5NeyVlT#x1{o%cd
zRxg#pa5jvh#OmAw);n+;s6qY)ZGia^AmFf2rnA2=VWc`2IaN_t)zuA+((;TsIKTwP
z@q5d%QBuiI4jex&tEiYB9W6OIfqDehN#A8=OAV$V5|MuegoR-;`Iu$mr&NtCgT}I@
zA&Db7DG4pQ2^MX1v;d=Wz{a?$Os?=}&${CkSwZel&>g|)C@AMD9G_tL$whrdKA~jb
zy7i+?{cC^!fbC+EYBG$5b+xsy+LC5!GAB?Q_QAyoWHK?a(sY5fYS6YV#8!n4s3)98
z2}h>T?O+i-b>ztTj79lL3^No)oW3cWQ>J?Re8$M#yBi4~P}(&^xVgFEd~=?Yv0CG*
z0oAWzwrBL~*Rsr%;$rdD<FsB-_l7V=f&s-4Bd{6p9YhCRgrg7jSbkVmLBTqOYYck<
zHfz$Py&P}R0DNk_J1gRaHA2MP)?8#{Jn=Zd%7HU1!5I-eiaBEGr_XcMpvqsz{uVGY
zs8fN59n#0}uZccW0|S1u<`>=FI!nsRcFGgx{QOziDAt8TcQ&~{+WJS;IWe)$G9_8V
zx5GI{nM5`bnRBpDrr`}k4WK(-rm%7KWdi@4N3#|B4&%9fJpU7?lWkVk)Lg_sqh-$<
zCv?!0x_fl*-cfEfyS*uIHv;PI>}JwQMDM^P)%5n3!1)K)8ph#9Xy?LX>${l*`kH%w
zp>Z0rfBFX!<LGe}Fbo_Ki9nP5;MOZoO;)&Zn*`af_TUi>3q!gBHKjXGX~KqVv9>%f
zIsytb41TY~H;yn&oc~QKI@03vB_Bw#27UVHBS^7L*0`4MNSos*O+qi5Neuzu3;(YM
zpiczcCF$FvzrS7l^DWcwZwr1O6P3O5_qR^>fB*9T`1amE?L?nb1tgN5o40yS{Ik6O
z8(dzaDxNc@+JBRTm%(e|f+WM2Pz@>{?lUklIvgMaS3*EYNc)RU$BB<@n7bbS-BHL1
z*8PVj1|U{JBJI8g+F>KF>))Pdrm1LJpmL#pr1$8^{#)+H7&f0_pef%T`|(7ACv$58
zW*wY7`EpG+zxFzouwY8Ie2<YzZ8MYK&_xwVY3E(LFH7zse*L*>;MO^B%Y5qZmg!+$
zYexrThw7<`SA$@=sj4r1C5b{BDetYqgMtPI2P?i@hhm2m3qFW(R~2MzfJ(x8opF{X
z7f2K(b#-BW{_vAVvaoV4906sGSfJMfE(k?(d0(-Wj4VpD7T6N=w^872plf4D5(kW|
zW4FzH`?i<wS~=j|Zoj|lj4ez}8{I;KgD>u&qo>b7j3S-R+<F6o19_g4Z9MfYyt+70
zz<GWu0+8nMW0I}~K#!A$1o*lDy9S1bO^l3yB#=xI?)k991efCqj&INUH5XYofUp43
z0eGsDYx%UOh~%IoRe$iwz=F*iz{3MFfl;$GH-`XJ3a%11fE0Le0X{0fa%*N1X|CDW
z^d>4FC3vQ%PlK0v|A_ha_koLFRFE4YCEV7&`bhve6l08}p&=b<<KV$_qQ?mzfKpL?
zv67oMZNf1-(kE9i`X>}#w?Z1h!pxTR6?6~7wgr&(!7>8r&2<4IQ?ZDCMA2+&n!&Hl
z4Z%Gc0e9PjGBjaCnE@PnlL<N{I~#bFmCX>L3yk(s{mO346u8379?-0vfBg$kjgU=G
zH`X5RPLw|=Kh`h_Vw^4@_g;SiZO2P_CKf*vbfU0V0YyVEV-~%2`OZz*m~ME*C8e+C
zlA7}9rz`U%>)gD&^Yin2^f0?NghxzEKp7pbeVPTh35(XD!-tW!1)zz*Hnm$?42CE$
z=ntrw3+;v#03yMQ%8;XiJj}?Lf&Ua-8S&s7v=OLQP)30R)V>V%Ux8M*w76*1l|729
zMJaXrKH$ZEn{@IG&NrC^1_2}iaJDxFXM`BygNX*TE$Rr~5@(P3(|qr*0B#D00%K!i
z6L1SpMWL506SW4N`sU4>(Q2&6n7F`LO2LMz%0M0U?3oU<TbzOQ<vs*8RC-L_1?Jyt
zwmp3B(W83wA=W)_5@oJ@i2Jo5_y78{AW%xjMn-T3iHuIo*BK>cWwcH;H8p57fkl8z
zDA+K=aG0(9m#)co@L(A{>@ZyT*0{^4+_-TATpl1LI4kT(pb2j&>^@};ja!(CL^B8M
zh|Nkzz*M!3p<y;`LPFt_5Gkjp8@d}aaFh-{V5SI)(t}5j6iV)_;=C<H=vFF59PYK3
zl~s`(jl~QO^-x}}l*z#<PGw(4#>TwM%f8N#c-yJyhdNb%LF6rW+{r1N8-jpoZPp|s
zyS(qouMug}BRV|uXa<qRN-1$qy+yY#kT*3pdOm!J{Wj5-+<_8>eY|Dk2Db9r+K1F6
zK9tu?ARqzn{&de2Edi%b7}+RX+0AB%`vEw>4Pzt;?J__gI}wQmUDLi*xOTjq&ZOXD
zZmD3I@S5udb%9ey3^Oz!N`sS5g>?`k(wJ3}63Te>>elL#psrde4EqH-Y30m80i63l
zcT|*@HR8xHr{<*GTs3X&*Ecc}6L3<&Rft=XXaBh+EI4QtkPM}iFo}s+cb_6)&hi3g
z#6qy(5fQFKwfknmPn8QU)re;!Y!HhlCG_9iVxyImmrupBf^%=}Vo8v&ghcPVcWiuo
z0e8}d;rL5PPlpmh0-KAy*lc(D-fr0U6w>%4fd5DdfZ>Q&BxG4kbYs%Iv${G7Ifgwv
zzpxP97k^VT_Ae>Cp$*D*pWRpRcnIr`MMCrE`N5XO@94^6Ji?29_ihbsZDAgvw!z6s
zUy40sWYYiaLm2yT0vr#9Rxn}Z<m80x0sRn-q&5T=wij>S=)lMby8i$T$#RaL_NS-P
z$Hc|`nCRr6`6RYm0M5*yprDZvQ}HNP78ag0J~QlLUER;P5U3>}qT@*?-#qsBKY?on
zD204M{lEY{Nm|;}*RO#A0U&kW4bSqQJP8FD8iLWGy5U)P(xu6(;C#dI*soL6s;Ux^
zZ*gV)!nvUJ1q5)^N(T-AL0Tg1sfh`kY6V^kCPw_J>b2wBhmtTE7#)28I1-Q%zNaHc
zj({+wrT98MU4qeLK(_e!c=S5*Pfy;j{0a_Q5X*z+`2K%go<%Sb%XrRURj~oVwp~<E
zKzben1fyVsYKtw2_6|S7-;<opa&m#ppGfDDG(@pN{mQSsUeFE2#Hus%e%TlFR<HB(
zJvYMv*o%sRP12QZ78n*LTQcf^ub}!v83g{uoEsc2zfLx+sH|kgga(e7038q5r2Xbr
z#={qIlA+hcMi4{ift`bvu%#wmKKv(|Ah61^-R7VgVFD?}L4WX~0kLAd2|!^NBja&y
z`Ym>XIG6$P2R{cE7iX04v9X<9c^`|s3);$U{<9+}oNzF3xw${#;DC39aZk8x8Ih9A
zon2#YHZNL=i$V5BmdDm;@5>fssoR#mn(%;9U}x_KMaLbn%U^OK<^+@j_zEy+LT9f{
zMss)5#!d6T3b|wrl&o8rG6TDQ`SNAC;VlDY%wTyle^&}JEj^f|lanow_;EB!ceB%m
z`+t!FaclR$bC>*^WBd>P<6{p>CLf-eRRT$a$2I~+xXkI<JL}OMB)s5hYi}R4d{=|a
zlnRAh>og!#>aLd&K|2GTqC^D9REb)fOvM^mH)wHpf7(c9`$e?=?d{(-uV}szUb-B6
zT$0wo-`Imp@*aiTW=1kHsoz0EM#i{R8JOUoOD1C^BYkW8=MKnr-%kYI{S#qiWV`Q@
zzTNU4KmG6D4#-`)RIY-hy{oZXI>(+xT=0J^?m_qJvp9TdD>eBJ(xv`>MPK@zm&k(E
zuUwgdsuxm^I{SA0oh1n?zC8+?fg=~gIB9;sD-}p6ULitBRz((6W(f=$|LvE_5=baJ
zq#kemcKtyoE|tu^K?O$#`uI>jC>!m{8Aoy%xsM0{)WTy%;|h~L+iGSR>OIb*#3><g
z7DIFJE+?Hx@c#;yT(9l_8;Jm(E>aT%Q|{LpNcjZvnIAt~0Xtw%1@hq7AC6ueNpCda
zn0IDwZt<PfrOIO$aoxLqFUrFH!GVEWPEIKGs13}guJ>WYu+U}E*4TIm1{~6WI2Zw>
z2f!L+1!U@fg$y%D-7_Q-4Dbx#^#1({WDyEB@Mi}B8-%TOV5yRlDhI)a!x?1Aoo4#)
zLy^VS&C3&}yO;eIM^wfh8^ij8lNW)f3<F+Jmyq^c@I7o-Up}I8kmmd!M6$?Ux^##L
z$f>a?O#x1Q>o2?+%}5%LZq{6QficrUz&UVQmO`I!rpvKoBcL@!S$G8nAqwRD>XMpU
zTS>|o4-c?rXGe$nxpN0ko%&c`uMn_s)7~Bjg@DH<o&P~ke-oic_y9T=NhE|vx7s)h
zz=I^Pv53k%(0}z8ZuS1(e{Z0>_wen12O#G}Z=TMDri2p>-&a=B5dav#v9z_GSlUA7
zKIA@2g$Iz}4!sd{I>JZ%e>Hcefmr8n+t;q$URv#;RQ8f2Aw-BuDwRP<B`u>OiWa1@
zg;XT8NUJQRnoudEwEQ!QC`Bu!k`~YBr~k}6_kBP2i)VT9cr&AExUS#z{hrHl9>;O2
z@d&*Cb#nN}bJRqzuc=kY<aD=!7M(Hn^5t2^a;js;zG(5cwt%fvrFn1Q$o|6(bnwgN
zeSneT=tL_Jx`%hjOy%$updAv~o%w)YVa1AyrxO!pe{2V#GL{po=r(+4#I=0}YrQGI
zNj^kD`k;rwT{+dBU30$6@!~`@)XBZ2rJ3ogTaJ;)4~;x|h&lqD@i0Ip&KAFt;~grt
zapOi43&^sP5)uh}#<>)Tg@Ho<O5rY`Xy1PnGN}y!bpuof)O`mXRY>F~PGtW|<bHly
zmzF?wO)4KNKmw<o#zc84_Z&NJTzuXng(U4M-MV%q)e)Y3+}$5=sd`F@Q7TJ5tr6~?
z=L0HJfUVA`rKtX%pxh$}LO~o*E$ywNqf~Om6;dHbi=TrElFt{=se9L}^hEm;6X(sJ
zFNh`nLrOm6{(qN})7|r?ZYB+Y%5!-pMKzG{(54RT-TP`Jf$z@#@tuJwYc8KDLN!J-
zZ2_BRyfkZw#7LxlB@iGVJ6e{00|x>x!_u7t=*;_p7J?cA4p&T!19lEvY1A-z3*J$S
z(<c_z`GQl?Jes<~IsCuLnA!dGRh$3L%4(Or$+q|#9^|+v_8mZbQs>kfa{fQ1we7w^
zX{z2#c3WCn;2AF6o4w$n@$75YufvW;?3R_T{o!Vzmz2oh33B6oS9W3svuMMvpi|U-
z(DjZTp@P9!KPv4$eY~3rh^{Ytbl&VcL*C*Khr0Q@?l6&X#_^EnKnIIpNzXSJCnD0k
z{;G}9t?l!V7_IgcIWBs>=ba6AerR$f08g-(b<?<@Zag~lo~p=rU*p9oa<K!;U;mR7
zpNzaVrDs2pEZLcd$%lFS{?3O485pQC9j~-|`if+UWlZlPQe1b5Pfz5|tGrI^+Y&S`
zU0cX7cLsL`(%^@plEVBo<-)%|Unv!V;PqEi=RD3@pymau7j`C{Z103l!dF~KXAbdv
z+t@q4Gtr0yr~dl?)&F?%WHQ9e^wq*ZBSow;y9Rsv{{H*QrZFPH-Kjyn_!p6EgE8T$
z&ISXMhsg9zZ=W}<o1NKF-Qb7aeu(qS*9xh+^L2|fH__)%(yyKIGWDvXPPIr@_YHf_
zrYOaU{)(W{Cl_5Y!nPTxcEEOROe<mPNtzH|oFKzgtX!}kZ1}AHpaIRG*s@Rv6A}bc
z-q`$ymMi4PH&(9L7CIyiYA%p=+ReyAO*mK)Ev5UFxqZ_fb>^X)zO<QoyW*#Z+zL*T
zm7#WIgy6STS{gyS^!hcW9`Qj(AsS?6{J?c*s(e5^T+iHp@BrvB!#WYrRqk>aB^Eb)
zYdo$7%7%sotIlXLwyKcO4rpsOcRZu8?@@?RWu3)r(f3BX%&bB?pRC<vvcV@#Wov5z
zR8+vrrn)+i5J8m?_+||jStLoJr4mJ^?@aMWVXC96J7wL4a!db_vo#N$J*(AV{>YFg
zR(`n2CjHZwhiK$Cu3!I&yAAzCS=pV59L%dey?cAPX5;yQ1f>Eahlq&LYHG5E{=Sr3
zAB)#9<f92E62hDXcD)k>W!kFW<5u+*t^>Vup1HhMD)=@*MoqHEt!=Y@lpX4FRN?**
z<JX5Qg5X9Y1OUdl(p<=!r>p%zJ__AK0;4L$j1XGr-DTuev`bg(d@rnfyMg9vLmgCO
zDjll!e-R*fQ?sPvaPAa6mYMmDgh;22RAHfmgW~=^k_<h&v`+D-Q&SuEl&+uNx2%Gx
z9G{42_bvQ<qCQRGbsS5<Se#EXb8vNc*9~l6!>^|`&~7md`iZFbJLq;JPls$kq-tuw
z^llk>4G$Y)uFM!GIWbY1wiS?wPX+zR1Z-X~_IDs%?E4Pz_tVoGu5|oZDVr{Td3U9R
z^lj|C!D$zajW2EZ$s81j;7s>~P^E`kMO!8)%Y1_I$n2Wf1XHfJSLD<oVb?wYVl(ao
zu(IB#bCXvK2<>{|>}u7lF5^Sb+1TF)<>=LK@M2HT#-~qxTN~}8{zx_+is-$X-c&XG
z__1TuZN2;VPoEK1+F(9?dc?o>y~$9>O*Pw)>EB{CW|mhEKitc(fx(SgP_&S82}6Zm
zmT#nJTMp<hlNnBSZT2tVt@U0x+ri<t6)SGH$~n8bDnwj^TNbldGHmPkB_&0FaRCGp
z5wGc95QCE1yj3A#&Gdmh6y_cZ4Tsay*EZaeu2ZHOs=)^2nXBX=5D+mjxml)_$DLLz
zjT&s6)+;Q&jBb}pf)5UcRrlc&l58SOM}Ns1Rnu&GA-edLUGrj9%?iIS&VSC4IHz7y
zxb<U)Fp0W2Zb7tPb(YTHx!QJOx3<6dl=xTdm=^WZVo|8$oH^mAQg5{I*1)2InxAe4
z{-BP*M**=Q*gG-;MpL*!w=;7B*6^LMpHxegMIXk|yyD-oWrQzX?YH*!aNF~C9R;sm
z6S%>$OuJePyYGT_l^;!w{gd;^G^D8|vv>hY^-wXyjkB0o7KF5J!qRzf>QO*>28{$H
z%&<JYyil4ar5=SWj<F&Pas#En&1*RG?S;EjkMbjNwYQuxx8BIg+OZ&;anx64ZCDWU
z6PS(6D2pqWSS%6kG^nt*<xYn`Pi)6XiuylYx93e8E2}fWB~7nh{ba%}WhRW@L&dz#
zX>f#AeK8wf1*}2o4x{2kW+qeddfy2ImSm@)-}vh^p)>98(*aUqaJ4vX@KcsBxtvlc
zH*4A1q;Li4^42+F*G4bTF)J`eLXmy`JhHHbKqx?VCOe9&WTIw9?b)-~&8@Yrs8@I@
zPr={NB{1+(^Be#_$GLM)9X~E{Gw1N(XVl}$FHD`~OA|&OQuU@%1};%Jrn4f)%-N@2
z>2{7qrfdEIGiQ;EUY28I4emmGwv(DYYnCfmC0>Aap6(;RDCrs2os3OR9(V9)eXnWx
z3(Z@y(%fg)`}B?JAYN)7(aTV3$eHgo{-noKO9k?eohBwdkTqzyE4vDg#zl2}WJhS0
z06D;J^|iE|neQi+uUotJ)0Z#!f<HyrwBE1=->jP+=O#~{jMy8ce^WUO^tioy*I@+C
z2q@jnY5Mddr%yLC?<2p^%LC-7gj$qI58s4M2H0c$q&D210J(g8m_yO-@JzhDL8)=?
zUGMHL_*gGlB0pSf{P;a$l}xovN@!X{<+(>kLT*~jRfsaZ)(vB<Y5W?p6G}Z|w!~^e
z$zZKlTU36tZIJNlSGmP<%w9qyfqeD-qxPYDdi0f9^Xk6kpD*~}5sdxUp2A|CzpQ2U
zpL#EzJzI@mnMnzeIb_QgfOJfpg5X8K18GkmRq1VG?qGj9b*OWJLJx^SgJ{y;yndZ|
z=#coZVLq@>R*jCDsp)w~jxY*XZ(?C>z4OYIEBpSOa<Y*8F>%-~bSoByh9gd4#Ns-0
z$e&SO43(?`x_CRd#>`pdH!0$=NTt=bYpz+ipxj<(Y%CHuC{9NqUE^@w-GyNX6T~bX
zTS5*!{?jpFbpCb+@yY=`LdEjm$~-q&FHCO3>-_QsNyv#4QZ7y|E<ed<?JFUqwhshT
zHA+rqDjFB(-kM9<0M!V9#CiUF?Ih3>2zPgb21!eU9>cs$X_}X=8ZHKN=Z-LR&YOT!
z6xBX(hPa8+i|`tlPFAi0O`&xpd8O-SW4bLZEnwucj4wc2C}^ccyRQ+U?l2LZtd+6-
zZfh-n%ltyPlKR<)Fe+w7h*h3kcoF7SSbnrq*M72Vr^cK)qF|;mGfmT?+9vE8^a+Ip
zgCxdb>*M~??(@3{|4*-G19T@OgKw5rRK$zBNLN2%oZ`J~86`76OYgVq{V<l8(((Nx
zJrlgC^llcJy0SKASHtI|`ERX`w%CjW_@lp}2d^&6U!wlNmTRsy2Ml!e^l|{=nBIUc
zNmj9~pq>j~CcZN&DXFx<Px(dKq2Y;Dfhr@mfpe9Vh7bku0vkFgX-nFJ_{X;u^n<gb
z>wG5^W^GNp9&M49?XF{ZVYH?7|NJR^sE`@^*3MWo>dA^YzwqzR)!O$79O&RVh4iX0
z!S(dkF?}d2WRi>L#@pH}iwq0m;${O!#>B)lB{Pxn(ffvss<5bv83uO*g|4Jv6ph)O
z%;3S$If}N`)TCx)%t7w5XwkUu7pP1ASM6DBLM9w$lO0=Xb!hlXfHe@2Fs~666vW{^
z%9>AlzCC=Jj&4(1^X9SX(0*u3J3k?7CBqT61!Dnv-QFK7PF3j>e^4~+8pr<&JTmPi
zjnxK98KW<bReE>1<lBTqpXx`ClvGr-N>O+NWrR-K)O9&bm2wE_v^Yc;dcF||&4@NA
zUhwr)*?7y?)xqA)C0PE9fBJdlRlHC52#Yse_HQvU-06QrE|k#&n6Jx!fq+L&@LgPW
z*1fFomnYxO#LW_SckKF3e&DzY?#>FO>kWa_3<3uZl7CKC02C>l`=)<*R@n1(GG1L0
zR5Z@G(M3XC;A_IL0rE<a#orC+6Z5FKvFnk0aS5H#^!%~5ITE(Z;gwZ7=d~R&_7B^+
zPSCxOsK2$fsk-b;mj4A#she{d5Yh6QC`Zw7m6nzDgK+}NNbRP)?Mq7wj_J%>o__pF
zRwEivpa7$fQCBy>*M{^*+`(1(kMEP58CqklH%4X|aAf~-thnMhsk}2vi!X1g92^}@
zMJ+8X1TY4*6w|WpMU<6Dc;XW>d#2BJaXESTFzhD<G0{zsxys6{%`UH~Ze6pr<?DA4
z32_r3RQ@x%9!1T$5;KCsOwAXTJaPy#vk|>pS-AmYi?-!mcOvG_NKaRrHHL)5aV3_&
z`1n=e<XBqD&pPh3ZedAHV3ZH_0K);q>-=mU%Sc22@es2oJU?>xI?^}61^U%1Wc_-q
z$>AdyD63`qt|07jhC+OCecZ#n#WwpVP<1O~Qe5#8a@CCQb|;0;e8R+u=U3JmDJhwL
zzs`1;ZQIQK{o4f5&&h@Ci$Lf!TvoQ}<;z@nY(xO7val_2^NAdE)k#Sk(Lxfj2?<!!
zhJ`ZBsioe<>jQc>d5iv|@L3B5uGDTD*JSTue<jz^vf-&{jDOS>ZD-E;9Y<btNsfkd
z{e~VaHkF<-_*Rz9wcO~0+1KVz`1(@baoxoOhU>L{n2g?Yyhp9<$73ePHodqb;wbLj
zKjo8MfzV*z;`;vaM{rSHzoB|>0QK(IzF(BK=o6ke+qX|QHSKO@4_hB+Ua~DHq~K{_
zESI9HK5=5=Po1!sn0o;F$AT_*2R5*uHtktZ$G2qPRKMEj8TR*K!u*-L^3;(d`YibY
zm%3LQ0e@UMzVyMpdoV~ZBefnr%W!V%vcA`zNmZS~Km>|r9$SUTouGao_ee$dgJ>X>
z-#V>ww?#qVHwv@pXbF=NMzd*g+uDSBOKGmaObPrno3bB0pZL(BGwfrF7g&zzQdcN-
zs_znsXR%KArOX&3Q^vu~oaX!+l+s>5`dEugL^OcXkhghr`xtTq!Zs=ubET%$t(36z
z5h+aYagY**XKc)1vI`t95Dzyj-<f(8awpu`4M9zlOktv`9_)WX=r_HjHLUY;t;V>t
zD8xPdx$<$|-K_cgpj~{d!eHTw^4tQ4J8<V8+`rG^zScK+-Rp-Mj4??>!13H1?UDY`
zLd8DjgUkH(@ZIGe1USs~-t&~}n?8K~j@3LC>~M3r=;&cJArHHxFZQWym$Ip!@0ULN
z3=v-=*mt1BIEpahbq+1m?b~Bv@+djy-<aI8ZB%7kvE=OUi&eAq8s44XazxK+R^LIl
zulNp<9BXN{;bQvGkb?(nNKj^e5vz1V%q-VmmmU&%jbrohuVZ5z6gnr9B8-c7kY_ey
zX?Mq2R7xC`9~%~XdJr?%Y(%lT>{duj@+hyjd)Gg;u(e%D7Jy2;bVR|m_4_xE3M0Sp
zWwaOl9+!37)~$rS^J`p0q|z5(%sPJjf?q>;Qc^V^^FEE0$GdjI1^oSyGye1J!7jG`
z?Poqg(4uz)CUCEFZZ_^uRYo=xWjXwZL4xCL)cm<VRh5<bz@dsiH5CyVPz7<wCQO?2
z%y4E=u=&^V*5Chbgr|PNr)Ro*V4Z-t?329yKxe^X)sbVX|3Q6HrgS|zY|Z@OipaK0
z8l74UVmgNDqP@Bgsrh>p5INoUJOEDa8gpmyf6ps`NfehHH&giM+us%+HyiTLw;}x3
zp8tGX#DCTM=i6?4JNCc(HaL~px8?(dK@q7(dxm<PF>;ynbhYA{w}&Fnt5@zCcvL0s
zPD;@vk#58HZyRyH&!JUabp{OZ%<8r4w`7U@$q`wtgS$w{KQj)|duUZ+B%89&dE)-k
zLuz-f-VJfq(3u&$t*}eh`Kznm+)J^jD2y=`K1AW`)-U9v^WWWn!A-)y2W$N`RN);b
z{sNhVKmU6=!oS<8{QXWuR3$xr&3O3p*xrAA>i-8nzFemo?)Y_y!>3NwQbs@{p#jiS
z{y@rugUJ@I%|8X|m+Ki2+t@uT)nG+^tnK)jyJ}gI4Ry`DF>`!<eV^$Ks_A>d;%mU=
z4}M3i@gx!VawgVv>)DU=n4)SG)?0Vlz38c1y-md#;U3Uij^-;eCr5AhjgPIZh6vec
zr2HJvoh&)yBuq1dn6KLB9bn}QY`IAW27>i5S>=|E^W#x-LPQiAr?o&NN$cUcpjYgw
zv65kXuDN<)i00%Zm`$mvSx(&8BYBU21Z~`y>vhi@$r)t`{FxP|lf0CFE68w&8*ZO<
zw`<@fNyfaFUvb=-FtH2AaYcCZ*XGt%hVHPi<MZ^08rNLusMRDM;Lcg)qxU2CP3F+3
zOrQLH{)_DkdL7&2aVa-l=v_?Uy?`R1XCE|h;BGR3{?eKI>ah+*tw*63=~V4QS<MbN
zTcX^epdaTcLJuY7Mqlz2qb46HeC;N%JI|X3U1Tv;BqWdJGhWV^=y=9FjYblAJQW6@
z&1l*<l8m-CyJD`VS;oNMb(u5g^BL_s`Ky;+I7VreL#D-gO-Co23Z5?Zhkw{6D_zk$
zQh1Js?=MXdoor~>{`oDn$HuzCtyoZhr$ZjOey(xc7#ym=|MQ3`!0)gr7)T4j6LkfM
z)-}biZo8hVpHWQ4n%C_5s1)@K+G<gOgi|c+QwrS!>sDtO+yLbPW6Dp>TRPvP;$Wb4
z3DFf~36!LkA9wVqs(ZSSxTs0-KX5lwttVt_y-V10DW__fpj|ji5kLZk9=&Zvjn(JW
zsnB-zV{E%;k1uEtKZ1}7=H*kJlLg~)o@KzB4CN5@hdXoxBOpexj9cNUB;w`FGvk51
z29cwSpb8y4(J!sCW2v$$wb&X5ODij~pgkiPJG(o;-4N35?Ko!HBk(^wD<&u4C<x-I
zbl)LNQJ%3kp!Gl(>8RM)Y@Rdg55X4DVk$um9zFUs-9O|Fc3YKm+@yBCjF}jnS-dM?
z+u^M;vdO{6n?HRbr%!_VQ@odo=5SWlWN3}s%rlEKhsI4ft#d_Y)5-{Vk#K-S<$?U{
z=j`VmLARcF=9ofwD$E#kP+Bl3Wg^zXC)s=3zAyhMLiYDHV3VKU*|YVg_q;DK7e!Xe
zQ38wEcqe6Q*$21<2PSV^NB_)l4Dr<5)gG3M7IiTDhh;?~vfBT-hlp88V{oKVyoO6b
z9?_XU1uni-p?Oqp!=C&lMLoGp9(5^GLj>zC{d0RuhgfX8YZ8$rnw3Z*1n`6S&9#+3
z`-&XS!+_zA@YvfkJMY5RN6tSr^0|V_q0pRm&70-ye8IoPl}&3J8d+df2mp5&E`>&<
zx1_MUU~?xK!)JzPf#@meP2YWR0Vi8Abio9f@d@OS{4JIR3_+nnaf=w6Q3O+Cz>rZ4
zwNBJ>Cq{*eF`1N!pmZKv5LYa)x1l&7E2A0!fm?Lmdp7XI&aP47KdI%%$YjE?0i{ie
zkBy64mA_!X_85A`VqXTeOzhb9mc6|CA&V)5`fBUeLQBypS<??E-};8-sN0)o42hV~
zd4RrwT{bkpqz}6JDB@vo&GZ4=i^i-6n@dhk2BD#@hKz(a5l1OhzwYDLTJ{3b7;>-q
z$dTxWj#_4V&?ojG{(uKsm(EfQ-2-ITyZaVlR|*ZHLME6hFo@#!yo}wuZQ;fcQQ+Mz
zb92L?huxLfVFdMAshm4*G#&ABa3C@4!B%-Ku?rCy8J0aj^~(a4Y0z<c%a=Ew=yJ4s
zdu^6Nk(of?TgeN@lPp15>$ck2>A^a(-MUpB>8;>i@@L+v6K~EPc|1HSX?9hJa(-1z
zjzgj2@7XB}%99ncJt{}2NCfS)c&9vY+VfZDpJ(UnOh_N@6kGYpRHsPZBJ9zJkN~&V
z?+bumo05s&a6)Jqp>x5VLrnY?D+Ve*!dQRMCKC&gBPto_Bp6Bow9(}M{`32K*_Qa&
zSnGp^`CKz8GZ;{oQA*%12zCKMgoT}4AmUsgDS|;ZCDK7OBiKBnB}ASHf=%(V^`69{
zq{PIg`g)oQE#?cf+)ATHK`Z^lP67fGTN$M)vfebK?*Y(Vfl&dx^uXKS=o&a~e1uae
zFIA!mBjP5F8*kEc`0*eCU(k8<SZ4aC5t<806Xxpi(5Db@6DuYMwj<r1b=5Oz9>aPt
zY)bt1b#+t65qE}AzH@2dxR3{FoHx<kqW<}1oM&K-oCq>|J=gEqvyUVvQX&q?4VdBi
zu2~}$w#Zyjyke(<Wofh5ebLBG`Tyb(DxF*oGnR-A4uDtapV$WroAGXP!-<CstoOyo
z50a4)+BV`<<-KOVZ)fY_dQBX5n>J1@-1Ur;!ZLf#NnG)OM~$l!X<ZhrHtv|z>yH~Z
zmV)#XA5jY*)bWZA3+sJpe`&)>T*G>+eA}<EvAe~P3FG%z1eB<+I;8N@NOq}h{v?I?
zH&>&#R7uu4EKxUbZX3LBikatm-~kLO*K>jy$D8?E0hc^{{5XK?-CAM3+quETy>!RC
z`psrx3vHdWhi!=s^QKW;3Z+ZJgdlNa%&}9aAZ-HhV!O8VTos>o>jzjr5+<lk%0nMt
z4xA+K2K3X)$~IeF-Sfn-yHl81PFmAwEIJR*`%7-P&xGzlT@s$kwHB2Z(y*_`a}`Z&
z_@f^0lGWZO_M!2vVt6W|e^Gg?Z({R~C@gCVN<jU3cM2T8K$k%`C8n)tL!$!a3DP5i
zHtaHYi80+(940tWY%e;KlOrSAUCK;)&>%7_0_MKkTbi5g=FT1D;`im<LK6$f@5Pr=
zBJN|Gmyxl}<pc3T(u863=vCvS<g+w%QzP%z9$#D&J&CLfW_hOS4g89Xw6yV8aScF`
z!hol6Ocg?Tc{gS`trb*M%#Co4-P_xEq$|D}<{eTioX-vo6V12G-8Mvg)Zwv10#%^}
z>H))w%L!O4k<;we`zM%DE1z4(?F`*R^LS@U!{-J%kIr*Ey(6t->KX_ZVU`H>#7*!h
z(70?Rz3lYewcYRJU7t2GoP7!7G>k(GQWRclg^AN~(anpQKqz~#<I>`kUgu{<o{SeZ
zw+<Rb<p|wu9@|{V^voqfi%KRRDH+k_)`-C+lWi=9oz+`0Z1k5mY8$7!EuH;tvE_=-
zO7CJtrH5<mSoD5;<Bcj9Xr~@aNr!fG&a8}m<&@(iE3af^ba0-@?-jT}cvyy*XBE!X
z_d9jg{l=J0i=(PPnW|QX?0YGeCTDj1?7U<pl*OBybIbD<tN>3imZK!4WR(jgm_kVf
zHpey~q3RV|#q{*`r}#Y=m46Oy2>v--&u6gqMuAEFxJtGE!bY8ZOGcgtxLvrVwMjbQ
zd*sCQ955r~^B3M4`5NK9XiS&(ZN_8czr7FYm@g-$qhPqb2>+x-K<_9KWyUV>bage!
z^|?-l1E~`BR8<5)uEyy>M^RCj9`wIekVp4AUV97bLitdRn7-yrWh+a|{9nGhq(^oc
zmA(A9=+XvdL&c%PhB0AX(jFw24b&lNLT_)@k#^CPpu?qYQa)@Rd8@1p#X_cqbN}T^
zelaWd&v8+#2X3V~R;qb$ZM?3oa;RvK^d@E%WwrF}N}*6+#Co**O}o2Qt!3(z`*MHW
zP^s)9JtZFUpL=sHj1MNWAX_Pi4-1TEkD4By<&c}WJBMMAQ)~PnvSUsNTY~&tHu<ZK
z;Stqkt*VA@ad~zv0alYX>O~PB>Z@Y%j_5oXt`VRlWE1E5fs%Ju9+Y@z7diC2x?kLr
zl!UmNPoCwzqO(qV1V$ev$P1j7J%HUH+fY$8l$6{k0bocU>Xw#~0n|D5`?(raLj+C+
zUDP05Hw#4L!e#J++>ewRW~5n2K;Hp<qYobBQVnTJkT<Rgf|zJ3y5ykSAus6PlO`>K
z6gFkbqPCWi*NS$_YG1FdP2OZOj(O$ta`V<f!x~5H??b;tSt|e<604`()ppgna0{Bt
zK8Ztq>|?FDabvrfiM=D@O@0xc*`L|H48C6Zdw=Ww6QaaOLeYEo3Tv>rZi4f=SYbic
ze9YWyYda_&K&4@xW0CQNnxJuehna8$jz*Q(Tv+A2K61xB4(@{o?j!og?bx(caxxo7
ze;1b7n27$UQOFOR$1G)P)y8k1S@kIT&nL(I2C!Y)TFc{MhDjkvH~$7XmbUwF$56K0
zK+%HVm58?qH&~FN3Wlv9V#yWBa7!dB)cOw}Y@ztyeS$}iS^m)1`?1njw#$%sg@6@c
zj!k&+^E=UV>Luamf!9fIie*lx=8_@$-m{;pU!1C`pZZ#jt6C?PwxHag`Yh^8k6RsF
z0XVLd0m5gaU2Ss34r(i3W&s~@?lK65J=W~^;_G}b%G`u24Js`!%7>clc+-1rkGnB<
z>V<k<+%kT4`1a)SOH8b-`z4jjG)XYXyu7AKLf+JEV&~=)^7Haro5FtYeSG$&2Dl8X
zChX_(Bu`wOK_Lk2d1UE)S`f~(A2T_F>fr`!ShoOmO1dUOC|?@yJ_D*}yvP^bE<}Q6
zFg(+Pem<Ux_DW6Wc5y?*J(ezw-?xwb3Wcp3#8HAhPyS7%rK3;fMYY^<`kvnz88X9J
zx_Gf%i~p7(-P?|u8Y~XE?Jm?WkczZDWE^LaPCka+<2q5j^0g4eyt;ZLMiaco<@FQI
z<{h41C!bloHT<Q+pHK+h`t6mfI9NQ{{b-}-=F28g6KqYdq@5GjFkKhkEV~b<f7D{E
z?KNOt0K!iFJnQ-7Q-5Ezp?5z?y_qUpwp5vKDp5e1Scb7;6Q?ig+s3V}Cp11<9~K=O
zzs$$ST2xJ4U1HbqsrnyFZMF<Bu29hK-gT+~5`BqUp;=a=*|<*5aAa*tGna4S8P^`$
zi^N5{Gy9cZQOkkH19vqp(;c=H9*{l)QGE>GdCfJ<@J6fU&*@KUYHA)oHiYZUgAOpN
zWzxX*B#b#Amj<w$$K3on0~9koNcc`{jo>(=8SwW9Hrj~0BolwLExJdeRHHlVXR&tq
z&pa&41@j#p*O2EZBO<Qsb=v><^5c}9Pgs9KNzO~CKb11Af7bvXh2eHrSIY(~a4n8x
zWu4l4vROn#VwI)oR7Z{Pb@JP&v6)kGF5r9A7OxI}ym|B4nUc3Af3Z~3&(!KU<JPT%
z>btOJW}Fr(7PiRt@W^GU-BdNr+WIk_nr&kfxhX-FAhK}bWI4Iud6`d@cTdQlTh%`@
zUwonM)e-mmZI@H_zB$g=mJROLcgoT*w0=nym8ZAC68Xy7*D{|fWX}qK%%<AeP+=gB
zn;Lyk`VgsK^;~7i%9W>JB=9ur&cpqKM~s|NQr`6Q)tUYpfkQvi^K9(~U4)}803rc7
zE?1jz>ttF|jp&oSBy?`yYh>E{4ybdb-?kQo=_xkc+QA_vRkcpD%a5-;!!{nez=Qe1
zZDU|e<0g126KRn;n!$m)cyZE?iR}!VB@YFCLOONF;acb(&Tcu|@VL=5a9|>X^1sem
zp(vhVQJHKRDQ3d*AgFi`Pc5o2^ilI+uL(z}HS_)R=<4{Pp_|72i&5USxrcgoG17|~
zaP(<@KV!ief*HRc1DH5QQZUk^zGE9~<3PPqN{R{5rNf1iLe)a;rBT%prK)*xlbvQg
zJT^~Sux5r^D{exrSN*xTN8pu%CFeYBY{iYH8ID*9{f8HRDk}@U3rT(OkHOt-qU<wG
zDJdGRkMUdVW%@6Nv|hRuv^36sIe0U}2|z~Ay{POs&Tu<{NJEk1<TP0F1vwCu;_yp3
zh&4h#z-IY?b(aeYzTX%b<Y;J?Zwa>kwY}YFL+cK~oLM!z50n<w@J$270*|D&y}aR7
zxGaCcJDM>TrVW*rzSf-*WBHOLhZsG##dw8>+FDul894BFoLvd&`~v<m`<bTMb`ebe
zInhKmPK<O|738hb1{FeXdOAHz{7}Xl(JtTUU@6Khs{2aAd^(RU0!lStKM50PRX1yG
zzg7z6L+*aO<u<S-XAXTKMEI`(Mwgy*ggBBy8@fm>rrIJ@Ejqh$S!l(}_`Q2`3WsFp
z=62L=A4y{d&qc{lU1Rj<Bti~Q0Ey>VNq0m0lyRevGP1yQ07+<4NJzII?=;1aP7U5Y
zy`Y==rm@}Z?jYRf6UAfT*|TSf7xg%tFUynSlaglW8=Bo#)7tgiuUAh$Tgg7NZsps4
zR<m3;$9>@5*tOnsuHEe_p9Z>su7I9^IFtTf@MeDSVEK~^x<*Eq`4c+NTQ=fGwqSze
zG&H~pgx7~@akILad6vY@OSkq8Jy)_hor@SX;=bW_IrnJ)q)46q{VVpgOg=)J5GN)W
z@y?lJZtn<%`uura`QoA?VLJ$te>(?<XMXui)Yh~W6c|EJ#h-*+4#NUJrCUF`W?O{&
z#i**Po<4h)E(=%$N9O!<=d|VBcowbB8^)GDdgTA;^b$D13Q-X!0)Ku7aGWS#OsuEe
zYR%lntd@bMl1%KIX382qKDTpKp!hOlC$}p)ao7|?k*m&gEo+TWqc(!)!V6A6dGfZ$
zIil@I)WB|Trh}wD%9=#cb~v_83u`sa$ga-*ce4=|(B)68cCl!>9EI+5%;?d;;cN?T
z|F)jKuNp5cN|Gmt;}~txRY6DAve$4r9W2J|BOWx21>g5hEvvc`H09EqJg=K8lnSLR
zottz`g8JVsDmr{<tD3d>LY;OyV?l&7x#MkP;{>+Dv&d+JQR$N>3-fHl-oF4U6P1Uh
zml|~IZK=eS(~krs^8g|J_ty_2jn+HOo7X$&&dh}Hhl?d&iyAGBTxM9m-L>ZryWB0q
z?OIkRzFC=}C%(b%_5H>TOWuW0&aPdzE~6u2hUltw>rS3Hk@nxV8_zvvfBtv7VR~HG
zIfa%z_VQh0NIw*Yv@D0Frvc{S9r4>1HBB?Kr@;@8>s&Hma~LclzE}xB%@;aXP0Ks(
za}Up|xmA9@$xJz2@^(YLRMXV*b)wNTqWqmV<!o)=m<(oV)4^oenbLCi4N5o&Mg*?1
z@^a|`$!sm*Qv&`#O8N5T7oNASXO3Bv5@dIVY55DrCY8U#Dn)2HU%zge{pr&ufGO?q
z<HzghSkIg(6E-hkxr<8;)SA2nC%LpJo-kFcxg0q9@Cmoj4t5xc%2Vx04VZ#~i@;;C
zW_%|qU%78wpc5YiaW7r<6*vfvS}-t>Qhw)uX>6MI!chI}Aa%`Z1#6xN&<7%kveMGu
zwxH+5I^$jsp?)R^HGd6Y`h#(rQL^p!V_8{5p{3N-JRM}7Po6x%DYU3q?s2wiVx(!P
zg5~I3bLX!<ea-B#N&go$DWbMCrrRjio0?=<zEm(hw(GM|RxXS7PT02u!Z~wvXsNhF
zfe+p)$x?qPw{6ZHPn*Q$QH@ALVhe>MAnP&TXqwHjcwQj|_FYcz{P{_cpx)O8k@Z_s
zcF6w%DsB!PTw-LSYE-SDpX^t0(C>HC&LHyK<J8o615Uu=O6N-(&ZFF7E!Dw;F8sd&
zOET)WeSQwHeS2lkF;ja`_x`<Yr#o|-dj8=#(9dEEGJUEvXBeI?xzs2#Dz}&JOL+@D
zv-&0W{nt;K81dkAvq+`IvKgMgWo_Si!C3eFrlX3UIyxh^n0RK{jT4Cs-gWPIih+@A
zxTAaDE5c&(&abDEznI6J-~9hDCHl8Shu8DJJ%n=AU(-z{;*;iwE`Jygb?ALmCD?Yb
z!GvsQ&;24PuY8An3plMB?%ibg>y3+u1Q;|cL5}YH`hPzZ3*L*{N}1~!e3G3F6i1e_
z=L0Oy<Y&!2f-Gpd_Ak|u@Y@3xaQDH0uy0t|v{Og&ui4ulN6M<I)<Xhqtp%O^ggID;
z3$uQfzd1ZqKiEh9IgLFR1Ea!o=gtX1FS%lA&SX|_A2=|4d(pgXPy4lNbuY1G>yzP#
z3f37@f6_&?ns`Ma8~((;^O6$Jr+;h)y-Hs>idv457{r4$gJ0-LdbQliO~xVN50cHT
zTiy&&Xp7dg5v;%q%Gh|!AJQI3ncXZYgSkp6Ac#hR{GexTsAEJ7#aYPjqWQ>Z(II2b
z$`xe+At-3yx=REU2<(f%X=rYG%hPiB=pom5Fl@j}xVv#V>pO)YHRqSbb3;I^ks(k{
zJz{?s#SoNbio==CQGH_ak_7uWN|*`5c45Iu+d*+8WwlF~4)fKvCTr1^n(As;qTr*{
zk_^O<7uZQX;IZK?m~mpZVH_nMZpExF%cc~ehyjkFGD}fCE+{ay06c)cA-)kA#v(>f
zJqmdg5Cx%=iJaIQh-IitFJE?XRzjLWp)BmAL{`Exp~B=dwYGP}wnRRSA9lNrlBlWS
zthTTShfxAmDhR--1^LmP)CJy|fWDJ=nTH@$($bpcti<O5)skBJ)Uji1*1~)@Lo!{l
z0{Vce>Yd6;1FXSl$l*%@$<jt!1Fw5ptn`PANHAMcw9Q^BE;*SfqWPQo)Tvh~Bh!}8
zywSmHWV*pV15a;nd@!0RxTw(<URcB0gWO^T>625#F3w}Ksi&u4rZac;Y&LT8m;#|<
zhAaJ2y9rM>c5*-)Xk%_h2GkG_yoczIFw>)^pjSf4VKXn&U!B50Ust!`<JUD$p;r3k
zFL?DnLU7UE@D)In<;!Z}OrY43{elV;aKsTVnwY3+c(lw-W|S<=P269WJY~^mpNKbQ
z-@&;K$DeXO?~Ngflo_g$eTj*hby$lDvH*=}><<PEHyEENINF!^%z(bgE_*Y<1dbZ!
zGZs(dmvl9==d7;v^<Atd@N~8=oezrL)KIB+<XKQ#v;6R~+qYM6Tw80ged1okIi(dU
zy?a6Q=Od`-{*$Lc$@Mkh^5f@^>VLo8dC0iGTC6Bov1AE@I>AnrAx^@+eQfC}FD%@$
z$s<i|nY67k2dkjq@%{U;12_>_u`pC<N~XX{>tI>#M!HQvI}mgMCE`jlQ)A;jE^fS8
zD`zEGH1!C+X7V^-Ny!~Hc3a9ANUwFIj~=+6m<fapf5U?u-%AC&Xe|Y`F=H5Dc~riF
zPHSZq?)!?*12s5@{^arFP>wm;DMc?|zNBi@x(XK+A$?-9^?sg0VnV{5prc3)q=C6q
z#6*>3)W9rq;_{L>iF~})r+LB%K3F=0Hlyn1-&6u4W-F23cs{2VUd-9>$s1Q0ngawP
zn_8|7vRRb5Se+Pj{kjS@-vEI$j+}za2q#pS9aw@c_m)RAHeO%<Uw7|fdnb$<p^ktX
z3IhwY2w&b-&vjPf6%df5%<jf?EgQ6}F)W1l+&=1~giKYUI0iQhot#v~L;<Zt<$1e&
z?v)C4E&iOxvYh(l`37uT!g~ji*L@g3CKd>3Sz;xa1-w9!XnmTJx-Ki>>j1B$Qspxi
zY`jz1s9$}4+3yUtRIG86#$*DPF+jze=goTsO%Gpf#gQYY{H*Qxsc&YFzYWutHt60Q
z1RdJkj8m7^e^gnm7`Af{(CG1#CxNyDIh73Qjg5`LV`47hP1(6i7AsTwLR(QZ8n;nS
zgSukC{Um4k{P0vrkm+W^$~2?o4y-O{N^36uJ`NTCu7_A1K6=!~vEfh>w%lK6xh*x{
zkJe+`w(DFca90-jAgSOnrkT~hem&pb9yPP`+__Y{S(I5}#mp%)va-q>{CdlCbBR}J
zFGB!|9i5!o@Z$aW^*i`1=*Wz+o!R9L(cA`I)m8eVtP|{9TrQ&rCzw8e@q&s81J&1!
zjU_e%{^Ex;hf$_Uigs_+U%?vyViTkbFQO7NPH-&V(%m;~L$i1R5Fa#<!%Hs)S+IGy
zBtvLn{#~8>9s~q8rD>vxERbSjny}cF5RPs}NQO`uot5a(LBjLbz1@crfdtDQA(QEu
z$Bqe>g;)Bjj2YuY#Ip9&(o($r#~*S)eHaLoHUOpiqu)T+9xW3F`GED-kV=0kI}H$d
zM?LZYpC*?vx`Y1hMLZxO_<wlb+sq!oh5EWbl01m+zl>J_cKkikmXFQtZ!u<8-H_P4
zB>s}1BWF))d@0P_D~uX}KAvZoi7ru#9`)<sh}iXJK@h##j>yR6Bz<cRELwKLcvCXO
zxd+4>JfJJj=6mb>BVg8eL!^e~0Vab^HmKuUEnP3JNX`Zhk=t{h|2yj$_kB$XPxJ)z
x`1tW715d&D2%Z1l+m6rbI%)i!ufe@NXx#zdSJe#zW(eO~n$0vlX|j0B{{Zem4W$48

literal 0
HcmV?d00001

diff --git a/oxAuth/Server/integrations.deprecatred/oneid/docs/workflow.txt b/oxAuth/Server/integrations.deprecatred/oneid/docs/workflow.txt
new file mode 100644
index 00000000..fb5180d4
--- /dev/null
+++ b/oxAuth/Server/integrations.deprecatred/oneid/docs/workflow.txt
@@ -0,0 +1,13 @@
+title OneID external authenticator plugin (enabled)
+
+Redirect to oxAuth->Basic auth.: Default athentication
+
+Basic auth.->OneID auth.: OneID authentication
+
+OneID auth.->LDAP: Try to load user entry from  LDAP by OneID UID
+
+LDAP->Set current user OneID UID: Can't find user by OneID UID
+
+Set current user OneID UID->LDAP: Load user entry
+
+LDAP->Validate User: Check if user name in basic auth. equals to user name which found by OneID UID. This step increase security
diff --git a/oxAuth/Server/integrations.deprecatred/oneid/lib/oneid.py b/oxAuth/Server/integrations.deprecatred/oneid/lib/oneid.py
new file mode 100644
index 00000000..19b7b8e2
--- /dev/null
+++ b/oxAuth/Server/integrations.deprecatred/oneid/lib/oneid.py
@@ -0,0 +1,145 @@
+#!/usr/bin/python
+
+# OneID Python API Library
+# Copyright 2013 by OneID
+
+import urllib
+import urllib2
+import datetime
+import base64
+try:
+    import json
+except ImportError:
+    import simplejson as json
+
+#import requests
+import StringIO
+import os
+import random
+
+
+
+class OneID:
+
+    def __init__(self, server_flag=""):
+        """server_flag should be (for example) "-test" when using a non-production server"""
+        self.helper_server = "https://keychain%s.oneid.com" % server_flag
+        self.script_header = '<script src="https://api%s.oneid.com/js/includeexternal.js" type="text/javascript"></script>' % server_flag
+        self.oneid_form_script = '<script src="https://api%s.oneid.com/form/form.js" type="text/javascript"></script>' % server_flag
+        self.creds_file = "api_key"+server_flag+".json"
+        random.seed()
+
+
+    def _call_helper(self, method, data={}):
+        """Call the OneID Helper Service. """
+        url = "%s/%s" % (self.helper_server, method)
+        r = requests.post(url, json.dumps(data), auth=(self.api_id, self.api_key))
+        return r.json
+
+    def set_credentials(self, api_id="", api_key=""):
+        """Set the credentials used for access to the OneID Helper Service"""
+        if api_id != "":
+            self.api_id = api_id
+            self.api_key = api_key
+        else:
+            f = open(self.creds_file,'r')
+            creds = json.loads(f.read())
+            f.close()
+            self.api_id = creds["API_ID"]
+            self.api_key = creds["API_KEY"]
+
+    def validate(self,line):
+        """Validate the data received by a callback"""
+        resp = json.loads(line)
+        valdata = dict([("nonces",resp["nonces"]),("uid",resp["uid"])])
+        if "attr_claim_tokens" in resp:
+            valdata["attr_claim_tokens"] = resp["attr_claim_tokens"]
+        valresp = self._call_helper("validate",valdata)
+        if (not self.success(valresp)):
+            valresp["failed"] = "failed"
+            return valresp
+
+        for x in valresp:
+            resp[x] = valresp[x]
+
+        return resp
+
+    def draw_signin_button(self, callback_url, attrs="", http_post=False):
+        """Create a OneID Sign In button on the web page"""
+        challenge = {"attr" : attrs,
+                     'auth_level' : "OOB",
+                     "callback" : callback_url}
+        if http_post:
+            challenge["request_method"] = "HTTP_POST"
+
+        params = json.dumps({"challenge" : challenge })
+
+        js = "<span class='oneid_login_ctr'></span>"
+        js+= "<script type='text/javascript'>"
+        js+= "OneIdExtern.registerApiReadyFunction(function(){"
+        js+= "OneId.loginButton('.oneid_login_ctr'," + params +")"
+        js+= "})"
+        js+="</script>"
+
+        return js
+
+    def draw_quickfill_button(self, attrs):
+        """Create a OneID QuickFill button on the web page"""
+        js = "<span class='oneid_quickfill_ctr'></span>"
+        js+= "<script type='text/javascript'>"
+        js+= "OneIdExtern.registerApiReadyFunction(function(){"
+        js+= "OneId.accuFillButton('.oneid_quickfill_ctr'," + attrs +")"
+        js+= "})"
+        js+="</script>"
+
+        return js
+
+    def draw_provision_button(self, attrs):
+        """Create a provision button on the web page"""
+        js = "<div class='oneid_create_ctr'></div>"
+        js+= "<script type='text/javascript'>"
+        js+= "OneIdExtern.registerApiReadyFunction(function(){"
+        js+= "OneId.createOneIdButton('.oneid_create_ctr'," + json.dumps(attrs) +")"
+        js+= "})"
+        js+="</script>"
+
+        return js
+
+    def redirect(self, page, response, sessionid):
+        """Create the JSON string that instructs the AJAX code to redirect the browser to the account"""
+        if self.success(response):
+            suffix = "?sessionid="+sessionid
+        else:
+            suffix = ""
+
+        return json.dumps({"error":response['error'],"errorcode":str(response['errorcode']),\
+                           "url":page + suffix})
+        
+    def success(self, response):
+        """Check errorcode in a response"""
+        return response["errorcode"] == 0
+
+    def save_session(self, response):
+        """Save attributes and UID in a temporary file for account page"""
+        sessionid = str(random.getrandbits(128))
+        sessionfile = "/tmp/"+sessionid+".OneID"
+        f = open(sessionfile, "w")
+        f.write(json.dumps({"uid":response["uid"], "attr":response["attr"]}))
+        f.close()
+        return sessionid;
+
+    def get_session(self, sessionid):
+        """Retrieve attributes and session ID saved by validation page"""
+        sessionfile = "/tmp/"+sessionid+".OneID"
+        f = open(sessionfile, "r")
+        data = f.read()
+        f.close()
+        os.remove(sessionfile)
+        return json.loads(data)
+
+    def _getnonce(self, response):
+        """Extract base64-encoded nonce from JWT in a response"""
+        return response["nonces"]["repo"]["nonce"].split('.')[1]
+
+    
+        
diff --git a/oxAuth/Server/integrations.deprecatred/oneid/lib/stringprep.py b/oxAuth/Server/integrations.deprecatred/oneid/lib/stringprep.py
new file mode 100644
index 00000000..955eabc2
--- /dev/null
+++ b/oxAuth/Server/integrations.deprecatred/oneid/lib/stringprep.py
@@ -0,0 +1,272 @@
+# This file is generated by mkstringprep.py. DO NOT EDIT.
+"""Library that exposes various tables found in the StringPrep RFC 3454.
+
+There are two kinds of tables: sets, for which a member test is provided,
+and mappings, for which a mapping function is provided.
+"""
+
+import unicodedata
+
+#assert unicodedata.unidata_version == '3.2.0'
+
+def in_table_a1(code):
+    if unicodedata.category(code) != 'Cn': return False
+    c = ord(code)
+    if 0xFDD0 <= c < 0xFDF0: return False
+    return (c & 0xFFFF) not in (0xFFFE, 0xFFFF)
+
+
+b1_set = set([173, 847, 6150, 6155, 6156, 6157, 8203, 8204, 8205, 8288, 65279] + range(65024,65040))
+def in_table_b1(code):
+    return ord(code) in b1_set
+
+
+b3_exceptions = {
+0xb5:u'\u03bc', 0xdf:u'ss', 0x130:u'i\u0307', 0x149:u'\u02bcn',
+0x17f:u's', 0x1f0:u'j\u030c', 0x345:u'\u03b9', 0x37a:u' \u03b9',
+0x390:u'\u03b9\u0308\u0301', 0x3b0:u'\u03c5\u0308\u0301', 0x3c2:u'\u03c3', 0x3d0:u'\u03b2',
+0x3d1:u'\u03b8', 0x3d2:u'\u03c5', 0x3d3:u'\u03cd', 0x3d4:u'\u03cb',
+0x3d5:u'\u03c6', 0x3d6:u'\u03c0', 0x3f0:u'\u03ba', 0x3f1:u'\u03c1',
+0x3f2:u'\u03c3', 0x3f5:u'\u03b5', 0x587:u'\u0565\u0582', 0x1e96:u'h\u0331',
+0x1e97:u't\u0308', 0x1e98:u'w\u030a', 0x1e99:u'y\u030a', 0x1e9a:u'a\u02be',
+0x1e9b:u'\u1e61', 0x1f50:u'\u03c5\u0313', 0x1f52:u'\u03c5\u0313\u0300', 0x1f54:u'\u03c5\u0313\u0301',
+0x1f56:u'\u03c5\u0313\u0342', 0x1f80:u'\u1f00\u03b9', 0x1f81:u'\u1f01\u03b9', 0x1f82:u'\u1f02\u03b9',
+0x1f83:u'\u1f03\u03b9', 0x1f84:u'\u1f04\u03b9', 0x1f85:u'\u1f05\u03b9', 0x1f86:u'\u1f06\u03b9',
+0x1f87:u'\u1f07\u03b9', 0x1f88:u'\u1f00\u03b9', 0x1f89:u'\u1f01\u03b9', 0x1f8a:u'\u1f02\u03b9',
+0x1f8b:u'\u1f03\u03b9', 0x1f8c:u'\u1f04\u03b9', 0x1f8d:u'\u1f05\u03b9', 0x1f8e:u'\u1f06\u03b9',
+0x1f8f:u'\u1f07\u03b9', 0x1f90:u'\u1f20\u03b9', 0x1f91:u'\u1f21\u03b9', 0x1f92:u'\u1f22\u03b9',
+0x1f93:u'\u1f23\u03b9', 0x1f94:u'\u1f24\u03b9', 0x1f95:u'\u1f25\u03b9', 0x1f96:u'\u1f26\u03b9',
+0x1f97:u'\u1f27\u03b9', 0x1f98:u'\u1f20\u03b9', 0x1f99:u'\u1f21\u03b9', 0x1f9a:u'\u1f22\u03b9',
+0x1f9b:u'\u1f23\u03b9', 0x1f9c:u'\u1f24\u03b9', 0x1f9d:u'\u1f25\u03b9', 0x1f9e:u'\u1f26\u03b9',
+0x1f9f:u'\u1f27\u03b9', 0x1fa0:u'\u1f60\u03b9', 0x1fa1:u'\u1f61\u03b9', 0x1fa2:u'\u1f62\u03b9',
+0x1fa3:u'\u1f63\u03b9', 0x1fa4:u'\u1f64\u03b9', 0x1fa5:u'\u1f65\u03b9', 0x1fa6:u'\u1f66\u03b9',
+0x1fa7:u'\u1f67\u03b9', 0x1fa8:u'\u1f60\u03b9', 0x1fa9:u'\u1f61\u03b9', 0x1faa:u'\u1f62\u03b9',
+0x1fab:u'\u1f63\u03b9', 0x1fac:u'\u1f64\u03b9', 0x1fad:u'\u1f65\u03b9', 0x1fae:u'\u1f66\u03b9',
+0x1faf:u'\u1f67\u03b9', 0x1fb2:u'\u1f70\u03b9', 0x1fb3:u'\u03b1\u03b9', 0x1fb4:u'\u03ac\u03b9',
+0x1fb6:u'\u03b1\u0342', 0x1fb7:u'\u03b1\u0342\u03b9', 0x1fbc:u'\u03b1\u03b9', 0x1fbe:u'\u03b9',
+0x1fc2:u'\u1f74\u03b9', 0x1fc3:u'\u03b7\u03b9', 0x1fc4:u'\u03ae\u03b9', 0x1fc6:u'\u03b7\u0342',
+0x1fc7:u'\u03b7\u0342\u03b9', 0x1fcc:u'\u03b7\u03b9', 0x1fd2:u'\u03b9\u0308\u0300', 0x1fd3:u'\u03b9\u0308\u0301',
+0x1fd6:u'\u03b9\u0342', 0x1fd7:u'\u03b9\u0308\u0342', 0x1fe2:u'\u03c5\u0308\u0300', 0x1fe3:u'\u03c5\u0308\u0301',
+0x1fe4:u'\u03c1\u0313', 0x1fe6:u'\u03c5\u0342', 0x1fe7:u'\u03c5\u0308\u0342', 0x1ff2:u'\u1f7c\u03b9',
+0x1ff3:u'\u03c9\u03b9', 0x1ff4:u'\u03ce\u03b9', 0x1ff6:u'\u03c9\u0342', 0x1ff7:u'\u03c9\u0342\u03b9',
+0x1ffc:u'\u03c9\u03b9', 0x20a8:u'rs', 0x2102:u'c', 0x2103:u'\xb0c',
+0x2107:u'\u025b', 0x2109:u'\xb0f', 0x210b:u'h', 0x210c:u'h',
+0x210d:u'h', 0x2110:u'i', 0x2111:u'i', 0x2112:u'l',
+0x2115:u'n', 0x2116:u'no', 0x2119:u'p', 0x211a:u'q',
+0x211b:u'r', 0x211c:u'r', 0x211d:u'r', 0x2120:u'sm',
+0x2121:u'tel', 0x2122:u'tm', 0x2124:u'z', 0x2128:u'z',
+0x212c:u'b', 0x212d:u'c', 0x2130:u'e', 0x2131:u'f',
+0x2133:u'm', 0x213e:u'\u03b3', 0x213f:u'\u03c0', 0x2145:u'd',
+0x3371:u'hpa', 0x3373:u'au', 0x3375:u'ov', 0x3380:u'pa',
+0x3381:u'na', 0x3382:u'\u03bca', 0x3383:u'ma', 0x3384:u'ka',
+0x3385:u'kb', 0x3386:u'mb', 0x3387:u'gb', 0x338a:u'pf',
+0x338b:u'nf', 0x338c:u'\u03bcf', 0x3390:u'hz', 0x3391:u'khz',
+0x3392:u'mhz', 0x3393:u'ghz', 0x3394:u'thz', 0x33a9:u'pa',
+0x33aa:u'kpa', 0x33ab:u'mpa', 0x33ac:u'gpa', 0x33b4:u'pv',
+0x33b5:u'nv', 0x33b6:u'\u03bcv', 0x33b7:u'mv', 0x33b8:u'kv',
+0x33b9:u'mv', 0x33ba:u'pw', 0x33bb:u'nw', 0x33bc:u'\u03bcw',
+0x33bd:u'mw', 0x33be:u'kw', 0x33bf:u'mw', 0x33c0:u'k\u03c9',
+0x33c1:u'm\u03c9', 0x33c3:u'bq', 0x33c6:u'c\u2215kg', 0x33c7:u'co.',
+0x33c8:u'db', 0x33c9:u'gy', 0x33cb:u'hp', 0x33cd:u'kk',
+0x33ce:u'km', 0x33d7:u'ph', 0x33d9:u'ppm', 0x33da:u'pr',
+0x33dc:u'sv', 0x33dd:u'wb', 0xfb00:u'ff', 0xfb01:u'fi',
+0xfb02:u'fl', 0xfb03:u'ffi', 0xfb04:u'ffl', 0xfb05:u'st',
+0xfb06:u'st', 0xfb13:u'\u0574\u0576', 0xfb14:u'\u0574\u0565', 0xfb15:u'\u0574\u056b',
+0xfb16:u'\u057e\u0576', 0xfb17:u'\u0574\u056d', 0x1d400:u'a', 0x1d401:u'b',
+0x1d402:u'c', 0x1d403:u'd', 0x1d404:u'e', 0x1d405:u'f',
+0x1d406:u'g', 0x1d407:u'h', 0x1d408:u'i', 0x1d409:u'j',
+0x1d40a:u'k', 0x1d40b:u'l', 0x1d40c:u'm', 0x1d40d:u'n',
+0x1d40e:u'o', 0x1d40f:u'p', 0x1d410:u'q', 0x1d411:u'r',
+0x1d412:u's', 0x1d413:u't', 0x1d414:u'u', 0x1d415:u'v',
+0x1d416:u'w', 0x1d417:u'x', 0x1d418:u'y', 0x1d419:u'z',
+0x1d434:u'a', 0x1d435:u'b', 0x1d436:u'c', 0x1d437:u'd',
+0x1d438:u'e', 0x1d439:u'f', 0x1d43a:u'g', 0x1d43b:u'h',
+0x1d43c:u'i', 0x1d43d:u'j', 0x1d43e:u'k', 0x1d43f:u'l',
+0x1d440:u'm', 0x1d441:u'n', 0x1d442:u'o', 0x1d443:u'p',
+0x1d444:u'q', 0x1d445:u'r', 0x1d446:u's', 0x1d447:u't',
+0x1d448:u'u', 0x1d449:u'v', 0x1d44a:u'w', 0x1d44b:u'x',
+0x1d44c:u'y', 0x1d44d:u'z', 0x1d468:u'a', 0x1d469:u'b',
+0x1d46a:u'c', 0x1d46b:u'd', 0x1d46c:u'e', 0x1d46d:u'f',
+0x1d46e:u'g', 0x1d46f:u'h', 0x1d470:u'i', 0x1d471:u'j',
+0x1d472:u'k', 0x1d473:u'l', 0x1d474:u'm', 0x1d475:u'n',
+0x1d476:u'o', 0x1d477:u'p', 0x1d478:u'q', 0x1d479:u'r',
+0x1d47a:u's', 0x1d47b:u't', 0x1d47c:u'u', 0x1d47d:u'v',
+0x1d47e:u'w', 0x1d47f:u'x', 0x1d480:u'y', 0x1d481:u'z',
+0x1d49c:u'a', 0x1d49e:u'c', 0x1d49f:u'd', 0x1d4a2:u'g',
+0x1d4a5:u'j', 0x1d4a6:u'k', 0x1d4a9:u'n', 0x1d4aa:u'o',
+0x1d4ab:u'p', 0x1d4ac:u'q', 0x1d4ae:u's', 0x1d4af:u't',
+0x1d4b0:u'u', 0x1d4b1:u'v', 0x1d4b2:u'w', 0x1d4b3:u'x',
+0x1d4b4:u'y', 0x1d4b5:u'z', 0x1d4d0:u'a', 0x1d4d1:u'b',
+0x1d4d2:u'c', 0x1d4d3:u'd', 0x1d4d4:u'e', 0x1d4d5:u'f',
+0x1d4d6:u'g', 0x1d4d7:u'h', 0x1d4d8:u'i', 0x1d4d9:u'j',
+0x1d4da:u'k', 0x1d4db:u'l', 0x1d4dc:u'm', 0x1d4dd:u'n',
+0x1d4de:u'o', 0x1d4df:u'p', 0x1d4e0:u'q', 0x1d4e1:u'r',
+0x1d4e2:u's', 0x1d4e3:u't', 0x1d4e4:u'u', 0x1d4e5:u'v',
+0x1d4e6:u'w', 0x1d4e7:u'x', 0x1d4e8:u'y', 0x1d4e9:u'z',
+0x1d504:u'a', 0x1d505:u'b', 0x1d507:u'd', 0x1d508:u'e',
+0x1d509:u'f', 0x1d50a:u'g', 0x1d50d:u'j', 0x1d50e:u'k',
+0x1d50f:u'l', 0x1d510:u'm', 0x1d511:u'n', 0x1d512:u'o',
+0x1d513:u'p', 0x1d514:u'q', 0x1d516:u's', 0x1d517:u't',
+0x1d518:u'u', 0x1d519:u'v', 0x1d51a:u'w', 0x1d51b:u'x',
+0x1d51c:u'y', 0x1d538:u'a', 0x1d539:u'b', 0x1d53b:u'd',
+0x1d53c:u'e', 0x1d53d:u'f', 0x1d53e:u'g', 0x1d540:u'i',
+0x1d541:u'j', 0x1d542:u'k', 0x1d543:u'l', 0x1d544:u'm',
+0x1d546:u'o', 0x1d54a:u's', 0x1d54b:u't', 0x1d54c:u'u',
+0x1d54d:u'v', 0x1d54e:u'w', 0x1d54f:u'x', 0x1d550:u'y',
+0x1d56c:u'a', 0x1d56d:u'b', 0x1d56e:u'c', 0x1d56f:u'd',
+0x1d570:u'e', 0x1d571:u'f', 0x1d572:u'g', 0x1d573:u'h',
+0x1d574:u'i', 0x1d575:u'j', 0x1d576:u'k', 0x1d577:u'l',
+0x1d578:u'm', 0x1d579:u'n', 0x1d57a:u'o', 0x1d57b:u'p',
+0x1d57c:u'q', 0x1d57d:u'r', 0x1d57e:u's', 0x1d57f:u't',
+0x1d580:u'u', 0x1d581:u'v', 0x1d582:u'w', 0x1d583:u'x',
+0x1d584:u'y', 0x1d585:u'z', 0x1d5a0:u'a', 0x1d5a1:u'b',
+0x1d5a2:u'c', 0x1d5a3:u'd', 0x1d5a4:u'e', 0x1d5a5:u'f',
+0x1d5a6:u'g', 0x1d5a7:u'h', 0x1d5a8:u'i', 0x1d5a9:u'j',
+0x1d5aa:u'k', 0x1d5ab:u'l', 0x1d5ac:u'm', 0x1d5ad:u'n',
+0x1d5ae:u'o', 0x1d5af:u'p', 0x1d5b0:u'q', 0x1d5b1:u'r',
+0x1d5b2:u's', 0x1d5b3:u't', 0x1d5b4:u'u', 0x1d5b5:u'v',
+0x1d5b6:u'w', 0x1d5b7:u'x', 0x1d5b8:u'y', 0x1d5b9:u'z',
+0x1d5d4:u'a', 0x1d5d5:u'b', 0x1d5d6:u'c', 0x1d5d7:u'd',
+0x1d5d8:u'e', 0x1d5d9:u'f', 0x1d5da:u'g', 0x1d5db:u'h',
+0x1d5dc:u'i', 0x1d5dd:u'j', 0x1d5de:u'k', 0x1d5df:u'l',
+0x1d5e0:u'm', 0x1d5e1:u'n', 0x1d5e2:u'o', 0x1d5e3:u'p',
+0x1d5e4:u'q', 0x1d5e5:u'r', 0x1d5e6:u's', 0x1d5e7:u't',
+0x1d5e8:u'u', 0x1d5e9:u'v', 0x1d5ea:u'w', 0x1d5eb:u'x',
+0x1d5ec:u'y', 0x1d5ed:u'z', 0x1d608:u'a', 0x1d609:u'b',
+0x1d60a:u'c', 0x1d60b:u'd', 0x1d60c:u'e', 0x1d60d:u'f',
+0x1d60e:u'g', 0x1d60f:u'h', 0x1d610:u'i', 0x1d611:u'j',
+0x1d612:u'k', 0x1d613:u'l', 0x1d614:u'm', 0x1d615:u'n',
+0x1d616:u'o', 0x1d617:u'p', 0x1d618:u'q', 0x1d619:u'r',
+0x1d61a:u's', 0x1d61b:u't', 0x1d61c:u'u', 0x1d61d:u'v',
+0x1d61e:u'w', 0x1d61f:u'x', 0x1d620:u'y', 0x1d621:u'z',
+0x1d63c:u'a', 0x1d63d:u'b', 0x1d63e:u'c', 0x1d63f:u'd',
+0x1d640:u'e', 0x1d641:u'f', 0x1d642:u'g', 0x1d643:u'h',
+0x1d644:u'i', 0x1d645:u'j', 0x1d646:u'k', 0x1d647:u'l',
+0x1d648:u'm', 0x1d649:u'n', 0x1d64a:u'o', 0x1d64b:u'p',
+0x1d64c:u'q', 0x1d64d:u'r', 0x1d64e:u's', 0x1d64f:u't',
+0x1d650:u'u', 0x1d651:u'v', 0x1d652:u'w', 0x1d653:u'x',
+0x1d654:u'y', 0x1d655:u'z', 0x1d670:u'a', 0x1d671:u'b',
+0x1d672:u'c', 0x1d673:u'd', 0x1d674:u'e', 0x1d675:u'f',
+0x1d676:u'g', 0x1d677:u'h', 0x1d678:u'i', 0x1d679:u'j',
+0x1d67a:u'k', 0x1d67b:u'l', 0x1d67c:u'm', 0x1d67d:u'n',
+0x1d67e:u'o', 0x1d67f:u'p', 0x1d680:u'q', 0x1d681:u'r',
+0x1d682:u's', 0x1d683:u't', 0x1d684:u'u', 0x1d685:u'v',
+0x1d686:u'w', 0x1d687:u'x', 0x1d688:u'y', 0x1d689:u'z',
+0x1d6a8:u'\u03b1', 0x1d6a9:u'\u03b2', 0x1d6aa:u'\u03b3', 0x1d6ab:u'\u03b4',
+0x1d6ac:u'\u03b5', 0x1d6ad:u'\u03b6', 0x1d6ae:u'\u03b7', 0x1d6af:u'\u03b8',
+0x1d6b0:u'\u03b9', 0x1d6b1:u'\u03ba', 0x1d6b2:u'\u03bb', 0x1d6b3:u'\u03bc',
+0x1d6b4:u'\u03bd', 0x1d6b5:u'\u03be', 0x1d6b6:u'\u03bf', 0x1d6b7:u'\u03c0',
+0x1d6b8:u'\u03c1', 0x1d6b9:u'\u03b8', 0x1d6ba:u'\u03c3', 0x1d6bb:u'\u03c4',
+0x1d6bc:u'\u03c5', 0x1d6bd:u'\u03c6', 0x1d6be:u'\u03c7', 0x1d6bf:u'\u03c8',
+0x1d6c0:u'\u03c9', 0x1d6d3:u'\u03c3', 0x1d6e2:u'\u03b1', 0x1d6e3:u'\u03b2',
+0x1d6e4:u'\u03b3', 0x1d6e5:u'\u03b4', 0x1d6e6:u'\u03b5', 0x1d6e7:u'\u03b6',
+0x1d6e8:u'\u03b7', 0x1d6e9:u'\u03b8', 0x1d6ea:u'\u03b9', 0x1d6eb:u'\u03ba',
+0x1d6ec:u'\u03bb', 0x1d6ed:u'\u03bc', 0x1d6ee:u'\u03bd', 0x1d6ef:u'\u03be',
+0x1d6f0:u'\u03bf', 0x1d6f1:u'\u03c0', 0x1d6f2:u'\u03c1', 0x1d6f3:u'\u03b8',
+0x1d6f4:u'\u03c3', 0x1d6f5:u'\u03c4', 0x1d6f6:u'\u03c5', 0x1d6f7:u'\u03c6',
+0x1d6f8:u'\u03c7', 0x1d6f9:u'\u03c8', 0x1d6fa:u'\u03c9', 0x1d70d:u'\u03c3',
+0x1d71c:u'\u03b1', 0x1d71d:u'\u03b2', 0x1d71e:u'\u03b3', 0x1d71f:u'\u03b4',
+0x1d720:u'\u03b5', 0x1d721:u'\u03b6', 0x1d722:u'\u03b7', 0x1d723:u'\u03b8',
+0x1d724:u'\u03b9', 0x1d725:u'\u03ba', 0x1d726:u'\u03bb', 0x1d727:u'\u03bc',
+0x1d728:u'\u03bd', 0x1d729:u'\u03be', 0x1d72a:u'\u03bf', 0x1d72b:u'\u03c0',
+0x1d72c:u'\u03c1', 0x1d72d:u'\u03b8', 0x1d72e:u'\u03c3', 0x1d72f:u'\u03c4',
+0x1d730:u'\u03c5', 0x1d731:u'\u03c6', 0x1d732:u'\u03c7', 0x1d733:u'\u03c8',
+0x1d734:u'\u03c9', 0x1d747:u'\u03c3', 0x1d756:u'\u03b1', 0x1d757:u'\u03b2',
+0x1d758:u'\u03b3', 0x1d759:u'\u03b4', 0x1d75a:u'\u03b5', 0x1d75b:u'\u03b6',
+0x1d75c:u'\u03b7', 0x1d75d:u'\u03b8', 0x1d75e:u'\u03b9', 0x1d75f:u'\u03ba',
+0x1d760:u'\u03bb', 0x1d761:u'\u03bc', 0x1d762:u'\u03bd', 0x1d763:u'\u03be',
+0x1d764:u'\u03bf', 0x1d765:u'\u03c0', 0x1d766:u'\u03c1', 0x1d767:u'\u03b8',
+0x1d768:u'\u03c3', 0x1d769:u'\u03c4', 0x1d76a:u'\u03c5', 0x1d76b:u'\u03c6',
+0x1d76c:u'\u03c7', 0x1d76d:u'\u03c8', 0x1d76e:u'\u03c9', 0x1d781:u'\u03c3',
+0x1d790:u'\u03b1', 0x1d791:u'\u03b2', 0x1d792:u'\u03b3', 0x1d793:u'\u03b4',
+0x1d794:u'\u03b5', 0x1d795:u'\u03b6', 0x1d796:u'\u03b7', 0x1d797:u'\u03b8',
+0x1d798:u'\u03b9', 0x1d799:u'\u03ba', 0x1d79a:u'\u03bb', 0x1d79b:u'\u03bc',
+0x1d79c:u'\u03bd', 0x1d79d:u'\u03be', 0x1d79e:u'\u03bf', 0x1d79f:u'\u03c0',
+0x1d7a0:u'\u03c1', 0x1d7a1:u'\u03b8', 0x1d7a2:u'\u03c3', 0x1d7a3:u'\u03c4',
+0x1d7a4:u'\u03c5', 0x1d7a5:u'\u03c6', 0x1d7a6:u'\u03c7', 0x1d7a7:u'\u03c8',
+0x1d7a8:u'\u03c9', 0x1d7bb:u'\u03c3', }
+
+def map_table_b3(code):
+    r = b3_exceptions.get(ord(code))
+    if r is not None: return r
+    return code.lower()
+
+
+def map_table_b2(a):
+    al = map_table_b3(a)
+    b = unicodedata.normalize("NFKC", al)
+    bl = u"".join([map_table_b3(ch) for ch in b])
+    c = unicodedata.normalize("NFKC", bl)
+    if b != c:
+        return c
+    else:
+        return al
+
+
+def in_table_c11(code):
+    return code == u" "
+
+
+def in_table_c12(code):
+    return unicodedata.category(code) == "Zs" and code != u" "
+
+def in_table_c11_c12(code):
+    return unicodedata.category(code) == "Zs"
+
+
+def in_table_c21(code):
+    return ord(code) < 128 and unicodedata.category(code) == "Cc"
+
+c22_specials = set([1757, 1807, 6158, 8204, 8205, 8232, 8233, 65279] + range(8288,8292) + range(8298,8304) + range(65529,65533) + range(119155,119163))
+def in_table_c22(code):
+    c = ord(code)
+    if c < 128: return False
+    if unicodedata.category(code) == "Cc": return True
+    return c in c22_specials
+
+def in_table_c21_c22(code):
+    return unicodedata.category(code) == "Cc" or \
+           ord(code) in c22_specials
+
+
+def in_table_c3(code):
+    return unicodedata.category(code) == "Co"
+
+
+def in_table_c4(code):
+    c = ord(code)
+    if c < 0xFDD0: return False
+    if c < 0xFDF0: return True
+    return (ord(code) & 0xFFFF) in (0xFFFE, 0xFFFF)
+
+
+def in_table_c5(code):
+    return unicodedata.category(code) == "Cs"
+
+
+c6_set = set(range(65529,65534))
+def in_table_c6(code):
+    return ord(code) in c6_set
+
+
+c7_set = set(range(12272,12284))
+def in_table_c7(code):
+    return ord(code) in c7_set
+
+
+c8_set = set([832, 833, 8206, 8207] + range(8234,8239) + range(8298,8304))
+def in_table_c8(code):
+    return ord(code) in c8_set
+
+
+c9_set = set([917505] + range(917536,917632))
+def in_table_c9(code):
+    return ord(code) in c9_set
+
+
+def in_table_d1(code):
+    return unicodedata.bidirectional(code) in ("R","AL")
+
+
+def in_table_d2(code):
+    return unicodedata.bidirectional(code) == "L"
diff --git a/oxAuth/Server/integrations.deprecatred/oxpush/oxPushExternalAuthenticator.py b/oxAuth/Server/integrations.deprecatred/oxpush/oxPushExternalAuthenticator.py
new file mode 100644
index 00000000..3d83c1da
--- /dev/null
+++ b/oxAuth/Server/integrations.deprecatred/oxpush/oxPushExternalAuthenticator.py
@@ -0,0 +1,307 @@
+# oxAuth is available under the MIT License (2008). See http://opensource.org/licenses/MIT for full text.
+# Copyright (c) 2016, Gluu
+#
+# Author: Yuriy Movchan
+#
+
+import java
+from java.util import Arrays
+from org.gluu.model.custom.script.type.auth import PersonAuthenticationType
+from org.gluu.oxauth.security import Identity
+from org.gluu.oxauth.service import UserService, AuthenticationService
+from org.gluu.oxpush import OxPushClient
+from org.gluu.service.cdi.util import CdiUtil
+from org.gluu.util import StringHelper
+
+
+class PersonAuthentication(PersonAuthenticationType):
+
+    def __init__(self, currentTimeMillis):
+        self.currentTimeMillis = currentTimeMillis
+
+    def init(self, configurationAttributes):
+        print "oxPush. Initialization"
+
+        oxpush_server_base_uri = configurationAttributes.get("oxpush_server_base_uri").getValue2()
+        self.oxPushClient = OxPushClient(oxpush_server_base_uri)
+        print "oxPush. Initialized successfully"
+
+        return True
+
+    def destroy(self, configurationAttributes):
+        print "oxPush. Destroy"
+        print "oxPush. Destroyed successfully"
+        return True
+
+    def getApiVersion(self):
+        return 1
+
+    def isValidAuthenticationMethod(self, usageType, configurationAttributes):
+        return True
+
+    def getAlternativeAuthenticationMethod(self, usageType, configurationAttributes):
+        return None
+
+    def authenticate(self, configurationAttributes, requestParameters, step):
+        userService = CdiUtil.bean(UserService)
+        authenticationService = CdiUtil.bean(AuthenticationService)
+
+        identity = CdiUtil.bean(Identity)
+        credentials = identity.getCredentials()
+
+        oxpush_user_timeout = int(configurationAttributes.get("oxpush_user_timeout").getValue2())
+        oxpush_application_name = configurationAttributes.get("oxpush_application_name").getValue2()
+
+        user_name = credentials.getUsername()
+
+        if (step == 1):
+            print "oxPush. Authenticate for step 1"
+
+            user_password = credentials.getPassword()
+            logged_in = False
+            if (StringHelper.isNotEmptyString(user_name) and StringHelper.isNotEmptyString(user_password)):
+                userService = CdiUtil.bean(UserService)
+                logged_in = authenticationService.authenticate(user_name, user_password)
+
+            if (not logged_in):
+                return False
+
+            # Get user entry
+            userService = CdiUtil.bean(UserService)
+            find_user_by_uid = authenticationService.getAuthenticatedUser()
+            if (find_user_by_uid == None):
+                print "oxPush. Authenticate for step 1. Failed to find user"
+                return False
+
+            # Check if the user paired account to phone
+            user_external_uid_attr = userService.getCustomAttribute(find_user_by_uid, "oxExternalUid")
+            if ((user_external_uid_attr == None) or (user_external_uid_attr.getValues() == None)):
+                print "oxPush. Authenticate for step 1. There is no external UIDs for user: ", user_name
+            else:
+                oxpush_user_uid = None
+                for ext_uid in user_external_uid_attr.getValues():
+                    if (ext_uid.startswith('oxpush:')):
+                        oxpush_user_uid = ext_uid[7:len(ext_uid)]
+                        break
+            
+                if (oxpush_user_uid == None):
+                    print "oxPush. Authenticate for step 1. There is no oxPush UID for user: ", user_name
+                else:
+                    # Check deployment status
+                    print "oxPush. Authenticate for step 1. oxpush_user_uid: ", oxpush_user_uid
+                    deployment_status = self.oxPushClient.getDeploymentStatus(oxpush_user_uid) 
+                    if (deployment_status.result):
+                        print "oxPush. Authenticate for step 1. Deployment status is valid"
+                        if ("enabled" == deployment_status.status):
+                            print "oxPush. Authenticate for step 1. Deployment is enabled"
+                            identity.setWorkingParameter("oxpush_user_uid", oxpush_user_uid)
+                        else:
+                            print "oxPush. Authenticate for step 1. Deployment is disabled"
+                            return False
+                    else:
+                        print "oxPush. Authenticate for step 1. Deployment status is invalid. Force user to pair again"
+                        # Remove oxpush_user_uid from user entry
+                        find_user_by_uid = userService.removeUserAttribute(user_name, "oxExternalUid", "oxpush:" + oxpush_user_uid)
+                        if (find_user_by_uid == None):
+                            print "oxPush. Authenticate for step 1. Failed to update current user"
+                            return False
+
+            return True
+        elif (step == 2):
+            print "oxPush. Authenticate for step 2"
+
+            passed_step1 = self.isPassedDefaultAuthentication
+            if (not passed_step1):
+                return False
+
+            sessionAttributes = identity.getSessionId().getSessionAttributes()
+            if (sessionAttributes == None) or not sessionAttributes.containsKey("oxpush_user_uid"):
+                print "oxPush. Authenticate for step 2. oxpush_user_uid is empty"
+
+                if (not sessionAttributes.containsKey("oxpush_pairing_uid")):
+                    print "oxPush. Authenticate for step 2. oxpush_pairing_uid is empty"
+                    return False
+
+                oxpush_pairing_uid = sessionAttributes.get("oxpush_pairing_uid")
+
+                # Check pairing status                
+                pairing_status = self.checkStatus("pair", oxpush_pairing_uid, oxpush_user_timeout)
+                if (pairing_status == None):
+                    print "oxPush. Authenticate for step 2. The pairing has not been authorized by user"
+                    return False
+
+                oxpush_user_uid = pairing_status.deploymentId
+
+                print "oxPush. Authenticate for step 2. Storing oxpush_user_uid in user entry", oxpush_user_uid
+
+                # Store oxpush_user_uid in user entry
+                find_user_by_uid = userService.addUserAttribute(user_name, "oxExternalUid", "oxpush:" + oxpush_user_uid)
+                if (find_user_by_uid == None):
+                    print "oxPush. Authenticate for step 2. Failed to update current user"
+                    return False
+
+                identity.setWorkingParameter("oxpush_count_login_steps", 2)
+                identity.setWorkingParameter("oxpush_user_uid", oxpush_user_uid)
+            else:
+                print "oxPush. Authenticate for step 2. Deployment status is valid"
+
+            return True
+        elif (step == 3):
+            print "oxPush. Authenticate for step 3"
+
+            passed_step1 = self.isPassedDefaultAuthentication
+            if (not passed_step1):
+                return False
+
+            sessionAttributes = identity.getWorkingParameter("oxpush_user_uid")
+            if (sessionAttributes == None) or not sessionAttributes.containsKey("oxpush_user_uid"):
+                print "oxPush. Authenticate for step 3. oxpush_user_uid is empty"
+                return False
+
+            oxpush_user_uid = sessionAttributes.get("oxpush_user_uid")
+            passed_step1 = StringHelper.isNotEmptyString(oxpush_user_uid)
+            if (not passed_step1):
+                return False
+
+            # Initialize authentication process
+            authentication_request = None
+            try:
+                authentication_request = self.oxPushClient.authenticate(oxpush_user_uid, user_name)
+            except java.lang.Exception, err:
+                print "oxPush. Authenticate for step 3. Failed to initialize authentication process: ", err
+                return False
+
+            if (not authentication_request.result):
+                print "oxPush. Authenticate for step 3. Failed to initialize authentication process"
+                return False
+
+            # Check authentication status                
+            authentication_status = self.checkStatus("authenticate", authentication_request.authenticationId, oxpush_user_timeout)
+            if (authentication_status == None):
+                print "oxPush. Authenticate for step 3. The authentication has not been authorized by user"
+                return False
+                
+            print "oxPush. Authenticate for step 3. The request was granted"
+
+            return True
+        else:
+            return False
+
+    def prepareForStep(self, configurationAttributes, requestParameters, step):
+        identity = CdiUtil.bean(Identity)
+
+        oxpush_application_name = configurationAttributes.get("oxpush_application_name").getValue2()
+
+        if (step == 1):
+            print "oxPush. Prepare for step 1"
+            oxpush_android_download_url = configurationAttributes.get("oxpush_android_download_url").getValue2()
+            identity.setWorkingParameter("oxpush_android_download_url", oxpush_android_download_url)
+        elif (step == 2):
+            print "oxPush. Prepare for step 2"
+
+            passed_step1 = self.isPassedDefaultAuthentication
+            if (not passed_step1):
+                return False
+
+            identity = CdiUtil.bean(Identity)
+            credentials = identity.getCredentials()
+
+            user_name = credentials.getUsername()
+
+            sessionAttributes = identity.getSessionId().getSessionAttributes()
+            if (sessionAttributes == None) or not sessionAttributes.containsKey("oxpush_user_uid"):
+                print "oxPush. Prepare for step 2. oxpush_user_uid is empty"
+
+                # Initialize pairing process
+                pairing_process = None
+                try:
+                    pairing_process = self.oxPushClient.pair(oxpush_application_name, user_name)
+                except java.lang.Exception, err:
+                    print "oxPush. Prepare for step 2. Failed to initialize pairing process: ", err
+                    return False
+
+                if (not pairing_process.result):
+                    print "oxPush. Prepare for step 2. Failed to initialize pairing process"
+                    return False
+
+                pairing_id = pairing_process.pairingId
+                print "oxPush. Prepare for step 2. Pairing Id: ", pairing_id
+    
+                identity.setWorkingParameter("oxpush_pairing_uid", pairing_id)
+                identity.setWorkingParameter("oxpush_pairing_code", pairing_process.pairingCode)
+                identity.setWorkingParameter("oxpush_pairing_qr_image", pairing_process.pairingQrImage)
+
+        return True
+
+    def getExtraParametersForStep(self, configurationAttributes, step):
+        if (step in [2, 3]):
+            return Arrays.asList("oxpush_user_uid", "oxpush_pairing_uid")
+        
+        return None
+
+    def getCountAuthenticationSteps(self, configurationAttributes):
+        identity = CdiUtil.bean(Identity)
+        if (identity.isSetWorkingParameter("oxpush_count_login_steps")):
+            return identity.getWorkingParameter("oxpush_count_login_steps")
+
+        return 3
+
+    def getPageForStep(self, configurationAttributes, step):
+        if (step == 1):
+            return "/auth/oxpush/oxlogin.xhtml"
+        elif (step == 2):
+            return "/auth/oxpush/oxpair.xhtml"
+        elif (step == 3):
+            return "/auth/oxpush/oxauthenticate.xhtml"
+        return ""
+
+    def isPassedDefaultAuthentication():
+        identity = CdiUtil.bean(Identity)
+        credentials = identity.getCredentials()
+
+        user_name = credentials.getUsername()
+        passed_step1 = StringHelper.isNotEmptyString(user_name)
+
+        return passed_step1
+
+    def checkStatus(self, mode, request_id, timeout):
+        try:
+            curTime = java.lang.System.currentTimeMillis()
+            endTime = curTime + timeout * 1000
+            while (endTime >= curTime):
+                response_status = None
+                if (StringHelper.equals("pair", mode)):
+                    response_status = self.oxPushClient.getPairingStatus(request_id)
+                else:
+                    response_status = self.oxPushClient.getAuthenticationStatus(request_id)
+
+                if (not response_status.result):
+                    print "oxPush. CheckStatus. Get false result from oxPushServer"
+                    return None
+
+                status = response_status.status
+
+                if ("declined" == status):
+                    print "oxPush. CheckStatus. The process has been cancelled"
+                    return None
+
+                if ("expired" == status):
+                    print "oxPush. CheckStatus. The process has been expired"
+                    return None
+
+                if ("approved" == status):
+                    print "oxPush. CheckStatus. The process was approved"
+                    return response_status
+
+                java.lang.Thread.sleep(2000)
+                curTime = java.lang.System.currentTimeMillis()
+        except java.lang.Exception, err:
+            print "oxPush. CheckStatus. Could not check process status: ", err
+            return None
+
+        print "oxPush. CheckStatus. The process has not received a response from the phone yet"
+
+        return None
+
+    def logout(self, configurationAttributes, requestParameters):
+        return True
diff --git a/oxAuth/Server/integrations.deprecatred/phonefactor/PhoneFactorExternalAuthenticator.py b/oxAuth/Server/integrations.deprecatred/phonefactor/PhoneFactorExternalAuthenticator.py
new file mode 100644
index 00000000..1d434287
--- /dev/null
+++ b/oxAuth/Server/integrations.deprecatred/phonefactor/PhoneFactorExternalAuthenticator.py
@@ -0,0 +1,200 @@
+# oxAuth is available under the MIT License (2008). See http://opensource.org/licenses/MIT for full text.
+# Copyright (c) 2016, Gluu
+#
+# Author: Yuriy Movchan
+#
+
+from org.gluu.service.cdi.util import CdiUtil
+from org.gluu.oxauth.security import Identity
+from org.gluu.model.custom.script.type.auth import PersonAuthenticationType
+from org.gluu.oxauth.service import UserService, AuthenticationService
+from org.gluu.util import StringHelper, ArrayHelper
+from org.gluu.oxauth.service import EncryptionService 
+from net.phonefactor.pfsdk import PFAuth, PFAuthResult, SecurityException, TimeoutException, PFException
+from net.phonefactor.pfsdk import PFAuthResult
+
+import java
+import string
+
+import json
+
+class PersonAuthentication(PersonAuthenticationType):
+    def __init__(self, currentTimeMillis):
+        self.currentTimeMillis = currentTimeMillis
+        self.pf = PFAuth()
+
+    def init(self, configurationAttributes):
+        print "PhoneFactor. Initialization"
+        pf_cert_path = configurationAttributes.get("pf_cert_path").getValue2()
+        pf_creds_file = configurationAttributes.get("pf_creds_file").getValue2()
+
+        # Load credentials from file
+        f = open(pf_creds_file, 'r')
+        try:
+            creds = json.loads(f.read())
+        except:
+            return False
+        finally:
+            f.close()
+
+        certPassword = creds["CERT_PASSWORD"]
+        try:
+            encryptionService = CdiUtil.bean(EncryptionService)
+            certPassword = encryptionService.decrypt(certPassword)
+        except:
+            return False
+
+        self.pf.initialize(pf_cert_path, certPassword)
+        print "PhoneFactor. Initialized successfully"
+
+        return True
+
+    def destroy(self, configurationAttributes):
+        print "PhoneFactor. Destroy"
+        print "PhoneFactor. Destroyed successfully"
+        return True
+
+    def getApiVersion(self):
+        return 1
+
+    def isValidAuthenticationMethod(self, usageType, configurationAttributes):
+        return True
+
+    def getAlternativeAuthenticationMethod(self, usageType, configurationAttributes):
+        return None
+
+    def authenticate(self, configurationAttributes, requestParameters, step):
+        authenticationService = CdiUtil.bean(AuthenticationService)
+
+        identity = CdiUtil.bean(Identity)
+        credentials = identity.getCredentials()
+
+        user_name = credentials.getUsername()
+        if (step == 1):
+            print "PhoneFactor. Authenticate for step 1"
+
+            user_password = credentials.getPassword()
+            logged_in = False
+            if (StringHelper.isNotEmptyString(user_name) and StringHelper.isNotEmptyString(user_password)):
+                userService = CdiUtil.bean(UserService)
+                logged_in = authenticationService.authenticate(user_name, user_password)
+
+            if (not logged_in):
+                return False
+
+            return True
+        elif (step == 2):
+            print "PhoneFactor. Authenticate for step 2"
+
+            passed_step1 = self.isPassedDefaultAuthentication
+            if (not passed_step1):
+                return False
+
+            pf_phone_number_attr = configurationAttributes.get("pf_phone_number_attr").getValue2()
+
+            # Get user entry from credentials
+            authenticationService = CdiUtil.bean(AuthenticationService)
+            credentials_user = authenticationService.getAuthenticatedUser()
+            
+            userService = CdiUtil.bean(UserService)
+            phone_number_with_country_code_attr = userService.getCustomAttribute(credentials_user, pf_phone_number_attr)
+            if (phone_number_with_country_code_attr == None):
+                print "PhoneFactor. Authenticate for step 2. There is no phone number: ", user_name
+                return False
+            
+            phone_number_with_country_code = phone_number_with_country_code_attr.getValue()
+            if (phone_number_with_country_code == None):
+                print "PhoneFactor. Authenticate for step 2. There is no phone number: ", user_name
+                return False
+
+            pf_country_delimiter = configurationAttributes.get("pf_country_delimiter").getValue2()
+            
+            phone_number_with_country_code_array = string.split(phone_number_with_country_code, pf_country_delimiter, 1)
+            
+            phone_number_with_country_code_array_len = len(phone_number_with_country_code_array)
+            
+            if (phone_number_with_country_code_array_len == 1):
+                country_code = ""
+                phone_number = phone_number_with_country_code_array[0]
+            else:
+                country_code = phone_number_with_country_code_array[0]
+                phone_number = phone_number_with_country_code_array[1]
+
+            print "PhoneFactor. Authenticate for step 2. user_name: ", user_name, ", country_code: ", country_code, ", phone_number: ", phone_number
+
+            pf_auth_result = None
+            try:
+                pf_auth_result = self.pf.authenticate(user_name, country_code, phone_number, None, None, None)
+            except SecurityException, err:
+                print "PhoneFactor. Authenticate for step 2. BAD AUTH -- Security issue: ", err
+            except TimeoutException, err:
+                print "PhoneFactor. Authenticate for step 2. BAD AUTH -- Server timeout: ", err
+            except PFException, err:
+                print "PhoneFactor. Authenticate for step 2. BAD AUTH -- PFAuth failed with a PFException: ", err
+
+            if (pf_auth_result == None):
+                return False
+
+            print "PhoneFactor. Authenticate for step 2. Call Status: ", pf_auth_result.getCallStatusString()
+            if (pf_auth_result.getAuthenticated()):
+                print "PhoneFactor. Authenticate for step 2. GOOD AUTH:", user_name
+    
+                if (pf_auth_result.getCallStatus() == PFAuthResult.CALL_STATUS_PIN_ENTERED):
+                    print "PhoneFactor. Authenticate for step 2. I have detected that a PIN was entered"
+                elif (pf_auth_result.getCallStatus() == PFAuthResult.CALL_STATUS_NO_PIN_ENTERED):
+                    print "PhoneFactor. Authenticate for step 2. I have detected that NO PIN was entered"
+
+                return True
+            else:
+                print "PhoneFactor. Authenticate for step 2. BAD AUTH:", user_name
+
+                if (pf_auth_result.getCallStatus() == PFAuthResult.CALL_STATUS_USER_HUNG_UP):
+                    print "PhoneFactor. Authenticate for step 2. I have detected that the user hung up"
+                elif (pf_auth_result.getCallStatus() == PFAuthResult.CALL_STATUS_PHONE_BUSY):
+                    print "PhoneFactor. Authenticate for step 2. I have detected that the phone was busy"
+    
+                if (pf_auth_result.getMessageErrorId() != 0):
+                    print "PhoneFactor. Authenticate for step 2. Message Error ID: ", pf_auth_result.getMessageErrorId()
+    
+                    message_error = pf_auth_result.getMessageError()
+                    if (message_error != null):
+                        print "PhoneFactor. Authenticate for step 2. Message Error: ", message_error
+    
+            return False
+        else:
+            return False
+
+    def prepareForStep(self, configurationAttributes, requestParameters, step):
+        if (step == 1):
+            print "PhoneFactor. Prepare for step 1"
+
+            return True
+        elif (step == 2):
+            print "PhoneFactor. Prepare for step 2"
+
+            return self.isPassedDefaultAuthentication
+        else:
+            return False
+
+    def getExtraParametersForStep(self, configurationAttributes, step):
+        return None
+
+    def getCountAuthenticationSteps(self, configurationAttributes):
+        return 2
+
+    def getPageForStep(self, configurationAttributes, step):
+        if (step == 2):
+            return "/auth/phonefactor/pflogin.xhtml"
+        return ""
+
+    def isPassedDefaultAuthentication(self):
+        identity = CdiUtil.bean(Identity)
+        credentials = identity.getCredentials()
+
+        user_name = credentials.getUsername()
+        passed_step1 = StringHelper.isNotEmptyString(user_name)
+
+        return passed_step1
+
+    def logout(self, configurationAttributes, requestParameters):
+        return True
diff --git a/oxAuth/Server/integrations.deprecatred/phonefactor/repository/com/phonefactor/PhoneFactorSDK/2.13/PhoneFactorSDK-2.13.jar b/oxAuth/Server/integrations.deprecatred/phonefactor/repository/com/phonefactor/PhoneFactorSDK/2.13/PhoneFactorSDK-2.13.jar
new file mode 100644
index 0000000000000000000000000000000000000000..cfa470c1c89ad9d29ea4ad6e2078bdaf0e31620e
GIT binary patch
literal 36294
zcmaf)W0YlGvaZv%ZB^Q4rEMEKZM!N_Y1_7K+qP}9(zp6_-@d22&v)(~YyOKh#vIRn
zBi0*p#Zr(41%m+sf&u~xvJm(V^xuBaKwv<!qAEgkl5%1UpJPBk3jYX&0{ZnQ6dga>
zLHAF%^`C|IXZ<r&R!B}#OjKEgURLa0c4AycnvQ-JUYd@2YGS%xiE)8t=g@IN7{!5B
zLS{-r6(|gtoKA3VO0+bTy!2a}Tq4n9ktYNUj;&~EDNOH+1^Hp9Xeo^COQFZNP;$Xb
zZkQ~OQO~pvoerIUZU+b`@ZWY0_Gde`0B45(yW#(gK>A07y}6w&z|_##+0OBQiN^RJ
zqU}wcOsxKS57d9{;T!+z`{bWkB48jOj=#J|$l4KLXyPGhYvF8RXl>yMFcEb(2G~1W
z*xAw>TN^q#@jTis^Fu&DfI{fGLQsf7^mi<veE3JacPumv9K^koeE2u)C0P3mXXGsm
zBuGtnOvFtLWK5JTpe=_TEcnMwyz{z3V2DA8UaWy^?2KVyuUIqttzBYaH?Vrwp^T$E
zI-%UpJqAdJG2hQs#)^Dr4!avijdxV4Wb4Pm*2uV5R%*pc!RGY9(!gH9!WOALS%L#C
z-2pD$F;Xxw0CN=l2|WUG1{`-Gn8m1oMmAMdSXrOxXH2RAO{xJa;)kRFiW*}&Kesj2
z10QSl-$nDcf2ln1l5P7B8HzuIsQ#Lei?g|`oe4nF*3|CrNL1xyrTYbue2kkTD=lmU
zV+bA-JT-fb3y5qG{r7}!2;ybaRxXlS7Pk*2Z*~xG#1p5A&>fC$+zI<TvL}~0eoDjf
z;UP^m);TsZY5^RKWa-pbtzJp&mRud|lw8VL_Jxpw0Ph&%fC{IV8=bNN6z=6;^cR6M
zFvId-Oo!fxbk05vvxdE^fr{>CXF6T_<jib|8L1|^-)u<TSVj_E7>=Y5S^F$FKa;m`
zk%@Os?8?QpF}W!->|d*w<st{LTTnKj^s4$cj4>EdjNkT9g9#%UX8IKa_+Q}>>@PCt
z{;yE~E~C;GwduY;aB%-XV*X1=!ge+`F18lNhJO>zzbVKjyd42p2rcMK^P<i?1ac*+
zar7iqtON}ukI;&do+X`)zPd1uiuY$Q3JY1DeVEhB^fO;pGtW<qF#<e)2}jxZ#5nI>
zqe`VT+NXQ?%hJs&BGHKkg}NV69!8jmn*KZ8OgP?5AkCx&GrImY{5tid`Pvl8&K1hU
z$(PwCbyAC=lT96)DJUjhmQy|^3RJ|9$vIEMwlZ{zb%D`919(k%_1MGC(>kj0Ya6iX
zv*<75xWsmcpehkNDW^e`G-25SdjCoUt!<36_YVoQKSXH$nuw!^y|dkapcqH!75syu
z)UtF93329^h&1!lfS87+M97DMN^EKo1${Jty!Hl&KuTs^gf?Ta_5Juw?|K+j5K|Qw
zLP*(ObiWeKyI)O;f^`dT*^67Isx~fvJZzXct}jS(=R>@BpFzyvkrcTUSZF5gVkLAI
z6qPu$lnll2nljZ6)x&fg^!f!B#EEKoLkJjvDXIY$DbUm{0nI^<=T7u0F+P*->fHRO
zx@?iQF4XQMewsu~rtFwg1THL3W4^68`t|#tW$y3VNK2JR$pi%g5`zQ+BL7PgqOJg2
z=l_>IE~?sYII38i!9c?Ol3F<yVT*bf@DgVl=Y>IPmEW2yP}kC=;ygo9If0c@gs{q9
zXnbx58@+D|s{nJqst(WU1*A63AmWgUcr%=ic;42xAHCo2ud{!Ex?>7pK|yEKCR#OF
zMpd#`)}1#@E}0hJEzt5RH?<qsaYOWh3^!GnC9T$6l)V@jODF33NjP=xC4kG(a$lCc
z>^IhFI;0)h6mQrlu`nRnRh0vW_ADS(%qRpah?bXv#f85GC2hKHR-we52oq@8`0FfQ
zK^1r#ELU<&w5t_2nKXt(Y?Z9LJfmujN1y<tL3TZg^M;s$0tdk2K#WtZPocn~q(zVx
zi&0S^jF>Xeet!B2JK}QOP~c<Naz!aim@i<5au)o&DDe>hr-%HFe2{v?#oz#pd8$-C
z{-7sNa(c`wKs_22b|UOD5-cs$iiK{0S%<<kF$2zwr{vu!1gai{GjNQ`m;%#XCgx(#
zodsPpVTn?+Z2z%^ltRJTV$s(&0dgv1e+`gk@*Y8WY@>)ePhq)XiiGqdziT08RJ5fT
zSM_SD_mhOZqkwqQUNLod@D7@W-!S3@77X>sxW_$6lJ1MFDtDfOMbY0uh*!BrOQUmJ
zKOd!hH5J+;xPl!h+1%1wBA0}_J7yymec?>H=@E=2hSQbc9UwhhS_Q?(X2bQ8aLZ+&
z>}Bp^zDbF;dr->@M90s19p%&M?7XXH+VN5C3WEi|w1?A&l|ks<;8eS<9B@lx9n0HR
zU)Or*3@j973X@XHFL$0DLqV@GqxhKPErJ#8+FE9N=uNP))=SQ(Rus-u9<ppq&`qsg
z#6^$ZA=0WRAh{9YW|1ey(Q~m>D?T9?qF-sUoaU&I6L*2*6b?1Jx!_^&&e+$$+RuR}
zEii+XC+5@a$V44n=VEEW6_GQDJ6H78EmRA68{Ck_8xO@VcwkPHmb)g(e1k1s(%Y-V
z&zPFLd2>6-?$MmiP|GfAW5=ET@SA6;Z+G_s0JQ~<`^-pc&9E0hu8AI@o9aI(USD{`
zUF7Ep7s-6O{C<YM%7_bzA?H)*4toZvDt<p_tlItfe6(|(-}$UJl|O`%A{RK>%|~)>
zP?6kP=-~6_hPXVUw-pFJ&%UCce5#>Rct^KV_x!E2gRXYmM=*>UZA>2*MP^sj&*z=b
zU<S$hjZW)2oINDGi1gGPF`c-=JpVN02gP|(&;6G#cHrg#_mmGhyVfk}7wErMI@uDY
znt?xgjrXV0vHWFzivw%{j)vA^h8ET?j)4EDc>gT^ZR`V}CmJRXBBbVjtNrZ(hAj2i
z`*&K@p?#q4R7}z&FvXn7U*6mM9_^qfIS0MO=F+z29g1<)8U_hPx0ZxgCn?fZnyf}7
z+~)keki6{QB@r$B*M0!FUyZ<Q<s}SX!F+w{0ODe#6wA)04Ke3e^32=jE=J=aZn&`i
z4}!mVqtP5iO?FUJzE&bdzoVg&MB{|;#W`M>;;-|0samHUWNlmP#&&if->LBnuEIoR
zR&96W-Ms9B|0@*yz!}lu|1Xq(8mj;4iTLlHYV&{gRR1(n1AntofAdoyNCBCCzhZ@u
z+mnDeTA0Nk*wbZlpj{*2v~c(}Ljj?$T%jJPuf61=sUD|G5+uafqA!P`l3b-rX@(JS
zv{NtNN_F5S;4*mOD&VXm;PNz_t%CeiZhorRGf^=!f^ZS_fSCY40!g|O$zxH$pqMSs
zEv-)V)FM{|B3FRt2||_lK}*zISlF5E1daUB!@qI~N|qk^n^>^_h=uVl#Ug3z3~+RG
zv3LFtqiGW%`^P3A{nAG?eYXt(U11`#k+%*MF(M|ew<}_jcrIwnw$hZO#p}rxfe+Ov
z5moI}-!31%cZHl08x82+p|SAjSdyY2?6d6OKjh!Ii>;eW5w-?!ax$1$lUDK;U|W8@
zjNXJZwQNd=Hi=K4??-aNbfH=f7B7idF1|RJTII_db;W0j^~7AAD;&jsuL^<F2|CMm
zCY1;=`hK7YN*bFWj0-67Dxf}~=sM=mRySd=3+yB%%#i^OE;{F^rt-dW2mV(gw$;l0
zLw`sR{2{{jmqcU@txfG5Z2%^+04FCyv;Rz>e^`cZTFdaaK&}mOwUq3AVItq#2)R2I
zSY&y6|3>9+?nxP?)*j>dF8kVx*Uk+Hl$90>OvPR_UIFH+zB2Bc?EA#}Jb1WIDnU#0
zj^+>uKcAgP9?3UaG-&Rx!o!Pj<dl2~5la~Zw__ex6IN4_9GXNi60A?MbH+r<rqGv~
zV-z&XxqVeMh0=Vm_?(a7t5z<>=}>BJqSukX`-X?bIg2dqruptXZx7OgO7EXV7;t>D
z>#ccD|B*tT8JsT)e|$q9I1muYUxJYXxG7ltqYLp-k#$2=#qzaHW1M%Uw)shdVp!%s
zS^&^O?*5+G)Bs?Wg^gV7`)(VbKDuK<F}0!Pd`W2V?YPDM5Mz2ai5k+4{x|G9=3{4k
z0~I_4S8D3<hi}&NRD8Fu7n}i1Giw3XonMS=F*-!v=s9!5g&d2mw}txPQyHeY1WUxm
zuD;Xyv7c47^%k<rXpF^=*;|kxox@ZcSuwqxB<v`iClGnx5&Jy*6&)QjiRobY*g>Em
zICDlU2$;b~A;u09q5x7j;YliMhTnN~Ak?m<3ecp>TU{E>xQ6RjyN5=HU);s~b+B&d
zd8D0;A#8ZYHE(YWPTkmIHnSQS4imZ#NNj<qoTY{lyBgWA5PC!3sP|wr_iYoK!TWE&
z-`)&x%b`*V&8cEk?^Oh`d=WREoAnHEa)nhlwGax3>m@%s-WEkIV-H!;8QR`yq{OwG
z3Kq&Tum>olJu-%k+<wR4%1}Ny<K8mCBCEx)5Tjp|5e3DNf`e$}rz!n?lvHpu{j7Y>
zSimfU(*l%kn8Hl!sYrXQowa>3^<`I9R=_eTF!_^MXMh~uZvJ4}3(H-csdP;-`g~&>
zC9LEbt|J;T1VtaL%9`A2@1&*T=(ZJeVL-Rk@99G4hoSm&W*Og=nZ2k3^SHsIeyQ(y
znQ<0-6Y9`B4hGf)=7N@H`WAx|y1KJYeoo8ax08KLh)UgbJ}5_(8Ao~TxN&O=&(!sf
za@tXxHoxaeqBQuzkGL48Z3&_DIC?a@$!~pCxGjEcd6Zjg5%HhcLoiYE;)AsOgJw7<
zj8XjcTz+VOlH5BA9-^~9UxV`uEb37czW8JY<bnIt=+uF`AN0Z2P@*(I#?9h&4g-Z*
zLcSPUe)h4XF}z~Xcd$k^uRA-JA0o;qa3Wt4t5Z8JhA<AThtCRe7}^^E`SOPKiQgKz
zVb$)wk4WR@i}(wT`hc;wCL_H}?mhHkfMCn0L~ic#0AZ^$8qP~$Eb-f`7dl_Pq3qQj
zssGVaZaH*=#LOK30oe>Cm@GNcp#+S&%5K3aYnjHWY_kYz`RVu)16ENQ_E)SPcFGI1
znUn|kAq(9r!1mg}#pHn4^4W5`P~)@bWw<*#iQpk_YoJtbPO)w7R!Ho{W%4)VzZR-I
zd*j!?HNo3|7TsUwqk@>wpH`Sm*v{4#VEq3M2z(S|r9qj{GMtyIbn}~h)%l<>tkuc4
z&_yx8422AHpBrV@ZKRdbRNu7;ME<KC4rLI!$UQlnOy^*@@ALNU`~k$-ulEzBKQ``H
z3S2{6XNB@fY086)8`+gz6=Ap#>5|l_T&xv(k68&qeX&dg%Oa*5qA&{9n3$VbT$<LN
zh*fgiESK<Lio<LEa^~j+hB@sV>&xan<l4-b7W2J)xJA`#K_Y`=B4#q2`eZBY53MQO
z#x-Y(C0*>ke(GVAGB~~Z#j2kOPP94J?eI}R;Z5s%B}67W&1k)>1ZG1Ls5w(LU-~9+
zyR@u$F|pznUV+Yj+@>G+aqYrlKXz4;L!lFPPzl8BG(uNsESoCU>#*^)J&jJk&0_ZO
zZ5QEir{iCcyhHpe@JGG!LZCme0e=?t{|~qlz`+IJ<ox%u2OkAK`F=*Uj^)5Mx}c<J
zS3mGlP-i9-QYdKjn3xzrxQkwgwS)zPTF~xrU}B~l(BFzslqQCT9&Wx}Jl)6D*U|Do
z!B|WUP{x%RBgbOpWN}kyB=XkpRJIJ$QXGWarNv5`!$>F);U`=ungwQiM~1ltq|Qd9
z<ArlsQB|@`s0`vt1E$}m(m!jvYg*$h;>IY>NtC;zb_vDjpMstw%aq-upq>z~pm!Gr
z%7THc@N^&Ah#t7qW~x>oAccc_svFb>S;H$-lMK^q-nR9?mSh6>vQd72nR`6sW+|d;
z8f);KI4ownT7u7HcLd0vz@MvPcYriH&o4_!t@I(i|C?~#MvIFn|1d21v;Mjj|A%mu
z08aLHwoZV5fQ*@x`Xk$4^4yK{OXlStwSW2!@JkARY0()qAu1}Et9_X@xlD?Fvi#}8
z?_ikxKM~2dO3@wmkFw&&C*9)jZ(p7ec7SmCVc^=exMCwB)r7G*<HJnM`ym~C9MW2E
zry}b@XVqS)m=`GT6vH&mVq4m>OL~|Rgi%eD3rCwEDeyy!`vn6{sbB9uk%fo3Pnp-F
zp#Y?q*gomtesxK?Out35uu*ABPruV;+VMp%a<o4N^V!XtoN~^^@)+JcJzZmk@u8Mc
z^Db~=^wJn;>}m*pbAv}9JltsHq%L8;k*-u-3omROdp%*a{=|g%c%nqGMjgsW<5Sv;
zH|Fvw8pyI>`T=^1lG&s{1j*W7t#MU{xo}^XmVCs*m~N+B8OK~<i2n}zueyaclW<3+
z1Omd>_}?Dff9L&o%!}U8?kbC`UtUwG2U{|>-{Xh_VN3FJf?~io@O5B>s3pEjAwlJE
zlEs^tFr%7L0KYHTUM;pYp*PYuCef=Ynt;fnYinPaUUsc6t*tGowQICDpM5=Nd0ktl
z0(}U4U3+zPPxohB@?CpOdu-p^9uHM_yrfcwns;4u1{CCI-b%FDxHBS0KLmTthnlS0
z|0uJQ)?S_yB|Q}i@b<T)M~DtuH`@IzxIQ+CDegJ%UlznJx<Bj8iWjbjbBao~1bfHh
zv$?+C>3^n%Ca+aO41xL$GtbC;-u}mSt2yR(x8nHO-#|IVa5igrSDVbt8;5?mW@PA^
z6+D>)kdo>op=}xzBRFel;ZI_Fr6V4(m!7?TCPpS29A`o7<YJ_wCJhXI@%y{EAvqSP
zJotCi!R+Lu$q^z-rvM+%L+f#Dad}P*X=_~!`R4pM6joK`WNXCXb;#OS3C!$LB4cx9
zeUtl<pW>gbrw{gJG^r~PahCQ(t3~zs{`6+X%J=P4!zc)+;G4R;Dwb9xtHsdK5n_9%
za_}m!%)!A96uZu>$ZoIR!s$vM{{F8s&5cZ7%B33GZqH#?BG*Y0o~20vmlOV#vl{w#
zoU6+Ol11%(IfJg8Y;jRTYjLrDBTeki#X>0cZtDscI*j6=YD3~dYsRtm8y2EXg-&$k
z9LUkaWF$UqTmY&L8&xv4450NkVtJ%$*M<3AcTZVPb`(XBJ?atOe2yUy*Ce7vPB-|c
z*{qZBlm&{Dh9Ou6D;vwL6w9>rEsvuhQM&Vfy5uQ4E+6CZp`}P!%!&1tG|C-Z?b`jJ
zqotzpqlw3P5boI=R4_J~I)-q$y!hV1t$`VPR){q%97>q;4N3VzkicxqSti!?g8AP1
zp?YPf=^k|4tB?YvUB3~{N?9i?(_B#}tRoqrLtJ{WQ%w8oRSf*`&TxCvHaFw>p;g@U
zM~!yT;oB9imOjj^c25`eb%?B`mRi+hr)h*N#vfhbAD0;T^7VeNa6UhMl^QnkoJvz6
z)iqSa4t35OMu_6AbTL$8Eas?%fOTr#_xI<GV-_)9O6SNJji?3XsKD!|NW!UGo3`?(
z&0-@lROivEbj=mvja#7J51&lKE%8tI!_P9bx<!G53xvXpxbNwkO14hJHCZQnVffiN
z8x6yYcp3{to0O%sS^IlAEN5jP$JxV8xqOnfoCB5HC-O)$*U&NW4;QuoiZM|^P?%J_
z5=7-4I@vk<(oka1ioG5$)2mCk*hjFb%qKWPuu|naqO~Su8_hnNwwo8c0ad8Z)~6Pi
zqnG`sA_OOIL=A;P^(Bq2Bk7L$ImS}*n#;8$ux4|z{&HG;ShC>xuU$`K{-K{a#@zk^
zyDE$q*2FDbD4~$|2s85P^K`U+%`jyQF1brs&O8n3wgwI)y|4WRh%jl;b1(z4@k?ck
z71>ugJn(CZ22E|v#dER5;a7R>y(4}SINVNH)bP~5TSlv$e3P?n^R<5;>xEzCKkx9{
zx<bw2j1@#frRk=Xfh5|^iRWH7tl8o}C3Fc9(yUO+z&K0H6+~n9)v?{o2gnQuJbVi$
z$debQ5!0nB1vsV(MgL@vq)9W^hKU5s<TE-A;%f2EZ4*kqT5w!4o!s{I&jDco%;7xk
z5*(^87`UmH3zB(Dbe+Q`vwOMPlUmSC{k#OMW>Fu=5|H4O$f9@_yfwtH70Pb;0kg*^
z_bX1^yAieD=_LF6y(RPu%;30*N@i=Fi1KYXGXg(k8tEh-qTqTZ=n4G%!pU^Q&1REN
z#;w~(7|)}4SrVPp@#y`3b)2Zvz2fk}{s1)(>#;XOgv6cU72jq(!S#>gC#w<N&a;E1
zp6};kZ`~O7qlg2w(U!lkIhTe59Me}6T+cnjzY@sREVPIU<PaLcwovOWbJap&)+9v!
z;@kwz@y_x!nu#`KmV(oMP&UmZ#8MB2TtQ|!HH%?Tm(W1@VLQukLJkGRTgm99@>nQh
z+bP)%BCn1p=I;Sg)F{h~EJJ}}Q7w>yfY|VQ>X|gWZE%`lHd4@KG+X|_b3usK%36eB
z=VpPrprXWi&#?r3Z7j+<i2DWFX*xp~J~fBid?NqA-H}M8f^==MD#8jY`x>5eni*;k
zC04}0l8qJm+{oPeqyFUj0kK7l$jyQ^RjL`$|6>ZA%I`{l=Q}cYi$Tu=L?>V-z2#;w
zo>s$<aRkKImfKU7NRW{abB)0}ZvzRSS^B^`yf_-G(ng9GED+x*)n{N0j6rnLAFJW1
zXiXFwQ3M%`CHsr~J#TJyu(jOvtN>;=$BND*LN%!bL-}`#A;5q{N2OHa8cJ<*3*xmM
zI0CkI2(1yRuIhfR9W!GG6IjtMq%<om186!>j;Ew5ttIeV(f*33p@CL#Ef^oIsfH1S
zcI4d%yM)LXlDIoTv6p=EV6gaH4=(h+w`uLu8l8U<rxsp-uoNYdA{i!mydf5?{{9C1
zrOXqaG#*WqusAJp5Yfbl?mMpuEJwqA5N<BfQezhHmvgr{%4ARqq^ybruk!kkt#3ni
zz%PlUXx~|o=Lg0n0qCG#K|h0i4|)w{Yl*y!Vu>m4M5Hsw<d#s-qRD{cAT#3=@+Jww
z$n1|)Dp)$m>+rX}qfpYxHH%2lI-{Wu+uTaP-Cb%Xa$=mgcq*sK(?f||$v89-BZcER
zC<sb-$o6<W7dC`L!FFa~+B6TK01s~tZy{^Uw;0}T0E*msh<13HoRT$-S~(Fr<VELV
z%ANL34_u?1DC!LR_uzxq9yi#0XM5F~m1h)xEkn1!GN1~(GA(ZtpB(hJM57|nn!s&(
z<Ero5Q*;JJ>GWaK3vY0F=IK|Up2N?A(s2?~i!zRkg@>*Yl{_+rjLFU|=oo~;4pIm$
zg1$29dMe9oZNSH0nGw&U9YtDWG&J23{Tvj2;kGoK1$K5KucO8b-dc>%q<p1CM!u=B
z6x0&}L!j)a9aw_NcUFdjNsE6xaKP(5+}u0{<1+Zg08@@}fhbJ$W&l%-9+EkQt}T_`
z+>x~yFgmbwbCi-#Z`i~=9ZgBvnL)j~MMSSqQ%DX)=*h^N0b?s4(E}7M=6|Csp6?Ue
zWq@<!VZ{t=6cj(J2$h?~eDTLovx|bHYoi?$NU=iy_Emt2GrTkyoDaeD_hwu13=fwD
z9{yHCMIds4d;vdf)C#{zM9)3|CFWFcoQGA54#^_)j@M-#O#vC2&)<bqXVC2p>eTZE
z&QOlj!ZOP@$CJ`%?@^Q7&SAR;KLYA`9Jm->ZBKC1&X>5a6*VQ|`7K+UV8p8v)bO!|
z*=~ngCp#1YkWBAj_?iz&I+~}TK*XOp)deywVQBiC=d!9;B70I?RVcl&fsP~RO1}=s
zJ<rhLE<>0U9ekm}4359J>lN@<gUYcx47A>a%epe%<b)sM>|^5iI<nH4W;q9T@(tz9
zNHtOyq1>~?i+PvPp=+C>lNv;S;yPHwd^n7A`1R3ht%E)wkoA}gz8YEh;jjee7K(_w
zXRF?Vhfx^6>s}@hi{~%rVD&N^))H*z=qut-0}bmD`bO)}E!dzHc|wK=wtJp?E4b{P
zkhzg--Ucp6=M%f7v4V`HOcbQLPWr9;cgybrV*c1h)_9}(f#MUX;{^4n0>gpMoDHN9
zt71=(3##JA77Xhe!o0(vmBX!Mql0gk;0;_;J!KLwdd2#@Bm~Bp&A7~oPB?hZ8Ky{H
zF#Z*I%#&G(_?w}zCUyf11enGVrqxkW6r39qUD4sw8b&(aY6_wl(o0U%LsvPv8jcgW
zI{V%sS!Fpq1HRI{<ov;)L%)E4S8beY?OVH|^?B*K%tIIsHa|KHrSW!j!gB|if~-Es
zQ=Wwx&6y)_68&S^4i<Rf6$=+5lDE;FpG-Im273uej@+Sk<a~7%v@KSm>}9IAk4@F@
zLq3NJUh49|-}kt*^oX-ix0?ps2HbKvU+bFPv@GUiZ+*;bb(EITLNe3WP)V7F(;meQ
zmmK@K>%xZ&cQeqnKlU^SN<d=kPam0p1sVrnL748)s#$RTmy_XoWN)49i_A6ct^!46
zdvn>pS3gLMp+S|>yyam@iN16oIfNzC-QrFqJBYMUMQXQr1mZuc6N#3_Zs}bN$~T8@
z-&VGyj(!A?e^TiMG}_zKj~br4_7JCf&<CZ@1f1(G!a~ami#&ja=g>cAF}Ek}nkniN
zmdGVa6%k08vWnrs<(=oR*KZ9fxJ#2^Az+Xz?a1*`ewv1MhyUQ@%E?&D+T!%U5q%#=
z`NFU>X^sWVZ3vqpIYxNFR$vA8qe`YJF={t>G8XzXk8(Q}iJV;SW3npa?D)Tt0LK2j
z0N8P)u)i0Kt!OA9FRy{7oIf&!iJ~cNrf~IpteZ<<%XkZL>uJ+n5_+UH=kp6L(yGf^
zWXFBVP#J+xNZR6$NSkb>I`aQ!<`@V{pN_I?`=Y>^c=Ul!E+H2Dac9o89y9Eo))lgv
zl+phJ`n0l&)!xZ_$|+4SEu7Kp7b!omD?NZEcARjavmx?qpq1z2>!~nh4BZ*)R3v}9
z+n`k^I|XSOtXqyucGE>U4tAW4*iX-T0Bui$D1P<s2+SI)L(~;X=n+OPf4I&|$A)(b
zXrB5tHa3pjAG#ZhC1Hej;^0$o(dgcIdsFaXuSfie>qX%)4)hD3^9XSJIbg!LCcgj#
z#Z87LtlP3fre^iRjoQb*_o`dOi>owc2-;`-fkTCCt!}w+8=E^xYkO(Wl;L*p<lW*_
zx2gLw1J#S$SI8%$d<W_T*So9~NC>qz69DBSHTzaZ%tOJ(wrMfovumQS&N}t>Fpl1^
z!O(s{E!<^1hnf7Izi;jgIjvzcde0@SU5RS`0j(Y;)0(vH20SUqm!vbTUYNwz5<X}c
zuWx%G%J4JU6-tlsfI?btAl!kSfoG@cq!`?>p4<ySDBu!2-x+Wrla=x#nbTu&vJd+@
zGQpkt(w>6uVceI?e8dmMu9iN8Jl{ITzB|}>cMFOHSeYcLvZpa(0ACh7T6zezNW@)}
z<CZP!`ineCMrtLG`}nh&L9@XV+23(k^IN9Q$TIND4bm)-Egs2$xn<3!$Dgx=BQ}CQ
z=EI-4@<>Gl0-+r(w+2(uu_3BylpfF0aPW}>x{?#=e)cX>YJ=RZpxqq_;MYnXzsR@0
z**Z6PxEZ-PQ^jHVArTK{Tq@wecovW($W!{ia#5FL=YJPcCYeJc7PyR4*L(=<NV~5Z
zr|{`xI%tI2g=y#%mQ!ojC#?>yOS%q7qV0tO3zE5yO!DsTkQ5lT8UvdgbHajQyhBso
z`tzEwwLXj;HLxP04w0xiG+fq$=lxe6=uUxHZ-Sb#ufhxnqO~S9TVL?Ou3MzSZNZY-
zRzH5y2JtnRF+|7Cu){pQdjI|Qy*S2QLp$Azp+~ga`MoLI!Q_~H2+ke<KnA&(nuS?E
z!*wFzF6xh;nDm)Sy2c}rn-zG`l_5i<nOd5jRQ%L#%wf@(U>Z|7Y6sbYeYX0ms~&Q1
zmJ$=fGt)vJt$qGWFRH!*mr01)cgVhDw9%q_pcW-R#SJ4~rhWzYw>;U{{|wrx%M<BY
zZQ{Z~q-<`cLntOG&NxVJCmQLwZ6SXiffG;@nG0_&CjCaK*o6h;SWW&sI&FW)w^dH(
z!*#696y%W&n9H_Tt|4+25YY&}p_^C~ne)Lx1h3U=z<eNui6_$Lr|UK!VK^8peVM2`
z0FHE~2~LH3BbW9~O`Dx3#Fd1<OZ8cd)1S9X%{bl@W+UHAE6rkcsnlw%qHH<K5S9Ke
zq!zJVbHMQe+^bs4$hRG|A&)jYYtBiN8KN7NO7#pE%McUe4n}wfsqh`u?=4Rft@e_3
zP**w`Z1rUzf^d`&_s)Z(T)@M2E>0j;;BeZfp~xl3QSxHLhHh7kR$IUgB!T$H(OM9S
z^y?w)-Eq?UuNJQKZHs78!yN7gCU2q7xwvj43>9HR%K76yq+$qU$eWq*r1!}8%6o_z
z_{Ln9-xYDC>SoS{h2E;4TQS`<iB+zKv@eh^;xps=xFQB2j-$L-1ymU36Xe;j_rB+H
zSwB2`^MAdgKFCCI^<d#aj2YM=P@!MQQv~@F0jJ4SBeF-%(fPh$zHkVCqQiVJCe<Bm
z9|~lIRC|eZH`AY*Wa_<F^@aZ0I<e;r3izGu-5>My6!9d2B;7UYXnWI6(rz8rZMC<&
z&U^M!jy#1$Nh%E8fTxQWQS{*2FJ#k>pXx|9qu{8N&ehxZnyA39<D^;?k4O%v4irp$
zcO6!N>No>N#d`pwN{>j&ufZEb{21D|tuCcCe*xIgJc2f^Ta=v93fwJCj+sokm*XrO
zVE`Qg)XS8iZq!6QNoQwA+M>|?^MXTA?s%h7rryX>Q{y&+(x^);>JY<s_$bAL=3lmH
zOD$&33wL#=NfBLN4}>s|;~lq&O0jF~vq%o+4M=$pOtij#!Z7|wDvVMP?~@<6^^h9L
zO1P{*y4uNZm;H6pP+<k&xJXI^eT-?;_EpA*Wa(2hqZ*NB)vAl2mR$t<0TrOY0{;q3
zon^aQLSCT1&7~XEt42j7hu2Jt)8if@ko=v2WDdt}48{g>SN~gJnjhY9&WUlT%D^=P
z>8HGP+p4@<i88GVbvM(}-Vr%d=5!q?PJsN__5`ij-S;G|lBpRFaI?2Y)G9yy%)%|x
zlKT5>1V`JS<VjSthCNdB+U#zr`i<pIaE%2!?YWBq)?>7dDxI0}#Pm!7Q>bRUZrpO$
z-^J=Dl*U(URK=V~jH#jSZfV5h6ky=6HgJv@ChGQkyO1%|pF<_U4Z0VkMo6xCp_o9t
zRd^~s6tGsoQu2v(Ipi15Ib0jV(1qPx&8$|EeO6Sgh<x<ED^zF6k@=Sr`+E74Z{R_n
z6;Lp2^|-s15=d97<J$LizAIgK88@WEAggK9-=baNE)tGf;DOG%XM_e`?IUV9hH^EA
zW+JKQZAV#<I+$_!0tN6GlrT=j50gK+J`@ALWFwV?FHj5c6~EHHCXKzByYzW^oO&01
zN5XiZ8X+K3K1D&1^Fu(PwhZMNKoGXM&1!W-QS~k~RJ-f*n0ZL=f7QGD;Z?Mkv$iyO
za4$(to0>#wzqd%9BvqEM|5h#W5M*py6L<WEX~r+h22zhopNMI+p-p#7dCR@L<CsYy
z&w*~#C8aR8TqLj+c{_8MRHo{p<5f)FMcrju;wGQwI8wY-y;Zn1-h3eSVd?EI`Pym)
zmaz9F_1V^%EL`u3^7ATp;m6R66)n1Q$gJM$*E=tQSO4;TP&LZK%~w18mwXKU$<Ws~
zf5do#%wy-z4U@Taw=USeDdP!`ITa51*WTy#$6*yF4!_i6kxdw%gUTaI4CPIPx2$vL
zs-{wYsCA8p5f!+C?he*P{EUpn)n@*!rrfKCE~ll|&c#uQ0#e=!bsqE9Tz=kDw;NII
zjQK3#Q+2ocV5jD`={U1G&?jUeCtWuzHR={@nN^gBxxx3(L~%r_gX-GMEY+>-=ae&J
ze>ti(B1lS6d(>DT9R(-D1T{+>FMptu@CN41?1qKn5|l0r=H}1hU6u;|1OF;zR-7nN
zt_gRrE^*#Ebd)3Y=(5cqPwP2>%d-W8Bu|}7;D8mnu`Z#E4UIcLOJ)xjM!JK@2+cF(
zM)jFkNJzFtGa}G_MGl(wv5(JSChw)b6{{jo6#r=+2b8Ai@?zRYu0j1G692I-PT4y%
z&~xlrOxo68)UB>PO4B!|+zcRcYhx<<u3f$(KM)l3(Vg|6voQT-cYr1wW=K`<jj@h!
zAR&BtY0S4o45|9msbHry@2rz{?ar=EJW)d++L1-XGxC`ioALGQpbkYwcpHLVtCBw!
zj~iH%p!)NE1luw#Alk#V#-fM*27*|KrhViUM@46HK8gPMarSmbc>(mE(7AT#w9Hs3
zP`|*j7(RnY1Ebhe{PpX#Fjp__0lwgbUHeS^Y&irI<+j6$?j)gq!R=)X=pvY2vAcG`
zZjr_x?R_Ipo?_E(1o1N%&Q_iLL+E2lsrz`s1iamnn~G(Tkk~V;>wJk}GmA2)@yn!i
zc`@4oy;-Em?Od>&>8lr17nWvGe{mcBk>jG(phxLT;p?FLSmOS;DwOQF=l+=9>CJCv
z`%G526Zl&yr)6ogHyHmQG031|ay!$^X?&9Wi#KOJFvXq1kF{Ob)GkN4qf<~fSKC*a
zia||yq{DmdE~(7?0ny8W*P?2v8Ss};T#nj#Oqc##y(WQ>6-NJgIBr4&F!7)_&V2N{
zHIHrb6X_x4P6ng}StNjdWRB=pZHu#AC<5Z~Ath417ekGeM(NRyxSG@M$4i$hoOzDK
zueqpM1{?yth4O4xm$nIx$nJ@d2r)0xa#U@S9A?HdrDn43=e#fJZGfXXnH$s^K9dg%
z*d$f0D?QTfWSw_o7k9tgK|yGiQG@R`@>yq08Nh*);<DDBda%^%$ER^x?4f_^TUbe*
zp!NhWl=i9l2BfHnc-(=2vxw|nHrH8QAKiyasq{EqxlW5^THZKLbN3S6`3CdORQ6fl
zV*91V)jLFU##K_2_LTkcwDa+#<GOguVXUo3f;L1gY+r@3c@zC{%VDjpM}{`Rby8#x
zth~guO`moAks^zy){GM~bS8hA_HtYD(RGpXncO^}<O)tVOZAyum%d6nZ@e&?dzIqT
zOA&LhSi*wrnLTp0j-oMm$_j^aF<^+`Y(!O^eX-LR(S>6%vpaZ+SwmjA5^Gx+H*J8R
zEvM9Wo&d(Fk%NPL?qFRQwAD4C*k(7I_*3%chTPLMY@M{NP4&xmx%;c|2ZLF|^#jxo
zj?Q874)9}Q#U*w=Ieb1E{^-394|xIB>(dV{s<IyYzHS`dyM^buM66aA7lD@(%eJJd
zVqC1mFd_Fc`z{76l}wyPgfg7sa<8*30Wpqi!s2z$Gya-nepWF;gqJjH{h+H}1lKsb
zN`kg-_Y)KX%Q7#ZkCiOji1`3M7aq19O6CVi>y^|``)SV0v()Bf0^Iygmp5kCtlSUd
z2j`LI<Sr!Y`f=umM1@w}sg!O4W@}?YA900|hDo0XQmiOU=7+sZnTtn0mu|d#{p;q*
zw&dqoJMvPW2QNwa+523W_C0LOgK3-sBf<}KiT9@M^DoM0j@3_}2Rk8yQX7ass_)7c
z>ioioJf~FcbE$T#NmnJdb#!h<?$tl9&4av~<V^z6k=VRMbxSJDvw>%0)~VQ&k)IGO
z@iFVAKtoAuZ<*K4r$X|Xjh^Jz2#|)a(Vc{YuAyhw@~w^g7G73Mu^qm<jbs4XOCfMX
zQIg7yhp<$ARD`mW)_h>sx>xE_)C8=$Y6{Xeel(>bA77!<JcT7rfVEHL0#pSvy45QH
zt}9|<)(77(*_iAZ3X(+MJ2IVpMmXe_pTGuwUgDz8e(15Nt>AHP96g#3wQ}i{d4Q%R
z+q0-{SbKO<CN}eSekqnDoGyq_hOlNzjF*A}C@TvesW=oe=!H@fj>lb$RFXlB(&@zq
z3)?!Rbc)8;2hrQS1v{jZqeGuh?wt0dbbW<&WP`jFy8_!E<KEGey-^1noy)yK&o`uX
zwpbC@20IV-+UEAHI&aUVqrZ|lKD*}jlfCviLU1V~rUU8khqkjbyMgkp?ay*iNcixx
z%~(4py(9iy73O7zk~zN&1S~gCIYQH=bGP?$y9*zF$8h*so!$m=_-dctN_X6@OWO$?
zM*hfocoOfpMNG=-Uc~)UIK91`YB^x7D>q;Lu}F<kwp4s+fd`q|67L;-h3@9M1GBll
zih_g)HV}Ya>!icGz(PR~G!rK7sbNI;YYQp*c>)(TRlx&R#XwW+B7gu*J}_c<Al`eI
zzdJta#Qs-DDxf2$7mv9#yls%BtwX|FQ~9^*Z6n^VJx$qN-70a1dEQC`o}odfoTKzi
zy8EXPJ2op_T%_&!u_jL)-f%WwMhf4CZZ4uM2Br8ejP+*m_kkzAeW9+Am?j1yUqvvO
zN8g`O)`p~go=3@V1J%2sA=^f&Ot)tQw{J<hSGk{(9eUm+buj5LKS>1w3s0;Kd3M(&
zwN~$t-&g7PS$6JUX&AuHo<n~~`FDwa$QC1rV#FLQ$W}=g>-D;1D?dARZj`EjzvW^J
z_mVBv10?qzomjGwV#@izIJ>^^pC&h8Ot3tST2^7#=*Ue5;yYR@wAxnUH4T=k_7!om
zjaNBZsk*u}u@9yr$0&o;xn{#r)zN@BY6;3svzvk)&=&6^j*uP$Oca_QTo4v(3a@>F
zsM8tkX>FTy1Ilf7+ynyN+!sKjnOk(RV<N3b(me@^{T{o*cXlF1iz2LDmquh6`V(NE
zMlmwJN7@EvidE{`EVl&8*IH$+wdl;SP{_kAuDZCc5_q7%SVi-$R;`1lKJ@CAqNs<>
z4|?RGPF$f~&m88o5Im<0MDCf=YfAj?HSmwgfCG008*9BMNT&Qnee1>S9vm6SyOrx3
zG|am&eU}pax}M<)zl_QAs8z+_aOR?;f3^UsBd}a5fB5QHtd~8^Pc!~smlr`2{>W01
zsnugv2(R!`i;iEwnMr_+y6J%woVtlgGbC<|RZHg-;5V@4&rOI8h@KagyYH9?>Q^bl
z=1dKtaKS~Z^JnY;6S4(^Ww3)m*8rAPPC*)*dm!1`^Oj|2&v6G$8$2LswwBbw*+bIb
zYNJM30xHJ~M8Lv4B_Lr4O{7G|8kpmQmlg<nQcyFD2<3i=wr!-;^Os{7#ipQ@)1^~2
zG=67}#Z1Z^O$Ylf5T-(7ICYo+Pqi)UW;Nq!d#lGMnP!X{GcGpu$a~ym8ks}$$T6EW
z^{emWeK+N2a21_%w@F^EF@%F!5&~gY2-CAz$;tlu$u3O`1p4u@$;KCP_<IiQz&s_;
zI2rhLKfN*EnH~yvV!#i)Zo-Eo#Pp!A;b6J|I(qZ{{Tn<K)$=8`27Jf3$?J?CrYSHU
z=f03ud^HdUHYvq4ga%;PFMnPLM0CKWDQ>}v@=#nOCPt4(Kdl@Z-x(A46YrxE<#S~R
z!RHVY2^{_oB}V1bX1SYxo&n!?#B6%hC^5=#eO^K5&4kpQo=flAOihVxXK}Qai3)y)
zGfyX2iN^}oxbv6yutNK8(r!b@D>ZcQVea%2!99q$PT7r8wj%lG_}k1>{$5jNkj{Q-
zh-pTt3)Rqdi{-8rpLH_T;Pn0lgUDOc8t(Tg&-R+?b$7g+Gr}{E@txNj8*JK(h*aj+
zbN%tx6b3vP%8%a(-hRSBD*7gI`g_^>_2_Gq`pDM)W7!WrU`L8kApKUxcaI;gt=z<<
zUvT4c#W&=y#Y7bA2bltH#gMNU0Z}xwpt$S2MGIAOo7H35LkX?hHY)D$F~!u{DQ#1!
zJS7!??rG$;7zTOEcKlM^_1S|5Y#2XmJhv7i`D^ce>-Q`16Fon{EYRnC<Rm993H6zF
zQLPS=tpt$IJ3NoZ4l&i!J6AT*<mZ0EqdUV^S-k*#`sZ=|v1G2LglhXyjz~hM&GezK
zuOeI(!NqZ#GNEmbUvKQFg40l7fqQcJNMT+tK$O2_gPzjip3-HW(zRCX%6^Jg?zo!}
zwoA(gzKh=FStnusP}9>;yfS6UH8ovOBpxpX6IMldnB5{*tbe?&{S7{H+s35+H8tN&
z_u3o@=(v;YlDIknQ7<aLwA3?)(FRGf3LiuTAMh&UzFkP`JUdW6cb{Z((K5$L;_OuG
zgu}0kuTm~%U4VejU2|5m9n1PO5zF+D>X+lTxYTRJ`kLAVc2ES4@!Co`TbV8?l1t~V
zq-U-?dTMtsArQ_qF0=aK6VMS2x>An_<Ak`lKL4PbU3G>#w7^pn-1yWGp{2X*{H6U(
zmqjB@6_g@VplIoeBPC1pso@nOpCNx~QDsy7zE!nK`}6Gt%Qn%&Sh@A^en?PZG7&zn
zOUStEtJ0y_HM@C0Os~)IAXZaMZzLjPNaw+wtBU^2!Slctb1-EMFKsFme7$MaFvD=V
zrr1oyZsa(pJ!H}UZ1{je$BGRKykARMpG+;I`RaLNTpI8BPQY@lOIL-yC@g;v&xPq5
zR^nv~iH;sDV&*tvuki7mF%)s@MgS6u9D+c5yLtfx@uB%uT+7y*tB&GSH+&<n@S#gO
zce=~$Emr1YpVolgTVvw2HIDMF0w7)&+Hb66_oq~J>1@oRiS~V3uF{Gj0CKSkOL-j#
zT_Jf5<GqN<MYE)Av<gRAJ+LRh?Qvz%_>3>gZfZc+MPW}a02VS`auP%fOYYY;yKo}U
zs1fF1%|{O9k6Wn{Ll+l>=SIjuA6E9OWn{})2oW*eWZ}E60Fqt2!rt4A01>EOcNnG(
zdj+_R%Y&0rcEo@Yar=DF?(m$biSJ-%6k@ykH&)cFTUHbKQAMWF!p%R0Gi4_YM8n6S
zvy&!iG%)$;ee+y$+bXH*n63L^yB8pxe*?f4f?1Io^4EYn9o0vw<w{q+RpY9=<$EBq
z6nBw?_wGT7v=4=hK9zWBnqK|#TX2=$@6_LK1Ud7|8!W#lyVygt%%P?<gs4o$Unzy8
z-bFc|NPPukxPf-%YNgdUA-2m64#!9{lIIe<*}44YwOGYR-LK37d7>1wsSc)XynJG^
z32xuQ#?<Iqd8GmTl_<#xl)X~ATQw8T<8Ixx-k%iIzH{hQbGCn?5-BXtWpmizu}Von
z@AcCav-&0WBF#-k<KFTz^ji6i{4!^CCBv3m$34yMH*5R1KqSEv1k7H7M^U{mY0-1i
zk}-l8^#`sct^%+NLDwBCdIk{sqH2~RJ2XR(OUM%$y~yI@{SORzLiO!a!wo^kqORfF
znU+`IX#9~9!l+WhYefcoMv$pHkI8^WWr5*bz{0o{7os=dS4nW{R<Rzs^A~P1ny#O~
z4f;=jTJ@#!kKQ!}0uEw1wJ#JRYYwtS#QsxM`B|G>>MpX}GYo|LqLoEp{Z!08Rj1cp
z=v}aq>aiI<o|35cALk<QE<BRcj2jeFx_muCoZ?iCdSn4Rx$L+K?z!5B{QAFgc(!rU
z-m^YGfmF{?&g*!JZO@>8S1{>6eu_(u5RM3pE&EjT`n+Eq93@}PTyuzUoUAm;3|D1z
z-t4JP>HP+2z4%qVHLiCs2Y<NgEbPI)sc;me?b|*9Uu&?@fi&*_`A~;!%8skJ3n1N~
zO{wnX_{hPjMXka!>%g#z?-$>7oHwf<{bp4+o<q&jm5OD^qI^W4<$;=qf|tg0#pB<}
zwXIkM^9X*sE&`Cs@nyZuE`Zr)G6_9an4*y0tn}SY7e?>;MipHc_V3@=P<tE8OCbOO
zz5N-4|Lc!X|2|UpXM)ki`X7U!ml~lz@Wc~+$w$+gSY540msjNG<T3`5Do2Qk!FU22
zJhhbe6{k%QUWgbirW*=s#pmNw304s#p@;*K94V2m>>>LS1rcOG0^eYeTtQ8e-*jA)
zaa|4FG+n#PvSt?=v|er@4ZiqGyFIJR^g5r<R1>@2m!p0BLtJayNfriA8p8G?Rm?WS
zSZpwPo7t5zt1zP@3WgejIMQ9uBI_`73B<|~*6*JrR;wl=$Pn>eVF>btbfwAeQY(@s
z0e4(h)rlKsOhy#>=xy4iUao`bb>r~Gxbw*Qk9D474R=9_Y;$56;n?|+bt_U3YzAke
z_@HD?YIvTj-qbcG%w0+xOQ?9JBo^2n^HPU(FBM!CWKNn@tEi^ap9!lOHrV+t_~rdz
z9=h|CaP*ge2BD;($%w25TH)!}&Nr;e#6#~b_bx6cfqZ2^u7#`xGz&fM*kWFUQQaD+
z8h0YAi?I?5s*a&(4^&FZR5V50tKN1<VuW1mVV)DUjn=9+Me+F!_Ocdwjo2J>g)?*P
z4WxGGgF)Of1PIfZjOm>gJ&zw_THBKI6j45#P$3*^i#2@yJWn2pcV3}Vc(5jJ3QZ}1
z^3Idl_CPrZouksBs)63XRoh}rBHg%1V8K(&Y*fqmH^JgVr*w&(K?98npYcg+Ln>cP
zH<_79o#|ZPS>;5R8pJSGsWjx)m~0e|MU^_-K^6nyBmlv_6cq{!#cl#`x{!_EaBITE
zkwml@`|>0Mj%O4_N{eKg9J|)zCU)a^oddNd+AdVG>-WzsYlCXbwy4gO$!6v10dwUQ
zDau&qwU(M|`<`RNsgY>%`S>)62vWmQ{@D7V`&P8%WXu=#cwAf-7gVlz!bOy{!f=aY
z5b(a0Y_^IBC{=^RL_yz1IGvN;#0^2;$ihaQjcKe>XI0RlTbo1?G4SFJUIU%Ak)ye!
z5MjakA@dSrY-R6E67-f~cM34i1yCL<L#{kCDQT;Cv88DN1_RrvIWbf*{&20d8E0WK
z#APcmUb4kNrUj}WTQ7nc<b^dG+&CdD3<x@fszgytYj_m$xNU}VFUEL?rQb)bVWgMh
zEvUl$stg*)WkPw{g>T7$?d%5`$E!^mRG0c~e+D21LF|_a=7_RW?qJav-()PnlU`Zr
zO`c5bTu57WC(PcUOzE}FvjHbJS=nyXq>*0(fbAMxFrF&Eu@5vxOhKtz18VtmHTOSD
z7!c7=emoaMsxWWT-YwH{G03^%y?wLRsjb#WzERd@qE%aFS?d~L3K(i(0v7-r)ITIj
zyY`H5VmS*;TsCwQ$H0f<L!3K7#~N0{s60HC&c}vu(3fIN7ozML99UK(Y~Ze0js`Mb
z7WG7-!K@zWk#?+Y<GBXDp3S+OB^hMV^TUu|YJ*De{uy>9u3NK-kV_k1Zwcl`uU4ty
zgA^y_8KL4%W>`6N9IEdW(^a72WGhag&b3A)TT@?*P^VEfecE~DPR@2ZbMYEtvSe#E
zH7ZEVl#TFYpjDOH5-q7*N11k}*$T6AK*!WEn|}Hx<}+05uly)w9x`)|6&dK3*)TqD
zYcustj{VsB(P$yRU9>p5?KD!cEqrUB#B2Sj^st4gn_P-xp6>m;Qn4-36Wx=CbniV=
zu`SZ}SpPa|4u4_1dkeLY$79{+;S;J85%<<kOE`gFkT5XcO4c?Zlgk~IV<k{K9h=M3
z*0A7YDv~w*`DXVzdJgo#P)ur;j@A3n1%K?;w0*{xQ3`RkzvSEnxyl{-enHy%FjXuU
z$ZUt0Sk!vKWjsoEbzYpXFk18kEPpXPP|-7iKzIZ3MTM6+a2bL60ea=|#vLI!?Bjvc
zhx>bW9~`k&=$zR}eM`g?r(S&_zbCKNw8m2gsiT1+j?J}3;ja>MDHl6=0iUcctXu|z
z3Pz8FE)jjP1nI1R^Wim{qdmhXd+F?uIrUR3ci!HdTBXXX)A~Z@JLk!!83g$`0g)5j
zk&7H!sV@onULLHV`69R9RN)wCxppqUmj~F>94vhvWIfZ4_XHfggx?tl*}6~*|4j7l
zTq)gWQhqm}egGAVJ(^NF5tl%)fF-@CoKQZYjF?*96l*O}(~-}lR}HglDLY$bu`JDN
zihH==Z%fZoJ2}2l6ZcU#!F-3)ag-@;F{k?V89D1Qy)npjRC@0n>X+3mf^M;pnO3Xd
z>rVg9E!Djnr5Oc9mN6E=Q9g66K!qoHF6sF_S0JxecLeQK-na6cwSW$R>3uq4$^+uV
zzWnW^`;-CsH9Ly3lW>LVgJC+ucUrbZJTuMqp6G+H&vT<RAJ<rMY4B#~%7xx;<<OIe
z>s<i$Vl@h+6NYA)`<#8+QkQzIyq6Lb{iQ%Kef$4(_7*^OE!)~Q?(Qx@g1ZLy;4Z<P
z;O_2j!6gvfH4uUZcZcBa5Zs+_?Q`!wIaw#!_pg6etxBk(pI-Ewvq$$BJ;pl}XYrul
zN7eQnt}CI5_y)edq=cy@T3xepVZsFssdq{hK1Qko+c`)zBP5J=I))a3aVfe5zAB~k
zT?q%Tv&KlWLiKm!E@hmoii~czzEX;)q6Iq+Vwvoog}Ym~xa;lP>L#63XN(Z_Z3~;y
zhzNB%TFl#!vUSX_N^H_bww;~BaKfrIgHTk5#%}rq2{MfZ0jy>zgK#{UHl1wj^(yKT
zLpJL$#7^+n4dW%9q**j@Wy)J0rkLx<nQ7P?w08nn?Vyt&M@-B+Og;vitj(0T1SuOV
z)||LILRrHtcD!%3{i;?0r5ef%_Km&xF;!Vvu7E0lBOsw^nRk0yYKo%L2Z?|W3YxGM
zUSgUl*wMa0Q=y+LSiEA3P@U17%h?{r2=*$^r#~C9!Rh|H#W27b1Luk4Yj#TYemmU=
zJGN{6Exc=pSx9FVe5Ci2HsnTUxp#3?*an_GO;ucd1eKi2yKRx_;BR#fxLQz-{K$^y
zylGqFu5Ytq`z?b57X6yhN7~K9Oouv6cW7lop*x4w`t1Cx*KNSrRkzwj^H}nBN@*UC
zENQH?%NtixvluX?!UEn{7`bARFrR%m3uTRQmn&e%G?^t(<ULGI@<bgR9l)-`<bWOO
z?jBL1q|B<EN5mj1S2vLKIobBvHs2W)aa`z->mh$T8{^K<fj5aHYR5aM99qQk)e-Mv
z$!)npCgnDl*}F(iu6AlxcAh<Ri3s_GpNmv|T~V3uaKBc^PP81u1tceF(g(paBKBIC
zPR2r)panZ;?#%0Eh#ouo&B)f6NYG$Mfq9W8e@r%H5!;yO{K!aP3I$8~+Kfdp7#wZ;
zwb})eVgWg+Kv|<*4I=AXO>(4UFR?HYsfzr!`nXh=&PjUAPc(KAJ<+j^i3B$v=qJxp
zlpGc37Z-VtRl0pz2!7Z$Fl@z`QzJO@&tRPeyG$oTxpb%Y6LF1Jgj?9x8L{0uuQ#=y
zR<F)s(O)BH9lVxS4NK8ABPxr7+g2r{*^5r!&|}9^0*&26j7-^lq0lyPgGK%l`2mB2
z*A#j)+Txu`tIM(yPFA7iBA>#Es;g$Sh@^p=nhjcRxo3AtP&tfz7vfP{8{)>A-QB)l
z(ModMJ+?|0yiHunmKYds*Q>_C_y|vo*Ot@WsH#&#95KBfLCYQQFIZcN6`r;HbLic?
zPHz?<dfww+1&G}eA4-DiF`V(A`h-h#sK521xRpfHgKX2>0ACA4(*ti)+xXEwEA0jD
zCbNOx!6E6zdOLt70QsmAUbd!1?t^!`kG2Zu6Vg2fAt1f6*xn%R1>+Uk?HYhA{b+TH
z8h!#MAh9t9CZN8t>o1_Su^R~Z5!(;&V{^yN+ehKkUCGB+r@PXRhIX<Wd23DGn`<H6
zeeHb|qZb{CxA5&ZQoNx2)b{Ya)MpsC6ln5+X5?9rW0GEQUfJC@fy8mQLZ{eLk4mT5
zl8-%W?%{e+HqwtMZbBPkb`l#?YpiJ5kc^U#Ot+}vDIL4yx}dHUx{%+rH`q^`y7^8+
zx_3Kbr5<r^?ZfpzpV7kgV11IhtDt;Kx~o8a)4Ho5eH**0z<q<etDt=gx@|#xle%po
zeCxYy!E6e(x^F7p?|!q*TkJXENq>~<Ae#=H-Lq`hgP#dRJuaLTS&DA@91!+ozK813
zrEnv1Y5KgGmE+&QCwj7$eS&9*JkiQSlz$_)(HDBX-X}p+D6s<a5%TCGII)0G_F?WZ
z`eh?SOBZoN$Tz{(n@Py7*L$>4E;rpC5UW@}xP|m2x@zZGCaRwm?|1y?Y9;m-n>|Af
zTal*(j5<GpubvQC=e!`TywEDWMAw)+`?c2SPE-@*wJ$-tAU)dEh|v-iG$SKC-lE>`
zzYc}=!Qu$5I%Cw%GotzSq$k$Qn>WqRdwOEny&Uh~aHM7!kA6ujZkzMjFg}<Y%7=Eu
zJ-}zIpI8c)=vJgXeY<A6V&X+)xM``Oka1?#;w9nz$wla1?3HUB{I_ezZ{nebitDqU
zL4hxpYgNds8~%~hVW;5TFU&I{v7{7nC|nFU&*=2{9&sy=&xLNd-i)GN^3qHAG(PIm
z1UW^*-8U<%7_>PXu65l*S{uiujK>V;jVI_E$I=5Yt{E@ONs!mzj}I)LV21B&v6==2
zF;D%B+LK1EE&YD@;rnHPM9n*6pT1d>ZP)U5b&0uhrHih-0qOT=5Uu?ow3gRy)V|qn
z=FbQw4<ZjH4=NA73h4v$h;a*fD!tawPV6rL?n`Q~cyJ7gK>}9}HUon1H{u6p1^ES(
z$6u%2y&bYWxV=Y^AQc2n5KeH#>4ezW`v$p|sv1oL5&^{0&$%5+pR5{}3sS*<%CDk5
zt(`+3W)3zJ@enKvG7~xzSsUaKiUEQFi~&mApNk1f280m=%?~o)k1Y<e(C?{TXiaIY
zr`@ET^b?E>_~&+mPY5c0Gz#Fn`b1n%+MwF7+KAfV+VI-Y+Q>^FOE60iOOp%UbKqZ{
zS(;*(N00OOfcK*fqG3ACfRscqKuR4T)9YWQtNybv)&G{75(ldD09?|b=eH#do<KN%
zEeo|?-d!vDl-b?l<oy+b3_L^DRM#||kSs7c1X)<fPEyfSw~773+qdG1KJJD}a;5dA
zIAq|Fjy_T}*x;<-uaUuN!STrgsj!yQ4M;F~Niek$A`qekkzklW-wE;wejw~ehl&X3
zp0BTS{=#Z!1wm^7Vd+nW0%oBPHfg1~u!#GW^c(@GjKRDf(On*(W*0Fm2ngLj{QYWx
zYFWkxPA31kCy!QLRK{1uc_D<EC#Qo{@_?;q63a*VRH9b!VF8Zxy%bE6HcEM+v;z$M
z0K>73pU0hqSBdRMd#_Kd*0_gJ_d8L(iJPu2oN<EX$HQ5UZ4XyoyH($OpAg$+A4zfo
z4McZctjwmy??N<d5m~={Hb`nPLf(P5P^B&7(A!aKwU9n#zO*iBwkR(>NSd3x$6}mE
z*sX0$)8^M2Hp60(rp1LyHr$iMX)-Bml6`Z~l2Gn1lqHR&6mDF@lpr?(OF(9hoH9sY
zG*BSOP@hW2u<ZzTOg`Yn(Wsp%%SeIs0SUQrQit}~11Wi64^Q%Ygz;3R)|Od?#%6MX
zn%g8BBC8m|uBIZw`lTe(yT$2Csmu;vi7EC61`#K=CtLTllEsX!#6-e~_`W_kgq$s(
z@RK<_QgUsBuzGAAl`{O0cbnT{WAPyvfs6);?l2$SlzS;!dd9imsKF>rRu1e*Xk@M=
z+Y|ZNdr0*9c{VX@0$vE_5PMj~+(*W26B+#vIkT5*#!0hZ<?37FIEJOHPSmK?I4qcv
z39%21SgwYe6E|xWOPhzWwNiI^Te`fZdmnE7)@!w5xuXv?(!<!a7?Y^nLM~+Iv)Q9)
z)UVuNlyBd5T8BKdisDXvy6^wNuy>i1P*4xTPx<XD)j_`6aWCKS+uI<zx^S^xIy3}u
zOdC%e%WHeN3gc-!R|}s)ieAm!VTGj0bd$d3`0gUK9Z7Ybrl>K&+4iFO7IAYz*^jE|
z*jWtyZ;j%Q;kntW(vm;UO_xrWgXdX8CZ9G2K~Jv~nX@Fv7aYdnfqKlNYK}sXldgVP
zO|-dy;}q#P5W8H#?p)<?r-F%L$JN^)Ezr8C{GuG70;0$IcI66g4Yez&cR6#jSu=b$
z%DR$sfzi)7#I3VfeJH|aZZM=UC297Q_KT(>n~r(ik7yLA8Z;2xlZ)=+&r8&pg2C&i
zp38kQW*AVPm}Q=dFjgBNzl>@HE!SbonJUJ$mve^Q@3**Fpj~BkHsYvvj<|sE7;3*M
zQ6LxrO*PbLN=<D0v9X7Rgb}l>;(#}T)l;mD<sxamvQe1(ZqVa9m9?YcYSF9hE9>RC
zyl}E2r;i!or55ip3ujyr)b%)di+7?u*6?JBn1chuKEeA0kTW-+l5ovIgu)!#1egSP
zrms0d+;DVwUrtp!j<OwOdbcl{4^JG2#%f-&bfBKW#ch#PPKqc|_=435L=bI6zu$$Y
zGQ>q2vP*1j@4t17VwiL=3QoS!-RL4d+X}LM<+Tgr$}{dB)QI%x@0m6ru<jeNm>}_W
zjOi%ymcWf|g9nVyeo7~v0or~a)1fTBQUs&$X(H@}LTzA8^tMdRy6=2b_}M4nQ9pl3
zbuadoP&BSCu6c~Iv*$C>RZHiZg$AGK{>^}0<4434BN4m0REM(+q_%lO^p)^###iyV
zr~~1~RCwMoq^t6AUh?bc^Bzz))T_doYJ<GrBZ>4Dn!{A@ddO@y4e-wu0=2EBiEQF5
z`@fLJ61W*ZrDmS?D+}L^A*Jb3-(0xw8r)Y+5f}KfSP=w$<A%|KUcVP|tI9cLt{`3L
zJEd<6eMJ5>pSSBC3d<fa(F=hAs^I;3vXfV4{?B3@)^XB+`ga(?WAzo`%&KJ-ClcB)
z=G0LeO7=NnaBYI9-QVYArrz_wj_6;F-Qqh<1q2*FDQ<L!!5`7>j1IdZ?XKM2dbxvF
zN0@+vLrB2&<cd>?eVkR9Ggaifwwd1_m|v*b%Y>Q~OlDfuOQL}Z%<xB;#>&|s3bD?1
zp0ON;*RpD$))X#{?!x!!dzT=c{jtP_<SF_bvSXpO3UKT&Ckhb(RpTX&Y^6N(DETx-
zl)zE%u?c4W<2X7NOSSb@-0Q?8A4M#2MJ6V3oCj&^C?jFyag0fIMB!d~;#8`AUv68N
z*Kqj>#*W)gZijaJL0P-`n(&lX0sHXvPoG4~o9&0x7qMVIbL=q5R#&;xUHddv6g+J3
zBT`~4pTC%*KYT!hh7Wp-<rCAGp$arMiTl2ZWC#+{W^&aGE1j*zCW*nCWP#lEok84T
zg6zDCiLoz|Po_=4cM(=Ob;i?>dQYlphel_Z_i4?Y?y@72x)=M`o90pHcu57gVGDo?
zD*s@i0XGd$KILcKHSYu+TQoo!zSS<_l-L3=>yr9h!+HjIm!A7*bD1(pNrjB*L>$Ip
zs1W2}9Wbr!LE4wF6*ueLX^TnXHQ&=JjWG}!b9GzOox_%0Z`0AVr{{|wpnkMe#iyu~
zU+hNYx@yEmO25j@9!`6FPuZE-JbF}{Vpw382+oeX549pE4O$q(&;4e8g%>2cAAB{)
zqLr+}*|2OgRf!Fw?3&>+r9%dBY1T80)bVXyMGOb-6`sm_2(hul;#5lV*utul8H-$e
zaST-MZgz5}u4J_$vO^jJMMl#YW(mn)rX8lLSCU~bsu<Sl(_-pfl5{AqDnC=-=h1a$
zro0n!z^1riBP}9ceL)t8V8t8VARyg)^Nsp*6ErzQr#m93%z%-bpz*vhE-bvq!2Zn0
zY#HX~gSwFiIg<u@s}u?$Z9~<*{p~KRlnFb~-qYc%`&?`>${jZCUN}-sYzEgmA?de#
z23g4b`)n&zqPJo?s`0yJ?*44$8+ZmylbFf0Sz&DtVT<w_*X7&!fz!1Qh)YWL2~3-y
zvv&BdUt{xbswdumDHYk3Ea@f$*f-&H#<Ejnq0@oE3#s+`2$ERR7%74W_cpUb(nrLJ
zB2TU}g?A5r1y&XmSe~&8a=0XFqxLv`>luuxglj5y6~ZNl9nD?D;x>NMX88hOA`uY<
zHI5&``Lntv=lh>0ZW~Ro`_d64loD8K{kzXWnwSMSEWLz1hzpS)z8;IXCx+<#`mlWp
z8Ep6lm>JLkv&27CsxWYH1TI|U9Qk+QqBjinq(p*-LbSM^hGgY*<lR1dD$=Y|(-2jE
z*E*E!4*2}9+Fwuht)P23QU<7X`Qvo3Nf@AdmPxhba}PWmoBO&^@|N*?ZzUsmg)We}
z@AM(ANj}6Ap?y8tPbTJyY+R~tlp|~0_oawrQk7_n5c~F-ygxRPaj-vU>k~-Er?akO
zI@ZpCFqU+Zo&G_V411ZPoze`pp^_iYj8s{AFz(d0pG+Z!WEQU&id$aXz<wPD1FDx*
zAw&?6P=bGq()?AxRmjfn=S!EQ0q><{<}C2qXK$fR@@Q<dOHz3nI{b)t>BD$(AqIw4
zjF`zlz42=s>VtYGYufnAAg841>W;Z4W_>HbWn#t40h5Q1uC*EGQf+0`(#vt}Q*$%-
z@Z>Z3H0D~hMJsJidgsmmX4Tzi*K5~n)m7jn$&6o8)b%_V<w(D2q-J^G++(0dy`o&J
zR3=%ytPwupf(4yA#c0%mT6CFnD{^}2s!?eai@#8(M~0iEzm7+@v|LvAP5j5<q=<xx
z0G&F*8x{Dxx2*P2l8}@~7T+~Lm&tUUUCfAC*6!@UCwx|O_8z72Jm-Ee<hLx6#<nV=
z3HdVjDk-8KbxgfyeAKXa&{UeePgX;0PLW8j!(oO}*@ohz+}|80<YILC4doH!Lw&th
z&uB+MXuWiOsZLt0*MZlH!NJ5~);D)EhLf$xdc!4`nI-2!QW>?wNR6F$i%lRtTn%PE
z9BE<VJG-oo1N-kOlVZpV$>66>ZA!OPbcXCx%7sUcg*9>TG#ht~U`a_-U9C`aOH{UG
z*wEj}jESS~&#90Tj%4b}6eYkGij4JPNmH^+O^DLL{Xl2zPSwmz2Qx8cW*~B6UY?|6
z#*~y1+ibI5?^NTS8^x3_%mpnZDm1c|v9sh3>^H{By%-2~GBqWw<sw8mFllQ1JdPzF
zw*MYKw&*=gT534`usf|ZIcw48Knb*1ul}3o@BNw41!fKT_o=-$B-?kyA8l$TSE*MP
zZ?)(VoCa?Z4UJqPJYJ>6jNCS26n>P+vzCb-p+aa@*g0yvFeG_kVnvVaW#5(kcrE<O
z<4cldoOyoq(CV1TN43|J@ou~c5yPbQHLNvGQf{h6!|=A3OI}u_rPhe7M<@MLm!|p3
z<}iI$bV+gybY_LvyPHjkL7tpb{xM5u?>A&T)HJT0;F_w3dz9u_mD9~nq8~NG3bB)e
zjaH){rNoFe6D^{;!E10@6_=DEi<BpvD7h0RjMtX|c}pezO4S(1Ojj$hSUdcF{Onkk
zwy~SiGRw;EC!eOp;3+AndZyVq+NLFBA}OyFsvh51DuqR%(C7KrJ0JSIk$~^KvPifu
z77(oxnmQV<e%M!x9b+-~lL@Sik^;BMs7r7esA5mB$rZXw;xzAnaPA-%Yet~SHP22A
z{~*~#^k6BAmm?H79xTgUHlA|vZm7pF)q+wdpZxx7($Gi)5ib-ULp@0X>-|@FEv?SG
z59p)wax0^RoO{kPu8b)b>&`!N2`gu6-%)8)V8Y=G!SY~Ns-h0t36dFqL#pYU_)rfI
z)e5>hsFI@+yl>lX&tc6ozP8l~@6xDZ-^Geqmdv_`9}iE8dkHZmIad+%xxjGVfdfgs
ztE>~fa_&2e9461<f*P|IwH{TF`eC)Q!$nzE-)g6mr1U+sQG!{4!l15S+4CL6bL9+;
zM)&o1^?I|^yM<_9+9_F9{xUil`L?9}>lsPwPwUwy*f`%1-&rB{H?S^GA^7%;F5E@F
zBJ|0cR<-L~RK-46>0t9icVpM14p9__^2S!CGSEAZJ26d<dBdRgjdY?jv%#v20O>ft
zT5HmPYVNjzTkEJ}v^iCdj?>AQ9{S8LY*W+ywbv^I<j8^uH@z?Pgjd==^e1Yhx85?2
zvK`K4cwdMahqkxe+}iZDU_MtoeeR6ey;NTxYF2FVa6d8daB5cWPcp8LC{x0jLFu$J
z|E^44<E(9ExfJT~O4<5NybhzmYG<Ujk29d!lI&jfRiI3024zHjDTjV=<Vv)pO7@cG
zkB4g5$GIO|&}f?jSoECDNWI8R!A5dlRQ#p03PQ+iAlW~M6bJkWP1|53xF|h@4C<q~
zjnSXiFq5kV$;w=A|8yqu-j#FmJ-b=}R<%<7vgzDqFvsC^1Z_V$TcyT4e7(aEn~E=v
z$;VD4jy*CN*Me^|gjl)6)=oOhjYe~rmM#U^S-G)NUC;K##F5dAlK9W5k^({k;j#*q
zjWRbeka#{0+q|zlO1({6yy0H+By+F&SRNC3YRE+yC}1zzj5d#(7d0Fo?Kv8KL?YmZ
z%3|JscTar_8*lA}SY;<bJoxG&$#1Z<|G7?bc02K4LM1hrHGYlu)9l5vqhs3<QkAjG
z1BK6S`q7|P&js2KVtm`1<xgW$?=ND6vdvhwY_dPoXtamD^)!?A$XimW#W&y2-%i<5
zfwS_TVxOfK+Q-f*VZWQYCt=xBPrI&HQX1*%|D-3eIed^%n6uA0@lflq!ba(X4`)|u
zEt;7*Yv>$mt>BwdqF0RgD7`jAzsjg=&8+x_zGC5%Kzl(^v<JsY<-?^wCkvZ*$H|TC
zfPi@cgz+=Nd}STa^{z&mYnxjc#~!17w=rLH|B}oK0|~Eh^meYKjqD@+6v;UTHHOk0
z+Emjm;=Lyw`e((e5xmRTw}y?>7h`iw?WXq1)T$hXmfHbxF+wkc)6fA8z6kfOI8%&W
zrN{4}o{EZ0JH$g-_P+74mzbWIYrN=<6(!n`4ybyE;9g?hs)#wBszt#iEaFw38`0bT
z*jM^eNIbhK4RwMd_8cw#CY-ky`fG-#NL116+t=I)B2g*hqgIfiaYx^#(|UO@-}gzh
zcDQXgVPA>G&$I3C?oWZYL_&*1&34*Bqb7vnsCz1xP6Zz%rAIFCE_E0dQ5rBYT$-NJ
z`e`g0o$K~Sd$iM}Of(kFTtKR<=FDhNtZjW!-J=e)HzI;57G+(}kmc`h_*AOcVGa4C
zAr~bS_3TJas@s<J&ZP~UzCY4(!DmT!51A-bm#MnbQ;L_%_}qX<#IEdacK-gDkkw6?
zLy@dUt94{8uQ=gL6)qHU-|{U(;0eUnskIb0e3wG<dh=6BA$YF-?!pdNBj!Z`PaLnR
z1|BVsf{vS<g)iQxOt;VN&z4?;9qV1lsgH0z6cM0HNzsWAPQ?@ASJEKLMNqeF@}X{U
z88yNB4vA(Y8GT88!k~km6jb;ZyE*#FdYF@Xi3=r^0{!;glO0kGoM)yS==5Xgy!yvs
z5nWJYn*kb^*)T02><sC5AY=9mTVfN7kviv}TK)4<#?rmyCQY}VPI#2CkuxsgFCpXI
z>IY&Yf<R$qu^Lz@1$wcf)@oD6iC!&o?Yj6&Mtpsj;@S5`ofHgirdOTYRu8v@=BaNC
zI)ZYC>#a>ksoIf6*af|Ruc5u&!S-Z@8~FhK8PidmS(aDu2Z^i@w_fuwv-A+REc39w
zv=9+~mFLH5WQog1s-qAhV}-FJ$Tmj5*o~KG>r3#(Jx=J;z;;{MHAXNZq_qaHZ}fhv
zNRKff&xUKEV7CTqMxb5<x1t~dV2|%X1fU+>K(Zlx%s{@u-%5ks!mhmrzm@i1C2T(d
z^#S<!aZew>ZmHL9pifi4eM$Vjf!)%AyFuLUgYZLoz44RqAA>k$Z8rmVL%1yiyA5pL
z1oc9CXST$eaLXg#y<2TrZOg@PpG1_tMw^(m*CZ^BJ~r97U3Phj=>Z`?+%q<e>0u>Y
zp`DY-R6dyP9G#u55KOxz<D{2!-VGYhM<cUbS}S=h8rwwvN!=O-reqeLX?hkO=TOyl
znkj!JKPRV6vWx#}1n;_x(~|4cN^VZcO5wWPm5aapl+xIPzWXWV6`_ZZf_G7f$iYWE
znkzm$q_UImcA|VG>o!+Uc*lwYpVoD+bP;b#ZY;S<ecpCG9R%VLDWrfhPPKQhF<g<g
z?Z?JFE;14aI2*UFdNL}{_OS(TM+Re?9G)^9B%f%GO)3vTS5C%Kd|Hn;lHe@y`O@*k
zrgPSaSr^`>3%hF(*fyWmw(?1@Aok&skH3{zoQS7ZayFfVUx+%}3_{_NBgia)e}3&Y
ztuUFMRw8Z;>dA~}YK(I)`#{DO?=t&GON2vUOh%Zzz_F*>qFVLDyDz!)-)>6AroZnV
zq|dxwUPyWR!1&Pfl(mNK#U1a?*Ne}z5_AU9o58#iapn@`s^5aXse>bL*aE%TibLFf
zOVS(4oYi?t72@{D)~gz2#>DS$Pq?X!lihopdEe7?zuk17)O26pbRXSxU(s~`vFX0G
z>HewdzN_hev*~`S>Av>1>N&Uaxs<{3E~Dwbx#>Q%>AtAxKBeitq3J%h>AtGzKD+7u
zTa#wVgQ7>wfYyEt>LIPu9bs>Gyups;Qhi{4NOs{R(~Ydvc{}^cyx1p1%Y{sZ7~Rcf
zo;|Bs@RWTBs=Rauy_@$psPhQWoOkWcJ`?P1&d}~r5)#d=#PUvOLalnYJtw}$pHT>B
zbHj~ZrNX}rOEMbCRw~fr&*h)0V;z1~eNTRccu_Mn%`=>^Ae*zqKK$BCG<DQ=YQYY&
zSMOl|2ksGS@0FT$g)pCNjwf%<%7iYe!xz?T4qUw*<`8j_P7NRaqnyHVYTs}n`GQH#
zyX{%7PP=Os`fyIO)XIw`@76d;4n)KYkqr>tuG#$(S>1asM$dQ{!uUH0QOeYmiQ^D+
z#XG!0SAiSSs+cDC;Lkqv2zT}4WOCoV9V*|M2J++PG&~*kSWfbS?7Dp%ySaW6_;ni=
zvH5N!6yWyw1_c5__Gf?9f4V(_m9-ofRZyN|==&VX3u~6@Qq$u?bP4Lkf*q`-+vgbA
zWeH~Om(Uo93_g;FXt303uN7U=+q$p&57z-|Qayn_QibS9a+sIl66Jq>@b+}MIov++
z&H4sn2foaP24>4W$r<WdN#<Ifb>gvOXJ-6j#ql7wJa0dx0Fk^YJ80x<yIfDP2%8V3
zvv>rXspHtHb1|F2H{}9t`u!*xdh*N`-WY1xU{6JVog#0cEy_yCKiZFfFGgarOhe9O
z%)!MZL8ykF2_L6!>+L;QqiO4e&T8>YQ^t`)o~DiJKrw?|>BbwfRforzdVyp~k8+gp
z!d`MFaoaKZ8nuen?-nw}Tau*!+dG|J;gL6jkz}+Zx4QpO1~xD$B_UX%fM^=u?T)y6
zDh{Qhj7U9PefcGXO(mJ(eSgp-51whf$^Hi@#CHxINRX9D8<y&N4+9=nX%8x}j#D@H
zqsK={F%g*lPAU_0l^Y&-vk;@*?&GHnGNsaE3CWCk4)EoPh6H^s;ys=QOveoo8DKQn
zb6<FQB9YJR@rV@%3~elKA+nXuO7u*!Up;bN7qlm(wx8MNr=@xyUVA#cjjP&VO(&DT
zHyX={R{-Ro_}6X_4C1wkiji0%hECSddOmq;t(^~1SS#FD@iP0VO!qUpH~sJckKFJQ
zW6VTIhf6QnI&sL~XcO$TS1q49MI}TslYVA7_MB9!A!T|wSaPr=djH-)S)aj5Q0sZe
zagL<*Wglcw33bP%U@SW8`dFK~O?ldcrQoab5bwTL6+QY0Lxr*rMjv&7HPIn~PUfLo
zDt<I}us6LCroi|Cl(iDWxW+}6aoif=8s8=&%&3gh<mCnB+2Pc?cIx4YiYZV|d5`0u
z%7iR|oNQ9>^&p?*7TOlqAPg907<4BFJl}O$5nhpa-^fQTmJegq!`~t$1mikPv|&$R
zqiYMTAfw8>`rIONb>D=<gDf-9K=-586|au33iLut5@1e2_e+ddfV>G(%)CQxLHCF6
znFie<vttJlIVp?3q1f5edee&y%WEuIrHhRCu1)$SQvTDy4O0B%HzXLOd;-WzO$bPS
zeE%^mIO-w!0F{XQRwFi8X+o%X81ua2@KU7gh>aQw!tP3G9A9!HcJ{U+3g-^T!j8Kq
zrAg^eQDP1Ewgq0@<6BA8$sI|Ja~owAt;huUMxMNSc5>n?@g=_R{r2m7{7Krl2@>E@
ziUNH8p>C&@fw_%}iJQ|e&gW<$`A$KU;8npKB_W8bot{8RQcBAW)Xg3gM*X*JE3+<|
z>Wey)HbL11*s{F0;E#&E^rDO`q3)~~Z37SY&$keE5q!k#oi(PkJIH_pb}~yiX8FNe
z$zhg~OM1p5c1BaFhf|o)j0tw3_gS<RhmZz1ax(D|J@3d36C&+<xh;9pc?Zp?SxS`c
zjo=HWCe~t5qEb-DDp;B>Ctih(kSeE96!vpxIlLQ8d})JODG28lBs}84+e1O>98s)D
zJo2D83=Moy01>W==5GobZKb<AxB-<IEzK*%<HeqGI%pnoyrGA%IcSy^V+(zKGUuaH
z6GZ5wQ}vjo?682-W^iL-vI$fLRoQKF{WZWLj0y-_{zJ&}@6r6lE9|UnX*;Qa<Aaof
zDaD!O|8>7bHoi>kj6(=J&_|;d_e0uUM=>`wbaC>OX5_K0yT~rIub;r+Em1o}z4c^P
z*3|C#%KgRc4KWDb+zg5ll@w~~%6L-lSVjAlY}Lz`n}x$SOUd%x2IKYHF^A1~XbAYI
zbGSjIoAb4sFbvJS`WlPgJ*)PP1amR_k^Wq4`&=k(R?OrQjIcv-9}Nf?pm%)M799kM
zm92+r3J90X!cqpI5yE2@(W&WJ>G(V+if#F3?GawH5tvbly5aO2CJB9BiZ|m4$kDxD
zEhWG;z(a5cm!yj~^CXhtm)Q`MAh3jz6INIJ$YBSCZ_K;l&yK+_;u!xO*TGk>1sC2t
z9Oa=Ew<M{P8*1;XpDZG_NNpxKqIRbV)G~Hf7yVhgeR0l2I0I1$LKV(<T<(1-M2SIx
z&Ma~2Nk;O#qr{HLEM9C70#zSIDT4XQn9N>x1wPd}jR<`}9l9=UNQl4X*U@TT6pOD!
z+`{YBeM)zX1$UupP@HzsU9utCsqy}cU%RRe?*gEO#conVC`u6`;ozhXTqkA(l^gI3
zZPtj2&v1|3g|FX;EbhxDVdo4U6L0UMvd8YEJlEmOd?%4zEnceY-A@al5f5>3*ZiI|
zinm&Q4%>)4MV}W>GfbKxs;Cq^sGfNrrtKVX)hb2r=@M|Er;v$?HXV1KsZgjBH4`nx
zo>n2FkhfT_#-HaFWQrg$7qPw{6|(y4>-)-tnQ#MOewhKUFZCbIu#$<BvxCjAPn#^C
ze3u}Cx7=ht?0Vi?1O$Yz0{XY1)2Q8G(gjE`3OC9Qu+SBZaO!KeHGbXg$ZHa$+IuiW
zk5=E1eg9P`TAWcxkV}74)$zxiO4Dhjs_d1*N*V1YHocxEk>fU+Xi)37U|LvG{(7q?
zT+&12!l1pSBubGmHVNn&f@C&>1_68PiY)P9nq_UBuZGN=hw@NU3^TCitW(Lh!=J|l
z=Z51ABJD0?&3PNAVl_wDW)Bt`k}U^1+PFmMXyYWaq~(o&z<$s-yA3%WiY58*SdZCC
zrbPm%dk6@3VB&v6^8ymkK=9&#ItL7rB4Ew(=lGiPTcKa$Yf6hYQ-Uab36#zUZzyE7
zDj~HQI_$x0dW=wu#W2O{V5l+CHbAX6qKyv9^V~?+&D_@D1q0OlAWpn63^Vh+KP6L~
z#Ehk-v6?;Zp2X^b%+%PBNK_|H>wd$hokz7ML~ikUeTLk+b3D`Q$nAwn1Mc2w!C~1+
zGJL&4{%SI4a7F7(*DYSbe|9=h0Wu?sA4av97){%ZkqBbt)MxQxGphl8AWOyL!b<Ll
zqGJiS-b637MhamVy~PUl;nhKRVAkc0$%in(EK}6;SR=jk)Q$j1@Ld>MIkhrw6fAlS
zCQCzDTBu~$?H6~f(M_;eG)c@o27}%bKKc!`2iNf=7XcNQQsMWWRA^dMJlEcyo$LmN
zIbo{8%=;11ln-pNmeq*bujx!~4Ga)DVbn;jl6Q70Ts6^3-z|*!&}?AYT9#9z<xD!{
zA33ob>Cl@J)go24JP8d2(K}dFHOO+b*C>c2HGdI(m7Td!5~jnQj`5m~2bX^8vKi|*
zM~+H%N*+xrGh2=~+?~lK#+P51;VQ${-3I}KI}2Z;#Z|-0v$rMjuHTv<Z)=h>5nrMh
z<DOXY9`-_YdxM$b#pOp5?W#RHbjWfQ6)V|`xzyJ*v^J1Umj=acS53Eg`HjzOMC+rw
z)Q7oQpqz60jNm&q=r}JxM^N<gctuSC^SKUSKL2xo@2{uk*Ox0{Sq@zYqwi%(XHF>u
zEI1&nn1p!IdMJV_R}7^TRu+a?h_n~J_RAEqH6Y-oP}y=WcG+u*PMr&jyhe7*w2}5j
zoIiQlcq}vRC3AI{+syar&K_ZnV-gAsVY4#MrGBsR)roO|`scDckK>9~Ky8GZ@-5S)
z7BfLJoQsrt3Iv^`<=i<v*8{PT{$Bjuk47nk4f?hNngjItIB#g1or~zqt5qDN9nuWu
zypkG=qpVr?%o$$`kGFFN>=}#?&wcUN4avE<uW$9zofd`(ERzp10ttk$FI8RN!4V&k
zIRwkEr^f6=sl>rC-FvC(|Eh!`8f^rjj@wkwz;LbAjFaorp%mdMYu|^1RyY>Tup4S0
zxJlWI8!-7Gfy?GiqND${XTo2OJ$-{|e1K^)u$jDoW*>oUCq$ig?qv6~%V^o0e9NJ(
z*w+u_LK^v{*dH5FK+y<T-*TL6mfg^2F1&X<DCZ8z3W%E~kRKA>SFJHJdsUCEw4B<<
z2kyGR;6oAvxnu@oX4x6P(KwfqF^z{X)#lDmC}d8351x;}Ym9U1??|_f`u*#7+I_>4
zOiOWodeyIv@fpfO<q8ujO<#)3FwK&T5T_7Y7`96D$y!$uz%~=nqkS4cT2)$h`rm6t
zs|6^0M~J@(ctonj{eiM9fa>EO)+TE$^b%0wrjmX1;~}ate@5^{PU-H6>+Y0r0!rMK
z|A4NvFIM2=<ChPJ+5+uCNnGt)>ctYIg^OW|!ex1vG(ngGw9_RkrdnU$>iSuAM!1R^
zB6e3mnQqQ-$`Gu}fk<c|=u3=<C7U~(!^E=J<*osV436~Ic6R_Q02W}9`?GR@vWbzi
zgSnGC(3vsoe@6)aC2gXULv936d`Supnv2ClV40f!%9pH)4v)N+)2)JDv-d7@$hYm}
z%7+)!Nzq;(m5qFsZH{JOc6gR1zvKSv!W8a}e9m~o#P?l)EU7pBXkYhFogTYj4%^~{
zkzrbPjQd8Th*Fov(~yFfE}uW#aj0N_;XT#06pAA(#bkUHD2&TJ2XTebTpt$hAcL_U
zkV?idWYx>O%&b0=Z-4A|Bp3Af6d70b0YsHd!*oHHN0|C<6KJw0!rf;)1WfdPF#ohU
zRkn8g86FH)`AZ88;~8m|6hZQhxn@mtVND?u#iYhbiE2=HE~&oYqz8Tx6R2jYK}Yvq
zf-i+_+pYerMG7rHU}5|E8AMO#m=7Clpqv8P@%s7tDAV?2MDOMK?6n_H^#%-Vd1}Z<
zVi)=;u4%0=?1RY2eMd!i_xjo#$O9Cws<950xN4g*%dD%j1)V<CS0uM5=~zw=5U*Nq
zFV2wY)oMzBchxmOpn+Q-QetXk*)JU9v+`%E2qr=TmS<Pua?b{17z!@gdjflRZ8k3F
z&Ysh(JQyiXQ9Lv6KP}27`!f^$ARK%(OY2;rL~m{RU0jw#wQjhkBEv=bgc#RgLkNaW
z?%{p?Ink!*2-s%9dD{$Eu?2LnL{OaKV#%>O9Abr9h3)98D`-gJ<RWhu_<Xi6#2j2E
z8YC`NX4i)gU>1ei40>LJV&sb$VHn}@+(Bm%Q7LDof?NsKlq7Z{;uy@yx(TSE-IG69
z&{B=|lcVx!O-%aV);MYPwnSR@YY0l|+gQyxXJ5W89ERL|ql|-@r$(;LS%e)vnns7N
z%d@F_JY38?D^+eBkd5^NkPN~)|7rC6h{lKYP7|G?QwA=dwF5lGTI%*K$?=Fb8YIT%
zZ4ew};}DfWMsFTFi__vM)CV{CCg-(7soO+1^BZyTq2qUj5V>?V#9H`$_wtfnfUtfu
zm^5e(%e8{DJKdbh##y{<RWqgncbE{Y9ttM7MPksKtHIh(w6^>Oa;tH<w_GHN5R_~2
zQB|k)?JW<(A!m85yLE0)zN-UmT90wICSK6dYI4L#h@W*1ukWp2chqs3@ujr;lkas;
z8mm%_6N?+akLIMXljzg=n2*$ad6hN5PI0-%oZy^Q1iR)U_r{4GeF@oLdh6gttWo}h
zpd(hHe>-Bj?@B+0aEoBeaSQ*b<j`iO<Vk*y{iwUVp4}xImShnPQej*hTY(;>_g$vX
zcIL}>$Lo~BOEy*Xx`Ww0&yR6523|wC_dIGUXJBQI@07b3?Ggljl$&ZOy&Ei<owNIh
zNE=l^W+f*vaEb7U?gsA8*eE<8;?$c-wdw<%k@bZ3F<`X#o`BQ$YS<PkwCZ8q6})Tq
z>9irBOI6_UsNL>6vM=<BF3dMs`OB`=t_RTdv{l{<=#F)Cn=fEpjy7%(H>Wvf&!L53
zyL+}sda48Fs*S!8u_9~7<DPl1HS!&0=M{-EH$F3^cJ;$16I2%-@~ko5rrA62U!R7Y
zw3M=a^hzS2eGF6PMOepJ4YF$=Z456~TItC=Z#|!r9=uV^BbvKzH-R#G{g&CyO|6he
zixOLVCrzRQoflF6{fJqy0I6LEYiN?cWw-CIOK5SJQI%Q1#7PF2IRCr@R(3M5F*a~8
z{?*RM@JV+m01omb<jY1WQh#;YTO+Ac{Th(BVVEKqDopx7!5Ln2y@XbE->i*6@CXVx
zdlf#SF=n@Nah4f-GzJhLrOgaFh1u2Ss&}u}PJH9~MKR-izI=MpoTG_3GF_R$I?Ru0
zA=U*Z$5+eo=oseN?E`9nr)2~VKN8yIc#7~MB|;y-rFL-iM!mQ4`|u9qkAUS7@<<^r
zDU{7ryF28hQR1sIHTiT}_u7)i4?>v(`LQ#+;almq3bp=J;n#)PVJk0wg4e_@N6G`d
z6Yo7x$DuzE`s@8VJ`TPltbZ96Ou+d3c~7fiZf#=g?DWreg(H{Ze-EDIKPcw)niQ7U
zyVKK#2ScAK7?y@>a7F%0aa8XH+K+(-i7udUD_z`@;w}PGvxiNSFj?yjwr6FGhZC$@
ze((pRT8QYEL#M}{zwOG5ahF`waVo;TOrLN_YqoJ)%=a{UmzLdoi1{4N^H(fXiSdE5
z3NJ>@KEjFUxnWRY+#hO(O$nw59ly(@Z^g_WFU5WHK{;1c`egCf*%QlE1*sP|AiKhg
zT=XsiFbqL}CE=fid{rGy9F*N{jNSsC7%LM8a*_82HfAQqKW$C4;*cD^5K4JR_t-jN
ze})7Y1YJ(BQDT^gS2#taXw8R*+QksaDI?PvP<~qIpl*NUwLBEQ&&j8xq1vSuMGa+T
z-*1o`TtQqW%Jqc}VyR=H`a(*uUpLlFeA=Cy+Djo@Y~9$>8aB^9^!UNGLngJj#EL0H
zGo01!yHU&-J8{#6F69t>py0v9PZoSPs@#~d7!}J;J5Bcyd0_iUC1=>_jLax_d-U5b
zaZr=f2qFtZ$V=k&@CPTxsCi%ZLiw7P&#2l+A!eb*CU`nK-3+WO`SGcwyVs>AO2ngz
zhFs3eQRp<~CfUqGF|h7KdMu;o-ocYI*S5iut2z>}k$8@&RYL2*y{w6?9tDcj)A-Re
z7P_rd#d+)BBSIKTE%B6t?>{l?6eC9C4%6&$u+FOqxWs5fYAM}SE%y5u&32?~ByY8=
z8c4pDy0h}9c&9&rsS&$UB+kocIDoEkCku(a^#h$!6qIKKpVzk3lFr?2f4x4mfhd`;
z+{5j};E53>iUaaT$0^wtMNf!dpL8x$E29&@lWq>U#S(yj|I&*7?*sS$aC?<4&F$>|
zOHMC3c1WsQ5Jk*(tjx^NYf}mvR{=*Sb)Gf=q6ZXPc-lKbh0<QQVBf~eE19+<n0QSh
zoR4NhxSNKmbj{9odA4B}8^owwstzJ1O}l(3q(mXjQl=a}V{C&~n$mmiP{v+2VO~zE
zM|tqIHrsyrWcqo+LsVTEUh*Ccf^SMA*HbTqM<}NH@!L;)3$0jt<g#+!2oPTwq$7N|
zL|q5Pucu4}1o7cXn_wV0#CJIl)OzYAHmB1fil7}!>^fyAOOoo1DUu;wo-w8MFJkp^
zI$t8(VOMo79}}N7C5CMMmb88dkh(nzV?818k5iQEpCbJ_rg~Q8*D!$b+y;F9Ji7vo
z>Hi4UBq?-Abt#}^%1-vynOm1}$_EJlpzt`$g+YUW4+zbLwjJB*DMWk_MiYH0Ny&mh
z_VFX8u!#uM?LJ;V8fIY~TD*y!<pc?xb1^`@ey1+P&t8s>sagngo*%W_AzKnTz$%dv
zu_=SiKp<>eNTeD^?E_PJV)mvKW@IXH>L5xVS)u{rHCv5MN62oTKV^;)S7wAzpOGBG
zx|`comA9vW_Uk+z;U62+lkQ1)3_4D*yOw=2JLXwGZh1o2V$+;aO-t$O^RHngEQ`<<
zzRisi<JZ7*V;t13O+%v{!~Kwcy&oNjZAGUJcE`N%>H?Cd^9`+mdYtOwQBR76@{0ek
zM*#GxsKi{r4eYN2idtt?ga8;!FTm%|>wGm^bAWcZgSm|pkilw|3;OH4Fdg7}&M9N=
z?UWKsV6M?N${V57!jYx=!VCc=Y7$bN$Db0Mu5k;(pLn)`M*DFitI@Ho@#cRd!a9?q
ziMrY_(q}oPB6ub1EdcSM&pbqBESS#9Qr?P#;loLY2?jT|Uqx`r6O@wg6FXo!Q#*K-
z)9eh|&&ET=kSj*231w83Pm4Aa%}O_RX}pVrrZ<_0^us|JaMXA|sD^a;&JA30xXavn
zzk>HEpnlJ6qmHzjE9*u5)?AMX-YB%t+6~7bp`)VmhhEA^wM3TxHI7qWl#2Di%v)-h
z`w4ugF#$hG_mGc#xs?(JqR?MXS`FR(neKO8!{h}cH6}*kXR!I(fD|J8w$H)Z0Pj31
zU|9cL{6Rxj=1&%`#6pL&8+<zALlj>Psv0@k<Xj9MMw+=rz-+CB;W{X9VyeX}EWUqP
zxYm`}*M3B$90&o0YY`!y)VIlZQsQh&S)3A0>9T#C*`YLXe~CyNJ6;SRlT}0c!%WAu
zTgxIJcJ76T6Y3OGp)^11)h<b#56-+^vGs)5d28ba%Z)+X-}UOf@tidyDGjV*0C;X}
zK0>RxgsYaG^GC|YBbO#-xEn^{HYvF2I{iKK#*aALm$85|=%8R2;BX)yfQ?cJK!+VL
z0RO&VK>$vVe_bdbM?!!7M^;Qlh+a}oobh?^FUirro5Fwu1DawI#@g!ue#r{(!T9U9
z|M$xG|Le8?cT-s*IZ1IbWfcZl@t*{MMFr~o@2){W{_4C5K=^Ai{-+iwe|Pw=7EAxz
z;y<VFe`<~OOKUj5L-6~_|0m;rbhoMb=O0G^ZAkzv{#p_IedYV}|B)eN<zQl9?EY_E
z+W#^bz@3x@9kH(h$bSg~{`GABedYV>0~R8`|Dt~h1j^bPoBUjL08@eG<bP6w0bA$a
zQ~ya^9+(d-&i<310=T<>;Qvml9T*I(b^a5a15h#jJs3#&92f~Kuly6~4@f@yJ@OyL
zmVr9}mMZ?)K{DX&`+W!hen5UFTnyX+u;%a24l3dQ+`*p|fPv}2`nf;p?FfIO{~v0)
zz+C_<(f;gW9&p<G_apS5(MVt(u#)Cao;m8Dcz@8<1V#gEM*c)Ep#2}{Ulb&PxxgBV
zKe?{}GwSb$;J1p3z+hmpz@Oj`nEwp^pOqLe54cj&Pu@1~KlA=GM-!L|obURR>MZ?d
zDv&(}h5{#%{s&a%&(Pnclme51Gq!$`4Hf@L2Fl+8W&$S^{bXV*{}c0<MIJB|IC11B
zG)VQ2(BGty0CRyeF@AC*)&9u+ue=OkD)7OgpHwvCKT`kmm=Q1#_=Lkx;DXs7fqzHn
z|7nH+4)*^9Q<?vt;D5Yhz){_w<TT4ak$)581s)0D80b%ICt%g~`}qYpA_~j|j*$Ii
z-rD>V^B@0y;8?~_XrBEap}&u80DoWL(7;c0mBSy={~0I%1_HYee*%|W{s{b?GZ7dJ
z?05SKesuj4`1f8oU^1{9>n9o7{ZC||9r}MewSYSTcBcI7WXI$GM<>5`tpIll>}~kj
z=^L;AkDdPB;sNive}W^u{{;TS9vt{P1MfV4qBng0g#Pb+sDd;k;3Vc>hd`)71_2AE
J9pArx`hWUlH%b5i

literal 0
HcmV?d00001

diff --git a/oxAuth/Server/integrations.deprecatred/phonefactor/repository/com/phonefactor/PhoneFactorSDK/2.13/PhoneFactorSDK-2.13.pom b/oxAuth/Server/integrations.deprecatred/phonefactor/repository/com/phonefactor/PhoneFactorSDK/2.13/PhoneFactorSDK-2.13.pom
new file mode 100644
index 00000000..b4d8c0c8
--- /dev/null
+++ b/oxAuth/Server/integrations.deprecatred/phonefactor/repository/com/phonefactor/PhoneFactorSDK/2.13/PhoneFactorSDK-2.13.pom
@@ -0,0 +1,9 @@
+<?xml version="1.0" encoding="UTF-8"?>
+<project xsi:schemaLocation="http://maven.apache.org/POM/4.0.0 http://maven.apache.org/xsd/maven-4.0.0.xsd" xmlns="http://maven.apache.org/POM/4.0.0"
+    xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance">
+  <modelVersion>4.0.0</modelVersion>
+  <groupId>com.phonefactor</groupId>
+  <artifactId>PhoneFactorSDK</artifactId>
+  <version>2.13</version>
+  <description>POM was created from install:install-file</description>
+</project>
diff --git a/oxAuth/Server/integrations.deprecatred/phonefactor/repository/com/phonefactor/PhoneFactorSDK/maven-metadata-local.xml b/oxAuth/Server/integrations.deprecatred/phonefactor/repository/com/phonefactor/PhoneFactorSDK/maven-metadata-local.xml
new file mode 100644
index 00000000..9bd546fb
--- /dev/null
+++ b/oxAuth/Server/integrations.deprecatred/phonefactor/repository/com/phonefactor/PhoneFactorSDK/maven-metadata-local.xml
@@ -0,0 +1,12 @@
+<?xml version="1.0" encoding="UTF-8"?>
+<metadata>
+  <groupId>com.phonefactor</groupId>
+  <artifactId>PhoneFactorSDK</artifactId>
+  <versioning>
+    <release>2.13</release>
+    <versions>
+      <version>2.13</version>
+    </versions>
+    <lastUpdated>20130401141314</lastUpdated>
+  </versioning>
+</metadata>
diff --git a/oxAuth/Server/integrations.deprecatred/toopher/ToopherExternalAuthenticator.py b/oxAuth/Server/integrations.deprecatred/toopher/ToopherExternalAuthenticator.py
new file mode 100644
index 00000000..5346f3cc
--- /dev/null
+++ b/oxAuth/Server/integrations.deprecatred/toopher/ToopherExternalAuthenticator.py
@@ -0,0 +1,276 @@
+# oxAuth is available under the MIT License (2008). See http://opensource.org/licenses/MIT for full text.
+# Copyright (c) 2016, Gluu
+#
+# Author: Yuriy Movchan
+#
+
+import java
+import json
+from com.toopher import RequestError
+from com.toopher import ToopherAPI
+from java.util import Arrays
+from org.gluu.model.custom.script.type.auth import PersonAuthenticationType
+from org.gluu.oxauth.security import Identity
+from org.gluu.oxauth.service import EncryptionService
+from org.gluu.oxauth.service import UserService, AuthenticationService
+from org.gluu.service.cdi.util import CdiUtil
+from org.gluu.util import StringHelper, ArrayHelper
+
+
+class PersonAuthentication(PersonAuthenticationType):
+
+    def __init__(self, currentTimeMillis):
+        self.currentTimeMillis = currentTimeMillis
+
+    def init(self, configurationAttributes):
+        print "Toopher. Initialization"
+        toopher_creds_file = configurationAttributes.get("toopher_creds_file").getValue2()
+
+        # Load credentials from file
+        f = open(toopher_creds_file, 'r')
+        try:
+            creds = json.loads(f.read())
+        except:
+            return False
+        finally:
+            f.close()
+
+        consumer_key = creds["CONSUMER_KEY"]
+        consumer_secret = creds["CONSUMER_SECRET"]
+        try:
+            encryptionService = CdiUtil.bean(EncryptionService)
+            consumer_secret = encryptionService.decrypt(consumer_secret)
+        except:
+            return False
+
+        self.tapi = ToopherAPI(consumer_key, consumer_secret)
+        print "Toopher. Initialized successfully"
+
+        return True
+
+    def destroy(self, configurationAttributes):
+        print "Toopher. Destroy"
+        print "Toopher. Destroyed successfully"
+        return True
+
+    def getApiVersion(self):
+        return 1
+
+    def isValidAuthenticationMethod(self, usageType, configurationAttributes):
+        return True
+
+    def getAlternativeAuthenticationMethod(self, usageType, configurationAttributes):
+        return None
+
+    def authenticate(self, configurationAttributes, requestParameters, step):
+        userService = CdiUtil.bean(UserService)
+        authenticationService = CdiUtil.bean(AuthenticationService)
+
+        identity = CdiUtil.bean(Identity)
+        credentials = identity.getCredentials()
+
+        toopher_user_timeout = int(configurationAttributes.get("toopher_user_timeout").getValue2())
+
+        user_name = credentials.getUsername()
+
+        if (step == 1):
+            print "Toopher. Authenticate for step 1"
+
+            user_password = credentials.getPassword()
+            logged_in = False
+            if (StringHelper.isNotEmptyString(user_name) and StringHelper.isNotEmptyString(user_password)):
+                userService = CdiUtil.bean(UserService)
+                logged_in = authenticationService.authenticate(user_name, user_password)
+
+            if (not logged_in):
+                return False
+
+            # Get user entry
+            userService = CdiUtil.bean(UserService)
+            find_user_by_uid = authenticationService.getAuthenticatedUser()
+            if (find_user_by_uid == None):
+                print "Toopher. Authenticate for step 1. Failed to find user"
+                return False
+
+            # Check if the user paired account to phone
+            user_external_uid_attr = userService.getCustomAttribute(find_user_by_uid, "oxExternalUid")
+            if ((user_external_uid_attr == None) or (user_external_uid_attr.getValues() == None)):
+                print "Toopher. Authenticate for step 1. There is no external UIDs for user: ", user_name
+            else:
+                topher_user_uid = None
+                for ext_uid in user_external_uid_attr.getValues():
+                    if (ext_uid.startswith('toopher:')):
+                        topher_user_uid = ext_uid[8:len(ext_uid)]
+                        break
+            
+                if (topher_user_uid == None):
+                    print "Toopher. Authenticate for step 1. There is no Topher UID for user: ", user_name
+                else:
+                    identity.setWorkingParameter("toopher_user_uid", topher_user_uid)
+
+            return True
+        elif (step == 2):
+            print "Toopher. Authenticate for step 2"
+
+            passed_step1 = self.isPassedDefaultAuthentication
+            if (not passed_step1):
+                return False
+
+            sessionAttributes = identity.getSessionId().getSessionAttributes()
+            if (sessionAttributes == None) or not sessionAttributes.containsKey("toopher_user_uid"):
+                print "Toopher. Authenticate for step 2. toopher_user_uid is empty"
+
+                # Pair with phone
+                pairing_phrase_array = requestParameters.get("pairing_phrase")
+                if ArrayHelper.isEmpty(pairing_phrase_array):
+                    print "Toopher. Authenticate for step 2. pairing_phrase is empty"
+                    return False
+                
+                pairing_phrase = pairing_phrase_array[0]
+                try:
+                    pairing_status = self.tapi.pair(pairing_phrase, user_name)
+                    toopher_user_uid = pairing_status.id
+                except RequestError, err:
+                    print "Toopher. Authenticate for step 2. Failed pair with phone: ", err
+                    return False
+                
+                pairing_result = self.checkPairingStatus(toopher_user_uid, toopher_user_timeout) 
+
+                if (not pairing_result):
+                    print "Toopher. Authenticate for step 2. The pairing has not been authorized by the phone yet"
+                    return False
+                    
+                print "Toopher. Authenticate for step 2. Storing toopher_user_uid in user entry", toopher_user_uid
+
+                # Store toopher_user_uid in user entry
+                find_user_by_uid = userService.addUserAttribute(user_name, "oxExternalUid", "toopher:" + toopher_user_uid)
+                if (find_user_by_uid == None):
+                    print "Toopher. Authenticate for step 2. Failed to update current user"
+                    return False
+
+                identity.setWorkingParameter("toopher_user_uid", toopher_user_uid)
+            else:
+                toopher_user_uid = sessionAttributes.get("toopher_user_uid")
+
+                # Check pairing stastus
+                print "Toopher. Authenticate for step 2. toopher_user_uid: ", toopher_user_uid
+                pairing_result = self.checkPairingStatus(toopher_user_uid, 0) 
+                if (not pairing_result):
+                    print "Toopher. Authenticate for step 2. The pairing has not been authorized by the phone yet"
+                    return False
+
+            return True
+        elif (step == 3):
+            print "Toopher. Authenticate for step 3"
+
+            passed_step1 = self.isPassedDefaultAuthentication
+            if (not passed_step1):
+                return False
+
+            sessionAttributes = identity.getSessionId().getSessionAttributes()
+            if (sessionAttributes == None) or not sessionAttributes.containsKey("toopher_user_uid"):
+                print "Toopher. Authenticate for step 3. toopher_user_uid is empty"
+                return False
+
+            toopher_user_uid = sessionAttributes.get("toopher_user_uid")
+            passed_step1 = StringHelper.isNotEmptyString(toopher_user_uid)
+            if (not passed_step1):
+                return False
+
+            toopher_terminal_name = configurationAttributes.get("toopher_terminal_name").getValue2()
+
+            try:
+                request_status = self.tapi.authenticate(toopher_user_uid, toopher_terminal_name)
+                request_id = request_status.id
+            except RequestError, err:
+                print "Toopher. Authenticate for step 3. Failed to send authentication request to phone: ", err
+                return False
+
+            print "Toopher. Authenticate for step 3. request_id: ", request_id
+            request_result = self.checkRequestStatus(request_id, toopher_user_timeout) 
+
+            if (not request_result):
+                print "Toopher. Authenticate for step 3. The authentication request has not received a response from the phone yet"
+                return False
+                
+            print "Toopher. Authenticate for step 3. The request was granted"
+
+            return True
+        else:
+            return False
+
+    def prepareForStep(self, configurationAttributes, requestParameters, step):
+        return True
+
+    def getExtraParametersForStep(self, configurationAttributes, step):
+        if (step in [2, 3]):
+            return Arrays.asList("toopher_user_uid")
+        
+        return None
+
+    def getCountAuthenticationSteps(self, configurationAttributes):
+        return 3
+
+    def getPageForStep(self, configurationAttributes, step):
+        if (step == 2):
+            return "/auth/toopher/tppair.xhtml"
+        elif (step == 3):
+            return "/auth/toopher/tpauthenticate.xhtml"
+        return ""
+
+    def isPassedDefaultAuthentication():
+        identity = CdiUtil.bean(Identity)
+        credentials = identity.getCredentials()
+
+        user_name = credentials.getUsername()
+        passed_step1 = StringHelper.isNotEmptyString(user_name)
+
+        return passed_step1
+
+    def checkPairingStatus(self, pairing_id, timeout):
+        try:
+            curTime = java.lang.System.currentTimeMillis()
+            endTime = curTime + timeout * 1000
+            while (endTime >= curTime):
+                pairing_status = self.tapi.getPairingStatus(pairing_id)
+                if (pairing_status.enabled):
+                    print "Toopher. Pairing complete"
+                    return True
+
+                java.lang.Thread.sleep(2000)
+                curTime = java.lang.System.currentTimeMillis()
+        except java.lang.Exception, err:
+            print "Toopher. Could not check pairing status: ", err
+            return False
+
+        print "Toopher. The pairing has not been authorized by the phone yet"
+
+        return False
+
+    def checkRequestStatus(self, request_id, timeout):
+        try:
+            curTime = java.lang.System.currentTimeMillis()
+            endTime = curTime + timeout * 1000
+            while (endTime >= curTime):
+                request_status = self.tapi.getAuthenticationStatus(request_id)
+                if (request_status.cancelled):
+                    print "Toopher. The authentication request has been cancelled"
+                    return False
+
+                if (not request_status.pending):
+                    if (request_status.granted):
+                        print "Toopher. The request was granted"
+                        return True
+
+                java.lang.Thread.sleep(2000)
+                curTime = java.lang.System.currentTimeMillis()
+        except java.lang.Exception, err:
+            print "Toopher. Could not check authentication status: ", err
+            return False
+
+        print "Toopher. The authentication request has not received a response from the phone yet"
+
+        return False
+
+    def logout(self, configurationAttributes, requestParameters):
+        return True
diff --git a/oxAuth/Server/integrations.deprecatred/toopher/repository/com/toopher/ToopherSDK/1.0.0/ToopherSDK-1.0.0.jar b/oxAuth/Server/integrations.deprecatred/toopher/repository/com/toopher/ToopherSDK/1.0.0/ToopherSDK-1.0.0.jar
new file mode 100644
index 0000000000000000000000000000000000000000..6bf3ad4dfbeeedcac173885b0146bd914809ccdf
GIT binary patch
literal 8589
zcmb7J1y~hZ*G3eiyAEB_-Q8W%4GMBVI?h45luk)$kdQ{YySpT$yYong@Z;z8>ec)G
z&;Rc^GqcY#YrV7f%-(CQS+BDE!$$~E-`aj)h}eHRe;wfO&x(@jqKvXiQq0PKiNQhb
z-HWA`si|4tU-rG<v3?a(6jhRyl2lV?Qj|JY9Oze&XJi^hmS?0J8W=8DWf^B*T6bWO
z8|q<@XB2~byq2XIgG1j!>0Fx}qKYZ6ss>J>E5af~#E52B#dgQ+S3SPJBF7GrYgviR
zmQ096Xu1UU0)mu-una!NSiNO5b%lj=Q8nl{=tKQ559&YW-COi`dvxD>VQc;O0REIf
z`bz?AYisus=<v7X_o1>p(hYk45DMxOEEE*gZ<3;p;Fmxfu=xuku(_>`8rTTz2x59+
zWds6+X;|BS(!}z#iRvo0tcw!ucAFO?Rn%^G&apwL$R^;Z*d3_zvk<EuvfiO7rQd`l
zvld3kQW-&Wmt2un<UjB7@R7_Q`I5Xzm<Bp@DL>v`^b&%q33fy@pX0LcZaE?KU#5#M
zRc<XbcEX-hvwPN>{MrQu5r_EsXiEeREtc0z+f(P4D}_-J3ZV&h3ZY5yEcS}iaSG}H
zRnZhOE$c6v4Rb3-nR~rFa0E<mN*UYuRAA3yDx?O)X?tAWIswNw1P_i!aEszrrnQfh
zu-LR!JN8M}iULe3onnCtIBOi3zCOu78C<F<Jho$%l)^>zH_8l7vjpUxZQQzIK&;D#
z%C1$B?I2c)>endk5)%<KK!D_|9y!zEVIL!UU&|(2px9G~>3!w1523EHEQIt5X9dG^
zp_ykCw!j3VJms(zsp%Y(D(7l78wA>i`Pp;o>F%0biEZx=){KgWI2;L>h`uN!J~+(v
zjh0e*NYZfBS;bfWVu^Lza6HVT6fc)5dCzG#CVyCp7#DD>d$`HE|L9b%X_c>6o&FMe
zO4c<0azVYaihD|~>42}XcjxHqwC9KX?Wko`|H!YJ=Li+{_-0ngoxBhGxipW;!&sBc
zmuc{{Sl$y3(bssh!)jXJKu5G*>Xsu5ltSnyt#14mt;a<|65&rXu$#ti8gbYO=ZBq{
zf^}a<4>}L&8I+dwvgkUy+Ie80o|lU`aWmEfI>*KR`Tg!}=Uh+whiW{|*}QTq-#dLI
zTRZ5)y`Gyow+nfF7A&y99IWf?n~busb|(1MZdUOj@ds4==dbf5NxR0GUh>AtP)Du?
zCCl6lQGa<IXKq}v?E6lJKH7xxaj<QRA-e2)k@yKI#Ax4F!w)25PFUYTJTPvkbtcLu
z^esBvBfyLXHw1u>ab&DVI65D>L<U9}<OjwFNV#$oWCy-jQ0z>j$)0wcEv)qPGh@`+
zlSWQZqGPJXc*s$IiOg4>Up{2fcM~URQ)T5Ydz1Mwk}PhvwfZBg$X>iDZ0TxZLWdM5
z0p(drcu8<ACO^+*4VahLIPf#=;NF<0u^JwE@&^w6H5T!rB4sr*dl;u)S5(CKc8rbf
zM%@;6h8^f+!>G06H%#eLUg}TiEZ{S1q^hurqXos|2u|wr4(m=yeysQJYt$Ug>q$E_
z6jU$_6covCYgF0D+`-(&>>rC$-R<coWvn}c$)ao=9|(pD-cI_gH-Zpam$(ZpPivOH
z3EJJ36u_V=u7U`nccH-%Da~>9;6}L%RR0A`r}Jv4cJub&GDYj^cxs9Sit0#L>JbHo
zlw>HUxPMotI8#?`{96cI1W=$=4LzF81#XsX74U%)2_(o!M*lt_i5*FC5=C4<iwgy*
z$oTUU#dCvxCLq9=a~Q0(t+~=wr@{%4_{4>P9i40yg2o<aeF;KB=dA1{W#HrYH6PTe
zsx>UYQ8*`he0-!dnrnq$+&TPS?dY5#;ytq#I6v`_=i2Q<K_e%_Q1P|@vtyday-quq
zEa3b+DIK}`Vl{(L+>?N~@#NLG3UXkn*|<QF)m76vZ<Xf8>la)I!166KwYxPeo@Aqo
z#MWHDYxRJZqz+PMFPg;bruEOMfjWG<N`s7v^qM09^6D=d@L?Kj23Z<Cwk`OK_6MjM
ztulmOvqz))pil(aA(i*Gx%pQeSB-;IM|_lE4D`XE(KmYJ8(0IYwSl+@I3+zJ*Hcu1
z+Nvd?*f7kHV7c-j%~rZeyzx7Z^+I?5v*QXJ!W?7#HB8h{xxu;5z%9*crXh9-6J`w%
z-__^hRZZkHBe}02m@1G~|1g(+%vxnv?}$FzSGAS*u<pojsz)+IM9Yv#44vMa1izXr
zE0%g+#R7Lr1oenT$hr)V#5uiQT=4}p5m`uFs0m35$5<$s!vpCoA(U#441k!-b`Yh$
z19kF(6fT;y?CM2I!wnO*Ek-j%R76&@$jC8tUT$hcRPgpC9xdcil;`V>r&@5Z%xGC+
z(D3JWY0Ak<6u|z1#4A`{uTX+o1-@d!_v>h4e4fW}MYe1d?<wRo^`3XajeGiDkaZ03
z8VO58iDP-<*^}=|Ccb3D%U-0c^r4Q*jb45bB}%^PO9D3&o314roaN7`G%8HgF?0j_
z&-q`{6fSW1;64=J2Rq{5=D#Y?-Vq1_OFB5%I(&~!u~7z3F-5Wb7k$L0jIGTtbG>zM
z5RAd0hH<&Fop9zY+FM^sLg({l6C7XB-7tPsXgGR&p>@KIH)LbU@G5C*(7ge)k#L^O
zzUbxg6?TdCz^z6{gt%H@T+qt3CZ#(?;D9aWg?TI-|5#Vw)@q{`l2zLK&m4TO#OlN0
z9y=U#Pb-yQE^i|GUlL`<x(yv!6#%W?g~(j^toeY@&&8iqt`34-EyLKG;GKp&0KCTB
z#9%xJMGzf8jxl?^HQkGRKavMtHm@S|Dc7Tf_g`fOYDGGcEEyM1YT2m}vepmRx_v_D
ziz~ahdKfzeFQ3sPRTgPJb;r;LG&wm>uR3hNw`Ur42?5apMF-r*c(Dlv-FizFg#>B_
zrf<)WggwRH*9&|aenyStR|U|1)}$$$htu8vg{QVf*+V=#S2}ZVmyNeBnEXIxHm_Ot
z3f??dEjFT3AVMZO$B}+DP{_NmnY)Ua@M{42t&^R#uJqOfQnh+0<Ys1wZr(bSR@#Tt
zO!gD)3oGN)TRM@{rDcRcn3=)n4|sKP?Zdh-Xqj2%>6WauKDRT+UnWb%nlog%2GIZ+
z#w>t%0SNgbb-HbADi||;l-67!nonlN)Ms`AHIuT|%U%{p6ewmJkc>`JnS*pH95bvH
zvWs#m!cK<55dS$<=<MS!&+gNiB)C7Piu(5iNK{#tlJ)O2MvFia%ah7i0ZuP{WNb{0
zwWtEw$CS3|VFup&tS?luD(=s?UX+3Bqs#eKZg_9sTxEZD2;av&CA{A@ox`OY%U#H<
z+xi1i_}w-a_=i1A59XfTdE8KVo5x_{wOKK59BDFdK)Aa3b(tv9I_q^)6qf`U92lOA
zyqR^?-srKPTXq%>k9~AilGs8z$ur5z#Uu1QaF91Oa|2MPx~hjXTF8Lle~aCXX*qGt
z-^Q%X&twj(m1SM47k9XISI3s$r_=%kOR?$FHe9EP1~;a!Te|L{CaXh>xX3WR)+S}M
zH_0IWZ2C)Z@n<YiN!JH{wJExhp1l=xaRxZ1I(fmh3gYe0UkT_}!Rt)t!)_ES_rYhG
z9qcSCd3soTm}z|u7Gn>N6Y6!fAI8C6mx&-;@x<)hf{@~2_>`%0j*PSD+msJ+YxQzb
z39RSZ@=tH)hAh)fOLEc;9u%Ke0_)<mGI*L+V_)tgNmd*d>Bhdb4j(-F{DlxEydIqI
zo0}llBAUbPK^_?}%fTD6r^tG;mJ%g>;UPC@Q*D80S&ssI$wkf_K)o}Z@+EzPGs#8g
z)Vg$SD`ecuS(42aG{)dsMgP#)SR=QL!NL9Il7N2@)I$=Zq%D>sRw1K!0cbtT4aHO>
z_uyf0`Y^J)4>K>rL;ey#ahi7n=^=dG@=WDRktKS6%N)5lGRK+gp0~W@@2qIJ-1D*+
z=Wzl`3k&Nyv#2%3ATdYuP0GDpDN4Gcs<!E(?~p=QB>h9Av8mcyj=K%b*4IEeuZ8RI
zb78~lV~E^Q>DK_tm2J=Q5H!L$K)Z|zNKQ(jeYuqC^ogV67m!M~EoC>PZD1D5*Q|Lg
z9HJSi>1vJxP##1H$e-L-S#UZ#BaV)5?g$MTXn*VOS(#5bRmixQO)FSt|AZh$!IA04
zwIZBlI4Ar*{}ikQ)=pF*B{56Yy|E1WpnSH@ebt-c9G~IIE`hv4SXsh!mFv5G2tB9}
zHO@bhvhesil?q)yixr11&Dd8e)6`qu`9WR(2r?D@{tfqO177c7kaQqRp^}goZo3ZG
zB@q)LX`R7!PHB=6Nh!5S7huxn*84)?1WIt0V$_3@IOCi)^fCMV<E>fZJ(BH(?iS3M
zO>C3A=v1;6{85b#^BZ_VVKutuC0I{!*yiX75|dNvxFfB=SE*=>=o^&9Xr^tN-9=_v
z5RA@jp-@)+OhPuwk7`*=!EC`;U9@Q&I)<WaBy&sg7pU(>2U&aVqi=cG^f9}FhV{r~
z(JeMUJw#l)aY%^*M4>mvr8)<eqw-<!>6gER4jDbe*Opg+{$jCpjc<s$PT(AE60`D#
z<pF#d2~y+g-NS!+4B6q~>zVs+L1J7eD8k=@%TJH--Cv|=ySQVm13anfr>Cv_E!TCk
z2)krt;QEoN0)5et(4u;v@flW108#L6y!`U53jx@bMbehcdb)Z7GrE#~j}%l~M<*A~
ztq-qnbMB_kT+B?llT04!d6s}07S9_Gj~k}W6%DV3kC~ygeZ2hASK@=~#dBLq>8v^g
zCu(pH;Z{=U7O*=!$mSv*i#ekmYC=-c@*!^(Ty4<~)gZTMA9_|$A3<8tJ}ket5C}zu
zfh?ot5TY(qT;v8ztGhG!!U+*~z()$xz3YDMED%Wj`oeeX&IBzDVOiFlFEB@4fJlrn
z9L8StVE7TFa4t>Fp3WCGGA-^pUEkkiEmVIf-&sh4uYKYIX$Zaz*S9N#Zm8hG3U1eA
z&B$G;b5s0f7p}w?No-uP&!mr<vY-$uit=KNDydGaCVS|V&nxyrt@n4-(GKuNP<Kat
zQ+GnTtojvBIqBoa6P1A0g22O3OkQ!(QxUEdiz&56_;yw0smQ9U3|Fa$bAnON*&&Hl
z_)jv^qbX8c?SB5;(ZTt~rqAT6K{&B<+8br3Lk-S#Q(IG@=`C-gS*k&47;&&(VL|zB
zi#K|861TF~%k!b4>la1)*8DSAkJhsr>8twP=EgBHIVeBq63HW2P_>O1#!D2n@+_}K
zwK*C}>kdzU9c6Ga8PnmPnP{8Rv`q#*+#QTDw^c65wP~R4md80%S+ae?4Wq_45Hp$}
zPs~ziaOLAmRw~nd+Ce<ewmy$}weJ~?o-~jClsfYjU&=Oj;TF^R!dPQ0TK=(JHGwp?
z!ccQ(Xbtdfxo~EZ$(Sl}lZt6wZPZx&AeyOpFEcCY1RF(`2$>H+QgbG}BP`VVgIbgc
zK+DakIophvIldoXGbc4hnqneJHVLCtM5_9Pl89wOBf5N0qN05u_$(pwt0PDB`Scf7
z&{PCs{b&0qJsQ3|jv$8BfLB`p>BqZLo$oZ<{UnD7>6UOvJ^TgxSP?RwxVzauRXXiC
z<gghA=(t%j%d2CA!N2TsOd_0NrZ8lrzz?i^Uf9RJp<RkhZ~o!LcXzuHs8g#@PbSE8
zSe&f`*2{B2nA9J0!`w>Cj)=m&9Gjv}SkzawudUtf*P-g~)re%<qj8fvmaKa=R&xER
zQ70#M?s*_=GZ+bGmih!D!}bo<(w_IM-n>SqQ+|#Vi;~IuZVX0MsAb6&+QBX3qtcZD
zP27-<{fiLVY+hiNBO^8vzD-980)F=lcXWb8>a^)<daC?q3PIg=6mb4UzW>MN-O$J!
zP?BAKEC$i?Zkwudt^0OacE9!~{3ajU{EIk$+f{x9&G79*g?h^Vxz>>#p^$kM>t`&7
z<0F1HUmzCr1i)%Xg!5qZsVeO_PxYIEbWeuXtjNI~4=HeTD(7lugQ8gK*jGRfcNwzz
z1yfVETpV$&aOX7sf;V^mMUy|tQh-ZlrW*ry*b4cVzRbb0F_bqX_M0@`9|tXXg84a2
zL`o2)a3?+c4HCoT^c4euG^nE{wTgY**r+oR5KKC!f<^Sai#({W39orE^Wth46G<yO
z6Lj*L6?xf5>8~BKkuZ;kA#5+w%?7fG2eY#ZmvPBcIk|Qb3%-uF_h;gJ20b&s;PlK~
zu6EXGKRj}SnTpYxUuhA}y~y+zULMA;T7pIPYJG-19;ZQtsYayNiGNEqq|e$4hGcng
z)XmCOWOrB`##O{xfqbDMhxoTXUg5I7kq8a0yxgN>;+ercjwHtp;Hf1W)j2|JhK9B6
zVA?&aw1ZSbJ?^HY+Uv&tMVA=yNzt;g+KU;CqP@8A(upBcjTPnk3*)%Lij?piOqb`n
zlO;~&<GNRb1G`<^Um+~=Bxmlf%!npZ2Jmm)uqCJjC`uxTE5>AH0We9seS1x~!r*~o
zdKWCrcpu-$o$~9HxIq!7n(>3(J&Sj5%rhtuh=?;m>sfa5zO%0YMLu=vI~Go_7Q9n?
zk7#=Lv$Oi(uioq#z2Zwd{<JG+8jZI-+4&;&u?b-JiLm`zAxn`>g@l0MxiJZrl_FdE
zbH_Yiz%}E_g(%yI<vw&jk8uZREFCr0QF+=r;j(kxbApjLV!+2EV9&#G6@|-fZmCXC
zw)F;5@+g3RU|PEeRX=v|kgmBvuQXw?*xJ271dYtR+}+k`q1qUw3OkH><@zk+ywm-V
z#?@9rTM5}6rGIG94ZFK0@)&=0HU+Mw`+DYzjOMgGcMI_PkmKewXGu6j&NBt(W;6Zl
zqOJ8aKs`k?Fgo82KMqNhKTLL*N9q-X4>PubDIjfePpu?MWb$ZHckct(#}eAj4s%Ih
zeorJOhgeAC$c5QvIpu8(odtqjA%#FK2u}^}rA4&x3Q1Q*s$Go{oK|w@3Buf(tSJMn
z%uahW#Vy%@Req>?YHMM%Vr+Zhi3D8$%ci8Rw*T(-+O!0X^T!NJQR>Sr{ji}F=_#hn
z-NdcpFz{!pI{A`nc1p#LV~ahCVnw9xqR)qR`!q+}E!M<oC|f8bB$Y%<(Ghjr<l%<8
zoIJ(7Bu@x?Mdhw&YBBn}Xmiy^Kei3rk$7jUpkX90ZAQU)$!6(4UWQLRKQ_c{8Vgf=
z<7+A{D9Bn}t`hHr0J)D9CJy08oAkk-gyd}7!5Lv_n}jRq#RWWEDZ<M;nH7D@bfpEf
zc15By%X|QKLVs+O5I`F_^fRAM=NrJ>!SbS50uAycH-ic+BtP1Z5`jl)0OyHf$#WjK
zevrdk_Ku^M`&I9R!YD~&InYw4)`mAx+1q;KE+sEl<#0mRp02_SSQB=%t;R1S8%}7)
z=pR!?n{vUB`>^NoPGi|c(J%4VMl;n{zSTcfz|3P5K4_yPY<Hg<9IJV}YtL-9(0$UJ
zR!;I9ju>2XK$(-&NQtPtLzRHlD&li@|MTvCmg=Asb(x@qfh1hC4;m{fduvm?M*0LJ
zmp0c~Qiz<gyROTBi^Y(gsk4|V!I<-%QmHhJU@O=)h9ZJBf%r~Xb+2bVOWTidUGRpQ
zFb8VBJr@YAk7>veSa-A{TH?m3TtYb@!fd@{i#96CK+y4ps9k$h+>@Sv`kIO}wUaK0
zZ}$0WxwZ$6r8`eVB}E?os}tcMSOH1Zr{&ejV7STpSBNHcL<k6*6DyU@L|Px)^vOL0
z(KkwmKg29@#=xC<sZpUQ#6_gEYE!q?RP{EmL6gf5WyrSLE5s5{Gh|JouJFCbhD00%
zUv#5^Ku+P&PC0ALW!hn6RSoP`e(hGnn+WKXHPEeD(#oln$8<Fg(c%-`r@JzHijsrF
zDUKr{=A1EFEgbIU!PQtU?ejYeeHqRKAwBcC7RkPwQASqjn8jWw1;AsK;HxedC71g0
z6DD$~0-09WYNs32A35QlGy&>;PWU%XU~TjYX!Cak{ZC<nKZWm$^Gv^&-v3nmR(k*K
zF25@Nm58cI$p3wFI4C%yATeuTPFU*w_ih#n6cpqC8N=@0CTDA_PA#2?SuQkB=8`*6
z)+@R(+_C5HHN3MFN4Rhu$ZQ{IWdLnns;(QksjM}dNvPsvS2m!aQF>ySH32-^d1cJ*
zGqY5yyfKB~f?gy=YItlvhJ@T=Dv||Zc@jn9P26T+WfXS>3w(=TQ(|FQ9y9C0TSn}_
z@hojMN)5lo2G5{(FK24(d-@wqAD`G%i`V<L59WLV+@5^t<Y$?C8v}10NJFD-{wgo!
z$d4h=zVKk40U*vJT4&&y>Y19+$V81M2i<H%A>Su_RRY?iXcyFJ(U6<DI%H#Bg9Xs;
za%uo<{2qwM7}2ZZy=^#u>*RHtv@ApD-Li|Aw`6im0ButT90}l9V;?qiOCOt|&)@Qj
zGdImekrGOz8gPGL8Zyv5SJxq)M5<L0M;aA;DoC_e9XW2Uo!}$~1~FFJg!8l)5{ki0
zkKCkDd&?{kE3oZ#Jj~S)K<(w<AVRFG#>Z8~qYD*w4zqL{)QRN78nRoZKzKkBwhT6z
z8Vg>jBAv10!ym<bESCy94p<(D{MaK-J7j-6y}18)<YP@`W<}Z?HkHjy(F2v$j}#uT
zoiZIOZ1q*4-GyaQ#ewS^wUh$qr>N9uh!lIl@NLgHO}y@eLrKOtC#EW*{go~gmxn&A
zFX>OriDhmZjT;KQ<x`wpv4h(efaD>i`irNV5jr-Ji0JBSjEv6`Cm;!0*5&wF!!Eu(
zFzA45@kz%IWNi`HD~`aDxnr4>_(T{URg^Asv-7CowN)7Fp3hB5!BubLn~t0t;Dvfm
z<e8E`gsk&n=Nk^iTZ|dH{AeP@zzq0-i$weQZg|#SBtZq9dDYac?T>T>PXqJW5px=u
zH(vT|Ku+x+!ykh?=?Z#+$ot%<TYx7l?aOYD%medtAw5TenzhU3k@fFjD2ok9`gdsK
zR)fCk^x8kg8EWR|?k^pXAVZe4)-kIg$~7_=OAN+PDov<^#2~NCHZ)6~Bu|S}i}=M>
zY^@x;$qa<Okom;DZOGyUHaa8QsQTbZS@W?;byBg|NEHvbY|O)uiOGwjM|ji;3Czsm
zKG*-GtJ;!e%&}{KG4z_<JFVxK?BYox$ze0`Wk_1TA>9>XEw^Jim1ZV^1=1(g<o5dZ
zg<&^Xc3ajN9q==|0_oy$C4R2TjQ#hU=d^j#f?pT-y}LHntXf|nk%!%~){;&ZMw-TY
zPbKnF!!vRrQ>4>=Sa$&=WKK_4Vg=37Sl-suR1<AAKltI2;Qqs04kmA}SlushyZfEv
z|FzKV9Bl1?4q$U2NbS|rL3u_w23bWFnSAvlMF#o7)pb>rUK$NM1{zfs4s{leYBrW?
zHZ~PIM`RQg7B&`+jdi-e=uOUX_K|yjQ;xZhnej-WRB>o{g1&c{xkrX^WnGSeu2(@`
zf$2eTfJnz{g9ew{d&cqsG}goa&b;0a;l80k?Tdap|LyvIs{K0?`%U;;%krVVKmM)u
z3orW<;ZG{`8(I3jeY<hjefK+c`qR{J?C%emZ|861>G$?cW9z>AP2;CO|DpNsWa<yy
zEFX;f^7XHp|D9U>Y5%{IKR+?6?uYX$=D$!uzk~f=N&f}x@jt=-tgHWy^?RxHC)V<P
zIptTwewI;w6kdPF`n?GA6ASY`u>CvM_ma#{q(6h|x6u8)p+Vi<QRDqGVSWViAMfu^
z<!_<<r?UE=%J)|N64?Jc(6`Y36DaI|2l_{#|AG1Mq5cPIme1(_8S}5e|MQ{!yL0&o
qU3Xs+`+Jpre`vps`xkS+LH~3$%JML<-%wEQx4ZlN#F^;ZzyAR|$@U!p

literal 0
HcmV?d00001

diff --git a/oxAuth/Server/integrations.deprecatred/toopher/repository/com/toopher/ToopherSDK/1.0.0/ToopherSDK-1.0.0.pom b/oxAuth/Server/integrations.deprecatred/toopher/repository/com/toopher/ToopherSDK/1.0.0/ToopherSDK-1.0.0.pom
new file mode 100644
index 00000000..5fd5604c
--- /dev/null
+++ b/oxAuth/Server/integrations.deprecatred/toopher/repository/com/toopher/ToopherSDK/1.0.0/ToopherSDK-1.0.0.pom
@@ -0,0 +1,9 @@
+<?xml version="1.0" encoding="UTF-8"?>
+<project xsi:schemaLocation="http://maven.apache.org/POM/4.0.0 http://maven.apache.org/xsd/maven-4.0.0.xsd" xmlns="http://maven.apache.org/POM/4.0.0"
+    xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance">
+  <modelVersion>4.0.0</modelVersion>
+  <groupId>com.toopher</groupId>
+  <artifactId>ToopherSDK</artifactId>
+  <version>1.0.0</version>
+  <description>POM was created from install:install-file</description>
+</project>
diff --git a/oxAuth/Server/integrations.deprecatred/toopher/repository/com/toopher/ToopherSDK/maven-metadata-local.xml b/oxAuth/Server/integrations.deprecatred/toopher/repository/com/toopher/ToopherSDK/maven-metadata-local.xml
new file mode 100644
index 00000000..c8c282b6
--- /dev/null
+++ b/oxAuth/Server/integrations.deprecatred/toopher/repository/com/toopher/ToopherSDK/maven-metadata-local.xml
@@ -0,0 +1,12 @@
+<?xml version="1.0" encoding="UTF-8"?>
+<metadata>
+  <groupId>com.toopher</groupId>
+  <artifactId>ToopherSDK</artifactId>
+  <versioning>
+    <release>1.0.0</release>
+    <versions>
+      <version>1.0.0</version>
+    </versions>
+    <lastUpdated>20130409094810</lastUpdated>
+  </versioning>
+</metadata>
diff --git a/oxAuth/Server/integrations.deprecatred/toopher/sdk/pom.xml b/oxAuth/Server/integrations.deprecatred/toopher/sdk/pom.xml
new file mode 100644
index 00000000..5d5b5325
--- /dev/null
+++ b/oxAuth/Server/integrations.deprecatred/toopher/sdk/pom.xml
@@ -0,0 +1,105 @@
+<?xml version="1.0" encoding="UTF-8"?>
+<project xmlns="http://maven.apache.org/POM/4.0.0" xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" xsi:schemaLocation="http://maven.apache.org/POM/4.0.0 http://maven.apache.org/maven-v4_0_0.xsd">
+    <modelVersion>4.0.0</modelVersion>
+    <groupId>com.toopher</groupId>
+    <artifactId>ToopherSDK</artifactId>
+    <packaging>jar</packaging>
+    <version>1.0.0</version>
+
+    <prerequisites>
+        <maven>3.0.3</maven>
+    </prerequisites>
+
+    <repositories>
+        <repository>
+            <id>repository.jboss.org</id>
+            <name>JBoss Repository</name>
+            <url>https://repository.jboss.org/nexus/content/groups/public-jboss/</url>
+        </repository>
+        <repository>
+            <id>bouncycastle</id>
+            <name>Bouncy Castle</name>
+            <url>https://repo2.maven.org/maven2/org/bouncycastle</url>
+        </repository>
+        <repository>
+            <id>gluu</id>
+            <name>Gluu repository</name>
+            <url>https://maven.gluu.org/maven</url>
+        </repository>
+    </repositories>
+
+    <build>
+        <defaultGoal>package</defaultGoal>
+        <finalName>${project.artifactId}-${project.version}</finalName>
+
+        <plugins>
+            <plugin>
+                <groupId>org.apache.maven.plugins</groupId>
+                <artifactId>maven-source-plugin</artifactId>
+                <executions>
+                    <execution>
+                        <id>attach-sources</id>
+                        <phase>verify</phase>
+                        <goals>
+                            <goal>jar</goal>
+                        </goals>
+                    </execution>
+                </executions>
+            </plugin>
+
+            <!-- Ensures we are compiling at 1.6 level -->
+            <plugin>
+                <groupId>org.apache.maven.plugins</groupId>
+                <artifactId>maven-compiler-plugin</artifactId>
+                <version>2.3.2</version>
+                <configuration>
+                    <source>1.6</source>
+                    <target>1.6</target>
+                    <encoding>UTF-8</encoding>
+                </configuration>
+            </plugin>
+
+            <plugin>
+                <groupId>org.apache.maven.plugins</groupId>
+                <artifactId>maven-install-plugin</artifactId>
+                <version>2.4</version>
+            </plugin>
+        </plugins>
+    </build>
+
+    <dependencies>
+        <dependency>
+            <groupId>commons-codec</groupId>
+            <artifactId>commons-codec</artifactId>
+            <version>1.7</version>
+            <type>jar</type>
+            <optional>true</optional>
+        </dependency>
+        <dependency>
+            <groupId>org.apache.httpcomponents</groupId>
+            <artifactId>httpclient</artifactId>
+            <version>4.5.13</version>
+        </dependency>
+        <dependency>
+            <groupId>org.apache.httpcomponents</groupId>
+            <artifactId>httpcore</artifactId>
+            <version>4.4.5</version>
+        </dependency>
+        <dependency>
+            <groupId>org.codehaus.jettison</groupId>
+            <artifactId>jettison</artifactId>
+            <version>1.5.4</version>
+            <exclusions>
+                <exclusion>
+                    <artifactId>stax-api</artifactId>
+                    <groupId>stax</groupId>
+                </exclusion>
+            </exclusions>
+        </dependency>
+        <dependency>
+            <groupId>oauth.signpost</groupId>
+            <artifactId>signpost-commonshttp4</artifactId>
+            <version>1.2.1.2</version>
+        </dependency>
+    </dependencies>
+</project>
diff --git a/oxAuth/Server/integrations.deprecatred/toopher/sdk/src/main/java/com/toopher/AuthenticationStatus.java b/oxAuth/Server/integrations.deprecatred/toopher/sdk/src/main/java/com/toopher/AuthenticationStatus.java
new file mode 100644
index 00000000..b992baad
--- /dev/null
+++ b/oxAuth/Server/integrations.deprecatred/toopher/sdk/src/main/java/com/toopher/AuthenticationStatus.java
@@ -0,0 +1,72 @@
+package com.toopher;
+
+import org.json.JSONException;
+import org.json.JSONObject;
+
+/**
+ * Provide information about the status of an authentication request
+ * 
+ */
+public class AuthenticationStatus {
+    /**
+     * The unique id for the authentication request
+     */
+    public String id;
+
+    /**
+     * Indicates if the request is still pending
+     */
+    public boolean pending;
+
+    /**
+     * Indicates if the request was granted
+     */
+    public boolean granted;
+
+    /**
+     * Indicates if the request was automated
+     */
+    public boolean automated;
+
+    /**
+     * Indicates if the request was cancelled
+     */
+    public boolean cancelled;
+
+    /**
+     * Indicates the reason (if any) for the request's outcome
+     */
+    public String reason;
+
+    /**
+     * The unique id for the terminal associated with the request
+     */
+    public String terminalId;
+
+    /**
+     * The descriptive name for the terminal associated with the request
+     */
+    public String terminalName;
+
+    @Override
+    public String toString() {
+        return String.format("[AuthenticationStatus: id=%s; pending=%b; granted=%b; automated=%b; cancelled=%d; reason=%s; terminalId=%s; terminalName=%s]",
+                             id, pending, granted, automated, cancelled, reason, terminalId, terminalName);
+    }
+
+    static AuthenticationStatus fromJSON(JSONObject json) throws JSONException {
+        AuthenticationStatus as = new AuthenticationStatus();
+        as.id = json.getString("id");
+        as.pending = json.getBoolean("pending");
+        as.granted = json.getBoolean("granted");
+        as.automated = json.getBoolean("automated");
+        as.cancelled = json.getBoolean("cancelled");
+        as.reason = json.getString("reason");
+
+        JSONObject terminal = json.getJSONObject("terminal");
+        as.terminalId = terminal.getString("id");
+        as.terminalName = terminal.getString("name");
+
+        return as;
+    }
+}
diff --git a/oxAuth/Server/integrations.deprecatred/toopher/sdk/src/main/java/com/toopher/PairingStatus.java b/oxAuth/Server/integrations.deprecatred/toopher/sdk/src/main/java/com/toopher/PairingStatus.java
new file mode 100644
index 00000000..e1d1aa72
--- /dev/null
+++ b/oxAuth/Server/integrations.deprecatred/toopher/sdk/src/main/java/com/toopher/PairingStatus.java
@@ -0,0 +1,49 @@
+package com.toopher;
+
+import org.json.JSONException;
+import org.json.JSONObject;
+
+/**
+ * Provides information about the status of a pairing request
+ * 
+ */
+public class PairingStatus {
+    /**
+     * The unique id for the pairing request
+     */
+    public String id;
+
+    /**
+     * The unique id for the user associated with the pairing request
+     */
+    public String userId;
+
+    /**
+     * The descriptive name for the user associated with the pairing request
+     */
+    public String userName;
+
+    /**
+     * Indicates if the pairing has been enabled by the user
+     */
+    public boolean enabled;
+
+    @Override
+    public String toString() {
+        return String.format("[PairingStatus: id=%s; userId=%s; userName=%s, enabled=%b]", id,
+                             userId, userName, enabled);
+    }
+
+    static PairingStatus fromJSON(JSONObject json) throws JSONException {
+        PairingStatus ps = new PairingStatus();
+        ps.id = json.getString("id");
+
+        JSONObject user = json.getJSONObject("user");
+        ps.userId = user.getString("id");
+        ps.userName = user.getString("name");
+
+        ps.enabled = json.getBoolean("enabled");
+
+        return ps;
+    }
+}
diff --git a/oxAuth/Server/integrations.deprecatred/toopher/sdk/src/main/java/com/toopher/RequestError.java b/oxAuth/Server/integrations.deprecatred/toopher/sdk/src/main/java/com/toopher/RequestError.java
new file mode 100644
index 00000000..5e210408
--- /dev/null
+++ b/oxAuth/Server/integrations.deprecatred/toopher/sdk/src/main/java/com/toopher/RequestError.java
@@ -0,0 +1,31 @@
+package com.toopher;
+
+import java.io.IOException;
+
+import org.apache.http.client.ClientProtocolException;
+import org.json.JSONException;
+
+/**
+ * Request errors from API calls
+ * 
+ */
+public class RequestError extends Exception {
+
+    public RequestError(ClientProtocolException e) {
+        super("Http protocol error", e);
+    }
+
+    public RequestError(IOException e) {
+        super("Connection error", e);
+    }
+
+    public RequestError(JSONException e) {
+        super("Unexpected response format", e);
+    }
+
+    public RequestError(Exception e) {
+        super("Request error", e);
+    }
+
+    private static final long serialVersionUID = -1479647692976296897L;
+}
diff --git a/oxAuth/Server/integrations.deprecatred/toopher/sdk/src/main/java/com/toopher/ToopherAPI.java b/oxAuth/Server/integrations.deprecatred/toopher/sdk/src/main/java/com/toopher/ToopherAPI.java
new file mode 100644
index 00000000..3e32a052
--- /dev/null
+++ b/oxAuth/Server/integrations.deprecatred/toopher/sdk/src/main/java/com/toopher/ToopherAPI.java
@@ -0,0 +1,220 @@
+package com.toopher;
+
+import java.io.IOException;
+import java.net.URI;
+import java.util.ArrayList;
+import java.util.List;
+
+import oauth.signpost.OAuthConsumer;
+import oauth.signpost.commonshttp.CommonsHttpOAuthConsumer;
+
+import org.apache.http.HttpEntity;
+import org.apache.http.HttpResponse;
+import org.apache.http.NameValuePair;
+import org.apache.http.StatusLine;
+import org.apache.http.client.ClientProtocolException;
+import org.apache.http.client.HttpClient;
+import org.apache.http.client.HttpResponseException;
+import org.apache.http.client.ResponseHandler;
+import org.apache.http.client.entity.UrlEncodedFormEntity;
+import org.apache.http.client.methods.HttpGet;
+import org.apache.http.client.methods.HttpPost;
+import org.apache.http.client.utils.URIBuilder;
+import org.apache.http.impl.client.DefaultHttpClient;
+import org.apache.http.message.BasicNameValuePair;
+import org.apache.http.params.HttpProtocolParams;
+import org.apache.http.util.EntityUtils;
+import org.json.JSONException;
+import org.json.JSONObject;
+import org.json.JSONTokener;
+
+/**
+ * A Java binding for the Toopher API
+ * 
+ */
+public class ToopherAPI {
+    /**
+     * The ToopherJava binding library version
+     */
+    public static final String VERSION = "1.0.0";
+
+    /**
+     * Create an API object with the supplied credentials
+     * 
+     * @param consumerKey
+     *            The consumer key for a requester (obtained from the developer portal)
+     * @param consumerSecret
+     *            The consumer secret for a requester (obtained from the developer portal)
+     */
+    public ToopherAPI(String consumerKey, String consumerSecret) {
+        httpClient = new DefaultHttpClient();
+        HttpProtocolParams.setUserAgent(httpClient.getParams(),
+                                        String.format("ToopherJava/%s", VERSION));
+
+        consumer = new CommonsHttpOAuthConsumer(consumerKey, consumerSecret);
+    }
+
+    /**
+     * Create a pairing
+     * 
+     * @param pairingPhrase
+     *            The pairing phrase supplied by the user
+     * @param userName
+     *            A user-facing descriptive name for the user (displayed in requests)
+     * @return A PairingStatus object
+     * @throws RequestError
+     *             Thrown when an exceptional condition is encountered
+     */
+    public PairingStatus pair(String pairingPhrase, String userName) throws RequestError {
+        final String endpoint = "pairings/create";
+
+        List<NameValuePair> params = new ArrayList<NameValuePair>();
+        params.add(new BasicNameValuePair("pairing_phrase", pairingPhrase));
+        params.add(new BasicNameValuePair("user_name", userName));
+
+        try {
+            JSONObject json = post(endpoint, params);
+            return PairingStatus.fromJSON(json);
+        } catch (Exception e) {
+            throw new RequestError(e);
+        }
+    }
+
+    /**
+     * Retrieve the current status of a pairing request
+     * 
+     * @param pairingRequestId
+     *            The unique id for a pairing request
+     * @return A PairingStatus object
+     * @throws RequestError
+     *             Thrown when an exceptional condition is encountered
+     */
+    public PairingStatus getPairingStatus(String pairingRequestId) throws RequestError {
+        final String endpoint = String.format("pairings/%s", pairingRequestId);
+
+        try {
+            JSONObject json = get(endpoint);
+            return PairingStatus.fromJSON(json);
+        } catch (Exception e) {
+            throw new RequestError(e);
+        }
+    }
+
+    /**
+     * Initiate a login authentication request
+     * 
+     * @param pairingId
+     *            The pairing id indicating to whom the request should be sent
+     * @param terminalName
+     *            The user-facing descriptive name for the terminal from which the request originates
+     * @return An AuthenticationStatus object
+     * @throws RequestError
+     *             Thrown when an exceptional condition is encountered
+     */
+    public AuthenticationStatus authenticate(String pairingId, String terminalName) throws RequestError {
+        return authenticate(pairingId, terminalName, null);
+    }
+
+    /**
+     * Initiate an authentication request
+     * 
+     * @param pairingId
+     *            The pairing id indicating to whom the request should be sent
+     * @param terminalName
+     *            The user-facing descriptive name for the terminal from which the request originates
+     * @param actionName
+     *            The user-facing descriptive name for the action which is being authenticated
+     * @return An AuthenticationStatus object
+     * @throws RequestError
+     *             Thrown when an exceptional condition is encountered
+     */
+    public AuthenticationStatus authenticate(String pairingId, String terminalName,
+                                             String actionName) throws RequestError {
+        final String endpoint = "authentication_requests/initiate";
+
+        List<NameValuePair> params = new ArrayList<NameValuePair>();
+        params.add(new BasicNameValuePair("pairing_id", pairingId));
+        params.add(new BasicNameValuePair("terminal_name", terminalName));
+        if (actionName != null && actionName.length() > 0) {
+            params.add(new BasicNameValuePair("action_name", actionName));
+        }
+
+        try {
+            JSONObject json = post(endpoint, params);
+            return AuthenticationStatus.fromJSON(json);
+        } catch (Exception e) {
+            throw new RequestError(e);
+        }
+    }
+
+    /**
+     * Retrieve status information for an authentication request
+     * 
+     * @param authenticationRequestId
+     *            The authentication request ID
+     * @return An AuthenticationStatus object
+     * @throws RequestError
+     *             Thrown when an exceptional condition is encountered
+     */
+    public AuthenticationStatus getAuthenticationStatus(String authenticationRequestId)
+            throws RequestError {
+        final String endpoint = String.format("authentication_requests/%s", authenticationRequestId);
+
+        try {
+            JSONObject json = get(endpoint);
+            return AuthenticationStatus.fromJSON(json);
+        } catch (Exception e) {
+            throw new RequestError(e);
+        }
+    }
+
+    private JSONObject get(String endpoint) throws Exception {
+        URI uri = new URIBuilder().setScheme(URI_SCHEME).setHost(URI_HOST)
+                                  .setPath(URI_BASE + endpoint).build();
+        HttpGet get = new HttpGet(uri);
+        consumer.sign(get);
+        return httpClient.execute(get, jsonHandler);
+    }
+
+    private JSONObject post(String endpoint, List<NameValuePair> params) throws Exception {
+        URI uri = new URIBuilder().setScheme(URI_SCHEME).setHost(URI_HOST)
+                                  .setPath(URI_BASE + endpoint).build();
+        HttpPost post = new HttpPost(uri);
+        if (params != null && params.size() > 0) {
+            post.setEntity(new UrlEncodedFormEntity(params));
+        }
+
+        consumer.sign(post);
+
+        return httpClient.execute(post, jsonHandler);
+    }
+
+    private static ResponseHandler<JSONObject> jsonHandler = new ResponseHandler<JSONObject>() {
+
+        @Override
+        public JSONObject handleResponse(HttpResponse response) throws ClientProtocolException,
+                IOException {
+            StatusLine statusLine = response.getStatusLine();
+            if (statusLine.getStatusCode() >= 300) {
+                throw new HttpResponseException(statusLine.getStatusCode(),
+                                                statusLine.getReasonPhrase());
+            }
+
+            HttpEntity entity = response.getEntity(); // TODO: check entity == null
+            String json = EntityUtils.toString(entity);
+
+            try {
+                return (JSONObject) new JSONTokener(json).nextValue();
+            } catch (JSONException e) {
+                throw new ClientProtocolException("Could not interpret response as JSON", e);
+            }
+        }
+    };
+
+    private static final String URI_SCHEME = "https";
+    private static final String URI_HOST = "api.toopher.com";
+    private static final String URI_BASE = "/v1/";
+
+    private final HttpClient httpClient;
+    private final OAuthConsumer consumer;
+}
diff --git a/oxAuth/Server/integrations.deprecatred/wikid/README.txt b/oxAuth/Server/integrations.deprecatred/wikid/README.txt
new file mode 100644
index 00000000..cfa5017e
--- /dev/null
+++ b/oxAuth/Server/integrations.deprecatred/wikid/README.txt
@@ -0,0 +1,37 @@
+This is a person authentication module for oxAuth that enables [Wikid Authentication](http://wikidsystems.com) for user authentication.
+
+The module has a few properties:
+
+1) wikid_server_host - It's mandatory property. IP address of WIKID server.
+   Example: 111.111.111.111
+
+2) wikid_server_port - It's mandatory property. TCP port number to connect to (default 8388).
+   Example: 8388
+
+3) wikid_cert_path - It's mandatory property. Path to the PKCS12 certificate file.
+   Example: /etc/certs/wikid.p12
+
+4) wikid_cert_pass - It's mandatory property. Passphrase to open the PKCS12 file.
+   Example: changeit
+
+5) wikid_ca_store_path - It's mandatory property. The certificate authority store for validating the WAS server certificat.
+   Example: /etc/certs/CACertStore.dat
+
+6) wikid_ca_store_pass - It's mandatory property. The passphrase securing the trust store file.
+   Example: changeit
+
+7) wikid_server_code - It's mandatory property. The 12-digit code that represents the server/domain.
+   Example: 222222222222
+
+
+This module require few java libraries. Before enabling this module it's mandatory to put next libraries into $TOMCAT_HOME/endorsed
+1) https://www.wikidsystems.com/webdemo/wClient-3.5.0.jar
+2) http://central.maven.org/maven2/org/jdom/jdom/1.1.3/jdom-1.1.3.jar
+3) http://central.maven.org/maven2/log4j/log4j/1.2.17/log4j-1.2.17.jar
+4) http://central.maven.org/maven2/com/thoughtworks/xstream/xstream/1.4.8/xstream-1.4.8.jar
+
+More information about wClient library there is on this page: https://www.wikidsystems.com/downloads/network-clients
+
+Also this 2F authentication method requires token client: https://www.wikidsystems.com/downloads/token-clients
+Hence in order to use this person authentication module user should install and configure it for first time use. This demo explains how to do that:
+https://www.wikidsystems.com/demo
diff --git a/oxAuth/Server/integrations.deprecatred/wikid/WikidExternalAuthenticator.py b/oxAuth/Server/integrations.deprecatred/wikid/WikidExternalAuthenticator.py
new file mode 100644
index 00000000..abb36f93
--- /dev/null
+++ b/oxAuth/Server/integrations.deprecatred/wikid/WikidExternalAuthenticator.py
@@ -0,0 +1,218 @@
+# oxAuth is available under the MIT License (2008). See http://opensource.org/licenses/MIT for full text.
+# Copyright (c) 2016, Gluu
+#
+# Author: Yuriy Movchan
+#
+
+import java
+from com.wikidsystems.client import wClient
+from org.gluu.model.custom.script.type.auth import PersonAuthenticationType
+from org.gluu.oxauth.security import Identity
+from org.gluu.oxauth.service import UserService, AuthenticationService
+from org.gluu.service.cdi.util import CdiUtil
+from org.gluu.util import StringHelper, ArrayHelper
+
+
+class PersonAuthentication(PersonAuthenticationType):
+    def __init__(self, currentTimeMillis):
+        self.currentTimeMillis = currentTimeMillis
+
+    def init(self, configurationAttributes):
+        print "Wikid. Initialization"
+
+        if (not (configurationAttributes.containsKey("wikid_server_host") and configurationAttributes.containsKey("wikid_server_port"))):
+            print "Wikid Initialization. The properties wikid_server_host and wikid_server_port should be not empty"
+            return False
+
+        if (not (configurationAttributes.containsKey("wikid_cert_path") and configurationAttributes.containsKey("wikid_cert_pass"))):
+            print "Wikid Initialization. The properties wikid_cert_path and wikid_cert_pass should be not empty"
+            return False
+
+        if (not (configurationAttributes.containsKey("wikid_ca_store_path") and configurationAttributes.containsKey("wikid_ca_store_pass"))):
+            print "Wikid Initialization. The properties wikid_ca_store_path and wikid_ca_store_pass should be not empty"
+            return False
+
+        if (not configurationAttributes.containsKey("wikid_server_code")):
+            print "Wikid Initialization. The property wikid_server_code should be not empty"
+            return False
+
+        print "Wikid. Initialization. Creating new client."
+        wikid_server_host = configurationAttributes.get("wikid_server_host").getValue2()
+        wikid_server_port = int(configurationAttributes.get("wikid_server_port").getValue2())
+
+        wikid_cert_path = configurationAttributes.get("wikid_cert_path").getValue2()
+        wikid_cert_pass = configurationAttributes.get("wikid_cert_pass").getValue2()
+        wikid_ca_store_path = configurationAttributes.get("wikid_ca_store_path").getValue2()
+        wikid_ca_store_pass = configurationAttributes.get("wikid_ca_store_pass").getValue2()
+
+        self.wc = wClient(wikid_server_host, wikid_server_port, wikid_cert_path, wikid_cert_pass, wikid_ca_store_path, wikid_ca_store_pass)
+
+        print "Wikid. Initialized successfully"
+        return True   
+
+    def destroy(self, configurationAttributes):
+        print "Wikid. Destroy"
+        print "Wikid. Destroyed successfully"
+        return True
+
+    def getApiVersion(self):
+        return 1
+
+    def isValidAuthenticationMethod(self, usageType, configurationAttributes):
+        return True
+
+    def getAlternativeAuthenticationMethod(self, usageType, configurationAttributes):
+        return None
+
+    def authenticate(self, configurationAttributes, requestParameters, step):
+        print "Wikid. Authentication. Checking client"
+
+        if (not self.wc.isConnected()):
+            print "Wikid. Authentication. Wikid client state is invalid"
+            return False
+
+        authenticationService = CdiUtil.bean(AuthenticationService)
+
+        identity = CdiUtil.bean(Identity)
+        credentials = identity.getCredentials()
+
+        is_wikid_registration = False
+        sessionAttributes = identity.getSessionId().getSessionAttributes()
+        if (sessionAttributes != None) and sessionAttributes.containsKey("wikid_registration"):
+            is_wikid_registration = java.lang.Boolean.valueOf(sessionAttributes.get("wikid_registration"))
+
+        wikid_server_code = configurationAttributes.get("wikid_server_code").getValue2()
+
+        user_name = credentials.getUsername()
+
+        if (step == 1):
+            print "Wikid. Authenticate for step 1"
+
+            user_password = credentials.getPassword()
+
+            logged_in = False
+            if (StringHelper.isNotEmptyString(user_name) and StringHelper.isNotEmptyString(user_password)):
+                userService = CdiUtil.bean(UserService)
+                logged_in = authenticationService.authenticate(user_name, user_password)
+
+            if (not logged_in):
+                return False
+
+            print "Wikid. Authenticate for step 1. Attempting to find wikid_user: " + user_name
+            wc_user = self.wc.findUser(wikid_server_code, user_name)
+
+            if (wc_user == None):
+                print "Wikid. Authenticate for step 1. There is no associated devices for user: " +  user_name
+                print "Wikid. Authenticate for step 1. Setting count steps to 3"
+                identity.setWorkingParameter("wikid_count_login_steps", 3)
+                identity.setWorkingParameter("wikid_registration", True)
+            else:
+                identity.setWorkingParameter("wikid_count_login_steps", 2)
+
+            return True
+        elif (is_wikid_registration):
+            print "Wikid. Authenticate for step wikid_register_device"
+
+            userService = CdiUtil.bean(UserService)
+
+            wikid_regcode_array = requestParameters.get("regcode")
+            if ArrayHelper.isEmpty(wikid_regcode_array):
+                print "Wikid. Authenticate for step wikid_register_device. Regcode is empty"
+                return False
+
+            wikid_regcode = wikid_regcode_array[0]
+
+            print "Wikid. Authenticate for step wikid_register_device. User: " + user_name + ", regcode: " + wikid_regcode 
+            
+            register_result = self.wc.registerUsername(user_name, wikid_regcode, wikid_server_code)
+
+            is_valid = register_result == 0
+            if is_valid:
+                print "Wikid. Authenticate for step wikid_register_device. User: " + user_name + " token registered successfully"
+
+                # Add wikid_regcode to user UIDs
+                find_user_by_uid = userService.addUserAttribute(user_name, "oxExternalUid", "wikid:" + wikid_regcode)
+                if (find_user_by_uid == None):
+                    print "Wikid. Authenticate for step wikid_register_device. Failed to update user: " + user_name
+                    is_valid = False
+                else:
+                    identity.setWorkingParameter("wikid_registration", False)
+            else:
+                print "Wikid. Authenticate for step wikid_register_device. Failed to register user: " + user_name + " token:" + wikid_regcode + ". Registration result:", register_result
+
+            return is_valid
+        elif (not is_wikid_registration):
+            print "Wikid. Authenticate for step wikid_check_passcode"
+
+            wikid_passcode_array = requestParameters.get("passcode")
+            if ArrayHelper.isEmpty(wikid_passcode_array):
+                print "Wikid. Authenticate for step wikid_check_passcode. Passcode is empty"
+                return False
+
+            wikid_passcode = wikid_passcode_array[0]
+
+            print "Wikid. Authenticate for step wikid_check_passcode. wikid_user: " + user_name
+            
+            is_valid = self.wc.CheckCredentials(user_name, wikid_passcode, wikid_server_code)
+
+            if is_valid:
+                print "Wikid. Authenticate for step wikid_check_passcode. wikid_user: " + user_name + " authenticated successfully"
+            else:
+                print "Wikid. Authenticate for step wikid_check_passcode. Failed to authenticate. wikid_user: " + user_name
+
+            return is_valid
+        else:
+            return False
+
+    def getExtraParametersForStep(self, configurationAttributes, step):
+        if (step == 2):
+            return Arrays.asList("wikid_registration", "wikid_count_login_steps")
+        elif (step == 3):
+            return Arrays.asList("wikid_registration")
+
+        return None
+
+    def prepareForStep(self, configurationAttributes, requestParameters, step):
+        if (step == 1):
+            print "Wikid. Prepare for step 1"
+
+            return True
+        elif (step == 2):
+            print "Wikid. Prepare for step 2"
+
+            return True
+        elif (step == 2):
+            print "Wikid. Prepare for step 3"
+
+            return True
+        else:
+            return False
+
+    def getCountAuthenticationSteps(self, configurationAttributes):
+        identity = CdiUtil.bean(Identity)
+        
+        sessionAttributes = identity.getSessionId().getSessionAttributes()
+        if (sessionAttributes != None) and sessionAttributes.containsKey("wikid_count_login_steps"):
+            return java.lang.Integer.valueOf(sessionAttributes.get("wikid_count_login_steps"))
+
+        return 2
+
+    def getPageForStep(self, configurationAttributes, step):
+        identity = CdiUtil.bean(Identity)
+
+        is_wikid_registration = False
+        if (identity.isSetWorkingParameter("wikid_registration")):
+            is_wikid_registration = identity.getWorkingParameter("wikid_registration")
+
+        if (step == 2):
+            if (is_wikid_registration):
+                return "/auth/wikid/wikidregister.xhtml"
+            else:
+                return "/auth/wikid/wikidlogin.xhtml"
+        if (step == 3):
+            return "/auth/wikid/wikidlogin.xhtml"
+
+        return ""
+
+    def logout(self, configurationAttributes, requestParameters):
+        return True
diff --git a/oxAuth/Server/integrations/Migration_stepts_to_3.1.x.txt b/oxAuth/Server/integrations/Migration_stepts_to_3.1.x.txt
new file mode 100644
index 00000000..fbb90bb2
--- /dev/null
+++ b/oxAuth/Server/integrations/Migration_stepts_to_3.1.x.txt
@@ -0,0 +1,72 @@
+1. Replace:
+from org.jboss.seam import Component
+from org.jboss.seam.security import Identity
+
+with:
+from org.xdi.service.cdi.util import CdiUtil
+from org.xdi.oxauth.security import Identity
+
+2. Replace:
+Component.getInstance(Bean)
+
+with:
+CdiUtil.bean(Bean)
+
+3. Remove:
+from org.jboss.seam.contexts import Contexts
+
+4. Replace:
+FacesContext.getCurrentInstance()
+
+with:
+CdiUtil.bean(FacesContext)
+
+5. Instead of:
+from org.jboss.seam.contexts import Contexts
+...
+context = Contexts.getEventContext()
+context.set(param, value)
+context.get(param)
+
+use:
+from org.xdi.oxauth.security import Identity
+...
+identity = CdiUtil.bean(Identity)
+identity.setWorkingParameter(param, value)
+identity.getWorkingParameter(param)
+
+6. Replace:
+context = Contexts.getEventContext()
+context.get("sessionAttributes")
+
+with:
+identity = CdiUtil.bean(Identity)
+identity.getSessionId().getSessionAttributes()
+
+7. To add faces messages instead of:
+from org.jboss.seam.faces import FacesMessages
+from org.jboss.seam.international import StatusMessage
+...
+facesMessages = FacesMessages.instance()
+facesMessages.add(StatusMessage.Severity.ERROR, "Error message")
+FacesContext.getCurrentInstance().getExternalContext().getExternalContext().getFlash().setKeepMessages(True)
+
+use:
+from org.gluu.jsf2.message import FacesMessages
+from javax.faces.application import FacesMessage
+...
+facesMessages = CdiUtil.bean(FacesMessages)
+facesMessages.add(FacesMessage.SEVERITY_ERROR, "Error message")
+facesMessages.setKeepMessages()
+
+8. To authenticate user instead of:
+from org.xdi.oxauth.service import UserService
+...
+userService = CdiUtil.bean(UserService)
+logged_in = userService.authenticate(user_name, user_password)
+
+use
+from org.xdi.oxauth.service import AuthenticationService
+...
+authenticationService = CdiUtil.bean(AuthenticationService)
+logged_in = authenticationService.authenticate(user_name, user_password)
diff --git a/oxAuth/Server/integrations/Migration_stepts_to_4.0.txt b/oxAuth/Server/integrations/Migration_stepts_to_4.0.txt
new file mode 100644
index 00000000..15898b37
--- /dev/null
+++ b/oxAuth/Server/integrations/Migration_stepts_to_4.0.txt
@@ -0,0 +1,6 @@
+# Steps to upgrade custom scripts to cope with new structure.
+
+## Packages renamed
+   1. All packages starting **org.xdi** has been renamed to start with **org.gluu**.
+## Packages moved
+  1. The class named **GluuStatus** has been move from **org.gluu.ldap.model** to **org.gluu.model** 
diff --git a/oxAuth/Server/integrations/ThumbSignIn/README.md b/oxAuth/Server/integrations/ThumbSignIn/README.md
new file mode 100644
index 00000000..aba6a825
--- /dev/null
+++ b/oxAuth/Server/integrations/ThumbSignIn/README.md
@@ -0,0 +1,7 @@
+# ThumbSignIn
+
+ThumbSignIn can be integrated with Gluu Server to achieve strong authentication for enterprise applications. The administrator of an organization can deploy the ThumbSignIn Java SDK, UI components and custom Jython script in the Gluu server.  Here, ThumbSignIn is integrated with Gluu server as a primary authenticator to achieve passwordless login. The user will be able to login to the Gluu server with just his/her biometrics and there is no need for the password.  For the first time user, the user can login with his/her LDAP credentials and then can register through ThumbSignIn mobile app. For the subsequent logins, the user can directly login to Gluu server with his/her biometric.  
+
+- [Steps to perform Integration](https://thumbsignin.com/download/thumbsigninGluuIntegrationDoc)
+
+For more information about ThumbSignIn, see their [website](http://thumbsignin.com)
diff --git a/oxAuth/Server/integrations/ThumbSignIn/ThumbSignInExternalAuthenticator.py b/oxAuth/Server/integrations/ThumbSignIn/ThumbSignInExternalAuthenticator.py
new file mode 100644
index 00000000..f8ae3700
--- /dev/null
+++ b/oxAuth/Server/integrations/ThumbSignIn/ThumbSignInExternalAuthenticator.py
@@ -0,0 +1,319 @@
+# Author: ThumbSignIn
+
+from org.gluu.service.cdi.util import CdiUtil
+from org.gluu.oxauth.security import Identity
+from org.gluu.model.custom.script.type.auth import PersonAuthenticationType
+from org.gluu.oxauth.service import AuthenticationService
+from org.gluu.util import StringHelper
+from org.gluu.oxauth.util import ServerUtil
+from com.pramati.ts.thumbsignin_java_sdk import ThumbsigninApiController
+from org.json import JSONObject
+from org.gluu.oxauth.model.util import Base64Util
+from java.lang import String
+
+import java
+
+
+class PersonAuthentication(PersonAuthenticationType):
+
+    def __init__(self, current_time_millis):
+        self.currentTimeMillis = current_time_millis
+        self.thumbsigninApiController = ThumbsigninApiController()
+
+    def init(self, customScript, configuration_attributes):
+        print "ThumbSignIn. Initialization"
+
+        global ts_host
+        ts_host = configuration_attributes.get("ts_host").getValue2()
+        print "ThumbSignIn. Initialization. Value of ts_host is %s" % ts_host
+
+        global ts_api_key
+        ts_api_key = configuration_attributes.get("ts_apiKey").getValue2()
+        print "ThumbSignIn. Initialization. Value of ts_api_key is %s" % ts_api_key
+
+        global ts_api_secret
+        ts_api_secret = configuration_attributes.get("ts_apiSecret").getValue2()
+
+        global ts_statusPath
+        ts_statusPath = "/ts/secure/txn-status/"
+
+        global AUTHENTICATE
+        AUTHENTICATE = "authenticate"
+
+        global REGISTER
+        REGISTER = "register"
+
+        global TRANSACTION_ID
+        TRANSACTION_ID = "transactionId"
+
+        global USER_ID
+        USER_ID = "userId"
+
+        global USER_LOGIN_FLOW
+        USER_LOGIN_FLOW = "userLoginFlow"
+
+        global THUMBSIGNIN_AUTHENTICATION
+        THUMBSIGNIN_AUTHENTICATION = "ThumbSignIn_Authentication"
+
+        global THUMBSIGNIN_REGISTRATION
+        THUMBSIGNIN_REGISTRATION = "ThumbSignIn_Registration"
+
+        global THUMBSIGNIN_LOGIN_POST_REGISTRATION
+        THUMBSIGNIN_LOGIN_POST_REGISTRATION = "ThumbSignIn_RegistrationSucess"
+
+        global RELYING_PARTY_ID
+        RELYING_PARTY_ID = "relyingPartyId"
+
+        global RELYING_PARTY_LOGIN_URL
+        RELYING_PARTY_LOGIN_URL = "relyingPartyLoginUrl"
+
+        global TSI_LOGIN_PAGE
+        TSI_LOGIN_PAGE = "/auth/thumbsignin/tsLogin.xhtml"
+
+        global TSI_REGISTER_PAGE
+        TSI_REGISTER_PAGE = "/auth/thumbsignin/tsRegister.xhtml"
+
+        global TSI_LOGIN_POST_REGISTRATION_PAGE
+        TSI_LOGIN_POST_REGISTRATION_PAGE = "/auth/thumbsignin/tsRegistrationSuccess.xhtml"
+
+        print "ThumbSignIn. Initialized successfully"
+        return True
+
+    @staticmethod
+    def set_relying_party_login_url(identity):
+        print "ThumbSignIn. Inside set_relying_party_login_url..."
+        session_id = identity.getSessionId()
+        session_attribute = session_id.getSessionAttributes()
+        state_jwt_token = session_attribute.get("state")
+        print "ThumbSignIn. Value of state_jwt_token is %s" % state_jwt_token
+        relying_party_login_url = ""
+        if (state_jwt_token is None) or ("." not in state_jwt_token):
+            print "ThumbSignIn. Value of state parameter is not in the format of JWT Token"
+            identity.setWorkingParameter(RELYING_PARTY_LOGIN_URL, relying_party_login_url)
+            return None
+
+        state_jwt_token_array = String(state_jwt_token).split("\\.")
+        state_jwt_token_payload = state_jwt_token_array[1]
+        state_payload_str = String(Base64Util.base64urldecode(state_jwt_token_payload), "UTF-8")
+        state_payload_json = JSONObject(state_payload_str)
+        print "ThumbSignIn. Value of state JWT token Payload is %s" % state_payload_json
+        if state_payload_json.has("additional_claims"):
+            additional_claims = state_payload_json.get("additional_claims")
+            relying_party_id = additional_claims.get(RELYING_PARTY_ID)
+            print "ThumbSignIn. Value of relying_party_id is %s" % relying_party_id
+            identity.setWorkingParameter(RELYING_PARTY_ID, relying_party_id)
+
+            if String(relying_party_id).startsWith("google.com"):
+                # google.com/a/unphishableenterprise.com
+                relying_party_id_array = String(relying_party_id).split("/")
+                google_domain = relying_party_id_array[2]
+                print "ThumbSignIn. Value of google_domain is %s" % google_domain
+                relying_party_login_url = "https://www.google.com/accounts/AccountChooser?hd="+ google_domain + "%26continue=https://apps.google.com/user/hub"
+                # elif (String(relying_party_id).startsWith("xyz")):
+                # relying_party_login_url = "xyz.com"
+            else:
+                # If relying_party_login_url is empty, Gluu's default login URL will be used
+                relying_party_login_url = ""
+
+        print "ThumbSignIn. Value of relying_party_login_url is %s" % relying_party_login_url
+        identity.setWorkingParameter(RELYING_PARTY_LOGIN_URL, relying_party_login_url)
+        return None
+
+    def initialize_thumbsignin(self, identity, request_path):
+        # Invoking the authenticate/register ThumbSignIn API via the Java SDK
+        thumbsignin_response = self.thumbsigninApiController.handleThumbSigninRequest(request_path, ts_api_key, ts_api_secret)
+        print "ThumbSignIn. Value of thumbsignin_response is %s" % thumbsignin_response
+
+        thumbsignin_response_json = JSONObject(thumbsignin_response)
+        transaction_id = thumbsignin_response_json.get(TRANSACTION_ID)
+        status_request_type = "authStatus" if request_path == AUTHENTICATE else "regStatus"
+        status_request = status_request_type + "/" + transaction_id
+        print "ThumbSignIn. Value of status_request is %s" % status_request
+
+        authorization_header = self.thumbsigninApiController.getAuthorizationHeaderJsonStr(status_request, ts_api_key, ts_api_secret)
+        print "ThumbSignIn. Value of authorization_header is %s" % authorization_header
+        # {"authHeader":"HmacSHA256 Credential=X,SignedHeaders=accept;content-type;x-ts-date,Signature=X","XTsDate":"X"}
+        authorization_header_json = JSONObject(authorization_header)
+        auth_header = authorization_header_json.get("authHeader")
+        x_ts_date = authorization_header_json.get("XTsDate")
+
+        tsi_response_key = "authenticateResponseJsonStr" if request_path == AUTHENTICATE else "registerResponseJsonStr"
+        identity.setWorkingParameter(tsi_response_key, thumbsignin_response)
+        identity.setWorkingParameter("authorizationHeader", auth_header)
+        identity.setWorkingParameter("xTsDate", x_ts_date)
+        return None
+
+    def prepareForStep(self, configuration_attributes, request_parameters, step):
+        print "ThumbSignIn. Inside prepareForStep. Step %d" % step
+        identity = CdiUtil.bean(Identity)
+        authentication_service = CdiUtil.bean(AuthenticationService)
+
+        identity.setWorkingParameter("ts_host", ts_host)
+        identity.setWorkingParameter("ts_statusPath", ts_statusPath)
+
+        self.set_relying_party_login_url(identity)
+
+        if step == 1 or step == 3:
+            print "ThumbSignIn. Prepare for step 1"
+            self.initialize_thumbsignin(identity, AUTHENTICATE)
+            return True
+
+        elif step == 2:
+            print "ThumbSignIn. Prepare for step 2"
+            if identity.isSetWorkingParameter(USER_LOGIN_FLOW):
+                user_login_flow = identity.getWorkingParameter(USER_LOGIN_FLOW)
+                print "ThumbSignIn. Value of user_login_flow is %s" % user_login_flow
+            user = authentication_service.getAuthenticatedUser()
+            if user is None:
+                print "ThumbSignIn. Prepare for step 2. Failed to determine user name"
+                return False
+            user_name = user.getUserId()
+            print "ThumbSignIn. Prepare for step 2. user_name: " + user_name
+            if user_name is None:
+                return False
+            identity.setWorkingParameter(USER_ID, user_name)
+            self.initialize_thumbsignin(identity, REGISTER + "/" + user_name)
+            return True
+        else:
+            return False
+
+    def get_user_id_from_thumbsignin(self, request_parameters):
+        transaction_id = ServerUtil.getFirstValue(request_parameters, TRANSACTION_ID)
+        print "ThumbSignIn. Value of transaction_id is %s" % transaction_id
+        get_user_request = "getUser/" + transaction_id
+        print "ThumbSignIn. Value of get_user_request is %s" % get_user_request
+
+        get_user_response = self.thumbsigninApiController.handleThumbSigninRequest(get_user_request, ts_api_key, ts_api_secret)
+        print "ThumbSignIn. Value of get_user_response is %s" % get_user_response
+        get_user_response_json = JSONObject(get_user_response)
+        thumbsignin_user_id = get_user_response_json.get(USER_ID)
+        print "ThumbSignIn. Value of thumbsignin_user_id is %s" % thumbsignin_user_id
+        return thumbsignin_user_id
+
+    def authenticate(self, configuration_attributes, request_parameters, step):
+        print "ThumbSignIn. Inside authenticate. Step %d" % step
+        authentication_service = CdiUtil.bean(AuthenticationService)
+        identity = CdiUtil.bean(Identity)
+
+        identity.setWorkingParameter("ts_host", ts_host)
+        identity.setWorkingParameter("ts_statusPath", ts_statusPath)
+
+        if step == 1 or step == 3:
+            print "ThumbSignIn. Authenticate for Step %d" % step
+
+            login_flow = ServerUtil.getFirstValue(request_parameters, "login_flow")
+            print "ThumbSignIn. Value of login_flow parameter is %s" % login_flow
+
+            # Logic for ThumbSignIn Authentication Flow (Either step 1 or step 3)
+            if login_flow == THUMBSIGNIN_AUTHENTICATION or login_flow == THUMBSIGNIN_LOGIN_POST_REGISTRATION:
+                identity.setWorkingParameter(USER_LOGIN_FLOW, login_flow)
+                print "ThumbSignIn. Value of userLoginFlow is %s" % identity.getWorkingParameter(USER_LOGIN_FLOW)
+                logged_in_status = authentication_service.authenticate(self.get_user_id_from_thumbsignin(request_parameters))
+                print "ThumbSignIn. logged_in status : %r" % logged_in_status
+                return logged_in_status
+
+            # Logic for traditional login flow (step 1)
+            print "ThumbSignIn. User credentials login flow"
+            identity.setWorkingParameter(USER_LOGIN_FLOW, THUMBSIGNIN_REGISTRATION)
+            print "ThumbSignIn. Value of userLoginFlow is %s" % identity.getWorkingParameter(USER_LOGIN_FLOW)
+            logged_in = self.authenticate_user_credentials(identity, authentication_service)
+            print "ThumbSignIn. Status of User Credentials based Authentication : %r" % logged_in
+
+            # When the traditional login fails, reinitialize the ThumbSignIn data before sending error response to UI
+            if not logged_in:
+                self.initialize_thumbsignin(identity, AUTHENTICATE)
+                return False
+
+            print "ThumbSignIn. Authenticate successful for step %d" % step
+            return True
+
+        elif step == 2:
+            print "ThumbSignIn. Registration flow (step 2)"
+            self.verify_user_login_flow(identity)
+
+            user = self.get_authenticated_user_from_gluu(authentication_service)
+            if user is None:
+                print "ThumbSignIn. Registration flow (step 2). Failed to determine user name"
+                return False
+
+            user_name = user.getUserId()
+            print "ThumbSignIn. Registration flow (step 2) successful. user_name: %s" % user_name
+            return True
+
+        else:
+            return False
+
+    def authenticate_user_credentials(self, identity, authentication_service):
+        credentials = identity.getCredentials()
+        user_name = credentials.getUsername()
+        user_password = credentials.getPassword()
+        print "ThumbSignIn. user_name: " + user_name
+        logged_in = False
+        if StringHelper.isNotEmptyString(user_name) and StringHelper.isNotEmptyString(user_password):
+            logged_in = self.authenticate_user_in_gluu_ldap(authentication_service, user_name, user_password)
+        return logged_in
+
+    @staticmethod
+    def authenticate_user_in_gluu_ldap(authentication_service, user_name, user_password):
+        return authentication_service.authenticate(user_name, user_password)
+
+    @staticmethod
+    def get_authenticated_user_from_gluu(authentication_service):
+        return authentication_service.getAuthenticatedUser()
+
+    @staticmethod
+    def verify_user_login_flow(identity):
+        if identity.isSetWorkingParameter(USER_LOGIN_FLOW):
+            user_login_flow = identity.getWorkingParameter(USER_LOGIN_FLOW)
+            print "ThumbSignIn. Value of user_login_flow is %s" % user_login_flow
+        else:
+            identity.setWorkingParameter(USER_LOGIN_FLOW, THUMBSIGNIN_REGISTRATION)
+            print "ThumbSignIn. Setting the value of user_login_flow to %s" % identity.getWorkingParameter(USER_LOGIN_FLOW)
+
+    def getExtraParametersForStep(self, configuration_attributes, step):
+        return None
+
+    def getCountAuthenticationSteps(self, configuration_attributes):
+        print "ThumbSignIn. Inside getCountAuthenticationSteps.."
+        identity = CdiUtil.bean(Identity)
+
+        user_login_flow = identity.getWorkingParameter(USER_LOGIN_FLOW)
+        print "ThumbSignIn. Value of userLoginFlow is %s" % user_login_flow
+        if user_login_flow == THUMBSIGNIN_AUTHENTICATION:
+            print "ThumbSignIn. Total Authentication Steps is: 1"
+            return 1
+        print "ThumbSignIn. Total Authentication Steps is: 3"
+        return 3
+
+    def getPageForStep(self, configuration_attributes, step):
+        print "ThumbSignIn. Inside getPageForStep. Step %d" % step
+        if step == 3:
+            return TSI_LOGIN_POST_REGISTRATION_PAGE
+        thumbsignin_page = TSI_REGISTER_PAGE if step == 2 else TSI_LOGIN_PAGE
+        return thumbsignin_page
+
+    def destroy(self, configurationAttributes):
+        print "ThumbSignIn. Destroy"
+        return True
+
+    def getApiVersion(self):
+        return 11
+        
+    def getAuthenticationMethodClaims(self, requestParameters):
+        return None
+        
+    def isValidAuthenticationMethod(self, usageType, configurationAttributes):
+        return True
+
+    def getAlternativeAuthenticationMethod(self, usageType, configurationAttributes):
+        return None
+
+    def getNextStep(self, configurationAttributes, requestParameters, step):
+        return -1
+
+    def getLogoutExternalUrl(self, configurationAttributes, requestParameters):
+        print "Get external logout URL call"
+        return None
+
+    def logout(self, configurationAttributes, requestParameters):
+        return True
diff --git a/oxAuth/Server/integrations/acr_router/Readme.txt b/oxAuth/Server/integrations/acr_router/Readme.txt
new file mode 100644
index 00000000..05d3d69e
--- /dev/null
+++ b/oxAuth/Server/integrations/acr_router/Readme.txt
@@ -0,0 +1,3 @@
+This is a person authentication module for oxAuth that enables user to forward authorization endpoint with a different acr_values as specified in the Custom property Key.
+
+1) new_acr_value - It's mandatory property. It's the new acr_value where user will be routed. Please make sure acr_value where user will be redirected is enabled and shown avaialble in acr_values_supported /.well-known/openid-configuration.
diff --git a/oxAuth/Server/integrations/acr_router/acr_router_authenticator.py b/oxAuth/Server/integrations/acr_router/acr_router_authenticator.py
new file mode 100644
index 00000000..61ef8819
--- /dev/null
+++ b/oxAuth/Server/integrations/acr_router/acr_router_authenticator.py
@@ -0,0 +1,68 @@
+# oxAuth is available under the MIT License (2008). See http://opensource.org/licenses/MIT for full text.
+# Copyright (c) 2016, Gluu
+#
+# Author: Yuriy Movchan
+#
+
+from org.gluu.model.custom.script.type.auth import PersonAuthenticationType
+
+
+class PersonAuthentication(PersonAuthenticationType):
+    def __init__(self, currentTimeMillis):
+        self.currentTimeMillis = currentTimeMillis
+
+    def init(self, customScript, configurationAttributes):
+        print "ACR Router. Initialization"
+        if not configurationAttributes.containsKey("new_acr_value"):
+            print "ACR Router. Initialization. Property new_acr_value is mandatory"
+            return False
+        print "ACR Router. Initialized successfully"
+        return True   
+
+    def destroy(self, configurationAttributes):
+        print "ACR Router. Destroy"
+        print "ACR Router. Destroyed successfully"
+
+        return True
+        
+    def getAuthenticationMethodClaims(self, requestParameters):
+        return None
+
+    def getApiVersion(self):
+        return 11
+
+    def isValidAuthenticationMethod(self, usageType, configurationAttributes):
+        return False
+
+    def getAlternativeAuthenticationMethod(self, usageType, configurationAttributes):
+        print "ACR Router. get new acr value"
+        new_acr_value = configurationAttributes.get("new_acr_value").getValue2()
+        # Put your custom logic to determine if routing required here...
+        return new_acr_value
+
+
+    def authenticate(self, configurationAttributes, requestParameters, step):
+        return False
+
+    def prepareForStep(self, configurationAttributes, requestParameters, step):
+        return True
+
+    def getExtraParametersForStep(self, configurationAttributes, step):
+        return None
+
+    def getCountAuthenticationSteps(self, configurationAttributes):
+        return 1
+
+    def getPageForStep(self, configurationAttributes, step):
+        return ""
+
+    def getNextStep(self, configurationAttributes, requestParameters, step):
+        return -1
+
+    def getLogoutExternalUrl(self, configurationAttributes, requestParameters):
+        print "Get external logout URL call"
+        return None
+
+
+    def logout(self, configurationAttributes, requestParameters):
+        return True
diff --git a/oxAuth/Server/integrations/acr_saml_router/Readme.txt b/oxAuth/Server/integrations/acr_saml_router/Readme.txt
new file mode 100644
index 00000000..c326e9d0
--- /dev/null
+++ b/oxAuth/Server/integrations/acr_saml_router/Readme.txt
@@ -0,0 +1 @@
+In order to pass additional AuthZ parameters to session we need to add to authorizationRequestCustomAllowedParameters oxAuth property issuerId and entityId
diff --git a/oxAuth/Server/integrations/acr_saml_router/acr_smal_router_authenticator.py b/oxAuth/Server/integrations/acr_saml_router/acr_smal_router_authenticator.py
new file mode 100644
index 00000000..866c2603
--- /dev/null
+++ b/oxAuth/Server/integrations/acr_saml_router/acr_smal_router_authenticator.py
@@ -0,0 +1,82 @@
+# oxAuth is available under the MIT License (2008). See http://opensource.org/licenses/MIT for full text.
+# Copyright (c) 2023, Gluu
+#
+# Author: Yuriy Movchan
+#
+from org.gluu.service.cdi.util import CdiUtil
+from org.gluu.oxauth.security import Identity
+from org.gluu.oxauth.util import ServerUtil
+from org.gluu.util import StringHelper
+
+from org.gluu.model.custom.script.type.auth import PersonAuthenticationType
+
+
+class PersonAuthentication(PersonAuthenticationType):
+    def __init__(self, currentTimeMillis):
+        self.currentTimeMillis = currentTimeMillis
+
+    def init(self, customScript, configurationAttributes):
+        print "ACR SAML Router. Initialization"
+        print "ACR SAML Router. Initialized successfully"
+        return True   
+
+    def destroy(self, configurationAttributes):
+        print "ACR SAML Router. Destroy"
+        print "ACR SAML Router. Destroyed successfully"
+
+        return True
+        
+    def getAuthenticationMethodClaims(self, requestParameters):
+        return None
+
+    def getApiVersion(self):
+        return 11
+
+    def isValidAuthenticationMethod(self, usageType, configurationAttributes):
+        return False
+
+    def getAlternativeAuthenticationMethod(self, usageType, configurationAttributes):
+        print "ACR SAML Router. Get new acr value"
+        # !!!Note: oxAuth stores in session only known parameters
+        # We need to add to authorizationRequestCustomAllowedParameters oxAuth property issuerId and entityId
+
+        identity = CdiUtil.bean(Identity)
+        identity.getSessionId().getSessionAttributes()
+
+        session_attributes = identity.getSessionId().getSessionAttributes()
+        if session_attributes.containsKey("issuerId") and session_attributes.containsKey("entityId"):
+
+            issuerId = session_attributes.get("issuerId")
+            entityId = session_attributes.get("entityId")
+            redirect_uri = session_attributes.get("redirect_uri")
+            print "ACR SAML Router. issuerId: %s, entityId: %s, redirect_uri: %s: " % (issuerId, entityId, redirect_uri)
+            if StringHelper.equalsIgnoreCase(issuerId, "https://samltest.id/saml/sp"):
+                print "ACR SAML Router. Redirect to super_gluu"
+                return "super_gluu"
+
+        print "ACR SAML Router. Redirect to default method"
+        return "basic"
+
+    def authenticate(self, configurationAttributes, requestParameters, step):
+        return False
+
+    def prepareForStep(self, configurationAttributes, requestParameters, step):
+        return True
+
+    def getExtraParametersForStep(self, configurationAttributes, step):
+        return None
+
+    def getCountAuthenticationSteps(self, configurationAttributes):
+        return 1
+
+    def getPageForStep(self, configurationAttributes, step):
+        return ""
+
+    def getNextStep(self, configurationAttributes, requestParameters, step):
+        return -1
+
+    def getLogoutExternalUrl(self, configurationAttributes, requestParameters):
+        return None
+
+    def logout(self, configurationAttributes, requestParameters):
+        return True
diff --git a/oxAuth/Server/integrations/allowed_countries/allowed_countries.py b/oxAuth/Server/integrations/allowed_countries/allowed_countries.py
new file mode 100644
index 00000000..9da3a44f
--- /dev/null
+++ b/oxAuth/Server/integrations/allowed_countries/allowed_countries.py
@@ -0,0 +1,155 @@
+# oxAuth is available under the MIT License (2008). See http://opensource.org/licenses/MIT for full text.
+# Copyright (c) 2016, Gluu
+#
+# Author: Yuriy Movchan
+#
+
+from java.util import Arrays
+from org.apache.http.params import CoreConnectionPNames
+from org.gluu.service.cdi.util import CdiUtil
+from org.gluu.oxauth.security import Identity
+from org.gluu.model.custom.script.type.auth import PersonAuthenticationType
+from org.gluu.oxauth.model.config import ConfigurationFactory
+from org.gluu.oxauth.service import UserService, AuthenticationService, SessionIdService
+from org.gluu.oxauth.service.net import HttpService
+from org.gluu.oxauth.util import ServerUtil
+from org.gluu.util import StringHelper
+from org.gluu.oxauth.service.common import EncryptionService
+from java.util import Arrays, HashMap, IdentityHashMap
+
+import java
+import datetime
+import urllib
+
+import sys
+import json
+
+
+class PersonAuthentication(PersonAuthenticationType):
+    def __init__(self, currentTimeMillis):
+        self.currentTimeMillis = currentTimeMillis
+
+    def init(self, customScript,  configurationAttributes):
+        print "Basic. Initialization"
+        self.allowedCountries = configurationAttributes.get("allowed_countries").getValue2()
+        print "Basic. Initialized successfully"
+        return True   
+
+    def destroy(self, configurationAttributes):
+        print "Basic. Destroy"
+        print "Basic. Destroyed successfully"
+        return True
+
+    def getApiVersion(self):
+        return 11
+
+    def getAuthenticationMethodClaims(self, requestParameters):
+        return None
+
+    def isValidAuthenticationMethod(self, usageType, configurationAttributes):
+        return True
+
+    def getAlternativeAuthenticationMethod(self, usageType, configurationAttributes):
+        return None
+
+    def authenticate(self, configurationAttributes, requestParameters, step):
+        identity = CdiUtil.bean(Identity)
+        session_attributes = identity.getSessionId().getSessionAttributes()
+        authenticationService = CdiUtil.bean(AuthenticationService)
+        allowedCountriesListArray = StringHelper.split(self.allowedCountries, ",")
+        if (len(allowedCountriesListArray) > 0 and session_attributes.containsKey("remote_ip")):
+            remote_ip = session_attributes.get("remote_ip")
+	    remote_loc_dic = self.determineGeolocationData(remote_ip)
+	    if remote_loc_dic == None:
+	        print "Super-Gluu. Prepare for step 2. Failed to determine remote location by remote IP '%s'" % remote_ip
+	        return
+	    remote_loc = "%s" % ( remote_loc_dic['countryCode'])
+            print "Your remote location is "+remote_loc
+            if remote_loc in allowedCountriesListArray:
+                print "you are allowed to access"
+            else:
+                return False
+      
+
+        if (step == 1):
+            print "Basic. Authenticate for step 1"
+            identity = CdiUtil.bean(Identity)
+            credentials = identity.getCredentials()
+            user_name = credentials.getUsername()
+            user_password = credentials.getPassword()
+
+            logged_in = False
+            if (StringHelper.isNotEmptyString(user_name) and StringHelper.isNotEmptyString(user_password)):
+                logged_in = authenticationService.authenticate(user_name, user_password)
+
+            if (not logged_in):
+                return False
+
+            return True
+        else:
+            return False
+
+    def prepareForStep(self, configurationAttributes, requestParameters, step):
+        if (step == 1):
+            print "Basic. Prepare for Step 1"
+            return True
+        else:
+            return False
+
+    def getExtraParametersForStep(self, configurationAttributes, step):
+        return None
+
+    def getCountAuthenticationSteps(self, configurationAttributes):
+        return 1
+
+    def getPageForStep(self, configurationAttributes, step):
+        return ""
+
+    def logout(self, configurationAttributes, requestParameters):
+        return True
+
+    def determineGeolocationData(self, remote_ip):
+        print "Super-Gluu. Determine remote location. remote_ip: '%s'" % remote_ip
+        httpService = CdiUtil.bean(HttpService)
+        http_client = httpService.getHttpsClient()
+        http_client_params = http_client.getParams()
+        http_client_params.setIntParameter(CoreConnectionPNames.CONNECTION_TIMEOUT, 15 * 1000)
+        geolocation_service_url = "http://ip-api.com/json/%s?fields=520191" % remote_ip
+        geolocation_service_headers = { "Accept" : "application/json" }
+        try:
+            http_service_response = httpService.executeGet(http_client, geolocation_service_url,  geolocation_service_headers)
+            http_response = http_service_response.getHttpResponse()
+        except:
+            print "Super-Gluu. Determine remote location. Exception: ", sys.exc_info()[1]
+            return None
+
+        try:
+            if not httpService.isResponseStastusCodeOk(http_response):
+                print "Super-Gluu. Determine remote location. Get invalid response from validation server: ", str(http_response.getStatusLine().getStatusCode())
+                httpService.consume(http_response)
+                return None
+            response_bytes = httpService.getResponseContent(http_response)
+            response_string = httpService.convertEntityToString(response_bytes)
+            httpService.consume(http_response)
+        finally:
+            http_service_response.closeConnection()
+
+        if response_string == None:
+            print "Super-Gluu. Determine remote location. Get empty response from location server"
+            return None
+
+     
+        response = json.loads(response_string)
+        
+        if not StringHelper.equalsIgnoreCase(response['status'], "success"):
+            print "Super-Gluu. Determine remote location. Get response with status: '%s'" % response['status']
+            return None
+
+        return response
+
+    def getNextStep(self, configurationAttributes, requestParameters, step):
+        return -1
+
+    def getLogoutExternalUrl(self, configurationAttributes, requestParameters):
+        print "Get external logout URL call"
+        return None
\ No newline at end of file
diff --git a/oxAuth/Server/integrations/allowed_countries/readme.txt b/oxAuth/Server/integrations/allowed_countries/readme.txt
new file mode 100644
index 00000000..3c30d9a4
--- /dev/null
+++ b/oxAuth/Server/integrations/allowed_countries/readme.txt
@@ -0,0 +1,3 @@
+This is a person authentication module for oxAuth to allow access based on the user location.
+
+1) allowed_countries = short Country codes (eg US,UK,IN) separated by comma which will be allowed to access
diff --git a/oxAuth/Server/integrations/authz/ConsentGatheringSample.py b/oxAuth/Server/integrations/authz/ConsentGatheringSample.py
new file mode 100644
index 00000000..378bce80
--- /dev/null
+++ b/oxAuth/Server/integrations/authz/ConsentGatheringSample.py
@@ -0,0 +1,87 @@
+# oxAuth is available under the MIT License (2008). See http://opensource.org/licenses/MIT for full text.
+# Copyright (c) 2017, Gluu
+#
+# Author: Yuriy Movchan
+#
+
+from org.gluu.service.cdi.util import CdiUtil
+from org.gluu.oxauth.security import Identity
+from org.gluu.model.custom.script.type.authz import ConsentGatheringType
+from org.gluu.util import StringHelper
+
+import java
+import random
+
+class ConsentGathering(ConsentGatheringType):
+
+    def __init__(self, currentTimeMillis):
+        self.currentTimeMillis = currentTimeMillis
+
+    def init(self, customScript, configurationAttributes):
+        print "Consent-Gathering. Initializing ..."
+        print "Consent-Gathering. Initialized successfully"
+
+        return True
+
+    def destroy(self, configurationAttributes):
+        print "Consent-Gathering. Destroying ..."
+        print "Consent-Gathering. Destroyed successfully"
+
+        return True
+
+    def getAuthenticationMethodClaims(self, requestParameters):
+        return None
+
+    def getApiVersion(self):
+        return 11
+
+    # Main consent-gather method. Must return True (if gathering performed successfully) or False (if fail).
+    # All user entered values can be access via Map<String, String> context.getPageAttributes()
+    def authorize(self, step, context): # context is reference of org.gluu.oxauth.service.external.context.ConsentGatheringContext
+        print "Consent-Gathering. Authorizing..."
+
+        if step == 1:
+            allowButton = context.getRequestParameters().get("authorizeForm:allowButton")
+            if (allowButton != None) and (len(allowButton) > 0):
+                print "Consent-Gathering. Authorization success for step 1"
+                return True
+
+            print "Consent-Gathering. Authorization declined for step 1"
+        elif step == 2:
+            allowButton = context.getRequestParameters().get("authorizeForm:allowButton")
+            if (allowButton != None) and (len(allowButton) > 0):
+                print "Consent-Gathering. Authorization success for step 2"
+                return True
+
+            print "Consent-Gathering. Authorization declined for step 2"
+
+        return False
+
+    def getNextStep(self, step, context):
+        return -1
+
+    def prepareForStep(self, step, context):
+        if not context.isAuthenticated():
+            print "User is not authenticated. Aborting authorization flow ..."
+            return False
+
+        if step == 2:
+            pageAttributes = context.getPageAttributes()
+            
+            # Generate random consent gathering request
+            consentRequest = "Requested transaction #%s approval for the amount of sum $ %s.00" % ( random.randint(100000, 1000000), random.randint(1, 100) )
+            pageAttributes.put("consent_request", consentRequest)
+            return True
+
+        return True
+
+    def getStepsCount(self, context):
+        return 2
+
+    def getPageForStep(self, step, context):
+        if step == 1:
+            return "/authz/authorize.xhtml"
+        elif step == 2:
+            return "/authz/transaction.xhtml"
+
+        return ""
diff --git a/oxAuth/Server/integrations/authz/docs/Authz design.dia b/oxAuth/Server/integrations/authz/docs/Authz design.dia
new file mode 100644
index 0000000000000000000000000000000000000000..66b1837de3299dfdd5f1c4237c26938f79acb45d
GIT binary patch
literal 4879
zcmV+q6Y%UGiwFP!000023+-LYa^pyL-RmnD>cwnWsk}Ge&8eEOdt$;1KRRaG3(rOY
zkthl-ico-1Rmlr~jeo=bhW;eq1WA#i2ni&Rkf=&V^aE512MOhUzyA2A?>Do-*R)t<
z`TXNKFn&Hr=i_{m&8HvF|NXbWe6Z(#`gHckNtXOf|4fVIW<b9&U-+w!=htO<`}4)c
zw{PFr?0%7ydBJAc9b2Rq|DDWc$ptOCIRA7u7;N8Ql9Y-6ZuM<amPK}TSEhq`a+7{M
zze>hmrbT`?pPVmOt=5h6SzZjjCbN&{KYgw~=NGHnTs*qZGxxqtrs-9YCSU4r&FSOZ
zF}J==i{0Da+~$jnmX!CmPnOi&$Nzh4&1%(x7R{%he)<Rb)AEs4Uu^ER??G!p%A2H^
zX7i^w^loO$7lF(oBE1adtm8%+Sih6Q;ja3HoAnD<^b40QE^qUqERw8z3VD_1vox76
zQOn{kJsxK<PG)q(p4(Q7U3|{UGJoOuKPR(AlMO7texSBPDR)|AljjNd(TbY8e9I=~
z_2u_KuWNbt`#^X9nk}-cS-S7(vw7Ls?eDv}{qA3<;@+EIZ+RM)cdHc-6Pv139WEZG
zciALeyl~7Ouc^7y^=jG0OK*L5UDFq{{Ax#7R}i!0J}p+a|NVb{|G(e=_k6JW<F2^P
zAQ_k0*Y(xb`^c~UGaZ+!jsC4n=98qD3_cA0G5>zP(LYH0$R;1p|BXL>QM+5Cn-LFu
z@}_R{hvQ_J66oX*kfC;J_a!`KA$2fUSGy<$?IW2_XXzSA+BFh5HByS9(RPT6X({w^
z$muM-xg6)k{Heas^(HH*ioHDD=$f@i!?Y8QbHgQCqYSpdx=yp{by*Jvf(evBk`h4+
z1a;&)yvmD7TD-J1&VVmJARPzLfUV#jvyZ*1s|Py{V{x5-yWFE6HxQnOz>wHaFBj$g
zEZs#&=XW=&Bk{tmmtQWaz5yHfXM)_r2cRt<(1M}UZm5`XO1gl2z#~az2}wBQdZZPz
zAk0uR0442l$m4uIzf9+oYDY)ybI(#*!=YL#Xzg(iM(1FByZb!*g!w`2VLrJ`iX#73
zf9w!j-uiNu&Zo~a1l1PeMV8YL!T<H?kP$^Jo-ma4PX^aSLtgw6$&@*f42tu?=EwB6
z;7<<2p5KP`Z|lduZJw$RJI{0=q5qbCFSiICR)mgi30+7gILShyI%%B<Na!0R<b*WZ
zTssT$NaWJLmKXHgoi%kbqH+v8TDRjvsPP~?qjuNXaQVF42jssWd`@n%**!f^GGCkz
zDrr(3(&exIQ#$*amf1MjKAeX?!4q9#FS%L%_#@kaK0b&C9mZqeb~TDxuNCL*fXLjR
z&TrEFf71;MZi=$k+&GLXzE+P^FAYR5N{DF7n=CV03q7P$;k2~@c@rUlGKP>iCpBOM
zz??IRt_?aa11ll5`+T~T9?V+hA5>`0qZ0DYln_!n9xEaG5G4d4uo6;3=&~zo!}MZp
zpw%7;4Onk&I8Z}JrZYD^*&3#itzp3;Jr}B@b)!h;Cu3{iLAHi@9a}@Swl%!z41&}<
zb^NJrW^1gFBvCgZjW)>I3KwmSXlv9T#%OE2Wm}_$H|f^A37M1Jcn;xoSl;x2#Fh5E
z>EYU<jl3!Hre_Xg<V`2Yn@k71Ny;inp*e)+O%)R9O&XTGX@zV=)SDu2dhRer-gJVz
z$+qQ92uy&KLts*bjUTO%I5WhX(2Wq8&=s^YC!sj~N4og&_><KBV}Q5?mljoM{#1J)
zBY!$U{^UB)owRqlS|-riz`B!Ox_7lDq|pXhY7kL(in>$%VT`=#&GDwc%<^yJ>!c`a
zlWn1Ow(SSbBuXLlP>@oM76Y;;k7ZU^!V%WUhn+2G?*WCQW68}jZadm&lbl<}NI6tn
ziK!}J&Mh(y2K~ozWgHwUV0zBEJtQCYaWTvxD7VRE@>t|_6~^mRDqiH@le_ZzqDU9z
zSGe&1pBLGGr9YgsbgPqYls1-QcuigsC2I#&5{|L>zN94tkd_^Zwbsew>m(&$&Kz5X
z&`73vAh85OrAJ7I)VroMGfp0xI^Im6b+N@}(v0{#N=F}5(g|Y%N;Byd0{S=rLnaGK
z6Q$WZlV-nMr{gb!?DNlO9|m`ev>14KM$C$2NSRLP%W09&8Bf1wi*iAi<5@;O9o(kH
zO;*y1DD^^1JwPTrPZJC^*U?1mLg>BhXM)y+6rjnhs#1<xWac)LdMhMBdJ!RwHptQo
ziRfsGj;7kf7`aHVj;2<*;833n9yHGrMC65$7e-zfd12&*AR{k~yfE^@$P3>)FKpl#
zZe0L`f=MH=s_zaP?es`kA(<-H=_Bu2nW14WbgZ+JO~y!P^bPkO>3oQ7vg`6DdU}Ir
zDq6;+l*E%D#y11Fdh2>)wXPLI(%hC!qm)7n8Q}Ct=zMc5X%&n}v?wEnnmGjF0+*}T
z?y_FwX=Y=&`aA4O0c~1ik=pnwT`9nHMdyNnHeuCOPv_RB6KLOvq9SyH^g%!})SxFy
zf3nXSO6UGT4Ud%m?kWAS_A@pFp*OHgZ6|gqoodcBS&Lvo8>UMr>7kaEDalS`M)zTv
zw%%qmO`~brw`uw};*WzOUEJn#x^+JI>#xx~?ZrF=SEV>c^R&NAB-cSnu7RpiG1%ZG
zxfPORs%o=@$dss%#c8xM`PV!a<n~aIyZ<=Gn9~Us<YMchw~bsefxDS(ka*S2WOHp}
zH<K6;fA%m&=5#s%aT_{0sK&#H&_#CwP^O*ZylHm=rKKh$X}C1L`#u_jKKSH>!@wTK
z+I{Zr0S{V9zZBfDeuL;?e6t?LooIkPsPiqpj)xJu7_(8GYRO0i4jM}ENU%hbgfx<Z
zX^Xz+M2p_q&HRg<Y_geqQEId0UQ{-qdr^3v<xM6_ih@uWy^HV7yZG01k`)y{$hYeu
zi3OZ}Cf+c}J}+w}=Xp7p<<n_88D#V5fb3x!jD|`R(85IBy!-n9U+?DQYdXxoke0j8
z)Nfq}q%;%Yyg&#&*MX2wFOj4l;GzW+vg)*C<<ZDDX_>slgC^Oy3@KAPd4)}6s`hSv
zwK2W52r5(EqYt_k6BqjusTG)K7kAGNs@!EFhd_MJX0rwmkH@&bMa7`WD9oo>M0<xa
zcdU=Vj*AJR8!*Nwlw;1K9}7f0;_+yn80$QQf6cPn%PNPQPE;}rHE6ejA$`T4$6z3f
zyQ>A=K0QC0Np%!)X<dS-3{w_-XHss%dKuS9+G}4@jI?jj?0kwlo<_vwmwdkP4R7c>
zvh<>j7o73d9nEOto#4bzY+WJfy_Eu8JMVuZRz*mPGz%XPQJ~yND#o3z0wP91=vjcZ
z``oisl5QfafC$luivf{$HVY721Vn^<rCMNYT|}jo54ro?F(Y`;EHy&XszTD1kVZz4
zHUi5wkrq@)?@cG0Y#0%-+fEJzG2uFfM2^>kfAtL?7oO$^lXRZN#*g7uVZ)h}6<gw@
zkBI1l=%?K=nhqpcHLTe(4BXYiixXWTLDkiQBpC-^jmMdQz;dkp7GvR1lw+?b$Ewc8
zQIPc_$b@xr=$MLqE&3}Q!q#Q5YYoIt`*bQ~tGW#mcZ4+BTw8-YwyKMn`Sph}dWKIX
zGavP9W#+rCcwu<=6d`d^u7`fEt_AeG(DEvamc+FS-Q}ltpEXOR?^K|abFufwdviqZ
z5Gx+!h~}^4h!(Bu5w-LKH~d^-8M^rgL7`njEt`KB&9tX=Uz`)T`A0X~Y+}O$GQ@35
z*F+mW+VCx#f2719i&YDdMI64@k2hNRG1?|}|LD(%7to2~TK(Zv;PU!466vcNB)ZWC
zTF3hOXvIH!8lx3|GFE&b-F}N1{ym%iJ(=#<@((N#J79^GLmD^>+O1cR#jXH+`y*%N
zk{=3>3rrk~Ta?$AO^o<`8+>LVJPH`r&)#jkuo@yRT5K{evd0AXoXmc)l4S4i9r8@c
zU73?=UhYw!J5tW0)1nKfh1uav;-HSD{FTNEiPoi+k~6Lp4kdFaT}ZCBK|*3`dbGY)
z^dBR2)bgU1S9=(vmiOke_#3!XTNfPpTzXLj6`bQXXcoUuj$a~4LK-Q_j3EWbGUZSO
z&57z{lg)CXwA=1>61Xy3t-76nQ&vbTqd)b%`BUj#d9`P&(CsYyydL%Lo1EMh>4%45
zKrv$~xU*II`7TxJud-4``PrAVwRO3gu*^D#J(R0$kiZbqXmjlpf{I#r)WT~IW8@;I
zlQD&_<&kJz&?g<UmirE)#;cDZmHr1LKtdXAuIc=Pjl3}O!rH?adEx2Ao#ZQJj|$V3
zUf4ssSIZPyH~auhODFV5IED&U<q;7!boyxRM)xnZ&iW@+f=sKJKl;8K8DL+UOY6E9
zA{k{h(Gd3odC@?~(w8kTgJ2AdBoU7vkiv;#QMePZ<$l}SCpWgK3vS^(b5NsVbAk<%
zMC&>gAMijYd$76)NgG==OhPidMvDGNK-Dlw>SH}njTMdBeb%?k)oohlMm^)L>KVIc
z!C@05#Oq9ukgdy9B%NxKGeZ!*rD8~v!Xv>72^@};VA5Y2hK2_nAkoPl8#cT4F<Yml
zFHu+8nm9lrMpTcFsFt4g$9Ib|zd2h+R;LMR$o}U)rgGeW5Y@*$Jo6wuMM;dBaX<Z&
zWcwj#q(LgJmt5b3RAD_5Um=09-ttyT+Df!(7qk;#C!1^{+6)uYf&o<ElrmO86m3zo
z9p4a}o|l%dgxc96T{cr9wVJ-mzhvoJ-d(PKbeYA3q416%!*s>SysX0*-s(%%wJt?M
z!xT4tSaF0TmDyNvLiqrZ?!%1hWRp!~on_o%oC6qTT}RCVi+oH%Y>>=m4+8JOiW@A(
zMRrRPuuN|kQNjfu%x##f*jKdXdX;dk3)7JMp0u_H2?vfjy+ZO54i&Rb*<K`E7n^J%
z;b==jZOZ`}C0vwnEn4Z6yQbXPAGSjI>EsVlv;`M!oXLuBMbXx)Xlq^8=okpio&UqZ
z(FtsgM4MyWu8~mb5m+YBlJTai2J9h4TPK^0t=^+-i>=<@zbGU9*Ki|-pu9-au}fUn
zqU>Li>D(Wm!Jo6mmp#d^vULd~dM6r57RQuxAuAX?kX!;ur@TKBlu$zybZn2UGJgvb
z+Pipx%>sLzZ?^%kA?2lHs4aaQ2vp#^Sj7SDaX@<<&|YI!SFYi~nEot_GB47>Bq@`#
zZ1K=#VP$Jag(P@j6g(HULj;d)qCye}xxbk~?y_}>_15V&B50A)28cU3+Pbt_$7U0;
zz`FJ*Mjz(M)K`=3_&U8Nq=}3$GQ!9RBP0A#7-3EMr?g!(-7&%}`&}Z2ZMq|!29G3>
zi;?0C!5N<dAuT}Q^3U3R?q8~uZkL-8%Rf)0{1fyc^`DXlZc<T4>8`W-PsPw3+u62h
zPhCHr%twHo5F-MXz|jM1rFCdRuiNIHrB(HgUM`ifpUgWW^j%Ul2hlmal1Nv)i*h)w
z#p+mx97ia8+gY<FbQmpb)WnL?P3YE9b^F}2RCyg+x8r@0(%&qlLo1Pvwf!K%QaW@{
z3?!AG#uHqmqo1NJSA;G`Re{bDm<T;|kGR@x?pdmsl|F?#68gI&bZkZF;*|)!b=BXp
zQo&Tm8iUSc1j|6{N~Bw1U{n<<Kt)hW^UzJ2YWKNksby$vCDOslXr;e5N*AptT?VG~
zX9o@{(OIH+o5OwR$U$jQjtJSVkWn0s+-T@v?Ixd@CfIywl~8)@MD#`j1>?}bAC@`E
z7M_JCGXq6mYDnw)6?9AqE~)}aJhnixnZ4nd1guIiK`R&uPRzoWJUJgX4IM0~-RIt=
zRvPCY%&2H^ynBNK4^l&R<AQxrdi%LVf(Zq>-LY<_fC!>+tO%X^tbW0)#U-KhW0S_4
zyAbQPxp%2DTD9YSk<i~Pq3@8YXyZYA+W$RJS6HRH=qF^X9ik@78z5{yA%!a>0PyuY
z%4#tr(Qchqq5BE7-ej{98>b#k+6>!l!75UcjI`1jqmC`-i501DHu>()_p~w_4;JJ6
zHeK}(iX|Yy+bdYcD@NsgAw0HM=z5rDozmJ#QZMOfJ;*XbLQqxhsd3u)v|cA13`x-V
zE^?u@*1CP}UuqGnBH5#7Oh>Ktt!k~L|J7xq9bujJmA<cRXOwQ~SPL6Ce}9F9TG-LU
zwPRcyJ4ihy@V~bN{=J7W>I)~6!N1E$`%Cw0o!5(W{IrGY_+d~3o`Ar593_SEIY8R+
ziW8zXBD71sW|z+x`)y=H5S6D%%LEy<sou3Is9^%8Cmx{Nr~E3WNE_)xAMz=`%2iyz
zIyI8OG&tqCfB+FXFju?JJ$V4&dx)EA>Cw5!kqtzns{7=j8nZ}4CuWi8BOmwy$+sZ&
z@%at1M5Ciw6wRXA!x+t?(<yAm)@IT2dY0U$#iz671^qKElABLw{|`%kmN^AU0RUvs
BfCvBp

literal 0
HcmV?d00001

diff --git a/oxAuth/Server/integrations/authz/docs/Authz design.png b/oxAuth/Server/integrations/authz/docs/Authz design.png
new file mode 100644
index 0000000000000000000000000000000000000000..daf70a1d5dda8e1f2061ffc9f75c9bd0cfc99aab
GIT binary patch
literal 26731
zcmd3ObySvLyXLDXqJV(Xjg&M<x6+Mthjf>8tCTb--HoJlhalbEA>G~aGW+G{cfNDZ
znwhm`*8DMhxt2V&pZ)B8*S_xSe!sq#5k-E6`wRksAd8C$$wMIUPau$o!3Yn*nYWgA
zr{F)hj{@R~2nYx>e`FUS5Mqe9&^txv#GN^Q$2=Ll=EFa{O<8ZBh0!!)=*BCWTKi|Q
zR7u9sBS%lqu_?tjKWll$L*>(OfO+GOBlKAK(lhUoEw--Enr-sCpk-CiJ7~IkP^WF!
z5I|dm4|w+A{x2ysIT8rOyNE@)&H)3QaTQcVxWAwqcz=t1Boew_H7W$+j4kAQe*uym
zkPD8RZC6PIkg&iPgnfb?gVv0Wh5?Q_(m6Q-{s@4#JV1pVgBJTL9UMa}6<a@J(?5bh
z_6T5a1<jl46*V|c9pxkb=aHg+x}XnTo+bj<&-a=%RKWkbnUQI4`xxIh3XQNxj|9AY
z0P*G)hK=;?o=LU8GkAZsxk31U{-l3*4*p^k{;z`vr~VGs85=4wq6{rG2hZ+3x}S^r
zOB!jjlCM{D@5|LrG)%IZP0Bc!y6ykWJb*MS-4AagsUk!nna*d^Z_|t4{B~T4+qV(=
zb-B<XqY4h<opygub?K4VtEu<#CS`-T=A$ByL8ltDn0_w<nwhAD3684Px3M&OF=1yd
z&CEp-)IUM<%KOYJFoQ(MXBOsX%}oiw7*Fpfu$savi|%}CF>P>;f&5e2x|c1}xJi|w
zujHCFf13H4V8pN-XPxXJ1Dz&^7hA-E%Cx+*sqM#(&Z-Gj1)ZK}=mME&DK6>~__f*2
zmWrjTyWI^|qu_HjQSLu?`zzZ%_sDGwdF1A{S5b{y@nb>zhEC=(Z40y;KT3-hPf5v%
z6rH}sW4Gf9=D8+ix!Jv*nBu7yk%#<=&1Xj(VU18K%2tB>Oub^1oH5YvNyxo?occ6<
zisg@@z#2|jEA^I$D6E*(s%%?W@JJqUaI_uzz|b3KYekOXcIzgi1lG~(UfhC%n}!1|
z=mr|=oAqk9Ma(9qT#L!T;&R=~&xC%%q@LI7EOBv>KNmXOa^2&#gBBD7!S?ZM0omWE
ze@t#q8Abt#i@6sn8{zRF0`xL!(FA^(aM{9dZ;Xrx1;NLf+9?~(6L=|gPjS6CcJVA}
zvx<{tBCu5MShJ5tH@S7_lP78MT6ii>9%UV~cdFpV3KnAUesr4ODnc4u*apJ>^frhH
z#56+J1MNfjm&T%Lp|0W|D<i)q#B}@58f%n~II#3xB=T+_Vaz-mo#0Qa(^(sN`E)`-
zN&f6?*$o*2DUuCZz8H4^a##%)pZ%1i+6fFB<x2@nOF&Z)`mb6DPW_{(;E%s5!-(V+
z#bak)qG}SPFZ%_UlfQE$c%aggwA*Hje^=jUt%U;~czQo~Z~@QVKJ*7`sK9~AzF(oY
z`{{i|l&GKdP2ww$Xc!D#4Ar6X<y3~Tm-$NsQCQ%~tFwhd8u0&t^T{dy`N)Mkve$Sm
zDwJAduef}59(lQf-Y0+!QBcF>@XVC{^TK-sUK~BL&kSDXY64*KFRx^q{&+%~eN5vW
zx2Ykmfy=S?->34za^5NX+B&J-1#~+x+hF}_yA89BK?ecN!>gZnV4mnzgiyem>?2@r
zn%`s70Q+D={>Pel%{q%QEIIUrYjWJuG3ryA8;mkz!GQC9lZNMBaMx|MS`H5&0>5qD
z!MkpI{9Blmfq7UQKUr5{zCiZ9tMKv|KV4Tjyd=2P;m*#7hd>1N3Q!@z&&78(0(2Pm
zLr?XB&IQQ|EUMqzPa+<ViNPa#5VGmrU8!IR@H7R6?YC<8>U0u;*=r?%nJgQ+@t_7x
z=oHUgW|{Pz?ZcVtp)wWxKYq2S0voc&bHiwrqEKuI1RE7788(&Qr_{%A-FwkMexi&_
zWR8k=+h$k}^n0b`dg&~IP*+iUAweKW5*ZT@Ao}0zFKYNQ9*3+@aO^-BsWi_Hn~&D|
zEJnaefc9Ty<E=uun#r`@%P5#B0fwwE4~z{0;nmkBfrNi$Lu`#(A88gz@IAc5rI1C&
z#TVb<2o$k<iSG!BMW?@Z*6jt;TX??=bl-lx>uSwdC=Cy98kWDbN!LSz3xxGG3lkvX
zoZ<zG61N4RmOGn=Gm@gnmo%1C^&Fwg9A|5xB}cw6sY{|q)Upi-MF;W?fsnq1$ARR6
zyJ}tvOuA6VH4V=jyHKdTc=gP9|28{@NfSqONX+VU>vPDr7DFPGV5B#YjpnQEc!AhG
z9U3iEg0ojP!L(`?;Aw>0%P}cTWy)NzW{^FNay6T<YnVR1MZ7ho|9$i04ML}VYqf#-
zQ;*x19ckti4@eu?fEltu95PB{njx1F0J<cT%HJn^fG44&e)roJzt-sBQd$+}=O!>L
zG5tu778v4oUnBuz>#d;5P}xZ+O#uWuUmD#~`SKw3fIT;i4yY%@57Wa7KHb@@XmDa?
z-l*X>94Qb4%96?w<NfH(YR%=3X9e4`uTsoRYMfdN9qMEK-{o-v5#ETB?<q}T|5jJs
zN3Ee<lW~09=EXNa#U}Ag^|Hdt+;@HEd!h22)U8riHjS{cFXjH}aRrSpjrl8H+P)SI
zGdq6Rx8j-Ob)3EqtDrN&xKi7We5@~==c3ci{+R9@@f431ScSBWf#U2*I`S&#A)^oO
zjee%uQ=V$G$&dQiX*KBaGXkb*ohoByXB+$A+TdpbSsS&7pK@&9U4iwH9iHu;v1rWC
zKFV_+88VU^<vv@xEJyitOb;dBj<2gvwq!LW#1#Is^~HuA45e8p+>HL?FV!5qY1@J4
z_!*iKQ2C8#9mG(uJVkGH?wl)8r&7;u=6~PW_*^sGuF89P()E2dRgMn2C3ztL%=QO2
zHIw$(xTC%bObr|!9q7c}^s1@V)m0zN29&BRWQ9jd4+Ptjn<o^f>}NN6mI>F|nM;%T
z3#&UzO7Fn~eTs#b@AKEcb&$TKUAekSF^}G30?PycJxur90?puy=JV^7cQsF2pDLor
ziVOLBP~8mGPE)l>AhH`}#Y!6INpH&@Thtt}*YI>Ym`P{)rZ}OB_yM1#>#cYkk?BR$
zb#kWS_Y!?!bxZU7cvJSHZTsAFu#S%lELEX~dDu&dCJFG&H%eK-tcmg#1DOexmEzH=
zT)KG+f2Q+VtesJ>-T{fr{<HOCtxEQeFL^U*mT`4qb+=|uVrVVwC6Mn;y0^f_5K028
zZS^Y=XOlSQCHzlp<~Hn&JcXdB#%&)2#dYcJ?GzSwQoN!he#VRX_|a$l`^3RWFk^xx
zJ>o}o(fwmh@6qOhv4LxqMLIo^o&i|%K+|>&I1w-vw}&cGLz6@@x{Z9>0thhcYIqpm
zWOh47b4hi`do8`!D(539LtA-MRDNJ`+(;v9GZ?2g0?oU4%y@%L=3)aitLfS6l_~gI
ze{lS~r5dIf`NN?&cFQVKtTFZ5TleoxDg9~?5MhisgusUJfYf*|<hsTlSloB2431~p
zDcPny4R}W9#N%ww=RBa(^7Z9V-K=6S9`3q?%lMkS6o@P>o0rNF%X8@wB++si#yRBx
zi;?jjo~C1sJqw1WCq34E)RMCKU(;bD$i0DuuFXD3_$QnF(|&vNHjOuhh6p6ROGP9(
zftA47pcb!NC{|*8uv~V=11epnVFu)kcU@1CeLCmlJuuTTmCP5)z$|PPSmIk_6mM>)
zIM3DQ9$8o9I_xGHW94g-X*phTD~i5#Fdt8wUD8?oV_AHC0dpcnl%dPo<C|UKKh{{;
z#qan?N3Ii*K6=~^u)?hmtTHPAmjIan!6?d}N#%2jy(`O7-VJ75v5jePf0fwXUa9%j
zNPQ&4QMriQmIT~8OZlb~vN*lO(fICdw`)m^q-D&lxw1l^F(PSk<Zgvu_Q`43c|IL-
zADX~qk@>T>)=l%77^^ndxE%7Vo^jX6dQ6VXC3{nOu?_m*6O3c$SFZkAWtGWE`yp7?
zvU5TLI(HxWkvmia4hnm&!0W30+y?e>lO5X>A1}g3HnQ*HOIMlU(H*ANzfrKR+B{x~
zi_7U7#p?>OnS7utU%j*ZX|*o_SmWwsJF#3x|6j;JN+I4fq+gIAMQP-O_wI%L9Xt*p
zek)&^T}7pwBo2)=lh+Sr<Y~Il^oZF<{sa&T-yS|f)%kiH;9UewzdmtL0}2Fze1XMf
zx7&m$wZB?BVJF@qz*NQ6X&7Aq2_0r)ZD>HCp2{vo1@j?`p)kQCw3otxO|kbOF?bq_
z1U7<$=GezC!eCKM;#XMk5Am)O0Uh=KLWc!VVIgijQV)Qta3CKNgX2`E_-tDz50AS#
zhsWL}fozDDC0~nl0-A<jU|AD*NXke-_Xl;<aZ}k$X26S@g}_^VUJL7iEs-M!#WZbs
zl+I1r?36ZshwV+-c(E#SdERO3GRK+|@Ys-4hORy~eh)1o90TvB;b`s=<Yiif<>GP_
zuiJC=nTZL07iW?yD3Z^uk(T+)hESbrH#P|+cn+fSRuMsAy*L_(>8dT~I9sJpz;pJz
z2u^0JazhqP{`+~BlD;g`(05GRe)R?E<+|6d&n8sqdH<!h_(*qp-z$w|O0Ti#32ijB
zcy$lch<BJk?qS=D(%nm%DLfnGzV9V?$}pb^@dNJ~!6Y~n=uJ^PK8Lx4;AM_bK@|=W
z+!PQaEFZIKH0l@~rkj*8;{Tyw_?_Iq|9wdeDj`XMG)+zV{_2X-Uit$CIb;4{A)_yB
zx@}ndYJ6g~HsS-GeVA@pNTt*7vA@eI!2zBcT|Bnq&PK@4<=`@j9wm?+!Cd3F1BfZO
zUXdAFE>|+Xa24T!dEVws#$wd$zSuaubG&Cm9-1=tlR>)1CNic|Jm>=WXD#j?R+#7<
z?eYjSq_xaeD?vbYAu8Fpn7?-fR9aO@q!OSkSm}|QV_)O4zGh9s@l~!*=~dP59q$ck
zxdfmte*w2cq@Ku;NF{>6uKAMVgMcvz7eJ8O$kRoh|Hjy_0$Gc>lait(fKdoGp6ah>
zmtVjqae+?)HbS3Rwp^{;*SY{pV<)-|7fO9uhpBs{vij!qG)%=q1B>U&jym=$m@>>t
zc+&LqUY;@)qv~2N+f*`2Fh7p7x*+}irxWjJuwu7u%1+h<=s3edG-63*S{-}z^gOal
z<D~OJ8%(S<b>5)oy09lRh_AUUI(nGk>+x`mRluiOLO3ucfEK{F#OxG?zq?<@|Gbag
z;Lko45e;62^#NIoV1z}xpy>t<8;3I?J)*;YfB#7H@&^#*!rJ|YcTX9Fi$T)%+h&?e
z4;*203faR1nxX_^rNSGH378H-7+KN<ns2d945SNHK}=;`h=_Q9XD}hS6V~pxAh~1h
zP2cZMRn&_rCCpZ_ti{KpGYzAHsGdbyPw3#t5I^jA9mU{tp)I~OR3NV1pIzyhF)0GC
z_T#m*#$_p2&o;#mLCfMh_hei3`#u|hb|=zL(?)a81ihTUVeiGnODX;UbPm7v+7LJE
zDgN>{d8odcdh{WCFmoCWeukj{kvU#%Hsjn0fw<|XV@^aoYn4%<+Q#z9?nd0uPVLj3
z+jnAHv{XV$PrR})p6pu^YC2NizseZIZHXPg@9K=Rea*Ze3bnZ_bRh9Ty*kdvarg8W
zKo~)e8adgh)xNpCF$=u?Q~txHw;OY$s>kd_MZp3HfIlzswoF3{3S}IW$9~;SKb`4$
z9>BybJFNxl9=4PHFpd6IR}}06Xf^V%XI>JV2|tU<26OUxp_NLBG0_vgU(EbPvex&@
ztAYtkqT;f==R+TKp5@-pvK4?=_M);)dB5vf9vkFd7;B+;mN(JaOOrVE*qOYRO_Q)p
z(Fg)+E3L6t#_nt71!s)Q%6XZl_l$B>P1*k-<~uAHf?$KFy;{W<pR)D6l`@>i?KeMR
zM;%Wt?~QU2POzD>*!M9}><CQK{x+U|biz!+HKC^TMBnI4i5>QEvthuqKYPg7c+?$2
zz|ssvAE^jes$Jk^Qpt@6(K+_K%IejrkRqV-5fdP*E4CoNBc;))m@^6%+4~(|j$z&~
z`O1dxh^r`?+qS%)&S5Y`N4msqz$h8IL1lXH2yAK<G6bMoK3yuV@@^7Uzv;|aHCaRV
z8RTv8*S%0);+0mW(L_$!1}{|cXmq>Att+h2I$d_+nB)2HdB*i+m7z0;4p-jqS`4i(
z;#a3s19zX9Z%<8G@LGOKerZ0eTu>3h%U!%|XY7`i*FPqJ?l3sP-{zVH;2F@0=yru;
z+$Jn<qR#jb-DI6jWB3-;8^&lRsHbVcE7y4FJd~C<pvfu?h-5?2MIkG-nGvb#<zm4V
zN7Z!G@ZJixb3oCE-Mi+yP4#_mij!7sg&MeRe@dZLa2W>WCB_`*5A81!d)$tgi)|3j
zIXC{JHG99jate05c6%od@|JzLs<jKdU)In5#C<KfmKfbAq<gQx-k3ST7)MQxdQinc
zw~Ks>?r`_apeE|O7@ps*C0_$sd(0==J2OGt-uhICZC{M9r_1T1eu(-i`S*EjOUx-e
z$(PyRY06b;^E75HFvq5phV6nxWeB)AT6c?AVkgeHrfJEpwK?IB^zEb?a)&nRVa^?R
zF&hEJP9Vs2v1Q{ru)wX|7T>?fCYY>V*HUnzH(3?k63X#u_qM=c*&5qe!dy~qW{}l)
zGkaewGVS5|N6hYd?ffW!B)B&iSWD$>h%Z#@P(*w;DN_ZZTwxe{N|RDmwWlW?KaPaZ
zLdvg*m7nUY@Y6b%Ox8ON^iTB-#~6JX=bEB#V($mz{dJQNBk=jP#QP0%%AG0$0RxX)
zqjkCOCqE=;_@{4deekU4NPLR0NHAdT=DO814FSMcGL4!ZZiUJM2+VVtr~*K#bL&f-
zZ5)qY+miVFtPD|ersgI~-ya~JQSx<V^_$XJWh&mQDE|zwA>G=$an~Lu&R2w485n!z
z*7t*ul3mYze{zfSeTfjJngs~@%Fo<0ZAmiFJy2IiDNkp4DD%hipj#hw42;NUkUa%S
zPI6o-HCg>ST)Xt?q5dPK$cC&}3k#L{^ZhzFo2hiGOfIy)@4XU)BhOqhm-i+;+!rss
zPoPI3Me*fvVuoPhQE$QM_zMBmnF8FptXC}G{e5w%%sTR!CZWk4I&@AgXMrU`!}>?W
z6j&(K(xi`J<7^h^67j|TgLP}FO{o6@8tvDb`9uFhq*!!ge6Zr?L`mxV!pKvV<C+X7
zorS)b!lt5{>!SgLXUG*zmK~Z}HGO(DG^;TcMBm&LlFhD?m)=#lbTFh9d#Sg$@><=?
z<AF`BurHXm)bDj<LR`^nyqne{3Fmq(31k!})`gVJ3$!YYj7F<n3AbUi84_OcK^Dph
zM+yr)J+k>qA*Ye!#4{&mtB52wN<(r0rTNgGOs+8s(8M{r8h|B=ei0ZmLn?3D(l08~
z;7fX65x&M$V|<Q|a_@$8Ev6|?3VBHLYdNAC;%U2y_A%TXkMuadb~{S8VK7W;yD%ry
zW%fu`M2t!(4@p3k)yvZDr%LOuHudWSOy#EHhrclYhUSI3G{C2sOPrULe=OA>&Xy#t
zX$)1Wtv_n}z|wc}KBt4nrR{9Xzt+80dZHq~$2>>a^P$B0YYmcXmZ%9v%b9|r_tW1k
z1Wz3(c4sT)63-Pk1)nUIgd8KHL2N{Ed0A5PKg<|hOC<BQLzl(OSR>7l%myhq$`NVy
zr(W&fVSQ*}F;aN+u;r%-T$;IZi*;1EZexAnm`}x9y)vJh0Ukm*SGrLBfoMyy+J2v;
z8Mfg;byflP(=Sh@ertJ=JglzSKEWHZ-)7da-Tv~4o9%tVPUO2am<?HPq<maEdjCdU
zVyKE~w$<%r1xsfhi^ez9TJ7=&;ONA;`qii6+Iq_jqOA4v&4FU0Xq{NTdF$1jk4|Hh
z=+tj;3Jc9j)9AMsIc6Muk4btOX$kprJv)K9ij7|BUmUM!4nP`h=*Yk=XN69DATY-Z
z`+3X}sUDJv%Mk;D-MSO&5oGg^KBE2&j5;%GMUgRNK9{bJQR%JPkGKUtO7yIyq1K8m
z38b_Sqh{kN=jQ<oW)VA{)MuB9B6Y9yIhU(?)713!TCox*3Y6OAW>FohYv;psAZdu3
z&_otNM^4+IQ&IEW4=tvPU`-qqi^bd`+3Y8T-zw-H{_N{$cW@g_0PrK-Q~2Muv~k{B
z_NO<cBARKJ#GK{{mabKbA@ZB0&udGe<Nk=k3Flg-j^_pz6Wl1D;2^qrd#9gjAlW{-
zsHsN1QsOsRBsa)DyR2U%)`wEox<j(>b%?@c|B5o?8eR4mw=sczTJge;#31DjGC-V0
zk*52}89l$C__gcfq@$U=mGv`8(NecQI=4wdgH+?ok-U`#sD~aU*zc1PaT)Y>qha0&
zmZ;0^jA$Bsd@K$yrq@qAZpQL*Kfyu|k6UFeVFa&=&eoTItiyYW6lcQi2{cnVHGu|7
zY0^Cx=0Rxgbcj<yh^6(oUA{Gww50T5)EZ!oNg1wy)})A(Mx#~&;H*;p*R*S8rBwFw
z$le3}`%v`g`sqy2H*qrn)O(&3_yDa#o%*&`7;{+~8`OCg8E0vR7g_WLabufZ!|hIN
z;PYP$bf-G`4HE|B?I#&ldfUEF0=NnY52^**ezwny!|6x6x6YZ8Zk8QEB{ZH<pm<`h
zSB98zi?ukI+A}0sUQwo4PREVt+Jx<0m4<2Hq)!c^+t%b)ylQ_EGJ?QBN?P!u-FnbS
z5FTd`Y^{!X=<a}x$8x>M9h|UsgoXipv__vyu;b~|2N1@`QY4QSi@+AVW6pu+x}`e@
z?%fNX{@apShgNv_wj4NP-2&8h(+%a{sA&;+e+&(Llv*y3r!7F}QeD?*H|Ma*^m-aT
zwFTTrOzmS^E29{o%%x7s^A0wKFtEeDZzsY3k-f^2&2CyF#k-HfAT}R^F&@gGTVkq1
zHQ$guF(~<JrFFk4b?lbSXtmTV)IU<?O}%R~L7fsLmvh{%<l;NWBdlGBhlLm!-%n!O
zvG9&m)TbCrf)%c@^tZ!;3;8D6R7n;!uddeXDaRIg$~B8z3g567&y0oaC*Xmn&MhsR
zVzcomnoeN8_rVfT&RKB(o;b3B#c2(Fx`0Dhj+0`_2Z$iv3_C1J+moUDrRU=m3q!yH
z=OzsN+unZ8MYRzsS3@VI@3B4I;%FT<n`$wb?V}(niwpjB2tX~cJ&Y%ho?l&WQ&N6!
zMK0mzS9Ak1ROMsYs@5f6C9E|p((U@pqlQ@2=E(5qP=s%frxt!SemaUdM`)@66Js+W
z;^_Z_zt4A)D00@@lM5?-nwdJMz>pyID$-20yVxPtCy$amXDilzFID_aCt=+aMM1^f
z^c!1(5m7AmmoTuk6fGt>N$V|nzDJ|q=Fi^S(rUBEU`I;pXI|v~0Yn?LBDNBu)bRav
z7cuo+vviVJG^@(N#WC`xbptEAwj1#vU*UD+^^I%AEb8mB$Xq7gsme5n^Sacnk5h9p
zJZLK7%0$lkz*2eFrNxIiusFqnT+{CxaiYwRB(S-;^_fh#^XnrYdj<oiWv_@Tj^cT#
zo+@>$e1ERKj4hq|L=j*KCV#v*K5arZw!50f&nU0U8sj@BhVRp0+znf?QL6%IN_jmC
zSpXD|h#s$v`iZZVXIXw?eKhiRS7KJARt|`@1;b1_6LVb*yWVd<uv~<Zj#|5{HPhOX
z!uLUkS0Nua*6H(5PUhjJ0!w+BkK+9x0=q68J*OI;sXfV5B={!DW%6?C0XY=l79yFK
zXk#oP#@4(XAQ|YixsZ)F{+SP!MVl~IBhGD9|H;gfQ*J@{?8EB?+lTr_fgaWxU6R{k
zwL>6r5nJ4_Gk39q5+(+fhE_uz76EoqjpZ)>0Jty!Lv>kdFRrkkRK^5DaC1MV@%NP#
zW@(twQw8PmB7&X<1j%Y;Zt$tNC}MWzPF&vxW3-g3&2Uf>JsFjwdMcTO?O3vHu{tS|
z;z?xMoQb}C|FI(O!n+RDYuYhURvY<Wys!2(RcAQjq6BuL<FgChyCR`Jbm05Wtkijl
z(*>xMV#10RGXc~p7tCs*Q<zLV6LY{W_QLDQTwtJmMtg6)r?get*{a9w<oo?9Drd3@
z3y_&uv>?4*A}s$1;*}+`7vEREu*Qhx4`HrG$T>*SPt|RndIPkY4s75b^@}?GIZ`?5
z+AoCd=2xdSH3Sz4zDSFU_h?04xE(2T<tb%rvrmbD{E))V{D>e}dlY;QEYbjEAo7d!
zqkAtzaZx0YM`~U>#kMTGjV%+@7bi#QaV<Gc7A|*TpupJ@nqsOk*r%9))6*s)2}MTG
zb4;Tut1O``&x-EjHE`3g4KKp%#}t_lw<xY?Q`Hz4j}|Y=Bde=SzSNL%^cV&sPyr+8
z5^>n>xb9Q2(^B9W&A`c;htg*Kiwm%1+spn4!a?uh+$$XSCoKD#35ML9?{bN6H80l&
z)%||Qg*D#et|rx`?{+wS<W;ftLMvc+e|enE9!sQF#4>q%`J^IU->z$3y6}lmy<os|
zQ$75wYX`3er#-{s)tySYMm?m_^1b4@r7d_%vM*K59gTy$XY)Uhhb*|h<5*&f90pk)
zDfB4HzDu}?4bXp=;ve)3+2h?ZjoV6*%V#dDAhs{eNYfUb#NV6_%={C4&>%HOy1FmA
z8O5P_R|wiJc9vK}Mnn4r-%tu-^iNHm@J!PpiLNMo_A3hKt-O#EPH4j+;`6vYev3w=
ztJt2z0RI{dLxPpRwRhub>f>+7AC?0BKRP=uVjIKzxo)Obo`(!<bDpbyY7FGvS3Q;Q
zG!b4%dFS%*nMZ>m3=zyBp|<DAmb5@n0id%Ue8a*Migb7%)RwDlz5{(uo2EvU;UNo8
zkCG<p!av0lDAGkY3RsqyZO%0og(82{bgfA9rCdg}DytPOlymDJc^PtiLcq_cwNonb
z<)6C2$~x2=lk+<2%r*$y>cRT*MEe0m5Qc4HadNW>Av_I}7%s#RD0g~4LPFO?-By<=
ztmL+wKi*hUzh1DlA(5xPUmP<ZKB1=mKv-<)hR=)jG9M>0eC$$;B*&Lg<h9GIUU^)!
zr-=h<v8z#>BDPyG*9M6ijgvs$ei{Lo>?W-XDE<!C=3t)LR=n{(N<_VlgJC)d=F1u^
zI_Cg(LU|`XG0PCtx<LDD+OJ3rY5E(|gJTu-65lG9V_VMl1&iN08STPPOL?hd@EZd~
zT~SdWQm{nj#xIu=l81uMkiUrvnroH$Lf+|j7$6x3Oz@qux?%=9-}THmd-O@-nAUmA
z(7fF>g(At<#;cp*aG!#HOW#Dy7HldIrc41<@57GXgi3bIZNXAgM6XDE?v!|rRCSuB
z#37xrai(Oiub_!;$w_xFN0U<$0i7Uq()(v6zqyuNb?qC0?}P&umQ~RQ{P=Qe%ojJI
z(~`g@@A~W-QqIN3^|j_;k$y95%R9@JFNNMr)8YVA2FsIKcT%<5uPn<34@~^*bW?IL
z4|95tCz}z4NxmDBl9{!w%`vXQCqWpw@ne92AAxfGG8na;Lv6;QJcRBuDO175Plm^O
zK1`BlMU#C8PEb8H2FEK|kVWa4Rsj>=E*aPo1@?JoOzIf=-;PkC0j6UkZe~=-_pHsi
zWcb_c3i*oLXrTe58HQ#-c)6+AgeDQ3sByfOrUcN_kR7Vdf~_*kbFI~^Z^)AB_ADD#
zkJ;x$Q*>}6Q3Vne*A)b@orrO;$q|nTvhMSh&+g3mnSB_ImX5gtpSv-6;o8LWgG3<k
zf}5&2WGsqO%SBR1+plkU$KgRBOvDg9o|zK)0OI5eVj84$H;aH~)V&xO&}jqxPMH$n
zU_P)T!WQVdm%milzeh(jp_9^N)Xa5m-5I29e!vt2%?va$g;6XHP?k>Bumrq3F`5<@
zQa<U)r)4I}vy?X+C<82*SEsJ{r+SNT@Kl7_V(Y@&N$nmJ?lD3Fx=Xo(T_oLCupFT`
zSG!;J>F>GWi8~2f60M;^-V8h{I*DmK{=!Cr+C5RXo(7AnQoF4ue@3}duv#|6@jGtG
zCa?03ghrtL84{P>AVi*QpbTN1uE!F$Z|_A)TwSMise<0rI^mCH3Yc<!I+o+fw<!5K
z>YGokBlQIx3g425bB|3O*)JA8wcRE1H=y1-x6msNYd<K_<05Z+md7h0(Vx9Cf3s=I
zICpU}{+=?Ojp#0dwS(sa4kIVXJLuY+^Dl%q)!xVn&Fy3PGy8GPjuKlIzrd2WHxF}s
zPo62<<+?0-)n1{(Z9k{fuxcj<QmviQDfOae-Fk*k(j=1-qBaRzu-mhchh0m`zGhb#
z<c^k9$ASfj$UMXeeQi`KkuBB#vK?>|%2-u~rrWhkc2}*SnfZt+N}kE<FX^4c#RjI^
z)9MDCOsUYnL>;L+J4Sz>w2-{I%5lClAIIj)F21WVYD9^|`0kcj>~+*|M>;RU%UFoT
zemNe^|MZX^_2j{xOfdEHo-coV1Xh(TGkPAo*zb;);eBPu$>%}b+<9@d&asgDJj2$J
zbkh#Srod*PC`W+&sie`FP`*5635R}i62r%`mk}unZ9gI~mC(O4&_>ajlANkYW>Lor
zy3`3<(tw?JP5-L&=vmfPu|b&ncrg|Ycf1;BHx~_J1cCo}cNKSqbYPx#_itq9%A1eu
zxLB3x8ORRa%3D(v`QMBecCekA5E3ibPS1>eVj|F#pDweTlnpJ7(|122=YMRYN(c|O
zrd5`Bc{&8&u7V5au4r~W98cJt<4)eq@|!nYofqbAG5XaeZS05)Te$TJw2wcu#gegP
z8}8BF-DPRB4P*-n%Ska<0W5~-mTl|60;twxU?|(@yv7e$g2s)uqx|}O+0-1`sAc{{
z)ENioLloG`vEjYxWPFM{Xfp%v(k@xG?6phpw)L`I2p6vQ(*L2@Ao{*=1Rwie_~2VV
zi(Kf049Mb+G10y0IVvb6<8&QyPmA|gR>ubj+;G%_^5>>EiK))c>0}HAlPxI&@|&xQ
zQ%8L<JQy;i3a6_<9g-0K)ocvxvxEqsr<!9!Jy(Mhx8E*x>V}u&$g7+xx?BUj@}0hQ
zk<l&$YBWW2&%JgrTs3Bo&zhN%a=cS(8i~rANVA;)iO%@SX>>z6Hn|@gqIFDtTI>CA
zVTCbxn$v$e$z^3E=fuTw-FoV61w)=+52LHFLaDt*bwRHFb>jv=?V?v}j2MIx+U#PC
z&0LP{JumI0WNVK+<2-Y^B*c=L)mD7RWF6TGr~t>qGeMFvm>G&GZdf5vwXaxnaG=Dq
zmATf8jf&CoWt(K+1<GzW@)6-RCzu&vx7|<9iZWf<acZ+~vK0c(xV2!|eGhxa>T~gp
z_*d6TO13!~BL!b>ik!}=poR$u_=4Bp?q(V%RL0yWpJ1a*Q)j>SAWk}Ay~~fq(gyA#
zi)u~!TqnLJi@zye&r7W7E-<~oGXD7dPe6C~uXU$Mc>%=xc>CIs&1l%A!=WL-CW~B!
zuq}7`hs2*Q_X8CD>KS#O`cKnjz{gc5&uAYGydXGRO&uJXsdLOr=pW~vi+*w`1mlTe
zP}hw_&5k<O9~KrWU!9xMbIsAiDU2@9?RL`pRa;Y@H&~r!S@cSw-AFX4X0$fqGrlnr
z)nmUJ;lYE~xcQDoaMm_CX@G5g;Kq@kS8<h#q5mnQ9qzRf_gIY$BnCzpc^}ls4_9|)
zu~Iox$6RH%lw_ri*7`JZofEMwY40goem^?D|GdzCQX-!HCq^YY!B72`{+Df=s_~Sv
z{f$C&<`+ZTjBf=k$JQB8#@S^2NB5#v2jAa{f0$V>3q<h>TYwWv@Qn_8T*T{pxYY9C
z1YjJHw?7EcxvtNwAW$<k!diNt@Y&7z4tK1H?5&l=$p)$cCRURtbstr{%B`@!U<*Eh
zqUSi2(LAZ-@$aS@cu6K;Z-`>s?2nYH!BB~ih|)y@2z{$M++6L_k(t|rtl#9SD+K6=
z-V{(_LE&HBor<XQw#hh9;lGsyjsT*FOX?dsKcBRI!aWDWgY&u!dFMA}1~z#U<x%R-
z7j+r5Jj$^Rt8NmlDjT6)`b|UU#>88sc(QaWWVa%-?f6aGRaVAC2e#EM-Vy-f*HekZ
zWtgT__I$xO-9Xus(dQQ7O1EAd_$F{O@IF_!>T;`I41YDE*?C;@?PjZhujMWrnTXBE
zh>B9PGE^@ovSq|cB!QndL>itL#&u0a1*D#_0?*CeB)M9{V74GTb+w*3gSM|uwNaZs
zdA?%%_P1jZL$q4km)`w5e-h{5_S0jEpr;`<Dmu)ctz2B1)xG8{j7Z)M_?hO4s?DtY
zg1@wpT0TB4CXe*z$m~HDEtjsN^g#vG1_u3_9<Sk&O52US7_}+MAy3~5khae<o@f+1
zJ(WG2o{&02`~*ma@pTsZ!w%@&_jC!5b)rMZo|3NSWo}d4&s2*)A=NbzngP@(Yt#(A
zlU9`?C8K9%*2g=;PBNx04JY!yj5q}g&oF25G2$#M)p+H2!X{+yzM;q7YM@U~`kr}N
zuK>HbO1S9!=QO8hwWHR0nPWPsT+v}raC9&5$w4ODl<g{M{_2xTE?w!`)+i;ZkpfND
zz%m8(!urpfwT=}R(+;_|o~!#3E~jmUS>(blSv?jmF0u7h4p_K(Gc;b&2@|y<b22j(
zBD|7MG~W#V^yH(ddrv*PGyn6OlfC+B!MV0PU+vLO^x16a%SZTal$oK3PrMWGx_mp!
z_OrP8gpJuF3As2c2&*k)xW|U~tmeb1+0XLoZs@gcWgaw&;FpdMDB9=I7@m#it2kKE
zq%bMvs8rna_J6G5E39*g+_Nlo8`&L1H#b&j(5t|Crly!nxGM#f3AJ-^8R8rBmpm=%
z7ELd|5K}C<ineRZ%h7H`?0eO!E~Z^6df61YnzI*w<IR3HY%jP<zw+mHIy!V~{!M~4
zez|)&qSo=ogfLbj@#5<@oe+pTbfVwg!-z0O^qc#wj-n6X!JdwJLi>+YZj|_NT!5YJ
zq-g1+a0ii_oD{n4BvBV~zGZGtfxxP1z|v%bG2T2ah*AquY8a#^(Ky;CB=KpoDNsPv
ze^zAgrC3)}c#=4C#ARST5N+&$q9goXTc=X9LSglExyr@Ai({pZGf`4wvFj#GqTkf6
zG&BFJI~~Y}&>l(jbsrVU21GXY+)>*ZoSr6Vb$9Q|e~0m?YV@MW(xbI<2Tzwq?7In*
z8qC)s402vEs8%3CRW2_ds<>dTjNwsl9gUV{9atruJ>z);sDBVD^PZJPj*xm;)m{;d
zdx~cN-BZ6f`0UqX(-d<7<MW;x#uXjf9x|tA5;-bfo~%9FJ<;bAE_@6tw)_ALwhyoc
z5HUjF4^1RWY`urqAjlr@GU%1zTclf8tUz3S0w103pEY)611-7)d96rOYsI?vH25#W
zd3fmf2u+{ZP{Br#iW1280nG%#Yn>tbR4?c55gd}pNXnX8Oeyx^u(kDFi+01-Zk~+w
zj2+iNLp~+>+y@oKO2qNXi#y{&QD72LRPh#>K2sj4^w^OpG$InDv^<A!-1E>G$^Kym
zT<BcKk@zsZOj(cv!TzPf-It*P%kiE$x}LPOq4P7Pr1{Ez#-w#CE<OWB^IVl&sgfw>
zew7QnTt03BCx9ReLEq*<6D!Pzj7nys{C0jg{)&xL;oycaii6-1@|NhkhX9~rU4QXH
zEgq<aWt%T<p-?10w?+3zXVhBLE%l~`TST|hysCVzhP+k#WLe$&L~1E&T2th@lp2VL
z>4M%FLGv5}vqFDSY%0%xV<|E@PF{WKNY@AQL)q6Vhf|xCh{DP_s9gn;eY}9_B3OA7
ztYt1IMQLw=1!KZ8)GHc8n%iKO*<1Vdwa?$kS{!>MMdv*9<5Z?V-d=taHAUoeuP-by
zTfgU_Xjo@kO4b0)cHJ6Ulbt6~q0KpVe`b#7=E!8b+s~54sc_Hms*JBh-~A*BEVLTt
z!c)3#u<aC^H{y6jL_VUeo=jIgTM>G+S&j(9D%bp%&7+OOqw>$LF{7iMW)#|rsK|HA
zzCZn8N~2Q(Zpq0N`q2;Z4r<F?0@jX`UWmhNP{gkO;HoU+IL9-}=rvUidlZp2K@}fU
zo$}&PhXW#s&n`y3QZlNJXSl85-uH}wht`eimntO*ZS6BDQpL`0hn^#+-3bbGF}sR|
zghdua8lg7VOs1?t2`hTo9au@|zgw$bsc&}Le)i5Nk2R)OHjSrnMkn`9SQ7Bb0BA^g
z^USfzktkDsbXYTLpI`QCp*OgD$E+)9;l{YN7()`GFjFQB2(OUlUEu`b<U|lZg7j>p
z8I1qA3Y%?6umIDsv;$AL87IX%ox9&Kx)YKwQYjZa&cpjp3`BYpjErM|4ai{>_l8lG
z1b~JxuEo{<IH=6%ByX~Up;0e_u^+1cWqTYfUNj(w|3hPLG6Yvo$U~RO$bP4iq<;N}
zO71PH9Que{)}j7`p|{*UZy8i_*x2H~#Cr(1JKzZjgdz<GuNGWpf^Atriw(E42zVzL
z%K=k5@cu56G$d3W!2SY_QCeL0b=VWFT@phf5Ite2lj;M>25qFxKrr@A`#(Kq7x7qa
zaDDMBVnlj$zHK%n{`WlbBLL&L{(Wt@8O3)ryq0?oE$HAa4B~kes{%_pE(^;dH6v?z
zm69xW-_yUrC|*1@bk+rkJeW`H!!I{-!J3ewY#tM_gUwdBe=%G-n5Iw(QD7tTe&kdO
zfrursOoeBgB2l%(-j`%RypPdDQnEQh!zjKFu`znyYvp5p(}$2j;f^jpY<eFiSbzrF
zdTKrjNf0s`b_>CWN>kVw2)%rAKzz=`GK`Z3J5GH<C;OUI=EMY~Z~<zrp|Y$8>kqUI
z(cR5cLzSmUmo$YIu|I_Y<A%no`qcJcH7FZ>eg1$U6#FPgK!u|na)^D;vH3IJR4R&d
z`jPOTX@{I-@RHfDdPl(G0lo7!Mgjnb{e7|4XTAw!B!HHZocSBzOO>k`#2HRqq}j(x
zMLJa;W%LP*C@1JOv{6tu(BZvT=trQ*DIhOqk5Odq44gQAz$MPg)`vwVVXc#??{4Nc
zlpCY0UD$~67vi!rAnV9e-bon<8t8xhAD_DHcH<5ht4v<Qz98cU_+nDbJ!d_y4qn{5
ztq!%wi9LlINfl<ejzQ?k-LsC|><obC0aRYRQGKV+t932X%=ad$a+VUus^SPn7|3H&
z^mJ2pzo7oS6m_MI?KQ$uYxb$HP!-S$f(q&iv-p%(3p)Uyuhzu<w-mzL^LK}4*_*$>
zlqAAkE81QYC_q33C<W`6fqfQQgW3-+!$f7J>X!>g)fvNA%%rzH(-f;LF)M(g@pB>a
zA<P#_Sm#?-)uiq0YO7~MZ_J|ewWbi$wp|aM<aH+<Xae<>rfM0DjE)PP?u(qjYO2`z
zHos3sHstuo09D)WicNDbxo7fRF(zlk+oIl@CSxRo?wSI${Q0$fuNXG7u%<}b*_nQz
z1w$+62hFf8)uifEHyF(kH1CcGW5G6C2h{hfI2EHE3cm_0BTXrOTg5&494~qG66%P&
z2aDcw^0H1jeRotH7Ou4ZDs8hM@O8#W&$rYsKvJ^a;8M4beAp}z*O<x3sG|V^q}JU)
zCDKJ6a-RN}$M!t{1bbmvpDU<uQS(GqCCYHVQDQQ6xWGgB=x9RwBU2ORP#P%Bg+Mw#
zGEL@Wed1L=pn2pTw*;$k60drd8->FFd8x8Y9_6m_g|fJunVx#0ySdtXDTL^%0=sXF
zC^#~FXIboj8B!2)IXsw{-dVAFXEsJ&i<%YprN9y}RP95qkcLDzw~6*u04JBkXVbN)
zMv;e58^%%%F%TxPm|zv|`La@2Xl%Y2I;mZ+gr9G}z3D32U5__?k(}tHAD{h|iSIp(
z!<M_)j!~`P?tJ~HxIF8?HIB&Cy=YvllNgq9gFu{!K|ZmU9+ppx@ke^9_3|%S&4$Ra
z=Op4Vj9X?Suah`mpB7eEw)c>|s5xn=H7Mg>k2k}z1@|5O_evXZ@_$`F1}^?BZUcY)
zr_u~q&gQ<iSbXUbD=ok~6}UfyeEa>^u)}D@8Y&+&BR?qMM<;+(=Kb}*Woh8=|7o}X
zPsjLw-C6pbmDZ<-VV2!-P`L$xgf6#ZKy29lT6s{Zr0=@|(n|OBgx+jjuSu*lA3%)t
z|G)jh4OopK+z1PaPk=sj&HCT}0PpVQ@{fUAC^AF=q;6r~s-P5F{Gj>7glXuIT6)9>
z6(19v48~_KiUC!U-d&_$cG3=cVWg^Dn-nD7qkl<P?5p-?yeyu#ur3s_)lhVg{yH`w
zTEQ5uCO20w+56|2|LGORQo`ny`;sO|HA;N8sW|cSEQktT>lX|PE>EBU)AHm+hb`gx
z*Zgy57sl6X^Tphu7~Wm~OuCI%xBh2rB9J~pkxTQ(?6`pd9X=3?7yQ&sLIVFRNo3^F
z16Ifgj6w}-u+q=JgLUS}d+-hkoePI_`+?MdrhlFcUYr8GTSQ~^f6VlL13$Rn38Twj
z2MDVW{f|*85#s-To5sup8~<Mqb}!l}Av*lvU4$xcgaSSZtm_-_dUsvJA{}o+li6Wp
ziw*iG#x}3~%*9yJ>KrRl+cPS^b<8j<X#(!CkT0RST~PA`jLkXt+v5$GcIroqwg)3i
zs704AS&R=pY2}a%`Rw&e!`BSTwC^0Y^FC<qL<7@2djk7D>ifa=vcb~%Fx~z?T>#h&
zVblDb0m%D5d^rDFn*Vm?1MH*zE%!{y8)=8zFyTmTfsOj#S72ka?L{Gm*f8G{an}|g
z-VuZ4_BOl_DGWK1L|M4n8V3bwp#<R{GWG-e!A*JPKiVj29YSnU^60+$`A{^15}*+Q
z#ryulLEPVpW`#{Dpn^Zm^<~J23A(qWrC6$B<oFP9zTuN9w58KIVU?$Q$J=l5-9D}_
zFB#c40cxc=A8}hun@fk;AZhRBHsbx7mq{<nGwEc#$Lo2UwsFmjT3Izda(8;_=rQu_
z&npnlUz>91K*vk1w6JE8y((s(&RlmD!vPLkET+$!`%$&3runxQ6TN+sW%0@2<ST$i
z-#!XW>m|x1!!{_!ile$5sOqw=NmxT1<B1+#5;0Wt#V=lgc{_m}6uB#N7dw`bFT|W^
z0tjtt-|%hHIJg59C_F}f{1ES}O&U)`AIsp3f)y3jdXdW!tI<TVAx%+56LGoJnORj1
z5i>Le+YCP;=2Si!aLb}IRre>=G=&dpONV--a?J(#7T5@14}oBbIY?S@nmQu{XeKBj
z1ltb#j*=ER6?3u<HuTzTRDsFl9ba0e9~X7?irUK1JmUl_><$2wBWf|v$d^vpU3MX6
zDJ^lF?VQLufbqYknabEs{H?D+MX<<0|6FkScekw1Qb7g&!PS&pVreNOt&B*m>qdMO
zuGl<zVS=0dM|nkSi$2p0Kl{v^EfTXvMNc`;jm#X5Xnd}*8N8XDyEkttzs<Kr?UVQ4
zl$s<P8tS8tp%~4e6|uvS;7)LEKH)ptSviuYs{eQ`rzs+`JY5wd@O!rJVJsW{X9pCF
zP3#M|y|hpaKc@KH_la{hl-*8$N;M8DH7?bi(^XYNq&m5@M7#Hu<7A?CMi4RtgjMo9
zQPC*{T*kSGCKbXQOB*N1sYeTDzV?Z0Hw>}n;EDQXN)wZq3I{IJdQ5Oy6K%YCQwzq|
znJ!Rr)02LyO29k1g-it(cvv#v+>x*27NyRIRn@vn4$;KHF@R9COlME<4q$%LFK{Oj
zvY*5vJs25+HhnN>`iIWYP-A0caEHsRurrfgHlDIJ<rtLtnVFiI>2ioEu?8z9$G<CA
z#^<P@>v{Fbju;jj`X-*=OZ(Y;qd6H%nc=OWM6=+ysY8Tv!rJAW>YfNNx)$+$|D7Iz
zwZs9pxN@9a{DwzKwsT^j5>|=;*u(aE0dF6Wqfyvt9LC$e8pxb6@8vVMT(<w+W2M&E
z)g*4XC$hP5;-H)PMAOw#F^3k=SXS3HvRrUgNDB%3evl;u=FLo(3Ocn=HTFlWXQC9I
z8Oqsx8MrQyMC}KiLny*>QN2yy7>itOZ<{t{ZOeW{bN3YO^A!d}?3{%Vfc?3~Gyz^_
z9+H_NWqOZVK9&+MHyvV-rBaHugG3UI19vg!7+XVA_`kRSd04}VW-wxd7NJnF88(5e
zZ4AoM+ZZ&ND`E*a8#`mK`JT+a#ZC>0oNEpFX--f^0JFXKUWV*OY4w2ukxcmWnJR6I
z5{>8-rt%}<>ps^)>&;@!gx6H-ye`p_<t__=iBeb>UQdMvg*Po0l*5T)c0~`9b$B&u
zT<FrAWi0C1Edk<0#T766f!C(vyNujFIJ>r`KIVZ+BtQ^9VvYg(B0EKNe;J3sZU3Ub
z%g_|N)sya6z~wm~hW|%|`Qn)B=rp4*Ju!BiXKtX>&uQ2J?y1N)+}q$he=gcywh)av
zbyCjCw4<H0Q~aRr$-7}vZQLOAwkSekWd<G2zMKMxlA-$AGs{8)ouZE~>Jr~|CFVwU
zX&O?#Vo0|gG&I(!O+WhH#YSsUb!{;+JS=M_)4dgv$B8@_UK^z&c`7GUOWQyzCR4IB
z*i}re1g9k;;xJr?UHc)in)5V9_*AtEPq2)RfV<_iO!d2lTX*b^{RATaX)RMUPKSBX
zEExo%E@fXY0V0P-{#l5j7@@W5q-m_r*SR{PnJ*6f_}W;~xE)qsigM#LnWtnJsPalb
zZ1#!xk6I2`ERFr5$rI*<sAnnRVtM`@Lc!!x0b>xhd0fpo0yjv($?iOcxmZSZs00lj
zg#{X*rfq+5W6&g;BU`^1uYmR9ZAwCYGPrj)5jOly$yXl<HEd{t|8N}F>XxRiRgVAn
z7qETqyALJMFj_nYC+;+X&|_yGbC?|xC%?RbwBs$;wR&%U52+#v8BDcwGa$mp72y|g
zRDS?r7X{vhceI!YK<fdwBsC#l*@9@xXz}>J&##iX7z1WDEsJFZ)i~G-56_fdr`d_9
zavIXPG}L6qzf-PHUeF;Qn`F@mf8F2_F`qtmmM+IoSg-Cu1MRkXh{hqZ+9?*QR5;0>
zf|Zgq!qbw(TjQg2$?4I%G2bV9-bZ6YcRm_U@lk%us$}_ml#y_Lx#H%U2pDUuSJXak
zAn5`so9s!_`&vMW`bcl-Z7D+iqtL@s5D`VMR9vIq4UhFUGnMmSHnlM2owLC3xhd_)
zVobN=g`YK<>LjqAR}lBpD6DV3O!Un|j#@~@AZiRub<S$UYF}UpDN@({NCS8@eXq8y
z%zuO_xojWK@R*ESW9K;!-p*}=@x&Yiir_A9pLZN2r0iv2RNoQZiB5;B&(<r=b~`xT
zKygKMTyNg<PoAPe2HDdE>~OiN*KoeFc_lX6->Jj6>i?wxCFh(g8!viavA5f7)vISY
zRAPG|_=Lec;robY<Z+WD_(2Bnn*!F3R1Jldb8CL3Rc@wn083OWax`S{DcWvZ5dZXH
zqVRR7lHqm>AWBr76*lzEs+bF<yR7Up)cT{PlDrG_`$XfC8*vJ;d7dtSUBQFbZL_8g
zYTLds30~?+GXn>G`hiE3b(t8XwP@G~W=1sSLG@TxYy_iGV0Ey-?rsPAl(yf;mTJPW
z5-!{A7(C(8>^PLyKH)}_;u8gQ7D#DLj7bNLVx+bz8$ZP(>9eS!11%&D>G-kc-pH#o
za(K#Qu__j%nfZes9tcxx9+;4!E|^>xs&f>?Jrqv;m~EqfJC45SS|>kN=HPOADsOJV
z=^az!*lM!jI;-9<*U_F$`{%;{3a!W=;%!Szt%#LTMw1xIgGU_-sAeq^(pT8s7M9B#
z&$Sc+=HArcn9*;_Ud*so1G}xBoEJU5j$R7eB=d4ktHWD|1iHT!_e-+x`!w=&KcKuy
z*>lrEl)X@*_IsA9L@AZhdb*oPUS|wV{|_!YmXYD-1QBE7Wg`e>wGa2j-&kzK*RATk
z>^gTE^)nF@W#ilndb=+5$3lZZ-aBhoLP^%)HfX}Ba>7DuOLmacudc=3l9G~;{gQKQ
zeo~Pf|N1?D%c%_yK)qo0xupS+kN>sB-!xnO-*546#rH&tYrATV_)=+G>Ax5KP>-z!
zlg?+q^B!3w&YnuV<U5hUX3a)&#I&}I2C}(zOhs$zYem(WlVi{Fhp=jEVc-2$X}n=)
zhKD%@&zz(lL|4)%@oH=_1U_%f<gIl7Ec0=jMrto}nPPPP+^5~~YT|dRCdvay##@*n
zSSu#_hi$Ph=Mmg=pwcF*2davCr_xF?Bkc?UhvYoD0L^kf2(SHrfh-(L5XspVL>4v~
zGs{-ROwlM=m>l$bvk<+H|3GPA{ybjBnKHEfbg2h_%H4c=IgTniJtuhdIja=aOxop@
zyUgM_*SF87=GA`o2CW%Q2=<ok1Pb?4K2Uk}B(#LqKMnWs+3{1{t7jt>Ns0EeinZ*O
ztr1)0ibs3J{>#7qdgVPpI2Lqj>fO_bUdjr4R2t*rNmD*MH9z1wrz+ndSq>{hVnq^t
z?J2A<Ji(vbAnCXi=B%*pd;d!*J!fa;<H_%gEP1)>ax^Zx^+CQa@H8}Ps!675jaOk6
zj*WRI)BJgyjI)ZB?Vb<n)*t7XY}LT|H}c%b*qJ0*)d-4-qrt_=4=vn)%iJ3M$@j6=
z+R=AYZN2@>UHK5jj`tBH_%Uz<jtfnmfIX>9E<^6373GHMajT%+u-w!Jr(9@x%a&V{
zdG>Z(p6;l0rfO#L*Gb<JJL)l|R->njan<&z>`htas0NjpR$l1}w5WW(HY*Y?Z|+uy
z)G0L@Wim44bss)0!wr40yBgOYg2=O3Ki)5S<sFjpw8F(WKjvOC8}1(T79=p%+0W+S
zv1Hn6Kaw$PC(wv5*ZQ$FrR??52!`0fO(lx8uGlZ6epr#=vJws4nw^w66`N>fa_)uM
zn1|^C&6Z&6;`wD4@VDkV0&=+Rvvm9ta6bEm8v}!3LGMl-;|bnBXO>*|pw2QcQ&K6=
zaN@nB7tRl@VS%w-MjJl&E{WZnF+1a0FFIQ_lg;s>(eQS6G!8n2YW-(FVS{lgfL>j7
z<P-il3O!FAq4TLe!pOE6wpG}epH!zFK1%Zp-X?+QvcO;&#>^GyW~e_RZ}pt~47pdA
z@nK^4FE~L!o-{R)xk}k>>q2g*2x*;a>2$-b#L`&GugRWwt}CJ9e?ARL&s)SM-b;61
zrbd2bcej=XKX=fieiX-a&&Kas^4iOZ@c0gcwCs!uV2GAlS%XbBwaPI3RpAFi{cgvN
zr*ut(2s1N*(VHR<DH%u^(kq*soZsQplZ0HpO0{SYtnjK|xG~6AiLRhYquFw)hXTKI
z-Y!2g<7i34>+yM|$ibHii1Yub?mEMo+Pd_i2#O+Lp^6l_7b${>ROv_)1u24p6zMhe
z8cGxkABdnJT@dL6h=O!N@Ny{%2_hXdAiakkshOR?z4J}^F*DCI&pg8~lALq)-fOS&
zzH9Hb&lwG0nA_Mg-jHST**0G(&}cHD>@HmqQH0r#7Toqu(mbsejg&fNHtt!=GpvjI
z!<hi~NgF<w-;}t`*iElB!aKR<tu7-VMjbFGZ<-u-oFnO3-Fc-^IckI#If?Ou2ux(D
z<Lwq=T)*~QI3uC?^(kF14=47T6)X1^t0w9-2C8HQkgG=Q#3?`b_=t&)#XN=1H~m6M
zkE8e?URAn5^$QUvsx;{aX{vD_CQm5UXX#7an$fe^`m;-~CDw-)GHv;LiDQhzjwvSd
z9vQ-%%@{aN$&Of4?}94Gt&XJWXiCL)a6y-Q!u&|T1Qj9`jxqkdzx7O#4%8TN0U(~h
zBI>xy4tbXyTS|~wr`%cl34zZ+HQ9_Qp+6<<esw9|L0u_1B&_vSd>Re35vL>#AQzgw
zF$)nBD^mIjBC(DnwQqBd>U*|%#qe6GWWT5<xnj(^hsls0dTZ4|X8f}>+B5n-AP??g
z5o7Q(8A6;JznK3x=m~W5JXm+Q`LF^T)-9&bmNkhP=nq5dgYsC)p8KM5-4N8AN9Txf
z+B1G3M<a8LftwUdwy~bst76=0t<K!-u$@f(S&15^$?W$7*UK)vRX7s1uO{>}*OK?V
z)mqbUUl{p3=vMV%?(QXF*o#R>QB|)y&U4j#y<fma_W2HHc!@&l>unJ+ses>xL~jT>
zt*n@been7Uz<y66PG=INJT+rLPNwcly&9-<_g%Xd@mCq`WXlh*Rwr~*CRFQ`I(g6O
zKp_0%J@!o0;Obu4jJ{NV5^EYIp)jZm%EGU&%Ih+`?E7TpJa~e`Ygd}-seCDo$gOpj
z)(<iyMlP*JC%GepF)MkkHdqQVZvM#FCmrScpipEf-o9e~;X-_=lXO%pX5Fl7a|P8?
zvGX)lgvS-1zvw5!<Xs4$YVPUvwSYtn|1~ENTple<oZD1eXxQE5dG&Sa$X^PVr_mps
zBXn5$mwo*val{OT`Egis&RtQA8Vi?IU7>s69^Mz+FRwd4O4&53sBi1vDVfhI$K6*s
zn6%{0u)dLY=|;Qx@joM8hE-D*2yS36%=aRdYp@O%T;UINk8%4A$Ca5}!tOjrE6u$W
zlQLY5aOmh*p8*?<eLBn6!l_?<1vMLwfLOVH^~bW$I8<u}X7C?x^xWQ3y(Yg9oe-BZ
zFq-~J@PO5Rwo`7M7cFTbJ|MB5wgaWXZiI<!Hu;Q4_2t1IRTS7~pNSNOsenC|vXLJL
zwTJOP%ZB_%ZeKL7K?h~l_FG(!^)56pIQNm?pLHK+B|6`%M>;lP>iwMMkQG2TbpTZe
zVpYNDbK{KE4AG2Aa#^?-d4)Z^>v^p=71+(tDq{_AJ^3RR474uB*eTND52QbT`!N0J
zoX4W>Lza6r)Ya5ieiz;(M4oV{dpX{MH~||jkT_jxUHzyyvJt&5C`(s+Opba(DV9Hn
zsTaFt>T$<Ik=PL4`$GQp@$ju~_$#bARz#}dP5#QbKunl&x|ESiMsA&Q_iT4W%`TNJ
zw_#TC>>h$KzSV0EPeN~vqUNJ{=y=NBOeV+GC=TBrd^&Y+UY*llfKw)X8sler!IG6U
zMBqzSc+nqTvN*t-QW)apuHe4;Tv|FqnrCA*eELOYW{00Xp^AG0mV)keLn=DIX@>;|
zaw_H`2{8$rBdBlVnaTmS@eFU6f%5#+d4kY3iC4+Fn&xEZ@4Ck}zRP*loJjaqvyk_*
zd3z(&-yhcxtMnPXHI7I1+Pe)!%qqE;x~h-w+!0|6$4y&UmcYF=`;nis1!KntZ@+MK
zw9b5H?HelLwn19#agR&CgRXYaPun_fC;zJ^RW8qLqkAgba^K@e*XAGkb(wgS!d$4`
znu!r|Ge@e^Y#iVGW6-Vf?)XlxI?B<I57PUr{0s(V>h#mQIep*l$GBRaX-Y7>@gofL
z+QIbp(s#Y>MThd4+=N<U{C?-u*!~X8>q9-M*rBe_$6OCLgthmxB!*45qx{R?46iDk
zji$@%L1Wx~U54u$UanRaF~;CVc3LOZkbe5NrdLD4n1ynC(BdAP&hsaF6lurt-o4GK
zQd|O#XT?hsI9*Y@J#+g0vAe}VL&oU!jIbrAwiXeh#kC@{YRO>HN)xN-EP0gt9QrD3
zH4s^78t@GW+YG%@M*Cr9uc%k|_p|c9m9r%fI#jHiS@dX+FPmu?<RsK*g+4{eRb^Hr
zZROT0hkWHlZ4T-Scu)(@Mf1pZ#*Y(wV_$+35Ic{S6@ywg=tZ~hS25v|r{UaqovWwt
zP4#LjftqntP)JP+c4T$xYfRv0@I4erf1wR=j{VGXkRF_tL#yfN6=4q57P<><P(w0{
z9XX<~aHu9qp@9p$-Ac6MRj8mW#IO{e{gR3YdGmtovhzpvOUSD)D%V|}l;sgYT6^wS
z#)-%Ilp_^*`76}!b?<=myq|F&&Cf#0B5b5~$?d-NFy@;QaGXz>!lU~5eCC~Hg$K?5
z)WF$X#5qKx!yOtWMk;>8drXw)*+_)YK?sh*+kH{|TXRf}te==wZV0{3RpaB8Eo6ph
z`9bNc^=GNJvb=d3gcLs?!Vw(MMY)sz6*Cp|*5smVurhR)nTE=3Rgr_z?+MhEQ?I~*
zh_r%WL`Y$%K1Z}&fQKsb^I7=A<s3CAPA&zU<@P#<G74t=lD4)r?c+T1put)<UqZB%
zQf{US1mz^;sHK2$G7lG@DG+Us5pdempHx%1FFgNn`F_fIsH`GewC(CJSXF;gCcRUN
zx_=bGsTog|6~sjQhvXyj?f_nXFf7pB_w=@f(4#9TX66jaf&wr98iPF+z={9K1gKq%
z;?FhSK1K^QJ~F=OYF|i0Yt2($Y?qh@F>4qI5O!7EfboFLM`VXcf)p@wNQHYO{^4>D
zWiju1&Vj(7w=cc~|Hr8xhhJgNFgv&%$VWt%n-_u$w_nLM?kEzaihO(VRaGdjG?*8%
zZcG93f<O-*Mfj`|=t5cR=Qjk60@Wf&ra2U>`!mG-_Ig7l5Ok;@Zt!FG*d++6BrBik
z9cZ9XZ2KO@>J@d|CDVl?e;A3-s@%7~2cuU{xdTcaRk(rZd_zGq++<J1p-QLXR7W4l
zp+pC%w1A#TqL>@cUsr}yfniYQtv5#lf+lVWQ(E6)fvB$M9L}iFF;IUM*$Px>s)zyd
z*f8MhN<;aG=TiUj#XD0J;<9Pt<gi-0jFz&;a9-n42*Jb$hL*_)p*~(<4>n(4o1%4W
zU82>5c+~9`DRU@XFHE!jT-2dedW4l7oPzmOE#C&W9tJHeHY-dDC`k}?p6HFKK+rF0
zAeKnv6?M7UuQ{bF^IEm_q2IK?!A(2BY<LrET~cLvB5_b-`r%~Q;l6ipC2FC)9QsJl
zgB&2}odHFjD%Qd_mhIrwpGZw$m^FiXG83FTca?RA*O=v=LC}@~klyc)RWm=`JK{~z
zWN=mfCCq#z_v^tF-(!*xLiE7Ad9D6<8{s)b1$n<SIf^)Kd$XJBjwPn!Pjv_qyg|N6
zmEAX8L9FqZ(Sdy;PQPbSY~y~>x=FqyodL`W7-q^9yV=0D2*l|rA6l~X8$S<R)b)}m
zrYSln`#T>sBzp;jwyhM}iMEPwOl?wah~k1``aj|ss61c!-#;PpSx71M@==Iaml6OW
zYR{5&{mE0dD!BSAa!`WW{`6PK@twgwRt3HaSl1Mn0`s>Q|9JMwH{0^Z{Vp7P+@(XU
zS~Zp{6V-|ATd20XyDUiqF+T<-0sKKF^+~DgE{~w8dIIH%k@ku^kv@A@*jPZVa~im&
zVToqJIEC5XNG0d@qoYU2Hcj>n-*6(|Jw!b_1VGCR`UlE{B91Ya8}S{Z4tz+|;Z*?2
z-&3R;`65vOD9WA==v@_6V=GHFG@%KU15e_vr2^IgokN(BqdTxe`3Av%=OxKnO&-9Z
z$-H8)FS+<l=)M*QA|mDFkOus+qOT-$@}1~e2C7d$9I_hSs&#j3&Z8aBdr81qrh`U-
zQ*Hy{0JdouZiu_NJ?lJTlSGaJm1|>DOy){H%XG!pidvu$QF1#DX>_AKH%Z@PjEMVr
z5~MmWAGps~I-s^X2iB^h(D^jcB9=8*EPH-%Wd1^%1BvsJY4Q){TG(cb^LN+2lX}D7
zHExubh>HrlIt=sN_rPP^L-+jaEP4@Ln-0<^-OJtU=)ROxZer@bn27q92T7NT#GV<w
zUU)d`F63zF9B9A-SKu-89|=v45#=JLV#M3airKG8FYVnVVV`DIJY`$_bkz?gxM$*W
zNxH1&#-vy(Nldf+^<++FFxI}i1zlIJ)4bPN6)3TQ?=;0IE0aEe_Wit8F4x)GN_L)f
zmv@pOl(N>rs|${~YxXz0JX6NCM(-eB*sQtjn!|H|{+>V3-yoOoyJ$k*)%t;gyBvFS
zG3I+DR`quIs&Gdc^F5s(_tn~)xnz`UokNJzPsWnwEUt3KOrDA%n3k-+Po8nASXkSU
zN%QKv8GQ*R<F^h^u2t?ElG{bM+4M2FuOpK(7E8B1H8IZ$;h4L~pgyz8`pt_boA>BO
z?f$ZYDEX@Bp;Q=Wr-(_OK2xFJ26|=eOK;!mOS6r-yNno@&6Z&jK5Jz$MB+NKcG+Qj
z{XHvJ?$kX$R>{!dyNnyDQntIYLC&ry<)|tiAqdjaq-d(jzJq$YNwXyVW$usBlSffy
z>FZW{Ng1=>#rilc>o4<s)lF1Kf0<kH5X${*>z7d8X;4qprh4(5?0bM#b2z<`n%0mJ
ze?f(m3Obj+=20gSBOD+B{$1J|NvmQN!d8Z?1!R<;2qzT|%ofe%i}elOE!JBrzEd-x
zq_x6Fc57X64EDDO^l`ae8^Ma$8B-4ho}OL+C%p*$PBq^}N?%IVHn3N2ll;Fe`4+mc
zVaqpca=TEbFOX&)Qxjh4W{x8=oL|ZCvvW|b`%`DHfcmgImu0aYcBZyy!AaVb7~<+$
zQgSV7qkIK-;fSpCq1~pZ;_L$?x_l+LzJ4sQoc*3iM3O8{SPAdxApa34_7usVj9Uy1
zSc%12=i0Evq>;8uCM__XmU5*<K0yuXj86C{ES)b<ysJBPgSr(yjsdWC9nym!7qM^l
zz1}ft7-R{`%p88kHO5)V5<RU=1<78~C`=TvEiYwalJMM)dZ#TEy6o7utF}aUJv3QA
z2prq;>*}F(Z%=<^9F?3cIRZQZxx3GKX+~+;Q+-b<+-&^EOAy=0j=2+Ti!7i7UvfZ&
zpufT>bX$uYaX>`Aas^E4d{>saS5G=W1hIBVzX5SpMa(;+C6J=`zlVEpK7)O(o7}xj
z1x;ul;y2)7DOf6T<EKIPyiK8E^3q+~+2D0I^rRW^Do#vv!=!>AT|*9Ri-q{Mnc6|F
zd@s~i$j|ldMN_ew(9Sg$JCxF0MEaTL`s(w%!az;rQcn)CH7$k8`GoJw7Tzlw)ZP0W
zQn=LAJz85GnEXRxHs8|cb>?$;fMfZQ%)M+Etu=`UYfpH@OlrPtYRXr|hly0Mx>qkQ
zc=7fQk65ne#$OIz{6r1Ku^pIZRs}9~&HT-9$;aPv6Ercw<0d3b^JAqq!<dot&kA>J
z{k6uYv}72=#i?KRKBAc9^2egLg9BYNrs9g`fgwc4?J><w<v5Gs5%~#j!3XO*m*|hj
zu^h$=@19@&4eW_`%xA8I25Xl9RultIl(^xNfj$@MMsNa##>rxG28)-CLF&H7`}6vN
zE_xGn0-OG+hhBcLc3@iOLX6`68tR$l*^`m)%N(o+9Nog<pT(~ogYtC_Py!-E3bv24
zec3x&P(cd2rjPt&+737IQ;ct2;qt#4)bNt&18K90sb)!_e#@E)YI{P7U5NL9QVC@M
zO0|(?C<6E!CowF>WM1KoU-$B~8+LYd+6Dinf1v=-vZm;b`H)4?Z-XcE@s)dvzh(Mo
zKE_SDGO_YXk~M8#&X)!nJ?$&jDW0m~v2RLjDDJo>Uo{yjEEe_CrDj;iMP}Nyayy>w
zS=gPWnacF^inR9o4RFkwjMnsKgL#L{H}nX*dnM>&(!%re(ItNU-|}&bIi#Y9BM`5+
zh7dRX=*(G-mxik;eiLM6PHCRUS0EaJf&&eXYy+(2zZU-vgOFuZbH#wg<lKNL4=2KC
ztQ#N;pu~dK7wCke)J}K_D1ePc`N*$77#f`ial9dkp^CB8aWv$K1tiGR#$mQ8Sone6
zU{ayzac=-{^b!sNFm;?!2$diQKpVgyW!>A|Z0drw-B!Xhqo^Reo1ldn7Q6aPpQDf8
z9@3tgL5Y>yuV6jMx`bp&Iw(%$fbQJp@y}TfdPW8r>12DXV(~2CGdvAo_;c`aEXv2Z
zL{^JonSm^MfVG+XgGI|aZj}k~Qm%m=5UJ4(J^7n*vn@2xax=K7QS$YX>(0~PJ6d&4
zfd_$$AZu~Kmke8X=>v}(A_Qx3YQR>mtc8=wa3R16>uxlE`krdmg5*SWpQx#L{*Cr&
zA^P{CXI52DcwU}5OHD@9U>=xX9*9Bq2A3qmmM9%G%KJAHI0`iwPv*9UoTE91_z!FV
zalz=`#jE3|IUt01-rvLzTGsGC!+`yDo9>t4;Yb@z&GVFPcp>QIOs2XFqBDm`GwRgA
z@TAiA?WCfH!I>wVmI(2QOKcRFZuPUdS_>TI*vJ+SC=e51Nff%-NhU)8?ETF_|CxyN
zP+|%M^%xv-Ml!Sdn}dev)BRy&@Jn<Cg6K))cLe;KVIMl(zlTgghyN*K`Bzs<=1zaN
zxpGJ<{|y-?$MJs>ZwWE1da-gCRu}44<@h3B5mpC2NqErE9?I?AyEAb#jY%SaxJ?+b
zLkJqf!#*Ce!9zZEIFSH{l0^Z4ANb>cbwJw$4p}y3H#RfK3V`1Ly*wad|C=`!Tx?(c
z>JA}{&opPHHBPU-1}<fw;Gj3;`Gz2qgm^n0K6dc_ga1dv(*AD=a=9kzoviO^pco85
z)=H-L5;Y9k0IM7w(0&5_;wQ8}1#r`+KRed#`+i=;=BLfQ-^!F5PYakHfs}L%5+}2U
zA(egUux?oRb_Z(#$(YlEjcvA}ezAD}T;9^$$%YPq<nb1__VHIYEyi={lael3sp?&T
zmLCGW^@Iqep)=nT<HKA7yUyQKE;jI_?g7Ve@PHvSeyS%B-N^wl29D9}R)zbh41yd{
z)VqsA5udy#28C6El{nqKNN$o5Td8Z|H<Q9k#Vdyf=SZ(3hWdyfS*`DsN)5qg!7W1(
zUEZ^f*X|B$V-cv(O+2hBded6od_DMM7@`->V<7_{zq%yFbS+LiJ?0eOATzYg2lQ0j
zoJ2LXISeB#Z;n)fP<4Yzf0h!RQO&2bt<YXoBObY4ge5n_MEiSs+lBq<TI|?xN1{7E
z(~uLNOPV59wV)kVFq4^`tZ9JxU@hl5WdJ=0Ooi?4*bJaE2{Ze<UWS;y849$h`hfHz
zOcyhDx@1pfS5LXa3kp((d<f$!vN3S%NRs_MlM}7Oc=)vcH;>#to8u_<PlC<AJj?i?
z(Kn#4=?yr{Uf=R`5$g=`eJ_a!zfssr@=)5jMNVg8ZPPSur7qyM_srW-ds~YNxiLMC
z>qr^POE2ZC&PpzR#HB_{<8jmpUn<DJ9>5T*@u0Sf`~D_eendz4VeR0)o~=F9$d1BT
z;qd@r;=W}ovr)#_Vkk}!YD5Ahv6L2x^4xh-h16eaz00JT7m?Z2*Gv3i#D}6Ym4c6l
zZhlp8b^i|Fz4kTmS^<DjoGYX!id{-(yPM1&#iu%!U}@)qxByu|O5873XYX`<h<{I1
zbkBTfx;-(i;!7SRBN$}J6K;%Ye^Yip$KH9dD=%8Gu}h+?srxlt;$L9Gx9Asb<nALy
z1@{7;a&G_%vdAPJ6`S$MQSPZL3^_Cn*rAx#DRQ^B<F{Y*vp~$r#zzqmK_i3#fI2)&
zmUDduxd9j<qq3#R($BEpW5;{Y;mv-%u2&o05F~SoyZ}GIod}P0>2nFWW+lFvqF|CF
ze(QYe?5?@3>sG*0sD3-zhu5#G2po7DC<(k5{qoYthwS-xgIvnT1LR4Y=1tMj50E4R
zjw3G3v82Kou8G;?QZ>o)k*lK{D%0UIQbLUYM$*|Dd8d@jE1Lh*KA;Jm(pB=6IC~jJ
zag#~q?D-PIw;&Tg4b^U-F@k1e>YpPZL;x9yL%iYhQYQ&pEZ6EUK5bX7C8kB>QBt*D
z!OlbJE!gnAx+xnYa*lZk-<N@N56X<XlU+-!>f8?v3hNRLMsDIBWqhgN1UR-%&T4yb
zp%Y|^x!P~#^weAubX=TT{nMWyqd%Vk_oy(dv&s5`4uBErnnT8inP@U?vTtj%(?TJU
ze^fC*O2Z5Ei%a_Hp@~7CfqHAp<(^ra@5F?E9DYdLXJLZ*wi~xO(?Uvd09+`U8iW`y
z{pq{xGcc!L_K(Nbs>O6r$SIH*TdrxC%U=LIYqu}Dw8=m+92lk!nPFTkc-ods&jyXk
z{*|BoZ#g^=U9SJ1g`EG~H<QkR#L9a^au@==GdK)Ehv5l)Gm6|(o+#S*CY8r+0X{-H
M8hY1D)vO==3$k3}$p8QV

literal 0
HcmV?d00001

diff --git a/oxAuth/Server/integrations/azuread/AzureADAuthenticationForGluu.py b/oxAuth/Server/integrations/azuread/AzureADAuthenticationForGluu.py
new file mode 100644
index 00000000..0a18f237
--- /dev/null
+++ b/oxAuth/Server/integrations/azuread/AzureADAuthenticationForGluu.py
@@ -0,0 +1,271 @@
+# Author: Naveen Kumar Gopi
+
+from org.gluu.service.cdi.util import CdiUtil
+from org.gluu.oxauth.security import Identity
+from org.gluu.model.custom.script.type.auth import PersonAuthenticationType
+from org.gluu.oxauth.service import AuthenticationService, UserService
+from org.gluu.oxauth.model.common import User
+from org.gluu.util import StringHelper, ArrayHelper
+from java.util import IdentityHashMap
+from org.apache.commons.codec.binary import Base64
+from java.lang import String
+import httplib
+import urllib
+import json
+
+import java
+
+
+class PersonAuthentication(PersonAuthenticationType):
+
+    def __init__(self, current_time_millis):
+        self.currentTimeMillis = current_time_millis
+
+    def init(self, customScript,  configuration_attributes):
+        print "AzureAD. Initialization"
+
+        global azure_tenant_id
+        azure_tenant_id = configuration_attributes.get("azure_tenant_id").getValue2()
+        print "AzureAD. Initialization. Value of azure_tenant_id is %s" % azure_tenant_id
+
+        global azure_client_id
+        azure_client_id = configuration_attributes.get("azure_client_id").getValue2()
+        print "AzureAD. Initialization. Value of azure_client_id is %s" % azure_client_id
+
+        global azure_client_secret
+        azure_client_secret = configuration_attributes.get("azure_client_secret").getValue2()
+
+        global MICROSOFT_AUTHORITY_URL
+        MICROSOFT_AUTHORITY_URL = 'login.microsoftonline.com'
+
+        global AZURE_AD_GRAPH_RESOURCE_ENDPOINT
+        AZURE_AD_GRAPH_RESOURCE_ENDPOINT = 'https://graph.windows.net'
+
+        global azure_user_uuid
+        azure_user_uuid = "oid"
+
+        global gluu_ldap_uuid
+        gluu_ldap_uuid = "uid"
+
+        global ADMIN
+        ADMIN = 'admin'
+
+        global attributes_mapping
+
+        if (configuration_attributes.containsKey("azure_ad_attributes_list") and
+                configuration_attributes.containsKey("gluu_ldap_attributes_list")):
+
+            azure_ad_attributes_list = configuration_attributes.get("azure_ad_attributes_list").getValue2()
+            if StringHelper.isEmpty(azure_ad_attributes_list):
+                print "AzureAD: Initialization. The property azure_ad_attributes_list is empty"
+                return False
+
+            gluu_ldap_attributes_list = configuration_attributes.get("gluu_ldap_attributes_list").getValue2()
+            if StringHelper.isEmpty(gluu_ldap_attributes_list):
+                print "AzureAD: Initialization. The property gluu_ldap_attributes_list is empty"
+                return False
+
+            attributes_mapping = self.attribute_mapping_function(azure_ad_attributes_list, gluu_ldap_attributes_list)
+            if attributes_mapping is None:
+                print "AzureAD: Initialization. The attributes mapping isn't valid"
+                return False
+
+        print "AzureAD. Initialized successfully"
+        return True
+
+    @staticmethod
+    def attribute_mapping_function(azure_ad_attributes_list, gluu_ldap_attributes_list):
+        try:
+            azure_ad_attributes_list_array = StringHelper.split(azure_ad_attributes_list, ",")
+            if ArrayHelper.isEmpty(azure_ad_attributes_list_array):
+                print("AzureAD: There is no attributes specified in azure_ad_attributes_list property")
+                return None
+
+            gluu_ldap_attributes_list_array = StringHelper.split(gluu_ldap_attributes_list, ",")
+            if ArrayHelper.isEmpty(gluu_ldap_attributes_list_array):
+                print("AzureAD: There is no attributes specified in gluu_ldap_attributes_list property")
+                return None
+
+            if len(azure_ad_attributes_list_array) != len(gluu_ldap_attributes_list_array):
+                print("AzureAD: The number of attributes isn't equal")
+                return None
+
+            attributes_map = IdentityHashMap()
+            i = 0
+            count = len(azure_ad_attributes_list_array)
+            while i < count:
+                azure_ad_attribute = StringHelper.toLowerCase(azure_ad_attributes_list_array[i])
+                gluu_ldap_attribute = StringHelper.toLowerCase(gluu_ldap_attributes_list_array[i])
+                attributes_map.put(azure_ad_attribute, gluu_ldap_attribute)
+                i = i + 1
+
+            return attributes_map
+        except Exception, err:
+            print("AzureAD: Exception inside prepareAttributesMapping " + str(err))
+
+    def prepareForStep(self, configuration_attributes, request_parameters, step):
+        if step == 1:
+            print "AzureAD. Prepare for Step 1"
+            return True
+        else:
+            return False
+
+    def authenticate(self, configuration_attributes, request_parameters, step):
+        print "AzureAD. Inside authenticate. Step %d" % step
+        authentication_service = CdiUtil.bean(AuthenticationService)
+        identity = CdiUtil.bean(Identity)
+
+        if step == 1:
+            print "AzureAD. Authenticate for step 1"
+            logged_in = self.authenticate_user_credentials(identity, authentication_service)
+            print "AzureAD. Status of User Credentials based Authentication : %r" % logged_in
+            if not logged_in:
+                return False
+            print "AzureAD. Authenticate successful for step %d" % step
+            return True
+        else:
+            return False
+
+    def authenticate_user_credentials(self, identity, authentication_service):
+        credentials = identity.getCredentials()
+        user_name = credentials.getUsername()
+        user_password = credentials.getPassword()
+        print "AzureAD. user_name: %s" % user_name
+        logged_in = False
+        if StringHelper.isNotEmptyString(user_name) and StringHelper.isNotEmptyString(user_password):
+
+            # Special condition to allow for Gluu admin login
+            if StringHelper.equals(user_name, ADMIN):
+                return self.authenticate_user_in_gluu_ldap(authentication_service, user_name, user_password)
+
+            # Authenticate user credentials with Azure AD non-interactively
+            azure_auth_response = self.authenticate_user_in_azure(azure_tenant_id, user_name, user_password, azure_client_id, azure_client_secret)
+            print "AzureAD. Value of azure_auth_response is %s" % azure_auth_response
+            azure_auth_response_json = json.loads(azure_auth_response)
+            if azure_user_uuid in azure_auth_response_json:
+                # Azure authentication has succeeded. User needs to be enrolled in Gluu LDAP
+                user = self.enroll_azure_user_in_gluu_ldap(azure_auth_response_json)
+                if user is None:
+                    # User Enrollment in Gluu LDAP has failed
+                    logged_in = False
+                else:
+                    # Authenticating the user within Gluu
+                    user_authenticated_in_gluu = authentication_service.authenticate(user.getUserId())
+                    print "AzureAD: Authentication status of the user enrolled in Gluu LDAP %r " % user_authenticated_in_gluu
+                    return user_authenticated_in_gluu
+            else:
+                # Azure authentication has failed.
+                logged_in = False
+        return logged_in
+
+    @staticmethod
+    def authenticate_user_in_azure(tenant_id, user_name, pwd, client_id, client_secret):
+        post_params_json = {'resource': AZURE_AD_GRAPH_RESOURCE_ENDPOINT, 'client_id': client_id,
+                            'client_secret': client_secret, 'username': user_name, 'password': pwd,
+                            'grant_type': 'password', 'scope': 'openid'}
+        post_params_url_encoded = urllib.urlencode(post_params_json)
+        headers_json = {'Content-type': 'application/x-www-form-urlencoded',
+                        'Accept': 'application/json'}
+        conn = httplib.HTTPSConnection(MICROSOFT_AUTHORITY_URL + ':443')
+        relative_url = '/' + tenant_id + '/oauth2/token'
+        conn.request('POST', relative_url, post_params_url_encoded, headers_json)
+        response = conn.getresponse()
+        # print response.status, response.reason
+        azure_response = response.read()
+        conn.close()
+        # print "Response Data: %s" % azure_response
+        azure_response_json = json.loads(azure_response)
+        if 'id_token' in azure_response_json:
+            id_token = azure_response_json['id_token']
+            id_token_array = String(id_token).split("\\.")
+            id_token_payload = id_token_array[1]
+            id_token_payload_str = String(Base64.decodeBase64(id_token_payload), 'UTF-8')
+            return str(id_token_payload_str)
+        else:
+            return azure_response
+
+    def enroll_azure_user_in_gluu_ldap(self, azure_auth_response_json):
+        user_service = CdiUtil.bean(UserService)
+        azure_user_uuid_value = azure_auth_response_json[azure_user_uuid]
+        found_user = self.find_user_from_gluu_ldap_by_attribute(user_service, gluu_ldap_uuid, azure_user_uuid_value)
+        print "AzureAD. Value of found_user is %s" % found_user
+        if found_user is None:
+            new_user = User()
+            self.populate_user_obj_with_azure_user_data(new_user, azure_auth_response_json)
+            try:
+                # Add azure user in Gluu LDAP
+                found_user = user_service.addUser(new_user, True)
+                found_user_id = found_user.getUserId()
+                print("AzureAD: Azure User added successfully in Gluu LDAP " + found_user_id)
+            except Exception, err:
+                print("AzureAD: Error in adding azure user to Gluu LDAP:" + str(err))
+                return None
+        else:
+            self.populate_user_obj_with_azure_user_data(found_user, azure_auth_response_json)
+            try:
+                # Update the user in Gluu LDAP with latest values from Azure AD
+                found_user = user_service.updateUser(found_user)
+                found_user_id = found_user.getUserId()
+                print("AzureAD: Azure User updated successfully in Gluu LDAP " + found_user_id)
+            except Exception, err:
+                print("AzureAD: Error in updating azure user to Gluu LDAP:" + str(err))
+                return None
+
+        return found_user
+
+    @staticmethod
+    def populate_user_obj_with_azure_user_data(user, azure_auth_response_json):
+        # attributes_mapping = ["oid:uid", "given_name:givenName", "family_name:sn", "upn:mail"]
+        for attributesMappingEntry in attributes_mapping.entrySet():
+            azure_ad_attribute_key = attributesMappingEntry.getKey()
+            gluu_ldap_attribute_key = attributesMappingEntry.getValue()
+            gluu_ldap_attribute_value = "undefined"
+            if azure_ad_attribute_key in azure_auth_response_json:
+                gluu_ldap_attribute_value = azure_auth_response_json[azure_ad_attribute_key]
+            print gluu_ldap_attribute_key + ' : ' + gluu_ldap_attribute_value
+            if (gluu_ldap_attribute_key is not None) & (gluu_ldap_attribute_value != "undefined"):
+                user.setAttribute(gluu_ldap_attribute_key, gluu_ldap_attribute_value)
+        return None
+
+    @staticmethod
+    def authenticate_user_in_gluu_ldap(authentication_service, user_name, user_password):
+        return authentication_service.authenticate(user_name, user_password)
+
+    @staticmethod
+    def find_user_from_gluu_ldap_by_attribute(user_service, attribute_name, attribute_value):
+        return user_service.getUserByAttribute(attribute_name, attribute_value)
+
+    def getExtraParametersForStep(self, configuration_attributes, step):
+        return None
+
+    def getCountAuthenticationSteps(self, configuration_attributes):
+        return 1
+
+    def getPageForStep(self, configuration_attributes, step):
+        return ""
+
+    def destroy(self, configuration_attributes):
+        print "AzureAD. Destroy"
+        return True
+
+    def getAuthenticationMethodClaims(self, requestParameters):
+        return None
+
+    def getApiVersion(self):
+        return 11
+
+    def isValidAuthenticationMethod(self, usage_type, configuration_attributes):
+        return True
+
+    def getAlternativeAuthenticationMethod(self, usage_type, configuration_attributes):
+        return None
+
+    def logout(self, configuration_attributes, request_parameters):
+        return True
+
+    def getNextStep(self, configurationAttributes, requestParameters, step):
+        return -1
+
+    def getLogoutExternalUrl(self, configurationAttributes, requestParameters):
+        print "Get external logout URL call"
+        return None
\ No newline at end of file
diff --git a/oxAuth/Server/integrations/azuread/README.md b/oxAuth/Server/integrations/azuread/README.md
new file mode 100644
index 00000000..2d25bca9
--- /dev/null
+++ b/oxAuth/Server/integrations/azuread/README.md
@@ -0,0 +1,13 @@
+
+This is a person authentication module for oxAuth that allows user to authenticate against Azure AD. 
+
+Required Custom property (key/value) -
+1) azure_tenant_id  (Azure AD's Tenant ID)
+2) azure_client_id  
+3) azure_client_secret
+4) azure_ad_attributes_list = oid,given_name,family_name,upn
+5) gluu_ldap_attributes_list = uid,givenName,sn,mail
+
+Note:
+An administrator of the Azure AD portal (portal.azure.com) needs to create an application for Gluu Server in the azure portal (with necessary permissions)
+and configure the client id and client secret in the Custom properties of this Jython script.
diff --git a/oxAuth/Server/integrations/basic.change_password/BasicPassowrdUpdateExternalAuthenticator.py b/oxAuth/Server/integrations/basic.change_password/BasicPassowrdUpdateExternalAuthenticator.py
new file mode 100644
index 00000000..37a68a10
--- /dev/null
+++ b/oxAuth/Server/integrations/basic.change_password/BasicPassowrdUpdateExternalAuthenticator.py
@@ -0,0 +1,124 @@
+# oxAuth is available under the MIT License (2008). See http://opensource.org/licenses/MIT for full text.
+# Copyright (c) 2016, Gluu
+#
+# Author: Yuriy Movchan
+#
+
+from org.gluu.service.cdi.util import CdiUtil
+from org.gluu.oxauth.security import Identity
+from org.gluu.model.custom.script.type.auth import PersonAuthenticationType
+from org.gluu.oxauth.service import UserService, AuthenticationService
+from org.gluu.util import StringHelper, ArrayHelper
+from org.gluu.oxauth.util import ServerUtil
+
+import java
+
+class PersonAuthentication(PersonAuthenticationType):
+    def __init__(self, currentTimeMillis):
+        self.currentTimeMillis = currentTimeMillis
+
+    def init(self, customScript, configurationAttributes):
+        print "Basic (with password update). Initialization"
+        print "Basic (with password update). Initialized successfully"
+        return True   
+
+    def destroy(self, configurationAttributes):
+        print "Basic (with password update). Destroy"
+        print "Basic (with password update). Destroyed successfully"
+        return True
+
+    def getApiVersion(self):
+        return 11
+
+    def getAuthenticationMethodClaims(self, requestParameters):
+        return None
+        
+    def isValidAuthenticationMethod(self, usageType, configurationAttributes):
+        return True
+
+    def getAlternativeAuthenticationMethod(self, usageType, configurationAttributes):
+        return None
+
+    def authenticate(self, configurationAttributes, requestParameters, step):
+        userService = CdiUtil.bean(UserService)
+        authenticationService = CdiUtil.bean(AuthenticationService)
+
+        identity = CdiUtil.bean(Identity)
+        credentials = identity.getCredentials()
+        user_name = credentials.getUsername()
+
+        if (step == 1):
+            print "Basic (with password update). Authenticate for step 1"
+
+            user_password = credentials.getPassword()
+
+            logged_in = False
+            if (StringHelper.isNotEmptyString(user_name) and StringHelper.isNotEmptyString(user_password)):
+                logged_in = authenticationService.authenticate(user_name, user_password)
+
+            if (not logged_in):
+                return False
+
+            return True
+        elif (step == 2):
+            print "Basic (with password update). Authenticate for step 2"
+            user = authenticationService.getAuthenticatedUser()
+            if user == None:
+                print "Basic (with password update). Authenticate for step 2. Failed to determine user name"
+                return False
+
+            user_name = user.getUserId()
+            find_user_by_uid = userService.getUser(user_name)
+
+            update_button = requestParameters.get("loginForm:updateButton")
+
+            if ArrayHelper.isEmpty(update_button):
+                return True
+
+            new_password_array = requestParameters.get("new_password")
+            if ArrayHelper.isEmpty(new_password_array) or StringHelper.isEmpty(new_password_array[0]):
+                print "Basic (with password update). Authenticate for step 2. New password is empty"
+                return False
+
+            new_password = new_password_array[0]
+            find_user_by_uid.setAttribute("userPassword", new_password)
+            print "Basic (with password update). Authenticate for step 2. Attempting to set new user '%s' password" % user_name
+
+            userService.updateUser(find_user_by_uid)
+            print "Basic (with password update). Authenticate for step 2. Password updated successfully"
+
+            return True
+        else:
+            return False
+
+    def prepareForStep(self, configurationAttributes, requestParameters, step):
+        if (step == 1):
+            print "Basic (with password update). Prepare for Step 1"
+            return True
+        elif (step == 2):
+            print "Basic (with password update). Prepare for Step 2"
+            return True
+        else:
+            return False
+
+    def getExtraParametersForStep(self, configurationAttributes, step):
+        return None
+
+    def getCountAuthenticationSteps(self, configurationAttributes):
+        return 2
+
+    def getPageForStep(self, configurationAttributes, step):
+        if (step == 2):
+            return "/auth/pwd/newpassword.xhtml"
+
+        return ""
+        
+    def getNextStep(self, configurationAttributes, requestParameters, step):
+        return -1
+
+    def getLogoutExternalUrl(self, configurationAttributes, requestParameters):
+        print "Get external logout URL call"
+        return None
+        
+    def logout(self, configurationAttributes, requestParameters):
+        return True
diff --git a/oxAuth/Server/integrations/basic.change_password/auth/pwd/new-password.xhtml b/oxAuth/Server/integrations/basic.change_password/auth/pwd/new-password.xhtml
new file mode 100644
index 00000000..5f61a2f9
--- /dev/null
+++ b/oxAuth/Server/integrations/basic.change_password/auth/pwd/new-password.xhtml
@@ -0,0 +1,114 @@
+<!DOCTYPE composition PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN"
+        "http://www.w3.org/TR/xhtml1/DTD/xhtml1-transitional.dtd">
+<ui:composition xmlns="http://www.w3.org/1999/xhtml"
+                xmlns:ui="http://xmlns.jcp.org/jsf/facelets"
+                xmlns:h="http://xmlns.jcp.org/jsf/html"
+                template="/WEB-INF/incl/layout/template.xhtml">
+    <ui:define name="head">
+        <style type="text/css">
+            .login-panel {
+                border-style: solid;
+                border-width: 1px;
+                padding: 1px;
+                background-color: #FFFFFF;
+                border-color: #C4C0B9;
+            }
+
+            .login-panel-header {
+                background-color: #D4CFC7;
+                background-image: url("#{oxAuthConfigurationService.getImgLocation()}/panel_header_bg.png");
+                background-position: left top;
+                background-repeat: repeat-x;
+                border-style: solid;
+                border-width: 1px;
+                padding: 2px;
+                border-color: #D4CFC7;
+                color: #000000;
+                font-family: Arial, Verdana, sans-serif;
+                font-size: 11px;
+                font-weight: bold;
+            }
+
+            .login-panel-body {
+                padding: 10px;
+                color: #000000;
+                font-family: Arial, Verdana, sans-serif;
+                font-size: 11px;
+            }
+        </style>
+    </ui:define>
+
+    <ui:define name="pageTitle">oxAuth - New Password</ui:define>
+
+    <ui:define name="body">
+        <table border="0" align="center">
+            <tr>
+                <td>
+                    <div>
+                        <h:form id="loginForm">
+                            <h:panelGroup rendered="#{not identity.loggedIn}">
+                                <div class="login-panel">
+                                    <div class="login-panel-header">
+                                        <h:outputText value="#{messages['login.login']}"/>
+                                    </div>
+                                    <div class="login-panel-body">
+                                        <ui:param name="client" value="#{clientService.getClient(sessionAttributes['client_id'])}" />
+
+                                        <h:panelGroup layout="block" rendered='#{!empty client.getLogoUri()}'>
+                                            <h:graphicImage url='#{client.getLogoUri()}'/>
+                                        </h:panelGroup>
+
+                                        <p class="info">
+                                            <h:outputText value="#{messages['login.pleaseLoginHere']}"/>
+                                        </p>
+
+                                        <div class="dialog">
+                                            <h:panelGrid columns="3" border="0" rowClasses="prop"
+                                                         columnClasses="name,value,hint">
+				                                <h:outputLabel for="password">New Password</h:outputLabel>
+						                <input id="password" name="new_password"  type="password" autocomplete="off" />
+                                                <h:outputText value="Specify new password"/>
+                                            </h:panelGrid>
+                                        </div>
+
+                                        <h:panelGroup rendered='#{!empty client.getPolicyUri()}'>
+                                            <p>
+                                                <h:outputText value="#{messages['common.agreePolicy']}"/>
+                                                <a target="_blank" href='#{client.getPolicyUri()}'>
+                                                    <h:outputText value="#{messages['common.privacyPolicy']}"/>
+                                                </a>
+                                            </p>
+                                        </h:panelGroup>
+
+                                        <h:panelGroup rendered='#{!empty client.getTosUri()}'>
+                                            <p>
+                                                <h:outputText value="#{messages['common.pleaseReadTheTos']}"/>
+                                                <a target="_blank" href='#{client.getTosUri()}'>
+                                                    <h:outputText value="#{messages['common.termsOfService']}"/>
+                                                </a>
+                                            </p>
+                                        </h:panelGroup>
+
+                                        <div class="actionButtons">
+                                            <h:commandButton id="updateButton"
+                                                             value="Update"
+                                                             action="#{authenticator.authenticate}"/>
+                                            <h:commandButton id="skipButton"
+                                                             value="Skip"
+                                                             action="#{authenticator.authenticate}"/>
+                                        </div>
+                                    </div>
+                                </div>
+                            </h:panelGroup>
+                        </h:form>
+                    </div>
+                </td>
+            </tr>
+        </table>
+        <script type="text/javascript">
+            window.onload = function() {
+                document.getElementById("loginForm:username").focus();
+            };
+        </script>
+    </ui:define>
+</ui:composition>
\ No newline at end of file
diff --git a/oxAuth/Server/integrations/basic.client_group/BasicClientGroupExternalAuthenticator.py b/oxAuth/Server/integrations/basic.client_group/BasicClientGroupExternalAuthenticator.py
new file mode 100644
index 00000000..8a27a85d
--- /dev/null
+++ b/oxAuth/Server/integrations/basic.client_group/BasicClientGroupExternalAuthenticator.py
@@ -0,0 +1,177 @@
+# oxAuth is available under the MIT License (2008). See http://opensource.org/licenses/MIT for full text.
+# Copyright (c) 2019, Gluu
+#
+# Author: Yuriy Movchan
+#
+
+from org.gluu.service.cdi.util import CdiUtil
+from org.gluu.oxauth.security import Identity
+from org.gluu.model.custom.script.type.auth import PersonAuthenticationType
+from org.gluu.oxauth.service import UserService, AuthenticationService, AppInitializer
+from org.gluu.util import StringHelper
+from java.util import Arrays, HashMap
+
+import java
+import json
+
+class PersonAuthentication(PersonAuthenticationType):
+    def __init__(self, currentTimeMillis):
+        self.currentTimeMillis = currentTimeMillis
+
+    def init(self, customScript,  configurationAttributes):
+        print "Basic (client group). Initialization"
+        
+        self.allow_default_login = False
+        if configurationAttributes.containsKey("allow_default_login"):
+            self.allow_default_login = StringHelper.toBoolean(configurationAttributes.get("allow_default_login").getValue2(), False)
+
+        if not configurationAttributes.containsKey("configuration_file"):
+            print "Basic (client group). The property configuration_file is empty"
+            return False
+            
+        configurationFilePath = configurationAttributes.get("configuration_file").getValue2()
+        self.client_configurations = self.loadClientConfigurations(configurationFilePath)
+        if self.client_configurations == None:
+            print "Basic (client group). File with client configuration should be not empty"
+            return False
+
+        print "Basic (client group). Initialized successfully"
+        return True     
+
+    def destroy(self, clientConfiguration):
+        print "Basic (client group). Destroy"
+
+        print "Basic (client group). Destroyed successfully"
+        return True
+
+    def getApiVersion(self):
+        return 11
+
+def getAuthenticationMethodClaims(self, requestParameters):
+        return None
+
+    def isValidAuthenticationMethod(self, usageType, configurationAttributes):
+        return True
+
+    def getAlternativeAuthenticationMethod(self, usageType, configurationAttributes):
+        return None
+
+    def authenticate(self, configurationAttributes, requestParameters, step):
+        authenticationService = CdiUtil.bean(AuthenticationService)
+
+        identity = CdiUtil.bean(Identity)
+        credentials = identity.getCredentials()
+        session_attributes = identity.getSessionId().getSessionAttributes()
+
+        client_id = session_attributes.get("client_id")
+        print "Basic (client group). Get client_id: '%s' authorization request" % client_id
+
+        user_groups = self.client_configurations.get(client_id)
+        if user_groups == None:
+            print "Basic (client group). There is no user groups configuration for client_id '%s'. allow_default_login: %s" % (client_id, self.allow_default_login)
+            if not self.allow_default_login:
+                return False
+
+            result = self.authenticateImpl(credentials, authenticationService)
+            return result
+
+        is_member_client_groups = self.isUserMemberOfGroups(credentials, user_groups)
+        if not is_member_client_groups:
+            print "Basic (client group). User '%s' hasn't permissions to log into client_id '%s' application. " % (credentials.getUsername(), client_id)
+            return False
+
+        result = self.authenticateImpl(credentials, authenticationService)
+        return result
+
+    def prepareForStep(self, configurationAttributes, requestParameters, step):
+        if step == 1:
+            print "Basic (client group). Prepare for Step 1"
+            return True
+        else:
+            return False
+
+    def getExtraParametersForStep(self, configurationAttributes, step):
+        return None
+
+    def getCountAuthenticationSteps(self, configurationAttributes):
+        return 1
+
+    def getPageForStep(self, configurationAttributes, step):
+        return ""
+
+    def logout(self, configurationAttributes, requestParameters):
+        return True
+
+    def authenticateImpl(self, credentials, authenticationService):
+        print "Basic (client group). Processing user name/password authentication"
+
+        user_name = credentials.getUsername()
+        user_password = credentials.getPassword()
+
+        logged_in = False
+        if StringHelper.isNotEmptyString(user_name) and StringHelper.isNotEmptyString(user_password):
+            logged_in = authenticationService.authenticate(user_name, user_password)
+
+        if not logged_in:
+            return False
+
+        return True
+
+    def loadClientConfigurations(self, configurationFile):
+        clientConfiguration = None
+
+        # Load configuration from file
+        f = open(configurationFile, 'r')
+        try:
+            configurationFileJson = json.loads(f.read())
+        except:
+            print "Basic (client group). Load configuration from file. Failed to load authentication configuration from file:", configurationFile
+            return None
+        finally:
+            f.close()
+
+        clientConfigurations = HashMap()
+        for client_key in configurationFileJson.keys():
+            client_config = configurationFileJson[client_key]
+
+            client_inum = client_config["client_inum"]
+            user_groups_array = client_config["user_group"]
+            user_groups = Arrays.asList(user_groups_array)
+            clientConfigurations.put(client_inum, user_groups)
+
+        print "Basic (client group). Load configuration from file. Loaded '%s' configurations" % clientConfigurations.size()
+        print clientConfigurations
+        
+        return clientConfigurations
+
+    def isUserMemberOfGroups(self, credentials, groups):
+        userService = CdiUtil.bean(UserService)
+
+        user_name = credentials.getUsername()
+        if StringHelper.isEmptyString(user_name):
+            return False
+
+        find_user_by_uid = userService.getUser(user_name)
+
+        is_member = False
+        member_of_list = find_user_by_uid.getAttributeValues("memberOf")
+        if member_of_list == None:
+            return is_member
+        
+        print member_of_list
+        print groups
+
+        for member_of in member_of_list:
+            for group in groups:
+                if StringHelper.equalsIgnoreCase(group, member_of) or member_of.endswith(group):
+                    is_member = True
+                    break
+
+        return is_member
+
+    def getNextStep(self, configurationAttributes, requestParameters, step):
+        return -1
+
+    def getLogoutExternalUrl(self, configurationAttributes, requestParameters):
+        print "Get external logout URL call"
+        return None
\ No newline at end of file
diff --git a/oxAuth/Server/integrations/basic.client_group/README.txt b/oxAuth/Server/integrations/basic.client_group/README.txt
new file mode 100644
index 00000000..9cb52631
--- /dev/null
+++ b/oxAuth/Server/integrations/basic.client_group/README.txt
@@ -0,0 +1,25 @@
+This person authentication module for oxAuth allows to restrict access to RP for specific user groups. It allows to define configuration for each client.
+
+This module has one mandatory property `configuration_file`. It's path to JSON configuration file
+   Example: /etc/certs/client_group.json
+   Example content of this file:
+
+{
+   "client_1":{
+      "client_inum":"client_inum_1",
+      "user_group":[
+         "group_dn_1",
+         "group_dn_2"
+      ]
+   },
+   "client_2":{
+      "client_inum":"client_inum_2",
+      "user_group":[
+         "group_dn_1",
+         "group_dn_2"
+      ]
+   }
+}
+
+Also it's possible to define how it should work when there is no configuration for specific client. This is controlled via property:
+`allow_default_login`: true/false
diff --git a/oxAuth/Server/integrations/basic.client_group/client_group.json b/oxAuth/Server/integrations/basic.client_group/client_group.json
new file mode 100644
index 00000000..4476826f
--- /dev/null
+++ b/oxAuth/Server/integrations/basic.client_group/client_group.json
@@ -0,0 +1,16 @@
+{
+   "client_1":{
+      "client_inum":"client_inum_1",
+      "user_group":[
+         "group_dn_1",
+         "group_dn_2"
+      ]
+   },
+   "client_2":{
+      "client_inum":"client_inum_2",
+      "user_group":[
+         "group_dn_1",
+         "group_dn_2"
+      ]
+   }
+}
diff --git a/oxAuth/Server/integrations/basic.external_logout/BasicExternalAuthenticatorWithExternalLogout.py b/oxAuth/Server/integrations/basic.external_logout/BasicExternalAuthenticatorWithExternalLogout.py
new file mode 100644
index 00000000..8ebfaa3c
--- /dev/null
+++ b/oxAuth/Server/integrations/basic.external_logout/BasicExternalAuthenticatorWithExternalLogout.py
@@ -0,0 +1,91 @@
+# oxAuth is available under the MIT License (2008). See http://opensource.org/licenses/MIT for full text.
+# Copyright (c) 2019, Gluu
+#
+# Author: Yuriy Movchan
+#
+
+from org.gluu.service.cdi.util import CdiUtil
+from org.gluu.oxauth.security import Identity
+from org.gluu.model.custom.script.type.auth import PersonAuthenticationType
+from org.gluu.oxauth.service import AuthenticationService
+from org.gluu.util import StringHelper
+
+import java
+
+class PersonAuthentication(PersonAuthenticationType):
+    def __init__(self, currentTimeMillis):
+        self.currentTimeMillis = currentTimeMillis
+
+    def init(self, customScript, configurationAttributes):
+        print "Basic (with external logout). Initialization"
+        print "Basic (with external logout). Initialized successfully"
+        return True   
+
+    def destroy(self, configurationAttributes):
+        print "Basic (with external logout). Destroy"
+        print "Basic (with external logout). Destroyed successfully"
+        return True
+
+    def getApiVersion(self):
+        return 11
+
+    def getAuthenticationMethodClaims(self, requestParameters):
+        return None
+        
+    def isValidAuthenticationMethod(self, usageType, configurationAttributes):
+        return True
+
+    def getAlternativeAuthenticationMethod(self, usageType, configurationAttributes):
+        return None
+
+    def authenticate(self, configurationAttributes, requestParameters, step):
+        authenticationService = CdiUtil.bean(AuthenticationService)
+
+        if (step == 1):
+            print "Basic (with external logout). Authenticate for step 1"
+
+            identity = CdiUtil.bean(Identity)
+            credentials = identity.getCredentials()
+
+            user_name = credentials.getUsername()
+            user_password = credentials.getPassword()
+
+            logged_in = False
+            if (StringHelper.isNotEmptyString(user_name) and StringHelper.isNotEmptyString(user_password)):
+                logged_in = authenticationService.authenticate(user_name, user_password)
+
+            if (not logged_in):
+                return False
+
+            return True
+        else:
+            return False
+
+    def prepareForStep(self, configurationAttributes, requestParameters, step):
+        if (step == 1):
+            print "Basic (with external logout). Prepare for Step 1"
+            return True
+        else:
+            return False
+
+    def getExtraParametersForStep(self, configurationAttributes, step):
+        return None
+
+    def getCountAuthenticationSteps(self, configurationAttributes):
+        return 1
+
+    def getPageForStep(self, configurationAttributes, step):
+        return ""
+
+    def getNextStep(self, configurationAttributes, requestParameters, step):
+        return -1
+
+    def getLogoutExternalUrl(self, configurationAttributes, requestParameters):
+        print "Basic (with external logout). Get external logout URL call"
+        return "https://www.dummy.org/app/logout.htm"
+
+    # In order to get this method call RP should end_session request to https://<server>/oxauth/logout.htm enpoint
+    # instead of https://<server>/oxauth/restv1/end_session endpoint
+    def logout(self, configurationAttributes, requestParameters):
+        print "Basic (with external logout). Logout call"
+        return True
diff --git a/oxAuth/Server/integrations/basic.external_logout/README.txt b/oxAuth/Server/integrations/basic.external_logout/README.txt
new file mode 100644
index 00000000..82ea8046
--- /dev/null
+++ b/oxAuth/Server/integrations/basic.external_logout/README.txt
@@ -0,0 +1,3 @@
+This is person authentication module for oxAuth which do basic authentication and at logout do redirect to external service.
+
+This module hasn't properties.
\ No newline at end of file
diff --git a/oxAuth/Server/integrations/basic.ldap_auth_confs/LdapAuthConfExternalAuthenticator.py b/oxAuth/Server/integrations/basic.ldap_auth_confs/LdapAuthConfExternalAuthenticator.py
new file mode 100644
index 00000000..372adbe2
--- /dev/null
+++ b/oxAuth/Server/integrations/basic.ldap_auth_confs/LdapAuthConfExternalAuthenticator.py
@@ -0,0 +1,125 @@
+# oxAuth is available under the MIT License (2008). See http://opensource.org/licenses/MIT for full text.
+# Copyright (c) 2022, Gluu
+#
+# Author: Yuriy Movchan
+#
+
+from org.gluu.service.cdi.util import CdiUtil
+from org.gluu.oxauth.security import Identity
+from org.gluu.model.custom.script.type.auth import PersonAuthenticationType
+from org.gluu.oxauth.service import UserService, AuthenticationService, AppInitializer
+from org.gluu.oxauth.service.common import ApplicationFactory
+from org.gluu.oxauth.service import MetricService
+from org.gluu.oxauth.service.common import EncryptionService
+from org.gluu.model.metric import MetricType
+from org.gluu.util import StringHelper
+from org.gluu.util import ArrayHelper
+from org.gluu.persist.service import PersistanceFactoryService
+from org.gluu.persist.ldap.impl import LdapEntryManagerFactory
+from org.gluu.model.ldap import GluuLdapConfiguration
+from java.util import List, Arrays, Properties
+
+import java
+
+class PersonAuthentication(PersonAuthenticationType):
+    def __init__(self, currentTimeMillis):
+        self.currentTimeMillis = currentTimeMillis
+
+    def init(self, customScript, configurationAttributes):
+        print "Basic (ldap auth conf). Initialization"
+
+        authenticationService = CdiUtil.bean(AuthenticationService)
+        self.ldapAuthConfigs = authenticationService.getLdapAuthConfigs()
+        self.ldapAuthEntryManagers = authenticationService.getLdapAuthEntryManagers()
+        if self.ldapAuthEntryManagers == None:
+            print "Basic (ldap auth conf). At least one LDAP authentication configuration should be defined"
+            return False
+
+        print "Basic (ldap auth conf). Found %s LDAP Authentication entry managers" % self.ldapAuthEntryManagers.size()
+
+        print "Basic (ldap auth conf). Initialized successfully"
+        return True
+
+    def destroy(self, authConfiguration):
+        print "Basic (ldap auth conf). Destroy"
+
+        print "Basic (ldap auth conf). Destroyed successfully"
+
+        return True
+
+    def getApiVersion(self):
+        return 11
+
+    def getAuthenticationMethodClaims(self, requestParameters):
+        return None
+
+    def isValidAuthenticationMethod(self, usageType, configurationAttributes):
+        return True
+
+    def getAlternativeAuthenticationMethod(self, usageType, configurationAttributes):
+        return None
+
+    def authenticate(self, configurationAttributes, requestParameters, step):
+        authenticationService = CdiUtil.bean(AuthenticationService)
+
+        if (step == 1):
+            print "Basic (ldap auth conf). Authenticate for step 1"
+
+            identity = CdiUtil.bean(Identity)
+            credentials = identity.getCredentials()
+
+            metricService = CdiUtil.bean(MetricService)
+            timerContext = metricService.getTimer(MetricType.OXAUTH_USER_AUTHENTICATION_RATE).time()
+            try:
+                keyValue = credentials.getUsername()
+                userPassword = credentials.getPassword()
+    
+                if (StringHelper.isNotEmptyString(keyValue) and StringHelper.isNotEmptyString(userPassword)):
+                    for i in range(self.ldapAuthEntryManagers.size()):
+                        ldapConfiguration = self.ldapAuthConfigs.get(i)
+                        ldapEntryManager = self.ldapAuthEntryManagers.get(i)
+
+                        primaryKey = ldapConfiguration.getPrimaryKey()
+                        localPrimaryKey = ldapConfiguration.getLocalPrimaryKey()
+    
+                        print "Basic (ldap auth conf). Authenticate for step 1. Using configuration: " + ldapConfiguration.getConfigId()
+    
+
+                        loggedIn = authenticationService.authenticate(ldapConfiguration, ldapEntryManager, keyValue, userPassword, primaryKey, localPrimaryKey)
+                        if (loggedIn):
+                            metricService.incCounter(MetricType.OXAUTH_USER_AUTHENTICATION_SUCCESS)
+                            return True
+            finally:
+                timerContext.stop()
+                
+            metricService.incCounter(MetricType.OXAUTH_USER_AUTHENTICATION_FAILURES)
+
+            return False
+        else:
+            return False
+
+    def prepareForStep(self, configurationAttributes, requestParameters, step):
+        if (step == 1):
+            print "Basic (ldap auth conf). Prepare for Step 1"
+            return True
+        else:
+            return False
+
+    def getExtraParametersForStep(self, configurationAttributes, step):
+        return None
+
+    def getCountAuthenticationSteps(self, configurationAttributes):
+        return 1
+
+    def getPageForStep(self, configurationAttributes, step):
+        return ""
+
+    def getNextStep(self, configurationAttributes, requestParameters, step):
+        return -1
+
+    def getLogoutExternalUrl(self, configurationAttributes, requestParameters):
+        print "Get external logout URL call"
+        return None
+
+    def logout(self, configurationAttributes, requestParameters):
+        return True
diff --git a/oxAuth/Server/integrations/basic.ldap_auth_confs/README.txt b/oxAuth/Server/integrations/basic.ldap_auth_confs/README.txt
new file mode 100644
index 00000000..6279ee99
--- /dev/null
+++ b/oxAuth/Server/integrations/basic.ldap_auth_confs/README.txt
@@ -0,0 +1,2 @@
+This is person authentication module for oxAuth which allows to specify multiple authentication configurations.
+It's uses configurations defined on `Manage Authentication` page. 
diff --git a/oxAuth/Server/integrations/basic.lock.account/BasicLockAccountExternalAuthenticator.py b/oxAuth/Server/integrations/basic.lock.account/BasicLockAccountExternalAuthenticator.py
new file mode 100644
index 00000000..240603e3
--- /dev/null
+++ b/oxAuth/Server/integrations/basic.lock.account/BasicLockAccountExternalAuthenticator.py
@@ -0,0 +1,271 @@
+# oxAuth is available under the MIT License (2008). See http://opensource.org/licenses/MIT for full text.
+# Copyright (c) 2016, Gluu
+#
+# Author: Yuriy Movchan
+# Author: Gasmyr Mougang
+#
+
+from org.gluu.service.cdi.util import CdiUtil
+from org.gluu.oxauth.security import Identity
+from org.gluu.model.custom.script.type.auth import PersonAuthenticationType
+from org.gluu.oxauth.service import AuthenticationService
+from org.gluu.oxauth.service.common import UserService
+from org.gluu.service import CacheService
+from org.gluu.util import StringHelper
+from org.gluu.persist.exception import AuthenticationException
+from javax.faces.application import FacesMessage
+from org.gluu.jsf2.message import FacesMessages
+from java.time import LocalDateTime, Duration
+from java.time.format import DateTimeFormatter
+
+import java
+import datetime
+import json
+
+class PersonAuthentication(PersonAuthenticationType):
+    def __init__(self, currentTimeMillis):
+        self.currentTimeMillis = currentTimeMillis
+
+    def init(self, customScript,  configurationAttributes):
+        print "Basic (lock account). Initialization"
+
+        self.invalidLoginCountAttribute = "oxCountInvalidLogin"
+        if configurationAttributes.containsKey("invalid_login_count_attribute"):
+            self.invalidLoginCountAttribute = configurationAttributes.get("invalid_login_count_attribute").getValue2()
+        else:
+            print "Basic (lock account). Initialization. Using default attribute"
+
+        self.maximumInvalidLoginAttemps = 3
+        if configurationAttributes.containsKey("maximum_invalid_login_attemps"):
+            self.maximumInvalidLoginAttemps = StringHelper.toInteger(configurationAttributes.get("maximum_invalid_login_attemps").getValue2())
+        else:
+            print "Basic (lock account). Initialization. Using default number attempts"
+
+        self.lockExpirationTime = 180
+        if configurationAttributes.containsKey("lock_expiration_time"):
+            self.lockExpirationTime = StringHelper.toInteger(configurationAttributes.get("lock_expiration_time").getValue2())
+        else:
+            print "Basic (lock account). Initialization. Using default lock expiration time"
+
+
+        print "Basic (lock account). Initialized successfully. invalid_login_count_attribute: '%s', maximum_invalid_login_attemps: '%s', lock_expiration_time: '%s'" % (self.invalidLoginCountAttribute, self.maximumInvalidLoginAttemps, self.lockExpirationTime)
+
+        return True   
+
+    def destroy(self, configurationAttributes):
+        print "Basic (lock account). Destroy"
+        print "Basic (lock account). Destroyed successfully"
+        return True
+
+    def getApiVersion(self):
+        return 11
+
+    def getAuthenticationMethodClaims(self, requestParameters):
+        return None
+        
+    def isValidAuthenticationMethod(self, usageType, configurationAttributes):
+        return True
+
+    def getAlternativeAuthenticationMethod(self, usageType, configurationAttributes):
+        return None
+
+    def authenticate(self, configurationAttributes, requestParameters, step):
+        authenticationService = CdiUtil.bean(AuthenticationService)
+
+        if step == 1:
+            print "Basic (lock account). Authenticate for step 1"
+            facesMessages = CdiUtil.bean(FacesMessages)
+            facesMessages.setKeepMessages()
+            identity = CdiUtil.bean(Identity)
+            credentials = identity.getCredentials()
+            user_name = credentials.getUsername()
+            user_password = credentials.getPassword()
+            cacheService = CdiUtil.bean(CacheService)
+            userService = CdiUtil.bean(UserService)
+
+
+            logged_in = False
+            if (StringHelper.isNotEmptyString(user_name) and StringHelper.isNotEmptyString(user_password)):
+                try:
+                    logged_in = authenticationService.authenticate(user_name, user_password)
+                except AuthenticationException:
+                    print "Basic (lock account). Authenticate. Failed to authenticate user '%s'" % user_name
+
+            if logged_in:
+                self.setUserAttributeValue(user_name, self.invalidLoginCountAttribute, StringHelper.toString(0))
+            else:
+                countInvalidLoginArributeValue = self.getUserAttributeValue(user_name, self.invalidLoginCountAttribute)
+                userSatus = self.getUserAttributeValue(user_name, "gluuStatus")
+                print "Current user '%s' status is '%s'" % ( user_name, userSatus )
+
+                countInvalidLogin = StringHelper.toInteger(countInvalidLoginArributeValue, 0)
+
+                if countInvalidLogin < self.maximumInvalidLoginAttemps:
+                    countInvalidLogin = countInvalidLogin + 1
+                    remainingAttempts = self.maximumInvalidLoginAttemps - countInvalidLogin
+
+                    print "Remaining login count attempts '%s' for user '%s'" % ( remainingAttempts, user_name )
+
+                    self.setUserAttributeValue(user_name, self.invalidLoginCountAttribute, StringHelper.toString(countInvalidLogin))
+                    if remainingAttempts > 0 and userSatus == "active":
+                        facesMessages.add(FacesMessage.SEVERITY_INFO, StringHelper.toString(remainingAttempts)+" more attempt(s) before account is LOCKED!")
+
+                if (countInvalidLogin >= self.maximumInvalidLoginAttemps) and ((userSatus == None) or (userSatus == "active")):
+                    print "Basic (lock account). Locking '%s' for '%s' seconds" % ( user_name, self.lockExpirationTime)
+                    self.lockUser(user_name)
+                    return False
+
+                if (countInvalidLogin >= self.maximumInvalidLoginAttemps) and userSatus == "inactive":
+                    print "Basic (lock account). User '%s' is locked. Checking if we can unlock him" % user_name
+                    
+                    unlock_and_authenticate = False
+
+                    object_from_store = cacheService.get(None, "lock_user_" + user_name)
+                    if object_from_store == None:
+                        # Object in cache was expired. We need to unlock user
+                        print "Basic (lock account). User locking details for user '%s' not exists" % user_name
+                        unlock_and_authenticate = True
+                    else:
+                        # Analyze object from cache
+                        user_lock_details = json.loads(object_from_store)
+
+                        user_lock_details_locked = user_lock_details['locked']
+                        user_lock_details_created = user_lock_details['created']
+                        user_lock_details_created_date = LocalDateTime.parse(user_lock_details_created, DateTimeFormatter.ISO_LOCAL_DATE_TIME)
+                        user_lock_details_created_diff = Duration.between(user_lock_details_created_date, LocalDateTime.now()).getSeconds()
+                        print "Basic (lock account). Get user '%s' locking details. locked: '%s', Created: '%s', Difference in seconds: '%s'" % ( user_name, user_lock_details_locked, user_lock_details_created, user_lock_details_created_diff )
+
+                        if user_lock_details_locked and user_lock_details_created_diff >= self.lockExpirationTime:
+                            print "Basic (lock account). Unlocking user '%s' after lock expiration" % user_name
+                            unlock_and_authenticate = True
+
+                    if unlock_and_authenticate:
+                        self.unLockUser(user_name)
+                        self.setUserAttributeValue(user_name, self.invalidLoginCountAttribute, StringHelper.toString(0))
+                        logged_in = authenticationService.authenticate(user_name, user_password)
+                        if not logged_in:
+                            # Update number of attempts 
+                            self.setUserAttributeValue(user_name, self.invalidLoginCountAttribute, StringHelper.toString(1))
+                            if self.maximumInvalidLoginAttemps == 1:
+                                # Lock user if maximum count login attempts is 1 
+                                self.lockUser(user_name)
+                                return False
+
+
+            return logged_in
+        else:
+            return False
+
+    def prepareForStep(self, configurationAttributes, requestParameters, step):
+        if step == 1:
+            print "Basic (lock account). Prepare for Step 1"
+            return True
+        else:
+            return False
+
+    def getExtraParametersForStep(self, configurationAttributes, step):
+        return None
+
+    def getCountAuthenticationSteps(self, configurationAttributes):
+        return 1
+
+    def getPageForStep(self, configurationAttributes, step):
+        return ""
+        
+    def getNextStep(self, configurationAttributes, requestParameters, step):
+        return -1
+
+    def getLogoutExternalUrl(self, configurationAttributes, requestParameters):
+        print "Get external logout URL call"
+        return None
+
+    def logout(self, configurationAttributes, requestParameters):
+        return True
+
+    def getUserAttributeValue(self, user_name, attribute_name):
+        if StringHelper.isEmpty(user_name):
+            return None
+
+        userService = CdiUtil.bean(UserService)
+
+        find_user_by_uid = userService.getUser(user_name, attribute_name)
+        if find_user_by_uid == None:
+            return None
+
+        custom_attribute_value = userService.getCustomAttribute(find_user_by_uid, attribute_name)
+        if custom_attribute_value == None:
+            return None
+        
+        attribute_value = custom_attribute_value.getValue()
+
+        print "Basic (lock account). Get user attribute. User's '%s' attribute '%s' value is '%s'" % (user_name, attribute_name, attribute_value)
+
+        return attribute_value
+
+    def setUserAttributeValue(self, user_name, attribute_name, attribute_value):
+        if StringHelper.isEmpty(user_name):
+            return None
+
+        userService = CdiUtil.bean(UserService)
+
+        find_user_by_uid = userService.getUser(user_name)
+        if find_user_by_uid == None:
+            return None
+        
+        userService.setCustomAttribute(find_user_by_uid, attribute_name, attribute_value)
+        updated_user = userService.updateUser(find_user_by_uid)
+
+        print "Basic (lock account). Set user attribute. User's '%s' attribute '%s' value is '%s'" % (user_name, attribute_name, attribute_value)
+
+        return updated_user
+
+    def lockUser(self, user_name):
+        if StringHelper.isEmpty(user_name):
+            return None
+
+        userService = CdiUtil.bean(UserService)
+        cacheService= CdiUtil.bean(CacheService)
+        facesMessages = CdiUtil.bean(FacesMessages)
+        facesMessages.setKeepMessages()
+
+        find_user_by_uid = userService.getUser(user_name)
+        if (find_user_by_uid == None):
+            return None
+
+        status_attribute_value = userService.getCustomAttribute(find_user_by_uid, "gluuStatus")
+        if status_attribute_value != None:
+            user_status = status_attribute_value.getValue()
+            if StringHelper.equals(user_status, "inactive"):
+                print "Basic (lock account). Lock user. User '%s' locked already" % user_name
+                return
+        
+        userService.setCustomAttribute(find_user_by_uid, "gluuStatus", "inactive")
+        updated_user = userService.updateUser(find_user_by_uid)
+
+        object_to_store = json.dumps({'locked': True, 'created': LocalDateTime.now().toString()}, separators=(',',':'))
+
+        cacheService.put(StringHelper.toString(self.lockExpirationTime), "lock_user_"+user_name, object_to_store);
+        facesMessages.add(FacesMessage.SEVERITY_ERROR, "Your account is locked. Please try again after " + StringHelper.toString(self.lockExpirationTime) + " secs")
+
+        print "Basic (lock account). Lock user. User '%s' locked" % user_name
+
+    def unLockUser(self, user_name):
+        if StringHelper.isEmpty(user_name):
+            return None
+
+        userService = CdiUtil.bean(UserService)
+        cacheService= CdiUtil.bean(CacheService)
+
+        find_user_by_uid = userService.getUser(user_name)
+        if (find_user_by_uid == None):
+            return None
+
+        object_to_store = json.dumps({'locked': False, 'created': LocalDateTime.now().toString()}, separators=(',',':'))
+        cacheService.put(StringHelper.toString(self.lockExpirationTime), "lock_user_"+user_name, object_to_store);
+
+        userService.setCustomAttribute(find_user_by_uid, "gluuStatus", "active")
+        userService.setCustomAttribute(find_user_by_uid, self.invalidLoginCountAttribute, None)
+        updated_user = userService.updateUser(find_user_by_uid)
+
+
+        print "Basic (lock account). Lock user. User '%s' unlocked" % user_name
diff --git a/oxAuth/Server/integrations/basic.lock.account/README.txt b/oxAuth/Server/integrations/basic.lock.account/README.txt
new file mode 100644
index 00000000..e9c9cab7
--- /dev/null
+++ b/oxAuth/Server/integrations/basic.lock.account/README.txt
@@ -0,0 +1,15 @@
+
+This is person authentication module for oxAuth which do basic authentication.
+It looks user account after specified number of unsuccessful login attempts.
+
+This module has 2 properties:
+
+1) invalid_login_count_attribute - Specify attribute where script stores count of invalid number of login attemps
+   Default value: oxCountInvalidLogin
+
+2) maximum_invalid_login_attemps - Specify how many times user can enter invalid password before application will lock account
+   Allowed values: integer value greater that 0
+   Example: 3
+   Default value: 3
+3) lock_expiration_time - Specify the time in seconds when lock will be expired
+   Default value: 180
diff --git a/oxAuth/Server/integrations/basic.multi_auth_conf/BasicMultiAuthConfExternalAuthenticator.py b/oxAuth/Server/integrations/basic.multi_auth_conf/BasicMultiAuthConfExternalAuthenticator.py
new file mode 100644
index 00000000..91908e74
--- /dev/null
+++ b/oxAuth/Server/integrations/basic.multi_auth_conf/BasicMultiAuthConfExternalAuthenticator.py
@@ -0,0 +1,293 @@
+# oxAuth is available under the MIT License (2008). See http://opensource.org/licenses/MIT for full text.
+# Copyright (c) 2016, Gluu
+#
+# Author: Yuriy Movchan
+#
+
+from org.gluu.service.cdi.util import CdiUtil
+from org.gluu.oxauth.security import Identity
+from org.gluu.model.custom.script.type.auth import PersonAuthenticationType
+from org.gluu.oxauth.service import UserService, AuthenticationService, AppInitializer
+from org.gluu.oxauth.service import MetricService
+from org.gluu.oxauth.service.common import EncryptionService
+from org.gluu.model.metric import MetricType
+from org.gluu.util import StringHelper
+from org.gluu.util import ArrayHelper
+from org.gluu.persist.service import PersistanceFactoryService
+from org.gluu.persist.ldap.impl import LdapEntryManagerFactory
+from org.gluu.model.ldap import GluuLdapConfiguration
+from java.util import Arrays, Properties
+
+import java
+import json
+
+class PersonAuthentication(PersonAuthenticationType):
+    def __init__(self, currentTimeMillis):
+        self.currentTimeMillis = currentTimeMillis
+
+    def init(self, customScript, configurationAttributes):
+        print "Basic (multi auth conf). Initialization"
+
+        if (not configurationAttributes.containsKey("auth_configuration_file")):
+            print "Basic (multi auth conf). The property auth_configuration_file is empty"
+            return False
+            
+        authConfigurationFile = configurationAttributes.get("auth_configuration_file").getValue2()
+        authConfiguration = self.loadAuthConfiguration(authConfigurationFile)
+        if (authConfiguration == None):
+            print "Basic (multi auth conf). File with authentication configuration should be not empty"
+            return False
+        
+        validationResult = self.validateAuthConfiguration(authConfiguration)
+        if (not validationResult):
+            return False
+
+        ldapExtendedEntryManagers = self.createLdapExtendedEntryManagers(authConfiguration)
+        if (ldapExtendedEntryManagers == None):
+            return False
+        
+        self.ldapExtendedEntryManagers = ldapExtendedEntryManagers
+
+        print "Basic (multi auth conf). Initialized successfully"
+        return True     
+
+    def destroy(self, authConfiguration):
+        print "Basic (multi auth conf). Destroy"
+        
+        result = True
+        for ldapExtendedEntryManager in self.ldapExtendedEntryManagers:
+            ldapConfiguration = ldapExtendedEntryManager["ldapConfiguration"]
+            ldapEntryManager = ldapExtendedEntryManager["ldapEntryManager"]
+
+            destoryResult = ldapEntryManager.destroy()
+            result = result and destoryResult
+            print "Basic (multi auth conf). Destroyed: " + ldapConfiguration.getConfigId() + ". Result: " + str(destoryResult) 
+
+        print "Basic (multi auth conf). Destroyed successfully"
+
+        return result
+
+    def getApiVersion(self):
+        return 11
+
+    def getAuthenticationMethodClaims(self, requestParameters):
+        return None
+
+    def isValidAuthenticationMethod(self, usageType, configurationAttributes):
+        return True
+
+    def getAlternativeAuthenticationMethod(self, usageType, configurationAttributes):
+        return None
+
+    def authenticate(self, configurationAttributes, requestParameters, step):
+        authenticationService = CdiUtil.bean(AuthenticationService)
+
+        if (step == 1):
+            print "Basic (multi auth conf). Authenticate for step 1"
+
+            identity = CdiUtil.bean(Identity)
+            credentials = identity.getCredentials()
+
+            metricService = CdiUtil.bean(MetricService)
+            timerContext = metricService.getTimer(MetricType.OXAUTH_USER_AUTHENTICATION_RATE).time()
+            try:
+                keyValue = credentials.getUsername()
+                userPassword = credentials.getPassword()
+    
+                if (StringHelper.isNotEmptyString(keyValue) and StringHelper.isNotEmptyString(userPassword)):
+                    for ldapExtendedEntryManager in self.ldapExtendedEntryManagers:
+                        ldapConfiguration = ldapExtendedEntryManager["ldapConfiguration"]
+                        ldapEntryManager = ldapExtendedEntryManager["ldapEntryManager"]
+                        loginAttributes = ldapExtendedEntryManager["loginAttributes"]
+                        localLoginAttributes = ldapExtendedEntryManager["localLoginAttributes"]
+    
+                        print "Basic (multi auth conf). Authenticate for step 1. Using configuration: " + ldapConfiguration.getConfigId()
+    
+                        idx = 0
+                        count = len(loginAttributes)
+                        while (idx < count):
+                            primaryKey = loginAttributes[idx]
+                            localPrimaryKey = localLoginAttributes[idx]
+    
+                            loggedIn = authenticationService.authenticate(ldapConfiguration, ldapEntryManager, keyValue, userPassword, primaryKey, localPrimaryKey)
+                            if (loggedIn):
+                                metricService.incCounter(MetricType.OXAUTH_USER_AUTHENTICATION_SUCCESS)
+                                return True
+                            idx += 1
+            finally:
+                timerContext.stop()
+                
+            metricService.incCounter(MetricType.OXAUTH_USER_AUTHENTICATION_FAILURES)
+
+            return False
+        else:
+            return False
+
+    def prepareForStep(self, configurationAttributes, requestParameters, step):
+        if (step == 1):
+            print "Basic (multi auth conf). Prepare for Step 1"
+            return True
+        else:
+            return False
+
+    def getExtraParametersForStep(self, configurationAttributes, step):
+        return None
+
+    def getCountAuthenticationSteps(self, configurationAttributes):
+        return 1
+
+    def getPageForStep(self, configurationAttributes, step):
+        return ""
+
+    def getNextStep(self, configurationAttributes, requestParameters, step):
+        return -1
+
+    def getLogoutExternalUrl(self, configurationAttributes, requestParameters):
+        print "Get external logout URL call"
+        return None
+
+    def logout(self, configurationAttributes, requestParameters):
+        return True
+
+    def loadAuthConfiguration(self, authConfigurationFile):
+        authConfiguration = None
+
+        # Load authentication configuration from file
+        f = open(authConfigurationFile, 'r')
+        try:
+            authConfiguration = json.loads(f.read())
+        except:
+            print "Basic (multi auth conf). Load auth configuration. Failed to load authentication configuration from file:", authConfigurationFile
+            return None
+        finally:
+            f.close()
+        
+        return authConfiguration
+
+    def validateAuthConfiguration(self, authConfiguration):
+        isValid = True
+
+        if (not ("ldap_configuration" in authConfiguration)):
+            print "Basic (multi auth conf). Validate auth configuration. There is no ldap_configuration section in configuration"
+            return False
+        
+        idx = 1
+        for ldapConfiguration in authConfiguration["ldap_configuration"]:
+            if (not self.containsAttributeString(ldapConfiguration, "configId")):
+                print "Basic (multi auth conf). Validate auth configuration. There is no 'configId' attribute in ldap_configuration section #" + str(idx)
+                return False
+
+            configId = ldapConfiguration["configId"]
+
+            if (not self.containsAttributeArray(ldapConfiguration, "servers")):
+                print "Basic (multi auth conf). Validate auth configuration. Property 'servers' in configuration '" + configId + "' is invalid"
+                return False
+
+            if (self.containsAttributeString(ldapConfiguration, "bindDN")):
+                if (not self.containsAttributeString(ldapConfiguration, "bindPassword")):
+                    print "Basic (multi auth conf). Validate auth configuration. Property 'bindPassword' in configuration '" + configId + "' is invalid"
+                    return False
+
+            if (not self.containsAttributeString(ldapConfiguration, "useSSL")):
+                print "Basic (multi auth conf). Validate auth configuration. Property 'useSSL' in configuration '" + configId + "' is invalid"
+                return False
+
+            if (not self.containsAttributeString(ldapConfiguration, "maxConnections")):
+                print "Basic (multi auth conf). Validate auth configuration. Property 'maxConnections' in configuration '" + configId + "' is invalid"
+                return False
+                
+            if (not self.containsAttributeArray(ldapConfiguration, "baseDNs")):
+                print "Basic (multi auth conf). Validate auth configuration. Property 'baseDNs' in configuration '" + configId + "' is invalid"
+                return False
+
+            if (not self.containsAttributeArray(ldapConfiguration, "loginAttributes")):
+                print "Basic (multi auth conf). Validate auth configuration. Property 'loginAttributes' in configuration '" + configId + "' is invalid"
+                return False
+
+            if (not self.containsAttributeArray(ldapConfiguration, "localLoginAttributes")):
+                print "Basic (multi auth conf). Validate auth configuration. Property 'localLoginAttributes' in configuration '" + configId + "' is invalid"
+                return False
+
+            if (len(ldapConfiguration["loginAttributes"]) != len(ldapConfiguration["localLoginAttributes"])):
+                print "Basic (multi auth conf). Validate auth configuration. The number of attributes in 'loginAttributes' and 'localLoginAttributes' isn't equal in configuration '" + configId + "'"
+                return False
+
+            idx += 1
+
+        return True
+
+    def createLdapExtendedEntryManagers(self, authConfiguration):
+        ldapExtendedConfigurations = self.createLdapExtendedConfigurations(authConfiguration)
+        
+        appInitializer = CdiUtil.bean(AppInitializer)
+        persistanceFactoryService = CdiUtil.bean(PersistanceFactoryService)
+        ldapEntryManagerFactory = persistanceFactoryService.getPersistenceEntryManagerFactory(LdapEntryManagerFactory)
+        persistenceType = ldapEntryManagerFactory.getPersistenceType()
+
+        ldapExtendedEntryManagers = []
+        for ldapExtendedConfiguration in ldapExtendedConfigurations:
+            connectionConfiguration = ldapExtendedConfiguration["connectionConfiguration"]
+            ldapConfiguration = ldapExtendedConfiguration["ldapConfiguration"]
+
+            ldapProperties = Properties()
+            for key, value in connectionConfiguration.items():
+                value_string = value
+                if isinstance(value_string, list):
+                    value_string = ", ".join(value)
+                else:
+                    value_string = str(value)
+
+                ldapProperties.setProperty(persistenceType + "#" + key, value_string)
+
+            if StringHelper.isNotEmptyString(ldapConfiguration.getBindPassword()):
+                ldapProperties.setProperty(persistenceType + "#bindPassword", ldapConfiguration.getBindPassword())
+            
+            ldapEntryManager = ldapEntryManagerFactory.createEntryManager(ldapProperties)
+
+            ldapExtendedEntryManagers.append({ "ldapConfiguration" : ldapConfiguration, "ldapProperties" : ldapProperties, "loginAttributes" : ldapExtendedConfiguration["loginAttributes"], "localLoginAttributes" : ldapExtendedConfiguration["localLoginAttributes"], "ldapEntryManager" : ldapEntryManager })
+        
+        return ldapExtendedEntryManagers
+
+    def createLdapExtendedConfigurations(self, authConfiguration):
+        ldapExtendedConfigurations = []
+
+        for connectionConfiguration in authConfiguration["ldap_configuration"]:
+            configId = connectionConfiguration["configId"]
+            
+            servers = connectionConfiguration["servers"]
+
+            bindDN = None
+            bindPassword = None
+            useAnonymousBind = True
+            if (self.containsAttributeString(connectionConfiguration, "bindDN")):
+                useAnonymousBind = False
+                bindDN = connectionConfiguration["bindDN"]
+                bindPassword = CdiUtil.bean(EncryptionService).decrypt(connectionConfiguration["bindPassword"])
+
+            useSSL = connectionConfiguration["useSSL"]
+            maxConnections = connectionConfiguration["maxConnections"]
+            baseDNs = connectionConfiguration["baseDNs"]
+            loginAttributes = connectionConfiguration["loginAttributes"]
+            localLoginAttributes = connectionConfiguration["localLoginAttributes"]
+            
+            ldapConfiguration = GluuLdapConfiguration()
+            ldapConfiguration.setConfigId(configId)
+            ldapConfiguration.setBindDN(bindDN)
+            ldapConfiguration.setBindPassword(bindPassword)
+            ldapConfiguration.setServers(Arrays.asList(servers))
+            ldapConfiguration.setMaxConnections(maxConnections)
+            ldapConfiguration.setUseSSL(useSSL)
+            ldapConfiguration.setBaseDNs(Arrays.asList(baseDNs))
+            ldapConfiguration.setPrimaryKey(loginAttributes[0])
+            ldapConfiguration.setLocalPrimaryKey(localLoginAttributes[0])
+            ldapConfiguration.setUseAnonymousBind(useAnonymousBind)
+
+            ldapExtendedConfigurations.append({ "ldapConfiguration" : ldapConfiguration, "connectionConfiguration" : connectionConfiguration, "loginAttributes" : loginAttributes, "localLoginAttributes" : localLoginAttributes })
+        
+        return ldapExtendedConfigurations
+
+    def containsAttributeString(self, dictionary, attribute):
+        return ((attribute in dictionary) and StringHelper.isNotEmptyString(dictionary[attribute]))
+
+    def containsAttributeArray(self, dictionary, attribute):
+        return ((attribute in dictionary) and (len(dictionary[attribute]) > 0))
diff --git a/oxAuth/Server/integrations/basic.multi_auth_conf/INSTALLATION.txt b/oxAuth/Server/integrations/basic.multi_auth_conf/INSTALLATION.txt
new file mode 100644
index 00000000..a390abdf
--- /dev/null
+++ b/oxAuth/Server/integrations/basic.multi_auth_conf/INSTALLATION.txt
@@ -0,0 +1,35 @@
+This list of steps needed to do to enable Basic Multi person authentication module.
+
+1. This module depends on python libraries. In order to use it we need to install Jython. Please use next articles to proper Jython installation:
+    - Installation notest: http://ox.gluu.org/doku.php?id=oxtauth:customauthscript#jython_installation_optional
+    - Jython integration: http://ox.gluu.org/doku.php?id=oxtauth:customauthscript#jython_python_integration
+
+2. Copy shared required python libraries from ../shared_libs folder to $CATALINA_HOME/conf/python folder.
+
+3. Prepare authentication configuration file /etc/certs/multi_auth_conf.json. There is format description and sample configuration in README.txt.  
+
+4. Confire new custom module in oxTrust:
+    - Log into oxTrust with administrative permissions.
+    - Open "Configuration→Manage Custom Scripts" page.
+    - Select "Person Authentication" tab.
+    - Click on "Add custom script configuration" link.
+    - Enter name = basic_multi_auth_conf
+    - Enter level = 0-100 (priority of this method).
+    - Select usage type "Interactive".
+    - Add custom required and optional properties which specified in README.txt
+    - Copy/paste script from BasicMultiAuthConfExternalAuthenticator.py.
+    - Activate it via "Enabled" checkbox.
+    - Click "Update" button at the bottom of this page.
+
+5. Configure oxAuth to use Basic Multi authentication by default:
+    - Log into oxTrust with administrative permissions.
+    - Open "Configuration→Manage Authentication" page.
+    - Scroll to "Default Authentication Method" panel. Select "basic_multi_auth_conf" authentication mode.
+    - Click "Update" button at the bottom of this page.
+
+6. Try to log in using Basic Multi authentication method:
+    - Wait 30 seconds and try to log in again. During this time oxAuth reload list of available person authentication modules.
+    - Open second browser or second browsing session and try to log in again. It's better to try to do that from another browser session because we can return back to previous authentication method if something will go wrong.
+
+There are log messages in this custom authentication script. In order to debug this module we can use command like this:
+tail -f /opt/tomcat/logs/wrapper.log | grep "Basic (multi auth conf)"
diff --git a/oxAuth/Server/integrations/basic.multi_auth_conf/README.txt b/oxAuth/Server/integrations/basic.multi_auth_conf/README.txt
new file mode 100644
index 00000000..f13a5219
--- /dev/null
+++ b/oxAuth/Server/integrations/basic.multi_auth_conf/README.txt
@@ -0,0 +1,38 @@
+This is person authentication module for oxAuth which allows to specify multiple authentication configurations.
+
+This module has only one property:
+1) auth_configuration_file - It's path to file which contains AD LDAP authentication connection details and list of attributes which user can use in order to log in.
+   Example: /etc/certs/multi_auth_conf.json
+   Example content of this file [ 'bindPassword' should be the base64 encoded of password text. You can take the advantage of 'encode.py' script to encode/decode your password. 'encode.py' is available inside Gluu server container ( location: /opt/gluu/bin/ ) ]:
+
+
+{
+  "ldap_configuration":
+  [
+     {
+        "configId":"ad_1",
+        "servers":["localhost:1389"],
+        "bindDN":"cn=directory manager",
+        "bindPassword":"encoded_pass",
+        "useSSL":false,
+        "maxConnections":3,
+        "baseDNs":["ou=people,o=gluu"],
+        "loginAttributes":["uid"],
+        "localLoginAttributes":["uid"]
+     },
+     {
+        "configId":"ad_2",
+        "servers":["localhost:2389"],
+        "bindDN":"cn=directory manager",
+        "bindPassword":"encoded_pass",
+        "useSSL":false,
+        "maxConnections":3,
+        "baseDNs":["ou=people,o=gluu"],
+        "loginAttributes":["mail"],
+        "localLoginAttributes":["mail"]
+     }
+  ]
+}
+
+
+   The names/values of properties are similar to oxAuth/oxTrust ldap configuration files.
diff --git a/oxAuth/Server/integrations/basic.multi_login/BasicMultiLoginExternalAuthenticator.py b/oxAuth/Server/integrations/basic.multi_login/BasicMultiLoginExternalAuthenticator.py
new file mode 100644
index 00000000..0a35f991
--- /dev/null
+++ b/oxAuth/Server/integrations/basic.multi_login/BasicMultiLoginExternalAuthenticator.py
@@ -0,0 +1,122 @@
+# oxAuth is available under the MIT License (2008). See http://opensource.org/licenses/MIT for full text.
+# Copyright (c) 2016, Gluu
+#
+# Author: Yuriy Movchan
+#
+
+from org.gluu.service.cdi.util import CdiUtil
+from org.gluu.oxauth.security import Identity
+from org.gluu.model.custom.script.type.auth import PersonAuthenticationType
+from org.gluu.oxauth.service import UserService, AuthenticationService
+from org.gluu.util import StringHelper, ArrayHelper
+
+import java
+
+class PersonAuthentication(PersonAuthenticationType):
+    def __init__(self, currentTimeMillis):
+        self.currentTimeMillis = currentTimeMillis
+
+    def init(self, customScript, configurationAttributes):
+        print "Basic (multi login). Initialization"
+
+        login_attributes_list_object = configurationAttributes.get("login_attributes_list")
+        if (login_attributes_list_object == None):
+            print "Basic (multi login). Initialization. There is no property login_attributes_list"
+            return False
+
+        login_attributes_list = login_attributes_list_object.getValue2()
+        if (StringHelper.isEmpty(login_attributes_list)):
+            print "Basic (multi login). Initialization. There is no attributes specified in login_attributes property"
+            return False
+        
+        login_attributes_list_array = StringHelper.split(login_attributes_list, ",")
+        if (ArrayHelper.isEmpty(login_attributes_list_array)):
+            print "Basic (multi login). Initialization. There is no attributes specified in login_attributes property"
+            return False
+
+        if (configurationAttributes.containsKey("local_login_attributes_list")):
+            local_login_attributes_list = configurationAttributes.get("local_login_attributes_list").getValue2()
+            local_login_attributes_list_array = StringHelper.split(local_login_attributes_list, ",")
+        else:
+            print "Basic (multi login). Initialization. There is no property local_login_attributes_list. Assuming that login attributes are equal to local login attributes."
+            local_login_attributes_list_array = login_attributes_list_array
+
+        if (len(login_attributes_list_array) != len(local_login_attributes_list_array)):
+            print "Basic (multi login). Initialization. The number of attributes in login_attributes_list and local_login_attributes_list isn't equal"
+            return False
+        
+        self.login_attributes_list_array = login_attributes_list_array
+        self.local_login_attributes_list_array = local_login_attributes_list_array
+
+        print "Basic (multi login). Initialized successfully"
+        return True   
+
+    def destroy(self, configurationAttributes):
+        print "Basic (multi login). Destroy"
+        print "Basic (multi login). Destroyed successfully"
+        return True
+
+    def getApiVersion(self):
+        return 11
+
+    def getAuthenticationMethodClaims(self, requestParameters):
+        return None
+
+    def isValidAuthenticationMethod(self, usageType, configurationAttributes):
+        return True
+
+    def getAlternativeAuthenticationMethod(self, usageType, configurationAttributes):
+        return None
+
+    def authenticate(self, configurationAttributes, requestParameters, step):
+        authenticationService = CdiUtil.bean(AuthenticationService)
+
+        if (step == 1):
+            print "Basic (multi login). Authenticate for step 1"
+
+            identity = CdiUtil.bean(Identity)
+            credentials = identity.getCredentials()
+            key_value = credentials.getUsername()
+            user_password = credentials.getPassword()
+
+            logged_in = False
+            if (StringHelper.isNotEmptyString(key_value) and StringHelper.isNotEmptyString(user_password)):
+                i = 0
+                count = len(self.login_attributes_list_array)
+                while (i < count):
+                    primary_key = self.login_attributes_list_array[i]
+                    local_primary_key = self.local_login_attributes_list_array[i]
+                    logged_in = authenticationService.authenticate(key_value, user_password, primary_key, local_primary_key)
+                    if (logged_in):
+                        return True
+                    i += 1
+
+            return False
+        else:
+            return False
+
+    def prepareForStep(self, configurationAttributes, requestParameters, step):
+        if (step == 1):
+            print "Basic (multi login). Prepare for Step 1"
+            return True
+        else:
+            return False
+
+    def getExtraParametersForStep(self, configurationAttributes, step):
+        return None
+
+    def getCountAuthenticationSteps(self, configurationAttributes):
+        return 1
+
+    def getPageForStep(self, configurationAttributes, step):
+        return ""
+
+    def getNextStep(self, configurationAttributes, requestParameters, step):
+        return -1
+
+    def getLogoutExternalUrl(self, configurationAttributes, requestParameters):
+        print "Get external logout URL call"
+        return None
+        
+    def logout(self, configurationAttributes, requestParameters):
+        return True
diff --git a/oxAuth/Server/integrations/basic.multi_login/INSTALLATION.txt b/oxAuth/Server/integrations/basic.multi_login/INSTALLATION.txt
new file mode 100644
index 00000000..13ea87d7
--- /dev/null
+++ b/oxAuth/Server/integrations/basic.multi_login/INSTALLATION.txt
@@ -0,0 +1,33 @@
+This list of steps needed to do to enable Basic Multi Login person authentication module.
+
+1. This module depends on python libraries. In order to use it we need to install Jython. Please use next articles to proper Jython installation:
+    - Installation notest: http://ox.gluu.org/doku.php?id=oxtauth:customauthscript#jython_installation_optional
+    - Jython integration: http://ox.gluu.org/doku.php?id=oxtauth:customauthscript#jython_python_integration
+
+2. Copy shared required python libraries from ../shared_libs folder to $CATALINA_HOME/conf/python folder.
+
+3. Confire new custom module in oxTrust:
+    - Log into oxTrust with administrative permissions.
+    - Open "Configuration→Manage Custom Scripts" page.
+    - Select "Person Authentication" tab.
+    - Click on "Add custom script configuration" link.
+    - Enter name = basic_multi_login
+    - Enter level = 0-100 (priority of this method).
+    - Select usage type "Interactive".
+    - Add custom required and optional properties which specified in README.txt.
+    - Copy/paste script from BasicMultiLoginExternalAuthenticator.py.
+    - Activate it via "Enabled" checkbox.
+    - Click "Update" button at the bottom of this page.
+
+4. Configure oxAuth to use Basic Multi Login authentication by default:
+    - Log into oxTrust with administrative permissions.
+    - Open "Configuration→Manage Authentication" page.
+    - Scroll to "Default Authentication Method" panel. Select "basic_multi_login" authentication mode.
+    - Click "Update" button at the bottom of this page.
+
+5. Try to log in using Basic Multi Login authentication method:
+    - Wait 30 seconds and try to log in again. During this time oxAuth reload list of available person authentication modules.
+    - Open second browser or second browsing session and try to log in again. It's better to try to do that from another browser session because we can return back to previous authentication method if something will go wrong.
+
+There are log messages in this custom authentication script. In order to debug this module we can use command like this:
+tail -f /opt/tomcat/logs/wrapper.log | grep "Basic (multi login)"
diff --git a/oxAuth/Server/integrations/basic.multi_login/README.txt b/oxAuth/Server/integrations/basic.multi_login/README.txt
new file mode 100644
index 00000000..4b1567ff
--- /dev/null
+++ b/oxAuth/Server/integrations/basic.multi_login/README.txt
@@ -0,0 +1,13 @@
+This is person authentication modules for oxAuth which allows to use several attributes as user name.
+
+This module has next properties:
+
+1) login_attributes_list - Comma separated list of attribute names. Specify list of IdP attributes which this module should use to map to local attributes.
+   It's optional property.
+   The count of attributes in this property should be equal to count attributes in local_login_attributes_list property.
+   Example: uid, mail
+
+2) local_login_attributes_list - Comma separated list of attribute names. Specify list of local attributes mapped from IdP attributes.
+   It's optional property.
+   The count of attributes in this property should be equal to count attributes in login_attributes_list property.
+   Example: uid, mail
diff --git a/oxAuth/Server/integrations/basic.multiple_test_email_addresses/BasicMultipleTestEmailAddressesExternalAuthenticator.py b/oxAuth/Server/integrations/basic.multiple_test_email_addresses/BasicMultipleTestEmailAddressesExternalAuthenticator.py
new file mode 100644
index 00000000..8974ef75
--- /dev/null
+++ b/oxAuth/Server/integrations/basic.multiple_test_email_addresses/BasicMultipleTestEmailAddressesExternalAuthenticator.py
@@ -0,0 +1,97 @@
+
+
+from org.gluu.service.cdi.util import CdiUtil
+from org.gluu.oxauth.security import Identity
+from org.gluu.model.custom.script.type.auth import PersonAuthenticationType
+from org.gluu.oxauth.service import AuthenticationService
+from org.gluu.util import StringHelper
+
+import java
+
+class PersonAuthentication(PersonAuthenticationType):
+    def __init__(self, currentTimeMillis):
+        self.currentTimeMillis = currentTimeMillis
+
+    def init(self, customScript, configurationAttributes):
+        print "Basic. Initialization"
+        print "Basic. Initialized successfully"
+        return True   
+
+    def destroy(self, configurationAttributes):
+        print "Basic. Destroy"
+        print "Basic. Destroyed successfully"
+        return True
+
+    def getApiVersion(self):
+        return 11
+
+    def getAuthenticationMethodClaims(self, requestParameters):
+        return None
+
+    def isValidAuthenticationMethod(self, usageType, configurationAttributes):
+        return True
+
+    def getAlternativeAuthenticationMethod(self, usageType, configurationAttributes):
+        return None
+
+    def authenticate(self, configurationAttributes, requestParameters, step):
+        authenticationService = CdiUtil.bean(AuthenticationService)
+
+        if (step == 1):
+            print "Basic. Authenticate for step 1"
+
+            identity = CdiUtil.bean(Identity)
+            credentials = identity.getCredentials()
+            
+            user_name_array = StringHelper.split(credentials.getUsername(),"+")
+            
+            user_name = None
+            
+            if len(user_name_array) == 2:
+                
+                email_id_array = StringHelper.split(user_name_array[1],"@")
+                user_name = user_name_array[0] + "@"+ email_id_array[1]
+            else:
+                
+                user_name = user_name_array[0]
+                
+            print "Username for authentication is: %s  " % user_name
+            user_password = credentials.getPassword()
+
+            logged_in = False
+            if (StringHelper.isNotEmptyString(user_name) and StringHelper.isNotEmptyString(user_password)):
+                
+                logged_in = authenticationService.authenticate(user_name, user_password,"mail","mail")
+                
+            if (not logged_in):
+                return False
+
+            return True
+        else:
+            return False
+
+    def prepareForStep(self, configurationAttributes, requestParameters, step):
+        if (step == 1):
+            print "Basic. Prepare for Step 1"
+            return True
+        else:
+            return False
+
+	def getNextStep(self, step, context):
+        return -1
+
+    def getExtraParametersForStep(self, configurationAttributes, step):
+        return None
+
+    def getCountAuthenticationSteps(self, configurationAttributes):
+        return 1
+
+    def getPageForStep(self, configurationAttributes, step):
+        return ""
+
+    def getLogoutExternalUrl(self, configurationAttributes, requestParameters):
+        print "Get external logout URL call"
+        return None
+
+    def logout(self, configurationAttributes, requestParameters):
+        return True
diff --git a/oxAuth/Server/integrations/basic.multiple_test_email_addresses/README.txt b/oxAuth/Server/integrations/basic.multiple_test_email_addresses/README.txt
new file mode 100644
index 00000000..4449f768
--- /dev/null
+++ b/oxAuth/Server/integrations/basic.multiple_test_email_addresses/README.txt
@@ -0,0 +1,5 @@
+This is person authentication modules for oxAuth which allows the use of multiple test addresses that lead to a single email account.
+e.g. Everything addressed to myaccount+.*@gmail.com goes to myaccount@gmail.com. They are all the same account.
+Read this blog for understanding the feature better - http://www.codestore.net/store.nsf/unid/BLOG-20111201-0411
+
+oxAuth issue - https://github.com/GluuFederation/oxAuth/issues/1220
diff --git a/oxAuth/Server/integrations/basic.one_session/BasicOneSessionExternalAuthenticator.py b/oxAuth/Server/integrations/basic.one_session/BasicOneSessionExternalAuthenticator.py
new file mode 100644
index 00000000..453a2085
--- /dev/null
+++ b/oxAuth/Server/integrations/basic.one_session/BasicOneSessionExternalAuthenticator.py
@@ -0,0 +1,118 @@
+# oxAuth is available under the MIT License (2008). See http://opensource.org/licenses/MIT for full text.
+# Copyright (c) 2016, Gluu
+#
+# Author: Yuriy Movchan
+#
+
+from org.gluu.service.cdi.util import CdiUtil
+from org.gluu.oxauth.security import Identity
+from org.gluu.model.custom.script.type.auth import PersonAuthenticationType
+from org.gluu.oxauth.service import AuthenticationService
+from org.gluu.persist import PersistenceEntryManager
+from org.gluu.oxauth.model.ldap import TokenLdap
+from org.gluu.util import StringHelper
+from javax.faces.application import FacesMessage
+from org.gluu.jsf2.message import FacesMessages
+from org.gluu.oxauth.model.config import StaticConfiguration
+
+import java
+
+class PersonAuthentication(PersonAuthenticationType):
+    def __init__(self, currentTimeMillis):
+        self.currentTimeMillis = currentTimeMillis
+
+    def init(self, customScript, configurationAttributes):
+        print "Basic (one session). Initialization"
+        self.entryManager = CdiUtil.bean(PersistenceEntryManager)
+        self.staticConfiguration = CdiUtil.bean(StaticConfiguration)
+
+        print "Basic (one session). Initialized successfully"
+        return True   
+
+    def destroy(self, configurationAttributes):
+        print "Basic (one session). Destroy"
+        print "Basic (one session). Destroyed successfully"
+        return True
+
+    def getApiVersion(self):
+        return 11
+
+    def getAuthenticationMethodClaims(self, requestParameters):
+        return None
+
+    def isValidAuthenticationMethod(self, usageType, configurationAttributes):
+        return True
+
+    def getAlternativeAuthenticationMethod(self, usageType, configurationAttributes):
+        return None
+
+    def authenticate(self, configurationAttributes, requestParameters, step):
+        authenticationService = CdiUtil.bean(AuthenticationService)
+
+        if step == 1:
+            print "Basic (one session). Authenticate for step 1"
+
+            identity = CdiUtil.bean(Identity)
+            credentials = identity.getCredentials()
+
+            user_name = credentials.getUsername()
+            user_password = credentials.getPassword()
+
+            logged_in = False
+            if StringHelper.isNotEmptyString(user_name) and StringHelper.isNotEmptyString(user_password):
+                logged_in = authenticationService.authenticate(user_name, user_password)
+
+            if not logged_in:
+                return False
+
+            logged_in = self.isFirstSession(user_name)
+            if not logged_in:
+                facesMessages = CdiUtil.bean(FacesMessages)
+                facesMessages.add(FacesMessage.SEVERITY_ERROR, "Please, end active session first!")
+                return False
+	
+
+            return True
+        else:
+            return False
+
+    def prepareForStep(self, configurationAttributes, requestParameters, step):
+        if step == 1:
+            print "Basic (one session). Prepare for Step 1"
+            return True
+        else:
+            return False
+
+    def getExtraParametersForStep(self, configurationAttributes, step):
+        return None
+
+    def getCountAuthenticationSteps(self, configurationAttributes):
+        return 1
+
+    def getPageForStep(self, configurationAttributes, step):
+        return ""
+
+    def getNextStep(self, configurationAttributes, requestParameters, step):
+        return -1
+
+    def getLogoutExternalUrl(self, configurationAttributes, requestParameters):
+        print "Get external logout URL call"
+        return None
+
+    def logout(self, configurationAttributes, requestParameters):
+        return True
+
+    def isFirstSession(self, user_name):
+        tokenLdap = TokenLdap()
+        tokenLdap.setDn(self.staticConfiguration.getBaseDn().getClients())
+        tokenLdap.setUserId(user_name)
+
+        tokenLdapList = self.entryManager.findEntries(tokenLdap, 1)
+        print "Basic (one session). isFirstSession. Get result: '%s'" % tokenLdapList
+
+        if (tokenLdapList != None) and (tokenLdapList.size() > 0):
+            print "Basic (one session). isFirstSession: False"
+            return False
+
+        print "Basic (one session). isFirstSession: True"
+        return True
diff --git a/oxAuth/Server/integrations/basic.one_session/README.txt b/oxAuth/Server/integrations/basic.one_session/README.txt
new file mode 100644
index 00000000..c61795de
--- /dev/null
+++ b/oxAuth/Server/integrations/basic.one_session/README.txt
@@ -0,0 +1 @@
+This person authentication module for oxAuth which allows to restrict access to RP for one user session.
diff --git a/oxAuth/Server/integrations/basic.password_expiration/PasswordExpiration.py b/oxAuth/Server/integrations/basic.password_expiration/PasswordExpiration.py
new file mode 100644
index 00000000..1b181157
--- /dev/null
+++ b/oxAuth/Server/integrations/basic.password_expiration/PasswordExpiration.py
@@ -0,0 +1,149 @@
+import datetime
+
+from org.gluu.service.cdi.util import CdiUtil
+from org.gluu.oxauth.security import Identity
+from org.gluu.model.custom.script.type.auth import PersonAuthenticationType
+from org.gluu.oxauth.service import UserService, AuthenticationService
+from org.gluu.util import StringHelper, ArrayHelper
+from com.unboundid.util import StaticUtils
+from java.util import GregorianCalendar, TimeZone
+from java.util import Arrays
+
+
+# This script expect that user has attribute oxPasswordExpirationDate with valid expiration date
+class PersonAuthentication(PersonAuthenticationType):
+
+    def __init__(self, currentTimeMillis):
+        self.currentTimeMillis = currentTimeMillis
+
+    def init(self, customScript, configurationAttributes):
+        print "Basic (with password update). Initialization"
+        print "Basic (with password update). Initialized successfully"
+        return True
+
+    def destroy(self, configurationAttributes):
+        print "Basic (with password update). Destroy"
+        print "Basic (with password update). Destroyed successfully"
+        return True
+
+    def getApiVersion(self):
+        return 11
+
+    def getAuthenticationMethodClaims(self, requestParameters):
+        return None
+
+    def isValidAuthenticationMethod(self, usageType, configurationAttributes):
+        return True
+
+    def getAlternativeAuthenticationMethod(self, usageType, configurationAttributes):
+        return None
+
+    def authenticate(self, configurationAttributes, requestParameters, step):
+        authenticationService = CdiUtil.bean(AuthenticationService)
+        userService = CdiUtil.bean(UserService)
+
+        identity = CdiUtil.bean(Identity)
+        credentials = identity.getCredentials()
+        if step == 1:
+            print "Basic (with password update). Authenticate for step 1"
+            user_name = credentials.getUsername()
+            user_password = credentials.getPassword()
+
+            logged_in = False
+            if StringHelper.isNotEmptyString(user_name) and StringHelper.isNotEmptyString(user_password):
+                logged_in = authenticationService.authenticate(user_name, user_password)
+                                                    
+            if not logged_in:
+                return False
+
+            find_user_by_uid = authenticationService.getAuthenticatedUser()
+            user_expDate = find_user_by_uid.getAttribute("oxPasswordExpirationDate", False)
+           
+            if user_expDate == None:
+                print "Basic (with password update). Authenticate for step 1. User has no oxPasswordExpirationDate date"
+                return False
+
+            dt = StaticUtils.decodeGeneralizedTime(user_expDate)
+
+            # Get Current Date
+            calendar = GregorianCalendar(TimeZone.getTimeZone("UTC"));
+            now = calendar.getTime()
+            if now.compareTo(dt) > 0:
+                # Add 90 Days to current date
+                calendar.setTime(now)
+                calendar.add(calendar.DATE, 1)
+                dt_plus_90 = calendar.getTime()
+                expDate = StaticUtils.encodeGeneralizedTime(dt_plus_90)
+                identity.setWorkingParameter("expDate", expDate)
+
+            return True
+        elif step == 2:
+            print "Basic (with password update). Authenticate for step 2"
+            user = authenticationService.getAuthenticatedUser()            
+            if user == None:
+                print "Basic (with password update). Authenticate for step 2. Failed to determine user name"
+                return False
+
+            user_name = user.getUserId()
+            find_user_by_uid = userService.getUser(user_name)
+            newExpDate = identity.getWorkingParameter("expDate")
+            if find_user_by_uid == None:
+                print "Basic (with password update). Authenticate for step 2. Failed to find user"
+                return False
+            print "Basic (with password update). Authenticate for step 2"
+            update_button = requestParameters.get("loginForm:updateButton")
+
+            if ArrayHelper.isEmpty(update_button):
+                return True
+
+            find_user_by_uid.setAttribute("oxPasswordExpirationDate", newExpDate)
+            new_password_array = requestParameters.get("loginForm:password")
+            if ArrayHelper.isEmpty(new_password_array) or StringHelper.isEmpty(new_password_array[0]):
+                print "Basic (with password update). Authenticate for step 2. New password is empty"
+                return False
+
+            new_password = new_password_array[0]
+            find_user_by_uid.setAttribute("userPassword", new_password)
+            print "Basic (with password update). Authenticate for step 2. Attempting to set new user '%s' password" % user_name
+
+            userService.updateUser(find_user_by_uid)
+            print "Basic (with password update). Authenticate for step 2. Password updated successfully"
+
+            return True
+        else:
+            return False
+
+    def prepareForStep(self, configurationAttributes, requestParameters, step):
+        if step == 1:
+            print "Basic (with password update). Prepare for Step 1"
+            return True
+        elif step == 2:
+            print "Basic (with password update). Prepare for Step 2"
+            return True
+        else:
+            return False
+
+    def getExtraParametersForStep(self, configurationAttributes, step):
+        return Arrays.asList("expDate")
+
+    def getCountAuthenticationSteps(self, configurationAttributes):
+        identity = CdiUtil.bean(Identity)
+        if identity.isSetWorkingParameter("expDate"):
+            return 2
+        else:
+           return 1
+
+    def getPageForStep(self, configurationAttributes, step):
+        if step == 2:        
+            return "/auth/pwd/newpassword.xhtml"
+        return ""
+
+    def getNextStep(self, configurationAttributes, requestParameters, step):
+        return -1
+
+    def getLogoutExternalUrl(self, configurationAttributes, requestParameters):
+        print "Get external logout URL call"
+        return None
+
+    def logout(self, configurationAttributes, requestParameters):
+        return True
diff --git a/oxAuth/Server/integrations/basic.password_expiration/README.md b/oxAuth/Server/integrations/basic.password_expiration/README.md
new file mode 100644
index 00000000..bf878afb
--- /dev/null
+++ b/oxAuth/Server/integrations/basic.password_expiration/README.md
@@ -0,0 +1,2 @@
+# Password Expiration
+The script would ask the user to update password after 90 days.
diff --git a/oxAuth/Server/integrations/basic.passwordchangewithvalidations/INSTALLATION.txt b/oxAuth/Server/integrations/basic.passwordchangewithvalidations/INSTALLATION.txt
new file mode 100644
index 00000000..0bec2cd1
--- /dev/null
+++ b/oxAuth/Server/integrations/basic.passwordchangewithvalidations/INSTALLATION.txt
@@ -0,0 +1,53 @@
+This is a person authentication script with validations for the following:
+	1. It checks for the empty password and gives a message to the user for the empty password.
+	2. It detects if the user is disabled/ inactive in the LDAP/ AD and gives a message that your account is disabled.
+	3. It also has an option to change password. During password update it checks for the password complexity and gives a message to the user if the password is not upto the expected complexity 	
+	level. If a user input a complex password then it updates the password. 
+Following are the steps to install this script and associated library.
+
+1. Install zxcvbn python library for complexity checking 
+   a. Notedown the Jython version. To find Jythonversion, inside the chroot change the directory to /opt directory and run ls command. There should be a directory named jython-<version>, it should be 
+   similar to jython-2.7.2 and here 2.7.2 is the Jython version. 
+   b. Now, open the file /etc/gluu/conf/gluu.properties and look for the line starting with pythonModulesDir=. Append the value /opt/jython-<version>/Lib/site-packages to any existing value. Each 
+   value is separated by a colon (:). It should be similar to pythonModulesDir=/opt/gluu/python/libs:/opt/jython-2.7.2/Lib/site-packages
+   c. If this is the first additional library then run the following command /opt/jython-<version>/bin/jython -m ensurepip. This will create pip executables like pip, pip2, pip2.7.
+   d. Now, install zxcvbn library with 
+		/opt/jython-<version>/bin/pip install zxcvbn.
+   e. After successful installation, make sure that there should be read permission to group and others (rw-r--r--) for all the *.class files, as shown below
+		root@test1:~# cd /opt/jython-2.7.2/Lib/site-packages/zxcvbn
+		root@test1:/opt/jython-2.7.2/Lib/site-packages/zxcvbn# ls -lrt
+		-rw-r--r-- 1 root root   3085 Mar 28  2019  time_estimates.py
+		-rw-r--r-- 1 root root  14200 Mar 28  2019  scoring.py
+		-rw-r--r-- 1 root root  21797 Mar 28  2019  matching.py
+		-rw-r--r-- 1 root root 792962 Mar 28  2019  frequency_lists.py
+		-rw-r--r-- 1 root root   4719 Mar 28  2019  feedback.py
+		-rw-r--r-- 1 root root   9800 Mar 28  2019  adjacency_graphs.py
+		-rw-r--r-- 1 root root   1132 Mar 28  2019  __main__.py
+		-rw-r--r-- 1 root root   1171 Mar 28  2019  __init__.py
+		-rw-r--r-- 1 root root 796337 Dec 18 09:19 'frequency_lists$py.class'
+		-rw-r--r-- 1 root root   9764 Dec 18 09:19 'feedback$py.class'
+		-rw-r--r-- 1 root root  24510 Dec 18 09:19 'scoring$py.class'
+		-rw-r--r-- 1 root root   5775 Dec 18 09:19 '__init__$py.class'
+		-rw-r--r-- 1 root root  35478 Dec 18 09:19 'matching$py.class'
+		-rw-r--r-- 1 root root  20699 Dec 18 09:19 'adjacency_graphs$py.class'
+		-rw-r--r-- 1 root root   6962 Dec 18 09:19 '__main__$py.class'
+		-rw-r--r-- 1 root root   8813 Dec 18 09:19 'time_estimates$py.class'
+   f. If not then run “chmod 644 *.class� command in the /opt/jython-<version>/Lib/site-packages/zxcvbn/ directory
+   g. Restart the oxauth service.
+2. Configure this new script in oxTrust:
+        - Log into oxTrust with administrative permissions.
+        - Open "Configuration→Manage Custom Scripts" page.
+        - Select "Person Authentication" tab.
+        - Click on "Add custom script configuration" link.
+        - Enter name = basic_password_change_validations (or any suitable name)
+        - Enter level = 0-100 (priority of this method).
+        - Select usage type "Interactive".
+        - Copy/paste script from PasswordChangeWithValidations.py.
+        - Activate it via "Enabled" checkbox.
+        - Click "Update" button at the bottom of this page.
+
+3. Configure oxAuth to use Basic Multi authentication by default:
+        - Log into oxTrust with administrative permissions.
+        - Open "Configuration→Manage Authentication" page.
+        - Navigate to "Default Authentication Method" panel. Select "basic_password_change_validations" authentication mode.
+        - Click "Update" button at the bottom of this page.
diff --git a/oxAuth/Server/integrations/basic.passwordchangewithvalidations/PasswordChangeWithValidations.py b/oxAuth/Server/integrations/basic.passwordchangewithvalidations/PasswordChangeWithValidations.py
new file mode 100644
index 00000000..771ec253
--- /dev/null
+++ b/oxAuth/Server/integrations/basic.passwordchangewithvalidations/PasswordChangeWithValidations.py
@@ -0,0 +1,166 @@
+# oxAuth is available under the MIT License (2008). See http://opensource.org/licenses/MIT for full text.
+# Copyright (c) 2016, Gluu
+#
+# Author: Yuriy Movchan
+# Author: Hemant Mehta
+#
+
+from org.gluu.service.cdi.util import CdiUtil
+from org.gluu.oxauth.security import Identity
+from org.gluu.model.custom.script.type.auth import PersonAuthenticationType
+from org.gluu.oxauth.service import UserService, AuthenticationService
+from org.gluu.service import CacheService
+from org.gluu.util import StringHelper, ArrayHelper
+from org.gluu.oxauth.util import ServerUtil
+
+from javax.faces.application import FacesMessage
+from org.gluu.jsf2.message import FacesMessages
+
+from zxcvbn import zxcvbn
+
+import java
+
+class PersonAuthentication(PersonAuthenticationType):
+    def __init__(self, currentTimeMillis):
+        self.currentTimeMillis = currentTimeMillis
+
+    def init(self, customScript, configurationAttributes):
+        print "Basic (with password update). Initialization"
+        print "Basic (with password update). Initialized successfully"
+        return True   
+
+    def destroy(self, configurationAttributes):
+        print "Basic (with password update). Destroy"
+        print "Basic (with password update). Destroyed successfully"
+        return True
+
+    def getApiVersion(self):
+        return 11
+
+    def getAuthenticationMethodClaims(self, requestParameters):
+        return None
+        
+    def isValidAuthenticationMethod(self, usageType, configurationAttributes):
+        return True
+
+    def getAlternativeAuthenticationMethod(self, usageType, configurationAttributes):
+        return None
+
+    def authenticate(self, configurationAttributes, requestParameters, step):
+        userService = CdiUtil.bean(UserService)
+        authenticationService = CdiUtil.bean(AuthenticationService)
+
+        identity = CdiUtil.bean(Identity)
+        credentials = identity.getCredentials()
+        user_name = credentials.getUsername()
+
+        if (step == 1):
+            print "Basic (with password update). Authenticate for step 1"
+            facesMessages = CdiUtil.bean(FacesMessages)
+            facesMessages.setKeepMessages()
+            user_password = credentials.getPassword()
+
+            logged_in = False
+            if (StringHelper.isNotEmptyString(user_name) and StringHelper.isEmptyString(user_password)):
+                facesMessages.add(FacesMessage.SEVERITY_INFO, "Password is empty! Enter your password")
+                print "Basic. Authenticate: Password is empty! Enter your password"
+                return False
+
+            if (StringHelper.isNotEmptyString(user_name) and StringHelper.isNotEmptyString(user_password)):
+                find_user = userService.getUser(user_name)
+                if (find_user == None):
+                    facesMessages.add(FacesMessage.SEVERITY_INFO, "User doesn't Exist")
+                    return False
+                else:
+                    print "Basic . Authenticate for step 1-4-disablechecking"
+                    user_status = userService.getCustomAttribute(find_user, "gluuStatus")
+                    print "Basic . Authenticate for step 1-5-disablechecking"
+                    if (user_status != None):
+                        user_status_value = user_status.getValue()
+                        if (StringHelper.equals(user_status_value, "inactive")): 
+                            facesMessages.add(FacesMessage.SEVERITY_INFO, "User is Disabled")                            
+                            return False 	
+            if (StringHelper.isNotEmptyString(user_name) and StringHelper.isNotEmptyString(user_password)):
+                logged_in = authenticationService.authenticate(user_name, user_password)
+
+            if (not logged_in):
+                return False
+
+            return True
+        elif (step == 2):
+            print "Basic (with password update). Authenticate for step 2-see"
+            user = authenticationService.getAuthenticatedUser()
+            facesMessages = CdiUtil.bean(FacesMessages)
+            facesMessages.setKeepMessages()
+            if user == None:
+                print "Basic (with password update). Authenticate for step 2. Failed to determine user name"
+                return False
+
+            user_name = user.getUserId()
+            find_user_by_uid = userService.getUser(user_name)
+
+            update_button = requestParameters.get("loginForm:updateButton")
+
+            if ArrayHelper.isEmpty(update_button):
+                return True
+
+            new_password_array = requestParameters.get("loginForm:password")
+            new_password = new_password_array[0]  
+            if ArrayHelper.isEmpty(new_password_array) or StringHelper.isEmpty(new_password):
+                print "Basic (with password update). Authenticate for step 2. New password is empty"
+                return False
+			
+          
+            print "Basic (with password update). Authenticate for step 2. see the new password ================'%s'" % new_password
+
+            results = zxcvbn(new_password)
+            if results['score'] <2:
+                print 'Its a weak Password, please increase the complexity.'
+                facesMessages.add(FacesMessage.SEVERITY_INFO, "Its weak password, please increase the complexity.")
+                return False
+
+            find_user_by_uid.setAttribute("userPassword", new_password)
+
+
+            print "Basic (with password update). Authenticate for step 2. Attempting to set new user '%s' password " % user_name
+
+
+            userService.updateUser(find_user_by_uid)
+            print "Basic (with password update). Authenticate for step 2. Password updated successfully"
+
+            return True
+        else:
+            return False
+
+    def prepareForStep(self, configurationAttributes, requestParameters, step):
+        if (step == 1):
+            print "Basic (with password update). Prepare for Step 1"
+            return True
+        elif (step == 2):
+            print "Basic (with password update). Prepare for Step 2-confirm"
+            return True
+        else:
+            return False
+
+    def getExtraParametersForStep(self, configurationAttributes, step):
+        return None
+
+    def getCountAuthenticationSteps(self, configurationAttributes):
+        return 2
+
+    def getPageForStep(self, configurationAttributes, step):
+        if (step == 2):
+            print "Basic (with password update). Redirecting to password change page"
+            return "/auth/pwd/newpassword.xhtml"
+
+        return ""
+        
+    def getNextStep(self, configurationAttributes, requestParameters, step):
+        return -1
+
+    def getLogoutExternalUrl(self, configurationAttributes, requestParameters):
+        print "Get external logout URL call"
+        return None
+        
+    def logout(self, configurationAttributes, requestParameters):
+        return True
diff --git a/oxAuth/Server/integrations/basic.passwordchangewithvalidations/README.md b/oxAuth/Server/integrations/basic.passwordchangewithvalidations/README.md
new file mode 100644
index 00000000..dc16d631
--- /dev/null
+++ b/oxAuth/Server/integrations/basic.passwordchangewithvalidations/README.md
@@ -0,0 +1,4 @@
+This is a person authentication script with validations for the following:
+- It checks for the empty password and gives a message to the user for the empty password.
+- It detects if the user is disabled/ inactive in the LDAP/ AD and gives a message that your account is disabled.
+- It also has an option to change password. During password update it checks for the password complexity and gives a message to the user if the password is not upto the expected complexity level. If a user input a complex password then it updates the password. 
diff --git a/oxAuth/Server/integrations/basic.passwordchangewithvalidations/pwd/newpassword.xhtml b/oxAuth/Server/integrations/basic.passwordchangewithvalidations/pwd/newpassword.xhtml
new file mode 100644
index 00000000..4e962828
--- /dev/null
+++ b/oxAuth/Server/integrations/basic.passwordchangewithvalidations/pwd/newpassword.xhtml
@@ -0,0 +1,60 @@
+<!DOCTYPE composition PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN"
+		"http://www.w3.org/TR/xhtml1/DTD/xhtml1-transitional.dtd">
+<ui:composition xmlns="http://www.w3.org/1999/xhtml"
+	xmlns:f="http://xmlns.jcp.org/jsf/core"
+	xmlns:ui="http://xmlns.jcp.org/jsf/facelets"
+	xmlns:rich="http://richfaces.org/rich"
+	xmlns:h="http://xmlns.jcp.org/jsf/html"
+	template="/WEB-INF/incl/layout/login-extended-template.xhtml">
+	<f:metadata>
+		<f:viewAction action="#{authenticator.prepareAuthenticationForStep}"
+			if="#{not identity.loggedIn}" />
+	</f:metadata>
+
+	<ui:define name="head">
+		<meta name="description" content="Gluu Inc." />
+	</ui:define>
+
+	<ui:define name="pageTitle">
+		<h:outputText value="#{msgs['otp.pageTitle']}" />
+	</ui:define>
+
+	<ui:define name="body">
+		<h:form id="loginForm">
+			<h:panelGroup rendered="#{not identity.loggedIn}">
+				<div class="container">
+					<div
+						style="margin-left: 15%; height: 300px !important; width: 600px; padding-top: 50px; padding-left: 20px; border: 2px solid #ccc; border-radius: 5px;">
+						<div class="form-group">
+							<h:outputLabel styleClass="col-sm-2 control-label" for="password"
+								value="New Password" />
+							<div class="col-sm-6">
+								<h:inputSecret id="password" name="new_password"
+									value="gluuPasswordValidator.newPassword" styleClass="form-control"
+									autocomplete="off">
+									<rich:validator event="blur"></rich:validator>
+									<f:validator validatorId="gluuPasswordValidator"></f:validator>
+								</h:inputSecret>
+							</div>
+							<h:outputLabel styleClass="col-sm-6 control-label" for="password"
+                                                                value="Comlexity Requirements: Total Length between (6-20) with atleast one Small, capital letter and numbers" />
+						</div>
+						<br></br>
+						<div class="form-group">
+							<h:messages globalOnly="true" class="error" style="color:red;" />
+						</div>
+						<div class="actionButtons" style="margin-top: 15px;">
+							<h:commandButton id="updateButton" value="Update"
+								styleClass="btn btn-primary col-sm-4"
+								action="#{authenticator.authenticate}" style="margin:5px;" />
+							<h:commandButton id="skipButton" value="Skip"
+								styleClass="btn btn-primary col-sm-4"
+								action="#{authenticator.authenticate}" style="margin:5px;" />
+						</div>
+
+					</div>
+				</div>
+			</h:panelGroup>
+		</h:form>
+	</ui:define>
+</ui:composition>
diff --git a/oxAuth/Server/integrations/basic.recaptcha/BasicRecaptchaExternalAuthenticator.py b/oxAuth/Server/integrations/basic.recaptcha/BasicRecaptchaExternalAuthenticator.py
new file mode 100644
index 00000000..3f52df46
--- /dev/null
+++ b/oxAuth/Server/integrations/basic.recaptcha/BasicRecaptchaExternalAuthenticator.py
@@ -0,0 +1,219 @@
+# oxAuth is available under the MIT License (2008). See http://opensource.org/licenses/MIT for full text.
+# Copyright (c) 2016, Gluu
+#
+# Author: Yuriy Movchan
+# Modified: Mobarak Hosen Shakil
+# 
+
+from org.gluu.service.cdi.util import CdiUtil
+from org.gluu.oxauth.security import Identity
+from org.gluu.model.custom.script.type.auth import PersonAuthenticationType
+from org.gluu.oxauth.service import AuthenticationService
+from org.gluu.util import StringHelper
+from javax.faces.context import FacesContext
+from org.gluu.oxauth.security import Identity
+from org.gluu.oxauth.service.common import UserService
+from org.gluu.oxauth.util import ServerUtil
+from org.gluu.oxauth.service.common import EncryptionService
+from java.util import Arrays
+from org.gluu.oxauth.util import CertUtil
+from org.gluu.oxauth.model.util import CertUtils
+from org.gluu.oxauth.service.net import HttpService
+from org.apache.http.params import CoreConnectionPNames
+
+import sys
+import base64
+import urllib
+import json
+import java
+
+class PersonAuthentication(PersonAuthenticationType):
+    def __init__(self, currentTimeMillis):
+        self.currentTimeMillis = currentTimeMillis
+
+    def init(self, customScript,  configurationAttributes):
+        print "Basic. Initialized successfully"
+
+        self.enabled_recaptcha = self.initRecaptcha(configurationAttributes)
+        print "Basic. Initialization. enabled_recaptcha: '%s'" % self.enabled_recaptcha
+
+        print "Basic. Initialized successfully"
+        return True
+    
+    def destroy(self, configurationAttributes):
+        print "Basic. Destroy"
+        print "Basic. Destroyed successfully"
+        return True
+        
+    def getAuthenticationMethodClaims(self, requestParameters):
+        return None
+        
+    def getApiVersion(self):
+        return 11
+
+    def isValidAuthenticationMethod(self, usageType, configurationAttributes):
+        return True
+
+    def getAlternativeAuthenticationMethod(self, usageType, configurationAttributes):
+        return None
+
+    def authenticate(self, configurationAttributes, requestParameters, step):
+        print "Basic. Authenticate for step 1"
+
+        authenticationService = CdiUtil.bean(AuthenticationService)
+
+        if step == 1:
+
+            identity = CdiUtil.bean(Identity)
+            credentials = identity.getCredentials()
+
+            user_name = credentials.getUsername()
+            user_password = credentials.getPassword()
+
+            logged_in = False
+            #self.enabled_recaptcha = self.initRecaptcha(configurationAttributes)
+            #self.prepareForStep(configurationAttributes, requestParameters, step)
+            if (StringHelper.isNotEmptyString(user_name) and StringHelper.isNotEmptyString(user_password)):
+                if self.enabled_recaptcha:
+                    print "Authentication for step 1. Validating recaptcha response."
+                    recaptcha_response = requestParameters.get("g-recaptcha-response")
+                    print "Printed recaptcha response: %s" % (recaptcha_response[0])
+                    recaptcha_result = self.validateRecaptcha(recaptcha_response[0])
+                    if recaptcha_result:
+                        logged_in = authenticationService.authenticate(user_name, user_password)
+                    else:
+                        self.enabled_recaptcha = self.initRecaptcha(configurationAttributes)
+                        print "Basic Recaptcha. Authentication for step 1. recaptcha_result: '%s'" % recaptcha_result
+                        print "login failed..."
+                        print "captcha option: %s" % self.enabled_recaptcha
+                        self.prepareForStep(configurationAttributes, requestParameters, step)
+                        return False
+                        
+                else:
+                    logged_in = authenticationService.authenticate(user_name, user_password)
+            
+            if (not logged_in):
+                print "login failed for all step"
+                self.enabled_recaptcha = self.initRecaptcha(configurationAttributes)
+                self.prepareForStep(configurationAttributes, requestParameters, step) 
+                return False
+
+            return True
+        else:
+            return False
+
+    def prepareForStep(self, configurationAttributes, requestParameters, step):
+        identity = CdiUtil.bean(Identity)
+        if step == 1: 
+            print "Basic. Prepare for Step 1"
+            if self.enabled_recaptcha:
+                print "Identity parameter has been set..."
+                identity.setWorkingParameter("recaptcha_site_key", self.recaptcha_creds['site_key'])
+                print "Identity parameter has been set...%s"%self.recaptcha_creds['site_key']
+            return True
+        else:
+            return False
+
+    def getExtraParametersForStep(self, configurationAttributes, step):
+        return Arrays.asList(self.recaptcha_creds['site_key'])
+
+    def getCountAuthenticationSteps(self, configurationAttributes):
+        return 1
+
+    def getPageForStep(self, configurationAttributes, step):
+        if step == 1:
+            return "/auth/recaptcha/login.xhtml"
+        return ""
+    
+    def initRecaptcha(self, configurationAttributes):
+        print "Basic. Initialize recaptcha"
+        if not configurationAttributes.containsKey("credentials_file"):
+            return False
+
+        cert_creds_file = configurationAttributes.get("credentials_file").getValue2()
+
+        print "Load credentials from file"
+        f = open(cert_creds_file, 'r')
+        try:
+            creds = json.loads(f.read())
+        except:
+            print "Basic. Initialize recaptcha. Failed to load credentials from file: %s" % cert_creds_file
+            return False
+        finally:
+            f.close()
+        
+        try:
+            recaptcha_creds = creds["recaptcha"]
+        except:
+            print "Basic. Initialize recaptcha. Invalid credentials file '%s' format:" % cert_creds_file
+            return False
+
+        self.recaptcha_creds = None
+        if recaptcha_creds["enabled"]:
+            print "Basic. Initialize recaptcha. Recaptcha is enabled"
+            site_key = recaptcha_creds["site_key"]
+            secret_key = recaptcha_creds["secret_key"]
+            self.recaptcha_creds = { 'site_key' : site_key, "secret_key" : secret_key }
+            print "Basic. Initialize recaptcha. Recaptcha is configured correctly"
+
+            return True
+        else:
+            print "Basic. Initialize recaptcha. Recaptcha is disabled"
+
+        return False
+
+    def validateRecaptcha(self, recaptcha_response):
+        print "Basic. Validate recaptcha response"
+
+        facesContext = CdiUtil.bean(FacesContext)
+        request = facesContext.getExternalContext().getRequest()
+
+        remoteip = ServerUtil.getIpAddress(request)
+        print "Basic. Validate recaptcha response. remoteip: '%s'" % remoteip
+
+        httpService = CdiUtil.bean(HttpService)
+
+        http_client = httpService.getHttpsClient()
+        http_client_params = http_client.getParams()
+        http_client_params.setIntParameter(CoreConnectionPNames.CONNECTION_TIMEOUT, 15 * 1000)
+        
+        recaptcha_validation_url = "https://www.google.com/recaptcha/api/siteverify"
+        recaptcha_validation_request = urllib.urlencode({ "secret" : self.recaptcha_creds['secret_key'], "response" : recaptcha_response, "remoteip" : remoteip })
+        recaptcha_validation_headers = { "Content-type" : "application/x-www-form-urlencoded", "Accept" : "application/json" }
+
+        try:
+            http_service_response = httpService.executePost(http_client, recaptcha_validation_url, None, recaptcha_validation_headers, recaptcha_validation_request)
+            http_response = http_service_response.getHttpResponse()
+        except:
+            print "Basic. Validate recaptcha response. Exception: ", sys.exc_info()[1]
+            return False
+
+        try:
+            if not httpService.isResponseStastusCodeOk(http_response):
+                print "Basic. Validate recaptcha response. Get invalid response from validation server: ", str(http_response.getStatusLine().getStatusCode())
+                httpService.consume(http_response)
+                return False
+    
+            response_bytes = httpService.getResponseContent(http_response)
+            response_string = httpService.convertEntityToString(response_bytes)
+            httpService.consume(http_response)
+        finally:
+            http_service_response.closeConnection()
+
+        if response_string == None:
+            print "Basic. Validate recaptcha response. Get empty response from validation server"
+            return False
+        print "printed: %s" % (response_string)
+        response = json.loads(response_string)
+        print "printed: %s" % (response)
+        return response["success"]
+
+    def getNextStep(self, configurationAttributes, requestParameters, step):
+        return -1
+
+    def getLogoutExternalUrl(self, configurationAttributes, requestParameters):
+        print "Get external logout URL call"
+        return None
+    
+    def logout(self, configurationAttributes, requestParameters):
+        return True
diff --git a/oxAuth/Server/integrations/basic.recaptcha/README.md b/oxAuth/Server/integrations/basic.recaptcha/README.md
new file mode 100644
index 00000000..ff7616f3
--- /dev/null
+++ b/oxAuth/Server/integrations/basic.recaptcha/README.md
@@ -0,0 +1,15 @@
+# Basic login with Google Recaptcha Validation
+
+1. Add [this](BasicRecaptchaExternalAuthenticator.py) custom script in `Person Authentication` section
+
+2. Add `credentials_file` key - Patch to file with reCAPTCHA credentials.
+
+   Example: `/etc/certs/cert_creds.json`
+
+   See demo [file](cert_creds.json)
+
+3. Add [this](../../src/main/webapp/auth/recaptcha/login.xhtml) html file inside the custom page directory.
+
+   Example: `/opt/gluu/jetty/oxauth/custom/pages/auth/recaptcha/login.xhtml`
+
+Enable the script and check through login with this custom authentication method.
diff --git a/oxAuth/Server/integrations/basic.recaptcha/cert_creds.json b/oxAuth/Server/integrations/basic.recaptcha/cert_creds.json
new file mode 100644
index 00000000..a266a0a0
--- /dev/null
+++ b/oxAuth/Server/integrations/basic.recaptcha/cert_creds.json
@@ -0,0 +1,7 @@
+{
+    "recaptcha":{
+        "enabled":true,
+        "site_key":"",
+        "secret_key":""
+    }
+}
diff --git a/oxAuth/Server/integrations/basic.recaptcha/login-page.png b/oxAuth/Server/integrations/basic.recaptcha/login-page.png
new file mode 100644
index 0000000000000000000000000000000000000000..9bf89b0421b0e76afe26b442c736f5479b3c4ce5
GIT binary patch
literal 227809
zcmeFZXE>bQ+Ayp|h$tZ;`bd-@h!Ua`y$nILXwinj5N-4*Nk}4yUPg@;y^lIbi0Ezf
zVWRimyKmgdy`TL)&$qYz{Cj`Aj$>x7x#n7Ho$IXYY(6|wQy{)Ua{~(ti&#lfRuc=0
zunr6BS~~$g=8m9(s5TbXO);>H%rhk!8Nf3q2N2lK5(`W5L$vO7J*_s%WP^y$Qr2lI
zgb2cWkNu*^UM$jolUKxfOKuMMI?^Y1ZJ7JsOBr3c+xdPYw|;#8GIC-jEvHXK1f2uk
zSga}X-k61XU7R}4OImd&8Q^18P|$@xpwhk$P}c*55)r0`0hKZ%lX39Q-%C+^elqTT
zi=UMhM~YVDVghXxRNq_pM6u$0^uh%A=4a0Wj$gA>Vt2>FytFqKR$T%oITe;v)b_j<
zk*wxT+FtS|JSJo2AMs9xTtAka>J;W9$$kb@5o593AyG&q^jl_WMG{rVKa;6oG-G2@
z2jEGCkd!zWqb(Sk!DJ{Y##_yrKJv$;BJsXRRmP#&SA0Pw-rRgzH*U`cI|(B%dYn!j
zIy$0n{wNLrvZ&C}uqE;5qq-8?rZn?$98(^NbI_Op-%Ap>^ZCBlP>x|1&{z+naoW)@
z21#8vV`E@@L}w=R{>{5;jaxS)#AV1j1Me1+xg@0eC1I5?GzT9ZNpIaq0Zz9$e$=xz
z4~+ZqeA7zUOy3Zke-e=>oAva<l`^HE_viEAQt}9<EGavU2Z|p9^zNAbJWV`&^{yxG
z%R`-k&tZDxY+b)_rk~V5VwNfly90XvX6E*JrpJ-Y&JRIL!V!%dbwvP9rsu|t`5_(Q
zbEFFaM$<&`A7n&MPfKpeI8SZizL|CYnY{Jx!`6)?(k}siPmc5w@3n_$9L|7F$H~|o
z@Jno8o7R~<On#0<m0`%(Lw2W`xpk*GxK!AbciVe&4uDfE1xUpuv|D<~*NPv|U7sa!
zsE($%`9$g_A2#EY2XSe)+DaLi#9H3m+hmjV{wyiREj83}{oUsak<Ruo5`fH*!2{ZG
z++?Z5>))lhPkF*a$Vn7baKf1GA1b(z*crw-aNG5t`}UBQ{Gw*HxOe-L#e;iBkk-h%
zvNxFn$=`f{S7EOQd(GV1TqK3@cQ=X$&2LSlY`*Q4b62dAUt}FmV17V(5oO7|7<l~c
z<BN<7J)-d&HZ@b&Riw{@+N((HvFKju-VOS2@~zeWvnBg>jLy6B$o*fS&8ER;hv7-B
z5A<VK)!|1T8M#ThsN#?1Ly|)Z$+pL@5c*Bxl0U7^p7}6{1zoIu;QGFAzBZz?N(aTW
z#c^4EGW5yyr9!5=yQ_FiL1CJ;W2v`OYUm{6R$yU%dBl;Ls~SShWY*`}DY)NC;3bd}
zNJYd~c4JZXP<|3Q`m}IHv8F7tj0mg$Aoz4^k5y+ME#)Fo@4Rz?)wpmtIXOACVL0N5
zweQ)8y6AQ54#YO0Z^ud$Z;pOXG)KoRPBy9alo$;@ZoC_ZOZ$Y;YLcYRUy=aF6hOo5
zcl*&TP|CI8>bt7f_`iug!)b4HD#m{v5b}~}1RMIsCzX&6o9!F*D{MoY;YRu@PtQi8
zUQ)Dw4?)0ZGLEM*ySFHs$x9RxZ{be|<1yV*q>Bj1V2XcF77pMKKT@PFCC`x+ykF63
zJWJ+8E*#{-RQdV3BF{F>(Oa{xH*(+6r0Fa^i1O#_dnJIK<Olkq)qBqcyXJO*lx?q(
z^?grrgrBiYZ6DPl7XBkk)$9B}=pNy>eE(AN{2?xdd0B~OK3(3o<q}Hwq@tG-dW`$G
z*ro*%Lq!|!(0yc^HuSzBL2DAAJ1x2?Uq{>!AlZ1b<$%ZW?ek0Z&3na!=7jNYbKa6a
z6*i@v0!#_i#d;EKyqEn#(wDG^z47C=nV=)SBcY>siNAZmh@7`99UxrsnAt0Wls%!D
z>CR_m#TCU`#h*&CO5z!$%I(Um%H7J}lyj7yW}0O>WhN>AjN;}L*FIL&VKaz8wDwsr
zc!+pVdvI32^9~=EIalpV)zk8RKp17$E~b1fGubJ@DRx_4Uw>3}R7+S#KUGY(`l(0Q
zw*K7pc1CRh?bYXc95dR?94gxIyu@eKncIQNnJ+ZXa&iW6mNjj-_HOS<?7iUt4r)Xf
zv}+}$zsMZ>>Z!k%Nu%GT8ImKYQJ`302x%CTtB`Olt%(*<NlKS6Kq#MmJ|^D7CQfLv
z4zUgq3t^!VecTNeLo$P3fbqfG0#w%aePWqM?*scf!4GL-1ykVB(1f9Mxq;FlGh0jB
zXz<$5^1$-&&;WE$tv@--DAVV8t-*C<Nx$jJ?D9k8XtuM_LS$h$w^nRXtzM<^LFu{|
z;+E&Rr#C_qfse5DOxayJmOd6f=G=wtZctC+L-9-SwTK1pCJHXnrak`dh36)_^xo&b
zJ?)o3XrN;t|INy~(7PmescGNc{qSjsI*D(Ye~5Qqs9Vq&;@w#_{1!BAd+(7x#A$q1
z*a+60vCz-C2-$tDC4+pX^<fEwR73WFhCm-cKS0EwgHHDOn>#mm2ImXr&nQ_b!zuZ>
zmLJ+1L~v2Z=*QS{p}2k-=o_#YaFyGXdV&h9y5QWUg=O`&G8J28@n%})&Vw=59mQQG
zMh;$WBo)qO9i@4twbo%{wJ4(1VU$}4^QT=pb~=6j?Z7u5agk}gY28!)>7nLt%}dN9
zXF4<}(=`<e?hZ;U!y;i?g-D%j(e%d(K_T1>6MV-NWl8+Q)$K>QM1w3NmZ2(T9h|ye
zy7epg!!Ub+O2x`|_67DP6XN4P*7w#C43rFDhCv3QyDvW7Z6R;bR}ZlATcGQ?pUj9D
zN8G5}_c)tdn@pNPAWuf`uJE4n8vGR7=G~b(wA)|W&pgRGvfp0Y=ii$-96S`?6*^cr
za@g^0FSi8oyYZUfKe_fEmju7g%A*8SqK0SY&*Y!!pCp|i{Xsff`ru7h0RNknfD@VV
zr=Yiq1T1d@g9-@{-vrH^M=Ms(AB7d`n?j~IrnaV{r%3Ow-fO<a6>e>zH=Em9s}ZB|
z{cDyrSy!m>9Uq<+5s-4{l%AQLs-5;~WL2Ld|IFA7cq?++t))SQKv6H|6<Z&xM#M-$
zMvQ<&j^L7y)64Dl+4Yk2mTnp^rXK*g&;5zY%0T6b7?DTZ*5e6|;xiL1v7Z_wzIlEx
zCtP5qQSD4}cZnEd?#?&^zb&6FPXe1f=}V;PmJ$&~h#*orrVHolCy#b?c07+HPNPq=
zsU@g6`I9Y=EehLLyS6(xdX_1Q@uCBCN7F`W%YH4$F4*-@cLKX1ty=9W9iq$wx915^
zthDOMg4HS(JRG-N)wdE#LCOtJ4C}ZU+fqLNGEBWDIV;L67-7Opdc%h(?}nr*Frmgb
zp+#V-Jah?)q*C{Naocbgb<-Q)O@2ic8NUOPi2IRP;UUN;>H}S&+Yu(3-|ZxhuQg||
zH14kZ6`b@@m$D%#MXbTnzb~Mgh~bQUTgB*u&4;SlmZux<XsM=x@q$IDY9AU`9vZM0
z?Rv*+>3fXEvW&AV_|l)*{wR8*!XE?Wb~b^V3OiQ6I@-JQniHBopr>EH-Iv>{9g??{
zr=r_n#1HPOb{gIev1PYqv90C2$B{6spKnmVu41V(SCQ+N8)(zC{9|xqcxT82J=u`<
zI=!!@G$cikP;g?LuC%(OB{$2P$Wdh~hRq-n4!>wQEP%qk!Al_~l|+?p8}CtlIx89m
zwa8Zsr6T2On!~lWr-drDxNbtjq5}^0z2FBZ+<nD;v0pIw!EybjPr(WG$qK0+!&eDK
zQN6ME0%{Jc4(&F}_G;jDk=xL(6+dd{CQW}fp~B)Aazt`{Tt<1@ORoLI52K=Ie8MEs
z=f<})n?9se;HDNL?pnbGFW7N8Tq?5)=t;D(f-_34IPbR#7dZ!Y^LGmwy=v$knHqB3
zbgTSD3axPyG~TTm@owAER2hydG><*wPN^ezpX=1#A0!(7Qs`==UiW&Z<&btl$U`V)
zq8+if44qo*ahpf8jB_EfUl*O$Pn{)5+Fe*LLN_Fi0h`i4n+}8A7#tZ9?ui$NDm?*g
z18j5Zz~mtb=hx5-p{j%a9mgIo<M+ni>zqegGd;_(f;^<Ba~HY_7bEA%y3@LEiel^f
ze9O)XR!~F!asDS8+i0KHCdbkjO`&0*!q!qEB*o9f_K22Le(0i#xPE<an4s^ZrMvCe
zOgEa1g-@Fhj@`JjhV@JfEA`tMwPm9B1slI?y;U^RW=gSl*aLnytmUZ#FFVH5nriIE
z<bqcx*Y*ZmaLHt@0lrbBa&tF9tczGty2>F02iUML^;rv<Z+y+S#TQ6DF1+zIwRJal
zj!d8>-t2OpohUKx#79d#B@hsZ#eumdz{10(!McXI!p6KLuxbBsEsy;G3-_=4I9OOg
zU@W{p&!}NOFaJJcUYBEjf8s_2VqM34BgeelQ*r)&ny@Yv_wVa#?U>)Nq_t#}lrW!K
z=1!KD_RiK0E@j>;q?j9ouN3v2v9KsvE??M6n#`M+`A5Ld^<4CTsv_nN5N=Zo2Qy1<
zcgU;Dd9cLXMKG5TOBYjsJH*c3S;SrZ-d|6MV6HE3^V|dc^@xkD_&q(~Gk}bPlO;fq
z`w{n}dlEMQ0Dzd21xQ3wR{qa$%s26S)-EouM0j}I+}ya`__-aNtax~Zg@t(@@$vBS
zabcd|a`v!yF?Hv%cfS97lE3GXwRARj0>5$rJJ<s*=QTBRaCH&CckgncfBgN1)6yOM
zUn|)=|JfF1gFKhN@bGd!;`ztin4w~qcSW9o-7W3(Wx)^(&M<38@CrQP6Z>nx|M=;@
zmi(uodjB<)PeAzp82V2?{r92T&X!Ix4iL<uE)xGmus`em^N)W9it$|T{hx608_|E=
z#b8?Eh8WL3s3vhk>7xukhLCh%S@q|bPYjz~{^87F-X8q^#9ZS%ht|Jo+sDF^!cvlz
ze(sLFI&t0a`QT{KmK*#)euEzSTjAFcQNf1~TF}MK<P=&0yjgLw4RJOfO5TnXU%M@P
zo1#SMwjDq*D6^~>5j(n3XSGk#wAxu}34($=LQ9<&Vw`)<CPd51_%DQiK6Y>2lurZr
zVc`(`$8ThFINUf68m|Mb8U7ce{QT|!He25P?^dF~!9$x(3-l@Ckx5};|EF&_4u-h@
z`F1c6@iIwGa<QsWgvkEqi{O!Aw)6P^ZRh`H>h#XxkyAu6i;H)88G5D!{Ke#rXpU#P
zy0)Z<!oqH}&hzK11-I#huHs`CY-}6{qe*5b0tWxxT^A)4l_1<d?6?njrmxS0_iNv;
z+3YF?eXop}M#JNU^>YI}f|?4sVAorJvGoXx)FveMn$}fJOGbMs4>MwY?EoB%mj3=Z
zQ~Fh0$Y0x%;>2@lMNUso>*Tj_Ts4oM)B+Ki`^u@a6ww${DpTd|uE2NuwPJIM-y6Uo
zv|a=@Io!T#J5qpzYXo(2JELh3>1&?5i_|XEM1SNobq!~CcL>T4ze;TVTQQIX*9m*A
zreZb4LCHRM{YDAFJ*h=5f}3T(zy0f305*6S5V~?wnF?+xs;kGAm+ubcw~PG2Kre}Z
zd;5)?uV1Zy#@PL)|G(38Z%zCf4Gu#_WeBd_Z5MbO_x#;&+>-eR1guHNJfgi)1uYt4
zD4ev?gGK?QHtZpdX4=1zC<2h;aiDKB*SZR)1bJBgmBrhd9uKZ9PH;sf4EzD117~-8
zsFYOYDtx3mWANb`D(VGE$3oOr-1;>5d&FX@l%r$Gz~CUXm{L&TN;UVC6QdE!lLshS
zG5awM$b9h|?f?So5unU}#2J@lL5`+!Nndkva$@G?WnXln{9|IItTAl!ZYXl>Dy0q(
z!0`Li8AUErO28&1=w<G2z#G;58exnCZdc&~z=8MW-X>h#=F2CbO2n-;LcYe+l^8NM
z?pPJ*z~k1yF;9JcZ61|e8%qyuqwLg>^;p0RK3jWhJt1GQLE>&}XsrCsuTb*J*$tPD
zk6o^%?na1*sOP`f*Hq{~1D0gSnY+eW6ZTo=n}a*bi-yXJpg{(?f&(f)#yq`H?8G;}
zsd-^!BH+bWoIh+ccJJA<Vgy%S8TVEC20#Y&S0k<q;bp2c=Z~}uI1)<rB2`jT3O~$X
z{-C1x$dT)ot`TBjcu+~(HQH`mAHWzr)b3?DSXy2xxcaE(O$jc=?4cvO)9xZObuW*R
zre*{)yRZhc1X`e*Mbm_*VsKB>NQ;wJFuLt}$MS5_kHJ!ANxpBD<<f)^K2oI?8?nss
zh%y%T$8zM6<eyT&>9<^lYcmVsE#)Qh%0g5sqth?g&vSJ+h841W(!`W7G|Evj`Ym$h
zY8Vk(Nz@~{N>uK#^@9B?KM3bI$=fH;4K$=MTUjWY*AafMHp;T%<I1`aAdVXCxAyX)
zpg`xc^ThH9L87XE3~qaBSR%JK#}hpiKPLKEm(mFc>T2@$i$jXfvf}pz65!PW5yQ_r
zCt3pKb2y5kcw%n1CCUx*E$rA>f%WWnTG&(ykA|J?)RnqAKUY0jbL|#TIT%{pSN-{e
zJ@b9F<8XX3y1m2VBm#&1#WSvVL^dv6aqJkKJO8}z*`)~hb2Cd#77!(=l3e@u8}#SC
z*URo-xl^0jCO5%n(K`9ftcJNPDmgWV;vPS)lb}s+*K9=sjsXpy?I(VI8(Yh@n#bGU
zLzUz8^=`!=AI*Jzew2J9WM;v03yDe;e7Xa%r(i>-Jr%zY0@~7cjaNOPpB)&_DT>tQ
zgm*YI>a+#Vn><ktGuO&MIfDCbWhI+pAJ|voPpGzbK_Vc)HHr!+7(9XY-E)=LcwMVg
zco7;PiY^QfIQWjNFQ#*jA^|4|=f^VBk9Xk-$SqT@N0knuzB?WceE6*Zvk5Tf;x-ie
z@!x6BOX=n!kQLh$?Au+2Y9HLB7IgVa7#W`?T@lx)lfK5=l@XYj3L~_w7Gvk4m@3ua
zQ+HR{0TJ8lmqDY&^q<*#dJ;jbS2|_1ES8mW_`EF~9Dmr30AUus?qfErkHtawHy_hy
zFBN2W3BJs-U1S;*YR#QP&23e3%vQWhTU!EpL02C4y`7LJd89AKziTU_bz)cAg;Yby
zq68`WoWXCzUT0<Y$B|iidga9yaPC;5Xrp<NNQ3gd&6qKMm41>nw)NM^fHY|Ou(jt<
zFzTM>){=Y<+SsO?{Wotn!!f#fM8db6;R@OpJ|OFBM8%aeSLf(vePZNQHO#USqP5^R
z6=KWF{PvL8c9fAdDbu4;p16MLMwVNt{F;2nZU)H9i(fp4ORqwi0j<fZl4m31WZy!f
z8fBoa9(kX1&2}vI<-WNY1a#pzR+|XV%yCTULY|CCWEa#t=*FMwRPBlz9BTVXRN4M(
zA*LhZ^!Rf*59C?Et}q)ApH4(^IwS=tQ82#$KATAhk^u)A!Q=(@I*TQNu#l{H6BAuF
zT8W-mt}>1cCm-uEs)#o?HI>To(BzsFEGNa%(+tseUcD-(aAR_XSw&0j4+4b+F^9PP
zK=rrtG-rkK%9OJzKJN>=01rFm|FSKBe2nJ)-mWrt)lmdvq2J@9?N^gnVu=}<l}7aw
z+Dftch#{lrKkYu|vyac~+svcx#w*!?zpG}uTC4RGCxx(9X=`cT>nSwk39};tI=rY%
z4CmHWTV>DDrxvufLfR$RA!DAL96(@3AeiNX&7+?E=h+Z}3*Fe5jz|Z)*y{^{pv6In
z$bO4W>NDp1Y%1efv7*SdxNJx=?I14~M7bs>2@^dUoOdT_x{0uv*Vo1{iJW6jeoC#9
zU{B!y&6gS%&&e)BhtZj1mG9qLB>Hw|;UyaFk`sW(AiW7DU3#u}EU?Vkxxt7;828f5
ziOP%=^1=jCSJm(^JmLo}tT6j4YnJ10%m`2bHitgFrM?nRZ8*1x>ekFXTaGOo=%~fb
z-m>{;Ubk<uPksd37n}c38xM$$hyTbZ7a+@?;&l{y*Cy~IGuV~B(jcbj1yjR>-o1{z
zWieFw&cfnr!fn`wWm~<u7wjya-o{=v(sWD=VLmoZ7~%mfsO|d!0;ueyWFs6|;}!@v
zJjT94OiC?+PnVB0_2D_@h_9I>il6;;EfjzGT!+oa!v);M4709_z<%&UUX99o?HBBn
zYs1CoL-kR+VxXZuU-%R#bPH8ymz3{YYM3kNlJB#8tGhqmzw*;Japt39hUsqb=c+Gw
zImX36j%_!0Qn$@$1tpCoN?Lbk5a{MAH~Wm2l1$-f7PGO91n1}N3RKdM@q2&yU1StE
zCFJffu_N#5ozRpQNUx2P^v*b5epYWV^HmnM+z4QXQP11`bJy=*SM;o0&x&Ssv<%|d
zBeaM&1+0C}q(PQqa}nEv{W`S-x-)H8d_)Vdg(Fq+MoP38^ul>CtZzWiPNk+8&Y1j5
ztJKpXSit&ZHB?ngjBCW_VoayZ8AiABke64y)@x0=i*-gI!zxgaYeIv=H%SA)<MZ4y
zw(>yXz+BT}F$$gK;{o@vC!Pe~2a@%MZ;c47nV`}kuRxv&3rgRpMZ1Vve*RQ)lupa{
zaSUE{Z>T{4gIl3Vx7<|(hwWNSaht_kcZYPQA_C>!X_ndrAGptaGBJDcaW_s(t(`MC
zV|vdU{58J<u_4T9xq(z5C+VVat0APHug%;p3(-WBjq7)E;b^cwvKx7(kMIOOhlj{B
z`AJz^Gh^9=TTkJ%b?_I3tFk|Q81;sfno<A3e&AI$;1<Puy~(xE*P~AB@6#ea$Jmo}
zBZFZ`(fGh3JDiTd4lzP5wv@~dTp=!_a=?{QzgT@~uXlNQ4`cN?hueK%$|7%}!|&qx
zjt-3@qQdWmz{~j6iR>o3plex>-SQS>9?Z&Zj9XW06WC-4ZPrGamDvX<8hKQ7dV9gf
zcT!48DjXVFsQEUV&m$sCPnTiSt{~rJsbu)zgC(CIB?n?iI2crq!n-l!l4b@21DoRO
zVxH?fZx1}8W%2cN2`auv?H;VI7M1@7|GlkCt^jKd^J~meEB|3cl{-JPU6_DUtI{pE
zK*!Ga{Dt<8EMM~oe>}dsQzQSOh|gy&df<ItxwK6sY{&lThYwB8&Eijtr#mYKtLk1T
zQ`vt$UVh<KSo1wBD(bfIZtok*!_6r^uYEdN!NpHA34&{mqi&tn`VA5$+=)((Rsu|m
z5-0m>_i32(a&u$e5m8+;Dk`Ju^nt|eF80X?+KoS0NRiAegEgJsl1h#Ii(JsI_KA$Z
zn~%kBXkB%*PF1;4g-=RdxRhNS8x-Uc*`#ojN=b3|?Xc=%SMys{c~!R}t$8bCMz*xz
zJP5}S6d#{<7QbWzq%VvItMgcfxbBs{oa3kluc;X*c=?KX%E0Mdtr;CzSmLIh0=dQr
z%J?T50^0><hX!tJaF+w2t<P#Rav)hD`_?Xt&yY<p%=tSg1roDzK3XD$-ej~;x@f{z
z3fOXnF)Wq?(SER?7I-hJDhrcmfmCaWq2l22#Ri5?69)!|T3dQ{Ecbq?Bx!%y7S!~w
ztmDPa*z!}Q0PVPJEqn|Uk`{E{pP><(cO;z772MBilF)U0(|n*9o$y?JBcN@NdKzua
zzNZiJ2(0do+!cEqr!x3<%0<!GSzJKSJrF&}Ff&c1tMpB1<x78UK}gNgiBRhuT|<!2
z$?48JCuEnTwe6jP7rwKtxBAn)+}KA-WOVXJ#K%+b)E$0zq2{wFwnM><x<yV5lkPm8
zQ};cV6rNv9?^Nux7e0NTo}Oh?PppLTQr*z!MQ$;0EtHBhmOnz*uMvgzS{HV@!a4k+
zeW|mk<aa+$-B(C>6vrk7ijWfgkclW?dW)_Y6$Dy=<A4iG8Qc{_z^5JP1nMm7_pMMp
zP@ud~wdXs-@-K~LsY#M1=lX@KWe$>Mq-6>yc$Q%NvDnG*QSy(mtgM((k7W6TYQd81
zVAT^>7D(xl!(64o?Dz%eK**Sp{6rF`j{>RS9u2i~C!8xQsfO0Ibgcv|*kgfI^-50|
z%S(nt$?>DWwBj>G?em!{7NZWq<q==GFop|AZ~HX9MP76^FJDL|o~GJ~Ulr_FF+i!S
zB%>capgk~Rsxm_{lZl#}VXnA0ntc566Ak-oXwJakKmvMFmDCg57Ll05>Zsoq5f#fC
z0%jG9wZw^Tn@_ZiU#aZol2iAlt(b>^M`(*0I3{Xb%U}Wm0<CY;Ly1(L*>vX>DHa)v
zzri0PsH>REzh<oa#zTQl!WivwAYQ#vXmZW?Lp1?_jL$zut0+8Y*qAF!k{8I}dumdU
zTPcnz&z;8NyyZ^h_x<4&)FE4Zj;)*F>F(udp-wH)d6OrTDNmlCIa>+r;q}1T%m5V5
z#-Ek;BwIHvYctN&DZohZrj?B43*Gem7Zp#lTpn%ix6@biIjNeI`D$g4R;-(#76~Ip
zQ`7=GKZK1Ml)>HV`AwVb)lxg>V&+tUlWX;%*U<8|laS7r>RzgoT?M8>r0>fN%JOpr
zx+<lG$|72(y>Z{tG$Zf#Lzk!Qjp1tbC&d0j+HDBvrzJTaeGU^tt~+vE2cAOHiT5*7
z71El!M%ih$KZ<6@x^Q+zYx7I?<p#t=bqchdq8}iSOrmdJ*y{K0nOT1O%=8A*V^hC|
z*tl4ajWtQ06Xj$^Vtl~wiYypB%HgDN9k!wphTftRi(zGbrZa3$B2BAVHYq7}IOMJf
zJou9k$UfZM|ID8OHv2-2)_9{sGs4&Qkl4t>-p)xCS1<XC|3h^i+ip6eZ<e({{vF7M
z1?U5H|1MHHZ+4!91bjRaBFs1S8GR3=sKqOj;5nA@jZb}~3yI%zE-qdlFHG}r2R>XD
zcwQba0gQ})8J|}#E%8Vu!T8rVCScG+0whp?9-#E0t^b+BclVn6DJ@|Bx~>xY<Urva
zS66j&@hzbbLJ?VMdwY*dP5m*;`o}aGC9jEYST%dP*Mjn^W|o<)^ds_5UOD#Su0O6S
z8c0m!o`BD_FY8K{tq_aPJY!$gVrF;H?HGDY`^H}M)#+V!)GslDWg|@it~&q9&Q4V&
zC8h9yfY3d^ySpzt10+w+8HATIDC`!CGBRYhx3?`Y%<VK4rSf7d->74Z!aX=RI8yoz
ze*0L(%2-9uGsx{+Cg92L(*4ZLOihg`YURp`HQGy^G+L^io0n%$+r}`gqO2T+jf<~m
z5GXNmpNbPe_N-B|aY%EqfNKSRTwfGK?rwXX26k04KuYi0Jxcf5bd%6TQL|#^49hs&
zel$w;c1K1#4e)yxA$&BsFG15l@Ksh`+@4q;*IG_~j`arEv*)Jm3lk0YqI^TH0|<v>
z418t3kciJ>n-IamE<VU_@fG|9-chi|f3m%f8dwK^S;*ce$et3<7N}5#v64G%yUz{s
z&8!t{*Iq=4=9RBNCoz_O^3u{Lg94Gy?{I+{){P3v#NlACPI5>s*M3X)mR&mSSO{>k
z>n%F>lgasMNU5pk&#{G3{lnMtBAYQfFcyPkeT%|t2pw1~cI>Cv_5qF@PsfnwF&?X$
zUDa)eXho$$rI?VOht~Ds@#!*c`}MPc95sH^%tzPIfuxMwl84{A_&~c4`Wj&|xw$q-
zifNAc{f+F|^e_qdjsU^_{;3cIP}p*_$+IOsGNaD>VCCid_-KC@-iXW57F#0StGNDy
zUoeN2!|7n2x!O6-+35`+Z`g{w@Z12uEbgoGxe|p7rjs=xH9@<P2ULcK;uk-*5y4p_
z`?mB7bRM6K&c~hAJ9?R9R27j>b?XIT>^x!T`Sy*AS1Cygq8Up?ug?ss7b+Vf)+cHW
z+>9DhUj~iub(pjboA@H_8m5x_!W&U-Y$?`;JQ26<2dZEqMUdRF*C%Uy)fei%F+iB$
zb-VMepNyQkMy~H}(uzDM2af0k2hOb@O(2|_Z_UglDp|p7)7ukKT6L(rG<>{<GiZ*X
z^V%NzsLVK?3E_1RfjPOfB@P?MGNPfu#6lvRmj=@QVoTlf$H(aIhxVAmOEgXaVQB>@
zNoTzfn0L$FmV%1&{uPN8DLg#GaGL(zx;mGmZ>|0j=mJ=qK|EGGe!J>s7yg(kmI|(Y
z!a(Vi5b|*X8$46GEQ=tX&?#O?T}q9gM+EXZYGZ_*w6HxkUKBNi3U63@N1-_vv~ciw
zl|erXlC_<c8VQLN%m-hH<eUgzc$s+t57w}sNQ;#XSOy4(WF=*as>~Mg-<Zt|%RO})
z%{rL~QwmSh@>J0|um|blt6vPaj6#<RDw%5BP>Ny6BEoXCXlpMha&U&+P*d~S16z|Z
z4pB6bQIUE#`l$zPTcbgu5=RZi3Jdskj-63;+NkMG3G1la^v^gabV2RQr1faXQSbeh
zwor|^h{`8&LtJ)fFM}{9pUkNNu@8BUN^kNcX2t8k0C0=1@n+x`sBL0(I#Vgk{@kCK
zYpIloHHAm=s4Z;OCRp|5S_`cM9C<wRv-08@cipQ}#6=@6X-63{Wry3DHB@}wy87a^
z`p7DqWVH+>&ymhNg7+tPvc#Fk(Frc8aGs|_3hX?}`hi1`$7=HHmQnOkcXP$CA<M9l
zTLEI_=Ae+*zUmSZwcB_%wQg?+wY_6<+RyEX;}9JkJp^F-wmY(@yS%b8*Pd4x;{GTP
z;a^D+Dyg<!yK(SZp=70yVI{+vRfvd+!FyABJ1mH?*tEgOb|ay^=NAC?I?3mn8j<){
z1CHoxYCN7}_t8<o&^?Uk2${qtCfc!caPU<MW3LQ8n_99`jrjgOlz3_ta+88!RSt*i
z+SrR1l=k;<9HuC<USDO!t@EUsaU4!ESlcJgoGk`6!&%caF-FG`T>P+GwoHINtM8#v
z1`{`%{(Ok7$NcCaOwESMX5I6sd-sKFPm7tpv9=Wm-tcKX1<+9aKx?0Vc=-7j*Nu-K
zz>10+OZINSMR6oF33Xf0IiBe$>{vHa9$5?9CxN@PQ63HMSeDvpA?zpCBSZkw_(t(e
zK0j~5r739J`9n%-1+kydI+Yb>Wga&`lH;v!OjUOk+%OO-3-8!n&r+!HXnWD-n`_7+
zgmJLfB#L$H@8&cbth=5lpL&}2Ny_mlM_5kW?0J=`#!nF$$-L2D5-}MX%cai4hge&B
zT%2c3YT?5zDr-ZrlCe9Qsi|dDW}6mI^JwX1&Z;p_$O=b>qxF~D;%Kqkl_-2jRb+B9
zcTvL2IAk6Q=5VeHsu%0PPwN&vpsSt?*nyCOX%1^<`#I}mywza)Ri7r@K21dK_wIeW
z&ZyMz+GlPqo@dk+GS{vRJ(B_+4O4`*S2>zz!r^M6BF9f^KknlVRXQ-zeiGR$=Z8Ut
zk{e+R22M_;s=oV5OQ5G^qHgN~kedD>BV%LGL6KWxBTQ{&W*?)&V)V-v;=q;T_Bh@&
zy~xsLyq&`Oc@a_i9L6=mx}3F{F!5<|hn|Mbh)z#S`0nEctL@pHx}WI`R!Kg|)L%w+
zo(xUSbW-zpdbz@O#tc114T*?}iJjJ~Bkg+Z$55#;aD222ZNb7+&;@%@1Fw2%Dc>B1
zb+?UWQoOfwPAB0g*T*+-2+B18&x(P0ah_{~=!6$E+XJ<l1Z<de2U%q9RX!Pj`7*`>
zwslyIW{*uU1!}4CNGA;Rhql{^s5q2cOQ<+>krJDGcyb`AyI+7p3tz_8W(?h2I_PZQ
z+irzx)~YG^jyuWM7<#<Ggtyy@O&`;9KR?Kq^x1Yuo)D<ej$Qto<(OqkBjF5o@97NY
zpQ_C5zu~bR0@<D%58abkpwmrJTH-tGtdB@evV5Z>Vw1CuB+1E*0U{7fVr3^;F|eUU
zZx|GbpPNQv#i6NV$g#3uAI?=KgOtclnyL!HIQ_>yKh7+xGhk^_c|pMg^-(-?a<zp;
zrfiH4Me!+BT7KG(mfJxZW!6NUK0l{R0*DLFwdZ;eAyzUhGgZcZG%=e35m8jPRr*b<
zH4hgn(R1`ky=k%zwQD*CU3t#Nk-y?iIej{W7ZSN78+NRqL#T~9PPg$bBGIJqa8pl9
zuddzqF%P0a?j4b8B0yvJbA8lFEdJMWD){vDyiDZs@kYY|oY>swa7tl29p!7YQhU72
zITyH+J+>6gQ~jMJ(`G~9%vyc2YZSfYqZ-sBwzBG+G>SI()rdkIoNE}zKStH6vL&u{
zw71X7Iwyud#PF5)cB_ojru6kO(D`a;N{8r1U8O<f#c8%=d!K@O@y=_<;fd{ri>^v!
zCE7F6(6j9a^f)IwIXviMt7ihfgV4bo;!e(im7ZRNE*!5nCXON!63ELJB&@_Q4WlLY
zMK5e)ES#ivsa{lcQ*d-w)^mYgasonNX%e}wW~&}`fId)&=QRg;<-HWWO0z98Uxr#+
zGFaMx;{2AUt)|n;ihNUfS-r3}^J)Pss{lR0Z*w0$#iu0n@a@0?3~9zoBWd{ZilVP^
z>UK1t+AYAA5XHm4BGPK=vFRi$T!qcD>Hu|ACNVFf`bWI+;&?(o5}IJ<yG*JsQ=tvI
zt3~mE|AMCLkw2qPy&S_M(@K`3v?Xz_%cyjG6zdr&Ei)mjT?V_Dx^=JM&oQupcmcm#
z5+VQ3{)9oh^{(CZp=Y|Bw35F7Fe`1v%zbOhITnn+Z!Z)Ynea|D!_oB}vr(@}X)IfN
zjavg;WOTxr<$Sz8LOX(K#rQ?<myypzB(V|WnvM;nz>h@GG1u#K!t(7u<H;sEf&C+r
zN}41aEblH1`_055`iHTS7aE}=HUVpME3Je-@y7=Uy&>p2xo+WMe#4x?MNzx?m;wVt
zQ_%T-@~;ltA_PNmVFx!t&%Sz&wbpLgRj3_vo-)ryYH9%=t@zF-IJebq)U!#RjrO>q
zB*^`R=wIw?-WNkuAFZDXHPjohs)-GXWzkxmPAMF5-w-MAZ+t1YlJnKt=w-RMzmV14
zzQMfV)&uVPe0~0Mg>UK-uYbL;<*`2)-??5JinKLxb*-RtUj5JoM^Za<djXxCol)aW
zFp@OS@hvu?JT0#;DBp`S=*n8rsB$MJWu-%icLU)nKLVshjrv#05mCJrTb)nDBSz4B
zx4JKIS6&r*CcBSQ_)R7d^+Y#g%*)e0!EjVuCXj@dBjWQ*nHSt^NuBsV#ejV&@B=>n
zo=AUwe=bNWe%tQQu1JOb8qLx0KA%T=mGZ*d{6ts9kA}{g37<x?D;2%#7C+|+zOst6
z5bOt`vP>D)_PV-xkz*3{mfE-upgKwYy$KzU(*k7=h^cGqSk|4nQ1uvecBWE_25v~m
zaWzo1^Sr{R#<!tx(QxcRSOO#k?O^>Clh)b3OzUV?y*ywNk{KHz)1j<xM7`Fmu&#an
z8m^6R=<#--Ww>qMm#4H)hK-T?hlgeV6R*76ke#<90rX~2Qi@Q~>>`U;i}tZti3<OW
zWL>%k9~_lR9mldGJYNba(f=C8LsMSQ`_i?O^vIwX-BbSkI^!wqljLfzUs_ee`P}RH
zM^lO$uNw}hRjQ|2V2Fb=w!}0Q+-s@HzU$P~AcmQWiVDzI<cu3i0K*r=yorKa`4jtj
zZuJ*uw6pD;V&6)dTD&~vZQ&6;pJYgc_0G38aV4A+)ZtkS6S)QcLcbotNYqa{YJHL3
z3!v`P%K1@KyWv73HZAU&=0g690--K3icZ5yWA4Q1rKK+48HMw$R65Lg3PMs>z}KW`
z+v9UShxYPiV@rPJU3PprJR^Zau&R#<Kyly4aj1P5_w))69Xm{_8P}l(wX@T2seIsq
zNw^d%Iz?bY-1t8e0vu=<kYA<*MIktr&=(s618oU=wsY^2=J=egG7BlU`7l|{>XB1g
z!P4wzmbl~rRmVV+K|nIXflalx)2FLyv^X9PFGSy*ssbjTq$(SqJ}NgA>q(aLq=Rux
zgbIDDoWf;h>f4R7qDi}mw@U{53ufhn1Ccb{NTsg&K^Rs)TpN}#nZz-=Wo+H#u6FX>
zkrtDNqe5jkeG{bSdu_r_qkCUzr^^)-@b)n)!KjZ`Xnu0#SM8uDrvq;?Q+-P^>WsMd
zvVJxMB1>7kl)mI&xa4HSH5$BlkL$qrdb5x|#${`o#i^@e_`2Opn8QVyp?g}kRpm^m
zXd8*?a(-M?6f<Mp1)O+csjiGIiOrzW-kEX(iYl{G_keVBqCLja6CC=AW3<*!k9aK4
zPb-sZ$v-q26!)f(RCw+U>W;z7S-(Q#2(L?6JPqKA9vVnTRX*Mnv}k?V$Mm8?Y`Zmm
zdxI?njy#t%_H?Yd$sjheFW`1cm_71iqd~|-Q&ZF8X#0-S=$!76gV~0tI1b!Z5$Vui
z#Gz{>UZJ1ldw3=edNNKyQ1>{}6dwmdL2w)DY_s^u7%fs8Borv%+AVRVBA6s_QJw_4
zN$?73cXukq;vVmXM|D0_@398ew^=^ER;B9FG2RD=1x8k{WM<_X){oce&r|9I)>#Qn
z6gUVYcXy%iBe&iWIwf8inwse@O~^-Z6!Lx&ybG@JljN~~%JR0detCxCe4O#buE`S>
z^x<tJ${=EwZdgl`pYI37qf%mlH33Awe(RGN@O-?yASUC|Zg~;`(cA?CJ9k&-@5&2q
zf;`;~inSxOB3M?o`yz}JAMPoIXu=G6-l_Azryge;aZRu?vnp10?8m+xd-9=3P{w3_
zNbzV_TT@G)h5fo~Y<bi1+w!2w;e~pRiCQ-b`Usc)j2&FTH3#3bGCGghsd-Q9&-X*c
zK$WiR=W{%>o&4$t-6!j{b52KhbTRoSwQ-LH^|^6p)}!tlB5RDF$FwF3GM|kldzK*m
zMlgXhmgoMJcu1nT#lG|a1{nU??%@lqF&g)swJFH@xX`Rn!<kXz#OX#ukqQ(F&o@co
zx%BvJLuXQ(3PhNmT!hf8;5eM~jVq+?;GH(v)4W3R?Ts1r{0JvOxI!ljDy+=c5~6Dh
zL@XBHPpms%|MzKXY`mIKKhA!cgya4YC6$QFLX)SUk2fDl)31d;kl-C9ab50b7+9uJ
zt@^5ii5^+ZgeGm9>W9?n>Ts!W+WO=XqIO6837t->ZVQ84zU*$qvgfcXMSM;KaMOPr
z#A~Bj0iM__XXe)E2-<N(lg13Ti3ZzRD!n!u8Jjh59Gk>zLrdzH{$x=GrPwJctAxuU
zXABa-DcggvG?f+Gm5jn%W#!5!#ieNxOs$DL$MEop4h01={AQiDuRh>TihT*UjGD0G
zNBo%4^{pD8*n6~8+(P#!)|V0aEMmme`;xCRZif~;PTH(y@sbJ5PdRuu!917Bz`8jk
zn&Dr0{rsFt_;hm%bhl50|I?x)Hf;W;Os;q(nABcPc+&6eGU{TwL3#VOVi<$?>h9UW
zh1@y6c~)7%!4Nf{7OsiVFDIB={YLY~`ccI!#-TBHh)NF={zl@E+mZ6xGvU*i6(ga*
z?Og7L1JZ-m4{XV)k<-7t5-9p_P+B_&7=MeYyq#4hdUGZW<5QHgJDhD0x3#xN+~L$|
z&x|#qE_O|Mz3oq2SHIN)+s-q&7%FteIN0r@R!QJ&-)*Gm9O3}|3t}MtE9`v7H1eJ6
z<CX9(-hKLe+Ct|Wup$*TH8}BMUlYncaa<bXQuu$j50gCSF>q7qcv`wc$-%TaghLX1
zl`oR2g(vcObDnNXBIg62;A18E1k}0GR=+r}@r*@jS)qnt!e;mOvgZ-Je_Th7b#cDD
zqnds~Qo4m$IV#*|#`5KX`%?Iw?6a)4f7DOymAd;RJw%NNOP3B{6GlidOZRs|%qpKK
zbz+jF@c<P_xWO`1P;oBMGe^%hz++xeN5u*cZ3xOAlTZkY$@Lk}3Tlv5vQ{N`Gkml3
zxCfe2si2GqoEhKJ+{mSH^9ji){20r%!OgGV)>6E?2|b#NZSNAAutx25mi4r~A(f~z
zpjCfz{-k=N{ujz)!*?_7^zf%-8FDN*exE!B<IiGZrcUiSR;??}R;c2HeLT08_yt8%
z)3nM$-2Gqb3|_0ZynI_e#m<EtT#VLsx=qhUsz?30=%#4&oJ|R9Yq&UzGFshb&X%r1
zvL>_3$^AfgmFt#OE;O)%!C<IyF-FrrGtnig6Sq%15JKDRox$v*<$}fhm9BS|44gEa
z?}=|8)9$R^n~<*@{Iak~)lg-ChTK2^<6gZTciY$iJ`wEW&JGglXe7lG(N2Br4<E{>
z2z`SoizCrqzN&25Ka@aLZnEJ1^+vc?kW>bagNM+k$T1$GOh@zR42B8yWqw<hGzqz7
zid>d5R)y)xA>}vJNFCgFTz7~c{19qUk}0xaS79%86<{7x^wy7fj%d&rN077Z^)g`G
zw1}8oFp_W0XJv4d2bE0j+GLe2$;N{akm2Cqm|HFDiGtPpzOk+XdRf-akF6kN9MQfP
zK2EE=3Me1&SDUHta(wpVdY4gvF^_X`AMwLR6U)=Xrd2-TCUDrRZ|w?<^|o)c>zneE
zCAI`8x{os_m?eGRs3O+!X+2kli;7O?dJa%bN=e73xDM))mYzYh6=6nVKF2%Tvsyih
z`ug$WtVz^F{z3>r`;)1#BpEwsUWeq#s<W5snE9_?7yDM~euHm)8QmwP<4=yo+B&+T
zRk)9m6W!3l&=WrX@f~U_H9mytI*syCE+<bctwSB!pkXNQLad1~c+FJ(%{x4FovbRL
zmmLR!iD6n!JfpwqU-?W)lk}<rgty9=Lb<QZIc)itPQQ_;j^Q3RSk?ZvE-<l*>W<Q2
z0)79&_cxjM3Jr5X`7x#B{LNraWlvB|hB^ZixX@*EzdtrY?1AnyY1<v8$9uZ*q3G$A
zOzW{yoq>U4?ZBJV50NQ8?f9qwi0eX+FZ<3y1B6OF?p4O=9?t=4=^Bwlq=Efenj8Nw
zz_<*lq*>rSpP|4^iPK4X1K(m(8N{8q4?zs4FgoZ+8gvK~mFtM%GGJzB*8ue-uw!x%
zJB7K@57}h(z=4xM6<|dN2KSc%;&JyTSM-|8wC@Fsr=e=aUX+ItbEteQ(VB$pd13&K
zGfk|p{<;>La>m@6U=~!I<o)e-pQ+7R$K_!v(K1jF2n23%Yp&>*nM5=5pKeiGsWNZQ
zN1NjKci%d+`=)@VmppG4a17+#>)wTJk|K^I)sG9%Q?+<#5mm)&SGqA~m{L|I{LGq7
z0$GmDA;|I*$66bfdVukbg@-~i;esQ$%cHf~RXwXLImF=7v!kMnteUJJxIk6qi2B&L
z&xTKPm^&xf4TKyjR#qP6Omx#gJYPEpQ!{FROx7DS6JOJJZ^S<7Sd**)29nTE)5A4`
zD#pvfWyA#tk%h+&6&v*@F~qS;WNF!nd>R6F^HI#sH%02cqHT&^u_eCxsQP4CapO@Y
zGE1EO!h6@zYR|8d28!&3QU01zFDomX%VE1<@j2ez$DeRXQkOV-PRV0@?=tF&j+T-R
z^}2W!M&~wOLe9wOFx<D99C%nRb})|Q^B#FbdoJSD?*UETApMo9m|EjAOuV;y=3A#5
zD!w15qwTc}wptY&Sczh%YL(OCE;m*qg<u?%Qky}W>dWljM!f;r3~?EJrBHujEa-r~
zmy+<(TuJG}*BOja>wUPHg}~cipHR^$Fy^8%@vg2!3oRg6tFx@CS$=Ux=M^O{CvB*n
zuDdmaYpF@(==*d#VZs`KV!xfbfrMh1mW&tN5e`}5@~?z{EWtP;|32&V)&L_hRqt{n
znQ_8z)a{M?z8?q!Qno3Q4Ig{5U)a4FxUDl{e)n~wHT#pV@}98=;d4A|%i(Oj*z5cr
z0d`$u_Yn1Jk#~Z{nqpYzvQ*|xaWfo06WVAeq_M<4Zx1aRx;7?eu@gv4YZLV3Z0K#&
zmlA7tl_2#&^h6A|5y+D>58}$t&&StU!lGho8t$fu)N!Co=M*uPlau?>^bMa=Ch%rV
z)6cNV;046dy#1806-?LoJZ$k%X?;_dNJrIW>XQz`fuVR;p0mlgFvW9U=2Uw_DX-nT
z<BpVP&R|s@N_!(K4>JXHZH9%Y<Ynyc5cfaRVmnFpd~3H@rgS`a5Mk-y%TU~v9xARU
zNIJ@dTX_)4Qsnz^ONlVTwH3=T1Q;nF`+lXChW+fJ$#UKc#`POj_d)l_WMBUB`Ptf#
z?cw<gnWn*}o;<yVP?xbE1|oDW!xZ*s+Z|<gJdV=2W`Y<`aSj97{x*?c(-kG;fE$;c
z0aHq8N?q451vSq5$^GJ5{iGXg>-DS|I`lkyM8O#@OCV~GZ+N50Mu6%Rf%Y*6U6DK#
z%0E3&d8zM1KOzH`@3~~&MuXHPC+UuE8Nhdh@Y2`%)F|Z=wL?*Xq6BYcCM9{qdEVd?
z@9G%o>w~kA{r%7`ewh(tmp&FKf!>BH>*Xnj(O-|Sj_XC06efRa*Fi)?G&d<DhA=#)
zyAgQ>!vT8bE{o~IDMklL)A=!^1JCywN4V&@fm`!qt8ikgC}WlSZy}nK#vWAg4=aUJ
zYig-L?L#vXg`OK$aOa%3=Lv*%+;$6-|G=aEIicr9hW8#cTiN~=L9LXg=9f#WKKC`9
z6>mJ2<b&s&_OP;thezXF=cO@!4$#4Ih-6FQaYJuudG)U&Hp2MKTU6BmSILNr28P9q
zcAKFUP0O8)unL!I<^{iVa^IIRRTQ)=)nanF$aa?O+}c^mgPf`fduq?6aLqVP0Q+FP
zW~8xsfCET&pr|ABFwYz8A_T3_`o7it-f!RCW%Jwh_SZ8lA36+wn)vR7cyG7i1laRB
zom;cwByo{(`d4;C%`UFOCYdk>w(v5LIz8FqZli$~ilRS)#r6~{JiM*n`rLVVSUCkE
z-fW2jF*sf))Af!}s*X3F)EQPD4e-w4ELv*RC}aP<{Ul6tLV@$ysOVML5TL>oSB}3G
z)_6e1<u4S(TA>TipdZtvIr*t%o?Z)vCRPd7W-jj(XjTmJcjlD+?EyD`!PNQciP@G@
z|9c0@zmN+9h;7O*ZfBQ1N_Xd%{6Pm1&2P3dc-1mqYlKG?j4wZ&ru=IT|2PaNlsnm<
zasPEI%U_X~)DA*SskKvfxh=!9a(r}6mY~A#4iG;DzeZYJoU67h3&X%}EqcG4EfsU&
z_wX-vB9r=G)Z=1^v?gU9`FCH=@3SRl?cuBH{s{iDc6Pj!nOVf_?5qH+=jNZVG(pjy
z29!WIwt>(q=PH-RD0|vsy^6p4S$>y}{IB8g^sLFq%oO@(I52qGJl4FDdCHA25TLq7
z?tRDTyn8ph*MGZA*5tiYs*iW&rT-$=zkB;4hnb)}k#OwR^HhbfWa-$Fzn}ijiD?88
zuM<s$UKO*KN+rguKIZo$H=HWft+EwXrto`+_cabq&WtZ#zPnK(uM#{zsq9Op67YnM
z(_nkL*@lp>{I;}Y#@L=7L`6ImSEk!nFzUPl{qgbrhnTjeTliLPzt_aOl^R<Kc=V^}
z`|s`jPv6r2{biTe6Jb%ikUyMJ4$>a_gF=4-g4<M7Dn>>Sy!~eG|2g=-38DWa1|tEe
z;tUE*lU6y!*68EkG9isefVk#wim_7v{um*viXlt$*HH~yymG6{*0(+bOxo_RF|x6K
z`<q#5LVth%*Aw;XV}KA*Nj?*#czG8IV#dVTFTn(GTw7e?;!r0Fxgw7GvIx^Y3fE1X
zUzBY9-B1{I9@zi%4?7g&L`UDz)X?z9ziKl8vP*@3YYt>}j)OOGDpwWumt;xV5t4Za
z7wpK{UeP1<-W4;v<Tbwe*E11|9IbvNviYE%KgHk=An$?L#P#5uf`YP2OwwULhVcsA
z0{o;NTr&(}fLfS8;LPCuGs_h!?{BvGe%Xafm;0yZ<Vp?khlQOm8(?C~{2O)u(OUkm
zF#Rk<K^(5X>&UODHTfHow}u$TX;sQ0`)>^SZ@&WQFpTm&O*!dG%>BL0<-V9Mt%Z{&
z$5oE~|FJYd5Jt1T`l`uxCDZ)VhNW6Bd+`#ZZeY@lEdH1hiyWbgWt!z56TJXpO!d3n
zfNuyFq=oN4q@+J9c5DX=w{BuHrefXDyN<bqP4TJO7v=<CBLqeREnCIS$N+BO+1S`*
z)MUL_wy`CI%Y8daCH#+&)BE_E06}bA6f=7pdqiU5I16b+qd}}#0o`q!B%Vn@@k(uN
zT_soT=qezo{nfpzzq!u8m9ROUVNz35i{&xP;4TgoRW*H(hdPF2H&yotRv|bd0$@wa
z%p={BN_vr>!T(I7e+{#2rqqiUmu4s4^qG;yXgyruW21pVxgHfZ-izD4X(}BZ9Y5CW
ztsTWF{{#L@qRLeL`+ouaR#G|uZf;{fK0dS8U$rm?Dun$AEsl{+YJOcOiOHBH>1SM-
zza{G5>(UxOKN9DJ_;Bhng{PBTm}42S0zd?hhK431KmYmi^75B->GHo@7ytcCWKyYe
z{>{y@ZJnJFhlhuh!@(_>xX72S{9aZ(GuhPodNpNbW$Nz&^4(Nj{~=4$Vbf0wh>EI^
zlanXu^E#^h>CXoo<JpZARLPEqtS{Qqab2Nh|AB{*bg4v6wNmF&bB<m4Nk~|B^c^y(
zMiZ$ZUM_BKOmCL&-Sw+X;2+ZSvZjh7=4NM`J2$g1eSxbu>D2_XZ!kxja7=HloQ#$=
z?tdtKQrEAMQ&0dGxhmgO$by_PgmeV)5V%nLmu~ar6y`4T{cQ68*Y@Y1Bp3tO`;3e%
zWsp2*Knr7KkF{iRZ@p*mPe`C)=i>U1jNeC&xBt{%g{OLiVGmR2g(3<|migVK^$+~~
z|7lHvY$+WbI5QhtkTVs1A*|6Lh%g6JtS*yUQlfE#hzP^MBcdd6>9PRjOIL5{Lz@1-
zmWV$aks`p`AGKmM=-8g?ka=c+%6lIi99vf>=2&eA`Sk?H;3hbq3S-UuKvV=S*Ze<z
zypfZizj!0)J1>9?iBY3w$Gd&*S85^*E2f;!LiOvt-*x_fWW9A%lkfir{8d3j1Qe8z
zZk3Xd5C+m90tzY((jYOqHb9XS>6VgK=^QbJf^<wk8a8_L$c-^Jp8NAV=lSC~&%Yeb
zxd+#^`+C3f3iZ>E+llnC`S0skUJm>rdp{v2c6keLt=R!tc-`1SFw;6TTak1kb#!8c
zY^)foLyQ5^jC~pbzgUm8&nCcR?}D&IY-cCv9|?~}qC!chvN&9Jd44m@`pF_J;OfQS
zr)^zNiu(!$m=b#ymooAq6|UxTI06ZplK=iKX1OGu|L<D;|JL-G7NuZbNJdqWl$r$x
zC`#M?vPOurp}h?tOL?1yJ`lGurY%=iR<DZfe97+4>GF6Ozu!;spSRklRwys<vsA0`
zVm<^Vk6PUuER+?RDZSD+b(i*+%bDoQgOOH$Thdpr1T~PY#EA~pqpCH<l<H$YaQMZ2
zk%Ii+__g`<Dxh;^awwefYE3J)v){X#eCIE?N#?8UzemCqybawQzT$u>+0fcr+ye%Y
zy^`M-up0AIK~bh?+xIUEuo&EBl)!hCpN~)Nb6lL=x!lu=!=Rv6Lo>7YR=Q7o-!k$d
ztgEwQQXABO-~DEJ^}fGC`@;j=&#k5}f6YBLIYwVY0w>02-;Vton%8FZCw|<T6`h64
zmJ93xy43X$-{?9P+?aoKksJsv@8{R^H|LVzpV0IKMxKrWTh_4$9)sxmeqWm85ypbs
zC!h~DJ%YzKhh;ctIuoI-Ub;>)zxNg7d8`;#SND81^s1zri!{6(-F6yF)Y~2XfLIT)
z!v+2M(Nl+epsBi$;K3`Tb8Y;IG{Jwz-?Y)D!R?_aHVs#6l<Y}~vT8fJx|N<Sw%+9D
z-CI0S=u!L(Fr`_9kzTh?0`_bB(cI~;lb(YQg@(SrBF+#1jxH@|^+)CGQ}?{W<s<9G
zkj%y1f<z@jJo*yT{FaANkliJiiv(NTkC)vT7=c}U8}ak?{S;;ZQB9EFa5f*AO&v`K
z<lDKiN3)3Zt9)7sX%qU#P}cRu0CXxCVY)CVibqXCxrUI6$CY>Q`R&r4nJ7^eHs8R!
zNq=WG@gnc(o0QbllAk}H1Ih(8qlwE%MT=+id!(N$q^1*fOpCa<pp|r;+695{^0~GQ
z@2uv7ATxh~DvQ1_q27L*iD4FIx!qc|^?ts@TCKuP+0OIr9T~1ySX9Sa7maxB{1(=-
zDthJ4=5$R#u4k7Q@GQPVy)d87qd}4X5=^)g#n8z&#@ddKW&ft829+<j2-l^nlNp`2
z>gte6eCz*=KsB<;XG>~?qoEq!>BqQ;XH*m?LEo)A5t7b-xrw=H1qI@4GHz*YZEbY_
z2FnT=HV11`)okt#Av*vXRH7zbFpk_&8+`ip1GX-*>pRHrPnTZ+nSdGiaD}v&c|9Mp
zA9Ng9leZ`TFKbTl?(_?h-1)4h4=umdjp6b$L&=Xlm!2JiKLl}=j$gz#S~a`P-e<(R
z`+XexsCJ|919(ZVg7)s(__yf?#{nfqCw?Ql#sMK4%}|23)2mFxWNnU_T&WZ!D9)!x
zNA_6bXjF`BBkOKpat%yYDKMcSM65>mt^c=G-zx8Q?CsQm!2eTF3*!7M-MHmoY~c~5
zaC*yU+hpe)cDdQNVr^V`9d(h|EwA4ZpWdgYrx#D{kai~1VN~{H7q>)UbeJo*9&Dtv
z_J7Wno2MkRF2Xv|9^Ij^x>I@t3sClBqU-<#bdGrw5A*3Y%fv4<ISI}-fBlMWR0=9z
z1pNxc4-DRz$$cs{yr-;uZeewCH2+~Jn^ox}u%%Hg%M1h3VbWWzAabElcfkKF8y#uu
z^Ze(2;DG4at`FgC)!-|~*1sRqU%mDxcG>jl6%SrEtnX!eP2j<4T$g8B{uBR+J)IZp
zHFFjtfCZC35p*82sIUB??c#IAoQ0N_Y?l10fc)mSYwk~&Ej*J&EE>NTzo`!qrqov^
zNwd1Bg3a>7$dt3q?hs+v0>pR%{Ee35>7T2Lz|%SQMMW}@D&IxBg5D6640b}L<(fSf
z&pr1g`TfdEO8RMK1FwPslSL}CRiFg_slTJZeNRpqx9|224zu)ijiPhM&j9rfemtsx
zqn#gh<05JT1MW_B&LbC>AO7hnDGUUBXTf`y(+@-Ec&rdWwt+K4@QVSGU{u((Y8Y%}
zcOF(_;rW|@!cbz)oRFb!PG|%m!JM6ky*ql}<xPP(X$>&6`paNsRIiGHWO@@ggoW~a
z!`%nU3&d`dv{bm~DF4d`IOR&z&HAJ?69LgysD+hMs8$%EPbc6iqKwZEJy$<g>bW7_
zhrT4g`$zG#h}1U0=?zGUY;gZLX7OagF&c*g)Xl;c$0E{#|D+G|NZ&m@Y!C;)^?L(q
zgY4>fXNco);4D0`zI0a7k^A<@RmjZ_f;hde$o=4n+ZM*Oodn$e27A~y&u<MP3^1V8
z6Bm-Hy(|1zNwd{;{q019d5X2Mx(yASKow#u0N6vs{~c>4atag=E0_C5=A+0LnaX=i
zR<15thM1Pqx7}d!Z`s8u<r~a#A7wB5K485RCh87a9!S{0%ou}rc8hFeX**oxx3LpX
zo8%E6W!?MZFSCW?WWla=dYC<Bvryk$p#$7PQO{8#y)xK~gcHg2Kjdf4&9svR5x9`r
zY6_5K1zXRsR%~S|zmf;i&MOS=|LNkQi6AjyX9=+=cF%F9gD(aT2g*AsBe5_A%y1^<
zj_ma{Hs$Y~3y`T;|Jh0~B9#i2NTOE+=<5;aL>J@z@yFp&4A3|%n?5Bar6eE?BI4#j
zdP`M{zHT%8w-dM>D_456(U5%EC`*~ZVsr%EYgJN|v2^~Y(fS)}96y8ZzZ|1qZE{9>
zBq|<#-=lo+`ZT&C|7FKk=wS~!6&PRUhr=#blO5G4qAEz_)BFHbD{j7@e4IxN_ShJK
zOu$W>y0UwKjIF>D@oP;77dJy74fMH?fsz5R@xaX6%-9T3;wZcf^~iOqvI#j2Y%-w(
zrkN*(KIXx0f4nz&4MTT@+9+^~0oL*adnANuPBJ8<=<?)Ay%Ceh*$XA$XVxG5rZ6%m
zR||vl*v~UGwBqY77IxUYr+M@MZ}QgWvnN$CkvpS7i7I2Z>v2{bpx=--M?e8$VU_jB
zT^s@Yj7$eZ;5ttah3$Xo&0LCsNx4BA*|;P?WOD1?EL1|g?7W;t;RsYupRASD=rl6F
z5Iw)YzMg4a*YUSGfXglVnbVE4=(&q-3-ZvXrn-vj=nF`|#429)rXxc&L1#lZYF6-M
ziq)Z!wfAJ|oL5I08AKKk0d~+g1CfZ}3!AQxFkj}I9g!<g;`B0>%k?AdS>LhUgil_E
za<=C;a4fE`FM)#+N0|!F;RA)7o?Tnt?goJ_HxUZ$nX;F^%v)Kfe8(A)y761tye6^g
zOYT!m%(FIHO|*TWGy8T`XSKHVL8;9A9nhEU^WdP+F$RS+7aNE4UDx2|9J$~KShRxW
z;iSOOdg8J2kw>?BAZ3yK0d8j^AvG1p`u<AjX|IB0SkK%C7NG=o-p=emxFv4t=*iJe
z5cax-c!r~XUU2+YhbYJy>&~b7r4~&$ZD-cvnG8L%apsf)rq-=Tv54mL>k<K3%R^1D
z`i|Dk91Xw?+#vA%`}d?iu1n)*2`>@L_o^`8q(rXTMhBMR9spUNm!_@W>1mmn(Ji=x
z*UUd<7xU0YbI<o2{w<D*Yx=G|@H<<3RqP*f=sNjx5@+6TTIOU!nkwR~Fgj5aC3(h$
zKa;+>xzpCG3EO<KkPqOy+OLcz6aVRpF2P^L-J5N7k*lM)^DDPO@F&G_{a@ZC#+%St
zs#7H7sptKgG`4nu6ir4E$fRm4Mxpz7yS9v8d3Wm}Xq)bxxXa7$Rzd-9s!hW7C-bdO
zX%yzzJUW8Ho|-)uu?RR<`gHwQv-^Cr@#zYB{K+cYa2V+{sNPoNSlpzit2I8OPer;>
zO{+qVbTZ*)bVB0;hD(UAjoe%(hV8jqsH%o9K#%cz8~5FEq%cp2k=(THdA{SZ^;m@6
zZapxv$ec`}NVObS^8}W-wvXt2T{hhd$`S;j(YRaxtS;TJRWS-5Lm>e^!L>dKol?<H
zCNcT@iy*!wjd8<h36f1xZB8@a+W&35#^@m4Aju2-lQx<NRAaOZ`hUh+qp&b>FN9Uy
z-N56pTbo|aGke0oCS(ee%A39;yQpNLfrdX66T4}ATJ>|9b?{%<`snWZi1I<1J0$Eh
zczz-~Od*d5G!nFjjXx{`@;I|57LTS82S1&^Av<5lds?^loNSbq4q6D!6|)OS0)U2h
zbs?jJUr=yR4=}38&eqwLQ`72!n_IEb7vhMsf+RmF{iQ0_CsK3VOKg8E8aHXic--+D
z<E%V2&LFBhn>tx*h$si-JIXgP>Q@dzrvf~+ozqwYm()F>H7(z~&=v16@%C2ixJSjt
zxnK&AdbWVk(|oBRVBQ@zM>z-NPP%5NRF|r%Y?IBEr_`8}Q*8~#xRY{o`DIaopWHu(
zs;tBc`ExmR!C-Sv`PpJX^5RRBBR1Xr#^lag_2)hxaNwxOv}K@0w<RC}dD3Vh$Q=R)
z8}pDt+y~M|&gCMlxpL}Xq~Nxm6FWWV<iKO7<<ql98j79YRi#T`qYwb>DI=}8eOq;P
znSZvUwWEmUUgE-DHhhsRRHj{izqM;OJTTCNR7h?l>XG!fFmz<fm?U6U`lK{=e<gN}
zdS(J)3p&|gGn^>Y27|YI+zk5mIu|bI4y`$X&-1Krna$rPLHMmI_)U7cq19MxhxHkq
z!}i&hyA$q+=>f28=RFIs^^P|?zV)Uq0K*`mq#xx6SeRR9i}D!2kAFA3p^P+iMf~9W
zZePwnzaLl7v8y<sb9(YcVk?#zuJ$$K^&4WmBgc0pq$1jCC6sWka5Osj3*@^sS7YIm
zeA2Joz=pyNDw<|>&Kl`_DCm%qvNuUo9C)%f|JqPcn8yG5t#Qhkf1}&k$zp2lm^sef
zw{B<`7#QWURb9owNV`h86D0ooWG&SO)&I}X%#zQez~iOS2p9DL^`U>h*hCR#{qIK-
zKk`;AZuVTSz60JhiYJYYt)5f~&-n6R1A7Tpb%G1>$7O}pm^@~96@(vMlMx0z96S3n
z#395Xphe5!JWV)O;L6!?%FC<%UX|W<9ronS{HoTijQK?6aWSH&9%2EXA!J{Sd5+9x
z>cBPRRAUC`o?=hYq98p@{I*zj+0H^!q{fEXgA=PA|8AzxO?fW&;D_v4sSYsnreaUn
zF{-OfRP4SIG;2$hbgO+7@CZD_c3!G9oYu5%JOb#VMy{hv5|&=Ze1G^aPlr|_r@PVt
zvKc)!e%^?wdRGdlc6)CyKte6)_3AmniDrGiRM(weS*QS-qKNyB$=SLe_}`=%zUPs6
ze9A(vu=|o#!nVb2p+!gOeADjXqa%uPKhrk(uyd-GONo)(!xVPkq;er7jaZ8|lbG4s
zqOpfZ0)NhN6;~+JJxc6ec>vbRKPM%{@W;=eM;-+k8IFj&0+&QTBJL^{dKtU0V9`*(
z-{9VqmX>xV?lD0EqPGKNVtgu)r|mBr$<b(^vIZJ7{yvqq_}5U5$&o<pP0NDy6_*2N
z-y_m1mTzAcp{+n`OP@-tJ412M?b@f?B^sU7dG?$+q8vyd7UEVTYk66k>Dcc$G4)J<
zkFOi*Q=VgQZ~r_p$nqQ4c3MUTrP-u~^$&l<bu++`d9Av*uLAQr4%cPqn$LIj-d;~>
z02bw+2c$MBs|;YLRYtVor&gtf_e1#lVIiZ<!4-wvqQSHv(n*8A*^ak`pJpvMaASRa
z4(Bo7+%d@oZNjnd(lWhg1BYgAHkBo6k@UWSpf2F<bNHRgO@goL>(M9Wr?=SUo{f)>
zJCM##QK*Fz2~K8a^lqE(<IZD7Mo<lP_+DQ&7P2RI3<aNFOX38z<zVvM03IhPJe&hX
zB34h&ZN20Az9~V^zDdYyx9Pq<CjOJ+QCmkSasOyY{8UM)39pKgSRq1L`wh96-~UiD
zZ+4>&6batL@6HY>dOXtLs`xmXsnoYs`_rtElQxW)DPgBM^sqeF&1vWOOK1%HcjufF
zdFvWR4nd3fQ+Q+9Zd>nB<!o;}TL1)#{Xy3e1vC}%%+AXDE0DaCq87~`okPpraUqBa
zE9T(SZI>EGQeHy{5%&!l`Eh%yPshqi_BboHq0?#d*-oPUtix<wU&Y*}T^R(wzae4d
zB64#W`*owH;S)y=Ibqt}$Y^30iv`*OHx?+!9YuZ=ZKHmn$b68y!pWTLfYJQU1>FQD
zH=`Ov>-m2E1n{jAWuz>cF;8AWu7dm6eHu^p=KI*~Tq=Ua{~i}lXEUMw-{+hhPQ0_q
z!7j9R&kME}p%dTvod6k2&P*%VxdO7YaouZWCx~=v<o+g@oM+`kD)9LPO5BNZr-nza
zNR)6Xad`eB<L(Epr_Z_v-*SbV1|)_`nH8w*Y;W&*ZbNR4%GES%Z@=$AHl5#x{Q5w~
z`PJt$USh6d2%6Iq)0mIJqZ7C@X42wVmANeOep6-TuwnrC3Go*BdIPrgq+_EIg^LiA
zeqB=I&}96UWZRqnnX}xg0fB7#*i3ED;@olT_#6hHdfdV$RuqlS{5XZrWB!a00A)O@
zae(3{^0yL{sLruQ)=rx~s@~q8NhCyhXK^@5pB>1plRAD*k&(;6?pr%IIyg_U{m+mJ
z<UQ|w*r~;)fAD@y2kyOjq*56G_9@GsLLlc`<pbKs0besR$WiseXC&t#*WgaQ5Gx_r
z{*xDwf^HJNy_`7uq;zL*%WDNL=GV^lHP6XO*<E7%+@odrY5Uex)%;o{vz719t-t7K
z)bk6$IUf+=ZQ*n+nQjWb{?tA|7x@D*-xTn4#;1m?v^iOkNdmn#F>$trH2HI#f7P^>
z+6(4DohRFz)GcI8A5?`Prd$_~W$kx3*{VQO?{=De7YX2o3iqn8j$QL;ve;B7=!C@4
zVRh2x75s=E$1=Tls<>r0ap{*P=EK=Q9x@}Ene1$8&-z*ITvfWB+q|Q6VQnBs^s}Nr
zSI*r137OvE$DIBiaLn2+R09>Kz)3g-+-c-gIaW))CNDhC+}+5PjPswHPM&{<@iVCD
zY}(@p;_AYmLR?&8NqL-`*z<RNQyCbKD!#w1<H<%Rtq*&kQ|lLc8*uP)yEW$ie=pPA
zcPOdJddHFb1oY*`yh}(W1thGbs*iOLf7$32oIiKerUM)6luc0BH_1zT*8M|4jb+EK
ztrW@bOMF(--Kh6eu~G?LY0)~aD3;S%^EbIOZ|-P;Yxf*Hgsu(FMU;Y&-G!m~yZz{U
zh`#a3vQLqVxvL9C-z!S@@QqasiOvWTU=0n*!JKR|Ip+tI-q5!%ank-t7#2-gk2MRy
zK0JeT^86osz0ux8mImC~&o#5d^a-OSjZc1X?DZ%&-g_`J`PJ^A(;o;u(EK+RjHSeO
z7H|eMf;^rNJuemPkDmNEYV;jLxwAMjixibYCyC2?c<pQMPRSmWU4hv}(>D{Rp3Sui
zI=>yin{?#<()B9%zS#L}EaO_^ShoNQPQ7G)e>i#%n-xOZAHfH({e1oDow&7BPr#((
zM8I&6uJr4FUypieGiSJyt06rnruB0a;o<4OgXD|UzP%^dc5i&>3whRwlA)MHQ+&A?
z!Vq%S#26VWAKR3@bFe^L9mS<4GF|RH$!(scz=TQ!AY4}WJ8r+{e&5WBdNX94(>ypL
zWkqj7^3&oJ$>eJ5w8YKJqEjzJVRP;IQB<dAjkzZW6G#1#PJ=fXXM6_LxS)dK(7HdZ
z!W<xdutrr@jQY}EnpS=W)u{3!olV7bsgd*-+?td1&`D%Ir*IzOvg1%vM~X|6LfEI%
zk_Z3w<-9c#G#PdMQx&YK(n8PxG9dPLB3iJ(qZ}h@E?^KsZn~Jd^=TWz>079@&q;DF
zgrBX${1=}opIE%dMuxobM0Sdx5o)25#IPbY+&MGplN->3gzF||C<RW^V@}nAMK1}+
z7wrhJ<#}|=#Ayp6do#irI!zd(2RDF!Duf*n#mpNVs}?+0@g3maGci}73}wbHF}d^W
zawF(Uilw>h2h1fou#>b@QT$PswCXk2$(ae%F$|JF!d=BTyv`=4y-BpPgO$dPUzN9s
zGaB7mUycxkB~oTL;UO@$Skfm8bR|nGk_G*<V?vA5E8;}~xv}FCptlBlGA%YNWgt^8
zX2G4LU6RzOqB&p=+_2nGs0*I-CYH4zg5*3puZ1u-1)Ft$>bzV8@3Ezj*<22=`_?2)
zD~NmbCGR0E2Lg{G9vuo5WQpIo_)Ao2x~$uwS~mazmtHt7CM|A{%gQ<qLrwSL$ISKK
zJ(3Wy&vCkIzdq5;x`QwY;M+#ga{u;1;`X)L`=(`?F5<4EHjoA2F7@`%&P_I<bDJh5
z|Hl8)_x1Jz)tKky2@Ru9C+LKK;E#`w^)iX=UC>}r08>%>&!~ko^uRWA-lCxma__$T
zhA}dM$Y-m&+fVHex+2?EQxSg7OTE<0N+*AnciActU`|5yjsgkR30msdxr~~gsUyzO
zd!K%CE#J)X-kGYBLbn8uWZyezF7>IEHQj8Ta@D&O^RDKidLeq+?LlI4{U)pMq`#Ew
zf6ik*PaOs++d<dSVVBp&4r(*ZJz57sO}-<;5FJ#6(E0i5mT0cIiRfdMPYpj2@(Nxn
zKgK&d%gZgC5UBV44k&n#`}yO6St~U3gv1R-!DZJkj*(3~@0~b0Ch1u)qalk*<qF3k
z%C&wQ1oZZkpI|!I!=`^2ip9k1t|44;=fAPLvp#OzE;F?@GT+L;_lZm(E7Gqq+2Nl^
zK4La^trD`*Y#ji20c?4k($3#<fo>*$|8MBb;C!S!#tnPh4l(cA?l=-WdA$sZA?ok=
z3}s2!eYLbZXK(l2G7Q4x;i1N8cQYh*tGvMRT5r4PSr~5gnpND&_T{x0%HQGNXH-OP
z^S`I4)2#a+ufIy=jYm_?DY6}G#|Ds8_<fog4YzM&4<2dPUB!uMJX5b@zOC}P@e+!$
z!R0&c?<+YJKw8&xkr>pXQ-GuYhAhzJ?iA{iKvIF;Me2}79WqJ3Y+CvmG`SCx6Bnn%
z(uj?}95#kcoAVUkR*B<m<i@8t0++6g;eVs;lB3AUU~N6!Qj~GpA>iwNLfo6~Fw3iT
z9>GgOk@mCPkOt3t`1qCiql50mjV2W?<7S_uUuBWFz4<po-8(g%9*58}v(AYQBEs>K
zg!dV!`!4DC{#4?@D#!Ufrry#6{n}ret@=s?{s0<TOS`^=)Zey9<kOuOT3>kMcdFT#
z*fg!|FJO2Sq*eEw4%=^9u8_}nds`aYgN~JwG8cogG=T=R<8zmli@pQ}c-nFP2Z5}z
z*j=C0bFUR<wZMusg+E=4b~n^F#w@i7eG0y3%O_fSKbsT~1}7SgaW7di3I0+c=f2aK
zxZPQR&Z#(mhe-WTnc1Ol8D&W&e7QS!6|E^#)k}>|uuI(Axk0-ea-`K>0D|}j4o%vP
zw<oK&eb0z#St5>lRz3({%LAOHl+|E+cz+<bKKK2C;P?8*&kBf}#dbd_ix&g7#(VCl
ztm!db<_B*-Y)>vdpP7oTQ15*0EV5egW?#aUYqLOiUKt?6Iev6muWGZ|Gt#2%w|Vbc
z*FYJ0;!bx0yqgdygt-W6MoTj&-^@#azG$eFX;P1XWlEYkvr>nySnEvFmHfy!hoiX0
zS~hMfdd{`Mk&YJmG=pxgA&v>+8T$}xciLR^5GLIlRfE<UJ9A!WIgCAa@9%&P-R`aW
zFQj~u<t=fuZy@C$!y%N#!EH|`14l6%rIaqcmi4tH(**Pn&_6i}<)DrNq0u4YY#+T>
zQ=uH9{1X7?lJo<8mj6Abh4;!~>4vM6IO-!EOXVIq-9nd*Fio8wZ;8ooJkmMd_D03G
zC}wzzRxJ{I>%U}%-2bx5f-g2oyE^*ChgIt=zW5>oy>aE*xw*HEIkWprE!&X{{o8E?
z?&H_Ht(C?y&kNOP*Gp3Mebqy&g-#!4S_Q`v#s2z7({XI1B)JU9toBhY`&?ju04-T{
zBNTYx#yi6elu}1!pCNI-GWdoJ^@MnB5bxdd_Zw<ntA<?}^8wLzW|i&uEuYu<oY5z&
z5WQ?kfpLr{t^DDiRlcjX`_IW?C+V;SZ&y^0_fXJoU7vcJvCLXp#U)TKpw44I@3`N4
zT~mDCoHPNP0h^&k0h~(Eh|YVEwAIJG@8RGt?(oMOg$95Dd;hgQnydNJd!tqfYkI!?
z{4~{c;~s*Y_B2cLZK{Kqx`nQ8`AZ8z?wk_7S|>;>V;;VnAAo3Y|Ds?d0_UlRqegzT
z+gvWsv1Zrd`h!@aT+@?iE3I5o-x5{_o|oig^y;BQzxuaJis`8p8Cde|mGHjQ^6=k&
zeW?vjseM!J2dmxVf1_n71n)`bi{ITCqK<N+QydbtICJ&eBK@}geY5>TLpA?ETMiQ0
zR(~W&4ZaqIb|U*h#T)j@T6?~@6hJ+qzOe5#uyDljz;yzOUj13(=l67X7cD0_d0ukA
zCL^uQy5^-c7*PB?Kaz5$F3MkDQnKzhPb5@mqEdO#K$taGeuZozY|c@s0W;UvOQb*C
zOSCJHWORIMs^7KEK7~n|R=)UW0k!t?rpAlO)mF$CyCzWhL<%q{$rL|#3B#BQW#`GD
z)7~XWQxTqj=7&3omcM{y9nW#YRj$r=oB8XeROAPbE)eG$H*sfiqtYfGx+z-aBa&g9
zmtR_sB2Z;J3G;%KQYi<5)HO+b_(s24gg_TR_11Cj%i!HPltt*jLQMvI*JG0cg|L6l
zpH82NKlsPP@-0^#sPYKa<^7Jh-4D8p5^)xM2%lAn31<vCot*wDs(E=(uS?4~Dy?!S
zxW6#^O~aSBF$cX}K*zRSE(7nw5T?HD4?OE;f$f-m1tVtR*{ww0LB{w&9(dim`W+8>
zTN{&%PoiV{xMg{VULPa~tPk4z@}OUh9`vqlw=SBvh|gNx?ecvyAAfb0(I8MQs8%a;
z;c6Y+dNWr8;+YgDVZ%Px|Lr&Ct?RWU!5S|AJetuJi9xO(w=m|r1ECLG%3g%dnK2KZ
zzFL+#quomE;ThNFg%?U!@!E=cmO!$Z{GPn~^^kI?TlHQB3;db0yxSg~?p?+QwlnEF
z8jtK=S}pn-O@^e!0Zw{f3N0?BeL1Jm_EBFLTu8^&B?2~Kp!~$J$P%*mQg&1&c^7>p
zyG+r57e3M$SK7YUTyg7bfKtFd#Q!(;H{6x1WyT>bBk~^_(2_fx`NNTVcO{=fmA$Jr
zi@%hm%e+A8O~zCEg_7eOFye{X8UHOmoq3JfT>eJ<ya!wU^QG80UGswo*}GXLRjF&&
zS)(;JlKHeWG7M@_|N9}Sr<oWkSO4r`T`q{op_{UKo6RrT@<iis5e81k;$)6_{J?yb
zseQG}Cmvji_Tx(V;J@f+tR<HkVwXi1LYJ}1-5JRn+q?|AWE--@FX9W{^FQpp>Qn%F
zY;b3HwcpMVy_!A<wdNL%r0~tYzNQ}&=QZBy<D_-)xgArZGJZ1_0?nKeu>M(T#R2}&
zV2IrT!eCq4Njik9;&=D|xjrz_E>t!kZm7c9B~}vNQ>f04(wr`15em}`id=&bMYJ(F
ziJI{zV|x&GREb#mua4PXK;)d)#yo)8j!b}Nss-BZPPF=5lwIM}Kwo)VC}7#TbbGo}
z((y0?=8aChMmK{_HnsiCZkZC|!PI5mihY@uyi{V*#l}BWLY`E<x~{m&@zDEL&kPL>
ziw^dGG>wfDBQo<Z1d{_ewPx(=7+1Uu+mx<s&=0$olytE1Y=s{N^BjgaZAHNB1N246
zYFD3ik^MVPznYFiFP(F<(v%U2UTh|hCdGR?T)jn7(`syMh=_=T^^=c(QYnN&`>6k*
zfVPwNuRY?{HN)WPO4B?!|01yc?w>C2l%z|!aodcx17ylx_91i5)LE#Jf2R&@R|8CN
zbv3e2#4fntZL3|D;koB!rFX*k<oyt%+<VsJ=^=tSE8G}f)5j^RYk#}UGYEx4Gjn04
zbBt5lRJT}?<oxl-Ab^uT*6tq`t@Skhc`*7||A3chbzV)!;XgVdb>>Nqc|*YeiINGk
zOd*k)4*COWJF@@L-Y#2^P-OB(%B@P{vswtsvV$SA7DcS&(k6uhw~Rwcm%H~H9{a0J
zFUhJX9rd$lQQ(kTnV+73N}eu@!eYZA>!DOJ=GA9)77Qwjj0rl*`USiLJKmM~{~Y1%
zeI*yF^-(6#{cWOt`*~@hKc;oJ+8efcKF1o6O^KxiDJiAc3_G*lpm~q>JihFqll35N
zXj*lTgIpLV1FAml*hD2z_yqB%$@nPEVPS2EAMLU+=2lc>5FNAIx5slh*_W=RO!sM6
zTM^v45S<(WQzhN@S~;P&5Qkwi0lr&a1gTYj(rwx|WQw`h${@XPnbhGqoy|WS8H9%)
z5LJko{NvlEEWPHMG&MC9=#<*GZk*ihK`UlFyDQ@&5!M#Ds?)XMG3FC<Y4?TTk?I9)
z>Qg`Tz6l>z>Ysi&5nRm9Fv8l*>vY$OF{1eC(hAv+tOdrkyK5F8S#-V9CvCTN{Fez-
zmVUZv@j98b38T}LTcZ4Mm3J+WrGYzzg8bK#XH_F)7Zmaj7IRCrv@MXG_`;y^HbzSq
z=C7WYEn)3@d@D0{Qw+2Brg&Me#+DQHTO${Ts!oN$4m+9j2GYXQVssscW92{I{<BbZ
zy*x#?H?*D*TPfMaRF>L92X!|bc1G*({%+d--aynK5Pr2eM81@nH?u1i0V()DW;3It
zlU!d6+Hj&@7tA2DCQbeN7ybKu>I{a-GOpC<+@Gr2#0Sg{w91|?6H%U-guyl*^+$Sv
ze0tk!0<Jy#>v&~vrk?zUQz>N1X?;d&qi*_FK{(;!-H(GpS*I3nyC+~ze8;iK-YNUj
zuBG>Pe=}I?R(xTz?}qlZ-O}Lx({W&xz%3I%Hr`mRVOC(^S^FCjFo!ys7lv(WvbCQQ
za@X@Ho9UdOUwzQ5xGN>CGYn;%Fl-MnbRZf|GdB7c0}}en{*ATb71OlL_(r?c^y4f@
zEB^Q>Cu<pN5i46<!`|(#VxfvC`*C0>Z;id<!mUHY_Tt^kUT%@fBhW3tz(XG}_^7(!
zfgDndE_e$Z(0B=y85}B)01Y*+f-j&8!_71(ljV1^<pt1jA+8G&XHeXA7vL3qh|~`f
z<kc)Zi@5Q`ao7aLc-Qs$?s&Q(-SXaNVKG^RWy;iWw$zARyTTCwu4O`Y#Z=OYZ-tji
zOLwt7kE*ldjP*y=zq=?|<RLZs-5FB#pm)7OvCbCGdp5JG-#<?fqXu&drMd2U|M~pq
z5m8iAC-z0|V==?`MQhOYbmQUTW_@!LV~>ttyfnl_HG)5a{|@Tqm-B&Q3(qCi+j0Pi
zsMKDj@S^OYD>0b6MImm`QmkkqlG5H<SG!(CD140HH+fZdi`Co1-cs=OpzU6XZYI0@
z9S0I{@N9|vlCLioX!k^BioWi3GX1+`slxiDV#qE*{{D>x)hpPWS4RyG#qU{>l|Hke
ztnI$eK>eH7s&EV53>g#F1{I%rBPc0!Vp49{JxYt%)u+N+1}ye8x*9tKJxpNXz4uBf
z9*-_?BF+URxJ3$FGgvtoJpJ3nw#Qn*sG~}T=8aDQjaE4LH<LJ(!-Qx1c@lPQ?o!7V
z?Y5W@AZEJ=VhWgbvA9Y7;?bfdFOEx0x=#Cg9SyUrH>PvpaEKW0dNaauKK~CW_=Ina
z<+7W8Z^m)2%OpnN`OAg=Wu?lzDk@aNOV5hqjU1yrm`iK}@0w^ngU9ZSS8V(5Zr>8y
zRLE|A#(oVFHpNG}Ds?)fkL{W2fC4z{#dI}MJ%mC1<6pxMFLGow0n(5!gdwi+#1#Qv
zW)l?cy?uR$0TEJJOJP5U0RZ%_l&qKgKYYL%Tgt!}R<O_gSmQ@Tnnrh~{aSss>{?t@
z#dC23WlM+jzt*X7S1s&BRG>%QvNv2Ih+7XjUxh=G<8WlNIxP{}0i4+uJ{|hl>VE<K
zV-I=(-%T*)#|{x2_TgRf2UZFrbbgRfT@n(a0@14JD!Q)Pd9n0~@Oi8@&qxW;<bxS)
za`9N2OARZ~x#lV%QUpm3)Xz#X2(+`1bN)Mf=c8J4rf9RXyFWTa7L$T3?~$msPQ{a2
zk+N9VA519d{dXGkeH`3q?gJc!*||n#TC$V)(c<Csuke7FyvvKjkl~~JXLoUIye4VS
z`f0E!%m^BIySAb7XooZn*c8Pxp1`Ps`d_<rT!a#$(OJuSiI^I{2aP*S#~M7q<^_z?
zzjg1Y9(wjwYVYjUx~y18U3d?R{>@eC-XIY{)hQc`eWD>kM|Q!p_|`s3RJqsg0zYML
z#F3qgcL(TgZ!wwJXXI+cxf#9+M-3d?DZW=`tHc;kXQ2{;TEA!|>1ei=uBar_GFW9D
zOW=<Uw?e6*slAfq>~+o%>y_2aIjV6a&}HnU)V3GKdJM;&Uqh5PUPDv$i6%v()q5o)
zh*R54ENa-6)r41b<cLu3smg$b+?2W)AurDY^4~<ev%DrT?Q4bBpWyHT!NUw17Ue|<
zHl+2}LqMk8(s_&PZj3YReJojxw6);c$EHK<FMex25+Nn^xz;%BzO>9#wC@iZ+qlx(
zeVZXkgk`|XTkkfizFA1ebA#>Ux~h!H<NadmlT}}oTCar_f8B3u;SCntPCfSYu#?~z
z%N8(};Xh+TB}=!?7V#HP%M}WFEo)(y>-n1!qqX{?ckXr+tM0SSd4P;70vjwS{#cNJ
zG6cmc^3;c9o_nkrKDZ1sYv-G+Ty>D~w5c0N-20u51=*{fYj4mYMxhT?^FFz$ZKkXV
z{;5P?xg7RR91qXopH9l>Z#Yzd%C-ph876{c#OhyU{c{XN|E=)HqCn@Nk7ZO1K0pcU
zP(1Cb#gu4gvMmPH`gitnsCmywce}k|lgHV*ydd;z181+#uVCD6z{1SkA&X_WKrY5{
zt9`Y%ar2eq$k(ln0k@Y+gwPj*3ZeK#zT$ZI;gMF@gua5t)0>Zj$%KWd&jPv`K%lN6
zL#l!-zSA-QyVA>djVeF8<;VNMG^aee*=U2OQLB$PLcauT%@Y!ewZ4f)_`Uv2{^*oB
zkMC=`G{n>@D!VG@HWds@)^K0aT5`AR&^Xn@huwJsBmdM&kH0kwb~#-0aXnTPF<)o^
z{iY@9Y2)~mLP|3EMOv+m)}3f0^>~^dK6xG}99jF?qi~4FFr8RwxLT;4UahSgZ~fw|
zZ5Q=ArSWr}<J%WOJLW90ACZvOH8?e6AAx_Nj(x?#>gv6-!ye`Wt<UQ>`Hc-33jJXG
zU2L&~5CKrh@GqWaT1n=$ydk<-Wa*8=jkNj7o}8vZHnFlhsFEGcF4eb?jl6}DICMWE
zW9?LYhi;sPLL$c2knFk`*lb!+B6qSqe`HZG=;?xKG31!TZpJjOb&EAzTl~Ql<`E0#
zVqIvl%@)<;*EFF~!0$&N!Cmb@z!k&#G1^dN=)1~~U)CJXwuD#!++ASqZP;n9^+p(J
zIdyYB!L_P3zJ6cilH}`QXynqxCMG4$La5Cq1Wnq0LOM-(pZh+S54IiS@V`=$!n-&t
zRv-7`nj0J4;_;viZi1>W+X?gb4y=EOE12tjLM^}a8s0AdF{9IlxqzqaZfAEu_qG{5
z-X~l@l5De^N`C8miyGWw1X|umPB>wrtQYDwP)0SUPwkI8#UUhwP?C~u@xn$66TI+p
z6Z^FB@kjgn9RHB5hdu5GHd7&@S`iu?Oe65{hYNZe6E0}PXO_&yidYR(!Ic+(*Sl`t
z%ycnAdk*@Js}X`wNi=ft5gMP$^K)55??>2--vD3Y!!D)!YAogKRjQn7ig|^V$XCYC
zS*M>1z-`>!w#{pZYq<`E))z<9V_^NK{=3ecoFp_{CrFJCZsRo~{xTHs+d5ueqZ@6|
z?hYT2GEiRDzW45GP@OAmLG}|`q&kQOd_lKZ?@cRT8m4?a-AR_mcaxPb!{dtbzLR-r
zr2gZ_Nl0}Xuok;lmQg+9ZOJQf@2y4|#CTtc+~QIynhRV4`jrv|Wkdptzn_Gs94z=C
zV{iDF^r?L0y~pguPl0_Oj=TB$L(l&nw(Ojd@$~+gU3gKN<q_pi!EGnwx(fz6_mA+T
zSC8O<H9XTxZ8|sCc$Eo%s)S2oUXE{nt9w^R!oAs_{YAw)1t6JJs&rqU0a|oEl>0}F
zEpW1Ze>FLmK%b+Tc3{)R7x&Wyx(xZSl1TZKDHYyN8JZRec(}|_q*IYA*LU9KpD;CB
z7U+*lyl(3gtyN`_$1nUIlcm9%!L<xW6|lK65sU!^wG6s<N7FRK60~U&A}}3vRn|H^
zyy`EpoKXi}s)Tb>*N29$j({5I?19vB_1~{rCd7HXXk4HMRP;*oqV_L6m~Mp-2njfB
zn0MM+c4~uWiIuuQeM`O*dDNTRaUYU6cs^<;+iWt%7?>Y0JWAJ!Z<|hrUxXx3nd_Dk
zcaJ+Z$D5`%L|%G-L~IqsiG4YL-T(JNW2tuJdpT56oT{Y01V)l8J=8iVl>LyB#z-V0
zh?+>*`hn`zN_G4Gp~_-1<!$ZHOHr>cd*7HgeM15#26SA;OJBkL+1lt~y0O)WPpK%H
zK-~<^tZsKO|0ZfPIVQfDDi(e!GMAe<#|t2f|K%f9$?{V-ON7c_Ffxg?h<DCk&<zbe
zQO{^!z(@Foo^|WW%MGi_s_#dUGN%%S?x5-sYUJ7Fy4PLiEir5!5j-Ia@<Bs&Het+S
zijg$tQ1Ga{lc&0KF>Tc9Lkp%mQIw()t<-)|&n%V{e&Oj<DN3kx_<6rrl+dB88Uxf)
z#8yy{ak?ISUec*&y0P}fOf3HVt7~;U?da9_DUmR;f9~Eup9v<?`C%mDt|8A^#M^e^
zMe)*j2mAa%`Aqb=_xUsMn@BKi2AP{ydl@pSc!hfY@ier<n{GK9T$J|rJ{6P0-^AxO
zh}A0Q=hM3p17^%e^2-WCAe1l)wABmO%MmSV<)&~`j^c)cGrh2U_=yc!)4s<&xaBpz
zihhK!et_zw<lkU9l`j8eN<Mjgx=x?;EG|cP1Gj_{@J5Ku3xWCTCjIfYM>*U&A`!xG
zXDWFudj=7i(pjr0=yBDUT(&Eeo<$3yJL%@wiphVq;N5kW=JiOmlf_J2NXcF^#%q~H
zdWc0S7Ot*Tk6<fF))=3&6zCoLGE&R(<xjjH>vTlKf;TmI9ZFUIPRnA;L#~lUxG#+?
z?^dfGy`h2NN;%1$a*Pr7lXmm8?bdrx@6l?!zo75}mWJ-ZEqX7!N#Il+RVHZK45X1w
zKeO+Q7AT`55Ah8ri_2LV7Y#uXdg6w)N7@~{!@svWOP-N;C(2>%6c6o(=kzKhUrc#B
zPF^~2$PU!^KgCb~zU2yYQ#$CfU<_wp4fIUr?X%hRo_+UeU+ei)t5F65xXgMPmIr0}
z+WoeOYxJqrsANr&-`H&=jp>8q2-!hShS`*U^T-?a<EmzszoqG-OOEcPV&rbsml$tm
z568|o4zMacyxVMucTGEBV(@*GzV$fIn_AuGX*xM1{Pdm`+tIT-pY!JWwa#vtUdAUM
zFlqT;EB2nR_%mVGQB7S?5Jt{MKCj}e<9`y^*>RlzP{)0|i|yn4`N151d6jP;wLjh3
zLCbnyBaC%vWSsbe)sLR@!AW%n^gdaB?J-|MUCRjbe{}X0FYwn~gZA#aexwZ=Wrz>8
zrPea!XZ-<?I$J8i?c*ss-0T9>{Ee4pJJ$FPnWnF&a+SmJ?FTQI@72$|>fV1mR5dQ2
zw%X<^tqj`zUjQK?6ZN=Tuybuxwn;3LQ(n28J5q55I|Ugjk7J4+8<FwHpZjIxPFK1x
zI!z9(zH;fBf0<LG;7(Q@FdKc`VH-AmeR+@GE`QjEapzc2^na-1LG$a=)rRj=4x&zF
zz$85-#_>5dOy2!g1roWl>S(l?t)#t)ACFvxwE1X%Ek~2N0<3nG1t%ZqU`B>a!(-!w
z0vaQk%5NkdB}U5gzuql+eX$1)-P^b6DI<nbZ9L>$q$Og3gvn!B3*~<#^^b(SQF&vy
zg*G1?MEFAin~(SGJnN|$?tdroaVLqwDu~eIT<-S+z^3!lR>$BJ?}&#B)xFel?U(16
zOHJ5)hGp6cex!0HpW`?FuAA1{p+!rL<(T}uyP}Ud=T>8!wSMr!3n>h|7jI6zOL$rE
z&ovh)EPDKjQkj3C%bekk(WA2m^v{L-wW3tzZb*mzmTq(l7r5o$$oIgMJ2KB>5y|tQ
z0q}{GDXPY_zgpsYenKNYoUHmPu;}c>FqV=w?P)0kDkbf`i3uxUpdR8>2<Lenk@A|#
zrlkc<OG(oz7j=(SyTgn39(q|d?zOt!S7~|h70DOE@el4qt;_D^Qc{6SQ~ZZVjURfe
ztN?6utUtrhV-fB{1b31x7Jlpzq;P71NTo=l;Ab5ZHf&|m`u-^WfC=_%IGlqf!0M%3
z^qTmMa1lCQ=zQ(J4F1BR6b;GBR2z5Q&kOhR?DgJ6Wn${%1v+XXFp&MlA4QLGry^C!
z5%#)-+y;tQa)0z6rBB3gCN-K!YprFe;>vG-#I^||NZKj?qe&Mr;hlGzm@@MxB`Aom
zbD{qy!v0D;=1)BX);0HN4r72g9#_51#$aNhV)BhmX7~JkT;D=B?*qTj5fsm7ogyN5
zn17R9(TMkIYBQMr$S7*YBWiHU17?O(=v-^$vd<#R7uP10z}0q0v7ZEIN@k$aTXpU{
z-er?FVsd{(&sw!{)&eNT@t+U7%%=kSGo=&<HGX-r-;G)isIk)0tae+CsZdG~+CQXI
zeTm~`rZUaC|I|0D^Bzay-Hg)N;oD}~{M@S&m7jQ9ego>Zh4r%7-7}$qrqU!8fi2!D
zuCzpah?Dyr6o2eZ{1g{7>9Qj;C>4{wpLsLhVXa|E9yv$Fbo>H5`3c+i#@I5Cxo29K
zc`K89NjsS-X{((DAK|_9kt)k$v8`?BHuBf4AL^D#bTo2Q9KPT9ioL`f&QG>B>iT+z
zbc4`ZF-53)PpfYcTrPIOghf%OTSjhN`AJPFVnc`4?8&b-BI`7?(_TPK?rVDIvL^`F
zkJ2|Z3(e8(aTF?NvOO9f90Hx2brx2?Gzlue%1vc=^do?hqY)9FI|a43`Lc3SoKEhH
z&*d5j@AbnAz@n1x|Aizg@ei?ZlBn&OfqYs(UL*rBfDN5{ocRud%9<3iVcxw%|E@fZ
zwXm$Lr|4y~Jrx`-&O#S<KN}Q)r%N%3G0SoptS~3MxqxNiS;r;hBJ6^c%dJ~H3*9HW
zL+bT08UGw_yrx^OT4)VO`yr`sAC@gc9{m}ew2J4y%6(P<sGu3Q=f_8>joag^Pn>$R
z&CsHKjV0+NS}IN<s343cTPKUrS?j|?f8p?hjHcW^Gu`K3^pZ-zUJ`)6=~-82qZi|=
zK&NvPTXcfNTTitW<>ip<Rhf_dUMAyN0y_&2b<yJUVXZzhm88ckjvV4d#FxhB*~YgK
zg}Uq#x*4V^jUI@t>p??#LqxLULzi<ozh#q$<K`9w*H3G(^$d9fp{7WOcm~wJF7wr9
zKrk{}Pl3PR(fA&V=|37e8R{t--x^R%hajqNfO!hzFUs$rx`^u;u$e%e2-z4jdJ|#S
z9rJJ+@981%*B!x*&C!V);FRzFV;zYs7D>I-Z!2pZBj0`8`EEmq!${_dM95yc-Eb%m
z1=CNoPlzSE8ipac2Krd}I3HWjaV%NUEtcjHCdOJR1uNV0?5f&(bmrfRj)Z(7wwu?4
zo&9J%Luf6uHj>}a>HHW69v{bLcGd2I=@4s~@h%on$8?zMB&{t27N$~oAnm%TfP*Vk
zA~+mwX~%@}beNlG5K6WGE|B9tD=7QxJ{12c*?fX_x9j3h9F^vnbE2#g@pBN0LDNSU
zHda+{a6u784QoVgFs8k=Gx=2@cjy&1v;bJaeAN0V{RhaKeaf->kwOhlBQY@=i+Ba@
zdaE?eKnSGwb@_=9SRr6W^o8U(XazT)t6D$<yc0e9KAXR#NWoz*53~X}$!gSEtS>XT
zX=4xkr?Q>0hQu#BgqhW0*XW=A$?GFQ7R-Fy(MshH2z|<Ahw2V7*atppun3fE5|h=k
zxv^EAU+baO9DvuCJ6!t{d6kI(ZaWNS7E3tL4Ee@iqSV#n{^RjY9S57TwFJE9SV3(c
z`^0qX+-k1>=8kgXjV_X{y4cf*!I4Uu`-+|HUGry$j3fVk7}+&onfGVC<b9p1m7u>G
zpB~tZCjjqkovxHPKAYL~aIKi~*Xo6UW1K(MI3e1FKQfb|q=nLX)=||~HEW}X*?Kd^
z$Lo3D<H`$BW{UBn#o|65e;9Oh-Pxi&&4k%*S+DJD3gNfIy{T_0gFF%s)%8;|!fW}d
z3SaJ{@W}Nb#c7%hI+I-LD(o5Y=)q73Is~sUJ$w{8*UDct5gi$aldR@f8Octae135F
z|8@a%J`hSD^ok=YafnbYUuO#<6PR<G3`V`YP(O^c^z(8U204XV=G9cb02g$$$dy{8
zn!H^Jp^g10Dei6D(&$z<B-U;s>Bq(V+A7maJ~NJPSv7fAieKVo8P94o{~OckWf-y(
z6FH{~BtCN$Ec00zP)`HM`t}YQ8v`)f>Yk=6Oy7C9gOcMYd0dduhg#r|g1de8_rKg(
z=WR<g|ACJ<xd=$@IeTsvICM@Yf&0wI2~<HUjTX@cMQ5=x1hgbj{sIUN?`;vUVAld2
z8c0Mcg=6b&0cNUhO4}74%l3W7_?^160bZ{M-oIi0Lhs1_ZM5cZe3ygs&>oNEhaZmo
z3QpqU8-z2xKZe?QQt$Mb-`6=;x+6By#kT6DEqDWab>>x#7n`!hx2DTSi{kh05A{1`
z`s6p!i=4dZKNQh#(2lnVa`5m;OT=`>>e$POz$E%KS7MATGLP@MxYscFshI!SW^(VL
zvAf%AXVnF+Y?Mip?mhDAwwuec3JuT=F%Hs~2noz85b0bG2Sq#tgHohPD+*|>8~lZ(
z4UL#G8~(n5bV2x=B9M;i%^YSzX!P6vO$_Fr=I=tfgTk_KOTRzyPM6&NsTQYf6L^^u
z%I^J92tGi|YubC@O=eE0YCy0lVb?h)=JJNk<yReaI7w%#iJ}rD)E~D&TG@35)F3O3
zkmL6VHclZKyJy!m>>(dn+WR>3IAZn8m{RvtahHEG@m(_AA@XD$-oSyj5lQ?;(E4+U
z5Lm8H^eX<KH8hmBPs^Lnyf8>N%c`z(;@m^NOmFVbasi*HjqPlX{5NKK&KSPpH$}NA
z2TbKohe3zOS&jay-Gg?8UW_?HtnKdaWd8?QW*a1izYJ?JaT;D*AJ-N4Iv<g%2n=P<
z(DWF68jymO3@REuBi}3TO#V-*s>E6c`pc6ZAJ!*i4&@mi?DledsmoY<=s44e!h0f@
z&DfWRqSpgQTh-Q(PyOh&_FC+S8?AxqEO!UpO#EGVYF;i>;@R#l(>_)mpKoi{PHzgI
za=6fc8!KvAGUX6Zw!|-*`=mD*?_N-UeC5QD8c-sh3@g;QT6CTj;Vi#KRlfjLN8SK8
zxvY!E9%x$8@7JahbkVtQI6@&6uK}r>nz_J1#zH|GbTPMFH}zM$;>Q~}C}fLUKX1NA
ztr{_sM+^hjl;A7x(V(N-P}7v**Dt1!-2t2Ll?G?btMqmVpsPJS_<00)%0p}7TF;g|
z_H)Bf8uq>_x$pGok|W9{@LRTGiVv8T2Np}Ui{@NPslim%e!3#^k6h&|9N_&lPxJzd
z5nave4b3|lRU=j9>)M&AqRV@jCiTGXdN!<K%EiH7((nLeLnL!)j)@s&73zQXabpJL
zk5^v2L*t1xj{_Twgd!L4=dT;y4b;PlJ>+M<mvq#42)*TFKutllGA3a2zSC}2bn)+9
za2OGix>1IU#FVRNuw2g#ZZp3jGy-sRVrsPuQAw~4-00qi0Os(p%i~op4fU%`Qpo#R
zJ5J&6>Xf<Ih%x4#OOCk^J=U%COzYa}6q$fbU<BVY?!0I<|5x}<Bs4c@YPR}|*JTuK
z$J8C>mOfR?f45OFzhFQC$yZjXgWca=V<VN>6M2T$A~o;FCR3KNPN2PA{@g*0$7G2-
z<%CZ;{3k5r)Y);xjnFWcMylzI9^8594X8TRd{*bK{||d_71ma}tqs4WK#@{hT3m}$
z+#QM)D6|EFJEbXJ+>4gr?i4L8u7MDs#ho^|rdTK%+~u3RYwd6Eb@1=&+w15**hjg-
zm4s)G`ONVQx$k?p=n-E@$Fg@DY)4Qvt))89$VYm{$Z{-6LV*+8z!1-*>cX!ip$xJ4
zz1QiXf!6_<jjaW@{XV2yh0IO0^k+&`sk6?6GSMw!Qwh`UORfJ?j#+2@7-3AlRUS2K
z>YfgZe5?<7v9Do)7aMk!=)Kcb{+PFNVqcFm45N9lHO%Z>T@+9uZdKbnN?wP@@-)U_
zwM1zwwK9HG7adsm3{r3_-0xM&MI?cFg`<4y_72gP`F+Zsk=*eUiAuYc&-1w!-uo20
zPJ49L7jbE;*@~a9k`h2LOcQ4_-dnls+WKF)#&uhQwl6a$0~1x^vRIV+oX9K^tAFSA
zG8-!;>_}~x#H(NY)U`mguu;0>HBg=p<Ka3P2&CXYNiH@>@c(Sg?PW^DzJhonwm0-P
znytT5ASQx7Kq$_5b?oc7uYyk-x>RV1XG`+K)qd~e#eG*LLvS+sCBH-3dJU+@s1?A2
z5V6tuzBg{*R_icIBxh}oBv&a|n#0~N^S|^6KeQd5tP9jEOF(eSdnHl4EF&-Z9u^Nz
zNZEUC)FTjWCU+EPx0I;K^Jin3ViWMd{ioCG`H8*d{+~w&f$YXswDE(pqj`p}T)^>l
zC1EE&cN}_-lFxLTTWzp9dr*e8AC||$q}HLxy15+5{HTrvB5mAAWw%GCb9#_5pNuY{
zw^9=b)-c~`ckMl@9c6ca*jWhK=(Lfk%e5kplflUkEXY$Rk{knogwL9G9~K)&uZlGz
zLZRyQUx04i1dacP5rr0RK^Dv&AEJpB5#PRQ&<N|2!({o)B;Iu4r+zh!AA~Yz@fO@1
zSfT~-xt{Yb54N-_!*;mb&{8Wh92WDgy?gen#pUSmAt&*5`<=>ZIBQJWny2xJlgoJ*
zH71M{fMytpTP-!glYMqnEfP-Hw%!CeePo#+r1l6o-}P*18kRfiJ_?S1+v16w`fW*r
z+wWuV5WWWlOtnL;-lomEFOWHJ2pQWO!caW+YwS<}L@+Cq?cG>kN(1{2Y`HQe@i=md
zMFgtK6q=yq1z^=yr4@s)4lPB9ta3oH`sw<g1I-sX)dF0oAK=9R^AIMRN$r#8P6tnJ
z{WAWJna@WhOnE&`f7DTjgtG8}Y}KaK@hKBK5<9||R_itq-m1G?Y)Fd?Ru5qlksf}6
zf#R<ZhDZai(C(Uu{qs`o-izlR_vd=Fypnb_4DHG=fjmISI+xRBq{#Pp^G%BCw^AYJ
zeB31-Ej;4I$itA^X#T2zmkn8rygBN|8qDy78*=|gg3=xi>vRpyGp=q|nx0u!+)Jq5
z2o$%7>Yx+m$1dy)hwg6^CB4GXW-ql{7I7_0g|kc+c>k50Zc7)*?8VN6IP7YDe>5FH
zfVsBw)mk@<aobmr1qX$4sjqh2Z^;~MK^coIUR;4usP%6{`;<wxK&DrlT9;ni74{X_
z{38XH^KR6G4STKXTu|fm0Inb8dB(u}uk86Xsf~=MIn*4vzp8G(P7;{8<3GGPkCPFQ
zsNHp)v5^%Zj0u=tP-lWKp|J2>`|f(_k0jw=B;zipreJwZ7f5}W5pXA2?9o7}mETIY
zPlsslr3W(*^q$1sUT6JKCw5)W@ytSAop|m_?IK45PhPqGz-l&8=Eg8~Uh3vGs0oE;
zIBC0KJ|hb-Pp>zK@`c=$^6h(p=12$oYgI)L#pXCwe41T_J+v=!ZqD!a@<B^kK9(Z=
zYeVkkOk>qki>ri%Ap>D~dp*@nyd?t981|H97R{v;y$3}T2Gx55A{Wmu`h*hHxthH=
z$#o8Vj1BGGnK}!jl^A3FtSY7vjyAVDotFC%w7tdZ*@M4|gb)<3t+QE3VhL9$t<H1m
zt92fxw$arB*O<?4|7&i2fqp}~NSQTofgYq3X3V=a0Oh~X7%++IyC9&{>HOe~CG52~
zv+JtbvFH7nXTfVl(_;LOXlmYww5W<#s(*I95ET}$bK<Icvt0f7TpLY_j~PG_G_>P*
zwvnF;@9@8M9CUiE3*VDK4waQ(QuB4!yUoZzSmA0Any^_2i!@NWA~=v>Ibr#6Eak1R
z+9by-1^@;)k8}67GnwEv{t=wYUWaHR8y>ytZ@p(U36KzBWv@=!J&TCr(&vtlK_{T8
zq4S*Liw|h3&V}N-X;gt3Jtm1BTKbYSyP0-%SW8!T5<Db$0TS)2FoN=Oa<$!_1Yi5c
zAMK<;#_pckNh~)aV?19BZB-l_D*@_RxH%&ZS4eaW!=*p1RgS=5`l8jF5vp)0im`~x
z+SkkMxaA1gx1oruo-;e!AM6g<-2H3$Z)9%Y$9};V9Yy$COrEUf1#?L~3;Im*w4QoC
z$N&0x$^|NDk`xLR(w~)5noR0~oaWn&GBc&khY67B_pU`RjrD1OkTD82>>p$S>@7S+
z(lk|RaLUwoA;B@}p!4+Gt1sC$2%x@eLBEriB0_OuQA<-SGhyT}Gilf~1Hjg4&k0Df
zv(2Qh_Lv=$lAtH#5l)6#j8(wpA$ktOP>Z1I1hggp3R*XJ?U?AUB(%xzYU+tcJd%hQ
zMR*SK?*M=h0^}G=g1@)e3HLu;6o6hk3Iz3Ny1t@y$R+SH$T@bMcj;9!Rbp5`y7cCh
zC_^Yp0&kN{;_b&uvRqaU7OF30IPGbkca^(6&1-kP2$;DU%;~%k=s6~pak}|)Y;=`+
zZ85nou#qBI#b9cc5dWKXkf-02@hcYx%~WS~gW6w7=bWcfLxGt_h@Z6Iy2|I*(@3i9
z$82pOJdNzE>ZoerO~h-ImYNeu3}R%9c_xNrK*A0>cU#nC$%RFX=%yXL1GYN?4XEVO
zE$;V<tZ@J135+j4%XrL_%3H`UuV!lx0QhIP#@K^VYIDOGlghr(47cno1WQL2OAW2}
z0#4mHr_Ksy!OSaJvAKmP=H3a4rQ!9RIDen?P7eokfQ-zR$zh91p7T25V8(B&ZH;Y9
zK|oF9eOoT5(Xtq13(Wt_+K<Ke7+B01CTv44<j4y9R-PX-$30b!Yc=Iw(j=Lz^xC#R
zoQ~%7WcSQ<Pn@wo%og}Yh3~YMEGTlQYz*{Eh#72fbn$?X>QTKO$vAXeOw#dDtdx_F
zJU9T@7K1H(YVXr-_wno&*!Y6Z_7RX#<q%c1SPdq4!@G$A_`c8Xf)&Z!T8l4a{6IVK
zq%JQVpHB>F!kw~rGSz<7uBw*!`~(A%`N4i5^sLdyE!C63KF4SFu?{1>&!2l^Haoo6
zZM`&h3))(c-TowT^w0<Q?%f_~*fy(Eajpi*T(VtW1KwdBNhcC0z_#G?*<rn2e#5=A
z)Bluh8fzmvjCkfz$Ago`U39o1*j1HgNmFZHu_KtJhFn)lhhqK(gUhNIMNGH>z7xAf
zYiQ-t)iG)~i@J{>AovqjH$Wyp{%*7U>VCU?YmltM@;DT!i_1oSG@ryoF6t^D@~r;V
zi(6*<7UMcjxT<W$qbH;ky3J&h55&9^+(|hrSW<Q6*H#9s_(P$S6{4PaGP(U2%&EPJ
z6rVeCCJZiBNfz%r{dnX_P1F;WP>)6axIG@x3IH;$3IrepE|W6W=d0p)uBxB7lRqmZ
zGnp(pFSIx>(M)x0H}UGNGHEc@8Uje0hpGJW&MsYC#`ru28YE=b^r`to&7GNzhk&3=
z)0WGvpJd1f(NU7WxHy1*+?cV%0ncBeN{L)+ObqS^Ko69a;+NHrQ>Db#s13nL4eta?
zT&JUjdQt07IrkTwJ7a(YCGTo7JXG|80fASX=gz3zMpTV&bG#`W?o>|MZ1D1J0`+O|
zjmd$Yh^k6SLj7+&AYEUdAiIkNF+UaB494_Z=E_|l9b0zhg()m+rb+QuU$q%U`b7Xp
z65REV><>qs+GKJ3dw^*2ZLb3Uyi>E70cohH>f>k^xLn8g+Q+FvAmc(4r-q5t5+i6O
zuWHku^b^{|B8c-))A6LyxeAKbh4fPp*I9V&hmBe|y6$N|8)$~9jpc0#NV3E7v7Xy(
z19+V~{oHeOU7keZU76Xz=!nnI?1M**tB#Alm<sz+mlgSW*4x{?TmC!YoZM}UOVdMv
zq)8NpbpX0#5-YWA+Ao9!^!7(B5k)xs^Znlo@@F!NiHC{qFY;_2D$+%5bo!fexl0`m
zjpZzUY+T|ISX%a2i7{$&c{WvK-3@r-Z1;fl2I+oRSFO1oAGSkp?u^T}T;CyLXS*Ta
z*J=s=0D%bIby9reojA|aO4=tbYf)qUP(J*e_<9dftT8WHGojbqW_%JS;}FPg^DytZ
z=>Sl5y-N0d0rosFG8?%{bt<^M33H2j)?O<cxSGIkJ6R6WiNAMW%O&eiQ&5ADT4KU}
zhs^BL_<wlm$6JD;>(YCZ<JX?XjwRM@eWKm~qbHS2xF@!l*Mp+G<0che)bMy$l%>N+
zPdb#Q{cxx4=3><we>yC&;SPN&#bz$fqc$BG+#t(RZ)zNQS8kO`s;Rjh0dU8I0*;%%
zR*0ZlS~94i3@bVxcIbHy(sZ?D1Wqaa9dH*Lj)g0BhtbIjE6+M?b0quMT};)He7(GD
zBNlZhovY1>*VY_|c)1G(EG+NC)*daylhAFvbq{tOc|y|4V$U7(j6$ZW@+wv7J5k89
zIE3)~{A!E&^7ivb?;AlQNv|gBqhid!p`rpTxG%5tG@L%i^B$*cqcm7QnaToT&=mJR
z4`kcMbMSh_>^3s7lq+?l;2~?aD$T&K8vsP@Go49mH$7?q@p=#>=e#5)9s_(du{548
zbrBT6oeCW0G#WkW@cwbV5-f@S6A(_ZNGE0&6kHTm1p2zw<WB827BsK$By}aW?M92T
z_jXX-YwM@2o7=#mZ__GUyW}X$H+w57R+_HO$k**$M|!?BBQMY%8+rU$5^bU8tZyJd
zb8up3mhQG2(3eAbsSOLee!IjpcH8I+iP`LMupqZ5%*}cg+kUx*;fA6m?CQB4`xTL)
z=xM*cn*vzgaAf)gxl0XD(Y@{Cr_A0}&2+I=r?)j}7V36z9L?{?e0#3-2)5O3JGp-7
zpGq26pX7EjCpo%c-)@8!rk@MTv0N*!8;SI2j3{D6OapV9w^{aC(&p>aP2NBW+l5_e
z#b*uQw~QMCED2BBc3KXl(~a4Mgdm(OC9f4aUY?BC`R}#ruszmupjr1%MnRte2k-G3
zZHj_zxl*{j?AZzYE-wYk%yvgTMjZ?W(wp%0c2KXWx~_OHHm|3fU2jtIUdQj9{0_Xe
zN?}I2pN@#HOC6q(YCk{Udy2q%547q$LT@*sWMM^!XAD6s<=1Offpw52aShpSlEupA
z3(hT);y7PD!>k`LdcB+Y_`PsTVqMB!F)mERjyj`f=$9Ok@4S8}vbmLB?b7FL$?9&&
zX8|?OJ}An`NCJ2ipVJW#leIiKm+E*knY}Or3w(!zoA>t<?5S!OR{)#>qU5G-Hp<6%
zVgq&{TEv@>x9Y$E>lrjCC~!U5U7iip-H)rKD{f7*B-4?3&)7ljaFp$at?Uqb`ohp<
zf8&f9(p>b3j7jiZte9>Lh<*+2mF{;;2zO)+`KG#Egk7Ja>6+=8d2mp<MXLS^7%B*g
z-^M||^R`L<#8tvJHyM;BM(<Gj)gh1bhkts&y^00eSu^^Orz#r-DkKU%b51<G0rBhj
zO~-ro{mj=e&uiu?N*S{i?lhlTtzzVq^A82o7XULrv!4uht<erBRG6v}2$=Qe_kTXi
zWH#G^qTIx5NR#pRQQ=)u>@d<@^lxLm_l$#kYRytUF@=R5c^bo*Z%_i{hGjsyZ~883
zFZG!AKrBq9`J8oU;bh-hHhPY6)|mt7nSnp<O@0~GX*Aj0tPP#u+>|1tpaFR)0WmXv
z-csOYTiwgc<0XjqEkoAPws#RE@wwNb{ROi>;W2^zgA6-0)7(-MqwB;`jmbi^hU%Bs
z1^3-F`W^t4jMfjsG%}r2;5*RYWLUPg7e+W=nUuP|-vNvT*F}0OU1pFfe4TPEg0wR6
zV~Xm0IwQaltV8Z;KP-9|8e=!~xcF~x%)M2YeGWv#EQ6181xJG7d(VcF6f@crwJ{ak
zTRe8=y*Y08#t$N$jW}_gmafEK=r=;|$b}9gj|Enx!2Il@fjzoJu!@&>&58t_hb=#;
zWMbefhlZPHGQ51nrW#;R06ed&|GkO3{?F>+z?JRZ@47;QkmH!W=i*X2cIO993$~At
z`d(btq5CYts(s8Vi(oZ&VEpnTCym9O-|aZ77wavcqLxxrD>Hg5;vmD&nc`;pkNmwC
zy}FN_B$2p?wqyn0^}oVUBKNV6psT};yx{jVH^%SxIFtZKphbsQQv#F>CS8)ozxFhE
zAE+1wz26n(b0M&hk$6u<eRCjcNbw|s7+QkTDl#d(gZ}@dVX%Lc)j-dd2kIH@(oU-P
zRyKr(d-25_g}XOC;OS4YVox0JX%$1vJ!}C9@j9mKnOyMfv-e1taI7||r@4g?hze!Z
z&lVy2OG@<1LPcE*ilE~ceJwLU2Vv~jjdupWf4IE;n>?jSPu6m{n&{UQ)vCtoa!gPK
ziT!IBTqBK}AJPso-mtbB<Fa1RG&JE{{iqWj<8ROdNi-HTKl4Y0R4osWSQS46+vJCa
zLXjsDT}PYKKd_Qg5glIbV#^F;&_l=F1Hn|e)4^ZoQA}!Hk{hWys4?Z@36o165mDxm
zz8za0rDsf}?K{W*S!fgEfZTv}>BF*!r?A6R>T;(Z)A+0)g<J_#Ps`A<x$_RjY@k$~
zJ!uQrcLs{8>u%18rZ(&zZGwz^a5Qysm*^weSUfL~2)1w0Gy+jJ`49OFXJ$fWZn%Bg
zG)JTwCN;T7ccix;-8R7syUJ*Qd*O<*DG8-N4%_pXcr}{kYnJuINI)&sZ{s>{h>)Jj
zh{ss<qb5^`f^kcrb6^OT((EAPq;TbzzW49|x3P{JPza@MTLZ>&)nLSe-)4>NX~k@l
zMqr-UjMS0dv3&hQ^k^{&UfF$7q+c1(uGZ1D{Bi%W^aXLtU%7Rbf9|UmkPY-!E}THh
zZ_l35xTJlWdtv=)CruJv^F?yq?8(y3{-+hDF;w8iSl;mPB&!)ad%vmQ5=bR_#T4+n
z8xl!pangEgB}qtCU_R(@X@aM6lvrhof|swyK+#*f&EN;L%iNmr;mO2Mr0pY#KXRTN
zEbyhuhN=dEpetmGemAUsr4_auHE5Eq3$*LGBNX!W(J~%(JMYs{uOe6r0QNc+F{KU2
zXEqGF6|v^gQuv3?%VVTCCwf%8W&7q7-Q4&cop-an?yZN}6n?NAk!CXRH3{(Wtcd}W
z1jHmNU0s~i_~AHf7GIj5#x_B~xA{eKzoId4gW)QdM<0(_$)a$&ntv6lWCh=MgU~jA
zU@Uq~{9=s>JkP6yNT6_02$MeZnF55tB&UdtBAKz)*3Q@SC>y!~_JJgGGyPK#nQ4)J
z>0NXmPotB{6fo6zNqm)r4`IwGrBY7T9^vXrEce)R^a4v)wOwR-Z+`vaKi*Zy@+|s^
zyV-ksWor-0s!`E?&cxP++%Bc=7<G;X8<}(4ZV(eEwnn>=h$jDz8dsQVT|xTSFGm_z
zzdTt$ZSk1%xTJKRN)Jg=9M-Q-*E25BaY&pW%iO#l&e{O6(~uEYto`Czq2c15&+_+~
z_1^%eT0I2z#)_fpHCt;vmcG3WJ`+|bo)YH)sE>x9DR2yeZ+%<i1)H(Wg5^QBrGh+S
ztJ66vel<aqZ<4O9fipq~S~mUwg6acz<cwi^<lalbuplPldY4avT&TZwt}-thGpsk*
zHD*5F0tzP8MHS55hF;9&W=$*E{5shI5joZHxO)2{5ujWShi#PjQHt#@otRyoyqUzM
zG|({Z3`_BE{vEI6#hjxKe_FJ187rnBbDB^eK*RJ1UxU$wZ%Z=S*Y)@oC=jeFfDO(5
zs`<-P3Fo@hEC?tb3j<~0B5XC9R93t4?sWXGK!kVh7_p*jhTR<0>t#ZsD0MFnO&yqT
zzOY+ArsbZtCRWgRQT$AH?Iu+$%vvbVR+pZgvZ+SK3*CCVuTx<4)}75S{FZGJbBPCR
zqRJJqgbgVT0&BDUh|qYyi(8RqLpx?i+etPT5n(fUkQH_csc3kGimWH*4))IJ+kwWF
zieQgK>CB3WZ(ThD`x-j6+S+y!xGC|Y`rG)@&ISlb-B9o?iucWNVO1<!X#xRWZ9>)K
zEVxe5g(}fag@&~8*j8*fq><SV1oie|!A&B&Ow)k@0pFd}<OT)8wVC;B{6+oR1_4|}
zi+Xe#K+U#Zk8LK9Gyq$^e}3(4!7YAAMj%euI!@S|Y}k@Xpd&1EjK1#VHwLV|G7bo?
z3DzEkDGSWDB-e{5iitn6${qESO|FNfSWF2o#lZW{{l$H7aFYJ8$FoTN8FcX<pt7I%
zmd&a@YdP6w6l?DtfIz8y^;~UU!WI(m(azkm<9O;lSa3Ti;h5-eQu=_|$@C9+RL0lb
zH1C;J&s?h4O*$b7Eq+WV4!aAF%58ixI?XE0b-g;}PefgG+K=jaZ!8z;EY(DP;~B;P
zwPk8+(NND<>Z(3Tr<;S#T?!<NO#$;Y{wDki+)|GkOm0%Cp+eLZ6QFU5Hbs3u+f2y*
z%d>g5g%jz|@9N1Gc@Cj0@(GxvnR8)?@*!*L*Y#QiLEF#6Ue{K3)^l3$S2jM;WbJ#G
zqFRVpvq^*)jb*0(SU434sVFWMN?>VJ2!&=g9_Vo|5iC!X%3lwQWUX?iogIXQLVrG)
z&+C=7qRSB(eBh~KuNjS>wjkRBmqM?=pPfFGnt9(2ax8E?9vjU{sM6!9U&DHF?vls)
zsKFs+5S_kJH-uz+A;M+laYpkq;K5;9TZCjHaetUnzLA#X$adoz#jY9=#we9bV8e$I
zS#x?fTPTgodIO;>f7-l$L&()^Qk;mdBeVfRXulJhrGjeqad@X+^_*ana?QO9QkAv!
z1-{*JsBJiWIit8TOa`veQV-Nnf`6!(dtC`+UCgGFu8GgT>Zaj3-J$o~jMHdbf=|>W
zW0H0y9h`2w{YDZ=dHr10sMS@yE+={4<-Y%v-4u7MAlWns%RAnYsmD1>vx<H8psJx<
z%mvkg0&wPgI)y8(%d`Zz<xMs6;+H@*L4t`2PlgX*9>#1S+w(3n>VLDCJT16N-T&05
zfT1^i6>D1F_)tvvi}lgy#!m}7!QC2u;;-!Wn<>w|F6WRpmKR2+`Z!U+R<Y7;nOK#$
zEA)a=of<StG5si~fNL(5*t2uK08q>jtBFtIqf`Sn?cDcmwJdGdr*osAVtF;DVzQ2`
z`cP4e4kfq6_<04WcGZ^5Wx7t`ZmjAHMxZ!_531j7MBm7KlT<LsIvRTQtHY9JiQrTu
z@N&y68*xs5dnLQBF3-lq1C{UEY(oYU{|a&*KXx0{ike4+r~Zy&g(plh6Uwd{=R0e)
z794p^!ajf}>oe-8{!lVD#{nS+F!!_XcP^HiAw0E<c+dP7X?G#zCaGn(er#9~MPxj8
zz*u8HGoB$?gRTp4PeN$4^SzYy0=Tu^Qv)VoeY`{aFUUS493Hr6N$q>pt;C9h%YZcY
zQ2=v5P0nFa_aZkQAA;xggBV;$qXX0flh|2)xg5Lta{o_Z+yGYfEh}*(q?^6KZ&j!u
z^tEA{rMNop>->1DUFt-owU0*gmO8ViCA#XKY9&4w8=UwgbXk@)NBD*yTqk(lIM;w<
zTV4F44s_Az9DnaoOxv67E<2R~cHM*+YQqZ}C0@Th$=H`%b5#DcdOUu4PmwAVoFI1N
zYKAnC4aTD-0|EscML!Tl)oYJ?+wDIw9!|xHEm!xc)B00gCuxVsq;*@#ntE+jd<{qE
zlSTS`$@NjUc7K&h3VCrPS&Vlc^zwPjbI$9wL|dAgWEWibU1i>ESAq`QF49n+Hb7?T
z8xND!TK$|M6vD_+m@cCj@JgK#-oO5l{#t(8R7<=#&#mkap84$r_EL;p*ls{`I1^p1
z?VCBD!N!W-<~5}NXj0EZ%<?W@1&JGKWBWT`UnIO+?Q1C1q0xSeg23N!X<2BBv4x-(
zGR<wv+!=wSYhb+45Rqk2J0xuO%C=Un(XYzI&S7Dqq+<QS<cG%Lswmu-q^ashv+qP+
znzC#t7*-#h0!clZ+j`+gZwkc7<(dU~ABA<47Rdq+mJF2*4ag4Y4pf;}zSK_4?+7Rs
zxnRwUEAQn7U_{qpRxStK80+?v81?l6x>=#32l2(ctLcz>#O&sxFM16n5_-tgOK%J?
z%g@@J+kalMZBdm>%Vfh}>q<S2M>8Dqqr%m)FzYN?wq6*97E2u%X_*dW(A(N;=SX^b
zQ1kWSuh}s_zJ`#g*~VLm_Oa~DL6hVm61N9~=cruY=g%!{kb}yb_Xnc`qWguNKZ@PA
zpuxQql?`M<$A9V+_W)pzvrg)cG%x(luS>_N0!Feq1sF#AE*#^ZQ>cMGQ>ge9J*-K?
zZcXL4Enm^6Ry5AoQjb+GX#MKJHH&qA!6<6+kXrB5I5W{n<ag~Sk|o+=cz&5~k8{2J
z?)kGnrPY3vQST`&vKY(fUkW;zrWEUCXc;a5L>nu*$CcTKmVc{kh}&WsT|819&|SUM
zyzK0F@{ckT!m7<1vQR`IK8^1#<NQ10S2~m9{EwC(av`NecmF3eb;(I*AfOx2tJ#7!
zZAeI$P>9<D44PCSWx*TKHs-XrYMafQwiV!)Q@<bd479EVx-0+pYlyo|s{<70o;!;3
z@6nQgSy3hA)Hb#phZjZA3vuuy_aT5T>NkoN8=^|_5U@wAs#c{?mOi@K3+0Uk6*a1v
zfexNf>Knd4+%-@HdvqPHC7)h3G<^UsKiPfJI#R%fh|_TE8wj&SP7E$PHiLx~yqMSG
z;YCHzZxVmT<@y}klu}B!)Qgr5>v&^R7|Px-#bmNy0%DfCY-GX-joNiY!7<LoM2j7J
zH{vN06dGPD-b5}8t8zp8BzFhpNB~kW1cqMwXkPrT=ZhItd6P>(JnQy{MqXY2CxzSz
zJIK_Z6nL0SkxG4>Ws&LDEA0T?*>-*oosOlED2pkO6OV&E^Kf}?XcUz-x)Vx5Vg#jy
zHU!Qo|DphG5v!O5rVW<0PtS5jtK|CE&b+NCxG5_heCTLmcJte6tjBOw;@cSS2rP?G
z)_V1=;7-!$wRXsHeS+PoV3uS0t0r?7$AcDh7G;HSHSgSehlS2vb1!U+=LRm!(P^?q
z0*j}T+p7Vtx3X2*f>r)!Ut{X>gQd<|cc1_zq~<PP1#+Z<K6>|zJ&)zwoS`_v3MSH4
zdmglA?c{B#=WIRYhDRzmo~gH8y7%{!)5p|wxVTQnMz*+iqr=zV6Qn(Bc)i+@`8hN5
zlN<`tgz&?5Y|%zj1%Zt^k=>-aMd7jcrXGuyf^Lg9mrB;+kso>&)3cgL%{WcZq-_T3
zP=H$B>NqZbZ>|s-XR2SiC0hb_A|bVpLs8!aup?+e(cJ()X&$+4Z{kuAr1VmX&h^id
zcTx(FB<$zr97MmuCdupeWm8Xjs?9ICQ(u@PMQhFAtM-W*uIaxO^EPc7DD$Q>`<|rg
z%%4|4=dBHnG)TC^KNrn;%sH6E>*6>mhG&BV&LMd!YF5N62`X-wGxrI_z8?YF!J+iQ
z3LQp9;0rn$_~-A<D<hH>-Kl&z)Cs^ORT-zCSY7it-sYR>-sW4`(<f}vI0H+uIj)l0
z*Z#TpHio%ArA?n40fQFO)6BfPw;R@Tv2Ca%Nr{u6snE;}R$u<a-}wx*dqV9P?GK8+
z6!;w5_c0&$6-Xwn#_zFxN_Pq6Ls+<u?8@banRjDYF7(m|ZsQOd$XhO9+#{s$e3|N%
z069l|#61_ky*gydUiF=T9iw8KR>wZKj%JGwf_7)@ztBERGF|rl^vc7;`3F%8L}uz~
zkRXfh?4oU!gY8NE@o!JHOQGd~(MKoWTm!cvao7#2rM6ii9T1^^l-Z<;YROm^0V3q)
zEcH6A#P;^QzL!lPjd%%_GTEs7)yJ6np$_+pF4FgAzp)bKvfU{I=@BVU@44&<wKQ!l
zT)JKZ<5mRSP(uw4jh~Fl-yz#t;|zycZSv8Y#mTz}T5Np1yKueymwaRXs6y0_THR35
zw*17<6r~Pkv!fa!)7I+WAuZArA~mWmfKa}2)Sgqhvc55s25w$AG*trg!7LS$4cX&0
z<wD7%%uBV;Q+ykMZap<_U(8p0umzB5*qe-34=Jy`zTcKO1RniTseJUu36K*>>r<An
zV0+Q`G|HJ^`52gi`~55F1*>yV_6*D&d@6m2WSIS3Z4tlwEpkA{bkd3ysh>yb5u+%z
z<cnzYZ-HM#&h^Kxaj6=bHus!;Jdtu*l+u41@A{U~bhp_q+3hPTkaBF~vEr}E1YmFZ
zeKAP?(LtOD=0i({2~K&;6f3S;P61)XJIG$op_eRxpr*Z#lH9Hic~bzbTN$$D<(h8+
z`YVUCF~-gShay34@-$QkDEmF172bc8qVB~^&&YAd)o(-}v^eTSwc%jY)1#l+wqEY~
zMxvB>9|5UVMHcI)L|K;89Dq@z+2dDFPGM3MikVyAZKeiOWhU-F@<)PzID9)+>L8LG
z_X4XY5vR-T0vkEyrU{Ue2_8ER^0-+Wa;pHN>!~Xpn^eq3pR?1;)}Mi>uSw2JL#=o2
z^EIz7mm-76BC!%iWp6u3rlD?Bmre<zU<cB>8ezSm;^XurKyj}z>w(2r&#elmhtFR<
zPWjJn%}u-fNWOO6l?+RgWu&+@Qju_{#e+s|m66LU;aCtqr;yf&gzOL^mx19K^r*-c
zRqWI%JQ2g}5;tG0k@i;cfk9{yOQj9@%;`n_A0%q1e|U#cn;+VnN!wu%t!b9{q2sx>
zh#ymz%|mI=UE?ot(+i3GR1xY4R!iJgX9}yu-2cG(gw2`&-DmGaiqz$UKF`c^qNVtk
zd>p+t7IOm^w2_0_%~No9Q~JQ=u3m!4#iDFB)U0uwTinpGg2Qu|IGfZ359-Mfqtvgm
zmkT6>YSf3T3dy(a$!$iKufEZJq){Jit>?grh>n|{k9t(7ne|P4;y&S(D3g)RPRm;Q
zB(w6ZA`+NT@t~6Tv2T8sQo1bALN{@Iw9@IOG>T_2g};&rt)Ny!T@HD}lZ~{N?fxcI
z<p2{28iD6}bk%OQenX4!dnV6u*H!RM{5hEY_jhBAEBM*I`;(=ZY7pul2d;mvMouRQ
z-+!=&{~(G7q@`?rbjTihvd~z`yIPKfe7-!X%s<buZcgxZf5R#7SLU#+&svilD#{Hn
zCjP5gJ5Yr_OcmmsGW5#W@Nc@+aMsH1)ObTo`E4bA#nr$z90n8i$OT!2ijq{JS=a_%
z+HZ`1?{lQftF8pGQ(1Txw6Re<@SonJqC5=@xJr6vkaJ^#TWiRQD8-GZ2x$H32d0F9
z)uU>5^+xKzhyf!GAWB<wsv1GnD#BE{BbnhYuV6Sa7!RJhRKD<!_xG6YF?L_pxv~4u
zb<D9Jl@ffpYx7A?d`mWL84fkiZ+0H<M1i+B*^@mgL<Ip7u1qZk<>G1k?eS_I>SpT8
zW!^7h4L45$ss3`O6eTr`8nkGflxc+@5vtk?I`dq7S<(1vis#;lQ36-m-g6j$%TI&W
zgMmX4d$({@a#+YoPgy;m+km^vHJ@yLeHo!Q@DxHJ$>nIA1oTZEeI1aKzjsB{0xtiM
zqHr~A@z=Cf=xqT;fQgqlT2u*^CnL59fA`7Tw4>j%iHhSXuYoJ>Ct_FE-rsIR=`}JN
z?^M{B@5r=eCTWxmr!*h-^1X|gb^*RZleSE5z~=s2opf-1wc-#u5+B#;MY>&^G>_pt
zZvQKR3a+ZFv<=@6d8+w?(rgp)Q~^gTxBP@Rr@?(#x`0Iy-d;x`j`!jZ#pIW|nJDj~
z82}4#-DT|c<2<_u5C1W{FUUNa8LkHX#<JJy4^y5L@%zYKAbs@vzW3Vc=@l`SZu`ys
zYz@i47%SlCI_fm`E-Vyje*_~<UlJ|&%sJn&f)|D|#TQbZme&D#^(>rr^OXj96r?uu
znO<0}?Ywcx>j3@KV^u!TL~Cf~dYIR_!#g3#Z8oAlzzu+rh!tlNQq$=S6~?P9<2Y?E
zcP@N1i+;FL_}5hr?A@tSs8~nV2W9S+!ERVNUX|q?=XZ%eb<*~#VUJ41kMRY66nmZ?
z$x?+AQYJOB7DA}E$4;(=SyC0cN&-FOAXOv|I{@z6-)GLjLegljEBiE4w>gNTBWvDb
zv<@_F9?Yy3^_BVJ`|Zss<CjvxG2A@L#dXmxQsdmjSh5TG%_*aX<kMB}c?^QnVqNbH
zTEW4v`;YV7$fgY>qLY5Ybd9Ml=I#`(AR;anwWej`mw3SwN&PDaO0u$kXOVEHNW$Lb
z&Bu1x6vQD{$9p*5IwYyhW-lbyb9f{6o?mbeJ*1Oj_xKfjiDT`IUgn{(LMgnyMIYwa
zn&|W-La-J!li_@$j3^7WhlB5Qt)BqUXAqJ!*9h2jh^iw=fVvao7aIDcGOWWZnV)18
zgYUps2WaHCiNf^_ZZt?JrmjzGD~T8T1iQ>B{v={{)V7a)tOPJ0@Qu|Z?WjIuHT%6`
zmRuSnNn^=nanV(>&%!BdSJH|RkT1}ywre8eS-90JL3I-ERF(u+MfXdx9KWVU8<%S^
zNg}WxQ!=<@G1iV_*$apkwzIPg*|2G5ZkP9-4a*G$GPHVg8Gw3^R`ciiUvT()<=3YA
zm^m^r?f%T~Jh%|dFr|pbi%H_*zw`DdvtaGhHkM&+=|_JoOasozZ|f{o)Brl!J^A6J
zZ=Df8bMKhYi9s^`En)7u7d<SkfB7?ZF*<<&D2Hk(pcuh;Kw_VE=}06BA$#Xplw$+m
zKAh~YWG=|tyN0yi0Fr;{y>!%emtWCJ6fs*|OBLFAi^TSE2L!Y}tvg%?Q&dG^ydBTX
zlBiXi!^z$W5=llp6t6NgN<9SjTdLgzd4~~&H0Ii8SvfTH9Cd!-y{qQEQJl7Ls%1L(
zH)d+S87+>GvQbN{_8)X!HFNY>rgMA3-Q(S_J5qkpUcSOMy9213FXJq?NvWwso<?h=
z7oMTD-U`?J6njyU185F9{<9VD|M;IWP$+Ve`vXjKvMYG@&OsNbYo%FemFvA>v~y)o
z!v$0B+4F!gRWsf8ftJnUw#3Cdj+9yGJC%VhF<yc=w-H)h9#c(YgTN4ip^~gs5${Q*
z3wwLVw`xwZ#?9ZiYheRtF@$D?p`vsoi5XAoibb&jndQ8+#~uYgtPAt|WN(iN!O|-&
z-re%eR~K7VS)!Af3!#5O(+Cbt=J=WY#EQnJPIUfu<nac2o7rkTQ>jP5lsH@-;e@t&
zJpKNoh+{PPWZIT1%^DD8$cSsNtbLbsM5C67zu+_=MoBk4kzGIK`Hk4udHw8nmQz-s
z>~Z!EB57@JVK%Fd$3m0j6ChuZaN!AEn3W?t&>Qb~nwZyH0Z~<bVKAvq!u|gGsQUhJ
zr4b5!#(Y&ix}Fs%&EIW~#jPe`z-1~cd&QtAq00ap&H<A8i-b=j66x^u(Hf?csuf?5
z!fc6mkt8?b+WU&7?o!W4tQ_Yyf?qomSI`a8dX;Kj9#REkC3owv<9TXN#s$C&eOIr>
za+IYvPpZM;y|xh^SR#F|>edaf%J^P*&ckAUnC!?%zNZGU0uJ<7WB9Z)pjQ>C8lx5p
z?X?{e5q;s^eO0plBNpeWU<7#wIM@4!l$3i3Jliv%%TY3m{&-rpmg<j_?&R0TYn@mz
zM2V-_kI?<y78MD>Ss6!ii((k-;||p=g7^i7)?(Zu=pb+F_-;=>J$J!}RU@B$)-(z5
zGm9sR;jclmR`~~nX=cROF8JT{P0j<gf*G8aUC~qR=Q-!L{JdOFAE4Fmgx>Bo3#6Oi
zoTvRz67W9XLf-7+yzsu)MVO4kEw|k`SLwKpthXOyf_xa26=ijmryyC}ZQxY{y0e?Q
z5;vhq-*~hNjcLUXcn?il@Mn!aFg_c2!wr?X>SIP#N~$!SC4G5O1988<(0t{2P9I=L
z-tbgK67#xsy@I?NpAXgrKU#Lvnz_&GyW0@gz7zXp+GIHJ<}h#mS}fY{x8tNh53+)5
z#$yuiIlIBm<*`%17EaJoYo`y*JI6M0{ReS#-REv2{mrlOI>Xv)KL7PAj@F+YqgpKV
zB_Y6KbH;n5=9Of-fKSY?_P}ysDT032xcR^ckHU$;Q#DLX&ypARN8!}3LtPXkQ29FA
z!X6FC8%8@?HRj;LUwi0`a@+DJsECJDyCroOy{wk`xZLu_+&y@~xk-L|Vymx@WJ;L7
zGW<uZPZv`*Qgc9X)zSpnrXtBDZA|z{+xT$V)0MYjGQv4OBw6<X0WE%9l59^(nlBN#
z&iLML_ovs+13ppsTU(*Zsva<3T=Jb8AA}Ap{m{Z7@_X$I087TSR?r@S)u5KdCN7ZF
z&K75nq+WFMXk+GPi=pwZihh!_GWi#j4JVX?>@?r}-e=!aM{hg}H7_n~4Q;QG&>zb-
z*<J`dG%Z>++uY)4NO08o8Vl`}ecAMkZXk!QvE7<c0nY*O_A(xhnb#O~aP;UYGEnwZ
zGZ{&|%a7crcnO4Ps?smpffUcUA^<es>)H?S={n!;LSJ)^0VAcb#HYFPaWS!-+RjTF
zcqx%1{vGT&z#O^naFfOP6>0+9kW(eY`J;VKf9_L%0`lHJgpV5a+-&l+O&P__<@=53
zqX%WLIj&oweJq{7UDx+}^FE-X;UnJsJK0xW9Y%ka4cfqW;1CpVuASVw?S+;!Bd--G
z<?KL{%Sv{GK6eQNybN9!h6xB+i4*0Yu~CqGWsfKa=KbkvEdK!w&vH=M0UQUvTym+r
zMwZ~gwhkm=90*_=AE4D~zAngeeWhP-gRUy(IS&g@U9fxis<$b=PyMVdms_{H=IvO6
z(bz=&Ximl+ez93L^5m^*n+<%b{kDIXSZxQJiPfIjB~-goLtwO2=X7nDzmE`t1!xtS
z2<0+AQqoxb3S=cp6gnHC^Z=~RQBuuUl&Z>S3w)G@aBYmErvtrUlU-!8^^)Bcz24;S
zrEySmkVIK%&|d-yA>w7vn;eywdphcu3U{z`cN*s!XFq!7JBiy*TDL1*q{Nr|GkAYq
z7>oU`ftRY%8%OUnXW!m;@J>wR5bfPWwKEoMEOQ6PehT^hegrRU-FIq=D00S}T)o+S
zY0M%R28`A7KD-wg$LyA0W7XTtOktZodby8vs8(+6{pr#+RiK?Q$F=8K@yU`*dy1HV
z=^+?1-YvcEi&`_)FKqmnq`DEpe$UjCuJoXD=B&!q>9`tdq$H{|TKJtpM;j&NT7`C^
zY<BunO?THP?IsxkUV0)OZLy`Mw=3y{om3z9pLB7VArW}Vg!&^?x%`CJ<O*%{0cXT{
z#)~!Cp3Ho~0s&-WyQ(6UCT=-S{<Bx9&vgG-F|bq^H+LM12fzWE6Qh=s{Is*x$9foj
zVjt%|ZT$J5EAQoD5gJ43%59W(n@$mVC+rGq);^oJoPD@!`D@B@1DF}=`r^&|g#muT
zm9wU1&-8Z7z_eLUyI+d&Uyi5DkTfn`OCy_2y`fu2I!6T2Pp`4XD>XiWSGxU>EK4!R
zE<NFYHk){{a_%F~io8WEjOyQ7Y<&pSz}R@(8!&8q)YSOeQM~TYtskg1I!iUg$6{Vt
zBAJ=&S#Q|dbd42lv(%CK9w7ZyL4N*;*D&A3Al)Oi`IWeTAS<f6_MwYI@?{vHD14N3
z^mJ{A>(AlO6nT$_?#Q8-YL8J*i?0*HE4(I8EX20T1?SmlDlNzp`0W+r<5$Ck>s}W5
zYVS^nBB*V;I*iyC6X!y}qS~ap0JE-#1PP}ee-@*DyV#Yu@D{nHE>e&DLSK0?khs`3
zJg5*uy69!7>La<lm+PJJmRnX!tY$z{OOd(dT;k!@tQjB5z^vafSu=4WiUXYg%zcOU
z9Kq?TH%FV9l3J!M@$HFsapGvH8kbYbkX^bSsc-%c8_#fKR--Fa#;|GH&(gDmWo)2>
zEZU8AwgYAqL=`Ui%hjf}M040Nm8x;Q(P6lUT1d2xM{VagPKIMv`CA~b_l(P-<}lld
z;@MgvYi#-R#VB&)!d>f6;I2TVVM++qo2a|4oyhH$k?Xv|;rTLau@Vo*`$<=d!)ky8
zKz_Kb+hM*|ky63OW^*{RmP3?rvN)SanxU%r+_;8wikF3vqJvuRjEMV2Uau>2e*WBy
zTv^PWc&FXAQChL!z0FG7VfV*^MFNV6&Tcm{mVkU~0EDS0FWw`|B$3PZVz(C*1i`?5
z>QG@5jGo3Crtnzq;N@n!S=#MkQ2!-6vlF>YXQ4x@@7#@-#KZOz(SYTW@pcDHi4pIV
z>h~(96y-P_sL69;5EatYW2v()eSmu)W6ZBIv{~5HeNB26U!{wwycDo-Dr^Q?I{>G~
zk7CwPSukk(%5j*eG8paDsMysNche|L9X%c^1BG%WKcDyaNb{^GrCzmaasCV21;YY7
z-q*6gL(#1*#Q`mS^ccIFh6HBmN=bTC;}tT9L1zEE!Tg85H|b{R+YDYoZ#x(B8dmFN
zSe#4&S^n^TB?84Dql(YbU83kuN{=Xe%|J#i%WEv|{_|x`WM>4J`-3BFgKhVuBg||{
z5{tkgTsc3LN7Q2{Tqa25wd!)4XxMVHZ=UB9WsYmR8h`WVQFX{Va!k8ou1)vCb$MS?
z@g7cFaq7L(9&U+()hj^If1aNw?|^Rf<X9tjebnsb&K!HE+iuE0{u~j74FgQ^h3$`O
zvWG9X$M^(C4AanRU(sMyuS0|Vg?ZOO5y$AibZXN*dwPp`6hE)hTIz&LaA0ZVX=&2*
zlOhFH2l>|1=Jo1UIgGi#3s81=g@^e*<6OVyVAEcMKkY6u>c88~mg$Ofd=0W?ENm8r
zM><U}E%U>|IxpCcxQ>#zkDht(yqP}x3p<+eu|}!@MaAH??pLv*FklQ({E{!;J#H5J
zlJ1HMU(nV^7uwZHK!9+kO%p=F<4PSczyY4*mrl2N+&NBx0_DEKjZVx(_vV055uiCz
zD^-+u^mWuPE|wJ5E%$*R;rDtHj`q79Q~&C$Xq+8LP^VH1h1DvYGX<pb`x#!ipD(bx
z!-t@~q@K=d=||V{e4j?{|ELWpt<vZ$t3ejho4**6{C<_ssM_p<W9A_n;AA7c`x$Dp
z{i-~9)-wXA)=)6jU-Cfb2S&EGFA{PjQ`9FJ>EV2Te$|-MJ_QXtPBZ10;^cQMSolbP
z!FFN(;U3W-*syjeM}6ZG{O*y_J6U6Uslg2Wq79tZ02$sq`~Bq((IW71#t{W7$48BM
zC*?_-?(uxR+N-*-iQY=^%=bzWv&Lnvy17hFgi!_2B74(Qg$X;|SCe?#;~aKN75Rw^
zQZfe4l5W32zeeZ+r8lODW|gwtTZ#@SV6m)uFccys_?AS&`lSvgS+IMYoIfMnMw#=|
zUaIhddY9b;drysYh3SbHu5T~lSYpYTfUcsISIdtp+gcfiP3i=!P++zyz3rdst+EuS
zGY6>BBwMckiMZSBhMgXMAtfI3cdc>B=MO#afl9;sC}8gt&-uL(uM)7naNQi;GU4A(
zjLbmkl{jk&DK+D~rA>xp_q@W~<ih|W_6wte1Gij&g(s^VlMyP1u$0&JYOTa!$8e{-
zXRlT=ZyfH3J*cU&B20tHK$qjvW1oR{)I)uqN+-x#l0Y8(<oS1_Z@j1c?_WNa@l$I4
z1&Lj+2qb0fhta0CTpn%gAj)}KnI|Qo3m#bogT&aOksl`5BmbiP4=sQ<`Vnc=L+A@c
z+a|_uU^TFK(cw;*vfO(07R7D&-Ul^I4d&>HhFZ&oVWV0u5oCS?)N;j!!xut9Er}lj
zLX^HX-Zn99Jm9Lk++5@BH)Mvt`Sw?)*0ua!%hVX>1T$_sPH0pz7&_I#61+ZMpR9hM
zF+eySUCq1Ud~KL!-O$i<w06a}shcXq7bRDyEQjl~)dmPQi*<u~7@p>X|EjEcb#gSO
zy*AGI#a40(V^`(=wdaoTZDUkpVF6+|M{)|J)p@a?HQ8#7HkCd!HoN+bpl5>>Mw0wW
zQo<|(8+dS!r0+L+pRc72uTOr%s8ouruf(Z_N61CZfzg%N8kl{A0nRndPc5ZaFB*77
z76`8O!N3g~e=>f-p!|7+;d3bT+qah;M&uO2{v{AB;h5@@Dx7gT41|JnvvxNvLl-W&
z@^@wio~cW4G2IvKyxn=rv?tn~To_vz_uBaz=Isjgo6k{3gE6Kb;K1zNAK6~ZxH?|t
zd;VujDkD*(dj1|jEnfAh8iN$2)cNWwowH1d1SPm@9x<$$S2PDkRn=Bs1q;d{S=?0M
z86TGVL(}Luso_6JUL@Mpa<78$y#2g{+E`?eu|jQmPJI2**I&zyzhE);@1%Vv$b*kg
zLQ?QwJl$G+jqBuItS3YtB}c0wR{@{c$3tujKfz4iYuqh^5n0%@U&E+x;$2pHvH&Jk
z)#ZyR^GD9a5*PUohJbEW+69@1+s%b&yPzl1U;CX{Yewu}6xbP<`F~!JdYqrg+5}}t
zxM$+CdG0;kA<@#%M%$>!Z81oOXMSXQNly&e?o9>9QUx9)Q)aCDW9D;%F@4N;gu#I1
z@Qh}cudUB-!O<74j&6di1qsw-7)=3^2Yt)}DY)R%_uqAOFgNdG01@9@a}Bp>Rg+_`
zkiBd3FO8_Fy7dGPMXN6#T}%V7-4DA+g|$7HnSm)JJf)`^gU=-7%VR`df7RXrn@k0h
zEKa%;j4!Nj(KPN(#-PekL_yV)E~g6uq(=-F!(P56-j_R>kF%y&w;XFlGUw=Jt5X+~
z_t<oPxhcyLt11Pl^<SMIRy3r)`DAev&h!~)TnZy5Z0`i%24v=6$9e?G?4cgIttE|4
zNHr---7DS`Uw`PzXg8ec&=dXGh({0E=06{+;W+QyscAb?YctUy)P*m5Iio$a@g?V-
zVZ%F{Od)#`a^mF)xHme>?D_(V0tE45D!0_mapXLxeHMiEmZpd6-|8s)tr)dBFHMaM
z?<!N8SpwsGIeq$o0qqu#fYF7gzE@|swiid6m0k;)*ZNj>JD93IvzqDU7vk@&nqwuJ
z4tenJ(Nr#WIU`_AyWQkh7a0}M#aU?-^0uv{gnp`YEP`RQgQbIaso4z)9`|~?M1Bvr
z{Fj(ycQ2*dINQ~oC#bznLN|#<K!a2nWY+9jY*Gj^KL%H^F9|6qYj2Wb0Ha%luP^hq
zYoo#2v(+yR^7ib9yeGupTUGk=_?kTb3=ru`+_xsZ!2#|Z?eTz-_0rxc9Twn>yI`jB
znK`!I_*l@67TanQzn#Vr0(9y-E4#zZV1PWkM~FEYrJv;McaQFo<(a^?E%YjkZA!GV
zQ1j`N^J79b|GCnCF8DuRf@c-XJMX~Cj<8QZS~m{Xkdu>E$Kp{zz@22r`1>VYQ)EUc
zDP?{(=q0XGLvXE(BJo=}9BxB+AGZ;#{$7eIq~Je3`p<9tzrIxG9}A6tvni7x3<Vxw
zKXQ9)@?coRcYQOSXIy&arM{2HXgL0{hX2=J{J)D%j+Q$_4G#k?RZ~~EJFz_AH!<A(
zOPF4c5*swUOA*X(^*R3LV@fjI_MaE}Klvvy)WId1S)kfE+Y(Tn?J))pD|`a-4)KB$
z!<{fVg-bs@%#25<Y^uD{H{;*G2r{M5_DLnSz_0<~t%@nQ`813KH~`#>+3q}*w9@y4
zMT!82afFd{xzup&zjGZz?=Y*k8#hX_#<^;#$xA|^&llb|>_y3WU^+X&-u{}h?T#X!
zAsr+8dzb&`rui>h|G)p^JDOmCKA5FfA@Wt!@dYb`x>wTMKh3~OlViRYbVG(}i!}yg
ztBC*Wv-IEp;J+^99bGVi=xks8yP0n&`qzrufG;JuSJuyo5knljHkg*x4WTT9jP)3t
z8`}OikHG)u)s&9m{O+i?8BDbeArL7YJLgUoXN8k1sG_+rqU6+Y%0YEK+@RX78~<0j
zQUvAy<}>h85U2iaO^yApf-rkTk=n4-XNp&EI*fQeR>bLIJ|V>@)2|TGNaJyL)Y7j4
zEu=?P+PwLP)A^qm3NV{_4)aeSSPZ#D#E8uI2{}xD$XWlQ`xr1;as2oP-~$ZA_l$FR
zjoOCF&rXa&u*As!9g_iz3Lan%!h)i<s+>gT%{zV2Fd<x8RyZqT;S_M2KR+ijsId$K
z+287w8`|qt8QSQ9G@QZZSYoUl6FBpkrT^A0mcwLd6t1C|&jbxRXl4lu4rf)^O@bHa
zg`j~1Cdqq~KfwlrU;fSe^S4KlyDtwscmzdE4OIWtGyYE;#^2u)`T)cf|GS+3>!ttI
zfd6Zqf3?TIzWZP6{Hs0w_1*tk=U?sdukZf<Zk?Az!KgWh_l6%F945ha!Jx5vwI6#R
z3?Wc!Px+N)Gw1-}SGU~hRLfHAa(9RjGk?C;W3Ke$f&JsSkjqi}-0w3yj4iosBQm@8
zmt@sj!2dUg+0WL-3~p_9o292f+UpO4nr%0>Ic(42Q$v|4T$|S7LazX?{Ii;P+C1bK
znCzXE1whS3DhwUpWr`Rf$-R!ht=R&{GHT`ju=SQfafRKo@C@#fV8JB`uEE_QxVr`m
z?(P!YHE0MfgF6fsg1Zyk-8J~#x#!%f^Pcak=hqZf!_<}~-MxA#3bGpd-KS`G=slK%
zuDpq)Uy&m7H4=Qhep~mYx2acRfS}Ct>Sk0!w}}Io2k`AnX8-RW_CKm<c7%VSpTJ6c
zxa7YwQGB@Ym96e~4JrFHkIs+w48YQn5ACz>yD}OnCxo#l{K^A0Ab7I>)neotP)<P1
ztm_6}EYf3mNsKet*JwJ?tmg=(f7_L8(3svt7MdSiBb!e;Q;n4MUiD`8c`ojitnMzD
zJZ5COEl&QcFtni_3HJcqGz$4sH+sI|{yk3UrP&c?dO${=kANk&^Pj8r?j)-Tk@kUg
zQM0_wYn{36>vZc)kvV{kaI_sy{jq^w%$fHN?G|}np^t<TY5&SR$xCH?ob!1+ahmpN
z-`UOV{gLsft~fot&O8$y6|Z$<u-@upQ-+nk7^rqBj11bTP}{I_%SU%$n@wJY`M>L!
zLwpz+k8;DC!j}L3O9=~1CUIM^w*3)0eU_EuV8w$?y7u37=q8Lc&HpV<<|uQYQ#s-P
zU!h{OLKPs<r16+z$N6F)B<nJ)Esb(-n?wGKRbdWN{X0?flq1TZxlUQf$GT=xa<`8t
zEFCbc`hbzMzX-(?WYIJLw#1HnO3JtPnmWg7zDXsL-y2(FRTOxRzCTd(pFBrtj+Lo@
zc{oasC2_A?aO2QzTAAJb;#=o+gHqRxkQ!&5Zda~Z)i|H={iA$l21jF+PK{5@&H-nW
zc+1Z2w4y~useOmdY7WnE;)X_L{+oT1d0d#P_6L;;Z8y~6@It^7?v&7AZtef4!q}!z
zV%s?Bg1zPHeA*cw(a^O`NmKd@z!7#eGUb^)!w<T^b23K(^YBtBc78MIiWfMF=*l8L
zXWgoB8Rk9BY@gGvkW=yRiU&SK1>EZ1G@Y{VMGBjU2=9@^6c!QL^JLmCFWRi$IZZ=t
z`_-_jA={tr9l_7-DL*=F@%W#->kc#f%ua0gC#**V0Z$~6D}YWJ^(XTg7^%f8Y+Uo>
zlN~#-@w(>zZ8P0y3%9a8s5&z4e?cz`Ro0Bcra|A|jud)Xy*`|shUhd5Ejt}KTwM-V
zeFs>&);E_-qv@Zdjyl30Zl6&^GC8cRcwLXb#&YL1{qeaX8F_*q9s$G-tVA|nk?rIe
zx<?aNG^(_BRBRVb1*T^bSAh?<sm!`29r}~MZ94uun7^c*Wg@>N`}E0tq<XtKt6_+s
zCq-ggE_j9u&cMfbh<DVf>2-Y7HQ=){!v-bs253<En=Xbp&Zi*hF>)ROY~0V1a3WZP
zJQm>3ltFKBkQ1Hpu+@Zd-sWzTE3*-A%&tkD+>DL(Ek(IpIDX=rUYS<?G_9|Hqp4oA
zw{`QdyBP}m|2@b*VEtfMQyC1_agRSX*$UhLLayT=mL?!(S+oD;fl-8y90jXw$Q*u5
zA~+eTF|9YGo;fwL<4!I#=2y!VZ&eh#5wOuEFarK$x6*^Tw%ocQOt}%D?fyOy(X90y
z7NUwdsztS~kW7wXro1nN0c%uVgP@k|-G;m{<(qT)I3)MSDNEj_X1*2vt0wuj&u0@o
znD}|)#fs`&oW2kE*B5^y8oAz)=KPS1Ay#N{+ELrXB;l1qC*o*iw8r>ohhaLLnu6!|
zDQ?;(w7ETDIE{Ha@x$=f-vg6&!^=n1IA7%@Y^jDa@4$5GwP?7EIvJ{IMMeIKq(!ex
zdb!E8s;Z%A>9Y>5&x@`pZal7w>{izgXPuw2POlMQx7k$3h%qN{5lHOTI?@5=SWXIq
zO!;`W%CYK-k9MsS4E?ZEY<)WF(DlC#xurvweb>^hZNdTUV#Ap*;Og4Wh+k_lEcwHa
zSDQ8;ZGSXXVmEg~80ygF(|PgB&3O`TERdms+c#D#3wk{ZT7|L<WN{KZ^aNH{`?zcm
zD7Sh}7j!%JP<CQuIu0|trT_YO7caWNb*JHoMVYdF$cTx~rcDg!{VKH+kVCIGpOJO>
zY9&4DQk!x*op;c(vzJ2c)?gD>SAFtv8*KjQ1zHZJl$-VorkRXpc1n(Bauj0ny8Z+Z
zpth{2DzbN<%(uU4m+k|6e$6U;fxmp3pa7uCzJE`$1Bh=KuE+T7r&JXMMJ%U7dG9ka
zuI$YR;#cpzCpSOLbiR`B*(>sari@9PUY`7OB0r=%14}K|rEL<Fmm&op*#++O-pOR{
z`n9?V1m*AP?>yt+{5oR<HI)&&eaAw_aCO{VyvaQDkHoR0MNjK=x<~STeU^-Ey{n_M
z2H8iVe}0JrF8jTdjorlmy69aF<de?iMqRo!n;!&Lp*`4=s)Fg;dC})u-NS?aug_@+
z7=)X6rhA26_0u0@`1@CFX!ke2Mb#hetxS%!@tw05>qw_DsnMo=QSAm+d-DR5S=6>|
zj(~a2V#ASz347yCEYE%f>=zFiy0x<oU;pWgt$u+OHXdSQIuaC|%+9CF^8Q-no%c9@
zm^&82Nxe$QcSh2a&Mx4d&$r^PPnvZ1uMa*U=Vf9@5%}_WhaSo<-K{FJAcP5jPx?j$
zy_bmqpQo~!$#~uV$y3V{cT8#BzCM^fj(MiCeYstNyL$OMWUtC(>0q=T;Fl#@9F(YA
zrdA=6#-uMp$b}c@o-otLNKb#(DTKK*ewItGSy`s0F?Y4=e$E5R(Ja-Ah{W~Qka%8z
z-s|dg+6BW<c(mz!yWA-e?Y&H<cDLglwB{_x6x+tNPo@w<C>ywuNum2}xe(rd^JrV|
zb))mEb(~1xRtvjQH!za_0qOZ_9IVsi7n~?zw-#f*S>b2%LlLc3&*qA}6v7vxDB1Bw
zVR>oElva#JwPGWg&4PlO3KGyzvTv6F;vU10<{(4;S++sp;*WrkbiPr}bv98*B)(U<
zT7;RZr=I(^d-!L&?(2)h9=>}4AD0QUtp#8zSn6Iy>T<Kl;e^Nun_KwXxtEqF*a+jv
zIUa*7BKkNa6EG`Aoh{Q2zIBcq1muLg_Z#D5=Nn=ratA8cdq4aq%jGj4RXMto^*d~^
z%|<g)LeYsn8;)n=mp>Eodw`6`Ryv*$y@2qe)vh6G%dcLBmBH-@&3LWSYZ2WU(!4D#
zXQNK3Qu>BP!Bm=rA?f`TL3!;HQJYMECx(OV7{#Q=-D4?7g#;3Pl6qJ;nzt|co@{x~
z<+3A9<$d$uiqQE@sqeAY`FFc1B<&%}^^!=d>NfMs55E|rOV#Te|Cg3|iH{>m)Lh@3
z>-)pQGtr<+yBCR8$6wn0ok$(r&t6hQ@|1=9rL^5f62DO`dHzJTVg9RKhcDd;Rm*p_
z7@w^2rt}P{J*`B{5etn$t%fuSdh`BJ1KD3bLC#W&y}9<jgu$v7`-#R0s(i;F<rjbT
zuK9ed_q*PT+vq=zgQ6q(9LRosQ&mymvq^unxxLig&;92O&S)|Y>)ET~$fer6W8pwT
zj-!YAuHTyvnefipwqCI4Jg5lOSE4soGi~meaU3;9hBaSOkhjhfWOob3z@BHmp6+jZ
z?xN~Z)XSh<AhkxkW(tM^W3(HocZWr#0hm-bG9E8aF4>RwTX903HpTw0f@%@y%}Nu0
zCO3M*O3li-wpKoAD+&Q7S=p9bMWb#j@;Lp8ZyezIUSFQQ>MS_D&6XzmVlwx8##R=h
z9versou#>z>i0h-X9%nscL7V}3y3+FKs?pvH%_f*9gk`!b}Qa=!m<JK=~nJM@yUIR
zZDG7lzm?#Fg20u(ugs1kznh3`f`s{h_zR|>goH_1W9LS#`aVov?$GCF_XJ)Oo9#x8
z3sD8^KwNH*wXNo$DNC%^JqjeHBCwCHE1Mr=OAR{%=RVHb>sjwcAK(xY;$BFg{G#1&
zFlXHF3Ji9lF=&jCNR6`HeV^ir_}6s1e8ErmjpE}^3B$sAMeXQ1evPuPlM6usdTrhe
z?C8q#kw35HPLmV%Y+f{eI0eS#G0ji!AC76e?DR9&Q*|%(>Nu~os>3-{wyEU-uBXyT
zAN?R*dd-)ZLQm2aYrf-uki|K5YkX>S+^-K;=1=rCAVzgmSI@B|d<PXxYYnss=a?c=
zNctO6CVi75>2)RzJ)n1UmFh`vK6M6l=TiUh$O6WDb2Ba_n!W|C*{?uc7;x#;^P}*Y
z5%P(UThSxlM<|#Nr+$kR&<z?&tq=#YM^RF-LapC1Ot8IbZHJ)15kk0#X##Hp*4!HP
z9_#T#LzK_c$HL+G1SivRi9Md)gCg|ucQ*F|*~Y^7NL$i2`?%tMTIZvpgzR5STJc_x
zgz+AK_*~Lb<VW)jB~T$!H1K{M`5tH4H=;e3N3Y4CT&k0exO^;J$)H=AcLli~_UsxR
z>y1h)`BGRmR<~M-=t)$2G*deLb*F50%nR9!TB%DHplt~F)7kpQ?8foD1!*AhdltS`
zK~o--c5ved?=Vh54-tEt)@VU-whxEH=|eov+k^h48n%x&MmBfd_4fbq));Ze*K=c)
z2Q(Sg%HVzMp!)>X*Ig9j3Fz~>J>055VXl8v?M2zi-U*t;w+LR0We(t??eM(9JDjLV
zdSch@0XGrH-wATA>9<88KDJJgR>Fh+@Kr1=>T8h5A_X-0`FbnQmZ>kCI)+6GX%013
zfe^;CE_eU{dES#WGW7MOt;>>s%AtM)&4w?6J!rWZTjb3Budt^ZA8P+aEEp=m23<@x
zXWf1Jqj=lbjLuF@8(2^i9*%VL5)xYE3PvCnatu10u_W&unG1zo>Uh=gwFlBi9;rb4
zFe0b?cQHal1J4%Z_M5pQl)o^Ts|zgAU(?#C-O$%hay&+A{E}E4d~RmthO+6?TJg3~
z#m7doc#_^0M853_i!0zUY?G`AOmN=dy5fFg8{6h;Ke5pxMZ-n(49*30uWOcTtbA48
zL_j|-28q)IU#xErCJm9NGU{>`Lrj`FXq9q7@{cx=)9EN<Xb#~+z0dva0r8b+!fl-|
zC}YcIgf|z8Uy^owpcMg85zw54c@oJEl)t#rPPj>7=0D|P1V6~6FJ84HyTvrElotak
zd{s{dL)%OL%DuCoom2619S1x5R^J`S(LMRo;qpCfnPC-^l%o^8i}W;e=hK@8&pQ%)
zY6kjsbhAPd?mYGN0qu?f4}d(`ZqzN8rEvYwrvT9%%i<~Tas_-=c98Tm3+TbNtkmQ;
zJHUo|*fQo6Hgl+=F+Q^%h=w)Nf%s~jG<I{_A%ylEEicq~Rjj@V75_z5xg^gDu7mpS
z@^0;w<^_)~ghoH%NmPjC?7oM2CeV52Ph0MXgLkLYz^JRs?J`fR>nAqcqO7a>-e-eW
z7i9^gE448%yPm!ncBgGArZ8|`mf(qM+TB=T*9w`3#rbK#dRB-a=(o9R$nT5tC&82D
zmMEDNAA=RHJWGIY%@iTg<f)w)cGs1A$kgMhQ!bq{;~vsA_OqCBGHpuEY7gOVu#^d1
zTFuLRQZU{Z&6wT}L9)koIbbX1Xm?98tEYE)S|F?6SsEoC<T77NX3oO9??#cE0^3hi
zaQGeI;!=!Ojv9ehAqsU<%xy;p{p(o<=_JnIpy1U4V!+gSsowT%TB~e6YSh;dY=8e}
zun8cs8MZVFsDYKV_c5XxKLB?1=5SW_K>Ycn91Oi5W_=w>V^qzcO2*Jg*&Is$16qCZ
zmMp3VI*|W3?id7JL{~_C*(!y@p4)iILYZ6@TP&x_lZRhaJ*!|>*AGxI6@JR4vy~-_
zoz=pqMDyiK#r@Q->rA9Hx8^n)1}jhe-fgpX-!L-NTuidQIbDfMWi+G^(r=7_KQE#`
z%Pl#XtmCRM?40yu20?*es9)&QEdsO?jbEU&ztGkhFDKu>?^<fg<e~}2rldqC;SI_q
z$MZT5MARDO&S`I}D--j5L_eop$(re$Z$vnEs}i{Q?cRxSp87XOTlDzCx~g5KV$D<5
z)%Ixa?4aF^Bx~ij4xAHW*KPQmMuivS9?vmAD`l;E<frg9`oFHx;gUq3=En8=7N}U8
zkX^ppW~W#I0ZxJMtQPh^SXi-&zs=yda?Tl6p$*ph<CLP8hbDJ#N-6O2*QBgeIlph>
zm^pt=Fg!X&Fc`}f4<WO;==aCrUQT~;1I6Pb3@XFk+ss6dMNG!Y3>ExH7*_EcJ+bD}
zU<Z{}v3s7frI6Nld66xD%6T`SbY!?2jAiXd{!GR6x<YQMpQ?K%Y<-)|@?mf(V%YP}
zP{7svr(3LaqP(%j`hl0<QIA3Pf9foX3uQZ$XWJ$860Pg4=TkGF*LhFuOWw(_ZEnwU
z_R#y-;gzs&JNZ0@5)zwEJny#2Ko)|Uc`os~^39__m7Oh<MknzNRY<aQ+SEvxXmW>s
zUi(LgwC&#?(I#>qx7N`7Rr^nsS|?`E!c8WYZlbOq&pIcX*6fU_zo}Zuf!5`u*V0T_
z|3p5mBcF%fQb=j||7<)dbn%?l58*2KYB$k!S2LjBX~UOGg430G;|2UD2(d{NE`1rB
zXn3%-Xw>>X`gtmkvpFG`T^3B6afgExz>^n#L(O+lI~~%FBkIabq3V9N1=)A+6kGo9
zc9GnV8;fNfos?HgxDWnd9wqgc9$wkhYqwbF<kNjZBri{qy`j|;WrO`0p#+_l?_?F#
zV-Cn(rEdc%pV?wuX{djt&HtxHl@uXl8`>c;^z-;nUCWK%^ze`%UK!A9NLh13gae(H
zmpI)|myajCx-FrX8iE9SWL_n?Y<<~+z8`g*l@<lh*J0t}v{-*j(3|oEc>AvhJ{~N$
zT=^C9fl9Vvyi<SWGgBl&?;f~tm!4;;a3S`Rr(zEnn0pz-B5>owG956h>mRbX>;)A*
zICSmZ{q|yX?`)Uw5F1jzehX(tfzv7U3SDY!;USLrz`!7vef7aM66ntWtDH+z0z`7#
z)8!WaSbX413K;z#bM07SU*5y74@_qT8Eu9*Mw)<xVBu^(jKE4WMqJpgy*$qpd{(ti
z$bC}iuiX5O2y>rm#4aY@BNm47IEx?F^Lj^&4=SPb_X~@Z2`NDnb%gg2!zlz_b<d}{
z0>uYTrrkfndm`6w?@~CdIdj}!Z>^6LywNbnt8yYZWP-Dr>?SqCsN^mt(*`K#9wIK>
zRS25+FZ5NiJY_BEoJWLSiO*-UPIwB)#I{4P_DnR*lkTPsJqfcz^^k)C890$9r${{u
zs+a1|w%%O_;Ea=7qg3Byp<r$aY^S!~5S9)&Oi2x_TF*h0l$Rjm=Qs1ZQ%4m#C3&Dp
zuw3zU6f<WY##xhU804tVo~uf8tC3G^eUXD+U7QReMyFm`$whSZSVKG9>$PWc07F@I
zWF4s0np~&-tkbRK{{H>_kY^I~?f$}^L&!yw*DrYKvZf<DGPd`5q9g)dBl_4){S-?S
zh41pD9>h*f+5H!h%>S6uitcy3jux0w{1oJRG$>RmQy!3I=eDaD>Q6WTpAdGub^OLO
z;+cNB99hjrGQlcN+W&wvv%NF_6;Q^Exvknhb8^@|L_WlnOxRzxx~wi&C2tjztfRx@
zGwbB$`F?4i-}h(cS#oNEMN}B5&1K5w!=6j=e{M)aKqDUEEk7ovJtjO#Vw$2(qNcMT
zP3~DVr-m)?`5^8t2FG$eNCtz2`4nh#ZqRn8o_qtq5#=pbBT`he_5;Or=KiIWQ$HE{
z{3o(_oGlM(cMeH`t%Fs0)!J2zcTrnCp)m!9cgHn&%AKr2uunmr=Sah#e-jJ>H`_^S
z6*{=C27hti!RO#~+7N99$CrEG?icM^iwjGTJPElS6L8pQ{ji#a{48@jU5=SL=S7<r
z1F|%?EzO*BJNrcI3di{flYZ-O5S^q_3kB$yKAE}r@50M7rW&pIb<g*Tw|$X8@TetX
zDRk-unueBndAsdPy8`W6^}g2|l;h7o8PbG9;m+de>`#|HlcVR6V+?J!qd9NvGTmhQ
z!#H|?C4;yX6$Kt3tmR+dP;2wu)p@=6Lpbg4GpDD*l*Wh;Xp&upfVjDSqr1HT{6bt_
z*9XesP|f>$J>zyexD+43ET^4jQKC8K{O8y8%t*MKKD;V%zjFkSo*R5-ZJFl>^ys;i
z-yn}^pwI+4@K3N$dS!Mm-obhFG&Oo&nbT?47R(R39xo(FMiXo_WHktj!a(6Er+?q-
zU^!cT{Yn#e@G_|VYfl(tk0E9Bz|~R&M9Ph~$Gk5KYA~K3_xk}4H01=XimUkRNxLW>
zlt#(|^4qlYEb>k&y3&;GRf@X5R!u0^9ToGOo#=>Y|KlX0Ai^L(d+}j|el|<4nSmMa
z0>6o@c%koD)K}14T)&;dFEHJoZ))P@a9GFEsrQI5kUL59>40NC4wX!O_uC9lf;nGv
z3cqa*$=<6)0(H-s@JE)Ns&c*UQU)Ps$yqcUV)uPlcQCvCD$I?cz3lDLY=s!GW3NcY
z>^-TubVWE4dN3kp(ibM(^V~t%m=q_JAxkVg8t>aDg`Uv3@FHUS$-H;%-3ZJC-7=|k
z#Y0E_Sl_-5Zc2kFDfPRr2-Ir6z!Oe%#x44n4wkc<o`Vo*cho@`<xP5-oC$Xr=OI{A
z#5U$t;sR44Sv`2AiMdbTRFshJYNEQOf)UVT%#+35(R>X<dp9tYM_fk6jR2Yh7F;Ww
zEV@Ulu9H=sL_p5ki)(8f6*|(tHv(7Y3=hFNo(~kq)ulU2mxB9UUFA!cgLjaswe9^a
zA0aP;%)4Ot{niHh*(Mj@j+ZId#i|@1-T~IjqC-QGu35~6KiOQ5CvpzwtB!n_l{C5t
z!Z67k3E_TM$6c)o+wAWp_M#?l>=PFgmFiS{ENj71VHOdI{>D9(vYwNBF7YrQ$p5my
zn0v9Z>HQD28u}iMpo}TGH7@i+#Bk*MjuX0l02j?Hy&A)roONhpE)p5fA(c+6ON*@T
z#d8k|vG$~u4#aJc5SNL7R{q9CH)jfK267)nxED*xBV$+x2EhsU&Kr(vJd*Ib<T0+<
zsy{ybP^VA3$chi_-{fGT6>Rcr`uq+D(CPK(tj(7)#<eLmB6m0csnAvA+<p2OHlsl{
z%zD>oGnr*IQ&PEVjnnlALw@(TOcuT5wteQk+N8)_rc#*5hU9uWB|rK>+8I`-*`bE5
zmLgJiD47;85Oast9Ay@p{GAI$ClT+B6e#adOzv$CIP+Y*X69~RpKqM?&9<0)3B4(w
z6@cist$wfyV`nhJ;i#-w64r0KiC6U-2bLj!FW<(BW)^y`7kl>^90YEERv>bPT!oP-
zt+Y0z1h(tl4~<zLj2D;<a{*1QGKx)<Utm0`H9=g@X&>6a8xMO@BdXj1dX^E_?E!@z
z9!A9N;D2PFf&Z569!JuU!oTz+fSQh9VMIG~;oeaj%jK(W?qA?wT#QZPOxYJeAr{u=
zLaU^$PS{Ow^M+{bh86ql`fkmB3&&xl;Jb5qTrmKwunTBHn-8h_5XH$4#xLzZqz1DJ
z!qAvoAnmVKpc-dMy(>`p1wD!&Z!$HXIGL+hDiP~fn2bDJXD^8BcgF~-C7TQsCgQTo
z13+YD;4a-QcE~b!5+nO~)LaZJ7%}JAUTpU6^AFE+Sj|k9m-r625@-suaheF}HbUsW
z(RH|j$RM;D%90?TU!RDh=o8)X=21f#@HL-fM~}jxq?z;QGj1$%B!NSkEMLJmk$0}Y
zeh;!|@406i?E`o}a~0$GBr1nq{<M+pRI#F>Iuu(<7^kbe)8vO<mCt?c4D{Zb&MR8H
zJj`dU>Xn>MIgfj`LRA;6KIF_Rlf8~M)2^$Tsu{@}Ncp!B0QqGEysp2bJG3O46v?H_
zs0u#IRh7-jih25?X-n<86pR7$2||`nA)o7qVf3bU!0v1r!|<CMQbYWTs$cJ=1w!5)
zB^=vHd5r9Yp@TUuyH=iAW6tuWoW#wLx(4sPE2pk2=DBO%gej?@OK3RWN4ZVTtlU;X
zP9(VE&KzjpB$2_GH_BSj1#tO3tz4cU#07ADwvKE;Y$a)HC~A8dTChYkm8`Eim@cBT
zAgEud(=^m+aZ0g5A+ICkFi>hG;I;zuw|n1Jv8UbW@dk{qxUP_-d16{JThBm_7&Ka4
zJ`=L~lw=s*ut$E!>?ZR$TJ7^=M>waMyNpMVx6HF^M=;&1zki+^JzT0egppvj>}R&H
zVB|w5oXN-Jb5-+Ye$k^%s~b*bQn{j6spGW2XuVqQ0zYg0P!cJ$nT_K^{aX{vYII$)
zalP!^o1&1XapEO7o9YMaqg8l_DmdG%1*1f+GOSUlvQp}uuoor?0r~wPRDk(L+APGC
z!l;>3YdQ=pz1A~({$q(SkY%#6!}!uCO2F`42i+u%*|4}=lM-l1QRW)V%=W4olBqS>
zQu#2abJlJhGN#Luzp1VjZF-)f@I^llA3c96R#b)S9Pg$~AX^5nRtpA9qXcA<AGrsa
zM4+FC3c}h%vl6)cJvX+RsIFOzI}-wm>WQCcD{b?|On{s<htp<ZT~)hX$p?0oeEObh
zT6!(G9Z$UN!HX61NZ6{DNqjEjJGJ}SEkrD-!x*)=$k9Zq{9e|D_ABh`i4Dig;o7ye
z_MK~&?$X^Ny}pZ<*7rJsfSqY=%$R{1H=O-X$QHVaoqp~5lysuz;I2;1aly&!)Mn1g
z*>-PyuftMmTB0M&Zu*%(1u}B?{o#s&qXAC4WjXuyn^tG2=*qZYroxZvC$#p5brIMs
zH}vzD&Q~U-V$3%2q?AJDKxow5OZwV>5`CW&V8O7f@ff3H6K{y*hQ71rUrLKFbt~!R
zlV}U~U_C6DNH~PMm_+kB++pU0jsE?T@c^IS?%^O~n2WYr@0hJ3{oF0HTqLi%KRYXk
zhpqHi)T5zjFGAxx=3f*KU6xntos=(WsSVSJB+30n`j6b^F&P0SEXlK#B=ET+{$?A&
zSK+x}!2>wO(QdS4M=2%onbM_+9bYg3`f3LGM!o?VxnRJ(@U!+iW^z%23s3==!lyj|
z_gohd+TDzio4^-zxjw6zNpI4c437Ug`O8zGI*vGvF}bASXvRIl4KY~U5Mcm04)XMi
z5}o3f*`OZLMtaGyA>~f6)Ti@2k4a@)88;h_KSTr>RVtewyegCGvw8rA%qRF3*nrk0
zOO$&MvM7&yZ?1{~RMb|1iviAI>GcI4IU^+**~^QOmU>AQf`cP=)`xDLLP;k48R&~<
z5*Rx$p^twXA<DLpwQAra^t++$qMlzFV;A#qDzjVAw4TE1GpqZl4?ZZDx@&2<s?#)g
zFnG)yvIZYL1K?vWIdNy%1t4P2<QTyp^3UQmZzOXxJ$!<dr|^TOEN&svVm4`&0$)!S
zT_?+I7n?O`y&7%qV}H|=eKVB<uh$EEc+`7w8(EA@_Fn?;JdePA1^WJ0s~=PRogSK%
z5(|Yo>aHCH>)~fpE}lwzu#z@F+4v2d`4afV7fHPeLSnk&=YvyhdGGngnV!rmBeRSx
z2E^N1+1dqQ>)^Ku2KbR!-b2+{$0H_19+(2SBAk#{g$!#USsGjRr79m%eqmh|(pYE1
zpPpXtPiAUV>YO+cSQ20}{)#;x({FQA2j8s({yaJSP-ODic=__T{k=g&K$Gw;y)U%;
zJEih8WZtmNPQdkGYQ>XVNgEd(>3rzVce8$loYV`P%c6jDW%({$796Tpw66d<$?mAK
z{k;lf`MJ(*6y=8GkS)}2b?q5|+i5M{&d{s3^2hCQslC<W^W`;5T$G~Yca&2`JbiKG
z{)N<shShbu=2Itq;{6C4Kv{`;Sxh<<wLxmF271{{3<7#7vrdyMol6DkT~{f&ZTbjq
zq-POSbm=@;(=Pu2D^Mji3{8j4AGV=DnK}5tXy31A?-0gemfu^ew}jeYE90|8tPpMk
zY(T!~H`2sBCS6~KY#!%En1_9M@*@z$REl6e6S_QOhE8SDLH%yDvZ9$kwP;@#M`fbZ
z(aiCP0f#Vgq%gCA`iEKdlD<*a@Vh%9%3G#<Yas;}!>;j9l=Dl2(%-GC-If|{+v?PT
zf(lyYVK4G`HH|@g7jk4PmDA1#(&R+oGs%X@CYL7mhO4)*CG$O-F79-in;91go3Ax<
z9vT*&z9Po;1Mu>Czh_C@UbG_*Q!(ye7$OcOutq~D9!IlvZBDfT%20)D1h47$wbjf4
zTxuc2Y!+h-@C2@V9;iyN#PbkgQv0VVK7@0FE&SJhClN1K0_Y^z{z1<!=6Vm~9AVwI
zsWST=R3rMMe9k7TtfUvh9Yr3Aa1+6uF!di~=8pkfkU|!wt@{OuLG6JD=yHn_twp+^
z?_;_35LtTC>4&b&=x2{x068@ciwokf#4nW9taD6m3O@es6S>yU@Z|fAt%PH0W8eI@
z?c9pN&;0%|)m?^zQn}J6wd=v?<WJ5hGD$(ISt?FL@mc-V;Y2R<t~$I<j6tcDOVXXk
ztE1!FA=P}6x}F-RAp7t1>l5rZ(}Pxi!3Jo#(h%^sH&pBBzJ?t(3994h<gKLN3{Dv<
zn}C#{$bSI`>+B|R^d`V|IF-?4ujvO4(z_!f`&jNt!WM7x4zT^p5c|HH4FrC&(ub(^
ziYxXA4y$1{T~vtq5ov@avU}iEx@i_J&)<2TDHe4do%cOx=r=`=PX7v&aNv`Ocs=~p
zUUS2}Q5G@32Z8Z2_OC41JtOxA*yLc<;r=asGxh}3^_j?M3^qL3wuN7%#L8x@^Sa2j
zm)4^?W&2GJEyAa|Rra_4tBGR!*F^o10Ef#<c4xjRKwV~S$zgaS8BHu7E)0T?#$Bd7
zi8HI#aYQH=!R9yqWhy$u9>1EV_)$@5h>f7oXruuK9g72@&(%GEyCv1e7Yr3SXbKXc
z!-}my;kgJE_XdT6k*)!+*U~TFF43ku#TaSGM|ud*cPOPV0#xBea{IsF3~_{5BCKO#
z9}~y2FyZ3Xz&|P_ZmcRJ%7pzf9NQ>CL#4$G3zhVO3+Y4niP>N^@9y=8U?n~illm2Z
zG8mX85iD+6D5UH^UVCkVnfmFAg{L@O<f}lhQCWn7J47p-$e<Sg3olm)D+e9q_QgmK
zsN5s{;I<yEkIfK`a0XED-h3lGB|#9Pk*^8&daM8*XY`pGI!gzJ4(Zj$g3D)^bA;ft
z$Q{|4Pru#oI`K1`3&dOyJ)F6JeVrQ_pS=sVe^lipWi~lufKH!5pHpEHH+d*Fr#x&g
z=uS3>|26~kjk?<ll*bAi^?Yo&3K}|Hrg$)Ikz1)RRKQk9)n1C70`HQYZya$clY_cy
z5g-QpLEOHp4KaxN8t}@n#Fg3>eV;O)(Q(MmZ@c)!=z9G3=M~##N*t`TI;`R+8hY%D
z4P1mG(Hces_tI?)0CARQX>?gXB5(hU%$b8`1j~u$rUgx7)SQ%{pgrm9=PU(DndX2o
zjgO_g;sE|_NwR3>o|u%>xr=DAhY!YRd)e~}ccJWaQlHi7ZyuVJcsH$G$s?^;d+^#~
ztr@*qeL^Z@1`n{NYoR(pfVeI1okU>A-WT#jH>^@5(sV@69KQQAT8_9c2EAF4Ew~}}
z@Cmvi((>=0H4$O{elmX2GV_sCAJJ^y`v*ln+#D+9OQL55Fc)y7?o$Vj)bZw`_kpY<
zO_h@m0-6ErO?h`Chg@^Ly+<$H;sLNlC_P&yT1R&k`R<)SiDFO@4nyDNO78(bd5Um-
zR(@#o^s*V1ULQ}jhes1{D3SRs&~RYvJN@39E6&nr-P4>vpDK+mUGl3GS19<eDdli)
zXYI7?4Sreab$Wc@#fwI{!E`#Q0FYtM$U0oHwy&_MB&TDu`AVG%Wl(G~K3QP6V$e1;
z+P{jNY{d=0Ec7?=Sd7gRe?H)A?KPn%b`d7xgeYH?WC!Yz4X=PV)u;qt0_C7CgIrc}
zA;g%77!=}mJrBq;)ygLLEwV#KwgE^S<o>3{dT(pl`*is+4OPbug?R#!PV)9YuYED0
zA7?HCgc8?`9g8?Q?{8hDaxZ5~5_)C`-y}>8Cs*wIpgr)CAyT*>VKe+*i21r9Erf((
zdK?@aU63bE^!-Q8OK-DI+z!UT{g;3`nAL~t)6cWzni3ozdb)oi<*qyJ3@O#kXOs<8
z9=?CAfmz+|a3p2JI3yKtljE6fU*7)UDlgs!859;`^&9@qY`Zx4)rqO2(Q+6w7l$YE
zuZw4n!e7CNx%MB7I`@}U3Ky&a>mV;@_@2+kGbx-7$8)6uF0T5?3=BIkf4+1iA!Wz6
z#Y@f*dBQ@CE5ehf$+_unEy5%WKLaTVc<e+7ZGdcl*^ac19vhuR?JongnaPnsD0`?Q
zdxgVl4ng%B<X|aedJ%lMY9fy>AIkmYO+B95l6fgnb<wXJv_#a>eC{u6Di3*2ULWlr
z_Va6GnCABwTBt2Cb@{2T>9M+qve@`s5BK3(Kew$%VR*a+^?WA6$^fuO+8pds^mRCj
zfMJSaU1Z+rG(st^?IrzT9ZkO|1yxEY*yS(Guq~V2hIW7ufyuY`E3G7oW(uwIfbap|
zv`np3#fkkVOtR3EC9gNr+X|h!w0tPZ9vb{lhNBNAzIXDylF4nJQTxmH*2(m`G_zH=
zEbX@{%3jSzKzp?vBI8cz7)aG~@{&+n14+wU@2TIoL|^p0WT?<3NG}x2k;(;9kjA~^
z-*XC?DuieH>(kb0TH#jP#YT4nHsGEKlHMf@wFVGj@3HR5_f9L22XKY;bl--+iX1rl
zz^uX~SblM4q*+5Ch^ld%*^m3W6)Jy?1RJ=)@_yaHFe|iL1D2p1XNeE18!hDiQ5Pbl
zt&v<Kp!A$+H8DyCh7MZpmz$4dRdglX9L+n!bhFqWxX~wLZl?=lwtt=U*};n7tk!r+
zJkgvO?x`VhM*SOD1JB0SNM3VeOm>?)-ub=Tt97N!=Tj=<`#LZi%z-dZ0;&=whDk62
zruxxC28WeWCg&OV9&47A;l~wMQ!#dpk%nAAN124NjIrIJF18!@A3R-`z^_1W((}-3
z2~ZtCtZE=%D@8{bMY)59_&mBq&n2#d1iWvR+T3hskAA|gg2IE&k!zV4TtMOa$#2vL
zFQqg?bW`+bbV??~*b}SL1au4DxUzX`9+ry#&L_^X17+w#32=?kDEcjYF49}631*D7
z5Jgx+C&tLd(-K^;|HkxocLhHGp=U{vc}syE@KKIHYJ3^DPw04A{auT)0g`Ypu+ppS
zhZkJ9a7=jXB(U2G#H9^J%G>_sERN(skQ0*2uGemru9LhU`hst0Q-GF3V`1?gXM$=>
zvqD4cotUdwjy^9ngWCEZ3<)7n7;>PgW7Yz?q7xYiicZEV<B5*>j$f%}fpAtFWc3&C
zTFoo(eUq;6R-2TJzBps;TySwM=-3ESs#Z$)Pcar58{m$S<D#(z2@rtDn7e3c{s!~o
zCs_ouhk`7BeN`{6wD!V*RsqeqOAv1YseA_sO#!OV6AQ_feW78ewBXPqou%!$uA;>*
z#(C)ZA%UWZlIY<UE&tJ)-=jRo?e)&l{#sEPmZE<miUZs@oWYnzK6)Q-L43v_N<mB}
zWj7*kc~4I;tVi9LZ*yoRx#$pIbPBmILl_%+f*5NNYIi(LFf)$yUppCo!@m0tgom6c
z5%l>9@VJw_FMY!5abCs2&eNZ;OYAF5BuVy>(M$AAf*e@kW)>O1EsWG^lI;yp5b>j)
zXNc!Cj46H}pTE)yJc4M|L{5v{bnno{dt%+Vn2|=Kd5L3XAr2CRUvx43A{qiQloluS
zv5LpTtYa1o>(!b2R#KuY#;noMZ}HutucPaQ^Ylv6nJcy@p3S0opqh3}^=ASIFVA$u
z@J%L{b=mI6CyY=CO1$)m4#(`%e1onc{yV)m!uD{HjAumgKp64HKo#QBoD-F-g9MWb
zNpqgCvpmt>G6kjf<zgY-0kl@GHo@0?lKY~XD*w#C6-fc_K?~M@4&|SdPdW(J9GzC7
z@RL&`iy8pMP`K_9P=m>)v@<lTpU2%+jt|-DP6k9F#UT^1&}r5LTiBL3BfcScI>Uo?
z8*${cui_>=zV420lHGq1;sq$LC|lnkot^K>AI%aAxE=S?J;25yHmx%F|35DPw%ea$
z^vql$u1ouG!|5oz(COFZJM;(Q9keD~k>e-v>L!(<%i@{A*I=+sh;&k}(98P3T~&)@
z$GjPOM0iXs+pfu4W^^dqg@|Rje6Hz%^P}qlI+<ylM#nM>K(pubrNvIq;&y)?$Jp!i
zyy{RPsZLrs@%nfMOPsIM`Iw`R4e!xI==I-xwaxGXNwS4KqDK#3s2uWyZ(uc3*y&+a
z=WU{ol=R!x+x7vZV=Y(_%v4TWLXOTaIq>IiOM6+WHhc{_jbU-U_9;HN%ld;3`@A&^
z2J(+RuCjP-;Gq=5plxJBD(Gy9a`tq-ghWh=wQ(#dhZUOd{VeegG|+K#f6^pNp&r*C
zv1g{8a;Itk9?~kT`1Gq4dD1J#XVcM@N6#8pN;*^($<*X&4s2hmP$yX_Wd=w*Og<Au
zC9I<CN(cbtpS~;`EBPkSKNZooqvVZd*MsMO=8$NE?Kf>AZ{FrmBSFhGI}_?!#aj#-
zec%Ccz_=$d9~<=wAOT{x6vbI*<bQgHP-m7mdvwc&bOpCFkP~}@NK261O~X~BmNkT9
zsW6_?CUdtpD6UQ~C@w)Z-nBOVdC`5Jpl~1~DaSVt3Ae*9!O8L7WH50$h|Ir;?C!J}
zw)3@eG5mncQ)3lm-y93YUzoo+X|*XD=b~wH>U}em#Zw29XS2iln*{wG+lT~dn%{=*
z)Q#TU!&aZXk;VCdBi`P&*J<AT(G6fvBx&D%-^yzWKe@lN>GWy<4~3_j{=KWCv?>x^
z0SNsZCk3d!FxT1!KoW)p+L@8mSZuW3|JBbcIoyGr?L4s60)VZ|Q+B2umv=hzG4Ky^
zpf0;L!KqZlCDOSkUgOx{WwgW*)@nrIdH7mqPS{RIviO~fG2_<Q5kip$*)#>UDm#+d
zQznFm_HK+a-p@D&`u5oSzDFk+zCGaoaRLGHAgqT;7g4gQG&)KKi}4%ZKJ4xgK*O9O
z;~TK1q}C&=iqoS38&^<UBk7prQlu51OsB7qaoao#w%3xTdd|Q~#?D*sW~D(i4u8|b
zgR^rkjwt_wRG^+Mmg<H?1svY=K2{_leC7i=2s2ksynsvby(mBBEOh3*mlf;v+XDh4
ztuW1&0Lvh-N1g7I*dX0%@9EUXFUl~myl9bH`vKL>J(S}spN6vexI{b=4%dX}ddoak
zMLic=U5P|z;zQ(WxfPB>sar6?(7?UTlL%mI%D>o)q!4ZZ^X;C#ic^dOe@bBRhTVXs
zpcp@7ipcVl@Tp33xbZ@nsU!&rcWC@Bi`_xUnTm?~VSi2B?fcn;m(%f#XWST4fj%9*
zK*e69eT?s4Dhik({l5Hxg0DWIba{8Wnvq66Az*Yki7Vk)!hkb6iX`0g-O?(09eHOS
zTlm1{tm}(@Kn(VvHRa73Misqy^@&F3I{j-G*Gyk?Sh$%7r|8B8D<bp{ZNP+Jbe_^e
zz%{EjV(z|kFrCMp;>jY1dWP+jI2}uL6|3iXuW-mMv=A`@y(`mi+(~FZN<mTZJ|vRB
z6L2)JxSkc>(+(grZti&s36B(&re;!BB4YPYE`;rG0s4T0wQs2SC2xY|j-~sA6$7}y
zNk=y~(ym@Ow8}828}4~6sUH;%51l63VLXz&o0dLaI}TTlU$*Oj?cL0FzPH`Wyxu|(
zm}daN*;}H#)G~9d2<a>wm=yIwq0`1M>;cq#lq@I_Hu*$nJ6Seodq_jI=IKKTmN)f9
ziDNTkU&(KLS7hE3B{xN-eiYWTAD1F_@L@eaP~L(liwN8-p>#~{xG3Ii6AO0@{!!Y9
z1y#p$q_(lO%Hh1#9@Bq}xM_w?NBFLQU-*b$hBY5}wdPp|2tetCS6MG42MB`nCAiPk
zRPH7}Ac4oiv{SJJ8?IeMAklCi4AE^Kahcjgj9macVY#H_B}R(149BzokluscUHkk<
zRx-`DyA{UuZgkN=?^!|Df>SxNWI%&y{#)6{cdz&<qbtub*;G_shi1bVFI;5|LxB)r
zKd|I;yKhV-lMn5oJKF8_^#Z5}oVy$20~CD3rnBEXt#xzSanBK+hxHVwK3a~QcXV~D
z%%yCanq_|i@4}WSQs)0t6U7WxsI{ZumX|bOJ=7<Ybi=8Is)cV>b9$VE8s?f{R*kYk
z6Lek;c2>pl<^bnknRVyAF<R<WfPQxhxw#!OhP?q*2amz*R2NC{?0<x817VdncrfWB
zO*PqK07F0xzOXKMN!Jzojk3C7{@{&k*OFVTWE7GRd4S<0C*_3J4b3`sp0em2V$hZn
zU>=NnhK-AN<s%2O_q^OLLO?&H_eJh<KI<ey?qJZYOnkc?J9FmI|8xBJq6jqrAaQgN
zc?4KslIsS-V9+U5)96E!Q|2H`<JkRi%8fP$+V=5TKU7V{^W)=jo^sYUW;!)#7#OHi
z=!ql`rnB>8HDgs%AuXjed^dtgeDsCrpXL2?+Jui@mt~K*{A8))NGJc0<okMRv>ITd
zM~*2Ps&2LiOvCQ#jhHddl;l&Y-otoY&3(2ma5+e8^3r&xzpG=oy#bVuiTlTJ9$P0~
zHNG$Z6=yxXNhuK#YVnfYl`su*4HfeOb?c`0%^?3&J*<<R+Ew|lKxTR%hNPum&B~Dm
z|B{~n1cX@exru&^XPpJ9?OAq973bWjwdAL=BP;^|aF+0>n>$!4PLm0aZJ^8=`X<iQ
zwQSI!BhLeA<n09LI;XYPcBY9(x0dRA<Npw@#{cFq0@<T^WOCUDUIu}&hO#yL0D+4V
z_E#6huR!&H){5ow?{z`w{jo34yFR+Yhg1lk_cQmE_W*mxsDQ`yu-;GSWN$c4({?hH
zlt(JWsT3qZMw#qe=ipdh!r1y|O%;b&*$)MC(k)j~+_yV$A0MQ>uhwYuj*yd`O(&F8
zUYgmYsmdGvS5#kYh=nxvpLTC%b#YAE7+8E}gS@pr<&L9^uEb2<5t^{+E3RLzzB9zW
zZQJ;KDh99u`9zWL34Ddm6N8$P3A`Z*iv{S(4c@zeNsDVJb(41*WZbVmHk+;xVX-bT
z8eQYVr=f!`G;xLFsfI9FSC6lXyY=0t(tQ-ZlMvX6YcG~VQ7}x9=KVkd8IR(YH^M>@
z8mthRZ$UN6O-|}?7@(95^}T~X4=o7|_XxWcCcwlb6BPYN>K4+?<a_WilaBL!Mn3-t
zfqO02sE{Lg3qHpUj?I!%qli|{JwN{ryUIUm|7BsO`}2cVEXy;CjP_?um8foxk7q43
zEuaV3@Y%P$2<sL9l<$R3g<mIe`EOvym4&xn#_D*hT+G^OCLp0uAY>*G`8_hy-DKS4
zn4;Cw5$vSzhq|>_+Wo~J*IKEzx5!O;cyj`b4}~WZuA{Gg6S_(fT<zk4RUp)OlWqjS
zzi>*#GyoO6=mr4e*oxT5JhF2P#Ed*@@A9yfVYbHxjMGA8)tetJF7n_*>PvVh7B-Mn
zNq1>B?c{oS45jlHav}O5ABpFwYP9oPHlgv{p~48lyoBxr{zvii@vHh%`_1LSTORoF
zwb;VK@fccah(3RV>&w6PlTe68W4vji$7j$Ut33JbBiB*>yW@1?2Y40NaEE^8?K%3~
zbcKO`l+kyodfG{Ro7H*+u-E%u)+y!g^&+B{?T43GUl?xqeYEvYd~Y1e1u>757nZ@-
zHzf_c>++QHn>ubs^u%c#4NPI-{OeKCp`4q+Q!^R3@E*>vN=q{w#cTR}4{MBGmi$N7
z1@iUej|-c771l1k5zn8Z88#jb3!=`RjNea8tYm$)9mVg;9Fgzm`NG}j@DIyyWvnO;
z2@d}Ah!#7uXD_Y@d#-{AEmZtrAVC1PZuR#(Vd#(KViV!(2i&|D(!6o$Y?OYkBgd79
zeiYHS+FFRv(agsW0>B19rpe?<zc^C;QjJl<1@+081OtLeV`0!$%=-R~BL6+N2pLkX
zf$VAj5c4FD=vqL1sYAe9(a<pMPsLKY!ClHYMhJYx0$`}I4H7c4vV7pH1AF>KFFWpv
z-~DCEOu4(Es{*1Qtm#r}zMvRBRmcEOc&;-W0ydzi`x6=c6BYq3+8UlLH+JOn9SZPd
zfL9TfhSW+A5`Mv#*p$9;F>K|pcU|hNx49v6`McnWpcATsRLtJqt-KP@2TUG^*sVZE
zTQBHc42zV?lqj<3QpRN!x!F`s)qW=Pddl#6-oLS3^AF&BIe+`yY7z!R{3RA<Em-6d
z0wkafuhtv`Vj&m(pxF%x&{t6P%Oi7e{K`bzS)(&=*w655)UH+Br<XRWeMykr+r%Rv
zj*2~)6&NG*suiUj^}Bdi0iZ{UWyl(a)cJhSCB`Dp!g?#v<9@-i*67SzKJua}XZkbE
zqldZud7N0A^1%=cJ-94xm<f3C<*{;?;E0V_p_{Ov1lb=g+qD<H=(=dRdHK*%CrDoq
zDaX{fAw=jI6;siVDd%7p;=Ol6z1cb?YXjj1t~RY!{^25K`5#C6keDT)sV#tOMOPH3
ztu+yy94A2e`dd9ne)|L1Na2^1tQQiAPZ4UTO8<%mB9swu`@|rPgfVVkEh~f>G;%a3
zv_enAq5678VnEK-)+X#W-{Gf+7%So_VEjaYARNLc@TrgiO$ju>phJwD=)j#9ZQVNG
znw(ZaFwbn*0pV|S<X57~v#SrG#6?lhcG&@`$SxKJPYn-u&>-zJ6<4@+!}P$RW#pA4
zx3U~lIbl;ye!xlWb^OA`Kj^z3z;#YQ`$=f0L{jN=!&mHgZp7RE@-5zV^jrv!Va?<(
zsoGD1VmxS6DIP3GrIC<PFI}1_?C!E~DLy4qwM~f*g%}=qW}JEQcVXA=ojNx<cKM$o
zzi4p@T8!sp7b!lf(Mnz)Y25)#!B30;B&9^L$uA#h2#jW6L7YF8RN$c6o>2}@fW*n6
zC|9u9lQ1-_pZI*2DTC%AkcJ{0FDU${2bTyC8C{A_R}sNEpLNCn_w6s_mpBLFuCcEJ
zt^$E01&}ITf-o%OZbHXVRo^hGb5Fbzlm!Ps<~MWDQ%SeEDv8kkWw|!iI&dsFZ)6%A
z)7+@QhR_NNZSnr-#V!v#6$utajyOvfThxbXPN%Y+fJoaCyb6<Eb$!vN;PzXV%1MF+
zWY6+fB;xtFP9pm(e<fD8D>E}(W-634P$RlA5AM#CJ^mr5(TmU-gmyS<ZE6jj0ly7T
ze8iU;Zb-y{c|0tyvIOQ%=O_=kl3&6Hf*g^b5m^vvhkPg^a)WCFW9Na+t%Hy#m}2<e
zX*{Ad+D8*8AU7iRa<=Jb#Na5!DO;Ux=&JDP69!meMBnxkJC-DtsA^Du7w!{G03Xlc
zJ1J5U9hgW(0nWiQ*ZXBEh`P^@|4Id}(zK?f`EJ`OO!vzG{pV)E)UsdPc`moK@=2`H
z+ZeBpjowV1Z8tsLM>8)`&XqR|0bH8{GF)@*M>-$7482Sl1g5HrcTIh+lBd*EK0m;I
z{l&5KM;ELYpDy%6a27ruZDs7&x2UhYQc^ZcMI3-Kat+x-jBZLK_@TVvlQ7q;VM(v@
z^jMO(VGYd1y4qZ|GOU}%Q}8(kY6~oM0}4XMW73m@<&JELAIJj2HL<=63EYsFBrshH
zJ6olxSys;I;w^7rS2ib3LxsT%sDMqGdI-;Eix~BU`C;lC2v0tUeWUKmbh$j==$Xki
zHn~xy+&N-Xt@$!uc3nqPZTpCs#ao##J0!JHE_4<KLOup{HODT0+9d!*3ln6%XJik!
zo$y2&%z9s&M676~JD>{Vf@+4fpMU(M@pNEOGNT%&vZ|N<_3X#%)OCx{G*|iE)L@+^
zjrA^jat0Mtf@J{x>ykB>-E{9THVR1d`htHZZ{w|6MSU=vg`Akwm_e?s_e+5-pZipf
z;oXG)Q%o<yVBIAyATg19v_TR06`M)EU!eifl90ud;tgwqh2FymtD>(yZ&ez4y=(LJ
z2iZHgrPTjs)NTL#Z-!Jq$<d2p0pNM_Cw_==t)mL)9(x)_dNOXEU7@NKMT|D&E(ddm
z=-BIQOZ&T!=Lp+UHf{309Hv+JPWz*-j}p3wGMiAxApiyAd||QFY?WElS=0+gdeVC;
z)MGOT2E_jx?@-~+@%DX}R?>LP|Fa-e`&SUUgY7-K^3Ji%G7Dg*Q`CUE^s5*ie&Uev
z@xr89R*F!#N<jVljzkQPI=U8@pRa9a9mQ@Ze9i3TQlG!`xpy$egC?tU;R3&)%fKCp
zzU^uPsEF#{S0DC`72*OeMWsK~03>uF<gEm8-c=X5sZ_ZpBUL>j^O@vplw9uypv_^&
zIS)s?nO6z-`lQn;?(vxW$#%K^Po?Z+ETds#c&+(p+25a1?Ng{lGTHx!y|;{ttJ}JS
z3%8&FLU2ifOGt1D4nczkcY;&F-6goY26vYV4#6R~Q&3n4?(W~od++VO&)2u#&hw{#
z^<WGJNx?b$?6dY-Yp*ru+@Utw?Va?b7fmjuIZp`d94%&ZPBw-n03KnlVzo$yDy}%%
zcsw5bz#4ZoN#;+%GQbV0x71fh9j>>9Uy1|f>4|)V5papOKNrJ)%Dn9Pj5+lyIUJJX
zlDKdu51hMt!VhkgSX%_$C4dAPdLbZ@7<$7PlickR^d=Y??&xK|jvKK6sX#BXSTN#%
zA?Ynqsh4pNTlnk;!Mn?4B-1G|fYoA#0&sp5bAvFsTYpWG4pU`4B}L8Ej7W7%FE;wX
zDY&f*YC-dU*#qZA)58gCJUXK5(1IKYWE5xSV>RHx2`Rh_Tt8t(|BBvM_F{Glv*Jb_
zmMaO?Y_zDaPnF(9@JE;Ok^8+5|N1NJH3ugMY<OkIg(YSLq8P)}1+qsog%(4TG9hCm
zF?At|!KBJP*+;+?jrg;B&C#EZu}JlH0Q8)(OtR0<`T`x=u5<SiZbA&wruvw#b*T!!
z=W0p8xb7|-e^*WQ;bDsdC2ol7;apdoPJ4^_LhYajEaEvmPpB_E497&mr!<!ReGWae
z93#LP*5D?scvkCmFBKiBBM?I9Z|@XjN6M;wWq?%B=M|OdiBE}n%bWdVMvKjDRRdyn
z9RyFYWwN;M&3`~cTl5*)upgkZ@B4vDcT-5vPBIwZZ*wcck7~%ZS;CNym0iS8&-v=R
zbByB$wV#Z8e58sUj@(8Ok1kIFZQWkQSR#4^fU(TyjIA-N`V$Wua?r#9+=ij-RK`f2
zz`V2y3)xYDqy;fhHXMFnXHbftV$|Vf*hs~4iF1gi<FcBQqCcofIG?_L9N{yOe}3v2
zGp<b>)<r=tbC&&6gIx7v0BOFzbRLP8+eVB|76ijtufSkg`$Nt1g}Pj*>E+mPdF!71
zwWsWClKQ#q0r4r)(W}FvcDp2g_wmm66rqHkK}v=4a@Yh+9V@#{gRT-IzK;NX?4zRc
z%kODhOP_6i7Db^7S$_CkXHikwYoBalzQ0;mm~)hY|4|bLPlHQz&VflB>plwy-k!+M
z?R)~HtCUV~Wt3#x2Pi^izlKvw&iQt7M-QF1#MDjE(2|F4!WWNalv;8GLEg&T1jq3T
z@05qBP5|^N<Fq5dD3oSdof4*OWuLj`eILL@+C`*Pt0qw210GM?xy0~Xo>HJKE^?yt
zub1R<B2KiGJuB*jZ+ZWMOB*Am8SX0qo_@|W6+rXNdjb@HQAa73<#8j~w1Xy_30aBc
zUDe;Yp3bQ94tU(0_nRzKZ4i}foTA*jufYcvD2PLB?9nGNW_eQeq#2@F-y|^KfD&A&
zpKW+kVwl=tWk1?z7c67%6&^w!rGV28av75<>71Yu{wJh{H3_C0*ejTd9Z9TOWkOLa
zaBY_%cf-DTPgmrO-4+pG)}<AKuRJj8Y^nfEUsoj2Yd_68vuuZ7fVh1=z%H~a>F+O6
zKe&0O2XrV+Qs=ZW1|hf~eIUtO%ZmaEq|ctKI(t<m9!@sXQgI`pZi^htA>PQo_@4I8
zKKjRXa_)Jf@?jy1(H2NG24l~`*cSwYZw0qjep>#EAOU5ueFq5kwnJ-kgn~{%26eoC
z_wCo7uwRVg1z07x;+VQmLdx>mUx3@jL!Vg<Cs0P>zf0q+P{y!n#cXY9_5{jdQ!)52
z=O7Y&zIK?!EkaLeJ-^eF6&BwMJqnqh%xHnRb9=XAvS-S4D<;U`N&Qi=on8#`3T$+0
zf!jvH7W+?}&}lstfoYOMIs3NGL;cBQC{vEUM?RgqxQPjULZ5yfH{nx<Purl+=0LxG
zU*#PCtFZNM8<*JI&zIpyILNy2Rp_7`EbSg!#TWO3L1to(XJ2qStxoceOVHz2gPTBp
z2AjK$r&DbYk{#p+goAh~NRAG<F|eRL(f5eC2=QT3jD9L_DFwn?R2vx`&jTIZ<uMTQ
z-6BbO(laY>Ak2=LpTvvl(C?92-jmEx!}nHY`){LN6reP|`C1%jdq+zTlGML)<|dVf
zTe@hyT(ZMabjUR7;Q|y3N*uN)UQP&;G_8t&#oBnBfrNZlud>iz#xbxSODLs%g+xso
zbF#G9Q{be8$Q|Bubo?t(u*dUFBZMQhW<rw1CTGRVAP1ojUK;fFzhoJhPk}0Ay3ZI;
zs;n!QtPOy#K+$^_j=8TUN;Zhhi|wZLD_bWz+!wHVDl*a>)ea%OLK}axaqV*{$OEx1
zjeGjh<Esl>3|wx2Ur<TZYOr2l_SH^IR^q3zj~yHkOL+CR*CXEjwlr0^wz&cC=wi6J
zZq5%twaT}M3zSb;Zhm{o$2*xK9d8kT{N>CM#V6pLXfNoxlPvo&`cU}bC!N?rv3hn3
z1A=HHhY9|#OxE`FY^8j-y&zk1{$l_MD6GLK^*!mPTJaUpZ)gFdAQXR|>UAZbA+;Xb
zArdJ&&?}m1I*0DuCiRcqG_^V(dIeneqn}|q?D_wIn@2bkE@TNXYveT$cw@fSXCVhP
zT0cn49J=iow^opwi|92=iM@(XaG%<3gkDNY*w0E>Q7Ak}F-m7bLi>h1W;eZ}HuvS_
z=dLI`t4Ho#!gwLr<vGxHx$4q`%hzO8;STX*<1RFMfEGa}!UyE9A(byibt#5k>J)Rw
z<S_Spg4>RHscO6y>de!J0d$nx*C>~aH=&(2V{+RsYTnMQrL`}K++OY%iUgwDo~^U6
z2mvT}M3<*JSp-jLYpR+Z@fUiW!|7aR%0OGnvo->%oM`b+W5FM0gzOe0_3SFRC1uIj
zU3@05@s_~=5_b|faci2(dRp9r*91?Xcf1{ojQ7X*0d+3qy;gA5Y`#711`(0~#UN@3
z4SqWB>SFOzrPpo4O``p1l>8K8DHQ-+0G|8?fiqfaRBZ)&A{l|n*VG15fcyMCwW;)@
zv3$+sJL#0Xs^QLM>6D55qP2DLqR)x44jFJ^@5p%G^F@*syfJ;uuPe5nXg6h_I8pVU
z%=Rz5dTv_qg;ZlZ<cr-{t+<`i1InB65alEu_(ckbvpr@z{2$WKMHI%zMVq%OTOW_O
z>}7^YRtR9lbCf_e@&Pmp2!{tZaqXrm-B2Dr@d_iyxdk|?uW;$dO%<@}xhazHnL4xp
zoe;B?4qq0XM?lA=SSp5kFlfzA<QDgT^?-GfMAjccU~a`W5dzw;nylQGGn*<twb(i>
zE+GtRp@?ljEfO(c%Vw{`5h(u->#wRH^5HrJo$t(K1EML#EE@YZ6AJH@Z8G%4Sx^aA
zn8$7ty;95n+VyYk0Qx$UAn=j2cD-G(W=qz(3Ml0bpv3M%C)T~S4y1rR9XIEtswBa^
z@S~zQN{rO`ewBG7nPt)}b=mH37oOXTuLd7I0-dUef_{HV`W#4S(K(!?2tsF9i&)5-
zLky<201qAlz6|es)GY)Qtj|r^Nz=s&+>5**CY*!pxhZAjuRi2R7}9qpLm!LWK-wS|
zxY)DGoxY`apr^uU*e57QK_?{1k09>(=ijqkv}&$M5-b!iUs%BIIP#N4J@d40b}A&<
zy!>D2VB*K?jXZ?TlrIZ`;9F<T2u$KZE-0%<j(DOzg-8jyf-Dy%w&}^33M+AoUjSST
z{@Us0uq}h8VjsFo9BQP?XpGHV2~i*4!Ws)*t^1{}yeKn>KUfnLfk22}im}CNTZAA2
z9k~Qh+>nr=En%$KBODB#fd}bINd>!Q;pBIZ+>%N!&DXYn0KHtC1az&^Goe?^p#*ud
zVu&2iA)m2c6o0B>9jA3*^$x-JKNZQ9jQ9%3p~&B#AsrzH3RR@@B*2kM6J<E)6STc{
z-X1>VwXM#Y^QBoC2mCSWDBhXH<S*&#N-r~Swue=LuI4bF3X6Iv8oE%_4ojfZs~R9w
zPW)bljnp1!^zwu}gm`A-c70JYkA#Px$nDz(;X51EdweWnB+r<`{wW|S@EYeDzz@91
z`C2Z7dWwp#N6Cl4uH?v){8-N(u#MaXxZv$vF`kZE_smUCACvu@9VB+_HR8;8*9jE3
zLiJ5i@TeG<rj)dDU2)-zkV?7}DH@6dTzEb!#{)&{{Y9Fcc}-jlI)R&%fIpy4!8>Ho
z2h=ak*UGoYUKjctE#jfSys(vdB<Hk#NaS_88ynF4;TX%V9fd`@<&hu7^#BC&1XUCM
z>2{+=o+S)^0I@2N`i9yH9^`ZR+>+3{_(c>3jU<+`5yBI6OyY-8v~TBAiQ&w2x$brA
zT)nk{%RiK@7a|&^Tm``gq)3`Rq%${5mpSEBW07R<L#5K~Q5tGXpF#WlUJhkvfg}L&
zg_n7)Q)tVWBN`@ZKXyUfP`Kjr8{1aa6E{O$=WdlY_)*$$3Yk&<(>hHG<AK<op3h%S
z@f_h#pO5TfF>_OF&3)nEHAcmmp<5zSLGXE9WITXJ>S^Jl>Au2cTpgP~Xz(#6&-OcZ
z*`fO}FZowhk7k`_52<`<@j)kUfB}ExC5_IL$6+;DKo<H9hZ>f%I6}r}4iIa0(z#qa
z@_k)yVwj+D@q5KmeMp4)>W{+wy^T(vEZb4Ev9FFwXLIc9cD@X0<3-H-OWGU~i8;$3
zo@8?zinFOvEiw0J#KqSW06w4na$7!f#%a%Ms20dq``?aLuir{js6uo_O+03H6Pd30
z{R??ZQSaehCP%d{UrSJL5cR&#sQM)l@ZmQ|zgw7anL();Ere+gAZFKqP5``2G)>l~
zsvEi(&b`Z>7!rD1gE0vJF>}l=^*I2dB6<n^*7m32n^>HlX^ZGt6Ex=$?g<LdUEt5{
zJ|hQIu=4Y_mms%7OH?gUPm<sHa4m*$-w0>w4O{<QH&rjUAn17)ZV8}K!+u?{gAbAz
zCP;<aK)2`v>BcB7GU%2Fi>7UUNJVBblErYlj`rf(xlcb<PG-?7Pd4aXj3vA&B;t=v
zQjQapqK#V0S^qMsIKot1H23sU`Bmge!(|7sMc75OhI*!79J~`PjMDr1C5&H)qvTmm
zS;~lgL0Fc0UsYCxUVHIX)Fs-Zk^fJPYYZ1rJw*J%OUBnA*clVu*6l91Wxtjt*sHR-
znu4hV3P`+k%u|F)>;eT&_lvy{CvB|mXDiGfQY3zL&8h#+Yh^n~&K$>}zAxabkI11y
z=U_LI8BemKi>E{W;M(;#dAHO(0RNMb$^p)oN4b%8(1PXkqz8U^gSMT=2MyIFWoMmf
zru;F>+J2I%D?aSF%ygwWFrju|(vJjWL`ZJS69#jYPWv}JsTtUoNIvqb#zjw+>J7=z
zQ3OT*N<aw-L_j_&fP)>4eMR-xr#0q~*cPb)Xroh4zsA)WY`&)7T(oY5gMCnlU!Q{%
z2y7pD@wpxMNO0#rsiTpIH2nHq4avc5wgMASc@oW-jJVEO><amfHyzPw;z^JM{>4LP
zj9|1PnJY=>Pl)*QwNdZHgb5=ZhCfoaN~vBuO9@?%Ac&jI%@=1L0mO^b!BegUQIufJ
z)9R=%QK`rqS&eG<;W};+*P)|<E753n5)c@Hl?LBX3-Nl!_!sfA{SbzGl0WPqzsm*?
zI@%s5Ra#tLs}WzQm}`u`;@37Xv*XTDngU&&%|NYH9A3u5QC3S{R!HN<M~B-2Fn}LH
zv_~Hgx&U;d$r+fS9biJ>z0AxV&kb7kbOw(d;pP&3t4>uGSX5Cog?V0*<+BC(HOS6~
zjs&h&8Tc1lrA(Mjq!1!yjvqxM|5o23a8$hib}Q*k8#9ro_vkw)qluERV{(Kwk_HhH
z4-<7~^HMEQ&rIcTmwTQ%ws-uLwg^iyXR27IxnZZx_KB`}u7r2@I4Ni8+h*%4uQ3H2
z!lvIU3k!XaZ?2PWJt%qP*U<u1*;ikjwZ35O$D@=p^m_xfd_ar^UEoB@Kox0QF<KgF
zSwKlvHkCUPM-`+}=|#iqc9#5`NEJfH4gbJHs<@5|D+RE~<4nk#hEEX3FwtpzB0+n|
z<+`nEaAQ;0548Yng|?rh*yi}5vmZox)_f=-K_jdI?0kGu^y@SLM7NtlTH8%1yVX~6
zA$*|9xPhp*3&KyI?X#dWT4<dO!qEWbwO3w|^}9#98Gfim&|7JdH|+PNGT9o#<*#IR
zzR+RaJZxhz($6I0vuS~+qa?ey-CtG?;;SnrS%J?m%?Ah9fY{Qa$zRJv8j$q!2fG20
zh8r85a|P2H9S7%@lAkdo)%W#V>a~Jc4xn@t!W+m=gz_>co`q|BMV9QyoFh?8m&fbj
zRiLd5DgF@?Kxr?_3D94B-Z@UfCh1T3Uqowh33yZopngIE6#9GzOJW!B?!PGav6H`3
z%9kEqH>V-skx-h^m?ffyetV<;RUo4qS3Gh!Yjm9bi&#`5{pNl{G{zCLK_=*Y8=BR(
z4lofk+OGSM9KMnuujo&n)&JVz|Mk2dKDYz^CVs=`{gbh0er4F}9iEp<g;>IBKG|K7
zY+U-~)B*jkK`nl4vyLnHpCQ-x)wx+3GrrnSlklHt$VVZU_$#tSMUlOc9<b#7iU^AQ
ztt&Bl^o7DpWu^05i>bnFtTQjLp&*S+9{9KtMNS3Z&ZQyLw$yC<qG3T%9yQC8a|sPm
z^jfG-a4Ik^4GX@{CG7EJSO$?4Kmf>lgw4Na5)C>tlfeDSA3jdmucXf9@6bWwHF|CF
z3L)%!mCUl;+j0f&`nALM$LtOXPYpuPWEx9fhuo5P?5QQB*xs=(v9pa$T$yBWi&>B2
z2Ng!FNv`zkG6@gelG}|wc8~_W<_SVq(i?sTsTj|QDBl{f{%B-e7j)0<Gu0TK;$*8b
z%tfTK8UcvTgjPLRG3<^DJ$)scGg{zzQ2u_?)%61Cf^=LuT7E2crZ^#+8CB<6Ywh7{
zHrkYDxY(<0A*{&nFwD%+;$!XR3y$_vDgHdd>ve}{Dw@29*Z9Oloc2@1T9EyTjTQ|n
z5T}6LmD3|%2o5~)5NFkmd?fixle7;4mK%B%S+l~Ju30{=o-g3Zxcj0RAgJ?f(JWiu
zR@g6g@Br39$7+eXw;NDzvg-_G`10(Y8-{y^ZIqz;5Y01y?jplriExx{mn(55R&b`m
zNl+PqMV4p(oLxy%9*HRS6-R!XN6f_Mvm7XYBAI}5h8NU1)$4v2|Ni1q<K{lgo}mO<
zo(9=!JEOvnrRK@t^G<Ml(paQ){dq9{m~@xd+tBN9ljB&9Lt@p<rO*%vJxK5_UA20R
zhQ&j7COTaq2MF>*n8Ynxr_56Al;GiH9;kKe>E>vus{(reIpyrdHlGkysoC)8X=<T<
zC;Ui%IQR2l*+Z+hgib&l2dUj|B<bboOs{@s)Boi&be!dN6GGOP<-`+2@muECnnZ~W
zD0zcN54Xm1M;e8DJ<obRro7_(-S2DCVjZk6=fzpgUm~>R<ks~AE$+;hvieHqRAQ+-
zesX5!DL{aIw%TtxXCSz=bz<vYXtjoNN+WmhAezs8qi3(-_Ch(4t$GL$MfRidIg0Rn
z=n0q7n#P#Eb}OH5flJA?YLu2=$`VTvCEFT^5l6F}3?=Pp@w{!2{upIH=5M(4>V=&!
zP)9Q3ioTT)aHXYePGZ!Xzt-M>Q7(T3bYjqheNWbVBh_w<!Vf>sL3s7E!>Rra!v@#o
z8_*Bzc4|Q|2Ua|OHabu?D*lA<TY!Y5I=_w+`kbmc*uZXNX$ELJ!#*;lJF+U*VNj+L
zJ=w27Fn}D(RC3cK3Z=BUO`|8_<FbW+3CMF`c*~;OQZ&)Jqe~8|cYHWPXqG85GRrl{
zeWnv`%uO{YSBz?)N$+?KdZO~7&i@XnC3^&DhN6*|9-zkTmu;tly06zxi{<?rb#(Hq
zd<+#(Lv`p}0;@iB2n3Ilg}rnhZ_1O`w)y9-C28>sZ3oHVdtQt^EjTduD;N-*X<Fiz
z+|QI&DAT`i@rY#mSIza*5={7h=4E@b+0}JAxu>BRrbk+<oa4N^ph16NtBWd){91b8
zwFiY9PiRu6rr5~5YuzA^RrZwS)Yi*Q>SukgYO6`4ZK>|H5R;YhH*P$s5{R!bCJ1oc
z++LVte-$QT2`H2B;vv_A0%S?JLtf7@Ut-R(!|xK!mnerFmX-AmA)ul!{gMbbe3YRq
zEnk4ib;){JUnzrfh0-gW2b(5%$qPaXiUN>I>ZQfY$<SzYY@<?n-<D1G%_{(0h8lgt
zu|MIvz3DlRf(=*U<lJu7HPXc~2DBKdN_v1oX~rpId?4OD!KNd+G5J~EkGO^&^}x+w
zheHuqW(cs7i?DU&f2vp|`}csN)``F%C9C-oo{f<NM$G`O;|~%VWU?<qg-B;}CxWSQ
z`Y!jOlEH72aOmj6wPr3gDV#fuen6$F^CcJm3!eNtP;B|P<j$dNdpgjT?u_G=JF;c2
zy@P4&YSYz3@F4{4_*_Uv@dpC>U`6}i8Ow{HOB+LkJiZM!7)t`aQg%`@1(N}2>s!x}
z>HRy>c4sT?8Iq?)j*-^|XNcLOzAlbYA)w)Idt|>c9ic;Ni6<Z*04r!UOC@FwqU>tR
zn(*9{&F1=Ik&cZ%uSVH@9r6nW0n?|ElF^J_{Sx1d@1zCqwu$D|34sfW{v5!DO<xXF
z&7=bg`>BG=3=B0o3?J@Wh0<=+f6A*#@_gvS+Ak(7<eZ)q%6Z_zc&1nqtum-Mbg<+L
zceZY8G>7&osrJwedwIispO=pIU735i4_E(P*t6k}k@$4j6SrZ@>Roq-J+DTpg?lyi
zjNeX0u}Z52`<l9bHHtQ~n)5q2^5!YPDtZS+*^Iccb*==qh~ts2ywQ7enoXys_-1p;
z8hWF{sXRJ7RKm1Mje{7vr2t)Jo4(_I*otyg7o{azG*}Qgi&LEjzKKk@pj&%KCV;E?
z<{%R2TyDDwSu&`{1g?`DA$xV8wp-si5fl^D*g<SEia$j>OJA<SN=C-U@wB_^Gn#V!
zF-_sHBMShjZ2QO^7oV<RV!Z{?ROr^Kc`jewk8j1G&-o92>#bU)Nw81o3p1n5t~DR~
zD#&NERM;E2Pbz@tqp^E~qxzW@#9{cOlfPK9CFx&IfAJ9kTd@B*H+k+e?tF6_LsQC`
z>w<5r2s%x1e$+~f*`-|Iv6wfwbqCFHZ@tGW9j;b15)meqf*gubE3gM*Y1a=Kcyyw^
z^{{W4prfpm8wy9FJ4fb5NdTF+jc?x-1<8w127pX+<A1(dm?iJjcG-#C;@WH~fJ8Hh
zzA~&OaAXhgZ&@O#VLRPDu0V1I3XY_BcQEx_+8faB^1L})wPF{@4_<fx3QK!iSJ4yC
z8`H<U5J`>-IINp7qB(Lt`u~fw64ZR2v-S24z=Q}Q-GzJNz{JTY$$}r4YhK>A1JTBf
z!cww2TV2MxGqS~~&uh<)JKEF_IocLDv(fZh0^<h>>?5D$syNSD{mjW@(!R1h6y<1p
z>Su^gj|lrcjj)hG>Qc^S2~q*vTw=8mp+CN?JKgo!{{J>1XfX(v{43UDU$X<m>*S?A
z25%ucQL>9Q3p0?F9#zivwV?*Hoh7j-cd9)%DhGgg!uD!o8M^XZ-8&s@^pmBg&Itwh
zxH$o1ml=G{iid*tIlf~cc2P|lAGNRDIDYJC5?5Gcg8D{w4u^&=U_Y)8!7>6w8Nh<C
z%#rKBn2E$G2BFh?+S&uM0|dhep`JK7a+Cs0QYi57h^qq#_0EUnD)rJPNe#9X@9b4F
zE@75ncZw|;_sG~lGqff<0#N(=xPq}Hy<x@svBwT*F|NPt*~y2WWCBj%G&J?fVcxAC
z9tT7J>~$XTOGMuFGt1zrT3y%lSj1SMxQL32QCm$_`AWCHJY<RN3L{;S5Rj{+6FtTR
zNKZ>I?NAA`KneO`n|j$I1WBjgu&BMI-Xanm8KgJh#ov0~UN{{~C9q#PeJoSYr|zDo
zcgfejJkTiu>Plya<kDPuXg<}%y)PI$KkKFv<nm&FeX%{ZDw=>!u;D09l>??)!Yu;e
zt#p*}H=W)9DU^8FN6TdtBbZ?G^U^%2qwK`9RdtcCfP=>sq`uLoh?Jtw46`HE`XLG8
zb39m-14udG=^7pcdOh2=TyEdP0?AR>RJ)#@30)wZ7{$AvS^?iN4+UZNWFCmQ{QP2Y
z@ssaSzIIsR;4a||$a?GPKM^mna$av~2LN~59<K{TUL$_)1XOOf?_M=I?01ff%x*()
z#{^qsRyoiRAYScT&!~4h)jvu40xi_vBCdn>q_=qa__u&^3_l&Zhr+n*EkM2tMmFIn
zat8n=#9Yk|V-wy)yU~%W3W*#bwXQ3=ZNl<F*l*PgT)__o^a$_Z3=!(h#$_YMiA-M?
zPyw*|@kD(l#P|5@=QNp*FA{(j0xE93OqP3xCef;%SANR=<>8^nM%W%5x}F#b!Z$5i
zZxhui&*I}S2HpY|lC{hx+t4##gd2w3u?ii<aWzHBUS*fauDOkfGuOFgRDy{Hx^(~+
z#LR!#?67^Hgg9#5zXGQcv`OyCFG^KLviH-P8>_>&<5|t1^miJ)ot+qBPkM?U?5|@s
z*baOPS2pLW*LnQ<nWj0!D6>um#Of=A5odt|mW$S<Y-{x&Nb9jQ>fJCMH=UWXqxo5N
zY=Xnu-fO;c9x?YlqXMEs1;k|>9?7YX7_I|s<%kDDn@Qhr#WauvfP6EY(ek+ZL?HTh
z(>}8B_x{KixuFD%Vrg0DP3U4>CV)(OucEVaanT+(>*%vXx*1en159?GzNYVcl(|EB
z7GAn-e#qG5zj7#!Utw=q_w9P^$T~D{nMo&7Cp=vXdQe}rf%m+%Rc|v}@@$x-%9r`h
zg_VNvVxt;~2iolDAN$yEZcv#O#gCiU?p7zuc-41+mjeY_XlHg=wUd<8m-E}BXLe4v
z@O};Oun&Yy#nOA-S4_KRB2~R@j%l-y6xAua6g_`Tm$;%}x3`XGMu7CLw3_f)TFG<{
zHG57LJURBOmHlRBlIhePX8BWO7^>@9l5uL)r{s=Q1bfytnJrG3S7F54!iMO$rkZs!
zQXSktGNS<6*yBN#?`i3^5=A2TGW{zqHcd}63U{yE<(=cJB__nQ*gt73U+2|u;&|m7
z9!asx4E-96`!Z20xYt|1>#%n9ex^rz&6SQ(;PWF5X)7~L`SKAL8F#SC^tMKWRPW}h
zzSEc4GkRB#wqdN)ByJ=I1Q<g=?V?-a#r{&K`TfHufgR?;AGAiv+I;E&KXK+#DqVmr
zX-i(kX?DNgJO(ZiQTUVJ-itcJYr}H^^>zZDLmS3>J7?X<-AFX<SF>@aH-wk)85ry}
zvZ;3=vxf?mBp-j{nYTm%!Tve<6G2JmHa(tpQeKDP+@ZGeoWN~Q#47WXp96rD-&2k@
z;dj@AjFoirBCMuMQI;KP)AR#+DaiLx<@H}%{10ZrV$u3pkO~tjZ@_atO-|cl1_lNr
zU1~fFdiQCyRB2?@CRA_UE6i|FPkfpw)5v&9Ma!yD^W)`;&*_Up#1q*MkJWvlbOKq^
za0JU%dXWrKDsyUno}bw+vF(fd>xgav3D=>TPPYW+Ud_I^$R{_PKDELiHF*8vI7GFo
zI4<}`@M?X1E82P=!x&!;OQ(kL9^(D&rJ_dC*JjHxHn$`6|F!o^WeW(=L({;mPYW+!
zo3FVz3Y2z`6=obA8?t?>)M(YF@7|-XznYW%5C&)LkMtzx=&p+%uUy)xIgBdbz)O<o
zzTP>j#PnmY+mj$xCQ3>vQP&klsuI}(+2<O*HKWfZ=4YES2eaP+@{ax~cGZ$=4`!fu
z3Xb^-s2?MGqPXC{p%;_JAUi%jw6_vOC7srAb1s7&F4lE~7qp0oydLkJwS<h%G#@B@
zzo-KmNAtTk{Cev_P~@Xw>I{|^<rv*PKm<jFK?g!$B@gmJ?7#vQvRPaM9XNr!iKv{&
z1KfQXoo043Y;-?8S6qtO;-0-5BWEUnf_~=iZ%}Y$-=j|7WrP=XtJMbGu}9Ysvv4oc
zhr3DJ1cWBssGlo4U@M1bU<<mmqn{s+=;t87Uaa9gDG?9lm)@R}aTx{p;Qff170jFP
zuA})C5awPaq8TBOZU^IAf<nLJq_6#xG`Tr~ZO48;OvUtX&u0Y$y}^K&ez<tPai4*L
z&?rIa$j150nR`p38xx9(OJus5|Ab8dbP5{TMdZN@LMmknF!eK<seaxkoP#(84XwP-
zdut=?<rdjj3P|=%6niU-r`B6)M4s6!VqbV{>}w2Ou0)lkGJcd#6eSy<@O5iWWZi`8
z5O&aro{rv>xz|sG+d`+TL?QR^k+&Ok^!}Bue?gO7Pf*14#TC=2)e%VN(2TMj1%)+!
zylgA`xE3o(P4goEx7J9h{xNK}dK3`y+zfs8F-fP|E`R@9D85?o&jNq<4{&yxL1)kB
zj=X-njEJ`gf86Tj6?1<Y{VjbK63vK#j~bO=`=MQ4dw+RgHu``+ICv0V22k<%*+?Pz
zGtB8E1q&qyZjngf`>-vURf@h85+%!g_I3Q;%A%Qd_ZjHdQoW^G(WkSi8s9pM6wAq8
zM~feRwoTynA_q_3x=k6fGG+tW-nnO19cj(G>uDgVM*xq9Up1=Jc*P%yzwsGV?Pr~*
z0BT@1>L?~NXcN&9tByho@&8K3jdybSW-reWg)Vr2<GcxE9I!d6Fs#*5L2=QPg+GJr
z#6>@XN~AmySWvJTDj@87A}HZaftu||axuBuMVc?5#fwalzjBTZ0tcHRc92NA@Y$zy
z+Rhhir`)w1G`;VO+WXX(v*d6+cn)Bz=a<5G2)#)GS;JF^skz3-z(>&gTM?ixeQn1K
zHn~gqO_km%uk=mt)Ao5nF_!Rc5~VNk0aLyZD4VlU*}dLl1Nq;GJP1CmL%V%SjRE`S
zrNd))<;DyeIoWg`J6LKq8ve90B#;~a?h><cVC2=x0ryX_GOqF)cD>tAgU_*u{_U$9
z1qDEq5`L?YWDz2U1fY9`25NE1y#hLL;$6z{rj6UW)GI<t@R8jd%_gz{^{4Hu6YJ=g
zOzRa(?Rm2ty4VKz-LGM-uM>z@TBGrhO%Qb{bv-^RE-A0$&YDUumB8tj^iKjn_k#D3
zUb=!ITIw;`mN7=~8>N$0PAwe1YK4c%CKpb(Ome{!6vJ+~7~ELA6=sPiA?t&|=vVVo
z3R9|Z3*df5;_hoiN(h%OI6tQ{$A=?yWKTnndvhERn=L-2L-A4EkS5?+Frp>cfFJjl
z;nzbhJa`Vo)c_lTg$$cQ?5J*F%CB`m(8%#fGt(?{?+!FGdkIPS5xKt6W3Q8;Tl${N
z2Zv3yv#pzPV$78e75PgP$*0_6GesI)K7`bzl%aCB7uM6HDy2@IS!6E}+E$iADWYzr
zd<&y<CU@p=CL5kwdJ?VSTDwyfGG6puzfHcx*!(EAFQMY>tRJGUJ6cDOfk5O{W1E*J
zN$wec^0O@q<3(W_zuK3)wL0H{H)EsjBgZ$}l-{LDt~x^?2+l)Sf{iVrI0&qK#2vLt
z=O+w?fN690G$s|dm0Y*0C3(JY?1w$UX)FQRId5_D^^qxSAg+8hr`xup1nN=VJPFYt
z@WaJY{9l3K{{V#tlVDw80=;1uxX!S5f~e-h(Y@?ccrC4c)f3EmZ7mGEcsEylS>AST
z-w4sFn+p^!=}>-Lx<?7R*h9&A^nGZ^=hu((h-xuchH27N@M{2_K6e)5k((cIE(Bop
zcFlYd;g>|=t7zf)Ph;26`&K`L`uy{xJ}pXzDoo!BP&FCs&VX(6BJN0iX~a~8Zj|%t
zUmJ5rk8$hIkR3mYwPn81+NRB;4W5IGjhCH6L9MV|Ptu{z-o;(~fZW0Pqc#{3ZY(XD
zfR45=?v7LSRg*>@>k?W>IQ-s$mvdwY;_~ihmc>xa$|3yP6d|ofq%HY+)&TX0;-H>8
z-qI2Iz6uzc<tc`&(PGx-mMO*80_dT5m+%cyE0I$BF4i9U#XbGh_nFe*GiZE)e645z
zKu_l0vj5uHN;T!)p~&IT$)%ATJy!QhXm=O0lj-b|XK#9LtA!~%z*AoQ<k0!xbHID#
z5jezWxVCXNr-!o7Cl%XTG_KthN*^|zjaN~1P|Su?^XtINf-D%x>DhU|3v4pLye!83
z1!wSE5nO0u&1cyM0`$Bio1CuMMufqjW=ztz0d2Pjw}{t>U)i*qev+6jN4M=w7YtjA
zBJ*LSkahWT|MI!^T2Eg6Wf$UyfXt0|W%OGeA~@YA-tHk5g5UelU^@78V<0ZAH<GLz
zpm!e|4W~Lz)oWolE5Bb$eh!K4Hafd~mCEHUm#-2R3ZerQ>Gyx8q_XQM<6C<y1`+YO
zjDZ+bOY*Euaga(hPSqM>lA{Y;RyrQiotW5xlbu0Iq!FY%slPk~6yAA&_rLtg5B|c-
zw#6I<4@2Ol#)TR`ZbtE-rw3-5wJwKPBYf?a240R*zaGu=5SM;8hOKr!d$Glv^IZlu
zqx`|?dm9RR!Pl&CZ#95@-Ba@^Fjgvh5JKlKA>(iT!1+Qdf$ip!4_|mVRx#W9$;gM|
zl%)oL-epj`LCK^?#u=WI^cC8i+;H+B%mi2HMy<T{gIv4VMLr~k3)>dcsqWx3d7dH{
zLYfD+We<-MC!esh9|$71We7S(JD%-s1LfV|%QLUeUwP)Np+EzWum_{o^e>p>f1E%P
z&Bn9BwZd!wleoKNkV}0#b<oOL2Kpw_><yCxFhGX*UdNB>ve^HSifyr@v>bwWplyuk
z87TPm`$(!twckflLE7KNF13l83NCGe>k*aPM6T`P{Wv!GoDZn;hE5W2sPfdSb4sp&
z^L&Oqwi(xD8_h_4gg3VfvvT~9(CPel8?2$`0B6jq%)m$%@6{Wdm#bfPS7!h~LGaFW
zX%}+uWE}uDKO16gccZhG|A+e*vjh3un`XL(l6&vHCK%rYByh}kXRI59xH3$Ge+5ky
zNj=Nt0_*YulER*lbN8Fm(e^XL%e{w;Xjy#R2l6E>$B3V=d>~6t(Z$w>*TIL%qo5V;
z_(}TfgnRs&$6WP@y<c_$UTqs1iS1pe$&R~RTZJAAtQ|E;T`^I)eEXYpN+=#BM(Do>
zW5?Rp{x2<nZWa`xQi<#Dq$*`DNb*LhUpmcbx2Cpb0EK#DC;UN?*$RozVxt)NvAi$6
z+f%k4__G~0PON!9ukZuvWq~w41$k%N%C)B#s=Uqz#Q8tt3sc?{ZlHoe?`U%$xkVNu
zNFel<i67*>-4Z7^4_035vm&fk^c_T`%&bTJe#zi6u4kP8MxFT=jpir@`1BV|uI%f7
zmdJhc27JRE$@B1eawIE*!<t*q4>@kYtE=C>#Wx21UcPv1KEQGs>v{_@{HN7KoAE?5
zxuS~yEEC6_=Mm97QE@&*D87#!XN?1LNpg34@R@rnnJ`shqH_O0&lAD0U@sWy>;D=I
zaC>^?SGjD+Edm!}&!q`s(=P5kQ#%JYRV{YL##G`n9}DH5e%JqoGx(kIn{0}bZG7ME
z6Q|~1;YzMyaE%Zi@$LEAr0ug5nfT1y#*GnA3KQ9^&>G_rq3uH%QHYJMVf3QSjrHiI
z_5n45OPswY7KJI@fUW-Q2nA0)Gc{7LKwv;#4sBMbLwxvcX&NK(zoifVN+n(p0w)(}
z8M-PJWc{msUj5xS`gT$==-ElPG!#bM`fZO$oV0bXJelVo$B?Xi2TopVtm?Y^*DSM<
z27kmVG6VBiOb*Mw3|7ih?T8UjCJ&t{q^_jl)iqw|G=@|vhuSYI_P2-8X>?zknGFAv
zckj*P({XNaeWJKsqe>?;^Eq<DDS_QssuKh;1~!?h(s7(ffSN&&a)xf+I&H<+h73KO
zQLh7OCo_T0dVB#u+T5Vp!7>?2%@h$4*}^Mi$9&(3OV7j1Fp*Lq_iS)ObbDv|k!bIN
z#(KF;BcG20h_P8JYxLfGbGW>2FD@pn9<y3+ttx2bM)|#;!u%;)s6c+8)=Oj8Nt31$
zPZ?&py*(-1)MvMjoQ6iuFxl>)w-bX-kfx@gTZUNi!}rmMt7wO<8?ae_UMqYwdm+CU
zq35G`0si(U#)8*FdAf8J-wqnZLS>}Oi;9dZqFk`y5OIV+|N8cgQD|kK1&Q^){>!Tf
z9z7~=Ps_-bCqyxd%ku+c#OsVb(%Mz!rGO=J{Fp;3AD?4yhzsgJE}(7z54++_Xc~Am
z>9laYd{1%7Y;&vkSlAQ(R%>y^HH@t3lSD4mQ=-Ke1dmM{otnD0E<NkYsO8(!+q*C~
zSHx8#r=b-4_{e)V=I>AQ@J2r*<XABEEmZB=Wqn}aJ%u8%Wt?){gQm4^DH97P3zM;n
z%UoY_<n3h~a}NTz^sYTSo66F{<|3v*j%tPE`NrL6#!V=rs!%rMqG6_Q<_tI`v*ix{
zyA9*Huf7f{r4I=HAK%K@;NZcGdqGvC|2`A{b58#APri*vs4c_$-<$vKO8@hk|GS?U
zWqmrJ=*?72DF2%A|9thoeyVQ+jL^RMh~=Ln{@-2wFGJ}-e@c1O@ZAP=Ncexe-aoim
zvKBDHMV6MZe@)My+^p(5B5F%{70GwIf3v0k^UZz{QXX+aFb=8z$GiB0oBhAn_3vi-
z|6bR>t%?7;t4sZy%lp>ZS#2&=9qZo)@s~yTpBK?38jeeIQ~=lCS}bZg9VL8i<=uhR
zum0Tt{?DuI69$e;T6w4C-}x(F0w54r_rQn=gZ}d){O6}+`|UieFm-AE)`C|5?SC(3
zs@VS42<PDuVV^9Ii2v#;|9e-b--C|hqE!tE3Z(iwBmD8(Pigtj{^y7O-&~1N4Va72
zRt}~oe`|ydAYaHlaf`%%{~&+;RJ|IQ3$?v+1B1Uc!rI>vY-WYy?-*}KC;<>v48fQf
zqJJI3e{YA$%z!yHAXno4_rLbnPu0qRxgc=2R44jdBeVj{sg}bf;_n!4l_4+}<#SqH
z-~ZN{{J*}mA}F?Y2e#=+NJ(l&vdJw;w(6<}Y$x4qUsorl#DAJE)<|4`SBysAU@=`n
zQG}QDH|9V=6EN4fHU!3%yRLN_wPjD}2&Z0ku47@j>9=JG+CC<F!Ojx9L2JqJPf+EW
zX=$}*>Q=Jh<tLAGe`Cgc`v5!Gw+*YTI<3cYP`Cb=n_<&p%*D4`UJRM;EqG<c@V2E#
zJ&3DiBkz;@iglPZ<DwbKDFYLa;JBe$PgxbC0neXX_)#6;_}mu`kN9V~JWUrwttXvE
zw3g(#bnD_UpOssG{*=DmsuyxTUO;j><GN*?)~fB;ZRgoy9{UCM_nwLV_cK{kezlK~
zi-fMsRo!pzm|mC+qhU8Y&i8j0Ej8M2wy9bKnCC=sEv0`ne+PY_p|IEd<hnh7x!*_f
z=MUu5k&91xbV29%@u>P%0;N2^ed*!zwbAX(3_VE(DMkbsgSnBZbWV5aD4eU+x*ijD
z)%$n6H@`fvaH5pmkupk`NR}!fv-8ccBd45I4;98Ch0*Gzms)$*p$HA_4w5R%2DE>}
zSL-(d*&%b%&&xe-YlIB7C9fe^^G#reRSVAaj{W4!+{Jgf3&RazKJ7NXlEbQ}e`B#%
zX#<WgQRc+mi4+M|QSZ94zp&|4a%`wlI{JRNraX{jZ)32_$#^NVsI5!>?@Y8E5TUhL
z1`g+K$(fECdK(CA>XJ&Z=5dK(ZKlrY8-JXz9^F3!-q?Nn7i<S4gS=v{mR9$D46sX>
zO`f@YiA3rMB8<rVMrh9i?ayNbxd^aOMOQqt+ND?aZ#^#6`Tlsq-pK-Q_}!0N8$_7b
zSFX&VKMpc0?o5D<yL+6Hf7(WbkxNAVjg-A34hNWm7gHZQc+gtPebPGc{@h{czlUEA
z>wp4_NKRHx)6N4Rfb=dfJVx!W0v08ZPO<#QPXO}mW38e_06Q-lxVa7fb~RI7HaeoM
zocym1HRw|kGm|aoj|T{!JvFU<{W?l-kDiCd7gG3B!tVJWo6VgMqMGrF_034#c@&nW
z5jaf8ymhr*>;4dKNN%VhbWaJY`N14;(NuRA2u&Y{+=>CyO^EaV^Gu|}2uJ<3F9ay%
z&BdcExk=uX8&wVMxZ7v}espQC3<5+15^{>_@H_{`ksr0^<ZfC?tur$fEOqI19B*>v
zjSMLeW+&~@;lT={tv{vz_$^#zqn0IiKvjqgcn>0Mxb|fyP535V=2LGqt*z`953amp
zn4MI^qu3+rGsM%Zod*b^%}&h(d7J9eB6h~lyd<fFR+!OWIQ{u9)R*Apkr)El!Z9s9
zv+lx|#q#Jlf0oapysdd&^9E||VeviQJ}fGtwqjM6gqWfseTpNIC`tbYR-#(U^ipsj
zl>OA&Q$EG|hn8vJ^Tq~V9vZ|owfPbPq}B;S(G~0bCEOYRKhF)q(D-9Ipmk9!s`h|y
z|4d|{xo#v=S-)H(Q$B0$VEALLrL(-dFM*+jkm9N7N2rbFuFx0jfy$b_scCY*Fi6wE
zE9^nXg#fOugff;YW+c@HDhPi#&-7)iz>~tyq|imcf&Fq?)%kOGs@@2%@ZyM*{k28;
zJ(=1*6=bNKtE{1UyeY`d+QMyNa5jFf;0_(CS=Bl5RJq*Sp#yNXjXLI))gMbD0aqKL
z)=<D5uu^g5T-h+Ko^`mM4^~T6HBNwC6dYCzv0U^*S`ru^13pTu?4vD%<fHz4rep|R
ztb8G86gnkpTu4i)9v<d$rlLf83yZTm>+g-2Xy}>iYE^&6Yl>eiu$8Ff%4ppz>|Z7c
z)`T%nU)&UI?g?#2j{PcFe|uwV<H!-T{`Laap!m+qP<!o%?Hv(sqzD*Trv`V$y<cmF
zQE^<>-~TmP{O`=!_b{!42D^p6t^l_H!ANvQV9}J8gmtd*7o$^o`AlC@q?-^ktbx#`
z>bC(eFYG5KHS|uj%*$y-9qK`stPZswxWoB8>vx{>sW(hI;ai_XFEXT^*%pYd(>T@U
zj*Kj~Srihp1|31;vnnYCW@p@?X&1}Mkdc!~dk=n#mY%Ci)V35{m)o{`Ws}xF_9v7_
zQV8I6<)>6zGjsOP3U|8w)F=vTlD#_LajGyK0+Q6Z61yRRWHpPP(o<%>mqW2@PnlR=
zu`H&fbZEt)zyz;3kDR)(;`dKJFUqdS8Sn<ekb99uljU<2r%9c=M)MCN739^OG!qj{
z2yT-n87Pu=jO5>(w(c_@AMkh;MFF`t#ZJa%(;uhoR}bj?u^nj=NhPl3_C-)&sg^h0
zCqk;GzZ~ZlqYX5?GO17aMBsX=8E8GIcUW#S58Fw!%gPb4JQo<g$Vw7y7%HFLpT-;w
z=zvCkkGQO_TdL-p;hO*tds;iypBF4`mDM&?eA=ZTJHye*DIa2~9!yX9tm6x5HUDAW
z#5GX7FZU?0M`&J?mYn*Q<44MuWAckC1CzG4Z^`Om=UE$?r4<Ps&@Py5+uyM1D6N$k
zL>Mn}v*^%5PvQ=aljZi|(cNrazRR3kuFP~pLuX%jh5QJr!CRyzAVXbr-bb(EIIDA6
z*%xh|vs==IUZtbJoaP$*FfWl{XB+fjcjfgoc;|>#=H*D<@{2L;IIgyHEeWL(0^^_a
zPS`)pG1E>NnFQ60<PYCndWLEI#LRHFvisrYF`WD0?shXG3)`ovaj@tN3yY|o3c!cR
z)C8Dlma+tPK&iRnqyG3+3F-HsF=?$>n|aK+38>7h2-hwgylS4-INY}(gPn1bE=+~K
z!T4@A&JK2Byr|CMF}D=)ktsK+g-9u<Ugm1deo!D%yn)q^?w3S~dKRBV@3Sr$@P%>R
zN=+r>xTUd{6@23IY_EoJ)OAlgak%uCGKQ;9H_leDRGrV~!`^<h5>Ih$;HB?cTVG4k
z9^~YG{cG3`!E0%F=I3lh2QWR({6`m6AzV6X-+cyPACmSAI^SZqnYi=mW^zrH%gbL<
zYS;91f9s0<D7RvL@uu%@R5q@>Q2A9>tQWMP1qFrHh8Ev71s0u3OUK*HxepB>$h$|j
z1;j5?57(tHU8Us8Er<<>4<k&_?dazSAJXojdJ6IiH^-lP{Tkeb_T41QJ$2j{L>(d;
z!23?W_e5H2oUS-bEO%m&kin?ur`9g=?WTSXr6RT3vmYv#&TtC>C*i8B?MP%_(xF|z
z^<$rY-jJ`wvBE<x<S~O>#3hDp$q@2kwxYV6i+5))Ko1frz|BcIQ@QItmr~G#tRv%L
zRra#?rRFCkH}y?IFmSrCvN7>+$xO>tvI~W4Q(a<H-}q6%3}1xvwEY?vpVgaL{HGFi
z5(l$}BQn?gc**IzE$m8`uvV&}z(@*L2}kBhH?=O$bMTdC2<D~fFHJ(;UVpDwTpWZ!
z-i*tcTqm+--TNK}qbLFt%YVGt*U!h`{|tB=(!gd-6kZVwEyr7C>=q97<^HcIOL!g*
zW|2`(%IgNx*@xZ_H`I0GV_Ww?zkQkSZH2S$P8*kaB_W4tZlt`vdRg@-urh3AVLEAg
zpNl|Fw|i{waMKuc$E}gL3D@L-?e?;d)^(1t2Z(W9)zePD6M*;RPh`%%W_VeWxhY_p
z@m5OYHQZKL)XxTd&g{*9b-g)XT-p^pU6O96b+|iSq)G<PmNS54#^^Tx%vF0=_OOt8
zqv>g7p@&Kr=rb##7kN^fa?qSImiAo^{gQqqF(&y_59~u>H0;;iIZW-NStCpn62GsA
z48zA$=9cvpuiwLr#726iqhRM@hk7u)*wu~Wp*7g_4Ek~1*pcFFa&t7s&!T41o-)_U
zJIG;_fGF$}NmhE*YDf$le8Xr~-|I)M>{=IW?Gh8Pob)H|Uv@#Gep&DIG}{m2H1QmD
z7S6N_Z|_GHMlWz%%>!ULjUjt~n#3GUp)%1Q5u&X<ak(mkB8Wq7p=A}#^CTk{U0|ei
zd@;sjwwW2fK^$_%AN}V+45uCQ-!P-1f{w<<u7WWmB7Pvk`1{`+VA>i{fw&0$1c=c}
zI-t=gJ2&^*ag$Fu_i03?$MV-1e-^BKRML)p=@Kk2XGj0g2JdJgGC3+s$wD6vH{Eul
z<@=iB6UW&iC(;?d+V1mh3`}Fq(<Tnfas~)LVn4dalEy&FX;5xmFJn2^p36PYEdZav
zkyiS)V{5IcWgwAhJy?l4?5cT5OyS(5{(-foO_IPxd5#rtN@-G0Sx@HMti^#cW9or_
zZw&*0FEg?^6(B0EF2^PzQpQMykD&6|?vxP-BWC5}J5q~}0bAChd)C<~qH-`GaxE7K
zttY=rBOWT<6rUa6m-97xC}R+MPC;@wDk(uUs+FQeC;~Qr(Drf`I`ojtdi1>Bo}X}}
zi`G~VLU*@dUWi>(*i?*Gna#$@%Dj{uPvm-JxJLZb?VK+yO;uh;TCW&Gc&-mL5IQTe
zQd$j})>=Zg`Yvh?6DRb0mk;AE0L=t^Nypb#woLnODGH0{_?gYs%C%NWz<|C^+|?oz
zK~+DdTfoVUlz<<uTxH{Aq!~*5{ri?;V8TJb=LF*Qf&<w=%Gk(k#T>M13ul=#kh&78
zFZ~(e!b+@C*Rn-S>AuB@kg~fOf^srTKu8ORP41WehMT!DfgUY^5Apk}O?kHmks?yw
z-|j-lD)}tAJhV%Cs{}{n;9ev3;9o$awN{OcAoH-;eJVtP;r<axT$jn#DHo_E`K!CN
znc^dlx91H%n)(J?%F!>sdB|0h(Jxz$s_bE|_8?+M3;Zac%*`BlBbT&q+=T>A+&w?~
zxwRz9ke3*jNFWkXX~Vr1;YILJR)ID8V=3cP>xWbQTm6qjs<-09?{|-8E#9hZDW}~L
zG%$@a*xsfnHYdPvuBtlUAc;<g7TRZ8HyKWoL9FZs`%=B!b+65T9&l3NmL0cA4qgU$
z+oRjp{PFG!s3wU4CKvsFos<AeIr;stj-$Zv49}dkh5O{3B$6FIyi%9Cgi@2qb&+Ii
z<ppQpEWX(9EKNiN4OW(49s9;e@~J>N;k(myIO@QOGiM#=xM>Ftw=Pvrvrl1RA=tt^
z5w=VtKOl0hyIp3=8G3L{)%4)dwDc#w{1M(NG&5V>E@p|!L~_1#fiZ@j_$D=3?%yBP
zw&V=>Bg&=<C>6_4zDx-f#FU}GvF_K}^sRBEQo%P@PzEVj8$NnmklhwMcn~$-a6^}<
zvGYZ=n+iC{7nR)SVf9dc)OxBqZ+g_i(M>41_=?<tg(%;W%Yb0>b;OtMGmj@Q2;$PR
ztha<yl2vsV`J9rBj{MGqM9qj`k%Sk+i;LrPBdVi<=%wJw4VXLL!p5S7LdX|{C5x=b
z$kSU-aC7=WCGncP%jW~x$^0?IBHL#4Q*q9LUY8ZN$t+2Z{Z<vnIjp4phH3ietJe{G
zkg4U9<^?q)y(M0AuKW2z;sZ?I&iOvYE#}$QDW=Q28~+EeLB?YmU2-eNpBIx|7?5(%
zTj)U!rM2U~ll81w4<pF!LRWH+I`-X`WHw`9(3xhr5qd+9i&1Lo%$Zj#$~-luCHi-9
zFMKzp4msgGV{9|}ynMEJKXHq1y!!^ZfS2l;lh`lq$k2p_zB%1Hmm7sf=Eza?7tHV=
zEe7?SzcEBu_a~PkK^?XhfZ-H=)@(<qoLb=cMb)B8K9Y8UljZf+Lb;Q!es-Jp@M=_+
zo8?vb`z4K*`AiMSDCg!V;@%m)*<-~j`R#37J4QAgnclKzY}$9XG>-^$`_>Px9Vaa*
z@)f7nLu4+>E7jh{W0BKY^+qta!e7ljvJ5q|3oMtOj$LoaCm6B!!KdZU*_RwnD&_u%
zF6%IH3gyz<r{-eKm+o$D_*i^3Hc|H;x25D`vS{n?O%Dq<#e|2Jb?(>@`8jkQs^v!4
z8DXS_in(qDNloUh=!p!*m-UeK;$nGBdkkxIG;$^=LB$5JbqjRbc=N}b*i3ZaB6u)*
zAdo=yLVt_|Ua)YK^tdW(CPFk!UK9kfX_Z7#$(<fW_j+6G75V*t?7ew7)NT7eUY484
zQrRL~T1b|%WzA9)Mn#0lmSi1c9m7~smI`S_CL|f_80(B}5FupCZWtuHv75nIes6W(
z&+&8rKF{;`9LMjE@9{nE|CBLvz0d2s&g(p1uh)6b6{jmkZ6F)$6{xXM0kR@(F=C^A
z=H0`)`ix)2PNdn2TYqv-?t<VnUywo@9~1LUTy>mV!^Uv}Y;jv&ge>yiS~c(}#6`)3
zF<Y#7+}4oOv?IQ2mMhSIATxekTjeW9U51~i!RJd+`U&gDSx3)xt)OyWYkDM?v{a_F
zBb6hty%EL?T5;FWj!d^5lPWK#RuR^zbvbHJ&uY!+g7mT9v+pVY6c(j#=zOFw1n(GQ
zEpPY)0H{R#h8bL2cHH=2PN;k+&u;cRG#f~O`4Ye%qmvV$cxHZ`C<mrqeoC$dT7g#5
z%Q94kGhPL#Ft<G@;FzSC(WnqdA2!UeS-m=rVIq@+6M#F<;`tNbmMMQ*zK4tER{hBW
zZOtakG(YZJo|W4n_&r#i4e%dL5BLG{R>CBH4wa|pU6%16f!GLJ9`!TKq(=LF7oRGe
zG`Hx99K1&C6AmOtsBamUrjrvp!6f%H6CMIVB{x5I6@VGViJDz@f-G0ADt+c7K8PRg
z+>qZveK5pF>*728YSc=%y?GSOD^Oo7bCm8I3&1<p+FlbMrgCLZlzW3DES#*t3Gdy9
zOdI>`pBCCjQN1G(eDAfPEp$WLT8yq<9-UgCl#u|rT8q^WgXo+v>C8eQ)p{(~?LH*Z
zijl>MDaJ8@cX5LdAsE7L9pK~1*w?H!@!Ai~Zg#cBT-mUqCjdtM+8oI)U+$y2drm&w
zWbv=WF94>mxChjf%h>Fz-5;?<a>O-?0z;r3gUYA0hd=S7S4F6jE7bQ%^RM~pNskoR
zr_0-2cpW#87SPa#*4SvpC>K8yUWECqO9v-)FqIA6MHuBsyz7#+l!rs8tdPgYCj=eJ
z)6JPU-4OHB++>^8I|3hPSz1RmC%P)dLazs5Njjh1k^|QFO$!F6X$VbM5z-W*0em|$
zVb!hOiOm?&n3bCZ32N4|<}5hD!9ayk$+g)&CzHOdgEdkdq4ph@zP0+hOpnFzsWr+r
z5&M_&A!6x=MU;?!U{V2csJHSxHHFje=lZpdD7Ba+9h3ahg^Ij4o{2vR3f_`iH|{eB
z4Q+j!ee7)2f2SzT|NV4Sn-C7~mV%$tIAh`Y)31}AQj30_Y&Ls;w3hu-#EJRq+a}iM
ziO6MEL@$X`kkfoDMbn<4^rSO*4k+kCKmzjA!BDo@AEfEF?+OGt4`N?skx5b37U{DU
zVZ<YJ`MaR#0%|dd>6+z|JBn%WY60mS@dw%g+UqBn6|a!>66BmS<HRa*H7ICG1d5(H
z92FSBZ}j<Fg4(@1&5u*fu11gohbEi^XOB-6`C$BA1q1oWx1YErgCKAw{FVoGhCIZ!
z^B~#ce`9pbU8CD8L=)OeI|S%TkMa_MKwl%OE0>+R!PvoY{Hh}OW^hK!=ft*Cl&j58
z-JYX~LX_7KOh_)0cQmXnyrx(`N||(gYWd;qc>GASGvMtr$++-ASrbFylp#y_<&eI3
zRqNQKL}!^`+(gAOxY0~34V(!aFdTK4=>?1A#YamvJ>1O{&aWMK(dD)-E}!*wZ8p3w
zHLk8gyV_5wWr=}US8jpsqJ;|fhsHQ3ABW^sfwLKi7hiYa6J~p0qIAUX0+$w0e`wN^
zKC+aPw&fR4@+w7~+VW_#sDM%oQ+dPnQFCrWH`;6l@>l>)*vLdTn{O2GXisg(Y|VAG
zl2WEIXsAn-)|&_hqAb^1tg>Z6rSg?wNFL(L#C{{mP*CtBEmTebz8t1NA1uq|RTTYk
zv+H?J0LPdC6x_siu!v#o=GSXB3UXdzramn?M(6IMx-kG&Y5Fl55-D2`0NZRcm)hNk
z^=jlkjmtY4g5f1Vy>0Yx+UAkZW80eUv6NFgqt%F!6HK|Bc3j_%!#m>7s=V+@PVL_w
z-K3fj1|1T#RQ1lZ`Hcn?+7Fy?PO6aM*G@I?T~4r+veR39_#wV25Wfr}%*gZdD<SSq
zdH~OQ#$@zL&<qQd+kY0V9W2QUUxr;QqTg0vE1$BoKb0D2AJuM&sfz~ao18w9C?Amn
zPVH(@a7o}Ljx&}|#mNLKM9EsHESQYc_n8$c(#Z;*@)xU290^3s$J0Qq*1ryDbi{Rp
zVtImKz+ch_<3i)s_8Sg{#g4*10F=mDdg`fDeKIrTum?G`smc-;Bu9eHIzM>hQ(6Lp
z7PZRS&Fp#S*Scf4Awg5DSzjf$4B~R2UR5=>6Ouzgqs9fVWM)fNsid=Ds|!U{84a@<
z3UXL6ue62E(`@--4%lww_i-n91Ras1g&JEBlpmHzNcMIWn=t8>XwkA#%;*Cc6JARy
zSb(E|eZgqv&iq$(2dt5hlNhoZ;`mgIJRN3Fdci=0<1#UO#4vM`FIa&F`qDmlXuod5
z=x;?QAi5y0qIT500l+ym<EERNrNXLAvcqvPr5PpJUG>_D%u(ioVe;te$Z~dg$F-Ko
zFNO1kSb!;tueO?BpR7;uwh#CTe3P#1pfv{S*V2s^%bV@YPL&jveF;JolXM9n>gM<%
z<q3__jl^-c_usRBDAGciro35J`!nhy$n!+To(sJs4Saigi$vO|;xBFIO@5}>=mE@k
zj6!ZL!)5P2v84y{v!APhJdLfRD8xNkRb(sKLdu_~c1L%C{Rg?4B`_Km-i{JGq~=E^
z<fza<>4+cUA-(kbE)M}Fq$*e;6nin?#Mt(C68TQq5Efu_gufJZX7MG(=XONJ&c=oJ
zRAejKjP;#H)fG>iBZmw1`qvwk5uR=^lS`t_o3H5>0EOIcZiE$v4i4Vz@gKrd0z&6x
zQL9&git8Qq>n`$f*9qDSsi-0pN6X-e?&6VZ0TYdBx55WGF6k{DLGz}RG}SvfopSDr
z{~_&h8}(8>-arkY&IScCJ9x~t?yjmQYC?VHzR~@d!#_vtbU(R6e}FA!K7R)?-wN^e
z*cg17Oh;raAEcHqDD0cA6u0>E-UFcTNZ{7yHSd*Gx-D|KYl%E6A=Ot`&LqC{0GsM!
zD{#^1;mn|TQr{FxkJ#NkWot+YmCyg4tqG0NLsH!MA6vlCTQOTB-_H_ry6v7W9wJAO
zFrm5cY25T2kw$QIKyF7xxp$*ZYM`}|z{6eE=>qhXxS53mp;HLA?o0UD!*l2p3j#^F
zQ?cW&aO<W)&(UU7(c6u<&c|vGytL+&#Fu+A)cj<H<v-UrIQdYQ<)<V(n0{o8p@}*u
z0gSSJPrp<3%r)kLBud53+vl;<DTb67mx7&qN?J@(qOF)3+4$E1p<KRDzF$=5VO1lS
zspc@r)WN1~z@tW%S4RAFO}rmiq61vRO8u%&UyR*g{BBGM!E%-QM;%0yTnjJX-Tvb0
zEgzDXc)5Qe8=pUN%|RoASww9@?GcS5kP(r$yQKW-ri`;@9P@Fw3YS(i0s2;;+9<;O
z)O&f#k?qa7;WanLR{>_8jl|Vk8CTzx#7v6l5LD>W&S0C@-;%?k^#|WnZqHp{sQZI-
zS=Gg-d^>w^Hl6KY$z{RC?K|cXG!C47sn`_wYd~tz+xi;ncu0&g@87EI<Nw8RXVTiC
z+NgN07&jtjefDvv{2(*^6pRa!UpcU4%ht~cHu2D2W7-WP%&N-%`_?s7>2f?#S|Be*
zrKoAHl<%^njqmfNm2R`_!ipwy8ku(#)SPv?NqN1-YB4g;+K_b~mQHwA9lS8<O?Yu9
z7v)<iUhSlJIG{vff1Y>KS|X%M`w!By==IHNo#a4|(KyJWdVIxBKWd`pNgI#gR7o#t
zbmcH5)K*j<hMIbYv5mG%%f`Nr;+E*+Yd`0yM`{L14X~6ulJG=*$_@K%>!IT71Zy4B
z9nFdF=AF;dJ|Jlxftj+(KTEF8J!ucE$ZF+qo#8*uIDwd0swZCS;nZ|v4!9BM9@rwW
zZcJV#Vf^^4d>wo{d>G4*z`>J!Bl|DH072m^pa}CBoJ=pmJL3q#P%mY3L_c4Dyo<}d
zZ}l(KoTU&lNNw1eFLhFI^f9B?sIbD6BKz5t87puSE|wEP=p(4{dIuO}jQM4m%M#W)
zLx9j3*8VZ5bmLup*|%LL@<#a-TBYm@;oC)S)yU`V02P>`f4PvCZ8>T!-B9kE-I>(z
z@si#+9=5f&1SF7ULuv?bqIr$4%?TRp5DomU<#?voqXG_3Ya;bKBPj(CjGwd{w3zs%
zI3%=UDWR1k-)NHLvdjq>C(Wdz%bKJ{151{mBbJ}OF=Ika(9X{^Hu!b2{<l73YB)@S
z4=R>TM>(}(E?Z*|RUj4!x2sh_0r466UY9VUc?euq`t|!!Zh;QPOY$x(0EM-<nnKoC
zy#u7uZCYN0^3Yiwn`}oHj%JsF3$3yiSPCX!#P&Kgl&h#mUe&qm87@S-Ak_SaSEL#=
zy{z5RJ}77!Cs57D6kHOU^?dDG2OTwOXfunUZ?3nl+<WLyxfmSvf^a!;`*DI(IlHD$
z1U<2n1J_?)xm}xso4vN4D9r>*eu*vsz6gB=V1#G2*bX(~^Crl%(Q^p&0c#ii_n69R
z;*#{p1GWl)ie{u9fr~7_hG=W{FF?w63r?qnCIM@+^|mJ&HhCkGm#iIb&G5`(J)7^4
zZro90vAvdr?zKngVtus;@$^zuSWsEOv<=QEDz^GbXROM3pI$9%<p_B*56xE!MPiwp
zTirkE%ZRt^gI2~1{$LBvI6b%CNK3BXcr1JXck`ivh<U58bAM8f{{t}rU1ie>0@?R*
zLj2G+2D44<%*HBK0(|4pb3g!q1!|M#0nFe~iAKt6TjHCZageWIh_t11P&iuzemNmv
zZcC(_FkymtO$<_AaIV}b!}CjT9KjSsr&gtE&snape@H|-U<U=BZ0;s<7G(1#WS3~V
zT#t`JIQzuBRKQOVoS&GjP&6qlzIh3F0>TX}{zr0a^;Jrx55xNEVG04!qlSxCq08*9
z$!l0d_)uGhE~qJ8YN3s)>|KoC8cZJYpOD$!H)lQU$gvyU<M`3a$26}>nFugJT%6>}
zdJQ1}nis96CM!Z$V@YXG8Z)aUp660di`9N-g6rv@mkea5F=WDReM1hizL{f8(HH!*
z>heV=lN_}|2)YX&GElI%7^NRjS07e^oho5}pu2kOqbG!^Ab@0RCKtb|*(4{v?7h>A
zY?I|GYT_H%Zk5`xVk>_Kkw`a>sRDQ7SfJrOzBNb&yueR$5f&hNhz;P{v}*{PN`Q_5
zH*##>5Rge`6)oVxK-HIW{JJBo2HC{{pW&Tm3EJrixXcEDUMI%Dpf`~H1vx-Pd3*FK
zf-*f3!x0O}0mWydK&|1qcU|<qy&??KWexX-L?7Rp?iN#?lknnoH-BgJAlbb|CzZ?Y
z=imfpUNn~iofulxMq?oGd!6LBuDHtntz&x6Zxn(pqLN3N{jWB0!S&XcuXRL*GnNOe
zkggfgKxJ@m!xVUlb5w?weV>mTsk={<2(G+LNAxf(n1xxD;jOk(Eg*PDKqz2S{=-tx
z+5CqsznsT~e8=;jv}FVRM&tM~mz{y^0P;F~5CBPBz)a`RLaGY+GqhWY<O5&}pOo;y
zoL+<gssk&Z)ka*Zlc(?I$N|eatC~Bf;flAq!6VOm5()-Z<jDH#mQW-@E;6^g+r)N<
z(jIj9VEH;NbjR^5pQI_p&5E&AqR=gLvU8fuT^8t~Q$7MIQuyI`V$4t>>djUaezhzQ
zXV;F&y6S36+!)SP48jk^K3Yh?1{-9#mf6i)Qmbj7aC50XhgpA`+SHGfO&AKh@t-so
zds19e$zTSi@(e|g?KS4_p4m{ZHmwJ-vrX|v#An^st?Tv-O|ZU-B0{B1w--Q3gNHZ#
zXD1QKBOn%Mr)Nf0`Wn*o-vu5lH>Aj4RC5CG{8=AvHAd&-$oOA~8tb~>QUJO@=Lwd@
ztIwFNC}21kGyUA0FavVqeY{b<K`UIGb_=~TI=REGiSPt`&Vf>Cu%k8&w3yv}lzJK!
zrvBlPHz3B0VdoQEJ)Ol5_4Dg*p^6$6jT+;I@?*Bi^pzO*JYI>ihR3d#`!@1-p_h-}
zHWv~&kHMEOV1f#EdSL1PI0ZUXsn54ZJ+eLF_DD?c*`DZrdRz(q$@QPq=m(#sxTp=-
zSO_{?HMTU$;JFzldaMg?JZe2Osm}OB((44hE@%8^Eh{gP%j3s>ukheBo#BJDP^#8V
zP%uu6%|?z=6!xLz0#sL=tp1kwTi{4=@tRq%WYkc(TUozanePC=$W}8Nk$gV+N6&Lp
z)HTu&(8t~1mD*f~I+K=@mWA5@ac4L`S^90YOM}`2x%}PQ+gTAH12*daAlVZvS(0(9
zeRdIl5M`N)>cNBCBc1c4D>dtFz;Ir!evY5IPa-JVWg>yiWdXCmsBX|T%SrK}b$u3J
zKyx$VzvDY4;yg2dI5~ZO)~i*JseI}^fk^=voLg=)li%Z~2R7+-9-|{(oQ1Lhlq10F
z3QQ_q>hYJ8Wk{?H=t`=^A~?pkJpqqS#b&`H@c7l#U6<O*g%%EN{|v^lal)4ukVLS9
z$O85SYtnvs9hE2=HUJw;hd8)gqVtx`@frYkk>9u!RT7tvHLc_&91?h7<fhYn-)SV1
z<g~(W@(7QeG9%n777NLZIR<O%`QD2lsI6KLPAJ^yjenz0uq<pKlG{-wfMVkHz&F2~
zenH6q7YTt1qlH<FKb{v|sw8IHUWM$R>a1FovftsT_HN#S2y7zFS1xk+btu9(A%_l@
zKZ?8y4bU@NK_~(JTRjA4Qb@GmR{r=Wj61wt{f%}ps_rbowNfysXaXYM__Y$TONQ>^
zYpT8QF2aOT`D+6_Vj1d`)C81%I{`aVTB5gXEp20a7f=Xy)Kq?e*Oqfxr{AFY765HB
zGZ0+~W|zn3InS?5XxY@%0(kaG!kloOl}k`_V>gEsmKu;0tsiODdM#;ds?lBmPCYj;
ze`p6+*rq)U5$0FhuQUM8OD~|b5EK96=p#^)<z?5TflE#bWz*=BWwNr*#MV;OjVNxI
zfLor`+gk&O7@i~tKF^-e12Ni{&uwDgBWZ3L5wYZ_;q%0j&8OanVd341a>d4DG2rLn
zL_qnbd6P8Mf_J`Nk+`a8_bb4SIqOz4b|fzz0Xuxk=vJOQSm+}e<WxW1+Rq~RROy1;
z@h-bh@B^TU_4Yb@&E<GYDQuK}WZ3w{&}3O`!Drfl(w16z`dN;XfaFUiq%ogEbos?Q
zEWm7*kw{LJWos`JD0OmCV2kq$D0R!yXkX(?h7$hkQzb*kmCJfpr`CK>^S$ms7cOPm
z9@Sl8P>E}I0YJ1IKp0drEUSoL!#9JP$lcYeffARCR*9d|oWYGK`yAU`aTOy$KREQ8
z&U;C&kEa%}95&>u`)ss;^U}qfUO4k)mqEW@bCsGsUM$wRsyU`X0OvR78{HuQpayK9
zK0$!u7WYV-+C7(RFHQz17mV1Oq5<Tin*fDU?OO@d!F6~W1GFc=&=yFnzuir%>!(}%
zklkt61}$A`fNJZSABVZ2zF2$}Qq!T{sWoI&bOqbH*6>yCoExC(QI#b?BzlL@)_mF0
zGE#K3_FxD8l#03Sb`7@9u61}f(&m&)7DK}y_(6$y5DCGj^3&&Q&3&kEjYWL;F%gYy
zfIksiNVDDE{t*ttu0L}OA$<&1=rMS9gAw9mKDzxq!DiN_@K)X}=vC)c&p->rxx$Z*
z-)3`%VjZxdG|*-|gm?|!Rf7=hCsn|p5_jQ+=`FE8B!W-BqbGL&=qw7SDM;cYc~4TA
z7&9~GX8Jpbl0LOsNTY}_-b3ZrpR??_xc+^<HXME`*Ckj%F2fig8G=+P_0rGXZ7oB?
z`^jdm(|}50<DG?bRvrwRyV1~nN3-g>h)`D!IUP%U8R$Igm={#GkkjQQZ;DcA#+Qz~
zW6%6P*(4JctEmh$tm@3BW@-@|ji*P|jA}eS9x8YA%F>QJ_a$vyE{Z4N`A2Wi*_*kb
zW*8@t4qNo$oNViu@A6%j$nc%H?4=KJzS7N)eQce!rddbC>6yyP#iaVJ6Ix!MNV?y;
zu6i?W_F;I#QTw7P37=t54^gobGJkjD6dg;~3O9(^;yuHG)$_B9Za-&`iEOs^Mn_+%
zoX5J|)n|3`EQ6Qz10t!3sDKGAk^Vv)^=g3x2mJMVYK#+=6v|c(!qkT010Z=I4NbX8
ze#xQH;1&|L>2bo+bIQw#We5|U!HpZ?2T~GKqw#NZOYwC8QZYeo^dX*IAoH{CJ1t&2
z$Oy>RKnG71*=%7tDgkvZiXGc;S$IJ<HUKtSjC&ik{<ZN00x{Es^&!!A9Z39Z7J$6o
zGd=%PB-fV+)P*;+DO%)_Rm|)gh1S7or^19<Bz^?lsAJV_RuKNIU$u9ogM^9Sm75-q
z8IE%32X+ADdo#oSQ>%gO-P|BGssYbyUI-7!Mw0&1E7gUxm$|&knQrFynNS{{8~)W=
z-XfzZ-3m(Vnzx*8MaZ|M&ZnJ4t*3V@)D*Yfg9;iIpU>Ylem#jCR>YQ7>G66QI1sYI
z3TEkJ=<`{pvW+zISbWF0%FfC2T<J#4Lqn@`;4_110!On}CqTBIsy5u!k0^7>Jwwa%
z#KQT9(OGEMO1nzcoj{)UteIyII+jyjmXtjMNK2wyx=<1?>jXhI|28Oi!k=yyfX6<g
zq4$NRZvx`>_4~ep`}K84PE%|ZpoAI}IIv4<!HBdfQFxq0E3NBwqDN}3*~@6S$|j^E
zF1}fy9#s{mdF!m|8}d_zl<)Y@Aluu@3<%9Q-Ke`zmq6h{kJELvLoCBr0luTq$=_pq
zEoh}Z-D&c>X=AD@lYa)ieu{wz*a5zLnZwmcRJSq(5*=|uq=t{g;Xz$(QP3pB_0Mp;
zc;*s)asl-rE?Z8LEG~FDt4N1WqiN*=#?JW}Bs}~Sr*3C}p{U_!{AEnPfB9sHLQYh_
z98|OHyPpi*3<qOpNlZTAyd8=h{hN<*T^3~dDs8B5#Dfk%+Wo_YH2tw{AkDob)hyKJ
z3)EqrN){@u+@O3{=!cSMEo|tr`;W-|VWQFO06<agx_N^8gfpu;PVUBw;KK-T*V`CA
zvN6dKvD42jT%NL+@KoTg5<tU;V~BuA(9B0CT+Qi9C>j9sx5>uT37Me6@rv#?V(M}X
zqIlZ6Z!R|nh|5D}y0XEzuiUPPucTcn^5b~OPQ?lDD)FT)omE6aIFk>DYaxI%*uPb@
z^QrNFxvcuEiZJ=bl<`@>lnrjDd^3-Mrar~>Q$)5iX}Vf^+8dAY1vO5y)4d1Mp<;Bi
z);;dc#BLu2!cTs-u8gD5rv%Ml1%6%1>gyRD(*4n^Y~6#V-`l$k(%46_)hvLjeE`Yg
zX&?2v>ubLw@_l^%M&g6AzFW@T0$v@A#8jZ;B<5V*_I}a-A)jD7mhz0n><rB5Lc~^C
z^y5w*Bgmn=L&9GQn{=L?*;vypvKISPxDsc$GVt=noBnq54P})TShJu1Y^tX3^kKpq
zD;o^NzXgjB)o;F6fJ>z#?ox6Nw?k7Za#Zd3i2~dubA9#xcQJOzS1(+sdOp1coKzQE
zqEeGVLn%~cGKH}`!wyi-w>|GkD%dGr2=-?6CVaqENZ9GE7CCb``x$1Q-tbK6F6=|r
zm7e>O?w+qiHbl;!tTzWT0_%jj_(0e)pCHn202RZY-4SoQc{!@VxFfNy>)e`R!IYoM
z(s*lSVnSe47C#?rv-iuQt5jqaxX^Gme4l#zg+fL^XGxkMSgnp{o&a*~L+A%gWsaXx
z>n<lQRCNH5iL0#u97(=0suEJvUmrdWFC%<=*!ZrhH6^lqO6BE|M5b%rY?ROsZ|aQC
zz4+8!z}+pl+nzuqn;fmPuUj|06##HAKT<AY2s@WHZj8*MD_W7rB+83{4QS8K1OcNy
z_=y4U)x0aUI1<ONrHXRTym7CC=cZz1`G_0iirtyCaOW}~iQRMR`E~Ra0Utzak~YAW
z;N(;UDTzDRckrgekZ*)3j!bGNEi|Zf6ZqnnwOew%=uc5q1l>};?ER7?!|seKH-|~P
zWR^W4=>EE6U(C^@6aD=_v4aNMA}SV#dy25U&I`kYLWa+sKTzyu{x1HEmKjsJHieEm
zQvPdCattSK$Hv4Lo=H2awdUGbWBPJ2cIs(H%*4!PQ*6_2H2|c<P)@yNH%k}BI<W=v
zj{jCPPz4qG^B2?*zBwuJ&Em7HdW*=s(AP7FlNwU=>=7520^Up&0Fb!MTST^12cD1u
z6g(;<HIG760dX5XW~4kOqT$UZU{}0IbdDIGucd*OrZHVibS&jCCvyC7=AV2r-WClJ
z1UmAf;*agOn#pDlK21-2-j#5u*}heL0ZTI01L@~ofZ|IBdt7m)yxFL%c0jw};^H*$
z*zLOfqzIoJ%uqzL000Bf;f+k+J!|50LZ6--DbTSwqJ7Qp2gp{xNR2-C%|pHCdiio<
z?*M(%tylCwQw_{J8Qm%g)Pq01`A0-WF;m4CP#_7nWx4XJ-8tIQMPC!h4|__+vtXZf
z(x*%72Y<M`@(N~|;OqgUom-r3y@<2eXCpul{szdPrX35X!n>^c@-_-a-nAjb9l_@p
zxXhf5tg;v`LDx+?Y=yt3+iOd}#BG4m?&uti^S@8Z_GZfP_cVIU<-YJKk0us2BT|td
zH1IPZg?vY&k;W(42V#4ZaZr!Nmgxncj3|uRW_4ad;Rpc`lOOZ^hRFVYh{^b8+*7fl
z%8VUSy9>}2CLDKr(9$`LSF*QW;dy+uHJ}4Ec?+JKNGhD+FG_w2!suOO*35-qFj54a
zN7Lrp6N^DCpNj!v1aK8EPN!G9P&E*!t91N`b5J(h3u$R`y{qjOGj|`EF9(0;C+pW%
z4D-`GEP&k}25IC_asmX*dmjYI&NuyuZ{kh8zdnC6pXgKhm0=<t(|ZWFv($Zk7kw3D
zQ_OiI(O-p3jM~oApw<9M7Ji{TdKOO-u6wG(+a1~c<bNAnuJFUDE8`cGO?<kMO_^HG
zy>$c6*y*Nu=kj7ISoN-7%LiCUtguhQTa4J^LvSzv{D%k))b~VhTx)k1UxDES*W;Qk
zYLOt3s}sCMC3ka$(`A*c1&xCsX#wZ$AU;Nn&itZ-Q#0bM8dwvypS!&s=1^1zk3rPV
zw^iqx%!47}JqGgc*=!APel-L>WYRBP<fZQQ?({mP(ByuGvh18JF}emx98o&73209q
zr}m5ZUTy-<>J~gBajW^kblOquS8l7H%Xb6;U0MB9fo~nX?GD%zY&5PC1J+W;0<0_^
z5dmog!m4WtX+ohgPdqROAh{y~#_|Fx0DxgvF@;r2la0hC%zxpnR~n(LgfS>_4g(kM
z6}U-QIey_fl$XE<q-l5SgD!6(&*D$C?7Oj~N`!ltm3kWOr7|r7lFO9&{Md%~Rwg?*
zQXwPt%UMF{?5no-CS$=0^mTxm!~gwMZWnM9C*=e_P*9#m`+OR*Ojog{s(N8BKrI;Y
zg9H`qi96ZD@A}6&l_>427<5HipU%58{hl*yy`G#@)y^0@C5)zCk$^tngHB)&BZ_5B
zwB^2FeP-TU5>XeWUHq<!z>HN48mR)`CovHmLneH2rIQCg^Cc7spX!=8SblxSW%@$o
zm)mjD9Xju}ztKVg#4aobR~%RT^=N?V@19=#uby5v%2ueQ=;8E*frz&Zcr<h|OyT%+
zV$%rFH3+RJJE5JB6S9bsVSz$-`@q;e?oO7js<7OM3|Sy@%bf+3uc4Hc&C3nlO7z4Z
zTZ!A%j}bvWlTzHJbo<5`)Q2<J0pp^EdwYt~NcZ%Lq6{KK+rX~oFb6N?pTU`iz!#A$
zS04NELjste%k)NUq4ToRPn&!`au>RToF}N20^*GK11boU_wS%j-48V}Ww^c4Mhj%A
zIt!Wv*#U@!meBmyQdMja(DX5zV$$_&%otKpp)C9mxG(QXs8!z{HNWAzmX(2P)_F}1
zu{O`sPS}9A2||4@L^@ieN=fEB`e$?trx`#?jGB;-9!(%IeGj97Oay?u7oQ494%mdN
zz9(lhY`xl=|Jn@{XmSZG<d(4;BtR4&gjjr;1%zMM;+p899^hh%IN|hp$Vjcl__MUC
zf)!E8CU&5>PiH{evx1&&^M#<37YPc(bDA#z)xVUVtg1NEwM_hc7C5as+H$7P*ASU#
zyG30u3FqA*4`Y%#FJ6+`XEJ+$CK@CJv;q8FdBaa}N7c`?hUKAX1?~ZDNh~(W7FUs4
z&by+0T&djvH$%szuX7_6Z40YYQKL5B9G&jvM}HZxR}Lu5(Ei}`{ei4Te(i0JzG(`V
zT$HG)Iijv&Q7Bf^%D7~V?9uhI%_D|nt2jS+Ccxhj(3miy#5(VgAW)!(p~m&C;uyBI
z=9UyZ%goN84{v3$FwgF{oO>snA%$bfX%=#*a@D6&p+Ss2?MS-QA)`xf6`<g}yoN&n
z!Otj+UniGQ0^~}8mbB0?ToN>>nQ!R(-1C?GC-|6HU_r$zc?|6aVbZa4%l=53NGB~s
zv(ERq6+})?yKAXb>9~@hcotS+UB0;Xg~Ea94Z#VN^te-y0b2}-DMfu%<<pr{Iz@Er
zk?RiT^z>bf=|U+v*GFx*OM`ClZyto{-q0^N7o=uIbnCUGP^<S(W_L)k8xI4@$)14C
zv3KK5<n`ubMDuR`{#M=cEf;5-x8XhHjmg&c(wau226E#o!~@7j8urK>pb4PbDm5!&
zwr`aRfD1J?0}lSPN%asl(b7jYEUFS@-{!@(^zKOv1;}-11zi2G_mWcKxl_bIdHN;o
zEd*1e#j>+XpWA0lm(B}6b#XxF0CdDl7uAqN2kryCTx_MXY*}LG<piqXOch0bDR+0i
zS~JFreM7Y&<3}EJQwEJQIdfWRJ(Bt72rur+GCy5BW#gpzjI{coY^QX7B02cRL3PM6
zfhD8ixh-d_ULX*Zcja{TT)b%SChqYb?YgKZm}E8w2?TmX+Ru+DQ`1kQ0SEz1%p6?5
z=g>7n`H<Xw@z@5q+|HGJa5d5q;=VmQx!yj+l-OWqYs-1*J<uVTRSjW!%71Ri?s7lS
zl6Ugh1Kynn^Tl7C`73=2hYY%{3IPUFbq%H(ncG$HiMlB?qCn47q-GJW>ARtjCWLB{
z>p=zC*Jd%#hORQy$mF<}x$L)=VN@aglG1)L%mO<H=`e;GBc!u|B#_or%jVNZ?bjw_
z=z^#cPT;QTthssI2l?gX!^gz&t}$E9p-Qry1H!1vMK92p@gs!%G8srYURnrF;;L_Z
z4@TLzq}O4l{f`qJ$aUirkUNVp>|c#uh~{6ddoI5+fCUp7)9NHcmw-NPRW}aq92)?g
za)bc%S@lrE;`NspsdZfS9VSgjy763w<~r17eU1L;NIk8UT9|hQNTX0vFv_o^xl0o0
zj<cz-s9dg~u|A}><bfE`{v~xAj6WI?Ip68W!PJ3QnNLOojBs`X#=^Bgfj*BTr+)<E
zPgS{;wvaT3A%dsREH9i`D-vBvJ5#}1$u&r8k@P5>64uG36h4<m6Toybvq4f!@`CJy
zg=3jxfXLPeyr8o3jGZ^5xmsmlC4-zo$o!X<BQ5W@5=ty*)C}}9ICC${k^yB2bL&mK
zl@5~O_yjX+i+A=rib<&SgB)D*l+x1o?vR<bt($9xlqn(z9m>nHSstC)6=$tF^S|A=
zkPkW8FQ49;;hjD7S(={cq>|gI)_Yu2-wAGHYX6vFsN3&=PEZ;^BayMj#Ol-+FZwYC
zz6CuEb<86;-kx(RLX;mHwAco|%<lm~^w}|`j^|NzwgRi}pMVx*zsJ2%?2r0M8aR8P
z-B?2^$~sE+p_o_qs7>ngU{^rH$6bv8+Dru0kc=WXoARGQEMV6iXpG{ddT6hi$L827
z;+|Z0@F`1+av}S2M9xrR07UEol%wouj!|;vdVl4~p{~`s4R2^mR$-DW;`9LWq@b!Y
z!pK37<Z2%;3C8m|tfW`pWiqSXked<M6=N(GAeXwsVG5y>0@|AOJ=eNof?-C?L;5$f
zm*?Vo@-p0!tRTlASBH-El^*?L=8@rqSDWj)dD(9ci<40rs)(l*l2OmP(%ZQNuV>vV
zeZB3Hy)<)e2?$R|AOWy<B(t(E*+&!`n#dzs^lSG~4?fos3Bm``?DblEi>>N^zKN%H
z%BSVwWqLkvmntyL)*{?)&fK)Mw9$4oO-WP;z0Ow(C7gyvcQ_X<ib<zC-~I}9)_4n~
z@3Mo(w#v-r>}5OxHupUe!us?fAj|FeD1vri$`Nbx>_QfHvcjtCAD+9EO5yCjCElN$
zKPbQpcBU8bk9c~k+}?Ptf=1JclS)~h4>dU-`iMwe@^D}^;t>;eoocp`0fEtEXrO)+
z$XImRPVnspxjQyM)l683L*ve+oQyO%x~BkD%L1}h6$!BM&*+~5?(b#oLKc&8Tjeeu
z)P>i)$aPVL63OEAdZ*luCrtqVwae*LmzISgxHsd~Zi5pvpFkmjVsxK4HsbLaw}9N5
zGt+5mW?|T*AiVAmmF%&R%az+IP@>U?^HLJZbUgNTT`g+WkMYlCiH=?qRckL+SrG@^
zbCn~TNCHzV2c=YR^q<@?d`6kMzT!Ovd@<1FKH-J8C$x)ln1t0;*;WNuZ>zhx`Ahqs
zJ?kA6F5VMn{l41c<$?Q`K5K1a`gYEAcK4844b!Z2sOqud=ct-IKo8v3+#keE|Cbl?
zn2vG5*9_3E&W0DYK7c6tR7&wvnqU@zPaRJz-en|XzSSSZtUk1Q9;B0erP`Ivop$})
zK68&Mimvr_0Qq_=7MWs_pOb9qyn5t003gD3Lp?h)IR*LbnRvw1O-7Ox<SNGC3;H7h
zq1b*^b}!W8tAv#g1EDcaSu0zzuoYjZU(;gV^LBY?hA>FN-f6|KjF1{LV-uOG4Hpn4
zI3iTbV}5FglG3#E2*i!lGdX<xMK)*&wU5RUHcIv-3Z)r`3`nj_NA1!fa|i1zv?B#-
zq4bHn?M1u#Cu7_oQ%^y!Z|6yDJGcta-@jrw(i8qi9-{KtA-vd^^f1|Xjrul~x1sRY
zFE#I#Vw!;el%I-%+P=0`oA#D1WXx>V7rubjAj|^#c}tlY-9sc#G2(NS_mnDxsZH!k
z#!OrEBLq`y>KBBO1)#6w`aH(^bZRI>^QmnGOisAbP{iCjaJ|K=tT{x@KF8kJ)aO&4
z#A#tMy2JJgho;p;g)(86`EP*p!?$EBZj+w+Vf*$?=C27K0st3?{0kZv5rL(WDG`IN
zHCPe4E<WH2${gDX4BI56%lch7>aRyW@OE6;X?7Gy!~xZqj#ivbiq_D;<|E^=9Oe{$
z&THR;fEFU{A{MXy*ueLIZl5bYM|aB~(CQMSjpl5P3$&i-g224)z5p0$p7h9<>8hjb
zC+!TU0Nx|-l28}2#h4S8o(7`SyH2w)2HxCy8@`zne(Mvn#5F&rM-p6s8jffGIza$-
z%jO6UXD!db>w@k&O&F%cJhEe|6no)ahEbKxvV#{O&582xI0!PDx$Ba4kw@2BpgmHO
za6wR_f5KK)+_RBX+xXa~+)>lTp9iEQ_@<?A#8#j(UC}Nr;M>F)mJgfa_L^i-*323^
z&njWcG-~0PaA?FaGE@6OrkJ=mFdBjS)i88GwzN=ML?L9ztL2(eum41V;e3<t0J6;s
zU0Jzui$}Fzv9n;(;{h-6Tm=N4^}b*P(*8J?cAp1l7g@}up#w-*c`7eTB}D$G2#?%&
zVNO|tPI!0t5EH64`&m(!nxSDbc2&_?)xqQ*?+wLEYWI_dRBU=wUZAA=x4-kN^?OxD
zb4e^7dE>Z@Ef+IQV<!Mg2Q%tTA0F`f-P&#Tdq7Xm$fyazzthQ+aY)X0^nJArFYUVt
zwC7Aglji7vlAvw;+gHb{T?;Uy8kVh*h3~OX8?L{u`Nr79p!gj>w0I#du>6SNdd87#
zdtND^>*cxGyu;4mg;+|U$P$isiDP&d+l4}X6$|?^u1D{euG>Y1*3_8JI}ejA570Mr
z=u(%u8`xExDT^uY#M#}R;9b7cq86-j;EvO7P1X>$45Y<}1hwLAmAAHf6jYsOR5-Xt
zlZ#8R82`wr_I{adJhP2g<|7ZFm((0KJ?&;tRL4&dlxxix)1RLQmkqLJ4?50xHl1(M
za_2>s-bHG<9y2<YJm%`}QH>(CXbGBUb?}}|LuDgA^<Y--@i>|T608)(QW~gxULGKA
z`yQCTYAgs*l941QbJrc*_wiIe5PbI6=nySpFEBnsFutL4&7{N3p6T;yG>e(JrY?`C
z`J9Ba-=JKlbN!4xjnfqI3)!&ChG1N%7%7mT`k)YczskH^V-C=H5=v0w@;`#Hx@@@s
zT;pieVbnc3QPzHoyDnjR^XhS5lWAK$&TR39^9$-0t~@^R?A({3hyla7nuWD=Zx+gi
zcTq?ZOc0qV=lC<TzH75GymzzdLSTqH+xIE+e!Lh4QQW$*$(z#05u+CgS~xKBfZAjM
zHFGpc#?9JYSvDr`e`e4@I+OQRA}r-oPF+_}FW;kybFi#}&pE!zW}rJ-jGr^CB_xEq
z<l)Pv@1s@FbLp!Tf|j+*jRq4zXlVzS00ZKNlOr-Nv9Leqj55KiuYw$gi_fWR>oft>
zWJu<7TLs$AbIt_<Y@uSZcV4{YtAo3K%VG@1y;=Jy{limnt{V6*G);Dptv05R2*823
z*%+%>?X>4`M%Vt!R?q)X<kxC;2Zk4q#PKHZl2EYnZ=Y7$Tqr$=pri2%uYMd&*;1nJ
z7vtR>kt?n{{E~s_RrJgO<mce*<)I?`W{`ZdzYB|m)dm5R+kjD7hCIrdCbDuUKy2j8
z3@#;|@4tVUxbzVi_7ZM_b%h!#kBI0Gm26&jaO)`k{<HWL@ZABja#$7wbG&6%GsH9S
zEu_H;s+i$i?Q?AO==n3+0gh~4B{0f3$PalJ8NSwekup~#r83#g-*WlLBS$A6a3Uzn
z_$%mO*<^~V%*6AEr=Ddem47CGwwi@EYdv&SI|=j63G&T(p0bY-zyEqkJF`km6=8NP
z5}40dr4ygoKzd-0S4i>A0$U+?9F+j!t*wzQ(Lw%re6Q>yuNw{WgaTL=r~UZu)QR0D
z=I7msi(7Ryy*EQk4OOJM9lgX?AKo!`^=0(q+_+>!KU~=A0p$f}7Wo?mwNzxP@>jdc
z*y_hp_1R!5ay6-bDT6Yc2-3|yS7;N#hG{GBf3rnHcY^By0)|Cy@-vQA@ZbgrP!qdR
z;~9o|UEudF(E%zn)I$?(!+5-@ZyT7<IBPoC$Nr*>bWoAA$nm~?_Rh~Vd+>VvQD7)u
zJ(lCPnWZ_lwq7#mt3*D`8_g2Q+P^F2d`|73LBxZipyG~tPe8fA$SE>%5E_~bhB=w!
znqPOmFR||;Rp?=rAzh-wFvP>}Vx%I8cNR!`)^;bOxcbfjGDIWB>L^46*k8YV%=d$Y
z$OXCbo_P(KqAa`9_F>jwU)WQC4Jc|H$d|5=l~EjgC0o(?*e%-0=ry?2EorOc-Q|!Y
zStQ`<XdD8IA^Qi<4cxbHe}J&r3d~wKf_W<Nu!Fk)sti~u#d!GXAH)YKEK$*>1od#B
z62$TGdz%35b@FVlR-;&Z0Vz7@#tmSq5f1=WW50d!0?(xA_4sBX>tZtpK_WK<d*sI;
zt`;?TGFw_8Fbhi36c;{Z(s-#Oq<C$(AczDEtuK|59YtSn@V_hjexI|t*LM2K*x=Wn
z(F6?_QRP2N(lkjbUW<to@;mu4QJ3p#r;&6b(KpfT*6kHc;=Sq<N5-UQk{NaWpw*B*
z@#vxTfg>;IPlpfMjS{x*tm?NSV_}xPhX%L!eLG6Zrop2VGK0&6b2M~}><&ovR$$s|
zt*}1THX0fYR8Rtz`O;xTR~Cis(Q!9YLQrIIe)v6%Yg2V;hka;g3V{fo<rTm!!fcQ{
zeqbq9-}o@K1o@%>tvJ>$pdl$oNqlC6^!YUY7+kL=ZZ5B{#byUWIdo&d591&s)4#%k
zeq^`%xkBm>4;=i@KX4d)u&05R+?^JaSe=CJ{9vd_U>o9hjjDOSJ^B(+Q*9SfGvKYj
z2zJdi>vrzjRP@y1t?=?YT<YzY-onwMr`o!;R?1uhb*+>fSZuSfv722*gE3+@y4}>l
z@x0iwgmEZeVqvr8yLPS_DDMx{T2iupS(ki{-hW-#?&7QZk4=_Tfjzqn7bIA`Hz?ur
zhoaAedE_mjmRx=WAy&tJ(w%cXr-AVun;T^3npK}IvGd@P^Q_LLr75+#8rTf?xSn?b
zGWp4tltCxTLI|47NQK~a;#6%1pU2eJ?#n>zLT#?WiLB+RMB>IBG?SifoXgdnMwiL&
z#{)WQRw`Optdz`YKP?Sx4_l1H(<_7|ZLc@FwSJ`9UYc)jhe4Y*?!WZI6CTWQ*-Wex
zLM;>qg^@$n3H3a6g%UpuboXTjbp?7qrG;)#oJo%XzC^+-Pj+*4yE4>jkPL(;TA#4W
z%N{pOIkceS_gcL&3UDq$?L`;j9f<A&Z^X=AK*kGuQwS^G)ql8O>ydStf-PfNm0J)l
zy)IkpHd_LdTRCqNNc-~@_P8g&9Lp=6)AiZUGq9c10WCeQFytIwZgXl5TrF|o0LAUD
z0lp(uSjScy@*U&<sWW5ozUPA$R=%9Fz}^Qn%{AStm4)xaq)Et&a+ZM5%kBGV81NmU
z``U->fP=xf>+$4zYcMZy<+F|;6GbXeRHgXmNUqD+Qg00y4aRc#A!oBP9^+nwT}Y4%
zFqv(D7{K+npyP$_!lV<<=Z_xR&xv54^aVaC5qgsT)PFxdzuqwTl+ePs=RRM2kS3I!
z9WH)FM(osoIhy}kEMxil;eY+(zx<#sOh-p#YS(AFzAx7T!UGLdjdp)qz%F!?5ipIW
z>}$=V`v@(&D}7jnZ2fN`=wDC7p{YKMW^exVV!z7)%r5hf+5d-){>SY9&OiV0_J4C6
z|4#}s!D3REmeE<vw+ut~9fNh58Ox1J*NqeZ&GY>$%KZ65?GYdf8-T^c_8EoGNeC^N
zOpV|1-RFJ9p<~@Ry>`yP{q385u81!49PklcF?XQ*{Rn*^URtxDiuV~W(=#7dfsMhI
z`2F33LN}#>X#Yqq?#Di({fA88GBJkuuAbRnP*(rEdslT^Kigk6cpx~F3E1PJu`c93
zElPh3*kjYjVv_sZ<9{~bKX2SW8}MIJ)qhUFe+gaxgrNTty8a14|Ae4D*ZDt}@PE0y
zIsVCl{&P(ECky&_#o+IQ_D>qRC*b^l<M02aA&A3jxRjo`x+thjWOIEkC`4HRE<J#A
zxCQrGU&?h_o&IshfMsvKr_LOlVT20tw*SVsJpSzvxOq@|w!8slGmpkGAs{7o5h9Sk
zN}mt_n=<;FDV2oWCLXhe7GTOGH&>#A4pYwG?F|+$rP~|eL}RMzX3*S;MNN_;U-4un
zuuHK<9uubUPiL(MY9=LZlIEU0yLmO3flG>YXl+cY=3QkO_SP0;yoH4dq4wrd$C2Un
zEl6(pr)(?st?!Scz66cTUEPZrHA?0xk=-ibefe%an+!I%K_9E)k({z>V;qsoHE1|k
zyDQpnlQ{C0Ixjfhk~nB;ANFU&c>yfOpY?A>LejOAZBs@fV(%X1stsS8@}8V43l|{|
z0MqNnxFDq;JNA~7!9SSpRt~qg&8_x?GrJZGXMK6U7F|PJh_nx>p$w!Hzcuvuom5(*
zff66>ZFu%?n1HbV#@Wk`E7Rn{1lVDWU!zeqd3hp5_;1EHXB_aD$Bz_>V-Cj-dU;~)
zr%5D8YalEl#pTaE%RC8`-*00~ZtTfnC*!IREh;jbKgKKX_aN#u7(zuT#4Ot$nDCyL
z3EkuhF2LX=-+L|Ant3Odj<Sx3=<plIWM(k@-d^cLyZH66;@{AK!<=7hTz8#GP-W>_
zO)M*YzW(05sS|z?rWml(XCF@Gl3>z=jy^09|MiZdc|bM)l<!X09`k=FpjnqjiOrH5
zxGSpIQ3+!{a(mV(nxW47W2IPdTa+1poLKlND%<>*Ct05WYWLBq{NL~WuYkz|8ZMs+
z5>$hYg!YX~@q0!l4r)Kn{~N}luP(H@Lf)7UkWyZ<2tRR@b;vXN(ED29KRxz1;3SQ0
z&!+cohy^Fydhv(bY|jmrh!_dx`Ad@@+<p=f-bE^s274{gDC$No>Ir=<S#jyxJ4G3P
ziX4X3)4o;GR<7&mZ$ESp7Fy`0`TAhblM1!z3JEr@I4YBP)Hcf}iuwm(dw;KP{fK5>
zbtc=b52V1Lg*0Gqv-!2+4|ISjPCHyN{+AVYe+ZsCG_XFbHBxIuH8*((EuVgCLtS4k
zyTfzmuOt5_uymTc7#OQvBYuObZPFyTNvI5!kRSN)Q_e*7_s3hO10>4LBTah_usUFW
ztCE%c1^f=R(rx#^P)@)mFFh~(+kOa19|?|rAEZ${9L86D;fDV`_+Uqp{7a)tf1XIu
zT)-)U`EIoDfp|VpX>@|de!8_*hmPpgpEyPy@Q9e>zIJGj=R8zzpwF>#vxjd{D!2iP
z4ewSrvz_v@$oN06JCdeH!jzr3fS(WFjX6WU%~|#EH-mfM`ap04Q~AnFS{OkPF66%$
z7aM}d4tV6Jd8+(A95;o4!$Bh#^KnmTP=_A!UyiM0va0;?Y~fJ=<q$M*Tn3TlrmMBr
zL3GbAlq7AP-<+Iwu6Aa<BvgKH=WJ{-DpULS%MNq0!}-qLd$%`Bio7+fYM*#K(0$pe
znjz8i3Vd9$EOJq_?8u&7KS=YMbFEKsheyq=rDP;Sd5&Gpqx05l)r3E}q+psujOCo^
zc^q%|yt|*?uwB}=PcdnmTBBgO+L*hwxsEr!l=`=zbeij5t^%Lc<_m>ZZdmEvH8K|Y
zeN@5#xQm4|@9zOY)NOJ?O^{0h%q0o$;H!CWR#5jp8vML@sqBf3b*T_V8T&A1;wGvg
zv1RekGa0;#ymgvB+e<*=PcIa{Ry%Hjw&a%#s&}_(d?WThuG*A;zMd_TGG;WowPv?i
zF%a?l;nSZ3&gb244%*{<))LGrtH;jT*>Bb=59P(Q&U)?j{D<n|2PtFd5SO#Ro_dS}
z!0hbHGC41V+(i5}3*fhx{24&J)T<t^vI>>`?cU_MS{1M^Ds6J?*J*tP+!b%jgN>v2
z>`VXI;m>|lmxRChLg7(2E28e#-|^w50pN=s*evrso}kV^r(!yPAYX4UjvRc8ZXh<A
z##ZikNG<^k(7<Q9y2txJ1kea%<667l?J>*0d+dK6bx)N3XIKAm;5|p;pR@Y^zM%dI
zOaDaRe=eInck;hUC-wx9|6fvw;Csy3lCZ_Me^o=$Ho;=Y)V>EFJK|=gc0{iJ*Q$bl
z0Eq}^B}>=dl(qB}kch+%Tf`g)PUPZ|o0XpqOU!v*{a4DN&CPRqP`+`xz16lUgnl6Q
zMqEqq@7kmds7*p$)k1$KOMhlk!LCg3Tp}o-=ZrcqjM({G4%*#TL66k`*RNR*WeYE2
z!$AD!?v_Z7R+Qf*Wyt^fopm<wcD8Tx1@~Boo#*86=M8rD2s*~wn%1U?kltq_hi!Z9
z)-<~RvNV&BH0l81MMBtlt`9MI@D<7!o*=LLJK^pZ1FA6ti-|pTQLrI1JlAr1+*px@
zE}kxozB>%f)9cHE`~!AT=TFm!=2h|1LbT*r&CciPA~MG-%2jh(ekZ7Y768-T1HQJt
z*Vpaoft;)lbxWFtuKQzE?g4PeGgRL#OmXR$frJmw>VW)T%T*G|9XIWNBL{7HcF7@D
zgIV~n*{uFsT@Oym*lEXWUB4shD3E#bosAp(Tbd>b?3AR9?nCuHy0EKlVc9(Sz3JQP
z#b|83167Vy`mb6<^l6p416p3eoYB>~(yulgc%A9d1hR2WfbYK&&Xs&1Ka|2f&;M(m
ze?5-+4Zt+Sj^-3MI!67Q)~46cj#oQeVC3<Kgf@s{crfYM`N*2T9-RINkJzwDbcLN9
zPier-Tu9p^fuXvNpL0$1DRx%BGN+pYK>oT^m>U1r!~gz}@LgL;7dIUdYJ&x9JD@KZ
zmHm8C>-PfU&EvcE!ZvKK^LB)si&KBo`9FODC>pgcIzDE;J=9y?`t=}A%;x7RD2;FA
zE(qMry6fU}UrzpdX*!?^1YhMfm)m1FYZCBO6=YDt%iYphw%R`Gow->&x3emig|&1H
zUu;M1@^Mu=gSk~<RpIhi86sL*)wW=sc|&A{%YJEne9LL(4~C(oEnb0D&YEronDlGr
zVyV{C`oBI%y$GmbGP{UQd({KZw}9%P=*iS=Iz}(!4@Yh~f9rhqT8fpWbZn%^1rd<;
znJO<RNb9j)cgv~o-m<8U8R$><bEs6$YBQ7g#zpG_y4pbN8s+VNCP}ayBD59*g}z5s
z-0R(_V}0=IA=M*^_P3!yfT5kRW#+#sj=xS&l{x!@b%2DB68%9M3vP#yW?q@1lVcGg
zp@aF5MaY7hqp#3F3{+29ZhWSQzf{E~JSR)^uN3ctr1U9w`TKcX_xX+*=p|!SXcR<;
zW6;rrKS)w5^6y&XsY?x$iZQ=l&T$7g62*|TpMM_m-=E)RcaW{SY~X<8jfYjA=y^XE
z)ajGntlwiQ8>5XI#}{^WcTuvSP?v}-<OBn-qJR$f^}d;jbWr(U&){eBA@PRuIV;tc
z?h|*j!u!4(6jgyC6qU{H6CTdr6rOYYIal-dWK);i-TQu5QE#+?g~)<3PVQZZBd`!<
zi8((y#%xHi_Dc2z8Fn2o|7+*<Y3;8PIoD>Knu>@6OJldO{+0fS3Q16hxUv=51l%&D
zWBL|)@$_G{p0PE&SAr`|Y#@fIhcP!baB!NyI};ycq%S#?n3R%d1xxJja+;s|wrFg{
zQ<#ITMR2%T&Ds9`>r5aJnKZ-hIPa+_Oqqdl3`2h<O-TJi7ERO#vw$;J0=%YrGX>tO
z{3f-b<K9v0#aNh&(gy*zEJ5TsbLH}FOXR06%fF(jCgabM!Z(^tv<~Z~E{YYYjuM^n
z?5<5QGXzvOn}g*YtG5Z>))fY?5{h3U#6yhEGEY^MzwXcZjk)^i0M_#9*S!AMf&TTb
zAFP2jac6(#h&>RjK@(N}YfW6R2)^%F{{Z<Yag(u`AI}P1txI6<IG*WYHa-c!_)K$1
zatoFOgmvGEzfLTHW;MGn_ugTa)UhV58W*F{myU!tYcVL=Cb24c74}%kHyBKF8fERM
zUzTFz!d!(v9Y@yh=s*vgrE_gxGyfm<-ZQGnbqg0&1W}NpNRcYbE(9#}u52q(EYt{y
zh=7!UKnQ^lqm;Eo#D&tUO97Q$LkR(ifPxe$p#(yc-a<*}$$3LypUt`Vj=Rq|KkxnF
z7;9uD<o)J5=QG<gXRhyXQ_}}256U+|SZ9qxbRci_7XChWnj)1f6cSFfL!ZwpI-8Vj
zc=uDL>X_1<CfJ$r$VQP<g{DRE@&|5-krs>zCcnj4#tKx{<&a3Yn^<17r2@3$u#VpD
z!c{cY4GKw$tb!HhKp|s9Tzp_(9$_!-M%qtWw)KgIG*eVdw4-c?k}16x<uk0!wu^bz
z<bQz65_Cbd?{qIe0NQBz=-PufsI!I2G6iTQvB%jFFXSesI%UFL&J)nr@>IyPJ{73a
z>vR{x!uqC&Ci~Xa%iSGY<%^?6>=;=Gp}P(~{TZrnBAX0D#q!BL4+EbpII5*M;)_rZ
zpmn*S;z+&G8`<l~m0Px|q=^Pp$riu$Qz}3~MUrLaP85Xf11KoOpYVJaCTpL<^Tz;F
zvN>9x=ymzUH&nT}hvDq8?+1#&FQjx<lPYOnHSs(=%_()M9;4Z*U4F(cY7;?U%gq1S
zvW5&V%<V&V4e1NdpcYXhPOX@J3(-=A*<X-AQfiIhix)86%WiWAeD=Ba_Y^Lqtfnk*
z<4yz&$S(~O^fOqcCu6`pPQNUZery}AHnF7O3c$>w95uj&a}jcQ^kd@U%6zh$#r+r}
z_!T^%C-tfN3+CT5g#zkz-9nq8@s5%s1@OexH>vIbqL3$A;qqGs28il;&$>=?eBa}G
z=2;}I-q*99SSx7W2}$h$vWJIUEOgXdj127C%jUMCwc@j|@O#vt`uajwx>l=MV}~hX
z0*|W-&7NSIgpnfv*PF@}b=$zSsi&2XKoutGRif>F{;?pPW4BC_enc&hd!MvgG(-5x
z+Ee$~VCf?{(D>Of^`5fR0i@Zm)<9`lD=T%p7}Z06`;=IYI}coFulPr@g{zdr^!G1}
z1~f-qhUs6z;!{@+BlK#2YgXA|ux5XCdtR4^eSS(UfTCKaC*T{aGxcR;b}rU!l!A5v
zQ4lV?4ON@&7IOjIw^fkIJx;dvLqH5GDyb{;*UQTkm!^tJC7t!ki>YanJ$a50c5mu*
zI>CB2J@P~McG0uuY)&tZpVoVlI<Iu%H#kl7Q@u;r!vS$E`zqRXVRPSrBwY>P7qz{(
zk8CG%J{GO-B2M5-<g;B#>8i{Ny$1#0(mkC`+X2O(^T0<ug&8$sV=w*V4QJ1ten?U_
zb;1M+CM29y4dV8|(&yhmd!nfn6TV7I|Ah&+rDKI(rY^v4bUI9I*gQ59Umfg9`{sHp
zPwL^Mb_+bEN^aX<j|J$gzkY|;&$KE$%R8-gLYBv)Y9oClNSll`fK&A)1*$OWHI>kH
zt9MAG-dC)%mcMzd1z$zVuKOPHFh|w$hsWi(E89o%1s#iMnlf?ew79kTCt%q-^U`&^
zIDmgA(VpyV2fRHD+-vwV-cvfsLu}?55MMD#MEwg_M~`DuCQ|qU?W|W7eUHn_QdZjP
zq2zqhYX0R;mvZ&0sWTyjSL3a^eFcv1!Md->(BrdzA2%-W!4C;~U)oj-G4?z1B`Y$M
z=auEMCuaF%OtTKim}Kk=F=^semg_mIfl~;;rD5C3pw<WS?aFa>U$GX=nLgiJ-+76R
z4ZB?LhghDQF=`?VM`cg7p?vJ(tg4w{kUYplEXJ-+T04yH)_q`ff00zfL436D5!j!E
zj%q+BN~py<P7G%rMCdKJUy*#OS6)V~m3lgBE>e|(&Po_KBPPFZk_y?M|G0tc;^UwD
zTJMfQILH&4xc#MGX_=N=Rp_yJouRdR>%wds)JjsGU42zciXNeg?o}1B<QyY7GOlj8
zUo6{nvKKNroGIxq)?E*s=yf?ti5zj7D+1mbESRMtS8vYL`<D6~e$7G%eV|z`1qM57
z(RRYXKTJU~{MqYHy}8o%M76Ny4HI9j&WuGqZnXv%1HveB@56o<yB=xk415wL4b;l9
z^YN;LO|Msn#6DbgGpX$`JVg5^@0xp&-^VBaV)>tY_mgS*XHmf~39&U5#&aR9b)98U
zNrbN_=oqclWe!nN^Q(#$E_Zszow2c4PkhHo&XYEntUoiR)RL3xXo*z3?CPF+-r60#
zH2iPD-!lP^kf)zLxYIbynZ_YAhG1h?gS^=|3S}58>E9`a&=sI@j~4)*$o>}c{(c$u
zISQL9tuJ5d?qyaW8?Z-t%{N-z<BFL#ZAzA+q#4wEXV$fguW-DBv|OhP>w2!dty23r
z?leQnO={(h#-(^aT9G4bCCPV~cP443q<Npd)KC>4BQ1_2RlZ5}8H2>t7(rK8+xC@L
zFQmjnX~IJ;g^utT+3AxMlYBR8E5@y87RtN?T?gZguf|cEm$UgA&@E!(GtNn;rj{5m
zaaN&2yXZWP?Yuhcs=EiK8+>uP>4ht`pHx>MUaPD*S!!W6lLK+(@pzmqK>SM+*YHX=
z)*wy^0#-@-dh4O*OwDbuG;F%e)}JnyezQc0ybRl*f+vu-P6Wp{Uvwy@WKHKacQ4Rh
z>c-Nlt;j8IsptEN!W9>XfnjuJ66>L{O_yCAE%<OLu}aTfyH?4ce3kVE@VL0uELPNA
z3dWv^n!Y<*Xqe~BRFSgxo*$dwp--bdcf4J@WUL$gqeGp*99SSgdzHhc@i56o1@6-7
z2$@#khgK^(h>Z(9F0OnYL}>P}GExCBQZfNb=XP;1o!z={%v0`f@^`wx+e^>VC`A|O
znSWxiC-fo%szZbV8Re+B40=<q`Xd{x<C!U;yDn#zBa!g>7qG%+Xy!HS)iH=<3`6(%
zNF`Lw##U9`mrCx5GR<yikKVk3<GV4+TWP_TujW5`?h;eA_Kkw<R85Y5!Ku&`1SO4o
zU_PDT`d3@S3LHiIfVzU<$3>M7mmuMb(98Z%1mz$38S|Dpql8*r1YyDFIbo8*N5_fq
z<7>N>8hp1C$2!?JRj#@IKJu{iJA5!1(;z_^lK?xtsGuv{!a)~dy=MhfF3`Y@x%%`&
zs58WU<tY^C`oy~`7&ZHD*V9#{6BMO+&hMy|?{dUV?}N!>_DjkG+y9q-$w`p>k{lAE
zcVP-;f$InYayz@BBBo6APtK&yM-o$#p<H+Xh1LB~uF{lUJ#{Maj<MRKs}{S%$n?f@
z>Kx?9jR#uofBs4EpxU9k+)^EdZLozs;Raht|6+#Ds+Ax&@V*<l-dMT@rO4TwNFW`-
zI{z)Wq3WCZ47wgdh$SKs>D0wYJ{Z{YrpG`$aGP~4^crUmMc*_^a+I~V&n5%EF;Q3|
zx*06|-;QIQJPk@3>;vLgpXt<cSnMTFyvJg4pyk2XVy(a)pjOmHlQr&v9&iAHr44PW
z3#dsekStYNKff|A2U<(&;$Q`Km>Dhwa2!6zQXt?W1@I36K&i%Bsfo+`UjXrtK6>x5
z7R!*yE(pF_{JzpRN3QaebI{eB5%fH;Sof(_^(u%Qt*vuEug$+yES_MAzZ6XDgt6`L
z5B$-|z?=oZP9z(>NLd~%8R-Nstj%CV=L`!KN($CIUAZP{E+Qmr_GVfQM#tsMt*_Xs
z{?uYenmowBV4X!;i#>i8*=d&YEK*D+yE1`PC)~)hPTHB0y&%Q`7ONj8gicO~<td2(
zp;P{8uB~<{zgaz7XeD$?PI-2~#i4(iqG{3*q!9X}C?gGf_-Q@;iDr39KXg@ZvPD@A
zgH==xUz=B4>tsa)b<7C{Vx;kQK*)k8hcfUWE~gUPII`A<v#aW@S0<*!Ikl+I+`2!f
zy;||pUjG$FC?hYBof&9UyG+&oSuOvcwcUT~$a6iyV38A<TA%ssETmc#vTjLZflVm5
zh_)!qc0mIBOdjdRX7P?HbC5@V>&9~7s1I9Z1XxmRzJ&Rk4OTz+CN)F|@??<$H`4?_
zE!LvI1B-nQD@-J>J}k{t`sfI3`><dA9@rUr<Vb6}){n=c3x)a-zTVbWB_~a7Hevh?
zK--n0+bFvki0;Dd2PHSHOU1krCn-c}hp00FIzmtD$(KJF)*MDaW1hoSj8ZqKHu|<>
z)9YeSv@=sB$)MvpchKlM%QGbJVYB7JO-uR$jqwfvv7QAm)R9P}uK+>}eXK-Ysv_pt
z<~Qm5KhP(bshP}_E&fv_Df;u2*>23-UUJ_1Tc+7rfxQo#Glh_1V*}G{7%Z3HlY4)&
z?m;BG(u@rjoLUJzP@E!3&U*vpDg%bAl;Jp4l_|fs?@p8J-McWD`<Gy>BKG<J#<jAO
zPgalihws02nqsnfFHeBqc0^sji@}DYbnXSSzTQlRZD>EP9qCgK9y$%MO<eXZ4G#(C
zYj0lI>0ppQsdnFnu;jaC3dzi5-Fr7mJnAq)j5E?wPyXD~eitt#oa5AYh!|O6gjDsV
zEgc$L6R0s3Y3O8wwUCDilO3+NwxAvEz1ezf?B-*G0Q^@ORI9*oq8&nAjik;*rXB+j
ziS$iJai*8o4pzt1tQYG+U+?LOiuxeY{(SSpuRxW>1^1A)qujci%?lvA@7jmv&y}Pk
zSm~Mjp1%yMo~zHkM0-Cz9p_Sdqw~>Q{VLb8nM1sO6T5B7sYK{8V)zL?g3qWme^wcN
zHRr*lY4L@T25#ReJXB@=`?0FMli3wDLlqmnvw<hV<o1_M7dav7=!T87@_`^RLQ0gS
zq(6En)MlXSO6~!Vs<~N&Z>KBCC4ZVvbKOm4V^PX(Az1RMQRkEN%*$vrx|s4$2%)`W
zU9JaCn(iuUQ0i51&Tk+NH0$#5LIF{&D65@B;L|>oRXktkMw&)*d-u3sD_)!N&6661
zgLRfUYcpj*FA_I0&UuXdyluF!peM(JUa5!J(AQT6K8;GmOfQu=WpfLIl?MZnP`aoj
zYVlW2hm~(o`H*$2tN2pAwO*7QPeqtlh0+YVVK$4W9#DLs&bdCFj%gBv+fAAme#Trp
z)mJ#YXo#kJsLbNHtESOw(Cc2Yg^d|GUY<9H(N*|01%EeZpMNAf-y8P>w||F{Y25E}
zWnvm~a*&;jOuj9MVcqYTDkgU?`A)M7lB>iHIE&}5$2iD$@R{c`95XU2NtBb`)>=K^
zL^tiuhy$dRXAAPwwsS6)jX^<L3FDr$P<Jc?NU)0<iIotRV^j-5>euN@3H(;{JlktM
zv+LY)T(ig~U&3H@$hDqC6aS5O*#Y(%8;&1b`xfTb>}u28I%~C&50~dn@uFI5EAqS~
z#vpeS4+(~~EYb=r;YByz?pm+anjgp^@REYD_>BZ}9hXiFRS@RWDpn<C#VD=ebJ1NY
zv;F#<QiABc*ret=mU^lF%>AV<!=!f{#Jw(`<Z*KiFrFWFz(oxxSFB%AnMs(fdyY6Z
z9Y;*?ARe*l5Rt<%=$xA%`({F^#py%nNKljC#K)_r-9DmPO52KNRp`9~_SzMX3M{L3
z8+K{OKb?;viu8z4`{kVfG%t#FNVhE3`fE29BS{Y0OI{s%X-s{8YeAB1@`w<_h4Xs9
zazC6U_tSq?BG_Q9Ai7_DQ%Pzo&dUBAtc<}Dd1mpr!oM}Q&<iASb)8=(wgUSt5S3t}
z*Rh`h`0MI>V4pj3Y^`Z^Z;%r8)+8-juFWK%Qv%R#WHW8pT{MeY6C1c;h<u25vRy5o
zWf&s**0ej#3@(O|d`2nF1inD@`q0d!$)?r0@!VQ$FK1@G@O&k7Lf<t^6V7M7I{#xO
z^-?RCKtGuw;Cn_d8w7A?p%VwQN`8Kb81hJ3d89H(A?!_1wq6Eb8)Pr#hrmbc-z|2D
z8+&R$wR@IGa&>YhDbSuTwT8$!yi3cKZv2hG7RW_RD_5*k)QouEpUBNB$vE>JJ|BhW
zC$D4)?6o}BE*(gTUDB5>m62zxd@7&OT<(7{P+g1Hn6#0ra8P5U=BAa2!Pa&0XX8!=
zgUb=Hd9rGkS8Hv{gQM2+-v^PDBly=3*2{+}XAN$}e45A3#Z*FtJoPZx=%@A1VeV%s
z#8SuJD6CQ*i(+{C13=ItP~(K12zrc(paDKr!jAU+(~PWD7sQPNS5i#59-yXw%iC+d
zQWT~ENJ`}S>Z2=uXYpeg+S4rC0lQAk9!S=G?I1osC|rIHH`+V<6RD^t!=Nvr1Deot
zdIO76iGNSOeQq(D;4$(i;pGShTk~V^7T3#iY6I**+01<LIVWO<v)Qi(<-UwuJ&%5f
zb<Abo&!dHwgXd8wRM&(;fg@MAC8|NO>nRu7(!HyR@ao9LdBR?O>$xu-kIECve^<-b
zA@4YmXH6^U`iSXCa`V3AP~w6m_*2>|r?lV?iRl)iXO(!$S4n+V60iSyPk5hw4=?XW
zYqhD^NNnEs&&KaGZEnU~63lsOwFrwlgQIIRKIHajyq!SSgf;y%N%26@T9Xc}X|E*Z
z4Kw5C^g*xIl6n4KC&q^2KtgSK=E`ABRc)|mxlY6ndgKMn@pP*~5)xT9R-=M9@slVg
zSazMub^Nn?yfrNt@7Q`_NukF?>$i#F^V5g7-4_p=?S7mDjx>R6a^0gFn@R>zz)9lK
znfg;BBd1x2<OvYzA8hjcjzX7C2a|3jx)Ckc(^yIBFwlhfO%0v08(ywl>l3qrPo1|t
zdw0Pgdu6F3P*1L07E1j`SW-d@IT#$PY`;(+CC^ujTNDgU{B1>Vu_dfA`t}oOVxkDW
zweqC^Z^g?_1l~VofN|gHoSw?}KTNdr?zJiFLp5pIF!m&p&CtI%MuQ}Z`m%C05@TSf
zwX%U1QflYb9~B_^cyOUYuhf@t3xv2nWKVKEV_rBa;P6YaRkdNKw4ku0#m~;vi;R^c
zU2Y$BmrCeM$^jo<``@;uHp$_SYS3~?3XuyjN%X03kse<ZUc}$0I>qK~sIsf<(%?@E
zZlL@iG^yAR!Z?|KhjA{L^PJ?toRrqV3i%ilsg`^FE`yL!yx$=FHH!y)MF<eao=%=o
z-;z12g5YTksw-LZSR4W%%)bN7j05t1Ul#~W2#y?fBoDj~mf~HTS^8b`g|XHyC`~=7
z)FQ((8ng5$66sS$o9I(O%GEEycyXDIpPKy`3KBqsUe~>jOh-JoJM$pYim^e>4oZ_)
zZu<qd99oTYEmajqe)Gsj(R%HZ+*bMU7o8a+m83-XKZzIpmtWX;8F2D=i9`6KX_juI
z2?LHz2zV@y`cw|8cx>GxZ)F5)=r`Xwke=qJ38j{H(0x^AreTg`4F`I4ElzfF8j`6o
zN02)3IT&x{udha7MleVp0mS4m+(c<Bs4Qa};$@blMEqL`qyVu-)Jnj(IIE`5#hhOr
z8@US#9shw3W2qoC?`?yjrr~?Zv4p#ykAF_f8|s^*<$T>MRv>5AGsJXyXWAmHw&V3j
z3&+YeDV2L{D$r`lx#M4~tq+bgN{GL9;>9H_zvl}OX4LD*+lB54{&|20w?QvWCzMWR
zTzr&`sc!O{;T{OFUcFiLFr!061^HlRAXsYu+LWo-9}3j70AHP?OEH?4AHRLoGHGp1
zed$(J76xNJ{$GY#M|;qWJzb^QN%IkuS83WV%``uo;kpQ$QOl*D!UTx&#{2V0O&S|9
zoWbfd#mAuQ1AKTfTG!~@N~%q(fcEMfr7sP25!(0V6@hoAiVK64OD@}5zhR^b?5|O|
zWNp4Nu8h^t9AgFvRt_9?|H-u3g}KaZvXdH!jg`<ZE6_fAqZ>_il=t%Wuh_#%B&R0L
zy_r&_Z;%J|%KrlBiqc&Aek^F_g2PIF662xmO4ULmFF2a6t!je;C;1M{!FN`Xe@e8#
zw)HXqG^)7w#%$J;ZZ$tzTPyyc*8DHSM`Bvb^rgTk$+hqSb;V5cVmF%uVUX`g6KGC<
zV-CnUDP!R$2L8S#6eP9YG~NYD;<!T53$%Vhq5yq93YxdT3I{B`9nV(xcTIbD7v?^6
z=m$#)wWkW|b;`<VebxfR7{&BlMstky{keKKs$$2ZbUy8=H<XnoVz<Ybe|erPg(w4g
zFV0dJofzQC)%r?j>eXR0FE?LH76xr2<a@z)Tann7ytvMQssT(H3Sz18+6?(5znja8
z_FBpZ2IqWd1+6x+v$;4m*J3~!7S>4{A%6{Wan2q5dC`E+F}i8Q)T4iTBHdq5$qc<Q
z(r~O%nUf4BxpcVEVzfowEBuB*0+Vi%$@OC+u5Z<#_;*YFyzaGx*C!}NsaB+xzvA}5
zDsY1>IX`N|!jR>PpiJdQ`AP{mrD@k@+fg7*JsVZmRWA=N*Hyx9i)35JEaR_4dRmix
zJWN@LQhpS?#GRRZ;6E+psL^$1&|lUS3pVL%*fA&#t$3{wwlvA_28ce+ybUOisZWO`
zny+tz&R2!4SSZgB&L0W+sMGP;T3wYHd^e;M$_x?KDjUJ}3d9siV$JI60K-pt3fF4z
z0uC@{W4vavYH_@k(?!bhy()$F8;!iP+=w+0bHvt^nqaWQ^-;mtilJraVq(oD_mk}|
zYtuzMP}h<xh@Z%?{plvzPuftj7%XFj?p-B7>rGpE_hN)85B&W6IW!%2i4-SH1WA<I
zt!YH}?>8^_xRRDT|7wVuDDeT?Zk!HrY&Dr~o@UD9s@H!l57*N15x22}O$}Tn<Ee20
zGV&FVesa*W`OwEFQ)DG5k;>)LxH%q1*L>$SDU^cPAfSQ!AL~JqTtYYQx}6Oyg8TF|
zhI*YsO<WxKo$U{S8jKorME^_|W`hAoF-nNS`#t?2dgk=9ygbsT(`Id2bh70qGk2kN
z%_ik}m4j@%z~OeMQ_?A=IwZlXBfyJz1a-Z&<~2vmL4?e8-7_aye!<9L)6SFrYdbIU
z9B;`XCGOFD(Tmtnv>|5XazwvYTfH){+Sm8SnDXJ2|7qM<;I*)lyzy&U+;TV-W@PRn
zzVI@tLSemP37?j`o(V%M`%!cYCBO2jFZNRcn^38_E`MC?1rEh5_YVzMY`N$abjRH6
zJ_c>VR53Enp6=JGKag`QF)DK+1;nXF9(-=2NxsCK#KqXj+XdjF{wa)}-%4Gs0J_Sg
zUwVoBEUrX`RYkG_-Mz^`6QjL5F#hyMfbr#h&W7lbuLG~uXTEbG=c6k4L3U?fB)j+l
z6hJj;-Pqi|Faw4^Vx7FlCaWe$=%T5$hd$z0h;{6AVY>-5P!A2iJ@ltFV^w*eGpd8l
z<}+upwY87AnRl<37^zmhb-I!?jb%XA7xMWW5Butue@HpkFGgOBbndg_#+5HeM+K()
z`+Aua36N2K*UQ@?hEGsTA|vndZ8@%}O>9y7FR^7-nZ(JM{6@)~^;4E{5G5|A30vmW
z*qps<XqWA~5m$90$|_Rg?eiy5>x)(A?CRdRn-;NfPqNGXOdFgDweiPXeCKx?axe8U
zbc$vgV16jX-SxP!bP@(zu`&G`Odm<~oThI&mOc<MqNeJty7om-E&8W986HTL0hHAD
zm+{?Gc}dpdN<D6bk+X;4R{fbd`f2@JXvt*QtM!@v_fMqDr+JvyuO^?FUFKKKlr?D$
z=rX8`tKwgtcIDX(SkC%btE|O)hzW|hsI>N3q4YQW!lV=rc+)wA6@wH}J&o$Y3yrGz
z?qmgzdD99ZgVnZ5qf{wB##+^R`IV@1UK4GX)=~nE(@g>=vlu7<ueAZwMZNG&nky%{
zh0oWpoAEhxS05Jd{)Ab0ki6Fz0m{lv{xcy1GS-?Yx%dt?*k-YTGTtP*=(EyxLyG6j
zvP#S3S5Bz|rq&x}lnncgh3j#?PZBDjhKj*eTdCd&FnuxUM=1U8)U?{6=wj1qpIeW5
zpXR5WGsy)*H1&W`rC70<@>x6u1o{Fk{2v>#b$PW;`;BuaxmdMFGnQ{8ai#f9x5@7F
z>U_@`e7L6@Ihi?_^Kmi&R57&I7ww}0+Ms6i)$P!E<)M;(c|!T`PSXRWuA*vGM@}t8
z=ZXzlm)25`hv70*Je=CI(AZS<XcpbKe_&W%9p3EIav2K})dMhe?c6{HL-SNaP@8)9
zK(NFi8hT#)%1~&P3$|C1zE%JWg2Kumq{IrKDUgWCyn6IOI#n^dAtYMg8abs`WuQJI
zqSW>1?VHQ4pDnZSBi>zj$KYSc0x{2UIr)7!uae#Ox9EhQ0zfu58rOyL8Evp+74R0H
zgO}tBo?qBeiqw$?%r5z>`6*HfcOJ;{7{@Fv62JUDbB~tgEh+rCF<x~r%ctMvTd1x{
zYJbNm?YZ1@wl%M$p_hdcktFxp;Ci%sb&kui%(3B05(K^BgjkWWmY~mtm0dfFwCxqv
zT8eS|8Ymppw#P~yBn+2YM~53=npw9;OfIs)Jn|UXx019p7xm*Jsdu7-b|-!}s?5xA
z*{+st^4&(Ewg2TanB=D<mS`=M$bWO|iWqp^>C}Ba`$H1?9%6tyQHthUg+J!vno$Ov
z3}MNZ&((f?Ipd(N=jY&jg;(Qf98GZ`DQRx8#{F2s$3$|=xi5W;uY8<T8WA_ktL`lI
zT4RtxS^tnItVD8d9ntUd^WcM_=>)2c#Q}*z<i@Z(HsA%HuR#$BW2kvF9zIcN^x>Gq
z+7^JHdK_o4-ppAQ!Wh0nfR`<i*FXhM>;10<^99~<(c1E92$-3K^H^&RPYwtqt$SXl
zmX57kWV<!2rRJD(C8TsPq4m0EUnos&{*!P3GxaZ8!B&)9a4sGQ`Y_!+wqL%miCR(i
zq-~=ms7<C9i(lxae7M*so*UY#bxqvgjQF<qQj@=l#ngDmM_&ZAP%UH15G|eY=Ynvr
z%8B&ZU+O)ABR>x!CdX?`Rkje-mYE7r_4l`?rdIH;4i?Dk4{3`>TO`$V@tfA7uk$k=
zLgvv%Z$|P>Q7F7wHRwj1Eh<%GHBgqzPy5f+C3=6|5dZ@}S_9^1R+n)|$5{}K)V{wg
z98flkSLdGmnWQZLGf7+iqvV&Gg_|~oZ6D0ln!;1`@~yI3np4O9R>E!%srE4uj()Jo
zi?P8MV4nZ@@jzzii0fgZHRJq{s(#0kz8tou((Gv$g1(-!G7@J;h=-Ry5I9}=QcxyO
zsbne9H(!bD_JXIXr^F+Fz^!)8C#G_^qg&bu0(w$=$qy;|{Vth`p#odwk`sqSKw!;X
z8h8%8-jX?s_iG6-VD;v>n7pv>kMBC{aFZbF2l3rzFpJ6EcMFvDrF30oY_na@j1^sI
zs2vYPBE-1MP^{z$^K$>I6BPJ&*YwFtSpL+GJuveoS0o~?IjtJxT%F>qau=68_@d>L
z_jY8a{9}>KoGaYh63A2L9I=x0MMdOaKl20WB5qJ)zS8};P*W0p%ZnIuoCG^Qb>klE
z#-#Q`#lLty5wC4~lbWf0W2PP|*7ahu68G*l=xo2r{9>>pUTr=Io(B*g{s0U-4rX`2
zq`DF+=~<ul*&Zv1L_oPS2M%w2i#bP)03uGy>%sNbHUg9jmok12gLOw~fYGLq`o_&S
zB`W|DLyF@~!5t%P7y~AC)zQ7<n9hTL*fQB*xwcsTi>`Copxfkt!Ggx6Xg4^nfXn{c
zt!uFp5^?I!RC?z)Sqc5g>>Q>fk_XZ5TIC%h3o+fX&Y#0!GxaiEQ)gKX;^&ode7kpw
zZ>uflA+noILRdtVB2+c8SW%p-N{M_9`)rC;$QZ9nO$4P42(v$F>83lK*8ah}ScX|}
z{u!@&aSN}6d{4y0ZivJ&j*{l;N{?=RMY7&zy{2?+B10ML=-$)fsIOVp4%&T7^FkF*
zQl#}cImu6S<5Rz|2nKyAYTj#kfE3irmSwnEcPKpuqGt(j)19QCLrhZ8^Q-qb*aQzo
z8-a9>#_Xm0EN2qSK#lK;mco~<ZH=#>4>T}XToj=GJc%O;4}ymJl#s4#S57LRX%~Sy
z_T#hatWfU`=t)I<Q8nJ4#Aa!>8Z+}cRcILk1}^u#QU-=Wr3eAXWr_v7mBW5|HrTd$
z(hAViTOKMb8Y%zj&zs#5W<LlJsV-pwA+3!BbfCKNX?|kwB1Nf)@2|D_T-7cXOYR+$
z2;vO+qP0`k&NFpwb1MDTod^Gbn=fz_dYaA$roFX3j;~Z?^Ca3`Z@r=Pim=s0y|e$-
z8A{PLmraG6XaEiIC+|V+_%A;ZKz9FE!+Dm@Ed!mahUqHqfFX?BexP$F5K$*|9`vx8
z_d_I%0SnBu+Nx&|U06}9N*xhm)YDu1xNwR{gx&xa**}d-1skcm@(CH{`OFN9Ndn3>
z4gYL&b1LEZhR=3S{mb!lcluq%TT*Q12CD~NRX8W!7PsPKHmuS)$aw>|?()ITue1L4
zs!|00PD(}F5cGc%vC07v%PKDY{H7{h2PfC!+#w_8xUpo0A%7#7GWNWGl&`oD7}~D;
zAeh5Ypj;)2ON)^~s+voy7J{Jf3_P~Q0i6EiB=_B+q)KRQT<3QCS(4v@oxHj>q<#2L
zG^km=$6$}qKwI>yW*KPlbCrVPk4h$w(^-mA<Vi1UEuj-@o52ERo~bX{`t5(RYWG_b
zRb!4J1SeYt?ZVvPE;xXzmI1!=NqO1ud+dlLpcR$dY2pIi3?vaG(9HL3jAyokuJXZ9
zfK?CyI&E)V)lY5b{C~VbHill&e~+b$!1d5Fk@9@Zo==D{gv-7s?~2Laqo8c=e7#j6
z-cfTbGIg%(t|VM<ck!a}S$Z01H~N7w%Iw{>CpQt<=pjhe4k>4S*}fT8E5R4UIk4>P
ze1W4mH1@09IJ@#U-|9aC0s=0jg1#IXnLnW4dM@=vkWwZj31yk-+|=iK2|@uSL(lFv
z()z7@1(#upGFxO2oxeB+m(rH0XVxwlPoDQSHY<5*XLb;{R`B-4TELq6+jqFUjEB89
zwb~O%br_Ux`=NlrXq}qZ57qF}y6;EZIBUt|EgDRoU4Ck9_4TSLYvnRO$YlHu{6~om
z2&j@B96jl1JYeyU73<LUIF~+QQ9%GtDwv!n<v8?Iv_^ruLh&*z-F7)s2(i}Z<YcV!
zgrvR~*y{NY=Rc0OO<n6=UT|7XA^w}K%7HnItfvp?tk>=VG=(@{g!%$8^FrY0jHU{O
zxUZ~wRv&eKF_O)-aP|&02M`bh!$A7KqWc@~_ej`j(++jInB5t2)x`D)2J13i1VDFY
zlkBA<#tyo~n&T!(ZAh<>GsTAy^}0YeA+y5}K0tgXlAz+m#SE}~x0|6#>N!Y^D>sOa
zS)wSRkn8W^Pol%=^UYAPiNSYUhJdjW_)eF;wEnyR+5Tmjj}!3L0H)gV!9s-O_uKd3
zjcKsmiNd~!$q+(JD!AC<6f)pSP7Fi1%i7ssj#?We%#{39a*IOw#9L>;?;_p%;k`5*
z;S7&pk%5tjg(F+~xP1Wvf`Bgg&(qh(bdsTL=FORjaJ{#(W1tYCHz^9Z1$;2`{!B-+
z)@W~T;of33Sqq`6i&(t;PiPw2tv@q6n<#TbG)e|PPrjbV0o#6xLtGzopvV*;Q@Qpe
zBmx|EL^qa<{V2aa1zTY8xj=`#`lE#?UV*O^kf9c-pM{ViyRis7FxRV<kVb`(d>PZF
z29%E%$*N(KBiPLbybOFTU2})CyLA~<u{W1S0QT@B?P{WbSi?2t2LE^Zfj@#3^eZ|>
z-eYmz*kzK-)aT=LL>$s5MEyQ$ZNiPov@4pMrxa6X0Lu<AJyr+%+N3pcE0>C78m9kY
zJqZ{doUqOu)IR=+&oLH61SJ<TUZKtVUApopY1c*q#b#p;79|K*;Yr^Bhc6ruY*XGq
z$@S1<Q;}>gbMlZhQ_(?i6Cqu<Y_&*tdX<-k+g*GWnXy0S31AZ$mu<9fk4CY)(@AL%
zJszisgIO9=_N!btJMG4r7GS`TDJ6b{o^-MCnK7X>pZ-kk8PBFFez^?~cu__awj|#q
zXxv?;)$t5y)+0doYf-o<Js6v%P#CgR36VJL;Fok0=n`oA4P*kE;Dhmk3~%hc__SG#
z6V5oYP9-2ZLi}xFMc=wGspdVABb-QYv1P6HeI+T=5*gO=)^#YKf6wJ$XaFk<|JQl#
z<lg|jqnH!rI{P{D{<MIk5yu8Ve3@xu*6M7Qg}C)03agS-#Uu(=)L4;;NrF}WVtrCd
z(Yek?DMGriGh;+?xKpCMbmrMDSQ9+_J@|sYF>H|{L;yUk>G#7I3C2s#hb65<tKd{}
zFCgUt=971NaF4|S``D~s`%3oXPQ0EP#%n~KW5pNkhX9+~#5WzXLuoRu0B79sN9tWL
z>T?i-Btqza#BD@bUIa8euv#8kB%ZdClM0w);Lg4E2(ga`uqx;kP@U`zYkP@bJ6TT{
znUv!NB-8q!u{yxiC_VLgdN5(jZ5SC~n8|@LSNc%Y#|TDJ`P#0xA5SmtvJzGerx-nF
z-~A)`8T;-_@8S<8KEHO4fA^0|;iqprZDf1??DwmGU3w>eSmnZ@6Kmh+z6)EK&cbJZ
zPBrG#HvFXhTpwA3r<HvvEuAo3Bai;v_-sJOwv3%85YXC*e`u`I{w|?x?*izic;Z{p
zCj#t7Z%W$6u5<2o{GPdXK6O0H_55-qduOTtAo^T$VHs2-Ec@eeM$%o!+g4=bzVQl_
z-0Wh-u7yqgG+-7b+9H%;J2HT1huzj0h6?Y&LK}xXo%P_(#dg%2gwe2pn_MlG(3VdM
z6eX>dU=r|ey09PF;OBmox(r~wn!a0=<bC|74}OQk#o~{51$oX6M$XJcvUfb(<!Xe_
zhjtji&NoE{l1pEg9dfm-u(dNCUGe!*t~S>^I&W~_%Y%hqKN!bv;(ylRI|eVYx>)~C
z^lv?TCQm%IOYbflJD2nu^ubPWFz>*g@Pr%T&&?w7r#R0q3WeELLbxka)Nv;Q9nHP@
zXF`8T<0!;sN)4y9-?DiJH848o()J&WmE|Wqd3#E%Okdq@U%tPWQ8fHz)&poy7lc#|
z;l@|<-<J*P_%^hhNIz~ngUs&ig*2XUygN_yYWd0(WPi1?7gKa&%%bXREC09K89yu7
z`0F60diC2_37Brg9QqSev?<4>!g{D_XQq0O$suG&m_h@aTZ&C_0qV}1d!z45I?+UL
z+UfSrtnT!y#)W$Cwws|7XPXnwOy)Pqz7cw1pWB=KF?q6F=40gV?(o`3I7fTlGiZme
z>8DJEWfO};Y8*alQG)Z}nxS<s=ZcRB`RlA!ls9ECPK{|Eo&}(Ia!tPC$M&Dz^bnQb
z_ANg|JzTu6_pDNf>-YP--$&J7OBX!S#(J8KyFV2nIOocuX0>JuC!wPLA@7T3`0uyq
z!cjt=lM`i5HFGMy5#o=pSk4;D)WxZ8t3jJ(^3B+c0+pbaK^Z)iy&Va6019*CN`{`U
z%lM4za9K(9e1_K5k-P;nA?w_XQ5DFToMGSkgb<~qCyB)Y9J>YN+IZhPf9H^k8aQk@
z@1Lbdbsp%j&uf@3U4mO3F{*#zB={cNnPst0juz2g`-3V7*PD&H_h?CipIv!75xMnD
zCstSQkVCIeLEbqFp<9z&nO=oI*qn#MAfeLOL^o)6s(Po;+MlQ;oOkb;GHdwIx*uB&
zxltb_2ODiyWbv7em}8iwp)4v53)6uVjqX+oPb&J{J9O0O0Y<}t2voDy&En8)y%!GV
zMi7)?ot`(czOJP<wnpY5YX0pE-Q+2`*AnT1>}f}Jqcvnv!&Gyd?B^L(+a28GOKgIU
zc`sWRQ-K~|@zWb}`Edy;-d7f8+YHe(Xw>uetFLc?Yr2HDu6Gx7nDN(_lILHnYskz}
zyp!tH*ZC?JH(jbNv!)Cm*N@*3@}4vSrxlPHL$a~&y>qnbt(VlJQAb3kdUzy9*F#H_
z#E27y7p8ejPuwp4c&W*!Bje#R1Yg<*uozBm|1#<gXCxlFwjBsy1V0JMg}g6ZuA9hT
z5P7Os{}zi7dEq*zIWuA6FPS~fTQ=;{qPH+#kd*aLrwYoe!Y+j@usf-K;|R-68kr^h
zpI*v42h={j0Jc8)>=QRQ;k~1LG0YR5e;29gRxqi;jrHQeW+(LIIpxvL514dY<MJkP
zYu+ZR$!xCMa}r|}ItMbn${*g(T>GT(DpI_*RpGbL2d9+L-r9)w#Tlq62=`YniQ2v&
zGD>4UlWKG7!juw?G`Fn`@+P?A50RuttVC_gu_Pz5;mxwsQt|uvMfPDdJR+qYy)O`P
ztN#NwS6qf$E5Fbq)HEdH6xD8T=V+H<$eov;xCF)rxWu<3c&<O16O?77^t}-fnV-+y
z%pYXRek1l4U0@e};cPb@-Z*IBHrGy7*ZgT%S67;j>l$e2W8K==Jzxn2mOcwRE#WWF
z^pA76ECE>7m25uEvf5*!M(}P^HwbrOb)-4U&#<YiK5wYSl8k(vPj1yK^+rvq(YDt{
z8~qDIw#lE7AeYLtV1Jtu<w#wS#uSCI$VBfbJ1<K+%d)R_)HzLb1o@b}=bQb@_Y-d*
zSOAxB0;KomlP*PD8o&~d(KX;VIu717W#4xoT1Qg5p06}0JOLiq^<|bO1YKe$hr@e?
zA9pOV_aalHJM6BMbLDaUo0Ps===&Y#Ucx7pX|59EfEEyL<39Sf7U3+NEleWY-X(eW
zoh~n)ES^t10a2p^Z}FNTuxs<GBmmcz_?{cKJ>|_h%egslQ%MM2O<<P?FdDE(DbG+D
z^=X+!A?QbHZ)hDU(yCA3`Q+K@4fV1j@6bbA4zRM4%kOq)hD-*rd<eQ^<jc_+Zjk3+
zHyO}-67GePOESCE!72?Bfyz2HcwKz5!*iZyx+m_OeL-Msr<Z-c+1$Um-D}*@jsht<
zP5PBt=02|2wJRUqRpPz%F`aboM+1c|K99Z@MZ49%)+2dEP}zG23(d=LNi)x_hJE&M
z#yo2pjtO9WpxGSc(+P#-$2(_zy$(~VkrL;<t~>)jdoiDE;oq#7@v?R14YbMDApdJr
zQ1`sk{EH0ZCg0F6iC155rvx1QpN?ov9!oY6eHucTeR4<AbMlOQ%mXP@M4MU$Kcxi6
z_Kmd^evBXJ9<RAWE2}NMZS||%0EOwP$m2Q>`Z<t+%{RGj^0s1V>^;cfzK1UoS20OZ
z2e<vK=ozCUZXru`mtDu*z288@bh{k8Zon;xExr(d15V?gSWaVF2HYjy$?5S9y=r~{
z^h#O8Y-v-k>~bLY4&RF(8JgN(>{a-QC|6OrT^UQ(XGdOevb=`k=pVf2+wEnD`zLv@
zK;KhTnJ1}U%s$<IQ|d;Kz~lUp{W^EsC^rS7^Pa;m*J^C|JSZGb9B-B>Fu7y&)Qsw?
zDP8<Tf3;Pw&?#cuW5!AwsRx-rdQ8;v@+9jFR`-34uo^2)1^2Xx{y-}+MIf+pBBdyv
z-=Q831wcK-AQ@;j_LqM&%Y+ltlkGn$enE<=ZcjEA<my~W%=AkYj1Wv4c1b|J2Y=N1
z`bX9SI_QCe7u`2`yZvq!dOl`)!y|Pwm!9eTVn=dxBLx>F-L+#E@z?in!xjhos-RiA
z!#($IwtU$cew3X2Ot;99&HwB05yS(>yr|pb-&?6Kq(6jOWM%ah<cmQ%4ZENXb)pGh
zw!gO^L?`rL(9kdN7}VX-0S}+MCB3gUVd^k*2Kt<y&C#9r_XOA?tWfZx71((oZKODB
zQuxo24^Ovxp3ijluz&g3@#V1cgI%SIB|Y1K_y6YllOY_BNZn7(^<QowWbm^bsP>zQ
z&TpghY7Zw^uNJ%kPsa_3e7}_<vCgHF%MR{3gL-bK2OpCKx~T3{-oPpeJ_5G3ZFv87
z^5-y2T+unVnXUfM;8aI~!%r^zSZWqam$;dkQ}e?kXSXhZ^~S?`z~xq3@a^2mh-o|o
zY%QNia%R;cPJ#inZJhnL7zIv)``FLky3>d6Yr9?f|3B=1RyzJad$W5D`UzoL`(YJp
zRw5e%wFCK0+I&N`VN%6ki!W{|;e%ZqdwE0;2l0ssrAGU;oNH*i8~Edt*!gE492wBH
z`((P4bI_*3CCdYx!QXqg10Q!`{Fyi-bsg-}Xr{5rZ!8s3i0ZS28yfms^94sKcI^07
z?Yn{IkK^g}_a|b(2kw*kj_b2*LJVy2D;)SI_RtQSP`CzcqQM<53?Na4GR2)8z;_iL
z%}bHFdrK%N$o<FM@;Q~Ru1C%NUu}#sZoDqvc3v)!H&d=+OIQhQ*ZZZd)617$5TfT^
zRIPo`zL};ueE4m!>f?mZnfv!Xd8!q~_YSwl>K0&_D-g}l-aFGYAtB&Cx#bhz3miT7
zi><5Cl@QFs^Oi^I(B4ywpX#1t&F3Cne;U93t=6YHY04NGAK|n8`GP#1aoe6D_w^&n
zaA%RYbwJ%cxnj6`Z(x{~Se(W@>Q+uG)YhbXbiSr|f;E$Rn3+0^$vpD=w`nu~!^jMH
zIAOTsfmgdQd%69Vf1Mf_AGNwQdx84<ZGiL(&OjSN5S5)gIOE!@4n|xR5$8QweU^O(
zigiTcdRGs6BgCTC!IV&wHbdi;gt8WHZ6Ix2WHfd|%x3<_)dR~2lH)F|C~WJKSnf^v
zk5vF*WMmfXaOu0*>;SsS54l}_ro*}aQCXRnW{sz_h?XD1upiPj?BaHyEMkg6%x{8n
zO2=$rTk}D-x!b985wpw&%a0jX_h76DVr{C`kPv-Ix3xB|dpNWHOCm^?Sz$9UR-MUx
zKoc4*j_mx&nZvh$CU8Lc3DP>rj%*D7)fLLPeNv!fYP`Y$eYm%n){o<s80@1c?Bd^`
z8x$Ep9<1ku=|hE-x4hEc>qmon2W5H(AgTu52)!!i$Y0m+^faFq@7v>yzbpMb8X}9R
z=~`@BQ606n<yo5E4%jIcF4eDg4v=yk187?%8;Aj_{s<E+iB{{a{+)jJRyZhS>?Mbz
zD<xv5W|WTm#ykE1N03Y;ZCgsL+?#1;k<0dN()kk@?6MRWPII+&QJdY&fnE};RRqVs
zZyKJ)m5#7x%)T(ogV@{Kt8=!1><JgJvy)*r+1R_y`oGpD-n3sTJaaAJ#?@D2$d8T(
za6Cs2?X69cor=W$dkj+T^3kp?ND#TEIw{wd5dC{};rJNMe12j4R8oMl_VRH%GX$nY
z{rLy;w~Hk>^OhObH@*Z>yvhH?3pz*xUBt4SmzUsoFxg<BXdZpsC*F~Mz4cKr_A7Yi
z^OQ(un?o(dam`T6X|Jt;xx+@_0>W+V%5b3}>bTG&Z?#(#_L9j6#*k+}8;okHom4+L
z`I(hLH=hO0H8bx{&CZ`^3lspBI1u^m8K^vk>j)v@<o1$p!VzNOQ!_&7z5B})9Z&RZ
zZ+LyBb7RcKIj@Y=3Fw*S1k&Uz>K(6fe<ogL#KQ-rNoAeN;tH@gWAOW!JM%a<rk?kN
zi|}LqI<&k{G8(uxi#|GS8<haxm*2P=`qxBuf;<>ey=#~_LlN@!5mR$E15d9&d2Ek`
z(*@449zrLX591e%ow*kKdS!iqGM<){s-0c2W`hi@gi5&y-2Uyc@~{39)}rGA=0aK)
z#{4^$01c5!aM!2@8x><Sb5e1Mi22Xww0z=?hMg#Hz5=^F#dp_G(Kz~P-5Htm1n*Ck
zH1!#AFryIUNfWkob2W4Rbw%yoU`Sf8X}^ovA%s}V26NI(Ua5^Wv&HYAjnSY)`tAJz
zM+hLCrqlq&n^~8$@|S-A8Vh>az1r@gunxr~4;25Q{I6gse-WYe#zAY9?_KtB5ZUs@
zJ2o%=o(%RGjTz-8IW^<K?QK|-S}I9@PW=sfvKyRjTf;C8dKf%lES?Bc*!ca{@VNw8
zH2=3&lyZ%6Hp}3~z$dR*OAl=qiC7_Q6;tJN^xpDjRA8_z=FYSQeFE8c`rzQqJ*x!f
zY&1hr7%^E95y?VLol$@wis(#Glfjp4HG=;DFA3TRzS>E_wYb9!xvYxnDoO7-rJ{LN
zW^yQW&e`A&Yu{rUwB-uI#)qpB`j0A5XfdTO2SVP3Qwhu+$_y`||I@F_H`FALK9lmD
znxl|VG;Tiac?T;7RxFFBFCIl(@3~|T&PzonfC*?=$_bWBY*q!rX|Q%ms*i)syk^O3
zA5&gt9Jc=%<m|#kG84Yss7xR&l@Ks*2FWOxh?TYyu;!HV)L9-!YTpRkm=FhEoSqHV
z7X43{S7UD7S#g^7@L6c+Ws#{4Uji@fOMkGF<l7w1G!R;zK3L|^`1{!&K3;pqN{{EA
zIM=+}olD-nrV0JJfO{%=10LWzo)Se^kjL}aygnj^r&Etq$zE&{H@WY=;y=y1R3iop
zO3yA)(pXww7>F>Xi(L()pSz{KQD75v<ng}zCMBrZOtAL#wG5>{_m|V<O)Uki{N}0)
z$_k11kNs34WuU;e5iwXmh+OIM?6s99rTupeRPFq&kmsJX?HOn+n=uFxvUdKJ^E+Jc
zoylnJEPlzVcqDeRs)DicujN_BhV>!Y_0vBu)ZelxGPma`tO@siBOdQTUKtn))8gfp
zJ%=`1_0>x;4%1pSD;_42s*Z(e3TZ7r@VwA?rb@DGx;u?AnuL~gE!%iaLClMgu1TRa
zT(oPI?fE>KG)>LyrwdzDxo{CLJG6ul>C+#!s05o;%aQD|rr`!<?`y1_lbxA!W;{Q?
zoe;BPB0Z+wch)Pt$6yy4E6z>j_w6447-_!hJ1}+8a8~gvw><uMy#H#9<Mm8ayBl90
zYxgNk71p}ie19W-B1JPeSjxv!g<3$~SSlD(vp^LZSM9HrxN9zs|4FSNc{AJqB{Bsy
zowxAXhGgy1p5ABXHsd24fLdapth@*3YJ=KMELFATH9LJedI`p+)^CL*o;J@CRwp-#
z3)Egos4K;L&Yu}57BDy~ldbXBg2r;?o-cbRAFgp!<ReP=^nrN>310Qz$!_yf20XQr
z=!bTu12q*^0wc>K%Jp^D{=*SD8@%dKnngtgUjY_K^4@?`%cw=_Rd!L<f16l(el4-d
zy&`<ZWu*9DKn2+e(p!OHGIM*&3YrVRMqiHvD=9h%{PfEluA2YAPLTCM&TPUJDPS*|
zSL-*$ttQ4k<?U*pSI7Qq;&8X@{dDA#CPC2DDk7>jxed4Q^KGK`-0!z5$8Otxy;RXB
z|7v}F)rU0IUlk(9>&tMhm{Rbgrnd&Hj3g-Y1XuTxtx(iLoNJmy5jU7z)c2R<!%tC_
zdzP^|4RG~TRCRBsoCYI4&p#hb?)1v`pqjMvTlx1qz9#AK;GZb*N=#W!7B_ZiB_6i2
z#`7b~CI3;oG!a&|VE}~G`!1^bg-V}eg^~+md^l>s$=0W*eTF$B*?Q}uzQ#1Q4vcL3
zqhl!3FtiL$3-!sn!y2p2pU#bcJU0KO_yg&Cs1l^iG~@oc@u4n;hN+2UEsY3;rFC%O
zh67NN09bzfvlWz&xdFu+VeAHxxSxkNE84rl{NdHAvm$$TMB)V>L2)9a+*v>r0kxwR
zR$Xk;h%<Q7^vJu&n*K1~N&q)YzkS2OIXGv$Ml4Wj!y$9=V5<2Cz#BfgPEXdY8aBNj
zBUF8^XU|ga-J*Kvfx9U0&vtowExjZYbD!!wB`H73rPb(0k;7}#Fxo9i4>c6o|6x{G
zn4qQST-G&A4X>0B1%D1uLWfbcFR*?7>azGpP0J6><7+n<r7{P^lw=b}vPCFR+f1+4
z1rg5>;3rJ|*vI|Xq@sm4oLfT)aFTNZXZPR?tizJgk<%&%YR+G#9fZX|P>gebn)B^Y
zACLNMF)A93_aXdw@K}{ocDdx^__@gx{mXXGW)0JlL<f2OyJmdPBe0X%O9z(1M2+Eq
z!h7Uewg4EEIL@`5d0b*DC;R_~a<Y@@@YX&8Nbr*k!GKc}ub!Xx+&Zp;Qwp{2zC185
zGh7zXJ0B)if7$)~y+Zo;(AF6fOS@sWmi@If>|{ajH!H?ls`5TQjb)?mj-)2FW3n6N
ziM#I0;s)y~0<358rWV?S1FfTF4GBx57YX5da(_qKS2U`v#Vhm+H!1f`+1t#P)4qRc
zv21;)1M!_MnrsA<rT#Gqk>%D;$A@j2`qq`?)fw^mEk~hN%_yTIh>-V$zL|1+$@}Tf
zQcbfr;9p3myK?1xEqzw12S|OZCh*t_Gzd;?T9aV6g^&V>dY@GdP{4nCWy^w_2bg}0
zu?LhjRz_x6V^=T1EQv{g@wuIpe1{v%yvMg|RR9s99xLJAc79+`Pp<w{e$7OB&`_AB
zns!q23ki7liTl32)~)r8`p+NgMX*=X7kWHwQjCe$Cm$wH6~)269O?XmTl!{&9=w6x
zS1ay)8SH*4>b|g!>`16{&23jA1;)9qUbBF=9Sjb%^q%C(HQw9(@CBr3-MDxq653ki
z-ccYWySA~YLNBFfD+f)($0oprd+%9I?|>U8V~%HMYn)ajIS~FHc(y_N?0lz)04*pR
z51Oo(wCtXI{xP|rPo7I8^0g}M1ceyoU<jsD!vc?O7kD?zISRAAqw^!?WvrbHr^7)k
z__qncY+I#Ru0DlXl$sj;asU^4A6@QQDfNneRD)3!GO#jgeck&HnS?6`?5nSN7+h>n
zNU0X^^y@r$EwGi2xQf*8`3l*adDB`?zU)5UquX1^>a;kLg0X2-9X;)GX94jrOG<G9
zlSBR<+CmpLdq8(<7mONN64gX{nmPPEn>y;Qfi77O&#8PK@^SS119)vFW8aItJU5%P
z*QWB%^<jk?vr)?!-_~nMk2&0Hi;6v<e$zP{MK-m+(}*&AM;|_u!w-snqo1_~Emw)f
zwT-IpNm<riA3IjMC+WvEXq`ijE9U4`+hzI%y`?8_1^rgX(`@K4^eJ^gME!|XEucB1
zD_f~xbJu1Bg#Pa%pbHe*l@FG)rx;>zun6GX&?{@kKdClTow)-HE0iK`eqLsvI?9R{
zhFf|3XIS;RiqFS!Fy$!#LhT;~VIWc!w(`5txrSYf?6vKhl^0Ozc6*W2!xyztCDC_s
zWc9plO~4f)>$7~Ty^QR#s<yj^39pB<m3u^rdht%CMJ`3;3sa@_1_P#~8GhGwlD^|c
zp(&UHOt4Q}T*j|m3ruotraBOdUs(41$XYCPpBMR6_O|w~nhxNm1x&16B3dS_YR~%>
zSJkBt4~J=LoP8y7{txXi&J+x`UasVvEUx*v9Tk=E&dQ@h0vj-%7MGR%*r)5IOtxgA
zFMVaPhZm-*m&C~iL*<>`%H!4UZ~9J<>i?I%6ACs1m{zFiFON*+2Y1;gLHvfq@&h7F
zEzbW0V?6!?0c6BbgWFt6RA4^C&j0~t!z*%7))*|}S0-Tk7xlSEX&@rK4tw7rJzQw0
z3S)TpQX;Z%#Rx7TlcFcFeeR=fy;S9osKlr9`)yJLO|OS}lf9PQ+S@xm)<#+RUHY@E
z$r8RIXtSibWKjQbm)zcg!N~vtLtbV$fy9kUmIX4M&!Wnjv8Z_2@2Z8WKSCC#;v);s
zpu#TUd`4#X=k)s5_xW=0=@Fck`h2~kkzYRFEF1G$C;QHx8o-}em`|f`d>0PdulEAU
z22-{CKb4kUKV)xWUdJ10-8_PS1!KW_DTqgzZk|oc|9L?#8dYRY=)ltonQkmdeHN$Q
zcOnDKKfn)3Nh7PRv$*Wn$EPSQdh!ueF{w$PD)(!_OxVerZ+R>4yHOo=Ux?Pd=Iv;z
zP4XPdX@a2zZc2?FAv{~^@qvnHAl&}kT>%Dqlw6>z``W12T*YUk6wg8`R_p4k))$&g
z)e0yCL6aY&o&YWas)eBi8TjnCsw0Wo^7w_KINbw`2>i`GFhdQRk%*GBnWI<skg3%Q
z%nV*4xG-;@G=VH|v}&#e^I6k}vdU+&9l_=sDV-Bnzz@KP@NTEhy_>Lp_rHhrvwL70
z`!$T?egRns2tgl?<B$N8_JMsJUZv_5!ylBvAkBA5Z7btlQ6>NbwUDrD<<m6vDs%fJ
zftliktPB;D_B=(GIXP=-V&Ze*eMhaE<$;gY9aH%YLawEArEVk_?|_D)vF>u0{3MvD
z|5}{p0_j~4=^?*M-I=uOQu3l=-yV=(EHN(f)D8<D=ZyOw?7eqT)Jyj_s3=LI0T7U2
z08|)2q5=Yfiex2cL<s`INX{TCpduhh&PtLv<TwODB<GxloO8~w{bj&=q2Ar+x4Tta
zZ`D43T<e14boc3#&*z+mr^)BLt26P=1zs-;HcZk`>6_k|&FLp}XUUV$*qaxj!7p<o
zYG@e#1zbx0BlWjEF?}cAMrYlb3U&KYLImEwayI5EK$S0dpn!G{DL@aCya{!uoLBgD
z`M7qcgUU-YI*DNTfR|n<IpO`8kLIN&<7tU0xlF&q8n<ly_}MZAfLFs$?X=Uc<rZdH
zXZ5iLLqEpIfNFhxtC^~EE`N9I%@j?;6Y3UQ<L=eX@lX<frJ;gNBe8ME$_K?nz%IP(
zTp2HZG7Y5AqV&8QRcKBf;a|r%j(0Xyz0<M4C_RC{U&O<fHi_FbDwBCG(5j}tfI3g5
z+gj)he6f3;IZI-1qDytp<Yl1FSde(ZjD_0N3%48%J{?R9xXu-+qhrNGC*LRbzrXX5
zl|OHGwqU+}=ZFThtj__joOwL|2OY4ZD>Sr?Q{cDd8oz9@P?r5>^KZIF6{9brw6=}P
zJgcO$I)Gve$8M+RSRmcr8F)`r+FZj-Gqf?xh}9e$QM9uduK&nSb2o3V<UJ9AUij*G
zrrX^=*S&bSsLXoPW}Ua^aAUme9maz6%5Enj{Ib=da7fLpp4^jnFnVRDGs+9cFgfor
z!duO{sa$Kme>T7$k-B3#m?@jzy>8H{{sy&4=IXG<OM71x1f)1|5o>N5lEo4OMkB5v
zAMEA}1ZJmGg$d6IY%b;(Zq=PbIm{QPP7I0b#61{*#Z4>&wJS~Pa+scQ19?5peIiH|
z|40AFIp+n7Y7_>1doIJO(|kCkuktqL9CCWjemz5JT?YfcnBOd7h<el4c9mbqLP$f?
ze77#Amm<4!Nl`z*5Rs*uJ2hq4JnTJ<AS2{?v#*g;ZOQNMoC|j_bY5t1+G8{_TMx@|
zos133R@^4ju)f1o+?-&u8SixWR#I-M>88!(FW?80DyUf0@eNp&IBtU`vn$HoH}3DT
zIp>sl@$rP(c27>OF4wb5=dMkqG`>L8e|xuaxqIVo_Y57VQ?2YWFSO^l%b>lT$P55A
z2`=6P-rs)=d_lIxu4{_ix&ZVpmxUK^8u1JQt;G=<z_*rRPL`>(IODW;k*o7n%g*`W
zv?O5Ws~PtRy!f_WeJlu+WUIQ7CW`1-ZYU;JP_oHF?(Esk6GFK%TmG~Ty)aMe`#emU
zPa0l|XDkVXIT~#IO7CxwT3#>nyn8#;pKmR5W%beN^yXA${Oa9VM8`^ZyfN??w7!ij
z{#1U;%wM{S=ujtdC8ScZO<dWiIg8Q&BZpF3n*}PjyFte&PQh%x8KjUkNQveOoa8#~
z-IJFZ)tP_~d#+6r1KwuTdKl%0LFMe7EHZ1u|Cpu%ywX{t&`{Fj6mG|ylquE_#Y?uc
zmQ!kwm~vq(1dd|0U2z-K+|TFU+3a1mb(RA|uEN@0oSG3aM39e#+oiBhGxg(W?oM%B
z<(DyQ{fS*l({PuaNFy29{CSXwfhuC1H?3owiVmC7cxjpMmA{|BUga4Fti_?14~B;y
zh->z|F4XC?2nZ8%ul8i5Nv0UzsnLAxKSxYPx!1p6NKwx}-b+jq6kIqICGqldDxxC*
z7g_G;d3P%CO?A9eZGoEZ<h%=sq8h)wgDb+#s^5W|fHvF?g=ynp2~{)y-*buk{u_&t
zrV4+|xUJw_$ibb-8aLM3^`?w#1Bhq`byel;(xn;~VWK^UK;2;dr39u0f3nuQ6VqGG
zV`!gsO=Vof&?U<AE)y@z&WktAK`)JNnN}l-PoQhm_!FJ&`~^i@E&I$#se&CIzMaab
znDRo;mzU>&%!>(qU|dhAIal<0U^dE2fN*=(>3QzV(v%mw$GVca_oLEkMg%e8y_Jsu
zWDXCq@1F-7D!6$FIO91;W=yjzwEySuyF@iD0EQJ-RM_}qlJ;ff)FAd;*u-f~^QxG^
zjf+y}5Jg)m%9?5WR92l_ukV^_13UgIP;U>jWlL6?|4yGIli|)<58MrE!B#UFl^@I-
zk7)Q@gBlMt^GvOJOz8?Fn;aAX<rKKnIsz=$I$wIZWp(U|YM577F?{e-P`fIC;OjJ;
z?{@*lkO}6wT(}<2yVXmOvXl?G!Lri4g$?&A!e)z#Yn!#!L7QKTG`IR_jLtalRvBoV
zavLhb{nekET&R=g+4R+z>*_W_4q^>DV^iZ(8s#h7j>eE_62Excln4h2i6V91!-9Mm
z7{}4Rv-&?25xRh6=J%dnG!9eoab=BHg-gG%*I$keTQk&pV#;?F!QF4qh+OL5k1dET
zf8JBeUKhC5*6&EawuMV>SlIoCc&J5M;3EJ2&NA!xm419#>H8Li`EynRCishY5==Vs
z$&2}g(=A(Ef4#?E-?k+v06C`}x}$`hEzs$!T>9ppN>rm<R?*eB&rkzht;L<&$59@q
z!3jx~ZV2BHjJygA9)VWdQFsGQz^&611R0qlOZk85Er7a|X%~L*DQ6y#C~iCbjO@_1
z^Z;l9r;{iqD)>L<hyetpN{1bE_f0{;H}*sI!?PGc8TB1HlK+`nq6?^t#3cq`yb@I^
zVv9pSZe|!{{R8CwXBN(1jq5#ll7kSO-a@byJO}`trP1<$7&8CAB?gciD7)}G0u*;$
zt_r(BeCPJyJywi>MXn$7k(&j(-l#Y*3mBJRaeUQEKw>;?0mCe()?P&`5>(Jq#r~l4
zD^pO5rIYOa<2V;Lz&jR|LLp%GL*d!2b4UV73@`&1ANTz?8j#b{KFn!36B1XRfxoP9
zy|XyJ+|ZH=dhv!yH3yPSvTf05!-LU6OH-FAk0lH*sQ{zZSo0D**TM0WmIx^c%7og#
zKeF0yEP$%mRnU=!66l(&JE|~&Lh*2g+hWzjm!NES0n9p%a9UH|VA|YV`6gWo74O(O
z2a}7O2tcWDwH3Y6D-s|{3d*;Jk5#FiOMwWG7>nY6JmpM}3(|Y~#ccYD1IgRovBHeh
z`oVwtKA?g#ZyO($RRI*ysuLz!;9|0<*PF|#TN}7wlU~-N*XPCIAUu$KwdVRlJF!9-
z8X!;#q@2X@6aEpT0iAFD42|<_^}EB2ah3x16%$p&HTp4}3gx4YN*4(xloB#tOpCR&
zHe3;#h(LR~H@^tt7wR}er9uC>g|#v4h-l%gGF1mf2~eL5w?!AflA(z!w;6RpkNL<?
z?}9Uz!akh_T?;o3YR|jaefqJ1Hza({_POfuA_*u-UGb@}V3kKOt+Yqq$s;(tl;^aV
zFFIknqM%eB0*cTy`oS~cPs6SD3F(%7hs?$uGlCJ;o;ef-+$blS9^II`1>rbZ=sk{@
z?NG-+DjG#E25{~8&Q1cm_8S}k?tf5-r{ep`x4@<S<O!&-3&9ut=2qItnRE|}xaL0v
z@$<_&Hf~IS)p@w)7X10@Iqae*15Jj@dT8uJ_uMd+>o`@r+YwukPWz8VctG^P7*=8c
z8e>{ma?&J%7cCoaRA2h$@_o2s<t)mTkU-cc;ui@3`V(=l{>7%n2r9P1a0@Kv7r2<`
z7PxdJE`QsJcFq|QxN!NR>xXp_r%Od^0<vyFdZ8&WDl7vT5U0@17ag4Z`E%gEVzu`l
zfBGiU1^iaUdJ#YD6jUu<h>|XCX($X_y92-(H@xmpU2>)KVyB`w0|(HDnY36@JYJ;a
zr7U-J)a*=3{G`md>TU}a>cs$T4m8DDQ-;jUt<AYb#AXB<uE9S52u>3QyFu91bN>QG
z{EP$o^*-n7@dt{jpzC^8W0Vd?+~a5$APJ=383UZk6)d;K`_4HxR!H9)$7tm=4}VSx
zJ<<azGPHKS`d93W%2Y2{)_`H7rI8Cwdc&o9Rl}0AbM1k2q}GOC5;f3OmL_n}&qYFi
zj<><N0MHEMO!H;XXe@cbdd)?#6gx^lV&0!0W!|{K`pSMux&U<NTG_aBR;7_0GGk;i
z=FqUjH{4ioITcm=r$CDe&s~Qv`l0K-vJ%u|ffljW6Y_e1&3N8V9ZpvN2u|$I<g0bG
z^8=m~T!acgIrNVoz7<@?Ob<f^JLw%(G0x&#(k!Vr_E5hLM(%A*p*wRf$pfAAlkuh6
zahbA)WQxW6^aV(!hy=E7AeZO12j3G3h|zS(Z&@Sg34R$J$$$&-N8Y|aB1O{oHnj(x
zV)w)X?bFY@TvjX~6dFiYS8PY3H)aIBvYX%FC^vE_Ir8AQ2^_bNzU%O}Wq_^}QZrZw
zKSq89cF#qP^!*XX9#~~(1yGbRbdhI!eB75%1Yc;WuDp!?a2EI?gYBP3%?yY3Tps*3
zq50>r67gva0y6N0che}*UoQmJ`%RVc55ba$pH+d1zaVRL`PeZc)xj5bTj(6B?pA;?
z|EIWlw2B<yibS!fL#V;gZ#kg+<KS;&wBAGy7|^+cp74kM9YA(KW5pDd=w2Sz>Xr~>
zw!@DTJu~?!<Tqz~sT`vQ?NjJ_Z+o0O{@X^V#^rjk0F9Ep2?1KK29!r0yM#y*z(^`u
zeqYd4??cL+?S{Vazn6M+egD1G|4Qn=#OA+}`d{_?FLwB^`u(p>Ju;jSTm09i{?}1D
z@*E((5d5$A`~RW$tIGElcIwo{cF~6q<c=DV{`dEU|5#qMo?Y!I`{i~eT*|P>W*k=)
zzFK1$@?-N~nx#=1IP{J}`e+Duw*;VS9cioizfF-~qz#ll%-CbIq7ZPjw;rmBE8Q>|
zwpHhUwJ-ouP^qlD<}EI_Vgr9D7QP!g#|LnKS{_;LlGwSeKH?wD_U&~|uno2U6(w@W
zfmOaEdC;vL|B8A4^_hd_jZVfDFt6DafFL)>2u;_zbn)C_*-w;=+T=@#{CD@rvOE44
zX@pCn;M<=hYB8ZhK=j@%8IHv<uh_w<U$DG#Is=c%P+Hrr`S4BZE|&xtlNeL(iFX5J
zLn6yrFa7gR&M?s~aFyT<pkKLr{uTr{SU4!7<DuLtaA-dly81ci?5^*s^9(F%*<0@y
zu9xx77g6plM~s&O7>5RzcWzBjgp@#5Qmv>76mVydJ{CISDZ%HF;5)EvF?-R;E&MNU
zOL|Ij3mA_j12dgL)Rjh-1`2gEvR>==1|U@O73+oXgZb0&%4wFo1!QXFwf?FGs!I?C
z`L3bXjk8l%7eJZU)ow120lCsFu2ma&=VIGv<9FdQri|JP{%WRGsSBle(sG*2=rrV6
z6=CpCIoqplqSF<HU|&<P1c84@0;oH2`GATRfQlxhG)_CBO5+vNE_&fMTw$#&Ih}kn
zdD{s0`@aaO0JhJK8L6KWQ<Bx8L1|nto9$X_)TI+ZV3?HlSa_@bFlYZ1f>948xp*J&
zr?W1Iqd8@J{`MiE?=u-9T4CtL3)b%J_ogOZmQ}@t`b!zCwkhB;T(Od<!!6qTLpccQ
zMCYU#uI7O<1-lXNaxJ?HUBHI1l72Z!>B3-Hq6UqyDj1(AqEfu6D}ZOB_yYoH<nDZC
z{I(a43yMFsfmW!zGAkdd&!j37J%b?`4dLsY#=W@<zb{I=x=}mc_+mToYhh~|;RZ%S
zGS~8Nzt*a2Q^f1v_`_t=!@~1%ICrgkx(q;yFQde%mw8?^pC6>GntQ^C$b12{5|l<h
zc%NXo=oJDNJ@c+biq}ZVDlDtT5`rD(F2cE8^dfepHzuOIe9~AhlS(-bZJUc0%&b;{
z4igb-2PVG2OfR#I70~u0!CrS6sz|2Jd9@SDO5AzWp4nliKLE4ad5zp#bQ17hSryEk
zFM0-nw6vTt$B35ec%_w~0%8??NRpyJ+d29_(dO#hUDi>o`a|Spz8xA?4(S?1Ze*JF
zx2Sq##9`#wyKM?>u8n$|f;It!^n0^?jul~((xKw!5e5l}5BJ6bukXA{<}3r#rd7Io
z?>GlznCRu;G3U}6Wz_Rb-zYF(zCa(O?GxN#|4e5m<O-*O+|qssLL$T%412e<-3C+G
z(YIO-_)Eq9Gy$6L?L`42u;7lf9b-4BvNBWbj7xx2x3ALCLKHd$NZodguIFD~;b*uk
zEKqU9&Ys$HI<W}?S>^6DyO)BpRI8%J-F5KROVRc|fAV$@L5J(~w~Bb`uodN5i$>>d
zH&D$FaE)05#ke<*E@URIb=x8C3*k4l*_OZQF}9l_+1v99N#t_JiVHK9X**R7+CoD4
zu`Ho}k$vR!+QM|-I=)lk;GcwDb%#+Mt-Z~0Jb2-%C4>#ZxpSqxgRz^+to6Ls<UFiR
z(ZaTm!Z10cJvn!1Nh?R)3YXFtsoxFPB&+4`c|G|1q9-m?``2u<QNAxB*0DOztw96f
zVp4ad3PyObb-7h}aoxbT4R+}lqp+)aDSJUxjVim#xMHDqxk2wyAu6Y5O;Kx{Dra6k
z<*lG5MqH?=nDt!VxDb8;EK9C`e;w6fv3sikOsH*X?3oc&f)HkN4Rqay)&K@I_y54t
z>pZxT=hwiE&|hdAJ^1NJK{e(9OHi({4eo%-sZ?|@cZ8uRyVE`+wIjS>HF#iSakz}R
z7<FCEVwKZI9pAo=ZMk;PgS-DGo_cv?TTFl&acsCj0@BFxDa99+YhCB(BKCI_6-Zt<
zU4JYg)2^7rw@Sp|QmkenPr+70QDOH*)RG-)c}V}UvfJ#=^2E|j^=A?jug!RvRVf6^
z#?vbQ+J(<vOH2(~Ka!NUipD4s<9;Q9+D?F9#W$w6Bwmc;tN^d;M#O)aYKTG`VeKU=
z#dCG0XdI>UJ^u1TJAenT>3;m47rre5b^c`3EU!0Hp>#zpqwKb4b81pNbo{6nhcfn7
zDi(Hi{Oh-G-TxUNI+;)HH1kaKt!YGhn$CJJ8dB5n0f|-3>$&*Ljao|hbIdgP{+cU3
zmCTyerJg;<eTOnv${h}B+w(tfrLLpw+@K=w8N$1f2C3P)*qpbArQqP6rSt8^9$-_+
zMa3M}I3wF2p>V+TI1~!#)c}_9vEvm`T4JCMcSTsQf)+TOS_`M87QO`%8a)acLzT_^
znI*>N5(R~#d44-L5AI&t--1f`W%pNCTB_>xi>tPkp^ExFy@)2p+GiABs<*mr6E$5e
z+BFz!?~PxXjC%O;m0^bFYk5+_nr>?A630OX0S#^l9S%$AbzsD5tQQzhO0wy)!w)UD
z`K^fmoyu;-d(f`xI@j>@GH8iiM_D;_+J?+7N46`d8lSh^UuD*Jm_#(6Qc!T*_>LXp
zMI7e1HQCZPF(<y&{pMSQUfZS}avryWnu=7@KCP8mVP`hBIBva;Vm7^nP^-ttcD`1Q
z!n&sW&zpWv-q!*A{G6^ML$>??KcH1WWhq8Yw5`(3gq3NWyEnzEUHNq;eWy@^-XYl#
zSyfcr!~44e@u#8=LaTso0e*)|ulV0OUcvXZvfr6WFx<IGbpB8A<aHu}8&2kPpg-*^
zmS6@I-mu)B^;DJC=BQ(*m$H6y6^7kRnh4Ks86j`dReX=R;;ZkEEEnr9AQu-U#xM>P
zRwF6+$tdj${qd1XXF$6X7xC0?u^up(cdl5>m@xR>|FKfvV=QIK7g98%duL<0FQzC0
z`<ExrP-<$uSNm<li_#iUbH`Tj^vJ9f-(F{GcLHNTRwDl6L$t}NW3+zn=8RiSfF@;6
z`I;XBo7(>7j`l9W(vV)bJrhCwC}!0IeCOot;nn3I8=ZAsx*?nb4TQ#9+jUxrnyWK{
zmWOax=0vG}#xqKHTC*nUDgClOF?6Wesdt);YX<oBTWr@|bsf5`8MnLm<qd#B$CNWN
z6{~GMX{+V}&Q306FF}Vo71WM&JH(Y6WzC+Hx@54aa>Zd}a1dZ-l-pCn>HVfDDl8`-
zjl1QIhbPX2YmRA0A{*{5C%sv?s_v!f@%`6yN*)_N4L`Eu5(MvfvlUS<QS-7O#2A^P
zNQrq?43mQDiJ|#^jG2i9S{LDmLatF)0lMS*@)IB%&aGC*hikop9&~=eqNy`5I~HPG
ziG78}YJJKOL06zqcxBIgtV^fhXPEtviI$(AVs(!$Hg~_NVdsk)&6qem$8FWYC2^K1
zlAAT%;ctej20MqPC8Rqv4C_|XB9+zc5%`b$)*E=s_IDcgeYvW<I+P6ih=ny4Nvxa-
z_JWH?3Vw`w<P-U8SmxP_WH|LXh~&Rl)ekuWdFeMDLFUC0Ydl4ab4BxeRGIiDN_NXC
zS34LJSqPp#@&c&j)CQBnZIqo>Q+Yr&qR)KTL#US=fl$Q9+k2kJynVOhvUZ}qJQgYe
zlPF`_Q?&F8L->l@iuqzWDFIoylazvAQAbO(srs;#J>{1f+{^xb))>-Q)poNMPCoNW
z)?<@#E;<3~u?^l8f)f~c%sw4`Z@`-a_4kT`B6w+^-fEl>REgR~gnF5wjqvm5kkk98
zPyN6lED;3NTY{Byx#*YljzZJSB*--lNMT!Ok7%Mk>Tqg^UG(<2(|Ad9@qEPMvxqj0
z7_ade#$0)dFH?y{nf)6dTWb)xY_J2sm)%UZp}s}e;-3&>(z&AX2>q@jn0NXXO-icR
z-m7YHW<D0C^h&GhDRF5+o{>}z{L3|5=-!KbYJtG4TLjNn<s-7(=lj(Sf)=1=oktMF
z5Ma%no~ne=c!9?8TK4^So136-Fq}pY8}Kl%@vcZjL4nS!ruATX>W)}qY~13rggZD&
zTM2PM;s3GgbErsm;1|kT+1tHOjWge&;dI{~9z-)HY(JFdwp1}O=0b;^m{g=-4M34C
zKC)8$SCcY_&e3HN;`-uo@O*8b*sIYSMi1^FzI+p6Rv#<P1H!VV0%dV#dVcP>p)Cc!
zE!RNe;v$pttE(rObs@-Io2b#6JFLto$I2z<#dE{&n8oT@vyhhw9@R_8<mYc+0yrj^
zp(@3fgtfaZGw+%QlzYixb6*v}g9=BT84jy{0WO>45iD>Dnm(R&`};3FoeM=pzEn;#
z5*Zf{r@Yz!`AmP2A`wC1DX=z?P9JkRX?Jbcs8c(Npau|J?EO=};oC-JUgLpwd&r*v
zMGH{hPwJj3>wKI`a}#kn-?yBS14y>_yldVK0tE60e7b)bXZ~3fHO{oh%%)wBzT2#U
z)Nm*mcmLjFwYM*2Oj15ONigb+KG3K-g9PZY8<|0XkwRcUC()sRBM1dnFN(1r_XnRs
zn4nuSNz0(+w5XWT>5DEtqP)WQPX`8GEltW3>SsK_4kUcLNnj*zBp3684dS@ZzcO-P
zs%0ta56pfT_QXv@WQ%3RepeWn4YNYwy2H}U+rSvq-)}X0gOXR|DM}Ku3{{b_t#c{7
z#<&m&OJ7l^0)!qRI{wO~FsFGNIU{8eI))hD+TCHe69LrEoSBWHkD1Od9}96QT<cBN
zzI4&*E-~s3ANhW4QSCIh-7K|ZT317HZA{7}vGZf>W{N&1H>Pj;|0_%c2h^;0HHqg~
z4boW(YAIX0t%!xXEv&bAKBOi&SM1~L(DeHDJSA7}K%6{7)=GMfi=w6j4B^F_vpUW>
z>MQ$!7haH;q_59v(4lU54uT*mJ4}iKB1B*GBrxI5H$bR3=LBfl(Cs|W^IH<%=H0V?
zfE*umqxRLLBoaHLbkqb5$sEA8Lpb?B%Wj09LI9QYlL4b&pm$Eqq^n$~W8Fd~-xAQH
ztp@}a!^W?mc0SFrO&OgtgASvbDTD=c?aMcNa5qD`wz=&-M5L^LW8qXJvv56R0Ct5c
zCUnHP2%MkK#g8AOF*g)Yt1ynd!|{r>2*5Uw*aa2eTp$(MA2(~j+oowG8TqUgUfgf(
z(8k)HFQ6d+0SqUj_wB($g}@76jX5p${#o5Qq{jhnwbE+&jsUvbuMMC$xRXp-iBBip
z^<@aRXG=<J&!7CM8>qFVp;cNv=t(2MUwf|s!)7s=dmmQI*CH`#Qz$9ckwt|8&p}z*
zLC{p0#7AVxH`MG0^YWt3U|eKG>(GeK&4QyB7Q6skJ6u^sNBk<#VCy!8TI+)o9|E@p
zBUypyyC{F=$8L@Q53SyLSxRAupbWPe>&o=nSGNj#^IHphy-Ra)P9J+FN4gXAN;zat
zOKa(~CMbgz<&@^WmXw0AYSxBcvvs{(hwNKI12DpwAO;#d&}cMe_9bnhZykl_&WyS!
zWe-}7geRqRRyl5|cUa;e@9%*wZI$VryICH(P4(`Ag=f)Lch$6!2%UjoH356OI6iKG
z_Hz=zPs#bFe~u3{I>QY7oB{EtW~X)mbd_)}e>*(2s)4Ivn`gf_qwGSzIv?;rr0y<`
zyqQ^Kh>e4MiMzAD-_jFs9a#t-bFwdRnU+bG7OwY2cv^vWI-C&rS_Uq)o#lgP0HW<3
zyVw-lrU3=2omz3~EmK979}*!Qoecm+OZ%=V$ekh3$|;|dl8sf3yF!P)f_X!!YII7=
zc?=jX&VMz#?$Mk&wZDIjTrl})+UHCkwza%`_xe7s--i#Rw%F&dJe?_IwbWsH|8ky+
zO60dENm!c4Y?hb9P7if?1s9ij>JOZsKiT;)#QacKeOH$H*UxQhM|}G>GBV<;UbLMr
zRi9#rSj~HB-EZjFphBM2PX8K*_U$Q*fB(_=!uiZxUI*XuXjVt&hBEb&q7r|Ys&<9?
z8cyLW6oOrN+ne|0AC0Rt5<8Wl)OVl1m9XE}^!fJfqGeBS-tx#tfh!kz)|>Gfs`$Zs
zS3Jg5_2MkW*T9R4T+5a6iW<xTYJB-k74x~%#+yJ)LZ-d$FGXIl`90`?vTLFXsIH)K
zGDs=jUZZ4t-PxFGrx~^o+-tp@Jf`;GfwTSMWO0maoRrr3Z`%QmkcDdT^ljq;uC1T>
z@e#%?u@e3%>IEFO^O0A}ggSn-y<TG}u6$N;g)D#kON+E$G0N0z;;!j<v~2xX@_r|{
zRD{)Bm+A28aH+9q^rwuJ08PvIFL^6Isa9EIwCbprh+Gwv-Ts-D)%%wHk{ULfm{paP
zuj-y!lb*iLYOL1h<PPx8Rx%HL`W$6=B%=-q2xxb{eZN?3zruKLe-suweEKZ0;HlGR
z`Cwlk4Aix(MlJuF(tz;#mjF`w@y=z9KA(~v@MOg3IyM!l!D_xC!XJ<2E{pl=`A~;B
z%%wJ8M4i@n{iCJEGwa+Gwv3F7-{M<hLui!>EN5rvYjfBy`vJq_I`o3vWZ?S`u6)q$
znPR$MXeHWT<WOfa;<Y;6QS*gdpz^yL^%Wb@W|ET6_(=T<YR3h~ds9T$%eH>*bB7b%
zUkc<~nh+2g-(MZuuZErt;b{+h7<_knDxf696_b<W6+AA?Hhsd0h9dAwHcV|JBuOLV
zF~^k(S3y~fD#B>Gg5B6Ze>l-6CVm2NQ#q~5%k=1<dv6F1)Je8QvYa45_yyX9u{qPM
z8w;`5o1V7<a1I4U>qrB?KdR8q#nVEs{Ij3wMrD++^PT(aZr&o5QoOS_cehtF>H{hh
z<P%3a?wO4w=kzz#Tri5|)MLHv=gd9ZK=!TJcbPf&iIs3jy$_f6!t+T~VZp0P$qLrt
zZJOFbTiMK@_TEd@E&O|vxzEz4nR&%KnANpo+V&gx_e<?pf{iI!^Jft`tyB+pBzysD
zIN~C2wcTIe6|h-~*Ap@T9h3nA)OKI+QI=mXk&;$VwHaz}E{!gg2WVC`2sCh<u434K
zw%;!^@xYS!4bBbTul_S@RKi+hhrG~yQ*Z$0v4NyG_}Q7`9GL!mogeWSu*m_hp#NCN
zKIP19)qwzT(dK405Qlivx5i%Q-ANT5U96xsW~~fj*Q=s?$sADbPR5-}I{Tpq1Kus7
z{zE1p;fsZt;lM0#6EbvrL$1v`EoglczBf_QUsFc3E1(||(LdqviFFaYLy@1aGUqh#
zJ+)Ca>T5e@*!iy|s<J|Avd-Gr%|3nn@(&MpWQ9X)Z6-oBfr(ZV@uYxd4NOpO$JNFF
z0B^$Qm~}+;<MI3Bjg=p%J1!Or*!R446WCh6kvGzu_I+E!X_ll*XFN=(Vy*s<N65&i
zqJ}pvqOj@Jf>A`_I$O<a@bXRt2aZZ1&md>s;+U$W*>Fmp*keuWqCWHY^9A#Tn&Gxv
z%4QnE51ahSvS>`}^VjwY;8pY4J@rMc1F8Yx_Jc72qpRGgb0KN<Hp5LKyT2&Pyy<tw
z`4HO_fh}JHjXmxKxwm`0^y2+hyAxB<FBx$yjK?CKg>wUC5^!I_i6XJ<P=~z?-!^Y{
zYmSqK+cYn2uCz3axY6uiY!9!0XxTJ@H?krt?VXgAlxo;SsA4#jWN5~|{>aWrcD#9X
zcBW-zvcFP%fBCaL>*DqC$;Kk)<-}t43J)Fy*ZEZ82|iw&hZmn%(!#oCMJO+hAKp3b
zD#lsxFk(IBc}QOnzj+U?pIgqE|Acn7mU&we!cgPiDAm#0S~<mOSbHIolIxQA_S$UB
zPg#-4*RaH{*4Hm^XCE?BCMG5Mk}xV(Psu07WF|@QSj^mf^ytx#!I;p{P=)O9?g|V4
zqORhdYdqJL8>sI;JOfWV+jq@wlHprr8r_gmSu~?U5^FJgcR1GNRjb%<s|7S(R@b&3
zQlbtwZzml}ef_|83`m2k-%DbQ5<1|R$a~<&I$RT~V+<{L%K7nGVDB)>^wE4Cd_H&a
z4`ob3g4o_#PO)eRmr-zDflfe8O^wdZ#-dMH7z}!ryM}tq_)snud;v|Q{oL!X9jyA5
z6)b}r6@B&JVgptIuyt!Zm2z?xh+PGLoDH`g!c|Uv?)-&<Q)~_Nx<2GI><;3wNI>qc
z^{~Ae5X{>ca=+Nk<#82l2j3QeUFIcHuV5W)-&qcPowy&z{DTwn3Dg^Rzn|~vgMSwN
zWB?d0Uqua@a-^g%ykIWhFj3F8C8)1xf6wkBXfBYxzbe-SvW2o7*EHTA3JwS;7W@e<
zP@fKd7Tm(b0Z%z#tsGxRup|mF2A|5^d=Kbj1LvIA`<*oDrNcvgi$LG7kSEX7&*;p*
z255j9lEQe*`{?b``axV3Usv!i%>wb4Jsr@-ilf@B2ijPlxG@M7D;YxXPR8P&kdUCT
zO3TZuy0tdTXg6QT&0dft=HrHD%LPwx>iO2s;fGi71g!R{H5zu}3Iw4mkjo=yI_6ls
zeOm*OHi_088%^3v5NXeIAWo7t0xYuM=6n9|MvnB1wFuySD}zVU=)F9N1_tJ#K{M&`
zMFb<kBA5xi_@u|#uS5rsLQR1<A5DHi@P;Qc1}C`Vgn(^GgGKfYsz08f81g!x7;n~(
zIJEt`0pw8i8mB(q@kMB#f<-Xojj`O1HjV!J0X9G=W=5R8!)tj2UCY@z!xM|_Fn~pz
zICUPLFp{YAz(|IvG|8greBl<bAl|{5F2@%kz6lm_zRmsq(Qy`f69niPK=NS@y_c`x
znOFF&cVnC<7TLQ97AX#9yLS9CPtODOzbutJaSKi7Pmss*M6w$#>wj0m0m7Lh=oj(}
z%^7G}0{hFA0Q9UmCuD^_>JxA9u}cq@DNZc14_IMYQ<D7r@ymQ`1#ZbEPGRK|nqwY9
z#xk1T=mck+6$7^sSzY%W%^3$86#7Gr9?(+<^E)s4sL@Zr$392e5S&<KA1tzoi2Z_d
z{4z^;!7U+W8Erow&{^;r5KuaqZ`mg<4Fkv$?CGd(>Ir%>L-b64*GPpvstj;|V2>J+
zXtnZpr4ld|7PX@&`}o80%N(Erw}gr(xsSd~T5s^N3-O|=Cl+xA?i1-xQ+A~j^b7#>
zG*f;sL5M!;E$}h_Yp?#Qp2Ke$04X#0UgE9mCoc29V*WoAbIPkv6%^<>IXPuiRT<06
z%hPpgNN=&Qc;&ha|Gf}rrL*0c`qwcrF`K^&V}mH-Yi+H>a`N_?iGqRxlcWg|#)(T5
z0#_|`Y377tqHTn92yA)C*a_Fy*Y}BzPE3+Y*5}BOVzHW6hb&3!fk9zE-JTo*;=K<-
zaLWxCFE6jh{oyv8Tv;H7ywgI6Loo#2WsWvp3;zj8fCCoa%+ADT!a5z+1YSbXp`Y;&
z2w(tigRa7bFy{{hfBBZy@^si8#r=K-u-wJ4M~cGmLfcgXV(S*-E0h>GAMk(ySRX(O
zlrz9&TjPnvkTV=#O|TRas8C<5`!^!BxOZuEIA_{(;F=k&{%-lwiho790~ff5;7uy}
zmDv4?vsAp6_;`iqt<BV{CcfeU!Oe@rF+Yvg4jf<|@iRP#Bgggd3Krae{&Q;ee)gMz
zRj>XEdqGG&zl@U7WzFk+|7cKR`c#``U3T{rGk<P7(U#uc-c-ALK!=>ifbWo^uYy<t
zT)?j+-l!9<I!FsS=bWW&{-B4sH^0Bvu;Q>V@T+!itm}5O$>A2>guJa^irsg^%qO_a
zT2i|Z>&(3i1XML^!iy3*!}oJ5hi7O7loKz!2S0g+Pv8s@mwdE-(>=#Vx#E*w=ve0a
zM`aMJ4|HfcagyO6AFU5EVMu|EN)fD~Nr(e%cFsU+u=fegd_xIn!*>t#>%prUC_Z^+
zo+Fz@ec>aibxma@vHF-VxNzu}T<qSU7ZZF6wu>3l{N>_bPB<_Dw1bd-k`jAQ4aIZc
zUo^=d5#RSMmGyLgu~Vl{EVRsHo{;1A=Y)aytGoXi+)rdccUjA-{H2K8+Y-uRY@FZB
zK%rVP&Y^!_A`LdMBPaRi-ElqoRR+-F*65hd33W`o-~lMw@9X0n4F)o*p8INZ7~U`g
z`!-hkqmk~f0HaR|hs@yPun8SgKmoc6KZU;x3OIz2mbd^=xidNUkS+p{J(J}m$2-CD
zVt|-2z99j5$IYT(379R3vX>RZ@&Qj^z;6kTk)Ty{?o%MQc<w?0CyWmADzI#n7C!>2
zfNS7?MN#Fi&BsA5^1c<E0blnbXGjWth#e^SmTuE#I$=F-k$`_JW2`ZD+&wvUx*s~M
z<Sp_i=fGiOP6a6*x-mjvbIeTV)KA(A@PZmQy!Dd?J#f)fP1W>Cj<|z%;m`ajj5NU1
z?tPzm(Ii{=20kqy|1Ir=hKmLlt16af6Lj271l}s-dvV8T)82wSW(;i&=Yu<biwB6A
zmwMA2_h>aV^OR76!y}(D*alqz+pRK*IpRfd(Uiq!{>wQ3+cORbx?0=YKktgJ@v^hA
z2_as+7BD}<D>UE%>Qpa)Iv_0|u|jLJ0S0izjtTTHPs9*U;(<8&nl7`QaD-sQjghK0
zI$2E0>U8CF*GS|ooHM&GcjNS3?EbX(RMNulwMwB38=C<gH-qX@kGAN82cDUXwSJbE
zc`~mYOwH1hrpenyYOPlM-&y&Ws4f`Pe;kJPQ%og&xE~#`AB_}h2a&&?@c~mlNd)`J
zTv}e@fb_fBY3uuF#gI(=Gd|v%AcS$`8x42OOpJ26rFeF0tM2Ej)JM4K%A0pHT-49;
ze$Cg*SreT{F!fzqj&srqi}zo1*=&xHEn1mDDQvA8FgV!d1fcrxBsY>HjXX2!8vK!5
zT|PnagE?DW1KC_;xhx<sV7zz6*ahrDVPNqldU0xy$r&3QYO*-4>YP^~FB>5Mmqvh(
zuWT(_qW@mydL&3jrJE`v?L8#6V;<`wD!&bVE`4eMyH?XafXqV;#O70Xb=(%?uIY{c
z7M-3X!<Nylq?P@;s=C_$^{%#_m?vj}Y7bJP%c!D0eLba5yW)G8<SAy}n($Rv?k{eT
zz~7u5>pB*{pTYnyEul6f|C)s(PX{t_CZ&skV4^c}^T!u_3`hsiMq=bg>&yFPjZEk=
z`ex@UIcmtkG88iX>f~K?W4U$G^eoIS+-q=IGX5U+l)0Wy<{5ab(@Ff1a*##n%Pc*I
zB)GT4bd**$KI5r?tLnVtqF%;EF?t>LU9p<qXNqLWrV9!$W!ClO_v$aagP%nuX%car
zeF5wR>GexF=#XRpfB@k9j5o_p^5ao9bRBZcH6<qw10C4;#zs}(%DwJPeL%|8!?eGf
ztTL9Y&k%BZIVORg*FY9Vh?L9#Z_m;xbV~NLl&GexCU09f=LC0ev4+%dwdd#+&F~;A
zgJ+YUU=h7yIkT1BpWhnqIuhJ(F43Lcq4)?4r?XGaJ9AnU*bx|@@qq>S1w{=>w(Ke=
zF8(ZZ@wD`kHd5fz<6@5wqyAU4&)ra;-QAN%B|EBGH4R2{hCI`oR8X1iADT;P^hF1f
zdxHm!!bz+dS<*1zK01>7{zh4Wj9KIq))}73*YyVKjCrp|DQqeI%GtG?zb!)5E4{U9
z%;4f;loa!nlBjU<ZbG7A68ZFPIspOI?vZwwI|Ufzb>;j)*r|U!FX9aFz}Dh!JoA6u
z0W?P}0M_Q#^!0x58w!r4?otaM2q1|1DM%B4{`~3@!c_xzSFG+ZThgBEwv^H6;Yy0L
zq^;v8SE=I2yjT<+kA)hW!iOsiNE&1$HHMIwXB3r#E8hK*^wXK!h>n+6xLf5{mhmH_
zk<4djbbh1m$C$-s`vi5duEg#l;^V<^FR{_p_3;}1g7vS1#nV?-H45g9_vshL*3LBv
za6`8)%Q<oA4#b1d(4WT;^^XIG&Z8YMk3JM7lbV>YqpvH4^k+(nKa5U?&F+`V=2C!~
zp?-^fJXg)vcB>w8YdoD^Azq91dqiRENEZyat}Zu0vi_-*xhVF+dp+4N&GMP_Efrkx
zyJ8Dxibc5ZnHOs`H>iO3QBpW%d)qn1r%R1F*_@glZ@#XU*?hHRdT-zNmucteLOKS9
zxT0n1p6d%^Y44i)G9lJr6ktK?HCiJemCcVE-2Xa3Xih=`pR8`0Bziv?xFzir_ruX{
zNy&W-3W^>X6*}<_xyl@~YVG#)E6N$70audyL!CMFe%6U4yBMu~M`=DYfa&vO8H={$
zzg69piM<x2dIruj9YSJ_r^?@ET%NBzYmja9ykF?vtB5(%%Duv9r-(HfrLTslMD~I@
zO*tk_DNW{ir}T$ou<mOe`#N^y77v~DTVf@Z`jO^fXX0%?5R*{)dhXnUBYMZpz_)<i
zpF{rjSPp#%Y;ZvPrw?6;bHG*PPFfSAeGElhUq!hpI3wdoh-S@b0p>j!6)n2jE2>di
z+=X%cA*9_|^F%~Q9n}ubhjHS;2HQM|J?%lLTGO~SnV40A?%7U+zT(&G3^Z*bglW3)
z9!o(Hpd5V&C~HQNKjDo;vG`Xd*@UbpkPBF1g9)28HS84{JD_spE+5q}3B~ZtHYl{4
zE@%sRk{uB_=oIYVe2X>k>O<VzMLJYrP(}9x2l{UWyD<$6l12ps{Hk-z61BH_nQkTG
zYihKT^R(2rS2SHCnnH9n$oanZ&uiI(k<ih#*8$3tQ`lylfv;Jq6Q{HXuO=6f7{aG(
zR#dIn+1aC0jj}`S%{A}YKV-Qz<;!vr6~quBtxC5{2KWB_nPQsRJA|c2!;{zaEwMHG
zl^wy7b%>stFR(tMb1C3aaQHLjyXe&CKOVc_GWb|9_YmPeV7Fzs5ji;|0fMY&6A}!x
z3ps_m$=DM|D_pK6a(8DWwYk-WUP$}Ux8lhAv)y{2PNlw8<xlHt-FvbQ2xgOne$@t5
zJ4;^60m=D}QAO-kM&Et{0|xca-Ic!NhT2`#GPiCe6ZRpTxz(FF1Ozl`7DxWz!^4><
z!=!+Jn#1vH`A|DHGXV~%!yH&W;XI>&^E}qq-L%{eOuAv=RT$cx{mSfYV5pl@M<>5j
z$1=)hB<0Ga+`;;4Y(_Oni`(H3VS)=bDm_V1HQP@wqo__M)*_?e6E0G@Auv)^eW8x9
zuxs`q7Rvll>$@E$z$&oB4*4hY7Df|cTaFm;gc4UlFn0rq8Q1;=oe?`72h?61*7k|L
z;bcNV4PI()n-xTNMH#FERYOdCI*cwkGf9jzIpJ$SQIcO)2wQZ%F=rzdhSme_?S$dz
zmmO+Z!Uncaje#73dQ!VjY)tzz-;xmA0%h@^!3?uB6t;<~YpuqNYzw;m`c6ITlWCqt
zJDpU4gLQufDV<LN<%}ojO@0lnxSoN%K6)^C3H{SQdrSi#bAR;7Zs#@-N`#+|+QDBr
zl0j;26XgGwq;;11>GEV$o(U9$n9U46;FuPBe{nD_^cTBP9MU|aHiD<=T#;W}-P~B{
zU>%cw@KsJvI*DnN5$1ppdx`#rr10z2`6fZtkuknU127r4muGiaz)Jg^x*yP+cnB0Q
zsice9KU+fo-)~xQ*H|}<7n1>5`~Cf$53KrzlHeIF${gRCbu&htA)<CieSam!cU;Af
z@+xeqfdu_oQAzQwDyb#+kyoW3CCQQjn$EC8u?k+3pi}3n5}#C^IcMfNJGD05-Rz*g
zm+6R=`$~&@nOQ^x2N{n;iE+XlzXr0AeYXGP-ZDWbsEYS1w@(qeQh6z?gG4qlv2$=R
zMNrnyhp~Gyu$FP%3N8bY$Xdrpg(!opHlHx%tMXZSGP0`u{tkBA$lLc!#&w$Ow^EXl
zyd@PHjoYSVg0@xTnN&3B89U^vo8{$Yp2cV6w$+Wr&URq-a4h)iXC;o$(uVe>qvVV4
zm05z;3-wN6TF}~$dMBg*=dg5<3k2p3k>`mRmH4AF*m12~?}RYq6fxZvJ_s8ZvfjG>
zs!lfV!tVF0Ub&Z*ZY(a<GVI~Q(juErtS_Y-Gos@!+A|}W9-m(5D@Ud@$YJ=HOT<0w
zoWbai_cbwgaj&atYr$*Qelj5S2C7CrI*eSEwVEAO75%S${SpmhGHVU8bPYS}n5<Mf
zo_dhjwhV+A*FO)rcYgGWGq<WM{OmhO=iklJjYgCBF3_a+I6F^x?1GV);E*bB%ae<s
zL~el(8|{I`h`^JRpOpDQx3tE6O@O)f>r`-lP|FLdY${#DZ)wlAvifOz);n(+EvJu+
z>)5ct)v>#j<S(_$J#((q^!(|sq2B$((lR?J4=TRizI{77I$Ewhx&P)eY06h8X$?k!
z`rF@zU<yC$&J}irP`yd4`-xZBRk3EVYZ;yxLN28ZL`}Q({4Q{m`fU>9)|_@%6<hlE
zcDF-PBeAenfu*CA_IO`^?dv%}@%X1>ROl1tLPd>j10k;yH^g@hNX2!RA0eVp7U7Zt
z#bL7f76t_t<E=!W`SI62RT=3zgHuU?sF!ZNE4pD_upG;bos?~Q^7c3tthLH-Goi1Q
zkqL6T%;$r$eh6}@WE2MJJW0lOKlh0Fe)?lutGaKX+?Xux_nGsXs)wAsd{7sP>-A0l
z2wj8^qF9wqR`<2<5O`6qaB`cYR#$pW!O(IlfV*uv|Gagg*#HB^17NO6N2b^hVi0Fq
zplb0<SIK#gYZSpmplGr_d%4|*{EuPGXtX|bzR>u!E8l};X{>{8X?p4PEoLMAfn){K
zjN3ZT3*^(cX}y0r-~m91r*3<i2PJp)yU~!*3QT!6JqzqEId2wu&Mq*PNa_v2fPO?Z
z&`P^ot4k3<jM~j3qinMk7rJCrRC73{+5w8{XB{E3twBQ3NwN%XvB;-uZ6=oC^>!cd
z)n@UZFKE}n8BF9t{fK`<csyBg%K0+bd->bnup-Ew^fa@v9<UkBIXM;f1emHUvzLPs
z-86Rx>^#N2+WcIlk*@sVq%XH8TeBZ}?(|WR_aZXP=hSZG<>mQ!dtdeQ^OI2nuh%Lj
zeY=%ms57|bDWj%AONGZ)rfcoqp6-e=|J0IY*io}zr*fNU*U4RbGeIm(LDQmkPFEoQ
zLC%&J`%J7Av2{k+#$#F~NXX^kkI@dtTi{RB`GYDy+HX4IBxh1!sSU4Q&e;~D1?bhf
z5bhd~1lKNeCD7%%%p$C-t1DLFNfo1r(2!AjmAv}L6>a~0Fgb9tV={%tSXlhXiYomH
z=vLXIIoAz%<=Q!mm0Ybf>9%KECG#yOZ*JPy=vs0+X!LY6cE{GKYA>d9F4gs_1Qn(~
zWi#WgzFgrG>rt2pq)ALnOy}2+wxvq54DGRASbK9U=h#~QddIq=7pHdIubg}xsp<E|
zTW>XrN0<HzQRZMdP4V7V;-uyN-mXW+UNOxIBt$HPZv5B3LQab4Xv|>}SB()6AS>qk
z%M*&(7$g87C%;(xT=eaQSgjm@%&_I3AXUcOrAc-ppnN<5yWsi~qMGvuyjQeFtFCOD
z`g^1{^KN`yatbuG8JfBcp1L$W{S>q{)k$Bks^?T*6&BZSe5)bT$fcQ{kuj@Un^WH!
z%U)>In<+X5>$)kxlH%<bf;W=%9xvMNSrL@%?}O7!*l{j!S^eS(S{a2e{fZOU8SOq7
z|Fd;-jH6YzUztodQ6K@Yu&qzl=^F|m9!za@13UoFxJJAH99(Xvj({d~0NWS{bon3c
zyI%h|W#}6NfLB!T>7jH4rVNR73%OK#vg){a&5s|~$l0_%vQ+$uJm834kRwQclqjY%
zRSRRYFjl=4-$*ApE&L+*HXfCW<<xfn9fXqQq~<NR`DO(kiz)3=Lkr-@^+(xJXtXqj
z)K_lxRLdym^9!%hXxyOc8Rf*O>{>T`YP<)h)LvTAS^A~tuKjE10^>|<MnRj)(o9Ln
zZgNALk>vo44<~N@ymf{L;M>a(-#*iOd}y4YGVzo1o+ly|;*ZaOar*MKcTC(_4$Su2
z9HZ>7o73GFnqY#1*2Fl6%EMS$^!(3+1fMQ<F`Z^2x}}<G`}m*fdQyq1T$#+Xq;!+n
zS=_>(6{=9eY}yDaJMr+Bw_09>WeLOS=;&lr6zIc}bdY9dX2LZQ-3=2C^75SNj>4ai
zyG{0+>jC0AYe-2|7H(?GmNtpm7>Q})><Sqg`|At3jLROt=LLRVRQ;C=2Lk5|RocC;
zT{+?H(-KF4(_Q|aTNi*4e-6BK&jqW6|NeMht3rb}kk7_cDFF2N%%{F2M2qW_%(nnC
zGmMnk>{ww_&by<SkdXW)Ft%5yC3e!WPc^C>wMLVvv9_!33BtvIpm<pKjB!1GPmS+X
zt!ch*JZj$lF=D#b7|iRbG@ReN9U-lG3y;*udnuW{z$HJ%qur{`K)67S%oVRt8lKHO
zVY7V?1Adjtk{IU$*rlLv&;xXmtPyff&s>l?k^iM74gnwQ49%^H05>?4$O!s~dachv
z=cjda{`~n|5PyLjy}i5^OfQ&@Q-LihyFIv1QXoIbS5>_=c}}lSe|x;CK(2DHY$@6<
zr{2fUPbb27NmbZr>l3MEVoFLHhB4(x1|lFZsE?F|(c7olAdzyAy`W2r+styBh__W&
zBW1pG>kD;<dd+ju7JA0AM`uqI<bMNu2_vPOJCWQGr2Pywe)DGNIq;BM&W4!e0F0kI
z{J`1ys2Pbws>Rka`R#B15K1sGr{~~Z(3M=Jr?78HRm%LS+Q%#1&7!*2UzD5)?`M7;
z%T*w<He<Aw<G|mY<Jvd2n=MroS|rE6W1m)=qidO%3jV`OQI6-Db?48`63EvKurSj|
zgy+qnk{beB$W3cT%SLmrV+W5aPS3BjqY%Y=20XpRPEHwDl9=D8L~t2(TN~1@kUC$2
zvM8t75QovO3m~|f(xv>92?;P|4vzYHu}}i4A#JDu4DI+I*#rHzi0A9)r_7Et^5%~9
zRmvy;hSk_Ir(4BPA&Y{bu&wToLI8)EYsD1mp256**UN%;kI!gRnAg<TbJYYG+)PZ9
z6t?j5lV3trn2iiqxofW>U+{M5-hZ(wPLt{QL1$i~+sH5?$<X$)W#OE6KBak`tYLxa
ziYMDr<etY`NAJiI4cM>-ZT>iTj}D%48$0X}SOI}NWFFVKADO2^YqbLb0pKJ$d@v|4
zaUprj4j0*`ntA|X`$}<|00~ph7IO?MHa9etD3(ChPQBfwDw>{Ae&858GWuFF{2t5e
zz7AT|@%k{Gff8r>jrL9nxUHtVykC-1o|Hn83IiqAYqkoljGBA-!}fj--DgpuWZ84m
zoA`{c1HOH`{vLbPKm0zAxUsRZFK?mA=aLZasfR3mPz{I5B9aVkP@+|UR3wz!&>Z(|
z-ok+**o^hXzd;C&Y7(jJ1!AWLkGO*q4w2o2!TkIH$g9)^Zy0`KNR%LcGVaHZQkAL9
z!j+jW*{zky7VQDa5Rhd)PcSek5|P#O=@oy9FhTbuzL|@Qi%&!Zd~MjE5|ap&R3Dt5
zc&7(evx${6KLlKSfYLrU8IHhFM@HeSDA?=QggT|`z{h#?`M0IS0E~-a?ttZ=gucZ>
zDI_U*H<qYcSY!o-N$SZ>H$}Ob&!g0NEN5O}z$I7J&KOhJ0viWga!^)Q4ks*_v<Ba!
z;P>(@1+b>=xde*n3tY$m#z{aiAPsGt{$@FD$b<D|Z1j6aAx*(Zd`we-_<1H$1te8*
zQ&#8tdd{LaW@5!Za%G3=?-UY^eFMfp+3GPB02%#NFQ-l;fMdCAi#aK9ocMy^d1+*f
zM>tslq_XTE0bewNQu<&szgdXk1CnJ%O<YFOdX`Yp{S}xgR$xg#6I=5so$fLC{EI94
zbpLma5xC<;KR>XRF}gTSTny@`s;SQ(?06_i8=L}xo5a%6QncB4eRGDM^kn1r_qfHA
zY(HLqf>Mfi#Z{Jy0mb$^0?(sWEwLon2M0<03Hs3z1AJl5<*&KrIR^xU{X+|&Y9E4e
za|Q;r7h=2d!n%^}*5{hzW#c~7&*-uQB-H%Ca?qCpo7^v2)?R>Y6k_blWwe+92lmhW
z>EjeUg<%3%$o-;cg*{+*SP>g&mj8!)pFA8$1^~c>#6-!?WZ)x;;uh#{^Slpb4oHZg
zW$_jpfbI2Lh2w{V%?`AMo=021NU-IN`~Q~}fpW#iV2gQ+2bl-K9gI&n$Vq&VNmQ9f
z6~>5oQ8%Zk^NO~z#qwkvB;UI;Ma{d~nAP*2bfl<**h(PvJE%tdKR#kUY$4lm*ER?s
z8p&$`<k~>D^%Gp1Zxq{^oLv`!E!RFJ<eg!ys;^%wOTBys!<h`wK~h+s0-z^UiXC?)
zZo;^^bK1nc3<`Mcdh;!&wI`cnfLs3>_5C|HLHp$P1(KxYW)=)*ZWej>qF9jHSIuWE
z*+zRfPrLxJR&tjWj{E7SX@JIGesG>#s295NC~@$5VAGFB-)URG<b{~X$P)bLKv%H6
z_>Gf+$e5a7vv~cB<nGo)lumQBD3+j;UcS{lwHp3o&$nJ@F91L59!F%XR;F=ZzH&`4
zsi?8>j=0xUk_m-n%R-i`(Q4G}bnL#=B=1Vp_nb(~H@L{IViWu8jYzPwF^}9cXl@aJ
zQhYDv$uAyf7(p>e<URxi<U-|OdlykK2lpKw^H(qjpviozj7Y%uJt0r!4DT5@9vQQ5
z_<g%S+^peCN7;YcMnPI{kgr#JZ$QOk{*~WhOAJ6`qk&_jOUe~?n%Q4c*r=_oP3GCN
zt0CNQ|8n<$N>_quVJ+?gkI>L7lRY^I+)n*d%um<>#3aKBZ{u;K4Uot>N)v4KE*&9s
zKt%%EA*%hz%sBf(_7s<$#RRH5Zk!t)E9sePOH3XR+TOq#i;6Q>ZrGkL?*B3Y-jeZq
z>3Q#uNR*-N%}GL}{({cRL{scH-nrZ;HSm6eq*Y)d4lVIFK|_#uO){(x(9e|&;F#@9
zi&D0gJM)I(Nz1YaW`8CX?@YFS3%zolsb7+MK|9EWg%F2jIP`T`n(O8O<a`J@1Lul=
zP!PFI2#Xgkax*;%|F$T&cb~K38E9*hs|Hd6HFyu#kB)F?DSM$Pr!ecgUKLc=j7SSP
z1E=_iBla~ieyVV}p4W8f6GN~n7@NVBx7KYKlHaG;(M)CC(x?-`@9<^vs@s)o;KeUz
zggrSv#^i;@;`y2Y7BcmGo~Drcx%O-$)v6qRqvRNoo~*=>MM*uq3_b0ZuHM^>j4?=L
zZ|#JFjLbDUx|sI3-#m)#&vkPu`3<)7za-QPC2U(3c&~3x29|_GBvdK+fKU|HRho&8
zQQq<b8<dy9ymH_v{!?}>IRg&N_w+`7AP1yWn}AeuSxm{@TPQgrDX3K!%(+NVttWln
zIz;<+{;Q^I>`^keYs3d&e%(mMCm2=u$SzOic8S*@`~+B`SN?a~y836HtH{gCD-9$A
zCA^}R88kezcCDCm0z^XG%T~Ag&$Un1!W~h-TIc0|fi;2EFTlj?(B!rj2IPi}{)sR|
z4KxGPxjgzVehbP-(qw_Gd%jxl&gQc4dzC!X7-bD9y}4VrZ?lb)v1l-<SP`(!WcL_1
z=b4Q+?yh;dj+u)-4Xe`&G0OG^6Qn=YFSYnc>h0WOX6Evm_`<)1#JaBA5DqKeS#rna
zeGP_;G=tDzH>8cVJV`lY1iZG!&W=Yw$yK|;sPgnh`DYS(`^CNO`5Mi=C9;+^KShmO
z0qT}PT^#_~o{}f^v&U(FThpxP?ddbM+nh;F&2=fCY=63ADLHNoVk@U>f0_Ybs9RNB
z$+g-CtP@GHd;5!t#_!Fo1yOYiu?>4*NQkZiy}E9u)Bc_};*)Lfg>BH4;*Ry){EOXe
zR)D^AF@r?l^EHe3hXe(wSKkWSW5k2BoSiO<zJb$p|C#M!BqC;eYaO9k>^KIG?ANme
z1Du=t3FnB?fyB`&Mx-4WhqF-1@oQp3=LtHi0FY*~yglEH3B(H|jYc5tKQtE~7tS`A
zCeEDq8(*x<z%uvMNTv6W?+7pkMbdl?HqK?g@x}&Brih037cDi3&{WAQs?(W`)taEL
zy~if<2Z(Pq!n*@+Q<o*FdY$%nP0I+l169GGd9%%_M8rsJh_S)K$2CI$X7|9#rI!l5
z2_Ra9xX4HRNe+dh{;IW14{asO6eto547R~TiQ4<S>+mW6Moxl>K9dTnrONAGl>n11
zG;Z;Ku=mzcRrO!Ls3Ha>m<UQ3fJ!MTC738J2ug#}-E10^Pys~{kOmcy?oL5O8tLwC
z1nD?)?F~H7_KtDy`@ZLlamN|s_m>EJul0@D^E2lZ^k2`LOw1eVGOg2p<S16^ma9!N
z^~s&d8~CyA+~hk1q<ylw@j1~UCDR)AC?@NvE<lA}mhzeD&f^geveWF-ul#T&$`hOc
z?x~wZTLr+msk4Rat|69`>ED&Yc*eqCUi!^fyR@~|T2yJ?syND92Ef2{0qSNa&OBXm
z6XBt#8g+Gb`G~B-hR=eQS1w;B;d$);b2&SL5y#NrD~{b9_&=OUkKfp1j1I4-aLBL!
zeAz7p+ELX``ydNSAdy0*10x6xi5@)T?$0ciPZtAG{wtBEPCI;hW1-HF!{bX@8qv8M
z^{ZN+*K3P|YI(EF#vAU>HcPa^$ey0QHO(+PT0u%HwU-OEC-SCJ-SeS}KtqF#=%v|I
z+b^q}Z(DFL=cJ6pUpkSKc*L8ly(DkRgO6Mk=d{*4-1Disk1(H6K2u}~j`Ps|d!wf0
zxsA!s)JT4jp-g+I^tXZT-}7&dixV+rG%20cVw$r63J9Eg_R`-NFb2<#YcT+NFCDzm
z6NMT6RGu;4XbptSe%9Fgb|<>_bY#|K;TZB&>mgZ7syl!Yn5qO{emARyQOO$!&%cva
z7r}^zJumnQ5`;ajp)`O%*5*&qvfyTb_g>yAK@gVP_kv)kj8vIT+-{}cjaH@U>4{%B
zhUB&6*Pl7diZz9<(wmI15EUw-`T^&_rg-11E894NtQY#;Fj&FhwX-(rZC09nqRe9+
z&$!pS5Han3n(;W1+<5Ber6^%*Ziu)J-&t;ZPQ0EP5IF_Z$RV6IVG`%BY;Se>u4VQ0
z@}HAQMFum?G>YsJ5oyhe#$~5Qx}Y9(2!_q1wYLULnLvzVnj`abTI2W`vrfC^?wW<e
zRJO_0L7a8CQ)WMSY#JkPyAhH-qvBYlAVW14hX#%{q>vjmk}Y%SwNW3YM5$=W@PyP%
z1LJU11x&=l`32VoMh69IlcXdk*8`RREDmbfm`bbjgF$Z6W>!rw>vc9FppA_!`cJav
zfu_;HjMjid=2tqU<75K1bmeuHO9+_95@l~@<p_Mrc~1pORhn9^FCi-G2Low>>h;Y|
z|A2t@PqK8M3x9HJA8sViqpVv6*#)Ib-MInkfeXKXLs<4@CF_wDK#d2zds88S(Ue+F
zAa72q7}H~$E&FysmoLH9WGsARbA2vKI8<k>BBucAOg^1wvEi9YE*&aZ?nxuA$#QL&
zA}cndy|Hcy?!x86@13%MA8Va+g0m=%zaNX}^D`Y`Co<B5?o<&1ouA*`)VYnS)qIku
za0O}3G8X!CUmwiYx=0s_`eZc(3c&}a`LwK}eAaV6j3e@SN{9SNqnG@UWQ>mbHl@}P
ziBiWDz1rf=0L{=Vb-W8AFUy$<SDslxL!N4@5OuN6y4u>K-O;REA;v$*ekVC>Rs}ak
zJ~M=vSiLz=%>hjxT2Xw0bnVNccg&W4e<tSNNS0NSKKsDAp!RKRv^Z5G714s-+_%FK
zg(;AenkN7Uj7=cQA!)HO$5gXD-zx2~j7*?}p|GZ~JK^WD-YQq|`?~VmEm~COvLn+_
zyTu^d-EfoB)@Qx;S}8hBv1f!}IOGz5m*rW^wf~Ae7q^0nwN+F))av0#q4dVwB32_%
zcky?+c4JB6xQCPyc!55AhqCJCTAoUP%4T5r8Tsw&&knuz)UxVWjd#-TLi*{~ZHKa0
z=avv*JNE1IMZ@<%iqz>Iv8-%hD>T&;szUAU#wh=B{eVJX2H9GkS>DDO5YKebnM-Gk
zA^|UdJpNAZm*_(*Y-5?w{LG~z!&1q5oF<Jho>JMoS=s~|1a<faZe#+EfweQ3%k&a>
z7gP2`pW*3O%*1BLTa%Q>+IoJG^dzg6R!6x0W>eE}yB7>0SdFko#|Vhm^VA25ifMjt
zWIVQn+e1jhPx2sJK&>wU3?}DJaBNv4wa>_GuQ$HiN=VtJy*v3JokT8uUCuNy#d54y
zW^*|jysA%W20Gh+dVQnTIs@&$EXd**jyH{VD<NsEj5oiOF;eL`k`%lCHvKRBEQtUJ
zqx}rrcVHeIir`VYR=KWIR>U2*%6I%*XUshmbIp#~$Vw53-|d7cH2lBFI?Uv=3_?zx
zJb5>daVnT~F6tH=(U*G$+Y9{L7e}E#7}qA!{LPQT{H9GE-}2A4l;;<z*vq+n-WPn(
zRQsC5?v(Y@Ut8<>bVtS~VT*|@S9UgMFpFCQ<eBrPSaLufUZiqI<oJbk-Ckb1wMB_B
zBSdMZ&9P^4z0@z-TnYkvy0mM8H>t{Zf>7vv(A#fEJ0T1pZ+7Kr_i<HmNCyW!$31=#
zP}GY>Pd3-1w~2HGWVX+OiZ2Kl7xllZl=3VxUb(0i_a~%E%=A26y4fTYq@;9Ry57JT
zhp%6MdR$c86v-q)<L3**z*$+13G_IKHlLl^z!WVrC=2;ZvLA6q4sWoJS_LR}fId46
z$1r#C%b^cue#z{*Eq4$8lI>-C6)Are#}F#WB4K#u^AWqGf~CNX`F9R%>%Z(lavTM@
zUJzBaIy^M=u@gKn`IKiaW0J|aL(vrY9xZOba=}&AZ^>Bi&*aS(Y9+CaCT0)dua@&~
zsV<q{&jo?pI#qrg)p$0<VyW8hbu!(YMrAQE?s2B@v`>gO9H|Y_)wtVOoLV~-6~VdL
zsaY3{xUjl8qw0{&zR=ua5>0+n*gTwp1#XnHJ2gI_3qPUW46ObHd&>{``Mj(zqp374
z8|ROsqz(co4zXr~PFP~X4t<<JL-ui(2mgwjK7hictPhVCE|4N2f~3pfpYW7+x{xYe
zX3n2`aYZa$T_!{tu}+3S`*1{`W>UD!XS2k%o<Nju2iB4as6x&oxnL_uKwRlEw|m2j
zg9O!i$3edsPp+7s<+so8LJfLq@OQlHG%Qj?oEFoEnpHeoD}y!m@lILYmc5E*6;j=P
z46+w;t933+;pLM_+EaTO?GJI0I$*e#CAe+VoE)^pS6NfTo|dEiQ{)Z={fv!M7_x5X
zk=w_m`*AlzVRWT88G}1v&K1XQI--2-Hc?HpN!^19<~dp+^9?gkN>UUWsG<Do<O>7T
zZBQh1m3QfO9CajX?(EY*jjc%b5caGv1!$jO#;e_409jgBYr-zh`E|iNv)QU6JA(`h
zuLx3@KmL3VS}Ezr2YC1ePLfY)b!H~C8;bTNR0bZ?hKb=37Uu2JiZasvt{GWZq@sR)
zJ4~f_^aPwyK*w9&-wzsRhW(Y9pq4#rv+_`{zk<nYUeGZk8{c1_xU>11eQqQ@O%o;T
z41*>PMGoNN;2o=17vVJM(z>n39T&vJoS@1%I;C$>EHc|1aK(J27DADMn|ky{QDJJ%
zJ>&#=+Wc4Ji$e}An2k$^_=@=}H<OKTK)&PC36${9q??|&cR{iX;MZKk9LX!dcc0#0
zavu9c06&h<hxD6u#ByRRj6IGLHt3s13^mhQuJV(D2b9S--ehV&5Y{AUU^IEy(t_KQ
zUg$<)@lo3nkquQI_YErW^BLvR0V7G-HIz49ctbO*k!(D(*WSkTiXYgR`ywMwbepy0
zwx?+ZZQgA=fnxozApkWE+%`e3<%^$%opew&WEN@4U;9}%wc13s#U?yH<etl5T92>#
zr1O=N<+3J!XTz-4ElwLhuIZp9sqGfCnXY!{o+&S-RLvmW@f+Ue(4I!Eq9KtANeZXL
zdSEc?P9yMNcEj%!e+!Je5KBAl>*53RVCGIMN8shtaL#c&|3TOeHzjJ!<`G#GO+NLi
z3#n~oT?h>2AOGTm*oTDO4S~g-!psGiV1Rw0wl4J6H0iZlMzj)4bS2`NPH(JMy`YI|
zRNtPGok*XDRAnVJfShV|Ei}I(sp$QfQ?WzB-!#J$G!WqCDwy)7j$7CESWRcN4pp<(
zvAL1YfVZ(+ZI3WZd!_9~FVub_AMKwEe(k>&ZxUr`7fWlp0^Y(NlCjkd(H8RLH>)Zu
zb>^!LYm<XABdNMsSXdIa)F0T}7vkjruiP=rb&e^dlY78CFFB+29!iuZ1eo_~8+Nom
z5*Pn;Pn&orLa`IDpuPsO6h}(u5cxg$`^gVy#Ev0kAu4S2{g~iS*uFumF<9=Ee_E9d
zm!_!}M(g~KUA+IwHO|atx!ZDhu9P^7xk`}A?ov6WO*~f%%|rHcq?1eY<y3BdkD3Dp
z&05$sk4yuLy@&32)J<K`9#GQ?Y@9pgqSIP^cQ`}JYPM#Xe{VsludrElE=1G0Cj$=&
zPKj#janFB0G3*1w*`gB*mgIg#KA5gSOx`{)Ahd5AFPSS2%+=o^_LWW32#_K_*;E`}
zkkL|@o&6L7eHww2-FaDB32l(_0?edP+Dk)jC|CL&RmGnKaUR@WHj-#3&X9RgPM+^k
zqh`uQ(=~+}4wF{vxvu7ad;$X0Hw&sc9Zb#08cRxUFDzFn2{jk?8Z^%KLT!wa>JNV;
zi}+8y?p}$_U(~l-DiiVnzs)J={2kXze+sy(KA1L!d;3FNw1POFOY>S|uP=<JQWWDF
zKAC0~v(=-s4_a`Dj<k-!+(N$~gWM}qPlRUM^|QLGxd4y)O0QEt%a_8U?L5QAsipds
z14Pc+5>+tFheD^P7s}#(MT#if{gGbxUTv}GgHdg&qvSlVXy&5Qn6>%+nG|&be+6_U
z=KmG~dnqiSVj98}{#5oW-xPR;yzW$c$5}kRC(eDq&^o?97dlZ&Tl83I$`;z@1f&>z
zdvVaZf<ZG@W@*aEIx%CZ<32p@_Me=7*Rw;#2Z-5bN?nN>tDp;t*R%aZG1}BMq4Npp
z=}pePZ2Pj>@qhU}r3%3loBbuKsp@_j)o8jTSgOnYJZNk4S5aE7LX17zP}F(VO`B*3
z`GEjFrZV1#HWW@-Uw$<t6C-?{{FQKr&v!u{f1NaR0s#I7AlfZ7pGN|p^Up>3{tBpp
ziMheF?qAZfpcBqugskgS5PMU^{v<Bbk+$gSET((0PRS#gU{HyHB|mWAu+hkkBD+zb
z3#_uXv4UEH6x^Ogd!lsh2Q^2dxH^-U-H53SG^`q_LrqNqUFe$iqoe-%STzbn{ksL@
zv|e%>eF1+fJLn}^+5r`I@!%WtsgB+N$U+ld+bwoQ>&M&oWgb8N=oM7Eq2aI?tkn3f
zU?}FMrs0xgEcvslii+#1S%?wf9%Mh+dxNN0yS}E7Q!6dEU1m+RuO{Z(O&n1KB-!Bx
z!A&HIvjX{>AZ7Zh?7yOq-bhW?`1kzcGPI#2mJ3d9aRarV0eB!R!qyxdI7C<5s#J8Y
zO@Ni-ZmkRUM|EmAxqU-G%_sfC6lPwwn}1qIyqR1^6?#}ZHm$|{SI%)71m|o(f846;
z<>wmvTEIvbtpy**bPM`9`?)jae*MNre!9NB#w@=!LAN#0WOdlz-SsP**)jdb`ZkaU
zRDoASXF(H2Ef<3MY4WG}iQB;+O%K;&SgXxvx?~MmJ1c$Z@A=Q_8UR=}#d*j~TOx!)
zzr-0Y!YHJ>km+-*-59hVvAep+r_*#f;D+(10AuZ$uACp2O=NO6mwTb5#l#gdHZ6&<
zoSz{rZIhB|n!(1dw$Q#cLIW?~<#O9C>S-MEXN?YYQ{s@*x@$kB3y{{Ay6~%aTiu=;
zZLL$`@*RiAUmOL9`Ts@+FF3JSUaw$bR57=@2a<{R?x>JkOoBdaV+r>3l+(Nt$nQ|7
zm*O{xr1J1yX`lH_6Xe<sje#_9^bZ^&)Vda=Al&h0SxNED<MnVbmL5FPl+>w+`gY2^
zUY*cf`w0&rnef^94&4X${ne$5#6q}{)--2{=zcU1Lpt4Q2yd+S2oJ8N!(``Fa?qxR
zO(q9V)5u2VY=52-i1&hnHb>Z?I6i^vd?F?Z^jFV`y|C{C#63Sry@20}wkg@b-ZmY)
zf^l(PASKujnl<7RK)bfc-3rA({)&Tu*z#pLt<fD8_HvBWeMl)D(`6jR2M8`<W$a(s
z?<0E&P<e=#CuF?f-HAnW0^3`q87yL&yX<MK;)C!C1qs|-FAjL-{4W?9yPE_fIpPgZ
zr<M*%$&`Ve>K?SB#C**V$&YAskFjH0Lyo&eujdgA{=jFte^QdvB$wdnw_-V->jQo@
zs|EizFXp>FNY<hz_m?i_9QK%w6tWfw&D=)PoMnRG9PQ#31gIat(_cK+|Ir}_&rCQq
zWQF-|K9pC~1et$s{Y#QDf$28#;zGSkI=DLS??V5{U^)tTA!)*x4v&lsc%~fv&z&Yn
zD5NHtbMk)DU$I&R0O8ggycbTOjgE<f>A4F7+2=%!I8u@sWV*U=&>1pbqnPi`ML_`4
zu*FjeLmYc|m<?&$Ac8jnqzy<^<|Yh--%Sec!?}eN!F<tSZE1mn)=i+U+aWAb*l$n#
z*@C~Se2svxI7v@BF?~T&s<tqR?mvWu^Isq=K#Q$|N$@2qidKJ6WW*hc2h_py7a5_~
zLdSEci*e3!8hl_b+K@yXF-WjL(;cdIh_N703(;7}Z^;y{P0)`+4s2s<x#*p>A-G_O
zd?ZTD&~ChMy*PHhQ!mXE;4?SP>>yhyDJglJ+dxNfTYn0~*O*^rr4Z8Y1wxVHW+K-5
z_2IWtI}P$&W>PGB9JcLPTOg&V@Oxolx>2>4%5L#Jz*;Jx_wmUV!BJ5pb5b43Cl77|
z1K0_sN<tMk!DGF)a6AmjranARb_l~@jKE+mx33xejUg@u^s0vN9K~G(W47oprwFkT
z=GX3T-at3V^M&WmzQiCVl8QaZSchO}?yHX1c1!JoNOTVBLf%+!f=z#t$YmTE+xyV%
zC<S>JCseSnPAYGA^yM#n2aR@-F2u}RO-=3RK~e>k+Zwf#p3~c_bq;<IbgWZQDzMH_
z0F3aXuxZF_DnNGN({^Y_Cz)ojss*%Dx_Kf$t&XRt4tmDN0P-GACE?dxFZ9KyukvGL
z)#u-sE3GY;N(He%Q=R`E#uoJ0N<MJK6yFLU#kUzG9-V(NFG(`|zWuoE;YZZc7&vHk
z0IMBm6(j(oSbspftV8pyZr9PQcIlCT=IuNr6LQupGabzA;tihIv`oacr=4Oq8G69A
zx!8Di@wTQk1+?6{tYT4uNB8sVqtE1BnumKJ?z^Ae28n{$LQ|hlY2U{!Hs;H#kkB0e
z*2?p*qI^l)nGO*9)^N>${_n!#E}0N&6a&oRCHYLf_r`-iDqM-qR!^Cchc_<t+OH=B
z<cMi%LpO40zNvlNyhGpuj-jwW6Z>oij~U`dK$KONDryLZqzZksdM%EGeZF`RVp7?A
z7}&q0548#yJ!v#6M?VR~;uz}0MR10w-`hTHn8a)tdy7-?LL$WGoV#DFP#t}a2peyP
zaAAKX2;qOKa)dVGDH^Wqqx2!HMSS2-5N$E0CXGVuhhwof9=w*OcIWo21BO;sR=*Ly
zEc>SMz+Ee_TxwQf-21J?UjET2;SUp2#%r_ve9K*f`6oMykQ5TQMS#ERv0bQv{z??N
zQE5d=5Xz^`=d_r5+W!0<Uv&mxKSCY0tbWlv)qe@rNpJNlQfn)G=*Wmvfv*6nCCE^y
zLSQEpj$Nkqk48XxSxqpu5rhg{Jz)5)QT;pmPq$8@;EL|O6yuHyWV*ubuw~1&()V&W
zA6m_yBRI|Ah1jmuMlwoD1{$0^uxIt?5DR?ccEFZBokTKq5efBW2|T&MF|HNm9%L6G
zYxtyX80<iK=-o}XPz&=F8l7v(-%<6d;LVJH;V6-%X|TTDyKSJMWm@<(r&wNJKOq<*
z2DJ4SNK17Hln1{H+Jscn-6-)eCM2IA`cqsylLG?xArrsj$j>x+g)rH~rnPB*6&IDt
z0QVBwK+PkKx%eNyzm7@U)SG~|VB{Rc`%AOp0uqqZ{@4qocIaob<`nt>DoC=y?N9^Q
zg{o+0n)|pFk%~68@PVhf<Any~_1ut{t|>e;tYkZX58NRn-f7D8yBt!rYLKkf7-0)h
zt?A(~=(>yqX}FpkTOq+hO>W%@`LH2ohgEmGpj87V$W3Li*6}uW#Z|=}rR2RawF)P(
zl=?}(Gn4&WL9$yG<=9jb`P^hfq&p!6cT=#wexInnu-#aMn}~q;OY06xyYhRaifVqY
zo-Oaxf+5;ODBZCLwac7EGJeLGXkL9f*cMTC*_f_4yNEET(n1<lkw^C5-iN6B@SlXo
z5IcrC5(muH1N!8=oxqzkoSaY0I5>%t0H<E@^ZmtPafdY@*$ayhit~l^ac4E}5+t7j
zZKh@G-rii(;(~Uua!n5UhG0!={K(c#%(>r^s7Rly@O4R0(_I(*&94QpKV|#XNUbn4
zfbEWwSHEph=$m$DF7%2HvzJ@@Gf8I&&fr)<&2*bn7C7ayZ{EE5)RV|MJ|2~p1);-h
zQ<QeCAfjrf%-pE#v)cyi*B7@Q>jR3Arp9Iiu|$Za)d(@9oer1@`KlTey4HBl;)Lub
zgw8#cow14&1XysViaVj*7$XFto{pVj)u{G@+=2jrw?yU`SXmntOqq(1xJsa7SMSym
zXBxxAcyyRSiE+gJXKlYEx*-@a^oBmstJ|WphS#`Jl(Pbi@=}fWjRbI<rAE1TV++Qs
z_22}2PSMMJl;U0pt`#87VJAg3Quji%l&RE>*dK)4y_-E_DHJfI_)xja&tiFFV`DAa
zJjff}#wQ>UZ8L&cxdsPc!YzP3Q7~RI^e>kGt*70N-I7Rv0q*tLqXEjlN&FM&K=&6V
zF~#sNfk+G)x~d%dY5^*n)hH?nn#DgE0ukb08^YtxWIWMjMw<?3gI5&Zd4q3x?)oz{
zlhwZE8aXqXAUebRG`W}|AP}IEz}^LV6L5D|k-W><>U536J%KulkTl@fOzkx3=~U>e
z3Dq}fOIH2Flwts9p;<BsNra~ICaJ8S#hpl642hiUK_<Wid_lKRBr%0Z37^kzxrM~|
z{xsFEs?7jcCyGgb9W1$^-m8@;j5vFR7<PJMUH>$N!Pt=km~{1xW7NRw`>%4`L08E<
zcrEbUiPI*aCW_m5Dy6*gAzg@?-~MKjE&zO89St@WlX~Z@*f=a`zFNC9-RWLisbLry
z8OfsEaLE(}8cuk5rn{yPpflGxU(<zZ^&0r`HQTH$&oTpS=}5@CE^T1twC{X?z#6ez
z>v_t_GiL#Tyoc{7`99r@>K6#1U}l-KfPoZ&bA1rN6B(<qe_9@Uz9dt>Gf-U)nkGyM
zKU}As^J9}EUy1<sr8@0<9>c!7$UjWRV$Va_w_BeA4i6aqyR}_jSDk)<03m!1VJKFQ
zk*OzH2Hju2etiI_ay~0?h1H?ejY$<_)(u0v=}8ZLB+AAQO&n7psD^YXlC^kzM@3Yh
zTQ`u&H#P`%t1e@HKikis=3tNg`ZQ+_<mGEbOu+z&SJTwwM3sSlVuI;CDYBK)rS`dH
zXHjY8jeRu7=%yl{UlgO;fCiN%54G#dVTHB|3a&e~Bq!j%fyMpDvHhfdIHKSy=nA>%
z+9L%T%lND}5dwC4Ou%*;Wi#l>34KF*y!%Vts<Mp-1E>57*kXEyg5THJe+9sHE&sNy
zsaBoQQu7n#iWB0zsv4GQN$ty%%L8TZ!w^v<CCcIh<Kz=-aQprgwSzru&YaeZS|@%0
z`7PY_7xe7XV<yTQC$vPiU;|1|9RL_Vo@$o6cR}Yq21FJpTD0Fw%$<n+S%t?B_hckV
zzL<jC6RCg1j+jL-^R!0Ue?hVxq1P&Gx1m3<7Ywb{f)WpOT$H*Q$HH-PM_@26uF(kl
z{RAY3=G$FOITm>67osO~)+XX20j4^#0Ww#=cD&&ecU2IRRBY!+P0&3}=p)%_7@3?b
z!8R1xpD{mJ9z@oA-;<n%F4*WrPV4Gt$eue7u{lT0BE1ZKC{c~e;=wl_DcP^8S3nFX
ztw0|#)=}~u#3AjXN#i4gOJyfeNbx-ZbACO8sr5n)XO%^#zGjE{R(*Xh5||Ym|D6Pl
zv1+UEdg=a;9D?V;o^&emnTCBI4WP%gH$XZ+*0+N!6+unE<(csUQ4};8_ax~wk%4wG
zBR#!vX1m7OD~yb%h-%w|`0_df*>#70S21%&n~y)%=j@283Wqa`)>xHLY+-F@&DW+f
zd)*AVr0#s-cK|D-hoUPM!yaBfwxB~@NHS&pS|VAG*-~b7sCDIy2@y+A{paOxeF1b8
zXnCWzy=^mrOB^OyS@WJn5NWsKZVY1T?ZTnm!r3Ccf9xmBPrIEA7WTl6h&;-E&<DsO
zZx;g6KpIx_@#>$`X>~VQzh$MSvY0+B)w|<L_#Wc_kGajpNG$RWfzVAw0;Ra+Q|{b0
z?J)9!9+IZlqrn6e{Ur`q(;-M{ryJ_dC2TfqjW2;M`Ejlb7(>U8t9j55iRk(u*5=~i
zti!g==Xb3wErG+2=|lrBL48ZaI$M_|7~fTic{AkP(L76phPAT2B?iey%{I7&gI&iD
z5uQ=e_|{0${Ya342F^rhXgXpL5*SZtMLtqPyD)EL2AJ7RG9F0$MF<7iBL#4+l`Kpc
zMH2|VQ%gGWKaIe4^p6&T3;oQda0F?)weMuWc{J!KTT*54ho{DmOa#6`^Dt=gOYKTj
zmAA!ohcpW-YfxTyMk}X&$0g{|_DMKnf+hNY2dC%9qNB9Smiv(yMe+;QE*V7HoT4J$
zi6Y3t4Tmy9kM4il3AiK=kahxQPaKz{5ljR3AFG`zqa!N-Tnh?|t7<!rfE#~(N=Mfw
zI688IF=h2xY!Ooiv?s2MT|f#T6&oLr)=gJFkKEg#9ulN0>VEngrTV_`CYky9YZ$Q@
ziX3ix!>`?rWV@IwGjLIaEf1m`xIvsmN`+bO_%M!Ph<N!Q0vZ2vK>r^|&;R2G<fx2$
zbEWS9Bt5LOZUh7b0MheGyQ&+7TCwB)h=pGkNbY=ly=a?WGsN5vDlzyv7(=-^!5EQE
z*Lvh*N6BUKWf1_&6*e12kcFd){dq<bX=^FnkdNury5ADW+w=+F*x$V~-4Ocx`qYel
zw*efQ4)>pgsdKvO&_EDD+Ow{KaEghKXIn>-vcVAH@Qk$ux%wN>V^TlfQqUvAj6N@0
z4VM7a=_>#BM%uUmRE{8B4rOHg()Bwz*l;N(XYH5s>Qj_0fh;ppJ?P1R0T8Kyq5EuQ
zV4ro}yTpHmBNUJh1CcHf^1I+VG`ywH6iR*)lnUfRK?2o3V4qrC8GIMC00P7Z3<9^r
zdoutMx`&UCe?i=4>uI_9uY05wN;cCp&wqH#Z=mG3_kquMYH$nN;P(QCIheEN@mJg9
zaA{bmTv>T3C1Qrm<22Zz<=B%WcL|^cdz47Pv)hma9R=f`2>_b8T1Q0u7lL`MQjzAq
zfXKgif==uM;<q3b8NZ|4&Y8TLN^ca4NI_s_8UYeSp6U?%X^N3jhbEJ$7SnR=p!U_l
zRP?3fvv!_IN=WbpsFILI^~dw{PZB@qXSUxLyU~w3-W20w3+bNUkk=GM(jjS6u{QxZ
zMT@`%)xo+p8G0}1+MzuyX6lq>ShOiqxV5Hx0{<K@D*2ql#ykRvRytcFw9ctog8PVy
z0y_VjMgr;=fn-#9oxd}ryuIdM9n96}F^MGE1|KnZr!)83E_hmn)pA5@fSHsAFZ-b&
z{(~6ui4u{bMM$t)SDlO$BdxHrMSBRzBW!S;36IE`aFKGHeQ&Bs(AVwFRR6S39}Wuv
z&3+VUk<|>L;p{SciI=GD#%9J2X_tz+I)Ct!WfF_FtlPl^K|uE`TJ_XqfDswbV)C^9
zc97J$wgARa{)ViO(4$B1@p3l75Ev;0U#TQL@^BshcD_g;+d~r*lP{LDJ*h_hx6`&^
zYd;YrbxJv<54be7xYdhWV9Qo7_Cx-RU6qB;|5ZXvaVKQV5x7|F(D3j>sD)Msq_xJw
zHt^o-o$Eiz{+aDnp2?kLYGk*&@9(9Uk4oW^c{ecd49RpdfLj!dfLGN4NiC_Q#Du_u
zauWOb3&cxbSkF>ecB$TWetpJJ?JRE3g?l&dha>1_&rYKq+nyg}`+})C88qbl=Lo@3
zmjp_s@%8_qh*ZlDAN+*DsE3k3+s7ct@@O4FI)8q;l?LM!TyYE$5cm`r4jOtEZ6XH@
z!Tc%E>YGG7D!MS+1_smEv~a$~`a2rh^+-00sbEo(HLe|TX&3TqTPy%AP<bUf_ySlF
z=>dPHU<4Ao@K-PxhiQ2=4$p4Qx$*x*{2v@M@-vMV=8YunaMI_jqqzbcslb+Nx?5u=
z!$A}Y=;I0`SI=Cy@+sJ&L;KTa`T;{R`svS0(waqiBZ0ai#O6P^6@_FvQH#F>MURMS
zX5>x8#@*GlYD^B_46aqO{6VJqadhf>FPI;yX@fK>Z4tE4))KO7;j&KKVFl}s-tku#
z_Sy4@E)%MHUB2vnN%;7&ONSpBc`{tccE>w*>=en9V~>tW;NE+3?-q%Xw9GN}n#->o
zaq;jkc;8~F^eVj;Q`%yuF8##(iL~XDiNt05x<RvMg5`qsb*1HY(~VingFUpDOdz8K
zvy~o10`*?4(vifTvvd?@F<D&BD;GIMf(nZ9omW8qT>lW~dj6?93Mqq6yFiGad8V0}
zT{g`5d^A0~jHDGpcBjSoHy4L&HZ=A6rok}82ZDWeyy=Zo!WqXrh&Fla;#V0SB_g5;
zsd?s~TINnlN70$tp%Z5WAs^S<@RW^lxRa1BIws?_IOWZ&@!*rFf<q_rLe=<T69^uz
z@sp%s%oexZ`_qKv^UDEIHa`&27Q$q4KS(R?G_-XbeMXuKBArezcRZ@%8U*ql{ID&f
zS334gBFS6&e6~gL{=?4T?a<^PaC@QKj>d_`wJwYnmF^LRK4RQgATG~54jui9%OceW
zS(2|)lTz5&*qEc}!&e`wki+DisAIhe=&3ZtY%qFB^kSj>32Fhy-4Qj80-7*I#oS_(
z*X}utfbm?-2}J+tuG8&4eE@nezxe*v00JWRsVB8nH6uw{+lu80qbX2*PO3HRts;J0
zc6ByACo<cfxnIIPUH;lByDfmxbz<POKci=VF3hW8da?#vz8-8n5mUBL$>doDzp-rN
znWyemfj`vw22sGpMs0vB6RIWOJTnWSbDL9^3?N7P1^L$=&D&%UH{%$l*mMKNN@+ed
zqeYJX95l7}IhucJCIzYtXbfC#5pxZBsl9G(`^IPhoF=<cYgs5oc;QEQH&5?sZF1$+
zxRXrUYvL3=fnqwvCt<6R+1XK;3CTJza;Ul3_|@J~pnqsOPJ)Vy9DLdVN7taFx^NNB
z%E{u$W4VU(20J=PJhqmpv>>{a<c|FH;?w@K9#yCxOj<5X8pe1{>@80(jz7-a-dZO;
zVA#7kV_6DlyfZh~+w1&XriH@jTqlllkA<sMG{H`JWN))ugwUIL(eq`!uXDN9(Ke%-
zk|#g)`!r8g0)*VvvtD%%$|zY4M;-1N5Pc??1(JgguTv3Fu@!cM(APk-j>*PV!|oVL
z*YAsQDvVV1bGaIH5zQfIm|<>D&v#1fAzRn30Eaxh&UGacZu$yiy!J651OfSjffOhZ
zN9*3h_nt3jW`~%!$X28VT^BHiu#9VV)3{CVde6{P1tIpHqU4iWQ)(6<3!FKNR%=v2
zIEmH1uCk}JTl}R8F=1jDNNSjxMB?GD{OoYf#kV&uwD(p!#2)Oyugiw;xog|E#N^G*
zSqE|MPIF63PWHK_&fYB!y#4korBq_KU(DOPtP19pq{h08YPE<vWobMlrz3!+%6?7d
z!VJ}#hyM+VPM!Z3{lcaBz?B7^^zo5|v8R3wC4r}rGf0;XZ->n1-1Xo;FzMGB;((0f
z&Zn380J2fh@cH_YWmnGp^WVkvNfnH4rRHl-HJvUsdinC@L(*)N0bzETy7VB|^)t&A
z;`S_h5Op^GiXOUr@f|PAsx2sKH^!_kmenrw=AK1o+#%*;`%c{hdAd+uO+vS_TC?k3
z%TNtc7~_;xay-#Epq;aD-m~K5pm#jTXWP`^NeKG1R%??2rj%ZCML^{?+zj69V9dTG
zVHlcUWoqC_^j+>UYx*6~-4vBG*QJ0mHFVT@Ns&LBc?%G}<pagt57_?1)wYzXj(n?y
z+X^?+lNC)WX!^k;B{Y8B;K|vOoy@bb7|l<F#Fu<X<O$PG!H}CgreKKgK6GT9=>!a9
z30O0uBzKHlj0gD&fBPmmBWUg%2Bs6_JS7G2e+ELI4UdRih%R!EQ@1uYN?F8{DGwZv
zN9qsG<bBaTw+?s@Vq{otHq_Sm$d|2`8!0P<X2iwOk3ZmSnSk>-3ZanOQ1o-41h8@5
z3Qw}jVIs|kF8cO>bvmZQc}<eSE{IfXH;3pa?H}1}Bh}w_2^lT;NVcM(JJCoq%>h53
zUA_sWeHt7uQ}Y^6G}k^R1+Fz1Jc4y%BwvxKaz5qXJ|KLbUmPWfh`pFouWn_WQKM(D
zk<<Qkz3bGre9TMPE{FPChiO#PiEaB1_%az*6+!^$QpltqgvK+wm~;OuFS|K8Ir;TM
z{9*XJ0gM0uki@CR$Dm-qk~#_F6r&u6A7gWy1W=<)Y`<v>{54g^cmWyx<`hrxU0s3-
z?De@)s;z5CMsbk)r+RmEzyc{sH!3Qn0S0dQE#U`Ip*QjsW|hmdmnmUC_*w+a%XGdg
z_8<k+;2U>c9kdz@e^Cs@5kU;3<irId>`8dDsB)gG!Rk*~;q`$LS|0Hr?bIV1MjoO?
ze<jdRB_A{f{znlYj09&I#O8ZK>N2dN<Wt~r%qq?&t9*N5)GYnP<xh(|b39~|*=x<d
zK7up2e^4=u2L5G`?o`0&n6I$5uP%_^+ZjcS{y{|u_*QDb#H11yBPk=%xWm929`I?8
zD=vq}_rXJsUiKEegkBIM%*E5)AA27CNc8=})2PqFL)yQl$;!Yg<EEZ5@7#6xe-`rp
zI1xm7gL)?H?(VK|$ji;W?cm_>`A%M_zyxvuPb5!VK%euj;KaHt$6^#*#ystk8jPH0
z<jLTGfGP5U@B$oP9K-7?9J(#>OE+KT9UJ@aT^hjCTcGxcgy(JB-uuW&&ybPfAsHqX
z32iq{DBIBY^b&*Do3%8@qd!%A7jFFo9+wyvq2k5@HA_3C@SMPzcX*`;KKN7pjOLOC
zVdjw6TtR^1!K}C$2apm9D3I4a!@`5xA=0^DVvZUnv~b$ffhlDEteF=xb5=_MM62<g
zi~pusM}hmmBP?>LMlsxhZIX3FiGT=5hWPK~?~#ICsmyknBrlH-Qje<rB`z>u*q<1T
zKLse#?>2irmync{^o=JwSYQo~z2S)z>&~$s12*&UHr+c0^bZ0DVc+<dE!6L;Y;CMQ
zTz=m+%;?%PuzeX3ig<<UBShC8?d(ey=la;`ZNs>gZ4r`EgU!v&hos$SOz54v2N13K
z`YfF&9GZ4)R1SJWP8A^jM0+X&u$eMk1UBta>hFQaivUI|ylGT>@~tWwqR4^@p;snG
zGRR$k7tkl=n;bVddlof0J*{8CM<f*P14qN1V;vfTX3i$CHe`xI=&{*#5Y|BEu%G4T
zW}BTF3U%ZA+e_m7n`RBZmn>}35X%GoT@gj<L*37^!2ccfGdFh+>Bd*=v9`93x|vLW
z<O^I2<M2TaKJ>OF?!kKTJ-V@Xp@N9w*Usm}(*y{!%91<Vwoi|oTkhOD+E{|`)bgtI
zxScwiCsFiTU=u$U=+kd10W=1D#tTb$?Mj;P7+AXKFxyi%JO-uw>@ybb@05-do{Bm@
zC*uXp*D=&3Asa5)#~3QhxOm$CM#eE}36R_}GyO2d3m*LQ4Txr$tNNi>i>)_<wMO}n
zC%?o6sE#+UzIJ^A+mOs!&daFbN4tlof8xwplshMrbGHybY3&J=uDo{F*Ox#)++Uwk
z`l4UX_6Sbm^+#6>HSN5@Ne>SMd|Z!)JkvEcw#O~a32c4v=#8t;i+<;@g%0AYW@abN
zS?P@>7{wdqFItD;sVTx4PZ~O|B2IyT4BTs~oYeyD&h236#}$4{PRq7?JUg8DRUTGh
zz)gy=%-(`fo*esag~E{N&SyR%ygdH*Fz27Sa5^o$`xfZnHBRxsis~7^N3bVP5&_M!
zi)ih`dK|Sx7JReYj0vMAC>SBa{cCsu+Gy-<5q`K90=L%~GuwmpTQ751Nqo`%5piT`
zvfv_C=?vEdVeN?=_MrQ*9`f)1dYnMG0emxeTmdt^lv@sV{kdwifA_x7A6DUpBZ`vh
zEx`IM^(3rB*5N>P81kA_#5!%R41!{wf4zVWRD8>|i2YcvbQI`@Z<;sec%j#4mJYiX
z^sg($a@>l|5O*%R&<5+b0xifDZXNmvqiJxDs7b@^#`$voHB9>{>_PSRfq(B3E+QAc
zIT2-g9=*OXE!g#2rZ6|;j`mjUG=369mzdo$Hi5*$WvOoxU4z6o(0(jJ`}Bs`=U<-;
zzb$n>w9EH9?>2{THj9qJ$QC$&`d_eX3dNhm=sVgwq(-pfI6~HDun9yKEWWC>vnpH2
z=e(qm+m-3b$2$LTRrswd9?`#d09%<r?1!LQ7xW9lKf|uMb8RVi#=7pTFG>oe1oxkA
zYywF|tg}Cy#T&?LsN;~^O~|*xKL1kqEzt?`e;pcfdQCv8GMpg<==BK*!miEDR(W~%
z4i@=ABpR$Cvxz)x0{IVv?hyj+e;D*X4EldHgF3w>$sQa(T%x|6eZ6brJ753%gW|3c
z@B81P42Us~*%1-N@aQ<6c$W2ps)NI=_&f=@vQG_XCZwpopMs!<C`fMoCWE_Z@uKko
zai6ZbxnadaoWvj;GWkWvN(Sc-Ua)Z|bLl<et(Zc0#d{c;WR_n%!)$-=hSAGb%MD%;
zM*%sIfDLl83m9`E1OBJ8enSXbfW?BYk&ZNW6u63e)1h>^M47UP=alJnJha>v2)B2t
zdGeI*Tt?Z}AL2eC99%hC&}uAl2hgI?i424v$LFfSek>)YLJLx`W@rM%f#ZocHr4Vm
zEDj?bJ8;dch2`(n&@qB2)sFdMh1L~LF<{?_)>O6sBMy+qg@daq^JUISAQpE9wdQ2B
zXs#KhBSw1%vwSutqYatE&VNP{dsYPQ!>6_3k)og3NYH|J>@uR`uKK%SPh}6d1k3e_
z?Uy~mCN5x^H6ly?8m$4pJQVQHVv}xEXt)4sz)vXfF#0JU1K}2$@`JI}6Yd*$(>;8u
zBVUC2lH&>~DebrBAJ<f<VUED*$3dB(wA(AQ`ut7*vxTV?xxXX2bFsAMZ2bewiNMuZ
z=jN6YTdbR19eH*f_rJMHm9Sn4pV-xpgczMv&+9~0u=a6;NaGR?w%iTBh-l1IJxWZV
zct?@rYP^7B5c&E-le*p(j&&r6{5|H>z-)&edu;F0!DWk#^d7l|zM3eY5Ds=`O)TZP
z&*>9b3GYh|<HP_B3rll}x}u-K24+k`Oz@$L*j5Au7zQox)feiqNaETFFqSoLpW;2R
zGa$U_75eYgyX5p`XGO$l;=RTWtBtYZ!q)UhPQoVNoV-c$z!z2&TdB>0e#Wk6aK;JC
zCLVi$5E4U>8@5>#05MsP6R~|{N7$5M1FKQ@F?Opq_<zE}G&L7@SM*;baB$tF#e6W#
zE(#W`?$zjTN3aY?0YSvCRcq%3fXu%Rr5YF37a(!4P9S_0$g+l${Q~;$58PpMa#yt}
zcUSZhecU1-W%PBFYO!{+ALkxC<bn$^t|SeRf2>I$hElW;b5Dwk=svc!#VrXtzF0L9
zfn|}Y&;k+EIA28_!l?oKO}8-S7>4KN5C>WE;lkdE(5qL`fz?Vam_X6bzji}%88&(9
ziY>L*Rantu-$pewQwbn((ZEXWYdBcGL;ZVr28ApKF*bj)-hw^SKK{l^qE!eRSP=EZ
z*!R0!Be=UFjJ}aN0d{Yoe;U?q90d?Z>_Ptln70J99UHtOb^^iDZ+R^C@|f1Y4Q;2l
zU^`F#OtpeW*8dWOAMs#)tP%L3P67+a1`KuXqW|u78a9{yxPf<fMgK)<1KcJ(%m&$g
zct`zXct(^7xrYFjRciJHb}Z;ua|et0ibWvm7KA4~M~E8;4t<NQ)J2SIx68QicUOd7
zeQ^_9S=7j|9@cKCC18_CM4MU~wiR<Vx&lMnQE+AKzKtsXKZ=qI7H>CqdjUkf#8t{~
z66&WBPV(lR@2=xLNhv$0c9_p@SkP{=gU78kX+AdD$jJD{NL?@9Hfn3WlCDG8QJ@^C
z*IXoqSL;6Pokdcs5yQ{V;eS6ISN>9&wDiFJvR6irjWNJ2)W-Tpi@qzKm!}|U3Cgo(
ziO?PCJ}$O3`HtJ(WOT~fY;1Bybi{c0q62|)!FV|ZKivuHJ(rcg5niAncaN7C%?DcV
z;QDNWyIs)Cx+{MrcVo6r!2soGbu3;y^5y#6Qi0-4vNfBv<MnZ-=L?ymslRjb8M@^i
z|Hy?<UG(WtX92jd1xm~<>A@|jr_E?!vx+DZjm7zN{z$a|Y=rFT$#);{oY)Ta^rVk0
z_4l@RT<6UjS~cqW(@V5%yY*V6so@gd7g->~nr8MaF@)y7$69G%=rJ2sKIjUH_+QqA
zlLzwF^tq@IYj}K<e;cmmR{`<^hO8eto*$#GcZ9DTKrzwO<G^1}hm(7wcWs9J`tZpL
z42kZFhvI5@T~L7e{9{~lL_R*Q|ARXLoEukHBMrvW6X4c@o|*f*F(Zs?i@3DHnu;}V
zu#U3>WOvIUwJhpuL~v4#jx&C^COFWhzCdp^qeQ-?>pa>*iz#eB@8RLBX(H_2vp&UN
zN<34DYN&EISS}GQiK<GXXpyzZNH#HuPwa9yeUuUZ9RrGmfsFFple}JDBgJfu9>$8T
zti%FS)OZ&uO_+mGYgt8sFms#ruxCjkbH|1DKf^^^ml??Aj?0WGbL2lSXmw@xlciy3
z<fP+T`d*@0^0JQqbfHbTVX2QhVC70Qad113aDs+W*2Qa1ppJ0`j$$mZ4{*eh>B&($
zCg2XuBp@QVAccqIBa%8Fm#`GasUgTuxN(gWuZ}T{;B9lq))LsLD`yKyT?Jj~LtDC=
zDa262PO1s&G6|^sj#^>L!t=q_RdwE_(bIG9B~Wh-dza#j`d_yCDq6JB+PLXIv64-l
zHO<j%H}DlL5sTCJbDpRa+i3NFub?%nxvWUGwVc>1&8-L74t<2k4y4MHd_?SslgYst
zZjuCB%<t2)K$yqyFQK`2li`YRIn&-2R5-&pHDhy21CcWLbo!fH^_|^P94mcu5@#wl
zqm%No^tJ~H!j8HrtTr1*WTAQ-4A;LUHx!$cEj-uEa5GhG8Cg8)-0UxB)x{TDWB$%Y
zV}8SEtH9r_YJ0wQC^rU5dgL|~o*J|?l&zPID)O?O(fG6YmY|qoVRY76J~TfIl}HTa
zB@X0e*D`Zgg#{Mn^T-7H4a1rrgaM_l>FB`l_FYy*Br`3XILEC#A}0>8f-}gvrjKk0
zhm!$TXxiv5>ee>Py~Z~E>0kxU^fPzeJB8Bx38;EdNy%F#%vVB9ccnzx?0l&Ka|g@0
z^!~GN)@!q;{rf*1-hRAsv!0bcIQ!2n)n+dGOY0-VOoX$Aiv(qZF2quJ`KJ<Jf6F?t
z{ky1tMw60h3g1x9bbW5g+=4(+QL&<s?lj+t9*0$b_i{V1mhF(!O|ziG@%eYe`mbpA
z&c2*DKnG^vb?6^S2j)+x=`#@QQ^xT;)U%{uH#s-+XPLqJEm6!V;-Q<tsofE(!|lwM
zXWsOuoVh@+Cup#>H23>dt8ih@X7!!^6Rn|-Zam%~^B3D3S#l#Sav11nth%i;U;Oxh
zAtGUn#;A%Y2O1)uXCb`vYTHwOYHKO8*N$U#iV8RY#BPg{q2<ME?}3o+-hPYW03=uz
znU<)5%>n;V-66OSZ2?PR94@E(2Mm=vM*8NwBcD8E82tVDu%f+*bnEcCKT&TR0IwT;
zmDd(qmz60BP0J16jE3bjmY1;DnR?Ii=Zq5fcjY-K^UAFC=jEL{^(-qZ+itd&pp<zg
zFLrV6!vVvvyndVhALX-5XFo4i<s@y17+W>IG(BHXE_~ZMa&#4(u}Kj1a+<noIDbIb
zG=Cl;#|TcuYztAo!-_3AwUNX(Eh>wq{uv@151b7ZIE5^KbjFY1<)&^$olt*TO4eqV
z%q-Dlt(|e|`mclHE_V_)W(Th9>YT!DLxYD+VLdkY=AVwcrCHu&VQA*@np!KeVJ7C!
zo*ZZ>m4enU=j6`y7*~u|B~q<NvZ*Y)bfreO@>`U*N!ii~gqOkE7!PsqI$eP?7Clxy
zj;07|8u;~<D_^w#MfDJ2UI!be!*J#;ZpV4Jr=#l2)Yp{4-y@ikGA}vR^)~is7n`t6
z&3@gou)~InQOQ+0@|Vg_6Efn@<_|d!SoL=FznXiorS3hOGAK8d&tV}SYiMzUz7;Q#
zemN}LZpL+XG&ikV+M?sJADf+-DwCOInbugMUburD*Yomid{a$EUt6Blq)}H;zjEVj
z>qkhmAe$;rU`!+$jtD{SdWG9)-6V<NDPCL%#2}7#k6i>*Z|7om9=($c!nSg4E4Wt)
z*p8!Y<|XM}n2RR728y@m*9S|z`@an=3sEU83?!7;aIRzx)z|+tYMUK+?jG&y+CNa6
z(%qDsm+M3GR5^Fb{i>4k8Lg{MSv+C(*KB|18j><4tVs1GTyPJ;?LaI^83WFXyE$LX
zLShh=r7kP_m&)2b(RzE>$x=|>MW@U45Bl^&)SnR0<^Q(3_tVa_KcipaRYJ>BtTe|_
zH^bj8LmwjEM?k?>_P}`6VhtV;c=EM+*0}6hsycqkt(?Bs*XUbCnGSWY3BQ$=zikey
zEV^lId1GsBK4j<(vDZ2{-?9CyPUDDtptQ84kw5|zfgYO}5<sHZ<B3V_d)Xd@7NGJK
zNc@$q7EU9WEF7LI1|ix`_o3^fB47XEJiFMj<=496#FqREM)Nk2#OnoSS#y5umJg2B
zP$``0u^T6?6mu8$3rz>{7U?uxx#Vw81}Q{RUL(<!T8g48-HICwn1Fx|aFV2y(20ky
z;ev(mwaL+IQbGK3DO^)-EQLaH8My7#rHxBoOmK8&&5e58f(TUx4|C;FQmmPDw+@^>
zpjA}3JuzgO;qbO&fWLHvKA(+iqkcoMwBKRletV2@d&8j8d}#7a7b)F3f$$fmT1MZs
zrcausn{_n=nmt>SbJYW@>aD)^$58ama{&U}u)Kyxf@u#BYtC9nn-;UYtH|<xnK1pe
zJUCzaZ*%XVIt(`TSVU_4GQ#J*U0ZX>1I1lxwXJ;C@+$+L{PA4d4c9uts0#RkQG>*l
zwcFoMZy(Eis@kol966{?_hePl`rV$A4zb!((skZZ>THE1A5-A<teI?-44>f#GRAyp
zApkcv0yoC8jlXY~4bUv@WDUQa@HM4y3P9pJX_JHF4fOR|ebbImY@5GSCQl=9QT3AT
zL~dFMg*d;&F}<V=3&QopG~M~O3I{$;1=iV?f#sEm^ygg;8(S+9V{<YV4Y<m<J+%8w
zJ_;NLQDUz0i`OI;ULvWe<by#fNW=eP8*cpDe1wD20bXogGX5YCjeJXInAb9zfQ=mG
zF6^~cS1ahc6)KBY_9Eh5e}TW9v4VuYXXFz+I{k&Mdf#>NE{Myd7_~`9UkVf6Uj1ee
zh7V*|k=PlQ%dfC8_op8Ord$8}{sC=b{%sV>dfv2b_BsENe9u$!Ap)cDT624%8fwG{
z8IO%_#~e!qA_ZkCt<d+mXXmOQP=_-l%6MPyf@w_S!shw*#ATv<B2Pk>(Zi&oH{6PN
zEuO5b)r^wXb(&}RyDb|o{uo&P)*oS1^Eu1aZIs^+x0%EGTVTI>RgyGeUfGH5$qA`a
zyE;C}{HVEpDP{-3Hnr6Z0_C`^bCn1CX6h6jCK&k%mT#`tr7i%}<A&{dm}v#x@`qoS
zux%=Aduz`|5rUHzVz;IBqJ(cPHZ_QF3x~7KakSID1MtjK`tF|mktNk4wArwF)F854
zh`*dhsAwr`!BjY)M>3aZ^;}+Af%$YuY0;?P&5)_n{*N{n!)lMFoK;Xgfuet~@(}tn
z!KuYW27Ccr6C;H=8v$C=T|+WCF>kogDYL!RfN=y++c*L05adhoak4eGPIZL?-KwR-
zEgu_R_AE^Cmy{>1wq)zdgrwcRVX~0rMp~<6uQ11GVVAew?p8{=^}9%Q%lqJ9qGF*#
zyU{?)ECJ{OMc&h;#^OxY9N!HLj3+A&4rnYdxp5U7s2DAIy>OTm#we}1l(f#(OcN8+
zAFUQG46~@JE1fm1`s8Oo)dA*MX>1T}o&jp3)~JMN^aCa3^6DZ5Ke^v}t7+M2(N+r2
zkC5l!wI?91NJ7#tJP`<E>Bl~+-SIoX;uRL8sCj|qcSIp^3G(`GZ-KMG>K%?#r*S(j
z&wYxN5%Ht7V<I)ko1f1sO%o1HvRY==H#I_4G{jvRWdQwr(`T~d^h<N!%)*(Txd{L1
zQ<<_>p9lIahj9$+Mqe0m;NUhOu(I0RK<QD0O$?@axzIvJ3kWjd7+>pd${&5`0#R`P
zEQ<C%;(H(?T9Q{3orP%&@5|B#OhDW<$;lHI*g3R{yMlK!U{Ru6i^s`pp_w3j?xH~W
zOZYl>Hj0wZ7cMM@A?_hs1vufsulHcQd(vbN<`e??wU+TyiyOETq;0k?{;r=hSL)Op
zvu(%iNvU}HRpP4cZ>_9ZxSg)!*?1T2>^8zLvoQnJrQ=An@Cjc{6cRz<E^^ht2#5)g
znsI_P?AV-0O$T)Z?9~6jOhoRhlsV<}2X#^@@&0-F#Gbuceok$Ey^R<w;{GwlC2>Cy
z&+_~C@0WBkZB4Z`g2_XD4|a9sYE;aZ+d#Xg)Y&j`@N4QoyH|X2_Lv^?!w@VgA8+sY
zPdQcK2d7Q`I?p6Uo^|hzduf)z=DqBJFiu~^n|WFM`OhN%l-jg7C_cTKMW~~i_xpX3
zOH$9`V967HJdy{9v4ZceBZQs$#!gZ1a?M_bR2v9TSXaHqy?6-MLUDSyfAefX%G6L>
zj(-2#Kz+!1UA)2>CJT$RfMe;(HyX-_cB3hM`J8xF%yCcOJamB<U#-+Sj?q$;uzx99
z)BV_5>L&<9s}o1QK<<<=#GIWTN9tIc>7RsBd**IN!o}*qxzuP<eo`jeIr0AdB4zIW
z95L`QcCTzt^P-nutcFku{V?yp-9E_e-v{m>e3gVNiG<+2ZwDT7qCKLw4c>Ou69wjY
z@LU;qbj5zMTN42LI)gKFmQr!<F*w=@{coeGv`Rt<Z#fD?BT*coNM21D;ILFl?FCE}
zXBhT0Oj(F!tL$@n2zwF@tbC2jEd*@xxpG()6R?zr^>tKEYv9r%AqTIYc<6(n#v=FK
z(-Gi7SUF;f61M{htl67dV%``6n`pV>`#V?`2(?NmvIc`KLC}i6Hqa{qOEAzPN>=+S
z-SNM&7W#;Eq0b6B_E7@P=Jo|Tj23zfJRX@EPmAsEOe0>lTdEC-RuSCidQCSbMsJ3|
zRiYnPnra}Sae7}4arCicL0a~>^&_AWI={pOKM4N}+v1K@p!7p8G#v@jCv+Ly|L=fV
zZ-sBdu}^ba3S#`6EAYP%$t!gMr+}5>A9wI#PCEzIm*WPLe9)WQIaiei_^?lu$pxpk
zNXF}{i4{!TgHP1Uz;`oE^2o5o&HsDVz+tB)IQER*E(**W|F0(!r%k4t9E6^PmQAcS
zm~#;b|AWJ)*o_$3xqmoK4&&hN(G+sIe+993k9r#DTQ@q>=9pGkvFZ~$KHiOu!RfpR
zo*h1+IG@}Re5wQ@DiLo{GQ<z5>ETjjW74fKv11ds3KQagAV?VI{(>;K=<r<}3L2vy
z`bC7Kd@Ip!tu=^+F(jX^q_Rv}bm3g~w@G=2i<Z;^dpC`~dF+(TE|=7c!K*BE@<^SQ
z@Ve#~5A=^s*6Q^Vbz^dOBx6UM2D7-S<2fz={7=?N7hWY_?pwW+(DcI}n`x0$dU@i%
zhk;5UUD+V&C2+9Xm}%+#Nr5?G$c`qj;!iq%&TMnI&;Qx&A{Lef8$z^uC;vcLxbF)@
zXT81Rdl-|#WIR^io<I|Sh^C$mP9y3OIi|S53=+lig1%LySUSE~1PLEJY@TDlm7_B%
zZzOiE+A@Bgz53dw<RU>RAtV<Q@&ewY*<qiP_NlS)iKB=DZbLx?R4mTmG{mvj(r>;C
zIzcUgK*2KKea6VZ1fT%zgm^0~Nh(kUcP=M3bqJe>!;$QfH2Gol&IGWH{hd!b$$%)!
zkZf)H>zkSIO?@gs47+0Iuy?=dhp=>T8`0jmVP1onn6Yd}cLXJTCNejl7L5(xdqo05
z^^u7wnBDIQa((z_$IZ7pc@ad!W~7c_i&#b^sLGXc_TQ2Um@5_zMOynDMvBG&0!i51
zO7tz3gqK6onL>)s(E+R7SMGD_fNy5lox@!4o+`)wCSo_4JmcJx(U>2wyd_D{AAS?R
z1JCU}8Tla{Nz?h}{`f1^hXn#?K!9s4m4WDbgS~B~BbZsh!vE!q?E(eR>-z#=ImYH;
zb}qDB-u<K&QocoR?ungc*z@8r-$a0G3BK&i*xy9-K-KH+U7p{0;$u*OaYBQbBYBVk
zpNXx~HQBpM<cE48xH*{#^1rgYO$Zchdhjy(OdiC+H|6Mcm9W2wh%mnsd4JhDU*S+>
ze1BjL(@O_F^Vq+22#e6d5n~{siT$ta<yW`}na*+yme&i>Rp~M<`Pkn?Y!OB}3z)$3
z@83%x8uqH^0rW4SV+B~&Oi2~kY(|f;S&Z)AS-Jl(=-x^Ghe6Rup8qhYz<(I@KN@sL
zWy<|WgZ?))X#FY<F+cC|w>O>{v%Ih2m^>;-+1|S9!-D9nYHHAGWRD5oVR9)Q5a(~X
zua|{guV98?X5vCMV6t1&!Ta}buS_btmCnr#B~6dxsWyt{(K$G=g85bd4QJkPNF#_*
zL?d}Jk*|NieZ9O!<J$|8nS9e5FgEN#_H5z%x$h?~s{U!tE9ua+98H|YHyyR`%=>W^
zQJ*_O3B+y@-~i>ADr=dBW$i!&0kA3ie~~~jWqNU1-CJjM{~8+hsBA_#HoEFS_A>Wi
zC_ZvJdh+WjlzVyYO`B`MRwELx9K`AMs~8$j70$U78ud99M2MSa3*B8hM(t$`oA)T%
z7llT#2Y_u-r8h1bjImC3$ZZduaKsF$g|NAbs$nnf@6dHCearL1Ks<LaL$F)%2%BKI
zOrQSdA5v$YnXl)}&e|*!J7ja({)zK0d9DayD8N7jSz>G<H6-Q|WX`FJWie<$E?xcv
z2@wQ61PMHd@<UJq->2OMyrbNxdPsAJGiepqIg6|wt+dy<mQ>Ky;Zv<XnEjGu3gECt
zW(oSar5eMdu6K^go_j``MQj_+saI%aX+YMP*tJYDQ($??cJS=W{wGD`SH&(cxsm(d
zgCZCK$Krn%08$HsjUpSHnS<qb`~%d&<(5#<>(f_L6FXe{OoRXTr+eoK33<bKzZ7>?
zC;CQTlz0dSz_>+Jurkn}JQ~UuQB>5>d_I5H&b^dOlaTf>F;6_F?J#|AzO-Me|6i3P
zd(p2w#gF{(PXP%!KbgQh1Z9}#pd*5+$wlb+Y?F7uNrRvXCV`JAS$4A@hk~_RCKI(h
z%g(|~G2R|Q)he|BzZ1X*I+A?)SZb%73xX;^xZYC#Hr3!mNNJJKRfHgDoMdo&o@EcZ
z@t-5K?7Ds&s%0<9u9+od<d&S4H*>RFp2nk(ub1|@;VNvu5VUdJk!nLl`J<06_p)u`
zt&W`0qprG16h|$4`Hs7qxLI~*@Yw$L8T3~v7!7?tlz-OX%+Xe5{&O(V?NWTI(33XQ
zVB*{hQja1_g%@+4hVl8|Ri<i}+?5Gks+i8=FL!euhXx0i^5<L>b7%<iO3(JxpUCVj
z<T3N4VhQL~NsMSTbl^Gpmf!wi_S(e%YVXS9p<Lg7+et-qk|j&(NXo9o5*g)`6DL}P
z7`sq*GPW_3gvwTmX~9$yvXh+|VJK@UyD^x?WSbf57{++-Np+6%Ilpt>-yiQ^@ATJ0
z^Ni=Y@9X;B*ZRE%?Fp1}`b`sT8C<^00yeVQ-1Q<RXZzV}V8j3%l_p>^zJ==FTC1OY
zDq^~&(W+oP-(qlyngc(Rd;}1g4brC3WM@J0cCwLk`M`~59v{#6-!HDrQq9b(^Q$e{
z@tMhx93&}HTON_>7pKwTH95#*JBC_Q(Y!X4zHLJXE5>plc~*n|wp+1F6BX~C^nbb!
z6&+)SNbrP-x{L7^6STGmc>gZy-j^t6$mr>Wg_Gh%m*Jt4dPptC=if?b)q@_L7Bz!Z
zq{L>vV-Jwasy%5ME~S@!{Tj^!yznf&9N}euwfd=Y!d5AZ8VVMv#t=6P7|Es$3HgS$
zn^5)oOT~T1HwO`|mh5xWEtdyEBnLAKrgmjy_XzN6=1ysB=Yr7to+TJ!-0~E1kU^xQ
zF_AZEp^9>w_2X}TrY{pEs2TGWlNA}+A_j<hN~xpT<eiR5>d6E<W@To_k*wXFUkDLu
z1_>8<Ue;lSCMzScL{Yac@geG1v<6IiQ3Zck!Yr!sUft!>sri6*@i&UQp%zV$5DI$C
z2c#Z04731`P<smq!JR+*>xC6u@nP2t1P^at1p>Rb0cow^0?j}cPalDy#iO_M>50CU
zTJuKDfEIZ%_Nkd~Tx6RnR$Z7^-QLrSA@1A68zC5Vv$)dLvxF26fB#a6(o5(UZBb8!
zU#aq=2F<-oLA}hKz#`q}DZY*Mw^7S8sXBw=R8z6%=L%f`a@WKl4rka7TqQ;cMF$S+
z5o@bD>a~oeDvi93UqPjnEV33IrPrp#UZ@Mw98HrNyvgsCp4=z6J^-@p?|(M+(h&`E
z!W$ZT`B6@HxYj38%v|AQQVO4t1(se3e>-}Ed!c4mU?iV`eEIl|TCEOpW`RR!D-v;f
zzR7XQ`+)dZhdEdEMo}aGM|y_LPI8-@1%Wx7ncMAvw^?2il3H81B~|)(!E`G%XQy7|
zo9cO&Q1y!<(iHQ+iEJ8nxmTj7zieu{?(Q&VQ9-Zzd3)WhMbxF2vO-%X_<G&UwG57R
z)}I~Kw~Xbp!{woo2!n^mG!QZb+w0y8()5wrx*g^@vO+sDJZveZJlbw0Hd?!jrWz~;
z(aQ<P6of^PXnL=^=dIbaBAkC6VRD{g+$+Ke{CT~vvMJ*kABlk1qu-)yEquX1n@9O7
za8+X&mT_2258;U(y(k78ApcdIc=z4&!45z5+X@wm`$E+e()e|hD=RICH>?)NKi(fp
zYe!#0is+k*SThFs7QMw&Wx`vurXOKEnv|1|=Ltg@16;Zxvc0aIiPvu5AudnG)C{)i
zH-`9WjK5F3cD2{LH3|AOTl4I6dk$|{4X>!UZ1m4Hs$<!`0=BxD{?n&)Jld;u!CX}(
zp_u~^)oA|p+9`m)c9wMGMtk|yxTNy>T@kU_o}L6Ugdn6fdHVwcl_UhISMbZoDtbDf
zsr*_%BT}Hqp(8UcxVRIeLRhN^Ysh%rjD|>$tTP=kO$kZ~F7C=2D;o=IJQ1b*K(M?Z
z3XhnKV7(G=whhnSs`8fW@s>`UXUC;fjn17OCFAs8U{@oK=XI6lUW-WNF7C3m=`N^s
z^Ur%?mD!%?8~s2$a5TNUl-D<zdS0><&`8}FI#fqeA?81^D{fSj0P3qxC%}5Oak=DT
z%#nv<`yMVY-A>%ps#&19#vdn81Bk*JDu+sxwHNxlC5cQ!^~=Tz8_XHLFZzLEBd7tL
zLo~?peLl-Ns%M0csPO*fCl?nCelM&sXC4DgM<)lLM@%7+7$)h`AgxBWRcd(yi>=#p
z?DT|*_n{SQ1(X^$2YwHsd^00PL6j<kzvc3VO)pLX9-iV#y5$bU)cp_Im&V@~wrW+{
zq^C?7d8XGZBK?&v^%q<hDt8u#)8+?suUt>@aAWQ)55sx%938tB>X@{1v*$=%_4X9c
z(+$DFePyZ3J(!sk4DDXbOq@^L(dni)w0`=qj+*idK%=@IH^$wGL+9ytG+Jqi)ZKnl
zQqVGLNHI6X9Nq}yRkME0Z^EOD_iEJMen(bZ7NIrrLTZpG(HdT8pyh8&DXnYuA3xHL
zK_gjb=jq5+-`t2j2^!P{3+2PYIoQv!&-(In7~Vv<M9?)@_tf3y%uBNC-BSdWZwY8@
zaKreUC@6Kr$ptfFQITO7z1FO`(!(@kHED%b|F+XXgK;_I23Lj4A6fX5JhBVAp4+~a
z3jjMeen;QC&eL-G@yT~yDO}>8p2)p1E89V)A|X5anZq9j9N;KB>54Y_jSE_{>CC|G
zItWMfG1*$FQ~Jg8ZgsxaBPlwRL>WE}6|W#TgcvANEc{E9O<P{?&$@C3h;V&6k|bN;
z_2&JQe=RYEYRr=rzfq4!NQhD~d$>WDSgO2cfha)_cP$!G=&7SwRuEbdDhsNlg)y$!
z%lC*!Qp}Gb6^CZ+bbQ@|oDJ1xKV8B}p@fE68)`4R5vG%-2FBR);@v+XmpaqT6P$TA
z3$oneT53SG=O%l0oo!>gs_$1zHy>Dg@fq%vRTj_tyWqDvaD{!^yMJ2Oyr}|E33+5o
zesa<tzazWx#CW#x6<LdhgS!CLd$&#Z<wl)jcI)MoGXcrW(%@yq3{3~I)NAjmge}V`
zWx;oj=K_WuqwyI*ji!lm>b!w*3b~fVV<+rr>>u*VuMr&ZHKox;$<wTH$HnSY$T6+`
zpPH(AhoEx~I00Q$9J5AZqgP_SOnI$`6%PX^4|{MYF=dN+fpbT6RWBE$OVqaNl`kCg
zN-68~k{D=$rgolD-Fov#$9^Oq(b{uow=g0SEA1I^yu}w=j^UbL=;W#iha~VBihF3g
z&(9U>j{RJZz>f)rax1*$s&K3D+&uylq#MGVKQC}AifzdWa@7*s8RCd!61BTsiEU`l
z?vGt~rLdwc;=IIiA;OzB*YUPgK=4wYnK9^DFaK^S>2r;b^8SE{!u7-(L7o-lByPa$
zq^r?-vCKp>Ckd!_S=YUTu&fAkP>+$~AX{mUWs=TrhyQNSv~;Mu%A9Etg$+q*>;v;G
zwY#pQHeho?Czn9xPg{`fhM4+zuPFA>3jdYx_YV)@kM3VE7k$NSpRelZO2<%qj$Ixs
z;0to{R3klr=gKHN+KFn(EW)+8cy`xS$KJCmhv3HQHkuk}xEkNGD7flswa^v|l}>@*
z+6Oxuk@!i*RoRJuy{e~Z`QEF2bXtw%;7LWZZIFHDh1usriK&Sy568}<_>^(H*1*^-
z_eh&B00x8F7imc8-r|HS2;R8(h)A*~+8I{->3p&{wXP+(`-rp8KvvJer=Hmt@O2ye
zZQozPF4b{Ka1#+=?3)+$LchjFb-SkpNfYi!QQjvmv3$Q7i=-arS-?|Uwk%Su784~F
zd7_|@xuBip(9zjWK614q!!hPf4Y2SO!f=38SKQd_%3(QS)U6<r>@>NKHiBM;QZAOk
zM?0}vvc)`}v;K99E*OSW+DtH)L-@SH1GiabWeH<=u#b@Y!BcvRaJ<&EJ>abvFKX3_
zXgK=G;@UZ68zX0?JBYpf!4<%VQVssP^uUJ-FLvp`XRZqRKV|o4oY6kKVeL9`c_kH^
z%A<F{|I6$<h)muSchUIL+41?Aa>8sl9+t6d*BzpS|L0hbq1%i#ACN3Z_w4oO{nfG#
zS8Xpp4LIJ$?<Au1(6e?D=G!szIOaoL@pd6CdTGO($~MY*^!%?@3Tnm(%kjD$Av&HJ
zJM?5K9huBe7bHtbn|0TFd6rhsb}CW_K8;tIj~^|flqJ(MKS=?;<gnPPGw`}IsuL|g
zJ!sI;ZO*=w0V=~5Ix=Y(dKAXn({k3$ZoND3W;8Bk7xnl7-XbxTel>~cJNSVle+PJ4
zUQc1lA~7G+sEE$#4H)wY?R8g_ATJUmnnL@gsFoE9u+LyhSpOaTPx|%paJQL-V{@iE
z5R1L=@KP&QK7`qejbiPR@NSBwb+-;9v9?cVi+aOq&gqh{F<Z%T7*MEbGY&WHvVHH9
z=yMfY9_q~vv3swukuoG$K7^zAeMLXSY{oO%LMK_H$F=aHZ`<YUYfX7*A|YemSJv(R
z=88Cl5fQ?pMuoAQ60xza#d)?rzKS;Bf8p$bO5~xb(4e5?#9CW5Ko-)Vp%j&JbaDI*
z)H*vLE%R_yK5#GxJF(gQ%GpY=aV4ShcpM-=3#<+mGR6!?xkGmV0|TCx+7|mV&)aPL
zsbF!JzYOf@W2YzkHH}5q+({(ca+RGb?yPV)SMudKQxgOVjQu*x8|vi}$*LG-SwJk5
zTyK7^z?iE)8xyeGrP9a$ZmwlbUU0FL{_rOrqv%;MA<E$4q0|LD8WFH}#M+NqDY=KG
z%8G7Aqxp1`5CIr|+mxzae#6Mm@u?O&Y^$<!ak)m&XqAn>%gUFUsVTBtW)_xN)Hi*V
zQ&=5cu@6Gv1pn~V>`HinG&(^XPz7T@Iag4z%Yle)!n`^lT`SrT2Es6Wy~ktAO`ysN
zPwccbP2cT?oM2#6631kGE@zUdCr6G<`bx5*KlK2+;@LJG7tbgAX>-73BC$4-TBCyT
z`ic{Lz->wJE$%pU6qGCk8-SF`*ymAy*jFdyEW6HN36{N5@bK+m3XTLhx690*l!Df6
zh*fIIZ;XaPMS3@9Za>G<-<0@-uMqHA{pL5wt($}1ueqaMc57uVX*2O)Xo~q2;ma<x
zmopV@t-$*eQ|Yq4cDuUkhypA|7LQ;}Kcl@=C57zwM5eS@hVLp<gHJd!&bDoqo*|VT
zjS55P)yphFMQG`-H63Kvxu>j6$V>b(+$_3T`KC$NE?{h!dg4B8vz5KtF<RA2jA?E0
z(G^Y9u>o)*x3$9c^*LVvDpM5SxH`G5M~p{@R1+H0a8ED5eQoKvw~MaY<OoLx(#wUy
zO$m9uT8lF`b@(Q@fyZ!6v;FOCJJeRSc&lpDvYWuVG)c)ljLI0QS>KjDReAc!3TB5>
zGj;F`G9PK37lZJ|?9HdPQdHPkI~2BSBIjBLnTo52VD{D$8cT3)ck^WJv$AH~JAMr=
zE_rZeJXg55gz3s$dd&{KX#ZE)Nu`>f>R^7NJJUauy{d-pf_v-*#7<5nSDl;;z9j7?
zcoL&(Y^Iy1*FG-nq-+6`UXRfPQ96;0zZf_yzSR{B&w)!x7)OxnrFPnN+3!akyRH8V
zi?AFOcFRCBPZ2(DN31_KKY$y2{c*}p%ol2<w(w<=92pc3209vvm7nh{0TB^FvWRC^
z$<U3xxx(nw!#90K(?d$5-53TI%6ok%r6fGX>|8-Q=pX2HKQ}+fH$7W2aD$awzbm=X
zQ4nso?GOg-DJq&ElW?K6wawZjg=8rkwUaRUMX-1*M`FKulGix}Y~eC1c~5HfY@SB%
zM$v1bM>@y10NOPH+x?WLLm9q)vQQx;pr!T5E+4SI)%YM9-#-<fM8i|(!c$PY0_|r4
zk9Edu&08W$6nH-?%C=7*D6#kG(?cDK#t+z<l#~d>YlFblGuo&LdA;kTI&msB#XQqL
zGpG;NUn&jtI?b4D^X5ilC!^j#i*d|FplkH73x-*{{GN;xBIuRwo@&HMW&zqu4>8hJ
zy(F_#0S+x%K8m#LaAt=e7|9g62V=*dXfmP&Vo0mmCRUSt{7A|EK{5e`D<lI~f8W@I
zxJBDxm~(_h?^RdG(#Tm5`*;;@si&cGMy2X}i4{);ZooWi;sSb<+w)3o(&WyJzJt;F
z)yO3it-cEfpck(6MX6evLc^xo^tq}HG~%RLW<P_`Yd@nbqwqOHg5+!Cc?^&K49h|#
zXpj%$Qd5bT%Xq`Zvcl&M7q(Ua#yIX8pH33m6O5MpaQXRN@(pN`cT2(tUuIIEgY=%F
z8zZS&g?q)2a15`f74*hT)%w7Cc{|4E`;w&!J`4}1LSFY!Wp0Q>fYaX14nd5@5FE`)
zQ!pd|Wz{bcZ&5Ty?J>%M3|z;t!!pNnC6>}46|-5#p1n2>-3En+wWVlqV`b5-nOKiL
zPydLI22TWdkET^L4gp>)V2h{kf<+Od@p>Vdlj1SdfDz+XLWEt6MeL&JU1W=1<BRxc
z2?$_+^XT%de+LK*k2lZnf-@RPgB5wig|B2({%gU=w3YUNw=V(8sf@XGthT(_UAOyo
zi`-Zf94+W{m?kJ~^~Griq(1sgp7({UiCTWt=lCtn;b*oSf7CWTwmEl4c8o=zZGB-0
zZomS%(c2*V3chR%7A|}+fUFVdEk5!p{H7l27~UqF0$5)^SyH@|P+LdGM7QeTk;~(r
z#9|p5tkXiW)StB8NH(WWU>Cv<=H}mZFSo-id2v^O6HMW*>HD2a-Q$nrHum#sfk5)~
zlfn=!3yWljkK%q$RNY~wS5ii)wOPfy;ZZ6L;fc=&4z)J%<^`Jf*``*qSRYE^lMz9K
z$rAE>_EOTrtkRK}gV3|`kQV#(?xD_hUlcI9^<sxaG8f+&E_hP|CJ2S;mPksejtwDb
z8Vkvb&MO~!l`%|6&BOBL72vD15tPZL2%D0LBGIkp{r==}S{o|9T#GgTTiYX#nbP6U
zb^GBNOm9HY8VWcf30rf|bKwG5mT<C0$h)?@$!IRI_oA4ki5{wRdgHH&y|&uachWjt
zfz+fIjrOEV-Cs+IQh@1}BBJ%Rpdxr21jjC?b~vnV(>w!?E9Zl0fSTZoTCfACc}As1
zibvTxCYu2ik5pKmPf?r=m5kocx2c`q`ZgV~;tuZh;D^+=7<qQr->yD9+1EA^Zyu&I
z-X&NpeD#h^nwi~$u!loOLPEUje4=GR%>CMVtLzXc15Wgrb<6Q@e(v$%Btz-FfC<lD
zeH+1}eP95!)qEdWhLF*Hq?}g$jMmdR9CF_CKzB*)<-&=3x~IJKFAwV&O(u-+RxC}%
ztS`;BBUv!?(3OXqgmfO{McCNLZWXT!0+T~duZs^Qra*vy^Q<rMk?P~C16fKfo2BJ8
z>x#$mRi4>rYFd&_^L{?2@63;$oF_Vl&M%4->**uoF}fd=VM39;rm6OzZ27=7?Fg%!
za<|<TLjvs+c2AWQq&3_v5$fH}**o9*B*;Rr!1X~v4?ZyWIt<B~&&+eSO0jktEQL(o
zmKx-?dRuM?h_;|aX?AJE@0Oq@amu)5<@jf}E9qZ2(!9EH^+%73w)Ms>hb3voBAf2)
z$$R1^vdKB~Tz_}E(k!=v@RpoF3oWPZbi5x?J73do(2se^@Vb<xN!iR`oC)tu*J63T
zx?1mjJ+}2l0I{}FN+cz68E<t1YTikkP*^)!@&4q{!3NoB5C*sll*?;;F3O!Jj1QrN
zZ5p)+pAE}_r%d_T<veMkqnY;mJ5S3{cZP(RSgIRATV}om6jhvH&44=dUT)9T<V2F~
zei!4oEAbr%T0G0Z*i!FqDHKm6w@jTQh$P+1Wi4<=1ZU(m8ubU!f6I>OcJj;VnMwmL
zEbyNn%0=z0&r+qqRsu&;&+^#`fIMQiQPDdnmK4ujGuuffjQGWX%!EW*1--wUh{z%4
z2?s><f)F@AVy=K$DzR|ZeZHqt2D^qDNEotz)Zy1`Z0-{-{3&xTo9$eW0O$H%#GBV$
zd3kIL;v~=eto#NiJYwM^>obFG#wS4_do3tKgoctc`)De$8ig5C=&I^m1Upfq&2E_4
z92WBx%y#Pl9oi{Vl)gHJ;|*Nc$75FxuiJ3cklnU82vq_6p@PF@M@TvcLDW!Oq4JtF
zwEl(gojZfiPI!P(!GSd+sWE)GPe6;NxFjmn5@2Quq4B-8^TV{7MX$u#q1a@`=hHk-
zYu`7W*Oy8)T5@#RPwm7~_yQ^Fh>^Fgh$8sycY6A2bx$6^=I-EMP)h7z50CZi%^daq
zeOMc6?3EHHxc8;9i)n7ukz2=~Uj<<WK`Q_HUqcO`aYyMm?-mXBv@T^iL`?5Bz^8l2
zD6qfH!&sAQh!ojm?xrsCOXQoEU0K;m)Ch%9z8r)Pqdb2vs&k>q@l=SpXM!GJl1*~S
zKW#$swZF#na~pxZ-4k(N+o?}T<EOgl;LxlOW86ge!bkmT&w7%MLuiolL)b(ik&r5#
zBn)ypN+M#i3Cq)Hdbn!Ev%Y5@nTN%8(u0Qhg9fM35{bHl6%mTN8ZJeL*?}Qymj)p$
zJ2?Gqz_KMUqx7qVun*CW%t~gn`+~Pkr`KZ1gK;jcT(w%Mv)txcRlPNQF*ld!R$_?d
z#b>m+VtN=g$ldshf<(SjB$~Z}XF-jz@r}V1THv?rSWws<*H^30DJVFnh66;R)&#fk
zJDnPkZvh;K;Sr5H>!`}_y}N9J2Bj27^wvorS<@a035QI1>~Y@g!zJ6hZC>TK*^Q<O
z<t}O?C4%+Yg*a<d9wMActR$8-3S>uEe6giv<yKOIDodp_0%IxX4YhW99glyLPn1|R
zwNjg`oqU$)w**;MkG*zFCQ`r^oX?6QZnN)oByE6ll-xBM?0d&#ewIdkUZ+D^n^Ms7
zSfGE2GCBCPZSwJ@0yRo`f1w()bvbfli0uG5%6<IZPrN$wy@W8GOhcY^QFsTyKdtq#
z(W+m3t}9uZu~X-&W8x80sDjF_1j8zx?_2=L<;B37^welRr@HGO=~y({7hXKqohm(E
zWNxSc-B}Id!=H~X$RB|5L=tPW&JSe0za$?fKrEkYL&3reI~tY|eZGX>Y|R%8SR}>u
zHU-V6J{m<?qLKOA06Y6&?neWLf>&rzVf+x@wfH1)bm7y5f||ZkBC?p9h<kd8CqbY{
zjj%+gz6&Lno#1(dyBuJ6%xA{pPH=ff&aO1!T^V#Lu1mo^50-ZbzwgPla2AwUp+Obn
zB_|x(!CL5q-z}zP7Or!bPAb_e=KuLih3%Ka9Us5ej{jFhd{sO`P9WE6FkQ_Z9!ohD
z>SogZ67%5{zBEPH@#5Ae?V{GVpOqD3gFcjaoGT>XTFmfy9x(jq9-u+jZ#b%PQI!19
zZlU^|?yS_C?5pJ3%R7lvk#R+4jS%Cb$Z-sqZ?kzU+r0m>^Yf~6HjxhPa?y0=^qvYv
zb40@l+t9@atjM)b*_lE3d=2BWW$GcCU`R}>mZ+Eb=6bG4Jv4*B%92h9bVK4O*NgEg
zVju>6&X4wn8H-8*4Rz6t_$1$c>o!uh@j%wh<Ev;{pBJ*APt4*%8MbXUl$hr{P^F#y
zPzp>?-)c0W>DzE1r1YsNCVn!u<kxWkvKUe5JC8jIlM978TlY0?Ls4>O81n8Tr;i@b
zF0m!8v8V*m*-G0r-q<BUA&r@fWyn5X7Gr5JkqS-N0CNTz7RQRNJvq6!$Mq@Eu3vTT
zzpA!t@(5;3>zD?Nz)PfHYG6_8I(p#adH0~?*HVKhteA+<FSqxgE9sQ2x)OL3@6)Xx
z4JDd<v>UmcK<o(q(B+ppyXZ^Xhqfn&x=s|9$EHZ5EL0?7Z?Am<MsIJ<yI>54WT=rB
zsS=wS<xSLo=SSVv1o3zr$&8y=KUUQJQbR1z#cHY`7u(UQmJ@@xcKQ;k+>doncP^CQ
zAgxb4yTdP~9@gh+Q^K5rOTY51%uodbNahXfQ^+WU+o|R)L>vXGE0(9moGaD=xmHEK
z>o}4<5o%Y=&P=!blssioD<i*Nq~09X%{-qqIX#5)zPfP>QT;yNc1g8Y4oNLBnpj@4
zLIP*#&EC7FrrV2@jG?1b$r2OX;bLtXZnyiZ)h8Xthv-RkIfbzW6SZCCD4djr9arfI
zu3X^-;51F0?Q%yPdXUj;J^vv_CY<`5kYU*l@~E|4DXPRukxC4$Vv^h+sJI2fIL%U5
z!N1n%^Rr_V#3yN}crb8^b5af|WTQnf=bts6TX^DVC4`8s_KEcpUz&Y*Gx6!Uz}iV^
z<#!gUK>^D1dB?6GdJ<@V4mvGeSxq&~bcC{Ax53&kg21<1GJY}%?geYd%Ex6Ff6dpi
zi$A{8Os*mi{87RBr`8?Nt^mRid;0>$erpqOuGw0CpQJ5akrvGlj;{U1k@ng07u_PB
zJr%a@f%T3yZmI)Vo3o=xUs3$6{GjO))6Wt*G!?B8RwEe`xmW)T2r`*`d6jTamdAXO
z{F}mh*z%I(JFnaNig*EI^DNm*bA?0i?)UAihmYtB?O5-Cg0`W}dkQhx=bJOTKN`k-
zK4BqgqlT(6w~Jyz14jchPwV|odEHiJenmC^%X|zn@@6@;g=^L}iik{|Y6>a6s75^h
z&@;WK1nLfLQw@_$&6jVgd`!m+5el~nDu``vR3yY@xOct?xe#RuiF0)ADE*)nc8-b(
zRIB)M(i4L}vOcW2%zZ>H)bUoKxx=GvAaz%6tBY-OmI=Zv%?<9|y*O$@zbS<AxLTNV
zI4KCI*;{sTi{LAl=&y&FH3;PP`tb*@F2bmK0di>jaGwE()utw=V0QKb8aq`nz2J>c
z-)C?Um!gWCD}Zxld^AL}bNVo$^hZ3~%IyToQgG4spjJZTT4xKj`SZwYW;bB5H$&Kc
zFR_*Zwci)*^Hv&mUH~gsepX85_}7rv_Z*!Qn>i}OJ_>jupe5mfLXbbTvf#d(Ek8b}
zQC=u)ET>g*Et^-J(aazId7p@PSu~h`@EmGV4);@3h!R0<ExZUy$$yZV|H0A0eqSYa
z+ssF+^@iX7+Db-HoZT<}EOeS(E5HBe{abS^JdPv5?BkxnLQwtDBF|7SdojXJ@Pkb4
zBYnPjg;o(%OT{uP__Sisr4tX+W7fGpk|}-%Y`uZy-tuKrY{nGtK<dc@_iSIBJ(+$#
zU2RWS^>F0#=mQ~L>AxO4Q{>iY?R1dHw>{4Ojg<Fo<p|;JiKn*v<htbIN{x2%W=Tdf
z>^3*<!|nU^92YVC{)r>ce&6yIU)dS=K(gI#L32W#Ua`POpRP=8^==s(L{Gmfr*9Y5
z1}?+(J>B0Js@P4E+80+yU%m%AhS>!-b}a^{uU9n)`jIsx<WQCiw5dI)6INiri(hvI
zBX{a%5JG>XCV~KjCv=KMhZq66`Fdv*t6H?*!<6w^x|4?s3|&cqv!)?3IYARix^z}Q
zT`R9*5sxVAP2Ro801Vm?C9RbdP55ux0~6ccIIr}l@Pd}e-aWgn&wUlV@0zTX4Sriv
zP~Z)OU|gVNkrFx;i_$!cnNAF?l!!|i=$%F{6VW|jpbK{lqrd;8B4TpXtNDm?gK~Z3
z<VQTHW_#w+MXQ+_cg$J1JuR1b8BCmQ1hA#G9K_~RtM{Ee@U_@n%?Rv#xSpleS7GyT
z0){wm7It;cPYIB%_Eyyt_^_Wv(xcavn^es$A%|u(#mq5gCb4}bo<9D)y-8<_T>MY?
zx82``JQIUfNSwUMkC^8-4<yO*nQPJ?gK0>H@J6l}$=$R$wf$Nv#ZKX%%WPuXkn>9M
zJ};Y!eot-ZYAU!o;8TkRB4D5ZF4$~9l;HQG&!a~2a(#5@6rQT^0C>}+cZQZ1lUOt7
zqcz+vsxv;flU{!`?nJuYA}><R7veJc6qm0Rw@2uLAh3xd%f4I!O}>q|e`T77TIOss
zX@XT?8Fb+w(&&m;&}%<eIB0(3Rb?Z>x>vC)fUpLv+S)Mth*i7v9&oIhqrLNFSE=el
z(1Pq5t*#;Ub%oQwl3x9}b=7^^PuWyoKQ|m)b>Hs0Y?g@YuT}`hS4-}<6#b?dc2@@(
zI=-5#;SUjJr=HmD17@`=T;$*H+vdb>LAjY9`6Dg(^<poGVn{ueSs{zu2oyoo`nRGL
z>ay?97X+|rR$Zukb-ATFK*HgN1sA^halvdBW5LPazYFgQiim(07kMW4m!Sac{MY6*
zy_Ngcf^XR<94o)t8$^ST1hwF@zdyms2C(@w)Q86(eEsPukco_wnt$nSIR!p)YJcOZ
z`>tzqwvoLroNeT2BS#xKpt=eitvR5|K7l!BBU>u0IVR4Z-Jf8NiNltP|758SSSJ0O
zr8<BM_#4}}suKQhwsBR&?BAJjf&Tw$jSG$ao#9BI`d7nIu|xE4OjQc$UrklZO#0s#
z$9;|De>09NOx^#+94|ph|C>4Pm)HL{4uFRu`l}E74-Np$w(@UW4$elhlT_$+oQ-53
zh5x}@<!B^Zul|#R%+biNC&hp8$vMyp^y)u39-K3h9ijS90VK{D`A>E^$JqJ5Fm^oZ
zq$Kvo$jLoGR(`R#-2UofkXzg8P~`QhEjvt2D`J*=hAQE+LqW_1Twp2WYh3brl_m&Y
zPB-<OURCwK+thlR3t|MLc3;R2TI_A;k&NDyoxPenXWQ;vNHCsH^Q;Q;i(*3$2;~<F
zVS<p2@Ncs!Gud?c0%}IOs{^qilC(wie52P`B|ToY1(KubxU>-R(MV`@WLf(uJdoVt
z)lV{cz#pytk~#Ym^0%Ap)!Ve~A;?C!KDW`3`TEoMcya9(XoZh6qfMS5L-n6<Zg?b}
zxWgQJ<S*Z9ja}D?hkN_CLM$&>B8I#h7h8_`V#nYsgFm*J`h&%gb$@BFGGOR?=z;6>
zKn`ZXokX-^dHFBpFuh7?O^5i-o49`ez{*mt3Ffo(wP1WgG9CSijh4o&ff>}AZ?lQ^
zvAL$4x}sNC-{r0ArIsXD%)Y|Px0)4aGn+*fZ^>tita>r9%vQmK#d+xl*K$}KpF1Nl
z|4L2RQug%Lm3Oly0V08{ibqF(UUi$;ufc?cFPBM_MT)FMcYcaXp9k~!c&5Or4{dvR
zVc?|(Mb5o+^wrd-<Y<{?+A!oX|C{u$!cbKUR)e39@L`o`3{?H3wV>FE%5W=r=AuP<
z;5F&)rbW9U^F2HDeN7-22ZENbxt7A}qw`586=mF6vxg9)W`u90@Wx3Xb<*%8ou6I0
zy|S_3qU!jLlIcare(X|SjJ$8f5Occ0yCVm33tzZOh}N$2-uzuY<RliT{WCAUm>&!u
zaaUbgdDh@xXv4^Lt2f`{`Z^S1ko)pjr<<IkCbf2|zq69ECWA5dZTG&fOciSb>+?sn
zLML)M-ivZ2HQqPDr-K#G_(ox1`i3ndekIYX2@1J%tvi?KD8drhD9W+GhLetHixzdC
zk8iGIa)1Bk@A5k^Dq4)vFLIT2?#w)3f|<OLPkAdTeY7(9TUsFyBqHYY=D$z){kA-6
zYl2(*XJ)6!=*2#-&={BQ^D1s?tTnF~8Gn5N%sN%Pr=x%4MH6}COnpwkMgQ44q47mm
zt8eKCejqVt4!h{CaB6)QUTAP7wr8fR(7BPTpSCcSFgxZg`s$l5f8X4F+vew55=j=w
z<#exB3LX(RvSAvwGO&eK0CFRU_`B4<<T%he14CKnjVL#U@ue-5OWo?^`P1%@@WhnW
zPyJNTbm5&FGGMm7(WV%Mp6{E&c(-Pu{8loM8}_jW(6|glf1}9z_B@PrfjaK`i3*^P
z#j7R#$<&k4Kgkk%wT&NEwX3=*qFj25;4(JF0xHn@6@}yinJd^DKh|mx+17=w>bG()
zn^`)P<ZG+G42oZ64d~${c2e{E5`c@`n5woMrAnr()d9AUkPKUoO?;Y)E@<g-3|0Il
zfRDf)IwWBVR;`Bit13tLg#ZRk2x|(kwV=;&`atS~PM5wfoe3{r$*x}P<SlYb3vJGB
zW$DmzyZWi0JF+ib=wG;F^1#F${w7T~|JzW@-GDJye(lB6e|bccui_|+S!mCnbylS;
zrD;0j%ce50ekasPJ6rclgR&R@o^!f!l0sHPIc9~UAC6%DtcYOoWG`CV*gWgQ&d1bX
zd<j9MjzG!*4N6%Ca}kL*bL%Y}`yi>fWK=wD0IAH>n0l)Vnf~dUpj)2?&AQ8=<^E4=
zraiEGQy*hV;z35SyW%o@x|u}52`#Yx{0X+4#|Ze14na08M%_1%A-nV#MMD-2#4Np(
z{`PiN%b<0JVYSk*_TyeL```)RzH@F&YHy<|h7KXkSr8QI<NX#a`WvoB$%y4@JeZ8|
z=cmbS`^i|5b#q!;9O0)9o9LNp^3g?E1@w55K3VxWbicN#(Swvte}ksAK;hTk();n}
z{^dd&19GgGJl<7*@Go-t=V#dlL{ad18fdWl-`(*UECES$>>s{y^?z|5|1W~QYMD8!
z|BrIV5gv~4{J=X7^88_`uGn&a77h;XuL9Q9htP&i9O2;z&kvd4oVuJ-_XmP<fRh89
zfA~Hei}TM$#SbO<cEJHo4siaE2@Y^_fRh89Kit!Qyx;&Q2RJ#v`Hy({Lw`7~`u`(W
z{lw;~?lo%!Wl#Tl+~|+P<nINA1EL%d<$&nl>&B1R*0&1|i2gqUQ4Vmf0!EJPb7cPq
z9&(I^Rl4!R%Kmo2iFb11oj+uP1DqV-<N)VC;^hzPn**F2;N$@3Kj9_ERsR7N|9HVU
qb^l3<I9W!H@ca?qSi5eSYuAO8h3n@g-PeGBr%xLEntj6h#{U3_nk7d7

literal 0
HcmV?d00001

diff --git a/oxAuth/Server/integrations/basic.reset_to_step/BasicResetToStepExternalAuthenticator.py b/oxAuth/Server/integrations/basic.reset_to_step/BasicResetToStepExternalAuthenticator.py
new file mode 100644
index 00000000..b152c29b
--- /dev/null
+++ b/oxAuth/Server/integrations/basic.reset_to_step/BasicResetToStepExternalAuthenticator.py
@@ -0,0 +1,100 @@
+# oxAuth is available under the MIT License (2008). See http://opensource.org/licenses/MIT for full text.
+# Copyright (c) 2016, Gluu
+#
+# Author: Yuriy Movchan
+#
+
+from org.gluu.service.cdi.util import CdiUtil
+from org.gluu.oxauth.security import Identity
+from org.gluu.model.custom.script.type.auth import PersonAuthenticationType
+from org.gluu.oxauth.service import UserService, AuthenticationService
+from org.gluu.util import StringHelper
+
+
+class PersonAuthentication(PersonAuthenticationType):
+    def __init__(self, currentTimeMillis):
+        self.currentTimeMillis = currentTimeMillis
+
+    def init(self, customScript, configurationAttributes):
+        print "Basic (demo reset step). Initialization"
+        print "Basic (demo reset step). Initialized successfully"
+        return True   
+
+    def destroy(self, configurationAttributes):
+        print "Basic (demo reset step). Destroy"
+        print "Basic (demo reset step). Destroyed successfully"
+        return True
+
+    def getApiVersion(self):
+        return 11
+
+    def getAuthenticationMethodClaims(self, requestParameters):
+        return None
+        
+    def isValidAuthenticationMethod(self, usageType, configurationAttributes):
+        return True
+
+    def getAlternativeAuthenticationMethod(self, usageType, configurationAttributes):
+        return None
+
+    def authenticate(self, configurationAttributes, requestParameters, step):
+        authenticationService = CdiUtil.bean(AuthenticationService)
+
+        if 1 <= step <= 3:
+            print "Basic (demo reset step). Authenticate for step '%s'" % step
+
+            identity = CdiUtil.bean(Identity)
+            identity.setWorkingParameter("pass_authentication", False)
+
+            credentials = identity.getCredentials()
+            user_name = credentials.getUsername()
+            user_password = credentials.getPassword()
+
+            logged_in = False
+            if (StringHelper.isNotEmptyString(user_name) and StringHelper.isNotEmptyString(user_password)):
+                userService = CdiUtil.bean(UserService)
+                logged_in = authenticationService.authenticate(user_name, user_password)
+
+            if (not logged_in):
+                return False
+
+            identity.setWorkingParameter("pass_authentication", True)
+            return True
+        else:
+            return False
+
+    def getNextStep(self, configurationAttributes, requestParameters, step):
+        print "Basic (demo reset step). Get next step for step '%s'" % step
+        identity = CdiUtil.bean(Identity)
+
+        # If user not pass current step authenticaton redirect to current step
+        pass_authentication = identity.getWorkingParameter("pass_authentication")
+        if not pass_authentication:
+            resultStep = step
+            print "Basic (demo reset step). Get next step. Changing step to '%s'" % resultStep
+            return resultStep
+
+        return -1
+
+    def prepareForStep(self, configurationAttributes, requestParameters, step):
+        print "Basic (demo reset step). Prepare for step '%s'" % step
+        if 1 <= step <= 3:
+            return True
+        else:
+            return False
+
+    def getExtraParametersForStep(self, configurationAttributes, step):
+        return None
+
+    def getCountAuthenticationSteps(self, configurationAttributes):
+        return 3
+
+    def getPageForStep(self, configurationAttributes, step):
+        return ""
+
+    def getLogoutExternalUrl(self, configurationAttributes, requestParameters):
+        print "Get external logout URL call"
+        return None
+
+    def logout(self, configurationAttributes, requestParameters):
+        return True
diff --git a/oxAuth/Server/integrations/basic.reset_to_step/README.txt b/oxAuth/Server/integrations/basic.reset_to_step/README.txt
new file mode 100644
index 00000000..ef68420f
--- /dev/null
+++ b/oxAuth/Server/integrations/basic.reset_to_step/README.txt
@@ -0,0 +1,5 @@
+This is person authentication module for oxAuth which do basic authentication.
+This is 3 steps authentication which supports rediect to previous authentication step.
+For demo purposes it asks user to pass basic authentication 3 times. After unsuccessful login attempt it forward user to previous step.
+
+This module hasn't properties.
diff --git a/oxAuth/Server/integrations/basic/BasicExternalAuthenticator.py b/oxAuth/Server/integrations/basic/BasicExternalAuthenticator.py
new file mode 100644
index 00000000..e7e16554
--- /dev/null
+++ b/oxAuth/Server/integrations/basic/BasicExternalAuthenticator.py
@@ -0,0 +1,88 @@
+# oxAuth is available under the MIT License (2008). See http://opensource.org/licenses/MIT for full text.
+# Copyright (c) 2016, Gluu
+#
+# Author: Yuriy Movchan
+#
+
+from org.gluu.service.cdi.util import CdiUtil
+from org.gluu.oxauth.security import Identity
+from org.gluu.model.custom.script.type.auth import PersonAuthenticationType
+from org.gluu.oxauth.service import AuthenticationService
+from org.gluu.util import StringHelper
+
+import java
+
+class PersonAuthentication(PersonAuthenticationType):
+    def __init__(self, currentTimeMillis):
+        self.currentTimeMillis = currentTimeMillis
+
+    def init(self, customScript,  configurationAttributes):
+        print "Basic. Initialization"
+        print "Basic. Initialized successfully"
+        return True   
+
+    def destroy(self, configurationAttributes):
+        print "Basic. Destroy"
+        print "Basic. Destroyed successfully"
+        return True
+        
+    def getAuthenticationMethodClaims(self, requestParameters):
+        return None
+        
+    def getApiVersion(self):
+        return 11
+
+    def isValidAuthenticationMethod(self, usageType, configurationAttributes):
+        return True
+
+    def getAlternativeAuthenticationMethod(self, usageType, configurationAttributes):
+        return None
+
+    def authenticate(self, configurationAttributes, requestParameters, step):
+        authenticationService = CdiUtil.bean(AuthenticationService)
+
+        if (step == 1):
+            print "Basic. Authenticate for step 1"
+
+            identity = CdiUtil.bean(Identity)
+            credentials = identity.getCredentials()
+
+            user_name = credentials.getUsername()
+            user_password = credentials.getPassword()
+
+            logged_in = False
+            if (StringHelper.isNotEmptyString(user_name) and StringHelper.isNotEmptyString(user_password)):
+                logged_in = authenticationService.authenticate(user_name, user_password)
+
+            if (not logged_in):
+                return False
+
+            return True
+        else:
+            return False
+
+    def prepareForStep(self, configurationAttributes, requestParameters, step):
+        if (step == 1):
+            print "Basic. Prepare for Step 1"
+            return True
+        else:
+            return False
+
+    def getExtraParametersForStep(self, configurationAttributes, step):
+        return None
+
+    def getCountAuthenticationSteps(self, configurationAttributes):
+        return 1
+
+    def getPageForStep(self, configurationAttributes, step):
+        return ""
+
+    def getNextStep(self, configurationAttributes, requestParameters, step):
+        return -1
+
+    def getLogoutExternalUrl(self, configurationAttributes, requestParameters):
+        print "Get external logout URL call"
+        return None
+
+    def logout(self, configurationAttributes, requestParameters):
+        return True
diff --git a/oxAuth/Server/integrations/basic/INSTALLATION.txt b/oxAuth/Server/integrations/basic/INSTALLATION.txt
new file mode 100644
index 00000000..50962805
--- /dev/null
+++ b/oxAuth/Server/integrations/basic/INSTALLATION.txt
@@ -0,0 +1,27 @@
+This list of steps needed to do to enable Basic person authentication module.
+
+1. Confire new custom module in oxTrust:
+    - Log into oxTrust with administrative permissions.
+    - Open "Configuration→Manage Custom Scripts" page.
+    - Select "Person Authentication" tab.
+    - Click on "Add custom script configuration" link.
+    - Enter name = basic
+    - Enter level = 0-100 (priority of this method).
+    - Select usage type "Interactive".
+    - Add custom required and optional properties which specified in README.txt.
+    - Copy/paste script from BasicExternalAuthenticator.py.
+    - Activate it via "Enabled" checkbox.
+    - Click "Update" button at the bottom of this page.
+
+2. Configure oxAuth to use Basic authentication by default:
+    - Log into oxTrust with administrative permissions.
+    - Open "Configuration→Manage Authentication" page.
+    - Scroll to "Default Authentication Method" panel. Select "basic" authentication mode.
+    - Click "Update" button at the bottom of this page.
+
+3. Try to log in using Basic authentication method:
+    - Wait 30 seconds and try to log in again. During this time oxAuth reload list of available person authentication modules.
+    - Open second browser or second browsing session and try to log in again. It's better to try to do that from another browser session because we can return back to previous authentication method if something will go wrong.
+
+There are log messages in this custom authentication script. In order to debug this module we can use command like this:
+tail -f /opt/tomcat/logs/wrapper.log | grep "Basic"
diff --git a/oxAuth/Server/integrations/basic/README.txt b/oxAuth/Server/integrations/basic/README.txt
new file mode 100644
index 00000000..8368ad13
--- /dev/null
+++ b/oxAuth/Server/integrations/basic/README.txt
@@ -0,0 +1,3 @@
+This is person authentication module for oxAuth which do basic authentication.
+
+This module hasn't properties.
\ No newline at end of file
diff --git a/oxAuth/Server/integrations/basicMultiAuth_Duo/Readme.md b/oxAuth/Server/integrations/basicMultiAuth_Duo/Readme.md
new file mode 100644
index 00000000..9406d6c1
--- /dev/null
+++ b/oxAuth/Server/integrations/basicMultiAuth_Duo/Readme.md
@@ -0,0 +1,38 @@
+# This script allow BasicMultiAuth and Duo scripts to run together in Gluu v4. 
+
+## Configuration: 
+
+ - Download BasicMultiAuth and Duo script and put them inside /opt/gluu/python/libs/.
+    - File name of downloaded basic_multi_auth script is: `BasicMultiAuthConfExternalAuthenticator.py`
+    - File name of downloaded duo script is: `DuoExternalAuthenticator.py`
+ - Make sure the ownership and permission for these two files are:
+   ```
+   [root@xxxx libs]# ll
+   total 36
+   -rw-r--r--. 1 root root 14033 May  6 12:25 BasicMultiAuthConfExternalAuthenticator.py
+   -rw-r--r--. 1 root root  9408 May  6 12:23 DuoExternalAuthenticator.py
+   -rw-r--r--. 1 root gluu  3018 Apr  4 02:24 duo_web.py
+   -rw-r--r--. 1 root gluu    61 Apr  4 02:21 python.txt
+
+   ```
+ - Restart oxauth one time.
+ - Both scripts should be enabled from oxTrust
+ - Add third script which is a new one calling both BasicMultiAuth and Duo scripts
+ - Enable this new script
+ - Change 'Manage Authentication' to new 'BasicMultiAuthDuo' acr.
+ - 'BasicMultiAuthDuo' properties:
+    - Name: BasicMultiAuthDuo
+    - Select SAML ACRs: default, none to select
+    - Description: Combination of BasicMultiAuth and Duo
+    - Programming Language: Python
+    - Level: 100
+    - Location Type: Database
+    - Interactive: Web
+    - Custom property ( key/value ): 
+      - auth_configuration_file: /etc/certs/multi_auth_conf.json
+      - duo_creds_file: /etc/certs/duo_creds.json
+      - duo_host: Provided by Duo
+      - audit_attribute: whichever attribute you want to audit
+      - duo_group: if there is any special DN or group which should call for duo
+  - Add script
+
diff --git a/oxAuth/Server/integrations/basicMultiAuth_Duo/basicmultiauthduo.py b/oxAuth/Server/integrations/basicMultiAuth_Duo/basicmultiauthduo.py
new file mode 100644
index 00000000..8482bd11
--- /dev/null
+++ b/oxAuth/Server/integrations/basicMultiAuth_Duo/basicmultiauthduo.py
@@ -0,0 +1,185 @@
+# oxAuth is available under the MIT License (2008). See http://opensource.org/licenses/MIT for full text.
+# Copyright (c) 2018, Gluu
+#
+# Author: Yuriy Movchan
+#
+
+from org.gluu.service.cdi.util import CdiUtil
+from org.gluu.oxauth.security import Identity
+from org.gluu.model.custom.script.type.auth import PersonAuthenticationType
+from org.gluu.oxauth.service import UserService, AuthenticationService, AppInitializer
+from org.gluu.util import ArrayHelper, StringHelper
+from java.util import ArrayList, Arrays, Properties
+from org.gluu.util import StringHelper
+
+
+import java
+import json
+
+from BasicMultiAuthConfExternalAuthenticator import PersonAuthentication as BasicMultiAuthConfExternalAuthenticator
+from DuoExternalAuthenticator import PersonAuthentication as DuoExternalAuthenticator
+
+class PersonAuthentication(PersonAuthenticationType):
+    def __init__(self, currentTimeMillis):
+        self.currentTimeMillis = currentTimeMillis
+
+        self.basicmultiauthconfExternalAuthenticator = BasicMultiAuthConfExternalAuthenticator(currentTimeMillis)
+        self.duoExternalAuthenticator = DuoExternalAuthenticator(currentTimeMillis)
+
+    def init(self, customScript, configurationAttributes):
+        print "BasicMultiAuth + Duo. Initialization"
+        
+        basicmultiauth_result = self.basicmultiauthconfExternalAuthenticator.init(None, configurationAttributes)
+        duo_result = self.duoExternalAuthenticator.init(None, configurationAttributes)
+
+        print "BasicMultiAuth + Duo. Initialized successfully"
+
+        return basicmultiauth_result and duo_result
+
+    def destroy(self, configurationAttributes):
+        print "BasicMultiAuth + Duo. Destroy"
+
+        basicmultiauth_result = self.basicmultiauthconfExternalAuthenticator.destroy(configurationAttributes)
+        duo_result = self.duoExternalAuthenticator.destroy(configurationAttributes)
+
+        print "BasicMultiAuth + Duo. Destroyed successfully"
+
+        return basicmultiauth_result and duo_result
+
+    def getApiVersion(self):
+        return 11
+
+    def getAuthenticationMethodClaims(self, requestParameters):
+        return None
+
+    def isValidAuthenticationMethod(self, usageType, configurationAttributes):
+        basicmultiauth_result = self.basicmultiauthconfExternalAuthenticator.isValidAuthenticationMethod(usageType, configurationAttributes)
+        duo_result = self.duoExternalAuthenticator.isValidAuthenticationMethod(usageType, configurationAttributes)
+
+        return basicmultiauth_result and duo_result
+
+    def getAlternativeAuthenticationMethod(self, usageType, configurationAttributes):
+        basicmultiauth_result = self.basicmultiauthconfExternalAuthenticator.getAlternativeAuthenticationMethod(usageType, configurationAttributes)
+        if basicmultiauth_result != None:
+            return basicmultiauth_result
+
+        duo_result = self.duoExternalAuthenticator.getAlternativeAuthenticationMethod(usageType, configurationAttributes)
+        if duo_result != None:
+            return duo_result
+
+        return None
+
+    def authenticate(self, configurationAttributes, requestParameters, step):
+        result = False
+
+        start_duo = False
+        if step == 1:
+            # Execute Basic Multi Auth for step #1
+            result = self.basicmultiauthconfExternalAuthenticator.authenticate(configurationAttributes, requestParameters, step)
+            if result:
+                # Instruct oxAuth to store user in session in varible auth_user
+                identity = CdiUtil.bean(Identity)
+                authenticationService = CdiUtil.bean(AuthenticationService)
+                authenticationService.authenticate(identity.getUser().getUserId())
+
+                # Execute Basic Multi Auth for step #1
+                result = result and self.duoExternalAuthenticator.authenticate(configurationAttributes, requestParameters, step)
+        elif step == 2:
+            # Execute DUO for step #1 if needed
+            duo_count_steps = self.duoExternalAuthenticator.getCountAuthenticationSteps(configurationAttributes)
+            if duo_count_steps == 2:
+                result = self.duoExternalAuthenticator.authenticate(configurationAttributes, requestParameters, step)
+        elif step == 3:
+            # Execute DUO for step #2 if needed
+            duo_count_steps = self.duoExternalAuthenticator.getCountAuthenticationSteps(configurationAttributes)
+            if duo_count_steps == 2:
+                result = self.duoExternalAuthenticator.authenticate(configurationAttributes, requestParameters, 2)
+
+        return result
+
+    def prepareForStep(self, configurationAttributes, requestParameters, step):
+        result = False
+
+        # Execute Basic Multi Auth for step #1
+        if step == 1:
+            # Execute Basic Multi Auth for step #1
+            print "Executing Basic Multi Auth for step #1....."
+            result = self.basicmultiauthconfExternalAuthenticator.prepareForStep(configurationAttributes, requestParameters, step)
+            if result:
+                result = self.duoExternalAuthenticator.prepareForStep(configurationAttributes, requestParameters, step)
+        elif step == 2:
+            # Execute DUO for step #2 if needed
+            print "Execute DUO for step #2 if needed elif thingy...."
+            duo_count_steps = self.duoExternalAuthenticator.getCountAuthenticationSteps(configurationAttributes)
+            if duo_count_steps == 2:
+                print "Started executing Duo for step #2..."
+                result = self.duoExternalAuthenticator.prepareForStep(configurationAttributes, requestParameters, step)
+                print "Completed executing Duo for step #2..."
+        elif step == 3:
+            # Execute DUO for step #3 if needed
+            print "Execute DUO for step #3 if needed elif thingy...."
+            duo_count_steps = self.duoExternalAuthenticator.getCountAuthenticationSteps(configurationAttributes)
+            if duo_count_steps == 2:
+                print "Started executing Duo for step #3..."
+                result = self.duoExternalAuthenticator.prepareForStep(configurationAttributes, requestParameters, 2)
+                print "Execute DUO for step #2 if needed if thingy thingy completed"
+
+        return result
+
+    def getExtraParametersForStep(self, configurationAttributes, step):
+        basicmultiauth_result = self.basicmultiauthconfExternalAuthenticator.getExtraParametersForStep(configurationAttributes, step)
+        duo_result = self.duoExternalAuthenticator.getExtraParametersForStep(configurationAttributes, step)
+        
+        if basicmultiauth_result == None:
+            return duo_result
+
+        if duo_result == None:
+            return basicmultiauth_result
+        
+        result_list = ArrayList()
+        result_list.addAll(basicmultiauth_result)
+        result_list.addAll(duo_result)
+
+        return result_list
+
+    def getCountAuthenticationSteps(self, configurationAttributes):
+        basicmultiauth_count_steps = self.basicmultiauthconfExternalAuthenticator.getCountAuthenticationSteps(configurationAttributes)
+        duo_count_steps = self.duoExternalAuthenticator.getCountAuthenticationSteps(configurationAttributes)
+        print "BasicMultiAuth + Duo. Get count authentication steps. basicmultiauth_count_steps = %s, duo_count_steps = %s" % (basicmultiauth_count_steps, duo_count_steps)
+
+        if (basicmultiauth_count_steps == 1) and (duo_count_steps == 1):
+            return 1
+
+        if (basicmultiauth_count_steps == 2) and (duo_count_steps == 2):
+            return 3
+
+        return max(basicmultiauth_count_steps, duo_count_steps)
+
+    def getPageForStep(self, configurationAttributes, step):
+        result = ""
+
+        if step == 1:
+            result = self.basicmultiauthconfExternalAuthenticator.getPageForStep(configurationAttributes, step)
+        elif step == 2:
+            basicmultiauth_count_steps = self.basicmultiauthconfExternalAuthenticator.getCountAuthenticationSteps(configurationAttributes)
+            if basicmultiauth_count_steps == 2:
+                result = self.basicmultiauthconfExternalAuthenticator.getPageForStep(configurationAttributes, step)
+            else:
+                result = self.duoExternalAuthenticator.getPageForStep(configurationAttributes, step)
+        elif step == 3:
+            result = self.duoExternalAuthenticator.getPageForStep(configurationAttributes, step)
+
+        return result
+
+    def getNextStep(self, configurationAttributes, requestParameters, step):
+        return -1
+
+    def getLogoutExternalUrl(self, configurationAttributes, requestParameters):
+        print "Get external logout URL call"
+        return None
+
+    def logout(self, configurationAttributes, requestParameters):
+        basicmultiauth_result = self.basicmultiauthconfExternalAuthenticator.logout(configurationAttributes, requestParameters)
+        duo_result = self.duoExternalAuthenticator.logout(configurationAttributes, requestParameters)
+
+        return basicmultiauth_result and duo_result
diff --git a/oxAuth/Server/integrations/bcrypt_ssha_migration/pwd_migration.py b/oxAuth/Server/integrations/bcrypt_ssha_migration/pwd_migration.py
new file mode 100644
index 00000000..ceafbdde
--- /dev/null
+++ b/oxAuth/Server/integrations/bcrypt_ssha_migration/pwd_migration.py
@@ -0,0 +1,148 @@
+# oxAuth is available under the MIT License (2008). See http://opensource.org/licenses/MIT for full text.
+# Copyright (c) 2018, Gluu
+#
+# Author: Yuriy Movchan, Chris Blanton
+#
+
+from org.gluu.service.cdi.util import CdiUtil
+from org.gluu.oxauth.security import Identity
+from org.gluu.model.custom.script.type.auth import PersonAuthenticationType
+from org.gluu.oxauth.service import AuthenticationService
+from org.gluu.util import StringHelper
+from org.gluu.oxauth.service import UserService
+from org.gluu.util.security import BCrypt
+
+import java
+
+class PersonAuthentication(PersonAuthenticationType):
+    def __init__(self, currentTimeMillis):
+        self.currentTimeMillis = currentTimeMillis
+
+    def init(self, customScript, configurationAttributes):
+        print "BCrypt Auth. Initialization"
+        print "BCrypt Auth. Initialized successfully"
+        return True   
+
+    def destroy(self, configurationAttributes):
+        print "BCrypt Auth. Destroy"
+        print "BCrypt Auth. Destroyed successfully"
+        return True
+
+    def getApiVersion(self):
+        return 11
+
+    def getAuthenticationMethodClaims(self, requestParameters):
+        return None
+
+    def isValidAuthenticationMethod(self, usageType, configurationAttributes):
+        return True
+
+    def getAlternativeAuthenticationMethod(self, usageType, configurationAttributes):
+        return None
+
+    def authenticate(self, configurationAttributes, requestParameters, step):
+
+        authenticationService = CdiUtil.bean(AuthenticationService)
+
+        if (step == 1):
+            print "BCrypt Auth. Authenticate for step 1"
+
+            identity = CdiUtil.bean(Identity)
+            credentials = identity.getCredentials()
+
+            user_name = credentials.getUsername()
+            user_password = credentials.getPassword()
+
+            logged_in = False
+
+            if (StringHelper.isNotEmptyString(user_name) and StringHelper.isNotEmptyString(user_password)):
+                userService = CdiUtil.bean(UserService)
+                user = userService.getUser(user_name)
+                hashed_stored_pass = user.getAttribute("userPassword")
+
+                password_schema = ''
+
+                # Determine password schema
+                # Example for BCrypt: {BCRYPT}$2b$08$71gBXNKJ/iUBXqLjEdEXFesoUYQm5vrpKefi8YhV7ITGfAd9VNFaG
+                for char in hashed_stored_pass:
+                    if char == '{':
+                        continue
+                    if char == '}':
+                        break    
+                    password_schema = password_schema + char
+                print("Password Schema is: " + password_schema)
+
+                # OpenDJ's SSHA(512)
+                if 'SSHA' in password_schema:
+                    # Returns True if authenticated on the backend
+                    logged_in = authenticationService.authenticate(user_name, user_password)
+
+                # Pattern match BCRYPT and rewrite to SSHA
+                elif 'BCRYPT' in password_schema:
+                    # Pull salt from the stored hashed password
+                    salt = hashed_stored_pass[8:]
+                    salt = salt.split("$")[3].strip()
+                    salt = salt[0:22]
+                    salt = '$2a$08$' + salt
+
+                    # Create BCrypt hash of challenge cleartext password using the gathered salt
+                    challenge = BCrypt.hashpw(user_password,salt)
+
+                    # Strip unnecessary revision($2a$) and rounds(08$) from both hashed passwords for comparison.
+                    challenge = challenge.split("$")[3].strip()
+                    stored = hashed_stored_pass.split("$")[3].strip()
+
+                    print("Challenge Salt+Hash: " + challenge)
+                    print("Stored Salt+Hash:    " + stored)
+
+                    # Compare the hashses and update hash if there is a match.
+                    if challenge in stored:
+
+                        # Users hashed challenge password matches the stored hashed password in the backend
+                        # Therefore we update the users password to the backend's password schema by passing it to OpenDJ
+                        print("Updating hash..")
+                        user.setAttribute("userPassword",user_password)
+                        user = userService.updateUser(user)
+                        print("Logging in..")
+
+                        # Returns True
+                        logged_in = authenticationService.authenticate(user_name)
+
+                # Catch unknown schema types and output to oxauth_script.log
+                # This script can be expanded to include other password schemas.
+                else:
+                    print("Unrecognized algorithm: " + password_schema)
+
+            # If there is no match, logged_in will still be False and authentication will fail.
+            if (not logged_in):
+                return False
+            logged_in = authenticationService.authenticate(user_name)
+            return logged_in
+        else:
+            return False
+
+    def prepareForStep(self, configurationAttributes, requestParameters, step):
+        if (step == 1):
+            print "BCrypt Auth. Prepare for Step 1"
+            return True
+        else:
+            return False
+
+    def getExtraParametersForStep(self, configurationAttributes, step):
+        return None
+
+    def getCountAuthenticationSteps(self, configurationAttributes):
+        return 1
+
+    def getPageForStep(self, configurationAttributes, step):
+        return ""
+        
+    def getNextStep(self, configurationAttributes, requestParameters, step):
+        return -1
+
+    def getLogoutExternalUrl(self, configurationAttributes, requestParameters):
+        print "Get external logout URL call"
+        return None
+        
+    def logout(self, configurationAttributes, requestParameters):
+        return True
diff --git a/oxAuth/Server/integrations/bioid/BioIDExternalAuthenticator.py b/oxAuth/Server/integrations/bioid/BioIDExternalAuthenticator.py
new file mode 100644
index 00000000..40f19585
--- /dev/null
+++ b/oxAuth/Server/integrations/bioid/BioIDExternalAuthenticator.py
@@ -0,0 +1,312 @@
+#!/usr/bin/python
+# -*- coding: utf-8 -*-
+
+import sys
+from java.util import Collections, HashMap, HashSet, ArrayList, Arrays, Date
+from org.oxauth.persistence.model.configuration import GluuConfiguration
+from org.gluu.persist import PersistenceEntryManager
+from java.nio.charset import Charset
+from org.gluu.service.cdi.util import CdiUtil
+from org.gluu.oxauth.security import Identity
+from org.gluu.model.custom.script.type.auth import PersonAuthenticationType
+from org.gluu.oxauth.service import AuthenticationService, SessionIdService
+from org.gluu.oxauth.service.common import UserService
+from org.gluu.util import StringHelper
+from org.gluu.oxauth.service.net import HttpService
+from org.json import JSONObject
+import base64
+import java
+
+from org.gluu.util import StringHelper
+from java.lang import String
+
+class PersonAuthentication(PersonAuthenticationType):
+    def __init__(self, currentTimeMillis):
+        self.currentTimeMillis = currentTimeMillis
+
+    def init(self, customScript,  configurationAttributes):
+
+        
+        if not configurationAttributes.containsKey("ENDPOINT"):
+            print "BioID. Initialization. Property ENDPOINT is mandatory"
+            return False
+        self.ENDPOINT = configurationAttributes.get("ENDPOINT").getValue2()
+        
+        if not configurationAttributes.containsKey("APP_IDENTIFIER"):
+            print "BioID. Initialization. Property APP_IDENTIFIER is mandatory"
+            return False
+        self.APP_IDENTIFIER = configurationAttributes.get("APP_IDENTIFIER").getValue2()
+        
+        if not configurationAttributes.containsKey("APP_SECRET"):
+            print "BioID. Initialization. Property APP_SECRET is mandatory"
+            return False
+        self.APP_SECRET = configurationAttributes.get("APP_SECRET").getValue2()
+        
+        if not configurationAttributes.containsKey("PARTITION"):
+            print "BioID. Initialization. Property PARTITION is mandatory"
+            return False
+        self.PARTITION = configurationAttributes.get("PARTITION").getValue2()
+        
+        if not configurationAttributes.containsKey("STORAGE"):
+            print "BioID. Initialization. Property STORAGE is mandatory"
+            return False
+        self.STORAGE = configurationAttributes.get("STORAGE").getValue2()
+        
+        print "BioID. Initialized successfully"
+        return True   
+
+    def destroy(self, configurationAttributes):
+        print "BioID. Destroy"
+        print "BioID. Destroyed successfully"
+        return True
+        
+    def getAuthenticationMethodClaims(self, requestParameters):
+        return None
+        
+    def getApiVersion(self):
+        return 11
+
+    def isValidAuthenticationMethod(self, usageType, configurationAttributes):
+        return True
+
+    def getAlternativeAuthenticationMethod(self, usageType, configurationAttributes):
+        return None
+
+    def authenticate(self, configurationAttributes, requestParameters, step):
+        print "BioID. Authenticate "
+        authenticationService = CdiUtil.bean(AuthenticationService)
+        identity = CdiUtil.bean(Identity)
+        credentials = identity.getCredentials()
+        user_name = credentials.getUsername()
+        
+        if (step == 1):
+            print "BioID. Authenticate for step 1"
+
+            logged_in = False
+            userService = CdiUtil.bean(UserService)
+            authenticated_user = self.processBasicAuthentication(credentials)
+            if authenticated_user == None:
+                print "BioID. User does not exist"
+                return False
+            
+            identity.setWorkingParameter("user_name",user_name)
+            bcid = self.STORAGE + "." + self.PARTITION + "." + str(String(user_name).hashCode())
+            print "BioID. username:bcid %s:%s" %(user_name, bcid)
+            
+            is_user_enrolled = self.isenrolled(bcid)
+            print "BioID. is_user_enrolled: '%s'" % is_user_enrolled
+            
+            if(is_user_enrolled == True):
+                identity.setWorkingParameter("bioID_auth_method","verification")
+            else:
+                identity.setWorkingParameter("bioID_auth_method","enrollment")
+                identity.setWorkingParameter("bioID_count_login_steps", 2)
+            
+            return True
+        
+        elif step == 2 or step == 3:
+            
+            auth_method = identity.getWorkingParameter("bioID_auth_method")
+            print "BioID. Authenticate method for step %s. bioID_auth_method: '%s'" % (step,auth_method)
+            user_name = identity.getWorkingParameter("user_name")
+            bcid = self.STORAGE + "." + self.PARTITION + "." + str(String(user_name).hashCode())
+            
+            if step == 2 and 'enrollment' == auth_method:
+                
+                access_token = identity.getWorkingParameter("access_token")
+                result = self.performBiometricOperation( access_token, "enroll")
+                
+                if result == True:
+                    #this means that enroll is a success, the next is step 3 authenticate
+                    identity.setWorkingParameter("bioID_count_login_steps", 3)
+                    identity.setWorkingParameter("bioID_auth_method","verification")
+                    return result
+                else:
+                    return False
+            
+            else :
+                
+                access_token = identity.getWorkingParameter("access_token")
+                result = self.performBiometricOperation( access_token, "verify")
+                return result
+            
+        else:
+            return False
+
+    
+    def prepareForStep(self, configurationAttributes, requestParameters, step):
+        
+        print "BioID. Prepare for step called : step %s" % step
+        if step == 1:
+            return True
+        elif step == 2  or step == 3:
+            identity = CdiUtil.bean(Identity)
+            user_name = identity.getWorkingParameter("user_name")
+            auth_method = identity.getWorkingParameter("bioID_auth_method")
+            print "BioID. step %s %s" % (step, auth_method)
+            bcid = self.STORAGE + "." + self.PARTITION + "." + str(String(user_name).hashCode())
+            print "bcid %s" %bcid
+            if step == 2 and auth_method == 'enrollment':
+                print "access token used by upload method - enroll"
+                access_token = self.getAccessToken( bcid, "enroll" )
+            # either step2 and verification or step 3 which is verification post enrollment
+            else:
+                print "access token used by upload method - verify"
+                access_token = self.getAccessToken( bcid, "verify" )
+                
+            print "access_token %s - " % access_token
+            identity.setWorkingParameter("access_token",access_token)
+            
+            return True
+            
+        else:
+            return False
+
+    def getExtraParametersForStep(self, configurationAttributes, step):
+        return Arrays.asList("bioID_auth_method","access_token","user_name","bioID_count_login_steps")
+    
+    
+    def getCountAuthenticationSteps(self, configurationAttributes):
+        
+        identity = CdiUtil.bean(Identity)
+        if identity.isSetWorkingParameter("bioID_count_login_steps"):
+            print "BioID. getCountAuthenticationSteps called, returning - 3"
+            return 3
+        else:
+            print "BioID. getCountAuthenticationSteps called, returning - 2"
+            return 2
+
+    def getPageForStep(self, configurationAttributes, step):
+        print "BioID. getPageForStep called -step:%s" % str(step)
+        if step > 1 :
+            return   "/auth/bioid/bioid.xhtml"
+        else:
+            return ""
+
+    def getNextStep(self, configurationAttributes, requestParameters, step):
+        print "BioID. getNextStep called.  %s" % str(step)
+        
+        return -1
+
+    def getLogoutExternalUrl(self, configurationAttributes, requestParameters):
+        print "Get external logout URL call"
+        return None
+
+    def logout(self, configurationAttributes, requestParameters):
+        return True
+
+    # Get a BWS token to be used for authorization.
+    # bcid - The Biometric Class ID (BCID) of the person
+    # forTask - The task for which the issued token shall be used.
+    # A string containing the issued BWS token.
+    def getAccessToken(self, bcid, forTask):
+        
+        httpService = CdiUtil.bean(HttpService)
+
+        http_client = httpService.getHttpsClient()
+        http_client_params = http_client.getParams()
+
+        bioID_service_url = self.ENDPOINT + "token?id="+self.APP_IDENTIFIER+"&bcid="+bcid+"&task="+forTask+"&livedetection=true"
+        encodedString = base64.b64encode((self.APP_IDENTIFIER+":"+self.APP_SECRET).encode('utf-8'))
+        bioID_service_headers = {"Authorization": "Basic "+encodedString}
+
+        try:
+            http_service_response = httpService.executeGet(http_client, bioID_service_url, bioID_service_headers)
+            http_response = http_service_response.getHttpResponse()
+        except:
+            print "BioID. Unable to obtain access token. Exception: ", sys.exc_info()[1]
+            return None
+
+        try:
+            if not httpService.isResponseStastusCodeOk(http_response):
+                print "BioID. Unable to obtain access token.  Get non 200 OK response from server:", str(http_response.getStatusLine().getStatusCode())
+                httpService.consume(http_response)
+                return None
+
+            response_bytes = httpService.getResponseContent(http_response)
+            response_string = httpService.convertEntityToString(response_bytes, Charset.forName("UTF-8"))
+            httpService.consume(http_response)
+            return response_string
+        finally:
+            http_service_response.closeConnection()
+    
+    def isenrolled(self, bcid):
+        httpService = CdiUtil.bean(HttpService)
+
+        http_client = httpService.getHttpsClient()
+        http_client_params = http_client.getParams()
+
+        bioID_service_url = self.ENDPOINT + "isenrolled?bcid="+bcid+"&trait=Face"
+        print "BioID. isenrolled URL - %s" %bioID_service_url
+        encodedString = base64.b64encode((self.APP_IDENTIFIER+":"+self.APP_SECRET).encode('utf-8'))
+        bioID_service_headers = {"Authorization": "Basic "+encodedString}
+
+        try:
+            http_service_response = httpService.executeGet(http_client, bioID_service_url, bioID_service_headers)
+            http_response = http_service_response.getHttpResponse()
+        except:
+            print "BioID. failed to invoke isenrolled API: ", sys.exc_info()[1]
+            return None
+
+        try:
+            if not httpService.isResponseStastusCodeOk(http_response):
+                print "BioID. Face,Periocular not enrolled.  Get non 200 OK response from server:", str(http_response.getStatusLine().getStatusCode())
+                httpService.consume(http_response)
+                return False
+
+            else: 
+                return True
+        finally:
+            http_service_response.closeConnection()
+        
+    def processBasicAuthentication(self, credentials):
+        userService = CdiUtil.bean(UserService)
+        authenticationService = CdiUtil.bean(AuthenticationService)
+
+        user_name = credentials.getUsername()
+        user_password = credentials.getPassword()
+
+        logged_in = False
+        if StringHelper.isNotEmptyString(user_name) and StringHelper.isNotEmptyString(user_password):
+            logged_in = authenticationService.authenticate(user_name, user_password)
+
+        if not logged_in:
+            print "OTP. Process basic authentication. Failed to find user '%s'" % user_name
+            return None
+
+        find_user_by_uid = authenticationService.getAuthenticatedUser()
+        if find_user_by_uid == None:
+            print "OTP. Process basic authentication. Failed to find user '%s'" % user_name
+            return None
+        
+        return find_user_by_uid
+    
+    
+    def performBiometricOperation(self, token, task):
+        httpService = CdiUtil.bean(HttpService)
+        http_client = httpService.getHttpsClient()
+        http_client_params = http_client.getParams()
+        bioID_service_url = self.ENDPOINT + task+"?livedetection=true"
+        bioID_service_headers = {"Authorization": "Bearer "+token}
+
+        try:
+            http_service_response = httpService.executeGet(http_client, bioID_service_url, bioID_service_headers)
+            http_response = http_service_response.getHttpResponse()
+            response_bytes = httpService.getResponseContent(http_response)
+            response_string = httpService.convertEntityToString(response_bytes, Charset.forName("UTF-8"))
+            json_response = JSONObject(response_string)
+            httpService.consume(http_response)
+            if  json_response.get("Success") == True:
+                return True
+            else:
+                print "BioID. Reason for failure : %s " % json_response.get("Error") 
+                return False
+        except:
+            print "BioID. failed to invoke %s API: %s" %(task,sys.exc_info()[1])
+            return None
+            
+        finally:
+            http_service_response.closeConnection()
+            
+            
+    
\ No newline at end of file
diff --git a/oxAuth/Server/integrations/bioid/README.md b/oxAuth/Server/integrations/bioid/README.md
new file mode 100644
index 00000000..6d988c5d
--- /dev/null
+++ b/oxAuth/Server/integrations/bioid/README.md
@@ -0,0 +1,72 @@
+# BioID Web Service
+## Overview
+[BioID Web Service](https://www.bioid.com) is a "Biometrics as a service" provider. This document will explain how to use Gluu's [BioID  interception script](https://github.com/GluuFederation/oxAuth/blob/master/Server/integrations/bioID/BioIDExternalAuthenticator.py) to configure the Gluu Server for a two-step authentication process with username and password as the first step, and BioID's biometric authentication as the second step. 
+
+In order to use this authentication mechanism your organization will need to register for a BioID account. 
+
+## Prerequisitesm
+- A Gluu Server ([installation instructions](../installation-guide/index.md));
+- [BioID interception script](https://github.com/GluuFederation/oxAuth/blob/master/Server/integrations/bioID/BioIDExternalAuthenticator.py) (included in the default Gluu Server distribution);
+- An account with [BioID](https://bwsportal.bioid.com/register).   
+
+## Properties
+The mandatory properties in the BioID authentication script are as follows
+|	Property	|	Description		|	Example	|
+|-----------------------|-------------------------------|---------------|
+|ENDPOINT 		|URL of the BioID Web Service|`https://bws.bioid.com/extension/`|
+|APP_IDENTIFIER 	|API key |`c20b04cc-776a-45ed-7a1f-06347f8edf6c`|
+|APP_SECRET 	|API secret |`sTGB4n4HAkvc2BnJp6KeNUTk`|
+|STORAGE 	|The storage name assigned by BioID depending on the type of contract you have. |`bws`|
+|PARTITION 	|A number assigned to your company by BioID. |`12345`|
+
+
+
+## Configure BioID Account
+
+1. [Sign up](https://bwsportal.bioid.com/register) for a BioID account.
+
+2. Upon registration, you will recieve an email with the instance name (listed as STORAGE in Gluu's BioID authentication script), partition number(listed as PARTITION in Gluu's BioID authentication script).
+
+3. As the owner of this instance, you are entitled to access BWS Portal at https://bwsportal.bioid.com using the account associated with your email. 
+With the BWS Portal, you can do the following:
+a. View your trial information such as your credentials (e.g. your client certificate), enrolled classes, BWS logs and more.
+b. Create your App ID and App secret, under "Web API keys".
+
+## BioID Documentation
+
+You can find all API reference at https://developer.bioid.com/bwsreference. 
+Lots of useful information about BWS is available at https://developer.bioid.com/blog.
+If you intend to use liveness detection, you will find information about motion trigger helpful: https://developer.bioid.com/app-developer-guide/bioid-motion-detection
+
+## Configure oxTrust 
+
+Follow the steps below to configure the BioID module in the oxTrust Admin GUI.
+
+1. Navigate to `Configuration` > `Person Authentication Scripts`.
+1. Scroll down to the BioID authentication script   
+![bioid-script](../img/admin-guide/multi-factor/bioid-script.png)
+
+1. Configure the properties, all of which are mandatory, according to your API    
+
+1. Enable the script by ticking the check box    
+![enable](../img/admin-guide/enable.png)
+
+Now BioID's biometric authentication is available as an authentication mechanism for your Gluu Server. This means that, using OpenID Connect `acr_values`, applications can now request BioID biometric authentication for users. 
+
+!!! Note 
+    To make sure BioID has been enabled successfully, you can check your Gluu Server's OpenID Connect configuration by navigating to the following URL: `https://<hostname>/.well-known/openid-configuration`. Find `"acr_values_supported":` and you should see `"bioid"`. 
+
+## Make BioID the Default Authentication Mechanism
+
+Now applications can request BioID's biometric authentication. To make BioID biometic authentication your default authentication mechanism, follow these instructions: 
+
+1. Navigate to `Configuration` > `Manage Authentication`. 
+2. Select the `Default Authentication Method` tab. 
+3. In the Default Authentication Method window you will see two options: `Default acr` and `oxTrust acr`. 
+
+    - The `oxTrust acr` field controls the authentication mechanism that is presented to access the oxTrust dashboard GUI (the application you are in).    
+    - The `Default acr` field controls the default authentication mechanism that is presented to users from all applications that leverage your Gluu Server for authentication.    
+
+You can change one or both fields to BioID authentication as you see fit. If you want BioID to be the default authentication mechanism for access to oxTrust and all other applications that leverage your Gluu Server, change both fields to bioid.  
+ 
+![BioID](../img/admin-guide/multi-factor/bioID.png)
diff --git a/oxAuth/Server/integrations/bioid/README.txt b/oxAuth/Server/integrations/bioid/README.txt
new file mode 100644
index 00000000..6d988c5d
--- /dev/null
+++ b/oxAuth/Server/integrations/bioid/README.txt
@@ -0,0 +1,72 @@
+# BioID Web Service
+## Overview
+[BioID Web Service](https://www.bioid.com) is a "Biometrics as a service" provider. This document will explain how to use Gluu's [BioID  interception script](https://github.com/GluuFederation/oxAuth/blob/master/Server/integrations/bioID/BioIDExternalAuthenticator.py) to configure the Gluu Server for a two-step authentication process with username and password as the first step, and BioID's biometric authentication as the second step. 
+
+In order to use this authentication mechanism your organization will need to register for a BioID account. 
+
+## Prerequisitesm
+- A Gluu Server ([installation instructions](../installation-guide/index.md));
+- [BioID interception script](https://github.com/GluuFederation/oxAuth/blob/master/Server/integrations/bioID/BioIDExternalAuthenticator.py) (included in the default Gluu Server distribution);
+- An account with [BioID](https://bwsportal.bioid.com/register).   
+
+## Properties
+The mandatory properties in the BioID authentication script are as follows
+|	Property	|	Description		|	Example	|
+|-----------------------|-------------------------------|---------------|
+|ENDPOINT 		|URL of the BioID Web Service|`https://bws.bioid.com/extension/`|
+|APP_IDENTIFIER 	|API key |`c20b04cc-776a-45ed-7a1f-06347f8edf6c`|
+|APP_SECRET 	|API secret |`sTGB4n4HAkvc2BnJp6KeNUTk`|
+|STORAGE 	|The storage name assigned by BioID depending on the type of contract you have. |`bws`|
+|PARTITION 	|A number assigned to your company by BioID. |`12345`|
+
+
+
+## Configure BioID Account
+
+1. [Sign up](https://bwsportal.bioid.com/register) for a BioID account.
+
+2. Upon registration, you will recieve an email with the instance name (listed as STORAGE in Gluu's BioID authentication script), partition number(listed as PARTITION in Gluu's BioID authentication script).
+
+3. As the owner of this instance, you are entitled to access BWS Portal at https://bwsportal.bioid.com using the account associated with your email. 
+With the BWS Portal, you can do the following:
+a. View your trial information such as your credentials (e.g. your client certificate), enrolled classes, BWS logs and more.
+b. Create your App ID and App secret, under "Web API keys".
+
+## BioID Documentation
+
+You can find all API reference at https://developer.bioid.com/bwsreference. 
+Lots of useful information about BWS is available at https://developer.bioid.com/blog.
+If you intend to use liveness detection, you will find information about motion trigger helpful: https://developer.bioid.com/app-developer-guide/bioid-motion-detection
+
+## Configure oxTrust 
+
+Follow the steps below to configure the BioID module in the oxTrust Admin GUI.
+
+1. Navigate to `Configuration` > `Person Authentication Scripts`.
+1. Scroll down to the BioID authentication script   
+![bioid-script](../img/admin-guide/multi-factor/bioid-script.png)
+
+1. Configure the properties, all of which are mandatory, according to your API    
+
+1. Enable the script by ticking the check box    
+![enable](../img/admin-guide/enable.png)
+
+Now BioID's biometric authentication is available as an authentication mechanism for your Gluu Server. This means that, using OpenID Connect `acr_values`, applications can now request BioID biometric authentication for users. 
+
+!!! Note 
+    To make sure BioID has been enabled successfully, you can check your Gluu Server's OpenID Connect configuration by navigating to the following URL: `https://<hostname>/.well-known/openid-configuration`. Find `"acr_values_supported":` and you should see `"bioid"`. 
+
+## Make BioID the Default Authentication Mechanism
+
+Now applications can request BioID's biometric authentication. To make BioID biometic authentication your default authentication mechanism, follow these instructions: 
+
+1. Navigate to `Configuration` > `Manage Authentication`. 
+2. Select the `Default Authentication Method` tab. 
+3. In the Default Authentication Method window you will see two options: `Default acr` and `oxTrust acr`. 
+
+    - The `oxTrust acr` field controls the authentication mechanism that is presented to access the oxTrust dashboard GUI (the application you are in).    
+    - The `Default acr` field controls the default authentication mechanism that is presented to users from all applications that leverage your Gluu Server for authentication.    
+
+You can change one or both fields to BioID authentication as you see fit. If you want BioID to be the default authentication mechanism for access to oxTrust and all other applications that leverage your Gluu Server, change both fields to bioid.  
+ 
+![BioID](../img/admin-guide/multi-factor/bioID.png)
diff --git a/oxAuth/Server/integrations/cas2/Cas2ExternalAuthenticator.py b/oxAuth/Server/integrations/cas2/Cas2ExternalAuthenticator.py
new file mode 100644
index 00000000..54cbcd4f
--- /dev/null
+++ b/oxAuth/Server/integrations/cas2/Cas2ExternalAuthenticator.py
@@ -0,0 +1,338 @@
+# oxAuth is available under the MIT License (2008). See http://opensource.org/licenses/MIT for full text.
+# Copyright (c) 2016, Gluu
+#
+# Author: Yuriy Movchan
+#
+
+import sys
+from java.util import Arrays
+from java.util import HashMap
+from javax.faces.context import FacesContext
+from org.apache.http.params import CoreConnectionPNames
+from org.gluu.model.custom.script.type.auth import PersonAuthenticationType
+from org.gluu.oxauth.security import Identity
+from org.gluu.oxauth.service import UserService, AuthenticationService, RequestParameterService
+from org.gluu.oxauth.service.net import HttpService
+from org.gluu.service.cdi.util import CdiUtil
+from org.gluu.util import StringHelper, ArrayHelper
+from org.gluu.jsf2.service import FacesService
+
+class PersonAuthentication(PersonAuthenticationType):
+    def __init__(self, currentTimeMillis):
+        self.currentTimeMillis = currentTimeMillis
+
+    def init(self, customScript, configurationAttributes):
+        print "CAS2. Initialization"
+
+        if not configurationAttributes.containsKey("cas_host"):
+            print "CAS2. Initialization. Parameter 'cas_host' is missing"
+            return False
+
+        self.cas_host = configurationAttributes.get("cas_host").getValue2()
+
+        self.cas_extra_opts = None
+        if configurationAttributes.containsKey("cas_extra_opts"):
+            self.cas_extra_opts = configurationAttributes.get("cas_extra_opts").getValue2()
+
+
+        self.cas_renew_opt = False
+        if configurationAttributes.containsKey("cas_renew_opt"):
+            self.cas_renew_opt = StringHelper.toBoolean(configurationAttributes.get("cas_renew_opt").getValue2(), False)
+
+        self.cas_map_user = False
+        if configurationAttributes.containsKey("cas_map_user"):
+            self.cas_map_user = StringHelper.toBoolean(configurationAttributes.get("cas_map_user").getValue2(), False)
+
+        self.cas_enable_server_validation = False
+        if (configurationAttributes.containsKey("cas_validation_uri") and
+            configurationAttributes.containsKey("cas_validation_pattern") and
+            configurationAttributes.containsKey("cas_validation_timeout")):
+
+            print "CAS2. Initialization. Configuring checker client"
+            self.cas_enable_server_validation = True
+
+            self.cas_validation_uri = configurationAttributes.get("cas_validation_uri").getValue2()
+            self.cas_validation_pattern = configurationAttributes.get("cas_validation_pattern").getValue2()
+            cas_validation_timeout = int(configurationAttributes.get("cas_validation_timeout").getValue2()) * 1000
+    
+            httpService = CdiUtil.bean(HttpService)
+    
+            self.http_client = httpService.getHttpsClient()
+            self.http_client_params = self.http_client.getParams()
+            self.http_client_params.setIntParameter(CoreConnectionPNames.CONNECTION_TIMEOUT, cas_validation_timeout)
+
+        self.cas_alt_auth_mode = None
+        if configurationAttributes.containsKey("cas_alt_auth_mode"):
+            self.cas_alt_auth_mode = configurationAttributes.get("cas_alt_auth_mode").getValue2()
+
+        print "CAS2. Initialized successfully"
+
+        return True   
+
+    def destroy(self, configurationAttributes):
+        print "CAS2. Destroy"
+        if self.cas_enable_server_validation:
+            print "CAS2. CDestory. Destorying checker client"
+            self.http_client = None
+            
+        print "CAS2. Destroyed successfully"
+        return True
+
+    def getApiVersion(self):
+        return 11
+
+    def getAuthenticationMethodClaims(self, requestParameters):
+        return None
+
+    def isValidAuthenticationMethod(self, usageType, configurationAttributes):
+        if not self.cas_enable_server_validation:
+            return True
+
+        print "CAS2. isValidAuthenticationMethod"
+
+        httpService = CdiUtil.bean(HttpService)
+
+        try:
+            http_service_response = httpService.executeGet(self.http_client, self.cas_validation_uri)
+        except:
+            print "CAS2. isValidAuthenticationMethod. Exception: ", sys.exc_info()[1]
+            return False
+
+        try:
+            http_response = http_service_response.getHttpResponse()
+            if http_response.getStatusLine().getStatusCode() != 200:
+                print "CAS2. isValidAuthenticationMethod. Get invalid response from CAS2 server: ", str(http_response.getStatusLine().getStatusCode())
+                httpService.consume(http_response)
+                return False
+    
+            validation_response_bytes = httpService.getResponseContent(http_response)
+            validation_response_string = httpService.convertEntityToString(validation_response_bytes)
+            httpService.consume(http_response)
+        finally:
+            http_service_response.closeConnection()
+
+        if (validation_response_string == None) or (validation_response_string.find(self.cas_validation_pattern) == -1):
+            print "CAS2. isValidAuthenticationMethod. Get invalid login page from CAS2 server:"
+            return False
+
+        return True
+
+    def getAlternativeAuthenticationMethod(self, usageType, configurationAttributes):
+        return self.cas_alt_auth_mode
+
+    def authenticate(self, configurationAttributes, requestParameters, step):
+        identity = CdiUtil.bean(Identity)
+        credentials = identity.getCredentials()
+
+        userService = CdiUtil.bean(UserService)
+        requestParameterService = CdiUtil.bean(RequestParameterService)
+        authenticationService = CdiUtil.bean(AuthenticationService)
+        httpService = CdiUtil.bean(HttpService)
+
+        if step == 1:
+            print "CAS2. Authenticate for step 1"
+            ticket_array = requestParameters.get("ticket")
+            if ArrayHelper.isEmpty(ticket_array):
+                print "CAS2. Authenticate for step 1. ticket is empty"
+                return False
+
+            ticket = ticket_array[0]
+            print "CAS2. Authenticate for step 1. ticket: " + ticket
+
+            if StringHelper.isEmptyString(ticket):
+                print "CAS2. Authenticate for step 1. ticket is invalid"
+                return False
+
+            # Validate ticket
+            facesContext = CdiUtil.bean(FacesContext)
+            request = facesContext.getExternalContext().getRequest()
+
+            parametersMap = HashMap()
+            parametersMap.put("service", httpService.constructServerUrl(request) + "/postlogin.htm")
+            if self.cas_renew_opt:
+                parametersMap.put("renew", "true")
+            parametersMap.put("ticket", ticket)
+            cas_service_request_uri = requestParameterService.parametersAsString(parametersMap)
+            cas_service_request_uri = self.cas_host + "/serviceValidate?" + cas_service_request_uri
+            if self.cas_extra_opts != None:
+                cas_service_request_uri = cas_service_request_uri + "&" + self.cas_extra_opts
+
+            print "CAS2. Authenticate for step 1. cas_service_request_uri: " + cas_service_request_uri
+
+            http_client = httpService.getHttpsClient()
+            http_service_response = httpService.executeGet(http_client, cas_service_request_uri)
+            try:
+                validation_content = httpService.convertEntityToString(httpService.getResponseContent(http_service_response.getHttpResponse()))
+            finally:
+                http_service_response.closeConnection()
+
+            print "CAS2. Authenticate for step 1. validation_content: " + validation_content
+            if StringHelper.isEmpty(validation_content):
+                print "CAS2. Authenticate for step 1. Ticket validation response is invalid"
+                return False
+
+            cas2_auth_failure = self.parse_tag(validation_content, "cas:authenticationFailure")
+            print "CAS2. Authenticate for step 1. cas2_auth_failure: ", cas2_auth_failure
+
+            cas2_user_uid = self.parse_tag(validation_content, "cas:user")
+            print "CAS2. Authenticate for step 1. cas2_user_uid: ", cas2_user_uid
+            
+            if (cas2_auth_failure != None) or (cas2_user_uid == None):
+                print "CAS2. Authenticate for step 1. Ticket is invalid"
+                return False
+
+            if self.cas_map_user:
+                print "CAS2. Authenticate for step 1. Attempting to find user by oxExternalUid: cas2:" + cas2_user_uid
+
+                # Check if the is user with specified cas2_user_uid
+                find_user_by_uid = userService.getUserByAttribute("oxExternalUid", "cas2:" + cas2_user_uid)
+
+                if find_user_by_uid == None:
+                    print "CAS2. Authenticate for step 1. Failed to find user"
+                    print "CAS2. Authenticate for step 1. Setting count steps to 2"
+                    identity.setWorkingParameter("cas2_count_login_steps", 2)
+                    identity.setWorkingParameter("cas2_user_uid", cas2_user_uid)
+                    return True
+
+                found_user_name = find_user_by_uid.getUserId()
+                print "CAS2. Authenticate for step 1. found_user_name: " + found_user_name
+                
+                authenticationService.authenticate(found_user_name)
+            
+                print "CAS2. Authenticate for step 1. Setting count steps to 1"
+                identity.setWorkingParameter("cas2_count_login_steps", 1)
+
+                return True
+            else:
+                print "CAS2. Authenticate for step 1. Attempting to find user by uid:" + cas2_user_uid
+
+                # Check if there is user with specified cas2_user_uid
+                find_user_by_uid = userService.getUser(cas2_user_uid)
+                if find_user_by_uid == None:
+                    print "CAS2. Authenticate for step 1. Failed to find user"
+                    return False
+
+                found_user_name = find_user_by_uid.getUserId()
+                print "CAS2. Authenticate for step 1. found_user_name: " + found_user_name
+
+                authenticationService.authenticate(found_user_name)
+
+                print "CAS2. Authenticate for step 1. Setting count steps to 1"
+                identity.setWorkingParameter("cas2_count_login_steps", 1)
+
+                return True
+        elif step == 2:
+            print "CAS2. Authenticate for step 2"
+
+            if identity.isSetWorkingParameter("cas2_user_uid"):
+                print "CAS2. Authenticate for step 2. cas2_user_uid is empty"
+                return False
+
+            cas2_user_uid = identity.getWorkingParameter("cas2_user_uid")
+            passed_step1 = StringHelper.isNotEmptyString(cas2_user_uid)
+            if not passed_step1:
+                return False
+
+            user_name = credentials.getUsername()
+            user_password = credentials.getPassword()
+
+            logged_in = False
+            if StringHelper.isNotEmptyString(user_name) and StringHelper.isNotEmptyString(user_password):
+                logged_in = authenticationService.authenticate(user_name, user_password)
+
+            if not logged_in:
+                return False
+
+            # Check if there is user which has cas2_user_uid
+            # Avoid mapping CAS2 account to more than one IDP account
+            find_user_by_uid = userService.getUserByAttribute("oxExternalUid", "cas2:" + cas2_user_uid)
+
+            if find_user_by_uid == None:
+                # Add cas2_user_uid to user one id UIDs
+                find_user_by_uid = userService.addUserAttribute(user_name, "oxExternalUid", "cas2:" + cas2_user_uid)
+                if find_user_by_uid == None:
+                    print "CAS2. Authenticate for step 2. Failed to update current user"
+                    return False
+
+                return True
+            else:
+                found_user_name = find_user_by_uid.getUserId()
+                print "CAS2. Authenticate for step 2. found_user_name: " + found_user_name
+    
+                if StringHelper.equals(user_name, found_user_name):
+                    return True
+        
+            return False
+        else:
+            return False
+
+    def prepareForStep(self, configurationAttributes, requestParameters, step):
+        if step == 1:
+            print "CAS2. Prepare for step 1"
+
+            requestParameterService = CdiUtil.bean(RequestParameterService)
+            httpService = CdiUtil.bean(HttpService)
+
+            facesContext = CdiUtil.bean(FacesContext)
+            request = facesContext.getExternalContext().getRequest()
+
+            parametersMap = HashMap()
+            parametersMap.put("service", httpService.constructServerUrl(request) + "/postlogin.htm")
+            if self.cas_renew_opt:
+                parametersMap.put("renew", "true")
+            cas_service_request_uri = requestParameterService.parametersAsString(parametersMap)
+            cas_service_request_uri = self.cas_host + "/login?" + cas_service_request_uri
+            if self.cas_extra_opts != None:
+                cas_service_request_uri = cas_service_request_uri + "&" + self.cas_extra_opts
+
+            print "CAS2. Prepare for step 1. cas_service_request_uri: " + cas_service_request_uri
+            facesService = CdiUtil.bean(FacesService)
+            facesService.redirectToExternalURL(cas_service_request_uri)
+
+            return True
+        elif step == 2:
+            print "CAS2. Prepare for step 2"
+
+            return True
+        else:
+            return False
+
+    def getExtraParametersForStep(self, configurationAttributes, step):
+        if step == 2:
+            return Arrays.asList("cas2_count_login_steps", "cas2_user_uid")
+        
+        return None
+
+    def getCountAuthenticationSteps(self, configurationAttributes):
+        identity = CdiUtil.bean(Identity)
+        if identity.isSetWorkingParameter("cas2_count_login_steps"):
+            return int(identity.getWorkingParameter("cas2_count_login_steps"))
+        
+        return 2
+
+    def getPageForStep(self, configurationAttributes, step):
+        identity = CdiUtil.bean(Identity)
+        if step == 1:
+            return "/auth/cas2/cas2login.xhtml"
+        return "/auth/cas2/cas2postlogin.xhtml"
+
+    def parse_tag(self, str, tag):
+        tag1_pos1 = str.find("<" + tag)
+        #  No tag found, return empty string.
+        if tag1_pos1 == -1: return None
+        tag1_pos2 = str.find(">", tag1_pos1)
+        if tag1_pos2 == -1: return None
+        tag2_pos1 = str.find("</" + tag, tag1_pos2)
+        if tag2_pos1 == -1: return None
+
+        return str[tag1_pos2+1:tag2_pos1].strip()
+
+    def getNextStep(self, configurationAttributes, requestParameters, step):
+        return -1
+
+    def getLogoutExternalUrl(self, configurationAttributes, requestParameters):
+        print "Get external logout URL call"
+        return None
+
+    def logout(self, configurationAttributes, requestParameters):
+        return True
diff --git a/oxAuth/Server/integrations/cas2_duo/Cas2DuoExternalAuthenticator.py b/oxAuth/Server/integrations/cas2_duo/Cas2DuoExternalAuthenticator.py
new file mode 100644
index 00000000..9598480d
--- /dev/null
+++ b/oxAuth/Server/integrations/cas2_duo/Cas2DuoExternalAuthenticator.py
@@ -0,0 +1,182 @@
+# oxAuth is available under the MIT License (2008). See http://opensource.org/licenses/MIT for full text.
+# Copyright (c) 2018, Gluu
+#
+# Author: Yuriy Movchan
+#
+
+from org.gluu.service.cdi.util import CdiUtil
+from org.gluu.oxauth.security import Identity
+from org.gluu.model.custom.script.type.auth import PersonAuthenticationType
+from org.gluu.oxauth.service import UserService, AuthenticationService
+from org.gluu.util import ArrayHelper, StringHelper
+from java.util import ArrayList, Arrays
+
+from Cas2ExternalAuthenticator import PersonAuthentication as Cas2ExternalAuthenticator
+from DuoExternalAuthenticator import PersonAuthentication as DuoExternalAuthenticator
+
+class PersonAuthentication(PersonAuthenticationType):
+    def __init__(self, currentTimeMillis):
+        self.currentTimeMillis = currentTimeMillis
+
+        self.cas2ExternalAuthenticator = Cas2ExternalAuthenticator(currentTimeMillis)
+        self.duoExternalAuthenticator = DuoExternalAuthenticator(currentTimeMillis)
+
+    def init(self, customScript, configurationAttributes):
+        print "CAS2 + Duo. Initialization"
+        
+        cas2_result = self.cas2ExternalAuthenticator.init(configurationAttributes)
+        duo_result = self.duoExternalAuthenticator.init(configurationAttributes)
+
+        print "CAS2 + Duo. Initialized successfully"
+
+        return cas2_result and duo_result
+
+    def destroy(self, configurationAttributes):
+        print "CAS2 + Duo. Destroy"
+
+        cas2_result = self.cas2ExternalAuthenticator.destroy(configurationAttributes)
+        duo_result = self.duoExternalAuthenticator.destroy(configurationAttributes)
+
+        print "CAS2 + Duo. Destroyed successfully"
+
+        return cas2_result and duo_result
+
+    def getApiVersion(self):
+        return 11
+
+    def getAuthenticationMethodClaims(self, requestParameters):
+        return None
+
+    def isValidAuthenticationMethod(self, usageType, configurationAttributes):
+        cas2_result = self.cas2ExternalAuthenticator.isValidAuthenticationMethod(usageType, configurationAttributes)
+        duo_result = self.duoExternalAuthenticator.isValidAuthenticationMethod(usageType, configurationAttributes)
+
+        return cas2_result and duo_result
+
+    def getAlternativeAuthenticationMethod(self, usageType, configurationAttributes):
+        cas2_result = self.cas2ExternalAuthenticator.getAlternativeAuthenticationMethod(usageType, configurationAttributes)
+        if cas2_result != None:
+            return cas2_result
+
+        duo_result = self.duoExternalAuthenticator.getAlternativeAuthenticationMethod(usageType, configurationAttributes)
+        if duo_result != None:
+            return duo_result
+
+        return None
+
+    def authenticate(self, configurationAttributes, requestParameters, step):
+        result = False
+
+        start_duo = False
+        if step == 1:
+            # Execute CAS2 for step #1
+            result = self.cas2ExternalAuthenticator.authenticate(configurationAttributes, requestParameters, step)
+
+            # Execute DUO prepareForStep and authenticate for step #1 if needed
+            cas2_count_steps = self.cas2ExternalAuthenticator.getCountAuthenticationSteps(configurationAttributes)
+            if cas2_count_steps == 1:
+                result = result and self.duoExternalAuthenticator.prepareForStep(configurationAttributes, requestParameters, step)
+                result = result and self.duoExternalAuthenticator.authenticate(configurationAttributes, requestParameters, step)
+        elif step == 2:
+            # Execute CAS2 for step #2 if needed
+            cas2_count_steps = self.cas2ExternalAuthenticator.getCountAuthenticationSteps(configurationAttributes)
+            if cas2_count_steps == 2:
+                result = self.cas2ExternalAuthenticator.authenticate(configurationAttributes, requestParameters, step)
+
+                # Execute DUO prepareForStep and authenticate for step #1
+                result = result and self.duoExternalAuthenticator.prepareForStep(configurationAttributes, requestParameters, 1)
+                result = result and self.duoExternalAuthenticator.authenticate(configurationAttributes, requestParameters, 1)
+            else:
+                duo_count_steps = self.duoExternalAuthenticator.getCountAuthenticationSteps(configurationAttributes)
+                if duo_count_steps == 2:
+                    result = self.duoExternalAuthenticator.authenticate(configurationAttributes, requestParameters, step)
+        elif step == 3:
+            # Execute DUO for step #2 if needed
+            duo_count_steps = self.duoExternalAuthenticator.getCountAuthenticationSteps(configurationAttributes)
+            if duo_count_steps == 2:
+                result = self.duoExternalAuthenticator.authenticate(configurationAttributes, requestParameters, 2)
+
+        return result
+
+    def prepareForStep(self, configurationAttributes, requestParameters, step):
+        result = False
+
+        # Execute CAS2 for step #1
+        if step == 1:
+            # Execute CAS2 for step #1
+            result = self.cas2ExternalAuthenticator.prepareForStep(configurationAttributes, requestParameters, step)
+        elif step == 2:
+            # Execute CAS2 for step #2 if needed
+            cas2_count_steps = self.cas2ExternalAuthenticator.getCountAuthenticationSteps(configurationAttributes)
+            if cas2_count_steps == 2:
+                result = self.cas2ExternalAuthenticator.prepareForStep(configurationAttributes, requestParameters, step)
+            else:
+                # Execute DUO for step #2 if needed
+                duo_count_steps = self.duoExternalAuthenticator.getCountAuthenticationSteps(configurationAttributes)
+                if duo_count_steps == 2:
+                    result = self.duoExternalAuthenticator.prepareForStep(configurationAttributes, requestParameters, step)
+        elif step == 3:
+            # Execute DUO for step #2 if needed
+            duo_count_steps = self.duoExternalAuthenticator.getCountAuthenticationSteps(configurationAttributes)
+            if duo_count_steps == 2:
+                result = self.duoExternalAuthenticator.prepareForStep(configurationAttributes, requestParameters, 2)
+
+        return result
+
+    def getExtraParametersForStep(self, configurationAttributes, step):
+        cas2_result = self.cas2ExternalAuthenticator.getExtraParametersForStep(configurationAttributes, step)
+        duo_result = self.duoExternalAuthenticator.getExtraParametersForStep(configurationAttributes, step)
+        
+        if cas2_result == None:
+            return duo_result
+
+        if duo_result == None:
+            return cas2_result
+        
+        result_list = ArrayList()
+        result_list.addAll(cas2_result)
+        result_list.addAll(duo_result)
+
+        return result_list
+
+    def getCountAuthenticationSteps(self, configurationAttributes):
+        cas2_count_steps = self.cas2ExternalAuthenticator.getCountAuthenticationSteps(configurationAttributes)
+        duo_count_steps = self.duoExternalAuthenticator.getCountAuthenticationSteps(configurationAttributes)
+        print "CAS2 + Duo. Get count authentication steps. cas2_count_steps = %s, duo_count_steps = %s" % (cas2_count_steps, duo_count_steps)
+
+        if (cas2_count_steps == 1) and (duo_count_steps == 1):
+            return 1
+
+        if (cas2_count_steps == 2) and (duo_count_steps == 2):
+            return 3
+
+        return max(cas2_count_steps, duo_count_steps)
+
+    def getPageForStep(self, configurationAttributes, step):
+        result = ""
+
+        if step == 1:
+            result = self.cas2ExternalAuthenticator.getPageForStep(configurationAttributes, step)
+        elif step == 2:
+            cas2_count_steps = self.cas2ExternalAuthenticator.getCountAuthenticationSteps(configurationAttributes)
+            if cas2_count_steps == 2:
+                result = self.cas2ExternalAuthenticator.getPageForStep(configurationAttributes, step)
+            else:
+                result = self.duoExternalAuthenticator.getPageForStep(configurationAttributes, step)
+        elif step == 3:
+            result = self.duoExternalAuthenticator.getPageForStep(configurationAttributes, step)
+
+        return result
+
+    def getNextStep(self, configurationAttributes, requestParameters, step):
+        return -1
+
+    def getLogoutExternalUrl(self, configurationAttributes, requestParameters):
+        print "Get external logout URL call"
+        return None
+
+    def logout(self, configurationAttributes, requestParameters):
+        cas2_result = self.cas2ExternalAuthenticator.logout(configurationAttributes, requestParameters)
+        duo_result = self.duoExternalAuthenticator.logout(configurationAttributes, requestParameters)
+
+        return cas2_result and duo_result
diff --git a/oxAuth/Server/integrations/cas2_duo/Readme.md b/oxAuth/Server/integrations/cas2_duo/Readme.md
new file mode 100644
index 00000000..4c85284f
--- /dev/null
+++ b/oxAuth/Server/integrations/cas2_duo/Readme.md
@@ -0,0 +1,34 @@
+# Description
+
+This script uses CAS2 and DUO scripts. Hence both script properties should be added.
+
+Before deploying it user should do:
+1. Put Cas2ExternalAuthenticator.py and DuoExternalAuthenticator.py into `/opt/gluu/python/libs`.
+  - `wget -c https://raw.githubusercontent.com/GluuFederation/oxAuth/master/Server/integrations/duo/DuoExternalAuthenticator.py`
+  - `wget -c https://raw.githubusercontent.com/GluuFederation/oxAuth/master/Server/integrations/cas2/Cas2ExternalAuthenticator.py`
+  
+2. chown -R root:gluu /opt/gluu/python/libs
+
+3. Restart oxAuth service with: `service oxauth stop` and `service oxauth start`
+
+## Joining flows
+
+This diagram illustrates how script join CAS2 and DUO scripts internally. Result authentication flow can be 2 or 3 steps.
+
+![Flows](./docs/joinded_flows.jpg)
+
+
+## Configuration: 
+
+ - Name: CAS2DuoExternalAuthenticator
+ - Description: First AuthN with CAS server; 2FA with Gluu Server's Duo
+ - Programming Lanauge: Python / Level: 100
+ - Location Type: Ldap / Usage type: Web
+ - Custom property ( key/value ): 
+   - `cas_map_user`: false
+   - `cas_review_opt`: true
+   - `cas_host`: [hostname_of_cas_server]
+   - `duo_creds_file`: /etc/certs/duo_creds.json
+   - `duo_host`: [api-abcd.duosecurity.com]
+ - Script: 
+   - Grab script and enable
diff --git a/oxAuth/Server/integrations/cas2_duo/docs/joinded_flows.dia b/oxAuth/Server/integrations/cas2_duo/docs/joinded_flows.dia
new file mode 100644
index 0000000000000000000000000000000000000000..03fc3fee072988a0e831001d37ab535ac7d8c694
GIT binary patch
literal 2240
zcmV;x2tW59iwFP!000023+-J^Z{xNW-OsNOoUMoE<u~glMW;pa77ys6?K)6w#a1gz
zhNL8u&HL?-l$`iWN*qg6#{(M3V5HDIB6WGr<-J$Rk3W4~CBb8q7jc$ej{xCO5T&zh
z9;b`z(O-Z5_F0X7y7~0uJPv;_KZ`tE1?C%RVUMmy%d%YmFqu3(J)z{e2+J%-N&J9{
zX!5@>Ny3R~G#TA|3WD7Z=3yDybDOhaS?2NGLm35WxQebvcj4@xMV>vR^HJSu({7d}
zSspxw$@S>!zWR(Nn{Fn1{k+llI$T6|c@+NB-ZeHKt<ULt9p#7JuGU!*n<nM+`lv}u
zKlb09Hk($3X_PK*u6|}$^(AdiZ2M}u&{mLg73PaLJ;pI}lhhMIkRpVb$>3UPESZFt
zIr%u;-LP=UuyFaXaB*?F&hj!3<MJ5tF3XZAOl#CKe~8Y<DQ00}Ozf>;br{8cT$b58
z*MA=-#VG@*Prt6VkFMNB9?#!ixO**HdU=ZH<?{Bcqv@)9e|FUSV_d{{Nz`=paa#7)
z{c}IvAKsmcy|-WQXbp95t@1Ee5s&!C<zev<&!gfUGuv;|($jL&Z1Uc$AGSMnV(L=|
zVqHNb;d7L4y8p73>0on%H;fa6vod~sIog?%?C$SqR&ECSM;WH`FrNpXgD=_F(bfks
z9!NaD9{rB@C+l!{rZdBXN3*rgUQJ3Ms-+rhge3uWI1k4x(uQ((cL<W3VT9=-iC%$N
z4MYskloAAD3<PP0#d)w%60L4$S)LyI3q238LaNy1c#yB^#gPO85>twm=2AfitYs80
zmSsB_MG6#^LV#jeQZC4OV8t?fx^3_!-xtc}MLpSC@YyB}T}>J|q9Di^Bg&N$4sF^X
z5m6&ygJg}`9FG|yL=xuGs(TsZDP|1<DXkSJ*jP4KOet^HO=kUDl0D6qVP3Y{HR)>C
z5@Ag-9Rp&7VeQba4HB!7s5D4Zpome<$Fx3nY1q9C@)W}sh-kv`_QM<+HXx1nKJZN#
zcIz&EKHuNe91I5|eqPUI^z~?#4jsIMHf=LeZSD8k9Yg_s`S}kL6lJsyuAn6z@P-rJ
zwj;~ZvI*3l5AMTNoIIOr3)5m`pr5U`XO@5c)&E4vV^qeoaMvmQ_!S(PTI2mu`{uT5
z+~<Jq6H}ugVMM5=V}b<it=n_p_O};r#Go+l24ptxi*yw=-_t04ST*ds-r9LJZ62J8
z3hlvJ(p=Ph%awHNENLuiQ87qUVw@$dR3$2BBcJRobswY`6)!5gqC&i=I2RR-025w`
z%HF#5qT*6iSXWUY90AqJ@+}sOIusRygjI!Pc8iQosex34T2bL=BcCQJy$sTeiWilu
zU;p~uZ&ZfT6rvDO0*t0`y|-+=rt}ij{nIXronncNrtr?1@_OGoF#BnmvOxkQ!D`AD
znJJ~|x6db@M1~`g17rLiNCZ0|k+$?}bxDWoVtXkkF1A^gre+Nr!YPiH*voH%rJ<;e
ziI!RA<p$f|+C;~368NCke!OeZl?f?DiYQh^GYDl4nb06fSs_trkfsbHkXTnCo3oKm
z^R9atr1!49cfI3X`-qKmVWa|S$wU>g*;}^WyLRba%kH^lU>e4sEz?uZo#vKnB!Vy)
zq$w~&F$fDy7~l&alrLGi42oGEugk)C6^~I+hlD-7IH#9ZGxdJ=pni8hp0MhnA_gc^
zW55UtA)Qt)YVm>uLfVQLv-7j{i}uiQK}`2CdPmqh!oDD8=z<vFT8_c^HC*`I<v_Vh
z-9zpY3tNC__?BtMsY@_G8fmRDt5TPkC~GiUYsZ<(&O`Ky;uXawE{D!JV8JUvp}xR!
zpvVf~J`$JJeZ%MT`pJ3A4G`sex??Xuf%~+jr;s*N^wE=x$y(}vDQgMPL)ua@wFzW!
zw^>V}H$cE`(h_T+b*zRv&RKRIq4%r3U+q(t1E(yN=1>P}xc93E@~iuJ99C$~#}W~t
zv2go1Y=tC{AO>j)5-}mcATy&V;zA<7%diNtG^&UN1(ss$nK~j|c$#sax@<95?|grA
zsml}Si*~0k#Rah>f~BC+DSg#Q0x@ckrdwo!)wxeY`oO^VMNTco=*j5<>nectP!7gz
zp$#bG@({P=1bBnQC8-K4n3ilzaCPjqvZ9AU`u)1!ulvf1p(`sW1~LYX6cAroF;Ha%
z@E%Gl2nJaZF6M4aD}dKPoO4@Q!5Jf!rf}}KvZC_{y`p$U@s$+=r$s4~+6s!)J_0;c
z1X%P?S@Ck;xYK7=UV#+Sz^6O7LP=j);VGom6n*^UVk#?)f9s;O;she>;psgB*w&hJ
zqzDJ6;hI+@P#kQyMlcvxFW8gf;-1|r0;t?9Pmt~-%q=GB8S)a-U!5P_(}+lH_T&Od
zuAKhifh`h%L7HxlmBvDO@6D4_t1)_V`j*M*zi}Eh1u8o~1I7R;N~C?g6L$K79Rnm4
zA!9&VV$P<FTSQ`CpP|{Aew_7EZ=-Zxjpv+EHncR}o(5)HQgyDIXRKhhKD?Z!KW+4(
z0A@PB4f8yEYBxGUI(B`VMCszKXzbY$#Vy1;@!t0l`q6dL`Dqs>5EoFrvKJF@S(W#K
zWY&%_NK>ZGf2@s4%ESe1MQB}l7u+Y=lb3kc65nc<Ug9rM;tBL2@q|{-YG}aHvBpbU
zJ#EdUR954OX3W-`Qw(eXk#8Jlv&t(Xs;10~{P!#Jqz{qj)=~h0WZ+ojd2N%NGN?qJ
z*AHt@d<iN~yvh%(@{NY+RsIrHp7x;fLQ+wu<tTNl@`6yXNQB^OCl8EO$42bki+uAi
z8$}*dLaU}{|KUil@)w};tOu26n6SFe(&^jvc91{{X;offrt8I{iC1~A@+TRlSNRLf
zB@*5PQE9G8wQ&_r3&D1fDB*nidJG6_pGx%H)NYHOoBma9s*jWKIm&N7)d%Khk%z0B
OPyYv=e{)6Pi2wlpZcW?(

literal 0
HcmV?d00001

diff --git a/oxAuth/Server/integrations/cas2_duo/docs/joinded_flows.jpg b/oxAuth/Server/integrations/cas2_duo/docs/joinded_flows.jpg
new file mode 100644
index 0000000000000000000000000000000000000000..14cd1e787bd20f181315c7adf6c88fb35bf83cdc
GIT binary patch
literal 31807
zcmeFa1z45cwl@4w(kb22N=kPrB?2PS9n#&Ui%^t?g@Ax`i-1UXmw+@#cX#*Ve|Y!n
zKChnd>~r?{&p!K{?|b!nE>xC_ImeuH%rWl!9%Eg9zn%qf9!bkd18{I~fC2a$xSjwW
z04TR^A>TqmK}JSKMMXiwz{kWuN5>$+yN!)cK}tnQK}t?eO~=MaO~XP<PR_)4mxbd#
zH#avGqksrMr!X5AH|Ncpz@eg|VxVIXV`36>-XXuk`FH=iZUAsm;93zZ5#VS5cw9IH
zT)68NfC>QMkigO24EXn7aPSC-NVkwtP|?uA7nI@v@NftS@Q4UVNQj8wt6zZM2M}?Q
z@b27~xOH3E5ShjSpVK!o6@^x^sFC1l|1KSuk)t0f8X*xe2`N1TBh%e`+&sK|`~rdx
z9!g2e$jUuZd8VqSuA!-AZ1UXH%-q7#$=Su#&E3P(|JCb&H*W)jpi%FlV`AUO#iylb
zWM*aO<bM28TvA$AUQt=q)ZEhA*51+ibzpF4cx3eZ*!bN1!s62M%Iezs-u}Vi(ecUY
z+4;@9-~fcbOzW>R`(<9Z;Jn}w5fKoPZ{`ID?*={yxQIx1?%%?bP)0U%xJ|?9i-Ip1
znOf9{O3U?hm%zxeAB~WXdyanZW@^99>_0X!zyH+C{yMRLnb$agfdB_C9s({P2ArHT
zrTGX5Q4#4)Zs1JxWJ*v(_gwY7;%ax-Q`p_<;x^?VkPWT6-zH@NY0^xmkklrqh|UhF
z@-7>A=O!*sBRW+ui}3ELwtxGr%6zUy_2VQ)`2&lL@mE6yc69Y+k)gvwjzrAp;jH%c
zf>E({6&ymrYA*?f4Qq=_qBrZmSi1<65}Qfei9TR_|Ij+YwE!dk;FbUyKMB9qn1=1B
zE3Et)@OfaiM>D<VER@S?%erN^#So*>^KOU9dH*f0k55NMWZ?6s{NJQ8UC}>kltHU<
zs)9E$vB!}btr=rOCyLj?tlsaQ1eDr{>SE|6+@Xvz6M1jW;L649p-qK!Yw)71qqCiu
zu`Dbxb#l!87ABU)W`V6y5#eT(Er;xcL%@QN(%|mL=ucZ$cGmzvQ1AwuWHs3YI=564
zsGKeyWpRT0by-ppF*HJG1$o=Q?_AYthjP_52HH{FJ(yXngF^akmNSK=Is=`IlgY%O
zrLb$#kt^J8j=~kWyf!dJ&f3;Eeo(Pu*p_W>j*{={Ft8R?lOIk4-e+N%=jB0j)wf*A
zN}jRL0V_}YVGWV3%vI7CS#26Q^bRx!A&ZpA_+soEN(U%s*MQbF5SazL-#0fT+Q>7(
z+5qLxXsyZOpBB$VkSn*`p1fZXl7vhhRG4`>p;$NQg1+&#z<T~mC3LE0!Xn^OR@wFW
ztz#qPj!NnX!BG*)sE?Lay>GeS5A?8zl~^auFD)D2JF{=Ncq;N<;QOulW|D7M0wdSJ
zE4OE)Y=xO!W?6a?A_r62XXQ`ZbWPrMJRo@7(v=)NR8CFF1gmF1rO{^I$=(3%H&D07
zBGcqqSCsWBKpx#gN5;*Dg-%eW=9UcF_eD<=%91iYwt+(HZHB<@3@?+=<uD<Vt~uBS
zjrHWJz5Q1denw$cVsD|3<$g!`49l}G(#{2-(*kzStF-O+w$N8(Qzy+>p`3gM_DB*1
z?n+OGOlrM6wua4$O3LmFhosrvQ}>{Cgu6qbZ9&V3xVH{zxCZ=0lOfCXvk5Vxi~}xY
zZ*68PB5mo-qyoG=?$~z_#67C=%eG=R@R1cDA<%=6n)9xPoj?g}7E4?QDx_qXzAZi5
z6mJOKdd*Kqj<!6z%bRJFJ=1Aumu{iuJ49RiIcU(q51vLNQ4Xcv-L4b;^4XSB!)^2o
z8$q7RvKOL4BsNRKw$|?urvk1zL=9}VqOH9s71%d+uK^LHtCwO+xf7OL)6GT$79){U
zlQB;s<;32-!h@qfE(1t};oaAsm0+6M=m`x~mB?FFlVz19(!B4Yoc-947yVS4*hSet
zay;>q_Il^sXxZ+CR(lSj#=KX6!CQVr|I$hX{tjCHZ&FfoFGM#U4b-(e8Csa*2H*8N
z+SYpNVdiSyw@n9C66oQvDsq-$)o+iNjx)=V$Em7{84!@g9s6bkl^u$a;E;?XljUb5
z7Fe}(+sg{Z%r6<`)P1nhV#;*PwH*l8=y9vNEe^(rhK2f#8GffRzIO5ao$`xVh4O0o
z%*gyw)Wxuc9%)rp>#wvSOVMNRqM}9INNv++r;MLe5e-g^ck=WEX-;WnmAlyCS+kb<
zKlJ%ZEb#S9h^uhCyxm4G3{G(-dF>iNT+7~j`NrlWZvyK={@2G5a={*G(%bkc7Vw+8
z69JskN(d2_xP|Mk=U0gV=^2f7HZQn8k9QHw#YjHkf?r$mN%<Jn%!>+)^2Up%f3(uO
zGr+n~9Iikbn$T-M$QPf+Z}1|QvI)x-uA-vN$v@21n!6X5J(yvbM@WQiPQFC#fd0}q
z-{zn}HiUoL9-ZPci4%a2FH0Vkx`JqB7mf5w;rlS91p$9P{|jwUAf|nqIXi=8b$d;)
ztoYb#mG><2MU2@*<pV5L6k!~9p5$u)y?k!v3PbFS-r*W(TSe$&Dipg0UQg^Ezyhc)
zp%vG_f-|IP>(t{Kcz_L)(}C<&0f%VJz1P5;>!t8Dkox8tpeqnNoub;Uen|=GYrY1c
z>QtAuJ|gfz2iL%<Zaucxs^K-z$s7*jleuJ@d6Rs|aSbd+w_gKfDcIs^HP--)$ga8f
zoEWnIXyF<N?f-L3f7<CEyq^lh9^M=b+zlKHLB-<Z;I$JEhZiv>Q>F5hngBVx2haB>
za8mgH^anZlR37%|q(%QC;2KyBC=@Rg+l{@9-g#Spf_V+}W9s>eBjGFmmp+t``I$53
z8Lawk`fDJKuofOXpRM)#>U9*5N%?EwA*&}6fUhj|4|xcBPbXStcHg*5Ug%v=O^9|a
z!4`V<Pi!Mqb_^ECiU&)b306R_0a=XLs6XDh2GSQ&5MX#SZy|?|#rEs%VEB+G?LBN*
z;2W6w)-}*n3m*jBxFGqLcR*u-PUq`Y{i*UbfNIwwcFsU`rVmEuXoqM_2sh4*^%Qhu
z4?*w6d<_0g=90c12Q>M6$kNN1OXfbN6l~BdzAB%my1I>hSvUcDNUGhK%Lkx|K;IU9
z0og4SPxArY;XiFSq>ylLDR6Et!&5e<F<>3A;e*S#YoL@C^x&!_u4l?G{h@*<t)57r
zBM*iw7J3U_0~N8bw_2b#2h*pU2ONHrKDg2}*T5tnXbc`#((UZ4z_~3YwSDiM&*Sn=
zOSTjBMuZa|$jykqVLHI@Kwn?GM+BRzKfjZgvNv-X)q5NA{T>)6OYs1X$CN^Q)7jbD
z`eT>e2duVfnyHYj@3$5W&^{1!bkOE&{9;dMN<{GOJm!)wkib-6HM79)pK8zl&gE5I
zK7BKv&!s$YXH*#JD$y#}66ZT>`*DkkjRzL;*Wf50)UCmMPbqNaTE)(w^_x~j*TC4#
zRsDy!tZR=glQ(ouSN~bL#<&;r-2z%oxO<v7pOF#CO+16<4in|)zZIuztjBE3X8IjZ
z3%wnYa3*HXF~CA4X*}W?ao>T-tpwI@61ad{IzAj8(kZ;#d*zo8IeglO3~qfQ2rR?y
zG9ewtb`4y~&Ybb-`APxcfG%~ff%C}vecSNU>TBSL7P2_yiG&Xa9@9OyYhYa(y!flc
z=E1W%6nYIrxvb(pK?Y-v)|qP{m+Tr~SOqs@{Wb8E52i4hqAX4c`7ixRvFns{r{Qxw
zGLo>#@TNlJT+6a^uNSXvF@l$GL-`_*frDQD`C3WP!_6mOcIqGVe7^=Zk5<9q!&q;&
z_U;C3UjO`#RUdQjrS>&I?=?4i)lz>bIhyj@&4A3l5KgG$F0VM4RXk8%%2s%U^65_b
zh4>qGYNPu5h%QeA+Vx7qfAKe>cdvo&=xe}OHyqXr`tO@5|KyOwesM)V4E;xk#PrMA
z`Q79{d!+O~`XYkgE&r2)4FB0Rs{g(M|6RkOnw=rB6r~;E>0wms6Duk#Nv7=%-U@c8
z?ol)RnuFkjjd-*bv<ccCyou<&=Gm{BA%_pt|6=>U>vq<I?3Kghu)qy!3+`4?!9z6g
zS_rM*mvx!B0C#EsULSIbvJ^h>$_JGZaN+r8kwiUQ>Wg`l6b#p&6@jt>J+a=QbXZ2I
zsjc?%F+sND@9okhV{*ASh0<7{^7!+f^qcGl>0_-KlVjuIY}4Cbad=8hFNV!unV4Y5
z+Cz?uF1cM`^@VHUseG3VPud~*QX=p2tg^)qWCS^!9BD!5gTM>lh^SCt>*@FPY3j-n
ztJr?-lQ4M|kvuKSB=hK9v~<Ei$$;KzvNy;R0=TC%E04+s*`2-o&WE!e=f8Mif4sk=
zvOLErxzquPmboYRbPYy2w8?{BtD@9@NI|-@=_o}}`(e9p>QM`UM-jgFU1Va!#I25P
zoBE?`0E^a6YGjAqMd5+`khMW+ZLw^IU9nEwf=QI?%=<JP$I!@dMURh3w0k2_a}&A}
zA9N;lG#_d%1dN!4h;ruar*Ym9pmN_OCN~IjdsWh-E*~`KA}>#$<a&@@6Lhu$T~=vi
z!MOh#L{!NE0KQ0AdA3Jir)p@ReRJG#x}dGj|4E|esObP*Df*JE?ALA9#0uJI_yGR#
z^F-RyV)-|Zi))j&B7<wro}iPA8~etHK2bQOnw|)g$;o*WdMP+6XB+S9>J}*6;wK&W
zI4GZT4a}JvV@YV~W*sq2*6WBzc*HheNG<s2k2TVljC{5{;qCuYq*7@bh_JG#|E@ql
z)Mtb(a&Ai6;wTxr(az8&TLxlsf)^Y|=YCmX;24>AXC^Vl&J6j(LWruSfcE*!WuSU_
z$Dyv$)A9lCwZejyHk1JUPTyq%5!Vz(%F~5flT)i!t9c=zxP?JG1NZwEl?G6e6>~af
z*_@1k$y&%8Mj)tsUKii$oa;LYeTY!O0!4Sk64x8VHVNunyLY>aTpP-#ZV&9RSB<79
zHMhan9PH3XYpHZL%W8aF>GN9PVa{(KZ>gggN!A@SsfK=)XOxf2A4jFoeb-LQNbktC
ze~1|FG*X(Ev>P2zm^H5V;A5jPNzAs@`=0#49$1;QBi8C5@#HO!-co1o?=FUV|6Z_1
z4Q6pnDK`)H&ylAtau}GzCAlZS8rAjB@8%`{6qo+;-5g+-5sVEmu7U6OM#12K)ftTR
zZi5$20A!QE3cPS)s?Y%DczvAp(GxzKbn}rDHQr)wZ0?h3`LC<?^K`hM4Y0dnOgfQM
zmaDXu@=IoLR-w~cYszb}yhKEJI#Tq*Es>qJCPv??35aD8@S2wuD;7vnZ7I-0=f&$-
zNbi=|(Y5w`e~I{gX33__=`-OsOU&CXqy=R$<$Y_skTD|d5U2JW!Z>_{(7pFf{t@^-
zi@Bn0#dNz5cg)9q66@#gT-Z&#OE`mlrJISU({o+ux|()1qdeRY!?eVnXV%qwK_xlJ
zmTCs|sugtO)Qgd<rn^Po1byK6O+xu7)u!<13Zjm@XlW4-%VevhjLKV6J66A~MOIPQ
z>uw9EK37xkwkY*=S*xJ*SV$l(58}?pGY#06_rKS=BB-s|V{feZ(rkaY48h;;`!_5>
z((c{1xOp;>NAm|d#e;O!)l~Jh<#mzY;SwV=Y|vhZnCw-2fGWx{r0<En;Zaagy^v0%
zsI3WwZ>f6a8FD<><aYZ&I_RkjIZlE2(i`u-o#%EN_Um1q>Y*iD51PuVwp!GA14UbL
zN=v%8XaUK#Y6SVwk9U!g`v$reW-yyllg@QK^qhPx?%!uvmK*?*tKlO3ZQBL}+N6vi
zO=NkUb0S2FiCeJIw8vT4G%$0*b&dexlDDbzM#LZ3<|0EP6giD{kMk*uKAFd;d3v)#
zGH7&#t6m+P(a06R*$>>YNI--Vr}W}aZ_lt-pC3}j)F0J`D<v%pdC64T-CuY(?frgS
zn)WLCi9D47YJpdC5_kC?{ZcpKF<%jje5Fauh>7}H0u@(U4!tWcS90?A_@N=^vdZ1f
zacjJ<&=<*FK~jlx1`XcX-X<K27z<@qVoh~~;my2G8Bcpz2JQp$Ufemj?jgY9YavO0
z->nY#sHtPZGTrw7$kHVRREl9(B;6?<Dq!d765*7uF1omw@LHqrAsHi;?#t0=Qz8rO
zq+5hqeah}fR=de$@UMa8N7q16LHjjec9YzlW?uuG>Q|wzVizL+a`bMF9~Pt?vackp
za19vb6<*;Fx&L&0!YRNwOL&j(%CDgQP(^uG>5MUn<Qn*_S_li$0#<M0#HAw<`4;SX
zt3*DTD1~QbMM0~XLs&grTpiU2c|QKQVXkFdeTUf=b$4yFcA9(a&@v1140$Gy5vw>o
zG;~&|_WOMoK47REiD9polWv~JBz$T#VzXW-c_$JVBZc;DBHfMy$!?nRW3zAL+QTG*
z3p!H%zU}nl<VU{wDOT^boXy`e8GNNc6_65`8ltRBwWvR;zl5vSKi{m^j@xxlP#@Y(
z8wA&gd5o=4H9MZceco?cp9Rl%sQCUp(OoL{<HoUFSe}dbcxX(@=in>Bm5#U+L>VTg
zg0PQr%+ZGXP<x5Rqfe_fR1VLPLXJt(+Vix9w@<jV<7nQ0n^?jmb`g>{$ia>*arF3B
z_9ne9nqo4RNZ+ci_QRykx7$X=HfZn#io<9hK_fcK31rn5>Yo~l9CDP}k#}N6<>{_@
z(q9c|(l=#J)9hmuG23DY_ftQ4=JzOMA!O0CyN+Al%6xo5YUpyY>_T@@`K`vd6cnM3
zt`XS^2dCIjiDW)!`ch0VDc!@x!_6RTUSQ#1i+c`f@YCB4Ld^$})T)MU{m_qID(o=I
zx^ySZqsc0Y>C|J@(j@sQVkNSBP~~*#*!!O`B+lMb@)Kv2!N72J7IWg@N^CaXO_Z;w
zY>1(pmv6_;&H=OLB<HPRXeNp=-S(u!0lxP~hZzLK%?-iG0q%sv2b)n-pHOtud?R@K
zhb}kMeS7t@tf0ZoT4AY$8!`KntOX&X$6wyVI-2Ce*@$Jw7-m!Xs1XrGh)rDAY9vy|
z+`}JVARQ7ONG)f)Pr_v))41*9iB}yfQvL)+A(sEDe5h;pxW3TxTy=4jlxWO0?T(>#
z;8Xrg1Hhq@RGQfSa%-(Tx5whtSS49&w=OPsiq1l0_=`ME3szr?$%62F%78Z?@|zk_
z=PN=XbRlR;$%ZMsaN<;?rrf#hLYRB5H+zQeswh?I!1j(|HE#}0m_~lLfH**cG{HDS
zyQZY@Qa`^rwMYv8DMByo=MWo={*+)Qg%_lokYmq7v>Ql(5Iin=r(mk%z<z~Ox=QeC
zyw3!r1%a@@zw<_SQ5zUyBKA=-nJ2^rSZ}xS#df9l<gRgyX>Fjx-f$C{dW$yA(IMTo
zxQBJW!UQ+6&89r4Y}IL9-v~^}bIGvTdp2ND>X{E-+ifDn(_aq7Fsv-><~Bt1FGR@{
zu(7Ge7(MisCCF%ECIgGajqLeM79zv+*#lex@YZBUAY)vX$>W&Lrgp;E{EEi7))Oaf
ze0Hl&VZ)wI9xr3{GeH!iZENs+1_me68@xl~cMYhN_m9}zR*IglsN|zJH6&>%B-ciH
z{*){)S4bNn%aeIau~%Vm{CwLcW*xa3zsN`yjX<0}kPZOopg@7zO0(zAv1#_)g&d36
z7Z+4hF-xf0?TL0S!bn7Iw92z&D<T~e6N;Mcjd2xy_ZNp3Uh>+>6@+AQdh~Z>*J$87
znn^I=sC`ui&(8v4FTgEK(%kOp9DfuLhgpy|W2wm}w044G<Z^$Ov%~`kgk!PCH%LOs
zi#+X;jJBP!BbTwlh{dMWew4G<-dtm?j+e9jq+EHO8LPdS^eF!-bTR4ylXOMkR`!tT
zhlysU;BCcKJxPq`pBr9WngGmrkXuvcl(@rE-O61QVWBQ|Nd3dM*=G9e2smQf^Bu|&
z8HWuGsjKyc8=vP31`b3J<n{<-^Sij!h_Lo0KW;<C_we!)3sQ${ANU85Ad{2!?8$_(
zdh@V6;fX#PZVA$0;f>;4K&BE*ze|72#uZs}d)wXX@laSUL+M8u3q+{q0}Fh@V(t{0
z7@O|Rw~q1)wjB3|R)WS?`~phnHC#y8YzL+!k!6pV-}jQRmMZ%dJZc`KKwZD3t>#L@
zw!Rc<)iNFyYjFNaP}s==XCl94px1s^$xm@f<FQE$0y2gQ-F%gSBOJv>)E-t;q5k@@
z(e$WdO@F?s31PYVfaHK8Hs&2%xmtC=H}b&I$v3QkbD4+pUS0$rlC_W5?5x>7eieob
zh$2!#=GZ~x4;QixX69+6zaf7=<3Ybee`Xt=(}{CElrOZ^DlSAq$h<pUxwa-7WzbNC
zBlroxyX<GW;0MC?H|c^OSl!>G3w~g1KhXuFaC?071)<zpFAHZOcuJJzh;`4p2&&T*
z;MA`H4LXIw((tcXu4f_QogF9V2asSb?6<;Z*_!Ug62T^pkJ#7?mgCZ1<36yKZV)wH
zCTUu+ct{5{^daA$qZ(&ateLQxuNK=ptGostm#DcbO$%qU)gY1Eb<$m?)h4yUdR2<U
z_M5iRt2Md4nA73W8bsJP`}?6>GWT54?y@&clTSG0G9FLu_V&6F;}lMlOLYk2o&-Cl
zgsA8I1|c9(D86`vVhrml^4m7^=BTLTpkYJpGzjzb;lMxIQZ^SXKmHbsm9qOH@qJa5
z-DGNH5H#Pn(lH~Tp`&p=N;lwqxxJ%g@Nh~}Ku$i`Mp7+|Pf|ou)T15ABd3NZLn+<e
zkwVmi#^PDW#BBy9|NDldW{7F<_|CIf$l_HTo6jxvak;&Os7l7$U%185KASMM&!yoG
zdfk8dg&cD>w6YhVdasu5UMwU3-G<U*z~UjqbHJb|PISJb)q#wXqu|*-|DrlW9ond9
zD>p}eQc_Tnu&eUA8xi4vY!qF}>qz8?bYmtIl;*=TX={bqTFDo#^T+1YNn~epRTUu{
ze9D<MK{%XmBPAar$Dpu&J{E?12HtIj8!&Rp?$s2K6LrcB6=ZI^kcgLsv+^M1V)2+x
zGSp277;s(TU&-d-jh)wJ*R15w=(JxkjHKA24-<HTgHHS9wF6Y(si*%yB?Y?t(2)ns
zeKU2?nrCApGq%SpM*V={NtTEYQ&&{PV#IylB%T^p5Z{y?!YGzO3VrX>e$1@<$SX&)
z3!dbusxpcW2igb2`Z4_2<fH7fS0y&=8&AX17qkyYj)c6pANng*m6bXtD<z)<$kC`7
z@~RTS>k%P-uwBzdcdve^y_SzTnPeg@#d>VvU1oxmh^J7k+kkv8qZ~O5(@g)==y>D8
z%A{;zYdkt}Qai3fwkEM*Z|F=R#4KmgHQ!=R<f%}X{N3@EHA1a-=dV<l?<eVVb<^-l
zR;%Aq>-vkpgs3T2|J3f3)^&0<wnb2-v&imA`S(^B2V{scd@y@MeQPCbd7Sxe;Qg<@
zebM)1X=(jC&PivZ8nmFRq2_k1q0Ne{C(p|gfF$*I?%%dv)n8og^?1VPsG_AHAplrI
zhc}?bWFn++<GfGn7sO;VMO|#c4$SD9jOWm|5Vn$yFVt_`I&=3#nG~ct^21iU-eG_<
zzIrnF5_%An4}!p+fS_7i`02yC8#rDGgyWIwPj8SHJrDvzi3Krv@ZLTXFTVyz#pdvC
z;CLyqYk&#7s~5y6eQ(guOB($fP#z4Dm*8hE%|Q@M9t7mUDEcx*8w7L!Po$fudN<Jf
z2A2na@H=$KUOEhy9V7@;u7Q1DI~X_I>VNl;z;XYCxBogf>Eu~<Tu76C`o{T52ng6;
z17E;Xz<|A3v2_iMv?<q_*rhH~CKlh=;4h5SFRW03|4*sGaPLo?Q9-lrpjg?ZNbZ`b
zTh#G}oK4MCb(x)Hby4I8GyaYga0UN}^^QvD*%{6%QLM$gl)g@Gsb?D*p%1`^HTi5w
z0Zg6N9{|DO{}&hVkFfi%yG}h}ZY8KxL`F72XK&{?v>+kp!OJob>DYTvxgbEr$tx{E
zTd(&HZtahxnG;OthU=KOyFk)~tY)P*B!jsf*G+Dxe}!L~n`iNPLy+e<)_#D6sBB-m
zqd$U}Irpiw1WDr|PjllgluX+_f9uk2LBk*rUWVNBv#JyV0Ne)P#(hNaek0vglaEAC
z!J~jobp`TNd1C7?_IhDhVi#yXsCzZY(8WUXB{}36<jg*SVEjqD*eO4Velz_L0BC~o
z;!YT37gPm&2RSpeVp#SJIT*GrfNA9q+MdAdN~uoZ8fa|41`K5`@AaN1dplhN{^8(;
z`JMj%M~?*IC*+=BW$%))7}h_y!!E2kU;AK_$YJ^c=5ZQ*c=v;7`bRHhi1``g|No=_
zI`v_~j1Kc#LW%*ss<5uA&qFlz0SlY+*20E<ml?jpzAGYvYGS|msozcdv$LZ5*-ia0
z=}*oI@{{NMVbY)cXaBFR^T!JR>_BDysY4R}8NgQuf&W|UqU0d(udN2+fn|23cC_8G
zn^tz^U)7YGije(~0q33g&EK-Hn@sE<@gV$4E2t+-xjVJTn}uCIC~&t_!s00?Jhslt
z7>w1w$C`*^U=p+K<(x<LFRa$@hW;zJ<qY{3R_pf_|3Phmi}X8x_G6iUuxK)W<<EYs
zZuRdh+Mhq^f1mY)!6@VpB%yl3_$j!flEW@V3fyCquviNsk3TTP55BSEWlbbEn0>u1
zbW|w&8@hf2@%{PyX@mdk_dv0*3`8_~E>Y!4S%{oS{--GE3==|CI>^1jjOQ4c8t@qg
ze*E0=RiEbv+|0NPGsn%(y*-!OiazQHt1Ztjd)Q^TXOW>AFWp|s+2*~s0AO)qvu9d*
zPN$lETpQV6H&d<+bU}e0-_3vIH>+fa-jQyLpMz0}rY}G+f{ozr&G?SB;N>^2FW+Yr
z4MQk9DX-pg$Ts;l(x%ds@IbKFs^)xVnrTI<2?J!ap+u4n{gJ+#*m^0HL(`w+A3Awj
zds-J+ju1UP4VK|($87CZKhG<s6E8ZzGi2UU8~-|?V_%D`k~v#g${X#%9qwvvTIDv_
zx*2wW?u|icMqg>u%}4&)fPYOzZng)@hIhHioh>V1DRSAPFxx{T^(!{dhdMYCfESK2
zOu>AuN}()@JkW-I;f(;p`mq&MG(gQr)GzS_OvyItd|S;)v$8X%Qe3|X>TcIUtW~<~
z1jxJx>}INMIbYdK>{OSkhPR6{FrElH>Pxs;o)8i#e<$`&t1-;LMO}nSjWO(INVfyn
zwe7A|w?LAY)jeQaehBINyxB};)j{(8Q(>pUOjB&&)Zr09X_X4;yH}x-v&8sc%4p86
z0awo8CS&4O`oZ%xn6VA-4CKHBMlteyh&!)3IIn^&qbxeICgH9PiG6BW%~NQ{<cY9f
zcCC~CZv2Mpxv*z+x2ID<YWk$5t8yzD0$eCTldOC)2hIXZssM7B`&P*m+n`*TIV+(;
z!P3-n+_IZ-o91MUu@5rcF0jhXi;c8O*gqvj5bWW`AyQ4NBl|T{Y(}=xh(={KK?b4k
z35Xt4UpDb-pK#dKJkMK=(3i=f|8OFSE@z{VUsC;K@=^cm=NLT<1C?j?+9|-u$?H<D
zD>d{+2zo$yf{EL$CM%xANB)ucV}^c@l4KV|cG+}JA&+V<WX4$$lg-QJH95Ds&E=j5
z%=)zi5DV-y<U02-jLHVcZoTZAHnwxCsD!#1`-onK^n_r=wTkdCmLCmXenW0~$+QPQ
zZWYt(bSs*s*|ls>E?Worx$Ic<d=(b08@25?z})*Zo0kWhXrs!yE30)$Phaah{bU;j
z<+`DxPFcrjm+8JDj^DO6-69sI3qlhqdm?wZop2sU1UHv%4;}NeiRkyZAchAVXX3Mw
z({YUc&YE}11EHrLxbIa*l`Aw!Ih~3o<tj%-2m%qx?y}Ywawg~}uNvu{7V7xzC|8Ct
z6AXT0x3QT<HF6LR=4?$)a94fKc?~$PWD|F8=f#%oy5#OrW`3Mue)MHZO5_u>6Z^Yr
z8Y!f-j*!nLba<%b<bM29p9fhEdrPjusMxo-O1o$73uRc_3MX;-Hq0k0ZFIp<!o?2Q
zJ~>Z><22{2V|vD4jK8O=fy$Z&777=#JnUAr&-P2fdFI-|M>kZ^?q6t1RD9Moe;a^s
zZ=)XXR&#w=up>TP$aHpv;r82<vX^I;^l&6@t3I!ak%g+$6@RjBB?x4UfLlBt3ZHvH
zqwvI%)$Z>5M~wThL3XGK1$lFI7we4c<VsRaKLsmf!)_nqzPLSAJp)1-Ttu68^Q=}a
zVwS_~Tae-<ZL4P`)$WM2opQn>XyT5b;F0)wlW$n1&9`)iyi4M$A=`!vsc&!SzTj}6
z6U)(IH5^@9*{ST7MdnS3^i0*%nMA(L+P8iFO3|NR6P^Q)oiPB>AaZi#^|xdzw=9Kh
z1+)Z#R1RVJXfl-XXU4<}VfSpdORpf09V`^MLhSI?&sA%WGB1ze=gH(XH>c4B=sM%Z
z@1s7TW*d8ga7*0H<TWtl;9lO+lQ~5<ZWax($YCw*PHWBHPct8pU>uu^9;@5cVR=I`
z>4_s)-HW-#2Xm+_ogREZj?tw4l#rL@J+)t^29(%fr5^rcp+EOS-v!wn<s=9D1BP__
zV(tW9ldn{eDZrSY|D)|z{RU*8o|ze<4SC;X_10wuIXL+08J!qcuba`nCQww_Ary96
zp~Jx%d4Mq}OmLhvP>>b5-4imZc<x>sIc;d?>({+l&RQ9;5b+6_;@;6{fOA3*@&%rk
z2Wj)2AoM_j;9D~l6*i08XMv1#`%Y@kQw$SwVGqlod(9uBT)cQXsU9%jr;?CSzk=wG
z+OI}7oQAhjQfn(Xj%^zZWN6rqOyA|+@Y&2I<E&AaXt7<yoDfIySbw(MmO6jsrV!`+
zy(X_~LmRRBeRKNMV>bDiG14>ZX}KmG-7b?4zKsPb?hm96vLd%uqD}E`1z1&Py!P&X
zGjaR=!wyp_CUQKXLAqVrU^?DCPJL_|F0`t3K6F}XMOUFfKEai=B5K!G`tqY?-qDqF
z;@CRoQR?a;TjQWs=MD4;Z8txS4@xxMMP|#>1e%ZQrv%p8IBhiC!&PHjA!FyheqR|Y
zVwm!u53Z<16UeE_Cr+zC0UICqTXVw-8vl`#)?d2&E!HgOs)~5~apP3KNlm<Ly6Lz1
z$YOj+$Cs<*c!H#sGoxu>SrB9Sq}89b8~@~*jY7Vn(^j+Gv33tbQ0t~U-kBIBk%fx;
zS(e}6l%G1h=@X=B5CmV)LGXnU1YiDIeUS}HB8foo1q4aQz~m8K36{Zr1HOQmX7P^{
zk}&y7R__LU0YOqTnM+o&^N1P{eDQ<8zWvB0wID}#+(8%!6xLoPQtg(2f=o#e2tvIE
zE(Cwz1Qwt)^EC(s-M$8n!9tHehx4a(euEJI+&ljlovhg1<S>>?ZI9fs=FIgfmyv{}
z7ikoaCM6fTG1QkZl%#t3*O_zvVE_cS*eM7A(!G(q2Fk;)sOW#IL1<(@qZ1^$s)4MY
zf#ntd2!!uH`kwz93H-I{=D*D{>Zflom$Mh@k<9Hkv<hOaAjdl;q6yB1uKV*cdNRm}
zZpgWLREYJ95v%&gdtm*`V){>|Ilxa?zu4Trp!|Q8fB%H_gH<elg!zByzkkB|(_ufM
z{6Ey_f5iI3PydMW|IniUfpz$A8%f@!aKORiy_ryFfzo{SXQiJnu*YVeR&fcQMGBQO
z`a-?n`qVSje_r03`}98tF(dTA?rTh}d%C^aWTyoyTx#UaFghzjJDS9sX(J<)9u<MK
zi9A?bi9T~C<ZunNGyPHC2WlxiK;rT)J6I3N4q4m+DHQT_7=A2R2uW1G?+Vf^VSinZ
zpWXyqG<vW&^YzYUB3Rn95dA~g4<>xqfaD2GaT2okRcubqTNo_P^tuKZZN*NPek@8x
z9ay4S3sz#3Q(ZcSpFY(Gi!=2=G1NpjOyI}T{x=S35k|gS7CJ{2_C>?o6=G5v)hunQ
z#Ix9y5P{kS^<=ut8@VYoU7mw%Kf4Ads{X><ph7_HR`4}oKXZjMe52j^sSN2az67D`
zQYL%aJ$!-Alj@RAa5>f}iHazJyKC^)8dBrqNIz`kL18TSeC(fgF4cj3{mDJZ7FfaZ
z+uHok+~fbK)3%!=-@CbkH#TjlKK|yru!M^l#^_+2$$lU86Ac(+2u9RjYR8&-&k`Y<
zR&`)x`hWJ@%a`g4FK8R>vdc=!9kld>vL|SLI`LWZBFGD=%Z0>|`9%N*AHhfWYD2G*
zvdt)#UQZIaelauYlckexq@H_&jEH-x`g_>^(K9SB+x&QbL1l>5+Q9TXePx`{(<z4-
zYBT@#QYAYlq@@x!-eMVHyd3wXz-H#$RS9xjalC%zUI(O4dNwWn&6G>J102dR)NoOg
zP~e1z{x4OFYEmnKhY9G*#T7})_lSqTYCl>HrA3l5Q@!^|9t#y2k@CYxEv3N?Ukje7
zKipGHdv;*$<s1DIaKrVZ%lw<)`3qBjiztMByJQDTp6A2#!vO^h_yu!OS*VocDRuZe
zu$hB{D!UEqB~|*gWz30IeoNr3)`0nAt3tu2;*XhQ?gZm-y#KcSCdAoIt?Z=i%lOm-
z^5cWMax{?-m~+=rM5K(hPlcq);z=I5L2EGbiN;;f16!WU(we(bWBAzf3#s=RYPbnd
z2rj7A_R|lrE{(8HH*E{BA#SmTPEF<cy_AVEzKdsz5RE8PZr@|k;B3K-zFb?ghm~xX
zts7HSUNw|?u;4_DPW2wjRaLh1T-CLUgKBeBD)-dv(eRFOZFSJB?!yE;E3Zle`<lJ?
zV@ghE$ttSLyQXg(j4?AJbnycgw&bYm5={?2t9!f?J?7`{H1_rVt^#(_*cj3uJ-V_M
zYYNPLFlVKl8yGrG;iq_!@r>oM<)&QMt8rAieQbsb%}b?uuPe9aW7Zrk3%980`_Q%*
z_m+7d%P@9Te9d+AuV%RAN_ko+Uo@D1cp>)X;V9liImRtMPM!O``tj1H?PXSEFdQ-L
z=n!tcf_@xBsKTSABn(I|Bd2Y6-xjEYiFZ3G96X2BcZhaLOPz%B(Cx8KC5Gnp+8MiG
ze)^mh>%{d)gH|YT@WkOY7S;%2Vm6)0vpSMJ(Q=4O>NQ}=_Q7C;g{~^p#@N|hlh*|A
zo0}h%FkE@Ih}FxDW<lNQ%&Sy7mHfuB`ma?n-0!ldIB7m>-iP%G1A?m9DDILI&7RL=
z<4J8EF{}E?#V>0{dlKTl5u<@3qv4Zd@#CkjT$wjs1E8UtnCBVa79PGXE*~tIMkPNh
z486C!V6Xokj?NlDdUsb(k(?4)^N44d_Eg1%*@{njMj~5|sXAaPf9XYzEJm@d3nO_F
znQ&<7ke-FB)~g~p7wq?aSG|coRGj7F9!o^~?UIgD+H%FC+-ofCBc^5Vj2;Hf%gSTD
z!V5t~77m#mxM0PPUsftI>JQdz=$11kg(|(gXIW_c94qlTMP}vuR-C4@LE-#xS4RyP
z!zWcfw^UpOy7#}_um7rOS=Q{gVyl~itH1NPDJ%S&n)%-aiXO^EMMZ-qBP{u|{`yfZ
zUz#!Ym^2IEYVPe7kyo90eZdCU+}otH3Taw1FCXDiWVFe4Y*h8&8;{cA9ua)kUM1y8
z%4Ep2$<UC1+%={jQtS9qw-6PJz{pt0y-|xTS6}CMejxv)vbvnQS$Jf1U&cSO^leAu
zN)X`)tO^qONG+M~sP-EtCYRLk5jJjppkaWfH6H!jN#6t^$Q=zi65%%avsYEKOP-hM
zWS&ynAFlySu)a(qR?UV-N6yo=FkZ!<@v+Hl{P+64l2A2wvmxg^vd$DxGfdxFCEI_H
z{O&WI)0*0fAM<-Uzj?YCl4lu_9jVbnAvhAVenL-<6x?9-c*f~^GBG-$c`x!-WBAV7
z>dm|eQ_(qfn~iJv8XXSOTS7umB>~|uM*$s63({-g?GdK8j)!_v`-QZZfN|_*pdGnI
z?X$w3l{n6iEx7&_v&OfohIY%}qz`5cMoA2ew8`L!d>Lz_HKiaf;7~${Pq;vrg$)Vj
z3~WkghP)`=Tw5_FdkNzj469{|jXf$qLzai=Lb?})89!M$>A5@4tZ#W&)y2^d^_AeJ
zypHN>W@tr5_CR(JK5Tzv*HYc1AlhtY!1EfzdtgN0WPj}464#3N7@mhN2S<DEe3cTq
zyNbeYK{RH5Vt(2r3REaK$0mlcg85P*Om5wSG2g1k!p45}V4{^dd(uq2)dRE5)A8fW
zkJy%u#m04?=8p1dH|u}_ql#E%&atU6MD4g}a!AHQ-j2_aWV6oSc66e8+=gXT`knJF
z`4@(ryO<9{wxz0kpQF7HH*ip!3t%><^+SO&89xamWl~iI%i30%YIinZl4BY#@Ren6
z>ckUXUjvmYV71`}SULKii(h{JZwH_-u0sDJTI_hc7TyP~ZO?gN!ktSe303cI`sc&}
z+3$I@DBt~17I8PUd62de>(UJ!p1V-R**TC&-Ls{2{M<-F9)@kHpi4mbF3OBC`%@Kr
zkaLgd`2O+ypz`2yl7{VeM#X(Ol5nj2JEp)6b;yEm2>Eh!K(6~V!7lmowufnD9O6n3
zJqSxlzl&%W<D;hZ^3^qso}1#5j*<H`|Gt;zl|=!YNkx>wYU-k?L3%--L)1We$!=Yw
zaZdgr;eKF5QJ~(kdJx`>dpp^E+0I4p6noii%jBbz`U3_*5M<U^nDxpLrcXO9a<N(~
z6{_6QbLLa*d&C&2nx-Ld{RCl_0M1ujPI%?ho?>S1S`3bS)<hiow_NU~5&6P9C}Lt!
zB-o797<U(3JrU%QUzKRTkYG0|jSze^*p6HAu95tWfb*;JnEWnBd`hL<y!fnevrkfZ
zx>qS4N_BkYl~80AKYsTyZDPid`KSp+P+gef!cPVvu<WxG%qr*2HS@~WG@oCVcV}gI
zE1=1!!{mV)xbMTeL}zTbyEvglVzri~Cp6y9(lO#kvNW*$DV3F_i7zBjarqv~op&dz
z_j{G8UL9&=1(=lB?@5lVaCJN^Dl&SQQbyltDki$Ek(5>JB8D(7m#UDxmTw=*T{aOv
z51W@PYQI<c%+%CmmfWVDe{G1T{%9(^@MsAXb?vabyFD9X+di@pd&c`kXKfUnD$$Be
z8p<qPfYoMtPkPhXVJ+#X-3oSR#Maw^GA?@^I`M!!kXUJxxs7D1vYfL53ppm;zG33-
z3JK4upkCzjbnO~m<*GpPPTDT!F1iqLvbevJZg)E~#~9Ma{hDF##=2jBKSIMMX@98S
zasHtoH#l8}J%2*@CF9_rLj91*h*@QjM;a0IMG~26Q->DCv{oJ<xk$(|hU_0U@Ht~Q
zEaJShEk|^QV5;j=6gO#fxBQ(a@Jo2&*#KOK+7`MM!t@*{a70eNWVr_7MqzE$J6F)(
zMCfy7m*47-d1fG+V6t;_XTT-rk6ZGM3m=aw=3d2mUwBvd7Jq{25#QeDL#D><eY{c%
zrdvPjtA0qw|AxNmhXnm^>#KgK*?-no={fAB%Z--QqiSR0x^G-)cUP-e8F5z_u*}J_
zX==L;t5MHVYD$nVzQERWOClfO!89FJt1Sv!-tXs~;BKjEKDagcR&m%n=d59>futb?
zJ4qDR-D+OP4QJYX6wgACCG3l=T_cBLMw^_55{st88!|^YxYif!K%C9Ib|5X(-bZ#X
zRm!xT?k=5g(ir~{5B*>4<U2ouYcWkSm|9zRA&{84|EXoWC^!1uk?Y(ozUSfAM|AML
z$TDEf3IEfsXQe~<+=cW#34yen)x{M$w;N3PDI9`Ub29ti7&mXT8Pp9hge|DQkTbdv
zY5kUJSlG+0Ej6T_r11r**oLL?*{tEYHKNs|Wvp4N0%l#I6}*f{%0T>r?t8Lequca%
z(7K#z;)uNNTb~f$sx=MD*aCT-;l>T8F7B<zUGq$Yqk7d9!_wtm1j7+E77x{eOxsqS
zUO$mEeEUuIiM@E<H2e@!+n2s;z@i}kZmC(!@u((rok3{ymMpo^RPU3#HiWRI>QJu7
z{&Ifi1{NgGD`J*HUg43-ur(N9akdk<LI=<HQ7vbVhW59Vl>C^%J(xEcCstOnG(P&2
z)1WkuDxz$1CACd_*1$okbn~QYNG<P^KBngj#r0`ehfW=JNlP{PgKFFyc)Tx6h)@Bc
zP|r|&=No#r9=FUxNA%7}Sj2c_(qbgqsxPXL)N*rN(NHq~+k=r>(ec}M78ti=BHDsp
zPX%)s7}F)mo#dKlLpIJ2DtSRRKN5^-{)p&&gbCFb4~pLP7OAPP_8S-x+hRRXq7EhE
zU?MSY=%jwhV>}ys38g@XO^Y3RM}N2UBn;0#(;pvK4F$9MWcDrBHMZ^r{z)t@-@(48
zBp_jcI^z#&rmaBR?HXfW0|YXcj4#2jsfD0Ox-mrTQk81g&s_}mS^@k=B=A*x+>j>J
zS+Gu?fLrX62z*gXAKahs^1sn8I`zKnn@3_n`Z$FwY_rv+Q5Sr_rP(bQSj6`B5>&5U
zeqDN=)GTu?(ZJ<vz+_F0m(o?Z_ltIh_TC3GbCNbCeHC%iKZ=<Do<Dokw=r+L;8NU8
zyjo1s%`XhJUXDACD#e%8n02&=TT>JJrJ2|dyy~ZxV&OkG6Z?Tz{oGP4{pV(4Ke~$i
z+~o|!(Eixq%;g7$_EVd){{dr)I(2Fl<O_Z&*a=CUeo-(YhDoe>nH`SBCP9k@x7vJA
zr~y{?g2CZ`2omc)V%1jYuM^F0%gxc!XqYDY{zdn3(OtXJ+ddk;9}wD$3W{O3>yfX4
zzELp8oo%Cn-7B!vBkglZcwI5ft-yQkq7Y0!{P9tvqavJvBBv7NaxPfg@u#c!f7FE{
z^X)?2ZSyY;9qd?~B-n%4^#o`QzOGB+NRZ>mcpg5=&RP?+4YeIP*GslAMi4y?8zBgk
zH^7KU!I;H*@mlBa=2ZR<EK+TF<Aez3Hz6Tx68EnIBf^^jn2)7{p>j>H8anA<JjOp$
z7e9)K{%u(IM*-2lL0#bgC?5J-B+8TD3!45GiSp-2z#@`gh^0Sm@~2Jy2b~?bUuvN%
zA*iR6y-j@aiHm|+c{x*-dg|j0Lj{Q6ygxU-G)OtLc1rTA`X{T6{?HBXkDcNE{PRC~
zT?!O;T1U&OriLp9QeKFToKLsO`?^1DUB-=gsHcZ=OCtFLIlRMosjaY5hSqxX<M^eK
z6;J6Fi94Ybuz6u$S6W_ag13yc2$7MNg<wx+|Gv?*3cFK{&mA#eGBaCnDYWEKTgsfE
zU(;-|#3F1Rji~Mg(DKvr7nCawvmDuouz$)rV4eJo(a|CCRMl4v$VJ4F078@pW)EH2
zlyxp&^7NVbdB8?FwVQ7%nn4Fl!X6@G_E%GD3Oq+Jv|cn8zz<!p!9=v&pJo||)!3R)
zthjw&Jkuw*Yo@_PL=evt!3QfKXlb;)3g1<&cxvj*jwiz{gxb$SmB!m=sphjPXEsZt
zLz_dSil%#0)5^1ve0sV3^nnC+Cl*eY$4Oe1HcOJ&wGESU2==r627>pPx#UN!T_X9u
z!-h!d)t*-t$4|}`m-y1;QqS&-FjF;C@_iZQ4%TFJBlXvOQJ|4ll3)cF3R9Cf;E+YU
zV}#nSh2Y|pm-czEb)0K_N{9OdC%>SVS14E@HFkynvGgiMIga=^mTW_3-nnU>Ro+C+
zNRqq8OqWYV85CKqf&VT|9u|s-P#@AbGu6XUy5a33Z4c+QPw`EQ5@i;+aR;Oob`cTC
zJq?{Fjk65-^P$WS<5Fv&vtNrmzQv3<=@1Vl$6c1%_{`3haruV@1Z)=E>LKW{(BmB}
z#YP+7D96<qr@O$H92w*)34uc=-Na<q%gG?8dZ5y?AcBVOr5V3&N@PX*fZR1oj@H8j
z6*(qHgMcwYoEDkZ-*>HoZ0H%GTg>_EcSJE!EF*&{(7QOhU!^4oL@+h@ezfrX-}aRs
zQ>Ib<B#F6p$f#t%_(E!{w%ao`vTn>a@{?h@>i#)z8`TET{K3C(qJFm^&jFIF)pV>s
zrWJijH28SC$^G$5y~Stass~GK#GfZBcI~;wl_dwy4?(dJwn}K}?npktQI)K9U8hyP
zLaxlcZkTaKnsu(idqfiPixwQzh17|@lH9{u(S6i-29H8pTl@k|$xdcL{|`<9BvkoU
z{W2hHA=Y6tHFLfJvp#sYEBfX5i*&NdAe25#gJpiGfGyu7N#LpK8J+6>6MW`UP7YAR
z8FFZEF+RNVmW4-GkyUhNvv0C_aY9G9MsCSQD2_-teZ@B<tR{YSH9fOFUut9}Mk2-P
z$)v(u!t=ptncb<<=;4;)3S9VuToZkkvqZVZyM0bQ&U@}&$|bRS<zbkD+s#j2KQ>yI
z?sR!gv%e@_!6a$&**fHEQ1>~$h}|;p)XtUjH9#A`TNa$Nrf+?rO`H-z(`d?bw=jk^
zW$9Jaz0cpC*{t#|y70u*VGhSi4Y14&(Uewx=`Ua*ohP);_=3_@Wsh~MxfeN$xiald
z;n8~ili;QA2MJ2>QxjPkohhfT<3b7A=19@C-5<mHJGuwB^YFgZ5#!9sA<2wX)niyx
z1;l0dP^NMT$q7LDLl<N9Bn>eAEC9Df!m~GIMSW-!X^AaP@kjxs76lvXTCdBJDM~NF
zkLZ}*T5@3~m4;Kn3zIYxSm1Bmcvhn{*Q4@m_+@{#jGY~=coADFWx7boZeq)2f7-i5
z8ARp?0mB)d@5+xxW!dbhb_3S;-Ib&Uv%Mgtt5J9TJL=<+szUCBv(hlRzYkzUuP`yD
zyB)Nk2xhWg68?&Vo0uCD>v+N{mMT@4y{Igv&StJ_A9B_`)zkZ>w|CC_+_;2=G7{07
zt6s)Dzs>UrolKU<+z6Qtt63yZG3ai&n*-Q*S@!?>a;-nh694Wz^&hh*n8kF5z)o?(
zBDw3+N{Pp0a<<<26K<Q56Hfji3nYyxm}tyBo5F4jwMvR*^~I+a%UV+pi$THV#AnQo
z1_FNO$OsuNP>=RgYu6tV@W0ji`bR&2zt#Hsha&yo?!^5=kp4G2asLB{L!f8(_T{}n
z9ts)?rw0A8k*b(fOutEpwG{7Y#H@EtB|nffCD@0Y@ptMG{-9s*5PMxCx2M!PO<pp}
zLc442TCROex8Y1~<N6>1mEze+3bw{?pLFoQwD6m8PbpCJ?x{?3tmo3@OHAm<sOh1v
zZE)hZ91c{3JglRQzgx@k2iyJo{}=2vQxCQ@WVmT*I0_50TxCxFrQ7(wY93zsYhx3z
zOTIdH-JRjWZQBXy{`~DvHm2s37CSYu(S36*va|*bRIx0bP;7}F3Tp~B=MuHs?h)+4
zw}NcQI`2EVQu*@oooPFK*hDIh_kXx|D=$AY|4>jN`B-XXfqZWrDN71i@HXX0Swx~1
zxTjQ<f&~p)Dd~YcjnxU48$QhQVh#kG0qL97@B#O}<S{REk2h2uPGSr1^@M7-lBxxA
zJ@BA!j5az*Wc{>UaX(v(>&$WjuCdYD44DEGTgsl-yuj+wURh#}yV|I3MbL6T<M%Ye
zvbe+y0~C!>0}Ib1DeBpCQcZ8Kxr%38GxFig-|Sf#80aQDw8U?p7;tjfd>@zL@5r{X
zMwXL$Akyu69PT)6+!k1KcE2P<=HgyTjA+Acos)n|3y@9R2zF;FG}MT7?Be;<QNYJR
zUSa^RZfq=Yb`_Yp2pZ;4O*F7TE^lhRY=3P~ljn7Zzx4nu*D{a&%pGd%1mCC~|Ay}=
zHy;}COJj~-lso@<)hz(F$^4sg@*9_RlL{BO=?w9_8a?b`mP=}zDoCk_m$ThUvO6;6
z0MKcSg?a@<?&TK-vlZl*nDX|uinQgjC3sNEzcL@uZ6yow>-R&Yz<%6U3ai=VEvXz)
z)_J`W#Dn{BdQHuKf~+`K#@KwHnLvtngR7Gok+5OP2W@4Egu+TjW|#*dU*9~ws1&+A
zO}uSfQ5u>qXXMy*Lh?QrBLur!0+CV>&g#m$<&ZC@;3b3rX_)Pkb;*lIm*av`4y>Qw
zm?$=IJf)N}ZoW%*7eU0Gzq`N2!NF_pieY(0vM%ar{j0BKG1H2=1kXzHs&wu>f9Ksz
zM&}?SAJ%Rr<>;o5!@Wv#kotMZj#?Xk=y?pvp!JjchLz<U0%Tav;HQ0N7cyg3Y=U(q
zFk<zqrz2aQaepv@tMHB57EfJeD`QNnq(VQ<R@*}?msUWtvT_M`#{0U5WGe7njhQyd
z*gQ-!$;}IGXtyrU>yyRPNlToGW+#fJ)@m8s?hfHf&0EAiO6a2qqW+nL2$o>n0OGY1
zH>!WIL3}ynii+Yl)qmRzsQTZz0-Ic{o^JeSWdC1|*zr~cd738H<EImhg&2;)*4Jo^
zDru?jBa<K}8$ScP9t!P3t}s2RU>JtrCd@%dNdsNMsp2IS_yIP0Z@}&}#E{dEV*iD&
z+LxaRb9+g=x161=t6(utfxHDbTUEkTh;NHqmUs6qwYa87qmh7NAK*1b5I(m<V6Mkp
zY?Y6#;&;q*F^7sxDTm-l&beaICjO0+KmT{AqQFgM^hktJIe3foG1b`9saEq?_}#eo
zoj$};OAF?vjb{fwip*eeyjkLoXEjESN-jexg$^n=JetzryX{eD$pIw^8TmKbL^%a|
zz3p1hmuuNR6zR5OxTeicDOhlu*K_;&Z;R8SFC}S&d<aYXlpV@V^tqzWs?yMJ=Ia4w
z>!%_PJl-Ljg4Cd*Sq|da12DiiXGZllPA!enMGxF9zIxwyEKt|Kyx`i)Xcm`P&o{N!
zt7vilCeX&lo8Ds{g*M5Ybrz~j;`h)|g*sQVIyTZjvYl@4fvY;Hx+`x^0lUoJt9ki=
zk!@<iB8>-b%UQ`h#oJK1+h)<UTuI8}4PCbz7S*<50}m4=H4OdcCAbHK<?+k*AFi*a
z#%bzGJSYihhKq3IyjyChe}1Xp$;{iUKX8PyX;M;koBsH~_G{=H)RS;U;D~=~L+hE(
zueZfb`{|!P@4yH9=O$P>*MP4W*xlL;)~Hs0e%C4`1-{bChOb4Ct~{pdndkGK*R3tF
zxN<HIbdK6_#Ki@z(s)42=d-8+{x+-Jw6N5Hc3eh3Mlb0hM6ib!D)z+7$&8uaV`YZR
z*ZT+Ml=|BT#r!APnx|GzAh=rV2dn3VaW3e>QB!M!mC(a41Y^|q+3=xc|KFw+arLh)
z+Y+$l2A}_7sq~JVuiD*bi_ZH@diSR8-?w|e+!NT!+$L_(5;L59>=E$TT9sM-NB+rN
zHT4aDD^*hV?UM<&&?~`L#<%@B@A#jU()7Gi;Ixx@n(XJ;RuPjK<re%uoJ%Wh)EB+H
zym$YtFP>8lK8Ziebk|Mb__T>4Ha^b6t#^zJCvhJ0iIcm!_?l_2(5dtOt?R$EcrTwG
zFt1+4)AWFzl#8x$!X#%A$wzy`y3EUK-OKY|?>%$Y-8*|e-`Qmcbylk1{Ig?8<UKJS
z_EY7@ocSEiS*NY22tKs2BJEa6<T{l}?#kb%Pxe_T-ojulz;|Kifp1S3V?{;YudY40
zt+UMXEYsnrE!Rs|uXVcZ-*@X@>MY~@vQN9F_9`>1>~vQ&p7U`|!q;_uU795u4h@3p
z=Fqh*v2NePH(dF0*6r50N0%fQDm}ZnJWNQ$^1ws`_i5JiwnqOGWNmiaymj-w)O}la
zXFu6J&))dV-0u8zSM3S+l0R@9bF&Kfb(O#VO5D=_hx0orPQ8??;=gm(xBj~4o)@M%
zL4BI|DLudQ`cIYX{5)9-dv)bqcW%C-Z))rIQ{R+(smIJmEr&%4mzAwjOjDkg<e5CF
znt?UvqJzw`#Sea(+6%d^@-JMT)0XkH%k}ccN~vZ1)AX48C(L;wV##xOU$&Wl+rPZ|
zOAi(nFO56Bbn)%m(towjcii3(KlQN@&k3&nxnAF;E7yJN66-oxe16%7b<54R7B9VZ
z=l0FaOBoX)@A%5iaoTa;AhkWawYMR!#m=11wwl-9ZR?dUoL@SXS{F=`*9@y@S+zr6
zQ>*GhLp|5UMeVCL%YNPU4|r0VGV|eoLYHfdvx{cME}gpf$eAN&Wmheiv=(i8upzMT
z&!>vB)`zXk7A}g8b*^0zb&qph%FbZc#g1E-l$Eg?*||mc&0yY}chT?BwrRl8uL*L5
z?s|Y;-a*O*5^QlxAFgGO+!5Uy>~cAOc?fXgJZi}rag_&RERR(_0@pGAQJ4o>QWFeX
zQd468$F~Hyjt#gDltUe~^d<zf^d=T4FYHcbb#a>2ANs>Te(%XQl`whj&;6q`=4i&U
z3+~Ftc2BWr&@zjhUijH;f=t2&rhVOu8i2>Uar`m*u)XQq>18*5Za+Q$%j-=lvw!T8
zVVGkWKSj^Y7<l3q<RTzT?YqWD!sYa0ouX~^KKpM~ej|9YUd2twP0r1cn{DzW#=8wx
z36uQVyGmB~MxDB4U9BCxysJ=6ZO^oelNlZ^o}~~eJ*U8urRUmPk&+GZ(R0}UC{|s$
z5OXW`-ccQ^zG>IQjZIJQxpv=X&1_Ep`wXhw(=<F{=J{z`hg>k_RX=<^e7acJqp!<0
zbeUNly?TFE*h@ZcpZ&XI=5<N0d>yyY)#T0lzj<=|uibyrC-wNyt+kip;_lqcoP0kn
zUiEbJ(mxlt3np@0IbJBme*d_7#)+i8>{jhgSC)QYeb!l6rnYa#mU*I+B4;_Y9?lI`
zl%AuZSS~oZXX4~oU6EZ8nOiQuDV%k_W&Qj2YP+}3yPD#it(d2BGT3y_Sv~1K(M@b_
z9#0<kW#9YZ9JPPjzI~tHtob^7_tm*J%hUVr+RRsMC~DZ8qjOV>t-v~M_b%YQq3d^e
z`@cSQ+<fVe)Gzmi&Q`1!|5j5_S!U4lu4RLx!pq+MyPT|_&R#BhDbQ7%n>GFQuJmvB
z+qc@PpZipIH&b`}?CoV|Uxb$#8TUMw1fI_;W82<nQ@$+o+BLCyp+CE$Bc@3N|K?)e
zD#EZ>byESuYv3Xp)J2KF1@@>X$e|tGc+nNOVG!S8nSl=MXy?YEAASftkP`g>I@-G;
zYtMato6wc7tXytA@2}sITXNS)`s?<8$Gc?DOP=^Sag!0J?5{7t9>A9_XnH1jRQz+b
zeDk)d)H!8kaz-DgE?rZ3lSgVsuei$OR?fyro_{hHHRzxnn~1iR61aB==Uz-;RI;O-
zm592d3ml~QRu6!q72gsBiY#ZXeh>8e+&R<A{{g*zcg>9ZJilg4lx7i}s@dGc_(%H^
MxnWAAKKuVS0np_cb^rhX

literal 0
HcmV?d00001

diff --git a/oxAuth/Server/integrations/casa/Casa.py b/oxAuth/Server/integrations/casa/Casa.py
new file mode 100644
index 00000000..5c776c54
--- /dev/null
+++ b/oxAuth/Server/integrations/casa/Casa.py
@@ -0,0 +1,673 @@
+# Author: Jose Gonzalez
+
+from java.lang import Integer
+from java.util import Collections, HashMap, HashSet, ArrayList, Arrays, Date
+from java.nio.charset import Charset
+
+from org.apache.http.params import CoreConnectionPNames
+
+from org.oxauth.persistence.model.configuration import GluuConfiguration
+from org.gluu.oxauth.security import Identity
+from org.gluu.oxauth.service import AuthenticationService, UserService
+from org.gluu.oxauth.service.common import EncryptionService
+from org.gluu.oxauth.service.custom import CustomScriptService
+from org.gluu.oxauth.service.net import HttpService
+from org.gluu.oxauth.util import ServerUtil
+from org.gluu.model import SimpleCustomProperty
+from org.gluu.model.casa import ApplicationConfiguration
+from org.gluu.model.custom.script import CustomScriptType
+from org.gluu.model.custom.script.type.auth import PersonAuthenticationType
+from org.gluu.persist import PersistenceEntryManager
+from org.gluu.service import CacheService
+from org.gluu.service.cdi.util import CdiUtil
+from org.gluu.util import StringHelper
+
+try:
+    import json
+except ImportError:
+    import simplejson as json
+import sys
+
+class PersonAuthentication(PersonAuthenticationType):
+
+    def __init__(self, currentTimeMillis):
+        self.currentTimeMillis = currentTimeMillis
+        self.ACR_SG = "super_gluu"
+        self.ACR_U2F = "u2f"
+
+        self.modulePrefix = "casa-external_"
+
+    def init(self, customScript, configurationAttributes):
+
+        print "Casa. init called"
+        self.authenticators = {}
+        self.uid_attr = self.getLocalPrimaryKey()
+
+        custScriptService = CdiUtil.bean(CustomScriptService)
+        self.scriptsList = custScriptService.findCustomScripts(Collections.singletonList(CustomScriptType.PERSON_AUTHENTICATION), "oxConfigurationProperty", "displayName", "oxEnabled", "oxLevel")
+        dynamicMethods = self.computeMethods(self.scriptsList)
+
+        if len(dynamicMethods) > 0:
+            print "Casa. init. Loading scripts for dynamic modules: %s" % dynamicMethods
+
+            for acr in dynamicMethods:
+                moduleName = self.modulePrefix + acr
+                try:
+                    external = __import__(moduleName, globals(), locals(), ["PersonAuthentication"], -1)
+                    module = external.PersonAuthentication(self.currentTimeMillis)
+
+                    print "Casa. init. Got dynamic module for acr %s" % acr
+                    configAttrs = self.getConfigurationAttributes(acr, self.scriptsList)
+
+                    if acr == self.ACR_U2F:
+                        u2f_application_id = configurationAttributes.get("u2f_app_id").getValue2()
+                        configAttrs.put("u2f_application_id", SimpleCustomProperty("u2f_application_id", u2f_application_id))
+                    elif acr == self.ACR_SG:
+                        application_id = configurationAttributes.get("supergluu_app_id").getValue2()
+                        configAttrs.put("application_id", SimpleCustomProperty("application_id", application_id))
+
+                    if module.init(None, configAttrs):
+                        module.configAttrs = configAttrs
+                        self.authenticators[acr] = module
+                    else:
+                        print "Casa. init. Call to init in module '%s' returned False" % moduleName
+                except:
+                    print "Casa. init. Failed to load module %s" % moduleName
+                    print "Exception: ", sys.exc_info()[1]
+
+            mobile_methods = configurationAttributes.get("mobile_methods")
+            self.mobile_methods = [] if mobile_methods == None else StringHelper.split(mobile_methods.getValue2(), ",")
+
+        print "Casa. init. Initialized successfully"
+        return True
+
+
+    def destroy(self, configurationAttributes):
+        print "Casa. Destroyed called"
+        return True
+
+
+    def getApiVersion(self):
+        return 11
+
+
+    def getAuthenticationMethodClaims(self, configurationAttributes):
+        return None
+
+
+    def isValidAuthenticationMethod(self, usageType, configurationAttributes):
+        print "Casa. isValidAuthenticationMethod called"
+        return True
+
+
+    def getAlternativeAuthenticationMethod(self, usageType, configurationAttributes):
+        return None
+
+
+    def authenticate(self, configurationAttributes, requestParameters, step):
+        print "Casa. authenticate for step %s" % str(step)
+
+        userService = CdiUtil.bean(UserService)
+        authenticationService = CdiUtil.bean(AuthenticationService)
+        identity = CdiUtil.bean(Identity)
+
+        if step == 1:
+            credentials = identity.getCredentials()
+            user_name = credentials.getUsername()
+            user_password = credentials.getPassword()
+	    identity.setWorkingParameter("platformAuthenticatorAvailable",ServerUtil.getFirstValue(requestParameters, "loginForm:platformAuthenticator"))
+
+            if StringHelper.isNotEmptyString(user_name) and StringHelper.isNotEmptyString(user_password):
+
+                foundUser = userService.getUserByAttribute(self.uid_attr, user_name)
+                #foundUser = userService.getUser(user_name)
+                if foundUser == None:
+                    print "Casa. authenticate for step 1. Unknown username"
+                else:
+                    platform_data = self.parsePlatformData(requestParameters)
+                    preferred = foundUser.getAttribute("oxPreferredMethod")
+                    mfaOff = preferred == None
+                    logged_in = False
+
+                    if mfaOff:
+                        logged_in = authenticationService.authenticate(user_name, user_password)
+                    else:
+                        acr = self.getSuitableAcr(foundUser, platform_data, preferred)
+                        if acr != None:
+                            module = self.authenticators[acr]
+                            logged_in = module.authenticate(module.configAttrs, requestParameters, step)
+
+                    if logged_in:
+                        foundUser = authenticationService.getAuthenticatedUser()
+
+                        if foundUser == None:
+                            print "Casa. authenticate for step 1. Cannot retrieve logged user"
+                        else:
+                            if mfaOff:
+                                identity.setWorkingParameter("skip2FA", True)
+                            else:
+                                #Determine whether to skip 2FA based on policy defined (global or user custom)
+                                skip2FA = self.determineSkip2FA(userService, identity, foundUser, platform_data)
+                                identity.setWorkingParameter("skip2FA", skip2FA)
+                                identity.setWorkingParameter("ACR", acr)
+
+                            return True
+
+                    else:
+                        print "Casa. authenticate for step 1 was not successful"
+            return False
+
+        else:
+            user = authenticationService.getAuthenticatedUser()
+            if user == None:
+                print "Casa. authenticate for step 2. Cannot retrieve logged user"
+                return False
+
+            #see casa.xhtml
+            alter = ServerUtil.getFirstValue(requestParameters, "alternativeMethod")
+            if alter != None:
+                #bypass the rest of this step if an alternative method was provided. Current step will be retried (see getNextStep)
+                self.simulateFirstStep(requestParameters, alter)
+                return True
+
+            session_attributes = identity.getSessionId().getSessionAttributes()
+            acr = session_attributes.get("ACR")
+            #this working parameter is used in casa.xhtml
+            identity.setWorkingParameter("methods", ArrayList(self.getAvailMethodsUser(user, acr)))
+
+            success = False
+            if acr in self.authenticators:
+                module = self.authenticators[acr]
+                success = module.authenticate(module.configAttrs, requestParameters, step)
+
+            #Update the list of trusted devices if 2fa passed
+            if success:
+                print "Casa. authenticate. 2FA authentication was successful"
+                tdi = session_attributes.get("trustedDevicesInfo")
+                if tdi == None:
+                    print "Casa. authenticate. List of user's trusted devices was not updated"
+                else:
+                    user.setAttribute("oxTrustedDevicesInfo", tdi)
+                    userService.updateUser(user)
+            else:
+                print "Casa. authenticate. 2FA authentication failed"
+
+            return success
+
+        return False
+
+
+    def prepareForStep(self, configurationAttributes, requestParameters, step):
+        print "Casa. prepareForStep %s" % str(step)
+        identity = CdiUtil.bean(Identity)
+
+        if step == 1:
+            self.prepareUIParams(identity)
+            return True
+        else:
+            session_attributes = identity.getSessionId().getSessionAttributes()
+
+            authenticationService = CdiUtil.bean(AuthenticationService)
+            user = authenticationService.getAuthenticatedUser()
+
+            if user == None:
+                print "Casa. prepareForStep. Cannot retrieve logged user"
+                return False
+
+            acr = session_attributes.get("ACR")
+            print "Casa. prepareForStep. ACR = %s" % acr
+            identity.setWorkingParameter("methods", ArrayList(self.getAvailMethodsUser(user, acr)))
+
+            if acr in self.authenticators:
+                module = self.authenticators[acr]
+                return module.prepareForStep(module.configAttrs, requestParameters, step)
+            else:
+                return False
+
+
+    def getExtraParametersForStep(self, configurationAttributes, step):
+        print "Casa. getExtraParametersForStep %s" % str(step)
+        list = ArrayList()
+
+        if step > 1:
+            acr = CdiUtil.bean(Identity).getWorkingParameter("ACR")
+
+            if acr in self.authenticators:
+                module = self.authenticators[acr]
+                params = module.getExtraParametersForStep(module.configAttrs, step)
+                if params != None:
+                    list.addAll(params)
+
+            list.addAll(Arrays.asList("ACR", "methods", "trustedDevicesInfo"))
+
+        list.addAll(Arrays.asList("casa_contextPath", "casa_prefix", "casa_faviconUrl", "casa_extraCss", "casa_logoUrl","platformAuthenticatorAvailable"))
+        print "extras are %s" % list
+        return list
+
+
+    def getCountAuthenticationSteps(self, configurationAttributes):
+        print "Casa. getCountAuthenticationSteps called"
+
+        if CdiUtil.bean(Identity).getWorkingParameter("skip2FA"):
+           return 1
+
+        acr = CdiUtil.bean(Identity).getWorkingParameter("ACR")
+        if acr in self.authenticators:
+            module = self.authenticators[acr]
+            return module.getCountAuthenticationSteps(module.configAttrs)
+        else:
+            return 2
+
+        print "Casa. getCountAuthenticationSteps. Could not determine the step count for acr %s" % acr
+
+
+    def getPageForStep(self, configurationAttributes, step):
+        print "Casa. getPageForStep called %s" % str(step)
+
+        if step > 1:
+            acr = CdiUtil.bean(Identity).getWorkingParameter("ACR")
+            if acr in self.authenticators:
+                module = self.authenticators[acr]
+                page = module.getPageForStep(module.configAttrs, step)
+            else:
+                page=None
+
+            return page
+
+        return "/casa/login.xhtml"
+
+
+    def getNextStep(self, configurationAttributes, requestParameters, step):
+
+        print "Casa. getNextStep called %s" % str(step)
+        if step > 1:
+            acr = ServerUtil.getFirstValue(requestParameters, "alternativeMethod")
+            if acr != None:
+                print "Casa. getNextStep. Use alternative method %s" % acr
+                CdiUtil.bean(Identity).setWorkingParameter("ACR", acr)
+                #retry step with different acr
+                return 2
+
+        return -1
+
+
+    def logout(self, configurationAttributes, requestParameters):
+        print "Casa. logout called"
+        return True
+
+# Miscelaneous
+
+    def getLocalPrimaryKey(self):
+        entryManager = CdiUtil.bean(PersistenceEntryManager)
+        config = GluuConfiguration()
+        config = entryManager.find(config.getClass(), "ou=configuration,o=gluu")
+        #Pick (one) attribute where user id is stored (e.g. uid/mail)
+        # primary_key is the primary attribute of backend AD / LDAP ( i.e. for all Active directories, primary_key is samAccountName ).
+        # local_primary_key is Gluu’s OpenDJ primary key ( which is UID )
+        uid_attr = config.getOxIDPAuthentication().get(0).getConfig().getLocalPrimaryKey()
+        print "Casa. init. uid attribute is '%s'" % uid_attr
+        return uid_attr
+
+
+    def getSettings(self):
+        entryManager = CdiUtil.bean(PersistenceEntryManager)
+        config = ApplicationConfiguration()
+        config = entryManager.find(config.getClass(), "ou=casa,ou=configuration,o=gluu")
+        settings = None
+        try:
+            settings = json.loads(config.getSettings())
+        except:
+            print "Casa. getSettings. Failed to parse casa settings from DB"
+        return settings
+
+
+    def computeMethods(self, scriptList):
+
+        methods = []
+        mapping = {}
+        cmConfigs = self.getSettings()
+
+        if cmConfigs != None and 'acr_plugin_mapping' in cmConfigs:
+            mapping = cmConfigs['acr_plugin_mapping']
+
+        for m in mapping:
+            for customScript in scriptList:
+                if customScript.getName() == m and customScript.isEnabled():
+                    methods.append(m)
+
+        print "Casa. computeMethods. %s" % methods
+        return methods
+
+
+    def getConfigurationAttributes(self, acr, scriptsList):
+
+        configMap = HashMap()
+        for customScript in scriptsList:
+            if customScript.getName() == acr and customScript.isEnabled():
+                for prop in customScript.getConfigurationProperties():
+                    configMap.put(prop.getValue1(), SimpleCustomProperty(prop.getValue1(), prop.getValue2()))
+
+        print "Casa. getConfigurationAttributes. %d configuration properties were found for %s" % (configMap.size(), acr)
+        return configMap
+
+
+    def getAvailMethodsUser(self, user, skip=None):
+        methods = HashSet()
+
+        for method in self.authenticators:
+            try:
+                module = self.authenticators[method]
+                if module.hasEnrollments(module.configAttrs, user):
+                    methods.add(method)
+            except:
+                print "Casa. getAvailMethodsUser. hasEnrollments call could not be issued for %s module" % method
+                print "Exception: ", sys.exc_info()[1]
+
+        try:
+            if skip != None:
+                # skip is guaranteed to be a member of methods (if hasEnrollments routines are properly implemented).
+                # A call to remove strangely crashes when skip is absent
+                methods.remove(skip)
+        except:
+            print "Casa. getAvailMethodsUser. methods list does not contain %s" % skip
+
+        print "Casa. getAvailMethodsUser %s" % methods.toString()
+        return methods
+
+
+    def prepareUIParams(self, identity):
+
+        print "Casa. prepareUIParams. Reading UI branding params"
+        cacheService = CdiUtil.bean(CacheService)
+        casaAssets = cacheService.get("casa_assets")
+
+        if casaAssets == None:
+            #This may happen when cache type is IN_MEMORY, where actual cache is merely a local variable
+            #(a expiring map) living inside Casa webapp, not oxAuth webapp
+
+            sets = self.getSettings()
+
+            custPrefix = "/custom"
+            logoUrl = "/images/logo.png"
+            faviconUrl = "/images/favicon.ico"
+            if ("extra_css" in sets and sets["extra_css"] != None) or sets["use_branding"]:
+                logoUrl = custPrefix + logoUrl
+                faviconUrl = custPrefix + faviconUrl
+
+            prefix = custPrefix if sets["use_branding"] else ""
+
+            casaAssets = {
+                "contextPath": "/casa",
+                "prefix" : prefix,
+                "faviconUrl" : faviconUrl,
+                "extraCss": sets["extra_css"] if "extra_css" in sets else None,
+                "logoUrl": logoUrl
+            }
+
+        #Setting a single variable with the whole map does not work...
+        identity.setWorkingParameter("casa_contextPath", casaAssets['contextPath'])
+        identity.setWorkingParameter("casa_prefix", casaAssets['prefix'])
+        identity.setWorkingParameter("casa_faviconUrl", casaAssets['contextPath'] + casaAssets['faviconUrl'])
+        identity.setWorkingParameter("casa_extraCss", casaAssets['extraCss'])
+        identity.setWorkingParameter("casa_logoUrl", casaAssets['contextPath'] + casaAssets['logoUrl'])
+
+
+    def simulateFirstStep(self, requestParameters, acr):
+        #To simulate 1st step, there is no need to call:
+        # getPageforstep (no need as user/pwd won't be shown again)
+        # isValidAuthenticationMethod (by restriction, it returns True)
+        # prepareForStep (by restriction, it returns True)
+        # getExtraParametersForStep (by restriction, it returns None)
+        print "Casa. simulateFirstStep. Calling authenticate (step 1) for %s module" % acr
+        if acr in self.authenticators:
+            module = self.authenticators[acr]
+            auth = module.authenticate(module.configAttrs, requestParameters, 1)
+            print "Casa. simulateFirstStep. returned value was %s" % auth
+
+
+# 2FA policy enforcement
+
+    def parsePlatformData(self, requestParameters):
+        try:
+            #Find device info passed in HTTP request params (see index.xhtml)
+            platform = ServerUtil.getFirstValue(requestParameters, "loginForm:platform")
+            deviceInf = json.loads(platform)
+        except:
+            print "Casa. parsePlatformData. Error parsing platform data"
+            deviceInf = None
+
+        return deviceInf
+
+
+    def getSuitableAcr(self, user, deviceInf, preferred):
+
+        onMobile = deviceInf != None and 'isMobile' in deviceInf and deviceInf['isMobile']
+        id = user.getUserId()
+        strongest = -1
+        acr = None
+        user_methods = self.getAvailMethodsUser(user)
+
+        for s in self.scriptsList:
+            name = s.getName()
+            level = Integer.MAX_VALUE if name == preferred else s.getLevel()
+            if user_methods.contains(name) and level > strongest and (not onMobile or name in self.mobile_methods):
+                acr = name
+                strongest = level
+
+        print "Casa. getSuitableAcr. On mobile = %s" % onMobile
+        if acr == None and onMobile:
+            print "Casa. getSuitableAcr. No mobile-friendly authentication method available for user %s" % id
+            # user_methods is not empty when this function is called, so just pick any
+            acr = user_methods.stream().findFirst().get()
+
+        print "Casa. getSuitableAcr. %s was selected for user %s" % (acr, id)
+        return acr
+
+
+    def determineSkip2FA(self, userService, identity, foundUser, deviceInf):
+
+        cmConfigs = self.getSettings()
+
+        if cmConfigs == None:
+            print "Casa. determineSkip2FA. Failed to read policy_2fa"
+            return False
+
+        missing = False
+        if not 'plugins_settings' in cmConfigs:
+            missing = True
+        elif not 'strong-authn-settings' in cmConfigs['plugins_settings']:
+            missing = True
+        else:
+            cmConfigs = cmConfigs['plugins_settings']['strong-authn-settings']
+
+        policy2FA = 'EVERY_LOGIN'
+        if not missing and 'policy_2fa' in cmConfigs:
+            policy2FA = ','.join(cmConfigs['policy_2fa'])
+
+        print "Casa. determineSkip2FA with general policy %s" % policy2FA
+        policy2FA += ','
+        skip2FA = False
+
+        if 'CUSTOM,' in policy2FA:
+            #read setting from user profile
+            policy = foundUser.getAttribute("oxStrongAuthPolicy")
+            if policy == None:
+                policy = 'EVERY_LOGIN,'
+            else:
+                policy = policy.upper() + ','
+            print "Casa. determineSkip2FA. Using user's enforcement policy %s" % policy
+
+        else:
+            #If it's not custom, then apply the global setting admin defined
+            policy = policy2FA
+
+        if not 'EVERY_LOGIN,' in policy:
+            locationCriterion = 'LOCATION_UNKNOWN,' in policy
+            deviceCriterion = 'DEVICE_UNKNOWN,' in policy
+
+            if locationCriterion or deviceCriterion:
+                if deviceInf == None:
+                    print "Casa. determineSkip2FA. No user device data. Forcing 2FA to take place..."
+                else:
+                    skip2FA = self.process2FAPolicy(identity, foundUser, deviceInf, locationCriterion, deviceCriterion)
+
+                    if skip2FA:
+                        print "Casa. determineSkip2FA. Second factor is skipped"
+                        #Update attribute if authentication will not have second step
+                        devInf = identity.getWorkingParameter("trustedDevicesInfo")
+                        if devInf != None:
+                            foundUser.setAttribute("oxTrustedDevicesInfo", devInf)
+                            userService.updateUser(foundUser)
+            else:
+                print "Casa. determineSkip2FA. Unknown %s policy: cannot skip 2FA" % policy
+
+        return skip2FA
+
+
+    def process2FAPolicy(self, identity, foundUser, deviceInf, locationCriterion, deviceCriterion):
+
+        skip2FA = False
+        #Retrieve user's devices info
+        devicesInfo = foundUser.getAttribute("oxTrustedDevicesInfo")
+
+        #do geolocation
+        geodata = self.getGeolocation(identity)
+        if geodata == None:
+            print "Casa. process2FAPolicy: Geolocation data not obtained. 2FA skipping based on location cannot take place"
+
+        try:
+            encService = CdiUtil.bean(EncryptionService)
+
+            if devicesInfo == None:
+                print "Casa. process2FAPolicy: There are no trusted devices for user yet"
+                #Simulate empty list
+                devicesInfo = "[]"
+            else:
+                devicesInfo = encService.decrypt(devicesInfo)
+
+            devicesInfo = json.loads(devicesInfo)
+
+            partialMatch = False
+            idx = 0
+            #Try to find a match for device only
+            for device in devicesInfo:
+                partialMatch = device['browser']['name']==deviceInf['name'] and device['os']['version']==deviceInf['os']['version'] and device['os']['family']==deviceInf['os']['family']
+                if partialMatch:
+                    break
+                idx+=1
+
+            matchFound = False
+
+            #At least one of locationCriterion or deviceCriterion is True
+            if locationCriterion and not deviceCriterion:
+                #this check makes sense if there is city data only
+                if geodata!=None:
+                    for device in devicesInfo:
+                        #Search all registered cities that are found in trusted devices
+                        for origin in device['origins']:
+                            matchFound = matchFound or origin['city']==geodata['city']
+
+            elif partialMatch:
+                #In this branch deviceCriterion is True
+                if not locationCriterion:
+                    matchFound = True
+                elif geodata!=None:
+                    for origin in devicesInfo[idx]['origins']:
+                        matchFound = matchFound or origin['city']==geodata['city']
+
+            skip2FA = matchFound
+            now = Date().getTime()
+
+            #Update attribute oxTrustedDevicesInfo accordingly
+            if partialMatch:
+                #Update an existing record (update timestamp in city, or else add it)
+                if geodata != None:
+                    partialMatch = False
+                    idxCity = 0
+
+                    for origin in devicesInfo[idx]['origins']:
+                        partialMatch = origin['city']==geodata['city']
+                        if partialMatch:
+                            break;
+                        idxCity+=1
+
+                    if partialMatch:
+                        devicesInfo[idx]['origins'][idxCity]['timestamp'] = now
+                    else:
+                        devicesInfo[idx]['origins'].append({"city": geodata['city'], "country": geodata['country'], "timestamp": now})
+            else:
+                #Create a new entry
+                browser = {"name": deviceInf['name'], "version": deviceInf['version']}
+                os = {"family": deviceInf['os']['family'], "version": deviceInf['os']['version']}
+
+                if geodata == None:
+                    origins = []
+                else:
+                    origins = [{"city": geodata['city'], "country": geodata['country'], "timestamp": now}]
+
+                obj = {"browser": browser, "os": os, "addedOn": now, "origins": origins}
+                devicesInfo.append(obj)
+
+            enc = json.dumps(devicesInfo, separators=(',',':'))
+            enc = encService.encrypt(enc)
+            identity.setWorkingParameter("trustedDevicesInfo", enc)
+
+        except:
+            print "Casa. process2FAPolicy. Error!", sys.exc_info()[1]
+
+        return skip2FA
+
+
+    def getGeolocation(self, identity):
+
+        session_attributes = identity.getSessionId().getSessionAttributes()
+        if session_attributes.containsKey("remote_ip"):
+            remote_ip = session_attributes.get("remote_ip").split(",", 2)[0].strip()
+            if StringHelper.isNotEmpty(remote_ip):
+
+                httpService = CdiUtil.bean(HttpService)
+
+                http_client = httpService.getHttpsClient()
+                http_client_params = http_client.getParams()
+                http_client_params.setIntParameter(CoreConnectionPNames.CONNECTION_TIMEOUT, 4 * 1000)
+
+                geolocation_service_url = "http://ip-api.com/json/%s?fields=country,city,status,message" % remote_ip
+                geolocation_service_headers = { "Accept" : "application/json" }
+
+                try:
+                    http_service_response = httpService.executeGet(http_client, geolocation_service_url, geolocation_service_headers)
+                    http_response = http_service_response.getHttpResponse()
+                except:
+                    print "Casa. Determine remote location. Exception: ", sys.exc_info()[1]
+                    return None
+
+                try:
+                    if not httpService.isResponseStastusCodeOk(http_response):
+                        print "Casa. Determine remote location. Get non 200 OK response from server:", str(http_response.getStatusLine().getStatusCode())
+                        httpService.consume(http_response)
+                        return None
+
+                    response_bytes = httpService.getResponseContent(http_response)
+                    response_string = httpService.convertEntityToString(response_bytes, Charset.forName("UTF-8"))
+                    httpService.consume(http_response)
+                finally:
+                    http_service_response.closeConnection()
+
+                if response_string == None:
+                    print "Casa. Determine remote location. Get empty response from location server"
+                    return None
+
+                response = json.loads(response_string)
+
+                if not StringHelper.equalsIgnoreCase(response['status'], "success"):
+                    print "Casa. Determine remote location. Get response with status: '%s'" % response['status']
+                    return None
+
+                return response
+
+        return None
+
+
+    def getLogoutExternalUrl(self, configurationAttributes, requestParameters):
+        print "Get external logout URL call"
+        return None
diff --git a/oxAuth/Server/integrations/casa/README.md b/oxAuth/Server/integrations/casa/README.md
new file mode 100644
index 00000000..5b4b0e9a
--- /dev/null
+++ b/oxAuth/Server/integrations/casa/README.md
@@ -0,0 +1,52 @@
+# Casa authentication script
+
+Gluu Casa is a self-service web portal for end-users to manage authentication and authorization preferences for their account in Gluu Server. Click [here](https://casa.gluu.org) to learn more about Casa.
+
+Specifically, Casa features a custom script that is aligned with how the application is configured by the administrator. This means the real potential of the script is perceived in the context of an actual casa deployment. The behavior of the script depends on a variety of settings (specially 2FA-related) that can be tweaked using Casa's administration console or via the configuration API.
+
+Among others, Casa performs actions such as:
+
+- Identification of user device 
+- Geolocation of user IP
+- Determine whether 2FA should take place
+- Compute suitable 2FA mechanisms the user can be prompted depending on the context
+        
+## Required files
+
+The following are the assets involved in casa authentication script:
+
+- Main script: `https://github.com/GluuFederation/community-edition-setup/blob/version_<version>/static/extension/person_authentication/Casa.py`
+- Dependant scripts: `https://github.com/GluuFederation/community-edition-setup/tree/version_<version>/static/casa/scripts`. These are bundled with a default installation; more scripts may be required depending on the authentication mechanisms to support. Gluu installer already copies the default scripts in their destination: `/opt/gluu/python/libs`
+- XHTML templates: `https://github.com/GluuFederation/oxAuth/tree/version_<version>/Server/src/main/webapp/casa`. More files may be required depending on the authentication mechanisms to support. These files are already hosted by oxAuth web application.
+
+Note: to locate the files that match your Gluu installation replace `<version>` with the (semantic) version of your Server. 
+
+## Configuration properties 
+
+For the main script:
+
+|Name|Description|Sample value|
+|-|-|-|
+|`mobile_methods`|Optional. Click [here]( https://www.gluu.org/docs/casa/administration/2fa-basics/#associated-strength-of-credentials)|otp, twilio_sms, super_gluu|
+|`2fa_requisite`|Optional. Click [here]( https://gluu.org/docs/casa/administration/2fa-basics/#forcing-users-to-enroll-a-specific-credential-before-2fa-is-available)|`true`|
+|`supergluu_app_id`|U2F application ID used by SuperGluu enrollments made using Casa, if any|`https://<your-host-name>/casa`|
+|`u2f_app_id`|U2F application ID used by FIDO (u2f) enrollments made using Casa, if any|`https://<your-host-name>`|
+
+Auxiliary scripts require properties on their own. You can visit [this](https://www.gluu.org/docs/gluu-server/authn-guide/intro/) page to locate specific pages for every authentication method.
+
+## About the authentication flow
+
+Casa script orchestrates a 2FA flow by delegating specific implementation details of authentication methods to other  scripts. This allows the flow to present users with alternatives in case some credential is not working as expected or is lost. Specific behavior depends on how Casa application is parameterized, please see ["About Two-Factor Authentication"](https://gluu.org/docs/casa/administration/2fa-basics/) for an introduction.
+
+An important restriction to account is that users must present a username and password combination before any form of strong authentication can take place in the flow.
+
+### Adding authentication mechanisms (new factors)
+
+If the method you want to add is already supported out-of-the-box, it is a matter of enabling it: Casa's admin console [doc page](https://gluu.org/docs/casa/administration/admin-console/#enabled-methods) has the required steps. If you are planning to onboard a different mechanism more work is required. In that case, we suggest reading [this page](https://gluu.org/docs/casa/developer/authn-methods/) of Casa's developer guide.
+
+## Flow look&feel
+
+Casa flow pages inherit many of the design elements already set in the [custom branding](https://gluu.org/docs/casa/plugins/custom-branding/) plugin. Changes in design elements such as color scheme or custom CSS rules should take effect in flow pages immediately.
+
+If you require a full customization of the look and feel you have to modify the flow pages. Follow [this](https://gluu.org/docs/gluu-server/operation/custom-design/) as a guide. Account relevant pages are located in `casa` folder of oxAuth war.
+
diff --git a/oxAuth/Server/integrations/casa_external_user/casa_external.py b/oxAuth/Server/integrations/casa_external_user/casa_external.py
new file mode 100644
index 00000000..a781af87
--- /dev/null
+++ b/oxAuth/Server/integrations/casa_external_user/casa_external.py
@@ -0,0 +1,896 @@
+# Author: Jose Gonzalez
+
+from java.lang import Integer
+from java.util import Collections, HashMap, HashSet, ArrayList, Arrays, Date, Properties
+from java.nio.charset import Charset
+
+from org.apache.http.params import CoreConnectionPNames
+
+from org.oxauth.persistence.model.configuration import GluuConfiguration
+from org.gluu.oxauth.security import Identity
+from org.gluu.oxauth.service import AppInitializer, AuthenticationService, MetricService, UserService
+from org.gluu.oxauth.service.common import EncryptionService
+from org.gluu.oxauth.service.custom import CustomScriptService
+from org.gluu.oxauth.service.net import HttpService
+from org.gluu.oxauth.util import ServerUtil
+from org.gluu.model import SimpleCustomProperty
+from org.gluu.model.ldap import GluuLdapConfiguration
+from org.gluu.model.casa import ApplicationConfiguration
+from org.gluu.model.custom.script import CustomScriptType
+from org.gluu.model.custom.script.type.auth import PersonAuthenticationType
+from org.gluu.model.metric import MetricType
+from org.gluu.persist import PersistenceEntryManager
+from org.gluu.persist.service import PersistanceFactoryService
+from org.gluu.persist.ldap.impl import LdapEntryManagerFactory
+from org.gluu.service import CacheService
+from org.gluu.service.cdi.util import CdiUtil
+from org.gluu.util import StringHelper
+
+try:
+    import json
+except ImportError:
+    import simplejson as json
+import sys
+
+class PersonAuthentication(PersonAuthenticationType):
+
+    def __init__(self, currentTimeMillis):
+        self.currentTimeMillis = currentTimeMillis
+        self.ACR_SG = "super_gluu"
+        self.ACR_U2F = "u2f"
+
+        self.modulePrefix = "casa-external_"
+
+    def init(self, customScript, configurationAttributes):
+        
+        print "Casa. init called"
+        self.authenticators = {}
+        self.uid_attr = self.getLocalPrimaryKey()
+
+        custScriptService = CdiUtil.bean(CustomScriptService)
+        self.scriptsList = custScriptService.findCustomScripts(Collections.singletonList(CustomScriptType.PERSON_AUTHENTICATION), "oxConfigurationProperty", "displayName", "oxEnabled", "oxLevel")
+        dynamicMethods = self.computeMethods(self.scriptsList)
+
+        if len(dynamicMethods) > 0:
+            print "Casa. init. Loading scripts for dynamic modules: %s" % dynamicMethods
+
+            for acr in dynamicMethods:
+                moduleName = self.modulePrefix + acr
+                try:
+                    external = __import__(moduleName, globals(), locals(), ["PersonAuthentication"], -1)
+                    module = external.PersonAuthentication(self.currentTimeMillis)
+
+                    print "Casa. init. Got dynamic module for acr %s" % acr
+                    configAttrs = self.getConfigurationAttributes(acr, self.scriptsList)
+
+                    if acr == self.ACR_U2F:
+                        u2f_application_id = configurationAttributes.get("u2f_app_id").getValue2()
+                        configAttrs.put("u2f_application_id", SimpleCustomProperty("u2f_application_id", u2f_application_id))
+                    elif acr == self.ACR_SG:
+                        application_id = configurationAttributes.get("supergluu_app_id").getValue2()
+                        configAttrs.put("application_id", SimpleCustomProperty("application_id", application_id))
+
+                    if module.init(None, configAttrs):
+                        module.configAttrs = configAttrs
+                        self.authenticators[acr] = module
+                    else:
+                        print "Casa. init. Call to init in module '%s' returned False" % moduleName
+                except:
+                    print "Casa. init. Failed to load module %s" % moduleName
+                    print "Exception: ", sys.exc_info()[1]
+
+            mobile_methods = configurationAttributes.get("mobile_methods")
+            self.mobile_methods = [] if mobile_methods == None else StringHelper.split(mobile_methods.getValue2(), ",")
+
+
+        if configurationAttributes.containsKey("auth_configuration_file"):
+            print "Casa. External LDAP configuration provided"
+                
+            authConfigurationFile = configurationAttributes.get("auth_configuration_file").getValue2()
+            authConfiguration = self.loadAuthConfiguration(authConfigurationFile)
+            
+            if authConfiguration != None and self.validateAuthConfiguration(authConfiguration):
+                try:
+                    self.ldapExtendedEntryManagers = None
+                    ldapExtendedEntryManagers = self.createLdapExtendedEntryManagers(authConfiguration)
+
+                    ll = len(ldapExtendedEntryManagers)
+                    print "%s LDAP configurations processed" % ll
+
+                    if ll > 0:
+                        self.ldapExtendedEntryManagers = ldapExtendedEntryManagers
+                except:
+                    print "Casa. Error creating LdapExtendedEntryManagers:", sys.exc_info()[1]
+                    
+        print "Casa. init. Initialized successfully"
+        return True
+
+
+    def destroy(self, configurationAttributes):
+        print "Casa. Destroyed called"
+
+        if self.ldapExtendedEntryManagers == None:
+            return True
+        
+        result = True
+        for ldapExtendedEntryManager in self.ldapExtendedEntryManagers:
+            ldapConfiguration = ldapExtendedEntryManager["ldapConfiguration"]
+            ldapEntryManager = ldapExtendedEntryManager["ldapEntryManager"]
+
+            destoryResult = ldapEntryManager.destroy()
+            result = result and destoryResult
+            print "Basic (multi auth conf). Destroyed: " + ldapConfiguration.getConfigId() + ". Result: " + str(destoryResult) 
+
+        print "Basic (multi auth conf). Destroyed successfully"
+
+        return result
+
+
+    def getApiVersion(self):
+        return 11
+
+
+    def getAuthenticationMethodClaims(self, configurationAttributes):
+        return None
+
+
+    def isValidAuthenticationMethod(self, usageType, configurationAttributes):
+        print "Casa. isValidAuthenticationMethod called"
+        return True
+
+
+    def getAlternativeAuthenticationMethod(self, usageType, configurationAttributes):
+        return None
+
+
+    def authenticate(self, configurationAttributes, requestParameters, step):
+        print "Casa. authenticate for step %s" % str(step)
+
+        userService = CdiUtil.bean(UserService)
+        authenticationService = CdiUtil.bean(AuthenticationService)
+        identity = CdiUtil.bean(Identity)
+
+        if step == 1:
+            credentials = identity.getCredentials()
+            user_name = credentials.getUsername()
+            user_password = credentials.getPassword()
+
+            if StringHelper.isNotEmptyString(user_name) and StringHelper.isNotEmptyString(user_password):
+
+                localAuth = self.ldapExtendedEntryManagers == None
+                print "Casa. authenticate for step 1. Local authentication is %s" % localAuth
+
+                uid_attr = self.uid_attr if localAuth else self.authenticateLdapGetPK(user_name, user_password)
+                print "Casa. authenticate for step 1. authn attribute is %s" % uid_attr
+
+                foundUser = None if uid_attr == None else userService.getUserByAttribute(uid_attr, user_name)
+
+                #foundUser = userService.getUser(user_name)
+                if foundUser == None:
+                    print "Casa. authenticate for step 1. Unknown username %s" % user_name
+                else:
+                    platform_data = self.parsePlatformData(requestParameters)
+                    preferred = foundUser.getAttribute("oxPreferredMethod")
+                    mfaOff = preferred == None
+                    logged_in = False
+
+                    if mfaOff:
+                        logged_in = authenticationService.authenticate(user_name, user_password) if localAuth else True
+                    else:
+                        print "Casa. authenticate for step 1. User has 2FA on"
+                        acr = self.getSuitableAcr(foundUser, platform_data, preferred)
+                        if acr != None:
+                            module = self.authenticators[acr]
+                            logged_in = module.authenticate(module.configAttrs, requestParameters, step)
+
+                    if logged_in:
+                        foundUser = authenticationService.getAuthenticatedUser()
+
+                        if foundUser == None:
+                            print "Casa. authenticate for step 1. Cannot retrieve logged user"
+                        else:
+                            if mfaOff:
+                                identity.setWorkingParameter("skip2FA", True)
+                            else:
+                                #Determine whether to skip 2FA based on policy defined (global or user custom)
+                                skip2FA = self.determineSkip2FA(userService, identity, foundUser, platform_data)
+                                identity.setWorkingParameter("skip2FA", skip2FA)
+                                identity.setWorkingParameter("ACR", acr)
+
+                            return True
+
+                    else:
+                        print "Casa. authenticate for step 1 was not successful"
+            return False
+
+        else:
+            user = authenticationService.getAuthenticatedUser()
+            if user == None:
+                print "Casa. authenticate for step 2. Cannot retrieve logged user"
+                return False
+
+            #see casa.xhtml
+            alter = ServerUtil.getFirstValue(requestParameters, "alternativeMethod")
+            if alter != None:
+                #bypass the rest of this step if an alternative method was provided. Current step will be retried (see getNextStep)
+                self.simulateFirstStep(requestParameters, alter)
+                return True
+
+            session_attributes = identity.getSessionId().getSessionAttributes()
+            acr = session_attributes.get("ACR")
+            #this working parameter is used in casa.xhtml
+            identity.setWorkingParameter("methods", ArrayList(self.getAvailMethodsUser(user, acr)))
+
+            success = False
+            if acr in self.authenticators:
+                module = self.authenticators[acr]
+                success = module.authenticate(module.configAttrs, requestParameters, step)
+
+            #Update the list of trusted devices if 2fa passed
+            if success:
+                print "Casa. authenticate. 2FA authentication was successful"
+                tdi = session_attributes.get("trustedDevicesInfo")
+                if tdi == None:
+                    print "Casa. authenticate. List of user's trusted devices was not updated"
+                else:
+                    user.setAttribute("oxTrustedDevicesInfo", tdi)
+                    userService.updateUser(user)
+            else:
+                print "Casa. authenticate. 2FA authentication failed"
+
+            return success
+
+        return False
+
+
+    def prepareForStep(self, configurationAttributes, requestParameters, step):
+        print "Casa. prepareForStep %s" % str(step)
+        identity = CdiUtil.bean(Identity)
+
+        if step == 1:
+            self.prepareUIParams(identity)
+            return True
+        else:
+            session_attributes = identity.getSessionId().getSessionAttributes()
+
+            authenticationService = CdiUtil.bean(AuthenticationService)
+            user = authenticationService.getAuthenticatedUser()
+
+            if user == None:
+                print "Casa. prepareForStep. Cannot retrieve logged user"
+                return False
+
+            acr = session_attributes.get("ACR")
+            print "Casa. prepareForStep. ACR = %s" % acr
+            identity.setWorkingParameter("methods", ArrayList(self.getAvailMethodsUser(user, acr)))
+
+            if acr in self.authenticators:
+                module = self.authenticators[acr]
+                return module.prepareForStep(module.configAttrs, requestParameters, step)
+            else:
+                return False
+
+
+    def getExtraParametersForStep(self, configurationAttributes, step):
+        print "Casa. getExtraParametersForStep %s" % str(step)
+        list = ArrayList()
+
+        if step > 1:
+            acr = CdiUtil.bean(Identity).getWorkingParameter("ACR")
+
+            if acr in self.authenticators:
+                module = self.authenticators[acr]
+                params = module.getExtraParametersForStep(module.configAttrs, step)
+                if params != None:
+                    list.addAll(params)
+
+            list.addAll(Arrays.asList("ACR", "methods", "trustedDevicesInfo"))
+
+        list.addAll(Arrays.asList("casa_contextPath", "casa_prefix", "casa_faviconUrl", "casa_extraCss", "casa_logoUrl"))
+        print "extras are %s" % list
+        return list
+
+
+    def getCountAuthenticationSteps(self, configurationAttributes):
+        print "Casa. getCountAuthenticationSteps called"
+
+        if CdiUtil.bean(Identity).getWorkingParameter("skip2FA"):
+           return 1
+
+        acr = CdiUtil.bean(Identity).getWorkingParameter("ACR")
+        if acr in self.authenticators:
+            module = self.authenticators[acr]
+            return module.getCountAuthenticationSteps(module.configAttrs)
+        else:
+            return 2
+
+        print "Casa. getCountAuthenticationSteps. Could not determine the step count for acr %s" % acr
+
+
+    def getPageForStep(self, configurationAttributes, step):
+        print "Casa. getPageForStep called %s" % str(step)
+
+        if step > 1:
+            acr = CdiUtil.bean(Identity).getWorkingParameter("ACR")
+            if acr in self.authenticators:
+                module = self.authenticators[acr]
+                page = module.getPageForStep(module.configAttrs, step)
+            else:
+                page=None
+
+            return page
+
+        return "/casa/login.xhtml"
+
+
+    def getNextStep(self, configurationAttributes, requestParameters, step):
+
+        print "Casa. getNextStep called %s" % str(step)
+        if step > 1:
+            acr = ServerUtil.getFirstValue(requestParameters, "alternativeMethod")
+            if acr != None:
+                print "Casa. getNextStep. Use alternative method %s" % acr
+                CdiUtil.bean(Identity).setWorkingParameter("ACR", acr)
+                #retry step with different acr
+                return 2
+
+        return -1
+
+
+    def logout(self, configurationAttributes, requestParameters):
+        print "Casa. logout called"
+        return True
+
+# Miscelaneous
+
+    def getLocalPrimaryKey(self):
+        entryManager = CdiUtil.bean(PersistenceEntryManager)
+        config = GluuConfiguration()
+        config = entryManager.find(config.getClass(), "ou=configuration,o=gluu")
+        #Pick (one) attribute where user id is stored (e.g. uid/mail)
+        uid_attr = config.getOxIDPAuthentication().get(0).getConfig().getPrimaryKey()
+        print "Casa. init. uid attribute is '%s'" % uid_attr
+        return uid_attr
+
+
+    def getSettings(self):
+        entryManager = CdiUtil.bean(PersistenceEntryManager)
+        config = ApplicationConfiguration()
+        config = entryManager.find(config.getClass(), "ou=casa,ou=configuration,o=gluu")
+        settings = None
+        try:
+            settings = json.loads(config.getSettings())
+        except:
+            print "Casa. getSettings. Failed to parse casa settings from DB"
+        return settings
+
+
+    def computeMethods(self, scriptList):
+
+        methods = []
+        mapping = {}
+        cmConfigs = self.getSettings()
+
+        if cmConfigs != None and 'acr_plugin_mapping' in cmConfigs:
+            mapping = cmConfigs['acr_plugin_mapping']
+
+        for m in mapping:
+            for customScript in scriptList:
+                if customScript.getName() == m and customScript.isEnabled():
+                    methods.append(m)
+
+        print "Casa. computeMethods. %s" % methods
+        return methods
+
+
+    def getConfigurationAttributes(self, acr, scriptsList):
+
+        configMap = HashMap()
+        for customScript in scriptsList:
+            if customScript.getName() == acr and customScript.isEnabled():
+                for prop in customScript.getConfigurationProperties():
+                    configMap.put(prop.getValue1(), SimpleCustomProperty(prop.getValue1(), prop.getValue2()))
+
+        print "Casa. getConfigurationAttributes. %d configuration properties were found for %s" % (configMap.size(), acr)
+        return configMap
+
+
+    def getAvailMethodsUser(self, user, skip=None):
+        methods = HashSet()
+
+        for method in self.authenticators:
+            try:
+                module = self.authenticators[method]
+                if module.hasEnrollments(module.configAttrs, user):
+                    methods.add(method)
+            except:
+                print "Casa. getAvailMethodsUser. hasEnrollments call could not be issued for %s module" % method
+                print "Exception: ", sys.exc_info()[1]
+
+        try:
+            if skip != None:
+                # skip is guaranteed to be a member of methods (if hasEnrollments routines are properly implemented).
+                # A call to remove strangely crashes when skip is absent
+                methods.remove(skip)
+        except:
+            print "Casa. getAvailMethodsUser. methods list does not contain %s" % skip
+
+        print "Casa. getAvailMethodsUser %s" % methods.toString()
+        return methods
+
+
+    def prepareUIParams(self, identity):
+        
+        print "Casa. prepareUIParams. Reading UI branding params"
+        cacheService = CdiUtil.bean(CacheService)
+        casaAssets = cacheService.get("casa_assets")
+            
+        if casaAssets == None:
+            #This may happen when cache type is IN_MEMORY, where actual cache is merely a local variable 
+            #(a expiring map) living inside Casa webapp, not oxAuth webapp
+            
+            sets = self.getSettings()
+            
+            custPrefix = "/custom"
+            logoUrl = "/images/logo.png"
+            faviconUrl = "/images/favicon.ico"
+            if ("extra_css" in sets and sets["extra_css"] != None) or sets["use_branding"]:
+                logoUrl = custPrefix + logoUrl
+                faviconUrl = custPrefix + faviconUrl
+            
+            prefix = custPrefix if sets["use_branding"] else ""
+            
+            casaAssets = {
+                "contextPath": "/casa",
+                "prefix" : prefix,
+                "faviconUrl" : faviconUrl,
+                "extraCss": sets["extra_css"] if "extra_css" in sets else None,
+                "logoUrl": logoUrl
+            }
+        
+        #Setting a single variable with the whole map does not work...
+        identity.setWorkingParameter("casa_contextPath", casaAssets['contextPath'])
+        identity.setWorkingParameter("casa_prefix", casaAssets['prefix'])
+        identity.setWorkingParameter("casa_faviconUrl", casaAssets['contextPath'] + casaAssets['faviconUrl'])
+        identity.setWorkingParameter("casa_extraCss", casaAssets['extraCss'])
+        identity.setWorkingParameter("casa_logoUrl", casaAssets['contextPath'] + casaAssets['logoUrl'])
+
+
+    def simulateFirstStep(self, requestParameters, acr):
+        #To simulate 1st step, there is no need to call:
+        # getPageforstep (no need as user/pwd won't be shown again)
+        # isValidAuthenticationMethod (by restriction, it returns True)
+        # prepareForStep (by restriction, it returns True)
+        # getExtraParametersForStep (by restriction, it returns None)
+        print "Casa. simulateFirstStep. Calling authenticate (step 1) for %s module" % acr
+        if acr in self.authenticators:
+            module = self.authenticators[acr]
+            auth = module.authenticate(module.configAttrs, requestParameters, 1)
+            print "Casa. simulateFirstStep. returned value was %s" % auth
+
+
+# 2FA policy enforcement
+
+    def parsePlatformData(self, requestParameters):
+        try:
+            #Find device info passed in HTTP request params (see index.xhtml)
+            platform = ServerUtil.getFirstValue(requestParameters, "loginForm:platform")
+            deviceInf = json.loads(platform)
+        except:
+            print "Casa. parsePlatformData. Error parsing platform data"
+            deviceInf = None
+
+        return deviceInf
+
+
+    def getSuitableAcr(self, user, deviceInf, preferred):
+
+        onMobile = deviceInf != None and 'isMobile' in deviceInf and deviceInf['isMobile']
+        id = user.getUserId()
+        strongest = -1
+        acr = None
+        user_methods = self.getAvailMethodsUser(user)
+
+        for s in self.scriptsList:
+            name = s.getName()
+            level = Integer.MAX_VALUE if name == preferred else s.getLevel()
+            if user_methods.contains(name) and level > strongest and (not onMobile or name in self.mobile_methods):
+                acr = name
+                strongest = level
+
+        print "Casa. getSuitableAcr. On mobile = %s" % onMobile
+        if acr == None and onMobile:
+            print "Casa. getSuitableAcr. No mobile-friendly authentication method available for user %s" % id
+            # user_methods is not empty when this function is called, so just pick any
+            acr = user_methods.stream().findFirst().get()
+
+        print "Casa. getSuitableAcr. %s was selected for user %s" % (acr, id)
+        return acr
+
+
+    def determineSkip2FA(self, userService, identity, foundUser, deviceInf):
+
+        cmConfigs = self.getSettings()
+
+        if cmConfigs == None:
+            print "Casa. determineSkip2FA. Failed to read policy_2fa"
+            return False
+
+        missing = False
+        if not 'plugins_settings' in cmConfigs:
+            missing = True
+        elif not 'strong-authn-settings' in cmConfigs['plugins_settings']:
+            missing = True
+        else:
+            cmConfigs = cmConfigs['plugins_settings']['strong-authn-settings']
+
+        policy2FA = 'EVERY_LOGIN'
+        if not missing and 'policy_2fa' in cmConfigs:
+            policy2FA = ','.join(cmConfigs['policy_2fa'])
+
+        print "Casa. determineSkip2FA with general policy %s" % policy2FA
+        policy2FA += ','
+        skip2FA = False
+
+        if 'CUSTOM,' in policy2FA:
+            #read setting from user profile
+            policy = foundUser.getAttribute("oxStrongAuthPolicy")
+            if policy == None:
+                policy = 'EVERY_LOGIN,'
+            else:
+                policy = policy.upper() + ','
+            print "Casa. determineSkip2FA. Using user's enforcement policy %s" % policy
+
+        else:
+            #If it's not custom, then apply the global setting admin defined
+            policy = policy2FA
+
+        if not 'EVERY_LOGIN,' in policy:
+            locationCriterion = 'LOCATION_UNKNOWN,' in policy
+            deviceCriterion = 'DEVICE_UNKNOWN,' in policy
+
+            if locationCriterion or deviceCriterion:
+                if deviceInf == None:
+                    print "Casa. determineSkip2FA. No user device data. Forcing 2FA to take place..."
+                else:
+                    skip2FA = self.process2FAPolicy(identity, foundUser, deviceInf, locationCriterion, deviceCriterion)
+
+                    if skip2FA:
+                        print "Casa. determineSkip2FA. Second factor is skipped"
+                        #Update attribute if authentication will not have second step
+                        devInf = identity.getWorkingParameter("trustedDevicesInfo")
+                        if devInf != None:
+                            foundUser.setAttribute("oxTrustedDevicesInfo", devInf)
+                            userService.updateUser(foundUser)
+            else:
+                print "Casa. determineSkip2FA. Unknown %s policy: cannot skip 2FA" % policy
+
+        return skip2FA
+
+
+    def process2FAPolicy(self, identity, foundUser, deviceInf, locationCriterion, deviceCriterion):
+
+        skip2FA = False
+        #Retrieve user's devices info
+        devicesInfo = foundUser.getAttribute("oxTrustedDevicesInfo")
+
+        #do geolocation
+        geodata = self.getGeolocation(identity)
+        if geodata == None:
+            print "Casa. process2FAPolicy: Geolocation data not obtained. 2FA skipping based on location cannot take place"
+
+        try:
+            encService = CdiUtil.bean(EncryptionService)
+
+            if devicesInfo == None:
+                print "Casa. process2FAPolicy: There are no trusted devices for user yet"
+                #Simulate empty list
+                devicesInfo = "[]"
+            else:
+                devicesInfo = encService.decrypt(devicesInfo)
+
+            devicesInfo = json.loads(devicesInfo)
+
+            partialMatch = False
+            idx = 0
+            #Try to find a match for device only
+            for device in devicesInfo:
+                partialMatch = device['browser']['name']==deviceInf['name'] and device['os']['version']==deviceInf['os']['version'] and device['os']['family']==deviceInf['os']['family']
+                if partialMatch:
+                    break
+                idx+=1
+
+            matchFound = False
+
+            #At least one of locationCriterion or deviceCriterion is True
+            if locationCriterion and not deviceCriterion:
+                #this check makes sense if there is city data only
+                if geodata!=None:
+                    for device in devicesInfo:
+                        #Search all registered cities that are found in trusted devices
+                        for origin in device['origins']:
+                            matchFound = matchFound or origin['city']==geodata['city']
+
+            elif partialMatch:
+                #In this branch deviceCriterion is True
+                if not locationCriterion:
+                    matchFound = True
+                elif geodata!=None:
+                    for origin in devicesInfo[idx]['origins']:
+                        matchFound = matchFound or origin['city']==geodata['city']
+
+            skip2FA = matchFound
+            now = Date().getTime()
+
+            #Update attribute oxTrustedDevicesInfo accordingly
+            if partialMatch:
+                #Update an existing record (update timestamp in city, or else add it)
+                if geodata != None:
+                    partialMatch = False
+                    idxCity = 0
+
+                    for origin in devicesInfo[idx]['origins']:
+                        partialMatch = origin['city']==geodata['city']
+                        if partialMatch:
+                            break;
+                        idxCity+=1
+
+                    if partialMatch:
+                        devicesInfo[idx]['origins'][idxCity]['timestamp'] = now
+                    else:
+                        devicesInfo[idx]['origins'].append({"city": geodata['city'], "country": geodata['country'], "timestamp": now})
+            else:
+                #Create a new entry
+                browser = {"name": deviceInf['name'], "version": deviceInf['version']}
+                os = {"family": deviceInf['os']['family'], "version": deviceInf['os']['version']}
+
+                if geodata == None:
+                    origins = []
+                else:
+                    origins = [{"city": geodata['city'], "country": geodata['country'], "timestamp": now}]
+
+                obj = {"browser": browser, "os": os, "addedOn": now, "origins": origins}
+                devicesInfo.append(obj)
+
+            enc = json.dumps(devicesInfo, separators=(',',':'))
+            enc = encService.encrypt(enc)
+            identity.setWorkingParameter("trustedDevicesInfo", enc)
+
+        except:
+            print "Casa. process2FAPolicy. Error!", sys.exc_info()[1]
+
+        return skip2FA
+
+
+    def getGeolocation(self, identity):
+
+        session_attributes = identity.getSessionId().getSessionAttributes()
+        if session_attributes.containsKey("remote_ip"):
+            remote_ip = session_attributes.get("remote_ip").split(",", 2)[0].strip()
+            if StringHelper.isNotEmpty(remote_ip):
+
+                httpService = CdiUtil.bean(HttpService)
+
+                http_client = httpService.getHttpsClient()
+                http_client_params = http_client.getParams()
+                http_client_params.setIntParameter(CoreConnectionPNames.CONNECTION_TIMEOUT, 4 * 1000)
+
+                geolocation_service_url = "http://ip-api.com/json/%s?fields=country,city,status,message" % remote_ip
+                geolocation_service_headers = { "Accept" : "application/json" }
+
+                try:
+                    http_service_response = httpService.executeGet(http_client, geolocation_service_url, geolocation_service_headers)
+                    http_response = http_service_response.getHttpResponse()
+                except:
+                    print "Casa. Determine remote location. Exception: ", sys.exc_info()[1]
+                    return None
+
+                try:
+                    if not httpService.isResponseStastusCodeOk(http_response):
+                        print "Casa. Determine remote location. Get non 200 OK response from server:", str(http_response.getStatusLine().getStatusCode())
+                        httpService.consume(http_response)
+                        return None
+
+                    response_bytes = httpService.getResponseContent(http_response)
+                    response_string = httpService.convertEntityToString(response_bytes, Charset.forName("UTF-8"))
+                    httpService.consume(http_response)
+                finally:
+                    http_service_response.closeConnection()
+
+                if response_string == None:
+                    print "Casa. Determine remote location. Get empty response from location server"
+                    return None
+
+                response = json.loads(response_string)
+
+                if not StringHelper.equalsIgnoreCase(response['status'], "success"):
+                    print "Casa. Determine remote location. Get response with status: '%s'" % response['status']
+                    return None
+
+                return response
+
+        return None
+
+        
+    def getLogoutExternalUrl(self, configurationAttributes, requestParameters):
+        print "Get external logout URL call"
+        return None
+
+
+    def authenticateLdapGetPK(self, keyValue, userPassword):
+        authenticationService = CdiUtil.bean(AuthenticationService)
+
+        metricService = CdiUtil.bean(MetricService)
+        timerContext = metricService.getTimer(MetricType.OXAUTH_USER_AUTHENTICATION_RATE).time()
+        try:
+            if (StringHelper.isNotEmptyString(keyValue) and StringHelper.isNotEmptyString(userPassword)):
+                for ldapExtendedEntryManager in self.ldapExtendedEntryManagers:
+                    ldapConfiguration = ldapExtendedEntryManager["ldapConfiguration"]
+                    ldapEntryManager = ldapExtendedEntryManager["ldapEntryManager"]
+                    loginAttributes = ldapExtendedEntryManager["loginAttributes"]
+                    localLoginAttributes = ldapExtendedEntryManager["localLoginAttributes"]
+
+                    print "Attempting authentication using configuration: " + ldapConfiguration.getConfigId()
+
+                    idx = 0
+                    count = len(loginAttributes)    # why multiple login attributes?
+                    while (idx < count):
+                        primaryKey = loginAttributes[idx]
+                        localPrimaryKey = localLoginAttributes[idx]
+
+                        loggedIn = authenticationService.authenticate(ldapConfiguration, ldapEntryManager, keyValue, userPassword, primaryKey, localPrimaryKey)
+                        if (loggedIn):
+                            metricService.incCounter(MetricType.OXAUTH_USER_AUTHENTICATION_SUCCESS)
+                            return localPrimaryKey
+                        idx += 1
+        finally:
+            timerContext.stop()
+            
+        metricService.incCounter(MetricType.OXAUTH_USER_AUTHENTICATION_FAILURES)
+
+        return None
+
+
+    def loadAuthConfiguration(self, authConfigurationFile):
+        authConfiguration = None
+
+        # Load authentication configuration from file
+        f = open(authConfigurationFile, 'r')
+        try:
+            authConfiguration = json.loads(f.read())
+        except:
+            print "Basic (multi auth conf). Load auth configuration. Failed to load authentication configuration from file:", authConfigurationFile
+            return None
+        finally:
+            f.close()
+        
+        return authConfiguration
+
+    def validateAuthConfiguration(self, authConfiguration):
+        isValid = True
+
+        if (not ("ldap_configuration" in authConfiguration)):
+            print "Basic (multi auth conf). Validate auth configuration. There is no ldap_configuration section in configuration"
+            return False
+        
+        idx = 1
+        for ldapConfiguration in authConfiguration["ldap_configuration"]:
+            if (not self.containsAttributeString(ldapConfiguration, "configId")):
+                print "Basic (multi auth conf). Validate auth configuration. There is no 'configId' attribute in ldap_configuration section #" + str(idx)
+                return False
+
+            configId = ldapConfiguration["configId"]
+
+            if (not self.containsAttributeArray(ldapConfiguration, "servers")):
+                print "Basic (multi auth conf). Validate auth configuration. Property 'servers' in configuration '" + configId + "' is invalid"
+                return False
+
+            if (self.containsAttributeString(ldapConfiguration, "bindDN")):
+                if (not self.containsAttributeString(ldapConfiguration, "bindPassword")):
+                    print "Basic (multi auth conf). Validate auth configuration. Property 'bindPassword' in configuration '" + configId + "' is invalid"
+                    return False
+
+            if (not self.containsAttributeString(ldapConfiguration, "useSSL")):
+                print "Basic (multi auth conf). Validate auth configuration. Property 'useSSL' in configuration '" + configId + "' is invalid"
+                return False
+
+            if (not self.containsAttributeString(ldapConfiguration, "maxConnections")):
+                print "Basic (multi auth conf). Validate auth configuration. Property 'maxConnections' in configuration '" + configId + "' is invalid"
+                return False
+                
+            if (not self.containsAttributeArray(ldapConfiguration, "baseDNs")):
+                print "Basic (multi auth conf). Validate auth configuration. Property 'baseDNs' in configuration '" + configId + "' is invalid"
+                return False
+
+            if (not self.containsAttributeArray(ldapConfiguration, "loginAttributes")):
+                print "Basic (multi auth conf). Validate auth configuration. Property 'loginAttributes' in configuration '" + configId + "' is invalid"
+                return False
+
+            if (not self.containsAttributeArray(ldapConfiguration, "localLoginAttributes")):
+                print "Basic (multi auth conf). Validate auth configuration. Property 'localLoginAttributes' in configuration '" + configId + "' is invalid"
+                return False
+
+            if (len(ldapConfiguration["loginAttributes"]) != len(ldapConfiguration["localLoginAttributes"])):
+                print "Basic (multi auth conf). Validate auth configuration. The number of attributes in 'loginAttributes' and 'localLoginAttributes' isn't equal in configuration '" + configId + "'"
+                return False
+
+            idx += 1
+
+        return True
+
+    def createLdapExtendedEntryManagers(self, authConfiguration):
+        ldapExtendedConfigurations = self.createLdapExtendedConfigurations(authConfiguration)
+        
+        appInitializer = CdiUtil.bean(AppInitializer)
+        persistanceFactoryService = CdiUtil.bean(PersistanceFactoryService)
+        ldapEntryManagerFactory = persistanceFactoryService.getPersistenceEntryManagerFactory(LdapEntryManagerFactory)
+        persistenceType = ldapEntryManagerFactory.getPersistenceType()
+
+        ldapExtendedEntryManagers = []
+        for ldapExtendedConfiguration in ldapExtendedConfigurations:
+            connectionConfiguration = ldapExtendedConfiguration["connectionConfiguration"]
+            ldapConfiguration = ldapExtendedConfiguration["ldapConfiguration"]
+
+            ldapProperties = Properties()
+            for key, value in connectionConfiguration.items():
+                value_string = value
+                if isinstance(value_string, list):
+                    value_string = ", ".join(value)
+                else:
+                    value_string = str(value)
+
+                ldapProperties.setProperty(persistenceType + "#" + key, value_string)
+
+            if StringHelper.isNotEmptyString(ldapConfiguration.getBindPassword()):
+                ldapProperties.setProperty(persistenceType + "#bindPassword", ldapConfiguration.getBindPassword())
+            
+            ldapEntryManager = ldapEntryManagerFactory.createEntryManager(ldapProperties)
+
+            ldapExtendedEntryManagers.append({ "ldapConfiguration" : ldapConfiguration, "ldapProperties" : ldapProperties, "loginAttributes" : ldapExtendedConfiguration["loginAttributes"], "localLoginAttributes" : ldapExtendedConfiguration["localLoginAttributes"], "ldapEntryManager" : ldapEntryManager })
+        
+        return ldapExtendedEntryManagers
+
+    def createLdapExtendedConfigurations(self, authConfiguration):
+        ldapExtendedConfigurations = []
+
+        for connectionConfiguration in authConfiguration["ldap_configuration"]:
+            configId = connectionConfiguration["configId"]
+            print "Basic (multi auth conf). Processing configuration of %s" % configId
+            
+            servers = connectionConfiguration["servers"]
+
+            bindDN = None
+            bindPassword = None
+            useAnonymousBind = True
+            if (self.containsAttributeString(connectionConfiguration, "bindDN")):
+                useAnonymousBind = False
+                bindDN = connectionConfiguration["bindDN"]
+                bindPassword = CdiUtil.bean(EncryptionService).decrypt(connectionConfiguration["bindPassword"])
+
+            useSSL = connectionConfiguration["useSSL"]
+            maxConnections = connectionConfiguration["maxConnections"]
+            baseDNs = connectionConfiguration["baseDNs"]
+            loginAttributes = connectionConfiguration["loginAttributes"]
+            localLoginAttributes = connectionConfiguration["localLoginAttributes"]
+            
+            ldapConfiguration = GluuLdapConfiguration()
+            ldapConfiguration.setConfigId(configId)
+            ldapConfiguration.setBindDN(bindDN)
+            ldapConfiguration.setBindPassword(bindPassword)
+            ldapConfiguration.setServers(Arrays.asList(servers))
+            ldapConfiguration.setMaxConnections(maxConnections)
+            ldapConfiguration.setUseSSL(useSSL)
+            ldapConfiguration.setBaseDNs(Arrays.asList(baseDNs))
+            ldapConfiguration.setPrimaryKey(loginAttributes[0])
+            ldapConfiguration.setLocalPrimaryKey(localLoginAttributes[0])
+            ldapConfiguration.setUseAnonymousBind(useAnonymousBind)
+
+            ldapExtendedConfigurations.append({ "ldapConfiguration" : ldapConfiguration, "connectionConfiguration" : connectionConfiguration, "loginAttributes" : loginAttributes, "localLoginAttributes" : localLoginAttributes })
+        
+        return ldapExtendedConfigurations
+
+    def containsAttributeString(self, dictionary, attribute):
+        return ((attribute in dictionary) and StringHelper.isNotEmptyString(dictionary[attribute]))
+
+    def containsAttributeArray(self, dictionary, attribute):
+        return ((attribute in dictionary) and (len(dictionary[attribute]) > 0))
diff --git a/oxAuth/Server/integrations/casa_external_user/readme.md b/oxAuth/Server/integrations/casa_external_user/readme.md
new file mode 100644
index 00000000..c6da24a8
--- /dev/null
+++ b/oxAuth/Server/integrations/casa_external_user/readme.md
@@ -0,0 +1,25 @@
+# CASA with external user [ Work in progress ] 
+
+This script integrate basic_multi_auth ( https://github.com/GluuFederation/oxAuth/tree/master/Server/integrations/basic.multi_auth_conf ) with CASA which allows organization to allow their external users ( who are being pulled or pushed from remote AD or LDAP ) to use CASA. 
+
+## How to use this script: 
+
+ - This feature is only available from 4.5 and above.
+ - We need new CASA war to use this script for now:
+   - Download war: https://maven.gluu.org/maven/org/gluu/casa/4.5.4.Final/casa-4.5.4.Final.war
+   - Update your server with this war.
+   - Append new java parameter ( "-Dadmin.lock=/opt/gluu/jetty/casa/.administrable") in `/etc/default/casa`:
+     - `JAVA_OPTIONS="-server -Xms128m -Xmx846m -XX:+DisableExplicitGC -Dgluu.base=/etc/gluu -Dserver.base=/opt/gluu/jetty/casa -Dlog.base=/opt/gluu/jetty/casa -Dadmin.lock=/opt/gluu/jetty/casa/.administrable"`
+   - Restart oxauth, identity and casa service
+ - Use attached script in Person Authentication Script. 
+   - in "Custom Property" use this value: 
+      - `auth_configuration_file` == `/etc/certs/multi_auth_conf.json`
+   
+
+## If SuperGluu....
+
+If you want to use SuperGluu in this whole setup, you have to: 
+
+ - Download SG script from here ( https://raw.githubusercontent.com/GluuFederation/community-edition-setup/version_4.5.4/static/casa/scripts/casa-external_super_gluu.py ) and copy it inside `/opt/gluu/python/lib`
+ - Make sure to change permission to "jetty:gluu"
+ - Restart oxauth service. 
diff --git a/oxAuth/Server/integrations/cert/Generate certs guide.md b/oxAuth/Server/integrations/cert/Generate certs guide.md
new file mode 100644
index 00000000..4c3045b6
--- /dev/null
+++ b/oxAuth/Server/integrations/cert/Generate certs guide.md	
@@ -0,0 +1,407 @@
+For testing purpouses there is archive with CA/Intermidiate/User certs in [archive](./sample/generated_certs.zip).
+
+## 1. Create and sign Root CA
+
+### 1.1. Generate password protected a 8192-bit long SHA-256 RSA key for root CA:
+
+`openssl genrsa -aes256 -out rootca.key 8192`
+
+Example output:
+```
+Generating RSA private key, 8192 bit long modulus (2 primes)
+....................+++
+........................................................................................................................................................................................................................................................................................................................................................................................+++
+e is 65537 (0x010001)
+Enter pass phrase for rootca.key:
+Verifying - Enter pass phrase for rootca.key:
+```
+
+### 1.2 Create the self-signed root CA certificate ca.crt; you'll need to provide an identity for your root CA:
+
+`openssl req -sha256 -new -x509 -days 1826 -key rootca.key -out rootca.crt`
+
+Example output:
+```
+Enter pass phrase for rootca.key:
+You are about to be asked to enter information that will be incorporated
+into your certificate request.
+What you are about to enter is what is called a Distinguished Name or a DN.
+There are quite a few fields but you can leave some blank
+For some fields there will be a default value,
+If you enter '.', the field will be left blank.
+-----
+Country Name (2 letter code) [AU]:US
+State or Province Name (full name) [Some-State]:TX
+Locality Name (eg, city) []:Austin
+Organization Name (eg, company) [Internet Widgits Pty Ltd]:Gluu, Inc.
+Organizational Unit Name (eg, section) []:Gluu CA
+Common Name (e.g. server FQDN or YOUR name) []:Gluu Root CA
+Email Address []:
+```
+
+### 1.3. Create `root-ca.conf` file:
+
+```
+[ ca ]
+default_ca = gluuca
+
+[ crl_ext ]
+issuerAltName=issuer:copy
+authorityKeyIdentifier=keyid:always
+
+[ gluuca ]
+dir = ./
+new_certs_dir = $dir
+unique_subject = no
+certificate = $dir/rootca.crt
+database = $dir/certindex
+private_key = $dir/rootca.key
+serial = $dir/certserial
+default_days = 730
+default_md = sha1
+policy = gluuca_policy
+x509_extensions = gluuca_extensions
+crlnumber = $dir/crlnumber
+default_crl_days = 730
+
+[ gluuca_policy ]
+commonName = supplied
+stateOrProvinceName = supplied
+countryName = optional
+emailAddress = optional
+organizationName = supplied
+organizationalUnitName = optional
+
+[ gluuca_extensions ]
+basicConstraints = critical,CA:TRUE,pathlen:0
+keyUsage = critical,any
+subjectKeyIdentifier = hash
+authorityKeyIdentifier = keyid:always,issuer
+keyUsage = digitalSignature,cRLSign,keyCertSign
+extendedKeyUsage = serverAuth
+crlDistributionPoints = @crl_section
+subjectAltName  = @alt_names
+authorityInfoAccess = @ocsp_section
+
+[alt_names]
+DNS.0 = Gluu Intermidiate CA 1
+DNS.1 = Gluu CA Intermidiate 1
+
+[crl_section]
+URI.0 = http://pki.gluu.org/GluuRoot.crl
+URI.1 = http://pki.backup.com/GluuRoot.crl
+
+[ocsp_section]
+caIssuers;URI.0 = http://pki.gluu.org/GluuRoot.crt
+caIssuers;URI.1 = http://pki.backup.com/GluuRoot.crt
+OCSP;URI.0 = http://pki.gluu.org/ocsp/
+OCSP;URI.1 = http://pki.backup.com/ocsp/
+
+```
+### 1.4. Create a few files where the CA will store it's serials:
+
+```
+touch certindex
+echo 1000 > certserial
+echo 1000 > crlnumber
+```
+
+### 1.5. If you need to set a specific certificate start / expiry date, add the following to [gluuca]
+```
+# format: YYYYMMDDHHMMSS
+default_enddate = 20191222035911
+default_startdate = 20181222035911
+```
+
+## 2. Create and sign Intermediate 1 CA
+
+### 2.1. Generate the intermediate CA's private key:
+
+`openssl genrsa -out intermediate1.key 4096`
+
+Example output:
+```
+Generating RSA private key, 4096 bit long modulus (2 primes)
+........................................................++++
+.........++++
+e is 65537 (0x010001)
+```
+### 2.2. Generate the intermediate1 CA's CSR:
+
+`openssl req -new -sha256 -key intermediate1.key -out intermediate1.csr`
+
+Example output:
+```
+You are about to be asked to enter information that will be incorporated
+into your certificate request.
+What you are about to enter is what is called a Distinguished Name or a DN.
+There are quite a few fields but you can leave some blank
+For some fields there will be a default value,
+If you enter '.', the field will be left blank.
+-----
+Country Name (2 letter code) [AU]:US
+State or Province Name (full name) [Some-State]:TX
+Locality Name (eg, city) []:Austin
+Organization Name (eg, company) [Internet Widgits Pty Ltd]:Gluu, Inc.
+Organizational Unit Name (eg, section) []:Gluu CA
+Common Name (e.g. server FQDN or YOUR name) []:Gluu Intermediate CA
+Email Address []:
+
+Please enter the following 'extra' attributes
+to be sent with your certificate request
+A challenge password []:
+An optional company name []:
+```
+
+### 2.3. Sign the intermediate1 CSR with the Root CA:
+
+`openssl ca -batch -config root-ca.conf -notext -in intermediate1.csr -out intermediate1.crt`
+
+Example output:
+```
+Using configuration from root-ca.conf
+Enter pass phrase for .//rootca.key:
+Check that the request matches the signature
+Signature ok
+The Subject's Distinguished Name is as follows
+countryName           :PRINTABLE:'US'
+stateOrProvinceName   :ASN.1 12:'TX'
+localityName          :ASN.1 12:'Austin'
+organizationName      :ASN.1 12:'Gluu, Inc.'
+organizationalUnitName:ASN.1 12:'Gluu CA'
+commonName            :ASN.1 12:'Gluu Intermediate CA'
+Certificate is to be certified until Dec 22 07:39:24 2021 GMT (730 days)
+
+Write out database with 1 new entries
+Data Base Updated
+```
+
+### 2.4. Generate the CRL (both in PEM and DER):
+
+```
+openssl ca -config root-ca.conf -gencrl -keyfile rootca.key -cert rootca.crt -out rootca.crl.pem
+openssl crl -inform PEM -in rootca.crl.pem -outform DER -out rootca.crl
+```
+
+Generate the CRL after every certificate you sign with the CA.
+
+### 2.5. Configuring the Intermediate CA 1
+
+Create a new folder for this intermediate and move in to it:
+
+```
+mkdir intermediate1
+cd ./intermediate1
+```
+
+Copy the Intermediate cert and key from the Root CA:
+
+`mv ../intermediate1.* ./`
+
+Create the index files:
+
+```
+touch certindex
+echo 1000 > certserial
+echo 1000 > crlnumber
+```
+
+### 2.6. Create a new intermediate-ca.conf file:
+
+```
+[ ca ]
+default_ca = gluuca
+
+[ crl_ext ]
+issuerAltName=issuer:copy
+authorityKeyIdentifier=keyid:always
+
+[ gluuca ]
+dir = ./
+new_certs_dir = $dir
+unique_subject = no
+certificate = $dir/intermediate1.crt
+database = $dir/certindex
+private_key = $dir/intermediate1.key
+serial = $dir/certserial
+default_days = 365
+default_md = sha1
+policy = gluuca_policy
+x509_extensions = gluuca_extensions
+crlnumber = $dir/crlnumber
+default_crl_days = 365
+
+[ gluuca_policy ]
+commonName = supplied
+stateOrProvinceName = supplied
+countryName = optional
+emailAddress = optional
+organizationName = supplied
+organizationalUnitName = optional
+
+[ gluuca_extensions ]
+basicConstraints = critical,CA:FALSE
+keyUsage = critical,any
+subjectKeyIdentifier = hash
+authorityKeyIdentifier = keyid:always,issuer
+keyUsage = digitalSignature, nonRepudiation, keyEncipherment
+extendedKeyUsage = clientAuth
+crlDistributionPoints = @crl_section
+subjectAltName  = @alt_names
+authorityInfoAccess = @ocsp_section
+
+[alt_names]
+DNS.0 = example.com
+DNS.1 = example.org
+
+[crl_section]
+URI.0 = http://pki.gluu.org/GluuIntermidiate1.crl
+URI.1 = http://pki.backup.com/GluuIntermidiate1.crl
+
+[ocsp_section]
+caIssuers;URI.0 = http://pki.gluu.org/GluuIntermediate1.crt
+caIssuers;URI.1 = http://pki.backup.com/GluuIntermediate1.crt
+OCSP;URI.0 = http://pki.gluu.org/ocsp/
+OCSP;URI.1 = http://pki.backup.com/ocsp/
+```
+
+Change the [alt_names] section to whatever you need as Subject Alternative names. Remove it including the subjectAltName = @alt_names line if you don't want a Subject Alternative Name.
+
+If you need to set a specific certificate start / expiry date, add the following to [gluuca]
+
+```
+# format: YYYYMMDDHHMMSS
+default_enddate = 20191222035911
+default_startdate = 20181222035911
+```
+
+Generate an empty CRL (both in PEM and DER):
+
+```
+openssl ca -config intermediate-ca.conf -gencrl -keyfile intermediate1.key -cert intermediate1.crt -out intermediate1.crl.pem
+openssl crl -inform PEM -in intermediate1.crl.pem -outform DER -out intermediate1.crl
+```
+
+### 2.7. This is sample to show how to revoke cert. Use it only when you need to revoke the intermediate cert:
+
+`openssl ca -config root-ca.conf -revoke intermediate1.crt -keyfile rootca.key -cert rootca.crt`
+
+
+## 3. Creating end user certificates
+We use this new intermediate CA to generate an end user certificate. Repeat these steps for every end user certificate you want to sign with this CA.
+
+### 3.1. Create folder for end user certs:
+`mkdir enduser-certs`
+
+### 3.2. Generate the end user's private key:
+
+`openssl genrsa -out enduser-certs/user-gluu.org.key 4096`
+
+### 3.3. Generate the end user's CSR:
+
+`openssl req -new -sha256 -key enduser-certs/user-gluu.org.key -out enduser-certs/user-gluu.org.csr`
+
+Example output:
+```
+You are about to be asked to enter information that will be incorporated
+into your certificate request.
+What you are about to enter is what is called a Distinguished Name or a DN.
+There are quite a few fields but you can leave some blank
+For some fields there will be a default value,
+If you enter '.', the field will be left blank.
+-----
+Country Name (2 letter code) [AU]:US
+State or Province Name (full name) [Some-State]:TX
+Locality Name (eg, city) []:Austin
+Organization Name (eg, company) [Internet Widgits Pty Ltd]:Gluu, Inc.
+Organizational Unit Name (eg, section) []:User
+Common Name (e.g. server FQDN or YOUR name) []:Full User Name
+Email Address []:
+
+Please enter the following 'extra' attributes
+to be sent with your certificate request
+A challenge password []:
+An optional company name []:
+```
+
+### 3.4. Sign the end user's CSR with the Intermediate 1 CA:
+
+`openssl ca -batch -config intermediate-ca.conf -notext -in enduser-certs/user-gluu.org.csr -out enduser-certs/user-gluu.org.crt`
+
+Example output:
+```
+Using configuration from intermediate-ca.conf
+Check that the request matches the signature
+Signature ok
+The Subject's Distinguished Name is as follows
+countryName           :PRINTABLE:'US'
+stateOrProvinceName   :ASN.1 12:'TX'
+localityName          :ASN.1 12:'Austin'
+organizationName      :ASN.1 12:'Gluu, Inc.'
+organizationalUnitName:ASN.1 12:'User'
+commonName            :ASN.1 12:'Full User Name'
+Certificate is to be certified until Dec 22 08:07:15 2020 GMT (365 days)
+
+Write out database with 1 new entries
+Data Base Updated
+```
+
+### 3.5. Generate the CRL (both in PEM and DER):
+
+```
+openssl ca -config intermediate-ca.conf -gencrl -keyfile intermediate1.key -cert intermediate1.crt -out intermediate1.crl.pem
+openssl crl -inform PEM -in intermediate1.crl.pem -outform DER -out intermediate1.crl
+```
+
+Generate the CRL after every certificate you sign with the CA.
+
+### 3.6. Create the certificate chain file by concatenating the Root and intermediate 1 certificates together.
+
+`cat ../rootca.crt intermediate1.crt > enduser-certs/user-gluu.org.chain`
+
+Send the following files to the end user:
+
+```
+user-gluu.org.crt
+user-gluu.org.key
+user-gluu.org.chain
+```
+
+You can also let the end user supply their own CSR and just send them the .crt file. Do not delete that from the server, otherwise you cannot revoke it.
+
+### 3.7. This is sample to show how to revoke cert. Use it only when you need to revoke the end users cert:
+
+`openssl ca -config intermediate-ca.conf -revoke enduser-certs/enduser-gluu.org.crt -keyfile intermediate1.key -cert intermediate1.crt`
+
+## 4. Validating the certificate
+
+### 4.1. You can validate the end user certificate against the chain using the following command:
+
+`openssl verify -CAfile enduser-certs/user-gluu.org.chain enduser-certs/user-gluu.org.crt`
+
+Example output:
+```
+enduser-certs/user-gluu.org.crt: OK
+```
+
+### 4.2. You can also validate it against the CRL. Concatenate the PEM CRL and the chain together first:
+
+`cat ../rootca.crt intermediate1.crt intermediate1.crl.pem > enduser-certs/user-gluu.org.crl.chain`
+
+Verify the certificate:
+
+`openssl verify -crl_check -CAfile enduser-certs/user-gluu.org.crl.chain enduser-certs/user-gluu.org.crt`
+
+Example output:
+```
+enduser-certs/user-gluu.org.crt: OK
+```
+
+### 5. Export end user certificate to PKCS#12
+
+Convert a PEM certificate file and a private key to PKCS#12 (.pfx .p12)
+
+```
+openssl pkcs12 -export -out enduser-certs/user-gluu.org.pfx -inkey enduser-certs/user-gluu.org.key -in enduser-certs/user-gluu.org.crt -certfile enduser-certs/user-gluu.org.chain
+```
+                                                                                           
diff --git a/oxAuth/Server/integrations/cert/Generate certs without configs.md b/oxAuth/Server/integrations/cert/Generate certs without configs.md
new file mode 100644
index 00000000..69ce2e6f
--- /dev/null
+++ b/oxAuth/Server/integrations/cert/Generate certs without configs.md	
@@ -0,0 +1,27 @@
+## 1. Generate a certificate authority (CA) cert.
+
+### 1. Generate your CA certificate using this command:
+
+`openssl req -newkey rsa:4096 -keyform PEM -keyout ca.key -x509 -days 3650 -outform PEM -out ca.cer`
+
+## 2. Generate a client SSL certificate
+
+### 1. Generate a private key for the SSL client.
+
+`openssl genrsa -out client.key 4096`
+
+### 2. Use the client’s private key to generate a cert request.
+
+`openssl req -new -key client.key -out client.req`
+
+### 3. Issue the client certificate using the cert request and the CA cert/key.
+
+`openssl x509 -req -in client.req -CA ca.cer -CAkey ca.key -set_serial 101 -extensions client -days 365 -outform PEM -out client.cer`
+
+### 4. Convert the client certificate and private key to pkcs#12 format for use by browsers.
+
+`openssl pkcs12 -export -inkey client.key -in client.cer -out client.p12`
+
+### 5. Clean up – remove the client private key, client cert and client request files as the pkcs12 has everything needed.
+
+`rm client.key client.cer client.req`
diff --git a/oxAuth/Server/integrations/cert/Quick certs guide for testing.md b/oxAuth/Server/integrations/cert/Quick certs guide for testing.md
new file mode 100644
index 00000000..a6303ceb
--- /dev/null
+++ b/oxAuth/Server/integrations/cert/Quick certs guide for testing.md	
@@ -0,0 +1,35 @@
+### 1. Create a user_cert.conf file and update `user_dn` section:
+
+```
+[ req ]
+days                   = 365
+prompt                 = no
+distinguished_name     = user_dn
+x509_extensions        = v3_ca
+
+[ user_dn ]
+           countryName = US
+   stateOrProvinceName = TX
+          localityName = Austin
+      organizationName = Gluu, Inc.
+organizationalUnitName = Gluu SSL department
+            commonName = secure.gluu.com
+          emailAddress = john@gluu.org
+
+[ v3_ca ]
+basicConstraints       = CA:FALSE
+subjectKeyIdentifier   = hash
+authorityKeyIdentifier = keyid:always, issuer
+extendedKeyUsage       = clientAuth, emailProtection
+```
+
+### 2. Generate user cert
+
+```
+openssl req -x509 -config user_cert.conf -nodes -newkey rsa:4096 -keyout user_cert.key -out user_cert.crt
+```
+
+### 3. Export end user certificate to PKCS#12
+```
+openssl pkcs12 -export -inkey user_cert.key -in user_cert.crt -out user_cert.p12
+```
diff --git a/oxAuth/Server/integrations/cert/README.txt b/oxAuth/Server/integrations/cert/README.txt
new file mode 100644
index 00000000..b24c3a0e
--- /dev/null
+++ b/oxAuth/Server/integrations/cert/README.txt
@@ -0,0 +1,22 @@
+This is a person authentication module for oxAuth that enables user Certificate Authentication.
+
+The module has a few properties:
+
+1) chain_cert_file_path - It's mandatory property. It's path to file with cert chains in pem format.
+   Example: '/etc/certs/chain_cert.pem'
+
+2) map_user_cert - Specify if script should map new user to local account. If true, then on the first authentication, the script will prompt for a username/password in step 2, and then store the certificate fingerprint in the `oxExternalUid` attribute. 
+   Allowed values: true/false
+   Example: true
+
+3) use_generic_validator, use_path_validator, use_ocsp_validator, use_crl_validator - Enable/Disable specific certificate validation.
+   Allowed values: true/false
+   Example: true
+   
+4) crl_max_response_size - Specify maximum allowed size of CRL response
+   Allowed values: integer value greater that 0
+   Example: 10485760
+   Default value: 5242880
+
+5) credentials_file - Patch to file with reCAPTCHA credentials.
+   Example: '/etc/certs/cert_credentials.json'
diff --git a/oxAuth/Server/integrations/cert/UserCertExternalAuthenticator.py b/oxAuth/Server/integrations/cert/UserCertExternalAuthenticator.py
new file mode 100644
index 00000000..9d43d345
--- /dev/null
+++ b/oxAuth/Server/integrations/cert/UserCertExternalAuthenticator.py
@@ -0,0 +1,482 @@
+#
+# oxAuth is available under the MIT License (2008). See http://opensource.org/licenses/MIT for full text.
+# Copyright (c) 2016, Gluu
+#
+# Author: Yuriy Movchan
+#
+
+from org.gluu.service.cdi.util import CdiUtil
+from org.gluu.model.custom.script.type.auth import PersonAuthenticationType
+from javax.faces.context import FacesContext
+from org.gluu.oxauth.security import Identity
+from org.gluu.oxauth.service import AuthenticationService
+from org.gluu.oxauth.service.common import UserService
+from org.gluu.util import StringHelper
+from org.gluu.oxauth.util import ServerUtil
+from org.gluu.oxauth.service.common import EncryptionService
+from java.util import Arrays
+from org.gluu.oxauth.cert.fingerprint import FingerprintHelper
+from org.gluu.oxauth.cert.validation import GenericCertificateVerifier, PathCertificateVerifier, OCSPCertificateVerifier, CRLCertificateVerifier
+from org.gluu.oxauth.cert.validation.model import ValidationStatus
+from org.gluu.oxauth.util import CertUtil
+from org.gluu.oxauth.model.util import CertUtils
+from org.gluu.oxauth.service.net import HttpService
+from org.apache.http.params import CoreConnectionPNames
+
+import sys
+import base64
+import urllib
+
+import java
+import json
+
+class PersonAuthentication(PersonAuthenticationType):
+    def __init__(self, currentTimeMillis):
+        self.currentTimeMillis = currentTimeMillis
+
+    def init(self, customScript, configurationAttributes):
+        print "Cert. Initialization"
+
+        if not (configurationAttributes.containsKey("chain_cert_file_path")):
+            print "Cert. Initialization. Property chain_cert_file_path is mandatory"
+            return False
+
+        if not (configurationAttributes.containsKey("map_user_cert")):
+            print "Cert. Initialization. Property map_user_cert is mandatory"
+            return False
+
+        chain_cert_file_path = configurationAttributes.get("chain_cert_file_path").getValue2()
+
+        self.chain_certs = CertUtil.loadX509CertificateFromFile(chain_cert_file_path)
+        if self.chain_certs == None:
+            print "Cert. Initialization. Failed to load chain certificates from '%s'" % chain_cert_file_path
+            return False
+
+        print "Cert. Initialization. Loaded '%d' chain certificates" % self.chain_certs.size()
+        
+        crl_max_response_size = 5 * 1024 * 1024  # 10Mb
+        if configurationAttributes.containsKey("crl_max_response_size"):
+            crl_max_response_size = StringHelper.toInteger(configurationAttributes.get("crl_max_response_size").getValue2(), crl_max_response_size)
+            print "Cert. Initialization. CRL max response size is '%d'" % crl_max_response_size
+
+        # Define array to order methods correctly
+        self.validator_types = [ 'generic', 'path', 'ocsp', 'crl']
+        self.validators = { 'generic' : [GenericCertificateVerifier(), False],
+                            'path' : [PathCertificateVerifier(False), False],
+                            'ocsp' : [OCSPCertificateVerifier(), False],
+                            'crl' : [CRLCertificateVerifier(crl_max_response_size), False] }
+
+        for type in self.validator_types:
+            validator_param_name = "use_%s_validator" % type
+            if configurationAttributes.containsKey(validator_param_name):
+                validator_status = StringHelper.toBoolean(configurationAttributes.get(validator_param_name).getValue2(), False)
+                self.validators[type][1] = validator_status
+
+            print "Cert. Initialization. Validation method '%s' status: '%s'" % (type, self.validators[type][1])
+
+        self.map_user_cert = StringHelper.toBoolean(configurationAttributes.get("map_user_cert").getValue2(), False)
+        print "Cert. Initialization. map_user_cert: '%s'" % self.map_user_cert
+
+        self.enabled_recaptcha = self.initRecaptcha(configurationAttributes)
+        print "Cert. Initialization. enabled_recaptcha: '%s'" % self.enabled_recaptcha
+
+        print "Cert. Initialized successfully"
+
+        return True   
+
+    def destroy(self, configurationAttributes):
+        print "Cert. Destroy"
+
+        for type in self.validator_types:
+            self.validators[type][0].destroy()
+
+        print "Cert. Destroyed successfully"
+
+        return True
+
+    def getApiVersion(self):
+        return 11
+
+    def getAuthenticationMethodClaims(self, requestParameters):
+        return None
+
+    def isValidAuthenticationMethod(self, usageType, configurationAttributes):
+        return True
+
+    def getAlternativeAuthenticationMethod(self, usageType, configurationAttributes):
+        return None
+
+    def authenticate(self, configurationAttributes, requestParameters, step):
+        identity = CdiUtil.bean(Identity)
+        credentials = identity.getCredentials()
+
+        user_name = credentials.getUsername()
+
+        userService = CdiUtil.bean(UserService)
+        authenticationService = CdiUtil.bean(AuthenticationService)
+
+        if step == 1:
+            print "Cert. Authenticate for step 1"
+            login_button = ServerUtil.getFirstValue(requestParameters, "loginForm:loginButton")
+            if StringHelper.isEmpty(login_button):
+                print "Cert. Authenticate for step 1. Form were submitted incorrectly"
+                return False
+            if self.enabled_recaptcha:
+                print "Cert. Authenticate for step 1. Validating recaptcha response"
+                recaptcha_response = ServerUtil.getFirstValue(requestParameters, "g-recaptcha-response")
+
+                recaptcha_result = self.validateRecaptcha(recaptcha_response)
+                print "Cert. Authenticate for step 1. recaptcha_result: '%s'" % recaptcha_result
+                
+                return recaptcha_result
+
+            return True
+        elif step == 2:
+            print "Cert. Authenticate for step 2"
+
+            # Validate if user selected certificate
+            cert_x509 = self.getSessionAttribute("cert_x509")
+            if cert_x509 == None:
+                print "Cert. Authenticate for step 2. User not selected any certs"
+                identity.setWorkingParameter("cert_selected", False)
+                    
+                # Return True to inform user how to reset workflow
+                return True
+            else:
+                identity.setWorkingParameter("cert_selected", True)
+                x509Certificate = self.certFromString(cert_x509)
+
+            subjectX500Principal = x509Certificate.getSubjectX500Principal()
+            print "Cert. Authenticate for step 2. User selected certificate with DN '%s'" % subjectX500Principal
+            
+            # Validate certificates which user selected
+            valid = self.validateCertificate(x509Certificate)
+            if not valid:
+                print "Cert. Authenticate for step 2. Certificate DN '%s' is not valid" % subjectX500Principal
+                identity.setWorkingParameter("cert_valid", False)
+                
+                # Return True to inform user how to reset workflow
+                return True
+
+            identity.setWorkingParameter("cert_valid", True)
+            
+            # Calculate certificate fingerprint
+            x509CertificateFingerprint = self.calculateCertificateFingerprint(x509Certificate)
+            identity.setWorkingParameter("cert_x509_fingerprint", x509CertificateFingerprint)
+            print "Cert. Authenticate for step 2. Fingerprint is '%s' of certificate with DN '%s'" % (x509CertificateFingerprint, subjectX500Principal)
+            
+            # Attempt to find user by certificate fingerprint
+            cert_user_external_uid = "cert:%s" % x509CertificateFingerprint
+            print "Cert. Authenticate for step 2. Attempting to find user by oxExternalUid attribute value %s" % cert_user_external_uid
+
+            find_user_by_external_uid = userService.getUserByAttribute("oxExternalUid", cert_user_external_uid, True)
+            if find_user_by_external_uid == None:
+                print "Cert. Authenticate for step 2. Failed to find user"
+                
+                if self.map_user_cert:
+                    print "Cert. Authenticate for step 2. Storing cert_user_external_uid for step 3"
+                    identity.setWorkingParameter("cert_user_external_uid", cert_user_external_uid)
+                    return True
+                else:
+                    print "Cert. Authenticate for step 2. Mapping cert to user account is not allowed"
+                    identity.setWorkingParameter("cert_count_login_steps", 2)
+                    return False
+
+            foundUserName = find_user_by_external_uid.getUserId()
+            print "Cert. Authenticate for step 2. foundUserName: " + foundUserName
+
+            logged_in = False
+            userService = CdiUtil.bean(UserService)
+            logged_in = authenticationService.authenticate(foundUserName)
+        
+            print "Cert. Authenticate for step 2. Setting count steps to 2"
+            identity.setWorkingParameter("cert_count_login_steps", 2)
+
+            return logged_in
+        elif step == 3:
+            print "Cert. Authenticate for step 3"
+
+            cert_user_external_uid = self.getSessionAttribute("cert_user_external_uid")
+            if cert_user_external_uid == None:
+                print "Cert. Authenticate for step 3. cert_user_external_uid is empty"
+                return False
+
+            user_password = credentials.getPassword()
+
+            logged_in = False
+            if (StringHelper.isNotEmptyString(user_name) and StringHelper.isNotEmptyString(user_password)):
+                logged_in = authenticationService.authenticate(user_name, user_password)
+
+            if (not logged_in):
+                return False
+
+            # Double check just to make sure. We did checking in previous step
+            # Check if there is user which has cert_user_external_uid
+            # Avoid mapping user cert to more than one IDP account
+            find_user_by_external_uid = userService.getUserByAttribute("oxExternalUid", cert_user_external_uid, True)
+            if find_user_by_external_uid == None:
+                # Add cert_user_external_uid to user's external GUID list
+                find_user_by_external_uid = userService.addUserAttribute(user_name, "oxExternalUid", cert_user_external_uid, True)
+                if find_user_by_external_uid == None:
+                    print "Cert. Authenticate for step 3. Failed to update current user"
+                    return False
+
+                return True
+        
+            return True
+        else:
+            return False
+
+    def prepareForStep(self, configurationAttributes, requestParameters, step):
+        print "Cert. Prepare for step %d" % step
+        identity = CdiUtil.bean(Identity)
+        
+        if step == 1:
+            if self.enabled_recaptcha:
+                identity.setWorkingParameter("recaptcha_site_key", self.recaptcha_creds['site_key'])
+        elif step == 2:
+            # Store certificate in session
+            facesContext = CdiUtil.bean(FacesContext)
+            externalContext = facesContext.getExternalContext()
+            request = externalContext.getRequest()
+
+            # Try to get certificate from header X-ClientCert
+            clientCertificate = externalContext.getRequestHeaderMap().get("X-ClientCert")
+            if clientCertificate != None:
+                x509Certificate = self.certFromPemString(clientCertificate)
+                identity.setWorkingParameter("cert_x509",  self.certToString(x509Certificate))
+                print "Cert. Prepare for step 2. Storing user certificate obtained from 'X-ClientCert' header"
+                return True
+
+            # Try to get certificate from attribute javax.servlet.request.X509Certificate
+            x509Certificates = request.getAttribute('javax.servlet.request.X509Certificate')
+            if (x509Certificates != None) and (len(x509Certificates) > 0):
+                identity.setWorkingParameter("cert_x509", self.certToString(x509Certificates[0]))
+                print "Cert. Prepare for step 2. Storing user certificate obtained from 'javax.servlet.request.X509Certificate' attribute"
+                return True
+
+        if step < 4:
+            return True
+        else:
+            return False
+
+    def getExtraParametersForStep(self, configurationAttributes, step):
+        return Arrays.asList("cert_selected", "cert_valid", "cert_x509", "cert_x509_fingerprint", "cert_count_login_steps", "cert_user_external_uid")
+
+    def getCountAuthenticationSteps(self, configurationAttributes):
+        cert_count_login_steps = self.getSessionAttribute("cert_count_login_steps")
+        if cert_count_login_steps != None:
+            return cert_count_login_steps
+        else:
+            return 3
+
+    def getPageForStep(self, configurationAttributes, step):
+        if step == 1:
+            return "/auth/cert/login.xhtml"
+        if step == 2:
+            return "/auth/cert/cert-login.xhtml"
+        elif step == 3:
+            cert_selected = self.getSessionAttribute("cert_selected")
+            if True != cert_selected:
+                return "/auth/cert/cert-not-selected.xhtml"
+
+            cert_valid = self.getSessionAttribute("cert_valid")
+            if True != cert_valid:
+                return "/auth/cert/cert-invalid.xhtml"
+            
+            return "/login.xhtml"
+
+        return ""
+
+    def logout(self, configurationAttributes, requestParameters):
+        return True
+
+    def processBasicAuthentication(self, credentials):
+        userService = CdiUtil.bean(UserService)
+        authenticationService = CdiUtil.bean(AuthenticationService)
+
+        user_name = credentials.getUsername()
+        user_password = credentials.getPassword()
+
+        logged_in = False
+        if (StringHelper.isNotEmptyString(user_name) and StringHelper.isNotEmptyString(user_password)):
+            logged_in = authenticationService.authenticate(user_name, user_password)
+
+        if (not logged_in):
+            return None
+
+        find_user_by_uid = authenticationService.getAuthenticatedUser()
+        if (find_user_by_uid == None):
+            print "Cert. Process basic authentication. Failed to find user '%s'" % user_name
+            return None
+        
+        return find_user_by_uid
+
+    def getSessionAttribute(self, attribute_name):
+        identity = CdiUtil.bean(Identity)
+
+        # Try to get attribute value from Seam event context
+        if identity.isSetWorkingParameter(attribute_name):
+            return identity.getWorkingParameter(attribute_name)
+        
+        # Try to get attribute from persistent session
+        session_id = identity.getSessionId()
+        if session_id == None:
+            return None
+
+        session_attributes = session_id.getSessionAttributes()
+        if session_attributes == None:
+            return None
+
+        if session_attributes.containsKey(attribute_name):
+            return session_attributes.get(attribute_name)
+
+        return None
+
+    def calculateCertificateFingerprint(self, x509Certificate):
+        print "Cert. Calculate fingerprint for certificate DN '%s'" % x509Certificate.getSubjectX500Principal()
+        
+        publicKey = x509Certificate.getPublicKey()
+        
+        # Use oxAuth implementation
+        fingerprint = FingerprintHelper.getPublicKeySshFingerprint(publicKey)
+        
+        return fingerprint      
+
+    def validateCertificate(self, x509Certificate):
+        subjectX500Principal = x509Certificate.getSubjectX500Principal()
+
+        print "Cert. Validating certificate with DN '%s'" % subjectX500Principal
+        
+        validation_date = java.util.Date()
+
+        for type in self.validator_types:
+            if self.validators[type][1]:
+                result = self.validators[type][0].validate(x509Certificate, self.chain_certs, validation_date)
+                print "Cert. Validate certificate: '%s'. Validation method '%s' result: '%s'" % (subjectX500Principal, type, result)
+                
+                if (result.getValidity() != ValidationStatus.CertificateValidity.VALID):
+                    print "Cert. Certificate: '%s' is invalid" % subjectX500Principal
+                    return False
+        
+        return True
+
+    def certToString(self, x509Certificate):
+        if x509Certificate == None:
+            return None
+        return base64.b64encode(x509Certificate.getEncoded())
+
+    def certFromString(self, x509CertificateEncoded):
+        x509CertificateDecoded = base64.b64decode(x509CertificateEncoded)
+        return CertUtils.x509CertificateFromBytes(x509CertificateDecoded)
+
+    def certFromPemString(self, pemCertificate):
+        x509CertificateEncoded = pemCertificate.replace("-----BEGIN CERTIFICATE-----", "").replace("-----END CERTIFICATE-----", "").strip()
+        return self.certFromString(x509CertificateEncoded)
+
+    def initRecaptcha(self, configurationAttributes):
+        print "Cert. Initialize recaptcha"
+        if not configurationAttributes.containsKey("credentials_file"):
+            return False
+
+        cert_creds_file = configurationAttributes.get("credentials_file").getValue2()
+
+        # Load credentials from file
+        f = open(cert_creds_file, 'r')
+        try:
+            creds = json.loads(f.read())
+        except:
+            print "Cert. Initialize recaptcha. Failed to load credentials from file: %s" % cert_creds_file
+            return False
+        finally:
+            f.close()
+        
+        try:
+            recaptcha_creds = creds["recaptcha"]
+        except:
+            print "Cert. Initialize recaptcha. Invalid credentials file '%s' format:" % cert_creds_file
+            return False
+        
+        self.recaptcha_creds = None
+        if recaptcha_creds["enabled"]:
+            print "Cert. Initialize recaptcha. Recaptcha is enabled"
+
+            encryptionService = CdiUtil.bean(EncryptionService)
+
+            site_key = recaptcha_creds["site_key"]
+            secret_key = recaptcha_creds["secret_key"]
+
+            try:
+                site_key = encryptionService.decrypt(site_key)
+            except:
+                # Ignore exception. Value is not encrypted
+                print "Cert. Initialize recaptcha. Assuming that 'site_key' in not encrypted"
+
+            try:
+                secret_key = encryptionService.decrypt(secret_key)
+            except:
+                # Ignore exception. Value is not encrypted
+                print "Cert. Initialize recaptcha. Assuming that 'secret_key' in not encrypted"
+
+            
+            self.recaptcha_creds = { 'site_key' : site_key, "secret_key" : secret_key }
+            print "Cert. Initialize recaptcha. Recaptcha is configured correctly"
+
+            return True
+        else:
+            print "Cert. Initialize recaptcha. Recaptcha is disabled"
+
+        return False
+
+    def validateRecaptcha(self, recaptcha_response):
+        print "Cert. Validate recaptcha response"
+
+        facesContext = CdiUtil.bean(FacesContext)
+        request = facesContext.getExternalContext().getRequest()
+
+        remoteip = ServerUtil.getIpAddress(request)
+        print "Cert. Validate recaptcha response. remoteip: '%s'" % remoteip
+
+        httpService = CdiUtil.bean(HttpService)
+
+        http_client = httpService.getHttpsClient()
+        http_client_params = http_client.getParams()
+        http_client_params.setIntParameter(CoreConnectionPNames.CONNECTION_TIMEOUT, 15 * 1000)
+        
+        recaptcha_validation_url = "https://www.google.com/recaptcha/api/siteverify"
+        recaptcha_validation_request = urllib.urlencode({ "secret" : self.recaptcha_creds['secret_key'], "response" : recaptcha_response, "remoteip" : remoteip })
+        recaptcha_validation_headers = { "Content-type" : "application/x-www-form-urlencoded", "Accept" : "application/json" }
+
+        try:
+            http_service_response = httpService.executePost(http_client, recaptcha_validation_url, None, recaptcha_validation_headers, recaptcha_validation_request)
+            http_response = http_service_response.getHttpResponse()
+        except:
+            print "Cert. Validate recaptcha response. Exception: ", sys.exc_info()[1]
+            return False
+
+        try:
+            if not httpService.isResponseStastusCodeOk(http_response):
+                print "Cert. Validate recaptcha response. Get invalid response from validation server: ", str(http_response.getStatusLine().getStatusCode())
+                httpService.consume(http_response)
+                return False
+    
+            response_bytes = httpService.getResponseContent(http_response)
+            response_string = httpService.convertEntityToString(response_bytes)
+            httpService.consume(http_response)
+        finally:
+            http_service_response.closeConnection()
+
+        if response_string == None:
+            print "Cert. Validate recaptcha response. Get empty response from validation server"
+            return False
+        
+        response = json.loads(response_string)
+        
+        return response["success"]
+
+    def getNextStep(self, configurationAttributes, requestParameters, step):
+        return -1
+
+    def getLogoutExternalUrl(self, configurationAttributes, requestParameters):
+        print "Get external logout URL call"
+        return None
\ No newline at end of file
diff --git a/oxAuth/Server/integrations/cert/docs/Cert design.dia b/oxAuth/Server/integrations/cert/docs/Cert design.dia
new file mode 100644
index 0000000000000000000000000000000000000000..3952dea0b3cf9456964a5495c8161efc9d2b9265
GIT binary patch
literal 11048
zcmZX4Ra{$J6E7~s-Q9w_7Yo55xEF`w?oyoMP_(!c+@-~eyA^jRP+UUM0tGIo=Y01*
z+&m-?`?s=Z&6+*)mrWIm0`t!Y4(%*=!)aGO3o`wI0C?N$1z$Px`^6T#P*C~a-x~?T
zq0kzsBLh#Gd8V~BHQ6wkmG#lI?!A-69qB`|0Ij@Yqs$mMiAJ>17&eVz71u=l`S$=3
z&epWVpWQktqGFS=oA=)g0v{7_9-Oo|%BofZd>_v`f?mEze6ZMh+V$3b;mTHhK78pg
zQWa15BbuJ=a(&j(ad!Kh2;B;LxQ=EMcV=8$$YR^avef+cB9Ss^e!1Cw_|yTdl`Zba
zn_yg1_^tmmH|o`q7v!^?UcC3y;{L1yE9GeV%gI8&+ik6%_EY<jU4ublU?$tQ4|g5e
zzkTk$iBCSt9SFOgKaM)yn;C%v&&By~unwk#Z$7jI`mHA3RZXsUTRz@DA2LuJpuSLc
zLIM|tx@~+PH=y4>cUOsPJcT{At%}=}joj{9eh@XGJoycMul@liM{la_g(tNsfz(#-
zDmS2QJ#u`EorCqux9ar(_Yd6$&Pyrxw|bZTb}ay=aYfILK*03UiZT<Lvw0au)v)&Z
z#Fw=N-u##Mjmw=s;VP-1=dGMw?#@eBD@SB^Gpr(0m$u?-n?^5LhbNU&&%!e+L7C3`
zRD@P*W%-<6!g8OlxXOYamZGmWySvKxwX9FbDc`qhl|Ec<Z{M1UvkFdUtn4m%<Q&xo
zt~?%myD6*lKO)k6Ivh2nU?5DH-fI_s+IqQyzCfWbcN^u;yNk^vDv-5%&dHhHI~>{T
zM>*Z@hl}p<qt<WN66`wp5bu;5uj|Rf$b~xSEl0Gs{C<=3))Usl`rXd-LGM@L)`rK0
zsWCv3okNt+R(jZ2B$ngdwuh+xCdXLrr={&mu7QM1n)84`H}$~IyxPTaxo^@j_OXgd
zd}Ttr42Q*$M-@K0Q_j#<rWx7j<nxOe3%w4*5A9CBxHZuW?^0GyGil~cR_+hB(z{y&
zoK+j#t}APu8QW7;jqe9uPA|k&1FxN^Ok37l$0N4loEWJNVyB<oRnoJ)izjd03*v^Q
zZuVb{IRcr#Tpj(qI1z=qHxrwln2d?H`m;PLNg(R1#j~T5@j|6|7EGYO4sQn>C{;rN
zXPgIOBWruZjVIIZIH<&1(O;%*S`sX#+aniT=ByFS?-L}aB<{0hsh@4QTm+s_K<m5y
z`DO@xDA$IhA#6#QyQ=NK4ot*4ty69$uq0jxoj!-jtoZ%emX4E%1MIz|v)%v3i$G6m
zFK1}`0fQmwj?3q`c<&kVkr6><38?nRWms_fSvs1Cv+=epgZQJl(*&UK7>?L|(?7ks
zoFNl&P_p3wuxOs!vrIOqcasu!bL3vmNL6<#G2Oh|)`TiRhjldTiOSih|Ckm0i;H)*
z9Eh`xn8`%Od%!GSI6p3b>y{u^L`+u<6_jw6#maUQYuB%-W5ik$b%x|I8oqcRhOaYM
z1<?HP+c{H`kYZg;=w<ZuA%-v)Uygpd-YXhb^N;q;E1n-}BAPi>ifEVj%Cgu1*;y}t
zUgwnia}3daY~A5*n}SIrh0%&bW-`j2uYM!)QICv>JCjRl;mysh>kSlEGv)Dd@Z@Tg
z68<=wN+))O0kBt%iuJ;Tr@{OIN3msvQSxSA^5&0I>^U0CUZjGvyG0@D9i=Kz3z0#G
znfu@a>)DxFeCcifbzA$HA%_A-gXi?#XxHgm?@1?QV+AvR8;agtG_S{QP_=*lUYk)m
zr@HW_nQ%+@rH)+nRvz*PKU>q^4GPTWZyAP?af-WJXQCO1b3c;EDxdd9)&Dv?A(5Rw
z&vTzIC6@&|tXL5DawT7J(GK-tGoyb@lKPl*@L9zHYBsP7;911Z@*%cO<xAqLzCKUO
zL<9zZ0&5P4D11a~uNBO^#lss+;W#=^wP`8$FQ_KyBrB*`BMgDW7TMm(uz!9gyzN{e
z-!Pwami5k4Yl(K!b=~%AeyKS~6`zvycUv@*9I<i6y~GaOkCe&74NZ$;R3s9Wq7nLy
z{M=$d{rz*H?vS1{G3t)>eL_YmTP1(FochyzD2Q6U;~o}7;#ADLNd`(rAy5t}rBA9>
zz;6}nLr^E9Nj~?z?yUUm;0-9EbhOBBUZaSK{mr$m&W?rii@}^q=S06P@O&0vHd!0v
zk;*+O<fY4XjPdq(bhRjr>KXrY923<Ix>?ejDRbvN4Z~|?bY75xY>84w3$APhHC@%2
zFKPNrDfPTsc3}On=Lb%*y5{bJp~0Vh%yGKJbzH_>XTMlL@bcjB!C=oqQy50%C?ss|
z`SFOpPtnD&qzsJOdajG@A|6@R$%-M@wP@i8&1-av0dDUCbl};<<t*e+RF-Jt2qrb{
z8y?~o4!j=WW86SVlzrN7njFp#VxynvDG!!)K7OY^+F-!5Y6*M<J=iv`1YF{o`6zzA
zNKKf;aTrTdc@HD7V)Mqf*OD&XV`jwmbf#a)PEaBkFf8^!)2O7?MPxSEMs~nCm}H)o
z{7a)(J^5MQccVm<TKe4&rCZ70#me3X)!^(Ry+_Vak)h@R%8{j3<jaGFGxD2?c|<sC
zqjePZa67vOJh#G{$LAHfEG`aZa@B#hjzdneHoiiL#%%g3P}p2gNN3<;0QFY--A^T1
zPN~#@IG;FU;;t#Gu4j$SDM7>29wSp2-huXD6os5dIQV6&*2{Zr1&g!;n&{GlT7qsq
z_iA<XO@Y`j3nudZ7;K$zk$9XF;L6Wwo@|kj+vzK-m7R&JO<{XR{A%-@@)B40k2VL@
z=)iS#T@<Mje!mHXU*EPf$F@bgI6gP|@S6n04|85oDH2=tv$iB#W1?+tLhe*0lnlq`
zIWNyXH=T_7bv?{GZsy#*y}2oRx0!dluWb@-eSpTYt)fV^ReU>wZ?HLjeCKC<>B;lc
z7y6EiY(hLWeu;Tb!=6AfXSdRHlXp>S?){IQKVRJRYnh%g3MHTH#9j=mU)~yg4*CEP
zG*m9u5S6S!dUL?kzu~(n!CJ1k&jX_0$gk7l<E~z2Rvh3q7hkjr?NLt<I?lh^j*>Ti
z2e8v>iLet+C4`F+nZTkR<I;<|1D~UuFf=qxt)PD6G*@qd!?i47DJjQ|`(ruPR^ngt
zRELSdU4In~%X}Y9U(F<K100FAScY~g_h2pwCsJ~de_#khUNtqn==m|@d{J+qgnw-O
zj!h5Z-Iw|aG>8<>cJ@Pkl(;CB#Vc#)6rftaTV*a+g=5Z5Kdh}U3X|l}vJ&8RIHHt<
z??JB4M_WO-holUbA~K1sHio0<6fE3Yv6^fD9(TG?g@3YjQ~1r5!*OTjXo2eT@e-7(
z)w|fXZPPf?G<ycR;{OZT!=PKa?1lpkv7QGZ{V*4S2H&hY%d*tbX&HsY9O&HNRSUA0
z{;Hnqg~GNM#UKEaZf;>uNUN^tUZK9jpOIyO%oC!#0YTy0i-K%s;sbRz;6ueq91UCw
z2DBwL-6v28B=Nq_+r~(0CfMM@vqi_+V1*tI7|$6;%huTjIsD*<Rrz-{qi|0+$G~br
zCM{SY&kMK&KxOo85WNj66%%|UaCsPmc$^KP2<@RT@x$a;F5{tYD0v<)K+5ske}4tK
z^=Xyb+hT4bNNlFf<;(puak6U1GrtVpTQ*3!{Xq;~a4LY&N$5GI8lz${)#<Q~{#;;3
zBkk}mWcA37O|m!XxLMkiS&r=n6E|^^g9AtTJIX>Yg1-?09*ok)-;I}UChe@_ln#w0
zmALM-#4w~2h{{B`0jV`Uqr%Av?~GvlU^wCmQ#_?c#2AZt$b^l8De~Hd|G4SFU6@aq
zKG)$U@GxUh5h2$Ygz^=m^c)zcJ{CdGiOUBpm8lteaA--~^SUHYcz<;yVA~L#x3#RK
zs8auf^_uhfqDT=h=Bu1`%v5d%=l=Mm`G#qcUe9Fz!!l(%%{2qA;ML#`BCg=CU+J;#
z15g%BkB#*rxwLw$IBtCvY+2+AS2(6U`_=R0bd>3c2I>dbEdI*y0FrLPtH%?)iFLzy
zOIKVD!IZ&$<#rGWGy}n3nX%FLcm1z2&aGUG3eKFDr{O=h5{zF|MVwAMYd1+aXe<OB
zat}+atRiTp+&KFx$+zuh-m$oQS)JY7o<FSUkkt@*A6q?G$|ba0en&GQWKCpV*?ss!
zarIk3+!IYgG_Lg<R7rg9r&-74W^bz%fa3TZXrBaY5Ie%uC6n=|XrJ~WEh|=Dya!!F
zp545@u1VmGuTi~dY<1_y@|%wt2-Pm0WOR#dJnx)7n+NMvWav*t?YwoZ*22FOm@b_y
zQlk<6s3;MSGc}#JDW3CO7G$eGCA-#f|K3BQja`mv?C7W2?h6!o3HwGk+xeU*Wm>n;
zXWT}U<G5iW-?E{dq9*+n-ch|Y>{BW6JRF<_t;D_GoBV0k&}BDuQP`RNhsQ*$fVZYy
z(nF_e4?bKtwBGwoLWvnx7G9>?7PlRj`D?FdZsra#S#%17QUB<uYzg%s+pC#gWY|gZ
zvy>`lNgkG#P*jOVEhVkV7lo`-lJ7ihnzQ27VA^eI#@k&Jr#3=sN`W1o#w|R;?<D%b
znzP&>Yw?d?eXbYKX>Dvnr4Yj8yQM(k>5QRt2HQX}mDd~a4+8J^mQ`tg5o@546qQp+
z-?ksx!v*JXfvOXKepOo&HBoV;1ubZXwl|wrrU9#6Vdji8EM^ETMa=#_mTvH0mAUH-
zjs~7J($?#U-DO<rp6KWs?x`-mB$h&<W!`&_duM-i`S{zEHB)q&5Q=y}sYUQUs+C#q
z+6HP<Vl+i+igvYZ6(<gV2zrvzM5WRt`IY$rq(IuG8znNc;7CNqvjp-21c2unO?fI^
z+HV*w4Hd)ef!FV#Qu)${k-`v;@_EO|0*wT%*A~IGQt24(7X3M+2$KmsNYQ4n(4z~N
z)_#VqHI}6424fQa5hd|ES13=)qM=>t*Y}WR3VUG0&%a$JE?6_c<v1T~hEheCKR30@
zLb8itOdzTfp-)~gZyQdnkpMcT%7N|xEiT!=Dnd3x?fDuIk!d~2{suh(11i#%LrH5j
z)1b4ALc>V8ZATi6hA9P$BBZ+wXuQZnxgx$WvPm13X%dFMRohX#GWTXf*&{S^?S(j5
zAmq4(YeMy$aahFT^k*-d(-7!@MDgTi0Ad8nmQ^ar>vXB>5-l&y6R9~^MJsnB$HkLW
ze`l%4K?CY{V?cFtOCwTHHgDBNcyia$p4)A5%!=dEvH=kgjd>Ss`ce5AD$y16pzd{G
z4WNFqLo9jvdRLCn+@*$SBL?F4$3u1-(^?g6R+L3oh~CDmIal?&&HKY3_OUy)>0abn
zUq{<@LDl=}Xk(%M&xv%~N&+NS%_9(>rK*U}?$SKG=Jw4CZGUvaIRz>^0ZuQWgNDZf
zZO$tMip-14IP_SiQcI<a@r#sDQc+%I_^e1%`*q%2&jmJeH69Cl3<oF;5{)$Xitf(|
zLs*b`nh2FLRjWFK1quV@G1P{nhe~<|WZo7<<)`wiax=q6wVz@E#&Bf(J{4K>HP;D_
zR^`c%48=T!Abx@=0ka|`yMdBPs9oxh3=1dQKB$_I3M~WFdqJ))4o7Vi){>AqHkbMh
zV%W0Sz6xEa-HqZ#SqsI-2-^1#B{k_rXc6H}YV7`HtlNblVH+P&(D%cnauLF&y$5EU
zf)n(dCWOs+Tm{((w8~>^>VZpddZUw~4b5)a8^0_osh>6Pz&qA+{rP~=Pu28(!U8D1
zYH9>YD=J*UB!8D|yn(be)f4g@O)SLaa!n?5nt?|9J@gKEhNtq<c>A_~fq{a*C>+rD
zf>?-j!uCTZd)q96q2GwBKhh?ZctidKS5P62#WNE0@(w2kDcV&1-@ze|KI6+aWj~1c
z(5j;tu=KS>9qDsVsb(vRz}^T%%1s1FX98_6A8@csrFTtI@wb}T>Vf=wm60FB)VNC7
ztUL*kjh>BBndClR4pS*}_=`UMf?u0_*gHN~+ZB%jdbn(_;g4$ds171#v8I{{4#&9&
zv=}q1s|_yUN}ro;<clq%AqhmtV|_eYiAXu^@i;DHIAE`+TFc2~j~xZ0;sLQ7pM~sd
z9YU9!9thsw*cb&tK|HRR@$Iq|E9Gmf7R8tjB37?|{?Vb)BMNNQa+TcfOIy=pS$Q7a
zQVDznxm2uSN|lmV3?Pl*XcP*5`~ea+n`L~Xtr#c7pzK=U@VkwDHW*U(M#boL$XhK_
zja>G|(5y5MN|b0gOrX2Yt^jTOlt;WUFbJl#16}<KT9w`=h4=@K(PhDRE$mCm5%>)x
zF*kQ+FF+U1e|6kPj6LdcgMQNP&fuj*`wI#x<}5FF`qov?bde;;ePQnVHR7s6j|@O(
z^*xmvQd#Y*PgWH30+E0{%k!xRGMI}7+7^&FMj2#fpA#E46BhRb$1lBFa#j1d+zCFG
zPj37?;Nb(=w-<;xjNND-hRD`_4ceN%dQ5tWepwqFvbiElOn3ApK(`^B2G)iLWl|OG
zLi;myx&vS8yU3oNO~%e{uc&JG$7fz1_J@}Z&xS8zI^1|zmk#T_Lfl%|?~o)j=>W*g
z`&7tN*xL3Qy4Q7S0Df-XT44cz4jNVM8h!|be5M3hZzbJq666A1t7=ADOT(sXw=-Tl
zRE%a9d}V<6QV{Y{KKb~Ub~ZxK=y3zNT<l^k@^ZIuK#0=obHQe%xw!gWxANTiaX85k
zmp!qR-gN%r_nZvf@Ju4^slA|t3#XiSb<p>(B)n1{v!L|vz+qn$8D@9{SSiPk$S_tY
z)N;ru;ihIQ8jJ}crVTkXtfXQQNU1;6BA;Mogo~muxR{GswBYM)t*z2fV&@u<+rl&v
zh&}bFO;hRO{33(U<R<jwlRfTgadAKmMKik>vB5={uS{!`JSNY%bkA?Nl2^t?v!C5@
zCZ&L$rS!W)Gs=S3Q{ky5<lIW71*uK8*%D;Uj;=Bq$p}Wpu(e1Yj3c~WY*$v5Won|5
z2jx2*JG)X##mb`76U#qf(9`16>4aKPx2dJbmLU<#TUOK5c<iWyWRuBuBeA8(V~ZGL
z&4HdndcUn(@?O~Y)4FIiPPsL|-J7*!7{RekWnI(*Q7clx`HYKB`Fi4`t_)wiIgpw_
zG8XdfsfJaD_30g&1Lhp$xnMkm1h;pSXSu;r(bbG)sAeGP$L~US9O$kwZbmiRkQ|@8
z&f3q)ZBIUwq-?^YnJ@W;vgT)mnoe;blUcQ1EUDCJyE8)Gb0zkTRb{#Oucoo;@MtZ>
z{9JbPuRnYo&B`YaSfm2@45&&Fwj(bSx}OKcIjj<X#H3b^vS=+q%z}4SdyoOrGpj|L
zjySw=T9VpXo>ftt=tv(qX$^B0MH_QZ^;p}1r~Yo+7BMwIe-SjUu@G27PnX3|!+ba_
zW?zb_xSrS+q5Hl_!)u7X_Rpqo<}fF}ne4ddjYh-+)I|5mn~8GCh1*2qc_VY!xs|B$
zrOyU>ou?+HGuYZ_OQ**|qLkXb_J+~>i;$;4*bY>pX8duqy)%m(so~v5Ez>x=9R<@C
zpA)~j5Tm{bqj_*l(c<(NyePhEdj_6)OHKUtlk)O1>v)6WN)TL9JCn+iXRFWIrbSF$
znC7LYFhlzslftRa^;G?*g_^$jNUz!KW}Mm0ri%nbrk3gw;cA<K#W#sLZ(fk|(=M22
zoqsm3F?GhU5gGX-Uk3Fbi@l^)SITJV`D~z?9}y_k84;q8S}7E7COt5E9K_3TYSeb<
z(9+KDZJ-u$aoWsVg%qf#^Bq%^*M%{2rL^+AXV{UGum!Hi#cfRX4S8TD@tz7I(eGQY
z2)xZnUe#civ7>BRq4v2ZrNB*K^ZKUuPU6WR@!Krfi_jlM6K(__K<z4Q>v9#rCbq2;
z?m?oiVhl>zn?(J>qS|JX@7iItM{@&f>^M<~<|a4|UGUuucRhHFewfVu@=%XXc(PTj
z2a6ME`C)G*`CC2AA;_kyji3xRVfY8JzQ$)q-pWho-s&`^_PGwtSx^U1lNO{lSqN>0
zG14TehVn>X5CnXX`PNADo79kSe82`Hx2d!{0#0ArahAHW5x~VHwS@NlrUD198s>yG
zH0^F0wJy|`e|xcH616TIABP5*ByYgpwI8el-^@7u>?A1tgTUv5Oy@0l4kdoCFFej3
zXf(U19<K)Qtcrm*%8R&*(S!V?C=pS{iJIijiynpL8ClLqPJNVW`HK-~YjN4^{;5Ev
zH#bv4>SKl`%e4C-GDeL)n>r98-e7M-X&;<Yk471HD7cOrLyT2luX1>$PuYaUDB}j~
zqs~JwanDSyI@+rU!rj|wlvV5DhKChp!@d}w<v+>4=mRd5sO11`hm=Zz(UybYq(XH}
zmwBtuAL{9Ek8=S<J|lt2^hW|#bbWd=Z(D+KOy|vlOx4rb+~C>rB9m`7^}!th=Q2Xv
z)i&4kdI*G`%T#))bg@1!>tT8&p-Cla_GCE6`dSkFrZ{^4tvseE<Fq<-7>@>LT9NX1
z&Kwmb@#=j;idmh+q902J1w{40siGzc^i<%W(ts!35rko7|1CZ`ZkTuv6jlX;x3#!t
z1C2#9ni<6*G8DJSgjS=p!sxLY(BcK!YBQYMnVur2NBG!AOZArvXO-ss`l}KQWV@vA
zb>+*bMcXj{w_2%!9D%W7wX?J3xJgN}@zgd5q@McJHmMBpe#0h_LWj#U?0d!r^HDV!
zq{0O#fMYI+PXHy{n}p8vQ~=Fh2Hxjn8Bv0BTP-RSU@zT8`S`1n!xsG$Dav;~jk~^C
zDp5TmV&BDI!6OnrNhBT{G?pYEipgz=He{N@2o+>uw1h$#lD=Wl{$&CTNe@fPL?Bsc
zL~@DtoIQzLoOkkV)|>yS6}XB4!5BeyVf-1*ykBHxhbz{M@!bX0{$d5T3O-P#6OFWP
zyV`F~$Fy_V$e5iUBO0ctddGYq7v}7Tls^l{s&AsrJ0)pie!+bN42^@J-#t{svSz2X
zym?$9e$+9UEJDkUk-?_vybGH&$Fn#ji|k+JJEoUMF22ruB^m_N{YyL2wT`JOovIe*
z2ciQ+Gc(4#sbexc|BXUWuJnH%#iGSgS>)bzZBBgPb*kN<CiJ&wAqsEdXHf=bqLxtf
zI?JytCABgH>c{H_XjJ28KZV~;?$4e1T5}TZ4WAs@b+Iieba$0s{o}k)1ci0v^`{DX
z_PlxTXG5`l6rDkvLwb}InPeTq{z~%O(2B$PKhslKDf4bhv;8>Owj|puQxmD0f%Z4$
z20A-!g37iux3tM0+l6mYDpYHJy<K@6b+}zdJ>>hCo7?Z~>mL|9zipNQi4*5&%VYa8
z=*l<*41Yc_(GNuH$T@Lq%Gfg5s#(11_KnSA1NZH{`b0Sjp8>lRX{L#zAOS2Yf#>VJ
zjwTxZ`Rnf(KY~cMDWcSP-`2cnk8_cdb4itWclN22O2>_4ADl`|3f{$z9?aZ2eIvOy
zVbl3iyx{ih{&;Asb<eHKfUR#sU{!g1&r-}JzO|}q^nFv-6qE7ZT!6oz-*W27%)B9E
zM($g!;)QbVr3qI=<y-K}Ox7~7YI!o4+nXoZ#)v#hu{zicv3l+mJ+f8IcT<EhR<C?j
zYUkQI9C)vdTzROA$d=3XS`SJbH`8!$n8yp-V;NT=HPW5BMYH9vnt|IVRLf&NnR;d=
z0gNOxEtyuIe)(}oZZZvH{gI@8h>EG^7v@kE{YC}MlrkIXL86M}1LoBRWIXLbV{Ou~
zBl4bktH>S=aod=O79RH!(gNj<?=;k-zqe=TYZr`}?^n!o#Lm<B-|_|5zrwOUHZeXi
zNfOBl;EKaB?vmr@2GwA#%4J(O%sX_gV;&$ivl9IccuGCtkW1F}b3ns~IxY5AXkx=M
zCRZ-k-xyb5`ylvLZb}XY0u+E>J&+A<I(!GX>~@t`Sf8xYRlJyqGAa_lMxHbUsfKOR
zY#d-2kAb&hFGtFiECX90<hqrl6v1nGFKwO=O-$D;x5fF`hTO?UlaShX3J!zc{NxM;
zZw#S`bXkc!`F>-=Is|!p98>v#-|hf`RgAP&SEy2PE;^ArHnMug^0Y0VM2_3t-K+Yi
z4m{g(22X@{Sqx2x#f!w;Lr-3w=N`-QEuf@1`T#TGj=bunD%FksA>V0D6V9={v!fl9
z%DRE3JtD0>M-OW%=i)0mRvTa5sx9Swhu&Bv$6i)($rmx4V5*&mQkC_vIt>kwx`d#J
z+CHH>oevdL9L}a(x_j{^&AI_LB|4C+Xm0jMG8##Qf}HF-s)vYGT!Ch~$1%mgnHUKn
zMrhe>u9sr<WiDpwwrB{LDIUjTEE(JtR#i%0D-bo%VJym^bLK|@uvkL#5V8HcbQb>m
zXys~HQpJ%Lv+tK&9S^%y!~mx6N2#ylMt^oR7+ipNh#=CXAhJSp=+Tgw`+=vaDPtuB
z%*ieLomokwjpm4+Q<mu=1N`P2-l4}Bu~ZrPQOQwo)y|Q%*JPy+Z<Bp0cN2Urn3V1?
zl_8h-_EeJT^mV!OYgiV8B;4GBQCzZ~W01WTY=&8%Li4imQd9X~$XO!nIF@6{%3Zqy
z!s=;a<pY+L5uKxQJZB#KBM3aXji67=N<23SIM#7d^}ejpGts$_T-@Cm`&9}<WFc5^
zS=_%Hw-_)Q@xLo3paV0pi!~DAQi5gNM^HThZ{hen4QWSG88ZEbBU$xJLwTjO4EWAc
z`CLO(kjF?};Bvquf8(8i;a~G1t`%aS^_^@jA0VIcoNSfVFM3b*?^fB4=0(NdjoA6q
zH|HxWmE|T!qwNfaH2zb9ny<BGrBJr{Yr9<_3Y#cXVCePOJ`$IOS;P|mmtNu7(dz`P
zySzB`mKDb_>QIBQqaxp91i5~}i}J}ol0|F^14w$XWh@-R5Tiesv{}nvFN{#_dQiBI
z>m|Pflt^z9p3?m$7!+1usR1bF9_k9rk|@}Ayl=4qN^sH72(+}JG`6DW0NN-Enc^~b
zNd)Ycwb$Xz5c{C}ED$auPy$k)zW`iPs<T`Fz=M@J+egN=QYhNQS)aIvWu^y0u47nm
z6!Bl#3})TyY^;~42PhHV)E!Ywn4XHIm+&?lfPRx01hAkY#`gR}SYF5R3^vXxU%gaG
z{3N7z(*u1x!3~#}ub_P6?_TC5NJX1tDGmEH{bbUjXtD_6^MZ8|@c#k|hS+tOSM!++
zzIY(2*_NgSonU=>PRMNiE3tv46;hf!G0D?hz_&INW%0ywrZ0Pk|8&g<u9b;0-K)Jx
zyC+xN#~xMjYRcBXdcF!}tM{g*7-+{?JoQ<7Z=pSBvfq1mT4c30%UuQfhx7SC&8f9G
zQl%|{DPt@AOZv~4lo^SwIDtKnmYjIX{F~!lJDmi9yS@4D_MCVD?<&>e!GQa#G>I=S
zhhM%tTOva{AM~7{I=nm&XHq)H7hKAkvZZIS--xW*n%DJu91=2Gy23^xXn9DbXZ0c!
z2P5<%a;ZZJeq4JRP`jiuB>2fCqsf8Ro0Jrb0l;1K=EZ(=e6Hihf76>tr<=x}QQ{xo
zf^y|P{ZR4$a;pxFavSU-38zhEj>Vp*jgvPzMG$U9l`6(WLx^uIQHN%@mG-AM+`N>O
zsN-{kUeS}qMcn@mCW(~VkEND!ta(P$>}GY~M}=Jtt}%}Mywe95^>pf4_+a_r2YM}f
zBkoF1e4MFr^Rh8?9|THIVw#LphLnfMbl##IQg@lJV6;*LdEC-m4nBrHVxkV2EAo+n
zk;CB*w}&g6K;G5Ov=cYJtvE<*+m|sGo7b$Wo-8!4JIL<2U7D#+RpujWW~#JS-Rvjo
zZpA&H)ZJZq66o+>O0YjA242^Zsz4d9tb~4#=l6HNJj|tCgr*E$n{AsAO!Kw>qAGc}
z^*G(s1;p2KQ}bFUp|(mdX@2VZ(!gNbK^Lb2_=FvyMge<nki8Hhu0K1BQQyThY|DDT
zh|A`57GYh!i-y#)MhQrzi+Bgsb1Ch-v85F7?PAK~qwxLzAU09y+<B}4hqTwSU7K+G
zVAfXL`P&jZyp7toDJ6b_t1qif$2Os!9;=0>BS?B878((iUdfEc!m%Qo6Pa(&tY<R;
zRa3?d9rP%=e?^X1R=p*fB<E}YXX8KH1ix$&?|)BXRSllve)3ohk0el(FTIx0X;_WJ
zkD8bbIiYB%WpfRo7htZp!<mZNuaJI67|{Cfvz63iiEG+tiR;m4ncTJsd$ro3WYMcB
zfF1uP4#jBRJlrgV>cXB^T#{4ib9GR8r=WQMLWaJ%@9Y~iWJTr5A4%Mt#1JH4J9?$v
zQ|bEK0Jb{waNU-^n-V)h+UD6hM^Am$i!_FB4@(Z-+^s7NlOeS-4kIC(sI<tWd0L+l
zLuK`6ZGtP$EWmTOjlXaUtx;K7*smL4BUah5(8rRcyn=}liQZY7p`=w@`Li&n&|}y}
z`dfV@@REELV0s~JD|{gN4itOwKHP)ZM%y}iEmKYR(<cvDfe@8k2#SE!2qX9i#z8{_
zUHdJ2dT7+`3!$h~NE$tLML(QWF`MlG5`dge??Oj;wURpxC0?ew@_>*JE?$HUn{O;x
zHXzE+FO8j^!(6+9OXoDN_(Ira-u7RDLnY^gQUw7k_-a+yn7>UVl|iKpkuzdMp|lz;
zer}mIx=zEZqtK>ZSXHNsYN7j4KK}Q1B}fJ8%T5@J1vaan&Se$ws@hmEQ(ItO<wz$(
zgq+6k6iVtXkcipPtZEft*Y-+<l%bM@6EmR(yF3n4<kgh<XVM{|{9s(yc}7#|oTu>Q
za}~L@FV~Lea><5)aJ-7>jRVOPv`({?c6W51^OmLkdIY@s6#8gvuuA{9i&oJLf<5oR
zLPKGXY$;2a<*E4G0&IL|X=!j-!H|DKa0|yHD{^UbRUU9?9%y5X*9cCEPE#SZ3VDZD
z|6jrfkjh8xj|b$zDm#6hkf|Armi}0HE1F)$`ii;#PNZ6pUmN0Z@qU&gR97)wNT-F}
zDYXSYy9WZ+M96NmOd+OjWKMs%N(o5v0WSfVX^k9uX+7q(1;X|iZ^$h0=;GEcTomn;
zTJVXY?CrjQ3Xb?=BB?UZ0vf&sKD1DNC>4Bm{hbyV-M8;_bM(+}`EYgScT=AumUdrn
zz&<wGh`U-#HHJph8U*NACs4$RE`zw~hDZ-r92x7I+r7D~do7%0wvF!Rkh3fsWA^t)
z|46_1f2Cje*RpxFN(HP&8O0<OdFqg>=3lQlOhUSNmJtO0!;hJ;S@iOyM(fu~|A5@u
zeGlZZjJXgMCgp$eqx4!SLo<!6xd6Z7P0qO_Ng&>`N8jJX{6t!Ing_<0QV%g~I#hdR
z#K_<u(+wwi!E<@8($uHYr3+C|`^_(M=YmTUC>>J~s*2<s=f1<^7*PKQprbLq&*v<-
za<iRzIF*$|q0hC!TO}NkFV8#1m};gw?7({rSp=3RgCLGEM4-;9+SuFzU>f*;wLUMJ
zZsgWS2S~2<)uqkRdu{Xl|L|5lYMbkH+v|h-#<vAH8#D5lYV5r{_HZmylU@F{H3*|=
zu_AqgJ&KG*Eqx{HnKRFG3vRwf9M-@5roN8d#(gkM^Y~#csD7)%_3EA2df}dSraX*y
z{)<&*hyRCFZ_j_Lwne5Lv;MLbCj-&^IqQnPe>8LF<Kpio*|--iM|$+yb0&TnraB8c
zdm-EzAvV~YJoe5Wb{2nVO%$J16CcJ->&;Z$5-ioIc!2Q59A?9n70)4Tds+%3&%#%a
zsOb|$>e>=n6@eu+(k4!hIS@r6DQ*|)wj>;&vU6@-U3uZw-9*qqD&r*WTVkE9KlKI^
z98zr7Dn5FJ;aZA!>^HYXGT8!jh)s=_=_EaoI}ORY23Rr32BXVI%ww)>t35%lua^8J
z@mRU<L5aTQ@hNVI!ZG1*R9+zvcN%<*$SD@vSh9>$FkgaNKl`bp#w&9#*1!d!lu0iL
zDa50V<*cC71_kE$qs67Pxkz2DIAdvPL`Irr@jUn#ap{}Ob-0G=2+t~BClsWomUFpf
zrsll93dE6BM(8di1pXI8(F!Pkh7-U2)~vV=ELFcmqB1N$P2)Exhf!j3cr_Go!2!Xo
z?mF7R@@pQo8im!%VuE@Wa4GG|*l)*@<;;TzboVK&WgK=&mJ}nJ%<tAi<bJ$bB%yM`
zNGh?LQgbv-pLFjD5@JeX6|&R@9VUKa(>8Z|G}-~)|4GD?Q}H%_Z%-s!RRssTdhrEc
zu<Js{g+hP9(Fd1irH(LpGW-K>%B0_bWrxzBB^tjZWrmuC5@?l=s}84+B32e`&Q6M{
z(sAFLJL=}g590IMm|=7Tcxg9F5C8eCh|L8T*ZyzI?b@x5$hS?*%s(VfX*8CjqYF=x
y@$5k<#@w6iDaIs2NHR{7U-)Hy+4e5TTbttdi_=m{;+D}<P@N}i3Lp>x=KlbXmSn*I

literal 0
HcmV?d00001

diff --git a/oxAuth/Server/integrations/cert/docs/Cert design.jpg b/oxAuth/Server/integrations/cert/docs/Cert design.jpg
new file mode 100644
index 0000000000000000000000000000000000000000..555079788a9b0bc44b6aa3c8c9806e8c5bfb01a1
GIT binary patch
literal 110176
zcmeFZ1z40_yEZ(8f`XJvr+}bzH;70}OP2~rNrN;aASsQ2beELm&>hlUGjxZ<kOK_E
zcl*5i*>4{EeZT$hy}$qa{|AoyfMe#KHEZ2#t?N3k>pZV@Gjp>9B2bW#mjR)np@Cil
zzn~i!ND72~`!?3?Ti94wSa<GV-^G1!4;KdqmyGB>{sSs<8fq$XN=jM=b|%_Ktn`$W
z%mPnXIk|Xwd1;u0#00rT*?D-me>H-3=gu8m99+_S_ei<vDCxNWw|{P0L4?>C1(@|1
zXpcbXglHIqXg8f88W0HW7SP*Y9sai;G;|EiTeq>W@7%=!Zm1>zp`&47pkrd(x`l}e
z-0cm#55gq8MMTFXdHcTF8>~kT54e4!GqLHPm$yAsA3bE?dF$wR=Poe`DH%EAV<zS&
zPkH(H1q6kJrCvzO$jZqpXuQ(Y($>+{Gch%LXKrC><>c)0!PU*(!~au2U{G*KXiV&v
zxcG#xiAh=6Ik|cH1%=-#Dyyn%AhmV%?H!$6-90~g`^Ls6Ca0!nW}(X~t842Un_JsE
z@T23C)3bBL#pSPYp@A^|G^~Fg+24$d5EvIaCME_Z)~|7)p}PVX1|jAxI<DJ9l4@9Q
z9PU5j_QihiJUX+y?G8PU`r*U3j-z*p8F-f&;lGCV+sOX4f%*NXM)vOm`}4S<AY2SI
zVDc~sK@y<zOXjSPcmHp_SU$r!!mGu2x>VhqBo7CY7BZ$}E;R+pVXO{zGn_h9Js%te
zd#K#IBoH!Qo@MYA8sfHGz4YikQIR_`_Ck2<4E@=*OCLEk9gs2~MU)h^#+|KQYA5+{
z6iLa>SQ9i@74$Keh-uA1@SoP7Z$JV0c15UzwtBpx6(Nd%G-jphtlIVHji`HJB<b}|
zab&$K8_9>+ZAso8hRxyBneLC?dZx-l*Yn;=n!jEvJ(7_Jxd^rjmX3WCy#e(iQdekF
z_p8e8=%uF;F?U@<qq}>U2p@{pXh$DK>PajsyJ;PqC#_o5pN=fsR*T7KN8hhN50Dvg
z^l&j5^tkl^ZSw|nnA1!R9%;G(#X@M1j*$p;V|<A%BcO3uBudE0R~qDg142IG2ueTU
z0I%)!+<+*vQ4bP2hA&B4jy|m3fFiUr)Sgj;Z$Nhymp89*7B55`Za_WEz(^Snk5K^!
z$kf^!&}!V)168c_8&G=;0%-5~IZAmB4DXXzmiGe2k?DB@VzQM$tpCxaKc3S6`L(o^
zfQ+HSK`ls}c*Si!1hxof%UaZy@frLEl)aXL|12w%8T9{=3uE{Ow6P4{e{}<b)t}rw
zz5!j-8ehdpob5NEf22?25MGdjRM<Ulhz_QwFQAXI?ziRhes|DbFJ01f`eWkcOWMZu
z>X*QjSxCIvuojU3)Aa2oz4EFX5blg6bgJmvb2Cd9?mV42fAZI__efV=HDVkst-U4k
zM?CZ|VTBz#)O=0g;8^Ikt1=r=7s%m_gO_jZhwA|bs!m0MIc1Q#(7fT9Z^7J7Gfh=<
zV@1r+hR!hq5j~w2rhf;hmD1GI98-%ip<`Y`v8pmsX`-4%u}CJizbSmxQkRAz+MiCw
z;He2qbh*8^ho^{%wK-LTfs%b6=eV+@t5|O<#t{gw^{(A=1qwn8X%Jm*rrq_>4yY<4
z+8MPRhgxxo!xVK)<%uLIgi(hL=y(H!mGrJ!Jv=RuE}wBceO=z2-<o;|sW&7(n&OR@
zM}NT8n-B{Mq`=e1eC<*iXpC-gE>1IcqL^N#WRj0gXxMFfTOcfm7H`Po_2z?;rM22|
z)9({}gGQ)F!E}~u;YRb({w&$D<m+vkBFU~QP6@fl7L{ETrQMJ2YItCsgQ$l(w4k}J
zfdFPax1B&7RpD+!4~eD2Q`lqqIKxo*V@>k_gAHozR$})q&^o#Zc_eu!gyNc-I#f4!
z^*UR7?Xc3|S-RzPwQkv?uS#|v-GmI7PYj+GzZE4Iz*`d<{@&Gu|19V^Nw-KtQK6l!
z__!#9H8=6>DW#1ns2vZ~y65}xR<=+2I_hOY1*+i&)GE4zQXx=Urt(l6RG8XlKJ5%;
z4sQ%@3z*Zn7zqEgSH(eHUB?mZ^4XX|XG<?=wscctGpELyt-hX@hadpA_|82NEe59)
zbRK;kx2Iz!-ZW?N88xmDmJes4Z;z(b9?93qKVN0ME%{bR5F<>d@h~p@AS8Qw!84~J
zf{v)z7JZ2|6#wNW5yYnh9+#tzsxdB9DJ$DW$=LZds<^ITCE9VEtU5h-J!d%zRkU+5
zr)zt<OHZ_#Vs|$qy4$JqGO(~rW#!^T>9G?3f?yS5e_+~PG^bLebpG3R8x+r}TbL3K
zetEd{eL^|Y>6@{YcAD($n0^a0>FSUiI<I6eC`M8g&zeK^a3i<CZDj*RrEsNG>CMdo
z79MDQ8Nm=0C;nE56c_IqmB+Ye?(T&Ig68l=jq4F|8cBn|5~Jx%?qw@+!QQM$;!h)G
zFQy$YW#HtIqklcE(9QQ+{xz8-Jw`2GAxCI+PgRgEMA*y209yQk5GHTC$3s_3kcjK|
zEF-oyV8)?aexrn=Bb*&atGudt!p6BfO~l{iLCAWdY9_93R2@SG196*>;4ojD!*Y|t
z!K=`295JI|rASTv`3eIVU(%<90ajnIcLM#sKws|gxwPPZ*&?!K=?0|FRQcN+qafw^
zh((PFm#<1qDKXo}#$uTPyhW*_k1Cl`Y*qGy`_>9D(8_D02V3s5XQ0Fm$1E%KrR}F6
z*@JcAIj?BydS`MKsb}VzoYFX5-XqzQysrk$i>y?2n>q|?(n@Hen<Dfv^S`3KFIQbM
zP2+S>-=(HD)K{yRpr0r!X8$?%Dpb*!8UA>FmWbZ}9Lq{E|8yMLclB~@v8O(<Hd21}
zf$$ggImXFOVY9)X;CeGvEz*eP1~(zLfHoR_$)Zc+5K*ZWA!2CX!nAxHq$<LCcn?S3
zRNSQUmS&{a`)q7|wjnYZ;i*U@ot8t7>6u4hrn$G3nS@=)XkNmgQ0%}$Sa{vX_clwu
z5YXG4*!H?Kks=$rS5?gf!AuRo?Zb{4@f021y-~W~HDv?{1Xm)G_Sx$xPsDjA*{X|h
zM3M(3)bu|GRwe%wHtSTAVh;bhS8Hyu*7iJChNA2xq4u7aet}Ak+w-5WXGgoV7x1j;
z$P;(Qc2oE<E#;=a#th>2Q2&)MSCLhv-uCqEm8mI9dgd@G{}=)ujHc#en)ezdjd#p#
z#M4$aC#k7~=8H?h3g{uYVF5A|xX<w0-paMM?Z#$PCkXA@1t(<7r0sZ?2pc}*<rGh*
z3g~nt){yJtVlYcw*St5W>H4sBw?}Q+&{}m;=|ubN2)|M|xHKYFEM};<Zbhh~weW{%
zl$#h_wSUQ4aWb)5OhaRWot!b0A~B62W`-r`9$7enE#9};*FIZ&Q6H)Xg>A&lu4IZl
z3wr6W2I`O6R7KFpA4Qh(9JJ<@*zI1TAf~(5VB=|1dp)DV;w=y5%5UB8DHI{o?4PFg
z?kA>_uLYXL+TWGgC$ToSQ%mC=4s|)GFqnTo?(jJOahw@``~|oB24B3)d@G1DgK{;{
zV98Q;>9c8?60|g*F$_}T&FIhjocK#!Yz#eq6+hnm%#yk2#wx<7>%=pax7VINZF|4-
z+mif)61p$k1cJ~WdfJn=VIjpAW$Ty5r;t;t_!3yr4M+mmrVcCDCX(>@^h|4+c2CcO
zG!su7jP{4m%RxmVHf>TvtEnBn{$GQ_tEb252rc7}t$J_GP4hbx#fW~-<IEQ7J$}pN
zpZ2W8vkYy<igSohOiHz-E-~xz&bx5aSK$!siAPTZgx)VZN>QeLZDI=8qtKq<)3GgM
zE8{2`yB$MfJa2<yz$74Dc1rOtcVyl!OGn}#kr+yp0^ZuOX!XiJA9kJmYTSk5b3;pI
zaZQq8ueIT~ffYs7y(f0DATyscWzfcaWT>co;r#Zc7yr~$?C@DR<KSKx{I*V#SPTPe
zAL7kp{z_bGSIRe4i>+rBl?H>~tkib`EjE>2Rw;^_J@^)YLmFv2WiKg}+9R||PMk&~
z$5Fyj%15yaYcNgXV(VZUU|?2${>V3y&7lfyT8N2v>hcDp2R1&Gx<uZ9mIx94nvE3+
zFUL<#{r8|@8>H*0in0W+%*~%-v$ZcV)5i!s?B0TCpNTUzg|27U*C!aqnewm55yD@G
zfmApnmoe~kTuB9c+>0&XJ8;;>#>&_V)L3|7W2P+e{_Dc-bu-!`0!d7#U4PwppSu-R
zwE~ZCK&olWr3>)9_!o0yyyEf_Ps8pte&q5Wk9fkyv5hib!_Pw1r*u+_Po{UAyB4`*
z4;DU~g7@b(6;F-p$upD}%43wjGY~>+_l=IiS12#D@+kI*s|hLUH5U!s@7}+&M{6Nz
zT=lJ@qOyf{X;XAFqle#1b}6|b^^t3k`h<&^+F+xalH&-A6w#b4{T?(p2ieg4S{{m3
zK4XlfFB&ekpIcyTST!PlmI&o+eSS3xdhrUUfnnLvsdqbw!cctp64k8z)^**w<rMXf
zVS#JnE&O3qK+|dXiGZu4Znkvp+#^X^S+l|JW6E5GJu}06z>Me-Q?oWsl$?;#K>}Pv
zdJQ>NXya;h9GS!<udZI1Uo9PLNG^HGu@~nUs;FCAQ`9t6SF+K>-LFCVewvd#pg7>_
zd9RM}?ASA3u_Lf{f>q&r+7n@a4n*hE#9cyv#?3kBL3!)PAoB&_6MP^Sct*xkK)8sP
z7RsD~{*SIkVBY_L&c8utGS(1W71r=-LPajIkGlq%(-EgQV#JF^wWBtVM)&(ZyXQ{$
z$zj0nE0mDF(uk7B>yjM8<1#ER&lwd}XJ2!9+Io&v;xLBb(2SL<8SM#vt0dkP{WI}B
zj{}8_6Y)9sL;D=u<p<wMfAsRYT>bLdt@yiu??zz~w-AP(!8}<gSguyR;!SmS6xmva
z@Bb)eoZ-IRPHOX`t<@H-E@KDvxDjq!ZU(l@FG;Oz$Buv}X3i7;WZKvEQ8Datfbn@=
z;lFB3S4r2Lw8@L<J2c3G>5{7YQsm9?MmTy6Y>IvC@rb`ibTr&0kd#}Ed^CoTv9-ym
zVZDl0@QcAhlYQw|GIGSzfoh=zPcPhn6d&^8KODvny#ak^eg8ABR)^?=K44`ld!LrS
z57sbo|Afh~RzOC1+RdAOpY`2@-VoC`GSSww;&cDRtND=I>kA{d`ZCREsXCVmY0bkU
z@4IPjc8;-<ki^rg;6@NBNet8m_^xLqxM9m3e2*SvO9-qM;~h3PFK(|Ft?cE5#Qdo0
z-5?t9Gv>V45JJx^heft!MQ)=%k@IuNQ6hNM0!kcb$6IsXuqQ{--5DB~S97FTCrG%j
z#Vz-toOX}0Y;c&0-Ysh%1!wb;$d~e18Dr@++TVgbVn{riAc#;TAYBE4gpW1%yyy$I
z?^&~l7q?;d=XaPmofXmZI=Mgl<f0jUSAZ@3s~`4i*d#0!Lp@T{Mnit`HKZYJp0@tV
zFfsM<Y)t7x!@H1y`9sO=){@8LHh`fA;!e=elbnQv3vioI`2DU0+L%k?>DPf%6Fb`W
zEwLX;O$fV(*Xu7Z981TKS^VTS>HQnbS74jMW|OE$s?vmSf{OA}2Lo}6exn!VKhXrx
zkgNy>j2#xJ8}&Yw!V~stH`||DJJt~2pEbP<F`Xt}wcZW#?*wNT$%=@5h?=GH^cHss
z=Pf<-gQ|ROMC)`iSZI<TAJJGyv=_#pi3hqsdckcsAYVlIDFpCN2nk=jkX8M8d0xfj
zL2?!mD)T2ckBrDnwXuhTR9Hbd^sfV%@}3QoUp7OWtP7#rdS+qTNdcX9;<KBaU6gXq
zSce`C$(w<032kOPROkm9HW@?mn4Rt2fM#Ms1TF-RTRv=u*<SddJWq=1Yd*U=ebd{i
zH#{Lu7<qAc-{HM^gxp*qZGkhbUxpvWw0{~!^$n;jVMXHz1^h!FacCamVm{87S05u(
z%DNy=YHa)o5=@c&5$w56a<_<@+mZ7&`mq*UqkYm)ZeIN`rrPWdQP+nlfffr$oOIC-
zY<m(nO4Em=W@m%))`z2e@AtEX+Xo%kI<=XPpy<hC?(Zl@1Q+fkklymymk}|lIegKh
z6RSQ^Em*piv^A$huIFyi3M0LX))Y)Cv=$3nh;6R9@S!=Bo`_lO7O<vH_b#*~oZTk>
ze5<CG#K*L-mN;@S@-<E^{<3)+t>>o-c)<1KLh#YnNJqZ4IyY3o?#@?^FGnn*K1L)@
zQ!!HB1&dOAfa~a3dDI(Ok~<7m*F!HHn<sypE{Z=**O{O&V_vp<F~Vw=vB~ouS!(;d
z#nEh)TCfqLcJ$D!@uu3<cPv~LE30X6P=0#)5|gJ_3k?T?$)w2IRSQ~D6Pr8J<zAq4
z-+(i1sqKN<6AVT_q29M3G!?Jt2>TK*mqII#xT)lP3xcM-xRyk>1Ob#@_wqd1!+8Gr
zb4iVl*tQ?iSX{M6ZTDRiZL}4e1BXzgX}2u_IMRQg;6p`_R8$`}UG1iS8ncBFE;)aR
zXJK=Ot*u>2rz`6lShL~&&($=np$8nVvt!%~r;o2~u3e8<RQgf)r?7$EQLlHynLBB8
zI(c>9Z4`*KbnT}`L{-;5I&$WQJmnNlxjc>9rLlxFPQ~I<WLHDv&1)Ci8)9oXxq6{E
z)NZ#tHp2`t+WAq$hk=>7^Fx>6RpqhF5p#jg1jT00(K}=AXKbcuMxt$<>q!K#C8)Z3
z%dFkmPf}^BEkIML&&mQUuhmI&DiN~e(je96>;@zPyuu<7&K^H`>X6gzC7N&>!}Y9X
z(FT7#(W~U^Y|C{M%)Q5ISS5rTy7htltSr07JZJI69!{70Mjw@0x;34&Dz;49{B{(#
zLk0@B-qUpqT%AQt?HMandBt?_-FSfOj_c~X8_*dKB<#GvwwVgHh)|S1Je|C%BDbeo
zi(o5Z<`VUC{1Dwjdpwq{@4a}aFt(nK>juRq*oocF*)DOQs-FuScOi7A9)rofyW3zu
z>EOrd#+1|#{}nOi?p~(wN4Gj(c{3OiL7od~Z_?K9`?lF~K3I1fbkUPegIGBfSxrIu
z%0H<*`q3)CKlCy(_5>;<>fEgzf~0pTogWrUD}0y^EmjKX8?<^iPiE7aN5%iWcWs~Y
zWTj}2BYhVzYYJyzj&al-{a5g&vs8y-(yAA=6{G6`?C%7U85|yEzvG>eeAAN69f2j9
z!gdg`C`0~5Zz|o+(#7h#sHC00G;QMSedn;xmALt?SQya_xq2;!uCNlMGzshs{9Ybs
zvv)YQoY3LC`Tfsf+p79$|G=_Bqs4H^y^SOaGv656mqcy!a*@3q=sM`Nlo-RJ?2FR{
zY$0AOD?dbE+GR<Zj?W4ghre-S&v@M*$3m+)Y%hs{>3vUjRks?)T8Z!ET5F>%cY?Mi
zs)JIgj=?_v`Yk^;6<4I!Wal{Y1-#Ri@9NFdxgPrKWR;mn?4hm0BcWTB=MV>9-)T0u
zcnG*ue^%P8KwtMdZAT>QU6tiIH>Vk;+*iQ;4OdfXf4gR9dw)%{^SWs|wAx#{%Y)&b
z<paWQx|({Du$b22J5O6#4Ps`PHYnV?9rXCcnd=(hY(pV7)@B?t405F}6Ry}Ds^#O}
z%s3|6bL*I=;3YQLWEssO(hgqvtNQ<hwDY*wFqX3$5)?2mx2lcP7CG+@1J3#G+|B}R
zWlK|Ixf^RK=Gm3=HAFt*gZmX~S?t*}xmB?({i5)_Oi%5peH#}MLzb82p~tGV;hQkg
z4btoo>|2TLb-k<^pnTC2^x8qD9!E>PhpEk(4*99dJ3AM%K*;zbkT+s|+9EEh(&Xub
zTU+`2s}E;)pltI)h1TD;T}SkcCGWQ?b(N<H(L3h&WsdmW^~1I^!gK4cIF#OxqYAt9
zfspTL4LVbMeinldQywKMR9Wpv-h*IrZn<rO^ufj)BQ&SiU_)GQj!xl(P^4DE8E28@
z;dZn^2aZ)mYnF`Vs|3PK-P>Dd$XPU*r8|N}0FEWf`ZE9g^|-CMpQ7e`-p<<%qDsYe
z@9R*hC%sR#^Mp3TDTZ$=7Uq4kJ5}MfQB;oT(~4MptzNuW%f5P)ihz3J$q!jop|F}J
zm>TLQ_&$HAi-#_diVwbh8*w{O<0+>GJrTEzw&>DQ#Gq{hxD9-Wb^}USYgvkb(*!e-
z7g=($M)6foCDSX%M49U5KUMuG{6=VP(?#ddr=)DhX~+K+q>}j1SOwQn+EI7f8g$?8
zOGW|N#b<LUU~)cjUv6sDO}J3Kds52IP~k{dd9*5NM=y96r@X^<UmlAo?}3#ClyM`n
z&<YoF*q?7WC-3~7ubildekpyyuFb&T_dB%*yq8LX<{E<hs^~4+qM!UlO`7)a7(5^y
z>}Px==ge{Cb^{tc($3IMM-ttDVx%&`upU%o%tx_*7zg~L*x>(y*YG87K*<3&pgN5k
zknQdW%U`F)K~m=`W3`dkh$-uN{O7_=sfd_sOzQ&q2iCabuTwKvYz_9_6Zt9&GSQ3G
ztq~fqe_pon5aW3^dMZ6mUp_|lm`C40o*}j#<GT%4fn;oq<18%9seRfw0ZDjb29uzX
zEa<U#@67gY`QXv<-s+vZywQ<BI3?<DRY+@AUi%$Z>!kG>J`^YT#a&yi_g)S}U6$cB
zx4Tk}+>hZ!jR-6(d)g?;;%kWx;qD-t%()pHoa8Gukt^{XvQ4+_Xdf-y3e30IW?LFj
z^W~}l35V}>WO=S`pm+UEaod)Uv!RApJ?>qoIJb;RxT8Z9>5@5m+S%z1h!ORkCgG(1
z1{7WBuv)^8&BmawKWnrPeX<flue#Q^OvFtVNLeoCMxiX%^%C{eltAj*|68ie+cnE2
zsf|xBZ5_K+IP3<pgL;`rmsY8~sN8Wqc6u#yt)h$uKHHhQ{Ve}%KX9e<)25hOmiD6z
z`iU41J;KEm`+HqdkKCmA;O2{ZqkPfW4oo)4+aBKN1~Ua$WvS@yTZ{lYp0+!>0nv%^
zqgu*#`wJ@Jx$(K4*4FttJ0x~ujjoK@;hJy5Q=<}CJ8tP>v-Er1ZtFCnowlngd${!>
ze(GGneqPdf*!q32o{S2I<=omW5RZ!)Rz4GY?nu?0lX=53a+pe$ZxzBOpd^^?ky(s3
zoy-XTisaC3W#wD!4S7~ah|hA9Ck4gk{Hk-(3<BEtcn3WFZMfwvN<r25F2~n05LClG
z6>_~fDO=X6d71r7tvJ1QzVLTJeRQS^hLg8R3$A)Z0_P&EpGr^+N(9eVU9ns%D#yx)
z?y>D<hZym5E0pT|=>GvFv0ZV*!_v@XLU`Ms13;`hJ#*)L=p5hO+y{U5_=(nS0p_&_
zGet4!oD9e&7ALvG`N6<)#%;)W@sc;Yh;((u54jY1`lxIR3j5U*+?15Ndb8p!hcrmg
zxaPHO%X1lcZbgT+n{$)Y)#J5J`ia)yj;jGoMz3Mcdjll<_TF{*28iyydyjXHd+T)R
zno+|?cUj~&iSG)|p^?&|4lmqSYCR<a$vcH#5^JkkBqXTGTfujn`u2G55Qcp<(V*#T
zVOa_!o9|nTHME)jw7&@tONto=jZ^bT%nrF;SN3yZZHG7O_LM%$XG?7<X;~^$jR2BJ
z##3PcE`F{r!cl1nxvZXx=Q2{R;gY5KQp%nCDdr>2oA16U@RP@=^pz5US7~xT2P(el
z%6e|RZ?Cd70C78#J`lph^>GQwbMrJlT#<SlN1f=(TJO?SGG;I*Pn7e$P<5-H!d4xR
zKdQx<^2p&~g8!*E+80ainR&94)5^M-y#=-is>K0mO`Fz4{WaDm(ELKmxmPo|42i#M
zb}vC7VH-Ssxu`D*Pb~{!dNF=7FV|D?gfUHS)FfD*s4r3Ef`OCNu#>tL^ZwZMlO<!^
z1%!!GJoHT8ooZ}WG9ZMe0TTLn2MbO|52I1o+3xGzV)V3npe8NX{+~6Gf23Xhow58o
z5B6WFN%_MY{+TESF=vJTw_Pm5s5{_Zx{;PWKwcu-YvgMLK2$`>;{m?ej^<Ka0d(@;
zI?w-=Yvx~QOY{bWvL!*St6VpfJuCZb4D#QrGboclFy4R|f}Y=iAd%NJj2^cDX-*r*
z1%oijbt8D|f*E7vzjK=Zr`tXj`=!mYi!5^ZW<?y&DG=~)>a4vNzss|V0c?E$<epCW
zw!jFkpc_zV5&2NSa>L$bL|v|>HuVcxm%-CUyY=omlX!>ru-Gl3QezYw*0tQ?#gk`L
zSV$%xd_c@pCIvjjFbSk4&0#7+0u|T<ym*`Q1_ajx5M@`!4XBU;fL4G&>a*kxNL>J>
zpo#_jb7#^22DD{80%X`tfDb&B{oB@@fEFwyc4Po$mV(5}2zVkKK;mD}M!@Z^Kmz!Z
z{6qpt+5vol+TXWj04TWh@GqlVj?^O&RWzsc;I&+k^WS#w)!(+H4J<}te^ibg@=Nyr
z*f8Cj3*Rg$sjMXU{yY&;!83&R0$G(BDHBQ}`nMpBfmcgQelp&8EMpSOn1|r&yGb-C
zoXi{0iUsKJ<}Mp`zXj_CG%^jmztl~GdK!t46r};gXL-QP`T;YX^hX<iJdZ!t$M3f8
zkNxu3w*SB4d6a_xk`V=L^_^d~`XR3bk_7M)ol{-m0cnZmRH*?u#PQ{urkpbL(!C7J
zvKS1ph>=^Ne~TVihSw0~=GWN;y0Zu%HyAX-zE+uJO(m#E^EC(;1M8C7-d^?rxP2UO
zF*rRE2&Nm*&n>`*{{j^O`GBt>i2xs}+<<0BZ$LOIs2mPTz%Zr*MBFb;BM?QPh|{m-
zjD!I11$@9<7Re@Y8Py259X~K?=vS%-0Kf=6@F|_!CLoEt0bQrk90F3mo#$`>uib#I
zgaKUkD`~Q9c>|gVSWQRX2h!Be|F7>(sYFLQ!B3>@3K_4&PbDYCW<@FYN{uQ4+c3eG
zzO}KvCp}ncEZ_ez<Ncov+5WdbH#~7VPxIoarMg<50$)Vj7`jiyhUj*v4O^wpF92W*
zLKz8oHYp>(v-y*P5#K;t%%$MJ_kaJl+;!X%w!j3Z`P9{E6}^CPHK>RmjDOLg_tM1d
z!tfO?r`da<w;u#4q#bE+)~SW2e)4`g%n#bDN@ZVQYHmOcMCk7GXDF4?XS17vzaExU
z@l((PjIw)y8&kIrUdw2Dml4hVAIW>B-p^^~2O2Yn<S`_k(3)FwQd#3KoeujW>6Wa)
zRfq(sNR0_D7uWhrg6-%d8K*!B?Qbc|iSVh9Vi+g_6)XT*6#haM^)#r*{{UHt0O;hN
z2Mr4M4S-Gx{tldE{Lx0+Ujpq69AfeNhYN}BRO>-OCq;?{#}yW=+2PZ){(%_uw9$yE
zF2E4|EuJpS+kx6v+D?-jWm<ZpH+RQOnZ-%HrX<P<TZ$0t0vY^EBJJ91yOjigFQH<U
zoE_-!>_G->L;6fN-F6*U=oRgu<kA!v$-W3wKL7}REw1MVMDe?|B(VdEAV|SS3adAu
z@Lwhs0@Od?N?b5H+<?0O-R{DGB8Wg5WX!K32*4Qb{VIQu!biy)fZ_GO8_W+#APCF^
z_AW!I1Y(}%u)znY$N;c>j5ZC@_IJx`*aFmL0E?-YB@!hd`$wPtrRQYW6>!>|pRaE`
z+q<DR|Dy8wmE2qynuh<6AM_<4dtlBaHe7B%<)v3QAk$ybH$wLY#8Y-1uDy80=<Hz^
zR&`Hbre*S{9TJ9fJKEOl$kdoMYv1;+pFRF-i(1{}D$RQoy5mU6oVIV4t~3@EDfcOp
z$y{GYxxL0-qs}TDne;pVbE=}ajBt0Vne^~_quP^lOkc0ST;~-DZImFU@8VRfB};j(
ztEttf!8IhDSLE{^b?aQCHngdrzN*G8*@;elF6yoyNKD0Q>uHija=-&E<<u2JdacP*
zs;AutgH7W)Y;#8XW%0@my&&qKOx~akYc*YAtPtnO2YM<l*@oA7q>nk}7WDI`K}4Lb
z)T?Q6CC_d>_*2=A0L~4_F&{NQ4X`^mpuzSV&|D#q5OCRg08*3wKX##QphUh`PN1H6
ziB+~#`Rz}s?6DmVlSWezJR#F)YXhMkPW&yHnwD5uykJ?xYuN{~8d=0Z0RsSK{z=GZ
zosspg+{M%het;BP1{3QcTvbWl?JUW>EPwPhYoYVr+IRZtk8Y0|tcbrYPxSz}37g3u
zh~r=VisKD|IR3sYk~R(ao2dcdy*6hFq>@M%itYQM)+ZNl1&TzQ&LU!%nU)tsnbbG3
zyRuPfHF|m8x<lAwdt=?D7a2{LY#!U^6rS(8xE(zfP*id7+QY}}ziL$f(%3EeI7qiI
zjX$51-BY<YZnR@DjFVLu{@hP_MTc<Y<aRx|uz~Q*CV=|>IvfWa-u+(&{;35R!46oq
zkW#<UUy`POc3Vkue@=OMZNnF?2yCd<T_HLdWido4|K^HWG{Qt8{N!4E#oA(s7`hzK
zWVe7lBsYh}B(`mM?=jSHF#Vs+wTjGyM0J(oJ;lDG=4m@hl+hkcfLU<pwnJL&w`OMe
z!}I`A0nZX+(~kFv*iEKy?Z1ij(rP3$)Mg*(b=m!s#;pqA#pLGxS#YdS+8}956Yi2^
zgAfK=ZUR$w13=9hI&nB0Y$K|<ysKo@EwoxwkC`=;A=vS74P91kS9xgf!^6qgea*jn
zXxV=YG>Tw|F$zEd=dVZ{^s}C^UeV!0sXlw3PR6sQk7Aeb&|>jNI<TF3<@6#;@|x(!
zC0)r2J;c+t;u;k)PZv3tKkg1aVY9K#_8^xy^mCIy1t<Ya^A@mH;e3Ng20sdYFsVMQ
zi;`1%<?}>@;Kb9cj~_u;AT(%=^DtR;Pee8TT`OVx@&-RT2TR)Y0sUI1@Q!r~xqYE6
z_mzrfV(<VU?l3VtNA=1o2I*7#N<UCV`zIGxIzkbpaNcQr6$tE_z+Wc#Faa5N5ZrQp
z51^dy>H7%7y^QVvRhgC0<hqxIxcu!(f!Zb`l+?3g_zFrhmIm7vrHbuF;^U2q%f!<M
zn0gA5Jd!R{6HBak*reuk9_t>y(+?qLD^w&J4c3bHOjH``ULBK@va8GD^bEYBT#X*C
z{Z=l(TToo+rIgW82!1DDvRznUi_J#9huIJ*St-=}W0h(*65#@8=eTdt{Gr7&XJ&`U
zsHv%`UID1eg-~eD#52?g=2XwvNjr^N6kn?tjh<+bPP$lA;0pjay;PkIu^ZlLPDYce
z>)G%8-THu!d`5cHJ=igqE5%PZOx=djzNUsLtM&jJF?^-i7Qa9Te{e=_;96N*bId?c
zsMJZz2#cqaUnM&!{j4%|lBy@4J?<jHGX2q)8)m=|$nEqICf_49Ju<1AQRfrd71=FL
z8oy^l52ubgXJd;0UUDMcze(|Yf5@quMYz9vYEykGb8;v#cXoTcm~dXc=sC(#r1{7X
zS9blXq<3><45KKkK&51xf10@FoILl7hLOq7(O&z|@y)zeW&MKfUG1%ZRQiUI4qrsZ
z4&MjQJO!43G#@n(9>%yYr(fOD1Ew`My9a!vBC2!)dR<g@{b0iFK1zNw5d8C@HDIUX
zf7#!FCQ%z;>1YB=$3VNIf@EniQZx9LdGimk7JHWJ-<`56;FPTwyo3*%eoh}LzTv(n
z4Ox)2^AzP8@;2hN&p}Z+TIn?*CtDt6v+!Ptpv+@*!0m6a+7E8cTg2-H>_^%@PEf5H
zx7Ay4Z}E5@-g`CJm|mB*c7myw+yjPgwqM!>F~CXAY;(Z^(AAjZYpyU){HR#bM9od1
z1w1?+Xp_%wyD%RVR_M1fZ<BE)s%YlUSD<qPY6wns6x^~RITQ#qmaG|-sG!xy(ZWZk
zGjmI!JkUkMqo9w+VyY`@X<SSNWG6&b>PMm`JtRINhx^IyS9|74qZ^a7!d?k_e!cdI
zvWpbL3IiInlswe_&DQhIhEEOI?{q?Q&oUW1yFYkBu-?$#D*&OXngpElMY<m@wqM4q
zs#Y~NT|`3+t+ctnKWVVVk(0x4vKQQ_FK=zlw4?wVO8l_Xc53(1SP@B;dI{GmS<at&
zWcX<74j)-{o!X16XLqIFH)LDDBby*}g;2cQZ*JKux6ADcc0G!<T4spP-?He>(!Pkx
z431aLu~`pU^<U)M)=tM0W%0T6SIHAHltlK|#_XGhYNO!c2JHJhDdwWn0(OU4Jge8*
z>h)%**1GZ4%D}0GGq+r5K}hvk++3|Xr_N?rXmAPJIs%65v(pFk<z-`=Xm3^kghVdU
z;Zir{LYj1-mNd1ZV{QRm;d5(UkX@i9;&${%tK+lo6pqMznBIktSADv^kzhtir0-q&
zAvKe=Hx93}Ml3|abvNy*tL0v@PRrpZ55by>u@m{(+<<p6BuBj}r|<nmnl*+bdxxyE
zB3siaB4s9cqx1HwCX5Ff7e&Jv_EOe!*cy*f(`AL<5}HVkuUTI@J6!nKq0lx7tUcn>
zS8hP)Fxb2yh17C3&umV~dfzS%;TJ5-Ll%?eZ^J8**gY$QcKVY>mx}qRjmg{efehj0
z>laTKjK)Y(N|jfKJ@!@)BLeV%z(wBV^B_0uXHATI*;Va#nK|3Gr8K$6MO{lOc=`)s
zgH2yX+!N5ZmjjPXeRDAhx*s}_38^8)3L!;4Eo^odJ}+{!jMC#Gsis7=3&HI?mMg>e
zYRarl>$5tjCQ;R_!_IiFST!P9nnSXf)VFWhd5Mqits^Q|)43Jb`KP($sbSmW4vdk*
zLDa9$yu!2{nA#7p`mJn?6`ZU$uQP4B)>ar|h2}z9tf;}C@C3K@l$Q2z5x%DrHA(jr
zl>Br{_BTE$LNZ)r?gB7})@k9(`xcsBpMpZe#mk)=kc?Y+S(vCyIzC;9i{~<X_KNKH
z_=^qmcv3l<r#$9%<y4#wTH^H9(CJUrO<>6}mvGgY-rSB4fr`Bh@lz^%58~oN?6E1s
zXD*6n9vzYd(v7fJ@r{|-@Na0P>6p5D{qXqyj-hbX54*=I97XMBq%Zay>dlvL`0UZV
zqS(aPAhUYztG*#)468#5O7)ubY10-l1tllr;nSA&%*{*j%x{*91dVslcgf>A$-5&=
zn?iTCH{>a0^zF46p8TM3r4k$RPAeyACnvJf)5@w5tRH)QCH5uF3AH1Z>kvL;i?0!@
z@8W2Ql1MI3Qu6)*B*p$*GW#ou_U~L?A@lz<!}XWn2lR^=2o{YHKz!rCaZOMyyJ|Bz
zM@=>MS~n-?W&K39znZgSM!QqoTj3|0e4bq`N7~I);5o$`&<i$KSN;(reR&%fOea`h
zE<@-m+|v94+Cypf4%x`O^jxUd+exIDwT%r;;N#K8J@sCYzQv3Q-Yfg?k3sZlP6r0s
z0jA>zNX5);AG*f6*tRJM2}efL+#C9OGat-PY0tK93yC_!uxwd)@nyg)kGBsklHO}+
zWAW(AT70Gqn*4%G?O&G5HXOt&(vRbbQ$nGfHneyx-B?pF+67xz=ajf>wVe+`;jfRV
zXxi;s`-rKekIPP?Xt$^Z;iBZ;#iNVL;)ARZHp=K8tO0b|aDOv<A+t3tNPwt9Gb5sK
zDOJlHU3(-a@NG|V;YJ`5-mqmo&sw!h#XtD|C+psxjkd@eKgJhiYs=4i_)@%Rmi;m9
zY49v>lcw}izUvk%=plQ}f2e$0<$FGjt26|8yG1pj5t#R-{7V`k16YU4p<*Y=TjpF&
zL}DsqE2E|#y5xxvmGHE~>NSa6H5|V~Uy(|DY++~vQ56mCEYC@9jFN|it(l~)H2JV$
z$@+D#bW=U<77>YO6RX$Hh*0;4H+U1$x~nR=tbzx<pfMleEodHol0?Hk#CNnN*w2o2
z@2HGE4J(&fkN*g=6myNPx4Vm2L=Isszqfp|x)@Aum=(-><vEi^VS$L?h8<UX;4V3z
zP=A@X;+tv~)wQ@pT8l?gCymcQ4L*)23D70KS^kPX?-cf~i68dzdu4rHeRX+_-^x~C
zZ9H?F(OY2>TC@7J=BhzOnX%KaF>KmOmCX_Sb0IG1eGe`_wl0k#n-xzWNCMCP0r<5o
zlm?*(<p_Fzvd6yL0iW$>j8AoSG^vbP^$ZcF4|HMtXxPH>UYqM1!s*pWqwX>lh3bS&
z7?weFiOo-2s8)ISfNcL<U#=T%gve&t^awY?Nh<y2=a&i6<2mEYHlxs{Z=_MjKVH73
zR<Yg4@^3eysCLs^?0~*x!%TZGBf>n<jr8jGZCi2_yG1yfcPTNoblQ@?ZPJUBU#7xP
zK(s8S^0PgKUGcl+6Uo|(F7tTp9VhfU#Z$@ea2d_sYUHnh!(bhhoG&uzBlzwXWPb!v
zg2bNI<YrrX49F7~<;^b2QrNzz_cgog{p_{9HK&`^KHd5(B3-kx#^_NE#BV_M?wR!M
zxu^_#ZWRUM==D>q;<^a)6`4#7#ODrSth2|7VE2N4T0d_s9=4`h3RfCd6HmevM^1-b
zBc3ABntJ7yJnuZF@^Pe^-FnVlb?l1A^W}>CT|c&CLoXFkghh%C92L7|*Uf$^TzG{x
zwpVyut#Xsz?%nR96Gh9ZXf~xb2~y)PNc4S1392IB!+iGPVf-TIxrFD2H=vU7YjmR{
z$Z4f<;kw5sPAg*yFI_8>&~^Qemx0_Eev1vXgu5ds&4C%qq_?O60q7Sket%W3F1E4G
zW@`>;!n%34L;Io18>6c?%X=h>wfDC##nUZ0Bm0Q-VGQr@3&En$y4|}ZfoM1=(A7Wy
zNnfwL8}(xIr`m?9j=<m%a*-1&ZHZiKY;kH2mHWiA_skVZbdAq2TEcb`83M-BR|(eV
zLk0TGm@LitY(a*vSEGc){YSJl;Q2H&<oM|gKP6xv7OhT>P<BmwhFham<xbX)yf7}Y
zB=-+v!6eRi!fd3%3VKK%>UU97Rl<z}51jRX2HR?&O&7n%(+sMmB`;KbS1*DRc*K&u
zXV*SW2QNbg`_T5N{Dehb6Hg9#G1P{RFYQM=iC~73K8~I_Q=^Zu_Eb46R#}Fzada-e
zg=5D1-w~UPIrjaiP;Qq@c|XmHO`}cteKYwaZ|YrWhg5=E(2tmvsa`aw#~S<Gp^nQc
zZ?1E$ZA<PAXu#S?|K$2Tkj})(QM9|YW5hbicob3ME}qRBgX`{K8Zi7FCq1*+I9SrA
znHIsMt{7W#U3yGB#bd+Oo|Ad}_ULSr%5l9%3fiQiG*(hIe|K8$g)Upk-qfNsb4P(;
zV?@dXxoe>Fy+><v+ey^PW<u(L`qpx*Z}SWKK037K{me_6)mx;qS~+NFS#h9dgZ)Ze
zwx%ijjIJAAe7ymsdE)UP_KVX0GBZ|U$kP^Xw^}0A<q?s^QMwtd50#-kni`|rw77^^
z@k|p=6DlqXNIw<^s&%HlZ$K65#&?ZcK2uC7UH)gHz+!xAvBgjnyPH${)cxlnc^qeP
z9ZH1pd=7oKs(mWYxN5yG7yl|sH1d^wb%iC<kj{x{oOcs9rgAevSr~~KF}qN>2GSFe
z9Dn()$=d1iCM>;{#fQ88AjF5dV_Dv2qiNjvgLNI-*N2b+HynD7c@YRMwd2C+9yQb9
zUVbQ2#5K#fSM<ZQq*N6yMtCvl>nK@O5zTr2b~YA;s_`Xr3!67`YAJqQuRuIuPF>6;
ztiZk^zm{3Fg<MOBP-`A$zZ!7{W65S($HMfjJJikUDjIsA)JwH9F#LhVwm?c;b5ZRi
zsRt%!Ud>-+{M1%JQUMng57353(ubPAWfh9qZ6kPZK$2{{C_sXnxS}m#Juc3M@Ut=3
z80T%UQRt$pXqen1mwWu_X;3)DptSm(H6o{NbwhV*a>PUa@NDaBeF2D49@L<Ny6au^
z;g80eXA~D$Sk<0NZ+Cr2E2pd3sLzh9qp#x}&c410|0o+vdaDgH<wF~lir$yFFGes4
z#YJSBWtrv$baBl+zdM|rihkKV=%gU<O?7jPuhSf>tx)kIk)EMET((=Q{-rXz*<m4J
z52!=vdZrblum|I)%(Y;j?n=7q`$dfO2AvYThRl&G%99WpVwk@P?$SqLubSDh_~300
z-7B;t5teAzXA|C-->hi~GiammgUgvJ!Fn_qA=DnnVN<At0t*kD^DcL<7ln^g&iw>F
zMc1o)4LrR8Ri~wW9kx0tK;qauF3;QX$SeD1b!?fD%-7`R_o9bJoIYGYfJ!HQsQz1_
zRXPxWQGlc3<BuTA;A3$wgbCS*s9m1)DvSGSbHjMFGnsA9+;{2Nt2BS2*Qnao`Or(e
zP-a^|ZF~wap7J^XzLNTLKKD;YUIEc76@aru;R4rwr7b5KYD+2?Olf35t)pfcDpXI@
z70BuzcP^gY1?F&6N!C|lEzQjw)uz>Q`NRTa@E2=$XY(vF47^MNWPhA~N*u;49H7RJ
zk;6PJDehi2-HTou^^u5%8_+M+&OFUuZp*S~8NW2^pId&D5h(!_1PS<;S|_>eS=O)P
zp-}7qNegI`0JZ=y`M=~pwoT}vAOIQuxji`0zuz=P!09i{zfOZ$IRMyOKw1>*4DMR|
zlUC{R?g;b$<To)LZXy}d51UMZCz5@|vbT5`PL)2JW}dKqons<yE>hV5BQ4YU#cKbB
zT>rmUD)&#AB#eF(gH_8+Iw2CHz}xQ<SPv**He|jB4JIDn<>;#;>vr_^Ey4e5_MDmx
zNRl)i?xI$VFX^mDetY`=5qJLkEc}O5{_j)&A5i(fuYv!F%Kx{;@JDz4By`Y5h`5~X
ziF75To2M-f!`arFmD=COh_&-nPgmkDMRYek0wREAbL3FV8Q&uK=NGgsK+z5QXO|n2
z91>jB@_9i7)ppo&wwZXHz6s9nu~}QePdM;z5E2u%IWP4`5iJITPhLtKwb-E^xczmu
z^tWC439>?SeIFlL2DtJ7n!|V`z%*n5L}A<&`0)4T@Rx0X+x6l2sE{C(_8w3Q^80E~
z^q~U`6hLzJUAG|A0IOuzDRKFj=E4{Pob2}da$rLMsr(lJGsyyo@|I<hj4cE}e(x)I
z-DeTW@^41s|DWCIK{~A(lj$QU^iWd>?=uRr5^AVo+1^*PqsGzoz?q`>^&X6qGP%Rl
z@b1K=dA#-`3HF_76+g0Adl5qu)ed@pKYWFC6hB}&=%&GYfZ>(xG4chDLOZNPnHyh`
zAGDk)Y&nOUt2M&;EAx!?plwt!&kw&cTH+KPtcPf}wMTxz6Iz=V`-|JhtH+T_SRtn+
za(dfOsD9p|#9a8XuE%+W!|_G%Z3nFYso>*}!q8P-Fxi}uTcuh>W9R}E%YCr90sG$3
z1ul{I+|qI+DHYnT;S<z^Fd@xWI<$MSk~3%sHnUVSztFi-hjw^;#or^HESEY|l&=sm
z=<e;nfJaKmPtV%d0O4Ae75`$DemY(DL%?`?{+Myn%gohbIdYFmLV1GsG<wfyVP~E0
z39q^ec?#&~t2o=R2gf^tW8(ak&LPDod(Tg8ZSOTDew4X2tNHFjSVO@~rpf?J5=Axp
za6qD?VfVArb0B6fVITY1I%Zh|aU8T}DIRTT?he=DDZjg?xha}7Qg;}b<DAG#R<%c?
zKl(P7UlHuez#~O1Xt+y3pn6y=^wh&oNEmEnJbl4wJbilYHI%n$5YgY^N<KfII!6d=
zJ?^*NX|@W$j0O_ytCg=WSBk9C*v6~e(dUboDDK#uKSjrM_=4#&v|?z_wL2(962zW=
z_+Wu%f@8rtanICG(QlB>@S=5Yk>}PAGSL*%)8gz5w}@j6;1mSas*%LkV|nGo@7x(9
z-hBvO?+tsSLq`gAKuy`>m0fND=}`1pu%R~czG365k=7QA5f=;g^)J$P?^f<JwmsEf
zH;c*uvD~i<<l5%}!Mk!|^!3|vcbpcL$Ma`aBgEjMj8aAA_Mgw&us)0lQ%2$Qic`$H
z6SmAar$2_m&1**X*%|69?rO$AqZ(({X<i~0`=)B|=rFQPO`g`TIc`UyG{#$NlT|NU
zHD39h3|C)Hgn;XMwzvHhBdzN9LtZd`JLCl`yxLnug`6)hk!mScweiR_X5g8bG-2hk
z*J`B$Y{HL|qWS47c-*&#Y-R<`NwJ@0CKDeW;U><=qxr9b`)eQ1o%is0>W!ICRI}l&
zkc6wZpUf#xMk!pVKPJH_HE`)6E53bLTH%~<_yaXePBE8oWt?&YvLHwl?VyRPwEc-}
zI6v96b<1ff>p)>E_Cqd!+G|wJ7H>L1Px1V`luiC3EC0A6W`cSa>pQu{H<}j^ftP+H
zc5fvy?}hdrq7ubp&0TQ!D0m^$0#8jCK2|6UWvt=Zckq?SzQF(RyYY4hw9|7O*L~?%
zuD=QqZa{zL%l|36_0QO^|0nMQ%ozk=&N|AjLcm)Azlbxq9YCA~8J`0cnxi;?@woM{
zANkz+hZjk~yv~lc7LR_X>HK?DlD(>!9N%Hhr{25y#<k*KKvmjID?0biKZ}aw_qupK
zEbet4%Pm=}S?~K6*BkyN#q_-NgSW!@bA-RmGPru)NT-p_6=Tkz&+H@V=D_=9-zYOQ
z!>i!lO<IDo{L_&Sb=wo#$uLA83M~_+==vtN%_Scuj|&aE-<RN65d$yYct-dU;~?R!
ze&)e@L|G@{_GMr-?YKmx^R=?RJlhnR==LM|#-`=-WgU#v27M8auq6$xxR#Qi3LeIn
zlLiMCWrF2XrOqw*`m*MQdaz-(dAPpoI8$@Hfq{Hq4m;T^*Y|`!wil(O;d2R`(w;@q
zw@TusV)&TJ1We!GfDD2p+`<Y;F#@-{Sb#b+@CDw$-d3rK+Vp9YNGs<q(JVBtgkCb)
zQUH5=Fpk88K>mkzn|QY1o-Q;YlrNP+8`VAGqV$-h@Qwaw-K??AuLA-PE#l`H*$40_
z9LrZFn7b`JM9_crvXr=^+ata($FdyOVMh&|hNbeBG3gEw!;x!zRA;APUp`?BHk+T@
zpt(TAX~AiK6S{Wwm08u%?FPu`zU`~-^7f8%LJ>~JTnR2OP}3b=m+#aG(vC-npjR~b
z4Ab37uO}YW@bp@W+KMk<bdLv;fud7f$i9)J@ir=!C{tLJC~RP#K<s;lJ~&4xb<or4
zNpHz|jZP;NIM=~OjT~GHta-MQFq2#^b$i(x*ct=Xc$ZsaG(j7xT|P$Ig4^L4Xqrfg
zLhE|!L>EuqOXoB2VU&`M1ChRPFTK2@YCTufC$z6rp9C-toZ6@iTT0V6@TI}KWf#=x
z(vH-^S8C}U=mYKScon|nuN9sgy<79`?J+PlC;c%bV>tc!^s|!kv2^XkN$shK3?{3v
z^x(Lm%nq6En+SDyz`9OMM?Sq^t~Uj$9{d$L2?oNJA1A^r!|aXT9#Dy(Q>rr$vAkUC
zjec)WYqm~81%-g%FQ#`=%IDVbB%bUc<qIeZi&;^9)93YNvn#1<@fP%I?_(MQIAXY>
z9x7l&xveEtHW;=HElyt$&9{`Xq^>`dRa8<JaVODA8*={?WEvk;rJ#X9ruB|?Q=-#T
zb4TjeiI{(x*!Zmk8i?}~r%~Mv2iLz<Ko=HRCHX|#oTVzGrur7`jrljs!W}(u%Q1NC
zeRAIv>3uHYKZ734#boJQYQ11^AybzI>1BluS5Ncy&ns*yLz+U$Y*KQ*-w(pP_4b+A
zGrW|r$gj8?A9;Vv<`-nv`K`&lP7-=yYXWBLuz547EKIol!j)4|bfkyZj+Nn#ngQ|4
zu<(u=S<w;9s=q{?nubzpRb$12^FNzkp^b6F6upMpUcE+le}@4tWM?ngBc$F~Vb+{C
z(V!2&{b~P=XCk(hY75=!DGsdPTeyAYa$kiVy6`w&8>&317Gp0YiZ{uio->kDp88{l
zOj+1}?4uwDP^M*s_<RGhU%V!moS%c`PFBSq@rK4c(c)4V{f;&IB~W7@o3H(^P;2S_
z#yopT4kS9~RkT8Rs8;w#@vt23bbHB6-$A5^B#pn#2+w!@<je%e0Wg?J-JNOfSi4a_
z*Vx*KGOa@;^--E^STubFYXK#3c%tJgZoiz5ZesVOt(Qt}4^07Ue_xN(HvWhq>C*kV
zLQYhNXNqHI^hoTGwYK^=n~Ue;sz!P8M}12@ES)=jQctv>lgZIKVrTB)Nc}k2D^BRt
z<4?r<gd&_$I#GGF-9EpZ#y0ltN6B|TNt(`3A0NrRmXh7ew1f}imh}<U1=42jcGe$`
z+AP>Gc(S<5p)m;^7+?AVY3;eOl)VTuc)1zkr-^#$vy&6;%sm5`9UI=6b2DS6fLa~B
zl^D{nMjktk!3=s6B4lKnQ?h>~e`t8(#e@8OOrWzG<DMmK2b`P~C1!lO;eetgZ!TFH
zv^v{0s?%ASq+VcgqYY4fWEf!B75(*lkLt5lGR(EKX<g6x`)%aK@ExAH1-)4nR#)vi
z)YomgU!uMh_Rw^|QYH&UC2|LI4J~8zZdW$M$UhEi@EZ7O7%cQdBtizeZ96o|VhTJ{
zu}ySmqcUC~R61=#-Y~ARmW=H4xfo(k0jiTTEw(U?#1l}P5S6kiuuOWPU0<>`{h`8G
zh3^x;<)fwUOai4(gnnzsO&7+=WF^-Wn$zL&>9@-=jBt7)uODv+u^|g!3}!*e4T7Mk
z%#ZUQm5e4D#qxIgt<MU~@GVrLc}a*QS=~u#<tbP|vT7-mxF<z5AMAB>dn|2>>B8Q)
zHi*!u>xM9-<;2M6vuQw1>+W8wJgtR;gR3|&Et;9qU&X4$qeyhw7$G5aT1SSH-IH2B
zn0eyc`n?yp3ND8~pUez6$ri8*gxlHN+9;?oTTYUH&ZP-?OZGhVf3f#gL2<SF)-MT~
z;1DcG2pTlFJHbNG;Ee^hZrmYQaBl(xcMCKG0yOUK+PGWL;12JZS-V!P_3m@_+26%i
zb)@zMMO9zGY?!m3=NbPoexr?JPmu2Af!`YOxN_R3BHlpJjF8WxSW!czU(KjD?>lXO
zbXvkJ4LpPf7G&ycCfUTs>B8dkg<|rYPQJ4s*O2}st&9o`3Vd<-;;6!JuUpiOqr%nK
zT>)`{O~xA;*$kNOPb6JkQG{Vbr|-+Jqw$rWVm;+dw-m*3k3fUHimVoWYLB-vOm5KW
zO4J{+s7NL}78F)Xm130KXz5P6%cFuSn>BxG%l9MekS>BTz}}+qwdtZ})CAJj6({v7
zc)m_VEBXGl9)4{SNo`$xK|H-}IB?JT_g`UrtB-fvTt!1NyG<`Ixmf{H^Pz;(!me_B
zZwr2cm3xFA<c(Tjo1G77wl?gLfrYLi{U#H!FO?PxV@O_XCIvmPb!=%F=-J1X>U#gZ
zBv=?MG9JH2-_B)G78!iwapPzh_=q=d=Kt<fJr=`RSHCyc5Zx^8(st+yG#hzT^h^yN
zC?aN;TMZI4i6P6+<O?~n+SE=EKB1|z<5QM(@MTgk01cj08Ex|%{N8!=JH`@aI8&Q~
zHF4+7FV`l&NM$x07A<I!O!tqVl`(tso!@NDuK|rkTz>jqrraYzd)&w<b=sxWsl~UZ
zTDY7}*GzTCi-Sxx#~%q|$QQ#>Q+M1F?`&>rGp6`bhcVga@`|gIRS^yur{VCyLzDGv
z8*yN|^$R(VW>(?q8Isyw1QFwORiRnzFhX@_lf*gcph_Aw;0p1cOMtSLKuK%4^%oL4
zAdvYp244u)R6O6+%joz%>}pF<g|b^$%t$o{vw;=Of~>t<n}fd^YQmaK1QHy<-_elz
z`^BSmbCvk!QF8$SG44;+8&~`qIIz=&0&5)H@8K2YKhl>yD?s}4_X8mJ{kjJ99^}y$
z;<(Zc3sLllig19c&XQ~N(#jk1;pY;_H*=}n0CHd%5T$sP@-7TBpvP^8j4HQ2D<sgO
z=47_kTz545;t9FHKuCvimK_3gEp0SC&*^MlBJIeK;A!jbTD-@?CEE4<8)r`yS1tkh
z(f5<6;<f@`zY5O$>iQMi&u@N=gBjw767<==CResoKt9A5jwx#@3%cG~iasg-Ji4x#
zemf{F+PujZq!e=S_R@Uv17*sU<4*>Tr}t}an-@DoShp6<6*f`|F1kFwk|i5{EIB(8
z67qzwI+F7bo~BbZQ3UkZUE6eOgKa>Khg9nwJmcU4xhz(;77a@__@LX(=TH5;6KQ~u
zW(0f`(y?dFT=}i0!CTnIc`kytn=BQKNuIz~p~i8UP(hj3cxPvP=;)c)a?TqDPbW^j
zb?xc6Kwk-~-KzR2gr~TYUDdzma|nkcSBOwJTvFjoxm>f3<mK7GPZaY(^GfzbHY=7^
z=20Bx4h+!-q~a*V?byA%m5d?0FUEW<&Fzh8?|iFdOfgb)_}J7%8^aF<WI<#-*3IO=
z^Tb);mhf2ncJ}&qMwOe@&AH>m=9TI25D9)y=a2@9cp}`Bl_T_o+ANy9mF!oNHdi|x
z+=)j$%;4~VoiW->;D$e!XbFn8xI>3!QC|us0fo$i+0Mgj|3U(H7qiU|lYAY&8LuZ@
zX?1u~#kaAwn#uh(em#S*Gx?S(K3|D#Ez`Yb3TlM{GK=f452{^V<s_YzG!|?ZFfs?E
zUH?{4g0Els@5d)a-+d$|4tTs9XJ0pE+G>ZJRYONS%%94(nM6~qHapC=(~=GAM|RJ9
z-nmS+&cWDT$7orvr!uv;nIm<bl%OPb_$%0*laZ|#9T!$Q%}*g3lnV%kix%jZO7=|F
zt<56b;*%ZYJ2p*`9rQC75iL1+`!8#AJWC4`c$>oPAk@|MsniqI1n+g9$(o~-K7A(8
zuOB~xyMOWsjGQX=Px;Av#a_jTPAut5Gp7IWB-B+-AThU4+u}mM39QB8kf$~~(MvU~
zFfUu+xl|WsmN$(z4_<e1oYtj4``9Ny?I8JEU-L2&w!bVe-Xt~u0YQBEv6o!hkw;cN
zz?|*%>_HuBq67eBbU-&umYOU-sA<Jt)R(DZ8JtQ&Tg17*lg&T&xcM66`zEH;Xy1Nh
z^=k5Varxgg-~U@o`g0axeFXTNlCuIrpzzrx;*AMXQ<X64JN-B=1!O3yM)lN1@lpZe
zyjiTH|C6=hI;H#oO%LwKOCBUskwCA{JWuLnfMMWqnum|>qQRgiTa(s0U&0|@f>gU1
zxVYT_nTV}t6$9Wj@rbdG7gRUZ^K*41dHbB#*CdgVxG!}<a$+_*Rw;V}61tJVYC6~(
zN~mlyU2td@c3aJ9K}{n4+52P-&Z<zX0j|7Pd=g}I=7;NtG{WDEzpY4En7xDg3a!6^
zi}97j$I(>wk<w9|%tRn9=GIe+uTv$uycL^7efTNqPG4<f$4)-N?7;W<J6R+nh!u&E
z6eR{=t{?K+a=M!{L1~6Uow&HF(z&XBV3lFCqda}1SDNi5O#G|N>_qwNJaqTqN_FI*
zpRBGb_05(!N*q)O)!AQVKv{y$QH6?rLT^yHQ8CHGm0BrB-pnEyW5OZFIpe!B#$im8
z+Qh1@nxVJpiPZA#nGD*%5yo5a5nU>G(PHC~RKUA;)Mo;$%44&=0^KgB9&nkMo{<Cn
zL1sh9DQzG^*W9<&`%1o`XE{3YMg<)$CK(wLu@f3yO{Vt-X0O!UH5Q&1AwX|2uba$H
z^h|>6eI@Ot2p<<y^ahw2(J`=hcc=y%;*_Tk?Af+LPl?WcPlF7VAZy<=!}+R16{;X(
z@`~7+#m6qA!ZbY@gMM;H=4&xs*jyZIC{o-DsKf?uTDHgDicydvR9FF=c`--EZj#Bt
zQNGe>5yqPSdXyShe-)1^6eQ!E*K0`G6=k2V0~MsxT}GHkXhsoiGd({{Mk4&e7Wa(o
zDQx#M!$eJ5g1xy2>}~SSo1}T2FY!C%V-5cMlZkzsUJ*}r>nmi;mpmdr{6x@Bm}g4+
z(a=Srs4CFfSuj%^ehluTu3YozCnF1->~5eu`2B)E9~`}<YaSw>8&CLK#EC07URL%!
zltXe?LT4ejzTo64G-|BtiX^Uj?Sr`0WH}81nyZ9HlQGBQFD~&W-1id=Cuqs$ya(F+
zCW5TFG1gOgKBcdXzin)@YWU~TrDHk0IYU;CXcyxe>xQRW)-Ub&W*z*6WRi7AWwCVU
zlaXn;bkp)%*-KMi#I<PA1Iot00=m=%L(S5479EDR+<u%sN^lNxB2fedVp9URKb+*p
zMoJ|hu<$3e@W11W%I`mA1pxj2Zx$#oR3x+OSV<!SYcA`mJrXwu#je6BxdxfXUH0gJ
z^Y#sx*r*(I{+6ZQ6)d~EQOmc*;DX;e-01mE)8L^BX`{yCI;e}lDm7|^K-UyL!CnzX
zBctJruZ-KLL)b`$9WXlJ(Zk-j!Dg`_IfcCYLuXkrU&-$i0L*m2V+U0E#wP~SB}fpI
zP0MDMUDpTu#}96eaDab4K4~lV>Sgm`^nq96QI@OuHby}WK7q79DL#$BfiUpbBq{24
zrrd<{C-Zk`rGn}+J|qy5%OZc03Vy!xJV)YubB9}g>LOB}M1Ioc+wZqvFv7dj9i~K6
z;&Y&xBtJJ7rY`?l(+P<o&GzIuSWbERLKyo6UsgfK#4z2J3BL(7ft}{_6%PBvDhUca
zP#gtR`-55&%v9M3wVf@vC3U{1n5S+vV(9?>&NM|8iJy?_Bo583>X9fT_nL1vdTqL*
z0>C1A{w7q`3hi^;A&CyxIK#MuRkv_)$O@DYb~l{ETTN7O^n42yU;ANzKLm4Hq6nVG
z%=GIcktwSTaSjO;b;(RtvrszsO-yv`4H>Yyr)CFk_3(4akx5bd(_Z%|^io<k7H$G_
zc)#JN(@qupDyJ6N#|C9woxDi}#dE`?DSA43ToZIvDZ1oNcxW5#`WzQ!OLFZT%~`?K
z!d68IDwCEgY(r4?-%NP1Y?Xlv{i+hAZGwjypl-dJ6YO&f0okt&!BJ{W+SKpE`4+KZ
zPq4_{bRZ~BM2(2blZ>%iu)Z~C7A{-A|FUnz)q?bmg%P6#pFO}Waa(qrhZ<$wznaoE
z3ca`?X#y84+lrB-_O$WO8+yB`M`ai5#;1fFaUn6Lpa1gG)IMe<Sn2()2-~YD>vAN{
z@4@90xQsK^JZ)+&a%9}>7riD85V7^rQ!H_@%A3fYCRc)P9DW&W96k*SyKf?5)fP0C
z6QRI5x(?DvlbifJhc_uj`-C+$`f83w!eiticEo`*=E0f`K>o+;tt8(*R&&_jvo>hO
z+Eb+w!@QlTa_H9=L8D0Z;hW0_$-__i04W(Z_jBrbY0fpxYV~c+^ifHX&7`4%kTQMn
zj?Nsd6x0WXzqG|-{Pe{t6Y2L#4<JWmfbbD^&Xa(q<h4eCKKVsjc%<^KY%^!<&e)<b
zZc|`Ed4TvZxsBKK@K#J>b|?K~>U$f`#TC-Lh!1fk<YBY@aRpUUQTUk(PhjHZSrbxT
zz>fsnjDfCdI?UEtpE9k>r}LQT65<R$T(J403;sf)@_*h9KbB3l2j@u8H#+9Yn+0S_
z=&5_%r2DM!k;8|w5xzxT@^A0iD)wvVy}wn*$ww$iReyO`uCa=jPt5EHkiB}MOZTrb
zxe#TA@G3CZynG=4yh;i|H7JB+;HJtk{YQ_-uvlv>ur-|ojsbxNX&qWlR>!+1OUn|*
zO}4Y_v}R|tUmL|_x0vNdI#E^7XHxCNaDK*0gV_}a=ca!L-;KVGl0Uu4HFV3?C#HNF
z!*q2EJnolM4a$*)3(NYTwx5eN({u1>WGKEQe!YdT4!{;h7nu<+@=>X2o;qYRk5mrR
z*MErZS5l&Dj8Thomm)cWs3Sv0o@ZoJ5x9Bzf&8H8wXHK3ZmxPq!BmZu-)sj<73_{s
zhqys67R!mg`d%2zQXI>e^{y&fxuQ+wAb52y6oTldkFBDT-?*)jl3o^*OOO-E@6<C?
z9*G#OdmplN&Sz%j>*`6C7<5D=tZZ#+Y0-o5erVE}anM&r`70o|`VS#aYPuYI1y#-D
z7aL05pM;^r`ru~gF5EtbQC<2W%61ak`|We*cKP(SVV2fl@TEy5537aBCA?==)YG6S
zs{nHqsIgF?nE;h)DJC}5rji(3j#QROTWnEBM+TDeIXN4!z3?+CesR7)X2&)!SVP`;
zLphjIUJLn!h9skj9OI9(Q&RdBSQ-GezGL(z!|%Yh1vqlE01&^&e~YC^y!<R|`!yB-
zp1)9E#5Q@wE?B^sM_Dl)SotcxoLNcg5e!-9C^awHOKkw{3HdE#PQ4>QKlQJZVSkr~
zjIL=g`>a>+Vh)yF$C<Jk^N}!|b~&Jy<5#CBE@NtmZ;sV%I*dIhe|D+w#FO=kc=t8u
z(NZ;3?8vkC!<hn$?_Wq;kJ7*`Y}mT(m@8_tj7|G)>f#kUd9#*Ifw$rfUE*tep7=J)
z*G7)C<aH+5SZAr*)R_ivbxwwB)BHSMhs>zPlP)XJK2yik=X5ja{tA7<NL%35dx;js
zlXVcEuj6NtkX8ARB9d8u_ibS&GsBwt_%aeq-isDn)CH9_agCXK!G-st1jz|Qlk{9|
zSIO%4=FDn<%Z18`K!);)TCC2vi=tv=TJdi-hQ_Z;w$AfBXK#~m=%RH)kO{Z4H8#^7
z)qmB_$G}SYqSr+Y-JrcH;dzfEtx5RY+<g_VJuZ2I-DuK}aXk9V7gQ&BhV`bwu53aR
zr%R+<-Of+@`~&<YjAb2Ec2t)<?4??&;nhv!F8h(TpK38IYUJcYKQPA!{}NKYcx?82
zJNC8uv8h#jYU`2QTFdQ+4V>=^4*$>)-9@8Nv6W)r{*<)DBsdn`jmvo^bztf>m|N>)
zyYiFh{K{Oude7%M78*$Cwlf(xx*9^w6~}ihP$2~$cPUl8YOS4Q&1rJMujz8ztKz~!
zD)1i>Q|tY4Ua0sfPoZ4WmA4>hZx^3q=p-k@l!7w<zWuWuh2xp`*rnn?=h288f_~gb
zH&1uBA@O3XCC8R~v0(ZjSy1D-y0JmbV$#Ctn(|RPmieC5*|Nv_<&NGIO#8zdM5g9`
zHwE^kna?2#+Mwx{T?L#`v?VRa`X%SrT`$e(@H8sx8n`@sLttc#J1VoKCIvT$C+k|l
zmD1^QWZ?2>+oLc<0fwKsU}lrelAc-GNJ~1pAw6?MVUSrw_}y0MYdrf;TcY9oOL(o@
zjMH%0hwl~^Q3@~he8#KRP7<mwXtNo*uJ{S9E*s8o3+}zXK2pbwbtO;85l}bc-$>!L
z<MuUeDG1Wd_=$&BE0$ii){URvRFJ;mCjimPJ4n9bBwG!L%`PKr!m}5V;$@k0DUx)7
zldn%C3Bxhk^W?HT7r#sSVK5qRr+z*K?DdaEGrI7GzmWd$87~T{zC6-SyV4=VCQ(?Z
zV5}sv28JdgHSu|;p9i;Y-p?)s;;cJ3xl<f?G@RZk&%lV6_sn87ekOI$;Yfg>gIf(T
z0YA*>E;{bC<y|N#Yd)3oB^bNDo;Y4$%$R)TN8aE#Q=pfMSl(LmJX}xA_Tyr3!7{bO
zuXi3>jgQ~62EA*A!5%!Lk5(=gPYv|;&OVOYA6m3Dm=<7Cidk^&xb`l*;0dktEg?6H
z-MHE@Qcc>CIic)Hu=M*37CB@$W^78b{7BzP>wnZ;TU9);L+PvJK3uSS^s{t!fuk<o
z{2QspO-$YVa4#KLpRlj(yhyP~XH+l~#Nx>y%uU->5Yt&N*z;Lkf$GcV$H<?C@W&S8
zM`A$MF^b=AD5$a($8Az9+tVx0p}e=a<O_eh8S$o;<lUDJ@=vHzJIsoZ5l<p`o(x0$
zx-anv=HOg*>qJ4SOMQc9Ks**mSDJwEH~cx$Ztv3u;a03)Bv&wR&zxO2zg?rACydse
zmbBf3JIe9A6i8In63TGYh7Jc~If}K{zt~{LHFgl73jFHw*pzh>G;{JG-nZrhq-E*7
z*WW&L`khN_Rdm^Nc(6O;ePo=6@r4MWJQRwU-D+unY2B>wk@*X$&i*mX=D;<B0oz{5
zmOMG0hO3v|l$uX%x>wa>AnHzS8k=GY_^<QKU4X?krmBk}Y_9{?S;kEnleA>b=QeK&
zQck}h!A8~sGI8vv1Q18HI&DdQ;KvyykwtwS6-WUU+E?+o14{WG4iI(>#)zEK_iNc+
z%_)Xf@3dm}CF5tTtSP}cZZ76n`IhX?agvnZ$?Z|*I=$YSPw`@wR>0}+6uAoxWx~3+
zh>$R=&yk!bkt2w2fnJh|iPhVMTQ?xw%`n<61i1Oa%0<`+txLY^iNuPYfdu`#h`Aa~
z&iEk=s)9b)`Dbw~m<lKCIoTecJD$B|wPV|Eo)URb-|Nu@cdgi(YrNLS2r`e^@xe09
zteIC@9n?awyLu}rs#Z?1)3cu~d<%cBhF3Tvt6nrH-A9MtPS(x!7NC|UHMk}<m+38R
z+w;(NY}@nBEjW5Cq*o$EQMfX~C`mp8%l0pvmGEKgkGhlg_m(i-;lgU-Xw=~@FnRxF
zlwQvet-~IkF$E`fdJLN2SZoj6=r~?y9=25Qka)PD2b9z8{_LR!N45E8H_FhmFO}t?
z3+@K8fPF{`dJAoCUDzCnYD=DXGMC0K<#tsfeF?f}7TQULS+5GS2(l9KiYmZ(?h>4>
zEk=Qg5WLkGJZ{{KmNN>sZh{$^+N@)lOP{}xN<T9)u8xxG>)ngrY2dwcdB9Y8x<;o(
zsQ=-k)0f9}CovOPBO@|0W9e~g7_Wh%M(W5TI`lQ<C;j{`Ki?ZzI_Zg+JJlBsu_i31
z%6rlA+}fI2?S@m6DzKROa^9f>o<r4|XFFYBqdeW}sjasBc;Uq8@0w;6H8s*0-X^Ob
z{(f~4I_FzezBhvIjjb0mkLX)_ii5X67UTlXxDK}08yETH=ZSib{mC}JS9~@<U|~qi
zTK_5C6P--{LxEQvjw4%zMdjAFmsy4TQ0psNwHWCaNva}Z8ezy>KP-LQ0v$T-mv%=9
z_YDcF5x*a&*_IYj52FjZ9IEW<zSO$$ZP7Vrs+Kx=?uPERkSVfB3Gc%`s!knIhjl_`
zV6ToeHr&QvvMaO=@~KdI3aX9k-aOhrqF>arEu24y1Kb~wRtthx<3zJ3%g!$MM|EYy
zrKfrLW_*ArGL8QLnv_Ft4kfvWvsM<qt4d{gkz?VYqd9MSGL1m>V45RDD&(E@7CAk3
zM&sAFBL0#aO)oX;5D;E2gTl-?wv1=we6+$ioay&FBDY$i@IW9y@#;gu$Ek82XUul0
z44&|<chPOC?I@vE0tO?Fy$%?F^TqEN4bZt39-jrnuJgLZ$ftQ46?dz>b9`R>2pP~B
zk{b=-;<5lQzISjCMBdeIlH5>)k$;>96Jsn&62;ZhFwxm_dD2Pgeq>#9L#~lvjL&pp
zS@9rPzv|Lb@&pP2f>Y;|@EbDaH4j&Ol<+0O@*LiP9JPLN$+y8|kLkbug*5-xyTryl
znSb|rzcXub1-aDFc#}82CYhpTKv1<AMXh0y5h59Y{F0K02_X(y&Ah*fM0!9p=@E?M
z>>I%}oIfFa2k+83W|a@~sCR1gChcn;q<is5T@Ts4i6=Hvf}5M5(#$tym;g4v><<mz
z<)$(LATSAgZ<#(4!0bm?8b<+-=E$NcWR!8R*XMBQcMLPR3Ywnvj26F;@54h`(m1Kv
zn{oKOYU{UmX=4{Ay-d~jy`&q@d=!BHrQf$q#3SI1qgg`0M5x|Qx+KaEH%}LI9d%K*
z=UKJ2k8qx)pX}<J!@IDxHq_+Vk9e9HNHTT6TTRs|xs7I-8nacQ&&W}uy^iSMm}686
z+G8Iz8fuziZjU-nr-XW)ZMTwUuNS|_N99v6?WP9==^WpS*9576IbC7KyH3I)2z5om
z{Dpij4hyTHAo?E;ZE>Pb@(ub<3)12$CoM(A`y6TBg7lNyE#A`4t+j=7Wh_(#7PFS{
z6Z=)skWC$FGgfeH^ja!-FS_R{V+P0@BXx2k__@TBnN$zDe+ZxuJ@<9ut`-~Z*ezOV
zLU`2{pr$SI4qEq(-;mF4{dn)`PdrG3gQl>7PLx+@9cRs<goRDZ3MW{sj0=>O-<rjG
z(xbB;T-%CRIR;W7MzQx#5C4IiIDrEkPhc4YJk_^iLjNe7jBY)ZcU`#y#Om>rnQWjW
z_Ws}I>&;L9W~>BSWdA!T#h*&sGl$kIX1~Lwe~eWA<=&AXHDnz>a*bx7ud?bsESTa?
zT3446?rE>B1p2Dt(<v-@2W*9?8rMrBbFgDd^XNx19I<wNi$enyzEQ{8IS#BzbeaVl
z;&}4zzEFo>0O^@u!u!rcJIB-0mnkfgYt4EyYU1Wv32M`i)Ad^Gf|RC9-1pf`g2D=I
zZG!7Nks@s0_vS|m+-;FX{46Uy0vB%>+(N7=H*oT~IMq28vEoP3fwY9!vR=5|jC0`6
z<MXU}A>YHo;1b;zQ&8KYsTzD|?%Z}RwEiUJC$30nql{5l({BlW8B$N%SEwD-uoT|;
zHYNR;Z)(La<i}Tj#EXMChSF70%|ehW-si@^0Z&DopHbFL<|p5^C96GD<!C<<;`yQ5
zkULRHw)<;y^*T9SHH6GkI^Xnb9mu9-^>IrUaaQ5`O6z1V_YC3pCx!+OxfZ7Wx+~tN
zj+2fXuih`@2Is;Dfe{F`*PpEoq9`Q`_d4(j1Q>FDPUY9br>Shy`gu|B-X_#)sxUuc
zKzkxNfVSV?&nuRYZ#xbTI^V6fejOy8h*&>7qG6)OQ+QczQ>IfwXX&8MB_I<2t6H^M
z3%z6~lWe@EQOT(Dc-fi|)S16vD9JXdgek`qKb9j=ZiK=l&Q;Fjl0l+-{8-q~dii0d
zv7jYH(TX8VzJ$I#Nsz>wIZh4*f@1EmI+LR&H8FZSMfJTGbuA0W2BEjyT4FdK=2rv0
z?+$wp+Y*F++=Ak&mVJru(OFHm$f>TLVaq?hfL(>!AC<YJkv?auzU<c9x0o2A(iDjD
zU3~h?#4p%(>{pI8JQ+w7pqGOGLehrcP}!uCgt6BEBk#vS^`z|?P0u69<`l_6A!XHf
zPt|7}9M5r7`3*sIQ>pf$7vU~TxN?n?>}=Y~Nox#^XSr{FoqPz`=uFxh?0h3~zPd49
zTwp#pK!Vswwr#)-t64$OyEe132eSp&W4l0Jb1IK_^+ghsyN}4<?R_H~6`_Lhq>Zop
zK0R)KjI}OQK^blSEN6;?#+`6Q9^Xqesix@*`u(W%IR{K|U@VsC%pY+foLj&Kaj64C
zjXQ-qhd@y~{(F8e*TFvc?&6`z@^#~HH>O}^X0?iUFx{e`Y;X(HsDUmPe*w<&F_moe
zX{&<T6$H>rhpX-W0DhGF>QTTOi|>&oA7$k{y9k<BaHJq1?9g+I@wO(@$gA>~S|z4U
z=tEAeFa7oMD(r1dhQu!STxntECF0aD-)VSLk+y*(d^D+xe?ZzaQII0|+@dz%$h6*y
z);4T9p8gFcbGjMw6mmfP0kfX<9R1lngi0=L(F4K+Gs}F7>5;m;wT+@*SRL(4j$)2e
zc7@gG(CwhVBT_C{dMi^D&gyz7t~SkD*b4O((bHGNiVF#7T5s#ad?QYa^{stN8U4c*
zkNUpfzU}jQ(CzXX0I%Tqw<*y775U(Q^)=+td(fYK_S(!tSL?adAK1>{{d?Isen!Wm
zmz!|h%Td~qi6fqSPf+Fd;mvJKnwR^inx^Y0nx9=Kg`fSYo3-{!H=m5TGb!x9kUU)G
zCR@BBW~W_+GlW0E$6c}I@f3aIbI3XOx8+ktYrQm;xVuv!<p-?yJ2I6K_kthLVx(4a
zl-+$osRQPd!hvnTc29*jpsb1a<1Jo$tA(n19};T9t5Utq0yp(_Q>HI1O^b1Yb<k*`
zZBdTBysSRxXlZN1?y|Mbek>Yc*--g*tNvh9RtE_ac~(bwISZlAb!drb!DfSOtOqy?
z@QTm7T~SN6Fc{0bVYBm9kUdf86Ty%8#p+{iSG#eihqzKPujJ1K<$q9l8PGgN%Z&vw
zN(_V#37mrsgn^xV<D-<}Vd`V;Ur0QLp`FWGKXGy{%Wk~vXGL1yRt%AUc0QcEC<lM0
zSX!|DxO?ffh+lw6q)KyUt)(&xR@0S?y78wLuF?p(Y~QY77jd^VwRgCUN&K#>^jzjm
zZ6d8TU5o<Cr?0d>1WcZwgixhNjZgddx>|b!Bj2?{NqfW7H$^q+?X3e2-MScQ5CvJ}
zOuqDus91wnMrVH8?bhFSZ|NW9EBON<X&(vOOW!3y6)kzYxb%qKynRefL!U^alA(h3
zRqWB0cyROoLb81)B67vxY<a1&V%+-8gy472Fo0;Zv?u%hQD*%jMmPb8F<u!#h}|yn
zI|4173HpDE+0x=YqrYPI$1QxXvcYt42!T|HFqJRN&j-#B3e?i@BGdn1p!Y`?r-poS
zMfuojl(k}i{S>Z}46K4ETF0Lci8qw*{B93HcZx%&UViz{YE9j17k5@DzaO>cjDBCV
zhPx#@EG+Gw@r;v4I*YukA`+C?b9%BGLV9oebfcI5WXU6%<b8(S`IL6Vx!jAe@1`sD
zlcQSTrNE8i5kZ*u3hBb!s2hMY;7>x3lFTHH=R_>7a-xvnbZdmXCi;O}@uGqL!3CJ!
zi>{QUfLEiHJN70nM-AY2c7%rSM;(m~ULE3;%T6cC_pBIR&}RklvH>M8!?Xq=Ec?eG
zwWPh?VTFRlF8PQmh7Nurq$F~wAm}qbwtG)gXNK$Z2kATU!@{mTRMS(G#!K9dWsO>n
zcKMqS`5l7mM%~8oG-+=&?#K)U<0Mj3ZO^aWuV=a22AR*|(4Ek%ezpAGKc>36X$9Do
zfF&E-9C&m@NfZ#l<ryU%#5*I^XN6pL^ZH^Js^myN=Dk<TWrbJ_o}c!1&FCf8+>4tv
z>pV^ZRXUc7VHz*u1fC0-5kW%ZGg&I44nNqFO}e5^AvS>%nFUeoDEmi`_LZ%}Sxm@E
z)Kl(E7UHY!E3d3Dmke>0SoJEnxRveM%LUK4>JJfpkEUE-3>Ll>DxkV043i*MX6`u}
zfU;ES?3S_LJ#cndo(<onI|*JsKa;B!gf{LqJt=DZ^B;?yg4BTm8@!-*$IF#D!PTJ#
zAqLzd)~QUaK)bJS#=C%yV0N8=A8|O`ZM<x;Q80VPpFrUaU#<I)*1+W&o{WRTdw=9)
zgMnw{)6TK#Pf9H}W?f0ahP{#q$jj5WV)Gnvc?zUGmp7ZF&)-MY@<UMFu~ON_`04yG
zhBAo(VGS%}+Av{A_PQRr;w3DLag(=*gTd(Eb~mGllmgxWh0{VEvgJ>5WGs%Ppz>66
z;vY57Vaf}-6NeX=d=`POi;c-x!gz8f7}T+9+Dwgm<a>bi`aim8{yXy}|GlPbaVJAK
zxXAD!y2AB|J!>v~+|6f=G6!;hr|h8FfH+ynZS(1ST`^d3XMx;zLqGE+Ijd|;`amCM
z?&__GKGIO}y^i7=2VCA2109gzAYdv5EhFs32<xINYLZ1<*S<OL>t1~(nt1EVKSdwt
zQumemTe~|elh{h*HVua^hrmt1MohYDwb!2mLHjeH5C}LC1YA*MAWC7wxr|}!Gwjs5
zt~!Sk9dEL&-Wgfr#VN|_SL#Ehu?Tyg<~N+kmfElO^NLrK)WsU|)#I1z;d^c!^l)AY
zj2hmI@)lKG6OXE@i3XCE11+HDW(~=GSXHHs7*(o*Pg;z#p~@<Bh%b*=V-Wl3O@xz3
z$Qq=>_q!33g*rx@T%)mFj69j3;E1ve`~q+-p+Ht<MjxN_?xyy}@=`Lh$@Yv~n)-gC
z>pb)`)uBm@<1v)&UDg&PO%@HOO)YVEb}oyiL9VbpUg|7st7`W%x5w_TH;+SGXNxMb
zW|m#+?-zNp*u4sSjvD_OULQk(L;Rv8U50oAYN~W+D(ay6l)Hzix4nVvCv@)ci0+I*
zVczqth38e#B8|zTajzXenOI?{?ULtboOQ&C-+CE$SMpT@f9T-^VzYViiuh8|U5JU<
z%vJie<`V_75hP@R4GL}Y^)!|T7L6(TdIZC?>b2KyuHqfY?X(Zdy2)x&hCA5FwENpI
zS}f7rH9v!WkJiy@JZz33KHma4hqbFx#L`i4RB+gwG2k2(x~&aws7u<OomZrvzCZi<
zPWe5=oenGN<oBL6jNZ>^pzRV~wBwB1^|Cjt=!9rHIaj)PdtiVm;Xu*4W-H;d$ckvd
z-073B<Ih*3%mv$(>mTjcGh{9lShHken4ld3pF9SAQ|LXGB9hD(<p<(CMKU?(Y(A4s
zT-eqf9huZAevRs2sA)`E8X(Ll8?Q>zKMRTzyx`ebYo?yx<6AMMQqB!vkCShc&jFg`
zZ$7J{liu&LeVZ<?fZubD_y||mW0o%Ue_vK1-_vHf^wgqEgCn=Hkb+lYM8E5@yGC2=
zcM*bYwT0~TG<udv*|LN0J1Wb9^Uv_Z`+blKJSd%PKX-QCLQ;zL4d>)|xb)2iBApq(
z4ml>BM%rPyMg7pvGE|cBTLUwyH$#s+AjH-htSgp{si@y@0%fB86M|yDQ3>oy&(Y6!
z82XM7FLW7lCUin=Gc~VkvlKE9x9UOS49`ShC!{ELW-OVU3>#5|G0t9h@243~EQ9C$
z2yI?jWs)bq#UdW4%m|a0u}XXHH_z(0((F>{!6F$VxE6zOwC8bp2X2|;3?}{%3OHEf
zHwna4ITNBZmlT2PF00MmV+ztEFiyfup@xb?;ZgBvwNuJESnv9Z!#ayDHmzeaoMn&$
zBAEUh6rb!o0%-_n^9jl0TI=oW(()PCFXKF&E}uNNJP9zUrJf{d8yDA$Jb`j~W2J8X
zO$pUDDF3w!+YOl-I(`qOJ6855d{NvU|HFfp+RUBo#gn1EOu;E0;p^%Ly<X|ch77D9
z{f@93w}Z$|^Lf1XQ|;$?fzJd<OI$|Dm#zarF5^65g}Qd8P1X>5pK6Iwnim6kNz^?K
z676K0jwzeRD`Do-*$CV)RuZ*9KDb0G2;(I~yK$cdE6Aw?i{eR?@g^cOD|ZoOOJI}i
zKIrVoo31rs7c{7!*SFxm=pgRtFW4iL`VUD52<B)5HS<oP{ufI2I>*yB+dqkltqGZU
zxRb5LEYO{9YzRpypN-bI5)JN(Q6OBRg;tc|GdUn(+eDAcSzOMX#qL};c1cERh^D@2
z5%1LhQpN>1vjYbos5GGaFSI_!#{A>dzF~h4rF4H>0w91s08H}Fx%}_p<$uvO|A4&!
z!^J-%H~-c5zejOY*2OWcmf5fODMRWlFB^64c^EX#3`GR$sVQ>M^InbAimxg7hydh8
zU~|g|5x?F-@<Js7F5)=91)!?}j@$(Jt9z%|Yjq=lt7-@Y?-pVo1towJ_@7_H^cEn#
zzV+KY?EMRgBJc4<GJtv|X+3q@_zNjU6+K(+PY~$2BEWmaT)7c;1e}>bokK7^fO-x7
zeV_3M_4+3Q`iH040sRAfmAZOVUi3Q|_@7JqpTE-o+)Mxec;Y+-QeaykPudu#FS4hv
zUA1~qimBr>=g2OIwmwr_ZxoCc_vd=lF5Ka2!@n+kxN90TWsZyDk2<)4yAJr*v)iis
z1&L$Bz*}{7<Fp|daZOMKKcVk$$mkLnkdT`_3KNdAbWRZUj>Xn5wJ&i)3X)x`lhe*N
zeH!1Fa&uS8E~OtZI$#OBcyjoeA(Ol!Vg(z*wiRPVuOzbp<-;m3T#~1b!JuvSqW8$m
zSY>&I<Rf$K`^nPX-Q}z$kM;D!Ur0=jcK%-_JCI|Y$A|?;F9(peMAX&>VU}7y>+h)2
zO6IyTdk{ijqi7VKk$!t4htmcjrFLD7O6?zSdR1}#d1OMEwor+CS8aEOK{sDBJgy$c
z|24a~$7l7A*_)OzaE%k3lstXV!tyB1qJC*LUN;J~pM4QBUz`u+NA?FM-TvzW_aF26
zzhetRj7GV>X%069GQ>UoU}DgS8AVZS7lj{#&0=j2q{?CrZ6EyfD84*Cn^_%$9hAkS
zh*YeN=jnUS5WK7WL3)N4w&1aOEOkzSC~RG=zu2k?R1C`v;E9X`#Px3?nOX?UC=OH{
zN!l8*vtF&?GQfkPwI5bq&JdxyS(EaKIbI%c+oeHzZsKsi!pYXF!9GR>L-W2(3EQ`)
z^DK#h^Gp^ubbYvS{s(>3KT&(hYd1CR-B&JJZz_HG0O8ZW^__E2yEb%}P_K9GFC;8$
z5-db_;pEShrh2IC=+W2W4vM$K{S;AVOEdRO-<PlR?wr~W=5p?6yRlBWp1ov9cCdK9
zAW0B~M;<@f4A%32OE+h%19^nXrc%}){V&vMe0O4GRjc0g^{dNbh_bv=y-v)VS1gi4
zZ7FcDx6m-UPFi9&rF}5@ynhu`ggL`g@%;i*mv_wmp7v#1J=g#{Voz;P_Ljw&`<t%b
z(kG9(OEVV}Ql?)5n-K#uO_b}e2o%06mRK)S)p<9n{G5x7EHQuSI4^0{9*Q+2Pwy|q
zfj%5yAaIhI@`6Ccn<+%R7E@mHQ%Zq5XZX`<3yy(J!c%{5tj$#b8uu(I^ipSsgapeh
zF$d&Yl~T@MJcx{;!eMNjULl1m^~PrZ_Mlbqshj&F+z&QHzVd88gbgw>b0?$-)*E?~
zstci{A|qf+e-j;4LQSzH-@keVcg?m%Z0J@_wEooV)sD}%KB9MpPG>w-_=52+gCDEP
z$#F9ESD9-XrOJDu#B`{l9hQGQa_9g-86SQlbqQ&YN4dBBb!5Jco+fPZ*l1zY0cX&B
z^2p4s$LS;fwgl2<@oT3iJ+cZmOC8JzxD+fa;OM}I!sU&H|JUiHBL+)5PZozNB;}Rn
z8plbp-^;c4Y6W{jv6t^|P3D^}N%mb#>l5>|)hHsP2g)P|W2Q@s_V`j^U)&KNpTRcK
zZIL8N1*n7ir~@&m@g&hx`zP<gYY$o=v!BiJh+l*#Fk5CBCM0Mn?HeuQCj&w8LA_{c
z_K=lh@jl{_Wxw!I8$;BV=^dew9NWCbJ&OxQu$a??9*-hfl&nF5@Q?1R8y^bnI<nGQ
zL)<tU;sk}l-IwO6^9BpUmW9w4o`oWKZVVe=1O*JUoud%bMG@!TgW=SK`XEILB|*@>
z0?hg4!#0&o`6?HetYds;jiETDhv!*ZX;>%}@?z9nL`uG0bAUv$m3|DVp6*AF^ZUWu
zyHMEBz7fv;PwCv<)cDC{l?gfp;`L>1Ysd#_JI|<W{7Xix2M(c4%l=ie?%2?m2I4Z)
zM?8as=AwnUxX{%@;qf7eW`NO=6X|*Rq$0x3HEhdUkdA?5j@4P>xS!k@kBkD13<W>F
zj~DqmSuWaL!K)bic=FNg(_@_SQ<n!X@5#p2v>AY!#YO-;bZm+*MRR^kfPv9$Mhaj`
zi1nuL;@sT9Y}?4JBij#{sL*2eNbOOw0KLe3LfQ0D<Wznn7|WdBRjEMsBx$LA13mqd
zO&0$7zIO(VFt>yH=`Y%p^Zl<Y&t!#j2XHx(FwmCfmf8egRCs#^!~AIBxy8F)%}GD)
zCg<c2N?ymvB$0%V_iCCskf~6w2DGC$8~#T($bTAC5v@PsUc0Xuk=TfFw$AXh)-1`b
zgJv}!$5}ljGy=XD3sv6#LZ1JRZkE4o9R2>jW&CGHz~A?>ul~M^{bxtO-&R(+zwcuI
zSzGY8{RaU0`1>~YpLH?+Z@Q#}=IiFtd-0R#olqYmbA~)i^5mK+wlTWjm=H78I*qu~
z;`awgdA=KlC2PNltPELx+QM)@243>stv$n~Qb2a1;M%e7kr?3;s6dKcjRsoXeAIkh
zKbZq`x|NWoiKN`$Lr_Z@RQIqI9Dc5&u3!fWQ#Y2md)ni{j%CaR_B7M&6?VVL@;<2j
z`Y(s44&9$s>q$qfki|QU0Awc3Ur3Am0277RZQj4tmeGLsFt3qbN_2obH!8a8dz=bc
zTVH=KO<mUClCm?l`(-VW4ynj`4Eb#snTKJ~o@63SJ7m2mmSlbTJyCxl;o80oMpTqp
zzl@w$;Y%O)%b%AW&kHAUn}`~&2@!8{BBf&XBi@I4ICm!OsYyYFL>z;dXauh6436Yp
zlL*KD*b_oP!V9lM<*Py_R+PsNrxweSKlb~v4Z)GJmK$F&h%ZxdD9hO)p}OeBPigh1
zDaIfavj?OMglV`oA>>~PipbjAcPKuZfYJ?S!Y;h|#_hLGa6&zEmy9r$k2-MK-eYWA
zqEtiK$JCTpB}r+j7kc8^_j_v_L%IP|-w8$S09}$mgwLMO=vTZ&mN$&``o?GOD_Hb1
zyuU734#njr50}mF45Fi=2DyThxsp#OxsKvYw@BNC!`p~?VYmjh$CnkZr3QM71)0Hq
z))c=Ew@0Fg;xpX*$uXpj<5XzNpEl<%oZYvM-qtG^D!hF=dLL7&bfO^?l4EblkXEcy
zGsWO7*Z2<8A&6|DCR`mExuzr2%fVrPg#cDt$&hAWut##*PT{mDS{!Tld^33DO1*c>
z^b3}QXt%|$21rG*q19~?3_H47$hU-eTyIfin6@F9wLAW)e;&DnUD6)skRj7?&1HRQ
zr?ahjk)(*^yO#|HgV;-TkFRS83D}=?{0tTpq=M61>x{6~El#MA>bB%ih?_Qp1R<#-
zY!cr+2|jQ=$4&EF)-vdpf(nR4b((H?gZ7og&aJ)DiG{vYcA^fQ^nBNC?~#3IGXsw-
z5_FQG^Csq9Q&#)xhK)4|I+Hd**G0A7b+5B<`VgIt=qfOi4^bdF&R1_7caL4Wg0snT
z45a1}yb;C<GMOS={2x}if+h;U?thfP7MPzAVg)fVxWQs{$P&#rs0^5=`WURDv<69+
zD%CQAgufqtq+#kucWgsPN6m_6tzlUJ83^^NHhLaz)U#38l)kV#_)>2{%G@Vu2pZ$V
z;jlbL=@F$mvc)FRX@*CbH`h*SgqcGv2t>lVDN1nD%{{e5IYINp0b*&TH5(x7%Q(I)
z>>o9iD0CmH-fzB{M_ZH^Z0qlDD{L^jT{#<5fwdR`f@+}Abj|GfV4AJK!BNHUa%mB_
z+8q9``Vc3BL`_)@r%ou+uvtaSVQoL%yjUq}b5kky!D%lZNZ}b0%i|f_)z>ZLH&{4c
z>)RCtd*TbVUfa;xpZc9BNmUC5@5kxl>$Un^wV2zA9|<rRi_q%pe29D>D!q#huf01O
zzQC_AohBBKtXUVHyf5J-WcJSq<vaytcfa{vaZz!DeEQg0sE@e!7Hx_3^UVL{e)Y<<
zfv-ZO<YjlW1^y56d@XyE>=;>j>Hs4^9h(N1y`4bx93f7W(ruAto}}UmX+_ok=FM}G
zy3Zp;DR<(A%kFf*Cq2Y9C)8~nU7fvo7g-hUZpyKW%N*lpDUf3vQ(=B<8MfM~r+Zs=
zY=!mSXs3B~o|-aEhqOLDyo}7U0{ij5r9ei5kHE9JY@UYuf?Sx)q~*@_@YFE!4LAy)
zZK#SgNvg>7=AFL+JKr0mTeB50+Lk-Pcpt`c?$W9z-CC?~NIMM1WjG%5DpEKsd>b9}
zP@9i7wNSm9O|McTP&Z3eetb11ChZS(jbnLgJ`MpvUL4rkp|e3tP2)7r@bgpB31A=n
z6T+SkU8Zq6O#4<z>rY|)eU;*=AU)q<k^SU-_s_@1zmSqI#;mWyTIcsptl`{Navv1W
zJOVk?6!G*!;`qkU_=4Hu9B_%otPN?D-rp*cRqrneoqPfXhaAWyhowW%_&-e<2TD?y
zIk7~(!gc*J26L%o$e`)Zjb=WKDsNH1ty3VK^%*JJ6y^>X6>(`H8l#&42s_6+p*%$#
zU#wl?lfGSz9wpeEq?<QfY@}-411uN&$=f;MM<XauoAqEn1t^9gf5az1vH5!t7qF4@
z0SeK7iDvqTk>&54i2qhNLkHBMe`{O$BTfCwxANa=VgHpz_P^tG;O$5H0e(**!0(y-
z7^e4+cSj7o|9`=x0X;9$^ON)2D3`SJNIt}6vf991=)lM)X3nV{Q<w8{X_aH2AB$pH
zetCOvRQrNVY)My(JDO5qp;o8`sq0b{MjtD8I>n5)U#WG2p8b?7rXnvhh@X(v6v<y@
zNRG_>)$!|nB?H^{zM9q5QwIxbnu~})SFV7l9Si3uJTLbG+fqM+UU$>bAcdLy(2fS%
zU+V2tku8EpN?i<soM5{5<NgZ~P`TyjvT~G;MQba#dwgZ#?#}{LLJwJWJ4;xYJ=1#8
zYu83qq(S}b;HL)iyOsN?rYogf<eH6917yzeKLz{R`+99^Qxl`&=lhathm!qH4hEUy
z`B7VxKSQ2~xS>qir|{hZl`cU37i<emIC+3tr(rf9Y-iWC>GASvUs>$;m}G1p)#|5H
zy_FXDEChziq*^IRXOQA&ksC_~EA}dPm0O6Kf~)uY$_wQhYKIz~3QW4biF>5CjG&ja
z?NXmG1Us8MdfUUSC+0zpA}33<awK;{I3y=!3t3@QL^X|-!570Ky<Sy3?wIZ*U!S@T
zLXJErJ<-y@1AzV7q3Zo|>!w*Wu2$U?>^DdSN@R}*yQ72l*1x`E=uk$`zP@f_oQWUS
zjD0`tVju36*}^l^9P!)7VL?)ag;Rxng{wGz3XB!3LLHkNi0y?1*E()uVm*<atnCY`
zLz4yK#UK5Z(T#1%4a5kVYOO`2TohJ+CJ$Ili4^M4QB&r(KJUVFoFUE6sC}$fJeLI0
z7zo&-`P<OXrXHeniBEap$xwe--KTOo>YzpAV{Zg*==q_aWW(f6LMJ@=)u-yD4mG0g
z*5AmA&1R7<L0dNt?U%1o9B^=ixhnuq?ntjtZ3@`dDaWpL!t`CDEE4`%2t`b0E{qRW
z2)otc%dvV(8NpVc;?rZC6NZ_-$%Ot(vgoqBwLG9<ro1(JXa&=H#_gr+=FE5)<ZT6g
zldZ#AlmE^aItO_qOA51e0znb&5bEiR6;uzckr~C*5n<|NsmE>kD2N)!SVqoL(1g2Q
zdkcHzX*1zRppt`#7ObsN^+Q(y15!>vz3JMs&aFCY)ACATef)g?fzv`hsMp+{=Tj0F
z@>6^j%s|`^##3{jjr=cLv-Uh;zrS1zD-%I4=N}Pj1qPkIp5JY3S(UiMMl^|KbvEch
zN8eXn4N(=>y+w_>KQm5Fh*E72c(aL?iw)E7(GJ(Hqs>=fW~2pjXtCnR8FL$CR%~QF
zo1^2qYG_I0afke9@GWG})O`^*g6Z(Z{fa1_KfLMfnlL>Wr&GH64!pk5Gw6&8Yg%bM
z6X}79&Z_2{vZPm?grEU_e&1H{-EbJ&1L#(ECAfOFZ25ML$5&AWx)vvFqx~0>O{zim
z>dtTik|px?#YUmy1<(ycVn~CS7wFJgl)h}VeitMT<_znllpXWmAr)>e&5!N!a`ED_
z@k*R7&%l%)=him>jD{xp=-Ab#MHD+z$Z>er@Xk+%W7nYy*iOh2t>9R$!1sYo_j3UL
zJA$g>__38kkHYf)b;C$Ofv2`=FWA+)U^z0$QcLHEF@+ApE$bT=etZwfuHH<M0pbD|
z7yWo?I?9cI-_e<MhJ(wWCjPTTj3O3X{l)o4Ij_kHJk$(PgH3+{l7}29)9FHJ4Q7=N
zG$8%YpDeZYVB1>XCWgRl*sB*7YzLj*hl2}r@#3e<6<#pbG}vA*YArwb4fGfW7a7di
zex|Lfi!{?tE@8#4quis8R#-hbW1_g#x_F^B_UTXm4dAr>7sc=Yv{d{VC;az4TmN~I
zRWs$vqQpFTs9p6fdpSONcIb)4b8deJE;&(juk|MSf3x&!o0siY+6u89rSao0NsSZk
z#z#F;TJxJb!Ukp@=_h&iX8^UPpdp$-E&?%N8=~pdu7ICsDolO~+%4`KR$Atn-G_xg
z9!KgLEz^dgO1o)ZYjq@jfEdemw8bPw;>4~86?Xa->n@QuE;Qf53RB$TmB;D4X*80(
zJ~`!tX@5M+a&U&-lUJ}O7I!{m(C{D{zB<yuZCNaI$2U;t!c8;?6h!L<zsGi4?%enp
zIlf(ME!uhT-2tutCfB?6R+t*Dy}1xp{Kyf_#*iv78>l^OMk?W$^{s*e@pYML;_$8M
z&j#;eGk5u}3UiJiZ&S=2yVFwz<ln9v6+{EJ^I~<WDv>T}lrL>3VI--TUo&6Guo1kL
zTWk+N#o@pZG?Wtv>Jq{Yb5%^M%dea&Pd5T7ShIQsc3V?6h}da#(UC8H>SqnDCHH@0
zfOdHYVE)M)RARw3zPfe<BUTj4qqb>bmQfth3ImmqpG;#^e^6UiNSBzd9}=oH$4t!c
z$$Bbc(0N;{GhJSs=9@obM9TV_`9u`esdVko#K3M&u}Fn7W$HKkNOpqE){V2&UL867
z2=yeoZUd%QGwIqmD30@MMo1W#W3#HOcv*($Cikmnzaxsg-+AS!jVyZ2?LN><a{sCk
zuIk+gtlDkB1tPmEo+JgAjoK4MPgVIAC`!`K4^lWAn|*OpE$d7#79<sMu=Q%XosmQw
z_^_<bCMcg(xTIjgi66b#F#<J_-5dwGqM|N_-L;%Xd83=)T7ZeA&SSbD$it5<Y|9-7
z2bYXUd485EDl_6u{(r@<`+sB}`2Qs|AH`9D2}Hy_d#R=*iNzK)^ue?*e6|B!yaVVn
zD;{ljZ1^1RyptjH_`6GO56>oH3Div);TxZkF-LzV5qgyPSu(+0vscnE_`7YbkZ>pE
z%zUas5EnfxeFjTvgDz}34B27xb~-~`wR+l)x}~yCF;aKN$LaN2=*{7LBCrZxQT~B$
zOr3cgX~?XC@vLVq;e5$rnr)fW8_{OO6D3_yoD9m!sy{>(HZ5tjCTn~@wzp6m10mfK
z_PkFo#`J&AH#yQ`>Y5_Sud<*qJ_*r|hjMZ6>MiHwN|*h*Y)I9w+07cNJUz5@J>#p&
zN_kQ79P~OCIbmPR1?D7bvUkE(b`)GwU4c8lVjQC_JHI9YzQ>b&AJB_3ZFqI|*s40e
z{C*{+ttIVKvD6iirt2>^4M8PP%tNs?fj*<{vW2uj5a`(sXkKP7E6rU?yZv%(Uv?)>
zje~|=F##K(dVT_nYydrUNm_`QxwGig7`|b$49R0_#eQ>t<<ND5pq4MXx}tY@_Kzu)
zNmvsbYrsn;!q+c|?MTRw2%|Em`xNZihEmH5wGAd9IMp*ku2Wu$i}-0e8;i#W7H>Ko
zeqo3Z6wx$mMJNKgw?S*4J?IaoZs=6n^1HsFit9Qmf@k0N;|HDhzi#!0%8&<}DY4X>
zWWGdP3v7KOOf2v000ugri^}`Jma#+7Ioi}UPP)p1Y6<h!NOU*H9(QeR4IW>^70?g<
zq<&^uh9oR`B;maHJjj=mM1jk~>edUy+5_-8Il83y5V_%f`2KO=(i_xB`l&V*F#^hB
z%@gz(=qVe_7?|t95!!sdEy9~m<Soqh?ixDp?W^>gx=Kliw}w0=g?vQEgZvd%;fJ6^
z;7)>Rx?)Ssysz>eobxGlVJ5pwYPWbUfRvf9v2c4Yx&Pp)vzk3wG%5Cfu=mz+QE&g=
z=qM;4(t>m&4blxF(gM;k45)N>i3ozy3<5GJF)H27(2YZPcXxM>_v?Pn{+;bU=lu45
z?!D*S*Lm*wgO?+Yuvo0`XRY=Ayo2UUID&UsveC^!VhZ1&L?PfVRk*bfQDw0s*3uUP
zSDiQyNxHIHC~^;6AKcw$#hHW|JhqK11JbfT_d<h<j@rhT;uUnKpvP<z7^Dpf-tNxr
z`ihpg%HsV>`y%z&c^75#0~Cd2lW|-Eq^(8@4Q%g}+Q}#nyWvQlC=08mkc{P-#w##J
zFBR9rz9PtOQ20s6n`hT?R1LX7`1FcPOGj*TnFp6_*ufH%MKw|7yN6+NGsd*|875Tc
zJql<;+3)L0Ogy;b><>C*TVP!pSa(u`C7-w2-*Xz8BWhqADs$@unoSX6k`9{}eTOR6
zgBqGylh~ZPU6nB^)pCdutJiJw+Pr?>$scYOeu(VE2Vu}x+1;`6;q|UQlMitd5n!*N
ziwD;VKh{RX;+1p;zXRd)mYysvLI<)p$lvG3nx4iLpX;n?@ojVZcinTmA)%06S3eqe
zP8b^v3DeSgIF;7im028seQvk%qz$V<iuJh=?yGQUia2@vZ=O+qRzv)}H2#rP@e|_>
z{YxiwfQ$Ug0l_ZQNZ@_U6jM_7V%D=lFk76n0;N5zM?0e*=)s?m%L!|b_4Ki_F4(CH
zGB>-^23wgH{cQ!?RSVDsB7zQmqEC-1Xw9CU9#=H+c;RhHkcOx_=(Kfouiz<R#jwGx
z>_~j8BM@OU_;`@9zJ`1Go0fKjhd8u_Eg8C01oH7}$XAxG^x@O1t0)}+i1FU-d0#_T
z5g(?!S{=P8JJ8daC~mJZQ{8_HVGdasT<uGX)GDm1E#;;@+h*{HRoxF#r|CUNq%2?{
zyEn$!HownCKc$$nKKhChpT64ATH{d>zUpjUG;ctnqk?#7iBJeXySK0d^GNAhp2g#R
z)l-EmdjA`2Epy=?cqQcXyxgYYHEz?AHrTuOdgpDhu14cGI(?Rigg=-w#xpQxej6g}
zSVB9935dA9FQ-tWooob_&oP`_Rfj9*$qlxf!PJ<O>I`hBWER;{uUbF2JRYKsya1|D
zJ)&aNHB3d2Q)yMZD6q-U%R|GEzU6%BMSElKNY0ssQCLeA+lFH@hnjdlo#K<wP0H}M
z0U%xqdtd5nn~?sz9ao4!uf~w;wRG;c1kF&U&>sDGlIT_EhY|M*bsjZ5ByDx7hKDt}
zkA}^)Cr4v#<(pO2x+?aiq@ORbDO})NUWzx{fW0OU1tLSPB)K1yh^~C%`g(Uz`lR9%
zdCx42%lY9AW(n5)v!EyOjSdSV{HG=6X5jagGGuJn52q7NL5fG9_`{sF<+ug|$pDgw
z9QmyEXmGo8k=1vE*VDTNl+Zv{()r-VmrIKn5AvH+n!R$?Pm6r*HjK=R?v83~#QT1@
z*XqEcgS9LlP8Hx}RPE@@Itf%z0aP`18erUk5KZDkq9{iMJ|E?98uWlOL*HpvM$}xT
zU$q7@`B8Z;q<%q?Qx${+1?{+DdvbRv(&v`Y2Xc&Qfe^}YT%Nwrv~-0NN%2woin1E@
zH_xLd%n(uY&x>A^(EDdfYc}J*GRe#}rqrM5%r#CWiHpXOk-MbCyH(wmNBc2`qS&9|
zZeB$1`=!Iith$_^PR!4MkNnJS{%H?|k*6uj!?q6L!iTbXP0A%ANcWiVx#Od>q2q1_
zSs<F-4Txs{E%Nan(d>u$_9NOOHTo$=R#kS#Np)XrcnxcZKf=az?-1fs$!!r&A1uqw
z)Pz?ZXamZ{Y~u}bpX2G;<BvR(?KWmiJ$(tMEst-rM>kg9P*oGxd<9T}kEcj7lr9hn
zl)BD!-z<y96AeqAewA*J66x)1#DF79>gPEI)xt)bAE`Q!Pj26Q7SR3!<l_DY)n84z
z-ec2a%g?FN0pUIIp+DSurO`~CVi{E;(0{j^WEkz#e~R~@a@zm4`<+@q;V;6$xNqwH
zWOl-LA}iwu$U=ep4)@MGa81u%Wc4!e3|bobjvm*y8GRW&F7G<3-xkAT=)H6+k6HDi
zwurBO-90I2A?5AS39VeHlt246kE|;9pF#D=*-3A$;CYdMiXt9QZ(wFUSY)QM!PTmX
zRD$4Jy-Jua2qE15%&~Ov4#$&;(CgEL+yL(l4v{txA=QahPo-6QciL=e)LFXniHjM7
z%+jZ+T)6!#cMkWyDfN^(l>w?g?rL^QD>vr+2WWeCsqU~p*A1Ifqu>7MveUcTf{|n7
zAUAkSSopcZrv8V`!)c?95Q}t0H=B&|m^xN1MgA+2C%O|A&*bzfRv9R@s3{Q@<)h-y
z1{yh@b!ReufITK|jl$=stA8lMP$3}GbdiLJoWE?_Nv`6P&Yu3x?><sIRbd{xq@g2V
z-YBP;XcDz8f9@N19tPlyy;l*+Quo)1)_6AWmt&=Y#Sg%X>hZ#%ZO}GdvCx>0_V4!C
z#J*6T*>@VE+N+1RwpTAjr!ZhE{Bn0apD9~7Q7%$p3bcT&4D#U@Tq(|O3D`QQKBm%3
z{)%`sf!6qhMV__>UPs4D4UllR&6;48r*{ka^UzT}A5l9NgUN1zn3ABw@gmwM*L}@5
zg>HeIkeDgpf-itiP8*H!X7)91LNlDZ?@H6Qc>UG;n&OW$CrzeSCS*u`ZK%}6!bi_g
zo`n~wqD>~TdNNM;E)Us2M$Cq<p~L|<VxnS@>~BLC?9iI3RI~Xvhlj4D7{Gv|qxJrI
z|I_6=a$7gs54~&!izxBb!9cf`^EFkvB-7BWy7y)rMl@1{+)HYDnwDmd=^m%?@wLH3
z0IJS7v-ej;pzgmR7yisP`PZ<8*tI|Jf<P|HO~7FBpMCtyO-XqF15~LAXc0F7n-D<2
zH1E5k1rQj4AQaFagY^EZUjwA~KVhxJt0>MtMTLCY4+`hF;v+80sw@rDsGCA0AGie)
zBZb7O9f_TBMav&aP|RIU-x+A?eKhEn=_dBB+#3cbsx|8h^4>AbJRiHN1W?D&`^UgZ
za)~cuUne7D!gI9gq2Vl8hPCoj@X}}PU`vSB9DK`BLhasb(Lq~|(j++>FuNsFoMyE?
zHA}31Q!ni^1xi0*>ez8@-61=MVY)$bLn9UJo~Ui{<k-6|;f@f`9<Oge&1$2b_1HvN
zL{8BZP1`)PWL6vzP@J!UamuJp35c1CjYk9dXwSk9S=*l77e)qtwj;NkSZ)PSG5VDi
z6_)qKeH`Hw#@TJn-LF;r8!Ybnoa}FEX@Gr=UW}kTt|A#~)Pm|K3@FBYO?=I7HftZa
zZ;zLs`r5QQ@Ht$}F0|IlWLQ;6=Izsuj7*G-Y&NBF#dqMp-PUhvUOBfpRkCkfT%I9?
zN*BCL{=|vLFbIVeTb;}>dCTri*Gz=t%fHqFV`(hfT29s(=6d_1jZwNT8aJ2gQ~@&L
z%V5{BovnrVtGp<c%>C<RwU7D2hHj*DXsy<}%hd>f%NOwrEXzruP0%_1cQ+NDz4`#a
z#>6tp`&?1E9WRTj4{2_F5Lcs#_nWKn_B$kE#OaJ(a_OdM{pjF*K6NlDOlbM~MaJ6T
z+NtA|<&6=}+oSCWE5%sVVchvIe%Lqp{4m=xuk3u2J)^ya5YdC0<z@YFMXGyGqh2nI
zAyhH%-gloLLhHG)I<b-aDk60v37JG$SzR8%1e3^E*5$ajN-8oojc0A+yV(oWryCOW
z1>6T$YLWr6d+B8hmzmof{0ZIk5`=vA9~d3%^HzId&+56hR-@V&FX9)kB&xN`pb(E1
za-A<Z#HHS3ySWp}BVnE4-w+=<DsKh&XJ>GLMY_Fbt#dN01*;HA4w-tLD-%<+o~aYM
z&hRr@g0uen4x8PDu=>$x`M3zd4jk%3Fm!}z*koUs(IY`Rmbl<CG0qUH&T}nC4{8yh
z!8G`|Xn#7dtPGK4my=%YUB|NcB=OM;=Sq<Mm^0?~K&^YI`l;QzL+4dJeq61ukZ<o*
zFI`Q=URruYw&7Wv+MpZWz3*OpWqB*JrJW&aAMg94)Zz-SzUKEi<8|wex>va(X6XHI
z_c^#86_r$*^>5WwKXDSnaIBtIMn~rhcYOHhySLp;nw5z_sV*NTeEBo|6fTxFm)F|E
zY*kfJtv*8;HwUWkHT~V_+0-Ho&pS4}&<PqbMxu3q^WHids_wA!B{{&!65Tx!K~PhZ
z9~oPtdRsr*3CgT2b}m{##(-RlUHyxQ^Z=hl74p&MeZ9{4EbbTJiY-Kfe8s`a+^uu$
zdzW)=6f*7wh7h^_GJXC=E(eD9_T&;7!Q-I;i6+@_J~-R3K>tbkyxE1%e1HDwmD}~3
z#gBWo1bQ2i4+it-6*%nNh)GWNS+s)r2}*9E`C;=2Q?=*khq7$_rvQ|Qx;kad<fy)i
zXw!Eu`W+$u0f&VcF@2`+1~_}jFX?TN`(d0bm4jP4n5MCDnx*cTX~Ei`6`860$R50}
zGO{_uD0%a=qK>YgMjav|5Ft^J^jT-j@Y}~&#)km1PfWXy#7pDK$ZbsReHo{&vTUTv
z*|Kp1D&$Z>lNiyujDc?I=M-fqJ>WppG`dOsMRck@RC3^ElT5Ksk=o}$;W57I%evvg
zvnG*a9EMB6iQ(lq%?H!zJTX+oCY<clewmjkBAn$@Z(p+l5+CM^h&+SiYZWRf-2lz1
zy1)sMr|!<@cp_+>UZC?>RcCiN7LqTj9pm2a>!%+!qSq1RW~dyGn}HR|Joxw)v3Ccm
zxE4evu!NWVFnf&NrqAYw034L_>LLED(k$_B9(L%SHIeAK326~SupVQ|AdDiiFtunk
zESm{H7*Z9{jYx4WcRz)VI2*zwH5eFj*^~-dqhjw!&+R?puLnxG&d+*oWDbp3SRT&s
zG#%u!T>`Hb6HF<RSC|DWD6`tXiaKyuuNLzncRCA@g@M~rhPSAdX}jISoZn5p-!QaT
zM&i0aW19`Y8|1KJZo0zyGR3l-5EJh(_wZ~AsxUfqGim$JjlCEc^hJ3`im7{%<IIvw
zF}j8Q`FXGohzKF(RFitFse+ag_N~dFm!9H>GVT#qF;^JGUf|wi33}iAXK$#a)N56Y
zkP8x`yr=B9y6pRp8>EDQj1^p7&ukvgQ~7$5{WZ9Gxf}mW9mHU2$OLh#K3O8Y%Ul0(
z=C8uSZ6o~N?dF4X#YG>uuNdNBsf^y*hPl!V%wI(?Ko{fzk7|9mb;(;M?DI#24D9kg
zzOyR%Y`6N3hwbHf%{RQ}?ASKiC?urJ=Hk+LsqVmGC*!9!QRtM)^bPA^a;Vg{IXUA&
z$4ls}W<1M`9O>md5nY;xm#N3CMr;s=mMW>BJm!j_GHgrnPgl)EU7_0_CLaefFd+)5
zQ)!gu1yn9FLfn))0r#e@(ul{6ob=uhhAzHa+$#*oy>`au=ZS=wc-^C*k+hxw{<w+a
zMl*5fYaZg*(oswySl9UDYaySe1{#@l%?Ib;pMigIi>Ff>wO@|2e}JT#cQ*NbTvSGn
zmg@#~X{+A7t!QSeLpF$kt!N*jo9g%mioZzrgdzJ=s!AfC#ZRd{fR`&BwBU+DaYZQS
z+=xw@?}vHKS3fL-H0?EfXr~&^{qXR400ZvVs2yI3&G122yT>$Go`f?LtlRm|V{3M&
zVl9QFA2J~&4U5Qno!K%{+)?EZ$dOw+F)gBu(MEFdNce!B|EP62i%JERa`;t6V~>++
z@o1@!(tu4hjsbFG;_msNv@<kn&U6Pb99oS(lz7nlZ14z7MyH0aR<L$LC{G+Qk{D(~
zw0&nzA&NFu@tGD!IQWi_f*CR?b9VFo=%-NuF`ioiJ*QO;;}i2QE6t+?!sW?qxy2M1
zkI34RXHK~nPdBf9<_CaQr%cVDxK--LM1GEgm6w?SG|BGXfw7ExBu(#%DWNbVSv&@Q
zog*iOzZRp%d1ZivpV)TgIF_@RFiD$Jl!W_XN%|2PdF3}|+Dt%eeKW>3`X_>qTJPG1
zYjhQMGqf+Kb{_JE<LB0V5EdaT$Bo2UDae@leqEmB72m=KQO>qPJ<_DA`KHGlOa0It
z=liSe#<p+lfXiEa0HAz<;K}(fP~>>-aIOH{>}UJ!6t{IX+W=;^WSJ2sR}Ynjj}pr`
zS3ZGBEKKgs{42uG6MC-G;fvu5`RWQkkFR&itK9OFIlm8?OQUy+n|R--eX~wWlYo&(
z8SeM$t%?d)w}6#^GzCR#@MBXeGQ?MrCV$6DVP>EwC(@Af@u!!@f4wf}zZDK27d#(*
ziG<S(#-ChZE9MnYTW;IK@g5e$mUFzL=6!|ldsBL@3`b4BzlJE;=EMMz!j&RkPBJL)
zy;GUyW0oK(vekTvAjclL0Qlo2Ub0V0Gj-{5quYrqbyB9?FvW>zp#DmE_hL><F?~#)
zk{~UjIIa3Kop#8h5U6tpPor2u)P|3hE2=vDaFzgKc=m+h%vZCv+9rZ)#Y=X2ar!+$
zCaa@3Qp^!d`QoR!oXJ_GTHuvpIu*Nm70f0{xYfzYBU|aaN%YDz_O2aD!8WS$o{0$B
z+eod!QYsqx!}=2b1PX2`YKQT>XemB2<n~vKtj$ezu%}7$i6Xs$<ttMxHgRXbFC^3L
zwY}!sHZeK**LX?=r9f<#S__2p+I4h~?~2tdXZ>K~p|wWyQk*=Z93lrEr@Q4inHsCz
z#%PL`=+Yyct6a(Lx=VIlpdmC$?lZh0YvEy*{SZ1Gtc|a1_aT+226m%Ye38=qm3>sY
zWgkDeQIeGjHsS<2aw|l?%Je-NoQ>zJ<z_Y_yGkW=LuF(S%$(@iI*Z&%bX(Wt+5|AO
z{KozQ;Ln;~rurc_JG^;l(1J3KiN+Vh%1GRDp-46*I2b0WN%)06)2`9w;6PQ?ol9z-
zwm<jvV&-?dbYpDG@j?A~l$P#i?N!~_`_Ea<+B*ET{MZZk3IMacJL@C;V10dxwfO_H
zI%q!w%zo90O#Fi|<53<qH?HL?YeObzScXAb$5ztwvL}QE;({1mA`(8<rGSL2Kux+6
zQeVLLdFW`(HOWS~q-5w=5PF~waHH*1t%8k9y8W>$&DyCeI&O*(cUZ;6)lu!~BuU1(
zc+{f^ymkeZofxx=BN;L7Ec@NzeT0Sv7ZKPHG@|S~YPb~`kzw%SG?IRpq4{~fCzYc@
z?>G89>5Or(my|_Gd01Omdst_PZf9g<tfR0I1{(Ah7f=f2>eYRXLoE`X*3k{v5hK45
zBa$+GV1(_t-M(x=pS9EFKmYvc7ikGoZ-DE_i^>M;=slqmBQ_!0wzgr{$vetHIuBg@
z2lyT?Vvz0bLT(iVx?+>szbNTDn)J+%Gi#EuBIoGr#RZ)QF$ZjFu1^TYrrstu|7>AO
z_BhJ!X6pwm+Sgwlv3ai4^29<Xd|D|yPpf>xQKMNDn-P*5$Mhvt#lxiX_AP9|Oo%oO
ztQlp{D%=UmBQD8Rs)p^!`vas}Q5(N;Y(U1jT;(1py`->_%<Im2H_ZPlbtN;iBp~jc
zzoZy1+l-KUT3#i~&Gn6uCnXb!Wrf*Bx)?K%*9tsjIJr*xU=E!Ox8htS5+Z-z02*#|
zs2Gt(Tr~jcqiQ<p^5EL}zLr4Si$b?wU|Y$~LF<ko#X1!;(_JVD$F@qEuOAnP&681k
z{djY7{q?5zWt825B3+Q$!7}Y*hA0xbr_R_63gZ|bJ{L$M`dqyw9(!Lx9w4#DPqFgp
z5wg)Lt;{YrVq)66mEw)Q+;cB#HL;EwPn=|H`uf;W?wQH*TvY2z>w-Lh;oAo*1ug~{
z-%ZmC=0`MSuoL_-#UqdOZ2<F@iqQhw`PyLtb;2|Ao>klX2hCOHyl8YR4Y0+^#vR<-
z5_f$9H0ZT21xCl0TyX{KVT)|d5|K;_n?oASzzQj}<k((#ai`(Vlk6upNm&h-Da>eJ
zyHx-KAgMzcR6Q|DJ`%@81O5Y~Jj9i6>OZpkxCk{;9}w~)A~k`7=TzGEwo}JV1**~U
zxhGJ}0YP)wXT+a7qj?%R6qz^F1Pmk?R6_YEU%4gI`GJY`?xErLFd!v&nU~kwv$nUt
zmLPxyMLOrtghi=Nt1U|fLi1xwxSCyQ-1XfwRhGS{0s6D<6KGuj!LyYGV4x?5{v`qf
zpd`OgssRw_SE+B`U$#O1Xx)PLZwP)yzJK<r`Wc-2E5{Fjrhf6N^80f*@E`w9-V+kh
zl>`4QoJxpn#ioz;M$?;N8P0X(<SgS<@}=*&@tJX~yPWYxlmDxziQ*cZ1%(>@wC0?~
z8-Zj@u>|_XN;$lN;&)B&E+V`~dtSPPt8jP>4~sR&^Q;_3tL+YrYZ@kYf0X(IiUkb!
zyu$c0R_bJ@_GVpp%io#S|E%}?El?|TUm~J=HBy|PcDR7U1*h-!G@Wo$7Nb{GxlzzM
zk}bwYbm7cdjU-9uS%|ytC1d0L*k!Dmym#A&;$3%F-GzK{h4Y)W`%14ZC(D*xykK1h
zWX~(2vGAh;f+AuIfjl8{;IYGmhFqte>=w7L0L#wupl*=+gBcKd4p-gfe&aP=F0xv{
z&v|3(<ry5ga@Yzd$G0AZi3F~p*?&lUp%pFOHd!EZv`GAgsVB?L)M3|+z=hoNoqn_R
z$%jw<Bzv?bu^gr#d{Tn9P$8Vwl3`a)DFeZ6FUlFS5|ThYE=K<+jL+v6&1?yVEN;L3
zy6!)^)iil3Wpimi3n)aq;O1MaQof0<C*KMBGgdFs2}d}&H|2kTK=Zp-GI`8Fqu<$c
z)b6Qdr&X=@H{-=F0XaOkK4Zh!uoxeL%F#mOsZ0#ZBbz45dJ4ohbMM2vi317laF3^c
zq{oL_+|n{F>XF#j;S#^^;hUdZqCYk{o}bM9v~WWRr`~2)gEKTZYV2)gBja-9zIw_T
z?+%rRN^MO^aY>k(6=Q^*8%5ZA3scs2p|aRFUwqnrdZa$_es8ki3hxkAhEadKVhZ*Q
zL-Kk$tGIO3lMJr&P1lsOTP!s)$JQ}`BEsLhAQ`8e{GEDy(3FFo1u4ury%{}?&WOJo
zm1>!*^*Z~W>4R7H98(9#ELkALi*z+mOdo(!+6fSsrpSBxyp)XIC-NT@&L1IFdBA~~
z@ne%8yJQ84rKXWQPY}Sx<Q8xT0Bq*exTrZs`L_j?y*rZte?Kg8OzMuEj_I3xZNUSR
zqVFSy?z2@-S58*fxh4+-VM(wmf$_Q`mB&Z&4!*AtdCm-a2J#dyrb)KaZ?N}6rRl4l
z>>2rU=0Asx*rZkl%h1(S$IttteIQPCXAKBAh-$;gBxb&%HxMa~9#Pmy*Nrkew5WqC
z#*Xg9#wJz~^avIr)v_`MfwN1FE$34)urEI3EI@kzFLZYyv`IKM)XBzfrNazkcZD-e
z_XToT!`a!BI4O1W)oG}M_I<s$r?LZt%kNVO1lMcEO*rlX1~qhJxS~gml&fhDXqMd3
zFY5>k*%>#prb5g#BV(5c?cEmrTHa2Q<%#(asgzb-%9bU|Fpq0=VIE}DJy!av-hk$`
z#s=BGcK6LvzPKE{BI@Ki&ND%N!M>8tHQeCSYj!YOzJ^Y)oIHK~-ot_`e2i)DW^4nM
zqQE*eUA>CbBSMPmPAf*sg?Hm}(N7O}Zm6T>aOv&CNYNOhhO}blPXo<L1p}M3%Pe&;
z{KeX%MTm8+cc0CP-S8uO%YX*IEm%gy)~i!=NwxHJZ$}pr&CAQ1n8VI`H<e%r-#T@0
z%y>@~TWMdg_PX35ZARH0ZdA%?yj?VTzDs1l|IN6)%L^y`UMp#@NTyr+F_nqVrPxNf
z;JU>^aNgI4@+9gi#pU}9rv6=WE~iizq}Z)Jqj#{u21H4uq-jO8F+ydPOzV~|;qD9t
z8W{$2;xRwB{}Fm&d^^XIUV0_C+^q7W;;J9$gJQL(??<z@?MsQ#&ajJf-|hM()SkB$
zkiB5DBb-Nd48fMK97-9<w}46!blNeMerPUs^Df~0-1evu_0l;_*H7@cH(N)XnxudG
z=*w0MA}a6A09R<c6GMp-rD9Dr&r1)Gmq5|uGYu5Ncu#s`5>@^iH}EOn6WqJOm>WWO
ze7t5uYLpkK#I&n|6!v_OIS!y{&c<qm8xoFw{>Es7^~6gnV;5rz&12sMFH7TQCgeWO
zrB$w3cPz3s24#xmqy3>JGH|A*huFsm;w%F{TELE~)sYS~YN7N%ComlS!&b{)a?8kV
zO)gE={1g%#t+@6INY;Qn{^OqY@4W_^FTX0Eesfv;#US{9r-PE24@oIE*9;_Wys}9u
z-ZxLkoGwd)mcMXw{t64k4xVnHBzz>YQ1iN3?AzO{t&PWO%4;z?)sRsW1x;sNIibJe
z=^HhE{u4*yXH@E$KHvmga2@eCj3>-&%3)PLnN_uwffF<0yD$sPuxL=bIIcoI&Aebn
z#`JphB-j|NB5Dk2>zC&(LAOfG!N+x!CY9K%9WJd9@HQ@<1~)p{&%R;p6BVKj2M&3m
zDJf^V%6&Us7w&Nx`XxB|BZy717i;cs<InHv+$k*)QrC=8b)7ycOOCy|OuC~yp5~JD
z&$?9?hl&4L+xFl2x_@hHPaJhqF`^-`5|#XT!b7oU&lqi!X#{~A$Az<1t%|iF<?}ro
zmzmGr=dBx24c5qHf!7c9r$2wQ0edd#qZg&Vd+6L^XC8i4&HF8g6Y6~#@c=u?x>eib
zgPO&?BDt>-sfy+9o;`1*p*}YB4mT}N4Va)&E+-+mTg$LV&_!OaF#5umphZFiPe8*8
z41uc83(C;Eb){G^vsQJ4Q^^?i)ccd$jZ}y}qy3F(YNqG<MgC-ZKEf-|58@g#tX`U$
z1Ms!8HzUTPU@`^vx~HthVoV|J+|?+w9vei--gsb-xAL@w=Fs*^x!??B5-IqNR2&(s
z$Z+;4X1Be|fcxFI{+*>tJI!ZxQQHi~nr_Rlqv)6(jgv23wZ_EA>x>?!)^}s4eL2qc
zZT~E494b&ioNFO-c`Gu`<W|?VH(GC%qE>P8d)Ee#b4%iqQ>*w)!9o%k`33j2vX42!
zo!lp{6gG<Ajjh5_%x3-wO7%FC*^&t?%#4=i?&L{7(=#!`$)`KazvAD|0S9{om+q&#
z@8VH#&BK~mG!JQPb-&Dye7bNO`E22vWp!aT^;j%S%!<hL9SdYRiL4p_zVLGj%7B>o
z!OtgvNCqVXg^7;U4`o~?f6>Zwoh{xF@_2c$qwdT={iJv&lrw;aesQ^1bHjT3!Bg#M
z>Ho+;vEbppZ#XBBe%0P^U5;4>ga8%i<t2(lw9QW4l{?2=!$6~r8N2XtF^Kd(f@q+?
zozwS~s^Bs(n75XPM4+O^D<`Ad-hr`}gVqU22@?~N5wpIV-^y4GF2=qz_OCxYv!0lh
zfn$}fVZ>rLvP3Bu;dNoP_qgmD?*6g*6%Fv`K*(G4$0sHyALZ)5EDxu@dprjc9i{ps
zUE6s~l~hm8qaL^}N%4s|d|Lw)HXek3C9?qzmw&2=z+>|3h2<}uY=3vUy`iRE9=fYs
ziAeHj<|UnWmebmklP~k!$w*zlu!wL~m~1AwpiXk|B`q7yBjL4AWqlvgG#{nNXjX0t
z9q)dHDzkNP1y`$!kDy%5r9^K}(pyAycoU3`CQY0%>sAhP<iA#4sB}xPA(Q=Hn^_E<
ze%*hn9~up&oO^|$y)wqviQuqX72{H=-P~9%E3H@aRvS!@uNC9oytwR^`m0ubUEhi@
z;J@>Z8hz-PBH^+dyQ``yHvKbdRCsDj(ZuhJjPVG-w|^Bg*WL{MdDZ&WnCDMo=7LAb
zKUo038uR>F%*@{RGiCA5#yo%0S0CL0QWgO|!LRyiFJ$Dm*L*{$hZ}GLYMLJ)St$2|
zanz*Cq2c$6E}q12e|ct_%C?@16JK&`gY?hy-Wh#ctJTA+-)o~~sJDwN8{EZ|vI{tr
z=ie9-@)<vr-|IzAFo&03;z-V5xs3tc@_xD`DM$2A6ycvVI_6Aqnm1U`X8+A7{-pA*
z#=+Bw(d*kP!?Im1j`xgRE`tlo10;qJOf${Kww~LspqP1g{)?wBZf~`@{?3`adNiPa
z8bGzXG0KtnmMTAZ_CcY!h)U~?_Rt?AiT^)%?S$gpvrk!&Fp(K9P4c}Yzf?TDs(gbi
zr>Gg$7Uu&AqdVgnjpYK%?MWRSU_q_+1JrS={%rKC`Xg!p$;OOpk-7j{f9H<?V?T1K
zdBU?GU@-t|iUr_kEE>K2O)GdsZ;THFb^<i1<(sotmcVjXUZA<Y2iQn`1^)m=0LQAI
z=2v?muVsFKlE3@_eZ=<NPeBoI2m2mr{s0}kbwCNM-2=dS;9$kHkB18NMLh%f9>~c5
z8PeaFC4@NMyjUdW`b4-;e8EZDFzOrU)hLYx{_@ftie+?Ywi@Z?K-FJ!Vt;}`Xx%$C
zB8%O8t#9Z?#RZsy$VYWA1vNFSItyY+dV(MFDtky&X-A$_{{S5`_%2P`TF1i?D0Vvr
z<*GqDI%or=CeA&Qhq2P|b#Xcd^|6}DnP0g9ao$n9?A9R#kB2Ah1)1GqC+OT=qY=Re
zn9iVOFtAE+UjvC&4@dy7Pqjl}oqeDE0m`BPJ_FDW!|H#4G=xwpqte`Av_cCb&8qc7
zCym4{#S@q(vXr04R8KX=@2KA6X|<PS-M8}_2uxX;I%j@{>X|I_@Pd29!0SCcL^h$*
zSwTN}>OI~l03p6sm^~MgzXJH`7g6;G_N5#sI<PTQK;zfVr&Zy$CycF_m(tI$S*}+*
z9<_IFYX<l`^VxHg8%!HaNI(-ZA=6Wz<;P6)Ml5U6#~&Q*WC|kg?^4Df<@s*_o$UL*
zs8olmgp_}LA4qy^)})Onr0$z}SD$Kiob!CpOUx~4bb<}G<)0ece+=Va=k#Bmm3@yN
zpba@daatv{u=@iv6al!k0UmPCFk&_&8P77(JtJlNRw5ho+;YwVZlWtVIc%BMeM+&d
zP5e1c6XIY0kE>@nO6jz@;4;K_?L9yX`?(wZKCS)#81e6$$-kYS-?yUQf8{j)I<SA)
zH~uj^SKoj9?ttLlfA*cee3zs=%UIaOg{*lTcnXSv^AcumSK$g)RW#B<v&D3C|D7uN
zt2+4S+)Z&`cYL|@_-R-NNX-6!@PWaUe@5QgQb!lRt5b%kDDe?CK<d4@AQOVk1ktcI
zQU=5~8l!EhWGnjStQ(Q--|N0Pu{(sN!%k)gY)x4{xgBGslxEU6Js5V`o?$8jT!b?l
z%0U&byqI=&OcjoPi%xpOq4}QeAZ>3c(ly=FXOojgVxN1)(gX)`RVO`c31i2M$vRdY
z8_`Y4l}3tx8ode%tpaKR(pNyicK{myLZyHwjRgYAAD~@c37c6M!X?utc(@)uuitd&
zFZO9ioVkEhs(5=+1=RyF6X0=T>|N!({`$0k3#&{)tZ)+Qc>A_97vxHzKP5=5q6m6|
znmJgeBa$|8Y(u-LsKG!tX4fd)CW3)Z0I?-v>aGD$H7xodbw=Cp8^=1JtP@%Swcg&V
zPx0l|*KWou&IUs7c8@lFF<bc&U9OgC$`RqMPL?MTi7vhQ>}<wC<u|>($6c?9bfekB
z22Nf<U#CN@!b3Y&geEot*#SDw>RY1-St@%f4)y+RoWK|dTRV=e4(==OaW1+@W}x9j
zdEC%zh#UJVl;yeqzi=(_r1l-IVt0d#PYHpI6x-;n(Vs&$|0zEH3)TRf|Na%bt^p2u
z_V-cCYS-0&PvG!JWdFbGYcyD8kVgL%*gFSoB}AT9d!5TeTo%m~eLuKfo&77D%!vp(
zwMe(i1x6rOo;_`lcAtQv1@wGpu?k`qKOoU#ivE2iGRcFO_K7ruNMpB$0lYHRvQGCT
zKgZ<7%4+AOc9U#9X^#*=qUjsg)8W#wh3eR2Y*}d6!g9RXP23yjJ#UOK#ZUNi@qU`H
zH&X_kJjk<|i@ei>z>(OA5hyJuiRvVECRQrc=)#Yx7B8f9%b&rbw((r{WPCd<!>>Wi
z@$N)Sk&L<}@)Z(zJW5m~xs7pdh}76Plwv)`W4`Vlzr2*&GRY9hllmvr@$Ad<YSfpn
z62Nwqznsk;>KjT;X_Mp0xx2MwK1AK~{4^>nga8t6d(-&~7q8PuRVUTsPOVaKt>nSX
z&UibvKur$4ATBN`q3FPGVZ^-Me@Ku0I|;CVb<6wx-~XpNKf|E%Vq1eh9Ogd8k-XTM
zx#%F>UMee&UbR%YT%bcEZht=Im%$8Yk0|UbQ)YGT96t){Em~K;`zj(?u50uOA3s<N
zZwA}3vt!jAlWdHA3`o={IKH;VgW$0x$n8_Y2tA7>k{!0CwzUQUpOMu2@9&>J=A5zc
zl%GC0jDeOhW_eM6tfCz_7OFNTWSZpFZ(qhF-&0~d<SC6vHNC0l@&Ux?K^_@$G%YBG
zbdT08j>ois@}I}1n`v$O$#-EjuJ3-g?Z0mxKmG;=nAPKH7XS`_C0&x;BBPxA<E7On
z(Ng!?-}Km~TE32<h>hu<Ts}5KaRf|;Zi<W8IXUEeeoOP$`<C!bk&fdXdn7%rzR#QI
z&hm~nDcL2~B#6@!1aBu|WliM0U`z$=txDu=UeSIUH}J(e>d`S^i05$3ss3!zFl|cG
z)`l&A#ZZ|@ZX7+}pb&%7(aB$gl04q;4%<6}?(qF~Mm&xj;{H-!E-cdAuiLbKl?@W$
z9cblu<CLzSbfN#L!2fSnd$e}c1H-XSx145v1LCCZ^n_I~#2D;V9)}Y|3&!tgFD#g$
zC{%Ui>9(`cE-Tt=h2{xhS1i`omn&}1xnD1Bj1=V`8|4bIn?i37sDcV!BnPiM&1zjz
zvo2KQ;mYKk`LkEs2~ugS9I8ZjRWZ7><?e@&Gc;3v7-!#&@81`QUK_1C`I6jtEAW%u
z(Pdc03&aEB@Lu|^ZE|8Jca~Xy-fS16GFfbCPU1)!6?Ua~2-nQ4R{t?Xa1|2dlOJoh
zZ1Chw??baYjBe+J*j!E<lJ+*8>1Woht=lAdCTY^i6SHdQFLy{sW~fH`+VJfubU7e?
z$DGjg+T>7@$cqCY)CW~Bbtn!WyyQbMN$o}Z#Gwdg`7~N51+U|_rL67X=DTrXLfg}=
zhAyGa^_6?;FvS|N`$7DR7TMrdYg)v#k7K&&G>7wTiWg!Xk+B~$k&kHcT$A6YsFk13
zqCi#D(sow!n`FCrdE2F(c2?rbBrg^Exo%Zf1{aV{FDGVERcUna7o~S$A*Ar@OTktE
zBXR)cL5h-M?r6QFkjNR$OmlFPzZmE4bI_UfJ#;u0PiVTZgC(TCmK?I(ei?XiVEkZZ
z`JPt{oxje+_HZ0q1;*P_6Vd|x<P^AI{ES|-6|KkP9F7;tbPT&V4dKule+lVq`?+He
zVW~gsFAi3N->`TlDDA^x0^6bk5SwOh4^WhhT-<Fvm_XD=fM8tDVEMfH#;eitE52cI
z`2{>2D&H10N{38gZ)M@+g8|G(4YUL`aU!;`=h7NH(X2Nn{)XklZ}{I&59$BFB?$1d
z{=<IufAVX}H|6`vfCPPndBDxiV(YZe?vVbHqqp2SkTM(JlXlNW3U%KBaOfuWJx~H1
zx+D7MxzE{W34C{en{+aH?akky!e8G3=w{0S`|i6^=S)rj*7Ez6?foR+;T=eG75&r0
z+ts&e`=@)i3?53+(03mY2K_In(ESR49=`!V5M#d7*)+{w^&7xY90<CJ)}^_!|NY7c
zsRwMuUjSEF_DB?P<K~(L48<P;qUP9EAoKe78|Pn->9gd64InJkY>|pWyLcbnNtPj4
zz?`In!ArR<%GcRLaw=Wbcliq`dZcc^A~zuH^vv5nu9){{#G-T>Q_T*&4Fbvgfwql8
z{ufa7>nKuwoweUFuU{qxz#)E_lizOPz?%GZW~AnSos-`ouU}>+^6Zy6`5ip_-yhRv
zMPXg}(9x#NrHFVZI1^@RY(){}$L8oohVGW@O9jli_`cA!e}4Uuruv-PIWwH>2dGfH
z02OKgTKjWH>rcwBKioThdTRc25!wGK|Bfg1s~*E`HMmqo6eUJ6ZJ~y!iJ{<Jt$Gqw
z?D#NsX=#r=>X-K#xtf*_9C3%ls|CB~S7$;<$^y-<x5r*Sc|bSZV4vU;X{|DOaYU{w
zF=s>mVp#Q~0EJBE`x!g&<HN^`BIAjR)Wb2kXOpr6S7JFEC#NR>>@yw}!!LNs)*>Y<
z#~`L?FG9RTevSC%mhQ<QJ*eSurbhyMJ7KwWXXL|{h`y@moZpQ#m(3ob$)j!W#u<_`
z-}yE2o|BWS2qV^yCAm?HE{c7HQr_iQP#%@^$<UdTE06OxFICtTw{1`quP>-u=eR>i
zX7~n<*>kFCw!BJLZZEK|P7(4}2f)}WNO6YT^S@mB${ld5qDBi33XIKizgVf1Ae`Qb
zoI}0ujs~B>d$sl=BaboDy}dtOX{YpB-%84P9OxFF&GLB1!<1#S2NfIZkgYd;W-_l5
zTRY@DZLrZ%PC(cB_;tTuGoTZ|Q*TSpV+U6mhpAnmUV1=L4trIAY-fa@JJdj~XrbHW
zF$_$hR`j%R^66>Yo3WOtcZRsmpa$kVoin$6E^Z>rI`?|-)UgdhquScqDkXZ}x8)St
zV=zX9aIOQUk-?fTnYe>p_O!H_z*S*w@|1AoHfRUgJvQZqhF0s9$Rj6Z(YgN4l8KrY
zUD!B*?h)lR*44V^F#ECct{r`9nU%*ig=BVawJ+hCP<+T>o?ES;_gq){1bfBAGu>UB
zud56g;!dI87M1Ok4jag8>!PU&mW$1T>6&>MK1j6nNNoD|9ZOKJ&Ru5&mD=P;FGy!}
z-y@Nsu?k(1Ls@j5Mn(1>Qo3!nrA`+t{{UfJy{FPRln|V4c||poI$?(>%TRgqJ~q#!
zO70`^WkaUOBIW*ft(yI~pzTtxGM2I=Ue74ggOeF~guLw3GfIF*DrR0|qfk0n#*K0I
z61a4JzmSY{OM#?t1{a#vK^@O5$H>YF^$s5684aiHIXo_|KXb{2T>E2{(K)#h*X)v7
zM7lnDfwk-ccN*naI*F~KYt<<jE*QOvl-Z++JldtS?3+TKAgTg_toWC!_01x*5jzZ^
zx&0oo(9N7q)NN}WsXf05OXR_gY_OsTysZtrKl0&$=I)KQRjSQFb9X2f6@FVsYBp}J
z(?EV&O7?^M=8$?IkImyXLU4w5Aic(%1+hOPH$X!5=$Q)~N9DRc#ml4E*GA9FofENL
zH}I)kf`_iR<4r|D;+5h8#TR_f+cUfB!!H8V1N5|1?u^W^z#6!88SQwp+QeaK%%pkP
zos&L%PtVHIXP*`tPeaZN!R;;4DSY@HwF-?G3|~dWwFHO22fi8Su?}9`Qb6Hj7%D3W
z6_txzq@sCZWoueGM8_xj)gj8{t)o&567%_O-1)@QY{VBLdWR75x(FZd)X6nLgp(n7
zmj9c0(<T{B4QF9M%_7=BMMks)cZ(EOS=hP8q>2jD3-2t|vHlu38qb^sLqV;+j8*1q
z)BWKVbL>xydnaqDhN8u#JO_A>F(s-(9j5ESE^qD^#?>CGUl~Xsu!HUM7Awl*MZU($
zv@+U~LDYb#E82@uDw~CFUH!8d@2~66Cb(i!k@XYzH5vFy^V*=|57D5h0ezR|8I8PZ
zO_2MHUyhr<Tx=by&0CSoFzl~<5#6p;F<W(1dmz*<b2Rq_nU$kuQwDT(E<(hbQ0`ZN
zD7rrXwe(O8pWW?@+%r47Bd>xt-79$~o9{Hhwh<%^AUYSnrSOq@=#@J2``0v1+2h}-
zzK@%RjtHUWMvH;I&iTuW%$*dl?0*Sy?G2$8E!#V^5hV8wEd6{n*_o5`F&LsC%=R{T
zdRm$~^}?cb-=%qhCYTy~@47mKW8Nh9>C5MU4I2TqsQ)-k#8X{<-GnPqlu9fo<5k?^
zwLX=~OxglVdO4!FpEG}nB-th*WT(6Iv1$Sl79F#{4+yCy&?&utUvr<i*`}Vz(?snp
zcP^t@RZ)%32Yf%icV_G{rT(}gjimVjEfc$eBv$;~_|`$H+@OlPrw*1(Ph;s!bs#Ms
zhNqO|OLh0uT+H^WHNI$;>+xqAS(I43f58hzM;8O#cIoZ%65zZn_KE!gqS;iVRn{wr
zn{$1Ith8G&4tP~pVikom6XHUv;U%*ysC5|-b*A&>t<)0S(*o6~Q-8r~(|bj8w-D7e
z+N8~1uUzknaha+h5A@tTiBO8GfxcVBfD24AtTbLpg`R!~3gC-bEPvd$|7XwsdDZ`Q
zAAV~jbvti?lY8M53LJJ`b6;1k_*$ILuJ2EJ2?s1+&h7N5sV4Yreg(j|a-ca$gm+ai
z2^{Ty&%}XU{p?Kw$JN+N-@OzR;VjUbd@6NN?|{1ZdyownXibI$p>(%_!(Zf?@|&OC
zQs6+_ab17*dm;{&1JEsfKyz*kfa7<h<~e^hOP>G-V|IW#GXHzD4paTlX6Yy2<u|ie
zEdMu#GhuCDR+n?L*@<a_4KZhDzg%v6S!$aKePuzMg!is=j2UWLIif7r=;vd<KNPi*
zu7P>NK-}Zo^iRgGUidGuKmSk1wnp63IX5j)V?`61x5Kq9fXCdH^xTYKD&qw$n@gWF
zrZ}Eb<DY(Hn!R7=KCd|~@=-3>;jaFqXVqy-om*GjsLr|_LhiP3ijkw=-Eg?7;uZVn
zzx*m~M|WEGbp!LRz{!fKkeQiDgN}yI6M1c`doHCg&4X1kq^Pa{z)AUMzcShU`+_yb
zR=0whabER|Fon+GkS_qE2u&sd;Wef2F<-^>-u(d@V;cpkC#NHdV_yooBTkVo<F&WB
z1qkU6Q%7kg9Tk`9A_64)c*n?ushl9Kf2;$R_7{aptv^{pzcjFZhARnS{{T5>pr(HY
zrT*at><X;Lf2Te6f8ytWi|5~<5b2d)T)`w62aW>Ld-`WfGHZBgBa~7^K&C}f+-_*_
zj5Ir7Ze2>w0-jZka2-u!KP|7ZAtc%Ht}byP7Xvlk%eB`>d{6`3g(|j@z4C~BU8|{E
zvX4_f##js&Zt!QdCls(8E>~pB($>(M|HMr7h<484?WDTi`a%S?ik4ND^NI`Wd*im4
zb}JAgl4)`|j#T8?_*}T74R;G%4A7PGX?uGy!FGCBZx$BED?14rW{YQ6-{`qP@s_Oh
zUV@^bmEe}!M;-Ie`3Ba!*Rf2qUX)mzO|2C7!V591Z0&G*+yOjTxK*I%EC^Y$z5|1W
zkXFWMUSh`D*>j^mmtBeOPtM}>2Wgv(iU`wcs)+f5#}ucHFD6!PWM7=cwV*Yjs6>-m
z2qC=umKvmARyZ1n-rv=7R+DT7gyb*wiPYk>M`&v=Woye)_vMKYNzUP+{V5~~td~WV
zP_ia}jMqfU9;Q@W?xi{sv!VRnobp?IQx%_h8HyVjWQimNbE9vuyjyzCgTC}CG}yEG
zv56OAzhj&)tvSr=4nxis&(37Pg9Xqd4?$^=KMOWRsWuL`e$fa+?AFqUPsXN2-Du5>
zc7Bgc9Z5~`<>YBcUY@n8gpQDLjdu--&(jt8d#AJCdrwwav;(5NsWeCAr-q(zqhDQX
z$4!|+g0)O6>?5?@gpdrJJ~%kb%z&2F!+z6&tWhxIh0XKmNI_lYceN$(@!{8>sT2s=
z5{amJZ|u$lrS0|!iB_@0C3yz`Op!gTy`!u<d%6%2Xf?vp)^o!4`N?LWV=dlOO3_th
z{H?U5lj0c#({fXyQupF^O0gl{I5&;#)Q4grXa(YwVq#;WhO^0)(^B6@MrT-tTzRZK
zqYV@?OMGA^6w5+{#^ys*f#8+xkz8v@_Wq;lN=|$83ab~-4t?M~RwMYY$jJGhf2O=@
zaq3liWcS;OqB=I-TCQ{v`PfAB@2n{D-37S_N>QKh;U48Dr*W*9@z@lBk4OoXqR4QY
z?eE}9w+YjR-b6+M`yX)9NI*5}8egzx{;5dGFN#F3&SwCgoeG31)XPJP6bzsj_Sp@@
zk}Wsc)NcB=i|_Sb`{(%{Y4l<IPhI+VUC94VUAobJ7H$osV&3#t!96*cK<YEaTbjMq
z#iO7FiHElMON*OO@eNerNUogBP5Tr#Z~3zaLeW+^;I1a5F_G2qH=1qV%{J=TAmmmP
zoASewjrMIN)|gSBG~Fd_9S+Il=A$zot@e#dKOUoAWx}b;n$Pplg-<F}4BHAQejmGJ
zEaLc}TtpE2F5fR}0+Tjo2w#|4P=&&9h~I&-bV46dF${o&Ps;g_-|PE_L5!4WQ2{+S
z))bbujn9x`6xVX&t`Ln4PJRZ+)MPFb!`<qV(l)BXnxt$sO7qg^fGxN4`)?y0l$hj8
z3-i21tj!{1^U`gMM+~=No68PyN1-ZNh6}Gn=2?$A!)!Q}pA2)sC(iTf>&UBpKHOX$
z?s{NPY2SF07yIrihJZxRmjb;rDTBT5hybTor}W#;YoQD1??+y4VcR>-2OeNfNHgT)
z%D=!1J`#%%v{S;dP=z&-OmYrD7-Y#7105al7_xR)gT6~rlUoi!YtzEem_KsWjnjNI
zCY!7l?h!LjEYmS<owh32KuQIaCMh?oaYZs^#XNO7`DA~Z<r-BP&C2T`(o1*VHkTM4
zpErN~><r3YWOMm`AI*s5@cy;hxOnYY&zm10(#=`YeE4PyIcNAt-}ENAPfhtF3Rl=N
zK^lgi7SW-_L=tXws-d;B)dy<??*@TISDErVD@`hAza<mNk2~iD*Y;o5*xA7s!vYr{
zUju~S4Z!-mv?y5F*<IWThFz1AV~4(nHTf3Kw{EyqC0CNQh7vU&U@lG2eQE%nQpWP2
zpEg-aDF(7f^B@tZlC*WTo7SSSNeNSeV>%0N;ccGt9t1IM>l=WH7XBK{Bgf1w*J=+^
z5<G%suWncgdVfdNS%#Z>aU^{<M6q<o32$CxaoCNe;7CPN6Hy<}y66poe0wYTM59D@
zl|@XSFIKmWq2fEFeh-=9GPgM?`@U|ds;hjzsr&&0|I4MedkR4;UA4G!SY+SbR2FcE
z-Cm>#7G*>zBx3V9!`+<{ZF_bSkFv?t!uh-9Hozh~x!c^|r%w6}BnHk)FsEZ)Wi^US
zsDT#Ys%!<`zF;s4lxGGgbN1xUz$&5LyZJ=&L#5|jWN3&q-;=Dg30&OQ;}35;N;(*c
zT70V9+sVL9uzfLb>^l4cwmnxfu=_k5Nj;yc6>I94A1+9U`Q{33G_P!5C(%_p+uB30
z$`r?iv%)4JR+b}L)MurkeN0uVDR%=--+yGoUsXTMVV4rC{K%qGp{0WCTv7aFeN&Tp
z_z1m<LCkQV3?kDsq8@{T%(CJv8w$p4fh&B5e59TX7H0NyiqCpeRac#96+?A<14*Hn
zYJRD;M<Vt$mM?fZkhep0HKqYgp#JN|m&rHOgJs6d?U#0?9@IM9lR_-E7HGn~hIjJe
zTzf+yj_V7YOt3NgB-jZrJsCFayv|60@|1t2JPfloUfA=B$=BSD`ci(_4b!}TJC7+q
zby%fDhC@k){Vl)snvA2gE&kN=k&kfFAx-K1q}W=&$nBGM;&6Ji=VN6GCp*j~tYo$p
zWcdg+{Iw6`^4?rU8EL7Rrcn3FM^HaMJwZn~eK{Y6<LvnR;r!eLQxLFKRRq9oIH=-h
z7v=kqdUIYoWK5Bie{#j4=LhJM{B#LKs-Q0|1-OD3haMAgCGf-I{lUf4t$^P(E6IrN
zt$<Zp6YIhyXOVPpI`A|Z>mTqdN2pTCtwEZ_i5|bjioj2Wn`Du)CT7~>Jq@QugmUM#
zz+mE=@_V@m(a?$6wW_r7Aob`C?D?GXagc=-@h{cF=8{OKY)}6E3-E3Dsbc&DI80$V
zT;xug9;-Q~!ZchDS9H`vmMOVB<uYit_u^XB0qHD0iz6<>-pGi1A<_98E2C+ODm6Uv
zrF^a8ugJJK0KGCEw#=T~0jx**Rpfs;rlWmL{u6_;K<YnMqyULkEXjYL>hs_Dy+9l2
zZ%Co$YSgnL!1_M7FFJJtWXnyXH}qVqKi5skkpkx#TlD9PPRz^{kB};E7v`w~OqJ{w
zUbeJJ-)OAgwXQtJOS-X<Ax<qyUi%a#eV3d4ruMy}RwGuU&SzyaLBs$*dAKKUp@1kX
zY+JQgwelf@>`i3UH1kI^oUQk@S|80AHud+<ytb|=#04)jbD!DldI%&s&hOAFN6X#2
z2Ap=apw<3<eBV9Db&BkA4P=}gsG2ws`-a>J*esK@Z4`CulHU|t-z39ujAneC4;7w#
zG&GR8cff;YrH}o-vB%}I1TMiA?c_Tu?^yNmb$vJZSo~Bg)JJ*YcG5xugk9Z^u!Y`;
zeO#HcL@`8Ap^!JoiOi{Ic0tUgbYZ4=*K0vV%CJ-g&=a)ik{lT7uZtuq&FJ6lYsan|
z!PIr{$-M0-=iS-;c%(7!{ZO5L<>%)?%ginx6ew{;snv+BqYu`7TYbBz3yirN4kEYK
z`3Y=a3tg8pwZQh9Mhsxkfo5-#)iG*WS$u*OA&svf-q?cqp_=0T$75sI>qmhwue2cb
zff<q_XUL~kM{S))J!cJ5PCZ+?U)5C?idKyt45t6QV{1fTEE)zp9pWF`9zLqRRgHVE
z!ZXo}m)8PlJL0N|5TnOawY<WJqz_Z8@nS9w6*J+GP5WY&%(8^{Il$EEO26P~a&$kx
z#+w7*QMCi{oEE$M4P}AE&77P@UrW2(ZP)ESMZ$I>GPntuSTUFmqA=Me9=%)^ZAYWm
z_j15tacI|V-Japo`T>WvWPhavA2C)_zI=C#A4r6F!}VFIFW?<aWXJiFL(JC^r!usa
zUz%_}X;54iQATQ@BKh5(DP*aVD;3$VFiEAm%XVUzNM4qz|9w6oBy?=kL#JHS(EY+S
z^5ub2g_pA2{5?!(2woRHVEi~3shk|68_9h<dexx{l)lm9Z!MEnqOrY=VRjENQ-jof
zNQBWf%mwk5LC;oq;3@Ff*n+9_9HAhK!P0H_4hb&ED4}#pA#C`r8AulPfbd0dTZFNn
z!Wzyi2(gAoOcbj=qu0*+<R<uo0dCqbttvlXOGAN?42xyaZn_{wZW!EX_X`bM%;EpV
z-g}2dwXWH|g&?3rQ4k~v6hVoSbCM_uh!TsWWQr&`7J`7}Bp|5($wHBHMnaKuvdCF-
zMq+uUd+*hEE%)x#`*io|d;8q}1FGtIfSP<vzVMFmjvtLwpOxzq`SPamqp2iFXO6Yp
z;tIuf<}FbxDYeq2SE5HVa3U&Aby>!&2KLiwTlK@HHT0{$l@o9zmYM+VkLjoOH-Qee
z6ut3thHI5Lxmf|sa7yxjdQJd2{#sJ_Gmn>+PJfeFc#%=Y`uKCb4S}dG?t<?$GKy3l
zE+j2lYiwztoJRZLnL@MnbFa!ge0~=+iI;cZ(7})>y#nQ1<i~HC_fr!f476c%pSt#G
zPn?pO^(*+}OFK8>Dy5aioeY+q-?L>6HI5|*x{iAtPUl+pcr7^@Q?e={<z$sH%1_x8
zh~5ts*Qnjt?f|0B9QE%^SnseoQC@iIqe%sxhp<||TB@xGme+hw;W<iTje2}-je?xL
zimzb-NTE>4fvOE)$1{fcS=^dJ-ifEzR1{s;&F5cKZ1q(JFr3M%Crv-YxP2HW&NrIo
zqfaxCmG|WQVGcP@Y&l<*T|AX$)iw)q;ZW_|56i_}TQymN#}4bwwZAetsq;^X#EA99
zN$3)P?^AMl-AzArA%bL`me9$TfWwckZ#>JA!c^(wHMvzRIeEsGP8R!euAe}LBhK3`
zpZn6-bTm^}&!TP&qh!O)0__gT1YTb&p=jwmxj#Rq$XM*$l)zXNTn=r$*6z5dSorKy
zJ9~XpCnK%_l!3)qL`s5-g8Z0NUT41}CG#1+B5B`Lij);IG33cA84K;F^l7^uAK~St
z^g{iCR-JZu20wx<!mE^BpS81KhjZ8?;q`?;^jy6g?lj)*08c|hnpmR?N&_R8yvDHm
zA5H_<71_oY85o-HEA$i2zeNgN_nDuM@>LtVn!B()YpSN1n@GLHgtRt_myUUM?&23e
zMZFu3OfBwz&tIc8HWP2DAW6$gD#Y+MN(b4FqTi5fn^9c7f$lZA;BAzQN4uR(c{ZFa
z*=((a*K6|8_!a27iZ9}fWcqG+d2D}~RWxENp{$4p=aY8oCSS9NHcuSdn{Fi5duZ@r
z=VO@WKu8yHLjBCL4UmdJWn?M<BNNIx(S)7ip>f4#04FWKBUvNw@bQBJSeXe>`4}O+
zO>U|>8J2o0m8~F@pIDQ@23K@J>C=987;o8^j2E|C?se}~#yFN*nWAtX)2uGj_#BA`
zlmgCS_0l2Fdtt^pUhL%4ZH!OzE=1BO`U$n(cDSEwc#@%+Vq|Mghn$r3^iLLrj&H;*
zPVz?WV5Gfm%PbsSP@Eb}4zL=N2=1h)%Jq~S-li*!o2BfD65A__<10&6!nB@tkza|&
zA*WNg{<gC-KkBqj1)`LcpL6gjeBC-jCfGDl&R7#~g}imQ)$DaZGX=9R4xQ~ngDDD<
zf9eRG2|+*%WTE!nWz&izUv4$JM20oTw2E_a5j`2YCtgC9>vRl|!RW_yzG+c>BB@t{
zfMxvZOpgs+*|0GU54bbNff=tAZAGgDg8)zs0itkEajg4#y1XO2@8fz*L{w_U>PFjc
zyBbm`<Kp0m2_eEHo>z=n(KnRF_f>r$L6qms&->zH5ldka<1%1ZrwB-mGoMDoS!za5
z{j;vwVQFqgX78>CsWy%?I9MAU#DT7N4UpC?G|=yiNH&$$KgNog)fbLzd9TRmtTBJi
z#VdlklFwNraoue#F>YAyA=K8G|Jt|QsVQ`Wqc7a`{&jFnb5}msX_;(X|G|189IF(g
zkYr<40USzO`}EDjN+L<gWnXNC!k3e-KCZU1Lz=C_2}c&}%RE=vq*XP<&MF@pbuoOp
z({6V)cR3e*+7!P(MhV0aC-!~~d38OkZOE-kTz65UOU_sy`!4&05K1T~YkTb!*f07h
zSE3ttPetzW&x)1D=#6f#LEc*-(kr>x62017NP6hvAC_?MdNW{I>-Tz4IihTGEb_HO
z>K;6eA~P0=ii-WP5F6`bVkn1u|CYXOzN?4cxTpRsy%!;xQcJd&%py1QE_bf>&`G_T
zPeJ4BN<1G;1|dOer2o-r`4zW%$kV!!`gN3M@WJl(Z62y?{TFjF;YktX=c)pYspA1N
zcmA57_TSZ`@%Q=;?C(rXYi%dHIPZ7L1vO+N+CxalWEY-zR$;;0TB~RlYjSEzY>C&a
zbUby)k{nSV#z!W<LaZBPZuJtOzyzJI(<?t5wFq{d)b@_n%cp-E0SjlB<!E(p)~Ic)
z)0<LrW8R8V8;^S+X5;2xW1s$JCoWKF==vcY1KCt6z_a$BN<m)Ke1fLpqb%WIVUCn^
zU5ndNIWov@mEw**aC0BiP(`dVPxulAdFOEtqz<~NwNtP|UtRUVCR|HbSnwFj&eC#N
zdAo7<Tt-%h|3H*q#F}E*w(<w)^~|?QeY#3|Eo&_2=dxf-dv#MMg|ETOJ17;gjqS9(
z)4fY06=ApioGJOQ&l=~-Z>?S?Jv#JC?do`R(Zq>r@J4OSp3n-9FFshD?rCJkuThht
zpl-pUwSVyvAyEWwl4^hz861i_s17+gkC=>c*zmGKSH^cwsGS5Lx^LP1x=g{=21_7g
zo9mS^F?!zd_6rvX$}eRG7Ckwg6YN*<R$&bEN)`LXKG<K9f_FfM;W(tD**Q6#?4d5>
z{TxA%H)RhF-(y84UrvJHVg!(MbHw^7R)zIBn(i;#5_K=RVKFu8M_KL5gZ1k)Bi#>F
zk%GwU6QOH~af_>X3iqH183By<??!#e?P^}Wh-A5@^AFBPLO(!%=5qR<v)n%zvw!PM
z`p=!^(xNwz>aNSBrFw!y(F?Xzy~-lU6_C)te&VVVZiTit6W4H&)wZtrdi{(J?|g(%
z?e(ZfXNlWT9<{yIz=GZw%S8SZuZJ9C9{De0KR7kB5nkuW1H@4#zYK%%^<>-7V`@#A
z#!^>4jl)9gr#cB?<gymHh6IarrnoOl$h-PIw)m2)soPWicPq^K5IWF{XO>EkTjCjP
zLG&RhA-6QFOKq@1i`fUT42_1Z%bziIQL{Vtu-sZCu5GvZeD6^*UGs{Z3N;{pEDT&T
z_oj}6yyu+}oJq>d30`1}7NXO9Eo0dlNvb@HyHvccEG)6v07TrSD&2QSo^M}y<A~)@
zB8*gr*f}c1WDP%TAh=td_Y<UbKc}%}a@`~%zaMHO2)-A9UbOa*Zz#DisZ7e-c%jXs
zf*1hDq$xgLoL+g25knW{$AN<hq=u8FnqWoMYdG)Mdz^5~q!k|4>?0}PW1Yh*<n(A;
zYrRG`O4m_(6|GMSzuRJ&uSz@Tafa?N77GpZg&#Q^04ww`VPLAOrI2GP!KsE9H}or0
ztw-2imj_!^ry50f;rQ#%0vOGhkvzj`6T2La1A(>PO*zoS(DUppE3`dyo!VpuvpzIx
z&B~Np;M!Z~ZRFF59LTqOd|6Ag5DR|d8AZC-wcxL$UppD>4Y`#mYJjk)^N|;=?sr@S
zG#`9g@3D6-i04Lp#!i6j;t2L&PSccUCaIjG3wgJ8uV4zRNAHr9_BFz+sgIA_+{5G9
zzSHk)DEcV`uyF@~ndhwhL5@prA+zjFb;Fko`394b9Efdwg~>wcNbwVqrJ@BLm{H|z
zS+2^!K7V|B@s^r9OAm>FAXOUQEC44@fs@Op<}x*K_&PiZZt$5Yexc}2`<w5HS<6PP
z-?^2QGuX-mxtlSh2QC_rqJ=|8Nb>VV1Gal7QMvWwC;L-cGl<$vm%F9{P~Xf1T~_>D
zT8<}s<PQ4z77HoZEqYc*&-f=5Lc{6G!vt83>;$R&D&C09yQ@vP+DeyI#m!F0j-&;c
z_o^XDKR>Lciq6FF6%wU=p;UD|)-<t4bV{3ZM&nsodxUDNB1~{wff>)rQ*qBhzcX}(
zSSlX2sgJ8prLIN=tzlBiiK&&uf6=GZtaREtiM}_17V9jH;JR#YR2Db*7=wKC%xYxa
zaMSKn@Ppri5Pm*l44m!)CXt|~EmGjn`zbNv_nOVnpPu+6ssGL+4QLs^HB$a;SNnft
z=fQsp%J=&V`|tYvSFj+!Lii&cC{6V`)+mR8IsgIRRl81cw_xv#9cc*W_ITr$<siVX
z(MWe1<dMCpu|G38IVmNENcplGG=q{n_#nzdkS=w9iJ82saJ-D~8RoNb;{Zsf@$Ht>
zhaPUrzAtfdN#welX_f>9DZa66QB$<dr6@g}aH1yqBJ8x1NftLWohfYW?8}t+tl2F@
zgrEeyWl#JfdO0~td6aR&DU7wf$$HGRB)ogdytFd-b^uhyMZ;Nxt?uKJ4UxV=hw$Th
zYfRTz!}{>0>-wu=atq8KsO-U?Bo7F&F-dT&G&1jTq}aqqwOjg%^y0k(msaC4VB&;Y
zt8$4w;B&2*A-!wCWOnK-R6c+UQQ|uuPtzDPF%UDt&*;H<y(LS&RLu;}u12`C+rB(?
zGbwzwND<T!-Mz5YUd}Wl+LiI}vviQSnr8HxpcoJG)4H%&c91dKmiOR&oE7bz%vAGc
z(1WOt{vbjenz1<a^}VA|0i9{`xaZuEt4bKX073Pg5byT2LBgETv94K{Bl?G39370S
zB_0`;_X;CC3N2r32aH1??-AR5BZ{oGZY)@@d7}NU$A=~-;|B{XSA5oUO&n1fT}sF-
z8`B4SoU-?I%9U9NJu<=Q+W6SL=P_ZO>k3sIU4whnX;|baL@g_(kmF94l0KADqX_Dr
zKOFy5vKJSWqZ^Xsp)Eehbl6*}tHi(yg!NR%z1G?iT-%&T46{PAJEO~m3<x)ccPHx^
z^5&r2vp+!ALIECTzThwk#~lj(G{d?3{aSu8%}X>P+IFrkPbw=$*gsWF5q_N7n&>rJ
zp)P1}7{G5$K1Mvr9u)iXukZx_3(Gja`cVEaeT|cPsswb!w;5an07k5UpLtlnc*!L1
z+*YmeQs0`AZ&0{ntY6l;Tt)2@*|ptG7~4DjRp&Htk#Q#p0RaHaMz63=DqZjznO!U}
zyH)pk`Teo{LX(Y{>U4U?cnJiwqbY3ZB2}<G^S0NbZ>Z9wDN?e6JVNK^&C)W89nDgp
zDEUA~T5{dEJxfdAq#_R=A3quFj9crq?k}k$NLz{`XU;=16@IHcfIw-9KE<7jtlsll
zzk91wPfsDVa9p$)<a1*)d<?Y?zc*YSQdM8(E9C_C){W`22lsC#U-oV((K_^ls6nKX
zr+BUDpB@2dnvceDT8(|Vx{p^V6u7Y_mn@?(P+Vd)yz(;fK((`FWB1CcsdL@@^9lcR
zi<2NIUjKf!omsV8Y7AVj%jh(*MDp(zkzbl{sD6O{w6sVAG}K1BE!tjO*Moh_&S*|O
zP!Z+%0W!=txVlr0G5Bj^&>!qiPJdzD{Dukt|9ArsY3phHVw`{aEPt$F*=FMUbYAxQ
zdlRp2O1jQY-8*!FY{J|0rE|)sQA<j`i7CC_ghOM^P>&mJ-^)O%K*O&-F_k!loxGd|
z)gVsx^Ph|J%`$Y(95B4|fP7z^fhIM(QfUN^LM=c?&8y$sg%1bLQ#~Dkq^bxs;8Iji
zJr+M*1I*>LSN~#l%$L~k+8;m@N?ZUIMGe^K#Zu}e73}0+e2zdCOx|~-#Hrv9&=%lN
z^w<6Yda)Z0+XLE!CVw+J{?C>CGA6cr2b4d9Q}_l~$1C*I##^@}%)Fj_>)l+H*_no8
zD{kRP=|}y;e;t}%>l#3f@>fv}r20%B^-TR}Eci&-j}g^j5}57!At%oL#Byz?ewWyF
z^-vDJvoohMQm~NPU0&_s3|D;W$M)^<wrUCnCUf$<QBi@{i`K!7yZe@0`ZMdOcNQyN
zpL?^{B4SEn$D#t1<uvafF)%Y5e(P6KAK~QHv%1Rje4cx1+arZLa(n|0vC!UIeO7v7
zS=X8&9@*EtnA?@RF5uo5YNWo;j*dn>?6Nu`nJo{WH6j>THr#3M&~>6Z)N|cKEY^p^
zIrp#Cr`=HAbjFvnlP+g`;TI9fB8auToTQ`aUp_;!L$O7s)yDt2kAbts8HY1kg)xX3
zoTz~UGEF1U*Zmrr5SmBGQ!UGk)_bnw-(lwOo4o4tY;q`r_v^^}1^c1;!4H$_s-sJb
zfq5g~SIy%0uN}~THt)Fp>znHTYm884o3*JY%z+hRkgmhVRtxrl*gBi5_YfO9`(z_Q
zzSVOVf6o{Dw-x;~_BDgoN=IzBF<Y{}$$Ww9mZV=TaWNhUTni<~-<t$$+W+}6gG^Lx
zK@aasoHaCkJyKh4&NGd1xdm+F5NBm0*d^GHLt3JJ-dJIjKGiOE*qzVziF};WjmgC!
z8uU^PnZB)FQ2!!x16!stZXr8ZCLH2YmcSI+G{b(I#p%V>;<e*7Kj{g>$*-S+bMh@!
zzoBHuv+PQF`G+X<j6fxrBVc?qFUFf-$u}6sSpWbnpFbUH3xgW5)!EqieSBdd;tPT#
z8yYbnq_Uy>=Lp1D+YRolir(>l3T`F2b}b*Cs3;`N5;XKF!`HZ`D%`d0Em(B}92Vsx
z{x^%<6A(*5*8cVMeJT`ftkX&Er*O4RJYH9?(;j@l7p^hqff<PbUM$!^eGul4a>~<X
z3nM6()6{BalRWCelnBFE*8LPo<>O^x{?|tBJn@{HP}Ox=<HMCI4}U}K!QAdl8i(ZS
z?M+Sdb-ROKYc~H}jpp~Q0>3>6+FSmZzW4WW;h4euVdHrjLAD5|&B+z#7f^F+dNOEO
zTF|OFT2fj0>3g>?zH&t7Ja3cDP&EzE*7J_?_)3yZJEjP?14Y~tarX{M{1BE%mVP3}
z8<Y_h(DgVMXQ*Ag<_{25E+ui=jZXA^F+UPH+d<UpCX{YP1OxKu8@F(6_*6(XYwO8S
z4IQzsvijL^zS0L}!u8&7^_s|I$jyU5G?_8Yq_&rO4hu>>dJ>w|!@HP0R8YE6GLd!l
zIm@Q6?_Me2SkA}yQNY{@)4r6*)!Dr39_ODo^|fN3z~%Z(dUe>0r0NEl%)=>3oM=KE
z&~mcr9!(ybK(W#yo^$Z|3F}21y1xxU&&@wLYl;P{16{j;N&9F=KI^gwh%X**-4K!8
zr%7W&IBqK0=WfK`p6x-$Iu3#Dkaj(BUWFc?b8o^x55Js_A5deq#eYBNhRm2-b)W3d
zoP}^OXkv-C_&g?@3$%>m#F?I?grxAi45pTzDU?qV%Zq+MpZJ1KPIBW7;WXE)!4tvH
znzPtry9G`mj~7`Oo|*8t_vDz=_to*x7=Otg^vT1wBP72a$tkgEaBwMy@Nx!+=r<Hc
zv<a9hkp&Z|GHt(5<sWRN2%rafMMNaj8sf*C4*GSR_gCeabAHlU-?eo(sa^}(ZE^ue
z5#P`zW9oL%AfJItBA}_*%C=4A?0n>E+kDuKA=^M!_lI)UTh}r3z}Gts<#?V$PMOec
zC|wlP4yXb_X7zLv%t|>aL;T{@Lg*u<I&f`fSoAo*dMlxCJUlsTnm}U^RJGONrMOd)
z3fuca$4ev=gDWN@N$L{kY;m;}aGdR4#!@W7G{<+Woka9lpOyq4s#b@sO^L3OX9VG1
zPxw;P^;0qyJ-U`};Y~Zn>k;QWqUCo%SExS^5sTtsI^pOn-R+oZTVhebq4;LmU-U_L
z#?raAFu{uyo^DIoQtOI8q<A~>Nh$W@NOc9e0HF;6JQLWa$|0>L5LZN1{sVM}q+<u_
zB{!v18Qt$xRp+zOZ8oj2N`8X*(5L&&6WaPmQ9Z{4cU}E2#q#DXbWAGBo#PSa9L)7+
z(^<`-u~N4QGVKqEr3P?7DG*u$D9U<f^kkN<VhYApU9UM3)b{aa2kmT_&*$9M8$uLo
z;Fl9LB!`!ea=*>lJe+V*n*lF!9$Ot!yd)jy#b_1{eTxcDoru3AMmOpJV%ydAeWr{8
zEmus9QPCu*wHls~v3kIKXH+C1xsaqHW-=+&{;t-!9KtEh!hNVNd{LWshFfF_D=}t<
zm4s1H+gR#8SdJ(8EgXatqe;)yw?yA*80OqH6cBJeko?XCxg%9gj2l`<gF)LqP@!JG
zSA<#|U%Idv*nY;x#<OD9jVk3p0~?Tnb)<6ruuD0j=~8g4i1Pan5a%hA2{MACe4;Ak
z#gN*A3S5n6!mJ)meA%zR`3iKigs#eTT@Mg&K(e|l)f_pG(T^Wph-hzRR2o0Br2OQZ
zGINKg-lF(gf|1|bn0_wE;s73a-y$(dcls<*hK`PG+|=bzv@^J?L|OYKvO6^TMhn)>
zfsrGE$88gdGgm8sR?uS#@PZOgl9=AYC3~<k8=JMIroC;Gu<&1})Vf@9o=wJjK(8c#
z)CRw0-HOvt+sdi0T3-$3D3{CVk!sr3XjizbJx5C<KXI##93iG1K|;Mj0g}Hs>ePK!
zedr6{5`kpc*C69p#0Tit-12?JG(yY%L+I8qPUexdF(-&cW@-IhmdbItJNM<*s|Xm9
zQ+b323?I#wVEY$Z($Mc)J<`uk&7OO9Q=}n8v^3}IlExziU6!31mPv_N=9Me!A0VtO
z=;jp^{di$NYZdW|Fx~pKb@}*cbRP%V`qLQiOZmtEeo9=?14<!GDlug^UjsYiXd>_P
z_2-sh*<BJ-H{xBAR&Z{exjxh?eA686Do9afJ^u~C%Tk`p;VVm)%{lnK`X=+CjO##7
zPb!i+kFw>W91<o1EJ>Rcw%eRMUF+ybrmtbMQx2(~&e;eUCy*M4zQF;=yjMVp8)W8p
zYz=#n`Vxp)`dH<A?rIdx8r@%~1xoVFx-L1;3lSe18>b2Tq;Gy6m(~NruXUPfi&w&g
z++uqpe&cHOlC)Eh5@W51YDdlB=Fwx1CXN5uYyJC2;5sMu%#;>#;Ud2WC~z%~(^)Vk
ze4!^O>SBJYn-jvZ?J2)RM6}@!-q+J!|IXFw;(<YMCqU`_6B#PIHfuIXW-2p;yGCCA
zSM%{Mv90iYurJFvi@s)5zuo8ec#oQyeO$4QNZ$yM$d$4fl3&Ao@M0iWG$Q?zFz<y3
z8kg~Nm6L7nzS2kz3id_b*2?kOYiJ0&^y6F|lB$!hiWJe`9Adj(V#O|FRJ{%2GZ{2c
z;9SsV%VPaB4TJU=FSPoGl=VCHuL~@PA)N&-CW<T*J#{K$+_I;63Iyy#NqCL1Z+5?2
zx*s}!{_<oGQBkf+$7m$!1Fy!sBd^kW`~&o;0Y*D=8F7E#WF<LqWvuP_H+SzmvpgL+
zpDCNsLYxF*?jX!-QL)zb`PVS8Lg%fnqGiX8_pW6iLgS5|V_{Zpfp^WX9<32^($3h#
zuB%JWDf$wa9;zRLqgOWs7e)5p5Apcxg6!j7zfoZxx%PhDcC%`uaWh?F^Zdw+VF{{2
z6mi$p=CF+nWjk3p-3tD`pYwrm@VR!f;Tv)vuYKLI)g&Vve<wW~N-fQo5pB_6m$y=}
z#Isfp5&wef<lFe}9-H+J@DTQt>}bc)m8Z17tobH*_7d*(P)Vek50BDgO7oC?he7+b
z=dBtoV=5YXoCa2y0q+lx^aq6PX3w$cn-@8#sc&~jsBf!Rqq|EZF6b{<T~j%`Pr|yU
zwF4yeov#+c#qJ_ykpba)OXUJwc&lnsWF4}HZ{+Em*X+?d(5z3Nm3II(tc{F%Y<+=i
zUzs`ArJA-VpY`h#JgTR+pUT|oUc~F&esEACiXXm2oln2I*tZz%^{AZEv0;dlW_3WW
z^58NW%S6o?|8eaOL#(v8jZl$m;wqj4Ioy1ayE<HK=dK4$Fwf|oYo56Z;1Dqw&+q^~
zPdx5Eew!9_38Zb_xK$-icPO#=VikrQh+ip+Ix$%6zx)BpM~ki{cJ1S7(Gt4mo|bJ{
zFZx$r>*J6v{|uL&ZziI1IeYhEhmtv5>~nDiC(v4FIo)f+m!h)8Q<_kIY+fG^!l+`z
z^A}uZ4P8D@d_Ho1>E+?OJ9S=_W5m-TJ$3KaI6iDI;tFW;G{4a_3cQ`TW)hs=7CF1*
zJUzj{n4RR6r;S?Qm*Vu#+{a?IpwgYH0W3#$p+p}#Ai1;;M34yg<2z1GDZp}fKr+mK
zP&GfatZ|Pz<$FZ^<Atms_M;(d`#Z#K=^6w*mS>XUJ5+H?O?-o=${U+)=WPP0cUBSU
z(&K7$IM_$~Jov|7KF@~_S2zy?`S-kBefD?W^tZo~x4S2e0cH_X0Kr9WA~M#w%xhiC
z-!8{<i<T;J2z2hWCnSOJqg5my<QT`Bpkb>3nzjMr1*niChnz#t#d>c|%i0{ul|8u;
z&TmJtKY^LoA!n&0`TKJ&AnE)QZF91Jm%jZ^=pcV+Qv8$R@O9{_@!KaQFY0myx1iVN
z+JN-3kLIkowxiK>B2&I?pN;Wj25IE6*088v$1D=&=YB(zMz1|7sjjc*&NPpdG&Lq@
z@$%a>bO`lvUDk{{)zqx2I8DfSj1yR|h^J%*exU?2tJF4j%U~A`beUO-+l~Zvur3{n
z^64amB*v6J=@QS^^K6oc8lqqs5wk_YfcoOIpY_F}t2?8A?68iY{*$bf3(VyIE7DR3
z0hjQ<a|l5F`wi~|&YRvXChVvyXLmon%Pnoc{KP#26OJS19==+PT3q*h#2M67!P!)G
zTa7E^l`C3#LE;1ZW$2cWK2Mdi^4417QIK^STtVNQA!@;EpC^rpzlB2gNDyr7%=DQW
zPeHipq-3}NRvviS=#?V6ljMySa9k=<X3>G^r!Es2)B%%5Z~LBCeN1Im?)032?z5{5
zH!KVGo{vjmW`?9ML|l<rzO8~d<d`XSuv;6m3={C~RXjJ|p3aP5#bdWL1$x|wLr8%M
zm?-`%c`X`)Qr2CDe-FaSMvNpWD-UH*O)H}+5!_J(!_PjuBoapC8axJq9VT^WA4fb~
zgc`dsv~;4{j13Rl@tm%l(T#@3O$lq8jMKu_<F$NZio10C3_2Y}ZglUYZ7$1bV^iK)
z8v)Vi<P4Zt4;-BGv_l#UUP3&!ZO(@^AZH9W-yiVWWe@W&=giWIV-L0{qmFF1rZ6$3
ztq}Fu@dL&O@fI=8+sj6~Hfv%Ief-wU&uU5%JG{h)A&SZM#fmq}ZQ83yy5(-L_p5lD
z>wudIQ<u^ERUYR*K&fYFoD?Ot5?2IoW-WZ9qXRALtGH^BLQ#-q7TVcXW(}tO7%gBV
zcr9PMoo_qTt}-J}ilFEnyUpwH@dJfBN<reV$k5ae_JiMXFlmx(Gc26r1|blOO1l;t
zt=2ns4+~^V$#XF=MUn(JV>XqaajJw8$MJXLUz_yzm){Anr&X!t_SR2MR6YSDG3fDi
zU`vS@xgr8Y%4ZNczt%$?%lL5A*gI?Q?*jcLzQa?#8+Km^8BKaEK?IT97?e66gwat8
z*7~d=KR~5Bb)^>%A(qiIeKtkhtgG7U1_b>WohyOLtb^d;@^vGH<>CrQ1)Ul7bTu+2
z5I08n9UpFCs++zOttj@`n6D`FbFYT{PDWSyN*OsjDg2lCB)C);H}i{-#|=S>`83c)
zc45IwsL`j2o$PT|7ZdIqd?LQz4%{{--&_QERv<;GmMDaFMU{*^XYVOd(=Q_hU1Mdc
ziYWVoo6EgjdKVI;C~L&8Hjdi^g7SOZuJ>i9dN7f&<}QbU1!;v@{oqMeAg?#Vqh;UD
zO~yagnsg+Y@xwoVt}K;A5aWH9lz#N~ZMa~&%GWAjiJ?zzhcOHQIgr~auUn;4juHH0
z8Y_kD*`v!A&xYN!-|Obb8>?<L<E%Aan}1mus8>6BT<zHKlxt`=j@*XRX&o6wesft=
zioyhkLqMVJq;pC?j5)Ae(XsldhSy8%=(K;i9QyLngSE(y&7$y`4W0#CBHp-Ce!r~v
za@ERStEJxiR6c>UELhQxX7j`}j}NcJgk!8FiZ%yE7c`Wr9j6eEmhLgLj~C@C!t@Uw
z<G!0YGnHT!!9^h{u)?|Iu(8HCnid#_oY+P6AnWG=dF*)t!fhjBU;JZS&Us82^wuNQ
z--0mSM&o3_Oee|j-8Qja;cfI_{!sTcsmhjt)&q#<hFjLUddP%d6)g=N9o4&uj#opB
zNq7zq$vPam)}}|NWSS81XA<>!P?!k1DYl<TAx5=)u%01T7M43ZH`lStRbA(z{k|eL
z%6ZM40x5Z;864B6HL?;t-t$GLy|Bc~%`0E!o*uX=0_>2VZsFXf+<9^<s+fa+DV@G<
z^5}vk`YS_Ol?>p9k8slRA>PwmUiyhAG*Z?1rXw4d!JlD~r8PCDlFGlz>ZlFw>Y8pg
zUOsSmIoAN&99d-s;yJAcmoK3?SrZ}Ucd@qyP9Sp+1vyRqJRY*L&_Ie_Oi;_~UsoSl
zjvhvS(P{YW<var}XCi{_ua~1JGb!gSSv}>~LSKiFR~&JAPe!1kQr_rK>5g=`*_~c%
zjEw_V;iE3}%b47_ZAq5+EUaPc>!Ho7Dw*h~$tk_q$_h9?H$mvC4I*`*vT^U<*apCE
z&Owm-O~?}hCXVdjFXkf_XHj$*;qG?EDg%=fnSab6_}lXScUoy7t;VT|S>9=c>IB_B
z?fav;d|<P*eIt7g_j!FeZar34Gj-R7Wz*&Fb*P_7Vn6}%4{8+c-tTlMpkwN1rpfQs
zDA<=j=uiL@@n_4`AH=BVzbIlqvyp+?#UFJs`TzYZX+IvonYDn6>}3ZMg^L=G*EUUw
z5ANoZY_7;qJ4aSiFem$+YW|;k^Z$flAe=qZo>%>>wet<z<6g_NYyA7qDyzTD>pr#_
zPlx##373G4gu26z!+sgQUj#*cG9HEi=DWv*&hSL{dmZ`DS4sx|L?xLJkocltgIKAm
z-fs#s^?msO{Km2+b~Kb&>M60j<qmHOKQ*OX$?!Hx&bND3#1$otM=E>sMl;}q^KBTR
zU-?BtzW(3PnDifUX5j=Ep~fjiJUkkdS*H?$TL=@Vh<MwsDO??VP{)i`7AACSSz_2{
z4$2wcF65Zgsw%0fuC1uA9oc4It&vxhW>BJ`cJ{~DYRif0xb9Aq|7mjb!OdB4T^fx0
z!F{*_IILI-wO?A?38rx?7&w(G$FR8{KD$9)MrY!SUc7%X<zS0ias|UF8Dch-exBzh
z?2m-1_BnFQ^1X6Yn?~E;y#<eCR+R>A6{&VqYuF*cZ$!wN8Regv)o&I+-SuPBq2Gne
z6MZdh$>FV?K}ITkcoE>wfs_iEtEQa;-ttPc?~crimg<z;{A3mt76jBj-tuWS33Q3W
z-ICsO+mwxX2gL22i_}52Nf+1*!*)zu(`F{RgFa?@l8CDcf*pBh=O&JeF1c@Y4qTOa
zrMcP~)J)tnsc$Gvgy57_c{piP+m%EojTSBhu&Gd&wWhWS$3V~BikrsGhL7>i*uvV|
z$U<zy6$xK`33^lT@%q>YANM^K;FO9h5r`hanlq_xZ)mRZrL7!Tmc1{8A7wjPA2TEm
zFq{-FDbr<Pq#HUttF1yc{?A6U1v5oTyC|$fQu-o6IJ_38=zFjjvZlbLqDxG_A&z4&
z+7>uvWogqG$DDe?Cp;1zx5$S#sNUDN%k)@N9OBs#Vnb^Nr`qn)P}N1KDI%Oe2S{tS
zMY0b$mt{czHqDM3reC<9U>42ILD|f>PviEOPnl)z#$aH*4Z#jvyXxwpJ@#;4%CcMs
z(&1vECmsfZ>91F^Q&ydsYg`y37TrNC?m4UCpONsQa3`tk_Rn1`WUWsgDUydN^AWN1
zOnj?Gs(e(3^guTgtkdGvqGwk*Nm}p3pr)F`7?NHxPCbf*2rY-7ieiKxovKJ%i%zD9
z5tP(lxINoOH+f$HiRj-2*QdxAGwb&Hqr3>(UQF?GaA<6!gfiuCvw(zai;eHI&_1Be
z%RpR70OgE<y)&lr(!<L{V0~y?;E<?r%rBzaa88`*R?H?hWqI{3BwI<V>+nqq;iChq
z4wXs~0yFixs>Z$Usjd~Im&Zzfozyg3CL%Nn`A~>_T_Z5SG0G%YhtiFPT^7s5+oUag
z_$_&;NeEg0AhtuyL=m6S^PvJK2>I5|qQf1lB8qU$uqBgk>Vp9<c8DA{<!$3HNm9>%
z`nn)O9<tBSQ*aelv{F$rcA3yrW*DH9i$M2=V?pn?dhgdPBw@|FzqBRUL{;?0!D(y9
zY{!SY7?qMdJQR9|>lAR{WgqTi(hM`G3lWX@2p{cf_~R4ZA=aDPO`aBwG#H?Ypi|8X
z$qxYgQ*<qdCc`aE_Duchr?4s#XAlcq;JA1PNKI&RtXbGtvKjL#bF_+@`M3C-72AQ!
zcEHp-zQRc~z3C2b%4<ybJlXrIcoSyUPG#~~tlnm0z*h_VwcM~!ztT03*C;BkWU*(P
zX+k4asj9dlKy7?T=HTf;{N^fyPa3n~4e(*Rt+qv+yJI|&1t_SHLPz(}{a9Jqc{tbS
zjEE=sd8aPV#tMyUYLwnphvC15LTaotS(KgQf<D9!2!cb0*qyJJbcmNMUWBQk*@eaA
z_K)g5A|Bn-&Z=m+L8&mjYtLdj+h)~_X^WFQwhtORw#9~OR_PpfBgt}4_8~1;58sk(
zJ=|dnZ4VIk#RhdUgHMX)w+VLQ7OZoEzQ|L)=U5G5d`T`vpYI=o8IepQxUP}8hmPlu
zb;?#Wzt<0(#}c`>4|z(Q@2}n85h7>6$!0+}ac*`>6b+zp@@zV0Axbg<(6773x~pzu
zm{nq59u`pxVrFUmtFEQTzYoU7>^{08q;^?^wIw;%)|I5hJe6rEiIlY`Ig|RxFdvKm
z{Ef(4z3lj+X_$E<fVsv_g^A4!ua^Wp_9{iuXDV<hQ$j=YgwC{!u_f33=oQs2vLMJ`
zcTv@uRm?Hyve|o_D;aF!BYp#=a-SqWnb?*5zK<k!7HMGCrs0fY)`qwVV%mkk+T7MS
zR4MnfO!x?WAqMTE{-F+`n{P7S{H=w&fWTI}Aw;WWuspU3Jy;*MW>Kh~C`c!r{_#_!
zZgew7jYqU=i>MEfMDqx-;m%RQOG7uxyUsTJMQMmVD>RDu)(3tE)}v`I5M$XCE%&tR
zPJhSj!Z9`L%hJR<!OyK9$_*=0MdP-z$Q#<VUAuuVCPV=o0(OW1yjg!?@M1+1wXW8;
z^LKIQjLSMHNs>Cln_bL3Q71v%rQ7!x0tq7BLp7DI5LEZr60@^x`IGKEDvx38k{<fJ
z20pXu88q{SiL)FMF-QlmBz1&QP9X&XDmt_3Xun0(N+tP)#*)Y5O0P7zmHBw=KM}RJ
z0LP8*S-2;EA1Ply5nPJ!w7sFav879YwI?-G9v%q3hB5kF7wPY*lnX7}xHW5D#UEtt
z!uvpk7s3?^QX`YIzC4heLh4kwEY{(XS5#F8FA#<YA2N-xKP=sOK`XkvB4^)8A0B@e
z2%#+36tG{ctb&U`8)(%=(8Kzy(4+{)jA+Tw7H>t0w{(h>9|*-<3$AE8^z}pIg$uS>
zvy+TO*qkTbOp=L76|8u8K-c_Lc}Ca#nvSalN>I;rEBy*LbW%h4l0@o6@+m!_O4{@l
zH3v%A&hZYW{DxAfda~_7mko2m%HLFdQ6QtU=|HoQ8a53qMl$Sw;fRL7mWw=ve}Jmv
z(eHKsH#nmI9Ww#{BbBMYE6x4pbojH!f5rtN@p5=X^?eVqFSRmxmJ;jtDsBCt8RuQS
zxd1sid%u@QUQf0e<CVtZq{Q;up`@4T40=yg=!{*$Fgow=cKb-8?3BqlR?Id~&l>Yd
zYvRbk)n)P9{I;T|GQoBQxhoiyCDqBs?m%}W$o#pMJ9Zv#xZ^Xa<s_|<0)#$#UPkSK
zag^3=iu*Q{8Ag#H3Z$y!blSCIzJ_}zdasds!#Z;p()|K&(`!t%*8IEU)HZHN-}EIM
z-@#pD@D3JjUO1M(+k~^!)(JO{SXr+Qua?MEB<xUVe<c@UdyjkOy@R8iBdShwvp!xS
zaa@Av)JUP)w33}aCAn{<H<};jm?cNN;BBL@Y{Wd6n{HvdiTD9h1?JrY!QES~%7DG4
zVZ4xitx~1pE95aKvg*9k#7*3a@Xj)j$ye{bWhrbj@ZOWvCEF585ZgY@NqLp{g1bXy
zhAu(1%E%Wdr@?ASUWxF0dj7bH@HDUu_7(Bj!ka4Tf?tIf(kB`t>-uENu;tU$U<(@|
zco}0uIUs5wZ>vI&f8TM2K`8*mn(6UOL<A$Uz1*(^lXfOKnNwA0Q_tkiNaZJ?ZOo@*
zykYV$1B}aJRBGztb{-6y9!k9-><G=~61V**kwX)EJb<rf>CG}yG!MU1LW!Mmd(H6+
z^C8_-xZoQHct>sG19tXhBFGus8rT+MXP;+f^~Rw@fNa+;2aeANA~Vw+J@lU|jm{+T
z{mfr;)f<7-tLusKWDP^sP?Sj?dc0C`)?s{krgY)lq-8#G3jOvSL|(FZvL-91Rz#Z4
z4(>GZ`N&1<7usWL9ki7YNGlatnP{D88J&=+Y`=@&pbPmDbLOXD%--MbUf@n818URy
zr$Cd3J?9m11z>zdvjfK2hP_SnqQN;GbdcruOWL14|L+-ABJ`iy<o9cU%RhLH`D^2c
z=C4L^z){AMhJU3gGg8r10yCdFn|oCkeloXa@|D{R>X~UqAxaftIWXuH^1b#RQ+*`N
zrro^Ch3M6tRO88m&iABKk(0`gjYI)2hw#mTv7?JHIXv_23W_Zq)@n27cSLjaf~G-r
z+lE|r@{MvYeSXdlci&U0KAN<wELnH|{uMpO|IvobG@OBfzS;@ICE|vhna0@QsriSt
z(%-wZ|9_79xh@8I7N|W`R9+VlW!O*^Ju4UL)1vnznj5#DD7}z|=v^dgs@>Lh33jg)
zOMygiY0URC3poh%5kxrl?ZaQOlz*s2{ZfVk0#p8i%KS4=^lw@Jzpsk@(VhJpG2nMq
zvERG1Nq+-m{?C>Ci(~zt9uumjcb7zF3zU7z2h=arM{O!NS+{RnYF;xF*D`G4Qg!DS
z8j#Zaot}v;UXjL>n+??lP)ij&EB8m!f}U=YJSpXU_5K1;9!gcz*A0I+SkdLAMKo3Z
z^(d)~ZIe1{`n_?q;GFHpYca7aZtK9pPii_@Am-A#olC)al%IRl;IZ`sWD@v-Y?DX+
zR+L_31~EBxz1hwV*hvU9{i*b*?+x{n#f=$+%~p=@qL!LSXPdQMNh|@|V<Gd>&4BL+
zz<K&9_#b{e6zc7<WrZNAV%{<FMs>6D3tsmD<9}~Krsn}U$)GVbhq>k~|6W{)8`LYO
z?-L-7Go_pGg1e}~uH~v9_xSpWC@`?y(ab+(=#bb;TAvU`R3?bQKQbO5z%^Ei_C5lY
zgZ%#Z&b}0->Sdv?>y4J~wkq{Rysvc{53>GvDa8_W(%~#?Cw|C3cJ{KUUj@7!TYK~S
z6_H%o-btWIrWR8VL?I5`391w>GX!ZRN85LS2eJKsE%^QIHI2mlM{&AS<QFpG@0V;U
zC0F^qSI86g`XuMhuJ6@A9BPjHw_ho=@-3WaVBx!0^{{Vetb>0=l>CuXEB{AAEwFa}
zg-`iMOfBsn0kyv&N`8;2<%RtLQ2QI|<PYTBao8m*i~{!M@l_MRSfNET!Hh5Nrd|aS
zou^!!Y|m8fIwYITHc0;!@%)GH9QqZv`x|fNzwDRU2hc21`$R3X#Elb83$MM(wi*p~
zBucE8W@=?s8u}mAiHT?yYo=ZTo22N+g+D-3P3VYl059{~iRNE>1X@Xgb!Iab1_JL@
zA~L7F;O9ilJ@Ky_XGZAZ<ixJvH>?tWzyb4m{`wBUS?P~o@lX6E{=MV*uwnZ+JIR7^
z=4zCza%jnOr1REYW=u9$sz?@0Akh0y@0!9BicdAZLi4eV0kVYA4A>ekI`4;nO8rk{
zDZd;!ekP$&1r6gzkDrjf4p6d)lf@Sf&0`QfN+V?bFB_!)ga1KeFhV`o{HLcm%mEbx
zw_(;gmG5mwuY6gpi`L#Fr<dn3=bDsRhyQTk{eLfV@6quL<@P?`akOOOHX^G{$7H&d
zepc}g!6bmPtr29VpuU0q?5?KXQ~hSoR{I=XukaPrOu9DXt&B4I5-{EDqiBc8r~u*E
zh{A6NmIP3k`Gu31K!04jN$fiU*0%i!KKWUL)ZDW`LD5J_ewG5SyO7{>k1(diMV#@Y
z$u#sx@C=naRW#E=aq)`s4XS7yeW>)}`RuTVf?14l{F{%4l!~(p_oM~a4>D-H#Ox)3
z>GcOF(3^DMIb(_P%0cNuZ`7Ny!QWt;1o`f|0=XP!K5c((#4qIeF9T;Ouq|jKz^3_a
zdi^6T{ufMp!?lun`9;LtFB-RIH{-ty&njXm%tC6|eeM0Rj&LgOVtxd6P>cX)%76DV
zr5fN&efR}QzkPIZq4z?is;MNww4ypx@lMFlhfu#hC3{hg%Hip!Q?G;Y>I{=vD3~KG
zX_9;=jQswMpEp^1`Zld)-mTuimhF4(Q-gLa84=F~LCvY@@9nl0Rr{8;>e=bnYFnLd
zJ`JA7zS(>$*$i%8h6x~@|MW6{o1XuT!6*fcjkhfH?~V{=70h@g4hn{Lt(09N)4uq^
zo`9DBP3HZwQ#7BGkOs(aTlp`G)_?qxY7ruBC^<yFrH)?MT#`q2F{HY_%786-DH<e3
zByE}Fclj#kbV?y!ZRAyLF!`GK&FRniHmWxySZ{@Und@v3J;p@ei3ez7cbg8JflkEm
zpHiq2z!JloI}@@00Yb74vPO@1(|>bM0Yq<-8Tl*=HS(2F<4`y5;td9rlEm{%(Pg9D
zH2i^I?z77WoB$(?6Slk!G&E8bhA8jH`G1DuDEMw@RnT(wkySaDPAPN^JS_bjM@5sc
zuC{?@Djli_qkRGwTB#c|F;CO-O{tU9P6EFInr%)pj{nX34Ape{b^*Z+iLGmZ^HzL>
z3<#E{qy;~Yh|R)PrTqxIOOdmo&o{!0@Q@$j$f&-xaj9c)U#`+w?5>^F^0HAVRk-{7
z&*A7rKk#JVvkerdvP4zJWc+P)+kPSbb9tla6eSTN-984IFezcnk(*5?0M9#P=`Sqq
zQ$`?>FHrgis4C)$meF#fQEcRB+jLj4qIlFvX^Pdz!Hqi9+`HfBn!sHrtVmb&u9Jcy
zUxNb$N6rgZAj0oJ{qEjQ(?S#VX_C%}WBk~*Q;)$+0Z%(+E4R<J>Zte?A<;qw<de7=
z^bb&vRAv+BzzZ8#&^Z==E&Hib7jJ`(6uz*pT;o$U<FIHGzXzQXtr49gumzKKO)@x8
zwyLa;o|2Y7w57NM>7kFP4y$8RJVB~FhqHUroF<Me^vBODSQ|!*^hAiLk1BNxq0+sk
zj5O#HPO1FQY2NVIiV`iAEa2>6-Fs@A$&rbm$)VcIzR+tAKbj^l78L4G#@*sk)2uZZ
zpNpL<>QTR21_RWO)P*zXCENZ$ux-5pZ^T_aw(VStu3RlHe+D{k*Rz*q4DcTy=UUh)
zM2F~-j&rf8)Y8CEsi~Cwvi#8He98OKDVj87u_@4{)~0MB%;5{!cNYO2<3*vxR8<$I
zIdZzE1ODXG{DtD*pRAbe;e>uVedV@*TaKN$;AG@P-96JxAIBl2+c@v_kx*nU*aC>Z
zEZjVT`7q9%525q-MKG6aiJ3b*W(Y-CHyb!aFxZ^A5XD||oVx-%MLk{fm2MXmAq!2k
zdgeO2ZFmjZd<f+)t<Rgak`*eWcAe%$d~l@v2b4cj6b5ffjvp0;w6<&1K1Ic)+Gpcw
zlcCHt6q0YD<R#@X(~k>C_c()KW#UXSj?;<=phLp_Y#)8*QiA^8(?aV(Dqty~mx_+f
zndd_k&3Nm;n~Xec^DIujk4L-3O*~>N5yzb_;3g99sD~)+tAsd7Tyw2zV_!^q&*2zS
zqc+P~I_1U|<X7=F#GV;!%(bmwvcO82!qb9c_h0r_AFBv`^d#vmYQyJNRLin+(fyKB
z#iAKko;Lmo0{fheHybKW7B}kWY~T1@*HCD^BgBx8?~Coam?CQ-Vr_O-RIfVz5N!}6
zGDEv4>Y^hN7`LQcQ$0}uH7F+#Z`Y&)3B_=8e@>t3fQY{B<L3;4Q`cPFA&a!UE1Wgc
zg9>A(m$Ih{`CheS7>q-;v%6*AEx%w(s(%{)WM4UdVd~>bc(29x%6rb)l?MbhtZXV&
zpZRGpq<j1(!!7tE0)^%BPCDlnDr;<4OQJXz$M1V&N6weL0&i6_Gk~ice4Yu3*=_;~
zVEpmma~;U})Mfvs-l?C-LJ<)%fAgLk!ZN~@4c$K^Hym(3a*j2YwPpEHuE}Y7+T`2@
znNF`JO6EkP$5G>e@oGzEp4-ZF0E|yX<8EiaGAl4FDw}?JcWAp_$&GzB&FSOv%|o{$
zk~^Mqx~U(-J(iL&-|E15PK}B#<@d?b3zW<q9Rs=r+34#M`7M@lz)f-eq;9V!BplC&
zU6fQdWqtrbt%XHbP}|NUYfd0YHrH}o*kn94&%#B=zq+Or@@)|BT??~?ycHKFBLpXh
zGz6!^8rzzh&o3MLXgy$0ThVzBS^9wJyH8}YQF5*X93#7ta-S&3(`Z5L#q(iWg^EGz
zGR_qHJ7K)-cIsGGb1V;qtaEU(-URI}wfoJt&-yqPohB+4;KllF-*TYA>8o>|o#9E$
z=Kux|aR&Psmw&!Bw`SXU{NU2V3@~~V>;z_8xWf@{uZZI|x0Hyr%7zr9WqOQo@ZgPU
z^9}pkv5i?wNziP|ME^@N--8X*IGDhi0_1ZsBe#@Vn+X@zys;Dk(uWGyqu_5Bt~8(R
z6DMehX-qv25Cp4{J`EQ*3-O=k3cj&hThKl)W+b<tvWjrA&E1Sc#TF=uCYolBJAgZb
zGm8(62n*iG_u79G`BG;vacs!$`E(yh;f?S?Wfx`jnp7l9zKjY`<6yY1uqCzFpj_{P
z6n<72vWKHvRz8?D^y+p;j|F>Y%ASo;D;a((b0H>`X7QMaffVa8aHfd_vN`@z`ukb_
z`}KoJ;&kfgG_D6s<FG4QYNvB_2~pss1T4QlbYHu9gqu^NdHwXL@bQxEWi+)5dgce{
z$kPdBS!+^RkvX#-pR0q~U<#HbB*aD19A$Zk*a)J|;g+c+PFE67_xc<1rz{Xz&?*|0
zD643;@$`Y6t~YIp2Yyi%ZtG7cycu1ST7^5(7cRD$#&@-nkyr0difh{)sVgt%Ywj0$
z%d0%SH(GTHVQ5LWKxNmR%+Shw?6a_{1fa@(A4t0D18xeQsXHVVeZHhqA%0e1d9T0v
z`@Qxhy0ZH4=?*qhLUp5OYoW)>W|PZt+c0+TZ3*hOB5Ri`r%OW3#jxqxlZ=H3>{CDW
zkpi<v4JSFm5;0h|74IywrC}&4_!~l;C(ke!z0)%<X@}OzFWCF8vNIE3E-rD1)<4pq
z)Pmuv656*EN$wT-aFnZ%8JxyzPDoS$AVS9~60ex9$<H8W%A}YIccUi6E2zZvjL~Cu
zo7Fje4}}WW++8Do>&Lie(%wdgVa+?<T;h9c;ku6Q$75GNKr3nR{1MsjFnCs<OM5M1
zAhcd_fhDe6M2nZXF5E0A;X84f-=U8j`MGnEa7n~-+Oq3g(Rw<SaH(6(mA#A_7itH_
zvr^QqlfvPyYhwkXm~Y^GP5T`A1@dm}CvYp1s^EbxNy6Ee@kT@LR0k?z`P`iT@k5>x
z4SQPqcL=h26@4G)&<ZoG1_{{;KnZa#G723!9<pcb`~aOXpKFy*@EVw%bB^XO*xrQ-
zn^w)w;m^sw;tR;nC@8MS-DG1l>cm$fUc#H?WS)W}k&Sc)c&-fUV=n%2f={G&Sv~X4
zBVjjtBNle!7gcU<(xMX3EhYSL&96Ws*QLLJnM==vV9WVf5sfSObag<vBwmfb()l~E
zZ<eNBwUY=G37EaHhEr6brvg*nzM23ms1Gg>Zj9fjE(eJA$f{^tXEcn<$JllQa?&am
z)Kg3pc5hL%*_Q7~Vi^gE<PS?Mm_jA?B3y5)UhoAbE#eK?I*L}If(>k5tj#Y?@YU_#
zU1(^E*m69TJsZg`jr@@C>X18>t1GOPqIqp9%V^4zsY!_wUt8BTQOLSp!j;2%jCVWi
z{#<oFE!W{BF%Gp<cFJtS#EeH%%hWPi<xJ|F?I~?g#5}H(!@e2P``K}@b?y7<-7@FH
zyX;@QkE{d-m|aFH-k@>zO)KV${70Y~_LC}xwO@lh+@dZg@b5C}a@}-AKAdrw!kH+j
zzvYzaI;Xx*7@IG3M>sEZ2BoW=Af%r~ZLF7hILd!xSNGuZ-qhX(3<ycKHR~G{pE@Zj
zIhyyZ6S#01Sa_i#Q}mUy-C*ybhV@w;n&_C9dB3nG|FlYX@KT5-<=VILMynA6nS--~
z;_J_)YptoJjOy04<d+CDyiDe&5Ufg-GYGvds1sIiTLuIDWke*liy4?UhwAulBd8{#
zO$T0)235?Swv1~st5-yb9)Uq*G8iLJ5RqQ<T9zs;Zh>{o7ki8I(8$LN7x6Xp3Xdy#
zcvz_-<>u<XxgxWO*ZWq^>Mjwl^|rsGb-bCLU7nX+0!WR*9HUQ6^(S`;<BLOr)Cf&b
zq@Hc~{7XU<U4jh36T|h|i`MdsY;c;&>R~<t@fL^A`m#n~da`Yj7#`oVP54Lg*sMhr
zOubEg&a!>#fJ)xYe5D8Mudzq^TI^b3b5vn7k5HfX;@=*t+_X^2lFeT)`&w5vBXMFC
zVs8i8eH1gm;4Iib5=!`hb!r$0%dY~CL0E6bn&OuofYe{;6)7N{`~WG8BchM33zv#V
zcGMa0xv%NnHBazCl2feady0o>+J=Y=am{IEPvwU7UkKPfdNa+$NJ+@kHFLDB!|h33
zXN%ju;JDAt6n}jeHQ%3_AP?SlKICeJr*TTeIy#Hv)(%}-e|GhIGL{xj{j$Smn}e-4
zxkxR%lw;U!gA(g|4yhT8`HXXXf&GP2&mk;*brxs8Esno3k<2gCV%$Bvq@X`(vUjg7
z_qJmwg3k0c&;M%gtHYw&+qDNNkw&@|5a}){Q7MrS1%x3~y1Qct>4ps`$bh0!0+K@y
zIe>Iar=)a94&P#*?Rf=vy!)K}y>XrQ4==`<b<J9{)-RstzVGLLY7D70q%)6H2l$iu
z5TpsDCHOfmp08P08G<+&qWdm9aQb}Zk!|UwXI4k@x-EYx`+V`>rKN!zVF@LJM!hV7
zBjrMoUXPx*1w3fis@zj44~U+ASTP{9ba05U;!+>PB1#K*DED<12P9(Wf)QT{5U;T1
z<3~9nYry@>hA$p#N6K%kR(j}7C9|moD#ncH^;QoA42Td;disA*;KAV*$JDd(<SY$B
z((ZdPuIJ_-XQq6ix(s-Iq#Q$<A2>OCRN05o<v8uw!IUN2N7nf?mWMo#Z=FhJt;mp{
zm5(b<t&qO!Yp`_ppV|T#2SNZgwIqp1%bxHInNX+z7r)5$c!pn`hBCtNS;F{U*gBpR
z{T_1zU5L=chy+%drX}r+l5`)}>z-msUMwb~;cilGZznd?*2nki=cr*7%SgQS`H=ew
zTHPz0qp8Xwu@+gcV4wm{8X5Z<hRhv-St#@IOUwCqz}3}k!f5QH=6I$78jSv~#N$`W
zpln(Zv00FXi-vZr(mGc|xcyz1Ray?``=uq(7agqQE`4Z11B}WF7zYHxvFmBkH#ka)
zGj*0Ii>I4BalR_EYhbf5W`xCL!l-0wcoG*R&=<MhxyUw9iZ6s17Y}k;8ewlS#6<{L
z7}(+A-|wlQq64|;D^|fON_x3>->+H3C^JTb3zOUQ!=Jw~fO@H1*Sd>L0o<!x#MJ;l
z*XUU<fennjDLv99C}nTueH({k<z`dPRZgZvMJoFz)n0OF4)gScy_v9Su=JqURTC(F
z#Kir<_xx;R&^5j{1?`L>+-*JOnFy7g)tlsb_w_(7Iu?##zPG_w`nAP35=|LhpHutl
zJpWKT`#6j?jw{fEaBAX`wzjs(uq!Naid2LqJw{c{YhnM>B)+xO;$0R^7KoPVS3G6)
z!JUaUF(UlSX2Y`ea+Sicgha2*G#6h{O|%E(qjkt9!*`)Fll2q~K03SkuAZ(N`i+!g
z34`g%wA8Ld{hS65@i#qcSjZ)2`XY9Q%_Q-}n6h=v$ef37C`i15t#HiC3B@6LK#z&T
z9JOhy(*=tr&`l_n@;UQN4VibJb$LR;!MTPn-b6-Fxl?abLv46^f_3i?dP2xYw)#lY
z*mB^L6G)V4(i;|p$TqTa@0f*l`s*JD?Vfuds%{6B)VM4W(^kJLSG=$UwD;SX@MgCx
z7X4b-&#yD6-aA?pO-e|Lu9BSLrFNKVBi`Y@y=Oi3XuGwFhkt)isiHH<h$|P3F&;lE
zX*cs@#6x_gm+HQIw{Iyb-0f3uBGbA@XIv250U47m%H^rRtzEJ++pk(a0f7bfW38RW
z;h}o7b`zw<W6BEoUE3>yt6;hnPigk~il8Uc;pHpVQ~FSRT|73v>4&iDOI<7aT|2ms
zX><>$M06FtCQsiJ^mz9oqRC=L1oYTpSvUIqLZWq$LyN<hR)=V|yu`LOv?_=p%Ci=u
zFw$2{k}2+Ua{EhI)cDmm(+8{OF}LQeC}p0Oj>@shV71FCr|g>^JF^|Z(~q6Rk`QY%
zI;e_+)(*3SMJp&@ruXx9?j)Kp6Q#CU6^eRG)lxJu55L|EeWRV?C+OC{TbN}=rlDZa
zPCba(5;`lEg*Pu2&n`bNu#_N)=fUS`VYz0RmpjF?e@ir3bx9>VPFSUfrZQ{0>281J
z`aooci-U{TYU8z@28D}0LlGplFx=!Ja_V`BZ3kH55sIk5)=|_kwxZv?p6QTrg>(&-
z+0iitQ3Ic@=C+$Nslx9&X_wV0G5xIbc37;_N_2u0pFy=}0k3h3F!z@ce9Dnh{rnjN
zBlQQ##l=ymU){ol$U5+q<Ax_KwNd<0QB$<8bvfc1^~@-32z10{nkEp&xx4W1(?7Ml
zDB89b<_@y=z1S#nIQZe!>hOGw*^T*Nemz3Zm-4RZU^89XvhqWQ<;!}{Up$SDYls2q
z+uS^S6LF(&V&tIn=&B?(Gjb5VW$h@SkSWn~n64*8ZlCg8Kfm2A9A3YM12*F}LsfRo
zo%GL{iJ4n9Z4UNP4RnvvKntVxfwES?>$xrtC*iXx#8P_Hxl6kbjXm~Q{pdRjQf72u
z&UlwtzN6=7z4>%-9TK9jC5t;rLpiP-s(WLLv0ATSv|(eVI$6lBX}&&^+g(D2&9^((
zx=7j2-u%EQ9b)Qkorf-k+sZC&Q-(_}s!c1gF3!_?wK@=jxez{$CD2!rh<jJ3+G60V
z{Vk@EUbi%K$R2^n+QY#5NUTV_mQ-9eB$J)C=iAi7JC!ZRD<d$c#h0pq71oRiql0rH
zmVy(`klMWV1P>iY@jM^Lifkt~F*lEnFw85@4CeBY6k4COjyTr0^*?UD@nIC*@M9BP
zJ^l(6ugOI`x|%q)GJCW82C<>|rD$KaXF$%7yA8)*qP;vwIe344?WJx_u#WLVj#9Qs
z90FIIoR>)7u_HM43Fw8Sk<cQL>%%Xnz$3t1!`M=>U<Y_vS)oI|J3lwahYR=CZfRFb
zNeWJih}nYG^)^&IY~f}5S|jztZX?V^TQm(Ppa~I@zQu9EZik%vI|}Za27Qz~WW%|u
zZ_DCTj6bW#J<ph3=XofGJ(V<pH*6MbRsdGWG;@0fi><2QqsQ@5L-!WLx7wCfaMc6Y
zHSbTKb0*xq=++TrjU$??5;RM^S~|nmVktB^S9;jxC795C6=E{vJ0Dt^<2S7s+8#=p
zIuAruWsNi$3dG1ci^+ZlS=F=*D~lQDIKw3IEBRa*=iDivY@w0Gik7=Wjg>L8H0>85
z?3*Yey5^DyTKql_wJei(3BzP~fW<p-XolKz1yQcio3EUn(dixw6U!=!^&Y~I@HWex
zFDWy}5Oo$0LnDYEWxa4cFZlA#)=b`=y#LB?{j`6{Z{5&^%2+fX0RpA(p-7EXjUW$>
zJ@DiN;gN8Uqa|48P<k8b{DN!vo#Kd*BQ=}1Fvx~2?>wR&;D&zMS7iN7H7%s8>I4)E
zqdT%Y$3J{?wmX9kr=5kM|J#@DdmQ@IyzUIm@U4??%$_SyZvPdjGz!`HC^>Z&zyH<|
z_;)XfCim6b#e*VjjJHqBT`vho>zDZ(sMNng@tKe9tOEaBsdVPd=Ln8(^-gEce2zx>
zRyC!nhcCIH3y8r+B9S7pXF>8*0F?X=RahXIrX#K<-4m)$!4t3q%Xe3IdSb?YZr#mH
zv098)#+jwXq7K<T_*E6b_v!-R;fBLE<s2stfi4H#8>c;J&vL&129M~Mj>i8=qvjue
zNx(4wX77A%;Jk+f>XLRB;fElF1Md}XGUSJRq_Ul>u#nf^Vx;2{X}t=y53}{TNt^$j
zEavYm|NkqG!wlV%oCdngGiB@{>b3hNS{#{!t&JWYiWL}Qso>q0TT0)|O+%7d19TKQ
zWb-aSM}>E<7b1=I4k_2*yLSNrH87U<bl|`g0-Afbutg$;WREx}0G<hG-8~xz5KUCy
zgdS(V1ki5408R@>a-Rv{v=Ga`NJjie0Nyfy?kMJzw{(Eit(-0;xABqk+K`R%Z-k)J
z5g=E16$qe$xsrQhbn6vf!0J{HXeKo1j;y|kM*fdqQ-cJHhw8d@5E3BGlw#i>zdnF4
zw}yTxytY!vK&uIK{B;%hdq}gNHS=fnKff!5eH{YmgOGy2P`EM(S(!Ki$u^xDpKrjB
z@^}>|AgdG5fy9mPWcQg_6A&X)G8j_t#jXjhWm0~HS!~$uqBiV^Ip=M%g!1K~VN<8X
zXS#+}ZDip${5FpYP$@|cXQHDA8J!n)4mI;UM6$HN@Al`5;)Mt4t)4zZiEVnI{T_)K
zLWetaoH*dRW77WIsJzN`m`VP%>jetxXXL7K+Quf!K6ku0Jm6rYpQmK*#Jb{0B!x+Q
zzAWSBSW`70%Y!Ep3u$QKo1ATk7nnGcsJ>D){KvN&%LQM!vCo&jSPi={d)v~Sqn<pN
zUV=e=-wsdNim%TYx`7{P#kiq1_v%_g)>6FCfNh<AZ}Dxj?gG+g$E`FC8T{H7`hc0l
zFm3IHYB3jfeyZ&DMD!waYfJt|p%yXT*mswsM;MqRe&T@SF(aiWfPPqQ3ke7<Dg`Uw
zISA)uYQX##d(Y(78I#LjHusxR=ay^-L+;PuVujC*G_e_UB;aw(UXRH8&{ScClN5x4
zGCG8I;bPv6&|2uVKv_zi&pF2{Z5mMu*8G$qO@_o*A4bQ19Dh5cgw(;a;g$jA0)=Gt
zl*yfbd6uN4hpNlG6HS*!pNDma#?s%vN}a~LEke#{ObpRW02)vMT`DE_=rRWu-P$Aa
zsq>5(pVb{QMVQc1Fj!nbW$>=2_vIDA$Qu-yvJ_+!sxDOoDnMpS4e*BJPC&!&5=?|e
zwhU@0YWAyK7NHSIMBf;I^GN^CV-GO_XwTM;fw8l&2P_hQH2BVZ{)6wd?pZI`(+J>4
z!r>qJ9`KVjf!2C?$KlQshfF{J;P2HS<?h)ot7*mVLGjaSMiEyhMg0+SG;$Oa2O*%u
zkN~P|_uy+0*g<b&Fo$^40(eSL>QTBT{ro<KB>qh?#)gluZ#SRRBNzp@GV(RP)2_6W
zY1AaY(?B3g?>Alw!S#?x(p=At&eC>SMr4bx{3Jxg?pAh*qKgNWRf*SA5#;vv=LqsQ
zbhH1CuErYEdV#$r<0Sn%3J@BX{`7)^#A$(84JL)Fq@XD&gltCcOl@qt<D?$GwzdLe
zZ|gg-Sd3ibi%$)20GKFt+*<_x`@tI^*aP;b$pj#9#72%wZhOT2?5d3hpN(43+Xb?e
zv{^u&@JGY!&&-AkqM<>S9J8fmiNcSA6<Qd>Nbbw3%1>TO1ME16ko~#ucakNh#~2?a
zKC+7L5+xv!$E08k!`ml@UMYnauOIIq60Bfk-E~^zFBCAIAe-r7xhNEiy2keDOU~u-
z>7Hb}b7_<#rkgL;9M%de-%-6@&G6-C^hfiS(uZO-zw%Ijyj!+V{xzfsf;*&apP_rJ
zS}IKJ)<Zm@65`3|+IqUzu(yVbP{DP?t2{k_cn?DyQ$)x37o7&Jbz+U-!0Lgh@KmUB
zm3{d~U2_duwyMIOVm`EZH%Ro{P^F?|9Dmp$q4(39NFo%m#{^QmqhN)sMM*-=6^D`0
z3B>D>j{JBEqY;ZN!R!qEKul`KMVa=AgAwG#o{IdjvE_1U|06-N#GLS|*}YB6xzbZ-
z2iz<rC1q;o3@b7Dw^BCo-Q&ZZ4n3??E~~GJI1M&i3EG5lYY|E=AShdSq6mA@3Fz{o
z^RUD#clYd=fi;@gkFnVe86iC&b@8x^q8}%5w)w{xZo%`{b*hR6?23VikdZ~8^*ysg
zX*tDD8!>|3&a^d7@8UBhxf+ql^44SUyw3;QqKq5X0kfs?V`8`86m<od>XYTi--NqF
zzYKdkFV3T8U1>j6!GUM_#L=BCTllS<=8Ba*BsmCV?8N8y(m3^6S(!lSNJYE8dZ<Dl
zSi_gaaywfgnR8N>+RUy)JM~r%$(Z-3zclq+ex8MZ=uq+DbD6Tt?8Oq7#IH(+q940Q
z`EI<vIKzzHj7B=|Ysacyf~*K%ge>PT3VJd2tTpzP43_k0j?`T<Zzv0%W_33B{3r?o
z(efA*6K!%ze?vBKE?=nIyj*`6ljp_2Dj&H`MaXIgFY)C_CG)WU$<hG<8rcUWy=!y%
z57L#^0Y52aTWZyh1~+5S86&8ycx|}xq&502nFo<qOv>Bi6WsVeSv`)JT4jIpta+)B
z+b-f&$-7CRC=5N&OG;16dFwsNR0rz<Wc0%B4gdH|6PTOl=c=*77*car^*a{S)ZC1Y
z*#aFdcEi&X+8ehO(DH8!rpDaTyr@BY=VrmdQO#_`<e;qVV_-s_%jD*N5Dfj%j6Cys
z<&Q4nK%{!c8SH;3nq(E34;jW{E{(eyz{JHE!>uNb${6DU!rR_)bkLB&dCyBu?Ry=?
z<n?R!=L}^bL-XOrahhpCr8rZzr9OQ=(JA*rK=Eg`HC6_DE10}lZv!U{PAH*m)lUT2
zD1F{?EnkUIIDVFeKQx*qv@1cFG<@+NxLR+ka+49S6fMHD5hVX7vJ=ddBX$4~8bl&0
z){bL}cEV&ggz9-kF69}!6UEq;oq!yiB0VnHF5tg4^7!t+3d`H~KJ@2!wPrpV(FMoj
zJS_`0xEB$KbFrPq3Nul>I@>*CFGhzt=_ehVqLQd34r8X_x9`pFUsICOU|^s(w2{kr
zQq?b}=*bix%F$;tve?R$T0QWtBvFX>Za4#Z|IzV#A1^1veOaA`6xpPDH<FHIjAV(>
zbOn8sG2Ei~jBbSM=Z9f<>8Wc9?o;jf_kG8)SE!WA1BRSxsdqD$2_~ONk>9UbT)18m
z?B;c8VsMVe`q<h&WxY~JW1PM}w;1>C+%#DJvD{3+V&ey+;-Csv91NUCQB?GfAR_rM
zOV=$eSH@)nE~c5vnNkp3m<6T2bgTh+f-+5EHd4~Ws;DU&6GyRt2=@~!fKE#b(4w98
zZkS3rMArfWp0{bg=Pc%Z<G1ACBLADpu9UNKi(d=EfCwKjyS~x|Ujgz#*_P7)e_a6x
z@cjX9m+nB~G%Nfb?fA9Ve~5s5uX<-AYi##|67(l2Y)LN^L$23J*x2?%h7q<A_PVB-
zz(i!{%nS5~7lzTThnmrP#9xs!Ivx-zIG%6PP9EJFh$umpSZ`Bm04=1r`gXP08a<wv
zzkZ~(BpCH*4|1;p*3;Og;T&IWxib5feAWLeTcBzguVKebjBv|hid-+SqEoa9xL@b`
z$;D}?Zj{~;#~@*@cE<VD60dDv*I3?Xr1H_TVhtorZ_Zi8j1;B;bFyhIpYF;?7L5K-
zu&OIp+q|8vHVeUda0fZKwR5p(2cV-kn2Tc^q-+HrAI~6^+lH>d2-gyKK3amM=z(@r
zINxsApSnqZPfI%B3xC(8JOi)+`i&x(-+G@78{zylQO~zHd-;O&Sk=pzJ2eKGm%Oa&
z^QOQ>VXuD520aWTkj04AP^Z>OG){2|tc6kpPR(VyVkDR|4VxC;EBCoKDu>jxToIah
zI=1QBf*HYDwOW<EcdMNyZ?-R9hseAk#6@2%K(4Y9{S)z*<M}JkUtZrYA5>uW_7LHy
zjL$Q-vl!(Tgjko7F5$U6a{i*i7j+?wnlS8AU(&5!PNo3)6`}{Yg~O>)@p>$~tEz9N
ze1@x}7I)J7_W?Zg1jNr&pqze$zbWiI;Gy^KPK%iHGWrO3<hFYj#|syu7?o#PBl+k~
zB{!dZ4Zx!Bmn73R8^63E6YJp!4u2q+a5qNpHc`%Vj*F&xAMcEM6Ud=Ta;ac3z+mf6
zf!4+XDMPE*V2M|-B9=By>rxjo=R}6W@GBzxx*p_+F{Eiu<ZRa43-lnmv8>jNN-e{~
zTMwJ8gco;q_yNn*V=1fKxufF?6Zku9r2@=lRV5!{9<9+Zv~sK7wp7F3)2Gww7!<Jd
zbOgK8&~&ddcdc4I4esaO%DzP~JM(ULhTgv2!RZEP%DaW-H(<bZCY6=Efk;&D0&Vsd
zk<(U~1FBD>QT?Pfeofn=rCm>wQ!!DCr)YCNQTo#g5kpW0&{b6g!E1K_UrqyXb!@|9
zN4;6(Ry453<vkcOf2XCh=j(ZEY3(DFDx2+*wdGH;3`a@6w`waZ14ILa9><2607n!o
zKj_)cUT)3d>Hs55DcOum<F5~Mu|$k@XCKW{U%1%$5ewaoVX_@7hY{v(I=gjEzHM{-
z-d3P;dEL`FX?g=3?ixmCkz&KC6~Q_a<^YyN7gA|?qp}!{27hP6<Y0?0x^E^y80gsU
z0JDc_y<DcykT969V=}B0*HRR#T4n<Ma<veVNhRlmf$mIGN`ZzG>le}-WIh08t<Fzr
zfF-C4I^EY}O#(Z{-_pIQ&rX1wZY-?g3fN&dYi2I0Yc*z+R0ma>P2ah`LX{Q~mivbH
z!wwo{&f7ivd)=$)<%J=TBBhX+cJaQ#3V+71qOgV;=6xrU8%yGnd3u||RC**X)wt*$
zcXl;kq%n(|I(Ipd%_SRUD&6}M4_-JKOa`_f@T4%3b2~F#G#VJxQXZD}=ccaj%r<jA
z4JOo<$CRRcH3GG1Q^M5U8P?hpy;W$6CK%(&S-?D`JEs9t^H{~k<_VW-p<|7}qQPZK
z_j6zq4M?_Rg37?$RRJIL(K%AY0zhH6Zyu#Z_`P%#NjD#J1s1EXL?e33YDn2DKyult
z*ptU(5BR8)zGkaZ620aSw@OH%_W0=~V(V!Na<NSwve1bKU>fIJr2~1K`o5x6rK_~p
zNu{do{P8~3#i66(Cx|S`O;-qekiDum8yJ`F`#?yJCBD7+jPQdaR#it0#ltDUl*c{<
z<~cRSrt02QSwvL)1<P85v)+z{J@xUr)Ke*Pk+qsP*w)L<Ggm57lqsRma%kqY)Ps6y
zY}4J6r*mrrGEJ@~4cZsvjX;wqQ17l@M+m`^vm!rF!XQV{%H3fU8wPdbh-m?xDdhyX
z&r6!JZIY2l^abC+W<p)#6^vQs<5#xx!I!>p%v*1Xs9*@`6Mt|Kk}C0^_H9X1msk0z
zG>V%@*!c>~faoKhR5L@E3T)pi{shGB?g0#{6Hv59ZF$;6lPmGpgQ7u|g8h==;x{(R
z)-NOXjk3aW!hHEAV!IqkQr<4a-{4OAV#?$CiNB!JmT^-814CEFh#t>RnEGJAUyv#F
zkNT&4GnWIR$nPNlpj{r46w(Gn2l_f+k-%PirW%?0Tra3>{8}jgdQP5?hq$%vv<@Z3
zbT3DY+$=m8$oNxzu?+~^HEhKQ#=x!Cw#4>Qti&-Q#JuIvz8A#+4>15heRjDPP*1X&
zK=wERbTv2?6?qwsc>?Mhd<EpQ2s$Kd<et(I9RSGc0w4R4L-w*Hr_k0R$Cnc6kl4U6
z(<cA<j(^1cz>%cb>#c+7qHo|<!Gj%4(-ZEM$<0I{uNmuK27z#6<X6DZbCD#HK>74Z
zW}ZIDa-eDwM(;}nb^#2~Bgn7bjBcXzf2hI@LiGl%+@z*Ei@5;<@Eo2CRNI}4_kh6S
zEL-`jW{2Ms7eKmjt_BgvsLrHlvngaA3LBiF!S8pHT=|npWld&C(VjD_8i4rg<JrqT
z(v*RSe7z<7iZ|5#J*O$Qsl=7A!<8;3nx;NW*zDKS$9S?CfOC^oX=)KnvSnO*(L<|T
zFkA9jXMj*u-P^9d*_WOE+UcznHOep6ZDX7rYnp&avJpV6GpT@nxeLD-B8I|GK&nDW
z#qJXj83g&p`Y0(CZ*>X3SWD4*t`$Ftiunb$r9(5~;Vwh|`*yyYq(UnY`^*V54I?fl
zrix9UaK4x<hC9?zSd5oz=0iRMGX$tk=?ez}4+qHK&b9U1C;P>6k@Ey}EH|+aa4Uce
z`XCy<Y4wf0tT+MfFhFL<=r#Z<aY+UM-phYsKY#U9zkQ}(VLIVc`oLmT+7E}pr$~@(
z$DPT$_(iT0%du8~$eL>$VLu|Uvi+y}lK$ZMkSDs{W+~KY9ekg$=jLjn-TQoh_Gcro
zHlYi=H#RTsV0eov8f*6)iKmMr^C0MPS+mwJHcGvf`e`&j;1L_Vv|&qFcW%g*q}~g>
zU(oHaKXUIw5QPBN%WI3+QCa!NEAO+~$R{^^)57*;8{mG`Jf(eB0u?%{5F#08!ImU4
zo@+Y0S)K#;KV9PmU-Etk!SE2pgIQ-U4AL@gNCanTYLmr$MC^gtSWx7zOIa?p7Dr(4
z0z)qLFR{V=3!EtbB16vqT#5g`uwCkZp3cAT(*d2McL3?V-iO6;_QJzEUuk87t*>t7
z(s{&K5{7q-eVSqXDzJF2ZNMWhKB&3gg}s33am_1G4&Ki*F@mhkb=T;9MbKz>>i5j2
zwud|Y9l}*-nsfy;*DPL@M(g)Ct91ATQK;I+E}5YA|Kn_Z|7qj&(Vi5<HS>t0JCAF1
zzM?#~bAo@9f+k<g+c1(DgtDiC4*6&BHO{fMxc!wSUkPRTiC)PwMBir1B&YYQMRUr<
zKNIFG5Tmp%NPxO3d8Vn_^`s-*xk{uzcN!9>e`y=}iuuWny9E{PI+{0zqT??X9^X3;
zegB&F2bTQ@{OAv(vhO1_lyhup)rB80Z$QhXafqI>8@U@fM1SZUH|v?+N^6{uJR;;c
z0=4ZGc>3#xD!+v#{nhUSzu!M)3o!fpH0TLf-)m^(E=Mmo?e+*H_s=E>VOtUljtKF6
zV6^*^g^8J&`(VoWr~|$$Fah}zmp=o>u96WaViPJ49#jh+b~ouCCb_f^d7*ief;vi;
zAG+M{^`!eive`pIwCnzypL%8Jol5`R7V|7+VqP3?DKrsvG{TSh+slpSW|XVZZ)%AT
z;<NP)i6@rcl$FZ$?{%UFb<)NmmTnl12fnum`Krld##5A#m|Ps9qdj`B^wIR=t0vPo
z-)w!ryAdJZR8m;gE5<w(`aB~4NzSk-^e%!wurfrNN#Qmt>t`(1%2nmeCiLyozGAIN
z5com2@dl@#r3?G2K$RfdYbap9`bL8-e554y<zr)sI14jU={oERI|Q8=*K=NdpmtfW
zVy&lgX?z&TVFoxPgHy}H@{={>%X)@#o<0qtePm@rjQ$YBV%&KXWijPAGPh~!ZJ7dg
zT1G?QO_iri?Ipc*Nz1S{)_vqcyQmWqp8i<*09l#qrd`d@^{TWOmY~&}23=8GNppXL
z%bQ>K6GiI<H~kzrfp*4DcGQOje9}~{j1UvW=AcH+ppKh37n$?Pb7`mh9g?_+O=3+3
z2V<8kybw<cUG<@Y!TRBpH!n4P$fOg|Mu7&T=CAJ@r`NY|tXjNHoDzt2^a{q}a;4P%
zoMgp!?Y<Ohat(;D=H2@f5Ps89c|azRSnH(##o$36;PhoA#YS<!3-O$>Drg|%yQSgJ
zhU%sa&q?-O&@5<9K%vFfdzX>&^8t`AB<3fe*YRaER>tt+J^xImxNSkZJqKB0n0kTK
z9En2mCp?rHn<Y&BE?>8`3y>DE_0D789LTn6SA90JoCcVma%X6xZ^R7ntbUgu{y}&+
z{{vkG5X5Kd+y8${b$)Ah{;<lN7c+hj<^PjV>fgHd|LObZSC&%&=Xa#mxnF#qk5Q-d
z6EmFx1N*w$_)J4NKOoBhGe);ShzhuarO-&5>34IdU9ObF;>V}2&;4xme%;WK0gb?g
zKB6B0UM@2G0p!rbE<o3-gAcINH!+Wxy?__5@@@mos>39Y)acfe_au=4Rlu7VfDUit
zA*2oqFeW)5;g>uj0}g5c(%Juf%Rl$N*aPKy-zh?J{mvsaCF~aL+pWT1zHrbN6-SC*
z@#Uf9lxMyqOu?9f@D~23#5BJ~2A)w|y$<<7q4lTafPc??Wcvdf$<sC!KVHTkUFKi;
zIq;LuK(+uq`Zvk!f*1hQFm5$W>|QDd#NUcHY0yb#k(c+RCKZ)y%W011{O5FZOxG3p
zj&p6xh6UJd=ujD<arx&wV6OiH<eU}Y|8+9>?<Ak6rvgYpw#We_i;GZwV#9$_&iiBN
z0dBQ{p5cq#Rh9a<Tli?SxK8I<9%q1n@atbp&Wi)Vb4i!kuu5h^2D<K6Jo?OCxDOP=
zf#mAF-MEjIp90(RcTpe^n*Xrv=AE-6a6<<HfyH;X3vlN-PmiC0?7t7$zrFq|Liaxg
zR2R-Amp}HXJA>u@h}B81CmhAC1;M}K0s|NKv~Gm>&t(*U@$qLRC*}A+<klj#A$07U
z3*UaAA^Cfg4%0_+7V2V*tW}2}u$ZUjLTXZg9&UW6ZS3@piHjAc^^SrD^>(&^=<h9I
zcR$KNw>A(tu2}=jkZjL;E3KAdiZO$VI~pea1Z5Y=Nk%^*<ixCI#6_}o^tCHC#s+<r
zV7weZ(OFn3UI|<wVz3;cK*xFP+a8bAe2E)Ro^%&4L7X&X^LeFI7B+VFKBp@9P>1;u
z&sbHFuF;cHY`QD5<f!yEaxEmirb6X8=|CGGwlQ^`TO0~XF^kVWH26{wG<_AkE~@<8
z<!O^or*=`^vD*nK3g8`;w?r=i!O2-L9tci|P8|hbK}MR8kug#K_2B-F^v+pBLuE*_
z-Pz`l-d8Y2rdISJPOML-l%|_;$ac8aswmjhO4U`Lw;@5@9{fT@pGmAiXVSpf$~Ibg
zL*pofa`4zi8Q`5Mw{Yz|jg@=Zjr-<rbM1;Yz8ZVf(3Mf@;%zcYX0&xTGAaNiLPqFm
zj2nCzzK=Ho(Sf(^ngvXM=D1HO9p_h$5Gzf*9b>~wOpUMVLL*P|S<8b^`n5Ssmt@c(
zG&Hd11N$~M0|sJ=(RQwysrE51Dz)>7=0U>I)p~>k4J|39t)GF{&!Uh+o!p;QAv#UY
zVmn!Px9+c<fH04Ot-9@2PC%$fordM*0UtZeD*}hm2#aC_v4&F(UgEi3a=6@NZ%xv`
zQO=@rLy#v*Mry9oN<mRjq1{|502jOAvQDi#eMRxTiJDJNEOse^ljK>scPIVp*0~EJ
z@#U?j`U=a|8%w+gB6kDJ3pKwWM@l4^)S^j@hAPlIyw;b@)Zu~4$lGpSlIi=<PH9)T
ze-Rk#NFG#P7ODjnr|r+lO~yl9b=@t`=ELy@X|xE>(mkK=VNJw?JAbzSy^Uu3(oJAx
z`d@Q7>XBiU3P8BH)0lT85A+J{0OCjb5oOWVS|q0oA5<cs)E-Cs!%v=XuC%S0>rMpQ
zMDpbic5BP}RvMd6TWTQ@;(Thos}|F;@f^2C?|iaHU`)F^=Z-^BNyOCXOjW5Pi`Vu-
z<e3fXLayib-1?Ruo%{P|#IV1$lmC5zNY>YM(wNIDN6X&%8>=Z<%PddcEtXfUR5U+D
z_5^e#-K-Zmo?`Hp;l&W=)5SA>*;lK+Ym?Sd=9*NMlfCH~{zUPvkX2J!w=~Hb#kbY{
zcmD#9=!|G^`*iw#FVg7)s_O1bgZ`QSfNT7ol1@FVSpx!DY{@yt6HtEc;R(nf*YB)o
z4Rp38Xwi=4wN~w3!`@=@M6l-Fc(v#>5p|r4hV)?s_?X3Zv^X2-{+1rtQ_Jp=L<?P=
zq%SODWSNfcHrFws5rFCahGCLZq5$KJ>qdvfc>?fh87T9$2e-lEmGI%qY&V*7B+~8K
z8kS%3TlJ8JZOW+lO4Uvm>?mJkzd!sg{GF6wQ@p%Uih6l*8Rv-1S`ob~9sT0~u@&W2
zA1%orb0+80oQZN<@`$`1paxaYEy-#r9V2{b{J#*kGk`~>gyL5-3!Epea*2#UQI>s%
zVHmLnT$a{obc>`>MFiEm`-CO4`ofa7u3{USDS!0!58yk;ZXa&^uzE`Y!(qY?NchZ8
z6Fz+)r6U2hqVEC@mj4<c=c2FdF18i~%yo(@M3=WRscxL1&(e`A-xF#nq|A3^bF$u}
z!KXhT;YJDC3HiA-oGHLd`p={sT|NQr0(Dot01t}YB)P|Y0{XImT2bz|q8<z0FQ}hG
zw9MTa(c$HZ6A$`g&Udd1J^WB_bjf)*ZYZ=x-s&h-|K4m?P&X#y1$ne}k?AtXo)%>1
ziVF}%0etjvGTk~Lr(U|X0YpeApu-ztHNP~b``xqu(wZ(EU}DK4AnU-EG6dwW*viN^
zT+{%Jk^;C$r=orzwvo(B;#7~|g-(axT2rp>^%}_=9luSojlqIu#Xuh?88pK{zooUl
zw<c8z6{g?djAifPz7x)M)yRk$1j1)b+~nDBrzX)e6uzr8_*K<BYqf$>CMl*Y`Fs%*
zFj3C|%ehA9VnO%D#HtdXw_|3oKmx5AgD22OTmH1Ollb<JB+n#&u?@6z#e)rmx+7FU
zPol3q+`5#zBckmsGl{Psy`p;!B0W%Nmr>^aafx+xOwpw1t<#eukseNVi}b!?CPYp)
zPeo<t`sMKaNCR#BT=UW_L8r||9%JnbrAw?kV*cs}Z<nPJidB@w35s+|b(vO{G{9n;
zXY$|85YA^^KmM>E$ojt(nEVE!BX*9>|G5O>oI@iHKGlmRAIDzHicV7ApN4tui)Kh>
z4?Gd@sc_7Cx3}=%903~IIR*2Fy`;5Q_ZjP^sEOK^2Qj<md#XNurc`iJqtFk-N0cVf
z1?W=uI>J{%#W61C!AS9_<8HZUkq)OXV6c7W>sM9lQ)5vQ%QmrReqRJ1+R;j?>!4cB
zo3UPQTU~e^a!~kN8^)RU|J`bdeusYeeyR|obOMX}AA&<V=>M1l2O7iup)ZVSlKtP1
z#^=u)aLX`Aw=ho0qB6$r_5XHKf8kxm+wIn8_u~y}NT$5Vy<ODB@mc|E0ep)U&2$Bm
z9Y+&pdlBoX4=S3jNcIgM-TCZWRu0+E(F&yJt|;^J1>D<+awpWaHJ(g<YJSM#Aw4~`
z6AGqKcj1u!$p&A*Ygv?qDSr^N8rQ>`KqFn5Xi8O{ndE4&yJMgv*=rzBntzmk>ljz^
z++y&<oT+Y}7t@=X2;&lCm{b(H4PTcGdsAM#<y=WAf8F`+Dz^e^cc9sl<kXqP@IHX<
zaY!CSRoVklJp|bid3Hes60mbiVH%P&<ycNv1lS`aPe8^%l6P)32eR@rOQ|&I+^YO9
zcm>q(24!+xmx`Li_`oNV5DHmG$Ilk7+c5-|an!Q`%&(#SD}TU_od#jll8uMh?aEVD
zg~m@z#mD-fGR=>}npc8nm@kP4gHr0UfvIq2<9qFmfA)5tyHnQzh1{9DEqmr!0R#5@
z%|7?A09@tV-9GoQ{x4pEqu$i)U}8$dk$JA->!os?9Du;{>PU>s^dD&r?k*LhCj0~i
z5I)qN^ZV96`v059lJzNsM<N-^@K1IwYF`{V)Mr%mU;?$#9(CM!HK0j6k$JI!!2i~4
z{X8CiRFs_#f?pMDoj&|u(RZDWx*r8${~lkC10mkCpH2y_6mfnv(K7jI#j3>Gg>pf7
UcxeXB_eKU_mn%(-ax(P)0BudkbpQYW

literal 0
HcmV?d00001

diff --git a/oxAuth/Server/integrations/cert/sample/cert_creds.json b/oxAuth/Server/integrations/cert/sample/cert_creds.json
new file mode 100644
index 00000000..2e7df116
--- /dev/null
+++ b/oxAuth/Server/integrations/cert/sample/cert_creds.json
@@ -0,0 +1,7 @@
+{
+    "recaptcha":{
+        "enabled":false,
+        "site_key":"",
+        "secret_key":""
+    }
+}
diff --git a/oxAuth/Server/integrations/cert/sample/generated_certs.zip b/oxAuth/Server/integrations/cert/sample/generated_certs.zip
new file mode 100644
index 0000000000000000000000000000000000000000..cbd235c2039654754ba7511757872f3c66563901
GIT binary patch
literal 53946
zcmbrl1CTAvwyxb?ZJVoY+qP}nwpZJ|+O}=mwr$()yS{J#_v~}d-uIqA;#Ndf%!)Z<
zykk^kX61aJEICPF5J-T(ju){M*}p&he<yeVYyeYZ8)FB3Cu1XBLt_UgM_Oei2ms)H
zVIUnxDIgtZHz)u=kiUNY_et(QBJKT&6f$hIg#72LzZ&kpiS$=Ia~mULHyV8>Cx^e|
zw)~0P_ow~0xXw1__Rhw-j?M-a#)eKmxqsT&LjF_h_>WdoVtEPZADzD%#=p~Yu(ENs
zHZcB&%wH1!Muwh_j{fhse`O2~@K+5QT!TzXf37tCPjUZu4ga_Fq4t>=n3xzCSeRJp
zSn0y{4w#te=ys?k$EU_=r}r0JpX!~b$*GlZCMd<J$E2l4rKrS}?OYb%U~6H*W?Y+K
zV3wYLl+OTCh%e1Q!v&SNx*Pxj{8j!x(ro>crjZRuqc{)%0L7pBvHwl^4z{*V)Q0*r
zhPE~)e`jj_=MH%O>y3_5l(t=`gYG<6eW@{wg@f*|fd<4Z=!bVQi!fpb_3ssv>QheQ
z@@{za`7B|p%><zKsC#`G5WST@ml9|~fOLg-9$`;0^2Esp!Cy*s;uv1;0lDMJOFy%N
z1C=>5qq0_q2;J4g2|9x<Zxui?6Fni3Rr`$@;Nw45tl&ILBpl8B2CRQWoP6?Y+VTX+
zSBU9>)!=IX32v;Xq?X`!OG%&~=~|CE7STf?lmNdU^$Ur!5mr!jp3}pGse{eo88%^G
zKH<!!BJ<pYfc<gC*PHtaUywl$o*t1zxwy(?%^e47wQlhC+`x=m-B9x@DiW6xQUrCI
z$UAfc%gqMo-Q<f51DCLQL|>Yb$QfBuA&FAokFM(gPp7BU$bs{QhFK8ROg&Aos}R~q
z(AX@B!<ly)n@wEk&j4hd<g+8bYUrTzGVA$FcPkK0VTYmbUcl5?5Mo=n_Hxhq)0bz1
z$9z=*HZ!LET)li1+@}>|fBpNj&lWZIBkUf$Ej6(z7u7n|YCBcF*({(F;!BvolNwUA
zZiN}csmNu*&xn0(<g)fB?CMEIUKkbWr7gtm$R>K}-PtS~w|MBs4Z48iEm>P~Nprnv
zm>*r%J~l2c6vo!0QHfnvkfF}~+o9|4#=av7*<9yVHb8B^kPC|$(oOOWJ)C419eUC2
zOJz*4YBeTe24V3N_Iq=@@_g=UrfuL9f<Srke4O6Iu(c7Je`Xu39uIaDggZC8Z)v6A
ziC%a6%28|KyvEwV!_^<|w<DHT@=JQQTS<Sw{j+;2|LLB&>I*`QNB{sd7ytm6|A+4R
zr*~Q!yZ_xeYlVPx+W)lwHVas%HY1ixU<Nv7?Hz0=x`D9vd)k5+`2{}XX8AN?(c*(F
zNKJ3+x=wC)cZZ-54Swu<OyI363k;!snF)Ms!}$VwV%&FsaeIG%27D8yWMHj#^#FI|
zd@2VUd_2Puy7|ig`WUa>;EfD*<Qfd8lYu7~Qv{-5c!0`9kNZi7tq-^}_I#7E=vX5j
zkkZ^_G+Y_8cwdt1iocXnTDR7}H>rBOml()kKa>>@o+5xcyXfkg(^<@IxW}KY2JM`#
zCje$Sf05%3%JN2?VS>B#)q!9h$t}{AL5M+jVx7^2+hoVs>0h0z4FBQ50@7G&y2R*l
zi%D3BmiCaobK^GVGf0}m#7)2Xmd{3|&8{ztPcw#u>k5Dh6R#a&G3bG2y%zhp;dEP`
zz@J<%uT2?kyt06!nuTx8l-+H*r!Up<)^Xk(yLbZva+Dt#4#=ZUcH9v46J#(%4K@kP
z64u*zNlKe$Tqb?=z*K^~9t7+MVvqtZEq^}+kRk^BDJs*J!Rxza#~RTi6?&Sb8Sko!
zU$tit&bDuRbPQ{kfC492_u54iUw&p9Ee0JAFCZr1M3<Oo`JLmDjJ4HJ9xUf`;_=N+
z2o8O^-*2Z|N)^r@tHzlvl6=(#XHbYebdgFIW*!<UO|{bX)6cTHzLtD4?Nkwndp~3!
zS2qX0PG(br_ggkj3$<q?%#*c22i$&c4sk#4-<S=XoBCHww5w3+TlbAUIv-)`up_$C
zt|i_ics&MQS6fk+QYX6z1L|dL#h&RQ;-GjF#BVy;DY1Q8c@C6I%w~%$OXnAtXo4@l
zuM0o0mR3cjc-lha=pxTVFD9=FFYS<ny`O|Y#hFc)7#`i$iZeX2zh4KGEkItZ4Pp$&
z!fUkV-zu%+%&7d_;RtUg(e1)RUi~#@a+3-X@DNYS#*|EFCY6?#Sml?KJ|4jfV~AbZ
z&a#(=iU&oD44`c@z}8m^OdE5xM~hD}7m^H>C++0_sYkII{(xg{pfxb!!*j8oJYK~+
z?ffV+7U0`|;0wvJX-tUN;%3=({d}K;IWX>ch19X)z_yC9WjU7}KhHxY#;hlY`7j<8
zVI>C((9lLkatI!VZo<IAoE3kBvD$^_>6kzH#(X9H(o|;fR;24Ym>@g>9S7Hn=>h6B
z3~-dimLv4xvelHVVEa6s7gTulOuKhZCU!a5sC|Ypz0(rF7r=*9Pt&Pe8x-Wq9tvqE
zG?;n~tZ6K>;?)7BjEx9GNW6Qo+#hBnYY6IP>R$O9XTmQ)Sw*_0;Vw)7x8H0}R>Y+;
zV+owW)03r~2gDVP!mFHPKZ9paW_oP+s9QJTbT7u>$^pZqc2Y<bksiIexyPejHSWhC
z@G^bpW}Kxbd%!(y9AZ#-dFW94$l{n8sLkXl#N*gWcdOmBoKP?usvtmfKcnrh+LRmI
z@y^bA#~YYLxc5U}>@UdDv{m)@R0Nl^_?T=~w{+H${dU?pqIm-V7qd^NelAPFuZK`&
zO^aeFCN-0-H=Th-w+%t%d^74%F_nN~fjs+(12GeP%G^U!kjRaMuxO_2oN)GW&S_S{
zf<{>#p1u~xhfjmek$ugQ{f(bY!sk*s6-3+br3Yan(kO1-&efk5yTR_7RZg$|ELAuY
zxY@5iXyl9tH+$FD;O({T)DsmHZEq&!?0$5IYQ&%d)HU{@q=(5ca0@TH+)`K(r~<NQ
zD=JCR#`j6B2k!)LBNeLHPEbk|6;aD>UbLR-=RmE+_U=4td*iWhym6a8cHrV2nf5>_
zqocJeGuGxESSMJOQxn?o57?Uu#HELDd{Mzz52V(uDHDt2-s`a9L~SAL9FNy$Q#HcQ
zYnSi0chd+$uY}4ixHDuRQV|U3S+)RuREL7vmw5D#;R;-FPmfy=$#HZLK^EZfvg)Xn
zM0>_>%eDJzwNgLf;@}yMLa5|yBdXNX<euv}X<DJD6;0!Q6VL#UdvY&F9;3FlRGB#@
z?|Y)_PnZa+%C^D5o~gdu!Re)teXxs?^j*rTx!`m9E-vn8JcZB(O(3y%bqYG_ls$E<
z<+A2iTVYva8P3tu2ipMD<kle^s~4wpEQfdAK~32lzYh_2@Rx7;f11ys=FYqmwg<_s
z2*&DoTpobyY{)J^)W~&@0-o&D-m|l+*Kt~8Ss{GH>Mam-Y>26-lIPF#pTieKan1Mf
zXYjh~UeEX_GSwsv5RJSKFQ1PbqK+|aLuD!wMR88CHP6>eF|-!I_v?3jYrli1QC60D
zO`-tD3JqivDvt}lAN9^=+!3r{rKz3^O2eADi-_!TtOb<c5fCb8tBJk9R9DV%)XHNV
zLzhVa5`3Ac1Gajuk{1Tjm<ea^Ui%PsW*fY41`3lXXgxo7PnfS#!+MZ1F-x$MLlRNp
z0U<BG^kqY1=<7c8xBL8l!RAal>_1>A+1C+ZkYe12hZ@piH<jpK4@XIcLzY-Hh3C(S
zbqdfJUVro^RXax(2`DY}=^FHa2NT3PBywcJ6ytg`&2NIUY+6e}+nrX-D_CdKTc)`v
z=}MMMC)QT6ml=FIGZE;;bH1E_<?g`U4Ood${1NB7O3@{`s&p(~#rG%}<~Ng!rK2fG
zircL7(k%woUSLvnzlqNx@_94QM{)dEzSPn_HnO9Dsx@~_AYV;YYSUxk!@>v|aS}3|
z59y0BSf?smZySG2^J`}xH5W|wSHLsG92Ayv!dTXs`=zyVSu-8ryh$I;FA3Df%-^o#
zXisfG)+!a=QTNs$o<kziD`aJKQf*A}EIRn6=-TwW=iWfcfbKOLUvx-iRJNYi$*ixv
zw_I4K{sOzoXt_3Q7atqCu^UZZaZ*M<8SpYiWi9>O=-*a3t{`~8!gQW}%%)JsGID-2
zFwl4M5Y$ra*12ROFjXoGr#+a!x=Klf<0(hc4Rry<qLqZ|>MyWVw}+|i{qUacZZnmC
zO4r@?cJqsn;3HLg)_S~EpMxT^*OzK;b1NOf=Nr1zD~yiw6{Y9J?sROqe9xHl@DaZ@
z)#P$;SPjX`y?%Ec@Y#{ieO|w_5=C=gcVzn+hqTb<d*cg+*h?g47Q^q1bq7xPa4ewS
z+*MlGLL{NMcC2zuzoFx0<6UuoH1R>2kLv5u7k37E?9_}oWxK7+F0lIa&Q2m<RP{DV
zI5bQ0`fOlE2iy*rTJ4vySFGew4!~Dixr!p;Gfbv^kw}0#^Q7_F2}Wz|X?8yLJFcm3
zMlydHBkmO;d+#Z(cdp2I4uYk}DL6d3Wy)Z<L!fOUGb<q~`4<cY3;~9s67D_}`&F_4
z_WQjOmH@g(Tq*8(Z4T9`9};>T-hlFZAqHp2I!-+*)mn}_1mmuy;#3=L{ewB!l_R$a
z_b82#{>niDuCjPP2XOy%;o@l@{gN+QJn5k<h~g24o3(mwLen=_P{C2OyGq34248<1
z%&Xm0d2&0^C?Tkuqat3vcw9@V`a)36v&KN~!=J0iw1~~?JQ)jjsgZil<1vL*{azwb
zf!I|TVk%^{X$brr6pg#1^zPQ9nm4kY+T^^wZur|&eWHvrLny}0hZMG)qU{b+^8EIL
zG|UeGU_24EXH!Sy{#nu=CXKG_sXq>bRI*=g=CeE~r3QLPmkatN022cuJ4W!y_i_ta
zn1C$!r!{q~eba@e;8^KA^I4bO+edZe@jPdexLh767w8?W>C!d}c3~Y2anz{qw*h}R
zJ>hB@<@T*>&DA204=}mb&GwzeK7-p_Rckw8j0Wq=Rua_&VGpc}+eWRIfs=KCL<+no
zp;N6+A$6ei^W_{gsB|TM+TzdO;rj;2nnu$RRHBlSJ=5ygtB0>^Q&3#BQvrGp6tOw=
z&10x<kNBLyKYNjjnm070ZT&EP7aN*6K58qzc4q6)$I7EU(N0$-Xk*w311Tg@ZBjm3
zq&<odb0RL(*e~Dcex|O@v~!XE{o<UF!v=&k6)#GX&a{*4rY{Xq(!E_F`eEuIZIub5
zA?_>)dF856{V)#I<d!Co4q>+@%_-zBLyXAdtYgT7cpe)e%J-dOUdj@kPt8d%ccIE*
zz9gUOHW(&uLF&?^bYMdNA+GR5{BxmVSmnu*%r>F>77gZsozlE%g`NlZn6j$&7%t18
z=ttN><7}IP1jTi$fRwJb7_kOL98zV4Q)IKWK(;?n;PU%|?~H#%4KkNql4wHzMkhEL
zUSHU24?D34nNp_v-Xg>~+7RnEzo(nzZw;SnuAaIwK*gm6)g+#2fxz(9hp0u*%&agj
z{dx7@h`6?UwQw(Lml_1Gx#`0?P)+Boq#ytmRa)p3`ea85`>3$j#Qr~8k(&s0u(I>0
zSj)puO6%%DM8tAE@<m;_rqqu%1L<jUAht{GwxkvCl~TYrgO4}srFHvM&>VZpDFb2P
zb$6ACK(pN=HpFOP-!xPk!A@HO03Y59i1ndwcNGC!<jY?Yy4~ADb&MW1BTU5@qJrgF
z7GU9kZ4lTY7tWO(*+#gtr+@HCSo3NMemhN_-3I(Lx~$$tlWpx{4h{xRi)Xl)tc6G3
zOTT31z=e@j^%;-_N4=mW9s1nT8bSqo9(9fP87q*^BHl~poyH|-zN_zbi<iF(<7qIo
zKzqnNU>h^BgaS`%=He3wV@LJb{0VC7TYf0bgT@Z$OxBWLO58f+|EAFre&Di|e9Hlo
zT#qD@=)sCb{ALUoBURJahaQrhy316}pmoCI*sE}{sLF3<l0-jW4R^$<+&qGD_X`DK
z>F77YL+POa=*Wa||6;$Q<72Yv6PNF_L^dyT=7FxphC}8ynO9d)0!ksvNZ-&fO$qGf
zx~FahKJdf~YgW)HYn}q}eqHhfIxn<C2YDVPmhUUoV8g6P+Ec?G^bQydd)=3qVsBX7
zNE@iooM)44$2)`c(_7#G&d(oedRQW{i3ZNL*GTbrzvpL{dZ3l>1sUR3fzo+TiRydL
zfGhyNld6#gx?^Ng&aBHi;!c=nrqhQ%2u-E(O1BgOrWTpY!*vUsCrif(SFd)0Ya!v|
zm-5{lL<BHcX`_CWGj0+!_Gy5#*Qi>7gda=#n2l*&D+QpDPQanDE)1sRh!p{g=|ZFi
zMTi531Lhy~3cm_fjgz+Z(hh{F&L@ILA^hg*Y6r$BX1D~)m4zZHe)Ty<s?qe&>sTen
zwgVm4T~&i$HveHr*<@%Qt=|?nLi*57qKy+q5=urlHI7ziQN{e(M(1}pABL33FIoPI
zYrsSqdC`AO5GAOk#fu&qtqIE8Pz<VX;4?xyv_brXTEW>p{elPpF%Xi2C;I`WaNxJ}
z={-F>)I(k8>bhilFqLEtmJqAB2n-mU=U106kzP^*%<LqQA5Fv58Ss(35ldJhwn5jG
z8Ue3^q%_o+pK`Ml(1LbXdDO{SC(GC;6&`cIWGb+#B+!m!^oLo*sCg*++3YQ9d+_pe
zha5AV`IX!#WYACLM^QphETtHU2sIPv$~n@?8Ckdy?aW1RhMUjF1_S2m-Vt&FH3>=h
z^weEY6(^}ET<`=n3$2bfm|i=lhTD5ug|0Lla9bNgL|g?e-qmPFM;_{U_Zk1|%dJ#?
z0^D?QFlvn^@})}15vZ9ueodX?P35gsaJGr%3tzcX2;Fy+$}_f^hK`M^vFK?ovy4d1
zp>PyhXdJ6p<Xo#M3*ke>!+}9v`%D0gGwtL#YH-3CI7vfu0nrjE2=@R!lLM`R9OudO
zOVpS1(8@BkMck6Ba-O+Kkxx+|So6s4#3zX*JX)Wyx^~@w*K#~igatO=>9nIs^4$0?
z_x_5jN8Hs`3|t??`&s0=R=>s6Y))Dtqdc7(>GxGdP67ldRllF$_MbPwUcOaw*36%n
z*)1)RLitG3bvYOG)dqm*&(1$6CM`LwIoB$-ChsDgZ7=ECMc=s`-Xy8V$gQJA1p<7e
zw$n?hUDWS*Hu30k0ZA+o>0rsdc|#}`eAYw32Xo+y$~go%%mZ0VDl#hA_2Vby`*{jZ
zIS<WqTtmd#tpIXK8k5*s7^!|6MnE<*cR6FuhjM9vJvHUvY%rJ#fB#NdN>TB7*|Jry
zd5>Q<cck!tUnf$<&h5x9gn<;bjM_PNHfPPGV6pv>!X_146NfdT9a*IkSvd;BUN6Ym
z&bhMlTbrz_mUNYPPI*W64+GWlK<{46LmrM%8b9F|fJl~rK{q+@!&|wVw|Z0+^nUz0
z1CZWkTlvz+6P+`OPUJhzkiB)?ao@;VvPD>(52&ZWJb&q!ofAc}*@(pj>#BL`qXm|W
zZy%Gt7>xb;z}SReOcLH?abxAUNb@>O$(}XKq=nWA<I)W%;T}&;p#ZMv@ko-$`MLZd
z*(aavdob@7MV#&!!2KXe85vy;_4tY75K&TQyBJ4%$=~lx^oUAi;(OiO1Lo!VMJ0*S
z_ZqO_&kxG}S<e{55Yevx_T^(A<t~yA9aUitx_}{gO?|`y%N`4~%Z|N+7CpGBi{hG`
zbX=c{gsfzUhL<HYqznzw9FF6gu6XZfd^0}jE`)P>j+FCKoSl0I`f<G^NcZ~fi*<+h
zPm}yFGy6ZA<p0iw``h3*b}-ks`VTkzFGK#n*>L~ilK+Dlh>HJLX7KNvesdcqV+U(v
zBlABTf&L!^!C3@Ir{GWfZ^8eWu)v?V|Cu0A{Ttu#zsCJHJi+QOg@0A~zw?B@DsmnQ
z4*1_Zf%Jb?{x5XlZ^3^R{d3<K{u5n5{iAZ9?J+F!$F`UFBgODPs{H3_|BIQA{YQ-Q
zUj_e|`LbB_@SX3f2Q!8V@XAUS6hs6$%0i%_p^C_rBu}wYw`*0rKi74)Z*5lCN|Z8O
zjwhGX-S-dq`t*pAc?9Na4fd^SX353j4cKFKR9hmj`S6Jz7;$WKhU%x%B+fAb$!#i&
zSF{WnRm}*v5#Q=bt;D4HyZMkDN~_FlgtI&&hx&FTiD!r9oM%YCLXA#b`zQ(?X%l|S
z8w$hj<slMW^$!^lykVlyvtWqh1^oiI1osw7H$uJ&ynmR`M`3((<=_<Jlg$}FfIVf+
zcY}5D{c>0nY&7_3rB9HtNR;m5tZW*wc{;k>!OP@d0rBG-5UIl;{*3vp>zUFHK1i8t
z?Rk8oc{fu+b9u?goFV@pgG7ly2={tv+x=ZiWKXlXVN_`QLjRoLe%HSiY>u&zD_CxC
z$+l+(Z{%oQp%CsNAor!|%-^XtCQ)xtOy|b;p(pPkIL<b#aj8FI_2K>Ecu%5+2M&-$
zjia~5Wb-%nCeE-GzSVZC#8Z+h`^8m@RgRe;!ox2XFoQd`17N1-6NN4m67C7msz{>d
zNi?H8vt#*^DyXCmWF%85{BcilE}Tk5neO^`^6B~#|5e5pj*%~Cm^v&q*M1Q;DF)UU
z7ZPLA@z%uNN6>+~7~Qb(^ud!rLAxJ~^K5(jX0_t}wR#y!c4}cE@9ybMQM1y+hR;Iz
z6>6|J-#gjv?<OU_4sDYu*rpZyJjBVGUGaoT#P(fUDb1LHws_~dJg@s3F?8hhwzR0O
z-_~hi(Qx|L%hy2PK>u{|{~D1L@q&_nAwu~-?f=KP_%C$q|1cQ;qGNRbpksfq*dICu
zq5zgr=)UUydgz|<Hs#Y~Q^?K^nLAi24CxcrTKd+D--M6wHr15d`}Wmz#a>v*0h#4K
z>hboK+w@ad>u)gjkC{pPPriTB{Ey>*o<WRljGP^f9jO1F2>&rp<^35~o&P$v{&`nu
z{-|uV$DCF{005Lj0|0RUkK_2is{AczYUS)qW9wl09|%P3kEHa!%33EkHw8-633+!J
zcr8&iFbwfoR^HCcFqO@EeP(b@dmk3XC!(Nm-fe$>ab}Q}FLiTee<tsjB4CAn&ka6g
z_jLm*Dl=ayuqQ3LH=(TJjcN<-jslr}_mJ6HYGSejd8cpJ>>dM}Z@a6`=4enukBZR&
z1j_(Pd*bBigS9Sq^ttdsis5|P=3&3M;sKG+@Bj1#zbYJtfU-BiHOC>4aoS2O1Qcj$
ziN14G-F9#+S1)#P_4z|5dNa_nbpv~4aJ$1O0#(h&B3GI}`&ocUEsocWwt$H2<<htF
zp>T0Hb=nuFEW`Ud9u{L^h1}Q!7<cE~Q9;gy7Sp8dK7|b5!Xb4AeCz?)FfhaXKbN^Q
z+)d$gK$C4C-^-^cInpiYe!Z62JhP-{xfk=u(@p@-;*C5QJO7A+$w<;o(65B)K<bIr
z)Tx8PiL2mKb2OJ!m(ZtKgSA(fdTOXj2b;j4aoF!@dEMf^1Yj5fMM6mFkmbMMzxPPk
zud@RW;NX#%uc^430M~cfW5rAlTTnP~ON0XC4~rKnjP!3{p+mQP8lK@W@at-=H`+nm
zZN^p}1tg@8)DIU>afqz~%Sb$sYmPnTZk2g!)@}l@Wm<UQB(M!Uxq7dsBG=?o<Kpvm
zFb}?>7xRLgdv0Ximv8MxQxY>8Ho?9s>0lc2`xzXtl4hJ6aVrVr?2?33Z7dO{YW3Yo
zT17(&7bhk71}|8Yc9iopjD?pgoDfqp)bo*MQ^2*ltk_poCr>7{Rrs}Qf$r5=Mn_bA
z?{<(BV2CO<?M-IH#OqR-6g66(JOWhl9uwGVGn$o-)dJVjqEP?ny;CPJ9{hHLzsSfT
zxwyF{$(nD%Xggoo9WcGRI>Y7H3Y#w@liP9}fucdZ*Nw;x`qMpjK$+pet<VXQdYj^;
zmyT0v#LsHW?rJlGwDAPnk5<<Z*$^5{sni~i__<o!G~QxUVFbR2VJoV_JEJSm+{o@q
ze60KMa=1*+W;fp#A}97{G?Gli4E0W9R(|Ft3}eh;`rcR{h>Mu_$MHj`1_CUVt2#jx
zUdvb7t4RMf6uzHntcbfSOUD|DD%9R?)7)P0SndsY?#_E*(CF1Oo_;@0y-~9Q8GU{)
z|GkNgg&GL}@FfQOWLZtyC$q#W8phY+!0%=QD|*+f`2@84ug1+qv3>kOlEFEE_uVo<
zFb^`$n|F{Eaphh+OY7VQc|#%4@I`h|4azP({MTKAS{%9sqdir!<Jba>hF>CeD(~t{
zcsVJg%T|_fz=H9Rj?gALy0D)?U!Kiojws<#Ysah?p6}1RO~>R^X?WZ4ST_o(D84@o
z7M?hn`d>L)W<mz<?YVq?Y7@feR33{WOr~tzMD~`liEAyL7GpJ3_#4@X9@&zCLi5C$
zo9EcGv-8It0r1kB^j!_lM30W8k&zJ-3m3iEwVR=de#M*~@9`+?cOIZV0^YPQo02sA
z;AVk95apcmYFG0?<^|hQ+SRh~c|0t@^Ua8|+lf2JJ8UC}c-67kcZNQ&`6Z*4wx3e`
zBOnkw84BMlKJyjpLbu)*W=rrg81z)hxJ1ZK4@r}d`rKzdCb$Oc&lBk#MJ>VVcEas(
zoQ(9L+2zr{@hSPcEW(~(@0ySE8s+Jt64aRYBLpr)Yb;>V*sm!fwst;<;iz+4(_TKY
zd~e?JH)2+<kCvTz#A*j>Q+E-g=%D<E7e9M6&!TfEej%XGiq0@<X`dz)w1*n7QLYso
zkz1Z3*B2M5<M1KhTbO=%0d2VHm1<TCS1~m0M;9xAnHVoSfgYrI;nlu0Tf;jL({2J#
zChud1tsT0tRXZ{b(k)gJud^gGwaNVJ!>C0yAd43KX#{yqmD2k8H_1oO#4B^aer0SO
z0&m0gJaHOapq?KHIk7H>gZYwWhVmO>{8S1!*~cB#df9E4iY;H^WH-U?-5CN^c-Yaa
zJ3cXGkXtj(kXw4Zj1S!)ZpafcZqJFc>=t~4(rTK6w)JL+>}ZBG<fjYC1YGXoVPc3U
z3lwHBcpK|`U`d{_7D8782%KNKt_-_JUK=QU>Vgh3YDVN6dOE-RIKpUCVt2dgmB?<1
z_!Tu%(2^(v@0Z1r&MdAU>Y0}?4nBfGq%DEZo1poE7g*v%fvBe5ivI5cr^-+&1K_3T
zHcFFwga;38`4_`cKeB2$>X}uDC?{m}2QT+nq^(Lj>r*;q+Z}O13j%}>UWj@@#A?O>
z5?iz<M8+=UnXraCq4{ic>Qd{9{<|zOu1z6E9M1~W>4^x_HqCAG`~c`PFD>nHtOM7|
z^27vnAist)-t79GNYBdFBL`;M6W)`>ln5TC(3fItTxza)W4oRd#;u@nA2{RG+Dx?5
zpmhLf!PvC2_WOlI%szHoi|7Xto&aBdUF9`5o=<y6_M_zId_^6x#E%|63ij+NCol@o
z3$Em>UB}+=L(k7hOAztrc{0`6!Jotl)*hzxjU~48*-zxE6Crr38*e0NcmXH!xMu02
zA8XDnE0XTuwE`0>W$U|3h=i=eNitjIQ88s3%L^~+cr!1RDe7#|176T*<5qrG@5!0p
z3TYj2x`bxmI|l4=_sEzmoU1>KwE?4n%qrA9Bb+^*3;lT9OV1I&rpuUs-N1zj9tMi_
z#dA2MwRP)<xoh&N?V~9q^FgYKKH4vob9vnqB1-8Ka!vDn6nJpsfSRqDX|22$O=#l}
zrW^9FG`$n+rmD>0>PH=AOqGuhT^@7`on54(nZ<HZ)$~mDMe%l|JJ;ev;Dp%_fVSb^
z6N|*t!W8}MEn{{M0n{@_hW3+*`n)lPF}!M6vz%e@3D2bbnP=WUkwx3~sK~q<H{kDN
zjz<Wwb&jB1m+-uaCvy+fDNR#1;K!yjYzCv2S#&3Z0i2l<tEX{5UR-9{V~D*uob<G<
zGMUuL?k;sdq&ac4nR#~)ansN%IFB)s=@p%@`awLdg+6`{LP|of@m5Xe?wjX}(0X{S
z@cTDaO@raB<f#<~k}~s<oAbkReV7Y1B6&eET`kE4`*RrNY`4Kp!TBiK3Qdh?H!3j~
z(Az3->Tjnx<{-YaEhZY7oF!xwCt-|1T6OE}$%T<dW!Z_2kzey)l5}_1iL#}ueD{U8
zd!;}>TXt<5T4?q$p`^2CivZ%ZgV0fR^YA`o;%Y}jez^zG`ZKI=Q&%70>p)gf{H~>n
zvA9oo?X)3XyVTe3UqVOPYo@Ak-AMg*Ga%I&weB(OWmU5*)^(X05UUwMC=SiS4q$!y
zN&$18g!ZKPKJ<9z{RaGMb_h+n`K~7T2L0zEQTfjzQHroZtnSa2tpywa0KxyKMWUgD
z6^)^pzPZicf79dsEECiIb*UJYD!N?GQ5Sst5zcA)2!s@g5$8BHF@hll_WgEld(D$6
z^W1s)TeVb43|zT0<{`P;%a@5%?CqN_<5HqyK#u0w@B=DGJg&nBJvjO~oP#*6j3@^8
za~wVNL($Z52O<G+isoE*KG&GkQn-#`P{G@X!`PmJPjex)C8JC}laHG#x{7(|xiR8Z
zjzRnMi#1Q=(WOAWI(w?ZR-Hg{&<Xd<4p9%S$D8cEdB1>OyXz>oSwgE@l-0$a%J{=Z
zlNs}CQAM53^_J%FtH~0x$Dtdm!=K9`*n~Qn;svP-I=Q`ZsqF#oaaM!(b<HO8v)0_V
z-dw;H&==3*K%w*6V#$M{JA|S(;R2M()B^d#)8m+2E%$pg$Y<H=@}SG7XIWmqv^gdG
zOVHSi9jC#T(7A50`X`0tVfPx5OfmC1XX|}(rg7<cGES`9tC;+`sg0?!`sDOHx+y9)
zxv+XfKKXb)nbh7&{F}LIiTEB_1j=MXIqwfoU`zJQiJV*|w00GQyTSMv#8|+_()17k
z6|SX&)1oHD#|yXSy{)#Yn%5sbGzALp#2`5n=L~BIMJJv2HIIZ$>5Q8?5ZpN++p)he
zgH>_)X>DDxmxXG7;x3MK$I6RTun+$HsS+fMM-;%WEC>!YU%UR(zgE<Mw<9i<x}!#}
z#U6Pe((~M<kw9=<aIif+X-zE<7{H+fymW?iuZTF0qSVaazj$pm+V&CUWIiQ5ppwoF
zt&biVuio=!SdQPW#vA))g~2cHg@q3aOJ{AOuqYw++2GF<Yuqh0KkYtlwKz_#-P{Z@
zRwoRbPF*|_amX|!z7L&ay*^OFR8t7TU&k}Fa(Xfnn}2DT9Mb77M(7z%UyI`2pSO6I
ziExPqICW2zC4UzQfaw(?!lrDhc3%O9W_s2j1r>4qviHpK&|13_{MAY-PFqGLng~s-
zLrB7H?b5Xt`X2og6Yt(&YQzrHi+eMs6Rkto$H9zCgam&9V?cR)KcL)>h1GB-B<SdN
zYAZ#|G?%Rgwyaj@b;nDU6my8xNg<9E(Mn%;$qYT%N$Kp~&lAJjxr%7n4lzx?Vdc54
z(e&84r-;#LkJbVJXS#t#OG^H<-`7on_v96(DhIux|GY=Pule_I@a42!;i>W&8|tKi
z_mAKqW`==b=EZe9khMNrkRwAdA4VxMj(K&WBk}@eMm?qW+H!nXCd%%_3EFUUCveEn
z4wj8EW=)(Xd^Okhax&%gH)?8b=8^)7%PeWL4qcEuv@UR=b^cTc6797GaFSB+pIWeW
zCtOoyQP!uoiXmysj$0v++?2}3i@$Y=xnMiljXMMrp#6JTN>K}X$Ksx;m;jV5Pc0bT
z4N8f^@|;WMB;efLOq!<T)d)YWf>4T64ZA<;6;^<F<|DBaW4cXUCl2`Hl(s<yV_7oA
z_CQ^76yu4VI~@eRNdk%<?96W_(+6jt1u?m6U`2~)XWbz8PlZ`fbK-^>ks2GE3pX`P
zEWMu4wc~9o>MpfNvWV`@3?NmV2|Cu6L?TQsQrwr%o~IO2)c}vNB!;g|huq+6i#5IA
zeZ(IdJV7CW=Fg5XI~&@^0HTfAvLNey(0{4o$ci&u=RP3sP~jOBb|B9db=$UU&^CNq
zH6J2bmccZ-dz`IGvEJ{++;P*Yhnw4OL_8po8(}b{lIB>|$(4a9t3ycdFoQR`xAF|S
z=l(>B2uHG_9#m^O`E5PJ(Z*pEXL&1Pk)acO-)96+FkG9FA1Qv%_LczliHiRU(PrEB
zYdJbuZd9u221J~4fKSZ)iT%dfaIGUhuHOb6z}pQuGZ6dpnA)6zF>|e#Et@I!m)PMc
zK%a;>$J{6I)F{3Yx^VQ7HV+1jPjT*~4bRNva2f+#JG1<g=Ac<PqQ<r0`nJM@B9uc@
z9Z;If(c#ia68JVeOyiArNz@k`m28rKXyI6P9{~p@X^oQHC*G8<?tSt#E0=N?+ghQT
zU!Bm2t|g%3R~2Z2aJ#Y}*ze$DiJKK@nQ^FE#25qIM$Z`F$3j3T!13uTvl*cvk1%e+
zdcDj{PqK)-dXm!`+0Og2;XyW;#<rFp?{jYZA16OX#vXj&Vq4w;Ywx@YuTSSi^g|k_
zH&8KdsMiH9Mv^WO6oh0mq$WdaiY?c3@758bPz<Slar;01o(iyNN1BI{7Hob8=Y5uu
zBiGnvUSc+k?ybdbRK>ZhA2Pz@jB49~z*ti{ErI}+coCAj0dzf6&1*63NLy1KpIK$E
zepM3hLUyY*ptONvwzAEv>3i3UX?|Ejz-%M+0b!$|e|+<368A*WKt{K;{w3jlgM~O`
z`zh}7v#+xETmlxN%koLs^JXSyqT)tP83~dOMt}ZNxL2*Hm20OY2W@>Tb@Rda6eE2w
z@%OkYJB<7yV%t<UcR+z;u4PgRG>}Cj0Fa`}%sq`Sd#r;lirO!ZMcziLtXR6)96!#d
za(rGXAFKw0UJ0QtRe7=8vT8z!V?RHam&R0i=J0$<M??ru72B62u%#>860=ZxU|AJ>
zdQy|m*VafEe<6xA1)V$ah(ZvH%@K%aX$5xhD5T_GU<#|DEHQDUm2i7Oyf&YLaf4Kt
zZ=%F{S@XNQASPdKDj5gJpUufp0Z<>&OwI0Wy@{K`-JubxxxbIGaeqnd#tUW9f4Ezt
z%2Y9@)|M$;(H);X27u%#dH8am(W3>tGr{x|!z_3?J*H^7Mp0GxM05&E-VMj(<P?%h
z8ZJ}uVol<T`c$&}`3LEjM#x@md4U{KUp3v<CrB6FJhoQxe(i&f*);oh6t8hqCSoUj
z&g4}W%x&J=r~6%ByZN_~pv)Q}#btI=r(Cp)dk<DyRFE0Zf2u@m{a~%&!8I1$1U;_0
z&)smV(pl{(F76dAi0*38dJH(PH+?Apb;{9!0VG_G0tF{IvlY>Rrk&K`WC9hz_Wkg>
zjkobW^>a$eK6C2Cc1j-T1ZkmG?c0qp@Q#X~_r&(CuS0N}C3vK)>}aE0HjaSUMvr5%
zRR;o3LS?3hNK>#G0!#<X7a-8*DFX~B4!LZo=Zw&k^|dn9us9$~KKL^LHr-tNr9vPU
z!~rn&?lW)ivRd<h30Uyx2YOX`MGCtEmkKsu9Vlu|@cG&@9us`Uq9=@(QIQuA^;}VZ
z1hTPKVd;BfOzr2W1y>%1A`g}M6dJ#R_bad-?h=VK^v;nH;8aiOhiy;Hvijdi0GG(D
z?uvMKUOID8MTV5<PaqEEt@Ex0bve?z7i2}Nldw@~CHNi>_Q8dCJ3Bykh@>(=^*1xL
zqHQ5K1$#E@w*}clJ&qhFYC8D%m`fN$Gx)!<5hfz%8)SJZfuDC0<Osx}j~giMrwVFQ
zN;qB)4~ODV$iU=t4wUAT7Z%YY<RycA$IbYR^w4VTIXz8-JSKmKR0TdsswUn2(5A;0
z{-hMX{f5Z%`%cRHLJ|V}rWXDr4F&r0&y$O4^p#II`ijc)S!LRVVxUR<LWumfq$BOo
z{|S3Y4SV5=y!J^8@W!b9X}<N%hO^Th*hh;l{*9X9XWMAx6CeK|C^M0qL9p>=rS`tU
za}-bcDypq-b;$mX-wL67Evw-{!2q%k)Oru3HyLUbU~GR@4M1*%li&p#QblUpy^|aP
zXBLzk6M7(~I77qL)g-=FTE-(|Ej%U&?;oMYOMsPho&hTjZNv2;kq!D@se3;e*WBAP
ztRHO~W};7Tu97udJHy#K?7}r%8!MGlPa#olHbhT8))WjmbP%4E3vD`~M^-WM+ZZRY
zh<i>`^8)=)6Ze^HyDg5Z)2<^6p#0Lwt)|7_9A2mp(kZsphWV(m0nKQ|wdKV}6kOMv
zZTJ+4=!PYgL*=a5U&T-#762$xIcxa&EbLySHj!*fRrUVt{`Foff&EUYh&7-psP6X=
zHZuts;HpQ{X_9I4HY@l-wxYag)lql&21KSEXGmDao@HrNt;%%^5zg~KRLQ0~o5tni
z#UhSzwA(t%2`VA@$Uyvj_lmoxgECoDuhbdvE&Txxo5mpQ@6d;bqLm7dTI#E5QIEZ3
zETYf@c?hdBU^%Gx!+~kE+b_tQl%spVMdGhp`4i2~-vcRq@H%66<N+*k60JM%i)2|-
zvk*YfUl%lfZ1Zk>Jax2Nd6B7w?s8PGw*q^$=82j)qKIH{_hIXegT$^fI-1+E873}q
z<K2xgY)zYzC;JMVVd4Em>a~N*ze;?p<;reR3qVC9=O$3}62ca2$t)R!OkPibEo491
zwYz@B=8;O}?ZWlTt)3tF$e>%Td?JKzW82T6hzjzC1sC4wTHK|hzK-2JJd8lI2?7R3
zu!a&r;**#9JB&UFXYRdHib>8dj>;ymPFF8Q_6*l^Nk%RtVOicIA7PN@$oRcpTKP0D
zsUk!D60z(asIgK{6Ojh$ujq4KzI}ML-d)zU-ZS^aq|LmOa_$)*`$e>1N24J7NHPs_
z`h?z!+Zuqk8jJHZ?fbp#K7yNjS4J=WIA3dXK#q2aM3=Vw8)97(=YT_?Npxt(I=sjC
zYUE3Tg56ZTd58h}n=?kKM^@u)RAQ9Zh&T-8>*z+BWHH-o#rBtYt?oRq&vZ<_xp)hc
z_zLsU$9o4avLfq4b?%pUK{wDfIYrDFt0AEK2`9Ng-&xK!yX2*lGWB-h`;z}fK~agg
z5Z2VnsobnBgu@L9<O4BWDYwAL<u>TaH#r~j;5VY)hcg3ntgBbNXy6%Xj!((0E=S?_
zu_8j<q}<sHVK0!ck=oiDuqgU)v4-e_ef;B1&d82j=DPp&^psZi>}+X4wQIyYk#p7v
zApn-{S4Qb;Y;^Kfx60A1B2R8=i}C1U3C;q2sC#Gdk`z5zQW*2aaQMeaE)1uNaiag&
z<Wzj*2)jmiHqMn{2>tkbgaZk^5qZf<Z`13JoBw)$@(Y&Zu7Oyia^ecwjdd&dPL8Xk
z%};-LS(7O=DSe)Dj0EfjJ{}v(^$<zdTKj;iJcBOj#9z~?c@~zwB`H|ZSUa2EGp)Y0
zy%4RS?{=yaY_&h4ZtsiGp2pEud(4Hko_Nj}iQEzp&=6C*Y1MUaU<WLA1mm?`^R>f0
z+>^GQW-#m9A>o_`>1v-x$j3TdTM0|X)knsq;64~{knG!adkXpKK*O5|Vk&*(^<@mF
zK{jc1LoRs~H%)RAE;c95I(RtSKA0$9m>gGqsV4%2pLfY3C1(KRf~$27nMnWa3dY~W
z?pWhsTT%0tEavY_9VQCV9r2JpQuCXpm1=>xu4_TfQPElg$*~VTW8G~W-m^T|{vc{U
zkC+~YW{fQi#Z3TEDX$()*DjeGmnfTGJwM)^d`Y%;8U{er@kJbPtXdUQPyvzmpv#zI
z@bXt(V1@aZ;rBe_&4dqYzkGO-q|Cf`+IwMm7QyE9vrE~M&ZVl!1QL8ZlUxr1%uh`z
zzy^)$+D^bLbRp2y%#3Mz$4<(j8_CxVN^yRZ018G2(N=(a$%`(S6Sc_7hK1SB?5i7~
zdfg-c!5rDzmp7Qz$LiE9*M!R~45!;d)CW*ij2H7~o!A-=TeKJ_S|7C*l8ovFRa0c4
ze2)t=p62}fI@Q=vZq1t<2F=-djl~O4>>3fsk-Z`y6!cmIM$7_T7%6DmY=<}31Z`w`
zgb9oDo<8PPw<(1Ji@y~lk!(~&PH&Qrl0_(0V#F1FGSj)}*&gQ6k2^;}l%1<rQ&akN
zVS|P{@QksZq|}YiHbUj*H~<s~Lj&}VkLuk`4Oy7i1w`S*be^Noo~QT>7Y29qRv;Zd
zPy9sZ7nZeqQAb3t>_?uE-cp7B_G3d$-$mkEK2*IP<G91JlVOX_!$Va??Z!n}jClJb
zhSZ4xs09BLXJCvSBVSf-c)sT)=`q}1E$Fq4bRJ6{New*1ucmf?Ui(oTdrs*n7MdOJ
zYifT^Wl4nCiCe$;?APat!MnUFS9<%XA<$;|`t!2tdmG0jY%ELqiAY9;U|cphf0Qxh
z%!v}UKs0b*(pgL9)8J!G>h_+6LcwKZXbW1n)fm00V*-+!)(h6(IrMGxwY_p!uI!M;
zRJSW@fKV8w7dNcHdptUDf{{e#YFOV?9XaN+be(TV#~#rBjMrVSaMN46erQCy+u22y
z#6Q=562Pm_d!S*KyBgB@5QOc7k|AkzdOvmcL{74Lez>wB?$N#SMpk}B38!=#pPY)~
zwj{`?Zfdzk@nzk_NF9+URWV`l1o6_4n!Q&iqkd*VeZds?ZxaK;4Nt-0erPu^E{wkD
z(!Ug2CUon>eAsgWeXuSQetX&XXQq{Zi@+we`)^O&uCvMOB07*iKBun6EPV4*UTx>1
zyrX<E4MP0v@i%_azC7ZH2bf|;Mh*UbX#Hk#CCe&_!k=+is6lrqzP6hxIW|>Hm#c$_
zX={XKuroJs;;&i|nzrP1Md~t*{r-zY&X=GzZhmG!sKN?Cq>l5oTwLBwSwp1OUEg;H
zGal#)m-D9#Xs%_0-i=TJ!lcJE!4}QC!jxV-@YjG!@)?leQQORKwLtKG1D}Mj9QeB*
zWM`T&Fto^Pr4*y9r?uf~U>>80H#!Z-PQ9=E;Q1t&qP*>kz{$>Wr|Yh%$n~rNoUtq+
zt%eE!?IFj*fyG`|Rjc9q2i}FAHz=cmX0mA&nFv`Tr?Uri)aJ^pRY$4Z(6DrbnywIf
zIM3HRm%Nn4P0v^;%^L-mgWN-_zOu<zCSXHnf<nux%w3yzy*0_=*Go~rWng)BJ<N=Z
zucohGOG;>6Bbq$mw&l|F*WKqe1JDpnPkmJt5pJ_uPBp&HU_8WyP%8yRDW^QN_!v#Q
zMiOIFHQqqQb}1DLM)f~XHKSR<Q_nKV7~rn<iT0Z<Y7$j4VZgbrCQy4Lg|Cu$5m~i#
zuAUMhe!0~W6U-}^!z~ZQ)w1WZ;dt(JrXuWn9htv4!R>wkuvIwm<3i3^xYarayStnw
z9W80VST=%npPVol)K=&@K}eVy5Xo3N-n2d(!nD7x0}j*;?{Uir2ACPXw-T}`rHZtn
zbG;kr?DTa^yG5itUUPnCyWaozod!7&s5qlw000wzxcdJaQ#W*Q`r9b|YyUyizZ#|9
zD&tLMT$ma6$lR`(pg`f!@pj1oyReL{p+Mn~m<Olpovzz5-<zcUZ*dadqh%64pKs75
zXGQm{1#h{fso;TUXfF}HMdl@t0yCVferfPbBnp5zkfRl!vFXLCrvP~tu>fi07D2lu
z0nP<L5`@{=%Tg$O<t=aC?&{C2TiF!c7U0EGW`L+x887{z{MV)_k;uQL!XRdqEe2=v
zf?o*3UkwCdHhpWA0j+--&97BT(7|`R3M63iGMB`{FJK;;uqti05ZBk2B=m;+zWCWz
zc=^9zee~6+OsxU!;h~^YYIo5%tqqjUC!3y_jJAC%41NeEl>$&oATJK(yl-J-(S;jw
zl|$Y5ih)J8SyarKF)e<jb`GjT_)mTyi$XWLjVi{oM7a<7&CA;@1J}bN=Lzr;00<$G
zBYQ1A>%D9M@mKfq@i3NRs5DngU+~FGG3;xwm7CUNsLox*Wwf%mzVNdREe{XDEGQMM
zd$vGo%=SP*%b|CtY_e|;8&hW@Z9Oj?W^lr_Gj=@hss&N|(wqcz)`T#sJ~Q~!Hn@9Y
z;&q#ju*Mu?Hlh+H{c6UTu;VQhCD?{6w#tB4(6H;pT_xGjPt;OjZC!q+a2;^1TjaWz
zmvn=op(=A2>Yh9z&#*_=GE${!yl?GIF|CgWkD1Jzi~t?V$5>M28C&MMs|`dW);+J=
zKg@S2k_scq3JRmTH*(M<GYjXaw(6~{tW%~C{PU{QRvPH!s<o@7Wt#V`fYd6Kaf_dn
zMwnCr&T2SlvQJShFZ}KNZHvYed|&+VIDhiBTD3aYW>I_I!iHf?sd2YTrEyyG%dAl(
zW!r&PN@54_PK)jQRVA2xTy?bIHVGmRMJbVpg-{tgZ&<aVS|x~M2YRv{3S9YDoAFzN
z^1Yk3q`p?*a2?lH%LY3fZMW{#m&)p7Ff*4;Q=2=mqd|7aG076tQza?k@L+QJKrG+d
z1*I{<){{M&Ms>QePUh4UY?IGq2E)4ehRk+FqoO=}(6y0Qe5=OnFC}cbcvX)43Ui|*
zto3<G>-(xmZK2_T_7`oz?SqcwjQ(KoPlLAR{$X-D4vl2BN}#BCNOq~stktfx`0JrH
z4{Sqi#Y?5hP3!$lra>R#RV>?q`Hp<Na(I9rvw<JK;7cUR{9;19Xp8{p)xf17k>$K!
z`+nw?F%wBNEW{DuyBm5ho+r6;vG0&0^)=xzpFHoO_60Mn0T2|sCDN!uicONLBw2jg
zfuO;UUBb#eFs{C{NdQW(>4kQ0Xs8G3L4#%TpCHK-&HWq%Ki_bj&G`a74_wovgE=X^
zjz?0((6j6|_Sk7R{lcM3S9K@Xop4<f`mCSZcm4gai9g%IrIekj7o|3vP8&Dxj!Ds9
zeC7U3@px*YTcJ24dyZ(WQMA*#j3+)5W0V++*v~28MddRWit6z&;pT3TW^!h!oi5>h
zbs6z7g$BYNo9dayFGjE*KVqS1u$JJ*aj?w>_I|yT^1Zx%UAFhFG^k&=@a^t0F|2eV
z%l*|jxIKy<nde*UJ+gDU@Qt?W8p{LK+qTxRkp$$X|Iq$xI**r<%*~X1_R6<YW$YN9
zcRH1Z`@|gvg?{}IswBUvdO8MVAtPmPu|T`@BNCt*uRJ}QHhJ=>Y=e(O+w@qSZkcpZ
z2d*NO-WB&Xhu=nAOMB&U-0uAPl-YD!I|CO6EgSdnO{L4aQM2=xk^rU7%usacdqHNP
zgH$p6WoeBQFxsP{#ce}XM|xu3!lc6bre(Bg`(&B7NT}mglKrA<9g;h!A=TH5S36Or
zE>oFEc4hgGvQ|o8IL$z{6pM=khd%3ioa+7KqbRCtPk$wPUpm-k>nWnWo%z^<YR!e}
z(7E{tgSe`rVCVY-Ni#5UKv@27y{Pt2fm~8Re$6o&r|dOK?R2jGDj9i^C(`9adAMci
zGVJYKla5e74-cFfFHjrT!RLJwQv<CSeUP9S0++{zJTkJM`|Z?#9=+0aPc3M*oOs;F
z`q-U~A9R~^ZHXdvqB36BurEh`1zj3iIL1Hyt}>@h-1N_qxYkC=@qQvOxOd~w9EW93
z8Tf$5Cv=A7NTQu(KHas9I+*tdS;`xODxBTq5)$5}6bD!mO_!Bmp>)0E#FtZBI=p(6
zivS~x#W$2vmTuy3suDDKM*4GeO&ojsDtK|}PY^}mZytVr0SD*X2=#;20J~NgF3Cuj
zd+5scc?*wuELhkQCgZ}n>S-!FV+%;yHIO2O?pC4Oj3$g0ZkVXNEYx4w>;QYh*2!}U
z`BZ?JP)k2ZA!1@oJa0=mCv<-;f5H9}H%k4%jX@*Lskn#$0GEH>x##_V!;Sxe8h!u$
z6ErI24{Fqi{tGo`)n5U{TLm9vFfzuC>N&hTUfySRDK9#=myHwBifdZc?k3`Xz3ji|
zv-8h=N9<au?hyw&wCWD=0!YUl9GakWY)PEOnw2GRdECh6`yRO_!uXTQNwBq6_(r!U
z;Z&fEj-g8~W}PMsmI7GIi|#p;i8KN|-mtaJp>HqC92FV0EqvOFM4erT)$4Sl)^{0)
zQK8Jcm-LJKWdgV=K3(_78?Jec3flf|v5BC$I8YmVxzuFB{JKp<oyhEvZ0){G1FPAv
z4Ox!&oSLaPQ~>quDc*HRUQ#ReQEXm%8C`Zcy`W8hVofLcU!>gwlVIJpChD|p+qP}H
z(zb0@+O}=muCy~NZQJ(EZ|`&O*|)nRIyyRHt)DPwjJ2LI#@j@G^IR=PxA<CPN(+AP
zRf!}$rrYOOBG%tK!420B^~sIiA=}s-_&yA{Ef8GHXGrx1pPYZ#wA>?irazHO@*|D>
zeBlcgQ%`VLFZGQyE?+Bv;i=Ck&AyASNyWduJFxa;0*H$#tQ=TOJWzrqal90IKcHBp
za7^k8(pwh08`0~!MgmV+lPryvsf2n6UMK)D6|mRK>5YesWOHh$xqro`xJh3Xo<n7B
zGcYDf9rh9enCO<y!7zy0Rfp2HD%4K9d)S=-lD<TssBHJ%L3ny(?zfRefZpbbeTBm?
z8Ol<E0oGG(=)^r7sXr0YM7^5^%13P?zwdUZj}1UW2V02?PPR4DsZldMbXU52%_$*A
z+5-r{p%Rix5!k+osgR=5GTf+euirFt0sG)MHnyUI*$H!m?D;sl`Cdyyz%8u<KC=Q-
zMA!i})$O*AX<N$V-l@ubd~jZ-TD)=ErAK>q*ezdPkejR$h03NV9}Ib8jFdTm&9cZE
zCSk281Q2MnGB$B>F&yZ>ubdj-<IRu87|K`+^3|EMdRvLCzk-xnAjMJ;68#3_&qs_o
zL{#ND9~_G3f?ep_Bj<aqhVrqcXzL+vAvqOEJ}hGw4nO`a88jtlhU~D7D>7)5F$H-F
zA6PqlUhfjXJ^>OsENsjdOcmJX=)2JdWv0vvqN8q(cWvDq-h>tbEM1G`l=M9P>|Egc
zA^=Y6F_=huv490L826+^>e`k#r*<yo2uhxhDc0yiYvt6W3thz}O!id;HY->3Yu7MB
z>iTOiu|s!;-X3r$?^KT)j^78{qiRJg2wIk2X`<d7?Hqe{xh9^FucmzK$-MyfLr|a3
zbO(MgsDK$y)DTZdbBR}smAVtdQM&O?eC(qjOz>C|Fn&4c+-nRiv^uw{Q`aP^!sRjk
zDCX>!QZw6(ujRj`F(<6Wp9wjtqp1Q>MhWr8nRB$@o`YJgB|o$iinVsXEA#)AMmzTt
zZl_82<5$xh2<t>kL98ko50QMpGEGUd#4%!NQb`nAr*I|D(Lv<KmY4yo({41?EYq0J
zyI3Uy=oblQM+IBIiJG)Ae-g@G@DKu7u7nx%l>j->p7Q%-{>NI3zjpAcp4(mOIG;R4
z{lJy>`W@_8u?9RnqiaAaj^s>=(%5QiRUQps1%oFMANs{M$9IVY>EgJ`Z58~3jTY8T
zWuYnQY}IepG|Azl_TG8UFMOs^;JmHQ(a)vdC0uK~z@YvXk9^?tHZyJjBTP84!5X|U
z{nTzk36qt6UQqU3_{Qb`qDHq)ZMmk-<%zpo>59i>5BD?0SoHh7=V!BwMwA7<HuO_)
zrBNnhCXl?Uh8xvf6${b_<XVBUv2AEVIcCswbrl?aBg)|}u~_Til>SA+MC}N8rQL@O
zd~z~i0$!MF%JDRo*ur<4S$xC<$l1?X(ypeiASu&^5O4`iLNFnzZdrdj?ESOLVw@Hq
zfRoQcb5i5$tJtFQNq2MZ{S6BO(D?BMz#!O!rqXp-xt~c{3{kkFM=}i9ucG{^8opV%
z_k<s6WK?`w|A!i}u1hZMsNWWUsIlpX8cSa1M~^Ul39u}8tkkSN>$P%dfDxs;{aDfF
z<~aO|1Map#{EVh@SL{5`KKIO14FSiI^8KzrCvQ8^70@nI0I@`{a;W=_SUG6v|0r!l
zTFlna!u?GJo0L~4Tk94>Mm-~W3Y!dYVY|wojF`?S8btCuPmWD=$Z~XWfPX699eC}B
zj|)EifFp2t2CIL*mEzyu6fuZo6|s$kd5O0nbTyuM%25)D&61G~t1FgXD7YIzj0QET
zBKHEAAkOw&bQLc_KFhFe0VHct{SRt{YevVtY*;hK$Nr&4K+HAuvwx^jf`H=Xx7H(f
zL7RA2+L~KRexs4*U44=_<&Ex;rZ$@8$`+Ghu$xhA?8Dp-HH!HH{6mdrBpF4V(6mrd
z#Y}>S-S^Z;!}!?*S_r!-J1%6MAbP0p1-xz7V5Um$RaH4q3{M7|w*OEgC;tyMnyqi8
zO+A=|hfVEGj=pkpJ}R#AxMcHlfk_?<Ez>Zbg8sDx04b@;+t>MWCOG7hzJWbc5jWT1
zAu=cs1Z=f4liiZ>#rzjF`l9_%V?!m;zp1e}N8yJWnSZE}cpTnalGn-&UFGi#Au#;E
zsWChayi<S(RhE+8BWUOYjB0Z<_bRl=5dlk#F3?LwJ(@N?fvXO6Kft!bv*_MBomD<=
ze6E<q<4q`|7Y~h`6Etr9e!L&lS2RP5KWk^QrXX`@m3nT}$rWC(IF103DCBzCa`!+f
z9<!3_8um!L+cQoeNh-I~1<{GEt+NJ`t~~#3Y0<}WgS4UUjMx>8cB~a&P*6BFWtdLG
z_iqL-%!iT#05J5YHmci|?vFIWUa>LWru-v~<rTKyw?HPXo3^nE*roLen+^Dy54h#d
z&+gh}JMY-Kc{P%vEE=K4=e5ja@3u<Wx0N_jQW`G3a|JWgkCCzBtGdno^{3tx%Q=;)
zZ1!#}FJXWCQ;!-w?RCV0Kxp%LA1iVh9Cg)y>lb_(6s_LOUo;CE>HoRCJZ{Wwnve!B
z+U%Mbd~}@6Mt(-wIqK%Y^`%c)X5h*mxkabO7Q~)XYMmXg<aN?%NxKOol>Ce*-5HxN
zAR`m}OgYaV8Q!9Zmq>eR7}>cs;GQ~=BU+hjy^L}SzPRRWH$khiysk)hVE3njBoHRy
z!=$%M=cb@2IwF2biVcpfr>G@tj%5oZ`Lhc1FvI0QxAz<_*j_cBAS4BJvD63hr`_Qf
z^!bE69`_KFHK}+JL((F(PcOc~%aUw6e-5ywkp)V8%=5HCxZYGhyZ>`Km_l;HXYiZn
z!l}DD2E5{68fTPfs}~Ei&!OR+1TSu*OkHj}#rM*`q_O!&8o~Zc8j<-BorAPG4S%GO
z`Ej%~IMd13^G6!t?vU>t#5|RwB0R2iiK?C>ej`a5(nKmoo4LABQcgAFw<2<@WMPSQ
zMjA;gONkm0iOfKLk>=Z^`s4p2jkO?;Bj3VmLifeg(yxg%7%>H3=>;!-po)EdQi|VD
zKj4^D@P+yVjsl8h!)yE~#qEBDW%!w7-h#u$^Zbdo--(lu_84Kp9?`(>$ic49zyf~7
zmA!vIV-Eqo2~m9eCEob^AzxgjkJvdSdq=}x6O@Cro+DUeAK4(UruZw6jHG8)UB_f!
zEQ!s-6^tQ<K^^x&`!Wz#!M2C;dx47TTomp&akwD2eEaFquji2b_=ysTWd*r!U$n(7
z3db$^n?OCT10b?y4$)R`x@9c%Ms~&rYm+Ee?7lPTQo3Nkw%nXvBv_y$CA)8;VuH5-
z`IfRVLWG$7m#8Sai!euuDAv!UF%qRc1DLWH1AFS2#8X^Uuv#VTtm{pZ?7TJ#ylu7*
zc7q2c0jgT&cBl8iN(2#-sb=MlI(}syZ)C+8=<Qy-Un;*$hbm_w?I7DF)SDFBURtoC
zl>oR0)Q{i4s3LLLp`2q6z1~&n>F{m-sgj8=Wy;2Ef=z;DIV!tNM2c%RI(H>oyX+9i
z>wp){Zj1PqJCHjGI-iR@z{qtnfl2lpvYU5+-w4Zy4lW$hjgi|_FpXVy38rHV_$|Z3
z@fn$&N}d{Qh&@@xhk!3!lU?}B8a+2YM;9eCnZBj}(?TBp!#NNno`=d`wi}$vpeZZO
zotJ+bkf-FeOWY;gZv)Dw96bTU2xH*>U3N4tx=4wRW5y8y-pmfv|9vA9nqZpaA}-dt
zk)2xD)B+Dh+LtHM-CFaSb(R=1@cp#!a(pj=ntZ1DTuhExYwVDJ4eH|ji1fj?qFQ9g
zAc1D(!b(u3Ta{wb9eO^1SIpuFhGAT!0zPRGlc>?#IS|X=PcQXaKw^%VZ0=@?LFI|7
zO;7J1X=J7FW!=k@jtTLFg#D?u7Y@|WUgz%~oM-+mjcQ@uXhL@-p5vsM=q_O+@(Cd&
z6M^`Yb{V?SnEvp4K3$ATne<g-%4ud<zqtU8-0EI^ntO!n3Cx?Gm|-STiY@+9FiaA8
zZ*%4F_2Buw-iC)>T68&&A}<0F7eXW`^tVeOo{8c?&f79N@;QQUH}b7t>V1FaUK45s
zjYkguJ**A>MH}00j{jS+_en;b-;!Ppv4M{X%uWg9>s;tbT*Yy^fiBtv<Eu3$sgGXc
zt@uY8%M$)T`9Z%#NWP|GJW(@HJ}Kkfbn?ZNkna8^F<403zjoP1QC@tQQT^^&$o-=g
zF&_B#i-rK+hg?)b{qm98tUQ`-;?>J}n=cOcFUDfH`5-3u71f)KAe^qaKi@H7vnWLS
zmmXxtcQQf5o}U!Mhj;qf7<JDmuh1i~f}Q0{spx5MH<b_@rqrb$6wOWP!2D7!#{dW4
zB1b`NW>qM-C|Ky(-v@8ErXwK{ugZj;t!cSz6%QhK0Bi48r-BllHNB2+%`|cGSNW+w
zw9<6oHl<Ixla-`RWD$b(GFAHgst4k5)hj&|kuXWNt~kaba&vb+7xwt;(UM!bNz4(1
z(t<-^Y>(0VptjF?d$m*Pk%Wt?i^pt%_!FW4;N4hGpt+-o`X%1OC`Y=JJ5z$J2m388
zTiPAr&Dc$(sQ0oJDBja3Cd#iqW7_uGz`0LirB_2>;0I_IgE|cReRwRx@|C(P^m@j?
zrHBrzoxg~@?<k0;Ntk@>8u<2U!+!P2Cfa!A+x+8<dd{;LiJcJe&ixGa_oIyCT{B+7
z3aO28sp(fQn?D0Xj=jI71NEU$WF@bxo(TuDhQmNM<$j!zPI=R_B<Vs~{;Uas_Os_4
zlw?x-Nsswnf3A8PdLPC4chPR6GUrsdJ%X78JNQfqlq;Jm|Ga?${t@H&E_#D*AtwsK
zZ7^i(kq+82(BFvdMdVoyk;n6!4Z~a38+_lS&BLK%;SkJGZ4r1WfQg~ygGD-(Qxnp|
zU2D{OFXS&1>`lhsLCfLCiD^`92}z)WNpLVD`?x)Q%x7m<z9)ISu5Q#Kd#2pkpYvPO
z4jc~N8CtY(v^UOa)Boj+9e4lfjC#Fx#g0GDn5DJu4JWODaWHosl-B$v^p7*zC_TPZ
z!4=JmTIS&YIAird!;IwJkT4t-hEuRcByVu-scVTfZ$%^=pMzu&ptii-k28j?NPsU;
zjTNqHUJfWj_rR(vH#dC2gqX;7jJi#BF;QIhBxOXdQQ27b02Iw&|Kp4SVW72|uo4yc
zBFMq~<~zs=-H->o43Fb--jhaOskFoMVhVJEq*4v2DC$hJ5wMCSNO#C$%2v3i&AC2{
zM(`)qg*Z7o(bXm1mNlh#LW}Vlg(^IGv7*!*xBC79A!z;^h!b1*Xrgnmu>L3+W!T3y
zIDgc21N(_Nb<K(Is*pPpcQiA@liV27`sAfR$fnL(W#yr%Cw0sD+Zdpi5@}jpxPvAn
zV{_-Rwkma887<g310ijy1Sm&+TkWCIfe$b%I69U$ID7f=t!^w*Ni2yhL7)k}=3UqC
z!Rgw8ZA;7N{(yGbWRu#5T2cZfaN^nDAb+Pfspl*nQi;_pwe2ubxoSL^tXWSd7#UH%
zg*$+a&jKG4)(v<miZfH0?t%{V-Ci_BI1la@_N@Onqs~9hC<nj#q(5Ft<h!@fsWn6%
zJ=Yxm7^2yEuS+qA9a{}s7iTcw>c>iO^~8l?NFq6y@v__xoq_haU&(D>Gl;-(UlZBu
z@dV}7MUeaDvTQ>PI0wZGY=BrOpI`6E4Kj!;DSw4&5>Ux5vJ5$?;J3KHy))_u{NKN&
z{u#)O!2@LaBKcX=O8S4xI`*dS|6-kgCNzitXV&?ZZe)+EztEeQ$ii1|LoPdC=U|kz
zVs6deV#C&Av;Ol;ubUlx?!Vg4On<Jg#&$YQY0LPc>;Tw9kn!IUQmC&H+~$!JaIm<y
z;CnC^;d^}cwq=aLKc9Rz=QVuVr+$mx1K8L3ne2UI8xDj9yl=w;aiAa*k;owLqRXaK
zjQ^~=1U}ji&8$X=eH|1QS*S@Ze!|VGU}JR0aK0W2xr-!r9~&^Yg*8gX)-zziJ?^qg
zY}Sp}pHLk%ps>;W42=4^(T`rjx2%Q6$3efqvQr{om9C)}q*vgE567XAC|RpJ^=E7$
zebAlP(4h>64Azjk5EA@yiC~mRIBo&M#H>Ip5!~nGkiSL1RZgK6p8vR^3hje;XOwVa
zcGp9_8qih~vnXi&@RcagCKbgzj`TfHKuHSx`zZ~5@!8D6*pW^D;XWQRMf=o#)TJnk
z?m~eS2-mJj+GA;~dyWHBaD~!y;<hYPfgxBH?Jq1eSJ8KLg5UqJ*`Z<u^f;}uL!Mq)
z&#d>L9|@xkc!_(R)y6Bowha8tmoe6oGBq7^%!V9rK1(dFrM+__Yq?csI%Dl+u=%MG
zQCu2zPOkBWqoEw@=NAq2fdy_R03HwWCxh!dLMV<SV*(zhUiR4<HytJQO1X0nDkE~9
zv@zx&btV>|%neCve&eazQNpKiOvP{r2NmmE#o1tz*D|DJR9xraqWRGc`grR7TnHcj
z8jecsa4nIsdrVaz8InV;cCpqvX2)tA(M?|jKKnaw6RZH)dZ^(Q5-L&i1z>`vifiW0
z=E_5!p-FVK^eWxOZO1`3dSMT%l<T#gE}0s;Ln!oqrZ=cct<-TKneQ<IloXgcPQ_ig
ztV;=0%j@y%Z=48navz&o*Gx303l<nzN!J)VwkX|5T3cyW?RN0W4H#smXttOFmqMI5
zb1=&LeYmbdU6t+57Oxep35VTB`EV(Wuw^AoX?(J6Ayp`W5eQ+L0(6Cy`d#y*9=>P<
z%L)e%DrH67QV0iTG|2O5T7(Q=9`(?AlU{|1cP46=eC{?oYAiZFZRq2Wifq~FA1G;g
z`edMmIK*<&&>W$NHhI>$mW9@=VUX3RiST!X)2N=)kQ3pfB*NtzJnfrKs=1SwliYbl
zaURu*Llwz6fMKa@MXgK(`fL^dPKRjJ1QQFY$zYUKDlYz<UAd!d=Dl?A2aI&!$|y+v
z{^P{!%<)KMVG+fg4ME5``LSUS&-;mh2ybU3PJfoD3zKN3pweZ}CfVWuo0rR@jP`w9
zEWcX&v~~&Zz()J(ltOLroaz21Y3(vn5=AI;K`%w7NmetxmcmG1z(A_@&zu>*rwQg}
zRk!X`wKp5GlLYR{$Tg)@XP2qUNblsb{`&F!o#z|lgih1F*icH0>P46_@V-G*<E828
zcjRo9JnJgLzwRd6GUO64Ee4A)wkF$MAZn+b?qMECr;M<onOJhHwqm%Wbejd5!YW0I
zqYiJ&MOj5gCKa+(NsM}nELw`5@zvuiNEglJbdIGbDS<Tv=thGOt2&uzI3*X}yT_eg
zgG~$OE{Z|!2I>B8c2@fd!=wySxRVDy`!A9?GAQ*B+HVbvFW$R4zj-_=t2i{5PcmC$
zwDNc*{CXyQ<-y(qHkYkM+&c66H#?zRcE|)1ga-zL>JmW8+m&Zg=(`x^u&lhX!eVdl
zg)E+cc}`15CLl!L-_JTrnY$Mu`%DgFYwQg5zNzy0QXE}kMC2yYK3B=U{G}nE>Sd07
z^en8+GTw%kF44q-aId1P)NyLD(jUfdy~J(m975g38av`*ezw`k4cs;xm88D~xm+yC
z{mp{H@Onfa8<0Jz7{&*qu%|DvWrYEN`alot%4ZXPCAoZ$Qv<u)>~}xtM$~}{I(uX|
zWIX0zpQ4{H0Ql*LnHQS$rU(1DL(VD{o3rJijpm9B^ezlzyJpsMl3KjZnh`P!5998L
z@)9R9ng;F8Hy;F}d||5bMhG-8*4_t^a<Vra&lT291rKzlo;V_GOf=4%&t>);=q;Ag
zwp|F78JxM=oNa{Mg11Q~IW$v}2q11t=gI41_qD(KyJ2cuGGCI+P1-0>*?J=Nsf}Bj
z4fMpE+$+rCBA2EQdk>LT{aW=b-cH#M-m7i462|7YV_-xY_{_Tu;e;hC<;%H_5Ql;w
zgY_s_s!OAS3ie4U!`cvWxN!KeqMv>k{Fu|_7RGvgklD9!=oXbhVQTJv4d=z+`0-iQ
zMfz>;B@3AtXi2^DroEO3c1YyS2;1l+TF6!D<Y+E6q`m8-$>5Df2haF|7o}y8wdV;)
zR$G?Bh!&Jse)pw#bBA3++TL~BWV|9Yl1`y`0?az!Lv~UZf<{!Lsol2=lhO1$R@Wa8
z|NP~T<AmUAa5H+NafJfwM?6kVO{CFQbUq-mx1SF9B^_$&-+`Qd1|xN!#{>BD0Xv-@
zkdXGLS0=&Oy`Hnv42#BO)zfKRX>@6}b57};Kfy)^m@hAH-oWCD5!Obq5|904YZ>9=
z^)K_zjVt%5XOvFVTfO{`p0qKr3;}^@bzrbgXyp?M6-VujJ=r}8V$ML#3ozIUVuv&C
zoeh&54r6s}AK_#B!X3Iwb*ZeLA4VMSsjkRTZhY^vZpYgPc5o7B<X^ZA1xduPSEHi!
za?<zqmwd5ON=#Dg@)Ljv16<lhJ7+5i)$G=bE#KKw7>K>C9&t?gZ^8u%I`Nf#gw{O=
z^09O2dCS_9+zm?ZT)a2;qq0Mv{>KUoJj?3XG|4g_n;^o9P^A45mB-~6*rmwu2&70)
z+YMy|g|FkI4w?aWh0*crP(n-w-N2Ig@@pWqj(-rsRF}2{nffN)%@tAiyU9jjox(&H
z&KOrrRZbAJLNitN3zA3ok7CW#st(Q+_gfp6`I#>|&VN%pMoD^pV(*UU;An3w5bn2^
z#tGg4Uhsc7hr#)%mEh~(w&b5C+T#3qYv4GLKN!46(}LyihT|QCY{Dy&#>;4x)jVG_
z1>0h-GU7aqp-*?MLp^jBbhl;Bog^j^Gz{29i-jR)*Lwm4gw{}&oJzBxc{mE@3R2TC
zaUZq}5%%Y}H+!mn#yV5sETq5Ywr($JN~?h16zcWyqZR!{=Sj1il=+E@Khb`u<%y1p
zvPR8>oOpVms5#L8y{egf3h#`tN6hQFSqf+n)X0e5K41zu5G#AZfQw9-C5;Fa&W`U2
zK%=QH@0KRP`oL-NA=g5iih1?EHUEIyB?Bxy=w~)>k>IUM@_O~`XQ_;@pCjBEU(#Ge
zOn<s=%wZBu#JW5YVsg35)F$(!axYe^h=9h(4F&j`g{bqSm_?;cemoV?)JH}8l-lyr
z(j~Ol`ckRjj%-Y=3(Qe^b#(_7L9_yP&m3QF@;398WP@GmXF+`Sw}8m}?=Nw}1nH0_
zfB$9r)AIsLObO4|85tV$$Hybc4f!1*i1e>9p^Pv;hdWHc-<IQ)yG>P;$5k^7n(waM
z=^o<R9vczz_+gEfzeo6HUg}3v3kR*YcI{oS)S3Pwh!Tc^mOrM#(+(agQ6tI|xdlLu
zJ@}&DS8*xn63mm_rHg%>b*2=npke}c8x*6nf+wy@C*2h_&;uB2Rh4)wdtQbDhkad5
zmd6v=?Y4PEmlvLEV`y(0qGWZy&?Sb?hMeqd;>TTU<6k;d=g&*LUab}nSKPOCZ#$Qh
zUQ0rSDhK%uRiZqirvX?uR~{fy6$pny@gt@NcElt0S$*=F?N<?sN3W>*bDx~kJ+gd7
z48}lnvl`3D3&NK0vIJ%wY{BCr#YE-pCenFFUm@2@ns?fU+0}r;tN4?IPASS5v09gE
zPj<etvQXU{j`*gvBX0ZBpVO>{?x0mi<qaMkq3)8qlXXWwe>L}eC#x_Zgysd@6uitn
z+TRV9^Q7P@N4nINLFVbx#;tjbL|Q<3Qq#rIc2k{Qw4P&<Kf77(_*wi^iAV2Cp94MU
z4hSeMfu3=N*s#x#BUrq{jdNOoqetCKN~UrWdC@^gbiAK6yZ5gzJ|KN93vPi5^Ifoc
z@YXWh*mt*;7IdQWzK3Rx9*6j7;?{<>JQM<Ym8KsLJvlA;YODE-VvrQM;pv1_tcY8+
z%@q~1$-63Bp-EAP&qc8coYq({NqDRq2ET1dS8Tj&WAlalF?niAu4TBQtZQxtV>YL`
zvd*gL&trrc;~!CgTEdaYPenMhXe9-=sRrQiHj}&4d4=TDrPSIvKFf}iV8z^AG1Jwq
zw{G7Qk5m;^dAvfcH*^)3T$paa50zQKVO|L+guY$#$^i3Wyn%=Xjoz{uvF9ngh{2`{
z(D=JQugh91YeMkHKXZ??#S-X|>w1c`vA0+9twkc17aL1CH9`cAd$lDlYr#$^PlFUP
zkDg5xpl&j*ZjK0E#ndF13>ih0O8M{q@_QO*L6x2`HEp3u<B(onTIQ0Dh)ouy?8mj8
zw$!y5T(FJ>r!^A28mz|2C5Dp=_KFu{xyG#ljqMl&*jEr!oE@u&me-%13kMPFx!7vZ
zX>KjXdZ}jyWB3u`1sZTF20AtEvZGZ?+<^9<5@`^D4Ba{x>C^#r;l^ueO|+a#8wxCA
z*xhTseSSPG$icB0Ocd5jIqC4R_=wiHbEPscRZtKU=(ze`;XFhH>I?#jimLPRCSp0#
z8wH@O-svuQnHWq;K;pg=%f#&+i1R!<EwdK{8VFlSpD1UghhBBMtR(S?cia@BX_)Uf
z%d%XSW@3jy+oOZj;+M%3w_o2fVanQ-%4Vpi>_pa-P;XD#xFyF3xRT{WEFc}DP(kDs
zS+~h+ZyP6H!6VK?dH>q(J$|l1wRrH6D7Q>!ppwzPKZ`Qpao{2~itEP-PLE|k_f*m<
zMF7M4=^@x(RCJw@%K_T1P)`a`EmoC9N28(|`rKhrSLr={2=7n$?4E>8^$^;h=_kDS
zo8pY-8!imSC`wOk$$9tU;NBLRgc|)Q`wKy~zSkJtIlq+vNZlbY+T8?FDKfYBMKRa*
z9{L#*s1?Z2yqw@_E%II)G;+Uphp^|=z<uWF1}5_IihidNm0(J}iJC)kM6?YRt~Bj}
z8g%aJQ1y*qGZyh|Z)K2H1xUrEC>W@hB+9$Rf<R?G)~kRVi{9Lvqzi+nmw&K?eoXMW
z3T-)e6b&38>^mscM`J*Os##hm27#ayUSiUb&IrgKXo}c5NZw`srC2TY_ifg^$kNfO
ztk&KIO$DG)=Gu(QceP{^OSEFdE3}AXifcw85gSZ1E|e5=IPzztp1ZFQwo0{-3;GV2
zs%WhKhS;Lyd`y%;Pp4*smOl@BXbMmfcc<x)EH3<765$`XK0qKzS_pBk3}E}{+!q{w
zTPy<Da#AA7pBcE9ur4N5yFepamgxfITm35enc`cg5l81u%~pCJH>sA-6~xJ%3>o8E
z;JG_?5PK0)X3CDMoUPIAl|+sHBf65vxnh6ir@fB(0%o0yb)dJwJF4@Q`#i}3uve45
z7e3`vO(`B<pQ$AKFhrBKAZ=4%qaB~_i^wP}Hm35UN9Y2A!g(ZfxCFcCw~_Ud_em^=
z5?ihH@g;-@!G}X3$PXi372*%fI?7xH@gC2di@(OKmn|c<^Fw!i_i$;R*8b>MX90uy
z>`0;|=_SP5n$_Q;<QX;AIKQQyvN{@f_)SxNZ2d?Ri*q~!dQip_{0fH8dKHIXBK9%N
z(X|*c&Qyk&he|AQjNh|2T5M_altL9YENr8pPhSY%R3$e^{ID-uNL{6JyqzzJZx1Gf
zKeIEaR>%uG#dgKjA&yM6=+4RXl)O^LH0cuEtRN1N->?>?Ya>CiO<G~&zaQEWN}sTO
zRU1`gfbeRCoO9&ri-s`V{WPl8bLK~ro!Up&VX9g%c*@oE$`R}sZ$e_uRHQy{0CifY
zWXbsuKPon~nTO34+66=zro@|pgJ}yb44WhruM&J_5nawx&pdWxrN!>B{i3SJcw3PZ
zn%tEw^kroJbbTdWpgixFB?N+W0UN=lhDIlUKPooc56=P)O|rLL^coq2Unoq@gJ{P=
zfhv9$V82XgyOG!oKQkeVy7L=Z!kHeE6=#N9a+WtLT4I#6R|nN+g`Ow4Tj7HD{>_=i
zJA#Cmx!siwG;sf$ucM*z2ReL_`Ingsd%!%Oov93{G%ngYIp|HWM*g%6GMuEi+HdaS
z7CCa~NMD~(y-Uj4I|VmAprXJyySf0VW^ruPRC=Hy``f~pV-Pn4)3O;EFr5I75c^tK
zp&+08O>|sY&(t-PH9}+_n%ik=*N*u~t5DAmSqXctef_#^VDI+12Ot4bKJG`rR+aV9
z_D#4}#u=C2*R{#`#wGYeHV@j8<d9aqj{_k~>$f=qsek`C;$qwWITv0Q3D?p>I6v*k
zUVk)utdly}*61oi0JTsf!k|sjY<I?PesO2Jc?1;N5H_WDiEYiqARrq;qC(-q$C6?T
zSLIDy){rjYM3{B^CSvFk0NxjnK}i(X)s1^d`Xe!%`EiO6g4vy&WJwaVdPXj^5k9w&
zmw=8E(4W#=IXg7pVMUU_v_8KNB#s}4EmMBt(aoblFE4>Z-{y>fq@j;Y=20cnY&g98
zM``O_3%vsQAsifTC0wKuh_@Lpd7Dg(fo)ub9qxUCr)y2{XE(&)$U@RM2ii^8oO)ng
zrYog5>9^(I;7;!e(<q<W4B%%%9le9|O?78`2jNcJMVGy3F!}S4g*49^3KfD;jXhw|
z^y;i?|GQA}?4T7`UN77Y9Ooj5YbeCUmFHL%&Dcf^z{{{uuZ}jCtCidf7PNSn%i-2i
zh%P0j<s8AS3^%RNJe$+~M<!V~(@?M1zaNlUF`}zFFj58?8fMfr@yF(&ayK2Bi#a?=
zZM)|madp^{2#<23l$?k=(bOzCQP0FJ#T;}Hb;;CBsuhX*#(j%_s&s3LU(P|@8SI$c
zf-b&4EbB?}5p{Rh3<OZ_20pJ+Rve3e_0fzcplG>IA0UR7AzIhrFfa)+&_Dc@Os73+
z0Fr?3n=WFBO4z$7P)*8VIkXVFJ{n5}_V1b=z>D-!u>>!~_ud{tSiodnf<zp$xCaK0
z(2c?2`Si;;a%7TN@Q*buB?|c^jVJWY*p@jDl~(XKpX8i$A1%VX?hgabFNHqw+s`)%
zQV~n&V1b*6KfBTK<(4N(NMPNrRJt$TXnBY7HUs{h(_G$5cE#89C|47DKsT0eFHLA7
z=p*F5u9)#tMFju|SrW91UK^2=d}4-oP>%iWN94}H-u&mkBw6vV2&6}haxc5ee`(iO
z%#`|0k|p+9D-ztWAdNRX7z)>(=HsiHc3lSUk7EVo_{gi!(HJ&E)oK_(p)&I?fM2q7
z15ei&0rzTI5hhR@2kzPoVua8_)iZ1+E-QTm?N|!Gp<#77j{rOV?eFHWe}g;Se)`;>
zuA=cpg%xk^cpH{{y2_r*<0_Xq5Y<xPPr3WKvdwhUf~xi25v|@DgT5ekU7~y5_sWuB
zHh4?}@wEU9>Coe{$=cgS5xy-Tl5%NfI)vsHhtUC$+w7=zhpo2BiLR}&n~I4UQ8J`^
zCn667D9I;x&!N#ZXsI6)5dsoWr?@uGfPsV3j`c)41K2lYrJNrCZasXba^CDdf-|dU
zmt^yL-WNAA)V~d&n>|Fl-4Fk2x3Qz`Z-6aS!{CQ=c%OUeE|#)O=#Xo?d}iQSUI?(Y
z5*1f9jxgv?BRxi#b3*gz7~A9Dpyw!k#Q0V*&~Q*a0XXcOB)-gA{KDrM9O9N&dsElZ
z3%X-yvgX|<BJ``omGhr{IOYkB`g)+$aV~1>Id#UUH;gb}FrgdyHNjMAzrQT0-Idh<
zYSmVl0tAnLMGKEw43f-lUA`D-(>UJOpiLaCc;aTsPF#};&atRZHI~{!=DJfly&2Pq
z<Ub_-{7!*)A24Z4^Vmq%&{tqTn*vH}HW&$U41W^<WJ&bexV>2UoXI`k;EfZs1jev-
zX>rY`!phSHMMFI%TYF}mMq^6sC@Xi~vFkVc9m0#mt-lG@m(Ab%KFKb4#(RxfcafA9
zeah79qEvnAE0qpi)>(lE7(dgqEy8~wFd!}GU=@myFe{<pOkFGRowb0fNQNhL_z+I~
zmB$iq_jS7o0DAd2t1!eF9&IB`tM1h5lxow*=rd0!rD-F55YlA}IJ~9kfu&UG`bf_2
zeuPtZO7KD5mqEgzE08kp?F^_aRNxl4N<Ghe)&Y6`M|G8UC;dT`{mhN&aB}p+H!o@S
z<nhC73lQR>7@*=!_-eWH{$w2FE*%IH8$X6CA@W>4HZ93HT<q#H19Af?WY9_v5)#sq
zS^$VGHYK|HBD_O+!Mn>3N0L-9C9QNBJ~6h?U5s=U0S1?{#1g)~zp=Mh1OF;0&0gLo
zX2~6i=TAxNIqjcl>(WG&&}2)llXu2mst<!@VX0Z>9;MWBJ}vZHEj)8pZOZ+J@Ej37
zb%i{RixbjM862Xivz^X6kB)=2UXr=#ek~6u>?~!q=omY_I0<)t^aBR0vT?GalD}UD
zfAkJ@sIs`2x>C)sWSP|-!7j!LB2S_@*}A@tRNN%+-z?dzUc_Uh6ZKer?Kc?f)>JJB
zH&FgzUakLHx-BDodrreGK`{*OE+`xlYv5pC(W8eY%2>_gXIzxC!q%Qupl(6F(mYJT
zX=jVXX4RSNb=#<hqr$1MR+d$mnCLkTmSp0KQ2#xwppV<horS^=mA*A}s@*3J?Fc#%
zd>7FP-ANb0FaVDWr@xs}`5c6=dah-{%1X>H4y&02tNY+^81}-g`fZ?6k9XiZrbC~z
zdjj1WQa~s6Fmgf5-4(wtP!HBA<J&$FHJ*2l4-rUYfNiKa-H~q)$T%I16W<F&m`sYK
z_lt)pG%W^=pFU8p4140q2MvL`pX{iw0ZHh^UbVW-cLaF_OVEP-Zu{iKT?|nxFfk`+
zjyP!d!6}$xgY`PR+<{);)fVza4EtRxnSTvtB+V`Vt57j(%bD1!WR>C~5`I(s;Z$!A
z4ojV!<az6kk4rE5lhoe@98V%**j3F{2bbP!%?f{u8pG+UgPp3vj;KeMCg_+H1~K=1
z{EmT_i*(P1EZTLNuAY9}{jzmwxAWaxbOoi(D8th4@2*#7`<4qzNw1)(Px;QOto~;T
zDQ%nF>6owZ1gf3vGXcpctoo$~c07c&l|$`$VX%Fgn^IfzwyFx*(?YQ@7{=mLdCTN_
zI_?v`*%Yerjjw?@6P1<|jNfU!IF&i~^#Sv1|I<e*Xkc~lLtym>dg_-~u)@u^xLv<L
z@E2?Kckt1-NjJflQMb$&U@nTW?VVrMa<9X!c-4(o1^<k~@2!;3f_ecHhuPllLPqf&
z=MgYujL9LUUvg@El}&#Z&P3t0q(<G-O5b38p9!8@#{@*>!x^PxD#aSuaYl${%-5Er
z8mzd1^1ZbXX4d18eCq#7dnZxOUe!<Wl~e=v<qAfdpZLAxtkZDqTmS$C>|Kbgh@b54
zJ{nXS&V10eG1+Fbi_Y#^On}MQK4b9(Gwz9VJoZK0-oxwOhnGjV(FOaI(M#&p;!I(q
z4kAl-;6r*Pl$Y|OIe8uzipvno>`lBbi?+Sb`!*pKDi)S^{I<593Um*Vh33lF$Reb{
zlnW(n7rf^%w$l_sOeZv4HnW(GdAFZfH*+H7&87yk5U93tk0T&h$<ZxvJSoa`uvRkK
zYprd8dyAfO*D66ktC^C6ig_rth9oZ0L+8anaAeRbRmray%=~(|Wq-Bg5-h)*%o!%K
zqsr@mI7QAo370g;fPU3!_aMun!y<ZOheqXp9=sgVX4ZdMh!HW(R69j$ne$$PPTv?{
zC!3OS#1o8P$1xJ3Yof&Nf4wAL0J?lRk+q+ba+DvU<@tDz@DWmfORbs``<>&402M=4
zu`yhnva1_tByXHM;ve&Uw0@*T!27yXUeq_GhE%ltR32tY(IL9Olg;p0BYfhtt)qgk
z7zLG85il-KebTzoqhQXpIiioeySP`}8Y*{gDAKrNN@`&`7J1P8Q56Pgj5N}af0~?(
zCAz4PJbYeb+cm1`H8ssKh(T1^n>~?%K$4Ohv(Xu<tGVTV{mciG0?Sfj_FP0;ln~tJ
zBM!kD=9uhTvv(AnOMk1h)=+2T(|)<>3`2?eON91;!7LsnVmulIsvCx+Hskn=r*~ty
zssqYkxAkB`aa{TLEp2bny3%ML-zrb)kkeB&&M}yi8ju}o`psQEW&(E~Zx*m98Y#pL
z_uc5#lgu)WPgSAn8JJf2!GzCj$w<pA@$AjVis*fGvL=Pf0VZf^DwW}~b+i~cVmN}^
zbFq)gHN-ElQM?^~n3>%@Kn(FN9tHF{sjEcG+Fkhj11wc@WUAt#Y99x6`%|+z&AC$t
z(b`qur~pfea?a#BawQVSanZ7ln3hne6P%I4)ez6@+m+Nq*PxuLr>8K+eBibOC(C+J
zuSN?gUYuPAdO3gALvE?yQKJ-@Kj1g)KGPr-ZFFTZwAGtw#VWtr;;&gmcE_$MTu0t!
zX60&3$6Sj=I<-6>1FKskmtAUc8Y5nu5H56>1f&%ygp<9^yMAv}hifY~#p^<$r(dZm
zxk|B|E3z<hdTy>pPEFwNTBHyz(x_4cVcO}D7gQ%}k3(c&A18tXKkrNV1n(lI_sU(Z
zzQwLwBw+1pII$JZ8<!;&OEt+V)1Z-}3D6a5b<TQktGXv+jpEKOH~uyUKT#`c7@jaJ
zz~?B09pM}5aZQjGLsg65QwvQMJM(kDASP)fVni&K6z)S#fI$}s3YgE=fp@9(Ln4Xh
zk8uuLEo4&1GF7^SB#sBmd)4k`HP>4r6~TC6g%>)#_?d8M*SH6F-e82FdkdiIX1V0;
zv0*h)=8T{66VO)>Kdk0g)3Dx8>X{C1jrrM^C7DIKtR<s^tY9ZV6D%s$Eq~J=L!d3i
z?G4(9m1#{-=n*xdxE5|hS*#~6BT4m#)8>Mzl@Z58*jBErm|pn9v|wJ%7Pq^HPOtMs
zYeP|78fQl_8dmd)=k!&oF8R}(l`E!Ie7aSV*~_9qy5wjnLezhCiU!8&Q<NJ|2XmaQ
z{pPfR=!r{#=u1pu`f2rEI=ZA0K?bCMLQ~v=p*?%r3U%nffnR+QYpVRpl`@){A)UU|
zyPyJMq8mqJ25*I|K&U?XrWjb9Q{=jmlhq>w<lGc%+V6%IrX)zmXE@7xd1nj{)N}pL
zq#dOJeT7tWo(`azEj~zKjoI8CzL4J^-hgBBF5lm3hag#4S^nc>pR*I2NiG@0uy!n>
zeFz1$E|{wt=@-PL8&g-mb4MuW9z;HLGfa>^fC*s_8C~XJi&oGp1FyEYfUwlXn;WY(
znN_WoV_~|DyFSRbaj9!@i)CcJZc8#`Yd#*^Ahvga02sc_j(CAsv7hc2BaBmCn!TH?
z!6Qbk&L^~{+?WwG=k5qq21Kldq?^@xj(}>zIiwjEg}nyKX5O_K(-Z1O!%IkCpX`L)
z?6SS70>HIbFO)4fc`xd7?ZG-U##;}NIgHwOGNx_L#`+Sx&3205mWVKS#x-aCY%(m!
z(;0RQs1L#ffUD@?7{%OfuIplXEQ@g1c3#kFrfnI&Sr;zD{r&?lijFILCj97^am1p7
z7q?4(xItDz?(gn_uJ#i%Z`rq0<!?Mwb{XO;SfbjJ+Bq7;2@F6-zP+y8g*}Nrw?l7-
z)=+EjJ`35;-;KPsDo#=jx{Y%53&BcB7w>7hU=EYHWLn<5-eZ#70cInP8D-QplPl}-
ztmN+({iD}ra)04tCnaO&y{p=^M0b5851qz@G#};vk^-5wvhykxvN=nIzG9INSh<&U
z(qA%YgV<7d^3{^Oh~T_cTk->}rBelNpQ5K=aQLa%U3(J{@7^70=#R|TyaKGg9EgGu
zF>?yT?wCo4kIDd}Hg)4{6jWs6x1r3$Y^0yPw>Pm|O0yL=!AW1~m7djdevBTsnD6GF
z?T2Whe?-cQ%e~rmraZUN{1T}kz;W1kS>}>4QctQ_FRd1zageM1og#T=jjdx>V?(#u
zy>efbBmOsxm<BGNC4m4jwWM){-Yp$UMm|Ae5f72<=ZBn{xfYJ>;@W6=o&oH~9lZ81
zRLn<qlso6;q(&5`Ei(pCRer}a9SNqa3b(&epZhQ6nsP1uOVfM|7b4Z%<r=V&@W*H>
zAGJ-$#NT6yBbC6dy=F&mU;C}?Kq46(5UsOY_iqY^p_<ImO1<~Zc$R5O+2jYhmi$=R
zuyD@ruIwc56r=@NNP_uZL@5_ce(Nyz#>PG+@hE^MT9WK$JEAr5>>KwXw0C4DIkY0W
zxMhT8GxDm5h{EmI9Mx4_BfQpY7CNpG$I-VW&8fPY?}*1f*F7RphJAdV@b-D$<qzym
zvy+{?7CM6AMAgZ96J5H~JKc&nrveW8pBa?ZABnGzG|YcG8Z@Qkh_MZnu@g?qKq%BB
zJ0B*~pNZ57Mv<zoNX<-2^oibkoxvjeqaefO9@evO@|#-mW_>LrrPXD^3@rjD{!EGt
zfIvS+!yy9weusrY!bOQvO95M@p@2{c4B=7Rv8iBg4hSNoy|9e+wr_ufFaCu8@1`r>
zpQfvF@MTwopNxs3pLzQK%UOD-e<x_0{4`wsYoGuBKLFe%xplrs9VXZ*$I!_VYMm}^
zXK!=p9R@zy#{6R8nxFfYiu(<vOhw$~XNaCM1l{BlKc!ViBTi%I?t7){@HXZh{7Wd0
z=Du;FLH|x&-=BBa9X3D}Bxr=0)z}9g?*bI1WZnl%1;N=Br22ST1MyfZCCHw@^iE+U
z@i*TK^ok$2_-M;(Lg*IJ{U%oSLw~!#`vlr3#20Gl9pTRh#}^yn!CIQcQ1_j1_XO5(
z7*N6cYE1IBfLX<pa%=R<ngf`67r^iSfHTN1`=IK-`2B&e(-$_DkvK+^W!IX)gb$O^
zUE}RKCpJS#wjbj~nSRa@Vb^8rOF&T3@{#(NVNB>7-4&!tGFRDjNva+1Emzb*{+U_q
zN1ji>hjX>{eibV=#3QvV$#@datX}vMTPBgov1j{M(Po6F=oxh%obM>MWc{e)S*>OY
z-nX)gS$PK-x~qI9*762BXmwgve|Udcc1KCAJ`vs|OvZPYPV6rn*%Bg06OWu?Q=$_T
zEk?uSbmlhju!5IkCh}clp#!-wwX!dhDwAoFFdVO6*_muvUbP*Ey7V=8=m;Z^bDI<%
zMD=9Q@NdkoIFnCx2?=U0IXg^_yUz8g3MMgBY$Q`ofY9&4-nZ~h9#+v%JL+Y!hZlRy
z-Ed`;QYuApZ)k_rO#@@ghyMBuLTgX9I{Zo+M*=v-3CFH_oxYyftr7X-Daq|$07QJF
zgeDR!wyW|gDkocRN4rFNgi@F&k6(}*N-YP%Au2h~i@teMxa;6*7YP;klwRg`%+L_A
zI4;g#%V+q!(s*U6gT4nj^or^NcK+(ghBBOcy6KQaZ7NyMNtOUDy5OEZnX#@Y&<=P7
z_C`UZjXT@<yFwpDxYN@Fh#GU+1x6+wmW@n6)_r?TJ)|x<^ASo_zSo5O8FCm}v&VT@
z!c1B>8=K?^aam=u>7qS5yEH?8nN1p}pfhG;vt=55Zm?BxR0C3@?jC>yK;U;IzxYR3
zOqNpC5c9<qpumJ*&%Ba6nLK)|k10THzU@qSnVJ~g%f`XXMD>&`mjrK?K!Mrm;(##0
zUFQ5%hXxs`PiOAwDu+v3?g&R(HcNA#E)Um5mF8U6+VqqBUx^y^YQ_TO)NL32VXu9t
zSOe=+yNVi{>%w>kEKBywd$u=kqJ=|G+Mx=}cG|(B`}F}9bOFNT`+?HL+)8DH&||cv
zT9Vlg!0Vn(a>-DEu^s|r!^HN`_5w1`R;Nn|W7edwX@&+o#Kay(%N`Q~HshC1my%@T
z8p&fp8c?g#xNXfcdsnI+`=V<`MBdp{Rp8+=v-w#`U`2J7T7?H1(qI=zN#`J2vq7pc
z@ZG;MDyPDSzO48cMxlS&>PYPHf~w>P7#7<Ud~`_EMc_YQv=WP8F<<e2sZ36tq%-ve
zi!M7U4YEfK5_^BuY!_`|h=sdFmZ&H5-ZN9i=@bixIC}PnD!UIiA4bt~d#R|DkA(uo
zisen^Csb(RzRBytva8;*SNSMk->7Q&eC!7nb1!&r8v4V_x7Q$VGNS%fL8?@Z+@n>W
zOEjNfR#Cj>P>BZb08!Gx!Gn~T1A|G3V7zrVs%=$%2W|li5K(w9K9p^?K5xCrL81y%
zM6Q3Hv}(JryI309J^Hh-yYeg|P{4>v9Lt7H=Cc#*LCmc<YdgJ<7MgA`z2II3H(V;K
z(k+j$QjAzjz~`-QRU(z~i5p(I-5dYS6tdj@J(KGP_}|yC<j*zC7P#En_7nHh^YhaG
zZ%4BKGwz3x?q}!ozq(yLe=c73|GC?h+1zl=WVS6WJbvzXYP53YRN*BzJuxvgb)aBC
zew9B9wi5+3b8MKGoJDznnXaUzqOGNrsi9;=Kw}|cD<HW<Mqnr<3DB?svMCfS8wwi&
zh(nuun*f%}Z?42g7*LoOfq)I33;l&G+#wHGTG;3)8JH<pSeWR-KOWIAzqO4h+yHw4
zYXR96LaQL4p^*~-I^NSV(=ae`o+0^rb6(Eo99k^U=`;04wWpEy+=a~Ui$tNWpGWam
z4F^vCG%mlo#4Li9Z&9ZYQQK{1c^vFSpEFw@M$%UuZQZC>27iA<;y<?()3|*sGX$DN
zG#{Qx9+I1GKOdbbW>6$_KaTmY`pyLS$|FRw>V7cWWhz}}m(wjt!+x1J*8GyCad$rG
z`*R>ixGW9T(rGlIrt`T}(p}yrRl<H)-j<Xs^jR&rz+JUWYK&g9-E_3V|E;FAZJZPD
z@#$O~e404ctc^%-m0Am>*-Iz?{&7WCAGxF^bgVPiqA~B{^XacpJLV6mx7RD*>%H>0
zfeL&S77P{H>xjX-inpJ_Y2o5J9{&++p=cnzkLDhJkWJ^Ubw_Al{dk|Oh$&vPQE$t^
z-AH(gaV)*vEB7$~?sj+am$UcNuwWjFb}q0tt3tg8r+1;<uhMp6q;uiLw>G=(IaQKv
z+kb+6v#G*cG?w#PyX~Xl-Gpv^vvO%E^jY<my2^GBdOhLV(+W71V4Gi3{1@w(uo~QQ
zO@@WmjY~>vFsMB9NYD9Mz}-x`ofXbz=fT?>v0biI%NX=VFJph9s^dP;yF}+!Zk6(-
zoK8=F`Mss$bRsq9@Jx1!h%Rr5v%6G9jQc63UMMkqw6TZg^jh81OK}o^o3=}}YNTYp
zM*GL+S-D@!%NA6^r$+n}4cF1;zDm1G>oI?w$I}|o4*c`$qP7!BD_a%df28&NlP>h1
z0c8~b+XM1H#FhP1j{Gl5lK(HR>}T~l00cnHPYzl=)NCK-PdQZgQx5$fpTqwufN*|-
z(f$|VXfDa^^Mw)!K|VQ#K88Ty!oL~CfMHo65T17(pb_>^LUVk-SL<7=B3|ap!p18;
z9?wfb$_Vc95xMXZ;vslmVu5Y&JGSs&pqUW@tf(XOi$wJUd7pPS0kVN=_)v0wMk|I1
zef`P)niBk81E42ov$jpWP=~VC8X}2<5H;4FkK@}x=kN;-By=5868Q?)IY-XrmjPPR
zYrz;e<X2rsch|1~Z|Ln~Fn&RABXp7^vXK=siy}S_&ZGR0p(;R26WWxWsZo6SBm%%5
z#{fuyu!Q?S3~T;c5Ejtv=}!rpxugG5i6x4m6_~Kkk(c1xzfkT}T~O&dv|dGa;_|Wi
zIFqGSBCWliuEbicr>gOOOMd<B-Y~EFClvm87q?n5#3Lo*87n_3@#-j(w~kz`VYpt8
zQuR7Lzt*(Wo#LglM5&0LHNN%H)2w%L3Y3jLZjffhhEgwjB*WxoQ~{QZ5dn}A%ysz+
z;B8G`(-3Apy5Zu9tA`tvtwt^Dtvhuua`1OaOq5rxX}Huu!=$~shTpYI-&NalJl>z0
zENp3!oLEh|;`X!k!`gLLi7F$=jB@zf%fOL?B7fzHgf-G^NH3qTE#539?5f!P?&Gi#
zKQvrB%_O=PXSr^gt3o$iL_rHLNbH7<U>7-S&%d{~Jv1w92U#l{Iir#sYkoSq)-|%R
zDr3rP*cPeh!~@qH6X%Fp_v5&xAx918e2E$<zcv#8;3f4zDy3y@NJlM}+@DDvM5<ZP
z-2-ZW`0f;;II`x=0?)d~O_P`%el_c1V^UN;3?=lZ6I@J8b%3T+uE-@->8VlNHBMvO
zUam{_+;NHS{y*(~WmMK%(>JZs-67rGAt6Y2hk$f<NOyyPG?GepOM{d&NOyM$(#?Az
z=N$3KeSDtx{`RZ`>%Z3ZX?}ZV&)$3X%<LJ75tOSOjv4<^SlGUhJ(o@PU^^F9BPuKE
z)s5T~LU7_Uz8dQ|M7?!&c@{(d0fq{rlFM<ls1@}Um56jNB6<QYS-4sQ(_`7q5E~2x
zK+)3v7`LNkT!oXMOUUab%6{FFDX~3ZM4ogM-&uVfy!U+NqwQ$)#r#0BK+u*l0<UFX
zM#)6LfLomarw*h*?esgiXN|eIRXu0&G;4F@oPjkLmX~TFnd_W+UJ`qu+bw`HBAz)p
z+fng2*~iLU?)`MQF&Y-%oJcEa{W^cVFP<Bbv8CW+sK~-IvRvSa*bkxXYqUw{IYTZm
zn4gpdE1Xg~R*Pa+7_E}1a5eK#kE#w3@kMRCp3=RIM6VOANR}-!M#U~yYdV=xb$V$(
zJAF~W11x4QOa302tlPL&?J}xY)I4YK70a^L9^!k6iE@LZb2rxN(G6e7XF8m@+|Rg$
z#$hpq_OhG>NT48X<QTno)quV}L6;N>E>^;kFB;xO<*)C@PB75ND1|h88zHrk*H4+>
z<WG{jmtdR3!n5|-Y|mDtaw$q(DW}D_&TU_24mnVcc){w-D(Hnv#YI%g4tGX8EMAyN
z_fz+Ybq5+}>Un?Bh-bsFq3do6`Ngwd+X!o4RuLTV6&2Of#Qo-DI4t<D&mk`z*?06a
z0|9YAG9ipA6vJnJUtQ)vR6e)11!>e~$E9P5tv{E6MMBO>+pA0fKao={WMwi4wHom?
zA_rEf*ikf+hj}yW{pPxDSeZb|EbAnzn&gAv*DfNO`K#7;edN8=WLuY7Ls|)!fwpkG
z3o5zVp<qoRiwxI8oP4kh+qYp?43OlWRYM&V<xn^dw9wzG&Rd|5@WzTkIxZQrO?E%;
zz4@?!OA~JG#6&vU?^^n%1UVr@d$`eE=Vk?lDdVR9!<{8`*Ou)9umk_qlMV2L@_)3^
z8=33sInY>`>VCI^HUPWt104@<&8<6-r++(5{s$m`_Hg_Q<U7Exrq<sMl-qObeyuu^
z-?9TBKu2S#XZD?w|8Q#kTa@nKqICZjrTe!i-M>ZY{w+%Pf21g#6X4u``}NIk{vVA}
z|F<_U6FtZ8C+3O3gJ(aWHR_;`Xc(_e^5W_+^)ww_6U3X7Spx_3>G|HF-IHDODp5|E
zoQ$+I_nRvyfa`e)uO0kGITRZx>_%v1>4xhPYNIqin^zx5T1EN*h}AWTVnr&3$C6O}
z1$M$b@m{y}fdi6(^UganHCOSq4$Le$*6gFax60L`<DdKTRGa82YfLY@iXGS{H1rRj
zP`B?F7HI&kJEf}B-59+_pM}+7)MdlnlF<2bK-pnN7Lj8fhcUnH+EgVxtDI%p#Gj)n
z=7Hv>4!NQR7q9$C<?T*1U`<5J?-A@d<0|#(qDwc<6nfB`Zin_5i!;zdy{JmTY+id9
zpHEGwhDBI~0KfWaxUC8gru?JfC(fJ(_*o8k$cT;&ml;E7>d(|?8%v(j7cm>I;roQ)
zgnm;2u8bhA2<EhDBm`a7kc^jD{pzrU==zFubcsK35G8rn5q|t&O^XKuKdNk5t&S_+
zOk{gZ%GZ6e23Jm!-}J&<m-M}+TiCIDVUHrk>PGiP{Y$3+_{KB|i}0LtLSvUqN}7r!
zsAN5r7pzq;=$Kk9wXBDpVTqZojWAx2pARa>LRA&pH?g4&GC$RYs+)hRZaLZGYC5h8
z9DsE~6v@cX#S`U!1}m;qo<uf*8%w@l+o$G))llZ)D(~enl}qWTW?gfY@sg=ATzn{-
zeZ;i}LzWDTG6q9#7q7|2%eVG<9D&~Ydqfl${!ykVN9L<>gI2rzeJT-Iza`<AMp>!u
zZ0OB4jx_ZMaBUB`;2iB_x{heY1-K=(u;TePqoO9*s{SZNA1=%SS6_~O=GQ6Uq;OAP
z-B>`;5?_4GIjP-^HTI3qSOQvLRi4?=#bTX$f)^6m`}PWCU4P{HcBBUDuE7%{(XEw%
ze5U5f8u0d#1O%KGGEVhnYHiJ^S4^cz$~p(a^{r6O3T7(m?o8edg|7nNN2qmKzLPeC
zk9M>3_^@Q<X=)!+n^I(x<R9YF+=7+U!cU8eH=8|6-m;THFo>DW%PRzvrOA~S7JTJE
zo(TgUaH&`<sXk~Qwjx!Q6sFfM;8hj6Wdhv~(sPKN|4KM7HlA0*sCdY}O$2LmSildz
zB?;2W*gu7CI)a^#7x6=n>h(s`fH883fjF-45-~<t!I(^T%QKd>5uFVTsUQPFAXeP#
zkPqT$jsr@C^<n~F;Kb46x1HGNj1&Amu)Jm(;;6)Yl%Z18pt)x0kLc<5K^+;?zA!-h
z$;V#QXSj8E?d-3eN8>@c(VpkJAzonsPd_SidCysH^VtNXUpZ;mJ3HQAPH7@bLQM)e
zdt1f?P1ROGX7>XB3{pQz%48r&4%)&edNc*p8XnlKf05m(hVC8F6J3zDW^?1x5hg&N
zt=Hag9K=0h346U*_{Uq`3rZKz%*X7`c!N4Lm!oFibdhwFPgXlJa?|CqIr0(-_=L|q
zX?%80lv4Fjs<PiW(IQt(sYxE&hZ`H>`}o2Zt`3P&Ja4URBk#A=#V=|E4`Y$bj6b{X
z^Vi#Hs85SC-6*r`W&Gr_&@}CyilmM`RL13AsECm`M>o5FzFxBmYT4H(KbmeWJ`cOZ
zeQMfA<QO-j5;L-$rAfI4_Qk8Po^hYw^OflZzQMG&y3*oR?=W|Pl4*Glhk99EIz^P%
zlHTB(v6Aa?obtdm->B!oc;nm_pX5_gug{Owj8_r4Ej6i1KcNLKm5e)LhJWU*@~1LR
z7}70Sj*?<aJRzt_^%MKD2FF6xtnG99jvSGtMr2;^@F;^9XOidi{1hv<1oxFwSub#H
zs;$_RvmfmXU;a%srvaCV8yQ>OAd}~pP<b-3q4r7wJeMdNQoAo$xbWP`@Fn@K1(zPT
zT#K5zE4OQ}4{etVopL=L{z$cdlV^#BA($ap+jhRMkWga~b<EMd9rKBxA=?kmB9GIl
zoq?awhSN9LCizvM#>pzK&FQj^?%5}rOHtQK;gE~7OD*AOkD<BGHa-TSAlR=vQb)|d
zo<Vhrn6JJYErQ%T;bzeqbuxZxJ4TW?phk65ny1TC7EdchV|-B6R-KW{hn*Dno=d<z
zLQUV|plOJ;57zSRM2dlsZ6=_D@8x2=0MDxt+|5rbi;O%1Oz)=W;GsJ$&Nqx<qc8g5
zm{2^wU4)tQAIQxqRX+>KIAyk|Q)Cd@?+Ss#;VO_62{KUM%cm959n9!qM)#2#MQkIW
zQX=Zllc<}#SP!%3uI<mp5pXi!G_!E3&OCRAgtnFYhP!bhpOg<SzQkWykmvJZqJYhB
z%O11OZM4yX)Kp!NK}oTD$ky6<;%d*v%HITI4SRO&#BG6vKb_U%W#wW(AB8e9w~}So
z80=SK0-R^7uah0(#w9SE`i=zC$a<f98BVgKRkH`qF%dm=gWneE7E_KO5t?nyohrrT
zYJ?cjhZ0EA$GhHA^gItn@Fn_s`e+DsRxG<jtBOWj_C4Q-rxoJTHB89Hs>G%n`+y&R
z-fBaJr*{Pk{21E0s}oG)d2Qmv9_NtRvwZ`)zCZ@+Y>^MF+S;2jMY9tWko9ooEz?!c
zyJ$R9KQhLod!~-9dNA5Mfa||&a<&1b^2{|wgI1k%HR@|T(!c2(m!B6SpsCzMKPEmY
zHVBtglI=WC+NH*t<h_bI<wr<?YO@;3ObGR%xqOL4?mCj1-dSaQ-g?xS(bsfj8w2r$
z#Y3yzQI7ptUe17#=Qq*7wa-wS!qw>?-UD5HCRFra9!S?2tn8tMRn%u6w}W=5sBO|z
zD(mUeoPHGy+KECmPzT(oVURtzUgT%!!#}Yh@2>7c_8Gynypeu&>WaMul+1?u!ltd!
z7Mx?xl00#AZr^IyDe71>DZty8<c%it^p`r4bVdWv))8!B_8^~7O4Z;n*8NZ@aRP-*
zgF?LQD+Y%lNZRv-d_1OWKk?@?XqyRc{m37?!bUbh!5JeLs)bMmfFUw@VDv%p5cvBi
z%7xJrY=TYLo>Z?oG~p9Psxy{@OoY^;45U<>rV#4TQ<t7~o<^4RdjU#xTHsZksWUV%
zSEm}va{J|C#b~tgc@8cf$XA7`MqI~2Xwus*EiO{TH-$FBF!>8hlbr9AD97|bUA51e
zKI;e|n13;L1<LTHnk(y@ryNJXjjqx=SsOWX=yCi5O!|w?FKbw^3kw~?s3(o;D25?p
zJZAfk0R5Iyv5v2HFSe<GF+zFrv130q-njIPmB>)N3*K*Dz!A}3=aefASUh2h8rm9i
zl&e16Aqkg5RTJGOfLmlap!<r(JmbBmB2E)pho5eYC~Q7a62t|&5GE_WTDv>B+a7TP
zb)FLG&02MHgM4Q3BP=Ea@SaF(_H~1R0s*Z7KE~gAPksrD{pCur1Ndrg!((<o=Om~{
zc82B&BMY3kv`wXDflMLm$Ad;%F_0|5hBWDuL12-dZq?=vZ@y^X_d$N2mv?$`q9#2e
zaUn(Uqzi93#l1r_G>$|S6YP=xb6!uFE&G~^*XmjzU>e!L&?bve;s)fQTyQ$;SiT5>
znUmBRxMnXAgv@YFo}=<^%N&XG=7G}7BfKIT+(fBwdNOJc#wW^$CbNi?>C~u&3X#@y
zm7avah4M@#01my-y_XSUrBQ-qIIfsOenxny;8;!1XY!17>aikgDAO_zn+IVFa-usX
z%$yuP-CIa`zxqR6n0QBLb<_DA%tN5Ut=&k4q&4{l(ZMYjO%+@y;t43H8((HTb3^CK
zNEN`dfYCBik1s?;Uy`7>=v~MC9T!7t4N|Nq>1AbdQFL~lkkrPt669Sj(H$;qVpWJQ
z(WQf=lDC(|q;YrKG#r#+N?jy01p-sO(!@~r5Cf1lnOrWb85@sdX%3g)E~d3Du91(9
zFYxhUagtU@fFSKI6IDxUM{mWrIN6L%=^IGKt@lbRbs^jOt0p_MX<EA_h&0K$A?jTP
zqxa<{7*dOps`05aDxTRvlDaJfU39C%>QjADLf5l4tgk%2u4{-xRVm0G2|6y>MMk?o
zV<-9~=?}ylq+~HzU3cn=XF2qBqL9PAyM`V&t)HXntotKtat72@d_zN~A+}<IMk46P
z3*_0+bCdMwfW6J;wke{o;-~fSc_&X`5b^|V3v!AnrZ$NE`x8u}W=`-{p~+pA`cFMK
zXvDKjC<RQmg!wgO`ji4zP`jB(MF)wzO;n+p)oGBQNAP@_UmC+d@G2goT?^lNEhqIN
zQ+H{ii8*H?X{~i<5$h6s_oJZm3R8U8AvvJ0aDLTfQmV??6~`-L8~=K+vhcZN^B}Ji
zro&yu;faJuu)H_j0<3tFao|+sw0S!SPK2zU(*c$~8=Ja<3Q!m9g<in%6h@-gHeYik
zQdiI|1xIj7i763<%o%QMCPeTmwvfxx76>`^88KCk#Rt4EaEgqVZVJxuez-+}0L$$p
zy|@Gr`~tfDsD8WLegxV6@{8^QoUacD+UOvEtn5X=b*}=1J#X$Y5KtKO|3{$hkFFiJ
zLAD26y{@tC5oN-tz9(F5+kvp~lG^bOvBC~zNP^0q@X1*g3M1w5*QD=Ita|a`I<EpQ
zcPjha0!xjr{n5;nqUCX`7M1o`!E$p+#<==boPZUhL4CV|f%3gjjGXZDRwCYgLL}}3
z*_uItd5npX$n};IfA_+Y{}j~lrPg_h<YQG%uhEq}l|5=P1l}IK_knYu#z=6lZibJ-
zElTO3>Sa)-FanRIWP!#~mLIcUa;hj-Rf*78x-Y^*E=o;1mx_J1@mleEsrn73x@Hm9
z#Do!!_jyx;yBFtWXcLc)G(^Ip*D@UaMx(YQ?~*XKu^jez5m~vK0u#I88_F9UJ`|5t
z@aCe18}mnJwJGi;WvITYd>-9(j2)rx!o7&CKkWm7kVT^@?kS{tUza_Lfgc#9mpL-x
zFb_Emm(=5X;=9%pyg8d;t<M%czzm(GXCI^6iut%#5bw-b1B9SbLjLFl<`jBo!#rB7
zTLkzO+l%~;S>39EZ!AZf&_UKJ3&LEeDtsRg9LS!ZqWdqaw5<~@#QJpl=F|GAzdE4|
zqwOwm&Pnv3JTZ=Ph=i<1c_slhWLNFPkC_Lg-}J2y258C&l`R8h+9QL>9V)pxn&X{*
zgfWkhz8NJ<k<A8&(8Ms;_y|<(8$K{Ln+1X|N|4&<!nUSbj6=ERQ?;|jdG-Dla~6I3
zsO$WRbnEejyRL-UJBQ05%D5oQA)oz-25g$X3^J$S5>cb5*%_5ByqZ0ScZ8Um^~(G_
z7@CGn$PF4Fr~2M_R-AE{GbpM(7t32&bVi2bJ(47#SLKC+bL?0l)A4B&$5&C!G$+(O
z!}9hDX8j1wMWc7c>Vb4b3W@_EoH{4v1Y<jtb6BL!SplvH?B1$THo7F7@Pms4!{t0w
zouU@zmZb7<)87)#1VpPV6XU8AHE|0*Cq_LJk&Bk}@7wt-IbGz6zPQ`&Js_PRJS=YC
z_aZC5Z?L2EltUj4Ke0iLE+uYmR&7@n%1Jr@{98iCQo>Oj2%{|dC3}9ky6U29|G1g)
zl!i~Gpj`%9Vz}PBdd^By!89+nx;dfEotCE*v`8_$oz1U`TZ!5&fWgfL&YA})h?)3;
zV38RP4PL^(0xrywhvjj=O^;Qe;`Y{EqA5n+ZV8B{6o9<|c>`2hgdsyE8U@+S7)e~e
zNFKPS&84-?9=i*-2S%f&`6)Mlj)1uxC2tti0-ffF`ngn(j;l14%dUJ9aaAiPurk7R
z*6A?@H8651H2W!YO}xGeyqCu6nas6#Qfom<2$S1d)W~sadf_AxX8M|)O0*c49FWfT
zwiD?)c9M^Bt6#*<#nCRdX2)WD%2xx11v`}5lyp>#Tr<ZhtqW+xD5PkYa-tFFlVp<%
zkw9)LWKR7=NmNH+!INX%*kqq-DxZHCyt0s&1wZTef)fwYH1>geg}6C|yT2s0%%(7#
zO3@##d9&{d)R14bn{iz+XtBVKU(t6857qg6PUJBvYw~LHlUJ)ji&qmh{q9fI`S288
zw|$m-uL&LDJcm;g1agq%`zrLY{kc2H&dp;1nM*iN8kx(;Z@MQA2C)H5O08_XCt;b(
znkk~icA{P@aGwa=;bSh~k3p3Yl<StfCuLmDNgQm$vm6Ye0j)L0R#_MZ2GR2^SS+$?
zVkgwM;4f>Qc>zNQ*Sr+JVc5??JvDGhqZXs&sPb6J(Op4T1)Ue6P!OFCv)hT%LaGQk
z&&KynD5S(H;b(H==A6um*-Gt2n?DpK1ENY9sNpc=$lA%Wca*QJMAz{%Lti_4(?Au=
zi)~$Gf#gKe2hF2vA-Wd!4V6nEzu9HdZwQ~HOtzX&&O<pD=~*lTH|^%2JL+X<JIcN>
zthFKS^I~mtn#Ae1HHE{0Y3W)FHW!PO&*z6B3mpBMd<+7YqglnEQ({dUHXt%Ym*>Yb
zCpt;+>#2I}X|jvFIlD-$)5$W9#<@l7$8<=9mC6IUsa4jO$dA@$U=m3EKRk&T1Fsd|
z35H<|)&9C%cSd4fnX{m1k(yOxOy~F3sH$D&4Vg_h)6M>>6bL&{>}5?SNwf9oC?<g|
z0cM8dXz!N-8t)eYZ(?gSnu2+bRI|@FGaBvKyL`^33W$_awRly(rEw8T6G1mZR<bM7
zBppUL_2SUVj%Ex;JFE>n=`f@}mrmH8mZlx8S5B(dMYTwsVqi$3w2l>Db<y{e4Ul&w
zdR+ga#m&_R%{F*4w^@qB_+)3G<1NFKq>1Kyi;5CyXyw#Pa&_-SoCZ52Di~AJtbmWw
z*m0Ux3<_TZA4`v(<h8$#m0WHaV4vR(9!_eN2^`+7ET<Pjt)}4nGTlvj#loRzK}guG
z=-;v-h~{&Udft@_PAplykM%j3M&acF#77JT$6$-{-1*05B>tp9Zmm7}{7te)Z0{K+
zExnu89znw>%NKn$R`JderoKsbh_In`A{La0AC8V9+}!efACDTtN0jQU2S(*!-}R<d
zQ+J+GnYnv=;M)ihv@Dg3n^XKnGl}pw$z0wFJ46h*;h>@*h_Bm}A%34#BV8wwS0XvI
z;3APXIMt^F35Y9=82R&G%H=5?ARU*oCFx6oAR3O7l|gAuba#SyaQ1>_+K4M~hHZ5n
zw#}*&6QtRUBdu-rRZwU&u|^8h_%a?sAnSUJ+9dZ9RW=_+oF)ZB88REH$}y|6nZLZD
z$p1<|@dB&NKIvQ3bSp<pYO}!;|GER=n1~u3r=zzb-DgbTMf!lc!(dKKu|tdotWri9
z3YBR)MAf5Kq5U={or}iGHR9=^{`rGX>mkrhEOe$1H1bo?x5s4Bg>10()ym6HIad2U
zUvpS8gRT)l?dvd|t3@@gKm`$QRr?Ze`E7MOFg5kcqake~D_Y>v(>8^}IJ#u|3vrSg
zgf8Y{9o1n*Uuam@JAWx*CPW>88D5l966dNzZFf-cmB(>6tAo}$+@{?T4W@oEpHsOz
zi2ua-G~MQSdsk>=m;zB^oIPBK*l9(YE`eq}RQOr&8d<b@nf|2WYV9UJ-13D3{=4QP
zq0qT|iGyYUJL>frw(~K-ZLR?W1cdp3$!2X~VXLDB$Pv72bT$L<kUx-{<oa3&E>Ajg
zJ6V(7c?)UaRgAx`bswj7A4!}hPs54mt_b5`qMpJ)R)V1XiTm{dC-hCs;f=QAR5Vy1
zIL*zYOSp8Ah`Jf7?p9}T$w1)fW%@LC4AAH~I~IspEV6|~>uY8lReNhiB1$=`5ur@b
zU?u#|AO?&3xezt1yw8$zm`6`4g6lnd<ZEt%vpr`+nYNDBwE8Nk-h$Fc`g25pwSs?R
zExvg|`etXJ8m?Yq@#5JzB3eK25?-Yd^nPp}l}{rWTGfrEgg4tY-U7_w+cIc_>Qs2i
zWrmm6c@?7>bMvFBJZD;(Nf+KmH*iC<GvHS@@`PxI4S6b4o!4RtiyqtH*cQe>XG*h<
z4Fz8s4_-H#e6-)^!8t^tz>aH^Ka`2qTekh;M#NUVX#pP%dZsD4XeU@!AIWpGi2bOr
zk&Wod{@caTl*zu_(sw+SC4Kw$>BwtT$-ps>fbhRfKe^t6j3dHTPBhF^cg34Vo9x=q
zeFXDJeOvVf8FD&2G2HQci5Uju(nYJxPfQg_xdx<FC_Gy=%`2?W3(I9Mh@ls@w-_c7
zfO}>gTkRVY!Wdoa5d{~P&zd0Vpo_S?G-toE6$T>lapk^s*Gdaf5fl9+o!_v_Eev6k
z>j&>B)o#v1=EaGKbtGzElI-hC_$KX@{<NAVpg&6;*Ra8fUOEfvTOcnScr6r3ZF5!a
z+=!r2!rT5VDJkcWhekcUO^V|NXaw}wc)`w(+ohX?_o@L!@jIUa`LKL~!cv*)0hbf)
zbS`<k<uXA#bZFDWpmt;}Hnw91sr<16DR>3hu_XC3yHOo*g;@f6^s!;n1vQ{Qi#-Q-
z>7n68>k2{{kclmva^!e1210@2dWd0Tc6%w+A_lQ87=0K!Q*#bSi|V{fI-6XUo|-`7
zlGymxm$h~;JSS_Z2n~65+$bveqPO9~32KEbi|!Z#gf;oAUNBks!$W8@7nPM=L}BeZ
zy0W_*-e<-ycC&(X#TX%6l?{{Ux8DTXp<erZ<YOKs!%NhB{Xr{n0ZDjP*vi*cB~1%`
zP$p;D^N`_s^QB1PTOy_w!-~eKtY@4>-rO8wq}RC+dwiL83y48o*xZ{USE*}r?Z@!m
z_6|5wKKo|SSMZz|=Fnv#IQ<JM`MY1fR0;Z>Nl6^pM>VVIeul@_e;cpIKM>zXK;Qpb
zl^GOx60Q=%y4`X=U)N2h70w?-dbwgDYr3>|0W-*kXO2R2Br`dq;*qy#-ssnfD3a3`
zPn{Nmo6E28%bL=~@R*+)!t+ISx1dJ0s~jz;>ep>aA2`j{@~x}nP~?SPQoOZV?<GgV
z&ebJ{E-|V|g^`TmD*f{GWkE(>?{Xlh2;z$=)dgNSa9u5)q%=!GCwE9nNyc`!GlL9E
zaO+HrXB2=JHFI&j?}>8UU|Nb<k_<PG)^Q~zV&|P!qOLD6m@-bHAm%QurCbCv2Aqc%
zI*y5PrL?%}*FSs7pFd@k5mQr|EU+sPEG3P5mmJvj(I%e22-Qq`Pu`BAZgTW<u>SVA
z-q@z&8ZU|B7xtEo(~BNuxXj~2B)lk1uVkwt-X?g#`l11`+C1oRWx>T9I+I}s=Mg^9
zh%+2fDbGH{49b;^0G0#isS*2ytE)3r?uv{_>4dDTWI)di&1RXt?spkJEIjqXJSER#
zv?7V|R|p%$qCujg>4wYPKACBlr&r|zu>@wb;T2?{Z;?JPgR6T}2%B)I*rR-<JGxN!
z7{iHfNts6GbEYHqOh!`=0aYa2YkdmcEwCrCJ<CYRaFdXMkMfx=5KlkSyVj*ew3t7B
z>dG4|*&KSEOe~?7CC90}CJ9O&An*C)m3CA*;S9jhg}oaBbZF=%7BLde4rBIpiGRl0
zlstH{Akc;fO$W%Ka<+Gzhw^+0oLxx;xP`6zd}KWa(jd-LZP_{dO(<>*X}5H%=YCj8
zK<MX2c6j+4|I;ky8)NqczOzLPG)wqmfm3%UVCQQ<D|LEvlzG1NXEwyVJP<`IzRH0@
zB_Wfq!$6NR_$YllbYC+$d}yw3O?s;Wh)1M#<*p}+aAN1Y*6`KHUy@I_IE2^4Y?RVE
z1U1!hZuDQza^?xxcgZ-gt&|x@ppKs+xQNrcz~L;_bB;o$N22uxci!C?wXfph{7{0B
z|H6v2{QU+)_D9Z=t6HNtdprc|-C2rP$b3sL8CNGr2bPXAmt05Vuxl8rF4(mA6DVew
z5QLwIK)a_3XI%>-pM<c=UGy@D+ta9VD@4$O&*q&XYeKP_S|kKC*FLe0(Z|u5-z5rx
z?<dXF(9}&RS9<@#vt(qIpB!$%+xJ_3r0vP4Q)&nGPJH~ich2;<42OiZWFRslQ6Lih
z<F?K+#W6;OWQZs|##5ZN2@O<lOH^KB)L)Zi;peJ~j`@}ul-N?+_98|uyiud}!T$v5
z)PzFwNU=fbhzyToU4%NAluDe5Z9eSEcs-%F5h6`F0CC`eq(QD~bL;Us7cyOFF*8)5
zpp~tjBmsghGohx@{Pr~z8Vs|3Sfrd`b0E7r{@4Ibv2dH*Jh7p2KCwKYt3fp*%>E-T
zNf$rp(+i#Lz$hlq0(8w&ePbqdrEXKO2*o~bz4dPQtTQM;t4;FMX$>AOS+2&nt1Q__
zFDEM3m8^~^xb_oUS}e(lj6y=*UL2JqA1V%EWKpby?iFgJF(GFRy1b^*FNAPsh3O`R
znVzn3qAI9;fhyClZ9yO5a)E$d-lJ<Y9kXJPHnBuz$_!W1;jFy1*f&!I-{g2<I~7Nz
z7fJ2nnzJ<}qzN~%b38>jGHO(?Tx=>I>_!;<HF<r^$Hm<pwaUaR;C({)*UNs<j)sI`
zrOVvUkYso>78Qovr&<RoGWNsjmS1b&yWXsAM#IcJJK!a>JIpxBm1*ej2-lrG1=udW
zuf}2@(>)(HP*jDX?bYDq0vE)db89#ksjRmZ=IE*AP^WdTGFjBHNT+7)LI~A%eiJ$5
zT(`HPOSt|)VUtzR(N3wb8x^Y$EQYC!iVwLx;9VS;1UW09!jZR()_^m6t|u?au>EA4
zdaF?X^hd@5X8R};>+b0^^E!(bN&hD!B0yLK>;_(S24A!1i{D9s5vL@;BgxEu+JxVM
zkO<1dSU)gWQ18J*1g%Q!8rY5UtEzt?9QS&u#?f8F&l}f6r&=|1{X}`BsGMqmj>=9B
zSJJo@i{K5x<hL&Dw?1L)=OpqPMnGfatS(lX7S2}~s1Ov!V6}cF>&J$*40A8VzYGsO
z>2`sp#9L{sVFR<PQX*~tViM)4g5D6_dF32B&p2HR_g)RG5rj#T#jV$OC4)SWy$gAP
zM<oX=U)15Nj8@`FP%5ODHbJnJ#49+vJdf4Mb+cC30J)ZRSgTF+)M04+=AL(4?g?Mq
zI=;-A1p=O+)bm}j{_x1H0W8UMiTFlzfafn4kou1MPnM+VUvBkgfCKLK`@35`y1Fz^
z6;Z&oVeu>otLJHmL9rHNf7$XA_=BhPhJ+0b{nayyvDKvvxdek9Jnn7~yb7<cJC&cG
z3PI*;?msHC!}%Zw5}XZ6kBB3EvYTn40F1zUsPiJKsry)o=!}*9n=1+dVW5=ZgmzJo
zE;PM}fb551f0yfbNnioKFiyTy>+{jC=}O%TuW3Y?89+CmcEgWob=fOEa#hon-!2LW
zKh{L(a05fa8h4i<cz%525GM!np8pY90NeCqx1BzoM7eZ8nNeJxJ(C;XW6jfU{cl0b
z!sTv_gCKYyGO?*-1QU%It1e>+QVRjx@^tgT*6J6$<*rl5u3ljJl67GPH7s~~r^&hT
z+=XY|4LCT`iYITq{0Ef_rGmr9`0d*_4S1M|jd;VFH9NET>(aQzYuxh-qwOnJ6p}X_
zH&z)>hgQJnk{;8V&y_<bq>1BrNN^IyBurQdpe?gIGmu^*DO_@mz{#zubdBWU`PAw<
zgx|=YpBh@=yo)bCrU;Eaf)=BCmpc8ay9tSPd}OVWshT|48mBooB?HAxh=ffxlY~&)
z?gR4qZcrLQFwg>uph_@Cp#JB5Q>q|@m)Ow~j7WOGb{HluliyTUt;Z;}Ws%~WhPE!Y
zJT!nc%xx!gPU_p0LZF=zi;FJV$Ll_Mup{IPDl~8T;Lf<RF%rj=`f`JCsHSW|B(Qf5
zda|q_V+gc~A=&3_*r~8B#c<%1xR_|R*zJFz4y9O_ZTmpS_&npuQ5j(Y`D`$|mArHQ
zqbS>)&;(S$0{z#sm8+PF=T`_e@TEot2gZ^WQl2)r3MRFjHt<3=RHtSJ21>nQ=CrR$
zF`~OcdR9VJpwZV{4SSpIx_bEM&P73O8?Xv!H0VDl=vtdgtF>1OXDAf8q)b;zG20TF
zxzVMl_OPBkkxZ2zUFnQ|<e20C4W~Zyv7~e1$BA)eE%0-|OIk;iY2vHGSt@&0O3hqk
z!eLKAaZ!42Zhsn?LctqJb5l;!uf*C5k)1qzQfNzOr>(RNJwb6O6#WHRDs$|Q&c_V|
zp!R!C)+A$H`(M0lOPvs3-T-s1H~N$VOHUXeRl=tOP3~81#VliWR+cUNqJR;)<DDy`
z!`HK3poYr+Z}TYyk5Kg{-4oki4_C6g8rE6Wn+3gVvtdV<s303GR-~<>j60Vk_G2jx
zUh+n+)M<OIv43%X%(ma8;YfhUT;uQD&(Ox~l!t%_sjjrlGEtZDbOULMqB+6gbM>?6
zZ{f||FYCi<Qopvy(R8AG&<dH$FE4gT>rhx6u*U@hw<0Z|TnWy9uT}P}Dmh}-UV6qt
z#(Id{nSF>at^j|&-_7Xs%%gQt00PeYEW$5bCsZz1S2q~wr3myRM?tGekZDJ?SvVn6
zbEn66G|1585Rr-j>qf2;Ht}B*YuPyGxH%H|JcaE21fnQDQWKOX7eu(i^BEhL7Zg+3
zz3lyjO$(wk7imUOy}e@U8WI{)iE;!2P7l+&jE;_})ijI3<(RY+g0N?moU<*U9t5ea
zR<XAwgdxfDg4dZQHq2S3q*pSa;h>k18WU5qf?m~4y$XdTW43T)^Kd8F+0l!k9aRtV
zpe_Ngl`gemDKTd2z?H!ZMUzn{s>X8Owy6zLXV7+8dRJ$%GC@tTsBR^9EbYA1jm4?b
zzW4?4G@J9@lR%gv@-?W1RW9*2juZPHI)q{v&KcD_d@kMI8l&Sh>v=LI4s(dvr)U>b
zJYU}46op@ZZ+CH*gKiDjZ|^6%<2<n6-iB9xPHkU*`11ZEhGP#Pdq0NrAlYA%+4lfs
zAK1ljbJ71HXoLR1kbg>FzjZS_<ZAdgI`eOI=HKYdztNe0qci_TXa0@O{2QJ5zZadk
zv+->IW{f>_r+y%XX8U0y?+<GX7z7vej{NE0Oh|Yj^gk?0c%U7=+n)w{=6cpzwtBjn
z-(hGK<iUYJmwvsjON;%WdYhW#->y4)`y&4K!~KIQFyME(r|1Jzf0(ISwzhx@Kmd#f
ztiJmgx6X$9&-pQa!ua?Q#-BFpck&O|s(0k?p7GzZpvu+8Bo82@3iy5|4-4Sr?}GV@
zg?}FX9r<bid0lg`3K2l14hn#~1pBAaS3E%eHUvj~8-uej*Z+=S_Mhh94nYBc@LpwD
zfDzCqjt1j4tamrFw{zg(DG&B51AhehzCVKj$iD=jLVt6~+?W5YfbPrxKK*phDYRed
z|4`F^me8GM-X?AWhWgjvpE?8tbgP+60A~I^0Y4>f-s$OW#^yipaQn3OzMfLulTo^7
z$Zs+JnsS=IwDy6#wfj=L<;w1}pZA~nail*XLICFJpSc25X)(7m)7HCNBL9)SI~70$
zfE}bbwF?52Oca2~@DrHnZ^7;h^e5HB{!e1P!@U(NMI^u2?fl6AzMq-I#r`dmf8JTY
z>&b5<dfW5yFC_u|_;U{L^rY{%V0z}db~bv})Zex9PHS!(K0c^5ckIys5NB({HVXfE
zXZGx#SUo(MaDK<$&xqf_4NUFqXe_J^X#QM$!v8!31;7x*3Co2`0V5g)0P^1(Lb|64
z>3=f>fQr%R7-|`rf0us5KM&;ZkJInVBHc59>%SWaAlm@25&cI6xSI}ffGm7FD&uhx
zfq-@ZI?eNwEIRoAt0DX)2ls!L!>^r3|2#);cUw)x|7H;1`;Y?U@Ef)KwGQ8p4L{v;
z*!jO1g3fJG8o&^4tMdKB%J{Vg)ekA8d#ZW<ZV2}`oIfg30YD!}xxc@q-m2jJgNW>>
z`FHX89q8YVrQc}VujPI2OL^(HXn$kz54qkJ`*~2VcW2?R6)o<|RWIm&!s0zAAV8+K
z^)3DZ@Ym`V_qpu)J>Z|m)Ll+D0Pukf>-*-`-}e!cpC*wh_;(!s@EHQIelvx?z7zhz
zoQJ1+#P6_vp29zO?Auqv4@&fIm-_V`$`8<VPwT}09q8>I{k^~kfZP9Q1l;M)uNnFG
zffrJK2mE7s{56-i`T76A>aU6U_YuWYe~0+9e81<M0oeSH*MU3v{+h*hA2cfGSJ3-8
zZ2<bWIc@*I)UUD4`}Aka{(=6Fsrrw1j=QP))t`TdackbBdrDUSit)n${a&~Rz{ah2
z|3NnHAb$1j-)AG^A&6g=@~x-;L5RDV`1|yu|Fo2WYkuY8r^Wjp=lPC-U+=^B8DMDn
hmHGn;e0w|og#&Ov#2N^Q5b%!z2Y68epacZ;{{S|>mJt8|

literal 0
HcmV?d00001

diff --git a/oxAuth/Server/integrations/ciba/FirebaseEndUserNotification.py b/oxAuth/Server/integrations/ciba/FirebaseEndUserNotification.py
new file mode 100644
index 00000000..2eda0c4d
--- /dev/null
+++ b/oxAuth/Server/integrations/ciba/FirebaseEndUserNotification.py
@@ -0,0 +1,68 @@
+# oxAuth is available under the MIT License (2008). See http://opensource.org/licenses/MIT for full text.
+# Copyright (c) 2018, Gluu
+#
+# Author: Milton BO
+#
+#
+
+from org.gluu.oxauth.client.fcm import FirebaseCloudMessagingResponse
+from org.gluu.oxauth.client.fcm import FirebaseCloudMessagingClient
+from org.gluu.oxauth.client.fcm import FirebaseCloudMessagingRequest
+from org.gluu.oxauth.util import RedirectUri
+from org.gluu.model.custom.script.type.ciba import EndUserNotificationType
+from java.lang import String
+from java.util import UUID
+
+class EndUserNotification(EndUserNotificationType):
+    def __init__(self, currentTimeMillis):
+        self.currentTimeMillis = currentTimeMillis
+
+    def init(self, configurationAttributes):
+        print "Firebase EndUserNotification script. Initializing ..."
+        print "Firebase EndUserNotification script. Initialized successfully"
+
+        return True
+
+    def destroy(self, configurationAttributes):
+        print "Firebase EndUserNotification script. Destroying ..."
+        print "Firebase EndUserNotification script. Destroyed successfully"
+        return True
+
+    def getApiVersion(self):
+        return 1
+
+    # Returns boolean true or false depending on the process, if the notification
+    # is sent successfully or not.
+    def notifyEndUser(self, context):
+        print 'Sending push notification using Firebase Cloud Messaging'
+        appConfiguration = context.getAppConfiguration()
+        encryptionService = context.getEncryptionService()
+        clientId = appConfiguration.getBackchannelClientId()
+        redirectUri = appConfiguration.getBackchannelRedirectUri()
+        url = appConfiguration.getCibaEndUserNotificationConfig().getNotificationUrl()
+        key = encryptionService.decrypt(appConfiguration.getCibaEndUserNotificationConfig().getNotificationKey(), True)
+        to = context.getDeviceRegistrationToken()
+        title = "oxAuth Authentication Request"
+        body = "Client Initiated Backchannel Authentication (CIBA)"
+
+        authorizationRequestUri = RedirectUri(appConfiguration.getAuthorizationEndpoint())
+        authorizationRequestUri.addResponseParameter("client_id", clientId)
+        authorizationRequestUri.addResponseParameter("response_type", "id_token")
+        authorizationRequestUri.addResponseParameter("scope", context.getScope())
+        authorizationRequestUri.addResponseParameter("acr_values", context.getAcrValues())
+        authorizationRequestUri.addResponseParameter("redirect_uri", redirectUri)
+        authorizationRequestUri.addResponseParameter("state", UUID.randomUUID().toString())
+        authorizationRequestUri.addResponseParameter("nonce", UUID.randomUUID().toString())
+        authorizationRequestUri.addResponseParameter("prompt", "consent")
+        authorizationRequestUri.addResponseParameter("auth_req_id", context.getAuthReqId())
+
+        clickAction = authorizationRequestUri.toString()
+
+        firebaseCloudMessagingRequest = FirebaseCloudMessagingRequest(key, to, title, body, clickAction)
+        firebaseCloudMessagingClient = FirebaseCloudMessagingClient(url)
+        firebaseCloudMessagingClient.setRequest(firebaseCloudMessagingRequest)
+        firebaseCloudMessagingResponse = firebaseCloudMessagingClient.exec()
+
+        responseStatus = firebaseCloudMessagingResponse.getStatus()
+        print "CIBA: firebase cloud messaging result status " + str(responseStatus)
+        return (responseStatus >= 200 and responseStatus < 300 )
diff --git a/oxAuth/Server/integrations/compromised_password/compromised_password.py b/oxAuth/Server/integrations/compromised_password/compromised_password.py
new file mode 100644
index 00000000..f52a00c9
--- /dev/null
+++ b/oxAuth/Server/integrations/compromised_password/compromised_password.py
@@ -0,0 +1,223 @@
+# oxAuth is available under the MIT License (2008). See http://opensource.org/licenses/MIT for full text.
+# Copyright (c) 2016, Gluu
+#
+# Author: Yuriy Movchan
+#
+
+from org.gluu.service.cdi.util import CdiUtil
+from org.gluu.oxauth.security import Identity
+from org.gluu.model.custom.script.type.auth import PersonAuthenticationType
+from org.gluu.oxauth.service import UserService, AuthenticationService
+from org.gluu.util import StringHelper
+import javax.crypto.spec.SecretKeySpec as SecretKeySpec
+import javax.crypto.spec.IvParameterSpec as IvParameterSpec
+import javax.crypto.Cipher
+from javax.crypto import *
+from org.gluu.util import ArrayHelper
+from java.util import Arrays
+import urllib, urllib2, json
+
+import java
+class PersonAuthentication(PersonAuthenticationType):
+    def __init__(self, currentTimeMillis):
+        self.currentTimeMillis = currentTimeMillis
+
+    def init(self, customScript, configurationAttributes):
+        print "compromised_password. Initialization"
+        if not configurationAttributes.containsKey("secret_question"):
+            print "compromised_password. Initialization. Property secret_question is mandatory"
+            return False
+        self.secretquestion = configurationAttributes.get("secret_question").getValue2()
+
+        if not configurationAttributes.containsKey("credentials_file"):
+            print "credentials_file property not defined"
+            return False
+        self.credentialfile = configurationAttributes.get("credentials_file").getValue2()
+
+        if not configurationAttributes.containsKey("secret_answer"):
+            print "compromised_password. Initialization. Property secret_answer is mandatory"
+            return False
+        self.secretanswer = configurationAttributes.get("secret_answer").getValue2()
+        print "compromised_password. Initialized successfully"
+        return True
+
+    def destroy(self, configurationAttributes):
+        print "compromised_password. Destroy"
+        print "compromised_password. Destroyed successfully"
+        return True
+
+    def getApiVersion(self):
+        return 11
+
+    def getAuthenticationMethodClaims(self, requestParameters):
+        return None
+
+    def isValidAuthenticationMethod(self, usageType, configurationAttributes):
+        return True
+
+    def getAlternativeAuthenticationMethod(self, usageType, configurationAttributes):
+        return None
+
+    def authenticate(self, configurationAttributes, requestParameters, step): 
+        identity = CdiUtil.bean(Identity)
+        userService = CdiUtil.bean(UserService)
+        authenticationService = CdiUtil.bean(AuthenticationService)
+
+        if step == 1:
+            credentials = identity.getCredentials()
+            user_name = credentials.getUsername()
+            user_password = credentials.getPassword()
+            logged_in = False
+            if (StringHelper.isNotEmptyString(user_name) and StringHelper.isNotEmptyString(user_password)):
+                userService = CdiUtil.bean(UserService)
+                logged_in = authenticationService.authenticate(user_name, user_password)
+            if (not logged_in):
+                return False
+            else:
+                find_user_by_uid = authenticationService.getAuthenticatedUser()
+                status_attribute_value = userService.getCustomAttribute(find_user_by_uid, "mail")
+                user_mail = status_attribute_value.getValue()
+                self.setRequestScopedParameters(identity)
+                isCompromised = False
+                isCompromised = self.is_compromised(user_mail,user_password,configurationAttributes)
+                if(isCompromised):
+                    identity.setWorkingParameter("pwd_compromised", isCompromised)
+                    identity.setWorkingParameter("user_name", user_name)
+                    return True
+                else: 
+                    return True
+        elif step == 2:
+            print "compromised_password. Authenticate for step 2"
+            form_answer_array = requestParameters.get("loginForm:question")
+            if ArrayHelper.isEmpty(form_answer_array):
+                return False
+            form_answer = form_answer_array[0]
+            if (form_answer == self.secretanswer):
+                return True
+            return False
+        elif step == 3:
+            authenticationService = CdiUtil.bean(AuthenticationService)
+            print "compromised_password (with password update). Authenticate for step 3"
+            userService = CdiUtil.bean(UserService)
+            update_button = requestParameters.get("loginForm:updateButton")
+            new_password_array = requestParameters.get("new_password")
+            if ArrayHelper.isEmpty(new_password_array) or StringHelper.isEmpty(new_password_array[0]):
+                print "compromised_password (with password update). Authenticate for step 3. New password is empty"
+                return False
+            new_password = new_password_array[0]
+
+            user = authenticationService.getAuthenticatedUser()
+            if user == None:
+                print "compromised_password (with password update). Authenticate for step 3. Failed to determine user name"
+                return False
+
+            user_name = user.getUserId()
+            print "compromised_password (with password update). Authenticate for step 3. Attempting to set new user '" + user_name + "' password"
+            find_user_by_uid = userService.getUser(user_name)
+            if (find_user_by_uid == None):
+                print "compromised_password (with password update). Authenticate for step 3. Failed to find user"
+                return False
+
+            find_user_by_uid.setAttribute("userPassword", new_password)
+            userService.updateUser(find_user_by_uid)
+            print "compromised_password (with password update). Authenticate for step 3. Password updated successfully"
+            logged_in = authenticationService.authenticate(user_name)
+            return True
+
+    def prepareForStep(self, configurationAttributes, requestParameters, step):
+        identity = CdiUtil.bean(Identity)
+        self.setRequestScopedParameters(identity)
+        session_attributes = identity.getSessionId().getSessionAttributes()
+        pwdcompromised = session_attributes.get("pwd_compromised")
+        if(pwdcompromised != None):
+            if step == 1:
+                print "compromised_password. Prepare for step 1"
+                return True
+            elif step == 2:
+                print "compromised_password. Prepare for step 2"
+                return True
+            return False
+        else:
+            print "compromised_password. Prepare for step 1"
+            return True
+      
+    def getExtraParametersForStep(self, configurationAttributes, step):
+        return Arrays.asList("pwd_compromised","user_name")
+
+    def getCountAuthenticationSteps(self, configurationAttributes):
+        identity = CdiUtil.bean(Identity)
+        self.setRequestScopedParameters(identity)
+        self.setRequestScopedParameters(identity)
+        session_attributes = identity.getSessionId().getSessionAttributes()
+        pwdcompromised = session_attributes.get("pwd_compromised")
+        if(pwdcompromised != None):
+            return 3
+        return 1
+
+    def getPageForStep(self, configurationAttributes, step):
+        identity = CdiUtil.bean(Identity)
+        session_attributes = identity.getSessionId().getSessionAttributes()
+        pwdcompromised = session_attributes.get("pwd_compromised")
+        if(pwdcompromised != None):
+            if step == 2:
+                return "/auth/compromised/complogin.xhtml"
+            elif step == 3:
+                return "/auth/compromised/newpassword.xhtml"
+            return ""
+        else:
+            return ""
+            
+    def getNextStep(self, configurationAttributes, requestParameters, step):
+        return -1
+
+    def getLogoutExternalUrl(self, configurationAttributes, requestParameters):
+        print "Get external logout URL call"
+        return None
+                    
+    def logout(self, configurationAttributes, requestParameters):
+        return True
+
+    def setRequestScopedParameters(self, identity):
+        identity.setWorkingParameter("question_label", self.secretquestion)
+
+    def is_compromised(self, userid, password,configurationAttributes):
+        print "Vericloud APIs Initialization"
+
+        vericloud_gluu_creds_file = self.credentialfile
+        # Load credentials from file
+        f = open(vericloud_gluu_creds_file, 'r')
+        try:
+            creds = json.loads(f.read())
+        except:
+            print "Vericloud API. Initialize notification services. Failed to load credentials from file:", vericloud_gluu_creds_file
+            return False
+        finally:
+            f.close()
+        
+        try:
+            url = str(creds["api_url"])
+            api_key=str(creds["api_key"])
+            api_secret= str(creds["api_secret"])
+        except:
+            print "Vericloud API. Initialize notification services. Invalid credentials file '%s' format:" % super_gluu_creds_file
+            return False
+      
+
+	reqdata = {"mode":"search_leaked_password_with_userid", "api_key": api_key, "api_secret": api_secret, "userid": userid}
+	reqdata = urllib.urlencode(reqdata)
+        resp = urllib2.urlopen(urllib2.Request(url, reqdata)).read()
+	resp = json.loads(resp)
+	if resp['result'] != 'succeeded':
+	    return None
+	for pass_enc in resp['passwords_encrypted']:
+	    plaintext = self.AESCipherdecrypt(api_secret, pass_enc) 
+	    if (len(password), password[0], password[-1]) == (len(plaintext), plaintext[0], plaintext[-1]) :
+	        return True
+	return False
+
+    def AESCipherdecrypt(self, key, enc ):
+        enc, iv = enc.split(':')
+	cipher = Cipher.getInstance("AES/CBC/PKCS5PADDING")
+	cipher.init(Cipher.DECRYPT_MODE, SecretKeySpec(key.decode("hex"), "AES"),IvParameterSpec(iv.decode("hex")))
+	decrypted_password = cipher.doFinal(enc.decode("hex"))
+	return decrypted_password.tostring()
diff --git a/oxAuth/Server/integrations/compromised_password/readme.txt b/oxAuth/Server/integrations/compromised_password/readme.txt
new file mode 100644
index 00000000..c40a14ac
--- /dev/null
+++ b/oxAuth/Server/integrations/compromised_password/readme.txt
@@ -0,0 +1,7 @@
+This is a person authentication module for oxAuth to verify if user password has been compromised and allows user to change password immediately after providing answer to secret question set by admin.
+
+1) credentials_file = /etc/certs/vericloud_gluu_creds.json
+2) secret_question  = Set this parameter for the question to be disaplayed to user
+3) secret_answer    = Set this parameter for the answer to be provided by user to reset password
+
+Update vericloud_gluu_creds.json file with Vericloud API username and secret
\ No newline at end of file
diff --git a/oxAuth/Server/integrations/consent-gathering-with-redirection/ConsentGatheringSample_redirect.py b/oxAuth/Server/integrations/consent-gathering-with-redirection/ConsentGatheringSample_redirect.py
new file mode 100644
index 00000000..b77a6dc3
--- /dev/null
+++ b/oxAuth/Server/integrations/consent-gathering-with-redirection/ConsentGatheringSample_redirect.py
@@ -0,0 +1,87 @@
+# oxAuth is available under the MIT License (2008). See http://opensource.org/licenses/MIT for full text.
+# Copyright (c) 2017, Gluu
+#
+# Author: Madhumita S
+#
+
+from org.gluu.service.cdi.util import CdiUtil
+from org.gluu.oxauth.security import Identity
+from org.gluu.model.custom.script.type.authz import ConsentGatheringType
+from org.gluu.util import StringHelper
+from org.gluu.jsf2.service import FacesService
+from org.gluu.jsf2.message import FacesMessages
+from org.gluu.oxauth.util import ServerUtil
+
+import java
+import random
+
+class ConsentGathering(ConsentGatheringType):
+
+    def __init__(self, currentTimeMillis):
+        self.currentTimeMillis = currentTimeMillis
+
+    def init(self, customScript, configurationAttributes):
+    
+    	if (not configurationAttributes.containsKey("third_party_URL")):
+	        print "Consent-Gathering. - Thirdparty URL. Initialization. Property third_party_URL is not specified"
+	        return False
+        else: 
+        	self.third_party_URL = configurationAttributes.get("third_party_URL").getValue2() 
+        	
+        print "Consent-Gathering. Initializing ..."
+        print "Consent-Gathering. Initialized successfully"
+
+        return True
+
+    def destroy(self, configurationAttributes):
+        print "Consent-Gathering. Destroying ..."
+        print "Consent-Gathering. Destroyed successfully"
+
+        return True
+
+    def getAuthenticationMethodClaims(self, requestParameters):
+        return None
+
+    def getApiVersion(self):
+        return 11
+
+    # Main consent-gather method. Must return True (if gathering performed successfully) or False (if fail).
+    # All user entered values can be access via Map<String, String> context.getPageAttributes()
+	# context is reference of org.gluu.oxauth.service.external.context.ConsentGatheringContext
+    def authorize(self, step, context): 
+        print "Consent-Gathering. Authorizing... %s " % step
+
+        allow =  ServerUtil.getFirstValue(context.getRequestParameters(), "allow") 
+        print "allow : %s " % allow
+        if (allow is not None) and (allow == "true"):
+                print "Consent-Gathering. Authorization success for step 1"
+                return True
+		else:
+				print "Consent-Gathering. Authorization declined for step 1"
+				return False
+				
+
+    def getNextStep(self, step, context):
+        return -1
+
+    def prepareForStep(self, step, context):
+        print "Consent-Gathering. prepare for step... %s" % step 
+
+        if not context.isAuthenticated():
+            print "User is not authenticated. Aborting authorization flow ..."
+            return False
+
+		print "Consent-Gathering. Redirecting to ... %s " % self.third_party_URL
+        facesService = CdiUtil.bean(FacesService)
+        facesService.redirectToExternalURL(self.third_party_URL )
+        return True
+
+    def getStepsCount(self, context):
+        return 1
+
+    def getPageForStep(self, step, context):
+        print "Consent-Gathering. getPageForStep... %s" % step
+        if step == 1:
+            return "/authz/redirect.xhtml"
+        
+        return ""
diff --git a/oxAuth/Server/integrations/consent-gathering-with-redirection/README b/oxAuth/Server/integrations/consent-gathering-with-redirection/README
new file mode 100644
index 00000000..0d3b9339
--- /dev/null
+++ b/oxAuth/Server/integrations/consent-gathering-with-redirection/README
@@ -0,0 +1,45 @@
+
+## Developer notes: Redirecting to a third-party application in a custom script.
+
+In many cases of user authentication, consent gathering there might be a need to redirect to a third party application to perform some operation and redirect back to the Gluu server.
+This can be done inside ```prepareForStep``` method of the custom script. 
+
+### Steps for redirection in a ***Consent Gathering script***. - 
+
+1. Return from def getPageForStep(self, step, context) a page /authz/method_name/redirect.html with content similar to the code snippet below - 
+
+```
+    def getPageForStep(self, step, context):
+        return "/authz/method_name/redirect.html"
+```
+
+```
+...
+ <f:metadata>
+     <f:viewAction action="#{consentGatherer.prepareForStep}" if="#{identity.loggedIn}"/>
+ </f:metadata>
+	
+```
+
+2. In method prepareForStep prepare data needed for redirect and do redirect to external service. 
+
+```
+def prepareForStep(self, step, context):
+	facesService = CdiUtil.bean(FacesService)
+	facesService.redirectToExternalURL(self.third_party_URL )
+
+	return True
+	
+```
+
+3. In order to resume flow after the redirection we can add postauthorize.html.
+In this new page we need make a call:
+```
+ <f:metadata>
+     <f:viewAction action="#{consentGatherer.authorize}" />
+ </f:metadata>
+```
+
+4. The action in step 3 takes us to the ``` def authorize(self, step, context) ```. Here you can use parameters from request, call external API to validate data if needed etc. And finally, return false/true from this method.
+
+
diff --git a/oxAuth/Server/integrations/consent-gathering-with-redirection/postauthorize.xhtml b/oxAuth/Server/integrations/consent-gathering-with-redirection/postauthorize.xhtml
new file mode 100644
index 00000000..d93a3ef2
--- /dev/null
+++ b/oxAuth/Server/integrations/consent-gathering-with-redirection/postauthorize.xhtml
@@ -0,0 +1,14 @@
+
+<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN"
+   "http://www.w3.org/TR/xhtml1/DTD/xhtml1-transitional.dtd">
+
+<html xmlns="http://www.w3.org/1999/xhtml"
+      xmlns:f="http://xmlns.jcp.org/jsf/core">
+
+<f:view transient="true" contentType="text/html">
+	<f:metadata>
+		<f:viewAction action="#{consentGatherer.authorize}" />
+	</f:metadata>
+</f:view>
+
+</html>
diff --git a/oxAuth/Server/integrations/consent-gathering-with-redirection/redirect.xhtml b/oxAuth/Server/integrations/consent-gathering-with-redirection/redirect.xhtml
new file mode 100644
index 00000000..8a267a3a
--- /dev/null
+++ b/oxAuth/Server/integrations/consent-gathering-with-redirection/redirect.xhtml
@@ -0,0 +1,14 @@
+
+<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN"
+   "http://www.w3.org/TR/xhtml1/DTD/xhtml1-transitional.dtd">
+
+<html xmlns="http://www.w3.org/1999/xhtml"
+      xmlns:f="http://xmlns.jcp.org/jsf/core">
+
+<f:view transient="true" contentType="text/html">
+	<f:metadata>
+		<f:viewAction action="#{consentGatherer.prepareForStep}" />
+	</f:metadata>
+</f:view>
+
+</html>
diff --git a/oxAuth/Server/integrations/consent-gathering-with-redirection/third-party-mock-app/README.txt.txt b/oxAuth/Server/integrations/consent-gathering-with-redirection/third-party-mock-app/README.txt.txt
new file mode 100644
index 00000000..75b88766
--- /dev/null
+++ b/oxAuth/Server/integrations/consent-gathering-with-redirection/third-party-mock-app/README.txt.txt
@@ -0,0 +1,6 @@
+1. place this html file inside a folder say sample-app inside /root folder
+
+2. run the following command to run an http server- 
+    python3 -m http.server 8321
+
+3. 
\ No newline at end of file
diff --git a/oxAuth/Server/integrations/consent-gathering-with-redirection/third-party-mock-app/consent_page.html b/oxAuth/Server/integrations/consent-gathering-with-redirection/third-party-mock-app/consent_page.html
new file mode 100644
index 00000000..b6ccea0c
--- /dev/null
+++ b/oxAuth/Server/integrations/consent-gathering-with-redirection/third-party-mock-app/consent_page.html
@@ -0,0 +1,45 @@
+<!DOCTYPE html>
+<html>
+<title>Sample consent</title>
+<meta name="viewport" content="width=device-width, initial-scale=1">
+<link rel="stylesheet" href="https://www.w3schools.com/w3css/4/w3.css">
+<script>
+function accept()
+{
+window.location.replace("https://c1.gluu.org/oxauth/authz/postauthorize.htm?param1=true");
+}
+
+function reject()
+{
+window.location.replace("https://c1.gluu.org/oxauth/authz/postauthorize.htm?param1=false")
+}
+
+</script>
+<body>
+
+<div class="w3-container">
+  <h2>Consent form</h2>
+
+  <div class="w3-card-4 w3-dark-grey" style="width:50%">
+
+    <div class="w3-container w3-center">
+<h2>Consent </h2>
+  <div id="consent">
+  <p>
+There are no known risks if you decide to participate in this research study, nor are there any costs for participating in the study. The information you provide will help me understand how best to satisfy the needs of organizations and the needs of employees. The information colleted may not benefit you directly, but what I learn from this study should provide general benefits to employees, companies, and researchers.
+The survey is annonymous.Your participation in this study is voluntary.
+  </p>
+
+  </div>
+      <div class="w3-section">
+        <button class="w3-button w3-green" onclick = "javascript:accept();">Accept</button>
+        <button class="w3-button w3-red" onclick= "javascript:reject();">Decline</button>
+      </div>
+    </div>
+
+  </div>
+</div>
+
+</body>
+</html
+
diff --git a/oxAuth/Server/integrations/custom_registration/Attributes.json b/oxAuth/Server/integrations/custom_registration/Attributes.json
new file mode 100644
index 00000000..951db1ef
--- /dev/null
+++ b/oxAuth/Server/integrations/custom_registration/Attributes.json
@@ -0,0 +1,10 @@
+{
+    "en": {
+        "givenName": "First Name",
+        "sn": "Last Name",
+        "mail": "Email",
+        "familyName": "Middle Name"
+	    },
+"passStrength":2,
+"domains": []
+}
diff --git a/oxAuth/Server/integrations/custom_registration/README.md b/oxAuth/Server/integrations/custom_registration/README.md
new file mode 100644
index 00000000..c873b353
--- /dev/null
+++ b/oxAuth/Server/integrations/custom_registration/README.md
@@ -0,0 +1,11 @@
+In order to exceute the custom registration workflow, 
+
+1. Add the following custom property(key:value) in the script properties:
+
+attributes_json_file_path: /etc/Attributes.json
+
+and place Attributes.json file in the path specified in the custom property.
+
+2. Place the reg.xhtml file in /opt/gluu/jetty/oxauth/custom/pages/auth/ directory.
+
+3. Enable the script and set it as the default authentication method.
diff --git a/oxAuth/Server/integrations/custom_registration/reg.xhtml b/oxAuth/Server/integrations/custom_registration/reg.xhtml
new file mode 100644
index 00000000..24f3ea2d
--- /dev/null
+++ b/oxAuth/Server/integrations/custom_registration/reg.xhtml
@@ -0,0 +1,264 @@
+<!DOCTYPE composition PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN"
+        "http://www.w3.org/TR/xhtml1/DTD/xhtml1-transitional.dtd">
+<ui:composition xmlns="http://www.w3.org/1999/xhtml" xmlns:f="http://xmlns.jcp.org/jsf/core" xmlns:ui="http://xmlns.jcp.org/jsf/facelets" xmlns:b="http://bootsfaces.net/ui" xmlns:h="http://xmlns.jcp.org/jsf/html" template="/WEB-INF/incl/layout/login-template.xhtml">
+    <f:metadata>
+        <f:viewAction action="#{authenticator.prepareAuthenticationForStep}" />
+        <f:viewParam name="login_hint" value="#{loginAction.loginHint}" />
+    </f:metadata>
+    <ui:define name="head">
+        <meta name="description" content="Gluu, Inc." />
+
+    </ui:define>
+    <ui:define name="pageTitle">
+        <h:outputText value="#{msgs['login.pageTitle']}" />
+    </ui:define>
+    <ui:define name="body">
+        <div class="container">
+            <h:panelGroup rendered="true">
+                <div class="login_bx_1" style="border-radius: 10px; margin-top: 0px; background: white; border: 1px solid #008b8b;">
+                    <div class="row">
+                        <h:messages class="text-center" style="color:#8b0000;margin:5px;margin-left:20px; font-size:2vw;" infoClass="text-center" errorClass="text-center" />
+                    </div>
+                    <b:form horizontal="true" id="loginForm" style="padding:30px;" onsubmit="return validateFun()">
+                        <h2 style="text-align: center;margin-bottom: 10px;">Register</h2>
+
+                        <div class="row" id="givenName" style="margin-top: 20px;">
+                            <div class="col-25" style="width: 25%;margin-top: 6px;">
+                                <label for="fname">First Name</label>
+                            </div>
+                            <div class="col-75" style="width: 75%;margin-top: 6px;">
+                                <input name="fnm" type="text" class="form-control" autocomplete="off" required="true" />
+                            </div>
+                        </div>
+                        <div class="row" id="sn" style="margin-top: 20px;">
+                            <div class="col-25" style="width: 25%;margin-top: 6px;">
+                                <label for="lname">Last Name</label>
+                            </div>
+                            <div class="col-75" style="width: 75%;margin-top: 6px;">
+                                <input name="lnm" type="text" class="form-control" autocomplete="off" required="true" />
+                            </div>
+                        </div>
+                        <div class="row" id="familyName" style="margin-top: 20px;">
+                            <div class="col-25" style="width: 25%;margin-top: 6px;">
+                                <label for="mname">Middle Name</label>
+                            </div>
+                            <div class="col-75" style="width: 75%;margin-top: 6px;">
+                                <input name="mnm" type="text" class="form-control" autocomplete="off" />
+                            </div>
+                        </div>
+                        <div class="row" id="mail" style="margin-top: 20px;">
+                            <div class="col-25" style="width: 25%;margin-top: 6px;">
+                                <label for="email">Email</label>
+                            </div>
+                            <div class="col-75" style="width: 75%;margin-top: 6px;">
+                                <input name="email" type="email" id="email" pattern=".+@gmail.com" class="form-control" autocomplete="off" required="true" />
+                            </div>
+                        </div>
+                    
+                        <div class="row" style="margin-top: 20px;">
+                            <div class="col-25" style="width: 25%;margin-top: 6px;">
+                                <label for="forpassword">Password</label>
+                            </div>
+                            <div class="col-75" style="width: 75%;margin-top: 6px;">
+                                <input name="pass" type="password" id="password" class="form-control" autocomplete="off" required="true" />
+                                <meter max="4" id="password-strength-meter" style="width: 75%;margin-top: 6px;"></meter>
+                                <p id="password-strength-text"></p>
+                            </div>
+                        </div>
+                        <div class="row" style="margin-top: 10px;">
+                            <div class="col-25" style="width: 25%;margin-top: 6px;">
+                                <label for="forrepassword">Re-type Password</label>
+                            </div>
+                            <div class="col-75" style="width: 75%;margin-top: 6px;">
+                                <input name="repass" type="password" id="repassword" class="form-control" autocomplete="off" required="true" />
+
+                            </div>
+                        </div>
+                        <div class="row" style="margin-top: 10px;">
+                            <div class="col-25" style="width: 25%;margin-top: 6px;">
+                                <label for="forrepassword">Captcha</label>
+                            </div>
+                            <div class="col-75" style="width: 75%;margin-top: 6px;">
+                                <input type="text" readonly="true" id="mainCaptcha" class="form-control" autocomplete="off" required="true" />
+                                <input type="button" id="refresh" value="Refresh" onclick="Captcha();" />
+                            </div>
+                        </div>
+                        <div class="row" style="margin-top: 10px;">
+                            <div class="col-25" style="width: 25%;margin-top: 6px;">
+                                <label for="forrepassword">Enter Captcha</label>
+                            </div>
+                            <div class="col-75" style="width: 75%;margin-top: 6px;">
+                                <input type="text" id="txtInput" class="form-control" autocomplete="off" required="true" />
+
+                            </div>
+                        </div>
+
+                        <!--
+							FirstName<input name="fnm" type="text" class="form-control" autocomplete="off" required="true"/>
+							LastName<input name="lnm" type="text" class="form-control" autocomplete="off" required="true"/>
+							Middle Name<input name="mnm" type="text" class="form-control" autocomplete="off" />
+							Email<input name="email" type="email" id="email" pattern=".+@gmail.com" class="form-control" autocomplete="off" required="true" />
+							Password<input name="pass" type="password" id="password" class="form-control" autocomplete="off" required="true"/>
+							Re-type Password<input name="repass" type="password" id="repassword" class="form-control" autocomplete="off" required="true"/><meter max="4" id="password-strength-meter"></meter><p id="password-strength-text"></p>
+						-->
+
+
+                        <div class="form-group row" style="margin-top: 20px; text-align: center;">
+                            <div class="col-sm-offset-1 offset-md-1 col-sm-8 col-md-8">
+                                <b:commandButton id="loginButton" style="background-color: #00BE79; color:white;" styleClass="btn col-sm-12" value="Register" onclick="checkRemembeMe()" iconAwesome="fa-sign-in" action="#{authenticator.authenticate}" />
+                            </div>
+                        </div>
+
+
+                        <!--<div class="form-group row">
+							<div class="col-sm-offset-3 offset-md-3 col-sm-7 col-md-7">
+								<div class="forgot_link">
+									<a href="/identity/person/passwordReminder.htm"
+										style="color: blue;"> <h:outputText
+											value="#{msgs['login.forgotYourPassword']}" />
+									</a>
+								</div>
+							</div>
+						</div> -->
+                        <h:inputHidden id="platform" />
+                    </b:form>
+                    <div class="row">
+                        <div align="center" class="col-sm-offset-4 col-sm-9">
+                            <ui:repeat value="#{identity.getWorkingParameter('download_url').entrySet().toArray()}" var="_entry">
+                                <ui:param name="app_name" value="#{_entry.key}" />
+                                <ui:param name="app_link" value="#{_entry.value}" />
+                                <h:outputLink style="margin-right:5px;" value="#{app_link}" title="#{app_name}">
+                                    <h:graphicImage value="img/#{app_name}.png" />
+                                </h:outputLink>
+                            </ui:repeat>
+                        </div>
+                        <h:panelGroup layout="block" rendered="#{external_registration_uri != Null}">
+                            <div class="reg_link">
+                                <a href="#{external_registration_uri}">
+                                    <h:outputText value="Register Now " />
+                                </a>
+                            </div>
+                        </h:panelGroup>
+                    </div>
+                </div>
+            </h:panelGroup>
+        </div>
+        <script src="https://cdnjs.cloudflare.com/ajax/libs/zxcvbn/4.2.0/zxcvbn.js"></script>
+        <!--<script src="/oxauth/custom/js/pass.js"></script>-->
+        <script type="text/javascript">
+            var passwordStrength;
+
+
+            function start() {
+                func1();
+                Captcha();
+              
+            }
+            window.onload = start;
+
+            function func1() {
+
+                var attributes = `#{identity.sessionId.sessionAttributes['CustomAtrributes']}`;
+                passwordStrength = `#{identity.sessionId.sessionAttributes['passStrength']}`;
+                console.log("passStrength:" + `#{identity.sessionId.sessionAttributes['passStrength']}`)
+                var nameArr = attributes.split(',');
+                var allIds = ['mail', 'givenName', "familyName", 'sn']
+                allIds = allIds.filter((el) => !nameArr.includes(el));
+                console.log(allIds);
+                for (var id in allIds)
+                    document.getElementById(allIds[id]).remove();
+            }
+
+            function Captcha() {
+
+
+                var a = Math.floor(Math.random() * 26)
+                var b = Math.floor(Math.random() * 26)
+                var c = Math.floor(Math.random() * 26)
+                var d = Math.floor(Math.random() * 26)
+
+                var cod = a + '' + b + '' + '' + c + '' + d;
+                document.getElementById("mainCaptcha").value = cod
+
+            }
+
+
+        
+            document.getElementById("password").addEventListener("input", myFunction);
+            var meter_value;
+
+            function myFunction() {
+
+                var strength = {
+                    0: "Worst ",
+                    1: "Bad ",
+                    2: "Weak ",
+                    3: "Good ",
+                    4: "Strong "
+                }
+
+                var password = document.getElementById('password');
+                var meter = document.getElementById('password-strength-meter');
+                var text = document.getElementById('password-strength-text');
+
+                var val = password.value;
+                var result = zxcvbn(val);
+
+                meter.value = result.score;
+                meter_value = meter.value
+                    // Update the text indicator
+                if (val !== "") {
+                    text.innerHTML = "Strength: " + strength[result.score];
+                } else {
+                    text.innerHTML = "";
+                }
+
+
+
+            }
+
+            function validateFun() {
+
+
+                var passfield = document.getElementById("password").value;
+                var repassfield = document.getElementById("repassword").value;
+
+                var passw = /^(?=.*\d)(?=.*[a-z])(?=.*[A-Z]).{6,20}$/;
+
+                if (passfield != repassfield) {
+                    alert("Password Field must match!!!");
+                    return false;
+                } else {
+
+                    if (passfield.match(passw)) {
+                        if (meter_value >= 2) {
+
+                            var string1 = document.getElementById('mainCaptcha').value;
+                            var string2 = document.getElementById('txtInput').value;
+                            if (string1 == string2) {
+
+                                return true;
+                            } else {
+                                alert("invalid Captcha");
+                                return false;
+                            }
+
+
+                        } else {
+                            alert("Your Password is weak! Try a different Password");
+                        }
+
+                    } else {
+                        alert("Wrong Passord!!! Password must be 6 to 20 characters,at least one numeric digit, one uppercase and one lowercase letter.");
+                        return false;
+                    }
+                }
+
+
+
+
+
+            }
+        </script>
+    </ui:define>
+</ui:composition>
diff --git a/oxAuth/Server/integrations/custom_registration/register.py b/oxAuth/Server/integrations/custom_registration/register.py
new file mode 100644
index 00000000..94293860
--- /dev/null
+++ b/oxAuth/Server/integrations/custom_registration/register.py
@@ -0,0 +1,267 @@
+# oxAuth is available under the MIT License (2008). See http://opensource.org/licenses/MIT for full text.
+# Copyright (c) 2018, Gluu
+#
+# Author: Jose Gonzalez
+# Author: Gasmyr Mougang
+
+from org.gluu.oxauth.model.common import User, WebKeyStorage
+from org.gluu.service.cdi.util import CdiUtil
+from org.gluu.oxauth.security import Identity
+from org.xdi.oxauth.security import Identity
+from org.gluu.model.custom.script.type.auth import PersonAuthenticationType
+from org.gluu.oxauth.service import UserService, AuthenticationService
+from org.gluu.oxauth.util import ServerUtil
+from org.gluu.util import StringHelper, ArrayHelper
+from java.util import Arrays
+from javax.faces.application import FacesMessage
+from org.gluu.jsf2.message import FacesMessages
+from email.mime.multipart import MIMEMultipart
+from email.mime.text import MIMEText
+from org.gluu.service import MailService
+
+
+import org.codehaus.jettison.json.JSONArray as JSONArray
+
+import json, ast
+import java
+import random
+import jarray
+import smtplib
+
+class PersonAuthentication(PersonAuthenticationType):
+    def __init__(self, currentTimeMillis):
+        self.currentTimeMillis = currentTimeMillis
+        self.emailid = None
+        self.identity = CdiUtil.bean(Identity)
+
+    def init(self, customScript, configurationAttributes):
+
+        print "Register. Initialized successfully"
+        if not (configurationAttributes.containsKey("attributes_json_file_path")):
+            #print "Cert. Initialization. Property chain_cert_file_path is mandatory"
+            return False
+        self.attributes_json_file_path = configurationAttributes.get("attributes_json_file_path").getValue2()
+
+        return True
+
+    def destroy(self, configurationAttributes):
+        print "Register. Destroy"
+        print "Register. Destroyed successfully"
+        return True
+
+    def getApiVersion(self):
+        return 11
+        
+    def getAuthenticationMethodClaims(self, requestParameters):
+        return None        
+
+    def isValidAuthenticationMethod(self, usageType, configurationAttributes):
+        return True
+
+    def getAlternativeAuthenticationMethod(self, usageType, configurationAttributes):
+        return None
+
+    def authenticate(self, configurationAttributes, requestParameters, step):
+       
+        userService = CdiUtil.bean(UserService)
+        identity = CdiUtil.bean(Identity)
+        authenticationService = CdiUtil.bean(AuthenticationService)
+
+        facesMessages = CdiUtil.bean(FacesMessages)
+        facesMessages.setKeepMessages()
+
+        session_attributes = self.identity.getSessionId().getSessionAttributes()
+        form_passcode = ServerUtil.getFirstValue(requestParameters, "passcode")
+       
+
+        print "Register. form_response_passcode: %s" % str(form_passcode)
+
+        if step == 1:
+            print "inside step 1"
+            ufnm = ServerUtil.getFirstValue(requestParameters, "fnm")
+            ulnm = ServerUtil.getFirstValue(requestParameters, "lnm")
+            umnm = ServerUtil.getFirstValue(requestParameters, "mnm")
+            umail = ServerUtil.getFirstValue(requestParameters, "email")
+            upass = ServerUtil.getFirstValue(requestParameters, "pass")
+                
+        
+           
+	    #rufnm1 = identity.getWorkingParameter("vufnm")
+            #print "rufnm"
+            #print rufnm1
+           		
+            #print "Register. Step 1 Password Authentication"
+            
+		
+			   
+            # Generate Random six digit code and store it in array
+            code = random.randint(100000, 999999)
+	        		
+
+            # Get code and save it in LDAP temporarily with special session entry
+            self.identity.setWorkingParameter("vufnm", ufnm)
+            self.identity.setWorkingParameter("vulnm", ulnm)
+            self.identity.setWorkingParameter("vumnm", umnm)
+            self.identity.setWorkingParameter("vumail", umail)
+            self.identity.setWorkingParameter("vupass", upass)
+            self.identity.setWorkingParameter("code", code)
+
+            try:
+                mailService = CdiUtil.bean(MailService)	
+                subject = "Registration Details"
+                
+
+                body = "<h2 style='margin-left:10%%;color: #337ab7;'>Welcome</h2><hr style='width:80%%;border: 1px solid #337ab7;'></hr><div style='text-align:center;'>"  
+                                
+                if ufnm is not None:
+                    body = body + "<p>First Name : <span style='color: #337ab7;'>"+str(ufnm)+"</span>,</p>"
+                    
+                else:
+                    body = body
+                    
+                    
+                if ulnm is not None:
+                    body = body + "<p>Last Name <span style='color: #337ab7;'>"+str(ulnm)+"</span>,</p>"
+                    
+                else:
+                    body = body
+                    
+
+                if umnm is not None:
+                    body = body + "<p>Middle Name <span style='color: #337ab7;'>"+str(umnm)+"</span>,</p>"
+                    
+                else:
+                    body = body
+                    
+                body = body + "<p>Email : <span style='color: #337ab7;'>"+str(umail)+"</span>,</p><p>Password : <span style='color: #337ab7;'>"+str(upass)+"</span>,</p><p>Use <span style='color: #337ab7;'>"+str(code)+"</span> OTP to finish Registration.</p></div>"
+		
+                mailService.sendMailSigned(umail, None, subject, body, body)
+                
+                return True
+            except Exception, ex: 
+                facesMessages.add(FacesMessage.SEVERITY_ERROR,"Failed to send message to mobile phone")
+                print "Register. Error sending message to Twilio"
+                print "Register. Unexpected error:", ex
+
+            return False
+        elif step == 2:
+            # Retrieve the session attribute
+            print "Register. Step 2 SMS/OTP Authentication"
+            code = session_attributes.get("code")
+            rufnm = identity.getWorkingParameter("vufnm")
+            rulnm = identity.getWorkingParameter("vulnm")
+            rumnm = identity.getWorkingParameter("vumnm")
+            rumail = identity.getWorkingParameter("vumail")
+            rupass = identity.getWorkingParameter("vupass")
+
+            
+        
+			
+             
+            print "----------------------------------"
+            print "Register. Code: %s" % str(code)
+            print "----------------------------------"
+
+            if code is None:
+                print "Register. Failed to find previously sent code"
+                return False
+
+            if form_passcode is None:
+                print "Register. Passcode is empty"
+                return False
+
+            if len(form_passcode) != 6:
+                print "Register. Passcode from response is not 6 digits: %s" % form_passcode
+                return False
+
+            if form_passcode == code:
+                print "Register, SUCCESS! User entered the same code!"
+				
+                newUser = User()
+                newUser.setAttribute("givenName", rufnm)
+                newUser.setAttribute("sn", rulnm)
+                newUser.setAttribute("middleName", rumnm)
+                newUser.setAttribute("mail", rumail)
+                newUser.setAttribute("uid", rufnm)
+                newUser.setAttribute("userPassword", rupass)
+                userService.addUser(newUser, True)		
+		
+                logged_in = False
+                logged_in = authenticationService.authenticate(rufnm, rupass)
+
+                if (not logged_in):
+                    return False
+
+                return True		
+				
+                #return True
+
+            print "+++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++" 
+            print "Register. FAIL! User entered the wrong code! %s != %s" % (form_passcode, code)
+            print "+++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++" 
+            #facesMessages.add(facesMessage.SEVERITY_ERROR, "Incorrect Twilio code, please try again.")
+            
+         
+
+       
+
+        
+
+    def prepareForStep(self, configurationAttributes, requestParameters, step):
+        if step == 1:
+            print "Register. Prepare for Step 1"
+            identity = CdiUtil.bean(Identity)
+            print self.getAttributesFromJson()
+            print "pass strength"
+            print self.getPasswordStrength()
+            identity.setWorkingParameter("CustomAtrributes", self.getAttributesFromJson())
+            identity.setWorkingParameter("passStrength", str(self.getPasswordStrength()))
+            return True
+        elif step == 2:
+            print "Register. Prepare for Step 2"
+            return True
+        return False
+
+    def getExtraParametersForStep(self, configurationAttributes, step):
+        if step == 1:
+            return Arrays.asList("CustomAtrributes","PasswordStrength")
+        elif step == 2:
+            return Arrays.asList("code","vufnm","vulnm","vumnm","vumail","vupass")
+
+        return None
+
+    def getCountAuthenticationSteps(self, configurationAttributes):
+        return 2
+
+    def getPageForStep(self, configurationAttributes, step):
+        if step == 1:
+            return "/auth/reg.xhtml"
+	elif step == 2:
+            return "/auth/otp_sms/otp_sms.xhtml"
+
+        return ""
+
+    def getNextStep(self, configurationAttributes, requestParameters, step):
+        return -1
+
+    def getLogoutExternalUrl(self, configurationAttributes, requestParameters):
+        print "Get external logout URL call"
+        return None
+
+    def logout(self, configurationAttributes, requestParameters):
+        return True
+        
+    def getAttributesFromJson(self):
+        f = open(self.attributes_json_file_path)
+        data = json.load(f)
+        data = ast.literal_eval(json.dumps(data))
+        attributes = data["en"].keys()
+
+        jsonString = ",".join(attributes)
+        return jsonString
+    def getPasswordStrength(self):
+        f = open(self.attributes_json_file_path)
+        data = json.load(f)
+        data = ast.literal_eval(json.dumps(data))
+        strength = data["passStrength"]
+        return strength   
diff --git a/oxAuth/Server/integrations/deduce/PasswordlessAuthenticationWithDeduceImpossTravel.py b/oxAuth/Server/integrations/deduce/PasswordlessAuthenticationWithDeduceImpossTravel.py
new file mode 100644
index 00000000..3ed30499
--- /dev/null
+++ b/oxAuth/Server/integrations/deduce/PasswordlessAuthenticationWithDeduceImpossTravel.py
@@ -0,0 +1,563 @@
+# Author: Jose Gonzalez
+# Author: Madhumita Subramaniam
+
+from java.lang import System
+from java.net import URLDecoder, URLEncoder
+from java.util import Arrays, ArrayList, Collections, HashMap
+from org.gluu.oxauth.service import  ClientService
+from org.gluu.service.net import NetworkService
+from org.gluu.oxauth.service.net import HttpService
+from javax.faces.application import FacesMessage
+from javax.servlet.http import Cookie
+from javax.faces.context import FacesContext
+from org.oxauth.persistence.model.configuration import GluuConfiguration
+from org.gluu.oxauth.security import Identity
+from org.gluu.oxauth.util import ServerUtil
+from org.gluu.service import CacheService
+from org.gluu.oxauth.service import AuthenticationService, UserService
+from org.gluu.oxauth.service.custom import CustomScriptService
+from org.gluu.model.custom.script import CustomScriptType
+from org.gluu.model.custom.script.type.auth import PersonAuthenticationType
+from org.gluu.model import SimpleCustomProperty
+from org.gluu.persist import PersistenceEntryManager
+from org.gluu.service.cdi.util import CdiUtil
+from org.gluu.util import StringHelper
+from java.time import LocalDateTime, Duration
+from org.gluu.jsf2.message import FacesMessages
+
+try:
+    import json
+except ImportError:
+    import simplejson as json
+import sys
+
+class PersonAuthentication(PersonAuthenticationType):
+    def __init__(self, currentTimeMillis):
+        self.currentTimeMillis = currentTimeMillis
+        self.ACR_SG = "super_gluu"
+        self.PREV_LOGIN_SETTING = "prevLoginsCookieSettings"
+        self.modulePrefix = "pwdless-external_"
+        # expiration time in seconds - adds up to 1 year
+        self.lockExpirationTime = 31536000 
+        
+
+    def init(self, customScript, configurationAttributes):    	
+        print "Deduce Passwordless. init called"
+        if not configurationAttributes.containsKey("DEDUCE_ENDPOINT"):
+            print "Deduce Passwordless. Initialization. Property DEDUCE_ENDPOINT is mandatory"
+            return False
+        self.DEDUCE_ENDPOINT = configurationAttributes.get("DEDUCE_ENDPOINT").getValue2()
+        
+        if not configurationAttributes.containsKey("DEDUCE_SITE"):
+            print "Deduce Passwordless. Initialization. Property DEDUCE_SITE is mandatory"
+            return False
+        self.DEDUCE_SITE = configurationAttributes.get("DEDUCE_SITE").getValue2()
+        
+        
+        if not configurationAttributes.containsKey("DEDUCE_API_KEY"):
+            print "Deduce Passwordless. Initialization. Property DEDUCE_API_KEY is mandatory"
+            return False
+        self.DEDUCE_API_KEY = configurationAttributes.get("DEDUCE_API_KEY").getValue2()
+        
+        self.authenticators = {}
+        self.uid_attr = self.getLocalPrimaryKey()
+        
+        self.prevLoginsSettings = self.computePrevLoginsSettings(configurationAttributes.get(self.PREV_LOGIN_SETTING))
+
+        custScriptService = CdiUtil.bean(CustomScriptService)
+        self.scriptsList = custScriptService.findCustomScripts(Collections.singletonList(CustomScriptType.PERSON_AUTHENTICATION), "oxConfigurationProperty", "displayName", "oxEnabled")
+        dynamicMethods = self.computeMethods(configurationAttributes.get("snd_step_methods"), self.scriptsList)
+
+        if len(dynamicMethods) > 0:
+            print "Deduce Passwordless. init. Loading scripts for dynamic modules: %s" % dynamicMethods
+            
+            for acr in dynamicMethods:
+                moduleName = self.modulePrefix + acr
+                try:
+                    external = __import__(moduleName, globals(), locals(), ["PersonAuthentication"], -1)
+                    module = external.PersonAuthentication(self.currentTimeMillis)
+
+                    print "Deduce Passwordless. init. Got dynamic module for acr %s" % acr
+                    configAttrs = self.getConfigurationAttributes(acr, self.scriptsList)
+                    
+                    if acr == self.ACR_SG:
+                        application_id = configurationAttributes.get("supergluu_app_id").getValue2()
+                        configAttrs.put("application_id", SimpleCustomProperty("application_id", application_id))
+
+                    if module.init(None, configAttrs):
+                        module.configAttrs = configAttrs
+                        self.authenticators[acr] = module
+                    else:
+                        print "Deduce Passwordless. init. Call to init in module '%s' returned False" % moduleName
+                except:
+                    print "Deduce Passwordless. init. Failed to load module %s" % moduleName
+                    print "Exception: ", sys.exc_info()[1]
+        else:
+            print "Deduce Passwordless. init. Not enough custom scripts enabled. Check config property 'snd_step_methods'"
+            return False
+        
+        print "Deduce Passwordless. init. Initialized successfully"
+        return True
+
+    def destroy(self, configurationAttributes):
+        return True
+
+    def getApiVersion(self):
+        return 11
+
+    def getAuthenticationMethodClaims(self, configurationAttributes):
+        return None
+
+    def isValidAuthenticationMethod(self, usageType, configurationAttributes):
+        return True
+
+    def getAlternativeAuthenticationMethod(self, usageType, configurationAttributes):
+        return None
+
+    def authenticate(self, configurationAttributes, requestParameters, step):
+        print "Deduce Passwordless. authenticate for step %d" % step
+
+        userService = CdiUtil.bean(UserService)
+        authenticationService = CdiUtil.bean(AuthenticationService)
+        identity = CdiUtil.bean(Identity)
+
+        if step == 1:
+            user_name = identity.getCredentials().getUsername()
+            if StringHelper.isNotEmptyString(user_name):
+
+                foundUser = userService.getUserByAttribute(self.uid_attr, user_name)
+                
+                if foundUser == None:
+                    print "Deduce Passwordless. Unknown username '%s'" % user_name
+                elif authenticationService.authenticate(user_name):
+                    availMethods = self.getAvailMethodsUser(foundUser)
+                    
+                    # deduce - impossible travel feature
+                    identity = CdiUtil.bean(Identity)
+                    #session_attributes = identity.getSessionId().getSessionAttributes()
+                    ip = str( ServerUtil.getFirstValue(requestParameters, "loginForm:clientIP")).encode('utf-8') 
+                    email = str(foundUser.getAttribute("mail")).encode('utf-8')
+                    print "platform %s" %str( ServerUtil.getFirstValue(requestParameters,  "loginForm:platform"))
+                    platform = json.loads(str( ServerUtil.getFirstValue(requestParameters,  "loginForm:platform")).encode('utf-8'))
+                    action = "auth.success"
+                    impossibleTravel = self.sendInsightsRequest(ip, email, platform["name"], action)
+                    if (impossibleTravel is True):
+                        self.lockUser(user_name)
+                    else:
+                        if availMethods.size() > 0:
+                            acr = availMethods.get(0)
+                            print "Deduce Passwordless. Method to try in 2nd step will be: %s" % acr
+                            
+                            module = self.authenticators[acr]
+                            logged_in = module.authenticate(module.configAttrs, requestParameters, step)
+                            
+                            if logged_in:
+                                identity.setWorkingParameter("ACR", acr)
+                                print "Deduce Passwordless. Authentication passed for step %d" % step
+                                return True
+                            
+                        else:
+                            self.setError("Cannot proceed. You don't have suitable credentials for passwordless login")
+                else:
+                    self.setError("Wrong username or password")
+        else:
+            print "authenticate step 2"
+            user = authenticationService.getAuthenticatedUser()
+            if user == None:
+                print "Deduce Passwordless. authenticate for step 2. Cannot retrieve logged user"
+                return False
+
+            #see alternative.xhtml
+            identity = CdiUtil.bean(Identity)
+            session_attributes = identity.getSessionId().getSessionAttributes()
+            alter = session_attributes.get("alternativeMethod")
+            if alter != None:
+                #bypass the rest of this step if an alternative method was provided. Current step will be retried (see getNextStep)
+                self.simulateFirstStep(requestParameters, alter)
+                return True
+
+            session_attributes = identity.getSessionId().getSessionAttributes()
+            acr = session_attributes.get("ACR")
+            #this working parameter is used in alternative.xhtml
+            identity.setWorkingParameter("methods", self.getAvailMethodsUser(user, acr))
+
+            success = False
+            if acr in self.authenticators:
+                module = self.authenticators[acr]
+                success = module.authenticate(module.configAttrs, requestParameters, step)
+
+            if success:
+                print "Deduce Passwordless. authenticate. 2FA authentication was successful"
+                if self.prevLoginsSettings != None:
+                    self.persistCookie(user)
+            else:
+                print "Deduce Passwordless. authenticate. 2FA authentication failed"
+
+            return success
+            
+        return False
+        
+
+    def prepareForStep(self, configurationAttributes, requestParameters, step):
+        print "Deduce Passwordless. prepareForStep %d" % step
+
+        identity = CdiUtil.bean(Identity)
+        session_attributes = identity.getSessionId().getSessionAttributes()
+        
+        if step == 1:
+            try:
+                loginHint = session_attributes.get("login_hint")
+                print "Deduce Passwordless. prepareForStep. Login hint is %s" % loginHint
+                isLoginHint = loginHint != None
+                
+                if self.prevLoginsSettings == None:
+                    if isLoginHint:
+                        identity.setWorkingParameter("loginHint", loginHint)
+                else:
+                    users = self.getCookieValue()    
+                    
+                    if isLoginHint:
+                        
+                        idx = self.findUid(loginHint, users) 
+                        if idx >= 0:
+                            u = users.pop(idx)
+                            users.insert(0, u)
+                        else:
+                            identity.setWorkingParameter("loginHint", loginHint)
+                    
+                    if len(users) > 0:
+                        identity.setWorkingParameter("users", json.dumps(users, separators=(',',':')))
+            
+                # In login.xhtml both loginHint and users are used to properly display the login form
+            except:
+                print "Deduce Passwordless. prepareForStep. Error!", sys.exc_info()[1]
+                
+            return True
+            
+        else:
+            user = CdiUtil.bean(AuthenticationService).getAuthenticatedUser()
+
+            if user == None:
+                print "Deduce Passwordless. prepareForStep. Cannot retrieve logged user"
+                return False
+                
+            acr = session_attributes.get("ACR")
+            print "Deduce Passwordless. prepareForStep. ACR = %s" % acr
+            
+            identity.setWorkingParameter("methods", ArrayList(self.getAvailMethodsUser(user, acr)))
+
+            if acr in self.authenticators:
+                module = self.authenticators[acr]
+                return module.prepareForStep(module.configAttrs, requestParameters, step)
+            else:
+                return False
+
+    def getExtraParametersForStep(self, configurationAttributes, step):
+
+        print "Deduce Passwordless. getExtraParametersForStep %d" % step
+        list = ArrayList()
+        if step > 1:
+            acr = CdiUtil.bean(Identity).getWorkingParameter("ACR")
+
+            if acr in self.authenticators:
+                module = self.authenticators[acr]
+                params = module.getExtraParametersForStep(module.configAttrs, step)
+                if params != None:
+                    list.addAll(params)
+
+            list.addAll(Arrays.asList("ACR", "methods"))
+            print "extras are %s" % list
+        return list
+
+    def getCountAuthenticationSteps(self, configurationAttributes):
+        return 2
+
+    def getPageForStep(self, configurationAttributes, step):
+        if step > 1:
+            identity = CdiUtil.bean(Identity)
+            acr = CdiUtil.bean(Identity).getWorkingParameter("ACR")
+            if acr in self.authenticators:
+                module = self.authenticators[acr]
+                page = module.getPageForStep(module.configAttrs, step)
+                
+                print "Deduce Passwordless. getPageForStep %d is %s" % (step, page)                
+                return page
+                
+        return "/auth/deduce/loginD.xhtml"
+
+    def getNextStep(self, configurationAttributes, requestParameters, step):
+        print "Deduce Passwordless. getNextStep called %d" % step
+        identity = CdiUtil.bean(Identity)
+        if step > 1:
+            session_attributes = identity.getSessionId().getSessionAttributes()
+            acr = session_attributes.get("alternativeMethod")
+            if acr != None:
+                print "Deduce Passwordless. getNextStep. Use alternative method %s" % acr
+                CdiUtil.bean(Identity).setWorkingParameter("ACR", acr)
+                #retry step with different acr
+                return 2
+        return -1
+
+    def logout(self, configurationAttributes, requestParameters):
+        return True
+
+# Miscelaneous
+
+    def getLocalPrimaryKey(self):
+        entryManager = CdiUtil.bean(PersistenceEntryManager)
+        config = GluuConfiguration()
+        config = entryManager.find(config.getClass(), "ou=configuration,o=gluu")
+        #Pick (one) attribute where user id is stored (e.g. uid/mail)
+        uid_attr = config.getOxIDPAuthentication().get(0).getConfig().getPrimaryKey()
+        print "Deduce Passwordless. init. uid attribute is '%s'" % uid_attr
+        return uid_attr
+
+
+    def setError(self, msg):
+        facesMessages = CdiUtil.bean(FacesMessages)
+        facesMessages.setKeepMessages()
+        facesMessages.clear()
+        facesMessages.add(FacesMessage.SEVERITY_ERROR, msg)
+
+
+    def computeMethods(self, sndStepMethods, scriptsList):
+        snd_step_methods = [] if sndStepMethods == None else StringHelper.split(sndStepMethods.getValue2(), ",")        
+        methods = []
+        
+        for m in snd_step_methods:
+            for customScript in scriptsList:
+                if customScript.getName() == m and customScript.isEnabled():
+                    methods.append(m)
+
+        print "Deduce Passwordless. computeMethods. %s" % methods
+        return methods
+
+
+    def getConfigurationAttributes(self, acr, scriptsList):
+
+        configMap = HashMap()
+        for customScript in scriptsList:
+            if customScript.getName() == acr:
+                for prop in customScript.getConfigurationProperties():
+                    configMap.put(prop.getValue1(), SimpleCustomProperty(prop.getValue1(), prop.getValue2()))
+
+        print "Deduce Passwordless. getConfigurationAttributes. %d configuration properties were found for %s" % (configMap.size(), acr)
+        return configMap
+
+
+    def getAvailMethodsUser(self, user, skip=None):
+        methods = ArrayList()
+
+        for method in self.authenticators:
+            try:
+                module = self.authenticators[method]
+                if module.hasEnrollments(module.configAttrs, user) and (skip == None or skip != method):
+                    methods.add(method)
+            except:
+                print "Deduce Passwordless. getAvailMethodsUser. hasEnrollments call could not be issued for %s module" % method
+                print "Exception: ", sys.exc_info()[1]
+
+        print "Deduce Passwordless. getAvailMethodsUser %s" % methods.toString()
+        return methods
+
+
+    def simulateFirstStep(self, requestParameters, acr):
+        #To simulate 1st step, there is no need to call:
+        # getPageforstep (no need as user/pwd won't be shown again)
+        # isValidAuthenticationMethod (by restriction, it returns True)
+        # prepareForStep (by restriction, it returns True)
+        # getExtraParametersForStep (by restriction, it returns None)
+        print "Deduce Passwordless. simulateFirstStep. Calling authenticate (step 1) for %s module" % acr
+        if acr in self.authenticators:
+            module = self.authenticators[acr]
+            auth = module.authenticate(module.configAttrs, requestParameters, 1)
+            print "Deduce Passwordless. simulateFirstStep. returned value was %s" % auth
+            
+    def computePrevLoginsSettings(self, customProperty):
+        settings = None
+        if customProperty == None:
+            print "Deduce Passwordless. Previous logins feature is not configured. Set config property '%s' if desired" % self.PREV_LOGIN_SETTING
+        else:
+            try:
+                settings = json.loads(customProperty.getValue2())
+                if settings['enabled']:
+                	print "Deduce Passwordless. PrevLoginsSettings are %s" % settings
+                else:
+                    settings = None
+                    print "Deduce Passwordless. Previous logins feature is disabled"
+            except:
+                print "Deduce Passwordless. Unparsable config property '%s'" % self.PREV_LOGIN_SETTING
+            
+        return settings
+        
+    def getCookieValue(self):
+        ulist = []
+        coo =  None
+        httpRequest = ServerUtil.getRequestOrNull()
+        
+        if httpRequest != None:
+            for cookie in httpRequest.getCookies():
+                if cookie.getName() == self.prevLoginsSettings['cookieName']:
+                   coo = cookie
+        
+        if coo == None:
+            print "Deduce Passwordless. getCookie. No cookie found"
+        else:
+            print "Deduce Passwordless. getCookie. Found cookie"
+            forgetMs = self.prevLoginsSettings['forgetEntriesAfterMinutes'] * 60 * 1000
+            
+            try:
+                now = System.currentTimeMillis()
+                value = URLDecoder.decode(coo.getValue(), "utf-8")
+                # value is an array of objects with properties: uid, displayName, lastLogon
+                value = json.loads(value)
+                
+                for v in value:
+                    if now - v['lastLogon'] < forgetMs:
+                        ulist.append(v)        
+                # print "==========", ulist
+            except:
+                print "Deduce Passwordless. getCookie. Unparsable value, dropping cookie..."
+            
+        return ulist
+        
+
+    def findUid(self, uid, users):
+        
+        i = 0
+        idx = -1
+        for user in users:
+            if user['uid'] == uid:
+                idx = i
+                break
+            i+=1
+        return idx
+        
+            
+    def persistCookie(self, user):
+        try:
+            now = System.currentTimeMillis()
+            uid = user.getUserId()
+            dname = user.getAttribute("displayName")
+            
+            users = self.getCookieValue()
+            idx = self.findUid(uid, users)
+            
+            if idx >= 0:
+                u = users.pop(idx)
+            else:
+                u = { 'uid': uid, 'displayName': '' if dname == None else dname }
+            u['lastLogon'] = now
+            
+            # The most recent goes first :)
+            users.insert(0, u)
+            
+            excess = len(users) - self.prevLoginsSettings['maxListSize']            
+            if excess > 0:
+                print "Deduce Passwordless. persistCookie. Shortening list..."
+                users = users[:self.prevLoginsSettings['maxListSize']]
+            
+            value = json.dumps(users, separators=(',',':'))
+            value = URLEncoder.encode(value, "utf-8")
+            coo = Cookie(self.prevLoginsSettings['cookieName'], value)
+            coo.setSecure(True)
+            coo.setHttpOnly(True)
+            # One week
+            coo.setMaxAge(7 * 24 * 60 * 60)
+            
+            response = self.getHttpResponse()
+            if response != None:
+                print "Deduce Passwordless. persistCookie. Adding cookie to response"
+                response.addCookie(coo)
+        except:
+            print "Deduce Passwordless. persistCookie. Exception: ", sys.exc_info()[1]
+
+
+    def getHttpResponse(self):
+        try:
+            return FacesContext.getCurrentInstance().getExternalContext().getResponse()
+        except:
+            print "Deduce Passwordless. Error accessing HTTP response object: ", sys.exc_info()[1]
+            return None
+   
+    def getSessionAttribute(self, attribute_name):
+        identity = CdiUtil.bean(Identity)
+        # Try to get attribute value from Seam event context
+        if identity.isSetWorkingParameter(attribute_name):
+            return identity.getWorkingParameter(attribute_name)
+        # Try to get attribute from persistent session
+        session_id = identity.getSessionId()
+        if session_id == None:
+            return None
+        session_attributes = session_id.getSessionAttributes()
+        if session_attributes == None:
+            return None
+        if session_attributes.containsKey(attribute_name):
+            return session_attributes.get(attribute_name)
+        return None   
+    
+    def sendInsightsRequest(self, ip, email, platform, action):
+        httpService = CdiUtil.bean(HttpService)
+        http_client = httpService.getHttpsClient()
+        http_client_params = http_client.getParams()  
+        
+        data = { "site":self.DEDUCE_SITE,"apikey":self.DEDUCE_API_KEY,"ip":ip, "email":email,"user_agent":platform, "action": action }
+        payload = json.dumps(data) 
+        headers = {  "Accept" : "application/json" }
+        print "Deduce Passwordless. payload %s " % payload
+        try:
+            http_service_response = httpService.executePost(http_client, self.DEDUCE_ENDPOINT, None, headers, payload)
+            http_response = http_service_response.getHttpResponse()
+            print "http_response %s" % http_response
+        except:
+            print "Deduce Passwordless. Exception: ", sys.exc_info()[1]
+            return False
+
+        try:
+            if not httpService.isResponseStastusCodeOk(http_response):
+                print "Deduce Passwordless. Got invalid response from validation server: ", str(http_response.getStatusLine().getStatusCode())
+                httpService.consume(http_response)
+                return False
+    
+            response_bytes = httpService.getResponseContent(http_response)
+            response_string = httpService.convertEntityToString(response_bytes)
+            print "response_string %s" %response_string
+            httpService.consume(http_response)
+            if ("IMPOSSIBLE_TRAVEL" in response_string):
+                return True
+        finally:
+            http_service_response.closeConnection()
+
+        if response_string is None:
+            print "Deduce Passwordless. Got empty response from validation server"
+            return False
+        
+        return False  
+    
+    def lockUser(self, user_name):
+        if StringHelper.isEmpty(user_name):
+            return None
+
+        userService = CdiUtil.bean(UserService)
+        cacheService= CdiUtil.bean(CacheService)
+       
+        find_user_by_uid = userService.getUser(user_name)
+        if (find_user_by_uid == None):
+            return None
+
+        status_attribute_value = userService.getCustomAttribute(find_user_by_uid, "gluuStatus")
+        if status_attribute_value != None:
+            user_status = status_attribute_value.getValue()
+            if StringHelper.equals(user_status, "inactive"):
+                print "Deduce Passwordless. (lock account). Lock user. User '%s' locked already" % user_name
+                return 
+        
+        userService.setCustomAttribute(find_user_by_uid, "gluuStatus", "inactive")
+        updated_user = userService.updateUser(find_user_by_uid)
+
+        object_to_store = json.dumps({'locked': True, 'created': LocalDateTime.now().toString()}, separators=(',',':'))
+
+        cacheService.put(StringHelper.toString(self.lockExpirationTime), "lock_user_"+user_name, object_to_store);
+        self.setError( "Impossible travel detected. Your account has been locked. Please contact the administrator")
+
+        print "Deduce Passwordless. (lock account). Lock user. User '%s' locked" % user_name
\ No newline at end of file
diff --git a/oxAuth/Server/integrations/deduce/README_PASSWORDLESS_AUTHN_WITH_DEDUCE.md b/oxAuth/Server/integrations/deduce/README_PASSWORDLESS_AUTHN_WITH_DEDUCE.md
new file mode 100644
index 00000000..4b33482a
--- /dev/null
+++ b/oxAuth/Server/integrations/deduce/README_PASSWORDLESS_AUTHN_WITH_DEDUCE.md
@@ -0,0 +1,111 @@
+# Integrating Impossible travel feature by Deduce Insights in Passwordless Authentication flow.
+
+## Overview
+[Deduce](https://www.deduce.com/) is a cybersecurity company built on the premise of using data for good. We’ve repeatedly seen the impact of bad actors working together to cause damage and compromise customers and organizations alike. Deduce democratizes technologies and shifts the advantage back to the security community.
+
+Deduce Identity Insights acts as a cyber security radar for validating good users and detecting fraudulent activity. The platform provides actionable data in relation to a user’s digital activity to enable smarter, more accurate security decisions. The Impossible travel alert which is a part of Insights service is raised when a user travels to a new location from a previous location within an unrealistic timeframe.
+
+This document explains how to use the Gluu Server's included interception script that integrates this feature "Impossible travel " into the passwordless authentication flow.
+
+This interception script allows administrators to deploy a passwordless authentication flow in Gluu Server. In short the flow works as follows:
+
+- A form is shown where a username is prompted
+- A query is issued in the underlying database for credentials that potentially may be employed as a second factor
+- A form is shown where the user must present a certain credential in order to gain access. Depending on the available credentials and configuration, the user may choose to present a different alternative credential
+- Once the second factor is presented and validated successfully, the user's browser is redirected to the target application
+
+Additionally, there are some features worth noting:
+
+- [login hint](#login-hint) support 
+- [Account choice](#account-choice)
+- Configurable [authentication mechanisms for second factor](#authentication-mechanisms-for-second-factor)
+
+## Flow setup
+
+### Requirements
+
+- Ensure you have a running instance of Gluu Server 4.3
+- While not a requisite, usage of [Gluu Casa](https://casa.gluu.org) is highly recommended as part of your 2FA solution. Among others this app helps users to enroll their authentication credentials which is a key aspect for passwordless authentication to take place. 
+
+### Enable 2FA-related scripts
+
+1. Log in to oxTrust with admin credentials
+2. Visit `Configuration` > `Person Authentication Scripts`, click on `fido2` and ensure the script is flagged as enabled 
+3. If you want to support [Super Gluu](https://super.gluu.org/home/) as second factor too, enable the `super_gluu` script. Support for biometric authentication is available as well, for this purpose follow [these instructions](https://www.gluu.org/docs/gluu-server/authn-guide/BioID/) 
+
+
+
+### Add the passwordless script
+
+1. Log in to oxTrust with admin credentials
+2. Visit `Configuration` > `Person Authentication Scripts`. At the bottom click on `Add custom script configuration` and fill values as follows:
+   - For `name` use a meaningful identifier, like `passwordless`
+   - In the `script` field use the contents of this [file](https://github.com/GluuFederation/oxAuth/raw/version_4.2.3/Server/integrations/passwordless/PasswordlessAuthenticationWithDeduceImpossTravel.py)
+   - Tick the `enabled` checkbox
+   - For the rest of fields, you can accept the defaults
+3. Click on `Add new property`. On the left type `snd_step_methods`, on the right use `fido2,super_gluu` or whatever suits your needs best. See [Authentication mechanisms for second factor](#authentication-mechanisms-for-second-factor) for more
+4. The script has the following additional properties. Add the properties to the passwordless script.
+
+|	Property	|	Description		|	Example	|
+|-----------------------|-------------------------------|---------------|
+|DEDUCE_ENDPOINT		|API endpoint provided by Deduce. |`https://api.deducesecurity.com/insights`|
+|DEDUCE_API_KEY 		|API Key provided by Deduce. |`87d55ba11acd1a23ee6c054f3460154e`|
+|DEDUCE_SITE		|site provided by Deduce. |`site name`|
+
+5. If `super_gluu` was listed in the previous step, click on `Add new property`. On the left type `supergluu_app_id`, on the right use `https://<your-gluu-host-name>/casa`. This is the URL (aka application ID) that Super Gluu enrollments are already (or will be) associated to.
+6. Scroll down and click on the `Update` button at the bottom of the page
+
+**Notes:**
+
+If you want to support Account Choice see the [corresponding section](#account-choice).
+
+### Transfer script assets to your server
+
+Extract [this file](https://github.com/GluuFederation/oxAuth/raw/version_4.2.3/Server/integrations/passwordless/bundle.zip) to the root (ie. `/`) of your Gluu server. In a standard CE installation this means extraction should take place under `/opt/gluu-server`.
+
+The zip file contains UI pages (forms), associated javascript and CSS files, as well as miscellaneous python code required for the flow to run properly. When extracting use the `root` user. 
+
+## Login Hint
+
+When the authentication request that triggers the authentication contains the `login_hint` parameter (see http://openid.net/specs/openid-connect-core-1_0.html#AuthRequest), this value is used to automatically populate the username input field in the initial form. 
+
+## Account Choice
+
+This feature shows a list of selectable usernames in order to save users some typing. The list is populated with usernames that were employed in recent successful login events in the given browser. In addition to the list, a "Use another account" link allows users to enter a different username if needed.
+
+In order to configure this feature follow the steps below:
+
+1. Log into oxTrust with admin credentials
+2. Visit `Configuration` > `Person Authentication Scripts` and select the recently created entry for the passwordless script
+3. Scroll down and click on `Add new property`
+4. In the empty text field appearing on the left type `prevLoginsCookieSettings`
+5. In the field on the right hand side paste the following:
+
+```
+{"enabled": true, "maxListSize": 4, "forgetEntriesAfterMinutes": 10080, "cookieName": "pwdlesscookie"}
+```
+6. Scroll down and click on the `Update` button
+
+Note how the JSON content helps drive the behavior of account choice:
+
+- `enabled` turns on and off this feature
+- `maxListSize` helps keeping the list small. Only the most recent usernames will be shown up to the limit set by this property 
+- `forgetEntriesAfterMinutes` is used to make individual list entries expire: if the last successful login attempt for a user took place long ago, it will not be part of the list anymore. The value provided in the example above corresponds to one week
+- `cookieName`. Account choice is implemented by means of a browser cookie. This property is used to control its name.
+
+Account choice also works in conjunction with [Login hint](#login-hint). If the given hint matches any of the remembered usernames, such username will appear first in the list, otherwise the hint will be shown once the "Use another account" link is clicked.
+
+## Authentication mechanisms for second factor
+
+In a passwordless scenario you may want to offer a trusted/restricted set of authentication methods for use in the second step. A popular choice for this is FIDO. The passwordless flow offered by Gluu also supports [Super Gluu](https://super.gluu.org/home/) as well as Biometric authentication by [BioID](https://www.bioid.com/).
+
+Please note the `snd_step_methods` custom property of the passwordless interception script in oxTrust. It contains a comma-separated list of identifiers of authentication methods that will be part of the second step of the flow. Note order is relevant: a method appearing first is preferred (prompted) over one appearing further in the list. 
+
+## Test 
+
+Create one or more users for testing. These users should have already enrolled credentials belonging to one or more of the methods listed in `snd_step_methods` property of the script. For this purpose [Casa](https://casa.gluu.org) is a natural choice.
+
+In a testing RP (eg. web application) issue authentication requests such that the `acr_values` parameter is set to the name of the passwordless script. Parameter `login_hint` can optionally be set.
+
+!!! Note
+    Users without credentials belonging to any of the methods in `snd_step_methods` won't get past the first step of the flow.
diff --git a/oxAuth/Server/integrations/duo-universal-prompt/DuoUniversalPromptExternalAuthenticator.py b/oxAuth/Server/integrations/duo-universal-prompt/DuoUniversalPromptExternalAuthenticator.py
new file mode 100644
index 00000000..52754158
--- /dev/null
+++ b/oxAuth/Server/integrations/duo-universal-prompt/DuoUniversalPromptExternalAuthenticator.py
@@ -0,0 +1,177 @@
+from org.gluu.service.cdi.util import CdiUtil
+from org.gluu.oxauth.security import Identity
+from org.gluu.model.custom.script.type.auth import PersonAuthenticationType
+from org.gluu.oxauth.service import AuthenticationService
+from org.gluu.oxauth.service.common import UserService
+from org.gluu.util import ArrayHelper
+from org.gluu.util import StringHelper
+from java.util import Arrays
+from javax.faces.context import FacesContext
+from org.gluu.oxauth.service.net import HttpService
+import os
+import java
+import sys
+from com.duosecurity import Client
+from com.duosecurity.exception import DuoException
+from com.duosecurity.model import Token
+from org.gluu.jsf2.service import FacesService
+from org.gluu.jsf2.message import FacesMessages
+from org.gluu.oxauth.util import ServerUtil
+
+
+class PersonAuthentication(PersonAuthenticationType):
+    def __init__(self, currentTimeMillis):
+        self.currentTimeMillis = currentTimeMillis
+
+    def init(self, customScript, configurationAttributes):
+        print "Duo-Universal. Initialization"
+        
+        if (not configurationAttributes.containsKey("client_id")):
+	        print "Duo Universal. Initialization. Property client_id is not specified"
+	        return False
+        else: 
+        	self.client_id = configurationAttributes.get("client_id").getValue2() 
+        	
+        if (not configurationAttributes.containsKey("client_secret")):
+	        print "Duo Universal. Initialization. Property client_secret is not specified"
+	        return False
+        else: 
+        	self.client_secret = configurationAttributes.get("client_secret").getValue2() 
+        	
+        if (not configurationAttributes.containsKey("api_hostname")):
+	        print "Duo Universal. Initialization. Property api_hostname is not specified"
+	        return False
+        else: 
+        	self.api_hostname = configurationAttributes.get("api_hostname").getValue2() 
+            
+        print "Duo-Universal. Initialized successfully"
+        return True   
+
+    def destroy(self, configurationAttributes):
+        print "Duo-Universal. Destroy"
+        print "Duo-Universal. Destroyed successfully"
+        return True
+
+    def getApiVersion(self):
+        return 11
+        
+    def getAuthenticationMethodClaims(self, requestParameters):
+        return None
+        
+    def isValidAuthenticationMethod(self, usageType, configurationAttributes):
+        return True
+
+    def getAlternativeAuthenticationMethod(self, usageType, configurationAttributes):
+        return None
+
+    def authenticate(self, configurationAttributes, requestParameters, step):
+        print "Duo-Universal. Authenticate for step %s" % step
+        
+        identity = CdiUtil.bean(Identity)
+        if (step == 1):
+            authenticationService = CdiUtil.bean(AuthenticationService)
+
+            # Check if user authenticated already in another custom script
+            user = authenticationService.getAuthenticatedUser()
+            
+            if user == None:
+                print "user is none"
+                credentials = identity.getCredentials()
+                
+                user_name = credentials.getUsername()
+                user_password = credentials.getPassword()
+    
+                logged_in = False
+                if (StringHelper.isNotEmptyString(user_name) and StringHelper.isNotEmptyString(user_password)):
+                    userService = CdiUtil.bean(UserService)
+                    logged_in = authenticationService.authenticate(user_name, user_password)
+    				
+                if (not logged_in):
+                    print "return false"
+                    return False
+                identity.setWorkingParameter('username',user_name)
+            return True
+            
+        elif (step == 2):
+               
+            identity = CdiUtil.bean(Identity)
+            
+            state = ServerUtil.getFirstValue(requestParameters, "state")
+ 	    # Get state to verify consistency and originality
+            if  identity.getWorkingParameter('state_duo') == state :
+        	
+            	# Get authorization token to trade for 2FA
+            	duoCode = ServerUtil.getFirstValue(requestParameters, "duo_code")
+	        try:
+	               token = self.duo_client.exchangeAuthorizationCodeFor2FAResult(duoCode, identity.getWorkingParameter('username'))
+                       print "token status %s " % token.getAuth_result().getStatus()
+	        except:
+	               # Handle authentication failure.
+	               print "authentication failure", sys.exc_info()[1]
+	               return False
+	        
+	        # User successfully passed Duo authentication.
+	        
+	        if "allow" == token.getAuth_result().getStatus():
+	           return True
+	           
+	        return False
+                
+        else:
+            print "Neither step 1 or 2" 
+            return False
+
+    def prepareForStep(self, configurationAttributes, requestParameters, step):
+    	print "Duo-Universal. Prepare for step %s" % step
+        
+        if (step == 1):
+            return True
+        elif (step == 2):
+        	identity = CdiUtil.bean(Identity)
+                user_name = identity.getWorkingParameter('username')
+        	facesContext = CdiUtil.bean(FacesContext)
+        	request = facesContext.getExternalContext().getRequest()
+        	httpService = CdiUtil.bean(HttpService)
+        	url = httpService.constructServerUrl(request) + "/postlogin.htm"
+        	
+        	try:
+                        print "before health check"
+	        	self.duo_client = Client(self.client_id,self.client_secret,self.api_hostname,url)
+	        	self.duo_client.healthCheck()
+                        print "after health check"
+	    	except:
+                        print "Duo-Universal. Duo config error. Verify the values in Duo-Universal.conf are correct ", sys.exc_info()[1]
+                        return False
+                            
+                state = self.duo_client.generateState()
+                identity.setWorkingParameter("state_duo",state)
+                prompt_uri = self.duo_client.createAuthUrl(user_name, state)
+                
+                facesService = CdiUtil.bean(FacesService)
+                facesService.redirectToExternalURL(prompt_uri )
+
+                return True
+                    
+        else:
+            return False
+
+    def getExtraParametersForStep(self, configurationAttributes, step):
+        return Arrays.asList("state_duo", "username")
+
+    def getCountAuthenticationSteps(self, configurationAttributes):
+        return 2
+
+    def getPageForStep(self, configurationAttributes, step):
+        print "Duo-Universal. getPageForStep - %s " % step
+        return ""
+
+    def getNextStep(self, configurationAttributes, requestParameters, step):
+        return -1
+
+    def getLogoutExternalUrl(self, configurationAttributes, requestParameters):
+        print "Get external logout URL call"
+        return None
+
+    def logout(self, configurationAttributes, requestParameters):
+        return True
+        
diff --git a/oxAuth/Server/integrations/duo-universal-prompt/README.txt b/oxAuth/Server/integrations/duo-universal-prompt/README.txt
new file mode 100644
index 00000000..dbf34955
--- /dev/null
+++ b/oxAuth/Server/integrations/duo-universal-prompt/README.txt
@@ -0,0 +1,98 @@
+# Duo Security using Universal Prompt
+## Overview
+[Duo Security](https://duosecurity.com) is a SaaS authentication provider. This document will explain how to use Gluu's [Duo interception script](https://github.com/GluuFederation/oxAuth/blob/master/Server/integrations/duo-universal-prompt/DuoUniversalPromptExternalAuthenticator.py) to configure the Gluu Server for a two-step authentication process with username and password as the first step, and Duo as the second step. The script invokes the Universal Prompt which is a redesign of Duo’s traditional authentication prompt. 
+
+In order to use this authentication mechanism your organization will need a Duo account and users will need to download the Duo mobile app. 
+
+## Prerequisites
+- A Gluu Server ([installation instructions](../installation-guide/index.md));
+- [Duo interception script](https://github.com/GluuFederation/oxAuth/blob/master/Server/integrations/duo-universal-prompt/DuoUniversalPromptExternalAuthenticator.py) (included in the default Gluu Server distribution);
+- An account with [Duo Security](https://duo.com/).   
+
+
+## Configure Duo AccountS
+
+1. [Sign up](https://duo.com/) for a Duo account.
+
+2. Log in to the Duo Admin Panel and navigate to Applications.
+
+3. Click Protect an Application and locate Web SDK in the applications list. Click Protect this Application to get your client ID, secret key, and API hostname.
+
+For additional info for the steps refer to Duo's Web SDK 4, check [this article](https://duo.com/docs/duoweb-v4). 
+
+## Add the duo-universal Dependency to your oxAuth
+
+Note: The dependencies have to be added seperately as mentioned in the steps below. Using a fat jar (duo-universal-sdk-1.0.3-with-dependencies.jar leads to conflicts.)
+	1. Copy these jar files to the following oxAuth folder inside the Gluu Server chroot: /opt/gluu/jetty/oxauth/custom/libs
+       Dependency jars : 
+		[duo-universal-sdk-1.0.3.jar](https://repo1.maven.org/maven2/com/duosecurity/duo-universal-sdk/1.0.3/duo-universal-sdk-1.0.3.jar) ,
+		[converter-jackson-2.1.0.jar](https://repo1.maven.org/maven2/com/squareup/retrofit2/converter-jackson/2.1.0/converter-jackson-2.1.0.jar) ,
+                [java-jwt-3.3.0.jar] (https://repo1.maven.org/maven2/com/auth0/java-jwt/3.3.0/java-jwt-3.3.0.jar),
+		[logging-interceptor-3.3.1.jar](https://repo1.maven.org/maven2/com/squareup/okhttp3/logging-interceptor/3.3.1/logging-interceptor-3.3.1.jar),
+		[lombok-1.18.16.jar](https://repo1.maven.org/maven2/org/projectlombok/lombok/1.18.16/lombok-1.18.16.jar),
+		[retrofit-2.5.0.jar](https://repo1.maven.org/maven2/com/squareup/retrofit2/retrofit/2.5.0/retrofit-2.5.0.jar),
+		[okio-2.9.0.jar](https://repo1.maven.org/maven2/com/squareup/okio/okio/2.9.0/okio-2.9.0.jar),
+		[okhttp-3.12.0.jar](https://repo1.maven.org/maven2/com/squareup/okhttp3/okhttp/3.12.0/okhttp-3.12.0.jar),
+		[kotlin-stdlib-1.4.21.jar](https://repo1.maven.org/maven2/org/jetbrains/kotlin/kotlin-stdlib/1.4.21/kotlin-stdlib-1.4.21.jar)	   
+
+	1. Edit /opt/gluu/jetty/oxauth/webapps/oxauth.xml and add the following line:
+<Set name="extraClasspath">./custom/libs/duo-universal-sdk-1.0.3.jar,./custom/libs/converter-jackson-2.1.0.jar,./custom/libs/java-jwt-3.3.0.jar,./custom/libs/logging-interceptor-3.3.1.jar,./custom/libs/lombok-1.18.16.jar,./custom/libs/retrofit-2.5.0.jar,./custom/libs/okio-2.9.0.jar,./custom/libs/okhttp-3.12.0.jar,./custom/libs/kotlin-stdlib-1.4.21.jar</Set>
+
+
+	1. Restart the oxauth service
+
+
+## Configure oxTrust 
+
+Follow the steps below to configure the Duo module in the oxTrust Admin GUI.
+
+1. Navigate to `Configuration` > `Person Authentication Scripts`.
+   Add a custom script for the 2 factor authentication using DUO credentials and name it duo2 (specifically because this is version 2 ).  
+
+
+1. Add the following Custom Property ( key/value pairs ) 
+
+
+|	Property	|Status		|	Description	|	Example		|
+|-----------------------|---------------|-----------------------|-----------------------|
+|api_hostname		|Mandatory     |URL of the Duo API Server|api-random.duosecurity.com|
+|client_id		|Mandatory    |Value from the Duo application using Web SDK 4 that was registered using DUO Admin console|DI3ICTTJKLL8PPPNGH7YI|
+|client_secret	|Mandatory|Value from the Duo application using Web SDK 4 that was registered using DUO Admin console|eEbJdi3hg42zxyFYbHArU5RuioPP|   
+
+1. Enable the script by ticking the check box    
+![enable](../img/admin-guide/enable.png)
+
+Now Duo is an available authentication mechanism for your Gluu Server. This means that, using OpenID Connect `acr_values`, applications can now request Duo authentication for users. 
+
+!!! Note 
+    To make sure Duo has been enabled successfully, you can check your Gluu Server's OpenID Connect configuration by navigating to the following URL: `https://<hostname>/.well-known/openid-configuration`. Find `"acr_values_supported":` and you should see `"duo2"`. 
+
+## Make Duo the Default Authentication Mechanism
+
+Now applications can request Duo authentication, but what if you want to make Duo your default authentication mechanism? You can follow these instructions: 
+
+1. Navigate to `Configuration` > `Manage Authentication`. 
+2. Select the `Default Authentication Method` tab. 
+3. In the Default Authentication Method window you will see two options: `Default acr` and `oxTrust acr`. 
+
+    - The `oxTrust acr` field controls the authentication mechanism that is presented to access the oxTrust dashboard GUI (the application you are in).    
+    - The `Default acr` field controls the default authentication mechanism that is presented to users from all applications that leverage your Gluu Server for authentication.    
+
+You can change one or both fields to Duo authentication as you see fit. If you want Duo to be the default authentication mechanism for access to oxTrust and all other applications that leverage your Gluu Server, change both fields to Duo.  
+ 
+!!! Note 
+    Currently, the DUO Universal Prompt has not yet been released. However, DUO has enabled customers to be application ready so that the switch to the newer User Interface can be seamless.  
+
+## Upgrading to the DUO Universal Prompt from the older user interface for enrolling DUO credentials
+
+### In DUO Admin Console:
+1. Register a new Duo's Web SDK 4 application, check [this article](https://duo.com/docs/duoweb-v4).  
+1. Save the client id and secret
+
+### In oxTrust :
+1. Update the original duo script to reflect the latest contents.
+1. Add script properties as mentioned in the above steps. The client ID and client secret can be obtained from the Web SDK 4 application of the DUO admin console.
+
+### Add the duo-universal Dependency to your oxAuth
+Follow the exact steps mentioned previously in the document
+
diff --git a/oxAuth/Server/integrations/duo.passport.combine/Passport_and_Duo-Universal.py b/oxAuth/Server/integrations/duo.passport.combine/Passport_and_Duo-Universal.py
new file mode 100644
index 00000000..f954c0b2
--- /dev/null
+++ b/oxAuth/Server/integrations/duo.passport.combine/Passport_and_Duo-Universal.py
@@ -0,0 +1,802 @@
+# oxAuth is available under the MIT License (2008). See http://opensource.org/licenses/MIT for full text.
+# Copyright (c) 2019, Gluu
+# Author: Jose Gonzalez
+# Author: Yuriy Movchan
+# Co-Author: Md Mostafejur Rahman
+
+from org.gluu.jsf2.service import FacesService
+from org.gluu.jsf2.message import FacesMessages
+
+from org.gluu.oxauth.model.common import User, WebKeyStorage
+from org.gluu.oxauth.model.configuration import AppConfiguration
+from org.gluu.oxauth.model.crypto import CryptoProviderFactory
+from org.gluu.oxauth.model.jwt import Jwt, JwtClaimName
+from org.gluu.oxauth.model.util import Base64Util
+from org.gluu.oxauth.service import AppInitializer, AuthenticationService
+from org.gluu.oxauth.service.common import UserService, EncryptionService
+from org.gluu.oxauth.service.net import HttpService
+from org.gluu.oxauth.security import Identity
+from org.gluu.oxauth.util import ServerUtil
+from org.gluu.config.oxtrust import LdapOxPassportConfiguration
+from org.gluu.model.custom.script.type.auth import PersonAuthenticationType
+from org.gluu.persist import PersistenceEntryManager
+from org.gluu.service.cdi.util import CdiUtil
+from org.gluu.util import StringHelper
+from java.util import ArrayList, Arrays, Collections
+
+from javax.faces.application import FacesMessage
+from javax.faces.context import FacesContext
+
+import duo_web
+import json
+import sys
+import datetime
+from com.duosecurity import Client
+from com.duosecurity.exception import DuoException
+from com.duosecurity.model import Token
+from org.gluu.jsf2.service import FacesService
+from org.gluu.jsf2.message import FacesMessages
+from org.gluu.oxauth.util import ServerUtil
+
+class PersonAuthentication(PersonAuthenticationType):
+    def __init__(self, currentTimeMillis):
+        self.currentTimeMillis = currentTimeMillis
+
+    def init(self, customScript, configurationAttributes):
+        print "Passport. and Duo-Universal init called"
+        self.duo_flow = False
+        self.passport_flow = False
+        self.countStep = 0
+        self.extensionModule = self.loadExternalModule(configurationAttributes.get("extension_module"))
+        extensionResult = self.extensionInit(configurationAttributes)
+        if extensionResult != None:
+            return extensionResult
+
+        print "Passport. init. Behaviour is social"
+        success = self.processKeyStoreProperties(configurationAttributes)
+
+        if success:
+            self.providerKey = "provider"
+            self.customAuthzParameter = self.getCustomAuthzParameter(configurationAttributes.get("authz_req_param_provider"))
+            self.passportDN = self.getPassportConfigDN()
+            print "Passport. init. Initialization success"
+        else:
+            print "Passport. init. Initialization failed"
+        
+    
+        print "Duo-Universal. Initialization"
+        
+        if (not configurationAttributes.containsKey("client_id")):
+            print "Duo Universal. Initialization. Property client_id is not specified"
+            return False
+        else: 
+            self.client_id = configurationAttributes.get("client_id").getValue2() 
+            
+        if (not configurationAttributes.containsKey("client_secret")):
+            print "Duo Universal. Initialization. Property client_secret is not specified"
+            return False
+        else: 
+            self.client_secret = configurationAttributes.get("client_secret").getValue2() 
+            
+        if (not configurationAttributes.containsKey("api_hostname")):
+            print "Duo Universal. Initialization. Property api_hostname is not specified"
+            return False
+        else: 
+            self.api_hostname = configurationAttributes.get("api_hostname").getValue2() 
+            
+        print "Duo-Universal. Initialized successfully"
+        print "Passport. and Duo-Universal Initialized successfully"
+        
+        return success
+
+    def destroy(self, configurationAttributes):
+        print "Passport. and Duo-Universal destroy called"
+        return True
+
+
+    def getApiVersion(self):
+        return 11
+        
+    def getAuthenticationMethodClaims(self, requestParameters):
+        return None
+        
+    def isValidAuthenticationMethod(self, usageType, configurationAttributes):
+        return True
+
+
+    def getAlternativeAuthenticationMethod(self, usageType, configurationAttributes):
+        return None
+
+
+    def authenticate(self, configurationAttributes, requestParameters, step):
+
+        extensionResult = self.extensionAuthenticate(configurationAttributes, requestParameters, step)
+        if extensionResult != None:
+            return extensionResult
+
+        print "Passport. and Duo-Universal. authenticate for step %s called" % str(step)
+        identity = CdiUtil.bean(Identity)
+        authenticationService = CdiUtil.bean(AuthenticationService)
+        # Loading self.registeredProviders in case passport destroyed
+        if not hasattr(self,'registeredProviders'):
+            print "Passport. Fetching registered providers."
+            self.parseProviderConfigs()
+
+        if step == 1:
+            # Get JWT token
+            jwt_param = ServerUtil.getFirstValue(requestParameters, "user")
+
+            if jwt_param != None:
+                print "Passport. authenticate for step 1. JWT user profile token found"
+                self.setDuoOrPassportFlow('passportFlow')
+                print "Is PassportFlow : %s"%identity.getWorkingParameter('passportFlow')
+                # Parse JWT and validate
+                jwt = Jwt.parse(jwt_param)
+                if not self.validSignature(jwt):
+                    return False
+
+                if self.jwtHasExpired(jwt):
+                    return False
+
+                (user_profile, jsonp) = self.getUserProfile(jwt)
+                if user_profile == None:
+                    return False
+
+                sessionAttributes = identity.getSessionId().getSessionAttributes()
+                self.skipProfileUpdate = StringHelper.equalsIgnoreCase(sessionAttributes.get("skipPassportProfileUpdate"), "true")
+                
+                return self.attemptAuthentication(identity, user_profile, jsonp)
+
+            #See passportlogin.xhtml
+            provider = ServerUtil.getFirstValue(requestParameters, "loginForm:provider")
+            # Check if user authenticated already in another custom script
+            user = authenticationService.getAuthenticatedUser()
+            if StringHelper.isEmpty(provider):
+
+                #it's username + passw auth
+                print "Passport. and Duo-Universal authenticate for step 1. Basic authentication detected"
+                logged_in = False
+
+                credentials = identity.getCredentials()
+                user_name = credentials.getUsername()
+                user_password = credentials.getPassword()
+
+                if StringHelper.isNotEmptyString(user_name) and StringHelper.isNotEmptyString(user_password):
+                    authenticationService = CdiUtil.bean(AuthenticationService)
+                    logged_in = authenticationService.authenticate(user_name, user_password)
+
+                print "Passport. and Duo-Universal authenticate for step 1. Basic authentication returned: %s" % logged_in
+                identity.setWorkingParameter('username',user_name)
+                # print"Is Duoflow : %s"%identity.getWorkingParameter('duoFlow')
+                self.setDuoOrPassportFlow("duoFlow")            
+                return logged_in
+
+            elif provider in self.registeredProviders:
+                #it's a recognized external IDP
+                identity.setWorkingParameter("selectedProvider", provider)
+                print "Passport. and Duo-Universal authenticate for step 1. Retrying step 1"
+                #see prepareForStep (step = 1)
+                # identity.setWorkingParameter('passportFlow', True)
+                self.setDuoOrPassportFlow('passportFlow')
+                # self.passport_flow = True
+                return True
+
+        if step == 2:           
+            print("is DuoFlow for authStep-2 : %s"%self.isDuoOrPassportFlow('duoFlow'))
+            print("is PassportFlow for authrStep-2 : %s"%self.isDuoOrPassportFlow('passportFlow'))            
+            if self.isDuoOrPassportFlow('duoFlow'):                          
+                state = ServerUtil.getFirstValue(requestParameters, "state")
+             # Get state to verify consistency and originality
+                if  identity.getWorkingParameter('state_duo') == state :
+                
+                    # Get authorization token to trade for 2FA
+                    duoCode = ServerUtil.getFirstValue(requestParameters, "duo_code")
+                try:
+                    token = self.duo_client.exchangeAuthorizationCodeFor2FAResult(duoCode, identity.getWorkingParameter('username'))
+                    print "token status %s "%token.getAuth_result().getStatus()
+                except:
+                    # Handle authentication failure.
+                    print "authentication failure", sys.exc_info()[1]
+                    return False
+                
+                # User successfully passed Duo authentication.
+                
+                if "allow" == token.getAuth_result().getStatus():
+                   return True
+                   
+                return False              
+                
+            elif(self.isDuoOrPassportFlow('passportFlow')):
+            # else:
+                mail = ServerUtil.getFirstValue(requestParameters, "loginForm:email")
+                jsonp = identity.getWorkingParameter("passport_user_profile")
+    
+                if mail == None:
+                    self.setMessageError(FacesMessage.SEVERITY_ERROR, "Email was missing in user profile")
+                elif jsonp != None:
+                    # Completion of profile takes place
+                    user_profile = json.loads(jsonp)
+                    user_profile["mail"] = [ mail ]
+    
+                    return self.attemptAuthentication(identity, user_profile, jsonp)
+    
+                print "Passport. authenticate for step 2. Failed: expected mail value in HTTP request and json profile in session"
+                return False
+        else:
+            print "Neither step 1 or 2" 
+            return False
+
+    def prepareForStep(self, configurationAttributes, requestParameters, step):
+
+        extensionResult = self.extensionPrepareForStep(configurationAttributes, requestParameters, step)
+        if extensionResult != None:
+            return extensionResult
+
+        print "Passport. and Duo-Universal prepareForStep called %s"  % str(step)
+        if step == 1:
+                identity = CdiUtil.bean(Identity)           
+                #re-read the strategies config (for instance to know which strategies have enabled the email account linking)
+                self.parseProviderConfigs()
+                identity.setWorkingParameter("externalProviders", json.dumps(self.registeredProviders))
+    
+                providerParam = self.customAuthzParameter
+                url = None
+    
+                sessionAttributes = identity.getSessionId().getSessionAttributes()
+                self.skipProfileUpdate = StringHelper.equalsIgnoreCase(sessionAttributes.get("skipPassportProfileUpdate"), "true")
+    
+                #this param could have been set previously in authenticate step if current step is being retried
+                provider = identity.getWorkingParameter("selectedProvider")
+                if provider != None:
+                    url = self.getPassportRedirectUrl(provider)
+                    identity.setWorkingParameter("selectedProvider", None)
+    
+                elif providerParam != None:
+                    paramValue = sessionAttributes.get(providerParam)
+    
+                    if paramValue != None:
+                        print "Passport. prepareForStep. Found value in custom param of authorization request: %s" % paramValue
+                        provider = self.getProviderFromJson(paramValue)
+    
+                        if provider == None:
+                            print "Passport. prepareForStep. A provider value could not be extracted from custom authorization request parameter"
+                        elif not provider in self.registeredProviders:
+                            print "Passport. prepareForStep. Provider '%s' not part of known configured IDPs/OPs" % provider
+                        else:
+                            url = self.getPassportRedirectUrl(provider)
+    
+                if url == None:
+                    print "Passport. prepareForStep. A page to manually select an identity provider will be shown"
+                else:
+                    facesService = CdiUtil.bean(FacesService)
+                    facesService.redirectToExternalURL(url)
+                    
+                return True
+
+        elif (step == 2):
+            identity = CdiUtil.bean(Identity)
+            print("is DuoFlow prepareforStep-2 : %s"%self.isDuoOrPassportFlow('duoFlow'))
+            print("is Passport prepareforStep-2 : %s"%self.isDuoOrPassportFlow('passportFlow'))
+            if self.isDuoOrPassportFlow('duoFlow'):
+                print("Prepare for Duo Flow for steps %s"%step)
+                user_name = identity.getWorkingParameter('username')
+                facesContext = CdiUtil.bean(FacesContext)
+                request = facesContext.getExternalContext().getRequest()
+                httpService = CdiUtil.bean(HttpService)
+                url = httpService.constructServerUrl(request) + "/postlogin.htm"
+                
+                try:
+                    print "before health check"
+                    self.duo_client = Client(self.client_id,self.client_secret,self.api_hostname,url)
+                    self.duo_client.healthCheck()
+                    print "after health check"
+                except:
+                    print "Duo-Universal. Duo config error. Verify the values in Duo-Universal.conf are correct ", sys.exc_info()[1]
+                    return False
+                                
+                state = self.duo_client.generateState()
+                identity.setWorkingParameter("state_duo",state)
+                prompt_uri = self.duo_client.createAuthUrl(user_name, state)
+                    
+                facesService = CdiUtil.bean(FacesService)
+                facesService.redirectToExternalURL(prompt_uri )
+                # self.duo_flow = False
+                return True
+            else:
+                return True
+                    
+        else:
+            identity = CdiUtil.bean(Identity)
+            if (self.isDuoOrPassportFlow('duoFlow')):
+                print("Prepare for Duo Flow for steps %s"%step)
+                return False
+            elif (self.isDuoOrPassportFlow('passportFlow')):
+                print("Prepare for Passport Flow for steps %s"%step)
+                return True
+            else:
+                return  True
+
+
+    def getExtraParametersForStep(self, configurationAttributes, step):
+        print "Passport. and Duo-Universal getExtraParametersForStep called %s"%step
+        identity = CdiUtil.bean(Identity)
+        if step == 1:
+            return Arrays.asList("selectedProvider", "externalProviders", "state_duo", "username")
+        if step == 2:           
+            if self.isDuoOrPassportFlow('duoFlow'):
+                return Arrays.asList("state_duo", "username")
+            else:          
+                return Arrays.asList("passport_user_profile")       
+        
+        if step == 3:
+            print("You are in steps Three %s"%step)
+            return Arrays.asList("state_duo", "username")
+                   
+        return Arrays.asList("state_duo", "username")
+
+
+    def getCountAuthenticationSteps(self, configurationAttributes):
+        self.countStep+=1
+        print ("Passport. and Duo-Universal getCountAuthenticationSteps called %s"%self.countStep)
+        identity = CdiUtil.bean(Identity)
+        if identity.getWorkingParameter("passport_user_profile") != None:
+            print("GetCount authentication steps for PassportFlow ")
+            if self.countStep>=2:
+                self.resetFlow('passportFlow', False)
+                self.countStep =0            
+            return 2
+     
+        if self.isDuoOrPassportFlow('duoFlow'):
+            print("GetCount authentication steps for Duoflow 2")
+            if self.countStep>=2:
+                self.resetFlow('duoFlow', False)
+                self.countStep =0
+            return 2
+        else:
+            if self.countStep>=2:
+                self.resetFlow('passportFlow', False)
+                self.countStep =0                        
+            return 1
+
+
+    def getPageForStep(self, configurationAttributes, step):
+        print "Passport. and Duo-Universal. getPageForStep called %s"%step
+        identity = CdiUtil.bean(Identity)
+        extensionResult = self.extensionGetPageForStep(configurationAttributes, step)
+        if extensionResult != None:
+            return extensionResult
+
+        if step == 1:
+            return "/auth/passport/passportlogin.xhtml"
+
+        elif (self.isDuoOrPassportFlow('duoFlow')):
+            print("Getpage for Duo Flow for steps %s"%step)
+            return "" 
+        
+        elif(self.isDuoOrPassportFlow('passportFlow')):
+            print("Getpage for passport Flow for steps %s"%step)
+            return "/auth/passport/passportpostlogin.xhtml"
+                
+        return ""
+
+
+    def getNextStep(self, configurationAttributes, requestParameters, step):
+        if step == 1:
+            identity = CdiUtil.bean(Identity)
+            provider = identity.getWorkingParameter("selectedProvider")
+            if provider != None:
+                return 1
+
+        return -1
+
+    def getLogoutExternalUrl(self, configurationAttributes, requestParameters):
+        print "Get external logout URL call"
+        return None
+
+    def logout(self, configurationAttributes, requestParameters):
+        return True
+    
+    def setDuoOrPassportFlow(self, flow):
+        identity = CdiUtil.bean(Identity)
+        identity.setWorkingParameter(flow, True)
+        if flow=="duoFlow":
+            self.duo_flow = True
+        elif flow=="passportFlow":
+            self.passport_flow = True
+
+
+    def isDuoOrPassportFlow(self, flow):
+        if flow=="duoFlow":
+            return self.duo_flow
+        elif flow=="passportFlow":
+            return self.passport_flow
+        
+    def resetFlow(self, flow, value):
+        identity = CdiUtil.bean(Identity)
+        if flow=="duoFlow":
+            self.duo_flow = value
+            identity.setWorkingParameter(flow, value)
+        elif flow=="passportFlow":
+            self.passport_flow = value
+            identity.setWorkingParameter(flow, value)
+            
+        print("Successfully reset Parameters DuoFlow: %s and PassportFlow: %s"%(self.duo_flow, self.passport_flow))
+
+# Extension module related functions
+
+    def extensionInit(self, configurationAttributes):
+
+        if self.extensionModule == None:
+            return None
+        return self.extensionModule.init(configurationAttributes)
+
+
+    def extensionAuthenticate(self, configurationAttributes, requestParameters, step):
+
+        if self.extensionModule == None:
+            return None
+        return self.extensionModule.authenticate(configurationAttributes, requestParameters, step)
+
+
+    def extensionPrepareForStep(self, configurationAttributes, requestParameters, step):
+
+        if self.extensionModule == None:
+            return None
+        return self.extensionModule.prepareForStep(configurationAttributes, requestParameters, step)
+
+
+    def extensionGetPageForStep(self, configurationAttributes, step):
+
+        if self.extensionModule == None:
+            return None
+        return self.extensionModule.getPageForStep(configurationAttributes, step)
+
+# Initalization routines
+
+    def loadExternalModule(self, simpleCustProperty):
+
+        if simpleCustProperty != None:
+            print "Passport. loadExternalModule. Loading passport extension module..."
+            moduleName = simpleCustProperty.getValue2()
+            try:
+                module = __import__(moduleName)
+                return module
+            except:
+                print "Passport. loadExternalModule. Failed to load module %s" % moduleName
+                print "Exception: ", sys.exc_info()[1]
+                print "Passport. loadExternalModule. Flow will be driven entirely by routines of main passport script"
+        return None
+
+
+    def processKeyStoreProperties(self, attrs):
+        file = attrs.get("key_store_file")
+        password = attrs.get("key_store_password")
+
+        if file != None and password != None:
+            file = file.getValue2()
+            password = password.getValue2()
+
+            if StringHelper.isNotEmpty(file) and StringHelper.isNotEmpty(password):
+                self.keyStoreFile = file
+                self.keyStorePassword = password
+                return True
+
+        print "Passport. readKeyStoreProperties. Properties key_store_file or key_store_password not found or empty"
+        return False
+
+
+    def getCustomAuthzParameter(self, simpleCustProperty):
+
+        customAuthzParameter = None
+        if simpleCustProperty != None:
+            prop = simpleCustProperty.getValue2()
+            if StringHelper.isNotEmpty(prop):
+                customAuthzParameter = prop
+
+        if customAuthzParameter == None:
+            print "Passport. getCustomAuthzParameter. No custom param for OIDC authz request in script properties"
+            print "Passport. getCustomAuthzParameter. Passport flow cannot be initiated by doing an OpenID connect authorization request"
+        else:
+            print "Passport. getCustomAuthzParameter. Custom param for OIDC authz request in script properties: %s" % customAuthzParameter
+
+        return customAuthzParameter
+
+# Configuration parsing
+
+    def getPassportConfigDN(self):
+
+        f = open('/etc/gluu/conf/gluu.properties', 'r')
+        for line in f:
+            prop = line.split("=")
+            if prop[0] == "oxpassport_ConfigurationEntryDN":
+              prop.pop(0)
+              break
+
+        f.close()
+        return "=".join(prop).strip()
+
+
+    def parseAllProviders(self):
+
+        registeredProviders = {}
+        print "Passport. parseAllProviders. Adding providers"
+        entryManager = CdiUtil.bean(PersistenceEntryManager)
+
+        config = LdapOxPassportConfiguration()
+        config = entryManager.find(config.getClass(), self.passportDN).getPassportConfiguration()
+        config = config.getProviders() if config != None else config
+
+        if config != None and len(config) > 0:
+            for prvdetails in config:
+                if prvdetails.isEnabled():
+                    registeredProviders[prvdetails.getId()] = {
+                        "emailLinkingSafe": prvdetails.isEmailLinkingSafe(),
+                        "requestForEmail" : prvdetails.isRequestForEmail(),
+                        "logo_img": prvdetails.getLogoImg(),
+                        "displayName": prvdetails.getDisplayName(),
+                        "type": prvdetails.getType()
+                    }
+
+        return registeredProviders
+
+
+    def parseProviderConfigs(self):
+
+        registeredProviders = {}
+        try:
+            registeredProviders = self.parseAllProviders()
+            toRemove = []
+
+            for provider in registeredProviders:
+                if registeredProviders[provider]["type"] == "saml":
+                    toRemove.append(provider)
+                else:
+                    registeredProviders[provider]["saml"] = False
+
+            for provider in toRemove:
+                registeredProviders.pop(provider)
+
+            if len(registeredProviders.keys()) > 0:
+                print "Passport. parseProviderConfigs. Configured providers:", registeredProviders
+            else:
+                print "Passport. parseProviderConfigs. No providers registered yet"
+        except:
+            print "Passport. parseProviderConfigs. An error occurred while building the list of supported authentication providers", sys.exc_info()[1]
+
+        self.registeredProviders = registeredProviders
+
+# Auxiliary routines
+
+    def getProviderFromJson(self, providerJson):
+
+        provider = None
+        try:
+            obj = json.loads(Base64Util.base64urldecodeToString(providerJson))
+            provider = obj[self.providerKey]
+        except:
+            print "Passport. getProviderFromJson. Could not parse provided Json string. Returning None"
+
+        return provider
+
+
+    def getPassportRedirectUrl(self, provider):
+
+        # provider is assumed to exist in self.registeredProviders
+        url = None
+        try:
+            facesContext = CdiUtil.bean(FacesContext)
+            tokenEndpoint = "https://%s/passport/token" % facesContext.getExternalContext().getRequest().getServerName()
+
+            httpService = CdiUtil.bean(HttpService)
+            httpclient = httpService.getHttpsClient()
+
+            print "Passport. getPassportRedirectUrl. Obtaining token from passport at %s" % tokenEndpoint
+            resultResponse = httpService.executeGet(httpclient, tokenEndpoint, Collections.singletonMap("Accept", "text/json"))
+            httpResponse = resultResponse.getHttpResponse()
+            bytes = httpService.getResponseContent(httpResponse)
+
+            response = httpService.convertEntityToString(bytes)
+            print "Passport. getPassportRedirectUrl. Response was %s" % httpResponse.getStatusLine().getStatusCode()
+
+            tokenObj = json.loads(response)
+            url = "/passport/auth/%s/%s" % (provider, tokenObj["token_"])
+        except:
+            print "Passport. getPassportRedirectUrl. Error building redirect URL: ", sys.exc_info()[1]
+
+        return url
+
+
+    def validSignature(self, jwt):
+
+        print "Passport. validSignature. Checking JWT token signature"
+        valid = False
+
+        try:
+            appConfiguration = AppConfiguration()
+            appConfiguration.setWebKeysStorage(WebKeyStorage.KEYSTORE)
+            appConfiguration.setKeyStoreFile(self.keyStoreFile)
+            appConfiguration.setKeyStoreSecret(self.keyStorePassword)
+            appConfiguration.setKeyRegenerationEnabled(False)
+
+            cryptoProvider = CryptoProviderFactory.getCryptoProvider(appConfiguration)
+            valid = cryptoProvider.verifySignature(jwt.getSigningInput(), jwt.getEncodedSignature(), jwt.getHeader().getKeyId(),
+                                                        None, None, jwt.getHeader().getSignatureAlgorithm())
+        except:
+            print "Exception: ", sys.exc_info()[1]
+
+        print "Passport. validSignature. Validation result was %s" % valid
+        return valid
+
+
+    def jwtHasExpired(self, jwt):
+        # Check if jwt has expired
+        jwt_claims = jwt.getClaims()
+        try:
+            exp_date_timestamp = float(jwt_claims.getClaimAsString(JwtClaimName.EXPIRATION_TIME))
+            exp_date = datetime.datetime.fromtimestamp(exp_date_timestamp)
+            hasExpired = exp_date < datetime.datetime.now()
+        except:
+            print "Exception: The JWT does not have '%s' attribute" % JwtClaimName.EXPIRATION_TIME
+            return False
+
+        return hasExpired
+
+
+    def getUserProfile(self, jwt):
+        jwt_claims = jwt.getClaims()
+        user_profile_json = None
+
+        try:
+            user_profile_json = CdiUtil.bean(EncryptionService).decrypt(jwt_claims.getClaimAsString("data"))
+            user_profile = json.loads(user_profile_json)
+        except:
+            print "Passport. getUserProfile. Problem obtaining user profile json representation"
+
+        return (user_profile, user_profile_json)
+
+
+    def attemptAuthentication(self, identity, user_profile, user_profile_json):
+
+        uidKey = "uid"
+        if not self.checkRequiredAttributes(user_profile, [uidKey, self.providerKey]):
+            return False
+
+        provider = user_profile[self.providerKey]
+        if not provider in self.registeredProviders:
+            print "Passport. attemptAuthentication. Identity Provider %s not recognized" % provider
+            return False
+
+        uid = user_profile[uidKey][0]
+        externalUid = "passport-%s:%s" % (provider, uid)
+
+        userService = CdiUtil.bean(UserService)
+        userByUid = userService.getUserByAttribute("oxExternalUid", externalUid, True)
+
+        email = None
+        if "mail" in user_profile:
+            email = user_profile["mail"]
+            if len(email) == 0:
+                email = None
+            else:
+                email = email[0]
+                user_profile["mail"] = [ email ]
+
+        if email == None and self.registeredProviders[provider]["requestForEmail"]:
+            print "Passport. attemptAuthentication. Email was not received"
+
+            if userByUid != None:
+                # This avoids asking for the email over every login attempt
+                email = userByUid.getAttribute("mail")
+                if email != None:
+                    print "Passport. attemptAuthentication. Filling missing email value with %s" % email
+                    user_profile["mail"] = [ email ]
+
+            if email == None:
+                # Store user profile in session and abort this routine
+                identity.setWorkingParameter("passport_user_profile", user_profile_json)
+                return True
+
+        userByMail = None if email == None else userService.getUserByAttribute("mail", email)
+
+        # Determine if we should add entry, update existing, or deny access
+        doUpdate = False
+        doAdd = False
+        if userByUid != None:
+            print "User with externalUid '%s' already exists" % externalUid
+            if userByMail == None:
+                doUpdate = True
+            else:
+                if userByMail.getUserId() == userByUid.getUserId():
+                    doUpdate = True
+                else:
+                    print "Users with externalUid '%s' and mail '%s' are different. Access will be denied. Impersonation attempt?" % (externalUid, email)
+                    self.setMessageError(FacesMessage.SEVERITY_ERROR, "Email value corresponds to an already existing provisioned account")
+        else:
+            if userByMail == None:
+                doAdd = True
+            elif self.registeredProviders[provider]["emailLinkingSafe"]:
+
+                tmpList = userByMail.getAttributeValues("oxExternalUid")
+                tmpList = ArrayList() if tmpList == None else ArrayList(tmpList)
+                tmpList.add(externalUid)
+                userByMail.setAttribute("oxExternalUid", tmpList, True)
+
+                userByUid = userByMail
+                print "External user supplying mail %s will be linked to existing account '%s'" % (email, userByMail.getUserId())
+                doUpdate = True
+            else:
+                print "An attempt to supply an email of an existing user was made. Turn on 'emailLinkingSafe' if you want to enable linking"
+                self.setMessageError(FacesMessage.SEVERITY_ERROR, "Email value corresponds to an already existing account. If you already have a username and password use those instead of an external authentication site to get access.")
+
+        username = None
+        try:
+            if doUpdate:
+                username = userByUid.getUserId()
+                print "Passport. attemptAuthentication. Updating user %s" % username
+                self.updateUser(userByUid, user_profile, userService)
+            elif doAdd:
+                print "Passport. attemptAuthentication. Creating user %s" % externalUid
+                newUser = self.addUser(externalUid, user_profile, userService)
+                username = newUser.getUserId()
+        except:
+            print "Exception: ", sys.exc_info()[1]
+            print "Passport. attemptAuthentication. Authentication failed"
+            return False
+
+        if username == None:
+            print "Passport. attemptAuthentication. Authentication attempt was rejected"
+            return False
+        else:
+            logged_in = CdiUtil.bean(AuthenticationService).authenticate(username)
+            print "Passport. attemptAuthentication. Authentication for %s returned %s" % (username, logged_in)
+            return logged_in
+
+
+    def setMessageError(self, severity, msg):
+        facesMessages = CdiUtil.bean(FacesMessages)
+        facesMessages.setKeepMessages()
+        facesMessages.clear()
+        facesMessages.add(severity, msg)
+
+
+    def checkRequiredAttributes(self, profile, attrs):
+
+        for attr in attrs:
+            if (not attr in profile) or len(profile[attr]) == 0:
+                print "Passport. checkRequiredAttributes. Attribute '%s' is missing in profile" % attr
+                return False
+        return True
+
+
+    def addUser(self, externalUid, profile, userService):
+
+        newUser = User()
+        #Fill user attrs
+        newUser.setAttribute("oxExternalUid", externalUid, True)
+        self.fillUser(newUser, profile)
+        newUser = userService.addUser(newUser, True)
+        return newUser
+
+
+    def updateUser(self, foundUser, profile, userService):
+
+        # when this is false, there might still some updates taking place (e.g. not related to profile attrs released by external provider)
+        if (not self.skipProfileUpdate):
+            self.fillUser(foundUser, profile)
+        userService.updateUser(foundUser)
+
+
+    def fillUser(self, foundUser, profile):
+
+        for attr in profile:
+            # "provider" is disregarded if part of mapping
+            if attr != self.providerKey:
+                values = profile[attr]
+                print "%s = %s" % (attr, values)
+                foundUser.setAttribute(attr, values)
+
+                if attr == "mail":
+                    oxtrustMails = []
+                    for mail in values:
+                        oxtrustMails.append('{"value":"%s","primary":false}' % mail)
+                    foundUser.setAttribute("oxTrustEmail", oxtrustMails)
diff --git a/oxAuth/Server/integrations/duo.passport.combine/Passport_and_Duo-Universal_ignore_empty.py b/oxAuth/Server/integrations/duo.passport.combine/Passport_and_Duo-Universal_ignore_empty.py
new file mode 100644
index 00000000..6351351e
--- /dev/null
+++ b/oxAuth/Server/integrations/duo.passport.combine/Passport_and_Duo-Universal_ignore_empty.py
@@ -0,0 +1,641 @@
+# oxAuth is available under the MIT License (2008). See http://opensource.org/licenses/MIT for full text.
+# Copyright (c) 2019, Gluu
+#
+# Author: Jose Gonzalez
+# Author: Yuriy Movchan
+#
+
+# Patched by Alex: this version will ignore attributes with empty values send by upstream IDP, preventing removal of values previously assigned to users in the local database
+# See the additional "if" clause in fillUser() function checking for an empty values in response
+
+from org.gluu.jsf2.service import FacesService
+from org.gluu.jsf2.message import FacesMessages
+
+from org.gluu.oxauth.model.common import User, WebKeyStorage
+from org.gluu.oxauth.model.configuration import AppConfiguration
+from org.gluu.oxauth.model.crypto import CryptoProviderFactory
+from org.gluu.oxauth.model.jwt import Jwt, JwtClaimName
+from org.gluu.oxauth.model.util import Base64Util
+from org.gluu.oxauth.service import AppInitializer, AuthenticationService
+from org.gluu.oxauth.service.common import UserService, EncryptionService
+from org.gluu.oxauth.service.net import HttpService
+from org.gluu.oxauth.security import Identity
+from org.gluu.oxauth.util import ServerUtil
+from org.gluu.config.oxtrust import LdapOxPassportConfiguration
+from org.gluu.model.custom.script.type.auth import PersonAuthenticationType
+from org.gluu.persist import PersistenceEntryManager
+from org.gluu.service.cdi.util import CdiUtil
+from org.gluu.util import StringHelper
+from java.util import ArrayList, Arrays, Collections
+
+from javax.faces.application import FacesMessage
+from javax.faces.context import FacesContext
+
+import json
+import sys
+import datetime
+
+from org.gluu.util import ArrayHelper
+
+class PersonAuthentication(PersonAuthenticationType):
+    def __init__(self, currentTimeMillis):
+        self.currentTimeMillis = currentTimeMillis
+
+    def init(self, customScript, configurationAttributes):
+        print "Passport. init called"
+
+        self.extensionModule = self.loadExternalModule(configurationAttributes.get("extension_module"))
+        extensionResult = self.extensionInit(configurationAttributes)
+        if extensionResult != None:
+            return extensionResult
+
+        print "Passport. init. Behaviour is social"
+        success = self.processKeyStoreProperties(configurationAttributes)
+
+        if success:
+            self.providerKey = "provider"
+            self.customAuthzParameter = self.getCustomAuthzParameter(configurationAttributes.get("authz_req_param_provider"))
+            self.passportDN = self.getPassportConfigDN()
+            print "Passport. init. Initialization success"
+        else:
+            print "Passport. init. Initialization failed"
+        return success
+
+
+    def destroy(self, configurationAttributes):
+        print "Passport. destroy called"
+        return True
+
+
+    def getApiVersion(self):
+        return 11
+        
+    def getAuthenticationMethodClaims(self, requestParameters):
+        return None
+        
+    def isValidAuthenticationMethod(self, usageType, configurationAttributes):
+        return True
+
+
+    def getAlternativeAuthenticationMethod(self, usageType, configurationAttributes):
+        return None
+
+
+    def authenticate(self, configurationAttributes, requestParameters, step):
+
+        extensionResult = self.extensionAuthenticate(configurationAttributes, requestParameters, step)
+        if extensionResult != None:
+            return extensionResult
+
+        print "Passport. authenticate for step %s called" % str(step)
+        identity = CdiUtil.bean(Identity)
+
+        # Loading self.registeredProviders in case passport destroyed
+        if not hasattr(self,'registeredProviders'):
+            print "Passport. Fetching registered providers."
+            self.parseProviderConfigs()
+
+        if step == 1:
+            # Get JWT token
+            jwt_param = ServerUtil.getFirstValue(requestParameters, "user")
+
+            if jwt_param != None:
+                print "Passport. authenticate for step 1. JWT user profile token found"
+
+                # Parse JWT and validate
+                jwt = Jwt.parse(jwt_param)
+                if not self.validSignature(jwt):
+                    return False
+
+                if self.jwtHasExpired(jwt):
+                    return False
+
+                (user_profile, jsonp) = self.getUserProfile(jwt)
+                if user_profile == None:
+                    return False
+
+                sessionAttributes = identity.getSessionId().getSessionAttributes()
+                self.skipProfileUpdate = StringHelper.equalsIgnoreCase(sessionAttributes.get("skipPassportProfileUpdate"), "true")
+
+                return self.attemptAuthentication(identity, user_profile, jsonp)
+
+            #See passportlogin.xhtml
+            provider = ServerUtil.getFirstValue(requestParameters, "loginForm:provider")
+            if StringHelper.isEmpty(provider):
+
+                #it's username + passw auth
+                print "Passport. authenticate for step 1. Basic authentication detected"
+                logged_in = False
+
+                credentials = identity.getCredentials()
+                user_name = credentials.getUsername()
+                user_password = credentials.getPassword()
+
+                if StringHelper.isNotEmptyString(user_name) and StringHelper.isNotEmptyString(user_password):
+                    authenticationService = CdiUtil.bean(AuthenticationService)
+                    logged_in = authenticationService.authenticate(user_name, user_password)
+
+                print "Passport. authenticate for step 1. Basic authentication returned: %s" % logged_in
+                return logged_in
+
+            elif provider in self.registeredProviders:
+                #it's a recognized external IDP
+                identity.setWorkingParameter("selectedProvider", provider)
+                print "Passport. authenticate for step 1. Retrying step 1"
+                #see prepareForStep (step = 1)
+                return True
+
+        if step == 2:
+            mail = ServerUtil.getFirstValue(requestParameters, "loginForm:email")
+            jsonp = identity.getWorkingParameter("passport_user_profile")
+
+            if mail == None:
+                self.setMessageError(FacesMessage.SEVERITY_ERROR, "Email was missing in user profile")
+            elif jsonp != None:
+                # Completion of profile takes place
+                user_profile = json.loads(jsonp)
+                user_profile["mail"] = [ mail ]
+
+                return self.attemptAuthentication(identity, user_profile, jsonp)
+
+            print "Passport. authenticate for step 2. Failed: expected mail value in HTTP request and json profile in session"
+            return False
+
+
+    def prepareForStep(self, configurationAttributes, requestParameters, step):
+
+        extensionResult = self.extensionPrepareForStep(configurationAttributes, requestParameters, step)
+        if extensionResult != None:
+            return extensionResult
+
+        print "Passport. prepareForStep called %s"  % str(step)
+        identity = CdiUtil.bean(Identity)
+
+        if step == 1:
+            #re-read the strategies config (for instance to know which strategies have enabled the email account linking)
+            self.parseProviderConfigs()
+            identity.setWorkingParameter("externalProviders", json.dumps(self.registeredProviders))
+
+            providerParam = self.customAuthzParameter
+            url = None
+
+            sessionAttributes = identity.getSessionId().getSessionAttributes()
+            self.skipProfileUpdate = StringHelper.equalsIgnoreCase(sessionAttributes.get("skipPassportProfileUpdate"), "true")
+
+            #this param could have been set previously in authenticate step if current step is being retried
+            provider = identity.getWorkingParameter("selectedProvider")
+            if provider != None:
+                url = self.getPassportRedirectUrl(provider)
+                identity.setWorkingParameter("selectedProvider", None)
+
+            elif providerParam != None:
+                paramValue = sessionAttributes.get(providerParam)
+
+                if paramValue != None:
+                    print "Passport. prepareForStep. Found value in custom param of authorization request: %s" % paramValue
+                    provider = self.getProviderFromJson(paramValue)
+
+                    if provider == None:
+                        print "Passport. prepareForStep. A provider value could not be extracted from custom authorization request parameter"
+                    elif not provider in self.registeredProviders:
+                        print "Passport. prepareForStep. Provider '%s' not part of known configured IDPs/OPs" % provider
+                    else:
+                        url = self.getPassportRedirectUrl(provider)
+
+            if url == None:
+                print "Passport. prepareForStep. A page to manually select an identity provider will be shown"
+            else:
+                facesService = CdiUtil.bean(FacesService)
+                facesService.redirectToExternalURL(url)
+
+        return True
+
+
+    def getExtraParametersForStep(self, configurationAttributes, step):
+        print "Passport. getExtraParametersForStep called"
+        if step == 1:
+            return Arrays.asList("selectedProvider", "externalProviders")
+        elif step == 2:
+            return Arrays.asList("passport_user_profile")
+        return None
+
+
+    def getCountAuthenticationSteps(self, configurationAttributes):
+        print "Passport. getCountAuthenticationSteps called"
+        identity = CdiUtil.bean(Identity)
+        if identity.getWorkingParameter("passport_user_profile") != None:
+            return 2
+        return 1
+
+
+    def getPageForStep(self, configurationAttributes, step):
+        print "Passport. getPageForStep called"
+
+        extensionResult = self.extensionGetPageForStep(configurationAttributes, step)
+        if extensionResult != None:
+            return extensionResult
+
+        if step == 1:
+            return "/auth/passport/passportlogin.xhtml"
+        return "/auth/passport/passportpostlogin.xhtml"
+
+
+    def getNextStep(self, configurationAttributes, requestParameters, step):
+
+        if step == 1:
+            identity = CdiUtil.bean(Identity)
+            provider = identity.getWorkingParameter("selectedProvider")
+            if provider != None:
+                return 1
+
+        return -1
+
+    def getLogoutExternalUrl(self, configurationAttributes, requestParameters):
+        print "Get external logout URL call"
+        return None
+
+    def logout(self, configurationAttributes, requestParameters):
+        return True
+
+# Extension module related functions
+
+    def extensionInit(self, configurationAttributes):
+
+        if self.extensionModule == None:
+            return None
+        return self.extensionModule.init(configurationAttributes)
+
+
+    def extensionAuthenticate(self, configurationAttributes, requestParameters, step):
+
+        if self.extensionModule == None:
+            return None
+        return self.extensionModule.authenticate(configurationAttributes, requestParameters, step)
+
+
+    def extensionPrepareForStep(self, configurationAttributes, requestParameters, step):
+
+        if self.extensionModule == None:
+            return None
+        return self.extensionModule.prepareForStep(configurationAttributes, requestParameters, step)
+
+
+    def extensionGetPageForStep(self, configurationAttributes, step):
+
+        if self.extensionModule == None:
+            return None
+        return self.extensionModule.getPageForStep(configurationAttributes, step)
+
+# Initalization routines
+
+    def loadExternalModule(self, simpleCustProperty):
+
+        if simpleCustProperty != None:
+            print "Passport. loadExternalModule. Loading passport extension module..."
+            moduleName = simpleCustProperty.getValue2()
+            try:
+                module = __import__(moduleName)
+                return module
+            except:
+                print "Passport. loadExternalModule. Failed to load module %s" % moduleName
+                print "Exception: ", sys.exc_info()[1]
+                print "Passport. loadExternalModule. Flow will be driven entirely by routines of main passport script"
+        return None
+
+
+    def processKeyStoreProperties(self, attrs):
+        file = attrs.get("key_store_file")
+        password = attrs.get("key_store_password")
+
+        if file != None and password != None:
+            file = file.getValue2()
+            password = password.getValue2()
+
+            if StringHelper.isNotEmpty(file) and StringHelper.isNotEmpty(password):
+                self.keyStoreFile = file
+                self.keyStorePassword = password
+                return True
+
+        print "Passport. readKeyStoreProperties. Properties key_store_file or key_store_password not found or empty"
+        return False
+
+
+    def getCustomAuthzParameter(self, simpleCustProperty):
+
+        customAuthzParameter = None
+        if simpleCustProperty != None:
+            prop = simpleCustProperty.getValue2()
+            if StringHelper.isNotEmpty(prop):
+                customAuthzParameter = prop
+
+        if customAuthzParameter == None:
+            print "Passport. getCustomAuthzParameter. No custom param for OIDC authz request in script properties"
+            print "Passport. getCustomAuthzParameter. Passport flow cannot be initiated by doing an OpenID connect authorization request"
+        else:
+            print "Passport. getCustomAuthzParameter. Custom param for OIDC authz request in script properties: %s" % customAuthzParameter
+
+        return customAuthzParameter
+
+# Configuration parsing
+
+    def getPassportConfigDN(self):
+
+        f = open('/etc/gluu/conf/gluu.properties', 'r')
+        for line in f:
+            prop = line.split("=")
+            if prop[0] == "oxpassport_ConfigurationEntryDN":
+              prop.pop(0)
+              break
+
+        f.close()
+        return "=".join(prop).strip()
+
+
+    def parseAllProviders(self):
+
+        registeredProviders = {}
+        print "Passport. parseAllProviders. Adding providers"
+        entryManager = CdiUtil.bean(PersistenceEntryManager)
+
+        config = LdapOxPassportConfiguration()
+        config = entryManager.find(config.getClass(), self.passportDN).getPassportConfiguration()
+        config = config.getProviders() if config != None else config
+
+        if config != None and len(config) > 0:
+            for prvdetails in config:
+                if prvdetails.isEnabled():
+                    registeredProviders[prvdetails.getId()] = {
+                        "emailLinkingSafe": prvdetails.isEmailLinkingSafe(),
+                        "requestForEmail" : prvdetails.isRequestForEmail(),
+                        "logo_img": prvdetails.getLogoImg(),
+                        "displayName": prvdetails.getDisplayName(),
+                        "type": prvdetails.getType()
+                    }
+
+        return registeredProviders
+
+
+    def parseProviderConfigs(self):
+
+        registeredProviders = {}
+        try:
+            registeredProviders = self.parseAllProviders()
+            toRemove = []
+
+            for provider in registeredProviders:
+                if registeredProviders[provider]["type"] == "saml":
+                    toRemove.append(provider)
+                else:
+                    registeredProviders[provider]["saml"] = False
+
+            for provider in toRemove:
+                registeredProviders.pop(provider)
+
+            if len(registeredProviders.keys()) > 0:
+                print "Passport. parseProviderConfigs. Configured providers:", registeredProviders
+            else:
+                print "Passport. parseProviderConfigs. No providers registered yet"
+        except:
+            print "Passport. parseProviderConfigs. An error occurred while building the list of supported authentication providers", sys.exc_info()[1]
+
+        self.registeredProviders = registeredProviders
+
+# Auxiliary routines
+
+    def getProviderFromJson(self, providerJson):
+
+        provider = None
+        try:
+            obj = json.loads(Base64Util.base64urldecodeToString(providerJson))
+            provider = obj[self.providerKey]
+        except:
+            print "Passport. getProviderFromJson. Could not parse provided Json string. Returning None"
+
+        return provider
+
+
+    def getPassportRedirectUrl(self, provider):
+
+        # provider is assumed to exist in self.registeredProviders
+        url = None
+        try:
+            facesContext = CdiUtil.bean(FacesContext)
+            tokenEndpoint = "https://%s/passport/token" % facesContext.getExternalContext().getRequest().getServerName()
+
+            httpService = CdiUtil.bean(HttpService)
+            httpclient = httpService.getHttpsClient()
+
+            print "Passport. getPassportRedirectUrl. Obtaining token from passport at %s" % tokenEndpoint
+            resultResponse = httpService.executeGet(httpclient, tokenEndpoint, Collections.singletonMap("Accept", "text/json"))
+            httpResponse = resultResponse.getHttpResponse()
+            bytes = httpService.getResponseContent(httpResponse)
+
+            response = httpService.convertEntityToString(bytes)
+            print "Passport. getPassportRedirectUrl. Response was %s" % httpResponse.getStatusLine().getStatusCode()
+
+            tokenObj = json.loads(response)
+            url = "/passport/auth/%s/%s" % (provider, tokenObj["token_"])
+        except:
+            print "Passport. getPassportRedirectUrl. Error building redirect URL: ", sys.exc_info()[1]
+
+        return url
+
+
+    def validSignature(self, jwt):
+
+        print "Passport. validSignature. Checking JWT token signature"
+        valid = False
+
+        try:
+            appConfiguration = AppConfiguration()
+            appConfiguration.setWebKeysStorage(WebKeyStorage.KEYSTORE)
+            appConfiguration.setKeyStoreFile(self.keyStoreFile)
+            appConfiguration.setKeyStoreSecret(self.keyStorePassword)
+            appConfiguration.setKeyRegenerationEnabled(False)
+
+            cryptoProvider = CryptoProviderFactory.getCryptoProvider(appConfiguration)
+            valid = cryptoProvider.verifySignature(jwt.getSigningInput(), jwt.getEncodedSignature(), jwt.getHeader().getKeyId(),
+                                                        None, None, jwt.getHeader().getSignatureAlgorithm())
+        except:
+            print "Exception: ", sys.exc_info()[1]
+
+        print "Passport. validSignature. Validation result was %s" % valid
+        return valid
+
+
+    def jwtHasExpired(self, jwt):
+        # Check if jwt has expired
+        jwt_claims = jwt.getClaims()
+        try:
+            exp_date_timestamp = float(jwt_claims.getClaimAsString(JwtClaimName.EXPIRATION_TIME))
+            exp_date = datetime.datetime.fromtimestamp(exp_date_timestamp)
+            hasExpired = exp_date < datetime.datetime.now()
+        except:
+            print "Exception: The JWT does not have '%s' attribute" % JwtClaimName.EXPIRATION_TIME
+            return False
+
+        return hasExpired
+
+
+    def getUserProfile(self, jwt):
+        jwt_claims = jwt.getClaims()
+        user_profile_json = None
+
+        try:
+            user_profile_json = CdiUtil.bean(EncryptionService).decrypt(jwt_claims.getClaimAsString("data"))
+            user_profile = json.loads(user_profile_json)
+        except:
+            print "Passport. getUserProfile. Problem obtaining user profile json representation"
+
+        return (user_profile, user_profile_json)
+
+
+    def attemptAuthentication(self, identity, user_profile, user_profile_json):
+
+        uidKey = "uid"
+        if not self.checkRequiredAttributes(user_profile, [uidKey, self.providerKey]):
+            return False
+
+        provider = user_profile[self.providerKey]
+        if not provider in self.registeredProviders:
+            print "Passport. attemptAuthentication. Identity Provider %s not recognized" % provider
+            return False
+
+        uid = user_profile[uidKey][0]
+        externalUid = "passport-%s:%s" % (provider, uid)
+
+        userService = CdiUtil.bean(UserService)
+        userByUid = userService.getUserByAttribute("oxExternalUid", externalUid, True)
+
+        email = None
+        if "mail" in user_profile:
+            email = user_profile["mail"]
+            if len(email) == 0:
+                email = None
+            else:
+                email = email[0]
+                user_profile["mail"] = [ email ]
+
+        if email == None and self.registeredProviders[provider]["requestForEmail"]:
+            print "Passport. attemptAuthentication. Email was not received"
+
+            if userByUid != None:
+                # This avoids asking for the email over every login attempt
+                email = userByUid.getAttribute("mail")
+                if email != None:
+                    print "Passport. attemptAuthentication. Filling missing email value with %s" % email
+                    user_profile["mail"] = [ email ]
+
+            if email == None:
+                # Store user profile in session and abort this routine
+                identity.setWorkingParameter("passport_user_profile", user_profile_json)
+                return True
+
+        userByMail = None if email == None else userService.getUserByAttribute("nidGSuite", email)
+
+        # Determine if we should add entry, update existing, or deny access
+        doUpdate = False
+        doAdd = False
+        if userByUid != None:
+            print "User with externalUid '%s' already exists" % externalUid
+            if userByMail == None:
+                doUpdate = True
+            else:
+                if userByMail.getUserId() == userByUid.getUserId():
+                    doUpdate = True
+                else:
+                    print "Users with externalUid '%s' and mail '%s' are different. Access will be denied. Impersonation attempt?" % (externalUid, email)
+                    self.setMessageError(FacesMessage.SEVERITY_ERROR, "Email value corresponds to an already existing provisioned account")
+        else:
+            if userByMail == None:
+                doAdd = True
+            elif self.registeredProviders[provider]["emailLinkingSafe"]:
+
+                tmpList = userByMail.getAttributeValues("oxExternalUid")
+                tmpList = ArrayList() if tmpList == None else ArrayList(tmpList)
+                tmpList.add(externalUid)
+                userByMail.setAttribute("oxExternalUid", tmpList, True)
+
+                userByUid = userByMail
+                print "External user supplying mail %s will be linked to existing account '%s'" % (email, userByMail.getUserId())
+                doUpdate = True
+            else:
+                print "An attempt to supply an email of an existing user was made. Turn on 'emailLinkingSafe' if you want to enable linking"
+                self.setMessageError(FacesMessage.SEVERITY_ERROR, "Email value corresponds to an already existing account. If you already have a username and password use those instead of an external authentication site to get access.")
+
+        username = None
+        try:
+            if doUpdate:
+                username = userByUid.getUserId()
+                print "Passport. attemptAuthentication. Updating user %s" % username
+                self.updateUser(userByUid, user_profile, userService)
+            elif doAdd:
+                print "Passport. attemptAuthentication. Creating user %s" % externalUid
+                newUser = self.addUser(externalUid, user_profile, userService)
+                username = newUser.getUserId()
+        except:
+            print "Exception: ", sys.exc_info()[1]
+            print "Passport. attemptAuthentication. Authentication failed"
+            return False
+
+        if username == None:
+            print "Passport. attemptAuthentication. Authentication attempt was rejected"
+            return False
+        else:
+            logged_in = CdiUtil.bean(AuthenticationService).authenticate(username)
+            print "Passport. attemptAuthentication. Authentication for %s returned %s" % (username, logged_in)
+            return logged_in
+
+
+    def setMessageError(self, severity, msg):
+        facesMessages = CdiUtil.bean(FacesMessages)
+        facesMessages.setKeepMessages()
+        facesMessages.clear()
+        facesMessages.add(severity, msg)
+
+
+    def checkRequiredAttributes(self, profile, attrs):
+
+        for attr in attrs:
+            if (not attr in profile) or len(profile[attr]) == 0:
+                print "Passport. checkRequiredAttributes. Attribute '%s' is missing in profile" % attr
+                return False
+        return True
+
+
+    def addUser(self, externalUid, profile, userService):
+
+        newUser = User()
+        #Fill user attrs
+        newUser.setAttribute("oxExternalUid", externalUid, True)
+        self.fillUser(newUser, profile)
+        newUser = userService.addUser(newUser, True)
+        return newUser
+
+
+    def updateUser(self, foundUser, profile, userService):
+
+        # when this is false, there might still some updates taking place (e.g. not related to profile attrs released by external provider)
+        if (not self.skipProfileUpdate):
+            self.fillUser(foundUser, profile)
+        userService.updateUser(foundUser)
+
+
+    def fillUser(self, foundUser, profile):
+
+        for attr in profile:
+            # "provider" is disregarded if part of mapping
+            if attr != self.providerKey:
+                values = profile[attr]
+                print "%s = %s" % (attr, values)
+                # Patch to prevent clearing of attribute values on the local users if IDP send an empty value in its response
+                if (values != None and not (ArrayHelper.isEmpty(values))):
+                    foundUser.setAttribute(attr, values)
+                else:
+                    print "Ommiting attribute named '%s' as upstream IDP sent an empty value for it" % attr
+
+                if attr == "mail":
+                    oxtrustMails = []
+                    for mail in values:
+                        oxtrustMails.append('{"value":"%s","primary":false}' % mail)
+                    foundUser.setAttribute("oxTrustEmail", oxtrustMails)
diff --git a/oxAuth/Server/integrations/duo.passport.combine/readme.md b/oxAuth/Server/integrations/duo.passport.combine/readme.md
new file mode 100644
index 00000000..5c9892ec
--- /dev/null
+++ b/oxAuth/Server/integrations/duo.passport.combine/readme.md
@@ -0,0 +1,76 @@
+## DUO-Passport multiAuth set up [ Work in progress ... ] 
+
+This script allow users to use Duo as two factor in a Passport enabled Gluu Server. 
+There are two options in a Passport enabled Gluu Server: 
+  - oxAuth login ( left side )
+  - Passport login ( right side )
+
+This script will ask for Duo when user will use oxAuth login. 
+
+### Implementation Note
+
+ - This implemented in one customer's 4.4.0.sp1
+ - This script should work in 4.5 without downloading oxauth and Jetty modification ( below step number 1 and 2 ) 
+
+### Configuration in Gluu CE 4.4.0
+
+#### Download oxAuth 
+
+Get `oxauth.war` from https://maven.gluu.org/maven/org/gluu/oxauth-server/4.4.0.sp1/oxauth-server-4.4.0.sp1.war
+
+#### Jetty Compatible
+
+By default old war files are for version 9. As result it apply small changes in war file to run it correctly under jetty 10.
+
+ - Run `/opt/gluu/bin/jetty10CompatibleWar.py` to update it to conform jetty 10.
+```
+$ ./jetty10CompatibleWar.py -in-file[Downloaded server] -out-file[Downloaded server]
+example 
+$ ./jetty10CompatibleWar.py -in-file /opt/gluu/jetty/oxauth/webapps/4.4.0.sp1/oxauth-server-4.4.0.sp1.war -out-file /opt/gluu/jetty/oxauth/webapps/4.4.0.sp1/oxauth.war
+```
+ - Stop your **oxauth** service `systemctl stop oxauth`
+
+ - Replace JettyCompatible war file at `/opt/gluu/jetty/oxauth/webapps/oxauth.war`
+
+#### Add External Dependency
+
+Follow [this](https://github.com/GluuFederation/oxAuth/tree/master/Server/integrations/duo-universal-prompt) doc to: 
+  - Add the duo-universal Dependency to your oxAuth at`/opt/gluu/jetty/oxauth/custom/libs/*.jar`
+  - Register custom libs in oxauth.xml `/opt/gluu/jetty/oxauth/webapps/oxauth.xml`
+
+Start the **oxauth** service `systemctl start oxauth`
+
+### Add Custom Script
+- Navigate to `Configuration` > `Person Authentication Scripts`.
+   Add new custom script for the 2 factor authentication using DUO and Passport credentials.  
+
+- Add the following Custom Property ( key/value pairs ): 
+   - For DUO security 
+      - `client_id`
+      - `client_secret`
+      - `api_hostname` 
+   - For Passport social
+      -  `key_store_file`
+      -  `key_store_password`
+
+- Enable and save.
+- *NOTE*: you have to make sure that your `passport_social` and/or `passport_saml` + `Duo Universal` scripts are enabled. This is a combine operation so three scripts must have to runn successfully. 
+
+- A successful configuration should throw snippet like below in `/opt/gluu/jetty/oxauth/oxauth_script.log`
+
+    ```
+    2024-06-12 17:56:26,937 INFO  [oxAuthScheduler_Worker-4] [org.gluu.service.PythonService$PythonLoggerOutputStream] (PythonService.java:243) - Passport. init. Initialization success
+    2024-06-12 17:56:26,937 INFO  [oxAuthScheduler_Worker-4] [org.gluu.service.PythonService$PythonLoggerOutputStream] (PythonService.java:243) - Duo-Universal. Initialization
+    2024-06-12 17:56:26,937 INFO  [oxAuthScheduler_Worker-4] [org.gluu.service.PythonService$PythonLoggerOutputStream] (PythonService.java:243) - Duo-Universal. Initialized successfully
+    2024-06-12 17:56:26,937 INFO  [oxAuthScheduler_Worker-4] [org.gluu.service.PythonService$PythonLoggerOutputStream] (PythonService.java:243) - Passport. and Duo-Universal Initialized successfully
+    2024-06-12 17:56:26,941 TRACE [oxAuthScheduler_Worker-4] [org.gluu.service.custom.script.CustomScriptManager] (CustomScriptManager.java:134) - Last finished time '2024-06-12T17:56:26.941+0000'
+    ```
+
+### Test
+
+To test your setup always use incognito or new browser. 
+
+ - Go to `Manage Authentication` > `Default Authentication Method`
+ - Change `oxTrust ACR` to "DuoPassportCombine" ( or whichever name you supplied )
+ - `Update`
+ - Test
diff --git a/oxAuth/Server/integrations/duo/DuoExternalAuthenticator.py b/oxAuth/Server/integrations/duo/DuoExternalAuthenticator.py
new file mode 100644
index 00000000..2d87beba
--- /dev/null
+++ b/oxAuth/Server/integrations/duo/DuoExternalAuthenticator.py
@@ -0,0 +1,239 @@
+# oxAuth is available under the MIT License (2008). See http://opensource.org/licenses/MIT for full text.
+# Copyright (c) 2016, Gluu
+#
+# Author: Yuriy Movchan
+#
+
+from org.gluu.service.cdi.util import CdiUtil
+from org.gluu.oxauth.security import Identity
+from org.gluu.model.custom.script.type.auth import PersonAuthenticationType
+from org.gluu.oxauth.service import AuthenticationService
+from org.gluu.oxauth.service.common import UserService
+from org.gluu.service import MailService
+from org.gluu.util import ArrayHelper
+from org.gluu.util import StringHelper
+from java.util import Arrays
+
+import duo_web
+import json
+
+class PersonAuthentication(PersonAuthenticationType):
+    def __init__(self, currentTimeMillis):
+        self.currentTimeMillis = currentTimeMillis
+
+    def init(self, customScript, configurationAttributes):
+        print "Duo. Initialization"
+
+        duo_creds_file = configurationAttributes.get("duo_creds_file").getValue2()
+        # Load credentials from file
+        f = open(duo_creds_file, 'r')
+        try:
+            creds = json.loads(f.read())
+        except:
+            print "Duo. Initialization. Failed to load creds from file:", duo_creds_file
+            return False
+        finally:
+            f.close()
+
+        self.ikey = str(creds["ikey"])
+        self.skey = str(creds["skey"])
+        self.akey = str(creds["akey"])
+
+        self.use_duo_group = False
+        if (configurationAttributes.containsKey("duo_group")):
+            self.duo_group = configurationAttributes.get("duo_group").getValue2()
+            self.use_duo_group = True
+            print "Duo. Initialization. Using Duo only if user belong to group:", self.duo_group
+
+        self.use_audit_group = False
+        if (configurationAttributes.containsKey("audit_group")):
+            self.audit_group = configurationAttributes.get("audit_group").getValue2()
+
+            if (not configurationAttributes.containsKey("audit_group_email")):
+                print "Duo. Initialization. Property audit_group_email is not specified"
+                return False
+
+            self.audit_email = configurationAttributes.get("audit_group_email").getValue2()
+            self.use_audit_group = True
+
+            print "Duo. Initialization. Using audito group:", self.audit_group
+            
+        if (self.use_duo_group or self.use_audit_group):
+            if (not configurationAttributes.containsKey("audit_attribute")):
+                print "Duo. Initialization. Property audit_attribute is not specified"
+                return False
+            else:
+                self.audit_attribute = configurationAttributes.get("audit_attribute").getValue2()
+
+        print "Duo. Initialized successfully"
+        return True   
+
+    def destroy(self, configurationAttributes):
+        print "Duo. Destroy"
+        print "Duo. Destroyed successfully"
+        return True
+
+    def getApiVersion(self):
+        return 11
+        
+    def getAuthenticationMethodClaims(self, requestParameters):
+        return None
+        
+    def isValidAuthenticationMethod(self, usageType, configurationAttributes):
+        return True
+
+    def getAlternativeAuthenticationMethod(self, usageType, configurationAttributes):
+        return None
+
+    def authenticate(self, configurationAttributes, requestParameters, step):
+        duo_host = configurationAttributes.get("duo_host").getValue2()
+
+        authenticationService = CdiUtil.bean(AuthenticationService)
+
+        identity = CdiUtil.bean(Identity)
+
+        if (step == 1):
+            print "Duo. Authenticate for step 1"
+
+            # Check if user authenticated already in another custom script
+            user = authenticationService.getAuthenticatedUser()
+            if user == None:
+                credentials = identity.getCredentials()
+                user_name = credentials.getUsername()
+                user_password = credentials.getPassword()
+    
+                logged_in = False
+                if (StringHelper.isNotEmptyString(user_name) and StringHelper.isNotEmptyString(user_password)):
+                    userService = CdiUtil.bean(UserService)
+                    logged_in = authenticationService.authenticate(user_name, user_password)
+    
+                if (not logged_in):
+                    return False
+    
+                user = authenticationService.getAuthenticatedUser()
+
+            if (self.use_duo_group):
+                print "Duo. Authenticate for step 1. Checking if user belong to Duo group"
+                is_member_duo_group = self.isUserMemberOfGroup(user, self.audit_attribute, self.duo_group)
+                if (is_member_duo_group):
+                    print "Duo. Authenticate for step 1. User '" + user.getUserId() + "' member of Duo group"
+                    duo_count_login_steps = 2
+                else:
+                    self.processAuditGroup(user)
+                    duo_count_login_steps = 1
+
+                identity.setWorkingParameter("duo_count_login_steps", duo_count_login_steps)
+
+            return True
+        elif (step == 2):
+            print "Duo. Authenticate for step 2"
+            user = authenticationService.getAuthenticatedUser()
+            if user == None:
+                print "Duo. Authenticate for step 2. Failed to determine user name"
+                return False
+
+            user_name = user.getUserId()
+
+            sig_response_array = requestParameters.get("sig_response")
+            if ArrayHelper.isEmpty(sig_response_array):
+                print "Duo. Authenticate for step 2. sig_response is empty"
+                return False
+
+            duo_sig_response = sig_response_array[0]
+
+            print "Duo. Authenticate for step 2. duo_sig_response: " + duo_sig_response
+
+            authenticated_username = duo_web.verify_response(self.ikey, self.skey, self.akey, duo_sig_response)
+
+            print "Duo. Authenticate for step 2. authenticated_username: " + authenticated_username + ", expected user_name: " + user_name
+
+            if (not StringHelper.equals(user_name, authenticated_username)):
+                return False
+
+            self.processAuditGroup(user)
+
+            return True
+        else:
+            return False
+
+    def prepareForStep(self, configurationAttributes, requestParameters, step):
+        identity = CdiUtil.bean(Identity)
+        authenticationService = CdiUtil.bean(AuthenticationService)
+
+        duo_host = configurationAttributes.get("duo_host").getValue2()
+
+        if (step == 1):
+            print "Duo. Prepare for step 1"
+
+            return True
+        elif (step == 2):
+            print "Duo. Prepare for step 2"
+
+            user = authenticationService.getAuthenticatedUser()
+            if (user == None):
+                print "Duo. Prepare for step 2. Failed to determine user name"
+                return False
+            user_name = user.getUserId()
+
+            duo_sig_request = duo_web.sign_request(self.ikey, self.skey, self.akey, user_name)
+            print "Duo. Prepare for step 2. duo_sig_request: " + duo_sig_request
+            
+            identity.setWorkingParameter("duo_host", duo_host)
+            identity.setWorkingParameter("duo_sig_request", duo_sig_request)
+
+            return True
+        else:
+            return False
+
+    def getExtraParametersForStep(self, configurationAttributes, step):
+        if step == 2:
+            return Arrays.asList("duo_count_login_steps", "cas2_user_uid")
+
+        return None
+
+    def getCountAuthenticationSteps(self, configurationAttributes):
+        identity = CdiUtil.bean(Identity)
+        if (identity.isSetWorkingParameter("duo_count_login_steps")):
+            return int(identity.getWorkingParameter("duo_count_login_steps"))
+
+        return 2
+
+    def getPageForStep(self, configurationAttributes, step):
+        if (step == 2):
+            return "/auth/duo/duologin.xhtml"
+        return ""
+
+    def getNextStep(self, configurationAttributes, requestParameters, step):
+        return -1
+
+    def getLogoutExternalUrl(self, configurationAttributes, requestParameters):
+        print "Get external logout URL call"
+        return None
+
+    def logout(self, configurationAttributes, requestParameters):
+        return True
+
+    def isUserMemberOfGroup(self, user, attribute, group):
+        is_member = False
+        member_of_list = user.getAttributeValues(attribute)
+        if (member_of_list != None):
+            for member_of in member_of_list:
+                if StringHelper.equalsIgnoreCase(group, member_of) or member_of.endswith(group):
+                    is_member = True
+                    break
+
+        return is_member
+
+    def processAuditGroup(self, user):
+        if (self.use_audit_group):
+            is_member = self.isUserMemberOfGroup(user, self.audit_attribute, self.audit_group)
+            if (is_member):
+                print "Duo. Authenticate for processAuditGroup. User '" + user.getUserId() + "' member of audit group"
+                print "Duo. Authenticate for processAuditGroup. Sending e-mail about user '" + user.getUserId() + "' login to", self.audit_email
+                
+                # Send e-mail to administrator
+                user_id = user.getUserId()
+                mailService = CdiUtil.bean(MailService)
+                subject = "User log in: " + user_id
+                body = "User log in: " + user_id
+                mailService.sendMail(self.audit_email, subject, body)
diff --git a/oxAuth/Server/integrations/duo/INSTALLATION.txt b/oxAuth/Server/integrations/duo/INSTALLATION.txt
new file mode 100644
index 00000000..051f6ae6
--- /dev/null
+++ b/oxAuth/Server/integrations/duo/INSTALLATION.txt
@@ -0,0 +1,44 @@
+This list of steps needed to do to enable DUO person authentication module.
+
+1. This module depends on python libraries. In order to use it we need to install Jython. Please use next articles to proper Jython installation:
+    - Installation notest: http://ox.gluu.org/doku.php?id=oxtauth:customauthscript#jython_installation_optional
+    - Jython integration: http://ox.gluu.org/doku.php?id=oxtauth:customauthscript#jython_python_integration
+
+2. Copy required python libraries from ./lib folder to $CATALINA_HOME/conf/python folder.
+
+3. Prepare DUO creds file /etc/certs/duo_creds.json with ikey, akey, skey
+
+4. Confire new custom module in oxTrust:
+    - Log into oxTrust with administrative permissions.
+    - Open "Configuration→Manage Custom Scripts" page.
+    - Select "Person Authentication" tab.
+    - Click on "Add custom script configuration" link.
+    - Enter name = duo
+    - Enter level = 0-100 (priority of this method).
+    - Select usage type "Interactive".
+    - Add custom required and optional properties which specified in README.txt.
+    - Copy/paste script from DuoPersonAuthentication.py.
+    - Activate it via "Enabled" checkbox.
+    - Click "Update" button at the bottom of this page.
+
+5. Configure oxAuth to use DUO authentication by default:
+    - Log into oxTrust with administrative permissions.
+    - Open "Configuration→Manage Authentication" page.
+    - Scroll to "Default Authentication Method" panel. Select "duo" authentication mode.
+    - Click "Update" button at the bottom of this page.
+
+6. Try to log in using DUO authentication method:
+    - Wait 30 seconds and try to log in again. During this time oxAuth reload list of available person authentication modules.
+    - Open second browser or second browsing session and try to log in again. It's better to try to do that from another browser session because we can return back to previous authentication method if something will go wrong.
+
+7. This step is an optional. We need to define SMTP configuration if we are plaaning to use audit_group property. In order to set SMTP configuration
+   we need to do:
+    - Open "Configuration"->"Organization configuration" page.
+    - Scroll down to "SMTP Server Configuration" section.
+    - Fill SMTP configuration parameters.
+    - Click "Test Configuration" in order to verify SMTP configuration.
+    - Click "Update" button at the bottom of this page.
+    - Restart tomcat in order to instruct oxAuth to use new SMTP configuration.
+
+There are log messages in this custom authentication script. In order to debug this module we can use command like this:
+tail -f /opt/tomcat/logs/wrapper.log | grep "Duo"
diff --git a/oxAuth/Server/integrations/duo/README.txt b/oxAuth/Server/integrations/duo/README.txt
new file mode 100644
index 00000000..0ece1453
--- /dev/null
+++ b/oxAuth/Server/integrations/duo/README.txt
@@ -0,0 +1,21 @@
+This is a person authentication module for oxAuth that enables [Duo Authentication](https://www.duosecurity.com) for user authentication.
+
+The module has a few properties:
+
+1) duo_creds_file - It's mandatory property. It's path to file which contains contains ikey, skey, akey. These keys are required for DUO authentication.
+Example: `/etc/certs/duo_creds.json`
+Example content of this file:
+`{"ikey": "ikey_value", "skey": "skey_value", "akey": "akey_value"}`
+
+2) duo_host - It's mandatory property. The URL of the DUO API server.
+   Example: `api-random.duosecurity.com`
+
+3) audit_attribute - It's optional property. It allows to define an attribute which the module should check for to determine whether the user belongs to duo_group or audit_group. Person DUO authentication module uses it if there is `duo_group` or `audit_group` property.
+   Example: `memberOf`
+
+4) duo_group - It's optional property. It's an optional attribute that alows to specify if DUO should be used for specific users. i.e. use DUO only for users who have audit_attribute (`memberOf`) attribute value equal to `duo_group`. If there is none DUO will be enforced for all users. 
+
+5) audit_group - It's optional property. Specify if module should send an e-mail to administrator upon login of a user who has audit_attribute `memberOf` attribute value equal to `audit_group`.
+
+6) audit_group_email - It's optional property. It's the administrator's e-mail. Person DUO authentication module uses it if there is `audit_group` property.
+
diff --git a/oxAuth/Server/integrations/duo/lib/duo_web.py b/oxAuth/Server/integrations/duo/lib/duo_web.py
new file mode 100644
index 00000000..7bdfb6dd
--- /dev/null
+++ b/oxAuth/Server/integrations/duo/lib/duo_web.py
@@ -0,0 +1,175 @@
+#
+# duo_web.py
+#
+# Copyright (c) 2011 Duo Security
+# All rights reserved, all wrongs reversed.
+#
+
+import base64
+import hashlib
+import hmac
+import time
+
+DUO_PREFIX  = 'TX'
+APP_PREFIX  = 'APP'
+AUTH_PREFIX = 'AUTH'
+ENROLL_PREFIX = 'ENROLL'
+ENROLL_REQUEST_PREFIX = 'ENROLL_REQUEST'
+
+DUO_EXPIRE = 300
+APP_EXPIRE = 3600
+
+IKEY_LEN = 20
+SKEY_LEN = 40
+AKEY_LEN = 40
+
+ERR_USER = 'ERR|The username passed to sign_request() is invalid.'
+ERR_IKEY = 'ERR|The Duo integration key passed to sign_request() is invalid.'
+ERR_SKEY = 'ERR|The Duo secret key passed to sign_request() is invalid.'
+ERR_AKEY = 'ERR|The application secret key passed to sign_request() must be at least %s characters.' % AKEY_LEN
+ERR_UNKNOWN = 'ERR|An unknown error has occurred.'
+
+def _hmac_sha1(key, msg):
+    ctx = hmac.new(key, msg, hashlib.sha1)
+    return ctx.hexdigest()
+
+def _sign_vals(key, vals, prefix, expire):
+    exp = str(int(time.time()) + expire)
+
+    val = '|'.join(vals + [ exp ])
+    b64 = base64.b64encode(val.encode('utf-8')).decode('utf-8')
+    cookie = '%s|%s' % (prefix, b64)
+
+    sig = _hmac_sha1(key.encode('utf-8'), cookie.encode('utf-8'))
+    return '%s|%s' % (cookie, sig)
+
+def _parse_vals(key, val, prefix, ikey):
+    ts = int(time.time())
+    u_prefix, u_b64, u_sig = val.split('|')
+    cookie = '%s|%s' % (u_prefix, u_b64)
+    e_key = key.encode('utf-8')
+    e_cookie = cookie.encode('utf-8')
+
+    sig = _hmac_sha1(e_key, e_cookie)
+    if _hmac_sha1(e_key, sig.encode('utf-8')) != _hmac_sha1(e_key, u_sig.encode('utf-8')):
+        return None
+
+    if u_prefix != prefix:
+        return None
+
+    decoded = base64.b64decode(u_b64).decode('utf-8')
+    user, u_ikey, exp = decoded.split('|')
+
+    if u_ikey != ikey:
+        return None
+
+    if ts >= int(exp):
+        return None
+
+    return user
+
+def _sign_request(ikey, skey, akey, username, prefix):
+    """Generate a signed request for Duo authentication.
+    The returned value should be passed into the Duo.init() call
+    in the rendered web page used for Duo authentication.
+    Arguments:
+    ikey      -- Duo integration key
+    skey      -- Duo secret key
+    akey      -- Application secret key
+    username  -- Primary-authenticated username
+    prefix    -- DUO_PREFIX or ENROLL_REQUEST_PREFIX
+    """
+    if not username:
+        return ERR_USER
+    if '|' in username:
+        return ERR_USER
+    if not ikey or len(ikey) != IKEY_LEN:
+        return ERR_IKEY
+    if not skey or len(skey) != SKEY_LEN:
+        return ERR_SKEY
+    if not akey or len(akey) < AKEY_LEN:
+        return ERR_AKEY
+
+    vals = [ username, ikey ]
+
+    try:
+        duo_sig = _sign_vals(skey, vals, prefix, DUO_EXPIRE)
+        app_sig = _sign_vals(akey, vals, APP_PREFIX, APP_EXPIRE)
+    except Exception:
+        return ERR_UNKNOWN
+
+    return '%s:%s' % (duo_sig, app_sig)
+
+
+def sign_request(ikey, skey, akey, username):
+    """Generate a signed request for Duo authentication.
+    The returned value should be passed into the Duo.init() call
+    in the rendered web page used for Duo authentication.
+    Arguments:
+    ikey      -- Duo integration key
+    skey      -- Duo secret key
+    akey      -- Application secret key
+    username  -- Primary-authenticated username
+    """
+    return _sign_request(ikey, skey, akey, username, DUO_PREFIX)
+
+
+def sign_enroll_request(ikey, skey, akey, username):
+    """Generate a signed request for Duo authentication.
+    The returned value should be passed into the Duo.init() call
+    in the rendered web page used for Duo authentication.
+    Arguments:
+    ikey      -- Duo integration key
+    skey      -- Duo secret key
+    akey      -- Application secret key
+    username  -- Primary-authenticated username
+    """
+    return _sign_request(ikey, skey, akey, username, ENROLL_REQUEST_PREFIX)
+
+
+def _verify_response(ikey, skey, akey, prefix, sig_response):
+    """Validate the signed response returned from Duo.
+    Returns the username of the authenticated user, or None.
+    Arguments:
+    ikey          -- Duo integration key
+    skey          -- Duo secret key
+    akey          -- Application secret key
+    prefix        -- AUTH_PREFIX or ENROLL_PREFIX that sig_response
+                     must match
+    sig_response  -- The signed response POST'ed to the server
+    """
+    try:
+        auth_sig, app_sig = sig_response.split(':')
+        auth_user = _parse_vals(skey, auth_sig, AUTH_PREFIX, ikey)
+        app_user = _parse_vals(akey, app_sig, APP_PREFIX, ikey)
+    except Exception:
+        return None
+
+    if auth_user != app_user:
+        return None
+
+    return auth_user
+
+
+def verify_response(ikey, skey, akey, sig_response):
+    """Validate the signed response returned from Duo.
+    Returns the username of the authenticated user, or None.
+    Arguments:
+    ikey          -- Duo integration key
+    skey          -- Duo secret key
+    akey          -- Application secret key
+    sig_response  -- The signed response POST'ed to the server
+    """
+    return _verify_response(ikey, skey, akey, AUTH_PREFIX, sig_response)
+
+
+def verify_enroll_response(ikey, skey, akey, sig_response):
+    """Validate the signed response returned from Duo.
+    Returns the username of the enrolled user, or None.
+    Arguments:
+    ikey          -- Duo integration key
+    skey          -- Duo secret key
+    akey          -- Application secret key
+    sig_response  -- The signed response POST'ed to the server
+    """
+    return _verify_response(ikey, skey, akey, ENROLL_PREFIX, sig_response)
diff --git a/oxAuth/Server/integrations/duo2_Gluu3/DUO_Universal_3.1.7.py b/oxAuth/Server/integrations/duo2_Gluu3/DUO_Universal_3.1.7.py
new file mode 100644
index 00000000..6b57736f
--- /dev/null
+++ b/oxAuth/Server/integrations/duo2_Gluu3/DUO_Universal_3.1.7.py
@@ -0,0 +1,177 @@
+from org.xdi.service.cdi.util import CdiUtil
+from org.xdi.oxauth.security import Identity
+from org.xdi.model.custom.script.type.auth  import PersonAuthenticationType
+from org.xdi.oxauth.service import AuthenticationService
+from org.xdi.util import StringHelper
+from java.util import Arrays
+from javax.faces.context import FacesContext
+from org.gluu.jsf2.service import FacesService
+from org.xdi.oxauth.service.net import HttpService
+import os
+import java
+import sys
+from com.duosecurity import Client
+from com.duosecurity.exception import DuoException
+from com.duosecurity.model import Token
+from org.xdi.oxauth.util import ServerUtil
+
+class PersonAuthentication(PersonAuthenticationType):
+    def __init__(self, currentTimeMillis):
+        self.currentTimeMillis = currentTimeMillis
+
+    def init(self,  configurationAttributes):
+        print "Duo-Universal. Initialization"
+        
+        if (not configurationAttributes.containsKey("client_id")):
+	        print "Duo Universal. Initialization. Property client_id is not specified"
+	        return False
+        else: 
+        	self.client_id = configurationAttributes.get("client_id").getValue2() 
+        	
+        if (not configurationAttributes.containsKey("client_secret")):
+	        print "Duo Universal. Initialization. Property client_secret is not specified"
+	        return False
+        else: 
+        	self.client_secret = configurationAttributes.get("client_secret").getValue2() 
+        	
+        if (not configurationAttributes.containsKey("api_hostname")):
+	        print "Duo Universal. Initialization. Property api_hostname is not specified"
+	        return False
+        else: 
+        	self.api_hostname = configurationAttributes.get("api_hostname").getValue2() 
+            
+        print "Duo-Universal. Initialized successfully"
+        return True   
+
+    def destroy(self, configurationAttributes):
+        print "Duo-Universal. Destroy"
+        print "Duo-Universal. Destroyed successfully"
+        return True
+
+    def getApiVersion(self):
+        return 1
+        
+    def getAuthenticationMethodClaims(self, requestParameters):
+        return None
+        
+    def isValidAuthenticationMethod(self, usageType, configurationAttributes):
+        return True
+
+    def getAlternativeAuthenticationMethod(self, usageType, configurationAttributes):
+        return None
+
+    def authenticate(self, configurationAttributes, requestParameters, step):
+        print "Duo-Universal. Authenticate for step %s" % step
+        
+        identity = CdiUtil.bean(Identity)
+        if (step == 1):
+            authenticationService = CdiUtil.bean(AuthenticationService)
+
+            # Check if user authenticated already in another custom script
+            user = authenticationService.getAuthenticatedUser()
+            
+            if user == None:
+                print "user is none"
+                credentials = identity.getCredentials()
+                
+                user_name = credentials.getUsername()
+                user_password = credentials.getPassword()
+    
+                logged_in = False
+                if (StringHelper.isNotEmptyString(user_name) and StringHelper.isNotEmptyString(user_password)):
+                    print "before login"    				
+                    logged_in = authenticationService.authenticate(user_name, user_password)
+    		    print "after login"   
+                    print logged_in 						
+                if (not logged_in):
+                    print "return false"
+                    return False
+                identity.setWorkingParameter('username',user_name)
+            return True
+            
+        elif (step == 2):
+               
+            identity = CdiUtil.bean(Identity)
+            
+            state = ServerUtil.getFirstValue(requestParameters, "state")
+ 	    # Get state to verify consistency and originality
+            if  identity.getWorkingParameter('state_duo') == state :
+        	
+            	# Get authorization token to trade for 2FA
+            	duoCode = ServerUtil.getFirstValue(requestParameters, "duo_code")
+	        try:
+	               token = self.duo_client.exchangeAuthorizationCodeFor2FAResult(duoCode, identity.getWorkingParameter('username'))
+                       print "token status %s " % token.getAuth_result().getStatus()
+	        except:
+	               # Handle authentication failure.
+	               print "authentication failure", sys.exc_info()[1]
+	               return False
+	        
+	        # User successfully passed Duo authentication.
+	        
+	        if "allow" == token.getAuth_result().getStatus():
+	           return True
+	           
+	        return False
+                
+        else:
+            print "Neither step 1 or 2" 
+            return False
+
+    def prepareForStep(self, configurationAttributes, requestParameters, step):
+    	print "Duo-Universal. Prepare for step %s" % step
+        
+        if (step == 1):
+            return True
+        elif (step == 2):
+        	identity = CdiUtil.bean(Identity)
+                user_name = identity.getWorkingParameter('username')
+        	facesContext = CdiUtil.bean(FacesContext)
+        	request = facesContext.getExternalContext().getRequest()
+        	httpService = CdiUtil.bean(HttpService)
+        	url = httpService.constructServerUrl(request) + "/postlogin.htm"
+        	print url
+                print user_name
+        	try:
+                        print "before health check"
+	        	self.duo_client = Client(self.client_id,self.client_secret,self.api_hostname,url)
+	        	self.duo_client.healthCheck()
+                        print "after health check"
+	    	except:
+                        print "Duo-Universal. Duo config error. Verify the values in Duo-Universal.conf are correct ", sys.exc_info()[1]
+                        return False
+                            
+                state = self.duo_client.generateState()
+                identity.setWorkingParameter("state_duo",state)
+                prompt_uri = self.duo_client.createAuthUrl(user_name, state)
+                
+                facesService = CdiUtil.bean(FacesService)
+                facesService.redirectToExternalURL(prompt_uri )
+
+                return True
+                    
+        else:
+            return False
+
+    def getExtraParametersForStep(self, configurationAttributes, step):
+        return Arrays.asList("state_duo", "username")
+
+    def getCountAuthenticationSteps(self, configurationAttributes):
+        return 2
+
+    def getPageForStep(self, configurationAttributes, step):
+        print "Duo-Universal. getPageForStep - %s " % step
+        if (step == 2):
+            return "/auth/duo/duologin.xhtml"
+        return ""
+
+    def getNextStep(self, configurationAttributes, requestParameters, step):
+        return -1
+
+    def getLogoutExternalUrl(self, configurationAttributes, requestParameters):
+        print "Get external logout URL call"
+        return None
+
+    def logout(self, configurationAttributes, requestParameters):
+        return True
+        
\ No newline at end of file
diff --git a/oxAuth/Server/integrations/duo2_Gluu3/readme.md b/oxAuth/Server/integrations/duo2_Gluu3/readme.md
new file mode 100644
index 00000000..363f029a
--- /dev/null
+++ b/oxAuth/Server/integrations/duo2_Gluu3/readme.md
@@ -0,0 +1,83 @@
+# Duo Universal Prompt configuration with Gluu 3.1.7
+
+## Overview
+[Duo Security](https://duosecurity.com) is a SaaS authentication provider. This document will explain how to configure Duo University Prompt with Gluu Server 3.1.7 for a two-step authentication process with username and password as the first step, and Duo as the second step. The script invokes the Universal Prompt which is a redesign of Duo’s traditional authentication prompt. 
+
+In order to use this authentication mechanism your organization will need a Duo account and users will need to download the Duo mobile app. 
+
+## Prerequisites
+- A Gluu Server 3.1.7;
+- Speical Duo2 script specific for Gluu Server 3.1.7 which is included above. 
+- An account with [Duo Security](https://duo.com/).   
+
+
+## Configure Duo AccountS
+
+1. [Sign up](https://duo.com/) for a Duo account.
+
+2. Log in to the Duo Admin Panel and navigate to Applications.
+
+3. Click Protect an Application and locate Web SDK in the applications list. Click Protect this Application to get your client ID, secret key, and API hostname.
+
+For additional info for the steps refer to Duo's Web SDK 4, check [this article](https://duo.com/docs/duoweb-v4). 
+
+## Add the duo-universal Dependency to your oxAuth
+
+1. Download Duo-Universal-SDK 1.0.3 (wget https://repo1.maven.org/maven2/com/duosecurity/duo-universal-sdk/1.0.3/duo-universal-sdk-1.0.3-jar-with-dependencies.jar)  and put it inside `/opt/gluu/jetty/oxauth/custom/libs`
+
+1. Restart the oxauth service
+
+
+## Configure oxTrust 
+
+Follow the steps below to configure the Duo module in the oxTrust Admin GUI.
+
+1. Navigate to `Configuration` > `Person Authentication Scripts`.
+   Add a custom script for the 2 factor authentication using DUO credentials and name it duo2 (specifically because this is version 2 ).  
+
+
+1. Add the following Custom Property ( key/value pairs ) 
+
+
+|	Property	|Status		|	Description	|	Example		|
+|-----------------------|---------------|-----------------------|-----------------------|
+|api_hostname		|Mandatory     |URL of the Duo API Server|api-random.duosecurity.com|
+|client_id		|Mandatory    |Value from the Duo application using Web SDK 4 that was registered using DUO Admin console|DIxxxxxxxxxxxXxxxI|
+|client_secret	|Mandatory|Value from the Duo application using Web SDK 4 that was registered using DUO Admin console|eXXXXXXXXXXXXXXXP|   
+
+1. Enable the script by ticking the check box    
+
+Now Duo is an available authentication mechanism for your Gluu Server. This means that, using OpenID Connect `acr_values`, applications can now request Duo authentication for users. 
+
+!!! Note 
+    To make sure Duo has been enabled successfully, you can check your Gluu Server's OpenID Connect configuration by navigating to the following URL: `https://<hostname>/.well-known/openid-configuration`. Find `"acr_values_supported":` and you should see `"duo2"`. 
+
+## Make Duo the Default Authentication Mechanism
+
+Now applications can request Duo authentication, but what if you want to make Duo your default authentication mechanism? You can follow these instructions: 
+
+1. Navigate to `Configuration` > `Manage Authentication`. 
+2. Select the `Default Authentication Method` tab. 
+3. In the Default Authentication Method window you will see two options: `Default acr` and `oxTrust acr`. 
+
+    - The `oxTrust acr` field controls the authentication mechanism that is presented to access the oxTrust dashboard GUI (the application you are in).    
+    - The `Default acr` field controls the default authentication mechanism that is presented to users from all applications that leverage your Gluu Server for authentication.    
+
+You can change one or both fields to Duo authentication as you see fit. If you want Duo to be the default authentication mechanism for access to oxTrust and all other applications that leverage your Gluu Server, change both fields to Duo.  
+ 
+!!! Note 
+    Currently, the DUO Universal Prompt has not yet been released. However, DUO has enabled customers to be application ready so that the switch to the newer User Interface can be seamless.  
+
+## Upgrading to the DUO Universal Prompt from the older user interface for enrolling DUO credentials
+
+### In DUO Admin Console:
+1. Register a new Duo's Web SDK 4 application, check [this article](https://duo.com/docs/duoweb-v4).  
+1. Save the client id and secret
+
+### In oxTrust :
+1. Update the original duo script to reflect the latest contents.
+1. Add script properties as mentioned in the above steps. The client ID and client secret can be obtained from the Web SDK 4 application of the DUO admin console.
+
+### Add the duo-universal Dependency to your oxAuth
+Follow the exact steps mentioned previously in the document
+
diff --git a/oxAuth/Server/integrations/email2FA/README.md b/oxAuth/Server/integrations/email2FA/README.md
new file mode 100644
index 00000000..74ab40eb
--- /dev/null
+++ b/oxAuth/Server/integrations/email2FA/README.md
@@ -0,0 +1,55 @@
+# One-Time Password (OTP) Authentication over Email
+
+## Overview
+This document explains how to use the Gluu Server's included 
+[Email_2fa interception script](https://raw.githubusercontent.com/GluuFederation/oxAuth/master/Server/integrations/email2FA/email2FAExternalAuthenticator.py) 
+to implement a two-step, two-factor authentication (2FA) process with username / password as the first step, and an OTP recieved on email as the second step. 
+
+
+## Prerequisites
+- A Gluu Server ([installation instructions](../installation-guide/index.md))
+- [Email_2fa interception script](https://raw.githubusercontent.com/GluuFederation/oxAuth/master/Server/integrations/email2FA/email2FAExternalAuthenticator.py) 
+- SMTP configuration as per https://gluu.org/docs/gluu-server/4.3/admin-guide/oxtrust-ui/#smtp-server-configuration
+
+
+
+## Properties
+The OTP authentication script has the following properties: 
+
+|	Property	|	Description		|	Example	|
+|-----------------------|-------------------------------|---------------|
+|token_length	|length (number of characters) of the OTP token| eg : 5 
+|token_lifetime  |In minutes| 2
+ 
+    
+## Enable Email_2fa
+Follow the steps below to enable Super Gluu authentication:
+
+1. In oxTrust, navigate to `Configuration` > `Person Authentication Scripts`
+1. Create a new script and give it a relevant name say email_2fa and In the script field use the contents of this [file](https://raw.githubusercontent.com/GluuFederation/oxAuth/master/Server/integrations/email2FA/email2FAExternalAuthenticator.py) 
+1. Enable the script by checking the box 
+1. Scroll to the bottom of the page and click `Update`
+
+Now email_2fa is an available authentication mechanism for your Gluu Server. This means that, using OpenID Connect `acr_values`, applications can now request OTP authentication for users. 
+
+## Make email_2fa the Default
+
+If OTP should be the default authentication mechanism, follow these instructions: 
+
+1. Navigate to `Configuration` > `Manage Authentication` 
+
+1. Select the `Default Authentication Method` tab 
+
+1. In the Default Authentication Method window you will see two options: `Default acr` and `oxTrust acr` 
+
+ - `oxTrust acr` sets the authentication mechanism for accessing the oxTrust dashboard GUI (only managers should have acccess to oxTrust)    
+
+ - `Default acr` sets the default authentication mechanism for accessing all applications that leverage your Gluu Server for authentication (unless otherwise specified)    
+
+If email_2fa should be the default authentication mechanism for all access, change both fields to email_2fa.  
+
+# Add 2FA login pages to oxauth 
+
+1. ` mkdir -p /opt/gluu/jetty/oxauth/custom/pages/auth/email_auth `
+
+1. ` cp entertoken.xhtml /opt/gluu/jetty/oxauth/custom/pages/auth/email_auth `
diff --git a/oxAuth/Server/integrations/email2FA/email2FAExternalAuthenticator.py b/oxAuth/Server/integrations/email2FA/email2FAExternalAuthenticator.py
new file mode 100644
index 00000000..577ece78
--- /dev/null
+++ b/oxAuth/Server/integrations/email2FA/email2FAExternalAuthenticator.py
@@ -0,0 +1,366 @@
+
+
+from org.gluu.oxauth.service import AuthenticationService
+from org.gluu.oxauth.service import UserService
+from org.gluu.oxauth.auth import Authenticator
+from org.gluu.oxauth.security import Identity
+from org.gluu.model.custom.script.type.auth import PersonAuthenticationType
+from org.gluu.service.cdi.util import CdiUtil
+from org.gluu.util import StringHelper
+from org.gluu.oxauth.util import ServerUtil
+from org.gluu.oxauth.service.common import ConfigurationService
+from org.gluu.oxauth.service.common import EncryptionService
+from org.gluu.jsf2.message import FacesMessages
+from javax.faces.application import FacesMessage
+from org.gluu.persist.exception import AuthenticationException
+from datetime import datetime, timedelta
+from java.util import GregorianCalendar, TimeZone
+from java.io import File
+from java.io import FileInputStream
+from java.util import Enumeration, Properties
+
+#dealing with smtp server
+from java.security import Security
+from javax.mail.internet import MimeMessage, InternetAddress
+from javax.mail import Session, Message, Transport
+
+from java.util import Arrays
+import random
+import string
+import re
+import urllib
+import java
+try:
+    import json
+except ImportError:
+    import simplejson as json
+
+class EmailValidator():
+    regex = '^\w+([\.-]?\w+)*@\w+([\.-]?\w+)*(\.\w{2,3})+$'
+
+    def check(self, email):
+
+        if(re.search(self.regex,email)):
+            print "EmailOTP.  - %s is a valid email format" % email
+            return True
+        else:
+            print "EmailOTP.  - %s is an invalid email format" % email
+            return False
+
+class Token:
+    #class that deals with string token
+
+    def generateToken(self,lent):
+        rand1="1234567890123456789123456789"
+        rand2="9876543210123456789123456789"
+        first = int(rand1[:int(lent)])
+        first1 = int(rand2[:int(lent)])
+        token = random.randint(first, first1)
+        return token
+
+
+class PersonAuthentication(PersonAuthenticationType):
+
+
+    def __init__(self, currentTimeMillis):
+        self.currentTimeMillis = currentTimeMillis
+
+    def init(self, customScript, configurationAttributes):
+
+        print "EmailOTP.  - Initialized successfully"
+        return True
+
+    def destroy(self, configurationAttributes):
+        print "EmailOTP.  - Destroyed successfully"
+        return True
+
+    def getApiVersion(self):
+        return 11
+
+    def isValidAuthenticationMethod(self, usageType, configurationAttributes):
+        return True
+    def getAuthenticationMethodClaims(self, configurationAttributes):
+        return None
+
+    def getAlternativeAuthenticationMethod(self, usageType, configurationAttributes):
+        return None
+
+    def authenticate(self, configurationAttributes, requestParameters, step):
+
+        print "Email 2FA - Authenticate for step %s" % ( step)
+        authenticationService = CdiUtil.bean(AuthenticationService)
+        identity = CdiUtil.bean(Identity)
+        credentials = identity.getCredentials()
+        user_name = credentials.getUsername()
+        user_password = credentials.getPassword()
+        facesMessages = CdiUtil.bean(FacesMessages)
+        facesMessages.setKeepMessages()
+        subject = "Gluu Authentication Token"
+        session_attributes = identity.getSessionId().getSessionAttributes()
+        multipleEmails = session_attributes.get("emailIds")
+
+        if step == 1:
+            try:
+                 # Check if user authenticated already in another custom script
+                user2 = authenticationService.getAuthenticatedUser()
+                if user2 == None:
+                    credentials = identity.getCredentials()
+                    user_name = credentials.getUsername()
+                    user_password = credentials.getPassword()
+
+                    logged_in = False
+                    if (StringHelper.isNotEmptyString(user_name) and StringHelper.isNotEmptyString(user_password)):
+                        userService = CdiUtil.bean(UserService)
+                        logged_in = authenticationService.authenticate(user_name, user_password)
+                        if logged_in is True:
+                            user2 = authenticationService.getAuthenticatedUser()
+                            emailIds = user2.getAttribute("oxEmailAlternate")
+                            if StringHelper.isNotEmptyString(emailIds):
+                                data = json.loads(emailIds)
+                                if len(data['email-ids']) > 1:
+                                    commaSeperatedEmailString = []
+                                    for email in data['email-ids']:
+                                        reciever_id = email['email']
+                                        commaSeperatedEmailString.append(reciever_id)
+                                    # setting this in session is used to determine if this is a 2 or 3 step flow
+                                    identity.setWorkingParameter("emailIds", ",".join(commaSeperatedEmailString))
+
+                    return logged_in
+            except AuthenticationException as err:
+                print err
+                return False
+        else:
+            #Means the selection email page was used
+            user2 = authenticationService.getAuthenticatedUser()
+            emailIds = user2.getAttribute("oxEmailAlternate")
+            if emailIds != None:
+                multipleEmails = []
+                token = identity.getWorkingParameter("token")
+
+                if StringHelper.isNotEmptyString(emailIds):
+                    data = json.loads(emailIds)
+
+                    # step2 and multiple email ids present, then user has been presented a choice of email which is fetched in OtpEmailLoginForm:indexOfEmail, send email
+                    if step == 2 and len(data['email-ids']) > 1 :
+
+                        for email in data['email-ids']:
+                            reciever_id = email['email']
+                            multipleEmails.append(reciever_id)
+
+
+                        idx = ServerUtil.getFirstValue(requestParameters, "OtpEmailLoginForm:indexOfEmail")
+                        if idx != None and token != None:
+                            sendToEmail = multipleEmails[int(idx)]
+                            print "EmailOtp. Sending email to : %s " % sendToEmail
+
+                            body = "Here is your token: %s" % token
+                            sender = EmailSender()
+                            sender.sendEmail( sendToEmail, subject, body)
+                            return True
+                        else:
+                            print "EmailOTP. Something wrong with index or token"
+                            return False
+                    # token verificaation - step 3 incase of email selection , else step 2
+                    else:
+                        input_token = ServerUtil.getFirstValue(requestParameters, "OtpEmailLoginForm:passcode")
+                        print "input token %s" % input_token
+                        print "EmailOTP.  - Token input by user is %s" % input_token
+
+                        token = str(identity.getWorkingParameter("token"))
+                        min11 = int(identity.getWorkingParameter("sentmin"))
+                        nww = datetime.now()
+                        te = str(nww)
+                        listew = te.split(':')
+                        curtime = int(listew[1])
+
+                        token_lifetime = int(configurationAttributes.get("token_lifetime").getValue2())
+                        if ((min11<= 60) and (min11>= 50)):
+                            if ((curtime>=50) and (curtime<=60)):
+                                timediff1 =  curtime -  min11
+                                if timediff1>token_lifetime:
+                                    #print "OTP Expired"
+                                    facesMessages.add(FacesMessage.SEVERITY_ERROR, "OTP Expired")
+                                    return False
+                            elif ((curtime>=0) or (curtime<=10)):
+                                timediff1 = 60 - min11
+                                timediff1 =  timediff1 + curtime
+                                if timediff1>token_lifetime:
+                                    #print "OTP Expired"
+                                    facesMessages.add(FacesMessage.SEVERITY_ERROR, "OTP Expired")
+                                    return False
+
+                        if ((min11>=0) and (min11<=60) and (curtime>=0) and (curtime<=60)):
+                            timediff2 = curtime - min11
+                            if timediff2>token_lifetime:
+                                #print "OTP Expired"
+                                facesMessages.add(FacesMessage.SEVERITY_ERROR, "OTP Expired")
+                                return False
+                        # compares token sent and token entered by user
+                        print "Token from session: %s " % token
+                        if input_token == token:
+                            print "Email 2FA - token entered correctly"
+                            identity.setWorkingParameter("token_valid", True)
+
+                            return True
+
+                        else:
+                            facesMessages = CdiUtil.bean(FacesMessages)
+                            facesMessages.setKeepMessages()
+                            facesMessages.clear()
+                            facesMessages.add(FacesMessage.SEVERITY_ERROR, "Wrong code entered")
+                            print "EmailOTP. Wrong code entered"
+                            return False
+
+    def prepareForStep(self, configurationAttributes, requestParameters, step):
+        print "EmailOTP.  - Preparing for step %s" % step
+        authenticationService = CdiUtil.bean(AuthenticationService)
+
+        user2 = authenticationService.getAuthenticatedUser()
+
+
+        if step == 2 and user2 is not None:
+            uid = user2.getAttribute("uid")
+            identity = CdiUtil.bean(Identity)
+            lent = configurationAttributes.get("token_length").getValue2()
+            new_token = Token()
+            token = new_token.generateToken(lent)
+            subject = "Gluu Authentication Token"
+            body = "Here is your token: %s" % token
+
+            sender = EmailSender()
+            emailIds = user2.getAttribute("oxEmailAlternate")
+
+            print "emailIds : %s" % emailIds
+            data = json.loads(emailIds)
+
+            #Attempt to send message now if user has only one email id
+            if len(data['email-ids']) == 1:
+                email = data['email-ids'][0]
+                print "EmailOTP.  email to - %s" % email['email']
+                sender.sendEmail( email['email'], subject, body)
+
+            else:
+                commaSeperatedEmailString = []
+                for email in data['email-ids']:
+                    reciever_id = email['email']
+                    print "EmailOTP. Email to - %s" % reciever_id
+                    #sender.sendEmail( reciever_id, subject, body)
+                    commaSeperatedEmailString.append(self.getMaskedEmail(reciever_id))
+                identity.setWorkingParameter("emailIds", ",".join(commaSeperatedEmailString))
+
+            otptime1 = datetime.now()
+            tess = str(otptime1)
+            listee = tess.split(':')
+
+            identity.setWorkingParameter("sentmin", listee[1])
+            identity.setWorkingParameter("token", token)
+
+            return True
+
+        return True
+
+    def getExtraParametersForStep(self, configurationAttributes, step):
+        return Arrays.asList("token","emailIds","token_valid","sentmin")
+
+
+    def getCountAuthenticationSteps(self, configurationAttributes):
+
+        print "EmailOTP. getCountAuthenticationSteps called"
+
+        if CdiUtil.bean(Identity).getWorkingParameter("emailIds") == None:
+            print "EmailOTP. getCountAuthenticationSteps called - 2 steps"
+            return 2
+        else:
+            print "EmailOTP. getCountAuthenticationSteps called 3 steps"
+            return 3
+
+
+    def getPageForStep(self, configurationAttributes, step):
+        print "EmailOTP. getPageForStep called %s" % step
+
+        defPage = "/casa/otp_email.xhtml"
+        if step == 2:
+            if CdiUtil.bean(Identity).getWorkingParameter("emailIds") == None:
+                print "emailIds not set, returning otp_email page"
+                return defPage
+            else:
+                return "/casa/otp_email_prompt.xhtml"
+        elif step == 3:
+            return defPage
+        return ""
+
+
+
+    def getNextStep(self, configurationAttributes, requestParameters, step):
+        return -1
+
+    def logout(self, configurationAttributes, requestParameters):
+        return True
+
+    def hasEnrollments(self, configurationAttributes, user):
+        values = user.getAttributeValues("oxEmailAlternate")
+        if values != None:
+            return True
+        else:
+            return False
+
+
+    def getMaskedEmail (self, emailid):
+        regex = r"(?<=.)[^@\n](?=[^@\n]*?@)|(?:(?<=@.)|(?!^)\G(?=[^@\n]*$)).(?=.*\.)"
+        subst = "*"
+        result = re.sub(regex, subst, emailid, 0, re.MULTILINE)
+        if result:
+            print (result)
+        return result
+
+class EmailSender():
+    #class that sends e-mail through smtp
+
+    def getSmtpConfig(self):
+
+        smtp_config = None
+        smtpconfig = CdiUtil.bean(ConfigurationService).getConfiguration().getSmtpConfiguration()
+
+        if smtpconfig is None:
+            print "Sign Email - SMTP CONFIG DOESN'T EXIST - Please configure"
+
+        else:
+            encryptionService = CdiUtil.bean(EncryptionService)
+            smtp_config = {
+                'host' : smtpconfig.getHost(),
+                'port' : smtpconfig.getPort(),
+                'user' : smtpconfig.getUserName(),
+                'from' : smtpconfig.getFromEmailAddress(),
+                'pwd_decrypted' : encryptionService.decrypt(smtpconfig.getPassword()),
+                'req_ssl' : smtpconfig.isRequiresSsl(),
+                'requires_authentication' : smtpconfig.isRequiresAuthentication(),
+                'server_trust' : smtpconfig.isServerTrust()
+            }
+
+        return smtp_config
+
+
+
+    def sendEmail(self,  useremail, subject, messageText):
+        # server connection
+        smtpconfig = self.getSmtpConfig()
+
+        properties = Properties()
+        properties.setProperty("mail.smtp.host", smtpconfig['host'])
+        properties.setProperty("mail.smtp.port", str(smtpconfig['port']))
+        properties.setProperty("mail.smtp.starttls.enable", "true")
+        session = Session.getDefaultInstance(properties)
+
+        message = MimeMessage(session)
+        message.setFrom(InternetAddress(smtpconfig['from']))
+        message.addRecipient(Message.RecipientType.TO,InternetAddress(useremail))
+        message.setSubject(subject)
+        #message.setText(messageText)
+        message.setContent(messageText, "text/html")
+
+        transport = session.getTransport("smtp")
+        transport.connect(properties.get("mail.smtp.host"),int(properties.get("mail.smtp.port")), smtpconfig['user'], smtpconfig['pwd_decrypted'])
+        transport.sendMessage(message,message.getRecipients(Message.RecipientType.TO))
+
+
+        transport.close()
diff --git a/oxAuth/Server/integrations/email2FA/entertoken.xhtml b/oxAuth/Server/integrations/email2FA/entertoken.xhtml
new file mode 100644
index 00000000..ffba4cd3
--- /dev/null
+++ b/oxAuth/Server/integrations/email2FA/entertoken.xhtml
@@ -0,0 +1,92 @@
+<!DOCTYPE composition PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN"
+        "http://www.w3.org/TR/xhtml1/DTD/xhtml1-transitional.dtd">
+
+<ui:composition xmlns="http://www.w3.org/1999/xhtml"
+                xmlns:f="http://xmlns.jcp.org/jsf/core"
+                xmlns:ui="http://xmlns.jcp.org/jsf/facelets"
+                xmlns:h="http://xmlns.jcp.org/jsf/html"
+                template="/WEB-INF/incl/layout/template.xhtml">
+	
+	<f:metadata>
+		<f:viewAction action="#{authenticator.prepareAuthenticationForStep}" if="#{not identity.loggedIn}"/>
+	</f:metadata>
+    
+	<ui:define name="head">
+		<meta name="description" content="Gluu Inc." />
+		<!-- Here we use # {...} which are JSF EL expressions, they bind server values to this markup -->
+		<link href="#{oxAuthConfigurationService.getCssLocation()}/bootstrap.min.css" rel="stylesheet"/>
+		<link rel="stylesheet" href="#{oxAuthConfigurationService.getCssLocation()}/style.css"/>
+		<link href="https://fonts.googleapis.com/css?family=Open+Sans:300,400,600" rel="stylesheet"/>
+	</ui:define>
+
+	<ui:define name="body">
+		<!-- this is copy pasted from somewhere ... -->		
+		<header class="bs-docs-nav navbar navbar-static-top" id="top">
+			<div class="container">
+				<div class="navbar-header">
+					<a target="_blank" class="navbar-brand">
+					<ui:param name="client" value="#{clientService.getClient(redirect.parameters['client_id'])}" />
+                        <h:panelGroup rendered='#{!empty client.getLogoUri()}'>
+                            <h:graphicImage url='#{client.getLogoUri()}'/>
+                        </h:panelGroup> </a>
+				</div>
+			</div>
+		</header>
+	
+		<h:form id="ResetTokenForm">
+			<div class="bs-docs-section">
+				<div class="container">
+					<div class="step_bx">
+						<h2>Authentication Token</h2>
+						<p>Enter the token received in your email</p><p id="msg"></p>
+						<img
+							src="/oxauth/ext/resources/img/ver_code.png"
+							alt="ver_code" />
+						<!-- This form field is referenced in authenticate method of script -->
+						<input class="form-control" id="ResetTokenForm:inputToken" name="ResetTokenForm:inputToken"
+							type="text" autocomplete="off" />
+
+						
+						
+						<h:commandButton class="btn btn-done" value="Submit"
+							action="#{authenticator.authenticate}" />		
+					</div>
+				</div>
+			</div>		
+		</h:form>
+		
+		<script type="text/javascript">
+		
+		  window.onload = start;
+		   function start() {
+               
+				func1();
+			}
+			 function func1() {
+                
+                user_email = `#{identity.sessionId.sessionAttributes['useremail']}`;
+				
+				
+				var avg, temp, splitted, part1, part2;
+				splitted = user_email.split("@");
+			  
+				part1 = splitted[0];
+			   
+				
+				temp = part1.length - 3;
+				part1 = part1.substring(temp, part1.length);
+								
+				part2 = splitted[1];
+			   
+				avg =  "..." + part1 + "@" + part2;
+				
+				
+				var text = document.getElementById("msg");
+                text.innerHTML = avg;
+
+                
+			}
+		</script>
+	</ui:define>
+	
+</ui:composition>
\ No newline at end of file
diff --git a/oxAuth/Server/integrations/fido2/Fido2ExternalAuthenticator.py b/oxAuth/Server/integrations/fido2/Fido2ExternalAuthenticator.py
new file mode 100644
index 00000000..d97a0325
--- /dev/null
+++ b/oxAuth/Server/integrations/fido2/Fido2ExternalAuthenticator.py
@@ -0,0 +1,277 @@
+# oxAuth is available under the MIT License (2008). See http://opensource.org/licenses/MIT for full text.
+# Copyright (c) 2018, Gluu
+#
+# Author: Yuriy Movchan
+#
+
+from javax.ws.rs import ClientErrorException
+from javax.ws.rs.core import Response
+from org.gluu.model.custom.script.type.auth import PersonAuthenticationType
+from org.gluu.fido2.client import Fido2ClientFactory
+from org.gluu.oxauth.security import Identity
+from org.gluu.oxauth.service import AuthenticationService, SessionIdService
+from org.gluu.oxauth.service.common import UserService
+from org.gluu.oxauth.util import ServerUtil
+from org.gluu.service.cdi.util import CdiUtil
+from org.gluu.util import StringHelper
+from java.util import Arrays
+from java.util.concurrent.locks import ReentrantLock
+from javax.ws.rs import ClientErrorException
+from javax.ws.rs.core import Response
+from javax.faces.context import FacesContext
+
+import java
+import sys
+import json
+
+class PersonAuthentication(PersonAuthenticationType):
+    def __init__(self, currentTimeMillis):
+        self.currentTimeMillis = currentTimeMillis
+
+    def init(self, customScript, configurationAttributes):
+        print "Fido2. Initialization"
+
+        if not configurationAttributes.containsKey("fido2_server_uri"):
+            print "fido2_server_uri. Initialization. Property fido2_server_uri is not specified"
+            return False
+
+        self.fido2_server_uri = configurationAttributes.get("fido2_server_uri").getValue2()
+
+        self.fido2_domain = None
+        if configurationAttributes.containsKey("fido2_domain"):
+            self.fido2_domain = configurationAttributes.get("fido2_domain").getValue2()
+
+        self.metaDataLoaderLock = ReentrantLock()
+        self.metaDataConfiguration = None
+
+        print "Fido2. Initialized successfully"
+        return True
+
+    def destroy(self, configurationAttributes):
+        print "Fido2. Destroy"
+        print "Fido2. Destroyed successfully"
+        return True
+
+    def getApiVersion(self):
+        return 11
+
+    def isValidAuthenticationMethod(self, usageType, configurationAttributes):
+        return True
+
+    def getAlternativeAuthenticationMethod(self, usageType, configurationAttributes):
+        return None
+
+    def authenticate(self, configurationAttributes, requestParameters, step):
+        authenticationService = CdiUtil.bean(AuthenticationService)
+
+        identity = CdiUtil.bean(Identity)
+        credentials = identity.getCredentials()
+
+        user_name = credentials.getUsername()
+
+        if step == 1:
+            print "Fido2. Authenticate for step 1"
+            identity.setWorkingParameter("platformAuthenticatorAvailable",ServerUtil.getFirstValue(requestParameters, "loginForm:platformAuthenticator"))
+
+            user_password = credentials.getPassword()
+            logged_in = False
+            if StringHelper.isNotEmptyString(user_name) and StringHelper.isNotEmptyString(user_password):
+                userService = CdiUtil.bean(UserService)
+                logged_in = authenticationService.authenticate(user_name, user_password)
+
+            if not logged_in:
+                return False
+
+            return True
+        elif step == 2:
+            print "Fido2. Authenticate for step 2"
+
+            token_response = ServerUtil.getFirstValue(requestParameters, "tokenResponse")
+            if token_response == None:
+                print "Fido2. Authenticate for step 2. tokenResponse is empty"
+                return False
+
+            auth_method = ServerUtil.getFirstValue(requestParameters, "authMethod")
+            if auth_method == None:
+                print "Fido2. Authenticate for step 2. authMethod is empty"
+                return False
+
+            authenticationService = CdiUtil.bean(AuthenticationService)
+            user = authenticationService.getAuthenticatedUser()
+            if user == None:
+                print "Fido2. Prepare for step 2. Failed to determine user name"
+                return False
+
+            if auth_method == 'authenticate':
+                print "Fido2. Prepare for step 2. Call Fido2 in order to finish authentication flow"
+                assertionService = Fido2ClientFactory.instance().createAssertionService(self.metaDataConfiguration)
+                assertionStatus = assertionService.verify(token_response)
+                authenticationStatusEntity = assertionStatus.readEntity(java.lang.String)
+
+                if assertionStatus.getStatus() != Response.Status.OK.getStatusCode():
+                    print "Fido2. Authenticate for step 2. Get invalid authentication status from Fido2 server"
+                    return False
+
+                return True
+            elif auth_method == 'enroll':
+                print "Fido2. Prepare for step 2. Call Fido2 in order to finish registration flow"
+                attestationService = Fido2ClientFactory.instance().createAttestationService(self.metaDataConfiguration)
+                attestationStatus = attestationService.verify(token_response)
+
+                if attestationStatus.getStatus() != Response.Status.OK.getStatusCode():
+                    print "Fido2. Authenticate for step 2. Get invalid registration status from Fido2 server"
+                    return False
+
+                return True
+            else:
+                print "Fido2. Prepare for step 2. Authentication method is invalid"
+                return False
+
+            return False
+        else: 
+            return False
+
+    def prepareForStep(self, configurationAttributes, requestParameters, step):
+        identity = CdiUtil.bean(Identity)
+
+        if step == 1:
+            return True
+        elif step == 2:
+            print "Fido2. Prepare for step 2"
+
+            session = CdiUtil.bean(SessionIdService).getSessionId()
+            if session == None:
+                print "Fido2. Prepare for step 2. Failed to determine session_id"
+                return False
+
+            authenticationService = CdiUtil.bean(AuthenticationService)
+            user = authenticationService.getAuthenticatedUser()
+            if user == None:
+                print "Fido2. Prepare for step 2. Failed to determine user name"
+                return False
+
+            userName = user.getUserId()
+
+            metaDataConfiguration = self.getMetaDataConfiguration()
+
+            assertionResponse = None
+            attestationResponse = None
+
+            facesContext = CdiUtil.bean(FacesContext)
+            domain = facesContext.getExternalContext().getRequest().getServerName()
+            
+            
+            # Check if user have registered devices
+            count = CdiUtil.bean(UserService).countFido2RegisteredDevices(userName, domain)
+
+            if count > 0:
+                print "Fido2. Prepare for step 2. Call Fido2 endpoint in order to start assertion flow"
+
+                try:
+                    assertionService = Fido2ClientFactory.instance().createAssertionService(metaDataConfiguration)
+                    assertionRequest = json.dumps({'username': userName}, separators=(',', ':'))
+                    assertionResponse = assertionService.authenticate(assertionRequest).readEntity(java.lang.String)
+                    # if device has only platform authenticator and assertion is expecting a security key
+                    if "internal" in assertionResponse:
+                        identity.setWorkingParameter("platformAuthenticatorAvailable", "true")
+                    else:
+                        identity.setWorkingParameter("platformAuthenticatorAvailable", "false")
+
+                except ClientErrorException, ex:
+                    print "Fido2. Prepare for step 2. Failed to start assertion flow. Exception:", sys.exc_info()[1]
+                    return False
+            else:
+                print "Fido2. Prepare for step 2. Call Fido2 endpoint in order to start attestation flow"
+
+                try:
+                    attestationService = Fido2ClientFactory.instance().createAttestationService(metaDataConfiguration)
+                    platformAuthenticatorAvailable = identity.getWorkingParameter("platformAuthenticatorAvailable") == "true"
+                    basic_json = {'username': userName, 'displayName': userName, 'attestation' : 'direct'}
+                    print "% s" % identity.getWorkingParameter("platformAuthenticatorAvailable")
+                    if platformAuthenticatorAvailable is True:
+                       # the reason behind userVerification = discouraged  --> https://chromium.googlesource.com/chromium/src/+/master/content/browser/webauth/uv_preferred.md
+                       platform_json = {"authenticatorSelection":{"authenticatorAttachment":"platform","requireResidentKey" : "false", "userVerification" : "discouraged" } }
+                       basic_json.update(platform_json)
+
+                       # also need to add this --> excludeCredentials : [//registered ids]
+                    print " basic_json %s" % basic_json
+
+                    attestationRequest = json.dumps(basic_json)
+                    #, separators=(',', ':'))
+
+                    attestationResponse = attestationService.register(attestationRequest).readEntity(java.lang.String)
+                except ClientErrorException, ex:
+                    print "Fido2. Prepare for step 2. Failed to start attestation flow. Exception:", sys.exc_info()[1]
+                    return False
+
+            identity.setWorkingParameter("fido2_assertion_request", ServerUtil.asJson(assertionResponse))
+            identity.setWorkingParameter("fido2_attestation_request", ServerUtil.asJson(attestationResponse))
+            print "Fido2. Prepare for step 2. Successfully start flow with next requests.\nfido2_assertion_request: '%s'\nfido2_attestation_request: '%s'" % ( assertionResponse, attestationResponse )
+
+            return True
+        elif step == 3:
+            print "Fido2. Prepare for step 3"
+
+            return True
+        else:
+            return False
+
+    def getExtraParametersForStep(self, configurationAttributes, step):
+        return Arrays.asList( "platformAuthenticatorAvailable")
+
+    def getCountAuthenticationSteps(self, configurationAttributes):
+        return 2
+
+    def getNextStep(self, configurationAttributes, requestParameters, step):
+        return -1
+
+    def getPageForStep(self, configurationAttributes, step):
+        if step == 1:
+            return "/auth/fido2/step1.xhtml"
+        elif step == 2:
+            identity = CdiUtil.bean(Identity)
+            if identity.getWorkingParameter("platformAuthenticatorAvailable") == "true":
+                return "/auth/fido2/platform.xhtml"
+            else:
+                return "/auth/fido2/secKeys.xhtml"
+        return ""
+
+    def logout(self, configurationAttributes, requestParameters):
+        return True
+
+    def getAuthenticationMethodClaims(self, requestParameters):
+        return None
+
+    def getLogoutExternalUrl(self, configurationAttributes, requestParameters):
+        print "Get external logout URL call"
+        return None
+
+    def getMetaDataConfiguration(self):
+        if self.metaDataConfiguration != None:
+            return self.metaDataConfiguration
+
+        self.metaDataLoaderLock.lock()
+        # Make sure that another thread not loaded configuration already
+        if self.metaDataConfiguration != None:
+            return self.metaDataConfiguration
+
+        try:
+            print "Fido2. Initialization. Downloading Fido2 metadata"
+            self.fido2_server_metadata_uri = self.fido2_server_uri + "/.well-known/fido2-configuration"
+
+            metaDataConfigurationService = Fido2ClientFactory.instance().createMetaDataConfigurationService(self.fido2_server_metadata_uri)
+
+            max_attempts = 10
+            for attempt in range(1, max_attempts + 1):
+                try:
+                    self.metaDataConfiguration = metaDataConfigurationService.getMetadataConfiguration().readEntity(java.lang.String)
+                    return self.metaDataConfiguration
+                except ClientErrorException, ex:
+                    # Detect if last try or we still get Service Unavailable HTTP error
+                    if (attempt == max_attempts) or (ex.getResponse().getResponseStatus() != Response.Status.SERVICE_UNAVAILABLE):
+                        raise ex
+
+                    java.lang.Thread.sleep(3000)
+                    print "Attempting to load metadata: %d" % attempt
+        finally:
+            self.metaDataLoaderLock.unlock()
diff --git a/oxAuth/Server/integrations/forgot_password/README.md b/oxAuth/Server/integrations/forgot_password/README.md
new file mode 100644
index 00000000..82fef8be
--- /dev/null
+++ b/oxAuth/Server/integrations/forgot_password/README.md
@@ -0,0 +1,26 @@
+# Forgot Password 2FA Token Interception Script
+
+## Description
+
+This script is a 2 in 1. It can be used to enable user to reset its password **or** to enable 2FA sending a token to user's email :
+
+How they work:
+
+### Forgot Password
+* Step 1: User enters e-mail and if e-mail exists, user receive a token via email
+* Step 2: User enters token received by e-mail
+* Step 3: User enters new password
+
+### Emai 2FA
+* Step 1: User enters username and password
+* Step 2: User enters token received by e-mail
+
+## Instalation
+
+* Make sure you have your **SMTP settings correctly Gluu Server** - Navigate to Configuration > Organization Configuration > SMTP Server Configuration
+* Set up the script function (Forgot Password or Email 2FA) - Navigate to Configuration > Manage Custom Scripts, choose the script and set a **custom attribute** with key `SCRIPT_FUNCTION` and value `forgot_password` for Forgot Password mode, or `email_2FA` for Email 2FA mode.
+* Enable the custom script. 
+
+Please notice the xhtml files for this script are currently located at `oxAuth/Server/src/main/webapp/auth/forgot_password/`
+
+Note: If you want to use both scripts, you'll need to copy it and change the **custom attribute** from the copied script.
diff --git a/oxAuth/Server/integrations/forgot_password/forgot_password.py b/oxAuth/Server/integrations/forgot_password/forgot_password.py
new file mode 100644
index 00000000..4ade0ec4
--- /dev/null
+++ b/oxAuth/Server/integrations/forgot_password/forgot_password.py
@@ -0,0 +1,451 @@
+# coding: utf-8
+# oxAuth is available under the MIT License (2008). See http://opensource.org/licenses/MIT for full text.
+# Copyright (c) 2020, Gluu
+#
+# Author: Christian Eland
+
+
+from org.xdi.oxauth.service import AuthenticationService
+from org.gluu.oxauth.service import UserService
+from org.gluu.oxauth.auth import Authenticator
+from org.xdi.oxauth.security import Identity
+from org.xdi.model.custom.script.type.auth import PersonAuthenticationType
+from org.xdi.service.cdi.util import CdiUtil
+from org.xdi.util import StringHelper
+from org.xdi.oxauth.util import ServerUtil
+from org.gluu.oxauth.service.common import ConfigurationService, EncryptionService
+from org.gluu.jsf2.message import FacesMessages
+from javax.faces.application import FacesMessage
+from org.gluu.persist.exception import AuthenticationException
+
+#dealing with smtp server
+import smtplib
+
+#dealing with emails
+from email.mime.multipart import MIMEMultipart
+from email.mime.text import MIMEText
+
+# This one is from core Java
+from java.util import Arrays
+
+# to generate string token
+import random
+import string
+
+# regex
+import re
+
+import urllib
+
+import java
+
+class EmailValidator():
+    '''
+    Class to check e-mail format
+    '''
+    regex = '^\w+([\.-]?\w+)*@\w+([\.-]?\w+)*(\.\w{2,3})+$'
+
+    def check(self, email):
+        '''
+        Check if email format is valid
+        returns: boolean
+        '''
+
+        if(re.search(self.regex,email)):
+            print "Forgot Password - %s is a valid email format" % email
+            return True
+        else:
+            print "Forgot Password - %s is an invalid email format" % email
+            return False
+
+class Token:
+    #class that deals with string token
+
+    def generateToken(self):
+        ''' method to generate token string
+        returns: String
+        '''
+        letters = string.ascii_lowercase
+
+        #token lenght
+        lenght = 20
+
+        #generate token
+        token = ''.join(random.choice(letters) for i in range(lenght))
+        print "Forgot Password - Generating token"
+
+        return token
+
+
+class EmailSender():
+    #class that sends e-mail through smtp
+
+    def getSmtpConfig(self):
+        '''
+        get SMTP config from Gluu Server
+        return dict
+        '''
+       
+        smtpconfig = CdiUtil.bean(ConfigurationService).getConfiguration().getSmtpConfiguration()
+        
+        if smtpconfig is None:
+            print "Forgot Password - SMTP CONFIG DOESN'T EXIST - Please configure"
+
+        else:
+            print "Forgot Password - SMTP CONFIG FOUND"
+            encryptionService = CdiUtil.bean(EncryptionService)
+            smtp_config = {
+                'host' : smtpconfig.getHost(),
+                'port' : smtpconfig.getPort(),
+                'user' : smtpconfig.getUserName(),
+                'from' : smtpconfig.getFromEmailAddress(),
+                'pwd_decrypted' : encryptionService.decrypt(smtpconfig.getPassword()),
+                'req_ssl' : smtpconfig.getConnectProtection(),
+                'requires_authentication' : smtpconfig.isRequiresAuthentication(),
+                'server_trust' : smtpconfig.isServerTrust()
+            }
+
+        return smtp_config
+
+            
+
+    def sendEmail(self,useremail,token):
+        '''
+        send token by e-mail to useremail
+        '''
+
+        # server connection 
+        smtpconfig = self.getSmtpConfig()
+        host = str(smtpconfig.get('host'))
+        port = smtpconfig.get('port')
+        user = str(smtpconfig.get('user'))
+        user_pass = str(smtpconfig.get('pwd_decrypted'))
+        sender = str(smtpconfig.get('from'))
+        receiver = str(useremail)
+        
+        try:
+            s = smtplib.SMTP(host, port)
+            
+
+            if smtpconfig['requires_authentication']:
+                
+                if smtpconfig['req_ssl'] is not None:
+                    s.starttls()
+            
+                s.login(user, user_pass)
+
+        
+            #message setup
+            msg = MIMEMultipart() #create message
+            
+            message = "Here is your token: %s" % token
+
+            msg['From'] = sender
+            msg['To'] = receiver
+            msg['Subject'] = "Password Reset Request" #subject
+
+            #attach message body
+            msg.attach(MIMEText(message, 'plain'))
+
+            #send message via smtp server
+            # send_message method is for python3 only s.send_message(msg)
+
+            #send email (python2)
+            s.sendmail(sender,receiver,msg.as_string())
+            
+            #after sent, delete
+            del msg
+
+            #terminating session
+            s.quit()
+
+        except smtplib.SMTPAuthenticationError as err:
+            print "Forgot Password - SMTPAuthenticationError - %s - %s" % (user,user_pass)
+            print err
+
+        except smtplib.SMTPSenderRefused as err:
+            print "Forgot Password - SMTPSenderRefused - " + err
+        except smtplib.SMTPRecipientsRefused as err:
+            print "Forgot Password - SMTPRecipientsRefused - " + err
+        except smtplib.SMTPDataError as err:
+            print "Forgot Password - SMTPDataError - " + err
+        except smtplib.SMTPHeloError as err:
+            print "Forgot Password - SMTPHeloError - " + err
+        except:
+            print "Forgot Password - Not Found - Failed to send  your message. Error not found"
+
+
+class PersonAuthentication(PersonAuthenticationType):
+
+
+    def __init__(self, currentTimeMillis):
+        self.currentTimeMillis = currentTimeMillis
+
+    def init(self, customScript, configurationAttributes):
+
+        print "Forgot Password - Initialized successfully"
+        return True   
+
+    def destroy(self, configurationAttributes):
+        print "Forgot Password - Destroyed successfully"
+        return True
+
+    def getApiVersion(self):
+        # I'm not sure why is 11 and not 2
+        return 11
+
+    def getAuthenticationMethodClaims(self, requestParameters):
+        return None
+
+    def isValidAuthenticationMethod(self, usageType, configurationAttributes):
+        return True
+
+
+    def getAlternativeAuthenticationMethod(self, usageType, configurationAttributes):
+        return None
+
+    def authenticate(self, configurationAttributes, requestParameters, step):
+        '''
+        Authenticates user
+        Step 1 will be defined according to SCRIPT_FUNCTION custom attribute
+        returns: boolean
+        '''
+
+        #gets custom attribute
+        sf = configurationAttributes.get("SCRIPT_FUNCTION").getValue2()
+
+        print "Forgot Password - %s - Authenticate for step %s" % (sf, step)
+
+        identity = CdiUtil.bean(Identity)
+        credentials = identity.getCredentials()
+        user_name = credentials.getUsername()
+        user_password = credentials.getPassword()
+
+
+        if step == 1:
+
+            if sf == "forgot_password":
+
+                
+                authenticationService = CdiUtil.bean(AuthenticationService)
+
+                logged_in = authenticationService.authenticate(user_name, user_password)
+
+                
+                if not logged_in:
+
+                    
+                    email = ServerUtil.getFirstValue(requestParameters, "ForgotPasswordForm:useremail")
+                    validator = EmailValidator()
+                    if not validator.check(email):
+                        print "Forgot Password - Email format invalid"
+                        return False
+
+                    else:
+                        print "Forgot Password -Email format valid"
+     
+                        print "Forgot Password - Entered email is %s" % email
+                        identity.setWorkingParameter("useremail",email)
+                        
+                        # Just trying to get the user by the email
+                        user_service = CdiUtil.bean(UserService)
+                        user2 = user_service.getUserByAttribute("mail", email)
+
+                        if user2 is not None:
+                        
+                            print user2
+                            print "Forgot Password - User with e-mail %s found." % user2.getAttribute("mail")
+                        
+                            # send email
+                            new_token = Token()
+                            token = new_token.generateToken()                
+                            sender = EmailSender()
+                            print "Email: " + email
+                            print "Token: " + token
+                            sender.sendEmail(email,token)
+
+                        
+                            identity.setWorkingParameter("token", token)
+                            print identity.getWorkingParameter("token")
+                        
+     
+                            
+                        else:
+                            print "Forgot Password - User with e-mail %s not found" % email
+
+                        return True
+
+
+                else:
+                    # if user is already authenticated, returns true.
+
+                    user = authenticationService.getAuthenticatedUser()
+                    print "Forgot Password - User %s is authenticated" % user.getUserId()
+
+                    return True
+
+            if sf == "email_2FA":
+
+                try:
+                    # Just trying to get the user by the uid
+                    authenticationService = CdiUtil.bean(AuthenticationService)
+                    logged_in = authenticationService.authenticate(user_name, user_password)
+                    
+                    print 'email_2FA user_name: ' + str(user_name)
+                    
+                    user_service = CdiUtil.bean(UserService)
+                    user2 = user_service.getUserByAttribute("uid", user_name)
+
+                    if user2 is not None:
+                        print "user:"
+                        print user2
+                        print "Forgot Password - User with e-mail %s found." % user2.getAttribute("mail")
+                        email = user2.getAttribute("mail")
+                        uid = user2.getAttribute("uid")
+
+                        # send token
+                        # send email
+                        new_token = Token()
+                        token = new_token.generateToken()                
+                        sender = EmailSender()
+                        print "Email: " + email
+                        print "Token: " + token
+                        sender.sendEmail(email,token)
+
+                        identity.setWorkingParameter("token", token)
+
+                        return True
+
+                except AuthenticationException as err:
+                    print err
+                    return False
+
+                
+   
+
+        if step == 2:
+            # step 2 user enters token
+            credentials = identity.getCredentials()
+            user_name = credentials.getUsername()
+            user_password = credentials.getPassword()
+            
+            authenticationService = CdiUtil.bean(AuthenticationService)
+            logged_in = authenticationService.authenticate(user_name, user_password)
+
+            # retrieves token typed by user
+            input_token = ServerUtil.getFirstValue(requestParameters, "ResetTokenForm:inputToken")
+
+            print "Forgot Password - Token inputed by user is %s" % input_token
+
+            token = identity.getWorkingParameter("token")
+            print "Forgot Password - Retrieved token"
+            email = identity.getWorkingParameter("useremail")
+            print "Forgot Password - Retrieved email" 
+
+            # compares token sent and token entered by user
+            if input_token == token:
+                print "Forgot Password - token entered correctly"
+                identity.setWorkingParameter("token_valid", True)
+                
+                return True
+
+            else:
+                print "Forgot Password - wrong token"
+                return False
+
+        
+        if step == 3:
+            # step 3 enters new password (only runs if custom attibute is forgot_password
+
+            user_service = CdiUtil.bean(UserService)
+
+            email = identity.getWorkingParameter("useremail")
+            user2 = user_service.getUserByAttribute("mail", email)
+
+
+            user_name = user2.getUserId()
+            
+            new_password = ServerUtil.getFirstValue(requestParameters, "UpdatePasswordForm:newPassword")
+            
+            print "Forgot Password - New password submited"
+        
+            # update user info with new password
+            user2.setAttribute("userPassword",new_password)
+            print "Forgot Password - user uid is %s" % user_name
+            print "Forgot Password - Updating user with new password..."
+            user_service.updateUser(user2)
+            print "Forgot Password - User updated with new password"
+            # authenticates and login user
+            print "Forgot Password - Loading authentication service..."
+            authenticationService2 = CdiUtil.bean(AuthenticationService)
+
+            print "Forgot Password - Trying to authenticate user..."
+            login = authenticationService2.authenticate(user_name, new_password)
+            
+            return True
+
+    def prepareForStep(self, configurationAttributes, requestParameters, step):
+        
+        print "Forgot Password - Preparing for step %s" % step
+        
+        return True
+
+
+    # Return value is a java.util.List<String> 
+    def getExtraParametersForStep(self, configurationAttributes, step):
+        return Arrays.asList("token","useremail","token_valid")
+
+
+    # This method determines how many steps the authentication flow may have
+    # It doesn't have to be a constant value
+    def getCountAuthenticationSteps(self, configurationAttributes):
+        
+        sf = configurationAttributes.get("SCRIPT_FUNCTION").getValue2()
+        
+
+        # if option is forgot_token
+        if sf == "forgot_password":
+            print "Entered sf == forgot_password"
+            return 3
+            
+        # if ption is email_2FA
+        if sf == "email_2FA":
+            print "Entered if sf=email_2FA"
+            return 2
+
+        else:
+            print "Forgot Password - Custom Script Custom Property Incorrect, please check"
+
+
+    # The xhtml page to render upon each step of the flow
+    # returns a string relative to oxAuth webapp root
+    def getPageForStep(self, configurationAttributes, step):
+        
+        sf = configurationAttributes.get("SCRIPT_FUNCTION").getValue2()
+
+        if step == 1:
+
+            if sf == "forgot_password":
+                return "/auth/forgot_password/forgot.xhtml"
+
+            if sf == 'email_2FA':
+                return ""
+
+        if step == 2:
+            return "/auth/forgot_password/entertoken.xhtml"
+
+        if step == 3:
+            if sf == "forgot_password":
+                return "/auth/forgot_password/newpassword.xhtml"
+
+    
+    def getNextStep(self, configurationAttributes, requestParameters, step):
+        # Method used on version 2 (11?)
+        return -1
+    
+    def getLogoutExternalUrl(self, configurationAttributes, requestParameters):
+        print "Get external logout URL call"
+        return None
+        
+    def logout(self, configurationAttributes, requestParameters):
+        return True
diff --git a/oxAuth/Server/integrations/fortinet/FortinetExternalAuthenticator.py b/oxAuth/Server/integrations/fortinet/FortinetExternalAuthenticator.py
new file mode 100644
index 00000000..44f95a74
--- /dev/null
+++ b/oxAuth/Server/integrations/fortinet/FortinetExternalAuthenticator.py
@@ -0,0 +1,127 @@
+# oxAuth is available under the MIT License (2008). See http://opensource.org/licenses/MIT for full text.
+# Copyright (c) 2016, Gluu
+#
+# Author: Madhumita Subramaniam
+#
+
+from org.gluu.service.cdi.util import CdiUtil
+from org.gluu.oxauth.security import Identity
+from org.gluu.model.custom.script.type.auth import PersonAuthenticationType
+from org.gluu.oxauth.service import AuthenticationService
+from org.gluu.util import StringHelper
+
+from net.sourceforge.jradiusclient import RadiusClient
+from net.sourceforge.jradiusclient import RadiusAttribute
+from net.sourceforge.jradiusclient import RadiusAttributeValues
+from net.sourceforge.jradiusclient import RadiusPacket
+
+import java
+
+class PersonAuthentication(PersonAuthenticationType):
+    def __init__(self, currentTimeMillis):
+        self.currentTimeMillis = currentTimeMillis
+
+    def init(self, customScript,  configurationAttributes):
+        print "Radius. Initialization"
+        if not configurationAttributes.containsKey("RADIUS_SERVER_IP"):
+            print "Fortinet. Initialization. Property RADIUS_SERVER_IP is mandatory"
+            return False
+        self.RADIUS_SERVER_IP = configurationAttributes.get("RADIUS_SERVER_IP").getValue2()
+        
+        if not configurationAttributes.containsKey("RADIUS_SERVER_SECRET"):
+            print "Fortinet. Initialization. Property RADIUS_SERVER_SECRET is mandatory"
+            return False
+        self.RADIUS_SERVER_SECRET = configurationAttributes.get("RADIUS_SERVER_SECRET").getValue2()
+       
+        if not configurationAttributes.containsKey("RADIUS_SERVER_AUTH_PORT"):
+            print "Fortinet. Initialization. Property RADIUS_SERVER_AUTH_PORT is mandatory"
+            return False
+        self.RADIUS_SERVER_AUTH_PORT = configurationAttributes.get("RADIUS_SERVER_AUTH_PORT").getValue2()
+       
+        if not configurationAttributes.containsKey("RADIUS_SERVER_ACCT_PORT"):
+            print "Fortinet. Initialization. Property RADIUS_SERVER_ACCT_PORT is mandatory"
+            return False
+        self.RADIUS_SERVER_ACCT_PORT = configurationAttributes.get("RADIUS_SERVER_ACCT_PORT").getValue2()
+       
+        print "Radius. Initialized successfully"
+        return True   
+
+    def destroy(self, configurationAttributes):
+        print "Radius. Destroy"
+        print "Radius. Destroyed successfully"
+        return True
+        
+    def getAuthenticationMethodClaims(self, requestParameters):
+        return None
+        
+    def getApiVersion(self):
+        return 11
+
+    def isValidAuthenticationMethod(self, usageType, configurationAttributes):
+        return True
+
+    def getAlternativeAuthenticationMethod(self, usageType, configurationAttributes):
+        return None
+
+    def authenticate(self, configurationAttributes, requestParameters, step):
+        authenticationService = CdiUtil.bean(AuthenticationService)
+
+        if (step == 1):
+            print "Radius. Authenticate for step 1"
+
+            identity = CdiUtil.bean(Identity)
+            credentials = identity.getCredentials()
+
+            user_name = credentials.getUsername()
+            user_password = credentials.getPassword()
+
+            if StringHelper.isNotEmptyString(user_name ) and StringHelper.isNotEmptyString(user_password ):
+            	user_exists_in_gluu = authenticationService.authenticate(user_name )
+            	if user_exists_in_gluu :
+            		client =  RadiusClient(self.RADIUS_SERVER_IP,int (self.RADIUS_SERVER_AUTH_PORT), int(self.RADIUS_SERVER_ACCT_PORT), self.RADIUS_SERVER_SECRET)
+               		accessRequest = RadiusPacket(RadiusPacket.ACCESS_REQUEST)
+            		userNameAttribute = RadiusAttribute(RadiusAttributeValues.USER_NAME,user_name )
+	    			userPasswordAttribute =  RadiusAttribute(RadiusAttributeValues.USER_PASSWORD,user_password )
+            		accessRequest.setAttribute(userNameAttribute)
+            		accessRequest.setAttribute(userPasswordAttribute)
+	    			accessResponse = client.authenticate(accessRequest)
+	    			print "Packet type - %s " % accessResponse.getPacketType()
+	    			if accessResponse.getPacketType() == RadiusPacket.ACCESS_ACCEPT:
+		           		return True
+		        #elif accessResponse.getPacketType() == RadiusPacket.ACCESS_CHALLENGE:
+		        #    	return False
+	    		
+        
+		return False
+
+    def prepareForStep(self, configurationAttributes, requestParameters, step):
+        if (step == 1):
+            print "Radius. Prepare for Step 1"
+            return True
+        else:
+            return False
+
+    def getExtraParametersForStep(self, configurationAttributes, step):
+        return None
+
+    def getCountAuthenticationSteps(self, configurationAttributes):
+        return 1
+
+    def getPageForStep(self, configurationAttributes, step):
+        return ""
+
+    def getNextStep(self, configurationAttributes, requestParameters, step):
+        return -1
+
+    def getLogoutExternalUrl(self, configurationAttributes, requestParameters):
+        print "Get external logout URL call"
+        return None
+
+    def logout(self, configurationAttributes, requestParameters):
+        return True
+
+ 
+    def printRadiusPacket(self, radiusPacket):
+ 		attributes = radiusPacket.getAttributes()
+		for attribute in attributes:
+            print("%s : %s" %attribute.getType() % attribute.getValue)
\ No newline at end of file
diff --git a/oxAuth/Server/integrations/fortinet/README.txt b/oxAuth/Server/integrations/fortinet/README.txt
new file mode 100644
index 00000000..35e713b6
--- /dev/null
+++ b/oxAuth/Server/integrations/fortinet/README.txt
@@ -0,0 +1,89 @@
+# Fortinet - RADIUS server Authentication
+
+## Overview 
+This document explains how to configure the Gluu Server so that when a user logs in, an authentication request is made to Fortinet's remote RADIUS (Remote Authentication Dial-In User Service) server which then validates the user name and password. 
+
+## Prerequisites 
+
+- A Gluu Server (installation instructions [here](../installation-guide/index.md)) which will play the role of RADIUS client    
+- The [Fortinet script](https://github.com/GluuFederation/oxAuth/blob/master/Server/integrations/fortinet/FortinetExternalAuthenticator.py) (included in the default Gluu Server distribution);   
+- A Fortinet server which is the RADIUS server.     
+- The jradius-client [jar library](https://sourceforge.net/projects/jradius-client/files/) added to oxAuth
+
+    
+
+## Fortinet Configuration
+
+In `Authentication` -> `Radius Service` -> `Clients`, create a new client (which is Gluu server). Enter the "secret" which will be used by the interception script to exchange RADIUS packets.
+
+## Gluu Server Configuration
+### Add JRadius library to oxAuth
+
+- Copy the jradius-client jar file to the following oxAuth folder inside the Gluu Server chroot: `/opt/gluu/jetty/oxauth/custom/libs` 
+
+- Edit `/opt/gluu/jetty/oxauth/webapps/oxauth.xml` and add the following line:
+
+    ```
+    <Set name="extraClasspath">/opt/gluu/jetty/oxauth/custom/libs/jradius-client.jar</Set>
+    ```
+    
+- [Restart](../operation/services.md#restart) the `oxauth` service     
+    
+
+
+### Enable Interception Script
+
+Follow the steps below to enable Fortinet's RADIUS authentication:
+
+1. Navigate to `Configuration` > `Person Authentication Scripts`   
+
+1. Find the `fortinet` script.
+
+    ![fortinet](../img/admin-guide/multi-factor/fortinet-custom-script.png)
+
+1. Populate the properties table with the details from your Fortinet account:    
+
+
+|	Property	|	Description		| Input value     |
+|-----------------------|-------------------------------|---------------|
+|RADIUS_SERVER_IP		|IP address of Fortinet's RADIUS Server		| 10.10.10.1 |
+|RADIUS_SERVER_SECRET		|Configured when the RADIUS client is registered. | spam |
+|RADIUS_SERVER_AUTH_PORT            |Authentication port | 1812 |
+|RADIUS_SERVER_ACCT_PORT            |Accounting port | 1813 |
+
+1. Enable the script by checking the box 
+
+1. Scroll to the bottom of the page and click `Update`
+
+Now authenticating a user against Fortinet's RADIUS server is possible from your Gluu Server. This means that, using OpenID Connect `acr_values`, applications can now request Fortinet authentication for users. 
+
+!!! Note 
+    To make sure this method has been enabled successfully, you can check your Gluu Server's OpenID Connect configuration by navigating to the following URL: `https://<hostname>/.well-known/openid-configuration`. Find `"acr_values_supported":` and you should see `"fortinet"`. 
+
+### Make Fortinet's user-password authentication the Default mechanism.
+If fortinet should be the default authentication mechanism, follow these instructions: 
+
+1. Navigate to `Configuration` > `Manage Authentication`. 
+
+1. Select the `Default Authentication Method` tab. 
+
+1. In the Default Authentication Method window you will see two options: `Default acr` and `oxTrust acr`. 
+
+![fortinet](../img/admin-guide/multi-factor/fortinet.png)
+
+ - `oxTrust acr` sets the authentication mechanism for accessing the oxTrust dashboard GUI (only managers should have acccess to oxTrust).    
+
+ - `Default acr` sets the default authentication mechanism for accessing all applications that leverage your Gluu Server for authentication (unless otherwise specified).    
+
+If Fortinet should be the default authentication mechanism for all access, change both fields to fortinet.  
+ 
+## Troubleshooting    
+If problems are encountered, take a look at the logs, specifically `/opt/gluu/jetty/oxauth/logs/oxauth_script.log`. Inspect all messages related to Fortinet. For instance, the following messages show an example of correct script initialization:
+
+```
+Fortinet. Initialization
+Fortinet. Initialized successfully
+```
+
+Also make sure you are using the latest version of the script that can be found [here](https://github.com/GluuFederation/oxAuth/blob/master/Server/integrations/fortinet/FortinetExternalAuthenticator.py).
+
diff --git a/oxAuth/Server/integrations/gplus/GooglePlusExternalAuthenticator.py b/oxAuth/Server/integrations/gplus/GooglePlusExternalAuthenticator.py
new file mode 100644
index 00000000..52a17ecd
--- /dev/null
+++ b/oxAuth/Server/integrations/gplus/GooglePlusExternalAuthenticator.py
@@ -0,0 +1,557 @@
+# oxAuth is available under the MIT License (2008). See http://opensource.org/licenses/MIT for full text.
+# Copyright (c) 2016, Gluu
+#
+# Author: Yuriy Movchan
+#
+
+import java
+import json
+from java.util import Arrays, HashMap, IdentityHashMap
+from org.gluu.model.custom.script.type.auth import PersonAuthenticationType
+from org.gluu.oxauth.client import TokenClient, TokenRequest, UserInfoClient
+from org.gluu.oxauth.model.common import GrantType, AuthenticationMethod
+from org.gluu.oxauth.model.common import User
+from org.gluu.oxauth.model.jwt import Jwt, JwtClaimName
+from org.gluu.oxauth.security import Identity
+from org.gluu.oxauth.service import UserService, ClientService, AuthenticationService
+from org.gluu.service.cdi.util import CdiUtil
+from org.gluu.util import StringHelper, ArrayHelper
+
+class PersonAuthentication(PersonAuthenticationType):
+    def __init__(self, currentTimeMillis):
+        self.currentTimeMillis = currentTimeMillis
+
+    def init(self, customScript, configurationAttributes):
+        print "Google+ Initialization"
+
+        if (not configurationAttributes.containsKey("gplus_client_secrets_file")):
+            print "Google+ Initialization. The property gplus_client_secrets_file is empty"
+            return False
+            
+        clientSecretsFile = configurationAttributes.get("gplus_client_secrets_file").getValue2()
+        self.clientSecrets = self.loadClientSecrets(clientSecretsFile)
+        if (self.clientSecrets == None):
+            print "Google+ Initialization. File with Google+ client secrets should be not empty"
+            return False
+
+        self.attributesMapping = None
+        if (configurationAttributes.containsKey("gplus_remote_attributes_list") and
+            configurationAttributes.containsKey("gplus_local_attributes_list")):
+
+            remoteAttributesList = configurationAttributes.get("gplus_remote_attributes_list").getValue2()
+            if (StringHelper.isEmpty(remoteAttributesList)):
+                print "Google+ Initialization. The property gplus_remote_attributes_list is empty"
+                return False    
+
+            localAttributesList = configurationAttributes.get("gplus_local_attributes_list").getValue2()
+            if (StringHelper.isEmpty(localAttributesList)):
+                print "Google+ Initialization. The property gplus_local_attributes_list is empty"
+                return False
+
+            self.attributesMapping = self.prepareAttributesMapping(remoteAttributesList, localAttributesList)
+            if (self.attributesMapping == None):
+                print "Google+ Initialization. The attributes mapping isn't valid"
+                return False
+
+        self.extensionModule = None
+        if (configurationAttributes.containsKey("extension_module")):
+            extensionModuleName = configurationAttributes.get("extension_module").getValue2()
+            try:
+                self.extensionModule = __import__(extensionModuleName)
+                extensionModuleInitResult = self.extensionModule.init(configurationAttributes)
+                if (not extensionModuleInitResult):
+                    return False
+            except ImportError, ex:
+                print "Google+ Initialization. Failed to load gplus_extension_module: '%s'" % extensionModuleName
+                print "Google+ Initialization. Unexpected error:", ex
+                return False
+
+        print "Google+ Initialized successfully"
+        return True   
+
+    def destroy(self, authConfiguration):
+        print "Google+ Destroy"
+        print "Google+ Destroyed successfully"
+
+    def getApiVersion(self):
+        return 11
+        
+    def getAuthenticationMethodClaims(self, requestParameters):
+        return None
+        
+    def isValidAuthenticationMethod(self, usageType, configurationAttributes):
+        return True
+
+    def getAlternativeAuthenticationMethod(self, usageType, configurationAttributes):
+        return None
+
+    def authenticate(self, configurationAttributes, requestParameters, step):
+        identity = CdiUtil.bean(Identity)
+        userService = CdiUtil.bean(UserService)
+        authenticationService = CdiUtil.bean(AuthenticationService)
+
+        mapUserDeployment = False
+        enrollUserDeployment = False
+        if (configurationAttributes.containsKey("gplus_deployment_type")):
+            deploymentType = StringHelper.toLowerCase(configurationAttributes.get("gplus_deployment_type").getValue2())
+            
+            if (StringHelper.equalsIgnoreCase(deploymentType, "map")):
+                mapUserDeployment = True
+            if (StringHelper.equalsIgnoreCase(deploymentType, "enroll")):
+                enrollUserDeployment = True
+
+        if (step == 1):
+            print "Google+ Authenticate for step 1"
+ 
+            gplusAuthCodeArray = requestParameters.get("gplus_auth_code")
+            gplusAuthCode = gplusAuthCodeArray[0]
+
+            # Check if user uses basic method to log in
+            useBasicAuth = False
+            if (StringHelper.isEmptyString(gplusAuthCode)):
+                useBasicAuth = True
+
+            # Use basic method to log in
+            if (useBasicAuth):
+                print "Google+ Authenticate for step 1. Basic authentication"
+        
+                identity.setWorkingParameter("gplus_count_login_steps", 1)
+        
+                credentials = identity.getCredentials()
+
+                userName = credentials.getUsername()
+                userPassword = credentials.getPassword()
+        
+                loggedIn = False
+                if (StringHelper.isNotEmptyString(userName) and StringHelper.isNotEmptyString(userPassword)):
+                    userService = CdiUtil.bean(UserService)
+                    loggedIn = authenticationService.authenticate(userName, userPassword)
+        
+                if (not loggedIn):
+                    return False
+        
+                return True
+
+            # Use Google+ method to log in
+            print "Google+ Authenticate for step 1. gplusAuthCode:", gplusAuthCode
+
+            currentClientSecrets = self.getCurrentClientSecrets(self.clientSecrets, configurationAttributes, requestParameters)
+            if (currentClientSecrets == None):
+                print "Google+ Authenticate for step 1. Client secrets configuration is invalid"
+                return False
+            
+            print "Google+ Authenticate for step 1. Attempting to gets tokens"
+            tokenResponse = self.getTokensByCode(self.clientSecrets, configurationAttributes, gplusAuthCode)
+            if ((tokenResponse == None) or (tokenResponse.getIdToken() == None) or (tokenResponse.getAccessToken() == None)):
+                print "Google+ Authenticate for step 1. Failed to get tokens"
+                return False
+            else:
+                print "Google+ Authenticate for step 1. Successfully gets tokens"
+
+            jwt = Jwt.parse(tokenResponse.getIdToken())
+            # TODO: Validate ID Token Signature  
+
+            gplusUserUid = jwt.getClaims().getClaimAsString(JwtClaimName.SUBJECT_IDENTIFIER)
+            print "Google+ Authenticate for step 1. Found Google user ID in the ID token: '%s'" % gplusUserUid
+            
+            if (mapUserDeployment):
+                # Use mapping to local IDP user
+                print "Google+ Authenticate for step 1. Attempting to find user by oxExternalUid: 'gplus:%s'" % gplusUserUid
+
+                # Check if there is user with specified gplusUserUid
+                foundUser = userService.getUserByAttribute("oxExternalUid", "gplus:" + gplusUserUid)
+
+                if (foundUser == None):
+                    print "Google+ Authenticate for step 1. Failed to find user"
+                    print "Google+ Authenticate for step 1. Setting count steps to 2"
+                    identity.setWorkingParameter("gplus_count_login_steps", 2)
+                    identity.setWorkingParameter("gplus_user_uid", gplusUserUid)
+                    return True
+
+                foundUserName = foundUser.getUserId()
+                print "Google+ Authenticate for step 1. foundUserName: '%s'" % foundUserName
+                
+                userAuthenticated = authenticationService.authenticate(foundUserName)
+                if (userAuthenticated == False):
+                    print "Google+ Authenticate for step 1. Failed to authenticate user"
+                    return False
+            
+                print "Google+ Authenticate for step 1. Setting count steps to 1"
+                identity.setWorkingParameter("gplus_count_login_steps", 1)
+
+                postLoginResult = self.extensionPostLogin(configurationAttributes, foundUser)
+                print "Google+ Authenticate for step 1. postLoginResult: '%s'" % postLoginResult
+
+                return postLoginResult
+            elif (enrollUserDeployment):
+                # Use auto enrollment to local IDP
+                print "Google+ Authenticate for step 1. Attempting to find user by oxExternalUid: 'gplus:%s'" % gplusUserUid
+ 
+                # Check if there is user with specified gplusUserUid
+                foundUser = userService.getUserByAttribute("oxExternalUid", "gplus:" + gplusUserUid)
+ 
+                if (foundUser == None):
+                    # Auto user enrollemnt
+                    print "Google+ Authenticate for step 1. There is no user in LDAP. Adding user to local LDAP"
+
+                    print "Google+ Authenticate for step 1. Attempting to gets user info"
+                    userInfoResponse = self.getUserInfo(currentClientSecrets, configurationAttributes, tokenResponse.getAccessToken())
+                    if ((userInfoResponse == None) or (userInfoResponse.getClaims().size() == 0)):
+                        print "Google+ Authenticate for step 1. Failed to get user info"
+                        return False
+                    else:
+                        print "Google+ Authenticate for step 1. Successfully gets user info"
+                    
+                    gplusResponseAttributes = userInfoResponse.getClaims()
+ 
+                    # Convert Google+ user claims to lover case
+                    gplusResponseNormalizedAttributes = HashMap()
+                    for gplusResponseAttributeEntry in gplusResponseAttributes.entrySet():
+                        gplusResponseNormalizedAttributes.put(
+                            StringHelper.toLowerCase(gplusResponseAttributeEntry.getKey()), gplusResponseAttributeEntry.getValue())
+ 
+                    currentAttributesMapping = self.getCurrentAttributesMapping(self.attributesMapping, configurationAttributes, requestParameters)
+                    print "Google+ Authenticate for step 1. Using next attributes mapping '%s'" % currentAttributesMapping
+ 
+                    newUser = User()
+                    for attributesMappingEntry in currentAttributesMapping.entrySet():
+                        remoteAttribute = attributesMappingEntry.getKey()
+                        localAttribute = attributesMappingEntry.getValue()
+ 
+                        localAttributeValue = gplusResponseNormalizedAttributes.get(remoteAttribute)
+                        if (localAttribute != None):
+                            newUser.setAttribute(localAttribute, localAttributeValue)
+ 
+                    if (newUser.getAttribute("sn") == None):
+                        newUser.setAttribute("sn", gplusUserUid)
+ 
+                    if (newUser.getAttribute("cn") == None):
+                        newUser.setAttribute("cn", gplusUserUid)
+
+                    # Add mail to oxTrustEmail so that the user's
+                    # email is available through the SCIM interface
+                    # too.
+                    if (newUser.getAttribute("oxTrustEmail") is None and
+                        newUser.getAttribute("mail") is not None):
+                        oxTrustEmail = {
+                            "value": newUser.getAttribute("mail"),
+                            "display": newUser.getAttribute("mail"),
+                            "primary": True,
+                            "operation": None,
+                            "reference": None,
+                            "type": "other"
+                        }
+                        newUser.setAttribute("oxTrustEmail", json.dumps(oxTrustEmail))
+
+                    newUser.setAttribute("oxExternalUid", "gplus:" + gplusUserUid)
+                    print "Google+ Authenticate for step 1. Attempting to add user '%s' with next attributes '%s'" % (gplusUserUid, newUser.getCustomAttributes())
+ 
+                    foundUser = userService.addUser(newUser, True)
+                    print "Google+ Authenticate for step 1. Added new user with UID: '%s'" % foundUser.getUserId()
+
+                foundUserName = foundUser.getUserId()
+                print "Google+ Authenticate for step 1. foundUserName: '%s'" % foundUserName
+
+                userAuthenticated = authenticationService.authenticate(foundUserName)
+                if (userAuthenticated == False):
+                    print "Google+ Authenticate for step 1. Failed to authenticate user"
+                    return False
+
+                print "Google+ Authenticate for step 1. Setting count steps to 1"
+                identity.setWorkingParameter("gplus_count_login_steps", 1)
+
+                print "Google+ Authenticate for step 1. Attempting to run extension postLogin"
+                postLoginResult = self.extensionPostLogin(configurationAttributes, foundUser)
+                print "Google+ Authenticate for step 1. postLoginResult: '%s'" % postLoginResult
+
+                return postLoginResult
+            else:
+                # Check if there is user with specified gplusUserUid
+                print "Google+ Authenticate for step 1. Attempting to find user by uid: '%s'" % gplusUserUid
+
+                foundUser = userService.getUser(gplusUserUid)
+                if (foundUser == None):
+                    print "Google+ Authenticate for step 1. Failed to find user"
+                    return False
+
+                foundUserName = foundUser.getUserId()
+                print "Google+ Authenticate for step 1. foundUserName: '%s'" % foundUserName
+
+                userAuthenticated = authenticationService.authenticate(foundUserName)
+                if (userAuthenticated == False):
+                    print "Google+ Authenticate for step 1. Failed to authenticate user"
+                    return False
+
+                print "Google+ Authenticate for step 1. Setting count steps to 1"
+                identity.setWorkingParameter("gplus_count_login_steps", 1)
+
+                postLoginResult = self.extensionPostLogin(configurationAttributes, foundUser)
+                print "Google+ Authenticate for step 1. postLoginResult: '%s'" % postLoginResult
+
+                return postLoginResult
+        elif (step == 2):
+            print "Google+ Authenticate for step 2"
+            
+            sessionAttributes = identity.getSessionId().getSessionAttributes()
+            if (sessionAttributes == None) or not sessionAttributes.containsKey("gplus_user_uid"):
+                print "Google+ Authenticate for step 2. gplus_user_uid is empty"
+                return False
+
+            gplusUserUid = sessionAttributes.get("gplus_user_uid")
+            passed_step1 = StringHelper.isNotEmptyString(gplusUserUid)
+            if (not passed_step1):
+                return False
+
+            identity = CdiUtil.bean(Identity)
+            credentials = identity.getCredentials()
+
+            userName = credentials.getUsername()
+            userPassword = credentials.getPassword()
+
+            loggedIn = False
+            if (StringHelper.isNotEmptyString(userName) and StringHelper.isNotEmptyString(userPassword)):
+                loggedIn = authenticationService.authenticate(userName, userPassword)
+
+            if (not loggedIn):
+                return False
+
+            # Check if there is user which has gplusUserUid
+            # Avoid mapping Google account to more than one IDP account
+            foundUser = userService.getUserByAttribute("oxExternalUid", "gplus:" + gplusUserUid)
+
+            if (foundUser == None):
+                # Add gplusUserUid to user one id UIDs
+                foundUser = userService.addUserAttribute(userName, "oxExternalUid", "gplus:" + gplusUserUid)
+                if (foundUser == None):
+                    print "Google+ Authenticate for step 2. Failed to update current user"
+                    return False
+
+                postLoginResult = self.extensionPostLogin(configurationAttributes, foundUser)
+                print "Google+ Authenticate for step 2. postLoginResult: '%s'" % postLoginResult
+
+                return postLoginResult
+            else:
+                foundUserName = foundUser.getUserId()
+                print "Google+ Authenticate for step 2. foundUserName: '%s'" % foundUserName
+    
+                if StringHelper.equals(userName, foundUserName):
+                    postLoginResult = self.extensionPostLogin(configurationAttributes, foundUser)
+                    print "Google+ Authenticate for step 2. postLoginResult: '%s'" % postLoginResult
+    
+                    return postLoginResult
+        
+            return False
+        else:
+            return False
+
+    def prepareForStep(self, configurationAttributes, requestParameters, step):
+        identity = CdiUtil.bean(Identity)
+        authenticationService = CdiUtil.bean(AuthenticationService)
+
+        if (step == 1):
+            print "Google+ Prepare for step 1"
+            
+            currentClientSecrets = self.getCurrentClientSecrets(self.clientSecrets, configurationAttributes, requestParameters)
+            if (currentClientSecrets == None):
+                print "Google+ Prepare for step 1. Google+ client configuration is invalid"
+                return False
+            
+            identity.setWorkingParameter("gplus_client_id", currentClientSecrets["web"]["client_id"])
+            identity.setWorkingParameter("gplus_client_secret", currentClientSecrets["web"]["client_secret"])
+
+            return True
+        elif (step == 2):
+            print "Google+ Prepare for step 2"
+
+            return True
+        else:
+            return False
+
+    def getExtraParametersForStep(self, configurationAttributes, step):
+        if (step == 2):
+            return Arrays.asList("gplus_user_uid")
+
+        return None
+
+    def getCountAuthenticationSteps(self, configurationAttributes):
+        identity = CdiUtil.bean(Identity)
+        if (identity.isSetWorkingParameter("gplus_count_login_steps")):
+            return identity.getWorkingParameter("gplus_count_login_steps")
+        
+        return 2
+
+    def getPageForStep(self, configurationAttributes, step):
+        if (step == 1):
+            return "/auth/gplus/gpluslogin.xhtml"
+
+        return "/auth/gplus/gpluspostlogin.xhtml"
+
+    def getNextStep(self, configurationAttributes, requestParameters, step):
+        return -1
+
+    def getLogoutExternalUrl(self, configurationAttributes, requestParameters):
+        print "Get external logout URL call"
+        return None
+
+    def logout(self, configurationAttributes, requestParameters):
+        # TODO Revoke token
+        return True
+
+    def loadClientSecrets(self, clientSecretsFile):
+        clientSecrets = None
+
+        # Load certificate from file
+        f = open(clientSecretsFile, 'r')
+        try:
+            clientSecrets = json.loads(f.read())
+        except:
+            print "Failed to load Google+ client secrets from file: '%s'" % clientSecrets
+            return None
+        finally:
+            f.close()
+        
+        return clientSecrets
+
+    def getClientConfiguration(self, configurationAttributes, requestParameters):
+        # Get client configuration
+        if (configurationAttributes.containsKey("gplus_client_configuration_attribute")):
+            clientConfigurationAttribute = configurationAttributes.get("gplus_client_configuration_attribute").getValue2()
+            print "Google+ GetClientConfiguration. Using client attribute: '%s'" % clientConfigurationAttribute
+
+            if (requestParameters == None):
+                return None
+
+            clientId = None
+            
+            # Attempt to determine client_id from request
+            clientIdArray = requestParameters.get("client_id")
+            if (ArrayHelper.isNotEmpty(clientIdArray) and StringHelper.isNotEmptyString(clientIdArray[0])):
+                clientId = clientIdArray[0]
+
+            # Attempt to determine client_id from event context
+            if (clientId == None):
+                identity = CdiUtil.bean(Identity)
+                if (identity.isSetWorkingParameter("sessionAttributes")):
+                    clientId = identity.getSessionId().getSessionAttributes().get("client_id")
+
+            if (clientId == None):
+                print "Google+ GetClientConfiguration. client_id is empty"
+                return None
+
+            clientService = CdiUtil.bean(ClientService)
+            client = clientService.getClient(clientId)
+            if (client == None):
+                print "Google+ GetClientConfiguration. Failed to find client '%s' in local LDAP" % clientId
+                return None
+
+            clientConfiguration = clientService.getCustomAttribute(client, clientConfigurationAttribute)
+            if ((clientConfiguration == None) or StringHelper.isEmpty(clientConfiguration.getValue())):
+                print "Google+ GetClientConfiguration. Client '%s' attribute '%s' is empty" % (clientId, clientConfigurationAttribute)
+            else:
+                print "Google+ GetClientConfiguration. Client '%s' attribute '%s' is '%s'" % (clientId, clientConfigurationAttribute, clientConfiguration)
+                return clientConfiguration
+
+        return None
+
+    def getCurrentClientSecrets(self, currentClientSecrets, configurationAttributes, requestParameters):
+        clientConfiguration = self.getClientConfiguration(configurationAttributes, requestParameters)
+        if (clientConfiguration == None):
+            return currentClientSecrets
+        
+        clientConfigurationValue = json.loads(clientConfiguration.getValue())
+
+        return clientConfigurationValue["gplus"]
+
+    def getCurrentAttributesMapping(self, currentAttributesMapping, configurationAttributes, requestParameters):
+        clientConfiguration = self.getClientConfiguration(configurationAttributes, requestParameters)
+        if (clientConfiguration == None):
+            return currentAttributesMapping
+
+        clientConfigurationValue = json.loads(clientConfiguration.getValue())
+
+        clientAttributesMapping = self.prepareAttributesMapping(clientConfigurationValue["gplus_remote_attributes_list"], clientConfigurationValue["gplus_local_attributes_list"])
+        if (clientAttributesMapping == None):
+            print "Google+ GetCurrentAttributesMapping. Client attributes mapping is invalid. Using default one"
+            return currentAttributesMapping
+
+        return clientAttributesMapping
+
+    def prepareAttributesMapping(self, remoteAttributesList, localAttributesList):
+        remoteAttributesListArray = StringHelper.split(remoteAttributesList, ",")
+        if (ArrayHelper.isEmpty(remoteAttributesListArray)):
+            print "Google+ PrepareAttributesMapping. There is no attributes specified in remoteAttributesList property"
+            return None
+        
+        localAttributesListArray = StringHelper.split(localAttributesList, ",")
+        if (ArrayHelper.isEmpty(localAttributesListArray)):
+            print "Google+ PrepareAttributesMapping. There is no attributes specified in localAttributesList property"
+            return None
+
+        if (len(remoteAttributesListArray) != len(localAttributesListArray)):
+            print "Google+ PrepareAttributesMapping. The number of attributes in remoteAttributesList and localAttributesList isn't equal"
+            return None
+        
+        attributeMapping = IdentityHashMap()
+        containsUid = False
+        i = 0
+        count = len(remoteAttributesListArray)
+        while (i < count):
+            remoteAttribute = StringHelper.toLowerCase(remoteAttributesListArray[i])
+            localAttribute = StringHelper.toLowerCase(localAttributesListArray[i])
+            attributeMapping.put(remoteAttribute, localAttribute)
+
+            if (StringHelper.equalsIgnoreCase(localAttribute, "uid")):
+                containsUid = True
+
+            i = i + 1
+
+        if (not containsUid):
+            print "Google+ PrepareAttributesMapping. There is no mapping to mandatory 'uid' attribute"
+            return None
+        
+        return attributeMapping
+
+    def getTokensByCode(self, currentClientSecrets, configurationAttributes, code):
+        tokenRequest = TokenRequest(GrantType.CLIENT_CREDENTIALS)
+        tokenRequest.setAuthenticationMethod(AuthenticationMethod.CLIENT_SECRET_POST)
+        tokenRequest.setCode(code)
+        tokenRequest.setAuthUsername(currentClientSecrets["web"]["client_id"])
+        tokenRequest.setAuthPassword(currentClientSecrets["web"]["client_secret"])
+        tokenRequest.setRedirectUri("postmessage")
+        tokenRequest.setGrantType(GrantType.AUTHORIZATION_CODE)
+
+        tokenClient = TokenClient(currentClientSecrets["web"]["token_uri"])
+        tokenClient.setRequest(tokenRequest)
+        
+        tokenResponse = tokenClient.exec()
+        if ((tokenResponse == None) or (tokenResponse.getStatus() != 200)):
+            return None
+
+        return tokenResponse
+
+    def getUserInfo(self, currentClientSecrets, configurationAttributes, accessToken):
+        userInfoClient = UserInfoClient("https://www.googleapis.com/plus/v1/people/me/openIdConnect")
+
+        userInfoResponse = userInfoClient.execUserInfo(accessToken)
+        if ((userInfoResponse == None) or (userInfoResponse.getStatus() != 200)):
+            return None
+
+        return userInfoResponse
+
+    def extensionPostLogin(self, configurationAttributes, user):
+        if (self.extensionModule != None):
+            try:
+                postLoginResult = self.extensionModule.postLogin(configurationAttributes, user)
+                print "Google+ PostLogin result: '%s'" % postLoginResult
+
+                return postLoginResult
+            except Exception, ex:
+                print "Google+ PostLogin. Failed to execute postLogin method"
+                print "Google+ PostLogin. Unexpected error:", ex
+                return False
+            except java.lang.Throwable, ex:
+                print "Google+ PostLogin. Failed to execute postLogin method"
+                ex.printStackTrace() 
+                return False
+                    
+        return True
diff --git a/oxAuth/Server/integrations/gplus/README.txt b/oxAuth/Server/integrations/gplus/README.txt
new file mode 100644
index 00000000..e362a635
--- /dev/null
+++ b/oxAuth/Server/integrations/gplus/README.txt
@@ -0,0 +1,54 @@
+This is a person authentication module for oxAuth that enables [Google+ Authentication](https://www.google.com) for user authentication.
+
+The module has a few properties:
+
+1) gplus_client_secrets_file - It's mandatory property. It's path to application configuration file downloaded from Google console for application.
+Example: `/etc/certs/gplus_client_secrets.json`
+These are steps needed to get it:
+    a) Log into: https://console.developers.google.com/project
+    b) Click "Create project" and enter project name
+    c) Open new project "API & auth -> Credentials" menu item in configuration navigation tree
+    d) Click "Add credential" with type "OAuth 2.0 client ID"
+    e) Select "Web application" application type
+    f) Enter "Authorized JavaScript origins". It should be CE server DNS name. Example: https://gluu.info
+    g) Click "Create" and Click "OK" in next dialog
+    h) Click "Download JSON" in order to download gplus_client_secrets.json file
+Also it's mandatory to enable Google+ API:
+    a) Log into: https://console.developers.google.com/project
+    b) Select project and enter project name
+    c) Open new project "API & auth -> API" menu item in configuration navigation tree
+    d) Click "Google+ API"
+    e) Click "Enable API" button
+
+2) gplus_deployment_type - Specify deployment mode. It's optional property. If this property isn't specified script
+   tries to find user in local LDAP by 'subject_identifier' claim specified in id_token. If this property has 'map' value script
+   allow to map 'subject_identifier' to local user account. If this property has 'enroll' value script should add new user to local LDAP
+   with status 'acrtive'. In order to map IDP attributes to local attributes it uses properties gplus_remote_attributes_list and
+   gplus_local_attributes_list.
+   Allowed values: map/enroll
+   Example: enroll
+
+3) gplus_remote_attributes_list - Comma separated list of attribute names. Specify list of Google+ claims(attributes) which script should use to map to local attributes.
+   It's optional property. It's mandatory only if gplus_deployment_type has value 'enroll'.
+   The count of attributes in this property should be equal to count attributes in gplus_local_attributes_list property.
+   Example: email, email, name, family_name, given_name, locale
+
+4) gplus_local_attributes_list - Comma separated list of attribute names. Specify list of local attributes mapped from Google+ userInfo OpenId response.
+    It's optional property. It's mandatory only if gplus_deployment_type has value 'enroll'.
+    The count of attributes in this property should be equal to count attributes in gplus_remote_attributes_list property.
+    Local attributes list should contains next mandatory attributes: uid, mail, givenName, sn, cn.
+    Example: uid, mail, givenName, sn, cn, preferredLanguage
+
+5) extension_module - Specify external module name. It's optional property. External module should implements 2 methods:
+    def init(conf_attr):
+    ...
+    return True/False
+
+    def postLogin(conf_attr, user):
+    ...
+    return True/False
+
+    Scripts calls init method at initialization. And calls postLogin after user log in order to execute additional custom workflow.
+
+ 6) gplus_client_configuration_attribute - Specify client entry attribute name which can override gplus_client_secrets_file file content. It's optional property.
+    It can be used in cases when all clients should use separate gplus_client_secrets.json configuration.
diff --git a/oxAuth/Server/integrations/gplus/sample/custom_script_entry.ldif b/oxAuth/Server/integrations/gplus/sample/custom_script_entry.ldif
new file mode 100644
index 00000000..e1f3815e
--- /dev/null
+++ b/oxAuth/Server/integrations/gplus/sample/custom_script_entry.ldif
@@ -0,0 +1,22 @@
+dn: inum=@!1111!E521.2AE6,ou=scripts,o=gluu
+objectClass: oxCustomScript
+objectClass: top
+displayName: gplus
+gluuStatus: true
+inum: @!1111!E521.2AE6
+oxConfigurationProperty: {"value1":"gplus_client_secrets_file","value2":"/et
+ c/certs/gplus_client_secrets.json","description":""}
+oxConfigurationProperty: {"value1":"gplus_deployment_type","value2":"enroll"
+ ,"description":""}
+oxConfigurationProperty: {"value1":"gplus_local_attributes_list","value2":"u
+ id, mail, givenName, sn, cn, preferredLanguage","description":""}
+oxConfigurationProperty: {"value1":"gplus_remote_attributes_list","value2":"
+ email, email, given_name, family_name, given_name, locale","description":""}
+oxLevel: 22
+oxModuleProperty: {"value1":"usage_type","value2":"interactive","description
+ ":""}
+oxRevision: 1
+oxScript: <copy content of the file from GooglePlusExternalAuthenticator.py>
+oxScriptType: person_authentication
+programmingLanguage: python
+
diff --git a/oxAuth/Server/integrations/gplus/sample/gplus_client_secrets.json b/oxAuth/Server/integrations/gplus/sample/gplus_client_secrets.json
new file mode 100644
index 00000000..50c880ae
--- /dev/null
+++ b/oxAuth/Server/integrations/gplus/sample/gplus_client_secrets.json
@@ -0,0 +1 @@
+{"web":{"auth_uri":"https://accounts.google.com/o/oauth2/auth","client_secret":"<paste_correct_value>","token_uri":"https://accounts.google.com/o/oauth2/token","client_email":"<paste_correct_value>","redirect_uris":["https://myproductionurl.example.com/oauth2callback"],"client_x509_cert_url":"https://www.googleapis.com/robot/v1/metadata/x509/<paste_correct_value>","client_id":"<paste_correct_value>","auth_provider_x509_cert_url":"https://www.googleapis.com/oauth2/v1/certs","javascript_origins":["https://myproductionurl.example.com"]}}
\ No newline at end of file
diff --git a/oxAuth/Server/integrations/gplus/workflow.txt b/oxAuth/Server/integrations/gplus/workflow.txt
new file mode 100644
index 00000000..bf84de75
--- /dev/null
+++ b/oxAuth/Server/integrations/gplus/workflow.txt
@@ -0,0 +1,39 @@
+title Google+ oxAuth external authenticator plugin
+
+User Agent -> oxTrust: Access site protected by mod_ox/shibboleth
+
+oxTrust -> oxAuth: Redirect for user authentication
+
+oxAuth -> User Agent: Show login form with Google+ widget
+
+User Agent -> Google Server: Log into Google account
+
+Google Server -> User Agent: Returns OAuth2 code, id_token, etc..
+
+User Agent -> oxAuth: Send OAuth2 code to Google+ oxAuth external authenticator
+
+oxAuth -> Google Server: Get OAuth2 id_token by code
+
+Google Server -> oxAuth: Returns id_token
+
+oxAuth -> oxAuth: Get Subject Identifier (Google persistent Id) from id_token
+
+oxAuth -> oxAuth: Check if there is IDP user with oxExternalUid: "gplus:" + google_persistent_id (Google persistent Id)
+
+oxAuth -> oxTrust: Allow access if user with gplus:google_persistent_id exists
+
+oxTrust -> User Agent: Allow access to resource
+
+oxAuth -> oxAuth : Start enrollment if user with gplus:google_persistent_id not exists
+
+oxAuth -> Google Server: Get OAuth2 user profile
+
+Google Server -> oxAuth: Returns OAuth2 claims
+
+oxAuth -> oxAuth: Add new user with gplus:google_persistent_id. Map user claims to user attributes. Set status of new user to "register".
+
+oxAuth -> oxTrust: Allow access to resource
+
+oxTrust -> oxTrust: Show user registration form
+
+oxTrust -> User Agent: Allow access to resource
diff --git a/oxAuth/Server/integrations/idfirst/README_idfirst.md b/oxAuth/Server/integrations/idfirst/README_idfirst.md
new file mode 100644
index 00000000..818d7909
--- /dev/null
+++ b/oxAuth/Server/integrations/idfirst/README_idfirst.md
@@ -0,0 +1,37 @@
+# Identifier-first authentication
+
+This custom script allows administrators to implement the following workflow:
+
+1. User is presented with a form asking for username only
+2. User is shown a form asking for password only (username field is not editable)
+3. User is taken to a page where he is challenged to present a second factor (strong credential) for completion of authentication
+
+After form submission in step 1, the suitable user entry is looked up and an attribute is expected to contain an acr value corresponding to an already existing and enabled custom script that determines the second factor.
+
+If the attribute is not existing, the "basic" acr will be used. Thus, the basic script needs to be enabled as well in Gluu server.
+
+
+For numerals 2 and 3 to work properly, all custom scripts to be used (basic, u2f, super_gluu, ect.) should be edited so that the getPageForStep uses the custom page named "alter_login.xhtml".  In other words, comment out the line showing
+
+	`return ""`
+
+by prefixing it with a `#` character and add one with
+
+	`return "/auth/idfirst/alter_login.xhtml"`
+	
+in the subroutine "getPageForStep" of every script.
+
+## Requirements:
+
+* To configure the user attribute to lookup for an acr (and thus a second factor), add "*acr_attribute*" as a property of the Identifier-first custom script via oxTrust.
+
+Example:
+
+name: acr_attribute
+value: oxPreferredMethod
+
+where `oxPreferredMethod` is an LDAP attribute part of GluuPerson object class.
+
+* Copy the accompanying [custom pages](https://github.com/GluuFederation/oxAuth/tree/master/Server/src/main/webapp/auth/idfirst) to `/opt/gluu/jetty/oxauth/custom/pages/idfirst`, namely `alter_login.xhtml`, `alter_login.page.xml` (3.0.2 only), and `idfirst_login.xhtml`. This is only required if your Gluu Server wasn't originally bundled with this script
+
+* Ensure this script has a low level set in oxTrust. All other scripts to which this scripts forwards to must be greater in level than this.
\ No newline at end of file
diff --git a/oxAuth/Server/integrations/idfirst/idfirst.py b/oxAuth/Server/integrations/idfirst/idfirst.py
new file mode 100644
index 00000000..b10bc460
--- /dev/null
+++ b/oxAuth/Server/integrations/idfirst/idfirst.py
@@ -0,0 +1,98 @@
+# oxAuth is available under the MIT License (2008). See http://opensource.org/licenses/MIT for full text.
+# Copyright (c) 2016, Gluu
+#
+# Author: Jose Gonzalez (based on acr_routerauthenticator.py)
+#
+# NOTE: before using this script, see the accompanying readme file
+
+from org.gluu.oxauth.security import Identity
+from org.gluu.model.custom.script.type.auth import PersonAuthenticationType
+from org.gluu.oxauth.service import UserService
+from org.gluu.util import StringHelper
+from org.gluu.service.cdi.util import CdiUtil
+
+import java
+
+class PersonAuthentication(PersonAuthenticationType):
+    def __init__(self, currentTimeMillis):
+        self.currentTimeMillis = currentTimeMillis
+
+    def init(self, customScript, configurationAttributes):
+        print "Identifier First. Initialized successfully"
+        return True   
+
+    def destroy(self, configurationAttributes):
+        print "Identifier First. Destroyed successfully"
+        return True
+
+    def getApiVersion(self):
+        return 11
+        
+    def getAuthenticationMethodClaims(self, requestParameters):
+        return None
+        
+    def isValidAuthenticationMethod(self, usageType, configurationAttributes):
+        print "Identifier First. isValidAuthenticationMethod called"
+        return False
+
+    def getAlternativeAuthenticationMethod(self, usageType, configurationAttributes):
+        print "Identifier First. getAlternativeAuthenticationMethod"
+
+        identity = CdiUtil.bean(Identity)
+        user_name = identity.getCredentials().getUsername()
+        print "Identifier First. Inspecting user %s" % user_name
+
+        attributes=identity.getSessionId().getSessionAttributes()
+        attributes.put("roUserName", user_name)
+
+        acr = None
+        try:
+            userService = CdiUtil.bean(UserService)
+            foundUser = userService.getUserByAttribute("uid", user_name)
+
+            if foundUser == None:
+                print "Identifier First. User does not exist"
+                return ""
+
+            attr = configurationAttributes.get("acr_attribute").getValue2()
+            acr=foundUser.getAttribute(attr)     
+            #acr="u2f" or "otp" or "twilio_sms", etc...
+            if acr == None:
+                acr = "basic"
+        except:
+            print "Identifier First. Error looking up user or his preferred method"         
+
+        print "Identifier First. new acr value %s" % acr
+        return acr
+
+    def authenticate(self, configurationAttributes, requestParameters, step):
+        return False
+
+    def prepareForStep(self, configurationAttributes, requestParameters, step):
+        print "Identifier First. prepareForStep %s" % str(step)
+        return True
+
+    def getExtraParametersForStep(self, configurationAttributes, step):
+        print "Identifier First. getExtraParametersForStep %s" % str(step)  
+        return None
+
+    def getCountAuthenticationSteps(self, configurationAttributes):
+        print "Identifier First. getCountAuthenticationSteps called"
+        return 2
+
+    def getPageForStep(self, configurationAttributes, step):
+        print "Identifier First. getPageForStep called %s" % str(step)
+        if step == 1:
+            return "/auth/idfirst/idfirst_login.xhtml"
+        return ""
+
+    def getNextStep(self, configurationAttributes, requestParameters, step):
+        return -1
+
+    def getLogoutExternalUrl(self, configurationAttributes, requestParameters):
+        print "Get external logout URL call"
+        return None
+
+    def logout(self, configurationAttributes, requestParameters):
+        print "Identifier First. logout called"
+        return True
diff --git a/oxAuth/Server/integrations/inwebo/inwebo.py b/oxAuth/Server/integrations/inwebo/inwebo.py
new file mode 100644
index 00000000..dfc02767
--- /dev/null
+++ b/oxAuth/Server/integrations/inwebo/inwebo.py
@@ -0,0 +1,338 @@
+from org.gluu.oxauth.service import AuthenticationService
+from org.gluu.oxauth.security import Identity
+from org.gluu.model.custom.script.type.auth import PersonAuthenticationType
+from org.gluu.service.cdi.util import CdiUtil
+from org.gluu.util import StringHelper,ArrayHelper
+from org.gluu.oxauth.util import ServerUtil
+from org.gluu.oxauth.service import UserService, AuthenticationService,SessionIdService
+from org.gluu.oxauth.service.net import HttpService
+from org.gluu.oxauth.service.common import EncryptionService 
+from javax.faces.application import FacesMessage
+from javax.faces.context import FacesContext
+from org.gluu.jsf2.service import FacesService
+from org.gluu.jsf2.message import FacesMessages
+from java.util import Arrays
+from java.lang import String
+from java.lang import System
+import java
+import sys
+import json
+
+
+    
+class PersonAuthentication(PersonAuthenticationType):
+
+
+    def __init__(self, currentTimeMillis):
+        self.otp = "false"
+        self.client = None
+
+    def init(self, customScript, configurationAttributes):
+       
+        print "inWebo. Initialization"
+        iw_cert_store_type = configurationAttributes.get("iw_cert_store_type").getValue2()
+        iw_cert_path = configurationAttributes.get("iw_cert_path").getValue2()
+        iw_creds_file = configurationAttributes.get("iw_creds_file").getValue2()
+        
+        self.push_withoutpin = "false"
+        self.push_fail = "false"
+        
+        #permissible values = true , false
+        self.push_withoutpin = 1 
+        if StringHelper.equalsIgnoreCase("false" ,configurationAttributes.get("iw_push_withoutpin").getValue2()):
+            self.push_withoutpin = 0
+        self.api_uri =  configurationAttributes.get("iw_api_uri").getValue2()
+        self.service_id = configurationAttributes.get("iw_service_id").getValue2()
+        
+        
+        # Load credentials from file
+        f = open(iw_creds_file, 'r')
+        try:
+           creds = json.loads(f.read())
+        except:
+            print "unexpected error - "+sys.exc_info()[0]
+            return False
+        finally:
+            f.close()
+        iw_cert_password = creds["CERT_PASSWORD"]
+        
+        #TODO: the password should not be in plaintext
+        #try:
+         #   encryptionService = CdiUtil.bean(EncryptionService)
+          #  iw_cert_password = encryptionService.decrypt(iw_cert_password)
+        #except:
+         #   print("oops!",sys.exc_info()[0],"occured.")
+          #  return False
+
+        httpService = CdiUtil.bean(HttpService)
+        self.client = httpService.getHttpsClient(None, None, None, iw_cert_store_type, iw_cert_path, iw_cert_password)
+        print "inWebo. Initialized successfully"
+        return True   
+  
+
+    def destroy(self, configurationAttributes):
+        print "inWebo. Destroyed successfully"
+        return True
+
+    def getApiVersion(self):
+        return 11
+
+        
+    def getAuthenticationMethodClaims(self, requestParameters):
+        return None
+        
+    def isValidAuthenticationMethod(self, usageType, configurationAttributes):
+        return True
+
+    def getAlternativeAuthenticationMethod(self, usageType, configurationAttributes):
+        return None
+    
+    def authenticate(self, configurationAttributes, requestParameters, step):
+        
+        userService = CdiUtil.bean(UserService)
+        authenticationService = CdiUtil.bean(AuthenticationService)
+        identity = CdiUtil.bean(Identity)
+        
+        credentials = identity.getCredentials()
+        user_name = credentials.getUsername()
+        
+        iw_otp = requestParameters.get("loginForm:otp")
+         
+        if ArrayHelper.isNotEmpty(iw_otp) and StringHelper.equalsIgnoreCase("true", iw_otp[0]) and step == 2:    
+                identity.setWorkingParameter("iw_count_login_steps", 3)
+                return True
+                
+        elif StringHelper.isEmptyString(user_name) and step == 1:
+            print "empty user_name in step1 indicates browser token notfound"
+            identity.setWorkingParameter("iw_count_login_steps", 2)
+            return True
+        else:
+             
+            response_check = False
+            user_exists_in_gluu = authenticationService.authenticate(user_name)
+            identity.setWorkingParameter("iw_count_login_steps", step)
+            
+            if (step == 1 or step == 3):
+                print "if (step == 1 or step == 3):"
+                password = credentials.getPassword()
+                if StringHelper.isEmpty(password):
+                    print "InWebo. Authenticate for step 2. otp token is empty"
+                    return False
+                #password is the otp token
+                response_check = self.validateInweboToken(self.api_uri, self.service_id, user_name, password, step)
+            elif (step == 2):
+                print "elif (step == 2):"
+                session = CdiUtil.bean(SessionIdService).getSessionId()
+                if session == None:
+                    print "InWebo. Authenticate for step 2. session_id is not exists"
+                    return False
+
+                response_check = self.checkStatus(self.api_uri, self.service_id, user_name, session.getId(), self.push_withoutpin)
+                
+                if self.push_fail is not None:
+                    self.setErrorMessage(self.push_fail)
+                    identity.setWorkingParameter("iw_count_login_steps", 3)
+                    
+            return response_check and user_exists_in_gluu 
+
+    def prepareForStep(self, configurationAttributes, requestParameters, step):
+        
+        if (step == 1):
+            print "InWebo. Prepare for step 1"
+            return True
+        elif (step == 2):
+            print "InWebo. Prepare for step 2"
+            return True
+        elif (step == 3):
+            print "inWebo. Prepare for step 3"
+            return True
+        else:
+            return False
+        
+    def getExtraParametersForStep(self, configurationAttributes, step):
+        return None
+
+    def getCountAuthenticationSteps(self, configurationAttributes):
+        print "inside getCountAuthenticationSteps"
+        identity = CdiUtil.bean(Identity)
+        if (identity.isSetWorkingParameter("iw_count_login_steps")):
+            print "identity.getWorkingParameter(iw_count_login_steps) - ", identity.getWorkingParameter("iw_count_login_steps")
+            return identity.getWorkingParameter("iw_count_login_steps")
+        
+        return 3
+    
+    def getPageForStep(self, configurationAttributes, step):
+        
+        identity = CdiUtil.bean(Identity)
+        if (step == 1):
+            return "/auth/inwebo/iw_va.xhtml"
+        elif (step == 2):
+                return "/auth/inwebo/iwpushnotification.xhtml"
+        elif (step == 3):
+                return "/auth/inwebo/iwauthenticate.xhtml"
+        else:
+            return ""
+    
+    def isPassedDefaultAuthentication(self):
+        identity = CdiUtil.bean(Identity)
+        credentials = identity.getCredentials()
+        user_name = credentials.getUsername()
+        passed_step1 = StringHelper.isNotEmptyString(user_name)
+        return passed_step1
+    
+    def validateInweboToken(self, iw_api_uri, iw_service_id, user_name, iw_token, step):
+        httpService = CdiUtil.bean(HttpService)
+        
+        request_uri = iw_api_uri + "action=authenticateExtended" + "&serviceId=" + str(iw_service_id) + "&userId=" + httpService.encodeUrl(user_name) + "&token=" + str(iw_token)+"&format=json"
+        print "InWebo. Token verification. Attempting to send authentication request:", request_uri
+        
+        try:
+            http_service_response = httpService.executeGet(self.client, request_uri)
+            http_response = http_service_response.getHttpResponse()
+            print "status - ", http_response.getStatusLine().getStatusCode()
+        except: 
+            print "inWebo validate method. Exception: ", sys.exc_info()[1]
+            return False
+
+        try:
+            if (http_response.getStatusLine().getStatusCode() != 200):
+                print "inWebo. Invalid response from validation server: ", str(http_response.getStatusLine().getStatusCode())
+                httpService.consume(http_response)
+                return None
+            
+            response_bytes = httpService.getResponseContent(http_response)
+            response_string = httpService.convertEntityToString(response_bytes)
+            httpService.consume(http_response)
+        
+        finally:
+            http_service_response.closeConnection()
+        
+        if response_string is None:
+            print "inWebo. Get empty response from inWebo server"
+            return None
+    
+        print "response string:",response_string
+        json_response = json.loads(response_string)
+        
+        if not StringHelper.equalsIgnoreCase(json_response['err'], "OK"):
+            print "inWebo. Get response with status: ", json_response['err']
+            return False
+        else:
+            return True   # response_validation
+    
+    def checkStatus(self, iw_api_uri, iw_service_id, user_name,  session_id,without_pin):
+        print "inside check status ", user_name+session_id
+        # step 1: call action=pushAthenticate
+        httpService = CdiUtil.bean(HttpService)
+        
+        request_uri = iw_api_uri + "action=pushAuthenticate" + "&serviceId=" + str(iw_service_id) + "&userId=" + httpService.encodeUrl(user_name) + "&format=json&withoutpin="+str(without_pin)
+        #curTime = java.lang.System.currentTimeMillis()
+        #endTime = curTime + (timeout * 1000)
+        
+        try:
+            response_status = None
+            http_service_response = httpService.executeGet(self.client, request_uri)
+            http_response = http_service_response.getHttpResponse()
+             
+            if (http_response.getStatusLine().getStatusCode() != 200):
+                print "inWebo. Invalid response from inwebo server: checkStatus ", str(http_response.getStatusLine().getStatusCode())
+                httpService.consume(http_response)
+                return None
+            
+            response_bytes = httpService.getResponseContent(http_response)
+            response_string = httpService.convertEntityToString(response_bytes)
+            httpService.consume(http_response)
+        
+        except: 
+            print "inWebo validate method. Exception: ", sys.exc_info()[1]
+            return False
+    
+        finally:
+            http_service_response.closeConnection()
+            
+        print "response string:", response_string
+        json_response = json.loads(response_string)
+
+        if StringHelper.equalsIgnoreCase(json_response['err'], "OK"):
+            
+            session_id = json_response['sessionId']
+            checkResult_uri = iw_api_uri + "action=checkPushResult" + "&serviceId=" + str(iw_service_id) + "&userId=" + httpService.encodeUrl(user_name) + "&sessionId="+ httpService.encodeUrl(session_id) + "&format=json&withoutpin=1"
+            print "checkPushResult_uri:",checkResult_uri
+            
+            startTime = System.currentTimeMillis();
+            currentTime = startTime;
+            endTime = startTime  + long(25000)
+            print "start time ----> ",startTime
+            print "end time ",endTime
+            while (endTime > currentTime ):
+                try:
+                    # step 2: call action=checkPushResult; using session id from step 1
+                    http_check_push_response = httpService.executeGet(self.client, checkResult_uri)
+                    check_push_response = http_check_push_response.getHttpResponse()
+                    check_push_response_bytes = httpService.getResponseContent(check_push_response)
+                    check_push_response_string = httpService.convertEntityToString(check_push_response_bytes)
+                    httpService.consume(check_push_response)
+                    
+                    check_push_json_response = json.loads(check_push_response_string)
+                    print "check_push_json_response :",check_push_json_response 
+                    if StringHelper.equalsIgnoreCase(check_push_json_response['err'], "OK"):
+                        self.push_fail = None
+                        return True
+                    elif StringHelper.equalsIgnoreCase(check_push_json_response['err'], "NOK:REFUSED"):
+                        print "Push request notification for session", session_id
+                        self.push_fail = "inwebo.push.notification.rejected"
+                        return False
+                    elif StringHelper.equalsIgnoreCase(check_push_json_response['err'], "NOK:TIMEOUT"):
+                        print "Push request timed out for session", session_id
+                        self.push_fail = "inwebo.push.notification.timed.out.for.session"
+                        return False
+                    elif StringHelper.equalsIgnoreCase(check_push_json_response['err'], "NOK:WAITING"):
+                        self.push_fail = "inwebo.push.notification.timed.out.for.session"
+                        currentTime = System.currentTimeMillis();
+                        print " NOw ######## ", currentTime
+                        java.lang.Thread.sleep(5000)
+                        continue
+                    else:
+                        self.push_fail = "inwebo.push.notification.failed"
+                        return False 
+                    
+                    
+                    
+                finally:
+                    http_check_push_response.closeConnection()
+                 
+                
+                    
+        elif StringHelper.equalsIgnoreCase(json_response['err'], "NOK:SN"):
+            self.push_fail ="inwebo.no.username"
+            return False
+        elif StringHelper.equalsIgnoreCase(json_response['err'], "NOK:account unknown"):
+            self.push_fail ="inwebo.no.username"
+            return False        
+        else:
+            print "No response from server."
+            self.push_fail ="inwebo.push.notification.timed.out.for.session"
+            return False
+        
+        print "inWebo. CheckStatus. The process has not received a response from the phone yet"
+        
+        return False
+    
+    def setErrorMessage(self, errorMessage):
+        facesMessages = CdiUtil.bean(FacesMessages)
+        facesMessages.setKeepMessages()
+        facesMessages.clear()
+        facesMessages.add(FacesMessage.SEVERITY_ERROR, String.format("#{msgs['%s']}", errorMessage))
+        
+    def hasEnrollments(self, configurationAttributes,user):
+        return True;
+        
+    def getNextStep(self, configurationAttributes, requestParameters, step):
+        return -1
+
+    def getLogoutExternalUrl(self, configurationAttributes, requestParameters):
+        print "Get external logout URL call"
+        return None
+            
+    def logout(self, configurationAttributes, requestParameters):
+        return True
\ No newline at end of file
diff --git a/oxAuth/Server/integrations/inwebo/iw_creds.json b/oxAuth/Server/integrations/inwebo/iw_creds.json
new file mode 100644
index 00000000..3fe86815
--- /dev/null
+++ b/oxAuth/Server/integrations/inwebo/iw_creds.json
@@ -0,0 +1 @@
+{"CERT_PASSWORD": "example"}
diff --git a/oxAuth/Server/integrations/inwebo/iw_va.xhtml b/oxAuth/Server/integrations/inwebo/iw_va.xhtml
new file mode 100644
index 00000000..8a69c6f5
--- /dev/null
+++ b/oxAuth/Server/integrations/inwebo/iw_va.xhtml
@@ -0,0 +1,93 @@
+
+<!DOCTYPE composition PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN" "http://www.w3.org/TR/xhtml1/DTD/xhtml1-transitional.dtd">
+<ui:composition xmlns="http://www.w3.org/1999/xhtml" xmlns:f="http://xmlns.jcp.org/jsf/core" xmlns:ui="http://xmlns.jcp.org/jsf/facelets"
+	xmlns:h="http://xmlns.jcp.org/jsf/html" template="/WEB-INF/incl/layout/template.xhtml">
+	<f:metadata>
+		<f:viewAction action="#{authenticator.prepareAuthenticationForStep}" if="#{not identity.loggedIn}" />
+	</f:metadata>
+	<ui:define name="head">
+		
+		<script type="text/javascript" src="https://ult-inwebo.com/va/client.js" />
+		<script type="text/javascript">
+			
+			//<![CDATA[
+			
+			VA_jQuery(document).ready(
+					function() 
+					{
+						iwstart("myStart", function(iw, data) 
+						{
+							
+							//Successful authentication
+							if (data.action == "authentication"
+									&& data.code == "ok") 
+							{
+								iw.insertFields(data.result);
+								document.getElementById("loginForm:loginButton").click();
+							}
+							
+							//Virtual Authenticator is not activated
+							if (data.type == "error" && data.code == "nok"
+									&& data.result.reason == "no_profile") {
+								//We terminate Virtual Authenticator
+								iwterminate();
+								//Insert code to redirect user to a push authentication page instead of displaying a popup
+								
+								document.getElementById("loginForm:loginButton").click();
+							}
+						});
+					});
+		//	]]>
+		</script>
+		<style type="text/css">
+.login-panel {
+	border-style: solid;
+	border-width: 1px;
+	padding: 1px;
+	background-color: #FFFFFF;
+	border-color: #C4C0B9;
+	width: 100%;
+}
+
+.login-panel-header {
+	background-color: #D4CFC7;
+	background-image: url("./img/panel_header_bg.png");
+	background-position: left top;
+	background-repeat: repeat-x;
+	border-style: solid;
+	border-width: 1px;
+	padding: 2px;
+	border-color: #D4CFC7;
+	color: #000000;
+	font-family: Arial, Verdana, sans-serif;
+	font-size: 11px;
+	font-weight: bold;
+}
+
+.login-panel-body {
+	padding: 10px;
+	color: #000000;
+	font-family: Arial, Verdana, sans-serif;
+	font-size: 11px;
+}
+</style>
+	</ui:define>
+	<ui:define name="pageTitle">#{msgs['inwebo.title.va']}</ui:define>
+
+	<ui:define name="body">
+		
+			<div id="myContainer" style="display: none;"></div>
+			<div id="myStart" data-action="authentication" data-container="myContainer" data-quiet-start="1" data-lang="auto" data-nopin="0"
+				data-alias="3edaf592678e1b0f9028403efd70f51c"></div>
+			
+		
+			<h:form id="loginForm" >
+				<h:inputHidden id="username" value="#{credentials.username}"   />
+				<h:inputHidden id="password" value="#{credentials.password}"    />
+				<h:commandButton id="loginButton" value="Login" style="display:none" action="#{authenticator.authenticate}" />
+			</h:form>
+			
+			
+		
+		</ui:define>
+</ui:composition>
\ No newline at end of file
diff --git a/oxAuth/Server/integrations/inwebo/iwauthenticate.xhtml b/oxAuth/Server/integrations/inwebo/iwauthenticate.xhtml
new file mode 100644
index 00000000..71d619d0
--- /dev/null
+++ b/oxAuth/Server/integrations/inwebo/iwauthenticate.xhtml
@@ -0,0 +1,99 @@
+<!DOCTYPE composition PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN"
+        "http://www.w3.org/TR/xhtml1/DTD/xhtml1-transitional.dtd">
+<ui:composition xmlns="http://www.w3.org/1999/xhtml"
+                xmlns:f="http://xmlns.jcp.org/jsf/core"
+                xmlns:ui="http://xmlns.jcp.org/jsf/facelets"
+                xmlns:h="http://xmlns.jcp.org/jsf/html"
+                template="/WEB-INF/incl/layout/template.xhtml">
+    <f:metadata>
+	<f:viewAction action="#{authenticator.prepareAuthenticationForStep}" if="#{not identity.loggedIn}"/>
+    </f:metadata>
+
+    <ui:define name="head">
+        <style type="text/css">
+            .login-panel {
+                border-style: solid;
+                border-width: 1px;
+                padding: 1px;
+                background-color: #FFFFFF;
+                border-color: #C4C0B9;
+            }
+
+            .login-panel-header {
+                background-color: #D4CFC7;
+                background-image: url("#{oxAuthConfigurationService.getImgLocation()}/panel_header_bg.png");
+                background-position: left top;
+                background-repeat: repeat-x;
+                border-style: solid;
+                border-width: 1px;
+                padding: 2px;
+                border-color: #D4CFC7;
+                color: #000000;
+                font-family: Arial, Verdana, sans-serif;
+                font-size: 11px;
+                font-weight: bold;
+            }
+
+            .login-panel-body {
+                padding: 10px;
+                color: #000000;
+                font-family: Arial, Verdana, sans-serif;
+                font-size: 11px;
+            }
+        </style>
+    </ui:define>
+
+    <ui:define name="pageTitle">#{msgs['inwebo.pageTitle']}</ui:define>
+
+	<ui:define name="body">
+		
+			
+			<h:form id="loginForm" >
+				<h:panelGroup rendered="#{not identity.loggedIn}">
+					<div class="login-panel" >
+						<div class="login-panel-header">#{msgs['inwebo.loginLabel']}</div>
+						<div class="login-panel-body">
+							<ui:param name="client" value="#{clientService.getClient(identity.sessionId.sessionAttributes['client_id'])}" />
+
+							<h:panelGroup rendered='#{!empty client.getLogoUri()}'>
+								<h:graphicImage url='#{client.getLogoUri()}' />
+							</h:panelGroup>
+
+							<p class="info">#{msgs['inwebo.otp.login.info']}</p>
+
+							<div class="dialog">
+								<h:panelGrid columns="2" rowClasses="prop" columnClasses="name,value">
+									
+									<h:outputLabel for="username">#{msgs['inwebo.username']}</h:outputLabel>
+									<h:inputText id="username" value="#{credentials.username}"   />
+									<h:outputLabel for="password">#{msgs['inwebo.otp']}</h:outputLabel>
+									<h:inputText id="password" value="#{credentials.password}"   autocomplete="off" />
+									
+									
+								</h:panelGrid>
+							</div>
+
+							<h:panelGroup rendered='#{!empty client.getPolicyUri()}'>
+								<p>
+									<a target="_blank" href='#{client.getPolicyUri()}'>#{msgs['inwebo.termsPrivacy']}</a>
+								</p>
+							</h:panelGroup>
+
+							<div class="actionButtons">
+								<h:commandButton value="Authenticate" action="#{authenticator.authenticate}" />
+								
+							</div>
+						</div>
+					</div>
+				</h:panelGroup>
+
+				
+			</h:form>
+			
+			
+		
+		</ui:define>
+   		<!--ui:include src="/casa/casa.xhtml">
+			<ui:param name="methods" value="${identity.getWorkingParameter('methods')}"/>
+		</ui:include-->
+</ui:composition>
diff --git a/oxAuth/Server/integrations/inwebo/iwlogin.xhtml b/oxAuth/Server/integrations/inwebo/iwlogin.xhtml
new file mode 100644
index 00000000..4d8ebd4f
--- /dev/null
+++ b/oxAuth/Server/integrations/inwebo/iwlogin.xhtml
@@ -0,0 +1,94 @@
+<!DOCTYPE composition PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN"
+        "http://www.w3.org/TR/xhtml1/DTD/xhtml1-transitional.dtd">
+<ui:composition xmlns="http://www.w3.org/1999/xhtml"
+		xmlns:f="http://xmlns.jcp.org/jsf/core"
+                xmlns:ui="http://xmlns.jcp.org/jsf/facelets"
+                xmlns:h="http://xmlns.jcp.org/jsf/html"
+                template="/WEB-INF/incl/layout/template.xhtml">
+    <f:metadata>
+        <f:viewAction action="#{authenticator.prepareAuthenticationForStep}" if="#{not identity.loggedIn}"/>
+    </f:metadata>
+
+    <ui:define name="head">
+        <style type="text/css">
+            .login-panel {
+                border-style: solid;
+                border-width: 1px;
+                padding: 1px;
+                background-color: #FFFFFF;
+                border-color: #C4C0B9;
+            }
+
+            .login-panel-header {
+                background-color: #D4CFC7;
+                background-image: url("#{oxAuthConfigurationService.getImgLocation()}/panel_header_bg.png");
+                background-position: left top;
+                background-repeat: repeat-x;
+                border-style: solid;
+                border-width: 1px;
+                padding: 2px;
+                border-color: #D4CFC7;
+                color: #000000;
+                font-family: Arial, Verdana, sans-serif;
+                font-size: 11px;
+                font-weight: bold;
+            }
+
+            .login-panel-body {
+                padding: 10px;
+                color: #000000;
+                font-family: Arial, Verdana, sans-serif;
+                font-size: 11px;
+            }
+        </style>
+
+    </ui:define>
+
+    <ui:define name="pageTitle">#{msgs['inwebo.title']}</ui:define>
+
+    <ui:define name="body">
+
+        <h:form id="loginForm" >
+
+            <h:panelGroup rendered="#{not identity.loggedIn}">
+                <div class="login-panel">
+                    <div class="login-panel-header">#{msgs['inwebo.loginLabel']}</div>
+                    <div class="login-panel-body">
+                        <ui:param name="client" value="#{clientService.getClient(identity.sessionId.sessionAttributes['client_id'])}" />
+
+                        <h:panelGroup rendered='#{!empty client.getLogoUri()}'>
+                            <h:graphicImage url='#{client.getLogoUri()}'/>
+                        </h:panelGroup>
+
+                        <p class="info">#{msgs['inwebo.pleaseLoginHere']}</p>
+
+                        <div class="dialog">
+                            <h:panelGrid columns="2" rowClasses="prop" columnClasses="name,value">
+                                <h:outputLabel for="username">#{msgs['inwebo.username']}</h:outputLabel>
+                                <h:inputText id="username"
+                                             value="#{credentials.username}" autocomplete="off"/>
+                                <h:outputLabel for="password">#{msgs['inwebo.password']}</h:outputLabel>
+                                <h:inputSecret id="password"
+                                               value="#{credentials.password}" autocomplete="off"/>
+                            </h:panelGrid>
+                        </div>
+
+                        <h:panelGroup rendered='#{!empty client.getPolicyUri()}'>
+                            <p>
+                                <a target="_blank" href='#{client.getPolicyUri()}'>#{msgs['inwebo.termsPrivacy']}</a>
+                            </p>
+                        </h:panelGroup>
+
+                        <div class="actionButtons">
+                            <h:commandButton id="loginButton"
+                                             value="Login"
+                                             action="#{authenticator.authenticate}" />
+                        </div>
+                    </div>
+                </div>
+            </h:panelGroup>
+        </h:form>
+
+    </ui:define>
+</ui:composition>
+
diff --git a/oxAuth/Server/integrations/inwebo/iwlogin_without_password.xhtml b/oxAuth/Server/integrations/inwebo/iwlogin_without_password.xhtml
new file mode 100644
index 00000000..847383d9
--- /dev/null
+++ b/oxAuth/Server/integrations/inwebo/iwlogin_without_password.xhtml
@@ -0,0 +1,91 @@
+<!DOCTYPE composition PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN"
+        "http://www.w3.org/TR/xhtml1/DTD/xhtml1-transitional.dtd">
+<ui:composition xmlns="http://www.w3.org/1999/xhtml"
+		xmlns:f="http://xmlns.jcp.org/jsf/core"
+                xmlns:ui="http://xmlns.jcp.org/jsf/facelets"
+                xmlns:h="http://xmlns.jcp.org/jsf/html"
+                template="/WEB-INF/incl/layout/template.xhtml">
+    <f:metadata>
+        <f:viewAction action="#{authenticator.prepareAuthenticationForStep}" if="#{not identity.loggedIn}"/>
+    </f:metadata>
+
+    <ui:define name="head">
+        <style type="text/css">
+            .login-panel {
+                border-style: solid;
+                border-width: 1px;
+                padding: 1px;
+                background-color: #FFFFFF;
+                border-color: #C4C0B9;
+            }
+
+            .login-panel-header {
+                background-color: #D4CFC7;
+                background-image: url("#{oxAuthConfigurationService.getImgLocation()}/panel_header_bg.png");
+                background-position: left top;
+                background-repeat: repeat-x;
+                border-style: solid;
+                border-width: 1px;
+                padding: 2px;
+                border-color: #D4CFC7;
+                color: #000000;
+                font-family: Arial, Verdana, sans-serif;
+                font-size: 11px;
+                font-weight: bold;
+            }
+
+            .login-panel-body {
+                padding: 10px;
+                color: #000000;
+                font-family: Arial, Verdana, sans-serif;
+                font-size: 11px;
+            }
+        </style>
+
+    </ui:define>
+
+    <ui:define name="pageTitle">#{msgs['inwebo.title']}</ui:define>
+
+    <ui:define name="body">
+
+        <h:form id="loginForm" >
+
+            <h:panelGroup rendered="#{not identity.loggedIn}">
+                <div class="login-panel">
+                    <div class="login-panel-header">#{msgs['inwebo.loginLabel']}</div>
+                    <div class="login-panel-body">
+                        <ui:param name="client" value="#{clientService.getClient(identity.sessionId.sessionAttributes['client_id'])}" />
+
+                        <h:panelGroup rendered='#{!empty client.getLogoUri()}'>
+                            <h:graphicImage url='#{client.getLogoUri()}'/>
+                        </h:panelGroup>
+
+                        <p class="info">#{msgs['inwebo.pleaseLoginHere']}</p>
+
+                        <div class="dialog">
+                            <h:panelGrid columns="2" rowClasses="prop" columnClasses="name,value">
+                                <h:outputLabel for="username">#{msgs['inwebo.username']}</h:outputLabel>
+                                <h:inputText id="username"
+                                             value="#{credentials.username}" autocomplete="off"/>
+                            </h:panelGrid>
+                        </div>
+
+                        <h:panelGroup rendered='#{!empty client.getPolicyUri()}'>
+                            <p>
+                                <a target="_blank" href='#{client.getPolicyUri()}'>#{msgs['inwebo.termsPrivacy']}</a>
+                            </p>
+                        </h:panelGroup>
+
+                        <div class="actionButtons">
+                            <h:commandButton id="loginButton"
+                                             value="Login"
+                                             action="#{authenticator.authenticate}" />
+                        </div>
+                    </div>
+                </div>
+            </h:panelGroup>
+        </h:form>
+
+    </ui:define>
+</ui:composition>
+
diff --git a/oxAuth/Server/integrations/inwebo/iwpushnotification.xhtml b/oxAuth/Server/integrations/inwebo/iwpushnotification.xhtml
new file mode 100644
index 00000000..002873b0
--- /dev/null
+++ b/oxAuth/Server/integrations/inwebo/iwpushnotification.xhtml
@@ -0,0 +1,90 @@
+<!DOCTYPE composition PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN"
+        "http://www.w3.org/TR/xhtml1/DTD/xhtml1-transitional.dtd">
+<ui:composition xmlns="http://www.w3.org/1999/xhtml"
+		xmlns:f="http://xmlns.jcp.org/jsf/core"
+                xmlns:ui="http://xmlns.jcp.org/jsf/facelets"
+                xmlns:h="http://xmlns.jcp.org/jsf/html"
+                template="/WEB-INF/incl/layout/template.xhtml">
+    <f:metadata>
+        <f:viewAction action="#{authenticator.prepareAuthenticationForStep}" if="#{not identity.loggedIn}"/>
+    </f:metadata>
+
+    <ui:define name="head">
+        <style type="text/css">
+            .login-panel {
+                border-style: solid;
+                border-width: 1px;
+                padding: 1px;
+                background-color: #FFFFFF;
+                border-color: #C4C0B9;
+            }
+
+            .login-panel-header {
+                background-color: #D4CFC7;
+                background-image: url("#{oxAuthConfigurationService.getImgLocation()}/panel_header_bg.png");
+                background-position: left top;
+                background-repeat: repeat-x;
+                border-style: solid;
+                border-width: 1px;
+                padding: 2px;
+                border-color: #D4CFC7;
+                color: #000000;
+                font-family: Arial, Verdana, sans-serif;
+                font-size: 11px;
+                font-weight: bold;
+            }
+
+            .login-panel-body {
+                padding: 10px;
+                color: #000000;
+                font-family: Arial, Verdana, sans-serif;
+                font-size: 11px;
+            }
+        </style>
+		<script type="text/javascript">
+      
+	      	function redirectToOPT()
+	      	{
+		      	
+				document.getElementById("loginForm:otp").value = "true";
+				document.getElementById("loginForm:pushButton").click();
+				
+	      	}
+        </script>
+    </ui:define>
+    <ui:define name="pageTitle">#{msgs['inwebo.push.notification.message']}</ui:define>
+    <ui:define name="body">
+        <h:form id="loginForm" rendered="#{not va_enabled}">
+        	
+            <h:panelGroup rendered="#{not identity.loggedIn}">
+                <div class="login-panel">
+                    <div class="login-panel-body">
+                        <ui:param name="client" value="#{clientService.getClient(identity.sessionId.sessionAttributes['client_id'])}" />
+
+                        <h:panelGroup rendered='#{!empty client.getLogoUri()}'>
+                            <h:graphicImage url='#{client.getLogoUri()}'/>
+                        </h:panelGroup>
+
+                        <p class="info">#{msgs['inwebo.push.notification.message']}</p>
+						<h:panelGrid columns="2" rowClasses="prop" columnClasses="name,value">
+							<h:outputLabel for="username">#{msgs['inwebo.username']}</h:outputLabel>
+							<h:inputText id="username" value="#{credentials.username}"   />
+							<h:inputHidden id="otp" value="false"   />
+						</h:panelGrid>
+                        <div class="actionButtons">
+                            <h:commandButton id="pushButton"
+                                             value="Push"
+                                             action="#{authenticator.authenticate}" />
+                                             
+                        </div>
+                        
+                        <a href="#" onclick="redirectToOPT();" >#{msgs['inwebo.authenticate.using.otp']}</a>
+                    </div>
+                </div>
+            </h:panelGroup>
+        </h:form>
+    </ui:define>
+    <!--ui:include src="/casa/casa.xhtml">
+			<ui:param name="methods" value="${identity.getWorkingParameter('methods')}"/>
+		</ui:include-->
+</ui:composition>
\ No newline at end of file
diff --git a/oxAuth/Server/integrations/inwebo/oxauth.properties b/oxAuth/Server/integrations/inwebo/oxauth.properties
new file mode 100644
index 00000000..1a7e33cc
--- /dev/null
+++ b/oxAuth/Server/integrations/inwebo/oxauth.properties
@@ -0,0 +1,19 @@
+
+#inwebo
+inwebo.title=inWebo Login
+inwebo.loginLabel=Login
+inwebo.pleaseLoginHere=Please login here
+inwebo.username=Username
+inwebo.password=Password
+inwebo.pageTitle=inWebo 2FA
+inwebo.2fa.mobile.app=inWebo Authenticator
+inwebo.authenticationToken=inWebo OTP
+inwebo.push.notification.message=Click here to push notification to your phone
+inwebo.inwebo.authenticator=inWebo Authenticator
+inwebo.otp.login.info=Enter OTP from your mobile or use Web authenticator
+inwebo.otp=OTP token
+inwebo.push.notification.rejected=Push notification has been rejected.
+inwebo.push.notification.failed=Push notification has failed
+inwebo.no.username=Please enter a registered username
+inwebo.authenticate.using.otp=Authenticate using OTP instead?
+inwebo.push.notification.timed.out.for.session=Push notification has timed out.
diff --git a/oxAuth/Server/integrations/new_acr_link/README.md b/oxAuth/Server/integrations/new_acr_link/README.md
new file mode 100644
index 00000000..8b117c77
--- /dev/null
+++ b/oxAuth/Server/integrations/new_acr_link/README.md
@@ -0,0 +1,34 @@
+# New `acr_values` link script
+Generates new authz request link replacing the original request's `acr_values` value to be sent to and handled by the login page, preserving other params.
+
+## Use Case
+User wants to present an alternatives acr_values in login page, i.e. e-mail token, certificate login, etc.
+
+## Configuration Attributes
+- `new_acr_values_x` (replace X by a number or a string) : the new acr_values value to be in the new authz request, i.e.: `forgot_password`
+- `link_text_x` (replace X by a number or a string): the text to be displayed (injected in `<a>`), i.e.: `Click here if you preffer to receive a token instead`
+
+Example:
+- `new_acr_values_1` : `forgot_password`
+- `link_text_1`: `Forgot Password`
+- `new_acr_values_2` : `certificate_login`
+- `link_text_2`: `certificate_login`
+
+## Custom login.xhtml
+Custom `login.xhtml` should be placed on `/opt/gluu/jetty/oxauth/custom/pages/auth/new_acr_link/login.xhtml`
+
+**Please notice:**: login.xhtml should have the following tag inside `<f:metadata>`: `<f:viewAction action="#{authenticator.prepareAuthenticationForStep}" />`, so `prepareForStep` method is called.
+
+Example:
+```xhtml
+<f:metadata>
+		<f:viewAction action="#{authenticator.prepareAuthenticationForStep}" />
+		<f:viewParam name="login_hint" value="#{loginAction.loginHint}" />
+</f:metadata>
+```
+
+To handle the configuration attributes in xhtml, use:
+- `new_acr_values_x` use: `#{identity.getWorkingParameter('new_acr_values_x')}`
+- `link_text_x` use: `#{identity.getWorkingParameter('link_text_x')}`
+
+Example: `#{identity.getWorkingParameter('link_text_1')}`
diff --git a/oxAuth/Server/integrations/new_acr_link/new_acr_link.py b/oxAuth/Server/integrations/new_acr_link/new_acr_link.py
new file mode 100644
index 00000000..32742bd0
--- /dev/null
+++ b/oxAuth/Server/integrations/new_acr_link/new_acr_link.py
@@ -0,0 +1,148 @@
+# oxAuth is available under the MIT License (2008). See http://opensource.org/licenses/MIT for full text.
+# Copyright (c) 2016, Gluu
+#
+# Author: Christian Eland
+#
+
+from org.gluu.service.cdi.util import CdiUtil
+from org.gluu.oxauth.security import Identity
+from org.gluu.model.custom.script.type.auth import PersonAuthenticationType
+from org.gluu.oxauth.service import AuthenticationService
+from org.gluu.util import StringHelper
+from urlparse import urlparse, parse_qsl, urlunparse
+from urllib import urlencode
+from javax.faces.context import FacesContext
+
+import java
+
+class Utils():
+    
+    def getNewAcrValuesUrl(self, new_acr_values):
+        ''' Generates authz request url link with new acr_values
+        Args:
+            new_acr_values (str): the desired new acr_values
+        Returns:
+            str: authz url with new `acr_values`
+        '''
+
+        facesContext = CdiUtil.bean(FacesContext)
+        authenticationService = CdiUtil.bean(AuthenticationService)
+
+        parameters_as_string = authenticationService.parametersAsString()
+        scheme = facesContext.getExternalContext().getRequest().getScheme()
+        server_name = facesContext.getExternalContext().getRequest().getServerName()
+
+        url_object = urlparse(
+            '%s://%s/oxauth/authorize.htm?%s' % (
+            scheme, server_name, parameters_as_string) 
+            )
+        query_dict = dict(parse_qsl(url_object.query))
+        query_dict["acr_values"] = new_acr_values
+        new_query_string = urlencode(query_dict)
+        new_url_link= urlunparse([
+            url_object.scheme, url_object.netloc, url_object.path,
+            url_object.params, new_query_string, url_object.fragment
+            ])
+        return new_url_link
+
+
+class PersonAuthentication(PersonAuthenticationType):
+    def __init__(self, currentTimeMillis):
+        self.currentTimeMillis = currentTimeMillis
+        self.utils = Utils()
+
+    def init(self, customScript,  configurationAttributes):
+        print "New Acr Link. Initialization"
+        print "New Acr Link. Initialized successfully"
+        return True   
+
+    def destroy(self, configurationAttributes):
+        print "New Acr Link. Destroy"
+        print "New Acr Link. Destroyed successfully"
+        return True
+        
+    def getAuthenticationMethodClaims(self, requestParameters):
+        return None
+        
+    def getApiVersion(self):
+        return 11
+
+    def isValidAuthenticationMethod(self, usageType, configurationAttributes):
+        return True
+
+    def getAlternativeAuthenticationMethod(self, usageType, configurationAttributes):
+        return None
+
+    def authenticate(self, configurationAttributes, requestParameters, step):
+        authenticationService = CdiUtil.bean(AuthenticationService)
+        identity = CdiUtil.bean(Identity)
+        credentials = identity.getCredentials()
+
+        if (step == 1):
+            print "New Acr Link. Authenticate for step 1"
+
+            identity = CdiUtil.bean(Identity)
+            credentials = identity.getCredentials()
+
+            user_name = credentials.getUsername()
+            user_password = credentials.getPassword()
+
+            logged_in = False
+            if (StringHelper.isNotEmptyString(user_name) and StringHelper.isNotEmptyString(user_password)):
+                logged_in = authenticationService.authenticate(user_name, user_password)
+
+            if (not logged_in):
+                return False
+
+            return True
+        else:
+            return False
+
+    def prepareForStep(self, configurationAttributes, requestParameters, step):
+        print "New Acr Link. Prepare for step %s" % step
+        if (step == 1):
+
+            identity = CdiUtil.bean(Identity)
+
+            # Fetch NEW_ACR_VALUES from custom script attribute and setWorkingParameters
+            for item in configurationAttributes:
+                if item.startswith('new_acr_values'):
+                    acr_values = configurationAttributes.get(item).getValue2()
+                    new_authz_request_link = self.utils.getNewAcrValuesUrl(acr_values)
+                    print "New Acr Link. Setting working parameter for item %s with value %s"  % (
+                        item, new_authz_request_link
+                    )
+                    identity.setWorkingParameter(item, new_authz_request_link)
+                if not item.startswith("new_acr_values"):
+                    text = configurationAttributes.get(item).getValue2()
+                    print "New Acr Link. Setting working parameter for item %s with text %s"  % (
+                        item, text
+                    )
+                    identity.setWorkingParameter(item, text)
+        else:
+            return False
+
+    def getExtraParametersForStep(self, configurationAttributes, step):
+        return None
+
+    def getCountAuthenticationSteps(self, configurationAttributes):
+        return 1
+
+    def getPageForStep(self, configurationAttributes, step):
+        print "New Acr Link. entered getPageForStep - step %s" % step
+        if step == 1:
+            print "New Acr Link. returning custom login.xhtml"
+            return "/auth/new_acr_link/login.xhtml"
+
+        return ""
+
+
+    def getNextStep(self, configurationAttributes, requestParameters, step):
+        return -1
+
+    def getLogoutExternalUrl(self, configurationAttributes, requestParameters):
+        print "Get external logout URL call"
+        return None
+
+    def logout(self, configurationAttributes, requestParameters):
+        return True
diff --git a/oxAuth/Server/integrations/otp/Installation.md b/oxAuth/Server/integrations/otp/Installation.md
new file mode 100644
index 00000000..69d455a8
--- /dev/null
+++ b/oxAuth/Server/integrations/otp/Installation.md
@@ -0,0 +1,27 @@
+This list of steps needed to do to enable SAML person authentication module.
+
+1. Confire new custom module in oxTrust:
+    - Log into oxTrust with administrative permissions.
+    - Open "Configuration→Manage Custom Scripts" page.
+    - Select "Person Authentication" tab.
+    - Click on "Add custom script configuration" link.
+    - Enter name = otp
+    - Enter level = 0-100 (priority of this method).
+    - Select usage type "Interactive".
+    - Add custom required and optional properties which specified in "Properties description.md".
+    - Copy/paste script from TotpExternalAuthenticator.py.
+    - Activate it via "Enabled" checkbox.
+    - Click "Update" button at the bottom of this page.
+
+2. Configure oxAuth to use OTP authentication by default:
+    - Log into oxTrust with administrative permissions.
+    - Open "Configuration→Manage Authentication" page.
+    - Scroll to "Default Authentication Method" panel. Select "otp" authentication mode.
+    - Click "Update" button at the bottom of this page.
+
+3. Try to log in using OTP authentication method:
+    - Wait 30 seconds and try to log in again. During this time oxAuth reload list of available person authentication modules.
+    - Open second browser or second browsing session and try to log in again. It's better to try to do that from another browser session because we can return back to previous authentication method if something will go wrong.
+
+There are log messages in this custom authentication script. In order to debug this module we can use command like this:
+tail -f /opt/tomcat/logs/wrapper.log | grep "OTP"
diff --git a/oxAuth/Server/integrations/otp/OtpExternalAuthenticator.py b/oxAuth/Server/integrations/otp/OtpExternalAuthenticator.py
new file mode 100644
index 00000000..b3cc4752
--- /dev/null
+++ b/oxAuth/Server/integrations/otp/OtpExternalAuthenticator.py
@@ -0,0 +1,617 @@
+# oxAuth is available under the MIT License (2008). See http://opensource.org/licenses/MIT for full text.
+# Copyright (c) 2016, Gluu
+#
+# Author: Yuriy Movchan
+#
+
+# Requires the following custom properties and values:
+#   otp_type: totp/hotp
+#   issuer: Gluu Inc
+#   otp_conf_file: /etc/certs/otp_configuration.json
+#
+# These are non mandatory custom properties and values:
+#   label: Gluu OTP
+#   qr_options: { width: 400, height: 400 }
+#   registration_uri: https://ce-dev.gluu.org/identity/register
+
+import jarray
+import json
+import sys
+from com.google.common.io import BaseEncoding
+from com.lochbridge.oath.otp import HOTP
+from com.lochbridge.oath.otp import HOTPValidator
+from com.lochbridge.oath.otp import HmacShaAlgorithm
+from com.lochbridge.oath.otp import TOTP
+from com.lochbridge.oath.otp.keyprovisioning import OTPAuthURIBuilder
+from com.lochbridge.oath.otp.keyprovisioning import OTPKey
+from com.lochbridge.oath.otp.keyprovisioning.OTPKey import OTPType
+from java.security import SecureRandom
+from java.util import Arrays
+from java.util.concurrent import TimeUnit
+from javax.faces.application import FacesMessage
+from org.gluu.jsf2.message import FacesMessages
+from org.gluu.model.custom.script.type.auth import PersonAuthenticationType
+from org.gluu.oxauth.security import Identity
+from org.gluu.oxauth.service import AuthenticationService, SessionIdService
+from org.gluu.oxauth.service.common import UserService
+from org.gluu.oxauth.util import ServerUtil
+from org.gluu.service.cdi.util import CdiUtil
+from org.gluu.util import StringHelper
+
+
+class PersonAuthentication(PersonAuthenticationType):
+    def __init__(self, currentTimeMillis):
+        self.currentTimeMillis = currentTimeMillis
+
+    def init(self, customScript, configurationAttributes):
+        print "OTP. Initialization"
+
+        if not configurationAttributes.containsKey("otp_type"):
+            print "OTP. Initialization. Property otp_type is mandatory"
+            return False
+        self.otpType = configurationAttributes.get("otp_type").getValue2()
+
+        if not self.otpType in ["hotp", "totp"]:
+            print "OTP. Initialization. Property value otp_type is invalid"
+            return False
+
+        if not configurationAttributes.containsKey("issuer"):
+            print "OTP. Initialization. Property issuer is mandatory"
+            return False
+        self.otpIssuer = configurationAttributes.get("issuer").getValue2()
+
+        self.customLabel = None
+        if configurationAttributes.containsKey("label"):
+            self.customLabel = configurationAttributes.get("label").getValue2()
+
+        self.customQrOptions = {}
+        if configurationAttributes.containsKey("qr_options"):
+            self.customQrOptions = configurationAttributes.get("qr_options").getValue2()
+
+        self.registrationUri = None
+        if configurationAttributes.containsKey("registration_uri"):
+            self.registrationUri = configurationAttributes.get("registration_uri").getValue2()
+
+        validOtpConfiguration = self.loadOtpConfiguration(configurationAttributes)
+        if not validOtpConfiguration:
+            return False
+
+        print "OTP. Initialized successfully"
+        return True
+
+    def destroy(self, configurationAttributes):
+        print "OTP. Destroy"
+        print "OTP. Destroyed successfully"
+        return True
+
+    def getApiVersion(self):
+        return 11
+        
+    def getAuthenticationMethodClaims(self, requestParameters):
+        return None
+
+    def getNextStep(self, configurationAttributes, requestParameters, step):
+        print "getNextStep Invoked"
+        # If user not pass current step change step to previous
+        identity = CdiUtil.bean(Identity)
+        retry_current_step = identity.getWorkingParameter("retry_current_step")
+        if retry_current_step:
+            print "OTP. Get next step. Retrying current step %s" % step
+            # Remove old QR code
+            #identity.setWorkingParameter("super_gluu_request", "timeout")
+            resultStep = step
+            return resultStep
+        return -1
+
+    def isValidAuthenticationMethod(self, usageType, configurationAttributes):
+        return True
+
+    def getAlternativeAuthenticationMethod(self, usageType, configurationAttributes):
+        return None
+
+    def authenticate(self, configurationAttributes, requestParameters, step):
+        authenticationService = CdiUtil.bean(AuthenticationService)
+
+        identity = CdiUtil.bean(Identity)
+        credentials = identity.getCredentials()
+
+        self.setRequestScopedParameters(identity)
+
+        if step == 1:
+            print "OTP. Authenticate for step 1"
+            authenticated_user = self.processBasicAuthentication(credentials)
+            if authenticated_user == None:
+                return False
+
+            otp_auth_method = "authenticate"
+            # Uncomment this block if you need to allow user second OTP registration
+            #enrollment_mode = ServerUtil.getFirstValue(requestParameters, "loginForm:registerButton")
+            #if StringHelper.isNotEmpty(enrollment_mode):
+            #    otp_auth_method = "enroll"
+
+            if otp_auth_method == "authenticate":
+                user_enrollments = self.findEnrollments(authenticated_user.getUserId())
+                if len(user_enrollments) == 0:
+                    otp_auth_method = "enroll"
+                    print "OTP. Authenticate for step 1. There is no OTP enrollment for user '%s'. Changing otp_auth_method to '%s'" % (authenticated_user.getUserId(), otp_auth_method)
+
+            if otp_auth_method == "enroll":
+                print "OTP. Authenticate for step 1. Setting count steps: '%s'" % 3
+                identity.setWorkingParameter("otp_count_login_steps", 3)
+
+            print "OTP. Authenticate for step 1. otp_auth_method: '%s'" % otp_auth_method
+            identity.setWorkingParameter("otp_auth_method", otp_auth_method)
+
+            return True
+        elif step == 2:
+            print "OTP. Authenticate for step 2"
+
+            authenticationService = CdiUtil.bean(AuthenticationService)
+            user = authenticationService.getAuthenticatedUser()
+            if user == None:
+                print "OTP. Authenticate for step 2. Failed to determine user name"
+                return False
+
+            session_id_validation = self.validateSessionId(identity)
+            if not session_id_validation:
+                return False
+
+            # Restore state from session
+            identity.setWorkingParameter("retry_current_step", False)
+            otp_auth_method = identity.getWorkingParameter("otp_auth_method")
+            if otp_auth_method == 'enroll':
+                auth_result = ServerUtil.getFirstValue(requestParameters, "auth_result")
+                if not StringHelper.isEmpty(auth_result):
+                    # defect fix #1225  - Retry the step, show QR code again
+                    if auth_result == 'timeout':
+						print "OTP. QR-code timeout. Authenticate for step %s. Reinitializing current step" % step
+						identity.setWorkingParameter("retry_current_step", True)
+						return True
+
+                    print "OTP. Authenticate for step 2. User not enrolled OTP"
+                    return False
+
+                print "OTP. Authenticate for step 2. Skipping this step during enrollment"
+                return True
+
+            otp_auth_result = self.processOtpAuthentication(requestParameters, user.getUserId(), identity, otp_auth_method)
+            print "OTP. Authenticate for step 2. OTP authentication result: '%s'" % otp_auth_result
+
+            return otp_auth_result
+        elif step == 3:
+            print "OTP. Authenticate for step 3"
+
+            authenticationService = CdiUtil.bean(AuthenticationService)
+            user = authenticationService.getAuthenticatedUser()
+            if user == None:
+                print "OTP. Authenticate for step 2. Failed to determine user name"
+                return False
+
+            session_id_validation = self.validateSessionId(identity)
+            if not session_id_validation:
+                return False
+
+            # Restore state from session
+            otp_auth_method = identity.getWorkingParameter("otp_auth_method")
+            if otp_auth_method != 'enroll':
+                return False
+
+            otp_auth_result = self.processOtpAuthentication(requestParameters, user.getUserId(), identity, otp_auth_method)
+            print "OTP. Authenticate for step 3. OTP authentication result: '%s'" % otp_auth_result
+
+            return otp_auth_result
+        else:
+            return False
+
+    def prepareForStep(self, configurationAttributes, requestParameters, step):
+        identity = CdiUtil.bean(Identity)
+        credentials = identity.getCredentials()
+
+        self.setRequestScopedParameters(identity)
+
+        if step == 1:
+            print "OTP. Prepare for step 1"
+
+            return True
+        elif step == 2:
+            print "OTP. Prepare for step 2"
+
+            session_id_validation = self.validateSessionId(identity)
+            if not session_id_validation:
+                return False
+
+            otp_auth_method = identity.getWorkingParameter("otp_auth_method")
+            print "OTP. Prepare for step 2. otp_auth_method: '%s'" % otp_auth_method
+
+            if otp_auth_method == 'enroll':
+                authenticationService = CdiUtil.bean(AuthenticationService)
+                user = authenticationService.getAuthenticatedUser()
+                if user == None:
+                    print "OTP. Prepare for step 2. Failed to load user enty"
+                    return False
+
+                if self.otpType == "hotp":
+                    otp_secret_key = self.generateSecretHotpKey()
+                    otp_enrollment_request = self.generateHotpSecretKeyUri(otp_secret_key, self.otpIssuer, user.getAttribute("displayName"))
+                elif self.otpType == "totp":
+                    otp_secret_key = self.generateSecretTotpKey()
+                    otp_enrollment_request = self.generateTotpSecretKeyUri(otp_secret_key, self.otpIssuer, user.getAttribute("displayName"))
+                else:
+                    print "OTP. Prepare for step 2. Unknown OTP type: '%s'" % self.otpType
+                    return False
+
+                print "OTP. Prepare for step 2. Prepared enrollment request for user: '%s'" % user.getUserId()
+                identity.setWorkingParameter("otp_secret_key", self.toBase64Url(otp_secret_key))
+                identity.setWorkingParameter("otp_enrollment_request", otp_enrollment_request)
+
+            return True
+        elif step == 3:
+            print "OTP. Prepare for step 3"
+
+            session_id_validation = self.validateSessionId(identity)
+            if not session_id_validation:
+                return False
+
+            otp_auth_method = identity.getWorkingParameter("otp_auth_method")
+            print "OTP. Prepare for step 3. otp_auth_method: '%s'" % otp_auth_method
+
+            if otp_auth_method == 'enroll':
+                return True
+
+        return False
+
+    def getExtraParametersForStep(self, configurationAttributes, step):
+        return Arrays.asList("otp_auth_method", "otp_count_login_steps", "otp_secret_key", "otp_enrollment_request","retry_current_step")
+
+    def getCountAuthenticationSteps(self, configurationAttributes):
+        identity = CdiUtil.bean(Identity)
+
+        if identity.isSetWorkingParameter("otp_count_login_steps"):
+            return StringHelper.toInteger("%s" % identity.getWorkingParameter("otp_count_login_steps"))
+        else:
+            return 2
+
+    def getPageForStep(self, configurationAttributes, step):
+        if step == 2:
+            identity = CdiUtil.bean(Identity)
+
+            otp_auth_method = identity.getWorkingParameter("otp_auth_method")
+            print "OTP. Gep page for step 2. otp_auth_method: '%s'" % otp_auth_method
+
+            if otp_auth_method == 'enroll':
+                return "/auth/otp/enroll.xhtml"
+            else:
+                return "/auth/otp/otplogin.xhtml"
+        elif step == 3:
+            return "/auth/otp/otplogin.xhtml"
+
+        return ""
+
+
+    def getLogoutExternalUrl(self, configurationAttributes, requestParameters):
+        print "Get external logout URL call"
+        return None
+
+    def logout(self, configurationAttributes, requestParameters):
+        return True
+
+    def setRequestScopedParameters(self, identity):
+        if self.registrationUri != None:
+            identity.setWorkingParameter("external_registration_uri", self.registrationUri)
+
+        if self.customLabel != None:
+            identity.setWorkingParameter("qr_label", self.customLabel)
+
+        identity.setWorkingParameter("qr_options", self.customQrOptions)
+
+    def loadOtpConfiguration(self, configurationAttributes):
+        print "OTP. Load OTP configuration"
+        if not configurationAttributes.containsKey("otp_conf_file"):
+            return False
+
+        otp_conf_file = configurationAttributes.get("otp_conf_file").getValue2()
+
+        # Load configuration from file
+        f = open(otp_conf_file, 'r')
+        try:
+            otpConfiguration = json.loads(f.read())
+        except:
+            print "OTP. Load OTP configuration. Failed to load configuration from file:", otp_conf_file
+            return False
+        finally:
+            f.close()
+
+        # Check configuration file settings
+        try:
+            self.hotpConfiguration = otpConfiguration["hotp"]
+            self.totpConfiguration = otpConfiguration["totp"]
+            
+            hmacShaAlgorithm = self.totpConfiguration["hmacShaAlgorithm"]
+            hmacShaAlgorithmType = None
+
+            if StringHelper.equalsIgnoreCase(hmacShaAlgorithm, "sha1"):
+                hmacShaAlgorithmType = HmacShaAlgorithm.HMAC_SHA_1
+            elif StringHelper.equalsIgnoreCase(hmacShaAlgorithm, "sha256"):
+                hmacShaAlgorithmType = HmacShaAlgorithm.HMAC_SHA_256
+            elif StringHelper.equalsIgnoreCase(hmacShaAlgorithm, "sha512"):
+                hmacShaAlgorithmType = HmacShaAlgorithm.HMAC_SHA_512
+            else:
+                print "OTP. Load OTP configuration. Invalid TOTP HMAC SHA algorithm: '%s'" % hmacShaAlgorithm
+                 
+            self.totpConfiguration["hmacShaAlgorithmType"] = hmacShaAlgorithmType
+        except:
+            print "OTP. Load OTP configuration. Invalid configuration file '%s' format. Exception: '%s'" % (otp_conf_file, sys.exc_info()[1])
+            return False
+        
+
+        return True
+
+    def processBasicAuthentication(self, credentials):
+        userService = CdiUtil.bean(UserService)
+        authenticationService = CdiUtil.bean(AuthenticationService)
+
+        user_name = credentials.getUsername()
+        user_password = credentials.getPassword()
+
+        logged_in = False
+        if StringHelper.isNotEmptyString(user_name) and StringHelper.isNotEmptyString(user_password):
+            logged_in = authenticationService.authenticate(user_name, user_password)
+
+        if not logged_in:
+            return None
+
+        find_user_by_uid = authenticationService.getAuthenticatedUser()
+        if find_user_by_uid == None:
+            print "OTP. Process basic authentication. Failed to find user '%s'" % user_name
+            return None
+        
+        return find_user_by_uid
+
+    def findEnrollments(self, user_name, skipPrefix = True):
+        result = []
+
+        userService = CdiUtil.bean(UserService)
+        user = userService.getUser(user_name, "oxExternalUid")
+        if user == None:
+            print "OTP. Find enrollments. Failed to find user"
+            return result
+        
+        user_custom_ext_attribute = userService.getCustomAttribute(user, "oxExternalUid")
+        if user_custom_ext_attribute == None:
+            return result
+
+        otp_prefix = "%s:" % self.otpType
+        
+        otp_prefix_length = len(otp_prefix) 
+        for user_external_uid in user_custom_ext_attribute.getValues():
+            index = user_external_uid.find(otp_prefix)
+            if index != -1:
+                if skipPrefix:
+                    enrollment_uid = user_external_uid[otp_prefix_length:]
+                else:
+                    enrollment_uid = user_external_uid
+
+                result.append(enrollment_uid)
+        
+        return result
+
+    def validateSessionId(self, identity):
+        session = CdiUtil.bean(SessionIdService).getSessionId()
+        if session == None:
+            print "OTP. Validate session id. Failed to determine session_id"
+            return False
+
+        otp_auth_method = identity.getWorkingParameter("otp_auth_method")
+        if not otp_auth_method in ['enroll', 'authenticate']:
+            print "OTP. Validate session id. Failed to authenticate user. otp_auth_method: '%s'" % otp_auth_method
+            return False
+
+        return True
+
+    def processOtpAuthentication(self, requestParameters, user_name, identity, otp_auth_method):
+        facesMessages = CdiUtil.bean(FacesMessages)
+        facesMessages.setKeepMessages()
+
+        userService = CdiUtil.bean(UserService)
+
+        otpCode = ServerUtil.getFirstValue(requestParameters, "loginForm:otpCode")
+        if StringHelper.isEmpty(otpCode):
+            facesMessages.add(FacesMessage.SEVERITY_ERROR, "Failed to authenticate. OTP code is empty")
+            print "OTP. Process OTP authentication. otpCode is empty"
+
+            return False
+        
+        if otp_auth_method == "enroll":
+            # Get key from session
+            otp_secret_key_encoded = identity.getWorkingParameter("otp_secret_key")
+            if otp_secret_key_encoded == None:
+                print "OTP. Process OTP authentication. OTP secret key is invalid"
+                return False
+            
+            otp_secret_key = self.fromBase64Url(otp_secret_key_encoded)
+
+            if self.otpType == "hotp":
+                validation_result = self.validateHotpKey(otp_secret_key, 1, otpCode)
+                
+                if (validation_result != None) and validation_result["result"]:
+                    print "OTP. Process HOTP authentication during enrollment. otpCode is valid"
+                    # Store HOTP Secret Key and moving factor in user entry
+                    otp_user_external_uid = "hotp:%s;%s" % ( otp_secret_key_encoded, validation_result["movingFactor"] )
+
+                    # Add otp_user_external_uid to user's external GUID list
+                    find_user_by_external_uid = userService.addUserAttribute(user_name, "oxExternalUid", otp_user_external_uid, True)
+                    if find_user_by_external_uid != None:
+                        return True
+
+                    print "OTP. Process HOTP authentication during enrollment. Failed to update user entry"
+            elif self.otpType == "totp":
+                validation_result = self.validateTotpKey(otp_secret_key, otpCode,user_name)
+                if (validation_result != None) and validation_result["result"]:
+                    print "OTP. Process TOTP authentication during enrollment. otpCode is valid"
+                    # Store TOTP Secret Key and moving factor in user entry
+                    otp_user_external_uid = "totp:%s" % otp_secret_key_encoded
+
+                    # Add otp_user_external_uid to user's external GUID list
+                    find_user_by_external_uid = userService.addUserAttribute(user_name, "oxExternalUid", otp_user_external_uid, True)
+                    if find_user_by_external_uid != None:
+                        return True
+
+                    print "OTP. Process TOTP authentication during enrollment. Failed to update user entry"
+        elif otp_auth_method == "authenticate":
+            user_enrollments = self.findEnrollments(user_name)
+
+            if len(user_enrollments) == 0:
+                print "OTP. Process OTP authentication. There is no OTP enrollment for user '%s'" % user_name
+                facesMessages.add(FacesMessage.SEVERITY_ERROR, "There is no valid OTP user enrollments")
+                return False
+
+            if self.otpType == "hotp":
+                for user_enrollment in user_enrollments:
+                    user_enrollment_data = user_enrollment.split(";")
+                    otp_secret_key_encoded = user_enrollment_data[0]
+
+                    # Get current moving factor from user entry
+                    moving_factor = StringHelper.toInteger(user_enrollment_data[1])
+                    otp_secret_key = self.fromBase64Url(otp_secret_key_encoded)
+
+                    # Validate TOTP
+                    validation_result = self.validateHotpKey(otp_secret_key, moving_factor, otpCode)
+                    if (validation_result != None) and validation_result["result"]:
+                        print "OTP. Process HOTP authentication during authentication. otpCode is valid"
+                        otp_user_external_uid = "hotp:%s;%s" % ( otp_secret_key_encoded, moving_factor )
+                        new_otp_user_external_uid = "hotp:%s;%s" % ( otp_secret_key_encoded, validation_result["movingFactor"] )
+    
+                        # Update moving factor in user entry
+                        find_user_by_external_uid = userService.replaceUserAttribute(user_name, "oxExternalUid", otp_user_external_uid, new_otp_user_external_uid, True)
+                        if find_user_by_external_uid != None:
+                            return True
+    
+                        print "OTP. Process HOTP authentication during authentication. Failed to update user entry"
+            elif self.otpType == "totp":
+                for user_enrollment in user_enrollments:
+                    otp_secret_key = self.fromBase64Url(user_enrollment)
+
+                    # Validate TOTP
+                    validation_result = self.validateTotpKey(otp_secret_key, otpCode, user_name)
+                    if (validation_result != None) and validation_result["result"]:
+                        print "OTP. Process TOTP authentication during authentication. otpCode is valid"
+                        return True
+
+        facesMessages.add(FacesMessage.SEVERITY_ERROR, "Failed to authenticate. OTP code is invalid")
+        print "OTP. Process OTP authentication. OTP code is invalid"
+
+        return False
+
+    # Shared HOTP/TOTP methods
+    def generateSecretKey(self, keyLength):
+        bytes = jarray.zeros(keyLength, "b")
+        secureRandom = SecureRandom()
+        secureRandom.nextBytes(bytes)
+        
+        return bytes
+    
+    # HOTP methods
+    def generateSecretHotpKey(self):
+        keyLength = self.hotpConfiguration["keyLength"]
+        
+        return self.generateSecretKey(keyLength)
+
+    def generateHotpKey(self, secretKey, movingFactor):
+        digits = self.hotpConfiguration["digits"]
+
+        hotp = HOTP.key(secretKey).digits(digits).movingFactor(movingFactor).build()
+        
+        return hotp.value()
+
+    def validateHotpKey(self, secretKey, movingFactor, totpKey):
+        lookAheadWindow = self.hotpConfiguration["lookAheadWindow"]
+        digits = self.hotpConfiguration["digits"]
+
+        htopValidationResult = HOTPValidator.lookAheadWindow(lookAheadWindow).validate(secretKey, movingFactor, digits, totpKey)
+        if htopValidationResult.isValid():
+            return { "result": True, "movingFactor": htopValidationResult.getNewMovingFactor() }
+
+        return { "result": False, "movingFactor": None }
+
+    def generateHotpSecretKeyUri(self, secretKey, issuer, userDisplayName):
+        digits = self.hotpConfiguration["digits"]
+
+        secretKeyBase32 = self.toBase32(secretKey)
+        otpKey = OTPKey(secretKeyBase32, OTPType.HOTP)
+        label = issuer + " %s" % userDisplayName
+
+        otpAuthURI = OTPAuthURIBuilder.fromKey(otpKey).label(label).issuer(issuer).digits(digits).build()
+
+        return otpAuthURI.toUriString()
+
+    # TOTP methods
+    def generateSecretTotpKey(self):
+        keyLength = self.totpConfiguration["keyLength"]
+        
+        return self.generateSecretKey(keyLength)
+
+    def generateTotpKey(self, secretKey):
+        digits = self.totpConfiguration["digits"]
+        timeStep = self.totpConfiguration["timeStep"]
+        hmacShaAlgorithmType = self.totpConfiguration["hmacShaAlgorithmType"]
+
+        totp = TOTP.key(secretKey).digits(digits).timeStep(TimeUnit.SECONDS.toMillis(timeStep)).hmacSha(hmacShaAlgorithmType).build()
+        
+        return totp.value()
+
+    def validateTotpKey(self, secretKey, totpKey, user_name):
+        localTotpKey = self.generateTotpKey(secretKey)
+        cachedOTP = self.getCachedOTP(user_name)
+
+        if StringHelper.equals(localTotpKey, totpKey) and not StringHelper.equals(localTotpKey, cachedOTP):
+            userService = CdiUtil.bean(UserService)
+            if cachedOTP is None:
+                userService.addUserAttribute(user_name, "oxOTPCache",localTotpKey)
+            else :
+                userService.replaceUserAttribute(user_name, "oxOTPCache", cachedOTP, localTotpKey)
+            print "OTP. Caching OTP: '%s'" % localTotpKey
+            return { "result": True }
+        return { "result": False }
+	
+    def getCachedOTP(self, user_name):
+        userService = CdiUtil.bean(UserService)
+        user = userService.getUser(user_name, "oxOTPCache")
+        if user is None:
+            print "OTP. Get Cached OTP. Failed to find OTP"
+            return None
+        customAttribute = userService.getCustomAttribute(user, "oxOTPCache")
+        
+        if customAttribute is None:
+            print "OTP. Custom attribute is null"
+            return None
+        user_cached_OTP = customAttribute.getValue()
+        if user_cached_OTP is None:
+            print "OTP. no OTP is present in LDAP"
+            return None
+        
+        print "OTP.Cached OTP: '%s'" % user_cached_OTP
+        return user_cached_OTP
+        
+    def generateTotpSecretKeyUri(self, secretKey, issuer, userDisplayName):
+        digits = self.totpConfiguration["digits"]
+        timeStep = self.totpConfiguration["timeStep"]
+
+        secretKeyBase32 = self.toBase32(secretKey)
+        otpKey = OTPKey(secretKeyBase32, OTPType.TOTP)
+        label = issuer + " %s" % userDisplayName
+
+        otpAuthURI = OTPAuthURIBuilder.fromKey(otpKey).label(label).issuer(issuer).digits(digits).timeStep(TimeUnit.SECONDS.toMillis(timeStep)).build()
+
+        return otpAuthURI.toUriString()
+
+    # Utility methods
+    def toBase32(self, bytes):
+        return BaseEncoding.base32().omitPadding().encode(bytes)
+
+    def toBase64Url(self, bytes):
+        return BaseEncoding.base64Url().encode(bytes)
+
+    def fromBase64Url(self, chars):
+        return BaseEncoding.base64Url().decode(chars)
+
+
diff --git a/oxAuth/Server/integrations/otp/Properties description.md b/oxAuth/Server/integrations/otp/Properties description.md
new file mode 100644
index 00000000..0b59d260
--- /dev/null
+++ b/oxAuth/Server/integrations/otp/Properties description.md	
@@ -0,0 +1,23 @@
+This is a person authentication module for oxAuth that enables one-time password for user authentication.
+
+The module has a few properties:
+
+1) otp_type - It's mandatory property. It's specify OTP mode: HOTP/ TOTP.
+   Allowed values: hotp/totp
+   Example: hotp
+
+2) issuer - It's mandatory property. It's company name.
+   Example: Gluu Inc
+
+3) otp_conf_file - It's mandatory property. It's specify path to OTP configuration JSON file.
+   Example: /etc/certs/otp_configuration.json
+
+4) label - It's label inside QR code. It's optional property.
+    Example: Gluu OTP
+
+5) qr_options - Specify width and height of QR image. It's optional property.
+    Example: qr_options: { width: 400, height: 400 }
+
+6) registration_uri - It's URL to page where user can register new account. It's optional property.
+    Example: https://ce-dev.gluu.org/identity/register
+    
\ No newline at end of file
diff --git a/oxAuth/Server/integrations/otp/Readme.md b/oxAuth/Server/integrations/otp/Readme.md
new file mode 100644
index 00000000..4928b363
--- /dev/null
+++ b/oxAuth/Server/integrations/otp/Readme.md
@@ -0,0 +1,5 @@
+# One-Time Password (OTP) Authentication
+
+Gluu's OTP interception script uses the two-factor event/counter-based HOTP algorithm [RFC4226](https://tools.ietf.org/html/rfc4226) and the time-based TOTP algorithm [RFC6238](https://tools.ietf.org/html/rfc6238).
+
+In order to use this authentication mechanism users will need to install a mobile authenticator, like [Google Authenticator 2](https://play.google.com/store/apps/details?id=com.google.android.apps.authenticator2), that supports HOTP/TOTP.
diff --git a/oxAuth/Server/integrations/otp/img/gluu_otp_integration_authentication_workflow.png b/oxAuth/Server/integrations/otp/img/gluu_otp_integration_authentication_workflow.png
new file mode 100644
index 0000000000000000000000000000000000000000..4397d9d7b0805c341510b0168c6f6aaa738462fd
GIT binary patch
literal 64598
zcmdSBcUaGV*gpI&*@cuui-gb+l6EK|B&0McNqcEeyPZU(NupgU?TMxqZB1>JwD)?>
zcfQ~Ici;E#_s@MC&+{D5^Z6dfH=p{9_qblybzbLrUN4u+m!xSn?A$;Q1kJg#l2-_V
zih>|kMXg(d-{|RyZNrZ>8Zy$7#4`Ec>zoK5g4jizlRSCND(H8sr5(Nb+}e?<@M+5R
z1sor@xQ1PO=ORJ1`^srLuC<@7U6;5xcR80>J3XM8<XY#tnu%qb_o@j>*9V{F_Hv%}
z4tPdYy?b}*`254>jMj=jcT#U#`pjmlC)l67lRF-)ojd<qKv?#U_BLADEwn2Sx!}I8
ze!}_hqeN7ZY8U&;qk269#XrBj_dtsH`%CuVo3u`Ue|vWS|IIHgc@XNjw8L?}x&2vC
zko&i9mmfWT{6;?Jy8j6i_D!rJcTJe2<c^8!8+7&cJ;h&->D5zj7Ms~s86?;h|HUG3
zpeXEkX=P;*i)G6#^Tnmb`8S*!0tAfye7DLru*=zd$;jnx>IZEVQ!_J@<;CeeVq&aI
zOG}aJd17m5cHXuWmz3;Q;-cI_yMvbYLf~;4)hvrb+u@w2Z>7D$!o#Tw3ky%!%^YUn
zR(h0b(5&&NC4-;gw3O89^XJbScNVPA9<LNmpY07a!5?-uvk4mZe0_Ph<~_~zcom(L
zir$Jq3c`MVYSPsz`+izMKetJ(d{?noan^9In^|Awo9t}n?K~<HH*da<_`=R!Eh;5h
zP;+t%t+kt=S?|sI*c$;&xg(!9T8)+NuL~WTb@RP7P?uRz;6j&Z+;OU6(N?&tEA<#d
zN{@n%ufI{=qQ%0X`toPjZHEr))^d6kc3tcm<W97bVNP)o)nuThz5n_1DI(uXe93ug
zsQK;3kM!Tae`mI3XWy)W8~ZD76PuX(af7DUI40s-ik?FGtD|dMGtD1{aW*Dut_`v7
z-LWuHBTEqC;^NGLrc@ULkEb+-`U+(DHofrk+jHp9#^Ky~o~2PQM}i1AZs3a36t;J7
zJH;#Il$3O&Hb!ByACKxO3yb3ebuoR3R@pkZGYq&h#}l>7-J7rDF+1Z`@8IlQk}_jL
zu!k+r{d~B&mNMT%pv^f>IW5enJ$D@qjnvt*>kM-yuZKrOyu}41;zMHda0ht2zEo9h
zUcY|5zle2G=7qsxilpS^QG5XV?%fo4+-*tc+jl8QQOmZgs!J`~idI%+lq%qu&V&4X
ziI2K<8xnHoqDz^~x~BU3`|q}9@}D|=+B+aXw|clKMelo-rIDnR)NT<GW>MRz0zY+!
z{t-pS;c46kMnO{!td1>obPu<y+tCsq44RKm{QAD?)2B~&tHale&HP-I=I%Bt&+IGK
zzEC48{w6)0kwxg<;RD3NOqUm<&^^wrbab>^wm6N97~ku!Ud?n||HDqNxWw-}y-uDx
zxBk6ssOK4vox3?X*9|qLe0j>|@M~Mwok4$v1T~Lb`+0mbWrK<t&67<muIdi6@6HQz
zcMV=(RvK?<Yk0MnTj`@y80W8=2(QwyA`hn1a`XiS1^yG?6V$~yT_5;zD+{qC$2DXo
z#>R4S?B5?VihCOVHGOtw=5FrTIhok_o!i;jRkyOUZ>9CV6fCr!px8xzN1erBecaXN
z)_XM<uQ%^#Y7EfjPC3BM{qm@GWl4~rS*^JTlR*6OrH$Kp&R)6l{9Nc0X$_6AAaTdG
zP6y=_T`iM9fp)tZjrqn##mQx?3;AY|#fch*d5T@h+EwvW=`qUnA8vg)xcL6vJD0pX
z$Co{9b|WV}yxdYW`R_3L=+wNADqC6{c9fBja4Iygx3jyA>vFufpeb{plTWQaPFcXs
zpxu62)ypd|MKc%i$Yr>lnVG9O)gal{j>Y54caerMq2%twVpck0D?L32A`+*kS?u|0
z!rR+>H#@r@ue$HgpEoIX`Ru!BDs)FC!F=5004L`&PZr?~#CmG#YoTrdtm+Ex8)?1O
z64yycPN)|dS(%xd#-^5)mdZ8PC8)RS3M=n7_HAmk5t;k-wysFrtoK67V)Z+jcOO1n
zet#)An#Xn^DuV0J^xR;AUykkc`I9H_FANzuUiC}UsVUN!-^3zR;zGBdLs(dO>QCz-
zc6Q}deOf6wDkqM;drLn(T)TJAp3|Z(*XX5E4O?~1^rMxJTaDZ-EiLtya$|VKHQb(;
zcUxP#jL9hb4Uf#FOBVC#iumsB6uSZijN+5@KRsA|<=Qol)vH&Jb-M9JFMc#=zJ7Ii
zDoF8Ff?jiK9P<fd30F5at*<W*42&U3*xI#l#m)atuBz1%Xfb|B{uxPBtH7C-QX<oG
z_>b?X`M#<YcelMv0*2R`9p;D9*xARvOS8S2$gvvLprxJtlQmqc6?oj>@3rijeE05M
zb()cSN~l(uue|V+_?_z7#gCoOR+05&ju)9_(nG`AI-|})AznqUd3JX8hJixs`Y>xI
zJugJ;c|$|Plu;)2Qsa)#t7&OVD=Osu%m->qI~_b^iAy0OQ9PSBY)EQso8hfnvq#$V
zS_4z)IxgkZ3#uW$zIVuLm1;X}NSiU|C*9SPw=m}B?A+bcbHlw=wM&DCmsi%#-u~j!
z6`hKAGJe1Rs1GtKDNVOpwnvpECnwkS+`4s(l}$iqkW4=2H*9P&GZ$t?yQ*Upczv{d
z({=5FOU<~uG)jBQ{PrF@cFk#do7&P`LtemysKswZTH059nos6Le0_bf=-xGCj?VFE
z7DX;QF3tAwd%TG$YWQKYo4xudS#_5V9XWEve*CUoRB{HEW{PT#&17t9^5mMvD@<RI
z<YckxyPNb9UY7dokJ*27s=%n9cH1^BlRR9kfw82dBwbk^*$|N%TJ0t#CIfTGkx^w;
zA)+xnM&DlFuSkqCydfv&?d*K*`t<-VUQW&r=`F2Y8io}C{FMF<w?8+&IsNo@(?^{n
zC?GmNlHRp03fHvFG=42BtLqU%-6XF7@^=K!Aug_uCqjC4HU2sAif6k|Q#sxH({e*n
zQt9K}-T8GfH=SY}`M1;dw`3#}&+xgK9OQb^oBeRF|H?(pyL!Pni9$ztBqeQ%*a_P2
zjwyN#m+aqWnD(5H8M+>)^e*-2l3t`Bx6#;;AZ?`Q=u2u})*=ONM&5+j*x2Lyy0lQ2
z<);i5cIbEIeSGQb8(p@zxX3^JHuHpspTf0kjlaL(uKs!Rlyxg{#Bs^ar)N8_+6%e2
zXQKQ>m2Ivy<c+#y?b)BA<XLgG>yA!vLPA1eU-MQ4_k<Ml%I*wblf<GCT1Its_1U4c
z_Szwbg;D9r<sCbA44l}(^U(76%86*&45c(QnY+g`s%saKK|C`=NJ=iheEvLa$#LrU
z56%MzqN;nb`uvY-dlnjqa34H)e$nydNs4aWHwyMD8K#Au7D~g723zRquW8-5aKU|U
z8EG?exe8&uJp8+%>xNrRaq(2b5lauZ3{-ap;v1HZPmh<_94FAldfJm&7DFQlg^q7;
zPS;H-T)+N)DK9dzB&zWvb6`YK#d8#u$z^M6>*LKrLb*yOeEKTg%bX}y5yZA_+x$gs
zj}x!Y`Rx1EmLvT9`E!CW>n%SiCH456t+r<Bgp$D2;&l5SZf+XF_}91Hv1&O=<9s(X
zjAARv)EDwM_0jFWbWN6XGxG^2R#BUqT}2+8JUnMmwsIGzlqY`wpqrl>T1Cvv&1rNN
zxP(yukbHZ_qjq^2d5=GpO=f?qK<ho9x#i)!<+je{Ec3zZntVU5_;hIuWmU=s3qAhw
zbn{z>#kpVK-aITlu5LH_7%$D8-{d7a#i*gFd9jIcZUYUCykAduH?CMo$%jL%(pDNR
zu{sU$!E=sX2~;9B6Pz~Fe>}LAQzOfM?@+hx8o3s-f8V|^gXUDi3F(J|FwE#-AS4ph
zatNZ#k9V!HdF<A$TUEB2nXgV&Hq2O!l6K9}0ZTMSoRR6bN8KxOjq*>cSxHECw^9o{
zs~$VNtjlfo!8jvkkHN<yOS*BW$zNy3`+9t2#pL`Z2kK;M9Ju3Rcq$X}mXuUOgMzpa
zL8iEz=Pq5k?#I;berZrFcBmnwhhLDVqoZRW3Fj<x=gxa)XRaGbl0-?Q+}r30IySZh
z!|~a^(6YxHw|BSM4)gc7k7QVOc}0pWjC>)J`Pxm)&ycH|w|VU;?sYLqu3!4HS^QYW
z@0O7v0-v~@APd0LqK38;D&Boc^*4^#&)xGep!Q1*Y^QCXQD#zMNluxJii#RY!f`fr
zbfpPg{~OO_Qa*A;PHy+rh)XH6)*4cBw~O3&$cruOUMdT;vz4XN2TFB6X4KZAQI7JN
zq+P{&aX#haC7B>#%=9`wTfkP9rl%>3P088&iudl_TX=i+=ck8KlHHZU!}LVb-S1%s
z7Znd3D=a98Ty9U)eCq6+Jz1~J(7ZF0UdN@_TXVc1{f3_UjT;B1Tg<!)6)9J(!hPf3
z<dLwat4BXX?}m2iX7PoaNfk&g!0^Ch`^wT#(6p2l3iS;Zf!1ra0AS4qW`<nqRx<1%
zGQ)B;=GdmSShm|g#~lGu+X{qG5h&m{|0hd!G57btU27ksVHXK=9<^-Fn)erdy1Q?q
z^1nz=Ke2;f_r(I@H(**%C%FDZL+p(`2M!$Ax?{(I-Me>J12WH|R5G`bXPlM&zNjay
z-NC0V$5saLUQ$xB1gV7Q<;$1VA8wtd*d^`78doiQ<Hjq%Y-uzrJooS4uMU&i_)5Si
zgjvMu@{r@qNQdscK%3QRGM@s&KKJ+MoNjl_D{ZZgaV!3=X*QiM-=LtS_0A60x%#a%
z34gt3W~|Q1$Xu2E#j-<Py149>NJCQP^RY2g7f(-y{E1Do?Cci<j?w-cNPDR`Z*x_l
zKwmG%<YeJUgN?M8x?XHNBS4?%70IB5Z@d1sh_rPZvibh`xA&zFfIKUYa5}PKT6y$S
zxgqVXJcK?WldnAf|Mk)t!Q{j+&Un{{?#|8;rz7S4pSGRm%~19;jpq^5Ht(O^U0he#
zvag|2<qexs@2cKab!R-6;?1Jh{Vew^J#tCH^A@X3NSkRIPq&JyL*>Bd@zb6$Wf>Ra
z3p2w0Bx{S^6uWHDSw1Y}!2JJI`@GVX|Bsq-5hbe2^zXiYX>VtvVLDzg((%RQXFi4O
z6KSEF2iCrQ`_}vU^9Lw7^)(%GELsPK>7`EIzRe+I`Ntg#P^Zn)>`n#QZ|f!GJW<QB
zd1KO5w2qou^1=mbn~7idx2suEJbwIGK9x^|H{`jG&%^zpc3T_NY`IUJI<;lT4i{i)
z4YE9Pa*imfNSfCrY8H<)YI=2K4#uBWRAdYb3qw6yTOK4x7a<!OU)|QUU^H|~PguLx
z(Xwh=Ww{5I&`h_FtO~PSMP%HpglDpEXo!ROWp0xPK7kvFKrd(Kb+ag5!A;TzUBCSY
zypL+$IkaqtUIDp-$Ni&W&DB5k6D?~c>J!wBrY)u_Uztw|niZPF-AFzY_V%rTr{$L?
zG+GVus`67qQ6{3+W8nqG#mXK62M(O83>NP5ZfuE*?>(O3n`}K+uWW=aC9keQ#n|`*
zxeDc{bgE7dT1=HMhxi`~dc|av-mxa4eJ~>_m_LP|twgYXtcGQHZIF$sm2UBqp^AA<
zUS2=(rJ2)YC8F5nI9sM3groi<z%ykgMVpUKT%|HZ^bp;?3tI@(=uX!y<|kz{l<CYu
zolBywM%=EAl%teDk&Dy8)hW-M3lg+d8Ei;UC>G-9m(QIWI8^%e>vJ^U<PWeZ=lUvx
zS3BWsWYp9`N^?c|<28%iX$jLV4}q^pmf>hn#>U3Fn~m~b4kqNO5hVb)qFV#A>go{u
zru$^u&{<7RiUH8h_D6(<M@F6{Up_ya=O_Fp{j{o)L#Oru&jAgSo(1*h-VNG)@|N@z
zx@Ka}%wk2=xhStC=cI^D4Y%_W96UUgQTDaR?YcC?6&NU}(W<X@di3Op5M4n0uLG8P
zrhm%5e%(rJWo0#Nu<$Hjxj((>_^$9<U!G7(fK$;<QAOqq4-a2QSa&?$eu2DG{3;p7
z-6h@!2OSnC6)1Mm>^wFiar=*gf?1$S*>{oB^70pG?BwXB#1<#6#tbdZRyl4UTwGnB
z17ru9oG`7{zB#;d+(x{VwNrMx`fBUhof_I04+{$JAf5#V>Lq2z#!{0Y$&G<~3nQcR
z`-_2{xC})={1=;ch&?qKs6B9RpmzP6H*d}&12^z0eOw2KLr3xhtgN1ft(hGUH;YAX
zEk=7W0wU$@jpRGzs=0DyE6J_I%+DieK{~jS1lQefgwKB2GdRhZCy!eSiu(p+_8dI;
z^|rOSwY+Ms-Du(V%k-;HKcS9Fs;Uy3r*;jy2?Q@+Ps1w0=o<FZjW?HgE$XN`X|sDe
zLnvYu*e(kLZG%dVc`o%_<{LL|{Ax&G1G!+B5}cPOuI4bS)neTj4BjK9&Z1t7?(Wcd
zuu@vuUM{ZKuSsBpBqX1`e5sYx@=7oaQG_oBruxVzjqC85a|4<_fr#nCS?BE1Fex|V
z{_4FgW>uo;gYj9hskYtT(uZ&66X>!!z<$IfS}_MN54}1xHa<Rz6~CL0kM`urlj%La
z${+L^czlkhs%6#pW+Px*9G4fJ-Q6Ya>_k|tyJ@@o`T{>5Z7*uZjrlg#LOB&m_tMX=
z%VmFv#Nyl}?e^_Y`$8SnTHC=>(IUZsGPyO@UAoWyZUv2WoKnh$v^JYVNGn@FwCuYW
z@DuI-X*5BFU5B-^Rb(6(7#K8uHzuyzyt$aaLFM6&qj#|ITKc<;10td~KN*Uf94+I`
zTSw^BMtWz)CM8{2L(O<|G?^Fd#Y<OL*Ms)$7R?5fDvNg0r#FjourJ3H+_1@>8;H?m
z)6&u+`$M-OvS&QN%bSptrx%~`{(N)Z^5U?C$NC?|ulSBuefs+KJQ<y!92JO?*c-`Q
zscA11l*Zo0#$Eu@Eo^UBH#IfAFvoga-@j011RY)hx<CyLjc~lcY$<bKQlm<7K<Z+-
zJz%}*+=R~LkqQ83ou<nC>Y%8-o|z@Dx(1rl5{PHGd4kzSU5m=LmCOd(Wmw&-ohJHg
zq>+rT8rUk7(*kU~C7ywl2$(P^DdthlOxIVRii|-i>$w}k$dlIgQRixk0Xk<Hid|_f
zrfwA{qTLE#j_2i=6=D^<1G1J^%K{QK#U~!*Q?eOS3LGa{w|DKxoMkT$DO_mUA^!WF
zIg@Db!}`8@Z?mwctTvJ7n`OmjB@J_Ddk>a{TKB#>*sS2k<T+C;zI1C+^y6&t{*Mc4
zsV_sHgkHURHRhxB)DLYIu{Gn0%x(2og^%kSwMpY%l5|>iys9w8F0|~SnSX$Q>51y7
ztNUkxoZqFVD=v+PE}unGU+t6)oF_k*+wp{{8)a|bytA9zRk}pHWW&adJ%DHoL^XMu
zt;$9@dx>yd$t1&8q0*`<Ki<5BE9iaq6Sq4)KbD`eT%2qu`_r05@;Znr4kFxoym#fU
zMs0U`=|VV>LA=i=z{FO@`W?SItK)(R#V(`V+4q?SIAE%^Yd0ECZWZYgDA>rrwS^e_
z_14SPd1}GDZm=*Uv38?Eg?&9MAmLb-m$*`ErGK1Y@_Vl@%7SJpAlMj)eMSzyThrbN
zP{iwMliB><aGPrDd+=kXpub9^<zvFr)6>tB_w-3vH<q43^)#KV$gLy8CSvSH-FHJk
z1+F7d!sAniek5zJcH-dRXmo#@si-2j+$^j>hA*W`&aI!gZF>a-6xM8F<|Mj5t!0bd
z`u1Hze2O5ih=_{V(u`(lS(y*0)AROKAMbu=&nhZrh-)6;WBVwU<{3nna`*cwi$5&~
zKsF5wKSEa1L4x_+lp=#wa~tbZS9yFWrTa+^HQQtB!ML=QdNMxVlhGGK_j925n0v;+
zv?a(!t>LyDvdwW^o^P+yivL+V_<7~N57M%*aPPkqbh&vNF-(*IuH31vVsl*BO@xCW
zm7h~fGgN)K_~h~9^@R0s&a{4!cI59@`<p*M-niPS#csSpe#$Q-B%VhYJq)qM(b19n
z%bTgwQzlc}AErp-J7a>Je|$X@H=AVCE=I95z5NKS_qIdVBMpcWG+TA%L(OU1iLub-
z1!>8TeF-sYyh{BjUAlk9r>FgDYp?nAsh3&Q_m&5UZ8GX9H(9-A%?1KIX-Z>4%2Tje
z;=;}GLOne_W2hkKb#<d{xSj|Ifa|<}P8s*?$B!SK!^6Btv)BCOuU|h83YBX0>e52D
z?W(D~wzVte_?RrUrBlP$_EMxvig*S~gTgnH;Z^eEd7@@g;Cog(#j0dnQJq3{-bm;`
zNqEV~onsMKVLjegC7`2iRaF}y%NEnzBr}+5Q@%E?DsE4oWRbP;pB6#$Srpj19zj7t
zN(o9z%4q$By#gv7V?AYv2-8CU7zam3@O%SFEiEb(yU_RWxU@z!JdUu?Z){uW=<C}*
zIy!3FplT^^oqRdZ!9H-kIvVVQ_R7&;7bg=O<r^a2zyFFZh8Nt$b9CLv>(|`CFKZ<&
zbeH<zE3OsUIg$~Rgr+5HKTobnVrX(6qk9@?pBKM>>)%K>e)H(jqqAtK^bt<yvADEk
zbMO6blyh2ceNk-O&<I^(Jwftq&I`l6JS1(I8COrPE2%@GJ@GNUVh@9Yn04x+UqWLl
zg;o;XdTH?AJbA><p#IfSZLTT3p<8W5O;wet$<ih!i3k>fv2Uk0pF4ZjnK)d^t589U
z+Dl82p+QUgBhx&Fc=r9Rbe5gE(qF8Eo8vgkzjSAd9`$~~__?x#m|jOsr9Rhz+~eQs
z^%|OjEGK@+`B;Geiy)r)`!oKx8<CNbF_46^V4g90Vh684yPAyQ30;7<B#^4szur6z
zHy^BLC~lF@%k!wB;buuV`Y)m!>i^Qv(9j#WPF=nIpgkC&>-`bo;gV$TS-*L+zz?x~
z`_4Gb^+z0>KPsMa<eIzt^5@}b0b>$~X*=>MHn)v5%p#>J=olSH_+9EpHlI#0)6D7j
z`k&)!MQv+9X^q;y_@peH1P$iOw&M*y8r-hid~FTzpGT1G$*;@X#CYlbNBus1W^?bO
z#ac6Z#SQ9?an|aoZPbc3mHIjTQSrfVt7~djJKg*B?WAgNw4er<5=x0Xl|cs}MTyP4
zCZ3@sN&nB+^6>(>6q+qSF;V(2y{o;#tRy?98}KgUGb$l*7AUF0z+ff1dxu}4Y;idC
z<WUQs|IeY#W{|Qi`Dn(i1n3L_cJxIHa;n)%j*h}fEwq<%ctlb(zf4U{06ZL!n5;V(
zXTN>hHZnGD0~ZV^oH9pvsj_X`wwLHeknU>^K4Ef-s7a7DsiUhPu{xPDhGfp4r#hT-
zyZE}T?HHLf!B*@=&yYLQxshTQ3E^qwjLuvAZsc=ubE5;Z=q9MHx|BIL8TM{-PGnR@
zm2nM=o&dE5tpt;{=U_^M8Xa-O_@_k0eDxKo!?_oZ@$y!6SkyBvoi{^?cN=tbb6f3%
zA`(-k!Y}>8*Y`YV;&3!)SJc#a5)%`*vauPN%5JNa?)G4=@X-#jK0}nKTDHm?G}G=m
zv+kx+c^duGtV?suuOKk6Q#swfb4Q5zZHi!(h$mz_6s9xHN^^B#@7;(LK{A{3TVLwF
zVAxo8cnL7m2h4MsG@Cug(@iW_rgc>ElcuNB-WCs1YtM}~C9M0{4TfYbL9Q8|e%@op
z=t28^#>*cq&QGr*jvP5sJ897Lk%G`~{P5{^*5qKrDyNEs$6-yw$O>yoCgHBGk!&uh
z7d~9Oxd_c6$rlq6=g)5-UPA*Uoc4!UQNDWh>Q{T7cxPv4^zVes1@p<l$GUC6ook7i
zj;CxNbZYi(mVPS>+GsO?(g%k{o5?}<SV6lP<CMi6xdWr90Ru_F!j?iUl>taT6hxbK
zAB)={&G?OnYiMe<;sf>|^BuOCxXUbN#|ZXI3bN(Wm|tE#R#(qF``8*>C23>h!(#Kl
zkGiQ>>3zV$1V_3P+(&v}h;0kw8*|U{ZBM3og)M$x_G1xuV0I0A4R~;=P;)5@oq##v
zgwiTpmmpl%Yxixg#ilbT@~xS^(7#@QeWsd-b;1dVs-wqGy$Hb8+s`i|o|l`Oq=tvJ
z68fSB9^SIGowLGaUY$Po<5OLXf(&p)kg(;Y_ZMEV6Swo7C<5jTYu<Yh&%i?|Z`iPb
ztgvd<J=-Ya+gjW6jT<z(gm3L^53Zj1^QV4Fdzep1_`OYcx&I9t2k`w`$TtHD>aBpK
z$D5fNeR$c~(OPc*IpA^DY1w{_;L)R3TQ@r$45e)d$cwkhx%)1nC9V`vtf1EA_2%x6
z%I_xz*tNa%&`XDLx)RS`yr934s{blT%wFm1*RS0Rv*TkG0_`O^(`|=9ZBa^ec6D8x
zGRR&=?Lqhrdf{+yqX-Y^HF{gr+W~4(O3+JrOS4)_k}V`D(`9Fi%#M}ul532p$(qSB
z^=!<w&nnF}2f^wy8RS*MB<QmrJ<1g`^OkgzB+cSY2Y7gVJ3BRg;AQSC!q-)oM~m4M
zn54}U({-0DZ^!$Cc_S2t?=GSFJ#S%=8vgDbkOSh0zwmBu<%k(V<2Fv`d1xrFUVW_G
za%Z;9q;5)F$CZiJEKA{g<x0gDy=GreX2g}6v1^-tQNuE%l<?(IJqVTYIcRP*=*?k&
zYGxcHlpJ}L%VZUTnVLFl1)r^y&JeM9l?;tZ;e&6(!fr1wEe6b~W!{S_6eCJddFw35
zR)SPFhis;P>zG<Q$AsJ^E8|sO;*j-CD@keTz!v|4`f(lETxS*T<0@tq{FM3Kl}+sI
zNWM9lj^kC5Iu+^)IcguPL4I_%q&Y4-q#V9&x3+a4)$ABrgl)wsSTmFR?$@(I<}s}j
zo%U~8C|M8;;L|+watH$RfU&SLwO_cBE#&RfNU`CmmXplileA<gF67OIzn_v1&J1Yo
zR;uhR1>!I=)wUnU`uITd*jJhB3Om2fwzp-3A^wz7bmiZvLhQJ$rKRKg-7dI8Tc&-7
zI98^Q0gZa=1_><b-(qTUUGIy@g;C!v=#8u$qb>s_Q7kZHxlTbn${=M)E!8)4%KhQn
zs)(b4mt$NBb_MYWQ7EnF&Yyqo<V3i5dHF$MD}i1*G%!D2CGHomnsxr(y^qM4GUx)d
zAREg!p<gNmReu18+81vEEAOivYM=Vm<yFplBbxT~#wsBB$Ln|P+9k15z>o_oGG@xw
zutKL|`$HgY#KzD2YcKeMzv-fsK$~;dL^y7CFuK8wfvkri^VE)fzrMeHs@g2LRa&(>
zy6Y=?i0L+4*(+DCzQg;sGBR?)fKi>ODgElWK|o;^Z=kp|?(-3?uk<b+9xtKZfXVd%
zUK4JK7lJS0$enUVotE@OK*4j8l8@jQkZQB)qH$AK@A)c7`ck0aso%Re6eDELpH`Zp
z;=O;rY{-lLng|&PF?*pZBGrc@qa4vJq84;mNbfz-a)WA1qGNmsx=&De=TJg8I62SG
zO${A_rtl2~fi4GFX@}6gND^|5_g3_vn@UJpM$(o6nN~NgJ!PsuD-mwd`_Q-VdU$W8
zOHe6|@}d&CM35o<fNa1!`y%0$B8s(^7G^0W=B9@eQtReye<(TF*wRYO8m-+VN5A@#
z{v`(E3q!?x<C|=3SO>l)*1zmJtf1iK_EB@wGlp`yD!hhhIkKb_s@?n0(pcND)}pdo
zKQ8lMYMNHi^Z)2mS`cCR%SiXH6(7D>e^{X9p~C;e#Py@lWEM`>PS+F8L7zo9EHx{w
z1;oT9!&mohI8tP{E9bJLqzKC+VNO@dVCI8$r^;oI6bJ2+=CgDz*;%={+pt`4xWH@G
z|2L_1CqHs2@tJm?MU{Sy&X}xq##6s<q!qv6bS>QjJIboHn<SxN6&^<x0fAGHZqoJ4
z$44`{eZW_*Rp75S@S}*`X?vD&2W5!EoDNCz_Em)z13vRXb0(ic$TswnmaHuX5+{8~
z7XprzY6Jof2ML*PfPLiX((v+975Dr;#4{ev^t80HYdbcf!ltqefY0E&`)wDp)R)`V
zaA~zU%o~V|mFzKeE3BT`#=yYN$0x^qR#De%c1)|Fs3;80yIEdu8B43B!IkE&{SBIz
zp1t)Kmb^{Vx7JjkH^{Q{C835!!#sVeNiT+LdUCQbfM2gRbeq(t=X+&vo9>5*+IFIv
z4P-ueK<UoNM=2*K#|WmTv@|`8Q!(3$4+J=A@PWGBv@JA@b7Xux`Nw-$tl%fGm>i6@
zw{-)ywGyKGdolzUrBw?2D7!)Sb!NhD<iC&&X_P#3NO{FqWkuidg!1b#gxF8r=<e>m
z`7{4Ml-$%(3oO`t$d4cFW=-8$MU}3qAi15e_|2$h)4!LRRisfj3+6A<s|L$b_<IM{
z3?m~j%J74&+!O274$S#(j~_jHjmKB@Z1As_6VycMw{4?Hx6zmOWIkzXdW1(M-3e^q
z&z1}`!ii)*q4GI}hO&Xa{f^tjENXMDl?OI3Ft3*#Q;(nN6=>T?LsMAdy=SzD$!M2|
zNcMRqHa0d~b&Zl|yA?m&yk8eX0bc&{jT<^<8TIzIgX1xr8z2&pcx~cOYqKtskw>V=
zL&1}t8h^HU^9Qk&wECO1xhPOtC5DG{xCs#DRaMe(8I>l%-?WNg-?PU%FffLvs=WLW
zXiaDqsMy9p%RWQYs|jvNDqIr9M2*$Bfln0F?d3(+3m9tN^?UWo1&wv{!U>6c_l}{m
z-A;-HvHW%07Nx173Yh#31BI*6{?)x$3lX|9GBRIKSYo&!JLf~Hxag~;t-Xo>KfPu9
z_6Qy?7nhUhNNh~il#~XpUBE(M<kzKVg^%fi|KU$jU}k0fcuGo24&U(g_P!7FSvQm0
z>hbum%W~`(14VXYZPe9Kuq`*+bL}~~xutY;4uEoa3Vh6V_5B4t9buz35qbuOPLN!Z
zN=gBlcHdr~#0N^?b)-uX4O|vSDwwr(P+=_EFMMlp-*NP?PBjO!(7km)PDO|l^67<O
zp_HQOq4iu;E9u62|7ZxI_6KsLzmWOC<AyEkXiw_u9wY+@>`<fuz0{{e3E2-w?h>Z5
z%>Xv8P+Ew5$kK;zeWtPl@pkt|(q57lQn73`AFwFWywWO4QQp8JY(b4X@fjs}%hs)(
zBaEc&#j5v}wlNs<W4g8LlJ8V}2ErX`OWWHv5~S=}vA{}^!Y>}xdw73|TsaGS(v$I3
z8BAuC!inoHudVITjM*5wjnjQ2h25r7X0r#(g)O_;^-hRC%i`<HrW4;J(Y<@&?%%M^
z2#k-X+BJ3tJQ}W}*2@<cKA2wmFTqrrFt^WqE!{JbPuD5Fj(9r(rV5<-D`wghA`e?T
z&sI>ltmtdHJE3#3=2QN&Vkq&<u;|}s8^~t`|32GFKKuOdGxB|g|M9+6kf2+fR{wLm
z*FZ+C`!F$akKwNkx8x8fJA25c&n)y(_b+XFsk^&(|EvE)O8R?*lK(@!RgU{Tr|aCv
z=qM@XVaYs2aeq2jR$hMZoJ!@yTTWLQjTHlMSTvOX=pIQb_6Pqx>%Pe~grwzH&>an<
zCLSdz^xsRj3ycXLEDaP42=z_PvYR~u)>=+c@mJ~zl^>hcV-!r7|La{GJx_!Q{gVO*
zsvuVY(@CM1BnVhx^I;G`O1i)M^pl^Rg>JgSU5*sUNyMHr?h@Co(LbSKx^qRbq^#@<
zxLewtJ6)L!(<wkDnMT51!Hnd;7WA`X(ruRt&7<NB%8Q6O2J{yr)6>!bL8DkPk%O@w
z_pMuc#RG@in;5TcXCf1zcLbE}Yfs5V6>Qn|2`THM@7mR?Z$bVioS@Tmq&6FV0a5Dh
z>-z*%iPA~w9e;d%WdQ$1s4rZg=gA~d9wMr&Dqzrbj1*JILj;$9*kQry>D((Zd!Z{=
zt~^7k0d1&Y>)u<e5!a5A*EQLoUJUA-573p&4jim9ny(*^F2#AAG*6_+hvn_qu+PeM
zmM1;2yg$o}DX5V$w=gle;R@Y^oo}Fya1Gn_H|-Jx>5R^@96p0o20GiM)x4nt$%LWn
zZqvsDz^R*OW@mQ`3p0@xXM8;c0n5M%)9!Uhy3wMn%8SqjHPQE-J$p8Pw5!<r#f#hK
zT;*Pc*YhB=oW6W{3#<Kv9H{12j!U*h`7_$%i_JS%DJSljJ1;9sQl@dNhx)iosmz`_
z$9618{3!|=zl8X<rch|3%fCWa@RXY{J3T@V23HUS8A`Y>I1e34ZdAu-pO=xT3tdG?
zSsO~ToOVyZ(ROYWcMW!;g~dg=>(`&asT(LojB6&=8=)IN<H_uT#F7sITRF{8D&kV`
zZ`M`g>`tRg1|Ik08maA3%x>bS88%V`CI7eh>mnqDZrVNHiHnG$O-PuS@PXIYHqQcH
zeev>TRJ+7YyRA&yw`-3jbEnSfG=A8PW_>MD^7U)dprZaH6W#|yGP}4qTSCs%PSQi3
zbg7I{aV}b_>z@nq;>8QHH2;%_GH8$igpNW8vs)M~hDoXj1pTvsfarLT#nOOFbK|d1
zK7591P+fh63$h{lNreWQ9Y?5u`qQzXe0kLk$5Nc8CXU|wb(u>geG6=qWVfnXtP#_W
zl6<q!bsK=iX`C-v0j;U)<5k_BKi?_>0_6C#ksh^v;T`wC6~^??_w_6+0G^(`5xzs^
z&7@fro-hu07J<xp!8{LSA~Iyabk3O>8pczz2wnU9`ExihiRsACljg0cm0ED7Y-M2B
z2PgA0K$H`;vQQwx-@iY9>eK@Wj4i!<uM(2$hEcQLA<#O(2}6KPx>K?9qUHzuAGg)-
z*RQ)IlUpiQ@z3G?Dx0C*x|JO#e0^FfeA|Bxq3r#H_x76(177du*D<#5ar*CgfNkwA
z_OY%1T<f}HYU?GsSNn&~Y4)Ed9zJ`v1@{7VWOtD4|3cW^eVBUqbx?W#<8WTsl0r7!
zC)d~jCsK1ZRZRF?SkL*t`B|Y$6o#Q}=Z;>dm6XeWUkZQVy|q9({qXqb`9H}$V-@bR
zB<nv#A!Fmpvww<02HncDe~Ll|)BoYwvyhO=zcnKxn4P_|e^<*%Ir?ASm!lXo9G(mI
zQVF_doR+LNcGyMs6#H?SD~BNYKepo3@qu5r0<S^K#^!}p1?h$oHc=^<|C;t4JzCST
zlwz0#2nLrp8a?5<yfDt|%?Dkt^q4?JQ8LH_lLEu|9*DQ?j>|c{{w?NQP+bxWd&uL7
z|D3RnV~i4QP2Yt}Ehfb*ziOlCSgn3iJbL<c4=?ZLD)D6zl3N3WAtdzmxd0wn2Gj>r
z!KagO?OAZJ2XwY-9D}D6*1pZ;z+=+(haAn&{86uA6ZwAP=G;X83FDtm@BLd$xPbf7
z)XqRi*|KwIv<{QrqOsU+cA0+x0WP$f)9kt4pi&nE1DxorK;8pM<>eRPeP%%GVVUX3
z-5erjzmrUgIFb9nP&bP`S&#&cBOT)sF=RsLv6KJvs?8!dQ!d`U%L!kYv#aX{vU`Y(
zjBIjfHODdhj7w|#jM6Xy^;@UuOqrOAGxfiR08Aoztr-68Tj+rI`7IY07QUh<+?Q87
zky9^N?9#BkfB;Jb(P<tW#%VQKr|=yX7`JAnF&O?j;<NsoLW2C0J8zf`0%6}^MVi2H
zgWV!TZ%?EwDk`d*B%d*5xiDj*-;z#CN}v_#LKeTB@!4IVl23zBGDw{)NE8{#U)7jx
zebkdp+>k#6jmKTrK(dN&C4F%N{&1GA!yyTR?QjQUOAp)SYS3*7@dDSnJr0edr7s5m
z?F~y$hFPD+ip0L=Z<S<7<5!TAyAOz}F1kDP@GVMTt{WOxUVJE0T5e7=Dh6Ym__s63
z{AvLV`w2Zn$Kaq|^0M%7HXYg7<Sk7m9Na(NX3UkFo9i#`C<d#%Zc01w7y~7Fgtth)
zSsh=nkojltJ<=b*ycHA{c0jHzBIiRueBWr@w`b2P5+>kMkzDPr{rih=FFMoiL9vX{
zS#Gx*ry<8uP*W)hrBr<vvV#dU$~BqsCz~k{95)+3+)6j?aV^aR9#aAP)|B_#s4aU3
zxi-=aTgjOk5N)dn@R!-Wio{R2e;zyU5*2OLWkcJ0dpGIsV*YGP7CfLfGxJOO&8aj%
z!rS3Y*GXK4UPh*F+o|85&@&q2UYX~FaYn|*9?QsXy{?boPqNy+h(&M<?Iy$g;iZhs
zs_#t8D!8mDKV8s)i_9BTwautu&whwDn2sDqf$RD(umj3zCkV14TpAGvuA*gehlLZc
zYCa5gm|O4Q;2@t0%6I-2%EPbLth96b|2Y>H99p^cWa;zu4d5DVOxy$RHP+AvP-kJm
z&YexXty4WC#o=Nrc@r&%)l_orcCd$up;LN<Blrn;0jF2qKt8M6cHT3fI-|J>A|FxY
zf}@5SwH@6~AzqYt>&qJVo%~-9c@`=H@PC8+$fcIus2hkn^|!sU(8L&0r00$!x7UT(
z{t-l}WCJ+(LN2P_KqK<}t~bxj&j;E)UA(_)?P0KC<fsjA&cySIrHVBEDRQZh)(%L6
zrDLyO?;`!N1AQZ~g(q4JDWMGbx2(_0T=IbIdTX?^&|lcnFvWo4wR)a|73Am3SFSvO
z^Pv;i&k93g<obh0-ey9P3tHkD1|F5W$ut`&kl}9g{#`8Ozz>k;=ZgZZkKimKtv_(q
zSoOSAs6CE|mIhr`7m5sN-(o-An!YqQXaW|y`FFdW@<U_~V8b==Pk&5rg(=7x&Wtx<
zVW)BqsA*`hgCczw<!A<L>tRfQxXn!tVs^*p>0V@CR*T^_k4KNF+?fP6L6#^)8=9zF
zcTi-q_A09=gA5AwVa#smHYaW&i^J4URIhAe+^3vxf5}cgsZC!*DFH)CdV|(6?Qg&I
zZ+i5nyX_G-e-z8$b$IwA6dHz6%Z)2d*Q~V=YF?5)a+f^M)%{8D!ov${cB5tV_Un52
zPjbb(X%eV*u}lB^rqLoN9Dun~M+hpSq-5%far9c*jtvB^@zgy|{I0u)^cS;77b+6?
z!EXEaB{GS`%Au1ZY0i-h8Wbz5>JvM<E;;TmE9Ftpl`O(xN>5hf2fHafSxO~S&f3@r
zZ6yEIeOQVdqD#lz+PBg-SGWrnILyk|o6`RmNU@dtSUmnmrpcA#Wv}*z`uYY=G_;f{
z>A5h4xwyC}LfcSXJm?DNKT<JlT?H_22f3!aCj}%}kjCyY@_(MO-o>8uh&*_9c9tC?
zR);bCMdp0BL2>9vl4s6zdJ6yf5To9eK*1zxa}1g4iLCfyZIq(k*G%)l!<h4teR@)|
zoA$5uw!a)P^Z_lv!S;4;cB|PQztQreRr$rmqiHUfp8141Dj1%A>PPaEBb<MSOPrnW
z-2wNqZo`Jp5C#mA?4V~L16@m?gc~!T%$3`=J;tfM0WD?#GDgjQQl6A)7k^aeVaDhL
z(hBhtv`;>YiXK1DxXh0VaSeP60sF*9qjpyDg^`Dul_4j1Q6k;lsY#c`z}#LLU)*3y
zGF`zOUuS^!UmHyX3+k}5mzO|>&FAYP_4RxA@9#o!ry_p0=dr=hhIVbB5jbNNLGn%r
zbdp{KO85i-8pkSo>Cz^EfQKa|XQ43^3^Z<~-SO9)9DWpUh7?U+kc+-~6V)>N6e!C7
zw@$4&+#YoT*!gx+xv}~Ej`n85EE))0YmHM%NXyz&4a_tgQ*&H2C-WUf0SX?ir>ixe
zD#$<{n;2@|j<h;3hc=)Sxs6fG?nH>qzyb4Fc&hlU$8M9<90+-G81cPTY#cr}bZ0T7
zEkN7{q>n{ch4kBxw!k@d!gh+Qy1JUo;xWZXVa*5mv<u=IH|G}G9~?q&-kyG^<P7}c
zPuI=ayGchLZg{|*mk=*qolB5n-ys^|(SMVwQyuPtp%N)c$;wc1-gD>94G0m>;oBQa
zez%;UnsuFo_w4MD0<-knvVZ7a=$+MD7&l03-3OV~7yfq{7#+?D+jf#9VNY_E*wGt~
z-6g<Xn6i2a@4H(fe78ED#Z8&KxihEGenG9rNsz+?_%37vidAb$K&$PA!#wc#OH8t0
zbz!!RW8Xd{(Gd9F&Rhx=<7Q_EvPu?QOMI)t{XB&_yyERAy(-Wg<2-5VsFyB{U2=8)
z@$}OGr<7c@-5-w<<-_9t5<RxDu=5>Kh%bPizz2O6?Fl_ftY4-WCud2wG8LdDNzR^x
zE55X6`AN&sC34^fV;$tEu8QqY$_e|qk9D@I{reI|tI+I#4dt---AIA>1<Sh)@FM9@
zC7dT{guB2n0Owt4@bmR$-?fVznpwAL6D*lKh+P5#+i`*gsN)|n^uR3cpmG%<Ow!A6
zi^7v60nHm`R9dnfC!eC=kwhdsuI!lQ#N^V*<Ye4dpV{>J`T4h)F-CucQb$&<Izb7e
z@zXfwBS()y``$#l)k><WiqW8c$8><~)Avj^Wf@Hm$fgGa!%>j)f8s!Apc0b}Bt$R&
z*uM<q4)8Zudh}MO*s-WeN>VkY8F>M<g`ryxFk<irDL-Zg{EaC>SCsi|(A$j1?mlZZ
zF$8FVJ}<YCScB_BI6-Cw(uyjpsjhw&8tMgFpbMz!JF{1cIc8SKSy@tqA{RfzEKKXH
zQnMSCLe8Lo4|ZS*od)65*{K0Jzp8VTkU+k{ptK+%as9e)1z#P&=em#jKenQ~EJVF?
z!aUM$SeNZ{T_#qNJUe^v75de(qLU=?^8`|s!t5C*K&0J(dgy@_Ki;J!#}L0cph!N2
z%X1?c-W3+OoQhc%+#qjBIQ}YDkDSMjRiwatVQqps8|*a}#X3XE6j+f@L5tg=7a}dY
zerzX<30R^}da;U*RLk%p+UqkhP2Tl*yP8C(m_0$*&rN)SIvn4&8Dsp^j7~^}jJTVM
zDY`F9h0IPr-Bbu?ft-?(E42O_2GaS+86?vxGFm_vvgvV2a?9fED%tPf|4UW+EsqHs
zT$iI6+nrAS({W#Xz*O_E7vMj4-@(@LJC^lx{{Z<j5T*#}z(f>*Ghj&e3JEEZAf>wM
ze{Z|9y7a$?JziLvAC~WQ06yX1;<^Ay_aHejm`VBuVy?$=?B0EnflKkVAgl7A#ZVKR
zE|_!1ss@5QN0eZQrS3Sw;RrJ0dK#LSxF|AE$m<d-U;u>M4aTTvps^HeWr>_DK<Hxz
zP1nF|_w--BcVDnC*h&`MRsMg};q31S#BZ2G#yn|$&6{g)A{yL7JnMWBTW{gqOGl3*
z%5pxq81xb94N?$ooj+nI8!`gpk=vNi*iDnF|D&^ii>?Z2LvjV8E_U-d)CpjM7l`13
ziVCxk`M@JM6TjBHxy+9jKLGp_TJ~#>jO2tF*;<I2-Rl;KFr1xrFWkEICgSvmsQAzk
z-4v}d25ROL-)e4c@n#wUPeeY1?r;)#yOj`q8d$xUF@A4Jo6jU5!R5KsABP<sfay=-
zNJLoHco+YzLXzR9ZMX=`#cM(*{RQ_e4tk7{1de#zJL9#QAQaP$ca!511qG6_PfvC8
z{WE6c?fEN(7{R?F8@Df*l@MXs;4MuK+~E;UXLFFCr>94Opo6s}pWH?OtCt-6Kc%l9
z8*zHi7^l>|u^dj<u#rPIOZ52uBXP3p(MyfqTW5&PAMPWYV^DJk8Lj{cKL-Z~`#;=!
zoad8GM`AcKt+-4~Oz0+1{XEAc*ILB1YAboJ{gPn#62S`qBjQ@Hk8Sz)bRIn>*zHO1
zj>lPT#dW)?S0FNZrq1M_R<IoY6hZ!p?caBigp~b1H{om_HJ(M!|3z5r>`;H0Km~<t
zdg!d{|3BhF96~nb2f$&k0izPn&{1ygig$|{r!ay1E!W-_VWM^u`!j&>$)^6#%0b4F
zJ~-QYl5!`?4~cIg4M#xOm52iJ!~t|k*=QpL&(D`qPKb80$0m%w&<I$a2nZO(xJ1X-
zmxquE&4WeHRFnHZ1br)^`fndktw3+p(XSWRRVU?yJf_)}Z5^^H;!Js{I2+R2wP3L`
z)t&+ucmEfp+WR%=Dr9drBK~K}G}Skz(^pnCZEdc0dmW#5xZJBM(6gbf57RDql+X?Q
zPFuz4s$r^;iV!BnGcyXE0=kl>FDD{qvRBSR&fs<6AqwDs5f;iizH*drJfaN-e!nDA
zf@fb+Pc`M(3cy|hwPPK&JLs5dHY&y-IzfOKVib1}*?H`)6Jqs3s2B@6DETQ-{l>#B
zre)j=^9@ZTw)q|@x96BnH5D3dj|zJ-^f5(FZnA;udswfY3*D5i*qzg%7!{Y)&|t@J
zM_}L41ieDOh}?^TwEcB6x`#4phwNWDI(EzGmkN{sHLKBs7e<6SxT5JH_hG=)9rQzr
zo&37j-sQZbOU-ncodR+1g1)N@CEyE=8~my(NiLA|19IdDY+)MkZIjR(S(zLK0H3eW
z|D{Qq^Wzlh@V{C5d@t!KBROtr#>4poV!c(NUJ7c~tCtu0#N}?>a3QPH!GjyHb;Kjp
z;#_R?K!Oq6_Ah{d$ndf^k;Q*izuU-a^J_OSK})~p7TVVCmBm9_$C5JEOaW)s1AOAU
zuVc{QG|(Xu7i6cn7vI&_JT+JvBBnwv&&|w8NJh6XUY4WB1!L#o*@UL@ZbLi^tHaE#
z77zgI)~}}^kYDKmqxVC3AV*PP6#=`{0k?^+IAJ{6DTVuYqb09ijQl%hPeAg`%*?zF
z3;R4E2Gy739!MgL{Q;^fInpr$9_2!6qJ^eJm;D(jsZVfKE(#twvK4i7A7A<aql(Gf
zQ*Cj6WE=Uv^te2heBrvUUaK%*Pfd)#81fda5E^1iVqsytilLclzw4}vnZY(@W@=)f
zXY2`G4Gx3INBQ(bg#B(#+f45F@(oc#UPgkn9upE6A^ZI03k3n^N^H{RFG4aOr{v%w
z2F2xHpliUUT^U3{fP{IAsWZX}!EnRlQvhl|>3Z$fK7BI(#2N*bRsV#$+#xpt6J%#V
z??c}>3}J?BoAc|ctOlhtI+v3zm*wQtEtiVb-%`u%au$!Iy0B<+_d-AlZF2MbBA@fr
zrzEJnxdPO=LoAw)Ep`-r+;KIxAoI*weGQeGD?W7rR;f{ZuEnwE-u6-HXUfr8x{ThH
zeJe-j&c3R|i)G-a*ZkraE#Dn?o=`~Nxf$YR)?3nNCLU_rKJCEsGkezVkGl^CKR^Gu
z=SoUS901Vgo`;8pvDekrMPb4OG+JIjK)?icx=^ovDUcG}cW<8*+MsW79`Q!uqN|mp
zWiwN~F}>RVwUxrd!{d24O6PQDrNrtO026{Ze3`n0gDeg)u=QZ@L^ehtp}ynG)4eqD
z%BO9V7>%JDJr5^mW`>4_l=2*MIHJ(-J-^o%Y<Un4VQd_r1o|s{+196ZR%HpQZy1`l
z5{<-PY)c(%Hrvz>4~*OcM<SDH8X?`+%IXD!g?wFqRo&E^alR+Ly}f!{*~r77YIag#
z9FZ2E^G2T%v6jv5vSo|O(?1z~tgUDa-)xFeC+GIxzCBIuzCw=tLwL{wGh+jX^4@b8
zM$RPHBDP?#&$Jp1gJ*a$VR<g$c|6A^j{c~KkSo&CPw!NP#9^F3ErrcpNJJDgi0KJt
zG!?H9*zeWB0@_S`mrjVj<QSj28Es2gF2w6W)K<&+Zj8Yb#5#plrnmA@4+WVwE%wVg
zV)CPAqPczPI)Ghz_@Pi{^uu)q9qVH1qQP!Or>0&<hOunjz<Ll#`vqi~w!X&{v<`}l
zTRs&8NvQK#5;LEx)=mg8tf7`&HD=;e>GdKDlTh^V1r)P6wxm33fx)bIGN@9!%qV;G
z47O;ARPUT9G)&79d*WH;zm`0v2|tQgR5NLg^8)B6bTQGk6OIjsk%w%*WF6;xICM~7
z)T(e(8^X`|977IHNlBU1PB;8*k%cR?_Z(1g%+hS=@{hQn@cjG&bMib7Z=o*Xr@+ep
z2%^+*UQ~R;hZx}AhA`_l)vpNbZuEhiP?DFIKLB^k*0dDrdn)4Op{)AkludVY*O(vq
zgdkpvKbj0Cko+HZ^2RQYi!Z-bU!H4tE=jra*DXhG1yel>hu3&t?QSZX^(()W;C!sL
z^=5VWx##hA8vy#RUmp1QL;oOzfb**M7!YCKy7DroXY0#2^8NA_w9Zvy6Q?(@__A}F
zH|eLot^-m6pD0oA*=gmKlIyTl0r~iU?H`iQNNzd+dpLli=Qrt;T<jIdGdYx|$aT^v
zS-{*vG!-ir0}sI<D05#IAKOw}S2xR@$IuX+VB<<Q(pLd6$+x0i6`lF{PzW7p^K7nK
zNDtVI@8Db}u=|TL4GoRGXTQ>**VO4&X<`-KIh-Q9q^fE#xm?hC_G6~+8<tTDhLONJ
z@YKG^VANDmhflqKv*XOerN#DT(MPn8D_<PAy5MWc5@TFnTN|#v(7FBKfdg{(_BrI#
zBe{~ur!q2b;fL(|?W~*sWDcW|j*g3~L-mXT<$sLBp3>>QI|sg<HVosZSlZ5HIa769
zoSYj_$cqNspo22^W>ZBBI^es2F|MATo6I?PcMK=AtSZIn#;`5?TpJ){9!;)6aFvLc
zesrhxF$uX%5kg&EU6UhUHiK|&+hF>UI6UJ`g+}L8_Tp4?fVg9Bb1peb3hu|Oc^W%g
z=#=~O;q$Mfo!4{J(~ChxPQXWkt&lY^Fo;j;?Y*;&o}Tmg@#_#3zJnFcF8Y8CL_}x1
zeZ(|>+ss=wIOedV0kaks7h@g%xngf`FJYp@#Sn)LEp&8rp2v%rZowE4);H#92jE6F
zV`;{P16PlC=z+q)%yW>kC`mHIwwdMOlcs3TG8p3#GB<pqH-T;GtH|JR=8zFH)6Sjf
z^|?G4`A&iCncnf1BL{neWn!{1bBGQ8NsQO_POCUVI*P<#mXqgXkmb^xFC<`az-ONW
z<@fSWU7DXBZh(bh8?puV90)x}Q)S(kVDD%?$28qmK(j09@1?4(uh+$f8m&{dxwI`=
zmI-3Z3uXpw**5^w;up~rlj(2g&YdrOeBPoZ%laB()w!NqCH-<mMa4nb$C2FAET9j^
zWM&G*sbnM-D`vGZ{3!#KaZOn{26{NRYUZ)mC-y@2zJ<-N{K5};F_S$elrn{L=UgC;
zbzhe~bLI)yoH(=|FJHV!uQP+?nnlFwL-Psiu0ch01FGuf_=U+Y>aWC?ioV}TJ|HTp
zYHn`cgoACjf%FuQTbQ7Q>PJ!785I|IF>i6mNM2E~u`98yH#jd>>-O!tFd-n%S3(`M
zuUA!3i3Nuk`R2{ZL)T-!!FOlJ+HBr7tJkg`yi}AUV6w{Dcpo*`sU7Ev?j)~{t2{h(
z@TU7MhcMw@s=2T2Eud%lQ0GKL+8Y~xrR1Vi1|oDBHQl2U5(LP7o?e1`WP19gBe@a?
z)E}U+2ArSZ&zZ$Zspo<=6OnvH{zXM+e4s^L4tib=*r?i!jXd@V2sHd|%gIt+z;MUm
zix)2zF={F)D_6ksXjflzH8$6CD2m20(|3OGY2J~l<CHmV<Sde)`M?W&9;CE+4|C|~
z@iv*JLc#lvAFnsc%ltEF2i3m-=Ja~IVcYhjh;gyzNrB;o$+)DXY7A-Y)O624cU%FB
zmwoDYc@)5^*+Idz3n{}1mmIrT&$g%*^KDhb1Xl0+K*J-OF--F#Ny{w*(+Ls{TR+j2
zFIU}DQ&7qIz%2Ega6VQpYo&4Nb;3eLaDu~ROfQrV!+GXSPpz@7ja^8)`8)>l&E_{-
zz&0IIuA4Gv_mH;~j=)!ehMA>7BGyNK&e+;$4&4*-;44zew)(CZSMSvMqMJb**(L*v
z?E>BhA2UCkiN-Mz;};)lGc6UBs)vfC+15PCvspxZ+)z)jymswH|F2(%i&U(S4)a1%
z%c(nd?AX0#49FM(EqA7=FHKDrv}cbur1|<X(7}{}*uH>)IK2?-ns483F7>D{6`~{d
z2jri-NO>>Va;a%rAtKLYGsmB^^Q~Z3HCFav0_rYAGWl}h)saGSQvc1SLt)RT*2#)&
zA_$2`@K9Q$X*aan407kpbh=Rli$h&9zjrVFx{jq#aC{Q%hG_<}=pwHGsii3oBs^&~
z^t-1e`T%4tPP&E7@$7{QwOB*7)zx9x|KKF%#7z$A85q3e0J4C3eDH4K+AL&^j+od(
zRgc##dUV0?X5L%A<6Jf3X|c#RG&F&P7R@B*ij29sr8swlA2*&`OiT?pw+_Qd6BR}d
zHN&4@fVR=q(UHSK_Hv`Q_>U7FzS!c;j#rc0>X6L>l9{biwpAhqhE>Fcoz6<3)H<yj
ztqEPahVg~(Y)d0+Nz~KlxD>%^`<rhOP0r?D3)s=+7Xkq>sg!0Ij2ZDi2LpvI<D;Xa
z?=3A@BhO?s7dPLCyDkbPSqQ*E44a(2o`}FGGJ>@!-Q+E1yH~l^)F8h{Lt;>c9d@Uv
z%}01`RJA}LLA&%ph>?^btnRD#{)t~mxs{?Mub{B~vgp!WM*;#Z8ub+Gl|+H90}}$C
z*uf||GV)nX|25bu+Z!FGl0*9~^X7xGF(hY1&4GxTC@|Q%C`vYv3|9?c&!zxN(F$)|
z*TIIorIbH8(`tE>NWy0^X!{LTNbL6)?bJ2akeerDyK`Ei%kvthM5<vno5W1|V<Gxo
zA5WQYd>}5e$?5Eug-835M4}@y#{0yVe~^BLef#zm!Rr#xzWB$|p=vm@wXyLote@bV
zf=C-bW{f_>{D!>!{`Kp85T~y`emsV`<*pP@%Qoxc+qZ91(dXsmo;`vIiy#bw9mUCE
zue-gkPlyhZ$vk5ywfO>;M50pM9qd{ce<Z8b5J~VN$Q{gxAG646)fN>k9MEf4XF|Tm
zvFv-jvXXwFz_{1x@?+PtV?YZO>cc3FK4AaR@0X)Fw+*s{Md}Fh-Z4<qN644q-}gkD
z|0Mj!0u#`5|B>gI=Uv;?bqFjmKQ<sZjz+r|t=;te2?+&qVQI^DwOwslFy!k6(Rt_d
zqxJ7oQ;*lak$iNsQgHNy#5YCv^~OJbI9yXxiw6nw^-l7nzv`wJg&OOv9;?32;}h?2
z5xk%4`XYnwz@p?`>=$?j<9PMhzULIn`Gg62fp!4}VC6yO_BmhdSUUVj=*3B1f3x^;
z@14CPbzLST?)&M8sEvc30ZM?zoHJ)@Y<f&g%tN}%jPT_Sju&60e0cI&<O;g~ECqA0
zA-2UFf~Z~lX5#$e&iMHF>ozuXua{-?U{(qU3_Q)UX3G%{3P4P!qmAw1yY4kLHJxHP
z6{=#;f@bV%Y3cea$B556yjDJtHufmRx3)Icfy;AJW@gEtFi!pZb}X%JI_rsZ(NR(0
zf0ZJ?5T~AyD2mu}pPi3_?8y=1gV43tn{!H(JOk(fzPrG&kKl-c@O$)5`8U*!Q!E>{
z9O0r~hrdZaJA08FkvqwoJ@NpQ?)HJpPS4m^K((av+4IE5)YRzs_)9=aHQ+8{ksBAW
z^X4^7yG5Q}b;|YcSMNqgU@KCjkvMUhqe0EiE*mYt1g3CR#nJ5W!-7M@BJ_U|_vUdm
zr~m)(y9G72Fv!w^Ff>|FNSkF4T1Hf~5~Yp`ZCXwpBaERUYtmvwNX4Ym9!3pHkvdwB
zwbiLi`+h%P=QIoE`}=(#_x;Cx9-q%Ro%Ma*%XPh8&+S_La=XZkwSqGIXDPG*TGf&^
zC+hQlW~hsy&7Ao=B*96pwFZxV|2;tCTV}>e;fv)JL^*$~5#Cp!`!v8X%+I=Xf3@(w
z5#3)Uyl+GIhu*t4{20R=lA|IQVWG=huVH+_uH>);l_$gKnT{7>hA#;bJpW~>KZ-~!
zpX;me<aWX95B-74Z>0>{5D8m4l(_vYg*);Owthb;#T36AILKyGQ&0W!w9@z=Dz%cH
zSNN5ni~=462<glkL@`l!3b3Hb#NOX>vLR9;-Q#*4^FIAkzGntqsg?F%dz~9QW#MYb
zOo~#n`<>JlFBbn6t&-R{{1na!)p#yc0hg(SMY}l0-HZ)0&zalKSFT?D0glCsQ0kL1
zr4B$%PwtYe%RWu1YvbbLob$$9Ykcuo`dv?tWA2?BH}tZ*9w~3$wCUHL9&a{A!89nK
z=uaGEQ}b|TmkP^HWPof%<Cg}mt{uq%9m|v$=0W%)w|;%;IUv%KfMAyGQAbTQ?5e@>
zN586koG*W@`&d(ttHA+QEJ`kTnOrkN)6O{!Gykr<PCty=*&}1+l)?&Xl8M1~+`YR<
z*}r>3q`OsY<J%kAHN27&R|@Qkamg-*eJG_LLXQ_Ney!8`k<-voaV~*P^&zHZTt1?|
zOp#u9A-m4y{w3FN&mF2q6J$L_8L`zU0k5yp6~ANlJv#RNPASRBj?fgWU$?F(!wZq6
z@;F$TpljFb>u*8nFkey8au>QHsP)gSIU#)+Qnd7>=f>fHGE5+P=XL=gIRmjH0<Q|f
zmz$zsbPeaW^PVMe6RZ>PAf&IBHxm*(&+>WM*2OV~rWl~%#b|GcO-Ku`T{b7H{A4sj
ziS)tu)T<AVNOs}HgS2t4h{R_?q}!{RkXR7UePoR59D0~<p&^=QeC^(X@pY{H=q&4)
zc(eoUW%iMJAtZRmrt@K&4uKC{_3E{2X+5v`JcENl#FX7Yl-$*d0gQ2u7|^u~8_C9x
z5`S{h9q^bh;XkV{?^t32Dph0O+kj}rcW)MWFiek_9%I8?7mQZk*B|PNlLebfXP|ZS
zP<SR~-@UsT)PnJ<RflkL--Wm;r4`Yk(KHnTSDZh8{(gQ+*&YaUP0>U)j@};SK4zNw
zM&NUQPPKP%xB(xo8yLwCwY9M@h=)`<_cl2qHUO>Q7Lc|O_cxSVe^qyTPoHJ&^btQ4
z@*b}g)s{Ah?&i;)jh}~p1uoah#${RY$79gFuf*)K8M_Xm-YpguALqBK*}W*Sj4{A)
z?_rq$S(+knCY;vs3iZGqfeW0g_++{~C@)yf6yq}Yw~H62M%H#0mzG}R4RoZ;|Ni@r
zpI*U2Lqi_+nj61$i3v*Z@>JIt?6Fhf;Z-rxBFsI<uiJo6Iy$j8Z*Byx=(_YlTW$Nf
z_Z`2WD5X!;M?=|o;p=u_`QXR0L@V2DB!uLnD?Fi^OJHu?ttIZ>7ge_Z<lyMIFju;`
zyxb8I`r4%aXM6-jqcC^avu81?L#xJ*b#;4}bIr8|o}lVspYxnJZ5j)gMH*kne;^~Z
zDXp=xp{_pdz<L7%^)W{uvO=>}8ynpl95Iw%yM4Pz+IA!M#+|Y~bD%84AE4RF5RDgW
zZQ1*3i%af4>KX10^$f`selG6rGCWAZFMuq**vxMBu}U!Hx~lJaWz&?=YCtZhl!gAb
zPz^YMP)4O*2|ur0XH%7S1rtAUK>6Unr2J*v?$)WMg`HZ5nU(QrY1@$e;OOEq*8Mx_
z_xXcLCz9bmT40@JK^P+B>do^LVq;I2IJ!HnUAs0teDJC=`!OpMg~^thZf<i#19o-W
zlxB#wzLk?x*8AnyvFB9ax*HN2H(L(_r;)Ag6_!8#gL8DVv2k&2wyY-s`MP;XrqiRO
z$2o=(ACt2Iw$Uh6!7X<Gv@@kb4HnUaT?4rv9pjB-fV7wowiymaQ|s6RJfXdpH)ut9
zlsM<Ap}ES0-b(vj)6FICUZElfu9(huad3DJ$V~L+s)mZhtIZj$L4eGtc@BicEs4i7
ztAb9;8|ex!U%k2xL0=v4f(G|=z?fo~{kQ)j&h%73Zs&%8m3kPF!Nwo2d;*c(72qG-
z^$i9wi=s3jZit0eWZkBeB@J37_03maLE>YnSigLFkSuR$Ip0IiG$Pb+{rdg<!oosR
z;4lc=MdG1Lw<eFbHn+W$2Eqt;#IhC@`VY7YAO!IL=`zjDIA7MU|I^E<FR-k{BF2Dh
zy-3Wlqe6(<1C;E*Qm+ABGy$xEGrWD8j|(pDMrZ@7I^>q^UyVX@h0{|Q8p1G@yzN+b
z_`UxvLZ#drHpiLWS;_0GS;C%U%rN&#*NHOQe->v})*sdByNnaJvikZnWE8>$cB;7k
zC6q{uL4$J|FwGc4GJMIvKE=?do)sQ)COkY2(vQb)_SQj@x!0$<(lN=Sx33!kC77xl
za4_M3_2lcg)tw}!897V4OKxs)t~HA@LCDF?%uGwDo!nBWS8hj~4-3OvIl5Q03mAa!
z;w&UshiZIwL@ht<z{Stnk~03RuD-ynx8seWr>8tE@P8XZ2$Mms+qDXBCOqD5y8r*!
zI{4+OO5ZYxC84s6wy&8SyX_Rq-_Tagr(;h)Vth-fnbLnJ#^fYOX&reznI$U!!Yw?~
zlFPLC&e)G(rK7YI^pqpzxN%!Q0Fs}Byap=&Ve}0}W7n&h-ROaH6G?0fQB&Jth<4tU
zd87DrmGcs`Mb!UOd!Js_G+%N4{DrEjs?P3OQ18!CQu5k)Oa3n{z%!87p;QKxA?vyT
zT3r40>wocrovNz5D%mNFx&{Eo*Ff~d<(p5-%FPMG*?0j~us>i5EQgvZ3?WPx;o5xG
zo_{YvLo?xc49e(Gpgz=Dqgmbv97ET(l-u~eKIfp=nviZpsAB-k7#!%uAE-1kIvP<H
zf$*|J@nnYpI{HGoAD=W@(<?SsnP+ba*ecv}BQPRXdd!`2YAJR?0$bMTanR=V;CMk@
z(C5GO!1uWUyb%k|oj=d2e{uD<vOQG;GoPFKD$ReewYKkL{TQZZ@B7#GCM~0)?^FVZ
z0@5$jpt3jcv!>yjnJ;yFynenvgPH`@6~ZP#eq#$N=<&><^AFz?0m4%AY^pRmD$4x4
z*H?p)nj@@<c`F^HeeYG@e`q%I64XZvU(S#hE!&f9bd-_bi0b^oYLvpko}znujo-gM
zr{7k>8|>#bVwYSVBc>}&__ezP^MIj&VMk4VC{08ty-~k&L_TH@G-m%@jdE00&ZL4g
zCkZ97#3BU&R&JrFAi_~uJ@kYwo-h_ZAwErykw0;Y8URLWBfW?lD)@sFi|SgMK}gCC
zl*&d&smitC%#vhAN#O{O!p7h>eCdA|%y>$OmXDeVFh+u2j4wfLZzGio+;!DImGii`
zq@*o6J<o&BT)K1%7><E;_Y>2*J05*w2|kEt3$U&PeV-bX(19?S621f&kneHg(T;sS
z08AC<&RvTtkE^MD{L%h`3Vbhj5(;D8)xAxg*|EqZ{}F@8k3K%>XlUrfy8-yb`rU4T
z8MtVP%E|8gpsWGJE$dUDOC6e}A2CH&+{u;ZHWK_z%m9j~PF4ms-R3t;j@J*h{L^aQ
zK$72g?f`cWZ#Nau%Qtk(yHuxxD+yH~6@M&i6hc`YNeMTgFz3BJfE4z{m{U+Dr}VS9
z@mo+y`5}OD{h!)PFz79Iu3VaQ_pU{;bm;k<oZL>89&?pii`uH)`EO$L!cpx1tPWuh
zQs~mF1|rX#d4G=C?d)uV(h24_H8}WF9(9s(9#p@gl9B<mlim>ZTke{4{D&bdd7_L=
z92`-R`}Xj%EHNB3ChH(H25fa_#RydF5UNCe7<lXA=(q`*AR4GWn=Byud$y&ts3;1S
zGzWyR6Ln`Ejt+vLb9AGK;?=}Z+Z{NLVFE_rWZ?YV@kBA94oZ?@B3Js~&((R3ecujg
zb-GL|DC^z0avibZs0c9?S?+?EX&c;gz}V=hFMza?UkRN^JzRO^8D5Df+<kLDeO>iY
zH-JJa30mY2H8nlADy;i}L_hiCk0R`VvyqX_9nt{>cE(6eZ)j+^3lVvW2D<g6J!K2g
zL4Aj_21!tzW!j8Q%Z>Q>G42v|vt&o$@@kzBabZG#BPa@53!)7K%T3fL=*wwmCfVE<
z)!T&eFGyDFCgkhc?H2d;u7C(Fo@IZ>%ni15cKrtH{Z74U@qo&1#>Tq(e7_>(l0gi0
z6G&A^Z>XCO;s74mZRs9y@!1333GThe{Q<4_z+dhXIDOeBKw1LQqr7|@I#MY)zpl%`
zQ{14tLaFk2;vj?sRPh6edF-6h2=Q(aCV>V|UnXEuwz<?s9Bhmt)ZX%J4@{Tu+Y2#;
z{97QrtBD7V@cmN{oz@1bg8dLrm;QwBk&Yg$sl5_tGtJ4^NG`_s^s}CG81IER-Pp)|
ztm@#Rb48+wbMFb&G;{@|QPsb+^heZZ9idF!ya5ad-vI}FakhON(nA|PtnB+DJm-Ox
zdhD3=1SIYT>z)vZvnCqph%krNLP+Z=K1!GR=5bCyNP+x0_o7OuNuKGCADd#UK|KN*
zSezQ(ply1l=TVhXItq&6FRB!soqtFX$K;LJN6LfC#{R?w_`JmQ=)=p1UQd0JJ5(Qq
znD5t3Tj(q!BNJ~puVsr44m?WEx#LtA8kSbyg+8nSXIUwV+Lw^afx2Bu^es)#DYpM$
zkz2v~>^ln^+P|Sa?YvL_m+GPOq1=EGj;-HhnYPLPD6k;|R=_4w+!fRo@xMXyxMlO^
zKkD5)d^BAkP|?``{%4#xm~&%rK6j=zGn|9RSLZN0AHcgFdTQq$b@QTzQN{71xzaUr
z(`*ge<N(_d?s)p-Nt+|1rtHA)W)aBR3ecdyJs&@BBZdmX|4^-6yLK&i3su>Rpd3CO
z60#$Lx+_+#myAzZJQNSAW3}2&P63FDfD(0dKZ^-F1RB_8p7&SH@ow+ZjM7GBzpv23
zEv1!}dw>9M#C1}J3)sBkKWY>HG)~bw&yhdrg;by|%iX+Xi~I69ulR2o?x@I14ZjfC
z0&d$Bo#PAiMZn8AB0;<b5_1X<J6=^}Jq6ZToMa|HQtZfFT(gXP{wWOmqr^3*s;CH2
zE=GLVF;2_mi49E8=@fGl&ffb1P?eE?)m8P=0N}KEh|Msg$<3TEnbSH;!c_Ch2*Z5I
zwu!DIILdv#x+>ipzH^Tstvgd*^V3p%HooIK&B-HHcg>I#{B_S!ff+trIP-C0SBl!a
zmKQ!zw`e>gHWKp>Zn}{t8R-M4Z0Y75D4vreM5ve|7T!H)=-pPBTxW`?=+a4uTiZ91
zIL-=!`^>nXKD%>h9SZ8tFev0Jj%$#@S4m@9rkid6ZHUAM3<F>e{!H_i2T<u+AzRlk
zIV^V+!^xu8NtkE%lq9_0yL6?@8Y6v>6HXP<6MkKXcPkLuCt=PT9Oz8i|KW+z(Q%sr
zhg=?m3w5<h2xAFA>!^k}qdQsf3M_1aRI&#wudi6rkZ4HO*htL`iH54d3|r&V*>qL`
z=Glz^9jqEzUr#Z1cgz69D9?iw7vt&8Tem){jxh{Rx#O7`Ue(%&xSaXW34m5BM`KFK
zS>Vq)QwyGX|1Y4IC%|<u_5F)+9eF*UyL7m><@b}0n<QAp0WZf`I~R)S7vRS4g1e3E
z$KlYLCE1dVLHuk)glvNf!&s6r6+}r-S)pG|QpQ(kh#sA+Kn#@hUVto{IAOvS3{0jW
zZBVr-Dk?s;X9GSUCLVOf7W6|VenJY<2+O3HfU^kRcc3AooyVKS(4bGi3p_jU%WWjU
z6?xV#YSot`Idd&$+xZv=k+5&si%7PlosY+3M%xWPE={Acw~%;5WD9%`_!e}GlZI`s
zVNLgOwFEg{qfz=dHyR&}!&*0M!V#FuPAJ$Wmi=TBlN}F9Mkvi}c?@^F>sZW%O}0ix
zMmES{u5#`LR^kFpkj)9zYgt*<6p|usn~%v|A94dQj3|ciF&i=E;tvETCPGY};A8-k
z`C>J-DS#`SoYbhlK3+>`$Gg^vYYqGVtZXXJMV`Y6h2mGQq|c~B2knTDzjNm~<Yiu3
z@mH=qj0=RX<22%s;Y4ymYgTb*;E8XbZ4~#B>n%#Vc15Ox?Fm(ETy3vd-K;FnBHmBS
zY86zE9{PR9#;&+^|52_b_<Ld2H!&~>DzB)ReMfh~%7@&()$ey0+zY-BR_`w6`Aqa5
z1RC<?5UqldxbYGU#LL1Bu>0vGg<9+-TF&bLVu%{oKxQ}cn69HSo~N#!Y#s(~=rno(
zWOcYBpLn#KwgqOMs<)piJA}VF+3fo?-|pWkY{l+77T3GY*U(5a&jxq{W%gwtQ6(>5
z)?smhcy#~<aMdRv^$`ph9ex6$gLh@+sunfAT{gxfb_;l`-?qgy)YTOMew_S?C#P%O
zl0K||0re-IqOM&HKeWALB5+~r9=N!4->-HB7q6bT@_y_zctO<`Gu;f^69AEy-2Xqf
z_lO1zIdkE{_0m!ky%78^SdBz~DKwqV9#@ygYfsisuTs*Zq7Li_%iqs03w*?8V0lmm
zJ>_45gp;;>!GZ<eNX}l2`GxZ|Bhc0*egk)(^m30|nC@ojX`t`bMZ3#n9Dk+2U~{F-
zs9eFMc#n^kGAL;JvYFuBNDKlOPCU73wOaER5mu`}VWZm;?E(wi8HIUR#Ry{`Z6vDy
zH=VC^-?i)<qWd!MI~s@Jbcded8VxBrI=rMo9HMOqhOx`PK+C_ShP$HTXaMSj6<q`{
zeQs_p=Sg3nt#v%5-U2~-@1}9c<ET7}msp;xX5C>{<{VwF8l!2g`<+VX>toB_ut!nk
zT}uDg^IrOsG1HgYD1@So$-$*Vxn&BWu)zLd9|kxJ#`rL-Qgu2s)B%UR@PKIGLu2IY
zVbuGyEjU{}{+hmC4Weonp|+%6|L)zp_ny#_OaQO;5b1`bq~_9G2<Hpnv9Uwg0nu|n
zfHB<hmJZ)<so7ig+0?uU=Zf5?%tHjo<@F}LK6Xz{#5+w)e$-L1aUA<L{FH+>JG4bk
zc5USh<XvRm%==Y##B0>~G|?y=|Hhr^hs+`~&sNm(q@;v;jjX2XT&a!ubD8lvaK)L8
zk3!Xyw_N02rugL?z8B5t|ESeM3<RHc0fj2^dT(5~aDm!o`rz#2*A+OzK9!M5ov9=#
zFYHa3)z^OBD7sGAv@)mW?l{eiKSu9hbax)B`{ymoW@<~y_gf1ZU50c2ghI~XKWvZS
z_1sZ<93`~1Q)ueM?VjDxBrP@Le|M)XXUCl`-(kPT$2Uz~D{T?+X?VF|pB&~_Y|Fiw
zl2VNA39hL;qy+l|uZ&bGJRrtL6^<IB@09qxT=Y30`w~XoJwOdLb8wcVl=xRI8h0Rm
zaQ&vQ=2ho*S``QNn^grM;m^CY_&jNE$Kph}h)>>rnfu<YnLTF?O_`AF7eQWf1@<uQ
zl(MbOP_9nI@-FF3X&c(x+v9&jLM98>6FM>D{ri8jg89yLE2K|Ym0(xWHbUwMhSE9*
zhM@t()M*7az_8!Uz9(UgLOlcppiV~bzLjnjbL7Zy!oP^7!gr*%C#0p7+w<r*M(Laq
zm(Z1Gi6RVW-H5TWFF_9DvR0@cbiUf`y@8EJ5Wd4}_yDY|v%CAx56<nQ{^AYRe#sj|
z=Shn?B%V$=pv8uTMgy60xFX@_SqK8fFcJesWW~q3uxEg4yBQUw3n#EUUs*}16cV17
z=wcD4yc?qH_}`#>rPUYykr=(SEyJv2`7Rx04QR(YbQNb6GJ#cKyx9M!*#*CGZdk!J
z__WasrjGx{@@h=XX#oZzCA(1?CB~wV69sl7w}rF$j`Fp73+)Rd+P#BnyCJ(-f{+=N
zTxnzIOOV?AK2g^2EBTJ-FZZp(s(aqD(pl5!)gc>gZEcOpv7*pFQlR(k_kjDRsDnq@
zhz7k3OUmq9I^8+1XMP3ZCFgzr{o-6{;@|hEhv^v_F2Nt+;ZAUxZ9h?8WyXVfpavKk
z6hkO2n%qa(?%1($%a*e|RVIxTITw~QzHe&92y(cjP_y?WSoQ3)ysvq^7coCHi7qQ_
zy%1j!v5O`-OkM(5K6$~U<4V?9A6?zMw?8}rM0PivS=20|zl;wG3X-*L;o7<MzEI1u
zNv?O(KtWa&XN?gOItwFx{Xj=YM{06Sr+K7XqCbXpEE3=-Lfx;x>`>*h)!aM`^q2de
z@Aaw<ybC12hNfHS1q8D%6ixs^e5N<Xzq3i&R#IK91bH2H7V>A^t8#w`0Z?`qbaKI^
zWr=zFMqHRsr&u$FvF_^T2)PJ<M*)n-@lzkt;An5pX$`!S9ejSn#*LeC87k240rI%Q
zA#sUle^+{SvO`M6Y(41P0Fi%*tfz*b#!LzM@^!SZ#H9nRE4D4el#&2)ZYzMF5*!FM
zWZD6+s0X391>_<&-?FxM8h(HZ7P|<COd*8ugh=)t7Z+1B%)!HHw2+t*!f-E?IBo&1
z#Pa#7O&noi`dMrFu)WXQ(7X7WeFnRv!tWe%X28SJx_OwPS%csQsn997pt=ffto_St
z!3va+)eJxoVQn}#B4>Bm*)@dPM?8lfPeG3=WK6h~xrs|`!x0XP0(DvVGudW~8G>0s
zKDwv=&LJzw6g3gwOy80!_jD``_WSR@-%Cb*jXow%>OMgSEIK+?Zp_j(Uv`dKQPO=$
z^^X@->-Ku7Ij#Rfukz^YepMY_b(V8FUwr~rqr=$(MT)uZF5rzSA^9NJQKr^leTyX_
z`B0g@*SNOC_Vej4k-P7cuUGsyscXDnBxXQ!^Gm8&&SXFBsO({`&%Clmtm567!>n|^
zZ9UC8*vQRtmd)*85$|A#Np>_bEr%n=*16o0l!`boosk$PJDQG85%1TPGP?fXxc#`i
zEqh(2Iw~`f1U@~(m@57n!c=PfWYlv0b)ByQA{;X1X3>Nvb%Q?OR6I*K`}w1P3!v%;
zx643j>+FRsV8AzeOq3k;xp>QZptOD~g>Sfy#<534_=Yze1*T{$8adn~M&L!PTQ_fl
zM8b`88y|Krcj&pv|CTJ!(*o@RUL^uDPUGbaMp|At6N*{D;(m-_M1+m+C{Yk~n1S1V
z7HpM@#NCt>jDbb71kG%Y{EC^3uA%Uqha~W}0bx5nd<vu$zC$0e67N4C)MrRXuM=ll
zzD1kPSZu#z1_1lPC|6PTqe_vYEkJC6A&@{rWd*?M3Arc`I4V2tnBn4`P%}m<v~Tv{
z&{d6rxYKqu^I)P-F>`3My{HW?xyxgQ>0Y3A7}&r{Z0}!Rx)VF0<*@Jv{CpDXp0RrL
z8k>{yB23g=!Jgr);D|FE-Jz`)8P71H*a+ODU!$hM`z0iV@8QgX<iqHH*qeXv*01mU
z^btwKFEM?7aMQ><=jrCQ8|YdOFrwEfvd162ZD;xCbsIyVR<!T(+bPyj{SOAW=QC{q
zw9&dJ0e2D@M}TDJIkf88TvBug4|WBMa2>FO!9A)xO580rM0^@{rI2Af1=|--Nl#jX
zeXUj1e@wM)i?!}wKiE9juQPhei|oOPtlhioxE<b#mG8tj_i-A5Jy25t{0nvJ#=%c=
zgKv@tL7JCB-D~M70=xXb<PGd<t)h1I=FjK<s-V^_*0tT1jp+GGkX3p1<Vgyn#`sfU
z@Bg)o;y52Y$tEmHfVu<3aap5!#-rNqcCg)NF_cpO@aoPg;!h!`=&iJ~&xGQcL^fcy
zl}fnW&ZXx<pwzoT5l?X@`r#T|5L{uUOI;FLwMceHs6su$OwK*p@f_9hY&~$M#`rSD
zYB*697c9^Z8BArEYQf>YHyoe<Bn0i)K~J0pk(yQ6B#Qj3FA4~)Qm4eSGg!+3*9&*r
zBZI7l#*A5)8^a~PQbYIdNd!{xe{TH~Dq1E*#=wniL}~;uoKz2Cv6p(1YPg1l(=-S`
z7`pS_;H~2O2jcb77oh360=$;Q6i^d>Lzo7@S973dAqxEJOmpxM-knvRvn}<eL-?55
zKpCNpX8x`sOvb|Ph+xQHw@^K7!EW~>4yGcuqgp3asm?7j%@1$c4+g(ADS=%;CS}wM
z+I=mnT#@-5hGNP~D+?Vte`-%p&yi`)DkSjBm3D=>E0SAf&CZoxgz!06tdxp=9Ob1Q
zTo~HD3lY^={PN{awDn0zCFF99tA;4U+bL#=(}CRDDL(f9hmvP$;hlU0SHeF{5`x?}
zd+*6KCg7Jk^RlXtod*#F@tf*l1z4SV8vc0pOdTa}o%)zuaqY<(g@Ms@nxxiW3(H67
z$!^$kcR&zd=elRFlX$D=rdsz$C5h4#{1oG19vtEXQOb>6A3o{$;YYiql7&bl`j!WU
zw7xCin0o`;XzD}j#@kX2+8%Qtn)U0~uC0OVey`=jcy3}N_sh1tcK*n_+VxMY&!qeP
zv;s<_Lc_&$GyrD66nzu>)d3m{wD2w4T)6z|yKfRO3j7L!B3(;e>Xv%AK@6^o^!BGb
zGw}Ij(cxvW(esxl+6O~x*dhBAaLE6rKuQlhl$}~s+%?7n1P+j`Vpsy(;D{uw9rDW(
z)2u(w8XcXa3iw2$)>on64eM|oRq*kbfhINLWPFZkH3~}3-Eea`fB0J!e5V>PJ*Q#%
zzkB(}#%YV}PH1Ro>^yNwHMe%!F1_`i*HR*n%EQ#X$A66<WM|)jqT>r`v*f+}ilyKk
z+S6ciNJ6*{UFF!4&8VFyObOQ=fS1z7rCnhoPbvKmnq=;@pEnB!!x`AWP>VXkOhPoU
z_PE!d!vMoJ+yC9{r&p=fCupOfq-(tcWUw0q(?EjYi7|l6tFz4R^P-DC#ogb#_=vqP
zyCh6~HYmb>>69&d`vX6GEmRhp-?}6Say@TEl#+lz?*;0uy9ln!w&lAh<x~O2y9-6V
zR>vz_OluNxeqMD^=glTCr;c<>3W4jnn&3+x=Z7sRY~03tA*CI=Tc7i}Hn-|YUkUJy
zotQx_{tKS}c<67Dz!m%Lm?Y&Hz11r=|0NhuQ!k{mbV_8xz=*{E044eYKl~3Uge>g$
z>lV_gGk^%;IppCF2p<aldc#Im_e`xPbaBqc3pS1{)+(9xt0ihKO<;+Nk4AO0o%7dE
z9Z?s)t|#JHbXJcsASM@fqj}FW&#VazM#HsAhvfB`CPOw`TFNv?#is(@#RVFmF-m@?
zurx7pcTWN%ze*-o?L4L>m<K@x1dI~Q=&QeXUXb;xP?1EuyN<AcSbh7MxUP>66rlB!
zsp!Xw@b1!oYic(~&xWQJBLF&cyori*nyAHp`CU8*<S~l%ILI#NzP!xL7!szcoVviA
zjK<JG#Wx_)k)+UFeHe=|;MPBP(*y>~vKNh1&WOS+K>F}#;iiw988V*v`r7sHdnbp9
zQo5n&AHgmd4%uJ`AN!>qCrw7j4?h9BztNftN1rj7nLx3Qb~n@gLr6T#91<T$+xDo=
zWcmXSi{QHFNKi;9zcSSrQwfz*KMO0OnW*iA)*wiAN8$edp%0P5{e?sKzs3DOhh8sD
zuOGT^VLy|}c`a1`a{dt)yq+qgFmzv>T@BbKP*9%%V*8u|!QT1e5#5uJB{z`a6QzMW
z6qxmj*4@7#dE+uh)zqLHv9Tk!`cee|6qSGv=&~A-bNmvdn&pQ{#~;-`P4q=P(NxtP
z0a*}s#a_OA-##q7)@nol^EKBG@2_U0Ed;w>{4w<ZmV(|B%p6c-f@DFC8z9Uv-WC<t
z_>fnqYub)m_pQW35CCw&l-;BSUhyZ)6Q>lW*joITkoHKlp{4EAk1N$&m{Ho3CLGaG
zd-|1{cKo<(c@>o*E&Gn9028cc(9qZjO=oSnsi|p90-MjmSDybijkPne3<&FVoLCQ?
z1~J67h4K2<=nQ-chI{LHaYYs?21VdP;3BOmb{Py`tCD+)C6wfO<&6beypOOd-ID<K
z^}uyFrwq=WJv((alQvM%jYV@}A^DnviR`1Rt1InJVol*Z&<@7u{j1LF_MN4qM+=WZ
zodowMf+}tzL8v{o5G!K4ZSd|&9CFOXJNbXY>P!uQx<e@M(<?CZbnStx&m_5G8ilUt
z1vY^e!kkAgKcuc@a^7}itcmc};F^Ctm>*VsV)BqMTz(y4ubIe}>4EI|R%GA%x#d7d
zNHJ^bg)Fr6shD>uZA6cpY5$nYQr1dl$fSR+4wzB_fdMMl*GacPn0AJrCES=~oc|#X
zo$Qa#qNT_5ys=c(+3;|gy_6L40x42SUafX8NVNaDb};5^a^~BV_kMwz?QZcYuf#%^
zm@cwnW}c8-g@SEO2o#wsVi#>p|3=#OLS$W#pz{o<#xc#O(Uq210~ACUFEU{-##XjY
z6`)S;PKIAHF0Ec4krGuvG>dBPOD;DIu>##ESfuN;O&5B>NZ0AA7t*K(LVXbsh}O(z
ztgr@Q#~#y=vfJAar9$>yfbt(R$0IC{{DrjBucEHUovZq1r`8+(HaCbc{#CGvPfxM$
zjqrAjx6jtJ<$Ldue^=7p^TPv0ZSCqxw_^PoT#bv(llQ3N)M)dv{HHFn)o0{KsR->G
zIOQXC2D=N>K+3ek9I~OoFA#M);Z12JKClhKgFO|VM<fJB!*m{t8nyP0K}_)$Qxsbj
z9;W`Cp8hdFWOgII&$$<(2e2R?Jo0`@S<2=&9(%L{^xG*QP)Pe!B5CH98sz~n9f+N)
zgBXG=m5AD#_ruz?y?d@KQgV6MsA%V(_ur-1yP?z4R8y-UOgC5Yg`f7<z6qzQv@Ila
zS}C*bcN=|9%kS@K++Ts!HZC~3Jc!W`yM}Miu61WW1TbEwQ7r_Yw1Z`Y6_tfzNAG%O
z-6o(oW8}0eod%J?i2Aj5NmeW^sRDnbo6p_*)_pML(d9yeA$0R$+7p=jZ@X2G5{rt;
z5fn|^gOSR+fg*`KTF^cC$AfB%#0WR1nCv{3JW|rQNEwViD(7d0UMgaevehlndu99%
zqoczEzNNX6BOeMmBrT{wye`<Sp0~%9+wlK}gCk`3%Gf4t>-Vei`K&Y|se^WK_*ZO>
zc5pv9)obK$(m2o(1-1?UgV*Xh+Rr)&hnmfgih;vv&k-A22X!g@U%{e5{^*K&;4F#5
zXwZ4_5!%KZ9UUH8{cXk0yU3AFA{EGF9B{}T_v{(9)Y-qs+u5*nO<Ko0wIbNy*TFAQ
zY8$LI2{xCahRB#P-bd9$q#XXP_*Xu4P6@+ja}h;<FCx_c<DI;GT>MM8B)%a_RubQ<
z06Yz~99VaUVr*aWJtFhe)zvRT%|Yr$Xj<%Wgg!3G0xuYf%kLs2DWN!87wJA8^U^A<
zuxNPN*Wiui$un$mIpcRBIdx6QG6*wr&>qz(*I?wF5?kVk{4)n&-IYO*vVUpX5_wcr
zEZtsH8DF7QFwNFmR@qNmn%b~MXuXWh&8IaO&0Gm!*KC6PZd8pDVna5}3(KW9;_zP~
z-x})Q%VT!w);VN!b?^NF!E9OWaW3`CdEExrS50ZdJBOqY4}!p~{Vj1^C@;>+Kqv8!
z8EVHrW++X}eDz?zxiA~AlzGCDI`Ii=`v1WU#YlNT1GiG<0cU^GJ1UtjUAiRygP8m!
zQegD?cQonDzuEh2u#0tO#q_<u%YC<^`1%ahz`VfU6XP~mj$~~X{jO`)alJ&RJ25f(
zo`&yA?T&AKvai3~#@5!Y_*}{KxMTX$;?@Uk)qj~NQtI^k?j7I9^4DCsHg#C{44p~y
zyWX|-&w6@h%7yJYr<U)J40c_*uc@}Wu(m(7b)STCb0**+TfT@c)YBzb+m68_^C&lW
zo8@quDJ$v1&AIk*60;7g>f|A_X{Y-X&Mpb+nwV+7*)n_kd)zT+HbB08C+*vug#q*g
zr{I+;>OXK0`jOg}nD>(CDNSkOqi&B&AI?A$Pzu#Em}_VEd7P`lj|;nP%oL&HgoF<w
zz(yF{O&}no)kdI`+G;t~W}a|s=8$c?D(}tSwiUBeA}jbN=zz0Y4lCD@ya`y08iM0v
zpNf9JR)V(W)oSvWnu?<GyFHU(2aXUUU{M{baSIYSKJ4FW`3-YiN`N-1uash5O`Ab)
zvsolA!eNgSKD-(aPY^zAjEDP&UcCknj}$)a%3r~727(2I8wXq^1mQc}r!dZo1e?r+
zXpaP{=pxuT*d%emo3Irt1e?fk^o5_u*i88BCATLYefazezb-VW_D({f118PLpb?Dc
zOu>h?jRZT8oF>jl_z2!qHyI=REhQ1=fh>JIC;08#9Y3sD^Q7L*5vf5m?!?61x$`5r
zNML;=+yAv|a}2|9wnGSd9kNlSUiYQb$xT}6oI-3d`g5OhT;8|fL;+*;9pcQ8D&lC=
zF7DV`V#z0*eaDVpu|x>jQ9P}nQYHO3-VFXLhAbsM1~Oxg0+RR@X&^X+4gffa_kgNW
zBaj=WQQ@NXI(ZBuaf0^RG?XhzX#uy-!DA0!QX@(+NZYxfwKScOc(?7&j>GtQXHK2E
z47s(p%(RIUuY%g^<)@?l1j)tyY1l||>=bq&XMjW{u)-ts^(=s<Nt?9}mixM!`T%z#
z)d_~1dB`zt&VU4-dQr=a13yA9j&JK+Zby>*=WtqV-n==QmL^4B1NyfgV?KEs$EfBu
zW;2}lWgDgaHpPRd#Qrfw6OF=q)r**iZ(fIqKA6-vA<Jw+U7Ss+0f;@Er%vg)2(^pC
z`98c-8wvmnt@Y`={&*DgANHqe_JXB1fJe>*i%(&cQA3~(5s)F;%LgHIBn!uR+vU^8
zAVYCIW;H@IV7I_3RaXsq5v{F{g&86`zcZrW*B;#w#Cn|K)YtWigq@UPf?ZHgtpKo%
zbj|o!?Re{KB`6F4v_Y<sQJj^sDaMlPuCi38j&<3>m2cX8`-qE-Db9GCSwf}h?X*!F
z2q5+EDUQrYhIALH5T&g>kiL>f3WGUT8u^ZNBoWEDW`P(8joIr#@U=8RqpS3~E3&t;
zRzVNF*cK<JIC~%bheByEI}oj9l_!34u2EP*lVj&(tFC8_ko@dVuL@B(|MV(gXpU<K
zp8_pIG(~j3YZPb1*WhB|=-(Z|Kxkode#Z@EzfZ?Wm%>dZnylgFjR-E31Aw<^>quA#
z358(=Y#iW9=a34-(a8y3wRE2s5RJ{&1Ag~QaB%0I!e`HDoZ0W{ngkVXf~{!DgzE*S
zo=GEK?6bn>VQxL6ptfX5Z~t~}Be{c>>%$pN4h>khMMOC|J`jPCGq9gvYM`y|fC`cJ
zu(?pP^#q)3r{_38-GoJ5iU46}3_Q|C3MrH|M7hCF6a~^+HqhG44CvY%r?TIEz-bu4
zM=4DnbNIyL)mWtmWF}mX&~?gkPU`SLd|NpdMuo*T3CbfJqxPGTMqH4Ms12sP*v3Th
zRJUJ;-)Y@K2<c`tF4`D_%GxZl?u6RG>IO$X25;%}Pj@MJvCGPkPN3*Ybp_I11^<$n
zKeiu}WX<KHvI`OSlw0q15$Bj!IiL!C*r#y*sRF^hy$qJRn7H)T`HwSN9*m?qVdt)0
zp+LtCE0Cp9fKCUknQcC1(9E81HXBB%TWj6Oe8=J?H#9h&j)-su(g&K-bt8t0l)PaL
zyiRwQ#{9>RRh7=i9uIveos|;Re0YDsr%Xk+10<C+i)?vxQP-tAK3vz7xt-f1>z}fH
zcBx#?)Un6|s-&a=okt5We&kH1L9bs52ZpIzA3zy5oFd2UxcKGwwQtB=e&ls@A}r+?
z9>JN2gR_ssI?Kg~CQ8d3&*_~n;<Gi=JE>$gN(bR*p80HgU?gVI5Zi{q|L<>-UP0gV
zGsZ5CUywZR-<^fe%^5C%3y8CtPE{u<JiyRcy(e0W2Ko-c!vz>>G2H&%un?~qCODHW
zBL^dP170ynp5B6wnKSd2lKe?98t75ItgzrLl93CFJ5X%+@OhTK;EdTD@`??5`Frfy
zFRJfYZd#`^xI4u#{e7m#gE;MShnVof5#{{i>L0%=RbKgfz~#vPkM?#L8`gwyY0R>Z
zL{<^K$^-wYim6IjP}y(=e{}msRcZ4>R+bJ@KSlcXL*|punTjq}S8srNAUq@z<{Php
zOV~R&*?nXtU)O?ACpIBM)^IsLB@t=d*4Un=5~ati$i1<_9W74hzb$QlZm^v1t6k(A
z>A{Pg>T-1u;5dESgE&_thLrr!wGI0o!B6q1DgpiiFMx1Z<<fk4y`CqgS--+jTF|gi
zYE4)EN|!qxOxHuO_}jkYUV8ZEq(bRliGUAh8IPA)*RK{%@-RK#XJFOEw(R9kS3bk`
z^yNv?>A+Mvi``OUs+)e7Yf0a<ZQIQ=gXz)T26D|F9aYxVF7yh|;ql@*PNyzjbgVyc
zx$jMnM~8s$WFJ!$X)+=-5A)%Sl!`d0m$XowQ-X~`z5igR|5;dDQS&-rQCnyUiZOF(
z<!MYGgMqLhQpeiApX*<>YY>94=j8ImN+Y9XHO+={bu`+am#}zz8S3RBPbr21F^2SH
ziCV8Nj-9?ViVS(MD+PlDZuHdT^<do{ff)^=%M=Kpf2CLn;!ix{@3*m0g|QKWOibBg
zaQt9W>M#qhD8U7Sh}D}3{xU06%Kf!g=UGeci+$jBQ})m9iBq!@*eO+5Q5`lUP;)j^
zY0Y}PF-*Mx(k-2VcREw`u7TjDXybJYb^6|nUEZFEgg)afTS|6m5zS2@PWr&*DbVHA
zPVLUr!eN#P*<3;p^aUbrZM3vL<%i<DU`n$CroSeHqE-&c`Xg`)U)o*h?~M9lk3uL0
z!jt*!gZ<fq_6ni2*VM2|`J#|~AcRGY<s!BZ1{aNdb392bM^0O=h`Tbirpv#k=uL`P
zfF$o|!Dwj}-P{WXV~4vfou1~^dJWDFOrBR^(ONgyGIlVEyt7K@;ar3NgpHgM<Ow{-
z;xLPW1n6H-S%LK_?r_Zz@BJgnBHl$Rc%Zdmp-T~%7Dgkxv^AkMt9^KH4<LyW7|jv*
zc^P?o7#-u*s&QYw+)V%*l74BXM^z-QHbBP`(0MGpwa}1^thboE@j?`x_V8US%%v`!
zq>2MAM|Ik6dgy*LSonQ_a_JbxzspzG`W=4OT;~xI#uOs0P`K*@Uq@xk)Wz#UNVuC?
z<qT7>1z8K-!F{p7^o2wN3DgTg`*Z`Q)pa2Qu#bC8y^<NHNVXWXXxB*1OgSQ^qqDsK
zoUDpE4qnVN3JFj9acJOq`Q^k3{DtK}silHqo!|7b^mMAn2mIW#3RD2VZFgQF94kod
zOoD)s(Y-Du8gK*c!1@q)PZac^p$>_LKU{AU1gDsPQ4ijtosJ>Cr!*yNc739pdPT59
z_Qj}v>&oShgWEF{vBuLag?bDZ6uH(X>x1)`cuvP4nPKLxE=iGvR6ja4I>%Qb2e+lo
z(%f88FAXL;Z}a(dMpvo_FxwrGYZnqt7G}^pB#Bg@t~aC&_E|j~Z(zFHvV2pcbp}-~
zMnov-c_XG5`HyojxMcS|&Hnhji?4Gg8|PyW&co^(Y*5Z2(J)pb$12U(r`Kut{o&#%
z+gv^0kw-FwR{12$4uBXed2uniskYpbN3oUBg)0Lnl_jL@rLo~K%jL9rZK2veJ-TCC
zY;<i=bU9<<feXZTBZ@ro9BhU0i=@IJ7O}rc(FAdfJ`hhmeSI~|{-7iwqRU^B^=b4X
zlyMVeWSn5+aw3Q?+tz&-)>^g02{Z@zl5g#DUcFmBn7i!=TyTP!M;kC!vzz1K2W5W;
znrW{DYnOkxkd@%G&DAgu;W=t>fG(nRZ<@}LsH2LpNzxG`2w(-nFhEOT2$E`59{f|e
z2ITY#u55m<Nbh$2s1&p1Oy8SU5%z*Jte`>rF*35Fq~{zcI?Vo5eMRxjK<MF?N97`~
z$3is1(v()w+$Y!#f(A#*u6%;hE3xJ!*e{%{Z@0UPbd5Tn^vbxm*Fc)~Rh07H+4S%K
zy&L-f?<E}b4jqK^J;9=`75q|6jqR<GgO#yWZ}tZG=0~)Z?c<@>!Wxb1g0(u#{$Mq1
zNO^au!^AU*QjxaZ-F*r@5jmtFa^FNKphh+Cyh|^Zh@u$*$hNgHETRdlw5pyRzOl6u
zub)w!z&Ptcrzq?7ejHSTbu{uI3+XPB@}02Acf$+K6RHt9wRncEAyz`B-S!_+;@@3*
zuocQF$|~Fn@{$DDbk-29hW5r3Rc>@)&5MDOlE$D4=jx0bz{(rRx-@|0KdVEQiR6R}
zda=q7Ozw?{gM7j3ui`mibn|YxKO%{~8*@R!i!?WWxf;!H=s!@1kHi`S8AL9y&}TwY
zz6s+fv@JxuHeww*{+3AR6m#qT22<46)l#M-nSQw$_<i?gyJWVXL%?=j62j3PU;ynb
z??CGEHex+@?u^Eqs8s=BRnp!!D*;DPumw86Kks6kV1b@RhFvMZOLtrfN~{Bj^lST=
zSlAPH=iROkGJ_Q*el#H9U?H5y4U)^K222j#@Ol9}RH#ohAA`0P+7z-CB4w>8(FMD$
z=2^HR=6J|B>JdI{)xW3m9yv0?pPkNL=Dx%#N}bnQ^vOM{8!>>pp}!$K7A~jvDQon+
zp&n?*D3Vp&f!GvBT%jVtqu)a&3a`GTqcyL6+-_%l5+vXl^bkj9Sz6r$oDXpYM0B7Z
z?mIFyt8rFQ*TJ4qZq+`UmM}h4Ofo67sP|MIKi?RBmX3`q<fX)fC1DcAIdLF)GV~I#
zMNmEtz<HB+i+YFN`(yp0kc(-7?glOjBWGvln0>U~B<$b~&{j7lmj;~=>oqnpxrT#J
z`w?TLmy!GWO;CfwU8zj_rWA1>u)aY)ZoT2$_n#W<p~RrLP^2c2@vy{D*hyE{YYrQ~
zJ44s$p!h`>6qRUq38X}`H|%3A0&ZZL=l=#_i|vY%x3P#|8SHQwyavC9d%BA$erzQv
z^?_Nh>-qjQGBr9YJR$ldVF>I2Sl(kjMyl3ymptsdK3(>3jb^PI(>Mj8Dx1yBb}NKt
zWMrIdpK{H3*a_8JhHkm&5Vqd&uuwV=hEnogumUi_#`d%-*u8C0HrYWahl!W6l_HWc
zz7<zieoQF@Nf@RKKVuCFrK%uaNo0C?vrs@v9S<#{>b`y<3W*3VWPuA|t)<wty3K<K
z721fi1^g~Ng+wJ}_q&<0RNf79Y~|~`>imF=gM~stEXLPRjyrJPSH*@DN;3y)f!7%t
z&aA<yDmEON3c8Vd=>S@-FKF6sw)jPJz>)wTg7Ddp^u44k_hxAsvY%SoXEn2;K8dwY
zsmmB)?3vfP`>1kCg;P`ZpkM3z(}owRAgI9!w<7brM7WWkp`*X`zQ%i`>8cDtU~N4(
zEUOAa#CsYOe4M6f`yM!-XKG>saOjB;d{5i^=BJoA5W}cCI+k}pI01e+j(D}qNKSAe
zyU8^q8iGpXwW?p&n2lxMpS9Lf)(hr-@}$Bq(S{IMpK>r13Mmx}^!BG(pojmn!5*qo
zt@vd{2M(5t);F;o5?nDAiu8se^`lmVBSX#}9F`R&GyA*mbCx()8e!1GLaDF#d}g3@
zZB%N10k1F652?nK6uUN9wgeY+Uxzhv6=7y@fYla-)Q+5O8u7up??yB%D)Jhe+|+@+
zlR#q|iO@)BfWnEOS{z*w-rSrq)N|!52t`0$j1L!}RBYrxTg(a>o&6SWyMq4G0=!>`
z{q8l8mkCWz@gzC9=Js+fKm}X?y!wzH^B*lO7t|-#j>D=JBeul6XZNmxADXNe5Mjf^
zF%M{YEWvFdFLAOhnO=XaDYundda600V&r04rjo#pkeBm*ZvmAShm;MsazAK)DZouD
zuev2gTeP5n??D49p;!YA2?O(Aizy@~CYIpyD=RCV<u<+A#}=QeV-$JtnU7&Z@<@za
z(Ck>#IO~p81qp<}#SoGGj$=tECdd3w%<wF%SA}phZb@b3Eh^J{synk{{Ci^jziH?K
zS`x15wF&2GIruODR9a5(P#Ytl5?~k6n+{l=%qmYK+<^T-(fT=TL~RHFKeAIBa%K$7
zFL3E1u0m#Wcosz9(I}x60p36^-;(w#<e-+&Y-~YV1N7RLVeBv$o)VxzFwB=APeiW2
zZmku2_(c~$4VXh-mY3heDh-?@^1$>wQuezHop~&r^w>NS#jCqi-)hFPFDaUxx_xoM
zP1R2c<G0u84Mo23b51|RAG=W=Ueso%Vep#ZW_d7o>`QykTCG=Ud`Af6DU3O*GqV}s
zuT7l!y|b^A--I%^r<Kn2y)&oC+$1g>smOy1smW0~{}k)3T%_Drk;aCuwB+Pc0z9Bb
zXhld$7!KWm@_38X9mwCXf!t&x974-5D4b^_j=K<x<UDm@%XE%*3sMM0h~a&xg~>*S
zm_;e<C^m-lKQ!BlR?V3?^TE<^gGBIihUSoOkiH#!FysTvuEA&EqEl5eH6ND{h}~V-
zXH&rO&O>Z^51aBfahTDbs#3UJReU<|-3t_qJPOPiYzFz7Sfez;r$Vei@j~ls!zh}H
zP<VE=Y@hY`(sECw*V4;9n-=3&AcN|JDzw|9yEbxyL<8ln7dAcf@pNy^d~^YihGGy2
z#U*8K`OAWU{RPMDMFUPeyubwKCH(=UHVMcpfC~38r4dix>=pMNuVOQMXjk3}H-FfD
zsIAO(8if%+5fZzh{!~+g9orvapQe;x(+-ZSs$o-4rcr!qhq<HK!<3*3YTG%37^iQ+
z%B6?XFfr|ntmKv|U|yH!eRl#Eb9)chShRnI0O(<uH<Z#yp)D{b#wlH0yYfd*A^zIi
zpM4hwr<<_z0dILKfZ6*Z2L>LFO+(|h(_J!if2=!JqnSTz)~wYfjD$VGKS1cse3&BS
zT)NL=|C*I$1^Ub6yolKm0la^EUivUb5KD#4*!mAia^#~lW0CD=iESje_ARAhw?|Q(
z11iB|6!bHo#?caTF(1a!Q)2~5aC?4_7s<f{L>a^&J<M@B{>5^9{FVXiLdlKTwcc2I
zi7tJ(<1k6=GdVxp>=)tI9DDilrE@2Y5^ST#{92E6QY|R^z8Ohbk81t{zSO@q{Kh;T
zqB4HmwCM%^ER%ad`<4WH&HEf|AV(jN)NVvoVbC@?FPbwmfHs>G2>hypKv(RKQ7af5
zYvIGA$Khc?h047877yzTy_z0gDSWksj}#L%C@5i=C}3MCy38zxb1DSYCBum>{0UH<
zkZ1X_>@Nz|M73%{@z@WfY4`R20Rv_nXbmPnm9RA2_WXpOE_Dv-Lb$`qKXfc7M-R7g
zIa}N0HNxzRh!5f1Za*E_w;Ez5lk?*?0U+-1b~<tAI%Y(hwZf<4T-Y1P_Fb|oU^5IF
z0RO;3%o4AQx_kF!170WNi_pXusOR8QC{y~n5)Dy+1*riD%qa!%y4mE0#006JM{qs{
zg7f|G(KsOP7?AcwEG&yL;;n-#2o^NrNHCf>Wy+1WZ{IpMwv_ly@yUBy#vaVTG83Rl
zFt-|Dz2Q<!!DmjMENWD(=&ky{kuo=9;_lruLpcty!^MTWenHJ4y*VtqRr+J^+r3MP
zv_?p^-V6Ktk5QMYq3b}!{kU0EgwgGk5E(EOUMq1*VocF}1hOPyDM%W3Ex)cX=jmNU
z;vN->dKy?Q6crblmGxdAWcDhAXt3hLBZVGkGk9_MfHTVxz2gQ<9MgwBwDnb`Z({pj
z4C<yZ(~+Nq-jjq0#NT6mD2&@{Gi4JkfgEAAt%PACCy`ewf)8md<u7B3LCWZSa69?M
zUz0>XIktMr`uv%NRT{iHu!0WBpMgYZUB-D+H+#YnkTih`r_Z0C{F}CzeiG2vdlvDW
zUM6J%Yb*$x>RMX%xdwsV^>_P`k)nzUei24V2!)AZhS(R;@<+C!lS5^OpNS8$N41OW
zFQ{_Ez*l=NtNE%dOz=hlly<AoTBfStX{URhDpjHip&)@zp70V{dQoAZjn8`8j|Vey
zFTm<al7nT~u@2789py`mh7O@md^3dLL%L(^wKvTpiZ=9Bt*{>X;o|Avr;ZtSRP{~g
zYJy~0*kzO=g@xeO^`Pak9C*3`M;BZTVsvL78?pHQ)Pd5uACIfOVUK~BIu`Q1MmWK?
z0GhD(K?|_W+*~UU%jVt0REwq*lGc}yK)C^GYDD#fRwM%;e+*<pjR>tl3)ZyQ4(|dZ
zL8NQdy?v`tKAM=Do5y(jTKC3YN%!i`@(`kOTqm*1QxoyAI7`E8wxECmJxt09Kv>0?
zytQoMzGoo<42|G<VK6P$D=l~WYZu63-a`Qkb1LYZYgn+VYyf*<ny-ssFR%t9a;9dv
zCuhmz5YP}no5(`>O;;PY1BwKs@F7ilimj%OIHgUF)okHVTZDLkAAryqW7ejK2#n}p
zZP#r=EeEf%zyLKBwX#urckGoVKlQhJYRM#`Mh@9*EeJ#`?0^fL;#M$~ApxLW1KCmr
zsNpE;5%l(%(9kJv=BBlG<~DE0YgIv5Jv6L(Aqaz*__7-(re&g&gf6z$^BjeYff}@`
zK%yLZz>*N;h|NNS*m1W2L19#ft3j)%_kw~$QO;%;ik*yxSC5o77~_x{ur`N%DDENc
zIc$JY{}IQHdXRA;4em5Cu-MMR4$Qs_tTN1K7J|zuBPevSLkNX50?VY7b)1bWl7?vn
zXL?zqeJ2LAw6yf3<qQc>8SQ0(BeeFWM@klbn!;pRb0(VkfS0N3nV#|I6Gf{E)_-tB
zd?2N3LcBmSQQ8%Rf<SyxG4%%lqHuyfRUgtNYIa~$?=UyK?cRlCSYm;m`iTbaQ?y;b
zkgR0{Q$bX74YI}JWH{UwVX*)tyGkcQA)TO#bjF<&r9WZZxa~MS%92>7MotHx*{U=j
zZ_dCPO!^Q{BNOcej8oJ6bvRaUo5v7!FkL6%a1cL2vZ!hzv;BaEjacQC5!SaP1I9N>
za(=fL>5(mj%r-eqhGUL{gPX@BpjK?S;*%=aKe6Q}NIBlp>e`_%f5yy^QP3XAy!u}J
zyLt2KJJvHw$_FRj)1)D#Zoyx8?ku-&=)>e^&;9|6TAh0O;kUGJ1s~gUDQ+cmOkQx`
z#yWYVhytcX+&Efg3&l?okAz!?ZH1KXOu@9uygDAY>hCwmC65(}))|4*2)8!-0EUE&
zKi~vLr9uzoIIWT>T7irb!NkTedn^81V}O_brwpNL@6zdh**{^C9<MOPQ44t9hr;I$
zoNy(Zp1j34QStlI#UD&nV9oXoiybL^n!Z-PZ=7hQ9jIrM^F^~fw?SEgAM|>hXaEQE
z<B;D4oFkN-KFOYa2?}cJ>XaD^tbpW|5Hi0nDf~;1kOy^ZF*?@|9_f^<Yni(LYQ@yF
zX~mwhS?xUoUH}Nl){AQu!3l8?63?44<1*JaxicLiF#zSHJwC5&-Eo)V=MWbKFy==j
zVUh>fkUH(pAfVe7$*|!NJrEL2IxXP58c5X>z%>{JM>SY@`bJ_7T8yg@5x<)$eq^~J
z{kq#zXXr}(<TXe4Gkw9@7m><Wn-A!*5lTZ796${U;ir{G`Y}m4fL^dH{n5yXa;NGM
zl>G!Ow4a|}ikkQ$yY%>mc6Vs-$t8(VfwT`8)7zh~m23CT_rT??fz(UN`-5K5C%G1O
zDMZo}s{uC;S%nSFfx~|e;?yTQp^AxU^?98ml4_xp379w}8f+6L2Zx9rvGB&AX5+sh
zoO;P`H6X_rz0{L_U)`cPqd?0|)q^Krc_+KW<L3S8b01Tpjn|3hPsC8Adhjn|VuT(d
zOmf1UE`A>O%gOLnl%vFAJ5$$BooVl+X>tuA&%nA|O<{CDBncDb<ai(aNVRKAO;djO
zaxTFii<d0%;WsAm5k;W_6A;WeSVY;5!oe}Y<2x|~Cc@BcyRq<DJIt`VNM8@M2cx8A
z#6v8DoZafe8&UT&2=E<zrsXIWl1Va(U#55KjnqEaVhsJvzos6a#~!U5=6b1FTgJLK
z8N2@m0DxAFg$rM_mLrA{wYp!Vk{skGa2%kvHUef*1YQ7>QmNDEgSj8;Ei_6eKT*XT
zh!U^N!3v`)RBa@lqFk$REuYdwYtZ3g(T8XhJrGUM8lVs_h*Xem3~n$WP4z(XOOcbh
z7;YodV59ftLNoC#JjMLfrUPG1h3*>4AUrU-{0O_QQLT*4=YV~D|6t};L0i@HN+^e@
z=^ibXr6WC}r+xpwBn~8)oiQbG?*E&KuFQ#&JljaY2&>x*teHX*6bwi8kh7X%dIcMy
zl{Z3zD^vIo69a{Y=xqYJcD|K`thzO8hNlP&z_-7hk>gY&P&Cwgg@=aTK;=%g2<!qz
z2<0te!wks+H;62bQd-EbGr==vu5C|gg}GL^JyKe*53wN6q+Ry*KFObB0Po!MK{efF
z_j+JC*WF;fP!Wv2>4Xlu2PxmTFcYm0A-O&%T%Yj5h)a!V(?Q1I=&QXxt4PE@!+g(O
zn<CS;?w;0!9NzittmRqH1XI@2*8e~S#4T;VYUDMpPZbTUf0|NlQ|tBrVTJ<?rWTS9
z>83qSbyRQo13K2avY5HGX=rq#uU^Ia+PN1{bGv(4Y51jD#2XY!NEB!Pa$AZen)x?T
z1JO^G&Y{bl2j<|1@pxhJ&X-%*Yjpi}M$|1U75Dy|ZapwZ_rO~ZCP%b#D(!@vZvq(3
z55noGElDDFWZj1Q+GVor!uV!=B+wO&Js^%(am;tcN^yGE+8ovuS=*Z^f^xa{_Dp)e
z$0I)8?<+S(FsY@W4YUyv&UGg8@cJTjm~OF{t=K;c?sCpbh;X!53hw7P1~9sE@`C$P
z0P;B6x`O-i)A9P0t$KPw#vgWI38vDHHUxd-uo;4X|C;A2-@yNfjxtAv`bZEF50U;b
z9y+>j1g|R^izNln`qoVv`V(-~zy36&`(uPp1>?R%fZ#*w?6F6>RtbJn+bWzcX~JGu
zpc(P~!OW836fT`UCU%4Fg&{gkgI1hCfl{&y_Fw#}3o5y0mZA@Se)tBLuc_H`j@Gbm
z2GL-VITAfS_3QU=7;uY<bR5e-WC(~ssAfU9^$hGn%Nc?n+%pCD2ZXbIKd?@YE&-m9
zsr&@$)^q4S2lrLJzQ5c;unRd+!nb=a#Yf$rDcp}aa|Ex)j3>F0He;v}r#oRda&#Md
z$x4C!7ngYn8k=1{kO)vp9avH=8=WynuRPTmQLcOvU};oG;x8`j`_D%D=PnZ~lA%xK
zNYUCD^l~hGob<GV@JwP_20$LD*J%f;rdUvbpG#_R#p9GLqx>n%>p(gHuhl6$52~Z(
z{qn36&kg<loX`(?{Ut|)-J87w^$1(T%J8rcn<<hL{Its91a6{tp=F+`SiRK1LZ#;&
zFG_270sW+WD{uwbreobQ^3!2{LI&VVboit|Pw4M!=lc2P`JqYpf}UC)2^Srur-Spt
zHxxsynBiFQS<f#U{Co>L%fA{yyg&eGAv1K4EXX5ZyQ*uy!0&f1zpID0(+UQd;nTIw
zhfvlKswT`9)UY69WYo<9o)@_Y!70wv>#1t?n+skW)QesSts;a{#xRrO{jfTL!Z53m
zOwmNa&aKFKv-dh;Lv*?y8)hUYY)#B<oX`16F<I)wgMf@e<AJNxj(FrT(8J1}dHLO0
z$*+`{Ju->-ILb{xCrMB?)-Ot+MuSue03?kK3=D$v>TYUV|F^I*A#V?8h<|ZWsrEim
zopTUh2?sO@>VUT=V5K7QlA2~sa{ppMr}GLjOZVzx!Xv{pu%s*K$PMLyBt)>q;)XGG
zA(E>ANv{ck!fWK#$n6?ia-<*jthT=;**1waH={Dcs~8rKzQfDlb3z3Hw(-IU*#kMC
z|F1mluRtSSy~^J|3rVf{m~zp&K)I9K+$(!s2MYy3fshZu0UpJ2Mr9k}Lus}^QELww
z1ReuicM<cvce^<xG9Q*|O?jB2%`30SyNCMd)K0SeEvylypTlT#v8$^~sk2q<{J+>G
z6|{0zy~7F1;9)tJL<Bwpdq9asaY$Gp1#VzMhJg+>xyhc8^jmOOjurEtJdj`EXy@R+
zc%bP>1)g9^NpLuw6tQ+8cF&CZ;x~I+_D%^{@HbG~LV0Gi65FRfmOEg0TII@+B%8qF
zsdk}eol;*ij>_-~gZw=-!pZi9h7;HK@X=G>JB&=$sZaF(v8ij?DAd;d18WW;X#>(p
z*6W;uY5U$C89r9_R&sK(QZK(NZLY0&10>v3Pg$jm4sgteBLr$?kBg>Ju4oYBz!Tnp
z_|_oC81*h(9*!wa1J7*H%>p}f$GVo3ERF?<&*TQnC7@z*fVPb&EL0iG!;k8+E~mFv
z@X%X)0iU9nYRKwsN=#c^A@SiN%evKL+ryNRDI{vCTm$6%C1|&3NJ0!L{tQ)lX8GTg
ziv?CASaMw(b8nnLZv$}0yNdTOb*Z1f(Ya_So$;;fLkJP^?P`f~<Uf|KlI-B}+THRY
zfYifkX_?R`X;p}YKgDZN``y4ATqtOev29o6WEq|Z4Nn~mCPf>RGo!IQ!fu#<P}IFZ
z_7zzi;nDH*k`;{`mhPHfC2$LsB=~Ki&>`?i(Bap3Ws9T>#_M~5z(+|{2l+3Kc|x&^
z`1R}8i}0h=u)aL9f#zJ-PW-#gH!#&7-cVTYhW+)TRpU#Q>dtK2YoFC!8BITqjh<`U
zRf<ghDaIi{*U-5|1DpG9`SOZHt)kRR{|zmG5q%!)-)9R2sBs9jQgK+P_I2u*yOUl!
zeaXsbr`AUuMQ!r&NV_DubGmpnfiOM9`o7su?L{agbK|9@&%p=g-m*+rziux|&M%Aw
z0(<}*c|x*oKX`IzUO#w2K*XZVPSEXMaQzp6z3O{*8Po~^c!*WN;6B~h(z0ro6SOi5
zkGQZ0YUG}%&i;b4dF?RLO=;|ZgAVUN>IEva!n=ngKraAh_yhb{Pq=4PQc;NozX@}b
z9R`^iw7DdjK=t)Dl$r5x5fZ6$dLaK2R9tN*!Uvwca)>|pzNV((srA5bS<u*-TdvQ}
zTO{&eg5X4Di~#7B%x*h|(*c)c{@=U?qizauBa$g&pVmzPWdXxvO4_I)OUCU5N(%<Q
zXa4x(52(5swy<cqeWQbkx_b2y*q4nsF(E?&2K*Omv5Hs=K?K(N^}qf7Ik0x9G57rX
z(<npYk6FQHU@V4QB5OWQ1#|{Lm!!)W2e;v=P}GOGxR|0PAEz@=5^kka-ODSr<SKJc
zSXS(LU?8GPOBX;lh9!>9Tl;MVr%Wb8U<CH=4u88t>XaBj670?Y8<ykE{#4Q7B1Ccw
z=S+l-7+YX7;V<-M6f<e)t7p!heOR8ky-ZNf<g7sjC)8aqdye2?W#Pj|=;5I^{DOz&
zgb(MI9|AgqG84B~7Qk6>mEKYkLvbo7g^2cmq_=3q|F&lOtE{q7M1{1r;`t((LR;&|
zVpK`mGGm#h)dBQHb(1Lz&s~y{>JWTxkuoYnRE<o47H!p@YXa`#0d(u1qZ>uVr7+fD
zKBIVM(0Ha8NMi~x{63m&4Xetg^ZgL5f)n^x*`eix6eAO4rh&@<4-tiOOzpb2Xi|4W
zd<SI<!ea|0cfOKR$8toWeNpnHX~m2=x(cqxAA!!G$hnIiodV1xB_+di8}-BaDYARb
zM+`~&1J8heQ&THxSopx|E8ybOT}lP{T;<}vM<`ZlPHBc-54uDvT80b?53LH=b}0fI
zqY*8H0N!BhUv?Grazq?sQLk&4E=|vFrHoN%1KhBT6uL!4L?t#~kdgU^mDrMcs_8E+
zz`qy@!RF^mCk%=*X*DX_yYx~)me5)rsF;Aaj?#-9bM%nQHxlNz3;_{FrHICbL&Xi~
z2Vq%{N*h@@91&<#?Q-}~gPP!HWc5}x&tJA|D`@6K9$*t%K?V)#b)d{(pNqldeqW#1
zY7IRrWXA5xl7XV3gdm&%JDpbdKu&nWT^@>(Z>LPD_lgv{7YrSn@166lpve(YjJkwy
z<A}@pwyeP3%6j@Pt>GQSA|Q)sol+=~mh*iS-OIh4Jdd^>%9`{<jq7)IEUT+@A8}&p
zMXJp0bYz}kG2fok++?hk06CVoRW@|X0J@DJJ;FloS1IhE*ktQgEFL!xr6{(x9u$EU
z8;sVl>4UD3y_XamkeG%qY~PcBZzZe>$}YrgKX1ICJLD-EcrcRZMIbrK-;nqFQwb{H
z`z(vSdiCmcA#)jtU4NM`>S`sJ4ECqv)-NBQo|~CW!UfR3?HNG;1VJD{KY167D#E?I
z%Sjju)yfpxohK;!-qgCP>a-Qq8+sTYDLloVJe+s~t$dW})9F2AxJZlDIvLbT03!w`
zg&V1<WzAz-5B5mBH)$C1qUh?ZVT#IVc~)4K8#=QGGf5}`tcHSCDCt78mt5w^pEm`)
z0s-KgcI6I)V3218JPYaRDCKu|AGG*rP#l0~0tM{YlknLzojbI5++&kcHW(U`28Glc
z82Modh%@aENP`df28M}~rJ_uK(EnKbn&c&c<=BCS^3==vr%hO$(mIsfpCEfK(!T;A
zpASp-LdwR*iuEe^+>hl+Pm96ld^vY&I#q?6>(v~dY^4I3?Hr{4Vui^A<?x3)AhvEd
zmT<AfdZ<wUMF~a>Jw9P+SgkD#cpd3k0npjP&6KXCWHg8g*W4c0{k~KS%lzrNEt$jE
z$`F}0TVH;7NaWyOb7L%<@8&s-X?!}huj<HIGyi|-O#4Tr(Aek?%LM)jD23+rCgf|w
zE9br%ad$@B($3o}0d11G18p|2@<q@cn!pjbciC(k9lVe{blW+kIjFP8SV-xLfJkFE
z;DPN#`E&e!mdE?t4h!yM3SgKnnh&DnX3^*`L(F<nA?R<0<3V5WidljGo}>Z#c3_7*
zJt8otsG}J}LpDD4DIS_cy?TzFpo_-~&4d#&I_aNpr*U*K8MZ@Cb@W!YQOEz&+?NMp
zxwq>+q%?>~5<(~{g$j|-iZqah)r1g<j3H#!NEy;d#?Ykjrp$B6P(qS9Lz&_YnKEQJ
z*YCB~_pNX3Z=bXGKIf0~{<X4rr|0?I!*yTRb<e)UH=`>1$3(%n^s<n*4A6p0G*WVb
zrWffk9*dMp9<TE-r~@l<|Fe>`*2@q_7+|6F%3WkV-S+BEP=siRA6Md3Fuj<O*8D?L
z@uWt8N!5(#DN-*&T%q;o+LlHC@s-5|8O!wkQ_UjY!oQs-Fy7pMRrz=+3ckZS$ZG`I
zV0=_H10??!Z-2LCHF9U3yF^)gMhL=Zv0jNpDHa$Qo^uE2Pa-Xn!jsmEjZ%6Hzy;5t
z>Vs>f%E4=_#Q3HNCmu(3j>C6?B-lHU-!KI6;}TPKXL!`J5qNm-f@l@%E4I@DI7~6c
z7-j3@pJC_YyBAM@d75s^na$jsoL`)=tnzP()igI?dU(?Qh}9nrxDpK*F){f<fAcgg
zt=2{h<V<48i)KX@GH9ANTlIgW3V<<L@t0x!Gi}d7d>wh=xC_&^BV*#*QAEDDLiEkh
ziJ5_E5Yh7=`t#j4#b@{J;={UYBA0a42PXOr{N;LVwgH?vAvkhTXhM~2W{2CxAxtBH
z1<=L`F%#nPHE<dRi#Q?$x*Q;6q?JN=80fBS#<CFVjOiCg7#N&QRR-vHCnV$@UrKOa
z?q_VUB12r4u7^QHV6p4tzs+gi6>?f#dA}v+f7u6*PNa|ak>uQAX$<y=)Dc6#gAIgb
z4fP`Fe+at_?p9Awxa_$Jwk+`{@?W-b2b$3;?2Aw`W(iq}#L@T9TLPE+gz$%P$r%d_
zjE#@x^H_LB63#PPKyyrC#>=NCw4rTy|56)Sn2fz?pa5;9x$-d+gn%x0LAA*7lk%w}
z+9TINX$Es`4!gh;s5{Jlw7fzqe@hHt3?z}*Xh25G7w0S-@Z&VopDX2-J8OmqAD8~)
zO%JT=>AaM%8yhq#AcqG>xOA^3D?pxEVaE@iW^iK8c|*^A39+$VN%5(<(NbXb_oe*}
zlaEOGlQ8(;>C-i|R+lYOxB!=y{)WXmoYbY<KIj1O9SykbG{Djq>;;NNGYy*fHVnNY
z<QUmuH?0PV82x(1b&sK#z$!9N11skn$Xn!IsG+UW{CjRGt%RZGLk#ILjD8AL;j?np
znLF@e16r1rOy$YhRNM&*hhYUfEZrqOngIL=?Gr;g$aaT>;HyVE)MT<|3QO8=J|JWR
zP%_CvF|k<iRX_+K%gpS{w?2Lx;qs2|=w)cL{Kp~8)@|Hc`N@_eqG%wCxFMOkF;usN
z)!<is4Ky5&;BG^QI_)8H`|4d}+K#rCIE$kUS_5tG#vS*aS7iN|WcN~WQ@&42?060J
z_M$n83FSmYc!lY#cc0UYoWWmqX++v`==(mCSVOfqBCx-n0sFlg{K*IX(C|2Kmg<pF
z57zr@C#I#xNyM3fbD^g^>$;K>ivIaZUTcUaN(8=%m&l*|tG1jZ5OB5Tiq1T(wKy)@
zdjQ9Hq#Xx>Ee&-!<E4f1(jZjf;k6Iksn-mJA^w}ZCBmp8k5oKU+N{4Q2mxGt5rAUE
zfz$ofmovqy4i+r;`LkbU{pZIgvR*v?rZ2}&{(Y=g0(MXn1Zh2rJLIB^ipsT<uP^6+
zd5%;`O?kRH2?`!^?`4{B6~1Ni!dvW;x>#|v>bp}*B-X4JPQUcrXHgROY&Xj&2aSik
ztL^p#vg(?xwu{<br7EMhbKf<+CvuYNSr>j+y>EGf<LWNyhD#?k2bxsU>=j+hBzLX4
z*VpOXasJ+5LzzO~#Hq4S`?5uxvTIi{`4nI9d2$`FpfSqGb5moTvQ=2sW&X7SVpUGg
z8{*vkw}h<QY<|BfHF#$<Nj?CQWat!@5R;#(5tAGxeFH)MF}Xr^PKDQF=R^37%jEkt
zDG|Hf`?*<ISe}%Fs3Z+F0A{l%z;lIt;O`~(rY$BtT}wc$zY4xdY&mu@T!#olL|S?g
zNJ;EPxD&5v2s*PwMMdr0z56v-CZ9~?ZJN|{bofL>M5MtSasv*~{Q^1Pk56_!+NE>&
z_qzJCN%~qQeNEX~^~#L5zEzWX(T(Fs3dQB+Mc7Imh_!P$IRO78^|N>}LffgORe%#k
zsg@38-0WG%&R&Rj@u?Gje0gZI1H;4pQC4{mlfgD2&q=IZn-4=ZX=vMh`w=JSAS(oK
zI?Y8$KqlyvRPF3G0I{*fdIn#)<?%-jVhPGA5icJ+LY7Oh3J);la79*orgJP@Sb$pU
z8c<kKB_#psL$<3^n2M($6B82*BMX6r+d{vToHORK*)>68K2X9%ph^EokFf$4wG`x1
zc9-m?Q^$;qM6gci8bB6&U(q(rIcYA#YpDAG?SQmP!$J81a!oXFHFKe|>SwDZt}$op
zUq_TSLWFb-`t_UUK6-xb3K5OXD*Nn>-;b@ro#5t0d-M3T0C0j@Fgxx_9=m|#CaS2Y
zvu?3~fFGvG!_J0=_s2h1iK#;KQeeVT)*Z5O_;g?I)T>voq<PuQnsc@y;c;?tF~?NE
z-?i&3)`DKy`}ksoncBX6f%V=mht20dO5C!WWpwx7UtXVGRZR|9jyK9EBP3nyIZr8g
z0bwYw|Bm6MEJ=bALAP($W_9#x53Ljv+x%UA{d#uvp4iR%$_u1nhhyM7flRxQQUy|?
zzSXIw<RFNGxWw%bnb78_eUc1j5f<?VF6xat*f(?thCPDtq5RFtY8`5SZ({#ba#nFU
zuHd=|%>H5K#s@%hxIPWOa$ZQ)Km>$=!hL-_ugIU@8&gbPwmFuK8B4GuulogXFC%P7
zdJ-RB@WP}-vi@v}zLx)03b(6>`T8sYuVU8G-EQ^#8Xg|XXdbTv99N~)wBpU+W6CN2
z`o3|fw~-%&oNo=OQj{T#)j?-vWt%gL5|)==3Vr%qm?4}xwF*)i3tI)R>OHJ+fH+T}
zMyY*i%HcBHeHkg&5O6SM9clXm%d!kH_TZH<Vgcpf2j3y3>g=ol_$UB`<Q5o`EeB7i
zN;wSo=yNBYOJfglXD<FUF74=3%vr|q=`*i=&edI%h)~|>kV?S%%hD^EF}PW_xQ(Yw
zT&-<xC#$)&pF;B+G3o|~q1(8S>B#mE^kH1-Q<{Ogn<E$95DgQ0k}lKXc2IQ>hnJ7F
z{m3fkPd~vzOC4H74#N|FBQCFE4e34I21#M_RLR9@vzl<gmnCGBAx@E_yZ@jemzPhm
zM)0)aU;oW2&BXZi((`zC(L9ALjQ=US6t}LA&Z5N><2r|t>ukP4lUhWc$le%F^yKoN
zf9TKn!@!`RqCft2i@Mr_hpZI>-0J5e<JKhq=BNFlFj&}0=C5CcDKmL0JjUjcS7JOS
zSZ*<14ln6(0Z%&fP<bWBcuR<zk>nHjP@i)y(#Bx7z>MNoLQ>MQE2^%lHcf9?YP3WI
zyEpkZ4l#c5cadmfBoTmF(^pLPZMsg>p^j*)up>|G`M@V~;*6+g%uTmtt+(Qm)ii7A
zz?iw9lvM{l@-jf(w=m_#+J@)rvRNBGW-PklWb1LiqcC_-OKCCQgunsr*$6J(gP0#_
z-rF!6Bb{I+=M6|eRVE-}@G97ek#K>9n8(75Y}_-l$Lvk5U~fnQvSK(pM6GW?*Olzv
zqUhh;G=OQI2uLjWI)bH7Fa!19lIgH<<Hke+I<y|-o{dbR0nRfgFRu>-6+4Q0uafTn
z^BnU1$&>G|c!#_DR*+Z|v9=8}^;nvePSRY&svQ`SVw|0b#WW6e*c9#uC3Xv%E^N~c
z>c|O8z84V@KqR+MVq>>~*Z|)9LaN(fiNK`8tEK_WHBNx6k6~pV=m>!~Zk#x11K&A(
z<!Y$i9`!Tj;fS8Wv<1sDMB$=ck?1O-pm6UhxpD(@8POS+zWPAWtl$OzrT9##BH-MJ
zjJ*Eg!@jVst~^*Yy1(X?i~IY?Efxfz-f`xPG%*;3UO)ix+L}M0y2#Dh=-&kGr#g-R
zl1K`(1&hen>Wih@wdng#p3H?0mz=vIe`Y3bPJLPt7@{&Tf7haGsh#|5suekKbuOZA
zBKR3lR2ZQMH)p2O+>6}9_p++*NA9=|p+Rg3po~Qb%q>69zdT%4|2gUOVvwI8&A$eP
zu^T+0t!WLwA91IH=}jM&ShMEE(Hy{wn4`8rwii;ws;WgD9qgzr1>PVkD|^S31;2Yk
zmz*|{1&Dq5xKuK*ehxiYiyZ_fHt|&%EJ8dy6a-GnY%o$NLwhf)1egxnhoTOzO|=oi
z>nDPG><8zxo?#$D+tt-)Q+bBc!Z5!uaz1>R2btA!{o*rnIfdhc)wS_5oaFTPB6|4v
zd<XYi5O?r8Ye#vodBPMO=7SM*G}U@J*&DDPG%`MDS^P+-x9Db4eO$Q$ffNbhC<H16
z8%(W!(rY+?qi$1GrNBq?0+#42w_w47<pIquV`!}cv5p*x1y-%VvI`zfkhyo5k~0^q
z2a+H4E3{gEZ^~06M?GDA;*wDOOyH>Ik~u*u$GEE)0y)t+7q_XY0nImoBMTP~&nhB2
zC#)M2EO{1#a0jEjl~6N9X9G5^=sL@VO;fl|$wxclN-=MK3mL1Ju(0Y`#c+uDpOheA
ztJ7+>=n2u=(Qs^l<bK}5g?CV<>;@*?=+KO%4w%^Ns2q(;y@%s#?6i~$_132aA#r&d
zi->IaGND@PFVh)%&RCVibukO86|3rBD~|GMs9ZJkc&TdbBw}}IaF(omVVKR=b`sj+
z1*8_@(u%}mRzw2*O<DE*&w&9?bRWqz?~2;D_RZKOpYLBr7XCFG+>|Y3scZdaN3}Eu
zv0#boM#Rze9w{>w21)U1pWfYTCPB%kco`#@>d363$iJ4LSmWeOKER0EH=Z$WEAz|2
z6nP6y(j-lMdN&irXKsKeOHMG8r%_^r-2H1`GXlCZBNj&=7Lk&=K93@2+ebv?<Hw6;
z?AN06v=86WSy3o{%vduplXuHsGTFxeW>m+^`V?!EH`Qj!t)6%e-<Ghf>=KNB*KOUD
z>E@uf>RPnfnxN27-~0E4HNzE?uWH~|)Y^DGMFNXirIp|694x%#(0~+vG}(L!8q2H1
z0cO|ukeZ&J01kq#3$Ne;Ha0a!M>zyUMAF)mlV_CwR;y9S1hS@Z=MSIztv-1z4pZm@
zZSABxBO3Pc8oG7*YHjX+<l)5#Zz3WR*DiQ@QNzwSWUw8*fDy80gwis+hi<ae#7{th
z3jpyeU^tR{y;GHCn<mm<$^rJrtIrMJ>x~5P6%q!X;qY*~zBp}-9yvKd+z;^MWaHaZ
zd?NSf_}@dnUMAgkutN(Geg)DWHkahVVWY-Og?tlDdB~GDgr3o8q$0u?;5_Dw!^0$q
zLtO^a?>2MuHK;$M*SkWX12Me-IpAck-{+v0a+Q^p{aB(c2yhp3w>(&$FsV+`&u4n7
zpZR2M+{)zD(qf1o7PTvDhiyI&#A(HrE&M2=9BYgLq3~`z#RiKiX)LJ(A<4|#6&=I+
z>m(Hy3;ZJweEPr214ZUrtp_{H>WL9LCn{&q(0SnXfb&?BwJvP9EAF^y>wfOp$i2ib
zF==aQO><Vn@P^9i#ful)0%BCt(1<~L2lci9O@iz&6inXeg3Ox))znt~c~Mb+D0}tq
zst#$5p#D!4yOM;&+*Iqv-|!6@ZsOzQ=6<kxUQ1jl)b&cRT^WUr<$h(?b2!tofx};!
za;Ez6OUH13js4t!pUpA`b7N+?o0eR-c=3cZ?}r?BR}6$j#l%>4#Oyz4;F2u}rQ6xy
zxh-zLsRf+*qwYY-ixUFafF0w50&tDj?Y+h7HB-&|%vF2y)i52!^^>Phv9@@M3P8(m
zX1x&=JzSl(qf~{N)nzCRGL!dKyDM7M)SaVxR3<wEFxdxv9(x()%)<0+Q%!tA!VcUh
zGjS@FaUMJWDDa0@Ia1R9`^11P);dWKE4u=5PQf9NJf88%=-x}YU&C~7z`w%6!W7nZ
zs$wXt9*UFAUWD7;v`3L&`ykLN0SvtjrFowNg8^ue_Io6wkgy9Kou{I6$ow*I<jMHe
z#;^4oAXpBBhqDIToQpm_Ko{S^$7!Xcq$VgElEkp81bg##VeuWN1-ntFsJjBYiLUGt
zL(c`E-y-q-u~1-xH<@P5*{Q1P_3f-8pr`#oAZz;S)11<j%f`=EC%o)WdofvBqElm^
z6bJMNycuzH&Kn?>gygCEbI{m!S`Ar2malx(=l!3BVV3wzP*1MrUL1cqE<QYa4|iN2
zXWrztf4zu4PnNVY8mPAUjBp*ckGtSY{t;<LD%R<@V{{2(7T2N;!Id5bX`<@m_Nc=?
zgY!7+^85Jz+DeF7_|1D!R9DCP$aU6#k{OOQ3j~sL$oc<wW_TS_!o;oK-*NQYbpP#T
zHPY<v-nnnAb+4tTq?OlyoLVuGTu{5J@2lPym8AEqeyryHpC{uMn8gOXRo<)GdqN;Z
z$<wznWs$v=b7b=6$?d%sC5c*11?kZ}_9n`PO8YFnzBMIq0g@NVUyB)e5tYXOp!@h|
zo+3e4txcSfRsY*hTM@mBQr~YWh+Y8Wu{WaEl`f!<Oltd4%u(z63IGHyXDggEth&DJ
z=Qok+<yPNz@}wBS7)byOq1%>ODxzp1xsIqx&eE$FZrira$KSsIwo1>TaRq=;|4F7N
z=q|=K7vPvS8|-(EA(yQvkz~&OFqAy@f(5PqI=S`HDKJkEg1S&({AZ8v^XJk8R{C&%
z8%YBQHkR+UgiJ5r8df!Ua>}MR{q?Q%#Hc7H9M_=%pO76E{;YP9F{74UeY5<zIL?7O
zx|s|>i$PIV>W)e7KN~tOs-1H0<tWOq@b8V8HNK)&4HK&!LtT1j36mI?9`Vfnly0MG
z(@`2~wyOaFjv3il8X*A+USe0~!xTD5i4TCkuopGNXmF%snVPR(e0p*fZiazPd!d&W
zRSYlt;<{c;Obvax8TM^+#1HG;o7Oc-_;J!2dv6CuGb7|n6h7*-o>yv>P!4VV<)zW*
zd$+sx_vQ?L%%v5ePf+@iH;Y--1J;2qpENA;rPe15?%>LM07oPwwUZ#VGOMCl&z4ck
zZP89_;I@zSDMk)40TZ5Cm5gj-Bg7dWA|jy%4Mmkz_|2Ol#HxvV$&#xTX17ra)WHky
zGjcVvD*U)4K@;O~PyOT=4#_tah>7MAXr?@Og28zE&YidLDqjPPXeqS;yF+=F>DpU7
z!_C~jD{KN&?E}qy;Q!o)jS2BAcmPL9B5=g`{a}!;&}bdM2KRlnAc#X#$&LVH<Nl6`
z=K7BL+MQJ$JDHO@&Iy-qt~bzR-gKaOKR@=HETwM3QhUEp{KDL{w6f4$)GeehCSioS
z2)0t%=)v!D?VmA*5u?PEls-Rn>3x6C$|2JEg+4w2R00}I!k7cwA1yQ6v>W6LDiD-C
z-J!+<4OM45UPFp!dDk6gBh0EGk?9(qETzR4$~gyR+8#K16#kqmq9v|bLfLsDo!E6T
zt71js12}kfZT_tAZKJKjl#P}BWtupXj;m6jsg4C#o~aERa2aiiB##36ju_5qILBPo
z&vsdXJPcB55sYQ7K)K>;_lPcy;r2C<(}Xu|;=Z*?>p&1qH<g{d3{L#{A3x4OYtH70
zo!eH0w)E<CSs(}O)YJr;w#a4Z+j&rb8&7ybxd=hh{NJ{3=R~syW%s-tF%`O@mqT`C
zI;J-Bq21@9$@3iXFDQZJH%ekYS(H%O361zt)P%T`Lrp-1+{Zl|6Lr@6TRpOeJ)%17
zUH7u0_t-NmP<pQ|1Tr_=A79Yc7Qzrz;4YT8ox{4zAGOBUzu=rZ9xbboJs*(J_erPu
z9!_Ow4OkGYoZEoJ70@HzbD}psA1(2%F*CK%cBs2*!L{fXOizP~+-;Rb3|@dx@HxX_
z0qA9UShmyq{PV_grHg>_qT=G%(8rm-=ug`+ow?x%tg2hV6x|M;3n{8VE~UuHlW6^(
zO*bps$mf3!(rnIU%dX<SZpH4gZQw(xE6^2l9wirDyz9Oo%|jC)l=o5tH%^k+fBTIY
zs=%r#h!d`Y1N_;xX!$uz*Cgvd@bUM;4|1&sJYhuP25|oT`84Qy`aj#3M?HP|uGi)0
zM$hAW+zuZ;Y=n9HTn-Kmz=+QQe_(I9bC#f>MeO&Bu{kkvITHhWn1spx^l=@)rDTCk
zZ?Y5yuy<hu9GX((w@fszho0G48Y(U_UG}EVHBK-6fK|TPrgz&pww_G=ObC5YYQ5~D
zp@xz(@x&H}%p|R1*$B&xbY4p{vq110oFS~5?Io#`RBY|+YWr}dzTb|RHw6V(_ddpU
zZZ6*x)EJf{+*vr)^XASCMExbh=O5BqquaOiNXo-pvuo)z$nc2+Uc@6JBD8pFYGhOP
zX+uCt@vUJ#7^zT!Xn`{tQ=O*+e%{M$54#5~Efok7%3ETqzN5s|I3NwY&e>jWaKGTO
z3jNxT@%o64L4p}04p@f;?@h(h9_<(tmGN()Ou|GTT4}pUj>o2KI-zU{D)<3RO7l9h
z`IjwQ4Ln`WIBBHGVN>ViM5jvX=@FnyxB7CYo1(+U@(=0IM~#)t8dG}(7Q<tv{Lyz*
zI_+eGLn)TeO=W0J78>O*CxYVqz7N$w+Gb;Vjy#c%I)Ts1nZSqq`%lHA*9&?w)>S3O
z<~Z;Jk+6fG$1*s^P=Oee?LPh!9K(6kvJEGFCi<qQXn=Rex}VWbVk*L{3L_Jhx}<QJ
z9AP+`{7n>IZwu8fz7j_JGywC+1yom4cBYOsRN9D|XTJ#}Ed)Y_GzQ0UU@|+XVj$aA
z<Mig-T!F1FzXP{u2gtXSva31nluoXxU^bJ0CJWUDtL2p7Pwz__eAmYJ55Q)9E;ZIF
zH2tJH{^?VMzeP;ekrzy-E{_7k4W|N$yj3l!h?d$Um0-EY^Gkesd4;Hi#7@Z6zdeso
zFttB*kmgMrIGGL6EW{`|6KVCS*-}hRYdSSS<^eLL7hj3tgL8N6<C7o|8cFk7zQYxT
zyvV?{N7gsRz^z~1*ZKM&=a`67s~9M5)J{M*F(wP<&u8(1U2Z|wW<Gvj`A*Lxo!5~2
z=AZd><viGJcY&tBb8QK=fxtmB^{#!2A%m~;^H;82y9X##8&3J*+>N-g${zN#`c-F4
z@p9;l#BV85%XS&Qi9Tr$6o2FQ7V+_|A)bsx(T?=dMmBw+$gSbxPuOsLKG@xSSb=^M
zUo!E1qf(_Rr90!x`-r<^4tVwC{}F~pw?$J+#jogxigHy>KYaoM?xO98ZP)PUTS>K%
z7^J=hF2_r$fe+g`>XNcS)DHE?fBl-pD+?!nZ;|P{@5fjhaP4M$O?=Z(dC>)_p0;}r
zq8l?oX6}|orEE{=AG-Le!WdH(IaZ^xue&X>u+K=-%X9j&rrJs59P?$A9Y#V9b!eY)
zPJpzDL^FbH#k)wO)YuN?@V(-=M|pl3?AfaEk1KZJ!UYyD(An#)YAW(G{9-yI?phFg
zB&4BTsFFT8$hfDE!7a^le>K0o8ZaRA23-iSj8KF5+#z&p?f5bV|9TdCDO$VKO|)%Z
z4R6tcesKBF89&y1C;cl30o>F;^YmnMw*|5ZCv`J8*lgnt*S_N#_Dxtmd3t}@Q21$B
z4zbfSc3T|x^ka?xRUK|DGPs#gCC0~zzy0tqA`X)<qNUt$@|!F2n3v2w^XvT*`=;@U
zDR|^m)c_2e?e%Tgh33~7Gorr7!Sboi<XnU$#Oo5=6V`(!L}{^imNM|aM^>)K(g6TJ
zDFM6cBvhStASVDrPn0ly$8$W}rRwW2tPJr2zb~UtK?wM%23i5Vh_umy0*43>>EIe0
z1V|JJ$6zLjmz+0${!O&gb+=QO9!Ypp0%76o(Ge|YO(*|GtTdnkLE*esoNLp2^Y-lr
z)m41CO)j}+?b?ZSoGA2nY8c3fLi&%<&fOjK)8QMF{bJVPSZS(+I>2Euvq#b8XprsD
z=SsT-Ou-P6Ba5?~2i0gb3n<^wfocI6j4YXiffq04yn%NykAm7@#Kk~|Q5xFG@744i
zlbtqMq@l^G&@^5`OYQKq*Xg`g=ppx^&b6i@%n9Q_Upq){c_=P^e){u-XGzt=Mdv<b
z*fc7vBI`&Du!e7+fqe7c4w^1GAiavv+Qb>;>Z2JJCugY9syDveX3%)ME1f>?dec%y
z3|woKWYgT#7371epdqR8!w194y^z)s`(Z9YLF@f0IPl8T6ZWA~aU2Pn%R~orf4I^Y
z2$1Tll4Fj>u$E`Ikg{8v77|bU?kuul*sEbgAkBe(_tNFdvCC?<^rmg!`b|E3)i4%>
z#yTALH_&dD(iuacR`5CK)-5EzT=ro0M@gRs&k9)G5T~1rTNL3)9w~KK__e{%CQ{+o
z$I7D$P8c*JD#HeJJS4Tl2jaVV)Z60XMVvQKwaurXO%JO1_3`N+^_tP{wmzJKiWksw
z@Z=3hJ^Wc1HGH2ITNk>PnVFfz3&X_64&m8O%S)ZBo9|gSW~}s@%w@~m^VfTNk8Zes
z-L2X)hafR7cqm<cy|D1v@L)rDP2-n8BgsR5R18df<%dsOWj=kn8%_WssC0k#<T3|~
zrF#I_8j~=bPZOUwL66BK>8V_xyCuXxPp`9!^<vC8U})x}5ieTfvex#)H+K!1p^s=7
z>acHy3WQ~Yug??tmG8^TgP@Z--JFx%7;Gcykv-{A@$pKo+0*p$vz5y=<k^h4RQa{5
zEkO8WRs~8ZJMwVlJVTEVGeq`=b^)2mI~|ByjzRovbC`rt!Xglch=LgdbCn$~BfaZj
zBFeRNsW=A0DQS=AcZv?E_ZGfIB3)0lVRME}(sxKrS)OZlH1KQKFCR+Z2(Bf}X|OH$
ztgBx@hZ5aZ5B~064f6HX9}{@A!dc8p`|mq6%eBkg5KsKFrt+t@rsi#8GSuWb?XKWH
zo>c$XnYpB@+{US<W^qJP>q`|*Gi@AeCJM`!uO6u<Ll+DXNcqqTiW238nkTjdSPUyg
z=0ED$c%#f-m64aDtNTFTq5%EQ)oMR}H3+j`0x_a3gr6`IC9I&Zj3Sm0R37B+J}8m=
zmT%z!KU!{5mM6E#BX?h=ZpPWw6lSHfNR7VWdZ7vg?X$q^uT8gqJZ`@u0Mne5il3S)
z!{-2B4ksfaWgaiPff5}Q4SMcWNv~a{8;r|nIUVr|WJCsJakJ}BNqvto6EZA$tTMS8
zcKm(AIX-T$z=X!o<wEX6yOg76M9oR~gptuYT5xIjLY)$bGVXo9<WZj#GVSH@dJuU~
zo|EO2*9(m&kEJ3VQF##LbneeAjg>9BSnb}xRiviH$&b5x4u$e`IuH7~%V=Pu(OezZ
zhxx};b7i?nWX*v()`RXx>PPV_5_vrqtf^KFt4PIz0r@>Jm8n3~*Qd=h4RSr0Rf#__
zT$BRAfg0<v@m!nNlldz&xYxzfLtJw(^I%AGW8;3$goK#K4WERZUzC3DAyPaAM40i)
zBihPi4=M*%CA{(VDMlEdo#rme)zVxeyp)IM=_K_$eTSaKgbRH#`i@G0^}#atN0|d5
z23MjVMr5{{`6?Z!VSsrxT7uEBw&!!G+(ze3noyhE$-~NHZHq~DyHZ+uAGNcyEPUO#
zT;DWI0J&OzmJ4AIcrluv_#E%X)t$v8YA^|3i!MgzAc|Ho2))(nwQFx(S03MqHfe=d
z`|*iv1r0b46dN@u;$|$cE7NH6Rl0f$mU6L)<8Kyg7o#m$fsqY>I{eyBqF7#E{_dUm
zSpmQlx`Vk}?8#uCCCy!95c{ci0Him;l1en<V<iUWd@%rT2Qfz@(FkqI9?)*bmv$mn
z#hPe6juzVL@+sb-I-_wyMlh+j;gQm+0Wmo}$S}mIHt_EPVd3_6YVub*EM|ZIwJBF9
zu)5qtqrWTOc)O{R;vDnX0IlKUr&~cWbsFWrgKo|a#y?tCp70KJY@mc;Zf~v-Qz3yF
z;!E9LWb&lVTi^T<ZYucmwh06a!t#tqewA&C%JHj9Z#2BUvNv3D9_72m!q;c0ui2od
zc|1fSzMmdH;(K_CJ5x(xgoq5a*zPrNOHFj?4M3_Zbm^&ksgb?wevAen<dfhb^T?~b
zXwtx}D=AhU-XW<a3dV{nt165k0JlS*nw*u|>4R-k3k=6f#I>r97}uLy-g0v06NljZ
zdD_dIVc^GVP3|MdwOY+AC7Z&gkB6@%7=d=AvRpg#G7pKX7jJyfy@-ZirK2DNy@^if
zdaTQ|6Gjsy^k)v4V~kb+8N6+m<z|bT2tsr_{oNBw9?Xx$N0tP9t-RCI(mORIHb>_W
zmulNjhkC41B~f-B8{2JCaKJ9K9W>ST$=Q$%EQ1mjp!=SkJAK$-LV=wHR_}0J-max(
zi8N+7+{(*S?W%kE7`&m{j=c9(UQU-tFvquB#<GZ)SAzTsjG3b=n$wdX$?9to#t@UR
z%CEX|Nqx^RmzT15O^|*@S9|6#TqcL1-2G85uOF|>Yd{sGny7XG%3p$QKB6cFKcXrp
zB@3{%WlHCsXN`A1bL`8p%)XBH4mvFZNI!sb=)n+Btl8sNd_y}QtdqoHKof+Nw(HE9
z=LFZn4r?hw!~QjRs3}Yoi=3M08jiVE{PSvv?uB`l2$)NOnC|R`H7xln4v!zRj-{Q6
zBH?{-bI8Vd!e7Vr_5%hXrp&O}+lgoQ!<O&8VVk3z{Q}sBpwBsp5odG_omh0<gxz82
zloJ-3Vd{T4H!}Tc`b|nCexqR0cikJ0wvanNEZIUEtvT!{_TWmd1k`<HA^$4e#seLp
zHuI@v*aoU|nBMs!W^`y+%xhqJVVe4W?sNOXzqiOaEKj{>^W*X4hr`v$@p0bCDH-|?
zmK%E|8HObZsPCulA4|!to_v4q$HLNO{PE%9G7V3y*>>Vnkw-6Kf-oL4qdUeA+r*i5
zT*$N&=%~uMY<Y#(wPu10(!~EG?DX%1keR1tIalu$Ez!iwdP9TPn*oyh|MK=pYSG))
z!OPJm#m#x+t{@A+eDRRo%9xun-r~OlaAi50EL67)S{3wEpZy2E8~IwdMs_&^MhBiQ
z-ss#J4r&BNg(<u90eyiqh4O;0NDSPS^w+lTZC*wA7Z^T5`gsWsVfPaf%A(_Ox?2*9
z1h)gsMayvpQODt!we@=DS+k-lyQE=EMVv&U6JDn9^YIb<<LtK&Ovtq7U`@m~X^}B(
zQC5Fsh7V$7B!ZN99mfdzyQd|vH6j}#Q6{cfy?P!|Fn@N$)=jXRd=Z+W(4y5sHJoo7
z0j?X6W;KHNaC2XRbK6%C=Uzxm7xLQ(%gOQJ+~t$TIwc=BaA07d7a5Y7AKcHK1%9j#
z2nB9#N@NSMq(P1V^b~RpQHkzmWp#2Wm-E2ngW^XVy#e76qPTXn&@5xjnek04pGF+3
z&Gl5FTF@#08jJLtQlJQ_>KvkO_Tj?t946tlYZu_trrEX6$5}X!VAl$xvqUos&>W9u
zos$7?PuijT_bgPu-7i2S1o0&1(W5yCLxkFv5to>9gr@J0QKeqC%M!47Mv;5zAAeSD
z_z85w81|`8o;}-+2{55*nLyscD{IaTqV-iWBn6fn(%=CtUj;q_;SS<DCfBa2#_!5t
z?gMG{902a{MxTT4^x696=O<<X<hg<X(F$EnKHvb$`lGoXTVd<s1ty!86>}bG;Rv^I
z?cumQR4r$qm(s&#*i&0JH+WZvS-nJmFQTZ(hk=$Vcskf(Fg1%{ExN{byJt?7+XrmV
zSO;xBnjDz#?1BXYb{=S{sR1MtC6e-*cWITWK8&zLKxGF=&S_IZUK5jjo<|~s045W=
zmrfL70{~*`j!zfX3j&-W){pKvFz}R7dGpdK&2%c{ZlWikT6X$KPeaY4oaz+ZZu-87
zo&f*+0~(>`-hq+)H#+2?-GjN)lYMelC>_gAxc;nX5eDrZvQE3<?n9Za_9-0k3Js@F
zkr5zy*co8uXB-o2|F<*51afY|H{1TU_00Fm$JcSIt7bU%tPv3*AO%EbF7bX_+<kp8
zfIuqMKv1k_r%*-hi>#@t+67(GxEuOCR5mwnp2X1k0G4g8w}|V(<pu)RJqUy(=q9C8
zh?0%|+yj4IaIRFgIz^wB%KHnKKRjR(U&a7Tg-ftY<pD^XJS9*~KrOJtT_4N6Dytz2
zvjJ1zN~eZN7}H<JqE1U89s870;0BWDw}16n{q(MuQCNJx$Bl^$d_<x<s%Qo(5X#O%
zEw$ajK^DR(CeByTh0X)f1=#d9wX6f=zP_K6BS>b&cvJbqV031WPXn*SAoxi+N~`P8
zVYTASfky+U)HQ?vpk?KK<%-T{RVfLH;;x@bIY-XlO=O)jM^TSw(V~_g>!)<;tLw`F
zMfl1$yDg?=4a`Tkaw9O%&{q43mscT&MSRJo>POj%0o7G?%1QF<8a+q*a<TUYty*ef
z8`~c=yS7{0>aU)k$S30>0*O=7Zlh<iu+#Zm%X!u;9mX36G&c$`t|DGn-kWX<ySE8A
zRj^PPF5d?UfTskIXyEPJm*8(>1n>23rjy22xQCWvxZ7<v$j@GXD>BliU$3M#ysJ8%
zA9Q<89-dP#aZYigUI**#X~XNfS^|s#!sEt0HRp`0YX}{LO$=TFgM;T%n{o7FjBVny
zjwsZ7SMxQT!flQz*K7)tl5LMGoj0v_CG;Ee7&rz8UsX_?z*b@hC2JHtct0>G=WN_n
z)89>1@<GIahT}3Y70juP;Kt6=gUl}k$&1%3!#re6X)K9yIF{=%`5eSAK+j(w)Z}4x
z_fMXLLA)`LNN}y+V9L>t>Aud;Gsc{I0p~09myq{Oyf#X|o492oB<mAUY;Zv4K={s(
zK9^ceV*%<L40^mV6la8h?;QZ|`s++1qY%GvFBT9sly7_PXo1vos5Bua`~saou!^V0
z%%}e&VqiAJ2TCi5p)h8WRUU1bg_^6V$5!D%SM(qEB+nT@uuQ@R9%B!EeB40wkdu!a
zJiLsvg#I-76Fhi>kc)O=04|1+`NxkRAKbs67o81N4*412l@dfaN$U<rz-t7@1>f8U
zz&9ourB=Q^7@>FuqJxG#^)0e%#b{z?w*CN3$Hz=38`5qU*sU{8Jv9~b$}kX~0Hm}5
zn`P$|Eax*e{luQKojAh}fl0l<$MhayK}N_OqSt5-xnvXJ2^r#TO!4z$gPY!sH*eH%
zF|t{3;~&3XSf7;8`aS)n`?qenQ1n}f61!l_2T}YpdFHbYnq?Bx2Ej97Q%6C4e@mbD
zIgmlpkhN@~al9*dO?!reg;ey(obcx`2l-7)Ya!56asUXW=%IJ}%Rke7^kEAugC_G;
z&>}wIv*EP1$mfn}?cpdfB{TY&hsvw}InjxfAOAW)o@O-&J~UrKe*GJwfY_zJS1sW;
H!wdflq>)Ik

literal 0
HcmV?d00001

diff --git a/oxAuth/Server/integrations/otp/repository/com/lochbridge/oath/oath-otp-keyprovisioning/0.0.1-SNAPSHOT/_remote.repositories b/oxAuth/Server/integrations/otp/repository/com/lochbridge/oath/oath-otp-keyprovisioning/0.0.1-SNAPSHOT/_remote.repositories
new file mode 100644
index 00000000..09593990
--- /dev/null
+++ b/oxAuth/Server/integrations/otp/repository/com/lochbridge/oath/oath-otp-keyprovisioning/0.0.1-SNAPSHOT/_remote.repositories
@@ -0,0 +1,6 @@
+#NOTE: This is an Aether internal implementation file, its format can be changed without prior notice.
+#Mon Sep 26 13:13:34 MSK 2016
+oath-otp-keyprovisioning-0.0.1-SNAPSHOT.pom>=
+oath-otp-keyprovisioning-0.0.1-SNAPSHOT-javadoc.jar>=
+oath-otp-keyprovisioning-0.0.1-SNAPSHOT.jar>=
+oath-otp-keyprovisioning-0.0.1-SNAPSHOT-sources.jar>=
diff --git a/oxAuth/Server/integrations/otp/repository/com/lochbridge/oath/oath-otp-keyprovisioning/0.0.1-SNAPSHOT/maven-metadata-local.xml b/oxAuth/Server/integrations/otp/repository/com/lochbridge/oath/oath-otp-keyprovisioning/0.0.1-SNAPSHOT/maven-metadata-local.xml
new file mode 100644
index 00000000..db499fc9
--- /dev/null
+++ b/oxAuth/Server/integrations/otp/repository/com/lochbridge/oath/oath-otp-keyprovisioning/0.0.1-SNAPSHOT/maven-metadata-local.xml
@@ -0,0 +1,36 @@
+<?xml version="1.0" encoding="UTF-8"?>
+<metadata modelVersion="1.1.0">
+  <groupId>com.lochbridge.oath</groupId>
+  <artifactId>oath-otp-keyprovisioning</artifactId>
+  <version>0.0.1-SNAPSHOT</version>
+  <versioning>
+    <snapshot>
+      <localCopy>true</localCopy>
+    </snapshot>
+    <lastUpdated>20160926101334</lastUpdated>
+    <snapshotVersions>
+      <snapshotVersion>
+        <classifier>javadoc</classifier>
+        <extension>jar</extension>
+        <value>0.0.1-SNAPSHOT</value>
+        <updated>20160926101334</updated>
+      </snapshotVersion>
+      <snapshotVersion>
+        <classifier>sources</classifier>
+        <extension>jar</extension>
+        <value>0.0.1-SNAPSHOT</value>
+        <updated>20160926101334</updated>
+      </snapshotVersion>
+      <snapshotVersion>
+        <extension>jar</extension>
+        <value>0.0.1-SNAPSHOT</value>
+        <updated>20160926101334</updated>
+      </snapshotVersion>
+      <snapshotVersion>
+        <extension>pom</extension>
+        <value>0.0.1-SNAPSHOT</value>
+        <updated>20160926101334</updated>
+      </snapshotVersion>
+    </snapshotVersions>
+  </versioning>
+</metadata>
diff --git a/oxAuth/Server/integrations/otp/repository/com/lochbridge/oath/oath-otp-keyprovisioning/0.0.1-SNAPSHOT/oath-otp-keyprovisioning-0.0.1-SNAPSHOT-javadoc.jar b/oxAuth/Server/integrations/otp/repository/com/lochbridge/oath/oath-otp-keyprovisioning/0.0.1-SNAPSHOT/oath-otp-keyprovisioning-0.0.1-SNAPSHOT-javadoc.jar
new file mode 100644
index 0000000000000000000000000000000000000000..65b92f445fefe553438c05c799a39fc983798329
GIT binary patch
literal 71430
zcmbq)1CXfEj%M4oZQHhO8@FxSw(aiQwsG6GZQJg>Z)SFO-fr!yn%z@B^4G~p<y3u@
z<RtkOq=7-80RAx=EV(5AjrflT<lncfsEQ!1q?{PN!hf(q0M!3wqfVoGw);CB^7lsh
zuWYh{a*|@A$|`iSVh^&D6Ef1YbaSxMv{ciRGmT0Ni_E)6jx<u!qcqaALJ;7G#cIiD
z)O{rG?b%YyPEyV}RMjX%(osy*sNN3~iOfh3e<z}pkfoKB`;=lqBgQZ*pn4)qD?AWr
zDLeEi*9f#}9%1%jVPQPl-P-~Fr-A_grr=+l{&Rr*rHt)t{&NfeCkOn0a9G<JTNpW7
znwXpZ3+8|9_aEZ^3$vY}v&Fwyf$@J?VdrfBFIG|fi&a*p9`=rQu9i-gcD9zb=Kn$p
z(|<#Xv9+O-6RnHWzuG<he?y*wqp_XIzY@mz-xv0O>Im^~z<t{3J2e3U05}E%06_gK
z*3jDe-&jqZXw4iAZA|GboNcU|Q*`Aw7*IlQ$glWuycz$9UIr5l=2xfyRfWfyu|Qn?
za!hI*j$i-ds{MXrPJVStMn{HPtWuM6@WOM#TeGpniA}Z^_lN_wHpN=}Qnr!?8Sh^o
zCfC2J>AKv*k#7i+aXb$}oqULDe9{UcVQJ$txoT9O9|foC+26pewr=UtM^yqd-;Y-O
z@}}%Y4zY`dPMJpl5}<#lsNldE0Xa@qDxz0q+*=?rMT^Fu*H4`HAaqoRJx7f79o=sM
zpB#++f@ui*5r*IryS2dSpEZYi88){^HHJb94v)F}ATw#4NMWhCPN2OkL11UjSpRB-
zeT_UST?4!R%GU`Ii$zCm9n$TqDyZaOJll6&mj`Q*USc02Ezz6_ePE5~2t){Li4tx5
zac03VnV+Y3?V?#(cbwoI$w;Z=f(?Sl1<?!k5hgn=HA+6KF*LYp8d56K1X5L`_vd&R
zfr9mWJvx8tR}w85aqnh$hECMF?e%kPOC?D3bdDHvL0sr#M^(;ij`dbjJyoh~9MNbu
zBqOGiY!{{e;p!qewfSb~Xc($dPb_jnAG#ekdQA!JOw}*xOP9Cb!8)>A0b>*OXhR?w
z`z<Ep%a@R8PobTYn%jA6_utov@3vnR&10ZKT>NE^s^Ol5=fS7^Lbk*!$SX&#Cn2u1
zgx%^-bO+Pm;%%%aXEG|F=W#>2q#oeE+;aILmMD9X^RPc>UhL$O8_&26Ymlv@KB}Bl
z2|j$&+V%vYJFgh?tM@l9vn=@nKXt51kV{yPzv*|ePBd(m0)J|brxvqF8=i#>ua_-{
zpG=oFPp>EJ{-+)KcUY>5pw+1Ug{AFZSfc+kEN$)n3ow)aFTm7B#GkT2SYJ9MGmjx`
z4!UZ2+?kPEpOe+8&Pg6`cKXac=^}S^yD>^P*;$arFll9v=gZ#FAr$}`#^Z)GMqd;C
z*bfgyG|7}Eu2M);kJjBrBq(WqqBM>g3Z&ywIfI<I*0d~JLaa<?l7QBZ-yVVA>L&2#
z)+zQ5L;&#}5*HjgA|a#5N=NdjkNt{7Vr|vvbBC1oo`y~t@D-7_cqN7^0#-n>-Lea2
z#laI^<aCigfv^={vBwY_sU%Tu!r?LTr)Or2lPoM2wG6V>Bo64x85-QLv}v0mpl@fh
zI0(Cxwx74xG^D<Ks)S06#0~;`4*RkO7@!HU(h>T-q=R7|6^{&IDN$tLydp0iWC-^4
zc%DC@6~Y>Ks2nZ1_j`ljc2@9}lY__BQB8<1Xqbv@n2wr-w2;&Q_X&!PJyf9L?!*kl
zMlH*l5%cXxZ1PZR(bcKdtx1>E!1<ab6VivNc*XQ;@W$jKH(Isc+7m_aS~h$v-D+R<
zjbx;hPn+|AO@yxs;lU+49<;}Equrj?#@$R++o*Ozo%Hb6IbV7gj+LTJJf*F4sr6K@
zgQi{EME22F1}*+|ZTZdejaHTpLGgo=)J||YdZAqSH>rrHos{md?o_OqRp~=UIn-jO
zur}ni|Ey0Lcb_8_w~<2-f1n>zLALA<pe1b!?RwO-YQW`&&wi*l?PW`KaW&DIjnp^%
zxO8=jT=H`I$Hg1iUnrVhbspZ7uF-@wgJ-ob>_lHk7qx3{<>~)364N@6ThYM*0Jg~h
z00jRVcK3f7TzM4*K^JEWRVB%PGp1KsKX&UJC_g^)-{AB~Eoxec^KuJ4EZJJ?Tb@<{
zR%@~^3x_1|`>cZ*HU^t#-!EP*NeC3y&cetaf%zP<I}ab<9)rAHZu6E;-`BZ`>fKRJ
z^FB`AzRN_h7aw-;T0MUA-1Y2uUS6>C$Sg@RjJb1*FY+634oD^UCq4WbGF@W<BSU>R
zy6+KKrEy=$PLO(4Mr9r^(|f!tq&Df!X8_?B=a}7*#Vpt$a3*H5KrD1C-*A`^zX{0p
zlDo=`u^z%NS-Q%$w>yXRjMHwTb#_mn92<UuS>SRHK6V+~+dO5TU$EpOWkd5R=7c(K
z4F`t<7WOj&W!k$f;ou@JRd*>~%cD2xC6W~g1wrjR>9@+n=!R6Frr424_I&20Dv~8Q
zAC>S(3k>c6c;r;~9a6kj7^Xn+nIqJU*7`0UJH&}oy4rb&xpRuPsRNM@S!E<!TOuz#
zyz~aTf8o2->bZCxmV32$oo?7jlQMAy_eIQ+u+}%1UT-tI{X`(Ln69xR#)HMGETEVG
z<>M48EC~%rNQIFAy$2k4eD`~a9b~we{q(iZFNAhSgG{LA<he%YxP+t3Db*aeyy$UF
z4eSd&+)JB>@#OlZdMJ+!ZgGR?OUaD&x|Zu#$-B<NtB9ABu|8;^4UEY7oe(C`H2?<8
zVNoy!hINuagh$mY7p>H0Lp7C#A+lke3l_YxyS6<TkuCYTYIqm8DmDNMsU#l2?zAH6
zHChgvAEd`*`Q-!FR%vFCFeb6cFcvUam3os%P`ru+-op8GYc&35o|VK%rgvQ8?zl{t
zmY%<Gmi#!aJt&&Ew@t7d4H8*bI_1r6J;TUR6SEN;Aw<QSR&Vx4G2zoCNL{HaY)SCc
zm-k@BQ#IM=xn?i}KJYCZz#p(aYuYYXdMwq^%Y&?#C7=euDJk)maGEau9c-bFjY`RZ
z{AtE?%NWiW6hSRMK!~a=pN3PmMp;@NKe|s=lr6TR!Ho{l>H3W93~d)}<cBuY6KjND
zw5lKe58Aa%N!u8tzrkhUk7ed%26~;@xG|Mhd})ldK%8;EkC+!J0MwEfhmQUYh9h9Y
zFfzO74Jwb^@3kk+jQjn07Fzf0vx}!OWC<s9YFWWADEf=RZwgj@(fs8HBb3Z04Xo&)
z9$mnLObi<uKj>)nL|-{$;v2h*(73e$TuBWi2^AOw-5j@4tS*%FaL1H4KH<${_y&bz
zdRr#V3R**l-Ta41mQlABpe}0ag)&&iA}8kUl`J$p9w}vN$%$<}BB{OECj~fmDvlg0
z5qJqu+43(-C{K4D-Y7S<@&>E?;3qe-Q*J&;pzNwT<J@+0g&kr0QDv^7>TCpDZ<{}(
zyYR(G%Oz9pV65|`7|j}i=vE(z_u6xl!t<6NCY%JcK_pu?{&l*?d}|1O+^D;jzSG`e
z?ii8BSDHrpO}&Kx>GYdIZgt6~A#9BZ?7o#HkM|xWUjFxJWTz=Z$YH@c`5{2&@Xh^^
z*$W(I9qjydD@f9H?ZY3SV3@#21Gk8Cs;ca4q9v(u5K~5<2(RIP5~cu{3fuA6;S-G2
zfYM2*3L^7)Oe*^-uQ71L#mtC3jy$n)&0dj5j{VyE>6;hP(2wnu-V(~_T^a*iquc0!
zITVE*Q#Lhx<<Qmh{HG{33yW`~e8zpXA`*dRRinx_hod6xMinobmf0pVp{tivyp7F^
zluTJV^B41xa5m~;p|5=q5aSGO-lCrL3q$oi`q?Rs#G-I#y=}Lt(kh`kT4qw&TE+xb
zTUt0CSkAx(wYNofs8Z+jcJd?l>A!<VF3{$nJ3Y0dO|04hSdp+1PrYbP(0R;!!1_59
z_^q@W>$KIee#5S~>yETsr0o^5R|Qv2Ty_=BmfBSLov;KqO<%YV&ad(;)%7&$Toemq
zgc86ovei$U#VFa<+BoqqqSsuoOy#3Fad(DvJkaLabZ5~5zGkVM5AINfX=*QTskOm4
z`I5M7DM2QYG?BTNYoAxmfDr@M`woYKsS}u7c`T>{9@_xc^?&PgSkT_Nr1;jbzTYW2
z43H5che|L=L*cr06x%r6eg(TzqKc_E{ds+RXb91_162kU^R9RM?Wkt{_9VbXzRNx|
ztBTgKgYF$pc)I;<2}NWls57!nE6126M*N3w4PPg78S4W$@sCMo&_d|6cldNBSgK*5
zDdMg_rI_+Fyem{G({GULZ9=9niL?;+&hdTn_k4N_+i~%4X?TENaXjYc_9HoZwN8vb
zix0=dGx5|zVbbvXm({g=QPiu}?;O(&UoJ#17b4dy5u5T}MC#Ov{Cx#F1ygRGbgfu)
zsd!T<<W3U?zXvP2V1iJ<SZwaRe{akap3g0!2f`wW;%(aTcs%!ia;J&U<_yY66A2i(
zglfE$g&xk%#0a1cpF{Nh`T1wB8?pkp(eu~q`Z53jNc?|#T_G1sYZFt)|8TxnPWx?`
zKfcT_{HNZ`ZYIapVJ7BYZrG<JBpb5qfMoHm@0Q}L@EYibZzO=y++RB%5)CncjT0@F
z1Eq!%@lW@s9&fz#EiTVnrnStU+CPz9*xTFj-(N#hE@AGz7~fA#$f0Qi((JcX9JYxC
z#T7=G5y|%qUFV*I(oNI8umeLzh%|D*gyeg-bTW_0y-@84P=OjFdLJ8h(>)J9^C6;n
za{jM9XN-*yWoN}lg1=5k1P+X@^9VpCSqDv;NP6cuV?;%;rgl$uUxgpqJVZpKZ13y<
zFgZPBGs}ASUmj80al6RLN2XTZ$dqT3G01#geTI)|Yl)R$E1tt9V0e()D^tt%idwvT
z2^ED(fVMjDd!GDSye&&Pn{H4kh=z*?DwNtBvFs5^iO2RKK?2W75V)Z63^F7c&7qnH
z=Ot&cpJ&Xu+Iu^D(i!oBNMg3%ZgKzk-s7bf>u1Qs1|8&|!FQZ|{ps9}&wi<mn-*&I
zB9xXYo4q$$lnL=7uJikh^1ENZpU`|4Ah}H~drS<H0%#Ivk;;a~qC83v>2Es%6>PiH
zt%khh>GYexPPdiT6HPSjkeXQ?dGZt)D^LB63+Jn>_d(Ok(A3|5OpHj+FWqI6e|N<W
z!mmX)#;>#By_(K4i?is@%#a956SHS*xA~eti9hBqGTYLW{U=Vmc!`KlsJvm@n~6#>
z3lPYLjWtH+wyeJM#cXJkUzhnukg%v2P$?B?R{(>nOI;-^QkC26;W<w+4!BIWRALeZ
z*TI?ov7jVfk}1)sKmg3VAj4Wh6%r%O8Wo=jBX<W@@`e`k`MucdJ1y#=(}?ATyI7E@
zh=HYWw8J^Jg}N_m{w;hQ;A3J`;NFyQOQQ-;qkSFl*=qq+#UdGC$am9lnhXte&>gU_
zx@E&!1*&68oxx1WQe_kl%)DzCer1!PM4GJQNUWW_24m+Lk`bKKyzX|%nybVSGacZt
z*~_EV7)jC^dEDaBKf&49aOcU_Xloe#4^B-V4i-Zg#IZf_<Q`i3R%pnq8hUWa2Upli
zOHb3Zxo8o(imU&_F>e0e+!tRF2rZx^EKGfS?<=DT5>b+gcdXc?rA})1hjPQ8;j-)#
zmYS)j?+N7Hj5r5!{VzEB%BTU%R(?*s%4<e!&71NelO8+${;qy8^q@Vky&P$N^7^Bf
zxR1io>%AG2%VFdc<jJmWaBS>tDQD?s>8Ovn(@6aJgz;_bg>_19Lx%}r<#k&Hd>xHf
zh2Tp0O4H_P`Jq+o%#FuvrxD2!*p<4(EVo{maO|UGTbUNS1SXq;M|B*T2O|$$cGqx6
zlLu&Qb~FpgdW+_|Mj48WL11k}kaR{SxwN(vb|EMJHW<?+Bzw@08d*`OloHkmD`q-7
zu+PkNof^#<W%aFzcN*2SG8s~!dDKGkLx-eZbuwY$W$jwh8L@^hJLO@ha}#m<I{vmK
zN)JkDr!_VIR<)`&FP~mEQz6FSX>NPU5n^IOho4lp=zhbdX$u@?<;lDbtB}1ly#x2$
z(kiY9(pO|g#Fa%p4-|EN#LVGW@m*peQr)B3aI?}aKH*5qgaed0$R&_B!m#w6Uy~*R
zzewvGlil-+Dp79Yb*w4Of<q?7e&)aBr7EGmmsQBimn6~=0&r6nYm=(a*qxo8NjdBW
zXd_V#d*l_vtTYw!b=*ME;dr^W_luM=ud4HS$+@b}+^x*1l`2@+3DXE@L?LMBt*shI
zHNsxe+eI)_pV3-cf@S0;2yT}ERu$Yq%r2r<=mSB1-S{D7-iC4`-t{D$El=^GkhTL*
z3eFrBF+4tvjA|n`G7fM%7|T6;n$K9A!C0yDI_^e`z<_)BwG6Pu?rZ^iY+0A@(TR;?
za{=iIGf~i-m8+%68FB$xq8r1WeZ8mzV_K#DiswT=8)W}BrKgs#PDc#u^1h{58Stz>
zlG=aHd16=2VGzwWVeM%8vOp-Y!~$eXH%o5p6_!DRnJY)`Th}l}!0a0y0!efdI8L7N
zXE_CCRUSh*8nkCEO+dRZzXvg=Wvub19NGs>2Zx(XmrYmWlV<Io*HuxB_<~EeJ%waA
zWBcY=eU1)nt2UckNiNUDKOR<+*%_Gs3CvPt-m*G@t_1MGp-VU=)}S|^;)Ib~ozSkE
z3>y;MzgwWoMnC`PxcjqOkvy(diE=d8uqN%#84ch>za}7^eV8?p8Q=kkbBIe9pN#x#
zK=Qkv6D<KMxEL|4kHHi_LFg5n8(}_rEq7J{9+&l{%Jac=H*_gjWMGdWRcY8wVytjQ
z@9uDaRHoqsU;L7nM7h~8SY{PR=|gA%fj}aFqU?Nx3JOlq>W6)LJUMeOM=>U?BVoW*
ze&j%TvvMs)-?l$D2-<!?CkK2rV89h%Vjp>T2XP$LWP|=}m-98yOc}#sG*aAj$mOfC
z!RQeZK*PEl+BMHzPz9%{oYz&+qq&O<z-0~_&a3spF0ECcHZFMCNXrXq9QJDjyugtu
z&IfHg!G{y>$r0!Lh+}cWq5K@PP-@c?jJ(j%vS(gcvC~Q7s=a()Lq+$RDp6gn&wn8J
zK6W&<)GVVA$Hs|pjb!dH>?W($&%-!w0~};Z(z=xh2_@7zTz1PSEjuK`v|OeO3~==o
z{hwomoAg|W(ZBhjCSm{p-v8GaLE6;gKLP_AyA3vkZ@v7V09F5GKq^YP$b1_b_}C;G
zP2`R66xa`xStOhK1ksq{E6;)NkJw_83A>0O%$$uS`(Kg!xHnJjNvrFXjjjtn-A=J|
zUs+a*?cCixzlbJWw{~JPYrKy0GO%y5gQ)H~<v>!BNjY4%9#TW9B*q_$F679N%^eRJ
z`0T&5*%Jp|bFi7o!jZ>kfA@MTdYNvNi<05;5RA4gMQeo^WyA19k$B3A*r(TiWsn3L
zOA0M!70$Rv3!~*rEqUDFY^uZm{s<>M1^ezG5e*wD_k2X`5x<$0eL?2pDaSL<f{7TE
zfV52F7jwSUlueaLl-S5C9TW;^zo(Jxk)VBngd&;*P1w%yGwfY)l%z6N>O~eISQekc
zfCfw!CN~pYJYc~=2s6awlqsDC&M3`}sQ{p!GudtWnkHuwO>rIQ6|oOkR4r=)!sP&$
zTe@z+%DFb(5RaK&@||MUK87N3m*AlWaY`0Z(^?0|zZ@{8HIYdIAC$b*6p}M0A`&VN
zAt}$WM29de2v6!U=Zx*V&6(ry%-P;)?D(bChz?j*LGz$2$JmI5#G^5$y5q_RU8y%g
zheFTp<{THYK%TLp%G2c?uuJ@g@?{!&F8omr#Mehfgj<p!oD}bE`9f`1UKaqnhftAw
zNPKUG?}67qXe;%2o@4~K>`c%hCd@jD@)J4TB4>v5WfQsvZ-FL)+V4Tgx@oVAyhiFp
zX3Yk7*7gmJQEMe51qxNs*NuS$*<d;@hV#Uc1<{|AS&2riW(r32*7X_G;d`(weg%El
z%3Z$n`qbo*wKK&8<DM^|3CS}ukA@dCa33yv+ZNUi`~V7;A3Zq)J-8o$wn!%RvY4#A
zuP8z~IRIzOHCrQ2^+-6VCRZ5)C7O2R_?`?638qQBOEG-}oM}a6LMT$XN+I2wu{#mb
zHyj*CnXzibf@8$zg0iUb<jQ6f41zWht%Sn^U`B`FI(bR#46Pq-;D+|6Cei?%XjM1d
zU`3>EjdVo?8(_|4fu-)8%j!6UI^z!Ifh^+SoEFedxRAG?{V>?%*9XI<&PjZ6HpuVL
zRYrHZ0|&K9+iA&x$e06;1Ba3tcJerh>~((z%qLQv)QBy`D!&E-+LOWZGG!xE0<#ZS
z4$QPc3&2ZS20iKb<YBGtJT_R|?l4{?6T)x?d;!+xYgQ;7dkKO1Y3DeEmeq@5^7$lF
zFso(}mPZ=<%v`elZIdsbSg|;412J>*s#><Gu9a|OV#$R~JwmDD(W&29*2xYXYN(sS
zqLe^aGscCXWeb&c4Pq%ix_lPBOn`ay5hs646zPvMxI4zV6%ghz<PE7S!DD?GKqXdi
zkf0kVZTgXvh;$Xx&<x!WXVe931)23jr?t&1qh^0I6?Z`Q%Zhu1w<ye37xq!=Eqjw|
zT-?1stP1`(wUO;T!PlwlQk6=U4$(9<_exQAdFuW4%-abJzRX-VEWkT3z?|U%hye&t
z#tBt<+7Un20ysRkYRg-~w&5to>=A_$RYguBY;=#ZN9xBX(kGxu)MSLQ|2_PKWiNAY
zL>eDmCqe+fo*|UNEdrXGsw%D1hW#>)?C#C@mRoD@bd_Av{>@JHIkFGEq~QMrR637G
zCbgs`COuJmw|~xT#01eYO1WvB*QKAzbK-BjX2QtqKr}$gDYdmYEVgD}P@f5t=DJLU
zD#i@W1iL8&sy>p8N81AN@aMB?mp<Rj*i_xsXHGHUfE(j?q&2ir^)*f2k$2sKx<9r%
zNUTO1<@#p&Ql}9KuxIut;!dQ%4$}2jUHmiU-nzqi$V4cFg-&@z3rr{=^w>2ISxUD7
zi8g%M100Zc3&2T@L)>7dyfH~p=LR*oTdJXYDQ2Q!oV_gQRdzEe_2CDV^rhec)cb0S
zDtnQVx9T%9>d6Q0g5R>8i)T5QVVEbd@xZ2dhM#@+<ND#){4+2nzVI+4D2_zEXG>!6
z#ji>rFE^rHznDZJAskR`M=>zuGGZ*@O}jtz4=}Be1?|y4h>5APO)DqX<p@t6Gim<4
zn1-1CZVZ(&$9;h@k-$yQCJjk<8Y+=P<us9CbwS=zKtRA$l(A=dBrE_BtT#u{BuYpW
zC=hPoUo8qhXnOWF-dmcUbIjZ}95x@mA7<aWGxt%scu9${>Uf;#+CT4$gvO0mLEr<=
zBWnY3jbZra@K!9}d^31bb&t3>{3h$(MdSz<(u3o|;h!)@s+Qwc%9&w;GGH9G4bHzi
zrU_3K)zP!zh$8fERO9%wPk)N{3GB(|7l0gy01_n2x#VS)oRn!56xCHh`gZaE*+t?_
z$n9qRJw~Te0sx5q|G3D%IcyaV`+u(n{v(0C!G`wJE${;_2igKsUd%!1xq<Z-&v7<S
zTOYI9Jz$6dq~+PtJX$C=?;2zH^U*CX)nGjl(K*p#f<90|8hP^(cEcOV`@LVaaQ;)~
zHBI-fo>uj7_joTH#aVOn^HF~EVgAMZu^ZzyYv41cjC!F_%yakk&@zx+zr5Dk!=E?P
z{gyy}IC`W1VazMJ{ThJ))g>V=_iz+-K(CY5Y`A?yY)~Uj%o0V)g9{2*Y&MPIt}^)r
zrxdRvJO~E;%$#>85o}$%=W~U-$pVM<Aya$__2U^|KhRp`@JQ<$w_R7c4S#u?f5(Q-
z1UQ9BdDc(A;Eu*YoA67bc|+f1w{CVDG&WRz{q!p~#F!5Cbl3Q&`=fbIdW0+BSR6Dm
zg3yXohq5@^Jpy6`7*m}17G%X({&cc4M3iiZM(wnO1J@(R_XS*I7GBcCD<|n2bbvdw
zs7gCy46X~fcJFzed}~{@Y(}mF|2fWwx`Tn_2pJ+9VoOOer^*Gs#{qr^%QT6j+Y~9W
zPth~M9}Czb%n~J68<Xm&u0Ggs*FCrQS$E#uEH?q4gBOeKQkCLBM*U6E{<3@^8OEwT
zb7XsF+!F7EeQ<&vh!0_IU+-A9e`o?7=I`lwwe~rY?=JqzkcNYBfq0^eBW73GyzND`
zO2-5k2@%_ZGo<!e6M+H!PPw2=ewfsAK{#2K+&KaJ8y#fJqjm9;-7DiKKV;7xzL=(Y
z1iZ&CLGR9rDs@GX$I3TO?oxAQI8wBJKL`XJttK}lU5YK<s7AnZgin@CO%<#OBWQoX
z^DF6s@1o26OD?Th{@caVQI}^*9p~PF&;y#7qJb^Xa2M*Z)SGR0e&CLYye@n4#A@)I
zjjn=LOMfn2eNV9vc|@_F1`iX0K??|?dEF361*@YXjXk<#{xqHzN-jx=zqma*g)YS+
zE%4s7O~u<uFdTDK6UIqhmK>Q59j^qhY;7#8I&st}NpW~Ud$PbPSeM%qd}|#&;gUY#
z5;@UFq@g#|#1C~$P0Nt6cmXnML03IwfhEd9btIBqzTH|dk);MODE8tS58MK>oo|Xy
z@7mTABqKOpDk{qWzzNU%==3^UCe^_s@sNja_Uro4Sb_;1Sx(L;pjFk#FEc$4r*f%;
z5jQ<WF=|A|R=vNfPz<|q7we$9_(jwD@#~}pf{AIfB9K;N-!XV-xt&pRuY2&Ryrtb9
z9L(m<luKc)Q&vp7+ROok14D!v=6skeD2qsP>nff!Co7T=a;nH9kwh&i)kmjD3U75Q
z5)W#eQ&%YfUPH5D_Wc3m^xpZ7aDBsQyr+Wd&fYGT5#@oP?@vQ?71N6h@~&adC{mAr
z;xquTkJUvYrD#0GY6=@FrHX{r_>w1^p8NxAMq9CFwcN>7<NLabdQSNpfF<^f@U#EZ
zHsuBWowFMD$U%VhH($#t9j>h;#4-4gg44tSOY1L47v$b?q+0xyMKqK+`#;at5e};Y
z5|1joIQgdO1<ZJ&jLlc#&w7SZY%i}o^wPr#lMLQd6cb9dN#?dsnRhJx{9t(qBxem~
zp*%$w$Bd3LQJJObcurFa_|L27Yo6W^X<{zM0uexb9P$pxCJTa$1N70PBhn8yZ7^jL
z+sfF1*D#=_pg84=?!4RSzGExqc>%fx6ovV>PMo5x)uw*}$U8`p3=NBlV0o!{SEr}f
z915Q@W7$ZslcdVlAlpHGEd%Wc%xadoBUP>ambECD=cb33pCb>79MAZD50T!0Ei`v>
zebLZnZTy6o`oA7EL^_WPskuMuImSvwAU&z@MGDBXQENp|;Em(SV%2u#-sZ#>6?pA`
z!-#^&mLN*)C56Y#y~Lt)VX=`|8QXRp0!u8vd5B`rPEc)ukO9YsB6W(Kz^`ZaU`a7L
zRQNof4i&B}Aenc_B@I(cY*G)M+|bu&sO84<3~r|!X2Icn`lW;O%@{H7BP;JPHD~2N
ztw@`iM6bz6M8omn-6K%Qm6*vbI1=VuLgfcG=7ATroYE3f40)qNeCHY5)b?fn!Mg4o
zML^$6(N{xM8+2?|Y{jlPZXVlQTnk)#QH=7hqPE*@3I68%;5oizJ{Uvc8t4E?=J({{
zJk{IGJPjiftt!a`s2Ztnu*e<J@V1N{Cn!G0$?$#mb-zhp%Z2Ik`#iIQus=d`SIf(}
zRWPO_)lXlb#>*l`0FnwIRs|Y!&)dAiGQPbBm1T<Im(?dgHbBgWft+L0Sh_;`In@oR
z7nT#IJ*?4=QVThpyQH6ln&#-98C*0h5~BXNqi+Y_uyR(?*kV)xdWzo&<$?Y@yNc@G
zu2Sv2IV#p3+;>ptVA*$Z=y-pvw{|HFaWi+ck=(^%Xm3C{rbuM6wD6PyLC)bSDt83c
zp9S!&@)Pg%82M=4SNQ!L{`;QE*F(X3{p^KXz4GROU4Iz<?-^OiOUoMnYX*FnGb@ab
zxy3p!F6KY4BUw`IFIc%)C#&4ky}RdeMK50+9Q+m4szMV}P#7ePyJFG?(5qcC3-Kgd
z6CNz9=cCHu4ZH1(pU_iA7;@%;NJ)kC@~PONM4XQd#d4a~V1TaI|LkY__a+LMJyU4R
zzfC;|p#T8v{|)c|zZa}^f84M*6MuZRvwj2@+A#-Uow2#^NMa3BSLOC|2A_vbUd(Q`
zCXkx|WHZqg^kr6cuI+lMe9r7xz^rc*(Y?rK%S)6hRH%G@lepl2**iLHzJ1*%cU^b+
z2-EHKx;webRCOGD8vm?1$Z?UM4;y>63UUEH3FA5JDbF~_&CnXb7Fl?oawLrn=3Z_P
zVQ}QQO*3G5#No<^$FJEQYE|F#a=#bok)K#QN`gl(UZe-Mhl_s+E*SMpGMg;2dgwFe
zfwCCUoym>iKW26mic`UURCIq7)Nhm{?IpF|-bBWXZ39|f;`jf2#EorK?u>5R9tfy2
z86lF6n&f<8K3tT#(0qo!DRwjCGDkfw)|R5y%O@OuaGt?hA~cl0^*l6utK6gBjT%=+
zO`CGZhTiPtB#eu8K4c02y~W6mnG)1^Kq&2f`(Lhix)%AmZ1;3|`pgktO*Eb-6hUCP
zdUF}cPJ|4bVhH43bk3Z6fj3CSec(&>b(NxuDaVBf4--X+^fetfqlcnlf>rG_S#OMe
z=b_b^l4*J@bo84@a$kaa<CsPic&q*v?aybIR@!d-fv8?i_znohSuoVylS5asHSG2M
z!42r8NKc$ONBVKkQ{kB_D%bp5T08EU;M0Ai=H{sa#zgZUW-THx<5r!wPUL#@E9Lo)
zu>^2z5|rLY)H_w%=~$>bq5PshSMmeQ>oyDl73>Gzw8yEiTVWxX9TDCOEtcfd_Fm!g
zR%>(@_PNpwi_v}EUfGFzdO`m3$?x@>+mU~IVgA}$WkrW|GL&E=nWCRTg-5)S0)xxt
zS@Uyz-BD|@TB>R}NobAayzu)4D`P8guL=@)V|snLm&4oUbR35G<VE9jL%Hn*^J0MW
z1cYXKozYQ&jteahqR?wvL+eA2kaU>a-lCMtyIi2#WnMGIyB_t*N=CwYPnk|%nb9Lr
ztLwY<PF=p2q9lihloqBjEsD*A>LAe3Cp`-EG5Tjxf=U`-N^#*cp;GQcH%zCCBqvJR
zar^rt>Y3X~eFG<7&=U_<7z5bITdr2{X{!9?%q0zst(aUb;nWC@76p#~zPJhNERJDp
zdR79Ay;vA_#hU;eQSbpUsF?+mS_+G6B5mtL5F<d~m;u8pl%L`uG)%F7&_gMK&5-f{
z)QhM_(|&5L7;m@;5w?^~ORv(UAPF^0p+~?}#tYx@n<BYGrQ%Hp6HkA3H{C<;02f#h
z&)5;uCZiWGY*JD-v}V_56wLtzH2Q24w=FxZn*b~=26%ZuvgSH~fHfeA#6^;6USql9
z#1hE-)oZLl_&DamfW>8Q<(64{K7#kHq?xob+d=)@tU~NmiXPbYD`^LIWacEYyH8F&
z8i4&Vbj!aJ_!t5U78fxlC(fE{8skz1zdOABq<=Q$6I(X<65)E_k*h)3lWo2+AXhgZ
zT$lz&nIE&6!7pc^&K-DQ=vU4FNU{~EnN5m>Wetw)CCAuXZ6*6=Q#u$h0QEAsrIH?4
zpDRc04LS-R`tOWJkz=-a`&LM??W8f9&-}?zaN})T3ootm>nOhEa#aMgis&Zkx7qbJ
zoOS<57Sc<(bS|WD09pPg485N8-1ZdCt8yuVzK;}0=d^T|toZcFPmleUU_CY&dgC}b
zhtzYSJYN+Bp+fNE5bL#uo?Fe*axo0f&lI=`@0apF8LEG%O_|_RESSd~riJQQsNVd{
zuX_$Bv%HWA0Ax@eu1k|rfkawb*43m5L$RN%S^&xYv)kDxez-WDO>x;7G_qNv797T+
zGm^)O!WSNr9AOgj!>zwjoN;<B^>q`HT+3uLofN_Q9nmxz(K>^U=YG*zq9QMcc@5V|
zg^*U@)*~fVP@vxgMb)vJ1I^{azZ)liWNxVdxAB_*rrkOXCtH*ugE>Obkzf636a1hQ
z=Xdf=V8`J)W*QPiUuZx5{^R*8^sD()8Ko3fpbSR?`W+>nev(jPP>e{8y1fatJFq}^
z(Vz6l*8C`KrMD21C8b?P6Evt>iLDrP9H#jG(U4$^;|=n(h&8qo?-fLf;K+&iiYeF{
zQ|+kh^~;Sy8~-!U&(F=28&W$ZEu&$ox<&rg0!2Dbn4Loa1TE09&<;XYJP%P@vKU)Z
zn8|Fn1_l$bGuz4(V(M=T;u<g^SVxAj_*c1dzCR1#dPHBwZQLfH_@hssex!j&0lwat
zcS9*jUR47<vjO+-Fb&cc&_^&xp^&_K=^l<e-pd5~-cXpYhGX-muOo6UEdCQijK=&o
zO`l4ZG<bIuHvUSxlx1Yb$c8sf{c;rxT6Eio#`kX{6Uo?OEF?~r`XySELkXyS7YQx`
zd=wnAWr%~>a(@ls-Hm=e;1!4(>*{$-q6SP(Dy9$s7B@)}0Ec}0cV#Bb`)vds;jzlg
zSd3ehUD^5-1Brq%@NP;^ozMibzJM5BSG2KmXp9^L?iB=qD7^)ddJ?IgY45`UQidpi
zB`ic^)UW$ekl@*qJQZ)KQHr_qXpNXXWIrM&$6#Q;)mMZs9EBCcr!xW5{Di$?5whR(
zPC|^?y2|usB9Bo(0&`))SOgCZERn^*P5a!0J|(aE<PTbDj+;(-;@N=-N-xgTRFA|d
zOELLu1Tex_p#n>(qQfYHL}t16Gr%jj@A*;LV+mBGHNgx;QL8ypcT#Q2QaQ$S`@~?l
zW5XneKR`8o<^B+$t4+V>g)rhw^7oTQ&A?4?YeL5Q)9oJtun)>0hl5wwe!DNfQt=Yb
z?tyq}|MJGkyoOc{9}y{aw(GE<BW2b;i9yXQ8#`AkBveW50CW5^ZIIU|=Rw05ds~gF
zdBN9rre5~L<KgnXe^cwbbMtw%U+YKxovN@=-itM<@OukbmjmsO1_)I{!dS_r(!$|)
zhDMkTy!h}Egmuhh1|<J5U|3gU;W@Yw$b-O;IdWH2TI3nl_aH-a43t{+dP7g-XVv=e
z`N;R*>*JB?aKG7p{ViwPnfjrBZ>wC<si`E`MjymW8}I_DN}s^1aDi{U9c<f{mi(rT
zC(|}AO%YX^lw)sXX+)k8bhTaEX;!FF#&99l9!%gBW8>`wQUW%CO)5_GD52UYD9vZl
zYUR)<(2dg;D8jL|OKdI6SwSa1JpbBgy>ja{zsA7nLHZg@qIj1mDQMm6ag_~sJps_W
znE;JM=_065OatW#6YU@ZV71cf^k2$2iK)17)Nxu<?*(jnI<#x6wX)NC(^4^M5n~Vw
z@vNPafGy=kFXMZL)KTMy{d_9VCUubkB?g(Z-KRj=Z=q7AM$TlrOTjrU-csIa)*233
zKunhr)07?<M;V=yr_sS8<bVk?`ddNH)2{Xg(b*f)X0C7LLiQRJVO;eUXTz(V9#%Ff
z!dU4=#g0`3T$DXi0dSZ5<hvmiOBdYo1R`dS2cT=U_s9!E70o#xwPeJaM)4LlAE%TZ
zQX;Q_H-X~rxEB}?HgB4(k{;c-hOq;4qa13BA}_jJ*5$<%6@3cH1txY2b)&?a@~ml0
zmXr|AyvVvW9l)bx@Fbh^<#kC!U2&;Q>CRIuA7_J9qio2PZ%&rR9d@IM1ir;Z;0zd_
zs}~9;9yCpc>Fana2GPb|AwYp*aIzQ959@$AZj67%BoMuR>C!l8V0D|r`lA6B5|V++
zToM<8n5K1T(tKk$SZy~rMlksa_#)OmzrnMOlBqjmKOqL!Gd9=Kdj5F~c^O5kasvqb
zZEBGZx1RkyPW3Ra)u>fx7!duU-fY2u)S@~_K99VBq{eScYQQh1<{&_|Gd(C{3L`SI
zjyCpm_q(H0w#8bT`&9)Ll9fUED_go#)veddL*_Y;mv>ZDg4sa=Z$Bqz7DOx`(0GrT
z|91gP3d!f{L*hFF#W8e_PeLJ&rV9Wc#rS+=;jM_Aycxsb`;y4e91^W&F#tGxs?irz
zJTszO9qgMa!qUd3n*-xTX){O#tQjd7-5)ZPG+Q)_A^KJ}=vMT7J8Mt%wz6{TMl%2}
zEm|Zo^~H#*cxRw0Q)VQEZi(7lK8>uW3l-Pg_Ad~pFqgfhzd@+#)dbsz8g92(acAFW
zmn!|HZL_oDrp1whjXFe}q8~Ns^uS7daKD;5^@L_ES`ey)TGSE~6CKU8t&_kH^u^d^
zuL8>ZA~Z4*kei8&`zV_0@VH{v)pfMoJZ6s9dGs_ExA76d%s_CH05Ornnc}ruzRQ>p
z^SQX@d$mmQ_IbLCmw+^cYzwL+FCaX}UGl7gk@rGgW;JhwSJSF%4NjrwY<viol0x*y
zY#7M?XoxF#iF$Zhu;z+qt`>*m*GmmIvXJ(Tc}S%FNF=TF>JV&w6dN6Z$%+X?q9ST#
ziGT94>lKcwHqAAUg00b|BK#~7@RC-hpeDdurHyso74fq<jIv7i>Ik)c1%-9`6knLM
ze{N;?O!69oRhxZ4RaJi`WuxJ8C<_i=kX-G*e|QJ@Zc;^8AieafZ9J%*R9$&so6#YS
zJvOn}l}?6gW+~uR_oE&6!l%v(?x?l+M`+ij8kAwf#n5b0SHKB|SglfLT&MDIUNy~Z
z$3I=Cu#`2US*NIgk4&=IS`-IN&F@p^<#}X-NbKEzToPh+3))f}<y$ssI+VDJ?Q*@i
zPpV^#x-6ZQQ```PG!VY8CfY6;HW<#S#zEO@>x*)u_P9xdIg9l!kmj)dZqvll%0JTH
zl_0~a(a_TxV{Z)<oqk`#V(?>6p4cZFQYY`eRfHv`l8+U6Bz{P#EQZfM>pFi;h=7ye
zS5%utonshF$`<?cRnMg;I_2WPLstl2wiwSboB7)YTcK6t#?=v^B#2g}B@F~Kpk3xY
zZyF<r)P*N3hd;SE?J1$XB77{^NJS4}Zpemk_Yvr96N(Yq9%8YMCK?T@tLi0s{BsNO
z*C6T*iLcK!$4ySm<nUvaciPY-UQ~(oXmt3pg%lLFVh>RiQxTptW-6>*R>H~5qXtV5
z1gc03v&?}ra#6X-YjSiJ>-2Qij&IZAti&?I3J1xf)~PxR3dx8xe85x9>b7^H+n%EC
zCZzYuLd`EF8OU=>RU1}0EU1bVjGHUSnIvJ#;Lf?=KcC0<zIl5|6EI^6pneO^lB##e
zzsJSB8KUERj<Zf?JcTZx3k{z8)Qm!wFC{b^5IIDHJLqJ-4P9f+LH!A5+)c|RM-iBU
z(cbsGlihJ1MQ!Vz?DvO>#NL(0jUz|Y5a)K2V$vr_m^FX1ajuXLx?J@@+%Fkfjxs=H
zxJ{WLJFf_THEcH_ssr6$5Etwjt_iwasNiFixDVga1EYY&5=w7?@PNb3lfP}MF{K>G
z7a}EFv#AwEP7+#2nq{$hk*#$s;%<-P_h%32C3>NPNkgX9i&J58YttG&gW{ve#rDfD
zebeDT4#EcJP-Ys66wD>ErT0HrX%=9%6EC-lwo$%sOZjI_s)%}LVcfv>ZLsn+8H(0*
zL_~1*Vm?!6=0)*#>lJHlwr36H=RduK3z@rktF`~&Vl<i9Jt%c#bAC05vC7HKC0j9s
z<|0qcd8EZ<RlQ5V$17sx3!wf9GbNbBjte06D9oARSuQ4_AY)%50NlJ+k#?Kk&7cP{
z2kt|f<reTDg01l;)7X^my3B<D01^Bd)kSYZt2NleS~5LCmXJP^@bos1p)!gEOtFH{
z$Q2P(nJ#%UZWb1DLwjpjq9r}M^c`az=h|{>A9QEQNJD$2#Wyy#pS@hw@h~6?UNCNS
zI#|^)GN3|e{x0yixT=goCEt2(r^{j75T95Qz3E^9Ut_#b8h6z1l)hP1&oXz+fV-;d
z7UrICvoH_B^{mAG{jya+&D7o|d~)@vqyCb5L-3`w8OC&-mg}?Jb)q^Ysi4VY#06uv
zJYeA2c5ExteK|Y|DTc{(SBQkJC&!h@Zj0B=3<!7Upov&fjy=l2!rqrA9?WC3#5&D$
zv4h$b-ESu`(<}9~ovc>d;na%32~;f?C{7w_l?v1B*1g6s&x2es^@4+(@V@yDnVX;!
zG7YDXywka}C+%2Zd&zgIq~ijwcsr_~@1C13;U_~k%+KTSv=>ncFR$|zn%m~N!~7Z9
z2r8M!Uyb(X-5a5D3As=)0mWR&*a$T(2m(5nrkQRu-b+XoktrQ~dEDlGBNCs9c6A@z
ziWbzW=jr4ZqW5<>{io;0`Rk=j4<H;2;VyOaZh3(eL<-zOR<RMMnrcm$)mw@5?2mvw
zk+PzO3ig{8paDod_$t`IuZ4alRxP&kn6O3gK9t?0SLD=iQ9+mifx#fc`ft;v@TF;z
z&xJ%9?fZa^dtIyJY33-9w#ysx4UkJ2oBB93=C)AZiDgsbFD~EDypmu;pSFb9hIu>!
zwz#-9qI>kIg}oTkfi~@#)OSFuFZj>+bO?Ia+oC{x)z4S?&sR+TU$20g&RM25Q(0C6
zvXB|mO}qRI=?3zE>f%aXfbXAetyWM4k)yXlYJB$&8*fAg^$yvwAe-lM#HR+$?7}^A
z3J+=SPNNh>{(cN)dM(cjFYpvqL6<ix%4$mpi^Wy=KNoHjG?m)+HfX&?5#`dwn#6Y)
zWYKsS`B<0@@+f^Q_=@t#5>(2{;lr$n_z{Sg&KWutFN&=$bVOiIdaa^z%}1l7Aj3J>
zLDorHjVb+I-{zCIjK@frJ%cgTq6ZQ5NryD&6DyKnUwGdGLu}mdAPZrdo&yP9<$9We
zvF;Q76>{n^xWIu=h`k4t^sl&ZqL+JY86Mu03N?A;vC}AK{pg~ZJy13mqkB=a0l~yr
zI67DsO#GiI%+)TGZ<`ZjC<x%y=VW5TGW%|Qq|{j-sQv?=VSRK_IE$1!rn3WG)kXS<
z-m}`It#RFlf^Aj+2s?dF_9sN)Kzs^hj~gN2ua6$x%(Ga;q}1X!H4+6d1dA}{Gtv=i
zuD;t93AhoAt|r4d$Fb+l@=~ysPOo7RF!*(OM>~uzU+(~Xczq+OL2+H0bb|O?a1On<
zMb-^%h<-FqJx{}Fw<%r9wTGnMXWXxPI?i0^b`LjKSw4{Z>LLjkDLr56TOAM3{;U};
zy}%j?KJKu$16Ka{dcdEzSi7BFU>wFLJ<sfb7o|L1Ft2;2eG^?U?%y!_P@*tMl)`9W
zTG25aJZ$;f^%(MVI)I*!TCc?MVg0_IiyZFH*_T&raLLkCNp~@&;~tHI#wLij7o@^}
zQ))+`aGY(ge*au+jUTq!@cjF)8fgju0N?*pw)LMHm3gh)HrN_=yySj>Q#oyl8_|x$
z_e<r9_1;q2tS0oNE$wb{c{x!aC95cvNGT{gw!U9-{se*Odk)@HN3>!~5-?!EfIajB
zct5lrOcY()sgob-zU*h~bo2A@a}$YG>;1Ugl<V<d<3)kfPhR29!_wxpCt$y(s@LW<
z!5YE*&A2Mm&X_SfwU~qL<!^V_z!xRF6kdY@7L_7%iaq>IM1NMR5!-NeHh?8B{?Z6+
z4mW=b3KjIxGnb$hU-FUm!O}u>k+75VZ7oejUM+4g?qO=>zqGzlk=#v!e)S8B9lPdR
zTjTcsdDe@Mn&uz9exB~RG!Y?=B1mL?9~sPHi!SPmE5~2zcwl4=r}brx4)=}b*shJ>
zZ4weI8veMpyh0tJb|j8tqwiF&mSpkv^Ks>H;0+5cc3eB}Ay$z47Cbqmf+?i~-f#Q%
zx6ax)maAT{)pgm{b(Oq0uX-<~+oh=Twi3Y(1vXy16<D;|;9quq@tDcI*olw#gbfmP
zifbS&Nf0FJ(=D`SHj6iu_<$W?xp?=J1Wr=l&tZ>-Lvvc4gxhi`1{P+DQVOb@oenyj
zncT^k^CtEq$nVH()!Us+6SCcZ^!<SSn|RGm;vZ7~bowaX2W<&~G22g<S#diZneaVo
zpZEn38rtU`Ly<juqB?I8k5w12jQ2CF2I0&Sph-sjNhI#G(ax+#zV%7kGY&7Xf~RJI
zF<jmk<eB5Nvj_z#^Tc3}VHwX4>$btMy0*=<iTl=0&HoY|guizX^6E}0{c>~y|N6FK
z1xVlEiL?4Wk>*7Y|7|L=F`PPg&*MnQ#q{0X95lqOuo>Z>+VX6Io_E=w#GEIZYNvd)
zM(zC!l=}y&UKq=AMr9`z9T!v&LFgy+-FDR6kRd9s;zlg6QM^+P{x5Z&VJd!&0=<uQ
zhE!F?oP|%agX^~biOEq({5oYi=z!Vcq`);9Bq`zP4_#F7RvMdvm<$I1Dl7bzAlK@$
zMVeMt?ByZ4Uab$Oy>ecWOa>6NnmdG1=fYsCt-Nd29PeYb-YA4TZtNj$(%6w=IcdAu
z)~wMrQ#ZP3FnEDFUJzEny?YUuFXI2Ct`Utp1Uz+M`n(k{DiDtZLY~_Xzn<Mm6PaK!
zf-6~(OpuF+_$N73Ic@rvH4~QR-lj;#FBW>!`aXnp^ZaPq4=@(t(xns%S@wB*o~C}{
za}Vwn6bX;uA<;UIul3+LPdTVj-)-g&n0kt0mF4UHm4<W7UmVUjO4!XBQ^1~503!}(
zkp^uTRhqfvfZ2ODs2gw<>@@)#$+A0t<hxCM_V3`wSh(WkJhMfiF^wh5Tp56#?BKl$
zE?_Kp>k18d!-t=+x$vzL)v^!*a`)M{u^oJ7qllRSO^67P0WvTJ>f%>d?+=<GBg<eX
z{ota2+9-+_ZocradsArwRkNrQ?P3!A@!AIzn*@Jo@j|l4o5`b`&__PYo=#|+;{|5J
zfa|iO;dP*LL;ZQFi64J4tOsB?<Efq5M_jN7@OpHmH^2)4_$mZ?0Fow(vGSi9$2l(f
z`z~4NhllA1RA%taCIkm3K}*rMs2iM;;|<k@JusIkF~w4`i*Ndxf+e9(V!={GU&XQ5
zCv60fQ4H6cPbv038-&^g3l7*|oHKU((&oRdSXNo*q%>woAUQijycaPajYW6{4{XAU
zYoY|+qlo-T^71@as(mEHpwHhQ&m}uoOE)cDWEWFj<$`{r=Jz*dIMAh!`ypd=cE^WC
zm^}ZeB2>)3IAF8<I4SngvHlu-j??33OpBe?&Vl2!b<r+X{6$|7Cm>8*YtlhM6LTEN
z#3bg^Ryjyxu91jLE=D6R3QoGz=e0&V=RZ#=95?6a6XD$tU&CKqFfnzSZIEEgNMi*i
zS8qB%CA2nf3RwNqhrd`|KOud73bI1))vK(X4#97_l@l!mNWB5N*xv(+#&e1eVnl>c
zgz3i$+7<n%%jS=2{)dLZ`0rV=LGkHKfsiVhGQ(hCD6yp@aw3e-jpeP^K$LYPDHohB
zHeb5_y~z`Wc9v&YC+M&7P+A9vzuF_0&tt;T$#fR7W!HABo12Y<;P_=A{;Q3@i_i=_
z7LVFP`2>`M!Yt8h9ejryDi^H37(NLVmeM!Ye_b#Sz|U|J-~#Cqr)f8fQ3i$c%_3$P
zk9QZ;`&xn=iZQ#7qGO?)cPICA=WgS9kKWF2<Kp|_{>0DB&uNNEyFFT#;-yskIXtn5
z00)@<-lb^iKEAymvFgjs2&c(_S79EreJ*}QMof&X0NUjtRGlA2%%EG%n~S(Vz8a#q
z^_E<0e3H()LQQsCKjcT7RkRHCP7##Za96CVL7$b_O@tc}SN*wV@22b5b6pWstJb-T
zBWSsJGzJ4M8Uc_rZ9nC(gKukRb&N_h==iIJFA@i9s^XnjdiV-Zg%}>0AC-d5<paJk
zLSVqc>IPeUjS~Z}m>EOFBxB*(8)`ll#r#VFwS`{Ay~7~|HKsvpazA7+k4TP?g>Og#
z9Fy)^v7Zc0T*|KM>iak_=rU-93RG!1SQt5pA`+kGHJen_IdZVqIF4m}RMK_lgz>zG
zpTk_ox2#v;WK{F+2$<6HBXx8L%uDf*XmJXZYybb??46=CiMn;ov~AnAZ9B8lHY#n~
z)|a+z+m*JRmA0K-d-plr=kL4SV?^A<S~n46jWOptW6t*>hzB?Ekq#uBSB?*B3={Se
zhDzRMY8`ma&*f~z8ymTO&V7Y{A3g5d@3`zSD)vS$XrvFC2hrVS@oEQm8WUa@6$~Q3
zrcA`zJg8LTi93B2+iciRhAxhjk*C)v&mK?NX!fG)HDOCNquG|LA-ORdo5LyI8%yGM
z^g&o-0;s!H*2S9hkWs5`Q<64x37~XEh;h7o%ChNK$B)vAk>Xl@k+GdefhTZwXn|!?
za~Srh!o2}^tpoEED*@$-?X~-2HiO@z!Mt!jSpsZ4e*fKoRv6J3i$pKOSv5N$E{m*k
zEPz3K7*jyttOy{C7tYTD;UZqZi^$#r;)+H4evg6fNC30v;N;@hxR0TY)t<JzXT<qX
zt3<gHfxVZ)i4C|pEO;kjwH;K#kPuBz%*Fa~4%0FBb!URE2+k4^vaYYlz&OEtNHv-i
zvmNn9dl^Z~pjy4^V0|_r;7r~a0Nc*V#C#3Ld4KyXo2h;k8|Qd)Ab!zbv_yHAs~1hP
zG0wboBC1Avti6$_{oC<_xWxjhgHq$g^m`4kK?RGi9w-GjzI0EKqE?L?%?m_|MOjbu
zYO4%XdX2)c>C3hMQsR_Re`;gc02&`j$P+ExvBz|G3XCP^(jDXcyppOYx29@<ecB2~
z=DW9ngUnR@o6Sr#XOm#eJSiZ^19~MKhW3vCRodnGmCO20=E!aEyz0(zN{Nq5K=F<%
z4LTC@qB6Zs#5h=l1R-H5NwbR%X^^N^i3&x4xScM4o1;B@k8F5=%tg@Iv7hvafi?xg
zbWg#GCruWR|B$r&a$g1OxI3u;<{Z6}<#FGRnHdu=7@#=Bt3NvXVUUyhact4+uQELI
zIdFJv-tgl5Gerj^4RUugiS-d)7xdnXtz-9DVHp3ehj*o{NEnc%wra+wc9QtHdCknM
zTB@lOegl-*9hxycuh|M7Dn~ki1V+k(!6s+OU;7B&pp~Ytfh%#D0bea<)3S_w1dr5L
z!z=sjLE)xuv(Bv#Dhs?HH-FhBU_f}0pxDx3vIN0)(4l>iU%IiyY%LlMA0JS*DlGqB
z3!g+z9}libsPxz1HEAa`@z`vgCP#%r+WIzo|Gk-YGIm86_F@-OMx;Sdq1ofs-)_m+
z+gcdpaG@GAv1F1X;VJ2;2QSY>$Ku4aNsEyt$3uD{dfZmST6f^}2+PyR-loj2SIYS6
zmOlrGMkJd>^gw#;4&+y=*9#ZO!iWw;NkzG$pxEpB6&4rCK95Y7KcBD&g^0n(1PY`h
zLLzCLDi6xHJY4pYNByHRBEg({6a>E0bxKiMwKmgH*=)BtHh3X%u3swJ={;eIvmfr)
zR<6g6dO!Nrgk)CS2=MhLcd|GWyDNOm*|T(<-XT_?;N2rv;_X!qh*|ALYp4!y){@Z%
z#=J$zMAFgz7-l=#hhAO-!^iMd?JL+2E+6hSV&)Z5Ar-|i<3i}lIuqTTN)6ZY`GId)
z78{PXDj+@rJ;aXLnIMcG!RK6(FH3DnS%<q&C3}IAwc(NoZUFN3IOJV(Xh4*VDMJ<P
z;QgMN<FF%0n6T?#8xtuxx&&w8pU0Rn3y_?L#t1*R9l07m@ukZ1<cP=qj&@YKS(%r4
znK?B0sN3OW=57QOj9I|qYh`q$w8C8lmtTM}&WUiYQeXqQs!epVYm{v6&!euqU~{@z
zY!Hi|Eh)p;hc+E9d?x+n1f{JpBKRiLVA#O$A=%YDz|{+Fu1vI;-2wSYT*f~$6b9jb
zSkkHY#{@;J4zYkX4*D%4Y+o0RfhUX98ZRRLwarbR5>f<j4S6JEk%c)0We4Sh&5`l^
zHpVLR{SDwmWl=H2&x~hFXrfi;3@3byRtN?5{@Xpv9WpOlYJ}2@MJm#5_v*Sz<DC13
z%=NbP(MSGVEEeTMWzN-+R+z~q@)buephT!n$@6{kAxJBXvUy05uKBJ=7-)7GQJ4HQ
z>X|kNibeoh4T@;hVV*c2Yq0VpfaAcz(pu~l8~pvO%JnBy=LIKuc*R#GP00dPl>dQ`
zr@mW*Yp;#j*0$Zu;TKLL;caqR{+uplkH~Pt(rgSE-%bMYkTXS#l`&T#6r^t;#wEs0
zI&q?|L4vdrg)jSB=~dsd3J)7-dw*P|A9gZjybxuY0l00Q7g6j-r9g%O7=N)ez|{$b
zg%2W)VYYJ-zm+k)Vk9z79gsO|ZhpMf{66P-x{*dn30Q@v&^<C4ON+I1L<E;x0G=M~
zkVTNfuS7;m2>&cNb<VvbVgE#kP`d!0Ie?;@iRGcw_ye-eJzIT4*$<Mj=pDq=m{8{A
zYh^n(-4xg^bkN(eN0333wL*D{vU{&Q0|85VT|%)~N^-?=4v4K6?3wGVCm=MC()$a-
z2w%DDNy8Mcf;pU7unCPiV7waGa{YW_%HeWF%s`o9>|+J|7>QW!;SAR~FlES#C2838
z31K}vNM@moQV+(c3oK+F*206aYV7SCBlEHyuLg#HqN$$g%>q}0glw@P>_ddRmpUxu
z8Mays0xywf4=)BztD=`d;skD(`ZexN!r?MsbSI>)wuQhK--H=lHXoxxD3|7!7shwZ
zAjBeU1eC$2@;XjiDsgRyMeGyFITOH>pa>m2Zy_Z-9f+Nrde`*sV%kB_fJa#z15Ex=
zj49N{&5A`{Nr(2Gi&ub7l0gLu)@o|#ufSwFR@8|#$kK93Fg+K(n^RaIC4o9BIZWk7
ze}mN)aRP$y3CAVH=J+=%Q)3VtNds*BceG-IJbvYo6WltP9n52K!C*h)pxo*l4owW!
zQ)x<M57Lb4oZt;7wiIQ+J4@7z$7$lE;vi$@;iX-<Y#Cil<@YR5MNDCT!et+LH-fXw
zLJPc|qnMWQoskJ;p)|DNvKnD#$~}+QucTzR1*2V*$AgUvB2B1vD1H^-MAc+opk)wK
z#BJf@XX;n#(OqXqxB7tkj#3;FCtMmqh~@U~boQ{oO4p`_^%N}hd94OAT7<tjt7BL+
zwfp#G%jzMQPSD<yN;fsBQwxg}22NNUBZz;wG4jIq3DLDt^T$<W6Xyr0@S}!j&Mfh!
z`z*c4G*q-pD0o{8U_2MxB1Rb-m`Ujf{917D<+Ce+*i85S1e}50vlSa^1mRlt|0Hc+
zqi<K=Gwqaq(xrCXJ>t`2FZlT6YWRe`=IYUVhH#mwjjiz9*BEPJ_dnxf?(ULggHAnB
z-P&=5$vB|#X#d3~)$F0vi1WF8C(#XJ91uFhnR*}Z1U3lIOPS2jhf;u0d)4kSu{Z*2
zsx35P!iF1ZR~1#>0f!4y6(J{e>0C{}YCGuz4!B4znv9N4K778La7@Z0Qt2s11f9W?
zFhpT31v&#OGVrLEHXpmq#^gZo$sGlK)}h%Z=C}PDnSgD+bQ_WxqY9Fw)EvR>&=EX{
z>b9iTI9xmXO4He+KR2x+SyY{sJ=;)RlwI<(t#6Z<74Svz{SLy_Fpc>9)zNtKMgzUP
zrJF~P*h6S=RaWz@`>qc;8tgslg|JKR|95_q2+JeIp0G$GFf<AUY9huuvIscI1xSEa
zo*r+c5ugNO6J%2a%_NWAMBMmFl8cOF3Ua}Nz>)9Gcj(aAGow2zN?BNMkZU_iPF{^p
zP#Iy=by_|ovUlZJgr^bWqZjBP)qWDl2t?AS(vL?0>6Ho$cVuMuw+z#>@fDS?&`_wu
z9WfwdS(2xI0;`lsB_BjFB$WBAIAKdwX^ZOs-r}+>nbL*_JNmN)(!Hg5&vo7x9r4_f
zznxo)t%L=U?8E~awsGn}e_BM&?!oR4m74o4zi$!K`u&tHvBzvHpj%i8ED*Jzm?lCq
zQE(udU~V{ZbFtn}OrbC#F-bK<{A8||{jQMggQ&$8s~Q)GIs0)q2|BD-kT6gHSVw*a
z?o)N>ED(GcQ)T^ef2Tq~`As!@jIyle<zyRi%))-QGlx97(o|!4G-XEzr?yo(RHi%+
zUJgB*>7edj`J+#VOz2I}8M}v7+w~?@V_V&_#mKBgEV#Bh>Xl=xIbOwPV*0kuy2{e2
zWCJAP$BS#-$#La-jz_TX^XbUr@SYq|M~71<gZ~|pO!&h8CJu~y4F~!g-$I%WqX}E)
zOk~wZ=vbQ}hI3kXdu&vfHo<UcYPpB<c+gLyDS=f>DXTH@uxl=_H?g`b#O%hY?*{N!
z`&Wmvs3xK#5DjrJEuI0L11~IcU?ge=U+F;#*7hbYN1bu43^-_1#Qk!<7YKy9InP~v
z4rULAZj-K)nd%D%d1q4AS8ng63^~hjEk(D*8TzhV``YZ7b%-$kAP`1H`_?pJ2jE_O
zz`zM0_osjDEa06DZIh+^K~v%sJ+j+HW{ad^by}(?W;_{N>jlGFbKCbiS1;S=)J3tD
z<3@Na|7Ipq0VAK`7<SEAJ=Y_pQ>d@(p^9aEwsQ$0R()CcbF^IjDWF~1t$`uI{@>)Y
zc>Vf|7xd*3@ddcbceIC=MuV94Q^eDWbjBFb?_0Y_m&Ha3cs6>=qu+iswM1@%(azay
zq{imV2aD9&G-$JA(fsEiQWy62+`#Cwk{YInzvSC0g$!5}i?n0nr!wg=v#Pd0I&SsO
z!RsU#J<`4IX`Y5Af4|(5e7!$?b}e}eqk$K-vM*n|r`Y>o#>*UaeP^!Vx>o~@W6oSK
z#-$sg*|_c@KeD<)lFW}ff8m<5!A7ex0vLy9E)Q!i>fO>Ri7iLbV+V`yUsAmfy(I3z
zRHrx!n=*aoD-&p^Wwo+B>Am30Y}Ywg0?f7bA{Sgp;m1U2`3iH}oaM{z`5*qPXoQ1h
zXf`ANz+W_p6fGiScE#XBUzJ-BCVDpvQmVOpJKc!V@2J~Jf`!Q!6wf~SKo-FI*<-BJ
zO<E3-q`=_|DfpBYtxvUe7^6LoCClRr^riX=<K=hqtu9qIc%DE<vON0ltxmEqCMD+~
z{x*4_Ink`<(#`0JjBWGC7>0u4u*V=O1Nm)GS5j$6oGu$SgEF7;RWIz{w<+}-?~kPT
zBC*^CQxsq#ky`zF2o`Xo!Bm)hV7tdGBw0=H5NCW@G(s`jIG@moFp3hsE))ofBO}W;
zSO7A!asD+NGM^VgRx|XLp-N2%(?<y9lkx|ylnKC&Bh*0irfRv#=94V$%;awxh0(jM
z4_L<=G<ZdP!qRK0A$(P{(XNxFCm97KQl3epsEAw0zCm1rKBfHysBWO)Sxch*P`*4a
zmFS-h6#?<>)L&W^dNtLNVYV?b9yNXf4d+aIesV?@bP9B$4OAa6GSR@K_!S_R*p`!I
zNnwkdh$H-7CjdX>hN(klQb6?&`Mf-MnRR>i_mOvNbAOf(suMgJ!Fm`>F+C4(q{<Ay
z9Y;O~pUL(gAcr*ghW*c~ek)RW{>?w1PyT-s#;pIds{a2oTCC%3f5?II)7S3@sR6tJ
z7D3KCac!5p7J6u!rTbsA#k^?YLqTbl(YRVp)EoK+b-Q0-i2U?@_iGRP#$*j*PGO=>
z$DFKW&fi~VWoADsJtC{m+w|uGx?4NV3Ca!CeS~dv7Yn^==#=IyVYXqx5l%P|Yi-q4
zt$}dy4|f%2)Bno&Znj~zmg_HRW0K#If5VN$<kGt&4!7M;c7M^7%bV-*k(H|;lNX}j
zJ2F+{k|o&j1#P!qF_IC%IUf{$<M|G#UWOrT)MXG(pPy*AxCIOXZ4cPT$IQ<|s__bh
z<{kd~d;NiquWm!=LP<Kvj3S~jeuK(WgImM2N4AIVEkFU`w4}4WcSM`+lt(-^L`Ty7
zZRlU=lj7v~$9Lg$ZQEc1@5(*%nLP-TY^RehdjZNk1VU7ey~@01!G^P|=OQjPb2}^8
zSr&P$5X?jDJPa0e(uLuuM$Nwx&o^QFjm<+W=GB$-z&THhfOty?4{XJWN7<ApK2dm^
zNuKs283oXoc-j5?QLNzzpF1YbGc5z4qi&ra!5vL!mh(o=f^+gN&eV7?avpx|Lw^#c
zx#+%2{OZ6V>0d5+R{+|46OMqPZ5G9x!R9crI%D`FiK89>Z<KH6Izw?Z2C7z91XJxB
zrtdQf7~spyCr(cEm@D#I2*S3Yz7bq5`Ub(qx6flrdqhM}BY(1u!VY?R65$kaeGC__
z8nvqNvYg9&{eF;Z*=uL4672T(|NMR=gs8&_msot6&mm#|_Vgf&iqC(gh~PrNORD&w
zI#<X?a9J}7u{b{<sGrp-AY?fmiO7T38ynP8!4$-;FcoNUG*}v$b;Nh$%83dp7Vi~n
zp0t)gDxGD>;rNEJo>ToJOnS5+HP<odcd{Q+ATW-CY@VxA*kG7yMwFjV;IB0MduOx!
z0eU@$!J6~OZN59+rlkiI@#vK+N(geu5m!<8$+!ykwmCin`Y$vIvAp>{h~uLas<oMw
zcj5TdtyB!`ziK=+z6`m<pwED&OtiS<gb?Om7RVHFJPOmu093&=M9be+!>Gg?(vmnL
zDg&_3cnZ*2DlAoE$@5T69n?y*mM$(0Nl2%#x}$5JV3!O^uIg5~RHTRC=JW?2E#4ri
z>nI~;-DV$u$Vk#yw5C6aNiK@_W01Bt!p6*|VO95%m`URt7|;nRlv&&5WH?Pp11p1k
z4OrWeZ*Uj9h6#TG)w7+kcbik!L^Ad@mzttGFQj{ERl?iwxDFzFn2lYqo+Ct}8((V?
z6Y9j93e5BuYK9(%cq6`WVxpdR8D^{e(Ofkxi-6ecmoWb`i}oqEXMyn=h%9b`N9G1i
zPzWF84+{Z|Gd%tno=+G%+w2ul8VhgX7!3^F62!Rw{7^(ZVEU*MY!%$6&5zYnufv$L
z#7_M>tAn78h|xqm%r<Hf>6eEUfk&TpgdTFG1aF@>un<UmzA}LM)(8;GL*MX?Q}!4E
zs20i~A&A9qX!o0$n|G)o*l}fnlg}j{lcgc^>7q#Y&(-;m5HKEdUVkS!;*A3W5uPpT
z<@T%f!w1Qv##uSdLd=6O@jg5lvaJYL?v=&yS>}lR#5hXe2Lnu{T$z$!7gfL}7~=;M
ztIwa%8uKbE=v8BS0>psgOHGZe6^WV!7V;~ketP=%QOSF|s#(ksftfw}B8NoNoa`qC
z)wfh3XuxEx)P0&&<S|e7Q4U<r85M?5A@*f76mdl5I$fYfs0y)iQ^b&<<pnA`tqsz~
z)TGr??eZXuYBtU5!WpvMP?yssj7a2(rZgXoTLTP=8i+3`3cV$n9b_kkV5(!l;?Y-a
z@r!9BWwR@0`o$C?tnx?XT!SG9jMT#RVKqxo4TPeg7W6Lzj9?7YZbhp5#$jONE9e@;
zGHqPn4I+vPWAmar<Oe!LQWS*QIQkQS1DsLh<OYT<$>K{7ehJ;Vg04CAPJ3M6^ZXiK
zYbQ;o8jn1jRRe>z$9|w;d;!Rj|22ph#5t7SEknRj0uYJ^{@G@@Mn&$nHY(}zeaQi=
z1F<yxd>fmkOU2L%+Q7WyP6N%)Tar95@M}^S&qJxHnpR-Bf&|&}kd(uwHYIc<ENyIq
zf<>E?5MfTx^93U!oq{IAh`=lCKk3$@p}^XEgNYNE{$YrUkRk*hDbQai4h3lDr{cXp
z|IHUX)$Z;mvYWRMAxa^dUSA2X!AZ)?$K!sqGI+YIl8xo>3GeDU{<0T;U9SvggQs=<
zUE&FFug)P*5h~K7B${s6VwCyS_&a92ToLfwC|{tOz{s@-CILKS9;=H1UB__j9G`71
z@kXi6Ea0fNm@&1HkR-7mid=bt6h8-#1h4%zdi+-edJr44OFf$k`tUJ?aFPSNg=M=x
zdb<Rvn<h_w?0Uq2OwnKcsETjO#F3y+1*$;?Dj-gbP8T8Jj1XNCD8aV&HX)DbXcz0L
zpi`Dm0AOXow+SHL_?I|(8$1!`MBy|^V%SIoPaPLgP6J5NJx~p%gxcA;NP{Ex+nq*s
zf>jj?jWHKXni^%j;R*AOqKUW2TuQNryu|?-*ok8EyxIHtOLX#jtFL+_Z8Ulkt~Hgz
z&(53vtkSX;d!Cbh1#UH+RbBHeXu!<Wzjqz_d3VkwWa6^oL<WcQi7S{R^@=2K&56d!
zB@r<9?F<4-KJ5$&J3>B96~Y+LS?i7$p3+Y;$E6u6PA|bk8Su5YVLn%~g8=C=DBVxG
zV>+A!ubdmK4kYFN>)G|h3Aj8rT76{61zWDd=cWajW>*$D`%!w-yq)aD-GhCiA0`|W
zr<<h=Psi|AX~E^ceh{RiS4y6|>zix|eXdPG9xhbgrnjM#YF?ipEXvL3JLL#vzBbP!
ztX+oZ1)0Vb*a+?dZ16QYs7-RX?UGx?_j=;}!SKKbWks!%CKUD?=)8I&k%V?)lnA$L
z<CSm<<n9L~_$T77uqCr`>^et!t;3^FhavVIdBx`FNd^;ymg~@d--pmyvb&3%edjGL
z({p@^@hnI<3=#6#5&BBk9R)lJD-Nmp33GGmy6uf=Wxuy|saBbK{xL+*0ytb)D(DcO
z@VeHQ7D>N6L%~Y4RS#Hd^zdI8s=x6U{O#C%nWt%^Axi1n*jth5OFhlz`S3jH=g#cJ
zqOJ6`nu(5Fn06(Y#P8&XgKpitCjw4WLk|mPeA^QKd#^d*-fkG>sxMS3Ab&^?9X7-x
z$Wl6`>43`O>br+0E+)6fKW`VlySp)qvyHJ28;daacOzzboVQ6hfwT9We6fnMj6~(Z
zjJl*5<wO`7-|@_(+HkS8yH7mL_oYWz!e*7WSHKI1j(RPR^4~XIlNfA*GuD|}4+^Hm
zd8<bBy-L}%+8I@XP?d2?HBW5_D7tMtSq4gyN!DcD;Tn2(`r;$b^#!|D5RmREicOw}
zRb1S^X?dkPS(%qS&atYmPR`r>yz2MYbqlYU8|GB2UKANNEvx*gr=Q6m`n65i_z@4c
z>BCoKWd=piT`{3vaJV*-XZpiUt3Ca$s%SKb&Kf&WG#y83PP8;VXs+`OS2KFwB+Cai
z<$mLyTr@qowUxQPqIyl9XR_x}SDXA#ZQkehFH5`E6+eVqs<ZufKkw?U{3&gl=k{&O
z?&q!V_Yq}mY|*4mjZ(A-Eu(iKZ>AAn8eF-se0YIj9K*0hqVYw9&(?%~Jjp-wwj_?i
z!Whw$ZOFq|V!B?cWJu>Sfd~GssXtV3h(EypnLn?&t+uGa0|DWx0s-;<&-3U1@EySW
z`sX|F`~vhw$c5fcE<`sXy>gMX7JN~>x|PILzKkDcL}eKn*YYQca>32F>+9x)K-yQ^
z>2gg!nOIy$_S3`1$7h$!^?O>p%<jj>U3zDebM@%@aPy*ygV{RmDeth=Om7Xd@?e;+
z8kM&Y_$34rVyUfqQYRP-lvtuHjXg(U`m6z4;w9~C04Jir-}udFJmU;z)$;l}+h4UR
zQHP_a=q2XAnqg`p6oWs)20+%$`^$0LzA#}m#lW4V?Irw*P|w2<)~mAYr-l@thTa9B
zL7hN<I&H<`^poH3s6Y7yh&i_jC+3a5S_n+X!N?;_W4{ERDd3CnA%egQ&1WU1h~m6#
zu!4M%QEpfd;4FtTEPa}Hmv^MPLnwV#F4x=z8~+VTtfgPNYCn5}*n`PT=%Fd_A*9>|
zc{^DWWIk!Xw7RbP?lwqYTwDKasR$XTfbf{Y4~0UTCkS=hgzv7#=}#K@GQP@@9CN}k
zm<t?&j)n+>!PVZma&e9m8GnTtWokUzZw#cw9__&wMUS9xxRcnEHTEZrRxT0oIUNiC
z;d$Wv%{Kc43(|NXei3?oDLgK(ySa@I;xEQV`Y)aSJbaqSCFDWtm>lNL(BErh%=zAF
zBd7z$!T?@n7h^Nuy-t=0UJ8I@`MR5pkPwnY<uc<NhUC9!!I<Ha9eY*fKPT*8#=dNz
zlDQ3lnN0HGEI<x)B?w`lguf5p$Hyt#CB)L-=Bgnayh;4#*BGI^eK^TDr?6Cf_Was*
zAKT6OHjWTI?6-Uq=up0mF+e=m)D1tV1@hv~$Rw@i4$7<wfW_gWQ+<KB_?Kmi^+y86
zmqtuf4Vpy-V+?&r{Wx6yea__0*L5k!=L~soO-#Wt*Cpf~FxVuFHx%1+vvMN2JU#n`
zPfiELUw0{Ekr$4aCxx%GgN|bVx?U_2J%1aSfTe;5WELa;5bJe44N&B`4_|L3ZmuZW
z>kuAj*DwG<IQsnIuK&%|S%SK^rl|?ab2dL7axYeZyggkQI`i3-{-^=+4ih~E7b8Yd
zfF}X)cu9JJmf;`Qv|>g`k#iwnY`PKG1rnw~!uw$Mn>*P!BoRK~z?QPfMY{{afuf|#
z^sv=FJls!^U`0(WoxeOa4kdnM6v9?MVJ-g_spD18yh$0jqmSK~dbuFPN@$E7F{?NG
z*Z{E7GM;%Q#Aow|q(*3N{Y$hfkHJ;iZPAz^?bN0rjje$&rO%QKi*u`#cUOUGZ+$0v
zL676D^KV>MUv4w6tYUrNinu8z^AB^6W>soE43#MHf*jo;dd8h^GSF3+>qVFw1)A2W
zisTQM6Us+oC?rYrfh6oLONHdXj6sl^fWXKi;w=-P$muTV9lqG5K<gEUDSn{5d|XOB
zL9;kui@U%#6KzsRr~f3USCOAQ4n?_)JCc`Aof2fj9VRbP-jD#$>a-upfwsb|;~oNN
zC}sHCfVFqhM`HX{ypB|>cQNLOuGC-$1>(xz5U13_mP$M<HFRfW0|ME|bRFvPBdx+K
z4Bp`gcV}w1dZIipWe=~OUP|k2_nYSf28Xpz0<#v(SO$7ye0W4zmxEirs;ByzU#CuN
z*L#Jr>g9f2p&xygs!=>l7Ll<|M(LHXDxzCCS5FI1mmmC0FPD~vgC7<^>r-@s4KC5F
zS?Y^0TU{7;XsGA!cupA@<NduW2BrEjCT5+PeFoVwna#_yU3Sr3_w#Ow-2bIeY8f9L
z);o+r>3jb@@%Ku+!#(Mha{al2cd_@kYu8bsS({YRLY}Z-j`(Ode!Vg)?ld{NQ_%Y!
z)yi4Yy(hjI8H^4vqZLTvkaDQw0x)uz^%5-G0`;uNK!A9zi~R{(YMi97qC<p41*mbP
zwKff=`IoAOrpwU;3T%;L)#67i_aCnxB{+5%H`s0iM5X9=G(H<9W2j*<A_-PcHuUZw
zhTUVZg!U{^!UE~DyOH%UzJQ>86{-TXx+5sGbx5UdObgmMkBP*o10hc<gWEJCqjYL@
zLhmJN<ArKdG=0yGDj*oPiX&?-l~#m<+$s;?H|mJEsHCm2#&}F^y?m6Xo*!eiCl88y
zkqAwe1P51yaUQvCgm9#py6{xvE3}0sW1Cg=jrrMzA+x<#;xXOOY<FrzA9Z&<;du!L
z-cVt(Cb4_}h=j}{$JrOWL3J3>q?)beGXCS)Wa-ZLF5Yp}z{yqP7Wvazi!ydc=zAL3
zw=Ve%QrM4TR3>9@QHkq(HynvtX+MxVx02Zz=vXYHTp)7U9TNt4OOqjc3d9EosLJhO
z$?~!6T{8Z%c+TSO4)FBT6^iY6PR<%c!4qvNf6Ed_l=#{~e}?G>xVVR0s`(w>cHS|T
z^q43r0^9L0evC5=h%?|+ttBRe0bk=@!NS@LBd<@*9?(hNd;D{Dl#MqUgi;hINU%ke
za$2(0Vbndy5D11((o5K3TH(xR$8t7JnxkCja&?CsROO8>INc&_-g%zSxPd*}lJ;of
z^Yyp>Uje<S#(R);;A47)ZizUv&a!Z1j_k!$VJXFwW(_)6`JUGy43j2R5jp0Ftwg1D
zN@y_@-*s$;a>!z(Y8z;|mBAw1iG=%U3Vahi0u_;)P6yAGsBMJV?c`dX`UOYqKph>;
zyY37e3~wV5tujaI4()bYv+*iuPCdKz*)Eeu@mz8T%_0i=RRL42LooMwR#cJ|xEToC
zuh5jG6M3ovP-WgvU#t#P&Rw`#y<T7_l2xRRAyR0ZDl1}#rmk!|L^vb-S&{{J0p@<;
zU67vJKB%4gyP&x7d?k2LCGpPqb!WPQBNd1=&c%`G`-3tiwGNBgq8~AeTeC8cnF|&j
zXHrqV^m^OzgGTi5uU#ZTY3xOjf3bTvbjHdwgjSy_(Noyc!(}`T7TJ$)3o}yaQY*8q
zoij`-%Gg#ZC%Ina_JG*;(7ym?=_MG)mg-vmS^#nki4g4wBeR2(#uDnMVF4!QI1mwH
zv@t)jL3p_tkOGceVl*^RL=szQ;(7b~>FQ^Vzt)6xG+~UHzVreBCI2a&FP6WxRk`tg
z2K`ldTuFa}H$vo@d4)>}UMbhY;sL=3F|=QA;cHJvH)j!__ZN%in)=ai$#vz;T%+7<
zQKxbQg+;l1BcZT)WV|S&2_a(FTtH6O*M_9nK}HW5auywMqY(g|5eh4+P6eh3`5ty)
z(1J0uKLqA}pvMJLsLqWzP{Kskn&e{C#brrov4{ID@LudHb$EhsbF5l8-0MbPzER>-
z6S0uy;VqNuw^819=$y|VfOkF<s-@b$Fdj5eI^vBt;Ozy?3yq_`tx;GWeV8g*0iB5_
zLK*`OwGSG~_(}qn!CN&!Mq3tD5#TgQnm83g;kY`YP}RWqGc;Uh3_9XAJ7ubPoHvK`
zv2HV%OS!@$Z`t%~oF!Jhy`h^^9r2e|@$gz5;t>Vso-w2A358k_+DI^Uf;!TrX7PPs
zHEDfGrj$9YF<U8K#^~MkUj~6FT#{9mDSc@4LI=p@sWzRV_7C1G=S)Pq!?~`Gi|+>u
zzxDL&t!8-yhTFH&T6lu6FPg9lH#X@)>uIPVD7_|831s4fr5F_`QS#gz<d?)~;#KL^
z_NJM2<jlOuX{z>onM<zvU`wvdsPsCEx`oD1idAmNW+M+No)ZaCM0@Ns82qhjO;uU2
zPIPHJ4z(Oc82f10mUWq|)Fy~@rm>NYO%Pk=OrhqyV`8{H>PX1;Mh^5=w(-09)v=<T
z77%>}v+q@Vpt^W{>n*%PZK4sl>9g}W4!Lh`uBk|XWL+$D>kF{sLb-$Lg<c18n;7fX
zh)<VFM<8LGsr#f<r1IJqk9g$W;**oZ;>n1#g!%@J2AsCriF$gJ6Z_{*xhKUWNO-==
zvX1?gln68a?rt|UC|#MukLd<*!B_~*^iX_=;O~nL@3TkpB@KWSAaD&AR$`-AySv|;
z$U>}`1h?Pl`5`02YjPc%@&G}Pk@Cvz5QH;p7RO0lUki~5OVHu`8znvXf+Ryyq(N)}
z+Sz9nRU&68ug;N)8kbZ_Zth1B|JPGs=#-z75>Z9g))j^T2sdcJQ$LIV-q~6{T)QuE
z%Dkw*O}%OIK5r}Z_H@3yj~<dZPkQr`(*x&3wdqgt5Eqw%$iEGC@NBdTf@m|@?SuU*
z$HDQ#0w8yWlwLp^yx1JTB0VQp^F1yfC{^=zGA$_IfaUp`D3^|P7%ihNQ(yMXl}A>{
zf%W=^Kt8!Usxf*)u|V{&W#N!RjON2Eh+x(qTr_x)lI;kTKqSCQa4l)g9cfc_IdhX+
z3)&8ZGoh1T_=GN)%AjW)H(zgyeA#_9me2MoZ*`nJ!o$=@V(7ThaT4b0A^dDL+04oM
z%sF_29qdtxaL|08MpbWlwoqgP$os#E1^T|dPE3v|>I?YY-`^#-2>2x_yUc!lP<qiY
z<_USef&KaQ1t!ySqjY{WETE7vi^5A^1aM&iT||&%T}lz%8>i?M+xZeo@b9kd`~H^m
zgIyr=NR-EL4hj@vON3@x20ws`RQd!KeZ!XWcoqClu?GDTAfWe;y0Zul1jO?{5Ni%b
zCN@SEX8$KKO6|YFJid9&KMr@O-Vr&?P|PbtsUV<t^AQm8-kDoRwajD+$6WMpFHJcT
z^hH@7SSlp`_`BXS{G8ZVIr5ZuFQ<46hnu(&1Pb=G6heHXz3`MVIU^R^1Hez95$NeH
zbA>5<7MGuKKoiZiao9RF8ZPX`CEE3`xn`Z?h?@Fo><emTM@NU@^SLJj__ZXxLbrTf
zCdvuU9Z=9R;S&jE{Li#9YPu#c4;Tb*No8grAHe*D-|_v30>ae$E8VQsh7M2zw`+Vu
zpzS$&L;Z*dtI{w_cy!W;{_MusNz&BpGFKyZp<qeB(NSV&H}1Ycq({|bd3+)myGh4n
zVRH_pRWR5XlWl9oI)${Ia^_WjJwk8Fq{=F1bwYIne4TOihFIYZu(u-F5xy;z1#))b
zN;XYe!5yBSFGje|d)FpmVkIq6?HXHvdwyHkJDk2Ai3kJ^@{zUtcCKa>lNZ7jw;`6+
zLmfx^hJ!A#{aDw{M>t9fH#Kk5yW~+WT-Y42z3b8gX_3(ncd>YEpr9;z8iX+J$$DV1
z%jp6p<F30%nCf8B?9D2mX5CE5SZ85XHGh`O&>BgmT$Iz_Mg#vv-*Sx2uS*}}K5W*h
zR0=q%8I8r_1ZnJdk{@ZLq&1D2ZMA7<!e4(n%dguUHlCw0P@MV-6lZ&*4SBFD+ISpm
zpI;yPQlIS}>Z&Fp>rQ<7J&|>qLzDbg_oj%OSXRE1KFTv8xCV&-n?nT{-}KZ<?qj>t
z<p^aShp&Uz&AX<sh4>)#l*XHm{Tc33tPd7s<v$<&{&4DJWPOAG&qF)DDBkA!&jy$e
z_uu{h<Ip<0+SwU7{Vx|_tuy-#DYPH`il3n>+7_`&{y8<}O+$?kGWk~M{Jl$SLGfUI
zL(b8|891fpjUV6L7{saN!pAu`^^}l1yqnLSq2%M_Mg6glDt`#fohS51d&OD?Uc>c}
zPtP^tqb1&H41Mk=2#+8N78PVgOSy5aRS?>L#z?Z`J_7E?;Ru)}2ipls@&~`jj&)fm
zl>(Q&KFi;RTMH(SeR<3cH@zfof&dgItHzP*s4O^W-n$JU(3P4%L*PF7tT+yY*6=4S
zs(m&~xRCv*?W4QEvipCL*${RQX7_2^3A)46pGK8uOb5}x>5HcY6pAuzTs;ak3vK@y
zsKb6<PPCwX6vu3h?S-pJm2T<WZ28$8sU${eO`f1q9{X{jDKnWPl+n1f%j9^sN`dEz
zqg<hoo0LCo?0`RZ3v^q+p8iTdSJ<{%3;x|D*na9ccWpqxCN0sEz+QlQtPO0fpQu1<
zy1Ki@7$3vun6edY*kB{w5|IIit%^alMD=SpeIZDxKGB97q2ikkk;^>U=vo_;-_BCj
zK&+w?WpQ-YoIYW2m&|G<8*#y!{Q*)w0&VA?G2or}ANs4uv3MXs8M?h2+j7BqC~Hf%
zN~06YoNOxSwX&V^XTBtkBqNahQyONoS;T(V0SO1SnF~c3@Qrz4D0xb+1e-5kK5Kl&
zjGtuq2S&9)L>svX6(L<BGEwUh7ifdHV9S+v{42KcYD{S;66tVe2#7-efijS=pjmQM
zh2+!eOtsVi1d6uT{(hTXk2zk*y4CRCAMwf0@(r1ia0@_!r7DHV9vdaBkMh8iAv0lW
zTwDgDY)4~Idc1TuMfWZcBV}HHD(0x>!ym?tFk)lVg%5G(n_ab8Y0$S*Cb7juXxPRP
zfXf_-33EH5ifKYm(_-$ibYOZRJOoUPF&aAP%aWndVI@!CtClCrSfTH_3sj8UMa08L
z91p_^)Zdr-#&p}a*3M63Q%{n7GwoW+01B)cZAmpw>s!@ev~J#9TP?owEdeD#Z#-8U
z%s7;k4%#!<(xYPK@`qfM4i$MXe7KEVEzBwpMVPOe{L-ZjZ-0=Lz_(m1Z(Elqxfgp4
zn=B@jO2@LEcgc~=p&O@A#4MnLw1TS5pzoDm`3#F4`f0d20p%-L_NUFN=d+pXOs{qZ
z#BDN=QBlkqd>1of&mH~wNd_QmCsZz;r56+>Ih7)4?HDAZa;%=|p^tir)&eG>e~Eeb
zNvE0HJbB|-nR(XlF}R)3u6|`EC@Y-FU>ain@d~QU8<9g)#7Gym3nzdqWfCjez{4Lq
zsf|uHBiAIq2Jl=NRw|lw3Tdn$^?2u{VyMb%(yjMepyt;9nWsm$;4i4PIH#Xz=4;Y6
zoarpvoSbY0DbfL>Xxyn&COhC0s&0fiJ7Y02C)jRsGC^HfOQgTwk!cHNlW`(Wt7ki|
z9o~EPEP-{TrYy8b01pKhWl&;Wtt`R;JgDM;C0@HAHd#a}o8~(5Ba+$5v*V9T2NZmP
zxZteBO2n063MB*i2l|TKP)vILT~v$LktfS(){rVFddk+K4lNmK0^@y{${s;bQJU|B
ze&E!_p%YkbK?i^KwC<#gY3R1Ba4>m5*W2~}!_rS2d;m7lfyQ5m0uGK-WN)1NCJv6P
z;^W#m>Q>9IzJE1smN<A{ItO47k-Z9Mru!r>p<__1CvIXM#Q|xG_}zjUL6K|)F0-~_
z(vupYaOLrsam~jLDTJX^grY(r6bi?bDa(4Aju%;H+zG{PGBXAMZKhXA;$K6fw#?KV
z?;v_O6(Cug*@-&Mj)oS$+sW_^Q|*|o$IF1%?g(z1q+nHTx-~rGy6o{wIaDZBj!}NT
z`b<alNx*g9tw^A`1t0n?J?IZvBo7~rUYrSCQ{mEkx=4r|6ER}HCsll}7lh;m4a%6w
zbb5Gz*Tmb4?)3#KMC`U6pJEk@HE7=at$)i8`$vl<=dzL#ZuPl_LY-%~31BH8XhT1L
zJHqH&(+p!`cM6%`PV|h#cH!JFnFa6#Qd!+;qnX~hXV@=3@$9)+_OowV$8{=sHN6NG
zX?<LFhvCk!_pM1t{Bmu&y)fTjogVx-F)v7R_IsWT)lJQN^fPk5-}M?%+G4V$<q=<&
zhJ_opl{-XG#I&^J7UtJ}7Zy8I8fYquE#e$I&J#z-=N*u{7*#axH0#tfm&_z%2T5gD
zAq9f`0r}5xCL_fk`|&UTTEGDU`k!z<|91}N;$-%}Y<ji+4@djJC145`g{W#flK*tH
zH)$#mPc6Rc{4YoQrD$|Xt61_Y?P>{-=#=Z%t-I?E)SjQq`c>$kOTvQW+fTSBM#LEf
z-th<MH<L2aaU&1Fwnt=JCY2i7{FXz8lJL0ls_4!d;1Qnq;SF!ry<UwJML(e-BO+Z)
zsscMs{<0-kVBP=tqx`?(neq6`Rg5nTbY=`lJo$A7bCKiSWgVSS6b?qwK1fdyE6yYo
zd*&<pPN(&6cFsh(IqpwH&8Sv)W#<$4&#P{+li)T>@2ZY0Mi!$m64(Wcn=&5^5Bv<Q
zG%P{g;we#O4j8^60jzLuL~)Z!Hr4?%kIO!%b~w(U7833O5sAZsgS!YL>1iz4<OAGR
zsnl#oc)$G#C|9s$oE(RMy23jUcCV{ju%|%*uStw@1K)orv;9)R)7FpRWc`SZuf=KK
zq#6xF#nTXQeYo86{1%9Jow~0py>P|bBM52=5XG!eL$4{oT>>zy^AJf5KbyuS&n*+h
za$gCM8)C-@sJ&rX&To9`+{{XrF6{N{@aCxNN|%>g-m8}9hd_0)sBQc|9(P*P^tfP(
zc|@;REkgcg>CZ!T%Al=*8%)D16jR9n-%~wKeTS=HoKhk_(4x}I5egWPBhh-bqbtf1
zn9m5};!;%aM4c~Jx3x{3pf}#GslNVl%Pm8h)PQ{mVlA>?x*6ktU8gK+cKhvvr?Pa5
z05&{m30w*Iu-xjF<wv@#p)ZlXYn7EW^%EFqgltfon8fG!MfIza+s`+USJ4N*bCvT!
z#aDpqtyr!WurJk-OQCb%D+ZYij`{wKK<Oc`aCWE6h&*)U45H(ku?_N7GaZt)U5t<N
ziv7B3)+=XwWMJ@_PUYB3@CH&44@5MbY3Cr1_}!tD>nyuR3r%DpH_esx;l-1o)Y6~!
zt6PIHZw4voGb$}bg0nx4R^`jqO?+J3(9EY|-AS!sFQ5_uwa{~*f4;!D`u9HiE3+(m
zG~LrX2wuV=7oEk;P+#GwS&3rkIC}QRU1p;Rg$iLKD<*%Sk$RF`=*J)T4ji?`g6N8k
zoGHvJS`Hmh&;($uB;W>9p#ZpX80>@>ntv@NBiGmtP6%DFrfQ%c`i6Or#fxu~o%z>=
z!eN!jYV0?E%uX7DhUfBNN4!V6oJg_HU2bYKy<^4r5cr@VIj0}h(~^II|MD69E=kB6
zx9Kvz-fKm|j!|&yf{-L2xmd>0q*`?`r?n3F0|H!12yM=Yh*9QvNWja1-}G=Xiq|SP
z6AVNlOVd|_*EJX&SfwhAS)alg;@dM}9ZU-;XW3e7OM<F_Ttkgr71J)$!fvbiXR8)T
za(n3gUFjFG?X(4r&2^^PdVL6tmfp&&Nrlpkv*k1n+?Cj(ovlo=h&@3|$qp-zsVoHj
z1-r#Nd^-e~J><D2%{MX+9nA{Gt4yOP9R|nJh!Om+zuVb%Qq+ntjCPn$<|Pxi+O(*9
zfmc%j*-uS-aqUsn?sh&Vn|g-}QQg17^H=67R6XEy1ROK^$7io03aH&#hyNt)+~P+!
zqTEheyQ^zRSRe-R9~mZemLdn!s(}Q2R$eECu7_eZC&G!((<j(VY6aWSYqPT4ibCVR
zw?8k%FfuB@o>yf;r`13oExM&gtJ&72-2QAl22*1ubQp|)zG?3QNb^&F8druu*eNi5
z9BrCSLyJs#Dv}1T?tbD>3C2h+h8Zp6)eRcVMFBlUv5D)V@B-3JwIW4h4aKCCx4&%+
zeh92*Ra67Hn*siRa`*3d2al5A00(Nf@rc0_<lVp;Y+8V<U9qS7DPV)=kTZ^8rmX6C
z8KM!M3lwQzRTZn-G)N%G9;VBj-Rrw+4i8bQnCzuo5YsjSAEbmT&&#F&xvTiY0Kzd~
z!8p*~g2Mn9E1w%mkPhnIvx5GwOFeG}B|O+A_1Hq&VsSVqj>1CH#n2iD)cPVb$f)>H
z2s=Le>)st_!F@whgUan@i72Z*Squ}V{>aPZC14sq1&6+!{*nKWs!vRNd7S?zkUWWj
zfVlpD2&8{t>;HvFxlr7cLi%rUw3NC*w5+c}vm}zO3Z>L8f`aT^_7TGIOmVmGvAr$7
zaO(2&F<nc@>?!2YtnMl%bon&neav}?-tsH_s`Ta836w(j1M8_SL3R$uKqK^<bD8vb
zfjdCpb<g(K04iHr0gR^{sYskQhNfsq62D04Vg>8AV>=eoO%U8N)w>YM47oE1y5>_l
zqjjAvuD0z)0VqUk&96s>2unT(dW<Z7QHfxm8w(6pVRYDh&fvbY5QwdCndP@rTLbmB
zDxH24uCZMP*}X3YHTUORixbdn_rCs*tMlI!ro(99HO14taYK<d?4H${)wcF&Ot7Di
zGymjKY0S>Y9%4m;Tu1s&!`J+2i3obbdx<HE2O-Z=--^bo&ym;`;j<VP9AKydhewxu
zhCPcsNKqux59Sb9Z3F%WY(pQiw;tQ&Pkd{RU75AJPOQR9@s)6qbEi6KMYHY;AP!&y
zej1t7x*_EKk^JSidWso(#}0+jk*3xZF+ptd2P723JnT(Hn+dJ@MmtXQkDxQim@Uho
zUR6~(y!}};ld_pP57t>FxXSA!-8Acoz16bKdaSwF{pqs@Q&+OH9_7F!W&k0%`K_W?
zg`g23&8b`E;@mt3w-H{w{gvNeJ1RTVA+XZ2s$oFSHpnVCZgPoOogg&&sU)PTHQxee
z#<C#A;L5jdhX3N^C2Z_{I68$`0h0g`+4NBot%*P%!l3k*`=bu$lQ|VJ6#137CYL5Y
zs{qCvst-+ugSD9bO7$N&mxhiv$WHyk!Qf|Rk1K>`9Dh7EhWj!tabm<<QW|oISW0@H
z0nNWwIE&KpFp#U!nc*=pbKw8TUKmSO*1apT3XzhDvF&jv6#M;R_%6LBZZ*0qK`^4}
zPfqUz2{8DL5(ADY7vXFc1!|!vH6ltH&dwv4Fae4HK!~mN<ejD1$kcqh@$%-nQzh{N
zql5H9wNCyYC&$3@3fJu2bQgjA!imCiuYtK1z+9WON>GDbOnCYQnhq1AVWeSim^rTq
zq!}DS^fLT9pt8jZ%?wWA=_{;R6oZ^Y!(PHGsLf1<C2s0h8u;I0+!wi-niv;~X419d
zVo_LPv%ov;1syx~Ki^>hkz;@eTPe~oT4Mk;S^T`FIWdU%2+(GdtJ$9mO+)j^E+;E|
z*XX`TZ<cj~<Hi*+DA3hGhYT}{x`oWnKQ><&7bjwFQy<#K7;O@0CDv?<W3-RsBJEmr
zLc-W(tlP+XR6qpsf>D58K0ppcD!ZF4wkg6#Dm6rmq8=tDELHEs7IW;PaJ4)MkEpT+
zVv$#laaW)-hIA{n-IR$2i5~D<bVMsuD(zf#en;f3WX;g>YcI^c>#R8m{!Ha<JBJmz
zooG`7#z}>?;u7akNRybWe4qtsQtrJamPO@k@;X?BT0_-p>UG{5DP6(usBw(Pb|Lrn
z6^@M{qO3V0sHe})<Q-W$Ug!8(Ry58XkfB?A%l0KvVU3)7{5h_E1H)Y=)B{iFJFCLF
z3-%+d6MCT_92M|##OkW%kD$qEji!bd*WcLFF@EBjRyS0mMuPNbK9Cc3^M2^ZHx2~V
zr<!dhk7={6W``mbhZXw^&#ay89|<MmK_pHvNfQ&0^5jkkY=ct~9+~JgnhQm2(YBdO
zFAte8Y5yGEVaiHyonT=`91T5<M{?>0Pk=Wye{6q5r-;PKBB;TfTevz?XzGDFVom-5
z**<pEv)L2iqq&Csp$_v5dT>Oiyq^?Tk0u<7W8ohm7_j`a=J=3BETL^Av*q#4*Ul<p
z_BM@8s>9MT%SLUo4yUsn-g0PigwOx!mw8KF8XzPuzVtP0*W<#vr^!ll&~Zo_HIYHE
zXG{n#e>916XVebK2nHXE{x_g93_B~41>7tW$Z6CQKZbF(ZUpFFV1uYzKs54*%D3$^
zw)BVqX`?-dC2Z^S@lDB#MBfcYO0Xjqu@oN{2lm%Hl9?kj{Wd0?LH1G6q$6=z)UQ=F
zG?LlTuqBsq`{GQkxnrr58IP}Vl0ly?|Ad6o{Si=0FpvF+{Ue&cXj#x|2`3o&#a+G+
zq|RC&5PgrzC&4}`sC7@Ne&v#{<nh%HLoWp2Q5DCYB(L14!skC@)Gj7VKDmh3>Yd`i
zpZ236Iz(psc=av_EP^KjmfrdwpU2AM_uNwPv?G$Vh+T`4@d7t9YkW_M?th-&mOlRP
z3tF*9R{W=m(8r?mv(RGqV&47lox9(A56qMEn&LfP#9DxaeD2iTyi<tV(o-xHq$s$(
z{x5gItE?Y32cRKnb1hD#NRP2cpzNe2DPuI6%#@jbZs~~sDZJpT$Yq27u~HOhfPf7C
z2Vv6D$;95&jPd{FeJiVo{(JDt$;#y)bX45Q$=*rS-pR?##Kp?~x15=qneG3Irr!Sr
z9Q)}L>H{qU(E(9Y$wu2QN(>v8Ui}?;HF6zhgaxC`qoZr8OlsA&Q-9M-N<Gm?&v=(+
zXNU2Rp&}6X^12;t8ZXFm(F!T}I5SZ-@E827hr7pPo8lh`e3!7r_s7=3oHy4KlAZ<W
ze}lkhdH)*(&gkPWkmvnC8Xw&t*nW@7E}i#AeS*@hIim3TI)5iwE6c-lGtZ2)x=ind
zCT+!mfHyt`0JGGM`+{LXQWKU7gS}_XnFmOk*8TN8#_zVnZ+?cJ9Vh>OBBl(VmA*KI
z{UqQgP5-hV-xt2{Y#0YaBhQq^^vh_}+H3YKB~raMObiw!`M}_U*`XeKfkh!#lTsSU
z8jyWq9ZEN*3B8R4lYWh8R;3}I$@ZX*Px?m!$NJwS@cMD^JmyGk<Mp)<aWOuKo6RbY
zZy!bg$bJs&fOr-xaH7UB_!JSj_jd9C?E?PeIA=Xk4-UN39=->C+b;LnlYuMbQSpn{
z&sv*YDv7xZNFZv_ptXn<e>-GeSNLo!7WHIpWB{8(v3Bu4x0Sz0p;1&v@x?AuB!*~Q
zxhM91>5F`<OZ7-xzT37M35kXsmB~wKO*IIKBpVWIF}Hqc3Ld)MmQH@q5ybJBoC}ET
zzX=3MUX_i7{hH$6ha^l9?ZjIe`RVh<8nJd<CB5^Q&PcG4B2I-OseKw1g96$k>Nb47
zCMtw-ydnnA#01eA`+ns+=+k+AZwp`uQhBFb1|p^EuI+!UNLu5}zTR`2H{IH(+3(Wi
zNTaYyhf{Zwy>AC8f@8x7q>uk!ti4l^ZQZu5o3?G+wr$&)Gi}?pZQHhOW2R@?nrWT<
z*V=c-UHj>t9XDb`jPWwwdi2t2Enh3;y`c`=O34N2cTCW|@LNz)72sJfNsw)vvs^DX
zZwHkZw7w`7$)cyo=6$!YnfW5p2IkNBc3a;QNmiVGywoyrpQ+kJo0)e?Rwq^zNY{D*
z#mvUGNAOz|Avk8nvp{NIwznG*S*bv%m4QQ6`pbS6G^x_4P?=Vx{VefL%x<3<ff>w6
zU5*@?3N1HQTW*~;lQvJnBuP!K$O@+43fZgmQU2J*7xC;1>8w|*Gfv`pE&f`&_??|-
zyHUv!r131c-dfzxQRpC~%5gc_S4tFnvDpPQ9M*XYJGmG{pr8Pd@47e_!!cQ|jGkRo
z8Qplcay2JB!{BJKSwZPVtM5jHFo4C4(HRv)Z{NzNmtS^9KH#d8S~hGn3F}UqW*eEI
z%3*Q9y;IEnVp)6KM&rv-ygg%Ot6~e#T_u|FgxgLw*n@Ju<A@FQn>7>n%YiNVHA?ok
zc8iDx4u`qh63l%KESudFfqM~9n(}sZ+}}=60J+6wrlr<x*ew)|cHPmD5GX11&QS=7
z6f#A?6Ux)ErI8DFyC{}-GKYqR9UPn46G8tN)l#jW#Rt*wkV<lybAU9bFvw_&tPk0y
zAk}`W6LYShjis=d4*bhSMls>Kx|166p2tZw=O-(vfbOe*z3Ls|t9m4CnN+VQt69qq
zFJ9zrE&A}=wY~HfBmcO6?JDIIlq?PJ@On3zWaef{t=c4AG?-7;6AsfMPzyE(I0dt5
zaP}zU(tAAdI~^lvy4xkaQi&oTBS;<+?xG8%nlaRC@;uEbKhO<=#s*W0ILq4HKBLm~
zBoB3jR5{T&{40XfCGB*jZoh=}VXc8^*a@aBn9U)j_)AG_b5HOqdxb*(Qd(!Z5VeR7
zIDvI}3N_URhOgk7cwWGxiB4hmKKey+7Zj-!6pN}&u45D%s@<((6@{DXrtLuuoND(#
z7-GFr0j|RMfjZDDSlO{f4~&*ed=5?}R6tkcjs_gLxT=3gn_fQTZiW5K<GX$UTIIJs
zL_D$rWSku~KK<3{vzir~EwqBN!x&DleEui7@H1)LMtA^&`#iaQ8_XXxOw(1|F{hez
z1*%|U=R8@<;g6)?MoSwO8F1oHP+TKb_Xi|BNQf?}oMjL)VT4eO)!kV?hw@uvu_a1p
z@!Fks_qXni3+e!49depZ%lh3a4jQ>u2XbOwI`d#`@R_`gFaPg~vs;T<nW(z6x76D0
zhFW|YwN$oDLY@4U1}_ofdDpshCn0Ik2jgv7^6k&T;40O|?bl#+GNQ9ar0@a7Vdh}x
zQfEh1$RyKuv16DXnYaW_k>9YtlIE<!+^CO+7o$M(_}vj<e+p9u;siQNHpe^HwxIGT
z;820scM`T&&Y%Pj8iK2;Z!Is&SDsO7USAUMjG>Tty#qx2hyAS}!rKbkDlmM@U0o|(
zWxB^J_}GLDG!9NV9PMyF{4`!aoLY4lvt~T}mTcX0Cc5DVR)<y1{foTT%xo}PvQ{ms
zy|1(MwRdfhzEe$5O-Z1WR5>!q4z<YXl}8vy%qM+E1}m#u@c1iLwebrB*^hP#j|b^3
z+NH(xy8JA=V=8eA>2KoYyMhFt9UpOg9uR!SQ~o54Mj3BDw%sH`Gr9TXSWob6QG7qY
z__Ztgwk!62vro2|yYthfKnL*6dmUX(RNPs1bZgp5MVhEhOOq5clv-q+K<iS;E5s`F
zL9of8yuL_Yyq?fc`{n(G$V^H%l?0KH0Woc|DZ_d1Ff5-u#R7b}1^-X|r(DHDTmR92
zV|oApssG>f-`v^8`bz6(6WfaR#b@vxpd3I8NJb?Wd0o;#k3_E7MB19x?$)07BlWHA
z|LRNYiF)64llZ4Et;#3KR2GrAhBWcywwvcflqs(7N9^Cf&vKI3KQE{ky}UeKHpp`E
zLHcl8g7&KYj>+^EgTT(DQ>kh@Bs7sgPH^MgfBMqm1R1hsPA|iuIHBIy1*^v<rU(#)
z0ArjFTY5kKyio6w<EB5ZLxkUCAvQ&l(BQK2N?c`PXsA?wLMp|}2#bI@-E(I(N(39%
z3HFtN-(Z2q_z)>M#(din5{K1E9Gr@OaC=JD+W8TNfyb!7lKq;G#vt^0`88N3TSxm(
z>G=D@Pw9APS83UPPpe}enc;LX(6;wx-)&!;qeU&Ud5>y-I7XuDV6xC8qpS!9JV~6G
z0O%4UDp!#k!(4H?V~E<Hv+yrMVMM^s$I=-6KFM0a#GY%(Z`iXZuS4|oBs~*O&V2CZ
z{asf%&o;YGAIHV6Eq=JIuMjp$Y~iJ-c{bG7n8~jJ_^*9xYKOrkZX!YpPpLU%1xEj;
zaIqXGRpAmIBxwvbUa6qRK2XdS=^6;xn^l-iTonqB(khymq^)xCWEghFR_fE6Nh{nF
z_E24g7hi(HSMb+17?IwOz&-IP&eysw7JNPuuTwNr0jU_@<TAwW8@T7*{Yh~)0>o}v
zTJqZ&J`1*pIEBjjEcsEA-^oOKWWSseF23YncfEQLZv3v9zJ*wa{wYpV?T;X^AFsn;
zM~%7&m)GVmBDKr$=^#Q>w~jZ+H)NR^5lIX{VFpda12=6jR5dXOY|``|xA{ISmG49^
z-n~kgo#>O7w~gH30ZIUejG35^A-bri^sEDLm@EY*ql``C3_LUj)FxDO>n?Wf_c07L
z4-t=0!WqLY^)_}8kYOR%u?(9LD=EBiTp&!7DiUOa;E;rRjX#d0)`eQ2WS=B<By_hi
z2&WvU49ln^J77$5vTRIPJ3k(hlRIpjrT(>#Te^Zen2Y_1-TBB5;!+RbVjzG^P#%P;
z01me-h`MaMCgfp-Jh+5AG;Fo8r<K}aw5LqA8BY>}Er4Ud<J(W51$4N2dT=CH8cvXe
zkO_21e!7}HqsiHc%$ybEol3%)CGFIQ9EOoNJr<qJ>>kvn`eu;0UWYTbQl9~1y}WG1
zy4y)^sFhG0WZ@WcC$>oYx0UGIO5A*7`y-+f95acSW`2h|i-V42wEDO441A*7@Y+x5
zLfzVi^>WT_`B?$`6+^ijoo+Yv;yU<DBf+CGBg^}-Ew3aJxy+{QnnaS9d)NI>@pyKv
zjPN{(iL5YiHn{<v{7Krv4w%i8&Ds7?52mNmbfzp0jnxd3lO;D;<OqrMI!@a?*y%O5
zdbf2?pvXXLbA?2Kke2e2n(~t+ZMozc>5L;J_f7T+dVMF7>2H+yT5Vnu_-#yglM<Hb
zo}<(UcLMF_y%^fn{ZJgkK70BlZ06kKH(Gl;Ud@QNHwT-}a3d(<=hYPAIGA9OEY==i
z75FB%(ZcYo+VAmgYMHesypsncQ&}mRA-f34zEal7rp~t?<8sgsWQSO1Q8WTp)3jE5
zY@CtyJdcRWG&7&)P`S=$YKO_aB~rsh%AkJ0BT`<4P8NkaP{`!~%;Gyv`Xusj@Gpb;
zmO{F90C38+z?juk-TL`Cvwc9AHVTShulz!tm8QKxgl&`v2f~@TY^)S;TUCgw_K!th
z#L8J6SOU2nsFRnkLQ#L)q+XRX&UEb-nZ%@jRq1K-jESE@`KKaa^VVG<<DzTt8=TR6
zMO?z{g$6&$eAC+XO3klP%}G-&Fn1h0^)`b1w-w?Y;aHgOf$77d#Z>YIj%@`V$2%6b
z_x)VJ1)Zajo!rUPj<E30yF{-6kYsAhd|!I3UWzsJ4xqSXsCM~%T+9<t32FlkDUTw?
zuFe1|!Y>XkE_aRbua?WZib3D=-EuXuIVM58-01U&_!XO&AbOX}`OS&D)^*S}vh>BM
zDdQ4{qbQC{>b`lHf@O&&7LcC(jOO5XaQHOGXiF?$o|Xz&0p#Z?@$pcc*`7-edpc*F
z^lD`{y^duCT8Cuh23rT@Or^&QNY(gBT4AVC^zM$1ZB9z(=gx%4Sm?0T(J*|TC0f_k
zT#BC6fJFj5S)yGEUVT#726^0K%qz9sAU=B-Z}v&Hp6d5ie0XkFF?mve(O!|pJI_kG
z;+8CH!Crfm7W-qn%l4H;Zm&b=ho>+M@Zi{sz@x#)EoRU+4_J*jeJ~EQ&C}nRDpyN6
zx_NEd1f+zH#^ToFBQsJWL@Fv0Xykk`miIq+fj5^T{Y<vvKtufYAKUa4Rekz(FLDyj
z_;T<WA#{`>f3;$#3I}T--rEI-mI^jF9UO!%V_NA)!qJ|1uV_M(qqkn+A4-dnbjB^F
zZawAh<jJ~6Wn$ek%iP_Rv;J%^9~7=!y=Kqw6SvQ}7a!o*JawX3yB<3<n6_<IWW8kR
zQ%52LwwwS{@%z)s-DbPKe_lV{+vQ*I`@;pV8tHgNkI8PolgQ5=7r;Mow9cJ)<jy_t
z<ehl%%{9$<<Vx|q^Thr=gyLOL=FOUtz8c8=qa&}YNqw%RMnD*VDE*r#D=QQXUoJ7V
zBjM@p>jFJSoxi&^Y?4yY4T-xt93-RyhiGX-Bk_Qs>BqR;AON8M`X9#aifZAz#t%G4
z{A1n<{@<S;{vZF=)X~u9-~09!6>a%V1{B|a7`j_zo?$tyU<|8x4GLff3$dX2Trze}
zD<DZ6>o(GF-`1sYpluR7GEylcKfaSL9Ft}zu873EJB-<+3+nKjUR_<0AB65Y4Dnal
zghg9}{3ig?gq7;4&~mr2wYRYUp%%M%bd4HyCzcZ72~CGdNA0AK8dO2NDHrir9)FB0
z54^2C>H}xs$p&gvVB*?CyulR%=Y92<?-&;8TKYhB2zc*dhJ+z|e%SIi>dOFLIMz@3
z)(99FI08)EH0xH_#ThBg$DYA<vCzyw;@?{fMH*qG2(4c=J;gTh0>6DiL=Ku<yZeMP
zohlT<+$J*IPTkLh(%iEnBU6cH%o@j!B|z6WQ9BFb*4dP3piR6f&pCY(E5;FA$;l@;
zWfC#y8baKG0r?&+_GInk{+zv%1SGu}*$sD+@g8NW|7Zn9z2M^c{RjQdUjG7B)Egp6
zDxqR0t>RI5ra#-@s;5#3#37PjSg_L5u_vc6?(8G{#4=siJynWm5&OjkMyD!}RH=4V
zr_Edb_?`Kup;ZIl?~HLRbQb`Ni4>@bXz8FMzatB4Gx}C$D{ki2Cid2*S=ZIuzYEjp
zWoW7+Cek*gVmN6|$dnGebH$8l-VAey2V#nN8uywFmmBCVp>wXK?uN%LS$_m?OpF=L
zt2O%4AAqAYl5Y^`X3?>Ix5P?MdT3ZC^@Q98A43X5;}&*p2TZf%@(B$Ow36#mqAx^E
zG&;w;P%pOqEHI=gjY*1!m%sRH?IVt?49z1y;B~dN?GUGADz7)<%HMI*)BcA$)Os{e
z4D{m;tz!TH2><UN+y9{GG_>uOBv5?C|M25PgVY3H1s6h@=cs13ZqnHxVYw~v6-4mL
zcIUWHPm>U8UHR=YqjS%eDA>YB)hC+rq}^=MFAa&0^~imwe}l~anSwsm$Jfnv>wg%!
z-PR+Ai97h!bxUN<LWo9^mNDrrr-6~{%zHa3g<3ac&zA@O(BmJah@l_yi`9@`XtbkP
zuu`e+@pfRJcsGnL=XoML@a6)u2O48SJVD&4$xKF4>-sb2SOq~;8G~-mj)|C3-k=P#
z8wTqpE9RK)7KiSRJ0Fy1H|%)F>f^G<e`)~ReaHNon+UlQ!ko<K%`kI@sBXwf)ahs}
zD$p~2y=`3iZxNF>z5o-MkP@oySlO5KP}(F)QBANs&}h<~g7H~6Sa!KXzbfL^qA1}D
zO;ULp4L&Ho$e=P5caN(#SWi2=-6_yp3+_Awmf#Y;^XBJ(CVi;uxA!wcvxrox6H`G#
zS|O07jAh5iDE0SiuVIwQD=ow%k$fd+k)uq-y+DD1T&{=|{Al2gh#o?)Ro+oX|0VNZ
zV!Qk@*lrmSwQ{apwxFCxfk<QON=>-0RK1J&9`ovYmaF)(sJXzlW^f*FfES7ef4@rw
z{tej6eAw`(0Rd?=V-G3*CtKHC(?xL%s(E%|($c?YbRvi^r<5%ZZ<OHzHejdnOA&Y+
z1AgTmJwc@K-@gmq1vL}z;7|+yAfpe?d)mncaq7n|S+BkUudvojO_LO7kO+qk1R^%<
zDFX@*oFqo>F)U}Xs^AKMYpC!sgm0=d{*@!Vek|DhdMNi%t?i@`f|0;TK(ZN$qRS|V
zkiwstu$B<<e^AX1;zmns8M<eylGE<<t}YA25<3dxh(j^m7{|bFZYol?$yp7i5@dgc
zvSlJfr8<NIE2}<)pVKi`Qk8M07NXlrjkfFL%Tr{WI^9ZJng|XT&0mUGJMXZVA`$w@
z?H?f~;!18fMim|TE9n?T>DbY*vVd)Mg9;w9eJ;;9rKPl%SgZ68OGoQA#?fu{Ug}Iq
z3nJ?*^n_VCZiu7a^eoPVc!4~MGuq+X_kG7`5)wCXA(yvr^=Z#xay;fCy!~1#eBh-`
z`{mJ@jz4JP3*q7m!N?zM^-4&?+H(%-BWNanUqAy#1ziWRHL}&x+DkOIW^avRbNcP7
ze{AEpNe4_pB&LDh^GvoX4;q^Bk=^G5RWMaEoF(A~1*?hWar$$fn|x*)-%Xo1S$fmR
zeQ@$Eir_kE#%#)VzPv|M%jVv$vnC`Ab1sl}22rgMJd?**87dm_=yVFB=qlARX6JTd
zA<Pp;lv6u0MCD;H;pzX-XJ`~q+CjMTwz`O+WK5Ry+->5Vv$#4<WophfSzCHeh0)H@
ztl=WxKDc5v(_UG)0!D3>v`*dF5RFt%A>-98QLtK|uR32ZW4Rf}tA$*;BA##@n_3i%
zS+#QL@X<RX(rt*6W2xWYABcxWVYtVlfJF-mEVd}+KH&Y?Q{_%`*LKAZs;M3L2LS|q
z!Z<sw%7!~tnF-vZ^a=16COnwXN=p=s)d&aAYEvti+wq#IQJGHMl8njiShj2-rc!9J
z8Ggm4LH#Q0ye1lgq?ZW_DLAgoz_PRMCAjd4t9axlQOJeBO=*l#DHI`qu^DP_iIQS(
zf5EHRHW_PE$NlgiXS!sY8b0=vC>n)nc@nifX*rK)Ggav%3}2Yf)c$Sm_N4r)@K(s*
zLSMq>;f8>Tt^KM3OJ6_7FRQrRkJiE}B5byZyt!E*Uf10VR0}d*mci31rfMa)$y+0X
zj|I+7>_T=W4yH57o2!HRn4)%@{m(fEKhqvdP9EisT<~7u5NK;o<^nWVk@X5|3u-Sb
zSX<(2W<Lu@JqS?P-;&v$)zww0v->yK<*0+5BTLq8niAn!lsxO6p^Xx|-cio<8=s`6
z`aU|Re}DKNOlng@d;{OJlaBp7OS-y<tb0~c(mHKY%4tMJ&%mN%Aueu>0wPn9lZ#69
zMcA;Yf6`|=zR&wVi1`6n$kQz%W@?5(WR$JpuM&pp8DLaHl)V7pzJUL8vr;o!L3{ag
zDssmJ01)`!OU(b9Y*XIkK=|6p_yS+aDKI>yK|Hm$88{Pw09TiA9PXL*F+$NM0UB{6
zCAIK$`u<eAmzH6mZT?&8rY@hZ(dgDPcYUr&yW!(FZx!bEm;020hga~k?VWtg=I}MR
zd(#rx5dqH_KKCGo3<_12g<XeC1!3{ba~vBxsh7x@FYn+LE!9$FkeP`M`7RrRl69yd
zqG$C$yi492-({m)UL5ANH>bglP%uexuVJ`{*_4HD=QD&<Msdi9MJHdHtEeGbp(sLs
zFXrJ`%n5e_Bxi8fzr@@Lo3%}E!0dvP3%6S^3w!3uI{}gzMU&X)$#>E$U@bMmFyd}V
zbdm?fq^O_yGRVR8Cf{5p#gxn)8}E%iTQ?MYKr12JfUxLJ;m&=yzSuOnMDh+*yI5+r
z9jx!xIC!^8;^%n<UBSY25GeQ;-sZKBcpl>OH<VVPk0^lc7R>f7=vvRuei?c}@7vuc
z%{U4T0g1~n06j>UN=!TZYgF3LX)}Y;-7y3OIiPGth=JF1+I<{g9!I~pC2TZO7X)wA
z_^2s);F`D1cMtZmS-FmQL|J*oY$$QYQ=+O|t;#E!zGdzA47eIPr4VoO-JhmOZ8l;&
zej$6zAH2=9?dcDCIUr*J8+n6hs0UILd{5LUbFGiU5XzyY!E!RMwz#0b_jq<>caKtK
ze-_5Q6;}g0=dB;h*3Rr=X<y^!2XwvY0hn@SGd3PVqKVr`QH0LUnD^=%>K6NW_9Sa$
zN2xGi7NqO6kQ^!&73Z4FzOIpeYh@+WB^XR3H0)qc6T%~$;`&9=_0G+^m)XdYcUk}(
ziYB<grST8F4WXIP^j~<}J;1;5HuWF8?f!4YzwkD_f8%ZF-o{DziPf&Z=~RGvEYN%R
zq_FMBX~E<~4e`gb?QNupJCB53!E~^Eov6n#m6>OcdvoQ;RA}o<u<QPzw}}NuA`6qn
z)CDsCi*F+}H2F|#Iw}V;%By7i;oC<0*Z#$~WkDFFQlV)oJ%P3pvLEGV_rMOy%G##A
zsf6o{HQ?^*dQXd-4~5Q@#2ILyk}2=^-iNCrTXQ+Ts$#Fq)j?+qq-G1ykR$AYG!8-*
zhi3q;p#dsew*u8ee>5B2r(qm<pQ(BHsJ}DKRx%=ER*EUScRRJ|!=qZGes)ZEt9Dbb
zB^JoJ*;aO-(*1GR6Vz+BD4lE4_0+2$E8}fQen9pxM4!p&BNs81<o43}C6!C<RwZ1o
zP<uAKx&@Fj0zB^q($w}Ib<pkro$Mn1{87jlwm0E{&~H3(vzGEpJ&h5;o$3@Q^*$6~
zzpC1x9cv)i)GbBUc#x`))x|i4O#QVjlt?<`!lY=4x11i!#bhWKJbh9wV5TuuBQ@ko
z7i~rOhi>ye^?k&Y!;wYbO(qL@<MESzBzGQ9UDjH4oc&9EivXb~ztN!bL5wp}-VXn&
zP6621D4?8{!1^~O@8c3P^}hIa%~UZ~ZI(dK$^<C8KErUFS}64xQ9a?YX~x+a{;(Y+
z5&wp;hZX0VvOAP^tetn@2X6!XZ@ev0RMW=2#}kYix@;(jAQK0m0ve04UAP3WeyK8`
z(bSa?+eS`!z!~}wky6^3w($K3!WZCpF5|JSiOsu58D}1KSwj@g;Kpo|oL5P==1<y+
zcPE>csVsShT&1Lw&qv=>Mwp;+&I|0F#v>|=)!?P`s+cJ_>kG-ud7K!0P%$m}JmJRm
zzSSKKD=J&q>TzD9Tl<F+a|a1<DF^Du!CJ-yDGLIs?CSL6O^z;?l;lb()a+g>BBvoU
zS*<c$6ZYFCqg)NBTS>uNqB^GpP1oF~9>$YgT^^||9!cmT24{thV3WB1cF3_MUMJ$r
z^4F=T-`_%h&xM;#^qTo`zkJ-8g%4@&#ZAhdR!UmW#ZD!q<-}$Q-~lm}W|PkP6nh{J
zE!X@PbL;uvOUF-BxX;4CVy$sbOIVbp0fL&*fd0rEq!rBNFZ^xqF@UyTVE?Hk{!>6e
zoIk@#<_{dr|G!s~|0dcrZT=zJzJ9Lz7@kYfO0=+3qFPG-5N-DMAta>7mH!ZJiR~PE
zZf;2|T-$zq8;`#kJqqR*yLKuR{U1HeT=nuY5M#)}w_R_=ZxCXGnv_p<FY|Jn2OJ<@
z>zBw52{^{}yYDSsAV6eIs*Q3NgX4!{foCNuE@=syHm0+#+;w0i?d8NQv%85PPZB*6
zBD0SV#AC>7p>f$R76^gYR=D3#NLX;+;G}0V5Q`KYp43yB1W}_57{cP5rHJtc)waE^
zR_HET-q>zYW^c>pnA|&{A9LDXwmm@2KHY8`)plFbqB9EfL!39tBzYcl*yK^AQ?RF*
zj|I~CUt^8(QWCu22N6*dDZhz09QCm~RH~6yyW?em`U3G_>srtV@x377#eosUg^wL7
z#qiXBit3It_LejXbN)D=`XCX;VOYCp4=_3h;dTFVI#rbun5pt`Y1_4Ud>h*a(CSIL
z0-K<xRgpMLf0YXctAMC^bhfhF`UxJKCiyAQt{-+Q&Lo$K#ZZQ$P+2}lmpbd0sHfh&
z<7xb>JMVs+-LdQT=DAs)RuImtdQ`TZc*8{?+MZhFapjXN*JOy#La)^B*<bXEp26-S
z!s83_W3$8g9ZP>k)EPkg2)M|2YBAHx5kGZ!wLJ2q(lr_a{aR5s8qBo|`l(e;P%c=@
zi-u}04ZCB-ya-YKz;|hDYKuRs^S1cTx7|07f>fN0p@*0#>M~kLre9U$vH1!;zBmz!
zAr)yT4gyJnWHy~82LcP6BSF>+IvvVXO$m?_=z9_1H_ri|=MBu?43fKe{#^CATQ$YJ
z_h%?jD!g%DEl_sWL~NqWfh)hY?;8fJHx8yloVsW)o;~<mv2#zwGub}u(`|?aAM+px
z&JVWn+r~$+;<Qp{N0p{nD99SYJ`v@faK?g0l~Savdz@@f=ypZrXLnx8nAPFPgs05-
z%(BHXQ@cGIB7!Cz-N^HmT5hdEhuG4R9(5AA{;txjnYcWMsf8~5-kOzcFs+BY=a^(r
zg(XIVOtYMSMP^Pmb&$W+!%dzvLMMwfbs)mOo8vv4I6V^Fx;*xxK}wc1{Lz4@2-`o=
zKfJ3|x9Q~-C`)bRj9`+AVMp?rI4ZWIk6<wlWDzcg6(}K`8XtNnAq>?fTl|PcK^3ae
zpDmr_EDm&_>r2_qrs($4<V?`iqe_RJ62fth`!{F9^qy(1c?t;7wrwbIR`xZecbTgp
zg`|Vz>f;ehv6}xzP5PE->P%%#7Jm}R|2ICF4E^&7`NArgYAdYqn7THzGj851pKU6J
zPf~}OWmOnKHmP&0Iw$bo8yC1YuoF$94P6W6+@D)KnOgNQE>jqtV8>FKS@VADoEq>S
z7y0^Y&Sdv;wQ%rCVmXb~=C-qr@T(Z%$DbHRCyKlA@2xe9utYJ+RpUgRF;i3%-M;!~
zOxoRp+2<$aSN;CbEU`Ds3Zx)^qQw-ewRdwqG>z~w&AjarcGlrwhS2lxRG#73bdR9(
zErR*``F`mXM`58X%G71S9;Tz22nAv(f>OY5C3@;daI-@%`D_;m&xKop&~3|thf%`8
zd5ofyOB7_YH8b>yL*I~!cSaYz3e_Uxvs0NU#i+&REgmg_)65Ze7v>W@<rd1T7VZfk
z!=wbC7#0?ya#Hb5^Zxp(vM&Gm9sRR%e*jj)SE3S;`H6CN+*F9TM3TC$n*1Gl?nNFU
zdcl1h4yql#gwMd~Je!I5GKPFLaNipBcqxX56^C)cs~~ocZEMAKZ6P?M;U;tV>4DA8
z7mfig`)l0m#4}~+Tp;-wa+LsV$U$ucWntALJih<6nN_hU>LID{b*iehL(gm&cSZ2R
z(j^nx_td$^&?vpI{q_r|xfCIe@rCN=Mu(0T2l7~h-%3W9kp03jkT^Q7Pnq>(qTTbY
zRx9?lE!@x_mh}TGSvTln`WfyNG&{!48@Hf*FW06iZJRqV9ZEhu?!A+`UXRf>Ydp{C
zxs9*vzkYIW{N$fEd}r$UdwvX;+BRQB4_`k?3EcPS$lslg3d=#&5JADP7K_IlIIy&1
z<>Jcx;qDwtx0e<^&ojBN>e1k*atxbD@8}T}<3yJLj)`Cs(E=uqi-`VFeg7llO8DRj
zhWjVuYFYsRK=uD#mHt2SVmMY#n{4-8W*_(prnN0*G)j?4EG@L#9IeV-Ei~jxwM%Et
zObCz}))a}L1l*l^-|tsId(t;%nQ7z=k_cTIm)Owp<h$8zvs`^Udht_o51CuN9u7V(
zV%3ocACB(F949$WpL-FyH3@KK2@u8z;w;YDQP@!$y~z^^2RuAH>+oT&(>K|(R%2<O
zw-Lyr4F;{`yj2ZdPWQ4ULbmHev^~Fyl?Ko*MTM}oS7^~H`1p$Sem{$&G0KrXNVrLS
z<v%Y+={Bl2<!!FCwOHEZ4I^3%ezQrBAD9)px`TYf<;9!6o87l-d6|NpF-t-sX&U;$
z1-^H>pou4nHZEe4O%v7jR%s{pq(xr;`tz0yO?F|&MNd74s>>8lXw~iMgXVRKjwdmC
z1wH%A7tLu_=WvX*%ZzZtD#w*hvdT%?*HqYX>fl|Ve~6%yShdS?jp{0EY4gdXN?6XW
z?nxdehP{NT&_}I}C*3K4E?cVPP59`JSyU23<Oagba2v@HgK3|cjF!ld&J?N^0qu_S
zVug0oRqX4Cq4m6Mv`*W`TJ1DsDo6zFj_|~#N)*J6+(<R<ia&UTgONRaO0r}lre|O0
z5EkX_8ZH2TBJ7afCxTxv?lPo7I$?%wb{dW-uE*~2sTW!Vbe;k3TqDi9zju@Tk*mVr
z5oPa=ya1=&A_xlh&E1f!*CIk|?6uzSLiz!G-0hQh)I$u5#~!Do=s6i#0f7Grq#~)W
zI^Poa)7}7-_2uEY!I#cLo!9&6@7exR(JqZ<3taUQ1BooG`KPbK&@mQE8|m#NEssa6
zd~QGTyiXeQ#Jw4%FV<ueM>J=&VaZym$LK-WrKYFNk#k73aMue>k6fPO-T^P0G4CYp
zdR;k#Vz$25fX@N>d~EA#h5!OR0>nwdHv9n~xo*Cw|CSuiWpsHY#C*u|68_?KcJFok
zs`R48c4F4jcQ=Pm4j-#8kUau>v5>#z=mcyJc#MoJQ{l7jq>cF;4<@4l94;W*5Am;+
zwNGr_2+hIN6y%Dr&)2TpDLdaf5K6{&Ah01acGl<xh>nE86w)u4z6j2+77&k#$i5*k
z+IJWnr|s!I_u|u!M`bjBqs-U5V5k+7YOyK;6p1JT>9QNJi679pQe%=2ltE9y|I1Lr
zYsNpzY@G+P?OY!d;&__Xl=&Ka;24pL^H-@GI9-_wzFGVj5(Z+C8Yu`JHqMFW#h>)#
zxT<-Ek~gRubns`*bd~;X%v0%hS|IKqg-=E()#Y75^@<yjk_`S@>}SI3F5fip9b6|P
zDj)LHh=*9%q`(K~uR}VBDjH@{%gQuMW2B!*)OXj|1+i#0gJyAt-&n-!ITGf{8BD{O
z*!3w^^@Q^rv)6qwokW~$=fS$z#4<er;Y#N!f7YpZ6bn_F-k-THGin$2LSAu6XjZk4
z3iTY*8`4XutM<DiSmj3@<V|28ySauF6<C??)V!+ND$sLgns927MtE_S&6$R~1D(kd
zjgmbZoPoiZ(iOxBBuqGgroV`c-CvE|kFI1hCVQb?1?_GChjI9qFXq!nUYH!UOZ3@5
z8cB+Uqr-IPL)^G56g+^SLA6oXB8k-iSUW^00jFxZXb5c%M6YbD=DdqFwHv_zZKc`2
z?Jh0w4m4O!H{+Y3Bm-PV7qnxb&B@G4H76{wD$@X=(J{nNBwqoz5;7{{4w`twthph^
z$hmE}a?ksEHi}=$<V;y^<4jSI1AW1i<$~#KXUWS1HHlO%^G;;V*2=EfIQg%#6W^AH
zA(4GYYwp4q1@mlKQ=N`BU_Qny6cm8cFZ!#e-!BZ&g90BX4=5QIXh!XiB!b4L8Pw|u
z?lJdD5~fCZvNZ96lo9JWO6k@aMgfi@(jR&}_vT3yXyNEWbJU*U38crO7C>hu+=H`u
z02bZjI$?g15;Y)3tc=sy#MqJGSUUlY-^?V$ttVH6+`CIhj8#*VpNaa_OEES2uMSLK
zAKoDqYQ}<j0U}NInvUuYknxlP%XZq2OR5Rh?AemHd0`a{`^(k7MZ`AOcXvs#3gHCM
zo{!|WRq}x~EP;J3Fuc&y;i<1p5`>0m0wPad`B(oUHFMxE@aC;-t~pHa1>wHqxhfe-
zMAH?q#ek-nqHvW}$%%7lQ4+Bjban9MQwL>v#9ob$F`kD7PJ__hSKP|&-YL)x4~nW+
zr44X(Q+OnjuP#~0x_#G=Y!f$3#jVtXW<kN2*bfH^hWRD|1d#Xz5lb45K_WR#dS*yT
zGtAe&hGz)1H8WrWV;R^RAOO8;7dj7%@CY1m?C6h<bKeS_EVYGt?H`2vR9?*Xiip>*
z0<efJf;XH`i1w%a0-PaNoPws-8?1dxLjtFJY93(4fT22`(M$jfLgyz0Vcs-ar$xK?
zsawm(@o&49kE=lLhWwRQK{9)vj3F8Tb#ShdSheFHc3H>O&H&@*QsLirnKMgkeW{+O
zGHw+PjXFM)ljcSlv-~u5jNzJTg0`OJPlPCTGX_4ZH%zvk8pYU761^8{sEhh&p^%T=
z0Bve;kG$(0RoD9+goB4mML}no*MI{+Xp_pC!d!q30_GrvaS&ec)C&}KIGrk_z@1-A
zttyKtsfksE+fn09SZDX+%SK8p9NI@u#d&4>hS00sBJGTHXZx<klBE*dbI3`^;%|{1
zV94@}CaAV6moYH&9D>Ny%2gRTX^DKzcAm}_taL8^5||+@a?XVDiX-ra<~PRi`J#Ag
z-z72$0_7+jHIjBjNsUV1WkbbQRSrFLNxk}^;(7T*tTkdzx_B$OzQ>V&p#on!Wjwn9
zl5mc!#)$PeMG}rhPa0i%@8(&wWU|nboOLZX2g-RS%~6=Ji=#sDRXtNzsu5TkZ_JHU
z4Bwq208~%Q#VRyG{gJ+8tR6Za5^fK|dVYT~R+CA0HH(^P2ZWPPA>ZLdU~D7kMMQHl
zzLVO@rWUy}KLzRmWROB3!y6SRbb`3cj_ox^PQyNoC*>1-Rp@Cgnd-!As`}(k!5s`L
zeJlS7H2N!k7ItI7VNjz-N)O&j3eJLBWr&B$;%b*OQZ?FjeXsg!!VPSG?s_f~uPy`U
zR$@=6GTZzYP68iIo4uqw9#B2ZB{9-*;hFnn$mY_oI;MavcG<WA{aDD4r+0E|kix`s
z?*+*l+F~6B^hr+KN@Wukg|ak-j7Cx2QtQa?atCmNkZs({Vj@mgd>|w-9<X2b$Fj;j
zJVl!1<cO`5-a`VsaFh82m-n^(-NB&Hj$n|2B%T^J>71o;C4W*%RkZ-ygqDffqlv*H
zn;9IS3_i7<X%bcLGF|>mjxafwC}@|&d~)U&P=Mg~q_l$MU=687T!JFnO3{$6qL@|%
zZ!>z-W`nk4yCfQ7LXG*iNma^+#MQcELMf-$AcgWdU>4SYt3d{u`*$|M$buPH8BeSq
zhDgt+3|gnu-+`!Q4Y~_;F>IF%uN^Wg$M#wi-ddu+%!TdDWG7PO#;hy6<cMOt4Xf(x
zhw|*nEEZ~j_3SIniV1onG|CN?=*WRJoBY8uCrB%Re)oe&B(TyRE%H`q^bbds$htf;
z-HEZoI(Kq4Le2^;>IywU&snOvptZp&Jpo4FWL_@AR`yFZ>dt*P?Kkqi&D%qR{>XJF
z5+qG6m3YxyMHqjK?s+GDPL?{)oUG{J<YetL=44e*SW5P(i3s#;;S}t7O9XwiL=}|X
z(9WVLpBe!zvGQ*Uad{<$zHme}l;w0~Aa;!d)oudhLNj4+_~fMT%#<ygFl4Qpv7N*$
zX5FEbdg82Fv+KLqus}1g@v3aJX=#>~04HqrjpsACVPZn4PX)CZ#Z;L1d8JK>j}`|0
zH8KGc7jy06<{h_vKJGKWOe}i6p;)IhdvbGQsS?=zEljAn8w<WD$8oq|*nDzbrEZnr
z&jT+PH<`-D-u|bElg={TGuh_S)XZGnm^owMC?Tmf$>%xxvrqQzZ*}oKD3<QPp;k|v
z8?;L;xrPI{i(6SxjHSXNJ_O_woo-$>2<%gCClgLChhR{75E@P5+q%#>bTr-2(ss`M
zy43T``kwp~-Hx;zF&aFG$E_fqJ5Xo^y=*^5G_(m;7q=pf<e)o$yoUc~-mh-=^FBN4
zXS6!Z!c2qS&dQRgq4Pu)6#9D6CW~Y@h7LMBOtGEw89qDMXU15+NRHANVju5~-RLDn
zcIC2;SSbAv!mgry%0A^Af4y!u&B8wJhFm52A#Dm9e~Cavd@1j63dL@YO}2rcEJ2K&
zQA;xHtZ$NR<YTy0V~$|(nIb^6TT_t;(Mf)0{h;hywS(X_f`>K&{bsHlwWg2b!xyXg
zZH>ux{ySu(w}s#O2@K|JpM;PxPZw<@y}r_a{_6|*B~@e~#}_OwiJ|HBO*EoTKlw$x
zkAjg`G9z8KWMaAakYXk_G1-L*mM<!akZX<4+!)x--Tp-S{;KGA6MpQ<*t>OL*n=vw
z8Vcwkh$U*FpaE++gcLtbS??w|`uG3fe0Tf>YY5;001R#ZS8mjQOl$w5dv$Go1~a68
zxlzd(7A2ff&DLYGxYF#AS0uKdXwnvCZca-9A`(Kv2{aIrcaLwocIW`RB$J6Wnhm;M
z+2J4&BS7muuIL&AVY@i`crCs?T!c5;CuWD|2U$%^#73$(Cu!TnW1P0Q7vNq`t|`qR
zkHmByd&+YTa&$CCk0mhhIA%O}n+Lkw2)t!3SAUQCH=Vi(!qcy$)++rzSN7RcpgIf=
zsDJ-6o*{Whxi8<W&>UB}y+wE4b={=Tfuu~6USZ#J<0`VB#w)G(n%I4-ZP%v$^mIGD
ztQiw-Y>=;P1HWu<6Q9iFjnBHe?6NQ!BqA9%4t`<WE6#91c~5w2T5JbT6XE)(H<7&4
zpzhX5mdT3_8(;mpusKTkBkg$B@D_Ga)Nj%UL6<>LG9`Aw+hMJnkhc!ofiw^<&Oo<y
zlVIbuS*w<b9#eJvK80qXlamUMD@$ZLUIwhzq;skl3VPVt_$h2+rq6or@QsW(U8R}O
zeW$T(CZi<+v>Cc7hoV_buhC|@(aL<6wc4=aRr#5@GHfKucMgF!NyCd{tZSJd;S5z#
zIremupvup}E-@8BUW?n#?i8`+;M?~V*&m0(eklJll66Z<>CG2V7_vQ0ANNl2>AOnr
z-jxFxrvpq>NirJmrbyO^Q4xS=yuBbR0Tx*VHN$|r8*=py9%|Mtp?xi;9RqV*{gsvp
z4~BN%<B+-+Q$a|-@ZA$D7W-;`X?0Q9-f47S;d%k&bDh4becfWtqn|nHef_}W|Mskb
zl=`i<{G{Kz<>PT{CvB^(tv2*9-eEiOHm8OfRi&_%%n+M1orLS%2rMu6DWTLi#5AY3
z-^A+<cD{fpW12f+qb!dHsz;FTL*3gt&5RhGWOmn*a(~%?W^>T=!sRQ*ofub7;6bb(
zcw+)O1HWjM7I)4csKVM(eHY%&Gw4YtG$hM_QViQIBC{R_*Bf2j2!dc@c?WONinT`T
z_?p^GS2r$taKavQ@lp|hlrPAI7ej<_M$ny49Dk^h;=^UBY$)sj<T|Y4bSiRmiY#ww
z_2?5I>KZCmSgQa>8|^NC1|lc}uuV-f8k!g@_h91I5l#X#4g(gZH;uo{d5|EJ-Y$W~
z)Sk@57lSYm9)W0fAjN_MQ{LWys9f__Lb)mf6agtjc;yW=#h`d0m3B;RvhFQBg80yV
z&Kk79Gx&$-_xa}}gOMB>hzv45F<TrtB?hxy+n(d<#nP|+MumE~-}RB;z?SAX<Rwwc
zN(>qWxn}0se?I@LyiY?@`-hi4d9}}|xrXMxF*GKjt{7@dS{8VxyVikV`&_gY-9AoZ
zrXQCh!}Rl?{@o1h;yngYdCCz8oh5fgHr-o)6?Qfly+?K<5+R5M0xSv_@)#AHj+Ulr
zn8t^LcphkmyKF|q)@~?3^(sWwZUchC3|W?U#))17rC7kENK@?txJbGn?bV{k7|A$b
zvGY_#|LU0RPiM?81mB5z%mONE1L{PWK}zXZp$FPNvtVNGl5YPAso1YDLi;QwJZ;0k
zvcr#P)*FHETrW@1WN^&br#Bu6zcK0sXECPO{|G#i!~r|~j2OGUpP8x9&Rj@obcAwm
zV+oyr9&N!wA=4AcZLjfW#I9C8UBG5>v`OEW|6QYy3-UnJYOc$Ft65rk$L6@BQ91UC
zx%fLfWui266PUMI6zP7@3{fDZMq(W-R}q&8*r4<LyOg5)Xxhn)7la<zdZD_^;^23H
zRMv{zM2!*0_QbE-_73*#F&D?vN;X?V`$YzMtq-80?Bxk=DsuF(5nHK0<;J`6pP5BX
zVoj2<*fn4kKW5u}g4tju8!)YiT2(JjAsO%K&G3A+ah9>em=u6IJL4zVFgiCgOfqCH
zLwV5_dv@7i|0f?X(&?pKKwN~5;0<xOwgvby%z%0Ts8g>xJPwwl>K}vbbDdT{@T{T$
zPbLD%=s3$vfBNYF)`gNivmi<#A~vLk^NEt0Gg<$KZa5ltP*-1q2PRI)JclZ}pQhn1
zZ%Tfs4yH*}ogH*443+O6#|J*l23`n}muW;SwH32mK3CJksP79ZY$J@~d}>a|wYOgX
zRdK1@_E7z)BKQ;+rYjucuN!PH!f;hg!KGg}-;5V`=GDkHE<+#%=40|sK@n8_uVA3A
zd>;_<z*|6$ezx_DAp|aIIld*q(*|JG{I@tkmeKin5DfCX7+JvyPq+KJ12=R#U*G2o
z+l!&2IDE338d`5ub;C<E9SX1C$w0sC@kE77jV8p*`u&j+2U(~srn`>{#`~p@ulx`$
z@&T1bC7k+A^m`!tVufQtfbFnNgDc|k-(~C(B20Iq0WqQAmKOurg|7!LH*^tU>c!_r
z8f&m<E54^%Z99tjCk=|dbi_(N8);wtSxKR#yEbo~)LJ(ss#N4WI@J;ra4qz~>^F~c
zv2NOKD{QCB|M)->AtAtGVw}vu8PcK7WMhYY0KJo*%5UH~sXryeG;W)9ucf_ZqPEYM
z2=%@BY=A9o9{5_ob4CBTWkUd_QnZj>T^Zqq#u^Bfj&#A)0gNkYG?J#4#PXhtV~ft{
z13o;o-Wic>a&fe#(R(;}^*DH2lPqde0k+`LJ%vRDTmIBNAVrLU7+nMU)mpWR;!r_k
zYuOKGLpF_#W&sXVTx4n!WE1?tR$M#fkm0Pp3ry#_%*(^hBao~&pQ`7zL4@H`IB9+z
z;b7JVkft+C_Jo-&%^!2its>Y57v`8_@FSbR4!`;CbgS^XB*|DJCk)I|C;@t;r(2)V
z(un=P<@|lQQ2ZZI+PkL|Y5nO%LWRYj%BXS|COkXmG|o6!bsTiZnrV%YCVr<-xt3`#
zono9FF+Z|grwdA+$*HQ!WMp<UEHGz{CdAQ^<!(l^h23Qz0H9=ws-_gXL{#7e1>vbM
zYsVsOS<H`n46-`<E_(WT@RaOVQN0>3GfMZgH2LjD=Gd7imCPVL7<E<)Id$Z?Zy`t3
zi0w09Oh}u19gD6=txT$nFUYG9#7w~#`ZCa|PSw?T`fhMh>$n*hnR$@8#z#z`-lJ};
zYv;zOkB=T2edMgK<G^7{=0Fc~kns?QL;>FO5}ruaIulBrYkIb~0(pHDjssU$BWR&z
zhDNH=TapuxmXuk*w-BK{_IPK-belR-c*Edv26vtJbQ@F<?fuS2e(pG2KKKUxwuTXe
zALZC{6DPdL2kN>A=VI>$;$Jz#{FMz-{RD$fG@7vtM~a;U&FMR5-z3-0D0nsqkrcY`
zPgr`NY52=$igF_)S>u`UO;2Q{0_q08xqb$Os70??k>U3^(mIdGhR2gmFG=#LOEuIp
zsX$Qg1QBqu73^{xo0XkQ7RhPl$|(F=aZ+vJY(nL>$<=a`N{w<QSt=X#8Ci^;EtqDO
zd&xY`wxN~KlD><Tkh0{}97t1^D)6;igNeK}pCY>wZ7l+3yy5V8`<(aU5@l|Cbb=y!
zeslcbCGXH}nhHh_wSj@gF3MoNZ?op>lFck~e%f64J1MAyjV$J?;#$a`qFie=Pn9IM
z#{Ksxp+$<l>!Cb~?p3e^@TVh%P+`d9&;`I*96p^O%EN%95^p!BabSpXrevig43W0U
zg!9IY4>jdlHe+H@5bM-dB?6<$u|Hi9$j@Ef>?j0Ggd-}f6tTw<<Ihupv%ioL@r^}n
zKo7)ju|Ppixg^#EJKfOZ(s^a*R^y98fZJAY2=FYUd`<Qx+Pc&>>Laa_Xoq!DKnz?f
z$d_V{ugnS_8I2(lCu{>soAK0`Vs|{Iu+LbTp9&8^`KnaV%oJ1wzFMzoUCuz?e@XO|
zGjWbd+gDI-F=y#sQ%7}8-;TIkXSCoYQTZ8QuKwYAp4Q3}^AY)Nq7ikm#cbtE;PGsV
zIqDn}Q@?WCeZ(0g^*o&oGp#g;)cvpjF&;T$w%&fq)`LL&_A0lo7&oz4MN+>`mD%cu
zaOB$L(c)C3%Mx+&UbM{4O?WJwAGWx2VlsCQ^|c=Tg++aZiQ3xkjQ60|`3$o5YHivh
zZ>~g#w>0T*$|;BJqtM0F<hE#9s?Bd#%o`ZPqV6{&a7?U%ijgt>T}2|nC4rQt^U15f
z)(jYkK!2>V{CoNrCirQD_Of4r$Qq1)!a?8;KjuWM8Eo+70eZ`fK=bm945h|MqdpAp
z4V41f+o4lf$Xj;6%HTXvCZ;fa;bfPwlz&o*l;7#d2F=7Rhiw2hg7(N|<5_2Pwx(|m
zi$mOM>zN&|Oby{&3t^Uq5E(6nqh=Z$uf<M~n46w$QoNt3UbE>ui*i=T%;s8~x?m;h
z82y)~Go^2D<DnzyY6-2w>_Czt`om2A*>uDV<+M!%GWKe^yJr&>GkM*C;Mp`$_f92C
zmK3aB8XsC220!K%%}4D{k@Tf5uZ^dZ!QWG`XE@CzPK6^xUu~zM9$$x6hJ&Y#PtlZ-
z(*#hzN3dzh`x#dGyT9}H-!}v;&>M9+ri-1?GTHloji)1D)t;SmSC8#ii!CTA7S~SK
zWkV<q_~P01b4XM`gm+nsb*LyIfeV_MZf*%w2}W1K_X7vf?tmlMM=hp-2;#96?Z$5(
zdsq*oX*e`RBp;UWPy%J@U8)jk<LSHTR<b6$e3-a6JaPwrNf7Vg@KlpWxeqQ7o=-=z
zUc4j+o2K}<vg6?ZY*`F5Cto92?_}z<w?4||1gS-1ryH29LauO<!E*&Lx~<mevGrZ(
zu`_skc7&SPAF>OZ&z?zK%r@#oeSs-fHo_ae&FCq~K`dUOU@)?BiAkH>vhS)%n$?-B
zlVWD0dU@8JCqm%+6X)K6`Cwa#226+%8=(|eEt1@#aDOIpe!(>dzn$*15^6mrq(ci@
z#(D0*wo1b$USvY_PYFF3E8P_KS0^R)@o?A?dAvjjJ?JuLuK`UH&e-Zvs^LX~n1j_R
zf#o%H0Aw{GzeLYo2%Ly2f!gtMwC>@o2L}CGa{9Ha)2fwr^4ert1|Mq!t^^h|D17%=
zlrlHMZoKNl(o6R4&Gq$g_A*y?z@HcUT_QI&XK;wjL9qMx_%-_Dg!z8WMeNI(yl{Rq
zA}5FFg!D;o(48Zh*%c+2J=_5pp_Xe0B1P=sD(d_TzHUVyr3o@Ox+0R8NCSion+&&D
zN;RNgiV@`-lIC%2c<;~me-b<kmxRbVAOHYnKNC30zr0dgCuc)jXIfW7YZnuze@A1e
z|95iXekD-NgJ5C~h~TCM9uB!?BUvjVHSQB-eo50zXevu$suj%p4Yv}#B9a$$y)UH#
zVZg*e4^KBYUvj6NoOsY}+#RM)@R~Y9FK<UDj{m{i*9|!EE<db%RETihc7Q^oh{McM
zFyt;jHrF0a^DN)%muJt@D!3liiLd(s{a+=VHzHY7&xY8XoeTAC_F8CRowyC00hgFz
z^8kYh9(#rcE@)$il6Pt{ii}Z=QtX#WN3=4;X09FZI-fNQw<iMGz05E2^nou#XE?rv
z-2p-!dA=dvE+-W*%|cTHfzFqc$ddqO3FMdv*CE+ZIFS(=dlug%v}Z;UXfo9EJvJUU
zehr;Ws{r0cl}u8sS<Xm|UWNuC&>BVlZhu9N(7E=21{tSX3PGL>;Y}+qTsNl6ICAtN
zgtvpKo?88v%6L-ihydgzK5Pvb@3zl{ZT`juQ2A@YLI|7^cAym?Meck^KS*w+$$*ey
zP355`C2U%IGBN9%3W<9e_8M7R=n7ydvBM#`?z+h{mro-jn$JqEC6=9!vZ`FlKNso(
zajDoZRT!CJbNQr;;TdfAFqU!TjK0`2S~nez6R=X2bplhUy}LmK0BMoi_3S?vUri>9
zQZ;C2^0$tk%j2Cs5YBImG`<iH%@>3ytvH(Z-bM3Rky47`57JM1b}6Wnh}3lir%|(@
zEUnJBWjhlYQqHsr{&w~%vejn7O)ElFf|D73lLaqu1{X2Hyz9%ov9DNe+#CWE4I~#P
z7H`BKsYF!HAf?J@{FTtllc1RKej3);e)!#KUehLa$m+d3BkC9#|IkrGneJP%vq8lc
za2~@qb~Mwjl8Mv^yeIX4T6+tyI<}-;cw@nx;1b;3-JRfW!GpU54;tLv-5r9v6Wrb1
z-2#NWGc)JQIk_|Qe>3-Qo~HM+pI!AXskK&jSFN{{9|nJJd-cPd^ZCYn4d5A7*u$N#
z(4<Y2vF33YNna~M!-yKpV!)|A$lxd;#7YVZe=Ikz;6uzMHNYay+eCf+>J^sUJIIhm
zZAzZsXGXhf{827+*q?%yZqy_33RHA&ijmTZ-gHU%R;~L-9E91NH|y8k^^_Yb6_jhS
z3BvSM@(7m{zO``CduiniUG|3k`p<AFL!8mo4j-5Av=s-6bXq)vzvzFbOD;KiXevxk
z@)__EhHfxWb`kAZQ`s*H-VhvqKa~uvVA4)6g6twsV*{;?zG+-1<s&7hw&w<wwI{T6
zoGif1v#8x)j@NllGkU3E@%}Av;TPymnaAh8Kgr)hwlns%qKIQA{n1VzG-Xc=6F~p<
z{S-J(f!4z{B`?ozI_-@7GEc#9?dG9#&5Bs!o|~{n>leq3b!)Uj6ZPC3OK--kry4`g
zQ+AK!CmjtiZld&;y$GBGf}$TrXo0!M12~@|yi&~5=^Cy)t8Y3eI~=duG&*dbVjsLw
zUJ-?#!@+KQ?7V|tAoE{WmFsWc6w!UQLesP}Reh_okrphNVns1&F8Oqj9K3TK5a?pV
zElv=5>XHwsEL&wD`oZ{SFT+rV{yac(ew-%j2xrJkacYC$ud|U!r2Jbo;B3VDkJ-q`
z*cM3Cqwi>JL~Cj0;P@|Qqtn04MmWIPsJym3FhMycf%@;Wktzxn?1ZPf4-B*n{`v0a
z>Sgwfy8|2kcW>FT&8d#2z@gQ{+gT)<Wv5pT+~%`n?*w{W&QpX3Ur{DyeO$(~=6zz=
zvUtTI^7&QkhOxVe;J&F_o7H&DYvRO#YLTD3;NCAK_x<(y{>#u>L<{u^rnDP0nr`S~
zVjlx&D4e|epdgemJ8AsrX^aJVzNij7Zq%J~pN@g_BCkxmqM;t(3-4c`zTn|^jovUj
zE~jr34Pw6qgP-cJOl7z&)5oO@i#z=Yt;sO{F(dyXm8nrquiZc>=j!Yk_Q|g+U#PFz
zJ21Gj$;S~-3Zne7v%|ld-)B6jOQhF~f|6Cg&cA-znd{DxB}s;UfDevL4U(7rUeO?A
z0h^cloeL`(cH`;~Q<up1+W2CK@1oojl(EE{gp|=KgmeKJ(q>&!8#xu5n8m?+8cMWm
zV>{aZ!6jP9WqXRSc}cN|%y#V(rRxsY!S#;A%_Cdyp48Mlb=v1EKjV`!Jx~)Ik!uTt
z4#Ww5i^)~s)<@fDxXiibi(_jN6b#>`tnRvp+;G)XO18NBE}4`i!#M+&`V}8-`MG^b
zoxJ6p_kPdT7ws`MTC^NcA=rx4dsSLdg;pF${iWCNE5^}UG$|;dA(ON!g$|QTu}+y@
zt>Es%CQXf&67Gr9^LRv=m#%WeZP<$eR7`j;e!P{0Qqjm*#3TnY(znF2Vl?^Kaq#HX
zj{W|^S4U_<`g=9x{a1u#W!D96rJ}N<;<KtGg-~XVEVJON#WSqo26#nF2M*d}L}-c%
zLU(|b3lxIIgDur}Vk%i%btj((C_`9)DF)e(Sy7X7BkN}gFt%_}uy#yP*}UKBmPiJ2
z8CZFdAD52zQ240#UYI>Bc*DO^q6+V{I)ujU=}fadvVH6^NyG4}ym^Mcka7*+sXmlP
zYffY-FKx!L_6i}Iv1m_Dj$tQjmWk}FLw6J*zYX4QD~NP4oOnS|UasdX-is1stR|WI
zdiK6l7wQP5$)<t+k|AVWlsP$#=e`bu+27}*LU%akuIF0r{qABh@q*c+LhA%!$Ot0G
z_%_1zZeXV<vaVPTTG54LIXxI6)n0B}hQmzH^a+*eDTtR|5v_Jzy|T}zV^@;0#*=D?
z0c}ErXq9davFtLe>RVyih(N?>X^&znG;wuitBsMuxQjRo?1QWtSDEPj+*%V~%Nz;M
z<m|z9cCL%(A6c+nB?rotbBHCn`A=1bWi9zmm$HK3>Jbu!TI+`J=MfWf1MU3nu5gc>
zYZ_(Bt=2}j9)~T#ZMN4R9Nf?D$lG4??q6Bk<`E_l2QDD)2;z3`r`3qZ6Is?pQb}#d
zj3+tiun77k#ex$omc&2Ei8N|ce!8!Bc)slQAmtL+1t(6p$rnA}p?q_rnUQ+4(hH#K
za36srg8%Vb2$>Qn>To9v06;+k001M&0H(&4wzNhzhJT-dG+%*KVd$@(oj)LD!Ro=Q
z^7Cjz%EKLOW1UC8hWqvFR0H`#a%k&oilSq5);E9LyPrqLnQF;SuX;6tz}AZqJ>sv=
zkGtpD->vTM7<^wIb-1(tzQ@|)dVg{|3lSP9dG%vcG)7yN{<JsuVJGfAD}8ubK9y@U
z$#^9(`mU1>uVl=v8(t+rzZ8AU;W9~OVqb2a{I?*E(%OUPWt*{f9E8QM>gyK)dOd^@
z8&s+n_KYDSk{0$|%pG?a3NWJ<(bbEAo;%bT#c_D){rr981hR6nk;znxI1jI?$|qfh
z&fhPfpYJb_-5s7ncsV#dPuMg<Qkc=~DZFfU%+Yj;YS4{&)2ykGt7qE7b2L3FB+m+I
zMw{4j@Y_<`F@K2I&(_fOK0fS)w4sUiMUZVDO0y-eRjC>DSl4Mvg0V&K`lk1iUmjlE
zxp_D|*)tgn*n1?X+tbSoB^sa^XK7aPO7ZYKx;|_$TB#3Sp-$&uiWaP)b?*qxAeRan
zk(-&z^xD(zZH6R?nKdXlhW7N1<Y}rpNrdm!<svh4LEzt@c(Y7CY8ZToV!A{~F1EZD
zRoy>mu<6jhP&$TxYVhnO;QS~aAjK&r8>To=Gt#?1^n4(07T76f8dRiEj&r%qh!ehm
z^o%pHE!W4YP8CRDn((kO^Xw-ZoZ-CkYDln3AH_5p=|5Kv&Jaz)mIAsQSK>albM&04
z7o=r@Z>CNLpZON46)78M)|749+{!;<97Q{<Oy~{f1@UW-b>Vh{5}RvRK`f3l?~mKX
zhw@A(1$Z8HO<TiG*plWwYKHd6vY1K}?E!|hJv;{^=ygK2Oe1Nl+(UQV5HNfzo-U4)
zsu);%;vS>`+e5tma81$s-H?67RBSkVfzE=9E09qOvm@1@V`t(-vh)pe(i^Fe+X<Fo
z()m=(SWd3YMty1&B=s7c3@=a;7%@8AfsL1R=#Tde#b1%EBPn^#E^OvM=1dWZ;^LrZ
z1?M(eiX%=c_`<m=aD-5Mtn1=p9%9X7<WR`2!(5OS_<e|Hfq1cRhtgRe8N6=0yHlMq
zcnjqMpWNK@@b0jlD6f~_9?234+ET@UbsqNf;sIE|5iC3~E<AZ#cFN*bn3H*S+7lfz
z--roER8I#Rea{bm43W>QySzoEM{(2+c0a~WVZoFB#BscT?Bw3>{lcJ~TlfXP0qvYm
z#W<`_<T#t!;v`5{B=q#ovnf2A+VLdR8!e<|6MUt~AdvhLUmLwr(>D*#Lpeks*%V=o
z^j5`E$WeEncj?eid}R<3>R6T+9-hC~5MVu3ArB``)PLo$0zu6NuMsI<WPvQ|hp|7T
z8LfazJ%FI!?O<TNo_@(o*1Sr%G1XQHsQU^(JO)Z+6s)ojBh`{|t&H0cVZ_NUKZxEf
zusg4rBo&WUQU12nq05LiA#f;07gQdC8D5=iB7?bzveT#{1QbR}UiOZ8g%xAr!d8Qe
z+p$;xA5pR1o5veTfTFci9^xD99c!mFm!XD8+a5M}4Y4@_@mNH8_^0G*m|=E`5f0&*
z-T)+j0g)oB1<g6mktVz@>=fvXJ;qu((mhIgpFs-qnodAxQg+$k;8G3Ib_|lQ;J}wi
zFW4$eQRh|BW!~$${9dhnPKm9@sDY-pMPsg~0nn_mU-jwIC0!4}2H+5=o68H;CI`nC
zI)ehH6qCqhAwxy8ByeH^@rF`_7x2$j1(4@D_l;{;++NdQn3m?U=A^!WZPzG&h1a&M
z8MUVUo+Bz5mG{<pphkrCpo~Q?pW%~i7IaM(j%i{P#>9v@JR8b{lyCT;8zXTB+nX@k
zq2OVQAnUM@xEoPe93<q}w|<k>369+0$gHNTDu#$qH90a^H$PCgyYtn@{1Kq<@I=u8
zj}F;ga->&@xY48x*ZKbFIVKIGG^-A{ab$NTB3Am%p@nO2)rP;#q0d<HzoENB3pizI
zx*t<1cXt2UcuEEg>zdWFsQ$bSOBqu35qAU5ZGfzt@a^5l^&l=accT_9t+m9RXt1(-
zGQ9m$yMYDK0vGNDlpj{i=>mw{x<O<jJ8=xQlG|3w{z3j4vU)zZ03{vE>VzOvO+cdx
zXJ#;Vh#ZJSG+3q|4{bmxjg+uTZz24)3TfjV>Kj?AcRD3Zo5*iM&^8*YG||j`QmX@0
z-$QH~U_KxjXm?-6jvY1@*|SC=aNqY%;0-PeeOenefOX<XrPYpUE9Ns0d4gLTu1@Dg
z1i$-H($*R1y}q^U`v#|xt(=^RJid*+$uKzcFua-`2YJ$Mz#cU42Z;mWJs6w4l4oEx
z<u~fJ%B#6&0_C&_b1k<g6HuNln9Fw*h%Zi?>6fI06cz1<z6oHcQ!bETAF3b$`$4cA
zQ`uiuO(G}^)xkVmo4R1bme_G%n^5v&p<-66!x!mU##)kPXD&aJ+$wg<XtFF2CD#Mq
zxv1~meQmEf-D-@V1`S1b%9X|y6MRAAvoRCA^Z@~*_9y!h_t~&&(x#-ERuv|oZ-Ec!
z?!c@vZIBnVXxR>w{|Z7UU@>@uI;#dNhFpX_=_%wb?&0m&b<N3L6R?->k04+8xc8|v
zeRd|}Dx-ppWB=UtfJ+Pfq>3M}s>C!(=WM<{U2ES0X2#m*boZ{Mr-~WQt-rot`TIo0
z6x8_{z^?+z9qM>NY#SAvcqxU)Bk;3#g!mL@rQ!C_32|1ZhEPv}cLTu=I+(;wm=$G9
zY7bpptGG+99VOrA7Jlj|<TqN;NZHp!d$OtZa8_EZEFQQ5!*g_LQ*s6HdA&N-jnrL<
z4Qj^K)snlsPqPoRt8X?X4>}o-r7<KEX2eP87>%&MaD3_|qI78Y#eJ)n8eurn--S~i
zU@1V~6XmO@Yr+t=1eyfD;9Ic=JHc%MPS&Ws<r5x~c<jt6@7t%SHG$jH&mtmvfKh9;
z2(NVo5B0`hdLw{hbPry%^ahV=_lFwp=t{muB`>0G6@;Yv8{WA&!8*~`i!yYfkMbDJ
ziWhG`O3|tYw^_sbvv=!Ob~kOsc3K!CR*;tEae*2svKH)z&GhroOy_LWvnbZBDUrFi
zBxqCboiBbDVQ$il{l=NLF3IuTL*(A%vx=q6V)F&<3Cs~MehdwgkL80F>sRtdZ%Am5
z<sRwEp7Z8`V~MU;WqWx<)bDQlreomg0fds@vb#EEUW!qvchsP~U@2h8?fj21q|VuF
z`$uEKtNa^nNUeK8liCaynx;EVvh(W)V3sk!->$Ph*7(opE{RUn?Ly3S0j3QW$li&v
zZGnb;G$4gh(f=@k8MzZR$mo6^NmO5wa1=qsm&MU9W<Y3;GtP}7h-|?PeUdBlv8p2f
z7~npT5xtI12EGa@+CFeQVcG<~*V1vlG&Y+-;k_&B!0<z{!MQO<rM>WAzbbs&k*!vc
zE%8$zls2@3BJ+TQmaW=nnLg=CA9c_Sth%xH6-}2I$)DN~WV$SHZI~|`3+t_S%c#*$
z*%!yQDLng~0;ORU{Gb{?oZnjA>mM%~aizB|ws);|w5Jz0s}8SKYB?Wy|LELZcwSs@
zq*?CZcX)Y8K7PGsR*T~GZlc$bz3Vs_sOV{&eQF!_K0E4>Mofx#aU(=;ZIqvV180?x
zHNe?!+B9f!*K=PO>Fp)ujftv+DAp6$ble7~pDN)2ap`?2=#2`7_zLmYXYP38a!y|0
zJ#L310Du6z)itv=GX6xXZ}|^eTpi%MKMs^1?ZA883iJgo0aDh}oCPaG0u*vH`}bR|
zjkIS<g3@)P;WVz2Tow1WuP-JNQVCX^swe}pIFPh7(Nj@ru6qH(QcI7<9SSx-_MboF
zvdYN~J{GpcZgbgbufJXuoIO2_dMaJE+?%JeK!lU3@dTUgJVAa$uxpmOU4Q&x%W)HE
z(<<WlyqCYO(stm&FNHGHDjy(wx}WLnWv64`AGlxF6Lf3<tt(1|?NWjeddsRK)^oFj
zNMqtlg&s2(^ek#)ngpI#bNaH`_PzPV+&z?pku%^`txQh0gLK(ut*e8*BX+tpa_6@6
zw4pv4Unx$HT<7lo^SW}n8wxc#bpz)S^B3^FvLlMS_lI5`<bsJXL&~>G*Ap+o_tJK6
ztC#F>Yi#nS7Oe22#jevljEL>&VsPku2zkz;)YhnNmfN_Nc{{kwS%%IYFXtj`&fdGD
zOyiew5r$FEvpLUu-WEQ6FSn-Mx@1MBDdAEKCn9SJqx?c~P<d+dE?>CW_v^LVr)K2_
zRi}z7b<|j&4bS)v99J_bJR(s5%T4foqN6!?J7*X7i!ydO2`(*(ig5PJGpY|isn|}(
z9@6WlROK9!EGQgA_ftC~qg)-=u6$Tv01byqJZ2S!R-Ps)9Td9@|Bu^ZfUGOPM-UP5
zgyEbRdH*Hp=5-|d#fR?ADhw)-1wNI>`Ub^75(gH+m*;{zn~m=HP54BTotS!}&$N0D
zad6;f!A2Cx7tS87n3B8D?`BF537X8$blD`gqgZhEcP#I(*UpSJEiU0$B#;y+1;Hg>
z!`1-%O6q+#1)>3vyUG2??x}Kx)(P`GEz1IjYBX2&EKCf7oOQN6+?s*lm(c2zz)+PM
zpRv1P3kSlt3`Vk$kP1uujr;!6@lIPb7K2BFjoU-;sO)L*I-Cc$MVPKd{j%lyq3;tn
z-Z(6C!dG;?*_Aq4FgSaT9ho0v%LO;A4=2NwogA+~)c8;ZpiRQ*k~qP8(m34lY_dC7
zQ23}&=Q$+6gS{oX(?WC9l7*CThMcxX`Q1<ARb63+l;6~>3!{eHI7W}XNo-s|x)5r-
zjrBNd&VIGU`%pMhEc%c}LD{jhlj{SkG9pBl$e7{w>3s%iM<4B?H@~!@H9s_BDZ<2b
zpNtpl!E=iF`}WgI73;LRYUtt9RSKrlx%W<jJqee)VPq^ul<8TQl`$hzUFwKLfnVHn
zx2u>6x3!jvE}e~`PNV{7snASREn^xBbpjzxN(d&AS$6AyusF3vw1lA~)b2KEy)-Ts
zK3~(=-b||&bRrqu%U}=q)xH=^s~h2#JBZrIaf+b03cEa8j~AcnON#|PrZg*+V$7fT
zU7^q8a(wmMN)Z-tu^WXfyvuIfgNkcv+`}9Zv>Odp;-;+NbTTjOV})mk?qkJ}J<Vw>
zfF`SK+^bc3($>E2EA~t-V&s?*qHqLVolpKEyj&?d>sh{Q!6H5DY?Rr5sKPsE!D#nJ
z89A3z5K<D+cOq*Uh3ABUKfC0ZyyW~ttpYy==>rni34-$d^zP-_XK}&@^O>s;TA#L>
zW#1Dh*Tb<??_%2xQ7WyHkgPa^<uqlmTaWbg^O%mLnvZBHo-+-YY7SV(9RnmhQ?h0`
zQ78PBLX66U%jqyVXeB?NB4Tz4x3r^@5DvrZ4a`Gu0GOgMFN^7V^=O$ZFeu_1N4dd3
zE-`zf0LVdX#&l@RJ-6^x{S#%00Vba4DK5LR>)<3xlhTq22hlCPQxwC4X;tN_nqn)3
zuimh6T|I%DSVZ?Y@13t{{WJsGpkhECa5u#ySM2N#zSsE{jxRfFGqEC7vov#-cVpq{
zAf!i!^n>_;Rd9qq@Mkp(S2WwQ`ymP6X>=~91sp>3UL~(gn0878=qk0w-DEB6Auh4V
z2QO%rT|F7AczN@#QS9JV<P94_EHIJ3<yd@Y@i@q|q63%gR};mlj%5U=svaiHmtYUr
zgWAWzFIa4)CT(PU|M)$GGQE2;-nYqFz^(Ml^p&k6JAkp<NZ{$+4`(7b5;IgOuIIo$
zbTw@UYKYhw8Db_M?qVYCXu!_m6i1E~dU)2jAPdyjbhjMjX_{^|@DbD{gGmqVqa%2l
z;Vvd26DxVw%%Iz?8U+3i;A+K@#zG`H8BkrIBP<zJIGu;9Ir28XM}o+Lovwm*#+%{N
z_P6z!(%VaI`g-nLGgl<%hqvUCE3=#Q0T`l0sYXblkZn&FADx2&!gu3L?N02~*_=5&
zo)>nBaa=F_sO`lNmx&JFK0?yaA7Zjp5=_&}xO{I{oU0%dx0C{zV~!UU6V8-c=3@q@
zCgdnd@+IGH%k0L5aEyc}*m6u{30f|c<bt>kN|^Tb)G!2SHYB&r1|UFr=<VsS^k1!;
z!{e&-2Mo`q5e)3ED+S}*ymRP@d`mI44Y^&KMmWZiCFiR(&QFduNcYJ+wlBP;DYk_%
zRz;(T#JMK4#XSlD0^^+0!qNXC&({A^we_t1rMOv#20#%xp3#ZD{rw6Tad^K{$mEF(
z!bZeIHsforUJe*fe_Gs7()Jbu)lrmq^xCR~Yb&}S-T{w+De8upE~@dkre)$6r>nhj
z{<R!hr}y7j>z3Z+%t*d1as^qPZ0)AIjZNx1B9-(XZRqu*7-bj0>{%v}J=r}*Ym}ss
z8(b!dW#6JBv`&}8mv*Q1O_N^?uPC50MST)8=Rx4KE}U!8!JK>_VESc~Yb6I}8lF}K
z+f*$i`t1QlT@<*sP0_%DIqg&*ZZtCOUQkA@cBa-E$@~jBgg@y8%kCbY+HDzOf=)>4
zGzl!Y5_nLokH15FRD>s>Urfb9VWCxc^^@ZEJEh0Zqv3CDA_uF6{j5!_F1rQc?l`cs
z1H^(W#sTAHWuI}QbKX+ok0l<MK<~DjPw((L=c}*RaPoT2earm}jWkfj7yV3-G%sAL
zcN4=ArzMuZgw&y)`XyxAzd*HCnDjgeiLZEO<3gjE%tIBT@QtYKN3sEDWwrt5n?cU{
zCTeD#er_FOcG;9zQtPy5y9CvQ`qb`=1sOW5rbZHp&lmUsYxKR-b{af*m9TPd@4f^d
zC~Ql?qLUZUQR-$ayt6h7+Gezl$c+X`UZWI`4@7%ozM=C@%+PMFWhW~5u~f*C&n>TW
z7a1+Pg;9K*jgJAdlf0985og<{ls9Q82`=4E%>Q|6$mB+qo;H9j+(?WF1k_+~R|<l=
zI%sI$x^u6=vTe<B^Fx0Rp~W{*hs6=)<|c(h?qbJl5Gr0&@wB*bV%fQC4mlPZL=P74
z`=@>;nl7dh>(mc$1=BTpTsms<OSw5chTKDp<f)QlhJk5;1EJZ|6tL<2J((oBTM1P>
z=99RQjHxb=*lKs#t8Pn!M+BdBNuF0RiJsR4Hr-umt{~b2MGZhP$iN)Uy%hqaralU_
zP$PYRh^Lmi-R1sZ*mq1KNp66TP;;J&ng|M!hb12m<vm#0^co$`2W`FQD|_nKF53{N
zQ<%!4gpNBh*OHTEe2U(RM#Pl++y>~$5wsD2J;6c9*pnUEQa(sgMYiel9pmt#2dEoi
zNf4WWU*GTGQhf=Af<BvC>vl??B`Z87MrTIeUd5l3NR(JnR%V;>kR&@U1pVR$8leDZ
zdz?Nt{i?TkezHsEHg1UyzR{D=&$>Z{zsJnTT)~Xk>9^M^y7;xipLS;Sl1M{W9MO_n
zPEIuS(7d;fh%Tay?pwbu24Z9z{w1{EBT71)exjj6;xkubKnc5Zr|)LXqmox2k|?U3
zo#fFq21`Ofy0}M59d5=Rk3ln9ZnZ(!VRY1`d=TC+==CIx1z*asBw?{*qL1gMyj#2L
z_5^W$gyNe@zVfn|>!7Q~q4wfSB?XEr->Z+Q_Wg&=o~MRhA8V_ZrUIKZtL&K8;KKFW
z5pKi|L!9ct+?<x>$nH#wN$593g<ce#%~pw)WIVQql3jOgsdi<0;8(ZG&S2skrP$f2
zG;~R8U*hQn-wG2v-`-4<Gra<Owl-cJG|pdK;prPEa2|0^b8ZQ=Zbx(-s*yyUvzF8%
ztMkZru)O*+um!6!5<y17m*+{Yjp<f-*3$BNd$*sy3~LK#5m2&<PiJhoQt>dP!w8BW
z3g;b0lq+X3#TK2#Ez);xXL@&sq9CVyO+`l1Co!4`q`1J8>%!$p*~!dassv|Y*6&ZO
z0iI4)@R(QfPN!o4&(=lEizFN{me64<FI~bn7YiczJeSyDvjh}SY?!Bn6je1b^eb6C
zIl>>zV%s&Ns2EW(^b~&tT&D!=uCsTbcMZIIWQ$C4K~QF@-X0QLX$Zkdz60ogq%*v}
zjlT8v%-a}d+K#k7Wlb6FKinBGHtC?5mWq>d3;3|cq=NY4A%V2^<lF|UCRNVXim&Td
zgug3ZDf9e{TD$&y{qRfU9!>>OXtHNW>7ZT#dTk~QuK^zRZ0rxH#0+<a2<!}~m#__+
z4(pDW>$V@dh2jEfA{g6bG#;_R8Q#fS&d=><^51EtUW#Qoe$VE;1CjF10_fZvf&~D8
zu7$rpX#LHhkgsaxuq5_30<ABi)8Lrm^m^=ehI)Zpjm~~n{r%Hs9YzRd5azvjZQMR)
z+plZ9l9(Vdv1Y7ZO^K@?Gd=I}mSs<$of&?3-hj{z%nM`kKJ&C<e>QG8vl#%J=OxJe
zh(jJR?+ZJ$S0vwZ_5}yFEO{>UzM@65JZ-j`cxMK0y@{DOQf`Hz!4VWsz3sf?c*YXP
z+LqNo34EE2x*y4)zfcF()tp%v-O|!qFe1hbPOm1Ae=!E4`-|8xr&FsOZRIR@*Jg^>
zxgE%9!vvR?9RC2ht>-K9lJ2n;zEMPq&!*Y-2g$k<O|ULjd#lKK*t*Vf6CLU8T-oAG
zAAZA_Bo~5yj61V$(&AkGYgXPK&<)$j9=)t#dFo<RC_GzA7r5hQi}&m=lP|lcnBQ|t
zBT^ruYOjpzCbB4Xfjn2S<=Bo{;>?_)>E_cA!@k7oqC7~{<mi0UXnhKUdHmeNBe_V}
z5Q&;c*WX!B%1L=T8MZLhM@P=z%{T*toO9~(EV0W?%rL)TZf;vGRIO>f_XCEi4=36a
zeI*Ue-Pp8NU$9~;RYwcji|+A%BD4C`FKM*m?+pX6*GWtHA_GMu@B#e6)`b=6I$%S2
zW#-<};;9ZVrtt?HHbs8as3%V_S2V5=IyH^U2PSCPYznG?g`@2x2cx&b*rZB5;pQfa
z!z%_mO1xk=UY1@;9;k7B)#|Gx*U(Zhx@P)o;a64xgW~~oi|_&dfsDbX)7-h<>AWd*
z&W?^*33i0EwP_>NGxOm^MO|WFxJrc!Ei4bSCO%-#zgENoDFagr*Z5gpbC*`+--Qyi
zn_nK1hO+p8q!UYZTL>X)p1MF{rG9Kc(j@z&svkF-)4K&7MHMBvjkot*sV$8JFNX)U
zMOSJRFbDITvdf_|U>T{2KU|Ih%KZUWhEq+%lklL{Ab#I{pyW9Wqseknm7>ZMiwdTZ
z8Zb+C|8O3YFnAZEbU07$LSgH*^yJp>3$Yl#x==jx+QdI49vZMcAXAL?@|eH`Gc|^8
zGF-ZC!k*EDygJI;VTN*m9icLB?q0c;=2l4~aXwbzME7hYOK<_l&02r3#I7;<Udkur
zQG@%lVj0v$5@7u;;0xvvoVX_}62+klZM8^Kn5}W4#bN^<2Ykz%?_(zAuzuc+Xg?j|
zOr#;EajH2%q^uPcUWs|HaNP<7CgQuC4AH=mLNhP|&%85VSZiwHI7Hm|!xWj0>>8tt
z)asHEWu{E#rZxQ<+H>Yeo?LdUWF0EUa}$UH#pp&BbUWPSHS2WgPEj#p92+@dBwF_l
zMRCW>TghnOcZ!xMN(jogUnNLnWH=SL@a8d7!$JVH&h)#`FPQlS)3a=)p=+N^s;-#h
zwsJxWR!oWYeDxFyC39q83qK}h!a+q(h6W&L2avV8E}Er2n<?c#rmB!Jx)>LKFRneU
z4ai2IPK%O4hH%!yyc{Pp`hu+xtRH{YmI@Cu(QZb|O?Rv?7Rs|-?!gW5zC{)L8TPO5
ze&z;Qi#dTD$%epb2^Bac**F{9JDVB1(EegQE|1mu$$A`kPJYUd>%rJ1dXgs^B&b+S
zT}8x)T`o9X0pvYqc{2}PzdYp~d0LmV<jnX!7Nw7m&uiR)F9u&*MyxOL8Ku8(m39a5
zgLS3208xMYy?B@o8pdiDV>l`Wi<+4FBn2H-ODnm6xy3Sb|J*UF&b?Xge%V96c}vuQ
z3|qLM=3)pOpO*w;4%C@l`ZcEznrrAi=+G<=agncFc<a)mmuNtWR+(PC4|)5Ric+_}
zket~wb8sxNDcVYtO9<_a?7PFvrb2HxmuZ}XzM&zuK~P#qM6AtW#WE%)^EgrCT!U#M
zpPFUk-mOyjm3{d+ZJfGAVY|2KZ|JDYdb^AQ+(>QV8@kmw(%?cFWkPVRZNZwXRl6Iz
zp;*5p^|J&Q-1m5JWuP&PR7NV!nVkfoeb5u5N?gbH8;IB%S2!mTi5KGa6H7)mWJh@)
zZVIhF(AGyAPAG5Tv2vf)g`Hz;bTleB5~o?`{90dW_K{T2@sOoEkPnMVLZji5eX)YN
zwqWVOhE!Ev%34OuzvRN{WK5w&x?tBl>WUU6k?B)*F#cER#P3I3OcnbTjd{DfwW$Hr
z-Xd>=Dfx?&&Bn!7<KyfQk-?K;9|{}WW3?#=md0gm5*^nlTUeZ_6NSg0Xm-!}vM0`G
zjB9QEwC0#;OE_x+ms42ljmI0!?%hV}AH1Vel=99)W~dblCA<|*n4BqIp>A@93%Xy&
zMY%UUdFtafYfq)Q4>S{N*pgfvP`t<+KK;fy37=a&#RcS?<U;`f-u~Ir{z_E*;b#sm
zZ~BRITNR%<5UNSpkSr^jUn!E^VN8RoXD4!`rkum|*FD7*W8xS3Yw8iH<q3m_re8X?
zBlqh*q`|pOX7(s?L{`x0e{%3}odg>v---0YCnTQ?cE4mZt$!E8qEsv^D#l4z=!w``
zJogAGlrU^u#RKJ^7Ily!a~sw{stwiWD?+XdjM=<{UH`(Tg>dNabB+_T2`XDFc~Cua
zC4==|YVCtYKgleO&m|1sB*c3WxNy}AI@7iKlyY7qEbYznpxr8OsB%BV2Zsyv3NZrx
zjzun-u#uz!y|kOfeb;8Fwv0iR;W~nH`#r%E=j_5o467GD-%nEc23)PdW6v&g^y%hf
zTz(L-p>ed?j0a--3_*bx(dBv+eMBlru`H<q%%*Q>y=Tr5#P|K6ntMXq*zC6QnX%HV
zC!`tbQe3yI*FDb92{iq9M$ZJ9@ZF>;Ih2(8>madp=y<~8uk@%Eb<&Belr3m)!~!kj
zi`5I7Dx^~#xk@0V`ipw3edWF#*99+QN-Clo(ZtMllpG~B^LoE|Fm3YfSefEE#A9g;
zDn3l>{DhaM(cKPrhFz(&n~P0WohwAUe{zfOPxzp|p3>@SPsOMN;@st7f-ai$K?CjF
zwEV@Ufrf8l_|uY}qALCdtdKVQtbJ_oEte!l`Z@zLabkwDU<?)4-a_j_HZ@}+LxMqZ
z65LWR1CELlM8Rgym5;(qTZEqNn@K&Wm$UPM)#EFx$=M<>1KId)s-RXmjHKt9TBc@9
zC9HRCTrToK$loQ@R}16ojtde4(PkW#U;G{GswBwk!}K)KmW`<wF-t&KZ>Srk^QV%c
z@DRpa4+*|$7f7ke-cSqoF%~o8D=iwPHB?~rE7gmpUd-4z2ePz_Ulc32iPhJ4DBL!v
zNQq<*&&O1E>iN$H+aBhu?8vFpX;@|r?;m&&+9@iy3@tKmDviMg!`80%@fh>mUoxPz
z?l+d##&9+eh{7L{W=2}|HS9IX#2baCO!8$+h=;g@@P+le-Al&{ux5@HX>(=@Dsc)X
z-CA3fW=Ni(e5GC?FFpuWTU6f_Pc3nFgEvEQOR|?XIhtcVv~vA)L|4}IEVF`zDtgwE
z#@)hu?-sh511IMv$D(Z7%rY+k^>$CctS~Kk_wtCy?8Me%+(651Uflq`mkBOf-DgpF
z*QbpKRHQU*`fbWpf6(+j0v_!<riuk6W9I1Ulmqk$k1*)SE)!UMWhO+%t2*x*Ji-S3
zyr%vnM`E#3P+2g_Ahg%brB2xDuiNTx*_)E-OjF+W*ENAjMbrd{SNQQ_!UpRG=%Vfe
zz$?<oB+Ub}!5Y*!!%y+oF?0yrAc82XO4dJvU~XIJPOJk)QJx|0AWCD(vzZE-G+dU7
z*r=<Kv}UbotG~hGWtwo*Hf7LpN)&hclb)_0ayfgMAmP1)1(;cpe6nbrorb@Y{+{&Y
z-$W;fnh#ES64&!3A^*)c#z}27Nm;gMb%G`J5nF`tLc?S-R59>bB_c=Jvqh@P*%Y)#
zcPM(iIE1+=pJ)Vmu1_SVOUmRpYYPmeB3yw?B~+NLkR1*TnZ`6IcUFuLvP1L!VkIHS
z%lWscO5DB2jQgLEMEy#??0>pOiVT=DsCSyP19D)kP|kRq2M-j#aNa!Qy8T!emODjz
zv2~E!d_v^<e$roAJ}t-jY}qr4!f{=5koKP9JlG>3Sd}>}*N}}VU52&QZIR2v+vrsX
z1(1MBqv2!ppyJep@?3u;vP9B=pwem01;BU({B>DJD%D-Y0MasE18Et7^X;!?{ZEv=
zT0qKPG_P}+SHGjN2?nKMa4t(NTP{KYeOSqaq|+1B+yx?41sXNQm;&yn^?Ql-Ug&~+
z*tStNFjTEM&VB9%xtf|M(~f!QA4ddPxf?g&x8wJ+5!{1zyyvH?1J`$cFDG5ht&<`?
zB*6wL!Tz@6+y`8P!Cz%RxUE^T_0-bR><q$=wW>!xGDiaMi6b0$>hSp%Ja?Llq(6Ex
z<qSHF1|<h@NQ$)!qjHlMkWlTl7eL30Ohdu%AK)d&Nca~`_Ksini#p^sMTq#yZh8wS
z)is5uXwh%l9Ao{#*t;^AWbO+mk=UMDRebI!l4F*$s+XY%8L*gsZu(tNYlWL4ELd6j
zX}>G`X=Q6l#$oBmHV2K%03aQBi3?0OzX5gY%jYJ%Uqs&*M+pTlEoKU4vr)kPGwFP;
z?&qbK?OPrCX+=G$!KCl9;P|TYm>XyPur3bEOS?2pLNWI13T|V?A(XQSQ=fStajAB*
z)Tf4z;4H<<S=X_W^h;#|V)C1*ta4Jqxg>^=92an&WjV`r=vx?LbfbYBi+h<WvrLEX
z4}dOUKBMp4z<fr|!PwgVy=X{mMU2u!-?Lp7KXu2!niu(ZUwuuRAU__wkA^j?7)+Iu
zA`yWRW|ZmQBXYU6ZnASm7yB_pcTEq#>4&E>h6cy~q^qhGk3?!<hgWTO>=HEaE)+$H
z!XN~WGmdHISX+h!TZ&Ohc}r(ph7Cx^EA#l&2MO<cr}5bh=#aWqXn5JzeJcBuGS6`!
zkPQtW5zf<L3cy8!NQgR&l7QPb#>mkgA*Sv=3W=Z6P~c?~Zp_K0p~i%SRbs1I6e&>5
zHaGtgo;@{r+;~A6D<v#o4dB>>;EUqamr8usoS)sQh2Gg0_l+`_S?ztlA<_OqUH$aY
zZVwg-(qQj*l2%aNlCTB0l9kNTZ__XtyhPk_*Lzq2RS+?%PH}ofDN@+jbPk*w<JBjL
zxzwgooXdE0n>>jeZ1?Q%BPiu`OhY}+kXKX--B7JNu2__7`LLGq<^!9dqVlFgCh2aD
zLbh;36Wgi}bmJE%k*eVsrbHq>JEp^Gm3%=d5n0_i-rsF8pv5Y2+;7gnxg<h=L;zn#
zP;!b^IS`%XRCx;3uqL7l59T?t8e?urKd}qn<N;~Om1l^v;9`{aiIiFc`+&&7n&^JL
zU1SG#;UsN&Qp4zX5So16qc>zU{H<C?fI(j6+Yqh{r|`y6X&5#wj$*}ul`(4cM2IQ8
zVFgMz)$~l1AZ4vg6y)lQn_C&NL~Wcx@+n&isRcHlPX=XTq%a}!4$5vXz%?wD&4N-A
zCY!}w6(&83FaTvx^xM}Ug<F*8H(k3mp#eq&`m5y6nyvu`aH)k1_)_TMMdU#dyxB_U
zA!F0ur1o~9sB|Vk6<U${#L)aGbdgynJwlE&kL&B#hvh|X5RhyOHl1<fZK6ij!mIKI
z*U3sgyrj>TW9Qj0hkD6wXe<ZF1d^Q>TvsgyZ9$}(ENhywL!@egPFDqoohlr?m=Js-
zF?Q}{uF<u5hzP`L>d;&ri<3^cg%osRw3X0}iRyk!1tPGoCOy)5BIJ^U@7FhsJ!ny^
zjcdW%Y=zLyaaxsYF6Zds<*YqnJxg!9n~=bNYHF6ZWoi8Qve$n09usozfsAgyzP(|;
z%IZh+nXk{&4WnT!y$kDpHUAjb#jPrn=RC{41mB_8tmb<p7<}z!t*TW)CM>lf>&GA7
z15Wqb(a>9JHv>hLpKAMW$GVmz&a>X&6fW|~W<Oo#5%*ujSgx_3AB_tEQ_?deWtuo7
zJybFzU%XLf>RudZ=`sS<<)lu51G4$nQen6I(>s*Z0e93p?zc^u=<kc?kAqPLoIpX_
zH0-TD`^y4(K4jYC6fKZf5<VW^=ftx|^!beF(nGlw4%6e!uX6+nSuj@c#t-4IKI)OF
zIjnzVPG0&jz}yk>(Q9KnSqk>Wk(`C|F7qa8&*Z9vw~#Wz>`0<kZ?sN=tB|-G7~GFD
zM&L(4>p;9nF=u*e=kU}Q@e&TXER4-v7L^C{EkX<vw~DAm*Bs<+hvq`2%f{A+zb+%h
zVAxpfz~w^&c)|hCKT_iS48@lo8=oB>k{gqt`X(bOH#;mxGc++wPdPCxTTVmqjeeMB
zY-D_RM0$T$icB_JS6{*2ONxpf<F|F{5j29>3<L-O1^_?<0UQkN&1@a%%pKyD-dp$y
zAhkhW5fljFh*p_JG8Rn8n`VzvHuUzW4m6*dsIAPtBYkaaF-I{xn8!6rNWNbi!I6Q%
zr=;Q-RJOEIF+PBU%<KU<2omXf3(jzt>Oy2+B^}cPsVcx}DW6Z2fKc~BCc}xL6&@n0
zY#Bv;4nGSf9J{6_S6$u};SD|kZrNh2d8i4c2Drtw&CZt_d~a$mR}zwqp_I(1XjVKq
z$Zr#Z8Er4fR)lln_I5r%y3uK4Y-Zp0(1}bSsbm_V=PZdR_5sq9j^pg3>7*z+YJl_=
z6^@#didvwbk<F)$O}(eCy_hP{@JT85^d=hM##sUnwk(zR$QAwi^H<pE$ZIGwBDz8j
z#e0;-cIO<UXo3^?`7RM}R&G-cZl!85m^0V(?`rUOajyq<hik<g$$|UD`FqcojtENT
z;sjC*QOe3)6j88tS(IYGvsbOmxns}_e9&T+{#dA#GIf(OQg&_Ua+}}rr~arm<B}Y4
zV?F%_d^Ksx^7l{>2S-;+V+T`XV@Ene2ZvRhWosPvyVcLHKBm<dY*9u!G#~ouQ=LxW
z(XBOE7Tam=d{VMWDn15w!;ub9UY$$Zf9eR!W1&R<IyuKfG9JF)-*fm#eIeKA2Qefl
z{Xq(RiB$-#m5ZO3)7#1IY8rvHiUuTgUA3rSHD?-?&)e;aUE4}RxT~J>)om^-!7>&1
z>%O$&^j)jKYe35>h0Ss;f%W4N1f_1LO(FT`7aF}Eb>@Thbb*|dlChp0X#5SUb^fD!
zwa1Gx-5hh9D5{MfLt|?UI~~?t?&=L6!7iG+s&GFy6s-`3IB)=HQ!(p{x}@D*Liw{T
z?W-RteBN5BHjedMK0Mxln~+vyz5$qUuNZ{D^wEeC999W%n!W4G8#7lVPMi##PgI*%
z3NU$}G{=!aI<4u>k<hmVBb(g~>JZ{`0PFhT0#AKI@O4qGP-F7ajRP5{uV8W|f9%b(
zgn2hYk-@7OJA-)fwBErSDr9O>dc^GsOIo`2@uG&&onoc~<W54WK8$qQuntDF4s*Bz
zescQJ;_%>!$f&h6tJaok4E|Ii{5O~tsUuFx34r|fS;s*i9CfrtU3khxqxN*zjjwN*
z48?m`yGvO|$#P+poh;v?*^ad{s)Zp1z@l55f|-J}LnxTc^PtBGJ8zV78P+{Dnl+?e
z2z>Rtlz$Kl5D1|(#GQj^Bu-5Xq^^PuwZgy<cMZ<EqhuUJ_pcyzExxKYiF4nmAsJu9
z#(*f{4k2!Qr}Z7`cow}P%s>j%j7*}r+tyK!>yl=TNebbarPs-akEs&-OCV#bLU)8z
zoiAzP`{?*#sk*#H(+V2nIz7c2_2n0}H*%a&$jXtcdSre>eh*Ej;k+pkAtm-Z{&Nz~
zxQy3Q<f)erSBgpzr0?=ox9P?kvyRJ9buAv6xQ8JqVGSwHHxMfQkv?A^CG~e>iVe>8
zrIyaKt2LP6QC5h}7lA&%1KewMeyOnQq9twEudH*qhDh_8Vp);lFnH6I_kfq?9QX~s
zzd=bnJ@)c}zM(#Ip@6n2Q*&#vg8T3~3&^lBl?0WaSCd!k(JAz}AJv4~v`XhDS1Vu|
zXsxISu1z4<)XB|`t9dZ331-OfQDHRC4w=Zb2c;{9MWue#Qa-i^y*Q1#Wb-U~cNs*_
z+a>RD0zLzs)c8j4+aZHnw1WduZ5mddQ;USuH~X@8=+^^Lb=qnJhP-D&Rq)lmb<QxT
z1GG_V=3s3^k3mW8A0Pt7@os6qiO-dB(c%gu;@zz4JAC<Oe+7GFm;B{8^>_#;am<mg
zr7@|o9^w<pUSTEf7W8tolW-CO=e+G?jJ@<%=cLL|OuEPn^0iI)r$c(|Pj`>WiLe&n
zumwcAxirw(gTq3rEYl@vGVxUXg8g2!iIRyRRK`J5TUO%p!DY@9Q&((7{woDUsT%rf
zE!j<nHA#~>Z9L9a45H6P)WDZ%>3bO0kF!>tc?khc>yYl5+S{QtUoAsC%PSd^Mo8Nw
z1Qg5>*<>M5^{lH6Oyd@ClQ09-;K&(7>bg$-O2aR=Fu_B|b3qk?h7-PwiAr9PBYRBw
zp=kNt_5pAsw~+%sA;>7gPBD}lm3e`T*w})!)A#qmV?Q}_?+IeSRe~M28EiB)m3#UO
z*1j^UqOLr$1~It|_q$EVfU$H76eiRjBq?=cI2-EosWKB6y+rkNom@E<nk3V@oD$*0
zBvx6y&T=uV_3E=X$`yUm16kI1f0WRj@&jg=*8En6DTNZtzf=wpP6}kH$5*q4=qgHV
z8N0UgO{42bS<!|*G_gF<h5yrC0CLNB7R84`=%nKYS3mZxIi<K0p>;g@suEZvbI~o^
zmPex}QLxoxHKft<7}?p2`{#Q-!jLv0G<ScB9LhXHdS~E1JfB1SpjA+0O6sBBAolP6
zk?LGuZEhwjx=eHE-$7Wjk2EoBUneMNzJ96Qv=B{0<48fo@)Rkm@q>powV2wFOKY~;
zG!q0bzdR88%7*zyyE2)ErhUf?E2^Dr!Tl}@zKu2{ClcA!?K*2T!8a7gh$a@UyA@ZA
z+p0nGa$AGMcSVw^ZBtxoN#(U(M)&?I>4bx$fFyW_Kl-JSc=^=#-Egk&>s5tttAx7l
z^*TMBfSW&uB9Vrz?tL9!+FTOaZ1s|Gqg)~uaw-0R%o1dv>gB9!ttX*%HlAdkG>OAE
ztV1%{`4(J&3r$T9;#E$*?Y7+t|B2A6pTIVn{_|90&%xtMy#dY#^|KQBuL9v%*X%IN
zOZ9UC@ml2|Z%wDOa21s$lD1e5uq0`VJ#y1_e*DmNmuL`LyZxSkso%z$c^?Wzgy4y@
z3T;mT;{)*X(fT$eA2?__s(EZNo&xigV&9j}M@=t8SM0u7|2B>0-fH5F;I}ZvAG6by
z5;ICV$W|Iot&jWW%!8bS3)DQyCakM>tOceNFlk|Cg|9&}(^PJXs`NBG46InZ?6u5J
z9wwsS(clAEUQ0&fQ3OT@NDoYuh>F^HnTkj~g-nUeC>=8yNCOWA#df2nDFtuN@Fj0j
z_!QvM>u3r%Q&9TLf~0fzl(v#yc(0N~JwZ<o`|chQY#K-d;$j&edzH0Wny4w`)8t@#
zF%FasM150u*ctA^QcHXaLA3W0ZG}wYsd+aOPK6aviu4ZeAMaU$j5R>ZI7+1ErPIBq
z$Qh1KR7f1}D*2UpWnrD~XyY8>$PO~aAjcfGFb=ckEj&{nX=fyesK0FVKk0R$yiv1#
z>l#@DsMc~v3Tu?Pcfz!UUqKLrIT9nNWrN}|p$g-)AL}U7LK#eaeR*johU4ckc<qeX
zr`9hZY}qKikbVWoBHH7NM>Kj)PSh3IsLZfaV1FgWW+y)KqQz9+l?6+`M<^)p>8uQ}
z5G#Hz-uvJm%uit3L;tw?d0i;|7}HPORf`$fRA2rrTM3a56=4C|$McWMUXE45G8ZY?
zQzs*Dd5FsMqm!~Wk3;Xzro7?87$@cTU$xD2Lq20LE~I`mu(7Id4%hayiNEWj+;m@O
z6Q*u>K>SGi{wdJ<+@Wk_5v6b*PazFE6PD<U^jN9`Wj~wqjlnVr>wGaQUm+`Fdg++R
zO#A8dgc=V{P6Za5OyUun{8||eACCvjo`JGFVj(EEdVo%o1nFQOr4POo^euhxk6i3f
zn=WIHX0paSQMCY<%mb!<>B!z#zd_;i2H3|c&jDtU?^bsiF9+PnG=~|xV{c0c$07AP
zycu{KTh1;APrDZ@W#-stbY0GC)r+UXgm%i{b&1j<F=1ldbvP>xU)>4X%PUJPrj)Cc
zO&<#Z2Ert6r>?-e_>)ZdPJSeP&~A{2Gq4JI*tP7B7qG>8FRK8kK|oRD6NKn+T)E9?
zw}BdsbAqsUb!OHB<5dHV1m&wGC~YFeJwl!PpqG)!Q$(ZMg^FJ{K2}or?Y_xY%e}(9
zw31en4UKK^Vd%2a^3!Vip)uEz8bq?EVDuZ7SW&1XF2tCUZ_QgBKD2z@5LA$>7Kb&(
zd{wrk0y@fGkfoTt=Dw_r0_W@$1H%|!ql{<CofAKWDuAVWSasp37Yq6w)EBozf3li!
z)YP{6#M!I}Xf`=pIzl#_GLeqNQgYu4MM-Nq#w&in*s$a;VY3+gs{7n(tv9@lXM(>(
zqhZx~Ddy4pgCEh7fYCeHT`Nr6-mX&&am({LfDf0)^WKvZ#f8`^<`w9g00Bh<`{{!R
z0BV5uy?^`gkAFX(L;ijs0ZxDB4F$XxRTiX`log}@B?blfdAm%VNOfle{6PTl{K=j0
z$C2kl4*d8(V($fICB;OQfH`}`erW*wO~W4&Kd(R++&_+=z=OcghBj7z!u-D_fSaWM
zBysc)2}>J8Qv-W5qmRb_R`^$ef5Kq^pTd5^{YltH-_i8nY5*pv{1d$7ztCXgX!~!q
zQ2e0;@UtA=|3-_2v8%1UjkB49nT@rX^~Zm!mFX{9`~Cy1hL-vc4z$3GH2+pV{a^II
z{pmveC$0Ch?!TAX&fd_*=-(^n{EKpf|6KV$s{_>EEd6%9^S}tGa1Z!)_@^80k0Z~g
z3HU8A=>Kn`#twgS0ROVtzpGFYL9b8&{@5C*0^<*P;5E-j9_ZiulL~8_UtZ+jl_WN!
zHef&k0BdA_PtN;?o;;r=;J5$Vw)|C3Ic0f4Cr48iMajPf)cg(?Fb}fa4pi*L002n*
zf%W$?0|(Ln3!IRXnWd4j{Xa!LPs)HA1h!HgF#y2(7gR@J!~IvN(#Ed;6bgS>b|V#7
z!30VGK=dzAiTM8yP{3wYcD4O``s3f*6mHWP77J)YNPz&r&$mQ>9C<$Rz)t<&*6#nK
z<D&X4mfe7jMH&xu9shv<yyp3U@%%R+|E|00k&3d;fr|n!u&<c^g0-mhA7TBgPFirD
z|Edh!X@dh)$Nd)otPlS&z`yGn==;xnI=~@14IGeMe*x;Z{NDrp@w)F{kK(~;(FP}=
zf%D)1&%fZf1J}j>tqJ^r^XEu_-;GU5f;apLSeq%JN9))0_|p!god0vA|8ax;4ilYl
ze=`ZJkSieo!10#~rFs14Fn^>q`yB<olvLUeI9O$=003ae|Id-<)8qHQNBPG>@@o$K
z3lp-ay}gaSu#G*CKE)BZUdk9d8~=Sn*YAa)oWn<702amwxTHz_Pf>ohY)|O_UxoQe
z%ltd;@9Ek9fCi52xc?aU4-@*=ruutY?O$-s3I8?Rzq8oildS#%#7qCL0sp1p{+@{M
z7uv_%{~GOI+3)Z9m41P}6#vIy|DDzTP8$BJ2&E1GZ$<cLw)#6s+AlQ9fuCsqH)Y!I
z*8V%O(Ju`R!@#lkPiT&Q*YG<d$uA886Tk73{4V<Y4$ohr)XTr`_xxS<_n_rpvT+B0
z4q^UX?)S*TUvlK9e+o$W*8}$VfU#c+qR;=N;NK0w-@_n&srYg8Cl&v4Q2p-z`Xw*=
z^jB}#@3sHkvGq%`04VuCZmvIz{WJf|FEO?kpx9r$G4j$7z=a9`pa%Z+0{89GKmi|e
G0RIPS37B{Q

literal 0
HcmV?d00001

diff --git a/oxAuth/Server/integrations/otp/repository/com/lochbridge/oath/oath-otp-keyprovisioning/0.0.1-SNAPSHOT/oath-otp-keyprovisioning-0.0.1-SNAPSHOT-sources.jar b/oxAuth/Server/integrations/otp/repository/com/lochbridge/oath/oath-otp-keyprovisioning/0.0.1-SNAPSHOT/oath-otp-keyprovisioning-0.0.1-SNAPSHOT-sources.jar
new file mode 100644
index 0000000000000000000000000000000000000000..3447afb492c073b9ad1862a341d9ca1eda684a17
GIT binary patch
literal 12997
zcmbW71#lc&lCE1UOR|`mnHepxB#W7unVFfHnOPPyvt%(dGg-_mJ$vrV-n+9q6K^&v
zx~n=W^Upk8eIibt{$#{KK%oG?t;Up7^luk`fBW?7EGeYGPa`TNOegcp4H*FW>!|)G
zH{`#%N%BjH3Jb|A&`Jv5NREw4h||zce-@{qoEV#|lcS$w+S<3H7MmEN7N-$_gxD)k
zN<gLRCU$Ab5M#0zbI7EuKqeFqXQV>$xEYOOLcIBPBU}ziTu#1QE($Dk7^4)bGt{uu
z73zoE54R-vNQzc1ie>yZ>RXtd&!1sjTU=TIGU5=BBGj;pj=zcu|MmJ^_8+5jYvTBC
zqXYeQSKr$5Zv*?^J>dTCVPUOrqGxAnU~KqroPU1{zvceoY_02H@^2#0|3!qggUw%}
zT8#etLm~e+QRarOHg?udruL@RR;E_Q|3-!GKTxr?)3-MGW9WbU0RFiow*Np(T0w^2
z(ZNJfPL$S6*GcybYt?R*^`1xD*KSqC&X96-%t39{Zl_u5=eoqtmFx3HI@}OH;yL78
z#2mx<e6N=*f9Owg$TS>MMR1O!ghIfFULZEi`O}|qm=Hrv(Zfv`MV@TN1o-EPk<Cyy
zst2f1nl$WUFAY2{PcgD51iuei-zEj6?$|zR2{IcEV1crr>S5QxTNM+2f>5Zv<Ti{I
z3DN)}cCGfJk4MO?xm3`e3G)3Uzs(^|lvFYfu3cDzqw=E*XmeZo?Z&$fOzSxugK>3z
z-BZ|U*jC`tA&r7Fgg=BKF|NQOiSd&{54Qjku>Fv25$WE~orwApVm^Q@lCaG?0ZDv9
zq+5?*Y3kaA6A^;}?%BHPqQ`PR0N7VpA+(<BkgXjWS+nr9LZny$?AygHdn6@Zv2E0?
zPaiFh*@bxq-zEZmC_K<^2XIu<`b!F|O1lS%Y69bY8{6W(J!dA44Fyxu{rUJjH`X<S
za;>v<<$)@3t>8AFyM7jMmj;ac!$B+eDWR972x_|dSoFCz(V^gMt@JZKZUUCq8T=35
z!URwxd`|ps#hgo8?$h3WC_rDJZ_b4%>2eG?|0DbWqgu>Uz&9iTBFTaU!6X<}Ogb6e
z9G6}aAfd1jc`*4yAD+1p&advG$orv!1DuebGJ#{kDW!yRFKR%CF%V1T0ILLgK|#{H
zF8n@k2wncp{$PF#0u3N6xZfzezFpUo00$1W8XVI^qo>XUM2!Q!V^cIB)`T$=+8V6S
zu<Hv(d_T>f+7BoaX~_x(E(J5U)Xmnw?9EOxG3E<0%i>$gsc|<ewVuZME-MLy1i+bw
zl<36yNx_unr)G1RG01@M3DV0)!E}*Xk9F-ODfpSmNJ%`gLFa42jy!y&9uwgc9^Yqa
z83XtogViPMM;wg0fI@{}zb`{dUd*<NqZgcbX~(0ggea1Pq_Ry;j9UXa0Hqet6AAui
zirJ)0(PHWpPy~N~Boae{l=D~k_Cmsg;Yf%h$shVtXEOoquzJE)%Q%njV`1d}Yztq?
zIqpO*&u<s;HauN!vYoryPd{E~ySysB;9%QL7r1m*Y(cNTAW-yMhIJ}n8fkPK26;>R
zz3rk)p4&m4n+Kup#Z&Loy98$2B!p22&MWmE^as2q<+gpbID(UnJaZ~RXuLJ%VpdT<
zn1PiPvG81loff9;5mcko?%sTHV&@aAXe=sTB{}442d+S!M!#DXQtEm>2plZm2G26}
z(unaAiSxSD3Oo+JvVIeJyB5k3Y6F~P1rf?`!yHG%qYlw10LMikxR+V74}W!gSf<7T
z6tbeYA$EBSZ%KOts@1D`jU9+!b*GOJg0!@8yLfn>t{!);pAXAs!?i2vUeJv3He$1~
zPT&1HE}tg>$Q2)a3Cf?`q}`yEu=oM~Dgf8c1nbd(-cGNi83UM!YeJZ=3wX>RZ$3fX
zxLx{JMR%ykLkEJ;0-_@Aq0pfn0?_~g??filD+Gv$m@JhxiA^-^^ZJ#xOb|(;sbDX>
zA&Y7@1BUF896^${@EwZ~;H4+G;;&9w7bXr|9hpul;B6nA#+(r1!A0f34B$+l>cFt=
ze&gi3<6Zs~)M1ZAR8wtLejqadP3cY4XSYIiMR@JW#o}bL!NX#-MLe(8FW%mcpS;30
zRFt&LJ2D;c;riopb(L(f3Vu{ERN>6E(*$M)0j=DeYzzW#tOzPT;9`fO7prrv3VkML
zYQU|Y>+jOE%Ohf2Kqp7C^5^;SES8HA2M6qv#tltTG!<H7u48RBLRhUYQjBepPDE}4
z6>Q--cc`*If`NREeWC^Ph8YA)g=5*uIoQn>A57_!G;!_}+Sa*%{PVgj!<J8Zw3=~5
z*cDr)GRs1j-k^2lctWpa{vNqa-V%NR-h8L%T2QjuqfT+%3_*pUw*WhFF||P@JMXc4
z%TXw1rIG%7H-m7=Ajz_WPab+p@Isn{qn`N2h=p;!+k3tk0d#d)RiI@()W>N;M~(b-
zht%*aXO_0(h}K+V3&e*^Uvr~>PTY(4J2xGR$Km8=D^#ET>uV;Gch%|RlRMSC*6`I$
zQwzC!*5U5ze%OaLePUs#g<Y(MbSdsC{hY`KsRh*?gS^V^BV(P7ohysH;$d{O4G)By
zA&wL4_4HN&(85^etEgU58@gMOLh^jrMs<LWsd4f;czvdhlD-v1K|@&$OhDS6{<Ry<
z*K|)4m|m&D9JA2}sVE=-Z3G+;%IQPIkCr5d7Avclq1Mv&it<Qe<vvl@d847JdRjr@
z1LWOMd_A8HD2(2o2j%>x7=S~_4<2AdU8Bp>UA&w(d8X?zh59qYcvVj|O=p`Z&0b<v
zY&u)X1js?>OoY`(fCc-r^4XH}xuGmkIm2Oi6WQMW!=|Ttl3p%2KHkQu2wAv@1Obg1
zRf$Y?dgf#RZFPBGrkxD2aOh)%yf#;h8s_>N64E;LQy5T%JmC0_8R~jO<K8jWk~BLp
zNj_aLGkWP*70)!y$sKoX!d7R0@H{HzQO4ISUkdaQzn;Bw`<Uh&PmnO`ZlW-t$!wx~
zKG=iVk3}r5FELI0!WC#mhV(Or{FkhwfvA0-<cH6E=qSV0HrSZ5Alh7k9?J>W=x9jr
zB!-^Y28k&VJqr+(`Q--ak%@_Hp&S8*nm_}Uw+^io4)poWM1IEr{BIT|qicvJCCO*B
z`6L8D0|_>}7U=Ye)SZT4>I;HCh?4v``pLjWs}%?>*>F=>Z1<f@dQehlxKIONA14fA
zpV|EUNvs(BzKa;@<c!)XqGX{8$quJeP|>d|WXrcT)r&2+G(>nOu@Nazj6zs_RR=S|
zF)Y{ztG`#{+`P0kyaDaRT!8Sv4t2Aw9GhWwDQyo5_OQe8v*b8>2EV%6=a(Jk_H?||
zvi4#@gOF~1+Q_h>W+)5&Q8t%NKaJISouDeV4SNZmx)yqAis+hH5-E49)`ODz*wHlF
zB74_$Cd^|agS<#iy9PBWe{BICaFWl`X(uOZVYQnkd=W$BgSQP-U<|WwPrDsU%kYH0
z!!b0$pJfgb3|cxvJrX`IQedR6Z_-3)d2cm0?L@suAzY=zPeTSSkSQ!SI%0%kQJZ9K
zV1fl8`C<bGYw@b%)Meg$soXU#!F_E}h|HvXW`^ZH0@Bq`=9RB$sUxk`z20ArOXf>@
z^Rulk1an;B0Vgf5kSk7%snNksut*7nO%3)r-#NjY?1W~;kYJ)A?=fLWOb!zgfl0HI
zD24?KpCAl@uW2P$YhpBs3#C`|tT<Wg!(Pmq%fP%~(L3VyxnahhYnRnl_lV(LF@tyC
zr2#K3!*LkdE#NkkzVGavB^JcJM8<8+4DH3v4ql*IXSjMFXB?~nWF(?z9U_F&rnujo
z!T9)7V!5H3L2ucp6HgRN&PlW1U9IT-i}{QL54f}5(vbhg(+#-Kz>*OAQ*Zf#XQ~oC
zchh0Sm!Qa{8uSHgfD0hmv7M*MIOVQAHJM5SgU)(qkfpBNcqpo*a8l=(H)H^}rSe;x
zwf>^6E!ZkxY#e9UO6@9-ce{79jF^D3d#1ag{HQr5B=1p>Ztj~Tbkoofm6T~Xhkdod
z1FTqEMGUB}Y>I4^M4~|y6}`2hW?jj2sUlJep7Xe`1h<HCfuR=ud^NQ=LAlK^iaA@+
z0+~^J?t;<|HpVds-bSjcrfU=C3cZQ7g1z+*sZQcq=*7w*HcoC!m$Hb&!2G@pI(&15
zeOAA-pT%A%s&w&&CR~jP8-@=RCH0^m?Mex|l@{{3A^fK<Gx)OXA}b>OH7O@*+IW1(
zSUld5PF&&=Z<Vw9E9Xi+9<2*p{y%T(H<xYhYSt~NW?WlY+fk;ZH^Q3ywr87mRcowg
z;+h23jm<~RNoyy#+9f*%i}Pso*(ltyu%%#>JTg)vCH3U%k`$s?;ey9MS)OnoIPY?6
zB&3{MR}_>=wHS<9t9HgQ5d7dML;m5WOJgM^fGt=~%<s(IQ%O0Srm*NQ5XC<lDsmr1
zCp|IIUP)TlazciSA<sb}46j*tasw%DyZ+<Do8kEAp%rBfszzQE%@kGt+oT05-2yJ`
z(U)=;*4$5f1IRBYVX);s-~a}cWfuWIUO(7RQ5_In;AzPK^=BCF*HLY6JfHKTxqH_g
zTPc-+^m*0=Fao`mzGz+$qN=TDU7a6SdU@$v&AzuQam^o>x9#2&Qg6Ul-l2G$ciZEz
zUiFvxk$7#7S1eu*mmoopc2h3ySX%=~#L{m-uOMAO?!kJ4%w7CxFF(`K3R6wA+}2N_
zrP#KT4t=5ZO|p7_LdGH9JEtNwmc6fbTzJ^s=pi2)AtU0#HbHzAy&46HUyDgkb_bjO
zVeaA5qx|tgVgo?{wARK1&4T9MI&%~QlSE(&TDAn6TFnL3fRa746dad7j@1btP$Xd-
zR84{D*M<!nRjq3IQO(6(OXEu-?|;iO#`nrW@`V6?&3h8vi5o4jSKZ={{H+%FXXTRz
zu3eFEuE^lJ1M;@_nmXKkCREg#6xX|$-iJ*L>c(I+Fidn3q=Js$=Ny@xff((rwzE%x
zYqdcF^0gd3DP9iWvP@0J(9juSVB3TahU$bGmdkJL5noiCua^1d>aUkcTNey{Tcb1&
z&iEeRRK48D-|opGNU2+aBE5%pu9y9iMbo13uc>F|#5BNaqS(WyUmRsp3a>a6<HcFC
z+<1yDUseko`?+Zgmv_$M59?bE_BpmUTg<>z?A7mP3o2SI=53jA%Y)ZyJ$F*>uC;9Q
zcewQN&q$q=UYc{WYE-n}GGRZYg1xUCj#zw>uXEks1wYkbr#Fp;IKj2e^|b3sQL}W;
zlMXz?w$RM(d_`6(m*kzW!KhjJ-sExb{kz-8;O@ueg#`dqx&P?)|MwpC%m1lI6>v1Q
zFfg?HTdTT`{pP&dc=hm#67q~GUn)>IuBCn0FPf<$xwagIHGI}uIqFX?vLg^n3AD1n
z`f<_LhsKYXkRWK=MsXoT`U(3S_8~GqiP`O&afIM9p+v38mx<lsh(HXK8+xSCOB{8Y
zn^VRE+oT`Ir&pO=S9+=Yey{ObGxQU^;R$Hs?R}*F%p;`qCN?-Vg+8C6sr=<hd&AiV
zH`4nQDUa?}Ldm|tbl0`t!^ngjFdxzzk(+SlKJ5jz9?ZuEhQwbIhnw_r!$}>_c(Y*_
z5Nf+-38`YDxK79+MD2jJiRf=*B-UZHfwL2)Ey_A)Wy=$&WF@T)oTV5pQ|new=*1Rp
zr`Vxp9d`RWAQDB3U8{k^C5uMrutgzpSgdf`$R-g}BW`1*O{f@VNE>K%;AZmD?HI_Z
zudq4Y;_92{q4&;pRik)CDv9%*NPWD&aqWHKAeI&2Ak&iqQkf{x$#{KPC6?MmK=)7y
z;SgE-3^$C$YRG|*dPtFKbZIbg=?-L5OOZ<fi_h-Y9Rt7UR_hU_?Qh<yLTaJCK9bsA
z`Y6T@f(^=npPB66h10?9{=Pe!jTh<V^7aOIcQT=GtTyHfG}KeyXVNniP7QG&v-UVr
z9T24ooPT>sCu00TA4((~6s|HhKNUwUx5ofOYi+U-Jj<;PVDeAUL>O4)+g>M1>#{3r
zU6-LnANpv^Rb!FSUbjJ<)a&uDYRd&gqC+*p;PM1ain3wv3h*oM%wELX^J&@4_<9!l
z410CaZB2fOdwx=e!_h-wv5}s+ksxra4vl}%;liaVhfSm3mk&JYS-jR8zGhFy=5||(
zE!VW|LDf|Xu?ck{H3fJ;3pvFOhMn;%%g*doCIwWfwP^I3^p@Lv5=`-BWv4I8|9Y>^
zkF*h#=KSm`u<OuYDMW?62?=&7stxV*F;R=&S82jx9wYkhc?jzZcX^KJ5N!jb5k15#
zWvbWj^tdy><#2ibYQv1#&heE3uAbb1--t~rm}N7{>q`}I3P`|54!R}S&fewIRsrKj
zvN!k3>EesJ<omYX<-y^KfitZNAw8|m^01t$lVJqv%x4=@WexefNQsbkOHH*GNYR(=
zfuni#l%t#+y!>IUAD^Jju!Z}kE}Xa8dbnJO@f0|Koj=|mj9t0}ESi4c1g0}$fKuP?
zj>s>HH1KjHg+X;%Vrsj8qmZopBF5+fZzx1rkm#Y}38f~U5ae!zu?sqj{egu0xs$7%
z9isyW2V^rSzsEIlE+_|rWLXp5Ess|Z*WN)1u))~Bp)Asq56B8+BAseX5;KW7qcXJ^
zX1X5n-<rM}-JOm(b+1u|oBz&s?M)O5g@7y}yGKEmkkeq@{N?i{xC`WUvha`uB)bXX
zN4Vq=ii&Q6Hb?}WDzdb`iySa;)>?p(&(ph;sC_G6R0`Jw1WF!f7XweSigl!ey(hzD
z9hKBX7%|7B9x@h|l^Z?b6|z!~50Wf+^O{BxpgXSkPI38bMWv*_Nqd>L7PH~X-GU&@
z;JF@C;TsU4hr6iJ6-gO58y~b;)_z`u{cZLoWc|^xD(TXDd}k*ik<Tua{~pR?0v6Zy
ztsXn&;N&rhNK&;$V$#+RE3~v4>cB0`URr3WWnU~pq0rnN?U{n^J+Pfi5n`%ddNAKR
zf+7%W$IzQy1>PT~*yEr2?Tj!AI*F6{ruxz(UM2W>Vq>EjMc1)HlYwSgg;X2uV8Ih5
zj71G55JR{i;Tb1M+p*#<E=%ne$h|_+VNb?5Nw#CaAus2WJl!YntsuwPk|E|t-EBfm
z5hHaNF9=Q(E(z19VC{MjRbvxCBU26cQ-BsMqV|B5RmBEF_nUQ(y(q{Sg=Nt0MD91N
zg-CIEgA)y>ggT8~JLTB$77v(v)mSXFJ(tbN=I;7ruPWV?!dYla>=p%_^A$tPlNoc3
z(SxiUmSOjs5wX<S*}K9h1NuTp$&1mXx6lHr>?9wPxNjf^SjOhsC%c|k#uz8}35~93
z{1n)z=iAnto0e-n6WQ3R<*3hjDfz(rT^Vw=h{c_LSM<r4N;^dG!hz4}y>Zdhl1I$<
zsfSpHvcTYY0kNV({y25KY6P1_wR>^VyeSfKB1%zcJcZliD?}s5A=e6WEEyE-HDcx%
zGadjgzjqgqVoJ^RrwJ$97;;<P7a4V<<f}11x3$a_V+-_yOAD5&3r<3-1j=VuWT#;E
z=zgR9W<6*uI&kQ~3xw0kE$fy9p!VdQt!y}%X?PiEaIJc|u^Y#!WvqPOk?s-4S+njD
z7fnX1EMf%1zGnAZ6Pu<YGYCYs*GLf#$-EulP}*<rUSJYbHs_0X?ukqj*4wxSjD{m&
zkQ0oMs+t={quEI!TSfC=t^?$MNO$MR#`AxNx@)^Ud|TG1@?d$l$VNy!uY_4xYcG*I
zh0W&(-{7C{J^v<5VyIV9c4Ck#;3Movtl*g3&ieVDxVdc#j^k0o*z$GAGijsNvdn*i
zP6eNz?iK9#)r=eAjy*4`?lSUiR7sltm<;}G_yR=TUWgSe+$PC*fbsErIKv=f!5&zM
zWKI-gZ@BIvkmX0oz;sGIXJUwlVm^xAlx{@J7pQOR4W_9zUr>e&7Gr*XN;FAq5s23C
zO`A<X&RCukL)&GFi)7G`eIS$AN0qDY<0S1Nj`si!h||ln)l(pqbbsrhEtRMy?iKEF
zqtwe}u$3CX&ZE(aP~=1QIJN@H`LrtKcd(44i-!+6*49C;`|Lo{kArULKOk2wafh8n
z4NRR^*4Bo`2Tv|=S9uoC({h@{X4G<$JlV>=Tn9rTZC7UpX}p^u`SYvgf->wl@dR_t
z*XW+^37r_4u+o|@C1mq<+2B86g{<-yOQoh+8!}|G8SRP{!rHrl-c|aUo*&49h0L}n
zG{4CDySvTE)2xK#b9h7RX5#~01gTg*L94%o2=E%190(;rWctI3P(*#+3p=OOsRwa=
zUs4f<<w+Lp?o>rWlt$+?$fFP=55;M4$BFkzz?adi{xWYl))&2g`x8`DcuS{E^e0Nj
zxZX!;zjj4e6X{C13BNp6nlkma#FbL$i~CJuq_URMhgZ4$oG0-KvEJuN{VzwpM+v$4
zd>67=4@k5)NG_;p`G<g4J`TgPI5V7zTogC7YVcA}9Lj+!do0I_6=`^_h)(wx$&_9-
z{>5*Vj+EwZglXpk+dk#lM{*h?v_R_|V8PiN>(!&y-LwMS2dC#kW}3{S_SHmiBC){3
z!%!_v5+&W;F%pbLtXf18KK&4z@awX+O|wL&{)z&scOS}$GIM8qB;_}=8}tb_TGHx}
zUhOCs4aKkc2b=S@CZnlyXVuC`)yjB5B-3$+>a~yFf(6v$cr@~cIRX4rQp93la$G1S
z)0R*Py<G&-Hy`@0jKtpc?92FWXftyKo{J8<GSMD83dSE5;aYWXB+v5&69N5{6_0bS
z>P$B4Da{0NKWf%s<0QSCQQ}TKKDRhm)f+T@4IBjZhQT2E8Z@1=nwwYpxN7`7uC}h?
zjaOe!?&1c{!qsSwrl8%>o3Z@R<`rd{As}Bczgh8;|I`JPR$-bJv|+>Ua`k*_f*y9t
zEEShx&Zl`H@El-i@vJ&pe9bGp2;K;q+IvaMX_FxpCgWtFkWQsj<5!la$qjTBR!n8b
z5=~&38@rc7-GI?8)#<Y?L7!@uCB%S&86JZjUW?#cgbHOO!lQmJs<af&5LuNvt6klD
z#Yr+djs{Nhs-DzWvy27?SBo}rEzbQ@dn#dK4nR5PmOGLTV_{!HyqK^*#8BsuUI}ku
znv~g(ofSs)Lk_aPSUzbq2?;EjN(-xb-`+p<oI$I<uBBUu8LSx%jLpDCM>vv+IwMd~
z3B=PqqZ%v{Nq{Uq!xnZeGtL$ql38l_vYT&HVP0C2igf6b41(ItDtt6-i=dr)F3<DY
z@h)P-2nhrR)pnXR+)tdcg;G=39P*S<RF5xIuY-MfCM(0pDJy|dj7WqTO(9I6-$8Z}
z3@?red@ZR_EHAdVQF$?VnO>(y)o!?XmVy`zo<0`+F$BwqUekHuvUWa4WCS;e*z3Dv
zp?+Em1*@tDS07JL<;a92Tml%V&m6c@fnF#l2niL82U8)?tb`+l=M02}M@pu7%S-JF
zV5WZz)&p<NjNUV4*zE~K^X#H==ZQOOzO{K<F7`{5vFw4dv3^p24}w12XQx_g--p7S
z3&?<{g-BGf@sYk*zHFV_<fZm2zH0O7^&gE^jisMKzcil-V0mh<?gTe#hO~+U<tuK}
z8rKQk830wV^|c!(AD*3{(P_%fvnS%%WP>Jue{x{gm8`8@J$fSkX0b?sKc)}+4!%!n
zyhUF}aopWiYgo0441;6kAptXu$$cb58Qd~HG<7CL(5h`!cB9U+5c+74eGs7eHHIQP
z@ER&^Y@!pZN@*fVp^v>$uB=pg`0Htk(#@!TS1=D)tN6Y7U=BLE68}@*SJf25()@S$
zs#*gmpzMv6qRi5T9G-IeJk&Ks$i;9_o*9hPyPtmN)0M(MTL<EVrHSM3-0ovyic)k`
z4$~@!Hr}&{V&Hf4>w*9x3_<B2G+5Fs)J{YNCc{G9hJFom&F;;i(TV|=#H*t`G$xqK
zOa{;VUuzSVJo!64@D{l6t(_;=13kGeG#&HN>n(CU7JD+rxT?GrvT>B}mevRDn)MGP
z#2mSf69mZ01AbTuNJhRbD6;5yfZB#by?kcZMkJbMwzw}+#7gV3olt2(<{_0*%!X^F
zj)*6aK)b~uCvb{!VV>@utH2SfwPx8y*APRBMX77i6A9#w=Lh)42^FQfu)EznpY9J&
zIvo=5^77zdXX1R08X?uctM!*s!q1GiepAUlB<K&`imt8ATirG6;?mBu+kQ8iKi{X6
zm&oI<yu_X~YA<KG0`L~BLscE3b`lHTpQn2^UD*;*m<k?t8ZH<hpCsEdMpU4hfj(sO
za^8}GHCxdnYC}NudO#jaONh|jQL?q&9<-tDO=ovKxk=_+xYik>>$huocI-F6xM+<m
z<{6S92bsm*Ix}2jS(f)hXpF(gDJ#ix60I1K%#mRnqTtI}3WS16=t-e<X8~*TF&Tc6
zNURdmxx1^{A^!FE=V!&N5n6r^#VO{UHD~2ehG2;KSiY%Sf7l*<5ql-dmRMDoZ*7lA
zL`T-B)%BImDyq&ABJ)}aP6hoU224eIp%FHmLXAf&9$;EYB~qf)Y;F(Rh-<M99yA;o
zYD-8{Tpri^j@iW5mHE>)T$Zj|!7L-`Y{d@iOXHsu)n<~IEK@%zq?Lub9u`JykI1xD
zfJ5`&<L?V8+FH2#bq(e7n)l&$Sg`CdFhpw=;qI3REd;VQruKWXpzvmyfPHjjh6pLn
zIC9i0&@=HFQkd4D>vJ=*WJ1)B+12PPnspilLV1x|h=mI#6bH9bEV;7X)%`pvzQ2>q
zq~tP;j#Kd%kB78ynSa~iNtD+ZSi8rGUP(5Qw--_jPkRZmhWBiHu8gL2D!&ZlF1y5^
z?{aZEyL~)8+a4Z1$p-%xRKbI%u{qb*wNU(S#<i^eunMt;;%h^ND2yl7dlVn%Gu2d|
zvcHP<JlWc^cJOw27H{x0OQV}$kRb{DP<T!H;g*;@kuLEwsZl|{Gn~59Z_5P4FJBX1
z#S?GytpV`*>SbDtX(-*9IRE*Gi*nx%$d+wr4|(Q-`hpT<J%kPjuW9h9Pof&ENDDhz
z_N-ulh})v>M_O28$>_I}3k&aYV>Tz1uU!mQ@_|ayR$@_>)kx>&A_sb36X$;>=$_1i
zTvw}8btlm1Jy-FH!01nGu?aG;N7%d~z`+7)KrPrT2&8|KC^vse=qWJ%A(vG443h?@
zC6ALmfgY0XXsj@snKpsWcale;U83(DR=~2taB3z?50~C(IC*B4yMDhO#1C$v`2pLg
z+&vO*b#JDQQs2dLQ(x*gaWR#`yQ%(3`)HHRpMBwm$fyV!C}dHS!d+!ltT^W6(CRSV
zxUI|s4@$*|W_JC%(thW6NEWFv?D@7lji$EU$wx&q7F?0lqIy=>1nWmjTLUzJjpq1i
zWlyiWgvCbX<}_>l5b<=EVzt)eo>nOnYrJI}ix*?DMzWL2&m7rd=XHmSuv(E*E&+-*
zjk!%&!$>{2YnALQRi&y@M4bzbo06QufT<BEP2ed82aqhD7sjfVoZA$rBJna>@X-eu
z2__lw#O{~;FX*%Bah}o@Q%vVg#Y8fYR+2Z%$5+F{w#&Y(3aqPX$Vl@7I&SudUBCCV
zl7(8YO%MTqA^E@VX@TpI{x^b!=|9`k5;t`H+eTKQqNMdIJxs@oGCT)|>h@ZCqX+}c
z5<NZ*tA4UB#DK0vZtb3^U2EQuHy(v|zvFu4szWt(xQB;F!Je3bGvT)(iB$4<6m=?R
z4pQMqLWWMU^UK`Y1N=;8wVxg+Lbc@)cRd7bq{=B%=B5s{D6sMB;i=PH$HN=3cXl-)
zIzWq<2C55M7AOO9y&TmlstzSQJ$^n|kuf8P+exe!k?Z^(@f#Dqki@4_&|b#$P+J8z
zuw(BTi)an4P<3(2roLNHy0#FoOyOCX6SPV7EX-GMC~@w5k+RRgG#-0_H8FN;@q@Me
z+QNz*ij4jpa{>(<G5f|IK7-`In2CuH+cgc3KWU7Gx0R9F_EH%kNNdg3{1v!SFE<EN
zIpc(Oc|^|Ir&RH&-AG(eX3(#tI0LM-lzYQ!Wh<W;(Gys6CdQ)XF~h+d@*CJ<@`Xpo
z(wB$~iY|d~`Sup{mdU3fmqXC99XQ?dMluY}rm`Fq<4{u8Eh9GP#0K`*v^xgqb+V{E
z32>a*G_u6zyy3>^R(CEJck2*6`L)&0-X;4wCCssO-r@E`zgJ{%xS=|e>tTJLyuZr;
zA4oUgs^P7)A}2xEb`2Xgzb?XgeN+?KN|&)i%Q*H?nK^s9$}|uR9-0kkrFC~Y8@BZC
z+f5UP&xy)pgL{XceB?;amTWE1PiAf|=rMG(OKm5rC%5e_BEf(w52CzZAHkZd_$=0B
zkG&PirT;bQ3jI6HNVbd`3K!7BLP8b7n!M1?c1@5yJEUTM_@TZ!t{vQVK~MqWt19&V
z4uIQ`XUo&9Xq#P_uF6Aq+_PDSmm;u5W|6f@{F%V>F;RDbO@w<Dojh<7N~&tq&zsi)
z?<HpS0izu{be8#rAzfN*&~qk(rgd7ANa^DR37bOWKw-2pb46v)U`g&I9YpP!cNaSG
zuE_PNY-YwG!VBd09I3K-%<TgP0Kg&tI!FGQP2&3x=E&bcCt10#zj!BQJ5z_h@BGeV
znA@+iUblG<WLa~5+h>otu^@F~Y|tFI&$Jw<wPQO=h7lA%L=4m6pNclR-E4!7LCmf^
zb;zI~W5826bw_I}3xLpml;F!jrIzdQ$TMU|lCWhm9w9yrZ<efYjVo2Ci7-B8!zqzD
zwXz%*%B%OCd<|nNT^hErK?>=|U$XMFOi3kXN*0FhETR3;j5*dK6{wpWG)S<xo$D^0
z9wU$O=^luqjMh+C_%x;1zK<-{M3rlII87JPp=b_9c6(P~z@k@PuuLdtM<xznK0~s#
zX)W>!VzuvGb?cXIRn0FUGswugyDI3=muVOq3%mT$z%1bGZ`HWLEC50uQV{a_<rSvz
z%dYTfdJU&)4%{n7poS*IOtU4*kfet(`+IeE>eJx#r?mW!y<t>t-@cGyiWCmE93gC|
zOyKD46Y1E9u5PzJM0VQl0Z3Tc8vIag;g^RvX9ujcOCiKiw)1$@dm^iks%9_)kPQLq
z${V<i`{}L4?C1%&cjw#Do2!9KUbMRh%WS@32a5=}4$a=6_izCpiCGB~!R8J;YS7wz
zS%?gUPEGLeM?pczME?)0#?8}jjPN!sF-GTn$KG9V!RTnhIk2FzU~%X&2H-6)El~Kg
zhzOOu*anOOfi<N{(1_6crwrnYb>8k{2oGx&g904!q<30(DY4MDrh+>>n>{D>gQNkY
zCyC3Ls`d$qxLAQztWcj0c)lz(X|&y*TauZ)b;^1sldB+3HsY*=Bk0;n8Mz80a3_=w
zRvMZd^ovE02WE^%x}&O5MLrJ<5#Rl4loBkau48c?mi$gqBRbH?nV*8fOYJ-PqP}F{
zSrQ=-o~j;1<`M7QVQag;t!Y22i?Z@#@#}cjj?sCnuK>3r(o_v8$z$A<7^Sa6fl@-3
zYm{Ud(>bSwOU*RSvm)e5Vl=lX;uK4oN%1sq3prNU{QN#K)Fx`)rdT?PdG)>bLFQ|W
zwh^uTL55>tQemHge^w>gkrwGJ0~pJb6z-)Vl(+%+022ZJCwjUYk#|}F1<Ieu`i0%`
zq=Yf@p;Y4qJy1D2@AADY+VJWF$umMgOa0S)xiq`!m+QpV2WpzdHd#W`5P?n<B&VoB
zd{VK1Km^+em)RW_VNj~$=LwMs=h)gF^#Rv#ofB5o{o6hyRZ#7TL;_aJfb&X#{kG_B
z7+ZO6D~+U=EaatRkdtj;(Slw|rr%vGK>rmvjAGEACHQL|x?ao>7DAyWt}Z{9#}2HW
z=EPNG9_penVUsKWz$<M>C88XWLO8SG#b<e>p?p<V=`in7Q=AFd)eWJ`>4-KUr1gby
z>9M=mnd*z51-5XTi@mPB7F<n9ib$jNOP+&S-dRqhPmM@*ebCh8W*t6(Ls|LJ2LNZv
zeQ6$@UCvUJ+HG2#MB&xLixaWRB3r5WMK(rDqtg=(z2MN9#<Y3L@IJ=Q7%bSiA2I7?
z1R^B}L~r4~uvU0_hDRim?1tVnmzr1PNcD$8$@-jHTpA2$Kc_XS#Hv<@ub<sC#aUmC
z6!ltzFHW!+v*cK?TBxD!2lyl!XjmCk#jFVQQbJW^Zh}Z`hR?xTlk6du>k@5~EzJWR
zf@9lS+`0RBMZP*ZJaCu&tWb4-n7%AGa+Z6sE3TT}Z0%C@y7u)$>2_)?&6LSKl~Pk^
zw#2;ak^>DZwo5Wq$Y81Op3FoE7E|^VG`(&hCPdY(w97xA#Y;#7N@R8O<qVo(hrO>o
zTGt}pB=9pQV`CJsN*U$aXIwcU;)4yS#YDhDP8&?PAa&teaa9UA+==)$O;gC1)fTb3
z{0-Ccpi7R?L7}6TRwe+qzPeTRo1gn4I9y@_iPvofDQ8=ZQ~c`H02@|@5iYEvm2(>1
ztK+>Cbz@idfGBj*Q}F7_xs_Tv^VV0>8svk4`d&skixQ4(xb$nITg&6f%Dgf=HnwN8
zG20HrS%=IkgDOtsdtLUYh=w_?6mhwZul1Pv&isoAtK%?+H{Y?Awy)kzK5V$rJzKFO
zJWHe(mj|z2q^mIY-Ps^lK@XSTkB;`%f{`4OQ>VrjIQvSIl|j?<Fd~Heri=TwO_<rS
zvtbZ)^%pXv;lA>-jjIi697RGfPg;~oEK8ubEtT0fU~21U>RDUc%QGHcGmq#9d(O>d
zN@-07kIZFj!e8*hc_<q_yQ=SVxth<>H`BB9@NTs3DcF-7Vniaerz=J!+AB|99WTQ1
z;3;IT)LsXnd~e3%=R!RrRt_Ja>>)XTMH=fVdxHhaqpknUc5+%6awGWZrj{sBozADB
zFn4BlSsQpwKWj%`q^|#6fI%_UNm5gc#Vdca@0MH-iYrIKfrS2OzP`ILh5`rv3r`Ne
zfI>SsiztXYr_4w9*3iTyixpf=SGV11(lra*0b*#7PoiR}8<c`s+goUk{a~CBxLkfc
zAL;DewnglT93*=ScJJ&W7Z=?I_v*6iejn9+9FHYUhhPTHO7QR#GnX>m={E$D?zp2E
zlKz=!-sXF9xgmw9j7s?nejs<XFfnf?*sRV|o$XUy>Wua5Kx0j64ep4*@Rzzvk7ED8
z-QXG<4Lx1wGw6A3wvzdDk!PGnpsAoas;%^^C=zZOog&A_1>22o2@$3CdHDSXPb%1U
znx^-^(cmQ_8g#7?0KgdT?{xwYFfz!$rrm!n7JeB#;EezG`7iAI@324V_rC(>zq#*!
zSb;Cuugm`m`wI*I*TnxDi2jGd@5CFwF8{#N|19;NBYuPFf7stj1^OT4`M*o|XTiUN
zY5r&M-?8<7o&Gnt{%3maf1&UP#{Q?uKd;PwgY18*B>o$f|B1E#Yt`Ri`=6?-|AFd%
zVeY@h|AYwsiWmF_-Tz?)zU03apZ^>2|9jy7T=G9*?|(d>Ka>2m-}_A}{KE=-$Kd}j
zN&d<${599_4)U+-=HDIUKditvhv+}b^^bn?uL*uX<iAchzJI9yIv4o%lm7oF_*aW@
W8F4W1-=Z+Tjy@0o;FR|Fr~e1ZPfr{G

literal 0
HcmV?d00001

diff --git a/oxAuth/Server/integrations/otp/repository/com/lochbridge/oath/oath-otp-keyprovisioning/0.0.1-SNAPSHOT/oath-otp-keyprovisioning-0.0.1-SNAPSHOT.jar b/oxAuth/Server/integrations/otp/repository/com/lochbridge/oath/oath-otp-keyprovisioning/0.0.1-SNAPSHOT/oath-otp-keyprovisioning-0.0.1-SNAPSHOT.jar
new file mode 100644
index 0000000000000000000000000000000000000000..0b500623ba5325c3900ccba37c4c0f8da8597a1f
GIT binary patch
literal 14268
zcmb`u1y~)%vo{>v-95OwySuvu2y$?DC%8*+cXxLPE<uC41_%<|^@H2?ZEyc=zuWh|
zbDpEm&Tn@2?9R;2&L~KOfI`1}qZ%_V$^ZKB>kHKDyR4{+Ag!dF7`?)4Gt_sGuaD|K
zHADSlGg(17Nik7n6*^fltLSd)9tK2_lf*}a2arZwyPOs<Isr7~&|)R|p#>P-*_zMW
zB4g`K^}z5yos8Ea3g>*sIgHMN%(5}1DDt-~m-TqBF>A-ybAM2H(Bzb~!m;SURB;HW
zZHcf4^z0y<nkp*|3*la?dMvQunW!>Fk;zPm9G*GgZdltkVh@|tq)NLIpo}RD4s+l=
zFG8}B)ijVMFGv$aa+B6##4DN%E^_6JoBE`dma)O-%%Om53<Y}Lt=1Tr@LOjkDdEAW
z+72vYC`dy<?t%JK^u3M|1?b(ow^{h>$pU?CVQ6FZU-R_WEf9WfVQFJ%YG7|>WCHky
z#&47Q2KR@?Hu{dH|G<IyHyk#Ow*SCI@ef=U05@BE8)q{IGaG9&Ym<LKq5l^scJ_ug
zM!yXGm-Y1LWykR^z~ogF1f3jBRh1;^3@!B?95U4JTyWIUp2cEW4FSjy+;(=5EOL0F
zY6&tD(vsWxp?Mq)xZ;Ym%Y@cpn37fJB->c3*afn_iM0)rLKxW!6w-@YQZTYw)O<h9
z?%+6ZuXn2PHcpveKz2IW^ZKVq`k%T_R$cbIZoFHUBYe)*)z{zIg6M|6k20Wl_B-2=
z>x{px9m4RZHzBT1-wwy>MlRP~pb$50371C0nuTP`F7Dd&h~(#74{x)R2gR_h@<X7$
zg@o`{>Gpy?-b>;esNl`s*nT{P^1jXYlRxV%y4&oA#P2a7x~0L7+CcJ*s=IBE5C`xS
zZk$2px(W?okXWXqN$%8c50b^kZ8I;fSUI3D7db30rl{PjK|M{ITwSypAE-%=aG~{5
zMM`R9)mN0}X^*#C&m{*`{7haEVdKn9Ngghc-({M1(1cnpg1L@WtNj@}%z~U`DQ!6G
zr)#_vus~(R>>8yLQ!W01^=FSkrva+8Or4X7VqHe9So8?mL%SlYWw?eZxe4>&A{cN`
zq<O;t6|%bw?}QALeRriM{JeznWwU8KY>`xOJZL{-qQ;y)V2Xf&rng13N64~*uT6NW
zB1K9za$Fjc^d}KmvCUGoMr&idNrEP?4HLe4TXx!od;f-sJeEB=oPqnc7G&gnx~SB9
z1d&kAK{v#k0kL`f0bQY@b_r`D5I(bY33ak^;HO-J?cMwGJdE*-$&oFLp<AN<WNX>B
zlphvAJhA~S!(#4!HQy-b&lKs!^K)n_h{r6c6~&xlHNt{nwm7JxK){ymOXUjGY<H=G
zq?LMh7yRgNWW|PSsYd~EfGA;eT~s4Rg)wQ&17N%oEaT5oaZ7=zaWovx12b?IiL2Ac
zwi$*^S;@8=PfModX<_tjou%GIgJb@sl{sSR?2U9RDqns5_7fOHgUo4T8!Qrlxs6Yi
z4lEJ|tdAA?$FczkYh?!X$W(B&TGo9JDk}juWebA^xZ}mmASOnhlKpY6QUmI$o^bMI
zw_Ke$TWPLZJ*?^>D0fBoQ^PynvdU+)Jb7Eo5?^nl!cMk4RIsT!qfIEkW83ko00N;M
z;7d6oNHX%QQ3$^0E>}aeMDD5N+r^rb99-2;J`0EjStL+I!uQg}p1YB#t^{FW@vEEx
z>&BlEqwx<&Gtrec_xa3O$E<%o7BpfMA7Kbf+i~p;!8ZN*Bu=^1!0obrIyAmu%EQ?B
zQtccP{0Nw80(NHdNkmImEfw25($(&rir<#C&ygufl-!Xr|5~d-YIZP7l^3@9WtWp-
zD<wC!eg7w+SxC!j>&eeH__{XpR?VF;o>i=NMm`XsV^GM$9j3Z4WalS6uQ^jwc4srM
zP*x^I2UukkkQ5c5=db6w9##kgB4zT+F3O*-s4Q4r9`M$8*RZ8^B1h*IW@hoJqgIQN
zvJS>j&}fzQSzyA0gn<f*O9DmJIFcGO9LJ7ug(BZOmyy6eun&Idzr^-8$yZ}!jvu0-
zrfqN;4N*6@Ig4GtR&#MZ4<yl_Brk!<yTB}*NapZzqFnGh{QRyUOAe^-hm5S8JwJhi
zL6Ic+HBNiRZpMPy_fW4a4ur||u?6|W0SR|_!OJQ9NWCD`FWy+bt_E1$x0Qf^E&m+A
zWgmNR5>gbx*O3@{=yeFwRk?^yBtjfgw@~-c++v9~{fK0Cv`P!Ul(_jgaWO4UD}KVC
zVmP!VCDLsKB+~5^B+?xuB+{KUB+{E?l6x_4G%V^JaCpzu5nW3psc7Pvduk4JPjRI=
zgpAs{yX9=xFg)v_GS9m}a37h6rs_g$?ZBYf(JYx8W{l0dm{|pVn1BzXhEeH5w|2y-
zW+V@g^pxUcPjwN>ZBL=yxzFSqHxtPCNWCKtc_tm#E({=UvGn!^8GrWjJPJYFy6K%l
z=}p)d?X}V;>wd;}&4O6#D$9-<A}ucy{+WLo$3~5ls>Y;VQ@b|!b;7G0^p<;}frwY8
zWDo7}-eSS_p6OnW<eq)*EJ_(_!W{1@i9unIEazyQrqP9$G>rWF9O6X!gJU(E8(flG
z;1g<Z=(9`XwqM1PgPkzkhvq2SqAjP%eqWK7xuDjfC>Mt-kAVB7Ag$d45xiwBv~+aC
ztt1uNFG2*~kw}k00~0nS;ojm-7apUV2ps<Wxu5tqbsw=1Hs~+2=Jn1vo`b43PE=T4
zvcH|n-&5RSsGZs%wOd(#O3mAFGGdh8RIZk}-la@$=Z+Haj^pB|*p4UJ2H6-%iw`Iy
z5`b}%zk|O2=on*}X?;C_Pv5cW`hzKmn|qtz$_$P@+^`!0??_BqpWqVFx@d?+YQ!p1
z!V_#+zF*zRI3SwOjNCn6BP}6>y}juaVcOWG4L2U`gZMDczR_om*;P7kNP>1In1Z-|
zD1*<s{RUNoMDt@?$j-Ml$(sE={nWRJjtB&3h8d}QtRnI^gB0m`^oE0?NGEE1w>(2I
zBVeV(<05{tahD^(!OswH&JLqn-8?VEyLUc_zc@R8ZKC=AuS~R%lbNLv!2TCYU7!Wy
zsyzSsSv=OMYR7^B7&jpFb9eW^KuCaii0dLI3XbJPHLPy{qGoF&SS?9Db(fWvP$~rJ
z_t{v)_fV2)TO|3kgo122V`UZ7Mr~G0*7pm>O+Oo#t(RAS9y>R!Dq(Z&Ni~va*D`u8
z+++@>r}*rSrldHGc@T75bA7tI3<GOBv!+9BPlADYmaFe1#rLu42KVH~AV0%{;a^KS
z)qz?^VO~!<ML_rV`PhwcD$ICJ4C5W)Q@=retI)$Qd20egwxxr`k9LwZeB0vs5)P*J
zD1`XLgz*xlr&*2o1-<-5w#SBs0^OniwgU4xBftk^=0(5TXY0n``<K4$FM!8rFrTiM
zuebbX&v{@zJuiEk6U{NfUp5TzpTna2wqr$N&V=xHkwODc!V?9F@?^-cZbstcq>W=~
zNR%rBY2wL06DfAeY}06nZ3A%QOS*(mhN!kb$)EsIjdF%nD7H!2Aa#hRQBy3LWD`mx
z3eA{wsFiDErb%n-W{U$Vgqiyc3qLARY0X1{*NK$TBz-k&3?x9y)ux=r9gtAnVpJ!C
z&`#J59lv5)eLwA)f?geImg7njyDxU8OLMzsL`Y7H6kT92#*~s6egmCSN?MAfqy|md
zfF59)Amh|7S+A9w2DPnaet4LA&{$Pv*K)wdhEg8Mz0$S{|Al*U)AU<Ur@$bxkhc{B
z;<ptbtGHzXRX`~@YPmzj`tee&w{3|GoXmnoU2P>JXMIpGTm78XN-VCHbTY}@Tz%_7
zQ<Jr&L|9|Ls5ooZI+7aqOh?p}wXAY4kl4qS5@(cMR(C%gc%RAXMf7VoZWZy#3MVc<
zt)cGe99!Ea`Yjl6%sPM4a@96B{iyZT!h0x`OBZ1hWYyloUh_5^`tGCYHqc>|2ym8f
z$RT68dcpGHw!y5ita?dHxg~`7dIvDK^*aG~JBIy?9w^-^IG3dXXOW$smT-TXEBDg5
zr0JoNA-JzR%N|$DU!wSvRZI^eCPs)V$*LS0g;z%0KkBm5Tvv!XcsR4Q2y-d(l^-RR
zTX}FSG^j1qSsaCZz{4kOVLb}xM%UN5v$bjCg6b=5V;g75Hiyr&*oQYg?r`$pHJ8{9
zlwqdkJAvWS0{Lu8feLF;+C;Yj<(^_el>@-=5WjJESy=6lQo)$)v1BeFL{#W)@OB}|
zJqMSSv(sX8ERiF{Wy8K^Os|x&Uj07Dlfm^N^vd2TSS1v@r58FBUjGcUseq*>mNS*O
zl)T(LAe6Gu>f_$=Bp7;r1RMBOuN8cWzTV^r_Q3%YeAU-R#3FsqR(oJu?Uk8;9>*%c
zKGcLx>@bmZu+8P^=N+1l`u7JTAIKF^1|1uTieN%hNwvtoxregZUhaL88*=ctBwjl@
zHVEMC{G`5fQFS}j(|vv(ROZmRvtv;iB^YI`)02Bnz1a)<y#U{bNCIm_bh4%%G*3Ue
zb&1@$&^CFrr6&;@U*wA)$Zfq4&YiFD)*0nWo&rn@s(Jqfv{mj{K+2-PEc0FhNap8+
zuL=1|wulIb)~yB>P?HFfj^RSure%Il&Dy!zXswZrHS`pY+*ahH5}ZKZUzRqn=L5KN
zb<72Dcy<CTf?B7u@%`5EzVCjj9Xk$R01+HJZai^*@Y3b(t%2cj2G3W(al?dnLyO}3
ziR?r%Bgq%&JSi9WNCZkz0wkI9Zdy5J2}+b$gsPi~<QrXJ52~UBN_ehNMM3XIb^p;Z
zC~i@QjJy-TxzUOO^P?4*8^!|{wK~x^>%eQoHf~zw;xs<GZyC^Detg3aVmV%pNg@wu
zt!aGyMdCRgrfotuQ(m}oOt|KO$3+jQT<>>bf>J*#aAS|V7E{#)iv*~0zChO&r$XN_
zHTNN$g?u0}nCFu~kZ_d9ffy$KCJfCh6OAZEPmYFINY=1Cq#q#d7e72(0pw&OadoQH
zh7AwVdrjpLPb{;rKK9{=@QbzuLQvb$S~j*i3E}YCftF6g!tuUiFmb6G(e=Z(kx6#l
zjEG#DI-#tb31n;hNbTHnN*t*|s8&Iwc7!szwCRwpIjE1pXzs8Rbvt6)Sn{&HT~6>|
z?4{qpF(ZGNUw>;xEG+tn<(SMuF*0y`W%gc7hu`yMdXD~!pBFaHr_DwgZGIQahH%@5
zL9~@{!`IUj1YQogh_kD7PM)JoenAr{SLI~fWxSC5G}PzJwcQ^(DnGE?)%w0oAeDZ|
zDCNb!Cb|}>Y=Xelfo9<*kZGXKcS@qTbaR)>p`Vl#(kRD`NIw2Fxs38%;0R`6)z{i1
zrA~%F$C__#6Ee*YhP`cWAO2LhL0m;2G?KHaWC>q2GJ1eGmN$PMZL~iPJXDs28O@rD
zbvx4kyAV~GQr;E~68LJ_2A^$q)~1vJc5AHm^T%wFWbZ1D6kcSzS|49s)Ll+e*efMJ
zU--VY{irsvw8?~)`UkFD{n-(+Cn8>P+k-jWkRhRq+geAwtGq#~K-ISS`L)U*PVt&f
z_J|Hlg&)#Aw4F37TY_A&$vWdO0afG9T(~<#ax0WXi<aVd6-`yiEfogWR@BX;*w7s^
zCR68gt&MoNeNZj_Jk7Q;o83FJ?=a}7Q7oG^+G@4Dvd=NS={H6Ws;4q+4)z1N^$Mq$
znDmI_p1`kxHWNn8R96pD=fvin)j`(JwLdr=Vz~#G_9Jl&s+kn7v&iKB*go`cr9QY0
zPg6Jm&{>a=)-~COp&@hmb;Ex-*f3US*f4bvSAj@cJrdB(lE`iUpg+sYo#wCQFf(y;
zrJ2$UNAUGyf1fzWT%AQ%=7n;~>^Y^G{-k+V9(?tvCuew7^p6G>Y6ItBA@ffo7o`#N
zb2Lu*#a|mX1Y}uCJUKRF2^(=XhITyU#5pkGLhphi4xwXzTpePbl;ku3PO0U-f}-r1
zb*s(2|1dHqkIj)lmIoWxT#tfXbzPZx%-aLyR>XDJEShWeIl!$jAKK0-$ls$cLy29~
z4xK$rcvJQ(O!aoNpA(Tg{8?7H2g%Gfcp3Q}QE0++9TfDPSL*ZUq4%YoQ|C*~_rx(_
z8LQjVT$)Z#Bbp-utsm<>jpJ}FYO!5Fj|(ViG?aEQhZgIIaw&m#cW@(bcl6XmXV-~3
z>0~J6Gj?-G&446}K70A=7c)e9zUP5r-w2p0KL(g93-}Ze#B?iL8@qht*BoA%w34I<
z)yr&lm5-ma<dow)u5MymGbtL{#P)bFpxeL+Mj{VMzKgeX08V)B|7h@)x593=YY)lc
zQ5Z_!F6d{Q%uN}lo7p{9%;jiH6nzvRui521Tz;P-KD0`JED3)sjj6k(N0<(Aq_eBb
z*$&ZaV|si?Ox)fGZoM)ts{5`B1uopaYjcZR%|gJnct%ORt<numykS3*ICg;8DsJKg
zLr+e2#{$$v@@0-#CXsP~4RYOb2=~LqRRqiFumGa<SWH|%Y^Z%$0Xl$RPTNT_g`HA(
zbhBr40vH!3CDsaXed~`j%l$pgj8^ZAGZ*q@h$odYB;U?>vylcD%s}~0?TI<o8k$cR
zTUap_8yg1)+=Vo$E-iCd^Qpq{Iop#H!bG+gd-b6o0`5t84ibu^R}Vn}7_1G*Tdp7f
z2rMVf1Kcy>fk1wLefUW}|B`?B$&2!-t@#Uqi^DP%U-Z7=2jjz&2jr6nl#^Ez^UN0l
zad|`7VY4~s?;66%H`;;1U{8>&{SBsch!;k<9}9D$M@7*Mof9pAF?m8DOpp({rEA4M
z9r!}?d&eksglj;Svi|NKQ?f0JeGMp>M%1u|FO|x+VkTvT!=TBjrhpC9OhE5SCR8tJ
zeDC{BMyP22Td&X}@cXSX?QmjOA|Piz7*g-O%;4HUpuMcQD`bw*`#vt6LS%BO1#%2=
zJDTyXm2SuFchh}gd=bl@;M>#&6sAU`<hZ?~7uD9B(V^PzjKf@<K|-0-^}4;$n1z=;
z*J1!USmlXqiXbzu=El&}i9C($WPJZsRAEU6gaK|@zwoh{@Dv-Bs~nb~LxW@|7MP1#
z5(oR#p%h^`W=>N3uL+jtCF3i8nqCx5<54+1i8#Uq(*||vy|_J`Dt0^RCL`RzEdhB!
zaJf70+e6*t`rSKZIfHQ^8AtiU0J(JnGPI7VmW3o_{<Oq}qLMOmILcU7@=VyOHT{xg
z!>T5>%CO^nG<Lg}lX2sZ7aEQItt*M^;b=A*Wy+!zc>cwyGP(EFQ)b6GI28>gmU#|a
zmFZSh>HuR_=ufSqWoq07_<iN<2w)2Qz@LJsfvd@I-nBr$Fjs1fM1#_ip%F();`93O
z0+>7EMAekTXdKvbcS*jb`)(*&$JKtWk|wT_j~Q7UnkOF?#pH;F^IY4#G$0=IFU8cd
z^pw$IbAYX2wA^AQx-v|U)MK=a+Dsf{YaxiUbTg^$Cp#3@Hf(mPqdj4Ph~=u^LLbe>
ztB*b&P=Yrns`u>MgvI4@;E36EpvdU+bp(Q#)XJ>b7MS~rbb!tiRDoO9j$7tz*X4#P
ze?F?rbHM_Ug|gxv^uimC?+Nd9%fr{_aEsUZdQc_V$qugU4X=M!WD2L7i^n1Ra7sn&
znsVGteF<sc2;AX_?sW;Io2R!;eJSpluzhd{&b`J$)1w_Edz+ervd(ZM_(h+8jgcqZ
z1+K$&;#Amk<P^tqP$S?3JN%4yTgG!;BOD>(>ejagg`erTJ33PQ6lGh|)AVRiKJrWd
zM8ucDiAao7m~GO>DV0xp`-E3e5hhPG9OLdOm<c@<MGM#j*lN{56ZTpDREK29@}0w@
z*nES8O>?(=hqvw3<!8(8sZ3kdb_BW`iBRGZE(ax45Q7n`mdhBN9Q=TlF|$Kd5+1{d
z4N~jjAB^{BqJ<-(S!ZgVP<laucH;wPa+GeaoS%)hB*qzHIcBLN)JU-48pAc-Z_Y}m
z+sGh~+bau2;1F$I?vAzerIqAIAv|76aumJTKCnXV`Gz;^^r%1ksiu*7zMdmc(CJb6
zF>If}Fr}pT#ydjp(i_O?j&I;e@Ya-x4<T`@P$i3|+_hns6J<THr3&n{V4H5L1=Gsb
z1XTf#$prpJTa0;59t6jeC9D3zRy;HQL8XN8_=22cju7O8NZZV(H7QeAZf-J0t_`^d
zG)vTS2)h@e?Iqb~Lpi_{EI^`0{f?;tcPv<NEMUt+LC#yLfnlc%I^n%45qT^+F0o+c
z#@sfehxgaDJ^q?6&7F528fygCHi(S`kkpxM2Jrm$Mi`EXELFxDJ0Yq0%glsWCGTb(
zk)|&z8&c^Ql#$m>P-eT}jfum;x4wF#!ZWIf3w;?!oh=7OWvy<R-@-QUVKJAZR1AaY
zMnBZWqE{ScU_vCkdA}w#<i$hS)VZblJ%2`g9zFSCgF5E!TQHvJW0<}P!6R>SDxfeo
z#G(W>Ah1VXLKLVW&(E_sCqqN_88!aOpW^VUmM&_lPgR?+31Q<W=)kh;=+MdVv;zWx
zJf<jQIvsR-ewUqJi2oQzD-4R6PgwS_zaQD5lhFqSc-Tbqt?`_Q*i5-3BW$vL#>7hw
zX|7n&shrK&&Y&uC61>f6I_NgF#<nH?>S-M>$Ws9m{=)OJ4gwTWc^1wcEq@*l{2W??
zGURQl7wp?4<t{q!Gc%|gBBmKxIRjwciOd(^B-J9N(yw!%O92kwRi|O$71srPfQ>@s
z`c;cm4}~w$A~4QEm853w$}hRy7w=`qA#*>my`In`P>j#MEVE@7Ee&XHB3v>qJcGXl
zPecmNH6~vJCm7`a6g=Vicfk{BfE&r{HHV6uE#TM4iK>n|jw<SEQi@TmJ~W5Gd#mai
zC0QXt^l5sbX@&e4wm>N*7Uw$#Sm9)6CKPg%#P$brPlvlL3u#)%;o9rP_08zh68B>x
zk!(BKex7vZn@oqB#l7vd$NSwP^>=(?w9rWNfR(O@fcyYWEaK*2QD1HAVUjSWU0dy*
z_5gXKO9Mhb?ho{0)qPHqK@n|85%zl?j~bkQpz}ARG|VB=)Uyz<$ioM6(;pS28m*cy
z66egZXoC&`t7b;D;_F&2W09?&omgzB4_(KOPz;Oqxt5Jb94)6SO`tY2Ynbuh?Lf62
z2!}VmI%f@!8q0IFiDH##69p*Wi6X1U5(wy2Fs*sGys}RljT<-@J*l4fKlZtq_=j94
z$u4VHv(Ldbl~!oi6W`rZr@`*bENkY=6DZPhw;ETNRStuIee0<!v~mXvQc3z)KzBAD
z(%J-2dj1xs*~D7)6M58@z4SZPES$~a$&dooY6baL;UNo0K0mw(Rc0Z7OBE}KGt$Jq
z>(pMkHJC~uYH+6qsCBnByRp1>3h=iWYPsdvNN%#|rDeP1ty}2vi;)<WYCi~MK0vd3
zD+4s0fvO-h8knK0dbdaO`<&7ZLW&d^pFO2on!HL)2kVYi21}bwi&ay1&|wDqTJNUi
z!Up|jTvl<+5xLqNw|jKWSizb6;{{szx{mLK+hhckx3F2v)%0jGhGAK4eWF_36yuZ<
z8@R&jXSGZLjw3be2OD4S4TW!t9hF}y@L|=X#>0HBE>?FRIpCmC57}}&k-_Dxr!{c&
z8d%Gm3>ZMh_vwcOE!f~Z{Pk-ONgslx_QI3)X>oFHlxPOr#@<aqRpy*G0)v>`^-XFC
z#ou7Uo=k^XJjc0oUr%0O_b6*IM#RBBG~(Xr^+EXh!1F#=mWQPzL3RWUJ$Xdk`A8`3
zyE+-fWu!{R64MC2ul)WwMdFA!J;f7ff00m(K+_jke>K;o?T2Ci&;Sy%H{WA;9(3}l
zyiTq}Tr%`6K=NWJXEZuSPAQFFh!(X=bbm;1*h{=mD1A#><SR;*HFRK2-wkFOW?ClF
zHW85VHR2QcX7lYOj_=dypbbQf1;mevpTde0M>)|)UgrFvys$^x8G4Y?r`v;`E26MU
z_j`)Dwe(7oUxWAIatR2K2)@xP6qzP*@3{IGgZkEdTZi&LdpNUE()k%{9`G#d(7mae
zg~;IbuBNcmuk_gPlr!jYr@9#aVMODHi55&7X6a0yP9N1ocP8Grc#-;i$UQ95IG*!&
z=*s(h?D2bMfeDK95R7df;5VHSYeMS&73AH!nb)A}?|1Bfz7u8n*E-|Z`%vX&>uCW*
zUYs^YSy^qN7M22bNJ7an8b~O@FhnI%l9?DabCpahlO4-#S7HxkN*^#}v=9isPtii7
zOGxjhl6C>k&c+kz%-d%Zdh0&#T%*WIQEL=?KrHDDfV2lJxfkrJ4>t(?9aebv<;48D
zy$A-0I3wCw&?x;`5mAEdA6D8<UBCAe^3R4w^n!qEn|w<8DFEk|@7I|%q)X9!?wCc*
zy9J6zdLUG&)DODZXGcOdONpjR(V18?V}r>zV*<5HyUams7F;SmrMAR`o^dvbAvu3R
ztdFhei;>|L%5q~iIp-x=!Ph~SXZ9ZTehAjIVy)R+1b*kDrZX49VWPybbU^a`nq;0c
zrF;`?MmT`SUcu=MlNE!Mrp4ASF2{+NE@<}4LG+UYl4%ge#eP9XNt%rU>#0Hs19JLG
zPFTxHfnOF0k%FDPxzO~?YBs%}p!ohcM;NC0i?vYY_iRR-9%ii#q6%jqz%-j1V45=n
z9a9z%cto`de%X`j&~b-md4dB?a1&{EtkYwDtk?6Lj@BaD7>ickH2{vjFRwX3W^D*_
zQzP5&o6(NgKlf>rxsT=o*2(vgyP2DG*D-ZP=mMr(-bW%#vpNyY@d9Gn5B4U+9NqE-
z!CD81E(Y9?Iv+PbTrJw3eXa84zl@NZ+-~H_YpMe9YevG~FDSKtv7mmvu~$?Qe!aL?
zw>NVH*prCb+uPU++t}L!3>{z717rZs0Lx#NT!X5P!;A{1_qaF9BBIpd9Btq#RYTWt
zZoX-EbVY*#j1CkkwpQV`DjTn*znPy&9p0tOEpvN}Xh~jPFD-m8hb{&4Ge+<YoVGEH
zM}d{G{n~{$--O%5@bJmY^CQlun;P@?;aX8aSRh#+)p`ShI6?B7yLv^hM-Mq-drdSL
zOpEP$NZIt}6pb#3sGaag)%Z+y!lLZdEY&K_o5|i=`hEs0AYvt;B<)y;7J4;o0$t_7
zIVu;v%jUz0U9~?&)6@{%aNu^T*bC5F&VtbTT`K5z=3P|lcbX{X5z^+=zlP5hI2pQS
z_R;PPD#>2^7b88Yy4y^)QN)<tGH!;neqw8J@7C3{1x=^F266s40=Lv&oL~>od&h)J
zWIJ>%>{ijS7;{j#3^|lbIwai$W}Wnt`#8}8j4r|1Koqj!tGDg&^5;G9vdZ%mp(JrK
zM|RQ&-ED!@lrv%eOf<}&!Zo^8<x1}Do5~ONQR}d)%@xfCoM)!8Sb8#SOgfd5YS@)~
z!)g}x=H_9`9XBvWF*CeWl@qRlNgRSG30L^nF!~-2#wXn-B|1SU4GHA*cPsO~9h@eZ
z>wTK-CR-dnT_|LUwmKjgw}&2M{e6@)X|51aq3magL1|=B9|LJm&X1BqiONJX6I|7{
z7C9yc>|{RLx-@~->LLc#7k;)cD2kJg<PMNJtbB?_gG@i<)gC5QKD^;Q+7&4d^frlg
z@krfg$t%W^I85{4Z9a?*ti4~i-~0IztDeR!t^R{TXBNc4aOJ}%qZ(>y9nNuNw>9{W
zKPa+*#s%PQ43UA!CDPsxM}HGMAe@ShxyxknjgusKz*l~xjBh)emLOFl&Z>A0@D(4j
z_cT}c3>3Q%MJ?sXxZOvc9703?EEYsuS`@xKSz17lv+kp57}MURr*de6+f|pZ=Ii<4
zOr{n;^DJztI<}nBeLuwIPLl+SQ~L?%-la<6p(t4ETC{~Q<Joz-iquB9J@wI5{k$b0
zJnG^$JMEEH^A5^e(3v(%+T|lppRZLif-M6hoG}+iy&<-gOmH3EcNdx7P&1=!e|BdX
zu%GI+iY5Nz*Z>4hi+F~kaz&YLw@))qNgk>alUW}z<t1N02sY&x`rL}731S0x202oX
zV7zp1Q4JjoCxG5e#%Nc3vF@wMxcEntA^5-B;lFNXb!`uvSu~x&M3zJrs76U)nI!=~
zX)DT_6_!B6U_^0614V6nBTlmVn5cppmQWT$G2%f<?QGHxV5m!>lS^Ib`oLxmyVS(a
ztDG;zdIYzv<D-2^68Dz257`dm>2)SQ8*EIXpRc<0)*()@+EKbeT!|tm#)meC8Qjm@
zTJHUDGY`6^?fIyK>BX}3wFC)!f^%^l!I+UO`%$2!kQ}AbnIag*H$6eoRPq?~hdUM_
zGks~*8z9j*kY*S$y1_<+?U0gkZ;?B3yVXz2aWj=q+x@D<s&Vv`PyPHxfR~jTtrjIm
z8n65eHFk^niqt`8>dg+EYjbDK-DR^otZ{%L#9-7|6>Fe(%$6w<F9QlVcLH`s$;J;c
zOsp)%i;=n+q(d#eJ)4i?$sP6yeK)}Je#C=`XuVgNi&R?7(d{T%TM1I-F~lg(&E!as
zwok2v6L0cJTNDD$DK$=lRo<Y>D^0jWNz|E5k5HQhYZad`bI{7oMY8Lufuh+#z$x6s
zMRILE$<tWz(R%-0Q*pCc{~*QPNvr8%$+2J66s`WN*%;gRx-VF^U%@*be;7xQ+W-a{
zOO4(uJec;em%Nzjxz{09S*PCyp?s`Mm%Cym8#ZS2$M`OlJvhi#F4A~BI)}G)s5Lv5
z!xqk2({a}#K*FjwX;P37-#Qq~NXc%fa@ohR?;6TcHoUYvca)B$TwlmT^q_@k7KmdH
zS8e8d7#a&maP>6PO>H*-EHY%I(tuzT9AhT*C9@qSkl=CBp9*Xrt`ut-ZzXR=v<RVM
z7&R9q<O0NDC0!~gtHSG=q>pa3po4L`l?q{JAhAZ~gVg$YxV@t8SR4axwaIWRY%|}{
zmHSmu-v;^FoErc{$jV!FCgm}e^yUvfAxO}mWeqf`ToM-&(FNNWW`%XwV+usL9J%i1
zhk=5tdO~|acjj%0wv#Z_hswlp-IPgef<DcEJk#jd!d$cB*b%=tMx&23ZK&PWysHhP
zZZ6$GL#x_qgYGQadbkCWRX@Y_F5VJ9KOLm<_RA{0#i}g5<<wO_g+cq$SB3hh)o+u3
zYoq!I|D|YJrQMgG!d1Cn+f}=t;Ede&VLtrW%3h}5(b-L1>(<0~oI8({;rUCagoZIK
z2NV6AQBv2jQ(Y?1Nn9X_7?``d<b(aRR^+VMRiY-#Bb7P~pu?8WkTb<S&=UX1V)Wbd
z0Il!C+_2M>d=%_nP~4r$@sS9X{QY4f1R&8SNJz8JqP4e8kvTk7N5*}^2seE+i^D@<
zW9=KbzFvp`w^qj4HPb3xM@7{a%`EFZR#MyQP#m@&$&(AV$3|Se<~p1*X;HedgsQvs
zQaTgkr%Io_Dg^ybTng=5ERQXj(nbnm?;H~)kSY`=EgIIky9IrRU&PrBJ@_XP@m{WS
z>Bzai@pvU*jTk>O(nYTv&k&#oh@HHg>Y)QG4yM+_(c1&JVXF{Ke^^}uh!hs(t49~P
z(y~l_Ag0bMZY!Zwu%0TO_u$Rw%wuOgla32wS)fp1bext<U!G{a>N{7{^0ubaL$V$m
z)z&pc8@jX-P)70B@}?K@0^7D8Bv^&@H2kt&v($7~Yo!xY;Vb^gjI_g#_ddXSvANki
zPIf$F`+1aZZye;Axea#@QvFCC@v#l`!<I76p2iWlNIA@lrbrrl!yr1Mh6qC;4H4?$
z?gCOcJ(1^FKUbF>0v8ATdx0lK^OM3%eDihDv5uKJd9SR3K4*Cl{GQ%VZLtwxJsct8
zp7_Dv#?h)-8v}-BXhkMsV(yP?D?`H1F#R|V3`#TWZQ8Och54ooJ4K}|i|TjeLSPAN
z%S<Up>QU!?kKkBxC^bAl7L-9fTER3{AeO^(z^j`t4>LZh`lZlz8Bvff2sjwO{$>Jo
z{Q;&LC`;2%*QTdD59o-hTh|PTEKbUgH;kAk?jtd5LA=s7Q+!Qxvo9^RWL-kh#-3D+
z9<^e7C$y@Ln5yIt3dZ0Tc-ys~TLczS^jos0>m<+GeLihq-pGUV8%@JitO$BM!@1CB
z-@npY@;ZRH0IYN39OiQb<Uazf!Zbf{HLmszE-{j_Hx8}|n?l``A02JT*+TJ3H_tDx
z3`U+h9ewB;Y%$-i>L9m8$%5QeV0e~yyasKV6?Aa!@TFbrT_ar?gg999GG2!}x*KF=
z-^?0>Y0gS7C_vDM8FYD#IOf94Yed1UyueJkB5<MWZ*c9}#+^K7*sS&d9^vS>z2=FD
zBR)Xv+D%;<W6*S7ao9N>_3bf8o#+_5Mb&8Kvscl09ETBLwZ!sS8q&J;|Im*>*^WOv
z>w-vDj!|aFdH-S)5KWm3TXlA8#%`?aIyuJd9nGkl#j|vw_hwi*sSctJz~8+aMf$~c
z{`)-M|C1JNrSA-|{)fz1;#VvDr^c^oy>!2)_0s+Sr1ic<i~a`yZz!~{slK#-m9+ay
z5)b%Cvj3LeE&RVkwtXFktCeMk%82zc17iCgwFa?ztn+kS4kUxS<Tny$3*w=K0yZY)
zP!b8PM(xY>kzj&YLmX@0YqBwT7vsce8JsKVl^j(aNsr|;?xNuMxpE-MWMfZwk(5}u
z0fbAC{Wx!W#$ak{=c65a$wc<gH=XMQlY7ArC3+gnH2F?4_NQg#m`jjr)Z^(2=fI4P
zVKud)z;@q}Ue-sd5WkwM3S5B>xcl<VF)eiiOEQB@1<JoDV>e7@g{7CJs)S8^!BULZ
z4Qz1}Yw8yP41{6~WIzaE74czNZH6vb_W3mcW%5OlO}CxV<jIbJuC}>OYj8$>>0LUJ
zCGG(x91%{Csl`4&Gj$FgsDrwPwP4wwG~`8usa}D^6U&T_AsEO7zRZOU`w1f-h1ZU6
z4nx#7sf8uZv~+Bnfb3ofZUbo<hTF~1qf}B0d~Ud-9b>hI!vu+ASDWcR<vb0FmMw_>
z-c8*UqUvTNZES@i0cNh+KV#)gn|bvV{)UN@o2;4sOE0F^T^QfJLt_SZ&n^Aa!0?BS
zBx;bspUzPmR};$0FSDG{d$G?bFIC<v*FL1Ty%c-vzJ_Lv^VfbnCisEMNLmu@kY}X<
zCfqM@Z;K!9S!KHK_1xG6_D|<Vss9Iy<~6C@7GUpa25>-&5QKg$5qNjv`>3C@7nC1}
zAArxJ`MDI4KZeW#d&V-PW^#SGC*AmCDT>%=VYa_n;5Qmf&N8vEY(~LpUvmT;E0DZS
z0b<p`MZY^7ifbi_9CI(;wJTc>+g;|Tsl}^AzAahjOnX~=uoNZ-V|yrh!;v``MP<n=
znE7}!sE1cwy-4sjcBMw)=YZFdMZG>1q=A4@LH>H{zg0y1LWu8vzB$;xZ_QuWey@=D
zW7WW0GXHOs@B11Y{+;a)^%DOi_^rC&7kU#+`}#NiQfu({U45%I_?<)kSB~HH&a2M)
zd*<Ie{3g!xKbe13T7Qr5R*mqx_{zUQ_@y@C?@`{W6Mjee{tqbssrLRJ^{rarcT_6i
zzpk`+>)W4E|4;408~E?3k$+5@e5+pgjq-h6{ss7-YZ?ByqTb?xf4p6IOThe%@_n&i
zSL<IDi~Q9PewXs!(lP%m?2lo|Hxu+5<@>7R{3~JqaeeV;Nq>x2y@fe{qkP|Rf`2RN
zmqY8HCH(Qc{1*56jq-h02><62{#_L8&wco#Ya#es2VURveLG42SAF>7kpEg~{dY}(
zLHh^o^PBhb_j~2dfBA*pG=a!}GXJ$V^Y?(iFQzxZ!2cQGKX^C4@5DF%=8s0~&A<7L
z@_pC;my&+<cK-ao{?T&0*~Z@}-xrnPKPLLG=IU>U_9pOmOQ|3Y_Uf3v7NNa95??<d
JGQNHL{{SYyp+5is

literal 0
HcmV?d00001

diff --git a/oxAuth/Server/integrations/otp/repository/com/lochbridge/oath/oath-otp-keyprovisioning/0.0.1-SNAPSHOT/oath-otp-keyprovisioning-0.0.1-SNAPSHOT.pom b/oxAuth/Server/integrations/otp/repository/com/lochbridge/oath/oath-otp-keyprovisioning/0.0.1-SNAPSHOT/oath-otp-keyprovisioning-0.0.1-SNAPSHOT.pom
new file mode 100644
index 00000000..c6fd2787
--- /dev/null
+++ b/oxAuth/Server/integrations/otp/repository/com/lochbridge/oath/oath-otp-keyprovisioning/0.0.1-SNAPSHOT/oath-otp-keyprovisioning-0.0.1-SNAPSHOT.pom
@@ -0,0 +1,40 @@
+<project xmlns="http://maven.apache.org/POM/4.0.0" xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" xsi:schemaLocation="http://maven.apache.org/POM/4.0.0 http://maven.apache.org/xsd/maven-4.0.0.xsd">
+  <modelVersion>4.0.0</modelVersion>
+  <parent>
+    <groupId>com.lochbridge.oath</groupId>
+    <artifactId>oath-parent</artifactId>
+    <version>0.0.1-SNAPSHOT</version>
+  </parent>
+  <artifactId>oath-otp-keyprovisioning</artifactId>
+  <name>OATH OTP Key Provisioning</name>
+  <description>A module for providing OTP key provisioning support.</description>
+
+    <properties>
+        <com.google.zxing.version>3.1.0</com.google.zxing.version>
+    </properties>
+
+    <dependencies>
+        <dependency>
+            <groupId>com.google.guava</groupId>
+            <artifactId>guava</artifactId>
+        </dependency>
+        
+        <!-- QR Code support -->
+        <dependency>
+            <groupId>com.google.zxing</groupId>
+            <artifactId>core</artifactId>
+            <version>${com.google.zxing.version}</version>
+        </dependency>
+        <dependency>
+            <groupId>com.google.zxing</groupId>
+            <artifactId>javase</artifactId>
+            <version>${com.google.zxing.version}</version>
+        </dependency>
+        
+        <dependency>
+            <groupId>com.lochbridge.oath</groupId>
+            <artifactId>oath-otp</artifactId>
+            <version>0.0.1-SNAPSHOT</version>
+        </dependency>
+    </dependencies>
+</project>
\ No newline at end of file
diff --git a/oxAuth/Server/integrations/otp/repository/com/lochbridge/oath/oath-otp-keyprovisioning/maven-metadata-local.xml b/oxAuth/Server/integrations/otp/repository/com/lochbridge/oath/oath-otp-keyprovisioning/maven-metadata-local.xml
new file mode 100644
index 00000000..c7f4b52a
--- /dev/null
+++ b/oxAuth/Server/integrations/otp/repository/com/lochbridge/oath/oath-otp-keyprovisioning/maven-metadata-local.xml
@@ -0,0 +1,11 @@
+<?xml version="1.0" encoding="UTF-8"?>
+<metadata>
+  <groupId>com.lochbridge.oath</groupId>
+  <artifactId>oath-otp-keyprovisioning</artifactId>
+  <versioning>
+    <versions>
+      <version>0.0.1-SNAPSHOT</version>
+    </versions>
+    <lastUpdated>20160926101334</lastUpdated>
+  </versioning>
+</metadata>
diff --git a/oxAuth/Server/integrations/otp/repository/com/lochbridge/oath/oath-otp/0.0.1-SNAPSHOT/_remote.repositories b/oxAuth/Server/integrations/otp/repository/com/lochbridge/oath/oath-otp/0.0.1-SNAPSHOT/_remote.repositories
new file mode 100644
index 00000000..865f16cf
--- /dev/null
+++ b/oxAuth/Server/integrations/otp/repository/com/lochbridge/oath/oath-otp/0.0.1-SNAPSHOT/_remote.repositories
@@ -0,0 +1,6 @@
+#NOTE: This is an Aether internal implementation file, its format can be changed without prior notice.
+#Mon Sep 26 13:13:32 MSK 2016
+oath-otp-0.0.1-SNAPSHOT.jar>=
+oath-otp-0.0.1-SNAPSHOT-sources.jar>=
+oath-otp-0.0.1-SNAPSHOT.pom>=
+oath-otp-0.0.1-SNAPSHOT-javadoc.jar>=
diff --git a/oxAuth/Server/integrations/otp/repository/com/lochbridge/oath/oath-otp/0.0.1-SNAPSHOT/maven-metadata-local.xml b/oxAuth/Server/integrations/otp/repository/com/lochbridge/oath/oath-otp/0.0.1-SNAPSHOT/maven-metadata-local.xml
new file mode 100644
index 00000000..cfd6fa0c
--- /dev/null
+++ b/oxAuth/Server/integrations/otp/repository/com/lochbridge/oath/oath-otp/0.0.1-SNAPSHOT/maven-metadata-local.xml
@@ -0,0 +1,36 @@
+<?xml version="1.0" encoding="UTF-8"?>
+<metadata modelVersion="1.1.0">
+  <groupId>com.lochbridge.oath</groupId>
+  <artifactId>oath-otp</artifactId>
+  <version>0.0.1-SNAPSHOT</version>
+  <versioning>
+    <snapshot>
+      <localCopy>true</localCopy>
+    </snapshot>
+    <lastUpdated>20160926101332</lastUpdated>
+    <snapshotVersions>
+      <snapshotVersion>
+        <classifier>javadoc</classifier>
+        <extension>jar</extension>
+        <value>0.0.1-SNAPSHOT</value>
+        <updated>20160926101332</updated>
+      </snapshotVersion>
+      <snapshotVersion>
+        <classifier>sources</classifier>
+        <extension>jar</extension>
+        <value>0.0.1-SNAPSHOT</value>
+        <updated>20160926101332</updated>
+      </snapshotVersion>
+      <snapshotVersion>
+        <extension>jar</extension>
+        <value>0.0.1-SNAPSHOT</value>
+        <updated>20160926101332</updated>
+      </snapshotVersion>
+      <snapshotVersion>
+        <extension>pom</extension>
+        <value>0.0.1-SNAPSHOT</value>
+        <updated>20160926101332</updated>
+      </snapshotVersion>
+    </snapshotVersions>
+  </versioning>
+</metadata>
diff --git a/oxAuth/Server/integrations/otp/repository/com/lochbridge/oath/oath-otp/0.0.1-SNAPSHOT/oath-otp-0.0.1-SNAPSHOT-javadoc.jar b/oxAuth/Server/integrations/otp/repository/com/lochbridge/oath/oath-otp/0.0.1-SNAPSHOT/oath-otp-0.0.1-SNAPSHOT-javadoc.jar
new file mode 100644
index 0000000000000000000000000000000000000000..9eca484ff18c15ef82507ff7d9cdc990d9badc37
GIT binary patch
literal 68069
zcmb4~1yo$!maTF3;O_1a+}&M+yL;j8?(Po3-GjS31cxBO-Sv_GzkR!Jzt=tPtFfVK
zRPD_;RqQ%*eRHm(APouz1N7%sXTc@;*Moojg8sah6;%<Wlav!<Q256*D4^QUX*8+S
z_jaEz2Y>#c{?}=;f^w2#qRJ}tvSK%~6XP<{bo8_E(sa~Q6VnY!j0-H=`;N3yQzNv}
zbV5*&dqrwV=rlc~Zf#joEKX8@Z0aghV(Ca`8Z@t)@dOr>o6i>_mA*(TDfcMFfQOG_
zmBDm{o0PdD(NVSQQmqhb(cZ%Sf`^B5Z*yw{`i}zy`s)BckLjN`u+K+Eb~gWf3;*{F
z#DC1Nwlgv}bhI!wGx=X8|9QWE{@j0=Y-a#4|1T^4`v-~nKdi6=*#9r9i2s*WM%D&S
zPIS&r|9PBHfBpL~-L;LyL4bgMK>z`veXcjKw*G6Xi4&cvqk)YHy*a?fx+-ZyevJ{S
zXN%&@m*bVOSNOC@G)z#r3{_*+Pi?_^b$*Y$WoW`7;;i|$J9oD+ibxh)r&uJM;o+(y
zR@>~t>*wz+F$~6S_GQL){*JC=&~VI`)pHh?sp(9_P*yoVoct<4{hSb!i-WWu>eQqh
zrWSoFV5KBEo!Ms?M!j6Pq<oBcQb(@+V$1oy0Ls>Z6Gb_QvYf05oie|aN)QhKgZd=)
z@Wqm~&j2A2jVCO4qyp~#i-*kag=7}4K=IDdmQj}A2~@&;c=sw@E0%AFS{80qVA3Jj
zLL4&R)IKrUn-uo~{jUlvl#vW&DO|p`9&Z>;qA1bS&71K<4tvfcR2NSvK|N@z*}nJM
zVMxY3k}wOIM02k-oM=d4gwEMT!O*V|nU~*^(h}AwZiw|KF$W0>mlUD$i{7CjRHZ7l
zs2afwNVa+QGUyso1Pm^RrQxxQh`vb;HF0n>q{p*7%(c_&laT4l9(V_Vde;`M8BFFk
z8)u@+lzX9lOAt`|os|&ISXA8$$y?Vj?@aVVP^n_yv2HezYq+$1Oz0T_BB#w#>C|O_
zE4Y&S&C7UjV8kn;5~W%{IkQfXs@{Rf!}1%}QAENLo%<Bh-4C!bZ)EA`wTz{u1uair
zgOV;M(mZW!J=Zz!v-<uZ`IY`xnuLq%T+H5=HO?QoHio&A#bdLlFa~F~I0+0wlKg}3
z58cAt>bB|<HE-{bT1^dHyxd+i@LRJ#F6j<}FI;pV?{E5CH@>{L<kXsWFm?y@IW@HP
zu{|(!|MLs?_s)CME}3Ne+<8KuI}hVucb=`?f9}0vm07tpMpW<IM&H&)gMiSVl95P(
zB}!D*qM+Xt8!Y4#GuOYG#^@NP&UNQzH&zO-HiA<r8ve%5bvmz`U*je~d|Dm_k9xdA
zlR2NNrVkY$9_j*wMrGgJ9P|@Kf7wo+QRA{`REW}9M<NV%iu^L9R)MDDTvm1vwN>Aj
zd>lt*L_4>>U-WS=YsV0=4Wa&pNj$88@k_Y?G_O4LaeIkCyqy()!H^Wkgh6wN=M|-6
zVy}--ti>x`cp@kxcJ&+YAUGg~@F?f8V$J{Lh~jWybT*_&gn}?E>e7IUK$)3!HQxnU
zk0DNADN5<r<>+F&JQ0nE$!xLft1v+O#Bq-56fr3vA7!Z^`0dIsR)2y5X+Dj7_STd!
zJ!S|OB5^zr-wH^}gHB3D@_h0X2_jnYmG2mL5moA#Kp|f$+}SF)SpWc*h0!*fqA8vC
z{qn^Yyvod~IZ37;(3v(#-Dcl$IMZXA;#bAoEykPokaFu;i3LWwCdSC})E-0XPwOT(
zDx*SryPci0GI&&ij2{<NugzzBQZ#i%1<;hp)vq!u!;XB*`Kd7?bMzptHbI>}9gnpG
zW4ay?Efp^d%cS6>EUBKvDsp{_bXWhm^}a|y!^(nYc(5LI2R)=+-t$~_&%KEFmR8EX
zWzQR}US`o1kJVWUxA-?3ywN7za?cX%Xf;ajug-L9@1k+Z(0oj9f0!K5UGIO6vztGo
z=7{D)Sx?i+Bc1=(ozsii_m7nKeTx4$xBtD>uA(cyl0X3grP2ZcvHx2qNeLSRBV}^~
zL2ENRM+<<t&0nX%vu_`EYi#HrodO?_a^THiVMQER9$Gjr+Z;#5Edy+ZuA%*msExPQ
z4*8;Zl52PH58YcNRHG4eE$11x30iOzDH2`7!w-BHuw*%2PD>|nA1nM682uH}bH1(~
zPtC$S{BR!*>(KoTJLxBnd>qzs`9)=h8R1FSj64?}1JaFCy1_e!bx`QT{&9)+Zg}J#
zW8H{tNH75!!@4I=4T*MMxd4ON(l3NvcHbr_`z*LDJmOZFpl4b!U)UuCmEf7M=tk`T
zaz@DUonn{5_K#f-KYvmXlc_(l`$ge)l1A^UKl1Vss|V(e%o^;P@QtFfl8H$Wyni*i
zDOpA?3sHILH-W$pU)PzRzZBGJ(@UhxSMs;*!s)v5t#!00;cVQbQV@xf3{@_UbHuhs
zCL<aB1q~K(Op3$>OJBl@P1-m~A;g?5Gpbv|`-8C4AQu-RRIr}_u=ds~YA3P!*78D;
zzpEpWF-OJPiMgy3KS?{x|2oU>VNtw8+ew7tHm~e4Do6&jN`k$d$UverMiL(6Fb^A0
z`>cZu<`S3v;|N}+VZVxalv&5bROR9uZ-H^+=-fScH&u;u!WO2Ofx&ouSZeOxIy1TN
zd(^i0IN8&NP6i@QBCiU|*F4yX43Lze%Y63Dml!I76+aP1wx+CJ*O#IdQa+(VAv->-
z<nO~kz^s`WkzR`r2J#nomd78h<FAmZNMxRbCRF$?LHWWKq7G#mI>XkR&)k+4+kj!z
z@bm(b7&-qDy@+&D5-M~UV|$d0-VoJfe}^K|E22Py7Y_*!yOG*uijDi}(zBBS_6PJm
zLE=IL*7%WjKuijiK>FNM*ci~7v@bcQro?jCB0NnQ9+F;KNnT&!0Dki>oD*9e8#%;A
zSn;YUi(=c1Y+C?RqEw+!GZe>eu$P3>XcB$!Vak_%{ALs{_;aX4d+@}W9#WCCAgpLx
z#>OX0wrr&~I2p>TZ{Ewtdt%kTQ4d^TcsD{W5@yPMb2dQt-_W;OM86;IB#j~1Z?;0P
zVzdvSb4K1-K*urIhNW^>(}u_h85guoD_(F0Hq<+dvn}0ukGW56SG8@$vjOKkVS+f$
z!TzXH3SqJJb+lKl<H6CSTn3@cZDcUejn9vCu!z1=n~SYpgn3!EX|08OOAn}m%6AM1
zpYXKHzK<61Ra{$W`Vv|F$c9&TdPiPSHBL%v>tW8k26x=)wEQ57`4k4BCgMXqWID9&
zVl$PEiMOmnB5pghk$@nV<kZeu)+9M5<1fwsTc2J&)o!<w?&N2SU~cpSx;bl|Ia^&_
z)OAZbBpWCs<`9cqDn~NA(D-I+qX7%JJ$T1l32`utg)EyUV#<kPE4e}nYfIv=`$Hw4
z^8y)S;;UeL#(9{RV%ObRka4S9OGRyBy!F`_lypKN9lfn@TwNJFm9*2Sx<)fwIfsq+
zi&-=SUHw<<<&xUHR+S$0DdNoIB06Dv_Hf7XMugZ_bLF7SzS0>|h)#c_?fCdOsOA#a
zFoj;3lvxf_Q)P$KbF?Y*i#q<?1;coa5Xb>i(o+fzUkYM1$e<FYcjQMu+mz~vfH2d8
zcIN=N`K4r>H&s>vfY4X9R}XT2-)2unZV1dmkczN5?xRDV!R#E^iNUa1g^aq~#*f6g
zBQRg1<FAcUq|7JK-$Q7S8<;>Xs`T&8TZN_ApcsxIvYSGSxj->K>^B2ACMX!#NWP&@
zP%h*32H&{h*+DIHg^R$^6(d8<_A7LuL8YSFg;_7wn_{RKV1Q1N;Q?>$VWOru%2XsN
zr^N_-`zFJ;xuH_UFr*~oofrh#aDxc(t>EHGcf3)(wn=>|g<roXsS<?9A_!|{!u*CK
z$hQuUXfn+P8h(C;$+>C%nY>P=ONR^@1>SGN2-}}YlnU!yfEI%!v7eO=y*@WH&##?D
z1h@`GvlVd#Tr(D5Nq8M*izJHH6E@pe7C>Oou&EZTU{Jc&wz;TPWrZV)7NYjJs(Y5y
zXc4v!g?Yi$F(?AdJeupDpVa!`3J@cB`Z-qO3k#83u(lj+>ojIIgR>0Y`s2i4m_s??
z{FH5}Ctd=Xw~P&~Otg#%S~E}T6f;@S_}bmNVnZI(WjOE29_VGf<^wTK)yH4qZUq??
zyh!O+2&-cUg|alxJjRFu8Ea+0<TIke<aBPjU^9TdKXn950*)gz$PGuKuRZ|Q=I)(h
z3qyl_{JT4A!221h&H4rK<6y3R?4>w$<~-Ie)Z7}3tHFyAc1_%-EU@~BL$|ZGbCW3N
z?~CVGQ`NJ@gP9M!g%)c>zIc8+G(a((4Xl(tap~le49nO`H<Q2Z!NTw9kwMjtT}1j-
zPKI_h*-gzpJm_Bk5<P^*T!*hri@&<^n=^(3qN&!lV^gqoo4o03$@>e;T`w0^0G!j*
z*zhlUKF)rv{`-PY%ri2F8DBH|1caN9g*mm=C&*<gREGn5@1N-_#0DUh`&Ow<DF^@~
zEDgy%?7B4H;1jMLQtX)QEp-n9=mHhdn#WZ+w<XB;cfiYKTl|SjGC+y#!?YPInQ@ny
z_F>LFxF7Z^Po^w2dE8Gy?|*U)*5I0rxU8r0q32ewjZ}7qS9>$)xKp%nO*yRMAb6^`
z=#ATSCE`F=4L07(gq}SAGQ#7`?BHA3`N@ZO?#8u#1!&!Mz&-yykT~qqMWQ!G!uzX^
zw{|(_ni9c%fh>u*&=?$oLx%Dq%-Z63gsQsG#FjLZG{ftq;OcsK`5xC+U?yvTjfPmz
zKWpu`XUrbyM5TZU8!J>#<Oj&V)*T@zII2{i<?Y*NeM|H2)gAIG3V+uc8aAJ`2GYB3
z-p5WkNEN6^LN==4ng%{Dg=YOAL)ZrV3#tOTjYYm_bkP}h|NBc!5$Sl{Mll1FT3!I2
zGU>(J4j#iK#_zYO!`NPM?dW!P#z%V>rw!oYySJ@a?k-<Gt`=CkA0D7$0Y%J;(DKkX
zZ;?5ma+NCgn-8hu#VtJdt!dANTKsA(_d{k`(#N9Ij^Czpzv{Kp-yS*&l%Q&>Pao>^
zNN~a9W@PX(ktx<am}MvlqDB*H_vRW467z+8>-RiayuiL20=`6Tf5e-Ei;>H7c*W-*
z7N5a;hY`OUlB72lLj$fVlK#k`i0nDKRGC$2D^wN3!(40WQM@f=_Q>tyAQw_X^TO0=
zw~N-LR*Y)qlc4sO&+89MlHk0-BpA+@D4@FIP^=qPJ<z!m2mOAxR!B2b*slJ7eO|ka
z59a{B8h8>|V)ul$T5K!^N+G00^KAZQ{h9mWaKOAL;T9jv#Ghm_LJ>>399O|yxcXT`
z3er%J!hhG@=dOYLa)O+M$3Dbk^)kgM-ne{Brekf2i*V2_vsm-yJxQ)2z1v*O2e~^=
zyy9bTea^t=9qv-m5Zrey-zNcjVWvq0baI}}T@rgX_D%B4nOMhI7#xIA!B9?*Kmf@v
z(*FC*2?Ytr+aZzp0SoU))w>!KKyLZhdtLu4<Rbp?S89<m6#B<5QKLakD!tf3<Jo6$
zUY5ppDN>PeQX=6?l0J1WdO}n$s<O+BuFXnKRjfnMFQ|xc;%95fw+sdg1Ohd0Ynm_3
z8k6$i*M4;_z#+kAy!Acir~)#h#H4-wPuJ^0atDc!1J`_1Wpt0a$5b_+6$Q>zVUQ^E
zR|oKD^MUCp3%c*D04)Z)1gNqZB2Uz;1|j~UHpwFD<iq5EYvm@jSKt9;?00PJu8@$}
znM)Stu3^-Ju_tS>fw6h2ehc{1%0-+uA1pg~?(y20<uqW)cEmEdaUgeP+rdW`Vy>jR
zA-X|KqWcF*b<AS0;x<tdT)w%iFw=k-=W-V;E^ae>-6_6=XwF@F16nitsx1OZ9OaZY
zw<V`J8m}s)XD3r1M-f$E9z=K_*8*}3E+l~BY<?*8A@FWzQEuZR<;y%DBWB3C_8hzh
z64T(=-g^4HJJqHBh&TPJ^wMt4oPufT+Meg6KPe0@Ty%QL^;FJa2eG(U-`v;u%<J%!
zwBhfQX{v=rsji3dp(hTiVBq^%wty<QJefE1XYfJ~x90X3OV3jdMl9a+g%nKOE;x`Z
zTIEM_r|BdWL?^(|2#hEvk=W(t5|}asW#VmJBbB^GFhIP_Ee)EW<R_kHZP7|497gBO
zhO>dX$;@IFj3*O!z%+fHoTdS5af7?JWk|stmEjL*+%wMl1IYBFNL<M|?f$Q(vb5Bp
z_7AUSXAHdE?C=+r!dDI!x5`N%C+u@`nO(A)Yb0YJa8>i_M&7bi+94~J=2#p^j{b+x
zSzNz>q!q*pC}-8*j9%y!3*3kAw7&ymV1|U|(Lh&&ZpInmj|vl71nK1wT&)+Kpzx8W
z<F{mtFxohuol{%^eNUtOkyz38=w+ezMNbBPRn5r3eMrJB-muU_*|M&m;YT4T*~C^W
zk64z@u@!2&?*vPrO=HV=p>cwO!FrVzskPcKx;~tGQ8Qe-?^9)y+LSGX_f9*adU+zf
zQH+Z_QEM!f1$6u0CYfRn6W5ED&YOt6(QK$p;C#2;0ZNF8{qWFK4cb!&(2)~58zH^d
z6)2O3v_*Y!2D0{DBV9rfY&Ry~^|Y5Q(gnfEngZ8zCP^(})y6M@K-4!}hT+2pLJD(#
z@iL|>Vr~zS;s2uOZN7_#7d-djF>oqV_KToepI;<m6P*_s6|PLcHe>0UsrbUIrri@z
z%b8r_yCh09H>VPnt)c-@Xr5)Q?IiO|M(LgC{#l_cwca3TmQ|eioK*5--*sdbJ9kuv
zXjAd6tpHYvYtB0y*|ys6>aBeNdi?D*1RKjAc`xOpkr$o7<FZe3p0#h9o@O{|0E3Ql
zQAPTC5YQ+&=#xw9;u<`b#=>Gf5$0&LA08_l?yi>aYiGbAUnUv{xXX$R1xdVtnMh^%
zSzwZj<w$@a|GVO-*w5hleJV~rE)Wp&zpXez&KB0jCXRm#kLEvx$6wWd5tw>ZE+Wr{
z7BMD~b_HeaQ+WCr!IDI@tj!fkEIKx8Ke|2<*U`GgHnW6Afh2sC<id>s@j{~HX|HG*
z>wS}7^!F#=F8Dfmxz7s5oV;}70lYqp-3%dh-R>Z;VX~ykDdm}N-sY<VvqZ{Hn=Yn*
zJK6bcJ22gcF8dUap9W8Jqz*)?o;Kq1Tk<*RERfys;eXj{&nPe>3YmA<j$4?Jgo=r5
z<Bv~*s+5T81NVqD<2XPr|N0|U_pL<H?vyB}faVb|4(^PgV5ryXk@KgxdZ6BnPp3l~
z12Yi}$*20fXUu7C1Ki3b%GY;@Nf08e8SGKrOQSZ$DWz)TM8NGr%+93?Qwt*EmvAIW
ze~~O0Xh>~mxkZUfQkwIS;}26`wT}I`*{t>DDW)X{S@byD;RFFG_jIn=L1;gF2O`gN
z`7o?G(y9wipvsBs3GdyD__m7D@;<h~&l<s)u}Lhbu`SW0FG3zf2}#9B)<T#tCm2px
z*mK3x{oG)DIYHXswhhO+GLjOXmtGDtuiK&mDT!Pa$!fHzb<~*QE)IJg$r!?;>!si*
zE&g&v0!BcFen_ykK)@yR^^$SP?WR!{U)Jcln!TL2a1NYF1PB3?tYmKm9|mL(gqr&G
zIne;v=N5>2KHPRsZOe%=yKuk!W7YH>d{taB8cNX;0<_DnPV-80EcGmH>KlJxAjFc5
zN<o?wF7r<qzX$MK7*rU(R1r5>J^7`Aa**45=m<n?xV2^B1#aPfT>|H|Zv2*-$XTyg
zKR8qic>#di(jW_zl>ad5v=A*%UTO#CzBON0Kdqg`s14JjO5%@*C=?fgP&8A3bzdZF
zEwC8Qs7L<XjC1D?WHcpz;buw>lVG17C&}VZ4N8IC&$KFg#47?7dL<L`ibf(p`enw^
z9vpNqc4Qnd*f$S7U~xyccnq(^FY5yCt!A6wTn8}=z_HCv@xMF1MkByAnk9<*S`8fp
z<I;zY2fLO;NXl*vHHlXhAxSP#bkj24^SjM2F`>N>vtd_fLW6!==)rYQ7HVAk=M(1%
zC!iwhJt@5gS3?z7UKn&YdV3V(43@d#a3&Z45WiGgdRVngdUL=bj}maD9wi6pGli7z
zucvi-kn3lT*yKDTxu$-^g)nn}ORZnz5ZUeV7r<hUXLkwQL=E5Nbzw+fPl~;ba35HW
z()`Nh;ueVSe(6%dSgSyPq_jK>lxzYl!*3$O9*cqDU=xYwNj^ERXoHad>xK}>Fnw7)
z*t2BaBd(Pt1fw?Tix7{UO+I6jKcl3}zO1_xbtTU6@W!nh`-QDUG}*Le8^>9WH9dOf
zSa9{N$j^o~zUPHs$4QIgu=Z+*-zF6rUE+XCW8Uc2R=oUWys!INC+~EKe~OgU3$oAi
zTl!#yR#ABvl}RB;tr66It8_zdxm|xL3)E6;+y>RU8~v7R1p_Ihi=zRI0MiEK4N{7*
z?Pr+0!%^~FVz2*#qQ>ftIgRnPM_6pzsmKZ;iiAUxf+uAfS<dKDbPw;e44`>Kl6B-#
z0S)rWwApWj_yW|uFjLo-)O<coFOh7d$Tn?t-RmJ7JhD4Wripe;{S02k{p1r{MeBxH
z*+<HlU?jiNdwDf{2aUK2?A?~8mLKR^uSu<<Qr)7bgL>_=kurDnHv(3sF&Jzyq)_`9
zmGP!pH@2vCm8%z{++^^t37ZeBEBtDHeMO7LIUfMlUJ7P)3>WTG3vw4#sQf`aA0#70
z42QFT^1GqR8+)Efb*|Xn%;j6NGO!%{Av%SNIYW!XSMar8%k6CDsX*SX3mO~hJjRsU
z3T5`#$mR;7OohJvlV)<jtkgsjrlfP<Bl1zcAqUHqD7T?#QefCqDT1&E>nMP5QDS>9
zW<Ry*KlM@8UAB_JvTIXbx5Hoh$)Vw7ybtH1<1;pXVasz&coJ^+#zDCG_UNF&itrOT
zY-@foRYLs>Utpha2+3gZxEmLQhMI+{*Ret5)NxczT%Q`67lY4h{pHg^rO~$v_SNWz
zwJ|E+CsM%rAA+iYe7jTj8A<+?7=0n+a@dd?;>h&y#$`O{<4gGbE^zzifB5k%pfXCh
z^^BuvJI4Mj)5x1_=S4-0AHkL!R}k_EP?%UoOFJt<1X$$y;?k~QcoZ;imyHgO$0M)P
zQ^H7c#v>@zLkVG6;deW|wXAOwlqyU7(Lm;}kpD_hqPzUBVV`>Tf&~P`{cr1;nt`>2
zu>rus&Q{69$=Mq44`K7Rn-|0UAPB#($Angben~)g7TA@sSgqbzCA9>ZXO%s))-#-s
zobKo#6`AjP$?0goqj1o`Vhj>lKzTXOdD!A*D1JM%p27KG;}K8Y&9q|m^7imv6po3!
zsuAannjSK9*=<|4&aWdZlTqnY?qlS;;2sH29@91Wp-tbpA3r>Z8f)iJX?n_O`ZrN=
zArdqaw9y~W@5jkdIqGy4$P<apm0ip%WQ9|OM>O!yCczY#2L+&ch@+GKBC>4!fuVb2
zQ?bG&z$40j$z6cO#UoZ#sD9}L2(uOI&g(Zl;lN-nj3E5OR9O_TTSr%am}>WvsZdwh
zw-j$XKbb0z@sp|cyYcl}8KV9$m5Z)4HF9nqK8X^@{)7=v6llDN^07mKVQj@j2X0iT
z9h5Y2!5ct&KZ|Ms6EK_#<)Sce<w57VaDgChkK!Dv4ryckgt1y;EanY)Sn+I;xPBo0
zaQV}GAmJ7Pddy3_9IcSKM1@nrU$%`ZKM5fMJo_=`_s;QjMh{D9l>HXgkx9Q+2=S;&
za=J^mj&mI94!v~4@6JTI((F&XY7H~%DO~J!JU^`E_ww5=9DsQ<A-JPR&x2@P<yiO|
zuO0#=cP)r@^o7BJ=F|=4a`6eb#OZqqg=+Y*khjGV1z2;BLf4NO(3F20)4kihr1|<|
z8La0CB~kZ5453${{Vw);!zGKHn%*vpztbaDOp-uhY{j()Rr8`(AbeC(+G(oe`-`t&
z_b~`qv0d$k&F%e%0*Q`Yx3XO9A~#-_fDlnFQw7r8mMCDu<bWrVXhDd1G#D<vj*T*|
z5U03GO4{^3YB0E?;gh}V<B`%PlsPcZK|%5?(pw1@=XZFxCyGdbBdio|XQ4d<PdXE;
zmWgzuCT-O>{nCnq{J#BFr8Wcx;`??~kZas8ZO+`uFb#LEVvg*5ohA>^<&U8bgb+1>
z{B9;#vLilHZamOiSzhWX4zdDqEUOKrFs$`x-Z6ABYC#Lz9ZdWS3tbTwLE-FG9f+xE
ztgPgU2V)~gKWWTyEbXHQ&$*!_6Z*Y?tXmY_iX^wG3H6v->b&3ny-suyj`_lZ7-)FU
zae2*{7i4dFRbndy5B~j(fZqu|NaP|i`SqN3lV_bs_6~b|sT-NHx%`r#>Dj0CYgY79
z#9RI|=_b@$s~s=RBUA*J0~sT-Pa@J2Mn6p^%4ZwazIyEK{Ln)K5#%hj(y{VZNkL$I
z%Tj!EYj2Oh{zF)3gz2m)NIYG)-Ws&Z?|%r(7}3$=ldwcMfkhstmXMU$J_)PqFT!dp
zX|y(*I!n?{{3@L>Ddo7yUr|HioGjuBs`69p0?FGE*kuf+n3FT}Op_ZaJJtZAb8IJv
z#;(h+%@$WO;Q+mo$;ME%ZQ$;Nz_}}GVv|)@Yx!5<9JF3x<HAcafOYmaRiUSdmS4bK
zyXvxy;*Qct2+4SlATWj>-<Ac4ZQg(hX#@(d2kwe1G|D9R>2D!;j(CGdxFad>7bvdV
zH1TUJVhgbDu&z+g)M~AeIOFHGd592;-$Oa?dOUtAGN=<^mh^nOtEo}^Mfhj1yYbgk
z3EMouy)z}Jzrg5!l!8)CbUV1ib9T(w;000arMKa1$Kv3VB?iHKLExS1WkkC`(oMwU
z`hqF!EM{X0)&|Zr6^!8&i2}~jrxMFz>*N>Vl62B2j6Yj5w{qs%tqNUXE^e`#RyE@H
z<t5ImT2f#ILcO{a7Kd`YPKvFt!4F0lN_F%J710mZ=6N^RyV$l?=~i{wgeSWlI_kV#
z+w&O_a#I4jHK}@@YD(>LX~www!vNVuTzz`!OZtKFvY8h!9K8gT5)Gt4#71m_MS-zN
zX(P=?KO_KrZZ{xEA*jiwBsuR9vcX?6B@L~zX;4jTZO8_(TFd`H=tN*JC`d)TlNF1c
zxL*{<QWb3e_bp-Uwdqm4jmYn%J+QL*#buxpQE6TtCv&0u2uc<85@lL{Fx(K8F=$j-
z*${NHY!{g^Rg;OP?^AZP^fk0>?rS_Y_qR=WKE)N9^24QpS8nzVD?d+Nz5=U9Ok0W@
zcifFCJ5C)qA&#Y-J!n3?RK9wvy+fGoOF2F*4ezff*#QhUbN8)64-8GKE9gbtM`7R?
zxyUMq8<K73O!dXZyTgpJX>Ru%P9FEepSlqc1v%n1Qy76IsL@&HCNqdEc0UC!MJyV~
z?eV_}T%`@DpY5l>fqnuT>;JF7+5NweZ3&o~>Mvx2kIAOh#9IqXhIm1pL9r?O%PaKw
zhgWE4vud)zB~oh?v4?lD-^QI_!DIFCt+(b)8Gx_tqVVxt<TNXka@NisO1EqSX~S~4
zx>8f<x2r<RY(P~~?YY_%hbEog>9q0Wbv}WJH#BT(zdz(Cq}P$eB$y>3mhy2cxtnfN
zNT2?2l}5Ox#%qaQz=7w9E_s)gw*5Wrg+&s2I6=g`Re<0MPMlVxsr_bXrMv24`2k6K
zmdp#1R2WkHyU!y6Unu0E<0U@c>2mC~D7lDXQBdQk-MsOECS8hDf)uxg@qkdi`wgum
zpCsJ_6O7RWc>Jcby=nKX<EV(zFFjadB%FNoK_Q_1fqdGiP@eFi0RxR8gv4~GP1t7w
zMp<H7Eb%5?77p>5;QMUvQd`9K$#<ZVJkw8N+rb_RPNT{}ng;1B*O$WZ{HXG_FA~j{
z^a$n1&mr3jKtcXOOh+o1t{tiX1v{7(#WU`(erzVWeJJVSFpd4)c2X;dXVf@3y}sk9
zDQ<g*T$=a53pHhHL=Tmu#eOeNG?KybKDj%WPw-NrOTag+#3KQ@+&{WbD60_Qn7~S$
z>ruEmF7mS{#9p9);wkCJx^PaYb&qJUE-%)BzBuFzOZIoM>bpShc`n`Rmr{!ZenMZ&
zWvJi9){NWj5V>d-#nvk^3F#lOY3BNHsZgk7Ac#~!p!z<&CAjdMnXrA?Ar<5_YN`;_
zK|g*82Ije=<!xfYcz7?^_;6V0q7}MleTo{jmY=W2C$QN|`;VYbhoo`O=!r3pjcWf8
zqdiYZSk1d^J9ebzk=hpIuVj=STJ4n(#PMrv(xOwLZl_9Rk!p?8kHZ6zvmhdv0iX~`
z6SeOPxx3MU>-BT#59k;UsA4(*lh}szb4yq@r^%70G2kYP(01E-M6dVUt+~}~PutUj
zEkEaxZUpO$FVE<r<rxNlna~QFdqx8`6J$M&tDli`6mnbyG2c|K2{X<LqK;fct;}ID
zPwjj#E-c&}N;-g}UwGlQFcM<HDd4Bz4PB-#<}QAw2vtKHozI83R(srwyyr|;H9i!Q
z`eyVa@wTDe(!h5$7-n)N2c{m6AT2iEL$ifTcbX$8;-^Uk!@TQCB!IGhSC)?(O+<1}
zbDMTUcAyG+evR1MOYDIxKD$2t8`HzLL?sfjaX7np64&iFYIxctr{nJ)$NBX<e#fOr
z-w#HA5tpCM7|Bz-7^`FkcKlqw$!nN6ub9Boalw<=!Wx9t7{d;bzmRF0K?_h2JeSU_
zPg0R+QHj4JZOid)AstCDZ8FbtSzD7HYA(p9=G!sFaP{lz9QkH~rbJu0D64KX^5*H_
zk2lgAQ@h09qk0DFkZ{1vpjg?d483snruVh`c5q6iv&nogwD^9j$+l7x<;C*8Uu6)_
z3L7b)%d)1*g)<nLXc!(26c!!}GRS?2PXG)?J*1FQ(JWN>hF)Lv4Pp1G0NYQ3#Vc6l
z&EElx`z%fL7h0bMn4Soqpmp&$o<JDO;yq3e;~m4~>4hOMsS&M#9Yg8siMppotgw*c
zsufNWaCm4bRo1=?F}-PPaA(p<>pM<r{?K9iYO24mP>RKCAUM5dQWQ#G6X*gJT#Voq
zgaM@8jD@;+IUCax!V+EBhS$}v0V4NaIOP??q;!td*${gl5@Y16U@*9#kM@lw+C14t
zqN?VR4Cx*Zoe^3*9#TMbwzAuZePx2|h_OT~c@VJ?Z%_5DyNH;Zlu2k^M+r4JdprGV
z^S&KHnO|jds#Rx3sciCX4S)j*j4ElOyT&zYf5|K9MVvy^PX-&soRrxgtGj>4ItM7i
zL?(}e-%oX|)NJxZ&VKFaZgY!mT0Zk^Ei=-#!&Moo#YsqY25Se&{s1)^EKHM=89NKD
zS9u67s|erdAU6i99i3K^nn?HXT)-ci{Hc2KDHkGcMB+QOXb@Z>{P^MKOaB^OWMIVu
zSbLKP%(@48<!MAJ1{Fmo;h|2oZ4|rfpfEXErgf(*ld$iL5SiJ{j4O4>*>2O=-^2Ii
zTXBN8&uwP1b~3@Oqlv4~mPfaec8xU+sVLc}ekm{yH4fGXuTIDaAnJ8q8skde{&Igi
zJga-pO%3eHmT-mTkbvnkBUQ@8mYuU_p;OQVM+3>b!uVG}J4y-qt@x>5_SpY!#HI4j
zh)eTBevJe5!+Y*Mv_)n$qLCDpyfM0jg3{g|(nhr3`^mx)yJggVH|wmqLhiGdrXjnC
z%Er}N_>dgAX~E^S%l9=W*SwSC$hnXIrPLl@S4ZgM;PJWu^pDMW;p+84%2UU%>Cqtz
z1wLwAu9Sm(@KUM+`Dru02L5F;c3phhjQv*pieK)R{zP1Z)Gn*jxlOvQ^njxu@<X2y
zSIwV@iwyxcBb^tT%%SZw;!^yKxQM>>P%x7)5eO9?b>6t}v$<w+_pr3~UHBc;x&lqU
zAwI5b1y=Od)V8egPzK3-C(cU-9O=yi&^hpOs4}S7wf7eM^RvNY3UZTYUywqekrT?d
z$$6Z%usT)BF>SU!Bd*xLBd#k<0`ho?U8c{7D|}e>Jh-zKF?v(c4Z)-F<jh0Xb%ysC
zamtej_m08kTi3q2WokS$d={on)ls3Wz3WzoC!`o?ifIcWB`j_kdem5u(!QS%4$NYx
z5?34)7Yy$7%}FkqzZo0Wjz7!Hct{Iw1gpBU>FS2dA~03R3GF2JMIvCe%CG?I$>fz7
zpW!{xNh|c}iKRz89Q@TL^jT7TMqn8Qo>hKruUJ!t|3NHzxeO2wj|SBv5KiUY2`UIg
z-<K~|lbZ!~TNs*`E_a((`<!ohh)X~CW)wPzSk5bhtr8|h=C$*J9{ttK#EUa#Uh@Ux
zcB1E*CK;(TK?JTh7E153%unL7t*FoH$)mwk)hrKDMuCqJDz;kqFkA5FiSWZ=%WmPx
zwT%OH93)&5EF&$?MFN&sA()|<DKavCwfb*#80Oq{qLda3QJdZeB?kAe_-LE<cw`fE
zb>TGTA|yU+pA43qf8ya@s3H-Juu`y{l>AIIX+o`9EYgCal2u;(%at%@<}!8W@++%X
zP)Kg#4qXYOx*Ww9V)Pt2EV&Ll^{UO0Pr0)CsToq-H3TQoU?btY3NcdQXf;IeWi~(R
zYYo*9R9&}d+Z-hsB^@n{gPXjQVFoPMLfNXx;b}mxWRr(H+d))EP+dT8aL!gDTRyGp
zRV7BzZ;mSEXJu0#7?DL_o@h89_JR_mRSbaIe10VKA;NA|k=|b!7u%nVOJxr2GvgW>
z+w)>Ay^-1Oja$=hOs*W)Gl`!-Tpn%70JXs7z{GBl*%$Xj=TG7M1)D-2z8)3ZI6y2W
z{>NXuzk}e7u-~YO$jb|uFRo4oRw*Np<u_45{NpbgMdERj7nT+d;Rg2q7W9i$h0!xP
zPfs{Dh?&CD%%h~}gW6op&>sUbN!Uzf+r_Gix1~gLW!c$4?I40xW35QuY4ogbqqi=H
zYtK+NU@-N(Tm)YzqmC*8sMW|<Ni=qgM7f4{(ups<60&&5lUS&kw+>W>i=H9b>VA~J
zCI4<I*@<?hT&aojiBi&k6I=C|?@wx?E1>O};qv~vw45|&l2!$g;tz_95th@lB8saI
zJtm1;`dr>^_Zx*QgR_ev2;1J@;1L2q*8AYcz85rn4If84#4t1MW?OFpO^~1+yGCc6
z)>LzPF8&#E1^o%R${sx|w*DjJavqWZWElJjx!U>}I{yl}inzo+?ZrPK*ND?+$n_90
zd_-B?*Q(Vb@w1ZDDk#-BdWvIHAzLA{O~F?36r*pvOCUS}%b>g;tHn%X&}ytnOBjD%
zyiJmB!%Fn|(`_8X^clW6ETSh5l}1rCZNrsUM$hbMhY#FWr^uL*6bUBk&)D`#^e#rV
zIT)9a{|vb@1>wn}v-@%u|Abs?pCOk4SH7(XDI0Dl+=V|!FrRJKE|CwawHCn&66*Qz
z7q(<B@b6$>CR7f65MYb6B}6IoRjg6RT|!<dsQL#4>mr9p{RV_BzuUEA_ySETUdmPZ
z*I&`qX$qpeL{LcZVUl7^4`u3?E!))3)xBH^M#PX3OC|TL`cp2B*#u_j?F(+9a<hE1
zQDJMQYpPhUALKs|Hn_07V{7qAj%-!(s;`@Fsp;xiWcbMgXt7)2`}!&m|DoLf!EgR(
zHTp~Z;t5vSXQtWLb7}MEQ)=`_iKSvn<c|TMLZdz|9=$`WL9jFPlW>XQ@Bnp&Ovnqw
zNq!BU9{T{zl%Eii)TXRU7;wUK*G`2Bs>iG#_Lu+cjQ_jo^TCyY5C;+n2$AC7jl%vY
z)4xPv-#q{HV0?57bc0p^S%Ii1oi_eQ4+dE?as^I^0hD=o-Orf<u{noMgDr1yrG)*T
zwh3&p;9>g1UK>~V{G0KH*fsa<XO|C~d|YtyF^U)S=U0k2oYfZ}&5QSMo%Yi%KknG9
zC{a0*RTOg!4_;pIAUVU8R>Ze*Wym*;$9D}6LrZ-M#7?XJk%Y18b(#Ng)L9@(#K%Y3
zYi}2g6@n}6?;$F~N<_lNF!Cj)Le_}KgfBT{=^9{)o$;9Tys*hxWV6BvD?J43@=nNq
zW-GVx4w_cO%f9s$yqjEg;TsL3jB1Rdf3lKc04<$V7FF60nUCV2tZ(X3+>2y(yvU>M
z6+%Jtf<at=5Th4GBbk&>kQkU&%rv0#cidybCj%ASCA#8J`xL2z;EmcA?vl?Wtjbku
zhbRD|@yN#GYs;3!-E-&$Qj>=`4*XU<U69OG7?>O!wfewZMr$U)`g1dK(CjS;bRUR#
zITZ;rk;tcCNZkezpM)R<#)<eTRTa5d{$>#AqoAcVnecX4&>3aaEH=(-$AnY`qA4ZQ
zFSOaFBsHJy7&}A2v8Bt7ww89?UjEyPh7s>|qHi-!jR@#N*mgNfqlFeSU4ZFjJ>?@1
z9AcnQe-xu@4^VJmM_@EGk2hltKRn)^DYqinwk6k7DKj&+lkVoU55HT*dbuD<vOt8b
zmY<bBY4;l(Wf(H~1O1<utp8+TJo>e$Ko`n<=;nlvA}Bjwy?8Ym%9&@zDJbz55VcB)
zj`8zq*Mzf|YC5Xs3)uBYdO$^2QMU1NoG-~ZihGPA7$7y=W^}6!lM<gEVd{S5ku?o&
zXV_kUqSa49?g@Lz(4kHVP#pcnMosxow4zLPl?ztUk3$2A(fmX!T;(z;BCdUrr(YS+
zKHx`wNWLLRdL#poL62B5^n`hBjy%`~Om_evhYa2|%YBIIt)Y$pzVQ~MHS<98c9<5q
z`5q6S=LmS0I`c0>mZf0Y;4}uoQNgxSNC`CPLRTT*21&n=&RwmU=-*`Z>aKVQvzZQd
zq}65h##e8}u@TWa8SMWq3RU=Q$T0eB$k11H;K9elWB`}vvyhJ)kATC25?9BpA$=>a
z7W+w{ZqUaF7*3!ShC~-0`8JiVSpf->60U7hcJiJ3H55SDkS$72lPt`NfNP&*L4G|!
zKhr>L?<IPH_1Tf(#A|e3hi;@6)qJK)EPnnY(*!e(@;9LJ#@uhL5vcrvr696nzR=A(
z7$1jxV*ch1x-~*R00?`$m2Y~T<!I@%m}TM#F3SRbyy+u{NyLFl+$;Gs3?+jBlJBk9
z_%%ZtWchVP>GBva*`52NhMMg&={Zmxt`&uLvek0w-mIWzK81^zVF&PTJ=KL>hMbuM
z+hwjkX(eqxSio?mRnQNw@3o>C-fEde7-UsP)yiH#O(QvJewE;Rvb)<4MxlG<RcvaW
zc*`0HgjsoiI)<S10-tgPW-m}bW{<1vt@N|r8JZ=7>-Kjd_BK)fCHx#G<TLVV<rn;M
zcBoP&FXSf>E9&h1S17agb!(vhMt4JT{xI-3soH?fAJ~y=(=M)?A%q2A*`HI#kr3~d
zIht0swW2OzwJchoZ`i3)G0h-7Fd(MF+)V8eS934Za+H7aSnZzNpyRqHfcF{w5HMTU
z|9&49?Z9X!c=|gLqZF15#x$*r&1}8e4vhh7*;<5$9I*{qi?JE4NBt@wYzR*M6^Q&q
z0F!eFwC^CzJy@Bxn|d}Z3PJ>vd4z1r)v5!1p6E{;X6lmBtOPv8)u@&AvpQOP_zB56
zQSW9UPY2|7N5RM>w;|2~I8Z8hK1{%$Is)qrM~?3cOr9dNATvq4m?~WQOg*JBbMjdH
z2zHyFbT|qJ6;I*blwv}Z{epaL2em4}>N`4)BXBh?aEfCBb($^BkZSc!3dNDzt!lp>
z*>Zsf<8Hx`;FXu#oMp#bzuFY+^j<qrb1um?uVKf*lz>)6!F?A~0m+6AZPeH38kU}A
z%_@PuzSfnvIn_tb?|k%^#}~~sGl8q~5CoL=ysuFyEkN5&dmZ9HT@{NoKtZ3+6MjAq
z6rJKq04%5|S}4wY>CJ#}f#tWPiD7(<P!i!~4SboWB${RWu`A!97+8%1j8vE;gFkm#
z(Ua3{*tUT@jJfTO_!t(iFpGRdlh77bD(q*hSo2HCRZ|7MGu9qE2io+A45<<%TCYpw
zYSNQMIinj-(?ea!-H4|{cl|8H;KBI4`05wV?x%$ro3hEYT7A)FI<c~TCtGOp;<fVl
z_wenst`vzY_1Q|RxE86wRS&%`ZiyKz-mOPf+Ka2~0U{BeSmnt)_U?naH9wBX>leu<
zSh8FraGCh<b%$CHmuV0QkRYa)taOD7DcUg;%VYkq02A2Z|5pff?khFb`Gmk0oPXEE
z{3EshNa_A36Z7xBlRqZrpT3j-G%=Hl&i-c;lkenqwb$<L3jkePH}C!KYS0}=v-xBb
zw^66%3t*zhs&rETc(_c$xKBw&=b^}oh$e;E^LP8r(|S4qM^x;__E_|OP?rmpQ2<AL
z6z#`R;sMK=m=5#BE|Xw$mB#|Dhy&L>ZNf1pQ?DY^gINMf3|aV$y+7YJR*XiNCH(Jb
z<!+k=9M7=gLzFJig#0(*1r9gJ+(2&t=OfzLGEV3d@fTtyC85>5UDkAWwans#qB#U~
ztU3krO&;k4d8Kjhpgv3|!6H|@tW~>4ZRYr-$K?R10kQA0bw~o74wSIFMDhhp4wxx*
z{l*7iop~Sl^Q3(V4k{;20W4rT-_IAaLwFCHp933o{l2~3be33QVi=aV3Gu)}RRmD!
zoIY!Lekeo=CEg-92=PjffRhoEi+qy^U~WUmM?#O_#BxvBZC#vB=$TEt{gv}oVI!jj
z$~|F}n#II*-ioNVUpB>K;)#&9JH4Ay%ywslC=y+7@07-u-#cJC-pl`;QTC3ML<JPb
zD40Y1XphuFgzrwQDK)&-AAZMAME;t}y)Bdnam6nZrqhFYqBjO1&x}hkTKfdjwZyqm
z`$2ww!dKv(u^M?wdPTp-8J>?uO?ssskBsF5gK@S8lOCB;3JhNf3bN-lK$a8Rkqsk=
zTUK3Gt+E_W1<HLe5JK>TTA))I_4fJunuqUtJGIyi2QWURN;A+$ZDpj{b_z&5RSrCp
zYhHJhaZ+NNTeQYH8CjFyj??14id#}oppS+@N>o!|d;lAeg;mS9?<xRgdb1>ZqFzF7
zu&g;DzPvVxAllE1DPZ?^nozyqPyCQw!;#eu2Ee0Qu@Ei@%T^4z()GLSRZ!|)yN<p(
zf-ZkvZxF!W--e`p5|{wMaG}!^_EhzYK#O6r`yz#-4weNzTPr*!#61c<stTLuF5gL<
z;DAz2YpY!AF_ou$znK^v<AI}`!NQ?_@lX^EJ!u{Go^=cNnarIh9p~bHQzexT#U9bx
zNn}|4ZLAib4@>oVErs0N^l^Fcn*|0ntFR~ah>Mp#U&yh^#<3gkJ`%NIYE_ramI=dL
z{zwel)2Rv)S-hEl1Ara5g<Qri^7aaABUQv@Ow4j{-HJ{s8q<d5hiJ^Y|3d|9t-{oi
z(4sP8@;<N%f4<1qSd8C_Hlg^QTq_iXtGMff2RV@0CN7^?cvycT@H|DS+oQCE<mF-Z
z*;9fP1mmc;np9jQ)LtA>NilkN+Ce6m!dfA^TeP;K%iN3xuX+W|-qGrPdnUR>T@hz!
zP-WYmA$-0S341DV?;6zf4qR<X5SGZA>K<-*mMxWMd+|~JRLtN~a$F@!!$;ZlQSEFr
znebD+fuMx?Tw~r3=~mU#rfHli3X0QKA5+78goALR;TQ;+QX4C#KqMOvVWPti?T$O@
zccdi{@#H0%(jDXw@@b<Hdbm1NDe|Y#g4HF{y8;nSsjS(7^e=R?HgrdV$3@izb#`W5
z*XW%Y@FGBqTGZGmK#=0+6xpY+gtw;cpx-N1?>^gUhhP_$TIxX{Kx>v<A)>b$D>6$#
zEh8wDGIBr+;sjy11<G{@DLaRay4KnXo*qPEP#}!Lnx>7h6;2GaMX?3lWD-S&F_7vL
zzAm3tn*iGsz*{tlE@^`-od}t>^#}_s|Ktn~g&U?`36cp3vJ#?XUIIOp$`v;bDplD$
zbTnT}>7G;cSFvGOcKAw@nQ^FRaS00so%m^AGDKxB@g#T(mkIz${L{Wv{IoAkKkZ9Y
zem{6_iqfi+$nE=sA8SV&s3=wUYN8p)2>!-$!xDZ1$%T2n^2n$rv^~&AOz7`N8jPMo
z+>&Giy<Q|hd0RyaEVum8kn!;f#ZORJV!?Q~<8S#VDbO2>&e|<%^0r#j4$0Z4*VntP
z7+{^_i<74ZaxNo9#)(zzgr<jfdI5XZ_|NzQwcbBq-2WO+c6z}o*CVk$I0+Tkfx2O*
za)(+MA`vw4Ho-;TNj3d}rH0a)HJcT1lA#ZGDll@QjKXz!>~Ony=RQguky^hT*#d|1
z3qD4PSoRl4X4sa1Q&;2(0kOXSx3>J>ibsYL@IXK;N<ct#|4Zif|Go%N`?Eii1LYl`
z@Wa0XqyrjBx-Rj)UGg;eq$qWr%tfKYRf85CoNhM$o91-{Kxu39{UMX6j9ts|^rvmM
za6n@`r6ULK6c3BA64%SlkNM*_4^KgQPxj@#``wO{3Unswl)H<<6qD?Ssl`B}n_4Lk
zWcXH!AB=fjCOVDqhOI(Ta<nHqJH1{U%>9Q`$KJKtOt-Og{BWEscsrQU8`%v6)M#_2
zh%L7<@lxQ@wdhwC_Uh~!geR?0Tn-!E4Su33jG?y_dn}!$a^{Jh<xfjIuPVHi=ZTDj
z?3Xp;Vnz2MDzS3g58uUX+doK~`j2roM&qER;znU!j7~R}qt!5>(8Hwcm<=K77Iij|
zPAlTPa#7Zbk<AL;>mItU)vn2Sb{dBE<5qQ2+1@%BuY<TrJ+n<O5&#}8dow(rmXK|S
z`&#Get;Ef}<;R3ll_5R|m$7rdKeCC3s2EKszq+NJF@G0^7ZLK!2?WNMT!&O910>)q
zO9-1O_+Mhy3hXlTQa<ymC6z>;)i^q|DM4*`?j-TWK`5%l5Iga_qVjx<{7!`qC3bNU
zXw&li0P@%bn{C$fbEHS)*`U`l`m14_I9~onD(ZyrLZ;3h13m7*&RiZ{U}jnn@QO(D
z37=JpJFc=GfZ6KqbeI^S;Flyro&i|iz5Rm`4%zVcV){D*{VA6R4OB9`e$ep*E@ycX
z5ar_#1PbTt(j7c(3Vs4i-9?Tv{JyP>ch91T*qv#;((?2?@0EkelV$N5c^{U6d<T72
z@7#4tkD&`lRoZGH2X#Nc(}_fEzOvrL3O`uvpR_lpbbQ<)W_g<~10n~S>+E-;G`Iaw
z&+Nafg!v=;LiaSiY>IeZD#c$OX}e-_6}8+RG~yOUQuRA4A;1kh&fFfNef`=2$tdnw
z9Qea72pRXJxZ*{KKkU)d&Cu1vlr%xYQ0^W>0iKhHymRjI9@$!Rw(lo8H^Q$f!oV|x
z&GMX(I`HB)9*ES~YbF90FRaY@Jis&snVNudrjK7_RmpT+eZ(xnBy|Fmq4?*W+-0X=
z@VHUswV2#e5M1M_oR`G(0)%96F>h)7=1yl0@r<)_Tyunp%sF2@xN$*@*KGN(v$#!z
zRa(_3#g@WW^?({_ym)Zu%ngYpu%oq9%hMnd66`|)U0E%ewrYIz3BRMGmoCn|o4k#s
zu~@CzJF^o!sbE;Fr7<8gl~_G&*H?PDd`G|$oe=x2bS0?Ne&?>#4h0XbiFW+beuuWn
zFgIiJ{vD*Xcul9zraArV{XRhzlx8Q+L-8t_T=V%Ao8bdLgf|}-UGfvL69SNX#bac$
zgp2qOAg|>anas4G13~2a@LnQ;13f)tje>zSf(_APIE=i*Xlgd7QSAWjePzOx*J1!+
zuqAjJ`i6ffJD+5rF9C4r59@Pu;#q{nM^nk<m?$?nJini*gHgUpCGS)rdG&&&bku?z
zJ?D+Y{y3u}t#Qy*%8_k0hZ4$tl3>>IUUX3}eP(V?wvPL!$#8~xT<UhU4?s7ld<!QE
zX>Rj84$2UW<l7%3rC$If-f0sIW4zL_6JAs3HaJ1R<E)Fi+!!N8L&>=~CWe}WC)5kv
ziUpI0;+YNtFsiRx>7`{>`n_)ELOr4MT4~rK(L>;<i7E6cPO4(Zox`u-&x**BtNzy?
zPG22d8h;~|dAy(MkB97zJZIv_%5(!5=iePykue^}ie&kGTFrAY#1SQ5<EnB)aH>vB
zTcoElJITvZhj1`C8b;E<Z}AH%W+{OegH&74cWaYwSxK>=PpKV)lL@_QlHJg=WA!aX
zIt5rVj>9op;Ux4&I6-B(K0vLv<K7f;WRUALKwui)$q6(7d!s0@4ZIce9~0L50N?bO
zhtgMgks|zBba+aUj%}~FuyBzmF-Hq(59Q0wQQ$nc<zYUhMD*Rr`TZ<FxRDZWUjEeG
za>Fw)&wBVgS&)X%S{7M0`zog^Ruv%a|1kEBL9#~CmTl>jZQHg^Rh_bJ+qP}nwr$(C
zZQJa+x8Hryx8p_k`<0oIf4|6Fdyh58<iBLMl~Rk_CJ4|NI*KMFpJj@#*b{A|7Nx7+
z=h!3Dg`vc-%PvRIHg)2oU3~ct7@Jsl>W3m=7?tgRW5=&JHKW4jPw&K35!X-<-zX}J
zE`XPsZp0dEf_VEUcpo*_dLsZtGlm9M(m3-;c+beSwZ*6RC-%_CrgD`hkoWF5O6iYf
zypm?~KqV`7>_mof#eA0~|0F8iXzr~WX@L*d#T?)i5<LFNUQx`CtAKhIEBlRejN`xU
zP3C`}=@ofgFY;f+bs}PgDydZ+B5$c-r|d|Xk8zrIf*KKjvFi15gxZ7o-t|EG1h?2h
zTHq+2Lph^EB1%QhaT8aPUv4#-@&<y>rWfa@0sFAg)yXBoz<S}pVX$9CR#ieP0~`VS
ziV+i(`q_})%NA)(tQ&n0*oBE;UmWkz68h%EGf=ECV_tDW_aIsXB;|IUDF+iPvr4}A
zCK0QVtBa9`661qt)h;ESX4xAALXO&$`lTIKmSC<?)ceS4{biJD%MR85P}kAN#_&hT
zQ;YYfOqExsrN`Jpj$~2qTMe~Z)a)1v!@9^|bXYd8p0-#l>!?_y%?)fR2-9UuVRey2
zxuMEGpo?15x~F74G#TtTKC6McQ^svDuOE4&1#@&c_n>!=DPh{B8mcN>Y+!;gNxVwn
z>lWu<7MUAj9-fk&r_wHF+Om1BR$S-sFQ#r#jGC_?rIymn2*RYLZYQe7MI9Wixkgw@
z-uQ5ZMTvMWcxZ;rc$8$!-htvq6iV+c>tDv%!_=Hf{w*qtX=h3dOPTAJ_f_aLyWACL
z=ysV*1xNv^#O{$N-T{vTlVh(e40BNt1OP)R@H@ibUeh4iRuNQ*dPPZc#G!%6d1<0H
zXv%W-m6wsnrho&scdwTM-bOWQGa#fW^NlyWX&A4cja*D_+DySn%R)dfj|f@|t%)$s
zr%!$F9b|_DC(&#sLa=_eLk%TXL8%^rLR4<xT2EB)XsoR3^0l{CzA5`>oW+Mgdm*v`
zGll*`o9l-C7;(gODR^cp7Rco*YKX(5&pM144PAw&&~spdiS+sWp-h2aGx$E75{Mj4
z0TM;X88^~iiiY30D@aO3F(xP>wr7dw+v)658$W4X`wkLHzfXTkq%XbJSfaK~>4wSn
zq|f6R*cU^gk^06RHWJUy1(O>FPn_SbBpfHdp4_y+zNER<k<9co{ygC8M@Tc7X<7Tu
z`NNfb*w1|tloVm~8m?iL$o4#v`pyOXX-;GV!GjVM#mI3Bv>B^ru71FZWdyxH=Kz5U
zz;@3*$cR17yiHy~dt?oDX^jE<pWiarVHDSX3u6G;__jAd%e0RPucb%LB@RywTS7Ht
zMO-=J%i2pC0e?#oOuf9=UT{FhaRbzm(y_%b1ZJ1uPpA7D{}Mv-&OSqmjAWW_2n{J8
ziV0~<tJF5I^Dv{={`Vb!67c9`zC@dGRQfxR<?uM`>#fV+R!*dml{x~RE+TL5ISXwq
z8&d(U-%Hn3?^ez*^aC|XhK>YvQ4=-4){!<Gwbm&-+_|;-$kRv29T(|LvE-e32lSXr
z%o9gT;a2+&=d1mskCqwn-uQzdLCr=EZk<tk6<0Zeil^8=e`s35bCPmNMj{~EP4PTo
zy{7@Pw|}zv+MO=F{{`E+H`Ji7&l{CGscCm+D&<3N<bm{jRlmwk?)z($;aWO&MaAMa
z%QA@t^LEXQrV1R=@dIH1bceThAZ=F+r*)H)1<bw-fO+Q^b#^fMs_NPtD+y*~PGXO<
z9@yR7T$A(lcDj&h*5+YE2XXi}iof<{chT(>3f!AX!spmbRmBR+i@%!|pstD4*JWio
zd*#EAVPi<+j8G5va7=tzEO|)Mw5Z=PneSj&-gFNaEWZv~{SL3VsO3|wd#O;h9C{sx
zlNPl#i>N$>hS~w62l&+R=e9zYG3p1qXV=o*Hf4G3HnnG65jBMQfKVfuT&=ppu9~4^
zY@K;<sCH$&9e-oZ;}9Z(vwKMbzC<LUWBB2kg0}Wq1myn+7jvbkv&5$q5*qoDh)XWi
z2lN46lVd4&08B#)^GNg<a*n?v(02P(e4LGC%<EO>_p5ZzT$k=dULRr^qv=?&%G-q0
z6fYV%GL4~2hOtFC4*pSu>mM3whQ(+c>Gr`IkE^u$6k>)NhD|Oc39QirGtjhG1(+y_
z5v_#keGs83mh*({ZULol&@|ak)t^hk5mHY9Uy3U>*#(H3qj~gR16FY$WAq?5%39NO
z?>%Ze^_jc_V)zsvu?_cP6h6*%s-yyR&(~5GNwFTbm|9~PD;??wn#wU7$EJMnznmT*
zee<5aAs&hVI`X!N3tDcY14HY)(73g?eYd{tkgi#28|#tb`mneChfIi#>K!A<t^Srk
zoIcs!Bc4Cn?U`y=el-yyrp+UH@AIk`4~@!wVUuub*Xfykc=SNL^YlP`)ZIl79%c}m
zpGpWzDO`7YSS~_^Ed~D-oErzz8P@q%B^FOdY3I|EvM0_I(bG-})xqD+)sYS@OA!hD
zfJESK<@@jiVQ=5(zuzDlU0_!GKmh<K{R03X_&*)V{@>*hjbAn=jQI19w|gKNP#ue2
zOv2eS%&IKbsN*?{1|!)%B%j<Lr45lSPt@6kL}=y0rDqKcFP>Z@{%Vy%zYwJ@W^FBP
zZHG$~_s4eK+S#XzLjY~-g39q>@9?}njC#ZAr(wl$YvH==dez05s&vA3uq@XuP+*1I
zLTwZ>P!v|ng)xmift$=2xW(fFR3H7iLl4_w|Fys6yhaD-M|Y!Ch?LEhH`Zzbl>;(}
z9dnTyv5Wz*&ztiZ4G|&u&z+o2IL{u#vjLoyQl`uF^~kuj5!Mhwd+-k@G2arf;@aOp
z9}gwRtv9stYh~C;LIFbhc**s{7zCV^N@HvYM2L>RQlUXyUMdYBZ-mG@BBN0B2ZD<{
zjx$#-;dFdLqUUH=*D&kmZ0%^G+E<(%(nHscm~1$wd{G$_R|YCEk}FZSv5VAr&T^_^
zj3zhTEfrwl&Y}e~p>egwb__5OaNr22h`m{Q;|H7kfJ9&EN9@+mba+>#2<AuWOL0@-
z^e^aAf^qSQ`PNPFCfnHDOM9OC%3rISqLkL<3EG!3HzXP<<sM&<eL1=ck0srSK8-QW
z{i_4>uGno@A;LUw^Vc?Cf^9H{;J^jt5Uhm%tP0d&)^hjzJ>ODvK@lB$;e`d<^qM_;
zv?~iTXLa7^KLG@^YlYA!Py=9Bl$x1_q5UueR!>TUzZ*}homAJh>P&||m8Wj9onCRh
zpQo-g-ac01NbzlDrg&UGoNuo7Y?4=-oGXRV^DU&--n~i)GpJ@a5%6(qW)+gSl}_6t
zTYKX~AiZu3cX%HC_&g#*`E}Y^VTG7r4L~n6&YFzgRk_CA=PjsCIEb}26THrx)<d}Y
zM(PQ$7&Zt;P_D?rA1rdBFMdD_&P<W=vELFW+`73Y7hDHr;av9uIYz3nsl`wrL^Vr`
zd`cIrHl5`@u$?y8N|#<=#12@mSVHhj@#zLL1B!;lpkn%X7Zfn|?BJNd)|p)SjngAe
zNFQdHGpc0vvDOZeO$|@r*7brIaL5%z?p+7sD6NvAjIgv0C(aax|9~4p1QgI8!5wSL
z(K3>%uknNG+Yd*GY)6Cu%xljYEaJhl4HMcL#I-^^^8ib3crs(_vpNw|t3P3Fm8XHm
zhuiuEAWfzdLsPYYfGj0Wz14bpv25eo?T;H+i2Ce07(U!l(D@_i3%l&uuifrHd&bl6
zi=pX<;NviTFk5H^1p`rFh2*7qQQWAcp~uqK0hUd6LbcLJJBZ}HGmO)%ua}lcRw?#n
zm_F!-cKtfv_VA4rK?J7c%qfX6VGyEvxnZ(An~6;R(ql<xld+FWBjkERO+G?SqEY+D
z-NneokckLy*_(QyoKYX4SneAN3gF@E21_-47kf7Mc5P0T$c?xIsWj)Ue!f+I6=L;S
z0`LVr$q`I*0AIf{%F$#khd=S4me6eh=6l1;{!^R^^jUnpXBg@-%9t=&mD^02z>oml
zQHnL9KpHMpi9psR5D=q;!WKW?*4r^5h)W?`knph>BW+HyDfy~`I3>znG@ni7cu?Dq
z4o}0j<rE7onRj{OHOp~w%mo5Mw68zkB##!=D~G@|)-U;VoH-ZHxy$!+VqU~GpF_3G
z7h>m4vi{!Tzu_R+o0kTM?)9R+n9@p%w!;p1R@NFpaKT*J2bCt+F4`mfi5bhQS#AyJ
zbJO9xDU|p$Wi?@KX1B;n7C}|Bl*7&mA)KlZE(wsv+5#=7i4rmtl}c>_|I~tTR`!Az
zHmU?&LPkyUBZNRx2K7o8-UcS{bPB6s;0TipqmP1?XiGLjhPTCFyw&W5OnB+jJBoeM
zgPRTp;dAN_`+!^8+Yc;9RWWw6?sy4vU5EMM!h4tj<Q^<SRyFW~W}wUMCf*k%ROaq*
zWbWdC?y>=vFuX7on^IrkDlIbf%Aaw?)H#Bp<f6cixPSI73l#st^N(|9JP(3@d7%&$
znBhIzhJFc+Btfni59#tIDMIJ-zyA!UC>OXkS2o5pyNCjx+p{gKha7d+!v+IhWU$*5
zsXd9f5MJN`)b?784&5pe@VE9IBsS*h$0iBP+jt=5z4mT$-|fAz1G31|m=D24D5ycT
zb*-z301ED{t57clG2}rSL>im!U1We4euHLGw7VhY0DoIw9JFK}5G#L&B`8I>f2EJm
z^UP9vYamMq_!G(w+a?fpT2UXlnKkjAotUl!20{6T0shFso0#fl7HEz=1X}zrpq|Ci
zYq`rbCx1HR;$rx!CMX-3WhFmn@4HikN-D>n`#?0-t{WiHqkO#}av>HkUN458sh^*_
zmcQS8nRb_k_%Fn>7bTRc$2)G~ewoK9Tg6J{nv$b)SAd~7kiY`u0PJcv-BpgK9{|yK
z0vjAvE(0n-07qSh-<Rff71$EgQP85a@h-^AG~rHp3G9lhyk4$)kv<CP<m`+jP0R@_
zN9u>N(FeGtV{v#MjHLl-`2~|)lH??sB<|?&_q%0hg5~6jF{}Q7loaoJu{|c?D7ULC
zZ3T#~wKnyErKv9f#j{xs5Vm+me9*Lk3J4TZ&22xIRhj*=+4aHvShZRvMcS-CN^uj(
z(iPpUaV{dZ2xwft4tm8ZgMdk3L5yzpbQR1k<l4@wBk!LUtBUFx$oAEB*2tvyN)19`
z>U~iV5WZ&UPEnPjuu&=mS#AF-HwXzEXKBy3yYX=wmxvlLS83bFOhRIxNZZk?H+X2l
za*uFAFEPL{9%Z{5h4Pcf%p~*T_b3c!U$<G1{rSd)3&w+PhXs#|bfOjdpQik(G<J#W
ztGC0iG|8)N#n=H*aBS=F`sAzMahL=~i)s&2kjC(yv0pj8T?$i<&rb9QO7At$e<OBx
z1ZiKaXMdtrNlLy$2jcp9g<DY%8zx&}V!#!8Z;eAxl_7zw!nG&vVirVJM~;^$Z5MeV
zV5)O;!zt!UK(~zu{c<<2wz7=tg#h=!wh&%H%d${5sq9&?7*iydH?54+thjuXb|JeW
ze>CKnEq3$l9rP}XC*YylnEhe<t@}}=KZqcJ7^AB;xHfZH!v4f8|5-PnJED#a7eBT!
zHVH!!iP-0_jB=D)fw`dX_{D9~w444is9<US0cT~ALw0HtIcnoStq=z8gNoWeYwz!w
zeT8Jk(u0_#D|<9q4}+Cb^e7j#BqKgB$%do%@@qh(thzM6JH*JtH&tloBdnhY=Rs~m
zw~v(@t)2Wa8g!C5bXy9vi!tr;WQp^sW02w$m0zj4IwLE$e?M}0OSDO|JhDHjCTztS
zvx|m)dd&J2v>RpU2Lu$Fd*W6=qA}^HHfIooo3;P;Lc8t>qQb|WFB`qT1*OK9tBr-W
z8m6I<JDRK|3*zelGijWcXB7E+fIBw}>$xIP!E=4=#|idizShz=MH&N&^K~@#=t`1L
zeC5YIUZw@n_|PZpODB(Vp&q9On&LVg?;igtj7cXNx?ZNNZLpqJ_O4dpvaX<W?g@Vw
ze=;~@ukuZy!Vs*Xd#p_g>JYR0?BmzAnfnOh)_HNGj+<GI8UI5^#Nwrd-BtgIr>f^(
zOUbJJ<6VVpu^Ceo*QxA1!ypQViXul@;VOyl%0Dk>H?Rm^Wu=}o9I}P+gErXA*gMU`
zPtL`WD_6(-*qCXfjLJwb4EfynDYjg`Tm+TqqM`b(Sh?9f3C!(P5YoL`V!V^QMz?f5
zE>F%g^O=F;r&Ry)S0|j>ZKUq7X!J8{G{L!LqdVIx#{RBoRGV6mi~37gz=ivj2}a<!
zu4nN#dF4}i_hk^p@y8~A>ITok^GDU-?r#VXfcL_VMXJ}YZ{gsB46EXI8E^9@1(e*(
zQy$f(5KtsOoQN10oAtnuvd<JeSRsWi5*EnM+f#wV)u*tV&?VM0O_{}kSV!5!U|(Ro
zykyj+g+$=2W$v8BqV@HE<NsLRSlIHg005Cv0089wm+Ae#E!bgy*=#i5zW{#Vv7?+~
z<Huu@O|=t02OJPvG<y;_x3EDA@JTdIDJ5&hNuOU``S`dHKN(Hvlr0$EEZJIw9pc2e
zjC35tP0q2AtyE3du$3H2o!t9xc5-*K+aOFhZ|OK|RC~;G%%ONlJB2vvV?xrpA<y?Z
z$<$Em!xUoUv|fLGbvg802-@vjZMFk*KtFHdhl4nHo@qqY^l-ipH;<uo^yGO7TVhGn
zqCl9g)@V>GT7gEsi*4Ykj_OmU$+RQggLM^nAI6PGKdhH^Z<JkI#*q`J+}2D97dFc{
zJHzdEXb`1b<%m|bH`s7uFp5DSnl-=~c&oIi%aN;*UriehQtzL&w3Dofl%4VrZ~G4W
zkG*e9r+ul<k+eap9!xo%9J@{e=L{9vZ(Vj0$nus;FRj&Ws7z(BGUHEWJX8^>026P8
zIF6nt!v%~vg)*-%-CV7ApA+uxc_23AT0?L^q@vT4(h&NI3S^K43V||QEYXbEE!Zrt
z%h4##I8{UqLDt>s^TfMJj!J5oBOrJvyebAggw$e+9RI0n4Kr<z`==J(?1%XIP6dRA
zAv3D;j_|Kjgp%)2Zjk^?<luJJ1h2*;$)>Fq5GI1J<(v_>!KOvDOWHEl5f=9!5hgGg
z&TPmXJl<ri3Tli~>fVROzjVCZ2`oib>=G~jpbJW=_5ub#Ggv~MSkAYJeWeTCl6I>*
zoCl48ogO$R39*jyweJd*jv83+2E(QG=5#(@S{BHQmn%%vmE2b@<oICRiKVXLcJ5MO
zt0#R@2PZK&=GZFoQ2o;(@oX9eG?5oGt$RzO#6Oh+9jYl@WKN3-pRiE#s6&XBDJ$Xh
z<Jn%`E3XKOxm73uQ2P#kwmj2|V$9KEXr>6%&e58dk)`+Gw(~0qaAq#)EjadG!kjB?
zhvjb%b`Pv&EKFFo@N~KSzTZLxRPJErDU(gH+fHVeyl&<mp@0r&$hEFB3Z~pW+PZNG
z198)o|3OMzbtvfj#GsIh8h=R%7^g(a!a-eZZ!8B$bU+}FZ`&?^v7lxV4#q$nLUzum
zHZus+B}_ZR%g1C?DRyfdb{o-o7Z{dh#GS3^L0ACmjQQrNycBb;VyFW$_Co8BzwSvg
zV1c@7Cd<UT%GFh!uC+B|I_`Ej#U+L+e|#hcQ`O&F_8K?uL>{c6NdY!JuwG(dulVF@
ze*rc83{XEmo{<+N05EFwHQiw7O)S@`fVKnPFLa#Iip|yv=4!=hI0VXi4TU(<Fn)1Y
za9ER5Lws0&b^xGrT482M6Zq9TD%m+GS*_XN)U7V)4t+;c!6+%LidsVizkdt9AL4d4
zY3N|~0U$blC#sUQ2*d7|%ISHdpDX!(D9AX_mYX4`eeNZdGiuO+;ck^0pubbT+?0OW
zU)=sLPWC`v6s9}rj7*m>icGde=ziD&TxXL;%uMCzh9W`qKRPtTzR}R6$T+X5i!lSO
zGQhzxBMA;Yj3)3J;~o#%N4SMZTPwfVr2T@>UgVDm>}#GJFWKpIJAVJm`VUpg3{anP
z5KKYr5wDc0EO>l<ns#DT_Klm9g~f$Ou3Cmd6cuT&<=Otv<f1Wc`H0%?-{H`J^gXI@
zV_aeo#9iy;gCzp#VAT;EC>9%MM>6=QdtGPSg~N~Xt>ZG8+i4Q-bvl{9pNKh`{m2K2
z3l$0X<RnoF_g4+I#ZGgUEn{L03&c-tb}*n@)Xm0SB4Ad<OQ{Bw3i4o0gYA@4q#O<g
zMZt;%>1F@~K335mj27scVsf~cKulh{d%i=OL5)nLBh+Ym(@?6^@^HoI>dHpssUKP8
zwr8Ogh-hdb*G?~R$7UvXHD@gSi7&pPDZplSG5pLh)gW=~p@ZgyG10?pMsX=Hy09f#
zKm*~FtX70bmpluoL=e06-bqg5Qw8_;e3i?3=RV*Lm<4uhySQg|y5Yh2N7?bt7{U~8
z;Yk_4KMaRv;1}s7XbRfw?5%_sjc?Y>V;K|16W2gAJZ-Q9wub`3*12O|$RCCN0-J<d
z2P%E4cu@cdXVAKGKsvfGc+rg|bATR;ME1R*>db`num0X3nDpp~kQeAAwbj#t_|04?
zAhlw`a`@QOhB73)v45;Lf7x+sa}T!#f@ePiM>=RPgOD$JjIbQ_AB4++RKIOLd=_EU
zG(OmZzqrp3^pe7LtHA`XzQiCs7!EVh{kr*Q-35KA5QxBZN+0Z)h<!hXhB>35ounwZ
z?tQAg@zxUrRldN0y)mhPjNqvS1hR($F0-iquKZ!>yhU(|dxVLdCP;|2wRB*kby;7O
zXZ94x0a`<Qfiu*4->hNn<HE0p(F(k$eknqaqt<=_FQaj2Z<T<pRM7{PIBn-k)J=M4
zsV1)lLH*@2fy`S4wasJXpv?h~3r;?8%xIB1F)t$w_h=${uiGnQl+~j+a?m-vuKj>l
zASf~!B(>_Nxe&SgsZ+NtN>~HTmFQ3;puNVjOo|&NdLZx#(8?=RoKy<=oTH1pX8!4&
zze_$ksq&;CGZ*NkF)-%>lq|9ZVTSrtb2PGliWIHNQY)Qms}yg^g7a1<;0{D_uNR$P
zw6A<#-hXp}g%<Rp0*SvPvSKq&6cEvr!DW5^Mvv9Tl=H=>W=|P_Lc+JexJSLsM<?7N
zC5L&iFRv-IKq!GM<+N-jZjCK?`4fODlpwiVZu&qEjffsn(ie@0KsH71cm>Uf?Tc&z
zJrHg$_EO=J_V3?%OHEE3A5thvh%|F@v^i=Z%H@Qda&CQ*tSM8vo848Ep&bKBBFFh`
z_Z`9%gD5kPXo_6-^zCa@1i3MRn}9)^ly@Yk9(y0QWsU;<TDMMkI!ScN6uKEGAtm33
zZA7}`#XE^~i{p{i{yG@@HvcZz-ul|x*${+TPgkeq_P2WJoZqJU>w>H!Wi6c)ER3_$
zsN^IgkbaX^QpvEVhQH@%uoh|tD(acPg`wS6Isf5^zpkKHj={N?N>6|&*Awhh@k6`P
zsh|mL3&gQnV!1)lvk*JVs)#Cikec>*0p;M_dhVFi%2Cj5ptFp?jybVh*IX0`wnz~_
z4n4HlD@LZ?Jv8_ep{4~t;NW}Qj9;PZT)@~DkqWFa0Np8bCN2?BmZ6^-&_#Op0f<n#
znbOcVwAipe<_f3-V^hI=4xrp1dMJ=g<7xfl@VfKA90gZ9d-r8ek2yCN`|km_5-XPQ
z8+TL^O%Zu<16s#(o{Kp<e1>a)``J-5s$>p!Bez9dFm|sviO2J~nOY_(>7RgAx3$lg
zj^m-BC%O_c3JH^mW!;Nd@56yRcqI5aZr9<W%b_?kRJxPfe{y<sGd0E>Tnf#wA#SZ^
zupQ%=)9;!23HT``S!^pAE{F?i>2BKmWW2Z=Qpg@@&q$=M+Ea3+mqnGuYhh(yWCv3A
zSY{TjiJAgS5>w-V$hRfu86@;@gZS+=i_NfhKDn(rDJp|tv2`sx7&UQ`XH|V*ad&T@
zm2&Y#(Wq|y4v@9!U+#}daoR|8!%Xxs=6<>x$=V@DgW0rW;xKvrfK+KgZ3$#Ldj0#R
z8>&ZEs@=Km$SKOCLwb`;&_M19sY+t^+z(p$@>Mt%Q@aNVflbB1MPY3wd8X>ntRR1K
zE#FCgm%Xa3!mHIwJzFHB4`fZnj5uSXRZI|F_0{@xB&31A$wptY1B~R}@(~_pA9c?q
z3Peri=_WvQJRCFb{}H`<iuc3n`oZ1Lq#QK?R5W28YH;~6B134FBC6d!Q|zVKP6`7)
z;7m4hLiVR^o2jB^<=LY%bLv&hnkE~!W~-QMkHihB)$8?ZyXLAvZ*Go*Py%GNc`@g&
zhA_Yca?>2JlrEy<rb#wofFK#;Jd@DJNUG<EHLbM5nn6qwC9vk|&jMv>hctp5$B97^
zjd>(EfiJ-41W~I-SIJ-ia5MhONdAIf%qI78F`B(3PB@MBKj#DxUtQ#osZl~}Wi&FU
ztJiY$IIi&KkRfEOvWParNK5~ndWe9z!6ZJ>Mzz5_UEl~qlA)J036rp^^itNdA>Du$
z8VZ0SeJb6IiFW5LHpH~N*7KE-kepeA)38`5N7t_?Ra$pXD<3#RfsJ8bxU|6#6r8v;
z39>$mRw10MhdwU`QBMxjk}EaJh5FMGH+a<$XP2hPBR5Urflx87Rzs39+HR<0prn@K
zOPl;e+RT?7Qz=3GK(9u(t~2V4Zu~h$`iz$RhLo^C<3esE7AW<5v8?W+P9#<QVK&d!
z&=&hf5#RQ(2f;{u#3Yhs#OQEB%Dtk<>T&$UYbhi}5cc<`R<ttMs-208{LDf@Q;Y|y
zO+maAdsm56z*MAb@@T9iaQK9;_np~v*vm=q`>|j|`2Bpd<jDSbZ%SwqpKUv129vAs
znK3q`@VxS{46^M|D$S4h=K~tXmt%(|gXm|{!CN}qlc=G~cVqHFzGh42=KlDz1zphK
z)_*t%t;SV3*nmJRrB7v>>Df0SMgk7`lps;4aIHC!$2jA|^7}B9pnzC)d~_7{ibrCA
zqd;Fr^7wHRpgAN?FtUd`jMN5g>DBD<^<{}msJ*LeEGTk~awoRH^>hz#OUvEUy_)LP
zXRVw}C2lZbPw{xB=in)H5P6TVCIW0^$<LL`hi+KQON<{iW}#yZ!_#R(*DT&dDC3Q*
zD3;#zE>WFis_j-?V~nOL-ok3Fs`=nT`sBUd70LQpU4t#25i@yvbww%1(`+Yq?Xk-%
z>Um=6i%#Wb;^-4T&%3St=ji-<zv6=<<29zc%VzlQ2<RsT>NCdO&&L~D4)c<@PFn3U
z9)zwSP{|x-HCz~}(M({r6|{S>^Iz=YQAF0)4crnQo&z|poXQZ8ze?Z!-(!KwV!lU~
zF(S4%4fS(xEUwT0Eu3s{y+u;`TS}8m3jo0Ie>s=_e><c8BLT*a_@4<dl|Rl%`0<y8
zS5675P$x}OTKgb%9U((|va^UdbwxsSVrx%Vzhad=0k{o&eUk)hIMG>BWDcg!IHpXn
zqJbOf>gbOi?VS9VuL&r}uf5a#PjokL^lyh7c4(P*GUr{VS=0RP-m=2*d*lXst}FLZ
ziA2nskUd9Em|_n=v=+S|Qpv^8E?A6{c#yjAuICA~kexT4^Y}BCZj#X#r<mg37+4EU
zOkpr70sFL>59$Amff=77W$&hnm{wqPLSf=%L>;s4Q?v*Ea5D;b*vL89;C)|R<xgz?
zo3$=@Tb5!Zgd~EQC+jhCoWGBD`!yndep^a%A+MDrmyDtr+2Z|Y4s7Xt_TR$}hGsaW
z@cK>7`$~_lutBBEZt!R%MWfTwS&s<4KPDfM>3f&;Njq3#se@Oy7rOd1wn(^0;Sr#Z
zlQGP)&FAS&H;V&9y0@@@Z8F(XBtjZ|K35??6)=X_S)O35-o&rg|5ZgEEVzGi^WMFE
z1N_&1XrPo-=(6<eE*fsimyH3=BUa;eirbh-zcS}L(%>=F+(fC<&3jug2>oT9@g4#@
zhk6jVHqKi^n)@61(u8U8&YcHi5cG{}N*o=9+bCV)=PB*%ukjgH?S%!^MPCzT+l*&h
zNpO*c{2pN4!UI4j(GU#Pw?_vTFwj7vhA(B=s}rPo>=41)_HL*<m@EGN81XBTb=3{t
z>2_;)G5*oXHh2B29m3#frq<<ib9sKPb;=`C)Ndw8X>jwnYJm>i5d|WbRObmgxyWFm
z*-Ndx{k)mFyP!{P<3YkG{O+1Na_`I&Oe93sUXYu5Gv}z(AnLXjeOCD8QtOx91WhR?
zS#%unl$LcTnG2{JCkPUfNBW<}#XFm$f2Auon~!r#80R`#1=c4i1=CVI=hN(?ya)sG
z{($#(XfnOm_XElMV*n8V?@)As*czc|sYfR2wj03D;x2zsFox><y;Jr0ZKC1`yv+9s
z7o9J{!h>iJAcGY}|6tVv=?>d__B!wtQSv%Qgk_$P`>Dv-4~pzY6d2;0dP?v|D<Rsm
zz>cuLLvOF9teFN5QO|DASm<nMLtzSH_Mw1?sA3}xr?Y{uo~yc~7#@8FZ_f}zTu2vW
zoCj#879Y;kQSgNpTnjj$xH+{kU_c?BjqWk6(u{b?KUNbByb|Iu9k<RrJ#a=s=o#Q)
z#~*mW#V9q?8yv?l1(#nL0UNkCLHdL`KXv07B@Wq6LZ@z;M_LLhgz^^T9zrvl0A%WZ
z+ea?!3;G${_>XD(QUo}GGrsZQjNbVvbdg%sG%&gBIX?H{A(^4+k8X)(F|ux08(@GQ
z%UD#J_U-o_g=>sbcg76kWkK*#saS2V>$h)KJE(1rqYz@Y;49NFNF9n?MDZMJ+b``)
z!2UZD;Ld7r2sKISs{XSl>D}cBNNOM7$Vl*s%z(S>H6Ch>J2ib!g%YvK3YZ1kQk+Z2
zW7U+~5W4%&51hdM2R?rodd9I3%UAy2Mq;laV4zq%t<AWCyq;59zb24U_Ltk1Dx54!
zZ?@CqhqDD0>pTe}cG}hV&HO0_iRBS~Ap*Rma#XV43@NK$1dR5EG0rbTx(AZRKP$4t
z_%R@ioWgbi(2VSiAm}1JN9B4*8#Q|=<bk7LjHC2QYsJ=abmw-QKXZ|_FgnhEFemIh
z`n5Js&sx;n`u$lnWOK<F=9SC(xP??PGpa5Q<nnP5Dzp!Zs4k$F!a1CWG);%+lfvvc
zl+dgL4^iVU3ngOzyB>xK$J^hN<_8~Bb_U^OhOQ066F2(am4gZu5X1|pM*GK9Ka?OK
zxHK;aL_KtcHr+3&W!K?Gqc^+@?%c(C`yDk)mq$vnQf9QF1=08JUy_01P7b(2P})xH
zdgI8N@7(Bo{(EaEnBWO<Q?8Vw=Ntcx4dm0LPECDz{^R?x%gp<!GntSh^SI>Gelo3N
zK3N~HnR|pHf9?RXuV<+4uj>L~Iu{Sz@(IGIFfmE|@LO`KZ4ivyYC5NJ_Q>q#YYF1q
ztF`lT^HUvT>}x>y9ty7Iw8LT|+;FB%@~|Ho`;FUSP0qR)l?4-ikDQBn7bsJ4!oru#
zk5D)AAoctsgZl$o7&*-Z-KC+W^G(fisV%_Kyqe_@@)So_x)MdOo0nW_BA>MXIJ8w#
zri7+kuC*>GeG##VYRD=3X$l97i(Sf~CMyIr1x*=zin>EPNKe|^j&*#}NQcz3y{W@1
zS0d;Qb6fp3K(BKfd-yMm!Cm_<AAP^)OOqP9OhG&&bS;xstA8<3bppq!FZrYaXQ3dv
z(>Yc1fGmkbB${j33})CdCk2kdG<N$~&>E6DgYRei0Q88&>Us!5j9A9qBPwb^20oQG
zA*(C))#kP816@RTh%)N~#3z-geuts^7?~~5bZ=<etyfLgriR@5a<c|+6<#L+B~lsl
zH!X<*Gb8`(tSBGS??K8ym4H4ra>$f-m)xXwEgTEi6tT}ZolGCulW2UHD+pTISWd7I
z+n*>MS)z<xq9YCJ-3;}eqB`?>dB)d4*!G>KEL41<=4n42i)z4sNp42&LSp8xKD>Bs
zBbKzjmkO!ucv1r6pyaW>vXzf1*I*6|7Nac$d{{u9@8F0nNCd{Bmz>bbl{ECc{^j8E
zL}Gn+74yLGKMQ>skV_?y?oeN)DwtV%Q_sIL$%$QrJx01Z-}%vOyk;a^43h*wq+c__
z8z~Q549vG%#i{Ec>eCN{v%M9>Bf1M2yc2HO=$Nl;oS9ZYllGn{s<Fb>(a@>c=$ZT6
zB>1v6{xm0U`lbq!OQgSo%N5_kg&rFeR9{zsMnZ-5gX+C){^jk=F%fdZ3Hj&4#vP6x
z-WZM1V-?Sr#k%Ka2DpQ^NO3}!nTsZt8!hb=2!h5FYaL7XgL<`(T~nvw)_c^03zEpX
zt|0jbibnc}jtc@X<DODLgAaK&>whF%86(3i!5J5I-Nx!FMa`bA8dXkDDqX=(V@*{?
z*-gw}N$1RtJj|9xXzBja^^L?kb08F-`G`@BWw9)vTTuFKxh<T2<-qTv%1=+?%S)`y
z(FdImNxV}qK2ubF_ffrbN<BVK96zXfZ%MtrR6`<7J4~y2|GvZmkRDcbSXAp~@L0Kg
zR&PJ`1|C9SA{xH`;IS%h9{oJEz*ytV<gju1Y}Zboz*IB@t~-*>7@yZCaB*XtZ1j!N
z7>{^zElit(1TQSZ#nO>Ndi^GTo=1Qme&OEZ1^YtP&XhPIDRHpnWIb=WCBP9LQU+aZ
z-rfI(BgCMezV&_^`Y>ey04V?ejeY+WLi}HW#Og1Q&@cH9AhCOVK%#*NR@b4A9_*WJ
zsu4kLMu@{^WApRTK~yFq5uFu7OJ(jDA#@)-^0B`axBSf((iPBGlOl3xXzMLZyVLXc
zFE@U$*#=%SoaKkDZ7HX=hK3Yls97)fUJ&4u)yHW+{;*)E=}Pm-LmSIZbHA%4T=ivG
z>U)jVZ?L05a}P7Crf2<Un0f3^hR!?#QE?azd-y9edJ7EdC<Bu4mf@w3YOg+Jszk8M
zA)LF!)+|9(@ze5pyR|h7n<#p$!)wh9;ru$m)Roq2%NF6uSB{uPMOy(`8YAB?kEs7=
zvTe1&4i4N0qz8LVXbdmH-2~Ie11a``Ye&j_EZMjN7d_PyPrC<^<0S1KFria=)20~6
zVD{J^fCMCEII&)zZv2z)u@*v5=;790XG0Ym=<6%3wgJ%lnJ8M+_7t$T9+&W{Z7ZOE
z+yX;;?Kw;q2@wE}ub^;ZYaJ^#DQq=RfBC4xx*kt-IB8W7Glj_DqECnT3nZkM%;9nW
zl6ck+ya!-qd42h+UJ9}g%yxC4S%De7KB<845Ox#!l-0c62^a2#zzWgS+p;91wO$(7
zEWS=3kml+!n5t+DGCgmBnze*M)KB*vkmWPj&H_cHO5H_h-(vzXJ~Kx8RMh--upCQb
zQvVug@&=lVShwa=eYwc;Cd4v6ja)T`ui-L+R}_8JhpinhZn#;bXY;TdAC9M<Gq!f1
z>x?WhwRXr(ApPz>jFB=jW;fA#VaZk&`m<3VGeI?Hd-dA7TUK8%-+2?VQo}TL7}=hN
z_)dZ0)(1tqvD)ciPt0`gw?<8$*L-2?=-#p)<wRUtR%4^dn|E6~yFv7xx1Oy3{`0ec
zOd5C1Y{eB}N2_|J%^WfWZ?r|#_+W(<R&)b7g<l^Fc?8?406fD<;Jb;}bo6ms=@NHu
zS^|dMe@%3louqHiZOM%dLjiqs7BzrcSLhLBPL-1A{T!CaOFHW6C#4D@YGN}D!LaVC
zQ?&9wh9*^9i$p4d(kh(5bYnp4jl~2q@#e?t&2-Z&6x1w4GE0d^$Y!%6%k+0~CLLIH
z7@34EOI^(iy$t1K+s%>U$&fblG|BtN%$ZWIgaAWMvXA}e#?-Udv&U`7R}O476K3K#
z<zNcK#JNxM3H!zk!Ur@Jo<x86@f6Ur3M*TuWFkM6qctp*r&de=uehpWH+Flhu)8Kt
z=FSbJ7vg~kNi#9{uipq)D)+;0j^mG8Q3g!Ww37Hcf&LT&HuFLFU0RJ>+-X#1pevxI
zv;viY9swkjtS{hgC}^3K-%Jlc5jU_A=vV04RZCy2h==+sdt(D+#5p)FK%b20?w?D_
z35dmh)tD`LCgQYz)xB?mOMPR*2BEZ(7H59Z2KWgp3>V(75wca52r^gcp(o9H8n;GF
z2P@-unq;tb)@>Mp7=c8Y(iW_i<{a0`h<Qn#O|gKa^Qp3)wF`wGT$LZACa+IhTV)%i
zYJ<U>8(ne+u!xW+SFFs%8Eyz|Bmrbl&IO|-F0ExSe35LFoUwp_4;&gOtl+@Oz)O4r
z1fk=VUF29s4{k{pRCt{gsu>E=P{VyrWye1>kH%O_qXyj;W-74Z!7=3NoTA`lx(jW1
zHITlHgOu;8<!%ube*;TbAJEWLNOzJBva{boY-sL|w%R(cR4ykeBpK8>+Sx0kmF7)J
z{_#Lr!%nw<@o-$iwijw)ZRyHR>l@gCVdU;GbFy4Bk~qzab5$-{%G<IFpG%|EhZDr2
zHkvmxWS!`C3w7}#rJV($Nvd9s?K<~eofaZqW($am;m|WZ*3PTZe|W6vEsQ46uolNU
z+q{A~ELJ}oaKw;b5yF4C^Qv>@!>bG=`-@Tw>O0QYB=@V_PrT6N25%^b83_qd{T&DC
znMm9b^>4E@J}a<aR@~wVGioONfdiBwONa3iWfaD(72=CM=T3md7^V_RKT3XkQW;$V
zsL%1yR&)d0yAPjKu<l$SAv@Uub^vc|EkxsmKa;{}3nX};cNPOiYvZ$Cz(L(){oIHF
zz&f)>tZQwRhm}ClJ9U^a&?lb2X@&la%Tc3Im8F6$3gniyqd`;P;N;0$o5bwM<aZ2H
z=*pHgh%TAhNRGb=Y(WqO5w*o}*wX5Z8y)yb+mD562>^z_H*f{VPw+YeVKRzMoCZpZ
zfCSoK*v<4n(0cSL3A9_?4;PWi5D~i&cNrT4vabuuky%-%OQoMqfGaAZ)D6V3MkC2E
zRH=HPn0qEjQLElpoDWPNW@rWpP|q`EdQ6A|2<^)XW=NzLUuGY%NKA5}=&H-QYEqRL
zB!O0F*G@2t8^~WpgcUQIQbklShNL~dn0nU%Fe_+B&QJCjHyn%?%tk8YBdNGq#}{mg
z?0?Gz2=6nkyK#(P0#83k41}Vo%J1(2qJcy=Df0%S;`t|%B0jzpK#n*{SWlu1iC{32
zZFV;R#R_q^=wt#x;e9S+x|ldsD#RCd7v2Ef<L8fYE+u$hF#;tP*g846uSPCLl6AD;
zRzxLGf@V%+#UthiS=Wn62nb9{AQM5HyvVrrbmFM5tY-SaW*RfJDOk272`NaL9!j6+
z7}vXKN!(1~&|1Bavsefq0;Vbl2&3ef7pj3;nB;&49eMyVHZ{>6|0ud6<!ty});f?K
zg$*l-(JOeBY3bkMi>N-<I2kVlBHTYkTNI__AmPbI7#{2&_)0Ax74in-Xv}T%w07xx
zS-L%6($?t1xxQ`)3}87xp}kN;lDoVh4+4c!G;f;Kuc|byQrpz|rN=O_5PrxJCAB>}
zGNt<LgTO>Kk@W>>2SOaj(BP~j=k4vYlJtUpo1k)vM)jtwuO(WMlGKAMLXLQa9IWbC
z%KJW;y#Z6@LpJeQQ}w-uoPJ6YEHOuR93lopR1*F5jOC*stNkX?1E~?_(*y3!v2N@S
zTDSAPJi2|<{O9)4rO^*-oeG#jtF$J0K%}_#j;sK78F7j4c&lURxelrJ-GCVz=JIT7
z_>0xQwGKuz#g3-L#-*~_xm&1Q`9O-|C(8x)$cNTwmf0rG1_EdbG*KE-X?XV7!(j0U
zFtU~w3K8q&{Y`O-jwl?jk1g}9nWnQ1+f+zAar}Te9g`c!T2}gP?wBlA`#vhqtz`+8
zp%A^0ct@CWlZ}1DtoPdJ`WPWfdWs4wyFx?QjHt+(xAvsSop$93>ohi~pY`eO^BgA8
zYQcZ(*hNr)cP{BMc32}3!I09MdKJZM_B*MUWC0t<mAzX-uDy9jI3usbc`l1t@KjI=
zx29$Gh{3OK!Ofr-1wu5!qDk&-a~S5I+*JL}Irs+y@i(eQ5h){rIdOb=i)BYu2qw6A
zxc#GAf4)CEJ)SJ`M2>PS_GFk&<+=0g>$%sI(|G2V;6&+KjsUT7QHe)Opp~>@=ttoR
z-B4SiXhc=gZbVugcGLEo-9hy@?lIn<4y_94!#JN;iB$=cX;J^S$y?8YJR<;=;8T?s
zd<5Kx%OJOziPgo*%<akTVrCVh=QWW6jwp?7N=nv8uKgPx{|A2_s7e?BTHt`&jvI?C
z;eNYlzk{0ar<X}RSiwRtcYr!UQrC*xB{NqvCd{y*gIC^U2SRIk@4OH)o>3Ko6@b(Q
zP!O?z0Fp~Ce}b|Bj>h0Z|FmMD;NbeBq3=np=H<cZ<*?Ml^=t2OzxJi?bkUjOLcGwA
zSh+YF{kzpt&<<`u*8kAJ1BezeFuqmNwxKP6Y6yNxPlIwL9|FxPIuj2@+Fi!R;YeL8
zYp#rO)j>ncF1dc~EMRHrQhK>|NLf9PGE2z(U=pXLS}(87&px?04w!sbW{Hi;;HH0=
z!-kpdS$Bjy^Za<}8c?utnJhm@FcB^mPi*+&Y0NdkFma|FPjI;8AxmB1#wmLgiLNBb
zf@4mEvxjARSiFgA-3?({!(*jEKifE6xTKw|gefY@sQN?P7y!O_ocv+ox16MM&~nOj
z9Z=RPoKpYU$d>12P*8<G+m1;wk!B5%iBe^I4e@Da)4)CJFyg%izgpg_KQI+iai?a*
z4Lx^L-)!>46pBk9*4;XVToB4KuIhry!a_^uYm81^anF^3GXr^6lA80{S&Euad}s=G
zT5$=9nFAw3MNg?hQ9Y8S^%4<RU;b*rlbhDXhJMalNq6dr>zG<x?qjuqJc#6Pb}~!D
z(j=p6trX8ErOX<$gL|@CDJQ{5Z)UkU=?Rf2|9BAQt~h-7M?=oYA>HP@N!4VNFaxy&
zzv|Jz`o}!hVYsjWd{nxs81=wYy)>&5q4J}kjN~d6m}Ly#Y7?U$BEZ>(XS2hu%H<5k
zQ=3}y9i}2B^o(RNmsE(C$$#LW8Oilj2sb?goO#4l6H+Vww?hC&_y73;CNqt#T_c44
z&z;!l`TO^KBH%0&5*dHjSq+~C(8FZmR2kVa0n~^OWW3?-BmY=@*yws;QQbiNhSW>8
zerayNzaa`?`$#)i=F{wK?z`XjUbb%p!R?2smirLFBxdd;?U0;GojsS=D;Gv%Jddb1
zfoGAL){>OCKxPRf=;m~q+^y!?4(Tn+cNz@7$r#1-M%2?v@AdOvToz%zu*}N&Ak;Tt
z#68EV_L?n)_c=@7Xvj|#ls_*N<+P5<7Uo`l)=ENMGGZ5yUM!g975zV&d!i<}Ns0zi
z^~<#1MMkM;I`NgxSm%(T&)DftDA5N&kOS)Hl86VDw0Jy8dbEoh+RZ}AH|{hPN#53^
z@2}!!O)z5-BI|*)2@;}8%8icd3ff<41c;>_z7J`s_HJtTh{!7wn4=-;%RHoq|DL>9
zi@n)!Cv;?s*s5_g3d#pECO~+fw@usR-7`HeBDm)@r;e%=yu8O{IV%iPx^@pXcM@_C
z3YScrCYrj}yB{5FD7?=~x}|#_AM7JuUu@8GG+=(jSV3f4_epDQp}3!-AVjsd!fTUK
za?y5^hEWI_GMdZLibz&!=vq0?Pt2fN3m+p&?Oz^*L>WtNTca)><g%5JcF!qi=ka8e
zKT+%VM-tX-$abDU1Ge4nUXmmJWn%~P2QG}a2$WWf^x*RsxShKQk~ivTBi$XbApAcs
zInOKz95b&q-U@-*BPl6Do^EP`4c*lFJn^N_Zt<Zdl>TD;spNV|lYMagr?6k^$jsFN
zaCL0i;P+P*$J1~g_e!p)eG#|y7(V=@K6^*}gT=gyGx{%Ahh5h9C*rq9KmR@T(}}UO
zZ~I#Tj`XYP`#&AjZS@Q+^h}KY*G789t>0E~^sbynm)Bbq%|U5(MTTYkBp_fIQ^BcX
zEh+1L7ErQl%aHk&oCD_1#AGY^B0;;$1Bd7ygN_~tM$CD<F^bHE3JFo`7&^LOUm*T&
zmyp2B*#u)<ybuK0DRH7oS(1dnOl>0Gwx$LF{^JLZY?r!u1%4Y*Yp6DvLiyl>N#oPg
zgOG1&_+FMAGRtuS@bhfUKk-Qm=y&r5_S5yKA3-UaOcPA0)VtB#wUR}(SbM<O-;w>M
zaEcHr*EkOtj_&YIa9ayky-TlDj{T)A$P}$cvKi2?H{x7_rlsN&5?HfCkwl^yJ?LuR
zrd>BPvB#2F)(0BysMxML%Bo{A@=Cg8^Pc%atVgO083slswSO^Z9nj}M__6oN(RJYB
z@7_ZD@!M7}5{&IFiVXk6$Q`3T^LIXD1?Kom&rFEPZ3i4P3J=o~vvHiD`Z)!s@F*C-
zAEy6=BMcv&xd|J@+>SF~u54wm7OGEPN))%(O3?uoETHiG^Sy!QJg4(9N1Y#LmRsu|
zLFJ=NV_-<9zpAy2VpHL|*W{8%i)r1D!;rYyN(PryLYAbn#qo2Peq1E+<+@69W)a93
z-yxf9n<!WpCB;=I%b$ET$YMdV#$)NISWq@pHE7jXuHQR$F&8A+!S}?Tk+82Ltr`J6
zd*V&3?b~@DTI7my80i*1Xhmc^aMzHRXn#TOVW8M-b~O12&JbU>605oY4ghOva{7m0
zEnlQDp3t2@wq>3Dc;hy2wGwY#PEvMwQQ)Mm9Q2p<`{7xYMnt86PL*?djaNDem6cBW
z@3HmtPe>1c+c1+|OVCgAN@~xy)&bmqe{MUr+RvPSeOHUW(*EB{aR37wD>_RX15<r_
zGeZ+2IvYJlQ#u<*Te|;xZXKMgtn}>N{;OY2W<&J1*t6_M?_As});xnZXx-ld5)k$p
zKP+@(!HXZuBW%msa_5@V%(4B)yMfMGQq(uNyHvga;Q4y`@^X@CW||gkCfYsg_U4-*
zGZ^h;*2l-yd-*@AJ$sygt38o%)1p_lossyZ8RN#8XTTr64yu8r361WiUrZX(*fyT*
zdF}@!{>2$Quba5hmZD9pnsIyC-%dK^Ntk#s=I^$b3q=75*URnBO2&whhfUP=EJWH9
znn4e6coHiho**!%Z)4efl(%hd`f~+9ePYZ4IX~yNeZcl~{Iz9xMRIP=@NkZ2NCHWW
zqx~|8mj*6LFo`#whdKG<gwJT>M|5UVcC{TsPM|4^(FrHB$+k|LCN8WY$MdX;OCpdx
zOmu!ENUBW>W%{_jNAcLtW9hM>y@2x{J>h0_fzCgc7rku#MHCnq3%y}>dQD?VUDwYV
zE+#TEBlDL?w&Oq|qZ|c<d5WC)bGjBL#DTyNB`g2g=&2R?{0PqNunVo&piE7ejapwV
z#<ASUiSOE2DC6Ra7qq}xOD7(o6Ks|`^5C)5tjL_h1NbS*6XG*f@Lsqw%j<&}L?%-;
zEYXnaeXYf&UED9kl1MZSG)DG#gbD)KivE<|`Hmb|0LDEyY*>kV8P5ip)X+2gmE+dv
zGdoOfCOcj6RyXhh({G+Vc0c5hDXrm?iv>E&QRd5zVmJyv8@lesvqyjUCMkQ3^J-oz
zucVS2k5B%O9(*H(;87a?@+oiQ+jg~^+Jk0Z4ool-+>c>2f;KJxLZZ{ikdt_G;F%Jw
zFZ|6=Ox07I$}FJnq<pO6tTZ<0ihY0?=M3K;h}Pf8s3E;n{nV<X^CA%{3|7rxH!$fr
zZ_<s@&`9vN>ydP(|CTcq0r49MvD-f|CiWHz(TiW&e#nrE)bpAG)>hqX!8}qpN!U(A
zP1d7^lrl*&_BPW0MPKc8S$E8ggL81iY2YFv)U40!cYn#~6qw3Ov57}8M4B;$-neLH
z@k0OvX&e%bX=*%c-$H9LhyH6MxHY<TOcvPO2>mM3OS*)vK9BsFYDHz)F%C-kd5vO)
zQme<i>zA;CBjH2f?KSUeo-uRoh3eYrMBdELPEF-oTc~%?iXQa#&7K)kR!e?sCb@N4
zk3m7OP1GzovIbiXN5bGNboGN{O^4Y1560dxxUzt2+l*~?Y}>X@Y}>YNqhs4nI<{@6
zJGO0S@_eXo-kGVl=HJ<Me(zd!@3rph;*~RD%c<g{4Tws2+#HRm936bs+|X!@pp)%C
zbu|uCoG=#(h($l%Qn@<aoDor?`<1b;GJ_=YIv(G4WIF-oTW*tT-bCIJw4PRBoq?)8
zr$*+SH1WGrqAJn{J*BEU)kztTO?slya!19dE|X?~8CkaxeD7*gC#kdrR}maVl7;6K
zBzUd6`9f=xei=jkU#JCEI-G++y0ebtj!n_O<Uc_}j+Iuuy7%;qrVl(%>(%{6vZugR
zAWc{5`RRxfLBq2&gqkq|f&#{@jl*(C3Br7>2nwz%9R)C;RckKtrnFf2<{DMl&nYAy
zO3_+4tG!8~gMTB}n&);X8C?Daa+z{KXKY~m$fb_rD}pj+=O^D>(waJwc~%56#=uX?
z>X`UUMlq~E*PorHHJL<{UlyR@HDGfCUMY<O==Qb6PnPL~CW=j}a)h|?<>A=d)@r~&
zrqLi@o1->Q#X9%#Q39708H()E<ES1Khv9@kMFoYpbaGu7IrOhDE|#gujRB`k6Y3fO
zA5(oiIi;|d%^_1Y7m``5SvZ>6F`QgW%13R+rk2g~)H=ih#E_CdaR+4RsN@{Cvkh?)
zB2zNjz_JOUGH7?nPbiLOXoBQ_<3Oi~z~oVdKcH+hArEj0s!+b%UNY65e9c2bapG0l
zh$J)MjZ%vh8v^2hK%!z+ye#@<>suS&kGzX0HnKAYMwu6L{47HR5`TV@s=mAwdqr4Z
z$x`=L0{h5Xzg6&B`TRaR=gf*(Mb}4r$Jg>&e)O4~ke<FrMbk4zfk#;|E6Ofo#@Y@k
zyF1@Z?j`Mk{^4XT9ah%#K436%+U`@0Q!gKPHEZwU_33ngmE-wfaA<^gGhXO!@V;;G
zzrZ<D-QP}F(=I-qWYJa~S?il&HTPaM`fZwjcFeBb@K>eo2t1~w>W<2LRW;|Dsq5LK
zJZn{*bRRqyf&mqg3~+lgNk~L9)fScLd2maSc6n@Vcz4!)M;`xZLR}iUXQ3y`SVwHf
zBXD0r*~`~r(Lio?{r~Iy5}?W^83YFcy8D6lQ~m##UoK9jrvH0*{ckJvj~sLfn4DQI
zs@j$q^MA=fml6JlX{Pc2m}Zuu(MR<fRxA~pg5aaku3vDk+j*k+ecU!IL;YRk=QKS$
z13Rwc=x4OY?xA0O>%_(!J+k>cBHhm@RaoaY95NJy#w6E8w#L#Q;E5Xl!OcF^tB9cJ
zB_v=)r-=e8u;OGd*mC)~e2(7Br_FS^O~#&Wf8&LM$%X}vqHvfES?I)khLXuB4jL`x
z6(PDv8DkY_;q?yitUl(vu_r=zgxLQsv2Z6?e%|Ucx5w0d@)POgdHnQAWMV<njOTxM
z9w-Z3O^h^*ydCtM;6*d7>0`Mla%@9XU@eqlLG6N-|5Qgv+ZC@DCmq!ovshB+#b>6i
zz%sN{T0&8=b{PS#jS_cOIcFVYS%U7gfV|%6*tX{A>~55c$lScY6iK9_$tQD}0%3p<
zp)sKK^FMCx?Yu6<<ZTy<itJl7qff_YGUGMr3&3?RZVnfZf(Jn~R`SCr`h&A;hR~IJ
z=@#W$>|s@zc_D1xjlV#xwQ!8TgScjmdjww<ie`5{>ETzm7WR0xNC8D(baZlkv7+Y_
zU{&9<bO)<#%_wj5^oOOqduI)jO$PWHq=@`tnEgiz3JObo_as#jgg(@lGX8h#fZTq_
zb*tZ~*1uu>1Cmjq2wS;w2ow=&{FjDig(&@%F~98x%;dr(Mzl4Wv+O$v6k>JmWTdb!
znRzCa58%R}s<N^VLQ+Ae9Fx6Hc!^8Quq=9Q`dMPSYR?iMIv-SQMein3X59s*mhvTS
z&N7c0?$floP$y=N%+PmG`ZUIQ))uq&gfau-lW{N^F-JLpj5*%iv^A%k^?{zAcSj0G
zBc2V2qOcE=8B-?<MYJ=U60sEghPpkF*hC1~h)Otsn6zXb{(x3re#E%)=<g9!-Tbr{
z%UnLQ^2LdYW$&WReB};LVdZd0xjvJ|h{B(V^5q?)RBDWWHYc$4bdZiZPxQMQ6@%bO
z@}XlTv$pR<K_ui#1jN*7Ji%tFF)|_V<GSjm6UEmN4GVm)F}lO0=s>nm_hiG?VyoJx
z@jczMMGzSLjnG(?Vez-!)|kL$Fk@w_bkp5?w(Thou3ir6(^}C;zd;do_B%3qW<30L
zhxWORF;V=8A>BGQBxH%0;c6~!VUXH8@l&e|3w0JlYs7%5QEC7B5~p|bW#)}Gvx(bu
zE{#JrW4%bs1OahR>Ue5%xv9d6Fw21F465i6WP2o$>8IIe%v}^TM9OH0xroW>$#G4#
z+lX~gnc9`@Bt6}pfpt-XuV;>{w47I@dHyq_ji_(H&yfnfQwd&KVx;VSWV=nfrnra;
zzbj6+Z3V<g56@cDx&|C=#?*R(Oaf3G(KVA(DgN4RJB&~Jus|Km)uR_P!mSg!#26iz
zKL^Yucj6nFN|t>GifIaacj_EYqFr4G)nnkoDS=`$wTX}c?NrEFD%BGA*#tAtk#vc(
z1AE|#vrZWOStw+qiTPIV4%ifK1;DC40C~iIeTUdDtM;i+jFT7&WI6y(ZPY`zuP|7R
zdsBN{z<i@Gq8hT>EHu2;8D?!X<w<qxPh~nZ-lF)8dq5MA=?&B&G3=5!Qg?+b4<FsC
zSt}OGC62dg71*`*c7ilxMPCr}7xJn34rkICBFMFb9RV%Ba89>GVcU)*rs595_WD|W
z>3Cyg!b}wme<-tuP0ELklbtdR6M=la@uuqxcsq+Fg|>hG)y`mw^&(kA6RBv!inTum
zH#5FfmYz;L3O5T|uFFobec8i3C`S#;nOx_&?Oea<VHJ;4#}704&Hv6zs@`}?k|1;W
zTRDNCjCgyq0zk&tdm5au5oiBkW8&+j<H@U(9ak+iDW)d}3j)PnTu8RqPDgB9Uu1|A
zg(v}G%U5^Z%kSWSYXEj7TB}Vm%&M%6Va(VUiJQ0tO#PMO@O{-c-TPlB!K0iouHjFT
zx%rs{|6OzMe<vAN=l|Cr*sTPq0aZ!NLHoa>@$sIh@<~S)q@=MW*V)28pYf=q)NrdD
z=OJ_hu_Z|oy7s$ypKqqz@^WGzzVh~!IiKt34L`nK?u>wboMZmDa5~RJ0#xLBJeLSB
z*~P>OlBp<19c3c0)fy8YIp_3g(&nB!CO&6xt9G>J7tNCmG71!l3CrGZ#qU!shJZ9<
z<`RQ-E72N|ADyQ8yh`1VPIIEUcOm&F#ent0d=bN<m=ZN{&)}5#E?T-j5lZjE_*1Zk
ze~O&ob`AdEdfPHT5Z*6m3jUdhlL4C+%YNrlz|LZuR1{Y<eX7dQK}B=SCO#xBxe*Bc
zLZvT%*m^gA!m&-0AuZ~D4uTo8Gn5(lJrT{A#YGFdA3!mm%#D@sCutm4tEk5xfy5uq
zw(Qd7V!U1;H~Y8G$!~_I4!eSCRys14GfiY}Ef(>A_O07%@8MqFsl^0=%14^QwZG7r
zN)|vO5q@=w5Ya|(bwARMI#%U9T1nK+@p!L@!dnj$A4t-lXR72!E5d>yay*<uA2S#}
zb{vUWI!-o$Yc_c)*vgwepQ85tKA?Fi^H9k<z|i_7UwCs!X`f9Rdr~%Udu~c>qawn!
zH<RQer+*cA92iSkK3*j+$0<H1R6S*W*5CFat7MK>^ZeH8!RkME#Av5DL*wl*;0g=2
zLY!iDeoU$P;5S$=6J<aKQYac9K(vFrTxByuwDV6%;mSp~S)-zoMnP;Zg&_Uq)0#ls
zeCPKF<Ap!xm3~@dDT)GQ$WNf*8owjbG@zFHC^11sy4vwjtuh$WX&|EICr@z+Y(KUd
ztM~~tVf$@^#2IJBK_JXQ=I8Zm<xUShx-+%|p+f<zzc|fHd?}qXpfs_Vs@a)`o7lS$
z>_S31!$PVEcZo?ix&mV8jvBFcX(Sv&mRSU;f6`3oUSNa4r(WYp`VFvYwX-afL&Qj?
zf~jnK(m`^jt&h*fU*oEu&IuPhy7n5JFUJDK@(De+%b$NCOeDSqTkgm)RFk&VoFwjX
zb*@bAGY<qwYut%Pfe;HT4;gr)+4NQra0w9XXdF@O-W7D8hXpaSp^~70fie$54UP`M
z8BQZ*R<R?ZQ^O}>cu_wWed!{Bc+uR@$oWB)4K!6pWi{)hDr;z-X}e`NauMGV7#xV<
z2MiLK1~+4;jWLT36^ax{^v}ZWvY$A!zbv+7<zOU_YVEYHW#raSa=dFWT<o60^CsgQ
zPwgzO)|P^903(30RQ)fVS;##_wlR4{w3YFRoXD1W6N9<Z<O=2C^u~mT&z{7>wNOd#
zK@{($L1d~@LoZS@%T}6WryD|&cbo^l#7YZwnKyxyt+XbgGD)GTn{HnfDr;(M=3EIc
zvV^<3LQ-fD0}N{v$x{vIQ_O5y5{;}fg_m**e5Jr|)Kg@WJ18H$2ShB16A>b=E}$6s
z3*<9o2e3LS25@@ZI4>M%GM@vJgxTIfvXlWm1@5Ti*&f}5D5%|7m{F}K>bH#I^A<ur
zglUBfnSlPWpISTA|8Qy|7$;qW9F_5?@Rm@ul2Kud?{UtTu;EPyDLpHq7>9mM!uX6^
z7>6_Pv^Q7p89w`n4@k<q*<{{|j<DdRAIA!A==k+QQUl7|Gl{2f3nTksczVweFUCCy
zJVyamM`+Cua^kMvG_8N?JmFgZB>0Z0>MWe-351%kXJL|!sj?8ogHpRAGq3F%7uH9G
zt@$w*jj;&R{^1OS8lwt7Zv;*}KmYt34Bx*2oJvsqK86<Q`AdXrX6md0Qx`m8?Kyg$
zy6^`w@ZU90=@+P>WO1Xb>~Qutp3gSgKX_~}D|jTaDrU6^MQW+yat2kCxc#>Lm$-2K
zl_7-YTaR?cEwj%2Laq0dHVqYTKMIo<#H65aE+xtcUn~m4E;%k{zVbc$2ft}>hc^G4
zBX85q?F{ITob;VW{??CgP}CQFAQyj${Oi4^U_tk){q1Ge!n_tg(`vSbbMLtQgzMk6
zS5FJiIHy1C&Me#R3(C@-x1PcB*A;dA(6zi)d;xntzb&tgcE<9QOGMvW!;crCYyQk}
z=krGi&-XvEP0}kf(m+3!Oq=*a8n~wP0s_9rfh0@X-QoM0-F1>r0$v0IZXv{~BV~o2
zd}Ms~P{8VRv(PeD5mEr+H}HQQQwHN!dJu3xKzkDZJs#@+xW#a-e-8KWyaT@=Yhf<P
z1?h(6GFvP!Lhnyn+$C{`uJAFU#eS;g!)mEbq<E{Xt>2$v43epbLvGpRx=R)`Kj2me
zGfsvmzK`8v=Z*KvJGAceoV<cbL<#fj-wDe1UEde@-dmE_q8u0PJg!T|oJT5iq$3H(
zIeMI9(4hcCUVG+@wj^B+Ly<c7!%!o%OHai_hdl^l2QB$L+%JWy0$AquA(0>}Hcb-m
z0;ti!QW2wN3R2E`Uw<MdLydT#$FdXDo)MwFqMDBPiOpAy?F#!MQt{)PR%xZBzY>p|
zpf8Q<g2$WwMI&;)+cM0=AS96{u^(KetFp(Ok>HVHH5{^$!9JfWF8{$pZP~{Y7>z_)
z_?>jubSrs4Qxh+oxq78pR4rb0i!?OtU$s4IJs0}^^IbhHcshK)6p?>!x*zcn&6ESG
zqMRa4sJiT`WqU%uh#1L3CQ)46HNr;5M<K=~1>y-#o^1~n7Ke}>b?v^8-&$AYTbhzB
zqp3nSxMInSA|{m-(>*7g`9R@a-tpU$JD=+UQ05*=3P6{(2H8rk@coeEDgL5;mPFr4
zKw8j9`Ot=rrc^mv;>I)N^smS#uL8jt5~|4dj~tZQF4+`f*S9h1eJM=^1kpncc#y)H
zjkn$pdnSRtX=6@<BHazr4QQ}qv3let=2%Z5)icR}#ATi^gkNz&KIR-F)MS|t^14qu
z&vJRd|HeFW-R9MwINr8r6%2fbS^J8{>|{Xjb03Pk->{TG=3Zst^5?CaJmXez2alg*
zXks;y2G!ac)!F$=5!#~OV2ijW*yk%QS};8mOX8R<3LX54r|l+#BTcTEMaRQ6gM7N%
zW7BB59_A}lXDYU0+#>!&GohS)a2TN1`UO6)xJ)d@1w)y(57ORVHlAL<zcT>sjL7#-
zGl&`_-mB2kzkJ<V|54$X?#z{bUhI9f=qbgPZ34)EP+%ZC_<;Nryayt%xs!Ed)pts#
ze0B+)d5~8JdrDx@rfDl<)+9wcAmLJ?JRGa`R3VZ-aUHKk!?Zb@Qu~Bg?<#<qK7bGw
z30DF`;Fq&_`&fM27&$XFg+y05$cG7-)H>pO41~xYnMQ~nu@b}Zm$||^8$W(5V^)Wf
zEO(8xZdC$AJd6WyFv(P$B-(Nv6w;Z7+VSSytLpb!I;y;#G3Xm8L*VqgwhkD{(8HCG
zqvG@49Y`Yco^+B@bO5*6gQQv~99&706=&4c$@86WMj%n-0=5M`%N1T1M!4rbfDi6I
zx`F+QMzPA|hI<37#N(AFjxxO@#L}fYoAM-L#GqQ-j(;V^Soaq!$gDE1xi^$eA2`%0
z78Ju6D9Nh8h;MEW(^RUi_T-!ya;Xw=+z2bo82N1%kg+pMZWvZog0^Is@cnVtiZN!;
zKO`Nv<Dvx)dn|)d%ml05`e@NQW51UHbV6)ap=XK8%$wg@ojy%k_Vasp$jzKsW2Z5=
z!H3jy4Jgng3zM(#j0u6H8Q@2xEKl`UixFdc^AEoD%?8Np6AO#|D_}1PGMTdFQ!?+g
z4(gr?^y%5G1Im`|Z+%U(Yw8MDz>%DqZZ_FN#f(dBNG!Q3J+0=RMeZJoeH~i!_!bKo
zCVN2+3Mw6M{?0Y_RFN3$LE1ng#){T<V@;#`*t*wEO_+{F4$}-fU|ssy)BC-WaG-3X
z@KC9Amj6W6HRf%ms?8m}9F;EBO>)Kl_+Lff<~4Wfx-48ZD>@fY5aZblWP3JmCr!*)
z(#<(yRT>Ufijn05Dq$&<eX+&2KoES51522Yqu}BhW8tN^(kyXN#8cL}%4lTJpt4d#
z;39ng;wV8^;>mTTRrU{3sj}t9ymrZbquw?nf3@QRC!_Isl%OdXgTmo6SolH@r3hxL
zskyLqB_ed&0>fIITS-kzDQi|})&tLbZ+NM{hDhb1wTQX;j;VN*e1WSMr^LM@dwhbz
zEX|Q9G_wu*5_c1XRyG*Q=K-ikkZO5(jiWB&t1?S6R+_|VDTp3LpaKhUAYb>PitzCg
zv<MX76eu9f5%uQD9&$)&1=EX?8C@QqeqD07>9^<GBPyo@=_UX#MT7aWF$~Is<X|!a
zA@He^q|u3_GiCr>!pKvAVJ9WhYhk<@rrG5452dF%7_&9}+@XaoBPbv<_EAm@sM9y&
zaR1ULlJ3!y8RavxIJx5Eyd+x5O)kuybPHOC!f4jHNX5Eph-{gwSfl3TJ#D$lDLfCp
zdcL2v3P-D^(DctH`~Hhj6_?qq{ewTIp)(iPNxe%_qyXzDD(*WVg9!O31OaW$&696J
z)FbJLq>wTAgY@V_)9)7P%;-LynkfW5I|hgo%`KB-<&xkAyNpKo0M`-E?6VQjTpE!I
zdpQ_UEZ&qjXuDgXGsCFKnYln+<&6X`HmI!tlnRP6ORmr$rut?@>D>1aI3wQGeBa^6
zPGt6kVgIfHSk)v7i4rJ}0ap<tTW1zsi5AI=Ox6Xvn#l1D6||vH&W(88DUrZP90Cb5
zY$^fj$zU#mLU>XciS08Y@*&Qkvo{-@bQMlZl6HSD3}$6!&}1!yU~IW1*&v<UuvDQ}
zh?NtF)6c8sm~_n}idqfu2WzT#Qq24@=7`X{)SR_CRCb0}T7;?>6m*f9%$OvINh$HA
zbrhHdu_I_B<L_WLbIofWjHC}HTh&t?J2QNI=Z?Wf5haE1j(<sXsXcWD6nB&W7Df+3
zPi#{j1T^{AebvS@MmWg-5*_U_0i_k%PO1+0?iaeNqmM2x$dO#Qi)_S&L38fzTCA)R
z*H_uOG*1jZp5e#uk@=t<(m3iUcKgT{THQ@0vAY|ME`T$1)Sp{+bgMq2uHp}^Ivtqn
zyo94y&zfkR%Y$=S1dH}dD@K@nUi+WO!pTaHqj3(I+;I{UTk$btD+@V_e!~v10VgO2
z%_{Fnr;)`YCtw$=^(OmtYpA-4N%Hyt=qDr8D&byrq-D$FJzzDM3XzA9hvW&bwzro2
zHuYV5`60aAz$NKqO+9@(oPNb}MjSVw&4{{zWB2N;Z`AI}xq=4+?rX1-!|vv=@319|
zn>|$wZRxW<lu&R=%h-F1`{?&_%L;otkI34r6B9@sAmNfLuy<3t&(;?(lrV7^0YUSq
z*6;CyUNUxVvh^F9`S!vW8Hi^9sj&s9N??@U<L6Xv-%^y0d}X!%$+&j&r7+QQl?&?f
ze@xFYTG>$C>9s-W__wNaRuc1P>HYcM;&P-~igiI*c+RusKbWbie6n|c_~hd6JB@h|
z(iK6v#yO5`qs`3YRr6{eP|q*kMSrI?>s|qotm*sp!5!^|k2jq)Y$8}=@`K8d`n!y+
zTm-!xF7L{+eXXQ0&-5L3SOS`X@lXoa?>UQxw|cr^xZhKb>m{_Pf33RC`f9*_EkA4!
znFYXxz{NlnXFlF)c@meFTbVJF)}|jJqipInks?npuwVXb^3nvfb)L*bJEG~5OF`%Q
z-AY#W()46yX@NK9O9ghiFjB}+M%V5CX}ZV=q2pI*_M(6_VJ~r(5mZ^>CUd=q8jy%h
z5O%l5YHqZeQtPfu+pwFIcjJk+%{5oXU3o3Ef{->BN;9cTIq8U$SrE7I;}EqwmQY>u
zQ|`);|K4suCOG*kYOFZoX6gAlf=GEqTe^MmX1|U1`ubA(6vAg-w*_rL=_2H=tp&Eq
z71YbJt)At=wP>KclEsS1{n#B78PBKAf{G&-WB;>s3{L*6u@?V1C&pnR_}BhPmo@B0
z+fbVrKh9>DuLw{d7FHISkE`e===~VU77w(M=80|0V?paN%6DYi^zBWrOFLuN@`Co%
z`cR#2SSUf%wM%7u50z{7$@m@p5PkJ#(Yy27GUP|(o>nS+yI$%47ej-b#B;wUCQ2Fu
zy_NY+8cQNaug;m@JHhx%O<Vw(7)w<Td0E!Ihs>(a=B=<C;{CJs<hiqu45Dsu`r2Kr
zcN?8fzmc}Q*Z!@eTyyjpr)b+ghThrO<<D}Ri+r`a(obLCouv67Vhl-QRFXSo!U8O4
zF_9q#LF5NgrMB(=DgK$pPM^5yrNSn0*MQqe4h&Z9711R|j@<CA7~OFN9{LUXUqeL6
zfn3`-5)e?F!+-y+>;I*J)b(^;Z}}+!vwR{@vLs2}%P1xOZi_34GvbNW);AvKD_y)5
zBqc2<0EC8AzdSy6_UZz4k)AmnXjooK(x8xHL~jzfVfH2Re*EZ(%Rkqbp*>gm1xVC6
z>}TYDM;NX>F|13p_-^p4VY*dIr8J40N$A}4mF3#z>HHcxfo0;Yzr6LZiEXVRy!dx%
z-N^v46?X|PG(@Z3Ccb}OhtSI;>(oD@-ZUCvX#~9`#(VaB262DL=PSPXvPF<SEBsRn
z;eI}l_mbG`BPywEwpX>QO0miS<L3(h*0KRuc^7y10)4kwA9OvUR;X5bcO(F#CKD!+
zzccQ+yY5rofZvDy>mgtc<~*ymgL+Z~^ys6O$qz<EzRAAVv@^V-=y+7m_t@xnV>!;6
z5>e^0uU|u<#Yd_BsWdw;^j!9G|3^MuwRl%hLp?P8?$UP_2Aea^8o`^Hay_+{YcsI_
z<&DBzXD7P1WvrO@AJd17)mAnoGeE#(v%^r+?T(>)J<)wE^;{e_nrwFr`c=V%s(?|o
zLa1;qBcFmn!(Uu{Um=eWokvZU!r>Y-(Ka8V_baL|59)ec{|xEdBQ3eBuONa5*4x-|
z+mwKzv&7!h1Oy8Mq~(kl_mBN#u^t7v1-CN6cNi-ev{pd)JP@KwTAJGLTkewQR_-N%
zzO+S#Ka4VKA+RlU2`&;MAZr(pcA{qo48iI#!B(b|JF1`Bi@ob_?h@ZuXWM+A?=b#9
zoH$CDwS<EwH}_U|#Gm(l_%Cy2uEdP0@(6)88*Q!7Z3O}J84s<qEkWI7ADdt^Dsw_R
zMynv7BbtX0RL!s3KLvH6{haL>1UOXY_|}UEdeOi4t(TC0xK)WfcVr&=7<_*5_?;iM
zw<LlkB|t+Ydv{Rh?VN?z!HNLxKItLh^SP0%1eH`E>~OCS39ZW`*DReLvdc*tr}>Xp
z*?aDuN;;r9!Z?W{C<kmfh7-I#7W^ds?(@01pt~V)WZmgf)RdxU-in%$U0B)%X4b@c
z$iuk-ylcsPRNM{5e3<Az1;s^+KAO7t;vitm!TkxC_mHkL9;7Jb^oe0jfs$CW2p$x_
z0!rN8a^gGr%pg@BE(PH(iCnjWYuJnC4Fm_hVQq`%+muS8ED5Qg%{e_p21$-Qm#ra!
zxCizgTAF-4d%2?0bFi8^LbEJ_ytL@dBtv3OJJ%gJ&!21<blKrDg0F@i1OXjSj!GSH
z@Rk)aXPzBTRJjbwe`dQ1ppT?hy&=o~Sv`#<31EY2j>U4LIEH%pMJOq5L`DB1OQhW8
z=PV6OQTtOL1+EHoH6Q;r4h7=v4~)bIdIEwi?Do8HEjqZWwd`SSjFm8Dd}Ds*=#VPZ
zCN9U&*F1HsVr|IAB@F<u_vWn@;STgSgz-T!#AsW(ZH4ujuu7XnTj_&UsxPXTJ%u~8
zBINcZ4byh0wj8my1U7bLt}uS)M^9UF2DeTCTH>K&FAj|$EC9;F%Yn|4xO@-qL&hF2
zM_)^H(<h>u9qwCnu|hokZF=DYLwU!M+RR=JeZcU1UcddSL8*P}K)|q285xWwR~|w0
zOe@dYh%m)UM0o3P*yb7?tf?Bk^F^})N5G@|^eXngWp!nJmD5;eo0}dX(s!vU&D3Ng
z2>WJfORJ3Xlj~tPkBIF%+((fxob5ZDlP)^%dLEq#7IVfwibZlC9>8ZfE0Pcu<mls~
z2a`wz$G7rESR~A+)uM4Z)@7CQu;vU@W`vE`Y@6oIuw$`GnGKuuqid=}*~imyNSKPF
zmX_cdDaxmBw7n98mFXsYrwyVYubwr>Olf&cogREpMtr~;CC~bhL?)@>!5j6*VcGGV
zG>!Hz=6fza#&Hi9dh@bHWjqj}T)FBo+^9n4cckJYLjPm>u%Pln#qd;wGy|+nK+_`r
zkwnE(cF$<|<#>?VLQ|t`hKru|EW)Lj^d0_E%7p96dlgR)Sx}B${8xDaVKAP0@{dcB
zzJDn5qv78DgVh8zBu^S<4)b;_x#c}D3r}CPG`(-cuia#we!6`^7fI+&4RXB8|6r>S
z0+B4A4cS4y1zCL<RdU6}&V<q;_(`19B2)S?A3y{J{RJsy42lQ1ohm>gO+(QFlSPp{
z5{5HQCcsgW1Mu8(y4Rk1=G*+dMQ@-wO{g#eMnvD|EjZzXk&y{_4ae|UZo0jP$MGJ;
zX^Dvd;qQD4@WH^5FaB6a|44`l-;0NQM{&d$1!yLF)*2ce(==(r=}=q_99+lo%0dQg
zejODE0(;{VksxrnfTXc)HNGdBY95Mc=bl+I$!s^|_%}JIv_!JG-cz>GF~bG(AVdL<
zPIQ5g{}#|+#|optJqg29mtmx~nYaU(5`oLbFo3}4Qa3PGRbhZ?fYuxi`!^GxEedu+
zkqc$O1Z9)V2)oJ>KyOf<Rdv&BQc+|BWf~4SY4@!AdN4MHU{E4axh4p+i5S^}b1yG}
zrV4&55|juLhruF(F$zf;hYdtrM*xLWDpBG&2PlP8J)!+^Kb|IOe5|#+QnNPMF!w7=
zk7*z^&=#gvXkJa6{v2Z5^LjNzi&$M=dz!i0s`|X9M&waaVYCw|_5T)eE8+i#3z27E
zuT19pEjww`5+^6WoDsvN+Uo~k+)46XJmjNC%TKnV{8yVl1wz0WtOi}!zN;pOt*x*u
zhD;g6av0l?kPHq4!kJ1r@CW)kg^qL!WQ~k9l!G5r?fl^6Zm$jec9N?+Sfb=os@+Bs
zp=iPH-x*^0;+gVJzDf(LL%n{D_l~0hIEf*=5bD5vGn~o(AM7!IQi9Ybi4rGqVhRE(
zEf&^7EcC@{6@_j3^MwS8CLta|Zz&J$ias>1i}XmPBr|%F4r(2Ja8j*XK%<&s1UL-h
zvR?tp3bEMX$pWYJFf6gaW^D1O#bWN$-ZXN|;SFKNNr%<#wC%^Qhk}*I?nz$zXq`ay
z*H8(<5#{YaEl@g-pWZqe*N!lDE3U9O#*X!KMlr12l#~`HyLOCrD{inLB?G1?e3+hs
z^~ta+L_>bwUQTW@S{%p6)92ex>MA$gD4!;8j7(TGI^*Z|Rh9_z$^sE}t%paT^l>9Y
zkT!FM1wDg=cu?jV8XVL}HNpJhORij3Wj0mL3XvqUyB&62b_dvslU>?in8PM70hlDF
zfr8r?Br<lNF39r*%(SW&3K!(oRPFJJKdj$Xiy;=K*w{AiC#kTq!aO;wuGY2%=ooI`
zT0}wMsacRTQ0amLNOv0q+xfgo4{?g~3Vx%Keb)52^R<pkM)CyO=t(2@D6&gyS2!?Z
zj@!0@oJ!)1c{V3z#Y*Y4VzoG=A3GsKoctEM{mfeHXqiBEi?%q4f9(%6&h>B$cJIJ#
z<U-g4`l28~4WB4Bq?j%dM;!@IJVVuU`JKv<oCjJuauHOyQRvPlFE?+aWsO3;0+3V)
z31D-)UC=ZX<cRN4e`|~gfDP;Q!Aj2@+7~+<-uptC_ul$=Z1Hq+dz~D24B9zuKtJHi
zCwMhr?PKdOfKyx$W;LEgD_n&?fls(O9c~IKn@~$&d|st9)aK5!#LRmhKlmvAymI>F
z_jDq1PW{;jh5Wuuxv!DwFy&*>o?(~-_fwR_xFLTsYrdbcVXoWhXW^Jovl1^Aj`IWA
zc8UEaJcHa<s`<cvp1Je>r%A{k5Sz37@2><qdFwR6(8w{YH7fvPgpCq47r4&}e{VjG
zcF73b)+WF+8I@&`bx9Z?epzzID?(|xv*fyUx0l55$ytQNV&cF}OOZnjLv?E8%8nIT
zUV>fi>+JYOV<=+bp?5<>q{gP^lJLzRVd$X^#zL#ULfQ-UEEa?y3K&GdBx<AAfdQVu
z5Gs2*S+O))_dy3ETPMH)CPmlJKvD;ZUy{U-RHzLork@U7U_&jM8`X%FAYHat&~KKS
zGCqbQ%G+5A&WM&C!Oc$EfceD?*^Nm*N`=BCe`k`g*GjNy_F;@xhiNjc=^cH&^k~+F
z34SxD+VG+g87`UVNyH5Gc0A$G;MHN8XOr%$<}+eFn290#ss&TUGb?T-R;@OT7P4G2
zSjkrIyIeCWoZl<hwE?1MSM_JC^h(-({H0$^aLt$9iw2~kr86xMCEK^(0OSgDP}0rO
zQt*;byA&O`S-Zv*2;5wsF+bpaI3Q712V0>omu{&cAj*AZzg^dd-`gu(J&%xH9!vSr
z5!UEd>!Pf>R6JEK*0?q_1CUy6D0{R*r)481YQaohAepFmCu3==#+<2zF@qS(#_}`(
ztie=oB+WueQw~-kVI1ZAOOb(@!nF$|Eoy+Ik!q2^5U85Cr)`F$am85JY_)bkOXoO2
z^L(+~A1qxjwD~`O96<)TU#lC+EWgm&u<_Zu&g3tUuuy=c$h5-PJLX83*~+wQgwl0=
zJJ%Oyf0#9prGcrN(Lom+6&Eo~wJXUhh@OwNM<vz9$*)Z>HnJV-49j~>$+s)b77fYq
zmMX-fDgn$6!9H^eH&7@)xzp<F?xBlOmHr@7=b)+NWI%muR8Vrc$VAb|acHzw?<I$l
zfq{zz$f#*c0jkV}rU9cmR3gj*@Ck}NjH>w6nNGB~E|F|hUnH^-lo8*w<8(50F)5nK
z0uA(`7>5P46-$Mc&gh+~O)0VSjtOe~inHJu8k1+5)2)~%9fVcZn!1=OId$i*q=B|^
zwXm%BjJmUvwNm$0r5o4W4OJNJ`Z@DT7ycBOS}Ugh3$6*0q-P(wWtwXfb(rW3MAJjx
z%GHGEi0H3?6nt9s@qJaX!IFAt<pyQ}jf_VfVam|_^%WE<3lCl9sPCi6%6R4ZQTOa2
zd7X)*43xLz$f1hkKlqQChVuNv{&(|+B9B)&^4hPNVjL{JK(cpNaQ^~6^u6|6b5yEJ
zx>V@FjdaZj<+T3_lH?OiWXfH>Ozr!Nn~iEg_{Fv0KZW9VrgcHn?spdXF@hkLZ@Pbh
zE0*+AqP(;jhDS0Pf1Qmh!YWs&Vn!9tvvNee+2z(f9#2{S+;f#A$3C2H$FgQABYC%^
zB^iSbT|t6SeSMJvwk8H&EFC^ZopSepxs=cEC?v0zA-K_|*CEJ*ec6AvxX}OA>RKoD
zyxc({U%&*6twP=mjBcmYtur=uhv4Qdh3LodUQ@@1dDtFxMjXK{@|C=ZzI{PGyWa_G
zjiioecd+49oRMo+Se+(Z4wRC@VrXZM60H6sys$j1e;}ND4Y0<CU_P~Th6Jg94uubu
zmva3GhYyFGFghhFV8LGHB{f;wIYNMbb<1S10{AF390}L}coi_B!$t3Sk2}PJ{S547
zL3ay&GgTfXrg=<@ejW)Bw{0COjf)W?6&1>heYx5&l{?zk4Fbjv9$@q#Fk`uq-x-zQ
z4z{k$%IZRr7`nCFI(rXZ)@6K$h_y@&YTAHXr$%m$;Oi?SoO*Y5e|lE6xUBMQCiwL<
z8ucU^nT&{sE;Zk#@>dkTXT;BD)UH-jUz4k&jW>O<Lt^g{lcXFozP`@=>*=t1+u1$c
zuhXWTzMi@M`}Ys$Sv-MA{rNXZXlDx){wcyqn$O`>X#bAwm3jTM3N>aC70>Qlsd9T|
znfBMwu#8{C{Bwn$_g`VrXZ6cHmKao~5b$A&vN^}7V6^tiO@Bp8jaW+b-{9M>0U@pS
zCB;9#1$Fr-ZoXeNe|+SM-GDnca0XF{4Gr)d3CEXKmaj$=tlh32983o6?)*Q>H_vHD
zf4Y7s85HXOefj49L)DFI?Yz!@=WYH*pkS6c#zIc@Pm;cw&J}IFz3q5aL&`Zvjsi3x
zJ|vx36QrT=>22E{6DY6HX7cxvWR0XXavwcLv@hu1jJr2Q=cm5h^Z5GLJQ0`g^V^L<
znnufc&-RAvX7^X_mB$sUc5&XEg2Q-GJVb4$zYVfAt!dX`N8`V#3|nqRW~X=aD-F4z
zV>=|VAg-Q=nwi$^3m^0KgY;>+(+K4C5e!^05bU@$4A|v#rlKG7&Ni(HbjlP(FxM-9
zp`5_8c-~2mYZ|e}%sN(-h%4yZi<TURLDJe8_RH2TzG%yTOuX@NL5A5d5ruTYtXKY3
zY<(?OcwE@>`IxCOqAYJM)g-UD&^yb+I1`F|{rb)RLOqIp+_aDTGwJJemUV|eMNt@=
zV)IKIM7H>pH79kG=PLJUEB8V2`N6<;beWI}m?)>d1w3GwDnY9AHMsj$NfzbiCYzMj
zLR)wSlzb#cG8#a*sBjEznBX`NW;^M)aiPz@rbx0hWm^?K{e$gB!Ji~1Hz~7gjsSGQ
z@c$@y(A3OFc?mH%HnW8eX6r=P`}sbea6kw$rpEK$X#8H{S%b!kD8&$JM|KNl`E%fK
zX4`(S-O_>`Ys?u9=GMiV<m?x&!1w}8vH`&efFYM4{i#Itzl7F2qc3S+R$oA-TW$S`
zq*>_PI_i>(;IdE`$DDWImPrD1TTLx~8m%6aYgTN#*I}=n(9{05=eLOnOFL-{dNw_O
z-<A_)tvAmgfVmbTs<&6P|84{w<$|?%gyzCu{0qnpRsdjoRnI-cyyuD#0GiSmHBY3E
zO9MAzL3YHlG)~<oAIRou&!u~{xu${77lEHjwio%&B>e*6|3x^##?eg3{yN<D^_zc%
z4k<1Z3;&-WZ>xLWOmY*TCa6?S9{L|ph8UQ|ueH<ghqui}elAauH;S@@w)gw<E6p|Q
zCW8M7@(vNdW$Fg%muY4y#stmeoXh=3VbrIi1&ndb8@z)30+y8x5+`$=k7w4lLqfI(
zwv4S((Sk)Wfzbg-V>yWY;dqmQ$pt6#2XGw-n~CC@qhc*4qUx!*GGqp%JdFg0yptS>
ztHf;rM(kv|o$D7{(&flmGk7d8Yi26!mPJ9OLfZuUturqg2rY7$43_BGj|cBwmp#0x
z)3ue<Sw?vj`}06cMaM&!SUM2()8H9u7tI|9cwNZdfNYrOyfx2V9Vlr`7YP~XAYXj&
z`j}viaAZ;fy<vZgF}h=y3y8x+33K34W>jsSX4%j%e>^5b^0QpX4U6rP^MY-&IywO$
ziSPoz+A*2nSyVxi{NWnBpqSx|66&MNb_Ivl&1M}f$_6rw881qNN`~uNc$-nJfCcng
z7NRTy6{W>@mTM5D_P0svf&SQh*M<qiJvd?9((0n_`r%AD<Y#8Q<fDIzSOuigafH_o
zT0|^jNrF%)8CcRGi<j3PR~ixrLvvuzdLQW<ZoUH#*3}(D`WcTCuO!PK4vxUNQD!!;
z|Cn~>nSbEjbO;*XocYc!#GrpioG(*SNX!BaR{sO<Mi-22qz7kccT0H|Ki5z^@LD^v
zwOmOR)d;AVoBq~5nZ_H8Z|rlAIRz6Ml-S5Ljo<0%AJdOjhs5VHy1Zma=^9?X6k?qS
z9v)U5e_n3uEaM;UOn#~4sP6cOEuY?>TonAd-~INNFd89h|K7mpxqkgTq1&!kdQG|r
z8ZJ!Jh)(N*UrVK`aVXxbIF3VUy^1s|87?jbODne83@T(FM|vY{oPlw+fR|PDh`E1|
zNxBV&9P?+3ek6DeUhK34$|eF^6$9@4UBaz{?Yz8abas>r$ImS9y+lxT>pk2nSUn!t
zWC9?H12+!_;EEc#Hq^z9sQ;N%r!#<V&4HPm2vTE9rt-_P>`Z`=f1R2TM{la=@y#x$
zmHZ?CiIL;Q14CLu<f<1FiTARXf`l{9WS*YL@Oy{9V+*O?zuvCggV?>Bm|8UZVPp96
z8$JP9+>T2^3E}W2D*s}RM#*D!NU%O2zOOfE+1-|d`wLKyPbWJ}fzhapDHP<)9xtF~
z*<s!=IqBZ`>+>iIBw4Tj1ZzHcmfii2?5`AdX@=lEwo+GUQkxY9U)nOfY8dB46g&(4
zXuScKnP^`rk{IW&uU}q-mN@m*lSJ2}w4^G=J0NpHoa2P(chD&zrIR8cL%0euE6`~>
zDj86Dl1}*IEWZxGag!f22rp0%6s@?&9>|#tve4&d%f}*J00b5qg7V}$2tt`{kO<Cl
zghS$5z=~l_At()XF<V47oGpP+LUz;O#YZOgFgM8186kW;6u?usUiYp;kd41BWUvL7
zLKK-~T~bPW5p>b+J6zewv*jS_lja$Z3kidavDfWufeV3m%w(Lk;T3mYn(EE+*Yug=
z$f0RLUhT0T8$39vnIYWh`=I1l7zhe)u==t~0;c*(?+31AgaTm~g0dy13`xh4H1ueA
z*lV#ll!rw#Z#W}ADn>tiNDXSDlpRkqxfy}Rq^;bR*p(tZR%y=FqBBK>g>yY;1b@Zz
z$J`i-EYAeot>!xdTE(lq?B%!cuFy%P8PTpeK^ocB3q=z2m+m#HE5WV6QLIBz>A{Td
zu)?guAfXawmC%o}?~QO}LAS?>g{jf%iWt*r^j2xLqF)VQz#xd3?+BC?=V%K!fE6*=
zZ4z`$!V=Sq>skBMv?gT|#`uSkEpTK<F)^e{Lb_D@u9%%#dcB=oLL4JYfm#J^QHJWk
zML@j~ZQ{(@?gwnrR)l2JQndd}#b5ddrGVR1EtFiafDLhWHs}K{HZ0YR{mH}w!CTft
z0+v-(u~G6ELel_Ag{rq6#SpFdD@0lHG<#bLoq9TliVF;f8QW}2YR#B-vAR9RHMsM6
zdc6p+<B2QkH9)Jgh~MdrEFBF@fPb-{#xl5D>(f-JWdi!$CuoS~Xy%aHd@5_fx{6D$
zLbIo#9)Tx1530wpA`?6-p%ZoC$XlRiFVopi8Khv$JI-xTNu?}Lh1|E1i?PHB{K*Wf
zWNm?}vFas`|E9SKYY-+eufh#u_m>jbkHM+!dic5Esv4z0oRYeUVP;SWZ)wbFi=J}=
zkQXOYKA$6ulxt&()mazq;&)tTfg9#bTlbq2T>tvL`9uS|@!=PV?p!Oj%Jc4sa*$3h
zd14h^aeDG8#Jmnw84$Rqb3I~9{qxmHx%ZQFg~Txw&F*YNw$zM<_9c$}nN3VO9J*3~
ztSe`MOsx>V;fd2U6f7%gAZv*&8&QdY5R&rtvBy?JMV?_J?<3r&*<Fijrf6EwDs<}f
z+z7R>5c@n$5NW_}a5*CbtCz~~w3ZxeyQWY%+WkVm--&h(t0AjWQqX>-$_E@f|D;tA
zhXy>ja5vQCuQ?z~lLKc$D#eGL$eB2rQP_a+CYZ9-2tjYpro4d;vnx`ugp?W8#@-)9
z#b~t83UY@R;shK`KSbXFLja`_oM<G4*ZEz?+C)jWQ~%lc)>qb5=ipcPGvuf@#dVF`
ztLC}lgga>|d%VQ<MI%uT1oNX6X1p(aySXsf7bMNn*`pUcs4f{#G`5x+l~dEUzqivf
zwJKd2?IM+KWSe~n^{mn|wR5QpU$c^_=)b8bu#|nwBJWVtQgpO>Muq8x1{ff+j|`Wi
zlp#8(zh<#3YwVmM3qop&D|UiIBWI#EgviS*joOK~KCaAqL|DuF?KnT6ahaloB^q0j
zyAaG`2QnN_>GhU@ezB5lVIIT*cATU)Jx!JM7VeU;pb*v-`o<Y^8M!2+1@JK>v%G|g
zOcC@I?3M+D0PNv?qBLCb4?`Fla)M6l+0yZfx7O@jYwv26YUjqZoEUxj6>?Nhqz2Ol
zJe<Yqn%daN40xu<?rOkWOXB%oPo@?MA~vi*5A1BQ{w2+9cC~a3(`PCN;mvF_O;3Wk
zf=-v76!+?;6Y62pThm<^r-}!){`>t{t2K3zZTPd=%;?sdPAgij8fxgSRM$D?@WzaJ
z4@ilWT%)6c-#4xkHKSBrr+v_RVTJ=IHD^kPT~gpetL1mt{oIiT0OtK5tZEVL2()w6
zwbnnC%C8;G@&z6${o$2Ct~#@9z|s2pC5d*mXT$^~0;U8mC^a%c%NcYb-WhIZwRKEy
zli*q;QW^Q7uMo?j>r0R!#&Jm**KnvBe}Wt;kLT4>5aSIY;DuPdjJlJ!YQtSUs$lWF
zwyz@VDe(V_LcC5lL#qG*w%@w(Tm=k!<@@LUE%WIGO2zKxj;kC~=L1#MGlaIAFNn)j
z@=#U9rw(keSQ=B0bP_K9uLncYSBD-LL+riA_+|K@Wh&5oZ*n<tau~h97PO;W$t*>B
z_5a{45E5N_ZWzav3}+{bP3MQnFxzT*!In4>hjnp5O3MPg-#@SVcku{7N;yaw1VERb
zIh84X@D~^(R*p+ZWkuVQS518SlyySNuR&SRHz}|S35fXN>iwyDSlXAxmgB(BQWOh^
zf|_DA3u>oHbAR5NYtgw?ORuq2M6Z`-VRn~CSJH434#Q1gQQR>lOw=W_xsb~-+e4+E
zTura2J*!lP(jtC(1h4OjQp(a)DA8>1B}QMN<hF?ACi-=6k$YA1euD?thyM9C?)1&@
z6}2f=knSbsjSRy5Q>L}UcVnxi796#4OI2brsN76ij#1lKAzH3ciX2%rRuPlgw++^Y
z`jO;nX=I}>lS>bYJzg3UBkQ6IkV1XptS96okLy*R@*a;WpK5PzC3&VEu)yp#oCGTq
zc$f#4gsqbIUSVhaafH_sTc*d9s=;OO(OlBZz}4-X9S`{>Z|xU5C2yKuNXnnQ55XBF
z5B$}^ndh9*knS+SY5TxA?NT{gG3w9NIF?0TAP_Q3WY!QBF?nB8Am;w=J~#RUMt^NT
z#=$M_R1P>MVV^q;Cx7kSKd3(NxY6dbnbv`z_9w{?rSH{A1lZi*h{Cfxae&LRRlw!x
zr%C9m=>C+LYm80NUT2kE7(!sI${M!u$_eJ^@++x@;~t!;D@#okby<G52)avZUFtA4
zmrq>8ecR%_TX7#$bW}y!p^=%2NeOW7iEF9$Df&;my0@`7m-?qYW=QltAwF8K{%a0}
zh1Sod@OhB<_V8B;panQ%4KD<kou+;)c5k@ODAM~53QxnLT5Z+G_ZsXzO7{9YsrXS1
z?%`lSBqYxlKc&caoUhp1GFx1|4a;I*?ssP4Z*M-lT$R>+Zpwm7KZy1Aj92g9!pr@(
zcj#E<;G}!rXeJWJHe3>evm8Szt5!O^+@#Dc8qNwBa=jtiE&4+$pVy@KRbR6Odye#B
zS!^|enGcn!!$?3(3SX$7Tfbk*@Usk&4`=v>{I4ew9PHU&wm<bBJW?PawEs~AwR3hc
zv~!_zGqiCvb^f27PpxnJHBPi|--RzohLo14Cek^%<remA%DEIAaMp##D+&`7<%UdB
zbDUq?o8Nx3ZYaV~=V?_<PqpQAE&I<~qqEn(A85}ns*S4--zTke8Qxn$pV3Kjoq=$R
zEewd*Et@V`Z~Z(~N@DbbM2MnDq3LUGRn~;Y#G)VbEtt`v&7AebZl<03KS0a{clKCf
zIa>V}@yo;Lef84F4wLy&b+C+5+=ND?;oTJDc!lW<q>D0VfrNNQ+KAuc(hu;ne+WD+
zTCKWUsRyk}I>HN)at5yhhAh63R1x_HX8ZZM34FxgQ_c*HOr*fXQHmwMvca84Ekp|l
z3m7*|W#A4@bB&?ybSXC^#<C1XA|2>Al<&I-$UuZ7;Yr*33Ixl53;5rnPGcOJ)~h<r
z%a5NFhbuKyo#$$vA<g+Pm)|eDjkTjo1%-LZ;&ulcoJz^G8t?iy1XM;Wkn~8z%Z(lW
z6o<$|Aw!@5aR{9{+T}x&?0>*X$5LCzF~tu`VLfXgMRzs1l;E==nd6@*;GN@eSdF$^
z0VH`gV-yb<>{V2gyr1sCgMR-IjnnKV<Qc^~S?}s&u%!!Ig61f;z4tdcfH{QV4UuHy
z3|Q{W5V;VT4eg!p?of>(avKOi%#{BDQayjeGsUT8ey>a)z#@4i=?-X^;o<*ni7U+3
zAFx<{3iiC@a2OEmB;OfB<iuBm(u$ZeWi_@KDg>vP;%+%Ksi3YCgy=}}o9nCbcT~Ja
zYwzYiTj|YR>MfQ}vVg!FD@u3%8%TMz$HmDXTZuF)k*>*@dx#@7WTS(0v?@eiLt-g`
zpvi@&N!!n<kq)VD1)BgT50$cDX!&!rOipi&%ShixqzyD<5rt^N4UCBuVP{4unSk!V
zkO{Krk%SEUL1QGLA#(v3a*OG<-oZ|qEmfXMP5nWMuB;YeQ<l$9U@utJ`u9uLx?3v;
zAt(NIEYM_3thkk&ilC^NF0LOFEzF3uOH%eUHj+Y(Y`L({;w55bCo)WIH=mo9Z#Gx)
zCG$=}jQs}?6F>DMReOt>au)B59|j-R7F$&>n)^H>^R$^!g|Hq27`TDc+Q6xb<}pK&
z_t-YK&d<f_g_GbD*jlYcVS)D;2MjJV?uy_|46+X2L8&!PF=9)jMjoFhTXn*JwhcKn
zK(~@;FeY1^jRg+~VbKg|X(x{zjW=9g+X45K{bKxeO>Y2M7`oqQAntiSLFd|~(Pzmt
zEX`;dL-<k07EZlJnw+#g5vB-mDkNLdGKnK5OQ{zpZ=5Nvv1`nhm`qo}cL_NKDUR}U
zY59fqIw2|UDF#Ggu6nvQdzwhWrw&pH?)>CBhQ4nB2^i5zh*8wO*6!V)k6sL!i!av1
z4RK1yaE^A9!t!hm%Q7sXks>PB7%%aAZHpf@MP?(gSYV%{G^*!_Qv_Z`l`_6~52XEt
z=#mHeSjo>TAK|C1nGe@3mgp!1Qc^mnA-89bjNn`RPh|Jbf%bRS8dEw{bXCffJ@CCY
z2R^)l`-8k0aHv>uaq^3D?JsbmwL)x4Z?ei~9U?`K2F9TxHK@a8@^qK59HX==)3a-n
zLqjiWL_>!(%wa42z@ixv0U!a!Lom%>KV>6Hu>1QJzO1aKg{^+E!~d(Yw*adnTlTkc
zcXx;25-dn?cXtTx7F<GbclY2L+$FfXySuylf9K4dlRNp&%spSjW;f46y{lPk?bY4Y
zRrMQuJJ8|+j>Cxe$*W2V5fLIy5A0k6`ax%>ni_rQSna6Mw%^cY{G_;qANM{G^C1^w
zOoZjU=1td(#3~Y$Qo@lLYQt7B7PzH+f_&0>^);QO?51^f&!;ro9(5_uKe)(*IZz<|
z#tY$N`5RA(GiS??%GCr%E!@)Xyms2tE5#m<WzDzx=E%85@_DvC0wTMUFf_}and0~a
zx3{G(P#`cKjER<rNU8e=phhc+vgdRK`+_+@&Crb6!;uZ6=A~op*Xd=g$iQ?$ujR*m
zdVrip+V}b)<-1q^Z%<nLD|E6eeX9HD^>1eAZl_zc*KBEzWUwFaK4ZA0j(X5vf8E{q
zd?qjk*gK7lN%dcqEjwlN)h!6JZ1GG~Dp}<~hdslvKT}n`Q+oGt?gUV7Sbyb98)t}L
zP<~#b^5aBXYq`WU_jP={%F`E%8^HIchT6fM#n|Qsi3;9{=I<x8s%{?ft2*(O782#3
zn-1c%^cI6Q$v>pX>fy64=yl8pWzKQUbRmi!w&~G=Ed@_AiiX*C?snJf0!wVqN1$gO
zGe#i;g?j@1_4EXreX6Ab1_UGya8v(0JsBF=+8G(>IT#tzS(@29{Be3xwfeIp!Ou+8
zEB@@0e`lgn)FIR00y0s_7Zn6UsR5a&A%INOB21d#Fr)cau)?VJ?F$`(ReVB;7WRTI
zz4N_oIC`HWnxy4#TG|L5pP?VNY{mM`Y*QG%oG;=-kx46Oqed&p^e^-SznkTJlIl0E
zzF-Ud76ps49Hqwa0NLp;HyrA)ef_EJu;sHhR^^BvJyt_mG#1@Di}pQ&WU0)ssnX%=
zpaMmaG4gQTd3>1}nSiO|k4T-TvZ+%%FR=}rw*p$<Q)CAO-mNt~%(8+{nM<d5===#%
zii||sw^s2b9ww9uBMK)FOJN*HyUc47$IW#Ok;Gv|N>Wet9gR;Do0Gx2C7y%t2Lxab
zsO51qw)ky<w{$_Q%1<1Z4@?=8b;3Zgr05ad$k?fga~%f0yc0Omkn^3g^0aFfWrLHQ
zbdL&qikQ?KRT@rm;v*dg`BWGOT4{LI6kw9amU1Q)KF_I`CG}pro=to>4}lUp8<Fdx
zmAYV!^r2fVrV5T3+3IaVc}?l)hNfL~i0&DnYAe1wz6pXF@Un?LtrH`1{N%FgmO+WR
z!WitaZPBQIhS+}B(NjEoJQ6D(oP1ev`#ldEZRuGx&o;uD=WQ^s2hj~`3nR8FBox+f
zJ6&-|jM{07QvJ@e>qPb{mkcIbXaZZ5az0$MGKMi$KPTzht(y{8)e$nk@#WInjIjY)
z_X|RY3rJ4K**o7<yV`x-YhdC63B6NcwrmS2*9BQB?XkjZIh}MS%3&xE!;;h3LC&+R
zdXep!FG|{ec3~AV7<DeXIH;+)@|GaVxE>)xsqYlbr1}ZGXmmCOaTSMPx(i{H@FMWf
z<!Ga|J6$MZO*?`zIVl88$Z|G5UWR^G86uC@97{7P;2p^0kaLLT!c8fxeJIthU8oi`
z8&E@j*S^t3R9l)Z$6=V}Y>lO&JJ%{rd_wh^YR`X7lG)R*RUra<OpBYq{}f#2sMxUQ
zL{>h-jjP1C4j0ElPAFNdt_&Q1BiUoyrTn04Ma`j2Xr@j(qL{;QT!}u)DxGVoXAcEe
z>}2W0o;$3&*&)AbtKi$MegN4ezElG`vtwfYnYL@mA(WGbHT5oqQ1k=vp6jw+>oQUU
zW#`pC8Yud=vf<iw!5;61Ip)#fb3=FR+FKyriju@(P23W%`FkE1niTi_<?6)XK<<Rk
zO+9j>aGI|?d(x8eVKlc|OG>#V#*2Ifkqetl@T`o&MpscE$3zN7mKVCe?P?gj_ng>o
zpGpNggDKG0sMg>uG)A}Sji^0MnC%$?voqijNVoQgWc|Ta#)}QvasNoXUEpFOU{PsF
z_Wb35*Z%9q?pyxL@`>#3+rTqJ{DZ~bQBSm|_ly7K+gD?YA0UIcnZfds5+j4z_H~(G
zD68lwH0VAPdN4-=+{)*tR(tzXl`nSJKts?fCFk~VYuj_Qorw?2xuWl33!gt!5r%)b
z$NlR%1WHps6$AsgOeO^af(NWarbd>wbcQwt|8so|Sb*v<UU_uiyr;bAfGw%41NAMo
zv>L>lcFV$jd$lWN!RaP2Fx98U2FuQRUe50DTE%K;3szg66m&ag#kMy#Ts=mK<F9PW
z@)N7qPRj<47M9qzPhW=E*%QfdC<X!x62<LUo2yWHyG=;n$JQum*~?Foh?m)rqU>m>
zj>Q^QFLb9CR7MRM-qH`;6yFn5`N`3aI$&sjd6{`&?;>tAO66)YH2lzwoJ#^um$(%a
zA3$Nka#h1y9V1?>F0!k6$)!CdmAh?-_J)<=ftMaG6HGavdH?oJd3%8Qz1t(+tNWwh
zkCr!oZVud!_NgUF`C$HdRlMe{1fq%A(<Reg3w8R);wMWVCXZv;?AnOTWb*Xgp1<Cj
z-{(Y2+G|&Y4y?etj)a7yNxiF{GvsV0HMvmd##vpHIX(R(YXU|oGlnX8az}p<5}pIc
z0_`LS9B9G|pTW)i46DO~G!XJR_qtA(+C)lJ$k$J%La8WdJBCgmWIilqrFY^Z0<JN2
z{Ex{E^O|q?;XyG}=Zp*&XVgs}WRGFXq<*~Ykt}^pm;rA(I4XyFHf<z-tBbtv!rab9
zqUzxbmOo5N#C~GYPWv)8gEY?w4a_oIWxSRVbCCqsk>26<TvP}q*|UD_=8q^dvh@Y2
z#WeY)kEiJqky1(qBULKA9*MYR30OX*@Kf5wO%E^snY#sinOHA+Iwn#IlBcG;<oiUx
zq7*iUN+zO03<|eb`9^$KJ<yDu+)7e?fZv$@{AhPMI@Xi~PC!OisG#d0zcR@>zX+)y
zK4(vDfMrt^(qIIALaT!KL*2@EPZKW$ltB8v{ljs^uH+W04>I(`1Xma?Ysl#kIzxjJ
z4xAldd(-)4M+&>vfk@DjF=--t>3WeG@VDFttxL-R6n@8VP}=0^(u6?r0mV9{h0DE3
z9TPq2__aPDxI@P%&hV>iG#Ebs2|fv7jULA5^9#9pv6T{4Xuy_gUNP1^%FJ%2>EiLk
zbTIXs5NpoCpieEimoex)`}m;j2Kp|=x%9&fd-;sihmFu7I;tPcPRTSOJ68loov;YC
zn!X3gZxV7qvH2<0Q6o$5pq#Tlnr7d}`vEBg4qxm~YF=n_sLq6XU_j=PapQ{WYBLW{
zi{jQ3dhqyb)+==>(AvW8#fZz#doY|hjP;Hl_W@H{ZhvU$5MZQ$KlCn}1MlifTuMFO
z_F6B1IKAIA1ZBfay}*LN{jy|4ka~#>>ZJ_6(y20mr~lFclHVbwLg{q8s1Qf1w&<Iq
zowUCxizvim;iPx<cw0=!@}!Fjiyd26fW@j7LJ6u)!e*EN8e%}#XqQ029wN09lkog0
zDdoYG*UZ?-wffpnK^eSWIbvD7(ho}g!cN>evwsL&dckZ<EJhKW+-d;r8c5;2a`1aW
z4Z5IF?2VLCw2eGh=yQx=79wmx_tC6npjdxOm_k<myoE8_Ib+=dLDz%h@qC{Pm#C_j
zt%q0)kqvB-;!ul}-R_M{`CyzpKJ#K}d(fo~A`k*(SUE{#%yPd3Y|4Gw90<cMM}%C2
z27U%{tcu7|8@Q#ogl{zR&!`wSb!ainH_zNfB?|OrxT!RDovh$(X-?4@{_~#Nv)|M2
zWU0Q7Z*%!7z+fXt4Jw!(VOtU^V_G%?wV240icLZ-RhFo;nwGK<kt@yvr$QU>vyVq%
zF=Qt9Kv;HXT7ckUAN6#fgE8<)QSD|U4zRZ4f^JUlhhnG@k%*8YDK@K5p6YguVVR6K
zNE*C>R%J_J*EHfaXQ6A3B*S4Ia}BBiZI2~`@y7ROC`zTb53Ayt=Th9=aIe_o=`uXz
z30dhig%{|Aq$(SApgJx^dJlaR*5fi;exg*)S<$I98_fG0qkOZfLA!n*QcZG%9r(q+
zwMd3FxAXN_GvB_lzNEQ!$HR!*&g*71ck2h&DOPj;wKb$>XPb0BsYbFjVm34}<ZyMA
zzEN*#Arzc()v^~j2thvQlHLgNJ2KxU#T|!HmP`v^v1rf?U+xna$aDda<E^QL@nU_Y
zM`&<uPO-$0FjqfdG-JDw5)6N}O=CkUVQu~fN)R4DtUcSw_wVG$it+kWMcO#&x45Dv
z23!_L^&@RRq|#~OxTk`6A)he2F!XV{6F?n%6t}boc&=?!s{6oe5l*5ePYtd@aSLpk
zxEUN@i3ru4szr2+e=?-s{@N~LT|CBUJh+X1qUvh$>Z!DhC+~E9ix2M7jlRh*NAP&m
z>AoW=AgAS_nnlz`M2yeOdJgUmWE;`oMM~#3Z-o)`K4iK*F+r32yM?N0e@wah0hy1X
zv!%ghHFm*?6wRTbF4>Jjr<BGt5dohs15iJH|8ncBY8_z;i=BpUwA5Txw;tNG?8a3D
z1_ckJu9uH^*BaS6nB{e9q4W{IA|-AAY$}{?d-jR~Sc_&Ke3m&V8K1@Zb;q<StO#-;
zPI9$_=a4gZ(>icm+PuJ33bVLTijC}26tI`DZTGhlj@cmAb^?>sbE2gUFRKP+Y+zg&
zV15@R;qYTS*(C?-(sJp{I<UILr89)CQO14j)D-I@K|yllRqeotGAMVbqj`-@R4~%T
zMVEU#;5U#lEhZh7-l>N(FOa=p?7HWr7ovJ7zHAdq$%QSvCb>)CmGEBH3*hB~(fM8|
z-*mB{aaZKeeN>tOPNg_FJP4UaCYa`vkp--|-3FEO@#|Mhp;hyXxtHHwrtW8SoY$kx
z-q8<Cu#-C#MT(Kh_p%^-KBqO#9X`OZi}SY9h+s+vvkAbc0&am51d(t}?qD>B)ny}+
zv_H`DT2&um?0A3)d0j+fm^)EWgT|1w;<tyhP)=2bc+sz-X(plhKtF~}s|Cy;WL8xu
zU1PVFm9nhb_pY@W{jheg12>lldMLBcTmdnBG1JpU1vZPh5Y~$7gO2SFb%|pS1)?AN
zx8}&B=!kITN*@~%_{<KWXt%OeKAPlG>;giyeHJH8vv0(bk8kAdXoA|r4pF6d^bM3o
zU5%IIuk^aL;DA-4g9m2wZ1m>j&Mu-1y`c=d*0N{6c3j|-om(L=v><pMXBTV3yt0!+
z-pFN@bBWq_4y$9u<l<4o4NqrqRtmgAcbowWZ;(aUzDV?2gBC28R3axJ-Kn>Ss{vIz
z!)-u!u28dlKdJ1z1?TT^mgZp~u2oG4`kw#8ixW#X20j&xB|5wTXbW4jT0m(Yb9#`J
zgUn8f=RPN>v^dWtHv~}%&w#YjaIx23l!Q`W`kl8&oH_h#odcb&^D*{=l^#f>l!Q=g
z-_5vbBiJt2s;l&#xolk9WHt|$XHgD*8GQU1)g#C8W&=m+0+FUIw;))V9|wK#RwGRV
z4PS9~-ket{&={J=9(|(HLn`MFUWoj4){r?zmt|ClS`Shy?Mlm5wmJgQ17>PwGP)!P
zWZSmYr-9p?(V+uNHjid^;YLqh4or<u<+DV5t{YF!<<FL{hi6;~Cu<oludm%#Jsz9T
zC`X}BgIk7g0=(CF0X3^OA72$^3FF*oOMgtk*5&r(71rsR)`EPbKNr3<DjRTKi}?0(
z-TBNaX1U1BToTm$FoZNQg7Qi0dF^8oFPL}W8^~WTSxX<Un)v|NsyCm3fDizetY+4R
zMlN)EmX?29v*N$lY<{@Ci{JG;H_p|jX3eT;o;j7;5b~C3%#w>Ac91PlGz#*zyy~FH
zhjVXwd-=wD2@Fjx7i0E48=JMx;AzL>>4AgesdB+${|!*UNb;rFx2!GAc@aLhaOd(w
zJV(p=P<rA#)JciIDG+}xH~&cYyOy;hdae{@`d7+CfXopa?}V0()~wASs<~!c9NpYa
zu(6zAQOncDv8b}J_WQP810SXMnTqBp|Mbtw#0YIB0u{*1Pr)C$yW+4+EBHJ&AuSsO
zm5NQ<%tW2za|VI!@EyS4o(w}GWaW3ZL7%xeL{wkK_U{YrsNYpW_XGhK#k3jk3M!j5
zAdn*{-}J;$no>$A`^VVCb-f_Nzni~;F8w;eFunFcYdROBs21P%i(sCPcAL=07aV*u
zQ4Qe}=cBoop>Gj~b0@ylRSm33^BrtO)DYYvmedgGZr9CjUj`xTrS=G1yNjuLwAH#Z
zkOa_$fVrV(#_!NsF8V3I2KHJ!SSsg@6+h^{jx!gqtfpqkOjGyY1u#M|n0h`+oRrYQ
zl$dbvy|%Mr;06{m;j}yfcSO3uUVr*L@O2j|p4K@CJJA%*e8kY@C|rU!wH2ld39+F-
zq6Pcm0Z93~7`R67WAz%EyB8HaB~SH&|CeDnFgYF((icETDlgE4tpdq6%uxvVovQU1
zECM|CCbr?gMc$39ClK`fNVus!P}n4t4>lX4+$`tIjk4S)CBxRnf<2JBVOsEC3(Mzh
z9HyK3+|F<uk3NkZvGaf5R>1;=r#pV~`s}>egXp#I6^i%F*!~UTCX1VRp)^dD^Xblb
zUek8eT_vxl7s?g#P%i+|epoyJiwndeSEV|*6H>Y}FI;M@zza~qZ?pu6XMc*x0|#UR
z{#^_SGBA&W)i_z#Ks$3d6IFAP%piSwLV=45Vw2E~NnLo0f3Klxk#?vCFeMx*ghhqA
z!43mYaQu5&;g15_+?-lvQYZ)pQAMHwQjSF!+_}dSa2APAJ#uytEfAF@gYdwEpN(a4
zzY3HT!DJKnwfO0O>AoD^^dyVllw!iQ{U(;@m$tJ=3P>qxCMu@^EkD5l>EB5gyhHq2
zq(6kxP7>0>WU8_gVSnKd3AbG?xV7ccd@4KIp7B*Gq7p;K5JwrjcWb7*4K>Ui6H4jJ
z=|26;XHiR-;FBh!U{~C14kP{Gd&@&qiWpMIB<#X$xxJ3+I@(V9F-)tR8i;eyva?}%
zGlYG+y%}ny02pgm+i+Y&c$WF;PS_*~Y@q5j*zkdPvdS+pwdGr!WV5Wo(Pf9h%HVO?
zq@6rNZq+kZ`4%HAEmR}4%vbYZm?UMOON68GiyW!qNKC7fa^~UJ2^3H^ZjzEkwUe6k
zUd>aQJXE!^2Xu)<!v}O$a*zjf8S#sI*9j2{N4fP{RJGr)G4Rne-G)^2ZdqG)REk#U
zYoW~Tl?pVx2R@r_CSC4<CF9vs!#rfwGJA%kuhXZ_gKj$NDfI>q8au+bw%<Gq*T69j
zNtv%9s_`qw<FrxYL#Y_pPe+B6L8Ui9yx;L#FIdoEDd`QE(N(iLauqzH=ruykMTB>V
zY?9zWdJU}XTo%x`cvkV7*imlDLa0D|6&nM7GF$}H?h3b`W0s?EsRzHd+{f|rbywL<
zgwtZVk~Rt3_sevz`T+LM%u?YE=^Dfd&afG=#L+Ks`eq!o&bWJTlo3@n!kH6z%$$e`
zlSAS1AY%~W(OExm#<jk^suh=OpYLsDfqyL-|GM^=G0k;27E<OMlZTvblQG_~ma^l%
z&dj?&$cqY&kbjSOqovJZ$&={4e=s790ql@tFR?{MC$9T;7XcsVF}&2F_Z7l(N2WMZ
zBQ33fp(2jDl?17oqLZdvi7VSH5p|5mtR9gFwi&_PM>XanU)C$Ogppa{7fI1Ji#p!g
z8y=|!B^`_a9)H#)B!?!GD&>pNsw_@QEZ?y6;q3lorV?UjGHJ{?9!qY$G7yU$%uN4Q
zhR0Av3EYWtOz*EETjlfb;o({b-UD;CtnM{G8hu~=(QM_M+Oiac5u8twtB*ZQw?lIL
zgU*b0u0=G-A0k>!FB@_*nN+d+u3hCVeR}Z$+JCjxeC6h5)=?<5;?OY!f_-wGLz<%)
zwN>F@8|v$jV+AD-hd@<a>{gA4u?lz|)`1vE4Y`$5Ld2#JiLksl5hqcWBSmIC9#&nM
zxQ)8@zL>!Llh!LnL9R7ax@!cYb*bR)!fX>4C?=ho0g=cntr|thLQ0Q=lzAt<Cu%<3
zf!_j?t<{~Sze45&L8TOO8o1f11Dmw136qq1iS>L8RR)+=P2FH16?5SO8d8n&%qPkx
zf8^4;&gkvq-f}zm$CK>iI=y$h2=BfaHf(;b780T-tf7A}KxxhwBn1=P*nw0b4P($_
z!}Ffwrq}Gxh#_X=WJ-#=KmZYJj2311cH|5VaqzU~_EEM>wnPAC_i+;gk4me2Z{#Kz
zN{z+>tR!9#ObRLKnYAmSyvjo(e23hur6a?zzmQHtBKvt*dcZFCbL8R<SB{A+r->lZ
zEeQ>-&T%Td75A~M?Fvpa0aQGlEzhMESHK0&jZ`ad$Dw3)&44dOrcg$EoSCja+PVSn
zU<S=fJ!x-2N%y@H6jQHX0PApn@6eI-$xz1|PY&Ap_8Jo5tSj+hli}B%dLM>+nF^tG
z39GWNZq%mD;8dMVb+@LvdP!BJ2v$iXo|~hzpzu&Q4a|Lf(>osPF)p({H`p2!OCQpu
zwF9k+M*{>mpK_9WM51l2*lH8idk){TD{^(b<^o3mZ~3f0HkMD=F_-w0kYX}7d78MB
zpd~h)a;T!?3Z@rQm$J2R?0-k#9K${QG`pkrp$b8`G>@#5+FYo9kfy(T0W|A9c$ne}
zs>lpi=Akw@97-T-C7;&k>5s2BEFzyMTjX72(IB)aOyL~Y{0G}qA`FxQCUN8MgpAsa
zd<Ny}g9kYns1h22^6Evo<Fu@738DrR=r}H4nJd|%V@HM&Vk^@jozarp#?LQUUeYGr
z6a0+KUK%v+mOWa-LsOU4W%~tuhBh1h{TNbvFR$0xCN{M$^9YeK5M;FYa5`*zB*j+v
z^R31xWe3jZ<;e+Wle4<pnQgN;5UWLR@{Z+?bEq!HM}$GAR~h>H3b;sJL|<Bg$FerR
z((ixec5Lg`<#AylZw+$kgUF>2Bpw5A{%nj9iCyIom3;a+3Ut-DF~9}l#@2T^>zhD*
zf&SM(?H4IZ=TA8Ac>V6@vC_;<;ALv<p=9zP8Kg7jm}BV}J~<{Ss7X5UaXB~;#-p$R
z-;4=Hck8~(`MBMn6!E?@LDmkQrewPitOkdc@<9%>k7GW<YWIV}ps^&M1KV!fn|;uH
zW*{GkTaZdKVfM6ia*LZ?&mME0UAKaqc&<h0lM5eL!-R3)X)uGT5XtOGL^j;n=lc{$
zDFgmv!R=1E)#dAfqYX0GI#Wm|6!sP-<t(XqM(K>|l>D*Alhox{;r1vAc$k=A7_pNP
zt^uo1p;hfUD2vNRwmr#w!+M}oSh4*_o^5&(tqS3g<JkUmxFvuUH0#7bF$L#?YlSy*
zwTcX6&~|P7VjOK<eHSn|K0;7fI+m$Fi+9gb8h5&G*Y^@jm-xHr$?uPZ&Nngz&P(P2
zdpNO<<wvGP;cdyc!^UUwpZEAy!bPR9J9{|#K<cc&K?;X_R7eaaapOl59~5g&%@xZ&
zjURy8?>3<&9rGap9}>d|L8Bt|LA#Y$&D2)v)kS{io=^=;xYSO48#RV9X|%5oec>8F
zrt=t`@ge&?1KxEBL29c>B%OwB)&9p=#@o9d8`022_|mjwUYALN3xbK|0z;h46zw(y
z2hlU?{-Ap~!;p`|=n8!1bx|<oTj{b7cn2_1XxC#0Xg205XpTl`>By2gZNq|?kw|cQ
zNJO`WR2*1oaRbwN>9>W>Zpm|xrDiW2c~wD0d#Lswf-ClI+}_mVI(%dzWxp<Ae}5YL
zq#m<m;<NR*)lYjMJNn6Wu^E}5Z`U4hGVmFrtD<Z*b|i1xCG<_ujqR2(A5?L-wOQOX
zZRI*zqY_B>Ub>ALti{QTFbWXrF!ybjSlzTS3Co~^6=1B&7(VZ}?-<L0EnW{?sOH70
zn_!N}6Kjlch%4~6y%HU^uarl6AF5@H7C!8d7$-Z6TRLG-a)6FEu_}fL&HYJYd|cj0
zh24m%170cX`a*D2_6New&A4}))Ld665f*N%r+N&z+h-U^U*tgS8E4*#R6gtWEC27{
zaGg5VkoGR!^T&qE#*Xi;?SoWHKVV<ozux{Rv^uGu3pHAv{dU%rN=I;UG6etN*+{&z
zggb#5I_loE+N|;VEONPo3!11fC-Y(%ZR&QJ7`n~)^y(6gb$jw8{3WUW46~*146}#q
zsK=vItn*c%O}|E`AdhP5oJ+*4iA64d%4;73+u-|#3?^-gQJ4L+S_g9<YRFf&PaH2V
zq;G>+0bXfAs?~xrJQoBFdlXG+@dbF9>#<*-K?7|sek-RwZ~U=O2Jo1Y4;Bar@RZ<>
zd#!)nXXU9Z*=>p-dB`fiX2~02QkIjor-oNU6hrCs$$ZJO)GFFGvWUXTElH9$7SWBl
zX)6#V<-^(-5#AZnl5x)9`KTaU@8raV_s01Mgt>J@gZ1&*){z4YAoTGmBCyqyji(yd
zrbPvJlsq*@;N*$W8qb!bbn33PO^d!|r}EwQFyY!m^tX35FJ|7?0{EOS<!y(vTA0?h
z9Qw>)bF4HFP|#b|-+a0Ig!(&KZ$-B$lY5aUXztVL)F?qrYg$mtZz@;J+4*f7^4Hv@
zvaS#o`_2yb8bIgncm)e)z5>E-a*TCdn(jq07~DqXY{Rvhx0FK=z?^37S$Gc99;v{P
zW4nLcG4eRe+Uao4Lf_gzZoxL-M`rHS{-|^JWX4+gv>c(w*mV4eA)tod|6wL`z++=3
zs{VT~_IOTmTGnXZzV}u;GOYnYNM2%)*MXX?EO9KqgZah<8V-4^hV|7WE4Sv5OVCu3
z!9GjricaB4x8j138TOTW&PoZ~7BcCVAL(pqcQRA=&P(SH_N>v1KIEV8ZJm`Dt=JGN
zDUs<&WSI$)YV@|=#fqc8QgcLoznta<BQ_z1An6Wl9?D88@KL0*Uz(!3HRB@t><fiM
znHM#(_eypsWtUVXq*wdkBQEBjU5KXtJ<=p1ToJ)6ZrIymW;oY)1ZA5U-y3#~?M?m*
zY8-j6+N$9dv;@poBt0GfLo5IOF~73;bQoxO&|tG_M~SzlG1JM#iHUC-y?!+{9Lem)
znYf?TeQOaMRRXQYbPqDeKjF;1mBdmukKZT~9(Q?i!Lg%3U5sEN6MhodhK4)9lSe6~
zxXxO6ux2p0I>rzff|Et`vZSL%lJ!yorjfSbojW_4Av-`qPj0x8Fz?kX?Jie8*&Ana
z7by+enUnNxVF1rhLlp8L-WRF#-E)Uj_UIkbs<T9-tnk1_K(kc^Dwfu}SR*fuIw8*)
zESJ@j+kC!0K1zndSVUNvFPeTkAbiLXJ_LtWq`qrCP!Qo?TxeRjJbbL%N{-ksUwV9$
z;nQZ9|5z~PcC(v%GwA)p`8JIi+0g#cOLL6_P<z0pDqBXvd+>n+H!#z1+<xD78&1CQ
zq4<Rov_Nl6T>U(FKV36XxPd>0PY)z45NS%9Pez?@3W5hhOgatrl)CF3P{iP}u#~2%
zdj}}fop_un$(C(Et1joIzsw6s+4ri4w1F9fg3@oeBBZdM24*KQ*&-(B<W_N@EEwV_
zsm)U`%A<j>-^=lBb`ZCO-`+L(EH8zMmk@=ar;^3N5Bxw$_6tUn^q)L>gs_xQaYAx@
z<dDT8qhyV*Hc***{qVjuBzxzpd=Im=5(*=~T6aUPczzJYK9rR>x>WRpxCkPB0mTp3
zX4BMTGsT^URAq`vMk7~zI|FvzqAUc-v?vKC@Y{9j-3+OIdhKg6nKvVjM|O+73cez-
z)v~ciGGPs<N@Yj;qS}I#60>vmzj}CLc$JQp0U{1;fYRM4fK|uF$;i&h%*dJU@6{Tp
z|C3rn<-gP#nz~+}BBn!)`gA5|=~YTZLW9uGP8%_KxTpHYWVlM#BTuoLpvubS?p6k7
zj9@v+_Fle@U;da{XK}wkIh&Cu63<RDCLvzF8eK%N(=VN3|Hhs!b8!s>%W>_4%P>p&
zI=Ll48A6KB5ndo0k<mzRK4q2&M`fqYY@k9c6O(l|-dzSL(j8LUHtr{pZRYpLeC;hI
zMkb*2eM{BltgcmcO_+p#?z~M@vBop#5YlFSt%IlO^d;c-?l7=18hHi`JBt3rewd<l
z3MDu{*vVI20w2wobZz1~2M{13hlN^Hc)JF^cS;i~$vk3~(-W+)?*mMW-OCJ6XYhrc
zhHf%NJlkkm`l-$kD&v*1GPGjAfJ#k7W+>$G4kVCT1YXAZthU+Hbi_7cnOMB>jPm1_
zQcs*Yq#01k7Hqto9PL476UdUf#fY<;@glWimSItuL@JSSHG;x>FnlL3Udn>c$3~!}
z2k2(|p{BQ)#Q_7e09^(ijnVN>3po!Jz{Q`DQ4|^GGka-+_xnaOZ+)mRr{$m>w=FpG
z8JwceNHME4qS-Uz#DdTQmLo-XiJh;i6*llj9ADEv?s@`gV$BuC<!QTYxT^0ck;DW&
z*mqNef9iPA!9dHG>qa}Ur&KEJO~#U(PSh_h?C$%fZmFb<p0s%zig*Y<k_rTfR~<jd
zcDi~Izsh$>Rb|}g%euhSXP9J5=Ial2ljzTtB@1}4i_Fp*CY9_wjEJ99hyTc~*pQu5
zLXrdti^^6rAehgXC8i>SE0~va_jv<2Rzi?(76|VOgs@+WDNhpVWKyn`W4B$93B(C{
ztJQEK%FSng9+mS(0c91qt-+id2brVGn3pTunk^L=oHhBqra=4!m+)Q=Og<`!X57^y
zy#F|OjEc$#urNzJ3ybBB-8nJ)7mZQ+1^S)i09)w2#_l}qa!owNZ%q}bm$jITCG<DF
z%dZ29@*~d;HmGgymmA~Da$`d#*eu6>iZfugRPL{aK*yts6qE%78F@uh*g@4CE-%`B
zOq8QCPcKIts_&7RR6UsR_-JuKg7JU=wj`tIn5ukWRq0-QyZ3!r2rev``%rq6xw-WC
z2BymugrF})mvYX*XnswUe8#)nBrOG?y=SDP3HoI&1{ZfaAIXF1#v_S#!BU>1&IAGi
z;N3{}rYb;8-KWnH9SVx0c~n~vBC8>3@?lLB*GsliK@y;<7K<@CnVLas3?Umi5H^~X
zotE5XNds}u=Vlu97mAXMiv`_gDqAYaBct-O<D~L06U!KV$mRZurEJq~gQP{<tR{8~
z9pTo=o7%psyylhX(u$Uvhn2u%y|<ShaNr6h8B%zhGt*aCy}ZdMcgvh%r!gGDVfdb9
zg5@Sm8Z>YZFTU1St{WzWA7rTFVn&7M=4%}Tcg%aPEo}AjsW-l^u=i{9ci=mEx-a}u
z%n%3zz|d6OStvlq1?HP@!)()OMOp>X*!|2(1Y9&9HBc>|bvHBT_AywLh2e<i_McVz
zMYO?fcXSttR%4mADiqn^xaOK1ug{=OqOB0E3vujQ^w<+-JZU_;^RMI&SBfD!jE{Kd
zon9a{i{938XFMzN+@J{x6E`!}u|^_es|~q}zfpv4y{+g~VMj_K)$d2jf4VRZJj$s~
z&*BkaWs|7BRm>W3nM5JI=d@|1_AKSKmj>T$*L|hZ?CMVJH0(T*AJB#T^2nJa)n307
zLIG;;jBC{w<kynK@_^(fjUS28=#}zvmnYg6v)fnIahOmuIXY&;EyKw_-l%iDe^!6x
zkyVRT`s21=$Kz&1w9I%akuZ6Y@Q#r8l=pS(jxgTpdPUoNd%kT-GwKGc?vf<80a9HU
z5NDh(JjsENvWjvrJpK%bPe}4M>{81~-@ECW6TLM-v9#eot`Uf#rsTrWvuzK-b1wo{
zdPdRpB=!#cJy1@>QN{xoa1Ou*yZ~jgf&P?h_!%W9IXX5oG$1=FMm;DcE;}<MOFJ+=
z#6Y#a1M*w6-2+GjsTnX3kUA(35HtW{Z(wI;>p*XAAFn8F;me2A0(nW8FMumtVHU}h
zKQ3pQH9}S2-KEmkbYiT!JVQkO*3xW_Vz57lXPA(Dw>pd~1w%kZ{h?pU(n{HA9}Y63
z3wS?Br~@60@ix_&#I8azrVCPqkHb<fk0b%1=7mCv15-0RL|Dl(islS{22?P1RaLgK
zv?Ib3Y#hw8*+}C+14<R>2G2GtPqts$)K0cIBnwk9nMuK{XriCjCIl<mj-Ra%_t*`6
z&R?>@aeZ`p&*#9Af-k9f3Zd&Xi6r(O(u4lPsfp=?Fb1l><RvvAR7_blz}L{mrENp^
zsbe>$0wjDwf<3*F7L%lx@C#d}vNUp8uio4xPCD``%CwM<fPK*}mC@(34<l&&;{<um
z5fIBaDf>4P)tJl~t9rLp1Uq<FeLF+dA`b6bpxb!6&lV2}i)Z8bQVdW^N}Ux@uy<G#
zV;|WomS^2DY5P8DGE15iD5gwarwo@|eRjUdYx`|HhTT|C1_AdIrYwIv!m)R7wKTFf
zH8OIbH?X%~!CkV(WxrkVdh<4|JZFnC)TaH^%aH1L43A;0!Lrawd+VK&MOJ1K&<RK0
zM|F87Y3I@wmdiqgQ9CiqO*R(3*V}dQKyxnJ;0r#$FZoFVY>`y}?FT3CM-ER%x63I6
z)(TqS)HRjD{FUq}R31;aOLi?QF~N>HsyDaU%mm9+yxKiUg{j*gd~g2ECzLiz)r8g$
zhu~B??KTDPyk2N^Uu(?!>*xbGsKjGE+R%9GS8Du5cB_vTq&h#$ZlI_%d>I&BW!!GF
z?r>MDHvv6w>Zri;sxMq74zd3LM3;(HSJ)xx?i|XSWocLWK<SNcsnRgoYkB{04Q5PU
zmH`1|%(bi^0@Fh)On6Yi$6-d)lRIjzK$<uaI+v(Ar|54ioizL58~K!m`-g;{O&FQ1
zP7wPL=Y3e$duMo>Yr@(E)dKa23%3u*xIOt3%Xy;^&tm4C2!;A@X6%fjMN_)_v#5}%
zN$C+c$1G{-T1N}&hPMhC_K@2Nsd_MyX+zqW(b~-6_5{i4hYLgf$3i34lB}AWDlr6;
ziSUCk%MyniRO3K$k24Pa-neRL4La~t3x=)fu<NxD?+rw|SUbP7j!@*lDmhxBquGwO
zGO30k`NLvZn}V7Gw}Q(X&v9eK2|BHR=QOB!YA~x$J?E?SxRARS@#hPnGQgV!Zy-%g
z44|oi4Yk6=6m<>Gyrp95$M7oy$hlos8ppY>SCNe^;9!CmbA^yL5NSR_9nD~rh3QLx
zm{Eu|b=o@Ua$eA`zL!9FX6bhH=6PR^6BxksL%uUYqQ-|jQ93$)NTMcp!L*Fls76<z
zN^R*y6+)IH3Rx*~MVG>N!1uoKB>ZDaL`bpSw%@GSGal2G#Jkjs`%4AI2y&u4l`Z<Q
zhRmZ9R2_@^My?@nDp&)`vvq`WKP0cK!=&C$ERp`1p49Ji?5g!<_*7*gbAZz0L_l|%
z?SW;VJLt&k_sVOWufWs3PO>aZeb9&K$i2r;a|#%Q@2yu9O^>~}XQ;2sn9rwc%+T0e
zDC0V~$`qT2m`sAo%dN_-{?ab+uou;c+PFgRCR@#C8epxU0H#GK+t|*<j;FCdr2%Td
zXd*w7`x%+Uv<syphDEt<#ZoS|3!^BFt9auydS?k(*V8%oVI2M&2D#C-?%)BVTeQ7B
zQgs@3u4A*9#GqXX5yn+tRE?HupTWmdfeQFapBg6^)IPeXRddi5l82zA)=%I8qWCv-
zgQBw~oOF16iTKxRdiH^Xc9*b+pOXWRQjZ336Gt6*nj4ZD>cCydb_>e!HldfI9R-sR
zIOc38V(cVqos!B!vFIbey<6RYe>z~mak+g+PK31pgUu(=$)SbL>K_tVVVNpUlZvPA
z<?sDUmnfbHOl=f2xoIUj7hK{rK6%Mj=(n6tlB%w!+MLyRP?a>1-NNl;#VGt-NHeR2
zo4$*A^)O@Ao}1v`xCZH-p|urCTWcBOQCiNFG)&$q#wTx%$R-1hs%u@TZyGm`mxL9d
z3ipmtsHWq@_j~xoCKg!eSPqDM&`?6)sId6uJLE5uz9^c$H$6ajkz2?CE(lTzu#=3X
zh9zHthiz<uTN!$L;BlUuxOVw5;mSdeTJ+Z&8%sUB`>WrWRZy27ScBd>5B0i@OM$X<
z@)aZiv{)27F`W$bcvP543tytTI*u<L3XGHKoKHw_V-hQ@-ex!%SG)Dt8)OSzbb*)D
zr4JK2Q(j?)=*(}V-ltGu`+b*1gp&YX?DEm5BDstbS;DDqhiGseE-75sgC><DIrn?I
z^+#@gWKp;;fKEE9clBl8oK=iF7FffVt0;y=G8f*oZGJF(5(Zs4Qbigmjggr-zk9yZ
zB@Ss3Ky&w_%%;jUU~p1zv-Lh82wDL_rlJ|>4q|`wi&W#RwYi=s>oCn`AOg2$A8usU
zx=N7OcnhrFun<l|`;dZ&?IBcH<qHpMYB9Mko7QBtVa5+uda*B3%Z3G^Rh~>s+q(S~
zJF1mp-u*TTzJ)F%I}+K|?J9F5!6y{gkTw>s^9P;?msP#^#g;mm&$9UYmJLyfMdi0T
zDV@8^q~i}C^2vg?d81z%NS980h=y`}-Y&}oe~78+T&*$C^SSwbP#{sa)w!$TNt;bV
zo2gtBY>-XFM*dFFC$$I}pmH(eTJ1q>orN#nBS~gIh<!jIGuMm<<V;(Yjd+=zXS?-z
znfF-W&6jTrP49WKp=<x)rA{CBliF#qTrFQX_7yt}^J3jBU%X~1FuLhfCZ2+lSkflT
zKDIbr(U+XG?blZwcd>eb)tkozEWH-ijJr@M5(E$26=*w37;hk7Z_U9;xqyDt5sf2@
zu@snE$~_-?Z&lq89T7n8-%T3roz*x5|6rKH>&#TS*tDWHvX#2ykB2>T=6(+1c^Ymd
zW7d^h)_hY+n6xmng0~>4DQY(b6$V;vMpo>P?A6SUUyOwx(ct}A-ik-!QTRss$oGvE
zNeWv&zAq&A5HKY%qjJb#Bo8>?7ukuLqT;_kB@n+(;gN?+uc6K7NI~f>36jj&RoqN^
z`FNQm>;ZCe&~y8MU{g=-9~aB?(5<A!(nv!UpC$|2jk&L+FYJ@T&CYlmmRjsx0Iao}
zXe(eGPxEmj;Y3g#rBL_a?%|Fl$VeTe<U_H<oMgJ^<U7X0V`Vaj+j3r|k20`Mw{&s#
zaTNO*B9No@o0tcga~2+{4|LOFBs78Ry-&IwC=jZ)=&q4fK$V*ANMQ|9caB(=@XHAN
zFoz<9)of7Q#?)aPcB5@2nkfB=Z!a&cq;S04`fu$Kdo+6a#Les9&n4f0WDxBLL?aqJ
zCdO+DZIq|kDRFAaao9-@ztUkT?Z|+p-y!7Zd$*VSTZj}r7wvxX3+5%X?P7RX@mdo|
zKf>}Ab=71>Hr10uXDcT0rY6ouGdVL+`sz?2D0QBaHF-RY&P`I97oC*3aTI!YI_U`)
z#xx<f_oij06XJ!*G@ojsZ(~*06t3lA6Mx%5wc)<TCP-6%k7z<C{S;t*W?wSAfKo7r
zFQ0~!0ZS4nIhtxu)yw8|t-nOZI#<NXQ^3lU{(V$vy7gpgT$LL)y9}F63Q)URZncD#
zhx-f6uD+5SVgU%3n!k3V7<qpWl{bL|^bJGsYYtARO^4BkCW?k!VO4+UjQ#g}l9Ao9
zzWst{^{@{W9(~M0k5;$eUiP_=X%D{bjG`A4k3s6Tc`|-%Xg<B@Kj~a3mzrgt)^R?o
zRx6qe6WA_+*C9!Z#Da-&*XAfUcylLgEiEs$m{h7zGJPlj(ibFiJ8@m#{B)cF-_DDq
z2hs_Ae+pVA2fLbOat>Rh`?3NA)elq{`2;RJ6jy39(y6aX>y#kqS(%Y}&vaQ&D@OHZ
z2||}hd52Kr-v8Cm_$i`6^<3GvlK?v@{ASO1v-wVbPEt{`(T3JG_#kx2aOr6!{lJKG
zQ58JdgFhOAB~}<Ji4!rVc(7@+&6|#=6Py}y#p0l<h^NB#JD;}FSIF;J-R3^54SZ+p
zlzl^(wNXYh@0=1{LghhIzgTtPsul73?$;GHN4r=}J7{QGxo|Wo00Gkc7Y~sQCXFQ{
zu@&7nLs8NikMN7`G1o15i`gvtYjvJ~SnCdL;Tsby(yCjvUx<9^e&t29BxLdocGnEk
zvisaFg1G7N?9YS8?Q!Qph2l(V74x%7H!uhq=ugKv5KyHVr})2i{^!Tf`;b32B%l-i
zpL^26O8j)<G9nDW%%FfO0A@6a)VDT(Kkx^<ekKe3x#fDl1ML3WOqyRtTtrw=iC$Xd
z7Xj#Bgg-5Qz60F(|FivUxF4|pQ{?-fEC4x5|I6a=e=ID2$%6lr@vj5^*&HU|F6=*P
zivMrI?>&X}XX`*e3F3c4_^C?%PZW~BP(1&EVqmFfZ%+r%1N>h+sDF(gmaCSbC<s8T
z36NNf{%;--P_B0yfCmUc`<JPaJ)N<gp4A_6g1-*w55$XB{s<cYApk&N{sqAS7?}Ts
zu(tVo$VGSwD=8EZP$EF0o&7J6Tmbez_3zK#`SpK^S?L)ln(Faen%LNxIhb1g>xs_q
zM;d^Ft4syJy#NlA<}Z!l0Vc$M(TJ>)+<ycs*^c9R0l-}VjrsR~0Y?Bj^}hoPIGR}+
z8rl6vzVH_Ba}a?41n?Pf{e`asXz{<}tLRyp8R|Kh*;p$W**jYPk&yR$50zMfdRYS+
z0tH|Jce4N9a=m#0=`{bp8nXG%|H?sv-<~|61zUh8{I6s1M)lvc@Nd<y-w*xHnSlrw
z5(o$pu!8(`43ZiDTkt=Pfn#TZu{Pkq>jA!-zjh7ShyRxUKV$GWU9%^Dpf3gp17%hK
z0;2nO*Z=%1R`dLQ3;)&3H#)*8^8`HcRObCdlkHD>uD6KPKcN3^zT<wy#Zv%8s)kAb
zq0aCN2d4JVxPR(lgVPoALcmERfgT8m=}#o!J=Z(U_@Al&)!Y_`yLr_Ee9m#?{-~k&
zXA8OBu>g^Yznj})fIj%=Vf%r-wrLAk|4;#wkNQvOzYd$*>+iXLdj0->No-zeI&cC^
zxM{#=5wI%$d&~8{_W8fL_KsFodUme=aXI;2Qv6SJu6IrF|4sh)Bdgy(fxqk1{=&9K
z{@>U?)oOpI{w^o@i)xhc_td{#CVm$d`GqUa{%71jP2Jz?bN-?>R{t~gpXb)^H9vlF
zTe^O7|GyPLe(%2D)3SdNv<ClklJ@U}-xDf-5w=HvORxOh^!LE_U#5u*zlXX1Zu@(n
z#xGmYz5gAy@w?sck6M4(xgPze2d}@||L&guW$%CSS7-h2mcRSte_0L!EdTAH|K03&
i*YPhijVplJUmVGDlHh<90SJf!@bz;&mwWyB+y4W>%)>wc

literal 0
HcmV?d00001

diff --git a/oxAuth/Server/integrations/otp/repository/com/lochbridge/oath/oath-otp/0.0.1-SNAPSHOT/oath-otp-0.0.1-SNAPSHOT-sources.jar b/oxAuth/Server/integrations/otp/repository/com/lochbridge/oath/oath-otp/0.0.1-SNAPSHOT/oath-otp-0.0.1-SNAPSHOT-sources.jar
new file mode 100644
index 0000000000000000000000000000000000000000..03c2aabd55df7b7266105ed3f0e04ff7454a48e2
GIT binary patch
literal 13536
zcma)j19+v&vUW7FZEIp<V%xU8VrOF8w#~`J#>BR5XC@QlpPYTp-E;OmXWzfSXRX!i
z`MRpBtMztumAn)v7&Op(s<rqe@sG?uzo35o%7`cn&`QXP(#!uUh6)7v>#6xmG1T9S
z$q2|wh>9pF)5(bbkQp15mZGJbhLfVDni!j`S7exD-r9Gdk(?N!k)joZgxD)oO+=^e
zCUtAclw@|4bjqTtLM4`pV4_Cz{4pBOjQr!*iwH#&DMh7j#pn-V!&qg|ona<r?$84s
z10KnUQ6F1%KQ0rt(cHl9z`?<~x45+c$xA^%iqpU^I{y+X;@9V0>_1xP(Zu<0tpoe@
z*2vcS9}WA@B@q5u0$^)oZs=fPY-aK|h2ORC&hEFuwgyh-zfrW9{=0fH{|kk!lihFH
z2G=M5H?e8|hDzMpz(~p5KmcH7>tNwzZcS%t;9}sVBxBpl0NZh=rp|-bi00Q1FO*P9
zPU^Bm9<|Gohq%V3neJo(oq_n~1y5j|7nxak-+}S8JdE{b2nDjJLCGqIAxeV+%UW+y
zYR&t-UAO5}0E4`IY>I*UD+pfS4Vg!4h75^5)3oRk3+PjZ5fXCa;r_lLG`u)&s%hk;
zBDzX*)FCk5Owf4hDcJ?lY-yLXc8cSPV{6(S=v(RySJN93MBfuz5*;<uH?^a_*Ib#B
z(Qw(iO|0|d79?s@B*VPaz%*7tvIZ!#+#eeOj-DZFzI}CNl)WnxgT>{ewg@YqZ4o4)
zRx~@xOsA4XbrvaU#uJ(-P;tCE=G1W@HCg<7K`T>f>L5SKv~v*$`yx7r5P7FaqYJ$B
za_)bPnU=6QZ6L|O?f?(6a!W==Aty<gTA<>3*iLPmhkI6o!>Z?Y?r8Y5r5Q&ta)JGP
zwOw4d!M^3wN^8D!q<Z`!PmtE~V^rU!HkZAkX6L|TyDM-o38$-SYO1LZX1BqEKpXq~
z_^6_{(dT_!y7|$52nGfMng#u1T>deg{@TGrf7iis%JTo{)GAd4+f_D1@4K4j271|8
zael@#gRqFNq7jDO>4c}*;k@!Q!-m9hR1(WpFmHG3aq%*%Us7Pv^u-s}z3$f6#T2WC
z2)=<3Ey^gKwvR;8pr@K|mkYPuS~5vYPEy#x+oBE?A7>6(f(29wM2tXDG=S*%%U^9z
zvi}%u>NNyzf~Myi2H%!dZ<{FwGRPAFy}LYwy*;f^>mqx$Tkkwr<w-Vn!uDR9Q{?Fl
zS(S6O<<h_~U*LzL>M%S7LBrlg1miqt<-cr(7q{@;*^Ckiv;t1*ak$NQsBY*gDVuF=
z3=>u(U!j>9VRg0~$!uwNlj-NKI8|nl{$$Zsnar7}7>4~l{p4zRYtR_PsX>%3O``T~
zKT;V+J-oHA0;x?I9=auVB3i>rrY=esx&Lz<mvyxu{HA;7gn>=$Gc8)Rorv86RFcu!
z{TRD0HP~R3?b86oRa21~n*YARKB#^`^~?u$6*F1!eJzirCmHg*@FmC9XW&|v);#WB
zvMU9yn;62A^i)iN<tfC^Li`IZaF1hH4ui(Pst(Y^oW4<tb);OYmL_CUwR7acpP_W!
z{5f4eLOOt1SSM_s+jU*<^{xfGPJgrJnqOP*#-|y3fJ{G0k4%(xgt2+uCp;yl91EE7
zS6;Jj3&9`V6OY~kF*!?k<m!_%s?rr6Y3G>R#wzoQps_|S9XHIg1$YV6<K@{_GSWPp
zm1lJ<K%{qxEn=~nzZQNfikFSY>{LQfn^6(CqCNPMs19h@GI<K!To_E`ZzR!aKr2fr
z3@2s6c(O)}JbVIc4H?!kxf$sltggOfi2@sM^Kk%ZjFLF<C)?AuGd*^N1F<y(rQJQL
ztG_T3L}!_9;(EXK##~oENj67Q>W}EYu~wGQruD(!e9Xb<R5GYMJr-w;GnJd=Q!lvb
z$KK#`j8?m%3CtpH9JQ|ubTi4SHZVi*od||=b@b+~$$W!pR9fyiU{c)*vo;`PQ_<9U
zB}&epdRPXw;=LyrN}Us=jbA+jcD(z7+?bBicDxK<m$6EQ{kYci0t|SGDWzQYc;-&N
zZ$N3ty6Ex&IgI25#CC#u1R{!+{1h6?xs5E#nFAci;0P&aGGA9uAngqUx7S39CMMd^
z8~fQz<VekR=y{eKKOKC;e1)AW<l?0$e!h%Us2-r0UOap0yZ(wd{HXUnjUmnbMBRQ(
z;q_m;#-F?5Usrd^|6>{pI$HpYO&tC)n>#d~lyEqaU$eUMBdS)jhW#VmgQAFngz)WP
z{K6&n%N3O+@kg_lBgN|D!LRn8yY!k0-Ip=HB(*u8qvOk+o-UMlQ*p+0eh>2%m(`#u
za4U_U7G@Zh87mzAY-Kgfk}}dw@SI$qXogbU&w&<aKu{kSs#x8B^hx!5G=kFg0WWfk
zgz<tE?I`lF?s%k|O5~tm!=?oi8Wkh+t*o)&wbND(j=apnXY?`+8`8Edh07j{PZ&r-
zsAOZ8hHTv>*nTdYaSrj&!FnZ3Mncse+7yZ7mnn&yTkis|x=TqjxXICn=a6rJmyt``
zf1E92a|iHd>fXq)K^cRkq%E-wD|e$UKFXFOft92zsu96Pkm5moGyi7r8vm+27zX|v
zW9Iuwi4iSr+n9QYF;%_W<n0mFob$?wIIhDDTDwpDNSsV)jxE#g+b-hnF<#Z+z}}-s
ziBX|6t5hHsa~XNolJsmewpiQh>eDGbUpo)*qs!7ZeHybrKf3gkh%Afw)Xt=!aomyc
zm!U{`?*b+F2&bM@F;S`xzYI(yNmc0}$$Xi#B4)EkS~-|J0U`?*zj&po;jRy70daOf
z0`Vdic?nubOdJv@Ux7X<_)i@@7n{#QqUGD=eXyHid>~&DsRq*f2CEn+BQ0I&eAlF(
zig|8+!I4efD&h`}Ll_cFfz`W4j>|}rU0mp=zSz$Xwi!*ri5y74Fwn~>9Tc_?X)LP0
z89ht-Wa-MW>8nkI<3^(^+NVzClncm|hW<_!VYQsPWKI|iMRpjzi=4+IG#MsLt48M%
z;wP3!9XH#_UKzOw(Lwo@EM$wjnJ~r@JCvyi$y?3EOWyiKB!NyW4f!^2)=#b%S*{}E
z&`;TxcpeczvY!g(q@E3`cmUrWl*m_0<+Kgy{aPPeytuxxyuRw=eYL9kGTw1KZ3*(?
zX@qcZjuaphm^W4c+O)N+U(d(E$>k_#P_qV+{#H%=;g(%&7)+)SmP<DFW3?Slc!kDl
z$#B-~8C#`Wqz1})?q#GW$Qwdh&}@(Q(ArFsi%Bg8lbqcoP8<o+(ZWRgdB^(8;nPK1
zkwtM-Dw77L>HZ82q4k)kEaE3bZai1g8@n+WZnh7Hiea#_EllHjZy$GQGJ1mgLwAb{
zchq67LDN8pK3TalN;9$yNDL@-W9K!H?Iqm}*jicn5{yN#Er}YAMa;>|VnUCW>{i@5
zv<ZE8h8B$kRu%x#jY1GEfphm;wB5Mn%hvO8_qx3}^YAUH+qAOEB-db~WsoQ?YZoH$
zQe?*OT6``19#Ma%_jq`ilC#n7-4Epb_Qst1R$~GRj}EIY8O>TLY4Z^lS07J1g3J6H
z|JJ0ulEWHwO1I(-qxmCm`d1Z_l`h_&-ZdCsosxlgGhXIyecgxJ`B$k7N2xhA?b1zF
zWfQwu)g1^?T$@qdOQa)R9<`URt~fgfZTw5ryF~3mKD3mJk!c4!d@uQaStoOMQ~q3Z
z&4@sN&nPywRDQGyQjMCU5Z2G`zEl5(Ot?TAunv6%RcBe7i=gw7-A%v1I8(T>kw(j+
z^mO*BQ+$>>O@6q>qY+|`pUEb1gj0p|EtROd-HRWNDqsavNE(++v%<tkfhND^vWQ3v
zFmSHo5B`LHU<sO)Awn{s4cA)s!ONwgkVucs(YAX*G)SM|q)2zrb69~FQmIsW)tTC}
z?`a}FVX5z1G@3>Y&o?2K0<+E$vvfh~%o4O_DTWd3H@^CgXU|RicCjpjC+=+vJsIc|
z=C0Wa&83Nsnf@tp;1I_p%^@H<SGEYn3MTsf3JTAfudL?#%_*sS=sNa9P;3NN!vi0m
z$8`^8wk6*jYSi2o0@B*fSjEP1tBo`Y3z(AlfH0(Cq(y`P{6Q@!`IbsPn$^{g?20r3
z%GAjtMD|M2$Ucrhm4$a9+M5OOvt~27CRYzgoox6Zp98BhD1-)^nw&XbHq7f#m?9Lz
z>LqFcCj+1z(nBNQgjcQTB$eey7o&RNRBa@c^D(j~)S~2C#F-P}hEC%_vcoYg-YB6t
zZf4XFKHZ;0l~CEop{l_u*J3{P63J+~R2Oi5QE1juGAPL=JAW=u>6m2xp?0f-{bh!8
zWVvn|nqx~Ft#}=xHPE*@K&YXay^+6dB1q-b6GnfNK)@@Zztn5sRu~L|XcWdVTB9w=
zPe^UTqSF$ak%2hmBEn;@o|fF&%Wh@!OmNJ(y)esL_?%-YpWOb_{xso%&LUZ?3BvJ`
zH*k#^Rt_=QV)>9Zg@_t6rzl*b?X7*xx%>o82<3wCGJv;|d0-2dt8?^PeOFsbm)B`v
z7qu=-EU>igRyP1>UHPTuX%!C4wXU0OYI0d@zoH69xbmA|_u$WxdA)f^^I`r}@W`j_
z#VnlO?;<0bZWD}omrm5D)hi>EuHtR9U=-zit3p@oA2Oyo{BjIVz1OU&Fn1#JOB-N7
z+6IU?rVn=!;Smfzvj@I?-R!GD%S<@F;3KVHkLRo<whqgZ-0`d5bO)xGP(vrj{0sq3
zJo^D(!tlgzpc#Kd)J8)9cgxVk#Cqc_D&TO3pc&zrF%YJ;cYI%GYMp9Uky*t<?`je4
zRWV`TlZ8P$Z43740ZKGA?n1@a!60d4E2T;={qyZZ05)Kyq$9aBNDJw~iLV|tyt;j%
zFQ8*8O$k%QqG=k$jT3rU(v<4!K?0Q;ErKSxgNT+9ebtDSh~(FzuyLqyp|}MVucmrn
zNMB?u5W}k(6<AXM_Lq}lgBGj@0ojpBSG(ElSg#8$X^)@Mrax_1n4Ornah!%8!+0^c
z{V@%u4zH+nCbJ#{k=<^*-Gj!>NA>JR^;${QUhrAgms%Zud?7&Gzq4Gk>VUTVyvTRM
zS4H0)s}b4S+AToSersk>B>J6pJsOPnGKJW&vW7gINd2cR7Q-~Lwtl~h_rlWPs{mPU
z5}b?)>i8SXJMb}+DhVrq1On>8`W^WE_58y4e*hm<1Av9Gfs=);jiQO8Gr;K&1f(nz
zGs}S3ai}(CUsiqtp)4*U4hc_V9@H$CDPdT(8}>YnR{pq&#U(RqtwdLQA3x;o{o`QV
z5nOq437PUjs;|5vvs#M^OGwQDvr(i@qY7HR2Lh(`(x`g`awYd}%iL~n7~EP55^p#-
zh8&397oFGV=^Bq=q!S1gd>kE|Qx$r(7}L<?>n9|#BRQ7ViPDm|eR)(uD?5)Ezuakb
zIOVb6K+l}1)epV~(}u_U)R!Xj6v}?<F2*BKg$@2O(R-l~((+Ra5MRUNuli)|Wg^0(
z$+*9uLgRt+8|fS3Oc}`eWg>n8Ii|c-7Sb;@SBBQ5c-@;eF#GD&Nz;7+xstQo-|tto
zID8nqF7CT*<W$A5y0vI%2S?=`2N-Xyu`pX7{vP+)<KoL+oX1L=It7Y<1nJBxhs@Db
zK#U~P{7n5(11`BgcvQ)*%5=pxO`;rIQOgY$ISo`w|3Jb+=dSt5p3S#u(~?;%cQP~Y
zBIXfuBxr?9ZOYi69-G3BE-BVfdg;>4wmlIn80WBh6u#q>F0JEXT3dR^yjIcKCl<sR
z&)VrLeHEoO7y&P`bi;u3+kMQ&yOhP<=kt@wT$^f%UVK}+QIw#g%D2I?=JCQ&=Z(@a
z^PA%uW{nCjmzV9C!Gv%ah)b^TYyvM&P9vLzF}%_pLl^yCvgiJLZ72^p)^t(SVqHa7
z_n&H{jM^}cjjnOt$DEwQt27!25YRFB?_=(-V4LdyZ_L^L0k_B1t=|vNui1L`c6`#3
zc<yiu@aDR)G}f^;7D`{29}O^})AMP2k;}po*DJ4lHt{|V$J0>s_yVCI4#m4ocJOhN
zn|byefHY6!EB`Ro9CD*09tR*>WDuO657R6LIl~-iPAVa7PfAyqk3@#@qWfE+Nl`a2
zHG6#N>VkN(gIBwpq=z?`fMu7&RZoMuABxmCCJx>@Ik+`~lu8~+)zA?p74jK;C_`b7
zjR1+pA`ME-ibS?@{Nce=r&&TC-#bC9Ge!|MJ|n@n%ZG>G>0t^+K?3g`4KG%bLr3qs
zAt>Jg?umylw{(1(oIY($>?;kNEty9H21UJtMh$iZ5}B=Ww|WvJPbB^gCT^Pv6#1>0
zE=hz0Dzpp}K#Xda{GG`}71INptW%=~NQYJg?8@eVw^^)v396+ZQs#0^3ql1sHYt;{
zK8iBAl+-Ah0<AQ~nuT>{BczT!Fc)y1l@ePF-yAxO90YTPH;Bubr>QnNxl+2Kh7kDp
z6<L8g_Rd44X8`+LZN)>6?G*3TYXWfAOJyaf1?gCVNJ0N~Ub|#sf^go$z8ks6P+bD;
zR0UFraW+-hLSgSx5z{Fm4-1O;Ks^T3W^Rg^TxpikFD>Z$T4W5oIE6`&*mw%Rx^Bv{
z7T`y(IKa4vshHM^hV?{V&jhMss?;yU=|30r3<0_m-m4k6uj~e1Wuy*mKWS6mjfQng
zxB-;>!yX~m<;Rct@ykV9pa*^6*01mh_G)0V3RzJ4d$<_($E{$SM(Ru;#9_$O`3j?B
zO`Gb;CB3d&{artDV7BqeQO-P-h?Sa=DI@&TnP#QR4pQNwrMENvI2TgNE%zXHBXHN<
zIb9B>Nji%byqpn7IbA9u7R<B|V=)Rue40IY{1i|{3P==vRugsMPOZ|@s=nX@luOJ!
z%)aIL^a!pIu?gCe;Ot=u3))Zx76r-D%^PRkJ$5)g&OCX7&^Iv#_XPwGfM~HMoG=!v
zDs)X*k{>3DG!mJNm{;Vaf}nrSH~WYS!q^&Pg(ex_8<P|GQOT0cmCM3MB%h+&vG-|b
zg_#4kAUzQzvd?Ykjj<j3t{xpf&XhBtn>xJEUecc-@bV^%?gn6lL5hi^<Ul7ZO=f#@
zvD7V@Vi9>0#n?}o$ho|@Q>3$P`*A`&dlsT3SYwWxwV#jj%i7YMJhF`=$aV8oVP(JN
zPQ$>@h3&h94Xet>WZ4M^Eky$f6(lTPMLbwj^N(p-tQfZe>J6ayfw54euyRaJ?nURU
zDXq<Rb&$2a1@=jo=8$8D;dHjKpS9JB79|m{&jZpJ!=&JtuDx*A4mMk(s9BRX(vt|r
z``~QB*#tB)6kQxuYa<_N0ZPoW+}f~2s;#a-N`A6I@_3q^e6V=oHkS1}C-xzg)awC>
z9otrX?5G|h4Z)G)BC?hN3iRO(^C~l<yn{n0Xi2l1X|BlL^I?jvSNO+pa6R-F1xPy*
z;M`z2XZ!msNw}u*&EX}=aCrEF(Mygp^<9_htmw?5JOVdh=MTUPOAZTQ1Ssf8yu+%W
zBEQ)-P=%ep9GvezTrM{0)!5p2KY4inynP;Dq`%~CZ+Y-Hc5~bNc@U(HTm&fe=y#i2
zI=sNFg{g$b_D&s*R4z>^hqXF>!dk5JU2P0FrMfJmu1oqV(J_dUJp4hd=1Pj}G)o7;
zO)FyVj#=%ym*Z(oRfOaT()L=f>%7^PPI@?})MSLaM7_CE7-+gVPU-VeT0?O)cQ8f+
zMuO}W7a9^QX^%D8{5<E8@KUy?!YcYr|JDtduDlRSTx@aIwE-=_By*v<>HF)jy=m6n
zrP&ZyMD_8h4C`9TjpWVp#G|M3BTo?DNV@JE*ZIu(K>17c=RN_h*QAZt=i1q{tKr?2
zd10+@cYH_1Z?V-B01+l2cB#Vl-Jhyz8%hK(m3&hbNwa$nO@mKN2n(Uup&HBrRTgst
z=P}^G2Vzo2rY0*n97j1&9K~mnywM$8$eqs8M-rx0j8+i+(TokCyD{QiKy3A~dZLW>
zuPP{z@x%lCKM5-mUI-0O)q_CAd0s9n*Gj|%N_K)nb|2-xaE?X20MnjkN|z#g=@0yT
zm}yy{6H~mB`Z$ZZ%Taals*OrSgZH_2$O!CpVTH?lz<HleVQ-M69nba>moSIVmbx;j
zmuZ?!tVhynu93%_uiG)!U@!Rt?YW8=1U!X9^aq1LGxX&2?x*ENsYSat)*d*3LU<i}
zwUuJ1OZ(BW-lg@Mhj<U{xe%Q7nM_U1+lTkfPZKepujtptck}CV;ZIA`Ujf(O8H|<x
z$6%}`WxLCU*!iR;-Go7AXPo;XJU<M>A^=?kA%jptE`mpXX2?+Rm%(^&9qxIPOGqM_
zW;Di0&DS98$Fu1HNs(mXq@iDII+H3nEi!fehXK)hVz$oKOli}@Lllk>9J0&+6{1-X
z8dY>W%S-<50-9@LBzWfLdAIFjqziFZ699OxKoI)HTeDw|_x<%@DvyrJ<-;YuW4s$^
z&7$OqnOnP8`;+xYm0%Y*Q6U3W8l7BGYHr2C#nU-sOw`4O5{>h4pGA12YA{sv9}jK4
zPa`i(8SX}j5oC|tY%Yw{o@J(Na-1oym#dZ4rvB?=<nv4lOhMX~d4zDjoS5yh<os$T
z`!HsTqXg|q9>Da1wAT*8)vyvR*ham4QgOVfJ8BIKs*m}BhP4c)qzxg`bcL=EyF6}t
zopqu|czSbu5rw00v(3b66EIoCsh({?qDFQgDzm+quP$Ge31fp&EKX~L^-?3bjFIUJ
z;a`@m_sC<XH1z6EjZYbxiVHb<2d{eEV4DaN^Q9|u&CNf$OGRgDC1Vm(4DF|2aSRht
z4lgX5Q$>R>s)%x>QI@CIHL&I}d0-<;w}{^en_yjkb+K<-dDRQq^PT=G)e%u~fH3E>
z6=VX@&M(|RU8Fc;VCi%)0e;(uwX$0wz=GTJvs;VD;<M+GNgCp33lGbN+9gHS3JsK0
zfuiX(CwBiNh@XhMVh)z)DKA52+c^ayUY}&Sn51KrtXD`DoH9hsgkR`rk9V+V+b18R
zX!f`-6}(BXL`kdcJ8fyw%O{%dJJG^st@7ss&5k`nZtsp#RGYr?4at`kr3i=8&vm2i
zD<^dJDjy)%M<e*PPTsqB#K4iR&Z?>*2830M3;*!yh=RcR&O@}mzSUW4y1&(@SjHtp
zEAsTz^-*=~FwTkpz>B7xizOx<7f?HovVaTw6Mktj#JXUwelRBIzLAd}4tZdjIaK{r
zy*~OJ=jZ*oYA)0R+Yj16FLV(Sa}P%!?iZbv-kEu>y94DzcYOS_5CyNKMcP`N@))9X
zb5G2p&h;CsJa5o0E&Ujq03#91%_4XV<3sb@wk83egb>=;by42n;;xizh7O46oNIE}
z#vzo!2cHm&n%TolgmABVUWd@He#F){-}H7wjLCUcd-^Wd<wzrwrXudy+<WJI^dQyN
z<W;9{CA_?z{F6Hw?3TXD`b=h{xMFY8Nj;l=OpFLVrP#}ya{T}e7ZtJ+y<wa4_%I8F
z64a748DLIwl(KQVNwVb6vg|9Drx1||0xykz)OU!ba@mGRb)hPIjikE>D^pm+9v+%A
zu{65xMu9yh(B(~ZqWR?&;eFXSWg6Q$dcR|W|9#o`D`x&X1NHl|@w<Wgo95?t1NB>u
zT%O@68*^BkwYWOEAXQ-OmKLNkY=c%(zT$WF+c6W<Jv<8_y@}12)}N^<1c>ou)#HZl
znpGEid~>wpfgkjiQWN+|S<nSIhVr*lm3oxLgVN8cszio`jl-WqbeOU0ourw0!`*X_
zOg`-ij4|=HLo(a<fiv>8!rcpt5U*FrBybPai_08;&i)?x&5KJ{FuQ`X*iYP#a<?oW
zL!p;`R(w9FrAUA+i&8*NqqgbFFZ0T`R})Lk=gNXWlni3dm8PHLpjI(HG!Z^^?}mG~
z_KHC;Z*K#y-z!Pv*bPmC&=783tUIbEHv-HH6gOsuAJ&g7blLmSDT<p60xW5>dp~%O
zW*-MScrR1Jo#YGAHQfZ=gcs9Lf!h#sIJ2&-?siTDLp<24(MLZOqimp9*al)lVdbIW
z<(_YhJ;#CHjDQy)QF=+S9I%Y1fmCs%S-C_78SY;_O6P<x8doJl)n`I0kkFQ!@ybbU
z%nI~BJ6f5&%n!PTfOT~M>ec3ke5J9Ghdli`#N!X3CiC@$3a{se9L9GtrQ(5geL=BI
zh>4gU>BZ<)g`vI(wNt|FXp1hcu|qdS4Fv71ZBG*$=Bg+9Gc6*KM1s*o$3dOYE2R2*
zdcnmyeh-r4ku2jQfl|xEM2;h_uc_Ike90HdXc!_zSwsRdwjjj{gN;m!&bN=w&V8_C
z9ax!E(AZ-#zzX=toq!6!yo#TYVQU7`Oo)_Y$k$9CIPpVpZ~`KW%`%w~$Se2c-!ZP0
zJU+%h0yA9j7Nq!YHZ*GaMeD<iZ<;-idDC!Fe^FyjfLM1vlkh|6oIy}C(q(XgTeP5m
zkG#bFPjZlUh&6H37Q7sMT$`I11U6kK_F<W!S&&L--+?dWooC@9xCvh0Pd8iSKd+Bh
z9nv@YtUh%7sI?6q#jg%@@M)b{Ib&ZeFsk0j)y+<`Ti)b2BDnQ1-Mi!*;%~YOGEw|e
z&loun$K=9RY+zgw&@JFk^eMV%CqWf14qY0L7&duVagLQgy~&>iPI1>Y+y?f|GyLqS
zd)=`m;Wh?-lDGX_iA=VKD(<H7Q>R=*<jm@|MQUv>0aI+xkFuY*Ra!pKhUCh7;j-QM
zRI;>)9?oX4-=$#$oq;}k!zCAJ1w#Qb%Y9p@goeZR9ulL8Ng4-kGhQWJqEe`TmT!UU
zmn{i~_SGT1M|Z8G^Oa`j8u%RdE#O5zkJcM86)~Hf-2N(kAF&zhp$W2Qkykc^J6dZG
z_sdC69GJL=1wW3H#V4{7kndDV6KpkPhnsQRej=Z(;}Hyp3JNGq82udhC97U>GFm&U
ztB~%yU5c6O>+QE+R{}{TCGtBIGc=IxWbfyERyXPK1RhZrMJHUmGA5!h8A~NL@H@Dg
zxm)f%r@43@*Sa_a-PA<;HVhRE60m)Vx7x|oN6xCo12}Qnv04;~8JvlxRyUqDL<kC(
zZ7P2q<P!I4;RfrP{mi=@O&B_KUM9ZDeJ0=~$jr=qaldg10y?|RLD|}>aR+w61{o`9
z@wZ0TF*0R^9raw-pSq%+#8%j;wq+mHJHRzMn4~S>86s0abh43cseZMBiFtaIlwlam
z{g@+Q5&Suiyi_VQbw%VBr@BF%ErpEwXEq&Geh^nJnp<6FYa(U+1rt)tc(Q|hB?g<%
zQcgkM&@FTA%UYJ&F2gP?46LZ4H>iI=f<Y0momLuEni=?HUZff0eGeiP5?U|Iu3of`
zH9IR`OIMBacyP=beNv3(Ss5e~Hs*=;aXBE_1OWXuNRcp<Z087@SF1clj>sl@C@)Wl
zK>Ef7Axi2OtdIJkl|M5@(O{Qs_*chGesBYu3{SS~VIsv=Ia$X_PI5^F3D8&%MWgIs
zTJsb?iq@)9%NH05peG0v)VS$vQbVLV0xexunzl*DAx8h<RM}e*KXnm}&C)G(nL|5c
zfrfjNn`yb2I?g#FR{fnO$zua~v$m7@kaVSaiVEbUs6-u|j%duuMdN@a+A{30a^vy9
z%~Ugqpg8PlO^M`GpU2#2kcM|?fV0v5&gn~hOEOP1D%;!M{%fQYHdY@1d%icXRNt!X
z9{$Y{#6#r7TjZ0BTxFs2T|;4M_sh_PN&EvKO)YIu%F}YYbN8{|fHiMae(!q9S{P=@
zT>>5pGQAO4jU9J|xrugM4Urk3ie5`;I%fS48fCRXusoa6`=mo>(~=)hB51(iqv@w+
zg;bAbuCtCs*62eW;r9d{${Uw2K$8o0bs%C*Te|3ZGJ-K#Js(+_kI$&*ZK;g5AHA=l
z%p*lonX8U$jPNlRe{{G@WEBDfj%;?ms1Jm%At{Gl4H=#LQbQy025wVJUJLze%u#5R
zVQ1MTy@`8UH`C@m?hp6N4dgYG#%i^O=p=_U32L-wKINQsoZWGZRX)7^a#+`G*slme
z*yOK(N<AlbpHB-aSQovT1WvqQR;kUXRvqBkfa=z-8V=^Rwr$}D%6EdrT32Vx%$E4c
zX}d1Q_78b?7~3dFfxKj~j4)s-L&`6rJ=@V@9P(!-+O{Tcc?xVfHZJGM`8pfcM^C6N
zb4QyX0SRVhKi5n|zZr@c0hMjIM59w^FJ_-UIJOXI$?qMtJgOtyB#BGaTa9NaeFX^2
zQa!~IoCE8FC&LjZ)m3shbW03G#{jy&#OTcTdBBO?jBexsZgtNSCIA*yZ#;D0K{Mtw
z8n|@kGd1aHxG%L<6yUxYwHc*7Q~$IYGB%F~xMLUEvYEPpMixGn7R{`2R^C@pnIqGY
z;b0t?bHo_6^!ts8<RL%qAZ9H<sq;8EdP7#w85o&#!^jp225)(}9Rio`mT72woV1nL
z3<`Z(15JC(E9H@b5oQ`jYg(1w50s%_bub=kIx(ioP!+xBH1Tsm6!*VEqc8JdlW#BH
z-0CyjQfXs<p3_YvWcV4g(_ei%L>;94=5}@H5dcRgY0rKK8!@mu!X_26gO`2qS#vlZ
z0B#}if#^E9gH~|h3%dIN4k3iOfm%oM&i2@d<Xvcb64Xd$S+miq2xoh;$;h~_Lr@9p
zeg?2eG#gwIUFw<@p4*qR`!uwl-&)THB0vMb({$%7!`6{<baB?RFDn}!@!q4_dNfme
zZN(_1GdXdY7R-hS-{*hhQLYe6+1DE_f~j|IlY!U3-D6a0w+~dsof_GJg@pnHLDwEG
zF{|;joVADc+IUU-rS|xwSU6c(F}jxMHD2yPO?V4NJS2UV3d*Ytx+Th25f`gNOj{OQ
znUB=ddHzB}66H1@a+wd??l?%U(;jJu#g4SdaES+#SUS!Tc!nwlOC_6yI;{$3>z!k3
zV}o*uxj98SM7u|+PS11Dq#l)qQE(Ip_Y`h2!Ub$yihMQ4{atyh@7{rFdzpygPQT{V
zrfDc)A|crDF}JZzt5cIPrAZ3WdO~^+)3~%#u1Ih3M9@}*h?SqiBd9jXSl{flO1~>D
z$N3RrAfj+}jm);>qg1Wv(D%8u`P|t62RDJj5c(tZ$7Ikr)fRv<#A%|U1IY0<fW@EY
z8XRE`T=ZOh4ZyDqym)Agm?lLYa9DD2sn*{H<*pj&Ti;tUfo4ZD><QBMvn_>>p3|4q
ztC|WhhA`P!9h)+qtl5hK9^E)kTgX*IA3T^SSn**D=}2zH_kbw`5PO04kmO_|_PGHI
zG&BmfiFk6>5f(z|adn7-UN3(9koQ6Fh0|TNmYHS!T!bZqH62ezv1Eyg5`D?rN^MZG
znu^}}xKQj=@^n$KlK2gTh#?{EC_5CVX4Rf7Yg2uXGO3n~rbD!vBI$sZ|6{=TqNDwC
zfHGq+o+uPf3Sp^Uatb+a9Pn9O{Tt{zG^gqDFA#wN0;2w9vHtT!|5s@KcjoMOX#USD
zlz*DD&(+^-QP@%6I(&ju`kVPZj#JrW3aeJ8iBl;>SSk~WEgUW~`@<)B0eZ8(-@7g!
zmhX5B7~rfELg&cM_<Ww-^<F$VWs;pH#Ph$Xml`w9b7$47E3}0sjSqhQ%sraaNXejP
zNv96W$4s{Sk(I`~N+aKRgjQ|F_vUE3kLP=AW*pSyk{^o1aFQ_uI{vVg<(TAgqHsdR
z@F{Rhk$=e?6<!<b#U&+Q&oAsOoj@Xqo<1IZhp}*QFl=s|giL-gHepzFSP(ScFFqMh
zfbVm+%hQJ}wzKtgfBia~VI~)bL#BX9&cMxqJ)J<&JU(=Z(zwc(00tSynINqMlc=^v
z*G%ft6PnkJdyF&ckc#9lt-*?xkntfQ&;!f{7k?@6TFW;tc}h`AthW-F1P9qhqC7PY
zfks2J0VGe@j{F={XbDe-=E96-+ySD=5>T68T#S_fReQ9Z5Lq3jbI6@1SSeu;TP0Mk
zua&ws7ilKBi+Rscl8$r5%t;T#k2FlfVJiU!piTIR2yF1iIW7VAl}S`457?-cJb_5s
z?{*DVK@@!%6}Q~9feemOn><n)9s=G1`Y6&pp#ZkpRgR~@&$U%3+7iw(7p1p!F>=&>
zmSc-gfVH0!yB1xbySA3CLI@^eG^<DK1KN15{ekP0q6QOan=M=(XbDGa;wb8K^qOPU
z46%U)Ep+XAt)=DV17j}8ZDElff}q={Edw#<IclW=<en5*!(K*~Kq))w){ymOYYs+I
z2fp^|9K8-N_l;17KJCmy$t&Y1B;jdO772BmV`aBZb(x~!W=41_6Oc%>v908}Ri}bh
z1MhnIAaNl(;&Ooi>W>TNSF|2aZaL`u3YaRUg0eCsqmg%keSqdFxus=LP%-vIM>|?)
zRq^=seQ2hbWEkvLMXS6s>?=kRTe@sr9bMh_PY9?}2uD<88O{)bK!7S$Iv{Dg^hvQv
zK$pfMcEkA&{0+*PgpVe(CuS5b9F3L#!&JJ{4z>m^!PB)Ux0_2jXCOy0&@R8b!xb|f
zkwPF<!Bwhu0sU^_6t-kG7X_UG68p4%<XExQsP|JA%`$dim%ADzSM=`E8zvWUp~1Ej
zake6CKGHMXjzy0Mc8eD{C1=nNe*t)+9>NzX=Oecm;gEn-99(BYA>nAe0oElR>_ET7
z$rjf6UE+e_pZ?ilEi;IW8mz!tXs|g{==$4M1kEkMi7=n?&<DYkaa5lx=~8o?PyO?h
z4UDuoA~dNlGd#Av9Q7WD>EIHtxVv9^4lgbf(OrOh?&~$hTgX$kh@z)M5`ydK9iBn%
z&FSfj<*5YCNkLlu8_kA7I(R?`%*kuf3jv}q2BWC0Ch3#8H}~oNn?hI+@=b(5Lb9vS
zn;Os0JIl+fDG7WwzqH%c3jEoN>z2z`$2PB&P51?WHyp@2KqT7|+&?xj)|EOokZ0}q
z1KNF`MZV&~f<7qn6iUzT)0E78?{1y+1o9M+X|HD2v1x?qe*E_*RA_?nUVn$$Yy0E2
zQE48Uwkb=KAsC{i%y4ENdZwYF2rjkd+N;|ws2pcbA%joEA!O4Eqm{H7!VT^aTieKW
z^8y3I{$!)^5~wVkoa7;Nfz)^{P{T0QG<XN5Y&=aJ28~l+oK{1WdiK9umT!&4JkZc|
zEW#JbIi!ig=LqK+4XAQ7DUt5=N7Wd}1O%T8I$Qm~^R(xBQ8Rq9#eB(;gKeq_Qc{jB
zkf9gj-C5geJBLDHar9{TK^^*<6agyZx&Xkn25?c=Y;PkAUm-5@YgrM|%FK>(1e|-8
z=v=*6tRupPfgpA4OhJE8KH`B})lX6D4bsg8{HRq39TD*KPp0Xk1C9`JceQKl^7^@>
z*6YyR1~17`>uGQzS~i{CZ9f3Sa-B6_4H?L$FLvLfC{Gk5n%J5FUkhx@vJWb_%zNfr
zw)zR9O=tg;dgqTNKV`kjc1$qt)`FA7q9Sb<#J2HK^s`vTNv`+|c;tZ|cuSL}BiooB
zC@z$rvjsCRt6*ESc^cj)kgsDL=O7JzE?V#@)~3s%3wUR>7oIvCuyx<AvaxR?SAUGg
zYHOWeFqRG^V^3XZRmhCMJ-R`%Jd4A;`jp}8G2iKpu3;0p4S$=2FU%@(P1)~E4w|He
z0j@ZYHm#zxFgINzJ6TeyUbQHBle^e~o#uesT#s;e#-sCr9f7HP!%oE5DV1uRZfa8_
zSemu#=7aR&;>J~x;ogqHXD!<;-+&2hEZ;-&4R%!<0<@d7#2j5s5K=C?YfatrXNok9
zTRDwwpy_`dTHK}+x+{x3C3arR$nHJ2U&h}!`{@&ud#A5Lw($)0zF7iO{$!s2W&SS0
zc;766K~O<|d0hTV|0z!4A1{CqfzAcqbH7C`yp#PIxA1#tz`Mu(zfz$e#jouDko^|L
z@O#DoDTLq;4(}Cj{L20jQ1GXyf2DX2DflD(Lsa1Z6*KU6)%_{(J2CD5CjMu@!JpOt
z6<EB79Q;|m-hbinM*zZ~ihI9s_}zE?Jp|!jsn9R!Z@B!&fP_Dq_^0#x@BXwz|Kj`W
zx6se!ml5+n#Z<ftDE_aTjo;b5xA%81m3JHGzfz$e55(WI``zOCJJ<L2|L%wI?&0#U
zROrWs`1f4@qrc1V?B9j{{if#~{rxKy`jsR9f3g237W|#>yV$>*g8yB&CBK|_{+n+9
z=ho<VcJE^T4qyLWw;OnW&+fnJ_MPkR^Zef%@BZ=cx&Av4mY4eQYqbCZg8%i9{tE9Y
JW_bVi{{X0t5e)zU

literal 0
HcmV?d00001

diff --git a/oxAuth/Server/integrations/otp/repository/com/lochbridge/oath/oath-otp/0.0.1-SNAPSHOT/oath-otp-0.0.1-SNAPSHOT.jar b/oxAuth/Server/integrations/otp/repository/com/lochbridge/oath/oath-otp/0.0.1-SNAPSHOT/oath-otp-0.0.1-SNAPSHOT.jar
new file mode 100644
index 0000000000000000000000000000000000000000..90dc6707916e508c1bbc43a536bb1443a787b31e
GIT binary patch
literal 12279
zcmbVy1z223mp1NB6WlFmaCe8s-Q7C4I|&XQJUBsvOK^90hakZr!GZ=$upf42zRAqa
zWOx75$nEE;^H$xeI#Q=zWgs*R62y~Kg7{?r>*4o5h>!mjB-KTkWEG`eC_gp>Kp;GR
zD*o0C@N+W-QAJrPNi}t51u46j7Nl+#ypSuA)s0sH!2sMtO#}5JCT$qnh@lF^f`~lO
zRKry$->!GN%SOWVCusKwI~I4YYa%x0=Q_1kVN5@$W(>@u6wq9Xz?NtlY7Zw$+Kyf9
z^@cbX-iDkB02O?G<6FL$Vae@5+}Y+!ddUmtX+8BZmq-?P332xmq4VU`A>*PUNiEr<
zLb`quB<5@hqZGrzKNi*B<+CB=6HWGn$6RmMy<b$#BEcQd|H>ApA~uAo41`DEUlAs(
zdweM<NC=3h*Z$|(fq86U=3w_<6Z6k4(0^}X>tJSW>I^csviL>gr&)Z0`>C;miL3Q5
zH1PgK!@<?@r`7uVqB8$NOUBN`OwHOv)Yi(u8RTkh$82V6;^LC1zM@H}0k}tFACfOn
z>x5J-LWHwrqMAk!)5w;Q0|mh;7fPCG2%w0w9h$?1$tI((13h=n`adPnyAD+!)=g}P
zdups$g@a^j^evdjg>JsKb=(QR5_-5peC<({_&O36mDE(FOA;0q6{L?n5Fe{QzpMSx
z5t<tZfKz786BMKF%V;gzSCVZ*z)^-grlgKidabT6jQynm90}Ij^w#SO2ctUO>389x
z=sML^)`FfPr@uv6jQ>1;_Q64;0m`bybjOcG^P7KT`iqZ^7MfmN<<|k&nl>&d-ZRcG
zzsNE0v-9@Fu0IsB;pMm73Qe>umu`=-IJP3CGT?F{<$oHX5kDFSE%zV0G}s@r%11_J
z4J#X-HQ0q_#&0d!Tr4FKFK_BGw>`(){DIcfy)Y6Noz)+va>jIIf6|FLiR!z!#Yu7M
zHQ>?>8(M{CsL98(N;XruuUvvSQ|u{F1`oqNNhhT`$KbB*sq*c<>Qqr9*#jyo56dlV
zqYU5qV3mH&4yGjZzKX(Nhp7Sc0|(9ej^1Qao44Kl+(@;EKj%yZe3D-era#=01~alP
zF>dd!(X2{;vU<K&-+WvjF>&%~Vzf$Y@fMT5>PcO+L*)?54~nli^K}f%OfZSwW0&2Z
zkC}Y9U43IV^nLO_%n^HhLW9|7MBPoxDn6YoiKm)55;FU~YB<=&QnLk*kF>4l2q$&F
zHc$(ZG7ah~EY6FwsA8cb`NkJ|8mir~C9O+Noca-WiGrANGylf?GrnokfseaS%zVSq
zlBP^uCMYA8I{El;%#GmSZIOBMSB~V|tG2@lj?qgGx1*!FC^O1nr<X?Wj*pgB>$PVd
zJp6OlUEaJsx00I?X07L;qKCm4<Jb+)W|2q^Sp8;d7_JqI!2}<L;`CmkukbL4IQsxU
z55AW*at1%f+-Z7(Vtz79O6$A?-}#c&bb<`|?gRD@hnZqh8xyf>8s55C#Q^1C3D&n#
zT*-VA0{o|h31JG6_VG}D!P80)y8#FcvTOm@iU~1|5s_5#QkrVp5pV^VMwvw?L?ib|
z`GU1wNt33ijWCvJLw6DZeG=g@IZ4h+ALNktW+!BJrqycBV&z{iLR0xm_{#X71oirV
z->IOq{!ICfj#P|$oFqGadqoPJ7=Bl<*G35u2)?DITn11l(Ny##h=2v6Ic5&T(LcmW
zL?Zz>QI3g|w|KFTsQTd^Xi#YCxAWD}jcW_Ni^WUmg*t6}t_=Ygj^7ZR7kA%A-ixCM
zh_RVY4D}oLqDg-Jo^tBlTd?^G<HaE*DCx5wO6unYA=NLGm0@E!thq#32{GD>Bm}Q{
zVBMEXct@qr_dA|EV55}w<uNn_#1Q;%9`HBE|94kH@hexNq^|s%`-oE0Q<@b4+*`J+
z95GAAzR7mhJE^vdLptEZASJ^h*Ow=g_zbGoYY3_Co2EWBx~4q`DR5xQbFj9jUcZmD
zvP?%UBit0<8GXmQ_PyO@{QN4*K^P+8geQg>;4;{S@rLdhu*a2z{%D&OS`TJ<j)eiu
zg+LBvpA~(dS$u7YMEHw)r;UaWL-eh#TPC^MX{o<&Z>J{SdC*D9^2l;TPq==mYsdQh
z?KNVL@?-DAB~?AKhDZzv?N(zIO@tRg)r5B6oXHTy!{GS^&iZ(r3d|;Go2xi!1uBCk
zPlw}-iksaB%_h*c#BUbAT)JQtd~I>SkK8=Ubu!sCT|uX}mk6IdqUaHs+Ep)5<<Q)g
zqqY$A-{$1BTIO~miG9~qGiR4{rB9p5ZHP(1c${&p?<{MFYBrJ2?B>w7ylAu&CL8d*
zypn|XsQLvOFS(Ocw%hqeCK~YyA9Ieh^b2No`8#P4l$TKtH1QVR+$ly3o)mNUUW!OS
zPJ=<MEd;7Oj=~Br?xZc?qF}!t2q~PKbe?sP=Q?hdw5o^OCK1A+LRWi$JtqT%jhowU
zC*?p|f&~=E6SH&#rhY_J{W6FMsBsKDw>m3ikvYJ@XAj^&N_Z8|rl=B1xD79VhD9Qd
z2e++w!q$X6O4o$FjAT-=soSleTN6I)7xp85fjvvt72iuGe(%B(1G3_6z7YhaEL3_~
zquSUDnYtj{@z-+_gp`8si96-qqu$n1HsYEwIhMdGzOsdOaD|C!NZG;qQWoonRGx9$
zhwob-QV9QceNClS>?2z_y7CO_0j_$!NhXEO)RiGoS=M0roAa4?inUmDF=csGxor7v
zB5wp7Z+d3b1I{>g5DUrBIrW{y+gwidH?eBfC>i}i@>ur6X8;8pIfo$v`v=&keGdcK
z|F#GU0s;>9SNopsf7th8ZXjE83+LarzviA6wie()p&oJTIi@Hij((AXm}_nQ61WZy
z0})O+sIi_WRUm%KgeF5CqgJD(c;#zuxn@fRY4cPj5^vpr|1s&@WxFgm+<1&P_3FsS
z!>6OA^=f{tV-2zre@#w1sGZ((>V@eG(kt187(f=P49{y(MUn(ZgfMENE|q&;nhhO+
z0b%i57kvs#&dM6tBPB5c0^C6vW4vc^iOOO6IIizvcU@Ei128cyF_MC%wt4Ra9u_E&
zD2NbCl>w~u#wt4>K3oTEcPd+%dYF<?i^w2oFPNmlN^@q2&OK*)p@V`@w5M>6+V^(o
zKB$GSu*t@IE6kF~`7#^gSeA>q)1}tnwSZ~VzGXddj%b7iSr7^eU$B%PHqCZkVP%oL
zlT>Jl1Rt<|P{}4Q;-<>2W8_3N_7#%TZc<KRdRpB~xz0^d>zSXTA}v!46{n2^D<e~K
z{e^rIUDEzGU}T74<qq2C)0^fv6ZiDjj*YZuv1Q0=(IpvQHNN2hHyk%jB=0~%IF<Cb
z#t~dc!h|l?gT*040Vb&ExOh_mwe}@k8#~m7?T2WbL)iO8C3q#N8miF>vGJiVt7BjA
zmH9}_sq(tLeN9F#tL?n)$E$m%<S0M&^|aNDuB}8W5OQg$$E^0p>WWw<NDd6*a<S%@
z1hD$lz($KM20+b#>yIKCT2hB>=VUZ?4a^8e_?s=_MPj?xgpOE-xxg_A)!_R6X4hzQ
zYdBrPMlpOO#i4MMw%2v&kX4bW)|jj`W<-S+5>xb>k&(D3xsf$Iw41Gw$tTs}TIQ|b
zd2{_vNz7#P)@W|?)`$l4)~FG-r77}FV*KMxLHy$_aCj-3P-hsFrobTb(Ge%+yoGNt
zA)EcC8D`etH6RPo`kwST;?Uh`kbch&TYG0RTYL9B)JH+04^UjoV-V@6gz_#4(3YW~
z(3dr%BIEUnr?wf-)<fILdynNV3YB6pnlQigee9k{tt%_*0;EN27sP8K%P-onkFl}y
z&5Lflts|OIywp)NnqnFJ<mg=AT|amSyjoC*!X@IO$d;?KbJMRmOYofHJ*WDjE$66(
z+bq<3XzLW5+G^e{eSNms@)dE$L`Mo$is-Xl=_~C{Rm0jVr&z18D^mR$6x@lsURfQ2
zNtDvgBJhos_o8TD!4lC{eUsJ*&I80)D;I*E^c-(B>bK`HM3|MmE39t7jgVPGB9bp*
z$R%*p1^cmYE@lc_k|X59XR+dwQa{TJeq;T<qV4#6#j<Mm18rNvaRQ~+0l;B2BO^|c
z?W^|Z0?O<oL+wHzl^KCOb<6B6xNk2*f0P`a_<MJRN({VvnLO6F)bpM+vq5oWg~i^S
zsU(|-I&*e~@EA|dZ6K^jQflXTqy}cF^_|5yie%jeZwAVkeHGNRSmW+C8BVU!m-MD_
zO$6WA_Sal0&syTv5(P@FE=*oBAGN1cHSca_W1$8!aEsi@m(HLDHdaMs0&K45qT$LU
zk$0a_4+ptP2=l!`o5-dt+F+W`P#bZV-XGxju~%VC>13a)6K9Pc6}Jlrww`11%+2X!
zy4D4rkVe+8ey8+A4$yQs=Z0x5_mIPQ<)k4fwMG+uzJg4eDTTwQ9OYM(FFlQvH<$?N
ztquts89wF7bX=3boTu|Ph*i_0XC|UVz2#M%*LS<1ky!IM@d6@9r8lu-*KW9tF*&EQ
zaj-FVouFK}&Fmj6*B~wIXU<R_ZYOcA4}tS3d&gnZ!~(EN#6*82kTDgSU?DdSeRg%8
z&$9|0n$ZqrcP+uSOtDSlTHNj)J`@PCv)~Vm>F%p)>QopE&alElrmcF8|Cy&=F{hdP
zS<BXlEt*Ew3Z`BYuj`R*kw0Vow1@9E(_0rV00BR#-d+WUs3Od8?{}tlJ|iZvync_W
z;IxtNO!s`R5P{cX)@F!xpP(94JQ~S6aT_=27&B6Es(=Vn7fUi8Amk6qWgjq$<~P<u
zecF$zcM`vauz<O^O{314R}|UNW%KDanSvF-RPK|b(gYvZ@zcJ`DxtblC?a@X&l!mN
z2YPyL_WAc!%g!cGPI?eVh3VNODVg+ft^I&oqtg5kqmT;<<kBQI6b_kt70+0i#=)(n
znjKdQwKg;I10LKH19+QdePu--i8y~nT>B!2Bx6Am3rPMRxn<}~cX+~{YT3HKfD%_c
z#)nPF#zm=qj){Yu$rQbu)?nHDw{TV<L!jgd2LVBe@~d#h_CJI(O%q#?xrr;t!CuwE
z#m(0B_fw$?5D3kRabN8RGO#O;S<)00T%=eDlJ0v$Mp1{ugnXG~FP>g)Z=U{9I3HdV
zQ{Wo<R%Meakpzs3I3#cR#V6L+@0BkUPq*STIsk55ZxXK@egb<DOCF6tf*{;SlR?SN
zQ#l3mS>c@kO;(K;_|vp(@jnuz(D{-zvdFy(yaNje*|5e={j_@RR#A&pt&3iV3B}|$
zJv@8sO(u<UA(eg9rVJZo&*<Z~LH7YZa~geBvefU85L+LJvl2eVGdqBS&wEz*5er^}
zO=}l<<=vGulXFU&#ug98&h&2L{bnip_u!U6(@&BF__)a0<~+AC)S<29r(z@*ZJHj>
zq3kaFzE1fR?8XrTP<Sn1dz4s3`QK2pG$yP}3Cgl+`M{TItgg?xuf=*+O<EwcALf3i
z3{0*JWV17#$NFsj88RIo-;$kjTe)3sw>VOI>Rh!>i${t5td{9WPt1ew1UOh3dV#-?
z8h}0Fvi>7$9hJZCJM>e6B1|5v==@lgc=?#5{8^Ftdt%P;zgtm<-&2%C^)(ml#{<57
z^-#e`L3s#33{(yk4`ZGP^)g6gnu}|%zIY{G?q;%Sv2191jF~2#@7k;%{*Kbu)pxya
z+<GYhKa=<Y?*YORV`2qnc0ZvJ{VLPt$isj6IJ2hX?sOONHNJ1IF@PQE!{!nOm45PR
zrr6Dm>35MX#%d({b@8fYzzCB`OF3CsYb0;ZC_}iJs8j$sZ-?^W%G7+rg|iokzo9WU
zeQovmhtXtiJncAgp`9kXtQP+eeqsiB*kC*<qKQvKoQ#H_Dp%63c*V~{50~y0;OI2u
zwXD;>y?h4g_Nh*jZ>(facSj?P(X83Zxv*QWe)2|Y$YH@Q6uEhilXHNba4yN9R4;Ad
zF7(UytGd3kAM`lJ^Nq)K)#`~GE-qH7Yv@oIkSJT62WqQMzITqGJ$3K(M*I?gV@KPD
z!bw=9;&R{OqP49SeV0bPd6W)|mW!_<UA7YjHB0JzeUV?eb`wnYWu&3l(#c!R1dS2w
zKI6|8GyoBim-Ci(YbBIaYYytyp0W1LAnreCkOt`=E+~#sWPOt^7`-yq!6#*X9y$+7
z)$BquJST0{f5xjGX{I8jB8dp3$HIGm0zF0F>40$cmdzChw^ANaL%$ac<`|~eJgou)
zwcnZ)X%7&G0w2OmG4m-l)qG;^C8e9ZC)oT#YoL`yS_>uKWMMBf@5~VcDXaFHbQ2qx
z?CLC1GxcgDRZWHMxfoq&=Sw`&k`CTLE&^7qqKB!{+!<cEerxr_2%RlWyF8wp&YqN+
z#6y{>z#|RJBpZBH`*GKV@FMR*Cyc*Wjv}AbQaF7Tr6~VnR2~;_4{0@@bgAfii!5TE
z1uk?ez&+4>pDvzyx=3qx8vsHBkuND(UUt#sk&*$?$wSaFhUISqPn28%1<GVv5g(~_
z-H=-4$u%9*7`FsH<kwL!WFp88sfH*K1PePXW%>co_UtGdZt_>`O4H2kGTRVwf>_$I
zv;-;K2yzB1VdKiE-F)YG(<?JK;YSw^*HDJ&aw<OA_k#GVy^H>@*T~-zvoMp0D9RZ0
zTE5>na26ZCjXa5IOo~*b-9Glj6*qWZQ)OQE#%xFicmIm#9`Cdzz7mDOmz2_HZTRcP
zH=__v0jBe06a^Kmb;#%qWYY~`Ye+@WSp}=KH|81)^#^jPOWAilUh$!E)OL&~?1pUC
zlL&=@rFa}(sjrQK`kStx;1te2g)1jX>W50fAQWsN2=`P*dMwNpx(*hh!-#9$!#p_w
z&o<Y9vd7ao<p1~ST>USnb8Hoi`}&qogl|LwD8S10)An&lp0E;h5typIc`~_FG@smO
z3>Ms-TBuLET7)}sUj+)8<VMU%U~i>I2oLk@)Pk~^gTn-^##6t4xv?Don$@xP3M!>f
z74I+wDF>CVUf+C#L(g)7jj%JH1*(y#A4lIJXCA6?9L)uC6gl>aqqGD$+`PU{kjVn{
z*_8f(&$3BIaflPRjjajmN<ht&#aT;TYRz9@lK@kc+G-%D<Gwn`YnfA2XgkKKTHli1
zJc9)+zJ;x^ZpM+Tryv_Vvo!EaKEfTX-eX3R8F<jD^mYzSoa?1QG^|IaYNRwvx@ehG
zRrKJheb+Zq^DV8en3sm1o0)o^MRsaEj*;+y@Jgno@x3r+Y`8-{_CRPsX@SNhvDkI}
zG?e!yVnqS?6z0N(&EJ(d<`OgfVr-ILs!gKfzOh6nul>q+?W4;l@6`+?0jl7PPeQk4
zsI+ZOhXl=(*@6czzh`jTHB7}ge*D1abyq)xMy@#p5NFu!2@F)*Ri2DshQ)Mc*cGh^
zeBKNbnVC(?I1mN#3@6e|zDr>li^Y*hvCB(-a-nW`r#w43Y0<`(1gXd)rCEJ;#R6EW
z?9z-b2-)#&faC7j;rYR!Is%TQX7F5}2YuABI`P{3TOkP}QblnQVVz?#3YnYAAE<$8
zWnG2+FEQr)i{WGs6K!JWiaOvPtdPz&P|AbO;REH8i%KwP!nqUyh-by&<PkO72Ekd>
zeGuc2%ch$!_N-n)_N)O|4Ji_-dh&T$XK1EH<W5OcZ05W0Q0Ow2Cu(ZoEdDP%`Kss?
z#*yv;2w{YXs<rG{W&QybIIX@AjNIqbK;t~bOU|y%foG2W*hF1L@HMl;zH8XaL9FPN
zt!q&J+lbNL!<P-iT!LL&3SUy;Tw*!DGKiILCqiEvV=J+*c6Q`j$6e;7-9qRrDcy%M
z9+etlDo$Tz632H;*7r{<IU|LrgugQlp4d{ux{QQ7<Q=<0PCH5FsHzxzNbBE3EsU9?
zOQTH6W0jA6O^#JCoe^WN?PV%rDM#ytihB?FWM`U`NWyrJcJ}fyh5Gkk`>Sfelb!vw
z8ld(474|&l!v|`c{0mcac<3*cO_ZNlk=%326(Eg_d4&+F$whQ)49lql@-#FV%nF&v
z_e6o%)0FwrOGItcly(6ydZ=`u8GgIBs~$I?hmg#Ux(qK}s>Nr$m(nfADXGV;$D`?2
zmx&MUj>IDT_qk-@dFb|e*CxX<-)@9R8O<9l7zRzjdWAUhW}z)t44(X}IqMlbJu&cr
zG{F%9^s_DUB%kC+k8dYFfaTCDdJbR3uA38o{GGPz*MW1MDK{}ETY-_%7QV`&&_a3Z
zJ=fuZ11Bo5xTmbJqyw}7U#ysKTWYqaGnsyRWcS*ai0+?dNi(}=62Gf(JfFRZjGT}w
z+B^KT#>vIQCqzK7Plz6KNt{52DpS<Xx=P50L4Z1AEYn?0!k$=Fm*A%jG)KkNIg=?O
zMnaA8Kt+ot+B;y9nMZS5sWFc2Ys1nnjKoL88EB#QJoKDK_#~wpNQ)KIe;5h#im`Za
zBjsaac$(&NG&MB``o1Mw3d_YpFiwm_RCe)VRW_(F=nmPOe`xZ^livO~P8pwPb;VUX
zuw@_;4=V}1U#;Jfi`PW^{gOnW)Ju2;10d1IGM=jp(FWo-Z*lb;ka+pnyes($l_XH!
zOhN?&6i|bikw2yRzmx&;%LIs67nfA`L<F}$19wb|Kl<s$y{rhT74JR_$R|)H%CFC8
z0cT|JFFl9DW~4IdIat^?-=xE(vh@`dldVnrGNbcpx1$T3ET+))CBd0pVBj*3D_;TL
z&4$J<y^CC7XEwXIh37lhc-B}RsvsVh>&RpBCohQQF3C<rMUFp;=beO?hDgGq8k$et
zt=Qq9%RTMBEFTw`eAevK&&AgI%xtNEm_alO3HFomJoW79esEuK5*V(h9!E)1wxOFQ
z%WqWV`J99N+R3Yc1cuazGo(8C$Y*AXik2wp1lXqumQyAA5|~X@dP+R}ojB{aTHTf(
zr=#wi6!~7sZr8I1gWGtDHx<7sPaz`Re4*~u@3XHRxqb(pFpB{<7{^4uDDs3eQa`nH
z9lVYQzu01+&+OB(@KxxWcarV5z|lH+2i|egkVJr{x76{8Cgt@N?{3x;EyWu^yu5_P
znSZQ;IFvL-CsT2>D>6oei5p03f77FHk4o0?g<ngov;zesR<_|Gj-<%rH4_s7B~b)(
zbfnBVEK>`;gmD3QyFP5~6`SzaIgzBrp0Kp$x7vM53kO*xo;Vdl*QwyFEnIs42%}=W
zz7(+07B{{Bo3)|qHn8w|4E=quuv#zpgc6$;F(cl&nEG|#n(*u#JIT>8LE)smNm~&}
z3R@~RO_m+!-6WgTNw&qVB|Vna6`hZUpyh61sDckqx(tR&KvxK}D;E<<+78H*#*9#w
znJFoMY}Ybvx~3^ILpe1EgZ7YZLp&L0j3x@ev`Ea;-@_?+syxh<8!Fl71fIx^lSO1`
z%4Loxn;^h_q0fy?kq{;me;FdJl!6~bKPOY1EU0e9@uugKjz5P{iM>hc0hE)Cjgw{l
zJxzalH0D8wOaz<mSFo6_I0%G^{a&3SbTa}bOQp7L@7)m^BQp*(P?$;#dXyoNu7%1*
z6J}VG?x8!4J_igC-;~QHL{{xnv7y(B&{FAQrW`KhoM%S+9M}y^*BKqbbP=B89|kIQ
z(tR%lsvr}p%4p%zhK57&#nNCGfSiObxGu)iNjcQi^-FEv?mMhzeaAmUiR;wnv(pwN
zAVo*zUR3b{f#bN#C3lw_Jm-_hX=l}vcB9^m^^X~I>l^|1EG2k0O|pp-==7jJS33p>
zWcjPt^eR}dv@%A5G#46Q*eFBr!)AP_^-6P4Y6~Q<uv^vkUb#KgIB{>o8(BJq2`GFg
zf$Cfk9ictE(ViK%Vb~1dLR(d>RqI@lap2BKgkBJxUnDakQke(?)a_46B|9TJWV^$<
ztG=2Kye9<ya1di6mCaqDJ7>5)!E)eh*e#!ScySpgg<D4=Mm+{$H|7$XR*}6)uRrEL
zp`orCX6Ot=TcsRhnm0N(45{dwyA|;LkaWQNJUL{{-rJtSApr4AAecTf8_vu%b-s!O
z(>6rZP(C+|O7lzH<QpL;1_$iSX@zuwmE&ud7djhnTnyeHSJ9HSWCeUm6xVQ}ym5=5
z(TA$mMNpW!;qa4}Pfn>|NU6Yvk>L@s)6J`niF1FyCdwzZSvI+TwVnN=?R?N=QP+Dc
zH;sIr4KW$1bW~g@Qo|GGz%d7=ItOBrtkIH)@0j?VKfJVC3Y8+Rj$b^HFIdPhlewzo
zSy@Tr8;Su<c-C!gJ4*bBZ^1nrZ$3-DAz{5QtIYdiK?KAK9ofGb*_}w7Bc&@fQj>c4
zT>S&ysp0)AJfW(yP@<Pt20eDt>4ZC#xpC9L0wd}>eU~BzT@4u83RU-3%}_7ykL$4r
zTxP+<k!omCubuZ!O_^7)#xw#iwZP+Ra+6RY;V?wC@v|lCdQs56sYIJf6Pj=-eZxeW
zs75{e@0sc@T(oC4?8`kSOzjScYqUKgXb7U~$8%1pyXI(Y3;f<*nW8!&-ez3R3O_%%
zm)&~EU3_JRd{5cBB>qjKb_Q(=0aQj&f83=KxGHua6uM=4SPq+|2Xb&jh}3LN)Wzxc
z0VgqU+0DK`uw3=qLvwBie_>`5{jmL=h)ZCpjWsN)W?}p4=6KY^McM*QZ=b=cs;*~d
zlrv|QJ<N{SS@6!tLwf0MWa8`D#}T(x_XlXJ+tR|OJ)tSXpofgpo5Bg_hUq=;Zw5;3
zKJLjC;|)*^F52UtCtb<gfW>Og#<6mc2BU~79#o|2#RLa=1h#KqPSMPnRn)?%O?$t4
z%Y~46L@i{^2}{GwH>Ku8LQtn)n{{0HBY&p3fm}hOG{_V5zCn~Jwd6BqiSc1DR|smj
z>PVQ2b~IicfFNos5Bs`2(8YKWr?w2D&*R3WsF6{%qmh#bp|F<%>jC~L1(FOD{ZNJg
z0pW`Is}$&0^@gVu==TcJAN7WO4FeZ!3xNOX7qcPD^iVNy&TGl`X>~$OrX|xH5FJMW
zX-cdd!zPW++x&Ff72DzUIztBkF&0DbDMDsPDRF75TS&v}pjL=159~lqrc_qkW1n%a
zi5-{m#oNp49V5th;<A!}xAX;$<S@dknk?mK?ayO?^p>$nvt?jjeNEOFhO<Wc7+5d!
z?H+#mYHjsODvZ<?0bv)x^p3jbN{)tBda`FQKdcVDd*%-8MH|vWW1K=nPNH>QeDaXd
zXE`X~XIfWcjC|%fwqzl0OlI>jD&Ml)n#ZfnT7@m84%qy7Tu?hB&RHu@Lk(bGj5h%4
zxEJfXjym_rEH>*YEFM|Xcf2z)(XT0Msb}vqcm80wq&>?m2+x?DTYVb0TDv@_DD^&K
zDszQ8)pcSRym+D=u-NO(S96jTs%7I%r!{9)20l!&uj5K=D|gtV16F9M^3Jm!Bo<F`
zLav26X=OVIGF47++DMIaav^$!W+#n-_pnl|-I5s!mVLAXI+MPp!aR`TBaGf1)3a5h
zbc`B=I)kVkZIuM@HB*Rc%eg)j7)<zl6dkax4D-#G&R^gtuiij-w=|>ET+WqmtRphE
zs8DD=n!Z|jSMIUJ=7cJ)t>UQA(=rGOH;Fy+dD*5e#5{&hH)zus9T=K?0uIzbr9CBi
zZ^IKsNPwk1QyG25x!em+(C-NB3L|g@EDl+%GvPWAQYU%mhAr_>BQ|N$=G*txGbF`P
z=+qn(=dQA-GDNFXA6TeS40-Ln(1@Duk5mJFjBI8|c2>}Rp!Phn@8RT;x&bN-<U|L*
znyO`N3PtJL;IG!wb#D7O<8wSZQ;$G}mAa~tRTD9xo;a?GpbtD3YHRaG_w1o{y!C2Q
zyCM_je5lr*T45V+ICWBM2zO$PTM<OO#am|-o>B4Fy}=mpM-f|pJwQw~rb10jHh{T3
zg1pT&cyUT1ClrWxj|P54=)Z>cBfdwt>k8V)_Z&v|hu8Rt{LBNR-`GZFt&N@;o-{-Z
z*h?iQo<w8~+j>{cQ63^0M$8kFGNV)4Ys9FtBdAmSyVZIhqW7j`iL(}8$xcd8La2Yh
zL;r>}g3wpMwfbE_GWetBega*iE-fD#qa4oa)b@hRC@Fex5WlkS!j*Ay7SqH82k*W+
z5bVsW<aMm_VF$lr{kcaisx08W43@fV)P}_bc5*YZ&N~|6&W1n-3Xb}qNg3pqqibS3
zB-Wzo>TiX+cNBxoOk{myW@E9CUvZi4@6<K&<<(6J<3~vAhW7?Bp)5-e3S%xw?aov#
z_@DVOo@al`q*Bk!dV3RC-ZsG4vHjdPMAkQo;TjI#7pQzp9(H3Gm4#7WQ|9n4ji3&V
zEJO>li?vnsJ6Si|4l`89&p&8T@!nD1NZ*F4{3@^?#2aPSut(LRrC{0z-XX#6^j(wI
z;&{#+^y$5Vdh$$aLLz6Pj~uM{NAL9SB&{b3)_*8$b|&r?_P-!hQU3SFkBltlKN(rf
z{{th7@qY*Kgu?V!mKK~b&0nZ@?Egn3$H#Gc+Sx{_irVy$;R!ZWK9Ds@&)5}iLbbU~
zGKVBpm8#hgMSz#`Zm!su+++ug8(Oaf*KXRSE31A4siBYCy<b+-^l?Z+sLR_z!V<S0
z%c+MtEMf8vhGneI)6dLkExBnAyAz*X!R>=;v*W%wsibaFAIFyTa_7zp!3E;(MHTb{
z%kMGa?^WLs1I<a?Sk}u>=o;rDxhs~NF_io9rLgTW@J*Y}dUjBdOO?K)CaO17PSyH1
z#7AI=`9@7$vCv0cJf8H>JyX66!M?{Nbz7kZE!e~z8)>%OHS-zIMsbM<Gu)odtuCjT
zO6nSFmi7>+hY?F*q6ut8>w-f0MsN_qG6~S4m!P_E8geYDAyiOY^Wqr0jMvGewvs)*
zZCf;&>Z=SHG;a_4N(nFlt(geW`XXG-mu9!~MsDk=I4(#w5=aQ-IxN5c7ZX5-MngyH
zvCy9P%R)Qf|Hm>pIy*R8IJ<%@TyTa&9|@8eB2#{39(cRW<e(hn9AqteESyc)X>(iX
zG(;yxPalTcxtlRacFhSqlOKT>43=~RKzyQSyKpRb_NCm$EBJhNaCDkw#}Zz%att%g
zBllmT=UV_S`AWQftdl@NIz}}GCn?EHTsq&+=O+OT4`E4-GN=D_l|ZK>6XX3je*ec`
zWgsLJ0Q#R<j881k-vk5VQ1t2PKL+)i+Mle@pNW%Ce8xW{FM#&(@jq%maYTRB@e{%F
zH+kxq<Z&^6qg(#_P@k;*PYsdZHU6~UN8A5*<v$1f)ScabSN`4j{~h6pkojl#S^t9Y
zo8dp9{K=~NnQ!$((ELO40_J{!^3Qb5pBLrnV(4d1%M)Yk56KH4d#r2y6Xo=2gfjoB
z5dR(T=S#(>+SebF7l8M;Repu{mrB^*VSm2adb*MPL-GQ49+&l3u>X8N`FH%Ei{?-H
z>K~F9(Dazw{x9(V$X@>r{BxD?uk+iE^Y6faR^b1R_jAhq*ZHNv|25t(=lAD$`PcWS
zdmQz@z5hRC@4t=rpMAw&4X}siC!_x(`2M^3JcZxi<jDX}{=4$yApap4|2yDQIQ|om
z_0b3Y#|8a1ntuZPDLDUWqfg=a=ZNqWp8t@%0H6OO^6$a=?+gF4Lw*V@e@I>c#p6Es
fzYP7UgFnNJG7$FB&><kOA3rOP#5NfEr*Hoc#npj0

literal 0
HcmV?d00001

diff --git a/oxAuth/Server/integrations/otp/repository/com/lochbridge/oath/oath-otp/0.0.1-SNAPSHOT/oath-otp-0.0.1-SNAPSHOT.pom b/oxAuth/Server/integrations/otp/repository/com/lochbridge/oath/oath-otp/0.0.1-SNAPSHOT/oath-otp-0.0.1-SNAPSHOT.pom
new file mode 100644
index 00000000..624ebdcc
--- /dev/null
+++ b/oxAuth/Server/integrations/otp/repository/com/lochbridge/oath/oath-otp/0.0.1-SNAPSHOT/oath-otp-0.0.1-SNAPSHOT.pom
@@ -0,0 +1,19 @@
+<project xmlns="http://maven.apache.org/POM/4.0.0" xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance"
+	xsi:schemaLocation="http://maven.apache.org/POM/4.0.0 http://maven.apache.org/xsd/maven-4.0.0.xsd">
+	<modelVersion>4.0.0</modelVersion>
+	<parent>
+		<groupId>com.lochbridge.oath</groupId>
+		<artifactId>oath-parent</artifactId>
+		<version>0.0.1-SNAPSHOT</version>
+	</parent>
+	<artifactId>oath-otp</artifactId>
+	<name>OATH OTP</name>
+	<description>A module for generating and validating OTPs.</description>
+
+	<dependencies>
+		<dependency>
+			<groupId>com.google.guava</groupId>
+			<artifactId>guava</artifactId>
+		</dependency>
+	</dependencies>
+</project>
\ No newline at end of file
diff --git a/oxAuth/Server/integrations/otp/repository/com/lochbridge/oath/oath-otp/maven-metadata-local.xml b/oxAuth/Server/integrations/otp/repository/com/lochbridge/oath/oath-otp/maven-metadata-local.xml
new file mode 100644
index 00000000..e2477503
--- /dev/null
+++ b/oxAuth/Server/integrations/otp/repository/com/lochbridge/oath/oath-otp/maven-metadata-local.xml
@@ -0,0 +1,11 @@
+<?xml version="1.0" encoding="UTF-8"?>
+<metadata>
+  <groupId>com.lochbridge.oath</groupId>
+  <artifactId>oath-otp</artifactId>
+  <versioning>
+    <versions>
+      <version>0.0.1-SNAPSHOT</version>
+    </versions>
+    <lastUpdated>20160926101332</lastUpdated>
+  </versioning>
+</metadata>
diff --git a/oxAuth/Server/integrations/otp/repository/com/lochbridge/oath/oath-parent/0.0.1-SNAPSHOT/_remote.repositories b/oxAuth/Server/integrations/otp/repository/com/lochbridge/oath/oath-parent/0.0.1-SNAPSHOT/_remote.repositories
new file mode 100644
index 00000000..d0af97df
--- /dev/null
+++ b/oxAuth/Server/integrations/otp/repository/com/lochbridge/oath/oath-parent/0.0.1-SNAPSHOT/_remote.repositories
@@ -0,0 +1,3 @@
+#NOTE: This is an Aether internal implementation file, its format can be changed without prior notice.
+#Mon Sep 26 13:13:30 MSK 2016
+oath-parent-0.0.1-SNAPSHOT.pom>=
diff --git a/oxAuth/Server/integrations/otp/repository/com/lochbridge/oath/oath-parent/0.0.1-SNAPSHOT/maven-metadata-local.xml b/oxAuth/Server/integrations/otp/repository/com/lochbridge/oath/oath-parent/0.0.1-SNAPSHOT/maven-metadata-local.xml
new file mode 100644
index 00000000..8ebf18a3
--- /dev/null
+++ b/oxAuth/Server/integrations/otp/repository/com/lochbridge/oath/oath-parent/0.0.1-SNAPSHOT/maven-metadata-local.xml
@@ -0,0 +1,19 @@
+<?xml version="1.0" encoding="UTF-8"?>
+<metadata modelVersion="1.1.0">
+  <groupId>com.lochbridge.oath</groupId>
+  <artifactId>oath-parent</artifactId>
+  <version>0.0.1-SNAPSHOT</version>
+  <versioning>
+    <snapshot>
+      <localCopy>true</localCopy>
+    </snapshot>
+    <lastUpdated>20160926101330</lastUpdated>
+    <snapshotVersions>
+      <snapshotVersion>
+        <extension>pom</extension>
+        <value>0.0.1-SNAPSHOT</value>
+        <updated>20160926101330</updated>
+      </snapshotVersion>
+    </snapshotVersions>
+  </versioning>
+</metadata>
diff --git a/oxAuth/Server/integrations/otp/repository/com/lochbridge/oath/oath-parent/0.0.1-SNAPSHOT/oath-parent-0.0.1-SNAPSHOT.pom b/oxAuth/Server/integrations/otp/repository/com/lochbridge/oath/oath-parent/0.0.1-SNAPSHOT/oath-parent-0.0.1-SNAPSHOT.pom
new file mode 100644
index 00000000..ee4048d1
--- /dev/null
+++ b/oxAuth/Server/integrations/otp/repository/com/lochbridge/oath/oath-parent/0.0.1-SNAPSHOT/oath-parent-0.0.1-SNAPSHOT.pom
@@ -0,0 +1,182 @@
+<project xmlns="http://maven.apache.org/POM/4.0.0" xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance"
+	xsi:schemaLocation="http://maven.apache.org/POM/4.0.0 http://maven.apache.org/xsd/maven-4.0.0.xsd">
+	<modelVersion>4.0.0</modelVersion>
+	<groupId>com.lochbridge.oath</groupId>
+	<artifactId>oath-parent</artifactId>
+	<version>0.0.1-SNAPSHOT</version>
+	<packaging>pom</packaging>
+	<name>OATH Project</name>
+	<url>https://github.com/johnnymongiat/oath</url>
+	<description>
+        OATH provides components for building one-time password authentication systems.
+    </description>
+    
+    <properties>
+		<project.build.sourceEncoding>UTF-8</project.build.sourceEncoding>
+		<project.reporting.outputEncoding>UTF-8</project.reporting.outputEncoding>
+		<guava.version>18.0</guava.version>
+	</properties>
+
+	<developers>
+		<developer>
+			<name>Johnny Mongiat</name>
+			<email>johnnymongiat@gmail.com</email>
+			<timezone>America/Montreal</timezone>
+			<roles>
+				<role>committer</role>
+			</roles>
+		</developer>
+	</developers>
+	
+    <scm>
+        <connection>scm:git:https://github.com/johnnymongiat/oath.git</connection>
+        <developerConnection>scm:git:https://github.com/johnnymongiat/oath.git</developerConnection>
+        <url>https://github.com/johnnymongiat/oath.git</url>
+    </scm>
+    
+    <issueManagement>
+        <system>github</system>
+        <url>https://github.com/johnnymongiat/oath/issues</url>
+    </issueManagement>
+    
+    <ciManagement>
+        <system>Travis CI</system>
+        <url>https://travis-ci.org/johnnymongiat/oath</url>
+    </ciManagement>
+    
+    <licenses>
+        <license>
+            <name>The MIT License (MIT)</name>
+            <url>http://opensource.org/licenses/MIT</url>
+            <distribution>manual</distribution>
+        </license>
+    </licenses>
+	
+	<dependencies>
+        <dependency>
+            <groupId>junit</groupId>
+            <artifactId>junit</artifactId>
+            <version>4.11</version>
+            <scope>test</scope>
+        </dependency>
+        <dependency>
+            <groupId>org.mockito</groupId>
+            <artifactId>mockito-core</artifactId>
+            <version>1.9.5</version>
+            <scope>test</scope>
+        </dependency>
+    </dependencies>
+    
+    <dependencyManagement>
+        <dependencies>
+        	<dependency>
+				<groupId>com.google.guava</groupId>
+				<artifactId>guava</artifactId>
+				<version>${guava.version}</version>
+			</dependency>
+        </dependencies>
+    </dependencyManagement>
+
+    <build>
+        <plugins>
+            <plugin>
+                <groupId>org.apache.maven.plugins</groupId>
+                <artifactId>maven-compiler-plugin</artifactId>
+                <version>3.1</version>
+                <configuration>
+                    <source>1.7</source>
+                    <target>1.7</target>
+                </configuration>
+            </plugin>
+            <plugin>
+                <groupId>org.apache.maven.plugins</groupId>
+                <artifactId>maven-source-plugin</artifactId>
+                <version>2.3</version>
+                <executions>
+                    <execution>
+                        <id>attach-sources</id>
+                        <goals>
+                            <goal>jar</goal>
+                        </goals>
+                    </execution>
+                </executions>
+            </plugin>
+            <plugin>
+                <groupId>org.apache.maven.plugins</groupId>
+                <artifactId>maven-javadoc-plugin</artifactId>
+                <version>2.9.1</version>
+                <configuration>
+                    <additionalparam>${javadoc.doclint.none}</additionalparam>
+                </configuration>
+                <executions>
+                    <execution>
+                        <id>attach-javadocs</id>
+                        <goals>
+                            <goal>jar</goal>
+                        </goals>
+                    </execution>
+                </executions>
+            </plugin>
+            <!--plugin>
+                <groupId>org.apache.maven.plugins</groupId>
+                <artifactId>maven-release-plugin</artifactId>
+                <version>2.5</version>
+                <configuration>
+                    <autoVersionSubmodules>true</autoVersionSubmodules>
+                    <mavenExecutorId>forked-path</mavenExecutorId>
+                    <tagNameFormat>v@{project.version}</tagNameFormat>
+                    <preparationGoals>clean test</preparationGoals>
+                </configuration>
+            </plugin-->
+            <plugin>
+                <groupId>org.apache.maven.plugins</groupId>
+                <artifactId>maven-jar-plugin</artifactId>
+                <version>2.5</version>
+                <configuration>
+                    <archive>
+                        <manifest>
+                            <addDefaultImplementationEntries>true</addDefaultImplementationEntries>
+                        </manifest>
+                    </archive>
+                </configuration>
+            </plugin>
+	        <plugin>
+                <groupId>org.codehaus.mojo</groupId>
+                <artifactId>cobertura-maven-plugin</artifactId>
+                <version>2.6</version>
+                <configuration>
+                    <formats>
+                        <format>xml</format>
+                        <format>html</format>
+                    </formats>
+                    <aggregate>true</aggregate>
+                </configuration>
+            </plugin>
+	        <plugin>
+	            <groupId>org.eluder.coveralls</groupId>
+	            <artifactId>coveralls-maven-plugin</artifactId>
+	            <version>3.0.1</version>
+	        </plugin>
+        </plugins>
+    </build>
+    
+    <reporting>
+        <plugins>
+            <plugin>
+                <groupId>org.apache.maven.plugins</groupId>
+                <artifactId>maven-project-info-reports-plugin</artifactId>
+                <version>2.7</version>
+                <configuration>
+                    <dependencyDetailsEnabled>true</dependencyDetailsEnabled>
+                    <dependencyLocationsEnabled>true</dependencyLocationsEnabled>
+                </configuration>
+            </plugin>
+        </plugins>
+    </reporting>
+    
+    <modules>
+    	<module>oath-otp</module>
+    	<module>oath-otp-keyprovisioning</module>
+    </modules>
+    
+</project>
\ No newline at end of file
diff --git a/oxAuth/Server/integrations/otp/repository/com/lochbridge/oath/oath-parent/maven-metadata-local.xml b/oxAuth/Server/integrations/otp/repository/com/lochbridge/oath/oath-parent/maven-metadata-local.xml
new file mode 100644
index 00000000..e496352c
--- /dev/null
+++ b/oxAuth/Server/integrations/otp/repository/com/lochbridge/oath/oath-parent/maven-metadata-local.xml
@@ -0,0 +1,11 @@
+<?xml version="1.0" encoding="UTF-8"?>
+<metadata>
+  <groupId>com.lochbridge.oath</groupId>
+  <artifactId>oath-parent</artifactId>
+  <versioning>
+    <versions>
+      <version>0.0.1-SNAPSHOT</version>
+    </versions>
+    <lastUpdated>20160926101330</lastUpdated>
+  </versioning>
+</metadata>
diff --git a/oxAuth/Server/integrations/otp/sample/otp_configuration.json b/oxAuth/Server/integrations/otp/sample/otp_configuration.json
new file mode 100644
index 00000000..43b27d1c
--- /dev/null
+++ b/oxAuth/Server/integrations/otp/sample/otp_configuration.json
@@ -0,0 +1,13 @@
+{
+    "htop":{
+        "keyLength":20,
+        "digits":6,
+        "lookAheadWindow":1
+    },
+    "totp":{
+        "keyLength":20,
+        "digits":6,
+        "timeStep":30,
+        "hmacShaAlgorithm": "sha1"
+    }
+}
diff --git a/oxAuth/Server/integrations/otp/sequence_diagram.txt b/oxAuth/Server/integrations/otp/sequence_diagram.txt
new file mode 100644
index 00000000..f03514bb
--- /dev/null
+++ b/oxAuth/Server/integrations/otp/sequence_diagram.txt
@@ -0,0 +1,31 @@
+Title OTP enrollment/authentication workflow
+
+Person->Browser: Open RP URL
+Browser->RP: Protected resource
+RP->Gluu Server: Start AuthZ & AuthN
+OTP Script->OTP Script: Verify user/password
+
+alt: User enrollment
+    OTP Script->OTP Script: Check if person not issued OTP key already
+    OTP Script->Browser: Render otpauth QR code with OTP key 
+    Person->OTP comp. auth.: Scan QR code
+    OTP comp. auth.->Person: New one time password
+    Person->Browser: Enter one time password
+    Browser->OTP Script:
+    OTP Script->OTP Script: Validate one time password
+    OTP Script->OTP Script: Strore OTP key in user entry
+    OTP Script->Gluu Server: User pass enrollment
+else User authentication
+    OTP Script->OTP Script: Check if person issued OTP key already
+    OTP comp. auth.->Person: New one time password
+    Person->Browser: Enter one time password
+    Browser->OTP Script:
+    OTP Script->OTP Script: Validate one time password
+    OTP Script->Gluu Server: User pass enrollment
+end
+
+Gluu Server->Browser: Return code
+Browser->RP: Return code
+
+RP->Gluu Server: Request tokens
+RP->Gluu Server: Request user_info
diff --git a/oxAuth/Server/integrations/passport/PassportExternalAuthenticator.py b/oxAuth/Server/integrations/passport/PassportExternalAuthenticator.py
new file mode 100644
index 00000000..31b16e3b
--- /dev/null
+++ b/oxAuth/Server/integrations/passport/PassportExternalAuthenticator.py
@@ -0,0 +1,631 @@
+# oxAuth is available under the MIT License (2008). See http://opensource.org/licenses/MIT for full text.
+# Copyright (c) 2019, Gluu
+#
+# Author: Jose Gonzalez
+# Author: Yuriy Movchan
+#
+from org.gluu.jsf2.service import FacesService
+from org.gluu.jsf2.message import FacesMessages
+
+from org.gluu.oxauth.model.common import User, WebKeyStorage
+from org.gluu.oxauth.model.configuration import AppConfiguration
+from org.gluu.oxauth.model.crypto import CryptoProviderFactory
+from org.gluu.oxauth.model.jwt import Jwt, JwtClaimName
+from org.gluu.oxauth.model.util import Base64Util
+from org.gluu.oxauth.service import AppInitializer, AuthenticationService
+from org.gluu.oxauth.service.common import UserService, EncryptionService
+from org.gluu.oxauth.service.net import HttpService
+from org.gluu.oxauth.security import Identity
+from org.gluu.oxauth.util import ServerUtil
+from org.gluu.config.oxtrust import LdapOxPassportConfiguration
+from org.gluu.model.custom.script.type.auth import PersonAuthenticationType
+from org.gluu.persist import PersistenceEntryManager
+from org.gluu.service.cdi.util import CdiUtil
+from org.gluu.util import StringHelper
+from java.util import ArrayList, Arrays, Collections
+
+from javax.faces.application import FacesMessage
+from javax.faces.context import FacesContext
+
+import json
+import sys
+import datetime
+
+class PersonAuthentication(PersonAuthenticationType):
+    def __init__(self, currentTimeMillis):
+        self.currentTimeMillis = currentTimeMillis
+
+    def init(self, customScript, configurationAttributes):
+        print "Passport. init called"
+
+        self.extensionModule = self.loadExternalModule(configurationAttributes.get("extension_module"))
+        extensionResult = self.extensionInit(configurationAttributes)
+        if extensionResult != None:
+            return extensionResult
+
+        print "Passport. init. Behaviour is social"
+        success = self.processKeyStoreProperties(configurationAttributes)
+
+        if success:
+            self.providerKey = "provider"
+            self.customAuthzParameter = self.getCustomAuthzParameter(configurationAttributes.get("authz_req_param_provider"))
+            self.passportDN = self.getPassportConfigDN()
+            print "Passport. init. Initialization success"
+        else:
+            print "Passport. init. Initialization failed"
+        return success
+
+
+    def destroy(self, configurationAttributes):
+        print "Passport. destroy called"
+        return True
+
+
+    def getApiVersion(self):
+        return 11
+        
+    def getAuthenticationMethodClaims(self, requestParameters):
+        return None
+        
+    def isValidAuthenticationMethod(self, usageType, configurationAttributes):
+        return True
+
+
+    def getAlternativeAuthenticationMethod(self, usageType, configurationAttributes):
+        return None
+
+
+    def authenticate(self, configurationAttributes, requestParameters, step):
+
+        extensionResult = self.extensionAuthenticate(configurationAttributes, requestParameters, step)
+        if extensionResult != None:
+            return extensionResult
+
+        print "Passport. authenticate for step %s called" % str(step)
+        identity = CdiUtil.bean(Identity)
+
+        # Loading self.registeredProviders in case passport destroyed
+        if not hasattr(self,'registeredProviders'):
+            print "Passport. Fetching registered providers."
+            self.parseProviderConfigs()
+
+        if step == 1:
+            # Get JWT token
+            jwt_param = ServerUtil.getFirstValue(requestParameters, "user")
+
+            if jwt_param != None:
+                print "Passport. authenticate for step 1. JWT user profile token found"
+
+                # Parse JWT and validate
+                jwt = Jwt.parse(jwt_param)
+                if not self.validSignature(jwt):
+                    return False
+
+                if self.jwtHasExpired(jwt):
+                    return False
+
+                (user_profile, jsonp) = self.getUserProfile(jwt)
+                if user_profile == None:
+                    return False
+
+                sessionAttributes = identity.getSessionId().getSessionAttributes()
+                self.skipProfileUpdate = StringHelper.equalsIgnoreCase(sessionAttributes.get("skipPassportProfileUpdate"), "true")
+
+                return self.attemptAuthentication(identity, user_profile, jsonp)
+
+            #See passportlogin.xhtml
+            provider = ServerUtil.getFirstValue(requestParameters, "loginForm:provider")
+            if StringHelper.isEmpty(provider):
+
+                #it's username + passw auth
+                print "Passport. authenticate for step 1. Basic authentication detected"
+                logged_in = False
+
+                credentials = identity.getCredentials()
+                user_name = credentials.getUsername()
+                user_password = credentials.getPassword()
+
+                if StringHelper.isNotEmptyString(user_name) and StringHelper.isNotEmptyString(user_password):
+                    authenticationService = CdiUtil.bean(AuthenticationService)
+                    logged_in = authenticationService.authenticate(user_name, user_password)
+
+                print "Passport. authenticate for step 1. Basic authentication returned: %s" % logged_in
+                return logged_in
+
+            elif provider in self.registeredProviders:
+                #it's a recognized external IDP
+                identity.setWorkingParameter("selectedProvider", provider)
+                print "Passport. authenticate for step 1. Retrying step 1"
+                #see prepareForStep (step = 1)
+                return True
+
+        if step == 2:
+            mail = ServerUtil.getFirstValue(requestParameters, "loginForm:email")
+            jsonp = identity.getWorkingParameter("passport_user_profile")
+
+            if mail == None:
+                self.setMessageError(FacesMessage.SEVERITY_ERROR, "Email was missing in user profile")
+            elif jsonp != None:
+                # Completion of profile takes place
+                user_profile = json.loads(jsonp)
+                user_profile["mail"] = [ mail ]
+
+                return self.attemptAuthentication(identity, user_profile, jsonp)
+
+            print "Passport. authenticate for step 2. Failed: expected mail value in HTTP request and json profile in session"
+            return False
+
+
+    def prepareForStep(self, configurationAttributes, requestParameters, step):
+
+        extensionResult = self.extensionPrepareForStep(configurationAttributes, requestParameters, step)
+        if extensionResult != None:
+            return extensionResult
+
+        print "Passport. prepareForStep called %s"  % str(step)
+        identity = CdiUtil.bean(Identity)
+
+        if step == 1:
+            #re-read the strategies config (for instance to know which strategies have enabled the email account linking)
+            self.parseProviderConfigs()
+            identity.setWorkingParameter("externalProviders", json.dumps(self.registeredProviders))
+
+            providerParam = self.customAuthzParameter
+            url = None
+
+            sessionAttributes = identity.getSessionId().getSessionAttributes()
+            self.skipProfileUpdate = StringHelper.equalsIgnoreCase(sessionAttributes.get("skipPassportProfileUpdate"), "true")
+
+            #this param could have been set previously in authenticate step if current step is being retried
+            provider = identity.getWorkingParameter("selectedProvider")
+            if provider != None:
+                url = self.getPassportRedirectUrl(provider)
+                identity.setWorkingParameter("selectedProvider", None)
+
+            elif providerParam != None:
+                paramValue = sessionAttributes.get(providerParam)
+
+                if paramValue != None:
+                    print "Passport. prepareForStep. Found value in custom param of authorization request: %s" % paramValue
+                    provider = self.getProviderFromJson(paramValue)
+
+                    if provider == None:
+                        print "Passport. prepareForStep. A provider value could not be extracted from custom authorization request parameter"
+                    elif not provider in self.registeredProviders:
+                        print "Passport. prepareForStep. Provider '%s' not part of known configured IDPs/OPs" % provider
+                    else:
+                        url = self.getPassportRedirectUrl(provider)
+
+            if url == None:
+                print "Passport. prepareForStep. A page to manually select an identity provider will be shown"
+            else:
+                facesService = CdiUtil.bean(FacesService)
+                facesService.redirectToExternalURL(url)
+
+        return True
+
+
+    def getExtraParametersForStep(self, configurationAttributes, step):
+        print "Passport. getExtraParametersForStep called"
+        if step == 1:
+            return Arrays.asList("selectedProvider", "externalProviders")
+        elif step == 2:
+            return Arrays.asList("passport_user_profile")
+        return None
+
+
+    def getCountAuthenticationSteps(self, configurationAttributes):
+        print "Passport. getCountAuthenticationSteps called"
+        identity = CdiUtil.bean(Identity)
+        if identity.getWorkingParameter("passport_user_profile") != None:
+            return 2
+        return 1
+
+
+    def getPageForStep(self, configurationAttributes, step):
+        print "Passport. getPageForStep called"
+
+        extensionResult = self.extensionGetPageForStep(configurationAttributes, step)
+        if extensionResult != None:
+            return extensionResult
+
+        if step == 1:
+            return "/auth/passport/passportlogin.xhtml"
+        return "/auth/passport/passportpostlogin.xhtml"
+
+
+    def getNextStep(self, configurationAttributes, requestParameters, step):
+
+        if step == 1:
+            identity = CdiUtil.bean(Identity)
+            provider = identity.getWorkingParameter("selectedProvider")
+            if provider != None:
+                return 1
+
+        return -1
+
+    def getLogoutExternalUrl(self, configurationAttributes, requestParameters):
+        print "Get external logout URL call"
+        return None
+
+    def logout(self, configurationAttributes, requestParameters):
+        return True
+
+# Extension module related functions
+
+    def extensionInit(self, configurationAttributes):
+
+        if self.extensionModule == None:
+            return None
+        return self.extensionModule.init(configurationAttributes)
+
+
+    def extensionAuthenticate(self, configurationAttributes, requestParameters, step):
+
+        if self.extensionModule == None:
+            return None
+        return self.extensionModule.authenticate(configurationAttributes, requestParameters, step)
+
+
+    def extensionPrepareForStep(self, configurationAttributes, requestParameters, step):
+
+        if self.extensionModule == None:
+            return None
+        return self.extensionModule.prepareForStep(configurationAttributes, requestParameters, step)
+
+
+    def extensionGetPageForStep(self, configurationAttributes, step):
+
+        if self.extensionModule == None:
+            return None
+        return self.extensionModule.getPageForStep(configurationAttributes, step)
+
+# Initalization routines
+
+    def loadExternalModule(self, simpleCustProperty):
+
+        if simpleCustProperty != None:
+            print "Passport. loadExternalModule. Loading passport extension module..."
+            moduleName = simpleCustProperty.getValue2()
+            try:
+                module = __import__(moduleName)
+                return module
+            except:
+                print "Passport. loadExternalModule. Failed to load module %s" % moduleName
+                print "Exception: ", sys.exc_info()[1]
+                print "Passport. loadExternalModule. Flow will be driven entirely by routines of main passport script"
+        return None
+
+
+    def processKeyStoreProperties(self, attrs):
+        file = attrs.get("key_store_file")
+        password = attrs.get("key_store_password")
+
+        if file != None and password != None:
+            file = file.getValue2()
+            password = password.getValue2()
+
+            if StringHelper.isNotEmpty(file) and StringHelper.isNotEmpty(password):
+                self.keyStoreFile = file
+                self.keyStorePassword = password
+                return True
+
+        print "Passport. readKeyStoreProperties. Properties key_store_file or key_store_password not found or empty"
+        return False
+
+
+    def getCustomAuthzParameter(self, simpleCustProperty):
+
+        customAuthzParameter = None
+        if simpleCustProperty != None:
+            prop = simpleCustProperty.getValue2()
+            if StringHelper.isNotEmpty(prop):
+                customAuthzParameter = prop
+
+        if customAuthzParameter == None:
+            print "Passport. getCustomAuthzParameter. No custom param for OIDC authz request in script properties"
+            print "Passport. getCustomAuthzParameter. Passport flow cannot be initiated by doing an OpenID connect authorization request"
+        else:
+            print "Passport. getCustomAuthzParameter. Custom param for OIDC authz request in script properties: %s" % customAuthzParameter
+
+        return customAuthzParameter
+
+# Configuration parsing
+
+    def getPassportConfigDN(self):
+
+        f = open('/etc/gluu/conf/gluu.properties', 'r')
+        for line in f:
+            prop = line.split("=")
+            if prop[0] == "oxpassport_ConfigurationEntryDN":
+              prop.pop(0)
+              break
+
+        f.close()
+        return "=".join(prop).strip()
+
+
+    def parseAllProviders(self):
+
+        registeredProviders = {}
+        print "Passport. parseAllProviders. Adding providers"
+        entryManager = CdiUtil.bean(PersistenceEntryManager)
+
+        config = LdapOxPassportConfiguration()
+        config = entryManager.find(config.getClass(), self.passportDN).getPassportConfiguration()
+        config = config.getProviders() if config != None else config
+
+        if config != None and len(config) > 0:
+            for prvdetails in config:
+                if prvdetails.isEnabled():
+                    registeredProviders[prvdetails.getId()] = {
+                        "emailLinkingSafe": prvdetails.isEmailLinkingSafe(),
+                        "requestForEmail" : prvdetails.isRequestForEmail(),
+                        "logo_img": prvdetails.getLogoImg(),
+                        "displayName": prvdetails.getDisplayName(),
+                        "type": prvdetails.getType()
+                    }
+
+        return registeredProviders
+
+
+    def parseProviderConfigs(self):
+
+        registeredProviders = {}
+        try:
+            registeredProviders = self.parseAllProviders()
+            toRemove = []
+
+            for provider in registeredProviders:
+                if registeredProviders[provider]["type"] == "saml":
+                    toRemove.append(provider)
+                else:
+                    registeredProviders[provider]["saml"] = False
+
+            for provider in toRemove:
+                registeredProviders.pop(provider)
+
+            if len(registeredProviders.keys()) > 0:
+                print "Passport. parseProviderConfigs. Configured providers:", registeredProviders
+            else:
+                print "Passport. parseProviderConfigs. No providers registered yet"
+        except:
+            print "Passport. parseProviderConfigs. An error occurred while building the list of supported authentication providers", sys.exc_info()[1]
+
+        self.registeredProviders = registeredProviders
+
+# Auxiliary routines
+
+    def getProviderFromJson(self, providerJson):
+
+        provider = None
+        try:
+            obj = json.loads(Base64Util.base64urldecodeToString(providerJson))
+            provider = obj[self.providerKey]
+        except:
+            print "Passport. getProviderFromJson. Could not parse provided Json string. Returning None"
+
+        return provider
+
+
+    def getPassportRedirectUrl(self, provider):
+
+        # provider is assumed to exist in self.registeredProviders
+        url = None
+        try:
+            facesContext = CdiUtil.bean(FacesContext)
+            tokenEndpoint = "https://%s/passport/token" % facesContext.getExternalContext().getRequest().getServerName()
+
+            httpService = CdiUtil.bean(HttpService)
+            httpclient = httpService.getHttpsClient()
+
+            print "Passport. getPassportRedirectUrl. Obtaining token from passport at %s" % tokenEndpoint
+            resultResponse = httpService.executeGet(httpclient, tokenEndpoint, Collections.singletonMap("Accept", "text/json"))
+            httpResponse = resultResponse.getHttpResponse()
+            bytes = httpService.getResponseContent(httpResponse)
+
+            response = httpService.convertEntityToString(bytes)
+            print "Passport. getPassportRedirectUrl. Response was %s" % httpResponse.getStatusLine().getStatusCode()
+
+            tokenObj = json.loads(response)
+            url = "/passport/auth/%s/%s" % (provider, tokenObj["token_"])
+        except:
+            print "Passport. getPassportRedirectUrl. Error building redirect URL: ", sys.exc_info()[1]
+
+        return url
+
+
+    def validSignature(self, jwt):
+
+        print "Passport. validSignature. Checking JWT token signature"
+        valid = False
+
+        try:
+            appConfiguration = AppConfiguration()
+            appConfiguration.setWebKeysStorage(WebKeyStorage.KEYSTORE)
+            appConfiguration.setKeyStoreFile(self.keyStoreFile)
+            appConfiguration.setKeyStoreSecret(self.keyStorePassword)
+            appConfiguration.setKeyRegenerationEnabled(False)
+
+            cryptoProvider = CryptoProviderFactory.getCryptoProvider(appConfiguration)
+            valid = cryptoProvider.verifySignature(jwt.getSigningInput(), jwt.getEncodedSignature(), jwt.getHeader().getKeyId(),
+                                                        None, None, jwt.getHeader().getSignatureAlgorithm())
+        except:
+            print "Exception: ", sys.exc_info()[1]
+
+        print "Passport. validSignature. Validation result was %s" % valid
+        return valid
+
+
+    def jwtHasExpired(self, jwt):
+        # Check if jwt has expired
+        jwt_claims = jwt.getClaims()
+        try:
+            exp_date_timestamp = float(jwt_claims.getClaimAsString(JwtClaimName.EXPIRATION_TIME))
+            exp_date = datetime.datetime.fromtimestamp(exp_date_timestamp)
+            hasExpired = exp_date < datetime.datetime.now()
+        except:
+            print "Exception: The JWT does not have '%s' attribute" % JwtClaimName.EXPIRATION_TIME
+            return False
+
+        return hasExpired
+
+
+    def getUserProfile(self, jwt):
+        jwt_claims = jwt.getClaims()
+        user_profile_json = None
+
+        try:
+            user_profile_json = CdiUtil.bean(EncryptionService).decrypt(jwt_claims.getClaimAsString("data"))
+            user_profile = json.loads(user_profile_json)
+        except:
+            print "Passport. getUserProfile. Problem obtaining user profile json representation"
+
+        return (user_profile, user_profile_json)
+
+
+    def attemptAuthentication(self, identity, user_profile, user_profile_json):
+
+        uidKey = "uid"
+        if not self.checkRequiredAttributes(user_profile, [uidKey, self.providerKey]):
+            return False
+
+        provider = user_profile[self.providerKey]
+        if not provider in self.registeredProviders:
+            print "Passport. attemptAuthentication. Identity Provider %s not recognized" % provider
+            return False
+
+        uid = user_profile[uidKey][0]
+        externalUid = "passport-%s:%s" % (provider, uid)
+
+        userService = CdiUtil.bean(UserService)
+        userByUid = userService.getUserByAttribute("oxExternalUid", externalUid, True)
+
+        email = None
+        if "mail" in user_profile:
+            email = user_profile["mail"]
+            if len(email) == 0:
+                email = None
+            else:
+                email = email[0]
+                user_profile["mail"] = [ email ]
+
+        if email == None and self.registeredProviders[provider]["requestForEmail"]:
+            print "Passport. attemptAuthentication. Email was not received"
+
+            if userByUid != None:
+                # This avoids asking for the email over every login attempt
+                email = userByUid.getAttribute("mail")
+                if email != None:
+                    print "Passport. attemptAuthentication. Filling missing email value with %s" % email
+                    user_profile["mail"] = [ email ]
+
+            if email == None:
+                # Store user profile in session and abort this routine
+                identity.setWorkingParameter("passport_user_profile", user_profile_json)
+                return True
+
+        userByMail = None if email == None else userService.getUserByAttribute("mail", email)
+
+        # Determine if we should add entry, update existing, or deny access
+        doUpdate = False
+        doAdd = False
+        if userByUid != None:
+            print "User with externalUid '%s' already exists" % externalUid
+            if userByMail == None:
+                doUpdate = True
+            else:
+                if userByMail.getUserId() == userByUid.getUserId():
+                    doUpdate = True
+                else:
+                    print "Users with externalUid '%s' and mail '%s' are different. Access will be denied. Impersonation attempt?" % (externalUid, email)
+                    self.setMessageError(FacesMessage.SEVERITY_ERROR, "Email value corresponds to an already existing provisioned account")
+        else:
+            if userByMail == None:
+                doAdd = True
+            elif self.registeredProviders[provider]["emailLinkingSafe"]:
+
+                tmpList = userByMail.getAttributeValues("oxExternalUid")
+                tmpList = ArrayList() if tmpList == None else ArrayList(tmpList)
+                tmpList.add(externalUid)
+                userByMail.setAttribute("oxExternalUid", tmpList, True)
+
+                userByUid = userByMail
+                print "External user supplying mail %s will be linked to existing account '%s'" % (email, userByMail.getUserId())
+                doUpdate = True
+            else:
+                print "An attempt to supply an email of an existing user was made. Turn on 'emailLinkingSafe' if you want to enable linking"
+                self.setMessageError(FacesMessage.SEVERITY_ERROR, "Email value corresponds to an already existing account. If you already have a username and password use those instead of an external authentication site to get access.")
+
+        username = None
+        try:
+            if doUpdate:
+                username = userByUid.getUserId()
+                print "Passport. attemptAuthentication. Updating user %s" % username
+                self.updateUser(userByUid, user_profile, userService)
+            elif doAdd:
+                print "Passport. attemptAuthentication. Creating user %s" % externalUid
+                newUser = self.addUser(externalUid, user_profile, userService)
+                username = newUser.getUserId()
+        except:
+            print "Exception: ", sys.exc_info()[1]
+            print "Passport. attemptAuthentication. Authentication failed"
+            return False
+
+        if username == None:
+            print "Passport. attemptAuthentication. Authentication attempt was rejected"
+            return False
+        else:
+            logged_in = CdiUtil.bean(AuthenticationService).authenticate(username)
+            print "Passport. attemptAuthentication. Authentication for %s returned %s" % (username, logged_in)
+            return logged_in
+
+
+    def setMessageError(self, severity, msg):
+        facesMessages = CdiUtil.bean(FacesMessages)
+        facesMessages.setKeepMessages()
+        facesMessages.clear()
+        facesMessages.add(severity, msg)
+
+
+    def checkRequiredAttributes(self, profile, attrs):
+
+        for attr in attrs:
+            if (not attr in profile) or len(profile[attr]) == 0:
+                print "Passport. checkRequiredAttributes. Attribute '%s' is missing in profile" % attr
+                return False
+        return True
+
+
+    def addUser(self, externalUid, profile, userService):
+
+        newUser = User()
+        #Fill user attrs
+        newUser.setAttribute("oxExternalUid", externalUid, True)
+        self.fillUser(newUser, profile)
+        newUser = userService.addUser(newUser, True)
+        return newUser
+
+
+    def updateUser(self, foundUser, profile, userService):
+
+        # when this is false, there might still some updates taking place (e.g. not related to profile attrs released by external provider)
+        if (not self.skipProfileUpdate):
+            self.fillUser(foundUser, profile)
+        userService.updateUser(foundUser)
+
+
+    def fillUser(self, foundUser, profile):
+
+        for attr in profile:
+            # "provider" is disregarded if part of mapping
+            if attr != self.providerKey:
+                values = profile[attr]
+                print "%s = %s" % (attr, values)
+                foundUser.setAttribute(attr, values)
+
+                if attr == "mail":
+                    oxtrustMails = []
+                    for mail in values:
+                        oxtrustMails.append('{"value":"%s","primary":false}' % mail)
+                    foundUser.setAttribute("oxTrustEmail", oxtrustMails)
diff --git a/oxAuth/Server/integrations/passport/README.md b/oxAuth/Server/integrations/passport/README.md
new file mode 100644
index 00000000..f6057707
--- /dev/null
+++ b/oxAuth/Server/integrations/passport/README.md
@@ -0,0 +1,10 @@
+Passport is a person authentication module for oxAuth that enables [Google+ Authentication](https://www.google.com), [Twitter Authentication](https://www.twitter.com), [Facebook Authentication](https://www.facebook.com) etc. for user authentication.
+
+The module has a few properties:
+   
+   1) generic_remote_attributes_list - It's mandatory property. Comma separated list of attribute names. Specify list of User claims(attributes) which script should use to map to local attributes. The count of attributes in this property should be equal to count attributes in generic_local_attributes_list property.
+Example: `username, email, name, name, givenName, familyName, provider`
+   
+   2) generic_local_attributes_list - It's mandatory property. Comma separated list of attribute names. Specify list of local attributes mapped from passport userInfo response. The count of attributes in this property should be equal to count attributes in generic_remote_attributes_list property. Local attributes list should contains next mandatory attributes: uid, mail, givenName, sn, cn.
+Example: `uid, mail, cn, displayName, givenName, sn, provider`
+
diff --git a/oxAuth/Server/integrations/passport/sample/passport_script_entry.ldif b/oxAuth/Server/integrations/passport/sample/passport_script_entry.ldif
new file mode 100644
index 00000000..7142616e
--- /dev/null
+++ b/oxAuth/Server/integrations/passport/sample/passport_script_entry.ldif
@@ -0,0 +1,16 @@
+dn: inum=@!1111!2FDB.CF02,ou=scripts,o=gluu
+objectClass: oxCustomScript
+objectClass: top
+description: Passport authentication module
+displayName: passport
+gluuStatus: false
+inum: @!1111!2FDB.CF02
+oxConfigurationProperty: {"value1":"generic_remote_attributes_list","value2":"username, email, name, name, givenName, familyName, provider","description":""}
+oxConfigurationProperty: {"value1":"generic_local_attributes_list","value2":"uid, mail, cn, displayName, givenName, sn, provider","description":""}
+oxLevel: 60
+oxModuleProperty: {"value1":"usage_type","value2":"interactive","description":""}
+oxModuleProperty: {"value1":"location_type","value2":"ldap","description":""}
+oxRevision: 1
+oxScript:: <copy content of the file from PassportExternalAuthenticator.py>
+oxScriptType: person_authentication
+programmingLanguage: python
diff --git a/oxAuth/Server/integrations/passwordless/PasswordlessAuthentication.py b/oxAuth/Server/integrations/passwordless/PasswordlessAuthentication.py
new file mode 100644
index 00000000..7bbfdf2e
--- /dev/null
+++ b/oxAuth/Server/integrations/passwordless/PasswordlessAuthentication.py
@@ -0,0 +1,445 @@
+# Author: Jose Gonzalez
+from java.lang import System
+from java.net import URLDecoder, URLEncoder
+from java.util import Arrays, ArrayList, Collections, HashMap
+
+from javax.faces.application import FacesMessage
+from javax.servlet.http import Cookie
+from javax.faces.context import FacesContext
+
+from org.oxauth.persistence.model.configuration import GluuConfiguration
+
+from org.gluu.oxauth.security import Identity
+from org.gluu.oxauth.util import ServerUtil
+from org.gluu.oxauth.service import AuthenticationService, UserService
+from org.gluu.oxauth.service.custom import CustomScriptService
+from org.gluu.model.custom.script import CustomScriptType
+from org.gluu.model.custom.script.type.auth import PersonAuthenticationType
+from org.gluu.model import SimpleCustomProperty
+from org.gluu.persist import PersistenceEntryManager
+from org.gluu.service.cdi.util import CdiUtil
+from org.gluu.util import StringHelper
+
+from org.gluu.jsf2.message import FacesMessages
+
+try:
+    import json
+except ImportError:
+    import simplejson as json
+import sys
+
+class PersonAuthentication(PersonAuthenticationType):
+    def __init__(self, currentTimeMillis):
+        self.currentTimeMillis = currentTimeMillis
+        self.ACR_SG = "super_gluu"
+        self.PREV_LOGIN_SETTING = "prevLoginsCookieSettings"
+        
+        self.modulePrefix = "pwdless-external_"
+
+    def init(self, customScript, configurationAttributes):    	
+        print "Passwordless. init called"
+        self.authenticators = {}
+        self.uid_attr = self.getLocalPrimaryKey()
+        
+        self.prevLoginsSettings = self.computePrevLoginsSettings(configurationAttributes.get(self.PREV_LOGIN_SETTING))
+
+        custScriptService = CdiUtil.bean(CustomScriptService)
+        self.scriptsList = custScriptService.findCustomScripts(Collections.singletonList(CustomScriptType.PERSON_AUTHENTICATION), "oxConfigurationProperty", "displayName", "oxEnabled")
+        dynamicMethods = self.computeMethods(configurationAttributes.get("snd_step_methods"), self.scriptsList)
+
+        if len(dynamicMethods) > 0:
+            print "Passwordless. init. Loading scripts for dynamic modules: %s" % dynamicMethods
+            
+            for acr in dynamicMethods:
+                moduleName = self.modulePrefix + acr
+                try:
+                    external = __import__(moduleName, globals(), locals(), ["PersonAuthentication"], -1)
+                    module = external.PersonAuthentication(self.currentTimeMillis)
+
+                    print "Passwordless. init. Got dynamic module for acr %s" % acr
+                    configAttrs = self.getConfigurationAttributes(acr, self.scriptsList)
+                    
+                    if acr == self.ACR_SG:
+                        application_id = configurationAttributes.get("supergluu_app_id").getValue2()
+                        configAttrs.put("application_id", SimpleCustomProperty("application_id", application_id))
+
+                    if module.init(None, configAttrs):
+                        module.configAttrs = configAttrs
+                        self.authenticators[acr] = module
+                    else:
+                        print "Passwordless. init. Call to init in module '%s' returned False" % moduleName
+                except:
+                    print "Passwordless. init. Failed to load module %s" % moduleName
+                    print "Exception: ", sys.exc_info()[1]
+        else:
+            print "Passwordless. init. Not enough custom scripts enabled. Check config property 'snd_step_methods'"
+            return False
+        
+        print "Passwordless. init. Initialized successfully"
+        return True
+
+    def destroy(self, configurationAttributes):
+        return True
+
+    def getApiVersion(self):
+        return 11
+
+    def getAuthenticationMethodClaims(self, configurationAttributes):
+        return None
+
+    def isValidAuthenticationMethod(self, usageType, configurationAttributes):
+        return True
+
+    def getAlternativeAuthenticationMethod(self, usageType, configurationAttributes):
+        return None
+
+    def authenticate(self, configurationAttributes, requestParameters, step):
+        print "Passwordless. authenticate for step %d" % step
+
+        userService = CdiUtil.bean(UserService)
+        authenticationService = CdiUtil.bean(AuthenticationService)
+        identity = CdiUtil.bean(Identity)
+
+        if step == 1:
+            user_name = identity.getCredentials().getUsername()
+            if StringHelper.isNotEmptyString(user_name):
+
+                foundUser = userService.getUserByAttribute(self.uid_attr, user_name)
+                
+                if foundUser == None:
+                    print "Passwordless. Unknown username '%s'" % user_name
+                elif authenticationService.authenticate(user_name):
+                    availMethods = self.getAvailMethodsUser(foundUser)
+                    
+                    if availMethods.size() > 0:
+                        acr = availMethods.get(0)
+                        print "Passwordless. Method to try in 2nd step will be: %s" % acr
+                        
+                        module = self.authenticators[acr]
+                        logged_in = module.authenticate(module.configAttrs, requestParameters, step)
+                        
+                        if logged_in:
+                            identity.setWorkingParameter("ACR", acr)
+                            print "Passwordless. Authentication passed for step %d" % step
+                            return True
+                            
+                    else:
+                        self.setError("Cannot proceed. You don't have suitable credentials for passwordless login")
+                else:
+                    self.setError("Wrong username or password")
+        else:
+            user = authenticationService.getAuthenticatedUser()
+            if user == None:
+                print "Passwordless. authenticate for step 2. Cannot retrieve logged user"
+                return False
+
+            #see alternative.xhtml
+            alter = ServerUtil.getFirstValue(requestParameters, "alternativeMethod")
+            if alter != None:
+                #bypass the rest of this step if an alternative method was provided. Current step will be retried (see getNextStep)
+                self.simulateFirstStep(requestParameters, alter)
+                return True
+
+            session_attributes = identity.getSessionId().getSessionAttributes()
+            acr = session_attributes.get("ACR")
+            #this working parameter is used in alternative.xhtml
+            identity.setWorkingParameter("methods", self.getAvailMethodsUser(user, acr))
+
+            success = False
+            if acr in self.authenticators:
+                module = self.authenticators[acr]
+                success = module.authenticate(module.configAttrs, requestParameters, step)
+
+            if success:
+                print "Passwordless. authenticate. 2FA authentication was successful"
+                if self.prevLoginsSettings != None:
+                    self.persistCookie(user)
+            else:
+                print "Passwordless. authenticate. 2FA authentication failed"
+
+            return success
+            
+        return False
+        
+
+    def prepareForStep(self, configurationAttributes, requestParameters, step):
+        print "Passwordless. prepareForStep %d" % step
+
+        identity = CdiUtil.bean(Identity)
+        session_attributes = identity.getSessionId().getSessionAttributes()
+        
+        if step == 1:
+            try:
+                loginHint = session_attributes.get("login_hint")
+                print "Passwordless. prepareForStep. Login hint is %s" % loginHint
+                isLoginHint = loginHint != None
+                
+                if self.prevLoginsSettings == None:
+                    if isLoginHint:
+                        identity.setWorkingParameter("loginHint", loginHint)
+                else:
+                    users = self.getCookieValue()    
+                    
+                    if isLoginHint:
+                        
+                        idx = self.findUid(loginHint, users) 
+                        if idx >= 0:
+                            u = users.pop(idx)
+                            users.insert(0, u)
+                        else:
+                            identity.setWorkingParameter("loginHint", loginHint)
+                    
+                    if len(users) > 0:
+                        identity.setWorkingParameter("users", json.dumps(users, separators=(',',':')))
+            
+                # In login.xhtml both loginHint and users are used to properly display the login form
+            except:
+                print "Passwordless. prepareForStep. Error!", sys.exc_info()[1]
+                
+            return True
+            
+        else:
+            user = CdiUtil.bean(AuthenticationService).getAuthenticatedUser()
+
+            if user == None:
+                print "Passwordless. prepareForStep. Cannot retrieve logged user"
+                return False
+                
+            acr = session_attributes.get("ACR")
+            print "Passwordless. prepareForStep. ACR = %s" % acr
+            
+            identity.setWorkingParameter("methods", ArrayList(self.getAvailMethodsUser(user, acr)))
+
+            if acr in self.authenticators:
+                module = self.authenticators[acr]
+                return module.prepareForStep(module.configAttrs, requestParameters, step)
+            else:
+                return False
+
+    def getExtraParametersForStep(self, configurationAttributes, step):
+
+        print "Passwordless. getExtraParametersForStep %d" % step
+        list = ArrayList()
+
+        if step > 1:
+            acr = CdiUtil.bean(Identity).getWorkingParameter("ACR")
+
+            if acr in self.authenticators:
+                module = self.authenticators[acr]
+                params = module.getExtraParametersForStep(module.configAttrs, step)
+                if params != None:
+                    list.addAll(params)
+
+            list.addAll(Arrays.asList("ACR", "methods"))
+            print "extras are %s" % list
+        return list
+
+    def getCountAuthenticationSteps(self, configurationAttributes):
+        return 2
+
+    def getPageForStep(self, configurationAttributes, step):
+        if step > 1:
+            acr = CdiUtil.bean(Identity).getWorkingParameter("ACR")
+            if acr in self.authenticators:
+                module = self.authenticators[acr]
+                page = module.getPageForStep(module.configAttrs, step)
+                
+                print "Passwordless. getPageForStep %d is %s" % (step, page)                
+                return page
+                
+        return "/passwordless/login.xhtml"
+
+    def getNextStep(self, configurationAttributes, requestParameters, step):
+        print "Passwordless. getNextStep called %d" % step
+        if step > 1:
+            acr = ServerUtil.getFirstValue(requestParameters, "alternativeMethod")
+            if acr != None:
+                print "Passwordless. getNextStep. Use alternative method %s" % acr
+                CdiUtil.bean(Identity).setWorkingParameter("ACR", acr)
+                #retry step with different acr
+                return 2
+
+        return -1
+
+    def logout(self, configurationAttributes, requestParameters):
+        return True
+
+# Miscelaneous
+
+    def getLocalPrimaryKey(self):
+        entryManager = CdiUtil.bean(PersistenceEntryManager)
+        config = GluuConfiguration()
+        config = entryManager.find(config.getClass(), "ou=configuration,o=gluu")
+        #Pick (one) attribute where user id is stored (e.g. uid/mail)
+        uid_attr = config.getOxIDPAuthentication().get(0).getConfig().getPrimaryKey()
+        print "Passwordless. init. uid attribute is '%s'" % uid_attr
+        return uid_attr
+
+
+    def setError(self, msg):
+        facesMessages = CdiUtil.bean(FacesMessages)
+        facesMessages.setKeepMessages()
+        facesMessages.clear()
+        facesMessages.add(FacesMessage.SEVERITY_ERROR, msg)
+
+
+    def computeMethods(self, sndStepMethods, scriptsList):
+        snd_step_methods = [] if sndStepMethods == None else StringHelper.split(sndStepMethods.getValue2(), ",")        
+        methods = []
+        
+        for m in snd_step_methods:
+            for customScript in scriptsList:
+                if customScript.getName() == m and customScript.isEnabled():
+                    methods.append(m)
+
+        print "Passwordless. computeMethods. %s" % methods
+        return methods
+
+
+    def getConfigurationAttributes(self, acr, scriptsList):
+
+        configMap = HashMap()
+        for customScript in scriptsList:
+            if customScript.getName() == acr:
+                for prop in customScript.getConfigurationProperties():
+                    configMap.put(prop.getValue1(), SimpleCustomProperty(prop.getValue1(), prop.getValue2()))
+
+        print "Passwordless. getConfigurationAttributes. %d configuration properties were found for %s" % (configMap.size(), acr)
+        return configMap
+
+
+    def getAvailMethodsUser(self, user, skip=None):
+        methods = ArrayList()
+
+        for method in self.authenticators:
+            try:
+                module = self.authenticators[method]
+                if module.hasEnrollments(module.configAttrs, user) and (skip == None or skip != method):
+                    methods.add(method)
+            except:
+                print "Passwordless. getAvailMethodsUser. hasEnrollments call could not be issued for %s module" % method
+                print "Exception: ", sys.exc_info()[1]
+
+        print "Passwordless. getAvailMethodsUser %s" % methods.toString()
+        return methods
+
+
+    def simulateFirstStep(self, requestParameters, acr):
+        #To simulate 1st step, there is no need to call:
+        # getPageforstep (no need as user/pwd won't be shown again)
+        # isValidAuthenticationMethod (by restriction, it returns True)
+        # prepareForStep (by restriction, it returns True)
+        # getExtraParametersForStep (by restriction, it returns None)
+        print "Passwordless. simulateFirstStep. Calling authenticate (step 1) for %s module" % acr
+        if acr in self.authenticators:
+            module = self.authenticators[acr]
+            auth = module.authenticate(module.configAttrs, requestParameters, 1)
+            print "Passwordless. simulateFirstStep. returned value was %s" % auth
+            
+    def computePrevLoginsSettings(self, customProperty):
+        settings = None
+        if customProperty == None:
+            print "Passwordless. Previous logins feature is not configured. Set config property '%s' if desired" % self.PREV_LOGIN_SETTING
+        else:
+            try:
+                settings = json.loads(customProperty.getValue2())
+                if settings['enabled']:
+                	print "Passwordless. PrevLoginsSettings are %s" % settings
+                else:
+                    settings = None
+                    print "Passwordless. Previous logins feature is disabled"
+            except:
+                print "Passwordless. Unparsable config property '%s'" % self.PREV_LOGIN_SETTING
+            
+        return settings
+        
+    def getCookieValue(self):
+        ulist = []
+        coo =  None
+        httpRequest = ServerUtil.getRequestOrNull()
+        
+        if httpRequest != None:
+            for cookie in httpRequest.getCookies():
+                if cookie.getName() == self.prevLoginsSettings['cookieName']:
+                   coo = cookie
+        
+        if coo == None:
+            print "Passwordless. getCookie. No cookie found"
+        else:
+            print "Passwordless. getCookie. Found cookie"
+            forgetMs = self.prevLoginsSettings['forgetEntriesAfterMinutes'] * 60 * 1000
+            
+            try:
+                now = System.currentTimeMillis()
+                value = URLDecoder.decode(coo.getValue(), "utf-8")
+                # value is an array of objects with properties: uid, displayName, lastLogon
+                value = json.loads(value)
+                
+                for v in value:
+                    if now - v['lastLogon'] < forgetMs:
+                        ulist.append(v)        
+                # print "==========", ulist
+            except:
+                print "Passwordless. getCookie. Unparsable value, dropping cookie..."
+            
+        return ulist
+        
+
+    def findUid(self, uid, users):
+        
+        i = 0
+        idx = -1
+        for user in users:
+            if user['uid'] == uid:
+                idx = i
+                break
+            i+=1
+        return idx
+        
+            
+    def persistCookie(self, user):
+        try:
+            now = System.currentTimeMillis()
+            uid = user.getUserId()
+            dname = user.getAttribute("displayName")
+            
+            users = self.getCookieValue()
+            idx = self.findUid(uid, users)
+            
+            if idx >= 0:
+                u = users.pop(idx)
+            else:
+                u = { 'uid': uid, 'displayName': '' if dname == None else dname }
+            u['lastLogon'] = now
+            
+            # The most recent goes first :)
+            users.insert(0, u)
+            
+            excess = len(users) - self.prevLoginsSettings['maxListSize']            
+            if excess > 0:
+                print "Passwordless. persistCookie. Shortening list..."
+                users = users[:self.prevLoginsSettings['maxListSize']]
+            
+            value = json.dumps(users, separators=(',',':'))
+            value = URLEncoder.encode(value, "utf-8")
+            coo = Cookie(self.prevLoginsSettings['cookieName'], value)
+            coo.setSecure(True)
+            coo.setHttpOnly(True)
+            # One week
+            coo.setMaxAge(7 * 24 * 60 * 60)
+            
+            response = self.getHttpResponse()
+            if response != None:
+                print "Passwordless. persistCookie. Adding cookie to response"
+                response.addCookie(coo)
+        except:
+            print "Passwordless. persistCookie. Exception: ", sys.exc_info()[1]
+
+
+    def getHttpResponse(self):
+        try:
+            return FacesContext.getCurrentInstance().getExternalContext().getResponse()
+        except:
+            print "Passwordless. Error accessing HTTP response object: ", sys.exc_info()[1]
+            return None
+        
\ No newline at end of file
diff --git a/oxAuth/Server/integrations/passwordless/README.md b/oxAuth/Server/integrations/passwordless/README.md
new file mode 100644
index 00000000..6c0fdbe6
--- /dev/null
+++ b/oxAuth/Server/integrations/passwordless/README.md
@@ -0,0 +1,3 @@
+# Passwordless authentication script
+
+Check https://gluu.org/docs/gluu-server/4.3/authn-guide/passwordless/
diff --git a/oxAuth/Server/integrations/passwordless/bundle.zip b/oxAuth/Server/integrations/passwordless/bundle.zip
new file mode 100644
index 0000000000000000000000000000000000000000..161dac39cecf46284e5d58d8cee84671307edf12
GIT binary patch
literal 428691
zcmbTcV~i$1*Z$eIZQHhO+t%D|+qUiQX`9owZQhM(+wPuyHrf5>*>|(q&7Lo(KK!n$
zPAZjCsZ^=RgF|3|gZw8%g@)Ds_xyhb#D4~kPHxO9|BK)i{=X8i{|8|WaCiSNOyYkS
zA^$gKXX)nV{a>*C|A4Xn@35nnsk@uae{19>{x6jh{y%EW-Cf-r?f*-v`#+|m_<xhS
zx|zD!n*Wyr<o{R%*8h(VPNuG|o{laS083Zb|78aQ((T->X0!N@^9BbBL@*2$MEU=Z
zot2}58>6YGrK_X8B_k&jD;pCllPLheWN+)hWak=}Yn$jMjxoOXiIIuTChpnY2JFhx
zfg)|942z0tt;sH)WnqU(JZ|~?7q}|87UlK(Vn<IozgMZvy1?hF>7eSM?Xsr(pq$vF
zV}0)`V%@=`yBHw06L!#27=hida{98+LBw=()7R_&l5PF7(xqG9e^2LV#ME80{SW79
zrZ3U!1m4m4Va&zf{qxExK&a<yF^T&xoWRNh5Z@8$w&&#ph0ByP&p5Ep*Td^F{x$Kk
z(5}In$oDJuwjrZ?`m!c<xv=ofs2d2}HDK~o7Vzxv#m#6b3^csf6!7$XOzmnA+Vgkz
zZu|U-9-qGn`0()j9=#hrUOinG7I;6JbXgl*UhPNx{PKDK$=zMehq{?hAg<_V+U`C+
zwBY@I*S_^|_Gkvwx4&i@JKWYg2D~4i8Y^=Tot>03b9z0WUHyDKJemsd^LKk4L{k^^
z>g*OW)?9A}JkM@Uen&_O-rSFOAQLy-c=~H|8(p;*3cnwrk3R}Idq_BRZwCCl*SzAr
zog829-q?9Q9;I&2y0mNquaW3$1AJQ-?>&V39!Dq99eZELYLxSS9;OR(fc<~I42BE5
z#m4_VEh`)Qo?gES`=1YM@A;nAX+Kx3ZMO(7ZjSV9?)nG1KEJ(*gqq90J+G&#SN8LF
zbE6h)`+v<+_kXz@UMO(r;%@8!zgzcqm%i?vrEf={pV!@l{Jv~YMvu9l1pV^-zhw9B
zZ)W1>2~`P!e7ahRN`W5hKUWk&{k`vKT|kGI?i%J>rUJj_$D{j}mdN_VztqfM?|*e$
z?q4pa9gVs1YT!2}(!NubZ$?Kvg+A>%cI^9r-)_DSXKt=7pI@Jro-QMzI9K7IhxccH
zzp3X5C!XF$Pt;ug4LvwR1Azf8pGURB^Gw9IkPR8e+FM_LpfmoFCVJ-6SbcSGA72^=
z{P8-t5gAF$RQ}mt{XU;JHrUH^GlZFE{8u#KI=!sy`P6Q$y?6VX_%9j-KFsUQ3(N51
z(Y9m%#nV|J?#;#Xbq-nk7HAOI-TmkDytlCL{mLgW_UDS5uXN<(NLb3}eil3PvwL?I
zoc13|bKu_J^xbP0*Z1puq#i@Yirn3Fr~b`=_PuW(AD^x*M~N8ij_FZjED0_x>>BC$
z>-n4Vvh76XxeR43?Embx#=wI{<qqg^e<cAU^w+)H0{_+z^Gs`EVr{-n>`dc;e|O)*
zv&V#u9LG<a-{aVYd4eC$PwT_1H-Unvs{clKFQ+elo;LgMwZ+_+XTQvR>DdYym4)8d
zqJ;{Q0OnqOJfH8;YzccmZzC<lr#o7dBdg<uHh#6;)LP0tm}9N7;#1zK8ScAj?i0B*
zCPtCJ6Kqr0StqB)o2xFlT1|l?q}13UOkC#yf)%qp5VLfpxsN^x)u*=X?v<5+IJS2)
zOT~X2a`b*JA-Q7^h%MofawVduU9!Ltnv*lPD2ck};H?<9mHlq_P8Fnat2|L88goay
zv|WN|TXlyKlAQx9^-Ne*r>aZprBR__ny!3S#{nBpaE5Vz+U)h4$!+&wr7%}Pdd_P#
zq?6*a6|oOdLx*@#D4|J(n=b-C(<=2pT9L-aGFZb;Fl_5U#*^r#*}7iGM-9}?Rn?WK
ztF|^pcF+XbQInp?F>0j{fysRlCCGF(gsKDMg~k@aW`%C*u`eo<Lu?>SGS<dd_-pPD
z@E0soML?!?IDuD0GJiQ3*OiWD{77p9->P_iS7-mt>nlUx{{^yz_jHyES3KjN-;1E9
z7^p{vuP&aWI=@WwqTyejv3fPfQByiBFO^Wzfh?Kj;w5AauaP_Y0cckQ)3X-wd(uMt
zY#viOZ7MI8aO6HERhGP5XTg~#I}EpJ*TY(XB%Y3o(zQ;#f<wtE@A?Btjv3lDi`KN;
zQbSEDn;QFdR)>?K%&z6^PS8pnlL2+R<JUC^57A~Fs7|d^waS38c$L3eTGA!M6cQ`O
zoU}G=B^r7hqN$*D`DRr+x?=BrtGty_Em@;VG}~k%lbii}IahT`NY;1juxVA&HCc4H
zR6cTwBqsVh%KWK-ZzI<%h}+!7X&Hes&Ju!c>3I>oS$^Aca~Ehd#ZZ5J^W)H_X5X&2
z=|kEqzp*zXnuaDhEGq6dadD$ji(k4ht5#y7C8eKck}l<kXww<qjkxI=R2?m3r%JpR
zmzA?Nv!JO!|LKl4Nt<yvyiz6^7ZRbI!*L9b65D2yKO3(LzDvW_$EzEZ5=HbE4<RPn
zAuJM0LX(i}rlLeq?_7U9l(8ww5+58k^bhB|Un7q>)99nWz0gbR%!Q*?4`2q6r@n{-
zzh^TjgO$hSU^P%uH%lnLL0l$_smd_4KWk$#LWjQWAswl|vGtgei5OL_P!oH;$jvp?
zB0<C4WU3kCA<oNxbSRM6qEf`#7HwJ;1(@zqHpBQ9nOVW%BhL6J^?K6EvQn?o*k0j+
z<GQWuYpGf-30Ln0l~Teut<po-wwP6F*8q{Mi<Mm+9kC<`mBz}HSt-=gZ3K!9^(esn
z+rkIc?V|+l?HL6+zg~@VCI(_%ZkpwrjjWD+wmH#f^wS0RV7`bq!eAVjh!#fTVh`Vi
zu}|#cc;Cv>czu~*|N34Xr%;I>%utc83k1`&wXbVhBpB#vzt{*g1zjuIJxVY;zdjgb
zsmpD(YqyAbwpXoV%o#0){Cr&;<38Wm+en96lsiUCIaf<O9JOx#EJXC;jy0yy3W4RY
zmui`<rz6ChR?{pp=HoaB#^g_c6q{&;{ms7(oZle(PrtFbG3jDZtsJeac1W^dynb(2
zSd&2>+rX=#GmW<-_)W&GYF}AHo1(9gO{KV?D<1|_Q`NWa41>&Rt#WR^u*KK4{=^_w
zE*jH!q1q|FZ<(*!E!UO}0nd?rS+-E+E{^`2tH)!!1hJ@?qzEQwGg9tb9f}ucbx!2M
zVdEC#O#<P>v?_uE_J&=2)O;8potsq1p*MaJ_L!1Aa*Po{L54E~KkmDVHV$lLr_!&E
z8NvuPLd5z7-Gc;ZGrkep@4jVrWG0N*t7mS=xXg8IaC9^MHUN^eeMN4qTw_<ppQVnb
z+Hs!{N}kHPs~HxfKlco-hnoyWyeu+pT8|fhfdAq<T#E9o!?H?P50k~?Uj}59qzP#?
zt-XI`i0dP<Pii?`JdCqO!?$+OERl4nL|EC4E1)k^Orvq(4k-yDp@g!#<HXBr;6}-5
z?2Vt3LBQq-Lf_zUJ7U!Rk$f?skf4M!o#Jx={L>Zhaa!Ig-xSCZ7y;?zS}D@2xvmuz
zJ$+^x{Q|U~ZlKR|uBUczJe1?96T+v4@Vgr-2GS#E7)}2{rdV1C@6-iGQLiw%n7{AB
zyQ0*_nFp}Ph>RA16|O-K=J4SpVD%l@EACyy?--y5FH%S-oG!ZKqJUv+)~bd#Y@3{D
z?jJ$Otk>es-jwmsrHbGP*W#i&<g++~+F7K|pOK{Zwil~nTBxI2NK7zjjl#HYEyWkx
zf!WL;`w%5Fu?l?NU{dSn$fYHRwNsXRX|{DDK``!EjPT`wMue|I!J00J{4(cmzf*pj
zF?^&&)rBq2&{(CosB{}H-tY^tXZaXpSH*`#P#9q|`Q@DBg=L(}u$E6kBYf0Bfw~I2
zFST-|x*~2PaNe*kY6RIqp2DvsGlI|=q>{8S;lE(TjT#<Ci|&FY(CT!tE|<8!bh0p0
z-TfR+hL|QOama^Bc&d=`Gh?{P06>Zfp;hQ)cLvt_a4oTeak-{GZ3^H~<5UEHqT+!Q
zx0+l$<-!=Z%j&cTKLm+ico3{usxR=o&`Ajnx7Se?Bc(;!7URN~B+NHpNY6hbPvibx
z%wRvE;%Hsy%W-e9`RSU(e>3|0T-5hIi4eyb(L~oSu6k*x-$O?~vB7=nEPh>PZ`IEn
z$8C)!<{B*tWyX5a3$l?v{BSevZddk@qda5R$j0hZbnY@2UVXOiwibTLCYs|^L`)n=
z;WQ4DrRY^=?DqyV^FS1Tbg|<-h5dOc=!o+tu-8!=6*%>1Dp(>?Z2^C@X5ShQCQSU?
zoxS$>$E~5Z>!N8ZNDv@sclc*Swz1qJ#0c|=fIdHQN%WG&Gg-=yAGdQt60fzW-!8q@
zj0!|Ufp~?cgZqUC9NZ+|jXP=B6dtVOwwyog3^kR}w`F@)a51SHwjH$XXe$*ZUtmO~
zmlQ4EDSZf0M>(1-=XLz*@TW)T#VlEgtS#!ChNeg<I=6-@n$R@a6m+P|L>Pd8XOsRr
z<P$C$ok2s0CJ)-B<C(YSBJ4!hlzz_mCDK&YU0=Tu4T(=^;AQ#gS5aF)b7(yee?1te
z3O6eoj}S(t1HzWY51M5q)yTdb5z-}RFpDHS@r`LwXyRz`$fT+Z05cK2&Zhho(jgux
z7_rBwb?@-eX_`uZ>Fl|hVEK2*Tlj`TmOIJ8HU)&{5oc1uIro$btSWnur_YljTd`kx
zPogV|lm`J-OSI)LsDbxc?bv8;c?0<5;Rpa~&#SWq%%3t61%o}RJg9?6!cuE$_!uaS
z=Ys|}E>oF>lVwabdQ1!)M*>NoUm|Ta$SZtwZNmt2wz0f_S!A4&{K<!ALCWGevN8EI
zEa>DKNpk$)0i()#?kAwCS&FzR6ea}-m}<czb_KiN9_{`6IX2j9wes&cj|cMi`Ljsa
z4|aA7Kh9LwIz7V9>FZ0vbkMa_cggn=<bQ})!(;o8mpkXiR>cKqdE6+SmeUYmlUT^<
zd7NQE4V%J>Bw@_X`&72R)so+K!wV9AOmBtAiw$HjDeL@*q`(Z**&yHQ0ab{0!|xGd
zjq)odZmE^F=0}`EYEk=(xdUe`VijhJg{;9ZbQHTPm}OoX&`gSK21&fO>)uK>=Q0-9
zR_8Ae{&ep#N1Y^Ccg_JcRV);u;>ZldobWm17gu8{>}(tA2X;)mWEL#<(POX!w&3_T
z0f8jhz=N|&2z-N1b2M03L>hnZ$IVsiK>2{SH0LcP1(+rj>=s@t>ha5?(nNbkj^;b&
zU)}c+`B*!R(wsOsob}Sve{>|wJYm%8I<?>*-I5hkhRuSbQ+f#m$1}r=!h3VGO@|#P
zA2ipfaB@k)S0*Jl_c1slsxga79;aS)*TtWs&=mGJI99QxQRxRYLI$$(D3w|y$*9Mn
zM~gjWxn@e!6x89OtFkd6ef>$ztCX;kQD!C<Gd3TXRdz%)SJ%PQCuJdIm664BION#n
zMjvd1=g?yH?qFH|xGzWz5^Y9fhpYh{3#bxpDdzHWW5t)#$n<M@<7?%o=Qe|4W$Kb;
zb8AB@;O2Q6C~M4dj*tlICeBUHN*-1YQzEb@EI?%vC{ZG5uwdoYJFMEJDFDi0kpxG6
z1vA=h%8{+vX(Y-Ed~j%UNF0#Xkq^yqY<o=76B?<5lrbj3jib#P$<Zj`e{Q2UJxbaK
zHy0uxW8I5-6G1%|-QJdDLGkrDlkG%2LinyTx8tPl${s-Ept?x60=*f<pAwJmmY%^C
z0gKwD0I#c;5FX+vvk`_Rxnbhby4YuNXxEJ7wlYh<AJsElaz2j+3%jt|hTEO7c&{NL
z^=K%c#HP|AMjOU?{v#5oJWZC(WK~uACkQc;c@aGm#bv9d%Ww~>>ZgcP185j}c-DSR
zzaJ85{+ktSX^&mOngGLPY`!e#PGyikZzfcXx%$RT=4NeQ&g!4#$?}Z^(Fvi34&(IQ
z@I|qJ4#`uQnsE@7ok%f<^h_xC{nb3*i*uYq$xFJAEhLdf(D7wug`*#Jr#QBE1vPqC
zLM)x~aC>q_!RuMJ7Bpg@v62-CSeElGeg6+uYPK+`<$4>JBU@Hgy0!FgYjgyNhlB8N
zeAD(+5`xfaB&@sFVXA9cMejs+=@OM~%TJvgis>3Uq@HYBjB~LbOHxu88ShW&;k$~H
zQFR}1F<2Sc{+f2PD&hHar}f%t#}46d#U{IiooXu50!H^{KvTi=*wMmqJyr0Cma5>Z
zZEM?Oy3_;1A9ISauxx{0A6b;PB3E9Ds|5gn|AHRls+N5{Ru~>E2;Am8#nz#CE(FIm
zV;nj%PnLjg!%1heZA$Uvvc#BfH8~`eH63~`rqq@j>ns#+RH=tu!rUD<YSP^_n}EAK
z(~(AuY_YNXhp+vR?o6fLInNJnAIeaS|IMVK@r+pK?q@4&KX3)OVv4}@m6P)b?fOJ;
z3Vzr-MSx8B8s{VU0XQ#s$IcN}?0{e%G-@+rS098M8O5SZ1`Nz5fd0#l1ozKtm?L)U
zlRd@6N+zK%sW`DPm;wKrj*t~rO9Jbz%hfVW@Y$%8W(Jm<>I$X>Yi*HKmSFSCUa(vk
zRpODO&`TX)W2;Y2cNwrXES+AYbIJd$K2&-c*0V)SFvPtry{;XIzU?LBk`|rCqIb#0
z74?QF9(D~vftd*NXo<EZo$NsOO^vKMa8JmXdPY%fQ_|sIMYHBBn?jU}$f&Z4Dnz31
zd2?%JdB^AFKx#gasSu=_!vCjrTKRL5|JNqvS**6i;op970q-p~Y=0hnSPG#xI98-t
z`bxY{#r}4q$mmRDb__m`(tW0YCZ`6?nqiUHj=LmUu@FG=g@jxk%!0E$zH~sF=!>V3
z%o%&mC*#YX^RL-ZHqk%=NzOj?#|ei1C{W=(SXgQ_(3nGCF&;Zz9H`rmzt#vR;ez6W
z0`rlz=9c9i_)Z%NuCBE3hKhAdpI38IT;SA}w`?$TWtPw5zpVG0lEPTtk)51!tz@_i
zwU$z%F)T?|sKH|vAdEP=yy`7=3*WY<jT1%~45F`?%$1c~YA7gA??9S{=T`#EDfY~+
zr5iddu{5`wDy4q@4lbwAhOZRiC1~E(Pp0}u@x=hob)JELaDpMJPx9G>x^(kHX}h1#
z^dgN2J!>trO3P-e?XTc671V|+k*m39KA4GJV74cPisxU|<IO$$9mIW77e`3Y*}J)w
zb5f}7F(A~RtJFyk4oGi&Y?!MmWP9{VibCD)sd@{>+P^ak+IU1AqH6t*d?Heg?GvbI
zkDX(iD%y;vvYnz+n36{hmOE#057h`OAc^R<CCVoB70483YPonFsZ-8%d^uq=?OS+>
zX^^vidw3yJO<)B?zVa<yj!t~&Ne>oSz)2XdYrz=d$<QT1zk(I1`uZJx4AI2_Z4eV(
zWW?<qv7~LY0Pt$U8xV+AnI@A=ftFc2L?gEWy4Ey*<^hXDU%9B$k+ElFyW5-=(5856
zrF%2#NPDU94KtzS!RnN%Wvo_V<>~7hPl*gz4XYM16WLr>S(2+V#mf_?e1s|b?bV7P
zrhscl%jm)cFOg~{6701Rvu&9KsnwCHQBCq#3N9&E%D82&cPJT9?tLAXs5}Uh?ul|M
z(FrKW;5^K&?5g;$xJazj0Yfd!cvgFS5VWz}dD20PoX%=!&V^{1;cUGfB%bPs^#ZYF
z+q$<(>SPef%p&qRikpva`O+o1`!xZ8-^TOZ{vrNbkHB4~lTHe*AFhx}2qz0He8X=+
zRkkee#%>rA$#H%4-=%lCv?+WG-XvX|p^&Aw4u6rWpN??mS2xyeIB6vY_a$h?7XfFb
zs}P>d0Fp&kbwuzYui-6z3QUopbnl69+o1?b`+dKIiZcv1Zoa6rBCTL@fH=OapbDX;
zfdj|~E0pPx7(_{#NpW7-JR`waoaL{AO4!$K7YU=3#yW}v3U(DZ>yVOYO_UUm6oUL8
zTz>Ful#Gb!c1^(H@sUbg2)f5lbT&?@)q!Q52@gW6TwXE0)l}b@JN4-m++`P~wiqZY
zf(w;A?PxLK3V~Q+dkR}J^r0wmC3IQIzXHtJoB7jKv=|!st2(jv{N1NahY$QkPyxB4
zOR6ap1K!D~n*8>x7vW7$2P77z7jA=sca0*$@oDl7Vb&mQ`}SmUJb%~{fqKkc<oQ|0
z7@)a=l`!%k<|HwA@>pBAzdkrHKZTaX^Eyb*eAbPfU=GfB1Hye4Qcl0WUj0m4_1xxV
zEd+ob;x4^A4PcCxlGaLw;O<w<@8;b3XvTt`Dh0-_Y`DrQU#&LL-_IaCHYbyB+6z)a
zvpcm9JPIE>V+G@+VA3F6b5+4d(tq3N%=2aK44#&oFd$2(7_nVmJBgE&#~0HCe&Laz
zo!t4AGu3q2WJ1eng|KaQGKVX!ZjKsq3S+o>4sW1n;JLquV*BWs%Fy7=hm2|ssndQe
zhLq1d-l3yPdHcNRFu)!cYD9^@nGq&n`U}b+P4;o4S(<Y(ydK*S$4>m1#JdMaunXAD
zstNml{NcfU_x_nn$&L|kBrA3lI95P9DupcM_L|Y7{Iu6AnebW<y|cK0MZG%r{tmrC
zV1&+)PPedW7hqQ*m<yAH-_xa&4SSf|KsL$<qLiMSMHMqk$V_SxV@g<GkWsSR{|JHz
zLi9|p>ovrqN&JYJyh_$(oub3rB!c(*Ju1@(&G6}<2-V%)DCxg*3{~5>XE!n>m63Dd
z#UpJQcAn)VU1`Ah>F9E8iC(2o=VbmJwfVz@Spent>#ug%7r+I-rUfi*+;GL(%$^Mu
zDS$HfY6TN$lE)A?WE7!KJqr#g?}WP|n!F5seSoH^_^&sV!w3{Bi;wV}Jb{h7By}bg
zodV`Sl>4>&-*NwOi16tRGc%@4;`)N2J=uFqD<_kl8D?(zj}Dx_49?6Q3j2`p2q2Ln
zg&*jLI}H=ojN*pE_#l4u2X4wBBDRlT$Lovwz%DR{|0wRKw{+`~M{j>Zii=r4Z+-B#
zNz+LmpEuG_%+!0J3K#*#m)%jhxsa0B|8q3y1d$z}y`0cgVXA5Y{Y(%f!OT?j<OI4+
z<XD4r!v3MrY?nRJ>$K~R2q_HH#wan+PAF7Uc|%~WQI{qb9Hwhd7J+Q<2&CLD^ZHeU
zCL4pbbQbpOD3+@2z8&cYJyDHFo+H&~K>)RGKx7XkE1}ZBKcMuVq&#!xvT*>y@U&$@
zfT~`(YD!8wYr~VHLAWML<4G!3$Fp+zpuezw{J&pL0zJKa(`^reTn+kLP>49$ybpij
zwkKkp9YfN3Qo=5PCUGSwrDn6LzhWTWIs0%!WcIW)r!xZU+s!yV^xNF(RVnLAQvID*
zxuj}k+j?#6-rZF#b-TR<x!E%D3d*UMxcB7gkiDDiz*@gtI`)i#z;D4zu9rPFYoZ*P
z2WSVxuOf`X-;^idI!MAmGR$~wmTp&{Ah!OiU-e=Sd@WW<zhF*T^*@_6+NA##t6W|X
z>2UrM?Qx5g+y5qZ%vdO!xDJBwihnDPf_X<eOKj5qGFo_hI-NvHpD4I?T9nMl{qSFj
zIjoCa+~<Siu>JRVg&=vKFakxE`+MpO53P7%d6TP|6B!I+n8oPjmxPAmOER&|^Ek=!
zdV%R=Pd))VHBK1$%D`FzUK%KvqL8Xt%a6L{S#ECpLl+Wk_k<9suQPD~Zge2)!a_TB
zj)42^<5t=)3{;wA_I?uTqzN7n$9d&Qf$qCF0m6Y=ty|6ySc?P3d0c6H$_4}ssQ`%3
z(ZPvl&SJW!5Q9|NXK7Yf<B>v?^DMa|grKwwK(^<w-3&RF3Y+R@GCl1%Y!dg&aN-!c
z%j~?aRSQG15=+I0U>h075W>V+aEHfX8xG90GJq?TuqKRLWp_M1Ux1>dY{&+`*k}Wn
zL*DS7Nu;Tnh7EnPBzl8x5i}kQKVbb|lF`7GYbSwM@W_TwT_iEU#X(agx5cwE?(N@%
zb1y)YE~O~Cw6-li9K>z1^KHQf9$JT+(^U%l=CmttAN`&br6dfVrMtxrCEK<(H!@um
zO-6>QhuF?(;%azrK|^F8=F(Ym(v`g*KOeuguAklWL@sGr1ScS!_MzBKABh$%Bzh8C
zd{re2KjZKD`M=NO0|c0&B9Ha8x1@3{<BMO&&q@_VL8d}MP^Ia$m`j@I>P^p4AnaW3
zpAVKlfcE!UWeStPkC#;8^5CRY-muRY3Vy;{`fUPd=c^k*yYC3y?-$q^3t%~Q!J?<T
z`~(QG$S&sx`?fSQoaUJyeajMLx4g$dzp##FCZ^s%kahH$gBC?1ibCrc-D^uwliU<u
zO#S9Dn)Kj3RG!T_#)x28yn2i=7U06<RDCnw+`Nb2FTZJnUey5SZOey~!@6I;Mw<s2
z;c;nK^g(ijcprw{XOfb_$n|f`radV^_(|t)xFEspW>)299P}y~o2+lAyaILtz_BBR
zjKt*;|KAuSI}qZhF@>`r>sd(ljQU24{y-`1{qpX@ssJb;1-ZI4Yom@SRlo`(YJO+o
z9YK@M>DS_BU;E@>X0W_!7LzA*Yln5uS5DNUE#J{__m%xdys5z^Nyr*Ogr-s?tV|SX
z!mq6-l<DM<eE0mLmN|fged!b!Kbfd-@A9ZlSi%*FHa{E0`?LtHErj%}Gfz22FNzq_
zx6sV^BwxEBv}=|2@JY(DiI!0vhFfRW7?=t5wtgHI%n8N6{7&~XB(5bM83$GZ*JbAn
zu@Zcx54j&X;adg@)+~tE5ck!C=CA_l_;e1Uf!>mKXpeMTDh;gb=+CLrdE{E(Alw5Z
z0=OI;EdhvG*alc7bO&VcI`eCnzEM-Ev)YAn!Ni!PaYq;dr^|tryDhGXpV}y{6LJ}%
zI|OiNyXU;{9$T&1DUtB^#<Vc$kd`$hy9i`XoXMy9A1E`!oxyfN@-n^W37~7LBN5Ar
zi3v?P`Lsj@Ga9*p^_k%AyJEx45E8;cUsq&i%lS5>A@!e4-;nm9-;_7z!F-T1ohFeX
zbPlM`d>c@*5`#Yybe8x^%rnrceJDTSE<U+QHcYMhjg*A>{v%l1P)1bkhq8_0TYX~Y
zTTiM=)N(~MtIffc*Jo;EO#{4|L~3e590eKa90{l|%`EQC>1R6y6af3HvDi1Xf$-^s
zay0P`TtCJ+S*MU#a{uuu@)q<_Uc-z?U{m%mjJWEcsR7Uto_P~jr+fxD$0#4X20KRD
z-lStn2_uW1me=D|YS<0ZwvD2eG4uW7_c%+;MOQ~*&@g95$hvgOg%XDMH0Kg4vKq4!
zq!zs!m~_CKR!pLkQP(mfu8HWudBfrMI5(?PqBQWk8M;iUz=WXrEL6Y<+rc2|_xHX&
z1njo&*Q)lbW2xIH_3an!QN~xtQty>4Y<7F9{ScH|)q??EvSh-UQD!)U!R+!m{f^M>
zGSbc4le$enkuFsUCQF*Bk-QxG<jM1<Pa!)RJ0g+=FW&jrr~B#VG;bVTzI;-%lWqJa
zSR+Yr*JeZg;ddVfK|P)G=)H?fwY?ZDdn=qw_agbNUB*o2&6%e=ETA*dABn~SPHG>N
zc$!b+4ALk}Gk7D46qPeAbtyg2L5D?EaT{@XDB0A&4-`g6rsR3K*?1LUEvQ(C%9nB0
zzb*$9JZ#N}=`Rea3s*Codk4~Ghw1zpN)1GoFgIxtUiR54iBvwnTh@k2om<v>U$dpv
z*FA5&e=hr^K>v3|8OfX+banR=0GJU(*yRiZfwwEPAK}uDFlR7^&C*!~#l76+Zs^zB
z2JEc5zVUl}9dY^hH0}6LLude1l#x=hsZE9SehGzFSM(_xxMqaZeEAu_ZU1qr&ONoy
zI=k{3QYM@?xe1*g>pU8G{JE>qCiW0XK#c{?h;!38Gt;#*`%Lv}seSr#Zic1!;91-2
zAR5DaI`X+Ye#stY|118NMXZVwsd(P2VPs0*>bunA<|FR_s)t~SYx`+j8mXw=q4T;8
zP9V1qRmxA!kYsp#D;Ot|Pg8{%8#_^7g9D4BE2h^O-D5f*KVi;`#zoZ|^10gF@IYSZ
z?fvPz=hqxr(ee?I>zej?!Jwu160s5Sb6nOIUP5Zm=K^S7qkN7m)*vsm9<@VMeK1-A
z*8wGwy!%rF5?5`SbtWaW5(zQ=>Cp(?_Y)dPW?xK+Xy6XG11^St`3o_bm-`6?tTlXl
zkg}J+A~eewPdVJeUycfQXKUYL22XaAe<FkBT<*L)oGs547V&7@NtV7rJBwZ6u+`4{
zQX^6;j`<x;W_t_vc}PH=s*afYFOf)g{oAQ|eucgVoR6+e(gQn(&A0`v-x?k@4hE8s
zu1<}O5+o&<I?6duZvLQ$DzHm;uvnQ%N;OP#A|jo~*aS8z{!<q?RGoR>TGD7#Y?RXW
zL+6IJo$he9?8DZwNDy~ZhFeV%sJtgyMzVg2Uf^ovG%}HHx9B_zW@1C%Zk``;!-?Gs
z?pZchrQj+QB@4|Xq|SJH_3q(Qg15nJ`Z1c5?&=hF3gHjL8t}4nh^@d|P)COYE4dn#
zXk|<1{c{6b!Y9ZM4w}Y7Pz3HNCfs;#k;2bF(fS|53BgIxw?vbQMVa#uw47Hi`5c=<
zNSYJ>9M;W_m}##zIHe+B{6Z>LWCw377kBf_2(!Blfmb*$2l6s#zr(R6c?@Bra@W&J
zbuS}C#C2x3H{KJ&J{lN0-ALESTq0Hw2Q<z=OGS-HD7f;+RQ5`+mhvG8{x<Z5!v+K<
zHSm<<n*AYt2MgS3I?HmVMqZWTB7sp3QWgAdckt{vyc0ckmR)O4k{c@}MLs-yp-%fJ
zw5!9uD0xB-B2`}Ojx0W=J}PDrQ?4V_<@+vAAee{EB+VMZ2B5c#=OiaIWx(28?Y!JC
zC7<NQf0D{_kKAH5o5{f^{4O3I-?N#Wdb&k!54z`)j?!6O?@qvBv$+hZfOr0|xjBk&
zM9?YVJE$0o7>xp|K;LpU1NqLcb@>hI&ZTiHLXH4!A^hBcz6J~KIJE_;$KKAwG)IEo
zXCM)Y<T*+G=<N+#q0iYO^XA@Jbi3R<Sm?v`Fv)|_K_URLR?KwmHO`&B#w)KNQ-wnT
zmr=@~SjzilB_ey>H^|sHd3bLiVyO_nVtmBBbvSK7*4KDEJ(8$v;R*M$VQ*hkImB>g
z3`KZ4H^<E{=*-vEt?wPnG!uMHYmGruu|m9f7N`z2j9&#nj{G%vG;M2IQy>nh@al~j
zlT*0;Ex{6n_<T`sc9^0WGseL_mo*P7YJ_IyDOML+!b(?M7aE}RxtMD0Lcwc<_t|5B
zJ*!vqe$zQadVvTvJm$=K<=aHK#%;raPfKFO5p{e^oI!?*(xe84IG>W>=%8_O{5=GI
zdx;05fcf5B>yF}XYWAjg<KeCVUrrz*VTp$tmAfcKGapHMC%a;q?@{1REvelBwWtp%
zv24s#H5cr%xdI8BsC=;3G?b?wG3S@jpmI)Sr-15R`fL$D^uE`|&SZg8b|yB8C6NY>
zNuVSGnOfOLV)UkQGo1i4swI(k?X)lAQG=BUdb!4xtLUKjYQ0Ioo_Jh2#16p4Z`Dz^
zV04&2kg}Z;N}XMQXhFH2Wis|Xv#L<3D5rIW-bH^^MgeQZS;#?~ODkZn#;JDBgc5_A
zG+&7jH*YuZc3-mu!oT}cYzN!7Pc`byflf=vC=6VS;CqgpPt~5)oNSwOOya=8&rcJb
zF#RE73RRjYzP0|=Qfa`_$&hgRB=Oh*TkL~&&FRxyAcOohLP4=d&$_j|G&5K_=!8nK
z=l6Q;>8R0nuDr@i6MYa?;?Z7hyZY**WrRFVFGV}(txh7HNn5D#1QLeeENJ?9bFP|g
zxu=c&cv9L;!*5D;ESs>Q+ZEL}c`V+CAZrQ@F|OsztKO6lc5HrmRQ`%ij(I+vxaJp6
z8}PY&S{R6STqgV}&LF!hlYYr^lapp|!zRnkz>(SlA8!c@X3#YuNIp<xNDgBo4maQc
zD68=}7$)&`c0p5ely$0%zhHabz!Q&1)~1gwH>irf^^~)@*`LolV->WJL8H9lXV{E^
zf3f-$siq>|Q+H8NwbY>byBMw(z{kXG+AkA%;kY>_qcD1-AV$zGy-5luRZ<@#)v9Ns
zm_q+IrFx+Nm-O>WjLqq#%rkE=srx<2TM7!Ph*pxM&UJAWg{MMsXZP5GB{P2%NyD){
z^rD;hG)$~Ry>#dxrBK&rrnJ3CTs8yzq;_1}nLw>&rnRHRU6ErvqPye4W?1crE;ow5
zDtBfp>^-$1r((g4>cAKlEb^NDn@(%gjm~e0SDNjZv|v8(u2n78B-iEx6IH${QZv2L
zjC5&sTIgr@ohrtm@14E3J_QM~^t0$A3cjs4@4l30D?kY5WO?YXxIA|nVNanZqe<`N
zP;`u9`ycNYgW!{Tcx&O21el35+bxpGh#cq!LrNuY?O!_(Yorud6b%zDk!l=$#beNn
zBM5`8Ec!ZUPcS%Cppz3n?UZF07o!xIaR^1)$IC}>_}ZXFx58S3OTxG=7soU6532pw
zj0;HH%044a9UZTot@S&H3{2vyi9Os+UoKqw4zkf?G|i9C61J9c(Z_ZUawp*2i$Q-N
zlUu3DQfxqz!uurkLlWZ+YZIf^k8IX>uPjXaD{P53VH~*IPz^BFcdCKK$PknkTp5Xm
z8Vh%mgn*MeL~m(Iq9QzMht=}|!aAJ4o4Fq<it`$(6Kq@s2skiKA-^2_;0ow#4rt5J
zB@d<@Z#{D{i#nkC*ydwm7UI=mKbfPrC9KKhd1%C-&g%*xncW~SDavCBK<zgWY%Jbx
zrW^XAOZJ6-CR^7Znz+=x29;Ua%66!vrBIWs5}v1))QA~ji=nxR*ZCjDsTK7Jp4`H>
za-Ni)L<A}S^~}@h^6smpm_-|G?Tei7K1yJplYbZ?ORn!AUIiY74cm3UySKw&aI&Yw
zVS0UX>5Nee|18qBaUx{xHgPZUOx^2kijJMoA<8YihSueKG~RY=DYhu6q1&F1sqc1T
zU(aR0tM%@zPRp|SDQ-=VcpH^nxV^?>^|UFMD6?{{H~W20>*OGHf4A6+Tw$S5OE7GH
zH|*|AD|BXaC;Ht&8r@gxu0&s~YCJaOdOyj-sVSOT{uU&-tYLw+3+d*<6E~KlZ$FjB
z^$|RA=E65e$`C_tE`0z#tcDC+4+cGGZzV=tgQ@Z%<SxgEv(RxN&f%OsQZkR6DP={h
z=p6mCv{Q-1rt*6|E>zQRvhamAvXab=*_6RsJJ>J8?_c7D%VNNtTMIrxAEfL-AY%Ov
zk?(k=p7Yjs)*HM}hNqW48^1s@TbgQ9(j?L!enG|druyV>KB^+d6%X4cPGfX?ATvc~
zNSi!KBTkR|TUmVWe7#br0q+xg7I@<;AO^qOCfhh5MCg+!f+6IijfyyuYH=|Q*`HSL
ztbbxVom-1F3T>#S8YjnGiO$)#nq?rH9x#be?tAqkWB*Z}iW+#vt<B^V8|j^Tvs%>P
zSgP(5=zq6AnfuD{%Y?|xjle{*a+wlrxTS1<y@%7{BWz%e0*T7ARN1gZz6-{NXA?E4
zr)cDFkK8K<oD%3?XFfC|qMCjTUw!@@QUs4AqGfQLt`!le;PD)!L>Y%F(K7>Q-4??N
z$Loorz(ogs8tfrg4AV74!{XSJ>Mo-j%gVo{qltDwGf7f|gkT4Cgm0G@K0i|PB&)0G
zAE(AjBai(;b1f>egE1!u0kNCuH`((Cx<2C2$^9TjM%jZ$A@?cDOg462Qo6&qh#_cJ
zpD_F_M7*aG8EU;bRqexbQkf3^mRP(Ss1=;O-7?1%B^CqWPX2!i>_PM^Js@*CU%Fbz
zI*j!z3Zqm7{+<e8{|lBDsFgf1nh|p7Hzkh!bzY7-@2)F09HJJbr~AP#Ia0snj3E8U
zi%WO!k0<a^Gd<s;G~1*PRTP^))IA-V6Au^%(FyvnN6-hhWYV$uO?e<cbP1APuY+fz
zEAGH@bS4j2EfB0I0%S(UeMGFN?ms%FiF=wjx>=*xt5+O_ax&@?*Bpi5HkTI={a1u|
ze9Xb0GA_Qt1x5S}P5kUKh}V(}oCD;sd;)98g)u#w3uvBe(M8sVbKx{F2w>OWDR?)Y
z>t(OZuaqqbCpXajGt_$`=t)#{+akR5^d34?m=3|Ni2O9s7oDc}2yXOMlCpuE%ULh|
z$ojg<GQ*2{bAd?y5Cl4u1_`8D%zRAr(Msj-{SZ&r+KcfoZe$gJLxahYokqU<;f}y9
zg-tU;S5?(?l{Iytkc(K1ho;tSyjfUvG9>nA?qH14T|YM~BXIl}onS`ePp{I<@%Ylh
zC4-u`Shh7i6gN6Eely;dL&~QY=6+Z<LR+Ap9&;j^r%c1`2BhVk?<#;9XpTB&AcOWB
z&!04!1F<)+lAuGoH>I-X-9c;(azM6q!}GU@ca18>)fJo(`1SJ~y33y#g;B8kku&~n
zQH#)n)?0RY4z+&4HFzctc=^rU9SHjr6AbU+*7Obyt#C9|X>zRX@DcDTpB-)fdG6eY
z@b+Bgh<JpI;fO$O?;QVpKVwfQtpd6sMP2?dwC(<0wO>&n>3TY;Pz=q8y^BEF{7koA
z5cneP!=MK4Ze6YnQ@|DywucMN2I26h3i`F6=VXi&FZ!&z1{YX7jdt{O2wzLGZ_4H}
zhus5OV-4N7PJgtfLZ`NsKzwyETdat}S<I!9YU^h;E$`t$Rw4xpX*>xzYcB>;p<_;C
zY^bQ#sy2g^aF_wzuVV>~yn!%|s){05h%OmEO}N$9-2S?lvU*XDV=U0JFCLB6n4F+m
zpPqtR{sAWj{Bcy{)Yj6^Jm<13q+M?oT6dz%i&EQHVatsv=!vrRDKPo+TX-_%&CIFd
z@I`=GaVaZ!FbDOZXc(;zh3zhCGiZdE*jvzKvPunJs-k@5;xJ}Iv7mF!6?6__b^*+Q
z5^hc#-|ui~Ms=I)=gSc^ZbNu};O`^~!~X7MRagHo?Pt`O&#5xdNXdwKTAy0YSUYX$
z<5<f;@;9hIpGTBf4?2l+j)EoRvi&zvaf3|GTJF<8rnX!i*m?=Fj4M}?1T5(|FS!Pd
zpAZC?o8tEVzd3xw6g7d7^NIs=0d4463eLvkI0xya&5lTGQDD+_#?<$uOzgAYNV<D}
zxn+qkW);%%r_kpu2S?4nHj93wAe(U_4GHms#nXy{n>`69K5v{Zv$X9VuJ%=;-)$(w
z*<7=lZ71!jh7=oHV<hPv$p!=vc0W;u*K{t47@ZgR4oDQ!U=L-Tk}#6o73PN3T=^Ew
zi=6q5<8bYfN|?elAoFywQ!968*39`}C$AXMpiZ$$LStal-=m0;wkWTZ+LvQ<30!Q-
zVr08Jd5ExH$euZX#=^i~i@`&X{(T!R!B3<3(3H(_3Z%w{+}1F$T<@kG+@%g=no2!N
zZa|d4Y{f_XYQ7)7chH#Xn~k@RWLfHKoiNLkAPpDOTQt8^u*NWUNO#zolkB&kLrw`z
zEK!ozkq}OW2itBI)^SWk%yKgOAx^meoRBnKiUr!PQ2Lm(CR;Jk$?c%u0NtQdulc3L
zu~`?=8ju=uRjx}kb;0ybhmL0KX@@B<I;f!F?@}27A)w#SDslB)X5we{kaC`VUoqf-
z<y+smy~Wt_1st2|rapMl>;#(YRHWrS&Y0R1=V-i(WK-I)?~}<4yzlL(TX-yOekw~Z
zci%&F6vYS{uCp;OXqOIF&0;Uhxg$Qm$Sp!50CvaA!|qng<sVe?)FNz7<bw*8mQ{72
zb}I_tVHJUMzlh=}C2U0O7lQT%KGjbO*517kAL$l9yo8k0xbDr!>MX52Ixd%6ZJIZM
z%$%tQmgnVXIeD@|4(2Ot86!pva`<m%-2^$~@-A9@Jb%eYH}9aC6ZC#p%KK`w$TcdB
zr(}qpC6HWt<pUAivf9SfonL;G^t?pTR869JNWuM({dX9?$7EKKRYQ+y^gvXR(el37
zpv=gqq#hTo{dVy2?ys_P9rF0SlEwp%Q<VejC6wkcYg~%2==yfKB4#=Iv92k*^_jp+
znm*DX*gnOqVhaQcXYgvPLmAsNHaD6y3KOh7TC}Yklr$sBl2jan6;@a#i@$W<M!z9F
z@J7Je@X05;vmAcKqDcoK@a<N4<%?Ko;US6gMw~cxDl%MQ1LrJcQ}SSj8&a52bZjyc
zbc`<+@>ni?Q8_4*SXfq5p#%g!`i*t74LN5)BI4b(!>k$L7@0gX9etF<k8;S5;Bl*?
zx+jKt8r2YGNX521A_)YHWeMw;Qh1C{JSFc*UY4kmcjViVaF#}Lpft7nNdQ|Y%pZ}b
z9RY4LFSwt6;<I5n2$Q7Ngz6ae)AXqHIZ{gEfiTa`MfSm+OnI?-j}H<VrD-td)nRm;
z5wd>Lj8jj)&I^)*DGy{kSi;V^pM?rIwpJE=Nw_98j$HEhI))J)Y)<?XrWI0X`GFgk
zj^1odQI|t43@lJoHr8!unq}ojQjMB4jej%%4Mb*$NoE_J`xwPElJtXA0Or3(k9b<O
zyxC6Q<cm56O)Oh-MdxVQ&0ZHO@Y_X>P?u+B9de6#>8jN}!fkoc{;3jZ`Hy^NB=ScF
zVUWpm*g%aW8#XU6vvJ+kg>WXJ-MfaU>X)yMBnX;-sY93pds2cZ`ipRqF!>cK0NM-~
zE8!f2=+pygenUmkSI^a_BWq>N-%r0i20e7udb{kqV2&rJEpA<jYa*%)o%L!HC25WZ
zrwNjA5ct#Gh`<ptM@2eWn1-tePD!NL3k2BAp_(xaN}-0<Q@$9Y`^ny5^knqvC%;N$
zi8-p~s9N@e>?lY@<Ds6-4JOfxC#Dqn9}~r*W1l2)reUu#G_P_vGKkY!UC{Jf%n*GX
zeJ?_(^gC{f=s_8+hsFbxjJAp*Ojyae-nS6%^L(}8wtAvD70i18n&-eS40I_DH5o_m
zO=@leBAIuPMQrsM;o3W=E0zmPtsNFDzDPl&{Oox!7_YxfH^VZ2S0q^dsLKANe`Psq
zxj4O%X@|w(LHxzSztf=4i0sUX@a9IX2oEhmQU?xGd#n4<ckNBjmNx|v7-<X=_5KIG
zjea6z0_#SV=sG)-QCpci+|NjxYmp>=IZ|9TR2|eR@b<^n*f(lsR@L8C=a3x@c%-{!
zZ|F?brcZL%gh?0`kisgvC<D6c?D1axq{9g<yrPdw$g8LcJugS$ztgD{b*xFLVC~kI
zVWHU=3cK&BLlhXRn{e&HFam$w{fW}QHVHO&w?I%>h5!wk_0}f?%l71uc14oe|MCm?
znZAFwFUj5W0*|Ihpg)zzU+Rr6_WlULyD_5hAW^~{PC4V;PYo$!+q%~sILOb;cbvfA
z#X(TgAFAB$S;13^1nd`2$o%0kH6>Oq4qI0gOXYrHP11%St4|+3cufYeDtcTSbH4;|
z$0+jJ{T8k|Qf?Y;@wrQquZ4TzV&<E!Gbl%U2-*A-9lz$Sr6e5I)H5HVR#P|zu+@^0
zpV~5RZKZoMR}RvOsu{DEznW#_R(PPQ$dhYS4dvK)AK7e9qmMe>;WU7p8WI~htmQrg
zXv-*WMh<6RGv{Qo(;scAoE+DY1xw}E2&{`|1|!zhh0YUl-tHzv%K&h#r=BjF^fOu{
zK*=1oz%jJ{^Xrjx*QW%cficc^dwMUxi^_`g^d~A*J~h_eCrJ<soc9BSMjwLD@lVmv
zn#1y+L+eo@rmXz#;0Y;a54o5*d2${K`8aTLK9pqq=N!#-m8IZt)Ft_y=3p5wWf@d~
zA<X*abXZMqr|+H(;q?jdkDXsSAr5zq=3K3DAADtZqyQ(P!if+~!uy3k9lfx$0(G%H
zk5o|iq(Z8Puv!B~b9KoGEj5cF!r=*?(kW1}N@mg~IjPw#qxkUV+?VtnRD!lL@cvQY
zH5eyEW}pk|*Xt~Y-cd(~txWWiu1G-BN{rdu70**feu4u@PJ+rQbrJ7BIdh+#$N0^+
zrLq;FNXwJlA^~7LO_CP=&HKD@@@!gvjtlq}-gwFMwqV5<i50v@W%1<{vJ8O$CBF+0
zele)tvVX&c{hzbM!o<eF@GPIm3l&VWoWsaA>SjCRYtr<#>%6;y=<DsD!2jHisE&N}
zU)wQ+R{=Zq26@_Fg^U@>|9SNdPADWn#RQtlje~kwG3@t?hJg}EcNP1Ky#U7|Rtu%R
zG1LU-<=O?34Swi1a~ZKVu$2p|Nw<}jS;-jxhE^tlzI$X(C^KfqXhSpbNvilf>zu=z
z%~ga-n-VCMF$Iw(&zi#oMux(WV=Fgw%=Z+;s3eJjTf;dLwK4a<AG|G}GCQ^s4XS3c
zmPou)`ra{{sxyen>e9<eC-eog_8QY&@K55-uh}?1v4^0;Z?`OUcbtxgfRAtoGVteu
z2D+m+Bis+__kN!F&JE!R*H77<c8VD|sY6Ey8eho~KM?eVl&1EsKi0t~-2U9Ht+Mkj
zR9w9~H%K#bmGdZ{*L)Lozxt*r^mzCY2n;uT79<*U-+tg=ENcq1Efu%PlfQU)G53g4
zJ!eGdDAF=S>vhQhCn2KR@{4wHQaX*LPxs(Ah2%%rIWba{p2BR#xy1f7Q(gI{c(53j
zrMEeB4eJh{rCAM5<p!=9HKj?>qN`ikuB2F;Zjr`T(R$7SA1%390eZDECD!y-7y@f+
zSDbwdY*(C3sKP4KU#wz$E5cb?dZY+}$eUZA0Dc&K!jX{TW+aLXQu4%?zG0(93J;Dr
z4>o~o`$tkKh#xKPU0}%|7e2CVp=5E&C3GFRv>a7K^O!oKNG>(I?b?F^a$?BYD!0@%
zYG0BOlp0|(dQBLEuLK~n%%yJn!p?;0BSXOo*k-+V37Kvfuje`rVvj6XfRmgm9agM7
zl}3XU)@r{mG-~HqQ9|^)69sO%z4DM|b@W|c2D6EnY^>X^THj`6tcu0O9Lc|7q*L-u
zN*Pm%Eb<}Y(hcLG5>z*36$gjuJjH+Gyy3uY70Tx`1Ha}}ARPW{u9eH~ks|?d7_6MU
z>^jbO5zWr1CEmdT4K!{hrxST++;wcyTDfA4Kyp(ob=U_PC|Rvwt%?b39MQhzq421Z
zg^~xRiW8P@i0DlXqcY<y?r<Wi1JKgc6!j*?6VT=L+7Yj$1XHa7l`R)D0(%ynsmJ{$
z3d7qDA{U~nG0&%DHY?(AmWP6!gpjA}cN}(fUkOb&$bnmu`w2ba+X6;<jbZD%)$Z&%
zW$<!XAjw)q@+5C)q)PKiDN*jzkr|a!1IwJ(zyW-2Z^`LB5AcZ$I!3XmGaez^>kd>W
zVf;?Ba~x^v4il*r9x$=0Yp&rYgpqwsNBub0cEd};A85}VT?EOBZ2K;0E+Ob0zInAK
z>`#d8lg8(2*{CA8x#;!8Sh`xwT*B?@^5`EYlTolrS#y!dSe|NQLtZob_1j2n;AxjU
zIh{68OPtCq^2sZ`l<Dj(3yquGEeXW9H%)G5r_*~&FeYU8U!PCDJ8EY2@UQce2k|qo
zAz478h~$$!l-u8~_fcP6roD2XcNcG=pH~0(;qG*KfW>L5g~#gLz~ilYj50gssJ(O{
zSv^Bo2Gspw#B=>>9=O;8)WR_V1|P6L=CA6}Zn>2himsSy_@3X-&u3uI-zB7p%ELda
zDJu_<vnfAdpyeXUUCz;>m}l0<wLC68j1ApJ@)2k>XedvRg|bfftT*8}dp-_q>yI?s
zo}%wLr2Z3qB}je0LCoaaM?NY-!+f><LrRER$xrB-)bKU4qOioh&*)lk+q>l~h&oIB
z*U{^bM~k63?(I2gG0wKb!Bi`4f{lI}rrjTx6FG??7iei(E#2*=qLZqeZbJ%duRoRI
zv+r&U3dQ7aYvlen06jp$zoGY$`p>Eg)_wQ;-+%u8-FoIQ%0+zZ>OruE-PN2od!<N%
z**eyewOiDsn-?!W3hC511~2BMIib*fGY4~madzioG7y7IDMqnd79*Vhb?y#)hmPtl
zYyV2_COKVHt%QcN?~tlMOb@~*`s>7HXbN$|8*YZ`ftHCs+on(6^4^=!z@YG1F4YOq
z$gixxa{G6eV^EM?D#aC?f|c^^GFLcO;)^h5F!~{B{HPROf-#-Ew@`qhc|!`iXJDEf
z1o;fENYL+Kjk=Y-@NU->WG`)J8Hy2i&rQD*Iw=)I8I5k%Rql3P^V2bYAb5soU>uOK
zQF9(%fOpr*E6!7=&Lj*J%8yfVlBok{Z1VLmu0*=;8#-S`B@qjTg9On-AQ-`1s*CvB
z3Plhlu=lgoX#wJjd;N}9s23t6iq$lMUXP?UYIa*JTvki%9$vU&0a%w|zjO?4`r&oU
zaDvtRUccu*>uW=P&<`v0ED5(BuIM2L^XX?$L44nR?{__B*};oaeJ$lkV7f)Tyz%gJ
zXL>_zmh<QsIm3bD&F466JYn)h0F>;|YqPdp2bJz}viEw<#&`9klZ~y7j!8uZS#b)*
z!3vDED>_tH?iSjg9W!b6+L>t4H=|P}d&??$_L=XR{A|B@pR|iq{yC$jlgaKdW^eU1
z<B_A}b<icnG`QDs*Qd@RHefy>_{_ne>oj9!C`>vG6B!c27z1jutLoT>z5IRfH9b{}
z2ewceRTy+r*1IN973a&27>jPEL;610*f^YOp*f$KQ(ky#N3!vO{uS!QuGLDgU$M?Z
zY2g3*)2iJzMUrJYZGVSO?HOt)kcdqL+h)HDGN_5Cz=8=~T6_N^t_F{2vP#gxZ?!r&
zI*tZm74<o(QyF+cCBO!?U!*-g*j9!4jSPxf93VrX$qFxgB*xpZ<x6T@+p8Lifv1TX
zMAk<2PD31`0Ft?N=oM%t3RN2q+NRk<`~r&y-fEz%m7IZ)Aacuu;cPDh!64hW0vipH
z&*FEuJ13PngcECBV2xs5@g?-pa866AhK^1EnpL8<pfUFJMwZq9tw2ro+0Z%YJR0j3
z8@SvtW2Fv&JBtpPssHf#%Xi;>IlmQVM?&E>qVPzn)Q>R_XA->-=3g;m>k$6D0mh&n
z(1ncyWQv0#@#;UN^kngqKM2Y)!(~QOyi<lDLBCGXx1yhgerJsF&QY&-;n%Ol5zEuP
zMekUt@ju1@j#TAxXm!fcAxYSB&S@0a<1~cjBW>%<MITs%>Tp`I^IpJhI<j{<B&tD~
zUi%Q*l;Zx_jTz}^;A<JH9KO;;of@rwO(}g0>aD0%OWb9VzGwvyLRcpvGxvJpWTWO@
z1LrifM8LM2@B)mNuOI%ZppP~$tCKGw%QPCj3vSLNB@OXbC0qx4wS{g}+>b|VCr(P8
zlpJOpN5Mc9)=8TH^k#hk8lB76FFrn7A4)MQ&MtiU^8NE)-)(DOZ>XqZ!!Ixj<+vR2
zTGXmKCw$o#eAeo}%kC#X$1^{)yeZ%h&yi8tpqATJp`Saxt@2boWNY5h4NnC0Su`yL
zXI3iW^VU`NwsG6=nOx5GDpuOhz*u?kx2f%_^?t3tY*~(=J}x)ymh23+Kk2RZ{t*Y;
z&WAox){i~Go3ayp^E3CVOnXb3m?WCe<RHpQx*#7HqG0jI+>6AERIXESN{6)bLDFT%
zrtfU*#V`Tem}X898*Uc~tOn1TIM>KFV@J?iST7S>;Rm#tH6egD1ZW(Evv(hMPM>ZV
zVaEoRFUQ+tR0UO15_OcG8mIDpNWe@i06KXaTC)oT8L)8{C4Rqj{G^IwbxS8vg<kYN
z^x|}JeA>y;TVlVqHouY%)UP{=2%$w0f`brjUHtI8DAPU;ghioZ8iXNBf+8s}?y^_e
z*;*$vPsp2KB(BiJEwWsM_6Qft>Q9MLa)XUh{h~G<5jiJ1n6ekNk)`O@-onRZ1#^~f
z<sliX3$6ILDt?DPl@QOX=IZmk9x^$kted!F6@zZ-`&TAv?d7oIRAWg39$|<xLX3<A
z({UJ|t*K~empf6mn@mJEQOQJ`VkPuhq5fru;)NtTK+^c;z_xR^kyXjrd%OKQxkfes
zmQc1X9Mjb(dgq7M&+Dcz#H>w`qa>47Kgp@9$Dp8+)*?8oH{|RLKk=`VdwH8}4kXC!
z70Q-M@vXFd^<)BpfB4<+-YutlYEJLja0Jp4rd`N7z~J=wjE$1RZJ$_Z)kjIOb-i(H
zO8utwq*|_J;rLkRF)A+(B@~Ky4XeS!X1|1lLt$-tri7D^JOB93>oXhA;B3$FUQVCS
zWFZWyCmC|YwB#fXG^>;eS&i!F4S{rWJl@!N<6XJ?b}M&V6%;~tp6e%$Z~CGKoXw)#
zuiiD+#SInrSkEm_x|LPGLH$y=(CvYKzjyna?%<hCkI>SMhy$R)%1;GNl?;PJ?uB?+
zqbbJsW-rHg1&58t4he;lxHgmWO=$Wt${)lFy=VJ;a=bT^a<=>D`mwFi=*3X>^D53L
z`Tcj(Z2kH2`R_CH?3d5)R$9M%)o_N`&mrD4oFPg;+MoKTyq`muw*&D9+r0SrXs8bl
zhx${Gr}*%AieEiGs}aV%9$~zxNZh|&bQtfd@{=#Tugv2M>Xh=(E9FgXQvEj#E$?dc
zlP^#kgwG%TvHfM6+3SB#`u9h7uKsMnscYf(K?EqWi@c0{=+<v=EcMsxcE$&z>--{L
zj2KMF;%WVgG5<PiW3{BBT()&7X|UB?n4~6?ep=h5U0TD_a{g%ftdHb;DA0w-Gnoia
zk(nuvR{3i_*Ig9C$2F_H%l&+&=_5WaByXw{BB53qsW^v79k>hh1-Ih4pX|BMv36-a
z1}Vle%7K`9pb~LZRf8c0(eR{{+odw~cd~4Ra86N4pY-66G<)7KZQ8&%^rNP&$uk;o
z-qw#xth(+uG<)+UI3G`u4XEH}-Qy$%PqHty@lh+|s;=(OO}cUpv>kUN6?&-Q>MI&c
zQrfoQ)o{|#$dZ9d(VH>hIJ4JF6b->Ss+>nu4vvxtjFhNZ&-iIbryTHW5+@!{p<~yz
ze^+kj*97FMh17PeZIKa2W&<1|?Ys{S8|0!y=@Ac~Y<PYnvC=vdca=XX>rtfp&$=+b
z(AVy49paYRzX3a2$RA=Y_>)(K-oU>1#=32lYV!7vm$@h1^KW0??Mdg|ASE^x1@T$A
zLLy>Pj(=RYeqNugKV$Os&i|K9nraN1?J1No>%>i#1oJ|@gs@VJR@(vvot3r?I&nPz
z<@vWWAJ6vZXJ!4oe187j+t8lY3-WWv>>~ka<%KGQM@21@^8+|>z)ELa?6>UwldU+l
zX4{Gorzu8sPj~1AH4EF|agHm?sNO-NjC$1NE1e{HYhKUnu2)u`s6d>FDnY_geZsV%
z>e8-5<i|v``T)LwJ61+!K~l1~5`4Srgn!zHI1(wh)B+Ms?zi(Sq^(<yWN(8=dZ+K;
z*eFRY<umAV?$ECTeyQ?n03waLJDsY~$&}$<(I2he)apC*>*4Ln+G!M&Ht}U6Q!3r4
zo{<GRw1)d658i+mS5f*MI#1(sXt3u+MrNZL5;@Sgq!*GcO4~Gy5M&Z#7h`g}(S`2N
zVq=HZspQ+cLof2$XS^sS5ifN}`>Jvsab5tZ#jj(wvS^*pY4*Ns{i;nfBwa0fKWha0
z(*7P{rz}@ipLqahAyk4iSjEU=BvAc5eU9z<&(Ht-?l0uaeZy#TgnWdU=|GvmRTxQw
zoeYd})0N}FhVHXoZ1j$@oGF77m-9>D(+(@4-BL>FG3!>HG%u~BwRvq31>n8!PIO?i
zN)~M>wjE!=B(c1AQxRnQj$SGDi7jZH*0q6w!-fMZ$5DBfmCw2!&dAcy#KvX(Qb+sw
zcyf`q98zu$%4sXxIme|?cMdR)tM{_53kXpM>B#ej6$A}F6~sanK_q~o%T?KYFsfiO
z9QKH&S0_*fq?Ig4O}pDhcIO|&a>RAkEH-(py<H+c-v3`Fko*2ECLoEUFizg0oV=ev
zb>%hE!vsfRNF|#)76YeYcQ(kA+YM)+n>xL~IFcYx{UpqZZZ#doL^6i*tdsC`N@Flx
zRM>oX!@im}MyGENuVkl;CzMzxQ7CUSiSrw6sU8@J$3#zX%B>78rU^)pU`=<mi{WcF
z8mTQR*z^S(9`ubAZ;%|Cv$L-zwzPSb=V?#ajEu87Ov|j+B&?v`!b*>NUN8GQZqNKE
zAaX`IZ<`tgQZJ*qye*vYx#M#jvDpQ85Y`V<x+(-`hJfu%J{!`U77+tR5d<IXW2N+B
zK9g;`I2$FyG0ZS@e-nmNLmJ`n@z!YAqM{l@Gb+fD>`H)t)m{&JUk9^ukmVGyLD1`%
z{ycuTz%!`&@atxE&Z=#bTv06quXIk~WCP$zLgnonBEmq$z6kz+7g<GPbB8>Vg^*sx
zFxHvG<ndDfch7D$P~^9hXN^G>@i4-M-ESGFbc%6j5X!VH;mL+rFBLH4Vb7^5V(^(D
z@7m-3QRo`M;7BgjII=cdz41lN=eB*8lec8V%Zp1+`(M5>ZFs#yoyyv|6PvQhn!Oij
ziv1Ko#KADxLW^;km;HccFOzWZXR5xAIErN_O7(^W!<kv3_};z%q?+Y2c5%aFUN_V$
zP;e*$Q`K`SR=hX@_-f-UCQ;M2$XIwdA!N95WH8U~vG*-F))tG?W_J>f9hQF$4OV-i
zdb4WuAq-#Txx4&F4-BkiCjHGQWm>$gXZ6uLMl~?1TsOA&z#)X(QnY`VW?6C~A<RlW
zXMVn%7hLVW_!o;nXO%3r2v(XHX)8W`Y>Y<+rw#WHdQhF-mj4T#=zWVQEtws{42%6?
z5Gx3ZI&>zJTSiI%bAsE!I*ocHESng~xj{{xhSMxtN9ety;&jqn1nKO)P)*FzqD62P
zPpY#l2?tZj&z*d%8p=EpP9WoO6B^THxdLJ9v2fQhYm!ddHfOpI{~$Wlb4M>U5KAOW
zg$b64Z(!MVI449uk#U<xHppxvrFo+hoCuK4#V`#rX75ojY(Nf9BWQfD_V~eqO(u75
zN(zGDo)2%fCsC@#l?JZB4iuX&e1VS>M{t{mi0G%_I8pBg$9y5?4N93#q6cgeGN-3d
zS|jLsD0Za@ah-<_Vyx>rVTTrKnzMAL<e$G8e-#ejQQ>y1va77q_m_r|oFv+>iz@Rl
z(I|}Z&{(*n8e?xG6)k{$F^Yc1CfuNZ(PU4E7$AlQmbe&|S7?44h6fU+c?VWzw=6Wv
z@Y@7cOeTFEa#2zE_{3YVwNWc*F#ZtyH3m(Pi7<(xd6f)+u-R~6hR1`Qfp<24=%-47
zyxe`oC|n&0Y!8iY8cQRiD;iy3F+s;W1{sK;Li<DY#Z4Pnzq~8x-6Er(@l3FX+8e}W
zgpg#4e7gCMIgNEN)U4(S%%p1Gkv)SFl)lm;I3WD0;Xwu3=f|bf=fA&QG=<+Kv<=ZB
zY=bkKjIj*rMuH4<+0p<#uhKw0#a6C3Nu5K-+1+|`GYb2!a93nkDfS2{TSMYxr@>!v
z)^jMou+Soo?%<qh?}PO{T;0ww91aZh(>^sSP*<M!26E~|P5>o?6s;@H6VIBs+t*9b
zS^IGmvJk3i=UQ;f#r1sc5Sh*?l7$efnA(dcj9p(U0C!lnB9`j{^r|r-XbqY?qTtRr
znXS}=GHOpSOL|$blJJSKTr61c%CTF$eN?<GSGA5qh*q4_at;EffZ{G*nUJ%iyjvw*
z1=UFg`s%C<`yS@?MSvWEn6lztsuSH-CYz;afZ%}aOf*&l^zmB*fN6kNXt59|O3^`K
z<e2^6;u-y9h$ztfIvOAl9bZf`t2gd5hWVsQ@B&$V*9%k)H+uZN-r^kA+*hpYf(G}%
zI!!&8w5A()SN}cU4c0<d8R(?ewnz-bb)y{w313!x^x|W=J@up+RX|J$HUgj0uB6)}
zB`#-jF{-n`epy`g>l9Er?z8xkwZCpY>3r6Z%^zI6mQ3U@lthB}MU7g~%8<rJZuHhD
zj{(IOmmaaqZ80O13X5Du_UMT))-P5+h*MFgfhfAR9b+6VIco$NUA+6n0|RYRVMfAJ
zWkQ0QDLZwp$GUA6I4LJ#(I+=&fEh)GlhT$Xkd}atF3SG1(8)&T^>`((%DE?bV<Xb*
zIWVH2@8k8j$UTycyS!oVIG275i?tnTGZM3|89fh2aV&d9s1ddmZvvsa;jEbRD?8V+
zTs3DQKcL<i0<PuoCfBII*Ugf3<y$+Ms!R3<g~x+#;~IA9LkICEd=3`EPQkccpV^T=
zLmprz6^Tefk1DOB!n<FWhIoAElZEEp(sHum#&}_MM%rb&IQHAjw83Qg|1`CTRUjct
z`Gj&#IGt*`j!9%CQ!r-UTGwGw0?x4!SpqZF4Pt+va;b+^E1fm#3a^3A>Uho~-BM8C
zf9g5!jS#NPe09UPj!0hcdazm_r~noQMEdWl1I(l!$k9a8z#1K|1DXfL@;ZZbbSh3X
z6WnC!b=Vtnx6kW}OV<>ff96PsN(6W9oZfHe`{sFMc^&8xu41=Oq1+OkXG!hgHcQO{
zW-$<JOJjK`^rfv^0Rp^t)#0gl$04Srl@l5qx0g{$-)!I0{wb$#Y|xt(8}g%D^j>9?
z%k)ZPrY8Z_rivn9a=FPJ3D9{ett|FLfGV$9)eHHk2I7v;EvK$qQf))gbh}tB2EFN)
z{#2fMNfu{|hpsyi9GpR&4y7c=`pU}e;1}ze7GRxo(HB8v_^Zxxb8AwBb?W}`HT^o^
zX!IT1OB#r%hR{bu3*HOz?q58ZJ&t@v4UwnA>LXr#?4v>-0le>{a_=J)9u9$UC#iSg
zky_-ixUf8clo0P+n_ogGmbU2BlBI>GoXdM*!CUbqoUTcgB*a5{_SpgV^`u1@A~w>U
z7?I$$PAC^|8wx&nvoGsD5-0T%&T(sh%ZX5u?ij-JCj457<VBocjRuPK)lqhXm9o`R
zl&+<DJZq)#6@yL}g6#N}BtH~w1p*ruM3Qnz1&;Z@D)7*X$xYxHQRj*jYVlFvnVEla
zwMtfv8`EV;oz;8#1CVcbO$IZqr~&p3i!<_Qp!4PdsQ_8v4Ese=g*iuyebjOjcw0@d
zZ{d&HVM1j|v8$UTzc`BmWCVc&X3v=xC5tbzU+3F0B6e>l55S|dve1AC-6u@RE3<}w
z)Pl0#E|A0kV1m6h#4E493Vr6}_g3`)@VZ6THvR{rLL2|3QQ=oX4rVy`LuAwf^hvge
z1(xKmbhX1+kXvH{f3s2D^WJ<N)j5(IB#I_s%kijI*(X|tu|)kx?trijf>^nR{*DDk
zqe?iKZcdG3vnj<gk_cwVN3XkrIrKIIV4U?skehsCAgBSYg+*1i-xTlOvm4<-jjx!r
z8Vhqcdsss)i1DPlW2yVoX1n`V>5JQnv|2oK_zNw^USlMQHpfLOOqUO1M258~FgTSJ
z#^VvLxObAhTZaL3-e9~TiSkB)EYi=4U?w*wffIf=8_JXDjorHv>`UQ|!q28@pJOx?
z8cS~}h^U|<vJ(z1);g8GrCZ#6CciX@T{$rcuZ{i6s%<)l^|{0~HRDe;6vs_|Z|?9o
zZ0X5Bx<>H@&ej~$fNcGX{3(T9brXe~SYFupf0s-X17G*fpCUF8IQ5`@KH)mAK^kM}
z$?Jg}&!92Q?;HC7Vg1qjOp+)T6DoTi#-+6{()T<tx!n_j%&2HqKfc!QM%sS+hrfLO
z{$)EZKm6t`af_Ki%g7kCAvQCral93K2Gs@nxSzP+n2cO`JPx8U{bS=9gX`T*_qThQ
zk4LT32gGq8riGieq=mKn6Oc6yFBUD;?sYLwwjK8-O`lvP*i}aep>nXh@*qj44e`p0
zcVJXO+x_Ys;@Fi)C-)B#PE4vFxTo#2-xdXbR1o~u3TG~4`F_@7XYBSisg8ypvzd-b
zH%QVv1#Xe26JDWXl`3ZtM|Y-#uotGu?g5Ppq!3p6qFtkKNm$5j!*_gnIljAo{{Fpk
z&D%_xlqhKIz_7ki%jnf=1v(3fuWY%B8`o~yRjk?uKz952x_ZiY8Dgttc8m@NwtY7M
zoZ>B`93;Sc$>rCOq>d=WKeI!W<9);>656&2T@3|dJ}~`|7w8)DQ_lHHI-V%JjG=KQ
zMqL@YQqm+9cxJIn`vu-tv_j?^g3bX#mmmNVFSJ*%esB7<zPY6%S}C6~Yx(TMZtskB
zZPUS!-`EVVv)}Nob?yF|x{?eCGChm~Cl?>GxqSmTt(4NFOFI#a$z{oweh&i|95kUB
zXa<t=K_FZvFX&Icp)P{NRQA9OjF%aB(S1x?`~oG#Bv}6$ijjs!6e;X(sRA-wN)qno
z;K;QE%F7nuHAn=o`3|kR%0kg$6{HSkxhNqjiw;AvxcApqgE%lk(9F^=s6|A1lV&V7
z=s`7>A!cWmNEatONl|$R&uoMn9dvKJZa(M0HHW3DrG$(6)-LME(sLK0Qc$R~aI(iH
zXW7^oBk9NH@hL>9!bw|E$den<-VYTV>Lv%{Up2lztYEP72YqJ=2`?G(!hS_8o`0|8
zKn6fRfLz#63iTBm3!pjpB9`emX<xdV0RDLV2uCAZMNTluoSAX)$XHfD!wL9w-{LAE
ze;aT*EVl9UHrl>e9JOhilChL{e}|p!tgkSZfQF(x`bj3TBMs|_NZ+-tV;Tua`f8X@
zK?vG45!~K&@#pjm`V}sNBeDQ)^J@fxTS2@J`*(GNHly!gwT+w2CYpYY{YYNc)c$xH
z4KqV`IIPZLZ8+UTAduv%lt3UCrs*NzR0b&1T$!%HW19I^{1kipkT8QMI~5mc*M`od
zwJ-SVcxxl|d_tg&-Pj*{#hT-3Q+0o5x^9|plOos@XF1g|`#^fk+*;R~7943F9o?eE
zKZcVX;7XL|IS@-8v%M{D;opW*x-;QFKfiqW{QdF#{cqp1;Q)qr-g9!r6O`8^#ajj#
zLQLm3QxhOq%B*&L@z48>3aU~<p%e}ds1_~aDe|6Cupcwvf=@0u_~-qGk!|fqHvlLL
zGrc3g{hK@fWWY_;TaaZ>4Rqkby9s;2u-O$*1u%C+t+2Ieq`O|G7bus?0{mEI?>BgZ
z%2U~getT0_-|*LPsYEI|iA1o)n#nN;pq6k!@a=-gihnZSCECCK#-J*YWYuLkzT7VW
z_66|D`cIkn2V4-Z=+Ga2^MF5muOnqH=w4-pk8a^%y{n@5RbD1##JK>SllRrj2d}sw
zxALKBD(P)Q?!WxW^E}sUnzLr+6V0)n#V+kza3(AsgL_)!G5jy&G5ojWQ37||(b}|X
z4UVPC@_1Z%X$UFbpjK2WIa$)!M9u_d(#c1}5*u&PiXdS5@rM_emz_UQ;{tSy%I1<G
zjQwaTsCbX7E!61ZnMu0DCI^BPziBy`n<Pt&VuTW|%!Z0(qpU;o!II&y+24$s8lqBV
zChHFs3INLv9BjN$vsdh=G!S9qRc6`q1fafl=P^|sJ_Q|+OaK9N<2*Tu-%0=eo%<Ud
zk}sYOS7Fn?CT%5_1#@odT-NjkKv>~JeB3~Q9hth#BK-S)r|^Am!FVfZex|C@YC56t
z1<_D#VBEnI1A+I|`!?cY5nj{uvMPCCl&rUuaFr8n-JNeb;<kGOLNP}|q`0XFNjjz9
zh|_M1ceFeCw1F2SU>>COw0w9lsu6vvy-WbMjP6`YB5A!m#)7ckc)YnNbhx%TzvuZ=
z4t1ra)gf8wxqRuJ7}>SXXYo&)+1Vs+O_m!3ZZS|EldlFU(%sS0x#PIdxLk0ms^Vvu
z0a)6(d+2yPhwvdp&B_|d!tFhY`Hx}qr@Z%L=Ske1ZH0_Zjdamu!A?z;g~EO|qp-rR
z&+3zhsh~d2J=G=Qdb<Ed*1M`YZK0aBZn$*|St9dP#gYTW<*O34vd)#gaqpfCun26}
zARhq6QGY7>Q!Ec(ZwbF?I{2M%p*^4r=8;(C9(#<*=N_BDYmc3Vr`-GA%JVW3q2JWd
zs;Xw_)Der{o63Srg+%&qDyu>^CyQB`po6Z9*`z(5(X*2tcw*~3<3`4^O?`ZP&5|`X
zcP`xZ-*@gzn&17$-@5bVOc9TKx!-<MEZq1(nBW8z2hkTx&isZ$^9FD+gI2+Q*N^Is
zxjM&s<J7LJYwZigl~}?8)C7?2tXZT*Jb?mXT-e+TZJcMWUJIQ2D(t<i2hIUF>!GV`
zXjtfribSGw>h4yZ^~dZlaV!fquf^^Ug@!MSWjgm%LF1lK7~5tKuU#~T#D%xV>jSj3
zMb0`t7N}!hBD#!4e|^5Z7tiy`HIF|Xtj!)5&U6Ep_j!2nfHQ<nn#v}r<MpYg^Wrwu
zNkk2VB8Q|-OZI^SmIQNJh`+a5jC&Z|fP6k^l$W;=WC_7XK;~f+T05Ao>`Dbl`JN|E
zJ*B#n2kZSO;`#(1uvu|SIs}aTH~<cu0PPhOfPUVUZG;_$V!KB$Cy9MaXvQ?tMX~tS
zEOj%jY9AGnJhE2!jz-eulbS9=>48>>b%prs^7FkAR$1lRW&cME-5B>c-Lej0+H5{&
zwBUU?$J^h+(o?2b--vjvf{S)#z<S0xyO$Ugx`aAf7O}^>lXtIZ3PS_#=yi_!ACW^(
z3qB$E*=xz}cDJ@a#eKgu{;Q@tkCe7Yw$TInFF82*yo8^D6PW5gWCUg9!WVT=u{t_M
z9e;6Ak)eU$0bN*e4a68T>g=sZ^dyeH=xDdR(Sc{wx%aopYsmRV0;4;sR40*(i1%Lj
zFaJu0&QLPl#qY+k6}P`LwX_?riQqhg5^#N_e>}dwfrkknb~;yB2rd%7bh+*7E@X@#
zV|qnKRq8;?wWc;sV@AdCZA8o%@|f*D|1=^d5K*uZ@&AB^uVUI;L`*-4h`Hzg6%kPd
zC2vph4%biz-6^Wxrcn>WkYS6*BND7XyKNR?ZtoR~s@TVpWj{d!<<08n0|CABZLx+4
zxEYA7B_@EZrw?<cAM7O^4MY<2;XG9>YZdAVbYogG8P*^E`uRQ6@&=3}A}^r?@3sSW
z)FBOkh|zO0;)d$zgvd?K)1cMFSQA2|xf`K%#;$gmm+&%k7qt^B+2tnyfVrH84Ycxx
zu+vhPy74P+>-x`Xty`HXdqBq%3xq%ua3#APg3@gixsSrwQ61r``i>(=5_iT3EC85p
z4K)j`i5G)`Zd%y3;^ni>e2XtYu%eTD=kBwkT<uLD5I>(PRW##*7LO%PMh5Zb2msB(
zsk7)t0}fnLdOXkjY@qCtn=7i{il0sU6k9o%#KSVTmvY`>`5N(W&0c<h7EEdEDgf3=
zr5ox3=}<1Jid{3a9YwBb*N!?POv#;m04f-o2bvNLM*r&BE}I>evrj>6TyA9TvYejE
zfi$TeQcV~;B2Vl?C3P0Y6J=whkhTgDNUk9{tznoWicvb{`CC7|Xt8x97br;tjU%C*
z&c`}%Fw?Nvw%6{p#5jZ<q|3(>KDYAbIx4#ZQEzZ~Ep-glbo0;%HhI+oE^BRH;6l}D
zensf&P%u0CbRAgT-@K`T9KQ$7OROVLJi3e!59C@J6qm1F8aKe&qSC#fZa}y@dZZ&1
zUl#^gWr(#SB#}HW%}_1Wz$+iCkJ)SG?&om*!^`t~!nQ-$8bL$q(-(9cZSkC3o^q}S
zn~dR_EOu2m^Ci*)dUmLd2*a1<ft`O|>9r8}mxA)W2M6BIX_paw(x6Wqb+#n>tu2>X
zhn(S0V_I$B-|&=RWe7Ln2sn0ni97@{Lz*;Bh4z+n#;tK;XI33pT)7UrV>tAi;D~tv
zHzSthVkT>6Cljy)Cndjaq)VYZ0S*Gw2SU<Y8A;n(nXouB6a=B&f}(U+ylCzTg+WPp
zJIbAb!=#Z-HK;xfYxEbEM?qcKmR+(AJ4A=9vvdjTu7`N#_zH;`LR9EzyGuG5jiIni
z>ec$nhW;g8ObZZMDiiC_?D3k7*{}SH0Er6NAGK|Kv}xH32Lv<n$A6J`F3XYZL>PXR
z4%Tj>bXP42Z@d^51cVptOk?PQhJoXQ19*D!|9*Ab<KfPdm~oZ5N>b^PN~Q8zanr%9
z#P6iV2~!Loq^v@gOnepTyJqyE=KccK6(xa%6w2qbV^wI%)6V-z@U~?<z?`0cFDccR
zUp{{f8ZcRR1;Z1Jl}tmHW=w}OrcSg!sO_U)M1toisPUW}dd>{+yz7yklS9vva!?~V
zsF55vky4wL>3+xLWABhArNa-ghnBh+pvT!kkTCZ;$Nn89Qz_Ufl%PIUQCP#rdSgEW
zYZ}iBfI-APV;5>RZ^gaEz-@{axUIRS<md3@unHGWiffH)!%+yT;i$>YsWD;vDyoC9
zby$`i?xYEdXsBr3>%@Hd=#gm5-M+had--jb0uu&%-)`1_d)zGy!1+G!E?>Wk^^X7e
z3gVJKApJ(XxnEFRxLu$%9_Ltj<nZVkJ_<6nqbGdJ`Cw}-f%_-B!Woyi5T3sK`8j1N
zzTAqS?p5Gso|E*yob6(xuVTsED6C{1<##JYCCB8;9mNmY`}O4^a*~GzAUO`%51t>y
zin<imFm$>oz#a8P3_f(dpv|R=Pl@DwP;ugRXt*cRhxyeU+^Txa#noNDu7_-L{8zLn
zQ_&8*HFbAQ(ffQ1`D!%vZS$JbQYH0)oHPpgCy4y(2E|2lPUmRSt(9*X&tnQ^ywgAA
zA<p{OEm~8dwTp9~uUhhoj{IsbDgvbmN!>CqbWDfBW+X4}{UMhaDMe0t2Saa@X@~?`
z-+>X3-52D(4ezqVd^daU;%%N^nX$1vT%XS2)A0FYWc@zj{Gob+Ozl%+PZYqN9G%{F
zc>8gA_r~Yd(gP56ZIq--#(J9ru3ZrzM2wUJObm3D%BS4pZo0nVA|25cC15fz$FpK;
zl2H@oxLR?kF>F%Z-!3n@9C<<N_LJ0yiz+Cj$Sf#A^>q*Gpp>0`sGf>V%sJ=KyIUxq
zHbh1g6!11})D?P2ydl)Q1(CJ_%>WH?Tr(cic2Ke(l_)C@u8@uT(LdD<(r^o$pDNNX
ztN(&&b$7J6Tw{_EoOBf3cB>3s`BKcm$q`x&TDF)XSt2umZ{EP+^z`yE#NRA{M6G!3
z>-C}6r<!pu&D9PE-#vNl@*W-8UXP^CI8H0Lcy9ecw_YEsNXt6Et;%Uvh)3s<fAn`U
zRavOX{~mFer=lYJ!)IO76W4>UZX#(nN$WfSRW2iIdcyB>Irv8A<R8_y5S^5I=Ic*M
z0b%xoZ>!??p+C6=lnd}{<>QqiC(*R1mt`%E(NIm=ChU{ZUIQ~ZUz`Q-zs7ANTs2$i
z;5NB-FWt+RKmGFM^mO^g5$Uw;c$!dbHPC>~bWZ53I|M_6Nwii#A$6Y`;=~xry|Y)7
z$o;CB;}{95REZs5Q>`DW_=7BDF+iPSe_YEGtzO7W7=K`Zyj{g}w*PeC8blUmsp~7g
zV{2lqGe7nd-Ro67sSC|<rcrU~xhUqfecF%%eps<8wm^P2QALjvLeXZ|PO8R<jQCy8
zZ-2boc=Mt(g`Dr8WI_p*CjpkZ;#+jvuG}2ZnAh!#A1lwhzvJyGzC=qME=pB`*nn~k
z+*}eDV!ci!^cQ|g8<R%<y}!gW0*@V(xaKCY9=rk4?>;NcK`CF+z7;^C(N&g9#<&D*
z>|o>LtlVEB!BIeWJvb<f-}-u>3`vc<JpG7?r0U>rQK#;+z5tHYv~isj)?MX<kQL^e
z>m+O(cd}7OWb>7ZbdO)IlTXdJe!qrA!RKE^sIZ>;`<^?_GHiyj)f2cLCf{(-1&5#q
zbc#+|+2M8VW~D;W&gdHO(b+5kU7M%Cn?P{3LYGVec3w}kO72!eZ;qrgSro;ZCyAWI
z>1%jpw=cU{9h5Aq*0MAkhl7>)gg)Vk<4EtSHkOvADhasSuPjZQ(!;Yuz@`hSGq5k_
z8%IuFcHcyLJ?6SS1a6=AyFRpOQczwc(UK(AuHUM%_AWtdNS*6MNSE2U*JmmcNM#vW
zrBrP8_(q{CwSZh2rx`ID1phM%m&Lm8N?|UM?Lc5RAJ=TMx&ow;8gUtzTw%pwriP8g
z9c|}6?;4Uslt85LxK*l~^wQPfimjmQ9Cn+Sl!Oc-<c+#S$U;XiNBo5c9%3FcceH$>
zljPV<V31}vSrv^Ye0`w{)j6&(Ke%9k5MV+b0t)P(VXqg$Cw9(V>gPCI3FrhKosQ>~
zAnPFV#4IKV-GgwBndvvxl|q8c>+&8zhU=Td?KKM6l;xRnI6+w#1wOAYuH|U~N+*5Z
zS2$XeN|vOnaa787kkVER9SZ0|>WsIXMt<H<%{9xb%VLdveeqVogD%m6KH)J8Ozx{b
zMLinTqAAn;%qw&E^cahGzkYQoTQ&PJB~{8b9x11X%D{a`Be3htqh;AxG=+=~zZK<3
zJtReqv4P&m3MAZPb#UiIprUM%wj*D`*h!tUqS_k=^9D5FEG7xX6ZymQ$B4)2gm!w9
zG3jj3rGwbXMOF)DRm~w0Sh6B=O8U{^)sN^YS)*LPSM1fwgpSSH^g)-_K}xmkuR??S
zuFXfzsmsA7v~H%Ldq|2j_2aVYRBYfAEjZAEgIk~<{cvl6+v?1LBJ>Gr)5!82|8Uih
zt1&0S7#!7*d@N*eLypSbox91m%@p04<S2h+T1u=8LTAKnz@E$dCuK~%sq>F6fQe5;
zyO7`3Hgb?}O*s$UpL6l!Dy|;8n0zl2Whj+=Y0V==-cNe5%YS$<9|ohRxJ*)Qpo^b+
zVnj<R>f+_wFBB1Sqpc>Pr5WAcBAbrCgLbui_?SAhe7vS8bXbKRSA`dM?br*Mz8#rb
zr+|Uxda|})w77T2Yw!BJ_WRYnTX6gN`468(9FKQ^n@!VH>r!o5_9|C1dx5{XvE0ub
z!F5`<Ux@w+ZF?>QN7o~By6^YVR!)W$9F1u(0ahmWl#=fHz`o-C{Z!8;Ip#@K0_(!|
z4U0}I{FRCJ(d<@-{j@#^+3FK09P@7VedO!|9;>xt>#``!`I?;2o*Yv05oI}&aRo8^
z{oC^c*Oji*WSVkX9tS73%W-GJBB)~RD59ZTiLt^am&8xikjhI%7;0h{_3tFtpQa4$
zG#aPZl{$@S<%9~a16IAb3vdY6MF0L*5o7B2r;n`LG3~cps5r@g1NePdCTXK2J|#yF
zR(kI(a*Y+gGAV%=IW8++g}oeRE{BetHG;OeiDW}>ej?Br@Vkq>8Nx@kFG3Y@B_h-`
zc(%~0frX(@c`w?;Y5Tg$)(xzhwQR8i4TgfaPuY&J1%t5O)z(|D<uMNKLXrnI?T+yL
z{SoZTs6RN0n2q5&g%@r_L7u_BT9G0}qvJ7t2JK}JJHweITSQPyV9A}<7sxF8KQ#S@
znS{rnsJiMv{HZ4CKo*C-WOkg?xFNw<{)Kxd%oRV0>h6V>@S=eC%SP~P*hk3J3?aXN
zK7Ieo=hx@Ump^>8v)Z27$=U|k3A-rX$Sw~0Ky<K;B#5bK*^DMAYQ<^7)n^PkHp^mm
z&WNKF-_TjO;;dS+Se<(bEuqq-QMiqRKM>%M>PlAy)uGZhaQfIQ3a5R3xV>eZ3Yrg6
zOi9fqqI-MDI$)$3L~AEYn#!ZifRYJ9Ic_f>s!*X-MG`Ja=|1V?)9b22`?dO`DpH%u
z8A(p`+Qe4_4<3;9W8Jm`{niM`HOS2LIv?l^<FwC$1$Mz+rZj<TO%h#h0-@#<S_M5}
znNg_P!$*ow5UrsE?%nCvY0Z{mI@s;|PHm*De(VfQ^N$VPj{5G_L{+e-4kFx_7K?-q
z@SV`l+NyLzYA5Ng{PXGnj!TR3yW$h-*H=~26_3wK>$CVThkOAl){uU<UBAwh9y8PB
zDP=SzU+4nfdzq-G7{R(1_T4-^r_~22-CzDmC4)iDgyEv|o^F31!S-CUy4t+078<0l
zKYSC+cr0@t$J<y!4bSF*5+7fAPhJwt;~G$*tZUL^`@X{I<;CP24QEY+VLCFI-&9y~
zc7;wRVpnB@Pjr9V^U>4k)i&2BCEG3n#zSoz^Q&`Rmqxa_a^}Y?Kg=I28r-upooJ}%
znuZ$ZxKVEZrB)HCGC8d2Re`=7CaP<BfVcn=1N~{01k-4ec0Ew{w=_L8pDOe1qjNi{
z<t{{uGNdT-vK?84YdGr!diUO9QcmRMmBEy55I?6+S9CE}J-E#4&J3e>vT2YtRE&!|
zcXHbec3eGeE3JBCDeyrq3>YbY`9kbM!IoaU4grRTT!Yruyd3=caGfL#)oWudO3I)!
z1F=BUHZNqPRY6TRm~!zVs)BZH$L_Vhvk{m{BQmb@7smnEyoVwj5{PMGSmWx4Eb>9m
zax*~1z_>F!yTGE|3L%+em1$O*`8`qPEc&8cKeV~)OrK{L>maKW#u;om7r#3C)dBPA
z!6)@P6Fec%eMwNzQVe8+ORRE5CuJLeyxfa-MbH&cY81ZEIgxu5QM)0DQ+2P(dfJR8
zG|g--)zb->gh+FARV@OU9&Z78?$xKSKOTd_24L{`l;>c*r=B&au?z-ipl?Qsy#q^q
zI}4TI>@%yOu}v-H<tuTGl*K%NvHQmhTLe3`9~&c`M?(rcbOde2c%x{bQErfw5)jnq
z#Kouq`hea$dg7@F0o22~ZTw@k0MD_$K+j?&)uRy>1~NH4)}h%EKiJcH=^LvjCs3<_
z_|T2^3^4F%H^*I;-7;(9)v#4n)6O`2O1n69!yBla<{(;8rZ_xy&9gGk!Qs!f9BYL(
zkX5}5q#Iu_=s?Pi`4BzP(eYJWrL+fxuT7v+!^uOuuHN=&4$xT^!ZCJqrf4~xJnwr9
zOdOIuM>}}pY&@o*VS1ae;9+3FVRXv#2wh!=f4ms8n6_JQ4xaAgu0s1|cMI2NJT8~7
zzAf373KFqwt>+8%<3@PlWx*zmVcNWKcoDGA0KtMA0Y^#eyc15Sro7g>Dvt^1(C#H)
z_%)A)g0rC@W={<YFxb4~_~)@tZ#$Xo;!?pTISKr)Q#J)R&?6vak2}M1-6a?P?pihC
zm#J|#D)+E=ZP%xdyNL-j?<dqIju9C73b;hAl+`?o=ioiTFzy|4Eb@)#K!}rGxSQXy
z@Yxg>l{wlv2YmnZ<-;j4cTR~uH*D>Mt|z_%?2Ji_7tZ4&kfV0hX{CFU<hqyo*aNxw
z&3bs?`B@&n?}r7)OJPxK6OW;j$ZIE`SjI+tdK{0~)GMxHGE4=mh3+|J@%y;gZv_he
zxMZwopA;I6F<Gh@lHtV<B3Nj@;}{;zEmQ!ju!-(dXR6AHb458x1!ghYS}<+QfKS$}
zuwo;@-`tAi6B*KN<thdJl0%yu5S0xTT{G`NLE~UvyA=D?a?5p2#SV_z8cftQmC+G!
zAL^JVPrzYKz~So&n73KszcnhqeE)rfCW`Ql&rg5)7}jg<&(^C{lvd7=HQ`~fcXVZ=
z)s@g`>VcegU_+%LYmb#C+ofw4UQs3cf$K_lbl$}PK~s~IE=i(j#cdOYl`nm<4T*C*
z^?sAc!jWBLF1uAryLRJ2<iGnQhJS|rEjp_naNt~&LMH%wkAiyW&{u2Xx{`J3aH6G#
z56j}T8y;KBej=1;EsFf42^HnBjg`)s1D-HfCY(-WLNS-C)9^Y6JlwexRhtZwn0oYP
zdT85rU$tdUW;_O85(e1UZKrPO*XWufkr23Nl&NM`s=}pJ9=&Q?G`_B)`sF~%2xFxO
zj8C4Ka5B}$QG0dU6|-;<Q?Qg%)pUr2X@_1>p7wo|C}7=s%`$`Kxvnc2AJRD#WA~U!
z!AVa*%ZLYHY<U4;h?}18YJ++$qC9T|I3ybPB*t*Z+!W1iL3vlLb4ZUaNA(11f*9F$
z7~5H!aY{$M51^G^RY%l(qG5PLKk!Au2cry4qYEbNlXfG;zBU|H9oxRceVPJCrOQ+X
z5J}~DRL!eG*EtV5+=vJ1wECsV)r?5HLE*z`dILG^2{~R;*VM*w96sqo@W6uE8~tiW
z^-HssZ;Mn=%rr1Bq_{8@l`hfru`!YP$V|#B9znS|S~=c#E1Hbn4on6ePZh$Y;24WB
zE9!c3GAL`2RvZxbA5H1ra4`v|;V;`Btrj!U?k{axPhf&(iVrl}+EWzF6wj+XQ5Yt9
z0+s7<i2#-rC=lR%Kk}Y!?GI1Cf4+nSyKe6#*c0Yw0(Dzv+w2DlI1VxvXDW&N`B>h3
zp&;$I9)$JNKMmqP<n4m%Ed)mJafs@7^Zti5LemD;?9yb~L$3vW4GZyG00K+e?1&Pp
zcfBJ8+g;3>x3=_KTY|jrr~%poa9Q3da7xTqa2A6@BZ&(zb34o2Mn`-%x!QAE#dHn-
z?F7I;{rkRvF6?0&C!qGhqd|-NoOFWIpS-T=c2<>_Vdd3yvZodMrJi=Gsry5dsrB+v
zrrU1iw2fPcMr^@_yUH;z#ITh_1s7=fT5LJjaFaSW5tKL&TdLOB3F89{jYfS_oh53P
zUSNNRf*=~&W^3!}z;e2ZdhB1%aQ6%|{$)Ajl2>!JuGsju7ST5jv%y^_K)X`6r5jq(
zLaVT5M`TF#h_zV7E1>O)k?9CGHBzDVSqki6dE~X>4edmjO_PL$14LU8Y0SsT4ke*p
z9G?R(893+Hk)ExVX%Yl@lJs~2Gr4pVL*o_ae<-$Rw3sB^U!h1~`P(_Q?q^z788Nnc
z>(0~1f$82u+1n{C-5-l>O==~^<6@r=b@L}2`DB0piHDjsP@OM0=!sSd-w@TKQ9AA1
ztm4$$QZOJD#ty1%Afzd%F!i|Gvv`knD<89`D28#8me4_zV?X1;JM&$A9ZhN=DPeDs
zRiB<8lL}JY677Cl!2P;_vlsA!>@#j#)8;Xup{j^URX7F`8H1s;V+~ktz~NL(&w$u9
z=oTxl;nEt*Co9u3s?E|I2whYpuc>p7%RfeE4SOzAkwHCv|M~U#c>40Y-+lT0%MU&(
z%{B<htRqW-)S2VLwrK~i6GtZnRhfwrTvd9<?7#MF8nSJ3IYLOLm9F9fENi$SFiY#v
zyVvYAkUUU}Lli>U*o?&%zbGwXJ>JRKiA8u};Ah9HQ_zxDGBfYmHFwh@d8LOKESN*7
zTrE5Zh>85ybkTMnTvJ?9@}0dMy2SXzpwjuZ7HYZR{bSz7$a~!wYSqYZL$tpeq53aJ
z2$$~VAB<4@c7*D6gp!Bn8vLgrfqNSq^4~^hzYWhW3iI318Da+Q;~xxAx(-mAZzI(D
z8leECp<gqqyGNW_Ndu{|&d~#wL>#l-GNCaf6G0+IVJG2%6#5*QtYSFF^;d?BLO<Ej
zyL#3${qb5ZN0q&{D3wk~)tasUuz8PJtWL)@i<sLGPF56MYvElU2eRbrFKSVnC=*$w
z@Ou40p3dMTp%N3!bG`Ow>iYF}*XHpTfBCpP>+`TuY(;0QDwx9NfD03!b}|mYF2<Vp
ze*Q>K9r4&jF}N{0bJWU2s2Zp#LwQj`Vz-m+3{66GAB&X-N{ULR%IQuydv@1Buh^O%
zZ9+XL?NBQB7u|iHCRMOfwY+ZSsVntDk~gHd7^DKC?u*9zfP@F7#6)UolUL;0P#QNt
zQ0gA&x+yc%t0wCeAnlVkYV}tHH*CJ+KFOyOn1J8tvvnu^O~Rn)yq!I*hL)910*5Q8
zSkmkySK1m&8y*SZRs6!~zYib3KYa@y(93TFG~NbC8|sGv%KvbH-n2bv^*<e;A2%zC
z;{6Y`X=?-6l43a37v+jmzdf(sR}axjTg$^5QyD-KLY=6>!5rENIOlEIMqeiU53L;g
z)V;|X*)a~L90zrgtHWOG+Hy;kB_we?l#9$AfT~l0Mh2j|Ev+W06*d+6ngO#Bq{BV2
z$J+Z8Y7Qv84e`7@oGqgepyVc;quL4agUgL_*{gudv8#_I*?7GYdBbFAC4vDxQitf<
z2_s7@>rx>MnjA8OUD}g4t6<>q!8CDbs^cT`&{V_<r%)O|Y&l?llk!lGPOP5f=<eMH
zf{8?1k#MmFokEayotI$A6(tMb9Lh`<QPd>=5eOfj|MV>s?}lQio!B+dr~v*<o-PQ6
z%1vOBwOKfIUjl$&rU37CD{rV_t%U)frXE%)mU*|plg(l63|$(`&B?gFb6JeNY=asU
zo!T$G0Y3sg(cO`1=Zr54hE5>mThbf&5i8TM@8nLvM{|h^UF|EKyZvMP@Bu@|Lct3$
z`McH~>boeeED9B}l9Zoqwn%bw<CVzjjFa+<J@GWh48rC|Y#8cs*vx=DryapW)4z!_
z)w+tENc)edbCxaLE9jWg(V;KET!M@~tpK4!eSvPCfC*i;uYu{XwIG9bOL4N^>^-6B
zoY+A{5;*oN3BAmT2MW;y%y+6l;@Di+C;R2%)vg#|)%f!(#DS2_MCDq8+p7S<o|p&J
z0>)I^ExBSLV5F9n&>yG_J~UL=)xe`=4CGX?1Rd=ku8ZIN;oEib^zW{V%DR~Ua$V$)
z>mr_LWwifpWxzH!N)9M9Y>DLu#N%I1aS{cHm$r1}UmcUL7tr-~R^qkwb5DXHB`SK^
zP3JqtF)b)HQ$1M)FAXBNbN-zJmlnfLlL>=3@iDR6I))t^XvV!{B8<_%qlBzkyJ(UA
zP^9k!hLyr^@y=0jXWMA87GNG2P6$}+9YfZ{(;mJNRz!;|QynWQ8P^S3zJir(*GBca
z%o~Q3c%n-G07`!OEr>{?`TvnZ`rRHd&vuCweUj)P2;Xr|bJJ^N%=6vL*Q3&Y{r89W
z4}WKPPafW>^_P-YpHBAgR-fQHdFA=<MZ?Q85A!|KL8&s^RfkqhtaV4Wy4X><IP_io
zxz}AxwK12Oz0Y?E!&r;9oDjPMfz4q!R$k|d6(;HI46TS#cVvnRx(*Uz;IccNK+>I+
zg(nhowF)UDa`y2zyyG{bzdH^*-`TKcNrWZq%K&#*a<0IO8T`Mo$+4dewS=_vq^o21
zE3O0iPH9q9t9MzSj0$misoRYzboeLY7fjQALx4l7no~J9WB8_8@n)i(Y*4FsIUwd%
z)!1nh5?jW%mDJz>qy(^6UrG83#)s8u*9cOE&Z0e|Cdbkv`2Rlwx8u|0`)@(+m+x2f
zT6<oLUx8gT@x#fP6iC1QGhzt50H*k`ra3IHv+}#6^80i0^_YyUv{$0nwA0qBWw-=#
z1oCz{zuq_+4^GDK7rWDnEDBIe1&J+$KO#70L5>X492l|a)~7jwoDm|;gX4NZf6_MX
zvyPBmBL6Y}L}__KTX?H(2f;L~2A>%GK!EF%ZT?ro`gFq_nyo+Pv5Tf_K00fM!vCF9
zwKJ3@p_#-_5n_#$OeRF$sVYpoUIA+Ym7L1vCTa2OY5dad?}O5J&%gWp=WikD`Tuoq
zNIg-N;<Pz(NPZo`QFR#B4$u%81=5&7w%=@<nXecsrYRteFGovPy9*ak3`XMf!jZ_v
z>W*qJIyNrYGhF&uXU|WiCm(NLyKqq5>6DsF&cjTqvKA30kSGxRsTgkXwQxz64G=#s
zD*s`H4i`|teco-CT+MT~A1}nMAgD++L0!vs2axo&PsO2b_W2s0Mq5+t-oFoLFHheB
z*{}Xjfh=4eKxgN4O4uOoH-m}+>e-##9oX0Q4p^%=nM&pBQV~I`rEnm@O5Eu(Ej2=R
zBE&1~6%<Z~f#4t*Q4T5F3h3LM%0{-$q3Cp<An&*d_o%|TJopT!$~x+6-C!aPlLuf-
z#0bZrMwdwO<1A$QkHF-2f4F@9{ja|PmS1iEr@#P9K(xQ|JKD@X=1>c^R^-OT5k9w}
zL0%CGWd3Nsn`);nPT7eDNxI>;-gX^<LSU!AsfwF@zU7me1TG}{v5I68#Uemn71tyu
zdNd7MuK8R&aj9BY5J|UJ2~K#gIdS}wY}!CqtBqrJRc%vj1G4Bk9k^xPBPvoa5Xq@6
zM;oT9W)ejUK*RXv#aNG`phg0;oh^HIpnfc-U`5i_d9AH0LH}2MA8W%CroH=W*H8-8
z$YsCEx!*MGHHA-AS5vR8OPP|?adI7IfJl+mx0t@a+rWR;T{ab!(k+XC?RFE<Kcy*c
zGWMQBH+}zgl`Hn&`&P~nJ*SF8Y&q|Uxk9`-7aLcJhdGGXkQ5YNs+!Pv1Br1x3RpDB
zc4`agh`H(wty0mhyoTWU0fJew{8H)bc(PIBa7&vk5W(oC<-&i#8!3RD#5?%EFueMu
z!QuPraQykZ1wa&7|8uN${KMr>FW;iB^#6*w(x!^6^$FX@zU&fbGPVZKP|~EqQXGyl
zp0n;aw8JNTg?GZrL7$hrE2MMIq|^c$Yk_+O7Ybp4Ozf4mDRWV(-ZD2qtw2<D_5PN*
zDs%pr892!-h&H}zh3^RT)ipR`Ft+t)<YEy=MN^zO^(t2IWL6yacxd&sSJiTEvJoV<
zA<M!lM4T1t#X~412wBc@YG(7dqeWKKw2n$sMjZ>Hskay%#X2=^Y>M^MO-Q1pD^|2B
zd!M)7@;XSWRi^N@;=Cv``3sG_F$NF=Q{ZM+bafk?_tt_Gm3Bc_5h~z|r#F?6VX7jz
zCBpuRj@5I+-&&g&eWRKfp4wo}x7hgjZ$W5TuzZU@?i{%EOK-Sq&?)A^r@x<t7_V5V
z@oPOj^EsFMyBS`TrVV~Z(<rs1rXSuPuC1<bt^S9o=lt~D^S3A`|No*K)5G;NOgtBd
z?kB<JHBC{$8^*bQ6N%gFhn&C|1BAu9&W(#=grDP2@8{on|CkC+rV*TXOELzV6tB;z
zbecA9O?%g{sJc}d)oEKS+ZJR|-Edqy0j(hd3T(p0=NelhE=Od3pdj8Os+=dTjXphO
zX~6oqoC#{#2qFD_fcoq6cVE7Rr}F;_Pe*$^Z6_G_P;FW3QD<`}Q{{k!E(>aZ>&d&f
zKP`4>gIi$IZut@4&Zr8K&oz>U$=eFyMGIcPDr7KWEFk3Bxbz)3QJ9WH%i5{ScH3~W
zF4|M00EtrV&02+l5Ue#4DPlapCdjAkV}AuTmE;71dbmrf@-TH%X{S;FNv;r7V}+R2
zhSfK{-r5c9K7ao?e7POJ`*Hz&y?5x=PnPOtRNq5SPnxF9JmP@}t0maPDf4UO17UGy
zG!TvUP9k#mKOUtxl+<@xEe*l`)TD&33kt~W5Bfdk39@x)aft;q4c|F>8n?ap+mim=
z%LuTFT+pa&vKZ^=A4M+Gbv~6Sc;LcUL<nG*TNQ$63cIL>dkw{(00K$OpW2~0GZh_c
zT<-J06hPCgUgHuR&$nAtAzy%PDN^JRvu5ql{U_0C6tEg54?=NLfl_?Ks3tIg7F=|?
zUGyAnoeoNqp|vza^TG6X6O@T3Z6)4B&;sdG1FNra@XJa43h;=sYSa<U4SuA8Fe9O3
zg$B3)km&hDZ4fX=kzKcFl=b4GBVuMILWCEoKH?Q!{I(jeQ)kF#vX*bxJrU%gkviil
zOcaC=4cb)Lv#<)}o-x3lfK`}J1T?5Fw6P<@5!FOG5v?Z-M+PLO*U^ZS4n%g0hX}hC
zWtdHzI^=R$lf3Ct<6#s)5Z;}{Dt6Ot`qpI^7KL^!Qxb6A&=@0-8|DsGAen8hsln^0
zQL*Ub0bZ78JlUo*?~H9UmALX<8jl4_fB>*8JvA-{Gb?bFQxT9yYp@Dc-Cdom8bks`
z*?brP(Cs*O>OkXEVhei}z*fG41>ym~m^mPdbsp7eGW03~F-MWnQy&;Zsdk{5cB8mq
z*^ESZQ@=4L9Q9C{@r*|&a9{JuQA3a_79Bjwv`IKOo;@Yu1TNdn>@*9*Y4EaE9bPb5
z06Y4uXcJ-tf(}eVYZBjkdFr`b3hV&hQ6s@=QO;<!_iI=+2bC~gdX@Xr$eKm2G{AbB
z4!fk@YUUHsjomXDPiVagYrs90%B2#Kbt9{+0a;rDp`8@KKhjUYMryMiq)5-W%H}6a
z&rmbVsiJE>Q1{G7u2FHk0kBwJqCX2(A3c&z7pI0&F$zKO_~4c~Y8Uf|2M${VPZEPO
zl|cpomv~f{Pg21^47z^UQoneWY{=f#qWF_(@TT{Iz(!;3Z%oGP67^%fOjPGFQ2oa8
zOnOI}Fj=`DWn7AM=_2DB`=Kqu3R6RJ+?AWn3AJRD9bq)>HDDA3GB5(j0*~X&?9Yji
zelR=-no}KX#*FP)8T=@OmMU5`+H5q-GLnh=AFIGlvc!QFS(0LlLKddTZw1!;RECs5
zeKo{1R?=)IT7~%ohGv3e5UT-Z!-?T0%+^^Pp&khsCD56;CrP#tM^H)ELvUI#Ue>T5
zfZ|+q-3^HNA=8GNl_*MBDOU>tRL)-#Xr`xG)E-}rYS259_AYQFa6}Q*KA-W#vkWvB
z=rIdf_C%${RYXNjX!2D(W@E}z_%DHOD=!$=3WnbGP8n2`A(=b7iLhWhaPhb@C|x|C
zCNv<*Zde~W;l!yltqeW`*4OOoDT_X8SB92VcYqsCCpIkm^blmr3`YaOro=F6F}QzB
z7{`gM(hhXuknfdO)S_sCQc2U;WTwX3&MctR=sj=eXH1fA!VZ%?MdhM9NVlt%@a^~o
z`F(prpPLJVAV}9&=dzp95}oSL5XN4_-5kdC+I~2jvpaTi1KHiMYwVg%h!$&mswNFK
zh_pRbnapwVcZG@dTmAwy9y0C2I2D|`5sG*>E=@pKRcguBOLUj;GF2^;*YwHeSrzO$
zVOLkdgjpk@RoXI&<L<m%Ffh-m6Tt3bX$sI9)67PqDaejt!LYRhmn&7*@jgW;n@zw-
z7#sDWwxjp}vP%Y7vu1NJiUn$-QdaVRH6s_MQVvb@yj9I)+ra-r8>twkkkq?|a#p45
zc)~$67cVpdpLD|gS*@>$7Rk&6NjzsJ!tPYjVu8Rg5&`$_q6_hsARri6OH6Z~DyG%w
z9pxdVtrQ}`iEo5Hke1i|DT_wuLTgxA+8_241dwbD1Q)_^x_2GHtAG{*h$akLCa9-w
znq%4?GlyLk+!#XM)uRNaStA<-Al_C=G@=Fvo)H^KnuesvFDzsiRH&zTZzFzFS-E2<
zK_N1H$}~<ZPAm2Rb=EOdn#;%q85$lndR**PgCJti5i?S$Jb}2l+-Q%Yl`g>w-4mj!
z`bcf+b({9WY+TZ{bVZ0nYGQJv=K`&@oA31hB9zZ=8MWeznpLlOYYfVEV0R~&2{zS0
zY1F_@cS!0nqm_q*cd~QvOcyMuv#3-CHZsry4xkvPu%b4Rp<Uk^q#b~HFtNeJ;Dd?X
z$zrL+U8%zg(-q=*18)ia2w_g)MM!i9z#Qyh-6lV2Xt-^)iUT`!j#1R`M^^3upn2Fq
zYQxwp2{T=-atj12sfs0VJ97Gn(wVaqR=irAPXq_yvW|?xmhmy-PDZLjw&@Gy=z2R8
zpkXr$F?U@=OVXSmN;U3W79u=)-z$?p9>TQ_%E3eKi(f3lZ)2gi3F<mBX<!_%o<61N
zf{gWXR<MyWC`7PO4qB;^ncZDrtb2JVIg1OL*}hdRIIKmFITWR*jy`O;5hlAnUdIW|
zGPwNxKwo#xcash9YG%B37WdF|pZ0os0$p)28neHe9c<>Ihvy?asjfFRzW8T}WsPLV
z23jM*k+6ai)C#<6?ItAW@CK=741JolAb&0fwW2QS+^jNq(_)Wm9b(l7yA485FgZm>
zE^mjN-MsdiZX!|)a$49=s^h@L6KI@)%`@nT>J#Qxio_tL9SyX;cHlxW&t=xJJ4Ldw
zG3v|*=wRf?ftwiclg_L4&}`I?;SD^Ku5+b!Esp@CGlX$ZuBJ5T^wh=efmVb3QjVr?
zOxi27&KQ^)nLA^)YN`jI-p+;lQCYGQrds_W4V>4E*L!N-J5$q;h+GE3eJod%8#j(X
zk7dJow_3#QdLXKp9%X%z^_>8sCTyv4&<lxXvN=V9IT#vdCU<noK?bm;;9Cqv17I|v
zb2YY8TM}nutrgk}<%sZ`6Nw#f@8oVy9$<WG%>1d&88b#t$y{~qm4hJMI?!IxoU*rZ
ziYyMeN=K&#NFY#X{A>s12OWuF;IPu2E@Kf6?7<-z%nJmx&*|}uU6{!L{n5<;ju;qL
zIXfY9Uk@CLRfWMDB0(n#W~;4p-JVFAotjWbX*zw^ZX!1o4}I1yTfOlWlm|3x@C;yk
z9BDQ#0le4}AX~L*0YO!~oT7~m6wW~qQb){{DF&Av93&W<jx{($9At=*$>X%#iQ7ro
zG>3kI<DjXPQ`j6@fY^(itTfui#DnGt@Y6tXc!F`s;)v=NVgQMxon@uYL8E#J>P6C2
zqz=Yy?34OzZ5*8B^$*0b(*z}}aF2w8a)=?xBfeQv6>n#PI6C+qs9y&RmGGX2nFWd<
zUevqjCHNh+2{d6*C5Ria39tq!>{A~|h+Z{J8N`Pv6?`t>sV253cc0jF0!ZvykqubH
zu?Yfw?3mUuHHi}n#e|y}S_?&!BPk3glST6>VY_1(!pv8JQnZ2%Jpm*IOIsc9^{aWn
z2j>$*P=@Dcu%&BN&JdyY_7N#0tk79meu)z(YKXiQ0)b@D&_Nna-5S&(Vh8WCHG%J$
z1M!JX2iYh>7?ECL*-JNdX-=ztQ(78OWp;H{d;y~#cg!reN<<k(PT1iJqMhwr<yb_?
z3~G)QM}VKbF{c;pmHG+*La$Clc_!SOa5>Zr2kEh}CUmj)NvO!FG3r8h#FiRQZ0KCp
zZpQw4g0VbACuA{^SS|a2V+4!us51gv9TY44k|{jSq;hoI7SmHdLDQ|X^2`~oriWPP
zqWhj;{v5cP-e73p0G@<zfZWI!X-hQ<cn8LZ#?=J<F@riQOBE_|!XMwrk_Ci8J7x*K
zxcE!zBM<}Hw7zHuTd1pbTCWI2YW<TZh;q^#GPY=f7Gg;=P6*+&st8C-q&l73@jhs;
zFdA8wot4Kb)XyRN;7d4M9aGKpuh=ES4XWVkEV8ytcAcZn=QMhB+%8m_9H>H;+7$z4
zfu$BqjYLr2umRc2H<|>l2mWU)J|*pPvViGzuFFk5Z8nKt(7SVtIM{)d;DQ~f*ug+`
zyx2<PGiR2h?XSv<_k6;ffXh04fonwlohrx^wm1FTg#{W^I|o@a*eIp_P;(^m2_Api
zvEHBPT>%z8gKR^oIbH~?pyY&b(YK<oP%<pbDCzLitT~Brm=tCi0vE=tp+6-h5}bAW
zQAQhS>71ZY<0ShY^AYeaY(-ts0Q*l-q!E0)YIvjxW@K4054k!=QYzs@0asaM!0pb<
zOZgZTp<v`v6>SDZ=R@gYGZoZiK5YsUqH}4-f8cpWo{81cr<^1N-f)IS1d+<|%7K;S
zQcw;;<-GG;N^wZ=CbQh}(7J5J2;QO4(Hr7KwQZS1lv&?<1;WUQ<`qKJ2IEaGALZda
znuex*!yWjnibcJJz9mM@@fICB*$YN~*(yv78RaNHp?8U9BaB{*x1bh=Qd5w`R*Z{;
zb0xAc_Hs7sgQS4NGoTRdf&|ucSI?x3B0WbuucPGK-3sD@<cqZRG!`<1`80^km-0E+
zykbcH>HF_5&%gToa+YBAD<?_JSE;!E!+vO7<NP(W3vgT4xf3255f2+^jRb!$*B^)V
z;8g6gUJB|q7+N)0v!bbe726HqLIT2}U^cUfiMiX=(y}9*aeZekwL(XIu#!3rdzL|s
z8m>ZsPSMgD&_@oCJ&F~&_T%-FfJ&Io{Qj56Uw(`?T<km_Eo;;*Q2oP!&(+h4YM%ra
z)=<IjMr~SolC^7(*3aIRb+@p*AmkT9CqvPD<O|D13sS`e`)LT`mg?C6qZ}O~R|(Yy
zS5)Jy+Iys{?z=+;K{8vVO8zU3Q}4R9=9UghG?nT%hsI?uQmgoz$HrgRNu8MF7WIOM
z!Mj|n^cGKiEHH>3Fs;1xZW$LJt8?$FP8p{4C<_Gn^7Peg436Jv8JbxFQ^9@4?wPLw
zNAW4-447e{iQu+Z0~=0zhC}tT1&Q>A2mnfeQ;e*H9=(fXn{FISx2qkAX21!IUmCo{
z*asb1KpVViNAC_<P?ip0Yl=Wn`;LZ=w6;~a`y#iWSfE)eLXS1hRDvO=E#wBuwg<gd
zHAR{CgB=VAgxnt$fGdP0P+IYclvz+id|lpkcySerX3allW#q>#88W%EY8J#pdH5lk
zz*h1uwxUZb5cz(KvtAv%uJEym<Vb`QB45gNm@{-IE_|>sSq0T*^H5X@%eSF~xc5wh
z%2o%dvaX~5VPklpd6I3@-aW447Qh+4?_^#NrEA=G%OSFLfy+=aQ1P^m3i1aH%Y==y
zVpP*&xcMG+BoHbH$?LH1@jNXzWf~-(6Rd+%v*yGmXK?s+sRYXq{DM5ZVBv`s43?qB
zSX9J|pvZ+dUXo|1Mw?}hBc?c&khGv$r4sg@tXJ$N1#iMSe2+DyZ5FK7*JLE0onXjJ
zv~;Jy1;~#C5@&?|m65>VY6Ijdi&su3fF10X3|5*ARg6_0IDX)VYuBi0nJ5d@WL4S(
zk~UZ|<VgSrdPVCW=i~TqB>>n`$nMPW4VgN`8_$5^qS@vX7_1JUlaE3}IdF^e5U5eF
z3s9_;iB(g<E^y&2^QeopNNP8-vA;D9#6oAQDMLRQK=k`@_}5g`gs*;FiuFyyTv#7n
z<PXK7`uGJx)UKd<gt7HipoJ)90+XqQtsKm51*@W@3k_l11*K~o(lq1)r8J>371mLk
zu?7+}en3>VLo|519SaQe&seAi<Ib5#z+pcpphLkLM!gz4{YBaaClget3w%Umg_=oa
zBAO&~h<<l6T{MP^*@9P_+s@WbO{qg-8J}2CDgIg&-c2JjJ$9=F;silz*|5~<kl0pg
zw1e4FSEhyLwSm`)#vBHSw<8C*!I9xIqn^~|jZkkuAV(wt8f?b!NGZEzBaDB)PP_;^
z!rFDp@+V}?P8^Sc6I5?3WZ^oYHIh);glYmp@PfhgcEMI+KV*fGuPvzW9GG;$X~#4!
zFMJC45xSs{o7<-5s7uDQuGc#CdJ2_`78pP3(Yr8!z}f`c>awcsN^@G{Vy}@}g!(p%
zlB@}ogx46afQ;7&HPqq^M6#8DdYQRotHBtChshC6?YD|I!-zfZER_iw92DW04=@0@
zR|_Uf8+06NP~6IgYGFapZ70wbc%@Qa@0ySqse@z%%XB`e+NzYpZGqMfTB!$G*S)7S
zkT*ldVJIft7~UL3TFi=y)NVmY5@=St>=jQE%l!_Bmu0ELhZ)L4X7@FPlpsXeJE2h>
zwqJ8ZfMy%VEb#Nqx+aOV4{&VaZP@eA6~MZ!T<I>mM@N~^5Cv)~*#y>P{Y1?0opF}Q
z8dz@!NOVC5frY_m3&a8S+f#R^GlRo8P!5)4U5;y<&7E?vw!n-kKB3O_0`xO%1PQUh
z{%zvKvaNvyQMcost7#Rxqbc8hv~>|cJ87^kHU?(Xrch&HRPK?H2iC^b?gu@C3kBsi
zk?Y|sltxJrI!>Zs4YK`Xu`jyuv~U`WW=eqA4U+hFou*Ojlfgwj7A7T)wU<F3<LIS|
zVAg2Qryz{M7G+q~=jx*_1UiHwSVQmw*#|rstnETi%{4s<ac=@#5T?>TOhpzJ6(%6c
zFYvt?h?UOz(+m~1Cf0)hS(gm`bSRX2hZN978PKgFtys{IVM$^`6=RwiTEL@Ha2$EA
zrdsfPd^_>k1~S1;RR1&7q$m2&1n%JbNU0upe4c$LgdGG>3^#iUr!opGyuLG*4WuH(
z%i$0Nr8y=vDsXL5J7dFFeNMe9-at*Mw>HhOT^}&bwuSJHJk($c&m^psze!M4S$3Zw
zO(+Qrizs$I^XXOABQR4|BL*ZTZGvp0$~26BY|5~6m|^l@{YQBWV+J_pO12m=Bq;Qp
z7Fz^T*M}zUY(7D=Goc`lgvPi8qL(ulszA$IU|U{s(PdY~057z;;T)V`<18F7@LZ)h
zTg}ysu^AxtH^60u32-TjZJI};nmf?#`D5XKKwNOZTzZpqcvhAicn8YPK?P_pUgfAu
zkihBDPrH%rLf<A)m?s<mGU^Zwofvfv0m<&f7on_mdZ!tL6v2W+KEJ5d)Z9WM#l)kR
zeKLf*U5ze73BTvN9DnirmoIoD`pSKGKRwx9r7Ki?a+3HuN+9sc^qN}GUIkglE&~-<
zK`drFEHlED+H7r$8!^BNNH7^|003cY3J|)0j-k4!8Z^V+G!Hl4#E5~-EHj_P^<uyH
zIQw!Gy5)&MX`D8M(~ErJ4klub;uT;ZxjE3a))sB(kY4(OF<|K}dGWjmb(6@i1P&T1
z>qC}k&~=qVf~OX;95BTNmW{qE6sZ|lDgx6UUQ(8Y3Im+!HT)f0Z%$ec{K7Z#>9Q=0
zNl<REkM}#)L`8%=J!w!K*S<`~+4jZjF*K?^=2u3V%sbnt>C48*5WE@)oPY*Hb~AeM
z1ezU03oBc@MuSa}ffr)cpC2j7&Li{=?twkWo<dQf+5s&#+*E%`NDT<unN&j{7CU9J
z<rWjCT7_QFVhoLu<6%+7Bp41NpI$fGQ$85l{AqdsTFgqJfC3m0zfDipS(@P9D#@rZ
zL6ti`OpM(M2~2b~Ih19FL8;3jVR^gjWW*GAjf4;D%Q*dw12lX$DRA>006v0IV#>3v
zrm?(0XHcNby$$~dhy=tXzwsF|8s(&o2G@<2w$1L~FDCc%>%hWz{gUJDYeaJ8QWc#<
z&Gx>dhEXG_6(Tlc`oEApe(EYINrB+(H2I8c#a?%8Xj;43VNPU08`K);wt7eLs}T&6
z4V@Jn4KuRH4QyipVRInrkAV$-6TnQq2DQKhaa7He;gI0Fx&TN|035Q0Y@E=Wkrco;
z7P}CB1e;9bZX67wgr7_@Q{G`N9R>HyCP)}BhLklW?Rst4x=iU#00`j)%0kXGl+}CC
znouF-Sb*f3j&7_;1$I)%-*v3i@+XtI%<QIS3h!4J=j%)k-e8OeV+=FT^=h|2tTmo|
zB42(M4Dsl8>cg-H>EeJEi@zHy8YddA;OZitf$-)FP67p13xjVwjIMoywid4F6_#r^
zjQn`9ddru(kLZo5bF?Dz`uq#4#toqdTn~)obPGXaYjK(p2v^pVL0!tn)?lQ87@2QX
zGyfOjv(__A;p$7)1v+Gh$}cpl9lc>OTyPvgX2a3x&EA9ptBbthLlw~CV+MdL%g$U)
zw(Vq$=yk_bxqY`<x)QWTkA37J@b!UVU@~|#g_!9OJ7UtLQYD;y2+Ki~3Ke1=VBMII
z0NB&oB<l5!7nf<q+C}r%m*W8T44)_mcfiCr(N^b%{b@AJx`DrqId9MvYMVzRQC4M8
zBjD4B{#PHeW#5LErVDrvf?#drctLd2)GJj)FX7}4+a$L@ylE@|PAtB;?#kdJ9*0IK
z^AXpFauK`*oa4pz0Y|KrO-^CaKgFQ6NS}IQ8V1N-K-$gTWQ(Z>6Zw;S8ZddAhhoLS
zg3-$)9cx;CwoaK|Lu^gm+0<W=yqiwNsVpxhHn)T;dn~EJZPx&K&nzUA={4Z&EZT@w
z27O}(EaooS2HgWvE(qiDt2{z@L9F02@eK0%+&J^BcjUv`2sC)x$I@*dJJ0mKDwObn
zOOcuUI;lKfY}qg1-WBffRW-sYtp_4%X|QrA`{@>>rR%`i#P;O|ml)rFS_lo<1b6A2
zB<SvP!HBqbbx`8o3+NK7YQgc)a~%98`p-7S!zi~?SSHjHzCW)99j-X7Q9YBn%@gd9
zu$${FHY29WU196hN<2Rx<3b>8qKR1CEGq=WV7h+BL1uzPN6x6V0VN7A{s5ulv+9yi
z0HBphZSM>p33;GH*U)9GX4!K@-I&+l^EF{-K-NmIyJjC|!S_N#q##yoO?~y3U8PIN
zmTpT>c>kJyZ`dnjN-m~FNFZFYhSz|S<iYXwDoW!yY$${XF+&3UnXA*$XC^bO@z&dL
zWeub7jP~0ix7zCnkYS#P5K~B_4)u!mz*!`cF?~mLWUgrCsMO@T5K+=>0p2d?5CKS^
z<jI$DVKf9I??z*IL%WTJZQ&2pZs52wdf6k_;ej2Z@Ff12%WPSnDQn(1VEiJ;Ir}gZ
zl_K36r)D|sZw1tiiszQ`HWl^bR5S#MJm3^h3MLiWj222{Q&xq+!}YHgqC<^2RamX=
z+Oe2PrwiU5fBE$J@|WLz`Tp~l-+!>M-<utTNYkO*<vyO|rs0murhlB<yQr)5M>xnO
zo~a4-PTY|3Jq(F-r$_mZ+a2LFc{T6k+wyz8D0)!qAJyHcv|tZ_GVRYw&UZyYG{=vs
z3^ML~-S}5TXWr!*4XV83>UVEV{`rq1XMU`6dx*Y0mi+S{mmvdzyDB#Wb_ALp%aqnw
zfO8*z<b<?GVWYJ%oy6ET`d6iS51Z*}%Ig1)E1ylEcZ9w}^`yn^waweE1u-M%s!H;r
zu4g$v%{}_Ug?jE(PobXqM~xan#BJ9AjJ!TBWBof{T}TQb^{#0)7-N!mx!tAlm|D50
zGmtjh{&Ob&<$U_nFP=ZldQKZmmfY=2_aO-f#VSvrs(l3tC{Bg8jzT_)d4b0Y%&}%W
z@N%|u7Sr?OvOI*T=G1JD+o#)ih!c(yP+vMn!wcDD9x2xKW3HP}x3id8qwUoh@WEW=
zUEDRqV-D-O>*cEyE(o1&S>^*@Wg$FYKA%2+`P0jX0ZC5{{WW~8DgcDhKe8;-W&VLA
z9R`D)0VQ72D4w$Sk}r|BQgrgHdvQ_?o5!G%Y~i^dcOFwCybjokq?&mbyr(3kz{}J`
zW|(4nlXZKj^FAj=ZFz2v+uUAD%WR6!R;CicF&qG!#b6zJ8b+-*EdG!U@Yl$?q@_DK
zRRWR?=BF#w?X2(R&eyAD^}5GOom&iaLW<%DGiGpQ1>NoefYD5-GDum8v*Y@ZbA8OM
zKa{NU8=+e{igf2Wrx7&qp3m{;DgVRe%U^!^<<}on7R!8Q4NP!r>E|Zz@kGfyA4$Un
zIDz!cbZptFgzcumGMgu6!F)ko-Kmi{F<a$?(vTUzO~Cd$xk0}AXB>6K6nIQUET7I%
zy(fs6G|fQj2oQD2PSL)N2RLpeWg?XIV@!MG>DvW?(MB491}RwLu}J03|NnDL#y=X9
zTIXT!LOAV)aH<i`>vBGXHj$qmdGXMz6)Qn<rk{BCm~u4Vuhvr+I+s}^SU*MY@ymn7
z&YtN`lv>{^T6^og|EuJQ$6Ne5u6Hq9>sxxo(|F|nUK}sK{lj-(0vpb+v_tKXcSCrR
z@})pji1$dSxFuaPL$EJpxPmNVI)xGCu2jLnv6gu=SBADZ2;@WQ`NRQYgBmY^dd*kP
zVyF!Vghp14%sUf^LnNDJALiUx*bXh~Cqc(<@IQJWw5v{Pqvj%rV&?5+bTsHRORtOB
z2s?TlIy~AhUy&=VE?SlYnZve;RBaErZ6~Dj*H9@6TcK3ZWl22CQVle%fDC#a9AIUd
zC$~B1b{h%?v!@f<P6PnD>0Ty0>eNU1y}92G7EmHdJ4B(GPt3i<0Vq0Jk<CM!5l`x2
zxjGyxEH<SoDKnuKe~&RmBOJ}7^Q<sVryWx#konke$)pNIq_ao2e(BZWxUFHO3atZ2
zjM54-)zJ6)jl(DOl2u{KXj<p}q|I%@AsKcMQyOF0NInFev6WYuGS+d{M7C40M<=o;
z%+zk#53WprZNsqKNI`rB3%Bo)Q-+uc9oV!&045mJg<Qf03NED;F2KAO-ViE?S7IkO
z&elz#m&7N&*W;>GI*?OZ@+zmqSy}Q4tLFocXNBLrlLZxtN7Z%09Eg12Dc<PfJff@|
zyIIy^MvXHuObOL>IN7Buo!c4ZsK+#79OhZCXW$MTC6O8ZtlCKrip+~_I;3F^TO%;@
z#CL4$$6NAAyXLdz-*Jq_yXOh-`@5f?CGkuXZCJ63U>jGh=2ny(-kSDDDY*|}he1}P
zG@Z;I#-w!L75pVh;I>&KF{^n6tI*Vd9&30+&5o?vaM52li&mV3@@d5ZneM<PtNJL9
zn-f}n^bg+8D8lGaWWn+0r--os-S=U2kl!KF^b2&!<C%!)e8D;ZHJ1ceM_jOY`HDvw
zy!H{!-u~UJ6eybv@QcvcM3k8I_F;QHQl~CQRarS_^Xf5e(8#eARU2hg+c9cWWmFV@
zsz@(sgp3O4&G}<U<+0o6c9Gabe5*F)i#|#HG|&~lt}lallTWxDNHai8T&j67Ra_s!
zNtr;7VuYV^G*+{(Z<;U2$FFL|y1*1$uLgJ25quY2a=}fQQ1UzrHq)sT%W~jff|Q0f
z`AtZ?!#*l(*J4!=gG@2b1e%&8Jvi{7XZ2@CH+Q6mjV=+#iZ0<@F<FB<Ft(*VaFyKb
zZMj!vqqIb?IjpnpXK56^aO?*oH%s@H2W5^t_9Yhg2fHl-{G%!Ar}CT{dz(k@Y5~7%
z20Tyl3;Q<uuQa&Gae!yAZuM;jPs_PmUdj${De;A}_LyDa3N%iH07Fbjl^JF3_s<>z
zejcfMM5EXmmg14#tXgEZcPpVh9YOx2quIXc`x$ETqTfe;)7W>D^ia32=CDnD&}t0P
zq!+skULslgIe;saUeb!ZOX|GW=)&p@k%zA<;`7tXAHIC|^x*_CcKdUd1hK-qZaUOD
zWXyz;*o7pAlRq68!q!v|BTy?w`!CbV|9Dz=au9Zt6C&*DDrx&r!pF^moF@Ta$ts@%
zcaaFZ2Usb-qC~)j60nOT-0pC*aHp&kYP6KD@gX)l$8T%Yv!R$)e3Cmbe`p-*&#6Ss
zsfaGn2bqP6zM6=?1aFg5BXw*D9bns6Q5@<J$&P&<-_jguA>mU>$wqPyRSL9th)ft?
zASF?$cnmuu*aVg<=~?^r$1`7g>e%)q*lgkq1nwPG-cUu<J?<QH#K9!`Q!0Wlu{Z<Q
zW-&9j*wmE@nBRp_$UzlGb+4IlF-ktx)F0x@kN!{@NQ?Ex^`4K^_D#h^a1wl+<!5D8
zsH7@9t7utOW~mPP<2VeXIqxfb{|Q(xVvcgCE3YlqrV`O-byZ#Fh3n&;zhkAH7|hS#
zhnLPTr{|~N|KQ_M+6zIka@D`{z&~zW`@@tCdP9#|4Edh)EM6)h^O(*7jrfzf$bccM
zuhl&vkbU>{Uf5wbv9Iux_7K~&1MCe}k(WbU1CMTaV4c7h9<tta`CvbwIS=uDGd&Y|
zO*Z^}Qm(3wSB+zgMce8r^%a_EPUvHV_n0jdIS}yV!EH}5>Mcs@+Fx~f$gRIdMF!26
z)0gjl`GNQ?JG@vRODgiUShy60Q-{5nq03Sy;(ogQQpZZPYdyAZ;YvHp3#HeO!&k3P
zI7<}$zbaMfYuZ_an?;khTbbjv(D7ZNYx?bzWAydweTCnClNNv7tU!+a_`d7w`Pcp8
zTn@LO^v9O+N&JDj<9cG>E2MFsa3J!;8S$7xoH`kpHtN$9??Y4~epyjB4^@=IgdC0!
zZ3X$CtPSdX^w;79=DfZs12x3nTB<@r-&Yyf>A^wQmFw1A4XS7%&9m6Y0l`3i$xx}i
zf|YZf|KO)=+v+5KT47M;S3g9g(gS%_?WY<)tbUZTQ0J%>PU(kVh!JN(3$Wy!16{6_
zpE`7jrCU(j%Az#uK&IVLG?E=CFTVQmk`t}YVu4rURAuB6t@I17LU2_Ss&b|2E*~h@
zjvVNSROa02C?2=eufNuaSe_m872hnl0v__P2ty)e-qO^yg2eq1G`U^wwoFShAs8nb
z$=mxh+VUM+_|heH#!7r^1uAd1N{-fQf)BP&@1b*QOq0A4ww)o4_H-`zF0)=PC!e%)
z%&51aQ<uFYwgBVIo>~Z<UZdamfmDkTxKDx5CW!j*OT36-k82D`3D96nKK!~Nq(6Q4
z^85`-D$4;gD&)iuEs<c`-<Id@e2pm=G$Myv-!3XOkK!EU<tjSv30kE%ZSKmw7DXy(
zO^7B@{p*WCeG6>LtneI>aSa`LMefyQ<@X78W!dv3!z5^!<BOV32x94{QypLaD0e}4
zYY6ky{Y7a#JX{}Me_V4hPG3&vKm8&GDfRb*R5|7C@V)ycO#i4u?5Eo!>32!tS5e=B
zX$>F?jP0P?uE&eh4|{){I*aZVOFxSaq4bbv$|QW&`)q}2wBZ*WHi-ZkBu%vJ%&+^B
zwWDd7*G+gR)+DKtCQ2STHmJTj_S@(0KAii?-so5*I!o!Cp1NXwH3je`sZ<aUvB2x?
zb&mn&?PH0<!{E%T^(1~D1zhy#vh1Tp$S}Q?Pb-U(szM<4kKX3d+4#4US*&nJ9M4tf
ziGp^QtrCQtx?ZCYi}2Q}I4V`FrYlgJ>zIZ1zBq=s1GBdV4z94dk(DHr1btK;4~jQH
zh9-WtGpKd=<cc1Gq0If+(M9O+nnfWw*#?uD2lii<c}+|LVDIQ)2pSaygTjR)N-xdU
zzIuIt+ljsiJUDAAHZ_(AJQ~W6Gx1@V|HHRL&HN{m2#|gE^sDdlA|*faocDh7AhAyx
zF5IZ7dt&*EDT;2T)=fLiv|=(lW-*&%fh%r1&V-hiO)t#Kv^HI}RZ1owDvTY^Z|X#{
zW&Fgfijo^P^&kqHou~xlBG`o!jP(x-Mkh>+qoF%h&}1^M;fzPhQ>=Mdth|<ip(FI9
zx&!9H>VyT}fm}gdQW3o!6Y<*w9har}U}+1+N`!}j=oO)GKkEXdWb2<8Z6pd+0``mc
z0-Z0W@Ki^?Yotp>KToHeTS@`zY<ZY;O7(!HfL7ggA@veTo^$u}_2WZMtNX2=QZAbS
zyvX;H6=mU)4NkZ#;)BNCZEPAfLX&O+acVL5#9GbO`d~16%+X+cP_2MU*I^dQj6<ir
zazHOstOzv2UcrTNJ#@5QvCK+!AZJBT)?>mA-=BZ+i(g!xKb|^=!?8An%s{@-V&>xC
zTYCAn;8(8m{oiptCmnx3EkYbs<*8ATDg#%D$skRQeiFlSLn~xkEZn|p!R!rI?!?=c
ze!~8mRUC^kq$Rec3CTV4k^XI2LhE=a&pmn;HQFE9gy~gwo4ci9&y5wrA}4~f4YjDK
zxT>x*JA%TjILXd&AQceSoHW04z~vWztY%w+?}HhbodMV)-;gVFqE?KQLENK*-e=5&
zR(zjwN55&!M^m@SB8)tGw->yG>>Z1zaZq&R&AjnCg&YZC0BM@rNuGzA2rcvBYnfsu
z#YgaMQU*+kCMUUaNHkcY*#5;Gi<rHLjW3ab?Vq;&zRN!%fRi`v`+=*6W4n#Q7O*>T
zLeDzY-~&h-V=l0RQrCQ<5iH7Sn>ctY;^6k_xDd+$bW4Sp7-Q=K`&1!UVTkK6#H|gS
z45tP;JRI7y?ne#rzC%q92{Sct^}vJ;AFE3ul1bV6z3_6pMaU67a+^yM^?CTJ17>^R
zX*a%>%1J%QgRQF+t-Unn5w?BKWNO2QkI_0lPjEG#Cw^46va1PD;88=GP*_2n&!a{n
zK}&C%jkd)dlZZ{i1)&9d!Jbo0%{nz9Q}d7CqmkGwCR=E&UF?Xt1KWu+js#6OQYj8c
zC)yso+*PqxRaNM`tzn*3F$LT!Xey85_%yYOQ8jjnezi{Qjpm9wjxT@w6M>vQ65>NR
zWXHfP%Z@=bEqF?jR4uWwWTtR5R;;Z&t*MD<G{#g=5EE&24Oo5>J1Qv?1nYe$rco*O
zmcfE5rj!KoKorK*Ru{Lp7b)>UQmu&+u07G<j*i$J9p?+Nd7wE|dOcM%K{2f<OM{K&
zS%`&={tBVO?LZ08Ae?AguAyi^XOo$*a>Py2`J4wiI-oIOC$$v}SPKJ=`_y)<){4HZ
z)hX0J2TAxXQPlDV-Kuqe`E)Tkko<E`-nKGF5?&BR5{i$|-+`M;<p3aAs9rf>uS!o+
z#5x}~1{urhgkX<ENJ8Ah@Y&?g%9reJQ=1=#Fe+7`Ku<Pwo!06fOLGwF)B5~&pMds1
zV)Tk)ziqK0qk3A(rmo*EAa)bF1!B6J>%PNyxhWITk$0LsaeYucN%|*sI^OASt)I<r
z)<c*1T1|*|x>t1(u<hcIOvK300NeHNr+VE73J>h0${?KZ{_p6AF5%7k%O8I6<<GHK
z=l6<W9Y0}NY$PU<kbD6j7=x_D?a3#x0;@vNF@}CbF*0*h=3OFttN>uXXpQRm@!M)i
z@Cs`I6*dXbDe(5XaK3DoJVzgHt>wEkC7#m0d3);8=xH|(!k_-|booXZZnp_0+On7}
zt_X-Q)RrHKj)aPz1t$<xTQ&ksBW$)VEk@!@W<sch&xB>n9~B5@sT}<@wK7N~?XR#I
z(o8&!YBndzZmJghj=8}oa7rxLMhfk*t#i+N6>m5(KjkPSzjqEtJ8XPvZOHF7)A*5r
z)Wo2zbJ#=YPk-tR2G+V+Qyjd2sL`qHz%}Ttx2l{K9b;Q;*PAuS#1x7gO_56NVMr}T
z1X?%@D6bj=>@M_YJ9Wgl%bGG7%MF&5Q^`hr%%S~CA%{B383{N7`xnl!sNO9bZ?k4F
zpwL-Bj{Dll_R(o+a-c&L_uXW*t&P!#m?)Na8l7<!sn6OLh%6JwHAI9l9AJaQR7zAd
znLiMNjTO3b*QDk;#Z;S@WQGaQ)j0l}kMWnMi&XtSFlYd1fygT~_qkWedWe;LpC{(<
zu`J;Z#^91dwm_-?f7nc=9ywyPm6AZUp80uSwDsR$ujtH3ib_r!Ldg}MlyIg!)9xD3
zUN-hm@qxXV`2y-=;Hl@Q?=FA&#pmyS`SQ()`DQ82Nwl3T0`ll3RI@a-1H&Ht60vkJ
z=g+VKI3zVFfQcqFHdl>JCCM7^RO}upen=fh6Oyd<dUf97Gj_w1k}W}rdW4%DJIK+o
z`9@*vP#fC`wN2sTH{Hz_t9jo3-_$-y>BfH;M(W7_R!K=dy5X4({ub`oSR=i>>25WX
zGL56N&CoLFJ<CG{yCc*B7Mj@E5v0rks@dCRm<h)~52>LH3^Xm5Fuh^FT9F<WN`o<{
z9mBPCthL!H%~B5j?7Jv$$hV1q;&|W7x)2KM%~tGq3#6(wTA*o|NC61GC~WHH6F;hF
z&~OPTAjSH19XU1@`+1eZ6_(L}gZ%*H;V8;{Qo{rjLB-vh3-)J3*|qzBp0B*Zvo@!<
zW<&-AjZe@Ox-dO(+XBp02AB}9Pe_9VfVXkOLM77NvN>$@!II<*wFhvUSlqByj>Ph)
zg=Nk%9&N);Q#fwufuS73+eM^x7`!^0f?u!Zs)b=53mjlyvtIO4+*J;$wk?Kf2p-0S
z-Xq&}!5)x`5{6^s!rqAHg9?@1zBXu!x(!FNTcdSnMC#Q+Wd^O{0t2Xvx9s2dd85TT
z4+>!$Gk2v<sG&op*}Rc8p|-NwOoKzQiv)LaDQBuZdWP#bPRg)v&@UKyIXS~`D5NTT
zo?fYq94DZ^arx+F!Zrz|5lPhowIx{NGqxDU;FBS39@Boc$H~hG3e<}Y)_|?&;z_^k
z+`^tRIB!wQVW`;^uB%eLiz?3B;In(+P6A>sc|~5DEyQQFyNzVmVM(vsYNH1Xz-?v`
z?;cew2_fz^JOi$@);OGVbr>k|xN?WjIiw2HIE9uILK8T4<_j2WW7UY`#a)+_aP+!d
z5ScbhFg-z}&5{P&?+=I&64jweJ>zA~xIM9zCforLX$2R%5wgb@6N~hm?E~i)>I;fg
z0&~Xe>a?iQ6Z>p};7`StUZWcrCL^+3Vb~QK8p^74H(t_67B<#jJpJW^z@z>ONlxE7
z(v(IJ)d`ugM=~xXvD<7H7=d}ih&MqN9}7fO*A7y2FIIT(%$1mu5W?~tT%_H|c4D6f
z*L7H$@41VL#O;)BrMwm)J3%@jTSLf(aivZ2)U+O1F)74_73UZGdtIULNw9o3IL>H0
zC^yb2D=Fx5o!E*^!12;oWx6-fy(&^k5&N|fZ5J$!e=}Ru(XkXS!FrgMGtDF*MZI;Q
zFAl=g<na|!#hwa!r0qm-6bt$UpunW?m~YCMp^b55s8y(;0yQ&s$|s7dub8(D2=&p-
zZA0<-oOiTqhYe87E=~y1Lvo>$0e(ENva!Ll#X|GaA^E}C@PS*6?h67w1yC7)0wJKq
zSyItQvW+g<=8<ls;Bzc9D8R`N-d<&l8F+vI$SIfN#DrQP52%oomEd>n<V6MpSQ}tw
zS*6?4oyyI&sjR`OJI5)`4QcJ@RwrWv^w=dPLjpF=vIJkn);clM{hadD;7vh^KE^pQ
zEhy7xNwv<GCQ61=_klIHaVj4hFy@=?#X?T(?1TZ4<@6YE>ej*th*C8}!;P_MVwB+w
zv8d`pk$(;>ngt^}zGc{M)JId>zx?$__I;k&k}2_5?^3DK6R8!WJWct$D`Fw_yLkt>
zpCTb%*482+M3L^q#F^MYjyr9t;?j3?u=l%3kQAu|*SjR#-Pez}<{_iMoG=T-+%f5_
z-0s?@@8*0bK)fqO56Z5@jL}e`4V(Fr?lhrR&`5V>qRSkYyL{{_LG(CMNyS<)itmbS
z9d~thHR?_*(|#wkFKa|yi4CiCOHThNrA9TrZTzc}v(~$k^HWNb;q%R}TcjKM0JYw?
ztx|q;EIsGsR~;JJug3o8KZcV#?y8)wjHe_VJ@0&@-lU=J0Ur%x;oWY_F-w%*3W6mz
zz|wz|WXN&H)nzq7cUcIzof=znj03|I<=Wj&JWZKqM(^DZVT2tc0sM_x17=6qEP}yS
zA*^Zw@S@^Ah$gxbMq%nI*so6Gx-e!#&teE1gtC=8q$2mF0ZWqn-FY0c3^VdwP#1T(
zmJ{JA^~zy;+MVoX0#G#eMBb<~@=dp0DOH60=04XXTiCjHje1U1KwPyk)Vr?+{pY{S
zj)=BL>GGt=33psPAkpr?*!tv*di%P0e67MS(8>W((XqO2>$NtQrslVNg8Mn{gu74y
z>xIGhk5ucAdQvr9Z?hK|G;VnYTrw`ct?ptu)&iiXlm!G-Sx|k{%9#Q@?G15lG`I`A
zr6i-_D*>=Q`mYw{qBWGVAfoQk0ew^EEh|}?R?fz1sO4%e-3#pLIes)WFI?6_=|#Ap
zh~%k17aqDi|L*zs-+%e;18=UD4P<2RhWSCfn)|d_C8z2lwV2nsiPIfVhPG)K6UwQ?
znRlnOPC*|fxQ{B2MoyK@05-MPul+c6lytOM0`KlZ@@e1Cq#_a2Uc=?pLl!^il`Lme
z2Va$xo`{?a{PWl2AH8N+E;3fz-!XUEudIb#C(>2PXs$s6lyuwxKmWU;RX?_5byf*d
zd52)N76KK`CKk_Vga~buFrpZcA7lqacBfvBDcjZt%NCc{S41OXf`rjYCO}{##x${{
zFuBnyG97qDt^=>gbzn6fnq!7>h)c<`hVCCPSbf;3#(Ht&#p(8Ge~-DR<|8%phA;Dm
zXI#j`xc}}K-)INbTp*SU+>=(_$HYm`7X(Zs7#abQ$$#{0Y)D#^8PywXBYk@*ocM9t
zQ?N|eFF<wTYSOnC_k=pE){tbsfm_d)CCcbXIEEXyd^dEofwH}%s}`K|IPieZ6&amF
z`)NQ0zrYn$Cvu~SzG<y7k%ehF+F@9QxrWdypz5?d?_<hQ&FClu4-ob3Am2wEZ?$!c
zk2s{n@-#ki8d!?ibL#!v)=7~OHnX(Z_2?qey0t`VSDvT{%G!Ka%-V8gELDc-fRD#H
z53dp^`+t>+Mu{a!0h#_0ysq0w;H%_z^F|jJGmaX(owtNLTQx3A_a)gm6X3{foa~8{
zc{L;KmUuBOkI?}<99492$hDh;tXT1wCJ&Ls48BThzTc%BR3Yoxwk%mMxAM~#ul7z;
zZ}79*u7_aAPB3H1#mp162RuBeIr5)a1;a3<8uOdux6Mi_WLpmO=3DBebJD=gE$Tds
zOIf*qyasOv803@7c7+kEF!?w^MS?<nv`8{)n+z+OuAyU4u(e1$=VDMiUKNKHBQD(%
z_}&?Iu!{d@T`aV>U8$D`<NYpiLEJE-k1A0YW&qT5ft!jPX#^vMrknlNVcxu@E|wI$
zU^Pwvt+v+IeezKt?HsFw9Om`@LRZW#@nYL8q~70BXF&nARdrQ-LRDwhOnFNPtudg<
z;g?vgW-cR{a^IBMQ)koJglF2f)Ju%EPg>UalHsz=x&~Ormeo$N2)xdlhmDtcvy5TB
zr7onJoGT@L!}^D130EyQFr=<K(5`BMCnS(je8Q&{znTN6nZn4acAP2?yBLE{$wAF^
zfhFu^wBHg^*VK|jg7=cZn2VLvS=n;qDEjkyKP|2WV1e%LTME-Ng5;Vvf+GOXHS_qE
zdQqoXH}p`)60ZzE^eyENp;ZAhL9&o(Pj*yd{5HKU^#DwY@d-MAO}v2X;}t+pw@|bI
zsozrGS^x0)yXOxyP5Py2nu+T<@S*L%k)Yb8lVz_(zSG18A9H!=KxqekQ#IUrMi<M-
zb{&*EvWEdDX)SrswUtF-MKww8VOAVFJ|(@Q<9j+r`T_?8C4g3NcaY;DXay!8m_$S6
z;2X)}uNOz#fW8<!!OCw?s=y((>cY*@yVz%LxrX$f*uUw@^AXB%vUM$<0ZSsS{!)nU
zHd;cDQIv4K@)8ioNR$T&*uEjB8SITw?ya}uIw<o5&YuQ`if5YJ(ACH#GOeD7$t3X}
zEwL>?VJ>#J?Um7q2{q>O7{DX(eA>1&W7E9@zgfNtt~0YH=5U*s!@G$&UW=Zt;9~x*
zs`(0B?$H^vxM&9v+4}(0)PA`^OV_{|+a@@uh!zG0v>S+ZY>-@RMreE-Zg6vWgPQ{*
zS-sAup&8CMW`0*_)}ni5bWkQXG_ziBV|cv6GhmF*BD0{q`WHN-t}2ZqnP)8T9A$_Q
zztZ};|5U2RWtlGM-6H&7bS1Cztw?_d>8&Jl&bP)u11@jZpOP(s*-5%$EB+)O6jrKE
zWc-u0N;)@t`8|GIv28KiwL@$-e<#VS=b+VN0q)ACHAjL)cLa~w8rhSO3uTU)f1qTt
zAskn=x4FNsU6@fCk_l`tc@b%r9HiQ4;0-rf!!)JTq3Ur(4%qSS<W`uVyfmanRbU#`
z`O8qT91K(=<k1Dv6%bL-OMAhzB}XQa3$&NTWl249{ZXt@%-9ZRex{YmTCS`9w}v=G
z3C&q?(b$RBa=N4yLav@b0JPds0Zc=az&-_Xj;G*b7d^OW>bEFb2$wAN@S1RAjx>gL
zFwe$?8Wx%jg+uoa?jFoh*0rVjBp4P1Z-TDt6OX3LH49}cWzg(m)Ls2sJ2WOV6Vk-c
zM}uA8wP)kB42e}I2Kv-Sf-!*{LPBsID+)8BgH7=Fub;nr`sk$WO>5&+7i+k5L<cKM
zR#e85@+k_!+c;*qh{T^_LJe@Yehlp|fQ9|-jQc8L4)^9FYV4yAa~0%S{RCM8JRO@|
zF8Ho7VAKRV9d|P5)n!|Go38HqJv4_lJhjriMyEHFGI^lcBQg)?g5}3ksVVL?xF(yv
z@7uBKh~(XeE=ePSvHR}w^!s0bW4YrXhQrc;7P=~RYdA-!t7lC}eL#+j*RJG1N0xwR
z2$96eteHkb%4IxEUJ=X*GBEN=SJ2zb+-;MP&#36b5AfF*d-0|noKbmHmC|x9CB?OP
zCu<(@k4|v=`7{7gK(4>)K0BISCIaK3hV9^B6Jtq%9#of|38l?w5MsWvkbuv<EeAu;
z&N?4TNSM~1k}i8+O8+M?1{A(+wA#43s*)={doYOMWc0s3KY#c9r{8^W{86)=i+S<%
zO`%4+)JO@C$P;TQD)i{eqYa--F*x<pMCGlMDXNWZ!h{J-mT?H>&%gZTL!{IE%fY9o
z0Dfu;M&leV84u~Sfeod1=x~^Ws9AfUK4~WGO=N_)mR+<=^fim{P$-W^l%_h7wPpR-
z(thX(?@~lk*)ilQITIZ`@Te5QYeBq~#hK1%cT@|43u<Y-9aTkN9~$z|Ls0s*EWC@(
zvrSw#8SO+n)sMI|HoJBlbStWQpL{4q_HP?1*-59g-jKuPYO{|qqHLtj@~_|xK+38N
zm0G`2dt4qJh@wqF-DJVOOK{kg%1r~oHJ0>dR2f~<(4=!lpdb^Z%_LiC>{tmUx4f@;
z65^0wsc|A)J$ukLMTTt*Q`i6y=cH{(zc|5Llo(iJ9%Wy+qmRo0V-3)ut~7P`a_R+J
zR_qX4cZ`|6E8OX5cmy6Xe6s>!ug~B8{>%5zAE0cO{pzS`W^`RMtN=pIS%_-=-rd2>
zSGrFke&ZWJp2H_$(H*(JAqWe|lXKlN^!F*{0-LqVs}n)E3vx$&Wky;$4VofgqHyHi
zR&q)XC3GGO+06b<OukL$Md7y{u3gJY_so8XOgS%~Aoww~tBou=g4j3=6_9S>DcUWH
z{f#BXX8u87PRgOoGWQ?VCI=zDu4v~HS4yQ&@qMFt8zd4ZC`7h7>)PtE5w_kQLG`;g
zN$cV=b#0s4Pw?)f4jFMFOTaQJfNR%)Omf6ZKuG}iIyRHqGwM^rj37$~9cp{V6`V(~
zDzmF`Bs2wn_Q@nYM#>%d1zCgSb{lrmJMjp*X)R|wGYo5}XH`T{05Fjfhyh2`1U<?)
zlnsj@BHL%75n=tQ?O)4Al2>dWP>SnSWKr(4q@BcA6R9=qv#QELzp$w~RGDHiWr#UG
zRav%2CpFK>d!d>nb<{@m?>_M2HMe)k04fBSj8uHwtYPtw2eJ#<z3AiEZeqc#ImkNK
z(39vlO#Ogw0i%YMpgVxdoCm(FSv<0O1IC0tU|bO>1r*3}d4eY<=oAH@jKg#@82-lG
zne0f?Q&IR;LaZxLc(#|QB-D#$g;Wc6N%BJ?lCdBeo*tj?IJ2s&nJ1y{a@-8hj_c`;
zfB4lmKl<r!zxmPY>-7VfAtrVyZY4>VLJcG!(iz@34aQQxzoM&Nk_RYPyHZsyU~WCB
zDi=k$cyvTZqts}bSm;hO@M{G?uL_9Z9l;F~OULGuZijTp^RfqSGg`UzIuXU+ZFeS&
zr|1ay0Jh^_FK-I5cFq@4W8mUxkxKFbeF~!b+ms|Rod>~-uq&MpqW%6Y_eCD9$+r>F
z{UG10ZjK*3D^c)nYY?}%JW5-&HS2j%V|_I^^p4xgihqeYiWE)kdQV>EQ#NvKdP}K}
z6(=lk7E@l9Pp@sJf^f&XrSLC|D49%0_f5@1kqxO_%c3-kbAgHqfL>>?sH}pB_|swp
z{yo>>5B}df=3jZ^{E2hgrHT;4mJum)N4o*0gW|NSlLvr2TZqGuCqgSOfn-3Ml|Me6
zzxm-WfBCZyvL=URy34_glS~9XNF&|VJ-^?1!!I;&lU7X~6~`7Og(>py(1H<jc}ZeK
zN!vTgX6~h?n^vkSl?bnI38U&6i#pY?Z*SVE#OIBh)~<Kptp*If$9`so7LwhK@`Y#^
z?#!xkLb~pStp%D=+I;a+j_{my2h{kY7-{nzL%mtuM=$O^Q2UR+_2G=2hF347Wn_{^
z-Vj8D*6Mzds?b=v=bCW3<CwpRq0j?YxG@{PsMYaBQV-vcmA%87B|0SGM<HsXW5<A`
zpZfY?1;BV~^8>(*@8c!*E@Mz>++xf&NZ0i8%l`cQo7dNGe({rUe)F|8C0k#W)JOr9
zC$JQTC32TRQ|;B~!_MB9y+SF*c8s4is4ydooC<*eF>&*N>ek^SYlHtzfX(ah;9rO`
z$Eriz8CEk4DDIHM2Oiu>SBOu~DK%|lMOzSGEejoiXrV#38lCe3=F&4W*f|FT-5`_v
zU2sq@?UXP)N$6H-w-~U?XSy<bfbGlNPC+XGX*h@+vy`q}Mf#U4E$r(fafCpX4#Nm`
z+}^G&?eFTW8=>pmsB@=IRq3s<zOQnl%GQzc88V}(3i0M(tH?N`$?I&W8sisO@K>}w
zk0o+;9M~A`-(l%+l@A-<r}r;`FWMX8e|Oe5&-$>Yee|?9{P(9lHu{g_L(|a;{Nm-#
zOAnPSYrg(*|MB&wKe_yN|H)}ioR3qc{^;x}V}5S^OejR-FMEmb!*5s0xt&YUOfRLY
zea76YX<pHcQH{;uT++px%LS=hoYDji+32~C`G7GuY+clTgKK1+(MITTFJt<Z@?l()
zR1H}7pAM(BF+=U^*e0VggmDP<i0n(bo*P#7(Z6dA(^Nypcoa5H6T>lZ0=GIO>|vp^
zi=y*310-5?r_n_rZY+<Il~Yh)?<z=G)i{R2Mk5Dw7js`N`@8h@X(adhgRv_aQflW`
zpP-~<G+yk=cc7O|BkO?eY1IvgXJedlEV{ge?E!cpP)fUPhk}&3e;ztVa44XqS>!CW
zTGeIfJ7d6Yhc9|`J1|T`1D|-&@WxO%eya<G&u<ZT(}WQ)O$|*A=v_x#SCPbxAXQqc
zdnRh?10=9Xbck8Sw0qX3boawtaV0PWjR{q)89H8B%wQ;Nobkg@m@@=H?pFa$dQ>2$
z?U8nF1}G|4EA2Qxx9_Edi#>B=k>oyfm*y&gZ2~QKV5a&`*e#hYR)#{>7pA$@>g_2n
z>GPpKrM}k*7qnR1->xvTyd)HbaU9*NLbdq-A@yeOLCJfRbzkk9g)dwF#LPZEbCA0V
zUVr=i`%IijXWRW(n2ECJg2%p|pB>A|>zf~a^M|ht+%}F~S~GeUhXSbyME$Fno7UJs
zZ2?Q9f<EPtZ*n+LFmfX)flo;{!k3upWfvFK+C7Xr>RVu_q1ZXw=H=}$+uT%!#nn|c
zmmywjPC=&3H&r}01m8vCr5-ot!?gIDa=GYzYqBiM4FFd_Fe$wA17NoX=UTxQIjzSI
ztr=v$>^VX%X;v%Cwoz^XGRmckOt+*V3Y<2)j$<OjP{_6k)~uE0UWv|IXlM)(o302y
zY*sogqN_^bLa0+DPo9^5!FsMrSkb9ee-O$*Q(T6ul{mnNcDGZusux<8eL_5vEjOa|
z<o7&gRx6SW46o~oB+_-3t=n{Htd9w#i3r*YZ?P*GA3Vz{5l|drenAblP$bL69WC;;
z*xuN_o;RheE@f74;xxu{BZ4&p&mH5cRAvf2AW2%bD+&%~l_^5dB}pgF?v{)AI5V70
zV3(j=cxz?h|1ZDdwY1Tfoi|%~3l^qhWO#aq%%2a0LE8yJHi0+s^;?W;afIb5K*)sL
zT(*0$255`=`TGgNK3eInRbPV1AaRw?Ns@0|((yN?r1pT!Gi3Qzl1_XPD@G%E3WpHd
zyM%d9HYp?)=9uYcf~sZOkCm*ztvCB^*_5lN$Z^P_Pb2s^#r#oVUlfJzl!rDzhfcOM
zEAv$ZVEvtX(UIJtYYb@F;PPJANTm+TQR6^s^OV>x2wkovl_FoV?NN0@%pzE&+Pi9m
z2Wyvc*Cb#DSsyF3&7oTwvK@|pt_^Sa^%NjWJ3iQ<U2}QndiASzKQ7v*$}Zs0<t?$8
z^0_2dgnp`7X9tI?%)=~uTZ2yQG1rt)vOX0yUc#>iGx_Q->VyCk0o!sgR;gM=$}Wux
ztQO^~C$VzI=FmkVIaZd5@1mfe#tg#d(CuW^QO~=T?$b2~FFmtYx^rxVE>o$|t^RBy
z8L^_&rC!<5t<`Zurjhn`a;?E9!gxwS_aDM{Z3Ml8<Z(3T6g2!$wT+OJb{QFiSaM4q
ztzAo=ka4&pXiVsaW-~9r|MYmcD4b(dw1yCvNev7en?sL_6#=g(Y0jYN!c@lQ(2XBL
zV8pV#fd);ijN)<F*&E={Rq?Zzg^jWpkitIoNDw3+sMY{%dM8Nfo5R(h%udYyAS6>5
z{E3@@6WTZ%p&Q6bvFpVZCFirIcHz%Nsd2UG8@rhU(9=ql=4Ga<I)wkgqG?k^hxX%v
z=moswl8{#DIC$tHho3E2>78dV`wf8zRze1e8fHkXTsthgfHCtK*mX=rLTp?yR?|*h
zM|c8yEO3*BH#PaJuGphZUgj5~o>>QJ_@bv&xR4N10K$9B!|o|QyDaRvqfTJYvg^S;
zYvn$m5BKBBCk$V&X9#k$p2fDYoHf3xLl<lDSuCLRy|D^(d!WfyHpIK)L;8Cbu9+V<
zmI>B~xEwncOH;6zF|I>MnLu+Ev!Lz3;o;g3uilTvDG1Z*=7*Em75&iujeLQ&Z;m-L
zc}>Cv!p9gkkD-<_+IZr?)i*y@nLY_{o{?@hWg?LI7nie5h{|%N)of!m>*5q`4qawN
zev5Y6T*nEE>uK|2rOL}Z_UDufyz=8zuqx(ot;n3h7{|TfixYL-sBbK!a<b*0HHsg@
z2GCC95P!p=>x;HO<pcRofAaIw2lisK>_^n)T7sV6>D*5px*EkDpIF9DdQaqvJIGbH
zuX8!3eTdQWa4#c^4UJ9o<E`8eX&eNHYjgw?(5ETW`D2U=eW6KMhpD^bjXy<Q&!u^4
zZ*97X=^7UzfUc1@#m$MG>f@)@!6Icm9&h?qDcVfg`B0)KLjOg{CPFVe-(UEdyWvU&
z+VI6?gd<A&q@Q2ps0MrfkRz`Q6d5A1?~DGBJa+vcIh`Z-`2kVEyHu&3x-=mP=&zHW
z>B7ex$ypu^e`|*uo?UFXr_Y&&d^uu|UhrL#GA6xlx~>;bWf$4vY6hhT3%BFEnyQI=
zYo@ulZ>@2jqIwudNATZ`loG&7l@)mS&Q3@5)aT+wwE8M_sHY%`@DriO&ry^@5zdmL
z-@ktO`^#u5d0$6bm58>Po*cRor|zGn+a|@&@z>KZhVG3!QYrzxrI{b%SE4H;j;i2W
zs_N#sZGJqG&7f5<TWXL}SoFiqLE6jiT=I8h%dy8NKkjOJAxfJP=`f>v7frd+GKep-
z?{^AHGoJjo7oELYhj{jkVamE$9JN=gN`BHGnK=F>6zA)CjeJ`8xD-<P%$J>F!&*uh
zG4+%IIbpcDJo({*wVCEmv51~O<7IR5$&VGEi{?Z*Lwy`iO#`manB?CTPO6k5(^$Hu
zwCzd68};o;2ys>2^S`*ES2fK4S;7piF<mc7L!`_Z+_gE^Ts()YuJWZ)hBjND@&E&e
z@Id@>F!H?SK0_4LCMLAoHshYsLi(rKcds`yTFrQ$?OEEbV|IivN%1*9$#~)XQQK3O
zTY^()fv@a`+l$5er=+nz>(oXo=h!w4X9xi$>{$tl%>{~X&QB$Y6REG$0{*Vbn0P5n
z>M|(*MCckIrq*5G1m#?ZuDr5=gfo40Eot@-dI|F%c`Q}y_nr$)>b9&`1)sShaY)8i
zjgOJB&f2aD7NVqI9{UNibmhs9)iQtIH2aG#hS5ZY=Y&X5NlzmKwS#Haph@O^RMTaN
z%T0}-dJIrX%N^QBn#06oi)hp{xW>3csfI`-QP>y@)&#(aCTGN5V3Kw%<Tmu7ZRmEs
z(gcg)sYiNURRAo#VPp|F=e#RBRLuki*sj87OQnRbLx_~B#eiGCp3^{ITAO{2^D$9p
zs1m?f3Nc;HmEBo>HMVsX{>2gD2e3hWqS$}<n_vF^^=qc#IG|vLKG4oDVlDjO=O{4P
z-(Ewyqm3tg<38~ty!%lTKl1p&&r=C%a@OGp4q7$ZElPR8+T_5+V?$xOMG$`?E$Z5Z
zere<;dOl{k5EV(DiEx-sYGrTu^7Ho(LC9jKDrpb+MxI%O$Xa1T(A5w#?K9TOv_Vk_
zkHPLJGx>LNR^<*oEmGn$)^VDheA{|d*(BY_AJP3yp8J5;p`*=5=aPq3f5}2XQ{G!e
z+g?udKyYj_G|h=aBk960prj#HC}$=Fj#IyewZE}-K;V2$UntGss$F5y=}#dvX0jjd
zQI7C0!xhmqNyoF+>BRAbaNKvW)e3Uz;aqXd7x_5PPc+kM|It^DPkj3M^`y}b4u%;m
zPNm*9C9JcP5p;QCxsh*_8At(y#lExXsef9;ejSCnL7h^zBx^7Qtelt6rVOzVJrmB3
zVc&uGZb+e4nxu=D(8`au&ev*B;8Gt(Omb&$!{Y;*Fr7s!_W6}mGG1VwDz-Wh35M7{
zp74=y3P;C7xgX2NHv)duyETJ60=u;aYHwPH;1>mC5^M5W%Ho~13dZNq@*K64D@HxW
z#GT5jk%it*u}d8COl7c3vKVW!r%~gA8wM$2hjo1@Zv^*e6=IvsWU$yY_-!vk?~;fR
zB3qRiG%nHRV-4=<ttmX}sSbTWhsMYXOL3<7P9W2hA8W`%OR9e~+>#!+HP2`|m!ei>
zTM7y+8I98jybsaQ5Q{_DT#d>J8P;`8C<qe8i8_^&RGEm7w6S)qLiphZM)otr`o0sx
zgo0zl#KB00_Vw%hebSD8thrAZk3wEQ)(nhVy3{TFYU;a1=IbHe*i5X$+^=^gh{jjz
zx{&w0GfTAEgr~+BYYxyDpCdSe9>sU3&a~NedSLCt-iwbu^QXctI5;Z;9J2`nm+nH^
z!DB=oOaw_fs!zz>?p<r?j6B%I#LbDSMwdwAZ>*YWkX<!*JBZfPF3jn66>sw}QH$?=
zqj~-9KD|?Ellh>L@xy~n2CHOI>d0CjIbw<2XFqd6LDK6yF=07y8F)x+iiCxPW(z`Q
z?TXrI!~DdK!(?ns+_k%hsHq3Uf~!!?if<Y7#|K<4mD5cNZSZkyqZ$vtMNqcq7i+pV
zHv@aH?nr^lgo2W37TCG2T$mvo@sUwd28i($8m$8TR3B=?ZF|jRhBrnx)L^>d3dH4k
zH01M8gsdK;s&H>T>@ZsIE{G*aSK;8${c}(fGi8(uHAcp0*nMGDTeBS5(^vhuxsB!u
zAp7B7S^cW*>WO**0T0W8MGD?xjJO-9IOStkO`l`47Hy=78($-+m=1dEbOs9y^h159
zd^q(1K37)rEM|c*IQK@#!ARjMSdkTh(6a{4{mCE+fExaa3uhAsm1X8^817pIh#=U=
zVoQpBe_x448g=#6K$N^x7DGaYxWDzoT`11A5bI1Qu%-$+VI=D@PC3x6dd;*81mxyR
zi&V>f^kr2$!R+ZbnAtJgc@JjRaplds;~K*t9m<KzSZ5+G(lV-)tm!RkS0E-2@f6|#
z>LXQ33eV8gW?bmtsy6mp6f4{L_|V#7E!O*@O^n8oOQbSS#i5U-URTW<O;LlPcAS{o
zoqJuHP>wT<_!%#D<y)ZRj#;kWXWn$m1p3p5<!V1&fBUVE)?tp*f6F?|v1PGi!ZRkX
zG`tn10i<g1jSOsAQ76G@4EYVY0E9SGUcW4x)DPu%kz_C^6FIr){_zZV6seOaJO2s;
z5;*?hYMmy_F@TF%V6IIM+Z*z)RdF49L#bo{qO;;siOPVvFSJgAu5km=B>z~C?~7*~
zhNKy?OEILDmw-}Sc>Hp$S!Jpn#qBgG>VK7Zy+|pepTdwXN!t8;5R)b0gztfI6`F(u
z%doRnc8n&(nN_r%vaP4H+Ek8$VN;Lj)U=K4!qwPjMiBw>ww^1aYO@P<@$FRrmhEs1
zHMXw9A*!ORzTJ8m!S-uY67;HfO+?k`m;3URT=8U6Q6Mcyb0+$oYT4HFT^kB2=;AAk
z#C0mu53C;6Os~5;-QV{)6552}vTWH<pP(R*bL!iAz8mMfdz_oDBeXH#q$#Q6HUNbB
z6U!O>P7x5!fzU=Ga7huJ5ux`bToD3RAq}%<F1yl_HrutHZi&a8mb9zdZN5+B>qQ2j
z{-v&OblL-OEo$(l97dM}>NM3TT=iq+W2B8|lD_B-cO>Y^1%#HuS>IZ{x5=il+lHrm
z-(U5uXR_#5>NmRjm^YMYQqw`bH4WiR8ihv1=A@wuZ4Yz{&HV7VskL!aFX(q}^q9%P
z<E_V;FkMMj$kLphq8Mb)4L{!vvU`42)4H{H)neEat(=+UTIl$Y>Uc2}tH%z?3zMMD
z_JaqClfQO#JW|Z2en-Y&Xh~;9$5q$|rqIO8yJjPv>uSD**gs8}rxg|JMf-yUvtpMa
zN`Oyno<mIiSnRTdycb21x#kzV=8gC=(<<W&4uLLv#J7k-YL$*_Ra$(e&o*3YcExhL
zecT?oOXWHLcpkRqKBZXCKl^CZE!1zm5chq?J_`&r<SC9X9c{exjj?_7o3Ru3!O_OU
z`v(8zhXwQs;*{C|Xk9jvG7!P*<L9Qp5P>2LJ+ggBf+4u=_^%c3ft>C;PG33E&G|<U
zTmLiSGXGvMr9a79DoK7H)>phKcn5ys(*|6D%c)Z5tt<PeWt)TPZ9^hbInGdr@^y?)
z$w5*eae8!m>`x{@Xofqzxc`0GAqzIi8zv<CV*Uk963%yHvchq<4JoJ|h)~%;l`Xha
zcEg@Eeu;(cob(fJ0IC)A5sR|Znq<2KKDef3qS_XWG0ycI?PCqR%P3fnsBfE*@k7xb
zi_BUGnd#}d%m6KU<7;n%bm*DIpYMyvHpJYOxJE(k4m-$}+)!=&Rjg@+>ud~0Ai}N$
z8c9@i>25(n4AGW+aL#9(3Z|Hm1)2R)bh3j&7V>U-<D3h<!jcc@O!d9s6cT?IXs08q
z68gZSP-ca*fg^R>k@^g`6bl{>?DqiWz-qb3Wyt#OfOx=xPR}v%&4yh~YH-_pHU=q+
zhHrtwvHWE)c|+o|yUeREZ3(IEBEh7*$%o=!{^Ga$>G$8f{_^MFe0_<3cq{E%ZptAa
z7{V7XI2mNc@nRBM$%-W3lQg;85V3#@@n_tw`0Y*_AO$Zf<$OT$C5pFifrTbBGPmiB
zh!O~Eds=OoLYqLeP^YEbgeO1|Ytj0)nS?^cW+*0`u~s>(Gkmzlbt_tMWQKO5pcTL1
z_o*+T3J|d0W)##vN)Tm;JH79<h61%<S7`7ccnLQ5p$=g6-(CfPIO{E4TNN@a-><+B
z5eF}b2Xb&Mj|{f(l_-w`#Z8&cOp8hf0@Ehbc*QZEOl!59LysXl<|S&Y2;MWa`Vx!>
z$Y~*)0C3N+J`OrE3(AZilI$~V8o*iZ*9gfq?W23Mat0~WK-G?s$DujGQDwQvF@#4h
zJi0FT80scUf{b{wB{PgM8j6RJ!PdX3Jw*^R-@Ks#0~@euDx-6Jy^Zqu4z3CDG!pps
zp5pu9l@R1Glp=@?@=!cgFZ<T*hPe&L_iYgS2yEfp9wGRMbOu~izuoc;=V1LMCCME|
z%Zh>p-~fZt(WdoOs%6a(wi|uOL=~)Lh86-Mc!ZtGxZhEN9jkeg@@%tek!cgiCjmLg
zAkb-=o`3p3S!Y0YH3gkH3?Wv3CIvt=kV(58yj2<if>j6c_lUO=+{BxBF%&?I(g6^B
zJr90-J^ke4M98sl6qJr(leq1W7j+sPs+t{g2A%T0yt(thAAW5Svs1mJi#G1A>G$DF
zhJR%7IPH_5^z3{l0QbIraqvi*f7soo`Kh8O*X&-g4y~a_)`U5@4jiKzUTq}yrh5a;
z7q#~&EEKw}W&3d#r|a=6h>@U5{o5>P|F}P1uoeCcbGdBpmh^C-Hnn#DAvDT){ov%T
zejztk561O)bsEPSUJp&jjvszIW_Qh~eMH=(9Hrji4@nj=L_|4S#<*7PkMDrJiO0`c
zEVnz_{K<W<YV5RwJ$}A9tY_4BzjZI~KWLKB3)NJQv|*#cEov#xU*p<ziuKF=$G^K?
zrA0f&;v9eLyED!99j75r{-%O|1tp44rOn}<W8{nQ0`&5x$&@r_F=0l`ERr|@7vgQl
z$2oS=04aE(Xl3EOi#fJcvE-0D4&XCt?%B)BR^Rl>g)h;j7?*x{<NgnX;)9U93s!DC
zJ>flF3`RU6*m-sn6b*5OJkI;rC4{k-dBi5!=Q-Ujv#<&bMYUTHu|N(EX5;SDt;xNE
z%5E{7lS$t;tz>T<*+$H=Jy^ikp#AC)&TkEsbri5`I0I6q5A~2FZ%(-55LpDvHn%3H
z@;#QbBt+TlRWJtaczmj&^4ySG)=;ZK$Vg&(59rV}7P|#8%FZbzDFC{lLZjlVi!YRm
z(=Zm_0lnY;OW0@*JwclYe)ws(&WE4-it|$h$S@?r47p{y8+CA(*0V?7l_|?Hdg6w&
z>1A;f8mMu%Q#ybMZX%1LB&&``OO%v-3@F(m86=e;zbw9vS}VZN@e(oQk`F|G(Q5>n
zSfyN<3zc35%GcL2sF6&!fQcbkKQxCMx}gR%2eJ*WZ-dKM0>5oRascVxBDzJHA2sCO
zxqq{wR@_-B3y({XGSi+K-!v~TSY0gT0Hiick&Nk=iZ75LABFI^?24UugP#v}1&BKe
z5?Wz~?rQ+P#p-G=(7b((p*>4?&~bN%G71pBw``E9Q6A212S=y)0BbZ(>rpy>7*S8~
z5k1TLUO{){Q#_73e_BF3WYc|{lg73(?aD-*I@+>@cYlA?1heJv6>h$}mcVtB?&xR)
zc$rBcfs}!tO(dlY9Klw(Z6ke;f=!&yy^Ei-T)V1qfE(aF@qwJRGj&GgYOgqtB2j0t
zRDVaa3=?#V0TtEl9Iv@h$IxX#MJ7&BLkCH`N^ycD)kZ21lMZHONIMSFnHadls&*rc
z@P8AM%peG%qVN_|jrOL)$2HuNDzQaAql3X9;x1%WkW0UL%RLErIny6DqO9kA_A?0}
zp9IE1KcR{Ya1a}`!?(D=04FV4nRBaEM<N|%?Im}|msb%}1ap>ymZPwem~1T2ojp>?
z<_g29T7_!bf$}U>Hf}Pit<DZR;6ekt(0&Xm8**Fh_>(!Js)3kItgZCHPkZVitC0}?
zqapM&Y;6}!2TdN)392Et4;t`>&JLsq+bjl;k#sQ|2;mb$!PLBnhE%it#%L%;-^H8#
z&lN*p2`dLKyS4A=Nj(YK0qp!JamKTo9f<-?oT?SO-|_Em9NOa6#!>&)#?je0{_$-i
zw+b)&C00z|*d_H{0-+;9!3VyDwDyIxvwmtNHFUgX*1Ixn)jU5k2ey^^FK#Q#Vt#fO
ztb5~U4k)eF+U!;hKkjT71!X)u|6xpnk*J2ey<oSVjT=Zazukh?hx3D+lHTo814x89
z<{}(=0|dGZ>QbWP#$%OGz{)^4KCTk;2djj^FII{ESS9eP{9%=V#4!V)e`ckyD&wP7
zYpt01->ntl!&-sb<*_{3ouNc5?KTz*8VZVDb^x8vbv*y+`Io<V{Yand$6p{|ixaBl
z#Ud|#*+tUi)gxjeD?w{uR7F085TM7U+CcT){QIX+`z-_;kiu3iWMK_?lX{zThg&Q<
zIOdns$JOR}&!US8|EyKcvq|B-HZa^2=)tpC;amm8*e~M5L^cPX6ZDb!l1a}5Eg5Yg
zxiU0RFcb^*ToYJGz;PZAj*DnL6~r2ZtPJHQ79<=Xebsww8}yRKbJq6~8#e%5C}^#E
zv3hbv*Kq#I?&Fwepso{p&|ZHZuI0m$B^p--_CCpg$>y8VNL~Co>@}T9$t3WWT!A)0
ziX$FEU}Q$p2F)T&qe|{ZRfrRE8B_<8#1Z;dGZh!U2S)8b{^_^A;+;kK6)Y7pOEe-l
zf%-Hm1hN4Bl9NzKUF^1W%Tj$U1HZ8KCHEvgTawn9-G<DOZ1d^#(vsn+ZDfvf*J)WV
z_e|IoPGbdX06e(aCq6~(CO8fBv-QY$hg-C6jTTU&)p$Bo+1>@~&VW`=WkZGaBXTdU
zdM43lQq;w7k^1Vc;7{-q)vuUm%#FL)HL9ic-m_qY$_B!0e`h_{YPqYs?lO9Xbkn23
z{(A}GxUqz9l({LAL5;YA_n^x1w+J6?j;oJ+Rw3O2>tx591JDK(4kFcGr6hAzHsa>k
zeojZ@(|$^ks<@MC)UVmAzhs&~&xJd`dE*#-<p9q#fj(g4G@Wr{)21A`UEutIFf+y%
z6c&*ZiYy9sC;I;PkK~@;;or?$_f9V4xH7N%nGIlF<Cpv#K)_e9g{Shmv;e4ZI}1kZ
z6rjtj*vHoK=L1sEBdaFLuq{CQAzqZ>3b344BM_K;v%BrOaY4Jsbu;ELc|u5}l*ai|
zPzSOe`lb@pSEXJm<ob#5n<@%)Ap`se#`;r;{jcTxH0oc@2C?{)1T_9?R^j(w%xngI
zXOL$32RC$Edwzh>a7J~qmpG!X)PY)b_;wvdPl*Ebt^*afSK6UksO{^{zi+0v{xtoq
zaUL&nkO8!zJi1*mp;+~){ugz9oX~JwK3bVOB?RLRozfeE4iSDA7@W+9<vIUuYxh&6
zSFLvc`=qsvOvvo6*j<@+=TedTD(wCz4QEJXpVE>4`ARRe^>5WG_POhAAL>mab{CB2
z<D$Sr4XF$J6vZsp2cI}{NbT$kAWwoT8+MKrTyojg^~*aT1!qiEl;_kUr<)m|#V^8R
z-2z;9lCvI+9g;_R<=VUjSQuNum`y?iS#o_Ue{ele!<GYh_S{t?hX$T@Rb^jklt|k^
zy<*2j>{9)8UnE7?MBNTG%I2$y7Zj^XiR@>;IDs1Oj;F`$BfD)VY3uZG4jqs!RK`t<
zp@KStZ(D#DcH;I1&ew6v2ubj=@DjCaC$QZD<z6W&z0SY^SOa4=>0d}Pqk(bkLm`oB
z5*cX+aJ7$#Z<E_^XE?5mSvx=82i`ZrWIs*p>v9Os%gRgms2gAabwwA|hf&^2eI&?p
zG!(xPjT9C80Tpb#fL1WW^hnT2K!!(re|;Z$cJ@m2P&6=jv(YuS0ve?Hu|h$z<QH^R
z%}Oh4p_p{#KyjY0+q>71as=X7KV1dt<X+xhXP4$|iI+qN&vS+!9zFels^-MR+QpHF
zQt4Eupu&3_waLCg*eyJbl0y!97YX^=WDrV`eO5P^ciB~~6oC}+Lkh|e<P;3$TRr`Y
zdW!1-HAzKT&|tXQvR~6?2wnA%AV(Gg(r-|bQKgjN325(zL~6!5a#J1K%B$#TbRp@2
zDI!utI<JJ?^Uqifoaj*&Dl-9_C*T?t_AgS5$8^r5Aomxu{Wb4`cHuyyEM90~eqWlU
zljf^?g-%pRL|PU&H)|KhldL<!UKAhYTF%G)-rez?-cs88cdu~<8+t3eXFPWeC}}9g
zg_V2m=2TUADo1olZ(|_FG!}aYV&bczNqNhTAHszY_R3`MI7*Zi--%aWNX7Bb{Yk47
z)v4P)D7sQ5r}~R&+9M71eOVi^5mG_sM1eCuZ+jlZhfWWjT;E~My?a^JPF-kv6TB&j
zI|+)Z-^vZCX}hPOds-Wm_{>}4ArozHxe6)bm7VLX_x;^_VS<(@Wz;ae(x*WaIua7h
zWIDe21^|tBBWh4ae^u=aK8t14@D-xFqwD)<a=%57M|uX7Iph>k?MfT*Y9<|GttWnh
zjG{-m+u<ayGcY$+P(~AJCm%bGO47Ko6FGw9i8ckpRKzJoNjgaiuM<fkFivnZ^OPje
zfT-8NK`>=O%KMnaOOr~KMUO`jBwe+DARZC-p{=+2{wr_{{_yRU6}ol0+Zjw&hmno{
zU|Wi?x;d3WtcGGzH|X8GQ?OgK)zV;yk8u7m-G)scwlAWZT=!dn08xZnUBLs|jvJBK
zLNr-xK(3+2Ko6Iv&V+Ikr+BK}saF3*%HchYCF@N|lF!BO&%66N*oL=*?fY}@ON#Xp
zkx=dNpUy4X)KK>FSF>}J{|9sX1X##D{Cw$sR&MGXoCv-F_f50$U~3e;05Vh2tbG*a
zlz3C(ml4m9d|?3H4Ok8%<-?<t3C*w=0h&4Pc7j!uJ_G#a4&@Fbm({I9U@VZ20QmTe
zP-mg948S!S{D&>#1J^CdxvO@v;q_3@e{{&X$o#!A|JOcv$eG*_Mf*Qpy-C!+`Q3E<
z{LM!SbwCauQ&xvOt%|0PTp(Q9qG#zoy~{hxP(qpc<X}<G=t3SAkjDO4(gox>WEfE#
ziex*tZjTx!dkq~h6t<sJmt9yXqbUQ0A67WSa49zTpuW@!f0Av~PNBl`x@9wt%4z*j
zHDk+`)C^<_%-i5h&~6LY#{%wZKM<-xa5h#KC^$ptqhmya8%v`zK9|6>X5(6L`FA*=
zT`90Am7xnOs#xB#9rnDIFwDsMG1L-p6(46@NA0QzepMVx{<%O*FjKv0rL-K0dBgoV
z4h*-NW!dAF%v?$K0awoqPs6Q;$E(z3I`KK?<L-HFS$~E3l<ixt-4W+^zrnJ(+y>S6
znhs`eB%{J7X~sW8?}YK`17RMru9^~3IuRDLdGs_^=evW`3er4~L#-ca4rq7|T^z^C
zSB^?v@*8wci}IJ4)0}$rymT?sP*;G>Y7(;X2&1dH>s?OIsbO6X+^lqCb9Y3<g+-(U
zSL-Dg6pj%Uhp@nxHCrC&Q)toZqmcF>4<`V6ehWyC#;x<>eQ+6a<>pz&gt7p<CBrSL
z32NyZ!L@XI`h*~Hj-4CQedh(b>@5j(1Y62AT4{~J<e+XR9+rXc^yg5EeeCoBO*N#K
zCh-NVcrwH^Q322;hH>uq1sgp{8h{Fs$ydMm=9~Te%OB0)^z&bdc-7uJt~nzmIj|mp
zVkGhjFxzW+3O4Z{1;ilx9(Vf;L*iIC-s-69#_wpz!jr>;f8hwS6>-dg=(Y@I^9voH
zM7AX$d*{zlb_<?DYEPJ?5sr14_tA?Ymj_b&%1yRAo=V1ULX~lg=T_D3jPjK%+0^+X
z_gV3*N6<-QQJx&SQSxb^R!cKr1iB+bLKxyphGr5qRxgwi*=S^U*{cd3*K<L-B<&T&
zywL<?eV+21Y?woQmf2kOOO`6$jqwk@7t>IO@+|LY^XRTt&F0L)9sc0wLn58}9dwCH
z&o;iI9O|Whh2~$4U$L&ZX?A9&w_C#waSXB2P@alBim<4{OO+I9Ybu71Rb(R~W5~Tm
zH8_aF4g)sIm_oMgE7^7l;=|9ul4%K?TveG?R{}HSCE)ZlFhV1-&6zB~G1liU2@%xU
zb`AoP$#nhdIp!i{v7<h<pk9kfGW$1+NM-(ITgxhCg7Yw%&yrD|t*Ta$lsTDZ%VStp
zX;t67$nQV`os}f)tv@BPK)ZY)<D}$C-h@;~)Zl8nD`TdqvTYJ2S(bnBy%I2w)Q2!u
zs?lQNPb}*g7@952t<1;it9h_@im~G=wO;`f=LtLiK+UGQvh8D3jG1VlpO|(Ti(xs)
z2F>iph-zQWm{ns!>>5U#+}l)5GCIxzinh8ew71?wSJMXQEPG3y7>uGSDj=7du1WBn
zkW`~XPoFHwBuy=Rns(*I9~@2y)y~}b{B!s;h=`093{K^JWKAr$*Aw{rMLI{3ssDa_
zWj{j;*AHJmYNe%<m2PC@$zIKaZmkNe#IrZ8fH)aV%Md$(Me>A?!7)zcj7wvT#hj}Z
zmlQ4bWKCI_BCkm><?Rj;v8qt0ad~QNp<B#m@ZyKz?A4l}p&NjT68?e<n=rPZyggdh
zd}|QUJ9oB&V@1nnuHL4kH9MsTz?!>>;UYsLwBI<wq`g5v=~k%-!M)Dbl)+-S8FtkM
zJbauokI&}9tZ7rZLNB}H#ZU;t(o5_(gF_S`p-lqt+ArRR-_OXzrLKdA;aGz>+e<Sj
z_$UT*(8^j#2U53>`}x6<)=oR8820%$U%3n|#}C=l3VtB*17S0@cuy<kb9}t!?ao^(
zbH=nCS5|qc#%cxqtZ5$cmrw!@OylR3a@P1F&$oSiMhdHtD%(bAp0DwNTiX}4xeeR9
zn)f#tYyBM$DebdPl`e9p%#AX|y!#wR#RF#-!ZoKUVPCClMIIv#w*Q};uBY=9X4rr8
z&98p<!>Kd-wOt2$e98D7!m>jw0(FiYQDb;u0>LpKTzm8CVdjCKfa?`j7MixY=O7$y
zn3~qDfG~Ew;)knnn%uS9Q|tm=1`b_oTEFg2!Ssew$p9oNN_51-T*+=RPxutN{h#uD
zm{Ql`-SB0QuU0o#D4wg#s^Q{fX>g{hZIhEl)%U={chR<eh%+p$0v!gkw=~pIN!>dF
zWktouzES)|W?EyOIhXo=iQs`eXwf9A>9rSeI%T^d@=c_)e$)1CC#wg#AqjPlxRs^q
zUv2C?UZKB4g~jI0)8<g`n?v!aGJ--$WFa3L#fQ^d#_+PkCr;tgBX;AlS*;K!En&!R
z?<0N5uGYnm?PImkjXFu2rKN2>4*tEholcHR3b&m~RbScFSL$m!eg|kCG?8-ss?OaZ
z?+FnF5P3F2_+a2mgi5m0@CySgM|$cqV{HFBhr-H0b2uUkmAl$i$;WCRBaCBRok6Iw
z?bQC(_!q5|{jw))bm)wS1^Re3CT@f$Dc2^=6+ajDf+Rwi+Ad(Zs79lJji_~WoCwFU
zXWAuq6bB+Qsc^JRXQTKgbjO3~Kx{o4#mff12MRCeye#*yqqVvhP$ppr6RdTcheOE&
z;Sh@Uo$-CcG(nlJASLd(;aaZr)OpX$i?B0C&|QpZ5ZL{7aBZI`Ula{A;MDgTF!eM{
z8AC$!ZH!#OMtH_~5wjfO++nM%WAi|Hnj@EA<*Xvv`V00b>Expvm5?@-HZ*X_g>5dt
zrQIkdpLaKH!U^G3YZ5Yam1dT?ZpAnwxH848GFcz!yC^tnvzIKorKPR3b813B23TJ^
zpu#!ahV>!c=s-9w@|64K?l2wboqqe3yiz%S<h^0wEmn4V<?r)o&oNc4X5B7_qA)@Z
zqU`E#K+CWVs|?TE&driYEGaEG%Z%!cFV)Yx=GV-s{f4VH9JWDb{okWX4??c2tuV5d
zU@HTwHuf|vSKI1&)rk}+*&jp^qRJN)QJbR3ID-buw~3qWVz*Un&JzkzY)2Ej-K32s
z-Q4Vh^HkUxj;G?IqZ^&Wo?$qcE8)O)pimWBcD71=DlZJ{g*&G9lvp)su-=O6>H-6;
zKwMRW?7BcyiUYy~x~901ue1P;c(5s+9fFQ!AyN0W_;6)u@baTF+8{+|b;UxLcGdv;
zWuf;_$8gE0a71+GAs<!5fb!O?9ef~SVW*;P7xoog5hwffZG}xDaLOzj_K8(^$Jz^v
zX2kDi)r+bfE;L>3tN`3#Olcl!_^?)^WsD)4B_}P^nH4@`F9x$njJJ|)>LNn3O{jvS
zvSSh=|IFOE>`2ZOQTSE-0!GezCfnZhVs=QgVKo##6ru!(hC;kOKHrI|?&$%<283qX
zj`Ag)m&nYxN3SaLxFluYKynSyQ^^%cei9zU^UUTScz_QCiK+Wr8{bklfG{23TU5K*
z)!nErjaRxih#nzub7Qr^IKM0ir8|(}X}GVj@y2hUR=etv17K<Z=xk;>>^du&!vY@7
zBei>^CX8B&40{V($l~GN8Sb4%i13H|DaualL}`MJG{_CAsx%^#8isen;gFORf%M-#
zd20t_HU5VXykyb0lQeVC+iEP<oJqal>>WjG)cY)}#AmG}uUk!BwTg;2+-%|QwL@P@
ztwU=r5lj*(T_BMVWfAaWGIoRG+|+yHr8Xxc*67X3_}a5f&O(BfxWC&^cN=F_%yyBE
zVStqLqy<UkrV|9TMgX$L%NOHKqqVqKfeBAks4CT&q;bBh-f?O1N0B5*XJIv$f*-Bj
zUYcvNQxgfA<tV2<B6gVCg^cmYcvn~sNeVUiW43lyd7&d+a^LAY6mAI|$~$tPVbqL%
zjvuv>=E)-?X0zvj8Kqe18CT`5F;j}&bKe<qM&F>EO-OQj$-?`PB%^GYfE?cT_X};;
z@dK!Pxd3udLI(<SDesR1>4Sq!T6b~4$q+h1gn&8zA{Qb!l@3>=^BXsI9^DLoxMKLj
zk#BVcLss9D+^w_YWMMb3k8k^jOFPGpu<r)^p@<)!B&idM#tucA4p0u7wQD;-|8T-W
z8QJ|{(Un+{S<n+<9kHTK!U;x#`1#9ZIFRPaBt?88mwY8<?iAihwJ~lgs7l|%w9>vw
zHb#<VI+>zDM+-d6zU|C6?(Vv)Qg)Ss%uk`@vuQ3w?!_P6`QWxr5EUn_ff$7^v>v;I
zfyLB9Zn`~GIBj*{%7{aP=6}*nC)BO!>{^maBLE-xPmsC@){FcArXeqU>kq+o#nN*S
zdRY6_`KIRj&m6ey{9~r4#KqKgv60yqX3_a(Ec;Ijh^_5_zGwsj<`!0zl<4AimlxOc
zlTZ6{*4dh{?DUsq=t$LE>77dBtdn78kP%6ZmYZ8nm|_!^KmBF@(;qLt|LKR|B)K<-
z=aM+5R~b!@mqg~cisM)~WMkl5q$E3tXxJQ-r}j$byDaEJ`gwGr6X8^VJn)q=V#XsF
zel7$R2n~}a$wW<)QJ7-|ZYZ(gZpX`X$@m*!imAOUz++*3@X-2zAOr5rP{LBnCSJ~L
zmAAR1c~@PgUc*pA*SOsbQs6;BlnbN-<qg}+;GG}yI_2;_`0a0hNR;D1!($-}J><xH
zsAU}Y5AYYSXMS>Yg-}${Iylsu4ulGbL!R5mzb3Yr1MY_sz4J;$bSpCbrQ9!6!yo!s
znfIsPOL#B!@tr-+?=^AlI6Q0orKL=B-al*9{Ox}E-JdVFA3ZaAa^B;yO^K?uxh=~v
z|Fe|$OS!~(TM|6%7KZ9E6Dm$Z!r~&qaT9LqQ0<|l1B;Olc;$UMWNG|3w1O}ijkXJ@
z@6YXGtVv(EZ1aVO5eGe<{P<Jo?RP#MP*QTxr#5}cuj#-eQNy;6_N5}f&Jt-JdWV3k
z;NtK8@~M;4uWc!xI+S#iUgR~E@v;W=;@Z0DPnJ303^_uO2}naQBBR-NE(JZZ7bv;e
z1SozPF05Fv4z`%etXb@d>1ArsN0gY5aTcepsu0@xRA$F>a`)qz6}k8a4xEh-BseGS
z1CJjAdeTNv4$<8A=6DkcrA)ac*wies)g=?5a%fXX@OSAjuy^W<pCu$cjN6b=1+w6A
zlcxa|dddRXwJhVgw_N|DL#WL~V;*oO9sdra-kcr<7vn*7z@mY(K50HN=^cRPYLg_M
z2V1hFF!LfTq_u}cYa=*;98g^<^N3#K8v1)6xepXpJ!LSt?*;RlE(+e+um?F-;+)dg
zd}zEbsy(8>wv#r(_k~dXrs0OdQbfsmM@f0U0V3IgKLc;-fSc1Ts{`*P%iFMJu?|^=
z3UX<1j?dj%EC$W6jy=7l;_V-rkL$pfTuAsA_8vV8;LaO`K&y1|N&u%Ksfm7}2N8P7
zbVs{5p#o_azTwj_$uQLAP;ywM1lT3s{EB=*lx_nl&8i*U$OHH_HTmf{33(N>(TGLT
z)O&ntT#M*FbsWK5p_`<w!#cYgd~HX%LsnnOGTiS=QFiI=l`V@>ucu9S2Q$y^H0QGL
z&*GNNnjj4nEkV4zD4#F6R=DT(El=?@K1L>4=gz+g=%(Zg+eP+KlS>YeAbW;!>l!SW
zA|3m@eMmfeDK&VKNmO-(kz|F2lj@%5YvZ_&18S6f5q1!-XI&2jMQhy?@|H{1Ofo5$
zkqID)v*4z+Z>6eZIX=S>L(5%4P@J&dh48BgW}V=o_4`hs51eWy+U}6dj!JT9xiWr9
zRq|32`A(!?#W|{`m^>ek_(xaX(rQ`}IsNz;51rke9HrW)e^#0Y<~h_hUiv)R>DM^X
zGW*w7)c5tG=Hrf#Fy_MGFhJ6JLhc=VZ(xXYC5FYU!1y@5zT{pD`@_zZ>u7_PoY*@Y
zo;EBvyn>tu#D73AaE*O|DZ{n%CV<UoBZTZXv{Ny1z^`?Fy6D)kA1`iPyncFLKt=eM
z2La>~l0`2D#h$7@cEj+c^ar*c+DHTB_Ahdq$Re|3356H37{6fAT?UfnXVE1QL<ULR
zYFCIDNuk@`Pe3sr8WHjgBKGn&XdhiMa4>8nwNL3~ROB3sQ}0l*DFE>?S}K^+$YKj~
zC-L=e_ABCy)QwsTAanjpR}^OUY*j=%xrjq)a|B*0g0@55IEm2Ll3@Z<6_#}LH4|}Y
z!+OVz`jT{C9q#r1k_bXxiS8lVBo~8w^-hXtZmCmBNK{w&QIDI%XPEP!!#bJcSQg4t
zyl|P^s(IJ+Makh4IIIB6XLGKEYP{|AP(CE-Pw2EkdMY=&&f@3C*Sx0faOH47m|2;`
z(8+gZ%XLWnVK?oP+HKb@WPszMS-T1m&;}7l8cb0NSYuM|TIol=atUMDny!waePJ;a
zW^GOmNc>v@8;N|2COCO30(fT<s}}6tbC&K({3jgFqGM(QqQrXdUF|=ts6tDK^WI7-
zq7TEMN;B(J8v}!^YZ7!ch|=p{fAvWPek=?I5~+a88W=R&M!LXZXU+vfez>4GpI4*J
z1^9fDbCJLrSHCzHIL?y7OIF7InVa?bxA5OddR*8`{zyJl{ikZ!7L^3$jj)P*`i!pP
zkdmk@Ww;upg`4ZbIykFsREK-^+!?x!Pwc~S*e(#e{W+U%62J$}YQ9LBks|FwvC|R3
zv=e3-WSu8F5CLSg=U_{jb(wIa?l%L;zN#Gu8FS`pQ@CO8Ll%v@1hI%3xTay(FLIwv
zCNkHt%XuWL7T_H<(+@&6_``{6*gu;N*y;{AsY3@<3PH4rPg}%QB+E6`Oo>OT4hEBh
z<GCR9AT~N6&2-0V^)y!py~~vmU(~&=YhuJPV|3`~HAqFWclfvJE?ivM2opw-au?e-
z(I<|?N_uD^A~_ovX}*`}_2GUXCK?d20WE8#$_QU_h!xyC4WUXv(dTpR^f0|6lcmPk
zp=1Sjo6w2L$WUW;{8I56sSWqeCCRBu6O>!#3{JtBVP;~SQ+j`xWumoVQoiGI>1Jxg
z`70hluGwAdJZjD|U+h=RU$NJduMvlgPEO3q@LqLUlu7v~M7$rB#wsS@8KK2R?p_df
zPghLsv!h0l&7r$aDubCHlh<_y?(|&LT_x<*5XhJLbF~AnT>VJmGvXs0JrFIbpS{R<
z`p0j2gEKu66Os9)2JDZe&Ot4_Y(D7rd3>PcQgOOO#9W#9Oh#^&1Q{6+G!N(va2L5}
zNEeA1VTfx18I>~-FQ3HMJT`?wA@&HXl+YZhiYA~9AJ#UY{4n<$NUyYe85}L57rFPf
z`>B!KOBKsE(tu#(XJ|D?JcdYF5I>%vDaGbscL1S<1{|PHzLR-a6{X9oo_C-q)=uK>
zXv*nnDciInESr`mBDM^j^Kg`3)^MrZD|1rG8i_<)EZ$LcziDteKyu@g#OE}`#}P?7
zDn`kcE}*XVa%h}gS{94WDOJLYlh3OiT6x5qF1{^8nU37uP?{0D45xtBH;sem5{tMa
z#xTC_wydWQ$)gw7cdpwBP>j_s@yU5`3>$q3@^ToO7}Ddp;%-R?DBYg$wF+AXQAfFM
zmLNbLIon3vn<E(*L7wRM0e1tR133*n(fJ*9!Fxl`Yaiy&zhH=tmH(%SEAk+*fc8v`
z^EYF(9ncI+G_&*p9+(mJGPS_^-26%jvG*XZ>_8`=(<tokI8jgoHhtp7I4*-QDzeq_
z(?P#X@35B-{W27Og4B-S)XlqX2S}AqWjADT!-SN>lcMR)l(kb<WQSXh?*%Ss7Bn<0
zs8?y{28#_;h<RKDsptCg>>ZCN4v`X#cU?-(Tx#5MP6nEZn`&_-SUTuQdgdK+Obb?I
z7RYzNfdx_QR|Ll&AcC6e(7K-f9y(aSjH-C#9CQ%1+g1$!Hup~Wrv!;Zkjxce07XE$
zziJZ<SOhPpP7V{?1NudoqWtKtX|Z>`2q(z+P|;>|lTCu#WcJC*_L2KdUcQVmrv+Zn
z_7-l_bAvKvlpV(+wtn3BV~b_&z>7%DLMF-$%^M2#nV1It+Tw)9Cw9fguj2E^&n+GG
zzV=?dMa_ApJfE%MF)o-dX26U+b0jU_d`5fdx^1+@;Sy-7KjK~AITWK8Vw%{Cdyg;i
z8GoFvqY(Qj6_X$SqvYZb(?>~vD&Ef34j`kF#elFTb7_$`(9tiVH(Vf%ZJc2WqF_5}
z4GLaQPw7UjX>#F@(zv6}T6BxM{zC)__t*4w%El#D9d9&w_6&W?Hv)e=mfG?tuSE-D
z$ar(nDU88Wck%l_fBXGUe>gQ5>$_M#9f!@%s+8s<_)Vt|i^G?-h<M+OCs6VeYCpE&
z<dlc#`H+tqS|vO^D|-`m{VZ9z9B6>De3waTGH6@FR0obTLnPkQQ7;&r5hL8T&RE8z
zfF)R+F^BiY>NW(X+@O?9_6=if+4Z&xYLNz~(T6xJI8t~rcTt9}M|_;)0WC0RTNG**
zqBz!c@QL-Vi29iz!eWf!*ihFRD&an-w>lAo(B_8G5*~ho6}Fmv>4xU{^{;6h_!aDv
z&gyQZAUmNqEi4>{Q2r%1;o3y~YWI-*fW~o8)lQVn7M{VhtIGPA7yPca4fDCx5Y@yr
zZ*JZc(Ar@G(C)OI%mBzF-7#8h1EPzhupw=b7~4kH9KN_pq$cquimxu)R>Wd#u2$M7
zIH@c9c#y7{3gvg0k%z6<z*<|(Mg!Vxpv`?3dO6xo^WaxdZv*vYMD&sz?oCnpEkGw=
zlMFo;q$BFs4mAnVI|@?-cW2fLW|JV8l$~$OrVedR1o4t8l&$tO)sJ|qj}L6gEJa4d
zF_VsiDB5!<y9Y^MI}1r_gcBmC6R}w5OND1{hcKbdiVn8}Me!(kSlD``o3c@LJ*8?$
zk8s<*q+-$RK)nXU!FzB5UAVC8U`X%mKzav=L*PH?;|sn8hZ%FJI{B0r>L`O};_#*-
zKfQdR)c0!kPt~LvpDGzk<L%q8KC91Hw>&@e%*uxb>RBuUVCLWpe1HVa<C@Be{!nfW
zmJK%S0V=iD`2r4r4(K+wK$>kpzTI+VQ9+6gi@X#auEWpI+aj9js+$1cD@3O~@9lZ=
z5HI>E6{boGJr>~y?E=1`63-|1iRS*_Htt64H)^leMSuO}r$2vAdY0+0PMlqte7~mt
z^|*?0xtHv8TD_Z>O;;4G1nmRRwX>ZE^xHqXDP)w<gYVsQ9k1tw^A`2F{qEO4#3A_B
zZ2gdlSv`@?!-disM|MQ_<s1w{x1h0`pn>csk~(YdPD?bQj{tHpTLl_+pKG)147x38
z)=wvWXtCfy8#KrNv`cm}pwAGqlQ?Mrun4GUzGsx4%ur}(B#Z8RHyEY;6Qi`nMc(<u
zS$*KT;E1;r(MwZ=ki-g_Eg5GylVjiyv_a>b%@-Bx`@L~xioWgImD<Jl8kw@Sb7n(x
zupLyv*gExWQ-Nk^Brg{S<oN_h+3aJh&KES>CKnQ&2RDT6Y+fM%Wn(?GV|TOI3n(Oo
zVF)tOg`a0a*~cczPzoE&H5<ywt<5Cz^SPPxDA}HimCA|FErzNc+9zxS`J3Rb)H?Ws
z;Y@V&5Yj3L=EyZrK*?^|W;K+k#Fl7cu<!QB2hRv@$hm~mJd<SqA*WC_`Bx7XAR+BV
zuRMZ*;>wHo8K4XcxC!<|`UAulm4RO3OU7P@1;$OyTZWQk;V;EuQQ%ZV(2-LH^Ve{A
z`vom90M@kJCNsJYj8UW|f<aQOkj(ZjsVMenVYZg1Heq&pnc5g!)m#99iyxE~?w|<;
z0n9XvxCPxn1YERfQpHLKNVG&b8?)8XH+d|R+=htYf-WPnrx#fkk!_I9B%2+y4D_+r
z2Mk7*QNC{`naFEs$5#=WQ|F|DPy!J?2GorNY;f@oLd4nP9?TmnpV}*e`Cz>U;T@|O
zjb(ywpkd!8vzZDPFH|MibX9U7ao|+UGgpKXQ|FM2R5^3mS9ddUS_lts-jNK-&RNg_
z(liRFtC%)u!gikJ`$HFyi{MwmQvb&@?u^#@<M_zJ3<nO85>Pp3pd0R`vdvcS`AKuW
zcrKkyT|m!R@+G^oa)7Bg*9Tb;8axnJKHiN0`p)-IHB^1m48C>vry?XN%^555SYE7h
zJ`Aj>quL%bp>@J}us^7mD$g2%XxH7!ZUY6cum}1DrmDrD8<;eJV6;Q((O&b>NM$NR
zqKmnZVAL8iuFXNx3wmrPxvY+8tzID-E}%!@kH7x&Pv3t1_Jb$;WYb*>UP+5di@5ST
zL^vizcH^>|_L;wLdNb4_Z#QlvM!dL!6WS{)&VW@b&dm>M&*2C^MG$T-h&Bdd0Uab@
z*P+CAI`5@)Ti`8Q+%-vM&*N+Bc4~uy<KE7_uX5V(ow(?Ct}4kdoENyKbHhILz@s_8
zk*~GtnA0FR&XT23xjZ7g<=tl3fXqX6kQ2TTOjV8Fn}tae<&mB=!8C{lXHI-E{gFR6
zb%g~EL(eSz(o)G35Bp$<+ZnPInNgu%M@E_T0~v&+2?I?maVCj$YHd=)+!+M1g#-0W
z&klFQU=;yyWQ;lbyoklN_#)yPaHF%1H%phY$(fGaSr4+}BriMkTYne1_<Y4Z;PT*2
z376m;SWOkm7AjUK0;dwh4wqI8r^s1|r^tRw@^e9&20haBJ&~Wy^iv@H#b%oE!zgEU
zvUC3qCrE3N3{1liku8%2Lmdejz34<>8@bLpi#mEhGYNfz{X{+RlzgenRCyunRMn>w
zNQK-S#;ICbD|0x|7sRU)MKb%?zKxKUn>*q-)M`bbO*$5fHA{2}ynJ7*3}q8xBJ{+}
zi|j+7wOK7T3N?XDREi6R<kf*OQ?@j3(J7a%@eFlG+e}olDN5-PLb()b#*j{a)o5R9
zb&`vz=Msj}`ElOWYZzKO6^}VeF<)@!3yBr%&vKyrWioX?K`0nR?iO?lcgYSso&2U@
zHrklOhY-rChGmM%*mw`w!md5DG{Ns%V{iFWNZ->VYLc2=g9gbP#PAwhqi(J41U6?f
zz`5ju7#5x5h&B4RH|>=3qmkOT0|b>QTRZfNATV_+izVQwTf|L3R}K^=#W|uT_<96Q
zxb$uX93EiwqPAIiAl{(k0bjCw_Ay$7@?}5`#>O{oIG~}8cw(Rp@QP?qrR~G+Yi0$y
zGI!N^-)GZQE1h_Ea8JX^bLNu$cx<ZaUfF;B=il9b`Z4PHx5zWQ6)mNTIsr3#CF0vH
zb>^w~hu2aTqKaYSqJK%)Tab`c{07$grA#*71hz17`@k)MJKNL}g$7ujeW*+yPkmqA
zKi$6l{m0t=%0v(3g($W!>2M<CTb@wA9TM{(-xtc}u^lg^ZVs^+aT9@{W$v{mXQag<
z2J*|?<KX@+Bgi<9UsTd*qeB=p^vySjW=EAll8lSX6QTm#y`&lGQCSe$?m9{|;_BD6
zT>t&O{v2o?_rLF&zrKBr|B-)%0w4S&`iJd%BFGEg4_y7x{~@l12gDTma0efVVV$6|
z4_g<m{GO6u3eex%`6CP1;=;vI>(qL9l<B0uWCF2kvqW6HL#n|@AWg=hfS~W~oKPGJ
z$fQhqD>b0)dF^6ak}1dg+kg@%+871iRbaoS)KPsDP$3KfIshc+VP?BJs}ht(nij80
zbB^$y`Iqmi)N2{}z6-i?1pauHivjUYJefa_BwK2)A87mI*9|nE3XqYuEQRRmN-12b
zJku5-oh!IpX7vwDDO!Ii3JG~g=y{yywiWz<*H$&&av%_Np(V$3)}*Y(WThrhe{cNk
z0=Kwyk<CGeYn7vF!CthP@$4y)dU)j<DZO&n&!b?dnye4*naE5>p5zc(i}X6P#V_pM
zsSO$7Gj<X=#V?P+7#d~y*L4zCmj1l{=`n@c>nU8&T7sk*)tk)f7&(klUg?dysDtBJ
z*EAKXi|8F^T@ErDmGKq-rt9AHP`WqSo}PH+^W9gk@hfh|qw&mZmv6&83V6Kv83+EA
zIl-^%|J0lyb#Zw8@-z}S5K|2S`g?o)*y6$kqZV;17^`$V1oF*>cbP16gaD2JR~D+E
z6fsmST454O!2x8(&qN`-ITzk<MPAhgjm8$+ov<yvre2+}=(;L_;PHpWverQNtC6*~
zkbihzowLGrkfU(ItmLJW#?H{!T-!A-{d_I0={`?=KcoNl?RNXoV>12p6N2@|+5@?c
zuB{(BAPq&1Kdn&77!DRwxvWB6qs7X)Oplp{EexYAV8pW}XnUTOOj-{R)+{U?iFbzB
z;do7q4(MTNA@WBSKT)bUy!8Ra?Z~EKmQ#=8N<vS^B!sYyaH^$XO9a;<`cVdG(-v+;
zC*==BUVrJ6@+5W<B>)ZOJi&dw)`L8sdr}C)sX^|Nrm4xgotl#&s*1ZEKY>&-t2TaG
z0bTbwMdBNu*9KGO6v60OD$|BA%1sa*P`hQ969Rl;xdO7FUePvzDiA>vqy$Y5Fw5te
zUJprx4Wbf^@Ix>C=Wl=c-Jibw{nH+vX8kYh;VGfs%iTHeL~dtDbsd2(`{Y7wpr{+1
zCv3neC%oz5&XC-D^w>h14)EC!uxP^5(@I4c63ICWLZh_vTEQ|iQ7vYH{bNUt&bfcq
zOZ~b#S|H6#`9g@@_@hJ!xN;-26vhhNjaC78>fgY14m=|f4QH3aQ#WC>3gLcy0U*jq
zo(;qfGg+Xgi;Pu3FHb0&iR^=k@USp;h-}W5+jB!x-<Kw5KTQ;wtqFY#Z<Y6VGSB%!
ziRT|Ba~?6VHEF2DpcXE7WacE=MwoxKl*NWwMte0{j1gIlgS{h#+9Iik#~+?_>7a+W
zUzvs3OhOAgK^5Bt3BgzgEDgC>?S{IuY-UDbs9^Z(X3s~nyilF!#o*X1J1pa)2k$2Q
zpW@u`<L#O|hMuABV)j_~(^X%Qq?xkASX7YX9qXWljb6}Q`cX>_awB^{tB<A|t7->e
zgI`FRVuzAo%;=lQv*}Z`4bJ#sAA!n%;jq&JbCB4Q1W<8sS6g^xXXPA3?`dW)QTM8G
z-ubFyXY;LT$-EBUf{O=SkNRh{et<}IIdby5Nxxo2qO7sw3bPlb68P!~V>ufOG3_x#
zkJySwzZSOEpjl%US|b*`fvZ6N4a6gQt?kX_!@9HnAY-w9uBowD@L|TGsX^&zft!ZA
zTPYUMGY7&nm(j>9jf8QLZl=(C!bv7u%&&~3(VO&i2S)4wGnOhd%wMYa3Y@<!<z$<~
z_$4}2gAe)@RvC~?D-DA|*z~iyG-|@xPloAnIv)8LGFW0^A^SK7zN;x{-2x;B5-;k_
z7(LH?1LUt^lf44Rk4{akOJ~NSPPe?eI=KLQsfm(mvZh7m{)&#&x_T$31s5zAb)QU)
zWwj!$lTw;Etd)G8_GLB+f?Ub_#P9y}o8L(>@<|?ffz+b;<w#`Q91*!e^+nqN9D8*g
z7FAE;@1Q$#UaaEGt`LwfY0x=VPHK3)k)f$0S22ds*%U*DV6#+9-I(yR3(i#t1*A7w
z&cpaL4Nj0FHZXDE*hey9=il|BVq8kbYNT^{pO9MEeLj*Z>HyT2=&yV<-GaU%hng^R
zI^+1hDr=o$_+c(_K?A7fMm|Ubs6(woYo=UL5;D-K8xyxM0%vD3fQnA6b`s38n;;zw
zStW|Fr8Rw5(|$TydVQvGgkAtBg%`*GPw>H|%_ATa1e*5rTPq<+Fa#}SF9{6Tv(6+1
zSPvQaY(A&bL$e44!NVE!HU|Fn4}bXq{fM>K6XKr57K_=BRn@Bc1HksNxhe$hXWwyO
z7mM+Q{oI373URoTG_YY>R<H8uz#K{XL-vo>>7i9@AAmPhvWz5TT2Wd^7D1Ruj2)|h
zgm1dn_(^fXMQ>Kqs{sQ*CeMt)2Zq{qkI}Z_tvfO(Uw1O1sAaGk#0S}u#4FYb%?sa4
z$(ji^p~}8F_U0sKAbnJ1Vi`&s;o}^dUuC0MDM~Vl5Z`HQKtos!rtU}R%?9WgND@To
zq9UlMxF-l+EL^a+w~=YHc9&p5VR0UYA(KIay|uQ2zY5|$s7N%}bq|Cv;VtCfvk4-)
zcG6=Ql72`ioS>^LDJv|+<l-j{0%L#%Fjfy<YM5EhcYvuG1G*)~DS?*iGz9PTS@B$Z
zY)Z&PK~p<}Iq0?hb>Od^ww#fJZ)5Pz+Y&8kvQBYid688S0+rpDp#xu0yD`b2*|pd4
z{YE_~IdzX)=+YxwqP}dTdte`whBs%FDSLJO_#^~G;J>;)5@})VjYe<5Pp0_u{yK#8
zI!i|649CgNoHbk<%&~j>L)+pY<NyP)DL@Yk^%}{7tV3XB=`^QN86+gM01@}JaVV*m
z(*vquS_pw)<a2mIyH@Id7?-Oib}#)t4=5Js!RauA9LCg-YGkz}o3|SzexQpnDtY8J
zqUqRrva0N{)C5^+<Zkq<DzQh(&@gVbu{!l@B+if%AJtI<mY2r_omFj?ktfz_nBj81
zdET*Xk+GC)r+SYyJa)~1M(}wy^sk`T5`dwHh0iu@!y8_m%2vGhFwbAqc+fC*HL}UH
zIK9Cwi085{2L!R7AGOP{pEfJXFKO1Ncq-xpoj_x3B|0-zOwX$l(73ufob=81y@K$`
zbS`Ii??#7m9()|!wJ0JQ$9|{&Fk(b*C-nw^x~X<=(uEEb)V_3#4Q?q^kr(U8Q0u@9
zZVU~JfQ_?c?Q57cXmAy#sbhja6AnV&>SDv-Zh%uR#2Zl!^*Wl&{8)M`l@wnPb30>y
z=(WJU%R#)b0irxatr3{5*+RYS%mkY;Y!CKbnm>dYY!g9}08ya205S$*qK4FiMF18e
zayNx(dZj}K*HiRNHN*<=H0LYJ(^R_9uua1WBg2}4w-D=gtPX?_x-lMMSYoq;&HNy3
z7&g#@jfbj&$v|<%{<bjBF4BYAklxl_GISSo6>Ydo1}@NY;8VpI1u2CCq*>&krRp-(
zGOgxiA%YMbyK6(5I94|s#jGc!Ak;_mkc~@=?U3%srjUmLn+IyJx2!VByT}0dAoiB7
z#%ci{+jl6LtkXkEqZ3Q_q+VeifskxkWgb>a#+*I24LEU_2|ekORSXj@2;*)y9cpPy
z)nb=ZluQW}#v;KUz~=7@Rfpi?yxev>W}9m3@bd|-&o@}1)Z4lm-hg(N^^!*0!%Uqy
z!>S9$SQcVB19qwLwc<@G$cnxzkP3!smQm5G8R-GKdU#>m#o%EjzYtDF@su}s8t3(;
zA)X|(8<Ji3igznKG(S`_KiU0EoP_9lR)!qwCYwJOY<d-!nuY2a(UUF6!Pts>3hqv4
z%?QUpKnh4!BLBkg8%<bd^b)qg-Wn`>miWB4jfjIiTubT+Z9_g(%?{cyq8`HCLpZqT
z0<y=5Es1V-1OTR&yd@s=S1h#!8MeF^8bZ6aWZa&OgbXu=?(|$pT_%D{C^<vLsE;7I
zhTn!zpPss%wbDvIV!4Er2J!8gHUN=;6i>uz$q=<9K3TKCulRLSBq45U2)dNB*Kdgk
zq0yeAkTFlYryME8DP*#xTe_x^(<pl8!np6lv^RB|@9`FsfgF)9><eh2bXc=l8iB2x
z#xQ}3k<+;7?<Tx|Y?W{qj(?Gsci3usE~^*#+yMJRq?($cYFyG|&=T0g7|O%;b=ld;
zxf32p$l$RyjQxW`-Lg`B=DpgTKPT~p8@;0vj1ub&6Cr{=T!>c3c8QBOt+t6a>y~+o
zPAAd1_A-LYb7Sbm#(odih7ZB8NZa(grK34Av1`B{DSDyB5GB)#pef_p=u@au29WiV
zSdy4#*@z6j%$(v!D6j?`jST|aw?M~B$Ad(<ofWC#v%rLD-xSWy%1@uiZlArYWvE1k
z))g9?XIUf=X7`CWNT3Cd=rs1cPsofQN`}4rcyUHB0H`wox&p69)B--#>`A94sbFj*
zlisTssasfSY0);q=ZE#k6dns@VZp&KcU(^(G$tguvOH5m52DfsD22LZ+mvK`{E(1`
zD79<My)1M(0me-=4sll5VNCQE&7+izftt-*H6$4IHZurz!J}{(F05@7`v^M*g2P&p
zl@D}Sjh+&q4!6t-O%RF+JiYk|g9Mgl;sQZapU>Y+^Fe$ELongJ%y4hvgpS2FBrzOQ
zn|Lju-~{`m9Sx^f5X^npk%cf8=r-K9*`5Q*XdX0Og&en~E{0S~p;aIakl%_df-yu6
zPrj=f3|&av2qEY6SDu}a4>nJAdMg1}Y+Np>S;3f0fpdGK%lMm{8C1}gx^_ARR@a7a
zom!lbxZ{bBn+B)aafZ38kI-DI1d2zgyM<+X2}-R|&m;i+4hv-UFF`>%@=N;=lom_C
z?!9j@s@85XA<^6DkFn#UV3xf-%#88f8l*u4>##NM)@=w0-s~00<oVBD8Y-0hBpM(F
zSprK@$H^!{G3@W}&`!cJYxQ9Whjj={Zk_=*3pXG*4zE9r-JXI3%~MW;f<%_c51~rM
zvVSn}7QV&m9e(r8D-aYMBn5Mm?zc6OIV2wG9`&Tt+cYr&OQo+|sG)r&V6Z?vlbQuo
zOM5qIw4V0L71<V?C*sq;-v0FSU*^_7N>8zq$cnLM>&zSMoe>t2<RETLkZuJ{Az@yC
z-T>7B26XM_QC(=g^cqWjq8Fi~EZcCz18GOGgUvD^yV*ocsCQ{l{SGBjMHlXk@JvDR
zFya7{=mNS|wuQ911cwjP5~)u!J7SHUk@N|%@gb83PMn|OO*0<sf=hc#<m|2%WI^LX
zyMSXz_4JSpYf=#Lyi<ekUHZWmh^~YYUz}Sw=6RwwvqoS7Ri;WQ39{n!h6q#Llw)sL
zh<CcqATXGMNCZX^^B(){I45t!_Id|G{m2Fh)m%6yJI5k42*FW~$;=naP6wG^is3;i
zBS5t@;R=TyY#}-at2&HqwtJ>|$yH!@jL!^ny$w`^(j0FsWDJlD^8r;e$g_v16}K3w
z8=++un^&_B8w{qIIumsjRbutT9c&vDKyOeRBaj}1QjYpMyZ+|BU7RO2R?ux`R#`Pd
zEraKw`w5a|g$$%K@@()k0u=C^UHrka9^qH^X1d?HAk~}aOx7)yALP|umUUG)goG70
zG|K=Z_yuRnG$Vumd`vKEfEz$8G!6FQnZi2>9azhYo8-_{Gwd5sMS*bkMfa(OBprO>
zh#MqG6(V=<aq2Zw8OiGqgXW=H@RmR-j1|}@IYBL0c*r1HX=bvAqJR!>TV-E(gp7$s
zRTC&ofljaao{5ysICe;GQ(W)~VE$yXgn-*7UuM+`>-K^GUe>x<)IO0pL50S*V^eY*
zeKVOmiv$fL1{ru8t`qQccF(XjlXf@yxmnA>8S`L$nKdU<6HpSk(2VNJ@ChrASyon1
z)6Q@YT1<}M^Z_+pqE~t>w%LLa)7EMw)q4sKAdKc_>Up{fG=soxP~b^t%0h2wL6WIE
zt{2WM90YviBI3J{3q4RTn;o9dh(riE!1_RmNa?+pi>PreI;F`hmK=#E!F~-Z5cK2N
z;GW>s`M#s4(9%MsMj&Bzn^_#x$t>oqFg%0+=6RlANLDeN`8528SIo#g9^{ls&G(%G
zN(|}^Y9D}}G(Ws7yi3%lP(+W=J4?+(TI4Sx_Oj&1=g^=*Q12n_d#EQCxDvwQ8_OxW
z+)E@$VWKTKLD&(|5=h|47*AwIT(=4+6hLJAo&;bE*62KTgDbK+VEHO3fkfn;B&}am
z{@Jn%oy1my3T~Ncej~B0`FxQJH*w|Zi(__-Dw{RzuP#L|fZT&6C>cnVxTK_|b-oPd
zx`j#l6A>g?U_?-Ao)pPy_cx%OKhN2!5|WnS%o2SAsV|YwycmJD5TC^GgJ3#@AyTN8
zJ)RbnIIYO_+nG}2&-)*K`rF$NR<bsCma+5wym3AMzLxxYl4Mp+$_?^0rwi+~alPzd
z2V1RvoK@4)b88A7Q)ay)jrp2o$ND9bPF#xuZ8XFZ)ADYT17O?+N!XssTp@W_WWjlH
z@3rLPw&QR@pps7w`&Z`N<=b!mr{>%l<jw2<xYyiifByD|-+#_o_?tmr4f|s#sEf$x
zqHGR%D(9swVwIxc_=W1y$UidR_-EBSZ*2Sv7HRr%lo*BfY&oB;%L0F)!t1ff&O3(Q
zDYL$bI$-K=<YU6WHFfd=iVjkmP6tX~$!P=jf~UCSRG)vE8HCfANMqnN%f?_yl7f+?
zgtc`SnFwLKD^Z)g8w8M9?ke78$wz5Gr6}a8_bF1^iL7M3W%->O0jnx`WFgx5-a&Gp
zl(6PX${T4yMIRV?ujnn2!_wJi{OGIf9z+v08!nH##K<Hw?1~p_i?u1@d$^es1}}4P
zGG2OvSiN-_ev>z=b16(+&tv2IMg679U`n9J9p_)A-j$#aJ$q*VXgfw$P2>t#(Uc97
zly8?q+m3#VI2=f-$;?@I$P=xgNDq<yByY;eiJT@XJSnNs<L7c->!K+fU$3!)W<gr0
zr&9S78A(nP<$O>)<uW*mnxr%bWN33%FZlOGi#CUA2XW*a<35nQwN1lJj^F+1?UQRz
zZP_7SEbtwy_D~yU4dd?$RyvgI5#)2#Ss%XVBe55Rev>^u?p=A$7S$1UE{c>l9}<~9
zFE*7mb7aN3$oWH%iE}zT#HqF*O<GUPyoc66)rtC!*BtwcYwMe;(>;%+cL)r)zOQNe
zr}g}rWf|o?kV^^(8RzNMvzg#a0gZdg85_Q}4MYk)RG@3tvPaeQX@6;a_az9IC0fr8
zv$)U5$a$hCMuXI$7!Z;m16B73N0Cnubp<8bjOfFW(>|NU4Qpt-x1%Az478faMVLe6
zW({$@<FZ3H7pyDn&F+%Iv~(}%A&GEm;2BS+nbO>w`91_@IND%fgz$4~Z1mWDhI}A`
z{D$j$zqJz5;)??eh1DONVyG;FEHxWjxaW#BAhTWJe>7Fo84iN9$a+AyQM1YSQboAf
zqA85gBT!#<oJxzktY4gAs1ES%tUi%16kFm(SnT2~1{Gd}rdqrR73F;wv$sXWreQ95
zL25n%`BW=VQh>P6+|w+OnIft{>iGK?Q;?{EbzTsQQsWZR6VllaL;VO3f$12fEkKTT
zDs{?UuJre#b0?<ZWdjmj^*5JZktW0N`rw}!s{_@l$1(U7E~AFf!4NkNE^r@+16q-g
zb-up<bdoO!_(sOVr#WnqJu)r)TN{Uip>>zU)i}KAU=9gLhf5esrNYnmgK4;buy-cA
z)$CLhew7mA6e{=j5M`1<7$Bq!n1$j(fCCo@gy!k-`j*d0$WM<zLZEwpAEz3Zn{9i0
zH)~IO;{ADl`RekEuYUD~_wo1bNS;A{d5{6{{S`Jb*<i8S6hsJ4Z)v9G<T9f1YEWjq
zCRZ5oQvwc5cGXH^)T>5RMS@HBq+(8PqZg=UPk>UY%DN}_lZF~(=rN{?rShKE82%Z+
zdc#7OA372pFoQg7al9mNHa=V$0?blvYU$adml8h#zM|O2f#*2Gk$Z@T&6jNDwuBMR
z=suV}7JcdwAET0G05=VyYrylK%_5s^@HSRzs4VPN=(g?gV;`ucg$6eo%-n_z^v{w<
zW*a%A<@3F2tBiHFgNQL?LKO61D8Xy~Z7PULl~m(~)BiUG^%nfYvbM~mBL0W-Cwbio
zmIr5KO$&MzS9xn!5jeXCG*7&zIx~2dl}TK<1q61~zM)0XgSX@*9NJH9=)x7`xX$@0
zCWoYHtjW8JL(j5I8Qc2)vLCx0GSli=em*vCbK|!7u^V=G!~U-IABfAB_%&4KO`vBH
zI6IfL!`bi>Xfexcvj=NqjJ&2F%d86eWpM3eRy;!?0cH7t+xq(J%a1>^Tai;pFmOwW
zm((RESsv^N@#=E2!q}urEmN9pU*3ctpdBmAlGe+%0Uw5S_yc?(+ed2f;ZuNOw@)EV
z#K9VdA)yyR)-veRIaWIU#*mc1$$eZk2Lf9%y7jtV|Cq?#Og%VB<Dur`DQ5g9OXF5U
zDEp$np2P^Y$8x~l5V;P=6Esk42PEZKs)=ikzyXknui2NtuWWv=8ro%$13Kdsd5HzR
z>sr}vFMr4xn}1!}Dfw0xUd6%9IU|?YrOE<7b=<mzECoEywgU0lh=9=pk(1mjSvV6i
zy7snXxQQ+rjl<Q(x{-TT4v7gFT_SKrb+Enh_w-);qW6}Z9hOXN64Lu*l{7A#n7>l>
zxFEXUu!y?s%M}Ji1Udx7lfyL-JRK5(!>((_e5E5aWu8)rki#1j6IWu}#G*-n?q`0*
zre4f!v!a6fWn>I*GX=xcUP1<YLqwL89CHd~E2rdmtz(Pjz~-dwx<yW%Yy3kpp**F~
z&cLumZ_zPcd8Ig1-bm&LsBSVOq2tOr7ZB5hg;LBUXP;1;i*R@HLXQ~02iuu=3``$A
z_zUrI*lIbD$%ba-t6$Rg>pw%=4cc~&2|}ZYsAf}c-@yaC7G_(1tN4Frn@#9J*ox{%
zqjq+J)1{7$NCFjJ8}Dn53oI7@?is?;{HvdT|HqfhXBm;BEi{QCz`ID#v!cp+Vc&32
zIGWNNPnk?aJ4*|qPRs7BetOS2f_)bK#=J@UTt8-I#Y&tiS?*x<aIgpWfE=bhhkU3e
z>*wIVpyNhW2_uWCkEkh{K&S{3rA#NJwics$Dh6^yx-&rPcUX4u-(3=&60|%8g^HI)
z#<w&uZF9Ol*lk%>)EA>{q`Gc~J~U%%oJ@WI!Ukw5Jz=s4nPdrDk4r?PLp(^G*Qo|o
z52#-Ix71QS%MV|d9=d_=*TQKi)vzT)L#;py9cQ(%T|*yndh7HtTlb0^MOZr`1PkD9
zh(?du^mJrGX6xkKXky+--9%c#X|>(w1MNQIoJ{1@Aw@(`7*256(}k}`)YfVif*nEq
zJGiJa9@Mt^XSFd%j5dhuQYDlRgnuc}Ls%l5TsgYX8Zk$i#zI@c1Vv%MMV7sDA+Lyx
zK@H1gBjqt`dq6hTArsQek^|;bgPkC8Ec0{3KuZT!224uo3L8?QqSYhkny;g2J2-dE
zhP#=WX5Io>4pAW#oN?54P{2`GxbvostFpng1_<P!t!ieZ#VR0h&M<LEju}-RUmCdP
z(NtRMhO(Hb9*k;o>aoSS211ByRrvK!o`3aO#{PW=AcZ9)oW*_0T8QCo3?RFHzZ;`%
z?+L||&@Z%myR;XM+*)~29V>n*ZsIJ{!wY^{a2;6(m606NY#qH&Jz;T-PmJ~(bN$_N
zB{i09luc-B0a44=tu8?#U~t-E%&dZZ$Yj6w4hM-*m6(64=Mlo&F`^;QK^%8mL4Wgy
zKYWJ4Z6~tCh6Su9>4Usl(^Kxp%sr*ZX`#FUqjO0I)+O_MJiu!d{p+7y$|o<#kiLJ_
z<XjByH_8m79fq|Q#|6=)mYVnof)QGtbZ9@L`VY9IUa}1-@=Is{ZrL6OFM-j3hj|ms
z6Lvy_#Zr3;40L}H$iQPreUsh+1xrA7t3D!ULB)ec@zLmX;uT(EraapXT5B~U{=EL;
z>tBB%5U?<|Hcl8)@LgkBJ5qhum?!59#%pWU711Th-KX`(cqGhOvmq($<zc`6kp1J6
ztMS%2b5h%NYF`0nJL*U0#FD-0jKM3{OXXaT^Q10UE<5Ls@CJ(1*eTa<@FBj)tK@j~
zfa$~HHQIth>c&Di>3Bx?lffV^JV$kaa|^g55okM+30T%%u~;2x(z4J)sn+$U5bC*H
zxiZ#GSW-A=>@fW3=q;6@gx~L`fD*fHWQh86va*`rz(<&JHkI>MaqqKlyviH)2iHe9
zO!_?T?*wYpk?>X@&};;;1eEe*6ZtAEJt7x7Rojqyp(p2V643{_PfnBM^r?@lx{$c)
z+%U7lsSnUhQ^jRPy$CkRG}vPjiKcGUrC|%xs{dbCcB?D3?Yl2H>l;k@iK_i9W~_ZM
z-5ZV|ho&#w1pvLC=dd5`&gpR%?hf+R>9>^jJEsT#{mI+k`*zpXbeAQV%`Z(1(35n3
zDL!!Ldp`qay6&EP#}0Tnj7@^8&(0g^D?UZ-GB2}3j&dJG-SLh~q&3VRMMJ**r89c|
z-t?Idx|-_~1DjqX1u3hrBt_4C?sb+DLQ+do?|NM|oMjDZ%lwC{k!LYuR^n7s)geKz
zN>AjhP-t~sqRxO#U7X+EeXq{7E<e#BT@Y72ooqkqS#b^{i%Si4{xJzP?$|WWHULoF
z%AJ<&$@WtPo%oVswh9Vu)Hlh5`b#>VVl2Aw-og^T_cMjisCS^`qeiIhAra#EqD%d5
zT@okQ9#idibXI)P(WP7z>nq(2ZT#N@D!G=sr1<V^CBASH+@+}LCFlUs61gaWMZ7QN
z(13-e1-Q?*?{4LM?`N|cV^zfXk|wD=kzR|%1ze?y)xE3qmh<sYY~1@I)9qOf?C)Kc
z)Lg@$>iZk(ulXHCDUr-a0hAxpB>yPq;r@_@Yyu?<!yvwg?`f9&><8cfyygC&|EDbg
z(qFUyP)JULhd<Owl^QI0%sc+b3q17O-hqu`7f^OyKG=v?P_go+MCQj7kY!}D@ZI~S
z(-D%V2G4ZSVyVna<~v&Rcnec;5zxYwu>SxjYfk#!v6eoLOkCdG>|NkwS!|}?;@}~6
zk0q3hO*UE4klQ+k8*l+1De|`vfdlmo*i(1+iDdbCCTBG~nhl<Lg-oC-l#2k>UjTeG
z0%9_dGK_0j+iHv6P~ST7TOz2^TvJc^W|u`qUyx*h=oHzw)XQRXW!Qc(a^!buvg}W7
zpgd*NsWuX{wXf|-`Snp5_i?3IOt8fN{Pow*6N>9+pKWw1_!co5-(H$chflT;R?_j6
zC4JQeXFsOj1#lLBHsxX|*BCJ>bGwy}PO8hy78Gp2=`HOj<Vap`e{M>gBhd}#uCLWk
zj|d^6qE|GIvcYYlcTpwI*`IB9KJrWQy8ig|{I*IU!D+#+0H=NG3#2oQTA%3q6^b)D
zDIE|)F8hJBy!K&d$aPoAO2BI{1(nKyB30yt86*{o*pPPZsN5Pq6b9?SxS0PL2;!?o
zV!fq7>>EX`qNTNJ+pP%aTpx;1D=9*)<R#bO)<8<zRjM2BGIk1eBOTtA=s{@^SGD)k
z*nPu_h+zwI<BmsNGjfQ&s+<&mc!*03Wz}l+rG0h-r8Hx7G>W4nClmsd`=G3yvecp6
zrL=YFgySAdbw+8_#`U5MY*Ss#w!Z&L8AL-`l{_g!?V||VM-e0x5oy&n{NoC#CN9fY
zY>9T8yMMtBZIrU+Fk4`)-;%RKzH@3mjmV<)E|$vW?sTzf?{7{POisOmoO&*^gzP75
zXXJF!9MQ|9v)rp>6`E`0UWrA4Rk*K)J6-;=q&t_SV)|WlF?TIYM$TEio4z~db8(1$
znw^y5U6T0tRvQ0(EG>pRRqL+tRTtvytE!dnR4uOZkuS?x?d!6IihgsaQqH<kNyq-X
zAk5i(mvR>yCQhfe?=b=?_2(Y%dZgpS%<MgWOVQ-+NDi*ACnpC|u(=Y}!*h^i@Q&0k
zlTSNWzNM54tB5pNz#Q+ioVLk@DVhj8$hRhGWJZ?%`tg)geExWm{KI_V(^az`fAYRd
z{ocebmW9*IYRyw8i`z|mQ&m;>44X7Ns=aDupX8KvzqUKBE4-5i%7$Qv5R6wo#Yqzs
zM!DEBRFzxi%P#bFr!dNmT++RBr+|or>{>3IGlfzZ<=!=kjH%?^_2pNU)zGTdJAbG3
zlR8q?o$Kg4b##L%mIkZXp!T}VSE_hN6}h5YI+r9#Bj!WWf9AXEU!&;5@16QRcIX+9
z?EL!k2Hk9Anno0hS?WC!3A30$cl~K7kPp#2w$G70cJ6%&1#*iI!vE;6@QRPHDe!&b
zc;0gg%Qqa=PuF&?-Ev|9g9DAWY-E$aSWFD{uM~qgl41-8^e@%s+hxFu<iA{s^frIF
zl&m;)KE%f+jd4SLCde6f$AbRLC-G1g0N4W8GMrwFer~L2I#_`f_DW<ZH)h3KVOrtB
z`Jxz`!q)m%TKYFz$7TYV{rsz6?_d4y7niSp^`%)%tjPLupNFnIzo4EwDsW=O*hbBu
zVlfk<BlYWF7<|Ii%?d}9PBjM!@=}xdMn~s_(yd87)aHzdn(94p;*XJ-#F~z2&Ydw^
zuOo`|A^LXIZrm#<@zIfk;xL~3pu8|Aq{K0T`_9C0=tbfw+XnZE*NrjT7!n@K^wStB
zSw;vt6(W)z2f7D@@hvwQ5q4TU;w&yZ#)HJLu>@`Ahjj!wCM3QIpujQ^;kJ1VVMFns
zz*C2q7mpV65`Jfhp@+PSc|Br$NQ!k6n`3eugM-n~Mxe(AAOfSVKaq*$R3FNrlS!Se
zCsa!5;B1t#k1}`k0y|s8j!8EWr{*wI)0F4+)^uQNA&BD-7OEZsQD#I5np7)M>(Y@W
zux@!a9~D;6=33!r4pqv}?(10{49glI+0Ula67^z?dBr8q>l<@u`uYoPaj-Q<n3p;G
zG%W4-%TGOM97>V`t!HJ>E!7ipEa+>ytwc3XHC8r1D}DXtk&7#if3sOhXzMRJfxGe0
z(~?ih>U7LMEOD-I*1a~kV8Ev002p`lDjiVi*-^S{g7fUvXR)^*zyA2^pMPHIu}33}
z9TIdYuJ2I^d$mWBss_}zB;vlGRBHXbtsikJsmi=?|HO;US5YlHr{qbc*y<^Bi>vR+
zG!EvFgF52W5|miMlxv0tsLJKrNvd&{<##6AOcTP+<eVuAAw^06APPOj9=eXW(eloi
z;isqzoZ~WHW&<$;77mjjp@Q@fTDx>())j0si)a@L0;evM!|oHmO3YBy60A1ELl3jS
ztIPR|!WW!AQ5yF=#f5A-lpSbsObehVb48!T1R^Q4%2;m6FIdIA7hSs~5#6tqQ_0@g
z7NUjOG)V&qCkQ5!t4!d9<~}aV42&0>5n}2M7;rqMu63-OMj%O*BM;JLpiAa2r1$mj
zUcP?)^(V8acyxnY%60m9K{I||EK@%?0jUR2yg0V+Of?(B(9c3{u6ANH5ToNoKE#Y^
zRl?>3g@k@t0l94Rfb9QY^w|^5VIR8b!7h>2yO9g%Y-8>pQKG?rv!VrRFbH^msG*+v
z3~!)w(XYNvrB*cF?Ee*Vy>5f1;NORcJsy%mAN;mr^WUuRi0RZIikKd9%zyuf9%$Ej
z3rdM8V+t$d)-Z;u!1d$&x&j*&*rcb2id2CZ>Oa!a5$K6z-21#xnw)VERW0&*?&$CB
z`d9{~#(iDkQ=cp0Mt|srxUDOG!_3I9&zJqjUw>vndLoKZ3(N7OwR={-ETOb<#H+k6
z+J+oFy+ui)PhcL7ikf9;>U5O!u{f{0rFkVStY*Eed^t8=4#2I+aSAB3rV03($9h)#
z^>O+^gSqM}%vL@4BD({B!q@!T%76TX4j=x6%I8DtS@M7S6+K8Tm5CY)+C)sUzVfv1
zZFe{9w%{EGf3H}~)GSAyR_>EFz-79ebnH=ni(LAy^!xL&w3qLFFPWMawCI?ck~!hu
zLa4@}TnpOVdg16VpCTMs^Pb5kDo`9Hj99Ej;o{k<XJ<nbexp((4zV8{1y~j5H{WK5
z3o`m*NDfT?3)XXOQ=6qRjFeDzmp}(Zao}0Ia+k?1M;uqeEhte<uoZ-xAjFPrH|xmh
z(*9{zQ=L|we=d#jAjP(VySCNTN|Lqpv*oo@OH*^Dk70<tXt0z1EG~0|%|Da`<Ur^O
za;1G)^q4lb%;Id8l1AB6+Cm~T6+PFQY@a&a8?^ngO+<|I1297oP(Q?`qbT1TqZf42
zM#vuay3m~`dhxu1FCG#Qm@$C!hNIpW>a2L1*cU4<m-u+UzwthvCQ+_e>Z6EL8&$|V
zRq#OXwP9*gch{YU^!3LSyhA?6EbbN5v5x;NwoQ&s8p9<5A>ZC)Sb?5E)ni6zda8Cw
znIPKHxamsRf`9jU>kUAOevxGfj&bb9x%(@?gXE8S_S0Yg=I39%eqpncEsskEI7!kG
zld-vLD2)upOXa(|nIozO-XQ-PntH2&WI~qoJm6}$&Xwfr&QH<wK$~)$`^^JqCiFwJ
zSH=~OKNxb)`h#xYkg`D74hzNY+)R7~&{`F6$`P~SRAA%w1w;a`V925cZdm;R(r$Z)
zvY=L*fwk<5vPs&x;LyW|TtPpwKoR%_JO@y6j5};9s%8R>g51?+4P}Y=EnL=X#%EaI
zAl~a#IlPW;J|m6s#^&H3YOiLOJqlb`7)ZmJZ0PTBGD5Uzfw<nW3lR1Pmio@?jvSq+
z7p~}mEWu<QJY)WId|_OBY<q+g`uuI;+mkqEogTsw6&n#-AkGa-IgqkE1{I4~=Leuo
z^$_O=-r)ej11DP<7k8d<mh_2&?sM)gIUmttsZ{~|eW2!?#gi^ijzK6S6jNkLzZ>xF
zD#H_CW?s4OfIZIo!6b2pirj96!$)`;?mz$f*I#`R&-D8%_*!7I66526V1$}&L%N+y
zU?&$WZHDO<<>@cSM@V1>8H5V9I-8u0&uOF&u+xp~hz<!CAVYaF2buo}#xigR)WCLS
z{D$gq&O8l+nVIB3a~SNJGaCSPBI}RY<BH>$pc-ckhvc|S%?_e&2_UkDa$W}eu!AfG
z*zIr=Q)av&o0k+8Zu?=F#Q;vOqXELYRRdiAi4LL6upC%;ROK*H75r{N(Rf1oyt&M$
z63YSi3pFGY5B!xmKEMsB<zjrC)n@=^1$TiTEj(6dfpq~vV+rkGmm;;FJik4EqOkmx
zm;2V_sGU@+b6f+3Co^NkIh#=v4wm@V_G>xSwZ^R;&1gS}Prz1j@JQ7_V-l{vuef{~
zBpdtqVPO$S?S$cy_H7}NBaZEeC?h@wXvdoI{rh2hlefx!9MwS;qGkn(@Rd2SPv{^v
zW25M?vR!vYVTU%6bpj>7(E`@`99Q5f$J9M7CvD&bYeO20xeYr}nDvDmSFS&=pxB#l
zRZlf_^X~I`TY(-OwW8WYll@Rz44gxGRyT}|)SMQ3Q$1ybw&1;cph^8ISRGATnI<-i
zl=lpB4}R4lPQ|HtH+kfrDNtn&XJP~m-aG=r4_SW9`WlSj7Ffq{{U^>j4hs_V0YiXz
z*KoN+c;Nww{;Z-_E3fk?FW}_$vm*4_y%@U@=Bd^`_49p93~V_DSA;35r&bMBS!^~1
zj90O>7d>q#h%0k7cYxf~wY|t3o1a_fvYy~vl??}7U<>UZd;o7`#Xk&5a!15#4uWYz
zOAm^6zHiTyhFAbBzyz`nLL_Fi9vA7+8M+R{HT?^ce}VyOmM&3K_5wWiM3>+V%Fg2e
z1)wO>+<=17-oJw<Rl}gW0s42v`f49?T~FcSnjx9Mr-mo#c&=EWJ6(OYEJ8Y)+E2dv
z!H@T^fAxbYqW{ETmIGM5B+<0N3C>~AQG*DxSEWDAX6%s>F;EZ9iCfkYbi_nzlyoP4
z$~p>5(;PJT-8lXvOVL{>%v<c8wMwn57c4e6BZy&Gc>>O^7Lcg>Z@G)N*vu{&mjSIa
z#>PX6Y|C}{m(#_H@-YJ-9#CT=tN1jjp?d(~p7WaO6$bN(M=q2FpF{Z@<=1O`nrnu7
zZK@ZQ#Sp?s2X%RhZfe^t^STEa=HcH<Z|wBOdEmGzYU#`eCG;aVYFVB~j!DP}aHm%T
zgnATrhK?JaAHhQowFj;{G!u;W@R5BHTLs^e2@xYxx4mQqpFWB@OIOWWyytd!t}4O+
z>{f-n=hz*;`uR_%wZa#6)zum$aP*K-f>#6=s6xG3_zZ$Ja*tfMMjrhZuT;jM*;LM)
za)(O`7DX`viH>l@q=jl)*##ijA_~NAh3}iM!$VACBMFajchyE}gvGM%7uYZc>Iy`)
zcoSBgPQW!ET|D=Or$VwX_%&8kg@P=iOTk+N=-o-ZsCB~FV+M`BqS8B7&JEjE?a?P~
z@y&7%ZtF6hV=rSt^v+T!1Xx3aV+(<8vt=I-W8y~WVS`Y>DmtFb`oQ8-W5Dm0!zBFD
zeHZuNu)ih{fOc!xYG7S8WC+AJ_w_JFT3Gf*N?>b(<^D$ZP_s9t_Ij|s<QUKFtsy}K
z=~&p8W=xYwD*H3`8`e`^&=1Z**yn+-ugBrE2B;5g67hx_*#S)L{9TtbA^jZ>FRAtF
z1D|i*qepOq_qla|!Doj_pC91rjKXXngc~ph9)?wPpOJjSU!#f7A}uZNcHOhv<^sWW
zyrOvHw~TbA8WV>DFf`kfGmMNpfFjDE#DVW&EvW`;PIfVc_x8bcAlRbq6^z;hS9`#<
z8izM7?|PBo0tGf+w&#Mw)=}lQGcVadm&?9e!sSTGfO0V1v>4m0%uDw`@!^^3K#0p&
z&WMRVGehCtQ>b<{?U#MID*(I-7rH{IBr3~RqZ)f6a<`}h)jPc{ZUU0Su-5^VVV~Qv
zCDw!PpmxL9d{-3n&II$kOxeH?=p@t9?F^$>!p{3J!#Ra&)Em5{Ziq<f%xVM!inooK
zK8C!l1NK|knGqon294!};9OK?LGY&K2aNMRE2RZ@HpClrWnvUqIE7b{>5t*%j3Fi=
z9u{R*Gdp>K5c@!)%Z`15+}S5tM}*WMy73XudHbkbacnXXfl(TGt#+)ICAU!$O}Uyb
zY-1v)6Le^EYSH|3284%Kna)Pm9#kWWAXPronqUM>7d}VJioNiW&exrxscH+xm9&nh
zgN|HUD1549DS&}z4>C;~!-$b@+d^Yuj=(e$Q+YSjc7V#nj%HBYWFKU05qx0bZC~Ts
z^bMh?dE7FXyT%}7ye;@d-p9PucOu70X0k#2&B;dU7`<e$*%^i#yaq_@Fr15A7I77)
zXmoCT3=<D;#6#;59L!9h<iOIWeq}dV>wq(rm=_#@2hQ*uUNDE$BW?=hV!G}26siRf
z91Exn6<szu9x|sLp8v+Hf!}A*<d7V;0`JM78{C|+r3d<QBVuhz-jm2fuMev1Bs~=G
z;-KcpoLb_%<gnGefphMV0w>}>%1AUB9XI8MTZkoHC$^7V;RgP}#cO^$ApnCPbL#ie
z6%R)>+;Fgsw&}WeLx>;B08W5;Fc!?wFz?AkH&4R81q~W$K*!At`^;|17UV4$YZ}M)
zUGj^?f52ONcI<ALel#L(*3NEx-OLl)4b2LAg(HbsA2jT^Dzm?fbaoo0UMUG#Hvtdw
zX*@X7ZgC(#{l4<8xOgVH5dyn>@*LX>yJodpyYX#<nH?}l4O6SyuHz@20Lm{UfRUE6
z-h-)pxBwOl@`UK;IJLiQ2>a}V_b&5tge?b|W!%a`>S?}b`~uZ;9q{1?4J(|Q<Dn_d
zq;;kbIrek83g`u<x&s9`WEsP4^r%~4W?E}ObkPYnd#!COcUoJ$jk(eb=9aB3!5eZ#
zi6Qo^My~jZM5~_Jm{AC>P(<d+uQ<I0zX~r)N#+qEPE#7l$L0w4gtVRM85SUnS27qu
zRTxtdIvwl_w3v?2#!_f`!CH)MFchQ%3upHPx$)VsK&&XY=<|nV@&<(?bj<R=7ir%(
zW<Ku%qFbE}(c4ypN4`>S@<;G#EkxC7>|onkB-n>MMvmpVaIJv?SyCfUvTMYsjWqxf
zvO7liqtD5Zzhmc^_zVkf-ZfjUJ22@tUlb_cfz^iD3)M%x78_EplSS7)Jc|Q}=2@x|
zcyVCk*y$bmm0B(l54#J~4mq>;n0ZP2MmLX<I(DCS&r~(oH8QR8fu${~J61epC5iA3
zEJQ4-dce#GQ;3s9H=lpopfxgAG@$@TK)AnQKsd{=AzLP?L-u_j1M@CyqVWi*h@wYL
zWjN*;CMkYAC}9&zcoUI<t7!Ok2DUf83Z3XX2$y&iuoR=7T_NDDwc!AW$wmYaT=Gu*
z+mJb(OE^Q(47EtD%wLv^ThuC>VBPFYSv5=wsJ3VVX2BWFoa846NQYVBs?Kf0z3nrb
zN;LO(B@tK)BZ;>N!dS-?gw1V44_?EY28!f}N4IvfanM)x_*Bky1ki&a@)R>iAIx~b
z7&6=Gy1LA2L4vm}*EN84(P(4lh<Fqk#*cqBCH#5RkCu4`As7;e2SHJIp2)2hs&AY?
z79M36=MF@ipZ2fX=Lt3VjTZKRY!MPd!h?0#(^;ME0!xs44qe##7HBI+C1lI~LZ?Vi
zD*&PxGM?DRaoJn7_0s$Arr&-2((JE)^wqCFwL5*kA!lqI0pfj1a8Dq24vj927MBDB
zLPu-A0wGnX1<724a+u@}?@~oCJs4v3)qiq_3nGqj>ZP5RxFx#|(T#9OSvd=8nF#xu
z501TvVIAH)Kn!u^2>R@^xJU!goqhO%S_2CO!wRQkdRnk-(KMG-u?mb2G9k`X*1}gd
z#%mDMT?c?}mwY~fq@Lk8w0rg{n4UsqX^`XD8K4vQhgZ!1vWBvDpTOhk(ku*w=hJIT
zdeH8>aZc?)$}VHSFlER59P8>paeVcj>TD~s8TYb}&UR0~1t3dRi$~LGsu3`#vM&U0
z)0+M)W{#4giK)^W+oMIC?4Ls$Em8CZnP#}Tx|b!N>rgR_CP!r3!Fh?kWnS~)V`1=l
z*%IPlTh3s91t<6wz0Ue{pMRaP^O-~FcRSV<lT<QGW5oo<!0A1AK~itm)w))dS2d2S
z!%JuJ%=!9fm*>xZmCu;4Sp^a9bvyvY(6+r>J@`G-VdLXsh8bl;VGE55qd_#MQYzu^
zFAln=<lLz`NnWtBNrbhIae7XPbLkd-E?(?%Hc)cAC<Nz9B4k2>L6nkq^N$o@<z5jx
zDH)SG?=_o@nF8(1F<Nb&W4~PZ<Z}F8?I6MT)>W<&Rm9)=)7n<&N}%5FsE2?}JMvwj
zT$jrHRI(*BO_08!s@VC#<MZsbC$V#70C^$a)vXlW>#B1W2Oab(awNY{urx()xu842
z<_AXIr&Q%2k|sKC+$DI>(4>eJwpxQ>_7k`w!-pf%u&1bvanN9G7Rk7n_JIoMK9ZCE
zx+R|dhnsopzCB5ZcB7KZjRH6qa|Et^V>?>w1Wdc>mT8LCPww;1p%hhr(S6Rbb{yu*
z-Dzc~%gV4Onms-N%98gh0pgEtBs?YiwPF1ODbpr$rVH32B}=uGe4dOn@I&b|jQS+R
z1uQwny<Y+P_Po@8gPd9zWguf^xW!sDl*}2sJ2!eU=z5+q5OG<c&S+}PGsI=dZSu**
z@d0lG$};k$8Cm~J;S;hYZUbc&oHk(nHCbgf$gxQnLTiN~t7(DWU5wJJ7!-~R1P||H
zyP=Al3u%Qyw)BjQI?QkxP51!eE#xF2$QaZBWBg%6l5FpSWv-SJpQXRffw14lN9xW3
zO-@yXGqM=jnYgfCDKaQQf&m*TKYvz1zI|NHUyH6W@yXTXsZI;CW;tC3U79PQt=SR2
z%J8WQ@QW>ug9w5yIEc4cE)PslWAZzgku&(N(4&nt%d&w%121gjs;uSLAao-U3I44W
zPlH5hH{z<3PRLm~{1<~#e1H6BAt_9YJ^Y^*|3_)@C$B&J@eh7*`RWsZP&k1jD-zbF
zjM+u5Q8L{Y@s*Eg;VbNRCdga29=BCVy-MT=-Mcob1dm?B*yUx`_N<?RM18P?4(UAP
zO)17uuI<vZ%1L0zwy5Tc!qO4^VY5dI0K?Z|Yh`2y;~<oFC-%mH0<d7G8FW;Ss1Z7P
zpm2B%k8le|wj6c-C5P@LIcBh5aY+HbGc}OEBXLVh?x?4A{*uF<T+VgQKkPhTfk=r2
zRts4&(Ol4E25(UVgzO^)`9dBQJC1Q!{ZT_<sw7N4N|iQ<Qe-?oD!7LA=$j^NN^FW_
z){xSwhH5@7x;ti<4t2b2z7B$nL>+nO2X#64jG_1@0y<?J8Rt=F-yovz_&*9CF~VAo
zgnTor_mAd)MLA<+rRMac9*ru506{^(le*rGqnnV>B{0EK=D-*W4*Idf&lgIO*hqAw
z^IM%?wbH)MD&jlAflVDfnU^xiH}Xj3dR2U+WV`D$FypCJ4wRw6`;DRbrp{KM$E=Bd
z9J3K}z_1dmOU9;7z+R+F-f=YR!j6JKv1$}>mXugDv78y;uVMpQER!p&139va3I$X@
zji?hbVS*BE+F@wQBZ)kZZb?if+*UzBu8!1aSu?{BL6_K&SjNbA$H1DUG+3C}po9jv
za2y$2cf_ixR;(!#9@$!qL_Zm<ii&fqG$w&i3L$Px5R4--YfB$?n(zV_2R4F5ha28Z
zLb#0fUKn!~=Ty>%<N<lezR`Uw2UQM&HOfkdj;w;Ntp2OO3l@cYIgA)vh%}wiUmk6s
zhCd3vAj8i80YVBnNbESeMtr0uHavCC=SMN{aqmpF!BU&B&Ww$4S)H@f7<J<-fd&_&
zRJK-hkUJ_y9-(&v{2(r5RYo6^A(EDjzn`;uvSZ46SX@-4#pxOGRqbd&BD-lS9qm@n
zszORQw2X$5wk9wN4{U7uXxhdO=3vi2*VL{*YOK4ATN?4@V!_$7qaa9?xp5$f$zj$=
zZ&|P23ML+M$naVk67*Q>><O%`TD}+DfoMfSKLlpE>UTDN{%94E3yvfZ?Tn&AXyq6K
zJCc$m{H+Q5DrWQS4~saHS{sjnP+-Iz$ktHZ?2Z)$anbwO68$PK8^VF7$i^MuHX^e2
zRwTv`f&NT{YYmB!I9S_LNese~&;=KtQY!e;8moj;dem~4?N>Y~J!C?M9-VVm1p!9O
zz6O`=^QX^0`jIxz6pxSLvJfAn19wmfu^zFlqx&?X##ncJ*0_QJuCRoO%*$SpN}JQr
z1Lzch#C_}sTl~EDG`sVc2dMw+--8&u?*yFuh}HU*NBiZW-1Xm!PG7&Y7G%BkCP=!A
zb+Sl<`BumRBTod$uKxCRt;9>Mvk)!f@?qK&eeu=rzyJLD)hCuV|Iqk0y%OgsjOWl7
zSEGOA*A@K-BP1OUv9Ew1s;9*^S~Cc9U|8hBzElCj55L?U!S}E&M;DLPo?DkwKdDQ{
zU$@(bIGykSddvP#!YWN%DF7?i9jTO#@*5J|IgE4Yh#hj#vfo)pi4%ly{jj(i%L}6|
zB<wNzcrFrN+$@msc9JPwCfXN`N!Z{dT{<dRqP)+S^xMkDj_o{VR{f%<2tY;@C_Nh+
z7AplYRKVpDDNHXHO`N$*J&VHikGgPN9;h?&y-5GaYM*k=NV^gnv^TMD`JzsWFp|#!
zNhPUEnt5Ck=@H_I5$_DOE0zQfAI^G^9PTUVP5?rlHMqd>hUd__D&-%S&AwR?JETk2
z_Jf!wAwR5$I>TASXDn@ZX(EDZuRj^66pkzGl#vabHC@tSc%+6OxH56SDqwA!L}=dl
z9K^GY%|EV`%_&4&I*uiaPmS-8yxjmHoY}EuETHmQrKivUs!{5YOx)E50}l&}X+VR=
zD)(B8au!s*)IXWu)FXa!G^+2~0JY1rCD^Wi#AyPaBV2RTLl;N9qHf<zR)bralH|-d
z(l*i>%2_mlpdFMTb-j?ELlm#(bPbA{gNes@4Dc!Aw7SP;MYJH2k5%~;FH)2d*fdQV
z$^>NdkLeNm4IsgF`lV@ydDgNMHmB>`dWn`?WM<LX6117<tvU6(hKb}>*Pxakt0Ow+
z$^0xj*+@L5YAQQM))})jPG?B5LPm8n(*`9Z!MZn1HWFTEksiAoJVZ&V%*>&zOn>fE
z&7XQ?QcCzZUR5uEHmM*{AoBCj+#*@8QjbIrfp72BH`O&1e(89v4uvyR5q%?ZO;rSq
zkgq^*^Y`ywoW0hcKlu3<ro!xdHK7kv?9|GpHqL|!Q1b<mY6YAD`8bA`Sm+Q9YY7r#
zv@s`pjyeQ-G<-uu<Qi=fT!+;=0fdrZF=0+Cu1U|9tTz<&4U@!qYndUkSSeSPTjpSh
zER$`<Gq#oF?orN_!~XPHiXZ)!44fp0KiDi3TE&nT>5WoxlzTL<!=|$EbgS*rD3dEH
za>hVo>#CO**cj$)T#la$ix^WqOw1jrd)ZA|EP!T<i%^D<gI&0d_qe;vZ*|L;?W?&r
z?8pM3#g@<5%uu;X?_sX{o>Qqyqg|7RkA~^4PP4j)7+>!cC6Q5)8Y4#hBPZ=08K99<
z;#YPG$KPm{q@>GoaI{5P!{BJ4B0wluj}lLw?$n675*T&UyJ(MBJTeT48sxKeaAIRb
zjCS853~t7-1pLdPQq-};fK#iN(N@R06rHtN1hNUT=qy&np{A|7*PQ`x61Zq~)%}m6
zP_)&=VNqAB)5GRYk#$W*8QssQsgI|b<_0+oQNNpY*yja3O77h2!cAFL0+2wzSfW=3
zfy^R;w5v$1@=UA-!i=`;&~@x3t@(_6`r<*1@!n=QEsH!6HtLL8k4@D$b6SRRonFHe
z8tIjK@sd@<GCy39A2zM1{A!21&(_V_RILMHvN{8oatciHa}_5GF`INUpGE79UJ6UP
zu4^G0HDh43(RpU)4iD|z@l!kZSPZy@a~XGdDq`W#z-&FZLn}2K$P0#}jLl(~M96UY
z9$bgx%GT!X!8+*|ak2UflkIcGC%jpV^P7R_-|Yx!Urf!a0${rnJ<U~(Nmi~~9g@^%
z0K{nV{_*+K2}=2^i6!=h{Q3J=`LnQ~b2s)Mfg~I&=v|=fJL}@c^(BE``03o+xc4rz
z&ilIRm*)H*%$P=)Z_8n=i7$@h*vQdZRm1pc`pp774k)J`F47^dweEt|LyoBpG#F&%
zU)^{kKBzV*TTz@yUu~p6Rs<kEi4ex7@it%8EvdTDQQ5PJ{mui?PKR1zeJ&hs@to&L
zQKzS4rqH(RpEoN7iRq)rzI{27eHf_yr(gO;pALuC4C+fHp8`HDe%d0K2JNzc)hiTL
z1q#WN=Ph<IuM`oNReaWz9?m7>*^AIo3^>>Irq+#e2_Z6ly0nm}9PuU5#pJ~|@wK?3
z<VBj?^bu(ZnF0g5M0GA-23#(m=ow<h69J(+GeTb<xZL3HK-=sFp!PUK;p6I(Ufv`X
z@j3nLU%mZ?qiOvZP|oO#9rZlWPfZ;qQJ^~Npz%ZTL6g|PKdVwKxZHF9yy{a8*XEp(
zH%iXAy3EXu4I9swCkNIITQcvy2>m_OOAYi&eSw?5?A_)Y@j;Ki?K3B6ZA_Qc-4`w4
z&AsqO`mzf)UH~F5g!;G$3LgUyK|8G=o0sQbJ->Z*`GS!HSGpXNsP2M9Vd+_d%R3T7
z!3r{M^4)hrVsWyrm&D=ruHMz#C0WpgyCD!;5?>dKtVm2d;hkfg53;=Z^!+R$*B!}v
zeCUIZnOXs0@;pDkZqDDwbV!OnD;!=99RS)L$$DGOA9qc4Cb`yOUKaFhBDr1FA#PSo
zcAYX+(*aiPn9Z1+bepZXmaCR?m{-thH$(w>)Iakpsz$#fxpmu}P;rP?96BM`W4x1z
z&Ulj0OGgsb@WTuHd|{~k3c?M0K;eeJkjfp&twI_AjH>nUd@0HBx~*}D&wpVY=A~Ro
zZrA4*bfxp}+K+tp<#-Ii@gZg(e;SAoKro)G-Iya$)kP$qMxqCj+t&so5emueYVb%%
zi-1{vmQR)lQ5{83^;^qTo0x_8TS;zx=)e!N5GNnUBD@KhVl{#PRKO?~P%G|0D#;?o
zbVuT6W(y@wIW^jfy%;99TXoKTZVFXEvPu)^@2NpM3L_!Drik93O?q`bXs3`Xf#*Y7
zhL5${Rja4i)#8hm&Wu1L{K+$l$fA#bs|(VW#J4_9=I?zwgfPD=>YgKcnKT#%G+3ZV
zvi&gy!Tv&&6YID$sgI|q8FL|uVY-VIl%b>n6|?gcqAXLmxpR|v5Rwt}N6APUAvwyE
z5Ut~5X$nB1@EE)jRbGEeiK$aXlO%4zoZG@-zBQK68nd30#EQC`WZe?OINwd(iLZjV
z{HCR$<U5jeeSV)sA(Gs#N&|U07(B^<X8lyIu$naMM!F+ePj@LX^fdpCs2)W;KD!PG
zmC)3;2b@iccT&uOn4E*2j@5&Cr?E&306bm46P*d#yJvOKOxj}%MN}`=KZK_=+T8R~
zu5&~aXoeX9W^`DV10UFs9#iRB_hLCbdTW55LXs%x@;-=<X+(`wXshx<R)R3}UTAl>
zY^A#0q%)tr^RrK(O)@TX^2i#}MR&}U-w0#&a(s`y=k?b={Mly!+rwd;VCa(U=Pq`^
zDiW$3Y?t=-Cqfe*)CkLgtaNS!u9^#}*YH&O)46IJ32Y;akCKLj%u2hi)|o4^Ma2vn
z3o_^1iliGOvN19U<oTXqw{$@aN!djPi&3|sYK8}NE@j(pkDK*m)A67>7tN;S#HYp6
zmKA3Ff)>A>9GgnCJ2|?qveOc>+;PBjTXBz-?a8qL`0%jpZIIzugR7wr;EIP?>Q2s|
zKkPjdafrkgV*Qo@4vETE_1)2X<IlK{s!H0NJMH3Hl%{*i47LqHI}KQ24JRgsVe|de
zu7Sv$znV3Swm$ZrgKLJa{u11NJko#C!sci2xC>Xt&^rfUE_Rk2gn`c-4X}&z>pkN~
z>|X=Hatgv-%efkC+Tj4A7HM$iCT9yb<o}?Iyyq_VoC}00zJgSvDkgX8{Fy||!(xiy
zT<0ugh!fX565d6>ZS|X3TgcTxz3u6;qHq{`p&ClVIbDMkJMLb^nP8hAC^q8FY~3t9
zW~&_HxJBFb2IulR9TL;HM3Z$SC+VK~d5$Uw==A-1*;B=7AzKV#=&?YL^EKzx>3}iV
zbq^bQ2sUilHaXRjNqQO!!iL?bZbp7loO?BDd$K6eqL)ApR{X2ypa0@F-~VKY6GOb6
zQPRMQJNI%4XwEnI_)@F`m5W3xC;qrejye(KiYi@n>uF~JD|QVUP4nddj7Cb&y;e}b
zeee3{^-pY3pj^R0&XGj}&sHA{VGz^f(Dr5L>3T+OuMUKFB*0TT7F;0|gj}&+|I*sk
zh`T1cmx@NBmF-$t4Q|fs8)#@-(81~msLGn+cXmvScv3E?b*PdV;f0VBD|$b5n;;lM
z(V?*9i1$n`2yesnk18Vo3q6~5K0wjep9JM?&2eu=!dYt^;o4aMG^>uT>iVf{eZF;l
z^7>~|>0RY%i=PcacfCHk`J?wjD@@V=#razyuN2feA?h7TxraKd^C*MThFNSc<6bD=
z5d)<viq$sQD<Bgciw0$55JO8&8(z;qTy$Y(f?RM6S?dpx$@LBaG@4#XLl!71=givk
z2^+sq=i~Zl1d>SgdAyDaYoZn^^@{Xv;i3^Zl7JOtj#5u1NH&<zusqU>Z4MZOAII=t
z1g?(V1Cng-aI_osf^K?56HP>h9kGCqvG2ZjeRTbap(83+L6#Y<HrzhC@zKX}09~IY
z*(l?b7(4`+o8Gi0_Tl}#s|U*Lkh1>7sQb`LG)wQHNq~RU8>MUB<P0cu#%RUX&PR#6
zZ(W~Uf1(gZAEpz5$dUfKesuFky|TQ%evYLdIN?|OJcgm&3+Bq=qe`aah45{AML5?8
z&qeNqSKeZt*(%?FY{62)o3S|qsL^3Ggat5N$rPA0Zwt-%9sqsPP3bKl8-@v7&N4=g
zx;?SNEN&F4LOv84;0Fx9Vlf-JHw-Ig#J!}zfd`1ctmHIF%ek8dE5oaFM^^IQ9RZh7
z?k_xb$3t&7uZ|V^)KCf6M-rGIg)VT*RF&mIdH6S)orOpB`<1qkd!;K;fn0mz62tC*
z7W#`~0)>Ea>RdALHF0veKrRoP#_A?5NnKZAXh1|j@x^v#jZ$@P4X5g)yL^^flT*S@
zX*WQVii(ob07mg-NO=whl=8|gml06rrS~KU<BubPOf@jB1LV2@9t6vhXko`IBI=il
zJaO!K5F0SZrJIRTTa<c`x41|hK8lP7Sx?PD=Dxvl7-Ys+&0U^ccAfQonr?220s}uK
zQ5*!SLFB{G89Au%4X<q|lYun4p1aVQsNv^iz-Z7Z5|{I$fwC~&R>JJj45O>*8?ICE
z?Fk2^A9~INel7Hs>BeW)m&3!D)3F@L*%vvWoD#pea^Yasxj=sfeMSMK#+FP0J$Qxg
zBeBF9<6goEjd(gND*o$J!3241|J^fUX8-v)u^D%3{F$i{O4(}%rQTHE9CXNM!~oxp
z`wL{rpEv<K7y9jZ$P_@Mpq{^Y(Q@z7{@XGbyh-Rc;ylFaXTLq}Jjm`{`D@%osF+O?
zIDR+I{;gs~8#%D-IqjVZ<?;2POt<NGRW@FG-nkTBuqI~j`|-~|TcoA)Fytr0CnLSL
z794yS*pcjA&<nzgn#%craWq^5yNbpzDVOt`n6tm}KIbRh0F~JfyzTxlch_~ltS*x^
zjT#4F@^Z(%BxU9o30Lyx-+bYVs*8r*xF`H3J8<#P7xns3%E$g#FGv2}3g<1p$L%j#
z)81R@fAhPb$jC|cg`@f#U~O)}ho}Gk%6)Utw5oX`;VXDLY5g@`Bs=&^^`!LA^<=>&
z!U<$CX^0~9)L-kN_PK}tt}lPt=7)4htwW5{@aJEDis_$!nQx;MSnV#i0%*5R6xiKA
zr7`r_mT&4#wBH?Hb%kCzcW(Jw0MKXe{2}RcQfOPWnZAJ$fId0jO|_l6#ig0Jbl(@=
zYe0qP@HQ>&jW!r|3I(9^ov>KG1PidT+yzsgNSo->qR&1vHPEiwWkHJZZoDfSB%|rp
z&Wx$L!(zz^-!cbB&n(y^fq6Lc+FkJw%)03#kK0|=0`${~1^PK&(9zM}=1?Vvl04?#
zj-LqqM9eJu=`HnSv~OS~^$eOvy<r`FxP|LYww%zfj$TiC|Adz?7(Q3`b$4psQvv3r
zKGg9Pk0>@?9$E8>R$i9eoK6dnY-$KQLXPCSNIr+pFmYziXt9)T!a$I7a@bA>q?B6;
z<fg|+XVT^Lf*|54g=p@k?*Id1WOU1!5BFZ#{3|mnRow4iTa%_XJ&u{1!Z)}bk(&sC
z(qz~*R<2R)Hf*4h$RWX^RErhYK<+>O`DdZx@f8pgM9=D+$eUCl63)CR^w?x}N|L!H
zMr!v_qJQT>oS<{&1O3@gIbFtlN5f|CJTQg1fd{6Yr^ssZicylEspO5dKcxe#R7X_R
zc8c8tmdEc|`$ktFiQ3A_8tCa-Q0uD^U18zhveeT-Cp`pYs<*aov>1s~Xm@sGSZJJk
zst9%EF-TSEYhrx;gU@?&wA*Y(WEUeWu`Kq+ZWK}e#mn9fn-6iP?okP>)@A2lkhsM*
zoo!yP@+9)pO$wQ1y}z$-tP&n$7Ds{7on^MLsjUZH0rvj+m+k&kJSGcp2kUc<->6cI
zND-NgZb{sIvp&jnLapRR(q;WnpY+JuL_76a*K<=?2HXidF@*A|76JTcM{gT6QvFzs
z`ZE0f05qGA=#2~LCnDN}jgqF5j|&`Xl)$Kl1@6AOl-JkRvVhN;Ax|?<vaGFy?z>pC
zFmtnf^Dp|2Hfh!?`YX{-b7Xol?>A1mn!6so;0}+%GmD){s;}AVVcqAj>qS8Q|H9kR
zxEpzaGv-?Xsw@Y{OMw?v;qzAyQABVN#``Od2;L53RTD=NaF7fnUccmRfOCA{5sJ;x
zKI-abp=ZDfH2}en3u>iU9XJh0gvW5;vDGdi9(HH1n%<iN^@YbEEyTsk6y|Ou3UT(x
zGjMp`>9Ul9r7)hyr5#v-*+dGYu$po9SN$R55cE}$Qw)_-LBC;vS4MkaX}Sr5OVzTe
z<YH*YrU!fReN#pQ*f?sL6(*Xzc084mX)!VpV!?nCO$R4Bqh_9qQ0e`$e)}aF>IibG
z-Qtx%QPXdjGQbX?+PMQ4Y8Y#*V{%oOqCwIN#(pg{8}lsaV^8^9OHN{<1}17cIv6YM
zf);{vm}Bx069JSMC@2xTo^>!Op--@7HnW5?G9i5OS_XgfyU+L|?X(gUJxWYkayQ3S
zaA<H+jwAr{soJcMWt}gA5nbW#xZ_<QDJxBj!RJ8p(jBIYjmEcV%4bP2R~A{pnRCcY
zcKyB&j#e9r+mazyY@?`@CDYTW>aPTprYgWS!~}c>UQ}(+bfcM^dHBtf{-b1cz|rfS
zY{`fUZNN~o;C2AxXySrkvmcy3bR9(wa6o`@)nQz0g32Tx*FZZ3Bs%KF<{99gtq=oh
zrU3p3^gQOykRc5Lh$vjuy)E7+<0=BqD%S(#Fxe`kv;d4lab(1dhlz!_j!<tHSAhSm
z4D-BeJ7-^?{t3~Dk{qj740<gs>9FCLcSm&HEMnGk>0=ZGNGK}(h42XW8WzFC?Rk~u
zBnlfC(6R#8Lt|1y1b%~=Z!hjBYYnW}$*5v0T1YeKpaX)ym*UW_jCG~9@&-1}wLGx>
zH?y7=U+LLrl<mS%km83iN%PWg!!4<Ju0b-$ZBbDxqgJZzyuPnJZ-+7NMsmX_)HJV;
z+R5I>2o-R}6(wJUdG`h`A%}>z4EN#M@%`hn?e<fKto$LXx2+;q?UCjICp7Ht&_r+7
z2q|HyGKU657doSt&7TL58jYRJj@~7=9Ht&ieT><ev!-ojSaoAD4!f(nf->58!7>je
z*{1965kp8r3#^9_)=Zd3*u5kF);}!{iIMO_+Q>ca-qCB58?o2L4Y^mX2bP;klC5q(
zY5oBbx#o7QP!WWA*qLK1@()7;GT9YQ^YGyBE5H=!JgSZ!qF$Y4NQHwt2YnVRh%1#^
z-kOFa%w!~ZL$_=!j7WcYKo97UcYp%IAVZa<?izXLnnlRPWMzkrZULwdt$|Fod=iPB
zS6y%GKC)PZ7a{Wofq9PE1if>G*;|+X-_9_m^5pimoepBP?2HVsH}<$7L^gmq_QY7%
zy_B#pi&8nEJHSt1|4*>W`82%%5KYJ#;wx~Zb}a0r8qo(>U6n-kGm35eT5V+)mHalV
zd`6DwmH7js&g4Kk-YqdH8&loEyjDyT_M1ht$-Lc)K+xHlppdafztG3@#aM7x9fW2F
z^4y^sI3&g`cmae3hPr^;y@atq@y_A(YFLh*J4-yMaiS$#T#u6}QmICT!hDpcm_;zm
zXGGM-<%G$vXt5YoEUA?-(e;H#jh*;=j=RRcWO^IAdqLd4?p9)HR<boAO{XIug<?X+
zE%SEBFch+(S3u7*{yF;e?A-_)!pPai9##mmEe^+jQ%c?4=Nc9g8|btB+jE+AY-w>S
zvpw*)?sod#h%}6@a#`965W$BY=Yrq$;sMbpgXhkM9SkE&3+iG~@%jV66qSM9V6aXa
z`V;w)5mpymsCApwRZZGy+D2ViPO}@FY{TuaWYIm|HF7K)UVI^j=;^Uqb_Ge}ENWd=
z8D^h?zo)O$iLlbuIKM02lcT6O3|YToswc?D8ePwEE&{*cc&FGGdJV-eXZ>_~+0!I=
z{&R_`8*VYEUAG0^OY7LPwf@kx+z8!TIJQ7zXgH{1QZ672<3trp1I|ah3De9*anW{f
zHDPcBiF-;qyfQq;4cWK6+JFnG=M`e!Ms`M{x6H%m!GxZ{K)j1>?3@V)#vQCTNQ~P8
zpZA>eq6H;ZWgL{vJrfK)-Z*;BUhpJ{utBlX8}tRE?onmfAXY-UqM{nSZ&zP$6h%BC
zOHwh^Hxog*9GDkM$g$w9-6Up55>E`C99saSM%{)3Gi6oEr%yX2F}&nHDCvqZ!;NCV
ze1)H|2O?M|+{mv5@<vl}C3AX=Mx4-yadk1xFh4QyR?Kv<tG_~(401TsHb#{-(B5y1
zXF)PkcGhg4pKhloCYy0Exdy}2jU>+ews80NKm7G)--$B;{Dy%0r8Na?Jk)*1mY^Oy
z`MVuuYVcMDffc5)x}+~q{d>d7!d8bX<m`Crpcm)v*_+TH#}{#$c;)mLrlv83abcxs
z!}cQXA!}dNV?m1Mx-z6sskAeg4I!8ZV2+SGl%rpyv#faJ%6QYZ`jYy4HORAySrl1u
zdV9}p$6IUYQK(C<{`$w1qRMH(_Cdo~Af1ba%`$TIA485WCmfXB`9I_i=|9rL2yY=p
zMuW>;R=%0jxWu5FL9$l7idzm&2+rH}u(N+gd%gH=^qH6-C-%c#1K%WCi<*Dvz5;s=
zF*mE{k>R6*gDb)Tki&rTDd?E-va5&QOm07W{?S)I|Mk~j=rc1iQ><mNlYL5ELJ*{a
zlIRB=7#|}oZa6n<&T{p_23Dp3iLvhaDTw`@53}}P@a%M{av{XIPMT{yfM2F#Z*|xT
z1>voHH~~w6r!sEI85zBDVwjYBe>Ni&dE-g9^2e9+<;Oq!#iw?b;lODLSPVhemH3>h
z5Q|7HF^4Zc&alE&CoNhI;UkBAwl6{iBnGzW5X#kHIJl0vXL{9%8>I5AP0*6Icm`rJ
zOEzNdQQkNn5-_zj!cCWWX1y9W6dih@OZFW>!vIc1;ggd-HLE(<C#B_*w?_)Z>?5_u
zy&Ic=_(&>*00{)I0t#KEbyVVD<IsNqc*erdH;B1_sUo7I6<1mh>%=m)0uai;tW#(O
z0j!sVER5qske(GeYFpn8`^-Ei;&0I9K%_;rOOQ4r>UkMe3icwav2>RlccN?E!p;Vn
zFfk|y&VoY@odRvrRR=m?iC=*b+pDfbI3?rFifbE<5E~T+GK14CsHH%(MR9SQMyoO-
zz0PZVS>AMH2H?(Wz}Q;1q&!7ggd(qoAtpc<#-lr2i%f*UTSzc$KIewUgF>2vlSXlH
z%(s;78WVF$EpCz9MeF9F&Cqe@^#@c3Mg-!m^c*52OuG8I8Iz>NQ~b`XwUPkPM+5Ez
zY7;1wuEGpe0;T4tJV8^yf_Nr6JBewHO(#udfJAKu)!;ysiag+qPv0W=7wzOaOL5Xx
zN|cwV9iU^`qC-GdJ*#2+#vVa9!|6PFLNdZ}PnOvMF6WbnvTVjQAcGFaaYQ7wcVjsX
z{w(mkK7kDKz(Ci6yIc~IACYYYVr$P*2gjDoH|q7G7W1%1D{A&AjTjyJN@@2CPa3YW
zsRso&1?R7wJPBY&9Bzg64bLr#<ej>2^Ab>;3CtcZ%^*p~trGpcLQ<s>Ry_gP6|1E}
z36#7TX`;bDSYw7r5!gVofa~?w9eg_Cp&Q^lk;j}SRG<{<2@5Z^S->{B!ht$8U_hWK
z1}q@WPjd1HX-TDQJsUm^6f|3{idzCw(g-Xesu?{@w^qObW}&6r*P-<?5(TTc<0|+h
z*^a^Dwb3AoNP<4X#yV!o>PSnwMOE@_CTs><WeoQLv^oJF%FA6?Q#vLBT&Af?t49!4
z08y8a%MAo6eSFNnQh!@PWf2mNFG)~M(a2AleJ$&?4%W-a_RA$eEIyrE5=hf533wkd
z2qGQ{r4A%RtR7;nd`ukGoNNzkqGXnq0y>P?F3=^)b2uW+=Lf1Hau4iR>}O)x1H1`G
z$>PALoIp9wIV`S^m)f3To(N>t^S6Tbkh=M26`m>+B**Yf`-+?CZ+i*MI#l#iinqej
zl*PPsAOAIkQm8%GDspk^cfrRR^O19J&}VZ*i)>gYjyj4n!K$Xc8Y+w`p4O9_^KCqL
zRfxp%4AihmnJO6uIALux^a)2COK80ka-irlAcwXQ!2YvALAaD{cG)>gMruK9T$bAy
z*?maDHysc*y7ox3s?VYI7Ta2jI|zoxK~jT-aYcWUu62C{-Opz@bgV*J4OO<J?1;$9
zh6YkFkB$Y7&W6K;91VQ%Lb+?(R4)<Wc@aMu*emFpUItG|D-BgsR;+`_Dr<HkZl86n
z`h-*0HH)x^`iGVV?LJa9I93;j<A5^{sM?gN-DIShB8{}8TJE&kNVf&X1z-LIgYDCt
z9YpBknprmk7DAa2MTIZNnHJe0gbh|o(^C6DxUSZKWQ_(2Vh4Im_P|<SMMNl%3Ifce
z4cHJ3Gp*{&Y|~QK^RTJm{&^K>r|K+;Mb#Ea#A?_D+b(v_3j*^w0gghTP>^F)A_f{_
zB7sMdp6Ay!)bz0aLub$NSG9~oni#1{f*mZ%e4#AhDRk-j#yAaw)gbUIJ1f{)1ULFf
zQ;+x~S|db0XqKweD-M@NZ6^6oK4MNI48St9cC-A8)U#1*c%h2bjz|ln9Yl>7Sp&<p
zXSKD$lfY?a$KmU$UY-B1MFQ=6^oii-KX|@;{i`28e>S5k2M`W1MQu$bh`~O0);rt`
zEKWA$nf8y;sfDMrE-;bs_G(pgw<5kYY-odj@6Z>~mo`1wbXQxDj`I?TB1({A6P@Ik
znZer$E;LlT-dpbwMKOsFS1Tn&=qzzbOP=+N>3Kwri_^uNC5yc$T|@^#G%RvcTMJCo
z>wI%>MsPh47`GE1Mz959>p8cJGeo&WAUr+R>n4_(QxM>$u793e&S2f*=Qj84I(3v&
zeXb5;J*KBYXLM$_kvU6;IK!x!tNOpHI#v~7grw<k?!eMkvA{SeUQb5V9F>@w4Lo3N
zoMLm&*&kZ6f{KVJ!0nIMpCevPPF-h4x$qr0V&=RccCicMfF>m;7=3_O=t_JZ+G<Fy
zkZA=;p3HIhGh~r?R2K{2%~*$|w>L6M3yCE`hi>T97$p&@n>$d{_XQ0Fegm%fVb|8n
z@ssp6)hoi_AQL(08WmNF5`zI+G<J<kPzUp^;i#C<CtGtsN|EqJCxPQ85o2b#{Gg6o
zj298#3cepjH08W*7r0zmqHMV#4yEj_8QD80!R)P4v=cb})K{I&w6_(NDEgcODi3<?
zNG#`^IZJ#s*&M?oodxTex;RNvcL?;pjco+|f9<8lij<n@G=ZKc`eT4N_oRVRIqyEF
zGf7p^W9FLG%+ZWT4xX-EYWCe8tYL@uGC>8+E%eH~o$A%$DIpI<X=Sfm1(jf<>3S0S
z5rLxv9XlwPASXgLDA<z}P(}0H^EEJQgjb6B`D_Qf*d+I*Vhmm<c+(7&561~B@~|hK
zE~q}iD)S=cbsBi(^eP$}ERw8YB84d_;=$H->OpJ{UV(VCYF$~~wfeIN<h=r*ExKFB
z1|@1UM<zrDYNI3*kpHP&1%O7&*~NV=XN^O~d)+Y**B46!SGuY*9XPV7psMdD4{2}(
z)`_}!m1cQlTTrE0BH3m+c=BggsahyQurW<qEJ9K7VJ5W3rxcBv(lBTXgKf@0kTxvD
z=^~=mtS#P_(sPR1B%OMRk6L*%higU!sw$|l)$qE*hCH(rkeK-0h5?zY0?4O!P@5O4
zC323G2$$M`JFPZCMZrf+v|uF5AGACU%{*-CiJCf;L&=QNv<rU6;dz`c_S^CiVM=ZK
zRGw{R#n3Wus?~zPHwX&oLl3NId=4FP0qKp?WIrya%C+lp<cXQWLdA%fr!qO`1%$ep
zZObt%skm1ATDH8Tb_L20Kx?wm-u79l2)l5yFYD`Gxs!7lJksP-fPdU{rcTc%a68O7
z$wD%uHt_x_ubj6{N*bVXYRr*yNDU8hsA{_r0oZW%s500blp7K^v!MH=!Lc7L)NN|1
zr@xhx_yDJirL09X)4&R5cgZ_5wOY7!RPD@}!&yTAA;HQsb^|1<nXosfCK;m9xN}xB
z)~ja4Mf9Kdva<@L^&?50=3>#_F%V#JZqt-ah4Cl&V$uKv=E$O6Rw48GI&F#tfNq0P
z%wQ3;qs&JtA$iR!m*=WmB(6D>Y~0*U3|o}kgcZ0TJ9th9G)lS}Yp$fnGXfNDdRlU)
z>s}()-N!I8R)z6Q8j{YpVK5pZV5H7km@vWiDx_f^jJTff27TsGo>+B7YT}9Pq>qLH
z*=p6ol+kZ@Wk7?0%NH4`JDX`R_GjXbl3XPQg%!w}#O8F7KD^I3O^0Tu$h55@1I*76
zM$oC>DLVDh^`Wb}PW>$n%&;uFIbAOir&s%Op(bfl9V9+i&DurKz9OQ>Si6M0<qYcm
z6+F0ynXyn21z~@TT}MqRE4-oQbQ)+`{g^jS(1?yuXjL^UDA$$itZVKuO=gH!G-oZn
znm#F`s63}`LUcq=&h4c*UClPjaFSZ&0XirQk!G&(kwqK&><IH`0I-~)DAL6~intVT
zaB&!wR*8RN#?L%r*PE5iRv;+Jn4GouVcuA{SQCX%6}qZL%7*|>#|qkFi0Jetxum07
z*H{k{?y%2cf{lSocj9*}E#lPCRFYG_)zlpw`7ygvM%urXz3HcZtLbDyvUs})qR2Cy
zPvUPZg-R`_nY6%>!Bq-y=UC-ECwNm*zlowl?dYdu{n#2(LgW0)TGU>lfjW!VJ-{5t
z8O1=Mg@K3=ZFHf7rNlSVM>*7?SwGkc*YvFTK={Cs`dqL&QgW<h*2)xxg{Q0vz*;O=
zL1fiWIJU&4U_}UQX@i}G^Acer%~h9aS<A1I3II$lA~VPNoDYq+)72$~Wm?nkY%E}Q
zSF!j21q5fz1o5<u^c@Dhit%z7+u_vZ>fX=_AI?BvSjriyZ~?fS8e{&!TBlYIPN2+m
z>8?1N>V~=bv|Fets=R1B<^0H2F%w>P4#8KK(oQ3h=eSv7UXr>Fj_R@oKzwUX49^J<
zxOG0{J>Ci^rd|wM#*rzd#jfN05Ijlx9ufcQg5lni`q9R<^|D8fyXxqsy<un$SP<Fv
zt{WJnVYXzh6q?W`i~U1!E*#H<LfA-eBwZ+4+FAX-Mura2H-<=$<o0}Ha87KGEZ7<5
zsUpW`ScAnw_T9oob{+i$9F$;gRBGD`+u$L_5~gfd)hz4Tx`g2YVq&YWk{#@<b?5`x
z&pU!Td{4?cJR)2b?IFftACX!+)A#zGmN?OJ4;$&NZAdwKJJF12u8KGvn!&>LhU5kb
zAPfVx#0XKhto`)aY7eJtRTt5=Q{xji?e0<>t*bh^W{Xoe0ZZaAV4Ct<@W~~pep)>+
zfW&$_fGX=9BrBf>J%XkU9!$4^KEwwqC00r@fjM&Mm!k~w?UH>mOE6B7Rqfg>hvQR*
z#-pJuk%OI}d^oKZjZ28d9BjKB^-!T--T$%{CTT?hgB#M3XHCqs`02h&CFvC|pgI-H
z9qqV`S$M)25-tUx=7`P{h%LxwD*#TyD+X&2P-!N~epDx)03z$W125<TkP8Thi=G8y
zIqC?HxCw=U>xWc4&qN+LVNc-rg+r8iiz>j^4zGQjrAeWyk2m#ha(WY1GNTa(auU?|
zvJ`Wa8;D|krnlmBC{3Ic+2)U(UPxK93JekC#FF)(GXfQ+=})9-4v~S(iXEw049}S=
zU5dt`7%;QIha!N|Qlla_OM{?QEf23~=+O>w07F8AR*@<U4VOlDr(=*Z1zk-6#jZBV
z6rbm4zwh!Ak7P%I3NjU}?4PtW#8pgZ9S?=E)D?JnqJtQR4<IdLYxs!Q?nA)p-YU^<
z;bSRM-On^)B@wm~ceRmatwv57O?_yNIu13y%?#qP0q>1TT2?L%gc1=!g!VbCw7M#%
z&}N4#KhEOw1z|o|r&B}RRZ;ls8)j3OvvI)aWX&CMyiE79S?I(5o(^pTC23F6+gnAa
zHnh$M#=_if9_)9-^4Gj=UE<PU?x3I@((qYq{;Qw<;OpQ1{1f(1wamPXWQ^kQAb^V%
z;b0ie!U$&+_?8a9MjUj2r}X@L@>23_`N{2rEBp1Suq%0@ob$jri+fyF63NNy9%o>|
zaX-Y?<ja0su>X}s)F8Jj_cm`l47rg?`IBFC<8pg$yFJH^w|EShhlUkeHaw>8=#cdx
z=Z{4^=~AiH-S+zHuYd6M&%X#{RPCCYH2erT_94AxHA^OAfIrP6*NYuMm5!1K>*|5#
zi#3JkBMPdO<y8*06oF~#;NVl3=*C4vafd}<D@1Eacn>8z%%Ic7DF<AS2-Mn#tahV@
z+y1L{b-ab48JtmYQ1;*$=l03yLvy8M)X)f5`0-?4b~<Nw9WiMx5_UQsg-Enuh+V2w
zAj*XULvK|$FdgGE<;)_zL12Y){ndh9s9XehDr?b`L0^Wf2zXty!xY!NiA>b_JecM%
zk9Hn}Xy>WQQ@fs`goimGAYg?UvF0c26sGNTLKDFle{e7}2#;WYt<Gk3VNtU2sp_EI
z88h<pwt^90_IQ11$289BR%4ZG)Yflk#bo%qFGH+^WFoAN7ZRtzrHC*;X1k3XhaD#m
zVPH@XMh|*Ka*4Fk&K=ni7hVWEcX4p+*t!e60A8*?(PO^femHKojAB3Lq<%=foe2aT
zC=&5E5t;!MMW4%ZixKb&eUjLSiYy2-K4B6O(DEOAMnUW+k!6CTfL0ObBjM*>aza@z
z>5+yeJ$CKzzNORCMavSjos-3wWFO)o@iRhN(9y?3kgEDI$n2)El1rn0{n}jl#b3S<
z+wn=IEAu+aCTgW8i`1{k{PcHF8akKz$2`6rTGVwyc#4Nk)~^|J0hY|J*}Gync5FuT
z$Na2FvKzl7z|Wdcb#rR&w_}1IBp6Q_8x+FQ9vz^=_%Z)NAnrHX-yd?1uf4gCIxATh
z#FUsUbe(0r`yo%53tSy%l3xQS86PI9Pt3swtICNqlDzC8zG1s1B{|1BVUAzy7c$~g
ztnFo%{hC#+9o~Ir0}OQr4*=h&>IKAGQvR5ShQ9j2^Dln!`YAGBI+;G+*42^u#3csL
zJ-ck$7Q#6_C3?kE5Pu*@7+Yog7!_nYy)3wpy=!eF+DyP}x?&z8nk(4gXM6e}S-55p
zlNno7r^zZ9(`K+N*fR%AMkpVYqfhXwVRu1qi{)0m><iDg*j7GVeF38q25Q)%55-7a
z9)7vuN!u?e>_t9<U|1|H54**snVZSOi0AI>{?YZByo7`u<@|X5@;y;n?|=TqK557R
zWE$=>DF?EfUat1p1Yn|X%TKN?A0j+THSV}7uwzNkIWSWr$39%{Q#`iH5at#7qRxr(
zU0+1@0e3>oJY%>rp2QuZgsqWNQjIVr1<cL0NOEihsh!GtSVbCAk>Usha<fBUTk{Hv
za&fJf*PQmtd(%r+Dk2w0uM9O*rh`JGj-wGNzJ}Pgg-D~yB)6pMJH#N7!naZhc1L^!
ztz!okmv1{Pw80V7O@m{xYK+`rO{X9K=4YS5I@0rBh;g4<M5$Bp?bljwpW(1THtez1
z@Rkh~KO0o|S9g+i?-J?8^oAjP2($P)FXjchh|^!>#jIlatpXt$_~6$DXj~u`hR_pY
z*|_x<0ul)0_ilrn?XxZ^7;}S<KC~dK_L<{4OY52VTEUA2r#*I65SCIpxhV(A#!Tx{
zqdqoCh`Tu9lwLH57q-BVCA_wUXL#u<qkuKz?%sd)jW3)_ntHqiTy`VC9Xpin)uDTf
zFY}Y&T(mg9S@TPfc;ga|&c54(9ztj<-AY2qfh#m}h)sKOpM`1LGY&oSWAPEtzNjpY
z*ISo_Hyq_Wqyq>-6*-q1SfFvLCv@J>Zy^o%IH-dkqha=PW0*7BF#g(ff9TnE*+^(N
z+D<GQmY9o}U81kQb-$kHw;y#RZE|}q)`fcYSfNZ=f}ZHWMcluV8&A$3d%Ckz*cYl)
zxs~8E-4lLQ5$J5la~Un$FUroefRU`seONp>ZafOIsPew+tDQxO0AKcLPApV<{`UI7
z!3)ndY7<g+-Zh)TB4`O57cn|o5O4(_*C=Jt&fK`&sP`Da6|IL}Y=)!+f2%t>ZKTYB
z^BEJwZsdE7jCrTcIEvGu4cL<v)_$;;UC~XcE`UC*!vTX03pd_4$qy{>anQ=AQCnCY
z#ElzDq~dMM=;N~}(qQuhL$SDenHBor%*1pqpcmrkWEI37vi%700w+?|u~#(g#Aj-D
zlwK@+|8^Wz>IZM8$Br0uru}Wt$9d?gujs$Y8ur_R8<)5KrsuZx+}3sJMelz3T=#Pu
z&uw~cKE_j9=b}sd@~M7(%AfdHxohb=g?;&0|1)hkJR!dN^>2RhIWognz$OlXVrC(d
zSYo$B51_Lkn}b_%Kt{a$P;_?9UhZ(gQ@LGrRvC_%s}!cBD+FjVjJgBb!E$wbVL|%p
z3KYCtV?B!KM?ehCG?P2YZtL1~mJ_J-8_B>S$+nuZRMmP~?ZCcpe$cUwYaqP}o0RPl
zw$4$3ss&$7w8~E9x<=*N&BqdNMWh}19o@<SaQCR<JZ01<U6aH-o7sSYIJmU6b#$cl
zfSKto{)@0c%sqNr81Hz;V%CFojUK1MIGw66@aPS`%3V4|9RIO51o!T1HJq=Vv?dvP
z$TycercO2ks_3W6)o>e}&y`9PSLh+T(qcoT&p-qeSl#5rH5Pm?_MAS=IwbfDyj<%^
zy~352G#>8jy4<RDyDQHNYC89up~OtF+^6k^<|vFZ0}r{bz8Uko!^;Ua6z*cX<_A;x
z0xHr4Mx@(Smrhyapj)Q!MfnIx7;jGr13qb)#~rCd4sKL~Mg}}6G|_!EyHT-jx(jZJ
z30QA1Z}bM$?F+1IO;26QYT2R+;VDykwy&y^<KT6W{R1!407M(ElObywy<n%t%0a|P
z8AhL_XN}`vh%`vYM-s!0?SnC*atQTVr%jFv420Q%+Qe8+wOm^=j(uGHhtjayb>boF
z(2%cCa@L+&f`~v)pg87q*xmzh+_N^mO@F}bo6<e~kh|P)BTF>))9`U`6vKNRTZ6KV
z1#C8dxfJUXja4QQv!m^+SV^EzQvgm!55PZhg_)!r6e%LWo!+CX3P6icfE{Glq^>Nt
zTymM-qS*qW4;5s>Y@7jnTkQibgBn1n&88}VX4zTNQ$wxE2NlV5q}rhhGP*_;wJAQw
zsQ^jyNx%<yCspMjs4I#d<EJOh%&4h5X`siTYzT~zh}6A%&Sf99yli?ZZV)6C4JT<5
znIv!%?6qtAse5%&O&b|se_ZBSzoM?GGcDqBSF@<-Z~D6P<wLVkr8ALW)V(MsRyU>*
z{GX?G^$Cn|<gAb1>~f~}Hc){%QVxM;z!w~7lIZQk6}b+<em#4xDqy4vJu@q}$~CW|
z&}Q6#8UL`;MLHaC9e_p5A^hn17hj8O&f|let~@8q@$DsjjLDP>zWKsg^qQny$s0(W
z7pR+L3LX^HLhSP9@G8Ts@~f`s-iLqty0*`M-&N=bu9|BoOwp`3R#h|-Bp8V{qI!ef
z^H<-KP05??JgOAGf`|EEeyO~_<VT6a{PCsUEGbp;6ng*gR}n7c?a{~B@}^5~ZEkfu
zwkdh*&40E{iT+%N@t^<TtIJov|D@Mx->36ygfWN)5HkbD0-{kg_9qkS7AV{Db3ki}
zh&?*O*lTpzVB{F$5<wFZej`v7l>-VKxj2-`9h0Mybu0P$-lKzK0km_7@Bub4(HY~;
z3NOryw$Y3%;9w>@f+TM^9NtPYri4Rhxmnu#!C<tySt+Xt5K6%q<HLxI9od=@$`j&{
z0`J5Sa+v9YKw%k*%CY=b3ZF@(f*jD418apt1sHDzgR0!zb#tc}{s%lq#KXeTsC@Ec
z#b4g~!i|C{YzU(~ffGA>5v|q^+zhi>7lC`ZV*GZPBs^eszUYLVNJrvSrsJ_tJhQ`4
z)wsHu9EqcSIQW<^+-|+hH@SCk4UjByB+OLE>-`OK(Cd%SUw!@k%hx~pBtIGf`B56g
zqD)l=%xAPtG%FY#tVEOF6Ituk#(mDjb_^29j=LnGxgy`)#hB;McO@pj-XtF-NX&Qa
zva_Tt%OW0j_Bp0OC`kVt{MQDKU`a1Zg-ybpaMu-ObW&hFWd=Q8oT6|lTf?1HGFbpn
zK(D`V_jzR!Xnf8JJ4oV^Wod;i!n~Lo$t^G@4%6|jH~sIAC0oB7^XGfh!E_KMQ8W6Y
z={XBgJ0Ignv+43QQMk=J{o{4{4yXY!KB~duaYnogHS2OpQBQ|ElH2oT*Yg*AtO+Dg
z`O?mpJ{C{y?5W-_E#N|=k|MsSRemR*9uJWozVO5yPu%gM1}c0mTh}T4dsiZQ{aSb{
zpU^LELdch>o&SyW;dn|>$`WY(VZO4ib4B;&D^dKT-+IdZnD21qPhR7OU-C`r^1Cl;
z@qO2#=C>q?j-{}1>)?q5{T@#Nwy+r|e9UWvk=DJcSk}^<>Ahx9?b4ObI_2X;LX638
z*SkgU2pwF033_Ev955>WRLu{^s_J?9`ZquLv{%GF&?82)Wl^hW9E4mCF(YAWv297l
zP^oOSJ3>?#Gka<+j}_>cB<n!iJcR1V=ttQCR?!&%O}ulDI6%Qo!T{+p@`qKwrAMzQ
zadbExd5DU4sTIaC=5+o0B}xe$@+pvYp;rSdQU`ADHD3Q3S~}8-n3n?P6>^1=w^KsI
z(+SE4Ztwg<SZ=eT=^+3q(M~PU64n9p+i^)PHLt()Q;+;gn5OGr+n?Ois?cS=3iyg3
zI0(#@rJn3)s4B|hQPcWS!$Y##HgeLR6?Q7xY;3}5bQrT1k*!tm2al3$TQVq0E++FH
z0HF@Q7%Rh3W552XqnYRmW_+|EqRBm7|KztF8Wk*!K?DnS(8Q5BRb1=K;E0^@a4G>N
zGbAu?N5Z%?aEP^kUaLc_@xl3|b8zT=Y?OvsNCT@Y^+0b`n8iPGcP>4W>_im)D=F5K
zDE+pVs5i4{R!Fm8*CYcqP+VYoC<MQrJl}CvH^mzvgwVZ{<<5uGX@|q%c%0ZGJKZhK
zzre^VC{X2|S}?#R@RU+w-QAl1&<s{Y!&v!q-w5rFj-X6Ujzg(ecCcG?#(~oCq)&3V
zAJKkZogf&5r54Y!946Ybv5SjsWw0w7luSg{$YXxWIWoec+GZ-ac>XoU@puHRp+q*!
ztudBdlvi=t0h}z@?|KT<YP^P+fl#c;U62<jqUz)rX_?=pm9y04-B+fjtv=KWq&%cu
z@aAJ@vBj`@pclywvApY(@YW|GRrkqTIc~vyvPE0)+IZh54)xw<EZJsc#bS`QQqI4s
zJoA&2Z;g(^Edy_xx4yo=C!$BH!8bCSwhgIn8|BZsrl6q+Z05FDCmEkK|Msn0Zj)Vp
z{`#Q!9Az4fm3#L?tIBtsixQgq=*7D>d+28cZa0YqVy0^L2at*g1N~4Hfp{H?vXqGO
zOl0AQ)CMpLgz<a`gNP%t0gJO96-cJw(H}g#SPP|O8V!7YjyX#1h`LqKF~=1jH~+^A
zj_l95DbwD3?eU{1gbz_xgW|TWAv&L1TxpG}>1m}kd<c1N|7JIQP&dfE;`m6JpyFd=
z_>aasr_pEgA8ONoZ?!$;o|NM}M=}uSE&!AdX^@ip{r5~^;g7%j?#sjGH0?&!e%xiU
zO}B|h)8JvZ`TDTid=m5YQ-8MaT$PkV&JglIoEkY2IOE}?tGUbQl#ch@6Ko9>C);s+
z%^N2cPTXQl(#nOntpnrN1WPwcWdLNHf|KV0py7bY&9J=x^ov5~H2}}-bFZ}-jSL1U
z7>?tQf4aUyobycj^-mv#q}U7ceyJGE`ZZ02<R&3Y*z-xtbbr3zAx)?}iay5ZoLS;+
zsDv?Y*JH!(8`S?=$RnWl_!sEYNJXyjtW*R-(NyDTOO%Jsb6;|5mlzUg`^vs2T(k4C
zzu~*jUw{2bMnB#B6;W_$7mTV;IkY7gP!3ZkscRNt==Vo$oR<pvr2H}DEQdoZpTg%3
z*RW-2N^c<^E$jmQs{&%X2AuymKIcsvW#9xaLZI2Z3~#7t6RB?f+qaWM-xKJMAoV+;
zM?h17WaFvj5OO=4weMbj^ZHFZ@ZqDKmK%LnYKfE-M!s>v>a^JCuwf=(cP?f~GFtSN
zx@3dk(Pf*AE?G)WlErS^0n`S;sCZ`Z=%+Y_n(MrJu``I3l3YO3bUYmk&kuXyA>%mY
zM~uFUR)fKAQ5p0uT|__toT%w#ud;;I4OF~z6tEL=V?^<1eCpFtXR72TE|ou6EmzT?
zAJa6nW}dRM4%dumuW37E@VECv=@YAu5~k*W0={E_MHN_JIRR|W4TSE7D!p7C)W5qe
z)eaqYodj2>i1FxUtV{`$?2<Gf!8%K)Okbm%U0h6CGf2NpX$HGko1Ou|Mp%FV&X)L^
z>WY&zttdNzs(8O(zNOA;gpY*keuBj4arjv#z0x2!dmZ5IqQg$uvBA{_e!0lqp`#<Q
zMIrJ0qUW)SS~Dv0v9B_3#W#j@78J_8uzJ=EKF&srptr7mYpAx=Br;4IVF62Bd;0~E
z3W6vou<U&F7Cbt5k4Dd6rhO)uBK50(F+9LiMYioM4d9zm9)%SuN;Xt6ML+-g^+86d
zP7^IJP-TXdm)%hG$a5rmjJ&<M-bTO;Mxn>L>0|7lq8wVE!L3;~xY<^&`fQ>v6p8Vv
zDz5E0^{U6V%V@{%E!QA25U8yohYuz`>a|4@&-YJZ<ZA>OGl@>~rE5=eEkNmsN45*;
zLE7_CX;6X?9E!6tX@qOvm|6WM+sIYa(JHo^e2a0Dtdpe}S8(t}TJ(Hy&CLKv60njp
z=4WBIUApAnPh7ZAQ@JHcX!RMRXz(+~rv!=EiYUCcXq>I^3E04+0m`0mlL*}+L-6HS
zKe--EGWGmk``s;IR7TYRNrm`Y3|s{*ex2ngYiJ-urmg2GME-Mkfp)*NSw8O9pDHZ#
z%+Y8~lcZ@-_Kod=b5r*BcfJ0#m&1tKU%Wf#_b*T3{_-D&;h@?g^I6mH(uYy3pn)<7
z#yAF4upGCP6m;`+lrum%;&wHN>K50e;%jJ4BilMb{Qg5!SK^Pb$0go#fAt{}ZA;pu
zfZNFqr>=sv2l776venh&RZYtCkHwe%{4eyh_56cN`A1Pe0aX!4=ZpOp<4($|hg8Y~
zc_3gmEzzECb~nJ<PBi;-6uwv*y6Uv6a9rJ^pXm~%8fJcEK#P}|9b|P#l|0QeEU@q2
zH)Bg2`?5VJ=@>R$kjh#CNPZE97CFG%CMY)T3n&mf#+Y5L;9}Gd75efrFIOI00tcIQ
zn&RlI;nO)wT6*?}J4Q1#jh1x(9v3mC4Dw)|S+e|lY2xm~z%88S-_5ssttAbsVT$yd
zh)Y8cg;7ag6aeWo#4|W0^ndj)d+mF7WGB19h3~w0J$oeYJWqay!f#+yxnVhPSm62?
z82!r&T)%xDoTFhqueneC{5^pV@yAZtf>>0YFsKueU`YO%dKFo!b8s32?*gg|<gzw~
zJx@8cfeXQ1i#Z$PsvATmUS3ZqwSF(cD<hHz*=GrmD3%M+2#uMP670rjdC0!VE`@5a
zW{jfz*mHWb*O}8!SP-yR!<ovP;9+dqE_4mCjXs81N2lOI(KUm6(~hCTgz7$u`paf(
z{a)5)Y<S1<owSEJ1N)jf25(ziNNF*>09-@VkKO=OZ9#O}H^`>gVyy!uF?F5xPjE(5
z`)kCvyIiX4{1Zpi`$a+oP|y&J;y4Xr2>C6rm*J!!{0_Paw`aO3>kPlPK&c45Qw1^=
z>AT3`E>YfTZAqWf`C;tg7<PT~kO$o!Z$&@(26bNS3RV_7ruoRsWOC^WxdQIl;u=RM
z1+v}D*;b&;W?Xwo=1^|GXK9V|x5F&fcuU$y02l;a!O{Z1&J~jyPD+4e@g&%Jum$YS
z$g8P{x$*I^;$c?@o5`lPI`%)D|DSCxJgD=@sU3=ERVU4|UUpSq7xKcIJruq*d2`Mg
z%z2`_=NuORE*!B#2SLjGlGh|>k~lJB-Tw316~F$j?`NEFefCv#g1cW-N0YgG(cO5p
z%+vE#i(ch7nKwW-;k<NB>^_Xm<WH#QC!G1eJS>A>`A`!Mb8K=NmI~7Ow|c%{^$RQq
zpF?4o`Q6Thrg46odiHIwe8<XPbKakwg;w)#bk^JB^J%@GU)K*W5w*b-7N|ez2XbGB
z2SH(*(}k9=Ocf^w*9tw)9_6=snhC!SbI_bj@0Z^QwnN;Rd$fxm5tS}3=S3b-o4oW&
z*Q=%1o^Q!#uiQ_j#Xpw|uDpc{k8(l8mo9FD<hN(vJd)w3FrxeQaS}Pt-ov=)`oqXQ
zjP2~9^`t!y96tY#v_~GllxbXqa0^E=*lPd`HoZq@ZkSH%n;Q3A%7zljGkJvvjQhU?
zTK$<r+l#&G=E@a633xXY-k{r)>bbg{S84UQ|5Lr8O<K1PkZGnarWs(Ym9w=JAqgpD
zOp*d?lIqg)Qm<@_CA`HauYtfh34WQ=I;e}EOP5c7QQ!gJK~01$xSmtATYdU^#tC%2
znJXMzm)j)%TeOr&bIr`kCk5PtSjL@=22p^;UV56LcsKrm?cw|J2Wy63kN??S^dQUF
zGN*0yvk_9yTzi|gb-o$)^DY+|cz7DOVq9L1O@<Hr2<22IC^;68aMjl<#Izw^CIw2+
zG3|ETra~knLz4gci`U20zv-v;c#87y?>lZA2&Bb})nLj*Is)ZP5!!y73wv7;L{8Uf
zMwW=LdtR_PE7qAyiLev(jg%hvV3=pkn2cij?5Y`0_&un^5}Y`ePehRKn}_S34zVcb
z170rZ)M%Bi;pD2_g)`yd*2waWdLwZ>p1sA85Q&USoEM!}KNm+7X$;$$S|(dG&Mt(m
zh@C3=Y@?AGq?qF03ksOXLOcD(`8_UuN=<x&jG9(pS8U`ih0P-|ycvT-z;$tdQs+K(
zk)~qpiCw9hJ%C>4vyZG@Z>RrHICVwOanqy*ZP#9x09a3V!F~<_!3b>+Xoh%NhwhT<
zx%V29G$Shhz;(YTCqhS}W-BUWJo_9a<@<0sb@)OgcH5b;*NC#NtR3AJzFcHTBO4Nm
z1(#yBP|UE|C3v7xb15}<eZa9eVkS`AI)WYGS_qv}_`JkCr9lxDOpoBCSG{j8&9W(a
zf0j{)CE4^UHhGsyWaxT!tVVRH3`?14m{|(gCW{zxdmt7BRq)I!*(uSbYL6YfO^sPf
zzTy(`Hy}(J)6v}mRS{lR`G?fc6qWRwF!L;u&)-vQB2mwoUcRco<jY10czk4WqwnhX
z%mMq|Z+=C<^Lw_EVJlsZR?4I!C&YX?eri@Ma$jW$2tz8oeoOIVsM~E-@ZG1QbSX{Y
zm}heND6_()=G!`|s^Iu33=xh(AwM3)+fm|{6ptTYj8Q%?sr=RFA1kw3?6spEdH*2=
z<7sz}=poko7Qf^is}w)x@hm5vO>x`f8MGz#vhu>^e5uM(lcKA+tQp7kTu9t`Dpop!
zLv*Mn{mj;yvm;#bv>pa$?R{oVy#aVYHXtWnvt8K8{+VofE1S!7h6tq0?`7>x;sx6;
zo9JeEOJOp5v9weHXT`tY`yRByY7zaC>_$y6UbzlOZj{}w?7;k}pVU<tCRowDoZ8F{
znzHjg7hZ*o$5yO3&zSuo9h_sp9IYNsXh4au#2p=iL}4a&Lku(cmeaF#f>Q8T<h)_-
zGxz2@yZji{!*I!_q1*KxY?U&agi2IBy+!>5wOPy3K`a;u(~Zzui`L`~E7Q0{qH{bw
zu<w{PWP%|W-i;^+ST>m^$$#SIH#$zc*^rtEPbimz0)%7^i)|=0qL_#69ZKG>#Uu)$
z12zl-qH3d8`&#J;(H-ut3`W--x{dc$Hu$!MIj2M<S{m(AMG$JV%)vFu*@JQ;JvX_H
z6I3b|X=3C_Kb`cnwG^AffP#~)p;-a?gkk3|uggTpd5t8P+R^TTsVSobllgbwzJB@k
z<=5Zg?Y8~dq{btncRll?7_D`Y!#BQKWd|0-5p|45A}gLzlp5}<tGv}XV^S)_a-mSE
z-05Y^>ZKkXHs4*t@Z>D(NVXU?>LKo%HL*G7s<B|8+GDn@SXr&cNivFrf}ow%mot7N
zt-z@ujgc(ZJz5r^^t*m4(g@C|Rz~W=n)?%Bk{DTuf7WkIUVIFS(STCLRIW{xUI4``
zqk(noiQz&`>Key9HeWD_$A}45mGp!e5XH4@0SbwW=uC)dggm<ce^s=@JhRNAe$W3`
zPH^j?W0#IJ{?F8Nm>%N)=ZD3b|35!0rTTyQVZVx4uIuiElF^C|u#^PYTm%uowvUiB
zLT0phA3r}DECF52xfrQuMfJ`a;q>BEqN{KQ+<;lhym)LBUd<CKVhqd^w~b%_^t)gG
z^7``n`rVgbetAGWiPd{lVJOWU%!nsydDS^$wZ}%((^YGT!;rKk;;_f2bKRmuarg%5
z26bSM<()1v2Ac;xrbB)1+Q1|fK%H%^q@(1jD$aebiV9%g_gZ*4Rb3I^bvUZYmdRnn
z#9j_A0^kx=n$dxdHPW{Mj_C+^V&1*x78ahldN|at&t!#^UR7E-cQ5UFl4MzKW}o#e
zd;&WnbqT5<V0Ow<9P_))5X$yMvGk?eCV~w9$|aqppd(hKhR&_?EFHvE%CG#v=FWu>
z(e2l2-%dtWuaMmGc6ilc<pL$7nhh-;XTiqeLVl${B`(#BF67UMZGHXi?_R!sepHOa
znl1Pv><e4$(S0lpTytLa%gKcjLGCfG_cN;wlwK)vg^~{Vi1np!w^X8@ocIo`*jWqq
z$1Lm_o1}8*+RC+0{dkqH%#(iRqMA6ZC6{Xp*NCMdoi3k4{Gr{9`sP5RK<QN_OPiE*
zP8LT5LwQAU_I`NfsEVRXPVgF<sAp^vI`bK2+#LQ1X@MnUSCeR5mohM1y;4{?!SBv9
z_IN>dMTebd9(Y2LFj3CXa)$^yqhOi_s+r6@db6$Su8uL(VaF_qQ5KI6Ri7p8=-};#
z4;wtgTaFB2UAZL-BV^WLrC;;Gwa~&@OLVT<lP;-)m-!IVN{h_rH9qP$GWg%cZ#!av
zaspIE@c5@@>c0MT{rdSgzx&Dc%l^H`0LQSwO4YUrqq&Qr0iq|!`|j8@<7rFznI*~F
zAG8f4kq?p;4d+zYr1Ar3%xI|tn9}ln;f$~&EryJy3qbfQx;ybI;OL73vLiqT4L`i0
z+ue;bw-@uG&ijfyXwb@muTT@g3G~aBI1W)`vjSMe4;c1v4zU0@3|V*3*88<UrbVIL
zR)0V;Y3NE}nX4EqX=_4-@Ay_ib0dD8Nxm|PdlZ2&kri~kfw)hnfRRNzFqvutDC3RL
z^^8*rFh7CDa^c8F6F~SKWFl>aC3CFw7m&9FBq!mVcF+%<(<Lgi2_Y*6aSg$^%+`03
z5rVxMIE!qoa#-`Zh4n730=D0AG)Z9o7rdo#rcNF7z^F<q(2KpuRT}sw4FkU?zAWK4
zWN5GCUI0uO(Ii(Ry`F%n&fvgg*3{k%b*~oDx#V0WH)uCQfKUaHp)Myy38@-p*4LK6
z7)Hy5UYb;^&NJgwX(r>ARqf#7K@UgmR2f7O(nydkEhG})1iL~WrG~jhgOTJT*rehZ
z>Kx~VX$-~62&nrQ0H?fACA!|7og*0lqBz5>GawS6lCcLnmy}+%MJGjyRMp5ELvBgN
zuLC^1=_%ge7`RSW9?(_;RY$S~PekqxuD7#jh=391KpJ7K>D3y56u|zEpz>urw1Aha
zfnz0i7nPvCP*ZtxCSNW*6o`C+_3>>0?1{{C5jr5<Aew<{)g?(ADyYNm(WW}_JRDNG
z=){1w)oAq>a8()bWP&(`W(N&b@=oYV?H5&HVc>7kn`B9lMMyTKAVqzZ2A|}u#{qiO
zfMlC~uwAnBIR7zd_-W=CDsdr^UUK%sLcSsAmvE-Q5#d4Vn`nUeE|w(cMX=f}W$5{0
zh3_CZ1aN{_$Y?M@Bq}MfBXF&-F~_{<rL=bgcf>i267#%kaOI<|Z=~Z0?n+0Qnv;`3
zk<kKZ8<>BY38aLPOacpVv{9T5GClBMA_-N)tnP&RMc05htMII>+XVq^c<2&-b&R*u
zSO!c>L<InjJ&X#Do07WPaOGf!Yd$-&A4C;=l<{$9YtWr*FmE6ZJL4PWOr4wY`Eh(^
zOd69;MU4y|Rp>^@Rx&j63*RSJJXqEsxy&~*j`-h2r<Cc=2%t(yZq2?SI_3-OjUW!;
z3s{t7ictky7R^AU>}@tRDd!0liC6_A&^eMQtH`=|w1!lwV8e$DhB<ExqURcQ4TfnI
zos1e>gdAC7Dk=AH#EDLF<PNPwza{Fek|GV{qlYSa6*YD&lh#mnRz$>-(OJG5TElL-
z(;3m@fK`(tEe&^5gnZC$8kM>&(P9Q`m>vjIWZ9~2g_I)+x>-jfpOrwZZ?;z}=8zH4
zu#$eQFrk6;NAv@&8rqGl|Hz3YuYj$>;Yora&l>JdteXH@r8z}ncg8*EdqB}ACJdGM
z;xJ%NC4IEzdxVD)V0VL5m9ReRcR^f*pU{tWjfg=RK9hsHDw6pQuf4W*iEjhm9}zU5
zE`50A6`LA3j674Aizcls_S`+t1BY^>-m~0nd{gY~SDmb*5KuGBx-=3{dYSovi}lCO
zoYH0ncGz;nNI-62ID$$EA*QyqaWlrvIuqLuQi-#=!d)1rwP;Qj8d~^P_)Q!vhmnOM
zah|2pfNY&amj#6MqUoDio?{_rns6Rq)8s|##$=6pd1DNmt%`+L{3J5$&;{ua)C){R
za;E#E$?dG}XC)OgV40836jAW(8e~*b>vt?CNT;#G+sxZ_Had#d$#xnJE0*}QJmHQv
zSgL{0XQ^iTco0&biGiyv8uSV-$VfyMtB@m+pejM~%w=*qkwrNgMt?Z@5Uw?YBz-iA
z%&GxK;S8!^yl$S013NMqG$K?4{WxAYF-Mba&Xu~w!YlV>ErEm2km<}Rg>?vIM&S^V
z&_%KckuWSg5QokUy_Aewc4yh58A_ZfWWsR<$3rt*u|2&Ashva?y55|Bg#|3lY>V9w
zDt@xSZB6q{3<g2oDF01WsbPaRiS4PIBnj~<RTz>Jv+9J`!x0c7xVe*K^{5?WsA0s}
zuCp~EhLyF7GOHZ}gT|z=G$0>A;9|}*Jy)<GHmYS^Lb1tYrX|%tNW+9TunI;jki}^<
z5PQ9@X+a{#UZtssZV29bq##~-I``-l5M<!5%mel=5O`wCfjoow?Z)*!9dZ%*8Z9NC
zY;w+0Rh%V-TiEL4hGV{wL$9-qnP}!{EX_xgSx+Z+hoFr?mK=LxYaHl4+yhJE>zniz
z<Ss}0-y<o3$q<6~rwNqJ%Tl3YR!jc&4z4@(utM0Ngz80{9X7&25>2pBHfVks5PN3>
z8bFMK7_)aU5nCpL7tJ7{P!Q=>wcw6&Mm7s5F(zO$wUr{1pc*hl(YY`UGob-azy~`|
z&aaj9&VmP@Gg#?dL4bnMRSOMJ!QyPgNI)m8c8qjUrw1})W+dxO+#dbi2wS??mj?at
zVIe_Z(gnZ+k=4a{%~PB~(7EzrKoXT?m9&lrtkl&=HRLctQwE)F&SbQTj1#j8&#qz*
zW*NVDL)6QIs8+R;=EH=aI*)4F>(|rX>4H|I<Bc=yBMBIbY&z(JO_AQrJg;o5izFJY
z;!E?>vYOWz$3UvQ2<bF7NenXGfpqFF?MPLHCMR_|_ma?x)&VqXdCV(dvtJ>c+?y?s
zg}k@V@cyi)dB1k`Dj5^Ft$NKVZ91NR^?p0?D)AZCl&qTr^Z^?R)$3$$=2l%#YJyYo
zFq{?eE|5+^m^UbrH<(P_nc5uMAO$OefH%OS$<chnur6SQ9X>`sX%Lv0iNpmAWA$>b
z?g(DS29pYUb^>XnBbZ5pS0^VYLR&>nOvv8JG{c5^hTSXqz(h0Hy-Tx_$?2G24=i$w
zTMQ&aJN=HzQq&+)J2h^#ZX-5!Q_g^8L0QWV3}v<>MGL$$l~nHfnC2%W&*(9v*oBRU
zR{SOojm265D5qrnHdqF%cZ1nzY0RSEfC8(V@pk?IKDiKe#B@X)b^`-JxlwboA^GXR
zg|e`XB!R7}s-zVnQ5IeR-p5<(;{jpeXR=86C0U+xQOgq!#=~6Bnw3_HY?XPa@Ar<a
z^BaPfXy=2P%T)AaCdCEhM^4<oSJ^l#8^=Ya*l2H+#fQqcFkD&l2^!M>N@ew|47~=U
zqGvjbHxfYv3RI)P{?xl3Rx|5pGaINhw?{pjG%|d@sv9~N<P?B<(i%e&&sriXjf``m
z^iEQ8wxH*Wt4J(Q0${IMSOO8Yp!5uZpy{k(L5M`hn$h~A<3Q_6D@1c9@|IZCH22VR
zimFMIF8Y_IPEKw?T_Ghen=CVRBw|U}5>VlF=0ziOA)3=|+Gnv>N4&B2*kXLrZK}*l
zK-v?vh7jXtMr3tk=PE+w%pw=3v=Z6yAel0p5y{k<^rP2)w6%jbivc7u!Xb~-VuVyC
z6&~Z+;moLP5bROMlknfE?ab9iMRw2}fPEmJdAY4?W{`?m*pTgm<pq7KiYTYNg-15p
z!r6D(nS$*WOI6;z!e!_LaEU>g5k=&=@3q&MjHFi8#YWb`wfMFQop0DhoZPn+Y^Vr{
zY-6-Wmc-7U6~YV?tR5x9;p`My^nS8vu>Ytl)SA$qHg5uInwg=|%Q|0JVM!v4k!`Cr
zd)+CnwJAjQWwB?1Chz$2Of`?BlgLEpKg}fd;tkJu^a_<M3Y`gH_T4y@7h1;l2XT+U
z4Aqdq%NvI7pIum>NcFQiwpwSE@qsh_tLYHo28$WGt*@GQqCKm@5hc38X0eQAc9U)*
zo8*RmhcLaCEh$@Z9tqJxTcJC;3R!OuZyS2VnSIfTR2%+R7__(r8y7<DK~GMY5m1DK
zBkSDb(SXf?zq>9uL1xn>NC&G5z|APX(`qFxS-&Np7L(yNS7WR?$pe=Lgobl}UkZ<y
z{c(~NtDHpHtg-Xv672*D*QQKp5?HkIAi=QiA%sR}`pcTPh@ULMX(~NB{1M<%;`FT=
zIBgNl3?^jj>ZdlNGu@zVi;Sv0#Wk{TvN}F{#i%G=^v*#ihU$>Yh)`qmMoJ7nOhVN*
zr1}V3^G0(Zgrfw36U^nW+;@0nI%T;LRW|WDCN^<KeNi9l&@dMn#2JfRfIA`EvvC`f
z^AB`$nR_uBnm>BO=FFzKImcvc&i)7f9ELFzfatUI!RV8%-nKHc77FZG7~zfGu=i<O
zBXb~&GYNfd`-qnKv;=l84I0*yCvclA8*Qx>BY{Ngsv`1Q)B)(&SPS%GxO<=vARSNN
zMmCk=^rqGltBPV>Mw-h84Az|T`}6v_EEP-UHl;QsSE}jKC_<qyWvW8XUNRjpQ?PCr
zbBI~7#mt#UVHGfa&1{k@+6vbqyGDGFVW2RAj<LhZ=pn==(LQYSja^EjClopga=wcT
zaY74t#A+`_EZUYOPHi<ICQDucCQN}L5Nf-w=}E@X`>mB{SUDWEz{v7xWB^B}D%%87
zpqfFBdYwy9f5R$d0in^Xq53xbq?t((8I;#r5jm(Ru(Lr<gnVqdnF|b^Yoi_F!-^@B
zk;?_%vU=~$CJ})7fpajME{!evL>3k+WNg=s#2wsM%%o~9S0zJbLqvd-fYu+G>R7LH
z^%hV5qTcwl-Ew|ak6{*|XT!9Ox8b!D%t!IrTM`xQ8WUYc2qky02(+NoOx|8o;l^gI
zQaID(uWI7jfPSELkPtRq8;qc1CTw#zA>GC7HQ0*@&IxOA-2pnlX&p+Qi@Pr+F_dkv
zY|$|Or6D7_6>W9y5>dg`GEL<mQf_Y>69R@2pwTH<gr@qLtJ_<yu`*#?YsuoK;#?al
zvNU_7A}pnqKH#H!vq(WBtcg-PtH>8FKcF7h(?mJZ`ZavugHQU)+R6|%bya}vA)sqe
z5jfzRk`n<^VYmXMl~Ap0+`F~uI6yBoC*bF+Mc9%z(R86*R3%IU;Z_y<C+tVP;?cmR
z@sL0j$d?1xBDF+CZbJ3sl>6-FbQT#NZK$;sY$lm~>|1sJCVB(llaWXi3aOM;^`y`e
z%@R?kOGRVyYz(n(Fk7+*gZ8dwOfX;6;jG%&8yR1|6lp)%zTYe^W3bl9N{6M%fS7Ir
zZ}h|xbL-UN7kX`57@+JgE>SB=nm!}h3WLhtPL1=F4djbf&#=iGY^T}Ou%Silfq1f*
z@<xbjo0BA&t*Uu*l5i)<v29`O5k6XIu*k?ulC}KBOJnxO(_VDOGlix&D&r0VHmz=z
zISLs=l4J?)6vQuXt2qjHs{)OP84fAd4?pl)*aFoq=u7(3%b_VTBk)_Thmow2niMlz
zkqD4jHZ{kVxj`%@lojI_N)yNlUDJZnCqdUC>smp57VoBniV`$%1AZgTYTck$XQxo(
z*=9{AT3nAYVU0tTG-!=?5ekw#wiT48z>Lz3U`IgtWIyMPbDPgMVDHS+lc>&GQB5;A
zOfOav3skBtSU5&_)6?v^5^8L|%1USeE?D3v778DatkW=oio}}+5VD;Lnqg$DQ?RIN
zIBu@!rUPnA23Z>&gnDG6Q=J<N#AHRW=5WG&spx>XF9xBB$QF||+{#$1Xr@ZAXa+h<
zEi{pJ#E>5~DU0nP0i+af@P>u<K69hQz?Kk}nh+<M_DpGY;8bf?cw#+WPAp%uRch0a
zRuPOe84991YJzF96vxMuOzV(h>adh=&d((2g^iOQq=$xziFW3hmp|BLC{B%S!$Hfz
zO;t0vc(V}@ue1irX3q=l0pbk5>}b5~LWNDQw@PTb8mV&+xj}xjv@UBZPNg5t7Vt+B
zdrlJ_TUD`er>v<GFJWFVa1_$k!7QmGpd|bN2C{v`zRyMq`U+S$0bYXlFkc4SGAues
zS@2FI1}mEaVenei=v+1mkV^mvC3H+8Cq-hH$2`S!OB(NlJt#pD<*j<rhD{y;{fxvV
zUGMsCU)SevGs{=;P-XZGDt)g__7C^+Vp@=(hn^m}Fo_r2+G=+u6B(MDf-VY<9s|nK
zsjhLZeb1{<J^qQNu*eq2k`)#+1T2*Q-YJMnm}=Rws2PZLC^qpJM5jbIAg{slY#|DP
z*{iD!vps7&8Tk`VAP}LIeoQ1dZVR*vkBf@FpN2DrHK5XFgzcP=(Y{lqhzF^)nY)=E
zlmzLrDTWpIxJDynadU!9@wAXYO$QrXjS@0TP16UG#nUX+{nKr}*v4#Og#Xzz!z#`8
zqcFLWrZOAt>8a@rlV^S?VjE07t>F%N_|50<_Lr~U9-+<CPYrEOaFh~kI(IoboV1_}
z(t*;eik&NzxI**;e=a&u+G7Fa<-A@faUHaTW5j&l8i@mbU(tEv>%9T*59j+`qIs&H
z+I;X!;y^dswx>{>(JJF}t|AsGzOwBk7b`)*1b~1z9cfG8L6M4&xQHUGgQcS}-iS=0
z(q18VAYOv=bR|1qM;FhY|MJrZhyO5uz>f`g`4q1tx{pu2(^(FLOC#b|pF$@ZhnqXW
z`PvrniJ%PJa@u`0a8+K*iJ!0;-$v6=RS&*075s72ZB2Q*RzSSsE%og1fH=ZcuMidJ
zAw!4YT0aAD)Z_TS3HKdf$J=pYC(C^?j7^&<z8S5gq}hoH*q`SsX5V~$dGH#K)rl?w
z&=--nw$1QDB@)xemNhq==L^9ACb8@&ktR~%x{ImO2W>mk=?#q);G;P?S|ZM1XDRFC
zFQ-Bxa<LQd56I0^0LdVCr@~D=n2@rukputc-<N~BtIQvXF0iLLc&X&d7Tmd`fcS&9
zi~;5=c$!<FU5#*t%^|359aKa(P>SNwcGG8u>0ZH+R+mDn&T69PGX4&7X(C<uyePk8
zBghV2cg#%!--1-*4ydA7$o|l*$~xm(e)H|ick6-rD+Ju{J%r@P1blR9B$tuQvumyr
zdTf^qwLc>dtZXLMwwkt1oMy)>wG|?_Hl~9HlJ$sB;0O)B)0MeJr&11%nxf$ZG3ef|
zD$(1cvUL?WbuKzOV2JU}ptCu*@${C{c!9i9X(JT{U7a8%nG-sw9RxSojZ9z?T-IUG
z;#cI;g+HMUQj&tBhRW1XV0OjKbk^BDY6c-HUP&9j#ff&g*&$Y$J_*^K;aDrWMR3YH
zGa2UNcn{`OpSe!?IzMV?Fkl<_CdkLB=5&qJ`1UtmX{WVwvSd5ZW*E8AP{YvA=G?h-
z5o5@Fb~PN-fVw>;iBC>N4R8wR0F~fmsg@Wj<|BQiPiF8$5kTG2=BQIRPjd>iibx36
ziVj)SUR9CCLSsW?!7?T_mYSx2sv3grGl0aQQ1+14-FyTKCsUF%N&Z071$d!!30)WI
zYQ3KHSWTtiJkS6+oQa+snWi3}_|pxt!#KmwSPcfpBYKkLk7hU(?Z?91B6iN}#g666
zlb{w8)CuXtlz_mS>;}*vh2Y7=oTCduo<rza@kYr|Iq~yY86biLN;FFeJ=-8s>FEJ^
zB%+JCM(L*E-D$||zvgl6G@&>w3sOWsM`_`bCxvOAVbB@-f1q5N*c84ca7C^5JGv;z
z7baq(D298NXr@J{;v=1A)Rbo+3`%Q~PGv&$GrqP<onxpn-X>(iHX4N!w-{z1LW!z4
zv*0mScNAzMPerJ#0fmqxngLRi$w)2I+h(Kf8SZc0jOvsa0QOe~5TY^h4EWsWzdE5X
z8Q^zli<K$j{Kv3}5^N8ceJT%GTijCNb@YNKYgw3qO#P+<^S67RFk;3r(hDZrp2J5#
z81u?gVscsHY8ihR2KojXYqX5)*1H{AeE|eBV>5W>l3<WrN)BZ(7O257Cx<nM2N|6{
zG6D~X8%YD?puaAZvfN+^X}?c>IyNB)!5<hdM;EwpfdXI+bA@p~&-Pd7n(;7Ci|0!1
z4ptwkH+NdfMPq{SuNgy#&SHImx6<?C*x0T4H%x)<ivs^&0>5p^P`jS1OtsEykh<$c
zStUVGZmyv2Os5T&agGi%5Bor+rK!&)tEAf@8U|0TurocGuFX)d^HU(-nZM3?ExlNG
zM(z-pNRuOBF&n)VcAv6;jWbT5I3doQWksO$s-mv&%RvFCh+rCT9`~g}qKRNA)(qHh
zGEbhgj7ksv6!v2L@5LpIRzKlu0L=k=5YjM;Y02Ux0&OQzoqjc9FcVm-N{p`Ia+!MP
z^h=hC3cZy`?Rpc|XrJhe9*afj+6RzA>wvcoVdl6>)eS*1O0(h7gCL^Gj9P&M44~Ci
zXV!0FMe4Vi<(jJXDr8O-NE!{SNTJa?qb&)~FUxE&cq>$oBttMIyr9I%=9q$WGQc~g
z^kq9*<NHOK&=PP*I)Q!#tR5<Xs+s<YFGMfO)Vni=c81?BqW(NXYe_-Mjb?%O1=`Cp
zf4XkezTE{rOpUgzN4Hy3OU;NTbj4gdqF0B(iVb&A*`wn?V!w(RZP85i660(jY;K|b
zPRd$ftwz6OO6egUB-5k8j@ChfWICxPq>yH4FB-;{nPi;oB8CTZ;_}-Y2zUmgKZxBz
zC{5@#yptIcX%RE~I9SGlm^7}H#e6OLJKc#dOcBh;n6)yp_f<&K=&0CT%KBHb_GRmo
z1k@sNCiJzng4>OpuIkwZXd$}*DvQS@Pq~je%4S-n_ZeiB-G$+noXHn&2V`@`mul{r
z-XqnVE42>=IhD?19DrHsQ$nQ*!|{PU#D2>>lYG1MJURLU`L$C+#(?{8p2%@SiegJS
zq=ONrPvWqO@7#`~J~$!EBfG#9SqLrVL&<ao0q!IdPxsU(Q6Sj!n5j9ya15W|Ek|a?
z7PD!r8Et7@W2BO~XGz-ST9C~9{I&tw#r#8a5&DFCk$>H1Sj&=btwt619GHt{GkB;z
zxm!S<tFUiq$aoNvr){E!WWi5QGs@_c=aAA7oHG+zCIlhm$4-ak=t>s@aAwKZ`5c-h
z>jJ2z2evxdEDIX^92NuZqskyfE3gkH*yvJfCah!w${-ajbic~fgb<|KAvThqR@f7n
zCkR1nK#KyO7!go56^({bEse4RL(m+oK1S-OM}?}UWtJrYI`|SigdWx;pp@x-laTL$
zg5t?J;r<97EMSZm8wCU%mO0}UGn+bj%u(sNQ(2vnA`P?%6}yyyme!04?y(}mfxt=h
zM?2Uc(mI!7psMIp%fN}jjpm%xiR`T!)&ue`CQ66xurIj@pwX;?Pt&2f*1>69{}7BU
z5qitQiX%W%NZX0qZ892kD$+5N-OQs%M#xFTP}^=T0$-ocC0QgfR~G~*tDHD^Z$$_5
z&B(8F7+eSw*b<J#n(vXdqAyCc?W#GGWFJX|nd@Fch?(06W4l<Fq|<)slriBTbLTN1
zB;8Lo6u#HwVbzHhgkSeBKYd8w($Dlt87C#2moG%z#ZM{6OP1AOm#v&F6ka%lV$X6T
zm}}z`Gu!ygIqAx3qo|BMmBeRb>BoQk{&VTINAjIB%^40^_4uh5eOb@9H41C(!XJ{0
zGR8wqhWw(b;t7N2{1RMV@8@gwaRME@yI-I=0_HioLYY{qTzxKG7(il^#z)(5FvG;+
zKVYQ2Jmp|5b5dhvY*0nZtdMbd{qish+4+bS?j(EN(;RZUXl=+{VoDOCRdL>f!Je%8
zDX3}5_a@<o9iVqox+zP9k}@x_S<LX%WKqgq*MX?X->yKw)*<s;N#K+SYxLAtSPq8+
zYot);p^Mf~WFj94^n7W=8u;jZL^W$G7~z)&x^F?1klMZ(sHg!woDBM6%%F?_*=Dk$
z><Lo5w74fSjqYWs=$`ZtfR8(fuaF_E3f^l8q!4~?KUP$b`Y_97FaTBpbWSAfZoI(A
z2tq73r`VlX$-<Ly?Ex49wkq5cf@Muw%nO<<6O144L9sqW^z_>ZT0*h+pL9q<!?b*9
zKxt>(s21UfzVX5>7F}$%>2;YB$e4nd#pY5Gl41YIM+13eDtqe72%<2Ko&?}SYPBNu
zR3#~elboM+rl!8`r?78{>;%-*w{(zAU5~z{?RMD=@U!F(Uoa)p3;=Y&q!!J0FEYT5
z==-92GE93y2IG_gLx;p((59k5Hx+6eedbgr=Vw8}iCk#F`WEAs{pRK8pYvZNn`>}G
z=g(8BM*U(vO3q;SBb_t1>U-S06=wVm1PqSDbLRVmk(>K1geVj^QA7O{w7qy9qG55e
ztUC_PLq*Yb8*I8KvRPa@*uR$ZM60^|G3A5P6@#93;d@7QFbjqY>4sqIEW-(z<wOT3
z`pB5y<93YAB~;+rN%+AiqLsispTe<Ljq1#O?2vR}X%Wc@0EDdee9~(8lv(k?8`VRh
zXwd!mQ4e3c&<U4HTDW?_?eZq%G#5XOG0(-px#LA|_ep#`Fvi&T_hVQ;=1px6K<l9`
zub#HdQc3~SsZOwrR+nPY8wBxPJD*<|pDoF7=*>m@6l=epe--s8Nq#c#X*X87>-=+Y
zd7z=|s-j%hR5aK<(@2y$m*C_?WGV`#{{#znDMqKR=_(hqEW-BN6*-Ra*e&dc^r=*g
za*$cerG%w8&kc@2reuOU3I6)!yU(u=$-_d&yp-^sz(iP_+Oe`WsP2;Q1#_1kV2Z@U
zB=rKxNhmwCSMpCq`eg+8sk(96@QSr(p`cPl>5S>Ya;X=#reX~uM=SHknym^SXi({h
zj{TYq^zdr};JE{_5rN#;t==c2{6Q2Ook|9Xf7BX{JlNhB>39{iym6X>b_CSAffI;`
z%_?aKa0E$3x}$;=zRSBJN~$_pw0O&`44z3cQIOgSfH0~}pwFy@dfT6uvv;}KIF4!-
zdpq!Fk=NFN(9kq1Oa#}Teg5fRV19Q~0KGesG2>Kifisf_2#bqYKeP+i6(In|LO*sk
zklmcnVcbClG*UE14b~l9eK;!WgfP@0O~L_NovE&1cqv4q@-lOQZAWgQ6ajoEnKtG&
zmoiQe?3{<1E$!3hZJD~>qPFH6PJzVP`fY=Eok|9$SMruVM#h1$oxe?uZ6eX;O=`p_
zxiNE`DUx222*W7Bg0`E#GaVPI9Sm5Yz>=h;YJl}X2JDN`8Ua%Bs3~6BbS1|Va4;Z1
z6t+{8(9)t|Ky$E&9L3H162SeVb(+0WJW{%(?Hbvn%j4n|E|Op+lrFIgmojJTzxdU8
zo>_V3sNt3BM2aeaIkKZQ36$6S*$Wn|-Ki{#x1|vTbg$?XFKg_d^hvL)x39d3u~rRT
zjxC&6Hvj1SO?{~+^_9RUi@{*kpLLEONfi$9x;H#8zJ2}t>+g`u-%kuO>^XH{CRq$l
zAYw=vsjjaa&+<lMFSudmCKr7Z`~t<IKSv$RWtX3FGzp;Lh$LxU=Bu?q-bg!HE@Qi`
zd4!MKEsxpuKOEEgk*j~k87bIWJ&J^4#L;^$Gi2IHKMBSRQzzs+>G)9|e;T8i=`Prm
z8Ev5&&ldEY>!VEag$H5~;+J{BeyN^`m*SQe8s$v4$PDaY(03fy(A3kc8pXjGspFz&
zmsKgsPT|c;k>1dzPi?JJG2FkDLgrOsQ<NuYJugQC8Fi&w-C1XbUfU_lhS?ZA|1ICk
zUe}Crj--Tcz(5GJ`vlBUPW|`Au&7M;M{CL|rHc$MNCle}-T)6yz*zP~D#Av?g0wMa
zrbgHo(}iVioTV02Rjh_oh0s}0k<Sgi*?GRfLa@dkt;Y%F@U8mp59`a<{pF{hzxUwV
z*0zjqn-);J-bBDbv(t+>2@($EX8Uphy=uv|KpA!z8CtE1qACu!K|tw}&_s7cRyplq
z3e_|CP}2#-{5n=}%z(_&ubDtC1^(@t@u-lEAsmTWVj~d^DVU=@Ee0@%MVlj?Dy($r
zPyt7y+NriH@W5>yLz~tUSScZwJ2a<fAb*_>Fs*IF&DDT?L}C%Q?F_=U!lxH$I746j
z<GnFe4aPh?g`5op;{2kB(2bNPTA137tWemLHB$B(^cD2@b|qF31PQ&UkFd<2?GAr$
z<kEJXtUY&aG%++f&^0Fs$I(wxl&-crI%ftFY4<=ROaj)+j<|`qS4Suog3~ro2s`CK
z6dO`n-hg;0M3@}C+tCztRSwTqE@*I!s$v5Mewgetn$$?ZtB?x(x|$LR69bx!3B@kc
z3f3~QVF=C59CTbmD3B5{5Sl?cO@j&jOm^eYeR-l&hDgK~!EfBXhelI#GvXU~Pg&%I
z8)HQ2Sqp%*I5)5@3Prks4k4D}-BWt$5-vGRxXq(og&aIek}`%IY617T8hA@Gg<+P6
z?sE{Gno6RbRvm0$JWw}p*c==Qtj9>2VF(>cB62IsTZqvo+SVkS<m(SB!A?xrW2t0<
zFzpONl8mHU9i;+t4K!~ruY9eQ2py&qLLAlC<s?DtR!YHy1s^)x7{9#khd1M2B)qaO
zW81XXsZS}fwBf~gOoRJ8vH##qkmzLn(WMxiY_MU3K!=1Dy4!qk9G^nc=`2kGXGj)I
zy_EJG<_i!m5zlAp3)>rsp*|{P50fZR%O-YHruY)JHw)mVrQP*sByWkxc3aaDDgjBQ
z*sws&Jy%ayc(ht@8zn3dd~_B`jalHLsKE<2=;qY6a@}R&=1X^2k#P#Z#Yj{e%a<*(
zE^p-1P|NwNOK@h5(Vp-||Hkb6gn<#(p;OX@<_)Tm>RsXzoY1N7P?{T6J)==U?67-@
zRgM%eu|Y7Gm!Ew7vcG)$_1C}9=inKfqI?9RQm!GpyhhZX8hS(jkezN|@*^iAYomSo
z&R<<eclt`gS&f|vLzTwOrp%oO?`no{{$4FT$vGl!rh*Lr!Xm8arMBT|WsYMi%pbiL
zguvrb%)3LsO$qR((_2@I9eNz@|6lEUIFOGUw^>ByQwPJdpO49KQ0C8-9Ig_%ZB*)(
z=A(h|1MO5ZD{~nm!&~X9&pf^|S^-J->X3MvM7Xnq>^T_D->V2tAE|GghHdq^_H=xr
zZNb*;_;oJXFDj$xZM(jdy&wq?QBNYPO+QQA52LRal{y%NIK?(P?6myrG2M`CU{Y<-
zHx!jRoh5ZJzG01FYAYBE>}n+IHbg|W&5c*pVQ*J!CkhG95e9}m28Ojj=#tM;=}ed&
z&~WP@2L%qxAR%$PlB$1)r|F#w?_97^@=hD$1F!Y#bnxqRczc~oe&^c5fq3YgXElk+
z$WsQ_q7;hQfD`S{vuL+`&!P**4P5ep>pbO)eqgde3YqE@<!X8K^6Sq>3ZV68UtfOp
z`S-v6`pZY5H2oCKRYa&xqzKd)Bii%b#$dIN)l8|D@vU2HM-)W>uunj-gLAbIU#-<H
z3^>S)i-Lgc!EcLXRc9lQlSWMAQAm%Y{ffQK7W2nkO!fHx5e!c;^S2#xPJ<~-dSGD1
zb1cs+9Ci=pv!qvLkk&$~B{T`lZ;#-xRr~Y;Fplnmo=^oFi958QKT(h{%<4tHq?|5p
zrxP!7bVdZ8M)j-%l*ir*XXfId{s;$Ef3rL0#`Y8&<d3!oUc6*$59v|}k`NJHPeYf9
zQ-qFpbyFpX$yy;Wam8xXamTTE;iHQe-W<_%d&;it&v7w?DIt0^JU=A|OoucOdF-R6
zF3^hC9i<YmLWN~$J#1{<nsY2_;cNx1w_2$V=fIe<*Nnz}vBAvN<7w0h-qJNImm(BE
zRkF{AQAN_)hwj#y1=d;H=mNIgN=8Hb^v<9XC=};|OajroBUjkxwK)}f$#5N7wBTqr
z?N;zhlTdS#?_i&H`gBa<=S62$HejOc+wHbY{}g9Sm`<hyX^_Efa2D@d{lf>O*$XS^
z0RL1h`<e9J{lxcWrYK<q*c{b!$k`zN+l+`tF*MtP;?7fAPwn71y*LUV87iM$Xe88O
z7N4>m1D(U%D{P|>HRFhj_<q)*dikQ8HR#ZJTD5^$afP?971I{$<Qc1ry)k=!H-sD^
zUa+#ywDHh_h})QJb~|TI+UXI!okof%n@y!kFaUiJoE8Qj6<$oQY*wl^yvQP|#FX&B
zz`mC3{gj<f!}@H81X$;uWhfyZDkCx}cX}S9>W36?P_Xgh<iZiQV&TeTk)7bI<GVUM
z3y~8<biBUK&<Ra$WFpm#R7`qZ+$)-ug4vc*us>9gN;#T9!anIKz!99X1Nc&PxvH!p
zX~_my57<xG7Z;Szsm(!cT_$58Q5>-<=5y+?6@l2}m2_Y$V7Jp$Cmj`g*>|t8tXNrH
zAL%+qJS@>mQZNUWw9z*8p1mk)cR*6wd2@vUn;`}auxRQ$BBwb3!yq(_3=<_DLWyvD
zG~DKk7W>@ZK0Wv;7U~KNyaZ2m=YZQfqarj5f0$f~r)@MLMjPcGUrHY$|2T_!OCVF~
zFwo76Q|FC;EDB?3t*gAc<kn>sCJ|pI=NaJw3t-s2F=B;cL@_}@;Y1A~HX;Je7#m#9
z%(7{`NPzWrFriK}Tb{8^76IAz4IQRBCYzgjo5Y`z*-hGLs#q!QNS8^^9;qm#nO~fL
zMAPywdflW4(hPXY)sxA9QD%VIftm0S^BGdYXsnD>ryqoJqD91;S@{tLSZqktX`Y<n
zGdk-S3VXLY0hA8mK`c}DrJsKN^>^QUP@0zzB$W+INc~AF$c(fR3+^c(Dv8>aI2Uky
zl3*51tIp;V1RK;M#)e3q&p2iu2XbCyBy5}`%2Q0BUJz;SgpD?~MKol+?F9suiF}bz
zNz~O~nBCB_y<rC#Cmw<$qwU`_3`Z6)d{v{&mtna65wS=C;lSn$O-pIALk;vGXjVc1
zk*I($2SiaPe<s+_4x|_}$hZ=i(xKd`=#w{O0T7Nf<#v$p_D^b*mx9KSqt$)-mLegj
z<vkRGb>=!1K4AY_5Uzms5jAa;=150nz~}*V17FJNQm`k1#xS!<1il$$XOz1@0}(;5
zHT)%#)8|Yi19~!}*`(P80G~{`RZNPcYN!{fbb?Guql~ryJ3z$0t~nn`hCxU4xU3T(
zr`a<z!!BBTDG{hd|M=xgCkRcNzdbswNt84Ea1>eBVpJMLh6b}HBw_DP5fTc*Mzecr
zr-vlJk+p(V5aEOfN064)`_unii}J{LOIy~dFKAB|jvg;$c^314*DFL<{T_l#i}6rV
zeGyy6#I9rM0Gmy{H~XNOw*W7@A)Q|*S41+fUSJ0cmNG`^grPw3+_-Pi!I|$W;($;F
z3x}~cNED-!?3nPUD~522OmpZscbMq$`~X@2ZD`#@te7n#*`;(OKw{czZCVIm`j8hZ
zfacHsJ-q~db}c7)4-s6~q{8-A^ZYrr-Jk>zW1RQ6QH}K&c>&84H(?9(QXdb<F2ShK
z7;oZ~G5sKBC$aL6i7D&Lv}Wg>Rn6-|R@ix;7=_IkPJL}1Q2h!w(OwPB1XHV9Z+pC=
zt6Bc>E8xy@5t1(3SJV9}anWEv-AFQ>pAvXvLbKWo3&T`9Iq<JyjADZ+y)<w+IJ%?6
z22tj+O9Sl>mzHe%g%OlQ#7@Bi;w?#@*@`45y|5DQHxIk>T$+_{GMZXz9`JNXTk^&(
z&Z2x1%a5{cTO`lbLzMP)KDBbI9gto0Qz1L9I{PV?euec>OV9EB1km%P(}(Mo(}pSH
z8A?Aw%E)7>nY-k=<T#F|n^ceu0{Ixz`wo_yy~&G3J?ub%(lsFA$Y&?@1(kKTXvdnH
z72-CUiV}w|a<;j48`b-s9SmP9lK)_1H|83?Mz-phNSbYcc+FW+YuCku_=W2=rHdNU
zp5NZ5ATRvi#Y6P+a$VJryglJofj67QO0s~$uqbJ-K(B<gTl*o4dultP9Exfwzwt_B
zFX`}fCoNX994nJmxMBcX21(6nhh5bxf?wIn+1D`Mpj+DC>1hqlU+rt0TcSVyV~*in
zUnf7)kWR~gptnEf(5~ngp{!=9>C5MzuD|*68^Zf@e-9h-@)^^r6cOozbT@bc#PlI;
zACky!d;n4ZL(<w)J`BO>{~&JlgZ^#&7mt}&^HYezOFBv)Qv48P3y&(r7GFowmALiy
z|5naYI{v-HO+wlS|F~u}O$BI-9*!zyA@k39Lueng2>u{6*-t<Chil<O79-T__wB<F
zj5p+wkDHpr1pRDd{`C@C;T`<A0`lA^6dHSHxfa7t=>tpWz&);g2%Ve(SW(J{!Uf4E
zAEI;VAB~D;z*=AXQ*Ply67u4QT=@{G;Xk|^fFJ)b#N*;t=Vw)aRy{vU`Cs)_PZS7V
zJiaMMMkni9-YC2r*K~b8r#jLHpp>6tk$X1}x1;(#^d+$h;OE2r?LYo=(pg`w-yYE+
z!b`W$s#cJ?gXR!dc3v|jI|U<HfW`pxv==y5<0TV_nF<^AMpDgTx9vc*c^lrs_iGi$
zQ*5bLPjn5QhUgHhgTnEHari+gSabM2rl8~eT0<+v^ayBL5IdV)sJ#VqBv|CP)AH=7
zO~aM>5R?73)D+x3>w=aP2rGNz;WMtjC~SAxL+M0&Dj5w5uFWM|A5^S3xvn7HlQvi>
zE7v3l6H=tw%mz-XH3S3*8QfySMhH)<gfHFLsqIq<Ya5o6kIjuK?w?pieTL;*6V470
z4r`)6sR4L|flUP|&)+xLwxY7?bp63LF<)+13`5pRNU<RI*%=tsqvXt#jMy;npuuFB
zW!S?;Uarz|RKl-aKO7C!GQ%41hb7A>-`H^vN1I-<{Z5NZ0ka>vO9Bq^J;n^+9|}nG
z%|10{6IUOoWQ!Wmpjq8L=~^gK*b&$%Q4fXWytI6Xb_WR51hBf)C24E9DE#JCXBBJ)
z%15LVB&j5HTfv4A1Jk>Z_>!DXtOFK1ji1PH3dPwS)?H$G5k>F~1BDYL&!F4P5T?EK
zIoNBr>$5RItIhswe#4AzU%0q&<}B&L2{fcuvBX;E<4I4Kt05Dafmhl(U^DpCglCsx
zMhGb#$=*7u931FQ>@b9*w>v%o8clZ-8X87IkDIkBOp=ALVwB5XVU3|tz(}<}C4-4Z
zkDm2AMP4;cq8w0#zRp-Sj)Avx6Ok0AS*zapr$%H^8BO7;dIQqx9dV~r6s)kaz<|V|
zk4?H657lDBnd2pM!~BbS3&&tne~UT{F;vX*5$~j%lpj~vmx#_b8t}U$A7D$*SHmg<
zjn||f2D5CctYf+nAz!Ui-v@fw(&_u^LSV>FD|E8GI6FmoCz{V{NlbJig$L1Oy}W#T
zG_vK-Me7SvF;<RF-j*ari?LW8Gb$qtM>Ob<!PC)BuQ>UsXMHXvSi~9JT4BALuMyka
zXOz8%zIu@P8*CN(t?EXY*+^DHX9uz;%VY0L16mYy;tvnw??n6Sd1P&3TUnIgaRZK2
zOymn%JS_D^mj-BSRs=c(w!wn!r-#c-XMB-JhHc0x^vUd=80g$JU$dAHzgj6Ya;y{P
zll-#T?e?MEOp5}~Y6N^>P4mj{;Cvk^<96Fzf#gLI)<7YD4;W8;{<{(eVRi^>Yf{jk
z-saADxYkT$5af-=x4p|BY3Mh<dCbTjUL01lsYBTW@8aF|<&F$B-efK{XxIv8d{vFV
za$9TPGqb1J(NxcJ)dglT)!=#R3Y%tG!6m)zZ&d>nNYz+2Tr=YT^zLlbd=|26Hi)Q8
zs(Jby+X!+03QGUY-0(jPT`F84KZ1rGa+lhjQX3Ya&?WoNl?#*tSa4V-f$aeIpkLr-
zpHc`{Q6^&KO{}Qmt;&QD-^P}R5e2KIm=LOq{qcR0G$@_RVP-L`UQ$u3^O6bofRN%C
zM7*?E$9zrg0q5vb4)t%eZYFcjCiJEPvK5_kb`9-$AYPQ(Uq3$*@Ca<tlFV1*d0X=F
zXuRT1(w|s43A9=g?qJ8yB}K%dktQ@lAJf8Z#6~uT^(k2H?Q!X>(Wx(f2h@||kJ3gw
zUe_mA1BMJqZdmx?!O>y?6Gyu8ex8fqE)20VM|06e<R>}^#+$9b=m<#lXmyv(7!iv3
z4UnUYI>wa=Btn<c@LoUx^yRw)yYBPrw+A1rjR@m+abzL2_ffw7E%uQ!K-8F)A$y=%
zkS`YTvn?+AwBy$}E{^^h_g{>p=7%N#JTbdVE!$TBb8c0~x)>y>;`YL3pD-b7nc`b{
z!?~YGs|Mjw)bfqOkVQ}&wClyhwvWmzY4&B9rk-w_rKN$TI8Luls}vGTK_q1b02_l|
z@Fd}3U8hv4I}Qp5ddwaQA<j~Dj3O3ZLrAz7HeaZ!-bkCkPPIM@(fyGfFKg9{RVE8@
z^!Bd>OvI%gy~SkH2`jNll@e~Ea3PzXnoHHtTqF`Ubj>Uf+L3833#s(83193bQs+|C
zQyz%;R54%`e^RPpf|5=`Ufu<5zUufc@Eitkr`=U+*Pq2v#1y=CWw{GHDS(5L`K+Bx
zAzogW5F${#y08!5Q=AsBx|AH3I6N8Y&frq@veGxb#XCE72##1Tv$f^Bx`Bh*EQZaS
zqJn)iI4B9A%d>bNgo>w#e{-^E*x)e^y~!?xkZ31ZF@w!wro<R}9x<_w2JuNabZsZ(
zVHueE*@+Al;x^oL_>-4syo#ryj(=UE4`pO0qMF!fFW5LcR&gl3MP~15zRq^9S*q>W
z_~%6WUM)vzKg&bP;ncmUVZRj_(>clyH1W75oO~^bF#gdpA4-<64zsYkvO*{wv{z^;
zTTXjTuztRkI%P1e#k?Zy+ohJ>lhgx6xX3u0jRlWe$Z#sm>9f35*cdEH_qiC<zf2z+
zw~_O+Xlj%{V`5=4vG~ZuKy<;a@f{PZW@2|1X2u0maH*Jq;TtlwD1kkl%XOQ=Z#>~C
zT^z&wtJ+9j><^6O>LOAN98531I~U|^(lQnZNC3obQ|f`qP{1iG2tkyVh<mwrDE5K7
z7wk6@60)`9&a?f7t6j*iLiqVl3Vd2^uP=Xi{r2+hi(=Luf;oR?v{;ORE#g=VH$W`x
zmY&jE={d!=WCgI?P}f{T*^H*pcid_DCMX!(0u=__Xl^c(xL0B%Q8o-}1kv}Vb9o0U
z6vukiX9I%K&4Iw79yIUPA#B)$2nT~MMTMBWRV&bN@}P*>A@St~QiUj5pT(~EzD#<{
zxmu`Pc>91|+)}pRu9ufXoJ?^i1`M~_ZWo>)B7wI(Wyoo;(3XJI;F7jAn*0rqwJP#t
zl4Ya~V(3x6XjR<p3mWXlsh&f$CH@J^>D&^PFuC<x>1wi4uB}_iIHarhk|C>_H=h%8
z7d;3SLYXL3s@*CRQlPbI*9@1h3a;<C_?{3FUgnxglY5#ce*N`Nf46^IFTeZl+oRh@
z?A<alJSwQZ&4PjBr?pYjff5F(bYrc#sJKT*aB#={0S+<)<-aXE9?_h4oR~LknZI1<
zaSU^iuptTCgie$rMt?he4ASY|V(u4t2)}P*Zm=BP#gi`Sz?A&m>qVi}IlYe{{Tx^&
zHZU9@IBBY+izd!@2k#AKIdG7fKRX-D=g3-DQOM(f1{{fvYjI-z)oa)=>Swv;n~9h)
z*~QbIuI-A*2uqJf_5;Z;Oaka=+-!w!FiFBvWU^tKvE#u6xCOgp>*n)w?3N_4b!+RG
z)u1lH?|9rhbqoq=0(6SQL#PUzh}drJZ(4Del9lr9F{RwEONNE4uzyUhiN|p}d(Os1
z8nR?W1EquD+1NDFOt_Ov!hMPjMlHvR=jh$OkS(r#*dEHus~t4=e4_mtUDu$14E7(s
zUBr5G?(YZNTb(pOA;ftXusMPi<}{Beo+({$8M$SLNvBG?B#N+gLw(&ukPTD@SP^P#
z%?AI9U*9xYnQX%$dzmrw#RVtN!S;@=oIlUnb1QH=cSD0NQ7NG}A7ca{1S@f<VqnR#
zwYLSTZ9Z}a(Wi;H>=czmEMdxxy<#cJdvFbLb6|@L(W|@>u=JNB?_3fR{5{Bqf)1$J
zMeD<VCu*W}5DtR02rOLq-aQ%#!rz+Tf9t0aKs<;BkXVsmebvJH2|KPGna-#})RF4#
zK1W0sDe0k`dXE>68=a@XtKArkm{b!!#~x%0)vSbAKtutRKBDi8!UuX2gvk1EKKC(f
z;TS8pE!#p|cD%J$<&>mnR?QkTgn@Vc87R<e_x_}J=}niyyYY%H==`fkDxD)`b@Fe2
z`>6f<Y4xm7Fl$~i{zZj$lvv5gmS8yO(OV9G_J=iZDYJ}(WQ@g3?88<9;rOi^%`+3N
zIwCIa*{BK?w9&pLA{b&IVY@9mO4egvAH~c{v8upg!X#6Zd>SHHhS^ee!cQ%2^}KQQ
zjY_dx0O5BGV{jgTkoDr$k#ut?2)vPva~f{_SQ}k&{>8V9D3ve4Ac-j)lG$+?%j}*)
z=D2FO$C!~cGw!>NSZ<rGEtQS^7Bi0Gqe#xp4KfQkqY-LtJRN6iPYW5X6C^i|P1d$4
zIYeHzo#>X-I3tBeC>6CvN((HZW&$fmok^w*{uD8;j)0?2FY~2~U)m9+YnSzSt2mPf
zB>Jr+zN0Sw4hZUZU%q?YUw-rX5j3rgncD)`)yyn=2>=88XlE&zYlU+-=5`%apPsm@
zEl%HHA8lP24q~vQBEI%OM4Qk-a-lSuY{;9Tyzy8fT?Dd+;(vY=;=FJaNVV}AHk2j;
zh2%KPFHy@+UFOfme+{;WGhmrG)JQ6pp3?~pd;BT$W!AbTivWHz<7H@?a^U+Z-VdSs
z=r<AJ&cR*%>#r{l(>Lzf``it61Kvb&u&dD5S#mj*aw+-O(%jTjWgANECWTCo;ckJS
zcJ&dZP|{QOE}a2LEK^Agr|1U_rV0k!J@;Z!(h{O!X73d^7wBXeT*gyu6$6Xf7MI)w
z5$es<wzJ{GMA8i-(TBDK3E^i+n#srWjqj6+CjnI25c-Qs`<nPxRub9htIaIHaI?SK
z!NV3BS@t$61AXSTsL@}>8La`ydr6KPrJv#~v@(N#weZhEC~{;NCbG<6$mT<TwXg%p
z%^KoWx==LclC}%z0tgjkO{)f|nc9!9>mlp^;`5G}-^06E_cLrc$2mtuKdA(alJ##4
z*nlA7kG6SboA*jJ9<dZAT>YfdC!|q~<5TY2WejZ^tBmmMQu%&4b)fk=x1FTD(d{89
z+fSRis<xL5nK^k)Mz8HsNW-zBthf^Xlmp0K6J#+E(EtOO6dnxRoCd+g<D|l(SrD1t
zh5gF}VTu#OGfzhWG!kCP@d`jA!X$Ysz4q#0!-c|_in^-#FzzM6p^fn=RRxuvh)1ki
zQC}TqF$4_GF|rW=0j?AY?ajbTMqus~j9j`+%|$;AfVxCUTxDSG{+Mdn!;C4nm4Q9Q
zgpjEQ)Yg<|H@n%N;|73(Y3SwkH$VCO_3IxF+lsVjTYHBm@)Jj9H<3WpZZ<g?#xA*v
zUIm>I9g>;~kQX5w6Vx0~Y@(?M#IOoN*E&W_2Lj`l$q*&)ikSddqE+7sp%o^oOP@ee
zch`n)U1qy$J(kWKoggd(Po9CvOSRG4=y-GyGP1_%?uivFa^qO<!Zg&^)hYg=A_TVy
zbwxxOGa;Zb_NLs?A-W<}rcz(wQ&q>}1Vf^1r!w%fR2~d_rLc0E1oCjl7%=sA_6;{w
zcy^cSlf2*{lyGs?Me6VhHTXAuBGq12D|FthS;kGl_hG`+b3?vsk!Yj77{3-q2~cX$
zm%ld82<3Yk7*>|IY%5GYEEbsC`Dzv!br0+Lgx-q^!6I9QqlxfY)pZ<PEy&slrA!2J
zSb!e2+Ka$Y9U%;)4d{j)5Q3LY#>ges$IM6@FiK3Cvn^VZVaz9-9r`b<geT%pu2=@=
zJXqN3Vl&lb!FL~1wM{_HF>y472v>*y8h<GIyjAtZo_rBh6mJd-{y|iT?#qkt8O2}J
zSk}WJQFNoS9*mE%CH-E)9;3I1MAYEAVQ(ZD7p5KP*VTDT3!99r$DTQrme@Ea>YyS0
zo_Zsg!DoDf+)XfBs6q=tgVPf#)u)uAnql<7P<2sJZSH~QiSEJDivV(MVyJ}hB#}7F
zE4;<9)fmbgkJVr8(x-1FjIeLJZa4GM?V1S2Z0B~}?VcH0os>fYWfDRanwSWAVOeqh
z7Kl{Up@p@JgGy%Qq79w%0}frq$8Av)hg)7OIAS-(7tmr9Z3dqHWQ2VZ`kiwuM*fQM
zH_<OWKwZfmTCkpES2Y5CDbpgb{%H}+P;Hs0g&G4ha(k4a!KBuqb~|Ly%D_P-2DQSy
za;XG&Hj`@b>(w_957T+fAm-2w+NTLT(<|Uj>X6T16B4|HUiBiz#6(b-y8&3C%?8vE
z><lsyxpe}kA*)Xt4UP+)&P7O*jx8_)tXfp>xlbQ5qjB${Y1p)w$_5XtG%M(ScU?QP
zzh(E8dX>r=_hU`-HF6jX-f8Q<y$-diQ7d;FVYzy(qgs82W~*9P>`QphWHZrwRxEgf
zwVRcUJ|?~h;Nh_0roiqOMn0_OEX6DpAZX<lq46ZVVP!No3cy+6SfNjaYpzD83fL#C
z!ZMOb)|oRKUUD?#nQu_{AxuxLPx4zsOi;kC2hW^jESydR12H?xUGaL7k<T5Ru^=$B
zE_WW7aR7iu>n$EUJ57M8ft+Dkc7;QznL`CUccBTE6um(N>_wD+A>K3Z)!F}(kZ@;%
zN{z-aRy)j1oezY{=%UnwR-xh9bcZFII}BS+B7BAw<HYkHtK8p2reP<R+fagOnu<>s
zQ=>oxTAbLhcCV0(9rq3UdFu}d!?DZjWEGa(R6E4R@OyeYjYRS!N2Y2>-WVuN>qg_o
zN0Vx(V#)<9rAAS38ZDceS<NA9_D|es#0Gtd?OBCJH5%gi%)Es^c>V{{&aCvtnJTL4
zP}oPDC==CQBXL;aUp4$w=LgLe8M=~ejSVGAVrCfzQDI|<*^BcQ(0|}@FzA`t<V;D8
z0nH}f<{<TmhyZ}HnnQFvU!a@1WcM!ab6@;cTOu87Q)~mhFPn;{!5|m$L~78l?QYH9
zT%v2}l82XpKEFHsV6e*=K?Qk^Cy&`odpo^yaJ9AMXS?<cCy2<hmBFr1Y`0en>=}d`
zhRGO|Cg5TWaB|04G{EZNq<HtG+TZ|qm3S3@Ez?X|m-||ehHt@4=EZxTp+X&9vK>?F
zIv0CvD4RyLqP~azr2UQVHto-B{!@Ek!-W?a7YAXT8=;?y^`%T84+GR%{!7KII;tde
zaJIB~>rOapCp;_o&*_O`^g^`;l{y!Od1$_^+BjG|Yp_l;+tPIxWLH;Jhc=ii`ZgXF
zg>@q4ZL=_@$^`pyLt8Xqq`N9BvjZxak%|G}Erc^46Qh8yv(D9tk*Y(osn8hlh`%DO
z$Q;C52%|Y$4<Ooj9kl6+oeI`DZE=&F1Zqw8*O%Mp>(@U#+BuC0o3~~codOVDozW|7
zxk3Do*j%RV-C*Q2n!P71ihbm{o3^nt`<k6~a0Q2x0wPhtHbzC|WmJ|xcAob9f=9M6
zk*ViynbmAq5eMuiLR>q4mtpz2pnNhzX;megIxS8NB>94JEzbR*U7k_?zc2l0WI`b|
z;|(g50p_Bn;+#i1BIU75IwL?;#tP{2R9+bbMIVY?Ta|#H36vyK*|0N*l>i-;3Qa<D
z(Ns!&<R*&h5kE3;@XiIlvh7DDhp?`ywB&d2Bp9!1{B<LG4JGd(0SD^v_<90lB-#j9
z@k&tMYZazl8&a^?dFHldIy1<Ugj|^{QivPPAC~+TkrwKib8K?=R&s3GkwXX=j3X-@
zs$+vmcq@jcct*?Yfw7vo{Xi@~O>zx7Anels5Lw6f<%Q^!Hib>#&dy}PL~vFMr;dfm
zAPjb8@&uLziUXy-dTYn+cw3{BMx{c9vC)fdy0NPNCcaba-a5dwMD1f@<IC3KG?Hh6
z(O}ihm_p&|0a&>Lg`sQ8e!FPIF(jRhj@LJGC=o_sG{kpB&%T5$5IzPYsjLVF+NlN{
zZ_}Q}F!)0m9h#BZ<QG$o(WnM`c7K3AbH>y_*8`0@UMPv8b&(>9LBw;Q0Nxh8Rqf~(
zvSx-wmkg8p{IY+0w5$Y_bJ;}O@MN}Z+?iG;D(C$|1vujs8dUEuVnVnt)M_-==a|AQ
z>O=`5gihV<*u>6A5Su936efl|Xw8yQhn%t&teJ$oos01ovT3JSBTQX9W;}Wf4`)aU
zfq`gzEMd-`h6r_qQR9nQm}j~j4a-yN@NKiGIP>#IRIXSnqn*vGnhi8(57W<)<!DLP
z4Y6Yo>s=>17?M!wV%GVB;3|Ftzx4hHj1z<b=7HlI?Spm7(~H_}iN_%^Gh5=&O!KRq
zK{3Lr?Y|!IG&)T$l^3Dkv`kXt8S&`s4X5@F8UM`L%?@Bjs|90YTanfbw;A{t$*}x(
z!c&~$*3+0xJ1Nz=I7Va<9dco_`w($x^b_Vfd@H7~rw_FoD5~lR?-D_HD~yQDmVutJ
zb_g_IM=Tm>6=t6pXiLoY7=+>y9c*IPi($-XGGH7I)Nx=I(71c%E>=0TeNJR&k4WoL
zF^x@dGmVoYD#v~5SMZ6sR?&)ZwxLEriV{Dk2N{>N2R7xW)Q3ckvda0iPwjQF{>VGB
zGf!}z<l?101K=h?QhAuQM>eYlQIsc*y^+UWXAXBS!K@x;shjMc<(_bt#_54j(5$-Q
z&ImeGcuj#^1qEeF+dDk&+)hPw+i-_|+^cpugfLPES&Nv{%vNVc5eeQyYpq^2<FRCG
zC2<-nmBDGz?-+0?sPJn4oio=`&|9zzL>&-5fKsq4B-%i}*FK)~f#4Q4XV#0jQZbY`
zTb=3b_zqYOe8Q?$lXlK-aq$EXQx%un(ve{LUB%R_>5FXiAccmO*i_!FYk;HTp-L^9
z!K|_VmQXB}M2AEJ0?S(MLFq>MbC5S}v|%A9CT#Hv3`#6yW=J(1k`CkKCm2FCn@%;y
zz#^)%hRA0QFu*G58N-prr8IV~Z2eFYp?F2zHMIPoyz`7{`bXEn(ybD*8zp=R<pZ1j
zH5c@C%wnrqra~gBY{arcRrsFe?s;Ytqc;`cdgW<;sk_xMbCF_Mj65^YW23*w_q6LZ
zF|f80wK)`xMF)+6GYS$I32n05VNb7bg#NrjIzudNFV+ad)`jC}TxPWm9f)zOr!ZL5
za*O%O$z0h6?K6>mv3y*o;?1C8whV<+r#P&DV5@zq`i4`dz-DK**b$jzROT9tHW--3
ztV-}K=LZEA)NI8djcP&j@{}C{<zcXn8Wtb;xQ;;-DkrnFqmM0r**fQCr=o40fjhLy
zKf(TJ+^*{RZ3J$6-XkV6)1hgE_mDOW`uhq^*ziZVt2;8CJu_p+^|T#G9m)*F5LoLK
z0T%NvJRndV+gW-kPF1H-U&Cq7C}zuXa(eJTbrEAP>X|b~elYDgbRuF0GB(U9v1uQH
zTErN$NMt1C0NTKdS!Nb7dF*Rgr`K4Uq5jaFB?$Nm!m7s%!c+s;)sqASjJ57k!S+np
zU^XLkx&VNy$oDwdW$dvqT)9l&6PI)_<Tk~(!@l|f>zufO5)a&;e>>a-<<GzSdH~Zu
zc-*%_s+DLHxMYHS<xR|vZjB=J*_o+%COp1tK08v0ew$1U9uf^iWk>W+R2Kh<%A7l-
zY@{dCB9<Naqe?jjY<G7{s?D)ozppB2<>R-?MMHCNw;_f1@+Pjm>LCsLe0bj$8rZD1
z;Z16U+F-T*)anj?16Evga8_VD{;yNItf&l$x8tmszYDtjDYi<E9t(S%Te!-@$FqKv
zbA0o?W?tE`=40`%y6n=-J&GiEL8E>HKjovs4x-)G&%9W!_O?cSx4FJkg`fW}n1qfB
zx+=)=->4u4RBJ$S&b?RSR}Yp!kE_;M-}&!yJom4+S5{ENQSOK-3#%2!5cv?*YX6D9
zGGHHDv-5VDq&BPn2W^Eo{#H|!IHw$Tz-F<cylD6sLjKF#950Dn<l-RgTn$@c9Se=y
zb!(?-bw;^VQCQ(68!zcQfFim;6Md7A(VMt#eMtgZ<G{-&2hSIA{^Mfp3kP4sNO6@r
zbHV)pX37F=m|6W^((zc!3kM!!%7d<NokhBcf$J|+NRPL>GUiv=Bdt%Y4!m7_1k0EC
zY`SKPMa}VDI7xMk5RL~@M`|7TH>gy-_csPU{>^be=<24I{(Z7ITy7uQqFJh-5WQK-
zo=>s#izL$*a1}YYd*Ui2<NkPlJ<eZ{Wp6b762{+sxV44D`EWSsg<a(ffQB6AHC1q{
zNtFeaPeRp&@v&^-FRoDC*~+|dc=w_zW{$+8sc_u(#u5t_tVZEIOB_~0n<H}39I@Xy
zqBX?b1zl7K0K+?!=B0R3xK*llk*xC(joglrlT3iqLx<8UMT~qDLU^}!i1Mcp$weMe
z37zD<4soCpbAH!Mwe=-3W5-lJ-?Vk5t@&(fa7+1482Mv2Gcx0Ej?5)6m@O|HxT5nO
zn^<*6ApXWl7~@M6AR>oZjV-j7;KUamSdb^MQ%py}@iCQhBd5rP7%?MR%#H{y&~eq-
zYsftXplqgBT|DM(!5#1X+`mqU|NiF&wXXghdZ96Ya|}!@SjG5=@jxsz8>XXO<-I3F
zSC3txjpo25w_pE?)DzyM9x*6(L4RL_!f0e?La~fLv3Dj-aw}C7{woUBEkZeGE{WcF
z(JTleykJ+<Gqi((2d|+Semy$hNmZB2HuJO~?3Qk6NadV2?{IFa0Q&mmnwY+X_)Lw%
zO`aDF;eU9_J*JT@8>n?j#+j7ZJ^;Xye`8PDF*#rg*$G2uQ`u@Yuwx1ptzPVjEP_On
z*{!N3PSL6KCQMbIW=4A^TaU2^@5`~z$8eocRbA&yqeqF%_R}FR%4b_YCXXq3b46^b
z5y=tM<&ZQrw%(9w8D%-*dsv;*8|<WB9&xhd#(Ou^zc-UMCqYbOC58htRR_>S+xr`~
z;HohC28XkK!24zuuI)>xv8C{_NFLFf*@MUCPpGt95muRXZ0}~^TI7lr8LD~^azxa4
z0V-`~B@%KS+a%lJ49)kjT&ZXC^;DUIAFkPCWu{`^!+P8*eo9h_B81h#hM|)s!BlL@
zSE};)fx4H9Cj1DvhNl+tqQC7>DxgEmgah-*gP9#8N{JuE2DrDj^v2>pmC@zG;?qnD
zeBx?{qy3{}o~}KOx|+&jha@F7rhe%!DyrVbRy9c^WMQ!NMBRN!C7hH)R1Z`wnnEby
z>JrvbgbnV~oSOh7_;Nwl9K9|v;I#1F47gM2UBSqFa$-g;P)X0Z8G8f7T#L24CA03c
zjh~k0hlT|m1sybdS8YtBt6@_hj}rsZ<&!#QTYPk0!^WPyU5FlZ(ku`bj(&jsynQf@
zK<fCB26<!i991YpFFyLUCdJ`7ImE1`x(*XTC&*f_R3r|5qppeV70j*?*$#j;2n+X)
z_@PKe6Ox}oCj`IQr=w`LcLgbT!lfdknn<o43y710R{0GyBFX~BbXViRa6s7EiSfXD
zvb-f(5LizocP(l@9kp;kk?lR9V?D;Qlp|iL_NYWjhnK)f$@axZCxA*?o8@6|AS1(0
z;SB1>M}t?z!Mv}+R1Hjaj79j<#+1X9vl&*8dP((akf;k|nlQ0*PN$%LHODQMm}ud=
ztujs`3#AR-SZJEJIdO`F+kS6~n;4hmD5Jt4Og|sVLUs4ipTZ>pX>H_qTxa?P9SBa1
z!WrOY07egvB%Pqeh12y-I)5;%aL(?!pm{JM6@-qb82DoN<coP__h@q+9U7pCwk9l&
zC+Tg|Qn93L@zBb+CIL-!H4&1VUcZUI@zGzJ{?8YWzo@MH=-X2Oc18{2KpAn`p-eor
za!LiHbD!pW$#cXx5VG0W0(t38XY5Q6Gb55lCty1<1{~<B_VEfThmOzd7dSMJ6glvZ
zD_^Cw56&t;y+Fc-LzoTMD`FDI!r_{p{@$f+e1%^wL0q2AhOhgHF!vMr${%{+t|rVM
zmY{}S4wj0Mi8Yxd8vjymjwwbS>i@D73#y@GdkI6_{%ae|ziS&K3H)7pcRS3qaJXiZ
ztsPdXV;oNYBVPWos+*$DDMJ0`m-o`s{7u23EMk*Y<#*ION~_M67UVSiAIzNf4H69T
z6$Xnd+=ToTXypb|<u&HQAmQf3Q}O@juI*#kqOFb+uxw^;Foh|LE>Nh*8DyypkSzL2
zT=e|(PP{9zzd^U$AOgJ~fFELkXf=?rkr0&w8yLlFTBhdR*P-_F`CYToB>Es2U+(eu
zKKA`B?s4_)O?>zBnYR{QCsqHw#wcCMw$|+*`6%+ZzxT6bwuJxuS7%{kL65F!=PTb%
zGHn0%eB5RJd%sJS#r~iFDy8lJKm&)ddC>p#!{yGvD15V7V^V?l%8x<psVG^;c=yPr
zG;8qVXTg>e3wAbL7FiDY3nt4cCfK!+Z>H}>pp_?dksVeukXF3941|ow2?$|)JTW;c
zBxwRb^K845hFI*4y2NSx+|QmdP#-1ZnzlD;stR!dBzE5$^%M&xBbS`5p$TVinUyq;
zVFUg~O*;#0Sc@2t8|nhgA^E{{8urETu;Z4pf07<{m@|R-&e(<tCeplGZ>WR%8xb~~
zRlS?X+poM4(}&NRO&=+cA+tgtNjrOB5u)AUW7*hYY;2ClpdVcOhFwW_fX?qez7jm)
z4ss>oM_Q=n_--h@40jz3(P!?uO6n|7wMXsYF?OVgeOvU3h-dDfi>~|X$}><pyeFCS
z#txc$Ts{uAP+&i+^1KSHO^Z!)yJgy;PwIUrQ*Sb5oy|&g9iX0rwrF2{|9K^OJ86N|
z2-63(MCqa%M$PfBJor~~8FTw*a_RB^%{L$KEeykHqACV<alpJ|K;&@-gKEm#Q{TK^
zU34%Nte`oH6-;q!<K}w3N?K6=LP)8Eh$jH{s*Yom9@h_p1@v@_pbCRnRIfAi-vzj(
z)(Jx}U0=x5eR1Z&l_Z)<N~Uyp`Lxn}P^JLkF`E`G&cl_*;F5?dRx56Crp4e0E!EJZ
zAdxdTzP{-|;^MjNX6zT)pdH)Nh{VHGI`AgV+6|kx)i}eS7Hq$G62hnmpfwxW8;wPp
zM6=)3tZ_YLlA9YIT3Bh5xTm*iaZ!!CP~(gX2(@oJHirzb7ql^h*G5I)gs(PWm%<+{
zW@{d<Vyes8cDLQ)q3%OBGzFd37^i+Zat7T8yTdQ0E)(sxHpT>bxb|)+_wK*3lW_lj
zB(34TqcF>QsII5W#}B{y9NsM)FdzhVW5gEatxtP2%U97sV2^~+8IgEwR@p3eNl$Sk
zVl7-cwLZ*~hw0FdYxd1Sk_k}_*|aGgUXTVrz8#b&Mj_~Y<A|vn72f?Y1w@u3)gfbp
zO(_1+Pf`7p_#}i2@vRM&gMnA*#_GJ}X0wrcp16bkpo+1Kn;M}p?L<qK9V_{|Mc2a+
zGb(<^dd4{a$dj-^G93b)jBDMl%O<%^Um^(Y1WOP0D-ic2s$#?kG!V0rD4DFrff%nF
z{VFck3Vo|(+Qkjv`=+?%Mq95}R~?{~n2pxkr>zus-Ww6-paUTR(*b;rFv(WDcY_1X
zp25&)U3pegLkr@eW$+3VC%~YEtnu-cr?D2`7`Cb3z$*;rCe7n6GTC+R-wOA6HASem
zUdml44tP--YyS3msJAiqHH_JCiY$}eP8tP8d|QscsT1&&TNWKKpBANcuX`xiQIfNF
z#VQF`3}wu@Pb_0xSkMUQ47#7*;dzTtD(C&_X;NgQ(Cum_JTQLMp_mFxSI`Uhp*XOK
zu3TkT&Q&Pi*q}+(ln%SB9Zsa8_~tRLlMK|?6Q2iXiN{FX6t})q5Fh@NnEt<Hj9L@*
zrroy~KH5O>s$0P0lguEpiK4n#3%r=n-VAsDeEwVOgq7+jxa*{TsZMZ7CTsK!yAqPr
z1pvU+`XM5E54zt01d+vsu*(_RU$SU$v$Flee~Danzqs<Xq65?0&^a|%_V6~teAZH%
zqZZr0i(cnbH3VSQGX{DzFpR!qx^*kx(Uf8TXOg>c84WH223nPm{-N4W%UCaM+C)Q5
z4*2<W&jGiep4qs_KV^SY{8T+FDSck9XRu;<lDRG4kN7+b8c&4*2eEenXGTy}9JG#b
zS;lh7thQjaR0hr_@wHNuTSa7LG+tbSwz~&|X`3*A4V2(EX<>%p<%?E-t4OS(X-b?K
zh)N?Mqi>zciE9MpYd?^W$hsKYjGfu~PQ$J^M10NoGKtNOXz2XwhZ%g!EKR9Oq$yWt
zlpAG|4c#SSz$(R0^5rV>_=I3TuS!(FJE>lAT&v~y5u)BXNjgv#j)&%yGAioqBk8cm
z>r7BuKa&Un>810AM!E3-kaz>FKpv3DoQw#+k5fXfZvFT%I%+3ufdkGK__1z<7E5kx
zI@GWB|My#}j?-2Q@{G1&T|k9WK?H+CZ*UuJ-vuXC5~}(ou{5#8(dHa=|4>7OBVxF>
zC9gpb$o7JL`57IWSPz2)vECHiCmsWS>zUCR69QaZdGu-u<Lpt2?`Amg>p6B}9JR+}
z*~u_CdqN`M?`ms1;j!d;TZD1V;wQ*v`S3zf1Mk^Pg;4EJpeCs_K!%Dr8^{5^I@*!y
zfM6fT=JnT?KYsI>%%L8EO>^Jgh1efug|8nVqgsHFN_-#c_P8xwx#9`pgLK6Q2_v4{
zq5A9G6`{XZ-J1}A$Mx0sBw-jhQsCa~U4tj1G~?YtG*}gM*KCDwT36vFGK?~GfS(j}
z8aR&<6=1h7T$PC=DMLbCVd41q3-4!RE*#KU5nX`tglnqpZ6kyia6OBP2q2kDmat5X
z7z!eV#0GORB<+ZIXD6$$PA>st$`tI%Ay}Vg^qpi@11%kSoDMBn1x3>StS)-SWerFd
zcIwfFz600T=>}%Y9YgJjK4SLiHc%q~)#wk?03J5ajS_acMEGuV5c!ovU8b^5W0-2f
zK&*_CdPJjA1F*G0yIo9`B7S4)9{{Fvg%&SjGsrs&wz)Qvf(i~XZD$WB%5p(qN4E3S
zGy7IAZ1J)N)^RC;F!Kle8ZEnZ)BYOUO{~qd2T}D-;2|xFU>pG1Op{bQr*s$~op@ks
z4FM0q5oPCl2ri{@s~b#2e3QjHKs2k%s|C^%?&4))N>h=ln`2z~x6R!H)~Q%oO_vjh
z>J3I@tne9K_4h3pF$-b{lb2{9JpWcDZDNxDhjWbma$WB8&Gh#2;q=}4`RAwKez=?D
z^3Q;C7h>aU78ZIILjJp*>5nyH#FUjqz{xBis%zN{_BmjfEbHPX@|tMC6E+&xkdO{l
z_nK|m2nKas4&;N5pz*a!9u8hzvInspjjGP{M7R!BowyB|CF>0&ZibuDW?v_z_C7}0
zDAL)jgj<h0VWcx(4S0ruk+oT|kl1A##RVA_RGxuf976+3oMWSy8yq+5E&fA1%md(9
z5DN%KR|K^Y59+mDQ7l3#XTxA@guuda5lROwFzvi~Hbe`-{Fphv=-^>>r7p~C`t}QR
zrROhp=|@0oczK>lCUkhU;F~Q3eTgiQHWZ_nia-@GOzEX(Jj`DC?sMAQ%G=>lh-+Ww
zjHN@hg-APOsmO0ZmRQxSRqK!%4YL9r@h+SBIid$p8&D~G>uPZzZe#4ep=SU8_VW7i
zS3kdtS(QFC@4M-U=pl2pO=L!glgOydZt_zSe>4zbvmP_k0#^t0;RG4zPlZO7+0!L<
z!;Dnm>W$qZ)h`p{V@Lrb97a{|ZZMuKmq=m6I-Rk)u>p2I!Y#HzpwMVY6D9_P1rGI(
zb&2ei9T@LC(LX^)+m2#2qhq?qWV{kBSx^e(=_v|My95=46&d{z^@<Z4DdOYrNC}8S
z)6#*D_ez5nA5<@NGY6Tx59m{QmnW@bddx$dB5MrNXGHKi14on=nGMt@;xN%!xjBVR
zyu`v44sWj4y9uxSbjn%=+`Bef<D?k2ZQ*E}q*ZkFQP*pp$Bp}3=P2WNSq5qK+sbaF
zAJR$Mt~wS@hgC?+gxN3YvSy4Mv3C?k@75NdoHp1|!6nF#soPJVC0#8l4PacNBmzO?
zk87K^kJ3m+)5CsVYQl3aO1_YQ5zgsV0=ReqA{a2YHlAW&`d7{2byeLJHD!clRGlb{
zD@QB*Sh|u~qAV$_2otBhmDfF6&xBj3@1vs98GPc~^DjR9_Uzqp`(yyJ`ef-J0^m`l
zoh6$e1VruPuLNSfR^(DOYa^OfS&u>UXvF|XU&ihw7{n|@hs8|VbJaM*tp-b1i33s?
zaFM3ahHXk+We?IG{a%h$X{vv*H$Dg=m|)p?nE%;ES__aWV@+6&wgM1^HiiJ6)a9Cc
zUX<{yqJ_x%!QNCHBdeS?Wkt}`SpeQy7@YBx)Xmc3lluxW>W${#(Bw4cahY_rfdLsO
zKTO#D0p`p2LCA?O`{a%{<OHb=@EMdPz)!&dsf+4Gyl?)EblW>wmH@m`9cS?N64I)$
z7I3dp7NOiHfL5$a&TEi6bt2+!4)fQKOH9gFXn8S-5-v;ZQD)hfPijJeFf+Yx;1{Kl
zwfN|QGGi(XK@@nT8<`Lr2^CeB*K85Du#MM!KYmJDO#QB3b80)2npEy<O5-i5mcesy
zQc3%&J*gVbx}A%}4m>2ffOID7^)6@qqzsTGIZq46o1BO12kW@Wd%nqgy2*QzQ5nb2
zOK^<6?|%96*~$mH6`}GT9X8J)^q5y)rt<Ul?^b#G<J8OIJA?y8&KHI}PRDjxiAqS^
z8Mp#FV><@9cP|y{SwQR;J2H%6tNH{^w~~1ZBU#25jdl?_Ut!M$ZX~hKL$PtbqM|Ye
zaeOGvaNN~!T2|C#K~iyIbqtn8SOD;H`q}BbkN3K;YWARM9)IxZ!aCP|d<wNbq+EX@
z6PE{7<ap@&KcDw&KNeNCELvy&(n!ZO=nmC?^2029`SK9DX61`mM40^a1Esm`|H6Z0
zEnD9o3D4W<dU;hBde8>3KIPCK;33-0ecdWN^}OAtcKgAf{4lAW)5FM@s+o!m+&rC9
zcxZ}lar^0q>!-_w%s%ki{kI=J`}Xx?uDrT^lIl*q@A)Q`o%*E2eeLh-ZSI`NPxiTC
z=JF;rYKAO4xoRE;Y5S%N`k*qq2%nYwn&wY_Np$l5Aghq^NscuMhljn}=Iw!?VevMB
zyy@?g63iDaCVaeoMQqt|`pFOLrV@TyM{9rA^Ua0(I@+mspVW~P`N=P3&r}{HTRIAV
z*Uc!b8vL`SUfs(^o(*_&`%4YYWxke(ma>1FL{k0anUQCoy{y-6AMf*X-|HXVdiCXt
zr65qbM#Emvy_?OZ&!JyP|Gua4>A|hbXWby^-!*}~&({2q^Iz+sIrdK*?7ox#<d?Or
z^=?eLj#v7tYgym?QbUx_>w}x*|KUpmm<dFmRX1Mg#$W1{PpR$gFMZ@~0$gnIOa1=h
z^L;N)0wx>t^b<#iDi8A%r1{>fai5B7eTb6Sm*eD%eq?VuXWKpUi*w6O$4Pe+qo2B)
z_`3V=(R1$l+uP^%Pv`s)Ykv1hTdwzQso$aA560Uhoy<>IY%U*Oe)jEm=MQ%=_<OQ!
zUydz<0Pi(F1EE&V;s%OX$HYcL3=o2cJn1Tyb3@|?LV$f6!opo`QlzlKDx{xR9HMv;
zR<A*d$$wFjX(yKB%2_;|e<9n<la8C^I!%cx=}3ay0U#&AxQX>Wb*0I{o1y&{k`dXd
zqCSdn>iY(2@hwpYQlRusO=4VhRq_TauRx?^`N<^sILpiuPSYz-N&dUD&^5!>pNWo9
z1c8g@AxWH86o*Ikk{w4<D!#R`$I`K2^cBT&R7}4Vx=49k1(nwUEE6!Ns+6F2?Xk-x
zDr@rZSeQ!p%4S3HWY{0!^VK=VDweicTTq*JqbZ((<VbnpbY;xZL}kUliKv5v&0Dki
zMR{C?0*$8)ylfjt*`i*yPOLqaG|-0%|HlSabwEZjyK4z3!cwrB-%T6T?}AE)s9Q(T
z1-;(v6B*nBlYqlJ=y8^`cSTPaNq{!AyRmdppl)ULMX5FoFjA!g2Ht+G>L90}Jp>1L
z9i;3zVCbmkqHQ*V2nHzny(O{PK+X;sj-aD=9Rn~3K-5SNrr&9vJMUtXlGG2YWVa3K
zlvE`P$HVb$tPD;SV%>Lp%9|iia9%I_`GV0!+i#yKs6xY2p3a$FuLiE+<B{bQbFtB+
zbF~>~O}Q{d1g_odGHMDh00U4*x>3=<&`pSU)lXpwNA<<bS1+nzO7(Wr*=lF&rYjMQ
z0$Xu~wAgrBt)>k*Z3UV<IveGyYve+OO+$^v)Y8QOtiB?cslZGLN;obY{dH+mjEW}N
zVX+aqy~Acrp#Kd~Md(a~sF<<34znutU3P=oBdH=Fw2ysV6I0*!H`F3Q6Gx=~$=9=+
zmfFqIjF{E)!otD%Q|)kg7kdBF-9`nzwsC(`q;EctJr7^H?UZ--BQ1W|Lf}RV*bjIs
z#HnHHQwt<R&Xc$_aWj~d1|MB=VPr6v=qn~8)daNto;YH&SQmFIG8u6r*EBX}o7%iF
zKoUSE8doQS9)!(YF*1k8KvwVH|8|Os$1@A7j&ut88i%9OvYrJ#WE?qHkFvYtfW!+m
zP8=ZX`?Bc4u{|e^XC<8$4sTVyvPLMKZHX)r4!W~p3yIfq#oIYbj&VEEf`^((>TkK3
z5!=m#*mVpjWrz+{uM=YGpG=5U5zCuPDU%1NQzCti&bkd)l*1Pf$-rv1Y8FvTd#Wtg
zsj~mYsS<HN&h^w+7L~F6NG1a+R<WF{$&j|u%%4o7{bm|%a~ie%#xaM|y!X>+{K7P9
zl>1L7(d9Z3-A<nL<P!hV>>01K=iBtzhDiAwO0=p=`MfbPyI+R>c6fHn>VBX?Xt1pI
zQQ_4R!op;{xC>yr5;@b+^pHo^bxGSN*bZjx-eh#dIY;n)x>cbcBFsQxEHf`vb=DI_
z)vdz{%;ktH8s8G1Wdcff?+b^!>F2@{v@{B|d$Td&A2*?%Re5LD%Oy9o=#Aj}5q>%u
zlNPoLRHJBi&EZ*kC+Ssn3f>Qjc2t*HMRUg+Q~|}DRjw0DPSuE3-Kbg9%SOE&^>;2u
zcd`#71B|sO_BE=svdmfGzCvI=jH=owZViq?Q<W@9hnoth*$j{pv(H#Kd_L_a<iJ%}
zO|)+Zkis)3%!_HJC9I*1E(=3G??^vN9jg-Hz4l6SM2f&Oaq;t}1Mnc5G5tUR@OONd
ztvOfsW<c3gG)k51&Z=btnrr4P3>N*U_<CadPuLB4{?b*xvW~T9@n~PXO+R^+7Kz0w
zE*#!!?O4ld{^D)Ycm+120UI?G_|#%*RR>5NaQMUi_Hl(jo--#*iDc{?j%0IS6gB?)
zqMlsIOy%Iq*RHqMQw1kLLCj!2nJ3MxIiFsC!W%Ism~Mp5BGQNk!(?VsWX>mzbdUq4
zaIN$G;wxS#O-tO{%fiuRq7O&r_7}}<*`rh$Iq$z2FrHAjr=KkStN|WlG$c8PKsTdd
zX{;KO0Fj)`=_ZROxkMLYGB&ywK~1!#q>XXNJP3VK5TLSfJX(ZFBHF9if4(uRKQgL1
z=HSfVeNBY4^*701nRKYLZ{vLAAy+f3#W*Fb<v89f56hghu^(u9w1Yd#p?8zF>`MJR
z*p>S4U{}%`yHb^OSvcGb8`u^0LR(Ps(sTKvs%&6qulxfXe}dyzBxfW6-s`_BxvIKt
z@vJ^yEiYiUY{|5R-Y+kA5{Mi=VDq+tMV8v$1=M!v=T#RQZ6FM`p#*z71#93q9TnwW
zRUu>`xxmsW+L$WYK_U{A+O9e}*qI@{G}~Z>r5)hhcqAFj*l@Zr+slSJ-#>8*k$&jY
zkq5Bbaj~2M(ZO#XGfvge3f2s6l`$miSa&$KS^P&c7{^@>69E6fvFfoSSF1HP4G<cn
zA7h#VMGXBh86iy+??Lr1t=2?=G;FpA%sZC-fD`7l(!<cK9p_h70>}#nd$AE3_pBP3
z@a}q*uq2rh7)rm(9-xbAxP`6yk2vNqkh2XPWtw1-c+}Xjm#`VS!qLMUsUw!;0}{6^
zqP5MC9;JH3J2E6iing**q&~+~I#5LOLVIjS1*;~2t!GlVgR`1_O$NISnv!ZE7&61l
z(8p`Q{^HFn-D3~O+R+KTzTj#(!_E>kBHQAP$hN>A8|A^?GC5%&op2dyE=3uvItK<(
zpN>TQjp<?MNScM}WGPWsv}qaswTs=au&^_vR2xQGp$H&XqAYdfpy6e~Sh}qr-ikxj
zFqGgZ$p0j3d`zgul@QT=)2ei=`6u2%#AB-ZQ>#)@+;s*{*;L$KjhS7C@#qUW(oP8z
zEURWVTnmToqefKXqv63V3v*7I_H2g<hri})#0(92>}|Rg!ghtJ&9S9zPuXWg#R_%{
zue1&2p&3K_CKqw7X&M~>b^k)|YXmT`PO_Zo?}`7~fUSn2#UBtq@)-q>pK-D?RXux5
zF!bS|IbMwDx434Z%*0mEhB9qp_A)!rR@i`&9wIDbLvx;Pf9yyz)}UjJ&QEZW)k(*3
zejzVq23br{XN|t;2s9>~k)@#fZ1EzSO{!D6S4Y;g`w(Z~U~MUCPY>i22LSX~vnze|
zJ`Vw6QyOpNDQ-cV1x^PySEn)HIUa~@wn`f|M@xnmEfWy3znxFt$64WEKk(5_i>73U
z@g)fZv(x@cB6f$jN_HZkY>rLPEr*LD?2G28cNipLQ8|`toRVpW%d8rcEvHY!#o|DY
z@Tzbir!(2WEeo$gY7{vxF!_0PS}>2ETO+QM6AUvt7$^9y<uL;eo;G&C8Rz@hwm0gp
zRdNP<o!xP0b4YsVb@)yr;pnz&DvKmqaPyLs$W+=iij}Km%tQEEsuI&dWW%S1IG7^<
zTtK70`LGe8-BxdEh5i%W8=16+4Fj<vI0Cp8L%Zj>C>fT08@7?FQ6wl6MTork0I{BA
zfPFI?YXHMTx>`dwjOVasXRy-I!kJlzdZ)>m?OBj2fdB{X8fXP9f9SE))tUnNAOte!
z0K)R{4l(1x+Np9@L>mxkDPz|~^*)xY4PY+d2&bJgY*vrLP&m)%7x;WK{&Uj2lURT~
zgW|=Py)ae+r!tfQ>GsKHuQZn`opYO_+)W&TO(~d^S_d>fWiiMjU>1C|LKs^5ipbd2
zQAz?n{=hPJ_&f5U+N33IpA3?zZ8tMGR_b!RgGka5J7#wX(=Wh76?Vr6f-_2;+zn*Z
zdp5&md{TxD8CA0ls=)Ccj<b|r{tlzjz}vt`BlVaeUOF@R&=f=77af#jP(Q~h7tyoD
z0+Ed#V6COEfu$r)mZTX*-CPSnXH@452lI#cd7csqB94q0(EZ5?D7^7l5E+7CO##uC
zVeQY)mydt=%%SB3bI&@1;mieBScgDqiHV42Ua~HaX5_UYxp*|t=OxcJrhsh*{UgAP
z@~}EGA@P^h`!4B_Nj!xncBov80O{OEo6mM{Z4yR#m$l<N;t^IECiX-~)685Gmfs=l
zM%v2}X~90DhsJCaJiTgT-7Le~qS00zguc#r)pSe8&|t^go{py+aK|BOF0w|O{wbd7
z@^tt1P9a5kOnEi#moN?EfhWO3LfPt1zQ1Q&d>~``qFgv!k3-Qoe2~E+9U@~W=VK6T
zBwh@77LpxNwms3Y(HFu6Fpj9Fjr5vYBTyW%tY9iDkUhnj>oXo;S9?Wx2YGN^A`X?!
z;rXp%#!p8*1u3=T%&KQ&=e(&tv7g5jI2);<8{w`Kkp~{D30@x<0z#WBr(OVKC*%zF
zo?ccMgqh)!!!qP#TDh)~Sb$xqnq9_(MmJ7iV*)75xPpzZUO&b8(!NDElp*5b(7}aJ
z;nDKl$Di)*U#aI?Bm_oFX7(?Hxy0R*;c2r%sJ=FbZ82_HqkapVYi(D05NZyCb~Q3?
zf<&?16zQ4~*$6*PuCuc_)(JFPv5wY<GCv4uOn@B#O_^lF^evcVQ|p<*Gm@rfn@$#B
zSG@Jmx`^W%9uY^FUuBJ6B*nCri@`W%ktU{B5ykG0AVKsZJPg&_&J&84f!ui!R1p|2
z!bjuK)>v~U<S=zbOg3QGQd(^Am#5zWVsI`GAfkNP*6S?XP8s4T<HoLQvg%<1EKe7X
z?TAKH9qmlFAqCiDPhgf79pHL|`F2U^fUQl%+yDHu?TOX>USMM=C;38{`^rX=KH)IR
z_+;Q25)SO41KAtrVtvL#j|Xh-pUp1P{fFHd?9B7wS3m!_JBQ}F-OlhfAc;&|Y10f-
zo6Y~@`z)jW(HXW1G*FI>{;MCQ3F0<DRwTyZs9Gb!6>Q#UyW_EwK8E7jFUo-$Vi+^B
z5Ox4-PJ&6ntO@-`nE&;$uuIDZkc<sKO5T+YrV|y<SY8f_+3@%7>R*8#L7+nVw6SIx
zYtf_K+UFyTp@T67f{fr0M`SWjRIna8;8T^>B9RHpKa&}cvp6?H`s9o8K=KSH+-Au7
z<dNFpSi06C_VLviDPWi7E4V?Y+hw1_mJMl>C8g+e2E9BgQF+39F-?!r@rIiYaii9|
zDc2aj*RGCAgANc!FTvh_^*l7M;^sSX2UHmKv;2aAi^mh_&1Ytwgu7?d<r$8r5KZw#
zWoFD9w2U<ph%uu_sd91s(!ZCrFZ@_IFWvuE=(W2aUoPj<%Wv=4l=#hLQ`BvY_0=BL
z6j!XTI<dYgSYORpUvoo!V0|?a&)nB|42!SQrl$5oeNQrAeQ}42>-Dy*Vif8Tc%;}2
zcNL9QS&b9hrx%j>0XA~fTGxQK$W!LVa7~S{aJK=0nbeq35$nwU+mSj1gw^`Z#6H7}
z6BFBkj3>6FI~q?^LX6GpEEg!Ljnd=@;rhn(+RLIG$;8thf<`;4emyI>d(no)8~FEl
zoYEg6qi*Y9b~G0)R1XdD!G@?|S9aX#7N{1w%aOe<3{tkD@In+1kYksxx_I7)zUU_v
z!%u1k50E3%mExG9hpW`=>{V(5!Kl<<{W`54Rg<*(*jTBJ1a8Nu!862c=9vj@ud2Ds
z1@at_Wa?&7ol|j*jqouVUjBF|kB=dNnwkdMO>qZXKTGkI*#H&n1k8uT0BzIs{8+Lk
zUD0vLRW@f`11Pn9vy9c*d2J0qXcoAd2<^Rv2qOCy5rVev&<>HV8k!??B__!N22v=^
zKj0TzFjBy%jEXvrADjYKL`mZ#V%HZ6O1uIeUJ(ZmWWcdtiPsI_k^21QxTPsS?w<;E
z$treE5|`D^zz6GS3yl5LwSVmA+Q4{rMChJprmsKe`TN@zz|iZCT^TB#P+KgT3AUC9
zLr^w+^HDKnxe#EjBxDQJHMWsRF|0n#U++Rm@(x*faM|Wvzj6HV>3tOHL9FMEhtqQV
z%%_RV&vN8(o{7$z%WXF1={3k(Gj?MBWO+6Hg-pj~CcirUzb)5I+x8>Z`R~njyv=ny
za*cyz`C6{qr|JIXT*up7$7`;W)P{c{)A1ju>MFBag=yLE#=o(u*^G|%H&wON5F-b2
zUD_ZM#&n6-)cxz(ss81v=E>KnX)z?vL*KoAJb!rk?dklB&%A~Jv+3HW)pI{k{RC41
z3EL+K4|$NE9sHNI0|lBK<NAuNDXx(5oOl6;X|PF>7T5|GEj}^k!8Ro5DL#>+=)7%<
zeAP#N%%#jn@V|3FLF0o}3qqbhe)rp#kH7lq?=HW%=QBc9X@XJ<;(wF5<^%i!E|A?X
zo15t>TmJH6fn8k4ml@!9x!zlO8es}5hMY+%A!fc!DmkeiR-|1cYLg$>W5kOetJg0!
zt+>H*hVu1qN|xb}!e4l*`6*(_h8fO0&Zp{^^S=?vaUW{}4i-1~Zoei0Cx|5P_VF6I
z{HzCjJ?+=U4;|N$C1!D?8|g%+6T@Dlk#+f9Z2dMBC*qIZUWZfD<0)J($4?W#{pt@T
zLBOv$>=}AZ$?=$kNwKX_EXL>gZyU_RvwE20AKkqgYNrQkyIzc>Cg(&%G^TWLsFlc7
zF1#JMK}>va$%84sg=UDWTzEUEYP+}mj?iX79I-bnJgTMu$8jKEpenqrM%Lz=&#SiW
zb@sw&be0(p*3`f=6=an@iA<ufPi^u_5o$@zw~AfM3+ltQ1fN4UB8tK02HggB=3<xn
zXJSpWsl$b!`co*ipln{4qIFc0P>~D~v9`$!L#(OKMh|=5<jC<phBzB8Wn@qqT<`K$
zU+G;$sG2Vk>wA3K+=9#4_3HccIO;c~J5M=_C)gRa_l(ONy58<UPDVjR0KsPL#0{8X
zz!EyZ3vH8zKsBt0lX^<KzcFu@&R!%{@9OV6?gsqyrxzKeLDIg@hG}%%XQ}h=%d9Nq
z^rgCpp*gwx(fY$Q5C(<#d17YBif+75TR$$#J9Jf@r~5(cF@8VtCE{h9d;5iJp%|6a
zjyL!9ev0rq@a?ZZ{_Kx;OTZ|Nt!9_T8-KBI%JMtnu<0Muo_2pbnHr{7{Yt#BcL-p#
zMR30(BFFT;Y!bF)?V|V8TKuuT(e#bI7d+g4P+n1c^OlFUVXi0XYJ2d>S&%v_VEP>%
zV+#){%4;)9>K-5B{y(+-bPDAmlq1s*#Olkd?FaY+%kD8sbtXTpnjT_E4-I15<ki?E
z*m#iPzg$d_9F>Qx@?c;T_7^B&<|0D&9+mH{vO$XvT0SKB!uc!*MmBWUqWGY?<i-ON
zOntxzPZhDI{tyS2cUS63L$BjF`(Ee^?UVzJ6K-2)|M%lKc(69r*==?1m79{j*Bid-
zq3X-@5__#8cFqrCgJ!0>%H-T9S58r(%SP_^Ki;!-=0kAP$n5knN}3WLN>*0%S$U1(
zfq0vTJx8u=S^MT6NP;*XI3A9yK@M`v#Se~&q=dRH(M5&~UGy<YCgN;|ok&5AQ1^?4
zdXCC-aF=}0%j<s0xy3;{J>cTECzJ5KlZ*euP5$IHxtB*d%2_*@J^hDBUDct^fmO&u
zOQHwOvM2tK8;%u4_d30!7BxwaGP<KfQM9J382f!fUxH<IFD_TyC`jM4^FZsIgZlM@
z1SnKb4qVqTq&8^Y2-=EPAJJ8<y!I+o#e~L7sl}!g<Q^)IVC7A?gnQBJs)DAW&a1wA
zLq2K7&$uZjfpOCTy1R<n?D42DwN7!hrlIWKRHO!d9x7IkM(hZ4d{QRT%<iLIPwk{L
zyT4AIrw9DjeiUoeQ>~Njn<RfS=e*zVaI<%A?d7Kh#l{A@jb@SXgP1GsADoV8RHZs-
z1C=Xsxdlw`i*MW_r=MbOD786Vy%`8|G~-1y4!$MxQOwc$542j=xcGF~_tq%oD)9=V
zqLYHli|{h3u}lYT0USxwK6%LkX&Y?y#H!yC>qnMpd4);B`>(ep2aHT*A;7_TmIqRc
z!jDe~%eQgjbq<F$XasOqZiv{L=cKOW&X&7`DmwW`Kd>-1g759QYzLk2i$r#*8(Up!
zB$!spgit_awxPr+i2s6J`<e<{J3$`O>64mO_5lyw+f|J*=Eb+tuq1x`<&Jvz)8Bo(
z+=G_J;2zQ~RMxUxf#5ALScZA)ruGA%GW8vS{N4|N$Zb5VPOaNK2t`Vd!A5Ee`mepE
zAjYP2QaHeC3*R95g%9z5E}I2uYABNRQ~tpGJaG!|Gti(Ey1|jS3ShJq`$tWfL`R0=
zAof%|v#;tgZb2n8)1tW#<-?|%jkMlgfYL?{O~-ll``qG5Q-0rBy5@ycO(mxfeNCT(
zzdB&b-(G-nJHPz)yDu06VCf6fn#WVxV5B#JH^t4e?i7rnA59IAu^o}v)^@eyR3u3*
z^rJ3YN*}gH8xbSph3noU@wn-88a&e~v17rBEa1yuLKe>t5Ili}6^fe|Q^NkCZ8lsL
ztQCkeCYdM3kI_1{;BW233pW=%x0vKPtq^&VH<w*!zkR-|u$?%N@-9{4SmwW0^!Z*_
z+wuc>q^;SepnGz+3d?ccj!_r@%eZ-Txk=&)w9(5<n-BShAMy)+`5c<$w23g;TD~Aj
zzc1UxN%N#rAgAn8_{2<{FZG$apYuDse@^<GJ`_lO)rT}XT#B0~*P9gd4b_tqFN^Ez
znu)<1mAoPJDl4}_b9jV-skTWkvDmJ1anZ$#6Ie-LxmM43QtN1glNSLV_w#f!tI1LP
zf@9VeaMMs_l<Of6B;FA(u2vLzfZyD!E0<Q)$f`Gd;I;L5&Ch@Ys2Hit?l_F=YuR5m
zt(_4L`Dbh(BF4{Jt2)&mBp)}RQo@#(BlG}fwoh?(Z!h{;{D3cMis9$YyJMYit$vFJ
z9X{fqVfZG0*)*d7)UJC(>vJ_K4#PM~rMv{~a-WB6K`L4?DNW=&fZDffkEnTEwnI;`
zHYSNnFcdhOf9q0`!gU1i`a_rU+6vzIZtQIvu?a#T45u5PW6zhhgE+cZ+*2$-%n4Kx
zgW{o`w<G|1=@JoY#Jz~}e8Q?Jqq48#DQ_SJ<%?~LlF>6I^-`gdGDU;|Y0W`Zm4(Su
z%uIKN6b_V5rZmm6P<<wjO_naedk^Q&qdQ{>qfij8=Rcl)dpW&)ru?C%YgVrw#P6wC
z%GmzY@gmzBt()LFvan?0Aru`=hg^L>H!SWVvY<Mt94)m%F>M=oyd$RJBdDW+#;r5t
z3DgTXkY&+{1HmaRJhG=lz~BH23O!?i(uS|Q8W$jFNU4e(N<6P+aH5`GjPss{Qj|!>
z^f`2b;3D@epk)l8@W!OaV3{74WewZ%LfKH9Xy1;JM9o0qiGZR}TsVXdEH>Cu8Jx6<
zU@RXCd7<JQ9VgT)T?|~>=MpUlIa8SDxPKR)Lg11<Mm4C48l{C_y;?J&#Xbb?-DDd!
zqDaH*T%Ke|UWWBWi<&Jlvw=vkiM?BgzO3TX9)=SRAsGKOnPgdyv&;Va9!oYfvlI~o
z%rRtUjA5lcN-$7!-kFI&N*)e^P3dlq7A=~O3dcLL0|?a`0K-Tg!!PQD1Qq6E8efN;
z?I31<<f%<i$3vZqFp<(KYY@)bGDo`#Om=RMSE(o6XuiYCLFpO%wZ464Qeh?>5%fYR
z+c*``?JBs?czCU~V=f#JY>xos=<I`1wX#c`WG%W{7b_u<{hCVjCT9O7BQx!jqDH*q
zNVpJ~itfz87Jdk}R_&&bfJ(*F4dJCG(VKfLQe_oE8dtnaf=Q`bDfYDO8<Q-CD`uRK
z1Fh5OK1{_<UMOc$H)+LZXML52vkuXdR=~u?-_Qsl#tdTgybSLx8h#R{T7#1=%4Q)Z
zp6zoY1ikwr<=0*B9$;0DjB&5*m+4%#ACNK{H+PPvf2`V9@#n)tvsife_A%4X9A7!^
zi%3Fc{a4<3@fCmGv{RvV@?Xi`i+}jGX&>LGP}Ki?DfE4C^s_UveeInehcpaigP=Zs
zHESH-@tBw(3VL?h%U9lc`C19yaeVaMm}Oz$<$$rKWpKQFrRt6xxOBerS899t2Xpy6
zYnA+9=uF%GmDc$y_5Hq$e>%rAM}!>;fbI7FSDIq^r!xI|+tpEa(E5Mnt>v!_9C!AA
zF5~a00|GTM^w;Op%k$?kD1YW1b4BI7*#RPA5bW(YM$;IAf%2QLPBdv9AcN<XsQ|u+
zR75xyQo^A4Z%Qy=vDm);b^B}RuCC4iKd|2eOSDCj&g5w~{%evmk5JBk;n}53xehnL
zn4acXSju8c?+6+V=V@!l$M&T7GLot*@lTQ-|8UYX+p@;9Zglc2ORfusd|z*(%TZy=
zNLH_=<zJHAZU0#7^~pvGdbVlyC@knQD?2*Y_ahq<=Y%@bwH5eOUGswW@tY4X&z}o}
zgCWp^cP%B!xHX9d);<YN!BlBhxpK7~7p}KnM6IzdoOR_a{q7nYKb?vxKybDE|3e?L
zS@E{qe-B49zL!7$9uaSbBpwnqzR!c~@hnj~*dAq{-?jZ=<|Jj#?U!`c&G#|)!;i<Y
z(ecKI_Rv&v4$4P7N`up~VR9S~$<gsTb=cNNWKxAUqJ$X55`+%h-DFL@;^?g+sI^rR
zJ&Y{?o?hwjQ-swRdYVvMI?*lkq<#@kXQ^Z<k>iLY9p_DKbFx7bP@G3?pB+V#t*V}{
zy3(v{wXZ7CX_Q%8X~VZA$4Qv%Xk(UF8c9`P-*?JrLs&p^Y<THV4!VROsPLC<qGD5S
zo~3K(8=U|K3>uoUzi$!YbAsPx(Ad<!LOtW4aAt^Xx{P1wFr^1xsUpV9uTH-fUiqB?
zR6PCkUk9692l7k_LUGkceu)&)-Y*0ywcCQ-9|^saJ>A%0FX83i4i6ulpI6$%yGz2)
z*g4EZfc5nbHm_<ldXHuMv_@p}IBw$9;J*~?wqZka3%|HU2N}}?kftJ4Qx39og!2hx
z1Hyx=(L2+Mm)05_(!|+hLrRzP7owdcJMU!riN>G-4W@@*ry8&Wrw7y7^)Y<Wx>@~g
z#k3bFXbnqzxYJ5e2?I`^G9IUa1J=hBh^4Z7ne4WSGGI^QUB@Ay?CeB%*#Ho@6SKdc
zunG+#*|^7!#1#jj%pdM-h!0d>U1ludG4#alN?fzHF@xAv5NE3fY^q%eM~Qo$F7^d+
zPRE&32l6@SEzwgFAxxWR6{>T9=ThuMX(t-vQs_2v4P{?>9k|MKIXM&5YC6yiy9iuR
z%@>rFRMnmiiQ;18jo}Q~hkgdJ<T)ub@TxNElOD%SSGiVMknPGTlYeplhgH3rz`^5H
z3ABDzd<9Al`Va>0aDB&kUw{7m?aOaJ3yOQf?y>0cT(QZkEeYNvhCpG8t@{&f>eh#B
zCsM^jDya8v6{lRZ&#gJ?We4nXYec^>>{KkuTCHo@X|+_Z_Rf#pKQ4l^lNfp{3Z9Zi
zaUhqtu?R)bCVGkffmuD0X-VB`6vV1MU19-iqjZoDd!ke31R`*2_JpiiYMw1NiZKSN
z^vq}zz<<X!THMao*Cqh7z>>PLsJ4KmN6iVfRO~CCi+ntX<5y6rP__wowF1jIi(tCT
z^m+=)0)TZ>=O2a7vJvid)A$XbGx7EPQDYyf2Bdgpm2ZUg+T1h-I?h>(R~~&$YQvLO
z@7NZftO-`NHxM+oI?kH1yM-pD5DscY$64G0;<y-_eB(xv$#`C6F~28VR()&l9(&6b
zY~EW)n##b#D%n#;)-;i;{TyXnKS8tlsBnzU@g^%SfLn3g9^F%NMZKY7hO-4$(Ga^O
z`HsuDWu=}Pi$balj>v;86*0`)#{8Cx`rRM~Y3Rs&F|k*_L+_m1{ITaR#s%wUyTNYQ
zl@c&heSyA~R2fzB{VgCbB0`-s5L(3Qcnn2=XAD+Mhs82%h3+UFhzzT$e+d&S6KO8w
zuxgY6iDD9+y3}4Y1Kqn4!$KzwrJ%lu17NcoWD#;q9!pa#A_*S_N&dDCkVMs`0n`DC
zY~+ZKwi+p<p?OXNF?Pq{4n;Ua9q_@evX3iG<E`sP&y}TN18JfLjlJCWM(mfp635<T
zXPLMI?%ZAYMCoGSSLx^_q-E)<<dy-vjjYeXb~C-<JG?R9V49JNbQL3mFh(@i1TIl5
zK;*$QZuSF`pm}pVS+lLtEeLSU*fi5SNIo;3%7AC7%AibD<wA<Bs5y{6uI5B#n81(N
zue8i-o1R%bNCZNr0jHW!;-Mn)ZcS|yDS9vCc83012<3SC#zrlhT*h*jRH#@QT#~qu
zPXqei#Nb`-<MXcEy9?-hMEUi9dAPH?%KvBH{?EMqP0U*v2lKYo$-Kqw|IFLJfO&iQ
z_IJPf=6w0~ci-IUPs2~qM>)h8%GXN)4q)Zfu@rJQLIY~^PMu$N0ys_1S-!v0(&&{1
zqMSG0;Su)?&hZ+0J}#u?Q20u@AXY&2g>XoUzolGO4PAnKI!9!vlThIw!w|)puF<bl
z3^KEd;C1rTS5kH7+rP_D+cR^fd5nq26INtiC~infJriU|U)Q53eO*@0WLuOzz*(>B
zthZJXA!({ihRov%e^Q>?0bP-7Y5iGqJW27e+6a4sRzWHgOq|Zh@%N&f&ue<~QgGg0
zIZ?S2VP>X${Gm-jt~}npUv9sD0Uidgbcl*-XG$3;yC3W?N^)K!3(aVCc@?1qZZeU{
zfS+_@m~k`~A62DdPDH2llyPsm_E9&6Gr>x&hdA@Ps5zE`lEUsnZ><nrMW6%EPv{w)
zXGWqMV~~$J^8ujyg~8F(+TDF(qcb`e_4s>Ho%;J@)oZE+Is?_QQ4wH#;1WKc5^yB7
zgQWm1Mg8<CQHz`zMEXV7I^c;suNY(s_gP~b_6u}q^{6T}7Q}u~9p*V<ciC;&Gy4Us
z2xxS#7v-;#E=z}7GArgVLo7=LsiBNO7T-Dg(x<tn)nAlF>?J_jKU12w`W>8sRdDk%
zB}iJ<U$(_9OsK(ENwV|+ukk1)3H%Ku<!9Xoj+w_}gh^`FgOL}#T5}dSijg$EoKqJp
z*AZx;G>g<2!PE?*XXa5<uGjg5q0x2L`Zebh$=i+@C3;5j3{r0X=IZIup_i4&MevKv
zU?g&eMIb*wCe1&^J)pInUlhuOBB2t{ev_a(qIx8=WUQ?22r^AKUQC7c2(c_MB{Q9d
z#X;sQf3Rq=@uJ7+IQ$KnAq7p`*+ptpXYqMIsEYH%nTWbDbSO~jPeUud&=mmxgs~z+
ze79Y@cXD$j`i6UTWGw1&J*qPah|)Wp@mKWB;6X@2G;-!Kz5`=sxvp`$RIe0go!yHw
zy%zW-v^~iXi^EM^kKTCwgQXBf7q7Ho#)DCBF<wZB+)zV&r}0OZW3V}LxGiSg=Q&py
zRK;V?oO#LQ<vKFP@%N$+&TD%60{Txq=A0a?uh2ufef&-CVh_~w+wVTyTf4MxlC51>
z-ZqS$VT~}M+Akb`kG_min>aB9<AK<j^#?lky7+W}0Xy91sINijekVNJIQahc_w(3`
z@WtD!4)0}k7xqtpOYYNr=9+7D!4}j~=S?~9nAM~k60Y082L3(5BsS{j*B?&5IQ{xw
zSNbz5r^<m<wwsTL7G%wvgmc!xM#{v8tyo6Z{1OeOgbOj@I*V`%o1>kk3hY$oW-w-K
z%Sb00w&V$T!U(!$T|0*KN$ISyBn7k(bZZ7~x;7(KB*}qd2%7&jB;}S_&p7t1U3hQF
zt~H4`ofCti5O+oq6-J@ufS4o<Xx~<2(#V(1(5xu@lq;+|6FXp|_yM&lx`dsc*_Kgi
z44~at%Rh(*2_R!+2(Q?a61;&JVGZ}QEU%e0+lwHaW5*(*EyduC5eS}vl&2t8pev~N
zs5HxHc*leVOj>=Dy+1*e?a(GDSD?jd2?tIw$ayYuZpaDcnc5f=rm`f%B{zUIl4unv
zO|yNKc1dF=u(xb%@##t*zFWWfaQ?-;2(~9gurVYmebjeh+fLd~>5p#DW_5cGN%EGH
zDr4SY^ZyPbmP+I+&c*lh{)Q5bcZp%T{w{ByCbahb@s`w2lt!mGY6v~D9~88;FIfoR
zaibG+db9ivK}pno@-3$@)G0Xn0ntR#l4-{0x7XwLyGYZWDq(MZbOO$x3=CP2a-J&^
zxNkk0mMA1tS)gRw2}_Qx-h15jxc>IHc9<OXc1v~sL;?2ws|swVtOWDbdo>tWZxmr@
z=&q`;jabz($vIZR3JYRzX%+_}04GpjG?E8URn-7i#jDafmS`b|iQ(}1g$1rbaL`3>
zaD#qNkUN0KdN7V4UQ51M1iJ!goL*pcnR-Xgdg5hmGX_8DL9u#y;YCrPrcrKHCLLIT
zV9S&<slSaygPaDuG^9u@(D{>cQ77&VS!qIWcwwX6jMr`1?ith?T`JWQpUQAIRc*@{
z3@?PybHfm!01itI0>+>7JP=P97-)(jJPSYxqDymSyp~uQbBPDbYeN7Pd8vb|g=Hu!
zrqX6Jf;5bR#-qfE<YID<NTwnjhD*|~U`TC>V6I4q3CJk74EE9{8*%NBFz`EWMH}|X
zc1bR8?J%_sg${q4y(KJ19wHQD2GQipuTSUCeeNuZ=oRZh@rs$1rYt&`0?^(zn<I0b
zgRh(PErn<7VEe{kbD}s_jvxiJN!I~S@p5x#*?jdW5=c)V6f=Rgygf!kr@*5U<6op`
z+5a52x~!b?nRRKdPNv1L1PrLXbolDcz2YD9{<6vX1rQ=m+8*Zp^B|*j*N+cW0i*$l
zjyL^c*q^;A!+KMOb(W!Av~uc?WHSenZEwj&MP9h*u>Zd{j~}iyLto`_Llz{t-~XTA
z;#0K6<)1&UWhA4{?)j~?k8&aY=kqXQGGHI#h*G+^Y^zUtHQ(fE_7>jE_ho|QR@i$>
zNXe{-A|tx0`b||;(e^1SM+NB5PYyr7Qk^`nzTn5zGm?Hi#nACK5*YdX0!M$LtZ!dX
z4PI7P-V>3|6o4I`?yV}vq>m0YD^vHXAMmZ@AHFU0s=W%SI}rP*vV{Y+Vv<@pnkBe)
z$N479%UhQ1K1G&ibANSMYC5@V-P<NgpAUv~HyECJ5H}WeHQ#l=a_xS>UwhsuxF&#l
z)(?N!l_S6U`Dc2O(9w&827*GA3uTA`oRB6Y5j%lmYM0FUc@6SZ(Zv$tD@Hc&dXm@T
zvhfghXQryc{KRR>S!dE~7tX{^^rAa52hU%)^}|$)uwv3<*0e+pl`<4&O7F+!_ulK*
zW9BZ0youW&ftxz`_VvSeKf8SU`|sT$xrS<{Wx!>G@HEO2s}}EG0r(h~Fc9kp0m!bs
zJ%ujQeO<h$6^lNrRW-3H0ECST5(ZaKA)<n4<6>}8L9}Xyr9|QhYs4E)Q5Bd(Rmw_f
z;u^&&Y$&VxvpCpSrTM%QfDSeBu343k;`Y2|ShwdS=+b$GDxd~_efrF6vFB)pE#s6B
zaj#{wBMw~3ox!@9O+Uk9hS!y#T+jSChvuMiel8ID@%ql#y}Rt~_qw0nZSRv1h>OuM
zZHA6UKHH8#W1)Z%(E#C<dXy!rv2}pC8734k_66<MRG0?S=KvHv!1`@y<u4|&v@62u
zY8Uyu?a7|uG*}V~Horv65+5E-!%4Jd!>P&$hh@^KdpU-^8Q#;(*`XPjwxKCS+T?H?
zj#p`t_h638L{Mj!9*u9@CarQ|;p~|sOiC#LW!5jN!rc`K!)nK#GqUFdH91DHbu~>|
z-mChe%NLSLVOnL8xx2PxT}ri@Y&@O-+(}p$S4n?zH2thv5)4b~3ig$x)W?83)!8l5
z=J-Xtgr`)2CV^D76>3C~isdQg#w_3Zv!U^yV(q#k=3hHuBWcFtZi>o-9(Y!v^6cV&
zynOuCFFt&uKEB-w8;Vg}B1X3o%tPVlwXG60B(${rnaym|w6Qz|V<ENRtq153Fq92R
zDzHSgJFH4NThLVupoRP5vVRWU-8my-kMw~x&09S$J>0yg2llQxobWpIyJdgd>@5$e
zuM>vjsls8_{>2gum4IXgSA1K7HcJrs(38~mMZNo_A)f0-a+N9c=pa6hb0+uMy9zYG
zV#z?KmHgl-B9BA<YfWBU`&vX*1k~Y4g#_;5HYfd)oLq7=!j%RO$0`<-xe_(DHRDLJ
zc5$J+r7#F`6qW_k-m|L4d9CDitgcOiCubyvM<|Vrx^iun3mW8W?mn;WuxT2>$NWe^
zw>#>G;LnWxKpd0X7EfyeqI&;EsAx^gxGB|9rm)`^ItA$6y#INfyR&~d{qnQTcSYhj
z#EVvG2U25W9lf!ZH!>6g4a6Zs(%i~EMf+Oe0*~TlE1eP2M%6c%q{waiL8W0~GCqO?
zF(x=pqD#y1Z2xIs-C&&Oj(?}Ak+2;o_95e^4h`xBa>>!>0anxAMMDGnpdIkxM#Hn$
zW~LSuMnKk&RSNZuddJ{F3l!3X2GDTobh;&vigB(hY@d+WXLCDYJx>IJdMd<);dlfm
zY1cR@_6#*9es@rfVLJ=kCNJ!?o8|oK2EObfL_?m7>T^HKeefuXd-hlflK=|%IShsi
zQ+af3m8b(S?>6FAwFK@TkoiI#OsF^p<|vsZr8>9*XC2auf24&grVPOEv#tRAU}|0y
zt7ADyz53WxJZXH+)m^P{ji2lF#tY;UgU`Bj#?qa9?-Xxe@4?H_^S@-}!w8t(3iM%#
zB+m>QELsp(!oRG!No8;FVW~R9G}s5&ekT9`&}lkB2ZPv!iM!u?IBr|?s&T@{0Kdku
zX8_E-R==i?(cwWrrWe>5z+eEE*e9sTIdl{^V7IUqsN=#G{OPY)Foi1SCWH#mHL-J6
zx=S@ulyD-INA$@0vOs2DSEB>wK1aT`NCl}o)Qc!?EKnW4142)DO!uzdH@HQ(2j+-$
z4s$bRhn(82Yip)bpkoy7qruBl;3Iv17y#1$>+G?{P_s?#q?(OSGt>f<4(UY|1+{SP
zN>PKRfD_>-)b*OjLDo31qD>x$^fyy>9;U6i$^{*UDZj;qh5Jx`3(yF}YrZgVeL5um
z_{*Pud->jHnwARlGm3gwbJHchr$z?ULC56W?G#}fxc)LpKXp#-W;J;J({*i#WSygS
zs%b4oMeqvKOg}|&#x0=1T*OKe%tG@(&y(`C&9E`C>sDGT9ijC1QM23AXiR(C8AlqX
zKgSWoK?VeqOAG9rVe1`8C@|`5p_NTNreT#(*2SVT71MT(RMv>qE+PgMw|Dc+A(PRu
zC|wpEag&ZJaE{b5Zsr=h_D`Z)a}j%+M9u*U$8g&BRwHJw-P>oc^Cap<_g*qNY?Z0Q
z228mkr>1n!hLMze!QUlE6f=lkZw_!;o9Kcn%#?1S0rV%5FTCB#SbIS`*v>V<*%v>a
zrKI`g?=G62ORKkik?FZq_`0Fs0}}u0AIqvBVo9utLqqtWl}7E|+|(IxB%shLtXIXl
zk+&jfe@MJDO6tOSnANao;BZ77UW0&ask5?`sBsUP1Jj6qU1*=QpAhcyM&fe?+YgK_
zSl!5siRp^(^`wJyPb?OFWv-zsOHM1mAFq*2C4CT$bP?5bwjBnYapRQeV*~?n@Lk7Q
zT#)f2iyoY96TSvCc8C|JfnD5S?$ISoS%jw^cnuNkISa@(;sNNx%AejFHn*@4rWx9l
zVX$O0JQT>Qks3>{VBYDdM7qOpV4Uz+z`_%r#-S1>VK5T)Hp09($X;eeMd-c+jAl_u
z?6fVQi0)|{Nbc{1tspXy?ex5V$F`_-z_PWKq4MP6ZL1ebvRRWcZ9ny>E^`)ZUR6{U
z{0XJm9L#Y5eu7<Vbf`}HuSyOdY~xXH^bg9t_2v?Gu6#v25citb=b}})iK?Qy^TPDb
zH0Z!PZE-X@q)9OXYiEuzw+WFu(1k1^V2EW)wv~5?ijz7`fHBOpC8i;%wj(k~avaO(
zw)No57&Eg4*1}G6Ci7DZ@!Jjc=gz>d4qer*&E_IR{kB=O`|UJGirnI*pm#DmCqr83
zM|G>ypfoH^Y8yNoTh9Qa6e%#k5Oa{@=wLAP@=f3JhI%$0kN1^AI!bXP;Hlb`p1Fo;
zS_P($Mr-6NhRLB>%ZwRTFwkVn(8->3?tUZ=hfHMR2uCX5TVx8+XE2d$ws|6Qp|2!3
z9|qcbtkZw7^@V|DA#ps%Y{OcfuqC(w^^`KTi~qx1f-)JR1az3>QIqs**0$bIbu8-X
zhatFs4UPeRjai-7V1lui7~ar+cX~bDNoI5G@bmCk+Y{28=RPEHVeJnU@MOsZxI>7M
zAen%EU(7-EuIAGK67?+ej(V9WQV|RrIM8k8;^VJB+y}jmgIv_&(2S&;Fqu}Z5u=!4
zl8iLMU1H`zQPtZ-=$UJ|0{Q|}+|Mhm<H&WcZz$Zp-^Uo9_3Krt?f%Ri;vGm@BV$a2
zSORK}A-zie9G|mHd!n$+&!lFHb;E!IeBuuNx@N=}bDqMeN?*}LEgQNKar4Ct*r9^T
zYXW0_uBwvj8q^#ngPzDBs)ivz`)!tyeY%lm+|M!+<PK<LV^WOPRy)=ugcS-zY3VxC
ztloAkwHff-l=r6_U7rFNq-vgFlU%1&>Gv7d<~46;I%RXMIQlerZ%|hp#~A~#o661m
z7JR##nfGj}8kaw-GdNn6y&0m=Zn9WDQ!hLYnv$u`2F&}oghpE9vFRsN3>2M^GBfI*
zIbQluK6`6dX~$)FS78FQGN9B8rB7KI5}<pRX&yL7Gd@(E5p=8~8yGxjH?>`ZXE|aq
z6m<)l3bS`Mp*vWDQaKs^u33O>gGd<Bjv(w}TZiy2)$|&r(7j}b5KsqDV<Ujd*wY?D
z7U6#$6#F6>#v(=$MW{XYa}z5!=>q1H1xk5i{$(F18fCOfo|upv==`#3S*T}qbQl`!
zy=Vo9U=}%gGTv#Z9F%jsHPKSQyR7q;Va*X6s3$&Wf=hLcSB4k7vuB_6<z7LR<H^&Y
zK{T?>`J;YdP0GjMx1f@v$I*{H0XY)5<`ap=BJTbcVFlaeY~E$|KJl1Tn_1^jC*o>p
z2x=;=r%ywJ-<c<qaI8v%Ff$Z`vHLNoVFE(pQW%CsV!hZE$aGXGY<xN_ol0HMMg<j-
zEV6orNrW=FY{ZT+Ob9n9m1eFfzx(Fnx33?6b^7k(oxw%=SvQ33MlCAVDXedQjUAO<
za4cgWNE@O6P-z=I30V)L3#0;F!w7`QFTVt~&1nXIhdReu(fep?^K_|1;a3w5Mh{)r
zFm=FaF>gCooJJTOT&c2k(F<48lioEm;q#+cOJLQ;3k2MS;<1~ivWd26g!R%zteU)5
zRPBZYMi`O>(|xhD<PwVmnle}d5$T>%(_oNFI<rf-0OprKd7rUa!;@C;Bz^kG9(qqH
zfKw|VZ(A9v>beDl!Gk`s;63GnX=%8`8UNX6o;-k`shRy~Ji#`3XI0GHJ;%4M@XMcG
zKK$<2-~Q?z;pCLrlx~>t)cRU&$6cdZgYH2bT8@)8TpO1tX&1>eK?|$;<RxXaxG31z
zg1t|vgI!FcA=c8NLH#%f`L>8ZfJ%K&CO&u1$1&Pp?2E~U#`3G?^TlnD9VlI&S@qf$
zC&_>$8c`-w=t#&9ya3dXdtDM1P$H71tXS*2jVgK+ng{?aXxwvm-H1BZz?i+(Pnjg>
zZjMj{1~fJC_C2T<e$Kpbc-6GV1bNen>-pn%XNef@bRegMKD$&55C>5OIsa`499Q^q
zN2jo-$Dj)BY3Gv;uVJGc;Dbz22sUhaQYguhYWaSF;_xcYy*!t;cb8nW&T8vJx;KXx
z9f<q~p~HJke+X;0DYH>yA~%D|*#2=r12>s!QLzvc_W5kZ9bSHVK)%9>pJCbR;T-9x
z=TO2TX$;+@m4}6n@+{Z#n1UgDD{s7(H}3r=UE<YTPMKf}^_rVX!!D09R~<}!UV0&f
zbt;Vr*8pN!Nsx~-WBqr({_x$ezy1A(?_NF&9ceG%+=*}3nGrSTu#^eeR<hBRVAjlr
z%#IaQDD-|S(ndru9U#Mk-Ulq|3C(=&sA(s<^eVMGGejaJPq*JJDHCsCCp+~F?6}6T
zL*uTbZmc4w?p!O{5Tfi951){x2b&>137n-=Vf46@Ndd&&ApZ_l&#?GD+GSmF{HG!c
zsjPl7J}s`*uApMX8fF#$`f|TdN<U+tWd1iIXs&K(ac^*^=;;ocQDt^q4XwG0O{a0p
zW)Nc546?K>ysm|Km;_lFyY6Y>8tiRX0<JVm-K<3#Xf4Y@4cPR|+AUd}I@8(?ePJin
z#21oibTPw*8g*K8(y$01;}q0jysFb9i7Z1`@%Qe|dx(s&C4qs22vy^A3?0%8fp4`%
z(SeGAk!|~2R5#0h#>)%{Y#m^NItMZc`^~n%R4lF>#Osltrjjk63t~RNG3f6QWdgh6
zlT}S9l4{zw4D6a#2XplTgEA9l<)CyZe09pgO~q{f2gTGBhG$c0ka<9IEsqEmo|+0q
zdR71B!j+oAsWxyLuguXa>V21h&ER$FggT6)p*21susI{n?lU{R*HV-OTK$QGH{jb%
z#f`!w;|2Sy8+#HYpp6Dv*1i|=nFLWbiY(_)rv~{D*13+ti+;~AqQ1zMUtQ%DsA;V^
zElR+_4v#d$v-rPrcdHpLpqU7HZi<IDF`frF@0pC6*NfCi|CS84zcYhh$)1f5`q}QL
zma4_$?^)*lXWj7Df8Jg@D$VqalhZ58DLXnMsM`N@e#U_8aJEHW$Wbe$_`7&U*snyD
zp#KPbH4CeBdD-KHqh8j#`*>v&_T_xPD`D)}ZvSAm#h!jK+hC(TNBXj|_%3(sFVzRf
zS8`jFotX8)wZP@Jz}R`!xAv_`<E`MQsMp7{Zm%LDAJ!}FRi~(NP;A@tDgbx{7KISl
z01)gKl4xCf)o&iqlPhwk$b1xZUJF-`1^(rJ?P=fG_N5742@sK5Usmsslg<$r%3)zV
z!hDvdM3JlVU^n8<{-+zhFD5PT$sP=Fu+1?j#VZZu)#8Mu$ZIQ>`&(PYy~~*J6mW|;
zoO_rT^|>=5kyw_@WQbgLVlQVO^bK7CxOtm<G-hz?Xw$I;>l6Q@GU@Q3C+0fw92`Je
zKO(|i7Or4zKAZTat66J(bY=?FDa$P8$hqBc+nM<i=E7og6G(@T1%Yomc$W?dO~IIo
zl{llZsP^T%i-<qy6!QBN>X~aSYNEu5!-ZLqU?*XgZMa<4l}i8Wx|w#$CPI39APqoX
z4R9kY-C+*Z+d8^s>XG@VV}57#ZA7}2i6$fFfG=PRf#<yIs+lU4F{MG_bqqF6x8CKt
zoek1L7qlQBR*wnKj?UG3_cXZfKmge?GjWgPMD+^lR1(pR3uC+uizUfkL$!#q$#cr}
z+?jLZgk%&YEP7GsE7_M+dY2wn10pQeuwk#jI$$g3Zd(VqW-5XtbFqk0>w-FwfiI=R
zaou6&(3SaVSkx?rtb=IcbV$i4taJ}X^)6UU>Hi=rNbitJ2}|rGufe=<bRV_)GF6#U
zCe<7IOLds3hs~%}t?E4NO)`2lc=3q8b?UQHPO-`%fFsE}SS5=gf|}u@hluMg;-Z2X
zk>i_#gu_XPYP!B~U6iuUnMv*UAAfcq>b`#n$9_dpv&~WT3y@apSgq+P@f5^uhQ%kc
z1c-&D>QOvqJ&wLf7_r!YFtVmgA3fNU;vr}rI*p-NUmTAlJ1;I_6#lr%H&6(T^UPd`
z%3NsVP9yzY&}^H1-{uor_g#0=eZFjBo^b(^!{=V@r_hMo?bH02;Iq&eM-2$kK5^TY
z<OsrlBcLDTW|DjNAca&sjVwnUj(&l$IS_CIc+tC5h8jav9XNI|$!RG+82FWPJZ8lx
z_AWHlQ!Wd~o7$Dx+*g_<<MgXtM_Q;boNZU-oGN)GfOtA@+@*n*<7S|(H`0D<G`00|
zZR_NNZ;=;TT6yr%cS=&r=GrMiTR0vGf@u&wZE3!c7Fv4Gnby0pD2>^W?~<f#LHB~b
zypqq^1;}?9i%&NRX1b2PUYd{drh8jZ&SPAB^qnjuz*yzR`=#QpRDH(cpOf#AagT_z
zx+q0x>Wdym3Y{I*OYv_~&^QP@Od*7-Ckqv#yT=^PYuvEVOvDmIaT{5KQh;S307P7Z
z`l3|p1t)>aD!1w=JG6mi8`9r|1_j6ioS;(wK};FfB%eIX<sus>_2np?cUpWp1}}pZ
zmxXhw_+eCpmYxAM=@Vqw0W)N}fL(zKmje-hB(7ImHHqSVB4x*EVV^h78T(wz_Zn!@
z5iEe*SvW()L!xPs%VQn*%7>WnL&LEnXtiLmYXjf&xB!6F313^r-LJ^FR39&*rOt0@
z$)^yTT$p_#n_w$d03h30Tm*1tDTx<SL6auMRA?YE1&=ApR{<4ClbKopVKC(-*~)oS
z=7jZ<#fxhlDh?B)D+RShm!p1$r|WWp9DO!INLnzBPq!QA{p{Oc{qZxe^>6-V(n_58
zw0}x?he^rW@QE>KNiL$A@y*+6AHV=Inc>dzQgN;9biW9LSJ-G*&7cl6+IF(q@n0<x
z$C~l4Q)8={ZSq&ZFaWCtOWImijRX0TDl6(OQ5q8fMl!rB$Udyjr7ju80SX}e?1<h1
z8*lNT?W`hdH3xHsv1X{&MXpciIEda;5SydNYC?uL$bv3n!`^MF-w{O^>yYu6ErSR<
z!8&R;KcTRC--;47R(R(iTHQ3LqtlNxLNN>G>8>bSN^cV{zJCu?SlpHXTsT~day*JC
z09DPRG0MSH;;uC!aM%d~$S#=)3N{R9?19Dw<25x+R}1zC^UR*06|g@$;+TTc!VFi0
zDG96HjfzIELX{@f?b1NEP+f;@#al6g0M{10s8k5)7tev*N(`l$2IXvX#FerUYn4@d
zC@*<aUqF4{BULjrF(h=*HkE1O;|iFBsjs9Uw3@)4jSY&QZdfSR>7eh)1cRRuMS$kV
z3IuaejBeNHHWraBdzwKEKxVSe#GjkYI_#>LQff+18(O@qfq1pRv5tbuxjn{B^@p@H
zB=o97KJVfn?K&RES?c>{Y3R1ujkz3<m)XCH-qnax<x2rMP-6|z9lo-%h$vF<nwe)<
z)q?swa}JK?vIhn&<8Hpmme9tGy`P-y#+eO=VF%VUgRbZ9%@YYTg+|0YVwEvEs#K9)
z$((J}pUhYn*yb6@(1914jrNRvP$nylvMY%~rw?>JdQfTeNmiGK4f8DvL`;vtB2Z;p
zp_85L>2_rh@PxqMsq?8dTX7hX_eI2=L3AF6iBm_3<xui^qs|O^FP57@n<#nLeQO#K
z_!7Q!c<Y;@OlPVlOTLf)oO-%<dftqh=N&5>HY|7?*(3iT#>k4#>B{VM>Mj`%4b3Zm
z5&Sf4=MdESV=IUk`9~?DrSV+TCKl)>7JZ}ql8&agcxxEaWEp7N<kUd?ZoIT)oOtjd
zkYU<mF(zbOlIK=9xJ1Pcc_Oy!Ca_YI$XHQTtTCcIp$)MXkjIWJW5#QAc(`P*m8EP9
zP|RKM>tfp}$)boUoWxkTu+JUE#(=21`{RgH#I89@ugJ)`fRM$A2dzv6&l!m%gRCJw
z$Ql<Y-`$O?4O(r-1vKNdK6UqwmTs46mILl)TtVcbnUO-X<=syu*bJo%s!(2Hn(PdK
zHoOrnI2u@`8?luz9F>jeu=!k(c8jy;{!-|OaoWLn4!C^y`FEc=iN$mM*M%sE0R`3|
z{tU(lBj6f$fM5WWLe8jcuoUtCY_@WY{eTj)NQu20Dl!oU14~%o*l1P;bH&hL#`&_9
zxY7**O@h}6)1UTiYuv1#WM=}+!3bR<6WXx*k1EmYm5rP2Y*A1;9~HU&`f~c!htK^h
zW}I9GO_xnxg&_$P4d0<?K;7)tN)3Nf^1P+B5mOJ(j>a2UQkwHxt{M-hiwztAH=ThP
zrDp2}fwAzCc`YhQnO=lOH_kR$ibbVWW4P`-m7+HG+|{14I0r+e1^OUk)b`Fu+%N~3
z_42FphhP16{r!iJKmGPIpZag`xkbg5hcw&_H!O!4WK4p?L*y~Z*se>Im2{;bt`p1M
z3wBxv%5bs<Ef=Q3l!J9xxhLigii4)kX?!4*KP>BELG6Roj2=X;D(1>s2IP`1|MWi-
zcP7n|>{Jx~D;ca?L~53ngg0K86%oB)XNrbuD0qOu48NW{-%*zR3=aZ=A-bKZ%0a2&
zO1iqkxl^I{9$EuWc!?yDl2X1xjBy=O#Xd+3nzHZvmf(?4acJh7m`iIvnn+waLLu%>
zt#ZXl9|^GOva(mh3a^tHf>My1MG+`R868TXz(cWRxS3sZ2PaL<`5_C#5laAQK~Gab
zcjNU-_}!PEhChG#{nwAET5VciKEzIH%d2s-WBG6V6OeR#$Yzgl+P`(fU8f5ZD65Ut
zMh-t{uM716tb}EsI(HVM)A)e*^6mxlIWoO*yi47%g%OG1DS=zH4)E(3v%)C^mUPyR
zUL<b4$w>S;WrD{0<Sen5VxnLmhH;NQGu`Yy+@!o#Bk&Y|%iBT?!Gu$nRrP5xKkRr>
zXo0MUY($O$C=9^twsIUdu~kJLuOkr#Dbm~c+u(j<Q{l3lU=gaKq(BdVUhX*~p7GH&
zgYA-ZbhC5nWM{&UI3ToOIjFVSmYMI@AghsV0Kw-tfraqN`2y7d^Ke5cMScs1w8M;d
zPw?<ZcD^y);uQ0YJ<Hg9I{Ou;1{5|zif1okPYhk8D7S3S16075z|y)<ljHK;cAVY<
z1CMK_ns4kT;S^xda1p?nf?~r&vJxVDAM?b(ih_JGe^_>bbGLnA3)PiOOS_gb05c>K
zEJ`zoI^}{~yJ;x8CR@U5<p*&@30^tfdB3SntIwqXDZ$ZAw6rT(p_9jkR^z5t0LIw%
zDQoTZYUTylVZrcq?Oc+0^O^aqY@D1w3WxoI_5ufRC_|>Dj9OX?2=<lfHqj-Cbk|_5
zO%N15I!E0RbsnWF*bEP{nO5}EP$%h>buU$eKJ(Fw*{`zPzS6RPTt>V0jEZ4+e^QmW
z+0N0?x~xIV*>qI(3Eqq=iWGM8?Cn^jaImBH8XK!nSAF%lA${g}-)`7_1K3d6W9vd^
zQikz$6^$_+FvO<e`634|@y1{+*3m%Rlv*;!%-ELY7yJnm1*6!5*PUPx<Fcty-GDGQ
zFqcKA0t!L5=L&SE3|0dVhN}Ve%x4-GyW^{?RdGsArfR}qNs;M|j6SRv)t7Yf?F8Bv
ziKFW^$x#EIQc<O2_sYN&iGw`EMZtDcRe(MOw1-hA(k$?}dEIMBS=Ymw?}s{M4J$ST
zoRUrvb^-3o^fQ%@Jp6OrINr6jAb+Fq>~wIhXg>AYd@f1CE+73u#nk|(=T7<P07F2$
zzhKk0!S}qjxtS>VGm_o0`E(BKlkVxG?*1$8F8w{kNyG)X=XfLv3)p~5yQQd+M7y}K
zo=YLTVmln>+=%Ro(>dT7aAM?XDOPGVjVQBjKDvbQc<#b|RyQb`a`xMaDa|om(#9y7
zjP1mIJ840VZVZOD@iw4FKzH5uH#MQ`4pa`D={Znd+6ZEM4IovZjov`j@l4)$ba1Eo
z+H+(^=jd#x7!7racX$!ey`vH5eakEaD_{pt;)X#AaGmE^02=dYwPyC<6~M-f>*QOa
z<kB=k^vz+??JVounoL=cxM=E}xLH3ebra8VifruZPRu;_w5~8$-D?r4ibqfJjAq~y
z7!ZEoo5NqE>(1)ZIyZ;YNXs5&*jW--WJjLtb}xmUmb%muyjb*1%d+zJTgha(&=~5;
z<mJ-~|0znOCcOyo0Jc&$Ljsik;tbEp$94zBjL)!*!)dYRSsf~dDWkc_YTO*(ygTMc
zy+lWiPK;Mpd2aLq8ohm^^L`110axt?;H48rf5K~0GxX|af*Xd4gCM1gL$ymJ)pEzV
z=JM8}g_r@|Br<D4uHf#2($xE{iH)c8yjS(iH!=McG#J*lD6f<BXg)!ACS->HC9ie1
zEAx}+VIX2NDCk_P$y_d)ZNkJFnUhtwXLDl%gd)&hf|qc$FInCb&jTbVj_-$EB9dmF
z%OV19Q3tkW!~VXf;bvr+%aCW<&p~KsB7kY=o=pE+)@WS(<#Vyw2iu01UZ$DBuxOr}
z_HQSEXLisFDAdAWTtM}(4%tBajrL*D+dS|p%OZa}vPBCPI)lzG(wTchL~Gaj$#@sn
zJn>wNd{6oXrcz{YQ}ZJvaJp=ZWYkEF*i_acLWEeqAl4W-0_|ExXwlUhi{p&GQWoD^
zWU@v7vraIx!O%4}KKQHaKE%@5a9(gGbNC<vcWPV=*pyplrDE;SM3gq4-1CcEz@l<<
z+3{mBLb^yhX7-Vm8zm1py;E^HM-+^*qAaZbkyn%9KY}0(1{cH}tf-CBqSQn#9lA(V
zSut}t#({^VEumN3f(#`T!NFEm5KoXNA!kp_7v6`>8k+^xr=NN@SeSeA#^NZp$02a+
za$gNOFmJ4Yw7-E57AvDa8Wl(>+h7^&5F1*?z|HKM9$}SC2EW*9*($z^>Kb@(L_lua
z?8z}(&|uMU!BO5Y6@~G%>nm%&?lBXYEi*eKmAf=E;)%9n57HOI%3?&>pb1FiRY+U>
z@Ep-teDMhNy512q(Y?E5b&He1OqE6oqFF>@)%+*y9$8|C4BJWB?1g9E(XNM^S`wZa
z*6=y9>$;l}Wo75qJTu)q7MP)*Qw4qAr*k^%_!C4Iz!=1o#8uW-BrVPsh>OS^w}K@Y
zj31gIfb%I@U@Jtdj1zBRELM(Iw&cX?)nv~jD$r33EjoFQp8lEnEhshj0!G^UMC2On
z;WmoP!3;V@v_|{2zy&6GTXyMy#AK-O{M<F_c!sWE9uD{Jc!7@b2!e{uk9nbJ9_f%Z
z?QfEk#ou$rFodHkq>{3V(`v+Uk?j|Y9NEzlHtnGluX>2pU#qcN{0v6KkfL5m48LxB
z!V5KwC5~p7v?i(JWbV*D40`Z<A})Y`NOJ80d_gn`bPKX=M2%)#61H~@GM=gm@+4s=
zX@M{=!<ii@rDI@F_ym{ZJvVhQ*%jU3+*Jd|$7E3O+p}|*%9g{qgDI5zfWe7Pwi%Nd
z)yvRx8PaHSJc+(JD4q8Lh^*-qvuvb9j;8sJ9!F+R$)J8GubK!#MvCY{7F~Dkuv*`I
zboo4y3~#X@MvIUu{9@67ibRHcCVBveQ}ks@XT);!4KH;tlUTAai!Hf8GV9HYG_3jY
z`waa&F&y#HxuwN|T-@&P0Uj)q7w1jGOw8TgNy09fi`+#cprs*>M~SeTakWw|Gq+Us
zTn)D@izmGk_Y2;1^3lGS+J@@oJ{>o&PUrAv<TGGQX3y9_Z5+=j(SpNZwt$vU=H6v{
z5KX>Z-9~&-{gAOC<LInBpw}c6)+=xWcxGV2%I<?)j~bTba9hi5ys+xfl>v7olbd;}
z4zE%?8<83}hQ)nDdtn_gtj7uy<$*gFueCZ^)#P^b-fy+s!i#Uu;x_um@ubb=*L^{d
z#WtkdTGXyDo&zK!TZXBoq+6KhbmZkpU!>#=Xy!?p>^}25pWT~;tLAgM^W^fF9W2y<
za@@_+JOo<7>z7}BxqS0MiB*?U5Fc3Ky<SYQJ#PuG97M@eJO21ow51{P<|XcgfQtYF
zp|3%E+dk*Ed~iw$1KSS(+I2rZCE;~SiE}g<IMy>O8zB}+^VJcx_*+=}Y<WtK{UGE<
z*=B)+P%T-^t$dDRKZs|BRhHqD=z$r*i`5E&3LL{qq{>WVx+(AC0;oei5=7J~^>H@2
zT8{miG`ggni-w-4Y)`sg=6no7aZLr2jx=u$R2(qbyW}32Uvn|?UCQwPUFm9r!f9}Z
z*aO8FM0r`|sPhUeFdz>zUbWKV30>RfE3!~%S~K);7+A5UOcS9BvJbtcLC)8ZoFBgg
zidQjdl6!iz_+4jgsYl&*&NN0GuR%XlUq!cefY5qDU(#p{!W25d?&3EKaO9+7Sa&(w
zw^l);FQr&RQQ&%Z%xisq0pco$b<yWL34eXLeT<=yev(YY1IU-rF8bQml(a>U1u3!K
ze+fK3Ssv)$KKYj)qC!U&Rs4ES>uUJcGY=^iNBWK0ZVs>)dL&6vj<#0tVh2^p3LzXJ
z)}$RmqJX(MhcwAQ$<9$be4V6GD1zZsd9yeFwX2zGPq)BTz5SY#zN?YvTE|40^RCNu
ze#z&r=!h{YM5z8|(bK_o36;>h<GeI5pK@Ei|MhqCq0nbOwDFk_?czKB-di?0{qwBy
zcV~6}vJE5tQO+xp+4(Cc-3{?<a5^{Zk-G8m5o&XG{*?^N$jif|u=}gzbkYaerPb8@
z$iCsPyVKT>?40B9wdC$MY&znFg0WE|)O72aV7F*rIHjcjE@i0Bq`6&8Di6_JebO+7
ztWKq&Z{tZYO~bBCZ2LCanS_C6(p!yLOplp-p@;q)>mWAvc{aNc9Va}EOA4kx*SSLP
z)PrWkt#(cmDJvw+<T082E0>2je81>@l|V@Plp>AF**`DMM)_*;`+(Msha6pZcWO>l
zh&U<`ycAt!RW`Xv(DIo;^ek16{yYVDI&<7NayJ398-wIb8jHvZ$2H)qKjBRMgDKEt
z>G!BuaH(9`?6;FERwloi?^V76SjYQ;vgi`JSdHW#Z=GwR<P+$dJcu+uJ=DEBm*I1j
zMXS5T>EfB~hjEN;K+pD>^{8@Nud=V<uriz{O?v2=z|LQO2+xc~86h`X#t)po$VEK#
z%A8!r`HP1H=$RKGOvM>kU(Ra?dNw)7P#S=d?Rnx*pRJzD!e?|pG`?{End0jH;!^rU
z4Zx%nI{o7>d9<t_DVgTZIjwPYW)5|b&R>ft0|j-ZGuhG!xGgzkeUk|{-37W~o98b*
zGbg*sHLNP*7+wi_pibx9<e6aoIu|G^L}M%Ad+!#S_|}TsId=Cm70)(WIg`!#!_T}1
z=XLP<(>?#baJ0r*xW6qJ8M$!l$9EP`SI=Vk(Z5s35IO#xlJ)qZWG<3VjI;lK>G%rS
ztsj5Cp!FXW^ke^yf4!jN9~5-DpkC0wqoaRV)+{0xEo9F?bwaO`dchR2$X5vK{(H7H
zBx3VA%UDeJpRvQF@c`KZQOiu})oz*5yQZEEI$58;;=LMe)y{)ArbyFv-_{4;=IQln
zdCym*cBY~u_tDs%?!U#YY}Jg#y5xHJ&Yk=D*Ylw)|3W_0k^8RGca?|MKJ($N`y#UV
zV`mxL2FKJ-&PMD>n_(t5p}d3_XB>C;Ev+ag^ff=PPw$nVlWw~I%qEmQoD||xcj$dh
z{|||XooN%!+R&0EVnB4eWwYH%U&IjXM_$51&9!5Jn+dA#rNor9MiQPEOuwAYUva0n
z%cAaxLK0+t|MC$5xo10cHltt2m|>utaU2W0ZVgmY39<xVAU|8#SLK7b$y^2oS{t~0
zoKclTBCy<|!`o@NJe8KWDp4*P83|OfqcEIsa|hz)PrrnpefjB^-#!2S>o>pth^16x
zK23$~&zj+>3-(5wkH3FnF-)4X|JeGKk;qSD4k=h!Vd|sPKK>}$uRA&0^upDR=QgMP
zT<-XUPn*dNr-VX*H?(>axTWzZJ$(Kg=Xk7=@#lur_!@!#h}!dC%h1NZ)a%GVWcF)t
zN?*Fh0=9>=pBY<Hfhx@_e)z9ZaJtu!5FMyD9%lo^02^N8r{v=~Dd&!l_9!T<D%D%5
zueA|AJT{CX=go>4t4XOYtzuIK{jyCBx5~1w+)*1@YrEw0!(yvJifGa{W$d?QgHjQE
zBD5PyE(0v|L1-z_n5<wqN*BbWV?k!?c9kbagrH-oXpvD6A&|=JL0j!5!x3a&C4mNz
zTie^ie!YeTh1?wjXi9{WXwGRBU^2MAfm{I#ceA(^Ft9uUZC%y5lu(xGRn+Z&fxaCX
zgYZWpNW}3H!L*g;_@ii-m0=^`;nWNF0#9#F`{@joVCH^);;_~$2nT0-t#OeSvBj=L
zJ`m-7e?E?7P#?+^)zmJ$)DcBBQ%W%5;Xi5~C<+AY8k8)+%w^tW1CY8IC9w(QgE`@N
ze18<(K6IlE>p4ACcz-)HVvr{6TQxY~W-y_j>Q<5*D>pFmiB{i%k)TjN1M7mCt}4tq
zx*8C2HG6ac1wbRDR~(Hrz5o*uFfDE%xofMF@x360owOzZ%7p-Hqa>84IDPC%Iug^4
zcvMA%uvx$s?73z21Jb8IP3k7EWPoz0L<fU@+Lwbl{)qQ|yM2_R#t|KA!MeW33fQI!
z>nI%^qx3NVFT->e5TT|cU&VC2`TsR*;iMG;^F3yxXR5Z(V+gU0`xY2iA6g)k&Fp8;
z1rM+eK!<huB2Q9}k``b|13UvYG-zqi?ayjt1gp?Vy1zIVgshN#xVLi^)V}kPS2U!O
z7iRSJ>9SNf>!C9<=1&nC`M414QyeHn`a6XfE(F-Q-&u%Ql6y?hs?R@t{rd9F?>?-_
zsU^cZH*7ACX*9v{9%PvvOgCfb(^~Lp{d)1w^+@>kBk!;M-M4un&GVN}3JP3~MB-Tm
zb)yv9?%(UBdj49cRn~QLUHx!c`K+JeTaSiyLM+LH(GRRUA5P#;=P|&WD>4Pq4wQi!
z_Ywf1?gV~``-B(CeIlW&mXFUqQP!raUu|HYKl8jG|8~UcJi+E^34U?R7?}D7zJ+_O
zp_St_B)E^qNgP030qA2R+g%n>5~r0P5LpgB(C6L%T!Gkb>^fBc`kd>K8@o?_$Zqhh
z%4k^eL4<cX(s{l=BTwD9Rc*@W?U?O|c-qTz9F^VUI{VY;F)Kl%TA3F-F$uTSi*a*X
z*$9&8fmnvaWfUz}@)8rpjCfQgUes+iIIA7xINX8-sIks7`P{~Xtlwh?nXo&AluDV>
z;K#l)9rdC-H|M!I&&_%2OrAcs!Ba5@?%}32ii<JNNBsGkUXO<q%u*iXP*|x|3j3Tx
zw*$J>BAU~N;S9CLD=K|T&l!PD+s?Dw(Xmk-ss)D!pf-G3kD#DwhHk0(A_KWnfD;g}
zA-&Yxw3eoV`)&v8P(T6kD68!5b`WuT>lgI?GX**C<r0Rx)Y-JgGQdvg6I}mT`+8>M
zjq{n!Z>&eQ^~US>cj;{;d%_2>?VShbkT=jiBM*+$H@z1#&%_EAitq+@U0j9XkyKrn
zK^RgEn2hb*?8moatfCoPQ{*&2t{Y9mEVhhcN-X@^Tks=19{j+1Joth2IQRYR=KJgE
z&G*;S`l84;Mn1Qf#M9^3I7wQ?WFeWTC}tFji{ning#~)r3At3AdLKH~S=J*w?faXb
zUiUYi?z+GEQSNhtr+t6((>#JYE@m#}&d1yE1C?(mDsx6Imyhxubs8#edf&KlxMnm%
zDxF_FzXV@h&jepx&s>f?-nZzwueRd;dYTrU#~^d#rO3nkT%Y)MixQ-Jr+oW--<)w!
zl|E_CJ^9yqf`@&3d;jp}XLb9nF{v!K$GY!dJkhEqfX0>F_;OlLucmyZXj-lT`aM?a
zoc4DNR?je4J5d&f9fa(&jmyA>?X9+9q^u}o2Iv|dgG4MC1I1DvV>iB6MK5VPAf;YI
zlZezl71f`xS#jIif>Ik1+$?dX87A4@mqz7k_DhSTu6?&p4yr_lJW=XZ(_*@g{Qh3i
zX&#J=CSu?NYw#O^mtdF6=WI=)_D!&}=JUsflLAbZHc5^>$<_!Sy*fmL-FNt#x0D>X
zRCTIbK3!GV%`FF5_r-UG-0Q$+|KqT9x&G$@xed7MCi7YesqCm8?XWwfnVU{^_v?&C
zTdPiut{wQ?QHA4~Ml3|ELI&ri-ADnxmX_CbeFrg(RpP-omb>BYaU8)S+CdiPw$P1}
zdu@f}!0Z}zw6f%^PxW*aSj2bStptX!L7Xp#b&CyS{G8!c+2Ftf1Iw(^+i}1KmTcMt
zU5#;^ZrZppE<@%i14~1oTq4_ZeFBI3xwz*)e*OLB`Vl$(%kX|jbIqqHsGR<ot6+>?
zvD>@~PA&iVhiO#ZeoW%}`sV~3$>VYL$3J9<=1==4fK)zB$p$|c$uh>HEh|3Pm~Inn
z8tz`Z*72t@gn{uX)%JP+@efOx2Ltj6bx*w^DM+8R$4!q(a9`10*`Hc@4XvCx=cdp2
z-5;-7{{GAFK2&p`6ABmK)#1vzpbB%sHogo}M;5b_(ri%}&qwW-#Ig<v0tCD=!aCo7
zi}k38tfSn3u-l3gNl?rk26t~V$|+jF3s!T@;5$sbxvaFRQ4wRx!YzmML5WIx2_T3t
zwa4QmULcGjwJjhKV}vQ@0zmQJF<zX556Y=^5=to*hE^QwhnS{QMJ(mCod8=bvRCg}
z?EF3m1XH>`7K>pv$NGV>=p6MmPy<;3&j!}R>?qG8UvC|Fr5wSVj1zpqR)Rmvnl%7c
z*!Q}A;e$EjGAEeC@SGjjdmApyLIjrz!bGc8Y-|$;YfxnYwxH+`h*kyWbL>4(?LhfJ
zEt^;p#la8uIJ>5kDsIgS;7E4ZS1<W|{&oek1p{?YtERo_n6o;cxjnJ~6tXMTC<gM-
z=Zo||1u~3hYr!W2#^lxA8zr)aDY6>$4A|!&=1u}NqAZm~$$=KK`_GKnC$$JivkwAZ
zNpn!dO|w3D*nHOlv5)w_T_DQ9VOJt+&!)_P#Fg{s2zAuh4Yt5>rL!KgVOOy9XUD^I
z8YmmQ*TbI-wLMmf2HOV=7c2P@36J9tmXgG*$Zkk=OMUaT!O|p=uuK+wPAtPUf1)ZQ
z1xn??77Y-TPlI~^$<xHMAV0UN$zk(p8Cn9Oxgy0xul~tCek!cU%aE$L4l16tULW2M
zZH<s5C>F3^L}I-)pDBR-iCm6CVfN)C%Q}S~3JPnMpi%I8`o*sn+HAsUDR9Bk@E%xY
zw_^yx;NSpXL_c(d8J46!|K^+gf!0d;38I{?#ySpCC+R)AD<IwmssImk;#wF52!9;3
zhk0wuI~T|q-O&oA1ojKU`YkvanFR&$Br0{udfQ5*P?b4$iQ1tC0(@bE?ZkkuFl?ZA
zsL16h4e8Vh(&F7?1vRN=vl3kyC)O7cTvZi_ED&7xl}>&{;!refPQ~HSpG2-`-INx^
z+K^Q9{^2KD2*2IBdtxNV0`)w~2JwLoWi%HmBRZO&OCkQaI@u2hYnQHjEP@LI4xCF+
zgi|_v*6R<Y3};tltflPFkJ_Z8Z7>}Vv5A6*ys$v)E4V-p(WCrbuCpAxa+>hUYA?*I
z*WY8R<B}-{u1g%7Tuhn~?!npBmGkfFJAs#ivdJ9vl8}ZU_2o+!WfevvC{PwM#FcK7
zFGeB3h;JOeyZLT+Obu4CX^+wXR25+an)~GszyAFnK4|LtPk;6w1NEt3I_3*>;?a6)
zmmG5e;<7{i*tm|bE7yxO181)z<l>2-H+cd_QCz;benu<+kn#{)55p+Z%tQmhM%T(H
zQXID3H@V7%w_ART3*2|gZ*eo+ufDyCPzsFLi@l<l(s1(RMRlpM<)Fs|6dEr3ZN-DS
zS*xIswn)Din@&aiM|Qe!JVn`K_Wcr4x23ux$~lUJvr}=>Ko5s+!r9n1eOC+LJ3?*k
zCe>whqW9LM59kbVm38Ib4fGxP>az8(?muZxQ9)uZ-&hG<vWUx3!}+qVV77(T)*UhR
zur%7h3IX4N4=R2{dG#}tKS5xZ*BJF<9b%*14bSDbx8Z1VmDRNZ$pU_KxMTOE@GiUX
z_T6$1Z#!3n*0G(%W0MVK0=;cWFjormMk@>@iOcv<dPb?YP};VJ;MZS%{fN|D_RQSq
z=-mn<R@+mG15-Ke8q4RXu`hLhv+6j;ev1yH180DCUddO*XSq?qh+C{fu?w&F>HYyN
z4g;kaAux&Gb_+w7@F0`bVOJxH%*?1A+xXu-%l5y<{XNF?Fa~J_N%8@$djt6qyFgrT
zd)oS@M;hWIk!Ii46k@%hQ@YV?JD!kPIwmnQjV`qQBh+JM10?nQsI2I<R<++^%&b<|
zPDr!p?;&=HbbpIjKceOUgwL3n{i?vZza`|HWZB#*fm?n#1-*<#rn%#Q`NnffMSciA
zEjj+KkI33ot<cxW_s)?whJ+=CUzw7s7}RboCSxN+BO5f_IW$ZL&NB5Gz*r8>v7me$
z^LlJ$W!}LPedBOGp;%x1TLs*X?b!*n)5mWG|6?Yq>btD7Z9L}zYNk(15DuuI^kMb4
zGFDbAW71`b^2pDsT;DkI3e#wgC?>}bQXweLx<ja>f+d6ex}Q@ad!N=bVsG#tY-GBQ
zZ&^pX-sj)S;KqjEDh}*ZR~^QtzkBHeg{R8cEassq&p?&cCT)hHH{Uf^5aQ?CZ#?5}
z`8ZsUUU_>E)>>V0Kmt`@Spf~lKwTq2-A6}mlXex{CWy#eg$mMhi50@(^hPm}N)N)M
z?roiXThdVW5FVYs{`$KwKmU5ffc*2v@Q-_etDVVw=43hP-~k#L2?j<8+zR;q5F=8+
zhFhihIWww$T@o}cU#MkYvH5u1U*n2lOU`w3EWIls2QFd75il;4PF?ddD}U{eLxJzv
ziByD(xb|UbfyGQ7NNJP(iB{ANV_E43VKKWS0`y1etJzi9szd0(UWoHi7UXrspnrCk
zD#54^vOux??qJhZo6ZYK3;Rx>!*pCd3V*-I=Z<Sfh40t4^)@v>uf?6_p(^Xz`IY%D
zKU}3BcSZC(uSv<4Fch4t@c3!5<kAEfAyE3q)M+IUE7efc-PPM%y_f<D#79<=+#Zwk
z-hBCJ3|)0!-me1$;p_cdmycyo)g~jtiKSgTH5D_Zu41a3!vIl6Kil$&*7vB8zn6(T
z+)~H1V(03vh$4sF<NC7b<^E+y!t!;s=eqI3JP<uri3?ff8*EKQ9<unnGvd%=lCV5M
zUhJP$OsL(l7vdPkeN$A~e#y#7M2TF3%^pM<(1F1MEd;5^e%#wjQ)Ly4Wg)zwgyMD_
z%DZu4?_p!$;C}hB3urMa3}@r(YpDPJ&mXK1X0enJDcq-Y4C(Tzlq#X9XeE7Oef`vg
z`u{1#`H3iM<reA$Eh;|=S+__a`YCEUPoMIXlKm!yTh|kxBorv0>i#Ltu56@WK8gTH
zifrbPL6m8kt=OmjNr4-VoVv94pT@z<9c3Hi6Vd1LBZfx($G_S?CCSh7lP`QqUB;Y8
zg~x3)y$Py){IQHdj`UO3cDAdm+#iAa<*8IziR$`~X{O&l|K>M8{TPjVua+m_W{usJ
zg03*qFbHm*^bqxL4E`G<D%<D~_R08jhTpR5W_gOG!cSrL1lh3@-$96E!cwYe8G<7Y
zy{~CkW=I(a9OgI%5SB((w&1}~Zn1dV(?LgwVX7o}>Y99ESZ_ovb{H<@2eb`&>S=@Z
z8W1?Z?5_!>1#L!Uo2LghN2F_tG@vt6I2m}OAYl;aV#1E-i2w+t+D1<pt9&{TJk9b$
zJ>ftv+2OH_m*7bL5siugJ;Z3k+jqxBMmFTaHsiZ$Grt0DmkaN0>%DEg7gVTa1DSbA
z&N*~!^}+sZ%jB<Yj)TMN5j}@@JjUfs1<{J0WK)``OAa;<Lu$Psoktia+OF|ytKW=4
z_j{n-1MMDi(8@z3uGQ|`%49j1C7hjGJGixV-K`zY)(-d94)@lkY@lP&U3L(!gc(nY
zJlcfW+O7Vwk*@j{(y^%*PS%D&RBkKwyqDkzUJ?6nJ|8I6k%BF4$RWHBv!Ts4l2UV<
zRxx(ZpEUTs>BvB|4c0lrw)+V42-rLV)&MiC8v_iXw=GN=V1+1H;;3hJyd`Yh84AXi
zu9Op3aBs|h^YVdp>R)zPryV@Moh>A731|({MN%Qo&vERJS?a;KC*qtE*mS6P6$}Pq
zw)5PTmkv(`Ju}j4TF}+{PUk&KQXN_PINAj~t^Kku2eNjOCq64PU_?Yg&5@WQEv^C^
zIrgwNs6aTZPa?Rkkd#4=yC<w_wX~y24ldUqx#&vrgcdA~JwQ9c%$QV1paRU@Pce%F
zCSh_}t6b7n>Y54n*5n_Z3JW9V23?H06CHUw`gqlq3QtiTz_l2#D-)S=QWORD209UX
zS3-(HQd@C|7r;^h)}>b5s>fQ}0X+gpAhPd8tz$)K)zqL?Ij8)*V?!OPaRcV7CLxJ$
zla&u6s^3NK%##Zv!cjSE(G0QLyrA@DkzgJo1-lL2Kzc>KbqR^zDf9_;3kipkglb=Y
z@?nWfqdSl)`hhB1%nP)U(CKKS>r*XIWF#EmDSD5zU*+uZ!+MqBR6V{uboqV$fvls&
z<uPfjT~4U1<_KSyUxOgz<YS)cbFMgRz{Cz3jPqle`vo<N%Eop6UdKe0T>}^2Ub+VE
z1d)m^lb`=y5kOrzUV`aAj0pRT#2TFdX;ivdOkH$Gpq_w<Yd$|@u>c)1QZ4fmj%Le~
zHXTS^G!Kc^5Cx5Gy}#wjWdtx2L9NAM<ssF&4LIhWnXI;qK!&!|5VTQor-{L}cPg=y
zbM7gx@^Y|ksms4EB9F7VLP?&%M{r*5I1w5}1XIp<{%?JD&BR;gVT9WmqLx^1QNXq+
z!{{MsiiB9D-tp%lFP=9XxalyNhJW+&(bZ+eF2g20m1wduP>V&AWh}8HscT5xmeIsG
zfPU3%JYpLL&Cc*PB+wza5Wp>Izyfwd?~n%=pA3j1@HNU^3CC$p#9k56meHE@8xF|X
zN}OZ_uVj|N+{_FMb(@O;o9lQ24_h;Vp@<@GtJM}FM3`Ay(h1^S0%pdcn%Myo9HOt}
zQ<B&T#Pq42n4k$;$7s;66nQtw(0yvTob8e-J|SLerGz1&dJR@QqhXec7#!&GcEUqO
z_)B<;{ys&kQDbdJ;IGsB^tB{OB&+y=W+Hg`!>@n+{LxIL?432ZHn8X`pk0ola}5Jn
zNV?C#Adv;2a5DyJGXfG|Gq!<(yX^3=^eZrZcAyr8D(?hqLWmHW&shA#r%>KJVtXEs
z>wYWPco(D2`SE%WL<wVTU|@AGLHHB;d%TeYYbYgL0GAMx`q)9(Z!6S=``vifTIM$+
zsH<4Rcs2%xrt^?-fVYF_8?P8XCK<ZjEgD?#t*u3p>V$ln^czPDD_=W_*?Z_I$-f|i
z8!=fytzi&rN|h3is`^h+rm_1`cYQ<8CUR~8)*me~B|)zPwx+&jg_Z}b3Lfmaphw`<
zQlOe4dHF(AganA9Fk0@hI~Q|00_~``(P=J?Ve<CRZVSytO9hQFwjMVyL=Y1^wT>nP
z;K5-avlDrAHQWS&FK((c09I5N+5<oe?++4*aipC9kasMtinqXua+9Sz0S_|0W*lh(
zbsF?DJ~d;}+%&2YVqe7TV9I8enRuNjHSENOkwIny^DuXUmCTM~$JB9$R?GfWt2G_v
zR#CT#I~&x1$WYPEXR2$s7*#gCI@BmEOom)rlLE6OZDH3d&5GcmqdIBnShs09W(q(R
zbuU?IR3IOAz7q^l05OB-T90`033(Cae#>GVS40j}kBg(>Ic)%+a?E6DXSFV{(tE6O
zD_CvW&>U?9DrrcsI!aketQy~K7IYBZ8y&rPM#oRmfh4Bd#4uTma2jx-l~n|p;~u~x
zE7G;Pksh?AM6!{Gx@1@Y+ObFEqZbvIWiH0mF1WG+4=Tw`rX>wv8F2_wnO)Ij)KcBj
z>hV-#g8o8nn+Op2CzW-27wi!1Dg@M^ycY`ptuFJ8Y%X`&TM!mIUc|zqm$ZNN`{RpG
zo9>Y~e>(B;NG>bEQD1SK>`@S*P=8IH9G!mg5AKHdci%32d}-Zuk|RD*GG-AI%1U4k
zfQ>aR4o5U;*MdAd@t4+ufr`^0>gGuHz@iUB?r6I`Bnt)kRSgEoiq`IN02<xxM8b!+
zu!o-CS*-g1DVD4U{y$AszN<`$&^K5I7?M2<UKpHXmB-phy5|5*jydJ{9fPyDN5`F?
zC(k{X0mCb1&~Oof@x{E>bylo+W2Sa%lkJ4YvT0$U@kfb-fL!Gaac_^>2D|LmOB4YD
zC372e+Mr8JRnRoaCWwI#hhV9ParooE_$~DtJ;Mgwp$H_E$GMCu#!%PV=>;+UgD=$e
zh5YUdY=OB`kf-%WK)j1Gr5@3-k-Jk_<%1v`uX^(eo0dEtD}DGHofDcawxCOE?^Moq
zbUnfSv*l!_7BB9xF05+UIa1dE+XHSSVW*%n%WOIEC|l-119ZL+A>JiC?Hd#LG6;8k
zjFWM7oui|6tv0L+uGo&v_$AVMC|+&QXNq$*<{34@P6uQP`&Q4m>&cSAL2oqu5b>M<
zm+>*qcsdjmh<%0J<NFD0T<D2m1w$E8;!0gIX>H4jjQ}`M^u^^4iasPz<cjGlgNn8#
zr8e>KI-?Oyr#!$K0}PCLJ)G#%;xjupXY87G_DM`3D=vlZIW|W|u1a+}qp~=W*oVA6
zKmYXWum8qC!)6YtuoS{LunL(O!2McMra|f|qq2+Y1x^v&J4n!6pCtx5Eh`DyMu#gy
zrGA9{ni^3FJ^Px40S{Ktv=ytoz#2@{W0G*}ZsO-yJ6-40-6$~U)<Pu*wCE?Ut<|G8
z?IiUQP}>o32>zdtU&jBwYjV@FVIz|q*b8N!A62SLC<sU>BC(I0YKfXZ?5-Ul86-4A
zMfgI!=AGq9vT;%PslwJAIcgz@{MIX0HE!i%-(4Bfvvr^sHhMuekSPgdqrnnxyV*?p
z6D>a*>Nd97m1w922b2-LA)C-T)KU-|_myILI#F1g_euk}_$Pfdw{%mrCvwydrZKNT
z`N;fuW2F$a%@u}>j{ww;#DvCTY~0JYxqP6&GfXW7&(w?*r2O?T*byy%ORAkRJL){t
z{MXRREeuEB)A~^kHo57}<9-9H1LgO)N<U>skIWTow8zsj47d%H>HAo!+X1Xa=8cfk
z+to5|*blBaX*oCT3_>f{T9n#aanTQSk&iC&>Dd8DWxU{^O0VDV4~fmqWKPH^IyxPJ
z!0%EFqoB1$?7HD0{jvqf2IsLxftJOHxatf(P4AkqJMa}!zmUq}$g>n#xP;;uq3mI~
znaiA3DHxWTabRFsng(Q%HsjVEr<6Hm%Dhd>0icG+qJX$%><_bUrB)G#1DcGLPzB|4
z#!ie0tvKvleM=i0I3wioI6;KqMM}lQ93H)*hQ1ok*uzkKTx+@ZL)EF+;=&;wkPlTO
z12FRtw<G5iX*q~%s*_Swi~*yK=O!i8kYUdrEw~>{C<~uFLGp*n#GoXR8870;5C*DT
z7M@sbk4_c^cYhGXi_dlU%65t${Q<NE11AxrDi~EZ4A=0yWx^CYa0d})?`(SatRwn0
zR7SI%^k8W|UvQ(diLce?KC!W-r~u{Hf#6{*bRE<GcQ{3)=jZ>WQ^XGw^Ftnh|I<~a
zA=%oMXv7J`5l&%65p^-|Yj>)5R+0dkl*ry=Om}TXWF0gsXpAtDmat9kMguQ5%R*Zy
zuvu2tBRwKD>{w8;15IMYZ!3Lq8jaNzye`kkZ6&)X7`eV>;()fCy3Wjk3$3ELFQSMy
z%CVP%a!2t@%o8owheQSqY+69|G?!By%Qou7v_99aRT5pnmrH6?W&Aaog#*p0VOxK5
zdwScT-V^9iWA>PzssY_VTLQhM<ZkSOumy$R01HDpG`YhvZ6a%<8HiKJnhqK^f<@Lr
zW*zs!*5JQ0g7Ul-3yJLSD#CCRO<K%+5yQW_yF2>tZZ5ErNX1>C0fq5*VQ6Azji~w5
zj@4{`O3bU_uIg%DB%#Qg@N6LIr37b$4^ri6gIjci^PyyRsY4u+^lbP5$Z4lsj1y3)
z;R=&Otgi<Gw+xnFk9GvUm3U1RrJCm_$~B{oMBJ7onFN>;5Jkx+Sgn|Lw}gnPd3SX0
zMUd=s@CR*&yrS1F+o|E0j)R>iWm$IeHfC8H2=tC{HM@D&0ui7CTR=}pWjk%HT<N(~
znsf!FvdbL6-NTueK*)ZB!{;MKcvM8}tPCs41K-v`Em?_uhdw?@?o;V+L(|&zIEK1B
zB;;o!tF?7PyTgH;;ttjflQd<|2o4JSuxVwJMP<=C=}0^P3e*-34g;j`tafjS$)~rt
zSO-KvY>Rc3@s?Rlyg#w;D>RDX7A`wO7)0z#nn%Mlq&oXckx^RPS;Ey@g|h;EGa%T(
zsVX!zqHgACqvtDC*0jP7D?1Px;qSpQsIUS$45^D5GhuaY#Fg7Q*RkE5UW)2CL}PQA
ztPP$f;nD{wMM{T3xcC9CLzPr7>MO&#Za(5qu`!372U&CC&E2P-9rrDxdoM~LH<*ej
zk$XWhJYSKi!@x~I_;;kOZ0HF+haDsxFTRENWH#X^*hN#)D;IarA<$+Vn0;JNMi;aN
zM3Q6HvxT>9On`pQb5oj96<8(8L&>g3fv2wN<_HYeY}GboY&M0vUNMLS-j*W<7cC4%
zBYYS4CJ`pvFqYGs#s7`CO5Tq$E3MN@?0UHy3CoAej;2$M=jUz~eOypWd+0j8i1jtL
ztXX~!#W-jM12uYYtK4mi-B|(TJp2CYZ}|AKn}4xgO?nhDKcxK*b(I+8U7k@u>1fAT
zCo(R3%R&B1T)BV2OV3vW&ydpLvvOH}eB9#d+d;(Dx5#*9%7$Lp4|l!N098k|he5iz
z&B2627dbhgWP8GNJ>4x7$R3O{vns)hk5Kzcm}{a(K`&%-HV7UXFLkLDQTPp+UujcJ
zhVJ%da+k=aoF0^phGMNU*D}vd)`GYZT^y{#1$)L)VzXCEhHPV`o3hMZW>SC^RKh+{
zM%OL^#N^-zlOQ4u(${1%&HiBc)sB{gtA!Z83kqWXkD(x9TPm=2@A>EzmGE?p!Q&YM
z8w&OscoxykND@ifA91luY?iu*f3xOtA}6s-ve}@nJNZTdW5eLnP^8*`$C+eQ1mL^_
zst_#!1~X`-LVdIPUKN2GZZ<YcENm=Y9IWU=Vl=sRMwil)%X4`(j}^aAob48|hbhn*
zyD%0`+Ly%z4G}@0RC;Cu4N=RJim9=ccfJ4mvEx&BnDEjKCy0>)zGSX@+!1X?CHwN7
z17%xlC=W#Yv8e@|PR*7q15Q$}K&Rr`uoJ`oWYEDfbO!?6$%X0R4KYk`rEO5p#wHy$
z9b0&LN5fFpFardk0>DKsf{}7pG)&wgx&nlqw4cYGM%&Er=Z$;z8E;_5dX%A9XXG+%
zF(Ru{cr7ruNc*P>GT5RKyvZ>c8kOF1WK%SL(N9jW*F8`F`pd^C{FmobP?V}*7;6I4
z5sNyk7trEF3Q2-1nhwkmmdvtmvZg4Y#&~0osh)vBALI`v7z<lQv~DlgT|zwBjz7!{
zHykZ`*|PZ{c<-_o85gZ=C+=&Z(R-p^V}F{Dg(u!ud_$+O+7`2^Q?{0Y;=(YHHY^$C
zflBy_;56NhXB6`Si`P~-=E@*Kw|p`YB#Mn1wcFtC;w;n_q>w=EJP+o+Q+3Cu23w4|
z2);AEjWaswz+Zkap^Ae&PAzq_2r`>VGwi0)9r-=*p#z`Ub!)npDl&fc1x4CAiV6!>
z_S5*?vUa?+;isxomJm-{PjQYX8e^B}n^=vj7&HOJm`Q_wt`WF(9ik`y715M&YULXX
za(x{v@Gyj)bSf*VQ;DF+Y-+N~0clnpmtRL-8kcjUPwFwtgh#hefO8sz#A=XOQ9)?r
zMh?io>O*WOn7WN@6+ci@FtXanV$KScY?4HRFP_43TZJ-S&eY(04&A9b>vu-`v-7_p
z^25TC^Oe3_(mvBX^9&n<CDy=5-MF*(wZiw(5Q8CLpdhc1tez^TNKms0=8p7eu8YU}
z_3PibSr|$Im8;ffEABi}Frj@*Jz;$zQP__{hqc#c9&t2I7c8_!siZN^0K*XoW<1_s
z>Jk7jQ@^Fcw^O_j^uh&69h#(qq?KGr`J=}EvbvD__Y_7oW23o#q%|X{f>H|Ud=0s3
z7no<=_J34svYElzWW+m&()aP-s`>b5HGgcW|FeqERq-k}HY#3K;j`-O)-Ys*f3eL7
zv!m+#mb$%V^>Y6}xTmgx`uoCeuY_^xVqKPdSH7VCH`0fz%OYhPt9zrorTpqfTOcb#
z%&<Pp7w$#SoapwTBz*ZTMID0cfL!igMN(I_3!~!?Uw-lOaR(HET*#FrwBX*gV|pVW
zY_X_1KklfKN*Vg&xoen~GUPq7dAbU^gU1q*$&6LIe7D~2<e@tiN#Rlr{qgxPA0uFm
zOquGQaIO|2b$_UuohP6QHE;Ne<Sk3CD*Lc06nYUVF8J|oR+V5R6Uk@sOJn2cJumEI
z4~00uk~+-LG>mXB%=wTYlpoZn&vNujSgjSw<}{he6Ih0y4#`{Dd1==L#zumnH6^fM
z)xrZ^viX)Q7l<}X8$sT{jvc#`$CB6PxMIvCtoAX_iWRm$wTD?S&}PsICk#dA81l`|
z35STnD3aO^3**)aWV{b6@w)b%_Dm<l*QF#Br62?5%oZW4v(iL(fmgdqDlCMZ_5#9l
z1hnc=NwEC@Ba}rmP|wPBG<)1L>NCLu<5po<bHxMW{P9o+5f|%Ndql5eQ9KX9^C~;-
z#%c|8>p*i<y4Hi?@X$p^nG5JzoRY!~jBaq4{@AOC=~;-2z*)qp+NmYxi`{I?R@E=0
ztJB;55}e=x()hN-*og4@tyi00b(&X6aM5YK3cyN>bk$@NV2%ZjB96cjLtgBS;_dLm
zrr*>x+C^IqE5RHbxHd3qcP)`4C?9!R!e}J(=n?LhMZFQskIg|t2-UVkvtpZ^R}pgL
z)x=h)9SO^>1loqYaUdWrcrG%aDg*t?m!I7J{9&lq%Y`jh0!^S*!W!l&PxBqG6sp>@
zNUAj^p3I!r#3}AA0JGuCQgy8~!2y&-Gq8<lvMMv~QnP_hgLr6uX??@#2Z`5QAi$7>
z&MPueTVh>x5HBW5i2PF5UL$r#<`~#NcF;J`J$Cdzxk{Ybi_;*UW(Nt}3!niF1yK$X
z=Ng-90%?+At=Lec>1Ui~<K3MHqbm9fq0I%sR;x96RpnD!7=A0Ax(uE&6C_)xJu+}R
z3|VqoNZt%3Np#|k=I&TNmV(7{g61ZB_=L4LD(F;JI)R96GiHZoK=391YI_w-bq?`9
z(h(I{@j^s`W6R=SH7`$;E_OZv6@vGZlc_3+TH6uMd-3N3pMPp1NAHic$WjJ1DMiOK
zB08Ci;Zt4PD)LQJ^iR%CV;eLVDi5Zv#{P;LaeKW{FGR&79X20a5U#qG`FS~NWl37c
z9aYkH>M2Tc`b7(U!7M)d`o?wVvpF9!b_@DT8u^JOq;520pfoPoN+(v*-IYQAnO2&B
zfq^AblPD90I-p2GA93g{9=%_G^36x!%(0}Wq6ozUMqh(*3B7<U&lq0{KIpi|98SGn
zVozyaW{P-?P6p{(q=mBuTZOw_T}}*O#dk)`D2s=Oc#wG|O+A-mRK_TMc@m`&CV*&c
zwo2Apy=__$JC@xz;1~9?0wga>ljm?8-HAq2wU7<h%jVNU@`Ad6?It_pB_T&r?R-$!
z6zW*073?BNTBL;@lP!>2AVC)DcO0m-3glA(rKYjY0~K`JT_bkn?FENL5mM6?y>Ou|
zEfycZ%Oa1rXh6DGyWmwZtjX}Y%@r&8l(y^8vDSjypbkd<vW5UeNrZu{Kv6+2vQ>Kw
z81X#AegMlt!{X;&z`dZ*IYt1pApfyuZ}GhI6!8|bOp^5sd>3uFI_6SR1T0q?4=5FP
zo<Z=GpdW4$Q+_LOxm8#qxMS@n!Uvr5hL&aHiYiaSgoK76F9IPzCQamUE;xH}XStW;
zF!2k)%%=r(R)Ka{#-w!QiiM-sxkusk85-ADw`5!_de2H!td;4JHH<=`3~SK->FcjQ
zN@ISytgd*eY24yfg<5_&87Z@eJP@bbCp7DraC+`aNa9#YWXE42F*|zdiU4HV0gbh1
zinBvMq^t0CZLle|*KL8+00{sdK9OM8Z#N+q3?FsZFRXa;jRa(2+=RL8De7_`R!VHu
zjyKQ>^<iWue};q(G=iQwF9sb*-NSlJ_a+H$FAx;>2br9=_$nT2Wgyz;vwtUxZFlxM
ze8_@pE^DEzB<^Kp2i;sk-y!gQZ9;~dOnqv6A7U}~x2Vi%aSJSZYs{3D<nE91E`tUP
zZl*TUq%U+JE6EfM)0aUmNB2$-)I)WCs9D<u31ul#ll<UbI9xOE6=DZGU6$24By8Qg
zbL+ge=|Jl5x6LYF^jnxrp4SP|hAry9`L+6Yzs5|jCiw6*M&R}N_b&(f$45;=P9B3S
zdtHMq&#f}T<*m(7vwk*dPO^3;r9_~968hV1x)hNM_PdQhj88kJkkK=uJnXH&=!`BD
z`ACtqz+YwPk&;cK&{60cE6G<vg&eB|(V;ogTNim(h53-f6*@Z0uRDIvD~!Pnoir@z
zU<5yPiK(WsHcIG-@hjl8=($lNI5h`Z8V7XX){Fc=$L93uP(Kk7<3xt=!)6l2pn=nB
zl@Xyn8|ToMSZ*+9I8USKl7?0=8MC{fwi)Q^buf+!V`_LJXNed*fnZw+z}3&GJ))0o
zR&3J4%Ws9r#TbNM9RN^-`;4KpyJ_K6f^${{yj&??e~9^T2G3nuJMKln9-B4Qrjum>
z2`V4Jad`-y2Fq&a1B=z}7S_s@A~NKfhrTN}p?053GZl3YoM}hiln@MisZza7wUu!O
zBa?NV<;WJL_9bcb#c6wwlb2gRBiL3QnOs>?IVJmyByQl23;ytOLs3&MqsDVseuoCQ
z?CeStG3k*1b<dP2*9h`S(yN;1AdC;nv?ddQQ@p`w*qW^@ki%)tK-Jb##IxR`7dz%@
zbdl1y><JXmXfqCap5*#0a!#x0+kiPzpITY2|CLQ{=Mt#{VZw?L++|g+HN8bMPfPJ<
z(!qcVJv#vcPOpV&g-!BMucW$CsJ4P>*eaFkREaNkHgW|PaPx(&oPomNbdHm&3-5m1
zV15F0M_*bP3=JB}2G2opY#!5GXL*UJCu|Bo7XXr5>0G3v?f85n11)SjDp*IuWp?!u
z;RC=IFs}{Pv5H7HlEHEyq2$ZMB`*{l@L7!F<0XP=cNr7Dh_+P;&~PqTRn6tC!b~mK
z#s8TJ0w`Hh5h?f{Oce%lHYmb&izV=>p*%7$>cAm`-b_~EOPZQVVd?c?R>Jh0(atw7
zYI5{1ENK`DdbCHnuqbKE?cIpnEF7f##10gw2PAQI1Bh8pd&&LP<>hY%^wR7PZS7vM
zpt>2)#M5@Ngx@|wyTFK2-v-)|glj6c=f|0}Q4g2}u&tnz9c=9M3T(vCOk#Q4-GCAm
zx?k-<FIb1Vp`!yz$LeU8tYa?;DPTdPPuSj(Cn(DZeA=!_0~a%^MO_cxo_EcOQQB8E
z5=70XvDD;2h?=FCSB&&M?VrW_-Xn-C_#pKcMY@1IzptvgX@^S5XLx~^a5QmKvxYJm
zCby5*J>V>+O}o+sHMK~xS$kecad^4^+;nh?gKm)Ga6xKQdHchY$E0Yt1Y`M5IK9uQ
zcYCcbCj=GEFh1TX=LHhL{Dp{iVNS$)Dral5qkQJg<zT%t`c8;5md0iDhasX7c^Z%4
z(8vY?SOk_lUS&e7r{-JVX18nKXj2!w4~643b{6auS;HCqyL_!BGlqMI;dLpEEdNv@
zwmbEv0+IFGOd4DSBXTfelo}f^#u>L!ZqP<ekEvABz;-;PEF+?u0WtJFOIJ=x_isJy
zKit`MC~N`4GC!=0s%TqW6@g_G9QO=}9)ujFODR6r;y^^hJ{k^=(cd3WuZ&4&ox+0@
z#Cghn$TrOyjj9+O49~$b>5@hr##UC0gK9<k+mP@TQ9y7V2J@wPk^_$UH(!4G^*Q|U
zdmn+6S~HN+E+JF8(G;405v5^?gUr$jVSDn{tvUih25>=U3>8JG)OjV=TNw5!Lra<Q
z!pwN5+hjdVxan!wCAQJnLIjyE!NVs?0gyQCOSf;QlFh!8OdD<OE!BD%n+s<d;?A)s
zU}}p3EX&w_@Lh~~PG8Z2^kLau5Fw`1H%%3z6jf<ZqgO=qv-ZlYSH81&$7zvFwN0^p
zckZ-3EY=1P6VJ}HC<EiOOm}X|MSx>Vw>y#DU<82)3-<601`g0|^A%0^i&fa=+!XBI
zn;2%FyC8=-^eo13E~@iy<ZY}zwnXj{{VHXR4OxAYNHlO$A=?E|XORfK!xW&B2$J2P
zn~TM@3%5p7X0r=q6t}Cu`6`c25ML<Hi3e$EZs`jrU(M8R5f1^OET*+6fBp4Ozxm_G
zWjS^P$QZBmTO3S$G;i<1^Zl&rfWu1L=LfJP`JCD?;ICL}@LB=oc`9%~`?}9%GBa52
z*wre>F+P?uKIinr6Tl3)lz;j#^6JIvaoNod%dh~*%aZgXzt^VC{bUIikOAWTid~DV
z?4jGcBvx0NA`;$Yp4@OH5@Xq`wpJFr1Hzc!C0P}#H%qnLG|6lFQ4wsrH3D+*4&Up*
z01(rN7<^?NOLiI<l<w#mt<m?x_c!i84Jwi(wna9PG_R^G4;p~k;%~?FZpOp+UL_uh
zn-xV#j9ZpRZNo!{9bAF5+XeNk_$r4tWX~}WA=OEw!!G_9`NiJh3nDI!1?t7S#}jR5
zk3Hd6b~aeUc1t)N&u*v!bkdU+<@Jr%Ey>N)r>Z>&R_H=(6at}flHXl&={J@BUD9<8
zuImN)kG9Rb3=8z;K&e;lpqIL|!_|n}DZYrYQ2DGiX+-$OM|TIGg53(wHcWaa1&$&o
zOc;~>BA6#<b(+t-%HL-1FR?8k@VU|7T8}ajs&ZKCRm_36l}>2a`oKrN$Tvu#5#y^w
zIzwR4sPl&G2cBBlp}js{ur<Qh0Ygy{`l$Bff)}MxBCTrd!GYgY567RhyG=x(9Xidh
zcZ*4r{VkW!zwNrf%Ym0cBc32OWxg8p)wk45k~C(+UI=a9`H|a8reBK?(5u@`8g02|
z7voj1m{+?*n~%fPnRsHuI7^1+=-{%iGP40i!!wq87ag^}q0Zuc%DhqLt)hqH+wap)
z)%@#mtS4*mm*?O8^d)@rv+(=tmvH&!`Q`T?d4!&U2t}eQy>Zn{b)w}0KDUc@idZE8
zB;5i<+*5+PV`thY+ljnEH_gtbfNt1LCW%B+mV&UV5BeH?$-~!XoFc9LAeStSC2=8y
z>W5|(qzm9Ty1unTnxUx7I)F-o07*c$zvsv>PMMkxbT3$Eh1gx46p0u%qzA3VG_-q4
z$Uqm#Mr-ND%Dho&hL*y9kv|7SOJ%bs3Dy)cZf%z)41KMXg$XS>YCob!wS?^Qt9n<j
z+MS!2$^=eZKboS(1&!k=4R2x!R47)>e%@-z_(m-{;A2X<s7bmyiUy%AsEd*X-(S^Z
zY7VC!Tox;N<cry<n-c?&cgYtBywRsjm6<n*8`+ww0HS-AqHl^TW%d+$PTgtMN|Yj^
z65?ohTKXw`IV4k}LB@7XlgC-?#nc@o-3M!%Ux`RCu*Sh1SC;9D%y!e;YI`j;l~6T_
zHD=%rh#FgF-Shkf3@a<nF59M}O#Fj;dFme8d)1qel6D<v2r9+ut7E<|qCZQE!rnBI
z)=qyoRfbBu14{v|@9gbTexIiEd~hZNqWf05YQU&gm3=pE>^Z$phh%GxMpr~Q()cc^
zT|U6B3|kk}sS;Vy-MNs%y|mRpt@ZZ(q-o`%*8?NqM2GIpNdhd}@t}he9Z?CVcS%>G
zsyYx>FpVC!I_niQaZ=+pvD;e_3#ajJ_G;o7nID7$nSpGTA5BFHqG4z=iP9>CmHbRS
zwAg9h-nKF{HWrEILSOUaAmuq#-ZW%+cVRwkTAHU-a9YvuFeyw%Qe`6*A3-fcNJM5R
zyTRDQiFG5(!I+U=CX7Y%Fx60E?aMT4r}=o`7*`BUbc6ZEXm-cac3LQAbDz29Nh=kk
z$UH5%H+d0J5<XKapbX>`IzYq`S-zO{^ml<m(dSqQ4kgtR;Aa`GCOT$Yrg7!V9OFzx
zGDi^`UBv8AJyj!SF|FK=hx9RJN7uUhl^w)T^h_}Qd9EO9KJ4C4#TWLe-})Yv1mDGE
z|EkP|cta>U_%AP2kR(KLr3|~Wm*JOQYtnjDc&kLVJahb@nCF>;I*&r?32||1EivCj
zs3ZqH@~Yc&F$#Nv^NdJ+s`&zshTEA@^5R!fTdUVn)CiX-LyEMjiO-aEF`=u9ENQf#
zB=404%iZB-PT<pH*{D|Q(Sy(V+#eKb&H^P?YgXr_>Hey2z0ni&>sv>ssTO0eRUPn;
zX{Il-Ts_U=OsVd@nt5Iiieu2(eJ4ty&HOVbnu|!G3_8!eP9M)5CK+Nwjr4did$5X$
zyd~3mrY%?01%PZ#Tblk%&+c{;Qih`MErV+_7|oOr7A8YfJOq_=-*aVYI~PacaC|d2
zNQcsJ;Mv#JAg#OTtO|UEfx}nciozp|98$_fw`g3hP!(qF#4ZyS$6G^|TwQ}`c#!W<
z3VKv2vSC7Dgn3a?3qYhU24j=~O!252<Bl4=4KLlKwB|*qGi?{B)ymDK&=Z&UWpv+g
zlgD3afHjfrCQY7o5t$%X8QrxI04Z8qc{2|(Xt4IA9*EsCzmY;|&rAoXxA2RCF5TbQ
z<|Hq(Z{uItsN_t$v<Bjo1PQzmUN;AOp#zv;s3CJPU5Fpx<aruFZ&38r2(63pq^syx
zPjEZq8YA3tK1@S+@}fMV!25*p?a3>;(+Ojobx7yB+UNbL#TT1KnMwHxp`YKHGywt*
z7U;db>lx@_=OyLINFbr1dJU@?2mK{Vkp%H%^Y?ER!&K>ym+YUOZq`GJw1pUk=~Gs%
z)Q4VDF+^q1>@acgn4$xV>JM`h3Jof7yf9PHf($AXQjCkBFe}A0i}5(uayc<DRwi+$
zzb5JkRs^r5#5Z(?nJv?f;zKWcp<u%jcSxLFR7xUd<PA*1H@X?>pb6b)7tO@ebb$-3
z-reBN-3WI&*l9g?MKWteh8|EuT#J`wzJAiOXu`}gDajwF`y{vXnLCL&L53>vht!Q6
zm`Ff-OzMnIk87w-R7>YPfLDWPf_;A0BWAxGVC`5X_^lxdED!6myqY>z@NC;dTP<DL
zGY&2B(HayUUt2FRX$wnm-s|W+)_rz4Spiy$x$;b<anoJ1E;}l)(N{zStCd<~z@y29
zK!(A=nFnUJ7wvq<g2M-E0_n^}Br0oP)zUX48F^*za<SQQoT7O(k{4rU%A1J-0)3%2
z%(!nnS}zyqh{xc-dCy5_v9^aCFYIUfYE;Nl+^s3XT$%xylYw@yEM_p3cF+~A<lbk{
z;9fat8OLtO7?<-|Wyh1+TBGq7CIPm{=9C=H5DtT|k<CeO5Lw7<vpgpo*|!v99TV+>
zp}N;i268b=;Fh6U9yqJj7>yj)V0qhwGmgB>El!<0umNLoj>zsO@)TTB$N{$V*np^|
z%%Q>#!fL@3@Jo$p)|=(<rrv_~E^3OQ5ncg6Lq<pY6vmeKhRqAbyZr84IGNHzW=6b5
zc!LH@#-prF_hlW<6N+(Z?lXwO8_{Ph5N=H>Yq*Q{N-K*$WaeM2Jd=jf<|SZm3jgC!
zwtX$;RsCQNZ$$IHHusovG-LlcFnJfHR(zD<AA3UwIxT<!h`VN+|BZ`SZv>2Lh=dJ`
zd5!3H9+`F#XPOeaY2y}JrfTr4WL|>ZZ`?Y<UA{}q@#q~Ia3<+SJJH_EOg*p=41YFx
zr$=w!)FM#%h1Op^V1C5>t(n%TX(BGTETsBfTs#4<(SA&g=YAXsWuj(kj;BAS4&JKM
zvF?SnI?lzd4l3(CRZAS0@p$eoZ7NGlog76z2G1}^@s6XWFXufnUB&QTvno2TrU{i1
z5cwn};2RJP<3ZCkKlA_u_{Ji!ouhS6=D+KO-4hq+?Y8jovh~X5#=Arro3dD-PlV(r
zP?|C;0?WNX6cpS{3vaUSu`FArLce*zb#tzvw!==+7VkF?yh+BZe`$W+geB)bOqYd7
zOfzN_URNQI`+F0R7?B>EG=s-xHiuUhW8S<oW_%*8W=>;jTFabE?m@M5OGOzmQE<?v
zhx(trIR_<Y-ZAm@wXf1~th688-LIlMPmNA`#oE2#t|o<4nLUt^(CK^{&X*Q{pT2oF
zRBTB|k(f&-%iqwU8Tho*&(#bRt8Agsh6;}&nd(?($EJ|#nkk|z?~=FBnZ|cSqPd=1
zIQSc^Fi}nv2`0NEz(yv=BvBJi3JDq!CRpm{%AAwh0BPH89GR{y-SKW-%!wyNmi@xa
z;O%gC7zg7Ps?iFzlD!A@u_c@qfL>I!7;Muwxj&qp#h5fGMT0gQt9G(tOTCmkj7|f$
zqD*fJVn$-m11%y&YUh}<RPs%Re_<MdEix?tUengjtPT{9Y^n7eD?F+(MgwywQeo#6
z>=;%wp(O;@U9~$}VYejIqungU3UgEBuAY&&!wRx`>uqGMh8?m-d^L$w;-%bHM#W-d
zuu4E=F{ux6zisG%JaA5FB8E(wiMchT7cF<<4!P=R2EgNBW_=efg1Jz5s!80Wm<lh3
zneWJSGxMX`3YldBlBGiT)RXW{dGaFbW}2u<)d_JISm%Xw($w+MnuZq-#XHl@MSV!U
zov5M)ladYC$g0=P*#Op&M26!o47^Km%yF2Xg3P=|LOsY`szoYZ<2=?qK3LAojPj=I
zh>et^TVT7)!XG1UZe?w;$Q%r%7&?=O4!CsC8<75uEX=gfNh~;6*ABN1V_&vyM6Xl{
z@LVRwGx_3<Z4nf#(T3X+9<b{OFWC-~V0Jg{-&RFhwD8N0w##?ds{-se<#|i_3tD(y
zmT2%U+T`{y9NC0a`@k$WFUFQnU1+%_!j@WhjaaMd7j=rlcjvvu#s<Mkia6)O86L`h
z!x?9{<RqXi>++WtJ%jOB@(YWG`uAQhgxoNHm*8M-Rz#W$^W1TJ<Aawc9L|?@NmU%G
zsx%7|a^|(29$=$)m&4W!gqT9|#(@B6k@OjQsZmEn;vni6EACZ3ni`6<Dwim~H<@Pm
z;mT1DvSh>OF|nGMaLF(02WBQ(@bd046p_{V7k03@ziL8dADH7QXQT_f(>x{Nw298p
zuZG3Q`Z=5WASJe0Inhl1C2j`=2R{D9@L6l_zJ?^^<-s^v&@cn=SR!+`r<G=lg*S<+
z$-FlviRJyN=j=)R6oLc?e3A~asZW56uP`*^$99VZA|A6>=Vp5#W@icahs@R8WvPU8
ztI3^ms_QIkoW&fXS3X9p_WbiOrk=vDIw+=IPO1NWIK7i&>|x!#b0a1d9$W2LS?AcA
zvnIZ35TL04=JvDjo9D|f!%v=n|NH0L*KdCPy^kL6v7o1y{@XYfHQ%CUY`YzcXBl)-
zBDwX?HKt2acitVYqk-%#ppRj87F-zRD5f8kL0XE|tSJ!dnE``G%Siio=j_9fy5ymV
z&IP3*K6*CttPNS5c2oHVv!lvqaO|U2sZHB|YY#!J6EFQ#<nxI!iVQuYENqbZ3`_>X
zSV)<oXw>N#;ZN6WJ6(k9Q_+@A6n}Hf!MvV}MXMoOx_#>l2>{6(ECUbGco$Z6Z;1!K
z=63f6)}q`}Qso#SK@(D{JS!^V3B$+2ALvu&!1u{Lo{rs-G;7o(jPyyoC_4!o8f5Sl
zfR6@Oyjt%AL$Uf7yPsl|u3}VG{H6AR$BDz$(L9Jd22!9_?dqYi(Glp@fmkL6NL#n+
zQ*M(vJMFhF5G#xFVb#le8luxcaiinHQk_R+zFEEE=Q7LNyEO0nnKLi)_q*=Lpgdc6
zN8Y6bf8Ay_;E(j6S->(rq<G{*J>0{7<slB&-VW8>t+LtS+cKx3bx#C-B9t{-31G}<
zdZa|iqN+>eUNHaCVKYtNTK3$FHaktGLR2Tr^A!O=Ee26GN;H91S?FVh^b3SEHxW`a
z*+B+ybac7ZY!j!o);-W6GgEVbnnPrs@|B6ez9=h=r+1_uBHWcRKOAi>lL6NE9$K+7
zyJpw`xl`pEBk0{g-8yZxE~O641x#=X2|+w_NOV9J2L75M0y6}dYo2E@6{<T(7$_rX
zFXJohOWc52eyJ8UFd^X`QjK2Nty&fDmOZI$p47l1<Eu(xo|2~L#f^FKHPDGSceBTw
zr&ng(MV5@clhh*>2HvQ9Q&yjHW<kwOFb4&!c&5A#N_^TplaaBE!2!Qux0lzLh)}8o
z5pQDxZYb`WZ-_U75E;fNnhFMN28FB+DCv<VQ!X6tr{m&O{05T;1FW_p-moKpax{@p
zDWokZMs(eM`<!y!^k+~ccYf;FDtaYU2`_OnJ+Z8$?kT)Aymca-v}#{4E-l{C=IBut
zyu?+FV@K7NaSe8HGEMGByHIogxab>})ib*candvl27!2brZ5b>AszsHmV$4?4oA?a
z$86ATK#xt<jjt+-TC19ebC)dsDZ+BlyW!rw;jMeayY6-GqQ^I@ckf(*xxVk+vvbeB
z-QN0kyZ7yO@7rzlZ8-Zjhqu0s;jM3ve&Jlc)wx@8&u)LOXZiQ7o(=E1HoWWG@Yc8C
zt#7xtzTMvXcFWxz8-Uw?>(y}Y)pwm5&Rz{~y&B$nHN5p|c<a@0_9{MtnO?2b!H~vj
zd+S!4nt$`VpZ?}|UtV55qLoaH%^MChO<_~C(^gjFVd8rhndvhT!xKqIt;T~Ie;s?8
zX&XHnala+L!M@RsbvYQJ*{JrcTQtz{&$KTXU8l-4?6`q(4VN-NWFcj&&*O|%^7J^y
zXJFvL0Eh;VAtd{XT!7>|54?T>Q3udtGuQ#n9h{QA>1uO`s<#C2i#p?fVLuzMQHHz6
zEeL!9<#Ow~k&K^MCf*?ZhKFaE2D5g4XgWh$Ctr2zFjNzHo?meUB^OJl|6FMaT?Y8A
zJr(5~Kkc~@8%|X^H=Jc@%ZWhZ7Fx!Gy-FxB?fs0EFMx;;2AQ5wppZFaV7!76EE<Y$
z)s}M&N#Z)gG4u)k%g8{~_lq4}U6sNqMd%@c`D@5yYTJ*4asjMtJ`@Le-US*3KqtUP
zq)%e*5NVIV6C2d+fQ;CS@8hd!OmU5L$!&(t5BA5?bFywGFpl0hj=tlguL+3HNIZHw
z+E3T{;KM*bB$!*g(Qy}+Oyd3VA!>Nzjp)PuHzoa%eu|Mx_=K#~<#g>Q3$l(Y&5>Q&
zeTE1xUw`$R+n0}9v=RyVO+~17-p0L}V>Od2cyFfj?<JKFjrX7?<K1sJoA4>mE=hJ*
z4$XiQ1pB$E@Wq&|55VOY<N4+-6U~IzWlRV#8}SAl&eu_>El|EW^4AoXbP$2bWL%Wc
zRJP(`V#?(Z&Uo{{A+^xe=*)9?wo0^c!5b1{f`a2)BBncN&2o;l4NNg?uf4e~U?t(=
zdXD7AnTUyrAuq%Vay|2bIrD(X<P#Oe8vbA2JUfF@yley#CH_ZCY^)YNXw;Vy!131n
zjRZ<lwR`0_UFx8?h5%;oq0+IJbOr`mNSw~r$lc@~oyy9ah1<m>UbN=|{O^WMe+N%+
z(<ukUaz>i$9W|@7J-3Qr>spA1gSUW<GH6xt%(uqsF`K}0@P-8N+TQ*;cduMpl<WXM
zJfY#9Ou3`&rZZqZPQ|_3;~Rz3ie(bqKyjw!g7ur9eEIp;U;p}V0_CLH9fx1$+H=cb
z?3ITaC$2JDk4M^y$h|o<L+;{jiqc>THjv^F)R%y+sN-@MOTx~*NEbU~x7g4H?1`jZ
zf%b=_-F+FGN{~lHz*ooMQ?Y1sF!>Z9W31~!)+-2N=4?{zj9NjxYN<WITP4kBawf?*
zn|IX<$B%t);CD*gj@y4ycn5pDHzc1DPvk8Lo(bkTtA?f9(Is6)`DwngbMEyT)^C0y
z9>jnKNY3<Xlfrose^d8{I5}EHl`C3FN#Td~>J!{PX?IhxUE1sdqK~@)x|$K_due!J
zc279DWDxlyE^OKe)*SrtYitt8j<cwbQGRFrEUIbZ%b$L8`{s9lOA|l+0#IyB=cH^p
zkHxE9IR12gh>VdM4VgobE!Gg8BrQNr9eriJr)EuFsZs_bU`GpI&cBD46Tl4m@3cGc
z#rRk$mG^(aSJ%thgFyQ@H;(40{4waT>1W`;PaXIv@39^JHQqqnp5+>%G6;27{*Ib)
zBy{<vo-y>i`L3zCAw<@KW?%cZSn>wsK=k@N2=$k5=VRc}@K%0GS<8C6`R&2fv9mnM
zkG$vwuO`Of$$^8eaf6@k)}MXzyI+0u2~BgHPz_yvY`H}ow-be&TTw^oK<ZJ42bSnE
zuoXHUFFK2h`K%lsaGH+BHOssPT(L7wet6v{#S`j!(TSdF<fC;uBtX~3`F9Od4Kf_w
z#{E1C06nmyrQkdU<R{Nwf?<+?8gw4=3BT9UA(gr6zg5iREqjlf`SqIz0ab)rqrK+-
zC=tnP$o(ojUwO@TsWnuKbxX;0GeQ@oD>^$;n*KPC2D>%5MZ9iP+(A-1a=2<OAnW7&
zt(?~#lH4N%o^vKM=bZ%HLo9z~4(4zqf=_iWa?U89kDpg1APyL`W5AdB4!bUYvGBYM
zII}1}E3dLs$=yTG*Y(i5zrf`?SN5Yk08jOOxi+dq*%K^+wuparwT2%A*FA-TL@n+a
z4no~)i;OWXkcpaoolIFTV8Pgq4+B;^aeBaxJ?dT#1Fy2<eXI&)V*|83il>Ykch?t-
zVZ1<au3BpgQU{qeU}-y%7?L6^N8!U0+bS#{G7cvA-h-sUR$7vZjz`*Q5M|r9Y$Jdr
z#L4)F<)&Qi>@0bXmf?WUFt6beJdj__CDKfN1(L0*o|XM-AET+(ch_xDSi_LZ96o}`
zRq!fAN+a#AQZPH9JmKvu)liWc5Ta1sKnn%bsG71hWPB5C5Qbuy%*PIYR6{{?G^w#X
z^C+GpeQOpc-GS1U%37!vbiq;%PqbDDkQ-+Bxd+}fEby)#XdNTd<y&JrPgrpkr7Txa
z>2`RbWNK8U<=dex{D3=hVZ=SElA8)*MZy*B4MboFOmAva!;*|>qG?tcZW%I36HB)F
z?+%wXCa7y#qp<_X7%D*TGS;dHuqEUYjaDTwsLyE5l1+8H<gQDzYJlEola*|v)kzAi
zNz!;=tIapMOg@xAq_&3+_%0G-(a_LUJ%YN@9?}zo`iM8J)jFb@BMB<A4aqvj*hML8
z^kqgzuMU@P=d-9Xt-s_~LfL7RyR~|M`pGwc`kNi1@%x%%%nBi{0N|-ZV?Q!9f1er%
z1o}i&LU*(kkQ<Z3{~>*7AaON2oC1!q!}0^%rGxTdD+g#QQj<I%CfH(NJB%Y+fz6Oe
z8SuwM`2a9ww=hAn1coRDb_<<lACT7wtP&+*W91la-H~S!4E$95#W)Nkn<d;y)39M0
z$f{j7+fqbO_=RELZB#o00ONCygfBt!0Ys~=eA>PsMQ|<#@xy`SvNvBqY9n}A0TWdx
zJz4mfKvPtz7@I5lk;&f-1>P`-WE{}G20V|Tp^c)eqEk7+Y=GgJ!LCs}orf|q1!PA>
z$mXuLR)IR03q&oYpjbK^>@4vTYatGR1&DD5&Vxe?#i?wNqYW64Lj2DnLxW*xr75b3
z;Ecdi<X~8`>a!|sEIh&=Ia9Pz2r-u?MlY{uV@!U@aqsI;=C&{OQ0>5}4r$-Srj|&B
zA5ad%!Af7(Nl^KrD2#o@=%A;NQ-R@{U5vOH5ptm9BbkD4f<Xt|SXB&X_XGP<hL4Da
z^9+*<2Fy8-ZGZkTPE><;j4dJFlRD67aeU24DIF1R%IXfoGp{&~$wJ#s>T!blx1!6_
zqLomQ*qJpM1t`uXGD&TMwX{k|SZKW}7NQVYmi!BHl}h3<?)wEwaU5c}MLwTyr9e^|
zWO*bYSG8S-v#j~`U^R0#ZZR%c3JZn;*kLS5Ttfpfs~aZ<j6I=Ll7E;90+3Y=h=Od2
z1eZVyIBH>~selG^fATI8RZ`amptON`Gtgk?$C0k7U%o4{UYq~R$a)9i5(7z^`^U+2
zRrNX%T&kv9n66tPE@_k4HL5?O`%?|ZaIL~h46O2Y=xLm;+J9ZDXn<MAGY2%)Zy6Cy
z701sI6d4RqcS1#0>`5KA1v*>U(M<_4-^{CO)TdMt*AGRZlx)V4WalNZLom=d`#1^}
zDAlScnP@oapkfJ3l-cc~5{dSZ_O`;Fktv&%;-n5j-mWpBgz7vmD+caZP*?ggUH|6;
zn&MYK`TFbU-+%MFkA0u=PtJW^POr!5fcMGiT7VzS&4FE>a?H?DBI-?lvi>ULiN^|Q
zFC|q7r@rx&;;tudjtn@Xg8xX$-@QV;Di+OS%Iy_{7!~u+&)09h`AC@)NkRhfCf&4?
z0}Pz@!{rhbQ6#k_5E7!XGQa9Zn>X$3_XiVRoS^Jg$7e~FdPflkdtqK6d;|%k`x<Tr
zhKeBrAqAebvSB&PbcPxwDaco9+G>&w5)MRoKz#X25u!|d06u_3v~bWOjV)8NhrhCS
zcD;=gQ5gO!-d<F#sEcPj9@{JtLJO!!d`X~ku|g=gDK5ALC20`5TYfu!pEF6*v;`Ki
z7YMXndt#5r^KoW;=6t+IvT0{Pi#};AqmI@i)^C@W_e3yFC>U064l$M7f!_BpYIZF6
z7m9)xdnp0U#6Yf<ZSu`ZtU`(fr4dFThM_gFFXU=lFB&hV6$2*tH_7d^9YvZ|cVIL`
z^l%NO#9&;>I`5)|KX0%W*p!UEx%Ke3S_ZRqo!ry|?81>|FhWfO(5fO)NA#_}tjA`x
zns69?W2?f^)kY@4Cxf=y!a?}J0_PUSP^b!wt#|y0Q*3_ID;=bbJ!95N#X9w1vT(E<
zd?-wGJxDuWNYCB_Xre8TwyV+ws}da7Pnp-O*z8YSO&BL}py8RuF)A=*Wp<+IUlGY@
zFQU}cm4vcLC(1*Nh+LbcyL9QuP3boX1yOfnnaPK=b(AjzDJ4o!P6}iMw5AOiVn9Uj
z&WP~pY&NpvzKYxIc*%FaVvi+p^d}KOKj%;U(54{bo%#_qI-h8-RWDe|1p%CRWGh5)
zNU_IiCl27mS79}l)q@9l$_siGHi``_7A^7}L}cSj0%Hz%zOIl$uBgdit7{8y-@vu6
zlf5#Z65^b-l!oRPSIgOaTu?_#!s#%ssiiNr+Z|}PMAT~RX$i!lYxp$wf?63GB=Nr0
zVv4k==!MfdW&(juu})8Eo32_9&#!jGF7>Q56f~BR1j*U59tZRe9w}qc@`3IIDOE5`
z)ha<Y^G#u`iaDC7nBsKl1g}bDSCk5o1wm{(*U~9xhmng7)c=OxKE0we=uwwkZgD3`
zXnN=kQ>@YwTXp1TwITcYbdn`JKotfR4R&5MgzO}hElt^swJcmCzz{hU6Qo0u8;3Pt
zzdR)qGy+gd>xEh;L?ueJU|+&tsmz2Q8UXoDg~0EDeZD>~)N85``&xn`hYk={RdEAn
zyh$x!18;Yr9olwr8We3is;FC$7_SCD%4lK@f+)X2Ri@rH9G}8$fY=%^&YoSNq?8(b
zm=n5ND=AB#Ma#iH+T19q67Ye1YJzFPGoV!2-l;$;nN(;p;*DGSR||UQw$;>M7HC=9
zB-FS2+{w_*+LbM3bltMaHTa_1IA#Ya3Wc6Q6a{K<*kme`AyclysY{55xhd3~0IHo?
zfdG|UBMwIjpotIN(QQEe+Ay*Yrm3Z2yvn{q#D-x9y&nP2wC%s@N7`6Car$}}CYX_R
z7)t})qe1HTzyR7-V7)c0)Gju1v{Nv=_<q<l(O?=7Is6W67h7o?Ff<C$Mhb;A+fNZi
zm4GxYK)0dl;b;Jkzg(~~gSM0TYt9yusPBNbTHutm&Oh_ekf&&zKCsx;Hv&&mhy%!7
z@)c09oh|aHVBCy}id2?4#EaMhnzR5cJnEQOVry!I`Ge;&Z=Fpr5RiY<2j0=0uy_cL
zsk$CBwrMu}yt_}G**-}10>RV|1Ox;n-gVGCt&hCN1iclaPWK504n&);rXFb(NBhe1
zR&#W*n17oSx3gAjRI(G~VArupbI`pL^a=*wzM8tWg+t&(Rs?;)v*f$?ahb|Ern|1i
z>ngOxz&;-E#E!j8ia`%5rG!`T3T$v|u~DLopcXYg<Csbe2w-)TTZqB%6w;jzRU?^p
z%R|zIa<qrakeRWFEK$?RZm~R>VAj3A&1RJ`;8j!?1Cgo&LBVjsEO3cd)eWY}zWD@A
zG&f3Ay(J1$Urq^w6S8!obZz>A%f%-+T34kbcQqgIUyDGjw%}8tN=GnbUl$3|nPd=w
z3@@d7EAO(30gpHbyBIY@cu6&MYs@&NSDIvSaD|2ZlKMGxM&gJV@MotMBoT_AssIX$
zb;dCj=54J*!G^Yk)B3JMr$9}Z5P~n<-5q|1$xZ7p_3d2~hupjtdl^TezehH#3W-=r
z5%_N9HCP=cV<81%u;BQdPeUwDRPM9j_})QNu7&hVsZ&l}G&P}fm2J5cJ1?`kU|-WB
zx9wxpmMgGCw3y{tk<MJOywVDl0>w1RREy}ejxb(Ic`4$gkL*I5cK$I~zSdGgD>fEF
z&tr$vSajx6!WSnyJBLvPW)KEj|6+}8e_YXEUxqGPbf6SH!)!Pcta0zO44;x8`y*su
z$&taL)kkS_qpjny3nC1(D5$LI15z@AutB|EUVk^+jWrc(6!ZcG#yL(KiL%3c&GBi%
z8o6$2kUs0kyPKd>)z;5~M3areR0`es_Vgu&;9eKx_UN&}3{C8i85-iN$7Qf6N@ya~
zsp!m#hMpaC-o(u>EFOw#=jWoxz?EyVyVpCKk<pCInvnsTp57$h+Pi0|t|2tke(St&
zbzw`V7gGp;7tOF%<Z6Y>tQ7<|sa+~Nx3W`(a%;u<SE}CjPg;>%EAqS7rRjG1#!!i>
zXii-%?PmqpbzR~!=+!CPKTXz`M*XocDkYQJH73QD=@F6;?0z<>Q|>^(cg25OBEIo>
z5~OX2h_#aVFW(XWW$7Z%?8pnZWQl^3@Wikz$3Cfuh@eSEoF6{#Y+0xQQaW#k@XXA8
zo!2KXY@ZjogPCWmPmuQ7oHYpV<1tK)6a;Rt-iOO73B7oe7->y4%GSTTU}146qQZMP
zvvQo!?v3ARusqm4FH(In>XWNJs*Z`~X`G`NKE`^P1(Znr;MNI7`9*)xU+<vJMhnp_
z`mF*%1zoxFINuB+-V(hfAY8)0fQDU8x(^Efduq>|SP3sKTd+l)c9_~p%duhLltG)q
zd1&Can5)9138!q&tG*Vqup-v5S+6wGUANM%p0t=O;;khP5B662LsIzs^jeJLLh4+&
z^(aw#W3Wtp-k7L7SlFHvB-10T-~!;;b@~P(C1R9o$PMTZiGz7sGuf~j_`u*Pj|Lnc
zs|xKgisOj>(<4~|Raw>rKoIlZ3Q3O)@q1a&%W8xTt3E|?3WU2gw=yB13$z8+6+x6#
z$}CuZD~(9MYM#Z2!@Il?SQjl~TQZu8LKpD>xmJW1F2u!&<HDs4{u36gNs(FstcqeI
zG5jESZyOdhfE#G29dTO6XBDSMo!$_X)qK55j)tu!IG9fwLR4z-tIoVLh?5H<EKaWs
zjtz)Dld)Rla@M1TDnBJx$Ax%Y=M6?95@=qmDNgGKFeD81?es#zsE7im0XMzD@}kQ@
zJOI?le1ZK|au6Sn<}W0(H}f;cM}0gxj6cAXVWi8g<f3drnyh385FE53w?dT}XnI{P
zsIz<pVEW`Di%=@|xtd702(Ne-Rkw+U>`DzAdU^brfZucS5jU_UhpV^&$2LY&hQK>s
zS4?WvGDv8J`2vsdkoQcm7Jx52-atTyqSftSL{;0#MGo5qd|A-Y_!MEc(1caLHkxkH
zuaUb97^21hu*CNyg<8hIg4kQmrb@s8*!GB#s+ZtSIFhSYJCBpH(pPYiwi_xBpD}BA
z?+UFzD_M|w!~2J2NdDk}#`1QJ4DKoBwGvsSZ~!u7Rdtc_XJx{n7d>G1VLJgFVOoq`
z$Qso>pp&aCPZHR4vF(B3Hu!=Nu<;NO&q@nf>3iorZg&>m9%E`e_BW|PW*5hNx^JF7
zIlsQ@Bvw4=4qq<kzrO4a4sW{Yvg>u>;{4#r;&9o|fBGfsZf*`XnGaunda!ps9d$Y9
zhc|~e2Zu*nxAv|Vvuv@PUv$g8r>p5a>n1O6j)w8@RBzb39z~kx7gw{hy(g39uRqUz
zI?pUH#Qy$4H?id5(L>qJe(J6-XIINH<1ktO*sAZ1-queJy5p<q>f(DTpkBRtd2@I?
z)@c6z_haUx7n9Xb7iU>9nN0fk_V(WCk5-fJXgV2=E++@8V+vKiCr_rEA0G}gd#f(?
zv+3FX{@%L1dy{qLrpME>vkzBe#!oI5%h_nVyuUv^?&h=Ua+XRs`t8N>g#@~vpC9af
z`sK$T?j62*wRP#M`Ni3o?d`p>`QLu~?MI(~_SLuVfBoT?pMUz{_;b9vnB4X=!!@5R
zujf}!irYR&SKQ4wD)jzrvQj5Jojt$&=GChMohD<S94T?USpGW97F^!^y1hGU$bRJJ
z=Ev5P{lz8sHa{lMzp*ziC%X7_UDfQ<gYM|X;Y-~bCI|lA>HK^8b#Xk*uD)OP`};N~
zPbQPit>^xm_qKn$qhVZ(v2jjRjiY|Dd1Tn%AI3ra{JS4!-SYUy*{_R(7l+65+1YhB
zyQSFfXs{aelNZm2Z=R-ZdeR?XbU$6a*FCqyXVc5sHxo<0(>))?^ig+nG`{@lX2@^p
zacP~Rf&XH3_kZ=Oe{Y#O@p<>n?O3f2Uyequ2R0Yn)9zjmJni0k%c?h>TwM>tldX>E
z=!ngacbH4tt({W0U2;r0zMm~W|K;k7`A<L3=F4Bd{Pps?pN0kVXE+|)IFil5ALLZw
z$LANrsD0RU<t>pt{EiQ1i*A1L^KxwP^r$;Lo?VS~pHIIVW;ch2heyNl*cBg6yZ%mr
z(8f`J^y29-S&fr)`n;cX-yHSX#Z@-Em)>LR!TLQ1%0E6hT+iNladi8Zcb*hSW6RDj
zzQ5l5{$+l#OzE4$cZTQvH<K6Rx|N!-x;Yp-b!+4_UyfFX@9d24K{s9;+1}}5?B+?g
zzt1ALH_|o>&-vu#-k1}YqVLA%_U=hHOx~vtTr9LP=c|d46LCyddC(?Cn*@a5-v0XB
z7pI|l(7It`J^|lliO{Tqi;q}O_~Jq9iIuiW{xvJL%47Ju4+#-O){bFp!KqbDwHAns
z`Bs${|IyF`YMo<Pkj_clUzRRpB*|xgvOz}d;hP@6x=u_D%qhkUkpwEA700f?zr_Nj
z$~!~CK~G9DaM&iS*7AUkU4wzE4&m6jIG!-mFL)HoR!ganmAwT2o$-L;fI5(3AH61?
zZaP2PLx!?VJQz+?zWF;wGodM7&uHcnW&H^``d~%>XUFE#G8U4t^|D+D)YLSMW2viL
zQ;i_TrFP5ucQWSh@}vOHxSTaBrlc<Nr2Z)yRSf@<Qbz)vUVT6Rbw?>&Rq>83{@M`#
z)(Zb26Z|dv`zo_LMsopA;UdXCkyX`7=>M0ltnv9J|5*5VEmMX}iFIxg>4Lh#h0tNV
zuAxUm1T~<bLR*U(6X}SUe++n#=r;>~)%aM7_&U$NPw%KJJGTgsiQLJn(P<)_CYUh=
z+Z%9<E0c>Q<sldr9isAM$4a$GNjjwfN1gSBnQ=y5fru8>oH^xL1Y}d9VCp;MjpPs=
z=1~?uF7ia+c1A|jWJI#u1gq15=e^|0U~XZCN}Olf5-gF{d#oe_;%xg{ls<P*4U#fx
zL|S4sNphd+OYPD0QyFTl3TLUpwY7|TYL0Je#jv1aCYNKlO3r^&nbIo5$H-fVSC{Pm
z)DGI3tF5Uslf^8>u6wkx)p<T{gYxOH%)5(uH_Y;Jn{p4=sjQkiPQy$d&VOw>w58?T
znGV(Mbf|8pL%^aTlK*x(RNK>`x;q_mb%u*8=VG778W3xYTg@i}Qk8r0(6%FOcPX$M
zCZ3iUGmrQ3@m_5LQ$%QbM9-2?!Kdz#@BesNSFxwf?ABQN!~HwV&X@Q57ar=?{kqO}
z`gHMVpWYn{DL5N>^<{MMz0Ufw0_NqmhySd*Wkuk{-~<&)(;-%C;>q~bDk7#s5#yPN
zbeN{vkkhMJIHvz(0?MJ@>2f`UwaEJEvEbghxM9RH-u!sa&M&_2ALv?;F%ks8+Fw1}
z>b@^ugOs&^S^p*iUX$*+j~^u0$47t>tJUON-f}}g(3TVKw0an#HhOlcvzlF!-jFqG
z$B^4idRM)yhwf0eN<MMh)Vn6^$NKpC=ldND3kUfWp>t?P{~ERKb~hh+tqy5%$aXt(
z@tX7uf`FKurq3U4<*BcB*9@q5Gw&0TLcFPSNw8*E|I)p-W^BfVgbLQ8bbsQ|yWh=*
zVP`W{oR_wlY9&W2WujqGV@nMhfvF5`3OSvn<!bK57uH0o4}h<hEcd7y2#)LGDW3~h
zBW4RKP=5xJ=@*vbTT_z8l3CK@@XX2PE=78chE{{6ilu$gF#XjrLKTn%lSnz#F0<O@
zGH?m%nP}0Lqmsx7YlEeVbPn$|0}R|)8yU8{Hp%Ic>qqX&cUiuMz(bl2-yEuxRH>2?
z*MP*vrt>Zdapj8wQhBY0DlKd>8DM&h;xTNM1e|jv7F@`%B5i}#7bE0#UMS7g%&v;l
zwgS@g<KrOy0rrAWS7PZ9?X8);^@K_)NPUozBYP0FH6oPt63nM`3@0us_#V~(_!!#V
zU>U{)Q&v=!FNW!&-;JW^&Mnfi>^fS|84LeO8F99Jh8+Nri*Ps1wUC4T6lF1D4tCF!
z!NX3rIcg9!C!#KChDu=v)g0GF%$6$T-))5D_9`IPVQ@uGah<Zr2uvBwPOc{41bO8_
zUakiaH$YvtK!jl(4ceK%81cXYvq7pESUiuVYb~OL4rOtu5a9r#5s~n35~Y_pR~$qb
zL9z-}Q$tw#Lc#xyUW)7<ePj>N2N6!F5kQg-%s)bmRKldJq)o((kvI?FWPxQGz?maj
zBx&sbt2eg>bcp}?0z0rZD~1**M`xBFeh@5^1o~Pte69Tl5nDZW-B}wm>mgV`7yp>l
zeHH(d)Fq9&oX&sTF+eLk?hd7lqLN4<m<Eqj5+w;Mx%D=qTgK;B80B(u-jy48;qBtD
zlnW@ENU^6?m}&wfBk(--zK)&ddQihM0WO#0S>Cqs)QX_y*B8T?T)cK1HKu1~@~lB<
z9^(i?@c>8kFnjjcS5HP=h3<!k#ayq&=5Ah{YQvu}2Gou=zR`E+6~!BUL#{X&;U6jN
z;d+kzUwqR;;TjbiR%JXXR(Tm8A}eVhPkk`Jz0&x3FPpRR*q3G9=`ySx_cHFSLKx>*
z`5=$}Y2AX(Ri3!k!^8e%VutbeGWTjfX*6GlTtyiMUN;@J3un{$?&K-Uwf|iVy`+H7
zzfRXxUf<W(erO}Kj0mN~e6sfc4Oc(s{3Bw^JR-NmSC7pTArZ%8Jaw^9i7VfV4IA(3
zj+Ua#@W9r+B_@7XbYIkTnZs!7Q5N|hScep{sQIVJ`LSuF2<>n51^M`fHooy!yxB&$
z*1zF5$R#PhzO5Vd|FE$ebNR26U?p>b*M1~4j~dj;m57-(*8O&(WlS{v>&vlJTODJX
zemj$|>u244%~>5DS+P8#yt>>O8SdEFaC>Lv`nwNrc%-z1DY?6bxr{9LS235CG4Ae;
zqqFPxSF&xsX?GdBy~84QiARd|4&d8=;)FgCWV#~&8<Q;&MJ1+Sx&^5HWo;V@Csw-|
zWO-b)PN#@KitId^lRG`C%=REq*0pOfoGW8TUVARHy!K#5ZXu+}#oZNw9VYhWP8eW@
zXVJJnDZo)pdsoJro6hoX+E>Q)b9$RSc9+a9FRrc^_sPr~R~aM-d3c5Q;i0+Wiw7r*
z4-ZKKofn>j*aa8=pZveGcP6`$6hRn%m3o0fxkPS9<O>ILLYlj2Kt?o+FtP+sPyJtH
zx80k8VMl1jRoPXUS-C`RvHbD6SH9a{>y&snq@;19Ngvl%pIg29CfW6lY*nd#ODDIg
zR9Cy-uC-RHTat?xEG<gb|DX9!I{$|+zyAD6?`L{HVhq<z-~~}UMaKd-a>)s_CESZW
zgo5_oEi!ev5qHZ;fm=LxrCd)gH=~lz4bCT};Bv_3R!r)3ok0!y!;rd!=QnfdGiE0y
zKsVC_B&Pp~3*y>Te5PFj^12Hwk`jE%hxZuzV;lm;br!daL}Ol#VzG6|$Y;Cc6PijM
zK<U8atR6=^riQR4A4EMy;4e0G@CNLfyyn4Yt@`)+ptSIGsn6NM`!z5Ey9-DSM^SER
z5$0)prh$)QuuL1jh{0$#T`omoX$ds({w0c<wjuKOHdcT({!cb9QoBn6_C1R{3P{ra
zj#fSj!Q7kEQP@J;iGD8xVF_~AwD}T6q$~3c@16q<um9EdMPhf>xW4z0K?AyK%oDF9
zV4#Y;NWhLG|Md)?2+YahW&RM|HgDEL_t^5Eni?J-zW-tKfc5>k95nPms}5}BOL~+P
zV^`5tLS;ok0=m2d7K4?<_~Xs-^0<<kG=V3}Arg5!CvXvhp7O_=!$mE?Iscc+VBz<a
zA&&lL8AkoZ5~N_is|4BJDglTJDEv(#0y7Z@>WBXy#d@a)e)erq!2p?xOA1VbYv8=7
z;5=HjopNGsSxHS^D572Y2vEztX~^`q+v8aXZub7|(cU5o$QMS$6y{%0@QIcWV!#*Y
z0EAyb(B8tJeF32bs-m_N&7UdS&*??DZzU?oUs&er_2tD;yW)_NCo=*;QXXHwyf~!(
zT6CU*IjmA``+1~a{g{2i3}8vFML%+NMgR<i`y|K~tBZI9b!>SQc`r<Ybxf`Onmoqd
zKR6cu{3+*x$cv}si_7FfjDVH!kbC5M!V>Vv3n@J|JcQU1SmuBp1%vNkl&=%lC?7CI
z2Oh}_Y1{(0vxf_CI~zwuT^kIV_v9D#a9i&7GJKVTKA^!QLomYwLQ8fZ)i&0Ev$p<A
z457&n@@8GVS>NObjrZmUIf*PzBH*{@l2)iO{!#{SvV$rWn#t@HxzLk7y3aiX#rO|a
z;Zv#iUw-%Lx0{amnK(D6J~<_DNg);qg-;c;pH4Nif4fvB_5K^BG9PP+wQyA~_O#CM
zQG~{WmEfstO|n>-L0*V&u8VsVkEc9A=4=9zzs8`CwO^GfW~DjoZVr1M?}Kl5U!AWC
zvHgPy=j$3l^8sO`OQ{z~dC-JlL!jn6xNoCzYrm_kuAHtN-!)>JoXm(qfWtH}27v`~
z#3&}-exHE{%7#kt0C|WAq8dd|%-O)-oR7?8Nc~Nu`Vo5FbDq>L_Anu$v%ntt*4v!I
z&AB&)8*}fo^FeOBy{!=;;{oA~*cDEG2`^6$^qG>~DqNBjIh`~8<x`}7L|!MkUnpGU
z&|f{#ZvN!SQ4YGb{L|;3t-FWsWSq6>UYzfKQt&12?fE11e!~_e*7uO==KLFmd9d>_
z`<z-mpEl$^4_x6cC|fXZM9_|ew$7t($r=GbK?z|1-6jvNwP9p38kj1;hDD7!wiS*r
zob<O{%YtRVQk;LO-@$!a4-5kE)&<;~ve98f`bGmM3JgdFP2`krLhHo?z%nM3M0HO}
z6glG4Xb9X(X5#K@Uee5<z3?wpbNo@&ytfpVBoLv$u$G!PzWrL3lIK%%D~G8$C;Y%D
zz${j<A4nW*ZDP%hWvCPdC2he~++|sd2+2e6>H}1<La4X|p>ceV99>kJ`iZ*^mth09
zU5#^Sgf%InsBBhK<}8oqSX`jLnXdyV_!@w*`YjypNFW6*7Y$2`#Ve&HBUdIpcoPNi
zIU&UXrh0Jr)K(SI`wu8&Oe7pf9w;@Cj^Rt-e4dnm7f@;%2h8w&1RxOX#R(PI?<zhA
z0lG$00?ugn#syhr85zS1ElFMXr|qu8WY+_kMXriLU_M|@n!So@#`$d2n2k_2|ESuX
zwl>UYGf<7G$o1n+?a&@aeeRlWn|oC`?gtnl0m~P4In-wN84!m07|pI)z`d(>ZO5g3
zOI>_B)qy)qehS{MAEn;+97}~}cdsg2>d$LcRiwz+VKdQbq~RMp_eY-7W9}TZIcH<B
z#2Z!or1?Jk_J^nQ_Oq!<XQnQ|b+Y4^Oh|leX-+I_mJ`bwg1Yk`+13*NDcSr#;{T;1
zep2kynH6m46&sbD@b#8<3F(T)FW$BNKJ?unE4aqC(khEt1=Oht<+_T;-4c~{+MzU=
z;>JlR;$P?v_6Mg;Ej{|eGCFxFWx!9Xd;KU1HHF4n9Tng4^HmJPW2IYEsxw5=YJKk0
zhIc517EQ<$rym`FR{8`_o?5>}dA8Lf1?6tRfuz)?0IOH-yX5f2th3<b4!CIj&T!>x
zWq_A5Ce@abA=|<F>yB&Lya9EIX(;91>IV3_Q^<<@Lq|AG<_Nj2JTCUb(26~hfQC~7
zle0j85up1-epPuv=NuHAan7Mb<?D*x_i;i-#(U{)W1v()u`(Pabha8z0lI6g`qd!4
zm>@1J5h`B5pf=1C6obHgumkW5%V8Wdn$ASh>sQkmym`bUxum_S3lgaN-d<F?9nM@>
zO?-?kXo*vax`I0m3_msYqr!e#L`Gc(D*jc)STca}bDL&^TY;S!+%gH_19-t(L*3;p
zcg-l0%IZlzy9m)9Sc$?ZZSHON&e~vbV-O?=Gf0gPt0gNK$fJe9K3L`E(ERS<>FLZ4
zIGXE{n>!<yZoAgA%=Eggt@%NE@+u>@112QC`?=x+cQpJ@WWyATfm3nOVp!CIBbK=A
zJ)S4Jmbd4+dfvoZXV%IY<IlP(=armSWvUCB%ncMG+u9&um1=F#l@6(6hONK@_xC4P
zj}>N&S8o>H%<xR_?@z8Xy~p_JPjPhiiouZjD`V?)YHgjam|Le4d+T(;p8EE?AJ5fi
zcWl2+3y#I57TxwT%jiAL+lQPEkHD?62<kfKxBAB)^HZ|7j`=;@I_8g|qCUJTDzHyw
ztX{RPuWJ3Zr~PJco%Tn)a@dclbK39emrnaJ)Mo~=Fy~5vlV-xF^#6~&Kc{e!e_h?m
z&)%s7ayq&bPF_@(Y#q|{L|}%Nb%ZNzzx5N#4Y!xv{H@2-x&A;Gh_KK3tzV2kTbKf+
z{~Do4ydo4?-dhkOWo|i=6&k&?7EOR}HJY#jB3=Yb20DFI7;~YP!_N*}S%3v@ovn?f
za{Q@1VyQsk3h!)k&I^`I7UH6NtLgZ=6e<_+bCL0xB9LLh;bpLd+jtOeK`o2lj@>vi
zSoAriy_Wr03RvwiW72P0=|)*e#L1&4@EM1&3P-{t(I{GXS_Q)+nu`TG?8nd#zeGVn
zHO99@<+PUP55da@kf2rVK5+Tc`_d&~N=xfV4g42#XKC&vzFS@)qM<pbrK+uBN?KAA
z$aSS*yEp1;#EQaG#fe-OTcKC5He;i4tSx?<BPOclS^MKWW^JHTU;c0vz9kG!Sp_Uh
z1VbOhUk~BJ?)p(nHVnwR1RlaBBXkSOg*Tg9cU(_}M;RUV3)Yx<anJ!c;iSn%zBU)q
zf22Gv*>9;-FPD%vFBohv{&T)*bJfysF{5bLSkJDff79qb*WdDmm~Yw8fA-~1KV3kd
z)b>w?J~^O_G!&)!s*cn>O_4&^u6zIpJ<?v$*0<uWJfF`z&{fv^h)69@&SvMbyA}J8
zGk4E@(Hp+MP>5q_cPsM3^ZAT`XTCpve>q-u%I%;d<^dg#waw$~nZ%&HRkfV{;Z?gD
zce&Anhf0w8*x7AH<=kl=HTj-1X?!}T>r`m?bizhE<$|5^zL*y`w$lwoia62{5~2Pr
z8V_N$KWWzyYsU>x>}tOb1G2}aP!CW3V+$Ssug6F0@rOeES37EPIbT+68phyHNKmzV
zhr1~&>>fd{62N!rJFE6bsRSo^klq2l<I>#DWZL-H-Whc}zOH2MmIn8_x=W2$ieKB`
zyIdp*3F7B-#*Q<hcDtp5#S!J;jhV^<5|rUyQ7LoMMgydHpu+IY%w-<~5$`Q0hMkV*
zimS^~#v#<TUWNV9nK+S_mrD(cR!>)xssSzQEz^*ur-0=CIaJC$&Od9J7yY_FCfRn^
zrhz$B1AU0gPF3a)e?$aKe4BgW1a{n8#D$AMdskg{?p)J6iKiG)$T!cQ?>BVBbLq$D
z;Y46}%ZMrUe(N-1vA&NH6BguRK!vhHB`e`<G!=IgTXAMoix?R~18%ruvw<YoB4-!F
zRbmQJr{T~XuRDTB(E{EB#0AT(tVJ-nc(k!HX0+9#-6`ML-GxcTf40fvHpWEGHY!P_
zRBax?AymCXc$Wa`?GQyYFFgBc3j>d|f+h|I-$Bkgtpev;8m!?^7Il9%rHH-4R17u2
zA}sF9Me%aPg+g#Y|6_Q(k^#>$P>oCKVh6UK^_`G$T*h8M5NFlbOMd5SK+L-ba#**&
z3#6*_X@w|;8eY-@JL>lg_q?5%<yy*XA8hioob!oLg)tzGlb2j*1_G>B+vYZ1E`=TB
z9SU<FCRw?uva70=b5V=*;t<L;<1D8*9JQ!mYpwakSa6J1Y<wtJ-@%r73-h1m2kS+X
z+j~&2QkO7JkMwOL9mCi8$UiY|telC;FAn%<Xl84>0N%5BN>%e-0`4YN^p^@C{tbyw
zG%D6cUc10q%pFQp!`opR`A&9xO^D_lM}K-dC?=wUF8>e}UpF+R`0!iu0p>fSC3klp
z-`u&N29(&FA&bjxBhL?3MqQ5ep$P7T3)Q0FhJM&aR|Sr);B?{|h5e1jTr#DIMG{_9
z{RGN^JK~9a(c$xsRzSz=S?YkP*<uX`9AIk?4r?`UBvqYMYEoR$6f|T3s?r_0vI2u&
zUd$VwvGb9xz&oip$7*BkT9t7)C@gZO1pj1P`J{N<iTSs0Pt@N^*;DcwtX_jXZYi~O
z(lFe~1xH^s8{rGC7A5V5EkkQVNmB)hBf8J=zzkk$RjosI|NV7g!iscrGzlRzPND!^
zK%&2QbZ9ztsnWXB)ggITC#zZpdiS1QXHQ3Ujfth1VIvH$acTaw%=}n!7Mqf4?5xQe
zqE2;Iz4SQVPi@wCp~jW9<;QckE}^=&)Q;2OhZqB_Uv55<@Ihn?W8Jt+!fJY)IM9^C
z7$STgb4|#v>_euaxXfEv^f$k}Ay;+#puo?tyP_$2ED_HGi>WmEmCG2xeRkefo7nM&
zlTS5zS-2jj7D4@tyVBgVe$}vwRsDYAz9r=#fS4AQB}EYrq}|ALCDWg1HpqEsHU+_S
z;2A(TkqvBqvpd-f=%a1X>kLE=A4Z%(ilvmrQ!Gkh4R}Z^NXTks?97j`Dr_Bj9rY-*
z;HXC$obiBn^dX{TFZ(6X(aGDoSUiFo*?4&M?i|(VGA&;f19eov`bcPJZ6CAoD~QJL
zEDd+$71b(P-m0Jg4IQUJ6n2++o9&(5hlVw=GlXB2w8d|dw)0CXbiGRwZx-dGHce$r
zL?u1Zeal;;J<sxztLjt1GeUUuGkfRJ8%+^};lDEC-d5*uM3#^bz9IPzgJBU%5QYWu
z>zVhd-d%fb6HP{+znR(zJsqm6t1HftTwWTN4`N5$XQzqWIU~5+Yh}y?`2Qd!G3y-X
zm&(jk8p84_I$f9IA7g!vhV@ila>ryk;>PT0NE<7wLJ#{4VkfORE7?{ZD$y?WN;Bp&
zMnNRm?fn8}`%{#qp}8$~I;WWR#i^sm-qBijYHg*pbF^?_Cy!HDUZ0WZ9ZoZHG|NlN
zQ0cr{YZqGUw!3Aq20Lr8qs2}w?$@adX+Wf0k0{W{Ztp2;PMIwL`u%0@K8xj-Dy9Ql
z+i#<osC+F+WLYAtKDzrzBJtPbbpKi-Tdlw=GpLzD(GtqLls807=!s)jRH!?JzS}ps
zf9YTxtx5Jn^@rfaE}bISoHYZ%V=;4NBGq{8Zl3kPdZhkQUYY$xS9kxK8-0IK{#N^o
zB0fFQE=oJU$+v&GO>gWk1oW73SCs7NH|&zP!L?C653L+}lvM8;RM4QehGtlJLPGb6
zJAEZL5Z6$)1CdgYhIiK$v7+xZh_~VgG_D%!%5a8OZz6kbWV25VsP9y3&`cQhXgt4O
zcb^{apN;8SXIL%Mksp!_eh(Pr)a*vxZ6FslD3BNXb*Eru{C@m|7C~5*@VA&9^xcy=
zp=omJ$r*@V`}2cLs-ikC`u>wMMI!EuN?JCgQVB?OLB`+)Cn*4Lq;PPj-oc=tiEe0T
zDqEI9ICSi%SrupCw}gD9G&cUy#arfK;zJ8V$fcK8WO<lLP0JsHVtWV~`<R8_^GpIj
zgJN@fLg)Egktv+~)xvosAK}fnAAS1ebF676T9|`cg?6_m=}I|WXm=U*(0?lET&S<=
zZu=`n*o^+qsb^E-(`OpV8@G=xzd|Q3wWyc066XZj8~K=LB>52tkQ(8veJ%)CCG^+v
zHn7dnmAZ4WKMp(dI4aG-DbVq}$@NEJC;DFNy=9&nxyc{8Ivo~1MUY_6kJEP#ViAU%
zgE9&HoYFg|bzFH8c*W6{4X)VoB(^SWo6-P>GpAM}E>#JcOO&sdgd~M0dq8D2x=thO
z7$M(RSzG`D3opS1!AC7&YwFb%njqShLU9z>W`Sq?TfhA11)?>~fRP~K+cE5kPf85(
z&gOGDL95J|ko3uj(!2%pe4c$jDZW<hW%TISj*W+$o-1f!rY5Y3Kju76UW)tk6J!_0
zB)VfyS~*4@#Uu!qM7?wVuGD9VcQhEm*>u(pC(4L$8?k>7CH)yLL*;l(w?j5(|A5U`
zS!Q1KvD8~Ueq`mg>aIDf&(zOVC5}A?Sd#79y{vnBmb<RrM&&=FF)H3Zlbjx^d}Qle
zQNSkO_p51XjwWTe6SR^+0g){xyyhpG?Rk<vA4g9p!E!FNAgz4{B^)RrT+#zNgEJ1C
zapxzTp;Th@^}$(&JAXyDC+1;BX9PW;C&~Ty>;3-uEJ^<XhV}CpqKnz@G}-$puZ7J!
zhci_ba&_@nVW!pBEz;IA41t6R>i%j<vcydrqsXWXatTz!(kehPomMwszz|sKj>b!y
ztF*N4<{3nnmI-^#Wj?h7$*8PF2r=|67?I*~0TMecJ+m(OT93uJ0x<$QoLYgss5xLo
zwV3rtz)h@vrJmax?BYGN$KvKhzcN42H6&NOMp5l-IK(<jCm*(xrx(vS_vz;!eDVTi
zF8>9bOVeFF-(k%!i7SWoNu(eELKKBo&45(anjBtx5~X20$b|qsqkpvjc%+Yec+xFT
z`{Kft>NH?qef073;R^qS;flp$(VSq|qu}UrbEdY&NVbq(5qe?j><EiBXK|WoOU#Hq
z`?-rP)#YhIYDUme3`CCXGzX+eZ@KN9$g;as41bX&p$Cx|+>yV$VO-7ZOfI*DLQ7b(
z&NQ!RX{v~W=?aJ6RJ63hSr2xzWv-o~R9&{2q;;1<60L#Gu}t#=RR36hqiG^G25Eq0
zY)~*arc>1`10ObVNz%I-z0hxIx!V!?;qy-R^0D>N+8}R|%rK%@tDDL*8_|{L23NLQ
z0CLcy+oTm($1%iG=q^!><_gr5{+JDf-z3RAxo0g0J3b+_UR1vjFl%4}LK6A%;L1|5
z;&&KGfrD2Tt{tI5YM5p`o<CoHcmMTQUw-<<bHT`({|nQoDWbz&d^tq268;{ga1}19
z*|}D;P|=7~Y(_NOhA>djUG^`BOic0R=-lZ2`-WP(m@xIB-Uyn74gqf~Ju{RS%oh4G
zy%eVAy}BU*t8xEr=QJA+<<X}1uqEYuVbk0H-}G+8R4hktIMODcjE(Txr{=p@C25nP
zOs-PI711I4y9wT}^A<)s3-<-Y)7QCcH@2(xx6{3ON57rjrqBa3xaEC`s?(xVlS5#Y
zt`Z4v66Xhu**jn>SEJWE%}XD`O7Eo*VEz11U#GC0^m1}RzaH`0-+hU#=LKrS{{jJs
zc%a}jSWqs&V`fLFMq(A{_c&RWjiTunFl{Jox3~YgBroI!^}p(>_Epj{%I;gm1aYD)
z%LphaU%(EDr#@czI4g5Mem>aJL5^m*RYm>oe7s>Yv;EgaRi&_S(`V5-%shuw${4Q-
z^+KK2fMnFh1TWd=vEb>`XSwQvXT8KbI#sr?qHoo9aLcjIJ2`!=G{}~Ic98)R6|f_e
z1}Cq9tpOg_B9IAO-A^m0wA!9fABTfSIH>pLchlqVR=%sn^tJCUQEPG!>^A8C4G<4N
zOH?I9D&2gz^%l_1iAO<wvj5<dON*pvYh+TU>%4Sn^_3qZF6IvC3%;CHdcGtuiM#~q
zhp-cu=tN|8L(Ujj{A=GRAZgM$dj3gbW$A!oyB-N!A9+Hyq7?|O>QxzeDTu-pk{G>S
zj&5q1g}BLxuEn@&6#+wO3}%g*7ue#*yF99S_$FM2t0d_5w+nUU`Z*3(ItIe(%95V0
zg&@5u+g1@_5_cM9Q_(XvOFdS>>#>s-Itk<P*+~MozR7JchTF9kwZE-FatPVabdv1%
za9zAC_a%K)O~O)yLM2K9XmFA_Nx9pqGE$RGc*dei=07#F`K;a5dNq8;z%jJz?4_7X
zOND4I31xVYVdHs>v82)O713XZYs-PiP@V0kxwh3HuxMc|)7{Pcc!3ak>wqeRkX>LK
z62W<iMjL$<vs5N4pUKWXv)E_wCAQB9Jbq@GpSkE#jRTmV&mbYhUdBEn0eQ^caQxec
z-Tg<G7UFIEoh`(NTrwg?s_|^1`p7`_nR%+t6V#bMY+d6ks<DSBR-;d&4?fYZk<qN3
z)L2i0|2#Zeh4^z^xC|FWj3697C4;9~PpkUyw2jMaZKPFtCjV`k6)F}EH=$<=i>Jc+
zxv+j-sWl?@*ethOxevgng2CM{_aEJV{VZa}htp=%c!n1DuAoEbxXR>>wK7ZW)gUzq
z@a+vuTm1<G)7a#`g59RPqe9$M!Nsa6F)_7VRJDa#E>_Em`yH&D^#Ep)&m4E!dUo82
zQL=4+aIa<KrkiSZzbP(`_iLy;mxATh(+1SKcHgu~fu?!K?SzG^(-T1Oa4$u}kqJ%M
zPut&EUvmEm#XO(;)FC3|&cV{L#oH_opddAb*%HN@t(i>{5}`(keRiS(bbNRJ@a5<C
zZvW*cU%HRK-6Mw{V<Of&?`_X4@7goGlkY2NrqNpbO_2pxELXNSnt(1I;NGu=8)9C#
zQ$pmPfF1W&+5XNq9M1sha7WR4h3i&~U*?CEJHhlsSse6|rzv`698l0>UA_T9%c%J*
zJ0d&)WplHrU2sPBl8iw+lt8>=BqT~!CMX)@4=xtJI<}t$Ew0XKlK6npI`)l=4hBWl
zTM&1FIG6@XyW`HVxs!nS5W|{Ok`_T6>5-}s7Gb9Utrn(>`Uh2w$O%Aaws29G2vC0<
zLiM0Tipa^capX;*HN#DhWldwoA5g(W80K_SM^MUbU#`e9tqL`q_oWX5!r);WPVcZ6
zca)?9&@SM{wt>}(FO+)~biyHQVr~{vBkbnPjtl&-v#trhIJ<ez&a7#pN+Ht&VuwyZ
zBx}+<_ejrl%CbA0B@%ABSgZ;S)JS2<xqvtvTnOZPLTZPgP#pajmd!aILQ)Cl_UJZ*
zN`ksU{*HW-E|V87Xu4LQ4XgB)7$jFvLQ=j)%Ru#HB4k@xiC{r>h+tq)1Css5K$S3H
z5t89|!fV2yS`?X9eBn*Vz2huY)z+%b6plljc5;%m?fL3e)1;bq2}c8v>b!N+j_H>Q
zgOor%3gNUvM0&s&Toe@5A;bVJi3kDEkp{5;sk6R7GS(Q9CnYk47KbEw6d)Huo;%4#
zdE4jNfPyVYutvjaowOBU>#($A$dtYIf$D{E6TPq7&qY7hAPx%#jYngfFFCzryVo#x
zX5Gf0FNvG+oo$^qfQ8^&ndV4*3b@1Yc@wpkp`EfUNoMK;MLbD}xY?sb*ChFM3dg%w
z*C&T90N?^>4<q)}!@Sh#6&C;KPDP@)(4(4^rD_=28&*j>qMDuKJ`>#!1xN7cQ#GPP
z+r_M|Akr64Ej$Hc(!jjhHdH;##E3$Y>M=_~XWI~y7ebw*!Apqc5ncxd*WhNX5_U2m
z!2|>Lp<2X1F8$`JR$YUc2!1h(@S^i^_A?0rGI#m`9Mf7nz(F(z18HLjbZ`>U%A#n&
z<e!m-iuM9Y{U@z@6KZT&vJPsl3WdaEgFtuINIkYum{1Wkpyo7`hg6x;LWv|{6Btk_
zljexQsCI*9U6R&)=7>HG#B74L(gr)nqSo`OA)yov6AE6P45d#vK56dCN)+fgB^!ZX
zw44&KW|)@q7$HUPRts!03__?6pVdqeTXhwPT6)B|Xi5zNOFUC<0gaYA&t%w?&@H2b
zSM!=_UsNZ78%`;HCG`L277i_ObK$5zwQzJ6j$giP<W}J_B|6=(fS68wrcY(pBATS;
z9zvSyLUPbgQBs5a`DI-zLZz&cI=&oOR_bqDR<u+?w0OnzA{u9)G^sV}X<};&NrnDX
zDz7e~CAx;cltDT3q85J^Zi8BsDW2%ViWrMI^JtwKKua=-K5=~}po0?4irh!B8z(BE
z1C)W|xTF%>52%EJPpCvcQ3<q07gQop;#C3qHI%}Vqn~PJv_fR{5v>Rpv_k8G{KeoW
zP>eNb8q}s*MM2S>17Mf;^_KqRGH6fuTgxZ3X;=Jb3j+5v(A&e)NN-Og!~yEepLu%M
z{JW#csX`{|$R2!Y(w{P`K;nK3k>$16LN-*AS@U)-YozURo0na(0AY1Te*#ySIRogS
zu<F^hiSlcQkTO@0;tq=9Q+%9S1hYe^y6klSI!TNe15WTAHEGsx=*$)l9I<WiGfCD5
ze``#!@2s97emZOqm$>ozcw2y-6yFF_LOgNAz1z~8+$iE?#97IKc!S5Z97j}-pRaBX
zaj!#U0c6<@Ko2>?DK;)Gy0n5Dcv#1y$q=*w^(R7K2Xm&6@_8U=!nfai_~rhRDBN3m
zSm`ifJo9xHJ<{@B5foR(QdO0Btg!mQ2aCqHI@6w9XI-i=9v(G<*&gF&fp)#(aoyO9
zioO-lv0V*8s}&4`O{i!U?07xc4m#4(KvTI~h8{J8N!POabKs3$bX&ViR{tsnLrkD+
zSWg5j!PrW}d1(1pC6TOX+UWsiO&>Fx3+$VR$2L2Q4mFpsFQ$UMp0^EPaJHz)T~{wl
z$vw6{*|R3=r8N!Ow7~GCzKp4_k#V`Ac4^+{+nC~_7Z2NGeNSoXLH5o{(7@8p26Bzy
zqDsSZymZsUb=UA52x%-yDTi-+xe_RjK2IwVvw|=towf<Z_GyqDp1xYJn$tH><Eu}L
z`lz9ekBg;^Amh97Th;0AP3&#YI<H?mLFk$lO_rF60#^vjNpB-q|K$Gj3yEC%pgf8K
zj{JHC-%uYcMSX=kxAY96sHS6tFq&>I?xRew$mt?Y9qeM7fN|M+!tn$)xp-ut4(pH?
z3B?*SQL}?+mKu!?TS(0?o)Kr&_wZHnov2-y!7gt5S*lsM_{d7FGz;wT76tekL9jx5
zBhe0`l)S<FJX5V?dnDszwktuc_Z{ES4kIw|ZGm0hX*$$foB>neCjKTPDoQyo?Q3Tn
z=dGxDm4Wzrv+-N+pREfY|E<@BH{>7|{}#n8p(1X5(U9+uUdg!-#><(o4=%kLGd<J}
z*2NbC2_Kv!&IhR$#Oy2c?RM#<*upXMRLu*I^@Gx!=RRM(xb|xvWF(&lMW)L3oIi9(
zYNmQR#~0%q_lcmF{B7y}?~I*@KwT)}=uBLVPz_dID+l)hA6yefW}nPUy0~Jv#Dn81
zV}J#M8pj~YCmyqjcEGnLfCnhLBPI&hlqe(^ZF4YBY({_zGP9~acoXD*i#a4dRYQ$W
z;<ND%jJMYqi61oSN2gQf+9s&USQEYhgZ#t|cf28|5DiBlGlfa5yh+A*0kOn<!-m{A
zw?<+#zHz*v1;JDf(O7sZ3_f%5f7|N)XJ$-#K4aqVo-rp3{qX*S&!3}c{FjrY{-lHd
z2$J-<m~2GUICK@fDa1~1;4tf@Jrdxy@(#jqvF<Tgf{6n3AaNnJLi?dhdQC}q&3&Tb
zJ~8=y{e}nB$JFk!XhN!c;1H+RrQ$$f49@vM40$ubO{q(xTW4AN27)CsVV?By-_xEa
z)4)A^cmKf)^xC$XS?jr9<AB2{`aY^0pwc05v7nlAP3ju#;76mb)s?v$GXP^2o#+B=
z_EEMZgUDmz&Ha@QQ~7)e2--(rjuOxgzJQyHSs;!hZk97{zV)2xrx}wU&lp**<APJA
zRQLl&arpz$u}*ZXM|6bzs7|OHqwbh;oj^5%unj=c%WJ0?(H|g+HmI5$8H)Ify1h?q
zeBsp$p>#nXj|%HnRh*S+F~x1br}J1u3*M#<pO8f|Kt`jXu9)O``PIZ-jC{i#qQs--
zMxtj}FoKHYb!G(rTg~)eh9mtY961w--Tjs=_Tf2!FgwwL7*jDk{-{;y_b>aOZ>K1F
zgD)Rl5*G}X1>?=P*Y};w4OZ1H3QN^#83_|cHyGBUP%(+i&_xEBoc57yG-$3+*LD*~
znPmvln2ZKV6|@<Wm>?$cinMg!m^ocKuh8|?TBOyTYPO2PjRU2*823oCgJ40co6^Oo
z_7avbGonpTm^3nDWWq;j*`k)w{)P6da|{y)xMaSWRE<`x2!fEG^W8dIfWP|RmO(wD
zvyy}28gz-y<zLSH{qg%zF@M7NDVwWHW||GC5ucKDwR@Mj?IMJ#%YA^e`s+bgoiO-#
zW$)|_$3Dz<R>HeufsSc3&jC%cY+Ck-8fYG$p!LzSSkZ_1usqGxN{MK3Dr48BXJ*aG
zZH8UUJcqDs)zQ1RDJP_(oliPGbbhos>cpdt%jWJpeWhmE`=d!KMRBvs7l1SU63xVI
zIbPWF!X;X}Z#H86ERj^{7CdHJrOBHen*plVg+ge`(C#C$7E#hcP(f5Jj8iqxwTig#
z^J-iNWB|DdMSvo91H^4AE2B%|UJV=rI;L;G2vgKSCh96w0r1iiaD7p!^>~!_o~0i}
zMLp-%TvNq%t?844j=|MZs7-`z4B}j(#3=HwIEJP?(Q_lKSrn!<P-CpB4~xMP)x^qS
zb%>O8a06|2PojbPRz7Bu4}92lx<d;YCU2=k!LqAZGr<gq$uVf?AX=cM$}u|$9bAX?
zt&V(C1}3v&EKEJuNtrD;sU$7uk_Pih77|mx2RON6EYJ`$4OEla4MtUfwI{SP?cA1z
zZVD}?(F@IoTv#ipQ&juRA61WL6q;l-o|}WQ3b&YIJx?CgduwYwq17<qDr%7J59Gpy
zgr$q$PWhk)gQ=ir0+5R1dJ)>{m?L=sNhYH?IG}~sXFHQ#7P$;jH1Z+K+2Dmmga(2<
z%>Wk_b~50j!x~6bM%KVteApMd;HvXqKi1Qetd^=B5AUwV3$8nSU>`N)!^;4RikWKI
zCF&@Olvpy#_Nbo1)OalxiUS|6I-RM43Q|v+ixx&GbDjnCYe|a%|EcTw+2}090Pm1a
z2|{J+!c4*X!fi~_M^v(6%FvXNKM_fSND4^jD@mA-o<lD&p>!bMxJAwDgg_|tdbFS`
zGqY7V8k!{Y83uifYsNDiG<u&*N=0Y^K?=|`3~`K0Dfm87PMFU7#-u<p<eUs^rPLIU
ziRd>_&r8<eZ=Fow4OoLeg9DGSprsiWF$hc){fU3ZHVC^KL5rYO6;DRH19Qj0X;%jU
zjd(3)(N+8eEdkmj#tBc1Jx{taSKlxdkH%XBI|&i}o+tF_S$IMDd9pFD1YV>_l;8R+
zd`rsMJPNTzKiePtMZWh(bznu;J3A1{{Ya({V{sXmwDf*vEMlo|&se0Q+6#&!PR1hE
z_EU^S@gj}-9-b4!4h^qcLFdKDRTddMLtzV%RB&K34X<VE80E2!(SUg<&7eZ1oqmYk
z>L94GpxJ6htVGQDD=d%M211w8sG4V_j`TXOPP_r4GB`$hu{8*GQ;Xq7rzZuTaDy}w
zSRGu;*dlD8S?sZs^I1jftVDa*y<(wJX!Fpp;n{1`b%-WYAVv|JkRu{+h*_nl#+)bh
zA(k;#Z?R)z*kacaL$Df*1}=883<L+(Mu&xg9&XpAK&d<#Hr3S>*58-4G?ytSVq3))
z9NT8L+G@J3go8-0|H}sd8rk5sH2QzL5bT>Tzxd?a`{%5|+gWMW4E|yxU5#g|S=f!8
zQFeqrF{|L9+ufjA4lY}$Iy$Ydp}5A%LbDr726;~RMnK7hNrrAAYcv4SyB=^n0RNY*
zQ&iWv(m9F=jgIYi*(=xpo=*}}v2$m9I}ZZr&H+m#TrEr+8nOIoCOb=r*4}=0zN$_%
zZ+u=R;0={P3Z@pB*~5YzaWg3$&AT1}S0_wCHy|B_)vGst4o2;92Ad1+jlpeAeSsS}
zOHmWtnrZU|*57a87^;7R1kD$y|Ek>V?W|A#p8@~v8Sr_kFfu{4Ka0u;GE#oGsO*mr
z><J(3VXV3$Y#ddbBFm$|GQNela+%LAZzfxPHp##H^o!4)PjURs$*9;p41U9V&?ePD
zC}nOgl7U#)dLo&C>cUu^hn}AtwVNz~>ozMoyAAA)4N?FJcm_S7F=9|*8H{tG3oITZ
z>^<jTsyX;!l5|U8r<zemAo)&KSN>(O75*o{{}bTfPk@iq;1x2kqVSFVL<Z_GI?y|W
zATrA;qyT{fV!;T-#m+5e1~ak6&YIpL0J%c}0=+gw145m!_NvVYL0NcG2Ql)A8C9=h
zu_7HsUZ<X@%}{j~l+#1iU1qf*(|)NKJJv_mj!(=TpW8b=Hh6quIH~XvMYE(%>05e&
zCBA|YrPvQc6!gMn-f-LiS+cMtozSI$F9C$f*C9n!n8-kh2Kt#m2BVlMkz>o-8#~Te
zC3o;qa=EVED)FF9G}o<cN7?_hH0JN@KKSAzxBv8q7qa=rf<&q)KVjbrmh3#o+pO6U
zu|nw)tpf4RwFHo^WE-x~7*xe72fQg&@h(CPGZApxU;(`!G(!om6j?j^dCAx@GTBlx
z+XTG{Ij`tRBIzcHmylZ%)YaM20kyHrkCkeFyCCwZ1XEX|lQmgs?zYw-9ULryDcq(K
z3B#R(B71v+-KJ91%+)gNL`g_$8#t<Z$WaQU=Z}5cyqDOQth~qGAM||bQRGDU2qpF*
zOEpz|M`mV$rCO?cdBe97EcIP~w<$MsS~#6j@rdXaO_k{nqJ9qQ1g8&;?F?!t!WFb`
z<ShTzj8S^fO7F+2j10_G;Y+X3Z{IWkJv%xt?PJ!5@V)6_qY`6O8dH)eOvLu1=L&O`
z=8v0hyQE4mt4Rn-v1yOV{jBe->(X7{#gT*{^7E@?FcBG)I>=-96jDR=ljA-pByH(S
z6vGsXI;iJ`<IKIIuAgIdms33B_E#T#b^rA{7peMVL5r&Z7NwC$spfEi@WrCKZcPi3
zcqh@dN|uA3lssEwU2=tF$Keo~4b>R;<LPg!WShBN<H1!)<ef{^bPU<Nm2x@$3O*hr
z%M57+Q3|#)k#!|`@~_pd*crZy9QFpckP4!pHi)F#MqX;t6u}^{pl&SbR&-7jZ73_-
z_y9V4#3s?aC`y`B+(ikCN7LFd2rH+^U#U3g4U(tOEwo@rd%3xxjPzS=`@7K#4cao#
zvwZRtNqt7{mVv9asC6ouy0~bK=%gye-#ryc{%JUJ&Jm-<#%xJ8Kq+PPSapaWtwr2R
z@AWpx2VCe|^NtLvBi<HE<)6IL%T1rJG^D?dFbqB-2Wzb&@fsO*pfCF<qSU1-^KF3k
z1=VHbL7z|*^kzQ@(%92o@OY*a5I>RW&iZNo5a!&)@@mYydezHoVe{^4n`PJZ=4DI0
zA7YswXwk}iT>dX9zP%dpPa!lsWK+2_X7Sch6IS^L2y;!3rtAIYe)W91&OB5KbvQGl
zwF;--0@B4ipq({npW;K+H1!@`f6C#mWy8SkGpo9^H(CDhAq&zi5n8)K)cjHBkCtyk
zCC{<eA&9>+RhH`z)r`IraZ9HCEHI!Jz}lO-&nqBrOBTE*iFYV%W;3m6Q6(+HNiTb8
z&_#`8juzXBokAf5^e99S7z66jy-W>Q8kE>Obj1SeCE-#z#&z(*+QPio+QzfQkqTNl
zTM@jI#-jPS$^kUba8jjMOtQ>gr4+pIM%zatNg;H7;Df3<gk_$X@Z?j(kSO|en@_BC
zK2<)}<ir_gqPO&twZQn8iC@67oMK&7Q0@vGTZcINw&6+fQTx-F_RcC|ER`o)#%Su`
z(xWCM`K3y$aAZBsUpLlll!CcibY*cel6pk=w(ik|<e>mC)NRQ9UES|GIHC}fgYmD3
z5xf{R)pRdCRBm|A*8C(Hpr#TE^pM7$)@sL9#dch$rfjJizoC^OUuk}2=F%WO9LY-i
z*h?EK?VrN8l=d`DVbhMFDK^|Lh=Yl*O?J>f=_5tx8avY@r}<;?htT71AtN)-80?nK
z@!I%R#{9LF9s6%7da+`klv>Y)wnywM0m|J+n^*rO;qV_|Z-D)$uzpp_Y&x(f3t-=B
zF<6HKj_kR8Ff{f1VyAO%M_;qk;xtzM@Ku5$<DN!?4f9F!ybZ8w^g_hY1o^{Fn4PA$
z7K39I(vCaKqUEve#ZY;t1v^ARAvRSjitenMOVJha77J3IqU70lb;mngB-x2!F4eUK
zGNaV(d=unVdmXaZjRkQF8?e{_lhQ9RN~KG(=d%UQY1+b2{(&kGwR}{<6py45dQ}u-
zrUi^a+B@~x_Qnt(#>Teq2_Zv~JuvOpya+Inu_W}vC0uKwCb0lwYC5558*|oz(g=~1
zK}j_h%dH8-=yAUCadMHl4@c_Z7?Ep*R`0U9!XmNxF-Yg^123Nrc($|AGG`2Z!;vqx
z0CTvD&Ch^mDVF&ZES}R1gLIg;2oN1-0of9@v|&zYfx9^qjfFWmVl}EIg5;YemWqWy
zUNI9Lt`TXV4V<`B%VcTr%(t2ldG=KGWEs^Jl~Q&xkZUDgCs85oX`4#0J+BuM16zv2
zAe2-`d3_S>8qKzB+0{U+izlOQw@g=A%rc>=8s^KP1XmJk5UIfmw$3JANEN@9)WZUi
zZYt83MYw$$qd+QU7b<U^x*q5U#3sU4_at&Vaz0{z#{49hyF2}ukDM+!eq7R#{r$(^
zTv~m4^Tzk6=}CjAXa%B2MnRI#AdrCFPtXvE$D|~yGwLx(3DjeflEtXUq$Sr#m$q90
zQWCm{zUJ<+c5FTfzKL6rkPz({PZWeGz5;eOfsJ}VNtQ`L<_ur@u4a?vnCs9aBZ8vj
zgP}7zkTzePk&h#V;k+aMj1dv<CINw(xcP~jB(uZSiHh(H6vW7hGXgTn$=)4lNOvM4
zg6is^Ax2LeB;-g?oRN@8P_C1Z$76R|Qp2mF1hs{vw{ZhjH%W<iBTjlEh;j5rP9P#i
zP!`At6y-<uu4TEE8i@XiinZmET2f0|QrTn?R#audE|`D;^C%3a;Om)lS~Ibo4EF-L
zyo*al)@US+9zCsooW4bo8>1j}uOZo~g;T*bLYOP~z6PTuXGG*_Iqzd>06rX~ghXSI
zjD?y6rrjA0aXH)7$VhNTK?Xf>gN6{Sjud2&6GsX%(-UVDWY7~w3Nq6ZXB1@66K51;
z(38_bNMLasX>Jo5hPQ8Xk1k_;HRHPXgOb=O8m|HxvQQLnG-OZ|Z$!i>iZ>cED2g{4
zGAN2C4Vfv5HySc1ipR1xdSX+g8HGk5c_*o37MSD|eZcRrhTR|}!CjG#<C|#5HSM{k
zCEtDi+5QD$LU$h$J6k?`-vA$8A0l*8;>KlxcdzP2xKw}}6S)9FHJ-(HyD~s}v|%R1
zw|z@Jmt}Re5hT3wEE0tw;-m6N0gIYg$Nq7)e-7Mp*mB&4*o8L?C$0t@-U1j0LyD)e
z9RrHge();Brf^1Nuqu8~0pD)1`;5|<R()Yu90uhiK<fkyF0>>;XHJFFCAff64Kg$M
z6mLw+XkZXKhV20D)k<m7Ob!9vFjlAXC}0$`;S8yzxlRdk$NSr0H9>b9q{R&joq)ux
z3_9(NPQU*W#ZUNE_+hxU&s&Djqdc*od<~|J@_6G=ywMkCKK-Gp41L(6dqH#;h3qr-
zk9J&gEJW^<!qIo!52ih!m6GBF&CnrWh9!^v<;E9VXGS9m6`P@|vpvckJJPoTJ}DRO
z`alQ1NJLO9D<OWOR=pQ2<QiecE)c?y>StV(<UwT67jN{1-K;deSCeo_q0VU#EN=ws
zMi?&}Z)H?Za^^?04L%XE7O<=<u|$aUj0@>z;Kk@_No<^H(Az<hF~CwrNh;fzvOjNP
zPa0%MPl08wNyza{G~}8HUDK2wzI}emp)}K!XgtTPlN0~M67L2zaluyJ8BuW^#Ro+h
zOu3PjK}ejDl|e}y$;u!kZjhA=&i*i;1?I!SO_WY5k{~HcAcRVP8cE7D8HI7`Ff!td
zq%=3kiS71rav9WQVOdB>5UH88WM@2!3(Ov@3)2)&qXuJJjEwj}Q<k$8nU>%OJ;}i@
z1Z6p)4Yt`EK^c_9ld2dY@uVt)j(DRggO2z?RW8nsFOn0f!u{WJz2_$m8G{Lxgw3y9
zpoEXv4N|g9uu+t=;|@uQ3#UO#jEHz6DKilnB;|=sA4J5Hq%2g#NXiA<KT{DSDdXsH
zK~i{-xEIbKiOEbv94X2mBQ8Sc(Gp3C5fN_`We^cRNXo^b$A}1fS&fMJK~OGEQ8z6Z
z38{E1;|{c91v6PXXMPY9b6&MAztEFGMchI~nBw#p|Cfa<);0fUbYvkj3prUR3H4Eu
z-x+)Il3wJ&JdqnD{=~&g8mXDcJyGhY%@^)UVw2|LD@IdLB=kmH7OA*st3D~}A<bzO
z{C4T&;8eOvx06y&B^_!oua)4p4XF>QAOYd0LTmg|L@kdXAf_$}G*^ifFjnzc?)h9>
zA{W|{V%n1Qg0@5sFy2<2stW@+-^7$5Q*#C2dzM{uG&yQjT=%gy^cFJI7G%g!Yc{hK
zrTp+hgxY5j>ib%uYIAlu*O>?~tH|l;w&jeA3I|y#o&8&+I!IHWJ~aV^!j`VJ5k-HS
z1_RS@E@`XrOwv{<8mwi=@AR!y0C^S-rt*fG(^|!dFtJ*##5Ytc@%QxCjY{K6tu4Qe
za60{F*>qL%%1R%FNHICg4)~GMUVY`%(zT#MoLsW$w1QHnC6vPTo@q7|+l5j~Crj9>
z+&EN8cQxp<M5A$SL?X)`BLmy*MCK;XqlSSwJ%xMne1wCQiC?BW9w!oy@tzNP);5Jr
zEKn4?ch#gkYZ6kS`VL?6g%%fD`rS9XFR#ydQVhN^Otoru6_Mv<M?x43rnWP<R17qw
zlbXmX#AIdz4P+}<3!tFgS5Uu#U!f;YU(A&KHi#hwDAryO-l!2;rBY}uqLq;KE$9tZ
z{OZ6Y=1@5X0SgtWM&fiT3jOmgP?nG>*pmiY*^8YBnu9Az%7+e%7yJkfA<3nPgM9)1
zMzmjQViGm=klezb8RxZF{p_X4g~(~S?=j>Y3@}UE5bb-N3*c9q;iA?9)_fvorA2p2
z>K`+BU)N2RG+nCjhZ&}6y9X!QH5qnzOWl`DD~<;3j(CEo<6{KoI9fO_(TE-Q0Gb|(
zvx_NVJOoEHnbVjK-g@NNqq4(IGNrLbfOj_X!y#Lm0Zqz%hJ3y?m>=+KG9+hMYz6>c
zE9Jl4ws<{w4!`H{-@tIIW(QMWDT94U;G&t#8G@0MpQo1Mu>e<Fq{!Bb+iI<+3{I+D
zD6qhgvG+mip*jq2xzs?V?uY~{{hnNDsn$g3bu>|>EKLYxN0-DoKM`jm%=!Yw&)}a&
z=VQvFX01;(1Cw8MjqI;~qU@_Y`kdx2x0N2hZN1KVnsx4JOiPUsv^$q4>T%qCems8j
z9B4oaRaYjv3Wpl}Hbl4~#+c0uS|AiHEjiP=da7U#gTolA(wp4F7FFbgbxH0eM-U4p
zQ^V@1_rzJR#Tea|&619Re0njJdZ2%~b}T;DZ#w54ZsuTdgEV@r{DKw6pfl~XGhOwa
zX}Mj(F%l-{*aDR-Sf$UpMiLRJzC(a+fjI(CL!mc3hfElmn2TUVfj(t*jEUS)4Ate}
zA-aLmc4r!Y;^t<zsQuvu$04NBe<=GcGrIY9+_#FBXc}+4z2rh`F(FuUug+`>oLL&&
z#M&4!F(WJt>|q$cHB(GKCehSOoJMjN3(w(awdR~y)3$<vSw3&`*GTQ(9=h0}e4Q(P
zR`Y%;^Lr}4t=XnJxmlC!XXWuo>|>MFx=lZQPF+at3dwcH>M(t`#U_b6Zw7lbU(Vjl
zlzbt_O6M{m$aIbMFf{6p`t>-qz>k_;2AMJyyr(|?V2XNgYWp1)DtaoFa>U%Ab_2oB
z<n*ZNKlJ9zEP%zEqcMY{!GMDSU>j+(BsiI61*ry4v<2*$-ORS$)fp3b@Pk`)wp$-y
zo|lue%lN*Ky9A%P_vcFQ<F_xe9dx3@ktL*1(k4cQs3#O2mr@U<b7(`YooMDc2eToQ
zmOD+cV#p?7j<s0uyEue@Ert?#x(ca*0E9-|@6@8&&xe}PaF3fM5%3@Uxdp{G2tXF~
z;4?%BxoyCwYOp!hmT+Lg7pm?s5xr<fS5l3ELjD|uh7={#jKh#Biiawa9x9lsn)_x+
zSkr}E{iaS0=PH8R+N7o>G0G_zq+T{110Gw19b_s!rA?#4La-`fcpV~kN6ER1No=&%
z4aT{p(!4?`g$WVp`C$`+b}EKsTm%0D+36BDjLp)M^h1x(Y=pi6V0qQ@K8~DG^JZMf
zgF<DH)V|>n6bkZ^`}>eXr4Xj<B{d$%z^X`HHW|K|3TqUQa!Fo5K~<`}Uoq%X^JYod
zvoEZqkG`VaMCo;tGc4zFzRQ6+&(=0MfOl+B9)PK@8g(-#SYh-PXXFt3M!~W4D!0oU
zJ&+3IP-L^D=BLP%DFcJ_cJLgm?lDv?<am>y98E25l3+2bPW9_nV@zoy4Fn)=@J!d7
zHwjkssSD7@qohrSV5}x+N3)b#HwF5zR5u_zje4V~wJ$&UebZPU1VpI!m^Vvmtfm;i
zg;oON$AaTwQc!*cO=Ig=;WddFq&3WEq5vW)czUTZmrd^5)Kp0}RLX&GiGG2^)Gpu$
zN>4R!@YN4l+J+2Fj8kVR*J^EpA=BKbTbpj(#acn*q;49R2vwoZHl)_cw}dn`91#+@
zRG$kss-i1RODvQQVqXB;KZ%AuwT;bQb{RCRrVSh|u!T0@zEuKt2kP$|Dk%f4GeXve
z_c4Jd)ZRgNN*a@`8#QkrPl=UQ@yv*u61Fk+pqt30+uB{yfHQ-RIcObF;9w*~3x)+V
zsT(SlYfl@2R425IVF^V`-{@8_yLZ?gv6T(OO_i>4lLee-ZyQL^v8QuI26tHPHKt8g
z2%bVqo2UT;pZiA>i3Wu}?jOE<yaIWUj|=H@q?ZoC?l9TPKkpaiNy;v>P$&sPTH>1`
zJowYdyVDho>Ja6J>n_G-72bvuv3O=>J_Bu<%v+Em{jYoA=ClluB1D2nffyDBHPDc%
z&eRF`NsI&wuBuddIdJ5bifvY@BwsDq0cMM$d8nw7Ax@w;qNNHA=5V?*NDUYQ81zma
zphI5L9wyQ|v{2D-o&yk#U`TwodwbauJ0ztecBj6C0e?KldA~qZ=NGzPpt1uiD0n3Z
zp$_b-ofo25@YKf8?~K7DQ;}p5GhsUK5>b8B878&i@HBYqaqBmJb}1Jn14HB0K0;q|
zHS{@}pl<bGu&=G%cD;vXLED2=9~e|Z@uK1fG)Npi{<2NCqJU{32zD{FAPS>x&ZEJ@
z8bkzNfkUqJ5ZoHO%{%COJ~W^NaNY?|#aNW6jm>r<67YdYP~V_rw)bAU4H%_Zp7<>s
zxQhP|40Bx>4xFos9-TYg7K|GWnH=#JVcHFjj4+H?B!xFIF}&^L0b?bu5SqlC8>_if
zayl~O(Ey&HTaa1L)y*g?2?NQs7pCfgWI!lXi#g`Ru7}1D`a<WrK&YnX3Y{ktrvZbe
zw<YIO6tniobzA@V0tEH=<df_8ybpnNLn{J+^USSq#ZlQNNv>shRlH9x$eC^+c3kYB
z9T6;2iw|eF8P+hst^^O>wQcEju63%0Ea|ue`;StEQ1X2aVKusO3v1Dh$J0B^NrME;
z>^Ri3X&zQ1AYiSlF2X=r;f&S}wL&3;tlNr1)12d{oZ)g4!Y$gUf-cy6z$EERF?cCh
zvT#Ww&s*N|V<~eXteR@<>cT5lh=~Rq?6q}BFzXN~qKWi-lS3F7!7h>ZNaBgIcBF%0
z)3}JOgi=Z+93M3Zjwl4WK_x<rJb3)ILf6lNXDTA;MUyEwNmfngiQ7`q0Ebx*8o(Xe
zP2XkhtV?$#0Sql;V`Pve&~P^DMMxuP*F{-lxsyWZnG{H+%&FPuab<+&yISdp8X5VK
z$}?=E#m{o4vjL;h=CGR`DWMl8o^jmCskp?!Gxg6dRkQRc3>Snd#fsY)mB@fT_NQ2E
zN;KxsSmU&PbNu%6?;j4=YWPnL!AU50JNXRrFQ{)ST@a!3C3=+Xr#sB2A+FtYym`Vi
zj`#eWZIA6yoz+GIcDs#4gdR5scU|v!1?QbPf6_m%c=YwUJLkPLjKT`L^;fTW?H$l$
z)j#_sV?!hPlyqXNeA2ZEg?RS96>z~gi4;b;iuB}{%;@N)Y;lDH<GrjKukK@%RekT&
z(>-7SFA8)t#QPD=-)96sPx|5l1Hr5vA9zi-vBUDA{`NJh6}_BZ7$iA`e3Er*m)odq
z=jZ-j>!(kCDuE82QUTnts-q{D-lz7UZk80OSGaeb=QuqHGW9C+ywr5ny`bP#-en=L
z_Z{V~@@ly3fo=RBzWeO(a6C@o-djEwyBL7C+GlWOecne|S)R91ZkWU7MhZhMd3BqB
zcc6bAeU9ih4hd5QQNw}=?Izc4>)lCjW^WDEFquv@kGZ_MCDz+by1xA+uWmowvF>{7
zt{>g??5;<5Q-VHBoJ5GsJA5W64vb9Y$zD@4#+RN&<WyCBfvlrCdL&B2^+SctD{Kq^
zxj<Y9%3q`2D!O40Iz9*%9h@ky$0&@}nwlF`QQG$TC;sDyPd<Bm?|RaAk&~X(f&I9_
zsh;yU61kmn)R!Y&Noy}gy1LJ8CD0WEu7S(p)2JHC-JHoPbzR~`Ju#C<B+sP7{p@t~
z6#MFE<?SEYSZJh2h+8E%ZN*jdk?AS1{BtA2jU=x8hmd5QoJZToiW32GB7*s2w5>8h
zoxzEJp@E5pvL2~tpd!IiF<7V30HNcXYeXM3HB0uEIbBi(ug*tlc4jG5a<WETG~_{t
zpX>uu^EB^Xa)RFpId3}2EYqBZ*$>S)VaTu&(JZ&{@;tY&HqYc{Q-JZ%7BXvtfW!fk
z{e8y+MMmEngh;oD*<5uoXY$t4M$k3i0>4$6^V*0Y)I5}!YQEmc@eTjof@XLY^vyBb
zwG+1nGWn!4oCB}<pHizup8MllWm<bv$idGZua5!gk;ecQ8tV>P4!%J_lA%{IA*;u+
zsB6cu$WIY(TK;)RJ#{JJWV?L-BEEl6@IK`@e3Ns?XF2@*Ry}{pfkuIp4%>%7W8oaQ
zx<WU2f}{PIQp-QTWclR>QvCPx2b}?0_el`UFC2V>l(38oW>1^iUm~!!Jpa&bhb_-t
z>@>(e_|*Ai>TmmGS3G#iZJD>@b>Pk*oVXV7$+4w#HqZ-N(QO`pM;wxNJ`MLE!C~B-
z^X<WX)Twby&K2L2^A(ems$6n3urJtSg0px`a4g}sS90I<iY@v|eQsy#?0glTq^!Pv
z%z5?wTUdMj)Bv%<FFaTjTT|!Dg)8b})m*PP`|HkE9Zoaix*jgq!`X6h=gYw@%Rw5W
z1|DKad=S^Sdy;D5&`vEFBW^3|%g3KS{^sGkYw=HvyYUhF{luV!-$M-GuR4fdj0Q9U
z(&?~#UxXlGZO_3ztOKLGYjy{O6n%!38l(#W?!>Dsq_lN*wXLzM(pFECUETi;zHWn{
zE3V0}w0Ya)b(>5r|G6&-1ZNo7|CulOr%&Yn4ZeDVzJm`U)43`IXzN0%sH<&8U1^kG
zl*zj68hx(AUFa1ta_O-%kgm)T*dk?B{K=X4qf`Q!e3#+V5vHS4yJ&FIbwF6lAu8pq
z5QCY*C7@6mDITzn)Wn(VZ)MKG$BKt&OU+j7!|MXoTz|AuO0F5~LmBaD^mW??ey9Zz
zn4ZUVzb!l1x)Bc*V?b0LrVIc8x{G9xiD>`}=ndf2z<JZzjUe;UuA#jWB;`8@n9-(m
zdmVgaEYz1{$@aP|SDquVXu@;M@&&Sd0G8_lSdR5oUK_i89e2IhxgA{?$m?++uN&?<
zVIGlsEv(UZFtN1!YX5KPcebU!f+)P`ziT<q`<S4o40cK9_mIzbGnHgx7`EmACH6;_
z7#g%7Tf`HF?v^P=)tnS&h+hT2$p!v7vGK%7&Tj$#oEPwCxdMMazJyx6dl|O6u+>QK
z?rnX0)ar@Z#yi?Nq0Q`NnEd0_M`b;{J^;~a0MY?a;w21&9Q#uU!dzhW)41FO7A#0(
zWx&gn<8FHB3@f=2ErzIu5a_9=U&8cGB0x7rgfX+sNv>k#Z6GSFt`cRwJIOR?Np#<(
zRM$yEXA0tgq?Bn&4pVU(N8XwZg_`pE`)R%jPa@&ab7E*|%sYL*9U~BPtOcbMMgh#V
zj;M<$&~Rf!iStrtYo>yo%2W?GxhubFXWy$2f8{&3ONBC8HM1D{(PS@d0HlGz;u2~X
z+YDJvC4YGM;j{fS#^LoMidgu-#K0`S8eQ;68IXa}ShhztqcVq1139+N`z(4^!-uhF
zWGu7B0!D1C39Bp5;T!X)&9ewgvpFkmP)Q<rXZ+bE4|e>u{c^d_2Gn!-<MrSLGxgvp
znYrE)#=Lq`)>s@So*+G?ad}OdFvLV^AMuzD8jT->;<W;vMSZgf>4o+AXudXFAS?Xk
z>xJF;2QQO1@YdC_JfDwd64U{N_y?H}h60`KmNIH3v$4)(K({C%0)L{vv$lU*q$G9i
zDWWC*;6sxU>?<j4n_ByemitPanf~#Ae!*w*W?j$1k+3z3Es7UKHyBp9Em2Zv{!2?%
zLufPbEj`$6BJ(q{E|^wz<LSGlEw0>dolPUY2nGvmA+A=XXO-S=({IYGUbC|R3jFfE
z9O9&r?ZSMp7wjdA|Me^J#V81U_qSPxH`?$_fz`rWEy<gh^BhX~tybr5=@oyv(KRda
z>y%mZ%aLL_dF~O8a=XNaK&p@6i*FwoX8Ir0kQ8#8Sc69m+z#Uqup9v@Q*#7}e=uKg
zc>L;{udh|_J(~vCq7n!kRr^iG(8F^@5Q%_@d332MmGP8A>G0YlHhBfKKfNxng6O=L
zakj<k?bD^JT`DrAR+iCf?irF;L$1R5bkyD~0H+AiJ4(c%k8E<{YzGn7QI6&XF_m#a
zkq~)2?5SCiY7a!lPLSk92otS|aMK9dpfDN(Zd3EHhmsEYF7XKLS~(3Bry%7Epj3*U
z4{3DPQ_r5#yMrB#-a6{7qacTXLny8iw29tz&B1FcbfOB;q)k)t6|Q-BC56jjB;uj7
z3l39&N&xygp_^E!s^c?!Ij!hFoC>|tQ3;0?$<dbp2X|gtb7<XL>mIH9(YmwNy|sQL
z+29Sb;T>e)780H&G<6yKFm~c9cL7RpwdlFoq3OT~IZzspHrWH)M;#+atZ<whN9Y6f
zI@{^@QVA5P#fi|eycnVb+;*|1=@I6d0V2jM?EAQS)R<Uh>vUi-_}H4VXKm`NZqHUD
z%X=0mEUr2lpNrG8%hyB{UivU<WiU>OV6Lp}xU$`nP^mV17j;TchV#a=eJ?)$^wCd&
zb3VKFZH>E6W{3C^0Ez?@hw8#v0F|={DqV1QiAWEwwX=lL^t1BzKa|}h@~JlukV`p~
zM5VV~cG%8ADg6nGZ55^Qmk99!Yj$Bg;>IH$$LUD>^b|WI(3aZgpMu!BP($Icujthh
z3B@mwP(~=N=`!-X<t;y!G8fTPCjC|fcE@<3gTH(izC`h7uO#BfD+O<FbN%}4w7YmC
zH@{JE<7I$Z1vg`a`Na_Ws{yeVy|q7D^wz#Ln_!&-IZ6<#VrMP-%NEDa(QLsOva}n|
zUQfiBwWWE^+Wf*}`tGa-dx5qaP59CN)f|R-`uGt6%IC*F96p{bM9cYy<k6zNRRta)
z&JI0ed=(Oxph#f;LFWyR#?AkZQT@oEzK~APG#nE%BEw%k7TiVABh#M$2#Yg<8x`Q7
z>;j~446LMEp;umGEe!cW;G>pz{2JtKR#%al>Z71A36pyUKiEy((GiPZJ?mi+v_5L{
zR$JWGi~?+}4mqnf&t|uw_zb7ZTXa*V-`Vjuaf@8IsR>gOFh=Yagn(n4Bzo-Uf@RVQ
z9xF<u!`g5|DWK|Pkt#W`2KihTVD3jfZG-M}I|1Ev2V@O!;nib&J32p=A@W^7mrFO)
zKG41<URhLSOP8^Z*Aj$AqWCpYq9_z87Nj+LFcR5sNiN|Ez(=ACht0wyM73=IvzLl~
zT7ePNs8@nRWup05y~SC*sWaq6MoUHchH;y%gAV=6`j9K3rtLBVL2kv^u+ui$P=vDU
zn46R^x(P!`zw0q_o+EdY5`%CFdoq<`>}q>}$Y{J)jJH&SQs!I^;(q+zKOCMz;)=}H
zj!6~+r^U=R_r=ckcNjai@N2e?IfUo7j!oZa>X>r4GIjjQbBs=sSA2MGCFB(!0BS&$
zzaCo8ueoAKSn<UmV13trdy8HQ61%`tNfY{lMnE@v;#41}%gFPVxBM7omMq5~P?>i9
z8`n4Om9HMYy*5R!2JQincbu9CF-NeWEj&Ch6J4Pg)4K$Z{OG#gPN_SI1K<38HLNbX
z%;+c`h$yU2Eev5yq^_XOc%g`|##Bonf;%YI`^hlt$0f`)!8H;)L$^r)-wfhWacoO~
zzoE>eBek=Ry9Bz1w$O9Wp2sdYT^(W-(7GBQ6tCy_ceDfGGQiv%BHRNLVZ7q|I6QTA
zb{QoLUaaSB%J*<*75bk>sul=;9mK#^Ej_8@;ZPN}Sq`AQxlCnGLO6~CsI+I!JxkE(
zJV%@W@1p>56weT2EKScS{KK~x=ybOfgntFU<uS27$I|yW>x&+?ijPFTD?-rMUZ!e*
z5X#l?c&*)t@%6;k@4$cne5yo!1<8QIe*X`fn0y6U4BXLzxuY!sV%t-I*tSH6-Gj}r
zVk3e?8^I;~c;qa0#56bl<HN%X0<MSrx1XX{u-<vaAn6#&@4h)4rsJP~{OR%dd_>FN
zc|;o=b0Em*RHIZOegv*nj!3%t^v{nBZ%JPH&oJK2V<Ni61;R|(NuJI7c|aOadn}M_
zIibl0zpcDBycs!jcM<>icoF{?+|gA1mfSg>^NkNsUoC8avI0vbVWsFByR}%<^ZcCY
zgUbQ9e5vE*Xt-Y)4OA4xh27uwRgaf*0`VpJ_1oC;+mRP(Z%<x6|N4g`R5=gdJqwH%
z^FV%w?SS!JGuM@8o(q<lyurMM-<q<KIk>Gne0!4^Uxx~wc)A!YSjHs}ei?oHHm?Nm
ze&WB~MJVq*YO)6|qk4mpZZ2i8;aE$=5~*JC-)+J6;)YenTw}#~v`xryO3xMKv7A%S
zT(2C>N!<JRlmGbh!-40JD}0{xiTQL&po0m)#l(*603OOnaBVt`Jar<VEOW+<f)=}a
zluk&nv`1<6ER7s*Hzsy~fd$RKLg++6?}`yf2bqg^g}?Av6URIhr%w<R134f37NAV=
z0T7Mi_;(yoAn)ot^TEcYLF)2iL5Ct%`oJj2#Oad<N#Nc1cNAm=9s<?dB#q!ti)#lx
zI~scSLO#S28tBTB<c49O&6TA#Br$%cBn#BWRiNm7sk#zz`kv6gymu9Qni5tARB1|5
ziVMRhPm4DXJG!mdO+V+`KYC-0r<`WH>v(H#4!(AC&bNQ3sDX^zH_!A7v2oK1Kz$98
za|Z;DV!_KGqBQ|vfOl#m3V4UeflWw-F;;`Ho#7f=*;WHXl-zx-z!#>_K2!Ur4H^$T
zCPWp}w)~95zZY)TZI)~?VF}tf<to6efpt_Y7*I2>ec1+fqjzF<)`t2h)Ca2?`}+di
zkEG77Gao*`YuHhHhI}uS*DyE{)4~DZ?fC{Wm;Z^L2~aESqJm2CdfgEvl%VHPfznh7
zO$f$662h`aMiuS>v83l;k<l*mP!_d3bZ;3JV)P9LrYhwb45WMmSi4dook{>xquf6!
z{pgpML+3m?-fAI3(LA8#r67s_k550{$ifo&`tipjqZD6zeLa%HFGc1BN-ZJ8L<}#H
z6Zc>xNSkCjC`-OTTeyIiIAQ&pG)Wq9h^st>$j)6CT#4(bY4@!yh!uXR(*7CvRu{Sm
zM@R<ROa5ZVb0;yLgIv2MW{t>hn@mW^NpD0{PE66A47+T06B8$JJWjd_LeSUUE9$yi
zPS;fo5TUPg3qarS)5Vk3$pp~;HHk)C1>snip0JPWC@)>yuQwU;Z*MYbUT+dQ*!(9q
z>8kvxErKoh=Ho9Oci;QZzWWB@b*?~Fb2U&^N@v%=J@PvE#jmWpC_s42`HjFJ6osbB
zG)^w3Dr*iw7>J^`alO^`XREAktY{wB@%KDiWp!|fi_-R#^A*8IHGvJ?<9n{OfN*o(
ztz~@$KA?el0CUS*)5DB>v-g*oJ_pq3;~QoGZ?`rDb#(9#jEv0){3F%JE_)B)q%ybI
zo=tjq?t3P4ceRaH+I1^arA5|mN(k5em$7ms<dvR4^s0@pM8LU2*OJ~xrTYTq`nQtg
zgaTDpsz)gBebH0A+-X02ZF}un#+jSRI5X{5*VohU+H4s4#_mS>N9^OM;a%+G)=rZ5
z{vFgTlHUb|5KfszM7pLBUs3k6<Z=HKDkv4Xq7h^|jf%`!3B2AP-~W8?H_YUl$Pg?9
z&8R@H>6o;)p<`0`BI^TbTeY=!FhwWd8ft#iAn?qKS9xJ(E;C6j$QS!>C+X_rGkcIv
zNGfthd*zNSuG0K36W3=!Jq<+etPXPgJ3uBS#7nx*gonf<W>lsHmT)@!ISv_iZ%~^P
zS+S#_?8=l7)NW2w%8;o{w5^O-lpgma(QeZsTl&fq1+5Nor=yGIP>598>J~%JkdjoI
zcdrf4n5<+wg?XY*MDq!nXFVh}<I-rl66^qpg322aRtq|=X&RE$VT#pZ{TIx3v_QMf
z$RAKvGitru#X|p_Bxd_4t)bQ_dGP2W4bak<jUSGWe)suzyTh~TkY-lJMJbx?G`ivS
z?L@OZS;;HWY<UvRmM76{#$4I4@JuvY&PB83QZ(B!J^?GxqIq0^uI_zqFCn)Y5DRad
zW4P|8(ky%d<~qcd@3xI!sJqf0$!Q?^R}3G}ju<z-4`77Q09vHskU+}^giw>6r3ZRv
zVR{&Demi-uoOJrg!g8bC={T`tJ9fF^)bWb5uwH&YGYK{b5M8ze1ugJJOTf$Q2-k^L
zv=<wU*b?^6nHF<9h~22ePs?1({kDUx1#J$Q@Q%*`Em$-G({PR>rh77xA3OsAV6P?-
zliRcp6FyAiZ%^_E5xUbfQbrrBS>dU9M2IC?Fa&d4^vMlFDMxd>J1%f71$RA*Ft!xj
zbu8z&l$NaaNCwH=rvJT=_UmshH@8<$u4ky+#Ja<37AE+ujbA~!VFZGm)(j4gGE>^y
zj8=nYv>F5rk9E+3Fy`Y-$-6CE3f}603Waz>CHaQzrUa}c%PL-x0+vbMsifjo<1X{E
z1_rA^1K6EZ3IkfGN)V}nCcY&MXMMLz@(;Xu3X&{?HOyOSK#*BQ8kz%5R%t71e4qtU
zu8?O(n~2Yztgg*Eci|l|-ea)CnX4#|Ht+-t`pe)%1yVSuiE;_UnS-fO1FI{Qva1T=
zR$-JMN4sRmn<KUsmO^TpznW~(YDyqB>jES36*LYhc7Y2g!iRW<g9Ns|NW&8i*8+R&
zlRvkmMM(3O)8ya~M0`bt|H_i?LPdj004PJGDWnO*St*Ds?hvntA8L4}ST!TIS{2|#
z+y8F*L%XKs+IZ5+jF%KouqtjYKfl`aF*`3G9t3@PxVId<|9vK}Pc@zWZNiWHgde?C
zl5s%zymKV{cu4q8s@$V|u9?v1F;IjkWCAQFiKzuM>!>T}pdia-i!4(j++Q5j0GRbk
zOZVdFU!MGMM(dO$?rza|U@AJq7pCM_b3$urrz@Qi9ZnXF-EO~2+kQXr1?!EOygr3Y
zEeJc;F>l;fvw*BNM5gd7*sa8}#safsAKv(-wW43z+P+|{Xus*xis9h8D$%S!tx!-Q
z3JFVDD&#A0brJmyGwcyD729l#O5}dhhLy_@B6qOtM+XU~?JD=U-piSUT`*Nkup%S)
z>tF(qI+F#;p`DS7Z<Y^rck}&$4*xU%m+A1in=gpA>xyY2>RlD;W>*h;XCs_<yp4E~
z1;l{HRwhu*&*Mg?jD0e6bchx5`)jtLeSN^B3oe5&D8|uxMp+h91KJQwm&Y;J?ASKv
zXn>C2U`vI7Atqvrh7XADZ}!@6c<ib&)I*td+n@I-auP3r?w5Vp5pMtvc(Bhk$Nie5
zS96_;e@UmDqA%a?fI#qzIu57Z8%~J|P+bS+QSls!R@ykGuz}SA!M~IIYUJUVI71dk
zo{j6}w#UpkTrmG>Ga_gJ-S4q_=)}7i^Ww>&7(zn=wFBk3qAY6R_qO)}8iA4yGmFcK
zK?HD_JnY<i=z!Ts4frINj}aVU-&Az^3w+=IDho7mC{j@Ao?E==sv%V;g_u=AQm_#a
zY=+DofP~r!j>nB`8v-^7I2Ua<)Tgw8B<csfDm2e%-V%7Ee;^goo8{f*{)bRU1qXGT
z0X?cXuJL9n#kIpubP+Gss(;j28(DK;l!>kF1S_%F^i|F7;dPcB>Mw?1`cMbD0?C<!
z#P9dma=SZgAp6;Y;NP|Vo7aT0d+Urqa9+t_TR+$peCTlXL2w6PxDG9N*I`o|9adl|
z+>YdoR4E%d=~Lr>Jzmn|iIx+9F^f`4H1la|Ef#{<CT-;80Qxipq{hNyrf{NF|G7MT
zHScSs!$XnKTY412n!u!sz-km`s=9MXjH*ktt;MwXq+*|unSvp%cXu%_Y%LwwXaJkX
z<G`2%!n{Zyzns|9N`u)fPGk^lnT$^o@lC8&1$Z%@Gfa_d+WVR?%8SHAMwHObklC;c
zeP!5Fp<VGFfr*J&3?QsuQuNqltYh-hzM^R1>~9>wSpp?#HZt_GrEiD@K!Bn1CcQ?n
zTg>T!V5ee9SFa+Bp2d*a_QlXEMUr0I&>w2iFgdcY1kv~nO45NFJfd|&2kr}QOAnl<
zHwHcly{X(0nBo+|VTS4yuSYsaVOPengu{~Zw0uz9IXT>e<Ty%nXz?D*2+c~odTf(G
zDUc4u2cfKSNB^hW5!xX1w*>f8E(->%C?47p=9V!B&0TGm`!vvTYvflBjHQc9ElGZF
z1H`j`1UcEdS>$BzW}~hwLJ^ePYO{uY31P4j4aE~-9c<)YA{*Z6E!yxkAuD>ihZ*`_
z#}b#^ITs~|VfoV?Z;^981aJ0XKWfF^6`k$~Pm~~PLC2MN!C51I$D~P%?{0GV$5-pi
z18ec}U*1FfmDb{a1x!s)83<0|m5;Y8LH{AIFM-Dm{Q{-R63CSqL{W3M;^dV}Q9ED6
zme&;u;4;+%xZHL*MtM3cTNNqX$7*46Qwe=!hKm{(yP+MG1-8oTVMBz=mM?u?M*gsm
zB4a0M97n<V>_1H)CD8RU{Fy09|JszenJEFh86~dv?*i{j0^KKu&d-c&BXyw-!63{H
zgD^Dsy>N&^_&dOa=If0^z5g7#;qM)w?eaN_WfC6#r@e8kCBTg6M~4rpLxTL@@w<Kn
zC5+o&!1DQ(Xa1u=D|oA4Kl%32dimx4$D4cDH8nVf7YYJ|wcw;EN-Qd{jVRopy(o7I
zgkmHf2SRZp6(tg%8z!~V_W~s-=<|RvVk9ZYy`lqIud!*=fsPwh&@VHZQfw+SZ0cCS
zdTeHB#erxtv&X&+Jy!Av*ek{svJ_<k*+romVXd?DvUVD?N(K=G!pRBjW|g5(&I7Lk
zmFK6n4x?WTM<@ImnP5|e!=U&Ss2aO>ovn}sB)9>}c9T>#jAqK+o(PZ<1%J-5b~a>z
z)YQr#UlNYUHGS<t0`Z0iwrPbmU^UP)99K*T(vx8t98?mB4ANI8b!gNv+s=grRjE)|
z0=$t&>8)aKBRDdk5bp4FYduai2S6A5bZW_9`tV3;<beD@q7(AtcoVl2GSXqPb(?K%
zGYWE|$(?1g)i~LLg~h0?4PKNK(I%Tzgc*No^A|}uXbC_O69hNNm$uWL$#}8w$NARV
z)R_A;f<a%#<;8|5+sP;}4n^y+7kX_&p*R!<Wgy8N9`nK)<*V)5I4H~2;ng@+Z8-HX
zzE5r0M!p&C{K9P$u0|4QBr%f6JQcASl6)(HTuC&FABpurs7cHw6lhsBnqHCMN$<Qw
zn+hgiwMBv-*UW4q<I0;|oO~Efde?lqagtSA@Uvt>=9u9NRG!Xf2NtA;Ic`%-uv7}O
zN47O`HYgKNOkB{=McMMuDVPG9Lt&nnMH%x)0+u1;*#edcgu+zi-wXk^mH~qefZoyg
zlNfg_12nIoB%khfx$hBSOl)y*=nZJWb_>YCFt&LT>gL`F3$vksC8Vkbss>{}g?2*_
z$Xd&#nNR~osF)y<2X|QkRBT9##%l+`3D+|95DCvFuX-^gL-2hD1qz;P%Nslq!t1ga
zv8AIC4Fm7cxMK|gF6&in3OGcarPi2R2Ix5p`=ikx$bbsBzYeRjuRxSTY}g|n5S+`w
z9a5AIX3YZHB9brzQF!jMoJwG0)+Ht&fku`>mK0XCaOaE3(5vP8(Y`p)6xw18P5VjH
z;rBKDz;M3WQY?yq%cV`_vFQqbc)DnqH#1px7+c>S_Nx2xdwu=n_P}Py1wL+|?Mqo$
zljh+?o+cW%i#i{x$)y76`cww4MEKoA;p=(H{G?~lIJkoLbf&m|C5H>|Ae59cU=%3g
zoJW`LyPD=bh#)t=Pi6o{(Z=e@SF;v@kQD!y4a6S1n)Iwy;C-9Zvsmn*mg6RSn{N(%
z03+$B5@MU1m!?(3qfx1u@yba}@w`YNu_Aj&FSd9|a|Do&8*tgNz?!mX)`I#1YOb^Z
zw1jWdAU{dLi*n6E3WacEVQuHY+`#36rIYZJBfr@s+<s-(Xk|ETs(@C$=Cy1^jf;ml
zr$w!+3(=-H{300gCgJA9RSxQo>+u%dD(N(_#>qKR39vTDmK18_1iSXEa+w1#K86|}
z?c8~zq9I2Ns5e@C#PGOrFxJiN2BDtT<FKi5C_C%9L(1$3ri2a3vtuSIXO6F%;l<A(
z(QP`_IKdq<`Cdn3V24&x?7+g}4)#d9#@Z^fGEGd0FCW3@@`6B;PFI#m7mRZo%UUKl
zXI;^GWbsF{a7OQ=Q|+k79969vtBHP%N>Hk*R=*xvw7gkGr`vHMRwg3%iJAKVYxs)G
zO!R*noFFm%)5AqQoG{V;sNG6tqFtxj9LJb8Eva~hC5;O>wqj$3EWw+vZmu@_a`D)?
z|FYc1X!0P5F}fQ@bh8sibT|I!Zun7}YSMb2FUeh@$Yx(EGOy33cS3*s)0%L+H*Qzo
zJpOE>A3pi^`oM@e32#im7F7-cAB&A}4&19Fs&xtiv{Q6}f-pHcr^A4XQpZ$u0KzHN
ztcgq72c2LHdLCfVR8j*!Rlz`CC!(Va|77{FRtrO3>0F;UcLs2+u}><S&|;<<)q!2D
zD7*;~W`^k2qGm8KIvaBbZDZ7B@N{=sHUl9sZQv>H!szSn)mTXWuTlWBD8e@ZITry5
z>I+n$*%Z8YXbjp}=<6iFWb~-tSPu@KqUR1YsRI55&XRIFP^!}BLwQQsY)&m5v%t~S
zNRM;qdQ&?A*k|?<XgFBy`z$gik2hk(8jfLwS5)ajA&?`3R1W5Mv7MC27Bu=DF>DB-
zfyuP2E5N9fZal80`3Ulxz4-b2A@ld*(ZhKVp_2&_nEid4VAReKm)T);K~+r+o1|-4
zz)PGv*@#UXZlfoCZfPh;ZTkh*9>~lV%?dSdKZg>w(zFBa>WH<B>2ut*SBK<%>&gR+
zi|-<WpNoB|fwi5~#EowXa<bwtFbSeyQ5Y$)AOHn^6Q!4tU#vFChaRSc^Irp}SEAJv
zn)CT0@jPmUn%X4D5u8Oe$tjp+lKL<pd{Cr8qy$A=m?~E_#?;DCN=KRAS?`D5wKj$6
zYA?VbI}bT7jA*3`JW<Gv<>(XeCk@uWu@UV!TZEeQgtG2K&kc<KijNF{n2|b(imbMT
zdd~e|RE@&D1Lm?aY}pm?1DFjMFa;PoR1b=%-s{O?0iVbrD>;C2lZ`52xU=3az5C>x
zT;*Hd>9TOo-(~_~QL1Op7Qu+3F9(5!B-5*rXkwTQ8fjt#$>nMwia{}sXGFSjl%|lo
zaWW;5b7O^;7N<!!9?3mN&=rbrf&Hjl{4VlKu~ve3I;SRlR>4*vuvm1$ZWt{GV&pB)
zhWNl@WknC#@7uxa(PEAOiALKFtEV)}m``Pq3y0DalDghf{YuN?zyu{<X>|$Yx7t?Z
zbR9i#!K@(8ah<GoTGrRXU2v7PuWN>tIrBAt8?k4AL#xR$SHcxcJ9<LHOgM!y7=N3k
z7G86D!e#oNzzn3r<69KYxJlOAWHk-Tja2R08l0?0%AN`Xbi^3xk(R9jLWECxyQ+V9
zhabLfG=tjbl$(84tA2yk$}+!te7Tu*+sOZA4>4;faE4go0zl@xca2kppAM3{;m<mO
zn}X=Zp(L#ZTCQd;6ImJVrdi)wkCn}omD==J+xRE#^<~%}z56p)bXynmTDO^CV`FdB
zSk+9)@fnW~0%rd93XTc;o9q9yO@Vck$Qlocp=ThDrap>DL<%J182y7W9YhQd@iC7m
zy>arIRl|j~+yDVsvt}*)ejRF5Y>P)=v8$#RYk@+XDU+Zi+oD;%{aay}5*m~x9F!AX
zjC6{RFa{8bS`77p70PE4*FSt|^9bW6-82-(ql%1Wsr^)~EVcEbw5ZhJ4|T7lVSWdT
zwvJkXp=0o6Rs^?Vq%X<^1rohaLKILvk~H__KvybC*(S{a&uuOk*^CYl*))+zaNH!s
z??A~4+Qb`<>Q;6=YpF#(r>WVEAo`%IA6jQp7}?EovjRlefdueUylqkePU*^pr8s&R
z{u2xVTgvq6;3d6Vb_gbH(@qUY16<TQRRA~xuMFr#HC`AyqCS^_vZKs>i?OIvaUrdP
zX~^g=YC$Pj%cj>Uk&+^UvxUYd*O&&1kN0U>-yoPQW$&sEh2HV|^-xY$cP<Wy<d&N{
zioxyc6U*70(L|l%ECb|K!N~K%Rli8`6cE!^M6{us^8I4a0dx&$71rrc{;o;s>7w_4
zzS&o}7{1m#RYHV+bfTUO4kVkvc@mBx6V5SFHYJz)<9UDXa35azDbS4^->9^Jd^RNw
zjRYZ@%mMtILVP&GPk$-!<-l#rqi0FtUla(&@gpf4;A6_=iFs^KqN1ffE<<<MF5}2*
z3~y&`s?{dX(yX6L=`w|Zv>>Hmv6+&7;EiVn$}yw?a|=suhLXb{F$03>fT~YgCUQKE
zHEncD>zd@37jSIl#tbfY%xc@T>>KvD&t$n1A&iKC1A@Pnrh;di{LgmA2JtIxJmw=D
z_q^Tg_}lI}+3q^;wkQ6J-lU<DNNZg1>(vtvjuMj=3e9;6PYE@q5~kSKA@V8aHBdc-
zJR|a8*sf=o=I{yx)Sasfhjq;D0v?_W8ue%&6&oxN(4tl80F$uBfzGf{-0VQSaLOd4
zy~sALiQA+&p0G0zK1za?U?lCJhYThH2?p&lMpKl!6zV!p;(3BzV;Jj@h^c!P_pQ)m
z@>Lb2ylC9xqLSKr`>|f^rMvZ$&A}cySkr*;|A_WB*z}CrTLXCPeeLV-Rptg0jwy2i
z(}GSgEEc!YR<_bm^5LfgS80E=k{0BQ!tJlbgz0q4*T`oAB_`WxyVhfcv!$g*J=Qq>
zNvkZye(Bwx`NG@!nA;wJiPq%UD>YU(TXy@rSRwKdc{(Ihf_c3B?&|T?4~KfThyPWY
zv9*Es`LOdKSJyKSV)-E4Kb!kgN%K^MylF|rvlY0R6x)?wZ*)sb(P;;6E_=1*&5`!U
zC=}-YF2kOnBHU54JCo;~nR#bBGxN^I9F*fz5X#IH@C}rxixuo60~8O!KU5-(0FCkJ
zz4V!q{-Cq{sQmoObC15c?tr&&uRHni_U8K^yL%@;cgx#ug$q}Y?mf3Txn12n`Brs5
z|9o#OeDdQv_nv>$`zxM4I{EqJ=X)oolPtVb)#mo*s=IyumAmDQ>dt=r`E=d?ywbPO
zXJ0?Od~|i)Z>FC+yZ!#F%O{VNOwJ20-0RLHd2)KJ*uy8?H;*r`Z~KDlv*BdY-=ERi
z>g-;(xL)2}eZK5x`lp|M{P|>oxBTm$_k~Y?IJ<jt^-!6!v$NG}&p-e2>h$icJ6)cw
zPamJ%yITyEo<8^7ay)r+eJQQt;_7nw@P!wiAD;L5v!Qd##q#09H}Cp_7jV|UzPx$i
zh2^5Vxm?~}wi-@<`C)O@Kh}5eJ-YY&J0HCL=JO{%{WQ7s;my^<zSv98_mBVSr=Py{
z-n$=u`uaz2e(>HqZ}zAC)y>&B&N5v$m$%>CTt8>VF&M7ce!5OL`j=;S7=%|YKYskl
zPe0wm;jAB%QzRCf+wa$x8(tpIwz;b(PrhX4crv+jb@iBe<H^~_pGb?hXSn#v&{g%$
zz3%jflOK__KD*~$UEX}oaosG|m)D=)u3mUS=H$7vvoY&q_sMJ1lb11#n=h}vx{q$0
zuFl3=)-SxU?kDj*g3B$wy!?K1?}w8`FOvACyWCQ2ce+LoKpsDQy#C~sHcZd07FXSq
z>({!ECGqa^@#QCHl76}Sc-^N@yPr?{#$Oqyd`pkFGANk%_m|z5KmD|N?Y0f#$K5B}
zxw<>~@zIl;d$JbnE8W2eywbh+qI7S0cKywI{oG_AIu68m@-o-b^l6vq+W|SY5}#k*
zzW43*`!`Q|Fs<9~KluLfXHV7}uAlXyf5x6{?meX>DqlRhTKCu!<4|si?06e*TyDCX
ztFLbR2VS0bCyUGLzVA27&(@bepPZbWt{44Kyt(XF(+Y()PFJTtys|#K>lf+r<JDRB
z$>~a6U90tLtsUV9Lp%3SzQ1w(&E?BKoNilr`8jjiKiQ+J&%YVZzrDG-ZRwv+US5B^
z`sD0~o^Q3sxcm8DKd6(L!+JTrJ9&9;e(!bt#nYbeZTew8>t1+)Oz`=hw#j%No&C7n
z2k1zF?=@l$Q{A&-?79n^A?$`QTa9@Q<j%#W^zvIPoZJMnOe>}*O0JB=ke;IRQaL<s
z3sMkuT;vCY1Fr5f?hCASN8c>40ALU+AKi+<DrtaRxOH;y?}S!^Rw$0Wj2DiMb@1R`
zLFVpg=Ii-Fb#WrBfHegK<<qK(;ljEL)o?&YZk6-)3o8hf{e{;FTOO4hh8mM2xOg%v
z2k@BJ4-w9tby9;zJURFQ!oJKwwnew}prJcvZ_)Ia?g!n`NmGo9!X!SMq765ty9K)k
zU>9jewW@{YAxdnt<P<a}cs5fNFFI&3B<cC-*5XF^7GI$y70+OZnz)6;(L#~n0zu}R
z@zNM_Zfd^NjS=N0(dY&s^XGf|@Apj`{aL>n4uoQ#Rq-Il9cDzP+5%?XNnD5qqBTJd
zbY^as(@0k4OA_3D+4Ki?Sne4+1#FZ*dK2VOVkjYY8(4E&V~x$kPUFB@gXP8y`0Y4q
zJPFWd7@)fOKe<I<>ONLRIJYJ#C~<3l$Z>%LrAhtMqf}=YdXZn;@`(&BG*heCQIOBC
zGzfC(kPgIdmnp-oJlCZ!=qbVCy(n8Gg<9^=$_|-y%bSM>=&qlA*6erx(3eUv&uW_t
zR$9|PG7k`Qo#((=NP)9}#J?~L??gz&trHk_>MaPte%~j<pb{;nMA{80p?F214SYPX
zoGQ2~Q5y)rpThs7)}9oX55M?kbGxsE4E)C1L5NF92?*8<LYxnK;8<xct}Hy^`%5J}
z$gYDzF`K9iE-*y0wM<%a*_N%h8M<Z4I=Z^ikNTCg!be2EkbDUf&6<4j`&@`30Q+Hk
z;R=KYfXWSZ;rjN4>Ycnvl9*DKqye7bFC3)76v$zLEP^Mpm5M}P2y%3c({|jtdDH(*
zUF<sp2TXxrqcSM64#heyd=hkqv<Ug!F-oN~850?>{c(;80mIb&S{MF;<_q#<=MtFC
z!#XlS>_BW^)SQt(P%of^H+;=NQO)G#25|plK~|wN=#B+ZZ9xQ(wHr?LzH@;9wH6Zb
zPWB{*#sOjx5hU~|>=mN`x6-nN%|v-08@e%ONw(j%P1s)7liUw%jxZ&N30-X`p-2ZK
zE1MP{LfJv15Ck^87<SsZMp=El+H2kQpAsOfJ!OV(P%x;?+}~B}wBhvbh|VY+(*U8_
zLlsa%Z2p@nM=&JH{#VXh#09i8nc%M!B=Ho#s1E|*N{$tPp^U{lij^HHQIq1$z=L58
zR`Ex2TNl6%*atlBOh4Gv9Rp_B`JT8^p4Js_On-jIN|yVb8P6w^55{=)==;OjufyyI
z`*%$cj9Oj!Ust}TM-Al}>V6Q)VbznVSzkW7J)9Q_^W_%B^BV|ODn7g}CP4gcP0$aA
zW=8!pl$kOacsish)_A0dAxRZ~H&@5ll?L7Y^d1#p?qIbQKi?nkp3<EVezP}NZ~te;
zwIzWY#1lWHfkGOf*XlD={0!ZdAR4y1zv&4dgA6o6ci22L(>DF)T<12~^CTC-Z;@Q^
zjpW8Do$t_ZuZ8^E>oSDjUYEfS>yo?I_4@MW^Q+6v9vy^4VG?J`HjC2Ho-{OT(tNP_
zht%O<L;V07Z`PoB^XL??SDlT&vp(;BUwtL~ss4RXn+sn}VnA=#S|BDIoc*kCE;IZ}
zEW~oaW@*Dy<qJ*}uC6UCAUK1$tAa4;Jav~WxF}4mY|YSSi@{s4i$qf@ac}W??Gk}5
zP|4tprKm!uhqRzZBFyjcr;%Xy!5(!s+e}@|b{xxgeAO71`_EO7AmAwfdLO*|Q#CML
z(4VY9|G9DC>V5p#H|ynfcexi}(mdi0E4eVpG9Nggzkx6u!;)ITZ?HiiPU=M<@U)@h
zovsvaZgZKsA8dLyDcZcAlG3&4)x@l2Gcjuc*5cC(jByL5qawif7}9YxWwTCxpZ)^V
z7#kq&E{AL-rn{I9FNbnOybu%0AIS*iK<*F|${$<~<v<z{5&!7mDm$HNulnbozA)S%
z=zwAPLRi>!g=HpwpdyytMXwyW>Xz4f!;R+h`txs=pI_=Ld<cHkt3mpx%liRQ-BQ4s
zt69VVL{bPlDp9yxjr2kYRinKi2CA^^hksCo-6#<h5+lTCyO6Mli;yD~5V@#m804|w
zmkyA%Vg&@UUXv}Ey3OrO(dVEl!{EWzqB84~+9`wuksWP|N=O8Va2^f88=;`rWjI^J
zNDHU{AbtqlZQMCoYxr<L3IUNr?sTP}Odwc21LMO{sM6!CM&QpBdx1c&M0U*~gOF^>
zt!kL{TcW<#tf0aWFk5HW5j}TU&n5xg1L~mK*JHc1@B}V!AyQJ}Edd&H%0%1=o|sPA
zCBjgM2NDPcI}9s5BB-TR7$dKc-O2`qY!o#qYh*hqN_&@R1fn-qnS;I{E>`V%P(C&X
zqLiHsIV0pG3<vt@=qg;2miiTo&<Ht1Y10Gq%VVslo$&NJV!jkEn)yQqS-?r@pb0;l
zq&TDeIF-?7QX<u9z=u~3#R6hITd!j24^Df6G8PQE06SWE?XoGTfvVyR`S!eoY#_5<
zlmJU+Un+{5q**}Rrfk+2kQAhNf(9V>iK-IAKoB6sIvLnVb30$Sh6?vA&f9jj^br~x
z`8D__HAflojyycL!qs9*n}=x;^saddq0!o?V5b!oKnElifikhQcQ-~%hJDpCfVy(l
z7A|Kk!=mA%7WK3geCl#o6ldv-<#PwBFN##JNcBpnUX$uoqk0`>RX4Jap7^~BY=c1d
zO2}Rd*{eqOTF72CvM2VCcdBxDT_*T_S>R<rTGk|cUHP~|_8gCaEG1jWUJ2Q2A^XNv
zbRz?jebF3YEo85R?6r`+60+AM`+;gvmvL6%W|6x_M>kQgNytLgZCPj`ds!Ak2ZijV
zbWlR}ES?m}UX$#Vko_=gLiUPeuZ8Rt$zBWDYax3rWUoo~!~C{oE@ZET>=nsglkBZ>
zBM~QC8|g{;tmL(z<h7vWwV>p+pyainK%IJcEogZyXn8GYc`aypE$G5uc`Ycu7PRpA
zHaG1|53dC+uLUiy1-(;<$i$w*?wjn+S2R>gCKhi>Jd0tC04l~e@|8D$Zf}4}*SoOD
zMnWaIq8C2$lc6+*YS$qMuy9#a;RLQ?Y-GSnr-$_^(^TcI#syU434wf?>r>16RI)zX
z${QFQ*XP3JGH@-4*1TJYyho@zD&ak?9o1T$<2}RdHr}Jjdn%`7Tny79-1%O2t0xDc
zjQztVz^d7D=j$C7<9UMk+Nlsh9OxZrI|w#IDL8i4B(PH2g=2<10S1boIQWQoN3FIF
zs<~>LoIQ{#tHb^xlt>yYc&TT)1ImGho+ZgIsknsUB(bw*xI+zhWN0Dq1I4{bN-CCC
z+R4g;UQ^pADYz_HnlsnrVGth+(VppUS?S11JH9v{d@q>U;Cs>CK^2`lu-`&=Nt*>|
zx-x`Zc8ph!J)AA)9x&S`!bmx1r#wDqftZ6KMc9!{pHPpu;$CyfLX81u1{ayE+)g7P
zOTjxP+XT;1k2VzA@U;8XaXwaIFmpiy`)9G$U_d%>uIdvkLMj-Nr(1CavmM4xbL@uE
z{(GkXB5+>4x4`^9*T5eSkmc}*J1EEBlJ*Y-Lz2J)Da5T=YK&9ERGy7itnCs~W9czd
zHt*M;uP=MNgl|6Mfv^eQnaLV6o@*?4NVI^#M+{AmeQOy196dVt?Kp7|Y`F@#Oduba
zl@PLwKN>%CWiPxXX?qk<!=E(ABEUgOP`Gwlaw9v#gbxbAG<*Pot@|=4JGQjn@2QvM
z^tqU5y|Ky2c4Do^uFsbSqC7NuV{`j`AG+Rp&O9dA^MeUGD#f>kN?YdyHmA1doFDzs
z?Q(8N`!TP?zDwJgnlD=g52tp!gSs6C&X8_16j6#tc8l0`z@MpL8GGZ=8rtnTXJ~d3
zFRaUxu5*57%Q|BP(Q9@FcZe&Z0v=h4D2NABbX>}AjpZB>!^~wr);l|B6Kb4aX?(=p
zpV`6}cw69M=jdWG_)$#>k`Kx-@!E&&WX_M-NMQ4Xzq|OEnlC)mH%k|LB=3d+4f5>e
zV3q(Falq#s`CQHflFDs3W*5oP$7KEiyRaxdKIeSttOAU5=I48S%qblTyU>gp<O5dH
zMP|T?{AWgVcW(Ie$5-VJ(YW?lQdB^q%`ii=FQMFCLgc<4oYkg(>?L$KUh{9EUHUuv
zgpG^4n5It{#NG2RW8%NEcO^@5<3{vX5I#35fJ9<DI_lDg_Q?@_@U6{}T?&^*wrbp7
zzTSK<K{jiXM`Ou*s8s|(5KCeqkju*`^+zw_65>C+h_CJA5_qG5`9FOL94)-Fe3WJR
zh`E2o<wJ7*(aT4Y{?nHaJ7xX$(_b#(7IOJoa0|ZxQ3y#xFm5#vIv(uF{L!ONhAcj?
zw8=~uNCR{>&5a4-hvzOeBy>bG0YDN&Cj%um4jhuPh-%3MmZX&2DRZFA%|hgs6AnS<
zOPw#6jr8QkBL%O+C3oG`b4##avT?a0xiu5^rj6R&GI<$5e2Vj$SSXr44ccIkDqt&!
z$8+|L1hj*i`pS+5k^wAC89J3f<+~B*5I5l#S>**h5!ooSnc*EiRNTi_h+$4>XfT5p
zj0y5cqlM5NH`{qSH=D!xeFwTi;t8Um1(-1)q|uQG&YkUK>oQ61N%EyH1rgBPTe}&E
z59~@Na(IYT>_nzw58F6Nd`xY9KDV*_yTipKEvhDVDD>?Qwr-KVR3R46fGui`{DP7#
zsLE?5E{`Of1&91T{4&XiPlAL7_*F9TAQWD_g7tv72tWF2wijCj)B%9{2AIR>jn^=M
zDdf9PlT3);cobV4iltQMcketMax*+E7QeCVK+~WS4ZJCXXu$Xp1Zd>}Pn6_3Mm903
z*G5#aR_W-$fU9JVg`h(s0`}Mi9JG;|nvF#r(u{TW_rE{By9JDq&3ZGDjpm~C2`-Ch
z)mjG*Qfvr=F<~BVm7Nz5iD{%JLNHgqt~PsB_>%4tb(~Z3(KT=ddUwiuNhqdOuhks(
zntx$+32zc&pu5}*;iFn;SE$!2=JO*FdJYu!4K&M$LffM!tGHJW<pF}MBTGg(@bUy1
z6~@^o%W^_M6A{F~u@=gUQW{n8xml$-G3Ul+qE(Fscr+lxR7P0;%pYsHZ^iLZip1iY
z!_l4@(R}5aQU-_KrHafG6Oim)1#k7{(U9?+Pcu5DIwNKw$rTNV%02_1-HDFeJ2Nk&
z88hc|&XJ1D8K<mK=j#~_1Ab{%gfvo`CXOwXXmimsM;H6(Aoh$<Eq;(SAAM95FuxB9
zup$-`%1UH(kU`?3xulJN*g3n7IF2Wl>0@46(H+b5B%6WcIvW)E$Rb_Dzl;gaBBG62
z6s;JGDf@(L<lsT+(Me^>hS!sEM?X!6_pk4+(0~m>L<r4bYxy}6=OMM*o-CiC?UrcA
zWj;(K-gGe^gWmEaf6KG|qXfO<+5WFI&Q7wxS-yc;8k8k#KY)?n^sKdo8#)2cMQ<XK
zE@b-C%U>?I$T^ctxlo_#U=TBCyeWb2g4|I6PjX8EoB+=^6~LdV9zkc*<b3wF;)R@g
zu^7jgqv>4(Li%<Qxr949=1Fepm{W^J6<Vfy#FGs_0{2^T$f~zn63gvUxRigIZMw0P
z5A2hhXsju>4T?9vZ*{wG#PyeLgX$e)AE9=_^L5`z6G4nHoyipoP5%1C&l-CS8=B<X
z*a96Rrk%rYnl_MQVgc?`ERDA`(5tEgqYD`zCk7r<2+#43)mGUI^|u*wlRP{QUX!OU
zpmsSZVeLSw4MBeS8G>9A5|&2AOP5E<<<$rj#)dkPL~GNYqR<Tw9EQKa$*n{RBoPUe
z9LWR%IT9!g56DYa&nbjMjOC`aThS}J-J=hWlh*`#SqOwpFBY&1A`sbcj4xhqjwYT;
zG`LaMSEJ21E+mRZtz~VDo#d_A3t4bA(s+`_FNyNx$JjCAE(6GcG!o@8YPdB>UW?l5
zxvr=8ht4(bY0AG|4UzVZ?fim)vYBy&vB$=>P=-Xh*qkC!d`xbc2~T1uN)k7yfg}n8
zV^V=6W8V2OW<Zmbx(qx@6wKlq6gU*U8cAEad~US~FTehJtIY@c3@qHPnRARFyYd`m
zICSS{`ps6FDyWFx*jz7u4;r1s;QRsL&&=J6?|cr_I4GN9Fwyl!;Ieg>r}reO6Lva%
zhD!=vK>pt4)Uh0I<z)UBToNm?(=EC0uU_G$ebv<qls2M2Nnp!bdrVy>QguDuEQgy|
zZg#{Y-#voRB>4nFcS8Pm5`3p@B}OXA@EI{ssK%$e+Z{%1$KU%MGRiSha~}zEk9u6w
znk(TovHRCr2|sX5J5ri-a-h>=lyGMNbE4u2Bj3)YV_>gYfJ~Lm!{MES8&m+XBl!*e
z9*v$f42I!-F%C{S4)XlZ3UWp{Mrb}vg!X4ewj=xg;u>CFzS`nSB0JFgxX%CQ)a4FA
z%gwR=%puJT92XE9&Xpu4hNey1<1(x7(=a&>>d%e&0*Yz)oTz45rMk&6NnrFlN$j^&
z<~n_4jZ%_XAtZcu1-PFg!{OF_=CwwrHGPJSDm#<Jme0xy#N%h3jJEC#0zSotVKRrF
z^Rl{ZCW1F!%-Thp-g}i+(E;YbQG#`nharG4DzJz%+T6C*D#7MC{d*~)%2wjsZ#-Il
zUrs{Kzv4_@?~5ANLKfdBHg%RM{1g+NvBdJIqPK~VmT|ofUdBK2)g#H`NTLaZ=_D@c
zGs@V|=C&DAF)Wmhj7r&d=v~bM)yO6M{<uQ3wA5Ytyo_R$vwksc8Fxqo@}wA%b1#pg
zn|0JaPAfm|_Mqb6d5Y$6B}6Nwv4j}-(YpRxVBxwV4~3iHJWv}apVj;R*nm^H`@)ir
zm6^YHX{a%=KqYldI|G-rY;3T1r1y*RthwAABnO}5Hr<~2;#286VJXJ`aiEYWS=v|I
zmJ_zmSL^z(jXW8eSJ9-fH6Ouai@i9zFz=cif5}rXZQPg_Ef<zI#$__}mcCqos~f!r
zs`OA1Xxtq#aCPNL1j<tQ;8wi<YSE^ho0@pQGGr><hJK#Ulj)LymEBVvRo(ttg}V!*
zvQG`_Z`oABr?YxG%h{^y&Wd>!X^$f9dDQR#tW3C-v<f13*3ByFw{48abJ}d`=8Tx*
zW+mo1^+(;tWm`8ZX1P0fqZ+DuAm2IYt6wO&RMaYHwY3*VE*GU*mA1bN9o?X#4Hn3y
zIhVH8T>EI#@qQ2z-7HOCM-2}~$Ayf}DmME2tbG?l*&nV>fXTRiwUUmpbX=bWjHyIF
zZ*Xvl>q?HLzqSL*pAW3mab4!Xb?2=FIX33)>~h&{%=%XEJqt`Pm7eEbm+HB*-ZG+`
z56DrPw~KYxt$7;!sGUE5VLL;`Zw9`c&96(Mzg|kWQ?e6JR5pGP|1p;KJcxd<MqPCA
zGNsRE%2QNj*_AZEp2p3euRBj->3iCR)~*KO^*kPTkFC89nm=kpUY9f3NPj-XF1z?@
zb~JY}lh0{xwBAf)IU90*JI+t18SilBZ2Kc|4`)*%fBMTD`f$2J*?bY}f#L*y_t1JR
zO5+IHdw4Fcz~>opo^j^$B}Sn!Mr*!7{5AicS{P9dQD2rNG1lx;Ro+gZr{(xm%HlUj
z)O>OEx(ixez#YVDJtqe7e<|3l1v@KvE!QpOmO>*5`aKbBH=(SF>j`0tb{35W!9>0&
z#6%&`CtZr>g1T2b1&Wv}%b-&*ky)Y)NUDR)f#7#kE`S<Vok5q2>Q1@SN-H>%R~0A`
zC%hC)idHLRY81-o99;zoL=nJ@5GgJULislmjsMVzH%C7A-Qk?<=E|KIqx^caF`+ft
z$ydzrgEnBxLC%;kPM|yOcYzi}L9(ZYF?^84eTJC_hJXetNh=(ZW?G~vvPT~3kVBkM
zP8l+zMw}S!4i*QUD)c5kSMk|dLOhGk(v4@%61KeSf%a1=6A_)LbP-D4W*-wO3^F3f
zf82$TcCoc-7X;FOI>lk`k_tm<mrDBF2&OZtHJWz<o@^FdaqPo$^qiAVxJ!<3N!0ad
zs|!=RP|7o}53^6c-(7C<ilLCy25&V9t8!0IDVal-r~+AaZHS#B)X?b?tyT&)OSFYi
z9mK9?RF~=z@>gxRt5`b=4a_2BfC=fVO^)7?LZpH#F6l`ijcibHZ^uLnl~}Oz)V*|=
zBT*YA6zU>iJ2${Aw7GDAhRE<-rkTQKh*Ot0DF5xsWjN}S#I+#k(hJ0);8lhSoI_d<
zVZ|+8iq&!#)2OOrRYwEeSp(hDz+EmvW8XrmBxh7H0LonWR$nMRc_XSLQN0n>8Bsln
z>IPBIirkjyNYdzxrfyqNHZ=(>Q{?DLRJRf}VmMZp1Ek5_39X;h<$=DI1;GOe8>fY^
z&Is$5t}wHQg|Pjtw3r%=Oq#+bZ8Ew#($yJVX(i>hL*RHeZnne5fvU+%p^@Zfu$le$
zCGJ@K&CAyLQNtV{ei*~#O|1-XezRi?jNhtk!LM&tbIX_1%)r&fl+7+F>_if=fdb4?
zTeL+)vW>k)KrW#-$tp*4Ax8GUCS&#2$o&eZP^_ITg>h))CI-8Kz6Uj_zR`CzLsw&d
z7}co`A8iU2BzP6(-LEMC&aw)E`2Wk875A<RUm#E#EVjA<r4h(3b_S`u<IrubpiZGD
zvwIbv8?Z83qA@Q0j&(nmsoa`yoocyq^3{T6Hi#Z2p`|{eb#b4%vLB<OB`(c*rO>Dn
zmP)fTS2EqB4p^mxFMzYl0&9W{>EWmMbo9G`DvGV~y%K~XaIdIlvR!MYQ`s7qyQ;$r
zB6Px1q$j4N>ut=D##r>^9jJ0qn|TRu)%7w$7``3CUuwt{?vhKYbkNZw0Y?%Y=8Awx
z6N7ngh{^5}HWW3Eo4ppSJlGq<`x^Ps2_OC57?vcw_Du4Dj6pW8xv0(oS&Qy8P2^lC
zkF)q9v1XF&29&9=u_29natZg{SD`&|ZgV4+8)VbPOwvl=(jpp{J7xq;gp4(Sio7*D
zyqY*tO0*lBn#Y$*P?c;#?i3p>%R)OqF9%w-^vo@F7l4nK6>cIDO*JKgY8vsdM(!i&
z$07(`g&+m|5hj61KM5R!O2=dpp5t=&nc!`22_b5uUR<CxY89sm71|VcV7<(jO0T;V
zIdNe{sM!n2z+IW=V0Yl9@<h|>M3o<qS_ofKsdXgEl<Juhu43aZzz7u(7;Ktj(>$Bz
z*fiF7Tb+q8fTWU}sgyjaWYu0tU^qF#`Zmu-dN$Itk$#hUp+44aM}j#L%#mR3t@xP^
zTG38+nKhFtS!|_4E7h@;Zlwo_RXqsiK(OYM;?b52=HNZU3(s(o6U}*u<n7O6FMEwU
zQ_>iLUIw^E)}2~pAAg4=&<l=2T^Qy9_WPRM5Qr5bRhZjKBmk|%VhS%MAOl|^ml%m%
zADJ!bZG;q^>Y@lKjjKasDB?7<-ue**TpcNb7pR8?U9p5TMV)0w9U}(_r(Px&gqdx1
zUA!}tH{T4>+G|mpbss-mDGbVD57m1Q?LkCel03|R;UUid6TW1%A?D`@7ftbD4Fvu>
zd;3=(1fRqzp0$H2BUMy0y>5qIY4VG0T!gpLtm-vlso19wfS*v>LsCRMNU7L<w{liS
zIQa_W^iax3h+|IcC8vi5sENGK0Y=sR0Va{iXD%<42Y~nG2bc`^P#>Z+t|q<dL(EKw
zuWQx$UP44Z$iC;fRk^H>5?hqlR}<l=-?B|jp$!^SX!Rir%g3j<Xvy-RiHWW0N!!C{
zdQ>{n)Hy}1EIPKi4MnB1uh!P%?!@Lx@q<jG_2RAd6Zadf$A`F^pEl^8YDV+t)?X1_
zu@lH^Gc?0+H80J4P<l}gv4RN8)0IB<vXKvo6E*}9r2W+|N`jGdD|6P+bMO@a-FS=O
z6nF{ep-yi{b5>Y3O2;)nVEkAEgp~kdR0BO@H`*8x6SC0<F@hD|1@=GSTve+)q>`8e
zEKPf8ajs0`%iG%h>H|=Po5Fa%utcnnHOoUmokv9lwc$Q)TN^&N+Ipeq`fjPcMt{-7
zxyV|5VQuLW6fa>1{E(`Z&pYe3@W7gru6bvHeGE7qw4x8(uG`3J%7~hcDuFvt#5C6L
zSDVRQ6jG@WJMtIgkXxAvi7Jq>g?WySLPcaI07y(Y0yN{H`85@L2Fcha<&6l(op_eJ
zq)pz^(t&r?91Er;I#qYtYm~WGoAF)d1tf45c~n&%f@eijC#KgXTUPXe6$Ons8d%lb
zs&5Zh#dFKu9yAD2QeGv!>l}f>jUI^oL1S2+N>)5gipr)0x;?12x4PnPt}F}_URro)
zflFq5;Nkn{4W6Teq=z-Y=bP74D!=+gYS;nyWYZ+s;Kc7blF&qu7i&k-+UNTRGy(K@
zz}Tx^3dc!dtOkxSjNr&)xojpI$FR*P8-DC7+N0N|b1j5aO|6YuDJSc;mUEp;pYL*-
zX%R58CtsE|(MM&C#`w4>$8+Y6ezXMk=2~;k?#A&C3wiPD1Q<byV=xA+&Y7Pkn<c4Q
zhl5^uzqTM2wrFi(Y;4hG8-7I&>L0&*|IvSEely?^<BD(E-x&ZTtlF~^9E(Cfwq3)n
zJ|M>fw-KQn;Z`7eM#>a-!g-=ZA}KlgPTm8kK)#1)cHCsm!HhJyll$2uG11s<3qJl}
z3aGK1`vDZsl3qJbXz^fo_ykolL$zSVHkMpl?sPmg#EXun+7XLGtECxt1Tw#HQZZ1d
z2lUm(6H{E^vyj`Rql&l%s`eY_7Q=30$<t9q6`n~mxE2Mc(j&G>f%2e6^xY7hT~_!<
z^CCg8l&&u~(r~RR;@UPt2vhepU~*7lp^JdcTU$4PVvIos5B#R5Gl!HIXDR!J<L?nb
zDe9$zA9%<ps?Kq>n^8cmKi|G7L4k^}W=v-h<`7(oFao@k=2&BXMp~J7?;N=y`bG{X
zbfX(`#zNR*_dOFssDm>zZVsMj(Q+3AB9?Xs1>!L!2+&L11qB6}EsX<G8aEw~G{$N9
z)9h&A5+2=@ayvcZCv0fbL|WO8LKC|1=tBty7C9;eM6k*@V4EEfkU$ef+VT{4<T3Av
z>y^y3sbYc<69+&yNQ`hu$1Esm4#p>((W%c>CmgI)nM7UYn*{~H&;YLhR|iG|V!Ky$
zh5kW=r~O?3P(ZK0ZsgrW3r2d;9B$1kkCSmX*q?P~h`0GItMAb(2uv`0Q3EhR>5a@i
zv4&Vv9h*vC3wouHpQ71;d2G~jMy*JeA%3y%M?A}A9V~2|B{j~cR-Zsx*59N4Pm;k$
z041gkIf<f<eAP(fNSegmP--|2lClnzogxZj`VJzXd7~FRdtsi;1(Pd4lqGDgao9r|
zNBD$!Lc|~z+PY`ExJ^WoMpqDOCO-|Q?1mum@zqnB=fDulAaOP1Bf>t}@i!{Ts)$$d
zi5*u*eu=?G^57Vi4MvvCXugUz3$2H?uL};o_{E-$b&Hs2ep3y<$pnkCbzS$HrqIk0
z6(|IpG+Zk2s>nnNirBQp3#p;#f@bD9kvUY;4o)NvB6Fkx;Yv#uS_MtvyKcNocE@N0
z7@h<$V)54T(Xw!sg@U&14r_z6Hq;SJ-P4ed{b7V~B!soWu??h0cI*!$s3Sq$noD8-
zIx(n5bcc|V)|0T$V{f>(m%H0E#6?yu5({Tj3HO$VV{bV2hTF7+yKCcAchiuhT#BmN
zHhvQeP8295Is(81cKDidC6O0G;}mBX`$!PACpiv(BYh|ijCAx>=F7?B<-cOBEXBMF
zlwtak@Vd}cJBWk!&<LLx#?#)Ng&FUeeuTI2_Ab-=O+Hw@fBo|7zg(=|wN9oYCUhpG
z<`cOEeqc@H`%6iMu}Bn7en^0E9YI|A2b(jlCfeY>GZQ5kUO6*WVxDp#(yxg<*g=9&
z9g2`3@lhK&DQ3=^hhZza3%_lbhO<sjLvi(u23%(FOt{vBG|lI7#C%pvWNfCCK5pk!
zN7l!oJ{TLw8FCUzG?@)Eq-w4T+UAHrH4M4%0!FQ)R9A*X1T%s{&T^#j<`jd$#TGQe
z4)7jRuJiLiW~9!ajaq1XmTBBb<2B;?(O6V{&a6k9-wCD_3!o+ex#qMemw{@&T1%pE
zBJEW{F#&xj(#EopP>N>@3Oq6cB@mQz5?~+xmOmyi{qiEMggKNIp$cfz2FP0Yw+PUV
z>Yg@@_-ZkcM<QnBnH5_@{u^79DwUlpnq}A{7>;mV^y&S}Z?F7=)@mqbN|iMe%_Z&@
zkdyE`?K5@o_Gq@V#SkJM8>$D%<!O0+W-^j1XjrsNAI@D5y%v2WCy}H`hJjH6C<jjY
zUNY!jl4<dErOk&@gA<eHd>)+6CJ>Fnx{uInMb$~G%<)QVj*c8CEp(;r6oHeL9hUUO
z7~g3t4>NnbOrv-Pn9Gl;0L@ZSX!Xnx4fC~Pv<Q8|QQfuC&3&<uDD08G5MsCyVR!?S
zzCqtUjo@lC?+}6ONVYxzE_7fK4jG+4Je}w2?&mtzyy<tR-@jaeLuWIU0vK+A5k%fe
z`FWv1E`K+W^iAMD55hVp3CtZ%*X;0PA=on%6NyMBK!r-jf!TK1!o3uH=VeP`;m2If
zT~?++Crywu0!5!A6<7Gs;^#>FgGPsPSC(}b%2bfw`opn7jyE>qhNmICk;$*AJX2Ya
z2>~evU2Z7T0=G@@@#632-x>w@O#z#qQ5QaiQUM7dxr_qr_w#QZxA|L|wUrj!)?dig
zIc{?Q>^sK|bv{eSCw8aReM6gNeBo4d<@$=lizpicAd2Jii522g@Pi_>4Qvch$M~81
z0jcJLy_0wA*QZCn<YDL>SX(WW3U^V;Pn|$e|4%E<NbvFd3-jUn&VX$oa2Fo$Q=gJz
zqsm{W{A}VYi(#C7E6Z-R0mV_`klAH*g$Eo6;Pg~F5@#M?5R*Ngwn-9p*oKR&Tz;Cv
z*R|Vm>`80D2@vA{mlR!Em<1Ym*xI$kkAG2~DzH+TKtFYFTh6o>B@lF$`L<Ky)g!AK
z0-+V6InbwoyS6z;-#U&!T_J-5+eUDp4rW%x^}cvwaWeloi5&zX57>L)2@pgbQs3-4
z9%;a~{|LCqLdB%G$ATLJDixU^u-*wT1(00IPPmDnG&K}s&{3aBd{)2!0v`eDA>6|=
z*9n(MAl{NNk79G0d~28kSwL0fizc+}nXf~>#UtN2iJrVF<+2?o^Q^9wy>v0`1nA5~
zIu?ta;zo_2Q_B71O9ugJVt2FW@#RaT7twzsKMBRx0(zoz(=oBT6NHo7&UNfuM?on1
z*4v(3GWr00t4Pt6z@h4>?Bt=O&>(`;9XCmM9vj5IdkyI2PHGgzz9!%ctyPIE*2;vA
z1+|5vx-w^V9V!qQvl{K(yY7B7y^4|}*aRarWSdZjm-m-`Z3_X1wA%s}01*oNt>7aM
zy~-?NK(nSoC<L1d(Oh-JM($i+7UNKPRF(is7@nX(r@hobY!Ea-AUqLgx+Y=rm3N@r
zNa15$-#mJ1G*OE&^5hW|^SeQ=uRM&9Cy_XYaL?+D?-XnAtoCRW84H+_TmXPXGc+A+
zJQwP_0W9O#8|?41a7^gVywPMOPp1p&Ms{>1+qUyqCw&R;I8-RA-$k@3%mK|uN)Rhi
zjkEckjS<|c$&+nE2#tmVIR`M$qH%<|a0H%$!IF|_r<|E6?N}PR0b|NB=n$O9)FN}E
zgHwf+e1{>hpA`8GSb<!vG|$qGtem&XIjgl}ttav+a2hT=NJnlx?YxZryY{1z%adG=
zWb`EC6v>OiNuR7wGLJo(V??=`&n>AD<{pG-N1x*u)1YXl%0TT;lFO0;Ib`}L(2gX<
zGYMa08Hu_jgl9>Z<z2V}SAME0{S*`Z2)t{MotzVD-U`c!1*^d^7W6HR1}uqZ5_{G0
zRm;&aM;7E*5X+B_6&Pm|dKB@e>E-zD%29(-I=~h}YiSpRS_|wsj9_|6Zka5`Hj|Ll
zH{fRJ9(~^tPFOGr0krpGE*P;zqV9)4w9QZ|JeXiXU9<|CsTedUFgI@W#Ua$ftRqUm
z`f?;2L?1IkKI**GXSzMc7yTcst#6gg$*MbHWWbpO@a5yivUyBRe{{u3Md*SAw0+ds
zjYcS7!&*bq$CTwc=7im~BvzKN&l)j+Q^X3Ot1E~6n5EqY>(F-F?PO}$2JBPmY>DvG
zq6KRks|FT`zCH5=$>~rnejy~vArek%${4SbIaP(jo6tPEBJ<~G)%Fwe*I2#`59NC3
zo6+Uv*(v75wXo`WkC1n2j#3GrL06=vbEM$?!2;aWqNavOYFtMd3rHj2nqkyS8CsKA
zu9EJvaCH|`49i>tx!MG<n0HN|QtLaj=}2{-D)+2~tDw$wUb}DdHX_5q$r58_;rUJz
zR;of(tX+t#4itXL_(VfOMkge0E23x39c%7cb7wU-Rwyezv59<z>8!Pu&RR<~>ySa9
z0{E3cc)jWxJ~k!>AomZG?pg0TSQWkB*-)2U`@33aBPzn?n#%&F+rRg+Ag$e67QA4l
zR&y*d{m6w@MaM#`7$S+GBww)5{+LyN7OEB$a8d1iYo5`7_j;mn)5paC=E7gr^UI`E
z!sok2NV2hE>m3PY3_WK<Zynb(e&Dt#+CcR-P&f0D!<sXJ$-KRBK6?eMCYv)9sqB()
zRzXT>0ZuO$Y)1NJGLAp7S?lvUlYM!c;ZH!3=!GY@bt$oGIM!%8!~Awa`pt|)3+<h=
z>6^saB2~e;kvNzJy*O-rbf}7QMf=>^43-#Bbo9%IRVL&asEH52^*n52TvK~`jQ4en
zM^IY&99c24r9p0qPzw4u&zW5Otx@>_`;TC^sr_>+?Hd^`^bXiIi$_XliwBp28*@rE
z*vaYpOGZq7x3vX;rHo$t5<hKxkFWpl`y{V#8ra|t(~A^+r^r+?y+Vyk4QzzAXwZw5
z&K?RzZw?e-f$<m%G)E;UHWmr{S=>tTN>3f*on~1SZ1FP6a;X)RJ$Wl_xzylCq23Dh
zOQESm$fz_xwOuFAQj@b%{V3J3)Z#~}mdCPWegB<*dH>zzI;Cbw9}Jz1a2@2a53m3B
zcj$zWD|(XwkNs&a;5d8J>OFL0j;_4Xy0At|7_3pozA;8A#ZoMYnI+A)$cV1ryxc*e
zIGvl-pPSO3;|@Ttx|e@E7vGEj8u@&c+Hlf*nm&GaiIW(F98ALhJr|(Yyr#z0LkjIZ
zpxHV<cuZw}0I_R5KqFAooTB3D0^Vy#yrg&p%SjbcmrwaVZ|8NW*i%U2qP{)m{g28a
zwx9kKoUoWj4ceykwv>GPSpr+5k7qR6+dStzT88WA(@42rhUPcQN;$8-luiBB(y&8T
z>T4}*JiBh~Q|4^r;L=tjOno>)j!BmDM5=E)jWo6z6`W)~v*`6mL2N}Pq<vAbaB#Jl
zXBx|I$!hV9%$4Lb<-teK{Q@U@@b)cE2*iJ{5^X&_y_>gzM~|PMT|kU$BJ2<Bqkx=B
zJe~#?{2YQdPUMcnNx^PJ_^Bo|tTXX{1`9G%dCNku1><(g5b6ffwtxjKd}#i^$RqMe
z3_Ck|A~I#7qj0$;o13x#firxs<k&V}I?h~pOCc$ZE5JFw+!0p^Xo&*m4pPqwWF=W3
z$Wa=3M9i;(L)NTF$0C70CbCE|Rjg{X@zOn-L)&b2T(6W*(8iCJP0pT2AuSNhihLVd
zUQyjd%>fWG`4UNJM?(8(MBdrH7j>h_O{N_eUdW(-#Frc$(2;Ky3zTA_Q=#;=5U?A9
zmeS32Y_xvBo)V2AM@;cmHeY6q9dSg#*%OgOcjSVrqrN~-Gu_c`Nsoyg3hfi81RZbm
zN4l#tD*;>_rN+3i#4Z|snUGCRbuHKGTo7JPYNa}q>Nz5^8gwkUj0xj_*^W{CyLUf)
zW*i&7IH@1$BuRnCj_R~RSWT2qKqcgPtmr=cOoWH099t7on^qv_K&06X1=aGT0pqD~
zn5clF8N>mfk*dlW<HXR{h2mZF>54MVX`h4kaD5v2;oJs<uC@qtTq-!7Q?8@Pw7F5=
z;E_?!D5g4A%cF)*YYzAt8loc*?=_=OE5{3{n9)`i&U$!3rK43adZdZ0xi#WRnotNy
z6kz-e8uakg!<?yV1q!DaKvZ`if&&p8-*>E4#28m<ACT<oSoDSj9h;^esYilI02=sI
z9BAM{19p`4na?N~dG*WzP8dw<skJky?!p2nJga+>-ia3UTjC6>wvj0f9gk{9M8`p@
zXmuZCh-z|Vkbpk~b9K^XQq&COX~jGSL}&Hn*z%|ff6U^}C9Woz25sp(cH@w2{&2X|
z44<f%k_4LOFLRUifj@!&=I9E$RIq7YVtI&VJYe{c<Ra1-kpZWz*ZAY#$Pi)u{IYOu
zG^lt6$2iUE`<R9Bx8K5Zf%y6b=h*VV-(jSXim7VC^jc`?B4$P((}VOyY4IWB*!=)r
z`U6aYVSbB#u0KDko9Y7?&k<sk2mYSbosyo1@FXoE0lg2NC0G;%q{`fu?IS*rhp?18
z@lYaQzDS}>z>o#9XZ1X4$`h8z1N|-joCJ8_@7h&%`wSArvS|t{TjgelJZdjDdPJ(6
zWiUujV}p4R&Cm;f@$WwT{)fL@ixQNqR8^jx3J~+~>v?&!;|@T*KSUgkE>!Ths`jrU
zx+v~j{F|fk9A%?|zg6pp8RVgvM}&<_1YJBP#73?lACD&+3|GFs=>4zu0QUFSZQFnI
z$K&z3>EXY%=^s$94wKc_D71ipo5nMW9A1vUxu%Hx_fkYOY)B%aS0wqvA74JrforOy
z|6Z!3R5nzJ(yplT!{O7rcMEM!*Tjkcy~K&C8{#Ah3vqt^?z>Amq~U3*aNAGtsy9XE
zKESK&W)7`?Zi#VAc%#gmvUrLdgWi$6MJ0_}xGhT@XJ2y>QzL@N`8DM`to$T*WH{Cd
zuiC!oy=O5bemKhKK8<I-@qbYA-KWbl|8J&o?i>oU&$-;~!$;A*MGf~9!f<dIXI~tC
z$IxJ+jgua!a(C3c@^}}IEx^DIoz`pJ>+mO?N~TMD)n<xitywrgt?D_}vZ9yy6}^mq
z^gRXmf;rs_1z^qD#dJMAptw45Tw;7m5@;*dLLQR{G#0ed20?9Zi~>Q9^Hw}SyWPeL
zSXh2^hI;D_irB_Oi(fkG6i1BZIOZZ#`X$~HlYQvIw=IJM<9NIp7|AdMh!RBREQmpM
zSyNKAFxHt^AlVsw;OxdzwFKn$O3aYb6A>m7-XIArZ3+ZFT6qlW7AAXwZpSN6N>p5l
ziT=&R{P@i2=u5=hoD}jY2EG`@n@LU<a(IwN7|vW^`$d$XT&R|Vb7W{#`%WV)q0#*T
zT^N<2Vz<l5YUiwWo&XWF6D(v|6a=}J)<_*9JGfi94mw%pY$j2geise@kWv&rg+B9+
z=t3Ee63jwSDs%PBl^+W9lt0ZlD~HREL;MXF#gY<aHJTee^m6B11Eq4YLsrzxoTAJZ
zs1$#`%ztrDO<n`k2+gERLF*JD|Lv8Md#Lw3DZ3?651{Rowt*aknqXxj38H-nZl90_
z8ED>HBBU22(m7C>$Yt=}a%&jL<~@BXsFNA-5s3vz7_@UJlrG{tRZPpjP8m4@`iiMM
zUJ$18cp(GUt(po*q~;n&O{v2UQ-NR!I%J{GG^#lN#IYv8vy`W^@&M--{{DoPTs}Xc
zZ7BZr{ku<o`s1h9E2XKNe?2}csEO|jA|cHLmaZ1`Gc_FejL{p%O!E`OZyYl%o|%fC
z4X2HVBd*G=9X##9_Yr24s5t@JFrw(gjlV*2Y9o6Z?F--;o*2D~v9J+pL;aZ`b;u}p
z$U8M0c>bIyvaTR|7O+KH0c#Ca4%Fw1Sq=*PXBxFAOi2khRWWNMI`9yb$X>blME8NA
zd3?)IUhfRja!{Y!IBrOi$D&`8sIR`4yHw2;l$!jYh9@-~so_Ztr{PiOOe(fIo%X%E
z*y-i2u>LeXB%eymxmN}mtKzq3qk%ITkXWXm4f87eW}8cdj2mS2Aggr%q3RQ}7tA0H
zZdA$!uwGeQoOn|<W){$l{pthtK22>q_I~!meDT>W3h3hh29zZ1=hyv-ZuZfhj?1u(
zzJ7GEyWMPjUjZ)AZa-ReWjrI7+zvRh#CY#v+G=sEdwDy(<JH?wUkPC<iN=lLN24|A
zj(AP%_31Cu@zO#`%z18xaxWCCJ3$WStP2hMccB<I1ke$C&XfzJ;_$r#O1mL{(U2ki
z+_v3;|59m`LE@BH^seM8mOGNG15D(!!&6@ahSm5s1i@grBO*IMH%xOkh)#`Ws9r10
zg?sO~Bi1R<!76bt2}oqn7`0$B=aL5C<hVO1Y$}GGXRPE-i<Lmo*Oq9K7?h^p$!uc9
zBh@~`5JPFg(Gt*>ooEN*EE-~l390z`fmu>Wr6y*`*{M<wmFZN8-&<6u@{J|15ooU`
z<D8f3`%EzOQhM2R0tHf`7*<7nQiw$iK(<y8wkMiKhf*gRwdb*%HLuvOWmcv|-i7MA
zku7Sb*eoSHZyoG=R2m#`C`j9VjonqAtahbkwk5Vmv&?{McRS|^q}f!{YK6|xl#+-n
z#Uo7>Zs@eyZST-aX@wSE1>o;8ArU(`qh#15umcNhIE-ij8IX1$C|xK=K2&e9b9M`r
z!_e7`LZ!{KQ{CwTpnAgBwhz>fhOfA7(Ljt{%VvO^Lv}S`TJ2k>us;EJQ>wX>K&NLS
zLZf_y4=`APERfxV`Wehw5vL8yUUGCONB9eLIqFyhsxI8dfj7-nFx%&`b;@WHjD!MU
zf}bP-TMH&9dH`XwR%+-=E2s$0OX$k#I@((%Vh5&zk7~(C7__rcjBu1)X(E%e-?b<d
zCrNb0@Q?#>HR&cbqvHi87>a4*D#<o+V_jzoHM3JuNCIOqzzwr<fSMf8Ykb4to0!<+
zJtnQ*-m|3M-aC4fQW{;bYI><1pq<VxoEID#E#o|*y-rK7y9?NH&lL<kX~QLp0~Q#z
z!8%_OvTQBe;`+N8ApK%(ZDyXQ0bj=#ZMNwfxHi0H4E{09Jr)20UJ|5I_*o~itB0a5
zT-Zlkpc+$#CfgI$xkBQ5>g;zlJ!@tjfhP8HmIW~DA#3h3oT+6h|HiXa<SW4}dm9P5
z3t=S+=p6}HLBo;U@Bp4-#l&T)zZe+dXgovP|CZqZEu@Y_mly7Wt*dP7<VFnQ?3QyE
zjJR)=Kl}CjkJBHI&{?@a|25M?jm6#3@jv)-kD;dxYHENc!oeoe6G-p-5@~In@Jgaz
z?5YOjqd{L)zjz-=WBU05_9ABV*tkP0j;B#(R1xlpqo&X7$Yy%$utI7~ZdrOh=kEwV
zCJC?LStY^cC+t#{OP7wdzWHK4;R7f|%6L)Th4@#pT$B6=lHT#asvIZ>vw21~sIhhM
z$HU8CVOo1(TH4IzQzJ%1lqoiDbBR)s%)Yf@*SUJlvCobdMQ9*YRvymHu^%Dx0i7(k
zN~inzOwlxA%|8T;)(}wq(3(t{nL}pgT%HgC>JgcRDjPW56Ei>)u#5)&5x@SJp@vC5
zR2F2{8Hb|{bvYA(pLn<_!}b4)AW)c;0h-#AP2<Q>Ab^mgHV_DbWs|4~jgFLZg2#IS
zdIZWX6B44M_@b!|qEWboelsmX>G;KWJZ;G{4;ub+&{UsLtjrhN^y1TEZ7B|qQGzOx
z7p&5KXk3JDVtZsJA=?D-F`!JUs?ZT?MyRtZV&!Xis<`ID;xzJ8gAZxr4Yis;|KyPc
zl~n@a7eE124MKiAD0B;l_D0i4Avk$LfQsIxu+~<M4|1`Bg?<?e=!&i<Gz|G!7%VIu
z>P0NPA@iNE7QkFUEqE}hm|q^XsZbu_Si}}(ACsCEmHDKo%1bnN*d0AOQ^WEFn;kDU
z#F%0Uv8#s4{BV_7%=v7I111^MpbHBp1QJaR!7j_rvQG{%+2J`TM>>&3k4*zjh%xld
zNRQg#=J+e7VESnw3L+F6D<oluCv;m<uS^RD7qS#bLm_eOd5l)31i`4tK~qy++b&`x
zIRIf)_EM(PM&33DX#s~i=QU!Zd7pQjS~jdPoRkVHvcS1W<+3oIIzC;gMhAjOk}YG$
zjH!239cLh_;ps~Ug>XJ5k0*pbVI=-%d%^~KHgKhzua%QrNEuJcoMI?=qmfjI);ulL
zvSAR%awd-5AgCwi3F}uJM^ia*EkTQh3K`0dK6U=k=O+e4^cWD3(poP`H!<M~^p|a8
zbQ(doZj%s!>qxdfFn-|sPd^;KdjZPJ@7`UyUyHw?CXMP4n$Y&ZzJI{HWxX=4N;K&}
z$Z5&Wo>T?|hS_=fXsTbHAprCq<pKeoS{v{2H5_@gjk1EAzm~A~w&F@o+u~k{rDB9R
zBg6qL0y^V`L~y>`zl&uu!k!cF6~d`N1IIufk-{i@06W$~$0|z|iN-@&EUM2c+A{>$
z>V)^u>g7GYX00Btg?RQFi>r5w)7F;aWV}a$;MCWP8$7a_SIie7EtB;pNlr=@bwkX-
z8HZ~wCwsvu8EmlW;@<GzJxgp+j_<zz?%k)04QP&a*?^`-QJ7gg<kjS%WCUo^b#HH$
zB;4JcCAp6cgLa;?EVpdN6T_EqIn4Q@6vFUm@CrNC0u=1045B=0+fz`_{rD2nhF#k|
z^#SPb31Ko5c#iZeQ+G;*gaqvS0m_F@V{X2!dI5~LIM@7~QN#}Tr@joq(cdlkxyseM
zI1MPyCeWEL9cTv;2Ut$mA^I3Y!T<j7@p~+FXIs|t>q6N_7guy8Cm@5&NF{?GxNTRL
ze}E`m{sE$N`SC=FxnaMM@-D#bYUV*9QH4+#-nB^2oMiHG>#7J#As2>XGnI)C%p6~b
z{bt9ZgJ;<a!~RWTfP7#aMMaHy7Te~#tpuz(@y+c!A+~D9c98Z=p&mV=8}&o?9dHH&
zDt6$;biX4Xt!HAP!Eq!(12Bw>Cu9JDT_{v51U2Y*m-{2>!(bOfpFk1Nf=%F1vamK4
zD4g*0*v%n);a0J;Vn8Zu!Pbo~KV{v>^3&E0)vva0aAkb|{UuVYbW@#e1gXg&SE?_~
z4ebk#lEyt$tFRu;C{jY%sZ{b$B)M@3_6iu^5J+gtN3b}9;%r5T{Y}2i&=}1)ud0yI
znONxoPNA+b7h0_ga5<#q3B9t|kfS!0ha<Bx+tozIVh)iha`i|qmLhqkFC&F#dL`~v
zi)tsRRQc^}ZNkBn{4Z4x&S>ulss1ub7*Bd3N~W{N2&tadwETm=h^(L~-CIU!AR<nN
zoYEB{WN^=kxQNXlJ<O3?kDDm4nQP${>_~vU(5=}5-db^}ED`Cu5~5C@fJy>@k@DKX
zcT`jM(adQRVkEL_=S7P;WAX1(CHpl&{e5g9`<yoebLqZzWO<AQ^C8#xiY2P__5{9F
zbxH&%LXp!#l-_e7XKmDYFP%t4iIXpcZYjh;c-<{U^GL2Efw$yObVY=dc52TO1VV}<
zca=~;BJcA>-O85Q380PX_K{j4#x{?2>SV%`_skZjV(`wX(|1?k>8)fQc3?g&cJz+9
z(}Q4AJ}=%9+f4fS+e>W3W`3Q`t^g8PbAx0jjRsxzB>?E8=M*B<R}51IB3M$cIuYD}
zI&}S#*i{zN?CfiPzO6r<p9h}lG10H?iMM)Tcf8|^>9Ap6HFztiS0v_aFgP%x77>%i
zG;B<?;`vK!ZBI5rs-Bt*hJWKh4vPCbHhNg}8HvW>0-<2snNTb9gdb_Ika6woKy^g;
zGgBctb?*jFg}UPDHhn%ot70O{!`MGGo&uX<p93>VJWjKh%m}Hwc_%v4WcW??XcSMf
zBY=G3EAtI3v9Lru&|R~F3HMnLmF6pYkB(7k89}_#T>|1P-l%+oAyihT{sy1gSQbn5
zjT8?!1rpl7&$)8pE&Qz<h98fY>v>4#AQ}|wz{r1z7*MjJpI30PB<@qG=0XeU66Syy
zodvilNngk)w6|8K;Wl#7a)iqO0MviMI|4S7z`nX6E)l0WN5eRd!~TU>UD}9XK<t=K
z1i_3i6m<+B+|o>Cn<$4?cXgE-4Ayox87B-Zc>!F-h#{}n-hrw}S>8cjgS0=)q?NEC
z?K>VJq@xYtF%m&gWoP`@wih9q6ON&oHg6Jw3y-<%Rn6&eb7Tsc<q-^DKyxKFK&9hE
z0iy`DbfT<m1SsWGC)chCux80dK+5KXi4!>vHXBG`vLKZuc%Vtp|C?f*5$@cREr?M>
z`yp%WhhJYY?8O)X0Xa8V8q$aAlVY-!de4vgk!TMNKa;Ul%d)!Vyo6e2`bg6`erSXU
z6%E&42B&165v0NKaW8m+DM|x4DvofyU{=f&&g)&TcYVO~fX^SggQZOrL1=Rb4&Dny
ziPXQ~^eZk=PF(85{tlv3v8s!=2YycCEj9lJE=stS*DIAf5x>p!w9V@oY7lt!JkJko
zM9xR5s!hhgtqxa+KT!^2{1Rh<>H_+MP`x8PulA0Mh-q%bs0AvPLtiSU=7gB#h4rz!
zS^Uvk-ELRocJXs_&;=h@TGF5J?ibe(J<bnFUH07@xC8uN1M8m7@N|LpOq1PSXk&^i
zHiCT7-m$;aHV>O+-(LaVe#a#x_qOAlhXULr*|d5J@v{s(dkN!|nqGYc8dlN3FJy8B
z9|Y7Q7eJ=*Q<lUycO~qUi-C4uv3a9qFeMbGbeRZ8=xD@_vSPIGV{C~~u;9fSUv2>D
z=aJ4c9eLyQ>&j0Fc%+KDfTi6L06Z_QtnKJMAo0DT73Qot+E-Di)tRiVj%~&I!j6p=
zicA~`%GLJvlHh=-TrV<vFJZb==D)|eP0X4Y8C$&?Len6TBZ)jo<VYe<5;<z?kVJ$R
zwC1`^(+^T{K%EAK94X{TA-AFAJ_p0IgE1x;{)v6NbQkMlUI&BK&a<)>BpI#8r$8p@
z@LJ(XE58{RSnkAwRu&?yfapVFjUo8kE6<N+SrCK(>;eEc>fWo;^M{~GxzP9=2L-|$
zEAaftN#j~wGlPkCB|NPS(4o?)QCmUZP6I$l_o?x!#}1<5XSziAJ;MX0IwpR$Si?6!
ziK&a*?RUC_F1Fy3C9{i;zgsNj8(__AB|X^%j=$!UxG<Y)YEoVz592(-<8vIJ3l399
z^i>5G4-FOOKy-|v$d$q7`FkXoBTzB-2_hzrm?+CjDHsCw69&8SbC4mrm-$h;YdJZ~
z&tp;`!!$7mAZajL+E>WtH$L@3rQz}#IjZ((N2M~dv9yI{TMrXVAcH8>h!&(Xd+Ve)
zNd}1CFaRN9N{QZ!TeQ)25W#U@2IwoMH1Ob^C|tyVWIY~x@w*sb0Z~w?fYi-5NhOwR
zG%-A}6@;e3$>l;r0nA;vfPzpL`$i-;5>OLQES+aMn+_j;cWF-{Zvv1Ko<(n-q^Qwp
z91l%r+MEdy8%@sk1_rYMfEkRxN>^N&tQv!(Z~SnXGj0YlS4>JfoW&)_l<1l9N*Mr?
z36(`@f)AQ2z8oaVWaSscx;gfh6-AR6frO8E)ia$ho^Si|>V@Ku@(pqo^GK1y<6v)X
zxLYgtKaLZVZWS~$b&hwP`!@z?t{xU`cXa9OMC|3eOUYLGwe8-kz^n1}`OiH6oZUMM
zZD2`g&?fSqto17jG4-2k5pIHTEsE0VDT7~4<}TEFqTL|(Id4RB8^s+*Laao5#k?6t
zL}YKVW7*Bf&DrjYsu0|F1%rzcf;i(;b1ZmKp`u|53v5pwPDn6205qJOilI8FM`%)x
zi;8;gB9l5K<>`E6=8%T-ry(0AdXg5XYM{p&P_JNlIiyFSlzNZEN55w0m;CS?$E&5p
zCs6~{)}vqQDU%;rdX$ZtE=}=kYyD{ME+P@KVk%TiJ*vfh972iNF+EBKd6v`$IWOS$
zeSz*X4Kx1H`LRyJ5AVKvKfN3;XJUO<{-wI}e+Y<MC(m?e_WS_}bk{C*<;#YRO>s@0
zbIs)<QqNMk_L|F_@FH%T2=beQ&t*<{8F`+}Hx!4Y=dp{nyR`5nJ-+tV$KSvE{!&Jk
zW8?V*Ll>_RX*Gi=i5S;q@$96@OA5eZ%yjHcIC3$~GNCF+w-DBZ`f9FWCsPQ{1nuS4
zzLB3Hrft$)=|rGZq8gS?TnQzNB0rQ^`SAdm(^Xc0aEZ0CFdaaa=K^0L6L(7HsvOc5
zZncy=-HLP-zS0Q%-*|3_y<#30qL(*pf)h9Kc%hLL#s#FQn+XcCokCdLvxb0Cjp~WA
z*<{nyW>s^nn$u1;9Y1t%r$xSVwDuY1Fxk?Do&$|I{Oaivgs|;7qO3FpbFdDRG-7KS
z@ja16-}?E}{BeXq|Al<~J1XBo#d`IBCDhJuz8CvD@yt7-+!97$`Lh=gfD!^7w;H!L
zPTa{PYLN-;4K*23j6mpM4lwgRCXR<5L9XENj7k-R_}5p#NoEQ|&J`oGFN6avi=TQz
zKNW0Dq!Tr!^MgUZ@^hoOU}(bjmHYwW+1LP6mmpZ0&jNM9Vko@|%OF9`A%Vm~D@dhf
zo^(nxOzoT-+SpAPS>OPxxv?LOY>uhCnr09`8ThF6!VnLc=@nby+D$ePJ0hdWR1%e+
z)O<nFHzdccaOfoSx*uth(yQ0u&7gafOX_%5WrRVg@@!;f8)@PSPmctqZHSTO^cMQE
zTmJC!>35eLXCas;%@v=u?S}%wMh(FQNYd~48-3NHPZZyU;F!r6s-Gaae>q-#KAKLe
zCWk!2Gx}D`n}XPOuKLaJ;X0N!if56Yk$`{@WCT?L!>yd7P{+WiqKJX|fktB_&#|x6
zmS&=D)V49-Lkr=uHJOUD+$#tnB5p9zliXmUUq*7zb^Si|dBJ`8Pt4m(Yu_$+bMgNT
zbN`k#|7LlEv-$1v{&ocC97^&H>GJLBPW%XI?OSEvq4fL@uP)EpzSUs-r)T{Oq6$J0
z@LSNEMl;_kZ{N!|%leyF`{$cSrla`pJ4QC2?$Zx{Io|kor{&wN@tdug{%bVwUgojO
zx68bjZ@FX!_YJ>O-!gCi4HtUMvYUHi4dKVm1#nSH`?5*$r{iqTc?W5>*d%Gh`j4(r
z^50!pF#d1h`@doPw-vJ(%t0=!w>icq1TVEAH_DJ(9qOVh<U@65@0~vL-g$Ynl8dVU
zaBX<B`t!wkTnovTLx;8zoQpnb9@-;quNm@s0}4(`8I96NBs>Bnlb&{I+~#)*%{pAn
zo{6BZqEJkMK#riDtbAv7G{j~ZPqGv|5uRuGf(C<=Dr?Xt3(o<*G=v&ti>CQ%K*7I*
zuErJT<|xnj`i3!l{!H%El?Q{)lcmzluVnDFiZPDK{N@=K@>wM;SQPj$H4be-tp`dq
z#XtsDfH(38(T=A3T^Zt?U4J6}Zhno`SPXbQn3<9Jb&f}&nIT|K%<cy?0<#<ex;T8w
zIf6{0Q&ckM3tvXf)j}ygOUy?f6WQx=qD&`J0z@M{RtN#umkTNw1%A3)LC$alNp7=1
zi<|#rAwRj33`LJUQp*g?@HF(&Om`1~M(5}02>w<lc)--n9*Rvy;pCSHC<|{n9Axo{
zd1``Mqd7(<R&XG>!Os{uI_6jrGxB4RQ28F!16Pj>G>TrkH`6OJO=w;Ssn(bi?@kx|
zNG-;XEMcf}h1Xt=m~j$qy5S029XuOSi8EF;Jz-ocYXJN52G9FB1-<1{`2)7ozUaNz
zV!83wWp(K#ub1cWMRi5#AfjGn*C~*HwSCsNYdgB;)64tgH8#o%HDHI8`9P)8VruQW
znvMT5IO!2j#wUQ!?cw-!;}zbJ(URJNqLkhsf20oY({?k5)<3^S`Sk{&v2sK9B>PcH
zG93_vDO@;hOSivG8`hhRqJAv=E`8M+LdWo{W{4(F-ulFh7q*1|@<xm3|6Zg2LwZ`i
zW`<+JUwV_y-;ob1fi`^7`DF$W-(uNpczxn+9m4)Wyx?AL`Wm9zUgM`FJNw$~vml)C
zxu8GMf`Ax=so>5$6%culh6MXqs4?G60k`7W;_NFW`(mjp)El5~IjnebvnzglB6*E!
ziZA0+C9W=i_Mkz4oT;;E@^v(XmMVgb#g)dZ<q%vIKeF)^Oy}Fql0Kx;tg@gdKZnWZ
zVIH06Xw40Pgn}m1_XYz=ZDRx*W+T6NMHaAB_ezS=2{Nxy-L3MMp32ryJK3wq=uek=
zHJ#jo{yy))vRFXXGTkIviljnrtR5YScq0$JVIb$YGkw@QG@}}5^9JC+(ZntiNHy4%
zAW^XpI@LCokahXf@%?mV{a4>{^pd~4kHO@qom*(L)L{T>Otx)PCxSNGW;bs@=E^SG
zG$P~%NDzT@LsBh9ScT{!qEmt)&A_=+>MR+wMA_$Btb8qamld<A_x{~)rkB%|E2v*b
z^Lc=QUG89~^>Pm#O<~iF(~C*T36pugX=gMy?R+*i?X3~VguqHvn&d9bP~z|g6MH5`
z836ueyg^&@;Sl?@M{ReWwLoBHe<xS7jH8_<?4u}ZNhUU0skJH}T%D^r&lEHi-PC=x
zsyVMa<E?&pxUKu0XVTgi9)wWNtqPd$w6%Sswe}4%gB|KdVJX-s4_rs9nbZ#B(X!Pb
zxbXlPGnO$M1&6EXIVInA4Uun34p*_-M&EpV`EKr;AN&s=|8xy0pCfxFLODn&m`Mq`
zi*bn8Bjv0#P^9HeA%0ea#g~aK8v$|&FK0ob4akY|aOs%CZ?Ss`bUI#@`SlC|aZx+*
zR&KAYcwbq(N!p!Kj+%$GR?<Eu`eyIuRa_d)qS}h4G_l@MoFG+#WEYiCdh9QblKcXE
z&EeS_l|=Ro&RgHsso<QTS_$o8lP8O7l?s{k*#wJaEPjcqtkoIh33@7bY7{ATHTQj|
zMCW4XWJ0NqDvBWvQ0bZ~n}CTybsE&5#ncZ9zBDS1Ya`*f89YEegBmwMxMZ@I1f}9A
znQ1~-y%MpgCrbZ|IVYV7lRXea1wb2p-sne#UMOz%h4OWpHoFpREy^7_1Y}rdGg2lD
zaquXWq$yl-14$+sw8yrF=*P<16P#3_F~C9-@PTB}4=@<wEUbC7@FBq!^kkGp5ixmI
z3Y1OW>YAunFLO4;tsNTf#e&jKrjOlZr&OTt>S@>$A%^H^@@Bk^@$Na^9ml)pcy}D{
zPKU?*+&G*GJTZbc-aR{v1KzLERCB5Y`6YC9%Okr@)?>oe(UXLl!hm<?*_lHU#gh$F
zQ6x7WMJ>o7Z55A#N~q_6M<vvr`iQmz0*|ijElbWP3u0yG4h|YEQBajUe2L?^$95!I
z(2Rn&rqhYL7-IWb(FxBPVY~hjE;?FAK&FiEUrWr?F;lQ+xZ`0O&<)cQl{C{~ap)QH
zedI`0Z(5(k35gt1GnGerB#IvCpF|a<Lk<@+&E1vzv542EQHafN{)T98votHmzm?-z
zj&P<`Ch<tURNh<VXI39j{ph-$>=&$hEfQ`tHN;|%u&d)#|MBC8t3~-`cxv4#26zD$
zCJ-eP7rNL^<k=Vud-1hk9uSfYD{R56%)-$YT&6<H8aU0-<S}8f^Hc~rcBSqTW?7wx
za;<=9Y5*0+lY(A^+dG=I5csfz(WXkkW}*sJ@n#Q_X#rMI@!XkLC232t4RzOT7~pa=
zI7!jGi+6rvpznq?zhKyBbZf(y6d`uNE(7T_5m+Er;z-e!QK5r_Hv`_p+{uW}RM~3O
zTH1-hGbHl_nBA7DE`#ktCH85)+G0GEjsy%n!(=$3xX@XgIID+eJq*wwqh51;l~qsR
zQd-s3`umTk!-X<W&ISjNfhv+@&;2X+#v??`chLiVTFG4`YNQJ*F!?!HH&Azq-g$UB
zM}U6yOh4VmhlUhn-o_>|K~@ZE?knDWuc})BUirWyF0W2lPxHm15Lk5mr8vf&`(yp%
zrNMV>#*5@PsA0pt>)^Ln3<a9bpt}iVA89?46T^=xYCygM7a)prO%sB<HAVRa=hLY9
z2qSE1&Mq`*=*96;?PB9SH!2?zA(qi?B=UUPM_SJ$1?De=%P-@yPfGMsr-Zl92Eve|
zQ>ujrT%RRT`J51@nNY`3>~A%k96Jxk$BV%uAqy?L;0wz^9Yf0WdBB4aFb|eGIlD|h
zsv&;dTcYJ|A&DhhsOaso??P&)+K2`K7*D|R77HdS2tU%+sqE2#2?N>98N&j{ywb;H
zoejiCby5RCSh?*m57bF;v2AmM2Nn9nE7Hbg`cV~kMuL&ZdV0NENbnRjTH+E8BEZY&
z$E@rpyG%bO8~0-d*OQXtR}p?@0|`~xtHCmn8c|7%#5sY;c~>XEu$ssavR;d{Cy1&H
zMp^~wK9xSAU5d@pI=*Z3@BQ(+_gB_y@x{z_Qo%4icnQyP-?<TOu?11Av9reriM}da
z&dL3u91f}t<|}t5f*Ik|b)IbA<~-3bjjY|0wX>`#I@@GvFF4FC4ciKBOMI>-r~YS^
z_v(Szg}t%1znAVSR_U)FYT@AKa^LjJvu;XxZ>(~sh;Pvvlf?fg6!`qpMy$=r<MHtE
z(<Ng#m>dWUEn#B-^one88dRm;viMB!<b-|hKC9`o!!7DKeGu0Shi_cT>%*QYHR6so
zhg3)32tifa{JT#@cXs?n(iEv)KV(q@6YMT>Q!m#(RQSge(c~i!=YglUU2HrpsRff5
zo48ij(STZ+iyhS?H<=j~LVXB)W6%SEM-sK*fso>04uw3dTsoDn6&ZD(0cuVOG8sey
zUQx`{H7^#X^Hg&A%+buQ2$EJXwl!jx1ePT}2wdz#BdHpVDRTfpGkWK^A?OROqmvt#
zz<+PVhbd-f+wD}=76|1&H#hBbN#@-L-R(FO3PyniHJDlxK3)o6%1CUkQ}(H&CN9Nj
znPzfN8v7Af0x^O?YiHDAEC!^FJ>aIyQSAwv7eI)CAqP8@WxSr={pH<-hDy|MrlA57
z3?&r=O-O0+*QzRv-e{{RPR90};MtnMrU>X#9*vcd#vLL2N1Q!equugoc?%Ktm?6G3
z9{M$Ud6VKFe8y@RMM@(YY($962;N=7e)~1nuXhMt0D*G~3G%g_c#YmXwJ>}s!>tj4
zCFT0a`U305+1W!2&ze+8+XHcmjbsN%7<eGT_@@H&W2_OV6RxNE>RWZV2<$>&T?@U2
z76?3RHeBMF1N#MB(QFJ{?7cdEyP5<f(Son|LO;@&dX(}|K!kd6=vE8ZvjDrNM)X#P
zTzoIQT2n94&?OicWov^8Z9Hh@i?FzC!Hej8`DLPsGX)GSyebk;w!3))anga})K=Gi
zjNUl*Yo9?J{~T`J=V0p&vH$dUX{1+%i5?BqEQBBKE!*ZKw>`BDp#UBhi(hwl2JE3B
zd>z2N50RQT_cD7X>vTLk&lq5uOXDvJfl0_hv5Nv9Im@JSNBnh~K(6~APyXfj!<D^P
ze)s<&_$`KDf#C8MsAr{Mgyz<ar)Y$H07QF6G4W$8cR*0hsaTTsb%w_WuI&*c?{1Fx
z+}<1JF$(<xe846M^8qpU27WL1#=TUl%2yxv@4tU{I{6>of4K5{SB9&RP7~?LSK3|%
ziWLjDOv5eKiFXKX|NAx8uXhZM|J2Z;tMd*kWw7fAS<&&0#1BIU1EQF`@wWJY>HM1R
z)i|nCur%w#x10`9kifEFG*h`X)pLRjqoFGI6TKpr_E!*uU-@iua99`8(6YE)i*RFl
zQyxnxs<y8z0Zu(b1RxDr0s+>QM7v#~bf7gd8k5k2wc!9SlHd;jC8v3Zg!a=U;DWDx
z+9!c3qY4EFl(l!}&0ygNfJ|<3UK2%gcs^XM&+=z@L;2z3r90nf+6NlK0B;r&JU9!G
zI<efYS;}%#Hh-@Nj4z>B!g)MYKip6@j~|8}EAT4$ATSm|zovNwu8mHC36>{sSseJ3
zFEbKJEWnrXl(r?({*@H~6+Tym1IzffbqM}nU4ws=3eN&(W<RwKu@obN<nmL;!ZRN4
zivp@^{NSdbFg-}u&sG2^vNkn=4gPX9F;g-fRw^Lq2Ji0;v+q?(n67bHFO@>Jh^!I@
z<7x#1G*~}P#Vf=ZH#I=0yKx&4aDH+dVlWG^?Z5mbZF{z*4DEp7XZ1Ce8<2$uy$OWK
z@9siaZaOc)l`5$loEE*UB$Kk-QIhG9^l+<?1OoqZgP;cum;JS6F22>&T@nM2wtP;C
z?Z0ISJmyOIre*vST2b^XG~%(AZ`+2?6~K>hQB1XaYWqoUYSU}ORQuwW?oKsrCSlNa
zb1^udUDM&+^t;RXB~?utG7xIzK9`v*&c-pso7)sFIbY5a&T@$IlV8=l@DQoolMHND
z>8qTtR_f@P>GfJ|{srynX0^WA2m-M}ZL9$8u4_FKkg;@JQvVx!SF$8GZbW|tA2475
ziNtnP^ra8w(?s;aw;rm;tuRL#t2OPgzuxs;f>o@|mNc?GUP3JrMS@rodoC}{G^S8#
zAy5`8CF4gzmoON>(sr>Ma$P~>Os@-_qQR8qN(yD0LSzz)<yQ?lbGF!yUs_~mc{8%(
zhf9;G00a=H);=??<98#j<A)ZRc|-*xHhC~<TgWpbTk$OJs30O+;ZA$#-o?-b@>Ba3
z^M6sW@@&wpBg+O|AGlQ~kW@H%UZR%Ww{RV_te5}PDdDGg?|*r@oD$@6O1PW|Q@QR#
ziIc(S&%T@lzW5Vu*WE9ra%C?6>%VMsmVzRq%Z&~fjw}1C`<UeF{z}8OO;l`p+JHYV
z*V-@szx}?l{V=?)HWWB7ufBvY*&~;LufCvp_gR#yFEm{3QYGv^xzX89`UyE&S2{}i
ze@FScjw0FIJcLDI*MrM-h;>_cdAWgAz7tU@3hm<_61x%CQggW6fM;iU9Md_3Zbdz$
zbsZ9YIZcI^8!-=cyiSCjluq2vv-94cpPv4Bx!~(Rb-|a`uC4e*zhuQP`k%Gp&yPPn
zeSADO2TBxTQzWViE0ixB98vZ9%+T6`wx=)Lx%$}59W8wuN2hD(IYQ}S7DB7l$&~f@
z+TrysRpN8DYf}K2lz7ilLx2x(bFzEF`u_zNw?1|24+OUVJs*y5496|Z$ZN_boP}3<
z06M<xZ+znI$p{|aJH}>^-Q0-oKR$i>_~BfZ7HnHf(Tue!vPJna!FAzF?#pa~ZrUU%
z1@Vx*gz`BM%&A=<FeB~rp+uk0Qe40K1y+p<4Ct8Jl7b;dq&W`IUCTS;dap&V4bH0P
zrG$!LA!Y*G-m&pcdce!J;jeZ8M&G^#myz6mZJ_UI8^0V|*Z$VdvF#Q7Gm%>iS0Rqw
zRSy!Eb$&USh$!RYx3Yn^c9%2O80<g);p2y2-oHH;Vg2v}I$aSAvi3}n3wXBggova|
z%_S!YrYbNsXJ{e$Y8DEGNT`Io%}OKEOkH#XAn!Bdd43TY<R^^hkeDGkus_rW;|bzz
z9CD!MGvGHy+Q`N-Xr^^!8902vXpSEwl$;+}!ChruO4}UeM0>-Vd6HrO$cIN@gA&?o
zAGjg>IilxW_k2!y65T$=GL5a2z{Q}l&T^Oy-oJ$dUEn#My8$zBW1`1)xr1x8Vh)!z
zniXuy6!OfpRCB{+HeEj9y~tE{qWB>7nWS`mqIE~KjuxX+c-jF93iPG>Y>tJ?R1VIQ
zvxQbaJLs@@W(d)FK@5*y=oTJ%MLO!<#K9AS^x(tOR6F8l)X2Otx3x$+yr!ja`6rcp
zr_zu`h;t=Owh*mE3FDH6i%8g$!IG#F-6t(xkOCmSJ0Vo^+}G_B;8PlE5e(vA773<+
z-{1|5Rv4XDkI9;=O=@nZx>Hy+FBIaMOL6nG-RO`7KbxU+qtDZ;dZ?4xAbtKvze`04
zMlN5F5k1+*4wM%yUdw#&T2^S-&OT-xO#?ypg;MD1Y5tyQc@8oPFG#Wp`$$EFF~!h4
zW=<2iiY^a#qOKz2im21Z>YTqD5-y9`?F8&&ElEPUXFMuMgH16cH1FR({_yVQLUH9s
z14c?P>`5g|u+gDA4hUY8(5|cyaJo#jaoUNl(6Ml(Hepkmm6ZrhgJ$-l@Wi4hc0-Ml
zpHx{TuLG97dN_i?g>#13Ha<>iglIADp^k@_X;O3KGBv2O`&KwDcba6P(VC-AMFQ_m
z%DYTG;jSk5;#3S`_vQtSBEAScjbL(rL#H3fja%S9>hjZIDI<koHb0f5SNdnK7z>!h
zd$ZJ_B-!H#Gi40BNon;eQ&-%vNL5AkOE51Z^o?5EwARM6Hl%_Fp{dMh1W;u_xv)2?
zD^8^t>70(5wBqbGY69!DNJ%5s40=8ht^++xS*+2VH5wtoF)+KJeI;^tI$Gbc^&ca>
zW;(lB7M@n3)Qb?%E23m2z(OoV+Jw@D-uO}2yo6pZ9{m<Wc}kJhs2EF<ylMBQ#^;50
zc6|~|U=8zG^TUp@b<`*lI>5>nyR(~>jc*XA&k^RIFse%xJpcvhR5JERyFX+?TO5>)
z9REGXqpp$XW14msH0GQ-9?-#l%^X8i&a8OAG;fy3vqU<HdCJXGr9HMLR>!kCo(<n4
zJ0Yi$ZnQvo`B7H15$QH1qa^NCrfMp^E3&nw(FWeyAj4Las>aRi@I(-b)DF+Yu%>Bk
zLJ^QYHWxYBYnxGie)(m&0xHFwRL&U`fZ-`DU1*v~thE5N5E@MulQpLl7??dL(qN!z
z1$)3Tl~v4-1iNoE>m{O^p^xQ6SAm$fYey#4w3#ArnKK~hz!^8#Vb1)<p%{42xa0pz
zjN;da9{yqlzVmoAz(R>e<%B%++jglmE?hE;OaquBW7I3QtvyZ6LL!_AP%~e!QAa@N
z3lwuYfli7!n;<|MoEVvpgu;2~zUa*(<;yAeCq~-uDY8~Bj&$2V&HKtpc6GipsVCS8
z)-185N?f;B&FG#4`*;-EaL2msJsJbij#>$nq%+#YaxBQuAw%ErIp|^i<=l&W{Gr?K
zt`k+h0z?6BrWdLKnGx!phC-)N5&G^4gsbc|nElCQ;Bt#OAAJX?ZXAvU0Bt~$zZ(#Y
zFzPhyDnRIw#eJlW1Un?B*qrF&H&KO)O7C$gPV^4VC=#fADImHih!7$|&-7${Ckp!p
zF}F#vILR1M3{`L+W*h39@vzS_h!fDNrw5JY>vSz8m#@>)%sK`5bZllIjx7uqblh2{
z!6}KHXkoj-u30fML*<FNW0RXXmI7wxL^q=m&DE#Sm*Pb+&C*W2`oz2xQy3y;3xk!A
z>3=lVsli5GcvuqQYGZy`=#wf}3qPZkflH8#AtH^dN47YQadxR;Gt{7fxx`L)ZhdMA
zKB(DW+L;@VS`a}0{hkUhh9HL<#}p=V4yuYhhqU3IHhUcbDo?m@NLA^`gK|&4|339K
zS&f!%632|$R?++dH4BX=b|N}ze6$k>ho)wnXyhwkB&CH-sT7_1O|9=z51WCbeH}O<
zeZjz4EJ?>CEhmae?_y<ZN#q<LYQ`}C+1+01Fa;N`0vRupVooX*T^5Y!gw$gBW?i;4
z>#|W!yKD>psLPfx`c@0yvdgwLSq<S!yX+5-pFTZ({L7^`6dp3P1=EgC0<PI5$AB11
zH@FgH4fh)#k{x~fyL6%mz16#Zm3*@^s<s<F>LHeJ(^lU!k@SipdX+1B=&+E!rr#dr
zs(!mUq6(L(L(=xDS6{?(HD3+*=JSiB0pDCJ>orw;4f_wSS7Gff^T)@R=L_7TCxgAz
zWL_&_4h|>(NC-+D75vm-s3qj2B|0w!<f@W=lKMicDhvkbkPt(|5LXHotVy|tEo7-x
zIFwYy>87+f(jzwP5DfYzOwxSAz4pb|YK~rWMo-hq12SQYaBYx8MdhhQmy&5xm?-s8
zq}QqZ!i^J7N1dlg={so3aJMAFqh@4*S;)d&XKhy8g=KUs?~Fn^6xXqkEUz)0+JX{V
zVP}-E5lw>yWMR2&%Pj1I0y>mcXO>V=7L<@>bu1wZOGX1xhvJO#v7|^T;atJ;p{S5%
z$rJ&;0me7sWoV3;5v@!CyMj*NvjAE}Mv9C{;%K;vGhS5Iy!hN{6-t+&u%m2nky&-m
zUhkYlBQ~ff{i6`j*Idkk+KHQEvS<nK)AvyxOPN|N&TgyEFHCXRdUEZ{0+=G>L+B(G
zi4vxeNKY}MDLFS_RpCxvNd_KJvRe1tWl%E6R5$@~3kBjyHSnFtYvJKD_NAdE6CrLy
zD}I!M&WPuZ&u4z`n3N^pm=?buE><lCel!nXW%MUzNQIaeC1HjzH7*oKQ4lbe8?c-z
zC-~A962g-ZAXpK{>mV19Qg~d=Ah_5d!FVJjN*0g*39k6qHr~c==3%~LSwcg2^L3oa
zUs8a$JQhr+#o3K{nV0hpzK|@j0WnGx9hn_yfWsu5kBOpHjSX%PM<jqcv{mb*8wbCt
zlR~dj#2YgBGc;RgLD&~F`t9(+%o%>lW~$uL2bjA+-#VbN5qHu^etV=vL$ZTBq<x?!
zqPIH7Xy|2~NhyJ*lnlu1B0hPHW^-(}QGcL9bzC#O-Xdme>~8AJusL#WQ1Ay9a@sS8
zZkn?Bam%2qcE_uw$}=gy?`c-UOGC05ABtI7n=9fe5q2Vz0GMF`9^7ma>6MKP8U|%Q
zB>N^OyermnU~Hojth!+QBpekS({M;*0I5ZD=uGF@q!H3URs$t2`JAxi(jPUzKnR=*
z<dbN+dy7ZqJu5$ZtWZj{BeZHKz82@~g!U$vRmf1`a3r%Z#W6IREZ$nqv*jMOO(8Tl
zZUO(yuQfLh@nkw97eWiBt7_y7Qv}2#sgZGJ+){7|+c-9IBhBH%4e#=xpd|DF5#*=B
zO*jrtTN1JvJPpLz44%z^cbOyvEn@UZ*J-DCHp5{#etGxy>2ftz^H`|n+bNcvM&mre
z-SHdnz$81nt)9RNu+nIPnZf*}gxoyOlZ%tF%gvn=c9<mX6tjU&Qto7USC2F}5Gj*H
zW5mA3cta}1(+2(PojK5ZId!1-9OZLk>Mc1}3pafE8KXv%u(Dc@`T)rrlV%McbO#)t
zAh5<9uOO7J;zh%K1jjEeumS-NxzO;Bo)Q9(IvWVR@aT%S4X%Lc5IlUFVi?or@%8cj
zS+{6E+J-)s?<BOx{cZmjzKi&e@SE|3|3<9eL%8}~l5n4E!47&K3DLtQTDULzrs#M3
zzx8neFjjcnK4kd5m&abd>uWBt3qBWp+~z%?*VAc<MnQi6JA9-`9<_a^4bk`iSo=2^
z=lMIk2EG|_e-Hf`(eRjLpN75j45LJ+4~Jdzo6S=c7;PoGjf=oOX*h8ug^~n(cov0b
zw%5KJBlzi)fBWIj@cWQt(^%ncB?wuZ5(hE$vv9I$E^rw%?qM9_$GD4?!K@})#v;`S
zgUkRmqrwi8CPyfEX~hYx{O!`kt(pDxShVHoNANRZmu=Ddict`8_)hJWr6Y$HC5+Z5
zHQ9P?)0c{iyzK=09`M=%ezLG}bHQ{{DM!L?NS8=(H1Xp;gRR$XyW=cjkM*UvZ7$n7
ze0=wZ=PQ+<^()=EBiV;hl{t8;g0m`ktHPR-CBBx)t!2U&?s!?N;H(O}QL@zA)Pmkw
z%9Mp`Kr{_R&sz(#E&R)$e%arxi=5kO<uH5*5B-`i)OKp&y0Q~ex~`wp1(DIImWVTn
z+)%W`TaUMOD&82?!oCP$1OxXm#F^Vq9{r6u-|^bv^#uXg5ibbP<7z>wE!?zbU{$YM
zda$xLtuC_MFr2`~3VTrSn03;Y7t|IYD0ZU-Lo1F~3!{F*)yZra7RHqB#(l0p%i%==
zk_64d`olL|A7T=GJ5M1{9#DGZZb&F)3YtBmE2Ec7B61{Lb|X1xZhaj&zJ~I|&bErC
zoI%T#B7UXFmU<RmY3K(H{pJ&r9rUxypc{!eemD~GRTLOQFiJNHI#RGWqu@&Y8x;KI
z=S%Xj6LKH%t^3(6!jgQ0Y(8q(c0qsA1^t$A_G1vwg<TixXgwk!qn^XX$hIZLN|)!A
zdV_Xhkj)zr8F!`kk$NE8#roC^d)_9}l;u7}PQdH@8^+W-){-&xj<w`sRp8RGnS4jM
zS%<lpu(^8JO5(Pw$H-;;8hfdaA3j}ZI8~OuH%O$iseTEBaGAn7ow9kgCjbJEkxK@9
z3zr!zqV<0)W7j+tpD6G~HN>r&6$rfeMirpKCphWuBE_$Qa~tA7^I)d`B1<KjS|kOq
zhNO*$JYQ!>VoeUTK(t&SY80=1TxL4qFO%?Y#WNZ2c+Mg-z^7pWrw%wp{JzaXe!Vf(
zJ=zqq#OQG$``j12C52Mq3seqFlfAb***~BU3k~2mP<^1I#Hd>;WP;~_D%0UV)+19X
zs;pa_`qEsRRZZ^}_+yMMliF)U^ht2(kab2D+DAcp(12Qd?I(|h|Ff;UXVP*RF5v^1
z4k%o>C*V?*1&qXunG`nS8rzH`aERQrtr(dp5La76B4;c1#bYQ_rC4gY16nX)d?I!O
z&1E1vCY*vtnCx!|u!DHPr*t``sy^cotmtOFEAi6=dOXr007>QsEJXs(<&0;l)%1Me
zLA*K~f7xn5sr=AFqR3v`y+DO|Upm3>44OhtlnL{t@Xa9w;bZAqOq{$7d`s<|Tq+Bf
zxFyXBSUJf)gJ}^_y3{f`0Xd>|d!$xTZj@yvbyT&W{6{l^>OzkAI=8Ze;2wII@XB^a
zK%Svm&h)sQ0W#)YaQ1S&1%l%~#{dpkpJQAbEKVZC4i>{f2ZIuO*B!<Dp&_e`PSroN
zmBAmZ38JIBEZ|2~moPPJaTzD<fwX$;S2WG#5=UpM$xL>>28FgjZeZ)GU+3<zX&4Kj
z-_G+(smztPu@t-QMrQn2*OC$6kNDu)cF!yKF?n5&udNTCX!LbC#_Ipa*#F1azi5m>
zs!XVfAuWSOcO@4oZN!|h%=YFeuS~1JGT`f*uPHs}JA1t4gzdk*^)i;3&yP&4v~sl|
zs%tmj#&V+)W6-@k`;Sk5c=xgw{9b5pA2GcnF{0bTotUSKE}06sy0~;cM^7#c0cnU}
z<-L5iL%@4&SIvWZx#p#>msj)$dW?*QnPlpOiKQUFVFx*PHOHUyo#COBiwkyS4@!8p
z)#>S_<ai@Eb}RZ<*e5nc&$Pr>Z>qj|e++DNLvzh6D_*t3j+b`W*0HXeWyNClJ4L@$
zdY47DEPM<9tn~Lqr)C5JvIbn;J=mTaoP_WhseLVBfnVr~euI>*7ZN!L-bXoiIdmV(
zHJ3y2(uGj0m)?SyFrmS}3Hh&9lPqc9!ap+yo}bPSPvr;dLkZNFJFUxU9>L54*480u
zFM{_C3N8<b6}Va{w=w0w#J`~<@^Y#dG9#8A5&4SSYLXlbm=2)FXq6k{gjjB9kv#jv
zbE)qIm}=JrA4#qz`yj1D_CFlG2vU~-@uy-1Pr^I#<GFDI&sMye62DLb!C;-p4(tU`
z;fps15i#kcpC?3lNP@2%M0CCa>+(8s+{*~M^}4Agqiu#@3+~saf{yg`@zc8>-|hR;
zg&Vj>vpvMtN5o0SGQSW~BttJbgbWzV8ccRrX$24qv?N37+zuC|d%*<FTL?S3ymd+m
zOT?oPf&S5ZH08%e?Gfqp{Zo>cj)=U0FIBK%QTx0yt)@)4#=Dd%Hh@!v_z%S@nLeuu
z^{#uz2$Dv}xH-|K61^csKJPOb-&FfeIkE~`F+!8oK(b?f+A^|rmaP>jdn?jig@_ef
z#vb-JZ1IY#Ks0F%sMSy?5$?5(0?sI4v~i@(-4p=k&4e0w1<}#@u_~zBg`S{#%%dHg
zwS(XO(%D<HIBOQqW^vXmRt<HdSvEQQlQPYo&El+CoHdKHW^vLPb2N*!${>L|ArEHY
zWWw#5sZiPJv^vD*wq&(-VNZ(-G__l&%s52KC8!PnV-2K@Zl<k_@BL_&lg{8yI?BvC
z6sLH`D&%NdO4Xfpu#=AIHeD8J^j1Cg#^x8a6sky~#-|-!tt8eI9AVFo@6N&C${Z-{
zi83&#q?;+4c*wAWhp`!<Vu`+p?W}}`AKax0h2#mAVuXlS-0{h46vo=$?w|pjX?j7y
z*0ABh6m}OSnt|_#VJ-{D$3P-d>aWwDESl~+S6y^0>W<MvUZ*JqL-$aYVZSpDBiFvc
zOj{Fy39~2KF9-{=i9;C^ZxCu<+nXl2>Oi_FRA9gOqgf)JQw5cLUo+2Bnc`@w<&Qsn
zc>MVG!dVp!IXc~`DY?s#KR%cff>nFFqZioUeU&@yQy+^XUm~CZu1xVM7K1Deb-&jJ
z4uswVgudv%!WtFlm1AxFr>DpH`I_UzgCkxdNWlV*?ow-;61anbns@y!!fPNRnN^6=
zoVTDf0r%NQJ__bSk=Ea8kowf{f_~Rjl@L%K2_ostkWmrY`zfWPOizJvB~(f4VQS?4
z*F@lUZMf0*xD4ldT8CFhzQ$=bHEc4Nf@c==4ORp<3mPUeC}>N3aHp&K%U18f{@nV+
ztzl<jXhme8&*Lz+RY;(Hmq`g>!S~P$2DgeC$V5j=v!a}b0YjUz0D%Fcm^}s~Xa5*V
zo3J$)rYNP;E*Jv~L`fY_c*K)=<P9<~Zv-rFUhj$qXD>=@7L_GmyUfQw?0x0<mrswM
z-hH@W;pQikucz{LX4Of;mvv-ld7zELEoJDJvz(PW*IyF*?^hya=t@eWPGAO|vF2we
z(nsnm8ESc_b2*%(yLfX*LV^7qEvAJ1I@2;D!2wjaV3k+T<w4s-6(wEK1Bk0$bl!R?
z%){3*6+-UlcHU+mzC@rXCoX9XF8H6@OgDFAFL8>BP7!_;Xb+-tSQqhm7t{&IzDD!;
zPP?HNsbZf64mq*}6dJD)OjRBvM<~?6aF$1Vu=ffEeyj+PN;g~f+0M|?XwXOpdkams
zT!i&HP0ToiCy6xRLk_81&<-zVoQfFSSe9z?v|TLbN=5WO2I_T49)PeJ{LGHnZCn?W
zCe*u#Z(Z-yrmSOVM^PLLN`s_~3yyV!q4rwvTjDNup{F63f6deg3skC%)M<7sI3Cn>
zVm3j^)8jc8DgO9m>{}`|d^Squ4a}y8`UOy@3Hy&!0H-2UUF$G==fqp+FDLQ*M00N_
zZqtY&o4AWa+i~v)pj`U+TYT$;g{V_Awb=sURYV^rj1kT9>xLjdJbt{yM+r9H&<sPu
zIY{s+2Jl0yvLXzhBLDj90L7;;#D^mvBCH7?FMBy#asQ|Uwfvd_ND6<q0A5=AM@4w`
z6^VRx8EW{oG>D=7s#fUjb_on=o|~$oHw|QBxx)kFvDb*8q3NXC7BEG>W{bs+yS%$Z
z^N;`qhu=(L;kKL@JvhF={1{sOWdBT|)6_i=-@F=t`I#X4#l@xo6@bD34<=Q+@<g3^
zK_azSP&4P+#g~S)lGoW6JjBI9u`u(Y#E+{mEHhtk;xNc)E^wBWgvoqi5ge~}g5-te
zu;5w_+qNBQGe^QW@M<-sn=1<%0UmJXm_j^I5rnZ*;%Te@{Em&Tx@~lW(vk`XTJU%;
zooZj;6(nc3nR@iRAXQW{)37IYD$h4FlGcL#MiNZDg@`s0+8k8Frm0?su}z^BdmYUe
ziiH7T0@uW_+i!O{B%%`FhLdEQcz_f0JlaqYsmR;Yy=)b1f^g@7RUbs*ATmuAYg-)3
zSWU19Hv}UHgOMqsNb(^E*v<s(h*odS1Ky*l74xnYTAr9@4nbk^RFJr|FeNHFu%sF0
z0W_S*F|l|`jWP3`I%gbE(K~t>4cM@Mpk0$HBG!pE40J$_5=a7`3+=u`+l>;VRSAoH
zzWfB9k77+zgNi<OXh9e1U8r4w_0oGix#Cn32-AdsF1)4jYd*$ojxpCC_I`Bq6a@oF
zIY6_k;Odsmw{`n%J$yUza@)Mz_PUmB#8^CG?;Wop&Z8)sdW;W8={=Y>90a77pWl6)
zmy5|S<W<wdkyUKo)=C{t&kkPCaQ`0YT7tK3c-)JfaqL%nLA=d(_>Zmzu9v#hcwgwp
zj5{VI&8xF8CX(8RHjdO~+{bP9$1nPbYd<VP127})dfOCZTd=r>+{bPEb=!X34qvbN
zxs&|dww!ATN0cQ7C2Sar;dr$;>kmu&tR>!l_~nPomdGVoOJrj@E*^V+UeMNx{}jC=
zKx31&|ADXRTA0lLp4^TN#VDCNBe)UCArd;7?qY>qSf2TIykWpTU!)fgbR|Iy9->Aj
zl}b$%vnl<$7f|G&{>8x1rNS9eFs~to#|zvyT3EYO3Q?!(e4?a<03)#0rj#ZNU5ew9
zZ^tf;qR_$^CrVzUA(w%(G0CQpOds+>8B!nrO&YmBc?qW8*c&?ZHyKCm#yE;i*;T6M
zf6q9|7RAEbQDoEq)62Ptq(0I10~+acLiRZD_VDj0|2}(4UzQDXRPVI-lWhbtsgkR^
zV4j|dgBxR~*_INa2~93$)uf|nFXvcRnrKZ>4Fsa-Be#Gfi&c=geYmPdVEgwbr;Kx{
z-Rv#l5*qy=Jzjb3`Js<O%k;B^x$`{D?r_ErOG>C40UAzYQ02bJeN+YOOZ2h1HWG!`
zG7ZNEzIh@QKD6^^v230|3M_ix+S#*hB*GktLY$uAX8){EP9k}OSo8^G5vOb$1=V)F
zn)lkS(tp<`3T*(J^kx%*3`<buLHo5v647fE#uhQ2WYh-YNQzVft<^`cATY~MVva$d
zBcuajPduJPPQkR}?QgbSR}Bwj%K8v{dn|6v2B4job<*}BVMFm;>1|BP=?C`-^!t+d
zF`UJQxM(|csIdYb0|d5-lgXA&kr7`hQAYd4&T|o_adYZ=yZursR~vBgl4!$@K5$O?
z>`3_=Z5X?JaU0q?0nc-L@Ve&@7uw&NxK1=DV5-o<FVZfSeDa#OO)d`BFb`^Fc=ZaI
z_l!YkE(gh)O9|Je1||xlQoc*RVAU03v{CD<>>{)qaR$kUA!OKP&|kEGU5~F_uqQhh
zD@kP=#F>(LpTLHMg*4=^0=4Y`v(+x(O$!)$F4JO`BMxE$gw7|?p*c|W?5Q)%6cal-
zsZ2;G;<Ds;SE$}jbqR+x5~qwoP2dOzHLmux&XDBVKyB?>BPY4+W1GgMNalQ_rin)l
zO5rC|jeLIqOb3{p#>$@*3Yc5AN$y7+a~jAmw~^>|cZ#xomRg!x-llJUy}~xb;re=t
z#|)^~)@%e7waCLM+4jkr0p&AA?aj!;6XInXn>lTxTCq1z?qTJLdbw~GCjpacOOu~0
zc^`Y6x}22KoA`5^!uo8J0Lxf(8;kX;Q_rUl9rH+Ay4vD7g?yeMOMg-tE1)&kX^{}$
zl0N-FniXT4IAfo;Ijc3|-jCXCvOKLEi63D~o<}=xD!1u0n~wX(y=3To@2cs?!`_vq
zH=jFpQkKshJ9MZ^Zc3*2#b*s?TZLTCw*?w5w+ec`EihP^^M~zhub=_II_EPG(IlyW
zysJ7H?A5ctR<VIS6`IHVqUCgnW!=J-rtfK8cJ9zx4H<^)m`UpbDC0y(w$mjM@O2Fl
zBGEd**E(G?2`xg~L*ksJfQg)bb?rUbWtnQBncBmhTgulAb%#fu5-cK*9f?v;U1)wX
z1W#|Mq<GvEYXI5<7a)$w@&HLKwba1N>f$5+M+-uD@rELZ<K{>KB-tG=_J|(oD^~Id
z5U9m>*EiJ&9wwBp5!}IeN`MYQoIpN{JldlKC!^+`;qhnB1km4f07BjQSpFH^`PlkD
zKVI4}t0uO6$Wx>YtA)=k#Qu3Uk)$e7Z(O4;2j)6}$521d+hHSR1786aYi7XW;Ow$b
z=yNOc>;;QE^vFAbg(>Nd9z4Ji#3E@&vGF1F4G1{TP88`&7GT%H`0ii17XRs&r>FN9
zYq4fqi>agf2$ixj_BFY9`<X|I7RGS_Slz(p`e*c*pQ>P&1WruTg$4?CB%>j?s?R<S
zRSPYY`*)g}JZc5glvm4yn*N+gB;BP(d21_RDkpMt36IMlEEyiTA>+l0gCH*y<5Zl(
zZMRpVGa*g^zc8N696e2)u;s+D;uJszG9ubH4Bp3FZ)C~e!>Mieu{#BJ2w1$O8i)#O
z%8HImIW?oNL)k4uL|h5uquAzlK<J3zflhf)w7Rq22KXs6jNAbzT$FP>K?P-rffJ_?
zj`rd+&(Ag;?c;|Jf4rRKO`D?7h}h?AeSNs{)OKy?wQ%)|`_`s-`H2ae&JLmw*w(TX
zwXL&KZ6*>QD0@n`DcP1LlgeEZzDhZoA7e@u7?g}ee3GmAnrtA6?K4mJ?U9l%7&dcD
z_RpPjUq60$Z%k`L2e=Txr^j>7HM!Oo9P4!CR-bdKH(ctP2ocklm>?|YbzXU-xXU<#
znJON{;<p*C$V6JEv_vN*lxw~j9m%;^ud`)=xG$+&;jXY|)rCun8Jxf+#p*g)=Ad_=
z2dKB9(f5CcM(4BzLcUP?l#FH$*W27<lI#{mcLIGJcFh=IZo}(W(|?pK-C}iLqZqLR
zE=kr_lC?R~66uUA--CFg6Y_qe%Yn^-!U+!BiJc<+s!qZF#kASGsPR{BMqilPt;X50
zccCe-k^CCHfD~{^EOI(o;k(Ale|~@3j#cQAkyn9wl1xtOuc#gJX9u&+<#_$tj#`sr
z_qx(@=Y#Pos!6EUrGgotrUoGXvLm`3+OkeD2@+2=om>THmp;m&aS@^NJ#Q#)%GLAg
z5L1MoW!5UdrKk=Ws!lmT(5+zad)$M>8Ie0aNtxfP;zz9G`zh$i&>b_Z$!)J|0i6|a
zCzRF4wTiPpMwU^V@q-`8De*XkU7#xD#B~@Ibdn%`+z9|>E3M%>OT~Oxnh|93F0cYD
zzZJi@^)g6Clrr`?Ag<YTWb|<)SH@S04;n6Fg!1cWi{EBoS>wXGj^HTDZq%U4)JN3K
zh4I&h-qM7V)D@zrK}}?kc_bQlJ)$Q$EtI=%sh_sgPnHdNgr{A~deiY*Grto-jlK1Y
zU2F~giDMkoT2l@$$$7Tk<PSY7TFq1spI>xhmS@|W#*ej#JF8?KZNKS+vh9SF6^)O!
z^t%FY5-JzPwXa5U3v>bWThipl{U7)Cm3Z!ic#hXWHh!2#%@5;I>ZCop(m^whl^n-d
z>5dc}RC7kc<9I%6ug{n>cARz6sAZmQ^lb@uLT`T*xxHK7o^6TaBNZT{1XpDagqtYT
z>=7uWi>tD~zEl~HTop!ijHv$b)Z)JEZ}zMpROzx&DMySb61AAL7rRwNt+|a~rp%=1
zA4;jExyRIqr@N6%O`o66`0ebr{<63(I7Z7jYQQ!FpB&9@OHBqDi}>~j`$2nSVn=&D
z1dyq;=ScgBuls%!VCk%-x7&PL@NHeI3!|FWvcG(spD&CJ-jY*Th`cLW%<CA8C;CM2
zxLaU^w-L1Ibn(W!BsWpA@!=P0u4{YEaS}*8gt}R<QhJjjm1^vEIE4f!fR&R6aI!l+
zL$8Y5#xgs2e0wQsPaL1Tb{K0v*w=FyX!kT3H_ta2D+9*1F~Q+Vyg&eTz07dxkp!9z
z6ZiTM?Y)6Qk*KrVDDs-rUXUPRGJ`3VU5-54y~Zv`>w4SRmoqyzae_HNr0SWgrNlnL
z4c__YF2=)7_|CR<?YO;r*=+2tZScN7?upI0n&si&fA};%U+g1iv!69@ej!7?H<cC9
zss#{F3<xP^vtevh{12s&Q6l7F0p&rRQlTD`YGasZMcV;3ld|^ghAsu~<CP0|G9vgj
zLVzSrtIMzkDV`$B0-gt?f<kX(5+NPizmFZ7`mHL(VrbG>8O(61BM+z>?FOK3Zv2jx
z*k@u+VE+asDzYSn5?%?(DXi~=_J<0#4;923{T&gZFv)CQjUbH^>SAfF9Kk(P=X=U2
z;x~;XQ#VixsvXA2<4fvbPq+0*!>$dKiR3F(3aRi=D;S7S_m5tPmb#~Vz^<nmTrV{$
z30#3(5AA53>(gJ(y&Nh96D1acz-S8(Lb{|$OcJVI#@~I4GV=|w5!9`(o#<<&wCv_Q
zbK8ETh4JARqWHIPFM6{$sf1f<!MT=ODE<=5N!{~W_aO+<pk`N)2#<5LEWi#MkGXpB
zoj-GAo*bT@n->sBOZe(wxd4G$FaJ&XP=?m!YE}>}eapO1r~j^uuu}euvig_R=_@jN
zsO9TuC$0Tf>-1F_aS7iWQ@oq~Pfu_6m<7wZ{bBu4)<rzVyepkv=t70QxsQ+_MF>C)
zK^zN9W`rr_8)`awP15y{Vw{*DF`kfKr7u3zQ1DY|2qR^q^kV);a(T_={GqnZ69Ss#
zf~e<DxA6#ak_)1qJ>143?8!c{(@5kCHdEqBo!VcLslO*u9#e;g2Cw{pDBnt>4P$AY
z@!uzj!?kRtyEd8XHUi%{#M*(Krs5jBFm0kxSCuaAv(N~UHh&jsFsDT#cwayiJ1>P0
z<-K#cU*7!;Et>PwW0FQjPE!c(z7l&iM!BVA+k)-mrJMVq^L>1cj!zKrx-zc$%+X-W
zd(NBnJ=+5RVn3Yd;m;o)`Sr(f{YFQOQD41;GmW|!<V>S(8^!HI&#|36@g^rZkk><N
z`BH3E=3xYks``~E$q#4N-bmsHO^isl+}7Xra4xOg@b4exx`+Ffwgbm=5Y`!4NjD?m
zhLE_Ac!w8Q)+2yA%}Z~j*B83=9k9)Qz&00145qmFhVBc;dW<su7ephTLfv(9CYa~(
z+Tj)A0Qh;If)=NR-237o_?KG|rJ1)M9T3tD#b6}!Eqc~|%O0!jviaWrMw_n>SMJt+
zr%m*7(nP0id)l<NUj0^50Z*vQx9E}$V)<VIn5B9RFpJgv4@s3X|A$K}t++}czataj
zySD#lcSs)*%0Usvo&Qr$>obNML+$s_qSpRhis>24Vc0+3_*jTu_*$ln*QL_ShdgTd
zPQ!>1iBTyD-F*A$cXnD#rw<th4$P9<cPdkUvwfSiu{08YZ&iPP&OZ@dd1~&~iUT-_
zTdQEK<>oS|?ba$Nt^E$_E=p%>3P4b_C})w@8bS>|9nM$Tk<LY_?D^%)VRhM-`PH+~
z>nio(<>{^8yXFN_1ymC+OmNMt=I>8n$nEL`rm=kK1SYX@o(Bv7xM4y+5|RGO`y>z*
zcI1Qi5kr4cH=N{qMy>Sv<1)?bs~Npd(Sp91)BjEk7V~k%<nT888jv;qJ7k++jRZ%_
z5c!(pcRD-oz{;krk`DLk)hiXVg<M`bEoF!>u2VF)mHoX2*k;L;P^JQ{(tsiQD=L~%
z(aze{V@2y%R&=L=jigNS74@`XlaI9&tEG**U(WG@!You1Np&(IFu(|-&F5uO&JzqI
z6Y}QdHEqE6`b0?_dP@N%XwoKkfSW3cykjPv$=f6&yG_O@qKSB60RIELv`?r%K7+GT
z4cH;XZZ1!1V%^M^yqX(fP*QdM|BO|oqTuvc>A~@1fO_EsK=Y~;n-@dNGw3{yLDGf-
z>E*-YTe@*Qqf~0~f1Xl5`A8)8)~33X-U+Q9hAra3RFQ$z7O}=DS=|V380{jE1TfeA
zYliLx6H>j3FRAS+z9h8kGfd%?6(&kn<a^|aL^n<Q)6?UpA0C(G0`4{uFiQy>wegg)
zaf<SCGM%2zp=T54Pl|)yuTKW^gyY$LjPUHx1ro+R@amPWzwr$&AYel*wHF;Y_dX`P
z;pU4b+kJn3ffxgF)66GM&?<_o*VK^>5^+cbi91}FxMMc>9ub(nL*i~^;*jJEIvg_@
z4`$o+D-tpLmFCtoTw@QG;hO+Yq#wP>BrI_JF5*$K+1Vju=4n|ls~16ek@u+StoVpo
zBuuYNzyc^iu!cb->FYu0Ku{D{NmaK}o4I;q37YcG>LO1Pb)_;)OvH)kd@%=LM4&R}
z%>mVhelhQ4W)}<KO~8IcxDoL!*x#yXqh%d9#T>ieNiL?T(>M)~Cshls5j8aYyf8)F
zO_EwCBJ(MU!;OpFN#&z#L#+)b(PG%4PSXJ*>{+42I(E5+1+7Sn-MAU0*hq<;6U~={
zy-kO=g11CD1$+YUFR9v^iuDT*fD^`;m?}^@B;%0G5mbd~T4n5AyT^tnr-6f(9Erc3
z3O-!oft7h^&Ty-e0TKvT9-X>R!X{@RVTHeT%p@cO-XMX(36uzP7)1q<I|f!opF?MX
zzOsc-P$IG=PvU~+j@yAoyrYVCfwo2)fPmJb8p~z7h=y5hHXOTH+*?4WAq*nMZAG8L
zA_0+A+UpSrHX~UvL-)kPH(`w$o~A=EYGu_k(wFWd1dRm~I)*el6i1U`gL8_f0d&1n
z#X^QopvmwZRfzW$J8L2dnZlsLf|NsW;A18zXjwY9c8EcuVjkgyQ4m9I##eF~1O-M*
z0C<FfEVR7<g^~D5WAxrhxXw`Jjo(_RnZFPsUE1bO&=Ph8RD&P!(%J8-8U864z{G_D
zr9hQto?G)-zw;j--(7URnv4&X1O026xjvf9+{7YfDBZFd7>Z(N`Gnn}CkSRUXcEDm
zL^JwY@U?QUc&&>~*`^;}3%VFY#6~J9*>(^VrLjMau4I1zw7k{L5=Toz=ZaH3mK#9X
zDBu3!Yy^vmYe@DQMj+bEj0eRLwiCA77&5)FXJtCKK@Hj7f`Cl<P67IYW*d7NEfERL
zAOI!Rir!Z^@2WCyybyMuh+frD$Ak$6{fZuH(6lx|7TRyBs{yN3L98iqA#uEcS_r5z
z_m<5l*+3J<UJsKwCP)-P3`{BjX(koLm$89OU(swJ1}U{pr)9yq0v?y~95^~ra+HaL
zYPPPi7YgTdR1f!YIt*BzFklj$ti=Th`l2&(t4M1FGAqav8xZu8|Ci`Lt3-#XhO^A&
zPS;p0u@K7lzh^g+BwQ@_FPn`Q+z&J^oH83cn{ulRlP9~kYPiF=336ibwDJC8;2nyc
zI(~!89Bq3j9%~AwSfl``N3@geyc<^nHzb_le=Fx>Pu!dT|M}_Ti+_H4eErKsmsCTS
zZd}M}I8K6kIh?GwT#TmtwWFz+g9V)wd0q~0jPBo1aln25O%*6L{Y{m}|F#<J-#yXF
zzhk1^jQd~SpL5X4Y<|frvDM)!aVAOn1R)A|3wbIx4p+iAqWBWgdAc`096mLCTCh1b
z%czck?E%q5qyYo?A6#;Di`c-(vQt=b*wQyVQC&kF{J6^_R+S4HxIkcbn;k3rfPzyJ
z$THIuj6Db;1M)du&`y<LJ>XItp0oW%5U&*3O_l#6`5gfl<6!eS35dthgT=x#P~N3h
zTq6_7M{cJ<R|<0bB)sedTJ$C(t`mKI-boTK>{4ai!=!k#i)BP^V?W*R3c6ix_(PBn
z`FaujY-rWS<tLJDkFWDoEFhz=)qV6elKR7kvsc@mS9Di98BW5>!jq?ftB61pG9XYn
zJI48BTm}v_MMO1=-&81s<X*h?iI$=`buiP4kwl(-6CSD52%daHlnkOp_8qn3eTt}D
z#y1La_nov##x5u(8N-T03HO-;m@2XkJY?Ll?wyR88|On!=925*c0P>F4v4JVI3ULI
zt&fO4HB4v(FGl5bbLov$ibx7Eit*W72e=-Y1X9@T)d^L&0XaF)p=dqAkg>eUQxZ4H
z(uNbWIk5p(h`esRi;RmdzS2KXMouhjoIS@k`Y~vZfKV>JFovs<-x#8RrHc&6p+C4)
zMFtCEIL3t~7+V(8(MaCK#u0+Vml44qKA8tQVqgg(btY;lXB*@6gN6aEekgPd1__Cj
zouHVCK5Xkw_oNylah0;-H*ksy=#ty4>o*bWl(Nk@>#9eLGF(=W4~<i`1vs6aDq{>>
z57*d#%n1h})T1qQkxU^XKa9D#vD3rzhcOAtB)_E-*l+Jl`2P}p$+`KLpKpu*{x2x~
z9V{Z0aL`HG>n-<m+O9c|BOHsTz|OoY2Ad=zW2|DpB?hdnxDxO3s>f-*brvULf6EJ+
z97*^S@!z~xv-$M+ZaMe=QOsTkt6ov)us)>JfH)Wdh^n5q1eonCo>xFQ(*sY)>^)-P
zdjUQPfyjF{0YFzrj3JBW7;T50xn=P%a-99}YT;L}76>T8Ebv{La&!Dg#y*}ACCZ+A
z5SR)0^;`bIpJ~ELkv^sj!j1-8=q6l0BR#~ydA80p9U^E5F-N3ARtYUYMF70>bYPx`
z)oGl^kBYr7f3rP<n$sNVK8;-oR*j-u5~Vm^?-Dj$i7?$%anvcBHH;>~eMXPvK}NZY
z*2+*+{XWNNuUI{6+qX|=!!(MuYsGrOFW`+06rzyYCYl(0Bez1RJh4k!FqEj`(Gbg|
zj=|wAqAevlCV_VpaRo%-y2TU(j&W%yluTy>Ss?~`CNn`?%5}|uk1T*Q<l0FQFJf>q
z6s*vVqhc3hrIB?H`xx}`jy(uQ^Sa3!F&BSK%_~B9AzZ*wd5^;YCQhwbFS8*C^G@Cn
zyI)?SDxRQ=%vPWkgr1Uhk3CvK8&AdJT6Y?yst$Kc&m+B^c0qb5i0zovimhYbcZicB
za>+wZtW(EJWQ$`d$&e+H3?6iFq{FBJouHV~C?gNDIwLCrCRUCP@sXh&QPFYy4<8@j
z!@BOwZdb}d^ICPjb|8PjK6X5DjrdRF9G+a^)J!oZRG(0_Lh7J*Q@V`EeTYnl)BWTG
zL}^^lAa<m3EM*53%N*WCt{8yeL$Q*ugHAI1)MVT%c7fLl{Jj;|v9u#Bpi?O*ZE^VW
zHA0``j?YuclmsQfS=)%ay3K#t?(M05OD}8U3r}7MRVpS8hDSB^1&)~khg7(^#8hBA
zaAlze%TiDi9L0lgh#VUT#_zar*oG04O+%=d!c`i4l}4Ez$Ws}jA0N7+EqX<v<mF@;
zJ6XHV{N>W8&9yb|WgG7#@iV`)BI=WbUsDRse?R{CbUp)yAJq`|#9)y7CBNc13D*B|
zT>o`l|G&>o&|u=sX7)ZxSapX_m3dz!$pwpu$`4o)QXYQ$HhxuK{0Mvgq<bqAW<M`d
zwrmdOsC!;fI85AyNA`W>Os#YZj)~xj7wDu#jS_#j(4|eL*Hd{qq5hx>G32;)BPT>0
z0`zbO;oh>1(8>I$6y+99xSYCq2&A%%FJxKiR80>Lld)|HZPrz)6Q*5i0bM?Vj&%%u
zpD-D4w^H_Rkz{<3Om8zx9q|H>mduo13o2Kv%3Um1v5vvXDG(#Aa|0TA$0rXpbB7@g
zxvHQLJf5LA$Z*$q_Tr&))Yr#|<%@-1kA~GrF>X|$c$8Iktg<mfFv7{tVM%mXDrYp#
z`DEM(10XYHsMZjUbmqcm_SWz*Rjf9w0FS%iW;qbr9ddP8$&CNUX?-p0ru9H)$0-(c
zc7g&Os{N|Q_hI70Ex22W=298w(W*n|WYF2Vz$A$3F>kI-^Xi!(DD9CiC~ZgmL(?wD
z3bVfK4=y6}(M#~Mk`-ZW3(BDneal5#>ikq~tDH?MEdG@i=P3>S<%9NeA1f7uoT}~W
z@BsG_?eJm@qL=f@q-Eng3At}^@wVl`Af-JVds_u%@~Zq1IS!2DxjN;<ctGo}<0KCk
z>g;nIoMSVVjI)Kgh+Blg1RzwvGkG#AP@nZG#1kZyJSFSMY4FQUfDdya#^4+`LeEUd
zjyGsYA5o1%MvFg|2DBC%6KJosyi}p9#)?%$6?dqm;}ULrtBBhm&2pd}tIp&i6X%*m
zyRuAP&Wv0Wdsro##rT*u^HCE|hSCaib<A}g8d#5!0lOK>x@ok6CO7pu(3VwpQdf$Y
z?7*f)QVR(sM@&=XvtmkB)D%`$7DN4rdu*d*<%_<%h-!?CwnRYx5gP;`?^;?a@l`xv
zlW{Y%*3pCVBr`6!lQO3*W=(BS6T*NI7rSrJJ;SM&%?lkIM6m`;E~9aI;p|MkK)hvf
z`GQe^4P8K$R=`_GLraM#Q6oOj+l@06bKx37{BEH~P3})^5-gc>pSor>7H3OLm^i!^
z&##$2m;Qv|q+>GiSx47-O=&7K8?Sh3JR%VL$_{74A^QyCta~AjBh=IjLmhWX1YO68
z7Nd$RW)v=Rtutco=zfW`cBp^|%3&&`?7BX3&<(t{<aMZ(iZ5tl?)30d68jCQZNyBY
zvdQSt8BifFq$CI-#7W4A0)pF20$PCJek5ho<fgkAe{$r_6<w`0cpS#~TnoLR45KZJ
z2dQ1sm3W7`Kjcbzc#L)c^nySfJm72%gRC>kLKar>NEgvic7%{UTgDm=l;##NQLU}H
zL&Gk|_UFE$InbKJYwaU0au^PXHgTY}Bf=l+tB$meT!_(Nq_jWw+r)Xu;if_kT1n)_
z$5_c@#R;!dvSm^^VyluxQ^ysrU9Gm)<7>wkcHM7xZO;yi+yAd1|I`&^P~rbe$UkQZ
z`CSeiT`7L%3R14FAlz)ddw=c=Cr2XtfCreT^q|`8w4Piml;L;5F=~I~K*VpN&;r!!
zF5&7lv29C53ur?W+`rd2rSWnkzhA~AP(dNmjoMkN->cv$;xHD+HUcQYwm8IZ0-Df6
z%JO;T&5=8QT85~P6lrH$u!I3CZenpq>SkII<D8AfOI2Pr3+_2jgATKow6cs56+OmW
zC+d`6OPY#VSH}|WTEUHVH};5VK;0UtVK-x?Aiynk!PS01rIpg}f>9BS;}C;QS0jLT
zqg<2>niR1Y@K~BL_0eb)YM|3vFG8nF<j(}~lEnJU^2<*bJtn+0>lLCN56eL921uL}
zg64rU%Pkv4jpfot@!Ut3J>J>}8iX{wfdW)HmhehkQalgv4!?bD#sBH2r}v-Ei(e1;
z<Vo%#)^RI)1f8rwz<BDm4gt#9<w|_MdZ%RYQDVrRUtr!LxMTJ}kOx>!XVu$kUBA}}
z)eer=xfIiyiR?<0*JFx6R!LSvl+vBe?xEt!pdt$4vZyo9fCK<}A<jXJLvG`!JEclz
z1dwW$o!a(fD|*Laf*v^nMQPS)qiSWP*dOrN8l>-JsBxak+=%dKT6ZZJ%6C*fa$`0e
zn1`ZQ?d4C3{Px4LTsku@Ii5G0Y}!q>4VSIuBGhRDS))O$0TnH%g-sapXu~}9dThow
zb?QAkUP+csy9p;PEDAO|=VRlgb{AVDbi4*gFeDm!yb@y#_c<!!ZJJO{+Ay_EBmN}j
z?@iY^Zh&ANIDHrBSsR3`R|+2zbzc-qb;{(*(8q-pz40B_LIDdY8mfFu2*xRA^GC3t
z7UFrG6NFT_5ckp()IIWB0fc3Oln05rGTFf3;wlz=M(1v`;uUJ6OsZL^QO<-1*$XnP
zQ)u9LP|-6kI75UwR!R|bhHHBKA(~e#uR@6wAiTUnV3q_DBRa&yZc!8ZMk1p)WSCeF
zXt51^n5Q3zBUaxA6Y$kYN{TvA)RCeN6m_Jii&lBm8&q+is3S!kDC&%&MoecUHFA=$
zps7>(YUkIW>7yvHM;&h~7zt_WNmFk`^+r{Yk%=`68CCHhJ3*eHssmLWsY;^Su7)%P
z8=yGS)RCr+G<Bq@15Js1SUhR!KvVIgsRK>Vhw-PE3*QirZ~x2ZUi1G{g?v{^-)(<~
zdy<zCbV=+=;^RJ|9bOF2QoogCwhe3OQkO=pKjyEPpxM5+r{=Pmmz!%h=HqfX8NW$^
zW5RCs-RV5sZ_mShI}djnDg9QVs<sXDvOK;#pX-q550pt1{d;4}bX_xf5@`3HCqbwo
z)NYL}nz{;Qw$Z8C<MIBrqf8LuCbIG*RvYDWyDH>RP|}=<<}<ikDf5;SAQf^kksP#d
zsO75EXSvIn(@auINdbP@Ct-*bVbsnmyMUK$_rfX3N8{-PvP4kIEPzYMG?&yn9=e90
z71`5!?k-UPWaU*?$(w;--FPXwWNO+dnC&yg8F<Tl#Mlc9nLAWA1$%;)W-Ni}8DR}f
zn?3H!nW{->W!T-AWg{u!dtwrS)r$o(+899SV6j}{0UCs&Fcz5V;v*|VeL_?^tA!du
z`R~rVz$fN)PKCJ?6rZi%u>BLmrgmgaR36zg5mHA$DG)|sD^9?p)R@yis4xo|cEu&i
z6D#f=+X!Sshzx7I{k7x#rfo7ciQ<L<Z$f}=OC7FE7E>LkM$y3gun?3;i9e?r4>e>7
z6|IsupjsU3Oe(z3iX>~NY)q_DsIM6-V-RHFGD1q=P8BK&(}w!7S41Ug`&3Oylo}+}
zPYHh%;LAbsj^^0T2QOnMePMQ-(?#D%)#kx#y(4YAhg9~D#14|dQt1`?*}dI~LiHzs
z^&#ADQ1vKc3TN=f)_Qc0+(!Q(bIj;Mv~(mLrD01=b_4ce*wC|gNw5Uy=Duw@OFH%z
zFQTr~$?hcG^ufEIGFixiv6%&}noQ1>jSY-~sM*v)358Q6T%}{7VG?l`yn@;iHhTD^
z8uKXmsV4BW2;D-k0V?|o6<>tGXTc6^F4HPpre`OHxCiep;0X#-B3TdJih{nA7O!UQ
zK2sUELr#aDi7Oy}WrQ_xoing|?u6;~Ny(co#8waWfdJG8?XML@svMNR_?Rn@QIG`0
zBht?)4)Ua*BmKzL1^u`#pwRRVMe=#l&l&wdF_5Tme#1AlcoGmT5BfocIDtntP$Wq|
z2A{nV(366m97a&kLW6?N`Y5_3DagV&qo8I-0+N0%qdKISBmG8r(9a3g@JK&L`gzjN
z8U5_E3~C+K<eDAMjD)^<qpXJslNRi+BPOqYmtiu3nF~1JT$EDgC}U8<Y_pkqa#ptU
znN4VzgUULkaZZzNLHhU{(^{*X*Gf5`*y=j7iAU#35tIj9^mcYjoZf0Zo!`RLn@w?{
zVvbWza#F{T%^@OxEfo!(u^0*y$RmMuz6%`_Uc`*2nDW$FDpSYK4bz_5d9<O&;@mkU
zoBM>5A9XV7>Gb#W<GeqBynC79TB4UNx0ATmqK%O0k$b6#zVdmH=`A~Z(_r6;Z|)6{
zJ5aFA*}Ds<i~H-)sg<KnZDSyoBY^K}32{)}ePQ6B={Qtf7~$}6c#qxe>)mlP|8m^M
zUu@<X^cJ*zJ<0X*az?1A2KbI0NFzo<s<UbD<6@zN5j%V@@VR!kdBLE)3!ASP8lQT;
z_UlXS_F{y`w|_mh*A&v)WC&WT+4IYW<Ks=+>D24meAq-3_;}<X%DWWW6sxg)A7NOK
zn&WNb!o60<>q3kEq+A0*l`<8qY9-S004sjZU}6d{3!*jqCSOb2QuUU$CG9O~rc6se
zB<zr`L$N!qht~TD5BFy-REq8YlHs?fDA&OlA5;x!7<<rjnBf&=SO>^()90qwUT83Y
zV{eZv9W1=HZ1eDz2mUtb$J}Bw`!$#QC>L+G*^Hd+?>UMNfXGt-Nvh0+@Q|22Vr=T|
z<qLCZ`r7p3#VM(d)d#*C+^Kt#>@oroo-c{QhPt8o7Uc`F=QKEa23WuseuqWaJ?N!D
zh2DthIweV4s7)^1LImk|8H;GM9d3@UfVWr7ZA6;_xtnyBLI2|^B)$?9x)cKMGTg#Y
z-4~qB1t*&ZmZ5o(49L*MLMKTPJI4yu+m3QMyP>Txa(N}ZP3`uBB3pqb%cu_^ZZwV$
z#`Wa0Fh1F9t!rW)ji2t4(&5Bn6mUj?Ig)*0SDh5sfRcI^c>H+wqydEYy&h>`ZfPu>
z<RNlJHySvjfhP@|(ZCNHNQd4<S*-4UkYH04XH^+LRthYV=_|-?7T;~JD*?tAXC39^
z#}9vgxh68G&HSr}KtqgXrUz=42ay%=5i%uG&ZUSF3tP@$+O}2|BX^Wl@hR)&4sVY(
z7wicd+L9u{h}aNp2T}`d!GMqTAw{`5%HiV=0zkT8u`-*;Td-iq>Xmv4K1G%m<tE)u
z!R4&O?6gH@TUjZ;zGh$)Ibn4Vx?uERIk-#2iNYWP={S5CXsay?%Dlm~CGPEL{gjvt
z>+Nx&7R{(K@3$w6<8UL9yGh&?8tF@l9OJApFSlBNZRByeO%t5JO86@P6|ljv@f(Bj
zN&Y^ubgE!1#G8GDb5hKLCUPLf9SIqGn`Dqu)U}2iTKMWh@X*>Ab8K|%eALG7=>G5L
zcTXSxuvgB1x`gV><%pRN6i|JLSaZr3x?1YD+?>Q4-iPq2O&KmhGq+V*AQMRDVlOs?
zQkG{`R4&@VsPT+IO{GqOv7q_Oewyorn$EF&vE!z2t)}!7d$p>zC;9NlcTX3DT<wYJ
z+Yg+tzF?mh8jJ{lo1d`hOK#j(SMf|99KgJId{ubOGd0Z;ui_OJM%+6hYK{0T<OM0)
z$sH1c3aPSAiK6?`A-8I9y2cYB`dXb5y=YrmBs;rVNyuXA5GG=Y#9%CNSI?*=h#U72
z*-rW`z~4J7=}^gfy^=1GvQ|mf(Xoz<9a?qcK4P<m&T5DX+Sz(${T%A&SU-;r!wQmV
zkQY>$ydsHAIkD8dkCa(O&nlvZ9yP3UM1DNhk@YHOO2`_5fY89Fp;@u>NZAM)wvvWR
zQNvc&u$5WhQ3>BDF`l>N8x@Tc2D`Wa;oYaF%h^H?M)O$T^VG1(>{Ew<RrWY@Xa#{w
zUw=fw5uU)jl^ur~9NNbVi$=YDDRfJZ-phrq_5)98K_)TL;7zReN_69X(SPG*2iEMy
z{h|Zsiw>NbHt!c5xUd6PhikD8oQfOwiw<1aflcQupY`B+=)h*8Ru<NA(}ATXH|`f5
zI39a&Ll4fTQ%SVe5Irmr$%yR{bnNkest?Z}e*Vk(iE*a*E=hoh%uYe(W#hzwh7-LP
zJv!hx_o-n!-1YV0jeY!F<yF9KBqD3=j)Fm0gYgfmUIS+%sXm1JnB}&kk5_~9AFt26
zeh@Ha{qo!e2(i_ZjyfD_&<^`W;eLJ`e|D*6++D@>4U=E{d<N&ByKtYfnDfC`U-0O0
z6V3BO+t;t8r_0!L4|_lM6K8%?NQs8Hhwz5iaf{ip;dXS4#kzHM4KK#(z<#Wm7NfZf
z3`<L;qtF0CK)t_Oz^kb#(#WUfxc<c1h+-Au7&e9egp|Xt2vHb2Ws5xj6`4Z7^E7FQ
z4)<DQ{Y@T!HpXO}dZ7#<#Y|a)im4+9edO_W<&R8~nxjNHEfjqj97m=RQBWQPi}A**
zf|Ho3(<(`wISbqe)BX~bx@FSoB&QLtr;RW-SOpE1rXI<0$u*B(nEXN$nkRCV2OvsR
zS37A_!LqIPi!~@6H3Vcy1EV^nh96lKzY1|hV-gR_Q2{T2htCGYt}iqP8F*UgWwu&T
z<S`0;=-O?trKX%Iv1{dT>|M!n9Jvww6@<@11&~N=#|d6|XrCOxgKu<+9?C9BW47F0
zzTW*_qPm;C$db+R77mG3=qePJ#GcE`vGw}n{Cpt+re7a|sEF>00#j+{52{!v*chHK
zFF=IvF_T>&wjky;lRIin`b6cF>kP^rl9XnyJsIOQTk^i>d<(n708^7wrNJO<*vwLN
zAb215uB*Z2D@({7{YW(3#q!PH43Ac^57m8>uHcUB-ED=om%XOM7eDWP$(+mJLZ>1O
ztz2(7P-x-00|oG$!!FiBCX+Ai8Urt;^39C8dkK2vgyGe}3mK$mR3N#QN0o2SqL!OE
z{4&=9eNk=q;i&$3f?@8@sc}Ln_W763Kb=pelFbkk(m}EsA81iWgqjpRuQ<|XkBh^F
z%%L`pwP~ZA_8cy==lf$M1}z>=u>relc*%&J>j06o^2V@=Fxx(e-tZrJ-`ZV8Y#T&)
zsR)Sf6pk$K7~Oh4;^E%fP7iAzKRH?XH0-44t+$e7hw&@{Y$^H=w%~)d+etRAr6)`2
zSV_@*`wVZtZ8vJo(Sc^W#%s#uqV3jcqS!ofoG1pxsq~xVUs(fAr~le!&E=NsQcUY(
zntl)+V`95KLm4RMlRojl+rX1}NOGO9blQ5l+hmR>vv-o4Z;Re4W-mLDn{SKWbibOh
zx4Q8b3)ziI90>9J_~GS3i#=0|J%>Q%5v|CI-YE_q*lXgqnDh5i>1#!*aqd(Q^C5~&
zic&qft(TGwsU};n*ET(lY%KXT+4VM_jvSm&NO3bM&a`}IkB>ruk%^_cR^gcXs3P_0
z3*@`yA%~lZX_)!kWDNFl%-$m(%ix&sdLPf%OvpOU;dXKwZcy~E<i9CY`I0`QqW=ix
zHQ?*JSa2vWbgC>#xV^3|abGN&9JxTn3LCY3cVSrw=ERgsb0bIIYp#bJMRd*W0Xcm?
z{YOS9daUY3hE}y$*9-^YtUrNx-`}A|Mk~!mhAYhu8J@I~HQC9Wl}=scQ%b$Rjb{iQ
zr=sKzPc8B`$*KGObzJ}H+(o_wj%Za(CtRt^U5-#prX!B#v<G4zIlBBZ^Y!M!3auh$
zmcA3HHf*9GZtB>3{{Z#3SlqaU@lUaJ)tS6%E!>(a*&3C&nzRE7X@ho<N@R=<&d!39
z6ZY|7eG6WdNnkb?i3vcHzC;*^x`>$SgTxt;Jfbs_M|8&VjJ`==W+>Ub)QFmTG~Msw
zk$RpA0?a&H=Bd3|?u*w*&2{1>-D%5IYd7mNRbnqmVGv8UZ(#vI*}=0vmG>LL{EEjB
z0!>lJ`QMKJr%S9G%dT6WIX>RXy4Lc^x|kl<bUt3Y&!>z2W6qYOIfbXRC<AWg6%5Mm
z`e8$3xq8}I+2lt=6{5KSNkp#u>_Hl|0p&S|A`~Tv#zt!)_g`j%^4W*%l%!tO42#Pq
z<pA}{e3wcj%Z?g5CGn>1s_(V!>jHpo*<m=N9#pJ^F{b&bA*3uVhUs!(ST#46fTrLJ
zIPl5ST?_q@p#nUbGeD4vYlVQiAymT+Q24duqFH#*fL8K==bJD<n^QZ@EzB}@nGiJ-
zzbK-K2<UX}7`1(!x%G)Zewm*ywA!m}6TqZ!5&at4#Vz9R)XA=ilwH_Jiv<68^>)a!
z(h?g|dHrr2Bo?ON`RmpDDHJ}%VGK}Zge%gx5Dcc<l_z1(3q{U$B`c>?XSc^*z{llv
zEp*0fOyhkM1NB%^2~?mCkmAYJN?28Sy;_kN#J-ongHnYoqi1Mn@@mm7TNWWNEMfC@
z+aw_KLJPO<>zoz(gS<X+{y%EuXm${iE%Yiw^BUomzaPo{cD&jrh+OQuh37zA9O-9Q
zc7s3u=3I6ae?uW4C2y_}Ap!jGM(xY$pf^V;xZO4HgdnU08XdOCN!N~unQp=NG3Xp=
zacP#AiU41`fC!!u3<)?o8!#gkn=c=z2Z#}krQASkJIjF4*jY+n+nu1X2=f(qKh(pJ
zTuPgCiQr<%E~4ofZn*i{b{@|dCRf{~TppxmK)03POWwtlkXbBPJXZ>CFG!fisctGL
z2z2DTIEnfI-MNg#Kl^Tc6r~a?;R4VRDFn<jA^*)K@CXQ5M2zArN;G#si3t$r)j~+>
zL7;%z!G=hH!R%BsH~da14P-ax+7GFZwWGL7C?bP_?(9noa?4>rZ=hww0({HfpP+s&
zjschDYf*zoQUr<^na~*DLWuRiBHbd--k>@+P!U4OmZ?^@gU~~kmVK(bn$XNKE4teh
zIW&{?N^uD6rozE)IM{fNz|Ld3Y3ii2OEmV|yu-kXOu9{NSLvUR;^!M_T+I)*jdUOS
z*6FhEeYp^9=!(u5sJFCHa;^d6oa?L*#o^)@LQ`}Xj9*X3T6Sr)`D8GnTXoFzG0@_%
zwFw2q;4Hin>njp(M6jWzic*UV8ZxE%jSph`o&%%xS7ZnDX6El(zFcw6kZ2~O043o}
zmmtfYdfG%~u?bk1sCvyS!LX{IO2if<A*w%oWCbvmu9bqhoMvkO{rY6EYlY%SBrH@_
zJl1MCA;Bg|CRJ0PbOzxZFC?S|S3<hA4cf5{+S&%2W5dzM^+BknM=@AA5rdTrF<3!h
zjd>ze3rO>A(%N^t_m5v5fAhF~I_rIL4y&<sO;gmgQ*0sh4o_n4c;u2oH@gx5Ktyr>
zRXDs2Bvi}w!BV&jBwwzy_fH8i@KxC2I$j}Y(f`WKV=cQF_>Nhp_&V#9E$ft#wY_D+
zm08nErlOx`mlEGaOrin1vnf}8Jc7SUy-y9B@L;Ko{6X<p!mDCveO-(kEu|b$40~(v
zt5%GZzP}i$9E*`sVPic#{`TA|{?Voh*sGMlE%2n~1tODo;fY59Ji+k{A@CemFU|)C
z&dzYqS{RQU9(`AmJl!Na@|2@8+jf<Lma=+C7xicwxcd#tGkvAqT+fL?{H+<gL&nZB
zmiDSFW@`{jgF#(GFDF<>z<rCbJ$CjO6{>k3U14w&LZ<~+jQG`irQENGY>X+uQ*t98
zKoXDgS$q~;N8tjfVZ|AAIV&yzffOuNa!pz-9>9(GC^R$MszCP5z^YPdt_mWEA^>5f
zaN0FO`6G$OA66yogj$AffP}cw7ABg+#5{9$s=OAPpVWQ~g-vMw@vzkcq<j{?I9^BC
zzC!8w#e&mS%g%1I#W{^>KNy=BJ76VvT&2&)(llpbepA*-Q^22Y_%KC<=zA3CW(81w
zRMcrf&-;e*Z&D=sFiB<wx>bCVC-yqgq_zaB?5ix+#Qh+SCs~T!)Q0TG&-2UUm$O5A
zRi4jEs@%;L?nG%iiDif1dmSDq6OKxzgcBLO=Yk2;23}?wdE&y8j5o*KlgWVTOkubt
zXr7jW_(ia11u1aZ5O_x>C6W;TI_|?+2;z$!R46f^6tiG29_Yb8@vp8BTaiD^#4?&A
z1@p^o_`Dn3V;$ZIk|T7Sfh<*@C^TNMPI27LhF(6rHSko==L|ikI5#_a7ZzKM03Fb0
z3HwV~xPxrZP<8ON60QuzV%eJEG8L!X=(1w8VN?Uk9B9MTo?Zl55ZJoH+!!wnta_kt
zCHUmfNT6r#O^0_0qJ^<?Gg%4IOoR!5Nj~O=O4raQ!pX;~TiFmqQz8ti#U}6?+7ziV
z16(3tvxKn{Vmt2p;4cG#p`|NckZR<U3Pug@II`ibxd_GwXv$d~g{Jlg9tK^G&?C_I
zR4kSDzgaPD;lH6`1aHz_zC+8P84^(o-=SrYO`aKbOnBShf1zZ%p4w%FwlXQhz+N(q
zy%Es1OA@ZD6vQrQ90Yy6p*Frn@LZAVQm1<RTFV~kA!%>9TvuGU!F&W)t2k7i_(0HT
z2L2F9@cj7l@o|2B{Qb-01ssq`iMu%`3WcyLf{8M;851?NnzXa^yRVt<1rp9Dw1}iy
zZl@`)5@1d|HLUB9^4C6%y-M7ulnFDnPD+E*#0xWw_^MmHsisZpKnKH-1s$2aFM)pt
zNCcj4bF=)D6=nlO&yIO~#;a~AR`teN?{yz|rmt_E@iy5SnaKt176mH(sJ0^oW~;X&
z30Q4M5{zsevt6v-o-~+Qb59zu=AJ}gojfXqiW9TBSoIw)tT?ko#T{cCO`Xw{H8+`w
zRosyXR&QsGu!(iF-)wa!eX1KIaID|XsvjKdPc2p>!5U#<#XXyzq83uXs_l#fCz+<j
zpB9t#cAx;O?TiA)DoKQ5F0b>U@>Xw05*+BXoYEB4cBFt++mQsL+RobEYVH(GfS29U
ztgPAEw9i(1YkRA>Ck@u_v9RLa8lN?1_qU2$_aE6B>8+T~ipf4t3b5XeBv^a1)!iTK
zzP5hsqw^oe$l_0jll6I$z`DGV;AHrv<z%>`-Xu<C-^bk=e(m^EAdG@xkQ)i8#%s|a
zYmA_3Z&Qi0D0nSODO{aOA|tPW!7G%=)n;Je;<OPEfItHoQY~_jVZJ%^^oX9B7e!V@
zCmJ>82u4NVL&t~aZ40Z9M#?uj`iNK(j!BFhz2zADfYKIv{pK7|qm|IJgv1TrKdi_h
zrA6thPf$IU)S=8QD0g3p1uc#_E>={J0?r_VCq;}5#K#gNgGYv_5`U4)(3g{MQ6H|L
zRv*WzS$#%MRv#7&RN$wq94q9la>u;Vev6QZgk`tcO6FNeww1R+o={?8tvxaNQEA8O
zv(k?BKT^3YUadupu`TV5G^Rfa2W<quxi9|M9cEI;lTf6NC!vmgr&#eFi%-%xqmuF)
zlF6FEjdr(Y_iXk-UvKn9#o1R`Z|kep8rIXS=^UGmBz2&!7)d!4bhPwn3!i9QPwb37
zvli^hRtxLNR*R7VYT>OHTJL3rSPARM?j-%u4V`UfK0N;T>GSsK9P3@HvB%JN^EC<T
z_9!?#cSv!%r!v`C@c<^UlT2$^2Q%)i{VEkcHE7YTZ_VK)?jwjh|L^q?JNAM_*|?O3
zJ9E5WSMdxY5NsON&j_Swz{8+VBbId;T3Oh8>WcB~8bYaCREMZ0W*~EvY8T7_4oeo~
zM|6IW#gx_Qc~p6Lq{-9jVlx_Wc&t3LqLn#;MTppFi>WNVc~4H6{=0Z6i<JUm$|gc1
zd4&6?YHm#FEr6SCG9AU6*Ay{t8O5wnn1p%PEMB4=UD;<U8xc_rJGg<e<_*cA{F{~5
za7w=q=!q%!iB078War82sR_Fq!PV;9IO%VY4h35ORF}+AXnr5dcW4rn(7r>HfMaWZ
zx=>{>$8p{A*9v6`h?z<!=4*EqL$i>BQPC@tY?7EpOQy51TiC54dJDT%^fq`ap+jo<
zc@#Q6(#>i0fC#G_$?SL#eQ?T+Wn3Y3Oe0)6kzF>7<{~ICB0FA3n4h@d7=6QNP7^?p
zW{Yqd&BANS7R|9V^D)ip4uwIrQ4pnIL$v)&)QM!Q{#>aC|KFMR&q@_2IAdJ;_YwfU
z&|bNuCI(Fmg`Y&60XBqRu7RhqgtJ_BD}H~TdK&Oa5{M-wLNL_Ou%yQx;FG0J8tHRL
z6S$D*W=yBxgb}rZSwhSwOwD*WCE*<?c4-$2B$R|P3Pd<3CQ@=t7MgG{@CKb!62z~a
zM?wf~W-gFW#W3_N9xf~hlf@mNObQu1iLfX_XG@SFPSmMS$f$es8I<c@>Kt*HlZ>sz
zCf07;$kt{`8!Jy1_#)<&@QsEUI81V%3(hL`mUQGtl^Tpl2q+0$hD{}unQZ;-K$oG)
z(KAg1;zlwDF80ZHk`0kQuTTzLQn-hR>l+^r@i#<M>`3ii6lmShjo@0`VT{a^C<UOE
zB#t5|s?fB1QZ;hNsapte{0|XDfR+c5dDE24Qpgu0geEL`iQl!UidD@kW*tE&az{#o
zj0ggF62K!_K-GXZj2%Qb5a1Q%A~d6{BW0J`*$J^X*$*9HK2e>-$W<twOR{52)5}p)
zbi53nbhOTZMQ-#PZ~aD5i#V{Cvu~)6`7_Gc&NXPhNC-IJTVGF(ecjn8@EiqmreM1u
zs}NBU<$y7`woSsyw+=G4G`_x%39|nUex^ov+@xXB#FwJsWc-$M?3D68a?2`$!$0~=
z&mh7i5oNG7rw^=uCAb`eMUg?+;4BfxcR0-9h=Fy99fAm2Hex3&8-oym66ONT13Cl4
zZO-H-p#b|3yT8y!C_lp~i%bTEAq(qVfdjA;Sh^8&0^^DL1LoJAaK9ll*R;eeSfRR1
z+IUuF2E7pFxO;Z#5yl|hdB}Du)uA=|!bu6#<X4qk6#(`}SlgxDh|FVynXa3q;YiXU
z$x#G{B2?_d3mx7zD<-<Mjv!0?VD;NDKNq1Y*6ujiVm8Q+m@|$iYax#9``Zt@r}Gxh
zl2&(&Nd`iC$)<Q#0)hbU8hlo&uR6v!!ldIBUl;&7-wp)ye$;v8<D<zKp@UP?H#)P@
zWxyMyMLm%Jz_i}5j>jJH`HwG`JwpHABTmyIzSY~M_J$=pwBzSbR|a<ew=|=Oz8y2_
zP{HkoKVMd`{97vc*8TJiCx|yo>aBbHn-%Qsk~(y)FV8PeS4L0$w{@<!Bm7$~KW~`U
zk@SE1d`bBBKS2059Y02{A3uC~T>O{4g!uE1FONT6VBcp$!7QP<uiC7B&9*kzTb8E)
z61io0`pXokOL>V4d|%}XEbz{^D;UfodIf~J?GO8qF+er{JCK{N6s3i$2*psw`zO;T
z{PF)-;tDW|tB!a;$Qyom^oEle3GKR<87M?ZrHS^H7E7xCbnhX{_~mK-^5OHPH@K%^
z6-}uXVSj}h*o9hL-5`L)u2hFlBdmE!!1P0`@!^PUN}VIjPh4<}zKA6773?;j#I|@N
zJdz%<{b_7(F)TdNwxUpi3PVo3q?(`NgkH@r(%^Db3LF(~0HTFFG<F}PDD2~RMX&Xb
zbYldEbvAIX=Q1D@?tD(jIru^pV&YVS#>ZTj(-N{&3G8Bq2vSa<_&Rw0yASW5F4hTy
z5E7euY*sf26`R`4Bl_#L;cPuPUj%Gxeq-_2p2a@P>1-9UB|zKPCgLQw=Hb-zCIY}s
z7y~2KU;p}-a~SYa-wFmC@+K!Rom))eh0AQt%yIFlQf6a#A-pVz;!iL9B72(DR(w(1
z>)4K$V{D6zi1>n$2ViDZS`UeRHX>7wX|BTYk@}Mlve15r+%Xzdo<Q$d`K+y9p#;4~
z{9!cQ*LK!QbId%YuV<cAk@<fJ?NTY{v||VQ^mq=RT*(52e6=eW>+}psOFk15Q#Xep
z0OF>7ltvdL^fbd)^z{pwt>V{Y9Bhnr`V_uTEzA)TR&%A`DE&>Vi)Tb_uHw03*+5dv
z$nSH4OggMCauQ48Q4;fFOAn>=<Svlyn+IqRj#ApyiZGhr=nSEG$^#O1xZGFsTh9S1
z_b^haGr?6^G^Ko*CI}Qp>z$HO9(%{z6BohC^5de~9o^x;i!fp(aZ}u+&Z^9wv@;!H
zR>msqp;L;VlQF5OwoKv`s3%j-QN5sQ$=(ik%^-~FmZ~4^u!&^?x@?&;VxTlrw8G_s
z8~?~^GrPih0*{PyER3dbqPcd8aq5p9{B>cn3C&$hG>@@jR?_7;N~7)K=s4mNwFCm9
zh(i>Z`DJ<^#nROd&TDD44Ph$|1`#0Hwy>abw1T7@K4J}$A}ADK;W)^LFJmPy7!jkh
zh$yno>^i~BywxEcTm<<b366`;Kc0J*d7n6~cJT7wiRe2F8-W9m{Gh!&#`13eKkWZS
z&+vUJ?d&O4VH?4eZhRA?T=_;C#8h_~yQ+6mcuVq5Acidn#V(IY5aMU=itcapXE&~a
z{}|=hfRT8IbvwypQO0Fn4Bso%Y~eEmLi2sXFh?={Rt$>#&h!y6D*8Lxg4451+$374
z>{EEoCPN1AeV?vC2Jx;=UEWdC1__kD(S2?m>cT&qRQKH|*{|U&dtVnL1>XcC&>EZn
zGznw##6*8Ue*59aPy3^iv{O4Z)29`Pz_@)=3SFSsQts%Y$Uv7{pd+r#Kuu=2Tg;o1
zc>0sYg`wwCChpVB_Zw%h>JkE+6FAnVIK0jwz%Q4?sbA+xTZfK#7`lp~PFFT}0)PtI
zLeqIzvC&!_UBg~clX&*&I+z1gp=F<-VpJ6+Xc^5CIn}~VI)@;2*)i?m5iU4TniVQ$
zfWXZtYbSB&3|UCpG_*Fk)087|7<#5+<Q?soi|Ha25TgS7iU!T7yH0W7;~~Ir7f*xo
zq?FxZnLtbjDmlzhpb{^jslntS!|vF2321BAbWf68Q$3*;+N`kKfbvr?D`aZZ4!mUp
zk0_C9jkt)S1?bg7qb;N8e1AEcFtmzI7z)zViq*Nfj6PDiGj_`ADnvpBdE_+V;H2hv
zTUH0>aaiuiMl)?mDy(A696%YxBQm3SL|#x@h!V{>oapbmNeY9Q3b^s1H^oXJ8tu>3
zAxWg<EX`nP$dVK7HDQt0sP0!cxuB8D-zkO=0-#2em*C1GToru6N`VpPQ{BYO%;9z{
zW@W>Huxu)t0>pAxCxbcQ{kDElgDkoW30~;Cx(q^iG?mMiIW5`Tq2nj4g;mfuD=z3&
zC2%C8sbJP*T{5ECeCOtiD8;N=o6@TmYsVHdT}>@|f`)QpA+UV~1o#^LkI@b<$P{8P
z^S@mlzx?Lu{e>^YN-@sRbbC(isvU;5D>DeE{3s17nM9CB5)TRBiS6plBKexR2(d8<
z6)5fcRP`M#iAAWit8FY(pSd&2UTk=%1&X_78nQj1C9BUJA|Yk)8S9_p8>d)Azf;le
z^QXrz=hz(jn-w>g+nN)nf%Is{03CbQU@vkp5J|q(h6vj==J<oNadWs+Cw*vPLPK>b
zs3^VtI9wQdCNwDC1wKR+26)*;p1v}s>cfi1J-O1rNI7?lGpj%ZDmK29|7UC*Q3z}s
zJC~Q{vEL_tX0rK2eKtUhhQPB=4Glj448S%J3q-C%`0euW*)6uiElXkM)ECJ#kTUct
zuwc|e#T+CiqUWl!iI^B7GAW$GH8aleYvqqbdiErcCx!SJkt{$8`N;Ddy=Qt5$(Fo?
zXQ*A_@>hoGB)brZw4hr2Zcf9pt52Eq!nU4(q=}0;NzJM@1fEHvzAnn32m?kT{PvmY
zn$`v><clx{XG^Ym*vX?^KqCu*MmT1ulVZz8cAycy)uI2G&0%vMn&48rDtbXhk_n9Z
zg5}LHbrB;?h4&+;(kq(P^Wl9>=p&5o`-#2j31`?TD(U#tQn%9w>zos2?dEIpMelE;
z^&)S+Idv>%z9;O1*FMH>;`)vm`tysQm(SbF`8f+c(-%=9aOEfu&{DcHRDh`(f}7SA
z!R<a)C{uCa(8`s=;vs-9A5`1-JH05OeW%llUur}_{&6Ai3}ccb2WyRVO0v&CJ$<?)
z*l$h<_Uv1D;QE{IvZ`x^3PK_vPQhM^OApYG&6Ph8>7wfQRyIYUyT2(6upsSI1*R!!
zkm+Bt)8MA!j>Sm+v6e`wJYXv}9Ju7h?JwCF8i`t7=z$0(K;%fBsdJL#q98vNG(l5Q
zyAJY;g4TSCfasCvU;O;xWnM14Jj5<PD^xp-V!1yzU<rRfkuYqD?fy2Nc|JQwo^WT#
z6Sj8lE?3USgKHaDZ0u+<Fl^=%<_Bnv5=zTwo<Ri62|<XybvqUMy;SaR(_kVfY~|7P
z{6^d1(4l4xmQbjolfj)fS2Oq$8t`y77`e4l-6}K19k$kY5;OU8mEK3Hiy(ES;r;B#
zj7_se@#8e=r+!Dz?X_^gfxE&$E?CoDC1Z!D$5c?zj9|+v$1TbV|0KyuZ_qUh(CiT|
zcSv2M`h+`|N5PbyGQPw-g`Xu6DFGSNadMQoIn<(f<357UFunqTa{&WT!ra<q!!lqK
zof(L^6Zi{^MNHZn0&rD&nc{I9dfYi}4;#`m0|mx8JhmS4r%%i0$M@$rxv{UfDB-z<
zt9BK;SlV;r>8)}@CuN)oY3)P`Z=`f03DOd(;>^Q7G&KgKBH4}UcM59*a|OF_r5&7t
z$Pl?hvO4xVH{Fn4U~F*WV2cC%!h^-7JH%AWwKOqJ!b)Ac(>@Cd$qT%QSg4x6EbU(V
zy|#9hPDE2z*UV*;$2rjcZ@mQ9alsvz^}p|qF-*4k{omPC_VW1KFCRYr=!dV*OUP|1
z7-+6jKx;v`#hp%I?NaiY$bR4qH{WE+JeUVMD}s}7<wBEa7zn)8xtj@QG;m02cN_Xy
zCEIeTQy_a;vd>EFsZ5hJrQgr4Ff}HYl!=0n1h}!_as<;M?-Ut?%Dq}ekJ5&%V&=9I
zY+j`?lE9R|%AJOU%E3|;+<$ZIl!ONY+-a`dDL$m}p%U`FW1S(U=~5~Hp(0Xm^Mne(
z&#tm!Q^0*orFT>s58!TM$q^v3tznxQk!+)zUoK*jvF5bZyb;FvnM$<{TGMw)D@3Ug
zwM>qv-53lO>}9@=Ahtb&^FseG_{yAf3(|^$hQ$E`TU&B^vHP_lmosrhBgs+7ZllU?
zfjym9T8G;T&?`2Z#^!83(_WEKkH|5wNm_<?XpXRwR_RAkXIm1s+=`lO5Nsr8hQCz0
z5s^(W7sO>D!P#TxI7uT1vGd?$AT!;%mt*&0SM=<Poa22IknS#GON4%0k%UN?3TAah
zC%}E~9i$0VG;hu4$UdW7?lAADaVw5k<!Af2?U|y=*(UHzFwAN9<?+YQ=TNleJ-M-F
z;wd@P5~7O<%HbK4Bq%Unpz(2Nj#p0zU@@%Hh%3X-LJ$t%x!4g7WvX1&wT^I0Q))Z(
zCaFLN=zLfyy+|}8&7=s_)bR<F?Ww7b4zi(6y9jJd*^3ei#Hvo3arRXc>|+3eiXU?>
z^n0y_H5#Tulc*GbP>geNybat=Ll6VUHSe%9DgC+VA`N4U4LcWShP4VUg=!BO1QvQf
z#SIO^I+q-F;^RcmCyy8$Av?QST+b1f0FAVG@b1k)WV_1-o~PXAB*W#)De)9?FF;ro
za%PhYw)6m!41M41JtJK&lti2DZcgGGcQGdK%LuRqi%AWWeF2wX9YAg<@JvTqbic?^
zov3<2A8jZj<*yms^A<hkbaF`0Zkp6EhkCrrJXO_Zomrc~vr>d5s1pVdru7^R3b-Kj
ztQaS423Az($t8BqVilQStaWht0-~F8NTnkjq0xGv@QYRgtRW7^bZJ-$Jak}QGHeFy
zMLC@W+Edt^(YT!G6cfTy@Vpm4Rl<Qb+XN<_7ATJ>bzK7g<bV3S{AEAbF7)f3o=m@P
z=uMc`#8fJ!g+b6o6WALiL#rj5!}Ewn6|obE1rsc0wqVn%7fzzb$ID3yQ_53_%)nU&
z?%NbBI2H>RDIKupJrng;Oaj>Vp}QCwUaF$uFoZcd6~*<c>fjt4)3x**(q?2Pyn{@r
z<~w_rDlI_*G2avWOe{Cl4o9NF67)>K(xjY`$<C20Bwg!M#M%!TBXFH84!!uOvuMPD
zJAH!=r+ZbX@kCfd%MS(fS9aqT_>ZJAM;H<sbdkV2(?VGiyMRX~IFOHCfcrOT)XY|7
z`_zq3mt*Q|CM#Ce=Il0#)eG^L8#s^^Q~zKQi{sX7-N|ob;R9z6MsU0y4-Tw}Fq#<2
zypFnk9rtw}?j#SSQxqVEEK7L(ZhKaM+lg|lJB|Nztv)6$`?IAIUccR*)#G-mwgCU}
z<HdfsoA-2V@Hn4^yg(GgBeA{)y;dx$GzMEx8mJqbfq&aukBAGW#ZVkJc(F}%=}-GB
zh)Kj54gznOS298YIG+dyTE4}+i;%n|bE78}YkY>;Q~~B8<TDLy)extnBf99w>kd1r
ze55%gv(AeVqNl*U7`V>Sa9|P+LQ}f@{y~AT5NKdGm1;<nz8V6D`0*`W*k9(&BF$Kd
z2(pLLa>?iju-Fe)!8w4Zn#lR6u+_%3agTrv+(7rJGVvT2m1`Eb{G1LtLq(_1$=DZ$
zn_HifX&FIIASfGnMF;WX)UnJ9&o1><3(|Ja8X0ZuF51{$I<|3)oRlh1H10G7PH?4x
zXG!6CQwG<%Qp1MAisVo}mfu2Ly3j%W_RG`L^3&s|b4Oyi9GEys?r>P>YSVioxcPuw
z?PA=H(w)V@4g50Pw}OpbMRbHrG=;M!Kk)VeZhpLmb*5m;9W$m*Gv{^V+=UH4r5#ka
zO7zvO?GAld3~@q><9-gyB16n9g<(k_qtC^TK3F$UijWqeyhNwO!zFPG1NZ-m4G>Lg
zu^wd{5Qp;-4Rli;8X7S2B<IUGj#g*(rgk0>oEvpj_2~?5v#FqRrRQUZ$9GA(LAP|5
zLZ1RNaw9`}c8IFhs?w=(77wa%+x^WRdDFfJ8Otoelp730(&HIE!F{WShQ}V^@Z_OG
zidblmo0M|CL`&YO+o4TyWzO^!o+%@u;s6b7wNpw|K(FROFC}ra=ehq*A%-{b^6WB=
z<oi^+1xpytJINAImn+goj8M_Pjy-n!<-`2@t4?yu`^woB7Uz`jW2n*dh~3snldvq|
zF1AWfwB&zr+b8W1?6PYH>7_i&p}r7+f%D9nfD)ikeJTW|c`O0PGhRnNFdc5-5Ts;w
z%w%DcqmFJ;6Hl>;PEh>Ns3;!Omx2!Fj~+Zbrkx$HmNpV@zR=7!Q1o9Dm|5bby23K$
zjU-@6Q#gdG^hZ{>I=hX8im^Zf!QBRsT}QaV%GS^)Xbzh>n<L5QEn#3{6hzg+v0o|t
z!EBf4CIBiM>^}i}bft@3jJ#~C;~zi%27b}cCFx4RLktSbid=5_pbvWAI6Z);3vt%|
zI{cjBp+Vn3soEl6b%+0~?Ydw0DB*_Bf9tmG`D?MBy|x?0mMY&@5^1Qx%zC=!SuIH6
zbm-;di8nKXUn==cU&%d|24LEUT)wy58p8LNJ4!>A-}T|GvW*_|(|)yjIa{b|H~;S?
za2AQdc-zf)YCRe+xGzYjm%FTF7Tf7M@ko%2Y`sn076bV4%_VTB%+pUL81LboRC%D`
z5k#)=(i?P#PC@+NjRuV6M5JVt=ow-KChYOC1_RY)Evw7^AT&o2-M)w(+<a60WCG68
z*>^sr&6St1D0~zqS=6QPL;;ev$XL6}cW7$y&3AvZNbn$md?)hIFV?p9zug;@oC_yw
zSI+a0n-A|31dyW5zOQm<kP-+dj5pm}r3~K=8S5A%CV#(;8@{XpH?6Bk-=&NeX7feN
z(FUecJwJ}7KtZW%@`%4kM5sH1u<G;vE!i=Vf64wl{x?H@#sHksH}+ZTcoclKYOIyF
z?|VrgSo_y^ItgT78P+HDoY`OM)EP1-_U0+Kn{SgQ^o_zQclrb&M3^ugD)Df7p#r6#
z;EMWcv|f_Q>@h{TEWSoxsV;{&g*xA;2)2tB>WNzMt(vY~;m%b_I)=88tx-b=0X~{>
z-Y?XdClZ=?u;}=Xf*d-sF_iJB?BUc0K@yej<#E^U0>0~HB3j4}E7c(3vd=tzsPB;&
z*p+Qs@EU$aj-e%W)VR*vHc^>HX>?$U8IA=?#Y)m#OTz}j(DH3&{`BM1=T8^gvCgGj
z2rWpX4O!4UEm9uA4ipqy7(uOj_mtxZ{fv}J^AD0K>apAEv?{APD{FV2awLEUR>=Ag
z(UgN2Lg$ZZu2Ubp&S3s^c_ig|B60)VeJ5v~Zsr<-1wkQvF8%vgieorj6c|TI*;N`e
z7CKm@?M|>G15>gMebc(Cgl)ab`pTEY=(Dl;gs?^l$Mh%zx!q=ozCaVfX19=jfZQV_
zXSYEINt7w8K2uIz%qc8Al|#mqSj~(ybF<XEr8XyUFdLD32cIz{%bOw>ATmYTf!@}u
zD0*G5qL&*wA4RY0e0)Ta|0NmKY8?4Q(5O@h$Qm#ykpI%S<5k<FvM&;2wBa}|IKzhK
z#(nj_A0he5ofwyeyceX&ZGCJwJ}TiiLGGooQ)ghr0PuFe$VLU@-khHCd@4K;O_5r6
z=B$^PjVpR^B$`g)h8l;(PPwG;B*`^ql6~_fK>D<kG0@FOh~USDTwCxV9>^m{SITbO
zkE|ulkQfSq)4O_;Zs@@7)G<&!2I?5rZVc;!v8Yo7`FNBT<*0ESHIDMqM&hxO;PP<H
zIgU9Hs$xu3)Rn{3hOC9L4<b7r$GrZvw(+BFnvttCs+BZP20mpYXx-5lob?3(t$|@k
zF)SHCg^M=jVs7<Ci1PP=Y|J(xdMqvmhYR6Iu{L#RQ)_>3?N8})rf4Nl=v9ovBgE^?
zP+B46E?g=9{Nn-x@L!VCfI~xTKWJSo*bfH8?v*L^!7lc}z98~?@^)CIeJ*=r;hmUi
zG;d{@rvmKZqFB^({I0xOC)+7fC$Q2VRU$$!=g&kli&}~C=NbH-)FpNdM&C#l8RM0G
zky2ZxNU0Ls`=2}ZSKIUkF+&kqI`$;EKvC7Lf006neP|<<YMLQW5bO%yO=(_ThA77`
z79z^Dcv%pGaW|<oF7}qZx1{ZcOW4z(2$NX26XRtz-zBT9S+`Km^hxJw@Q2IHbeQaE
zi7#rzcgHLj@-vyhnoV*H0XPrY03V^5`(RTHq&sa`toNzSiIT^{EjBHm(KL$&xLgJR
zE-gIGtwZ*BjljVdLg5kIy!z38E6a6n2r1w2Q;-5&ssuaPMpITlWVWCZWGqhN&^O2>
zvpdSlZt>%fXRg=lZ;f37f%aW1!(oFOAn~@*==Ai@+anK0U_y6r{FI6R?rFYoahGLv
zGG@x1H=QmYZLgCH=MI=LC){+xOlyhtOLyjx8DgC&<YZ<Qm_A#XVa-XH*n*)Iy+Rnv
zo|RexJ6{uk^E!Syg^eIOCgjP6TCbdlYmWAdyZc%yKwAZ}2QmmtzT<umNSfIF7cK;%
zRP8wyil^15W%=;a_QTdcUubk{qy$)2m({78<3FKj0@v;S#wXsMSn&AXF*bt$@m6}+
zKr$}8j=r^s$Ny_SuQTvS$3y5J{^@jHReraxeC)3(&)x&Yfu^%%^}0ga*QEFwC9r(B
z76u8AX)u{rW&Bl48B-Tkgq<jHrEzc6XiQnICvu~rm!;uo`Lugl_L|e@N{vrpg}F$k
z>oc2+r${eKli-HK*n@`EnaXQpqkC=F?Uf#If}(boGfRQSB-Jd<ZHaPO%&rQD9O^Z4
zGa?bejQ0iE^IMq&p@MN!r)2GHFOuhr7{phmk|GQM3a49eH|QXA)o+6at0i5$(3mCB
z<O^j2`1trxg@(aA(J}@PhJf@W^Sjf8hXFec0{!u-UzeLRGUB^x_8DeTfYKl>mxAHR
zcc)=kpjauKmBJX;AW0tFfW~SdWT3ligHv7pe3;8`3Y$HOGlc6Ctm?~_jci(bJK7d-
zq*e5h5lxSPrZufn<++v_>d!Ip+$j_o<)Nxja5hj74Md6Y4i@o>1Du^P(FDEvDQV?_
z6h}z3S?mqk2yD3Ai$%A_i;4A4)Ze26HmbK(Qw8F_6|VS3#?CU9A5IGoQjAJHD3vD)
zl$466wpAdCZZ0OYXuh%|XLIwB5)P(4@PN@YvvF#|`mROTfIQd2Oqx>ZP`gJQ$!tPX
z_>zb^)E50|ji|(pJXAgEox4Z9HH}!_Vo_MAJQ!5pAYD-i_$26>uOInB5e0mU0yTLw
z6vS;3M?D<tv3N+a#6=LjJVO7hIlBfU*VGU<KwEz%B(e3#-W@8PIfWI($RvNo>7vm-
zw4$e@nruc<4(^yZybFKjnmEJ-vL|s=vxy$PqDG6B{D`JFX`<G#cIc04Y&b*py5{UH
z=UY|qtiq^o^j6=?(c`~7{rSs<@Gdv*WGbes0v}g5ju)|9Jzm_$dg}xe%heN%`G;!Z
z%F8z|03qF?MDG7%;n9H8E!khiE9gp$<h}_6KyKx0VEG!$O|X1^yh(vvC&frLPGS(+
z#!_ue)iE>6*unsnt~fT65zttd><dNomCUikQ-5b1ocAAkxq-|7jPa2Ta$LR8&srm2
zs-SZySOn!RVZXJ`Q?UHSgv3dTTGRHM<Fs2W8>Jk|>eFDMc^u1=rR$LHeJ`gIt<lcr
z;2kVqh9+rs;QMh8ND8!3H^;h}x@dOe7VO`c({^C8=cOAce}3pgI?@zC*}Zr^-g!nd
z@P>*yS5qXZ<TG}g+Fy^4?H~U5_;P`e7<;$FA2!Hb|As;vwL=kvISY;?w>k`7-RLmw
zwsVD8+Y~`%V0;9<Yfw_^)R>i4!97kn@n;k$Bk*`1OMQqaiCIh;7fX*w_w@Z{uPFW-
z@7)lQW+XrdKB-2o-i2<^)c8kH=vaouYTy-NQ$c2R$@G&?@9!v(SLmE3ClG!s^+y6`
z|Hft08bPFvXr9rs9Uvv5W%5I!T7s3;TQQHe9tWGS6O4b&!`@@0fO_`ajFG2~=w%%x
z5*Wgd*&K_N8gt8>`fH?Fe9crK(M+qRuJ{!qD%Tp=dg>sQPh2O1M#QpBT!2zyM8+nF
z&#uKO32kdNFk@*6$DY_bceDFmw`?y^zh)D&!PT1nE5Wr48|+`1BWUpQxP5v#KflR)
z(xBI=E0pOH?sIHxYP&hRnT7+(3Yefqw}k<JvmX&o;}!c=EOG*SM6&rRI!ku^T2pr;
zbsAy(fP-jIXSa1JRy@FQxy)rMQt^zAE^9&nm~nKd!k6~kN3s9+DRVe1QK6jJyxlvF
zj6wK8;cbbjGR1M<NU<CgOJRo6Ok0K-VH9)5JMN_Rm*=OKPfuUY=v{j;dXr7@?3KC>
zSAkbJb6v$bP`v@ka^J#@H@C!@B6<}DAv};FAtq+lZ~fK6HCzY@?Uo$;>5ng;S6H1S
z;S^TKpyV;Jz*YiBGUx-rHbc>}bZM73Yqe^kaZwNUX6Lfh!DZ6a>C;KXW!wJlZ&Jn&
z92Th)&h5T*pOi8PtP)T`2g|!Z^N88{BbA;HO3+gc&2n1`JD5<RFR~xhDF<@}M~OyB
z(c2f}*FEhi1+|fAoTRo7Yg8m7oct;+N;KaKXS$2*CHamuW5L2^tks;6e*&4cDe@m`
zg{64=Wc<2^0V#ME0`nr%X6ghbDBV}%++!Mv>n~8Z6*B?JRHqXH!8HncqEci-*0dC!
zGm}<o%r#06f>5{uKaa==`2l|eCkdhB!idO)vceJz=qiP>>{#yv3{${4;-`>VRU<X>
z!52%}%u*rE;nS)pa7PKnDNGJBy^2JcZ9+hMi?dmQMBNSA1!wQqiNyXt<M2moA-ZZu
z2}1=IS|c!!wCWkQ*7{mD>>;;uNj#C=6*N6?#*{rcYPMre3u|=|#!e>%ZgtQe=xSLB
zFA?d=qf)993(A>0Hz+|WUWDcvUVE<Fm5SGqtEhGxkbj<^ANSI3|F~QnVNxN#3!|Gr
z3AcAZsf4lZir9(R7Nv9PR-SNsjjP9U^YIUpBXONXv9KuUj#Z9p(&8DB{?~dg)cfwu
zjL<MdG#3kN*nx>6dVBY>R|ACtFWd&pIsuE#EGTIambCfT1@%@^e^OL`y{J~w7_hQb
zr?jxBRKL`Wjot_+LEa$N>2~qeKI|2l$D3D5WBc}69zQ+;lJ=ZCDUaj8iJachDE^m%
zPKh>+y)VXqt8zyNs;1i8EBQ=8Be}^CWF~}&Yo;@$Paqc@pr+{AJsW;?<B5dGWId9N
z1@pJrHFesb>(F-)Dk0n}{F~lEWeGb3wnbf|pO%!}`-EIKFbYB;*^t-(x2BSGHS_^J
zpby~wtLBJ7&<6&=-9R#E$?lp~Y=W&Q-bKC}U&G*ra2vE3)<BM^L1y)gke03e*oO}P
z{o#>6{6L8R;m|Fa_yW5Xh4rV#hC0ksQVP)v5p*z>Ma00ZHyOX4F`;Ogxu)4lQ&RRi
zqTuFZJf`d|<(fTsSW0!>M%(kO-r|p6&%PuGEM~+s9s<-uXk^?hYIGL$qNTpPeAv%P
zXsa`sVU4C5*{2+<Qw>vy=`J@rTxf+wB2?RTYN3#4mjydr1n(*2(AlGXvGXJ=sCSQ4
za`q6e*6KOUz~d2^8i}2>Wo(eOR8AA2uLl#X(-9)Ym=&nYsUs_m1>M_J>r>YMxAs|U
za~9iMXuLlc&Xqitn-(7OEqDRZxfpP(P_fI_S`D_)dVA#g^uFk>>9rSQ)n+mA#`BFe
znd%`mWN=)v8&bRWLc^g*$82tC{@$k$j+rAND-*zgo0E!@z|{!5rq90VwO2O^97V4y
zC8s2ITsqdB)rXd!Vy)M3`JUwTO|QL)a<y1dZYZkb#U;r&4_MdWcH|sPSkwSE1e<QU
z@JsMzCy+A}Ke&s)G%`q^%{`l4p;`2L7czbTb4%`cdZ^rUq56HS%$f@fw8mDU2{$z%
zaSrHAK*Umun<}tITslkUdBZ5f(!nd$Y-=AsL~O&jh;0h(#`xV?6o&1q=EC^muOE5G
zcxt$B63zQ{@m6<lb-$C^$)w4)VV52tsUSZgVn^1%S3u1*RdQ^S&~RJ@+YJWuiV0$M
z_f~hux_hg;8+A|QHp()p?MCfKU5yA<{qf^aeQy;XH~V7HXoOb+jBj3bke8Rwf7)K_
zCn-K1g#4<g$D_~_8?Sbt8Z56AWoGk2`_w8Y1_SLiE(xj?xR`snZtBows^~vL$X{5(
zu(JjHB1|i{^B&7nycfNiwHG~hEw$Y;vXAy9GLGFbXRu(^Y#pmvWGdu)O7xxCGf!N+
zB5(Cf;31dGe8&WeW*s%Q=0x`0vAhdw>yA|hXMc%-I3KvBjr8o$R;;pT&Zsi7C()j-
zlG}#;u}i6OC&>=9PnmV>gWOPr;C{?9Z_YB;08uAAbTVUt6e$XjNsuzFo4zl5Ud-d-
zmk*zQfAwIKjSEHu;{a%&6PV=S89q_B0d(bQgm=c~Xy;!M{jvR^?VUD0WZWnad_0~$
zWf<9>J*84jI)^1@A%Fc#ZTpDNkTP4Bt?#VM=67g7H2XXB**w+sj@M008K3T>K8n5*
zJ(MZwCT6e=-=+HcUD^jWn!rze7s=gyr#0?NgHHZ#|6k)fop3`p6aC@zW0vsOmn~p2
zfU85bgfUbHyZ^gH&FAd?Q^AP8kP)0n5NMa#;EzPKak;SLU>dVP<B%-tNpP$dOTsor
z9dC70>Xc(94zXe=DrY}lEllC<5V(!+k=MFHDFx9dG4uE_G7SrHDWv#uw~QNaJ>I3<
zz|eFUEWOr&&XRa|Vi@sihgsLxPn3UoI^Sj&PN2C8J)$bW>2qv!yO{`;p)pXWU1`o)
z^j9>h=G#Jbg=U{cV1=aY>>BJJMPL0cSMqggnK*XAxxvzd6mj253R4p7$C-`!2d(u+
zqMnJ`4vynlA%PfH)d+ceLg*s9jp=yA1e0DgJa+6V9ItE245z7f3Zt`K$JYgDXt?~)
zi4ejo-k_fBW2REIr?P+l^7*Hqo?b3=s!ZoC8?s(PL(R5<^0DC=d4wZO2GN6xZqTR0
zVse69pm+vmXP<3@6C4vFw~ZeS#`_Y5en)u|%qIBToMsLkwKTPce6c=K*B;mGJ4?bK
z+PY?};*|!*yi!EYi(%;4MHEJ}u(CFnsQ5_3VH;)~7KaN%cBEgqD}b}cH+GwmpyP$9
zI;84GsvC{n%H8H;Y7C7ey(M`p<|sC=GwKyt-R2l(eajT$sO_O8x69-9!iiR>oXisU
zqp(cM>?S^@O872XGe@PKB(NH>ZJdNCdQHf@s@;sNq@V~KYP5Y7ml6KTU~2tzF!j0)
zCKg5;rooObnT29&RNFL<wGhiY^$HY&sKkr0+qzw$LVw(wOhIdv&{EOR8FDtB`D03v
z3}W6!xf;Sg20>A74%oY#!|A-DV)Kgek@hLm^xxTSd`PD$f)=V9ba|k^ruxGxjDZAx
zXxrcg!BX<+Yrdn++>#rZv`#aioz7tjw0KC)7uYd#$0GGK3SNrY70}Fy_R3L(7&yse
z`f5LP#VFx*B&?C!xko%Jj@PwfT!gTX7K-ajcD!0cKxpaUnnCHXmsfjZZhj+%VxpM<
zRBe8UDi|AfvxuZBHfWpx#o2AV8}p!T(2BWPrpggVbtkrQ#0dE9<GE#2D<-_jf>FjD
zieXL#pA~mb-bBG7>{wZ%5M@9x4DO^6lOR%OqM<qw%Nn#9485q+#N%Mo4h4E;h)D7Y
zMQ&?0jyYO3j#+ME<t!?&n7Xr!B#m6K1MNsyRN#|420*q~e3?NLs68>8wEh@1vwS?W
zWH#Pv=2<moRihMv>~gxMiYEV0xaMw#BFxUmFp~GD8GFk(keZg45!CWBiY}IwW4<&O
zR>xeKm1nNZ$un0UgJ+h^$e(63ehk!*)(i~HI>!-=H;oQ+0=xU$$L$yYo5%V0e|mg*
zf5BkYZfqS*<)Id19~_wko(z<0JRO+m_l?jvwPFt<01p7&(Flg>#sGl665?v^Yg}z%
zjhmw|E&@mQj}Q}*g~vWlJ47xi8{rC)r}Ut)d@W+pHC`&;&SW|g?6;p^uF@-qRrj)%
zT`Jc&Ti_90OZ-6^5k!HgLiT8x!9*koh>W67jRCI8BYu`O`khrY8#<|Kn$)JOp&C^u
z+y9yeghM)ZT7)9U--)N%EZ+C@1e<jJe7<dZG<A+fL)?doMfMcF4y(U08`4H4uUmm1
zPNMJ_Uo*Wzgje4(yi;wbPgji$c@=l{aoOc81)o-qVmbvvik{(TfBux(cxO+C6U4KJ
z3{$H_+Ru_Q=GLDp?VqpI0qi^i-WG+v<4#ZW2?u8ogy_P#KFO6vPZF*+`n5JM;j+!y
zTb~}G4|0x{HI#24^d;&Xxw$|R#g%Nb2wk3{RIJNF>`ffyeWiI}ZCC*coi*Yrz8N$s
zRFUyq3!bO$E3PhP0??GiBNUAI>jD)xRgarw@Epr9A}*6!NQ8Ti?fN*a9LTh(gv+ZD
zR<|5q98wIu-nF~KOU{)H@eRzLN||_Y3h9muxM2T<Jf+&)6QfH8lAD?m6(IH{QmL2P
zMmj4*Hy+pIQXz&5H+8xXM^ggbe^&t~h@~ML5X`I@b+5`zqatclYQ9DiA_BA06jeqG
zUgI9+V&}C88zqGrHB99QMuxSQfDAPnhAxyUs5IK06f_bVohpv%2?F23B+5o<m5oyR
z48s5XjgtH8Rsr3U&lQNYN>(U(X(Lkb@Ew|`PUG>y8Z=KEQ5-g8I2Is+NTY_U-V=^h
z7Xm^Xx<Q+xoeC7pKQgh1`4|a&nxVFhwGGI_U^^leVE0PA%V8W7xUI|B3zDK@t9r0O
z_wjMr^D-otlU1V0Fxq$K*;$JV2bY_Q&;dR2=(2J4Yt)0M&jBp?t1gT=+zEY*w4_ZC
z^g+v<UT<QTAIR`r=bc(;*G}15nF;S1BX@<G(1~-$kJjnNh+c|XcsxnLOJXLmt$E-e
za0hKsFrZ+=FgitY=KPuiCzk;g^h#^vD1}LKQxD<6zNb%?9`PRiB2u5JMrY;05w1zJ
z@$%uvXW*Os?&-_Lxp?q5RGo+}#&alMaRu<uMg%Z(;QBnn)F(iK0o;P*RE-^ko{||%
zZ3{4E%#vOrB6+CiLDuw4&2+;4EWQ**YT-UMgf`$#F$DFr=e9GqKr$6#J1fAJ1g{r_
z9{?7><nG(9bY!!!bV%5w2vYKtf+8K}8w*Pj`2bu%qrY~Jk@15Y#e@VSuRqFVEuOtq
z9=<-QJR!P}M$QN}_cg9Vs7$#rgw+QlF;;4}F;zb1nE0?fotaq1%;peL2#z1Zy(mOr
z2B2jDLL`+Nvb&VZ4V0;Zw1yJ#K?$d=DmbwO;t}l16baiDo`GIp4Bp7LrWtaGx<EVC
z^)`dCkH1O~7~EDCKkCJ~`J!_3zol}RP;Q(8Lc6w8-}!cJ{~JrYb`)yZ+!XzJ)35vc
z&y@r0MSOhY=6{)=KkS|^y1-n>jHvi5Z=`mx`G`ozKcwZc*7}NaP>+>rVJHqNgrS;w
zj7KzNiRFXt?+O*Thp<qIG-M%DO3nnpz>mZV)h%9nL~{&D<qV2DV(jmKJ@!@VP~doq
zt?<9B>;AImsoM^BWDRhni3`c>lYNpKjcn+r7JJpc>1a5R&)cWozCHU%LlSPsN9uOF
z{X+mum8ZH^*=#<|G;{%P)X{qeGB?tqU5cQ~#t}N{Ab))S;qztpsQ;E3f>6jrk2{#l
zJDSUzIs7ID1^@QGmg|EpUp+5NgT#+EZuwyIk2Gm^zb3wmiAcbc&=3~zDISa^+yx{i
zW8A=baWT_TpD7I1N%1xlTnd+Np(-|XL%^44Bj7&ZBV#Q4!<TzUJsA8IO{=i1MUP`B
z;t({fklG;;^|>O6<d2z~EFSsN;ZCPPG5P52b+K83bSyRvU}&n=-)`!eKfk{+?|{#B
z%uOR@$7_BeV`HC6wmh{WQ|YU;uR<oc46_Wo{UAz!eco0k@JaIKhdh>Wy~`cDw%W%Q
zJa+Hf`@&RiZwyB_$DEiZfvP?*mqUIuSAA+(p&z2ZDK}SBv*T%t@;aIe9@w3I`C6P~
zQV|%a<|(C}XGq1|I#sQk7$ULTQ&}`n<v+n1PS4UkezEw|lmUwwC+QhFty=p+c2-Uv
zT82m?h~stS40C~qq1k0AkpeI5{iIyRb&O?SEKF4#Qavjf-aAXsGevhyG4<+rWn9bG
zF+pyzrrKqwuI82W&d7SLg*@rX>NkIluB4JTx`J7ljIQ1Y>#q^kA3s^XlJH6XUn}Mm
z0^+v%YWRKn^71%e?EZ53x9tAFPO8wTJD}!x0^~fma6ru&U^*ub3dQpg<K6=U!=n1e
z=N<q%K(@eP_3e}1d9wLBQLaQAASRFI!6&A}TR*~sOUE;MH=AF~z!3S-$%FdTC?-pg
zOsuXs#8YxnrfhC}D}zW>#Dozr<1NI5H|w_yMD+c&x8m$}kkdnQ)5tU<`@_Re9kKS1
zJFwwUCXc@;Uhy{SfP!m%6IFRi&was@62YKujeg=y7E`<kQkG5t`)Gmt7Ea8dPi&;O
zBRF`HSbLz=(aa}hj6RvW8BhhOFA;n!4_24X35(d&Ol+ehXEc|L7T(4V8L*iOQ}dmV
zmzWIw8fiqpD;e4rrBRu1&ZP{DF#%~6GB@yTkQ8NT4E^;@_s7S9x!s+Q$@2dFzhg{(
z^qowX%K`E1+jlxwY~M1}nDR|6C2WXqs3~1f9?<1F2@w+^owzZEugnZl0CAV6o{hj7
z@r8wGs)Tw^iK9o@>8D7PKV7&3>r@n}ppjM%R8SZ)LMTR9m<|v@z<~fu=RXZ;s~{VO
z?<It9rks`9Td_S0i%&+#iVY-gN^%WkFp6WTS!id4MwuPT>{w36GLJCJOtx$!N?ms>
zriXxhgoo&}=uQHC_3m%9-J+^WtmqJsu5(xu3>S}xei{+ry9c>CW5;qyj5V8-Nm`jq
ztl3Ntvbj!SFFhzxo2Oc7qS+S;gInNq0HveYLyw1q8!(*(OUh?R5Js5Een&AO5Q>ly
zzwK<XI#Rq`#{WH2M&+6&<kBuUVyIA`iwCmo%xeSmWGpE3{u4$_kC=Bgk(@ZFkhh=7
z%0oLgK?p;6=T|#lb+4C@Bv;qqT?@}81HvLI*~6ScTx2FO4$mg3{7jSj-ZJNDxjgNp
ze@h$D!!|_&kU4WN%11p-dCoup_7HbBt8--N8Ry7;K-cHtn5h!`_D(`0juNq>I~0r3
zdPmDEVKaTiWWbTm5$X-;x`TkOn2|?D;66s$3}zPwcwiW1q5cI*n><SE524v3UUO4n
z6nBUWMsr)i@_9^Eye!Daysc`(k(u(H;?~0Dq2y$<1Rwii-(xN4gbYLyD+%tU>I|%C
zQzjR@P`A=gf0iTkUXB0r%a=<pEl;lw(bxOtH}-EBVPy)J+QQ+<kvg+6>|(kdywOC8
zIRC!T?K7?!_=X0(g@JG5?ht#!#FNY*Flmn##M@w7kc1=Uy7mvF`;!f0Enn~LZ#b$_
z#&X=QdA>b1$%l`RKVD&L<iEq#IFVFEV`p6BW;~LOA<k|V8}X8T@^9v5e58h_;`4Gt
zXMB66lYX|tv#4>rLy}@1Z=OBu7@#BWwc!R<-;@>lkZpdYFAilpsCh{MAraT&mtgS=
z)Z)0Km!Wljsc!CHE0J%KjE@8DFHTz<1MpI~{aeaQsaf?Mi1@&(qf<HM29mZKw})tI
z`VC7ES_P<-@gYFOcgqJ!QA@{0t3QlZe;BQvqZOku1(Qx-<A%G9Rwrr`ggZ_U4ws?G
z<PV8(AR)Jy%0IBMrCP3c?~`WvwEO&Fz8HqNhShzQ5D{vJYWG2O&^*UCS@u_&zv1Nb
zKgvBJUSzm_!n}1}`}VTX9wCHXU%}p9Gh%LXC3e1->$^*l>nxu0zK4zZvOK<AcER}8
zg0=s(&ej4N`R$X3aj?SD2ggg*aP<UTuJ$?6Nx-k;nHNt5CvDRuPSn7O^u~?7EHT}6
zibQ_&6QnRgRUDuTGl@70UI`S+%5V@@I8}n7kZ>TcZa~pXfzgam6<Zj5mWHz_Wj7S-
zkwwUmfh)RzCn!we<~4Q}#T<eyUNfTQd1x|cR3}ANDv=xvYchLIK^@7QFpq8OsN(Gj
z67wKQzWI<&5|V;=L;^a+9)SdOB%n*?kvLIiiBeM+p7ir1pfdt`a`Qkz4+=U^(367Z
z^sIrrnmh<-KF~-&2A{oA(3|*+l2MS*LW6{Ok{w9sNJ19I83{EzQji368Py@t90@qW
zgMd!x$C(6lB%mh&9SL}xH9qdq-RH-P6Qb7oUq4+yufr5cZN#BtuH!A2T`rf8_2|Y8
zk8Kd<g7{ZnAYne`6L!H|5dY$_9u9(d$bOm2KJxj~i*~tcN?+U9O^nlfYj;&i#iB;K
zVw<ZZ*Zk7Oa^aUQ!j@|Wfir#Pkqw79kO6h#Q<HUOXv?!qeRbWf7ErX#l28iZd)%jd
zbfSc`j`9dO5l6I+<Ddp7Ft=LBfpeAxrZbEMk31N#JT`PtPi{=16S;q6BNyeSo>NX9
zUdT0lW&bPTyI3$kz5ngyxh$IJd%E7rNW^FA)lEb}?Ou3ujs2sNKY*xC$51llY`R~s
zWOS0b#nJC&=v7prHv8&Q$6LWOdet!}jZk9qf*i?iOss2w8?r|3gf!I6+1zAE4~gYN
zZrp<-FH8)APw~#--Qh6!91~6)YZI{<j);|_Cuah_ThS`@&ZdRq+~C5qgmB!q3tqKD
zbHgIo#Tw}|C6FEMQ)217qNX{~n^Ybw8UTo^oh0ZsmjWkLMG;*M<{O5h9(_I=8G*me
z)q#eG9*H=qAYtQ(Lz*a51Bf`)GNuSGYGNmmh;nxtc{xQ<vV!N-TxK~sM+ljN8F$lE
zB3818(|9CRsA7TSQH!i#gm7MF3ktrirf{RouOkEHo#<ysFM>3JXVoj3ouwjxQ&x(#
zD$9tG`idoaV>CSbZ=C#z-43ndG^5~X6-GjDBpQ2niKWgcKe6BKb~=(i|LN)Fr_Ucg
zeYqS^YOW{JREairn0_)UZ(}5}?fS$$Pj?2oZ$S8pGAXB=!ZOh#2chc8gOmaccu44<
zp+xhhl=)XLi_iui%&`tGW+OkKvf`*Pf;Y^fo}o$Bt{X2wI&n?QsYN=&rniNOs1eOV
zwVt%>%hPs#`S24Eq%Myx^6%kRH!99o$a1lZPSNp76@SOer9%JW1uG^l8`ykmfZqP!
z`Q$Wle~9H7%YuyP0vAgqLu~PhF4lSdJ6{c0Ig5328O5-83sbUGH`M#5_=5}+ZP(AS
zy<9!V5=Hd-IkuT1e?HOUN1zxZXUHpyfk9>}wiT+J39FtIZdDdg7j!<ewn)u_quM}>
z#uRPHt+cUk-{RSy%s(G<cuRd(z@|Qa`Qyt4ELyH6i=ladQz0byKdFL&h9+(yO_2sf
z=#*@UgY+W|jfz(O$22PPiAF_vtx-WibDAn$N^);W00M3T%FZ{)q!)u!0HDCXin|ZI
zE;FkzlVgH~6Kx^jWZMU30}M72Pz>HoyuwAvR4oL3q`+kMxxn=$VH*la&lVuavt4Om
zo3IJRFrkdp$J#lIq5o7~i3-uxF2G=@7EFL+Aa+#cIOUb;+SQ)e+Zixe{LC@LWL&T`
zj^pZY>|M)_8@mzx6(Z|lgDe(b*%<<YSxi;|W|6FP+mkCJZTrT$R*-ys=A2?n8jZ%W
zukE~HPdC-g=Ck;!$ElA$T@^xC{nsoRnRe+BWxN&9Lkrg?PTEVp!~tyKwkts;hQOGt
za0;)5$04bn66570x&~W3dnz(e#%;k>#(gFXkHI`SqAltDlPNLP{9WbHhc~YuuBdaj
zf4bJKk;M0vNWDZJrqwhB*cxGzS<*n%(oE<wO@<G&g4vFmny@@4Hc;yFOT7TJ@G=N+
zjGu6WkQ(}8$r&x~af@k=xJA#~iqEHzqPg?JpD5rj??1eLP5}R!tzG6xL*Okv&p1Id
zb#;8qQ<P3XHN&O=iO>gi2AyNc@Q8xI&L=LIL+gnQK)fvG$S~tqNank*!7@_tuo(Wz
z&XXC69C7eky=F0nV+?u*%u^cqMkbBGZHyK97R#6XUlt0GJqwo$&w}Go#m0n|E36tr
zJDk{`m}(piHC#lxwK*|48V`?XEW+KGUtn<+mF2OjbFYtJoDvTUg$4@NkO=Ig(=Mb~
zW=bcDqY1@m4Ns-vG5VD!G$stT23yT!^O#x@5_}lZ0OSmHJJV<1zq!T0BjqlaLe`pB
zuWAKK1w<*4uER#RZlpC+>yF~MMA8D&fL!*r=jKbpMdUY&Z)D!`de@?HqH8r+#k0*i
zgZ3fB!vz^(+HMxp;Wa}SM~uc@5w6XjVb>TwRCm0Na3}LWI73ZZVyyVoZnNQ7;i}{{
zMZ=lm@?9;wnk}1?2!nC59Ry!5A`!v~yUkIMGkb+WQWfZ$SXnq7!@65s#hh|m^3>A|
z6)y}mP*Mhg)BTfjT(*QgVa%Ra*XVkeSC`v*wOpNDkzpQTWJ)SwQFt9;#u~-a#WO8l
zkzmiBSBDLgj+=UIIOyPd6cI1}_2Vh``59pK*hWv8ur{KlG6GSCj$tB}7&Pry!{?%Y
zJwSQ;AEk{OHg=Q`0qat~6Mc?z=U3CGd=7oK&!tcOW%OBJqR)IJ&rCAFf=4>Y-<&)@
zi#qo&QsfH+spkZ#j@L1{y}iV*3EYt>fdO~E9psA;Y>M9Ya{ZfI)vKQ{8!r0B1Q?Qx
z)(+_<Ee!}p!{<X0(c?+@;&0mZokeR`kfCXcSzM~}`87Xy{el8%fKEX#|H<h~6(`}k
znQ|`I^XS(tC&SfDy5Y!_@0>+MFv|-A<J+_q`r<!21DjudeukqHelXNn!u}VBZ8{M5
zH-Ockf^X1j2(E=b_uDv5+{G?nRPYdFJ~Hami0#?LV3fIglT;zyC|FbiS%+;Sy@5@Z
zqb+<ATn<=E62mM?yB}#Uv0<sKp7*-R0v20jk$Q0%{9G<vYYj$K-~IR~n)vW2ns~Nd
zG?V3AZ0&(L&p4!=wBZy1gkhLb1&d@uFe=0&LKz=+xKMtk&lQX$!&ao{46fx2BRNI!
z=<Xj569umWC4gC|KtLCpoeaN#uFPb%8EcSw7gLB<Le6oCGaTHam}2bI3YM&zHj&Vt
z#$C(CLWr~}q32)v;F6iZr<Lp<1Yxnx)X`5WR;R+{u2UF>-sgih8HYF(lp3e{^<~A@
zzt}s^c;>0j=dfaVW9P#yOH^)ya)Ox)_$WfoALQBuRa3KO&Il)^Qb+`=0Y}7)+>#<(
z2;-^nqh}7ci7pA1!;}X9G-|Ti#L5B}T7e=7734=|G>b$pre@YsfSHH_+dGeV)d8uM
zl}TuqP*@p>&bU8p-srKV&NySTbs43ZQ{x`F@1t++NQ8W*+h#kZV*NMVcFH$XLeYo`
zgvK>R62f41S0nk4w(F1Lz<*6FsL)s^4+Fx8x7I32S$pc!bJ%1W870=fbt6nSY|;bI
zqb=GyZ}G5`L;j83ntcoC?M@>ZA>!e1{n;8FG-u--Hbm@byhOqk@QZ6_O<{+l-Kq-5
z<sB&$nUbNQYb0r;fL&tbR*6u+m;rnga*ojrVi7Q@@H|Spr18>Oya*Hi(;JHwBiqLO
zc_QnCUQX0K>1ahw82j{JhXGzF1x}5|N)XI9Yj}1rDpm_9Ad{LPFiGCN0PWSOlW+r%
z%Mk;S@e1|1>?P47K`-{wGvc;OM@7ah@Ly)X0GpTGid=jLHTag<c`a}Nv_cMM!wwh9
zl?0AOXDOX4v*)Pllm|Yz@aRHI38{Rk4)ItLArqqTWpRv%<AxdEA&AMVTCk$AiYE!C
zNh(RkIDniO8-lW%WVY4`eAvgBwVAC=(SQgVGyv3^wk3~45oSE4r`ir@s~a`T9i?O{
zCAucZ1Jt=i`n7E~*U&9XBioWCt^uD^R@I6ZBhP3M{^L`fBHn<PyLhe^n2BI8+gUeb
z+$MaS28<KJaC(6pCvCV^K_S@Otn3gIB?Nm#b<;A%f&j3xP|qy1p21VjBD9l(B*aYX
zYVjaN*CXfHZjLT1Bm}u3cIiCzqHLg6^YNUapshSX3a1jzkpb~V_%`9IMBO#4_k2m&
zknmmch}ZE>J)$LBX+K<oB86dc77P0p+d14ZoQoaVs#hJSuAmzta7Exd6ZtX(ySH)B
zE~eEIT~QRGC}I|_e~Bv#R*S+@oM5)LFyeLiSOJBbbBJodYAAuM&b(up@<zzY0zJ}A
zUm-MYaKtvHckAKgoTg0c-#&Kn$EQAa^B)>06)0Fa67K>BxGTfqI&yz~Py@Rr@*P(0
znNu6*X`iSliEH<nr(3$+-iQXwDV6eB3AAxcHoceT0;r%Wh{Q%2T#K=KEl#*=XlTet
zFgSC`E{gkJc*5d=7(u~CW)1|8t3F3gwrFFe&rTgNu(oxKuB7PajWoeD3e$yPnkH2Y
zuNjMMVK8P)BMjoWR@x*C3C4Dw18rZU4KQEH;HzRF%81|!7#}>)_r`gh`-3MxmfS!=
zr9ha<5nWJiZnz>g2)2liO@LJJb+Ddu+tMPZj9!i2U8GBZQ(r#1W_a9aetffkL^r(b
z)R@?*ny{a)nAel^#iMVqz0Q~@5(jpq83LIe3_wDjf!QWBr%Rczj4?D$OR8n~aSbzQ
zLm|9J{Zb*7lv*%>h^<NzIGqHWvO<o&LS#=gUx^8mXaEz3SRK%~5pHo(sF*(rcSQ6f
zzoLJ~UKt@)huDP?&?9sf$q2<W_6D38E{O2*Mmxh!1{!@J;(p+cqs(*{rpaa_@t_mT
zp&6mBQ<Q$Mt-UM*imETmfP@Dn)u|34ZZE!}0>}vX;Jw1F!w%6Leks`WA))_kEW`h!
z`4f)I=ss1<z0jSc+Obl>jyrA!q2HE(`!~gc=?`mTq2X)u>;^VbuY(8m2wa8!tR{mL
zISL_b8?t;0pGhnopCGWtJic1VbN{p7zIlDg+tf;AoeP)X)N?!YAm8qfuEg`vlX!Oc
z$^dOOkc)$8R7io17WkjvUI+Jk>I*-bG-A>;jTBWDip{b5LC=?N(E0G>1f2`ue)o)j
zY;shp8B!;QlM7iPuwu?iz5gh-KZ*bz7087MuZm-V7%Mb#(G){DvjgZ<%AM%&=;Np>
zUou4#$wXJ7IFkVih|ryVx3oGXPK6<FBKENOI8OA;2f$KJ#4I&KTHu<K!CYy>X7^lv
zH(vEMI@mC+a*Awvew^l591>3#_@cP=nX|`ycqZl?1A7d2OJPJk8h1Ss_lND9{ln|$
z5E(Rj6>=H~W*t`(o-?t&H<|wn*cDL=7{}T0P-?T&EG;^C*r*Kdu)j+j4m?Ho+2f#|
zGUGOEn7K<izuroy+_^U-8$42Tm;@Q(l9LY;Nt^R3Aue%T&z;w5;T@a`0eY-7YbLY1
zV2B#!lW=ed&RH2b)aH3AYhG!|A=pnEt3a>@`wptW>YDT7c~rz=zO7U5>UdqDV<LC*
zlgPq(KB5iVm57L9v6q5qNN<jr3=E7}P_|e0y;ekk4<4T5q<Wr9QY0!JAvGG6S(JM{
z9=;}xoJ0#m!9ui+%Aj>D{V0P3dC*iG>yzNAwoQ$6s*|x;5#u>=FsYdX#zI*x$s+K;
z$*rp4@EmFdX&4AF1}su4m@<YmBuqKpp|80rz_8Fr@jwD7OCrAoS9ygtPuY!I;6Fmn
zDi-I3cs#950=@y=`*XR*V)(@r9fb(BafLjv^IeK`cmoAmZp`!vY64SttADO*S)#Ev
zjAgQdh#;4iDD64^3zhjeR9tu|r(aUJ60YXO*?HOic**e;+ie3Y7*2066w^jfuG+>=
z5=WJYdV%qn(91egJ)g=PpjbM|NKJhKmo$?#6w?;nt<~AhdX=NIc<%3I6G76k^3WMG
z@hk#Qt)YOFQflT`5ZPvrU4=S3Hg~LuoE-=gQ!qw*B_f+}KcvVs|AXC9`Gm*hu9MDS
z<i+SwA4oP)c;R_maD-NDIoF>VFF{hhPE8esu5BnZ$GZMhY=k-}!;pkAL3O1PLk?!;
zklQAQLMdIw@l|*vVJFpS;ndO02QRP&u|s9*iAH&)j~PNUjl;n)0hWxSH92Q%^MoW(
z>Q!c?q_AiEWvdEk#m~Ek`A-iY9-g_9h|v}nrMUxE^n1zNE<}tVY+1QF6rRY4-*^CJ
z2w;pn`GVBVfZ_^b&~^}BC@H&=G_$lUD@w|efzwkN*hnut*BE6U>C&ijrAY3FxVNTj
z3O-qV`!UPMi;<rbCE<bWNOUfc;Hcw5VoN7dbA8GrvX#V0VAq|IUMc`RBP>I3Eu#gZ
z5fp<UredT->TgCy41$Ej2#Dm9NIWDR+T?liFB+=a7~)y~9)o(GA}Vf#LNXzhc;T$q
zu@Xs!?vLPGnx|kk5%v<;bmagS02y5^zK`|T$L!dRu>#aXY1k2GTiQDEU?KbHZ6^r?
z)5<J5VGoL<w%NfqOGnC~hEa@&Y@=7=jOZ`{;Z}}Gcmcb*lF{tq$N_8C0sg*OhK@4_
zB9O(w1Pt+-MC;Ao1TlhH)mVfyHPn@;>gp1Tpk|&SqX=Q@qcu{RxSrBmc|?k9MdScK
zbF+}GijGrK6%)u)J$RN<@bWQ0yD4%*Ed~mCC~b|A+1_T8Ga^j&K59bxAdD=iBVMed
zDxXI4$Nlzl99JcGD#77ERFZ0NBaj5TZPy?f(#d}AWHfi5WK)zMWB6C5;2>Eo=$RDK
zguMje9y0aC$b=%|O-N?27l95x$3{dI;>=1!wK0fN2cbclG)(&j7EhT*NE$jU;c!D*
zMR&J=L^$j@(ilvjhACn`>Yg1E0@5iIJpSWC9>4*gJ4u%;)~wdn)d_O(c!)I2aVyg>
z4Kk+TSy2h$vkL0MTFx}e3E10?nhVBr#+czu+YwtJ!w?iFpfw2s#zBNBfWnf<sTV)X
zMmlJ*^IRLUAux*_WF|E?NymETPuBBP%X(hRUSKYn$C%H)vnM&$u~sm+_Zb7Ud3Jk5
zr91|ScocTPToY>UzG7-ZhBD|3ErlwSX*ijVGz>fkqZ$5Q+;g0qz3rTgsL!oGK?syy
z{gQ-iz+5C(II{aUOAp2ScFEb+aQ~-Ex9Nt&r3sN0x}v~*aT4==(U(+EM6Ww1j}l&h
zS&1)d(g1k`Y%t4wV+N9%1IHZwZ<%rv0=pD&(9790bU@-1R273{YS6xf0E;5_MY*H_
zu{vRi!@NDTV=d4oMIDQd{WR@c(PYV@I>cZq4yo*XtYXdhald<j|M~ue1=4MkO@{vU
zX4pTe{L@B#+LYuii~IU?XbRglF-FJ9oF@K~%N|eg?(ENxXJBgmF176J4eW7)6LxwU
zHjCt0R$TX0_`ul%3$Cy20q>9nOA@#<xh2a)BK9}D`GioC9S%|U-0_wWGE8~Mm1oO8
zJWY51q&)8B@>uV^UtT}g390mIp~JJ2R9Q@+aj*on+j*~L1ksFgFmcTpCg&M9@d*sn
zIr7ter023TFU3z-YrnG6`L}Q0ecWHJ<0ZfT*B8=|QOgVFc(J^QD-&P9m5KcY*uq%O
zTjc#u5AQBHyP?jjr{U7EEW)lV-Q_^oO^x&g|B9@M>g+ZwGE{Zy#>T!?aJ>d9h$I)x
z08zaJq=p;$=mozPz}Ab2fnv_Ds0KUIj9D<ScBw<|r1P4dv-F&$=a`<e<Q`|MEQ1R{
z_U!dm|J=T=I7XMH^eNQpDf*3V)5;_i>k0+9v9jhO>PF`0&HU4HjqV->-Q5hjyOYpv
zioW2kJcMiR$}gRmuY~p_g^|bae~Tk=zL8$eoTNw3@IctR_99+J=aw}JKDqKnS~!1t
zV+2|BUc$8(PgB2P*r5KNKmR>vns+~6uC^)KYD>Z3j=VYmZ-G<E!(e~nU{G-G8ti(E
zjHmA6f<X$FewR8`5jX(PebyZ@*RD9Si_$KhK6jWG1}Dl8-WQ%J0UVYgKIczY6yV?A
zAyXL7QgBIn6E$6}NZb0zr=(jnvfuvYVgLT^gJ0hN_}>5V<3co<-Uki;>Nk&Z+$)R2
zZ}g$C8?sJN0L+!{L8s3AM*t5GbZoo{P9gTTH#rL5A+Y2785`X3g=ZXwaJgsF_=L|b
znc$c)j!jgOb_q;2vag$00)lqmc*>_jlDLMg@i2|4-11mR!<6mpK>Y%fQVXn04mlDU
z7(_x<B80?3&_vEa8THtS(<Ke=h|2ZY#fto}@4>}Ff^s9ow+z`On70pd5_mw?sWY>K
z#5o})XuoH}=RhwOB#u)I5%kb>EPq7Nzy`8VHk7Ae2LJ}p9*0;cdDkQ;b%kaPTx5fj
z5O160*>(s{0}>V#khj~?<5UjNZJ-#9Oeq>3l}RlWVEZ>E%)#Jyd8UL5L%RrZHIgru
zd}g{+<PB)}5hRj`09fdF7k844kUs2=XP__M{di}0V1UI=EEZE)@J-NuR;6)oVq!_A
zWpC{MxJjybn5_tvq><u4*kFj4gNN}}pwmdI7??xX-g&yfkuV{J0HbEAnIwdog~Bkb
z*We1dB`7CCE*$U`;a@TyMy8M6vLISA9U>B)aXt)Iob1+uRfK?mLl4Tr6QWMZ=sV#^
z+AUP_)b0fWq1&jf(c4}z!`$j~#wWb(z<E6QRN1G>BV@u5lPNNUGS?~ZIQ&v(CnXXe
z6X9*=@%F&O#T;lFM(kW%C~H&;t#g3jbWuim5yB$hyErmD$sNlWi9IvqW7J{2SD7BU
zA~bo+atszRn#L_R9*VfDHTkE)q9dafAZ>$7=j8B%c+YfnZc(L<k32qNo?t=pWZkU)
znG?<)1T{ua#3h@}9;!n=1cN&t1AX&ka2If@FN@D$Ut!ipP0{5VZDX#{H}l(1))flJ
zpkr{29H!35<O;A=7N5bvJSIu4P(;O`%*0McTbk9mpxP>nX6Dg>Q-&myphr8HeTt^w
z@q)1&W05dfL7mNp5-nWCxW^4y7|JZ{2S6k>lNql9x-~8c*`w@S3)h59Ok0RVFoKa{
zUpN~kap5<gwkeM=2SRY2iV_+3b@X!(0EOqM9qR=}&`ug8R&;lbELJvf!lb2`(a1g~
z@se?<7Lo=rnB)r5fM2Y^x>aa&a<FlNZd@Y~4Nm-tS+5Oj6C-&}Rb~X*3mVzboluPG
ztjEl3vRP=9B^5jcQ6X!FIGQ-OvJQ5ajN0>4_7T~<BNPJ~8PRB-<}r96GAInKLz1{Z
z9m^@bTXn;xZUdJa-=gin=d}>|dEAFrPqtm*)4Go7K=W3lku5|j2^?~cWaP@YQ>P42
zOq!;O$coxVsz^r$!8yg~lPv#m;lL6%7LM|%g`;ud`21x<D>)x>FIb38@2$~ukk@=<
z*#$ZR8|y;yoIf#>S}2@8#<ScFze<lEM=mSn7cMK^;MdeXNfiSW{mf7rvvs9A1vEd1
zR8cI_v7kv<6HV3<#X_q55Q{$-Zic9DcZdp{C|c=q%$%)LogoM~ITkUBM}U_{`(I4=
zg6+m}mcWHG1F!vZmZ($aEMdVXvqU@15-CpQVwQ+ZamoyR$xK1K`L>p7%oUhc&*qAF
zIaj=;wspqiJ`<-4U1GCMv4WCBcb<W<KY#!858Gw&xcusZXQpZ=%VtbGO!6F*4Mpsz
zfY=~Qxada3=3?|lOOAVIE(q;T$(B&eOV-iZBb62~IT?0@V!iTO07n<GS1}f!IAmo$
z7m*b%O6ip&F-63{SXP@f`dx5|(03pqPzKUKMtGYM5qwCjz0%SI2ekpKKnQbWeImO-
z8<~;K;KJz5F(Pu!?Bz|=MBX{OjHC?WJf@1dn4~EfRTwjfjw+k*gm8$sF^mXq{o}5k
zj~6fKw)4v;;+|6T<29O?cgxR`8y7K=aQzku-;qIy5x*Q0F5e>I^AeBbJ`tIBe@yTA
z$1FXwWJ*si@?zX$YA<!)u|%vdYko@m-#OWlST=s^hret;yuM_(+Q`oV^N@hb7f+?~
z5;oGRd3ZD>C2T_&=;c5Kb=xO!Ce}!Ks0oeBGE$ghHmQ4a45h-QQajFR9!Z5$ZYi#r
z1<NXYn~YHP5AT1xRFo8(@w7}iQJR-FN*!iyWleiLc5r#9-7I8zlPy{4vj-H_eT7yf
zPu04KQigF9{Hvpc5KoH><bd`DLjujwFyR7Nzd%02ZI^;xRY`KeQ~Q^Yr@+~;|2toy
zezPR5r46=AL<>W`CGm`&slH_<UD)T8v5W2iQsT)l1InjloIJ&LVr?<Z1#>Gu`)W?d
z5)p?&2Q+fz0!Fd}@M}Vx<`b=vDk{hqj6)3AMzp3rW0$F3D$KW7FouPi@-ex<{44k?
zkU1fkI&vqDW{2<iJH>WO&|J5<gfDBZoQO-+!3pL9R6r=SAZXByew7;%;dQlks>O6|
z)J!<k+%i$^gFG5-XhlhQl1-;ZkVEg-HAy=UKkh}4V;c6J<<knP`cy$Rf4+h$N&PSH
zE>`y#Arbo~0;snwQ0Nfrs&jy*#y!d2Gt4HpD<9xK;;k<*`XN6KU!P8_l;valut`+G
zNrl^nMu^EQC^+tWU#d+H>N~yx8=l=^h=D^|j}wTRL_cq0Avc7qCJEFWm4F0s-#1gU
z;n_@0aROpm{I;!~BO?TZ3Bm?r@3VhQi1JKsx&2nX^xK$<vyD6&_-UK%pEUN%ZOzt&
z-ZstH5|5ceq~J_#vT@K$4DG!tc^H+?I1A6VBPQyROxaMuxNRkHF3%Xjz-)<0))?Bi
zX2;aTXAaM1aYTpZSuBp;aY*KIU<qm+W~*s<T7&(Qn!8Wb+&bsuyLS)E$!|i@a3*~z
z!WDx^l++LFy3iVziYu*da#o@zDrWtx!~8l&;fTM*SwS~x%0iaUDQcgR5~r}zw4H!z
zIZp=fH4NV%up;<9_2ie@p~_mqEP?iN)EZWr7}9f3?gKzG*G)31KKLAss`MJllrn>~
z!+?=M?XJ*lHx{#>hoV}cIcInj0bs3yfDo%nGJ66l-Il~qEMd=I2%Z1=<5Pe9#nAYJ
zvs)*rn?r>51r8Bn`M*Pis}2!z`CNwxvHY()M9}LF5&rn`=O5l*qJ71OWIJVbl1+;S
zW@XjfG^e!A#JK+s@(RIQ*AN@?IOEu_wnx0P@0>ZW!h8YU`v8Z^O}KX|%F~-hUr@;I
zbF&povwC`R&QzZbAkt8Un&Pc>Fj*zi7k3EC8*QD#R0F}sqk*Ot>+YWV9SfR(9}8Xc
zMB6yY&LVk>G-JC{QpD3BjSRl#r~$nu?ndHCq2=yTD)I_2w^@O$DrBMOQAux=WaUx!
zIiR~jWcCVMepo#Sa?&a$J@0X;Qw?PPHblW*k_<uBN(b|S%)KUs7{P%uv)alGaQYx5
zEMcLf^9Oo`pitmUk8iwvGt%>x-pI?3yjTop#n>q1qv(#*S!B)Nc6L^V;S4l0@EyQ6
zEmSjSX059S7e9)11sJlJ>rqt-GqO~~D<aO~?dS@xQbFU#?c0Z+wy!T%tr$(ArV;3~
zQ!`|1lk;%h&fSYB;gLIf{MFOf$4^a#NlM!i+Ql)#iWQUPkmcG7(Tk^qkjZk}uD!U3
zKA>eXzqs<^A~wT^j1QhYht?DHTFO>~)A8IXS)KfEaqTB93j1e8<;LO1?cV?N@$FB~
z+^`AVu%%R};S$RixME8Zt|<PVybzvT|Ctl;jNh<;CPtfY1|ZHq%oYrgT@%juF^uCz
zJkBZui0w`zm0W>-%o8{@_o@DeZ?!>gBKN7Tei;1l!!Q)%p5kndQY%@-9o*<<|98IK
z7wWTRV^!3FUq}3~O$qDq0IzT_dPo@yZo5wbdXXX~$sdjq6v2a36S`BP0Zy_j1a-`a
zk(`2U4bC_gJ`2?d-R>;p6~`kSO7d}N?I&|89J}210(He$XlrCc@9=QBT!iCtVGyVt
zfF@#WGpXY?6Lc<(t6;+H<3}RMD@AWp$<^_CmoWT8!>l1WFMMbb=ChRCd3r94wC+-b
z9eXpl+|S7R4o76sLXNk#`8@FvUbAra&0^JZqjnbOJm&bZ=5SsC!x?Df<_Ux0c=hMi
zG%UtCZiao=)?b><y6DcbQEXFUTfcEnK6UmfwLsXIb{oIu5$S1M`!%AFud4*lwfp+f
zMRsdGe&lmrol!wvFB;&i+rLN4Qx2M=A9sEso>ymKe%FrVLqdOed%;Ib+idGgp3v^(
znv`&>75sS(RCC$YZo+KA{syGWI1qEBJE5L2Jj8UYie-(z_+!Ly2ir!#`1265<33}F
zGHm5$o-)mo2vK11E8QV3j<9CFvy<AvwT{FRXgvBm%3`L>yOp1@?L&cVkU20f&(LkI
z<t}BKH)(;$T)-X0v_-$W9{U}!rh50N$G1G}_rLywv@_K+5o(V{RR{G>RnA{+$SoU!
zdq2Xy1-tSA?jzpu#oOSEZaBL|talXq=fN|u$ExRletqcI9}J8?mVEbq|MR77^MkO^
ztxPbh-GE@DONNo!bs)@yFok@OlE&FpC!xiKBp&D~SYF**EP}6i;z<CGD_#wz5+}Bf
z_!%7}aZ$kwLa5G{jx)}^JS<rIgrZVJOqJ*a$Uheg3JSJHbd31v6q&WRtZ5g_RT3~T
zBf*G=ETym!tU8hKD7=m;6Y7US&)VO|E*lu!Hpul9&^rkUjs}K(m^7+-lcRaY*f{5G
zJZEj3^ET4)m0601Z<7`%<jo&1!R<o%Vc0g=F@EJcF%ka9f_a~Sv@KjW>3EZmS2o~N
zrVQgsYX@T!bUX_?Dh<ut)X34hE5<HE8ZgZ^6Sn5#F2lswVR+A`{3Ij?N$K!)RZYrX
zn!RFx>452AGcxXtyD{Z-!=CNT)+s8ra-g0vDGx1N+uUipzPUqergLIq4Ss2&vJ(yD
zaQDi1-7A9o5p?`DN7HOe3XUc8_3&v6JC6WnHvAqxXBq=?(kNixwZQ1OU)x&k{Rmrb
zD>dvdjvckn#>}KN7Dy^{oH}9ED9JabpQ^`HzmeL9l16q^UvPbuH0|iAWJ$E8khxOB
zF`7mu0*TKdV>F$b8L$1(qzv)!+9#s8i|MySisQqO*Rs<e?-an(S}Sm+$XJ4BzE0z{
zLp;28gjZ)f=fpc?3~>`BI?^S1KMb)}5$Rzu-_Z7~L%jhFgUzQ<A#5SD6otAYc5lkF
zXKgKO^2AsbRGGDPqqc6m<xGpWjt!CmLoZWi%JR}cZCKf|;iy|1hAA<SWN?@SbtjsA
z=Hy(^rQO^rXbYd10-Dkx2K|PJeqstBBI~Vcv-tunLppXBphC%1XcDKxvY7!%rlgc9
z#;0ftmuMkv965Fhz!;-^(|FkCo6U|V-Sb(iYe=(wD3kH@EmTdZmHHN@@gh!5V}YJ4
zUTF4CQ;T~Mg<fP@=yq(XldLtxYt;OunLw&=9>A+fNg#=&qGovQ3l3PudTb1k0STJJ
z8_{9>Xrb7w-Lskbk|Tx=y-lfL+U=I`OkxI6+w`Ztvbt^Od1yj5LPdC!NirGStqqtV
zr%nqYYjX6&;0n>3jj&^Oo?f>5Jq+R>KI|{~@U`<yT}%NnC5}<l%M@7+?Jc5IgytxV
z&6wR3s0|IY&sssu08FQA29%sj0giy}PAd)Kk+Lc63Ws5*syCh#8s{lB>bS`@tuciH
z&cv<)*#yU^wbLFDcyHP;YJmO0j~cT<B$uFIepeN=37sJ;w(o|>#vY}55YVxNwHq!F
zsEiUP;Uc4E*q4`BFjdgp8SRZ&jg*Gh>JjhQXwlG68k-AAr&H#4u_m^S%sQd_*h`#z
zrpQ1ZDo`EG&xbLgxS(yiqol4TLJpxhs$=OXTSF}Sz=9P2TS*(U@NoH_Aqm!e-j~)W
zuGvIxEKHUki6=K&#T18FWh8x95=OGB&dP=>zA#hTPr^oza|7BA6E-IWrIJ%IRXKHC
zO;MFQ*G@&XN1<q=Dk~p(JYqDDX#CXSQ%lbwy)znryZ!J8<o4#0aTG#WT}y;a)Y(lI
zc0{4DC^VA`Yh~8AU_EZqRE>LnjMt}bU(;|yAb!z%ElOA_v}M4|Fc$deSLW7HdN7>A
zik|#lpJX$^67cJ{_8&>#TTXXp#eZI9!Vx}$NdDo!tlGa-O@<V_U^WC3kmhiU8I<i(
z1#aS5>-=T+X8)&$zdpkb*oMK!bqQ<wCJOP<yqFp`M|+#{f=xA8#WM*tu9vJ+CmAxd
zlS*qD$|u|K`)X8**YNLCJd@evs3Qlby)#e8QgBmR@fjS=*vZ_dnC^f9ik(}k<0#CE
zJ?t+vaFUU@xdR1yY`x0@L|Lj16AGylKcf=*tb0|8yb`U&%{0%nG7??na;1zB12A?B
z?1W7h2nGna+{krj7>=@v=S)H+oSt;a1Hvq}8S${RH%8+M)gz-N$4}_Jp<yEJGnH4o
zp<yOa3X}%S(_BS#!dz0KX2LTfm<ejk<x&<%HHv}v2?&%GKpnM@@+y(GWdxIgrUJw`
z-S~N6L7|+`LDC&wfbXR!7}qWJ4aZTB_t_$s@gqgjIK=uv$Z%p-(J?P8n`hb5Y|R%}
z1lrD7II}K|D&lq|D?Xc6n>2(nn<INP2ivVWwj0|QNups?@m{Tsty|b3e(jLv5ub^8
z#LpJVv+qV%dv-O5Mg$I#sUB7FSO;M^5C&<-{1R24Ou30j+L|1Q>n=`x(B!M4#K|1D
zF#ZXY6NsB48Fp!e{c)LcMheSO9E5f-y^^^Qg&NP1s3%$yB`*Z(25~HuQYT=B?&#2j
z4;&wC67kNQCZ(rOj8tZ$&^m4B`H%`n{;+WAeS{-DBpy7A4E=C4Go-aK5RTSPRGFh1
z{1KY<%ZwM*iH${01u$dvIies8-!lD8D~PCu$dx+E!B7D}HLZWL&IYMgCN<n-v7t!t
zw`O4j?&Ta0?h$zprK2VIdhyBN0)b6NKRL`ms3b^cjIbDeYNnrM!JW6}@luQfqTNn%
z$!g+R6HDAP@mVNThdde845N4~OCDkA)bAr~e8OHsSreNr(t%aB3Gn?74;Sh_VapS8
z;{Jg8k0L_@zSXI%x;%Sd&4agZ4H2{KVy(1S9%AU>j!R4h+Dt)ru|WYxSVul(tr`PG
z_v@A~dwXyjGvafPj}QFOD!|f%-M>zicrC)SUIh=5MuN75ME8-)LK;cb>gT4Eno+^=
z<t~N>bJA+(4&8wA4La5-D&57rRa0XGv1e=rGtDA0G7E^MW`z*ByaM}?QkevMftfXk
zj^&rp9;`4M$gj-<R7!C4ta(r))RqCnPE%Y}*8%4YZd|bDHfT<3J~tY#O=V+Vx5Zem
ztiG{e6Z5q^PC0uVO+2J#C?o@HWUQ~f%u(?HngO#H&BNE;-&ge@2R`s12On#N_z%(9
zC^PieQBE1Y(`sTOqlaKIHn3LEu;yis4eQxYY*zLG7zDy{S8$_2sO)W|Wf3_eQ2g$P
zwHPt1&NAZ8hV<{ZfBf)f-ac1*o1dt?O(CtCZwOi|+Vd;=Z+v`Gfm4iqdv6Q_C$v2*
zhMbsfnND2$g-5DN$S$&b44S-dBZ1tU-G-<asU$!3%1ypRQy@arERNUJWIEAXU&Hxr
zf`KH(W)-aRgqP-ow!(U<6P2C|q9~}o6|8bx8zV|W17ve1fY1&Z&kcKrz&!C#EyP-4
z2dr}dS)vR9UlsAmd=;|fRS7}gX3s^RhbGk99I-b}Vrk*=Q1E;9QxOy%@ua(g5WRAt
z9NU;p969cz4J31BEJW!H21S;)@LiINvm0Y_a~D`cYQ_S<5}$Kb#{x-J7Gc-uwl->T
z*lm2@$hXdu^n0j%Vp&7EJQ{|5cDn4mus3MF)R7H$6WK8BO)YJkp%LAk-PW!j?+^Gg
z7+1!$k0K?+W>aTp^M$TE$RX@ZtR!bQON??vEcgI%of>vPN@Ayhy{)udOMt7pfKbF$
zG!9q!XrLWEIS?N=rf@E{sL2(G#cR78`alTesf1)9B<4QVJlxOCUhysB1<+7QENlVS
zM;Cl3yl{~8<m_hseirjK_6~hEBUWZ`k?FxJq1`L8)2S)(b!<z<XhBhbHJ!OR;VGyc
z<5wWrjOwxAE{5ES8guaY<KXef!Gq9F^kVd|K<-o^;`DD)?nvL%78PT_#NR=jYGm7o
zcB_&us^^Z?W0L37-rEPvd;8}T-|O!+@imUslq;4R=<i|Y#~Ft%K~7%grFp^AL_Tt%
z7?aME(0-J_(fbBn4dJ7Pv0q89m<cPVj$#f$%y*0zFriAPN?m5~;LYz}#A9&!1dLlV
zRxqm<Zo(w{;tM6vJjf}7_WocXv>1EQ6byxLk~s)3$bsiSe8DOvr8}L@y<J0Cun)!e
z%297_KB%5awqeO6fV{wLZK|@3oTtT&`#Kx6;r*p5rSgpxuT&Z@sFDh0N*z^-Jk2P#
z`{V~C0>B58b%?px=nK(U4a0RKfw;b{bE=NTH9Tgh25zLOwu8R(^fp2_;T-XV&cr;e
za<TzB$v1g<>J0Qw3Z@aE-}j`BR~jCP!^J|4+LuFWiw<S4&c|5pc`Rt1Zrc<>bG%yP
znXe}F+77Y=3eWM*>lD~U)Z3IvDBtK1lazd!48|Lxb>xGg)(!d}0s&g9h_}NlVqtp8
z7Th6s<#C4CLRf<hjZE>ZEaqSx-MgjN?&|C|GDTJy4MO+kHb_$6M!M1Abwq4@IhJCD
zbrF4>n8VKD`K0tEM$|pyP}GP28g6}SC-xEnLn4EFIzOS1s1G?x!NDDihXGjF8l9^3
zs`=@RbST8@HU%mq^0ux-4edbBmSjn$GH&*oR89P@{<vdTh`Oud+~_ko0OR!C)MpM>
z`e(N(p_9qb>y}<-9IqqKfHy^!NRJ}YF)PTFKxbObuQKY`ZEqIy5|KZTiyPHI&5XnY
z8RkKuQZ|FxkoHRTboyz)R#Ow68uac|{_}Zx|K`eO^x=EW$(|(P1l8b4t98fSO`Eu0
zRcmqvcX0cUrC4a!4??iXGa{%U9~(=!e0sc|q9vF3DM8;EvMA7_d%-n*89LdaIGcIB
zo!NC@ujir8<~5H>sd}<B%<(9fL^wm@KwpNJ7F<zkm%J6_Y1M9Xm|EN@&(=~a&ePO8
zr3bsUw`n;oHc^5FMC}v1#{s1#;JzbVqK%3si_d|Bt4-O2r_tct6*16(#TI;Q;6dNm
ziD{haxQ%`ZX?8{~G(&8Pdx_<m<wC-C5!Xchf3mJ3rzFp~^r4l;W)~qC6k<O*C0kr+
zv)f_A9AK)^CQZzTQ&u5=l11<9wA(S9ae29UcjTv)C)DLn)Wzg%;~wq01(&c?XSd@P
z9~G$BrSYU$IrGjQ!HHaH04|wj;NyK~3(Ti8MYu=1URgY_ZjkB^NDS(v=HzSYl(|K4
zc~NCeOX`S=4Y5M)0P8vTKx0zCqJeJ7i<osJ>=m|^And%Z;B@4Uq4-#vvEm7hQ@N&a
zGipbto)$7WLF##{P6v;WGcb6lJ6eWKOn4m5Vncz{3(PLn;F`3~Qznr(;Ggr|Db}ul
zoMaLbw~MHgIz5orL<cg+UvZSPMV7;UVRJfOUz`FC*u9)hjSn9`JX)w-PL6de-^xJk
zt%QIeifs%K%;`gknBKN_UIq+7BE66~4BFrXvzRb^A{o<;6?Yy33_PhWM|aH!Z+IAB
zadM=Q=hZM+6o2G;@h{sOT+QsLtX9|DA2Wap_YZEQ<}9@}v5}TzTF%l+GBYK&repzJ
z4*Vz}r>9x)vLlqzRh@C2vLU5<LO<9s4Mz`Iyx~(2(K`)P3@S*Bd!5QbCVB3|CO&sn
zv$p{L-HLKr;Zz3l8yW!0mUI!VJXA2%H<L$msX*X1c0JYOq`H0|d#AaQFh%TImHlkO
z<LGgjt$$g4){_AP)-nV$>aS-EY#c2XHBj6cNkX)a*lYkr0T+TZ<8tgRf@SgA+)JHt
zE4eMB_1kAP-f%Q6E5ne)Lhkn>&BWD}YEdjf^AM(^#A%ZZT#8l$G{rmab70#UKtWg^
z=jU`NnOHs7DbbzC(5+<1i@^eOgiwQ)Us%7cBLwryv5o%W2r-Sr6aZs}74M440!O&a
z9P%s74{i7J0H??1g7HCEF_If=o*?leS|~9G0T2pDNJFn6MMg<|Q86B8o$C~h(6W&W
zZNm`QCD@pfu(*9tvw7<_iu$6-;Je}uh%VqEj9s@Q@ySpJ!;0;2neiBZjV7@sxj+DX
zgP9;SCUxxzJnv3mbx;RkifkT!zx?rt)Dq8;S~8`ky%4ujM2Di)Q)^as&UN)8318&v
zS*|N2o@a1rG@K-ObM9RgJ=BSBB)(VbsG;K}Zc;b!7WxGgyK}AYX^On8PxiRt0e<3d
z;NL{2=yvo8)!+?Jtyw5B0X$G@21>z&G=Y8|=yA;x%soewk921j0>2nURyHk2ek20z
zNenzk-S6*^yt}APKh=gdNk#wJxk7yP{-=*0wr?-dXp4Cn>`*u$LBQeN)qzgU)|X!0
z$8zP({^@dOXtV#!sK4us>AJ;?a@)eymAHjlZP(uLqgbxLl6FlkxP^PPWis_ZQ-H*+
z(+Ls2vU>@SQBQ4pO4x97kE+E?eJ$pix*y5=C+UymkEvgEI#Jp++q2&eIPq(RiRD^h
zwC#vtO)EzO681%}eV^pY_cld-*uMU_{rS!NcYfafbg3m6JGrZcOhRf_$X!xuxl~$O
zXRgSla<^n5g_CF)fe@yI-%ynxE3!@_nCOSxkW2fb5DgHGO1YGkYUav*m_2~0gm7z|
zGd55`w8LzqDvi*8GehRsCg6Q0yT4N?KykQ0E#pq;FiZuf*G)7)860H=?`z~9A>q`G
z&@S`%9)lTapbXringa{5!}wjJC?V0tchkd!MS_mv%o!?5ix3OPMYwu;vK2CHky7DS
z3g=e*41y(C4aA9Z5bj~+PI@6!6gIAeb`ficN!2)$qxBc5WF9mu*+M_+6*aKnXne03
zQp%KtC%c#_x?sDwhLU6+g%ZUT=qGCDDT+rgboq|klSXM7&u$Gza91cwhQK&>^Glr_
zLPha8^nIwSSS_vOkk(3#58Iy~KKP$^+jjtFK$*XnjsdfQO{bFCRRR5aM}!6tV~Dc{
zrx629&9QLyQ#PY?HR0l2B8NCe$U+#;*(V@Keqr$(zqylCCexs|xm`^d(ECOvT1FGw
zLFu=e0G~`=fdK`*CYG{q1Z0$vgC?5FXMUa0dw8>Odp96S<2DIwx81k}{A1qDOFz&W
zJ<&}eRhZbRrrcFLOK6U>p0%Za`18l@a_QkVC!y|GMjOUZ$xy9%GL)*&J$|V22L?M;
zzY6#R!l5`g<x~oY3s3h%hi`M?$RnQ?Tuka6#E!w9I3i=dOFe<i1?Ek&asQP~MrI|y
zW!Myv>jA^Uw7C<VrnBNyvpS1)*Q4zoyRf{{J>`xxf`To+bu!xi&QL=N&Cd#Hq!^pI
z5mBVldWx`}wLkKXMA5ak^29slIna>#IpsS(KJ(b7A<QQXqI0|<L&;}~<s8Y#i>bVP
zc=L8UKRn~F{_$I}5NJTB0ah&6H=+l4dJP8+bl_63#Xb1zkT|=>XjJwtUk#d5!KOCH
zu22lsb}Yl?vjR-oZyFI*2>R7vILI(cd*N&`atw!tLWrVi`RF<>)S(T6cy~z+Eqp6#
z__xEQYNjvbORz&#qCz-Lji_qhagZMPCLO_OKF%sdD4UpR+>`>bqp&kCs44FIjuR~f
z&60+Ty_pB^Vfs_Rp=4T|PiQKXvu_Ez*|e5`K~A^m87gBx>z??{x~EVDNg9vgg?v0G
zgVSTy)ks^&N5X}*rvQJ20rykpJMbp>%Aa1<0buWuBtq3&l7@fG&yb`)e&_Msl=+H0
z4Q6(Hv(mwTMq$}Sn&h8JZTeNz_QS*W?Q?SbcI@RwH}&%XgwBGZvS0<89ccGvSlP{h
z#iH_roGC%^vCf{;Uc#jhJ0hYmF|_wg7`4SShiClK;Y+1FFWDhnne?!kiiUWf#G?>Y
zG-ha}wtrQ5A#~I)DKBTY7CwXC$d%B43wrbWzdUSdaT4^L>dfsLPNMSE1v{=<sgTB_
z1!}7_B_;@vsc%k+ka)VnkA{t=!fK&41Mus3Ymx4shPV4l*H0C2;Ynu0&Rfm=75Cby
z7Qtk7bvz=#I8^d2BhO}OrFi$n<7H-E(N{BjRzv0^W;<aGO?W~)FFH#=z#tra`#d_8
zZ%m~TRQlaU)weF~_Z(B-Y7WomV@kesOzj>X?YQ>OXL0>jv-od&;1UZ9&%$b=!U*Bw
zR854^7rI*nE0dCjfiEdSOHgBfW-5pc-ah`+mUQ9@nXT$w?6g_YL@BmI>*rO}L?<%~
zO(&50YLb};5WSabE`Gt#{^I4Bq?NyZdMsZ$J-&@8apcD-S>>EnPKU&*o8XM~_vKES
zol&VdQOw-8+LRdCkY4#EMisX`3Z)CSKfw|f42p<9AIZ4q1X|5~krGnHI*EGN4(a=3
z33RqEZ9+~Ixc~FVH}9@&Tl2S~z_$t6N9dR=E#SaQB^a6`D9ac#NtCQbLar_e0S%NB
zRWr6tj6XF$VlSSFae_eu;Es2lYmLpbCHWL)KPIR|`JgDbecU824Xe})a|kpc?v{cx
z^a8#f2&{$QdhTWUwUyE<8+Z*J>Gq$wtbg4UWCY-Uew>M(Im^q<T#E$*=mo(c8;=BQ
z;_~Jis%D`6B=yb_fPz9}da4`~zf&zfI~8ual_E=B-IhoixEV~w5+rt|;bumRDH?Ua
zx;O@NuLF^`7a5Z2n%F8H-wyFjrxgrEoJcH8NE>C@XTIqCG1Zx6z{MQ?q99Cyi4lg>
z08mj5E^FN!7DN;{7itJ3l$6kHX5|iPGcUCAC!MP;TI??xg-Xk-SBh97MAw;)7kI%B
zJgpW%T6W5bw|4V|q+HGEi=#QDXJksZ-qZv!p!rE0i@^dRCDO1ul!agLTk|EKaS=}Z
z%B28sYc#;#cg%2#{L#mJF%KUm+*G0HtQG4Al()=*TV|3S4SP^j=13pwkWH`tzwH8m
z1Zxe$2kM->5RqRjzH>~7VHI?@%C&vA&3xu%5kVK(4A2AOK@0Sbb}UU7kGwqcV$1r7
zRCGn>KsPWm<mKfE%CNdP&qlMEm%B)EOQ}(P&=CBDaY-A=6p?_L$Sxq+bMu6Yx%J6`
ztx}G`W=?s^(8kG>B~}lQLG+}DgxMrs=vLY$7IQE|g>j_=et^-WJqd_D^6}H-#mvbo
z*jhQJA)z}U5K|(P)_gAu@=ff=Qm1k@WBkmi;&R2P-)hD9ZAX0wpt2-%jWOmaWSRxP
zd4#iDLVGQE@9^H?14l$E)6b>Nm>SjskOPUMfb=cu90}ZrN>i~No6$Sk1typk4VO6d
z*kz;HKsL$8@K}zEM>0&;Bi(r@QdKhsWs`CU{1P6+H`vtVUvlOn5N7oPBf-yXv!wb}
zZAJyOwasL0Gx-VvzzcLgb(Rn>o=BLh-KDrQw+0gC3In437q2h?ZBWLu#nLV%uT#rd
zc*pm6Z+o216BPbz+NI8dWBHHkE7xkfm~-+rO6#Y(mq1ezOd`S9c+$<MJtw+`OpDcA
zk<DqbLn_w!s4HqYeBN(z7A^>i_*xN{egN9<h>mYBs_nnwoRHq7j4w#dO{Rn;@A(Rs
zPAi-ZoF-_P&aDHtj-(UF+5AK|l`e8~Ehr0$Rh4Z79ivQRM?q*GtC)jBwTC`R22Dhd
zM9}Z(H_u2U%1+UZW$2M%g4QuCrQ|>50R7*3+^;wzUhcI;>S;Qy!s#?g_<k(3pWnax
z@#DkurSns+MX1kEh(iRoc*qa3(Ih-S(p|0T=J{?Sq>LS@vD(Y9P#=Cds(Gku-*$z0
z@z{*9&w?R3j-7=?z)od2DlmZ$r#Y03@OYi$C!v-caFroRve91HEKg3C#Mn#n_0l>J
z{?~iJc<Z_TfD()CkbSY0i$I)s3w0f0<8dq)C>W@d4Qc^QiGeXZW1tIdCJg3VB{CsI
zESS?!JaSd+OnE4YIvLy_61AD`2NCLcT&K)1II_ynP#zjSUHhscYCfBNe@??M@(s-Y
zN=J67{<k&4zhsPlE7n&1*NsuKfCT%KU&2)R91cz$9GrU2!NH)0#olLek!Y5S`#Bfs
z#IdTzu|fi$<XK%ADt~$N?oZDLib1_9QZc2HbkZpq`0ofh2JOEe5Bvz?&j0@!!u%GC
zNB-9mX2!xbwl8hU>qeVWDb$~#LKyeRGvSPAt`5H4MA*`1`yusYw<N{KG#cnrXXtkl
zz#XejkcbGXPKFv9f+6bTn*%o-zQm<ITTK8>eTM13A3;~tt_}}yAJL94P`kiAu>6<J
z!t3~YVPFvo<w*Uhx(nXJ{zcxy)3HMXE3elTc=nf?D=+U5Fbg&Jc~mB?tyGpyRHmOt
zWvMBtEVcH8$~f0v(3lrRHvlE+YxQKFY=Y&bP4NEu?tC7s@GH`|wV!|TyZ0a7{O$d_
zpRedJHfkuFa_x%JTh0tNR*Q|I){Uj|@fn<M(RqAxfzwSYyzUHf>=vPO{ok7-TD6z|
zH|jUd@krCln|BZU=Kz&Qa}a4?=;}t>7rDBDrqp-M;b~3%;o%Xmbmj<_T+XYUS6i(9
zf*H$8rXhMA7Cy<9QV#U~s~ONP<m+=-D|}wnBv1H@4_4KIK6<35;ItqZT+v@baQB~}
za1=89GY9cMJHy}71*3fHLHv)}^q)Fw{PS~!vhl|^kAj|OGgMi@g>kg%cRF0;Y?;|W
zHqcCOop-54*hfGZxP_*aI$lRCTAF}a*zZya#6${E5GnYW*O}Jn#nT)`2Fg@bufdSS
zBXRRI8%k-Zp0F96)(Nt00$5dEM~*@}9(+<~&uw=u#5tuTwb(u?Q?rH7t22L?d0;oG
zdEKL;hU&)0VRux$`Ewv7eukA2P`7>;TXtC*C6KT~ZZc(=BhFSVVnN*!Wtq*=CVtH@
z=P>xZM%$m5Sg6DTDr#07FRT}9)L6Sb3lY3Tm;*s;bAi2&2wjxYl9}>SqLvaJ%48Wl
zY|EVjzL!p!msF4}yWn~ES<kT(7fxRuS2?ExH-$u6z$hj9hHQ!7yn2Hp$UXmCiuRK;
z=?)yG?T3fU9bfn(cYKQ7dKm5(pm1nV#{HNk7Y)9kHxqm7`Su>O`gpfKw(oXGZ+wJ8
ztw}mH@ELL1j*CUA>v9oGI@vMCGK>l>j$dEf|4)8xmdJc*&o7spR8QWz)5+b*E=oJJ
z@WtQWN7Wa~i9XnE-~RCN!;cS_b3hB3T~Ht;!|J?t>iE~oPGfoc(06iUToi26w+Id5
zJ(`hjd2AgYFpTcFc*@gZEEfsTfHF6j@zCb81N3jkd7~P#Y#}S7V-Pih>9@8a3DGJ&
z16z^c#i$UqN$GJ!Im?K{Xz+sf%|(v+jk*XdXmXQ6MXqk-4{i)kVsTW{h}~OwJmIrZ
zZe-cQXT>%5U+MD_wjO*0&bz=2FT<%`H2}Mw;Dgy9;_OO9f@~K;oiWIF#tYzwyyDp2
zd6_f6$3q~rK?{u^XJ24&x0vHLyUv*Dw2f;loJj14NFl~E6)>V>^g{&vG?q7_BLke9
zQo!u^!Xho&F*Wfz$AXEJSF+@&57!(^;#ewzM>t&0t7A2HtnPE9w}n>=f7<003-5VF
z#Dv7uF@)IFPeIt8bVbr&+i6E@9IN?Ph$Mw}fuSRh$k46?g=x@<7{VFkErcZ$u9-z?
zG)n_cK$GoDo<b&xW_!Yyi-4n-ykz+5MV`HQ0c=n;*}7rG(9jhfhbFb_psD@#nHhVw
zT>-str%(ator9t)rDraFU1;{!2(*nmwliZY2EXX&1z=C70?nHj%9xa(vst{-?l$-c
zCI*l%W}jC_;C$)%@?QU8n)OT5yjD&aw`UmkVj+?+*bl5_@WQ%R?k~_Nl(pw=0!m(S
z;}-ajw#JyN+CpAkC%$<|o2aCB?dA!scf8AynAN!NW9T%;j6~vB1sTB`JiI5EhAz-e
zU(D1qQ=5PkC&3JxOwQH5s9pDJ=yB@!6SZBhp06BZlHZ6AU)rDUpKeMocB0o#$-C{l
z*M9eYdHv?ykH5N@!t@7j0&>Y@vNcNOqp`>;6qbeE#|_e*Cd>dDgmDOaYAP*JNfml4
zRj%Rc?4KCXSHPAG;X)#hDj3E?GJOaJf;mA-)s&hGL$`GLE@+fIaD=@%Y$#K@qf9$B
zed#RT%he-jE>M?K!^$T1ws{mo=NIS+Rup#i@K&akF>XHD`m-iBRrKc#ZCHL4-%1Y9
z%y4xWZ80DjMOb3sR7%xOt2mWUx+%E~aYJmTPTmZtrs5(I-vu?f3K^iOK<ntp9p8w8
z=dH*r2>6C*h>AbzUXliawY9j0oS;I$+^k%LAB8u{9^lHl{GV99mRLUSUq2(2IT)z`
z0PqI0QChN2Qg1N0x9|aQ!%KMl7jMc`(hUY~xKS1;;5F8qC<yFOgtATHCIx=7`uqo9
zn~0+b;h7K<kO0>=0(`_95XKgy({Aj_6c9h(0O1r*RmRm)$0~Zm!{tqbHM(8bm+<G0
z=-JR&9?REm>eSLrEXXX?$H0z(8C%Jlz^7y~S%|<c0{>RYJXB2OCKF5|#hXl}Fg%Re
zOY(?Uyt4HRRuHw3A*f2PlU_EaM`L<6rq{=m(U^dHyFp_jutQtEI%~_Dlmt}-Dx;(u
zK{?TqH*u<HhU8^2{EhsIJEI$3*Y<$1Q@tq>jjZX0*U`v?+CxJ&q~FA@<0TrBeU{G|
zag9TW%?ECuz=ot!J(?d%MPm!^z)wj8WCr%<4J5>9#(a~a&k4O$64iPNO4X-wBU*1_
zs#Cu?r_A4D?Er0la`Cv~e1K>gWDBn#dc*5zb`3W+A#6bh#h#*?f(bx6X8^R9K|zPd
zAKbTc4#2W3H@sM@qSJvX@hUw&KGJ2zkAPWW8)GH$@@DTjHQWdgUpY72*xc}HlxO_Y
z5DvX;&mS^u?jGtE)zb0eI4j(w$2aFi0ex^f`2BG@Sl;|?`{CJ4Ah}Vt-RNG0j`~u;
zaBAD0r{0^h+j@M1=T<|nF6l0HcsHpyw58HsogE?xzmZkJJr&&$dm#_@sW2Q|E(3)v
zOdWeqY;eWpV*hsnt-uy%f;_4-oYPFK(om{FR&c-EB`xOPh7eFKzdErs%%5=~dam9^
zX|@Jwp{$nkYaTM#!x0lAJC^qh6(VY#G?c9ZQzSdP9W$6pr#f8DOC+2-HA`EJudtgB
z(b;XpXH(N{Zok(SPV@EKH?LnW5B`sjbN0iBOKC$3X5CRcedGY~SGK8gSH|mLnzcz9
znNXb$?WM|ril2QB$AdyKB#`c9%wmMPPmMxn-K10q@zc!tmAN@?#ex(#Y)$$a>_8jt
z^Wf3Q;A<gA;e04QhbMF)0Y45B!bKuOG!cmg6FEs5s|dWbQy~N3N-{m$08tbV8i^sw
z2q(}0{PaJ|pq7Qm?BJQbLaV9cbrcO$qixbd1<#R<8y&AB0=*b;ZSPBBnAca}HQ{f>
z%8Aa<qU<E*i<fj^6wW&Rr|nPZ?5BJ)$-|TfXhe}P0wL5*YGq2a+l5yx?7d*%K!zcM
za3tIB1t1yiz5-dB=O8*eYWR{qOQLuUNY`#@BUq-)>90zHlBUaGFm(oNKg3#*BBJ+=
zU^CZ{r({g8>L(R(l8|&qIRW^C1esdwh>p}4)Nqi<^0n}}<%<$oJ`I*)P?wn^f;`V9
zOi=>|R2vmxV(0m;_e3zNLf&l%r2H0%BhYHaq9!9oc8sqUBRj;8j3CZpFA-xMxI~zW
zLp~>LJ_|Lm-y@L!XnrLX)CCi2F}EI~#C;N_7p_ni5P4|yl~~F)cA(!!H}1y+U<^v8
zSjA%8W=tn6XNoAiwo3ocl{bkEx8BnknLTXhhv#JW!yq#!arF}@Cr5#yBcwo_vC(NU
zqUX!A1N-F%ha@DJwz6(d99{n3du`|3T%5>vL<_2N*RgeKu7YddH;sMbGL|H&6UU@%
zPYymUHs^~v>|!doMj=*j<D@n88usr{EJ5-)E>)*WkSpLb3rNNogRRQU9^!zTQZO@c
z5CYmACz-0uEws3p8-Z7B=H~2nWVII?{2FEoEo6A6ZdBqzfxz9VoUT$^k^qE<Nma+|
zNJy#HL8kGGO@G$I?_nAE`u$&?p>c(6r6?0n&;Y%!liVkyQ+O^B#e~|FFv2-E0_j$2
z?#1Sabq{>jDWIZ|u4DnKmAVA_7Q?e7Nj41Q5(`pjohTm?Xh0RZc;#_MtQDdNIA93?
z;En5Z1&ns0!>gQ>ZaWGGW~MVXt)_OAlT&P4Gk+CbI20Z)a1$1%EM<-uzbsZnF&y^Z
z#X&+8h|ng)gEj!Rme?KI65X>F{7BI>Xli1@kSkRIw=UcEU<3;WX5juotU?WFaq25K
zM{tZr?5kcWyXqX9+6vE@;M0obRJgps!$PIuj%MtRTQA0;q<__Jm~p+|v-@UqFPypB
zh6rml&U)<MVWlZ8xiB7*)tlEJsuR$pU}qxtLaE~UuE+ElfpUb??RbR@$9s1Pp_Tpd
zg?)PqP$^5)*lQz#X9SqoiMM>?6toaKU%dqTzlY+}`pB(e1lIrd0Rr-D04xuGeCA{|
znA(CWZH6-%VHdGQ0YE!R--dxF<&R<Djq=Ah*u+veQaXrvm`K+~L%vohQYbnb`4ht3
zXn%|Zr(ui&XS6>?f-~A5Bf$;YA49<z@!LpnM*CwVIHUbB5-<b=!{D%vfZ%Kl_(A%S
z!_i283<Ph)&w=1c`ePjULHc7PcoILyfj?0{HdMUZ0C2&R_Scc%N&7Yqyb-^R1aGuI
zMuI2pkAXnrvg1hbM*CwVc+&nD2)9auP!0eWNX=s$`15fP)<JMi`)4DCo@xWpIJLb@
z=CR9*bPg=Cm+AaoLbyJ*I0z7mGTRVvmt?)a7!;o#6PJVF!<!#>S4M%74;#hU(<Y6D
z*GkSKCA+ivVT5<SL!=QQq)7^j3<~1s2@0-S%jg?teM58c)`&$RonE`D%ZY0;JKI@j
zZ&FU67pH=q6^4tDkO=x+1$SbrYjM_ua1tSbGEWj-f$y+5#X{@Z)|D%H$t(H#)R<9}
zz%ih}Ol*l;@x<*}w{XM8q1+2fULwa5s6Ecue|he7xuBI$X)D&&(dTXS;a3AK+eW3s
zeMa&MW`A2pv>ziHGNOt!V^`8;Q=&jN2#Of$rY$OCiOm(utsASa!c|!(4q`C>%*kQj
z+&$_lJQCM2Z#kQ{Zf(7gWO^0sTC|8J3$H@~vqT7=r1o3UUr6jP4=~7I3lB2iXEpfv
z)AP*`k5(~di~zHqD}sWJ8RC2>u#FC52pI8uj)ax=$4EF|p$F}I8wo4%+ekQH@;9kO
zl77rMDG`{I%SuuUlY8kn21xpD41;y|0or#q3<mAHF%q8cVKzw<Nk8>CX@EF3k^D8_
z%o{=e2;asWI0XE0OEnMr2QkJ${eFyvC%dpsPm>D3IE4#Z27j;`*00FA_DRuoL6lrj
zCoYwOk0R$l(V2wrIS5w5_cjbx!na{yl<znSjPjk0f+ri-doC8ia{vs=w+Zg)W++jr
z_MLV-L=Js<B|txdF|{rQ7Zkt$B*mYG%e4V;jkT~{RdPgw$siJDAkQNcP@203HBp>W
zWT9*@m5rj`TcJ;M0Wm3$Hgrf_3+}hEw5^6I1a)>B+!tUKWX}H;etrbpGpLQ1%OiT9
zf~ie4&TLJ@&gsQ5LR}|W#!!ns&gP7s?jq<rk{xibr(=^l9-Ew<SdRx*$4B5t?b^YA
z$tTJ$M86;t-L=n-4P^tIVR`!Q1$jX&r#1Hvo}5VF!~6M9m%9MTt3D8nuLIStx}Oxx
zVxGyxLfUYG@5M$>p$N=SQ<B#@V!izF-~hDnOTYix{9`JMr#rj@p2bh3vLOHy$P#l9
z4+gl`awug|^RrFoquk15ZtY!-5Logd0agt7h7vi$;u404PJSp;wW%YyCuU;g5%6(%
zYB6^3V(u0M^&(IWEt#?hKXTFTBQYB?g&}+)dKTk8N_*aNdaCn@NcQua{r>%PI3dY~
z5fY2j)3A^yd>)#inUdW~)p+)VNwL59fFS>$()in7sQF1~hrt_Ke58A{=nJ?pJOq?#
zEN!~iY+!vM2Jz3L@Ngm09Acyq-7&_9U!BFU___?fkTW)sF@^@0Xg0RcU=j_s&|ne`
zzK}7A7HlkwzTzY(j<;1Dk-1N62V32ZKV)p7!6O=Mp}{0tJeH<poTes@w>7PVRf`iu
zc)9)0diw9|UCDAA$r1gP3ZGFOm04NaQNarj^uaL^Jotve$fj(}$R5tn%h#LlWi<eT
z04>S#8V*t2h3@KFvi4kF{^8<$F#J@ImXT7~h(XkrAV$NooNQwmDd!>YBxT4wQrjFu
zQ$lHwDmE)f_*MmacD5CC{yJ*k97Bu`Ya;39>awHgkUN3P$JBI_TZT+Y^OjsS-S};0
z1lS|NvVa5o=zU+Yz0anQ&?YU~pVC%)##!CQ<`ClN?$Qs3-wxJc%XSA8i`*2FMhFIy
zh_7I!mCYJp#<GD1gh2SEia^_EIJUFWH==N*ZLMwLo>?Ss=KUbQTT-co0Q4qyM@I`)
zdfwQ;>Yb`H5^L_8H83+(9+;C9$R(51x-WG}!-i}K{#3e_t$;C}tZml7%oiw0DG9);
zk^uB&>8aJashN#YS=FK&-VPL&B`38KkzpTsM?c-E<qfyD9R=xCt8Or1w%j^Inzca+
zX&pNWc*@Ngow$yTR9lc0hi%i%yswn8rJ1F=0YPfrL;Y$r=RsKM&Abzs*k%o^t<lgC
zQr}RLCMpngqMJXS0mazPQFfCpuG~G{Rz#sWq#Lj~=b$der@`O1fVX%W@Oq!=-3Tih
zlEP!er2u}K){ec;*p9ve3*G~aW2IIqQFG+3V)D1e?nk}oZ0MU5nmec&^+~036>_Z<
ztPseJs8AWYJS;>utOfy~UPNe~SZs#KEeOjy0xEzZz(O+wf%rwoC!PD6Mq}e*z5-Pq
zwfC_!2C;Fj3EZnIo|gn`&K{cVJPDH~)00_1$`e~moNBxfXp#S`V`UZ4mMa+PA4&g1
z`!Shp?qiIN$j5A8e~t(?+sjMNQxZ;JA?tvK4iDIM$sX$VBy!QDO0u|9Ei(BDg4DeE
zNmJz2Lvd6TCG{hy?@biFi3lV#n~#e89?I!jS2#@HkMZIC{twizJMZ9bht@l!Mz@d{
z6z=MW18sv79UGXvkFhDAL_WC}B~jeGcigavf;9A$0n8x$BpW&{`ebbd1gMMN5EfiX
zgUVB%1S198V*3vIbcbUjfygo8=_^>C7~prBg(Iuq;`s0O(=QF9;Y-Im)=TV;C%o%d
zHcsnNE1y~2e=o+)(iXcb#jVY63bZz{uhT}vB8qKMlRHZtqt<S7s+=;E9K{I|n2A@#
zN<80*oPn-HC?THj1$S&I?hj5MC5RiI_}}APrw`kx{s3@+>`vJV(UQbfA)bJ;1at$C
ze#aiy9dXak-=t>*W&gTPf)Cr@zd!3I`mOK$vyr|Ju^0H$pjsNpF->|oWC^uA(k{}y
z<bp1<px#n_@~8;qU@U<bQxqi4>`Dt+g(y1B*BjChq#=NH(tU#&bc45{IzeYAHei_$
zSfO$%!vm?vjnDT{nP6VVUEx75)1@JOjxury&2<y80p4@s;$??S;+*pd<cUo+F)E80
z1?>8y?o=<V&M;n>W!*E*15aGm1LOW()xuLBPK+}j!;&Cjs(Gk(v4?wZw+Ztw@{3rq
zFZhLee39sjg6tAI$w_fg@=Rj)rQT&i3aB(7LS-Iu3K0(*f)X2H05}0Bag|O#ZYk-9
zskS+ylzEIh?PC$|S!fr|bBSGsV`g<5NKZtf-RVsagVezfosgx}Q^l-R*$h~+Mgo+;
z9)M@+gGc~<A*@TD{S7G;rCUbZXQHTdbU`lDwv##UNSI?+f^i1l6Ag=wDaFnEJKl1L
zJ3L@nWR9z!fB#|oa5k*!domO?qa6}mVrocq8CmEl^GOtk9?I<#Uq`;;zXvu86p+5~
zQ`Im2^vg5tJzRPBW_qy8GE1?4S*}G>NC%rNJDOx2z0a*?m8bgZG~g{9Qm(~lksqyp
zZ={Iz^h8bmO!@s@TD_R!t<*P*=&Jj!kv}T`$a;LLb}MqNFsq%n@!^T3w|ktkqs7?K
z*86hta^Vt6ZYRsajb>a66i2;UHG<9|;Zq+;vJ69j=YVf&qE?LG9>M3tKokTDR589O
z!(ewI>XAeV?$T;VZ={+PiTbsNPM=fQRSMc!`kG)?Pft5|2XCf_Gc>Q4%9v9{lHH?p
za^p~;w~`cL>2SMT@iB|ZIJo;5d@IRTnPjV1l9Z~RCL?`PnraDY;&wSr)#_<7lBX#(
zy_u*bChE6~1no0XM*5_JS~aFw?Mj+flBdZ?pOj`%cFv+#JEzRf>5)WNR@sl=#fR-H
zp=wX$lDU->=a+;2V~+v_T#bT#{vhkB>K*zMv}}8NZ5N5{#U*n~(S0;%ltRp2^`=9;
zmriCAySyd{NEqt<soH}X+KiAOaw)}^R-H%4h_k127I|GzUk@K2e%k)_T)r@r1hKT#
ziuGF;N%UA?8SHgvro$yrE+rZ@u*499j7-V%*8}zzUG@TN(2QF5Avd{!N0-rLt$>XO
zgLM)h*9@5gp#_jL%B*44x}0f;fmG<1QM`$7si<dX*(g08wwVoy+f|*;Y02f2auMKc
zYiBMcFZM><eI#{)rJJ1H;J3qOf*KiJc&y{8s}BSpNSeC=4wwelH($i+r=%an3D_Fb
zx20rt!6Tg*A~=(8N-u!5kR&Zp#$qk=yH@!jdVM#1NH*kal7!i)lO%;2Xv}25i>U3R
zQ$DPer_Dh=<f8^pfzt>PuwvztGJ*ientE*@daPIDerd;4g>Ft1?SC(aXOq1u5S*f^
z9->$L^!t?*{^(@J`6=!`{^{F~e>p$!cQ@X#0i`0iShY_3Tg?MEEBsY~|E^1R_Kdm1
zaT}q~qy-0@Etsehc=cjK!=`j1Ya)%<qoU$5H(U`Bdp6vpfy4kQZ^&3-qb<GDAtSVZ
zaU6&A8I@lDKZ1dR1X(_5DJs1@3q6*Do7!K_G=noSF}T7qc*@WgMgo2WQ7h~G0j7QD
z0e$G=*a^cJMJ?i;y?ZgS1#Rw879~_ruYlpkF3qCi{+Oi$P(sFl>^RGy;}B~v3R&rV
z6BR#ewfOkqyZ5h~&OOXkI&2@1v(k$zt+`R=su418?7<fE;7zBvJg9)IC{zO|G6u9L
z6Ua-M=VUx3>lI3m7_UpdnReGr{d2rTEe+Cqgl@~2HuNgw1yF>PT2#zNZtrI}Y2d(E
z+*RkDRp&d@Mc<to{pUfwPLn$t4S>;APEi43;S5>|fJDTyyAG{8%JI4*j6`>f0qkcJ
zy2uS(gBWWmZP7siu<l34^ke;o8-YrC6bm+ZF2ypBiSrEdz`C=Dz_aIJwsL{a=;+9T
z@@dV7*8G#3&72!izwZ<Li5x7cpSx-A>GL-20Om{<EBSRe)%Z0l&W`+vzx5|_&kE7m
zKK8npu<O>m#X4C^@Y@{pn0s-`wL+7TL{x8cH?uOfl-KtW=6!9)Ot2XGhppzy6J~oq
z9nf>Ts_pqJurT;re|qseZd^;dZY#d~?#x6fZIfdlKy}uhM*VCQ5z57{!H8H-S7Ai(
zbx+#{L%|mO=2W9>pn<_JwcHtmi1ewPo4vEnHPLTtw*yZ@1RO;v(8n34y^{L+8JQ!2
zJ9Ki*kX9h|cbBqvizXDFr3{B-YCf{zwVl{=YdbgS_DAvX;{?J8R^sU^CWv-@zlAmG
z**KE#b{t2n!4p=<7u!t<7xt?X8NSV$&Yr&Bugbxz`n`j+B{+TmtV}*9k8$~fd+QhC
zOHH3vilZ-l8OY-y{xdRJ8|e=ZAD=Pc&Xq@%%wtDfxe-jpZevFSBtv)M*~9t^Od)h2
zSD37-d-RG<hb7p|+mf&p0qG#+&|QJdI#P67M72|0tQRU*_u7x@hA(uj=$%(>N5>ZA
zF_p2@CX~qm0*L@jRU7&Pl1OFgb%3KF*%4%9DDIC4`{OVlKMB6PF>OpzYe$+PkHNf1
zo!W7Kh-cc8FVw!Cq}8j&hNw5B+Fba68ZjWB?5=h$0$a%lOL^(dDXNhaeRoRuB1Fhv
z#UUm%pb#;%Rn&6$&vowD>~M?w+OZUUSi4i6$>pODdAFfFg4`~mPp}=Wjv{N~_Lcr7
ztWh4Mo@1O<1Tr==_gT}DR#BMnZT44j#v#@#b)Mukf<-}qv7UsU&rkXJ+24dU3QEF?
z90gB;fY&6>szg>LvMT;6u5tc)91wtHLBfPF!bwN+91<c|_5fG-c5BBJL(N780hFRS
zP2EEp{Oyty4-rWUL;m`U^1LajEtc29XIeUh?A`h}hd;jm>AZi8#Qrf@m@6Q4m%0t<
z8S2!m<hw(U@jsOJ3gn+AusFc;GCONUCJ^f?4CKp0`}rS=a}}OXM6coVtr$@0MkE7b
zDxt-@16Z)dY1RB$#0N&!+Teo?F45bv<Nk;+pN9GLA;SK3!H>l<#+Ja-j2=TMNJg!t
z!%Wo_>?mG6jJ5NMZ5|ev!#3*7PVaHu9PtkVO96J5K|=&Q<b-T!ra8mB!Xni>m#%bz
z;W*WpNXyx^emw73DVggk@))a2y)o$1J8FE^>K<zpzPSiNc!$(Rg+NOn{MN+dPhG@g
zO0xMi^|zTM;jO5qU1LQ|u|e39!Lc;<GBQ3I19}IFpfdNRd&nrb_Gr<gl?pKwwMBB2
z;x2R1mMc&)D;vN4@#F8`|L_`CcCgYdqgEOE77FPZj==_ai73)z5u&~i*MsPHnMTd@
z07ZZwa*fG?H2eowe~yjV;m;0nfie$)FZB^EAv;-&*`Z_IL@JPof;6nTCRUxmYkL(1
zT?KOf<{qE}elS2Z_jG3+aUo_lP^V=2#f#!P2uqG+4<4HT*=g~47f>OlP1ZzdB+0?H
z8v{~#ik&5Do<eYkID@3P(3d#XA9F&*+HHl80O@Q)5aD{Ui!A0K)uzyTP-J3&r8&0C
zIBAz6sGWjNP?Dd)4pC-er<9andQSMY(+?Uy7!0l-Txx)}Hb9=_f1u;5Jw8T*Dm}%q
zKYDXbKp%_Gk;u0ZdIqu)M<f25^R<F9V}?M4v{%aQ%c8f|<rA81|6%v>56^n$=kB?3
zX1gUL7fzdAnaAk`K0D+_A|`>_`u`paK)bSH$u-%V+2@_bk;Rm}-PP`1!R!XpXotl?
zcBA5qK~<;`0(CyQDGPo?U6KX#iH?~Og71EpxmnyxP57u+cFwZsJM49bhIvc;=OluD
zifELMWNr-XDK6;rx7d-rLbb+1p%p&az6L4)uuWi6IZ#rqdF`(SS3SZ5Qe{Jd@E~|o
z4c6@qOMG2gquiTgNZk@|hHur<896)dph14(F3O2oR-&S;Yv3U(u*>LEtp{J?BiK-t
z5UM(Gioh-gr9!h5YRjdv40rA5hmvP&wmmG`h>mD>y7LhCA3#`)em9=4G)dU!f(-nM
zeUkb0ZjB0vX>-93^eVTxE?^e%cHp5qrTZd#0i*-DPB|7LKj3OuY&7%AC%r~q9pfb6
zD+&x7{Hp2P@+?W1Xki8&MFq=Qi1FI;lGhuax$&1l2_$i2AOPRpV{fXwxMSuquaIGp
z@lgnzDH?Ujz#=4zlb)sf9?M2+fwz8F2$~b5P)lMgg6~;+l#$vqnW-?r><#jJp5$}4
zQ;rx<@;xoXxs954(I}^4&tMCKzYo3!9%pikbpg;L^fXlQWm`IKVvcE|1RBDGpM^M#
z2CQ3!c!U$iXq-FyydwQd<ug?<mciK)$b0n8olCTxf~VPCzd)$bG#s*#?r>A3VUwEz
zy8}V)7*dNk<SCIc+TCJ<@E17bQBXpL84?UkFfhTu1ot(wPz2NL=u%S`tipybG1f$J
z1R81W4j+A$rAT%Fgp~Ve6_w`oMh$IGO;8cC@T#~B*Uu)zzEKP|=fYZ}9cP5zG>rj^
zQom|A<FDx!qgyoaHpj%QXIk>OQ#D#rY5|PRl@0UbIf`{x!h>>{4`5*teNJdf*Bo-x
zE7sMoJM_Y(pm#5Q0323;bSVRE+XjwXgb?xTu7-*th=l=i5Vw=T2cy#c=N*f%`YcHf
z>rBBSL-Qg>gEc5loNy0MIg;OKozD?1onu~vmwRa+SAY1!$5-k_j-J>dx#LX3R;(>@
zbaFG(peWNSoy9{uY><D@ccivprC`VHJX#k92~k_43VN!#x-O&v_oYszO6A;i%2JVO
z-*(E)n9K}Fx%-WFEQ@4P_Mj#NQ8g@txOM3NyA%LB9tKqHdW%%Ma#m_Yp%LZC<aq#7
z86Z_yK}{X^$2Kt6b{=R&sk0C81pA!acq|59^VO|G)~j6nt2pjJc2OKliTtKUJY5(h
z<H*oE!mYzN9W&?YByh6Pc|`C`&5-xga`5W?>hY(KKmO$v>viimu*N-l$+BCNAn%n+
zkqFMW3R|g$i5H9o{<PY`R7;o^O{1V&D6Ncm+$nCiXUlMJHi<Ah!w?>+(3Ht2b;yIb
zfvN4$C2Na*+x4ZU5qYI5V961zZ=v*R;M39V28(2>N)vJc=RlNbNoG7&;=ZF|Vk&5#
zZn2XE&!CW|^Ywgzhll@$)d_J1W_9XJj_N0hRC_S+>vc~B6bpXa39(=O3Td8j`4ZMV
zOP;@O)lNahk67MRy9a}j9J@sewP-aP;X6itk(%vopkadFZm_@CM9^%>)xo=phE7so
z6H>9-x){A-?#Bpb^YT&20@W_8-lC9&wr>03;7Ei}1_&`%MXQ<k$=MrHvBnGizqR2m
zk#PLAaW6&RV9`o_i#<x~Y}wbcSQ^|}HQUY1QIZzC7kNp7=gyM&`TE(=>HS~gAAWvq
z?_?!&%SdHSh_RfNhEuZ^+#cC?a&TTk#9IdZ_ctl1<iOA2>7gsYbc$>Bg*7ri_M{?{
zqE4L}Hsl;H=6-L%1}O+yELdV^;rIK$#BbmK_~T#Bjd$CYLspFQD%YLEvQvUv&oLYs
z_P;P6gc&?8IXrS$pW?KaFCSl|`c|TlOd^?!#rZ}{;#2CWKE7QXo=~XPBs=<{=Ajek
zm4r*CA1*ieAdpXv4za4lZ0*=2Ryt+IL0cSGcD2qR1HqGD2A-2S&AmdSEqKVT+OF|{
zQHyWrMPc=wOQR?WjatDIaF%=&<kk+kHP20ovxyYP@;X4_?0c(4kgqYjpc!Rp$i2G5
zWEnUh4P;ixwCV?ggNVXAJ})hJW+~(JOg8Y`dDZTU-ZDPMFJx874Vl!4s989=?gfoe
z3M=GS39}RA)(*Kf&&?ft8%>&MO+x?s%w6e68A?*MfV)PD5-%6+#Ujo0<C^tsS=a;|
z%XKJoM+90Bt@R1!4(9NG%=VpMHaa^iv6-9U4DS~)lRj?Em7}r?EXIt3Wa{4|5j3}J
zncFh(Bg1+oR5tEF3s_(n92&M=#aETan!%W=21KO&ud!FPu=bw7{Fu<OYaO~>M+EQ*
z4_z{vJL$&%F`N7F<p`KY8XgIAPRx!~Q<?&MuLALBpa#&WgQ&5gG?BfL{@Xz%LFQ~3
zx4D`;o{!(ZKbOdhO9Ojas7cfpt#<?B`Lu{&oAp|~aF4!`K;!Y^C0a?j_SH-B%W4<I
zm!m9~vRD!%@fKbyGBW*??i63HCEf~;ZoIBXelm0aN`DKL(4p4uU|B`BVFj8*DlZl7
zG>SgNQeQk}_z5UT&_?Tvp+Qdt{_a5#dS)}1m!B`J&e*Ga%71tA65~@aTxG8rr{)OO
zbF){qk>IuA34h>&(>$0yGGZPv%UJ<hM1<@e;K#@F9#DTXbu!R;p;ZiZKPXA&sTQQ{
z4V{|HL64b7)g@(rHWuNGg*_Fy@`BD$$%JzM<co3lC!JGPy(z7N&13`sZMsnATxx^8
z)U5%MRd+ZY)WHUD5E5a?y{ExQdTyo*XJ4Y_)0H@SEh8BH9HltnFdG8BKb6mw=p0T`
z8Y<`j`GZ?Ib)r=E2yH6`C9n;H>jwtF6(HMVa^SkrsD+?$#juKW2m~nOseP$b=&=&~
zHd{|okPMWKy&7l+X1TnRLfdh_c~mY(Nr_ijaYW-LOYowjNCRb(LLlgwbtO>~okl4E
zq`}`9&}$|<V7<3dKkt-9MLPxasTrpo@HYvhT@Yw^8&X7H2P0-N+<RQA-E&_%_I>~o
z?$S|nm}y$!49u-!^4(1#hUnnHX#1>G_d;*oW}*JD-wsf<WT2r``-tAzAd-f)4*RHm
zjicEwIJhDNtFHw?-%dXroYxg%tvcwb1(u|9`IJS;&4~?G^|29epBwc`M|F`)1=nhB
zIRz{qlp}JJM9%A-09gm4INvZj&96ZLu4~D~b>Q+`wvN+W9b>99E>>6<<VKVL0uY+j
z#-;5ddI*>3ZU{KsJ{BOCW$~p%80&H6tF-*0kO!9?wm4kkxIaTlR`WlZ%U^@u75Q`)
zIxYzDAcexgJWN0scj>yf%AvEP-6Qup4%4BP_lE+P)-+^u1xwInwH@3W_fwGgb^244
zxkXZnlZadlj-Fx*c<MI##4`191`kL=M}QEIc6i}4@#7z!{k-j8x!LNg5|s^o(sY}i
zA_cq^$4PAaXj312vC?!e`UYB8?{A|*${QF-O`ku%{yNw6plQcqfu!nXLjc+onXXf)
zUB8PnQd}d=MU@OAzB_))zXv-_IP#^}c;fo-Wn9zpKOQ<@!u};+e^Eh^rzBddy!kne
zL!V-|t0kv1mwz#>=oRd%QseESJVSGJg?XITC#~BW);(Pf&(G57gIMnw@9bGSi4<#u
zW)}D?uO7aL7LXfao;`e-WAG__9hKCbI(M|uoPA3XJSBEnFWULTX}}d21sI`UdzWj!
z1XWPXE}=Sz_RAmxRPM4|*+%qi;7t%tT9s{zSMjW)1b@aa*5+IXw}rL&rx)9QY7VHy
zKRb_qMJ=MVL|nGaHLgbV_Q)Y{;c?nUUs<>!qB}oDW&BGoP#8SrlYqXj^}g5FPt%Sc
zhl+<`4hgNVpQ6ZSLB~IrEdO-EzZlDpfBF8~kNa2L!$x(KRRheXQ_nS|r9Lu@(CPoU
zJ|!RV8;H%!;|EZW7<y=0TZ{|=nnXLitRZG}CQgr?KoN1&r`|s){=HyS^C_PoD)2ZN
zEjZT;=GV`uj*7%TC9)o<^;7)m=WoxcR0eshCWb=}?H<ccaL(v>z<s@#OI8oz2l{Z>
z4Hub7!w$bwxZ^OJZk2`YmQaDgz~m_u$4iD*%h4^3Ez)?@)0iv0sLC=3xDDjl)|au0
zqami|zOX{BOr27eBC;4$N*TJNLI)Nj@X*d;P~;d`jKE?979$9KOt2V%#Rx10PZ!iW
z6T?~xCD#8KvS>>OvM8uAwe$YPWN}N{Qg5MR7KI)+04Je5=#IeaYBSMY=c(UTyQ*5M
zYS(m2bHAoI3c24^7uGa4=62?QQo!+dhJU~p9D$juE}!!mql0zeQA6ir4lKbgYt-=n
z)Gwv}OE>bq(rDj|u|8%8;Vb@peA)1RlKSbpkLSiHJ^f}PDJ_M}4YO^B_5Z=Bmddti
zA00DF4{td(`Ia{-AZa|tI8A{YY03`)7EM1TW2xkN4T2XcPnazhK^#ao?FOiL)OD_$
zt1O6tSC4W?O^;C=>C2V8=zqEiR8x$6bBkp<&CL|sIbPw=$5;7j;OiSTPC?o%;B;@)
zvUQw$?fsBnImwUNwL^AxlAWDqmziDn>dov#8mebWgCv~9EoGOa*$ex1dExpNbc>{0
zU_JP_d0sPL$&pjMDkTG5oitwTN3qCS1pL&<TDY5AkeGT|tb~^`dL^!8wL8zssq!+X
z%A72E`+#1Dtn4H!dzDq6Svk1?zN-cqE(ukJQ%$G=F<uZXocO_gK48mY?zltxo!<hV
z?aA{uUI7DC@K^KF-TxW2hT8xWSMQ{923Ne@x!r2uH7X5sD~&c0HQ=jf!JgS<_kxvq
zCw-tHXtiAT%r|(xU>lXdYy-1p0-n}h6IG`Cwqu4fb7mW>tR?iq&SCz3e|97*!*TGb
zo%xx%rS%36NLdfOrB_Nu>r?Lb`R1W&Cw|Gp3vZQKFW^8u(Ol{?O-eB<Q^j@~mxhUz
zjp1GwJ3<*U^pF8Vh<7RQ4T6U#PkfvB-TLB~z(eF~zDazHpa=Lh-$R~0>c6!BIAX+q
zZyA0m<l$<mpZ38&rL2FYHIIWp9?^<G8pj8E9Q72x=vD?iw&I)vn3Ai>{_|_(j*b7F
z1>mgn?1_KBeSADqk=4SPCu8P$%eK+3>dhQ|DRK^4gVdS1Zc*r_IiosCG3SN0w2Yzy
z8-d#DH?8m$WV%`_zRFY$Win>{Ep?qYj2UyTS8EExr)yP3`*@+F7dp;D$64rzLgxhC
zL+nw66#{9c80+d}<~jAyAo2YVkh7e%O8$SV{Ht5#U@b`B4xJ3+WRV)Pok1~sKm>Y$
z9#*2^T@W+8#{H~mAGZ77ylz`v+cy2bl|H?dzI-rX5d}F~r|au6U;;s#jzLBB0kBm7
z=D-qr=rR-mtQrKNX|Tq2iTtSkUJ1XpBpKkHF~!zz26z{p``%)Z(Q~Wlp*njGU9qGB
zfnje{ai^X=%JO<<c>IYj)zABn{J;PF%ll7tSYYyC8U*>B@K-)51eteE9F;9$ffGjy
zXEVd&`}p1V`|WRm!*iy-!gf{kAVHDu>L5H$YCJg0Qi-us!A5mIR<SU`lFM}k2X`uW
zN4zeu!iHl%3vG_mA`Ug9dY3!VnP|k}Q9`x53>^!hD-~pMMOQ)=7O+J@f;{iY(!uyv
z{M5T+t$>55sDMC&Snue30FXK5-mZaR)@$Z-@S{BL^2EnWOO_juOEkD|9YCqk1OWM`
zM{1JcmEZ)~@P)R!vScAgK?#svAPpQ6kqi~MP#2wOze+1i9NJ;87#N#z0-`fcK<qnh
zv@Pxera*<>N+BvF4WJmLQ#q(Y!3Gm0q|AS2Ps#p(Sh6xv7J<3PL+&gqqeR9=9G=XJ
zpEG~_%hL}Zw&x~MznQB~4_|ONGg&&v?*t!ka3qVBhyX_RF4WO(a>~;s6-HxiAiD;-
z&#uI(YaO+q4ide)HkhbE(TVG=(LMFJYf3v2f<j9IXP_^1G%}fCRiW6`h%dFLxfwnz
zW7iSH7sI0ke!_U@0IuHOGL?yTC_~Id0&YZnb_n&s;6umvI}s{z1$Ax8q73;ZvBQwF
z#eA@V?}9W+zf++$ZmXYv;wC&h92XFEA?xR-;O!OJV1W&WaI?S$3uv(54b~G_8%D-E
zF|=R?<dbJ|=o4?T*<gVU7O9!W28(PkQnf`)89TODWJ8enkqtrON4D3r5A+6O#K;!&
zh~CJIDUmIPC#?WKaI2Zts(xDmV>npKQtB<|yj`4aMix*+n|a9FETYW<IcsdQP?3?h
z8MT>!RRS3J&jhknDE{X?+bm{93Y_{s#NE$7K7NGrD=nwa?yXMo9XBD?@2QhoZuo>S
zHVRt~g&3sMM+3aGC9KJ)ph{e_8SRa%4)@foow{~q5c2?*NSUfvqm8(T7;OP1Ggy{P
zv&zPPTx9SdiC0f~!2PAmH+u_(%N~l?coQp3X!IKxkBXpMnY93+4bU7jLV}oG@8Rse
zeu*+hUNMTzVBiulqqjmRt1Pi+8h5g`H-*mR48M%M6vn5iG6c6KiYkqsnN{Hgt8G%F
z;nq#PN`zA=xzX685i)2=#o^_o(4$WuM!mkwn>u7<QlXdbmKinm77*16G90k9wLGaG
zQQETp5WTmW7Vbhw?nrV+CwFvm$4PFLM)*cE7-i=`RSA-3csM26iRJnw3Picyd!wO?
zJJEv^JsQM<Ie_T=A*N_F!y?N*;R~HrhG%)z2f*%q-2M1|`~A5ENf+qt9<5B5VOwsh
zjKdBCxK|1}ZhLxxo0q7C)BDSZaa5e;3T!QHV6(K%v|8qM#wu-5AR*+UL{)GfWgm7Q
zcKcUAQ*G-CGa`#|T-_9*odT8m(&|G$-2!zdQRqK?TDE{sOcvdDSANfn?OYXJL88V0
zQ%iSZDbOr>Z-%G6!HE}rr1(PXfkIFOtHk!eM4jE;iYJ`|%{J!Efk2E-AR6+ml_n_w
z!xtooNai;JO`x158ur#skdHr{lcQIXL!?52MJxZZMX7q=by8RruhV`|t_u*7yi?k5
z>!5KD_R$gzOQ)m^v`$SKajDH&X*Cf9qlbGSBT7GqW#40oDO@h-=aC00V(qJcu7<Br
z9KvpK`Ey0*9Gc<V5<F8Vie$Gi#&QIO1%T5g3S88-+Mp%Pt5=L(XDGmK{UHLyL#{;%
zh=k+<(?Z(slv=>N9(r*GDCQHYs)Z3O@anG_b|?OXzqAW!C~-4^6?xCZwy&Z@rot<R
zhgq=Nw?#uySIiGZqyL<PMEvJpzt4rrDv%vK#F{{VRct$HV+iYYOe8$ha(|(&7~4Jk
z5L@92U#a&a0>aQN2>o%;)lQ{19w_$%R}~R~&cF%TO-DTVKxd_UTHJ?@xOmTQXg;18
zTQh@OWM2cX2i0;M?rG0G+>)y=Lw3jv%Dv*}7dJ10fgghaSm_IJFY;a1;jp%gw3~d;
z<u)Z|22%47e1heB0gk}7(?prq6TIrBz0?no#X17kr)b!Ez)y;n(I9~SqCXS|+JvmN
z-ot4!%~;SMl^$`V|5I~xUBQ8Gany6EItCDJ2%1mz-^FjY-{FXR#=3B**_<oPBk1JN
z3+Ms*Sd@Cv_U}RaWote^HR8=ngFyCi95qJ$drnG-asGE5r_jfW=!sjPFx>({oPXjX
z$gg~W`;2#Z;ks3t=|*z8^-2)6^Xz5}-4aUYW+X~adjL^DuD_yDxgn58g-8IAb_pc!
zZY5XR;+rmp9ts@;hO&qQ2+?$;hyJLIO6r5ZV}FjA={<_yB5wB(Qh7oyYlH44;%uv@
z?WtTCIV~R=H1kB1*;G9N8=|y&-_w<5f|93RZgcDDa+||=COze3n4C0f)>kTGV)jZ$
zOkU};-R7EJ>$9=7(Zc^Fss56fb3^~(uK7!x)Y-?t07P51gh_g=dL7zvf9Q*TVh3YX
z?W|mJm@Di;VEx5SPUdkMM{Nfkp^Yp<w_Pz~Nn(Yi<6YwGh}Wn6^0JomZ`Qt9?H0Bk
zE)%@3cIc^<Brk4CA^McdXLm%=E8W^%&f7oSB;OC}z`~#Nu(t>jI*nY=QtFQ9lypYu
z>$g~c)nbs)qK{lrCVz-mee%K6j6(B@JI>$kKYl!G%eGw+*Jw;i8kD%6<!N=BdE+*d
z#G&821cW<x#pL*c_xPNi<>{7=SbPG4WNzE3Ta*ZjKY(MUUL&M%kE00@=5MSwkYIoy
zYRCr+yBU${f@=~O=+(`i`&i8FjZqZCyhtB2Z0AXVD~{!;qz}k>G8Yp!NAB8@fs7rR
zMpQ_&6Oz|p|D)=bwK$a{8xb01+ao$AO3Vis9A@1sn{c4KY)>V+0#=h?ptTC^bPKo~
z@Y?MjZfLSddqv3Ovy10h!J#vSk|SUE9~&JE@pGib%toj2>{~$E9E4Yaw547F(tgt3
zFM@V+>p;#!+M&e;foa_NU22L@sgM36@Q44!!=rfkfe`<wCzv}GJnt1=gK^H1GH<&`
zKfCiPfWx%)2e>vk9V-2*q<t)fUzYNzUsfaTuJr?{AI}C@PP)2`F~B)}0h~E-iLSMR
zKqJ392M463*M7MA_CE-Ppr#pny6@L8Kmnq64FmK^%b~<)7)BuY6)+@6O%=V?4Ia;G
zcvh>|!0dy-ultwnbJ9HFw0Xj@VVe@YQnG(2`BT3vLV-2dV}ucpvx$HB_T!&lnaA&3
z!>l=|JI=hRe{GO>@FjIk{GBy=#-F!zIL!i-C*NC2*V@c_y3%I%^Xu(}v?Ft;ZlD&J
z520#Gqc$x_qU}-7oP9NDbssb5Kh26@d=5680z2bTv^eSc-TNPYIyZ34Bq;H3LMF!H
zsAs;CLZYIi?jv8_;EdMX4=G{@6k0(@v>mo@c!cDnO#x93p1z1fSZFZ$EcZ!LKiPfK
z_c+sXb)sM5{7#gp&b-dgdAfx!aOf3fyAZ{{<t9;cx*W%>hYVR{dy3c6v0SLp2?kC2
z`=yempHM1Qd%ILB@+qZ~n%EjHlR5R{!VdcxZE<h?LQ{C3`}y&wR{&Ys++iwk59!qv
z5C%f1U4>D88c(tI#ck@q+aL<b$iltH7<4e-3m&RL(2>^f?o0g?Wg-{;D8mVUU@fKV
z(tdkO;0~#8(y^Aby;V{t$!|XV@ZqPwyn=N#Cy4+b26)URK*$KzKiP-w@JAZ0ouH91
zpK4}A0j>=K(DT4OQ6HjD+bKQ;ofr?HU9IkK8BBPHL?=EuWSZ6SS(tt=flv6-gCp}x
zCI!}EpFyeVn*s|L<nJ{h6PsCP#j!6@Xw}s5dK*L7&1Ln|!u-9<9T5Tl3iSshgdHYj
zZ4SAD-722oInK{X@xd<ohY=q}d>DrzU3?f<1m1xs{@e@1Y<Xf~h-Vv=2pP-=v+17q
z^fFGN-gLMRbZ(+m2W-H#K?Ezenkc<XRxyRrYiuzD5Qn?H`F4E~_>Okq^9>&P>%iAf
zDmt^d7UkYJ2m9N&zVOuFC=%A)hGJhU77rZhhK5Vi0zE6kigtUPKbju?;^9$j`VBS&
zts2E06Oao8jk^y&K1(akE!|Stt^&n=BQhv)g24*I9bw-tNv=ee5D~^v>+AnVwI2CA
z@p)7O7Qd}&P*G%*wqm(~uOX6l>N-+r(|`kNGK5SY<Kb5{_3M0u&>{BW<zK(&hMU^J
zM;X<LeP!>bl0<*K+E}VxgBieE0`2RUd|mAdO2Ct(^dNfetpg>%g!9AhnIo#{bQh7=
zldbhDepcX4v(n9ZW<Tto>L*6(C;N%<JbH@ALgdq3xeR?>8r1f8@4x$SuHaNT;tSwB
zN=|(Pc1twiKBqc114ek#AvI`t)ayoSBFN+D*74(ykRgn2wsA#i%dG*tslwA6X3bJc
z-xLZGTG@0!H(HmC8HSVPz9F)*HACLF4SUyG`yE-_O*in)W~pk~!rZWHQQaIv>G_`k
zt0RrvvGFyP-Zt6*3SIIsz=#`SgrVrU-`32W${n<GtZoD<P>}W10rkVKn`6ko7J%!B
z^|8@}Pdcc-q?$+GtbrL7emzB7<cnN$)-`ZUY$+QEm-wl+JdS}GW2tysmNas+jbH=R
z+j?iD6bC4d76n~P&AYTQCr8^TC%z$@4y~jvc~jbg=Cq9vZQ61}4Rnl-+!;9Lt|?32
z(EnMg+0S`ahi){Jge{t&dkou@x|HLuA<Pc6s0j)IY8z8@Fc}+iI65AIFEmmc8v(*B
z+HDVjxLUj>cba*4*yPc+5cCX@&AiWcmlPNDsU_*Wt}ndIaj?_viO^FZ5^1$m%w<Tp
zwAe|6zNN>qzVX{60NHqmUiPQ)r8mbsOT&aot|<&r-OT$+L|Jkf8A>$#((V+H=4cyY
zlc9Rrs0C5c8)}ozw3=iVhj&k_$NByNt=d78q^a6w-e<H%I@|NTf%115Qi`63F-z2j
zd$~jtshMHN`k`$z?`z@HX6d4Zb?UXQ_w_YX(al(Js}#eDT9r+ffjT<fT9>iuCsfKU
zZ{~fa^k!1p_VM@$3060g)SF4^M(VU7n|VLBxOPEl*puG%MGJ<~yw996B-hQnQ{82>
zO47E;bn_@$&;d8KEXb(rfMMIs2;!3}x>!TU)=n*pf+qt<K|s>Noya@jA)zI8a||W^
z%T3V8eS@QpjyZMYRI_c?z{`ObwQw@)yIet>EK!@!#u&!6w;C(4Z}ahi$l4zTgGVaH
z^%^?P80?ZoP;^c(qf6FfV3vbvx42F~K7kE622N(O*nBegIm}9411A$=*(m1?$lEbn
z4QrcY$fK2#5mCDOP`xXz`GZ-9XBYHty(wjQ;Z=u6+?1L&N+AC%^OyOYs9P{75|ZHk
zxN0DUBBV#Zvw`{>x<k=lW4ZkJ0UU;x2b<w%J);@BbST+^8MCTcWU3e#MAkE0`%;Gc
zAqxi!=D>ds)(;lU2P^0&p0xyQYPuy=AzmKUJBgS}sLE7t%<UfqTutRkneN3HYDnV#
zqKACD=v5zzYAB$qF%uo1YO<jwRy0+}+#&4%`dJ~8w<w)BWDvE5GVp00hMUU|p{3~x
zAOJ>8IDRF%R2>EmV+Sz6ofdQV3DEQ)T3NFw%~3jyFwi2vk?u-yjy$6-mW(7j&;@p}
zP^pi;codgWJwy<_&!T~n?m-m<l?1MW9ketp6s&|dr6iOWd^hM6P{=oy;z2b~;fq=u
z7{;{iH6ePm44S8E1kbDj@INh`B8?@L9fkZ$s)&P5Sm<sS3-F#tU>>I}zpHN3;I{+A
zWU#>m7+mz`nFx=cfrk3p^CvmGu&5=(_A}F*U0ZK0EAtwInbmSJvoZkVNL}?RZf0=8
zcUajDxm`n)=gI1K&(;?|Z1?d`4<GjX$8%k^T6ws#+~+i%8(`9N1DWP7MwCn0;dg1A
z-7xL6?7?3d8JDUXgYOJ%O*Y8KTJm(sg5L-^`VCX~MvLbY*TCV)EtD6E%>pIx8cqBa
z!UGsoH)*pzI|kBb)J?iIRsZ(pSgpk3jP(mU=Kqwl*Y8(&n%i2w3ncmVFLO`xb?(M;
zO5Na)v03YdFr0Vl8c+T2_VDSifo`!R!Ne=Adgz%r;E`9TL#3L1uJ`apma@-n?n}|h
zv0S|ay+^T)-w*3aO`PnbC%XkxvbMgN_rvV1C5mTqCs~-0ZZv`GU2eo+4bK)y%ix*-
zXHJ9EP_&&T+#h`fcVEVa+G2Xe9<NvKmZIjhZIkcVxbZ4dH}ifhP%W(LK;`Imln&QT
zHuFAXPI>`sNkE2yFH_&l`y>O3tWvjduh%xb&Nu37{F=^zuyG~qjxTcLrpA1$5@oXn
z*h-2Gu6Ui{oyhy~d>0Ehyb`nbOORnMrW*tbXppS7&AiW=$=rr9!2MM96In!nr#PY0
z^CE3?3?=*{2qZF#HfB~8CdE0|V_;@ui|@zOTjU*mS9GhJHLy~u_#sM*InDM_SRlH9
zK}jomedVsIBkDFUqqdD-6aPVE;e82xI+d~B=lhJ!u8mmzsI!mV=^n-A4y$>;i`g4|
z3t#xv+Gf3{NrA@0obBWJ7n`#rw--wi&q}f}sHppO#_+lz%{#U3wUTb!38~oz{7;aD
zMa&%^^FBZCo3xKcl8PjsQbnWhhRr|nPv!?sIN20$+P&AKZe~61G_5om*qO6pqxQO4
z?`i&PUatL0nN6O9;F#jvSEIUC$Hwm~X%-Z4Y?K`ylrN*$@$Q)jH>sWhsv#ilydOFP
zD8}K!C?iQ-?<f5wvfg`1vrBVw0nrt1GG>S5-V{Byn%HIy%s#H`S#xCWX?-+^$T$X$
zqk*HitDjdnvPPEDkD<dDWA<}|<-_>gtN|X;hO~{}PX{)eiTC4lkPm?y$!U^>KB78L
z1Bw%Y%?bGRn!$bc@3-4;x3Bn84r*J_HK8?G93VT_0NwX3_UcuG-&Wwow7Be6mfroF
zcUdvSg5Nyegy8Az$;JY7?1~LET?EMvhn>9Q+z(~Qa4rZ55d&jAMSkf!7J4n|617HV
z%ncooGI*{>GDYuFfL3^ZV)Ij*gK`<upbd#@p}$#K)b?tMI+wh3Rx`KYw^?`->Tu6^
z5%J(Sty<*Xib=T-w;5)#_b7l4co&=)zkvM%BRVQ~nK-6+P_b1Ai3nEiTU>}HSZPir
zp}Iv@AAllLGC@&uy~*xq*4^M`r7Jr10D9pQN>#8SM_Pe9U8EI|R%BW|MJBbwnUh=`
z?!y_`JjhI+m=f^>!SvJqW&sBs9!cLtBpZ-yL|Tk)9%TNXP{L6o)B5BRHY&<DsMz4p
z!oD^T>zM6+rQj|vMz>}xydf4s#{^MNBole&Lo#0aS<#hz9K<c~>K&fsn01^bi!1To
zF561Hf3$2X;Xb8om=xZhi&;}QxA@S&=_APv!rHi}50-IP*ZIm7cXwf>F7X$%R;m=^
zbj67=)j_rO#8j39CH_n^Bfoj+*q>E1&D2%RjiO%2WDnTOfS7#i{q32v?-w%NC&(&O
z8I*M7T7del)W|oGD<MoJlRZ?}d(t@XH;_03B~US~iMeESz>G>f+$!%4Uga>Pac`ht
z$hmk`Nk8j7@^KMG>>>=V^!_Wg#6|lR9g)Wqy^u3Ko!8nrvys33_^c~>Hu=lci_!j%
zXqol&MOtRgt9Zi}>$cUeiC*kjcwZen`u`dJOEZiZ8KeG7^Zb`r@_#?W*^K|n(N7eF
zw=$HbUy!3_{f{9lX8MQi58rLiR`lvdizWr8`IUstjb0zb5F#+74D9;peFGATX2EX<
z7c@f%im5xPiw*8ps2EHG**rYh8#Z&m9-xFFD))7g6d(;vTnA9$F_a!MGot14L`mP?
zjMj`5{O0V(0u5Z<(+E0k)U{Kf)C;yGJJ`q@%B~f~7#0gSRx>;*;b|kCG)FR=kuB_x
z4g2s>mL_}m+9Qk6hLmWTZq6t0FPt4#7v74MXU70N<c@?3%CzI*g<kiHd%`Hfj{-kp
z>cLZwS@9fH>|TOU3^{oirBOe5G&-kp^XrzqHi5O-$3}5PJ36~9v^R8j7paj@frN5`
z1`-qoO@l-)?w2^bf{ap9fHNL<)~W+Z4h2D7tvL%EDB_qLs}L`Q?y;KVuk;qZBP=$L
zX^I?>bdNNM=JN_RnxdH#8FDueZh`v`%urQ2kSkPLBkae(c4^m89kRZ0?X>pIH2Sg{
zjLv*ZAy_f+4|cRjEW}r#&;TR?v1@U}$~K74tiXg(g$)RT`)Cangz8o&)J%&$JTylN
zg$gbVtsYmoadnM94?D6DU;AS`IJ^<1>YEA%fkQH*0YHsb_m&8u3eCkQg^YR^2gXxj
z$1BVU2Hi8Pjfow-`|{{V>}WXnWng+Z^>Cg#V~wV&;_j$DF^W1V8<B!?49Z}v)4bCp
zSXGi;Em+f#*^>}l1q@zCmnF=wS~wLkP`<Ffi2|ixLfhjcP09vP_D;L4?V$r>NhuIx
zlLa=}4uyxDM}ruWAxt%!H)alFUCQjDJL%|{E@8?v-z+pmFK&>_rqBq%8PD)m2&tqE
zI7`$UZFJ)vhm&8D%d0pi*g#T4iQUZ!4E)Z5atLO&UF<Gd0ht*rg6^1@cilJ4D$;P)
zlgb`WPJ>ol(YM!d0iXy$FdLwGX&oRwYA}Hqv@IC5Mnv_LgQtvq1B(z4L|Rm9XA!)#
z!Anaxa%06Rt7IJUV}?<^!KLK`02FP!fNpjC4(n96lhDcZ83*Wn33zw%Kk}I?)qRtD
z3497AI<hxj_|-VEp?W-8O!;-S(0OSuM0+5*TXiMBv8Y>{nLu<-(=`Jp)A1uEiX7cB
z+FrmvMAwdmMn;I0XNaQ)ma{bdJv`aR`BAKqN;OE7N~I`P|HqQ-OJ(7VF_se6lG5{i
zAe4eEZ07DE^H~Ua7}e(^&6#t((UG8_TR{ys*Uo;Y?UF?)^&ciZM2P4m@mnHYocERX
z_4*2S8@`^oZ@OKi&0WT2xM^IaOogFG;zofL!e<=({4(H6TL55XZpvrz=zw#{SSy73
zs_xmeRNfzp0%l<>SeOHz?BF&QB}ufxM_LkWd6wcjjsM>pKchEROvZhYuhY2Ti{*b#
z;~x6^pFaHXd-#kaU|~si+UvVJjT3y6bSb;oNnMuKFNHpJ3%YX$rBKHuBMeUJhz@<$
zVy5=rh>qf}!J>hT%9f#H!n&t(TL>t2AV#6T)V^@8CqUM|XSVB3jnEaDFg`S<M?y5+
z;+oT-FV6z7H)IycG>lk=6R1VQ_oE|Jm<Kc>FeTIlgcnDIvmhPC^vyB%9D}PAcG2pg
zk#1~M&IczW{hRAE1fdAfzucUFhT5PKGFWn48uuLZYIg|HssJCSe|W0<UNrstR++Li
zq@2IfxJKbxw8gRX{-JT*>@cpicaCe`N1c9@1~SZ;a5;LPZ*E7O&~v<7Lt^ZM6S!3j
zePbyF=@>#5G*wjA9Xz|pj6P48Qb0;Rb94+gF(-zivnoUG>op@KX>$<&=|lYX!)uU-
zlFRB=wF{y{AFDK_H_+0sMK02*cO@DO+AbNv2khY6E*7_+BBrEbTH}>2-&r1u*hzA$
zMQxQO@k!MvI6k{{lD_0KmEGuQGqg_pCYspuoRc6g$ek!eba6emt+g(R?teemTdF~7
z<)CtzsD(oOZLPt&-^=2?AklYf%lvea{w29Vi*+Xka!@{pX{57V2TW};`$&<SY)ZgG
zKjG(*aTw3J5(>;1+(DbOGY_2C9Nls{bKN(dX(U%a>37sZ;lQ5%>9R7F8N`<<prIp*
zO3W{e1eZpwa9@3qF@sVjo(r%^)e>sMql7_0^Vwt$nmUa$*YOx>M=h-5u_>(20v|uB
zog67`6?&ZNbp^n*60s0(_Vj^SW6Q+)ov51}iNLfG4pGKXdPD$%FYOlg&%C4Ww?F>=
z75m81B$7-vfykX!9<Cwgr?1x1gWry(p9X+W2<E$g^G+&d9`lw?J>HIcu`Aui`c<S(
z*sD5ktwjUbh3&;Wxzu-eQ8OSo1L)2b1W8CStiyu%x?ctvL~%eu4{==leG8K^qZsxJ
z057e7CL-x<vETj-_<)z%v*NC5rRXxzU7?{@d^KwBzFrT3hlmA&KK#Ys2RtU`q|lSg
zt<>xaiKE`;j7p>jC||k@)tA0ekIqappPnKKD{+=DI*k)?M*t35Isq22Oc+h-2BF~0
z5&oNRE^tmps0YHeaD$V1I1YyA6_wy-gTNVxP?q8QIA0Il**g0T>diAd9t&19lzENb
zQ4b}U>3kXZvVd6lCL?EGK^thvjN_WI#)5aN0|O(p60t;bEJ&5pU1NQsbbi|rn+0f5
zu|Gt@5m)tvtOjn0v8k)rO0rfNneR~e?5JSmxuB1+`k@6bwL&VIBWcLw1S`>fxfq4)
zdeOHgdfAzu)Jx9%s$F{{^^%)EdZB*(f_NMP!^MW-Lh8;Q=6~pY_oLpv@Z-xU>vUL9
z3l+Lk7WSIjb^;m_yO_#UWXmG(kg+o_WUP&au+n@Na11HfT}mB`5QT)p2H&DDAreCm
z^nG*Uw0(N*?|vE~PsI`B6u$-2CAp0y6mG=Hr{OmU+_nUt(%sK)EF<$G+s;S+AAb7y
zhx2itXk}K_Xe*z)EX8&aYX_mMsr4<si^apNx7tyP?qIRmJ;j5w%NV$>Gub+kDQ+uH
z2KRl6w+An7Mf8B7W^ulYYrjBBM~pGzH$k6!;+V}%;R)`A=uIc)BT~mZ++i)4D{{KG
zi6f(p2r&2VMh=)5+}Jsl;_l;j?|*S_VelKrFeuPOqVhp4yNY$07qF*0gVSSE+EXVh
z^2&(u5IcJ86dCnSOJ))SZpXlO#Z}+@W*<*ekBo4P<-xTav2csR>+U4MlX9ovsUlAC
zm=H%T$#d|k1YX~+Ge7kV|4#W&V*b7IpXB~_`R_7R^PQ3;q6Cui?XUj&{{e750KR{=
zNZoDs=VPFYatvf8JVdEarEYteo49FAaeUy06s0~#Jb!o^&22wQMbxvWXYoRR&Ja=0
z9$J4{ij_uNqV5J>{q2!V7vG&w>Jph8j&OWYM>*>ymw`#7ZmZ#pz^lJHc9V<m*i+6E
zJMQ;>{_Vpn#_ITLj8&c?bYgM6WPm)r<bb^7oG{+{!kxIMkpA&>dPj@7yULaw`wg=U
zwkt{))fy+jd8pXP^|>tf2W@FLIB>XK>~ozC#AP1=!Z3V=6qpu595STw6&CjPt5I5w
z_Dr_>JWeE0i=A5{f{L0Wp?w`*>B<P_7F7@sa7)+r{EsSYJ}Il0)cNhhcdzv(j}&ri
zAuB-e=D93b{@UH?q|-e9@#kk##@F5E+ppGbGH4=jtq2`n>-5dwrzQ&+ZDicRnWW)>
zAU*9f0*38m$NR*i!5}*?&e;3N#JoXlX}q&~iN?$906FI5QUK!cWj`(r<`{t+m9UCA
z2e<{?J%ykNE$6R&gIoD+Y)H$$W+@{|84sa<b7O+3|GFu6U#%%M;Se$UBD?F1&&M(y
zq6|I@c=m$zX<xwlBs`}yG^QOnu}s8|yUr(<`W0qy%{*b+zq|?m^8Uy8+aEvv{D)WG
z(0}6)?n-8$!MJR%nT|^(!Dwe!d8khVb+O?=l|@HLGiIDIAqOjvK1g7Y3O?!zM=9TF
zb(r`i%NF)PsRh5yb$up!H_MX1UfxBf6p-i)B2lnekf;HQxzQU8_|DjOQ&wN8!i7_e
z0slxjyB41MGkKF#6Kb4PD}#?nT?g0$=8q#D-?fD5Xd26COkM(0KPlKrxmc`I`jxTL
zuRHxbxK`E1Kv}faB_GLmLOl|Xm^#`P)UPdW)}~&+UQxgNkJJw(afE{4l+W0LebxF|
zLW)=G$GzP9?QhP33acw*oAZX6OW#DfBqBsLp^PzcV;z%1RgNXh1A~GWc!h{P-AKpA
z7JoD3%GfQ?W*HNR%ZJJhh>8O+g*}BL9fd@e_rD7teglC+<xqxnKrpGXOw~b(cr***
zv)c&bia7q<0x4M{g`+}04UAj}{7hM%HE!0PLoPD*`U14fLMJ>~GsI{hNi9gdB9GD#
zxh{<%Dd38wSP~|}M1d2<tOG%_rFx5e|M7=&Ylz_pYjA;*JN+ux%$$aS!JmUsm8nBg
zn}dPlXAOS)b?m4nm@3uQM56$dhvMGEGlS4o3jO5OZ!9flLg7X-@dRdan9G%3@{~Xt
z(IqehYycfQ96Jy_!j%TgdPA*;pHGK)l;R&~V9_M9Xn`fO8d$UuShU(Bi<ZAJNd2f(
z16fc>W$8^I_f4hlykyZ!M%j==FIx1XMK9Vj;;6yrgg`h|R7o7^oMel&DA?Mh9-x55
z1pusz9_Ae~7iobiT3|7dwJB;G`XYy4i<0F|6+{?I0<d7@xL6k~iVc!=G1pY=#;!n}
zu4+nP|CDdKfH3Y;NE`222-86N)<yixX07j#WMPujyV5Fw_AbHG3ZC*~<U__N!?P2Q
zqP|+ae|(HTJ*)1XI}Iqgx_g*H`Bs78@J_5j>PKbNu~+GITb^X;u27~CCsTISGHo^l
zQn6@QNA?sAqwC+$D_~{Hme{ld3r$wTWLMiAlJ33~$QHJJV!>~70h<xVQ#N|<;e1NP
zOUm6^32TgfPL(~)09MIz*3dY8mIaMSadY(s)ji5sqtaU?VnuvFUt5gMSUK{GmlTZe
z|M>HEe-2$xa`TCmMu1>-?{g9^y4X3jopcBr9cP1@uF4X*+U0<Dq$t+eoKPb8D59(!
z@j4yVkH*zpq6tLn1evH9Apt*1<&S}UbVQ0c8|4eyD0OiS<vquFCU%yy-Hl68j#{U@
zF4bsG0Z8rcyhcKgOgAQ=yO^(O%2}^4fXv&Il!cl|ByJdNBq##1tGF)(IQ&oxmeRq7
z>eS2SbaH8ZcdG1q3VNB+73>M{h^}H!umzvq@8fqL|MUY9?a#2{^0$tHj-nTb;LBO=
z&@~H`ev<*T7K*dhStu2YG{LU?rGp&@+U(c>Sng{Y4o#@on!=hp)aP4u^R`al0R(TQ
z=zUMO6;EtStehJBHo5)i=k&xQW$(DxHxU@0oSO!ux`f}w5J4J&Xm+Onp)UYLpR)Fc
z3fX(zL1zP6vlJN=q2P(L39D`iwKyT+&wsc~z~7t@klnu4aUdYvo773Z_=0@#3i)OV
zEBPd|R4e(Urb#{oK|Y9buG23${lbBM;YdHDi&>ilETWTy2$G1`QC4fZLd5uji1Cz&
zAAa*b{`ldC-=3cvWcS?}wq!nHOESEk0rBg?IgrnfXTgE3#0iR|G=KtCCRfVX)3M|j
zfj7tfAH7BCcuS<`MsS6q(FzDKZ+rh>e!f*sZ8i9P#VYiu^F}am8gg=PA|p7E3T6d~
z?qL4#BaG_T;ExbGL_WNPfnP&GLkGgH?awRI`I2>7s}a0TFN(I07i!Zq%=?Sl#I-ie
zl3Q48sb11!=UE0XfM*$I{ugr&Z_)83<sDE~a=Tpk-E6v9g4uRng0mJp&zYNvdH0-O
zl8L+555Il*>D!<8-#(B0a=L?kPxjN`ifh;s7T}hIiUW(Rhal<-R$3K|y)+(q%XA+%
zM&Q*)DrrV#8B9?yE4UUXGLEMfkEwN!+Gkv596jSD8S$rq>jTUHte^Z%d2p)^qo1)W
zLy^0|6vnumi4ag+Dh&iWUnr^sCBsZ~ED1vv!~S|vDBds7j}W*r6Zbxd?EO_-iomiO
zNdm}?iV|2AXvU;V^#mgmyve!Xyr?xHTe{WLgkmBnt@7SFZQX$k48<hw3#?4IVsm|?
zuFw%;RcX>5JK&FL1fB?jiY*@k9fUjRgd9#|IP>xe?k<OiVL&KUN1|s3QQi-#CV>g~
z*Dn+EPW8jNI#8O9tkA>)QUk6_cF+nn!jtthc)Cz<BSA32NvN1_%3Y03jp!Y@(#tE|
zF5$9^WnfRlYxK_te^rf00wd4k@LJ<BW(#RXaipFa{k9vR6E5xtug2`)@;bQa)`ZU5
z>G?wyj7=q|T+tQ?wg%p|((eaZ3mrhF6~l(5!bu_rAvLhMrr%4y?V@7AtHE#hHBv!?
zS8B@<HC&c4BN%R_4S4BGoe!H08qa0LIcE<Nfmkx=PH;%{8^3QkHtf0GdH=LsYf0!c
z8y&@zev_w)l<`DV2eDN-q<Hh$rQ#GDMM0ch#Ds@$N~LPVG!EyWL-X<&o#-Gs6^p!;
z9SA6qS4<Ytac-3{$aUycOUbf@j*@i^^X}O*in?m>z?Kw8dZWvDv*CTDir;kh67L9y
zKJubZEu!A(%CXbMg4%O>=tJ>!?u}dK*5%k?y@18SdQbev0*V(9iY=BDICSm?GF1!c
z6)&rLMjp&+5tqP|h1)RZ@sgw$+9sW~4W<)~z+EYRU@)R;owjiF-f_IK=b#tnap)^&
zeM|F*ys<a>xAn9y@(5GV@iK;0Z;F0Bvc2fouLgvn#<)O}i3u)kyck1)_&iQp3qVeB
z-q9GRqj4$8^|}%lEh~=JZuP~$KA#ELN4(>d5&YLW%Rnp9yH6Q&C-~zwK7RP^t5dl+
zI3=-0hhhH)!8SHdHyP^~AB8N+6=8^a7z8$dp6f(>X@g$w#0>X)Efw8wFW@Q7gP`a;
zZh23<U8)q&7`DaBz^X{d+7?ksD4p@t$`su0&+d?c44e<gy%2Wq@8uyp_S${xDCH++
zF$!}q`vR-(+5uH^2h+z!v`xwKqEwFB-mN^X)ebCEV3`8T6ueAfmWllcyRQC}acmhg
zc~!ZPyk`CE<h2=+zqi`28EiKkvGNY|PD7B7I%-LSy`BYC?CUV60t8MuwV@km1T`g!
z^0f%)Gk^Ko{P@!=zfqJ>_k<pHStX&`1^*n?F1bpncF9!=anfJA{;2lpN#9>i8E?}+
zsnjOb9nrT>b|8~AeYyh~Qso~`{l2Gbg!#u4zg%=qb?8du8l3kh)q@|hp58);>FEpH
zkmaIp1H@?B(TI02N6Pv}8VFf>^dG^};V&K@#lsJTY?UdE`k$Ph(g6V5>Dv6M$*xYI
zS+9arq-&TFti=C%j)xxpasR4=?|3-IDG97J!C}>5=gU^Wg$=wOPO6EX9c4V>3?Vn2
z@YER$oU{}_=4EFXp6j&9xn`Y$5x$*PM1GsmU7nGJX4(?4Yx1ni<hTl~@wgcEz85l?
z;XXPC?5X@<4-*=sqJ_Z+;BtcZ;Vei<uZX0^Aa_~BrUERTQ59KTs9zb}nvfmN>r`$o
z)P7rBJsd`f(`Kg`n4oTOiPxwEuq~+UnE`M?{EbY@8NqL=g?c#}l<th!*lsw2BIY*l
zwn*h9f+hk$qzBF1Fe<aeJr4XNUU_tjmkc^RpCWM1Qu}Akqu;0aHD>9nOTgDyU#=AW
zmv{tTsh#U}%9#e|ZMAz#XV0>pJZRLyTnsRILF&6>f=a!|{#5Pnjt<&*FGINQ_4Id3
zWq?K4Ws3VL-ZyF^3r*rYTq-TrC{uzY1x8Y(qVrgrVdc3mMOU&)(TFo5gm56&2|YQ&
z5`nw~*Kl&M)gCIuZyc{gb$6sfp4@mmGuui=33&AuLAR!a(stPg=AbDdzGnzI-;m?q
zm#JjboKch$4yR9c1BN!367C?=&yoloC%vC9OnMIF4bmJO8v62l_&Zgvog0v^9@W5f
z`Tv&e%9iZoZu`@Rk3Yoik3W9=(<@<w+Ug&nC_z!~$Soosq3Mo#6O;kx5gi+5sH@U1
zGCWL|zC)h;22@Gl+S8{2-Kk4E{bnyippQW|>(0?*a!2yYVbKO;pfw+^sKs+7et+&e
zQZq}Q5_QfUkP(=sbm5>Or|EwVGO}-)`qM@Z(NojI9`xV{wM;#48CM)w=c1P#SZllJ
zz?zty$%2cmA|qv51;GTqse2}SY{~}#4^T3;8Y&z={^9)(=a$6Txu&KW1-Z$Xama<#
z06k;|1dikX#@>}I$B`S+U%>|m705(lJ1ThLp?z`$5595QvMIYPO^6zL`FiucM3Kd2
z_gM6dcZWn2x(bCQfx?o@%NteuXEYKliwEfLiZ_o&zAd(C@0}6jP8B+W>a7>X(A=KR
zn`LD^YZLeYm88Nh4h4*NFu*4*Cfz>$)<-&yArJ$Df?D<zq;V596SHBrAeZ?Juqn8_
zhfIREuZ@=@r~R%31DIluUS#tiYzddOSL)yR<v6&xWav&j#{7{pvJ7dakA9&Iu8imx
zERG_P8P8(2U)NImIdZHYe)IKIr6DIy;*yOuQ+UeG^}-eyrWlvD+cSrUXkOVg2@;(U
zPL-F{JrE`}Xdbv8<BlHj1yzz$<dlAs5cA?$J6Xbua&C0gbM*KEQP*pNa4Vn1`#`a>
zTt@UO_0mCN4v&Y89Kp#k$3-AHwmN$?PkMV#2aj*mh?5%e<qL5?KAuRuA0}a=hn%Gc
zlw40g7HSf9EU+x(#~4)Q(y+OiFW*gCY+s5KAx?_yhw$sRIR*A~m_MGrmH2XS#22H(
z$?%fi^VfCXK9)bmhmZFkKfjuE_14i>DjfD$&<s~QgfoVWKr&{L5ezF1rZ)0Dn^J0H
z)jgjtl9Z6wBX$S?gc|f|90Yu52plOn1a~w^Brai(6cAC#jDkbc9D(kF8zMMuN$W=@
zu7NKyY0|(KD-s93S69nmRMLcRl&g+|5O|T0D1Z#At^rwlM&EX2BMVRomjqz7_IT9{
z%>$f}%s~rUEj&Cn{20|xSkdlhtCk03u7#j_na=*3DdnrZPH)2y-DA&f<4_9K;}jyy
zr0=yU`SyO@HoDz$z7txpiVPZYr=`Hhnm7O+ng}p~oFE<v+coi@`!b^2ohW?()lOk#
za;t!;(H`d2i=zrxqe2$3_u+bqNYzjvvm+@UysMnzzAGP-=sBRXysx776}u|>i{4e<
z#|=s2?5c>qQkp<EkUcRN#{#LU5cUS+h3=ROme*v?(RN2fImxZLhjPEnwo@+Q{Q`@K
zM1i8OfU9ePRphPtsD=>`Giyfqj7Wr{bpgPItDw~Wu%wJxEfcT~?F&XNHijOjzBI_`
zH<2vci2HOYGKat%_V0T94yE9OZ#0fqBj{vNC1=30`vCw+`)oz`R<tWEkYa*+k>Rk7
zPSdU9cM9s)BYZ$tb&)`T*j+24{7c{zl;pPdIb$4;h7XZwrWid_<Lrmu{`L_&As&g_
zbn1W1m3`C#unw}`K(Bhj)72KzX6oR!4g{Du?m-!8D>1QxazUru5YXG-kK3#MA2~m$
zZ=d*_Q>-W23@Hq%-LzeldKM4jTIv;UaL{<<$MGf}a_#4zK@GuRoZd#DqlT&dzU0a%
zl6@02IT7zGMS_l>)%d=9PX%A<A6v+EReK|-#xJacKY7D!cbw_nzIoI=7ktm|hK?KD
z!rlPx2)7&?#QNQ+4-UothuhzNJf5D%f1S3$HtH&Mn$IA@aEnZn8$=i~@~G~_v*=17
zNJn<1Z}Xm3{xVlFI#6YVHyGx?B!0tFct#wrL10_LEQ4o>o4NKEFIc8Sycb0mVY+?U
zOz7_HTOzp808s3~q=D@U$@`UwQ1=*+mX=sX3VA@z2?yQI|8Q$^CUR?XzIzzFiIa;`
zQ@#WQ9?J@rXmUNN)fI*q?(N=fG2>P(AXoLM7a3S28J&FSTbVV}`&Q(o9Jk`Ed&wvi
zXEzjTkCS#81ocdLF<@^(ChQ^hJT)Q+{OzINKrlzlrw^|LeXaUo$Os?`{?N7POZW-j
z`1f>+wXbeVV~x4qNwODr8Git$LxA_naLa~z?}BNJ%M!MQrS9HNk$GO{rYCo2o_irH
z<9AZ@v?M-bVKg?hV77m8+qElo%!!6k-9%_GmL6i!lNWfn(M4Y8v&eDrNoATw^2^{w
zN?N##U|m#0M^GqV{KvhP0u4u8aHAcgTj=z-Xv9Z_aet;Ji))wu;r8PiAC>fef4Wtz
z&AdZXFrNNt^bbo44t0ywVpfC(v%XGaJ{Yo$8nHg!SiiIY-D#;8mX#aqBPu@{Fxxrv
zpky==x$Yjo!j2V~@OM1|^5{ob#3LIaW8tS`jBy{S7~F<@1FpnKU|O>oyU)Ow#tXbh
z5*!D}TpM0Tl^A1o5!u~nKfk`BzFN>G_!YTW->i3|0#95eB<v{)c>$)OW{4$Vh^8x8
z%!}%cxdZS^bj71fbz#BU0Ut$=?3A42c2TS?iD-I*+Ft^CS3@d=`^HO|UXOa!x=-rW
zyjh5#8;0Jwyv-+*^${#e#-5efv+IY#z#DMgm6@RYS|+H)eSG@$RHJz-^2aZ0;&XS?
zkIjmh5!5NWh_s2HoGinsldJxAXr<A`C`8K_7gfo1GdGyv+B<^-sXzX_+GX|dTmVaS
z`MC_eunBNdet&x0Y~)a-An2p|kgYD<et`^%&~o5j7wsGDr(UsGQ~4+B0fI+j=#O&A
zr53Y>i&(`=E3VaUMm@;jFb1pz{dwWtyhuG5al7zfl{_G(D}@EP`aLhR05_W(wq#5w
zOG5iud4!gIqaIoL$jZ-2?fVGaxDT)K69=sh=zHNvzy+@2j@56%82%D|YYkng5LYlE
z2pBo^=S91+44Gyz0>P_C)fOc$)$y}CCJz$}La$pM^{W?01FAAy!3mDHoZKqqGQHIb
zx>8H}=B~7ULp3tT)^y0GP6H<5thx%I7Vz6l5Boa&g_Oc}p*GrYC+f5|htQEu1XyQ|
zRrEzAwyA>kQs~aHD$x{2Y?bb!x^4qRYo*rxa34&A7=iSDR^~f_@8H1eOx?yw*T{1z
zUb4p@XH&3+Py@Iw;`mZExcm9G0cKh;z@*i;k1+7NUX8Nb^lv=MC@Shl_7o4)=!TA~
z>HUlbQx5}f;5w5%J^24%{m&b$UrrTAlL<F@4I`%qB5JlPtrXP_S(1Z}*0GpyGfK^q
z4zoR(m+kI7!g&i(7YwzAH>2k`1~QCWX*r>%fTe)Jj{}%d_cQyC3?f^#kWLzbFYdG<
z`B?rF8p2f)0x*OAIZwRYU3F=Q^>jafMgH>t;ptZ3kC~ePpK0^`M+&HV-!K1uCZoPD
zl(ZkDR9Ll4HxwBI2n;cBTa+GJbVkQAh?a`+M!oDC&w)(hJc7HM5U%NTHL1Mb<6aeT
zK6pC7y~jqIg>*#=Wsc%4CT91HBewsGyvvxF{Zb*9%l?ATU(njkjp9hse<`@u9w<<t
z$e?dfo`47OJCS#2bx&@!&~Lnkp$PG!9|-xjzxpz#jo4JezCRU#YikZmOO=QYt)T-I
z6@};!HCC!>84v97`RsnJ{Spt2EWQi4tx~T`ePt0_rbTQ|mn>p)FQ`vnY;qH5GLqY#
zn_wB(f0p;ig7pl_-e1TgvQf{o?XsR_cHQJ|j#VoJWYMTiK?NKN_#i9rCMy9ajcX@+
zCvSvvIo81yvl_<q-@xrN$Y>Qg)=+8vvE#3JZr4`oMN?sr(@A~CRM@AbQ&g8*;VC8q
z3R}S?&+oG~f;Mc|#D8RXcL<kOh(y3RcZk&DINmgi?l`k<Zmx>lG7AlUnHkBTb0fe|
zuMIFp41}gU^TJyJ0T_$rDZeA;om^%(;2GQF^F2t#l$KizxuAJiC?BipA%$*b#tRZ*
z7QtD)xxnUc0YoCy!0^X`AbSIMl_C9C4G#}8s9fTQkAy$q=}1LeqhF4@wua{x*N|pw
zXQ$quEHbL<W)=#)vDn-OwoNq~B}A@cn5+ayLJ&JrAmFJ}qgdSZ1%(?8#xOh5GMR)x
zoGMlKxP5MREQ}DNnpQEyV=cDNcSWII{8McpY6|$%gqkkO2&#S4raXQ^>iU15yK^@;
z`U@%gdNrc2Rx=v-YpzZM*O?60=Vb~cebl7*;k)(2tGQDfNoy&jZ>6l!#R2i?2OdMf
z7q})n%fWB~t#EZN9Y5{Ve-c?yBFf&ARp}+e9QK)jxyEZ<lqC}kt}{X@wqB&Q_WqM;
z{fAsCN3y(`l-%X2Bm3roA0yU@fS02>ld=;A*odc12yDlic6@q`faCKE+i_CY`<Ip7
zH_|6rHeDBx3fX9)L_3-|YLP`2hk~!9qIfF>BU-_|BeOpluE#dm-=|$0{@$*&Z|K?w
z5FCBm*thd8ug{;r{nsy_e~(Y#WOf;EpIr!Fgn(NM2FGY<#q`MG5$xquNrar4Ak0Jo
ziD=-v;^lyVux9<AK3_>^!CNhktmUjBBWT7-yeR~D?k(9lA8CiIWa?IP&3OdhI{(E*
z=2uy^PW#8qfj$7@9W;h|+7AJ03|XtF8GOX8JPb0RN(cW~XY>tQ(Wi=DZWUfD_cP0>
zU(ZeJ$foo{(;d#o6|i2N9DaPzJPT8ovVwQfucYJC8XX8rhN~$^T#V+?s4D`G2_W)0
z%K|Zrw|4g#^+zcPN<jdwK?iX)JQaGKSwGhhLX}Vbjq>ArhU`bv@8DPG0Ri^Di9?4S
zA2vd*&(yS~&e2o-LqTUZy6?wyQVYJM44g0o5ok*u6Ui6_e6|aiAkC*ww*zi_Y`zz^
zJjG-Fo<DsxLLOcn>2xB#7RV(sd*F$VBw++GNkaDE1G?4j^gPY%{BY59(*<vVlq4i~
z@SrBB$Z<z~qY}#H38zt<BF8vCIt<yTo?zr!(8;#6>!D`{sGS`EnjX+7$fWqFbHGwB
zo(<<H`uhhaeq_GnvH51iV~WuWM}J@JUot@caC`sz6XlTl8;**s39_HcnMz4bvi=%o
zugDr#L_;3TvJo&EFAZ8pn@0MRUA53kr7exBk+ss7zz7EJ$Bb9shkM$<v{#k{+h|js
zfGrOIU6?_CXe`3$5tB&=m37d~=yTN~B?W@|rA{%8k-?B+ZM2<XO*#Ot_yiW)nj_$-
z7$cK#Y)4Zr8$6Y;y-EC?uzUZW`3C0e_XF=Aky}8%fw7tIJRmb)2bo2_>hHwo_rc-=
z63l;Y{V~cu{Q7o%b)<E4_6ekxaS%RW8K}&!nDZ=Kn3qk8PIS<8P0WC+jABysEdj=+
zlB)`r!K;Y-V=f)IU^>82RjOnFZ-KC}J<~;RaqW%)BdS7P)pZ6VTnXr_{9HK}i~Dyo
z^BS(PawJkpD@UWw8;_|CcpRjq&Jx^_>Y=28Dzk=HMe0+<OX_Zkw^f0#MMSBMqq(Du
zR-r1`8Ie}+@dJ_lU)*lS?MK{x5O!rikAwz!(CN!`y_$)9*ikHSU-T$gp`oeN>9A?z
zbk~XIa6rxIpsKGRBjJ{7al~C)tZ?6tT}3m0FY>(=MMM_iB}bNw$-1k<JLDztZ4S9y
zB9Gx~QShT3dmtlf=)t2dg8j1MFfSuQzQOH%_oxHQ(8Mq3BCdVKe8<Xc0<#IsJs|fZ
zRX2$glo#<8zu<+*6_{iB_a9#=toWQcDh!EX40A&fcm}N61tIITw9A@SkB=eKEOfIT
z!Qm3^U}SCTSKvl;tX%bii7{Y@S&8%Z$uvU#+jh^=>LtTxVg1~!S5tq|#LJD$x%>pQ
za~Ij5i%%y{GW+4gA4k_?n}!^hpQF(EaJ%n0-?_)DOHZAbn0+ha55u#!tbXC4cmJt}
z0+F8&H$QfY(|$TIHD`lCWIvjKsLx?|NZk->cliClOGXTDlC;`?vJXk_K0n;W@7CKh
zNaMHmv(oJ6ajjfa`02hgw|0N|ysnQpd-21cKit1=e)+kY4<iUwo`h|28IkWPbLO@+
z!bpkUx#$lNSC+<B&YI8h^`a@r5Ncn;ck|HW!yM?EEzF!2RURu;OD=wvZcl17_puu9
z;0h%mRdbk%ZWl(S_Vc5XLP>STa!4=p4gZd9_qpN^pTGS1RQEb}+T>f}re{FA<&xf0
z)+^p|p5vwhg_Xe|KBMDV_ZzQRf@L6Lg|aicFU=jR@pkhjE3BZ?LmZvrH)Ifz0m@?r
zh<FBgKl1&s-J^iU0fDM<ae>%HI~C?a`lh>px-;W1*Pfk{swZI-!}}M=Z8vy9wEr8v
zfo6<)ogT(q9X@^ja(j1rqMD*pGuMo}EQK?>1GUV~%I~ll2<fN1Pnq<;vI0HDi&g-?
ztO;Ky!+Q?eI`tQ;y|OxpsL7>_3bj)a{=|%oTKWioVn$gLZ>FD`k#4?me`-deAhw62
zdOnC$yMJTLa1TM6nWS@h6tk)Pz<l;u1k7|rF>2l_w#H&I>R#z}H-%o#@v{F?zCoaP
zbp%+Dg#WQ)BDjO-TYaBOeVdsEs6pLX5X|e6o=|8Vg!b<umd#b^%kc*+ODDX*ylI&M
zbU2ay=ZwIPb+rh7P6r4j3LW7P7llsa$Uy|N&X;X446P##U9tAX-I$B>^C;_)WiWO}
zm8mP$F}eQ|@TUqvdItiax!D02fJ(5w#I={a<OZ%<cNqI;LEU}iago+)hV*vT2o{c<
zD?NiM(=P*sK<3n0D&1<b{}nt2UD{QlVhG+_bm?vtZj@MUI^Ru#8NdYeh+LK81@~7<
zxW6mkJE*yAgoP!ia;V^5TI2JAP&9~9<2|M8R^PzLgyY)!1{Qa&kFUIik^5KxhCw~n
zDIF@rTLn%aBdj-g-k6+x1W9-y(6~PlXk3=v`9S^p;q$2`L@OMpg^FtZ9e}TsHZp2z
zYGu5Gb!5_N^!<>U+B*>eP-x2#KIW7~-brsuOR2SYbs3|N{0{ty-1Hr`J<0T)J*EM~
zV#)6S0Fi4aT4j~e-#tar<3D)^jlEv%9ax#k^}!|8caUq0nhPvz>qyq#(WrK~`yXpv
z#yb^TEJ4Bw1jughgw@DV@Vkz8bdG}fWBz$DMBdAQjb*a>?kUE4$h*>()XO_*&`g7I
zCUY%O9`mtOa8mbN01ERCqS!Hp#WDcgYU7=tFI&d+tO;~znN`d!TlQ*?t|Y`H!$t&e
zyfz~>27EPuYDFHYmq0x)7ewHLN~-Drm6`4;w*l-`c}!UV_gTw3BWET(W-1Ev+b-{H
z$RgT?EiDbD*KO%p%eyTyt8+3we)WrtkFdx)s&FJt?LEzFdNO(U6vM0d8z4if^3I?p
zo<LxxX{F^|Eb-r~oPYI)_>^PJ-jlbuG8M00(tKK;Qjz6}G0clMWmg;R9VOUf30pR8
z;Kf@4mb6mdZIPM(_R}MygI>u-BfUJbbsvD_OOtoGq7Zp31fSr?<Co9JyN}<WYFPZ*
zWs6eDt&&SzsB1C1$Xv31iMOO`7noMuftLON_mZJ*aJ~Uv%=<$<y=Qs@aIjt4@ECij
zchX<pa@e+S%@tGRe`B`4$narS?@Ymf%xRxh1oq^0J-sC_vW>{}G2M%M#3~y9+qrI^
z()V|tKYchsu$N5zeg{&&xZfj_fY1DP9M%8-vZvq)yN`;RF6>~*;fi$We{ugyK5et5
zQ)_n6@kRHgy^SE$f4>@)-eX%`IzLOm0*fF<-TWI({f*mhOAF_aKEUHAz!H6u7Z@@q
z9XM5heAxB4l!aVS8<m<a?7lB*$rfzQp=^Dny`ZTk)H$S)u-P&gQzWzVEhQK5xyPww
ze$wsv=o&hijN1Qq$v?bH{>B$}7dsF^sJ-I2;Z$2)N}tg_t7nUGi{E1p^U1X~#cA%}
zA&;LvO}rkv@qWF%zk7uuk=-AE&P2z6!?OdmjbNGwPQaCQqPAtBdkUi`07F@b{#a-I
z_~+nAv<eJGdY>a@n$i!%${mGkl>jqQ;-J2rcG}yjM-?^}chU0WWrh6Pz-~3EKe-2f
zraUh6;yqX~+bwjX!M(`A09Q(d_A78~2LSU4UT-;4wZ}c8NIxJ=$aL%BiI85A$nZTe
z5k|#WOQ&NCE5uf<=(V!ABe;YUuu$FIDp=*R!UD?uytZS3RT@oO4Bdto6sg?QyZnXd
zcvkKCtEQvhCSbKIYU@&6qH940ojPF!$c}b#G0<_y;g+RS=_HrM^-T&6tpyD3MqR_2
z2@E6M9RU;qxht$F<e@ITe8UWfivGi=xRbB${1+!#PQSP{N@@546b=da#Z}=KCwYEx
zWl8ey@x|SY|FMDH=)u}0P^uW6wiKh_h@KvW16u?myXF7hk<Ed9e|&_FJUK{KNfQ`?
zNJOF+%eBkJ-pNIzf@&9JYnN@Ls$HbWMRWyKyNr*Nrr1Xo9alC07v-)`M{qcqv8czC
zI_vO2O7Els2CV-%^Z7_rvB|aoW<Z(02d1_nhQIsx^fS&|KLR=sE?_2|CviBdz(Nq?
zN~tY2msrP;E!VivU#xGu7y0j6k{x-I(8&HEbnkWE=KK8T1LxBZ_oo=EwQtM^P5s9}
zI<j5@4awau44H>`5r=|vG;0)(AHN)58=j<6UpUcYJ9zyzx&FwWGSEYS1syvEFuAcO
zc$XVf*g3RX?TMd@C*dU+<THym5Ie@6+XLVJw_iS-f=-In4b2wYqkg4A&>?4$mp~n)
zT;2-W+S7Sp+FuO)hc<br52>$TKYTiAY5T6YE7}fe-}Tfv+NJ<~^3&mS6K?Gd6Zze2
zpN&4d>hKu`_jV%Cf@ys~(^>IA)xlm$6ncS{(7C22sMQs&n>4?nxIQ){98Q8llMUr!
z+^;f(5-LcI*yuPD(axbRb|_eZphuR|SewF3p&eBruwjjdSD`P$I*?AEzx%j;IB~Qo
z4ns<n)NMeJ&*72D4Lm;{RPFqDuzq1YNJY}0NhgQRIqN+1`0M|`HvK_F(edX7dQIoP
zp_`h{enKgo`-HM=bo=z-&+(CV>*;PZ{hG4_<n`5lL{~*GLN}Fm5xQyAOOr5>-BaTC
zMSIH~pbsL|u8GthRULtdUoBI{Em34TSFNTVrkO*q^~8<oKxEV~H>-HND{k=i{mZlT
zJV)n<R2kd^-e&F?BR&zZ0$ximJrWsdR`lr4UA1XT^aP)D(h(TMr=5|1?S2ajq3G^7
z0rmcB0mc*jpqT}>IJ8@yd(I5eYsxrMpd;uS_qNds7{iJ9rP$PqxI%C5fp5M}=Sc!m
zuP_Z*vfRw7ed`VYUH6R}i@*HmkHewIIovSFcrYl4h~Q3@rOzW0@A!lJQ3DcMpl@CJ
zkKxI|GJZzC>jh-}2MonO-adSI%^0FaY*oP?ve;tvs&wTEjktpaPEEOyD2b2}+{0;J
z2<R(Ot+EFd7U&rVmo1*0ol@Oyd?DBZYA6}%{h7Yv7ar0Ixd}v=@aUBk=;ybA;h+n5
zF#?S~dC2r`?+)H;#_FD_(jJ8SVI6Ei!!rO_&=c@t1@ky@mX*<?w}1x!6}7DjI<o#U
zf6N91HXxt@fei?3KtKa%{E7wyvP0MakD`|1_|(cKXPt4leU_V^;U|X_L_=`0A*_H~
z;&pB&ta0E<rlP+i-jFUPh|<8PD(cdgk*|p7JK>B;J3)2HV)obraQdu4B&8ib`x@9e
z+0fYuIZ3C_!sa-0Xt)twI7ieuVkA&?Um_ErS@rSbqPcz1f8flltZ5WC2B9a3LQFay
zwGH+%9i|?I2l2WjHiTY`dk>z#;K<~mz_lvB9sn!K(T6Eryda}qLHNc)ywCvJ%?S)v
z3H&6|2o+<FDL4qhby@m2_qCmy{Y(Dt|6km{@fY_G9nH^U<aqbt`1{vmgJAiNy!rM8
z5S)aB#S<QFXzFoRHx}rU=e#cC41Ug+^Id!)HsZr)s}917X`0LYwn@PDMMR&r1iT+!
zY#t(SG4ZvP-A02C;@m#a^hK+k$v-Fi*8H1Z%AWH1bCqxPr)U0)O4#lV5PRy#4@7xZ
zp;mIbxxnW=9WCc)lV5Ke`@Ir+))y+CfLwh0c)HAyn*uroaQ00$drg$PD3^M4(c#8=
zBjT>=q7A%O+QsIEN4a47f;JV*iUp1W;0T?D#$qcZ5QSODQSnI0J6$?nX>~fLqj@U4
z$}4I?^Egf;0yZ$CciOQA@JvVmVE8*wk4fg&k2|PL6_h6fRbe$+UZZiIDOAocBNj9#
z3qs8x2jfIjLQaY{68)}3Bha%cNNez@cOym5jl#2okR&7paf<{D2Ie6N7)U^BHG+V_
z$fs!BE;#)n2^gG!5fluZ5h;-d1tTd)TVSrJ;NgRSkqZe4$mm^k3PzF;+4cYudTf#q
zcTk-wfh1&Qf|JlnAO%UlP|%z#2uZ*hp9BmbV2&hUAORx@NP`J%m4q&h&wQXdE{(-E
z%v#gv=-g26>D#mK=|b*UMSg1CwOyz?c|@Onc(i%=dV)SuZtD{_&ETo`jT+Or=o^9U
z|3D?<8iC@iu5H%>!+B^Oiwe5g?4W5LbvK}|_>4v7(G3<VHZVpI$b~F}XGvhT3MlF|
z=ERD?CKwhomgw{gEhXNJt26hAfU!FwTp#%)@iwB2FnFL9&M`5;_T)K_JHE}Ac@s%I
z!k6)`_tfW4r(V{&bE|>2E#fFQ5U?t8Dzc=;E%8unSFxLE5qg(HL!(0rDBAW2H|vxP
zP^Y^P|K6d#Y|)h66Ng33_|~Z{Tw3*?OpARN8s2aqam)_f$2Av662OVKVTVpo?M_S;
zo>kPHnU02uqf}1&`Mp9eT58y?iT`FZY2gPUnH$H`mm#J(VO*JfKHr}3uK#Vz=a;Xy
zU*h*4?!Ug40hHSb+(&n!^pK9FP&G27F1tkIIHOO0I8d?M3@`09_+`VGZ`{BGoKDdn
zgKjL*HMy;0z;quW?bfM9^!6{!rEQ5q(6lH4;_0AOXxI++iE?E^YEIk2UGrlcYtJZ9
znXe-X&>-kbw$kxSM~=i<_4u7Cr{uIG2MEHfOUza#icAEECPfK-a8V{QL02y*vY;!|
z0hw;9uHKZWYBD;av`l-et%ZLZkK&IHuZ*_(+%{i^p09Rs*Id)KYc6fDK!;QBlpE&}
z6m?-2o5#^WdRi`uR0h`}ab$$Oas7jiHSP~Oo-pFE)r<ku8fC#0r7x-nONp+h7E$y{
zBeqD+(;l!Tip}Xm)?W*J?MgF>;{hvUJW+U{j1m$nxx+9n`iWG3jH_2au=;noV91ag
z=RRG>k6`HQ#RCcCaL+r%{acaNn)~z*<W0FN!>L2u)Wds9*@AU<Vu)mK$~IpVEa##Z
z_puee9r1=U9^J0hIf;%fKPtmH_`ZJra{TjgJsp55Jhv4B<v1B(akB^xl@f@Kqg)ck
z!E(dd+3dP#I_snGhRk3*;ms$=$vbQnGa(p)KMzW|5~W;Yb!1c%yrP5wy2^v7c%Am8
zh8kF)gG<A%<*eXL>N&w#t&2gyf)-#3m3fznL{|YqYc0hwc)f<y>Wa|%7K|3WLO~3n
z_>Raob5sU8UR2{1-rqJvvA#4<V9l+SIyS9naN>SD`}v^K?ziDXBb3TjDeM5`LOl+E
zJ0m}7$A}w*3M`ct$b#zdT0E7cfxHseV}qVyw?)xK&3B&_bue~PLEoa~Z4pk9{QMnu
zNVKe?ggT;C6miGg;Cb3DfnY?{LaK_=3#knu6hhVjIX77<NP(FYlSg4xBSMJ|dsOkD
zM!aSbuPNihJ=a@G--2Iuv_+|EV4#hnpu-r14>lhrQt4<o6LU{^z3YPUC<>x<N7SzT
znlU!%Shu2|8eMx}BqBk~CA91)r6nMUR;R66x5cf2Jl2R;#4QV|=6$1}dnt>oHgF#f
zInd$$Sz$+&0#%vHimt=K<p=_CP^8EtC{%T&ZcfCSdUT_6x`rS}jDElwF~FlOf`T|J
zYhbnDaos0{A3lA({rKq>G}F=bzYHs_fls?e0C1Q=04!Ks3l)sW^?J5A)u%@s-<;?8
zDmUo21X`CcFA4up?}j_o9FE<BU;HsSiNb@v>+U%skWJ_n1y7UEFO3`Lo`YX@nMY)v
zoi{cFI$V|tUsgzQ(mG`m;Ez@h4^L?)k?ud7oILuG6e73nmQHl4*O#&B2K@AaYsC}y
zE;$#1D)R4NCSx3vIdOEXd!h#!xWf&`$qT9*+&F6*zyJL4(^rR0*Zn+iu6mHL;~632
zE7W?8ov|c>%=Ikp&T-@;KzCrYXxigaoRd7pfX*F#K;p+54O<S%stv|*{>%LQlfm>5
z%&|EGW4?*4WIvYdQ$Ti~P1QojFPK>_O)+h%ceGV7lMOLCVs1A;>>1-K1?=4h>!cEa
z6ji~1)z(5m(W~MU6b%X-B2$bVYsxcx8$kU|JY$KGp;~6#iTJ~B<K5@4r~B>p9ZxYn
zwTV^iGM5~%Kwu&!U?Z=0f@i}OH5xuqJ|pfZSP~8;Nl?&2=sSqjn=M@54FMOX8Z#DA
zWxBkSE7>>{K~mw0k0P!+txgjcftmvftA;A}V<xy8Ug)8svW8^cHre|^j!vVvfnOD|
zPbu*a>7U#>)jV6L(%fuy;n4R<oCQ*bf)?UtMyvkL7E;q_=XhziXWX`oL&*jYmUouf
zG?Shh{TbolL7<A0LlnYPMT9a_{9<hTb1xSDJ^Q=QN*z0ekNcg1N0@GMez<?_@Ggl1
zZzjUM!!HAlRR$Txdp6?<%&hzJEDs8~n7o%f0{;B@sE!m`G9|*4*w*Ma`bGga<7hA+
zAp-vrpqH*%YHZ~}x`BNmbaBPdb9Y4jk-s_nGPBQmyK6)=A?ABp%%xS2-rWB9`OEL)
zA3uJ9$DGpz>^B?uiB`L)GJ2iOV1|6xF7CfCJBw1azvsl!U{`%DZ&rs*hWF~<Ri@PR
z_VWdFc1fJfqVe;eU$&(4t|uL}4#%D9m}S+jwSYfYjpxBpsS7bG6%KMC9?AYD2GOSv
zKRhm!uMi538$tnL$>?L1aKKT_w!dGdF!<>r(T^M0*Z$4c@^n~Xf6MS)%tB8;2eR*{
z4}ZM>{`Py&;Ds+B`9RHzQWWYXy-$w~JC_ai<g?*g?MEKdQV47FP{I+W27prke`ig1
z_P2YRULGT7uJI{D{)c0(ilf1857SjKxXL$T^kb&hcMpi%rP)o;EbSec?>)FbL=?Ak
z>;0^@CPjCCz4uPPAD&!+@4bBos=*{I&Dr`ttH7vW(*1Y0G5yU3TDnwVuIW;NmM)dZ
zW#;qO_~B7$c|FxxF8RYwJN)fR-gi+6Y+0yARpG$;i1K5jsoatbucaDw!q-|pm=s#w
zEcu9JY<-`}_=dZ0!W)My&dC-1`!v@z*#a>G08Oyh`TKGya9y!RHZpi4NoBD1g>}Yz
zsj$w$TUm`LrR_*cpovUVNfb{L*+jvltC$L4%J%jyxK_h)WMvcMsK{mO^bhy(5rOmL
z@pe6hytgiHP`h!Wrl#8tDK0uDU6^-5wN2mGwFP^bQd_;O)vmpt*Z39DODexOtnb)z
zoQZK&yWg?sJlwJ8nC|HTp$~GJa&d@{U7E)=xzyLUty9Q1Wqj2|e5E4&>jy}kc$ar5
z`70IaU)?rZdrWa)r8KbA$HcGhy85FGJ*gY5K+aS_UY8~9b+&UbeE#ltAC6z+Z@+y0
z;rmw}K#W2d2nC$=dZ+t&W<R0a5J+h^&%8#upL5!N?s`z{`7XbEEqcW}Q$3?0&I9vq
zUh@oJK#`MWt`|$a{H|SUAF=Fnw+H=u-nDd*I0U(c(MAp0>Wy5U<fZmYlf2}5VV1v^
zba4f9{M&KyRn7JCVpOo#zvLE`VuZVHm+Sjt@cr<~hu^8IRHN+3x4aK}g30k3L!z8w
zNNBwouhQM*ev+)5f_iAh{PYb8%PZ^<byk+vznQY=Y5lccR|8Kh(d%#CWrKgGZA=k$
zI=REzUt8)A=zx9yyzqMKHaPxt*KvGC_2&JScP5ClXFH@($UbU4DZ1#sz5x_FZGh7j
zy?H6+<)&)A(K1KQ$2A^rKfO8`OLh&;LAH2W@{>15H+~*8LbY4>iO$eV;Ne_hI$E!_
zC!)QS`ZgQQYiVyh_+oJ|u04m`r~!ptglk>|241-W`Q=hFbjWIBs!R!RPfM<djJ{-h
z7?AOzXUk%hrURABG#!;`N0!zPSOIfej9%X^?vR?nH(OsyApxM*Ma>_j8WMCvR~3co
zkqVSyk3#l*39j+F6!RFM@NY1AElDtkAV?kDR1Q5EfFvJ21NQDv0#u9053yo9v|11R
z$zP8jNXe)vI5MCr1XT1OF0Qq;5APYq=ZBHuFUwFA7UuQdZ&SOq%{Y+<FxEc*;ndo;
zIpzr5SyMH^ZY9z7nV}D1kfesRQqCI@)-$P6L^^bSamBF2O-1Sm8bJ<bbjvR?!*DS}
zFPO!4PX+ZWT|_ATBrYqJ=g?HVnnwhGmD<8u)~E)xV1~4$?x9jJUJ#`SM$3{tdaYKD
zh*(seK7#12Nd(N*3^|f!_A;niC{D^13PB>V4`>$lOu*cV;ZT;5QJX<!dPw1uaQybz
zFwTK<@22C_3x>wAqN*dWTHWg$#%#fWpIFAVBBpqv5voRz-6Id&Ny@oRoVz~bR0`m}
z6s3cNdB!*1rE#x1Z`~1gjB1lqK?X<Gu@*Zw<dmdpU)|$FhO+um-48@^$47mUiIk6z
z?Jh$*nYJ)g5Zy@N(aq0#Lo9B$jwF?GnO3L`6=U11(D+56?#xp_Lmyy-IEn_NAhzmN
zMD++oMx~X4l^T$C({WdFcg60E&&{N_A4ETOy-E%k3R5Zj7CNODsEEyR7dY;w$5M{F
z=;Mw9E;2kalgjZ~5XA@!9CaQAiM!)P_Z~=Ck9&BNhtAb4(|Hn429Uc6BZE8U3b7gs
zwAiU2V+xfS5{K3b0uDa}ER3PQ=+gh521+D2NN*hjBKZww-e$b_8y&Kc*Hbv>nJrW{
z>K+b;ki{wi2-FB)fb&zKw<Cxe2G5Vws%;ol&{1XfMl%6dwghPu22AMRf&pmIb)m%w
zhgRg5AY2x4$fipMOFXM$mJWh1%HtHGDw@PEFS{#;BwPU+^Kr-q3=xbfLz@|cGmx7n
z$DDMPB8Hk(F1)Uu>$B=t@Frib-YunPjcGuzuFR%*_}&p17;e6orO_AZwG9Wa6mwrK
zsiTF0x;OfV%ZDr)29Ir5Vq<Z!M>WDYcntdz5C<GRCwQgl4Tnsj;HA_5o($?0P#Pq`
zGA3!wxZPyod|4rl?le0<M>a^PwKIAx;}Sdm{`3St^+58Ia({~sq3zMlXh792Zd5Mv
zXR58BgV7ykIhb`SU-tC&thB>Ak%E6Ax~<BgD0+ipsA6^rkL|J=JK>V$yfwuAOCyMv
zh7T_dDsaYOw?o)p50>0c8@Y0DHJWaha^QR?de^|O@ncVr&Q7*Pbwh85$q$F`4_|)`
zjolMW1vem)ME^~>W@>{csy(zN^RvqyrOu4p5I~A;*C-7XP{Gq(n$@vfZoT!-VsRRH
zSyr0b%Zukv>WcfD&p65_cc)_CNd`_ljx+7ont+k|-WBv2dO~;Vn$prUlw`A=N#gH9
zm*7rwI-dr^FT?zzJ;Y1-ST2N>!Hk*ycCDo8H`Geie!NyH@-4NJn%Em|Q}X_0XIXzk
zU))%K-4z&f-{1cBl}qC;g)ADQ)o!(0^5f>4jKjOl{%&9#yo{5()5E}v9C+8Q?Q`wd
zJ?&~H@o8q*-<@+(PxM@H@^G_Sng^_x`61%U{OsMGd{m+ncGQ!b(KQ_RcLVPNPU7V5
z24V31?V|!o{O-#SK!!Te<#x>=sqV-*jU|J_M)OW?=o&qExdQ5Fobi=TSTntkO6*V+
z?UZhf85KHE!t7y{8fUa&)Iw#da)l8zFx$8nDb7RMebZIkEgR@)n5!5QO>X~^G2POz
z7<&uw(V=Lv#*UpS6}{k5x-{xA(IvE_(9l>N7)fZEg6zP1Qpwyc3~o56tD2C7M@w_H
zRchR2o)ECi@mxloz_k)htK>!cu`yfhH4G;UY-ouUJ{aYqD!#uEAz_+-W)<q=i(wAW
zB%(X-AE<NpD3XtH1u`j*Ek+V;&D`}cT*rL)@>;Q+vOg1-uV($5UPCy3JO*jNs28<u
z%cX^#o>$y+$0g`~Ep=})zPBrX$bXmeZ?(5erXQlqv@fjJ4?D~ExYf}A`vkRqc-+>V
zQan>zK@(17g|^Uib!G^95Wnxf9_hakr@I!!ox^BF!h+pYPEfcsS=5a<#I<m0Faq0)
z>)!Z)!nYSkN3t|ycWo>U=c?}KDo0a8Y{XiYd{qS83w+j?>=vPtUzqhKe<JJ8fH;!%
zXYmZh*|plwl27;<^6~zE8~`Vqdh5EmZP7xbq%$x-H&V}_{9NbGZ)U|1%j(JxHwkdq
zXZ531&mjweqslq-EWA+Ga|KI1TR_%x3fKnyjJLf~(;I3785A`;94#!@fa28eL7Q@O
z3YFmUVt1F5Ar&Cv_v`JaS4KASYli@%MYkSYF&c+*noSBBOHs<ET1+irPbdKv3btx*
zSpMMY;Ye-aWrV5yUPI?!K1hQ?LwmqEgZw(=)d_(GHFA`SLJrzBnATNj!d~DBf(LIZ
zKUzfM%mclyO`~PKDpCTp&;bX>!)KUnLCe|j<NERY(@px3s*Y%h)nK(QV!#X`9Absz
z!vX$AHX$fv5iDgH@B=*b$w7fyfNifG?J*{m%K!K_1Wpdce^&CJtE+lu0t(~&X!tRR
zE7F#%gF^sjqV=G#i5Hjy<ORdkS3TO^7f8-w%a!p<M4}{M<10KKxK?5-NIx2n4wV>J
z27$|B1zau|h~-tVjj$YrZacwgk*>szupqeLhpGDUqQ*r{R)r;vZ~<@Qh*Tx;#lW=l
zMI@cC9i&lZHW1Vws<U9xIYI_Ktb#b%m2a!{K)qLT>>9$FjRvq*0O=}%(NTMc_U$TN
zmu@(P17JdqVE750nWU;={whG;D8Lht2yNTZ$pP*Im#XeeyEOjFRMZ!+a1Mi9DIGYr
zm1E4{q-Ko$QnBXg7-3{`WfmDi_E(l1GP!V>E*e6I30A=`!9u1G!S_XbU8N~B8KlvP
z07%~&Nk2%zgddjkGwDku>02Y|s~tTtUkpfV^F<_`udUIG30_P;!YxH<&ZownsuYes
zjB}Zs`xY1LWlk1fZjX15YGd)c&wo0dF3b_WuuKl*PmO3=5X9DreWVCsy2P+u<&i=u
zT(m2{j^VN4_T7i9jnja@as-PwZ2>x@2w+v>iplQ=FNo+>hWw;rK9U0EFt;?M6DHn9
zWTt%(ox*$NvR1+}kSF+5huYj2=z35C4tZ&flIz0Fsj-vVRioA$-XFk%8w(Pm;WS5p
zOo4?qPU`IryI|x2wk24?XC3D)!adtL_j&Z&$J^VE?d66|m$CPz2Lf7ei?GSiC>hJN
z3e?yr{~{X}9gBYb?U&o{?@pl!f6Xp6>wZQ(cUHrL+Rr^XP0y8l@WESNLG$=zulO(A
ziljTWb7w?v((fNVL!Rm_S^B49EvliQwD-=+#rw5qRzJya>-x_1RKUGG07%hgOm|{=
z5nO@nJL8c*Cj*4Va$~@){?oXz9Y4{Yd1|EE{r&fkhPS6=yLHBu4##V$cbRsILWybP
zp$&}iLi_@(%0hc<!NVrxwHrkuN)U}fSI~h;pcbC7Jy3VXj?*L|1seD!&*>lr<V2n5
z)}Bi|j)A+<?jox-Jt%gF6ktDu58G(d)f#4PQ+II8C3D=-M|C^8RL~Z!6e|=kYt@+2
z0#YL1l$O#+0Dmbew7K~fMPL^BR@~(u@x`J75f$hm8y@Ym{X-=Lgd|-|j-*&5#R4f7
zNikC5MKh0)8lxnCB;$ePcY;jX@*oQ(nkyd1_>nNS2N&5Pm4#{>1E{=RE1Yg(o!=;D
zNA*2or+n#+eXASycK>}q;a8L}HjP|U4s33~1Tp;mQa~Fak6!7SY$Eq=hJxD*JK$bO
zRRnwy6$8~VxB>@P;NS`zTwzDcIpiaOwmDEE2WsR%jnCaPzoW0Wzq$SL@%Gcl`#-!g
zdY(8^4pVKQ<S}M-`A1P!wgyVPAoy+0f{D^tJxWrPOct>TR$_wtnX|seOuH~JUE|;<
zQV6iZIAr65NWl_n#=DBFM~OzrCglKzl{80cfe5hT)xMN=RZ=2acrtubMKa~10@jY=
zdIX+4hF3|nWG@sEb8BPjzTiPLsbv3i!W7D@hk2Zn#ZG6aAhPN3J?lXq<18q$pumD6
z3koa<>1$v)QA%Lmk>$*|U`P-EfEIOv#*W4>Imt3)l{VRM<;uFFm!rqYgB#dhGj@^X
zaeu<6A$yE7AnQ>41XYPgrLyu&1z0T_X2RSaB0S`b52#2a>x<EQ$`J_?Gj9jno>@d>
zaixW%=woqc1qdz_u{Tv1H11dm@g6le6XlwDsZO3i@`x3DKZ+U5NF`7l(zArOiMuh3
zI5V#Dk#gL1`BgJWXVnKwX%M(+!U({{m5p}l^;5h4ej6SB|L8>o77<WH*!4DG&LneD
zPz}u}su4v6Icj;vpuO>wgHLm8_wXXippcdB?vZ(|{3Jprv{B;p?O&FmM*;8S-&Ei?
zg%+bpSPL4+sq>>mN`6@))b8*Jb&=*DHR(l^vy?G6Pzc=={WjF+hB)U2vQG^U9gzni
zv5-1GR>J8|2qhCdtTUVskr2(1%GrZEPm6SREXY}=!+sEE5D*K~3+<$N7B^*_`b&)*
zQGSAuYASWOjqF`6m%>q!2ZuNj6Rd!CmG_l=az~9DgIknAAR;sjj6avXW!Am2V<_9N
zLSC|gc$D8}8ox>pBQ2dL_sZzE4yQ`&R($EH#E#Q-z^U4%4YvjCFP3>!4T3ug<akE!
zK~U&q&6^Q7uX0H~CbEMD3hIPO#LQXx-#Yhc<6x(aonY<h!WL>o3xy`{BXUf0<H7IO
zZODwWQ4q*5g7eZy1}P+Ra3U81W(dbVH%29SCk5}Mj@D*8CjW<>%YL3wadnW4%;+_8
z_#lZsNQ5-SN>*I`h230yti?Ijwh>+U!8Gi4=1`6tt#~FJOn5XRQq|~mN3#AGKe&*U
zrcXlRz7rDnQz3E3b*9@1i6ak^KRKVdG5B!GadLYjZcI8SXRK(0ON45qwGdRwCD)r$
zFIooO5vfG3$dUGaOvgNs!Np*;X{Bzvr?Jo$oW=lGp4|kXQ^r#$^&wMx*vs5$iSj>8
z)NZ7kv#rf8YLwoes*#>5j?UCOMSSUqb{hX_N*5JUuccpBNM-GwNOoEXNctejX5M(*
zXWLkV<c9HO+|VEUaKqJ#JGY)}J9T2{V}%`S1qVffUvAalOfvYzQzKpWSLR;vhx=DU
z!j2nP+}e0@GC>~`yEEoZ8^`2N{O0D{ah$iU-5qUDtZd;x!!ta4l11BhRoInw`LsOh
z*~2m!No?~4{|?%}`?>r({2>y$@%+Kt`uT%*tLF~h)?c4h=-_KwjQ>N6;3)ayDSQ6A
zw9$#yxb#PhqJ{>c7A~WjlCLS5g0+g}p=<}-W;1S6k*3R%sEd_wO2V2sf8^noicKJD
z-6xno3`|^4(2VnZnQ@kIMHLQn<)>UwRaFaKd$;RsTnH2@R#B3}iBz6S%pxVs1U7Tf
z?o5Clb)8Q$u5{ER%VefEu3*R|Fqgnw0&@w>B`}x3Tq1G_%q23Hz+AY)daPSFZn_dd
zmlL+FT>lLGZ8D2lNa+!B2Jm7kPH{~sXK&cGSE4cUg}@ggUkH5RC<5YJ=2M>J@va8G
z8~E;{1gCRxR98B9t~O3CLJ^7exNBM5Hy+#0+Ogj6$@5IXz)T`D2|FT(T|bZ&%uM17
z>O?76p95<~`uP3;Q(z_8tb`pI0-GDzT<9GdG#XXn3lj3(z<1-049B>q6<!W_S;LN;
z{8~QT9x<nmx<7WiX|r|CD+FtC<br`{;_Tx0&rLAAz0EP*FyZ_2{<Ksbd43o~+yq74
zbg?vW{iPig=xG>U`KIChV|UyywEi(v>`tG3N2UD8ZxS&1uwL-EOHjVi+(jjwz{fr~
zW^t}OAa!Pe4<bOP24^XH^pGo3hCDEM49gsqS_{v$+4s0i!MtufA6k@0wYFd$!m;Pj
zD;ku|cy7~0=>>B%*N}vc3S-=-pgoydjV<E!u4rBK)_FIb!X@Tp?4*H(8vUuZx*l=x
zOVrlj)X6VwoftQ%SJ*c?OQKku9|8{8NMO*{M^;PYJF1=ovZIczLQdlB#T8p=5f3Tr
zY{f%|e3|juh$OehQn8Qq@I_tyo<Bc6XH&y2vyeO^E{l)!AXM-xqPP~<;I6-c^#ABO
zmR%joR!3}vji7|+SgH(FouP4FWSp7RkPfX-{sFTL#{dloJVqeUO;K@0m;=KjAMesI
zx`BmC;;{9L-({$WL3R)ZPRj2yxuQL6*TjE|G!6ujH7+SHiZ(2bUto7oU7}%8$A2I!
za?32#b9&Yv#Aw1?)mIr6);IIgiE2DUTYB;Esds;K`|0@S*Gfm6nc5(Zf7fN0qeYeA
z7cUlMR|^aegiKrwYZZgR{XD~C#3@@biNhF#>=wo-_W34Qz7zE$hZ?4#ky>1aASY(I
zvdCHd!SSkAfwWBtwP@#%sk{l1;R<^O&<Y_GZ@Y(nC*(|oV9s9TQD;3!C-YFX!FS+j
z*l94Nb{eI>IGSFSN(G;WHO-8m$P{meeQr-Z^XcPvult4KF9D1XQC-@gWmw9=FSB3F
zp>8q#pkHcQg?+;CAk`L(M59L-;?eV@Y7?uvGv=&=^RC+OU%F>MasLi$cneQj!b=xs
z#%vF{v1)^t;@zWdU@5`mdbT~@l4yBn9!GPi0r_!}#dtm(kB5dzeqIIB>t8b?&EC7{
zTFpJ^Cw?uLk5N6HKSt%EZ#+l+LNirku(lj1(Fs|=ErlqbGOc6ezQ2azsCUjeWU%5n
z5*~6=Ohcx}sXrQUt&VuIl!F@O$PEob9TvlDyaE>wC{Niiffk6-#r19|kvIN<KZFRG
z=rkLH_z=NyD~(r{82Unlv=R^;`P`rJ+CiTKiyH$%<_JMEu8s-GGPaI7eq7J5aQSJ4
z3u3y+>d=A+=te1+i$}6Y8Y(R!_~Uc_ZD}~kt$3HYa1=!Z0i(xbwXx+Gt^olO^}t7n
zF=a?d2Eku97xDLl(#adxVE7K;n}Q!TWi&wq9S*?*CMO1~sBoBoY!w23hR0do@UqVP
zHubGN=8=X9(P!Zz)P|=tsyzLPc`gHm7A(egoX<G7dxT(O_lz=qV0t7Dc!7zw+!(=g
zlnaiV8r0b!U|0zXM7}V1)xzLVsFd02b%(rr-|1g|IIC?-7!gSWJA5@@T&&^;0bY2t
z6P;ldNEsNy6PAp?a4HM<`khvfczA>s^!DdSy~&@f%qDu6agtzIt|Wuei1b0wy20oe
z0lVV^f-uIBUDlmR$vBzYZWw3_)Ok|Ec7qqNS9(XT0(@r<$NFk3*yf~0_XLX;507z|
zn(4a7nYN(4Mq4w4sB&I(hP=<G0Du%a*TK$2)~EyLwF;XTSU*~CoV00p=p1)R^ecw@
zgzp~=(Jsoe=|SdTI=FKhfL7X<fFn`m-i(5?bw^>_cO&~JY<+{s#coXO2u3b;B*%$)
zcu*2ESkk4SJCH3eNAItFuQBdD7t-1XILio+`wsT_?B>YCbA*5Xe*F-Sw_m>e`PAav
zjvqGO?s<L~q}Rr~NJGpjKI=$!zvrlN6j?~;b1Av=ZUJTPU-Ia}Nj9Q|pQ%r?7DZAt
z@!8fQ4V&C^Q>X))n-f;HVc#Y==g$}!MseYZesH}IN8hg)Ebh>m))2@YZ1hZ%$%JXN
zbmZ85cCS$rhE#>@vJ(xN$i%o;0A7MEQ;Vf?u;i$ULNnH{ftDCsx)2Z84wf~jBbW<n
zk{;qXt3RxE9!Qz{9BM};+~X9-dA_4;S~y#@$|56*jKY^GORoMx!TYGIbij_`hq_|>
zVEf1~qr}z#4X-3a&=jT)dvLVd3eyQN1Dj)CVk+WUH>Y3&ZG_IIOQNN+`;T}#aS126
zN<?m~7`{?A34N;_?JAhckuNv$N9xu|24~5klBG}xy+%W0Y<NyBaRUI6FEM;&4iRx=
zXyar-aUUR_1hH~t0~dZr67WONutI|Z6t(y{KH@P6TKID0%X~5xWr<M}ONcCCo=A;V
z3#b|^8;m{HsO!&-mMWVQ&>WI-YqGZr<Ryd5NSojQ?Th+8XHn1+r1VWuPLU1Cg5t47
z+NfAVMeWgJN6DbOFT5Dsjs1$z0lz1erF8!cgNP&H_*Q~D349|Q$9}g5JkIPFA15^;
z!K%#>r8QFitNfhFZ=5sK_t5e_1MJ$xorqx10?9P=S8t@{1%MdpLPvtu%b;*}E?T24
zg$UJQqR~-E^$ao~dQ|k7flyG~DKtIrs56%^l>~lFbj}mzF34Llxz7UXH#+eil+_Oj
z)+lDv%EMgg)SK9#?tCd2z}y{cROKMN?U1=M@FYv;2c+OIbar;GE{WVIYBbl<_hQP^
zBrmf`xf)oe6oX*GC>BuZ*eY(TqUdHIA||=<(E6fw*P%0XD5;Wo9jLTg$>S!>HJR%*
zdo&Mt_?-K&S?9uoGM4kfo`lN!Yr9e%g^P?RB>~_(J|nWqhRFI$X?c6V?D>#C@3(Z@
z9~B5|`WArJmq)3W2PoPdxOBoRg?g}DM9!9cT5bPv21oY%QSN?M{^{CxdQ{7UpY@uB
zN2Vi&IHyeF+tWU6aGhNGp*76LNtSx6WHd3{cAmp059L0`u%^ji-H;WE9k|gVvRX6t
zDK$g?xnTk%z&~e}S)pA=-~RR#d%KuyTV}=Vkg-Qp16P4z@OUi%hjSLJM8CIt;&Fc(
z(*DgEpYI1xp#}eW50UxWWAB#AGp3E>PcMV__D>k!3JY4cEDH0N**b6~U6m*cx0+-J
zddO{h@gP$o#;6ra#187B9<1QzNdp3pF?~pZiC1P9JX1d2rD1gDxoR`cn!Fsh>}-Um
zN?=?t^_-f&+<*S`s89d->)k2BRimeSN46XFtXK52)>6<orafV+6wE8on4o&%Ckq7m
zN`%~5;9THf+qiw`>X8j<SN!;{um|O9JR4te9UF<WiKd1ShtdO`Ot?jJdZok8-G}c)
zPBqw9?zPg=j?0)1Ab4D6ysbKjqwrAbS;hGK7kNF9a|G#w?@4)n<@QlK_%LoDC`-Q4
zl2=6|5FAkk{!}JX4VB**1KROf&HH=APn?p7_VYXRkzCch8bYbmILEc8(|x|uiN%_6
zS824!IZ2Aa_zJ}<X++yv@>b1bQhe{%<M3Tq#+yd=gg3^mrSMAg*tvFvzeQ%+*#Qt^
zgJMVzj{1L-?&5h|age8&1txfS<9I$M=6FJG%#(MYKb=~XrZL4Ob0b=@+oRr;Z_T;K
zq`4S=(C8!c+vwc5M6!Cw-?l)u4M?YbC7_cHbU~)WGBB)3ReGM_WX^DnNEMNuK3{ll
zknU#*iHhMkRxW{XDS?_)vJykai3okv$6_nBV(f~b`z4`T+(8z;hs#lmZ$_<JgaoTF
zX4U5DID%*x-hR5$JU4_S+c`#DZ)0P`WmHR+&Wc9sJB=5>p@Ayi(13=%=QghfzifIj
z&I(Jmh>(0t&lS{yhl&4q-00{66!u=Jq{eV25KO&G6?SD%dp|2P|55e|Vw3<f43J^_
z+t(X~8fmdoPY4ge(P8)uxs`;L_&ZYFuebMiuie2@KA^QPN^L%SQ_mkAmXzLUP;)<W
zVmM$>&fY&No+S4)=Q^8ggvU5(l82YEy`Vdnik(JhIh`(ry`T{|#F&X9adt<*0ychG
zd_W(p70!GGZh!zeK&o1RjTq$o12NS7;`sXcKQ>Vp$)QtF0Uq$^5vU)mU{YP|DtCTB
ziVM!A$Vd;_r#iAVEi{xyK88D^v9)xZzpWSmcO9a<1td~Mb`<X|+@%9H%-n_)y~F{F
zKV9-}n4A|wq|skl9og8-ju1VuJDLKZz2(tmtnf{CA%1&jeKhDWk!Z;|yW^=;K!o00
zQ(4HYs0zNb(NwgSTPl;x4;bDDo%3ARI+#Ln8T(X3I}#8^`&hA34c|5Q0{E+8#t~3y
z{ix7iz_|+j4~-g$eqAG9snIjIl|nx`e({1LONd_Fnp5;Doz_KaWWCo~f;a0uFD>|G
zrUWxh+&wl_XNT+c4x<n`>PWbr_AMvP)Bf%4yBGcY-uo@_-`2Ia`<vdYukU(??r*X$
zU6YM7a%xLPcVRpJe&6t1*xOe!cy)b@ifOH~ogion4EzQ3{2T@=&gbPlCaN45ZfVSj
zEkp$$hT8-Bup3K4hliHl3qDN-GXZr^<rX~f`4U76ELFU(!7{$pEI8l$#hW|_#=NXq
zJoWosRzYzP7|5O{b%y?=ARjV@8<;fjh57>wcO9Q|#k(ef;jExTkmR=O^@q>vqx02M
z7;L?z?j2UioI^?Aq}L+{P;d6)TD!yyBo&^=3_}*LEOqqA5Tmkai{O_lK76f|<f*QZ
z9AiSlF(;$GM84o<wxurJd;?qh$^{^GD)Fg!`X2n^=_&iK<byOB>-3giTrw?7D)e%u
zRS3!^u1IK2xFLiFU|IQ!zjL;T@Un<~mGo?tUN+%%lSg1UQ<FaC^nrb4TLgOj1=j3T
zq|1uDlC>~@8D<a^RsqmO|I~%L`)&u7=z_0s1#4h2p<yc(t%#MU^@vvl+}viA$qk4&
zt7=q|iWX#4*r+-1@{Hf<Gm1-AGT!Yy3fW=UCTZB^u<nZl)IAZEyCZg@ToDcXN<Lzh
z%hGy_LogzakYXAg&n2Uw&QRKUcWSMJRHn$snnA%|Ta<}3*{pI_EsDX3#y5`6QfQoC
zD$X1Y^Y3Vldix4n<IG8^4X)F@(Uv@S{z8UUkQ?<@3c8Dk_gsGHmzxHB=$hw@)_uVR
zBL=C3((%-KboaE+HGP~G4OCNd(@l;Uy4iG}uG}n3>XhOM*I42;SY<Z&0*y7Oqfy7m
zF)0g=p2<LjF04x%AcA4_kr92Jq<?`z1DD4T4Hd53xkkz@&3{?!(4%u<6)cbpqewEE
zg`|r}L0(NH?DJapg~OVP<(dmUDqE0S*w=TPvc7(f4<CR1;q&QUwYTF2o(Km#d-SU`
z!Gh?MDbc6QP=KVv;(VX($^P@?WgdMMXT6kfN7z2q$JkxWX@4h<o3=|5MjUth6yY)E
z4r?^^zm?Sk?)<I161JoNyqvzJc~L5?+^(~p=>+YkBqw%Mw=*3f<6KV=DOsP>OOWXC
zS1@SMD(-Xz=!oJg?EpR9W-RLl=03bW{`R+jj^EvW`u!=V%6^@R{ZJDT^Dyldiq@ji
z31r0*-VhkX3XZ2ZruDlz;%edc8}h0~(2N`@vvL`fkd>nu7YD;?o7R)yOn?t(LOfjK
zso1h<Q$^;f48Xj~2H}_6EulzF=nY)%<d_{+m#7d9NKOwIC>s(M{6j9ZJI&5IqHa1h
z=<8MFz0&=B(Hum&;&Ml?0)<BzlnQV&-<h=~-&|maR67d;WSw50tiR!%o|eY-F?LjO
zGRBN1R}sN=sp%Z^MJ=6?onjOd80v4DdGD+l_W6d*jn$|Gwg62MHw}x?gC}!cGUS2<
zK_|(h!B>g@zmLQ~KuGfGLM|E^D0NZfqU?|?5x)(iuTK8@$926w9mL%>F$%zg(jxx3
zbagq2*@TdyEaOygaepefm=F#~d`5<0+joa#XSL7nU#gt(ErGlnA56ohr0|bwT*w~6
zgYI0~s>q1!J+D&XSgkHn&I~9y9%zjEBTr>f5iS`WyL4uIP;!V>>yp8p9JoJ@5!raa
zydv_7%!}(-w4ey7B-YV|$ZS=zGZ-Gh0>vMP;v!5C{mZ05Xbohpu@%hIv!Bz^U;c6%
z@7IsV53j|Von479u`N<)Q7zPmRT}RD^j9hU&g3)c$|*xY8Er@D%|&#E(L+0Z^0I^q
z_ST{FzLq*wo?Aa6RJ646^L8kqPB1GLGp=kTN+7G7)0iJ|8o|f6YCe8dk5O)2^*|fs
z0jpM?za)6LY0y$QRo2{K>R()sLUC4i7-G#tHyBEU<v}=o9k$4HE-ZDwKuospDWoRH
zX_TVhmR1s3R^ODE9k@PPX~fUJiI2Vv@9#c-|H@rMb4P~il&^In@zUYP1oAlxM|_i^
zkyKwSjxyYQhOihZc#0bvms}2tLXL9aYqRVZekHdo;40Y`?suUK<qESn1KmiXK6{EC
z10qjj?WzvSpm=!5n0kdO+^!<;0X5$lWjckhDrZ`pLq{M~=0V|vd6e1RuwXhzwhBd^
z)c?xfwJf)>8_{3E2M|-}M&q@-#f=uqDpgu!r_f5|gx5|?N2%oNqjMTVQ530M-#E`o
zS>|A7FnBcH{W$$Y7V<p&a^j^|n?cqO|H7kA4Vf1tkcxePqXJYr#RkDHanw8idU63R
za$pKR6Ze1I7ULi#u-w@^o0_`cpy`Gb1|o8+6|GExJ<jY&Ecj*Z@mA>=_mR>+vNS81
zT9kVvB03aO0x(^-is4+DfrwIlg}@p-%_W{iGR^U$JKtV90yoTZOVwQMQR$)!TbE7|
zo`FMkn;l1ib3+9gwjMDz+LaXY?`P=|!iJ<ELJDJPNHw>x=6EaKpC8d%I@*rbNYcbT
zZx5wpS*Im5r}VX&_DE8crA^?2WT;#ZZUjwd&Q4u=g@jOULWrKZ8$FO?U5;M!*U<?X
z!Iv)|pYHePL$ln^p=rUaU-#&l_44qlsb2vS&w9~$3XHjF*`8pAwC^32?&%(DL~6k=
zYgZ|pLo*#ebSee)C6}FRj}U#f7)(?MGtdd($Kg`xbG*^K%%TcnnxlX?6$xr!gdS^|
z(p-tkkzEY7c!DVazg=l)T^I*0H1MUReH_H{Afg5k4T)R2C?sZhKG`t?`~iF|KBmAM
zyT!tn$g081Qo)|?WWMt>k5F^8UfWw^$En0dLeEkR$!_>91FECl6`ykCa)GWI9n6B@
z{a{kv76o}K1=%c*AxmULt^qSt0s!<q8HY)*6oOaN!Gx>ck(WIET?B&Gob;^^56>uF
zU;p&w;Z5)Qb^2HLuAZ>oW)m#`m1z7(KnT;qiYgA>49i|Jy_zi2@7+?7zux`Wk(j>j
zbtHBRSkSTmHRExlg@Sab6KJ8jJHt+hBK%@(n$KjM4~8>9V$B$(=)mlS^iR=T&$8ir
zEu49aLqk$6f=n3$S5#wXy|C@?dx$QJ&=?g{cVB3=l*korV+6mfYbWt51PF*#QCuB9
z0aIoo6H!A3N;g5+7r;ptqOFWh@qXsGQ!H#vIW*u&g&f>u!7npEOr4;~?I3TMBZL_m
zYT|smf&A!ptT4aS_l+B*4jhWP_Wb2s5;F}#h%ZcZ!`r3{p**(GqhvP^Y1%zt6y2Ev
z;qZtDVH*tw@Da^q_PJm{^j#JgEEYn@#5%px>Xag)ELZH^#q7J;y9@dI+7v*K^vXdi
zy^cY`ISh=*8IU`1py$3AjR4qd!hE^+@7oR&3IPro$PPYd>IDANZ_gOx^5FV}nl@x_
zJpXPI{>5sWgv~>>U;Su(BibDZe<Ky|`A-_X5}ZC{_$KR<d;VWi+xX@9K5Yz(DR(l}
z?s#)CYA(9bQtwoOfP0pU+vUG5P_7**{0ckfcdFx*IGlI2+D=@g-e}Y7?kpbTdl=qk
zKhOQBnBn7Vuk&?)w`BPE+kJ|%tAiF-x_T<*`*n4*ply05T%Aa}tHn6<Y3Ri_#eEj8
z9t&;tS2+09#dr87@dcl){uT$ny7Z>hqjT#Quh&llpImxT>XB^M<j22x_*bG<{usH#
z)$c~yn|~{1|M2<4?*8ybXVwifv_dKZS$bbe&07W7G9ay>Ow+&{a9MS6-CA5}k<$x@
zVn<{M2edh$L3ilKww0#9HV%gMA{&ofFaqkMdzh#ge&&)=v1*7Z5@|STdEii~WjqMV
z$S3Z6XxQM9r3vxzr44S%aGQ1M@@(%zb|_T3QL$nybR8L&oLq`u++L=+^WJV)mdgOF
zTq=frM^jpQ=22ot{2IVcP>Xb1C0lJcV}aCy)TsMMJO9)eR!!a|yZXkmf`E%iB_|dj
zYABpWKui^Y;UZ{BpacT@A#k55?1XBx(sNSbI#hWGvP^MlHhTZ68Onkt0h=T&={Bfb
zQ^8!a0f!Sq0y5T0&{E4p+kjsx@Nfu2R*0RAzEGk7UOQq_kqBK;uq{WEryj|O133+9
z<YOxaa*xo^NEy~Uh@nytbUGML8Lljm6(^F$3=5lZbi(<S9AIfJp-qucL*1?92#PlX
zc@W<ysnFU&v*W#Wr$mX95;)_Is5Dvtv=7c3An1r7XmN<tw52`N+;$->6r)d|d~6Lh
z6r8M-?OLq`+74wf6NQ3Z%>O8~2--?(!$HQ_Z8Mk|nVkEsWDE#dWTw>dFis%Ag+v-7
zE@Bnc%=i^@OsrS-jUJ63lY<L`i$qN6QVo0BB)pT}xY5prGmgUNox*<^5i+EiV~Mx2
zlzHFB*k(;=M{M<)HCi-?!jj*^FZ^DvZ;McErB1h4wKz+lHsGvNy)xy7BX}KzW$zU6
zt08&KacP<7_(~n4l*xn~PO1P>ZNXAfZPfp3+T8Dv80yBbs`2XWRzgPhGTSVqqiTG{
z=%^>ILd^L&2i_ob{ENp&@p$vvZO7;R{%rEBUH+8|(&}IcopL?8y+u&=;~`(hGtq^;
z_WJdh^`hf2KyT9lc>30y#O&L0QnjCz(^IV9nA7CupcNxD7|$9~j{x6UuQkATYvI3A
zxFX|f<+5I`oM^vXyQ~)pcr)!pM*Y^DRPA4sQ~kD#9*@KE^EqJJ+#VKL9NR*+R<XR~
zQlW|Ocv~JK&o&R71{La?^Y4)cayy}RtWeam2p4G&Sr3=|{69w6xaFm~Ih~7Vmc~HV
zHv+pz?R3P2Fx6QrOW7(kI$bwiu@g!&K>4QGqR1JX@7U4p9-~ZONXPlD;aW+`LD^0t
zjxNg{Y<j}aE>dh7X4ON}sS!*w_Fz6&5~X3Q_&zt|uF{e@Lx4hDB*ZjAn}3g(oIL%|
zH2OPcL8=j(lDiBeqcye!PyzRxRi|aaYwtOS*Y0y(yWI&hxC-&54C>X6Z8iz!25<uv
z>P|=)ZS~>?or917c^5T;gc?Nx(Ol#ai=*udtAWatrQuZ&z)5KOF8+;tF8Uk~Uq65O
z@q9XJg-Dng0<sKeoDDt`8fa(B*eNvv^6WcgjxzKZVM)&8h0wILAV3u~+jI1=;1olf
zBevFn7z{m@0UKD&0Ffah*6}%vAhw9tJY<U!41;=KOgz?or+f^ytr1Kz1+R>+VD(=s
z0wUBN#@4HbL1SkRkU9L%99Yti151fZ!NAWOSW08!MvxE`p2knxtW1+gPE|>uoQ%nb
zTm#Z&($<%}gBYK!<fVmnb&Y5nqCs;D+jyo5mS^a((o200bDiO+G*>m%gCHff*<hK5
zwA1>$JxZlimL;MD+886KqEoZ!8OX^OD%(fA7JJNTXT~Ki<~qrPNl<*+#F-$rjO$qP
zoRj}>?gd=NIw|Msv$Anou9auMF<z!-c|A9`#u>z3&(5iFdRETQoZ3?JgWC*S4;OL0
z*_mj1>R8pO1l&9Op24+CElJ&-+iAy=<~<9vH1;iaF7;_!*uCsHaqFv@TRMA~o_4XT
ze(dJ#tpSfPe{1uaozCE`zD(iybPk^g`0hVxFkRzJZk)=+=W<;qb3M-Ho+t_aW<GEA
zWkR=;8J*<g*`^i>Y7;sBX(B?vgT|Npk6+Jtqxm7Zt#u7)-BR)7H3RSwBK7i)N_)S&
zXSRNA&pfEY_2MafbrVh>;WK=c@}5jTjCXwD@TQvUf;JVbUc!c=iKQ`gL!hJWNR)e`
zE4Q+E0P4I?5s}ch#fO{3(x#O>Lyv_x8-b2?=nmP}*nZGPJb=Ob*q<Zjw!-o#;&u-q
zl_%sf*Oxzi`VbEvfBOk~+j=5cl49!uL$5LhU5)9_m;D?ABDWkT11T*XolpB6RJgkB
zW<>C#7%@yv7P^wB64wO$?=g0JBKH8yF7~8a9ZQ9kPo3bKZ5;0u{EP0Er@e6jDyguF
zgodQLG?+%1k5w`v^xny~S)F0w)ZEKnA+{#SLy^3*MRUed;ZD%npg~B2or?&~DiWDG
z89W}Bkh0+m$43yNI|_pkMJk^H024wehJ@Jt0uK9)rmJM-xbt@_5&iE``;#aL{&T(^
z^-A;H<!V=&XZDvrKYV%CL;1}cezhFWxdi}OK&HR@<C=q!UqgTBl_5>j+@8=SG9jd)
z?TFt3=Ji$-*7mLkrQyiNUM#rPMCLYi0kRMlY&0k`)SX~O#3D|`ZFE|2hHizLQ6udp
zC`bttzN>Tj%UG-MFyTQ53#8&ISUIEPUgXe>HfMbi{Lau2tkArv5&8@W(#^a?=z0<C
zf@oApm^e+=po7v}|4$bqFA^LlvU&DW93Vq>jjw}dL?o7rQLPZLX;50NcBd1p8}PLx
zq5ttf%;zt-{kW<<DSHH7@#zaRdDb1D9?|r1RX;<0x&O=A<Xn4RMH8ZZ)sr~#M|?8;
zr4I4uh?mYCW}NxZ0VADCDpCiH!Hxb~Dt#M_AQbFkD}b)7y6+T>CW>Ve2j}RBRmOAy
zw1R7D=gaAx!e2&@Shy-7;vVyfSuk#-2GKyWiv!Kb24=FVw5n6C0d&KlhP<HV=4R?{
z_rsKVtQxd$#m!J6)A9smj^s-yN{`88M8Ocfl}tQV1Gfms4T`F#XcSEiLBP_1;b6)C
z9w}C}C3R;yv_|h2T-%jhPy4OZN+e*S<L=p?u;er<^%X8<E?z;CKl=lVkN2NG9Ns9J
zbr-=lFejjF;nKFFu+65dtzTx>9L|sY4Qyq~$c|n)vQ3?oI!L{-Z;jA~igw$fFH9HA
zpc|rhq1h${3q#yP0tn3Ap(`6kQ$p>j#6`(rtje3_GJe4>c{=;s;s!H%;-um7j3tW)
zEd#Wq10H1`M<N&(tZ1k{)-3qtMfI(tOw-wM;tp>qCpzXzS52-Quw<iFR|M+sUK)F=
zVKUxo9jr065O8n^mh#dW%0-Yx6zx;mc;>F`$7~hl6fB?6R>7e>FRtsX*(KX<O+xka
z>|Tcy8(qz}d2l}{MvygZRnf~ah88tYFk%FZ=|!ao6=(`=L^|mnNq28EHXprAvda~3
zxxkk5h7Pl#`!eki)jLDTYk<81ve%#1$9lR*mcv<>CHVs8?ZN4mn&%0NHVcJ)m(4~A
zY!o;`t0)h(%+O|RJr7~1cb5pO0FZ}yPVGVA80`cgEv{C=!v!>%eAaz9?7n>b!`F|W
zKb@nR{91fpMvo}D=)SSb@OSru8qCmy4t5R7y<hzI9Tmz970OcGOSJ7HI&k%0f*WNC
zN`xgul2$>lbuqYnHoB3zWfNtkGAM%F#A~^tQ=0XPR#H!o!~xu|?#dcT&fj;Dlk-nT
zPWH-=1~8M8)Za&2J|XS9jc|KxILE-Cjwsa!?1iyaPdQul$Pt1H{IoB5=^#Wz`TBML
z#_-a5as3i^<f&<A3y<oM`azxGi6<!Ze?EvkbZC!M`{zZT3Kkr7FX|Oq>P4@MccSw<
zz#6BJrtcLuhnxYmC+iozl03p43m>ohnvSc!Y@L)3k6WiJl%*l_Tk1l4=U-DSw4wF%
z^N5#=I=FpD>U<3bT;Lh8QnBFtvGq3%TIzG;H&3mfH#2k_o+H0~3=9W;9(!a?u_JH9
zzwpAk&w?L6eLX*C=x<grj10YN7^Ro>#@jmJ2A&5z+0iJ8s^BLv7`z!3UTX7X0Ei)2
zjq5^9*BCKRB3JY(tz*f*s!x=zY77m0ds$T<O?`=P#r?B$mT&-P8d~a;dpA`zJY9_y
zt-n)X8rw8I^&@xcP%C)%tYLjNoo>xz#_Zs$`=L|6Twy&;eBM2LcvfRQyzy<{Xceb!
z>!VFC!cB^;c0k|aYrg1D2GF6!SP_uv8$fq*y=uJ#NOU*cs*CKEXx3#>KaR>Yeq)IJ
z3h>Y{dBlAl1YWE+MJ{D~cwKo*V;Q%(tD6vQbE_DE#O$iP=B44yZKmxBoWJ8F#G?&0
zoGmJWmIdPxiQ{@B`DK7|jyRp)=S)D)9?A~*!bCe^oE=`X?9VvnGamoeIr#JM9(G^j
zhmY{J{No#)XH(9--KeaOT(4>bYQL)Ur~Rr{U%9HbM`mHZ_WCC4mQT18tfBYIF<=k1
z2V<i;th;R$5*O_46D~@y8k(O@14$m|rpbB{%=8e(-c`H7oQP7o@v`;wy(#m)KI5PM
z`q%wK{KLnG-NU)vt0+aUh3J?{Wvg0bNA`;hFxAJ@2p*aG)uqong8x|>XzWGJg0U*c
z>wz96K%bu0V8kJ<`E1#tCE`zwyRv!H3mnXE{V2PrRG#g+>-7jU_eV%Ocj;r8`s<Qw
zC0lXGdRHpdN2bn_qlF34b+xtit_$2cIlzF!E;Uq{kaDf`m(UYV=bGC=8oVeLq)L1S
z-ukRx(FDYrfSCkL7bP`>I?%XRH?8O?1C#J9V1-Pht#?2)Y8<8loP}Bc^$r+6(t<Pm
zUHe?|7?O>?-Z}M<L|S^vIJ8kUjY>~+%cGe$91Eag!;+vVt^{SX9B(1{b%_Ib6q$Gg
zMMJO9z?*m50w`EfLbj063NGvLV6nw4@0gDaAXFehYO4)(2MOKp*i--bW%v2R8&7gd
zIh5OF`#`#(@!Yymul7{A{$QaLGJ^1WjjIKZ{aErC8O=X|5uNqKc-lJ?otrZ4$5f%O
zLW6$Dp?rYSj~<nti8;VTG5!ZsAMjz!E5;|j@Q8fK{lM8nR{T#7hYN>F(N3;TQmV_P
zt*9<aCoU~5C1r{*6McXUG4MW<5-urM_frh!K^kara^@inqvXFg+gn~FcTZyMB$3?=
zWia*@$r>h)9J_{$705ahvO#<6F65cfz{6}1da<<iE~lmO@KkZ0t~B->!|xmyD~q22
zOHt}}inH7@{j86XscBgabA@R}0=;4i(m|l}($+h2^DPyaJ6?D6*oXsj>fiB|AI2wO
zhBWk5Q`+6ZCdC2StCi!eKvJfTd|H4~QWu~8>oV9d$Htm#5|D_?*nx#9g9>e!gNVAE
zT3PSrB?U$+^Q}J)r*RH`6Hg;ZoR`xy<LN6d18XO{s@l$RR+4WRTpln+bJt;Z^c{xl
zFR=|$ymdLiw!0Iup8aY^HTQ!W-U;9N*I<@|{a*?M0I?YLTvP0WEu+vPbw>lm24=`s
zuyB-&{;O1|%q6=cU^+FHiH_94KCO_Ql2Ke-!H}pU1T3b9;?xnjRtk;O(cQ5tLV;Yi
zCzLm}(ddCat#`CnRN9VA)T7K1G4C>p-F<s89H%u;zJ@bAO9p5Y-fbQ9rw0Y*8?IR7
z3ISj|JnEBOlM<DBRfZ=}WyLZC>sbwOA_Q^`>b=f8NvJ*OT{>KP(%lW=eAH>41!0Fa
z$hq%aA-53v2{fp=AjH*`uWUZWBmNz%Mn1w#w7N?(jd=Xr|9tBE_~FCHue-<dqet<%
zued0=Vux(RFjuk?DZEnbh#ABxxYa~-Np*FL0&SA@dVpw2-6sZtI`+eebgzr<+&#%M
zTp_0tr@hb}kWm9`M|PwUaa1ACqBO126fzWS)~ykWmI(7{87IN#9eD2UyT%Nn|7oJs
zJ=BJqBiSN&+Wf)smA^;`yC#B%{Hr)MVCI8(eD%CC=E`l`Z55EDx}TMbDk9LMDi0Pg
zuN4%%!xW6mbhM1v;%3DN6e<M~`(F2KN>)E~BuyOWP$tlV?YcW86MQVh-Ob#Yu8He1
zZfiCwVZ!4%G1a=m+N<L`mN{L0{`wI255IW>@hOR@mF8z_cnyAvN1yPoh5wKJq6qD-
z)GJcDzKcXuBzicZs2Gr%Ag8;m+Hegp7p(AW1}fTd5*YP6mVArSPTYc&T?#t%dlvhp
zS-yPy?c;@Zd05*8XRdtB;jU=ET%w+w83}5<Qt&|au1HU<UlyMB9ovyj7eN^Y01wsE
zyNz;1SNK1*)SN=U+<$tb7u_a9j{X_!PRqicQ={X7p8kN#W-d2RVFtLFMbE+d><`EM
zd(5yyhsI0yHGpY`V{%VXkQEsnE>Z7@KqVS~QhBM#^;ywZXXG$uVr%@rQlx@K+i*77
z;qjt0EJ3I%j82rHgDz0!6Fv!evKLvzktK-#j@>GxL(O3lo8d`ARG|k0dNWDxOCtxP
z{+7WXA+75d5v;H@qGvs3h&`M}=ZmNVv@F^AISLL^gM<euh|myy!A_DNEV(m2ubk0c
z#cgTA^kYUPh>F5;c<~~Ow{zoY!Q-Vj%-CL&$eK7zJt~ZBWpIN-c$S7Q>R1x@!sI3>
zg{(?Q)&!|Y10G;qS}TFS6NC!|<+ew6kzcwqBa{>ycLq=!BHI(a!mz!cVgF45G5m!;
zdi5*r$re&NBo~;jlX|#aGuT~X2%v22fy*HM42>v}Qc-#~rp<YPG@T=71lZQ_XzszS
zw1Il$)bNN~vVt@i6gT0^3%w4Kw<3k{c$s(49ki#V)69R=9Xl-u<NbcsF0M!2;zxx)
z&1ux|<^GwMhCTV2r{DJL;X<OmD2vn|1w{bHJ0}P7SQ`QwamNL_m4)XOi(-lwiQxSm
zy9DBvaVdVm{UvE`br6yR>Urv747$^$2Ag`QwguDU8g4{1##xbc?c9pf%e9B3xaL7}
zmv(%l01BZyB`ZqbaQ->7rh;%Kpz&5}LBU2Qs1qLZL}DG+1Nf*eo1ta^_qMwp%_mZG
z)U@J=&5)7u8EpB1w2AF~UM??shu72U`|hXcsR40jt0Z!O9Igus2B{W7safYjyesoo
z1ASNtWh3D67OfTr(W$A;G*^DeWHHpj2#wEYn={1a_}GIe4SUm#TpL}K8>NQS*gf(6
zm_5k*54N+GLAVw>Dpv;jPHHT3jYRhDj7SMXM$hR&P%hnxJD=t8Ddc0Q7_jx5>w?Lx
z5Og3nk^(jAYx`R$<hlFWDs0PO=C$Q1w=;AwZjlzjqY?3FM`uC)4TVSzX>l95cZKI#
z;rR+lRFGVV2H<Yi5jbFOB{nJ^jmZ5oEgC7gaRHs`#4nGwBA!IliCHvc(XnY(hfBv|
zhAh-DgGW~}ulQg9jYOTP>cmBL(I&HL2QkbT@-ADF?IgF5-Wrql;tsr5C*UDnGD3&2
z$)HM>TuE2DfmKrw!2d&B@8W#&OKji>2{`ql#n1{(nPekxOQrsOhZ5(u9<SXo_yqXz
z)2~1O`HkC<U$3zA*|qdVXaJ<HsMsp68O;EAi*Ir)vaP5jr>%~oT2IJCP~Ab`eRnE>
z8Ox2P#jhFaGvAyWw_F_W1}t5Ah)bOLdRsEqV{WXV-BdwnfJ)N$n;?LVR{J@5HbZwe
zVn-q<mUuvGfC@ol;y;M0xYZeyoEQ07RTT7U+H^WrZd7TgG}e}9mg=I^soO<Ebvx!B
z&ULaBhDiCJmGP9kzwrZYVa1;K<}}OjX}p71;;TG%Fyj67(}&MLo^#HcP0raenozWt
zbnFIMGpD~)n)aRxUJuqMp7Og<t1(I7Z?wdOz!;n1C>57G6UgRaGg0n|J#4`*6Pm7r
zhlxoCh+*Inml`3B8g$l@bB?qq$hWyDEtJTEMiFF}I5%eUc!%Xkz_lJ;6=1)Xm?(T0
ziI3g(MFE5FZja@4Mz0I;g9z=6{c_?Nqjdmzy{9%^>Scx))aYQ;@Wfi6u~Cc4N>naJ
z$2x>#9pa?=U<M~m6xSw-YZI-JWlK@6u@#d#2s<6UDuSqdl5scQYoFxp6WBht7~lEl
z)%nqp<qObWwFX2gDMx3@pY#DVGaG5nw$B2<XBC<^4!JUS355nm@HwIGFbxLtcyP}p
zi9f8x+~Y#liFlIR`|+wVxtZElN;EDUI!EA>^>oz9Aw*nbY(mWO>uURAz9s1AxrCR}
z{G^De9wX*HBSQ93pvcZ#7vm)ol1J)M_s8MF;_=<ID6Hv?PF2$jx-;@tp-1hKiWb)E
zQU5Cv<p%U&_xa0*`1JA9U-oZ6Oh1gHN_x@ziLS}RWMb&_|Lii!@Sox{eeu{ML8iva
ze1d0wi>hhUe-w=eHb3=#$_YKkBY^b$KXaXTb3pxNw?B8^B)@j-){ePEf<gr)Wq3}c
zs;moDAbsFmLIE-q>$|)D=zGlhEt8jG@FSmyg915ng1B|5sfJ9L*9<w}aJ0sO2}lvV
z5$h*1f;o4bTc5m$4*2F~)J1?Z+n_^loQ#0Wu23;e)+6)pkvJiJk3y;9VeXv;o^EBW
z^K_WHL}1mo2$64%J{|KcP7G5ieJ^xo+4vdu@s$jg(Mbq}{F(C^{cX-QW6!u6=BLjH
z1RXSv0?afidlNWV!Ja0y%3@jIC(TP$Bs7RzBFFkD*-I2&mna-d)HHCZVu_^0%mva*
z6i-SN=a)O+x;4xg-OMA<+C;`|<9O1>wR=u#(cEbU%H4GrGYTnSkfod>&yZ>0R=5%?
zWvFS-(|mQtajgVY7Pqkww+~H|M-?d8$$KnnGI+)sWrvsn->Ap6Ak-OP<jNJK?U{v;
zuW1=Pza|7wq@gx+>NAmoTcy2EX>m#LYhj~NA0a0Jj38kfG4X>4#Y^f|9y|#TZo_i6
z$h<r9R@w86R)yt-4E3eJj2-x8VL|&W^&S~j&g&xT(%yyyR3xGUG}<W<KSy%)o13f&
z>S8cmq5CWqa!S;AUd%lsdd5S+<z?e0RBpBr@Y`qDT|rC*XKlwl)7a(&vo>seo2yW$
zi>ER}HVR_hnf1p(i`P~bb!b!+BbV4+=z2O9=S1}398@8RYxbl>b*IN@<mz#-&&ihI
zrL?_Kcwc`|#L+M>iT{pRXEcN0GKrfq=S~O9l#mCQZG0tR3XyTWM`9BAdj#*TuvVz(
zjNzm_VKI&mqa-S3dtF$n!vn-v8Wr5<ByCBF58mMDjfY%9g0@#5vzna$&WW(v-jPga
zFJO5mdX~^?a|e=NazLlQSr<Lb-l6YmU1%mk4r2wj7NiJ@{tJWK0;LEVI})O`M89ke
zh(N}9suw3|#s+&Z2s=d+I8ZohJiJn82x>Rk3L@>i4?9;9{92|scl7IF12bnU5x*Fo
z$%W$3sdDVsB=l#VS`_4#X<3E6Gtjkqq}LNvM|%z}yO)&;8y*Y1nr?fiMo2cuoiR#u
z0mH#uLlM`VVX|n!$IGBHTb+KCstzipA?DJI`Y6>Qq!Q+;;e!24K(4&cgWhTUvO|B+
zu>RI8+*(S3g^UJvIq0)>D%V&WblH-jhN<<mGrM*}Hil6RaXpCI=3q!kF+zrq5gD1+
zY8BkhQo`CR=AixU$HUi$=Z<vVg^Ii7>x9ChW||Q>O*+LRJrf4ZCeG^dj&3V@tMni$
z_DEpgzN2~?jb322GyH(C-e`mR&tK2=KI+u_$QSiK*7{C*T+sH&C)ysl!n$2ThCp3x
z7Y!DKBZ3jGCDL+hMC#HJORHhiF?B2#%StJ9BQJVbp$NH+^{yE}w&>4#Q6sokaa9r}
zth|jrZyzH)JGQAtU0#H8HkGFDa?|SyL|`e_c3pvp^17NIwV;>ou>$EJm}_qLYV0k3
zS!Y&pUs4LBtVgv43=nbeRg8w#)M*$gh@Kpep!7DUpdUX!J;dKU1CiW+ed{mh!)mNg
zt^veAZ9f*rj%)2!A^FHW?^s%FAlePQ){sTwWjw+ZpFUgx=Ji$77l7ik1n6u-!3I`v
z@Z>f(?0ZnDU|K1+61^#Am-9J)NLG#Yx4GO%s}~9n8#cIEw8{<T4<|9)%c6{13>5lV
zJWYTnRH0a+(9vS9?rHH=f%v{gM5V9AiDrBn#Zjl34&<4{1g5%ay;XEUDyiNH&-HET
z*(ZlT?Ei8$FXRW>4)rBt{_L0t>Mf2LSzKmQWGiD}yGdS?Ia&&_)Ea~2QWTg;rjmEA
z%tm0rJOa0C0Dw~lrBkQMwNcGzrCT~?PDTE)lg&eyzLF_xt0jY>o(20h5t%;2pgfJ`
zpmX9i6vpUVD~VF-lJJriis0<hkr|*m^v)00>SFWhCb(o2r1nO+QMElkO38>~Ly*QM
z(BG-b8z?|kLK>zBNF{YO29h`4@Aq#NqLqiYTwhT+i=I+BV+iR=<XqH=+!>ri=9UUu
zW}Ft(J@<>Zf-Wk`AS-U?RMvl#%DHowEDHT~`jAnb3o^)}PG$9S0z$J)LMORS>f4nl
zsulOIs4ds1?S6Lr=A^UsMT&RUkO%mV!~1Ga%#q=OU2}aR0JLy-*KzobBZK+%Ln%1>
z@^|%4RWYvUQnUE+&M)&dU17M*ap%Zubg*~l4F(1%7YI;5d*pO5CJEvs!K<<71nAIK
zD6LFt1Q38?b+7Xr%zygz{^Rcc)7d25if_`*T-;3MqqwRa&Hr?Fc163V+GDY)q#QFu
zj&x%|8<Nfn2P2?1(2IJoqc<D67=?D$EydoBG^OT_;m3}#+(x+22*m|&d2h&}tzOBI
z!H%q>%y<>?L!R<Y9L6jfQdFefcL*R4<Zp|wz9H>JR~RHpC~Q{(3pXeh%N|i3GC6%q
z-L&cdY~4)ie@Wfw2Z28Q^JN3FRq*r5yVl{AORiN#zg_e*HtH3hVKlDm=_h{!BO?e!
zEH9amx0LomNGO3Lu!F$XyiEd!D<qU2Y6IF&^^zH!PXmXqUp{~S@q7~aHFs*0uXxc^
z>z7j{01@6`At88z*#Tx?x|~X}#-|16*~7aAUq6Z>u4<(qom}r;Am(N-VYexCOUFY;
zR3no-40q$*1K$?q^{5roB82lr`K^nM0Xc_E*r%9QKw6$>V4mCDg$QJo&@-qYgfY(S
zG?;rNyR1)VSF|W|x5q-(e?`Gicem2zl8#bfr<QBD-e;|+pDtOHdZ|nNLfEgwY@q}&
zIIN{hEh<#0grOJmEiwt{&cx~#=xkFypOu`IfdG2F<a$NP@SRub3cZS6Q%L2yMPx=4
zlZ*kL>8KPvyZzTcKRkRr>-EVU^;d<{4VZpppg;o!!-b!QMc8&H(m8eMT=$zPp$myX
z7}@fg#QbFbUKZ;S@*_vT?0mP#UpIZ>XB6)l4C99065q~<5`BjiSqFCW;^(>&{K9R<
zk+ISs1>Sp8Z`I7fvsK8>(NX}i%pFUsNQx$<noiG`ua2Nks?2_GI7L^7l2PdM^s@2<
z4DM7NB5y5yMDb^R!>ljq7fyejK7Q(S5<$zUf)*UfmgNV{WNge!;y*%F`?eRGlskc{
zPM2B6a8kw^PRkfr#uEz9Cei4Zzb~1+6{EPF3TaYz7n<8|Uiyh7b`z-`l9b)6)GrI@
zy)a>x$venNH{r*pgcb;OCk^iMc#oNYzG`E)vgX1mYc9NI%|)qbm~|2P`0HPPK3Dg(
z50!&y@qv?3xyo`!LU<7lbSX43*w^k0_SlWNQY!{Ft&S)--VdSngSb(F#@=Wg!TBsd
zgLE5=4zPmg(3sVrH#Q2E!kl0(fgq);X;BI(0?eftI)Lp5BJxqdBQ7a{GhPkVUatEF
zW^!-XOVHGTysSpe1T;}5(`Yp|C|s!W(g<zIoe-y6YKkGU5Z}zDRS_g{g&2CHjM9XH
z&`RHt?pfLiD6T8Sv@4jK?(2%y3Iy}33c3j5OTEny-cW6;2YM<M-v*Jql>M^-A{#(J
z;vU4JIzTI}jb=N4`t8~Iza`g;B6+rgF;rJ@)8gLeHT5UBE6Q7987}0<Q6u&gOIJ&s
zimeEVK}-2gQ^z93e#o@(#-hidM7G+Fz<JDZD9u=up`M7itK`J`c~M=kLu0J51=~;x
zibrK$bw~Y!1;F(Xak!k8T#)Ap6tPY5ZEZ-Chfd{2g`iLjvB<>f480H!hb4<0=65jI
z%0a6wpjIg;xEjvR#JsDxqkIF`gCvSl`C76&W#X5)(2<t50Rcy*yYExG??c3=-6CE@
z|CBz}ycs{=e>is^=)OHmgRqeDi`w?nAwz_QnvtE0{icE|*A`aR5|9yLRzSm}vBwG&
zc*5V&ZESO`^c8z)REEeD7NP~TLKPG`5Eo^Xh$y!T63a`{JlKxx=s1nLo<Xi*CJVaV
z>e6Syx3Qua2BRxvn1wx!?!^##lmYT#D$Rn_Yv0k3ldj%TW-+=DMF;lqBgV(BgE$G#
zQwb0ld6d8?w~!)KJ;?yt%bI!WcA+cMXOZbpHpA#JEykvmdf&t9?VnU=3$|_pZozCx
z$hSell@TT-5n*qbMKc`Oft19!qf0-cZ#c<3{1^@O-yz-X;-?Dfpfrya5ew;+5s@I6
z<WkTha{}6JK|$hh%Yq8RV7$ahBhYYPh?x8LX=wo3e4m(1D`2ZkR~=|j3Cx8#&aijp
zXXu?bun*?C>YM2f*y!$xxNB8v-K+ukQw6V7-2j?$HHIhks~?Lf0b;G+SICXC_RSjb
zsBmIc4Lgr_V!%8boMFh6nr-|tvm&hTjrM-GddHeC;2rC3RGcn;xb$H$gR`$+{X(n3
zC)d5Djm-*1hJVPEVQuCm@!yR7s~@8~5OY8EbSXCKh9#NzzpzrjAz{QmO*nU36RMW*
z3TK}CD<qGs`b}x>TkM_ILt@B>oniO;hjSnx$;GA4Wf4s>HUx>xbifFu2`jKq$wDZu
zS~~40Fg`RjT%@<MwVJS}L$xrQriKtW9jO_@wAW}wGbm~W;?*=Z7&R%2ZopMcMYB@^
zb|twHJ*R>XUNe||V2V;sQ~HKRI+QE*UeQ1ma!arXmx7oZEf7)F-haTvyx~uJX;D7}
z^x8ISz~A|8>AE4-PlMKm^u41*SZNysYA0<3_OU7(1|(<DVvL&FCM#4Jy0DR-gST`_
zXh_yz%c}*u2$VD9YY-6MNU5NH=9|J#ThqEp`!)NxW`AeB|GhfMMp^MvMm`C690B9F
z#YwLHfLGF<&0!)_%{%TuI^aP`#|9FY)LM-Q9Pii!W#o33Aru3}cXa90N_O;5Eof7S
zU`Hl9*izMc@=Qh8-*7TkSi@`GH01GeTf`f4^R|=z3g|UUvXt{iYX9M7?8(MJ31+`B
zxG&18F9DDA>SG@wfBJf^9cCX^w|dSJ8}$UM^8^a<z~IqrXw<{N(XIttYC1*FKX)Tv
z7Mjs(fZ&x9m*7e+yI80~?;kAUpBxYj44wer9dYmM1oqBeQ17I>7vst!otsk-HJCi6
zYBzua_v}z)=HXuN8J;C~Fs$$4MB*2tQh*&Pd^l2sbfd$vdAUl(sdM-}97KFMym6*D
z$mnNB?Gj8Nml)G(v<?~&xv$z}68$poewhM6_{sU3A09mZjCkp@z!=$Y_=_{WG&mo2
zm%!j^<zi82%Ptv{Z;9GE<jawW7G++xfbMn})>hq!BrlQ}8knE*lXdVj$PqIsbY4cr
zK_jJlZ|+XIJ2-S!>?ym0Pg_I(gxH_wgVv5$C=g;#IU4*UBs))vcaJmc0d*O2Fa#6$
zh$wX7MrRQ2u?=$B7p0%`zBS0&rnyC>Od1j&dPz0oNn}E-BngeB%(B$ZkpW;<oVSp-
zRIhz!?W>~pJu~NOyjaOzjzM@{X|#TV5vpNkM1`POMoA)zFs}f*K$6l!1B2o`E#5uO
z%&D0YR{~@O0jwE`l}coF%!QwaYmOSl@*BTcHjbvyHqQMfNnnh(o|Bw7k#EnvV~IaL
z#rk&up`E{`#rSEQgNK=e{~ohF%Y^oM0^=oDddq;rB0hc+q>JUjZA5d$jhVV5c7yqr
zSfps2s414C7$m23j4zsx*Fxo_B@h1;4=l^P@l@q$%{s+O_h<!+Enc?PT$$AvRlzn$
zlp_~H6wByHKMW)0iNdU;+In4bQK<WCrQ_?flz0c`eS$(~J5s<v0jZM$(h5HA>Yp`I
zB@<|P04$gVCPzh+MKyjJF+5tGmu>AxAV{GzM+avFyngW@s%duu%_SoVtkCmuCJ8Fy
z0M&|F8#&h)5JVgT>^lVHOhtz9$gQcY*F_0UWHur=fc-or-g!TN7P>yT8-;UZrHL+*
zha<VBZB{T#5TtxTE1E<ZmWBh8{PGwj9KXA1^{VxTVt1DH9RrWMocdLm7aR<JjvoPj
zTJ-A6zPy7VQ}hO9`er8)HxxlQD%Mb13*!=1T=lA9OSq%n7tYq`eAKxX592p$o-QM@
z5^cYRR;XCe>dVbz1nL}m78t62DE-s^;meytX(2xp{7&{Qy)C7>acZMDCrUvsIcg&2
z30*D`^<@wW`L-mAN2=`H31wgC=rF2#EFi~*!k@m22q>*T$tX>3V|{BZ_MYc?a{tJ6
z#p-K6KT%@Q1yK!(zF$yE@EmEoK9g<Voa{c9F`Xi`?^<4}ep41yPSQnYftmg665n>3
z=vL-28*K|tG3AIxWr^WVuei*1aFZ+fKQ8!nbp0IA0m#-N5BIi$bp*lsP6{)vh+(J(
zry4({aDHLWi@VQ1{`%vmhY#n9z{SXumzuyOJVNT~w6-bzwYiN3JUf8^uJ*0p+>LtW
zle?yuzxZ~{Of%x3ER8I~ve0ax(9hbf)I_Rhx|?|xMQb8cG3yb1SXrhOe^@TpuMkx4
zU-J!=@7gUy&Q!%WAcT~<R4m8orEUy7n)P=eg0GPBq^~@F{_^p!pFe%Qf1`I+tQ|Fh
zl*r6ay?;YhI>8P9>%O_^{mLirxr~=_)n|N>t6t%yroZ1pPY++de%!Hrw7hDc?xVQ}
zlW!Q6z57V+{Xg-WpEv%m(O$+i+Rw7h_4?B%%C=1EscdVvdN3LF$_e6^I=VmCMg^Aj
z9Psu`5O}JX4k`o(p*_JtXtJyC^sU2Lomzt_7`HJlTqxYZ+B7kW3f9rSFVlm$pC+hs
z#T+spXpWfzHO00GQo}K@j8p-9j0L4o{gLKTa0pQmw`3gBDTu^(g_a>!q8ZX7C@gFP
zhwY&-m`EwHo$qRh2?I6nhz~pDQ#3EMeasW{W`SvlAjb(DE|t_uOXm?sX&hS*nIGe2
z^(O%@X<;#<C&T_zcpSm*EMhN03`%53Ob(m%whDP}9;_GS=z~T-OLn$}iwlX#AbTwE
zj&DnGtu=~*iB6}TAUO0j<6f8~sCz6)kl9eOCcz~c*tA2d)<ftM5|Z2C&>%ZxHk|8u
z<A`tE2c^2B97PkzsDMqfOgb}4G5EkiJE+BsnsRF+kV$JtX|x3sEGR5&rf$(tWZVbY
zZ{lGv>#vNP!#XO3a8BxhIbHqX;o*vpxVrj?yY5lU?CMrtw|p|)f;5IxFncms-dsJg
zbTrFOY1xMOG-L>au$Yx?qhLGz%tMWo4tQC7sRHC^DjR2|S!wAwX~kxU;&<<6Qy>FS
zaNm|p$NCm3PvCBE*r{$T71A<4;^tD_o?pVeB>sb>oxQE=W5>QhVN5>M9Aif+7;CWA
z^O#W+lD-vm-X?Bhl<E!|KoDA@lSsxeHVpqfN{|ehDzQ5d_2(VWh)Gb#&OOrepktIN
z5-3NFz&Toc-cP={J=}kYyDxt^#}q2Rb~j_zX%#4^;4|EN4Q{8qJ6^*sUsF&>cCaOM
zEx4&gHv#iqt8R5*J}S-x#K%!Ii@GxGsJtF(bsS6ZZ}H%#CE9@wYOb}ZoQ_~LZIxFo
zys{D}m^uJ!E)#pSaH8xK+Y+tZLzP-Z^e&lsOrZuXiff3_0#6GB+O$Z-C0-@6YHldv
znk}Y_5J{AwUn-2*Fkp~2S_nG8#gR1=QXp|+VU9we&80ERNab%F<&L0NCZ|A*R0qYi
z+JOjHL}&2dfOoi7i+G1C@4z=5RGtyg;+=d;?C(-5C;RTyvXn?IOSV$0Qe#>i;R#a)
z2$qli`s>5}m$x0;u5|351}1RYb2=Rm{^KGIDf*`Q1iyw!O{uq99H-Vmy@no6s?)1l
z<<)T-x6<6Bq916Xx;OkvuDw=oackU5wdWSEu&nuqr6E7kDwGB+y3N9_QyV=e&@F0F
z5Diz_scJ~L@au#ho46AdHQ@o?F}~1$gg<pc&2n=_)juBC(b$LkuMhkE$2T&#_G`MU
zDbQd^qmB)j2FWy`4?_}>N8TVHRSSgXy-ShJ8kj<Jm@uVQ%O>4wPfKYKqGO>KDHscV
zXqF9T_*TX}u#ig4mN&=HOs6cCAnwL|SyVgm(Mn3KZTj<7#GO@*Y`THOq9mwYLt>uV
zMuANYsc<$(OQdWpQMXe2o^3bA*!We)4pmdzu-Z*G!s?d|Dw1kD-XnS&`95Q<gQ~+C
za9L<vZ#`hyb}U9N&+iM28gs{Dl^av)Gov#0vp{hz(5-=Uu4AJBbTihy;uCCOB^wsF
zmMjfNh?n8@&65CCo6{AN_02Klbe;6<)ttinfrN`iUR5G@nW<z1Oqx`$uWtM@Q%P*+
zF?zeDr_^fAHqaF6Lg#{2YaW|5Fh5dSbN1Rdi8>c!u={vmjpLH-u_m@hd9+H|Adp&X
z8?0EVL|jIbd=Cc^sg=#VdP0a*Qcr!8_A}W0S+&AXa(;ff2G(k=QEVSQo6VZdEyhKY
z@f=sN2g+2{X?^6rnSnKxw<8EDF+zi|0=YU(tKmkaE4nQMS`^MNhjd=}Fb&fU1GSG|
z{iwOY$h+tU+lf>eF=@{JVX4uR+^h+1JV9Q5#c6&W`tifZ!{a$`uI-X<kqhJq#Wq&a
z8ao_Kq@dgCXhSy@of+K|r;1u7W{i~FH;N&X3#Z&Bd1HXi(C#LTO-mUYI%U96HHF@B
z7FzbFu3PlSQPnmXHkMtr5%wV2hNy5=H|Rc+p>>hQQi{QXeTbHb(`MOFA#1poMjbud
zERS?Apk?|MRqdFQsEgQA-z%zTBGChdFs{9o5q&~1=(P@uoDQ1IyM~ci#RrF_wpjyH
zG2-lbDZ9u)3iX^wot)O=(lHB0PAt88%47{2^4%aHNuCujiU3rk^i75ct2SEyE|PMt
zn>8@!O{pBF(r_`ov5M_`%0lF)I!fKl!10TMNx2pTQc}rVgRr;OCL4O~v7sB<M3-!R
z1MISF+BPsMOgXi_sTq<*?Z~2=b!NeUXW=Q!U|^(P^bW<;TJ#45M($&?2Kb4$amuow
z5@nkk1nM?qgBfqAZXk)UW|*(x6v|}tmPpTvUk(67PpYF1l1(LzyjcS;WD^l1;dG2_
zH&~D{SD;+ASKX|EH)Mlxeo-E*Mrxwy{z=j>I#L$w`8s-iZjt)=Y89cfsODDLF1F$C
znzUguZgu9-2h5<MT0b(|J==zt8Gn{J^++1lElyBYB<n^J<fTJ4mKqehv~6T4>XrM(
z*b#CWn~b@wCHob(2TyOj&Fow|XBrKNjtK*oDKGWQ59BYcCJ>}&|0l@Hr82kslibL!
zDI-oBjbEsmZxC~FhevVs_q=-aO6#lR)9L)Hnm@vQpaGso^v`E3?)^uN8N}5)6}=1}
zbuI`!J%8Q_q@45R`rJQ!RK*ev)THj{&YDXA7Lq}aq!*(7ls%oc;>Q65Yw!zcB9z&R
zfVsmx-|q4A=lvUb;ENNXCv8`}1NL+$<2rMYE_-VN?r&6^$L%9OJL2CN5B$h%bqmKM
z|26R6^ysMQBax3MtM*N@&}qPmSO}U^VG)wtlSkvUtbxCz2OGSE#7My-{eagq)*8)G
z%`&h-?uyX8*j=t@sUv0Par$U0>0FHyq5)o$A2OY`L!lOS4M)p!wn9`0!ikqh9)T<D
zgFY-Ph84nx8ODh5-@qpbtTB(To)INFPOTIyK##7cE8ZE^-eLM5c3&R;{Nc;TXRiMn
z>D~PV&?jUd0r9IYsd6qzIq-Lf&1yg;srcRCN12?8MCN!W7%~47!iE;L-QReu+gvb|
z1Nxmw-Gi;6eY%gNNhlSv#x2=OA&&w&qb8*U{?2fQLA|4^H`(Kt!5!Y#z+aE!VUGu|
zx;cYM3Kk><@{zy6!wsjd<TxsF;H|%(k3yP6{JcLOam}4UfP9z~rw#rZGK`3;gV6eR
z)EO7}E{$IVG<xd62<AkSL?~`k>_#mVvS;gwdt<>iV=F3vffLq~6a}siLMR5iJSfv?
zWK@ARjbHK-p+G6RRd5|NShHzCgUvmIUY6&1xcA^H*E=@B$X*y~JmQz`Wve&>zKGH#
zr7<MJxngyg{o*@P`{cxZh`akQAI^1H+D={Z9=>ix`z?nw2E&}oUt9D(UULI^cl1DV
z>JO6LueuX6EJoE<U!*;Szx#;Y;+e^^dpt)aOFH$#gTXrR))I=8E%VUJ|3vb}mN>Q>
zAo9>uizPRjST|fn`_`m}kr%80u4jtwk$#!@&~Fb2BC!77StkhwIahTtqCA>CNu|X%
zp3w9QKP><<2RY(rHwYbWv<qS&XJosl#05Wy5ofH3SO6A(CM5Dk2LJ+*FOZbZC<8R<
z_BZRZus-+rxaB(r7@u$A`fPsV-Nor1KRk~~aJgR7zxKZB=O<$m)VhzTo#3~Qi_P#z
z2E?0&r~?6VrUx2hNg1S1!y81s36`X66n~Q(p~D+S=FN=ecdwdAj%~Cg`Mb>|fpz%y
zhALx`h)4r=uLGvLaipc~P|af8cwtN|*%+c?Ae)Uycz99PhbQmn$9Tjz#?bmPU+2h=
z=fik>57(`YGi}kO;E+yeXvxli6`r9A<yYXCbPqvoKBHKR@3jzL+@-At9~Jxb9hU%1
zzoTNiHOM5S9u9ugf}$-Oy_V1dDA5l`%W$dUP$w$8jN&_V(n6bQ96kz5At0}Si$e{o
z)VVXD>1J;DJQwWrfBFVWD&3A~UMl`5J*AYblo<wrI9LW`O|+jNT#wLUX%Chmup=1*
z$p|V2P%%&n2r7DLQZayv5#61ni=d(hAE}_Wi%!N!KuM4>l8iA=Q#^|xV+0u^$QVgR
zP%)B>!O0jw#{fElm|)yu>0>bjJyfVq97x7MG6s?{I2m)gw6~Ocac@Z~Dk%uxFr*v>
z*EYkGijh=|q+%o$iL5pvsdzfi>_6}5fa2{;GyXr*{Flr$D1^eEtnO$XJ>4>ORwtDi
z#xJNvp{vVxN$L`6_1+Bafct^@gFo|};k*5v&>KAP55zy9qmePg{&7g2f6Uy<F-Onc
z!?4jnA!$GP{T-pNefr0bpZ;`s;~-Ne&(H$R_U2I-%)FOlu&D7Iyq<zBPT4G?^97%+
z=U=Im=B_x+wnEx#lAztNKWg-8n9A<e#)1LwYw(Lm<KUAmRC^gy1U2-rgi&?6feL0@
z?vG4Rgp*y=FZp<Gs1Eo&-A7@%Ssk7DMrvxUame6d^5KI2(!%RKROUFrRgG204k_De
z&E1N-2BRYS`u~?rgAi7xDYtcq0Hn&(|B(;p7pKknhy8`tOb>szHK9!TRO-bySueM9
zsrc$!`ar4p>e8F67dppNsn4JMzt{ZJdd=bC;lutd_=0`l&bb<F>FBROGv)CKWl~%J
zf3wSxt<u#u1)RO1#x*b(LODg?>~*7HR0>hHDgl+s(x%%M#Ygak<7yYg04jt2h3eKg
zxuF?~sM}~TlohNKukV+)><`V^kMBGIzOcmdizrx|^HF$yT;CpF1ipJwnDvEYz7Krw
zEC7EyQ#_FyL(JX#b+FdM8KlZN9&0>C_P^<T`+FuRLgDqh)Om{kC(r-M^EN?_yvO@L
zJRHvV%|hJ-*ck&P0ayH|%oa~JU;-VV;vYja{?Bd1f_>C2l>piXXu{(@121L6U;hF-
zK{4npP_`+H*j6EmsT+l=scsY=t2^`43X^ICZ>-reWJ`gR@?}w3)Yh*`YBRZCVd~f@
z)wt6MvO<as-&ue4bi?q?`BSzh=ExsTpU#wj<rMsKuH2F8bjJkcUwJ`r)dpeb5y6$L
zSUKY4_C9fP5qyo4yCoD}6MDKCe#UHRk-7L~t-BSzHM|DN4X@!_!zp}gIE8Nwui#s^
z74o+lP{uCCHEc)=3NtD3!fJz)jdFsK8%}^*!)uJ(Q;6JCgxv5BLM};5fctYB(FflL
z7Y*Pw(z7TQd>#!ujU{BzoM@n2eH0+KDm4!)#8-Ad+*8!NB>xu;*0p*6I_{PlOM<l#
z=Lm88lA#lTh}RwUIafn-xC5Q0=D)O5{0*a~1DLTM;b<-27OIvGo>PFGsjafyz!)oq
zZ#t{7l{{EOsjOoV>8SdNb@?u?MLEyua4c8woL901CtLI+Nw(-@TPYEo5<g&zkR<r!
z#5;ot>M=7u%jR%Kk$H1ulD}^1YgWMzGG!rW!pt+v+Z*c_EO^h2f5WLU?;8oIzg;!>
zsV>L^pRvEDsEtT=ZW#!fSm&})fs+OlqvH5pt=yNo<UE33oLv5W8+rdK>Q)=Dd78ti
z5(;~`Cp4*nMUcA75Wvu{Jk|J9Q-n%A%)7`t{|m=QVcH|L0R#3D21n;Akm#eWr4F+w
z(u5V%#3}|Uoi*3Q!#%FMxR&KStHZHi!Lwe;7MyI+({!@MNw(AcNww5_@XMsxNpW{6
z%*@ZSI-HSZn`sLse3G;IH)GQCwByZA_XddDh>BWjcP9<B`|P)-5D3AjBhzbxC7cO}
z$6dQSWuu(~gG!Goh0y$iK9kJ=)eP2_6S!j57s08-Q2zk>XZi&)?^&Z|vh}R8&)3Fk
zLdpjpG{hBCOobB>K@`;n06}M1>p=h8CFj(TYuA=S9XK9#szqrT*d}*su9i+q4)<J?
z1w2#M%@Qgeg>=}XCMh{o+356PmK5Eq=D;vp$lPiL+C$Y%O)@a`l&DGoYr^@f&;idq
zW$J;yNA31%bPP5K;WA1lZY$`l@OH$(NH>m241=+@x+Qpf!b|~f5jBQ8MNm@RS46cJ
zMTu(2rXWbM*w50Gpt;!6lVhwxF5KM<lVKI5rici6&Pnf^pjiB!aGlxcUn(#3OiP}x
zEXk@{pxRQzJSYNmn%Qw5e*dti^~L#QsS~8nur7da-7m{ItzQ;cOP%Lg5gtv)>52A6
zZA-QlRZNJlX`GUtEPZP}bT^=!*FcJODnXz;cNWWjNW`4(3B)P;p8&YZ<&&Ss^-G_I
zZZsu8ZtX6KHQ!6|=m*dNGf(g`K^4*@AVPJ@tf%%n>ld?{P4)3%|KXCSp8UWW#^?~W
zXBr(7JMi8pDCh60Q$d%rj1YR-D$nV%2#Jgx3Ij^hxY21#OuS7RpsNbP^fW8t(9s~a
zFyKjJzQlv3OP%HkRE-~=EE)1fu>s2hF+5Gd0Blzr_Y*MR5!~f2#4H#A^NOQuN+B4y
zF7A&`A|muaU$lM{`S^!33BHPJK#aOntb-_79{ZN)xWO+wsdNz}r~@^4AwXzNIA!L_
z?a<KMLL&*N@2LyyU!B{gN`|u}?!cj)$E@>1(~a6YXSyd#NZ{3B^VN~^Ni3lV?zMSn
z@HK>6*j6a-l1w<zVgaRXdDbI%J!a*DU$&yqNuh<sqP>Mq*DQ{-X~EtttJJIDumJ}y
zq9G7JV{ku+t$-mqU32GwiB<?(W4#ghLaAs-J`cBrQ>kZ{2mR%w39_()D8n6->6%zc
z;Lev|Ll(L-EkGOTOsonMd&l#Q)T>R#kt!`D_ss=apE#PW4CF+AgRp}X*U5mI!czx+
zi$F>S#E<R<lTgIRCHUpV$7ty`{eP+ye0aBt!qKb$@XX4KzqvoWagbx36E(5vi#}3W
z2un1oqSRuNs5B$7DYCh>VFYWDT^y0J41Iaa(2dbK&D`t0b}D}(qFeM4M{vhGT&+Jn
zzw1X&oU7kW?;_I?=alMc)3=T|-}?2m^wUyH{imeXzh`3Ao_w0b9xJ~-r({2)JpSDX
z)-S^SXT6NFUg_}lwH3|UE(Zk9k%bDbGurxM!WpE0JedyDoz9*D{W-Hm!0H|WKX+Qz
zb?fs({KGQ}@Yln6&n?EDD?_QCLly}o5@gt;Y^!o-bPoXxzhL|SBF!_SM}Pg6$rZh+
zb}hMQLeP>o5-lwok%uQri)2UswS@+xbbjd`5j$2ZY?M!4qbux7TPCDc!~RZ%&|rR^
z_4M2xc%qkPg)~_401k?wrU}eiI$zvk`NXDBmdvTkbS$a}Qp1hvvE(D*^eYX#pNO3?
zrae>aMaI_3Sd2KThL)yV<xKyEFi0LdYR?D4xPq+{Xl4CULc7&cXWe!+Ejr!V8QxY6
z$I8=qi!7SnLmkw=IC;G-rQn$=XilItUVS$}m1>xB6H^xpX$K922BvHO@wxBU_rHC!
zM;()e!w!UjvqiYL_eTIvP5+ff(AbQ}WN|PC0<LLxlcqAQ88vuw;auO7|3N=*H(%jC
z9^c2F?$C7!yN68`dN1GWpxT<8D=Ihf?ulGynPH;_dYo`&&l#<U<4xfGIjH`*&qOaw
z_?{`AwZ-8XGxhwat3w<Rx?&MO-5Q*y_82?i0fY=O_)YKIBCr-40VXV#v4k6)o<eqG
zEiIYB8v%SY_BxpmdJdbNd7dn_5THjo9np&3qIW`)*{=}deAN$URC%mz$pp}^OPh{L
zRd7hngBq(kln?~TO<zh5bo@uJ38e?d$id?WkKyrqV2m04RvJ#l4Wr{xGlm~Hy_J)O
zGSB!bQ!EYH2#S^}lN!;J@;qfm4<3Wj%goGkzO@cD(Lt5nQuM0B24FfvV^{CAr>py;
z!`q#qT=yGrIO||8WJ&+j9HOfIbF(-dB2aaGGeA<~QKTqv<>^y6%Yd<)wv4rOTN)Vv
zp>^^`3%cLnj8O_18bFCI1Di=$W=f@_$u3(lsMSO7E9qqLbK{MfUq?vmf!ln)c?`b4
zgMXw8h>YU`jaw~aWHPg?g^=z-`LkihQ}uAEKbgCRmVhR>0a?%7ZBC|{XjhAt9$`~d
zt!*tQL~uuoz_#SUgocI)e`}_yi!|k-sB^N&j!97<c*5{3`?3^q7iz8UpmR;8Q4(-v
zQc@H(%fK{bDbKqbg`h&f3|)#9oCFoB14e9PO%)VJ8Drzw%s-~Iq>CS4KmYly412em
zDjpjMp=e<{<!B85FrV<>jP)!-(>Utii<}`SGeq80JB^Gz=XvDXDX#j_MPKj6X3{7J
zW5;Sgq12T8iT3z+)3y~^JzC$$StZY7Q_iS{l1Po#-!BPkDMN{4p7rlUwrVT=;@^)v
zs;BH|@9)R<I+l7y?W?g9MTtK#ZMIF(pO`j#RDZ4{w=q9~d~9|V?6WZ*av{%>KXQK(
znG(0WNw>KqKvIwAqy$iz8^6pXwdsc3kO2uTy+@_Kfl_eMh0x%glDR192ii#J#xL`G
z!6>s0ccP2Y#2FUH@c-*|fb;4*JE>Y)t9E1k>>)Xhr7tu!NQ;z>3P4FPTw}#%`u_PY
z_YHqn!{)xY`C@H*0nGSTfQh@Ik)fgl8!7O%$RNGHV!Fs1zr2W+TVE1z7?)Z%m^RnK
z&3~Y$?nRLFIk7iKVt3euY=q7s&jyOWNoYDZK7Rbu*RT7B_;mm2&DrhO)wvGb_A3;w
z3it|39s#(-?FT{%2mej{XE-8hI0fZ$_HRWnVOOmEDk@jjDIHW74!)HQz8t%MV$6IM
zV@<IpkX<Q6y;_EG(ZIbZn!Y`AEGw1n?g%#iH0q6883wiVy%2ya_NzQ!9CP8*@0dp%
z6?q_i$m@0A6JgdnH#86pywM;VlcCD(i1y2F;cj}m;&ARp>b5OPsR_NqOzTp;q;KZ7
zP2b?6PWvN1xbUi{t9+H*!7$)qj>j^c+c{J}e*ARVL4I8U@C~Mv{ffq{rAs=I4wZG%
z^UlHj8lN6n%Gc7rYxPR<CG)I%WIj!_!IF>sr@&LIL53&*g$NCJW(9vHu1yIJJbJbo
zPf+=V13Wj#<BA79$(8S%f24Hz%GCA(_-NvMXDW5#s>X`t6Qb|$KmGPk_rHB3#MgUT
zHq+NGn2vcFK-&P)gp0`BwjoipAUXmrdEPu$#ewVza2#Sc1wMB2E>4bfLM($_hpV)l
zez|ohUrV;wkYI_>=y}jhvS~-~Q54~^CeQEdPf8v*4HQZ$T9Cq8D)47=S8APikHnwp
z^;m%hj}_lHhsxVM`P;p?T1+L*U88qF?ZR|=1_w!OL@08Qi8Dk4BY12Hh)_JX29Mye
z_d+xW2^~fV<vtrF4}MwQ9NQwU6{`J7Oi0YMdIbVvU`6AiA{Fuvx>9SlCk{%JAXs+o
zUNWVHepzLu;-37MYV`)37nX5k07*c$zrxOg5?W~lV?*O9d7kI@mI1sURUsah$BY(t
zLm25T_SxbcM+sUvp&1edGUziMwlUIT0Y|P99heGDKnnxZj!{xmjfF5CIi!hy8Vht8
z@IKWN2E|iU_MvXGS;LTZovBv#xl-55fc^t3;|zq2sEYuZktiE9$s&3NSte3EMOgi4
zRMv$3X|SQI43Cl-o9|oj*z<kx*n1ehYsmDVaEqKvEmYAG_Xfo}<iuoEU4g@Wbe9Y}
zC1r$8GvqP`-Vf)esgVdZkRY;e_4zWw=sdDJ|Hx@R3<^lx2xj}vxei;*azNtR`>Sjl
zwiAWsLFIdATNGM+(2MRicI=(#a9SD&pGv_^FNDwnT9eH|=3@*#@9;2?H6RU*Lw!3b
z>m4)*22Iq)7<)+Xs*#~)!v|;ye&Hx`ra|(q(%Q?+{p>8}@_JdgUJ^ht-)0@b0NsiF
zxzhN86Qw=T>bdC2l0!xdu4)sZ__*f0FzX;f@7?uIsC6<TSDnaJhk6WGH1H{duv}kO
zYp$?IEXnZ}K<s?Eeua6)1$Z@WKvH2{tgoeh?(K!E^||oqa;ob#?f%?$J&A(i>Z+Dk
z6&9G+w<%rZWS2D+e$l&oGfr2s8ugoULStXf=|?(r9Qv*v#y9GcXzEuo6NRYdoxF0l
zZ`ND6Lc*F-Nbh82J$++VS4g<_o3DTR^6=((*Zg>w7gtS<MTp5)qG06<#b|e)=}+8U
zO}msU7ISCnMp2rFRJp%XYB4FsXGVg6ES2b<FWf_`DMGL}r(THzJNi(?uF>%{D}>~f
z8&K_sviCup;V4B|M0Wz9OTTRxCJ@|hF=`~LJAYjudvjP)=oQoaWCujPhNrYKqQ;9W
zx9m%gIIQoaPwkapiIFkh-NC)wg4fO+qHGn(m`cd5M^Rmm!p$@VB6ScJWZ@pz6m@6O
zoUjF{D-NGDk?Ab9x@Q66#8M}@hE9bp+V)noPXn!ROUzG(a^Z|odt|jh6~H)$oE=Ge
zj9Ae;Bt@)Hr$IhTL%JG~A_7D<g1Bmt9lg;)#^J15{CLaGMc~IPKo92NHPtX&z7gF)
zv{NFPZmMnZoJ)`gD9ly0!1<sWVY;6$^E{r8&$3<wvwWhdMRhZ-I^i!6@ihn}9RNfm
z8ks6{VA|&ouPzua@54-wnj+@<HDtP%my)b&ygcXnuMa=opQ|~ghrW8>&+j6GV+y{)
zVj1<@y#he6VzH-3m>*ilc|BS`y#v>0tlFSRLv!Tj@bvd4n>UfAD`j{G<6TSr8MU><
zma@fUi(S2&ztN4Z;0__kA_bNktO?j9#B?G@=3ho&wG{rPIii#O{{E|@+gm>!!oG(~
zuN6qbi`K~DMPKBN*2rr$BG^Ei^-DaW!(`g{9cq3t)+sj#74`C*X{x;C_@KvP?SNh|
zakxX}TcT&@xmLM8JAW7_u5lRfI0t^r4-@Bd>YxYwycpCA$8(@1`++XTvC2$Es~uB5
zEkR=12hVC2rvWmkRBAhp1(H8lY~sgZ^#gu9l$C5RD@@b>i+NdCL<9~@JTG!wfZ!>8
zME<}46F*q;W5G+`drS5rcEUMPVMh{umDBNzG<+ee`x&$VcAdWV=U^y3C;?<&Ixs>B
z1+zCKm-_~bPyF23aq?X!X#YES_dWLBKFEX@)Sz&`a8zL<oPDga!!l+8izwDNqC3mJ
zWBtR=js?XJa&q5=0M4L;bZ_qo|D{-yvtMss`&K-es}HB;orCD(1@GrOXP;&bSNiNP
zt#p5yPuxS4bA>Et-$Ka-eS;R#{LfByw2&r=B;W_l>VEv9VRzNtKM}SUknoakPke%%
zD2PQDMoN9BNLA%}3vC9K!Vgo6B_m@xJA&dD-E_{zE4J9aA)8i^NWsYHOTW$7mvr`B
zG)aw0Qe#V`JkrtagE-iWGY{wEfC&3Mgu5SI%1#h0h+_-jPiPY&3}{|lwh%|CU=amp
zIA&fMKY>E*&nXN7e+%<N${aKec?u}A&>{(E{Z4s3lDA!41l^h)3`KKg>B60uV&G)J
zZh$tjv#_>94XWglqT?5qb?k(C&P0+9Y+!Xw%#4TJdj*oH@L@Ffb%jP%pBS+77L37;
zX9kid?2559>xNIqqWjo|TUNBF;-Tyyn#23HD2G5)e3#3lhj0pejQBWnSHFvB8O|X1
zrf_7jP1ueN4FZgj#rA(=?@E^AIF9JA)CagaDzmb-qXHKk#wSJK;2Sig42DOdOi+;R
zuQ%Sy>cPxl1|}rXvK<Z*-8J3SwPtO(ywu93;<nHSL;UgMr*|K=r<xIMOU;O!>%~El
ztMV!0{HsAhgQr!Y>Xc_aITx7L`hi9g4i_7vmn*o|0&#Mx#`MO`t%nrg-RC*<W}DnP
zjVk+r!;_eCF(Y>T;?7PsYK3g8BR?l-R`+s3CnxlALX&uK-)9x1@)6>LC~X;ZI)-+q
zr!&I5$fj1jtxz>T-wOAv{+?ftLnU)dp(#fq?hT*q8|%=DSZiX7V{u-_&RyY3RE?5Z
zcX5IeQ14#RU*TPgfCDVs7)t?L3&T?u+hYFa=;f5c9sn7lT#>EN_=N6R+&hcU6{~L+
z8t;_Q8ybuwjkyXP`98U1+4T}iLg_%K7!lAvO6b=+PX0T^3eXC{mE4RGCBi%5$`&!Z
zZFG=}H2N;%K-;DlwoG>^(_0Fir66l}mBP?n&M<LME`hE3O7Zh<_YAs`dLKOWT!}cd
zDmhYvYc+0(pC)d4A(_j&5p@DB3_|6Lxzsvb6k!8*JayK}HG46Sia3hcjUhU9cXgSm
zAwAtKNj+7N29`&)S40Nd^wz13Ggn_KGmglZg^O$9njg0_x*)R#5jD6nt}VGx^d+wD
zDIQYe-5V;8#{AigJf!)|;D^ju?Eo$C-h)q|u?L4!Mms>01q<T0CxeNReIFmeC-3jS
z`}pJg`%{Tm6Y~wjpfwK!+gOO<J085Yofy69)B#sN4RiN0xC;}<StIj^J2I;qT3A$D
zdf75w#0QKO`30jjGKw~6$ZVasn)F+wr4jII&4fyq*w+>REbud-V)Fpbt>=Ly43Pq(
zvoyg=BL#9a)B^mhwQ|fLFawq;c=`6<HH`Nx)aB0GH3yI7_4a7YiM22RbA2ZrVwW%y
zym-z$W~orTebtL+5IuvnnP5K38Y`Q}s|@EBDQJeSH{>eDS*c@Q=V^@Ip$hep(daxa
z6c1Bem^v-lvje^fb<#9@w8&^kwM0+U=q*bXUD6Vk@Kz9z1hLyyuEbY_QGOyA+thvj
zwx{{LPsMAZuaNhm3a1pXcTd5S0SssgG9A#BCuT`Gbp27D`Ti&ftWgn|$5%%NeVfEE
zRqk%@?@m!#h3C>T47Dl={kEx#Q2m|<xY5u#3K0pVYDQOB!nQ0MrIJ2AxN^B0c5sgK
z1@u!xd|Fm+Dz=OotN=I<$$IB@b{eB0*}!CBX17#xCt_RXj|sUm|ITlif8{q`xA!0Z
z{H$`W|5rsZ4;FeA9awJ`W6ek((%k2a0}ml<M<GJC1-ari;D{IjF|c+a32q~}Txbwk
z1GsRXgn1$GNP!DO*XK{|4^q#mX%rZp({3wc@4;-bs#YwQf-+-n=edjLU8F~caypl|
zG8W3f2I+IE?dPT3SOUB4klp0JT=n6}(1uckv+5T2CtEng-D8L!Pt|u(32#@6SKP%*
ztb9S_;lk2bI%+c(<hy@06`l_CoyfF2J~2M*&AoOX-o5{HAD_8<kazD_&70iK?FY{4
z-hfkip^L7io_lja`=%%K>X$0tpfo@T{&K4(@I7fj(Z70Ca;~qgOHZ$^$~C~8t-r1&
zuhNLp)L&f@O|Q_1!bJ4Lhu!-V&r%}&Kh3k$4+Mu#zdaopw)n|SuX5&hJ>e)dFkf0q
zC^+u-5iXoKu{+iycpx+{!2@zC1eVQh&Y8)lTk|6TJx5c{Gtvy**S7eIz-JN9V2fdX
z=FFWEC}na1$#IHc|HSX!-~RC2|JR%K(jSR@MNUU{o`VoE0WcI`l=FU1jCM}zr3O6N
zE)A?zKVOTGkHIyjxMwvXJi+R3ZTKm%QvIHx`>2_eJ@_o(8NUqp(tO!+mI!ZDRf9a3
z`Kd1bS9f7~(=Mz>U6>EL@CUNIpd9@+O(KEDa|H_}TN_OhUe{^WJ56Sn(X9W7+J5=)
z<6lmx&EAo3vpP+LO3(>~-Cv}zW6A{VBV-9@C2#jHjo!my&#_GI>A!GysJ*)bzwY$J
zW?l@9-$}VIdFspE=&3Iw5oK=^#nAPGEudqWQb0-vehj71vmG|`SJD%b_nwd(a%HRF
zevzOq%?ZDq;1@k6dGl4^<DXAAqviX(wR!E=J-ucpXm(+JI=h@kb4_HaugF8Rza|e8
zNR(CW6<Oq5Uy;Qh#f<7VLN2{hUNgWY75esv2!DXYt1OwiVtfLzX3-8`3**4m0s|uY
zZRukfGz`-oXdZ#mXXk^}Xvjen?m~e9A;D5*k#iy2!f5K;xaJ|-Wb}!Ar7H7TkX|Mb
za|)I0au3X>_Xr{||5k$e3nU(=2nFv*Gg%#>z|L9Xn>{ndx4k9)YIyH3arhWdrcaqa
zmXgtG4YCL@k#L?Etd-yD(r^0dXXlGim0;Pb6n%hY=O*Kr_RXh#noZZXIFPi5L=A?8
zUr>XGm=m&~Q`YEG0t!HSC39Do6|<%QNASFm)z2t+!-oghLfy`yv(|oogk=Rmf&M9b
zmsY7W(HmM3Yu=UB%vH5ejRg!(24Ii-#cf&__HCZiOX#5dnkdz&u4QA+cg(mz`tG6H
zm-^avHLQ9nv1c5{D#@TP@<=7Qeiib=0!g~3UGy{j_+lh}M+`eVV}Yf#+xvPscSK;X
zJZA(m<l8zAYdQLh`=?P${q}?tI;HQDic1LxX;2WrA83wi8QQar**Q@JGE^ni^LmxN
z(>V1gvOv1b#2|{XvM{}C`jr6|HJ8M>?`Cp=*G;ZmZ#7+8I)Cn}cFxWO&}6z1Gl!mN
zS3-Y3jk-{50rFsQ+j?ysg#fi>fVCyl-nB|m+sIn6VD$L3IDV1uv62hQeAUEfTFBuf
zRamSPel*+x$3js$sEu=TiJiiDl#6O;6fhPR6PYvQx%kW@91g2S>(WS}7OF!w1Z2WI
zN=TGmQxZxRIu-(C5s^hK_=zkS^4a?SnQWTG>c|gHYR<9{Ee?ro9E<~GMZrM{rBR=*
zT^VvVrO1#19`LmkckILvq@-u*frNx&PN7u}h8+z@M&`Xbi$tWx%oWKJq%O!ZBXO>i
zm11Xec%d0IS!o<v62gF{?!=F}c-^SPfObuGEmHRr0(;P1Oq`KrU~#Av!EgpB3{0aO
ztlkt8wMbDrh}@-L9eb_r5>^rznaCc}j%G!~9ArQhig268(6yBM1z0q9kp+t^MPiAI
z2Us$+@Y2~O*u|n?C|6*)It8`LQBFp<hfpj^ez|Q7C`?4L7{X~;z~p*fkh3jWDbrCy
z#}~APQfNQ8SN4FRx5=qjhzM_V)GtaLe(uh=O^4K}l3s<IEE2|&G57AI`BY|p%s^=C
zFiDU>WTqwN0i@&e(6Jx(WRLS&M}pV6{HGF69{&l%)0Zdm$qaGk`SIf~-+g@45k03K
z^ZqT>W0d__@=~{C7`P+xvg&0h15*--&7%1{TcaqCZwUGMy2nfrJ|<Q}2Z<1iF7uq3
z{n+T%R#7@)mC4-RVcKn|fx5Ov!Ny#TD`p_(wC9^p5Kphn<G#)<r}!YD-UqS>6hQbI
z<-4cqIyl;ps_g_7W6I*H3vj<KUZ+8_r?MDBbjtNmGE@$lxze^<mGywOP?Sbl2kwf&
z5uu_7eh@Lwd@e`nKz)skw&lT>1l3%Ptg;AEQ}iZ|C^Ft+9YqMd4*m{&<HJ{|Plv8W
z?WVZfKw0dFT*<r3I%Udvf5HMWGO+e~qBtJo42jTS#!V>*gX+cMoWbIJYt4cc<6?$|
z3_DEs^glTT!B89WVaUo!Xi(@x`9dr~SkHN;A`y?B5A3AdjC)7j@yGn3`v8e6bbDfk
zQyEv<>ZnxJWq{>rhAtDxfmqL>TP~-d5=!|&252uj&!jM2mdaUfQQC>3zoJkRf`(>W
z@&@WuAmm)l5NNmn%4_H99%aev@cn*w`<GL%v-*ybDl-b+tx#u(BV$mHE4D4Ft3GE4
z6$_mnrGs*ucg4K|x`ywg$Lwq~L~3O7jaV}UFrgv?lEi$2Jc7DrW@BGJeLZtnGeDCt
z)<Gdq%&;%@7L<#TM{>+0CJtrU5R)VbjM~h_af}cV6A^G0_4)_azeTMt=Io5S?R>9%
z9~cp|?zI=MCPcp-G^`J?;rvjLGcK1@N_S5v3>Otzp<qvY)|=OfVgTvuw8+cl^d)zU
zo{ktfc&vP=LCbmsTpn00)-z_NHQ4npQ^#aAZ{wr^z7L4W_kj)FK#EU29A_6#TZY-a
z=;w{%V=K!c-x>7e6JraAxZC$Ilnfg=ifh(7vz7pypRm$i=<`ir@t(T3B^HV_&1o(^
zh331L$z$db*GxeDjQ3P~6mn0Mm9-D3J*PfW(ONMnu6^0Jv+{f&5OHmx-M$$kTJ^<@
zy=z_?owJL>zSAcW?1|zs-GHtGiF?vM-!d>2y7%OHW8*c_GZHuFSzInBzmBd;1JLpG
zz*?C@c0Yu}9Mmt8hEEPJ&z}txxF^T$>{%yQ(Cs=av1jAjv(a$?yVF0{ds%1sA8t?4
zAKJS_RSWOeqFDFl9=;HxH+EOb7Fkv2Iy^a*>W8?8sDpD08#(#{S$V&U$E;pl@ch9l
z;7r59bv)ogszBRn-g@?K5$aQca-UVF`T|1A1=euqN|qvV5cd89?hkD*!COP)cPx2a
zOf}%E*lF_R<*H~W4amof5;bqJ02h=Z;Ifp5h@xLf!XY)o<pIG+I<D7E&sJ8k26c)O
z(4upHz-_;8!06qPjUM)m9(r)?dI{4uEboLm_N9RT07{4g^5Rw0)jP;hcFL|UQRpbH
zCZsVc&(=oRd-YJGiv~kHyi5C4SHVlBJZWZ6LeAoWyD=!iaK%M1<;-=pbsE#vRsFje
z_SDo)REnWozrVO$f}$5n!*N1DKs4fu*v6aho*Dy+K#B;G`~;PzX4R%74FU-0Egt7p
zGhR6KoM5y2qdzn{d0GbV56_uL$HF6<6@aV;ZTef1ph?*8oj~vR_(rpTn>AeimP*%t
zMg3#>O)WTQpr3Xhe>s&wy;C=JOCZSez$EtwKJ#LP`wZgF|L*qre=8MrUcgw)U5@a=
zRfui^JX8$a^@@?1T*}SU2j+zR`(3U?YJXv0$ty1x_kBC25OA3S4P2s$4|8K^!Up&5
z7L_F}zD~5rwTY$%uCuM1T+KC^<tmrzXEw}J!wvd5|D<ba^@99F1VGuB-VRyxirV5C
z*&;=Xe-ebL?jvc0RT{Vc!JhMyw9f4XGAE>*-GW$wq+LWGq%U+w;)chLc5h+dBD>ji
zFKj*b9dNmi_TA`E2h}Kc=(`F!q1IA)jOCWL)NXE5#Z2@|fTCG>k9N$1xjzPt=Aiz#
z{mV0FVS`vo<kr`ai521^`ciKo76AfGtGn2%V>~Zawy=&cYWP<Qv}@?L7?BxOxFV%`
zm6Icql||_WUmJD92Q+UH+G=v`TTAezS`m#fWmLn!S-rbn&)6d2ULsWbI%Ve;MGL*l
z4z_n$Y`V}_M-EHS!ALEtFM~-br0Q2xj)uEm1;+r5hOdY`b<xB#!^>*A0qfd2T;=DY
zFGe0OSj<wSf%S<kD)|*HO51=keNh(z`hyipskP}0zuc%I#RZ=Bjk`i_VZA5*D?-jZ
zdOmAH&%2cE<L>rT{OR_`_q*qCbnfIK3((z+sB=4Dmkfa2-WU$Aj`h6gd;u&yu1~ro
zA{q_XUuUofT*of54*?>xeGH0gsZ;Zw&YO8vzwT5s9B3~}rm-?UlXWZxChLjsmSoXW
zMczmhaav@eysBRx#g@G++-5erDqYd)1osQ2c6V_D@ppn6L$AxoS55E?h%ReHVwW?8
zm=_R89Sc%-?f%qJ5mFOt)DVRr!mdz55zt*}wlv$K^QZ6RBJRzK;lb(*l-n?}GCed`
zXwD;hY#a);<+T9fl@kzV>AVAu5q8505Xj1(j;7rTni=l;8XWg+MsgplG&>#OeTmnR
z0NRTVYF`fE=Is185%U%qyXcv4SGIKY7td=J={&}O#lzn&49|IK4MGmryPt`8nkXp@
zF_JM+FRE6wKWET2)$3w|2U-vTejBEZ?DOBJ&yUCmdT6^p`DQ{z5zT$8F2>4=I=jVF
zFu+6;PU5mRTm@Hmkbf+GvBez5EgEp32zp$YP_;`oqfAG7_H@FUPB8IuoEDMtPtRfw
z)K7o_`swaAzWeygGuJ{=C}otk7s%fbXfsTFuCxabJbp-C6D4-;NlnI-emM8mmsN7W
zvp9<3;rCoEHKfNk5pG9-H(xjwv<88ml{@0|V!7FUtOkAFbH&i3v>CqR8Y)N+aNgw`
zj-NI6rtaIO0c-Tk$D&91Jn0%gYZ<y`-Z7*2JR{=|S!xDM&$Ev)2n0^aJJzvXECB1o
z(D~*dCcWge={QLiJ4ps$%9M@h{63s~&)TZm9XQGPxLRe=%*C<qxVS)Qpm$C1O9Fo#
zC1r`zr>b3B*3-07B?Z98UM}uk#y052QFl_g_V;r%dCntb@ABV3m)ulpe^Y{~0M$QR
z+qa~D)FwB;EIt1idYgmuXf_bm%Y>=D{|3smp5Bl$t*0-dOiO?|W@la`&7XgIK3P&8
z%ES}VP}8~D<1~Njefbx#WmjwpSe!_b^sPa3l8mIhqlR2*GLl@cV&Qu3e%fSd?km*G
z^e75Xv?_Z`O8Ngx`5!S;{`}MVc~bw=NfNDE?M*4=|5N1eK1KfU@#h~ubNPN|8CTQv
zkq~&+tM;WGQteAA1fqBCvDzE#4BA)O8B9pTYqj*H)t8~KsJ}y`y()d}U!1-hHomI(
zTI%!U&-TqZGCGUv-MhH~RSE;-@kQysisqnu`^pX6E82u)5M=!JcDzUiptEYAov%`U
zkXiaq9b_kD#2wq|TqIwAF8U8!ecSPd5TE^j7CJ+`XUOOL98~^42mPLN(3=gf@g~FT
zXmdMBXl{g_u@c|?dsvD4QvCSy5AQ#H*q-O~Rh?5I=$Ljakh^^;MU48zyZ6gO;`Avw
z+kNSIM^W|hew8J4madc_&_R&fHbNWo^HRW1mxh&wVhu`pRM6w2VIr)Q5eV?<@@+Tl
zwt4j`L`{5+grR#?TF9;&+wsuoLZDNF!ghnY6kA<7Evj9Kl^{rl7w)SXs=!1htf52F
zLS;{xVF7Mxu3+se@!?#(6i|;Dxe7%OZAs%FfAo!ay@h0GdSD2eqW{#{1^yFT;a1~Y
z?1aAxkL;8<Utsyw{|1(yDj`TF^!l4nc`o`j2PBSki3nBp@(^lILrBKK5X!&D5Na2O
zkcfWq5R$B4G=xrR^c?T6W>DvBNiF@qs44%Qv(bOw0`o^nj?-0_I$pmMc&pvXna%$>
zx;#H~!b8A+a6O1pZBqX~Ykuva{=3YYm@QAYzLb<`8_oikZS=iw+{>sV_pTeU4C(h2
ze$yzO0pI!VL<Y?|2%NbBq0o;E4Ub$o`ls6y2;1@<z1f#a{TLZag`s4NWP&UcV2-eX
z89GBfW1~&rN;m`pgn?TC1NqV<0FbECKU5*+OGR`YzzxtDCwiQQevfd4WKp_7;}sn@
zGm4!?ZNiRdOCw4%0tGg01RI3z4V}hY5UsfN&Lcg{{ja1czOtT{K|5*$ak{|$UeG>c
z8HKSm6TP-?Vd8JGWzcf(RF!HNr=D_T%1bhoOrey55_K;YLJB>q1~r_Vpw~tZNi>Em
zC~c*6Hl1fDI_w1j4TPnG1T+0E0c90>+gb^CP5pK=aQ6!+vT2me<{cGI#86MwXaK>?
z_#SL-^&l!~?rVGuBrk@FY76w1nVEzIB#|1&Pz$S<kP^I2!E09(IgeZI@Q>ERdUvX~
zvLqUI+2j-abh~{YrxVUojVBq+ArIl7&4MN<zSvbM@Q6nGTY9dc&}SEnEG$@4+^+?2
zFiM-2Q50rh?h3o~LaqJArfQ0fZ*KKU709EFF4UT}pfI(D&XDWTF?2oZ1DG-$Dr$$G
zDQU!B3?aJ4pyzfOtI`@2#S|g62TSftaCDmL$_Q$~UrGIS-|fNt%njBFnZlyn%&8nq
z5Y%BSnt4zLQ3wb&6|Zd@P)&=H0Yx+D4G%hV1)5H(?B_~@dn;kzZq{^bnN6QUZ|IZQ
z*(0I}Jr>p2VO4d}4si|Kzd^SV0vI5=s)vhPL^dHsccYK{JSuLjfM3-+l=W|Wn1nRV
zuI=ebfVDPs;}Vt=1WZH6tDYvQy$1&E-TUodPNBK`5T91vmp&%&imEBTCRDUyohcF<
z+WEE(s95p3ZUxGsgdRwZ&t+Z{|3RX~fhAX_1Z7QJocf@(K(+>Ea4Tn4TU9&9dorvY
z>CVzE^`vJLB%)OtkuL@WacAD5Ii(a%%ev^XcuufRSV(}a&h_@-6~U>yf3jK12#WbB
ze{)<mHXrOypUKqB%^>myYsa9H8!)Wt%Xb)UgxYap9gRulI8FU|a<tQZ)V4z#HVS%0
zG@yT|ES#}dXs}^d+Ra+uVTx42HQ!2sPhVc2Hgg3lqx)A1xKa_;1lRJy7fdnWa#YF`
z7-2V+rxz8bF#@k1Wv||xdgSybhe>cfV<NsB12XdzR9<|GTErDL+mfmIMt2qU&ft%^
zEb2ztx?P&j_Oyj+2;@bDJu`M}(Ge}-xn{%=C<S9}jGa4BUqlw;rb@gIYy*FqhUIJP
z(H?`0RRTX?q`(h$QCWHT5bU>Eu^8~`6=r<8)5<%TL32NtA3IT%D|gq0t{s(YD6oW?
zM$+InPlbk2>ddQale(i8X;dRgBZ<K4nkVLQ+H(m^Gb?>-$`-b0<XI?vaW*y$YL2oD
zy0y&IYwcUc!%8!w@e4)^_+rQ9yMi`*-dHkM^1RL!7WP<3>3OVNQ3c<Ea48Sju&#$u
zxe=iQJ;j3*YeO^}Sn%s0ttY}jr_O;DGXUdZ1!lDNk+!J`8#3-z*NPE1j_xA7PF}rP
zvG7!}fDaHW@B_vQ{D93B*j$&|HLzVbQWHlqI*@(fU3S!CIk3kz3T*9cW67O`4J@o;
z|HkGG2L(7N>snNg#9j*r)v_L&-Wk-p*)lx`u%z-gRHyF2Z?ou4g8|^~#xD8tlX~8l
zANPZ@YtRrT`eDg1Tu*|^B~&AEyCC90!@O`MLqi@8q?{Fu1v5nJxYMI|U+6Z1rwYqk
zp5p`wyPML=)FM-(9U?|dAHSyjScZY!6@hV1yZ#<+S_lk)t9J+Aw%M3K%F^xHPoxnG
zB$tB`;DcrDr;2W69H+ssA6Fem+PWm3_lnFZDR4^KQWu&hV#O|}Bb0IB^u=i|aGLXJ
z4~L-~u``=KdNG&WqMt_zemj_TB4?dBKSj<@SEdEztQfo|1)A@m5^8(^16g<Oyf#41
z!{@%hxsSw$rmH?r22O!H2e_0auk-njKVm{ZmaNK?mPelmXmaAv{QkrndU(+rI#31)
zxwzl5o_unD5c$M``bkC+srg#<MyUZbjJTSf+R5v0u|N)d%<1ED(q1y^<|s^xQu~$V
zn*~Y3AIf39hb;nJu{TNipa~>(mb)h0eqHLP#dQMPef+$=I|Xa|&K2>SVr0nxz0(s|
zqJh;YTUxMm`f$xO0a6qUm?vVm=1s<S19q$e;hEt0$b$e*=%vAWRWbqlM|URKE*cMr
z216Zp)>3I{FP;S%F4_HR%Af$TiTi`D%7riSEYczkK!O=x4h+w(U}oixWQs1P^fu7L
z)B>Y5M5d(=_qK&w7VLA?ZQiyt3>?JdD?yc<3!}RL@Pcsdva5r`zbx8ePbC7h1b$?N
z#wg4TGszC~jJo^uZ5{~I+=%DsWPyAsNw!!aB8u(|Kx&vRw!(E8EDRPrdbx92s{2D4
zyQ(xpu`Qc`JyyvK7}&Q6SX{%8`(vJZKHdI3ZqI=Bedjo6YT=>{6@=}V9r97<;3lg}
z!Y{k-yFd2VcjBb)xvxc}mRFa-OH%h5jOup;1`kD-oB?X7mz*ndp7A8(ni~I4g$umL
zDNX26FM$EmHFkvW*Kp{`uYpexSYz&Ax%Jw(RF3<T8lSY*NrhH-E^pPiqsBMuDL4at
zyQE~iQ6(|;{q^VDPp8m5Y1^k~N068GE81=HfLroXCLVp!3%H|2&q8%Mz&zfZ_<rQ*
zV>#mYKks&@<If7`;UXG}=ykeDcQBPLqK998`uLHa#!opGb##8+X#S=JH#bvOztT{-
z@Iu?p&LH0bhmQPB*t-=@&8hnJ<*#N2;UI&6i-#D09%=K2V3}y$G&2aizWmkhFnzv0
zh{NDv`3a_3b_c1y_>CtXpAtVP$}C0nvKK|dEc-#*y!Z_edKDI{2`*sVBHi$^@eH?g
zqEr?htJ^MiBbQn+#}|5t1x&1b!((g@ep`2^$$hTqlcTfpWH>*4yFGBT$aj2P4&0t)
zEWo{!eF2oVd?jvISrW*etWx(Xm24S?Af_&DAa!odN5IP5scPLf8H-(pnP4fpo#k1L
z^$P-OH<+P)o%hFk%Y6>d&$mDP^lUvM>UQRExHBVr?>Z~ddUH3LDMBbfN4V8b!U~oo
zvXSm#zdnFfS+{Kd+;~33yl>(@nRv+2FcuL`IIh*rt<3<huJGs#u5oL4+B&Y*z*leh
zSeb;CD;3fdWFQpwWgICPa(A_cla-4=8VI5<b#S!?HoCf9EzTViqt%wikZN6QJS?dp
z5!BV|7!K;_;g?p)tQXw^TfgWsH|wQE(mU>y1C>&7Jk{X{iG3r(f)t|YHJ-<X;HZRk
zU-}*=LEOVAAsEPr27XKg{aV2Xw)(}?jHEckDZgqoo3}jhVNMRB+_sum)R&UT;xK*@
z@deIxk?96z6$RXI%2En2aERE;@(>bYle^9;WU14q>vZO+d7-eSA~a$_KF(l9<HXw^
z-^J~x_xIcPKR#1=tYeVG0k=f(Sg@I+?;znGaey|#)xlk)&Vdg3r9u!^+WawZ->OiY
zGWkWB`Z)Zt)rIR?TN->X%`^k{<z)Y3z2w<e3}aI$)A6Cf`F<&6581##qC@L6uCi1b
z#B;xnNn;+%kfI;^(?O62Hve%5*u2fj&8us|j8b@#9}7WMP-dR8ePl2~TdK{Vm=F36
zDHyVkw6DNbvWH<Ntz`BUdWdRV!|1gjV=RJQrh+zyY!bbV_XXAM%g7ADGqZp}>dyk6
z?fmn=&pp+EROyNoEho&y+|7U@9Sm)3*h`@(8}q)4Izy`%*pW`$Dmi&>LA_M26l+l2
zyIIC8wPZiN;G?$5z+-^Kr|qh9V+thRvLF|J5D<@Fc&Iq&7te7Jt}>s<e0Ea+%TfiF
zHnOzvnnfrrAh6X!yiQ@wB5U?U^LMwq?@u=<sgu?T`oNJhfjT;RnCL|pCky-alZ6D$
z7p97vbX?$dSCtRt+gk_zN_{ECCoW)igE2J=sW@4A(dCNJ7R34O6rq`hM8xn>jw{{9
zTI)LaEx5CV<dT&XY9uMe2=>~Sef3%YG}r)!7AS*F(1*7H=$_4B{i;{;r$*s2gyr3_
zKtz??bRnlMlNLxz<kvL}g~GXXlnA_(9{9t2W;Gl_6-_dhfqrSi@A3?GhoqsLK`N!w
zpe(|X?O4DZSwNJSR3!;Z%T};(?k8b=nuW;<aBC!?)ESfe4lzZ!q!A6P2Q}_$28SC|
zHwu#$DjSp$)ms;7pb)^ikwLu@Zyp^S#(nM)l`0IG!$xd6DXes*T?_rH_9r6x_<ekL
z`|#l%w1%o3&hn1akqX*T3jrThB4#=G^dyonk*2Mn(}=EPK&oT#Iz!h0fNO;(dB}XP
zv{dv#Me)?QV@N?A8(3|96|rw*e<TNsPv$AMMW89deu@|yN{_o9pMy#^r7sgYoK8or
zptNytdV!DuJtTCwg5(&wlLT(ejwKDVq^VI80R22DMxP|8zO%b$aU*NO?4uXgYkiRF
zR-LR^TuL8jd@t_4d7VnIN9&ycogD*T>n0brbnSO}kd}&K$wI6(bS<qc`v<Z2fB;gu
z6Hy#4W=uGY%u4rux=}|PA;1!5pSIb*`^O)fEV9q^s66W%nkBTl!>j18gfLgx>>80g
zFEHA*ZvdFA-rAnm(>rJtfrRnlVQP8k!iRSeg^(kX-F^5TdKT8x0mZ72Vkwd*6rSZx
z&U?rY$z-Ls4$(uy$hO7wU{%KY;<(3kN21bL3L-Ni*6_l368Q~dwpbY56Aw&$kI8B)
zRtzCx#O*#n&s)9?$)8iG;X#6ybChffabJe90Q=&)L^48D;Q6!A8_tVT3Zx!hEtYn|
z8JjUyVAY^gwdx0T(r<psBQOtEFL+g-KHRye%bR4Mheu;8wy-bJQEQ(Hpc<t&v$}WQ
zAl@GS6s<NRP$Q69JiEgd-tNm9Rtaqn2i<Yld28P>5}Pl_eMgr`Rqua_-`#Hi^2;O8
z`KkJ3GV&-Y_Tl};a3G{7WBP*$M0kLb;{;(>ya;>&G$aC&((7jj02(bj9A4e1iOE2<
zhurBWrY%GpB15)eI2WqCZ6sGZi-Mg!PRL+tdp=%<>sGfbK)vEk<eR6;egE;(*}4@D
z85F|o!PK6oO;!7IiQlMu;%EH=>Ng6}zK45IwuV#?uzpj`kFiFPRYdgysux+kEXp}H
zzovQpAou?B-N*aw$DiJx98%KvJ{eeB#0AFL7I&ua!1op*a0VV58+pYYx8ja8Fa~cj
zibH?Ak=rK0GB19wDNJv^(I~_eRBQ|a(v^@iH?f)mar+no&=)%0A;--9|BL(k$~cF?
zy=_~%!_-G5o;%xu;!(N=$5hH)A<m)%PQ~khczhiYap%X$MINy6U>(#wqEQd5#ZeX-
z!6^9&3pwq4-#j$x4baG$PJ}ZoFHTStTgog-WL`15)ls{W)R?UWq#qSB4FUD?Or5W~
zBNTDbM*$LtfP02;Colz%#n8PTxx)P#O2OT)QhBbfsAITqhr1@H6L@1lYQNDe#7bw!
zU?br22HYJWka~%POT&y@a2XLinq`EZeiIrd$J~eQU;Z9{{P_9(>5x<N)3cB!?j+Zn
zQk}_^kHI0Y)voYhx}sIOJ}C9Up$!o~905(<X*DO=J)m`ud_$y3(GhS296gNgM-6ii
z62!D^q20ymx^~(h>LQ#A(C^emw%B+S^kMh$r)RU|yMH@Z`mq#o`{C1e_x_Ycp?&p^
zL)V&vexi8)GS`|Td(6<u)6d#{`8w)ppjMtElp8!h>*^$(^-)sO+NQtULeP0aFW>9*
zvO%|0&Y2kQGH1%LasO6oFvp;-9+9r%8hVg+N*o%R;3a@AlF!fSqUYvc(R6NovvhX3
z0C*qJj){{=?-&!&y3*-WFr0qDNQ}5_AvUz>D98g1T<-4EbjJI@zZr+aeMjzLz$Gqq
zsaGaQS{0+hJ?CSxo2}+Xa3R+lfr_(N@u}94i(GnYkf++;<h7D(y}gq5)F4l_pWO(F
zO_js*xKZ7`f*XWW=BDJv+3l(jcDZmd6v8P2FH%yy8XPjHGu}3KY}tr;3R}vXIkIA&
zpw1(dj$p0?6ECz8l?fG3lxP;X6#ChuJQ%4+a9aYQ!gIhAzGLXkKU(DSXT}K*GxCyI
z=(r3AnD1CpupD-BUPfdkAB7c4ZxvASLc>iTB_OQf4RhnjsPzF0Gc9Q8=?W2@Gofq1
zJARRfo+tD+@zs~fcEcMX8+L(lQF4|v`3}bn>9fwuZ?xw{w@xXmzg<OHxs=nPhaf9O
zBRM{{BEWf$Bt<^YDU_y7Swjk}r}i6&SE@Z|spm_G7w1c;Ml@fd0%UP7@&b=IoiOQ~
zFJfnz@f}q$8$;KEO*Ogz=|;s3-w@ax5j>5+H1Ip9;Ab$LDiMpJ>zevji!TCP2m4a^
zI^y*|C}Vt$Lx6pqw9TRU>Cp@Gsl28nM@XWLy<Jc!+q(%jK8*f<^#(4}^;#YXCU^UI
zR$&c_yjTfWZ>+ZZ=UCU2OCMe=8N^Fxi#E|08p`<9^8%TodEbAI4<FwD@@zR4F2}i2
zX&jDz=!&Z<>15ExEO8g<(^V}G&<L?D<Yek<cp}8SPlX{OfuhN&a5E^Ia{qCUw{Nkj
zFlyK!#M3yJA95F=8Jv+wWFimIv%(OhRxvFr6q8OaEKy{Mt}wec=O`I+ZY)gl^n(kp
zL|Ciga)MFswN#fs1%w7lk{cLeOf9yAbG`5Y0c$Mx9m$ab#yFC%MvhlOpxU=OgwL5l
zx<?=LH3DlG0sfyfFrejfNr+bMq6}@+%dal!y4^*QDP&45kY}n?lX5p90XWkXbm%e~
zAH{zCf*#)GlFuRi;V+Lzz)v54{`0AZSlYUV*r+aa9vO}|Iyo|6Q|50By&ZUUnU6F2
z3VC7`x<}vG0E3#>86{^4LfPlBow!WNRM{EmiOtfEqHxGC-YzaBNBKsyqp#N_dP56P
zU#Z`UW-_pOTWu-8$_4(GZE+NG-Z@S;MCw%<YZi#(uD{&m(Rz9ftX8KM{HWg;_F4Nj
zsR8Kj=B+vWy0+<1ya4MjUTRe7LNGKt&eg@-Y}CkB4bNKDrzdY!NSdBCszUxpkhJrS
ziXY_Ot=#f5Z!>)icUQWf1osj9^zYyAo-HH}N!rQWS1L7Z1oi~ZeYAo!dEF=s-WnfA
zKH(K&Kgh?kD|gTf4HICj{nvc%DR`p(5=v2NDWs298Hwo8#z@t3@NXLoMUT=va#^da
zxd#uO*6Mk$wR+^XHuopLwbCn@+oP;btt9ZejhwJ?0TW~}G$SPXRMFwr!$Q*N)8<tw
z<_})C{F*5uF%PYY9p=gxPZ#E#{N2uz3eT=Dee{|-9hCPltCzp>Ks-qQ;Nm5TUXsJ)
z*+72vUJrg{gZlMtYDH=?%*taI4^n@tN<E_kuTDImga7ibI=H_4(Lw4jlKUb3p3*__
z>lgRbrc&#d!}rC~Z3eZEwA7=q`!+Q?C~bH~1b+Rm?xn9fksXedr)8kLc`tD$02Le!
z+PA6CDFIYo%OQFH7x&Otp1)2Bpv)$G<6heMD!?h=slWOy<clTvH6il+0H^`nh471m
zUfuYf<=NI~vyblEu%ExX-+ub=)8|vOBi--$&H9_+iC9W2p2(<Q4^N~LIjXkfw;AnG
zsc+ld>1|;kij<>L(pkr~)T4*wyIVhp*pgvQ+?uOuY21g-9v;r8aa`8GvPPD5En#4p
zPm8K`u!Cwl*FNXLd%V0}OiJPQq3fK_p*r^TJef&6zuf-)l+B)p%L`$nI{9ZXXB7ua
z;h85w5|xxV+*MsgX=y4~8463OgpzbIV8Xx&a8;L6wTk<7Q^#_lv;appjWBmHLOVDk
zt&Po^gIT|VEe%7Yz`TrNfpmB?>Q!<bSqT*ndEU8$AgvbvIbS146eCU4w7C&YQ$FNK
z63w1;npsA^I@HWAQ#D%z!W)0>Zw|DxCE0fUGN{dzSJ4wPPcLV!Un}ouI1|5(nV%c=
zq_;_ol=$KE_V)g{?0S05>kjT+>LoeY3y#w)J)XcSEZvL(y{y-eKf7xk&I(TC`1siM
z7qRuo4ee(=h0)rPIN|-g$1xXx`Kx2+W7Z#5(7#!C*oN$OkIv<R5!CHaiBTL;&Ap!4
zWe$;>QTfZ`9w2JS1=HcI7kHcwLi_8!tJ_(|lfDN^`~`*?m?|~s>hIry4cy~D$0MFW
zTbR!sF9dP@IiE51om$#@+|Yxk5&DC>h8$ll@jr?g8hX@+p6-arc#$zUE{?+a?K&t<
z9ob5sy7?pp+EI>aCji}pK~5`zfkFQt=Yu$d2Uc=Qz1p4@NW&?9Y?MY(8lD#08bZWS
zSZqJ)1}{60!r1uEkOF0?7G-*5uO8wC%F{+J8|d%2_h3&Pxp0gy7f9-u0VR9PgoO*p
zWXlx8nn^$=gooL!QF2_rTlI*M2a*oV<0*Y6?XmY|+oD1CDSL>;XUfdusoGnnY^!fb
zWO2|uPt6$iZ4330$|4bkY@srSfbt7D{t4m$>=ST_f|oPcK`adNa_~O!<^E~lQxEbh
zzB;(fukg~T?5FpiF6<$R4rap<?;OYOO}3EL{=b9#AK5{E`svdLtlKt@^zPNMz&o{0
zBv2xWQ_`1do%9m?4Xo*N4ZdjXrMNNcG`-Ebigk~rxV-v<)go0ynNG}9yoxSPYPeUs
zpTSVguK^EmpV8JAbaxxM*>LIcaW?ly#S1SKkF7^Fm+wA){L3i|eVbj?1-?c9AQc!M
zcWIN&mhy+zh<gK*mp}M5;a{{8m(=dk4!0$>jjH`YiY~q1nA&Ehrm&6sChH#_|0n)C
z%H~fnc7A-9u5-)qVd%W;Ka_+83#xYMF%4Mmqbyt*{rzI&8X}a#lv!D5QXS{#8T{#w
zGVt{1oz%zc^~pm-hd<2QM;aS-KElV3X*~WmqGtU;4No8caliY`e8OiQ=}&O*EFF3Q
zH!>jb`_m5z0)0HFhTrUz4?jGDh@NT~Y|Vul!_6TGU_zt=hd!WD(BNhP=YIz8b8^*q
zss1$L>2|uxG+Kg8AIGIbZfccb?AEYU^kr~uqh2otsK*H&|5s+dLNqoBARcbcT#TFt
zau*6Hlqiges+3%4>o&t&i8=R0xlhvI){;O3;$oV8mz%d*2(<|@RFR1;HCiZ?bM}rm
zB_fjYO^J-<FJoyN%MJ39(H8?7D=m%7W+xz<lH1dXz|iUCswb*rH-{Qc5WN6yj@qPD
zpEjeC2H|9eZKP!ywvMr-DQ>1^NWvkLvT~uSH*hc>=bx&CP~H1pP6Smfu8gCxthPKO
zcK)d#-%8yOp{`|P5D6@q`xg<K5ls#8;gJF&U0D_EIE-6MGhGsMhio19`?EQ3-z00T
z<0)$`Y0X;IzIN8FJ>^{bnsHX#E^BRMy@-XByNm4TR*IPq?0`Y>M*GtqSlm!3sPpHe
zdf@)tSKF`i)n(wOte3P|iYSf{j%;y?S8;y`bK(C3pFD@TSb-Ed<2@cc<4+$yKKD|*
z<&mSRfd>Drqrg(zj{@et{(VhS)H*!tgHd4aq3&yE-P%*mrLP%h#qIy2;B*vNN>c&n
z&h>hz<c{i|UHQUrFdeHXhi}G=3Yu=Q*1+hQusIg+wm#ct*1#vff+Iqp8m0UZj<5Ge
z@Oz%!`N(bj;Z<4<wfg<bqS|rB1sos@L+K*jfCX388!oWnuoKBxL)+6%BtPv$+=2Ap
zf4u$k$3Or4{$zHkgGbB;laLDI+zRz3C8p>%(0H^Q<}K}&gJAu1Q$z_@q|`v##oSq)
z2Hnyuv`0iA*Wp1;(8DMdmhx1??whjD_30aZ`bPN;5)MpwpQ9Ims?#MZ&>lrG&{1^n
zG8{n1GJv3$gc@L#h>I?6oI%9s$Uw9c0o@!eqy)ctbscgZc4^FiK!I16(zc01tGljK
zth7}x;QbO(qg-X9vS5ZGa&arG2DktQ%}?K>-Z1HHieTSQv%1c0nX=V@9nBI(mhiC!
z9W7e0gWC$xt^vijC@QNKjkmj)J2qNbjaENx&_tiun*}3thFE_EcC9zZ{0?Hh26i0X
z&l4~k<6mhNN!!s<<5Li659~-meuEK%$G>B8JI}$=mLLGgIiL(4LKzq#un7F5Y`H;B
zZVHY91h3d8H%{F$6lIYSSb|C7+f(+nPSdMIqdWB5&O!&Ze51xe>9>`%3lK$dWX^{1
z)+w(fuKG}XPoQ0(6n`W5y?(|5DxhHic5-|8P6SlxPFfmw<$hcB)uhEz(MFC$SqTk!
zm_lT+Y2?rrlcU5LzAh=9JazktlT_Tc0QfD(FGxhp1iDvj0J`05^sebQPdAD~z4RT*
zihk)wX?ZG9^a1(U^Zc(*3dQivY55txLrKf?dO?57Ksz0Ic`vr$x8q(c5XRteC3vPn
z@XCsgRLea7pb~o87@Zpih#pS+GO{lN`tloTJfiq*_T|3uT&w_kJm;rP-5xLl`$mZz
zuKf!0l@-iGMx-Jgz}V>lfc8~AY3qRyvJEkpR8dkO<MHS!1Yp;tfx@(6oXL`DZkubS
zN->w<!detz_*!j|M1xx!eKP0<xn8LuB5$@xt5+BaIr~sB&WK(1wn<Qrrg#u}qYT83
zz}b&@S|tzzp==E2#~ci&(JN~JKpX)Gp+(SNA!F(s43@SGlWCH7B&rKKF`BNk6-3&)
zM_45@2$Pkk=!yptnValPfXsrc!G8pyC+<*>RK|8qfOG%8NS;8L2}Gt4cm*)J`ZBDI
z3tG>Gkkv9Av8A~lK@aFJ=@HX5`%6khf0+gLS8tL1Wh1b|B0DUw!y-B<c!x23hs|5E
z?d-4M{T0|>h{v1vmo?Bx3nt)2RbPF2W7}$}93FA)wm7>jdbh>dZE@|k4(@?9z&wBu
z&^Fd9d#}5BtqDSft$C9V<f}*G)2QZC^{2<<&Z)4`y8GftgbQ!BbO0d`LItcI3F}{9
zbZT$7G75v+IA2G+#+|PcaUU8k{Rvl`Y5vB9HzFYO0;>|OF5Pf&#~g5Ri&>-1P7XjP
z*|kOBuA^=g<>>7x>66@_GCwF9@3T@B)^xZaJswA}#~(qFB~F25G3FUH@1#R0;#Vr=
z&TBQ8HI+v(ERfP+y8xIudY_op<{#c2w&%WZ7mL3)nR{w+ta8;af?e9><TL7l%jMRA
zW!}crASKfI`%+6GrI-z`k2*3%rUiWI!V8P(1)k-<-2Axl`<bjBCrcv#eEZ$*nLK?<
z61Qqkwy8E&<5UD!>(onfWV<Zc?dg(W7oem(#8&h3T1^jw@>r?q^daKnvG#rv`T0{W
zbgXFn{Qk!uKioeDWqdb9SQG1~Tor9J!tBcmrGs~71EeejAw&g&>cEZQ?R>S1n6`*X
z1lFKmw+1XDAPP~gR=7M8g}1`ap75vO5I}a*HU%Lm1;nLoB~2Ad6$^(gCu!MbgE<}`
z0V>3r3ZM)Qv=WD#4z?(uk-kI6(ExG_)+~FBfD}PHB2DiBmUM?v7jW6iK$fcwYT%%2
z$z{J8$3>130WYcIUeG9bnnCk4SPgaIuKjV_=4=Ycqw^|_-pis-B+<Asa0ElgF8qAz
zNiN;4hSX`&svn9xK-CVZuQa2!e%_4QNwlZ85bHQaem>`cEPwysSf?KdCXmkJZPawu
ze7dG{=F?fv!h>YdCn~r<VG-Dvc8P?IxN-wvKMoZ#=m>9w{lhl;p&-EY8AuD=?{_)n
zC2!GigDznU-b6Tx%BguOxMHnj(w-OUU1X^=9qd?J3#i*&YsH!N6^miC>}S!6`1eK7
z!Wgfm)BT7G?4e??5P&~sFGKXQ0C99=$2bH8B)XFq%m>N?e$-Um?9^y8Ypmjk?hP$(
z%77(}aaAY*e}i}BYc@_H?uR>h0?=M^6pO*6u`R9KDsXu${2RP$L=wJ*v49k!q0N{=
zKnj5=1QgjXEO$V;{gubEsJOD)KsaK-*Ieh|+1`Ep;r-|LpU&ar=I`IFFmze3L_4*5
z)fpuSC(cB~`EcMK_iL*J)h4i-5wore8Ck@YCEtpeGsfVZSqA91n2*d(Ai?f2B4S*X
z>YH(8(uEsb<j9b3KMV4UUc{)q&p+Zt!Pd~6#h?{QOCoP3(as<{Vv$Hd>X5G);L(6^
zXaz&C?IJyMsl%@qe!JM1ayD|j$ccIiwvbMsmA_TY`1#2p3DwzvzjNUO&KS?9jKctF
zK$gEb<8acjjurcj5>q31D=g!HwI_Hh-LA4_R^A$(P-+Ae6Z2qqm<W2wAs(MPG9;<z
zTC>tAN+Fq>zo3VT?m^I%D~_|5CYOyPxn{ujp&ahOF3Hx2a7E`54tXa?lzm#KUkT@>
z(Dkl>3CM^e@FgR{^35ifTz5inMyuepW#V>{&*ny>%1v-89-NJQ(v0^f?MPl^?$J4-
z5I<B@7L{wHYbDnC+Yte0^*=vji;?LIP6^~8Sir85Z#4btdY0)<li~d>*T2c-V0TRK
zD`ThhXQE-=x6*k+Kfc*mB%^U^L!=E1V7umEqxtduD0=kh>o5N%q>bkYpj6zyIV{s!
z6KJc5hH7u77yH<Fr|V&I&Hh>VpjvR>%yI>>lj7|Q=R1zIfzv@#KRj>fG!vTbeZHaX
zsD-Qls$p%i-Ap#l`|O?b&7EdTdlO21(k(t|nfr^*QBK>FzEX-zg30Xkjj6o8^LGGj
z#owkVr`4>`f1obM7$f?P=*E>8eKUx|vE5^JuN=qKBp$rkWT2jm7NGPA{rNYhbf=)7
zPK7S^j^j_27V!rPQQ=7o>i$Xp=~xTuSZ|6zQI--7%QF;4w#GeZLS!n1wk3N=>a^S@
zTyw&~M{WK4HaT?a)DYu)B)b0HSxQI97N-J2JUbN+R`Vmt;fdpZJ)8J7SUx$Mg!M>r
z|CjsIiR+ffXF(4Wr1ykB+d|qDVhn?Q>iGQ)7t!YtDK#5<%2Ow%k2TtkI}@9r5WKGM
z$r0!3K*;2(8!5zxr~~oS2)xetE~F+(Wr4`zSy6VR#*Ra7)2A|DD6$rPR^UyMKs0F<
zw*_7gitD9qEbM?dS|cvU39+2qg;v|UH?qMA0L{U}jR&D4*iaZFZQ^z`cO_~!8`dUz
z8~jooQ|<lBApo#4rr(_US=CB*R{iaXUnn}s`)?mk)qTJ7vuRZxg{pymV>bx!<8TMI
z8u5ny*66*Lp=(&;RJ-7F=K2LcAP-pyli`z)`XZpj@MH1;$)gy7#o*#aHBt94s13U!
zO8lq81kKa)^C-d0y%7>iPjAfnCFGB+FQDh&X+e|!if`dD$T5*A^+;oa?-krxsE3F`
zQHq%(D~IQ!#*zrnIJe|Q-)1-VgC<9H(VbwrbijJ03uH(k2PYK5B@=z!!*?o>5f^W2
zQ3|&f<LRmwJ^)5-StuGwcTro%C^mV+qJv}~L3Qp<^#_zQaxwZityi@5BCXGm`%OqI
zE{#9lGo*-9#TSej*SCOu92cDnkr$EcmwIzM01Mjd?eKb6571uuDy(osWOuGudlva_
z{qh(x=|C@LX2dd`xRAR)-X$>yih$TOjvb_hKsD9bocE76e-!!XA(nc+7CoJ>MX6qk
zbhZ|E@p3i#926smwFF+S`%?W$;FE{m|97fEu$JG8rhpFi7DNRG4##PH1fqqDvXjyJ
z{l6Zqd-vCc7*2J+1BE*!f<f6cFsOeuSf$n14yCMLSnI4#gRiHLQooQsO8xg_q5WbO
z)!w9`aICazBsM$p1h(rj((9+{Sq9QfB+VQgP9m0}p1ycoWqsYan%y7!7f(QHubY6>
zX77L99JGi2HCxH2h94e{&2B&c{ONtX`|#(xQ*m9Zv^__cy@7Qj&A)%U@FPkE(O<dN
z0)=k{1q<wyZ?p0#(-7!mLdYnJB$9ia&)LGdVQ65<S9AXO`gackS|3I+12r3Y<9Iw!
z=028kBcjvL)VjMi+<P`0xcBM0p1U%Q)`>ER<6XzMXHAjsk4%~$Way&UwEF&zP13z-
zkc_(!6Xy8jAn^zEK9uN?%bD}|Jt%|^oZi5uCg-J6pp+FlY>GRjt>?sF_eU}>)Fe3|
zAzhdjG!ediMrON@zdWb1@BU9^|J78Mll^Ndlm0b{?DKnQ5FK0Uw|C7|>y)Q=(Q`n`
z52c>NQ5H*3xIXu))H4vvH);tVoq2_2{|vJ8-2YvRULk7MX<Np|zEG-M)49CO&ZW;*
z`SfT>a=Sa(_=zUBTW^Ho(5BF6+kou^_3GM|EMzj|Myaa1?=E%BACncDHf>2df<bA)
z8b2uQ>DmfEQ;kb9ew5&<UX~<6r8BT;>9$u(;n%tFyMe1Ter@*jF<ng77X7wmVP+}4
zeDlY?eES+g*qFCZ71D6<8R*+T0k10sE8N3e#stao5++D~0TLv?1PS7E<=;NXyZ4Wa
z@iSR#%C@>L&-&aLnvkUDjG^^BBkB%(lw{XEeJM{%>K7w&0=E1{#52(^EY;09>uC3W
zoO5;b4>O>DV6qmMndBU$?XjSuBD}-2cw8^i3`GZ=ysmO{V??Ehl|eHa!!rwlcesO*
znO8(!8kpCFwDP=|-ce=NtXPPv(i24#9a6-?VC|te&*G`ifBEq4^W8HyD7j3G{Yzcm
z(-(I+@k7#s5DMSExYM<Nd8ezf)0s{EZM{xqQ^;`A<LxTbCt{|ZO{Rc+1}CraT2}6z
z_m|Uz_gPeiCtTU{?wTF8bHW%FtYbcNIOjI@!D`6iPFHWR%*YAC2{9<cp3x}<t~BWL
z@-s|eSFRGnB$&yBNS76z)sCj0qxtEk)Qiftcaj9@A5K9>Qxu?45d-1$5c^BGNU1QX
z%kyAQ7v{m!g4Ag=k!0qw{z8G!f0kZK?Am(2G^w&VF3;n=Vj;Oy2V{@^Nl%Zd{QfNw
zJtGUHUaP%Dc4yk_g-!<uIJPMD>t(=tUG9w8U$Ip5`LE1kCi3grZ%TrGx9tDu<1>Hl
zZg`ob*S*SJ+}(cq^D`$mDY<V_I;ep)=*9WwLF!A>+^D~1o<lG3P((jPe6xBgVwk>)
zq`uU6Ltj6k%<-Y)w<NBk{@THT=9d1O(jWD52A3*zOb#FJKR>62?+%wXm0!KKk!XMI
z;`Y1GUVjuVK6LdmVZNetucJ)@<$!~Lsq1Ua3NO!`NX68?&QktQ_O4_(j@*d;3O+!n
zKqeB~aiT9gv`>!U!8f|CF=e+#w&<akuQ%UIRB!C&NVdE?BvzrTP*@XNE-&9M8}rAl
z+P|#+K1AL>K$G?(v{_z>W3r#hQzbM%I2(nG`QDM3l~@J^>GT0aeT!ypgkrRLRvI8k
zgh~&w#VBgfeOqcKn+ynv1;8~r$`<Y|dk_Iq&@RGK7jUA~KjhtTFVK8!m4<Yc?g{9g
z#NFWHw*H_F43S&hGj=c3ssuPF88!{b0^lRKyjtiz*gXRR**B5llnS)LnWywvuy=>u
zcJyS_7VEfbjz%m8ZJV5gmhN!bpsg+HuF<pmXP1V>7J($lLmZU{9J<m_Bd`TROGr4w
z7Ibt<(&^2Gn!tM&J4hQaOc!KMfIg)^tL(0Z>FLZCE9<Z6Wun5wkPrt6O|^8?q$vHp
z_vo6)=9!O$>TRV*Ys5gH*i2G|+`ph_qKF%<!aMGZ_qRsf0dS1!E~04-eM9Ymw)6%&
z?Y6pe)B??PDw$To0<=Q;j1scPt?Ua7NmweVhoMA<K9CksTcTOxC<KPeRB4isiCiJ{
z^+yn-ie9%$Q+L?n^CdlADPC%Kju2j&MXOYCt)TcIN-lKosJIO}mL3A9s3?y_9fCJS
zC|2T0i%1MM*!~r&*@ZeL1<&{KtmmQ>dKzx%+EE<;qB=-IM_QU1WSnl1O7#%$Q+jJ}
zbhS*VCTNkEQ$?I<+cM}BN+dQGu_BmtkphSKg;qx`yMGee7<P-tR*NUChOcsEt5vja
z_ErnWRx5$67E!lDkB38#heMCYV~@v^9*-wI9*;d9*DepU%X8$QL#(z8w6Vjb{N*Et
z3#^qoy(Ja+iH>6d(~iVlU;_)zwfiKcDZ)bOW-*u|sGtVY!Wa;0p>=yOB9c&(u7g-W
zI!^EOc<x5nm^OydSBr#RAQ%%>!b_E<LGYKM#wZ{W+g&t5KWT*grH!C*rTaMPK9cU=
z?7<`5e^C$SLl5?24?2_Jg?sC!7nf#qV>*<s3%%Vze%rtgPwqmsP^*=Alyt<Sge-5t
zD9b3k{9PurX)#<1k`;QdLYf&D`#Vf%74r&4`~H~lRt4*J{yWPnxagL~6#|h(*DY<B
z!FM(QqwqfQOKEh<=kpl@e46%s#6BL!SjN`6n{C%!hQtP!VD#gcXncqeesl3Z>CgBg
z5&OfRUp4?*P8htp^PTcoO(iIludZ2f#6pB`t@#Wg>VtU9us)rUpH^x9!R;1gN+9|S
zVb2hy2}Y%$rznia5%L%SDgy7VMp~KEO&$amye~Q+rCVwmkqnAucqng5U0NTZz#J3L
za%nWks&IJDbv|PkwMd0Nnk<rCaHS<=jvCy94&bG<qb7-ri5z}V7k(ObJ_-{cCuMvC
zO!4k5h#tukd9Fp)FlHqrOH!syrPkUgX3F`X?EmwgLLGP%dScp?w|8PjHJ2Qkc7ndJ
z;KY}r)_JW<LIbH`R_hJ5WE=Oih*SszP5H}oODOGX1P>EEqKEbFa<*55^Zk$e{cE~u
zs{;8+bHzh*`G3ePXLDseX|By#<JV)qocGrbJvl;4qy=_zb8pD4(#>b;gTHGvPzSzU
zs(>Uw8@M|?b;p5ss<H!BrO3IF6Kv`|Rzf!%=#}{3==xkcyp**Xk;5*cjcY_wk-S=B
z8WywY?Ht+8i%h8%QLnW6ma1s*K8x(LQ+fza4;S)M(gPnI=s}bkuC}<}WKu#kgq+Bx
z=v4HqTSIpY^q#(IltZ0%s(7{vNpQBYdX5&3m8tXVCDQf^rb^qysnU#PFFQz=al=zP
z-wEg&Ay4%c1wKCPzkf}E<7DRgmUU9KFRzp&`?5;?e<J*kp9p{d<HP5d`)f*k_(xG<
z?_W-dmi|wO|09I>;^g!F`;{D@Ueja$5_()WaOsjR!%xzs)btfIWbOYa%>Qb_{PE*2
zpW?4R{qcuOKD<=w5|GKP_6C=^r@xH_dz+~Zo5Y~$Ht+uFf>nPh6*w0JkeLf^C*9|y
zMS8|C!NHw4jyim^mj(3LfM>mEs&utnD-tSwL?eSt!4}F9W`aq%1+4?Oq6W@VNf~HB
zqmrW`(jq;fiaa<_9<Q#;Ko`xhR4*#`;M68@P)Y;zwpu2FTH`mZ^VdKMK#3EK5-<wt
zz&SLvfiYGcv`kvxC^qKUV8as8J(o6Ys-+R9d5i-4?4_IS(C)PM8yV1Hi%AYBbZf*{
zZMgw%!x1}DX=E*14cNhF1JIatqR?aqV-Q8Askp{^#r}8cHS=9paG+ahESC|))-u_w
zVmu^BrlwWuq~$vHi^w9fLsN{*=CgtLMKk6gE&OG9(0F#VxJaqA#V<-YveF2~3pN{E
zB4_^vqc;HP<xR$KFkOsH$d12`axhFhE9(psVJ=s9h9!#o=@|O)cdti~gU%-l`V-Qg
zzkP(M^*7{;)q*v>Eg^fl7+B%WfrS*&5?vN6y5pENsf2=Wn4L6rj3jL>3`4_F1l2U}
za&}AUPzD3qXls7fCrj!E${4vv&_{)SquPjPJ-m;TCg3Z&f`l?jRC5CbrQG5v1qEQx
z2_gBwo=kO6M3F3>QzQ<d{V-k@HFBg&EAf=XHvj|Gq`n5hjXFIFOrkJ&;~og_BL)}p
z1A?ppa=%3kKlttLsYcHz3P`z<^{nosy|mbtGzQW1Rq(9$7SDz^XNfp{B{ssFSZVQW
zqIizVLA*-@7?VZ2Mli4?oJ>4{w$S8aijmz~t;e2NxAPf{n!d>*Zdn88(H_x5xrVc8
zaic)jloEVy4dBFgp@}6HqMaH+twYC!w8VkLar6Qo^V<ux+|(U21_T1eD1<7tZGq$4
z2CTmCvi7$I$n7Pl)Xibp$r_H!5p}k14@mInQrmXWy{;wNP_|Nnvgbl_`BD|8{YGMv
z>$3xQHbhz!sY5)4-2<oy9oG7uXiz()sw#-Wom*DJk1=@)bTn&l8`B8{>es}7BuFL&
zmmbLWW~2GWs|c1#`uTskLAIiiRnDY|mb1@)A9gRU>#w8zd_Voa(F0M2n%@A7YsW6s
zkq1V-fmQcB>J59AGaqV~rY++Zz}?enyczX|=@Wd(A5yt6gSzefi!S=2q&MhIG`+P3
zq&KJ}ztLUyGDpydkMEyeMo&3Yr{L%TQTY~#u0B$We%lE}xV#1rXLU!jX7n<om<;{8
ziyq@7o`*dyP*z%{pjRnl895*<Km8qIQGjD*cUBk=&msjz-%3IT)ClKy8Pk6I$?x{8
zL-3j$<1&`c;AuUwqRD1+1;72ocl(pZ`l*)P9=n9Yh@BUAA3pE)uQjAfn~vk?kO{D<
zJ@Ecz4w=RZwM$D?0c4=$1(L`X<{v@E91SApPQ2H;i}PjVO9t9>lAN)~Re~#)+c6~@
z1tFag4u76kl(xsmv6eXRi`<Hcg(~8*<GWd41_**t3o*!W5hQdY9@7c9+^W2=OIR=_
z<^$`8KU|J0%dUM<h~x$CGk}nX!>dptZ3YROD3(RDkT#?tp@_M27?Z*%Kgtg3ZIA{M
zims_+(Y5MWbghzKT>?VVI`T_Vg!1x1d8(95JS(dxKo(hu$J44?0y*RvzEKLd3PSh`
z*K7fw&MW|TlPyjEBe3b2|F2mKKAjt%lDN@;@oE3?^!VCA2}!$V%KQOMEn6Fg4JEhe
zeMccNLClxL-Hp^4tiW=gjZoicgrDe_NT9Azl;T(>3f+Oq_YhJ*WWBZNYbdu(#&fvR
zqK&f=n@=;k7N@Q);)IO3Y~zs-UlGYV(m*80vB$o+Ub+?F#qa7eAW62&6BLELEvVA3
z6!2(d(1#P8Gyu*)VkNFJdJP{aVrj$&g$7`gtTqTbVNHtj-Kr+scQ%3SdRel2+pa+b
z9vbmxD|OCN1${vU5kX}g2TD<;yoMVNPCi~fzyH-Mr*i#UIhFeeV&OW|pf_(F=fjHT
z2nsT$%8CVah2@3*=k^%^OH1B$yr=6(#$S4zvG>svi_K>a-i2m-R0*J!UyeBu%ry!D
zSKU+QV2)Axz9;O`+R{0%;O;2|q<|cPc{7$!`E6`Si(h*wBT5+$p}(-nz)dc~ghYsn
z%qCFo?NddS@Q076J3x|X$dnW_IBsG!WYcg-Who3kab5{^$^H<;2V*YQKza6xjj2VX
zwvh|~N<d$^N{kSGaF)>r`=?+3djCFt`u_XN4WTACN$N)bj6*lrPuA7>vkm@mf|ze)
z==__i!3k$Pw!_ePh=hXb&ut{UL~_i-Prynp6ae$FbLNq9<u>v@-y}Sk?-Ar*ns4Lr
z`Qh93J3N^0<9rWxDARkSePt>;AbkrF5PRtXzW^)P^TPR8OT7bI@e7Lbx+LeV{=@4=
zFPDv8XM>ltHg>(%&}$>t(*{0i+>egdiH7LMX2=Y%#Qp})E*rcb>zL1L=xJP5?+>3o
z0Al#kV6(Gk6*KD<c(Hq_SL{shq;3!eb@%&;cV#>|df~wfFr7C7YF9C4p;|c*oo7?=
z1)!cM6m_R^T7^?yo;Xk^-4p`P4q3=>D4c;u#f^<U@q=?EmMbi36NbMm*%OIOBpcOA
zDzYJ`Dm4#zQKC#Gmd-^YW~G?m-uffFs&*W@-6wMJd7?-9#>NBphg|6nd3E6&`G7u_
zfwReIu}6Lz`+Ylj<pc>dcV(N0YhPs#LZ(oarni9)4uOD3Gnh3Z67K5*lC*bv{N2Ng
zIrt@2Hz9No$!62c*{WFsX9NV`RZ5y-)1HW<ubk5=o&98SJWnk4SfnfLvt<D?Qd&WP
zmn7^T?P+lxd9q2hf}&&sgDT+s991b|ndju&gh;0|h+I-}R}`^xJ<6_RmkIioupyb}
zVgg2~-azYkI@_V0@47BFT^}*P|Ep2~vMG|8AR=*8?`s5P=o95N2!&DSEiwWEn7c~$
zF9Q?8<fWya!CO&~hCsCmZ$;G%zXrZVpjzZx1o+b@s89P}e)`j;C)lEd%t=)HPyrK>
z%4%Btx{Ecsx}rr&k`yr+#DZ`emH$rKTW-kjT4U<isj|^Q;`xw4Kn7b}W}$Ymh8p?c
zSeU@L@W(+<@=<PJFJ-+B8zS}Z`wp&_3O}_TS$Njt*iZ^jEN)>XL+^)wSB)g6=@wX0
z)>~*eQjrj6z_0%jE)8zs%$fC@Ky!m@|FhJUjxK>K+pmUGkw9S)vYag^{ni)IKwiWz
z1zSmN3klz-2EXN!j#JhBs9Uc3Si$$Ba(7a7f$vvf1n^4k6oos`(N)ZrIUt>Y6!#*S
z=6T(LYyvO2FY2M93(nZMMO+Z6M80B(F%w_G$r=@6wd}O>^j)}*me6p|JnvY*WhVt#
zg?NhnfdKfyxbr4LI{Y2r0s#T#ZW+&D22inST{I$$f+$*w%AHu98&))2Vr6szmU%WP
z^^ZND;{pJMSW!(hDIyl%3M<`Ik?W4LXPr4#&s+f;j|*0Dif#oV?AG&A_Z@1%xa>OC
zY*gI+(G9K|2;jJp*z~%O*oE-2l}`M3UBCnd_&u(*aQ`sUQl1#r!XH5HR4mxM?)<C)
zOAq`J3(^7Q&m~0%IZ?-5&0RZX@+4o$U;`ga#$}vOJl3S=KRjNTsTWuOGRqDE#hFTg
z^T0`w4J#76(wU*+`5?Hdvkto>@IvXDQdVR|EW$<UduGJSJpfhislQC_U!V31DsX_L
zfgYR((c29J)BV99V_S@16C_<lq+TOmArg<oJ#*1F3X~h$szA3elRT+(-UW}dM02{v
zn%@Nn=HitKUMa_pH`;8VTs_g`hHi``fgPZ3$Sz=lWF^)sq1AGQ7+BmA0mN)RT{$ki
zA*@8z7aSyYPdB}p{_&=@P4}bnKo*T&Asd4n^UXn4gkA&+-WKCTQ}@}3XHLe(4wx9O
zA<yh6&Jr@&+6+Gd9+VAM_?VShlL<4KykwRM=Q;9wn3ZQc!&K|{QW++wp1sU8VM6ty
zS5FdbVhm;HxXPfPwKbx*M#zYhyL10Wjtv|RZ__y2RE35_(`h)7$vO`LNYXpUY5eoU
zD`?Ay#IuPea)4?D4dN87OwS&%H@BC~(HQhQTd@cz=2$v8&56uAFqMy(-*Zt((9Ai-
zLp`_wGBBlqg5wdb(|@~eMxCEFI|wxZ$kQPF3K`spM=-w1J~I2r?19)LWDfCV^_PV&
zVV+3+l1J=Ptl#m_TZ!_o<O4mZkTc3F3m@=#=M*821?c*F1>!Z1$W0Jma^UqCUzLNX
zeWwXz!|MTHyZe!AAQ>&LX@G=_GBIUh$IOYpv^Ag@XL7@h`2OWV6QLt`^~e+ytVw9`
ztG|n^1*blJjHpK2N7f^t9+%bN2Xj;!%Rl_OzGQ=_G7T*emFP^jFewSVo+K5sZWS|L
zWhG=37$cz)jVaHlFzmvo^h~1R43OQa0fDciqytDWBVwz}H**_ia2dZxjMh0Y^>Gq;
ztTbdP<&g|lA(dMoC4E$%ghd`JM7rDDt9#L_bmyfRs%voJ?yq63$G7v0`1!+!`0Iy1
zyb_w!hv_M?BI`^PleCQQa-z+l-wrMS-rBrneXjQPE}X4Ht>dfw``&A*KrH^-KD7RI
zZkQh@6zOdg<oon+rMc(;j>>eL2Dp<X^ygz76$v^B&+)gv<y86kVfWHy7n5aEKPD;G
zr%Hv13SL9UYGJtd{)Av)(ErEzAkHA}{7=w@6>=#bm0sG3&P#ix^3o7kW6oD@1|1b6
zvKk?w)gfa<Ddf_I`AFzQH?!@HuEnv?(%#aD!@Oi?q>gRLwkURpnc!mRCM&*pV%MTz
zCS&+)4BIy%Xb&D(`&ha#1f3BI(C;XuYul`XsF;K7JGk!?3w~SiY8rA0=}ycXmc1R$
zj3v)ABP1q;#~V8QY&rU3UKdwC?eH*ZZHs9~8w7R4a>vC(s$gd%F72`}Fqg#zjH3bT
zC^All+wdy2RD>Q2^iI`%t5Ybh0n#zt6>}5DBwq1pQ1$<hZ4uikPxnX%O~<1`4abD@
zJ|0T(c4@bj$A?yTe0Pk%pvMV`b&5<4wF#^jYZF*8R>t$cw~=m?+-x`N8dT$a7ge7l
z>ok@@$Hrb8(gYLs7CULzw~NYq<dqRmsy}P)FZc0SDby#TW~@&1nlabt{giXMRd%40
zF2#1bMjv!0#RVb^ECL7s&Ci_AnXuum0vk;ikMBzYUGTcAv64mMoRM(kjF64CIz{5^
z2~;mAd|u_9QXToQuh54`x+DCwh7XoCflm-vW1bk@pn3%d|9)TXQDAvI_9pCB@Cy2z
z)PD8;<HP6QUQBCR=<9`;RET~9Q4pr~*U<Yquo5lVwRf;tz6R|laCOKpuf9!vx5$M4
z%Tb)DqUZ#&OJFx!B(TQ<%{S#?SHz=o1vWaYqAN9uL)~h!!@;7<q<nH{i*iRrl{LEa
zI))zOGM-{zs5z^A9`W2$h%*JD6t1%reOhNCu$H18{AC8?R{`X#I0tzJY5<MlOu<IW
zcMgY`-4wJ$zGD;UejtOa%h(A|y-1su-1GLh46Yl2azwg>#N&O&vu<E@OjQCD3$IaJ
z1Re{7jt*H#2Kb_U2ca}SkNmtXO4bC^W|j;cGLIN1<aZ>`c_1!JyjVc33O*5}uDst>
z?K{W(M_;n4Q)BD%!}s5R*u_0z122RsHMdn<Btw1O%MGp&pzFsql`K#QemepqEy8&B
zS#LR!7<JRSpIxejm3!(gB<_+k=o{U1_0Z}v@RI3byuTeGYw`$6Z~=lBG-AQk%7q8$
z44XE1<gY$OL%QNz{-Lg3A++kISvdv%NvI$-$|jdW)9k@CDR!yMia||Z)<PI!$jqdE
zBhN^bxBdI2<<sGd+~#tRH%zGLq4o}4R?OUY%Db2U3I7h#x$ow~`LCz@T>Hc6Lx%65
zq9YKsX8<{<yek&R%NraR2dp?G!35<UNN3E)@5ak_YUinO1D*4E#<QTm_}NR6YI#8s
z8cv(<{5A`n^_}8CdoQ^@^mpA;eAgp{W~UF{^<RASRkd&m%@W<^ADy>><t~-?Cp@cz
zP6X>aJb9h=qtw@Fzsop5-Y8{cDZeBo41IP{F8ZZ8r#rL$MUi7p_AWhi^edk-(9?JG
ziN|e~ZU6BlDEg4~<rgE%JI*KH@rg%eWXt-CNqIk9FdH>@XEt^i+fWyPn+~Bvz)B<N
zh#4U%WJdc6ITBgPDx2IZr1t>=9Fs;1qf(~=jjLweHN|RI8b#pn%BSF$4a53UnzInc
zcFn=8Z>lVvp};kF8HJmo0tv=udQ)(n2p5Y}L|lvioUa+Ak+XGR%iN2;0Y%jGEu=2_
z8xd&1p>CB9^N1XT7FZn<=tQ^oAAvvoe>^;jhaU*>|C~QQzLJ1EOuwPX&B40QQMiAe
zQ{hv@Nl&Y%qD$cJ=}1RcalkGrcNLYJoQ(Uxg_3vc6CJ#}Q*%ZLGJzrxaiieUj^eId
zgC-okaoY)n>e%)y8Vv52%T_Is72EGs-Hn3R<h-!YN_IM4otOJD_v>}PCsi{sK0U6x
z+8|$&rR^1__w@I)Lv3BI!<tS=C|2CJ&$$EUmyWterT1>B>F~=B^>~W%ruk&X_Em1w
ztL1z;FWsAc<aF@E)34wE@GGn(XL}S?TamicV{BtbvLs`M%v|p<s9;E?Xa$cD1DA~q
zyq09#ZRz3?V>8?Uu#S6j6^^5p2R<?G>$Ko1%C59~OZ~3Z>l^!Y9hCd|I#BoxG;r-N
zpIm)o=?acFIBd_90`4m4PK-3Gv5A*EvfP*l`rKI;TMFeHu~n+nEzO(j(0V&~fy1A=
ze}82F&3rF<r4Up9P}6k)`X>Z0&tM}kc!3(v{pyhrR<GPWol=9N9@qZ2P=gLTP=nU)
z)PRvnP5&vdM3g?;heDz~rI5T}BIps9gUa!_>M~NvyzI^tn;D=|GQVEai89NG%LbAN
zVKoR!MngRb$zkA~!NWV~t&Lsc1U}=>?&`DV(W{UD#|)2}+h=;v6qf~-`AkRpphtbE
zGzBcYZ03;ag=5HlT_W%WL+CN)|Bs=|F{GBh)fjpiLQj`sSoyx6poLSRe=J5_-tV~h
zuk6Dv3rP+_%?HgmLh<VFUCRvu;;rO*19<#8Shz|3Qh@KDm5hb7wlhzWBquA6KtJrS
z-b5=~<0R1Urb-#x;hJlIeNQ`?tgpOLGW@9hB7OSq_mpW~9JQQQMgkW{RXcsi71M!f
z(mx{de@JH@d*bu^rx$U+`^(<w3Jrm8(C0v(6L1U5()XPxfdkfh4-k7x;MGgJ!ti^n
zz*sv;1iegn1Is%iW^((d4BkOjBcf+LvFZw)KV{9SOGO1&*efB6+2oY$&6LS)|Bvm;
zYlExn!{0HuhB!jM{=W<VQC;|l&+jk2;m9wEE|(kOE^)K5)zQI6gFp;CG`L7f!qf?5
zN%=ETOH-w31U<bfC1DK$pgbWxQ`u@oQZx*ubZIxx67-J%?g-QB?!%NO%Uou25I$@W
zWZ0s{#QIjDR8_$Trd%ySf@Pj*_n<n&>$WA7jX02ks1hpJFbzCD+Fvu-z+^X-bR>mv
zrwy5+yrBbl;aKv0gu(;)kwbQoh`F>rYRC$S4ph7`QG=N<4B&eXMiWWxovLr;*sR-v
z47|;Eu_84TF;}W3BQ+eeNqZRu2NbUJxTms05)a==P0wmjwZIWw2ThR3eo~GJ^p5FK
zy(Wu?9|u%tiM!yo7LW=GB}a@E8EZ=@5(C)qy+Lb}dLk=Pc$b$&y+qD{m}DUh8M`q`
zV|~bUpTzj-caML*^k(B2mZgBTN^a9?*qyoEKQXc`y5sXBt79@c>;UoZ%#~)`PxtQb
zlXCIReF@awu8xL@*!23Vith$QyRHT4OzDj#<dt(r9D{Hxt@r1qkg=cnXh(6X5mR2T
z?O=6W->4!s({capg<cZNl;Jmha%D%_74f73eLqV)WmGc6d9IKYO;DrZ31wC@*5Y?o
z_rCY5E&HOJKFIgbrBmfTU|Cgi^a1P2fZ4Nq5`=@Wkd@WzNZl2{FnBadp%SK2=>>FU
z(ZtLDk_|cYF8ZyDIFlqJ#AY<k-{>YlLi-L|@wxM*LxVyjtsnpm#7rYHy(^;6>vZ?y
z?owEnezo$a1I**8Q(<|bl_m9A7onvWMUvDrgPkH(^Z*JP2MVvpw+!7GC*7&T&F(pB
za9iKt0q5cwuugZ!*PNR@3OSeAUEcfur=#P0sy@FR!TMLY;HTqNtL9RHgHWIxWdh|=
zB*3!HXzPn<36=i-WIBxSIvbQOmu!(eKve@S_p3S(dp7PrJ^bp!55K;&HML*4yXiy~
z4A=-O8FwTXAwP^Wog>966*&tUt-R)!<%pR3NS$LIc~@3qL7Yow;#LYW$Vk_4Dh5ea
znaAgdXOYiZTQVn!O~%-76r6&{yDXLEON;CcrDU#-$dYcb5;N3(w}l&KoFh?-MI)qW
zg~v^Z+4~--l!PPRVVEKo-XPZSnEMP}RjNhW#sp+!I2mJeK1FFoJMO!>S}9VNFARw2
zeY(qix<WPUe>XiGJNx6OAD)QpcL|UG%XK`%Hy26$rkDFi&X-#Q+NW}z*6%8=CCppm
zzg!0)<FRSH=@oy#-OLSLv7WwOk4);)bf?r4&7E5j8o6U>@C}YV0UV_fhNaA>P``qp
zy!<U+LPqvgx@6=AXG}BDljyRj?Taj2thHknNV6Zxq8KR}8(ORoio#G9l#j-5V^8}i
zTy_;Yk+=kgh}kneW97Zy{JM*baE!&EzYA&4)B-Nw36-@2Z)?96QHN`}*LF)+F6)hc
zLycG)Fm=2#f%Rf#0_x@Y^YT*#^}tD;!m$lz^@CUc?J8v;$YUwH%e8+c#i2%EP@z(+
zO7L2dgjlPS2K|Xrp4Nx2k8wOWYkt=0zU6O0c&&>uTW?FW_gCpgK9lB1Zm1NiLc(L3
zq`PBVzFo#sf_s}Z54Cx?);UL7M_b<>X>mz<Aja;Lh({c6BG6R&He!2t3j^@ezv=jt
z@ozFdw=kuGd9E$}ONQqy3W&#{bZ7q`p8uJ{bED8uE&~s>C&bDHgsQlI;}Lqg;d#Eg
zxh2?ERlx=_HwdsxUkWcf7b&<TN^pL(GDCOP(|xt;^5d)<JeUZb)SaW7|2z?4l**Gw
zJQ(#THr&O~a1&W<WNqDBXY5n?tQzl3=ZH@lRu|O(sBoB#9t8pHgfhmmEQH9!QylM$
z2Wq%hq^GlFch{1|X6Ne32>WZc3-qCBig0K<r9Hi6^<Ch>b+{c}hufv=aKn8@JG^k$
z{ps&dh9U?kY_z59Y{?|!?64r>lDoZuQ-KRQ{W)UZ2hpkh-Ps?h^LH<BaKOU6+>P%J
zyYb$CayM>$-HVs{6MONjZ*IoHM6P!I_1|jO0edj`P^zH91}YNLp)%-{h_ju$f~Py!
z_3vpt7uk9+B1u}0OLw)M%tXjT0k+~lKA*o~uTMpsQRhCtRf>7B&%Yn_pn-jAY2YBp
zCx^WJ>XereSYw`SOpsOjHfe$L^Yr-P^B*oTs7iJWDxvg$DO<}too);~fS@#-r0my-
zxS@%GpDT{n{#sMU7u(LZz>M1vJ+7PuPAn|kz91xG7^ki(j8qVj??Zz!e05Xq2KmKg
zqGoW?aT9~kyr=70LR#t#Eg{U#7;>(1KUIE$W{zcM8JHzYj-<;pc0}2?HFG|Zz5_W>
z{NGqDVLP*R|M2Ha4BYodmJ5Le5-`4WCt#JLXnv<Y?Z}nCvsNN;XjM8yORdjqd%2oh
zt5&)m^Ic1Ky>k@<Z&q@D5GWdJ@Y|H!DA2DkxN|Cda05*>X8M5l_$Bzw<5R0V8%-dr
zZgUaB@{F{DA)8onlr4+YBz72((W^Tk>zSq^1Gu&W74#e=`0Xr*;5p19<-j7%Dp>H_
zSrsCyu+`~Kg=pg*JqN#ebheOhg&b5Qr+!p+&=%1n`JiiXXSVYfu7AO|7aADa{PCr-
zg}RQpr-*<+W>-UcBR}|i|9^)6<{8GE!9#wFY=(Z@EdS|s{IAatW51;I&m8+$vER&4
z{-!!=)_<E;#aj1#Y3)_H#ig<Jo%Qcd6&hB_&NbZ!OE7{t*FZ>-;V&2MbF=nZwhtYC
zyg@EkG%T#2K8$=wltc0jtAUqWyt*&g+@Ig?_Yaq1+4qB$26%#>fj7k{9yKFM3&a`l
zc;}lYh-$K4J!?K)h%Tf-`!RR_-f<v2)g^mQJLeZb$k1I{#x>AAB8H-o>g>p<@CaHu
ziosqEo)}pcJeM{{Xe449PoyJ~e>&3AJcMI3g~f|P!rJ*N@Rcpy)3L>v@=UN0pTr9x
zamZST$juN+%S=aHOCE*tPvYxB+4J7kGsy8+>U;F=m@K49m!?WWMUfZ<!G>*Ffm}7Y
zqGsWXfEajA^#MK)h~buFnOj_eL<c9uhIkB70r5h!@E%31K#HUvQ>4{h>XnsuD!HN<
zI!*L4H5A-M*h)|Fm+v2TS5RTyEt3=~U;r0yFG-0&3r^@R7b3yPQj8L1iDE`Hlsuxe
zOvje)BD0Suy-#e9QKMSNsX#<%Tu2uIbY5J8(vvUIVbrFJP@T{cQuj)PH{{ndO3+Y6
zK?&J;>JTADCKOQ$dTdO(v5Rsfd`cS8z?4Z!r3h${Htt=a46L*#Z!j=@k%OxsKPaMu
zodp7L6rP?Z;vfkVO#$ma3pQ9=lwVR`lpLM`RvGkj*n-uq&s{HSkf+9xBN4th5TwnD
zD`;dzE7lQ>X1&rIbvC5qreGmKF%yDfYYUuepaClY9D>#XjHQYrD7VM4xo=mXdE7j6
zFG-#=+GUeM0gpBFCFL`Idn|TwT5Y)dr;*=YJ+pESg9iEj!w>H-)YH;#)%_$E0$tbp
zNY~H=lp{5*e^0Q5Sf8T!>7HL*(YBI$Wk%Na#S^_3<$-)Ge~j$HS7w;MG(Q6J)A&Q`
zKVU7IJ@Dxg+x)%Kv`5ta{j1@ACucj$)Ajsb6x4wSenqx01hIayT%WGx&(O~j-3V5l
zmg$$G!E~P*R1J&;1z+DasZ!f<!bvb6#XMOTv(EXVYUXb#E%-E|8<1%-36PL$>AWNR
zMBrJ}1>s$!|MbDyD9*4E6_p$@HjCi3N{NNOKWwSWI%lJ%OR-2-Qi7>zpWVTb-+<oP
zEb>Z_sjATA=crgL!R|=QMjC;0OpvB)=9dok<yuCBcLNGr-Tk0PV312?P#Rc+eB1mv
zpUuCClZ_}~qH8B8HeQ)7+AK8o?BnS8b*qc4ue-3*jaHaGc0e~&EWIEeeeZT*0En>?
zAd;zzVltIM;7!Z!>pSO&Ht3bmS-orl%iAPa!fgXU=^{Z3Z(J!#8G-n;!vt2yZ#nRQ
zLgUzRDIlf<eUZ+@q#}pt8SSa&RQ$TjD3Ce0#vt}>a<ni=bdXsltGVSc0BhFc(&(cG
zjhwOd7!BPFM^@%{(~T)UtRWj{d4!BbL257sLGr#s{=%Wv;4q&Per=uoS2Nz0Qb9&W
zH}PN-3I+rqvs0%m1=buTZ=q>x!N6xIV~5qYY2Xz^oQ3LF0>+~fSUTs8<ji_lL&031
zEHzt44DLPv>4{&h(d8<JU&@(y;Qp-p&`Ux@6d4%T;E`BpboF*1ib+8qo?ra!J?!Jd
zZukD_=@li7Nl7&jPu#%3;ij+yr!DC~kbf!6*YWrw&X@7<C7#R(4D!pv>*I^{>yIf~
zf^!E}lMWs{e01`FU)Mm=`TXeYK`}2J9X`OL+GfSpu7>}|UpJt(uYqglssz{ek0$=J
z*$(?YCws2oA|0VzpW@+H%+;^+5kiO9hnIj8Zq8`K?kLmzs)+`miVcE52??rM2RNXR
z9oSRzah3!h;eAe((CDcsjZt%R1w|EtzBLD<fpsoLQo|v*q!DOOO2q3KH8R3r<jB``
zMvi@HsYFF~WQC?)qfK_8A_Yv9#l~YCOYN1g8IWSKxCErk?%+Ok|3HI(5Rr31At!=R
zAygmIW%<G^0Bhl;<a_hTYXN6$Hkf2OsWZX8R(grW_{&=-&en;F2^jgOLhVUYpzI}W
z-rN$sy=gBCVqi6fGRI0<q?av$U}ik=VVhBcKb%o^qoPf~!R^?z<1pe3-NqX*m<lCW
zWejFTZDJ79qQhol!4nJ0QP`K7B;tMZ$TPDxV`Cbav%rVfeCol&yE!iEGwjyG>ZtD}
z1njV9(Hl$DT}`((E6?C}sGX)3iHLiA5)4ZW7`sFFnl<+RfcdQkUS}j9N(m7{@82E2
z_99b*!=RUNXK(o!S~KQ9RLrWKKJmi6;Ze@PmFdT+-sY)jdNk|<^)^Q)*ZUP;WZtj+
zz8iDj__A&P?PZ^-Bb8tkfHr+9SUGn_$~wJ@E;<hka}maJXTfi~STK@u;7xrnjQJC+
zeRHn_9?kq#<}Z(pUYZg2OteJ5d12ydG5p6Y3LVnW<(%KXxbWprc<r>N=Pj?l8qER{
zC&jKg%*SVM{fimJLh_PZ^xKz~ym`q%f2Bfr5w&9ask<wcI7{F%Lob}ypm-VMWf{X+
zZNv52zG|YAlEmwcdb<;Dm;Bhtrxa0w-zH&{17Y~<dQLYh86Bx?CC;xc{IMT2+tSq)
zQxsmWIQ;y!8ytna1`jKxU?K55VY026P0=u??xM#zjp;vT?2xvMNVLb&c4sMjcuha}
z7ke||^LgJLzt9<X{#bLE<Nwp{x0lEEIcFy#xx?-Qj?k#F?_LB1ygS-+$daA^U@5{x
zKwSq#Jk%!Q_W|Vi1pY#IczVRXz+GwMu*nUl33_2D5ll(V3&{{Y0rr{F(J$`A`oBjh
z&s3koLEjlm&JDf)Ty*DOoNGbf=VVt63%K9)7Q1GQC;9#Vo9$Y&{Y<L`OC9Mc?M}Sr
zL`HjxmiPpBqw)+=L1WCP9`(r*9|S&lwodZ>9V`+q86P9NUrPdRJjR|*%$AOpH*;C+
z5X_?h9q(6LpJ{Gli)_`@LBMus*EVqp7|@1P_vmE}yzZ#+&kK;okN}fn=#GvWYoA?v
zf$9BGrN$16$*b@0)NWKGx4OFqBu)pI$Sfz~x-N2nih<`_K1~xhMsP1s&B9kl8at97
zL21;2+b~JQ8O#4aMNMJgf;%qj|2P6;xTlJ*|BhY!^#1eZ{FE9y*bm<H?L)rDxrdvd
z>oC4RyaclyzV%(*(;9RB!48IFlm<$m2%RzzjpjfD9I$l5R$OzW^GTHIpKP!^J4z0D
z1nzrVp;1!p>xR-ZI0f{r1X%*ojdb{TdgWw<#<|A6u~g@wn+~qpU>;%yc35FR%zmD8
z;S0n|)Nu0GZYK7$#$ErYQpY9&Yy7L42r$+gws}@pqHm-y<4kkCbxi7w){)ik)Tvt}
z{++hU4aa!){lmdA-t>!?+4l;o)Q$1E8qqnb1%TR!hs=0qv*h7zI*qXEbkn0bSf!ED
za7n?|3Suv|$uxHgiW_ps(4XCADEkRbM`>bbXwnwcG4qX{?93h6?I2__yhS8cT2FO)
zuZvoUg=n-u;-o{5NBC2?IzufCh28K-h>-i60?k&>z@Eo)qbq=*u3G{FI5eNNGYWiq
zF)jV!;m7kOk!|g^LT;jhqxnwJumxGb{f{FA;TK@#R2D)G7k}msJg%#dj%yyM9(nrT
zWR{cZD0_C!0Y8VFM*T%=%#$jNOyA`tI(hQrirXsk@nc_?r@2_V$TvNT*^yf3O4YGa
zsnL4yU@rJ_b=y@kvuH;c`Qn+#U)Xl*UUYJA5a4wUOs)?DQ=(1|PZ8?6fzos|u05Q(
zE2~@-O@RATq!3Sp3k;=-X{nonk(;$UQFmN_f+l)8YMQna0dveslSw{K=KxfIvhL}|
zsAf(P+}2n)YiQv$ams_gzD97jYaRA<+D~Vsaz-E%^y6xmgUl7%k1K?AB=z0n``vF}
zPbs_qFGw&*%@n)ZKGM;Rc6U2lS7avf0Q@r&=_wfm<jEo?NnH9H(U}~!Tw{e+s=PDe
zA_4LCT>w9&L|3X|eT@L$!zquE@`*UUCNc9<pEr+-$m%ut!sDj?@>k!?<0j#-9F`sE
z>qjj1rxO_VOE7kix4vL1*|3E4W%b*d$#aZ8j}m=LK-8I<2Q*QI1u6jBJfy_BvIWZo
z)lBf0eWj_iSsj$=Fd*jJ!wwNVA4fcfneN(}iy#@^O}Wu*gFDH^m}@|;8yux`Fq)U=
zRPpg_G_%ug*nhe<=-3OkI(BQrL9UD|v@tMuF$kRf#r0vFKNwj5xLp;(3sW8%UHt@%
z;fDJoMgaNFn8EP^3Csx3u~iHezMaq4j~_)}Uhy+L!s{?!({((Qa<0FA#+U95BI5wT
z0T$@H$f3btSBCRRkK!6B8rAKeD+2%2NyHk*Jz6ePL4gj1Y$*(R3uDO>(Qh<Y9x3J1
zuV2#%kL48#{xsgqJ6)=u$`J51kJ=@Bh!*i?>~a+LK&Fa#o(AZCJjB=Cp%K)rSBk5n
zWVShE2RP>lCqisRm|_%+lYvNiF^9Q>G!6;oX8<;!U-3%0k26AqQwtm^V}2xTH@#FM
zVqO}egn7q!duA%!1qH-av=?&;O61LB1tWWTX{?i=z(G)~;;;|w*NoVxU|<CW?LbiM
zju7$hPU@$wsU-}|odjC-tPyfRo^A=Rai#)7Mgc1cnNB6cA={vfE9m1$ErG>6=_uhY
z5>ZezVX@cxdUK?JH_C!rm@O5Qr}|)QsNjtnvd>^>_{=*yV0I2&oguPvA9m=wlQ!U3
zS{mzvN{|SG_<-bCahs_F(FBRilN<Lq$?T+?{=)gqQX&jO<*voLb67e<ygVI#23(Gz
zfEONGKWi6J{_?H&Et-Vqle$7TV3_zkRA)8E-mN$=i%th{N<aihe_((e>qt%hb?0u7
zgOBl$5|Xz}HW4-^gHu?UThe8K^lkEy%F^}-FjJ>e+zLli14#bityIVWeVl5K>-V@R
z*SXabiN;P+>5;heg;jOX*X5tSag*dgPXknj1RBf7La~fW$J;C*x7&K0H{bv2!yjHx
zoZtU<>}s|7{IrfTuJ-JI4qrT@JDAyd0{I~6vw^#S%Z@zysA#{Me7g#G6oy`og$1?5
zb<YEM6}P37L}Oyw!0=31dD$a3MwE=Kc%|waFaDeF`d`4OAbjfBmQgToWuY_xe=HRP
zWLl(s#5Vz#NDvX!MR1Dcu*V#M%g#TyuqH8u6i0IS{_}?yRM@9i+M_8^dvs8}=@uf%
z&#9t0T?OOT6FoBGjt$uwcm4rOkShw9v25zZQ$e)s1Obg05`@7l%6~_xjJ@HpcTxkn
z?2i1c(D1!M4ZYtu<7np+Tr=p7tGtv&Pp@>A%eqsC<pc!i$&c}e|A9XP1Azg8iksIn
z&sBQ(D&6T1nl`rB_tQ=NqI?khon>XCSfC(5scKxx>WyCwm%32>t`QK*Lt`xcIRlm~
zamwPJAV+TI?XHaLN4=0D`jtJ3-dz8V#PRDFuPi^pFW9B`$>e^)WH_s7nJ{Kj_t17V
zUcdyDkTrA8AYbXHSq-`9n>>T2zMKl}#u^Wy6+8nBAQ}NSpz&}mSjuxDR2$i7(S3Rp
z+%-+(UP>j|xD&r<z%eXJWlHxcJOnA;Sm2<xM~<uMER<`3;7t_UM=2m%C9xt&*Zv02
zp|627c@Eqt&?yWGbKlz{`^usWI*<xNu7m}wYq%G*B4_5ynfB>oqUNE&XVeTb>X-vd
z+mGryQr&S+3u0nGouior`w<xlt1y;Ekfu;j!T>2PZQ01yX+%zbDT+7G>(d+52@~bR
z55M{G^ZQ?25>V651qU-OjSWWMXcfRr8g)r6FCxCwOpnzRu#y#<^CFol)CDsQOlW27
z2RuGt#z^p`XX-C^t6se|wn@W2L2<DG;Hjcp%~0S&LUeYaXS<|2P8LF08#t_nz{Ax$
z4tBt!xm|OmiNtktV^8&v-ug#tcpW$(79n44Q4FU}=tYbK{Z2C6rk1eY6aV>l@Iafw
zab=Vv5(59<W1OmOut0S%5ge8<cUX#^uB`Mt7p;@`pZnev)ftsG;?sus!ZP^j)S#FK
zFoi=xyRYOfL2wz9bgciq&kaC7?f?q50O}7p>w`GXvo|AII8-yf?F=Unaw5z~r2*(b
zwk81(aml%mawxTpE3B?eJ^S{S^yM0Bq9i@pIej<#(j6ksozcVLA^sh=M}*3Ms2N1h
ztG^~ldgdtrD+X8n;zxb+fVb&`G{Z-JTXoyX4^JNBJC;8Ozj^kDj=qH=o0fqx6$`w2
zy6$Mo?a~M?0QPA=RjW^~R{z`+Az#S?o-Y`NkoolKYG|!?@zkAUp2dxPI?qQZiAxaw
zARHshiseANZFA2;{WLlE3Uch#kFO@D^nLpFyWyWnvS4agh5b)wBK~v8$a4TrmmLe3
zd(Sp@w6Sjv1cI3!_tx=FmbOb=n7Fuc0pxZYha)--!`^^+cFUM&hY<%i&IEUnh^V``
z49C1<tQx9sDEBhBbs6_2<mKzqu^p-f{Dq3>&saGaF8~9Q8Sy-hy=|odnK7fVW;B^F
zf>_+OdQtpPsdFml(od#+_kff`DKbi^6y7ICPGMt2TM?O@ffvL*xUo{wS*P4sBKEN%
z;9ObYs`61Jy9EJfDY02Js<MUkxnn9()Q0?1s#yu{1uO}d%pb+?^y?C*Kpyvk;wujq
z6-lFCjegTezl&{niqA=qR^cf3k^GFA94>E$&^QP=hz2}G;4yO#q@-0ojf}$(F3-Gj
zYZXgnqb8TM`nKw1q<r|{$14Ygd_W~h+`(QIxn#W}WrI_mufWs%7%gF<`bH!2UvWPD
zHfjJryzHtTUhm1xEwIXB6oxAI<as0zI_T7&Zi)pR&U(&8zfGx8;9~A}Ffua|54{=(
z^s+W)SOf%y1nO|;+7^U^B6GabpF2z2J@`dky^F=qOe4FMt3_gi@I<^B6bm(<9M{DH
ztU^Zz#fU|A06{>$zm|D!jXJm9{B4k|%r^wybQe8WC7yR;*JY$99rxqsrz=4H-yaTB
z0-s&)RPCKffv+`D=x^gGj#GG@7dZUNm~US0R$vM8UFme*#%tog`9$<C_i;UnS)bo;
z5cDKLFJoroMRFHzC{s>`9S#aLlgLHkJnX)frB5eg{)WENAaLH&_^Z9MCAEiY@2YtO
z8tJ@*w}PQm-(fpfSEpqBH|jekdoQhCWIGG<i=RoicTIpnR^FBA%&f%nsCag7<>Ilx
zU-0R(cjdm;rM5dQ<KlS-6v**ed<oqV6D;40l*<=V&I%DrEcYWXu)^!({P|0%&EC=Z
zaH2N((QO;f5HI&%90=xj``0tBW;>a2eTP%+s*c2s$+#N6`ignF+H<vQFY@*I8@Q?V
z|C#;kXZEM}yU*`mJ5~|*BhblgOC5rU489^{j24OCmMO2InKbW@4q7Kd`(;dNou)Mm
zk!F^>%b0{YGZM&1aL?d+Ozd*Z+P+0;iJ07EmS@E#qQzQfnz7>vk1682oZ+mHjAtDT
zcO~<L%rI>83Yq^5C?(=sA>S}BRDE2f2We$I6p)?^yQHCruyynLFmKbPIWISnhl4wD
ze1z*BMLBbYLH(X7@6}bpWyMuc3ENwM@Z@V$LMb%}o7ISHzsi8nksEa_w?R73Q0V>U
zn=<Q*xr~T>8F!@w(c8ob>uFB{i}Z}@WREk2IZT@-2lm(#P(Z0mY>5$L)-Ba+u(COF
z{2<IB+KK&089v6R^IS-1LY@~9?^v9uR85O0CfH~m=+kdkDBKvJP>dbaPqXYyoeH?j
zAToocyI7USfaZ5Jh5)KUkt!DWDxnY}47aCBNe2p68JTh8A{6*kN^V>j*iVMp<A?YA
zU%lSS7N1xth6I4XesYA3hjAg;At=g68~08#N<b7z6eR1q2k^Vv<edx3-tne)N(3lj
zB5#--$2S47Jn2m-<WTlO$^~hqr7)yaildmhaj9iiQIB%OirGpV(9%a)iu=oFi-6TQ
zr63tS#@B+K**BLDQlN>0&BCbymBw5$H5RD#GtlV`zxqFWy2j97^{=VxjU2I!H6%Xp
zQ;@s|^@K5gUEQ>#`byojl9mke3lpVKheSe8?uf^b^3KNOhP}O3H)ZjC`>bpgm;(Qs
zsGN@a)6Jc59!V7PkF?~CIL>GiryoGet;rml`411je%;8;8#!UfRD*yS3F4w}V6?)k
z;gWA){I@~CU7<MN^%3w576#oT^}y8WF@qN@fgZ9#!+?PX!v&FQTw_)&mTeJ~gJ`x~
ztyHe-_dlH}^`GnHPuuxROM<9MZ!kBvPMciR3F~a^{``FG?wl<h=9lhauzLu);0@Ik
z0eJK<v@+$))xCLC{OFixzkwtiS^FrKIg0bM$y?$gnVRhc(cw%-t_}zTCb-?@6n;@$
z45eqNqIySa`*20j)xSL}@Z)gh>ZQ&F*q3K_PZbM&!R|9~TOIDFMkBLp2!v`BNDWF_
zpttrdcBasVM7m`CnB(c3F@M-NAKza&ig3j&u2gSnZ`k$WvcuX9CLiv?+@oSb;gy$N
zWSsdP0X_ymxLJ^4U=JP=ycv7%_d|+d&DnG13zjP|twZQ`<YRh_G2b#Uvpi3Umz!}9
z^}W?3+e7nx^Y!;X@EinUd%E;1v?D`)s()tZT{-GU!@b%Q!;xYCALfHFgMmRpF3@ZE
z-=9oYHf=pYe#ZI4XM5Mw#P-K2K|;kb3;+dum&Rg`^*YMzJSC%mXXU|kPy3yl>KM7>
z1q+sN)6}Vtfxx#{$dE?5?IbqW$w25Is+HjjUW>GTkSa*MQii~hsD(wqo%SBy$>;s}
zob@{DZ!OE<Ahm{llR@HvA=Q|D8YerGr)%n`C5;pHQ<MLzpZ;I{^gm4fG}r!*R6qSz
zGdKksy5lTJs$2@4ap82kWY1d@@+MP>d<1ZEKwI6FM8#=m4OJ#3=nK?iRZZQmx~r7L
z2SFYKJ<R5A)2lT{=ZXONhGNyvFX!W3au<oOr)5c)4P@9GnzfN6ObO_eT|)GUz~8J<
z%L7O@DnQ`{<TE4@Y&G9jrFFei@DpQ+gDfGE9M1)1sd$ExpvBTRT~A6`4B0m%=yL9k
z05z+q{R(DTrizj+^<TAY{Neo%PapR2>35$#{qP!u&HeB91bP+BU!}xSc-BUWnXFQW
z$>*TLM1%_?1rhpDC!XSB+YwCM&BxKd2g#1jO|!^tK?(#4!{<CcF(%(eFu#B*=CB&J
zD`{0d6i3-dOlIc!)*LJ5q)yP%rYz@LWYm9F|7B}uQco-H2HuHBPKfE3zS?j}0Qq}J
z)TIdpM9XIApjU3HU|d$WQb7&a=i+Pb5x9BfF3NbnoA>~Y2X8lxbYLC~bs<9|_eC~J
zzFp4lLv;9*EoQhTk|ibeV;Qq_K3J#rLKQBlAR4^R&td}Z0oj-4@=mfCnEK+`2Tn><
z`ox4RzVi8o%urSj`SBR_!i31lhX%HRpDe=@Hhyi);a=+8h;ZF=X0wp5h+YO_7&6rk
z#SpH_ohIMHgaYcQHE8DjvDB-m6bDbTdZE11b)IuvACg-eqZA{}qxbXs-HXrb`1Jc9
zA3ndo92aFr$p^7Z6)J2u-JOh^{!8G%_r_<_InPA=Uqe~lD41XH>0z`Jwdqzyx4)Vq
z<9f2y&#V3H(69aoHqkd~bT2jC_{uG@9G=y6xbCa{1s2=$8R4qelTEjmUpR^26+Q+Z
zDdDTrhsbnPJiXZ{-U0aNRws;#Qa@(BQSkdgO_Aq(v!%RWKu*u^fB5lbj?sQ9K2vHd
zb75&bf(|Fca%u|r^ArY8B_1hYY4Y(#>*NWQkQTeowcj=J59$irWd|ViYyOCHea`jT
z3rko16zBT#$<;S2JUgD90f9a9z_fGu&_s5CiNRoi<>uMR!8wdLB?T)L5vl3pi4Q`*
zfT;FsWMl?8XxYs1SD$|T<^I)}RjvPT?r+!JA9Jq9mN+dbD|g-y$HIqM&|I&+v2<)u
z*6z?2`0Dz*wKdib@YXmqhC6SzRVFMv(o)t#zLYt5y5cNK1SGtaz}E8x%beHE$7)vr
z)1TIs@&9CL<$0zKkkZVLSC={xg~hRW$Z?YsmPW(kp7Xkst6+khpr?d0L=-2_cqGqw
zAkUNG@bTd@IHYIb{_2YEr5YyBHe5(J0io43FS(i8L#8s7|8UsBWn<HoI>?8+kZLR{
z_o$ia)OiA_u@4GVkcx%b)?v1FIJ9*<v~`?q9gl5&MwL&eWO>onac%49Z5?J?heKPh
z-AKWjTcQ^)-LafEz-j{bvdRNQ@qI5?`_Lvut9bhynro+i=H_U~*bB|O@7gA~Kxe?A
zuV0U891z&&8<wLQKXk@|rvB#iWGVf-PfzvA^c1eo%S5E5kv&P`VlsL<o5aE!lNi_H
z4-fm7?S4NsG#tuvPHPl)SBOZ{aI?9LGo0|RFUq^f;+{>7P<D(EW~AWkXhhiyH>-lw
za>!Dt#?V3Mq!;J7DpiWbvX8jRIcAWHL!D`_3k)21&fqCJkR6`kFI<f>2LoH@kl&64
z^1|>wOPnpTz$|NEm0XM~)QJ>7YDxu21-AQW4s4Eb$=msUZNp1;xH;-sBi6p!vy#pZ
zi_E3p#?{vZBkzpW>oL<1t>070WHJ1X9sll{?(hVCANVwMhZe^}eujU9uSw7h!~Sn>
z9Idb5_g|x2mcGiVey-^sQ}0~U-&%2Y)UV!uy7cUl-6=w@?!_BoybVu6m4zuRlh8<4
zA&Q5_5HUCy333X2g1{r+@0>dMG%^lDxZE=tN98lV<KyGy<)GKcVssw5HNw(2oK3+T
z-217v6`(eWpCIWG(c+T*t_693!Gt^to{U9&Z9PQbV#t=b0m$`UFEk|f;By$|=4Eo#
zbS%nKx`(omFIt-CTdw81HS24Aa$A)0R5d_!NPDYM?gR(hzf+B3Yf31ZfL6_rqwj@-
zS#tkrwF)x($5b1NQ&?zJoVJvxm%v^>bocQxi9&=kp;s^H<l~hs4q^q3ps1e{>Epxa
zhfBYr4^yK;m)@CY6N+Hz_^8?*9Hz>n+dy7zL<}y5P}ZitU{~E@{LApKu<MgZ=0jVW
zMqI$873wQlG$g78pHbC?E^2y#YnVh7)P^?ej)?6{TYeM#8>xvf)77>{x4~+H0!EgL
zhO-`;B@AA|0R|(#YK!QsE&Ek5#97QRfZ$KXbTlSPou;?u0hHX11nFyITaCDO*1ytS
zv-L-*>7V%>d(qV{+m0Qo@L$oXG?A5+imcSqs5u8&O=;vHc2MYuY!8=F!?I5XeZQ*O
zv&$x{1^ysAA-P{z-w1sAuzUaU;luud^7?2eh~W>%-8SvXpvTD+@4%{U_TBNl%uTwX
z&PC6^BsF$2Hni!%MooesaQM$>>lw>vyM7TjzKR>x<L{^a{{5eS`LN$dTwY-^7Kc;F
zvgAQqR_hO7u$3D8ww6=Lrlk4PAb(FO86%K@GTbRZ23FOB8WJ0`mQ)1k6kuUGZR>58
z-?0gYQf5jC5=HC}+F|S%{N_oyP_ZSJLV~%)F!#(WI@<~^mmxr*aICYS8l<zBLzaRS
zhHAbQ48)F8f(s=mae$5=FFHY(C=F~b=q-5J=}WA9cdb6!#v-V`pdo`E-P$Kz1_~zK
zVM{rF%S)^Z77=f2Jv%`fpfufesycO=i4@8P8n^gt=(b1+ysi0AX{Zn8RTuH=fiTF0
z<^o|ZAdy6giy=sVWtN~xg-Yfy2AY~oW91y!Lb3JSgpOeeQVV{YCD6|4Rxris<UB`B
z<PwvqTdM1X3p#?x0tBxr<St{&-<9liK`R)=9(k#3sWO7!W?p@`%Clna43KT$!UImC
z{&>gxF{XT?Mg?iCW8=q<?_YRBe}t4HcRSe+sWbZpE)&oZ$+pmDOckYCVQ;mbfbOrD
z`(~^27=M1mNd^I=y6<pC6L2j%PoG!!PD7(|4@M$>-}kX3R!(Rc4mTY{u<G#`3tJ{7
zKRv;^*p<RD7iL1P2~;438h%w^%vkV>3u6_&qT3w435>MK(5J(u0kGmAp`bWTD}&tP
zkh2NdSyDO@rVwi=4(weblZJ2^RK-P4;!J+N$jp9q!-h!n9i!n`o$+a*;$myj)<A<z
z_7hh5Vvt^Djd;=dqMi2a#~=Ujisx4!#%a$Y^JCAZe{RqAW6#zbJ=<QS-BlKM!$NH?
zi@d(l(bB1;rF*~m^;{WE8RCnOxV2WeCan8-n)2;W_A|iirCJ(`;IFpWTar*_(mC+@
z#wYvJlo@M{!O&@$>59<2F#@l*KiHqN#qB2B9^3eoem;Hw{R{bMsizY|o#YeXo}q(D
z1eYJA1D}!(<Z|}(j8eAv-b{8<0zxv0L!y8zj-#FK75VtIT=2MmaemYOpGDOlHD`?6
zBI|r5Ew**O>NvO<wbW>(T=2>QW8sws#^S3mW7S0)c%_B~4%T=SIM&0DQLu|l;9Cp_
z^hMj#dDmGKFH2~Pi*}Uz@@(;t7rZ5S8<LqgGP#vC980??+PyRbd6ovPaanR^P)q&!
zjL;PGph4-rP)OU3U_R6?E16yn-Sy<K*f|3V90?f<I<R@Rh_24iYoPL#P=BO8LDRrJ
zq6r=dikR!h5;K=t*n!l(8;ghsVeSpZHENQlj8f1c9u6Km&oeMj)EaG*T0ABmh+n};
zg`8HU5ZS`9R2#aF#Oa<lGGYJ^#vroC=E!87>D#wl%>K&Wx$HPhgHiZZD)y0ljg$3k
zx)@eS?1wVY5d|cQxII1o&PjS7#2`Q{&`eV|c6^WR|NOV<yqWdXnII+pS2weDG5Ya!
z`1SSW7NTg)5JgzbUrY6I&sqFru5*M^)VD2~^R`ORY#MZP+w!H&P&t_5`{Wp?K*=M4
zwb9+}ES1S^PVcBE%;RIpliJ=BAf3mD4uWkI8O*BRb&6RtPQpOv3xpf;mBqRamcoHs
zM}TKP$K67naI`D*A%%1>I8$YiHyI;|{;Js9Js=Qi&$u&^G01nnlQPkDWJml)AE#MF
zEuM1-yd|*W9gBFCzsS00ftYdR(nyjA;+AAVi989q8PS&?zWn0*ez}_nY4${*#b-f*
zv3Rx1nhRi>;XST2otV-t$+>KRqZ6{|o`xr6jC<p%?U1+*+A5zogeP8lnL^3|XMD`V
z^>c(g=dC1~zMPC}IFpSt$+KXJg6v<mV?kqyz|0fDZEw~4%=X88dUzxwb}Sb8s4C`@
zfS)>8gl`R7qK~f99Rh1gM_GOv)aUQXtB>W+FNbg5zWcgU9O+Udw@O!99ta=182BvZ
zqPwIC$7|OpSCVEZZkS6o%SN^I#-bEo8=z#_nW!xVf>sipRZIj4#Z~wSmYu7n7UM8y
z&+}x_92uCLms^&-E5MHo26}=!sp>{DrCMxmn*EDe7dbn#Q)8lecQt~~Q)H3eAynF=
zz8Osi5?>K<9aT*(6`)!`0HG9QB-#a(eyQm4R;eQ*a|c*YnZQPJP3ct3#e;M}WrDXj
zQrmhX5@#(|$aMrSsO}F=LC0om4U6cu#4k0>GHc0}ZVN0b$u=74E*ox;ie+6|$f8Xk
zE*w!I;FOZv!4&{C|AXG!sKiR<Q0S7#(}L3V-da{$WXv2o5im^y#5PX<$)Z{flJDHP
z+qpQDr5_>%vSSZ7Me&mZc9m^>CKXh^>K}yRtj2tlcg)h9rTkhshSNpnc|{@IWRmHl
z6zCK{8ow)t*B@_1ttujjqKmZPBP@4zFn!?(`nUu)y0QyA1Rd>Tr$$@cI++IBvdZ!H
z+8)yw2wtqDUJlOhx}}qFoV!apNT@gc24{j~iiwB?<!=JjR2Y$RN+j|oUkQj^u5HH)
zaV1|bS8}I3MY;cec-?>B^#JY|b6Ra`D02P}pk3}*N(Xkad$!WHhC3z|xa}>Q%68<H
zcl?uiBQ!Go$-IFKmHGJhS3CwSIeC80*-ZNOQYIiaUju*EAqdY&T;bTBV$`cq7Eysk
z^Mym*=ahWg)G6Gt`chrDH1V}Oj{3&i39tX8ZP4*WA&y<COn)YO)rA6VcZNlr1(gP{
z7i7<vA76jCp)Om?77dYj$0Yu?ww}asG6_Vq@hNb>6Pg(9ttt^h6W=--EM8XL3#`fx
zmde_tKIdX3l0ob<>kafqaLQ0oqjJzg31If>Ar7nXUs%RDWO*Tz=aR(Zwb?oX!XSc=
z>72F(SU&Md4=)QbV}r!(WvT|CxHbO)wbjIeY)BEE%e}h#>Td+>W;eVa!NTsnv4YI<
zll<(Qni?!cLwzb>elsEytl&fSl3%F3T{Y{?DCPeF`i~FLQ!N1kgKe@VSnLD>B{k&b
zdskTFqO?E&74NY}?fxI2e|mtRw|;*4>2;O#zU2ijE){LmWScPzi9V89EcSMdATZvO
zVjZs{2_sGOVn(QMo}@@F?=EMS7`yEAbeYG70(wME*LMm3l*_d5Ldt0jj~*%ErUZ++
zTvvwhw#M|h?%E<=-@e}89?Hr*s#nUyF-W61Jr#D(vVpg^+K+%k?I5!5M(5gqd{thZ
zkMsQ*WYkDp&(3LCs^%G%**J{i(W{W&&C5xxMbo@<B50=jdQ=0)Ta)--$3aC{!E230
zP{x*t73uqD#a8*RBUh|$HEr-=XrM_7_0MOy6i1O%y3dLy(4&v1#OtSH9gsQ|gzu0u
zU{{0c79BJJM#4qYjy>zB9(Y5G?60Pc;W<kl$VjcCQatb~j~3RdPic-oda<WU)MIV{
zQv}oM12fD*S>nAH%sA+lLERY%2U$#$-~(5Jvw3Qs8^iwPyRSQqd#@z%rIjRtCj^$%
z4nxbdC}I7M<;~Pxv|(JW3(ZPv&0%@ENtND_=1i!V%$Y<uBnLULLr#P=l;k<$|0Af9
zZV@nA6{!n!A&qlhn|vx|h&D+J1s5ji9TnGRquM-2N_A775OKtU-^`$~mdJ*Z@f1S)
z5-Tt|%MUXZ9;|SzNiO;_imcIdjM-~4pq$Bo@q!E(@5q3Wz?$-!4A{TE9(Mbew;%32
zp=ZlA^m0QKg*cA$f%P;s(Kch=;nIDE=!E#Rzx8SXxG3DAlzJE-vqzJP)3{^oLeWEG
z<3*~ps1It9jlxMH8ll$bOjop-H)<<|6*?$^vOoYQ6svjtoQg3htv*G_C(!hYJAQhK
zo^GKRSr*`Lr{j69+VXOosNb0DX6&N~Ps?orcWMzby7VZX7fLk;eyJV^6X0li6rek2
zX)4E>h%YI_MHlV{M`S+W#aV~)d7JYHvAHY}l77jXOW{J|hV}Nc>?S7ulzKk3Ng*iL
zbY&2j%8f}fsB?PO@~U?bH)GIQZ5oIx^G?GxsF@zHHZXV|uW_TnL%uV*lWN+_>q6*b
z2lh5GH&ZAyuqH66Ap*SAM3D1Hg*;vK`cugS`D_9deeFG%=!b%<iYaJk&#53+5v#0H
z#boACMM<<++zs%#Ow#AhIX{&i&%8l|L+?xCL^MkCNrK5Ute7U2PR*!ioIWjDB15)8
z0+um7ReA<7is2J`2cDbn*W~T1x0}sAzS>zNdk>H<a$db&0zxOYBUyu+31_6Q<|U1!
ztl@@Wnm|A(G7Ezc1D2ly=WfdiH-M8uQW6E&mnoB~Fsmb-U>hgQLA*5cgT1N(B0+0<
zp+O`q%C2}NmJE7%OG(38QpskQm<I~Oh^0hzk}EIz;u7lIT)>;h3$WuJ-gNlF1Vjo6
zY<9xO_|8@lz{dIzvfAS}o?lb}Z~nPZ9)KNixHv~6cJdKs(>q5)io0yy(MV1T)xDgP
zb}){7Qx?B4>A8Sp7C+b$Icv}Et{K>k61;oFtjCe0bScA93TKVpXDXuiSA!MDJypn4
z=DS;0&n@YE7^@W<#*fJu$0Co-)e7S_a$&KdVyAaPVuQ70Gq4$JqeD=22D75g9|p^k
zien}|{$zAAn)^U#J4qvEcKtZoPu_r;+DPJ96O&zyV?LLe(>5V%PFS+3*}li@eEU;R
z5(1l1z=gD7OFMN50KL4g@)}q0P%;6FsKxelr^TRIFXiM1VP+Ap92cT5wHn75{X$z4
zJPO%uq>Q##$BfdFX~rC(eU_OU7fe=}h_z3ivWO9DwrA)q8~#e17^EW-q&;mU`P~0$
zp?~N{kJhk`+s9@>XE{uT^&g46Mv+->gElN-(yI;ilhc4rxaI;JFWsjU9VM7jrtjn>
zC|bw8$m#_LP4_lTHUfLYwX1@Dq(3|}I4P}WC~II=1e95<x<c=?Wd2zqQ^~BUG?Fy*
zY}-@C`++N{hf|e9v6BD>uhsWI<74r7C&5!<F#M|?Dw0!QFxr~c5mWdn*Yq(5&Yw@=
zv7`8Jhsm~@adbc%`M9lCbZN5w6v&7q!xBFbuK+2)2_YO}mOmycfW5qTQ#(g4&hhkd
zse?)-2jw-KLhmO&=jT{AzyTL|s@3L{=eud$-aqJ)XEjw4K&LD(hxXf-U*5ib`|VyQ
z^UHsEbfZON<b9z$RvQeD6d9*-)ttBQ-f2#Ba}2ceBD#Lp?7N@x2O9)j@UTUfmHOfJ
z*cH|v)G4j1>P6}tOVQUW#{SH$VEw;VXWXLWUZ$l67Y!M#0P<)_;(Rd`PG|3ydEGy!
zhPfgiDvXg8%lU!c*?UTGHSH6M1U0Rl_&R*?{f|H1D-JgsLa#xtadg&rM%brhOt8%4
zo~kdR0v+T)EG01qbam3rDg8n<2FD)cx3z6_-O1O&1bW}ZtF>7J`wh<GSEl?NCphXE
z#7-XKIHT&igvV;3JC?I}(AD9c<1bS=>@?vJD^$neuU&?;8+3(qoijY*HmeqEl@6-+
z;M%Ko=O#M1c8R{-FC;7jmyJTC?zBsYik5+t840k0z^hGa*66Dw(L)*h<%;{d-tyOZ
zc)#wtKgUmQwD8MowlEznD`+5po^b>ecO&$cWPp%tm^d-ES%g8fp(xZo4kW<cQnP`M
zAY6%wf_8u%GFN0E!WNvAV}W=|ViY%}G#i(lxIS~Hn0w2GE<jd|BPF67hyYW7@PO`8
z6%*#}q!%YZXCov>5DtMN@o+1U)M?=pf&Xw%oFd;JIHed7TA%g*O~(x{haYb{ukK#|
z@4UyI_o>Kcmez<a>!E=X^|cfdd(y9ATDtiA?}p>s*WcZWdB!>~I@&br1Ddv|)kF^e
z6LR)ZN4+|%x()m$)RT!<TdnsUIFTq8(Dk`gIP>t^GkQ!1FGPSn(4?HVO?PBHLZIhY
z$Zd3Pa3`lFKTbh#J^Hyg)dM|MCEQ46kw=!yM$%6NwpFrf&2`Im3GUn?R&}gp)wBD6
zg7cVUI17N~V-G@Pat1Q}Pml6U6{Rtg(2XqnI^u%Q;{-Lv9A3NUIn{ne%WIFy6aK@B
z@@rV&QGw1culeOa&QHK2`EBc1J~BHRYQv%>Szo6ty?gaXvQe$kdVC2vTm|-w(^0&m
zl!zX<i;3}}0<ELPnVOhNIDQzJFEaJk`z{cP4JH=;VN&<aaPLX(LvYHy?-+UYgs3Tt
z4i%j<i9RG~)6T2UL4AN^iP=8sR9y#LT_(1N*9I2~ZCPv0W=g$hR8o|M>&?NLbkrL{
zStS1tuix$VHz$JdVq`ls!R%qCxWxW7OO_4~WfT);aB2-oMfOint*#Vi9l{)a^&Q7L
zC1aWxKf(UlQjtI)%5<bP*>6~p1H#Js6EnvK85@?9MUJ9eA=qmLLxT$}xm9{YCy3t7
z(DdVbCy2P5AROVVBOF#F!y7X&kH0X@WmpHyHGt)!W;v<c+{B7b)HAd}R}{P&s!W;N
zYg<~D##~{cCf|BCPF)Egalc5rulF{(eOyJ~uk2J;KS>g9`*85f@WacmcRImV0!&4!
z<BzEM<0TP)r6hjiMFh^zLysiKtAtmXUn2zasuH$weBw5HlfFNwypBDihi*>LRyPSC
z_8Jt|KdLK_?Dt8EWf53GWG80|*vGTv&PI_EXnrsCSpEzoa!p|%@GKeXI6fpzj@QX=
zs1T?};F@q&%(pzzl_a(9P*vKa2jV#W$p`ZI7fMLw{{DE^k*R#Ff2quUY6CaFzUt(1
zr%)HG-W}8+7GuN}Ga5Fr$UIr(CZP)&s`lDMZ5gnb_22CN72_c15DR-gF0L+^Qp60z
zJjY<W8nP!Xrx>Glgr;%`aD>Foiw#}~d33B@V)q=9z}B!W<>BEVr-z4wsqZOqw$p2T
zM1Ju3Uh&^qITG!*ZP>3k+}4RJti;_dm&?m?EZLGKOVV~(p4TVSilv6KTuHX$Yu`SA
z)ImE=cf7sU76F1F34kC7Djt8ovF7W|zpnDVZnLopd)ROQe(@z%(aW@Ym|AcY)ctb~
zVUtdQ>N}H4#y~{Uo2IlI(Xt@nX)#i%u#0HWocj7k7%v;`Kga7CpNclLj|Ty|DAi7*
zMf;|?L(d9464{?-jc(%S3hj-K0H&Va5Jd6+Pj6Djq_^*+xl%@6tCz@`E@Q#`r<5t(
ze(Izt#y51yMJ4)N(QASF4;yHd_>culYHG2`nk8Vms7A2)r|U9n?2l)#{&qa;EZbXm
zqk+t$WZ+0X&(rB#I(#YpT!w^*?wqZR=V6*m8gjXGDq=oAbJ(4qF}UMPzH~TPRrGt)
zjVw<inX`6@Z}`M84f0VsaD2f^JQE_H4uj;baW##*iF)>oWxB9l;YN9o`gxM>mQ8Dh
zje=4xy$zKTc|P5pbY(KY(T*hY7D80`t+MP6(<D!**={*Duj-IvN6TuGV@HDG^SdN<
z#(vre#ZEhXsazEd`gzz6pFihw!q0@d4Lj|b8w^G<&Z?^dVFQcBRtsh{u)C-~GWA<K
zz{b8B1uPmgX3w5EGk20kc~QsVy!$?ox!Viw@LYb8Cc_}jr;bE6_rVlqd|8k3H)mXr
zQHoYuzVy>Rc0S0na;&l(t1kv4rM5&xaVtB!HsH;dpoHn3`pO)iw>Jp9py&tr`D9QI
z&`3DL=_sLS!f1QWM<|K8dlxCR1!se*H?}+oGMPrh94G99<d&S5oO4hvisI0hp~cWl
zT|o%5wi08Q3I8?}vIAiQrLT533!CWYT1Vat>RvolovliONp(ee$vv_LF~fyaOk-T@
zDm4~WRFvpqaqguUp1M({pNQk7#V-+9ENW_EVGI(z?Tl<`EYQS!F;1dhW2cQPzcPpz
zG9ho*7G1~T?JZ{}oLFS;Ab7|f&fQ)z2so-PbcdrXbYfS}ox_$|EW*N&a1|-urY?EA
zb}VCrv3I#d`T0sswd<KJ7G!Dydoc4@EXtC@OG=vdxNu4SvJ_ajq&eDC=5s?c2qukd
zG{D0&#rd(50ge%;?B{t95A#NzG<tzv{m3V13^3sm<wk9&=`8mLGGOH3YK@>c|FJ$Q
zp(?Qhp`gJOb%l6%TfHpHZG~$tyj2|`@vB`;tx~4l)tY`9QEB{|nB68Cz}||5+F?Qn
zLs9!PH&3q6PY?R8MA=#fWF~T#CNUzh|Nkc0Y?uaq?_)wW4#;9nt^~hA`kHCa1F@LL
zetPdohyy=EEqQXO4VH}tW&!rtR_SESjfZw8rpRFvSuc@VEM&Z*1U8eNjdGs`cizo{
zbR4AQdBr+%b5ryRsQ;Lzi>+c|!PX|Lg^&qHxdVS3^+}tH#eB)#5%S*a<G>&&)+wqm
z+hxqlAQ1}Qh!AoygEJAso!Ht++;S#xjNqFJJXC?1EFnWw$;J)wjqCS%hhro>jj}u#
z1nCoG61AEK1ydM`KLa<y$v>RmIqdA}<dC7Y*tqL7>LKMe;}8k<?%lhi^H<mJ_TC;|
zou3^d$e=4)-@v}Wh=ReXVA;6ej0TGG%S}T4C|J+WeJnSl7g)()RAYu&FzO}Ezzl~$
z@2RThFc|dE)*18*l3|J(dtk6vz>&m>!WE7q8RY&X$dWiHdz=d9XVZaXFcG)x`1<UW
z0Xsh2JHW@)_08!aJ@+q9F0NSz?roDMQ#H$KYp2qBiD@k<czO_X45mDmCAfkZ-1(`;
z(x5+5eoBz?n4;Gysoe8eZ<OTdc?s%zteg6SUPeIKehI&exh{GpMk`n$MEo=>Dk}yB
zD}u0J!-{||GWkIIXexgiq**gZm(So_Y#${9^eRR+jjtQd74@^YG(9X%iTC2ba9#YU
z`7MspAXwlg$+zLXn18>sQw$3)`imhAXjP~J_|l*i4&g%Fw%`SP33!5pZ{S<_4!(!h
zP6rOfMHwvIwpxIvh}M_T`U+ZK16oq+TWEa;t?%K*PKU!Q)R)xvJFu#DTj`a}<T&Px
zR;h)H{p=pK`cBM$x;%e<;jw<2jD~0_Z}%?VonP$jpIqOd@F)JTnGAgy<x>V1mnUa?
zmxvyw5xTD_QXlT0zdF#kEWl2Cgk8cl4)1}+mQk0gk6(8a{2D0&BmC+nX)j2zFhqCQ
zRKZ<dmQxZpH62C+gUbSZqI<^$ig#gkx%Hg|;B^Z1qM~6lOwwpZ)~-qndb2!|HQY_|
zkh;iyd0#%8t%s`kf{M`qo9Vudy<ovIoEnnJXpqxf-nm+o__T$HpphGuDtUEERbRNV
zKim-ZF;-GYU=NHhIWG~1Pc@k|>qgW7E=A&!aTm6|uLCx6#BJPd-#p<8Ka7HOdKD=B
zi|~AYdt2H}9I0t-Xa>G8U<V4SG#Dyh8sAhJsD;}nR88%V@}z9i)Gmn;>e67Y5V1;%
z&b%o#PXhOPz5Per{8npP)?=}*%>qA_;hO&>R;J=Y<BJWzVw#xUuo)M-Bef`S<%U^P
z8>*n`4>26^CE1w4>=lTb@;(S~WudWC2-wV$QK~N&34LB*uQbwPZbF4-z2#Di0((&-
ztvQGK^^GjUEdrf_89gD-4DLjuI-QT576e7>FF4FZc#B?YjE`0ae8DLAa+G+~M68*R
z!^~0TmOYoxS%+~lK2=6#iVik=IYw;VQ6A{XY{n_tyYp$`Q>cw`2E%AJpbjw#SG--E
z-mv2GcH9v@Uz)J%Nc`qtkTth$)7yu21N2T|)y(MhQd<;3rTtKOgMlDT3)anmXjj$k
zmHX>swG#1T)e+lu{m^j=E_wUNT^;md;T*Z^W55#-Z<8o~F`_u)?F}wK{Gw@2M53L+
z$!*j@ZuAfsqyZJ&ET5_%L$n3ewPBLnQ)LZUEyF0Lx*EU}ni<uNAS4_h0^Z_S>r~2X
zvY%tr=-b^a$giU~NJixQcDQ$7j$)GYB@sAph4Uy5MEFXkiBh}Uf2hRo1--=|a@(tc
zh+yvKL6&1{is7eMq$;wt$5Eog4$jX|RypA`2L{zpB?dsmB2LD^-?ow*C)$F8%|2T*
zTjD<>o?qc7!K#q%XTeYuxgs{7Qg%sUl0ZXJ3iPUU?jcC6oi;)#Hbw4zm2`bvOeXBc
zg=G+Qa*{!oZQKo3N!%cga+uldYf>EQNgM~g2!(2?(6jL{mZ*6ve<mF}X|sb#o3XUB
zHDig%7<4<1DYVdxeid7eW@8;+V_BpFq%oCSggP94MI%J=9UQXblPOtEGFdw;=_V6Y
zAA~}=?=rFqm{E~@D2#=~Oa}N!m50HAoYw|HVe%;ypSJapUyPlZbr!mlIz_Ww22_}F
z98@TT`1IMc+#rBJi5a~+4cnu{CJMqL!KS&B??m#DZ#=N>HBeRP@Pn*Dr{69HGguf5
zlDtu76+=I7WPTi!l&*2eA+D?q^9s=un`1ZPgzto$o6$%SeoP*+O52!YcnG%b&rk-G
zJ~1=jJ)>Dl?&apmmz#<2%4!bi64#F%4Wu&^y1G1z)UwPABavoL2@JScoS8yRcvcb?
z#(-n|38hnkKZ7*3ArzqH4J1fgXLtXu`SDuw6r1bDBwbNFs|`AncGd<-t$scQY-`sa
zuhvUx2w)3QAs%B?fT!jV4R6CTcW{jtG?(aUjC#wFgWXG{d)de$En6NNPHd%Nq8r-w
zQ#&iU*}gA~&7v`9iNf%_p<{|hlr_l2{VI25Y&s94tW3@j(?kl~b2f86@*^A|Wq7L8
zdE@h<yU)GGg$jJ^cZ46*N8@vB{dpr9nnV>ebWcTk%1XVLYp)w%NfCcPvqnivk6IcX
z)1J7R-K->4`VmF)GdCJ5cN|3xgqGW(FG{lk^}v^jtW#uSZjI4PBp3tnegZuZPp7D~
zqCK-&Kxr-%pJ<XzY1p~;q8{~Uh)Bc)*|!mnk{qh7%#%>=W1d>Ji$$w2t0NZ+-L&i(
zoxloA4uKH$B9qb>Gp?zqm^EJ``P4AA+w3BFCQ));tqHS<gdB{ETY?tqrfV2#qiGy1
zGm<!<q<v+@#hJNtTFIj#a<duUB%?+=%JRn0&(KtGizIR~%fc3kx5LSD%n&q##IlDF
zWO*TTOX2!Xz1=FO&bp7EKVS8-I!6o5<{0zbw0|wjec6W?nZz%vYm^u_X2%!VZQS7-
zqXu7#WY;_#<;0x4`wZ!Y-!A!cEveL(K`pBBCQ*(5v#5yq$7Hp3u>~`n=j`RUoac<@
z8H(}k?1_1XW}f<Cn0e9(%c&V3RnN{6J{tJSuBwo~TD!AL<gW4_4VdH7S9K4>qV50#
zg^x{CnX&0e^NrkaU0Dilw|J6k*q5RUr&7$bXcl;wh<fmLV2U4;cfkT>RDL7JK!qDD
zENhD!l`bCF<#8Eqtz}ysrVkgWCFN%JS&-4F7%)n=Y}2uygTf3f`WQ-83fZo&Buxs~
zm0_fMuaaJnm5KJTC@*cAt#-5Za@-y_o8={7h=)grg@cCb_g`U5guxEuZl1gzqG#Xt
zGqfIRbX#RZPfuR`!a7wNIOaNY?pK#wW*k_b1!?|cfCCI1MIoMC>H}&I#lC|-XN<ph
z@$Glt`(24)bU%#V->Z0#3_qk<J{nIRrn9{t_YV$_emXw+`IpnPSLYYMUS3_le)IOX
zo8PV5=izGfj0r;}7;Epml+9+FtLLI8Z@+o*#hIUnE@dr~*x`$v>JmoPJ8>7)RI^g#
zI6~o|3&tqB5Z@0!{DAkqnlXmM6ccY^)R*?r#?=`hIvwp|4;IKhgjUY|MK+Tg4P-+_
z;X{Lc>|RtZtyp4DT00R%?<J2W<7fmkN?rJ3=4L8FpU~p&`y?9Z+Hw|S3=1W7Pb*T#
z=sx^;U8y?ce3vZB^XpEp<i>m*cZ-CBv;Azl5A2yA58KSbGL8L!8RZr9=NkRVm*1~o
zUuvvcCH+Ao`-rq;FqM`Eu<x!zI^|RA-be;3PN5d&^Lhdbn1`Y-LAt#IMm+(uyPK@)
zn*0Nb@YIwR3+X->@PW!xQ=U@Ucn(68Wx{GVQWkFNZthnOYE>#5LWCq`c_VZPZ=+t0
zYDZLrI0KEvyrTA)E-If)t(w^O3t;pT4yU>KViV1mFTPOj127<g*tjV$jyQ+~%cQTY
zCQ1unyY<Z%jxw{_ZMM7?H%y+Sx-nD*+e{RRZJV#b0HaqTd1blt1Q$^1jX}Fc&z^ME
z)(2+w9j`zcPJW0!!uuO>&9+~B(QIMUW+5`;(jKIkmwUp51n;rd&dz5HLi1B92D0{q
z-z|l1Iju*pX;>MGs)|nji-irgE5q|kCqi#r*dX~1oiE&k7p$u&`_Dnvw)SDg)^x&D
zCk0|OGMMQ?b`N8$Gih+}3o_a~AYQT03?cJo4FpsX<tl(2OThyY!5Nk&6ju6O#NUZ(
z&S%e_ok1#Qc;v$@%kInzVIWdhix!TtWaJ8wzRI#v{@TyWAX3g?`}m92H=IKvZhvvt
zv!CGa)`szmYv)RV9AafN91RGf&eJZq*%CtJ#;pfg<tim#R!pke(&LhGzY%l2Q>S=F
zz^$g%jHh#!xuq+ZuiS5WWBZ27^Fed>5=avjcy>dVFzC*sxX<7rR+vX+VV)1Y?d{2A
z;!eJFleE8$??3Kr>x+kR6ij|h9y~^`8&~2PtgMt{9X{QmIlZxZy8W>u7~_EV;cr|s
zukr{n$GE~{TJ_AH<~-_oD=e6wMszRP4d_(VoifbFns&8*X}jl3s3jM4mL_eu52rAK
z9t@!ieb|F5n8F0^;Q@Y!4{#3e;Q|if6}*FMxP&7(fg3n5`QbM(H=;$!mWGUCC4)!9
zBXjp=Q2T`#j7fVLn2a#W+!U4^-WEnnNrl3Cosn?%#R0G60zI*Bt9OW?UR_-((CX@A
zp<YFMVpy2|6_#j(FcsYbHNlcb-3#0$Ecexi)t$kc>dBe%-jXh-jcQT~!5<mmgM>Nx
z2#-y|C=b|@)AjRJHHqEYd~2jm@cxdr?;(c|1^@nI=JzIq<(4ARBVrXcKz8{3sL7Qj
zF>FuHnnuKVX9?#Y>nTBCrKb<r;=N!b=rzNF3&A9AL+j{6!(TVqC@He#_dwOJ2T_iz
zj9&4$8luNJAH2>2rmKpi_-2ZwJ;Db#$1%Ptdd2WKV^*!f(l{?r2#?m(g|$4KQ!xP)
zi@-R8q`G_R)_hJoD8NJPXk-@ZD|p%-j3vlXnvw@iRFX0<q9R2woKC8oPb#rp0OO47
zS+7^U*Ht7n%3;<<G_rf_ExGsjPEFP;C`6#9r=Z8Ipz+G~;|mN2WwAJQHf-mmU+u6?
zXljJd0pqwaH~qwG>u9{bj%H@%nbl-t&=V;m$|ub+er%3U(^`wfrk&~aPU@^`N?Zv)
z;$`Y>k;TOl>fk@V3=}5yioqM&Dzd8jP&QY3d+mV3Yw@=3^j8FGk}^0ss0hSsIIsxB
zuaNCJ*TQ*+&an(8F2%b#m^eb9;(mgFHU1j}i_oGFq29vm#h|r|>nF-^^PhV3zFN>`
z%SW;|Y#uA%M6c^DdOPdJ3Ky<Tgz)#l!zK4_>~(!a!v1^1E+Z{jMOyZ}eNh_pYOF=p
zjaD4<YU9BK;>?sxKbZ)Poo<Ik{DiT8Al$FpW5bbFi=MduS94e5pFR!6{}sfm)qoT>
zx3yN(c}(5B@41hkt^+{>Ov(=@h=059`*Jj)Ezaws9-~dtm*nN;C3#n9$6*0$1%2Du
zNf$59x(~E%7wyr^*&2)}`4^oGV+|t_Xc(V$i5a=O0XdbM&<}GDJBo7xIjRT1j_yNc
z%A0NG%x*IaZ<{$Px0$qAF2pKTv&}>DaLYjAj90R)+F{M?F3)b`Xv)I`aHaP@yc4++
zW3d!-aUrH+L7NNOndmAkCt`L(-(8k1PlIt9T%{i4Aqnkrbv}Y+4aCmoY%wv%3bHJA
zy1q=WG<N2tS>bYc8!yELW!WvW&AXty3$dU)uOb-iwZ-|1q+u>mwRrBi1-1BoSa&KK
z6E&RYo%u_B3_VVGWzH|inW`L|>f$e45P2r^fE*Q{ZN1pq1IHhTmQ%uqYl<+?=2q3W
z$h3yKSvk9o`BX}UUZBUuv#VdqKf5yA>fv>453hHl?@=lgm)Gsi&!gKPrz^)m?Iv~T
zLebO{%+1S?<XTV4^=qZ4?GshzF1@xV!aH{zD(<tnH}h5w3zWqE1zC|C{zA<F%2;+5
zbNP$ML^D9R<8$y2ds_I9^7Q>~)xv{Lcl2Ku*1!1G1%_9#G6?>`S_IQ0ZBg>{`L|zh
zwU4`qiPe5ye2{wvHy`B;DJc2VTe){+!P^M7l-S|rrn&>=Lvaw+?TGjxB(aaFaVNeb
z;Q)V9r#vx@e^iBzH;x7HLC!iZLDj_{5Vk&Zkt5jCK{3*`$iz$(0tawMFoxb<r7KNU
z?jd|L42l#7_l>APG_@B>vpo_f15OVtlb)4)W-<)cX(aON6-gjz0i-w5dK1yUa+Qz@
zCY+@tMW*a5U6C;QMnJV{2zllRO+N7@wBS<85hwQ?aU^lBHl1nPFJfKImggi3f1M;<
zp|y$+AQ;eM(9V$+TuWs?m8V~u74}^`v-OVnI)~}{oBa1n{`<K{?0XjPC5k@FgSYcN
z4BE^ba%3tY#YSv*ki+0-mr!ka(D04C9^62hbB%|abb_x!w9NTJirkt^kes?-%BfKy
z4OFeQo4n2`lYmKmsLoP0-JQ+}E6JBRTKaA->hzux!ezKWMbNj&vPK2~Y9i4Uj2HkB
zbBB9w&fS~x+`ZmeB-nxfICtf=!Pl^ZVR0_F*XMbl8vB(qaBt*kWvZCUAi=ivsW${t
zA}P$ysq=kbvTNnW)vmvu?{5MnpEbUMw?}BiWT{MelT8`#vk}|dBifOW3EOkeLA%0O
z5kMCImHhXP|K9RnN8=*HI;eKIQJ7|(DKh+$Pz`i7b{~73q?F;M8~aFVN@1(os0WC$
z^^-m}(CAhqY_zok50SRfT2L3lF%Rfg%MD@5YBFfh0@n!Som>&V(VYRE>M!*t^vBfc
z(S#pkUC!~2d(ZAECqkw<AD}k==6YQ+t<7+|Bf8Ao&AG$Vvf=ejoEaJ~n5{ULKSNfF
z#O+r~$+gGTp;8rpOFi*?+J4@GquM4QHt~GB^}Nzibg4-*2rt^NIzn$2(7cx$K_u3&
zS6(XfC6{J4_>4D$oQaW3ps~K=dm62w{~EjzGQFt^q)fM(XzGqc;3pIMiEf&#26;Sp
zrYqlSdlyOPS_mni0fj;t=WW)NhR$<3d68ye#UPbF;8O|+*Qi5j(YRdvY&4<6_O}m%
z{Hac-+^srbp%>^-fl(V`<4{jczfF3UTIZyS9{4^(Pux$;+&Tvx1{)#?v2puCtN$Df
z>>w6_o8P{N;@nQj>ZG-PVp5ts0+y&2L!VCmAa6a~2M1*5-4|$|lH85tXf<lVTH2Xk
ziaU#j%;_Chv`+Ukc<)*2Ll4gqnbvV5(tvblY!$Q#hdGTYF<!%gV!Q*-CV>|ql?2f|
z7sl!kCbca~*BYKZ6((A>{#eSbs{M^)%i1)}!Vbk=(KkeU&nO^s*Rcst*W7h<+(_3z
zrp|D2n8(lLpcvl18JEUQph#L1*F+}ocYRxLD*X%l=q+dj$N;`ry*?)|89;w~sn!!o
zZ4D~>CKj^1zh~S%EU7S-@_Ij;*0i#Kkm+}Mmp96R_BSA`su9RhCCwSOGTt$bNzd*&
zlV}LiICm!5ZlcUDq_*H7SG)Hs=H{voN(?a?ooka*UODEAyE0*hCD}8eH(6MYDqufZ
zEFkf)D~=p~5z7Q^gGHI|r9c`!HeaaS)xo%smoQizsGR}EnHK0*au|J&*jl92JU#^u
z?_^x}VERKdz0L=KOw9r;rAuP;p;+5zEIj2zaceatJU-nFyry_FXlaX6i+}sTayn;`
z2Tu<}-~>}lf9~gM`lcP=_qo#{XhHSH2RmK6NlGSVr~IkuyQNKt1e;2_E^8Ytj?HY{
zY#lEy2p!Up3C-ZG9aM;hN{rwQ=bkL572-{Ti-h9IEvS<o36^79Ej^$36bp7!2WWVa
z-_Yz(WaZH@SKR0`lD`d|XT2wZN_A$?8`>QpA!iMDTD#vAvvN<m4u#2h?zzZH@rO<k
zVmqdYn7B<4!JF6(@(v4I$Jl{H!|!MW9B6dru+VVuEWw2#wS^hQs?PJrHxjF}4YOur
z#@G`K*WYI}uXg^atNyD_+jUi{vG)OMCv>+bApdn~rp`@GK|iL%x~9a}w!}K6Sy_zU
zmJ8Yn&=5_F53&#F!In>opQmco-R9IpI9UGNj+J>#s(xNvC%3c(`Z3`G#e_DLKkgOj
zctzkSi2@HP{qJYNZ?equAwRiC#xE)T?|($j<a3+lf1?Hpnd&Lk57g*gd2W$mES(ki
z%AZrh3SLs4ZDN&<N)^Wyy=W>M(<4qsVhK|AXPUJS6ddV6LVH!(cO{3Z#FmR|>B60W
zJ!|>N5{Au9y4F+^+araMQiR}W^K>OEc5GFjTPl2^<Bg;w18Dj{YhpsIH!wnj)L;Ye
z@*qoTfg^g$LudbWa3`qwJ9DFXHpAYYap<N%h{BIIsZ>EOOy_Xc^Bbv67((%W*Eq(3
zV+^wz!-dq@AXjZq+8u4x5PE9nI540lQ(AoI0K+bSBI}Onv`}zJ808ZPgl4d935rH!
zLVHBzhQw&y-E*T8mLA?6wFD<|qyMu9>y=PCk-Pyf`Y3+om`cozsl<iS1uq0^WVAS$
zma4Hap;)>L*mUPCQDdG?Ff!+nO52WKU|VqdY*ZB4_aio4L~`rNJX>c|354k)?9-eE
z*gLW5bf{8x!Pp4{q~xOJNEUFxGB*r8>*TTIZT?cGb=q+{l2L~36HK<__E!ilK;%Hs
z&*3l~x2MX7j0`N`vrnG<{enKdkXrQ*6>U{7xs+mi7pog6js@SPEIC4&z)g>NCqk%y
zdQu_1`-szz`&RjWEkt5g7n7bxxad|K4SECwVXFYDCmf)g*40rDP*3_7rxc?tr=Xew
z;KVUK;0kvU;ScUyxjgQP0rGIEOC$!pV?dz*pQ3+yCJY!0@u&x2Xz8gyG|mBoLTpi7
zXpC;C*!H;UnzGI)z?F!4RQb#FN^Jpz3xFbsFC&wio%1bq)JqX@sJK(Ep1`7amoJ~u
zw-hXRfUuH)iYT;wv=d?C7&`)ZYF(BP2|V5SN*$qqn)nQ$3Gf*ZL6A6}uD~@M5|?)Y
z{}ipf2lUh1fZjN$wIEP*=Q2XhS!e_~ijL8qqgD>U)L{X@9RL;p++n~SK<+T)4nT`D
zdIe|!&>aMf6%5*dBgi~_VsK2I<ExqlkkSEC1dsyEL;^@@F+B+UK_d{p8N+kTkzCOQ
ze0L1&IUrHN3DW{XbmAcbP#Q;S2$~xS9!CtL;9<;9RJg?muN13qfDFVeMBvy907I*p
zeyHaFdQ6p}4U}+-FV5(Jkh7+gC})z6Gz}td9Y|2c3cj>J2p|!OVBk4Z8a|;>Ktq|(
zxT)^U;TBR;g=!!wM+3R3Uzk=BXd=iS!t@F>6YZRxQ*b6-w1#8b<`>(xZBH_>Z989V
zb7Chmv2EMd#7-toPX4QNbFR+CTivz0x_Z~%U8}kmo`t@ttPF|AD?+XpgDdcM5|oX%
zhpdDRA4Xz43xNuCWoC|Nf@VnjpOWRlzy=dST7}`{K_4j80x27oOF*R(tO7l+j`-)u
ziq%jjxrs>oV1&QC#&eO$VpvKE_71cac))^SpThENH_e?k$+HBYuG)?X^Fahg9u<G)
z1fO_fkZn2Kz+W}*lCm;qD2rTVq@?rHL7+NKs|d|X9NzvgA%diD1pMh$+t0DbDq!K2
zn7)PO!jh1S@V){gOgjf1$@nLK&VMO#PT}KPUf?FkeTv$fELi${iYky7EQ6PU&l#C5
zTe9&BUFn}<qSHnw!rB}!Lrqv#5qDRDXvyCNGe)V$7(pr*`Ff7hYyZfNko5R<u&O~C
zk($*yQ+k`*J$8<`MTE{B8W8%(IJ8$A;#P|Q5Eofy#8B!}3YGqVmkoShKhKZ((E^7J
zFdJNn0BD~`lrf#HZ4wmJIt1Cw11w1=XE0eXryKNOgnJ51b*#=`5h;QqNO{i6ZUDy~
zNNKRiJ9($?a6m4Ib9F1G=ptE2+oiC6?V!_?3XF$l1<6qc)owx5*Mm~VOnxo7qgnAD
zjSv**KL~rnLr9VT0RFmON}VyQnN-pR_5@W_S5S}xLQrttCwyQB$bm>ks0|fJF9+e!
zU!Ns=r>A?k51D2z+CD+$&6dP&1_bxTX6|D>$qfW!0-b?N!AIz?H~LZm;pJPCp^u0U
z?|cOryEXTpfjr8;UJ-{yl{`JHzs|LlKP-Mw(}N)Yl&)f<M|M1}*9>OlgaI#9QjjW$
z5FKahFkRK*q2yJ~KEbg|Ii7;XZ8U?{Adi;9Ej{Pv%VTimDGvazj-5u2I%~!n1mPl^
z=YA(oC8eJ2t0b#DGsouASiV`C77+R|9yq<5r?rdib;+}aU|bB1Dq{P{yq^f|Ov+=Q
zkfh;9I%Xj9)hjX&Y#@QFk2KnE<MB?E-u_jq&Wy%;qpP1qd{^7d9qH#!Ff|4^7p_&d
z^F8~x@@Gyh803M0uHxL@;}KL_W8iISTI8u!cdU`fUav2N$)t{9%P1P%3@vbbHWe#r
zhjp`{Ql~6t5k=K9CL3n2&^9PMo^!xAYtXtad!`}agz0sBHT9|%aPJ2Z2|~?;<%l3g
z*zBqcGwoaID0X`D7q`sbLKoTci*j$k$^G+61DhAY7H(Xuxattd4I_2zEIarQmW&lB
zlNQ&gKrzW8HC$WIJWr~nd4pj}Ya`{W;<FxZ6Y-cWfr88$wrLGM%FWcopC!pAR={?=
z+BHY@7%6D~JB%a16qFg)pFEHrfMmsJj>2WvuS%(*-54hu`7}Ooqd^<{csbY#5zDar
zbi9hUPI-nYA69E6I6X*>@xVuOo^#?|Za1FXN~X=hlEJT+Y)bgUVxLMBl>}AlCWq5q
zl9C0jlnhykjy$h*ADMm|F1E!9)4_IG*ZY@le_nCC`#xSfQyr=NIqna{a}#~ZiUp2f
zd|3V1qNI;SlX?PKQ~kGGq#c*%1^UM+4Pfn3zZg!(ZzaH?`O0N2<a4s+$UP+FeS>nr
z?@ri_y;!dqJP1{!lup!fMs`)ZIaOmjL!VOU-pR*vd?b9eV&$Zlpf-ba$0?5@_xf~U
zBT`#1{1}+m8h6D`urr&QBSIeQk)ij7qX<^ZT8zgenMP5S3BrApKYyj6bse*A$aPj*
zN%@8WSCDQ@hvj_1@=<U+`xb+#*4mrJY`2;m=r-iwBRSE0*>m@JxvQ;ym^RpmZbl%Z
z7vKIynJ+oasfw!C17RuiTGlSi*XB)!j~bm&v(nOJQ(o~8Kr#!dipy!4!bJY;g8iAa
z?X~PrF7l4B=j?BgLMfN1m2Ojv&((x<nI<_HA@37Lqc*QC!Ncu8BLP^W_AdCPVb{5u
z>Ypdy4WmX`NUM8#DY<u_%XlM<_!gm1iGgG`jMY~@;Y><)xLwQ@72ydKni}j{n-cgn
z(zEE;x(kZXaX5C9YTkc;vZ(|VQG?T}TkA;?Npyk|BB)6bmr!8_EY?Nn4RE<XPjUGB
zrLHQxgX2;!h)VKyipXlDMv19L&Zp5uh>PQiWHl<kpdMSeXg5AoVB+HRhK`DTJqZV>
z$oLbEX?^3DHdn3{hcsYnrUW%Ju!c{UxugbZi-`$~1T6O2C#S|A)d%IUu~)Hcf9~L%
zzPcaVWn10Bq8U~#@#?heB~fvmLZ+GP;^AZO|7y%0)%L8ipJp)H3exwCcHZlnpVE7c
zrd^a?vc&n*Ul{A+JF!Q;eo@W*Bql3Am_s>Lug$_ZkkOfa)mQkO3ckY4sd{%?%H1E6
z$mX4IFfo4<G(Sr|7u!QZ*lXT#FQ8q0DNX(0!ztOiIE%RZuj2kiP2>uPzqo<}`(PCh
z1Nd@0-`uBN>BYi_GXJ}uJHfO7&x8x?sua)CULLX{Wd28JfM*1lo}O0vDra>+Lj0RL
zEyd#bF5L91js;k-nWpGY^)1hw`YD6%U>{&P%{j*Up5pG2=g1<n@Ts#VB0U<iCeGjW
zj6tQ>nI8K)AIyqnC>QJvGUjKdVtZ=z`$%XerR#DEKQ2RAmH72c(H#96bY@0IXRiEw
zF0WHKKS7*S!$(#-%*y*mvuf*(`tz}3qs9n$`%Gt>@(xB+)&zoW=0ftYs8p#kTaJmE
zsbhY9x?REFc18KjBJeOpg@R!;i{?R42nhkTGv$I&EZ)GvQL;B-+~|vi6JbBBjqu8b
zXF+@dYBLlfjx=r-3M5rkSL<j(>z7O#w}h-$0ljM2G{g+VaMFE3T0_n`L<QDIhB*4z
zpM{Mt7=}cTB~i;=91Crcjfd(j-9LW`eR}=&;KcHYhP%GU`JvRAG1LW7Q%t;MZg1k;
zLtSd<<m9eL4{&;h_z<mF+84ayNwCpLoyedsKaw_I{i2HCD#2Bl_76hrq@{s9aa5|#
z&c4>N?rm{p2ybXZ5;|;kOqxAe@78qExZJfTMk&f6Kn_y;tZ^l6HVD5cpuVA!|0H?a
z5go)zD~2%?Dtq2V2^&_5ANe>CNuwUWq;KdrO$HM)+i>jg>@}7sYuCmUl~w&^Z4`&@
zfdq*8rfWmI&Z+={I@erlx0RRmK~g8_+Nj1LEB7i4$I`=xu?S^YdFV>R3eU1cl&`WO
z$mGw^vQZU5^nO^(=NysgDo73qTueSt68=3BS`*cXv^N#AH{lcM!G!7$Ys>vI4^h!^
zCRwmyY!W+AFS_d?wvtspsWQCWvBE#7VzDUW3Ow3oJwv(>`ovIwi>7V3>UzJ6{5yv%
z0Si0i=FH-ftYqi?u&Y^({$_9dlL~2bFi4T#89m;0zb@O7)_YCCSBEOEHL?`C%znQ@
zk>3S<M*hIZ;M_-AGuqKDsEU3<=}<Fiv1uUu1PMZ)B|O2A3(4<>V_-yGRVm<|)((;u
zp6*x$D*XcGFJ5}7^}_3?ayI(#^jdEDuMDP0D>t9e?B#``IZFrFlX+&|&U84HvRf|E
zl@G*aoaQc;<bsv}Rvz~&&tFCw-8IFdvg7qhs_%WD(^YU|m9^GM)szfXGDCgeZzEK#
zQ5}B9q-WzGZ`qPmpqbgwO8>Lz#34%<f?)I<=xXA<P95GBcAr%Sf9>iO2Y6cOy-Dj1
z2E#(;cEbiO{K74qw~=acbF_E3AYSLDm~u!ljY*5oWxyQV?xsP}0>X)WpOv&nfp{5o
zud+EIfvGykqY@HG;iRtc=%2uUjGt?q461|?{K@U=&~XMLSq0*S;M7a%*l>)vXdHGv
zz8r)-L_%I8h1qF8a}}#Jt)1W7?b?OPmj*v0WvZ#jD7IAPLhmO>4NVS0M*jG3u}m_5
z*6vOGO`}xlejxtbrkN8eYfH7wMc*$#Z(B*L=Sv+vpD1oVk_jfM2qZJ#JEMT1#bPSZ
zzlQzfY8;7ugI;Jr%F9MV?~?t+K?K^jyjn;3Sf}b0nML5gUMLeIzktS{UHVX|DxfDo
z8U}L__#=o$<|m*uMn{?xmt>^4vM9$<;Ya_VwuQvsir38P-jv#^1q1cJE7l9hD;om!
z@k>m0OIt;M;#4=!7dt<{_+}^aJ_V{pTJ|`#7O~6s|D77ddxUx*s`bK}e-t$$)g6nL
zrW+?+Wh&WO`(_XEe(2miQqX$e1O1DGlf4u-cKpvP7f+kO^%*hR8@ilx6~+1rQS;R)
zlHA%k8N>&->U+g$l<oe;Z1csog}t3pR(FUzfv$S@=xysroQ=fq;!1$7z$U}|1D^^i
z8hw_ejco-kxvn|zg%~r7VGJ@@DI14sS<&<9OcgU~Ax@KbKrIrV{BjSk48(S7ikdeE
z{63qxDm`bd<kCabk-)*DAJ50)Q)kG%=_z5|2BO?<C7}KUq!}NCewZb5*AR$q#t|2v
zK{fP=%0CYi%W{<(Nvn8gAeTG`>1XN3#(GRFs&%KqMy>U-#U~(okmpqSNTKAHr#5NR
zoc$CCuCjh9jN`|6cH78FN?L5cu@VO(CnJIGWUw<k;AG%hk7y^r;^I#P%e~rQdtQMI
zf9(&;anQ}^J(%_vW}+ku=A@ci3E1ttGhfquuA-<VoNnJn-NeTTeKlgZ@~7Q29m*mS
z-HQQ_ZJE1){1{oYd~g6>$;CWV4#h9L!MD>O%1`)%ZJ;K4iBxbx6XJ1Qag57{4!pOs
zQ+AO0X5uhER13T&W#PMbYpyi+1)derQ*~rN&L&U`n!R(w#$?gQJPE=BD99v{eUb;X
zsd@=OBca<QDGD)+vfw57CQvh>7nPL|an~LGg?HU~nFsSuUQCuWYd2;b?=?%&GfXFE
zQNJ`)`s9=S#eFOs12w3AluL3dE&vho#UvtHjl`JgAl!$k1|Qi|d>i~d^??GklG<m;
zw0{9^x1!M%K5^fjw;is4zgV$#KwH^5x`qN}Qy~A^{k>uqqE5g^r)rKVpz-ZvQr3?4
zd8J!E`oQ@+pOpVW%BZxD`(44ma0GJ^c{O8$YIi5mDU_7fvjI%?P#F}GEubf{tZ|vU
zLk$Zkr}rKo-zOf-18IMUA)pnP5W9#vtSF}}g=Uy}ld-HV2QKBC-nMnn`cj72efu=g
z>@ZV~pmrjzOL|AwpY&+X#2f~Dq*Yd4J?qu(AHg%Bh|~N(12$9<J<z?slexK+x6O#q
zE3^-Exk~%9dZRO0ni<A_o1ZDhW#Z^`Y-wcjskYs)rw>=^#!S4^LDY->@jJ}`eL)p(
z;X@*&<sg3$jUc-RLzg=+Q?bYEcD#n<USTpH_9f@p<mwnABSfV*@5eW;e<fO}+I#<X
z-<rqe`D5mszn0E@_?VS@MWr^Hv<qW%h<V!s&<lgZXNT{PXs*4iXsxm?<F~i!bqnSS
zt7d0%o%#(FPi6V%e9``Qc+-ZqI^a<;`Bq4-M`XH>{b3&e3*Z*qMcfZdgJL^xc!05!
z-zu9gz@%NY4veVbT>m?P*hBs)^s`fO;Hv%)?RkVXH?*onQc+35VAxqs$Xak@y^r{N
zcPqKon4aqB>1EQi)h)8>AHG1BH>pbri$#TD3KlbN#S|MBH<{Q|XjNfv;;)92PjGjm
zGC$3~HA{`qBYzgQE$~*j3~{#`pI(ODp=*swyJpxEyfmiG*pin@c9->xR+tO?egVC`
zS8mg7Mt#jjeQn3y+t+qRHBR|7k6V)%)sw|6Azy`rEKh=k3~?|Jba<$@^Np05O|SBw
zi<-AiRlt$XB&&I;+kN73u(LN&d^a9OC6^7V819Dct_BCE^IGc~xZLU*Gy*?k5u-09
zj(={Pyu)5w<(>>Tgw#c?yv@bJu3s=oapi&Z+aAx_;7TqlpO(s&OdpX10A(Mwy+X5e
zL?sG%SrI>3bAjgCodV3G%9^l|RStZE2UjJzd$-qT_dkefj54(1a9C3{H%%!hVJJ3J
zNNbT}4^5aajXcqSNII`Zr>A~Rtt6Q;??i=k6V{VEyG#xh1MMG;^w4Bw1JZdYzQ+;f
zX4D0>=PN%2pb1;iREz(db-(egm6-jW2(L7Z-g2TxHG87*04#P@#xcPSG6-3}$aZgd
zsp4f7=Yf;uigrFd@ZoAU-vqccOe1NF68C1lWnkAWjofzm=v=-CJRv`5E|V^u{>XRY
z6A>1a=siATmjkmZ6bYYHG<0MnEfB-ShMCdK!s!85mIH^t00#kq0ddK0S8e;`mlK2p
z0hvGn0pSG!0da72WwNk!b7QhLb9MD%a_}^AbG2kLadUBXuw!y@HFC8wVRAHbaq)0)
zHnlZ#arqwevNdBgadElS()+!@jNlLai5iO1QgSZa(nopa2m-nvhr&c{x4@Y|Ng;Cz
zwcm5VKDA89$%v-ZJH1xV-E0!@E7z4vTjRT_N6~XzLkUZhLCi=Sh9q=Y3S?QaIj^)C
zhhkHAUUJm!<C4_is00C!+_PbhAK@}PSD=TVr`z!k*fh)|L-Xp4)>oCyHv!3OV>iRt
z0>56(qfcTEV{t0Ht*V(~9%KklwM45=!l(uoq)T-oV&VMn-I97puR?(aW>{qR4!0+R
zBYop}`9O>5*LFb9JlD?VFmZ_HUoTgpW_3)K<7sy_>Eew#RQgohp{NKjQC~NfP;8`u
zqN2oHc}9gz?pS8uA7_+vHF`LL_8nv2r4HAd7bA*9I$SE;e9p;U7sJ{1PG}PLovf!L
za$7L)AKXm`bNblBb8~aKM`ORKzSytsLt1x|`1wG(^<POruc09LGn$EawrpJPXOc;5
z_upHhzIYh$6c?SqIz5G6&lz5w-b$b2I|e>Hq62;|5evUZNp<FQd4Cj|DP0S^`6%}=
z3+iM=5li}pvZLbJRB8)~|MCNF7XC5d*?R`_7KxQCEv6>TBFpsH!K_Ju%Am1kpF%+&
zO=$cfSAc4ZSPd-`q*o}HwHM08enu`M{aT=0kBX~Ek!~HNcnnZ-Zg-Ug*XSXVyqEL3
zTE6E|#J3YZ&>rkFizr`-L^_cVesL|*X!69WG^ik>+pM2Vfrsc1l5JF?z$^cQrDTpz
zNZE-56V5wFlxkU&i24Y6E%%{H@H4Yi5tcKm3%f_=LLU&zqDs$ND${TEcZ*$CPe>F`
zo;#gkDlHG+YT`M(F%%H(qbvIoN!!_^>l!@J%-+TN>k!)31@_@R%dQY!qJkSJ>zX-v
za7vkM0DDfUP$77+wqaMqYyaBN7#K?*7qHuV^v?xa&{=U1diDx`%3Xd8K|;PL=C3?R
z;us#qe9FcZ8Ca+)o*hO-x;~S$F@i=jDhKaT9&RMFwA|vl<Px)#WH9aXrJ|PQTuAks
zBAct3<23b*dvX$O(RfuA8R@Yy_t{qnPVP_lOvjs;gV|q@or6Hkl4}{HioJTFnGi1}
z8FFdsRVri7M>?A%R&Xgz91w?rBqH?(60_qnO|*Q9JgJ@;2=5Yjq~N)v287^^r5<1~
z(1=f?mqPl63QVDm2SmLOV$e9Zm!97cxl2bG{50`Gs)@Z#w082qY^H<G<roE^l;4ao
zQ4WPhXB{2HzG>@qZE0FKy9`KNd-a(1y7@}d9fgtN(F;lx{aguCL7~y;J4RML7p^qU
zp<c7*^?ySdxjm9|??ES0q0BG}Wl{>1n#YN(^_XZ{BuNKJEzAKax<Vo4+geK1l2nW6
zKZT>Q3<oCQI2Mj$$;87@!5;Ck8<N{l=T;myvZ9_KVdmS!R0~tp%jT<5pa-yJnjrFt
zYBpEgqeuQQ(od3aW~}WdznE+H!N82FhK^n}v*eYGafZF-3e3=hQr@U)u%~aLlLjGh
z6PZQO3j_*457$~NQR(27H5?g^?NF1xE1Y4%Z57(aK+YZQiueA$xqwKNOtFjtWl(-Z
z()!mNx~}VaOrm@B+xWPaGU|03U$V!?o*>*6r~8<;QcG~`#2HO;LBDK(_0RhoKhM;Z
zd0{?hOGC_Q7P=)cXF(9YUx$>Lt#KYcMf6a;EzE8!38K&v;p00bCnSu(q?LU}46?$J
z8j!Hob~JDk6Q8i=$npVUWP^NYuk{?YGcZDBT+kKa4*E^=Kx{-Bh$APlM&{JBe8=Td
zC~b%vbogJZjQyisRjXQG<eeS_1eX{TMCAWtm0gWYEWI4;T^Q}G?Ef>)DY|RZ_v|QL
z$24#-u*$0SWznr500^`R$W4;agk)~`Vi_6LXW7#Zwry7ToaUR4!olMl-1zj>TE1Vt
z?^l0EX1brx%C39fjP5NOA3th(UM$p<7G7?~sL;pGZFXWeN_TwU$N1zo9|s~Er*>Sk
z;}8DMY%Oni8{S;52-$aAIj_fJ$ZD`HrQ2pdl_~LNJu%=4v0U`(2;{EoZMZJhSg9>7
zfYQdrU;Si%>&o1W>{hsfu};V6(U&w7xDN4I#$MToM9^3u?DV<Z8Sh4~7ZX;J8naDK
z$>Z!rZmAA1ab3^|Cn&~P1R*qw-LCseMl##@a(iyT&8{wax)%;xNXp6j=gs}7FO(;v
znEP@Xk^1`JO4Sl`*rO#Da0-W=wT>KaMM5YIU4ErlZ~N?JU7Gd@HirO7ND^#yrW9U#
zeUjMH5Xgu(y7;iQHy;%I2={N0e5e#esFAxHZIjI+2iRRDKJbZVH}i^R`qar(e($5n
zP0o}1WicUzGxHC)iX>^-DQuVC04%+Qmh#K!I%p%tCps0@gLzT%4pqs>%4uYjPpITG
zH7%YD_39Ygc5V?taAVz33jmVQag@oropI~yjlVtQ>Gu}8WL^1Y=6v$k)$#D{CjCtw
z@P?NJ;@H`>XCY06ULGu5T23i)JjT%4F9Xo3t8a%#!j&S?3_wx$XBHmig)rNH5~$#v
zNK<J9rv1XBh8<H-fN~a81FLoRMu|B+b#zqv*s)(bPM@=Dk3#}FWOLdyc<J;gtZw=9
zCl?wrWwk`WDnREy2HGMO)yeER1Z}@g3<6Jgf9)Ll?)XlJ35mAsOaPl97hTo*>;`a_
zfp+6U=z=A>x^uO&>2PbD!g2dyn)gMP!!B~Q;gP+}1Gb(nU)E6-e;Xh-0^Y0aDbMb-
z{*t5#XluQ~t@CdaDY$VkIdLXVEKbx;+GKqp?M<qMVJLh}c#ke~yQZs2LgW14i5vtG
z^;9?>&wLez@w0(**f*OM!>7T$drfb`9nTts-lc{fyPQCSI@pCe=2{>)#|UiBTgyAL
ziQ_a|P<?W?_fc*AZGiI`R|VRI?MkM=x4qbFZujf!n_vjL{cs-BJO$Im+4tk6%|0r)
zpAH@}pR$sjte62QM2w(cvb_WeH#?Yj^N~2+zYu9-n4tR(D@=_&fLG!iBe{r@j$fUJ
zr(w8ZWI{N%9=fB?2tGpXO_7k>?PM`gZA3Abn}Y)KkF6A@T+)f2cX0DZAqs&JIB&Ak
zJA5H$Z)BFcEdX(sHBh*dTXBP1S>@REP^ruzx4{J%D3x{p{F1#dKh$}}t9B_L;$pR8
zaqTBJ%(mL@d*cxQgrIiP?tj;;<<PcnbO6B_i<~z8k^PH4)j!LAVKGV4VNW%49ciFt
z^bQ-i!Q7Y<StFlhSFie;(C9*^eoN1`4Zhhu@OER`Ieqm?bwmHmp~!IPr}ay;ZNO)?
z!*>XJ*`i0}lrx@rY`8lt^?3B3*ERPjE(w3Hn4FyEaH<y3@!<W=pH9q&Sj^{J5Ns<I
zkLhKt%TdZ^pSbRgoaqndM0?|U`(PP6Sc+P?hVdyYu1tgD<v&JZkpn~p`t7dy7P6Gu
z!iNil9L;>aJTpFK3Z&VY6^tIrAJvNN+HSPewZT^bXJ@VE*IO;l$jqF!I47kUG+KOI
z8}+fng^^tF0ugZ;BWU&>7zsHLyGX9d^CBL2x}k_4B#(vU*jUmyoS9ymEinmmHM&+q
z9czsun}1F&iZbR*w^?elo0#ckX%#uHee!mBWq}$&*Ka?R6ZSk>@J8MG!i`2>)YPiy
zoCw&wV`Udo)Jzuovs*}>-UO)hmMhNDL?g=Et~)rsyz+{oIY3J=Hl~qn;YD!k0^}PM
z(<z*<w%Ja-ZO6j%4*YhXiF|FJh^_Xw;BOVN%a{f$7!?g7(Dey=P)6Fhy-DL-ot{Mr
z&h~f1xMznx;p=`!cRjbQMkBi2$P#6Ef0YCwV?E#LB%7AA)`kacbTMuUpkBEey^3d?
z^&dtu&xPHh7tCdxL^98Z?V%f$!-r7y3uC`3g?2MO?2m{tai;XKSs7Y?j2QErv|1uH
zYBTazV0%$$t(xjc`e*EpH_^(3a33f6ljut@2*Mt<8$8z7<(4FM&0}?&XYn`muB#Zg
zj>`UufPD4EoxWrZ%z)yFoSSHm5|`12T2(nN)w>duxbWheQ*#q4=)b6?H;!_1KR(^)
zZ3l)*R601PxWmU1ms(AV>6bm3{*u(5s<c$HN{eppeJZYMLKR~piy^aNT1*n3%VQnG
z!yl$$XiU^wxJc$_l3Sd0(n!NrANwRTQHbVH$?W}<;+V58I<2K2*Vd|0DzBfkDjn0b
z@B{tIkQAcGB8%M>eWBRFkU@b6DZ_Ekb;d;|0{?()4SVv+r;_|GvNrFhD2lKYc}5H8
zuvO{cZ9!(1+i>r@+`E1s)^U>^Nv`BZtK=j|+znSX4dvPW+vlo4!ECW5ylip)m|=?;
zZjW5V*9|l7HguWiwT_vQZ*->3ZkY5p-16-_h-9r`O;8g2G2NqKdOqNV63BM=+pup^
zyp;rlD6^GmZ#5JgRH?S?iCB`Ig!C1$LSA*XVYF$qu1>_fT4wI+==D8H5(8;_ctiX~
zpFZ$wGS_PvTJHOMLvZmiXtukOT(@rT(KDXjcq`Z|o=7(bn)hc<yTg0hJ$L$VXs0JG
z@^BX7*XAyVHA7FXXH&lsXppG)F9eh=qzF$#lyf_fK?&fWr%VCjfTMnFMu^hR=XrRk
z67pYs`w=&ojz5F`(j|0*ZE5BELY~l}bO*1cBTO!lXN$SSt}=6LMJt9K8~d^fYsEVv
z&2bnHlISzY;+FO=h9#b-*`E4(+d**g9R;Pl(?aF3>i%Osxohbg@X3Cf<nvG2xl2ph
z1G%z>+7|rmuowWDsVUZmR92TI0!d+8s7IG*>&4jG2Wzu5&p%xUie-8UOo^|F9!*a+
znws*#0n7nhq+Dfo6OJAyU#v7h>fxiFvP}N{AE^VLIlO9QBC%3ZX>fjZB7Pxm`hW7z
znHGY?q&{?i+n#P*L}Fg)t@(${F&iD!r@s&9A$<<-+-Q9+x>_?F&YYp?>i!8r!@7_O
ztQ>l8vxIVb^Ft|55yocl3Ix2Y2v4`Xoc0R-J;TZYVdwM6{{x6sZ;@J!L1}U?9yK0}
ze-JLn_+V%4AC>{04hJkd^Yo91^va5L^lO4pdwI!OOG6YxoISCM6$;0g=BpXt<3(<@
zkTAq*;~IvJgT!EX0cA9YBEf>B@ruNQ`isSfBH$1bDfrosG$boztrPo|RbUfq&I5&0
zBj(WHaLjOXKMNZhT;HJ;h6;0TI=0=KNJt?f@dzEbVBA(e++6_1NWp737-NnqW?Ya%
zWV(xjHZXC-)=n@(b>khkU&Q>7&uBN8DAFX#!qh>^potJ<kb`Ium<iG(D#Elu>Y#kE
z7Z|fiPD!hIA7j|v!7F&ddB2eJ6rb_-<czDKpH-)9{{X5J9^6#5!RC`?Y%`Tzn~xmd
z-0E&YDNU{E82D7u&ab3-J(o^rQzRLo-^N->t~?3%x;z9O3Z@-oKEav%VR^&fWjf4P
zT^|$#_&CDo%>Om;=VM1n94G0wpY9_FTx@qO)Ws)i3T*wr3r9e-B8=JZZVIWe6jDcY
zD*Y=iB{eQ?c@^@EDp^92#Q%ku>4$TO?Z;K0LYLMmc1LvYk<n*nd15#Y+58gc7J+fX
z>EeK+iQFL{|I_uik;PND6-y8mD;_19i@Jqu1wGz;Sg1z_DKiw=d33i8!lw(8UH6BI
zm2<!U$MqBudPZsGsBr!SoLFgZ8!zjpVz^LtGslSBK&m<fMNc#*`eORPJF$MELSZsk
zn}Y?ES|^$RoP{t=$as%0_yZ&kjv-0!EQlDWq$UT*Fcc0vGfS^{;Hj=OANVG$qeGw%
z)ExjKy$o4k9D%1EqkzJ5C+Z#9s6FYl*vCKP+V!UKA<OP^$GXx_rV3mGNt{RhNIHdF
zV>{BBe}f9lF$6bw5)x`K56n0o{Ips+tp6!RJTGi5Q=|7{EdP_;=D7iCv^qr0oB@sX
z95g{|5Vjh2EQ`42F^05vF*hglmeU?@*E$!gB~6j+IO33Bf1<1`)0N7+A*EH1X<33w
z7j;6Rm%@&rHfXX@E$$vc0UerL@#y2F-4LhmDhazH-M0{SeD4=@Qo|2So!tc)!IcXv
z5y7H73zT{}M*q~c@?<X|+h%`$dum*ohh2S_mb9<5pHS}5uaIn}x~pe<VvIP96FZ4P
zd7o$|7Nyc47vz+soQ6R_NHlm3`XudQBfiL?_8#%zNGRaANu`haUp_>6bpap5O}bz2
z6S!#gxwAxF46_(rxU+Cwkh35Ho)KFS*>0Jl`3?C5<<2A%b+jX$1hj$}zBrZ6)Z>Y?
zQk?`eet?JX;liA9XR`4M+OltMM16Tc*>mphQ)MT%+0FnItZ8L-K}N_X@InbC;4zp0
za-t!9m&uGiU<Z=%=hMrTJmv6uW<51(x=lHXnF5LZhBC=G_3jdRSH!Me94KiF7z-ve
znLEIN7EAoX@^A_)Ege<=GNKj-)mT$pi?6T>b8ac_q&?z<mK=|Ym4oN+&&WH!D%Q&c
z6&QmyQYzHl=OYBPP8g#bujK|vuXZ9|sEfMJEjGh4P(G+)yaZN~xxi4+I;cT}2zC-<
z;c`$?a4<v|aYLA!-cB4)roYnpVnMwa{lER*BLA>QdJ3i(4!7(I#_R`c5)%^dHbi$l
ztqyIAVPnNHzTe2;2p6J9&vsqpiGu;W>tG+yAe4+j(YmxluPFS`;1f=UC}-tPgd!oO
zAB@p=&8GLY<#v=G>|?j5T-znf*mA4q#^gtAT=^H~@Cc_|TP4HU2&?D%<lk%>e_Q^W
z=9jL|U@Imnk)#>BN;Kt?o0m#*O#{RO#^@u7WtcZl5&>Bhd*m|Qa=}tbhH1~pfYl~0
z0X-$Tr3IG<W)Y>C$?S!@2VZ_zL#({X-wQ6+F@t;p2S^K-%rlDPm@#W^y4G7{Wr{%=
zGF(&>^!29ZFfJy{Ear)*<O@bvUd;Tk=7}F<3n<LT5?&IbGp>oS^pgJ3_1{o@>%NpU
z3C4+>(fUzCmb%>VttbTZD$5GmXaY<K7B&f9QP~Npy)o)&dJK6Hox?m5ATCuu7i)%v
zF=Zxwz1+iMl7wPpqH_HxfMr1%>xEqRZj{U>6#Mu(Z$dl)?*5+H!%IL4d8h+>KbKMQ
zXM~!5PA3XgJGVb+oSV~wD8cFeO&Is$P#?Tge)I>n@lR}@TbDX2y>fS4IXegL_P#42
zoD0{G2O*r|c9A<`1hg%ZPh=>`qM|QDlvAj^0A?7skX<1hi1whb`CbBZwb%{9o7RI&
zvdwql&^Kc1Nx&mq@}i0{Wu+Ep>;_=gT1-4B^N)d1e>=lK@%N==L`3`YlX0xQe{f`*
zMs}!_f3)H$%*H$gN~Sff0N7PE>zc;)HfFFf0tEP$<JAN!vPZ3j!{aVBo_Xh$WO8Am
z_BhQz9b@+9$#JimMWBQA&5yus+mh5bU8AcihJp7Lxci?fW=Fl6&HemJhK8ln<6$)q
zKeQKhUjC#quqYB~mryj`8Pg?VN5j!^HTQ37>j5oN##M2suwusMagVVV=jM`h+v+j@
zj<1XIZ{*Kjq1+dTj7ue>%?MC)>`>BqG^<LH$c2`Xy0b7W>$w@(3BT)nNs_I_p>4o9
zu@8mmW$mxWrcqWSIB^_D=+4d|sjv@V8f2|e0tvKyMaGv15K+`9TcKg_T0q$waoI<@
zg2-D1@)`PZXzg*#yGkkcn`uhaGxrtmm`p4h7da8c=YF1=@QG!}rZFhovk+1vd}n3C
z23`NYxOla8D_KOg8(Z57ISk}17fDmyr<QP;vu14MIN?NF!rm-rQJ;9mY{e`tC3%Fb
zKpQM2`3G5tCa=)9h%KLLXbU&oZCDLaKm+3^QVt=e#{2*&MscGMbPexI;iwRF4xa<}
zU?v0s!~^{zFr=uUky)XrNE$2!7^Dx%vT{%?xQ(gH440aAGUC$7SjzUh$&>@c)L4I{
zBcu*;QGB)!YN4&9w0`%-Lc7d6`-1{^RjRa!CsI=Xf{uc)X+*Q=TCmeU#E?#ID+&&b
z^k#-!4T(cgT9~Vlik1}M&<j}$%0ra;ZRe8UXSsjlM0^aBJ-cLODmg^zUNAK<l-rGI
zoPPQ?+oT`>+k^5)$hUu>F0V#9D8;}~InZ?qQHZrPkHwCal5;qZ#hz7?Q&Hfcag4jp
z=>m5|VK_0izycvVCMZ^HhTE1E$@W2@Xvg%y)>WWr!_+k_(cncnFsAE6xw$lt!>*aK
zc{q>5zFD$aQQ*9BjknJ2LT6-ZIkBd|0x`QLs77pt*R~nS_EDf}$M(_IO`vMS*3DYq
zgG|G!;(2npSlt=*Zc4G_Wh|>QP$l|Ot|FCC9wWE_4nIq^>B7nyQCi=Lcm-~aN)$1p
zB8$UZS3LqI-Gt6HsD30;m${-oyJ%RkDIx(hyA*z~n`RtQlEGcINs~)W1ujaqqoZB8
zwh->3IqM}qj=QoBx@u_^m}<RWK0IBm=|Z|>ShXAzO@}JnwbiG;TOU~!MpE7zSF3KQ
zhHVB_gtgJBJ7Lxgw$bhG{{uSC+7>GNY{UbN#FSu_0tk*j#H<YRxXR!B_>X2E24Pjb
z8S1sU4259Tt{KSywNE8hz_Jlsw}YnlvbXwBxrtsMG|e5x)9n~$Vp10wm*EMjVVM4N
zcJ>un8g2nGKc8yVa5-OKwuBTNdd=b$GR1w3Y7)<$<oS^PfP_v#Dkv!%PD<Nc7r}JV
zjJlV0!6o0?+8fSZw3P%PTK-#1D>x2cjc$;4p)}tnyB+OHF9W)QdRTN}l%&`I>iYp}
z`MZCIQPVOtp>-A(wDO-s`Yz+e{0Os1ty_tm8<`|LLK_!Ic!ovo)2a94#zZu;KF4GY
zuzAK+t;?y4@?=SuA9<^{YRsp}Iy^qypZo+k-`?J5PsIdQDcO)qEwvNT(KPqNV(4H+
zOH%=)sClQsap!^V&RJ6C)658$Csl!Wea=+e+82=VSkQgRLo$wy+R*;}y^lXK5OTwC
zUdL8Y5fL<cVUaPP`bVOm_tb`xZ!Ebf9phn7f@s;?Fo!U%1j5)^7g4E#l%YEzhIvr{
z%u7LlAZ=(@G7EWA9x8LmTJenjHN9F-=2cikpm#x0fyjxeB^n;$5@>)X_%>Hw_{=iG
z*`WN;=>5LwRLPiXWwLxbNXjWiG9#QB)L1dRM5YYu>Aq8?!JJrE)WwU>eQy<9%)^KG
zZV51%BR!2+)-6ef4$aJatXLw7HN<qj{l6QmXb#jrG^RVQTWRF{4-XR!@?+kkQV?Ww
z0`q&}aWEl3lY;>yw6j43ZY1l(tj-ku331!bLm_>NmduOrgoucuRAR}qmgPv##o)`o
zyE1tOm=BYGgN;K^<n9{QVe{(}Kqz5R_0<jHJa-`xoGSyTMG-!>|BtoOcFOJ5p(61k
zLDxb-__#pS<V{(GMWA>98$p8#QiDzI)fOc@DI+||V|ueN+2ynY8W*i8SDLTmIu|DM
z^I1*bCt3UkKZYD@NC)009o{ajxBNO2Yofh4)w`P21=#AE8yAIzsB$E)pk<!`;<d1|
zk166;@UyYM&q=b=0r4w<>~gIeOu1KId`crC`ME!2RDkM1cw8;CP<c8TQ8IqkU~AkF
z=D2P+YGQhi;E*AM8%rk?ew`eM5j2y8$MIN|JYT}OUS-If8)YXZ-)c`3K@EP`c%Vsj
zqo&E9N8{MJdFz^ik|W&_x$`EZ3@lqhr!HfYQTL!>&zb*gL1P%dZhSj^d`3jZ?w-T_
z|D*@z$kgXFcnb>j2nb$WWJep!gm3*GxWC;y-w6+Q$o0T2_%0RP7xh;|^_w@K=m~>K
z_56jR;l9mWJd~~^tAYPHp#?F~jl1-;!ydFQ6z}?D;>dSWtk!oNdilifp4%aIa)kcU
zmWcSvS&$L5t#74M)YP3eBhSM9Q$tjs_3FK&*tybRI4gEXY33=yTac+mJ!fEqH|Hsj
zNU7&)JN-n8@Wazb?4c>@Y%Hzgl=6#X$G|$1$v(ctcj|bSd*uFO9gpUKVhGc+mE<Q$
zz&V8zb$JIS4#MJMT`@L0<_V{SObi9)bCS~B3wLVxAi@s3AR9V@+0Ek>JMlr}pP$yp
zdPrU4xu1;0Uydgwxhr-Pm*^fZGAZceg2&)T&J@q@ZuhsZHr-R&PI5dvAg(_NQ=Qw8
z58>{&5AHYKT->SG$GW14lxj>w51Az%I0PDG9DY1FuTS+hqRV*k$VNoplT;Q7JDwMR
zDDesu!%UY5{XLNEnU=!G4Cr2)Rk*eIta*J*`0nrhY=6Y8(VaE1Hv>E#d0DMGqMo@@
zcys3OnQ20@cyRm?{F3=Q1eam`K00=nNDg_1iJQvI%aiS^<gN8ZY^|LEDKg2|M_#>Q
zoFF}^f<Of_=bu(rfY9CeV@i*^eOk{@k8h`wc5b`#boje~r_OHACgay`dFn^NBXwF^
z<N*}wn&EMv?eCReOCL`Sg+3QpA(QcceiZtLcxA1m2Q235xuA()gnq#tB|nJ|;WSmF
zfpQ#C6dpas0;Fegm~bL>KRtRNDW|S@k_9Y%nKkg5J1jEvHPggT9M%P&oP0fv{yhv)
z<SkPeuwh`IvslEO{23~_W+*$ambYvi>7T#vV@YEW$=s$51Ue}Gt^^-C;e|7gf>N5{
zmBK0tAmaJy!Zfru-!^#Z%D6^IkA#28K6E_f(0*oH`$ChPySwj(n9fNoUvrkew;K@f
zAo=!p?qy=}<+Wo0bkT>Zcu}x2eT`3weoFUk)Y;sVEFBnMw2#NlbSY;Tw3bD^fqx(6
zLiD1+$#Ckq=joK{@Z*r$me@A7`IPKa<ofJ1I(^wwp=tXtHgD=aeLCehn`5r3=5uih
z&T(%(OHQd(r!*3fRg<Tt|IZkw$+OSTJLWnok4cR!U~I1T9FOH~G2nYn1;|PoE%DQY
zH2*5qUz|jaqIhuwX0KA+9hz1<Q#jjfIGKp;3>Z0o6WAHhaAr$oPZ{5z&HY_6PDaip
zfZfcKrLbeXBU5{FuJEd9^Ea#ULOecE>m18<n4$ky*OOkoHo^P=-g<$@yhRJ=J^Ub{
z2+znwkMV;uzty};$?M#3X3@0N_Vpz{1=`f7GoWp_NA-Z~yO})4XBGp50yy<zj@!_g
zWvV)o<YPeQcu$BcK95|u`)ddU^!sL6iT@vJB~~KevwO0T<Qy;A9_C!IMKvr{>kuJ$
zfdq|qH(Zed!tDSd`-h3^rcRv&16`u*&!IGpYyAwj`zwTIBw%a<5^tlY+Q#Iso~=!V
zsqAv;DWSBzvS)1rS;U?gEFs69XPsiGh{FZGkKZ5o{P2j-bie+EbG2xn>fXPf4CPLh
zB`-lg0g3f|1^oZ{w!HajZ{~b9&DnST)hpX*YyS5K<;wl3y$f3@yCz*p_wsy2vzE9P
zY5hR+Y0Pon`_{3u<G$j}^T4qqqB&0>pzh_NZ|UE8Y^<II9vc}QHgG=bC3Ojw@pbya
z-={&MWxMwGj~xbke(zscT|Blz?{)P}yw8hgzXf_c94+o$u0PGMKL?HnI<}_$ZEW7A
zv;W@vBv1c+Q}Oxw7`~dmxxKk1y^l4xcAKt=?|>#=IpAx_Q&w6Z*bl0?T6cWlyj)*c
z>hj6X&E4W0>3%HMBX}DdFLr5F^;KB4y~qBk_RArctIJ{F)6mB3+OewXHoxi9uc?Wr
z&297c^MIo+%fLz@{CBs~%A;R%X~j$y=eBRao#ETZx#IPer_JTm@$~DGhXdoUj(dMr
zZ||o*Lysqy-&^?ZR}RQjTYO#1P4l`A0XP>iud%o8x0L0Q0Rd%Bx(F%zE#wydX_-@R
z2NYwQF%bi8up=*<p(YXb!A`PVd(`FGmI+G=tWoEbcmVfg1hI}WsJ1P@!HIqUSMaug
zm>Zi{#&V4<!m5H`?*(P*pRLW9gpSCifeu)S=dHoe8>G!1poH-D;AimB)CtLSwrR$R
zLNmgnWQ21UCSp++hbc{a3y=Z!*?jjd#sLbFd544nwq0HBlxP)=Yo<BH>Nf3;zrW-M
zwsWNZL>u6qt6UB!WtA>IV-bEDcUcbdFKKZnnTaD3xksIBq({A1%Fx(?I)nQg7SA)&
zpJL^dafg74P6s}eV$zyXPmiaTS7I{m2AWyl5F-yZVa&<_kRM-6C^5`L(9267%jafI
zE)w9A-b7hPGm^B#KtUg4WkE&XVR2$!_z@jA!LFYfA9+T`%5h4D&NkHn(;<JKrjuFD
z$f$Oo_M9<FM25~IHa2)Gl8J*vhrTpmMrIL_$t}o^et=_7Y0tph0Ha}<POY(PmNeKY
zAN41l8t5DOx0gwU;Y+nLyf?*)Cc_g6My+zBf3Rl22n`m6MP?{J1H$Bod@w3IWgR~u
zdIMB~jIoy_We97Ad=9T_DH*OdWe@?AnmYq)vUWsPg(pr<1*wWV<u|REvH(ORSskQM
zhPHnWpcy_7P?cH$sKPG-)F!?azXVWMS_WW**`OibbBsx%W=BEMWaFWL*`dYPal%45
zWdlqG6(GfC6^6t%74|t!6wrX(GzuV!R>qF9=s>kB>703pgA_`lGImm)IeywQQ~1Aw
z6ZJetUY?4ZCa}5BSo4wEd#;5T<%->2jf#h~f6yxiF9=8pqB#ejPJpZoyC_R$1ce<L
zVy@|~5m)_4bNbt)?a}<=9u?u4ZnZ@n7h<RV#K8pOwW`pGmAfLvv_2>mQN-fTFrliD
zq$!k01?&YdnC$GLIS2_TBSvV2yxOAb@$%Gb{jj(7zM`E7h01XS7{-voVZ~(CqQ)Gp
zqG&wEq?$y!mQz)cFX2Z<UkL(t#P!f$V*j24Mv1^s)=EGMJ4l3G(;*|S_CZSY$Vl?Q
zA;oJPL6gbY4OPXV<)c7?sMAn0#ErlxA~7-mePF3*Oy5&N5U*4PPX;*V1M0pHzWD%D
zh-5%SzUn@VESfCJR1vJ~GzcUn^S3WXP!pvmk6yYQi&451$Ru4z#3D^Ci3`91LrjAI
z10^Hj7&2%)C=yJ1Led7}p-dA(G&sHhZPpGVx|Svqp*4gOwGi$FRxW7H1FK8Ckc03i
zK2j05HX=?Ha%obSO#0M@KD6i8sKYE)G7C0z-YD#D&7f@809nY;BHZ|a716v8HfPl)
z{20Xu*r<g+r;t16jK${8oQKbmzlKySeHD$f>gjccXP&($#EHw~zf894PcR#2Hq8`7
z&?!X|OS2p5y^m%w_1wbA%a*^)UPvIFNi!X75Wu~&)qpbSW&mHHnM|<eWs6D8Y5dvD
z13ths(|hyA#{3S47$YAIrC2O2R%e(FgbF=lj~Kz{fEkhdme04UI53c!Y*6AcY^kv>
zR%Zj1r=V^<7ohe$*S@v$ts`K6!7}3h(LN$XnGg8VvV*ibcsP5iqqG`wIJ<^Z{u(Ee
zcv*s2<>?`_rt`eF9UC<8=XB8ClZ)XqCLvB{8WO?pa<Tf$vp)v)jZCF=;8besLCL3=
zy<_Sgqb!$%+V(-v-rWNOEXiel^$JAw@|ofE3&*4r>fWREHAJ4xtKcjPmq7<BK8CG`
z#3%M+(Cr)dL06i7`EPc_IFDh(aACYc5hFH2FjCn<5t0+%dixfgaKx~lFw6>e5H-db
z7%9<ja8d$02vR%-NK(AZZ`DAN;yFN*USNij@DY-hH&a5)afXqs*Q1DUU<aS51Erg4
zNSEc(uq@lf99bVpxig_qbL1l<2o}hLQ-7m5O&(fZHY<y#onj=KSxcB^nxpD8{}9hx
zVG7RvjpH;a=jqv=;weFXXS))?ug4Xf?m&=eB`fvc-at2dLku_&_uartGruFDA?S%E
zWic`rnPH0;`C&(`kHho-egs=%=oWtJVDd+Ifo`)K5=Mb!s&4<{6h{#sJ7(uGp&OmQ
zVCj4it!x3N^k^@X1m1STpvF9joETPzWb|uq{NjjtG{GFyo{6U%_NJ-FId7sisb1lY
zs{_`@*KMDR593A24tv*#;o6MW#Bk&}<6aA3u`NqPm{%W7Y{fiwJh=|@zJ7aMK5D{K
zhP5}Yd57O>;Y_PJ*jbnFezD@7GZD+;+9=e;aFl%iJTQ*MJW1$JY5O2qRI@a);U%4}
z9K3-K26JVeQG#!p8fLRwB?sBg0~Ok9WwJR=D=GaJi*2$Hq>}@vvmQi}GcD%#<o#_Z
z877O3G8?Irg#gKnrt{A7-2)k}n8||1cg*tZp<~+2FKC8$5<Q3TzA|b|6}L&r`p)@s
z^*@}0<>Kteav5IIbmt}Iw#{YI=}#jlh(YA+4aUOgc&sU4>1b+_z%`Oel3-E+WdK$R
z9U2}|3aO$)(Uh35Bo^g6ieHED{A21=Ub}#71=U$VwtW2nAXQGa0gx(NUj#^%QB4Mv
zNUH_|#>im_WJ(fKaAfMG!6clMr14P37D(4{lFCHy#HHOsipivDgAPFwOaqGdr4(OB
zF^NxC$rZedY2q7q6GQl%O{BW>;{dLQ)^R^Z6N|X#!K5U&M>FuPY{(I9i%nu(%M;Vs
zox>z+r$=*f+vvy<O^c0U8Y2_CndhM-f!(7K*j8s``ag=TqGK!*6X~5pB;2)3EhOAE
zOr<2;)l8`*+*M4WC1jNVE@V3BJVs;|a>e=Lc}b&6(#5XgoRWtH5jm)dA*8CPWKATh
z;ABn2s`sQ#M5+g*O@yioq)h~>{iNCW^>w7#c=ZLOskrsYq#Zb_fuv*bGC!nC!ql~;
zt-?%c0dl0UaFL4A;jmUTq+9?19w{^#0FIObMfH`00$KHp<hwj<gM<T7b%KNgAxS?W
z3eu~RL<!^2Dwtm;K@?(5IAIEWjXOaBe2qC_3T%x!K>=)yBw-444JSbXbPY9O9;6M0
zL<NKgoCNXfU^-y)As*^;u2IPQK}zb=vX5Bdsc6LCbum7|pI|bc{3UTH9{l+h_WFQ)
zb0oYm9@&VPxL#0D+|O6*)l-zX<X(k^IP6Y^ggES01%){EMg@#`?J1&DYF+^CD$zDx
z+(&$^2q=J5D`hTFc!sJHZ|N;QPaaJK`oQf)1U*e|Lxg)jnkH4skCY?@=_Niw&O#(|
z3lky5%n!Dg2oaC9%ksb{={q8Pjk8M#-eDr_5px)awaMbjCu#f5QNqb51aB}Ac8?j1
zgI-nfB7|J2vmxYLuG1srTT+oG#9TzpjT>}@C?O{y>^p%GmqO!}%_n~&NIaJ2mFnk7
zno6{cqjp(j9_c$8rI%9YAsa_kh?90UO)LW8Ng6@rj?+CTXNg<iFQ<tkabhQlOB`S^
z<X(r9!r!yRC$I}PA#r2}iA(HZ+2vY)mBin%+`zZ<HX(6Hxsg1w$GDIzu*W!&G_qGe
zl*Hm9YfbEo9kc`3ksIO9t#d2m>#Rr2O1g5AHK3-(#@Ob>#Ddo)hQ%V-n*Joe$Ai`{
z8s<3v3N*EW&?O(m16_ux9S&NutirQXC(p*Cs8ET<16_>B8;)IQwZy}gC)dLZP{AuH
zz71ukl`1l34=z+8$LpIdhlwSzBmjwR_~mrKmXvqv#$RM);Tt$T>O71;&E19@IraS0
zdKh*p!dw!-W^X)<JIU>dE5?{?Hfcj^VgQbNk2jj3r8e9N#rk(CjpcW3j8~J{WEGu>
zfgkSu*?7i^@Nnm6LClLvC*j5_s+b7M1Lj1S=F0}ybVB|S!ppM*DCGZi_7zZZZOgV0
z+}$O(J0w_ecXxMp*WeJ+xVyW%Yk*+E-Q9w_=Qp`_&b{Zp|Nd_nn`ZawnzLrr+Pz_{
zS~cOS1zdB!GK7tWvmFIsj%9{q84w@1hwYabz#hWpi(xKg8PFbZAH+7o+14Dm2fidf
zaL+%0J&dg}urP#;hm$vg&5dJ3Ym{yRct7+us!T*@AbAj*aS)plXPd~#+5|vhB#dK3
zYUGTQH;gSaP|PBl#O%s4pgO=Yh&|6T&;YoI0bKY49B7R`83RNHpjie;jLKO=W0`9K
zF~$Iu0dW@5MCM!o%9|l{9MU0dg#mLG(U><I`~&X8*k1t`@ywYl12jftZ?FEQB=JU0
z49AGX2;Kyc^XAt_mH~-3=H@H|3UA0-I7Vbf+Cy&))CaH!f&K#r1B?NA0Ec+yF_r<1
zx07HvMs!A_CV(1%1NGZrAsi!`H;c45+mZtuL)c}2n&E#xC=49@-9z0sUz7&!-`Lj-
zVk6-gF&bGL1IUbwaY#pi`VGE026WN{K=*d)%@g3T-v@~SbrYcL&@7^H%&BiOkO4IW
zO0DzedIB@WTabYGDgz6Hz(W{|X#C$4qWXjFB<9$^E2H!#lfZ!bo4o)1U;>~r!Z!xc
z7#*7cfZ<4FmVFZ#7-`nOO9Rv~4hRjz2a2f*baOy-z+Gs-U1Y#r;$PqQC2y#?Z={Kg
zz;Q?ifym--1X}?LZy{vE$s77x8YBYk0CS=A?L3W<@|%Am|4b^KzsU$35epnKX$&9%
z20w2QI06_!@qy-e=1OA#9L~1jKyx%RgE259Z}A+)R%00m1~?EKX%Av!u?!>tE~0@l
zpuFYLZ$*IzB4D2U&P1xWED8rG82`>tAiBz%x^IF5;b?$L{v&Bs-jX%}=m5~p?;QMR
z^uhtm(SIWXOccOdqA(}Eu>tBw{zk#*ErEWY2T~G#OHYBfphhzXyy?U6=JcBwzhO%O
zH8Fn^>9-iez+nGlhW$&7MCSGPRR82n@|I7(F@fCP(g-Ng@ZaVgFp>;L&!j-mZR)>G
z43W2livg+ubT|S~lLU+}&{^K3w<!<z7Kqnj;8X_k`6cxR{N^-p$}Eh$&8VSdy)NH>
z7Q6rpT=>2z0#{T2^8u`R`B%Y<y@#{8oh{=(7Gi^di2mDXjK3IdZDHv2&$mE>aO!+l
zbl6vf6^8=>f#U!HVfb%vv3L7jJwtEe?rh>{YhbNsXklkz%wX?vqV+R&nGOB5!vof!
za3-XDq!Ip`F$L3ztt6N;dtF*DQpgZhV=anHInmGvWQg0ocrE=%l5t$f&uIU-M3+h~
zuKnqPv#vWjwCBb2LSUQQ7GsMuALqwS>Tq@G={C^eovmxu*{PqCv#AbW`b4iW(<>(A
z?g>Lv@?nO%w5!R8WAf=Re6C@??pn2fL~0Vgo#fnizoN(JCv|S^i^VnttOp;1nmOWB
z!eC8&%}0Szqoa_(u5lJPV~NB#6I@c0NYqj0Qx|nRFVR<W&Qh<;Q@;FRmA=K@OIw&9
zA3TZbBw%b2<5A&&8MLkh?6FZ|^;vqoyKK3wS~8kyTiG^zY&$t0b!~MmxF;pr8Y4Vx
zx&eOIR7S8r-x5x0JV)drto}ynV1{_HSPQw$xM|Pm{VFQ)h7W#P;z_%{uqrJ#x?Ofl
z!l=V|#SXG!mH0c-x(qK%v5kcIpO8PZf)ZYCPHtvzo+-oHNci{FqviO9)~_dSZzqSr
zg#xCzo206+$koGC_n&k~QQ<wIeVH|~7XgLJW2T)%L%C5zxE$9RQy3mHaY3-Fv(L&=
z)svtIX~G?`9fp~8A19s40*j)eS-r-{v02B-6fPzGcfoYB<A)efKcJ8omfVL}d)qm?
zaJCTY$?#OPyj1jPp?c^ke(Z#w#J<ku$mz1wB~G=6%nb36k0!0Q4xYxA8eq@-_605F
z0==W}3sI$$<d#8ErJJy-i}Km}CK>7Y%f{+4Z<e&__Q>R{^RwfpR?Z2}q#*%bdyV7E
zpyj89*Jc8p6#!xc_{atmpZeu0FB4A`E>hf8+MzpFXD8RhbL=b8Px>3z?TXaz^)IfT
zK2EQ*2mB*WM}fy<7H%3DZa-^1LVL+XNxqVh^pQxRPE-`m$D4t#4b#E@f*V>KAlo_}
zT_(PplJ{EX;}b2Zt(buybsL$sdS}nrDbA$xMO#nScZ`1k+^L-;)_$UX>^Z!EV08YP
zI~!ymRU_{5xLmOu93CQK8GTq~2t1orMZnE#^25p`H7KcKb{nM_X2FWSh`~s@_4~)d
zs2mCL+Ec)n@GbDgngJUsL<Bf^+%Xv07u903ysSOsdRbL|rDfJF;igS+d2xxN!kOR~
z#T2y^BJad440GiI6>wPEQbvN5?`mWG--x;D2p4w~AhyNhGCX)fDGc1)$RJmOLu6rV
zBwaaVsSjJr4qf%jIkIzx#H_|<;-69BaA&&>`oS33Tg^>4W;RVm&s_bdQ2GJT85Kid
z7*ip@+uM4+{av4WStfUbp;+u>8hbhZDQa*x!R{Uys_$t#+?SCLG2rENkT;x$?cN@n
znhWPw)&*u3^c$UK&-B?Bj<5G?+7CvmIp+c2MI#UGzz)7ZD+I2B@c58qdLDd%8S~wZ
z!`KmikxdxM{GhUr0^zm#?hfTr5b4#qtivX8g&hvPYX>(-iY^h0E<^*<nR^ijySVFs
zT7pvw^~1fKidFxVDceWf>PiXLp|x1&BB;`gj%;#Uk;FkqTNFg0`T!JgOW8atb0(z`
zlqIoD=59DwD=Dmk=o~~Hs~px3JBm4I0ZRTms8YscMCN@WIH%vR0u(Qaau%DfgIQ~q
zIkbL-on}X>Cl2G}GpCNB>uugle%;`AJ;gutx(k{P9#U|H)|?J?P|kyr2)bF)wfH`j
z_gO;U!pz2Rb6aP|>1F0HD-*0>F1?%?xSwEGFz9DDwn<Q03Q>TJ4~i@*YMww0H1Yc3
zcU`GQ4m{`GUzPRiv3GYu#NYdPj?8FmxZ5WBhsjh6=Ir86eZm{KONjxWRMryV`z;q#
z*~mk(B-f!59GYGa_TSk?81XGAK4&a_4p%)UWK-fckVUKuj4~hQxK>%JI@by)R*p76
zU`VF~ZeX#Cnk%7i+{mb7z>m(#1`?3$rvZmAF~D6mmF+f_vEBOBa$U7|Z754uPp&nT
zXQbzpAI_Hq(o<JM)TcrrLga@j^Yp6BDsjQ1GCF<d=46FvMyLo|1f$jmjr*HZkrR0R
z>`2{c*`tOnDnYtF1(HaW_$)rp014Ow0||}??ryux<xM^~v$CyML$*}fq8;pnnQ7Iq
zqes&NqPa1AYe`O)d(fHiN$<c~mtK2-qiPYASR{9MXrtCV)aoadicZ&fh%Bn&f=`0P
z5vh-6fMQ5b4II5}y+k%m5}K7WD+;n&(~rnAZ7DYPKe$se>iD_&n`Vbud`b8ru-(M8
zt9%4c!M$FNw5q>5y4bawx+RMu#TtF>Bn({A4s)%AQ?+oP%vt(!82i2`M7?-=_O^cC
zvs9CoyG~Qz-(q$LZnh?*TKSjQnFnF@FJY{Y$i>a8r0jO9DQl*(h+$6;Onywzvse{v
z(~RkxoQ3WC6_=UZ#2h_t#%Ik|M|;(^KmC<NjP$?Co~DWz$((a$_s(sI40<&V2tN0^
zry~<*_ApIyc&iVqY@KA<XYMC^iV*HNsER}$l3Q81g~=!VxT)BfW)=Hxw@5IetSdjr
z=<zMCBf+Nh0V5`C2VWr<BAcCk-BPFHL~FY64wTE;uCgmCo)_Ea;l)N*n@q^bP;xZD
zK_?G~G13b@0u-&typ^n2+cpo*CzrQV_%#V@djzB=cui8{=d`m>F^6o8d)l<5yRuB7
z`q7$l7@)6(#t?>=x}MrNi!_HBW_Y}ECa<7AB&c9{MbT`<>_{g^PD@ZrvgK4gwzD=X
zAXA9xD=M&!O=!ppg8;^t=85+&*%8K#s@vq~1vbj@Xsf4c;3>yc@K+iGXhe=kQ=mN-
z@4W@KbM6#IK(EBspsvI}D}U}u!-aJpc>zU$2~Hr5*@K;s7wlFpbT3u)uIULePu81)
z-p}$i?7a6a8w4%h%DjLykUdw{lkvm_ClF<TiG)#Gd-%a!C7RF9pSe~jwk8&-*`@Va
zqLX@HzO}>n#~1ZF<>;m47${Ve*zV(VTCgcQuCDb;%ZYe%@&-%!fgzb!T^RIB<d}vP
z)rhrxb@~NzA?wOQh*FXP<Ont}d+d8SR4Nd7ea^hYfQKF=Gd@?tghI5{IFs*Y%IKx*
zl61xtGhCaG6=&*p`%4Ci2SEue#p&-q11h@&AoS`+a=az)`4_2LFprzDu48eC%FxrT
z*6~JCOktr(^<yf+My6t&@5f$YV;8+iznD{m^*UkEB_Nv<IBKhsWcj&>^nf|$gU-e8
z!f~j1cQwOf^#*nI>L=crK3-n4BBk4BgOy*nybLqIr3&(X9@U1=3$jqlr}%a6|5f|M
zSAskZD)5)&Y2%)c!pIc95~ueU(kYjU?pRBC2g_(Vp`%|V&+pTRv37k~WX^~WRiJLX
zSzh<e>@l)mU^e4LGy+-@71hrfB{p2$x>vIV8cSeGqLL2Nt>-=Pa=L40xnYQ$x@b|v
zT7nfDR#v?I1X)MSy$@>Ob=WjI)c7(vO9%pS_;Oktm1V4pG4az6^44ZLiVemr?R#M&
z*>!#R3UfkEs(&HiEVrqPu~Sn#V5xj?UH8d>+n;h0@5hMCo7J?%<!;h<Z*Qwp`4JLZ
zCbS=|+M&sV>Ckd(>4rvcq_#$AWF@z8ZEoSeTOwW}t`_oa6~NA?_1tD{O=s66(gfGI
zG(Kx{%UpEi$=t;U{xpKTzzZUMM1GD%FSQZKgwT_25AtD2;TJvARh7<S@n;vs4=b-D
zXkCSU+!bL5xfC>AgVv|G9{wFw^?0i4=(TX4SCQdaP~7>Ah5%@6^50pbX_o479L6{f
zY6;*7BJ~97dn)$2wSQFlf^|V^DJH!TU>R^)*na6R{*=7z0AgsVNxr;VHgb^bsFHX5
zl<~Udb(|xeog_?6^{Gf78xeEcIwE*=U-L7_KW^ipK|%!D6bq-ph0CBpK=x_=U+&3G
zEsX70-tNgYHKL}OkbTdpm_&+8{Omi3F)XM@e7;<P%A3Sm%x?_zxMo9Ktm7=p5Kzhp
zj?mX2mCa>drCqpN-?6pGV&n@O3ztX2`Uu+ADr@uVT14aQnu4?ZKrIahT;1q1B^gSr
zO-4Cmd{(Scb|4``ZX6As*?}q6HipGdi2i!Ns+AKB9}ihN=g^B2PCHa|t2N{t$D%vP
zyN0a_vy=K|l-31YcFBRWqpAQ-7yUvpzk54hUX#u!K|JxNdX-Zc^*e=2UdR&Ry&UGH
zOkxF@xfKu`&*N^FkhOdm!`4dXFA0<AwBoQs*R4Bkakwh237WpfLvu|NwMDj<_#TnQ
z%ZzdY)amVUwxX_Z3~bv4%0keWoRLBG1-Bd$8r@7X8gX3cCFCQRP5%2tv?(SQOqw``
zL^6Xd;%l_;Iq_rJrtch_ne6ittDei}EV;{>P#|H7Bv0VAW-v!CW<h(p(D#f#8sSXW
zY2^EjkH<tPj4z-PGL5Cw=AVws_aVGvv0y=H+=@6?tpCwg^zr08ZE(+8LELIOMznkl
z6SwrpF-R^hN2WA+ML+=Hc)Q2~52eNOkuqh%<`RA)wN`pH(1opDf?Mh19IJGXK?#HW
zB2k%D)Q}N1Q)zOKi(+s52eIAgYR*7sY^vyNxRjW*cv|eB?vG?Lnm(F-Yr9`@J_~q&
zCgs&&`L>eqU`X}7Bj-cMafki54#i8E54&n{Rh3h?4l0L-`<@>&w;o)^PG05=E;WGd
zYmjuW$o8U8q(y%sB)E?R6t#j#te@glz}1btJlp}R28i#KM^?a;V!6%HS=KQ-{#~`#
zqZi;3lekli(+hM;S=0)vw8}xd6@4N!cpLNpEk>5pL~8b@8r6dT$=85h@jB<Edth<X
zBt)|0Y);;~j%}0258hrmRg6}l4*LVhJ$%@EdB3Tsl6)!tD|>N^L0X!F%9jY~VFXHF
zIJU2@wgCwu;~%*#GpbfBUT`JI7MO=?V(lJAEz=)UEP1HW2Q@^K%#{)r?UQ*HM%5kl
zGD)|IQ=|vU&-NnAEAPRL8OUm^lZF+~c29(<5U(&4jilKqidH1=!nNus?3s!reNb6!
zxE|bDm1vc;=`f?mq!*obJ8WH)PoNA731NNOM{kx8#I)4E2boeIlHXE9@|5}`(U&M$
z#HT~i>(+N`%edNIbE2lQnY(AfoD_I{^>Q6xk|$K!m~C(M=GWD!+)cndBTkc;=fIor
z7BkQFjg#2DEi(U(N~n2S`;#!zYK=VzinFC^lNqKyB@#^97XGe#M%baT-o#!{4WW!S
z8-cIP@biL1l^G+_XHlGrDl(SEvOPA(^&xwAz!QiE9dQv$UoSo(aes5%Opw74i+xB+
z!+eyaxeUE{-cdLqf$>_rqwMh~0~{0<2n*|sIzUMruCwu2e^KF(at^maernNBvWet0
zoxeFgCF;al9<J8R+GPZ{vt=oq2n7PIp*E&<XJqfqa{P|Y^;YBvLUSR7=r<*HoW(1m
zqD2zd;MMsbOoln&ajvIv%j?6E$aaPASFg~OVgz^G!U9#d=qIq}qY6#Rpp-awjyLDX
z{kWr>LGJcV+%oPOI#U{=C3+sJ2GwBT3hR$YRVzSs_=xlfwtH}XF8YkM)~uD=jL?67
zbu*rad|Xe_f<+w4w%;Ziam=FOIV>BhVD&esFn&Fb;oi1|eL$Cax|kMQ@5$+?`&Gh|
z_N_fnN9i=gZeXgl;HHhwtFD@${mUX7#uiWD0I$wji_JFz4-r0_{acb>>};XzY-?$u
zw@j9NiA59K7RqIAHuL<A&m{AKI#+8q*#_qwO<khE-pv#m{BEhzazq|c?p)(?2Vx88
z{L#@QOcW$E8xq1Xhm~MD*3@+8a*esR91;p&R9G`*Pd_+bh&3q<PH7YQR9BJUDsrFG
zcv%X?Bw7`{sNIC{q*+Vl+w_y6c`Xta^|Po=CMndk9AfLNnr^6-7eL~L&lO9saj|oW
ziK>YiRb^8qtf>FgXtSMaE{n0IX+V;qk5U9~0xj_QK++b@NxG3yRV@^HLbKm|5Mbhj
z5}~K#Io*`-D}D9x33Y~X<rV!U0b!HZ;;8vfN?Cd&z9fD6=9>>|bJ5tzspv?mYGdjz
zenf7e&xV+4)X(H)?_LxK?+$)8lG0|0G>({45GWTnIm!sl>Hr*Pib=LFUQ^TSI$A&J
zWZN)iXQ^h=;?H5~U4A)4i|vt2A}9^lGo$C%CeLHFG%o76kqIE?6v{PC;b~&E`~I}X
zp}Sb+)xlz|RQ>sT7l=>$RO}<g>r?7yD~WX_NZ71Y-RwCrlKnL~-XyS+sKa-Nb#*@{
z>>vHbPiV`6JtZ+jYDUsom5kgBINRlQ6`bUcdRGRlTym4}NtKHTJdv8!!vxQK+6A4K
z1v@cT=e#scKoJSfQZ`w|it7Sx&O4&YnUVBV<>H{Od5~4ai5`P21zG)ZNH4yY9Q3W;
zlDgsMicqm%S=nt@-PldkI=TI71<_OQFB)Blf^eGVz<!_}b_<QWO?rwQ<JoNbbduFC
z4B!LZ-(NQ?9@^b}04b3lKYTC0<9p&L5HR(gky8arP-T^}0IW3?ihv~7R!uuH7;-Y9
z;>w*+&AhwdYfrhxgYDc$7gRjxFoq1cma$g6@K@K$U!h<b_wkfN^);zob+e1K9iJ5g
zol{pp5WakridHH>U;tNm0T;FyXrWffm-gGoSsLT;8S!87y**|Ir4BA1x=CmQj2feY
z8(Z&)RSUK^x{7WeHC56M7JZk~T}dGv&*b~$>EOKoI(hT-owrp6n_9_lOe-KmnHPWD
z`XL+xYA}x$i%}Qfts!1)3{Q!yzWT;ii=r}?mAaA0#I#Yk^km-WGnp!V&ZC$g@S5Uy
zI`6b^t7_cvGU~Z;&LcU!`Vw>oDO=3dIF2L*uPJA=qdR~X(cPoQu}Lt$puGg&3Hq<w
zo>1Uzk6^3Tr${0YkbrRz5Z3?ozapJn>`ff?-ZlXO-utZJ>o{$*o%3`F#v#TTQ(zw$
znYsH-2|^)C^65kF4dg9JTH2QrEq1`c|H{xA38#~)*&^F5yR)w$KS@$8Tb&&?+i{}N
zkaQQge;O~nOj%L0qUangJ38_i5*7e%{Ta?8Wj-WQzXlM6>ro@yEHfW^U@=3XSL~@{
z)1)X9XSwJFA5yhqkaQdmkN?8y@hv}J%2X7yosL6K%vnc#^`UOr?o1_0?*J~Mlx3tz
zMsOlRIYOJx09z(g<61lMr@0J-j*Y*zV-JIeLUsPAyTcQ`PR(31`MFA5GC7^()Tp3i
zifPpO!r_l~C1enINt&1hywwK^h?H)pqPy@Sx~N#m#O{1);YNl$$2wD#cauhTDbejr
zjv|upv*WPpAcww+G_q-LDUl!L%(MBYEV_$Xncnc@9d=lz$B7*@`ZSv<3U13RwI4#j
z2UV!HPn=hU3tP|Oy4s(UNO>q{FkYWCVs~~LjYua3oFWwJ7lfQ+6br9oTMg8ZqMhb1
zXGq3ij8v&3{_H)S!#KrD-SwJmt0en`{i7>*e>pu7jzRV6@vt+xji_g82s4dph*i~k
z@wL$xxM9Qe<3v;Z-VQBI*80SaciGS~mfl2c17y;o<;bR7yFPUzpK+OO7IaCGR=9K3
z&qo`WTD$~9CuWlKc@ydg$Bp{v@=cn@{xH$=ddcDLYOGW<>Lp5^W4zh(KwrJ6&xI_u
zqJ7R8F>*tJ#S38_atpYs&ODcr&<yAaRx$p5-x~y;&!vPVIyc!O20x6lN=Xb!AdU<B
zgA;(lxw76G1u(Z5=P3vgPV~u}KDMBGWb)Xg?TQ{{b&2Z&L?vVku9qSX8H`wzr1Px>
zwm4{OSt5&KcfWFi3Q=S;%8sSMpGzJuJsU&~9)etRpNVRnL$`xgz_0t*+-;QD6!6j-
z5CA*fvmUgQbb^}WNH3q=6knJxvuh#Czv%E!@+Y#<?#x@W5-3UGGpA0}h_*2vLAxN~
z_Uw6eqeKsfV>US23}71f3`?SW4$u!x-Ei4uujCWW+IjS7!k-SMgQA+1?3E#n%Qj1?
zww|BU)1`-J$e9s5ij1)Eg&)f!F6nPc8Z#g<RDxhJNb|k#Y=QT`g+JtHe^=f3l`2lH
z%%vs8lL#L8x#Oy+%2G27ySGho*-?)})-WE#FCT#u-P{HH&3iq`T86iQ)1*sf;=xoS
z`<Dp$Rm~?#BWwaGY~IX8`4P8g=whZ;|D)uuB_eECn5~;m@^)0Zpk3Jv;(`#QsS@vQ
z{mqwdF_~x&&_-E3L2oM8^g&6>mnK(IMMq-NPHUS#!k$#~g+EVV&?$&EBYa0F=h!`i
zT|qQB*)`?yih-Qd0&%bMZ+$p@CDS(1hU649Hn4r>|CU}{agF!bhiFO}+7sf)cMkG^
zE1o=c*6(IjQS|wlGkI=Zcy!i1Ngqor%p9yD=~A+`IWx04Gpk@@R`ba+kn`Z(<>jV6
z9Mcwv%UuSO*zh=k<q@G((i{kB`ye|NLN_rq6-4M>Y#i=)hzI`2At+x89>pS+)C4iu
zmG1Kq%_gXRYyV3cK#sNMxg(PYv(_X$W=!EFKl_Y-SR4Bk={%i(hhKqZ9E>$vBmliS
z8=&pm+gc2%Vd)-CNVCS%Iwv@>_T;4shNXMS(8|hVpIc%}kY$|Mv;jF*Gds8uECq;3
z>p@NTZu81gQR!(${G2iCBYL_J-nEhLC}6J3;@>r5wsA$hKU9@ZsHf!LK1~kW8iWYQ
zo~MP;n?d5brL3@UduOMa|0I)3SU>1!2B~EODzIq(C_SW+AvKY$VhQ$LJp<DZp*}ac
zF=uQ@So(Ok5RG;&D+OefSopwskUB(#Eo1EXf(FbndTFTzIq7|e`ZE4;MK?%Jw#TUf
z;-`RgsX1nD0vPtitcp@_<H8%YxbR1R>PEQ?>)0`NW*%m~sQFp6=ht(!Mx3sUxYM5>
z5-tg_N@nMt4{U<mNNdlsWD`a1qMFp)E|S(i@s?U=epu&`njQHZKa_fLNP7TC%+nZE
zgT`#riN3%`Ge98<uQTi^s>|Z@z*|@kLCM`u7>rF!XeWw8+UaW#21$A6pxhxwp4lpx
z=4BG{^HqiwKe$V+7fzU@jLblhfkyr@j7_1em+!lH?Mw41WLRs??uwg)9nn|?mHXOz
zx3P?9(1)7-D7-ca=tAHH(9SX*$`rIqo@gMW0>a}}x<5!}u*`_G3D3Aey=a;cn>&u_
zbRWI&q0Z$N3=P%2>_MdQ7$wWw@TQ5iA)9RcQ^%-9V=Sl#r(X;?SgS?>?>WK-Y}5wR
zhm}CmQ3l%u2!NLXrKm}r5Q6<2V=^a7G)2H-+pGk=vPRshL!7TDZ7ONk!Iw$HBOW{}
zv-s4&*i#N4Kf_}q67`qJJ?xSr2Xk}=nXkL-C8X@z`YzvX#&-%?ugrt=L6yv?nDvLj
zr6i?8ET<#U%xgQMRWe$WE36B#5;bLdRy3qC=}0i4Po`@f&+4(SJCv@xv(7(A{jip6
z$WFBg^{<5U3snNqRps=&p)TY3W^Ls;bmw-|pf9D$RAA(S-mTxO$O19kM`0@~z?4(8
zosyFGUi>IZ`x(~uBysR?0fH%$Rulo8j73x@0#B09hCpF!N5@Q%Ce-mr;nBhBpqY^x
z;Z|q2pbgqAkOJedLIjalSGd!d+``||j^~DAd*cXPo8eAFz&DfWQ*>H;2lUyqfx7$7
zK-m<3ozPRNyz-fxX)&Q{r<Z86`3=WBPy5hLpo#nUMw%}I3VHM{+>)rjnqu%PJsVF$
zAiip35rkY#vf+f4c*UQ+@3<OWpV~N?!7t9qGFQv(m(`xYh@Sp9-#i#iV4dRnVMY<!
zt#O?22wQam*z@(Q_7f$9SBa8IetuVNFHW{i6{<>kySz<lM1tD8)+#NYTTff}6pxvu
zsD9=x0|cgAZas5-9DIgHl;=;2t|{#<2Fcj#$y~->cp4Axch;g#e6CqU+Ua5p3vwg@
zrG^h*6W3z{FyqJRJuKqPzfR-?>^h$JCFjppK1>uT#x;GvS~ZY3+xHW6QLr(P{q`v%
zCe(}qJG0CHL^&`?hNhLM9Qo6@nmOqOGDGpJD6S>hU~VXdnvrN8apJt>I%WI2)gKQm
zv|Fh#)je6*di@`zH54jbtIBP##)mECeiXGu*n_7epf}7nbWYRXxA1tmdq2HW5O`rF
z9hS(9Txgo^C$>tu!JY&hs@I|?lV?2|1r3G^c_PqPf`FaJuQXW{-+Vi-f>{c@%R9j*
z;ptnzsc}Icp7Lcsu9q=vtZt_l>-@;fyfx!BtZAQ*L!(oduf${0==&>k^BqB>Q>*M=
zW#E^*7qR5R5wpZ>h|BaT9BW|$r-v7DoT`PRFEF88^dr)_4DBV{K27(iX@!;1duu`=
zEx+95;norogd$1Hm5$dNbZI{YG2%<)z_#IAilLBRX5?R|e10bogoC~E5}__wq;{Is
z0L%ML0P2Sp+-eUUdrNiPX|B(YI)ZylP{9iRym4`lAM)*`aR%LI`SjagrWfxSOT*0d
z+x6lA5RF)+j}c$S%W8Lm8$_VuKnO^#r;c`|p5%D(%-l|fyZukyc`C%6+J>|H^D0AR
zx}bv0{A)i=AjR5<4WfB2oJP|^hDM4D=2~zG#dupw5!3C*skbe~sdjRCeCkpSK}sP*
zNC}c0iW@!NtC*T-Ww&LnR}a9|a86vQTYL(hBV^|urnV4b87iC`Ax*!*jIWV$T)=Ja
z^g9_mpqug^0yxRB7!^TTWpP$(F0alE)bB2vquFEItO=@!kd%s4d-r7JIoz(a?w9S1
z{|cFrrlLn1cFklVaMBMtG3{d_#f5G96=(aDlNL8(r7<O3l<(C<KI^3Khlm}e(dZUV
z*GiRQE)D^9xZ^2lYdE1A+Z9K{wCwleMi$J{4G;HO04m}_873^77|wEPJ@eN3%ZuHR
zUuKuC>4q}r<XqvJ`-H2&45HUAVp@9!gtw2|=s4OehX<a0+~kyP#LmiXa>OM3co9oa
z&;5CP=Ql!!z3M?ncfnixU7oH+Gl5>=8IAz~wXx#-t~6>Bb-2dDcZ`C$CtRJ$#Ok5v
zzZhtnEBY-cE;pv$IhiI+eERM`u3YYzt&Kz1vxA$R`_PpiyT!^BNA&gbehGYEnsv0!
zCEa7GPGVGw1sz{V3H%DC=@-NYZ?<9XWsi`Q0v(rQUD7NKSU39nqu47w)}P5A>?6jA
z>PX|O4|<<k{e1=pG9@&aCo%lbQhn(m%LFPq@PhmXKC}n+mrM!LOh7&}`&0QiZfYrc
z%|^<ipMVIwEZ9ZU{WO-9vVMxNf+bhNKEhNwg(5)#BtrLe7!j_ne8&3h=Hv7E2Kn>F
z;y0CN`>VaumSo-rhAJ_L&rkv1gJ0?C@2|HPkH;q?6(87MVlUEZe?o#3GtT_XDq2Jy
zC#z7k;yek4I*_lZ!PfBQ${5{T?-y2kKx`mi1}?ZS{#p~&kkf*J6@Yb2w{eHmmul*m
zF)dSGm&aVO+f?C;0}+`ixR_d90h4^F&v1wi0Vuk@^#kKh<;{UuV;8BXjT02Yx&oYT
z-lFJ65Drq2^7X~s@pIT`EJA>5n5YyKe)%Nd?S_DMR!k-%LOPhX=l&w3^5O1it<3hq
z%leE`g$|6pSmSkrAs^Ou%AGIdM;MxuHAtuiVI*_9JKxHOUVf4d0)%rwX<@vb<0e^j
zV5ex7mWySQ<US0;l3{w3ZVwC`r~WV0{htl^Rcdanx0-@t+}c$e))~*%qj8(CyA954
zIvh>W&l2+5)4XHvGFPK_5Yz#7i%*wqDQT>Z)Aw=*xEmdOWqoO6?#;t9XR$_G2jtrc
zpNOuu6TP)kvUtk+D$*mC39myhB>6$7tS;HypnFQJ)M`()kxYa3OFH8n%8&4(h6f51
z!|o(G#J|eDm!{mGTMpebP2w{_ox#l`am|G+<SCjsCd(wb#P}SVlGfsMZTeY!Kc$mt
zCWo?+?U7XKX*_jB^|qHuBg#U~1x$;gJey?u==m(&UO-j5dQaXSqJ)HBNgTYQ*0i3e
z{6U^fVV#@o5VCOvUW+}Zrx^o&5hrnTieJe8T|x4X%AZ=fcjLP>p|iEd>Y2f*v&utk
zU+8p6lClx~SC*oorG3a5b1&1RA@N`Ni*fzhr7-K{;c*M+KFs;@J~D32E|!)atY`^i
ze#62HU9PY;z;vfLgHj9p(SFGsV#m>a9_e5U^Aq#hd18t$XD*Vj_u*B1jshF!vA7{%
z05k$OY#8DMYet@+8jPu+)xU!lIT+$2b>Kj_$xNBfzH4EtO}XsJK*;ttN(%1<kK2%<
z8#VrkH03s-UbUZ}@<e(csVA~<y1^o&b`-Y>UAQA7xWHoCX+j@)daU}|;JDdnl-3-M
zq}t8$)dGqJ<2X5Md+x?oP&_YJ6q-u=<AovMcxQjknLu6>_GTcU*j5@&?0(^_$%&A4
zAX}Z~2r^)+tZEl5SrHJy6iym>$!j7LD=G$OHCnCu5ggts{~2<H3(r&Lkh=lnget`G
zNVIo8w%045^J8TT2?Bh7f{sKPV+TS<7J4O(y<Lsf^rdvc0}(p2lWpmZC>Y$r=%w?C
zxVxpC=hu@P+v*pzqsd9wqCQ-Uld4=HQB!}q(`+TEstVTRWj!RwY1eeRfafdJpk4G-
zui(w1YRWHYkI6%)C)rJjSV5@bp6(`_-Xo9TlxjTpV4fBs=1_>Fc03dEI~BP#U4>4C
z44H>LAGlPDAj0Ddgi_{Cjsk@o5RRR#pR(T%H)E-fYs6&L8CYR;&C%b(1=_EDeWeme
zF_b0C?-6d6P&4e;{?7Qd-B|nH^3x0WS)Lw}VIU4A+k<J-mF%*-&Gy-ak-~nBiIr@T
zEu{7Qd5L$L?i^UK{>PAc)LzUU7?T_ULR#3}UH48rFX%kj<jpBj6wQc&;sy6kqyD=s
zs}_x=7%mjC&kb(ZT@`3G>rZMyL^I%mO&33qvspSr7H;*01XD9hT@k#3D{v%+jRc?8
zYtBeJzcRLblvyM^ClgLud9cnJH`DWOgcM_2{B|4w>_K~Q#8(*L@zHm*n5Tyr<@%dF
zBV_iNo5%qp7ImmU>r9~iC*u}O^NEdUWVvg9G~R?RK>g#r{4ZZ@XU$sMR(PLN?{R#4
zcI?_t&DsUGA-usjYRDoIiPg1-!-vdj$3!+%eacW8^#B14FQ~CFDkpj?zl~~<{n1$p
z8noc>I`N@cr~N*y>Rbd~xkc$_uX;f+hI<u%N*hXn>|BWMd4!*s)pm5N4t>E*h_M_^
zI%Tx>=8BMQJ>OIWnOxgcjRnQdP<!&keBcyUvPz6xf)G*<Ni^cJ2M=!_?LX;NRU+gN
zNrWZkc;fSR!RHX_+^=9>mKQgLiY;KmO@0~p)OK=9*B7z{Jv9tZJtgt=JUOup_JxAK
z0EXyR;$!h~6>-L{J7hw^OD-<<U<(flXY}@(Iur{zok*~MUCOTJHl5dCE4RCtac+o^
zITIh>2QT%i-u-gCjK1ZL0|e(wvsBp<`OK&8B$X-B$kxeCBC#vwPhUnuPBhYomZLRQ
zKFZ@9VSu~zi$)cFdhRUr(nc@SN<s0}gcL%%F_2eiQ(vN*$rZQ%Kuh6Wqq#ELe+RCh
z?^rLbSISQF?u6>c$YAOX*#^AR*ZB<b<_Pp;)IF_md~W~2I#}#I5?wl%`)&ATVdkfS
z)*HY5YIn26tkX$I-R>Yp_{r{gfip{e2iH?2P|Ha$RhgroA4-q{>CEyq5EjNN`KJ*p
z;L}!Z$MwH`JpN%bM@#6&JK52uUhC7`{o?iwA@lK`{XX~StE|)ck@acrrN%TOlH%D4
z$#&*~e-%+VOm=D1F*c=Z(Qq2($qLa$a`^I&xpejf1FiF6OS0^deEvkP^|4sh>MAn`
zt=5vy298Bd<#MAL4pY0Po1<A&@)s9AEf02>4X<XjLxW|)N^}jdsFQasHM3HQ-NA$(
z!(sqhp-{B~#$VO9GQ<0#0qzq;H`2w8t`j2u-#NuiedIgxDW>s_>$6gpgKK`oCuTv-
ztZexa0+iO{8m4HGva$;TjF0D(7mte(wD^3iMDUlk<c*a#@(_Mt9PKoz6+5^ELcD*r
zt117E<UPM?N=z&eX2CG65xt-ta=nr~MP9WS3D}eqQwKr#hBgFK9*(Brwu`RULgwY!
zBCo(rq00O?bt*uUC+cLK$WyAbwH!mVOr1;n*zS@)mo7gPqY63nFoo~H!g2cD`#P0?
zVlPoZ;-wkkho>WJ7?{4yCo^4eA0e;#)!mEn>hqq|IY!bRqgT%xT9`d90w(o2`fjfH
zk0UAqY&|w3&o=tMD0wQ@bkx(N?`!0sdWyz=!M%_|^Ju^k#uV*UMR)Tt&u33|pAJ!*
zpF_2xFMps@)h$bag1^Y$5ud|N&|Va8Pc73Knl&FQYf&Uu3xQ=k9KH!NKcwDS>Z!h5
zR*ncNkvd9`9~jan*U8w`PAP{SBrB<G+msY%ZzJ{{Y(D7<@`axd%8dwFbay>3E9Jnh
zq4=I27tmnd=!mn<!MW-oM%&ckTWsY6+xN_w$;|{iPhu^Eu3F`krnReR?rl8U2i_Cl
zsSYQ(3TuWLrA=&8-H(BkE30ug;j-=vIv3@BFJ5xf|I5VfTHr^Q42qB$T;TI_$sJ#r
z*_xPI7H*(NZ>yr0*BZsa9_Y&qp@+<%XiZsig7^EdPDVYtO5J3K`-v{-Jz98s$JHI;
zM``q>I)d#r7;9NhhDUoaai(lygvY^zeG+syTSe1krdYQ?H>~^cyTHP_*#=Dwe5}vM
zDWV@?`YzOeM)Ze81MnCoVNXDPP6(<;gLFc2IqA?{5K`P$A(OmlxGcTF%e%h(yz_1Y
zZZOUzL_jlak02iY<E2VF-kg`3E2w7#s*tqk-B(Z}CkLu`sBT#m-NriFj1C=#gBvVL
z1zS3>{`Q+rJ$yc9oO}kZ)9Wu@N~Cs$oQ3Z+#?DxhEuSp~I2{>}&T>U}Q;;Q(?1TlY
zMo~m-ixE=Mk-q^P!ij-@+}w4pW|196Ws6%2Ay$DH4u?l0AKxQ^{wTcqiB3{+7gv!3
z;WsCfnuKltqQ)_@cL$>Og^P;1M({l2{$gUp-F^9iYs4Yj-rL#1+m-8e>#3^OSAV4T
z#!l`R2shdX7(~Yjq+=2-dge}_;@VdDCeT&_S|Msf4y#IZtqL%&oA1IhT^aHKi6*`b
zY`meovu7)#aIY`IfsH<u3YweIEoV=iG#7_3MMDqw*CUK$zP6j;>#|KQ7Q4$CgD_vy
zugMtT(JBSetS-?~ko6H{CDR7K(MBzT?7{kmxuziXzQ#0tM6F1k$%;siJ<AB1enDcX
z!akI-&p_skQZMIQ?`uMSN6|nAcg)n|QFxH{^x1jtV%)c=V|xX4QnxIw%<sXQ*m)BH
zpP+!<$-!$lFJAzqskfcJl6p%G>X|ofZCgPVJ*uzp1;TnhCRduLwcCfQcNI4?jDQw)
z))!;I3Xx-q+nFu@#REGkXc6V43IS5}yTxNI)iAYwjVq%^(XCa__b`W#YsOC`#pnnt
zKXbo9Mbu&<J!%NjkBF@zcx}Oj$?6~MYxVS~p4K6XEoQ(~@G4p#h?ePUaZimDewlUe
zfF*1oqIzE6Z2<JxMasUi5}sk;zxdCmZ8eEq_ra>0vs+NQ0k}QTriX-#o4~&gsR*cb
z8yvoez6gAw-`w;t<a_O$>aZ2c#af@cy$THdTm`on>L$Xq*3zDp>{KvuvfgvFD!<V3
zjf`{CA*Faz$vG9>@)zRwAxFm<F1!-TgPqa+Ex349ztiKh8TbUOkBX;JYd%bCf_6L?
z;wOYg9Uj8XE}uHJdPG=jAMD0P+uCmF(YdOkKMQ2}R`5-ZADlm|z7sT-*zYI$W-W>U
z=z~I>R`~8=t<SIOi-Z$-2}bAffdMYYME6mlU#3K~=l;7A3P9b^JzPUQ)UeGes|eKm
z1IJSTY1G2O$<xo9c>^@&v79b2sorpcEf7dTr!|->U|*xDPd!!~%6l_n@9+Z6&&g9`
zbt+o2*_1p9uiKk7*)jSygS2o?!TI5UAJ!>}1h0_nLbs}4iWIoxcE;nuxrlznYsmBg
zdjSL{;+NaNKO)<-RSk$<EK#Iu(T4<QjHYAn+y`xJA`{4+#PUIZHd`slP<~RHTZXmO
zg{X*5-P)u}l-E;dCeq^)<cHLmyJ)6Ul1C<q<WTy$FpIkF8YEl96ATg6@FQDnv&Akd
z^$KeexMTBl7INOs>$IvQa4{Xp>7Z03h^j$#sxWxW9%hqpcoWTOt%-qNJ^rE%iB=&U
zzy`1-XNmfgFd`t<z{!mrrG8MmOpFObfi4{RxU89OyuIEp-<8Z~OlGhS?1L12zrHJ`
zSSM^-MO@xqf<H9J`6f6eycliqL;L8Z@>$-8>7rpAsDQY*$vQ><5K$^K3}u2~md}~C
z(w=)o+#DB&=|>t-DGT9nLl*c}%51p$-@1BRRRX_r6AM%D!23sNTR(56=OtjzMtw3E
z+{%9FHm0pRT8`iZYzq})6wO?@SE^Qdjc@#5A2YKKaee^1JIvu$F(M#z$ZsKRGL)&H
zVK-nI*JYR#=S?w89kna!hr8chkakQJ-Qh4x?@~@+NMmC*fRRMq$G-40$oW*9b%`f*
zQcJ>;&b9zIQv8S>KjY6S%EikaiX|{%f)7}bh6bQ@uGn;DjZNWgnH1IPu|tzeW2@uN
zfJtp5DS_I<TW<9X3_fSdu{gk#RWm;l^TkCW<m}EOCRE#MUrp%ly^46GB^(;}T=uIn
z;>HzdX3XEblrpSJWk&9AO_Rza>dRyH%jpx?j-`LtH2pBk7>de--gqCMOhg%e1r^#q
zwnS7FUOh(<ci=kPX4bufd(bi5flo0J22tnra&WI<LW}$Z&l`&r7Q}0XDUSb@vOEgc
zCrL=bg0|~DuiOG{irp@HV%*P@+1wyqft8O0ho~cvTRE8Jn`!;l*H5szA~S|$TEgE{
z9!8emBWyPZ1`**ClX&ZE&X6ID75tbB@N(_4PVGVw;IK~V#4_=iKhL?-^29(YM~tK0
zB_BE63Dd{Q5T$f=Nm<EZp{u6kL4VD0Ut5AvIl8DNbMXukfM0Y>f!*U1s-Y4UGb<|6
z`+|+9V0?RA^p%XmozI<>V_|)r{h)bHyXaGM@tgv`!@;+Xj{eo<=sHxktrNn`=#vfw
zZw69RUZ1n=KqNlnXKV1McVih-+QCc_Rp*UK)%XZsB>>2fNT<rAeaHwblvrcw0oUWe
zw!=&uP%%AS`Ck_DG1ilj<i52|PO@ZoRE6vy>g=>gtwFNja7qn*Y~X07VmsXk!yHEA
zd7`f!EFxcwLBC$Zq?rtdq_L9^H$!)c-HTmdQNw1Ed+@?03b)E+o!7*SQ3Ek_Nn0Y)
zz#0(t%xRT2y{lez`jD;RPR0jc<Di`lYk+319z<20{VbWRjFnQ#VT$w~i7Q58Ugo7t
zT33Kv#VCt}3D-PyO_E=+{)_cRG`%>-GX_d=m&=%*5a(L8bo8k&XZ+Bz13Tol>Pk4$
zwhheugb75LXQBu1?b2B8sikoz&H4ETSw}{}!y@DQ&Z1=E-b_|7O&+E*RVUlYzM&)S
zV~thL<ptT3h)&Rs7~xi_JBrE#JtIr)lT{I=={%YRkvv6%0unnC1UfhcI3?mJaW_LM
z76);y4g%f)I>yP4HQUJaq20|;PGvdnjynW#+3KEX+FGTDt58i*?z<f<%erf#F~sj{
z<+*tifhB2MUYw0TovWh^T=-2NZ|SjLdz=$1BwHcrt*8T8v*|CnV2AlI!ekY}K_3G`
zy=l&&&ACEn>E)<uR}}0JkI!5MQRD+PJO!(cdHXGIX%EcmH;^e}A$|(#5X^vS@tiv*
z7IBJ&_rf5@6_2F~Z^uBNhbvX(867duNp2w)Jav|y-g=^17oS0fhHTvuR!v!u;eW98
z%~@&A1WUiz8DxskGGCR~F)Wa?oeU@HYj^95$rUChvGtW&rX*_-Hnkkg&ysMNs;~uv
zG9?&RHP#jp4teH6krgSpj`qB~kWo2M3!Je#XP1`(ea8p(*1ZS>M1c3t#a!SZWN)W|
z4`jcSx274tOS@n}h~A!pfP!FyfIM8@xvI~D`b|}Ta?qX!1^I;i`{y66a{gP<7tEim
zk^n9JvqRFKOylh#x&uvvSV-{vH`BuZMi}W&rX~Jp`ftsb{siC`^7O|2e*&=iHvr5(
z0l5Arz~8$&{Ru}4oW|`<qhFi<)e#%X!9SJJ5&Q|K^uOZ#y^GYJ;AlTcyy@jP%3<<b
zx4-}X$B=0Jn_Famg4_MS!Tr5y)gMv)Qg6|IJK6K&H~L>C0>r;10`s3xDM9~`2>;tw
zS%0F?T08Yd0Yu$Y@~;yH8l=skP0@Vv*N0PVND!VN6cD+8QXuln_jmpOp<rrf>r8Lp
zX5wULV?zIdftiJYnZdx?`gfZcOQ$~)1c6|+qf-J#<_e_#cV_>`WP$#R24er1f^P&T
zaUuUTS^l>g{j;6eAG!FE&|*g^{?A<gvu(~FxtJ0Ce{lKtCOUtl1oHJmuk`;&>95L7
z|3T^P3e_v~2TFf0KK&DdI2Q76;W@SC|2jkdszmjV2<Lx+@Vj93k1&2tmU#a&%wLtY
z{sZPM&ZM&c>Bw)G|61hwC;Yz2ckNohi4fPR_}6a!)e`<c;x}phZ}I=Jp#M+!P;C1T
zz(9g<R|>bi@%W28|If8_f5fje{NLjLX=U9XNq~&J9K4bE&&dV>3B106AOXM5fzKiW
H-+ui+i2vk9

literal 0
HcmV?d00001

diff --git a/oxAuth/Server/integrations/passwurd/PasswurdAuthentication.py b/oxAuth/Server/integrations/passwurd/PasswurdAuthentication.py
new file mode 100644
index 00000000..d622ae7d
--- /dev/null
+++ b/oxAuth/Server/integrations/passwurd/PasswurdAuthentication.py
@@ -0,0 +1,894 @@
+# Author: Madhumita Subramaniam
+
+from org.gluu.oxauth.client import RegisterClient
+from org.gluu.oxauth.client import RegisterRequest
+from org.gluu.oxauth.client import RegisterResponse
+from org.gluu.oxauth.model.common import GrantType;
+from org.gluu.oxauth.model.register import ApplicationType;
+from org.gluu.oxauth.model.util import StringUtils;
+from org.gluu.oxauth.model.common import User, WebKeyStorage
+from org.gluu.oxauth.model.configuration import AppConfiguration
+from org.gluu.oxauth.model.crypto import OxAuthCryptoProvider
+from org.gluu.oxauth.model.crypto.signature import SignatureAlgorithm
+from org.oxauth.persistence.model.configuration import GluuConfiguration
+from org.gluu.oxauth.security import Identity
+from org.gluu.oxauth.util import ServerUtil
+from org.gluu.oxauth.service import AuthenticationService, UserService
+from org.gluu.oxauth.service.custom import CustomScriptService
+from org.gluu.model.custom.script import CustomScriptType
+from org.gluu.model.custom.script.type.auth import PersonAuthenticationType
+from org.gluu.model import SimpleCustomProperty
+from org.gluu.persist import PersistenceEntryManager
+from org.gluu.service.cdi.util import CdiUtil
+from org.gluu.jsf2.message import FacesMessages
+from org.gluu.oxauth.service.net import HttpService, HttpService2
+from org.json import JSONObject
+from org.json import JSONArray
+from org.gluu.util import StringHelper
+from java.lang import System
+from java.lang import String
+from java.util import UUID
+from java.net import URLDecoder, URLEncoder
+from java.util import Arrays, ArrayList, Collections, HashMap
+from javax.faces.application import FacesMessage
+from javax.servlet.http import Cookie
+from javax.faces.context import FacesContext
+from org.apache.http.entity import ContentType
+import random
+
+import base64
+import ssl
+import json
+import urllib2
+
+try:
+    import json
+except ImportError:
+    import simplejson as json
+import sys
+
+class PersonAuthentication(PersonAuthenticationType):
+    def __init__(self, currentTimeMillis):
+        self.currentTimeMillis = currentTimeMillis
+        self.ACR_SG = "super_gluu"
+        self.PREV_LOGIN_SETTING = "prevLoginsCookieSettings"
+        
+        self.modulePrefix = "casa-external_"
+
+    def init(self, customScript, configurationAttributes):    	
+        print "Passwurd. init called"
+        
+        if not configurationAttributes.containsKey("AS_ENDPOINT"):
+            print "Scan. Initialization. Property AS_ENDPOINT is mandatory"
+            return False
+        self.AS_ENDPOINT = configurationAttributes.get("AS_ENDPOINT").getValue2()
+        
+        if not configurationAttributes.containsKey("AS_SSA"):
+            print "Scan. Initialization. Property AS_SSA is mandatory"
+            return False
+        self.AS_SSA = configurationAttributes.get("AS_SSA").getValue2()
+        
+        if not configurationAttributes.containsKey("AS_CLIENT_ID"):
+            print "Scan. Initialization. Property AS_CLIENT_ID is mandatory"
+            return False
+        self.AS_CLIENT_ID = configurationAttributes.get("AS_CLIENT_ID").getValue2()
+        
+        
+        if not configurationAttributes.containsKey("AS_CLIENT_SECRET"):
+            print "Scan. Initialization. Property AS_CLIENT_SECRET is mandatory"
+            return False
+        self.AS_CLIENT_SECRET = configurationAttributes.get("AS_CLIENT_SECRET").getValue2()
+        
+        if not configurationAttributes.containsKey("AS_REDIRECT_URI"):
+            print "Scan. Initialization. Property AS_REDIRECT_URI is mandatory"
+            return False
+        self.AS_REDIRECT_URI = configurationAttributes.get("AS_REDIRECT_URI").getValue2()
+        
+          
+        # JWKS used to sign the SSA 
+        if not configurationAttributes.containsKey("PORTAL_JWKS"):
+            print "Scan. Initialization. Property PORTAL_JWKS is mandatory"
+            return False
+        self.PORTAL_JWKS = configurationAttributes.get("PORTAL_JWKS").getValue2()
+        
+        
+        # KEY A 
+        if not configurationAttributes.containsKey("PASSWURD_KEY_A_KEYSTORE"):
+            print "Scan. Initialization. Property PASSWURD_KEY_A_KEYSTORE is mandatory"
+            return False
+        self.PASSWURD_KEY_A_KEYSTORE = configurationAttributes.get("PASSWURD_KEY_A_KEYSTORE").getValue2()
+        
+        # KEY A 
+        if not configurationAttributes.containsKey("PASSWURD_KEY_A_PASSWORD"):
+            print "Scan. Initialization. Property PASSWURD_KEY_A_PASSWORD is mandatory"
+            return False
+        self.PASSWURD_KEY_A_PASSWORD = configurationAttributes.get("PASSWURD_KEY_A_PASSWORD").getValue2()
+        
+        # KEY A 
+        if not configurationAttributes.containsKey("PASSWURD_API_URL"):
+            print "Passwurd. Initialization. Property PASSWURD_API_URL is mandatory"
+            return False
+        self.PASSWURD_API_URL = configurationAttributes.get("PASSWURD_API_URL").getValue2()
+        
+        self.authenticators = {}
+        self.uid_attr = self.getLocalPrimaryKey()
+        
+        self.prevLoginsSettings = self.computePrevLoginsSettings(configurationAttributes.get(self.PREV_LOGIN_SETTING))
+        custScriptService = CdiUtil.bean(CustomScriptService)
+        self.scriptsList = custScriptService.findCustomScripts(Collections.singletonList(CustomScriptType.PERSON_AUTHENTICATION), "oxConfigurationProperty", "displayName", "oxEnabled")
+        dynamicMethods = self.computeMethods(configurationAttributes.get("snd_step_methods"), self.scriptsList)
+
+        if len(dynamicMethods) > 0:
+            
+            for acr in dynamicMethods:
+                moduleName = self.modulePrefix + acr
+                try:
+                    external = __import__(moduleName, globals(), locals(), ["PersonAuthentication"], -1)
+                    module = external.PersonAuthentication(self.currentTimeMillis)
+
+                    print "Passwurd. init. Got dynamic module for acr %s" % acr
+                    configAttrs = self.getConfigurationAttributes(acr, self.scriptsList)
+                    
+                    if acr == self.ACR_SG:
+                        application_id = configurationAttributes.get("supergluu_app_id").getValue2()
+                        configAttrs.put("application_id", SimpleCustomProperty("application_id", application_id))
+
+                    if module.init(None, configAttrs):
+                        module.configAttrs = configAttrs
+                        self.authenticators[acr] = module
+                    else:
+                        print "Passwurd. init. Call to init in module '%s' returned False" % moduleName
+                except:
+                    print "Passwurd. init. Failed to load module %s" % moduleName
+                    print "Exception: ", sys.exc_info()[1]
+        else:
+            print "Passwurd. init. Not enough custom scripts enabled. Check config property 'snd_step_methods'"
+            return False
+        
+        self.cryptoProvider = OxAuthCryptoProvider(self.PASSWURD_KEY_A_KEYSTORE, self.PASSWURD_KEY_A_PASSWORD, None);
+        # upon client creation, this value is populated, after that this call will not go through in subsequent script restart
+        
+			
+	if StringHelper.isEmptyString(self.AS_CLIENT_ID):
+            clientRegistrationResponse = self.registerScanClient(self.AS_ENDPOINT, self.AS_REDIRECT_URI, self.AS_SSA, customScript)
+            if clientRegistrationResponse == None:
+                return False
+
+            self.AS_CLIENT_ID = clientRegistrationResponse['client_id']
+            self.AS_CLIENT_SECRET = clientRegistrationResponse['client_secret']
+	    print self.AS_CLIENT_ID
+	    print self.AS_CLIENT_SECRET
+        
+        print "Passwurd. init. Initialized successfully"
+        return True
+
+    def destroy(self, configurationAttributes):
+        return True
+
+    def getApiVersion(self):
+        return 11
+
+    def getAuthenticationMethodClaims(self, configurationAttributes):
+        return None
+
+    def isValidAuthenticationMethod(self, usageType, configurationAttributes):
+        return True
+
+    def getAlternativeAuthenticationMethod(self, usageType, configurationAttributes):
+        return None
+
+    def authenticate(self, configurationAttributes, requestParameters, step):
+        print "Passwurd. AUTHENTICATE  for step %d" % step
+
+        userService = CdiUtil.bean(UserService)
+        authenticationService = CdiUtil.bean(AuthenticationService)
+        identity = CdiUtil.bean(Identity)
+
+        if step == 1:
+            user_name = ServerUtil.getFirstValue(requestParameters, "username")
+            k_username = ServerUtil.getFirstValue(requestParameters, "k_username")
+            print "username -%s" % user_name 
+            print "- k_username %s" % k_username
+            if StringHelper.isNotEmptyString(user_name):
+                foundUser = userService.getUserByAttribute(self.uid_attr, user_name)
+                if foundUser == None:
+                    print "Passwurd. Unknown username '%s'" % user_name
+                    return False
+                else:
+                    logged_in = authenticationService.authenticate(user_name)
+                    if (logged_in is True):
+                        identity.setWorkingParameter("k_username", k_username)
+                        if foundUser.getAttribute("userPassword") is None:
+                            identity.setWorkingParameter("passwordNotSaved", "true");
+                        else:
+                            identity.setWorkingParameter("passwordNotSaved", "false");
+                            
+                        availMethods = self.getAvailMethodsUser(foundUser)
+                        if availMethods.size() > 0:
+                            acr = availMethods.get(0)
+                            print "Passwurd. Method to try in incase of 2fa step will be: %s" % acr
+                            identity.setWorkingParameter("ACR", acr)
+                            module = self.authenticators[acr]
+                            logged_in = module.authenticate(module.configAttrs, requestParameters, step)
+                    print "Logged In : %s" % logged_in
+                    return logged_in
+        elif(step == 2):
+            user = authenticationService.getAuthenticatedUser()
+            username =  user.getUserId()
+            if user == None:
+                print "Passwurd. authenticate for step 2. Cannot retrieve logged user"
+                return False
+        
+            elif(CdiUtil.bean(Identity).getWorkingParameter("passwordScanFailed") == "true"):
+                result_2fa = self.authenticate2FAStep(requestParameters, user, step)
+                if result_2fa == True:
+                    CdiUtil.bean(Identity).setWorkingParameter("passwordScanFailedAnd2FAPassed","true")
+                    # call notify API and pass the track_id
+                    track_id = CdiUtil.bean(Identity).getWorkingParameter("track_id")
+                    self.notifyProfilePy( username, track_id)
+                    #self.setError("Password validation failed. You have to authenticate yourself before proceeding")
+                return result_2fa
+            
+            elif(CdiUtil.bean(Identity).getWorkingParameter("passwordNotSaved") == "true" and CdiUtil.bean(Identity).getWorkingParameter("passwordNotSavedAnd2FAPassed") != "true"):
+                print "passwordNotSaved and 2FA not passed"
+                result_2fa = self.authenticate2FAStep(requestParameters, user, step)
+                if result_2fa == True:
+                    CdiUtil.bean(Identity).setWorkingParameter("passwordNotSavedAnd2FAPassed","true")
+                    track_id = CdiUtil.bean(Identity).getWorkingParameter("track_id")
+                    self.notifyProfilePy( username, track_id)
+                return result_2fa
+            
+            
+            elif (CdiUtil.bean(Identity).getWorkingParameter("passwordNotSaved") == 'true' and CdiUtil.bean(Identity).getWorkingParameter("passwordNotSavedAnd2FAPassed") == 'true'):
+                # TODO: we are never going to send the password here in plain text, this check should be removed
+                #password2 = ServerUtil.getFirstValue(requestParameters, "login_form:password2")
+                #if StringHelper.isEmpty(password):
+                #    self.setError("Password cannot be empty.")
+                #    print "Password cannot be empty."
+                #    CdiUtil.bean(Identity).setWorkingParameter("passwordSaved","false")
+                #    return True
+                
+                k_pwd = ServerUtil.getFirstValue(requestParameters, "k_pwd")
+                print "k_pwd %s" % k_pwd
+                
+                result = self.validateKeystrokes(username, identity.getWorkingParameter("k_username"), k_pwd )
+                print "result %s" % result
+                if(result == -1):
+                    # Gluu Authentication complete
+                    print "Passwurd. Authentication successful."
+                    
+                    # TODO: check that - only if MFA was invoked in a prev step, then this needs to be added
+                    #result = self.notifyProfilePy(username, True)
+                    user.setAttribute("userPassword", "true");
+                    userService.updateUser(user)
+                    return True;
+                # this means that password scan failed, go for 2fa
+                elif(result > 0):
+                    CdiUtil.bean(Identity).setWorkingParameter("passwordScanFailed","true")
+                    CdiUtil.bean(Identity).setWorkingParameter("track_id",result)
+                elif (result == -2):
+                    print "Passwurd. this means that the typed password text didnt match"
+                    return False;
+                elif (result == 0):
+                    print "Passwurd. There was an exception"
+                    return False;
+                else:
+                    print result
+                    return False;
+                
+            
+            else:
+            # (Password has been saved in the past and user is authenticating using his password)
+            # invoke the GLuu Scan API and validate the pwd
+            # if it fails, save this session variable passwordScanFailed, and proceed to step 3 is 2FA by casa script
+                #password = ServerUtil.getFirstValue(requestParameters, "pwd")
+                k_pwd = ServerUtil.getFirstValue(requestParameters, "k_pwd")
+                print "k_pwd %s" % k_pwd
+                
+                result = self.validateKeystrokes(username, identity.getWorkingParameter("k_username"), k_pwd)
+                print "result %s" % result
+                if(result == -1):
+                    # Gluu Authentication complete
+                    print "Passwurd. Authentication successful."
+                    return True;
+                elif (result == -2):
+                    # the typed password did not tally
+                    print "Passwurd. The typed password did not tally."
+                    self.setError("Incorrect password.")
+                    return False;
+                elif (result > 0):
+                    # Gluu authentication not complete, go for 2FA
+                    CdiUtil.bean(Identity).setWorkingParameter("passwordScanFailed","true")
+                    CdiUtil.bean(Identity).setWorkingParameter("track_id",result)
+                    print "track id that is being notified is: %s" % result
+                    #self.notifyProfilePy(username, result)
+                    return True
+                else:
+                    print result
+                    return False;
+        return False
+        
+
+    def prepareForStep(self, configurationAttributes, requestParameters, step):
+        print "Passwurd. prepareForStep %d" % step
+
+        identity = CdiUtil.bean(Identity)
+        session_attributes = identity.getSessionId().getSessionAttributes()
+        
+        if step == 1:
+            try:
+                loginHint = session_attributes.get("login_hint")
+                print "Passwurd. prepareForStep. Login hint is %s" % loginHint
+                isLoginHint = loginHint != None
+                if self.prevLoginsSettings == None:
+                    if isLoginHint:
+                        identity.setWorkingParameter("loginHint", loginHint)
+                else:
+                    users = self.getCookieValue()    
+                    if isLoginHint:
+                        idx = self.findUid(loginHint, users) 
+                        if idx >= 0:
+                            u = users.pop(idx)
+                            users.insert(0, u)
+                        else:
+                            identity.setWorkingParameter("loginHint", loginHint)
+                    
+                    if len(users) > 0:
+                        identity.setWorkingParameter("users", json.dumps(users, separators=(',',':')))
+            
+                    # In login.xhtml both loginHint and users are used to properly display the login form
+            except:
+                print "Passwurd. prepareForStep. Error!", sys.exc_info()[1]
+                
+            return True
+            
+        elif step == 2:
+            user = CdiUtil.bean(AuthenticationService).getAuthenticatedUser()
+            if user == None:
+                print "Passwurd. prepareForStep. Cannot retrieve logged user"
+                return False
+            
+            # password does not exist, step 2 is 2FA authentication
+            if user.getAttribute("userPassword") == None and CdiUtil.bean(Identity).getWorkingParameter("passwordNotSavedAnd2FAPassed") != "true":
+                CdiUtil.bean(Identity).setWorkingParameter("passwordNotSaved","true")
+                self.setError("Password not saved. You have to authenticate yourself before proceeding")
+                twoFA_result = self.get2FAPrepareForStep ( user, identity.getWorkingParameter("ACR"), requestParameters, step)
+                return twoFA_result
+            
+                
+            if CdiUtil.bean(Identity).getWorkingParameter("passwordNotSaved") == "true":
+            # case 1  : saving the password    
+                print "Passwurd. user password does not  exists and user will be presented with the save password page which goes to the /enroll endpoint of Gluu passwurd API"   
+                return True
+            elif CdiUtil.bean(Identity).getWorkingParameter("passwordScanFailed") == "true" :
+            # case 2: 2FA authentication
+                self.setError("Password validation failed. You have to authenticate yourself before proceeding")
+                twoFA_result = self.get2FAPrepareForStep ( user, identity.getWorkingParameter("ACR"), requestParameters, step)
+                return twoFA_result
+            else:
+                # presenting the enterPwd page
+                # do nothing 
+                return True
+
+        else:
+            print "Passwurd. Something went wrong"
+            return False   
+
+    def getExtraParametersForStep(self, configurationAttributes, step):
+
+        print "Passwurd. getExtraParametersForStep %d" % step
+        list = ArrayList()
+        if step > 1:
+            acr = CdiUtil.bean(Identity).getWorkingParameter("ACR")
+
+            if acr in self.authenticators:
+                module = self.authenticators[acr]
+                params = module.getExtraParametersForStep(module.configAttrs, step)
+                if params != None:
+                    list.addAll(params)
+            list.addAll(Arrays.asList("ACR", "methods", "passwordNotSaved", "passwordNotSavedAnd2FAPassed", "passwordScanFailed","passwordScanFailedAnd2FAPassed", "passwordSaved", "k_username", "k_pwd","trial_id"))
+            print "extras are %s" % list
+        return list
+
+    def getCountAuthenticationSteps(self, configurationAttributes):
+        return 2
+
+    def getPageForStep(self, configurationAttributes, step):
+        print "getPageForStep %s" % step
+        if step > 1:
+            page = None
+            acr = CdiUtil.bean(Identity).getWorkingParameter("ACR")
+            if acr in self.authenticators and (( CdiUtil.bean(Identity).getWorkingParameter("passwordNotSaved") == "true" and CdiUtil.bean(Identity).getWorkingParameter("passwordNotSavedAnd2FAPassed") != "true") or (CdiUtil.bean(Identity).getWorkingParameter("passwordScanFailed") == "true" and CdiUtil.bean(Identity).getWorkingParameter("passwordScanFailedAnd2FAPassed") != "true")):
+                module = self.authenticators[acr]
+                print module
+                page = module.getPageForStep(module.configAttrs, 2)
+                
+                print "Passwurd. getPageForStep %d is %s" % (2, page)                
+                return page
+            
+            if CdiUtil.bean(Identity).getWorkingParameter("passwordNotSaved") == "true" and CdiUtil.bean(Identity).getWorkingParameter("passwordNotSavedAnd2FAPassed") == "true":
+                return "/passwurd/savePwd.xhtml"
+            
+            elif CdiUtil.bean(Identity).getWorkingParameter("passwordNotSaved") is "true" or CdiUtil.bean(Identity).getWorkingParameter("passwordScanFailed") == "true":
+                return page
+            
+            else: 
+                return "/passwurd/enterPwd.xhtml"
+            
+        return "/passwurd/login.xhtml"
+
+    
+        
+    def getNextStep(self, configurationAttributes, requestParameters, step):
+        print "Passwurd. getNextStep called %d" % step
+        
+        if(step > 1):
+            print "Passwurd. Step > 1"
+            acr = ServerUtil.getFirstValue(requestParameters, "alternativeMethod")
+            if acr != None:
+                CdiUtil.bean(Identity).setWorkingParameter("ACR", acr)
+                return 2
+            
+        user = CdiUtil.bean(AuthenticationService).getAuthenticatedUser()
+        
+        if(CdiUtil.bean(Identity).getWorkingParameter("passwordSaved") == "false"):
+            print "passwordSaved"
+            return 2
+             
+        if user.getAttribute("userPassword") is not None and CdiUtil.bean(Identity).getWorkingParameter("passwordNotSavedAnd2FAPassed") == "true" :
+            return -1
+        
+        if CdiUtil.bean(Identity).getWorkingParameter("passwordScanFailedAnd2FAPassed") == "true":
+            return -1
+        
+        if CdiUtil.bean(Identity).getWorkingParameter("passwordNotSavedAnd2FAPassed") == "true" :
+            return 2
+        # reset step to the previous step count, when alternative 2fa method is tried
+        if CdiUtil.bean(Identity).getWorkingParameter("passwordScanFailed") == "true" and CdiUtil.bean(Identity).getWorkingParameter("passwordNotSavedAnd2FAPassed") is None:
+            return step
+        return -1
+
+    def logout(self, configurationAttributes, requestParameters):
+        return True
+
+    # Miscelaneous
+
+    def getLocalPrimaryKey(self):
+        entryManager = CdiUtil.bean(PersistenceEntryManager)
+        config = GluuConfiguration()
+        config = entryManager.find(config.getClass(), "ou=configuration,o=gluu")
+        #Pick (one) attribute where user id is stored (e.g. uid/mail)
+        uid_attr = config.getOxIDPAuthentication().get(0).getConfig().getPrimaryKey()
+        print "Passwurd. init. uid attribute is '%s'" % uid_attr
+        return uid_attr
+
+
+    def setError(self, msg):
+        facesMessages = CdiUtil.bean(FacesMessages)
+        facesMessages.setKeepMessages()
+        facesMessages.clear()
+        facesMessages.add(FacesMessage.SEVERITY_ERROR, msg)
+
+
+    def computeMethods(self, sndStepMethods, scriptsList):
+        snd_step_methods = [] if sndStepMethods == None else StringHelper.split(sndStepMethods.getValue2(), ",")        
+        methods = []
+        
+        for m in snd_step_methods:
+            for customScript in scriptsList:
+                if customScript.getName() == m and customScript.isEnabled():
+                    methods.append(m)
+
+        print "Passwurd. computeMethods. %s" % methods
+        return methods
+
+
+    def getConfigurationAttributes(self, acr, scriptsList):
+
+        configMap = HashMap()
+        for customScript in scriptsList:
+            if customScript.getName() == acr:
+                for prop in customScript.getConfigurationProperties():
+                    configMap.put(prop.getValue1(), SimpleCustomProperty(prop.getValue1(), prop.getValue2()))
+
+        print "Passwurd. getConfigurationAttributes. %d configuration properties were found for %s" % (configMap.size(), acr)
+        return configMap
+
+
+    def getAvailMethodsUser(self, user, skip=None):
+        methods = ArrayList()
+        for method in self.authenticators:
+            try:
+                module = self.authenticators[method]
+                if module.hasEnrollments(module.configAttrs, user) and (skip == None or skip != method):
+                    methods.add(method)
+            except:
+                print "Passwurd. getAvailMethodsUser. hasEnrollments call could not be issued for %s module" % method
+                print "Exception: ", sys.exc_info()[1]
+
+        print "Passwurd. getAvailMethodsUser %s" % methods.toString()
+        return methods
+
+
+    def simulateFirstStep(self, requestParameters, acr):
+        #To simulate 1st step, there is no need to call:
+        # getPageforstep (no need as user/pwd won't be shown again)
+        # isValidAuthenticationMethod (by restriction, it returns True)
+        # prepareForStep (by restriction, it returns True)
+        # getExtraParametersForStep (by restriction, it returns None)
+        print "Passwurd. simulateFirstStep. Calling authenticate (step 1) for %s module" % acr
+        if acr in self.authenticators:
+            module = self.authenticators[acr]
+            auth = module.authenticate(module.configAttrs, requestParameters, 1)
+            print "Passwurd. simulateFirstStep. returned value was %s" % auth
+            
+    def computePrevLoginsSettings(self, customProperty):
+        settings = None
+        if customProperty == None:
+            print "Passwurd. Previous logins feature is not configured. Set config property '%s' if desired" % self.PREV_LOGIN_SETTING
+        else:
+            try:
+                settings = json.loads(customProperty.getValue2())
+                if settings['enabled']:
+                	print "Passwurd. PrevLoginsSettings are %s" % settings
+                else:
+                    settings = None
+                    print "Passwurd. Previous logins feature is disabled"
+            except:
+                print "Passwurd. Unparsable config property '%s'" % self.PREV_LOGIN_SETTING
+            
+        return settings
+        
+    def getCookieValue(self):
+        ulist = []
+        coo =  None
+        httpRequest = ServerUtil.getRequestOrNull()
+        
+        if httpRequest != None:
+            for cookie in httpRequest.getCookies():
+                if cookie.getName() == self.prevLoginsSettings['cookieName']:
+                   coo = cookie
+        
+        if coo == None:
+            print "Passwurd. getCookie. No cookie found"
+        else:
+            print "Passwurd. getCookie. Found cookie"
+            forgetMs = self.prevLoginsSettings['forgetEntriesAfterMinutes'] * 60 * 1000
+            
+            try:
+                now = System.currentTimeMillis()
+                value = URLDecoder.decode(coo.getValue(), "utf-8")
+                # value is an array of objects with properties: uid, displayName, lastLogon
+                value = json.loads(value)
+                
+                for v in value:
+                    if now - v['lastLogon'] < forgetMs:
+                        ulist.append(v)        
+                # print "==========", ulist
+            except:
+                print "Passwurd. getCookie. Unparsable value, dropping cookie..."
+            
+        return ulist
+        
+
+    def findUid(self, uid, users):
+        
+        i = 0
+        idx = -1
+        for user in users:
+            if user['uid'] == uid:
+                idx = i
+                break
+            i+=1
+        return idx
+        
+            
+    def persistCookie(self, user):
+        try:
+            now = System.currentTimeMillis()
+            uid = user.getUserId()
+            dname = user.getAttribute("displayName")
+            
+            users = self.getCookieValue()
+            idx = self.findUid(uid, users)
+            
+            if idx >= 0:
+                u = users.pop(idx)
+            else:
+                u = { 'uid': uid, 'displayName': '' if dname == None else dname }
+            u['lastLogon'] = now
+            
+            # The most recent goes first :)
+            users.insert(0, u)
+            
+            excess = len(users) - self.prevLoginsSettings['maxListSize']            
+            if excess > 0:
+                print "Passwurd. persistCookie. Shortening list..."
+                users = users[:self.prevLoginsSettings['maxListSize']]
+            
+            value = json.dumps(users, separators=(',',':'))
+            value = URLEncoder.encode(value, "utf-8")
+            coo = Cookie(self.prevLoginsSettings['cookieName'], value)
+            coo.setSecure(True)
+            coo.setHttpOnly(True)
+            # One week
+            coo.setMaxAge(7 * 24 * 60 * 60)
+            
+            response = self.getHttpResponse()
+            if response != None:
+                print "Passwurd. persistCookie. Adding cookie to response"
+                response.addCookie(coo)
+        except:
+            print "Passwurd. persistCookie. Exception: ", sys.exc_info()[1]
+
+
+    def getHttpResponse(self):
+        try:
+            return FacesContext.getCurrentInstance().getExternalContext().getResponse()
+        except:
+            print "Passwurd. Error accessing HTTP response object: ", sys.exc_info()[1]
+            return None
+        
+    # invoking /authenticate endpoint of the GLUU PASSWURD API
+    def authenticatePassword (self, password):
+        print "Authenticating password: %s" % password
+        return random.choice([True, False])
+    
+    # invoking /enroll endpoint of the GLUU PASSWURD API
+    def enrollPassword (self, password):
+        print "Enroll password: %s" % password
+        return True #random.choice([True, False])
+    
+    def get2FAPrepareForStep (self, user, acr, requestParameters, step):
+        methods = ArrayList(self.getAvailMethodsUser(user, acr))
+        print "methods - %s" % methods
+        CdiUtil.bean(Identity).setWorkingParameter("methods", methods)
+        print "acr %s " % acr
+        if acr in self.authenticators:
+            module = self.authenticators[acr]
+            return module.prepareForStep(module.configAttrs, requestParameters, step)
+        else:
+            return False
+
+    def authenticate2FAStep(self, requestParameters, user, step):
+        alter = ServerUtil.getFirstValue(requestParameters, "alternativeMethod")
+        print "alter: %s" % alter
+        if alter != None:
+            #bypass the rest of this step if an alternative method was provided. Current step will be retried (see getNextStep)
+            self.simulateFirstStep(requestParameters, alter)
+            return True
+
+        session_attributes = CdiUtil.bean(Identity).getSessionId().getSessionAttributes()
+        acr = session_attributes.get("ACR")
+        #this working parameter is used in alternative.xhtml
+        CdiUtil.bean(Identity).setWorkingParameter("methods", self.getAvailMethodsUser(user, acr))
+
+        success = False
+        if acr in self.authenticators:
+            module = self.authenticators[acr]
+            success = module.authenticate(module.configAttrs, requestParameters, step)
+
+        if success:
+            print "Passwurd. authenticate. 2FA authentication was successful"
+            if self.prevLoginsSettings != None:
+                self.persistCookie(user)
+        else:
+            print "Passwurd. authenticate. 2FA authentication failed"
+            
+        return success
+    
+    def signUid(self, uid):
+        facesContext = CdiUtil.bean(FacesContext)
+        alias = "passwurd" # facesContext.getExternalContext().getRequest().getServerName()
+        print facesContext.getExternalContext().getRequest().getServerName()
+        print uid
+        signedUID = self.cryptoProvider.sign(uid,  alias, None, SignatureAlgorithm.RS256)
+        print "SignedUID - %s" % signedUID
+        return signedUID
+    
+    def getAccessTokenJansServer(self ):
+        
+        httpService = CdiUtil.bean(HttpService)
+        http_client = httpService.getHttpsClient()
+        http_client_params = http_client.getParams()
+
+        url = self.AS_ENDPOINT +"/jans-auth/restv1/token"
+        data = "grant_type=client_credentials&scope=https://api.gluu.org/auth/scopes/scan.passwurd&redirect_uri="+self.AS_REDIRECT_URI
+        print url
+        encodedString = base64.b64encode((self.AS_CLIENT_ID+":"+self.AS_CLIENT_SECRET).encode('utf-8'))
+        headers = {"Content-type" : "application/x-www-form-urlencoded", "Accept" : "application/json","Authorization": "Basic "+encodedString}
+        
+        try:
+            http_service_response = httpService.executePost(http_client, url, None, headers , data)
+                    
+            http_response = http_service_response.getHttpResponse()
+        except:
+            print "Jans Auth Server - getAccessToken", sys.exc_info()[1]
+            return None
+
+        try:
+            if not httpService.isResponseStastusCodeOk(http_response):
+                print "Passwurd. Jans-Auth getAccessToken. Get invalid response from server: ", str(http_response.getStatusLine().getStatusCode())
+                httpService.consume(http_response)
+                return None
+
+            response_bytes = httpService.getResponseContent(http_response)
+            response_string = httpService.convertEntityToString(response_bytes)
+            httpService.consume(http_response)
+        finally:
+           http_service_response.closeConnection()
+
+        if response_string == None:
+            print "Passwurd. getAccessToken. Got empty response from validation server"
+            return None
+        
+        response = json.loads(response_string)
+        print "Passwurd. response access token: "+ response["access_token"]
+        return response["access_token"]
+    
+    
+    def validateKeystrokes(self, username, k_username,k_pwd):
+        print "Passwurd. Attempting to validate keystrokes"
+
+        try: 
+            customer_sig = self.signUid(username)
+            print customer_sig
+            access_token = self.getAccessTokenJansServer()
+            print access_token
+            
+            data_org = {  "k_username": k_username,  "k_pwd": k_pwd,  "customer_sig": customer_sig }
+            
+            for key in ('k_username', 'k_pwd'):
+                data_org[key] = json.loads(data_org[key])
+    
+            
+            data_org['uid'] = username
+            data_org['customer_sig'] = customer_sig
+            # TODO: this has to be extracted from the SSA
+            data_org['org_id']="github:maduvena"
+            body = json.dumps(data_org)
+            print body
+            headers = {"Accept" : "application/json", "Authorization": "Bearer "+access_token}
+            endpointUrl = self.PASSWURD_API_URL +"/validate"
+            print endpointUrl
+            httpService = CdiUtil.bean(HttpService2)
+            httpClient =  httpService.getHttpsClient()
+            resultResponse = httpService.executePost(httpClient, endpointUrl, None, headers, body, ContentType.APPLICATION_JSON)
+            httpResponse = resultResponse.getHttpResponse()
+            httpResponseStatusCode = httpResponse.getStatusLine().getStatusCode()
+            print "Passwurd. validate keystrokes response status code: %s" % httpResponseStatusCode
+
+            if not httpService.isResponseStastusCodeOk(httpResponse):
+                print "Passwurd. Failed to validate"
+                httpService.consume(httpResponse)
+                return None
+
+            bytes = httpService.getResponseContent(httpResponse)
+            response = httpService.convertEntityToString(bytes)
+            response_data = json.loads(response)
+            print "Response data: %s" % response_data
+            
+            if(httpResponseStatusCode == 200):
+                if(response_data['status'] == 'Enrollment'):
+                    print "Enrollment"
+                    return -1
+                elif(response_data['status'] == 'Approved'):
+                    print "Approved"
+                    return -1
+                elif(response_data['status'] == 'Denied'):
+                    print "Denied"
+                    track_id = response_data['track_id']
+                    return track_id
+                print "Keystrokes validated successfully"
+            #wrong input    
+            elif(httpResponseStatusCode == 422):
+                # in this case the password text mismatched, hence we do not offer the 2FA option
+                return -2
+            elif(httpResponseStatusCode == 400):
+                print "Passwurd. in this case the password text mismatched, hence we do not offer the 2FA option"
+                return -2
+            else:
+                print "Failed to validate keystrokes, API returned error %s" % httpResponseStatusCode
+                return 0
+        except: 
+            print "Passwurd. Failed to execute /validate.", sys.exc_info()[1]
+            return 0
+            
+    
+    def notifyProfilePy(self, username, track_id):
+        
+        access_token = self.getAccessTokenJansServer()
+        print access_token
+        try:
+            
+            data_org = {  "uid": username,  "track_id": track_id }
+            
+            body = json.dumps(data_org)
+            headers = {"Accept" : "application/json", "Authorization": "Bearer "+access_token}
+            print body
+            endpointUrl = self.PASSWURD_API_URL +"/notify"
+            print endpointUrl
+            
+            
+            httpService = CdiUtil.bean(HttpService2)
+            httpClient =  httpService.getHttpsClient()
+            resultResponse = httpService.executePost(httpClient, endpointUrl, None, headers, body, ContentType.APPLICATION_JSON)
+            httpResponse = resultResponse.getHttpResponse()
+            httpResponseStatusCode = httpResponse.getStatusLine().getStatusCode()
+            print "Passwurd. Notify response status code: %s" % httpResponseStatusCode
+
+            if not httpService.isResponseStastusCodeOk(httpResponse):
+                print "Passwurd. Notify response invalid "
+                httpService.consume(httpResponse)
+                return None
+
+            bytes = httpService.getResponseContent(httpResponse)
+
+            response = httpService.convertEntityToString(bytes)
+            response_data = json.loads(response)
+            print response_data
+            #status = response_data['status']
+            #print status
+        except:
+            print "Passwurd. Failed to execute /notify.", sys.exc_info()[1]
+        # return true irrespective of the result
+        return True
+    
+    def registerScanClient(self, asBaseUrl, asRedirectUri, asSSA, customScript):
+        print "Passwurd. Attempting to register client"
+
+        redirect_str = "[\"%s\"]" % asRedirectUri
+        data_org = {'redirect_uris': json.loads(redirect_str),
+                    'software_statement': asSSA}
+        body = json.dumps(data_org)
+        print body
+        endpointUrl = asBaseUrl + "/jans-auth/restv1/register"
+        print endpointUrl 
+        headers = {"Accept" : "application/json"}
+
+        try:
+            httpService = CdiUtil.bean(HttpService2)
+            httpClient =  httpService.getHttpsClient()
+            resultResponse = httpService.executePost(httpClient, endpointUrl, None, headers, body, ContentType.APPLICATION_JSON)
+            httpResponse = resultResponse.getHttpResponse()
+            httpResponseStatusCode = httpResponse.getStatusLine().getStatusCode()
+            print "Passwurd. Get client registration response status code: %s" % httpResponseStatusCode
+
+            if not httpService.isResponseStastusCodeOk(httpResponse):
+                print "Passwurd. Scan. Get invalid registration"
+                httpService.consume(httpResponse)
+                return None
+
+            bytes = httpService.getResponseContent(httpResponse)
+
+            response = httpService.convertEntityToString(bytes)
+        except:
+            print "Passwurd. Failed to send client registration request: ", sys.exc_info()[1]
+            return None
+
+        response_data = json.loads(response)
+        client_id = response_data["client_id"]
+        client_secret = response_data["client_secret"]
+
+        print "Passwurd. Registered client: %s" % client_id
+
+        print "Passwurd. Attempting to store client credentials in script parameters"
+        try:
+            custScriptService = CdiUtil.bean(CustomScriptService)
+            customScript = custScriptService.getScriptByDisplayName(customScript.getName())
+            for conf in customScript.getConfigurationProperties():
+                print conf.getValue1()
+                if (StringHelper.equalsIgnoreCase(conf.getValue1(), "AS_CLIENT_ID")):
+                    conf.setValue2(client_id)
+                elif (StringHelper.equalsIgnoreCase(conf.getValue1(), "AS_CLIENT_SECRET")):
+                    conf.setValue2(client_secret)
+            custScriptService.update(customScript)    
+
+            print "Passwurd. Stored client credentials in script parameters"
+        except: 
+            print "Passwurd. Failed to store client credentials.", sys.exc_info()[1]
+            return None
+
+        return {'client_id' : client_id, 'client_secret' : client_secret}
+    
+    
diff --git a/oxAuth/Server/integrations/passwurd/README.md b/oxAuth/Server/integrations/passwurd/README.md
new file mode 100644
index 00000000..78bff52f
--- /dev/null
+++ b/oxAuth/Server/integrations/passwurd/README.md
@@ -0,0 +1,88 @@
+# Passwurd keystroke API Authentication
+
+## Overview
+
+This interception script allows administrators to deploy a keystroke authentication flow in Gluu Server. 
+
+In short the flow works as follows:
+
+### Usecase - Password not yet enrolled:
+- A form is shown where a username is prompted
+- The server recognizes that the user has not yet enrolled his password and therefore presents the user with the 2FA authentication page. Depending on the available credentials and configuration, the user may choose to present a different alternative credential.
+- Once the second factor is presented and validated successfully, the user's browser is redirected to the target application
+
+
+### Usecase - After password enrollment:
+- A form is shown where a username is prompted
+- Incase, a user has configured / enrolled a password, his password page is presented and the keystrokes of the entered password are validated against the Keystroke API.
+- Incase, the Keystroke API fails to recognize the user's keystrokes, a query is issued in the underlying database for credentials that potentially may be employed as a second factor
+- A form is shown where the user must present a certain credential in order to gain access. Depending on the available credentials and configuration, the user may choose to present a different alternative credential
+- Once the second factor is presented and validated successfully, the user's browser is redirected to the target application
+
+
+### Additionally, there are some features worth noting:
+
+- Configurable [authentication mechanisms for second factor](#authentication-mechanisms-for-second-factor)
+
+## Flow setup
+
+### Requirements
+
+- Ensure you have a running instance of Gluu Server 4.4
+- While not a requisite, usage of [Gluu Casa](https://casa.gluu.org) is highly recommended as part of your 2FA solution. Among others this app helps users to enroll their authentication credentials which is a key aspect for 2FA authentication to take place. 
+
+### Enable 2FA-related scripts
+
+1. Log in to oxTrust with admin credentials
+2. Visit `Configuration` > `Person Authentication Scripts`, click on `fido2` and ensure the script is flagged as enabled 
+3. If you want to support [Super Gluu](supergluu.md) as second factor too, enable the `super_gluu` script. Support for biometric authentication is available as well, for this purpose follow [these instructions](https://www.gluu.org/docs/gluu-server/authn-guide/BioID/) 
+
+### Add the Passwurd script
+
+1. Log in to oxTrust with admin credentials
+2. Visit `Configuration` > `Person Authentication Scripts`. At the bottom click on `Add custom script configuration` and fill values as follows:
+   - For `name` use a meaningful identifier, like `passwurd`
+   - In the `script` field use the contents of this [file](https://github.com/GluuFederation/oxAuth/raw/version_4.4.0/Server/integrations/passwurd/PasswurdAuthentication.py)
+   - Tick the `enabled` checkbox
+   - For the rest of fields, you can accept the defaults
+3. Click on `Add new property`. On the left type `snd_step_methods`, on the right use `fido2,super_gluu` or whatever suits your needs best. See [Authentication mechanisms for second factor](#authentication-mechanisms-for-second-factor) for more
+4. Configure the following properties
+
+|Name|Description|Sample value|
+|-|-|-|
+|`snd_step_methods`|Optional. It contains a comma-separated list of identifiers of authentication methods that will be part of the second step of the flow. Note order is relevant: a method appearing first is preferred (prompted) over one appearing further in the list|otp, twilio_sms, super_gluu|
+|`AS_ENDPOINT`|Jans server URL|`https://<your-host-name>`|
+|`PORTAL_JWKS`|JWKS used for signing SSA|`https://<portal-host-name>/jwks`|
+|`PASSWURD_KEY_A_PASSWORD`|PASSWURD_KEY_A_PASSWORD|`zxcvb`|
+|`PASSWURD_KEY_A_KEYSTORE`|PASSWURD_KEY_A_KEYSTORE|`/etc/certs/passwurdAKeystore.pcks12`|
+|`AS_CLIENT_ID`|THis should be populated after client creation|`abcdefghij`|
+|`AS_CLIENT_SECRET`|This should be populated after client creation in the initialization|`abcdefgh`|
+|`AS_REDIRECT_URI`|Jans server's redirect URI|`https://sample-hello-gateway-15pnmz0m.uc.gateway.dev`|
+|`AS_SSA`|SSA for client creation on Jans server. JWT signed using the JWKS URI|`eyJ0eXAiOiJKV1QiLCJhbGciOiJSUzI1NiIsImtpZCI6ImdsdXUtc2Nhbi1hcGkifQ.eyJpc3MiOiJodHRwczovL3BvcnRhbC5nbHV1Lm9yZyIsImlhdCI6IjE2NTUzMTkyNjgiLCJqdGkiOiJmN2I1OTkxYy00YzE4LTRjODEtYTY2NC1lNmY4NjcwZjVkNTEiLCJzb2Z0d2FyZV9pZCI6ImdsdXUtc2Nhbi1hcGkiLCJvcmdfaWQiOjEsInNvZnR3YXJlX3JvbGVzIjpbInBhc3N3dXJkIl0sImp3a3NfdXJpIjoiaHR0cHM6Ly9jbG91ZC1kZXYuZ2x1dS5jbG91ZC9wb3J0YWwvandrcyIsIm9yZ19zdGF0dXMiOiJhY3RpdmUiLCJhcHBsaWNhdGlvbl90eXBlIjoid2ViIiwiZ3JhbnRfdHlwZXMiOiJjbGllbnRfY3JlZGVudGlhbHMiLCJyZXNwb25zZV90eXBlcyI6InRva2VuIn0.CfFL4uI-K6jHkN7DB7YofjDgjH_9a5nWTVrC9eILBH72JTuLmbX_JfNYDXkTJlzCGdJGtRilCJuCPa1WCmTNSKu16d8UlpMoRfgFlND01pPOrFDtXitSktDUTMV7jNdhIt7lmRtMF0XjPFi13pf2ur1ZgDVodkokvmV4kebRfjv6RXQ3wCbP57L8eFL9C95WtGUJLefpi0i-88RFxv36XALMYhyq7OYLtCjv62Fh9j8jpcEmWCmQV8FKVNhvqrVyf3GGqoBCyRkQDJOGRCbL-5BAAylzlglvXkAZCM8lP5GovnmCPc_WQY2TK8AsWTMYIs_wWJJ9LAoXPk2CwtC6JKo9gxWsyDJCXnc4a_IkC_rOiWutVqQ_LmaAbjqHdL1KX6eVfmVDLXrIoS6ic4f3PbqlPPk7CIM2c9ydEV4lVi5rFGxlO_yBwS3ptJzMFW0i6rpxZMpHVe9I2F7leZqZhzf0D6ayLJBwpifQwgHps8CX5fFawWVESZgU2kgEq4MR_24ghqk24VC1scolWZdegYZClvZtFOkqcX9T_-9lpKswrGfr6lMEtzuNwfhteccZG6tihC6M-7fXnqMDjpA_ct43FjKFqV79OelLrEtjiZfx8-etfak7K2u-ebm8S_aO3g17dO2BUaQsulV_4uxeH1t3COGaJsyMKNagKkiJg6g`|
+|`PASSWURD_API_URL`|This is used to query keystroke endpoint|`https://cloud-dev.gluu.cloud/scan`|
+
+5. If `super_gluu` was listed in the previous step, click on `Add new property`. On the left type `supergluu_app_id`, on the right use `https://<your-gluu-host-name>/casa`. This is the URL (aka application ID) that Super Gluu enrollments are already (or will be) associated to.
+6. Scroll down and click on the `Update` button at the bottom of the page
+
+
+### Transfer script assets to your server
+
+Extract [this file](https://github.com/GluuFederation/oxAuth/raw/version_4.4.0/Server/integrations/passwurd/bundle.zip) to the root (ie. `/`) of your Gluu server. In a standard CE installation this means extraction should take place under `/opt/gluu-server`.
+
+The zip file contains UI pages (forms), associated javascript and CSS files, as well as miscellaneous python code required for the flow to run properly. When extracting use the `root` user. 
+
+
+## Authentication mechanisms for second factor
+
+In a 2fa authentication scenario you may want to offer a trusted/restricted set of authentication methods for use in the second step. A popular choice for this is FIDO. The passwordless flow offered by Gluu also supports [Super Gluu](supergluu.md) as well as Biometric authentication by [BioID](https://www.bioid.com/).
+
+Please note the `snd_step_methods` custom property of the passwurd interception script in oxTrust. It contains a comma-separated list of identifiers of authentication methods that will be part of the second step of the flow. Note order is relevant: a method appearing first is preferred (prompted) over one appearing further in the list. 
+
+## Test 
+
+Create one or more users for testing. These users should have already enrolled credentials belonging to one or more of the methods listed in `snd_step_methods` property of the script. For this purpose [Casa](https://casa.gluu.org) is a natural choice.
+
+In a testing RP (eg. web application) issue authentication requests such that the `acr_values` parameter is set to the name of the passwordless script. 
+
+!!! Note
+    Users without credentials belonging to any of the methods in `snd_step_methods` won't get past the first step of the flow.
diff --git a/oxAuth/Server/integrations/passwurd/bundle-bak.zip b/oxAuth/Server/integrations/passwurd/bundle-bak.zip
new file mode 100644
index 0000000000000000000000000000000000000000..dfa343323f7f9a2cc98e2e4964b4231a80b9721c
GIT binary patch
literal 474337
zcmbTdW3(vYjwZa%w(YZR+qP}nwr$(?*|u%lwr%4(U*DNK(>*gieW!j@)moK2YrRQT
z@+5gnP7(+h8Q}jvrge^${_W<!ouK|+4V-O^tc+=G?VM=k{*Qw2|6b74%Gvopkw*RB
zNLv^?Il2EQI@te59a}ejXD74&NtH<V->-t`|E6l_?C4}`{huI^{}&O=>Dg@l2?Gug
zTXCp#A2#jS{Z~Et7XSdqzXJ1*WzpC<*xDI8IGGzeTE|M-1k%BWyohb;%jnVg#g~(P
zh+TnzrUejtTDg<dY=DVDkx$L%{;VVgJB^a$k1`)`mnzDl##AQlJqk|z5xW)mNy<gq
zgaQiR<r85N#Zig;Y9|fw<T4fWg<)Fh5?YY9&c=KNz%W!v`!!4L?sVw}fZZaKhJ+`_
zO27#LdQQQ7<H+57cx7XS_O@|UTgAoI_g%_NEJa<qWp>g0wzR0c0pI|KwDFPJ!viQ9
zJY+V>K`VOGa(r-46AAV|-W|gK;2w(qqE+nlO^qG@X<Yz-|LA7ge+kFYQ2#%=sxMu%
z%^Vm2zzq@rfcswuGq!Ouc93&5qH!~GvbM@r*|0faf%kp}{D4z5`L)4EJR}o95QC)G
za#e692}EQoT$fiIKPZH#oKSB7{QUweF5aAI6<4jlipZYI7-}k_!D4_gQJ<oLj!)@E
z6)B-xznSKNAZ)!6awSftj5;+vGgCOSnFR9js((0%dZu@JJ@C=$()_{^ZBS-sx)#PN
zrHEtbFLE>az*^}E4m#1k3reeAWT+z?JSl|oSdky<Asq6kT@r~1Bip*?GPGR-(wu9k
z%INBwdU+boN-{DYmiD`>UqgQi#b=v3VNJEn24-0kl%R<wnF$ZE!<GeKf0VAR+Kjb6
zJY`PbphGB#G%W%$f1fzN#y!NfA9=JoCPyOstY@S-r}kK*MS(cKF7v>*dBV)@OQ$j+
zk|HG;pRM|_I3~Fi#tcQX67t7dE^{`WE91A#y|oZpya4rYl)`7Fl1ALy6jVv*>HamY
ztl&<veg&nyu4{|J-P5;7r~nHnc984`q2@mF%6dKJ+w)%xL#*(u>%iIUKquT9#}C_#
z-2OooVE1Nr-%%lmO(Y=#)=8E1{wO1&JU4>W9E@9`R6#5}rTxHC&`%z)&OXq@ydjU3
zHTs8NNOd^1$gkkfq+!N$Nhsh6Nw5Y5$S8}SLGGeA?z<V4dE5<c^SXeVcMTF+L0yK#
z``ReT`ILsPXE%yv5{PKZhD~2n+x7m|jHaIB-cM#_7153`Wf<sjh>qfOHs9@C7Zs}`
zHE|rGm2)cc8H%N<58IOpRORjTuE?AG<r_hL84KZSkMwm`o_=T^rEwX2nbQ6}E`t*L
zz=^&6fh=j*xQYSkyo8hqdtx3Iq7%6R0D5Ql0c(rZ>RwjO1Gl`1a*>jpw`RL?T<Ik&
zHwvw8t$h~>N=$KC4r1<n6VOH|Xaqj3MlW7d-kQ`-G#i<)b4DJ0)hY3(mf!*Y?Ey8l
z=mIX_TL!g=Ya0~yCNd<~<-ASV3OW%lIYp%N(zOB$1UyJ|*_56#jyAaf#5D=D(excY
z*GkY8&*&-^B3q8<?W4`j)5yWFPDl&0v$MxZzz%I9PX;qJ9+AmqpH!vEWNiddG=vv%
zQJ~!J0-Y{fwDPy_7)C`-N<DLaO{BF8vw5q$LJ4Z9r(U?->O-^S*j8PKNy98n8MqGe
ztj+D&xW7xU+w!cQ1K-XJ-g@PoQlVfTtKu}se@Q1|?age|#ED^AKGO>lsx|8onK9`p
zLUC@i(o4X{p6+{P)Y|nxtTHu%A}wz;<oaVQ;bmTfN>fr~tmjukjv=)MHI`{jC6aTw
zJK#kiMrb62^+QkHfUHl@W?mTWx7%U9e>;)WX2Gq>B70{<#lClACSuUfIbRrYHLB*B
z<KxP9ow$TniUNjK9Y2F(`l&`c9Qeoe038b7h=i6H`>W_8b?g<!2yxu?(dct=S+{rP
zL|;F|Sb-%$$MEuvn?(i>tLk~d4W{u$dBP8Dask}apaTKiEcn;?KD%r%kI9VVURln3
zXO54+UHjZnC!+oU{rAB7k8~62nMs-t3IKqF_+L*q{|K!A77(p$P0elo5x~0CG;KFn
zkbPwQze5$9{ERCTvLsoVBpHg%B3$6C{fy8<h{(*sQ_@aZ66z6wzi&807nz$ExTnOd
z;<;9CwA?NWC9pz-RZu0&<PYs~i`zI{5UVBz@JcV%YhJzthWoBRUTy+EgiOmG?uTOV
zIklXEOs;l9iu1daBk`z+ZpbO`pw9w=xsEiR4#yZ5s~|E=jmMdIT>w$)xx^yX4s|*%
zG!<pz;D2IJLorsU3^L|mt5O42{^Z}Kr^gzeJP}qn^*d4vlt7)OCZtN;FZdvh@u1ub
zJUATrsliL?n871tUx49Shq*rzk1Y5hV}lqDH3s{Mdf_|3vQNyuCk%ZmoF;LS*5ERt
zR8)woi;}C3-^7rxRutwLa;*`O7!trmY84V!t#FD)Xu=I7kqei@@)1)}Slj>{*Rjf~
z`+(IM!No0YZ%YZNkzX-ui9kb&KWlss@d!z6<LeH+csL4{q}lF@MmpyBtYlA(=}-dO
z%Rzq0SJf(!Sr3Wh_`~LFUGt|;;u$ikeQx5lHW<DU)(NGJfhh2G%A6$g_`PEbnb}Fg
zzH%stZOmISbO^IcMF^-nh94EB$`y;8i2bJSR6|vUh}7lkhl1G&t%ncmasu7tPkyfO
z$>h>63!~o?uyNxMJ^ldl5uC(}$9lL-p-zV^CVSEkSQ8OxU5Ke;CQ8XVi9?p8;eP16
zw(@VIimtITqrhAOF86J`5XNVW1O$2Iqy`(kVI76D5WDxKsBW}PxYNmH%&r8yq+K@w
zPbmgcLlXCAnCa2h;<yDS{(UJDe5f{MFor)smio{IikB!)KuhTz&JpFEyq_S^=TAJq
zmq?Cpf~rg+nY@EzXio7Jci#Zo4j6wBFIpmSbv12LYP@nxj3Sa6Qc7>^nB$Vh8fCJO
z8R>?7p;GL>G0R*4iWi$T^~kAK^oe6bpJ8yfd&i~W_}UOQOMY;_^)h{iRN1um<_ERm
zIedRASnRw5xt^51!k9LpP1Omc=(mWHG=?p!tRH5>mkmCZS?S?n;z~WFb<*scq+le)
z<K|d6XHK<tmN2Tp5SAD`bsXw0I*3JfPlvL%MfPSW^7etSQO5a|Y+xu{Gq6s?SZtZN
zssc!cVKb%R1x}<YOgz_itrFgLY4>caoQbeXZI#<dNx97h);CvC(GdG5^^a;}(ctg}
zOo2qkZ{V1{Evx5ykSk5WjYV7^n)1zOn`GpsDp$8b!2uy)Tdk9)Jd!`%5_OE9>g`oI
zE!j~a&Xb&{MKCub1=GI0Tb~0K98AF~Ujb%Su2&Tg#W&iwY(%G+y(R-W&gbk*KD+X^
zU$1r1eHNB-m)UzN1OoB{+f7D@QWIPu;G9AsS0jI#>cgWK1Wh2!A1r2-;5rn#@1*tf
zfRTHG-PA-`yUUPVIp{p0z9C02akBS%-Yeo<p=;{6>dkr+RpGskR=EkOd@orX)fdfh
zcf}5=g)%5glb~zo^i>>ZK|by8Ac7QHOM_+n#wBOFrW;cLfByngwTHEefiY~ajy?|r
zK<`I&{PG+>yBiot9o-6B0+l!Tb^SY)tOU4-bL$kROM_xzd<&)^M2L-RRGO*cZaJ|S
zLKj|(L;#;FPE!me#$uBX6@?9c4t#9Bu@piqSgf+p^iVJ6W8ed_Aq!mVPqFKEK%ud*
zp1CI;zGd7;6cA)Tr~AWdbVV3lvH$3SBME{GmdK{KC|7zlNfk0+6X&gB&ItM;Qd(26
zP&a6wySxgMS72M1pB0v}3vS=V1wXWO8pql4^U^91fy&R2hag*H=Mj^>65)dH0KC^n
z1Y<>!LdgL+RzJ$-WBb^R^Kdke;=uWH2N+Nf-UR6u4xpb|Glniz-rQH~bPR0<T%0!>
zX_QG2`$`kW6Ul|v<2TZMb#%W;BYXNT{@HWgoF9H8(yiG1ZCmg_Y*2rVI-KsA#Aei_
z3a8Ab%oSgRJnvSKZ_^gF<Bl!!a&L^SP&lsTLr18f<nlCgT_~Y@0Sw*q?|AOh*#L!`
zIVp!`mP97kz9*x4b<a>bOb70C9tb7b&}l11Ua=v+3Q;31?dM@5<8Z^m%!sp7<WP*y
zl<1QL)6;YeUu`ha7y7l+`z;v@OJuk5SG;4()LWNdzkiS4-Fd)Tx7FwP>F<;+&2LXn
zNpluFDXz^?&ICfGB$NB3_m<A1u~7**Jk4hPz_Bx=%YQ~!@m8B&Bvhr-8Vz6HLRmQ8
zvcgu>`mD$HlenJtJxtz!7Um-8bkkk*!SS`e{j(DIN8)pRjrhIxm%Lm4tyu;Cb@Kji
ziI3XJ*xJrY-^utN8L;Uuh2Q*3;kN<aLc;?Hs4XNqx`|a>V2WhoO2jk^w+gNZiRBTk
zBb3A~nlgKTw(*<VD-Vdg%dCkyv2xPc8L=$h4xegNFM4Wr_{=GPt@wW4es7@w6GeP;
zwM7)HT&&!##9rj?3=m`uXegSu9!V%52;2HV;P3`~$;xSHj>s=ITd(E>NubTWx0qds
zp~V>U61fN<n6N<6;PPsCENn=KHF)@$+S}XDVT*b)!bSe(!TS<$OI*hBGQ21ILyk0=
zfso_-E1P0U#OMvA$o1Ek@GV0uYgW^2@Ia9^hzjfE--tTFK!Y*$>DJu13F*>i<u+NY
zzaCJ8q6xxGy}E7<0<TR|2)mSBnpW(Y#Hc`N4J4M_xGgims9DX>yhl#x;{dExP^1K(
zsL-d9R!&%YnxZPrOvBEJ<by`6|HI_f09nmpQ@_1rWiVD>^~B#3)L67m*I{8LqZ1_+
zFrhgsRS6jL2at?euq@YSQEV~_hI?sQM^STI82uA;A>eGy$t?0%WyUR7LP&FeIR|Ev
zWT~@R&*}Vi@mbkW(uwgzxUh^ecPAbO1sux6m*GbF9IfZ;nx>t9!9!H0|G^GNMJt50
z#IcpoM*y5Gn;wP&%+NI;Jwd+?V5Dc<T)LP$K+0cfd59VcG{_6_*6q<!AFh{7ejJl3
zef=XD^C2$bCw<jel(7&qn*m8b$Jq4Z2d|ll+7<F<!2jSwiG6!|ooZ5f9X$nsABjY)
zAL@1WYO=E2Fs)~E26*DisN7v%<^+SaDX#<Fp|AOi0Hrf7NK+*pU4crz<fBT%S(+F$
z1DzOi;yoLSkTAqok3I-3L;1^N-K@|Fn&#5S+DZnTho!evKS;75<5xmymEl2s82+8J
zkX_jhwK|%p8&BQgjTv<0+h^vS_H`$zRiL~cox)h(Uc@<|wMSe3K|}oMb<W`QgIi#M
z(Ji+Z#pj%$9j`mQPa3JiX8}$@hQzBEMLwcT-=D~a!^_XhoK%zvwxQq5h&Rq`oK?JY
zmhH=B5gtpLy-Eg7vJIPGumBm`s2a=+gk4~lZ6Dl5co`<0{Pr`TTVOj94h3L6wTcPb
z@rfS}w1wTBTTU3#8l25<LdKk8Ak43J#31oe7V{};`F`gb`_17tgWuX|)QsI{d(7D%
z`ys!D?!83Y140BAun$i@kibN_Hop$`Z73kzFvd!V)YRFm#`d)Yml7V@LY8R@B&mmf
z=f(>$UA8(}>}>z>X;Y)4Xx!#(VFy*5mufm(tRo6AK)V~^+_k&y?Q`KTg1BWKXbS!H
zM=tpfIACTBazim?qIbp5{sO*Ien8HoslAyKk1A3}8pX{Sooh7iL`krM`S-82GI-8B
zhCrC^ajvTp&~g&$t)Eo|XxYKl&z^)Ro>+(mYD0%yz})O`4P!0Eu|dts9n9JReapUi
z1d1*go{39N9bMd)abp9J@+otGz|stH=v-qNrI(~TXj!`sDEYwv<D0`RCZHEyS&H$a
zZUtE498fx%lh=Cb@z5N;Z!Cs#+whu`nMDQH^IAkW<(z&B#m&&^YUK-qAR{ozcHgDV
z)aX9ARsp8y50~FTPqO(P5Pe6Qo0=kz3|Lh-sMd=Z*cIlR*-;(%u<ysaHk}*&58prt
zBa%N5!GXTN{(Z@?Q64YB3<3bK4+{Xm^{+=xM|~ILe|9~ZRIUFO4e;NWfM0M_n!PM^
z;&lmnVTNF49VioiHop>V2jphw#|#L<F~!yC13q7{$>kFch{OV@=?o$|IeA_-GdoLP
zxe(pSkyo^k4_Rg)n~KVokGR0k+n+B4bw{1)IN8}DY!tIiAHO={Q8G!h^SqyH3g^dl
zDu}{@f^_QlXTnIR0-zhuhZanWuz_LR)9GO(F-yZx_(_&KZ#S!V__zi6KdBPjVKauL
z7#j?8Sh3D$;-AvjYKXtwMkulc^4$j;<9x{TjSzWWGRdB$M<rp7xQV&wDS~H%Mvk>?
zy$5SUUORgidbJwCU1(V}#oVAFX#J3>L?4MY2T)cpW*cH%+cYYAhKF%=>tJ4q70Xc>
zo}1#)f4qCZIllftA4j3ZlQ9|8f72=vxtE0}#Q&n&%Y{sOt{ScC*5l}cvqKP*D@Z^n
z4VeL+;Z`{?f!(g-h5AaLsh^y2-_xyF=4XP136~F%i)IxSDyBkhaurgsv`wzt52+;H
zNGMfUw;Up`TQ3yG<d`~)8<g7469L%+qH&OeG`~+yDNu8*RO6YSP0wgC7*C&UosX7>
zpr1n^XT>L907_^8O2Fd86^ZtlWW`Q_wh4bb5hkd(53rl0JQ5Zo7gMMgTqk46;4Ht3
zSR6U7J~W+i`|L%s)Q49g+V=2A)nI)$e#in(Hw?*VCF%1`6J4*X666ru5fzLquBs}J
zMd61iF{GGXAIeQtosPu!fl%Y|0ve9g!i{%8;i#M24?ICQOh+>=ro~Ulqh>gPB^Elf
z2G!L>1wjO;Gp&tV&&0;cYf?voPecIkn(ueQt@M%7iYFo=g0hM3N1b+zGC8s87whNR
zED=JMA1=%!?lSqkT=b$<T+nUiFIDpA(F(y1EXz&jL=fs{+^>Gua<EH3%{fHiaSWAl
zLJ5ty@_3~UrFCNSDKe@G?*hvlW>wmDXl3Rk45dNbK$XVCJEzg!-5fqQM)$P`nC_F7
z;FSZk4gitnVN0ZLMkg25bI3Qkcp|Z?1yCD^%M3t_+#BA&2*rI=9l^J(@%lr517x(E
z2al3{;M&osBhEb9f_kp;PdRvIHGy+PYMhc4-*q-~NA#csnlvpn@l3i<)U(Js0fuv1
zXQG0F-VM&}og4V_Dg)nlz`;0hp6nrwrO$!A)oJhR_GfKzp!_=f#*A!Mz-r@rPBZvA
z`K(MFYcwgRMX~>^OyOLwnxiVbR<RbsC$gV1Hd1gP!st!vju@4lMA}?5lJuewR6#B3
z<kn^sWJ%MZ7^NC#F3BQp3SjoTh@L<;*H^e4HD%sHw=JpiT(|b%-HQp0^!ghUu`7(|
zDPaj{$rIu)Vda>$qZ<C741aZ>wVaW}x=izfvopCetaCm514`Kn7L3$vtFwmsAcF6V
zd#W6+I9BXiIE0tlEL0;-3*!#opD;&x$hqi>wHqnXv!cDcr`jy;15L)c+hB@ZS0tnJ
zjYn%6qAT4OxsV!0wCjxx-CLsoI$o-|_r{IRiy6^C@EF(fa?3e()i!&ai*b8fX6Z^H
z(Bm#Ufoyne2|cK4BY$gpMWDEst#WSGwI?TJm*0O5aI0daSmT6jCEc*?M>FL)oK-?%
z(gKeY5ENEcbrS4XG}jwgfV7}>ecuw+4LG-&9v}>NNhZ)i>R=ilEEukjBmdYDUXAyj
zbz{iC8i?&l(r*EYd?J+OSOI^O4#O&mZo<~0(LebWvJyb({yH)b!5K1m*y36TiHYg%
z>tW@s4dD&l?rE3_+-dlqi0uD5f1&&@hGR!3eJ69ne==eK0KosyW2gJqfc`hlakIG}
z=7$ha0PY|J0Ga;>G!t7JCu)6HV@F$SV`^p^dIlPL8htA(8tcFPCJV>OF3VW#mE@AQ
zE?;3aT<Ee)gc$G0NG_r1P;C&@xJwH@7+BB%d9h#x4lCRQhQx7-x#!Pk^_z$5#B_qA
z^Kuc{DZYL7c>Dc&TFaV?j^*zu-_Ipq^zVaPSKFOVT%Q+N))rgc9cbT|>tho$#c@T<
z?l<$-ot{YCnh)CpJCC35&<$GOhfGn^KL=Nq+(+k2_7BI;x~-?Irn+~TH;)lBKi_U2
z$IlacYYlrpuRS3gQ?h2FS#RezH6gyQ9ToV}XJfaQS1qi%u(aRbJ=!@x!krhaKYOY>
zU$4h*Kj&AOGd-^hro6+NwmUtZ&YeG(Ev_p!AqQu<-}i@DxINxK*MDB$rdn8cx;z{o
zu1tG8-oO9g+HCu<elAq7?sR|s(fxUUI4Fbbal4mH_5OH%y?dI<e6inqJ3ES{{dUmm
z;g!k7)%`r9_1HK&I~jRAe!pINS-IKi{&>j!c}%4(F`Mhy@y12teY<_UzN)YdeLGwD
z^QY(SvVm4s_BsbgwmLT_x6|kSZOh61G*S2K{QWz&hkNI>io?CV?fZG9=lgPgXC_An
z)0JD>_v313dnj17#%5=yv(5eGLRVLIq$Bg<h4l+U_WK4-(dp(m_h+wThS&3MY3Jw4
zRQL03CRXOF#kHn8dcx;H-RTGS=MMMh8uxp`_hV$|E7$j9iMR80<CSrGo5!1J8gtT>
z^~Trh<yiG$0R55ijMn$<6H4Ug_$(WA@2`n_zQ1yRKHIttD7xJW0?(emWKS|TeA<7W
zZZFQRHh4FGMsZ`Wxw<^Q><Yi#-k)y1hF@fz?^{w!U}<@HbG%;nW#7*}A0Iw@w0k~s
z?7On3S#7(0eczvIxJm!o{qg%x&BM*l@g1(N1*YxK?Rn^l#c<-n!iVN`&-W8M$sKO@
z+YRf;#~B<e@0QQ^UgX)<R0}T-Ywix*%H825YF3WV>-*=&&a?jelDP+p(+}&&3ePL;
zN{y}0&*F$Kj{V-kLgE3f?EX=YciO$Dhu01N+~Cj3#Q~h}_rsa(_6z^#`|H<$)|U6(
zpPTLOk4;Pbujf}IU?0!VKR<`Z+PvNm2XCJhqCoasIAMZ72$pB|wl%mdS2<W8D1ZI&
z6YA^npu5xcwRgPrk=y-#_QYyC(^8r1c<aZ?&yxEisX9FH=SC;{uc#+e5*oqBk?ZGQ
z^Brte;2K<c`+Oa~8nnA3S^K(vO}!n{>U!M`B|abv-nFdoSH|LkTXV5<zuj&;EOe+9
zt?1_F;Pm)9VCr;XO#3eE82Z?`&z!XL*l_*0JsgFS!r8vvt3D*2uKjiU&)xTpugA-|
zH}CfZnr==H&)4@^Xph%j>UMNTj~7nhyV-H0PR^$H-I3_SZy_f%%7>1N4fNwbBQ?HX
z`wy=N4SCk+Gp@2fkLsBxxZiILv^~|%p7RPm_fIzm@12`o&xZ|Y<}`{J5><-q!^Red
z<%%(Z-cp*MwKC3=#I0U73k)^`ESHKn7IUIl*(DCF*T(Cy$gWN5e=b^2Ubk1wpX4KV
zLer7j8{W)xOQ@%5h_`De?XwiPoTc0sQ07YMr{=JlNQx%a6gH7~qwhWtW1}=%xNV{%
z6Jk?1mh^E_nW`-};ZIWNiJyo#T1wHZM<Z?24<MA`j>wq3MK)IQi_C)CvmfFL<mX(u
zc~;DSKhYyM<vrbSW74OTh@`gat?iTftcqy(`Yxc)><s&ee&!WwYGZ5DbhqF28fKlk
zFo`3@8;XURJ^A4LLH{&d6k0-GB<_AO<F?k^_gjm=H8>w%-H*pAVzQ=v@R~H_(or3>
zgN-WVk!dSQb8u!6Vc<Eq9|FT)ImjZF_Kiwym{CkO>{lFHz+v<)Qg28+=59}Dsnnt2
z345{X_T5^XFYlX}+dbuBY#tQG)uDw>GU0vSE^y@MnTtSgG9wp#Xyl@Fl$t^GO|BX?
z|5AHaXZ&+eC?Kj{6DyM9KmBk*6R`fA_FitTd7$?Id<aJ?A*CB_xnk;0DLCP=r4!oT
z?Dm}i+SD+#8ythQK%t>WU8<Q8h9#{Y=yHIUfiV@ikQqWZ)S1k$SYRI8fwl!qT=iax
zt8<w4ayo_O&2fysJthz-GMFj+Rfoe|6A12MsAbWas3Q{@MqugT3Nv5LdVTIJH`vSm
zbzWEkLSHncsKfkLk>cDvF1c`O^Hj;p?h339LTp`0hM<c@{az(~p&T>RJ$xSS9$|^*
zZS`KtB&f=Y+oXmlZmDiN?qTY5NkPI#dvIK&$Vr&5VuCANm<pE*qT9|Blew{>+J`C{
z-VxiTqRwJpRql*1fHUZ$tQe&fWp+*}l&$sXh;RjJPu(Z<>^QGvVxLq*4D)u*cfs@C
z8qR#hqrr4aPrq+2j)Wl88Ix=uEpB;IcUe&Q%9g=_RHNCH7FbASx!Jhv1FyxX(x=A!
zyMsoH*?VG%0ub_?i{VRm$S1)~{I(wXZ-Zj=ByW(xW~xSqgBBrNnLbc`((3oh+QOWZ
ztk+;xZmRT_POMsL;i}YTI#ZRp;JgUJ4pqM#SctVsOQc4txe?RZz`*Qa#4>oJS)a0s
zp+PxQ+CHbW7w&lkrG&n4gpx7J;K=)4Q<{Taj!JB2pK?JiXXJwDyPHa&|0UI~nm|Rm
zY@|M?$j+d$&Mwv+!q!UcORUH1>n%Z*1}ZbE@$I5?mVjf;5oI$yXdvW%lr9od+x=Z7
z6~Tb@(m2h&64s#d)2v*&)MNTd5oIP%eyOM|`|kF+x<5*l!Dys;cUX5|r*EhC$JPgJ
zkIwmLTBU2e^B9JF=FPB~CeqiCz?Mznlm00%1k>v+{q;ah*xr2rU8#wPhijwL@>8Ht
z<+AN(T|ch^A}N(Y30&wM%1n%@lt<`yO<_vRAsUw6WWv#%AkvctH~KPO)mLXEgW-9L
z;7hO%p2I3pg<)yn+i=9^twsS;2;cp=m_{KLMGaRYT)6KX0i@q3Ehcs(z**LyNX4p+
zSNM(jeafqzx435<(Mtccqaj{V*<pHa#p{=iPEv>3WCpgHDoe`*K`fpbnR<aLB?Vie
zN)Zi9L$V0`V8#YlWnaRIaFoYf*rK$CjQT;ysbwW{v@4aoy*VY|J|90`=6Yo@T8(+Z
zl9`|rEiCgbKRe~V+*RVFI@Nq?15?<nMS!n`+MtM2#bajiT+gm>Vi>WE`a2l0*v(x1
z+<c9NNkfp5Z)OIeNn$avSgV*aVqt?<JaT*`KV~5-Kd<pJrlv}eYOT1C%t1l`XrKqa
zw=KfZ+ZJXk6}PFj8r{6C3U@Sl%4Nf1x{zGkgdgws>-lr?;_b%WQs%)`2kv$^RN&J_
z9B4ie7ggrbJ7<b?lx#G6JgCcQbm1xUpq&?O6w*!~tT6C=q=607vjH%{ZW5=yaqC%>
znBWcenLwNiSE6`?rE6|=&WZe%McBt_&#7FNU?LGsYsNRIV)fuV>I`I=4#vtkJroTU
zOSBB(QhRSA#_EzsZ|RcuoU5o&iH4sFLvcrEPJqplqr7nAmH|&jY4Sz@?qq4{vVc>h
z+O5Dy(RGZ+E$WO-!WH5b1~$OlFavz-Dp93*!21T#MtM@CHc<!kG87TL3K1ZOW@C~~
zv_%&QNjF+_4=P+%cli=@Y$G1h9m_0Gc#&D1ih-SvkFkT08cH8l#1L|%JrC8wyKqK^
zTL)Wfn5?Dw{HsMlxy;0InCeJSL{*Xc&ZIVm`lyt&db~4|l@4K~9kM)1Rh0C8kvJt1
zKVG_unpS)qTBKxDh>&eQdx3;+<Xjk{>Z%|#p-?lS{Ltyr#&UW-lRzEoYV5LmNV|-|
zj=tv*7B$$X8|v@njD*AR-!9PrNz{-P27)O10ET<!`5qzaD3x04vFTOEwun1=M-LEV
zBp6Z}H~E0QP!A^l1T;I9;SqCT2WD$jCYWYMAUct=LiM9o8u~nzzFzmYH%yuw3t_^I
z;st}WrNfkr5p+;x0jqOyq1AG;81TQ!`13J5<*Zurf{U6899W2){8t%_I1L)bnHT1}
zQuq<Nj*(Cx94RDc;<@6Jv6|~k<i<sjn28p%lfRewB|-H`029R$1L*Re34k5Z>o7D1
z#}fgPjt5`!L9SQmeJ@yE7p%#S516?1C&pryIG3D89lKD8gCu7D*e3e$OqyZubVG1^
z=;E-MYM9zj!^Z_OExDu=uw2p~&oFm}_lSOd?Fny^L4h%YD<a7wv`BQHe^jIeach!W
z77%<*(+;>yP|~=b>Q08L)eZB9423kpJ*k~YOul;{>T*ivCP5;1Qop|U?*RFZ%&c{J
zd`wNH>Q>0Ud}*j&2KE!CdPMlhd}xD5S4@z{3r3Xiq>2XW&Ue42qFH#SSa>R<t~zeX
z9B53(WdNsrZ!TU=1lx>kO?7NsJcvq@PcWB^n>fF^SEfCsPeu}8<AtdlG|h6INz4SG
zRimgQR@e*nXgk}L_n8Rz4|mZU%~5!y!R{M+V^DE~=11iG0-DV@G!;1ywz{>r_^9O@
zZ5MbSCmS%SaA8tv(4&`=uO@<6AM1iWLc+KLR)nPYBQIT|{xz%D5ys0c)x119zcahI
zYuHu?z?yE+q0(2vjN%c94khXWC>}4MJ)5{Lk{H1>iHE_abOi+)Z7JdperKSJb<DdA
zvPXMdH8Cj1T4zXIW}i>VBk~}?DVJDe2Vy&@u0#(458#X<$iFuKih5TW;eh&BgGOv$
zwJH6um`e(1s^DUTgq3(KHcTK_9~HRbt{KPnc4~u$3R7twTzokr7z{-$XPsHM29_Q~
zHhSKj5e7r~W!y3s?<E&!%?})z<nwg3@56`|sv40PMmv<r)0r}?Vx+Kr#4Q|2#8z2z
zLnz`!KT}zcDx@@EA<R$Z=x=R9c1G{r4GV`a5`l6L(@dW4|Bl~R+7SsZO!8@Q#Xys7
z+!_W~;R>??$%0}_X<-Q6rQ&Cz<QRz9@w#CVGMUA32@Z{gg|yuQvLkU`Vu>+V@aM1)
zwX#5*$rxs54h69+p&|{tsCGuo>9}IIYat_!Afh@%PtZnn3~Ev+yjI$>Ovj1Gh`io0
zvDet`V7ZngVA770rEAASnM)G6l$N{_b9Z8}CMsTNjHC&0Ko`(8wMNB~jfR|s;!qL>
zG0E5UmH{zXd>PbQFKBj?tKf=t?3aD}O}D4B4@$=C$HLS_th%jwcVGUd9SVqV#mpf{
zWj)FuWSq9LQl^o9<e`G#T2nUS6m^4CVk=%wJnZ1bc)LHJV!yPOFp`3Zu$Z_c(h%`j
zVdpM;ofs76a6rtHdX92Z5JTY_$OrAj_-hzNMC0ggRP^&GuaZd85@yga2fR0xh9zgW
z^k%bp*{q&xuq`Hyeb9M|Q0(y%n7(7U{f191WA*`66)?_bE&W_j0Y=ngh3ih|+cDwE
ziVB5*W=y!5+PKAIQbpFmM0xd0K1YZM{FQBe*8*s6%mIuKGKV=<aASHEb?6-O)f6gt
zU1Pz7^=>zvQDAa#GUm+~zi0l})afhnSzn~eQDgXBWWCXN1jqoA0l&zMp;4mNB3*fv
zJ+foR#A-}a&f!po#yo&&Tck1DupSBt3NalSJCWv^Fk+J!ubD!ZAY-I6FDpi0)n3}V
zyTNa_Z!#clL3koW>ag&vp>*LN`_{~+zwLWr<76cK(h-YMR7#5LI7B3+Wsw(R%mvg5
zVCnniAweb?#I=}IHDl#@uFB9>lL32@9W52Rg28^sOf+rM(bD|}c};^-)iYnl<8z8c
zqR>^HKkUe*cqg+e0;j#F_YIvxR8<C`m?Q{%@if2KfyoEk%`mkQ$^|eoi0%^2M8QYD
z)aN>f-IZ?g4%C4ACYhEK+UHEjGwijB$H7#=pS9(Mn4~1<_7EbirByUh$=?bf($Om}
z2Pt^!tQcyRVPI2I{U5rANA5pGPclOT%r{YC5}-@aZ`?kp+B&Z)!38K@LivGAgidaD
zKndRm*}dGnYY_!+AQ!~4WQjs;@b$+La2c)Q8wLi{y*CXmwtsrL!E83w)O}V5MnYF2
zk>Q2OrVR;s=w#Ine&=AlI`&18(LPY|2dnWNsD)k!qQk40_bvp_*z{FkG6v=TYVpIa
z(x2}nE3h$7_SkE%Vj=lCH<=)8J)X!QZk6<HHFM2#xAw(p!Ts#T-pbh(!=-iItmm)h
zs_r*9xJylypqWDN!xvk`zB{@ys7C^u9T6XX?u%^zLYz0dscB10lx>gc;ssK$?v0or
zQ&--k-itt{-Ny^}Cp=UAJ8?1x7n#IAgU!52*2p8quG+GbtTB~NFL7v+6q{OQ=krgW
zVR$>(@h_|K4dikQv=TqlXq2K*kHwcTij3SJcL)NBlq2BG|NE7s9HZU)r1dAM%|$F5
zIuT;-Ag-OOY$9i|A`#0?QdReBhc#NU0aLR*xqsLhxH-M6(f_b*UHe|-HgvlDj`i@0
zjqR$}`Lg?35QVZV!>FKeTcr^2#L1$joe3COG-^+jB+l0iUjA*eL}f#oNOH=4I;|R!
zZbxboUBiCJI%%`gE|xHrNsEbgw#YBofwj{oE)RgYJyU=Y2MuGHrxG5VzIqQk0d?IZ
zUbCs!BhC@D4-o-YjToH((q~YyI7)y!6f*|TrK;F6<{Qn8c^@ZOrdzPLl*NTfie!xP
zlU#P-X3ej5N!4`B!o$N8%`kAd8k^4>j6-khdTw1kQwYcY4Syg>Dy(Sf-6q+ZbqF`=
zno!;LV>hBabF`{6j{TCm|Lxo*>@J>A4#mZ&QEr?CXP-2m4TEn|n3|9qQN+M=uey?&
z)1vl}kGh9vNuOgcD?GR<`x%O6&z}PETWBlBJT-$5<CxzZQ*X+sb9N*;9U=sIB7Uje
z%H^zvY%b^+ihd|sxji~={B--77j?7a;q)%GRm&&@t>9T3ue1C6_IYXqKJ@y~jFLlt
zxx7O21k2nXp^wumtd0`#xMn}kZD?x|+C46J7g4l=jpIr#ihpO?T3_E=Ibi-F1Z!5l
z_6}V~9c|{ZWzdGe1#hfs7@2&q0Zt$ke635>D$_v+N@LDNPY_->$>;M90bkbM#GUQl
zCNO_5_vh9lg`f^3cgsZc9p{V+me`peX`C&C{FD?P%Jpth*dlMVgDjz0fPY_1;YS7I
zeBxah--0)AU5<45t2cjUX|?6{1bxc%cb`?#H<x5S-fEXW6hxaD=(eFix|tiKy5c4L
zbgv@#EQON5EmD|}I2#_NNKID^l<c~VybNW_nUiHmD*&KcI7#@fQIEcQl*ViytKEb|
zRk9n&b`Y;i7n_h(^0>c0wmRBof<=2ik^u~p3QH^@X50yS)>A_)fiH7mgC3%|mWdZ3
zMg?Lj*7+|ZQuc;NvR^Kkb;)Us7tJH3qkwys%|En;8)H))qh1oJv_G9;Id?Kt0szSq
zslHnvIHO<!Qnvjwc)vr<dK<Mb&S$AURDB8UVrr3_1tmG>pfJ)~L)3Ywy6`=i7q10d
zb%>F?dIXr~x8OQl8a9a|L4jl^W#n9=H7zP55i6&4yPd6F+y;r?&%V6|c#uGdKkPlw
zm`fGiahlJbXg?Xow^MAzd>Gn*`3Q#yDpr^e*iRaI44O4RToGNIZ%KKF;>5f&YAlWI
zK2%+25KA{zn1l`JL73-QJ}7#$q16?WILMqes!_^j0(rOQ>z~}{B%T{%xOGB3yUOYq
zE?#dr?FR;53vjCxk~Lf@Ms1J4qKq3?r1GndiikI9@IfnGb-Bedj?~e?pO{L0;Gr;?
zv;#xDPIT4cIB-8{*VIlFymBE0K*OV~;k{1<W6>wFg#?okL-reCVX=)meE?%uRrmc0
z(*^<xOJRXq@>GNsyS@*H5_Se~5WPw=w}OTH|9mjz%dWk#wG1k=PCD#aVo_4^i8}GO
z0h@6aBCH|yqoe#0khLZ>>FN}tkLHV<@6<t4_w#Z(xAPOCzgy~r(zR$(Qx`Gte@w1h
zDB73BC!lPRd3mmiata|lt0ap`lXaytmoh0?nBe2?hf(EEIc<VzHcee?9R+NXJ;Rjt
zi<N2Wnqs>q*{1<DA56TjI<|Yj#rFXJ`y4LbE?swVFK?2_ur+qjN=+Gs_+V9#8vC~1
zto=8|mw*#|A16CbD<U>^)PvrY3#r(U$B9<|fI96oegBf-iz_QS*RV+QO8ZEK3RmOO
zz786d9952msEw-5uL=Bp?tHy5*)ILE@C6sq*C&d=+}LhV;Zco1If#jI*pUllOU-I9
z-zVZ2bhb+}7J418XhGM$>(Oql%QzaLp3A`0TsY^QNJ1oW2HRvL8?d!7M^6CV@E1*>
zv9~3TY1kO(7Kj1hexP{n{I;c2{a+omn+r_@eP@0c)`9*Y&b5?YyH<ckvy&yDyAX;`
zcKfv<9Xbb;WvTg@_O2DOTYa3)JmBWi3i+n?V|wx4x9_i5uNx3_E?gBV%>yS4`4mN1
zMsVjayv=I9j29zq-D?jKJvK*-2zAMc2=Wz6+Dyc7pV}NiNU7KZ#FKwq(L@G@372&<
z!YVkCF#*M6I{R|J)YmTL*IP?wp^+^l3>2P5mn}j4s7pl3s3)9Ha}%!5y7jTAG55Kv
zvsFGm)76Kvn5BpPMn6Gxi|TGOGVTy&UdL^PM-A|^J4PIA9n#3KXo_~i0)JbTXJ;L0
z3~S(guB~(hW|9wbSkUQa-?}<}0<Feu5m8>K@t~vLI}?1~%=oMvo_fov+>8DR(klbY
zw!FsNRHQQQkcm{i49;Mn_XC=FU#12|z}8cq+5>@!t2&17ju^s_<Q}eu{l1j!Q_Fht
zQ<X{%#&a0)r9<jp*JFX5s&J2y)hq$IGVl9a)DoctNZMU+XtN0+CeKliK~QogLqu9m
z$>F???Y7yr&b>Ij-P@9liT8;J7NRyp8_@m!tYgL#!QtRHh?M7nG>q}v)LGP?;Jo_4
z6;3Y}2eFhUDa#tJKz6UYOGf9ik{*_32vdhzn_n7KeAB__?>Hefh~>1$K_FC=ky5a_
z&7c!>o(<*co14egk8lV=G<6!;m_xt}6nvFb4UY%pdtoZFzO?^D5B>F!uLz(Q-TJ68
zUk&|zd4ZB*J_TJV`ui-T5yVT$orxdWplxo1H^!}2-QeSwE;9Ip7F*FllL7fy@3~XW
z0g`E41}s!=Rs3in1PN=ARiE=lk5^)rp23E1QapI2DRvYAiq*YF3|`uWgF2kS2_{w2
zu(eS2XkpuZ*JImU+Em8ft`t53=4;S&D?O;OT$s#_Dx63XfnC4;K4YdSsFfP+fuer@
zu3dfd3KM~r3Nv9^f%T7S&mq+JG5}aU%^{9%g0S@&Jv%X*o*DC_^%(+e%JuSFu?9n^
zwnV<)lFj#xP0Npj+5!h43*<EvS3z2NEl7P`FwRi3AsN=^$Ztx!*4V?jo<x-osb%|V
zH^O4`lMr1~VlSxh;Wld*UIC&;=X1ZDdYYCJNp?4e@&m0{4}M=n2BxH@4U03H4VVdm
z6a`r@7dSCHIzt^WH_vWuy37!e*;5ZcEzDkZ&p4(4+C;nk{kMH=fFi~CSjBL}iO>~3
zc*$tXSuOyxy%c<{HpImN@NqU_dr7oK=1<|gHGrdvFG_xL?MN2IN~Rh!%Hd(LU-MUS
z<C(TQUEWVusk$vsrg~|%&=jgdXX5FB3ggbzvim=8;t@afyNa?jru$hxUfhtPxjB<R
z<&loDUE>o^LM~R=Er=8E;``;KjJuF`qYGZkevR)$WJ)fAjbt7Acf}RK&tc?hIg_dp
z(Ir>m^}6eSWIg*A+%^)cxD;P|xZ)ppPDtrj=4z$2@NCF6y>SX1Mw=@HzDFG~Qb!7q
za#UT$1n_9p1TCYEURX~aDmGqlJ-18@(<%K)vOXaye({krP)FLn)jHp*z=759dG}dA
z5n{-?Rim!1Qmk0_uf*jXl`s9_0<`>r@NL=kTTOR(s!o~5g5YMFY<1+f-+S7&OCRSB
z!x|^a4{{}&`39sdeP-i2D?EM;r%v6{cr>vS#J}W(;*PV5aX^mfd#@Z9oV(rgdxj7s
zC4F<+Cj%X?L%bW64wvCs42l=kGt)*dOV^{oxq_pGZ0(AJ7G>VO*=O%dITOtk729(v
z#HllL+Ys_I_SdH(d_XNpPrGj&U6=ae4o3!e*5Svkw5K;4Miou8;YQ2s$cv_H;TSZ=
zmM1C)>9vydBD4}mcfSfnnN^3xrd^q}4Bvst<9FE&W3mMW1{(1ndoo>TBtiYNr@^UI
z<a@aq=^|AiLlE360@xhKCAVq!i}XltrIqUXK0wmrNgrqj%xu$6ZkMW~q;fTzPp;K8
z80Gh#<V=0RmPg_~AddzoDk_jMh}}?<jY^an-Wr8yVAA8SNqg*1eEr(+^ImcLBs5;+
zMns)P^vkF_iQ!aDLam=bPyXx@N97t_HChJw2X4JYpBnE*&mHGQlSAKaDIc?lAR`r!
zokB`Ni3><fOfYgi5fvzG@TLf47|Sk}+DcM^zyCnQ#6=?h%D6taO`zRBWZ2?mcSZy4
zM~?+}8C>T6n5<cdM}^8_U;~mD_p=0HZD+i3XTP<&&=Bi2gsq*-=N(%|*qbpJ-|`f?
z4_Y)%7mqO30RB58CPl2(-P-a>02PoqCRj&HxQx=s>?>7K`Xs;|HmRN$84<^=?v*y7
z^nPYWQPT8B9|Wts)|gYZt;v7~kuYS7)$<=KTOE~LwQ@H)C{&3Dfp$xLF=M4v5CSLB
zFi6>87p#*Q*9fX!LqQbnI|FT<op+?V7G7)>ze`L(`E<C9vt+nr(BVxvg}qc}WKOZ-
zoM>~=hvf!>Q*nuliI9gea4Xu2qYYlC`SAH=PkH5eW}k@?OP+R8`OB)+FYqpF%s`0=
zV3psDGt}M#2?O@|e#MH>n%lHvl7nNktvrs^MgS;hZ%X0y)?j1f@xhYGh_la3Tk)Ow
zwuJgokpw6f#b&>vo&r@a<qLYo{24O&nq;dZo$5jJAYn{^*-gi&!;&JYpMxC`Fp?xH
z$9h9AdQVGT9T<?CG6)knL3|G!KZH#MfR)C8LqJ~}^Od3)+#qaSG&$_tj{TO68^9ES
z<8QGEYh<*svG#4;nLvbpV@fUz2V55n+LjiZ=)C#G(JGk^(;+#HV{)`4!5<pw@4eJ(
z!(w~X$VWF5u@kNtdOe%X<abB|4QA7xB|d}5CvQ)GubKh)j_1OXc^Z;aaP|ui89=>_
zQv+gY{@3DjfUYqk(zy3k_(!$gk^kJys;CTiW<!1+<CMdzxUDjtX&;q#%Gv&Sa=&2r
z&|JFSg+`psG7RGVAdJ0+WU_x5Leo$jl__3G8VCI4ubErC2wzlF{2J3Jz9fHx;{l~>
z*tBDVtGu{=yt3BOqOy>m0!`;@y&WCWQ8o(E`YGvd_O<xkO9Mmz7z<F`6m&am`*n`E
zea{~yk2xUp``{D=)agU!DFOS0jkro*ys7apc`~>~bsz{dtI9k9H6dBzS`yeDJzot9
z_heMc&K5aZ_s9MlqCXw}LXHHL2XpA(AaW2SEU-EpCT|*df-XPf0c!e~O@C)FBXUWQ
z_jG?e#L5N@@%zE}sH>Y8nkAUe?AiQkp6TLYIBsvN3}Y(jD9A>_;>$3dJDif;ZX<x&
z=;9K0fzb%P<@cM6vb=(7Pw(l{*#`AXj)kl_Qaif3VBM%1l*bpR*gYY|9F~KsAHh`A
z0PxEK6B5z3R|Pv3<^`KQXOP_<zG6=<TyZfd^luP6oK-AKP0x^#$oNY|ZlqdJOJjIC
zM?FMmUr{h}A{mgGQrwBdYH7+X@@^Ly9OM9~YJl%081)=E#~jqAxyKQio;TZINcd&M
z7P{{{g1GG;Uqf++H(qRaw!EGp4xc%Ju(+-o5E)22WgXaPiWK6(Q=&Msvx-4AP(05I
zfa1IB%NKi(0bD!Zi5PfisZ3`f*~aZ^rX-NWkDtaoav2d5;U4KHzpoq|T7Qlf@7?Lk
zm~sus{}^6cHv>$H<(WKRkPRD%!Y7&Q+HvaMI`G3$$^<p$D-X_-=sWCfFVbI}?F-o$
z`W97ji=5pzI~M2xBiP9kPve5U?F#R921Tn86%-NY2H2Ji81jqG72R}1KSR(;!VUD!
zi6d5JQ-3H=<*}|-&^9n}F&pMG!$A`+o-}ZZ`i-uQQOs-4Nkw9NB5lK00JriU={tUt
zoGK^8o%<1vjkP<<hOXt1Yl;N(eqx{4D7MQUw|)NpU@r#tE}n<fVz)x9g(QXWE11X3
z|0%Q~1<^$9W|yYY+Z(yNKiKqb&+6={*van+oj7>BIf*p(dU}3Ny#FNvyrho&)foaQ
zo&<VGG}^D9c_X0+DWWsUFDPa6{ZoX?hOL6Ki}Zym`F_O0`H`n8uxs>LvwBlrj*`H8
z$mY(#Ldm&ySs9nVKKaD*$FVYJ+ku3VKgU(Rz<MhRIWx;KfZyHuCj+jx*|lx+<pf!)
z*Ck7|ICJo)<sFBOtI0_x51|sL%5l<BLn2YlV&6V>8M-S!C?ozcl}1YizuH2owUF0X
ztP2|SSR3QRkfYrckZkPt>l>A`3nSB2(W2rV?tHO=YFiT-vghZm2kCVsh|{w}EDx@C
z5*X%*Sxzq3b85S&Qx)ro_;yh;(`$g0g0kJH-84v5BAt+;pnswDadu;|)8mZ=t&N#Q
z-!3eHEd4Uz=$S7YpBM_9j~79z&+FekA0sTg8JAH(8{^;leUuNDc|w5tgL-nL!d%60
zs~Cb3$}Kr7JP>Htn}u?t+Lb+5ZN0^cXApu&VxdBL+6ph}@~E6<4E|L0oakU+`a)hp
zQ_0?lI+wq;hR=4B)7z2S@7s8$$2?RyqUqlD>9|aYFK2t1V=hJTY^lUA4#dnC3l2<<
z5P9d15qUs@YS^;07#Gn1LLtQpKi;moH>&!~q)>r4y#`@GF_C@6@d+!#vze<@%<foE
zPX{cIYGOU9h7%j781r?$uoNBe{5-GcZDf_s*j+mY{2B9^l-+-sMg%m#xb#YAf`E#m
zK*BkDIlV(?6eK-ilZBe4qGJOI6F`b;zaL}&K<xL)wJENuy6VR!os?Ay6o{yj{qQ%%
zt+n|te{Ah8iH_~&O64Q^9!>kR7F3B80SpInpuNnu^+m!RGD1v97nQAi{a7B3_qZI&
z9O8ZYGP&fX2OT+Gd)HNWxQj0i%UP`^wVmLg3JiaR*^SR~oEksG^IQ*R$jqZ7i=%=n
zq(0C;J@V0!1i~oZr`@TUz0FjgD1H_zl1{B_gQA;QSGUOkycR}O$yFv_EeoKTs%-dy
z1y?xt(B)V+hbxHy$!4Tu+W^Mw2kZh|7`U`x`91CLB`zGku46IYV>EIy`klvKFCuU5
zL=cp6N+kj25AOnDS$y3zT$O4&*De>LZPCTYh*9+eU=@FSg5^mNt;43Rqh{007qGA)
zsH_wiF!7(ch*e`>CvxVEsRYXBT=5N<Nl$x(?j7_o_{y?)F17sn2J70S){icwq)n_n
z*2c`X<teX?R{?XJZ8ajS8Zp!KWF8JGw~PjuI<A+4y!NA5#tInG)%K6x7gVrU0l+4@
zw9)wqScN58)tgMTyec$>s%R+ifODAp%ZLO-e(alDg8McOuly>_H8&uxD}^A5m;kT?
zapgXTynL(`Mbq@hr-E26D;(<(txVtiNYB@l)}90Q_n$zusAkF<2G9%?9e-pHkrXIU
z5kUlPFEd1#KSRu%ss%Wj5hf&HzfwN(s#(CEV_3JVsCBeR_Ms@@_}-E=jlhJ6Mp?I;
z9pr;&SpV+GmVudIW#_hMZ0}Hazo>onb}GtJ$;*P3WA%SOoTl1}lZdgy`;^S^m@V*p
zD#!jrNqq?VvGTmSMbd-kJQwYJJP+$sz_KzKhInCzKcvBDx-CwXDRZI7_lo?yeJ&)W
zbezi4wgg<Ne1tS_#og<eSlq%tmWP=k>~=1S5F~TIRsc-`tR|i>RiB*4^XT-gLl$46
zY-bA_Y*NQ&U>)D^evAZXIdL2@xgJfut}>K2b(N}1iI*RKA|5%k1X(-e%DvaFXJM!y
z3A4IDDwQO_X2kpd075{$zv2<VGDi#Ot?bpSzjW$ECgz9NC}2u>Jc<5}Y?!lhVucv2
z-4DLpYQfTy3iM=?b3?=PGA*(~7W{xp-aS-oL5q?~JcDa7s<G2@Cti3`?#qq{#a9H*
zRz7Ho9@QRUqYPNHwps0R)4ZQFm0;!*VTx)1O5V)jxx683MG%vn%A&<~Cl-0O{LG-e
zvGQd@vl>ND94Q@Czo2^({>cM)iW;LO*R5P4$9<Siqq>?4R?9a_9(!+bv-bi!%_S}b
z!AMHf!w+n?72b1}QoKX#rVa8SAKCD`S}v-66H8Sf{Yo*Tv`bjHUyd+0$@OWuYK9#0
zyFv&}pk7Vz8UOD_rljtu7Pc&CI8EzEtVIgeh)GDkgA-FxA<35s@Mthx1j)Pix9_i2
zzUh<d9F)XxLQy@}qHdMnDf&VYtkPk8WG;~;CU`<UkEEi*cR##nGrsROUln?(lw2OM
z4gTyXz8#oJsBQuro|Ob706rN4RP&g@f9(#Sr5;ShJM!U0UK@Go?TnL(^yRBseU2{P
z{`C6w&HHz+{_qi&q^zXMH5hl9m2K!{0^CQK7=25L34)OzAf$`jGXX3dm-Z~LNCDW5
zopfS!0$&0-&Q4Au=)DvES*2WVBIdPP2NfePRu;1rrdXlR8YMJ$=*QJG!qBU`m|Wg>
zSn@@2k$;vLi1Myx#hzwkiU5idB2gSqDL=TT)OJ-y8>#-5?2N=!?1xE+!}cV-Rtc+y
zx@ts^#Q6%`epoJ2wOwd2VQizqrzN@5yMw_jcleNbM)El9RGH!dYA%mjG@P4V+|A`=
zaF?C41E@B(lhe9pU9J_no?Ww0Xo`~}Kkcf-gjPwG1LllB+r@DvQnO&%>sjzh3Qaw4
zH7hEL6uFd5B%IW|%s{&o!dr2x$W#cgv&s_G9%^4@a0{DYZ~=UBHTsGuNszfZBimnk
z5$@2W?0w>gs}1eq(jAQ@d-0FIKVRS8zPkQ&z4nq0xKk8vAq#BmMNUX$wMG!5a|M`B
z6Hg3HINAynp!*mZ>s203RBW=%&9lMO<IKdG!D87F0b+z%h>uv36*UiD>u~4pdmB|H
z7R4Xy4#S#^EH{**`t@<}yoQ(&s$iHcMp6%k001Gup_huS;30(_4D~`Qir@@!5>#9-
z4MAZY(*N;W6)gS4ky9?g{G=H5T?<B5@cqnJs+3gkLc*N;nc!5i5@)J@NSX)B&jM~4
z$99ZlB{VeFSu2Cei%E!9AFh-!#FOI6fot|6sV77vXn_ux5yEmMBDUGt#r$aTdO4bP
zE)KF_@2T5I>I6=h+61l@SAA4$p;HnuvCO1Hi{YMudMPG%V9Z+^vPC5xuoL@3b=|O*
zDXdF-c0IJJrsoXiSV{3mBDkVZs5}88M%48R&z0BkETYqjB9>pDHM<p9Zxwo_p9K}6
znWkp^zoVgKat6l)!$FH(@`}A$Gg}SiSC9-P_`~bE*bQi6c>nf?cQ@a?`sYtvdo>*w
zV@gr*vltmtZdD*dY+Cuo^(51xUDa6xz3}7J<sQZ3rJ)sZ(6cMls*5L~FI-QFKPl4j
z0pg42#G7VvX@diq=WJ(m5tT^2>KEzJRQs#zl~CuakwUs16JgjdlcJ)iboDM+#?3!}
z9F$tAQlhF=3He)8sN^!Ul;lyfRT`9}?<-6@S+LIlTq}RhwlxXkI916PPl!@!lPjg0
zNUR_ft2i{t@G3RajukkYm#Wj<*M20MO!yLk6D0(4kM(zF>3lfspX>v2DFehw7P5`-
z{{n2iy9rnG<|PS$Dqb<Ao*gQgE0l%kbvN^9_fk;R6eee;T^Z{um;*JzT^r4Yw3SwT
z&#KrwsHo|7c4l4ZF1uGAF5%6#<-?H|xFZ-ui-8dkN*ibkiUaO6oY-gwdb7T9&ZmpK
z5TiSrX%u1bc0jduHN*oil<@xTC#kK;73K-qDvMfyIgRJ`T=72rHSpJbUT|0yY*-|)
z4o?U!(Pa}9EA_aZ;5R1+=kem`?@*HodrL<QHv90nla{_1kgD?78y0IStz47*9z1zO
z=U)mzTA$}NbaGAkiLv<bT6vBMGFk5Uq-k-vEcFxBg6<IgCuOPLafIvIOEAMeJM?~9
z9TVwR1=0Rtb82M|!FQ!AWLn3v&E4b!Yd(@hD2ro(pHu274sIPglK+9{Hu1F%CeU@8
z<2ioA7*uOHmWoeU&l3+CX~u$D<Hz47B#Pg|nS(2bZnN};(Zoeazk*QD9ml8Iy|DED
z%;D0$Tb{`R>zz0@Cn4#oW}8@?J020Ep@CR?*!nU`T;6l>`iSr_iBZw9LUZ_gQGZ9O
zC)%P}0Q@fYl&*a+NVJC-G(6UHxMZGOF%IaQRxjpVeBC;b(PJE87Yb{V2Se<nmrVFW
zP^fpTEIpg)?vA=-(3dYIq*A6{^^tH03$I(?_h<X{Lr+>+hx<nj{T<T5c+KVILvL62
zkvn;|-r{!U@$~2Dy~Lnnk>3x%&_~A8J`eXpHuTXPTmgz%@i+@bDS;beb-mLi=M68@
zO!aEIS`U<LVQ^f!)tN;GJ5Fo?!P6;HiGQ22;==dD+)mW9omN-s?O>B$d!4Mv_2KC3
zE20%AAuP_F|G*=ztVM>dYxXfbVjrDr>83D&R5feaZbu9fg1%^-1>dO1U;<Vv2UxHy
zS3uX`+j*1@5h(E6&~2DRm#URdgX|au=dWC|QRWx}7DIgpE?MPQyDGByD>*#K?GurZ
z`skw<_>*+H{0ck{uxvJ&r!Jo`!a^yHkx}Z#5Gt$V!7Ed<n}SAX`AzBZOEDOEsg54K
zwDgA9ri_>N7~DuV<ouAc?wp-ho8?wmPwM5%vdpKZv@*G~+8v){nE|BXid@dPxGFnY
zB%`a-Zoq2)K07&>de>8CTH>uIWgW@ca}xAbyoNIn5l$e{6vYJN)?54QbSu=o@K$w1
z&CUPH=H8hE)l->1cck_Hzdg3{o{)y4x!nHOk&gz)tP(Cq6X1)+Wr;7yhCSa4=;1+h
zqdlFGQ+9DqPA2vbs1yHm`-w4Sk9G7#MO8vspF_A!Yi8$&uFXgp-(X7MFz0q1M6qBr
zUJ^2ay~RL_71;B&FUpc!80Y)axs9wjRnHk!N=_BYwh374R)`YX{7cudOcxa_@|SN8
z?y&$Estv!O9DesT+p}#fV9Z$@t5J<UlSDc%x_PE@++K9cOkK@*KLA1%Q45=YhgKB9
zjW%R~on66;Sk^jng+eYHc?i3BVmv!JKxBvE=Gdn&PlfvJ8`;BIRn|0>&4(*hokUh7
zN2}Y)TgtscNdm*D5Iov;X|n!yw9>R)t6pwfhyLY!SQ&kG{JYB2)-GQ?Up9yaFHh0J
zos%qt9Oj?)7!oE{3`zQ}s+qdTpdGy{+YvdZTN-VJx@UD`CI~C4(P3VhhD8YQg7dba
zU<1l+T0tAydlHN`Q6OPcUl*KK6hTsLs$eCkGwTkn1Dgg2?G9kKf=QrKN4#MsyrS~1
zs2YvrR{X3BzJwwaE%DHh5sUT#+SNSeT&XHvyc|p~g~PY&D(b42N-mPL8#^<!L&T-B
zR@sTDa%BN&(vv1iKq@hLnPv(FG*(T#I|g;lxD_|TA{tWuIH+o+nt;rD+&)`(fZ<p+
zE<t`OWbRF0f}qS&ybks7GLfVer^=Nw?DkELt&oBcQ<Ce*!&27a(TJSnU&@CjM!i`y
zAwkfhIyT8sRXr`yjihxWWEWXsN(f(IawOEM#$?qLs`dN$sA(s{Dm&gzRa|1qv##Iu
zsQb38VSUTPxZ-SG&v@eGH_|eb#FxUNN2}gd>WL11$=Y~{iu=l?0f$9~he)3R9_-YX
zk#Cwe=KWgZJHznxWsb6HDeKX}(Ru74&9pW|#)6f&vGWtQ-K?4kGtsLGV#zTF<7gF#
z5l?9(u&t}TLXc*qKxNT5=!H_TL*9wcZ45j1YEuI$#eI!2A}U8^-=wI#Gzy`1b5G)v
zxP%SG<t*z_e=EtON==_BJC)c>qT%1#O+PEEU-elf-jhQeE5IQsiiMReMAS^)cY|9G
zs_J$JW7Eb;svwqh{h|rg%Jxy%#wy$dODlM^f`VfKrp2Qxpn{@u<V9?|IH=t4iJ}^-
z2~UE9q=2N)`I3jVP*+pD7>(QcV)SS=h#F`>1NNqQVTtxIGkQ!TAsO3Z#^GFd`2{M;
zFL7S{kU*ruPcC*li<_uYpcb}V+VW2%@!55!xT~r-_CJ1Ch5F25o&Git$t->GMs^cu
zCZ<vJA#btbyh*8Bb-i8$#!?mmUyik?qFL}4mEMcNR@L$QuO5u42s-)r8rh&>{oxUo
zOM<16uv3Zvqr1pXaHd_!sQc1+reZ+UeW5_#CaJc_B#VBn@<i_dbuqAankuDYUI{D8
zI?}2e?aY+Xfy%PTgVAtpX(dS7HgOYV!Jx?TF8;g9p4!lK@;VrcvRaqe^d!M|99H&Z
zIZRoU06pVi|K|G5x5xGCA3mzWpTBLFD*VFPs%ZWU&UXIS;cSEX`Ii{BieF2J0P&o3
zh0i(2EUcR?6x$8IR_h+?&%U{S|NeY4zPWk-F{XSgv`Jn#(RQ|q5%arJK31zxY5`&3
zo$MPkZq=z>BvMzYF_g(x0(YbKE~tu?oq`%^Wg#e(hXPuoQ2o1D3z1L0bcVVQN<tQj
zh6)@Qu?>I2M!Y11e6<}tBiexmWim1v!Ez_Au1;y&kYS5H6{z0SfZzd(*;)Krp5=x_
z^3p7>6sV;w5{efI1}0f9m0oIVYdG^1g4wKDD6B!SMe!YgyM^pg)fH|7+1#>h(V<HN
zb3_1TA!P+iQZd?i8=mq-5Ga+X+f)ZxE=l6T8|+mlaXV}(JWsje9RZYG>N{)jq<)Gm
zX52T*QeYfM#Yssi)iVcG_-%`i8y_S{N|Y+ts&Wt{{ApdS#f3=<EPR2b%bS|K<6{$-
zRj`b*{p<#_Ac-rZY9`*Lv{<TisO%&>4Y78bP+!m#3x!5VXLS~++yV{dMZ4AD3fU~M
zL)-}qB->f}o4c5<0!FOFQ0rYMbf@C=3?Vbqa0tpVRKwv`v9N2!A@{+bW?-9I9F#4D
zF<zLQ&_YDC>%-AV^87;SXbq9n`Bnu7S{d&wZxY45h;>LHty($a>KYf6O$Xw||3H50
z56WUL;7(L~amT_Dhf(;2EeK-a#S96RNEEHXymGAELSbi#Jo35#7p<$!6Ge^+_~;Fw
zwu*jwnXl?mWn5MKT`Q6-SD7Ua5sB5V8hwy7A6{g@M5^W(I@PYlzDzDg9}6K}Bp=JN
zQe?`&8>9X@k_jVDh8Avh0NmtFZ@hY4x|U2{VwSol-qIYeRxzdGRBpt0p)9O8inNUD
zRn*=>3ij_Vm*S})X!fJfS)f=1ZKcqtCjO!v{m@DT3fLK&9Xq-iRw<s-D@svyGKjj8
z`zDPfyXH0ZR#wWYW<(IBa*<6yt%SnKov?E>RaXZW@>i$7Ca${GKPIZ5#!bcQ2<dG}
zwy;#I3|1?8L~G>BU<(z2RH-bHwM2ILe7yvP^D_3|YLIXWT3f{;S_@H7wMzOxjL@#I
zyijn(@URsegRKHtn!scvAyw9VvvR&U@Q+%wkzgiG2vqh;G(~_#4Th9U(G}_JiTu14
z`o`{3@c!~>2t>3}P-Ux!#z5>Wh^1oXY*ao+^9kWn2yd=zmmqh#w1JWO!CF8adQib7
zME7xtY9G&nyF0NLkUA9aQ(*u(2$@@C9YK}!M>L6@nOvyD1|Y0zPeD5pS|%?!QFUmm
zY*{2|-Ez1>RR-BqDPk;LN2@UBAcPeS#b2(ZqbVz%AjP5<{0^6IUm`{*#Ymzm9*G!0
zpGQi`UXf$AJS(#z(=)z@2Cb=Dhh(x!)+;kQEWi~of0ItUd!su1|3SfmZ&-M-%~_Jz
zEo=`L0!Zq{Dypp*KZJi(eYZ-^B$RMe0cjF)5HH5pgTRqRBF#KepLt_X6$*Uj?OC>W
zK;Sc#kXN{`v6HG)>O|~ZI2CpmJFsW6hFIFCmW%Sv#kv(thZdWx%0^8{td=H&pQBh!
zQoymPSw`HCozV7^CBbUbZ?Gnb4lFP#Jgq4sEuM=ZmX*h{BBLmZK=Fs5s|8|OvpQSx
zCcyE<!W*<1<G5qs*d3W+I;l8;GU3ONe}zP5wsi<%-=uKfoUY#-Hy;<e`NkVaD4S11
za5#`o397BjbRVt2y=E(Ms#2=!07~lcxss$R-tl<A;hmQU>J9acZa5Ubp==3oB)K^S
z`=Sg1Wv4#80OF(w`~Ez&biYYx!3n<mp!N(zpp^#T$#G2rbC&mY-S61b^TX@S0P9%k
z&-LV&dCez{;2}t?9t^@w_O8kr$=O#(c_Hk)j%);7SJm`G852(Id0Cg2d-PN$?42y&
z4=<W#a&GJiunH;54mR3DRr)YJ=a}M6E;+>pMq58jq_0p<oGnXr2KBuEN|tt-T*i}(
zMR{J;f3cwFZQh;EY`iEa2r>Z4v@Q-=i>WSXpjqGADDtFC*L2{ub@F-7nrAm;G7{Gc
zn6lg>c3THaG#|<T<_R*Si#`4XciNuw1lty-z47*sKVFlw`m+?g^iB8V5}n?u9!r26
ze?aY-#ZA#)MQiUU?Q{xODZV~gi5V`%DM;y;$}>@xg1R)Ty$)!MplqodvXi;7+{rB(
zv{nuxjI$$=WX?Co=0k&GyCihd1NV)1>U<v(Ct4YFcw*lz+}P<MEnx?RFg53F$c*}V
zO5vll!T5Ym6)aK;$DUF+ew0!;^pn2l=Q)Uv@)M<=5Cz<t5F;vvxvA4Sei<hfMK5@;
ziuVdj_S;w1Z1cv##LYysBq*oV9*vOs%Fissk2l~^@v(4s96evQyR_$%41@#Fx}p@2
zmNY_+<k!)r6|?J>9X-Q~W{{}LRUB0Zr&dC{Wbo;zV;^CiPCAra<cERGr`emDl7<1w
zS=FjeQ1UT$c<PSF&l%BWw#AWL40mRSrqO{{QrcNCv(Rh=70J3F17kI2?wePy-+uGo
zZ;p@4Uls2_SCirq&r5zrdIBk?)ww-O)wXlT>>`erpZWi!AChZ3hDP6i3q|(jQcc_V
z_@&zVf3{d21a8#>oj)N@^aeU?CXGA;SCEcN#bYrBWSpjIoz3=RsEA>0&-dkJD$6Mv
zsUkS17~_NF4J`ohnYtR_j_(r=;@Gn#052?tEcAD`AbwiOQoM7*BEBEuS4OOC{fIR$
zgyVJ*928Rbf&A1#)(ZM&@;=DDpv=(aXKy)D8vA&HnCjo61JBy~Z+<-faP$5nuSas$
zCFswRe<z>rrD7&U$2ZkQEF=uvgOmxTZ)cJ<s`QL&d$j!74GcJXtelg|yRX-eADm#m
z^{UNm2K=)hVasMdLaT56)4$0BuT9+D*bx2NlrwnJssT)MJsV1&YD`}P=w$SIy$r$e
z_SMHw&*DU%HrK~{J<8aW<6K7Kqx~K?@AoL3xbOJ5b4^eBzTfk)-#2*IM<wwr%}c8s
zvR%lL+jo!xX{VC<8menUFOx~Mmb3JoN`lxrleC+YKpX3Z&wp!F`)nCxYErej_z6Ty
zV;iBmU=wb$T$(8!r=SeJ=?%%6_U-aCxhdHEbCEk$mXVx^rD7Vb!s*5@u*I^fcFw%j
zb97OuqE!}lV=HDHJoeViOTKl_WYcHxwyPWyVJQ{4L1#iMYZDG>np3s+zFq<-A(3(;
zP`T`AEW3g{+WU@p#VWO9b<i#}2`ngmWZY%js$F+i0ZTYsld{%=rSBvUm7?Me>YW@H
zmAc9c6~_qUR#_Jsyh&oE>?8=Ux=OS5==dy3ZLsQ~FBAlAzY<MSUR;w#tVySXwc#Y$
z2V)PXc@_pzx^|Y$ofEu0ZR`}V5zZHWT~l9FDNzy#ZMz@bFR^8l4{jl<D{C0vPs=<m
z6FusWi#MTF<n0hMo-4tzWRIE(U2EpT(%iR&9Jh?z*b1J@Re<sh=ycw&g66qOv)Xq8
zmki0g8}zpVx>|Sq_G@K>nZ3$ABixy6Bl-UDa93O?@pLI^GxOeLLd7}9==Mq>fW2Z9
zZ#(euS^@dYAqNp7adlYEa+W0TBGne<r_``^<&#;w<B-Iq78xRWE}#|V$O*NeI}i7K
z){F*4s5D*7qD+lN-q|g0fLKb8Z4fuwDrNTP(mHSX=_4O^an1*L7TJc+5_{@t)3J<Q
z;0>n23Q7mcc{0<lu3d<9Mg=0nP_@TKnW>wri{>5Jyir=k06M_QQ~^p>=@P{P#H5wz
zlAL_Gx{yMqBoTJYv$fEa9i*#_%H&<31;^fwX0##teZHs=Vmi)G>icaZ;Adbs7wUKj
zxELyBMb$W{?bJ6Z+?~rn4&Fj;-3~b0(0Zr;AsuIoq3klV6jBtNIVTcsU1zCv6nh>3
zvZ*|n7UAH`VbNU3`u#kyjrn#M*tS@k*dBd!i$%KrVs#3Wb~{U=`c^Pyi#3<+;p3M3
zFXy@Q!|PROt6d@Dp3>8;9LkmnTP<9=_68DwYg=qe6@J7=#a>^UMdwm${C)OL0j`5x
zqp+n{KVS7TcZGN)_SCS1zs(2w;coPe56^mdzV}N0?3?rT@rUvKt4}PKyi%P{n%SLp
z29AF(L&clJUQCo-mXy8Hc6?PH#Irl5-I<2P2_e|NO&wiMN@d-zvhsM8c_(a}QV=nr
zXu>x)@813NiIjFihTtk_bThdvPG(mGlY~-^p6iEm){c*%7N};$QS-&T-YB8uqXLN}
zEBdl)C~$Gb<_$rZ%Sjc?4lZT;E;!%nBfV$>D~jIfI*jC&aP;8?`9*o&)SjfQ2knU2
zpXlUDXTW0dllr%#p#q6asXu3Q>bn~%^nmJqsFi1@9?->4o5@2j&HTlOuJ;cWFKB3>
z|HkLK`{ftAF9%Q%IT&FEwaAMQ8fp6Z5d4d+{d7>}m=IoQd7iX6^~X(p{Lo*Rsb795
zRQLA#?{7Y?l2ul3P~?pq_vO&)t{tu>8@k+=NLsPO#2Y87Zjw)F6fYQs5LJ988*@~7
z&_e~#U3wzUgd=xkF-*G)`Q}byQ*srf3GjdGTQf+*5g(kAZGUmK=y&<>S|+Lh>#Dv(
zsRHt6#Q4O2UAPQSAuznXcSCU{*%XsE`A}?nAQ?cqT6RtU1ZKG*awgJrb|sb@-`$Sg
z4+2stsX*PS%JU7GYkUF;s{}KceYU?mXcQ>HP++{bP%=kjLkfmxCp5W}<O3>gl%h|S
z1L-5c7zG1>qq_#ET)QJcSkh&+{i~vj8*wzku5pW3vd%VRlyNkI*3Hi*CC`uz++oR?
z0hkpU)WmOYl`T$z?p)`b6g_R@>LOEz!Pu(T!@MeJROit?Uzd?7cm*lxvKq2NKEr_1
zlfsHdL<_aA0ZDeJC77$OQ*NiWeI%=6Yj)FkM~X~oBYZ?;wNDh37t#u+YO_BFgyUlI
z%fN{Jpq9v{(ETnsxn2B2nd$%&C^Blj0`L={2w0ELD9+-9k&K?AH%zIIz3=s$IV-%$
z_0^ptfELFL${U2A2h$sB+nh(M0q|lle#aaODaWR(=Cv`VibMC!+9WtpCj1=v^4ane
zdY>GT%!3mp%0wwL*vf>a50G@jcC`<c#-*OxU!5~)@k*NB)KTQ>-G+4@mkZg~<u2@J
z{N~f5UEdm!fSXPsyTg<{5>TSkJxd<LXOtgj^r!>Zr_EwEQ2s=$U29NFd!!p++MGr{
z?VZU8pJfWrhPIlwU4h&(rb`(~pDV>lyj0WVY18J^S4|7GBB?tA_>#T%NKTp=fccq&
zjTBuF%b}i`OI~<sXR7f*{tMh|Q0aFS*k6dw!)cKJl&p~Q+p929@k%b{4L&tjbHiet
z4TS$rB?Q*qGEAH67*NpzqHi*cc4zA*)@@I>Majk;oSjF5vWoj$b3myXrbJDTm8kt9
zjrcgUlvv;1O$@g<VFwqJQL3QmQGBFKu9RY}QN6Q&+!leZCT9>`domOSYfu<8h|Il9
zE>6uv2y9RAKrk*!$BfCw!vaed$=b=8NC~30jEb;tBymbHs8DbvMnmTFMk4pNvecwy
z1_jwJn34$yodbUx5L_Z5lanSitfW(5=&X}X9|g40r8PlgPt;@^9&N#^?|sE?ae&JM
zBN`&LPAwE4vQYo==Kb5Z?@u2qvpd<TS-GQw!Z_(l^_r<9dM3?(aS2zIPm=Fggs14}
znR-h8ph^Y2DhH8$!09RDr#`D}@U0|C&!z%STKaMHl?u5oRNdoR_%}6=gt8O~q{WrR
z?jJ`k50xCwDnm_a{HvUxkwvu}RD}2{DF`el|5=PuWoVTC8cV8-{o5z`zzAK@ghf;9
zYy)mg6mr^%S=8D&Qy)WkQ_1t=VI-oatWo*7gxJpItU=B8zm`(2WTPcPaqsf1i1b+&
zKuYQICG7A_xrf?=nzOdFn}zz3i9l?(fC9|tpI`j52VM2>a<uL&gR==NB^;NaFR|t%
zjNBxkgMuI{Lbor#kM|W2^)9e*5pF`x?;Y1<N&QQk0Ep1#55S{y{`rlMuU#HJ#iSTR
zc>Dg{^$(wHYrkAbQICz4t)P(N008k;Wrwn-eIXXA<CCoaO>sZr98dfq^QQG6!44pM
z?}swCl{p*D61G)H)kCr78Q*Xfh8lQ~uxM!Ba==Ipb9p%&-L?AoL@np#PNFmvZXG+y
zBfQPB-pSrymftB1yAS>}#8UaRfWhYHx@-M~OGvhji(dL!zi<V2Do*fMU-QtE4=-Z;
z1!>fl@0)Di3}Qn7V6tGrW6n+LMQL}TI2Bbt*afFrfdCa(V{iRf*nL7XLnem1i3Kh`
zJZa(FWwseRR5=kvQLAy2PAG3Cb*F)LNj;ILqk8vY^!9!0$5M72V0nLhT#Tw+JAXRn
zQ+{ed<(o<?t$2JBJ7mc@3j~4+*nmaJ-*4mrm*!mE_)CQ<bfd&!(`9?!U(VF%ZF#$k
z&gEIf6XGp1jtG&3fH%zqA=uvI>w_~XGON)RDHb4li!>+~1y&U8PI0!CU9Sr}F0S5W
zU6>RhtYVPnj1;RHPpMIY!DhLBahvW$1)8%DmW|!Dasy2_uj#7T!K~Ui+aVom6It<c
zR_6WD%NW&DZ@I>NUQ{|!<qve3;8@Lvy{n(x5~MY^!;VwUB?WjyA+87^54F?)0OQdc
zP?AfB6IH`xGQNq0O0*^Tr39=}{S}*+A5^s%TG9O0#I|$5$Yhr^L5}>_;1&%809(w>
z28{_ADt`BHQT%zQ0<&w?rpQ^E$-2B0sB6nfNhRw_WeA0@vcS%kC;T;dl*j0EqChUZ
zGq_x9{z;nRqbsSu_05mpefNnuy_MDFJy(E0GGXMk);3X^oGo8pVw9I$q{Nz^ucXB;
z{f=W)={MPvY_}Pdx?jn;npGEvC$zzz<_Zaf&3p!1pgmM{jlA-F_HdNn)2|tQ%|ej0
zZw2P(#0zEc&TO4f708*f)usE*>>Dg$E|hDG^N2zk5|2A@a+FV=i^GxUj`t0m=8fx&
z=epkqv5$ootH8;EUwzVDKTh2pAGdQ1jxn<N9wh{VqR$LFy43d3us<3OcJSKqpMf%V
z#(@$Su>AC(4=+49)LzKvKARGJpX}xM(Ss9}a&~RpBMc^m@#UxxnO@}rbXtbqwK1Rm
zeCXuLnBBi_Qxzv>V{1ODz8<QFB;UP#{q~!i^UXj1aP#i{%_o-DclRF7VB)9v*FBsm
zOF^2SZ!hb7O0kksBL5(`<NWy2v^=^vE&rp-LzjBEyyTx<{zAZzhjzsA&l{5Gzy4@l
z{7F;(M>l-Zn8!D0P}-wWX&<#l>7ReKqwN=3^FO+w<nE6C@u%_4c)ou3J>}mY!@0I=
zD^3Cf=VxL-nO)>p($WNC>BqS(U-h3W7z`ms=38MggeVgu%R~Pw=lWIE#%cu(ooCyZ
zQg*hQOTlWS)C=&_+F4>!XqQ-u^`w{7dMMF_%rk`uDbLgfAzFpkyq5E=4*u+`dSaLR
zrbt%2#GjqWS7%A?TECgtyX5w=0~gr(@!Guhi;??$2G3B`gA!vE=RkHyX(8iCdzX{H
zkbp)nf?cXo|3;OKlujj6^hqVgrOlowj-4D}+^Mf7D2UQ#ba<kYTsbQvsEocttGAw$
z>+z^Ug|u_=m|!8>bH$g|{YsXxwCTJlmy}G>dqxqGQV*44OI=VpOHtajANP(^hDMPL
zT#DX|3E<4UoP|IrfTP+;0g1CT1|>#H)m%>CG~`oG;F=_f_vfMG6W0abRo9cCU=$!%
zE9ADrwnax&HYh1&O~}p+l5ti3X_j0C;ZuDa?;sCECA&2;SE_oH8UB+_#2eJ}0`6bT
zt+Iauakf;SX{$Zq$yI|iA--okeM5h$+1pRIH|O*9x3{0{N$1@lr8dc3b+&VbLd29D
zzq<eF-xIU-nvgGnqY#lh;m}a**XJtWwO#QeCPAE7&IvbycB61CP)8?~ZG%r7*Ke-B
zeRch2e0{B|pXZzF?><iLSvR0}Wh3k(1?X^Hs788J9(TLrFNfd-<a7pNKY|x>pr?)9
zvyCHUTI?2FaB5tRZu_>E^XUC4^QFot-b$fZoNuXfx1*G5e(2xquGe~<s6?KL8Zq>O
z(7j~0v@jjbTJ*}Gr1ty$;VradXJplpoGfkx?_P%Hr?h8zm)m{Cg+!sr`SN`Wwu7IX
z$u5o2CC)}_VA%21@Tv0}d^rzCUnOv<!Zq}xT}j)`fsaPwg`d$!MgP=mxz@_V(N|Qw
zPa*Voa`D%EJGxS8qFGZ@1Y6hw!6&)!a&YS=;@{CYXnqb&_A-#1*hZQml>?7Uxuw{m
zyiL0af=XfsRapj4!_YjS&A|@4Q>nN2aC9rweowlaae>EE4|!iFGIQhuYd%mbzRI;b
zi~M~mG5U=#kNmhC$ybZt&mO_8dw&lK&UHejD8Qq`c!-_ADudN7#3Le5`@MXQ@%r`k
zhqrHfz1*J(+L~b>$>oxi5_NRHz05)v4in$H<5SV)iD1@{2)+O!(atx9UCLnxm{OvI
ze#<GP%j{bPK!#Tq(87e8PQ1#o6ta=}=0XJ!U3P3|bzvdmfuMH*$K@X1Sx0lSSW$SK
z`njC|hXV(8j^pxdR9Fcve2|XBm>0H<pMcX3$=7G2kbxd2JJ6ehVad++!Oyfqogm!G
zXCFPPx41mFKI9{(s<qs(LMyO`JH=#7NITB-mFP?z9aPzfg@K6nsIEjyQnBAS5fizO
zjm)k;NaSepMikID=n6ZTvoYTPONBrvTz^dnNaLV@%zij1BL6K%E@uR~p!NzEyL|FR
z4mYh_Jo7{t+u(j985pK*Sh_P<tZu|vEXv95H3PPr2}7Z}R%4PVs@Nyfk0SekUDQ^}
zelR=R_~;hJ71#@&^NRX<bJRj`V4*LICkEyb<Oxl=m#JO?PL;|yid&E3U4`jed(cRI
zX)yhX@{TUEM%khU%b`0`X9rh|RRurDw9!ZtV>E|lS=F0D6jY?S67%%B?(uhE&-_8U
zg~B<LlIw}75jxz59#hhUon7#G19PlZ?k!tL<_E`$eM!Zl-P>4KFFps-To#c427(Vc
zxRLRuSQCv^wQVfVF?mzFE-+S{0U>nM!d}IO`AHfF2_l7PN2JfhR$@ajlmL8{ygw!a
zC1fwg_Nz7nF$hN8b=sLfAn;5oMXodm<q~Zv4#}x46VcO!aZAHQ0B~{<Dosc<3}s*$
z96(}gw1Ik$0Q~_hfNPU1)|gZ4f<;UnFOC1^)lCP3{chA*V^Sw}@gAp3VK0--MhKVS
zT>^ighB^{n9Ei24Kp>BJj-Zn+JWgiyd_24qzNS#ggyynz8bLWL7rChC&W?S8{1g!a
zZz!xDh3(p3TQ&*CEA9l!8Hyr8ZMMduCk|<xLh)P>jx|3{aA<|pxB%VDEZqB<YOFIr
zu}bi8(i|=myig-tObPP<QAu2A?z9zq5EJ~HRUnQ*H4h^&C~K|Qti&C$R0frhsCip<
z<hVFe+T3_j$@IR_iS?}1A*~k?w|#iAlasBq{JX?<74tyz#4|O92>i|pYac?_sv-L>
znf0%oq~OJ4zg91OpeUe++USGrJtiX?wC2_S-8{>h69r*<>A5b?4PJ1ww=Tb2l$ENI
zR%4`Hxzh=GURKpQOH^>8Rw~hLwouT+46!1a1*z|9m#lw;p%}U&shaZBNQ@krIaRa-
zC?~le*lDz*B!>{!uB_0~k$fnNY<<G-5uX|9tP>(S!xt7av(kByB@2t{q(}ltY8TSl
z2Y)V_%Bpl_r9~d@0tLE;4h16CW94omtT`jkd(0X0kV!Vf)!H$zO8s3Xs(tBLAwCLF
zO~n`vt<yrqZ7!iu7FpZ-NG07&pmt_(9hep|R&1RSxTsi7GDOBq9mJ25W>m@Do038x
z!1E{XAXEuenpRe51#zI<e9;SXoIHZdIz&asG#KR4&`M;zkn;woEQ9!gvJg}!0g_IW
zH*QSIU0FrAy$&6lxgf@g{_k4A*^*^*Nq$1=6ec6`Mw0i^fmJ|dUA|wYoI}-{G+Y~1
zmSN&i1moecNJ;7n!vJ|S9CrWk8c>r|S@BZTii&Pe4iHn5tg?E~ODr_sZ4`%yuox*O
zLl3PF0F@@Ez!k0aWl#A41V!Q_2vwbT4G(y5wT5ctLj)<=1QXUY&fH1`K*X$Sxh~i)
z9qQ$3{_xL)!k)|{j1}|4!R`!Z^#IP{u`8^ZhGsvonW2M@u?|F$1MpB=m!>OJKN(%Y
z=r#rYI-Rx4R7(=XX_Sy+jy&As$0%c+e6-rllUPZMWk>Z20@^luBM&4X@=7vwpCJ4C
z*mS!2=Z}r1^c@HTIXAFck<4aem_eI~0IsIW*vRv8ClA!~yawylji<B$cDLW$f}-PB
z_%)h(M+U;74Zge<0f8sKVW8^yV2IV+RU9lN>D@*jT;3;m*(s;PiGjY_Un>n*Cf9if
zb}jvLrzQZ~;smc#_%bv=Y~syWFCCq<A4hW)Lha_GJ@;_R3Er2<x-2L01(hRIR80K^
z31jFBKpt@F#bzsNIhOS5Eg&<wucI@rlm&MJWX8B`Ck3_d81mEDkArBmKgfEvVm+(I
zuCPVIp`1HZZ37S@i*xz#8UmCLR1m#87NlHu-mQ|M%CIO7wmw)D@x5EtqwWa^#FCZt
zqD>mMV8=}Qi6bQ7iE`1G4mg|99q_S?b}TfxXzFR?(L(8ii`YM=GsekBWP#R)*$@FS
z@Xai9@y30ounul7z~50H+WieW3yi+wy?#z}M04+{Zo5xDtfsn*xpfke^eTS;GTrUi
zLUtMGOTCpdeGChg;OU7Z;d9TA?sBZI&*g5qi>Y0EN|+9x3-xy;FT<w(s1_rGr4dlX
z^$Y+Br{g@UM7{Rcts<;^(v+Q5!Z7~0)5nJw<m)CW-e+t`XDh=RS8AiL)WvB`XtgVG
z@=m6us~L&S1+~1r$DbF%-v7e-L7l>o0Y=9_0lF1)MRR5b$??_nXQQ3l1b;OV4vP_q
zKwRtO(z(nvQgXA25vx%VeQI+83`RXEep=TAN>}jlMHxT4Sg};)b%mK@HJoDbV^UG+
zZEqz~d&sgyRq5<LcUKmIFMc~U?S+S0i)TZ=9BFHd%6TqFb1pm3PU)m<K-^sHGo6%k
zeka6hvbl<6p+4Y1CEBK+5A<yin@j&uPaWG|+sRZzGCy*7Jo0VarFm!bKJriYZjcak
zO~9^Is(U@E*+a6BjTWQyM5Fbo^zM7p5X3i1kcyUDTc)1te4z{68D&=NLIr@mG957K
z_#cgM!wMv2Nm1XT@hQ*CQtozbkuoh~pEFf8a$1xQw55<TOAw}5K=MdDuT7pXxmGr8
z)}CGipVj9{smV%e4D~0WR$0Wxn!jV^YZ&&sJyyNaAP=ndeYArxJKa;`cc%}8$##sL
ziESw2#rZmrc~UMf5*))G7-nC!CrmG3D*%%vD|%kKmLN&tl1SbsuUI$F{Uv;(^59q;
z5%%&U+)3O%XD^pKDG%DoVS=_XHQUr7@9DCou@DMaE7RW10URq;wbASIwt2@PWCP9#
zd>R)%^t_b6+P~-X%Ub@*2ECQalJ{P=M=rZN#pLQ?Uzb+8@E+)ki&SitMSCsjNP^Du
zwzi9SlE>}vLdVs+p$2e(KO{_hwpJv-vH2*QZ>!5@Gv4B4(by=gI02*x$(E0<+7Pjr
zHoMc|l(KhWm8~a%0XkO0ch6hHD<#E~+Smx%1=zdxcG^jPmsauUZQ=?Q#*&@9vG^e4
z8p0out$6pN48ETWtLL%5rfRFPdOt?4lyE;r?J`E~7sjYPjFBB4q(JmRf;p>H0VO_W
z@dxVzA?Ndh)aEY?F%1YlwPJ1Id9Cdilm)iplO3{6luAOXRJ)52*y0;uOYP1xn9%Mf
zkhN3lc0xO&dyz+P4<QDXVZMk8?e!H_y!W?MNfy~TnnG1{lgvhKCLQ4tGzgm3#zRCs
z2bXNM7Nv9A=0kN*^UnlyIg@0^Uq$+Z%2S;Y!#bi!xwL{4ZM{?Cp&gTKPjN!kxkC%J
z`naG%Y2}~YEa9k5iu4^eKhUP+;z>S8yJa(m0|IjHe%igOGeR^tCsL*pK?13ah+i~S
zgmb>Ts9?Lbn0ssD(Y}R0kHaJY4`n7RL0r{U6uOFumY2ymN%W{#eNp_nUd#we3&6#7
zpi8BrOl%ypkliQ^KiddTn~g~v)7(vL)apiO*h(hpBbO#u2gDaLPj>ZipxdpouKWK)
zP+{HwjX{MM!ZB|E{9!Wcfjx3W#1ba?Jzpgu!J7i*0{vE#y4Stsx?SfRp#v(?%Q1oh
z!K^NdPpl|-Qq;0DEMaUCA!X(q{yPi|XEXpX9bFp7VN)J!eVu|HTBG(kENH^ntaL|x
znSBxLrd|XHZa{lsag|ZJg)T}3%P0@({6a`;wP7yF-o4F<`7ORnAria$<LQIT=@@R`
zEz;$po{|2N@sNTTo4O^KoG-h3$ahmjMYJg~xZr_SViYsHIE|%}Wv9W{(TSa~?qoOB
zlWi~==_h3{Q=4-jabmIg!BGvSx6j^{V7_;FZw@Nd+21*v3+-O3>_0|UP!rophm19+
z164aQRV@t-3}z+5_724?!n>9I$`I5N@7ZymHaee6590`*-E2231CAYDaF=3{7xTh~
zWLurnfNnk2mnF?=n>buhc~gc!jO&hRs<)$oNgo?wa2i4V`5frHCTX`I4Q2B{k7v?Y
z=GCv+FX>Z?{<xeCZoc3qvMS}?o9wk$A?ox<$jyC06mrr-o?qR!@50)?ef8$%-R*ds
zfBfcS=9cT>;#`^om4-TmR)xm3Q7tv*`=LMQf!|ja<D>Kb+?|cdALGL{{Ry)WjZ~=W
z&wTtTJDm!ma-JUcK@%-mrLGDR<Rd%|w^l9H?|w3b@0~)L+9-Wj$()zc8$*3g=0YTr
zSMMm#5x3lW2gYsf@A27~V);FDu*PSwHwx)Ar037$v!AMhzo-cQH47&US>CV2Ztz<N
zeqe&qyA&|zr0)({1kEUMOMy#hh!R99#3S!Q9GrMU5^Q|XZU{_h?uR@COJBTeCvMMv
ziI<;eR~RzA+#YZ5Zr*+BT=O=QW+h4*W1E{D_dDUn1V6}<gjHrmRTV9Hr=7bAGpN?7
zH*~juzoCBZIz+0)xF0a~*&92OE0k^Vx}qE`p!+3_Yf!Gdlw)dOpO7*D_1KFo<}Qxz
ze8g^PjnEHuf$mZb^)M_DmE*~x%bZru=ysUt%iO}$%OJD#w)u?gYaK{Jf$}V$Nn?vu
zO8RPtQMI8^q9XTqj=`Ail&=nJ`J0c~=!|}Dy#HbJ9o{WF_ix`ZcIe5Yi}j(QqymCM
z4~nE<P3far+T+cY9son7T-rb~W<M>dqWgBMIK}yjQtCJ;t_Oi~S!~b`{fBrpEGBG8
zYS}o0tLv$_>&bXdjtFG}I9R(-dZwcpM~eK>0;I^%Nt&Dzq+kHu1gbq2U>hWx$@lOb
zTD;5$+ybRLh%Y57GL8e{%v71RzcTl&1_3a_&@9r=xJATyC6yFWH2evkI^lfQDv>Wv
zbW*bF4ocsyqW|Q%mP^6k)B>5&A+hfV(nbA~M8a!K&sl`ZgOWD4rFv{}m5q@(l7B2d
zpQ~t1A`MW8)0jnq?}A7wQEn8#_{GZm_wHZ-{Nb@fLo!MxWZ{PIF4#f7X9o%Z_6zD@
z^o3lx&W+_jYw&h-AloV+PVNh*`tQdtNHnTd)Pj&y5=pGMEIA;~A~Kxv<qMN(Di;3h
z<sdm4zKuXcn(YyDEMo3u>Qvg4@9(tJ8T(3Jixo1QsOh<lR3cNEUwlNA@9O6Xji`+>
ztH;e>Ndzk2@#6mWlmDK`pcg;}@g;^)uWBcvNjr#Vt(Ahf=a4Y^?5HKvhgB51<6V$V
zv01ZhkH2<sSi|OYSbeK9i#D8IVGz>f7de3-E<)4tb2c_yjvH4uMoW$AeEp~VGH>g%
zLKwUdaL&s7*Io@OY1)?C23`m0Dc}>_<u3GkQ-4-rNU5wW8x1ez6jcj6uF@`~4#lCT
z7UsrBRP>Xy9x+P8;81-rXSaY^Qs89ffX)3v#}ykAn+6JTN&ohdB>IK4Utiz8zj=3D
zzx(!6F-+Mw?Gd|s56gqCl#E<JZ^8?hFjBxvNSSSBhS>r68UIZ+o9jrdWH1-e6)bx{
z#g8J60;omdX2ApcgNMt5jpR{NnqefD2M_(hxJ$hs-R^_b-Rv6iOIybKUxF&c0!ME_
zR=qTajz>~V(+0zc2D0*i4Sy<SM&s_7=}kBHQ6Lw1%0BqT#@_$Xx1e(Paep*C^G9vH
z{Ghi1sYELp#3Cl+w<x<U0-z@Yc#m>_qT%<1W55p*SNU%Os$3bbWu^J%%ZUp}!Ur&&
z{{MFQv-D&8j(7(3Brkt+L4Wam8+qpa(S4IOeI6EFtb3=;zfSE|#a$-=Z;Cce06Pxf
za{nN|p<G@&%pZ5;;V-{3q*NGP@v76by{vgTNnGL|3$twV#(L3|&K}eM40}xfR`w``
zTfX;$)Ch0=i&oiw_L*%7HFCNq@E24ZqFB-{tX<KOVmnBtF_#{^73&`_;ny@iy77Xt
z;{{6|AKs^Wj0#`Of}*X|gzz3$V_FQt%dDgo|B!}%#X+%H59UXTB}$u70qnzKs986v
z-7SJ@hh_+V%6<>IPa7bY+E=pv;X;9tPEHo=kUTkTnoQ~)6*ko7u*gmuWsQwAnwq)l
z-pi%JVWpW|BE4vD`LsIb3ZCg-y654J4VEvN-OHRQv0C0rM;0u()#i3t-px(M9l81C
zK1dcva5t>?{h|SK)Oi0sb{`fGx|7>_Rl(EUyXZ7jL-m1qhfaKuxPNTspKKM@HM%LC
zdn1q0+u`<-aEp76>Woq?z1a1SI3P6&cQoEsJA^1YW!HH*dSASw-Qcegx{$X>9;x%_
zN!<=+6@$-+lj`}d_|D}dlGn>~tRtc~o^PLw*W87^6~nQ-3_bF`EG;@1>b0@-E{yC}
zR|UzM!|ZGl*B8sf5!JOlKfom(O;l#Mv$b>Qap7?}1FBlsDvfYJ0&p~KR$ME{Auxov
zS+S9<-1Y!Gz5kS&U)CAqiGqX12ix04X{2*cV3Ew2$p0+9w%TEpz-G$&)WtLqAFqB>
zTME$Ie&Cr+IG2Ids%!m+-a8XZ_Bxd!mofEtel%iPZ0Cj%I&WSKh=^otu$+P!o5aOZ
z5>5qP)lpjh3Ht6c95e%j_JA)~MvnKCeLrGae2kcu#bv~X-AnG%(elQPl?u}WW6BZ9
zqCsPzv298pHx^=QgMpquYpfnJx>yV-FvYWVK7>t~!!***lm`xKRncM0Cu}?8FdmC!
z&CP=pb^)i0u<k<INY7us>p?Ep2LajT@^=3>ps$NGevr(AL(mX<7s++#I>_cbx;}z{
zp0<l-;!C?|?}j5SvZSW1ZuPx#u(@OUdzmf@N>cm`BQ1jjN~Cd#mCyybz8hz?x9dp(
zvZ@%3FHp7TvtfYkPBFC9_YjQ<mqzE(-R!>3PVtg=#j>v-Th_YVn#cjUERpHjQ<x4b
zF0(b!Rb*}FG0j;GzI=IfbnzBZb$lNlURW<G`VZGX{cwH$R6VbkTJthJ5N$?WxY7+$
z-rqazPK$MO!XdL+>VAKfq7XxuHp}E9qN$f1Z6982^hDN}=oA1hCfNXXWdI(AG@zc(
zB#&}O8^M+?icd0z(~NfPNW0yscnL0;x1g#2hrD-Lj^s$zG+)J~*KilNi{H+!1RE@p
zi<TP6#px9o%sSw7B$Gvukgk0CvF}s!01_nY^z@9JO$nJ1h6oS8*hNh*zyA7AR?5}8
zrN6sG?w9Za5mp@8dzxe!BlIJf6DcNQ$;f>AueEHm+aZt|ewtz@$veOtO18BgoC9Jo
zQz>o?S+#v2CHcT_!CFJJ&4M4>YcoJDdX=;*vi5~I->YerE6}d72lfOq4oL^uaIy{=
z+Kif_R!IH&dGFx(z*~g&WC^RWb_HZnF2<ORX^!ZbwXLI<92C36dkkG95bvUceZiKo
zb;Rx%c8>k8%Hhgy?Loz_qn7k_ozMP|=lOj2Zyw#?21uccqTx{fqX!54=;+GNAqb3n
zhq>r7E!_kXk*=ksfi;Ox?Y~|0y+#29rXY7Y^4PgYfuM_LuPNq_vUBk}p}ws@o^<EF
z{+hAePhge8FGokgF-#w3)%!5~LuC?tyGE;o+!c2-nOkxGGk|^x7;hJXNz_?(*H`-&
z@%<<BQ1sFm{z~1z+&@Ec9V3TqW-?|cW4TR6Zt9|!t1oRqV=)zvKc9%~6;%$oE#Ck0
ziCFqXT>3=(|6v;5)U@{#vHYhKvF`Q%bRy~sDp8)|59Zpg-gQb;Kkfpr4}%Fu%jNAP
zxcviUuw24reBKzHwtc|mgu@iylEvz0x#un+`)84q0}eJD7PK@zXZnX1rW5Ihq`%|b
zC=yvcf~VHdwU!(F<K{Ab{`Hq1fBqe-L;713U^E#U`*ybsW~kG+L(WJ@dw9^j#&_4q
zPS7R12O{{pLKSDd(_^^t^`7RKUE6h%eQCc$7g@xPlZz9GhN*Ai6%I3omT_9|rCl>n
zL+9uJmC?G+Ot~k0JjRM~?hR&L!$vlQirPmpfNJ&3>S$U`A>ER4rBg6QL{Pu%VJ3?5
zW|5f7r1}xAEFPV*II)Yi_uA1gO9-qS<lfw+=C2!cM-xnY;CxnG(T<B=JWU)Vg9Ziq
zB@JT(2Jix=L?aTHpvQ}KU!x&y!RJ-i?<&q_`<N*b%pyKQ=MGa&1lIbJ#kbaOemE@@
zcP#fBvlpLKxlLVLF!{hBo>b@+kj>zGX$su_(3Vis+~ot{#LB#YUfY42H(y_NV|GN&
zJ_6S!!Mm;C4tiQHYLoPkp&rN1%oDzR5~zbF2pgj(+0K(JJpZiE<hVxG^CmEJ2N|_^
zqbv8vKsNEWxV)Lh+0@S9V?6|zF>Ddr+g|U|;E-_;Sbz@qxg_qFp2}uj+p5kQN@zv5
z+gc;uTeXM~TfrBK-a&!5whOJD=C=tt3L#(2FVns$Q&*hCRoepHHgqTw5V48W%j087
z`J!ICgd_;8o&jka;VqJHQxRorjUA#O$&~o3IkrXuYgp$Bb5;bbsnJ>ks(xBNn0y$_
z`4#8z^5gU4?*-eeVB1U@qEDaoacq6hsmnvH>jjI)Rk*TUE$4gNW2YeT1U|BK^Yhvf
z*!90wdtFTYBXIEn9kwm2tu4E%>QnST&5?E1HF^;ZXc3Wec7&HkL7sKXJQTMwm77G#
zg?6DZk?|&&^F>bKH6lJ`d8)!1+w82|gT__d!`yQ?0Gnd~K|sF0;vo?6+-Q=snM^sd
zG*geeW@}rF5&x)4p44{|<a)G@Df~^Vkg8O|yOE-mO4z<eb&bJA%5YnI`WiRYfCBrg
z7zHu;PB!i!f|H_NX6rzy?a7zUY^(juB+DptWS#9@63g_=SI)PVm@S2h9W7ik$Y`RK
zdPsc@f90nCrCdW6sIpjNn?k1Mdo!O{{nmqw@EJESr6`2tMK{dez5^1@{!lwj2MAfV
zDHG`QnH}cL<p5n>$0efg?ZOW=ug^-|LyfPR_tU2CdWrDPVkTh@i5-oHc14!m<<n0@
zslNR1>3z|FeU3ydwUbrob(uPQuMS19dsh2X+aBW!q=Qpri5U4FN0femrC!EB{kawP
z<V=&aJ!4dh^K*^}5-IMv9dv(~@^MHqK2Rsq@H&vW+8v;lNkG)>CWv76n}&U~aa}DX
z*e)eyZINSraX;&zMdUmaSV4^6eT178H*b~RVv{z71s>U4JMnWw#%xwNGHHYiF%wAD
z2q{SBWTuPNV0O7}s})xaNe>kKNP&OLkXojW<6&UFyk{iZ_9M8vm=p(q5=|JiaLZom
z0Qq?IV1VTNe0Tl!yC;j|w0%**l}JNqe;eLB(7E^F_M)!wky0=o1L4us%SWlkuHuAm
zM?OS07So-w4b&FA@)046H9m)`Y+A3kp9uFVdNZGh_Z@NAHIlwcMCLYiP%@Cp5rC)^
zHTm)?@Z;N?_T`}+=`r4bk>ju5tujC0in<opuzETg;30g`gb!Y?qPchpE72n#R-Iaq
z)NX*_h(7G!jKS?xAKQHObk}ds<6#j0u}4*ufsfRLY>#^zqSxc>@_y5vkLXYw8BwK@
z<M6HD)F5weblvL>dG#kB>*aP!-sS6oWB@H_L+tMldBd~*?H%=@VC@q7UB0=K7cuhv
zeuW4W5LwsT0d}3k(MEGmvAB<i_EaD9VcC=0gm@jyn2|ACU#F2Xd+js#wR>OAB$wOh
z^+!C%`Na|2I>Ytl>6b5`KfS9u)Wn>gzY=b>wp2dIBSp8SOH`+iJUmI=*)rt3>No(j
z>n@To@66uT!0l871`+EJ1t!dIo6Cnxf$q@j7b(&WU3FM1n<ittS5r+yN9>xbRZ0y`
zva?;@UY>WkNzO0E+n?j>pSKq&ddJ&unMFch+cSPBVqVf#FT!uZ;RFUOz#EZGu%Sj2
z0eCYTbyXi~|BirpV-A`HY6NTMHsJ7F1PCCK{iw{?^50o3VBnASLlvP2CXGsnM85+5
ztE5$pHRhBngG}H=9-mo9Fu}p_OF0IYsL&cyOYcdxDeVi@V_v7j<?;D_iNC!>VMaOi
zhP6Jd^^sH*bqT3op%Q!Z$xFNPk=tP}qpc^2(~1<&%laS%bNyIRE$jaKQ$;&YD5LY1
z|MCY1RWj7z-?I*LyTY=^g`ap$kG>A^8n<XWZi#hHeT)5Lsp(PPXLZlBUUZ5-YP_v4
zQ>jm0{V`Dx2B@=dC!;8a{sApuTLI-f`S#*ZF6gu@p*GrZ>@Gr+;OV8j{qiy`aq7zm
z1tI)vytPq=Mw+d3^KJKajir12^4ky3m&fbxh)DOy9Zx3IFZGJbjHY)Hvp%ZeEvajj
z%zF_#>wU6NPurM=V~wm-8tnan%vrm-YFs9nwAeHkpnCi0LdF3aE%(R1JVo`YUh4Q$
z0_6D&&#?rA>iKXJsifgjA5wqMJ*C?)H6O<(RBAinNr-6uEQdemJXdO72d7OOfj_JS
z6#LL$pi<=%xARiwW(sPjRC^-_C<^z-`7d=qY5RtnU49rKeq84Q?W9LRd-)D11Kgss
z+n#R25^gk*T=6l-y!kiYJ{{o_Ehg9CxA#<VFH_`{$BKxHwO-Y~`1jW+j?ADT652J^
z*}`M6H4f*|LqD4L*NOD`N6H+O@{R6m1gLn^H651Bs%8KqN|46mZbg*zJnprd0u>~$
z#oyNWHeQGRoAy8b4$}`#q+Zr_pZhtf+Wp)oCP6b__kOmWv&pqUnQvcr%f`i(_I{1o
z%kb)nyaltYR^B=1>vO++`sMk@zy0Ii{>Pf$*4+!TNBRGoD6SV}y-q$iEN!P$SEo+F
z(#la@H)vL>8topbn=58c9%AbD^b~v(EWo3eF4-;Ed0MnIkAR`$^?-rYMNtBI65b&u
zGz{jQ>BOq>7A4D^6+w3Bx&hy?g@wNB6Cd&oCnl0zq-r$qYQMNN1-Nbc>>|MCjUFga
zfe}q}xbygOjW<-UkGakdO}6j%2N#+d6v3-DNU?jVasGhHmT>ZUH?*KgCrD=&=-w}5
z#U5SAAdSTRP`hEjFFr~Y=#e!93(f}S{|>mLyYAPh$qhg$2n3>d;1+JO+6$!FVjtd2
zx$0RQbao_(N41^%d~6DBsstK^msY9H;L^Ea7De6ToLkT)vO+i2AWPoxNR}*&>g9&N
zWZ<#pp=0Nr?_!doc9RmsE~W~?WNq;}==N{Ql;(=#0|kSMKn$oQpp^bu_j<8>;;P-n
zb8f?_KquwsE=(PF9`}rrXSA`&v;6^?b91H#bft8+{7M9%vj=d%`OR?qS^##)@knCf
zDbFKb;-}8f^NZKtw>uDYvhMeK4&^haAcB#uMN=sUK}zJ>o+y>*{HBk~ma|M9wrK!s
zxE=Bmza7l`>R-H`;DMKR2T-ZAL7Q@4y_DowX1^bLrl3FRET40@<fd@VwSO=1t0A(Q
z^Z5(jpW=*T5IFHgKP~^hez&aJ{B2n-m)Pris`zpP+AI(3#rN*ax#>nQ&*^b->y``V
zGLI2+cS~LPmB_H=31`<OWU$|KtgMHGO8Di6Pd|TpU-39yzK@E>x#>@fdg*5E<U-a$
zxT<!*Jx6lZE{O*}%tKhV1oL_(e|K5$+svnUFPiEcX!@p?R)y2XS&kRP;Bm0|Ku(Px
z(_gfH+L_%OQKX$euKk?U2EKR)gLg2*9q@-*NZdicR}Yp?<2d4MsvWhQe|YMT{bnwf
zF~H4Nar1b9H-h&#t#R}Mx6O{;nIOvFvUeJ_GNj$!7oEX1A0If7;#BS7KgJJC@fqe9
zcw3jP*|E(sY)5iBE*C!^&!3mtuLJk;K$W4kfnX-uQy%+)FPhBT>-s_km)3jD{3O9K
z`-mT!DMpVL!aBR=>bolx6uE6VZwUe29((3-t~ispuO$!fTf>saTZ<nJ{YM}B39s>J
zV?5gM`<`ivEtA39jlr7Jb&RJQ&!=1W^SNL8)5W~~@zc*gq8x8;CT<R$rUsU3hM=IF
zY4(%#DD=ki{-g<xwH~|>t@F@r;nacXddph(>wVQ@OPvp7w5h=sSlNAV8iMcb0!Od=
z_g6mKJz~Ec!FM1f4VT3YC*ZHh?39=|I6OYwE(n5M3sjH!+Tr`e*{%AA=bXy)J)_WI
zhRr<?As8un46vL{v>b%G-@kr7oZp%x6XEsUv~L3odSXd&xGrV{RkIyY8rA?Y8t0yg
z_yvOu@wg5VR+~74JlXX1uSq{~-4?Ca-nwjoFiBNkhpzg_CTxS#2l}VKU4Q%Z)8)PE
zcH4uu98pX-%-9-sP{bs4O{!~8`5K^iSkf<SxB?3{9rDJaEIv6vm%{Xrx*(fSGA09U
zpqE&thlKznNyGRu+ZXJ9jllLMHR9BfZ&0yam&nj+TEiuRq|zbCX`v+}*Of6$4qVw8
z4Lf+lY7qD4W3=lWksw#9LBR8=VT{weKoIo8?x@c{F4FVMGLDYJv@xku{NkjJOOZZ~
z!ZPXJ!R$eU4a#ylV5I<1l39Dq7M485aN?+D?GhiVzfD_ze35q<(rjZ9O@}Wy)-8P*
zqZ3syv%#|-<g6ylnbV9>Zh=pyN|HqZe+DJ+EEiQBnxoH<pFUlF{o&Kgr|XxW-{)D)
z7A9U)u`)#p7V3>0c+fXP2Q!73k@wiB8@P^TDZNd(dZzR~%@K<^v=O&b;!VuLDYI%d
zV|72uWm*c*+Z7sqFVLm~dz$S^Q5{dZY?3~%CI;qpfA{u!;9dxeAQVxhckI_SFAo_5
zBklK84(1SC0&QDxGa!PZqTJq|-=CuWsGoxExTbUu30=h*5~pClZqLIhpr=}?u(WE?
z&!Wt|!J&6Z{L$aUW|F%ErQ=k|(rQl)Lap7B{dDXmSmk2AOhE;roLQ6b^JcnPv_KWC
zW~D5pUxDuHt#%2kH8krDeLqpeCPu5xsG{b-9Fe?cOZagdurU6d-m>m_nisSR_teb_
z_hq4kBoE+q#%V|3Pe)y&*~jIdozBT|CAIsoK4JUon^XEI(LcS-W!a~k6@#;4__k;J
z+j(_|)S0W5)rQpGB)+gRdGAS4Ppt=G6J_7cdyHuf1B&<Oe{vF)u}iiLmk%Gq-LK!4
z>#_Gy?e{$QI~?EM{5d=3vG-+OVGZkjsW!YXy`!x6v*OTkNidGRLq&Y_X7ugb6YjCR
z9GqA*S18(>PTB|a-3d$1=Lu;hYggr%KJD@6!?<%B&RA`Gza+8k!eksOs1n$Us3j&M
zyFJR2f4syW`Umld;@Ic&OWbHk0B=;86E_w2f5oLs!LYUx(+h>ZqD&M4t`vfcDH4<Z
z(toL>VUU206&`;kU`N+{s4?D}&I>YWi67bWH@5uAGn73wo!!~yC4+LTZ8gr9IKSiQ
z>=<K7H*vr2aiVKT)ggZKayY``PG&p#Dq4^6=HV`J?=kH{D8)pIHs{6r;Jw5P9d_%$
ze6@C=bE|zpy}@~jE~nF$J}yIiJ=_MVb=Aw_S|rMV&0sCirhi>M(7XCTfqI;B2X!g0
z>aNxSWUU{u5$L2rja&WK%mLlJO@CVuUDqyQLsmbqWiC?vEM0sz6)zr!&#t;?Th~yM
zxk7@&2Bg2Iow9w`t_bzR(l#x0ttS1ODwlbPkQr_{*Z69TuLjenH!sQ8+2RRJ+*6ry
zql#%#MzDRi9;Z5~+kon2+rL86BCgJzk?}sod1-phrbxk^*-rPup&&~bb%xo^rN(eN
zO|}n(DA{3_t4}<`3E)$G`1axe4e7<09v^Z$i1kjKw{_|jCk|p@okJ+1GPJq0&ZKPb
zl6`{fYkSOm6JESp*Qka$J1gn^<2mx1-KqUJB+}Ei7zJjpWlu-qQ4#eBaKmD4phGeQ
zROMWc*iWx-^od6z;c`{^7BP*!l-hJ-eIcH4CCM7u1eOUhIejD!Ls_JGh+)09r)Bkk
zCTyZLCNb(cVlO6)e%d+eF7Jj`+M0NYxn)(q!+!XX4m@>RY@m?l7+T?=7i`aY(+$0E
z8h>#XT$<<xWYv=(y?BL~I;wKp{*b5=wdEJQO6ee7CpLlAGhD`V+v7F1J#WX^S-QaK
z($Rxn#@IEVnu>EY;djIs9m<KPkYmkk#5N;O;L>HFGR%jHaa6CaTm13dB}?db@lDKv
zC+K9Fp?8hTjQujvFV}CbZEUM*v*x+4XA=u{X@t96c6oC%4%=<vl;g^CwGPq+x3zf$
zdURVYCq$jdSnr&?4S=MaZ8=~4OUwxyP0WHTM%mts?)bEcH2;L0!)+(KU0hXXMJ<}R
z=8)~o8}*S8%AtX9L+38p<@d^}!C$uZEl4dFZk@JWpO1RmO>X+_EIDU8+g1L@yqpu)
zs+DBTyLg7!6Z#x?hupgQ=I1d(Y{tT!hg;{WGp4R(Zrzpj)31+T-dTxxjRNV~4fApl
z>nT@&V3dU8MSFZ}!jWAyaI7U%a^6e*xUQFuFzz1?e*OgG_x;ub#{pP0%^#59ZsoO0
zSS;IYeR_#UBGrok{dbjGvRO`@e8EpR_!7Jo0{lUZv9KvQ=1rSSX8bxIviPY4Bld*?
z9>FXHR;#AKdQ}iv*zcog9K6d({6Fq!A00ICAg)zpMF1Nu{?<#Wghgg_o1=s|r;XyQ
zC4BoeAi6s56+t-E@wEf&PX^|R>s+|*cEVrV8J7SNg@15;X#H`C0T}uK4BrmG{$^C#
z|ADCd^6Rf(ej303?UzrFzr8Q(wI81XS6L}vj1Aee4+4lyJzxbcEOkn!@dS`|m_tRE
zEgx$Rmp3to6}iGmtSH<jXtXWTc?cmDsd+?rMyri_znj3|G9I`Mt#iBc{Y=OrD!Y#1
z`B*DO>Tp6*`R^X@$C7n_qh}G0t;DTC5sL{R-$U~AHm%wT+gKlhS#4IVFzDtMIV?+W
zd&_NWfuj+EphD#*1{BSM{nmEQ8hA*qY&jhq2u516r~=zatxX>;HCU=~sWyWu1qbQ9
zJv}V*d|%lzcSoGEPCG?dclA-u4Zem~jQwQ5JqxBnRKnYWmsSi;`)Zjhb^iKK+h0*g
z*<dU<U^#jAB*|1WFxab?gPMh8kYoxk<AMM|S{I@-fT!afeh#UKcHwD3dgoZz-UP|T
zfD--3ZQtezn_X0!C`#;AC-}mWZ=WCB15b@o4xS5~8r8UE9xJQqrXshQ<*PLaH*j>h
zo!&xCDkJluV>`1MH(Q49fx|Uzb2Zd_={MFE>EIPDA1oN!n=YoX@7}jj?DNKj>S!2e
zy-&Llv<z7c2PjCY=1~n_m00I2Rd}<0-07p;o{PcF!tC>f^5Ne4qHs8palB-u#CDIH
zR03vxG=)bO%(3`f6p?M_mD!KyBCRIm<Cn^^s@4ADP*fkuTi@h+#-w8;+vblVF2l=2
zk>Z&J$Y4+h*TFDfpsKjYb-UYVg-4GHnQbp+LJL7H$6u(RKKRmAxD`ITw#pZriJR#I
zky>wIf+aLQ#ptp;QaRM0=l*-EFzlffUPg^e1F*AU+$>mQ2^giUpO>E>fBJO&xBs!$
z`E3MSzz+O*#YC7az#&MAGY&eKgvKTL4&UpI3&m)E;2;8@{()g@`_O!qddq;3ew=Ky
zYU!MRW+Q+&g_VuWF(Q8Ywh85lj&MH^dmE9qAfk+{_nzXv>UPIj^Lj7q?OvLCFGREi
z190i=6u6Rw;gbbzT}bq9%Y;xB7S!$<!N=ftsKM989b8w@s*~{V`x4?phV38$#R<%A
zP388zmpR7zgLRF!Cr)|Y0=$ahYGESt_4X-9HAzWFiNBm2WoBpyP80UfwC@}lTmVCf
zm>fZ8kV*jGNkUj7Y`ORDwuOGNTqF;hI@Eg7Q3MB=h(`QW*sWB}a?=++DA{`rn)cu*
z#-{G&<<K72Z%25&jqrXoC$BJNhzVRqbrI9#R&zD*ee;e5xCE8D8D65K5v#gpVQffd
zZIBbPN2M)Unb3eTFbP^;zgvrdqYXyho_KQ@Ck+;Oox<&=KP)O~Z9FcyhjXmZ0=!3-
z49WRTY+$SH!_<UZA0!e0nKQYpp$u&=lK%;87vp;n+@GQpi7x+1a%$e6yt8VLxz+2d
z9(_jS%vvAH(KO4B{pn#_RV}$vtFX^D!1H+t+{?$?OTepl5qmU<lNLwlsO?v@9(w5#
zd1L``T9*zm7z3?Kw1w?z4KMpV%HwLRzX`-E9J3d*3#c&Fme7FaxWao)X0SQFh7GDg
zjRl3%@CaIY`+VenOZ?o3_Ig{u>$!k)U%)Z5pQLSND~Q=4L%R%x?kHCq*@Pitdq%|1
z$q}t5d_^d`F?CCT*QB&I^Qq&Z>D48oIV!qBB+u3p@vc7?XA(50&?1}m`0I}^pT^6V
z&!4~i^!(r6gJu^M$&ATTRCTBW%(jT_V0rNam5NZ;E(lJNj>EM7x}I&-w)y;BWv7mI
z#S1V*HXKQnIrWd;e$7s!%A>Zpp&>vKU{YFceLACqBy+e{cVZMT6a0dBbsx=6il$+o
znO*Y;T_pGRhJ$4gB)y_5_`wP|XFb~lB=gwpys%K(b&dt|=QylEh5cHsq&#0`|JYyq
z$h~gcxT|)GTNfQ~dZ_-VJtU=j`I8=6e&0j&?4i`VCmX)oG)&8z&Y6!ly>r~U=Rm{!
zeeY~IgHUV!u!GXsLCgNyL(AHG=sWiWqG0oKZ#cEucBZy<9%*cA`vkNW(PFGG7B>;G
z{^JOa(Q!UAjtL=#`*!}7Rinfw6R&NHkX#><D$lRKe&%po+I!Qwh^j4-{b$a58^zk&
zgwuCbh?%fHexO?XE`v%gjA#GLvqYwJR@Vpcdj8=ttDQs0cnyVl?_bAdYX9pG*XH>B
zKi)6T`e_SLtT1YD*)JFskhkx0+L;_cUQ8hI<8xCOf%~X3Op$P-I3p}s3~?HZF&~r<
zX%Ke1M4n-&5Nnvl=3hCljEnF)-}zl<c3*TSU(7;}fXmnvYBsO-{#=w!s3ax82Dnrs
zUe}MQz4dH!j1!#S#FT0?>b}t5gAtw~xeXcf2{d_)xb_}l_?QT^?qhbHV1_z%B<ndL
z2Pf$ebFW>6dBf(r-6uJnlmxYQJlh)0e$83v8=IfQ8ndOh@ucQ+szjtYn!b9k=pCH}
z7-z@%bvbGA-_MVqF2A22p)cP$XnWH^mh}6kgYutt&>OTz-1R@{Am~tcP2`03U4=yl
z=(+YB!bHeh%@t+UNTyF;-*gdPsvMg37JU9{7n__0v(BM|%|2?Uuo2=aQt@ww`KacE
z<L;$Ije{NHpmi5eB8%M;h>mvZ%_P4jpRYyYrZx#KW)Dd|4&qg<)7BX2<LcLT*klqU
z`bknB7=wLEn1g^fRN?QUJKH4z1ZY4gb1eQgCi&iua>dt5CsB?EM1;xf)yf;8hGGG}
zj6M+$<g;B&vg}~pD(-bfBmK~pd=m<iRoL-zFp*9$0^*F-yO@j;fK$5H8CygjUz5-q
zNV!?}x@rfZ8jIo~<AXymE?W@#Hvt*cc}bU?Wl2mj-5EbQKKaHxoBhwG@c8Ms-_PRX
zoW*UP-LrDqJahhqdfI2OT5eL3oSTKM`=Yaw8O(gIb9ogFeJyPIY3gwPie<h=z|+m4
z?+hyl=A}28q}n~2?>GRL&<2~Hx?Tal$!jn3&kF>@@B&B9f#p(5ymkC>hL_cYw%|@)
zE%+E-qT-{jy`6&vbP3}_hfV|q(G6jDP8TuGCbRBcLshMeRt}uK8A)-w_yHD3_(-j~
z1``iiniuIcfYmGlS7+_ZO^+(=s9>^5f8I1x)>YeytiRT@^H{b#QxRk8gKo3Nhb;3b
z+L2p}`6ht^c<#L$#+{OEkFvE2gXPxJvYvxI0bg^qbkj`0aXnS&o=&_4AbRa|uC+}{
zRGgkJya&X|B(Fu=L|09}Ji0%bN>@EuXz1yJ*OJJ|9-hk4vZbuyv)OAQn55>$uUJ!*
zS$dA$@=WkBm2PD2CITJHpRSAl`{&=Ui^u=nbs=JJ+W*sak>9TiruNRB@PD*2beo4r
zKE(7PQ!I4)r1p#aTA!GR*G{Ln!^OTm>DO%HdM4#*e_7Ti(3~$LjVdmi?9<(TOy?}s
zsh$FYN7VuY*KLlH;i@huX|iPycR41G$c}Nxb~a-&gVTJ`mVeUfx~}LV>q7zWq=W_V
zTVm%Z(%CNFF$)kkTAQRymSD%Y$OKUlum&p*)0Z}tOq;~GZnNc^xsrq0sGiGwF_BUx
zsy{Z~#-D!p{S^8BTLs`>Mnn31RKpwP#VmRvvZ*P)+f&+SzBb0Zzxnb-vWEWkA9nB0
zf6%>Apaab7ec)f&S9>~RUwzE$)K{MWp6TBH8Qpvz!*OV%E+>YTTdV}4E@SHMC@}N5
zfA+Cghgfl{DUR8b!@f%<#ztr>8YXBGu)*t3ydkLZBMWm4S0x7k^BFC{aYW>5`9NL>
zl-=o~kd{=?gv&L&TBWzJ2;}(NV#k+Rcf)-Gn;-EEvsrNL6Gn{$+=J%c3oqs=Y`E3w
z)ShsQoabs*@uBl#0bn2LWEaC?MY@}weX@zoP1jJF)C#j6Or{3j3G+(CpVF$~sodv~
z@QYU$rrmb3&9mamQ8056go!C6+06K*H`St;q{yH{=%&qhMdIt~3~GedOG}nhGL0fn
zDU*Ft7XE&^jgQw~e?R4Zc)Oy{wRf(?*J-Cu^&881y$Sv0pDIIwe7mIhW=%^L61MUi
zQ~9l(e45GTO2<kZ&acDv3%8pX^}#~kuM6Ki2_eNtR35%9_GnXC)Jd^ZB(_-oXrnl0
zIpfH)lpF2#+uJI{I{50zc=Lm?f8q0hKo8D3N_L_Crzj<QDavF6{H-gXt#g4$52BLd
zBoDjvu;{OH%NxV+c!}MH@bkyK9q4pRn9l4_^4~?voN82kkxBlEBDUBfWdilijf)ho
zmmqXNJp<qGEwT9d6cwhu{qa=#<<sXM|JUzl(x-pby#d$`r`qI#1ox3&wpl3cfC95>
z6(J==gJ*e>5D^Hbq^`dziB+6eXc;29y2g+7?JXvW?^jKtNLHV$YL6bv@&|)_RrkjB
z{7}{u=Ism7$SY~s2qu(lGauShLcc+fXjDZ};rBV2EqHjYDPjZG&ub@d+BkanWJcwB
zb=D?RUDq%f7IfjXhJZ3(vdy|hTBY4Bv3w{|>gH&BB~E=aG1BqJ^Gt@Pca!XI|Du!Z
zJ7x!*eCd+RK|F2=6`P{xh~{xjA-)j`W~=nnhZ5Q5Ktx2f6b+Kd61QC<!{sn`g5X7Z
zH4SIgfiPJFLp0191dmj4j8+a|+cw3dn`9sN5Z+v$$axY|%GBPXRl2EfN~<a25>hc4
zImLCX9leuV%Rh*f{>jev{P_9j>yJPE$L}Uf(1HC6PL|K!v-{W-RUOP$>~F~u+-OD!
zC{z<<3h9r7I!|a#u{VK!(6i>vJJtHP+}vaZ3NwG{1Wt@fiSW8`OUlBieyn|S=n#$&
zAYYX@6C`@xn!4N)cJ+QiJmOPc!Y3A|SheuT6~+9TwRUwl*GP^5#c@O`c1&dSIt*^I
zd(a~JB0_S7V4P{DoY_V(Y>JMhFGJExl#uCUiZ`d%*fYlcmV=)bx3!rj=h>|M==1mU
zy+4~wnBX??W|4%!Z>veRXvNz7p~If7MV;N#)bs9AzTVDpiF1Sl1R!g?$@ThYH~1%y
z>!vcM&?++uERRiK{{sbsN_FoU)~?@wbIQeqf4sfRHoPB_JX#s@jx1H}BKer=ZfiW?
z(=%_lJdm2{rie*@0ViMzIcfhouwv?L*Ag3A^+XT}^%=aso554hX<j>FTlA+JwS-%1
zcpC)AA>oX!&F6gc3~N8b+xdUBd-;pb@%lV4ofeV6n271md@!ff8h^h2_Pao7jj})g
zilU3GC8&GW;16wcX~;3A<TbH1#0Vt@O_!ojOn3x?(41!jE+ExIij^at*OjU>&;V(;
z*LAnf5pWj-A@_;GWI6&?lsj=@y&a5Au&cM>c3WQ$u00R&+k>4aR?MKv*4w-2@A_`r
zqv;XTvCY3OTnupt2T432aAxfAYXDHm+h_GGFP!BG_Dt5yFuN=|ga}))UZV>EL1a)f
zvQe`62hpM{Y7dNx{HB-%!dXRgD6DI2_U&eyU99;tnaIUi%Y~D@J+{6%)*`7wrsP`b
z#|mch3X8`|V7(d@9$cT*a;WJ%_I3yDvnx6$C<3)2@AZU?Y@t=8xD%v*^1<p8#?Z%1
zLUy}Gc$_!Vaq^SkYPJ>mTd=B-@0j>glyB4EGV7Bm+rLp{MQvDNH-B)*F#9<(^E}mt
zU*3unalJn}fRu`%-^1YWrhpy2Moqu@emL*CzP;-|5j{_jzkK?=$jSe@A}93Wdf7sG
zF79qA8oa!Ke_bS302~?LjJK~JfU=Yb8_s@A*zP=p8sSY>sZn_5_uqd68lI#Dkt|K-
z*1r80P=a{eO}RdA?ahs~Q!kaII=00!w|xgfR)~vtr`DzdwRe)z9A`w^egR?Lc3XZZ
zdjxz3Ti@u@1IWHLK9@{zp|axiCs2Z~pMLrB`}tJ<Rp%2XIl-5Uj{70<_ZIjbN^ioG
z!c3EvG^<k7xbW@Uzm_1h$(mk~dCi@VYp2};FBUr^I-hNvy!c8lVUSVRM39f+ToidX
zuE}T=635hWbXhSI^L*QI46L)K8io$%lz0|?><lqmBiZ^&jR)NX*c+PtRnb&ZZ&U*~
zQj#_GZ<k}q7{(q!F`ZV~z=T}4;zTR?T89q6bK3p*>yMYm>-fu;tK#b|q1$?isBRYe
zK3^t~rc3yUH$zxU(oGCf9*AkvV_UbRePGxN$eLL7%lh{b;1GEg$-4$2xIQj`@O_c@
z4iV4a8xR0d@rk+6R(Q<sOjY}RIwID(5dFC)39zCr&?_?;W2^Whj-p-n$2RW(7v`g1
zrR`@X=7O&QVbq48-PcjaX>OB%i1}l)nBrhhgpaS><EcJ$j}jM9QCMZZZOYXQ7oa?$
zZTD_U2dM8Ut^b|727tAg@_>i~0@apE>#}yY6AP|A^a4W8hn!YL8j02*L)#_Pma*Ux
zKIuUaZ?b5?&WJKsU-aNNWr2)faOf*HHHzHuk5mk1Br#SZz?p!UXGkv-I@+`b*5CST
z%7Ke(4}vo@St7g$eT4D_e;eQ~csR&xPJ!~pGX{i^%uZWRQiWYa{?CJGD)U)f1<*6L
zX>Y+Q(<j<&;9R1y+X17{L?5Evy=6G8SWxy@N0F~W_AH(bL)aj`%$vatOI(h6Agzx_
zQwp*_ZN|phn}G4T_!b%9+e%(oW|DxqP0sU0#F&NLOn0bE$=uU5fkq3Xa?w{(APO_N
zGOiwc*tZ)=IWV|_cr0cDv<a5MsreGqY!bj#$U}m~V>K(3bHf0M#cmR?x+-_d1mF#y
zc<naqPS_$?1<aLqH(c<DG8wZ5BCc~z$6ze<3NvOzjRv9!`mwbZDeFu<S?NHM=ZFZ;
zT7n>SH#Ag6oal<PAu9^nETjw2J*i2&gtpjj0h!xAdrZg#U*_RVJIz_3Z(-tK!mlRg
zVl$$NZUPevQ-_J40yT*vUCQnWN`b?PH_{VYi;&T>_tUM60hxtnjI=>|+%lsWul*KC
zd$8;hPs_+Bs~g9YkvzeAMQZ3hJ_Iqc@&HA$dM2|2VOE_WTxcyP|Cau{(ujKwf)sGZ
zm7Jd}&Tu8N<esvcB;V%V=qrMVbu8M_6||8hhQ3kV@{lCa+Vn!sYg2f_aC76DOZbPk
zAZ%&#i7>cBxlbnd<1$7Fkn`W3WK|-#7~4E?mCVN8xuf=v)ZkgKM=>94DiJ|FNM5(3
zF`FHUI!q#<-)5eHJ7U1davw=9HM(>q`6jDBkWopnq=>-XH2G#>$&+A5mTwa?j9u%a
z%_IQKv$jiS_h*Z!Xw0;Q1#*gQpA}5ZpWcDQ&(czbRl{b(D3c`9-v3^icEl1lQDiU_
zR7w`6*kzg?mmeW_42s7y(PnWa?UsD7!VaKPv>ucW1ZzwfQn$^iW7V)YmS;Dg!6nJw
zJW(1*PS69FM-G`*LN3$ogR>Yc!w^_nv+LMtQx?+1UFHDgvJjTgOOi=KZR$PZ)i!ze
zI7Ln1j%IR%3O=l&E7Oc5r2v^wCJpte=O|?Ii9mF0C>2?n&4ewyxiNuP;?ZYg#VHJR
z?7LNfdBz{vW_(czZwpA|MMVmN3aQJv66ur`pU;9AK(pIasz|;@{4cDGSf)sQM&Cq0
z7CmQ&u`YA&4g6rWumUL)3umra0+wx(@upbAs4au?ca!GO5s30NLs||DA0LO~sv*e&
zk>6&Kt_I1>C`^JH-SZCrG(<X)9z5^vDg16>@qxDw5Pp{U#rXa5D4sh&-GhX_EJoch
zQU9hb(S4HgXNdyt=*e5idbb~Jb9cveGf8aML&gp62o91IQBO&G8>7ct4=j(BlsRAG
zx>>M#>owGq)*qA9dCUT2uJ~_&V`_NLFgo#!t(Q@RI%xpy&R|V936gBhjpE-s*-uOC
zrLAk)Ds5u3DlGLpu4ciq3RxSiwc^rbqB*#x)WL1URZ*JkHs;RS6*apJJ;G8pGn3IW
zHatVy|M3H4i&*HWB6q-EENT;`ux8@_+(ve>BneI0=L<VJP(I{8X|N*>Q&sANu7n!4
zt?jMd(S``v&V^>-lNF)72dobtMm2-#unG2)iJREb4#d;GhUcY;+5^2%wge`@X0}97
zL{ynWi@2k_0oqE-*U!7$2<v9FydLdtVAh$It@lrMEjB@ZQ2{C_KyV!Jtl<7J!BK&C
z6Cf5OXp;$u9*U7*Od!*d_GT~?)=xz?6EI~dCG~f-yVNy#BnKLY>2)Z?d(0%dXg5Jo
z5y?*J-e&!#(vPMq5g~0#*6hu(;#jeR+8N>W-ED*f4r6FL^8wvIST!snrXGPolFFlk
z%a@z(!AeU8R(L!F6>69>W+pvCZqJY<D@zwe1dxa+M~jP4yfM4^;q!w~nB6TelibVI
zRbQA8bV^%A?CusbF{j#Ds&t$HMES(@R$D%RbPIjNNEb7xQQuWYs>u!LMHrwar?{f1
z@Ux>%so#`{cQg^jz|Jf%Vax7Lnik!=Qnvt1SC!{E<d%$el-?@LpJEyU%iBF{ojO@2
z-5pu064)&kWI_;<F~r<Q4gLB#2en0#i6T>4DwUp<TU1zWRWpH6e=_(Vl-jl}E|Jz#
z(qob>F7i9WWNgwB%^AOJksprK;>0+`c~>>Sn43%u;wx?fhEftrDgDk%7ldQ%d(7Z+
z=EkDa?hJ)p?#oSFBMoO4I_a|vo`a^uQR*diPfTKR-nI0Y8<>(u7!+k-rB>z%yF1gE
z&HbSO{NmZzzB#QjtaZ<(QIsA5c&$^v8T=7kylxkfWdptprZk>??YrF#@JutN-qGwB
z?A_X1TMsL)csa!wd^LyCtam*=ALZm~<|`~dtU65hHVe6*wh9O5byHUidod-FtXfAX
zlKU1LB)72%K&`rU>l#yy%>YE3bvtF#a*tY8mDMopW)(f=<bJrAgeGab#oAkV%cfSV
zw6ukdU_?eN>uujtW{~r&IP&z#bSo+`2-;~KUCf^1CAvCH63lK~0gD?WHlI_+Bu5Qy
zYryaE@EP@tVdeZL-sm%-h6)J)w;nJSag1h|X$CCn>9Xccp{t>OaRkDU4b^$n?pSUk
zwGn$nIlyrW&$cXBV~MDpm~n1Xtu^XiII&_avfk4YduKu!8<#Kzv6O-@r^e)G=`8sp
z%wL-ML59K%cU@FdkFr-}eQWM>M&<xIz~+PD?_+ZsN{qo~L1qSbGc*`Fo?A+Ai=ihR
zr#4M4A<I*1uWh4Z=VOX&=#qtJVE2-KPc>*+qB(@)ldZ-}t=gE{ajPm0l^8SxBLalj
zqcb-5wj9(A+}!4a?siZ$bpX?feM;3a6T76(23;MDC8)QUd&R75#w8SJ?exQnO)z$f
zGG_19t<jeCWVouj6FT;F&?x2<eR@~RKVkXLGU{sAwI`<;?o`Ad218ri%|=qm)qk_;
zJv05C=}-g@Flzb?bbE|(+fV|;VoOe06t>M7gkH+}L~GsUw8LYSEa{tf99%(gkaTQD
ztwCy!p!?|$<m1%o#DgSk4-fqwG7g>EBiWYG1+2ZOWkqk7P#%(5n4zv}AtfD`E)GN1
z3I>G;29Lt~7(+*O;qV16FkMI0s#@%myL_J*PO|>Zn%CX}J`!XP!9fTyh&;;8nkv2>
zF^dZKA!dCyF!)96d8Szi1c^m`OoBC=3<6ZH`f`K<R6?3K*HDE|tFNM%xDeZH-0;J&
z;!s&~h=)zXAcxOuhEYaJ%O?Nnl423~BLe#7F?BN)lXwh`37VL(%PD-<tPgZS<01;W
z9gTcJ$hVQNOeM{+jd{T&DQ4Pg-e*MQ+Sh6bgaWz)pI=N{AFV=$sJ3^sBW5G4>RB0H
zVx=~z9!=|-wQo@d)q~)N9Avhzr|Cj>SvUpfEye&pagQPmCPl1#iFn*YLsMfeOSCt2
zy4V9u&rET;x<rO*7d<{E#YU|t6Fs+d)g;9h2OccNB1++))~wL^lieG0dS<UwvX0?2
zgprCW&z5^bmaENZNN=aql-0|9QY{iXxWXzKtSyDDf}$NRg}$4$Nq5n)3||)N-)zQr
zB0DYzq!?k-7I{!|qVwV}0ivY3I%>MHDd6<vPsOwwEiM|ifExOc>m0rBQRmMPucskb
z^f9K3@`jm9_fJbiHHvaa$A|7MRs=3g`n<YS)gt9J%Bqdrc^iuKn1x!GY3)~vWP30s
z)|u6rzJ|1bpCmlPhd^rnYnIiH>rOF4$(~IQeQ=Yvep(F<Y^w!{*=ly|c2Z>ti))vJ
ztvdvGO#68oayNX*hQ~||r++msS#MBPR%g^&bP}rHV4r)_n`w>euT8Q;TQtqp1ZJis
z3kIcbAs)LZ?Uu;f&LQiW|N9gSwm~_ml6PR&!5CvS#+3M&y@zJRkR*`WG-e5q2f+Z*
zr_DrfbQo<GoDfYwLA>;6IzezI_+M7mp#4F%fbi7q9hFupLIJH^LpB_2ebgrK{#iOj
z#yA~j@9%-T+SJ0ZL1ys^`}UmXz=q)XGoC=zTc8t3mnDiH8q4mQBZT9iILak-m>_3e
z*bCIz^{fYvvS_4^IT273P4_*=1F#FyigWD>upI)Z&qRKUg^WRhg|L)!C7t9*^5RLN
zAXSzJNW1g=T;5kjC?>g7s?7*=9t!>@F{Jzaff`0LcIhgA;1i67yID&gav}&kONK`5
zvDPrJ<OG9K5Q0$1JD(uww<I_``_uM7b;WD4cn77U=LjdZd+R9?Wv_2pflPAp_6jJJ
z0(a#Hs#3L|UXw`scG~=*uw&<k`RivGK~uYZP)9ozMM^uKT!r04#`fit1(dEL8+G)W
zyrs5a?$&NBXq2R>DL>YDf!{+~NgPnB6nc2Ju}4_9AexfBa|Dbc<46_;vV!9FE)ZvH
zzJk`HFGz&>uvwWe<)>VGQ2+AVufJYD{q4u+CjzVAkR&-?rAqy0{*cfUt}N>u!Q=5*
z<9!h<hqYivjE(m1`TS$(A6!aM)^EoAi5mAa1hN8PC(^(a$Tlws5N;H+Avw;q4~@-q
z%WfLpWJ?V~1fJhzNnHpwZ~!oBy$WsW6qc5mwnFL`x?VsRNyc$Wr^*lG<4-?~KfJFu
zT!K7bl(ldRp??zioJ=d6eYdc%1bw)>g-vrz5@{s^n%=cdlCek~HOQZg*keU6;n^-H
zMT>>8WA1a4Y*j+flp`uDXk!=`Q4Ju<@o{$ce>0>kY{QM=%@9%rf5j-D&f4*&NeoKH
zbExA`x4L_gcg4S`E^c8MRHSM~uoN_M49cp%bu?*0;%FAc6dm>m6ZWU;$;D%hqrt(M
z9k2(EvZ#;;Brh>y#hM8V4#p)SFe-&hNcS8wZjz|YbmPf1j451A+<T45CTY*618Irm
z7h-D0h<#Njzz#+{#x9Zt=p||kOSMC2Mwwv$F(d(P#m6spd8r{c*Wg|xK47LAU_QcI
zUq9E?B8mhfF8p|nmn_!9=zypQ(LuYI#%v;IWXK7iX}4(z0~HdF{SX8L7D0$75uudD
zBBGf`eIgF7;+iljvi(ss_%LZ0|7i_|ESwkqJehKfFo@+o#fKt+1LR#Ii_WAFYiGbV
zWV~$H1IWn5b|Xh9PJsz_`RSbTal}7hb2?bqu6!X_((LdeRC$pW)M4PaRkSn@%4+sM
za|{P>Z;HellOLunz>(~e^58kHBmu8T<2^vfB7TVv2L0Ny2S&yC!#D-yLLkDTEX5Q>
z>7&<;K#YNGnrf7NKP)Wh<~j;fLeU5e4$>I@2vW}U@bdzCl3NW_<q`{4pP2kiNo~wU
z#SLYDa%HeG@r>+DVF0$#R2({qFv1eamdSii*Q<Gx%(ubpok`VCr?!r36dng7h3$md
zFtA29v8FX<ejSZC8}zUCL}Kh0r(AXMLOS8xSpsLyv>F3!QO~Tr()RRK<}?b_NoWui
z)a0HhtfVOtR$}H6fK$AR`j>oM{#FZsbwKtSBYX-|q(lfF*EkAmmRqTsu)4+U^rCFN
zQMiR;EY!%?3VG6ET*IoTBtIy#!be>KMPdcNc9PDwb~tyUEV8$<#RjBXd1XIp!zG`o
zNim1~A`=R3jVfr$+t$1MjOn-PI0AE8b&C&@5LRak7g(4kd-b*v?T*b6A`>GcYLqd(
z1MF<N16?jR&z$s<w>5;)Kwmo(=s#x^+joGcilGkaZs(}pl4BaL+C)qa<$qEfPC;pm
zL>W|dfc!f5<PcQn(T`}X(2=w%IJiN*YZ5qwUL^Ox9+H-f6KgfQ`C{s*Z0#XWB2bBc
zts-|51}^|hhhD)M0y2*|=oL&UA!@(_n}`w+x_*Z)59C^*&vk(G?Z^T*jE6*YOJrCb
zeIuL<Q?LMx1cZN~_2C%5A_g}w57T-MJc^xV?N)yq|G-O|9nGkk>f=_0W#H?su7PK8
zG!Zw)43Pzc;a$hrgJUmO@0JqBS<i(~wk&=JWLjBXyi^Sb<q{=$=6-M0tzryG8|R$@
zQ$Jzn?qeVp{R6(m(V&l;<Q_9)j_t+My5E-o$pc%$$2+<Rk1@rfOs-C+maH+Z0N@JJ
z<t-7;FeEE5Wr#XdZZ%OyP#zPNwWLfJ8l|?zyxU@_7)Y2lf1;V+@#QKkDl$hz8!*S*
zYuB#I4n<&42@>e)eD$P$eJ~&xZv(M{o;r`nmJ_X)+fu9ztkl7~TVqdILU`L{8bb&g
z)}t#jd&jP*2_xA+NE#&4Ho0`S=sd1tr+Dd^I$qeWl(0~E<mgJDj!0TnM`hM6LSdHx
zX_6dsn|{0n*2GO@3Ionf9F&c^YoB0iWV!md?jEaP!j1w(Z~&DsPu2DF^*cG5DVP<N
zZ$`C1WR2>TnH_Q2qH^H*Cz-m9Q;ot~v$I?&>AKw9RZ}EHAa95xhYv<(76eKvA%3==
z1nD+4E4KpXx;mYR;%W^;!0sAN?vA1PuA`B~)k(X@4Xfp;QMzgKBV+Ca<VGjC9|RhA
z+M)_9v4Umj%gHG%3$ni!q^KT8D40$Tek}LJe)C58LyEdMl*FY^Nw{72&{2wNLi{xP
zqASHAwIiV~`Z4uYnrn!?u!2km>zZNZnQNH3D(EVTN{z^eQ}7*ODIilVBfPp@($zd<
zDBwewASH|`H#Q-mI+F$joB(kX#AKGxwz48-nq3c0WB@<vPa3pCeJd0&zP8X?r(_<P
z8Y5=~05vH6=f2}@k)tAjIX15*!i>O-uNGhAKqlRZJbzZ3jDa2&rn~YUg;xE68Bs#v
z*ZyH?X7^&%E5v9v!%dusJB@w0C{z%<8ixuf#yCl_5yk1~d7fhlSGsVsA#5#$hM^L%
zYW9e8nr-XoD&P@k=o+3XYzKcI+Mi6FP-wD3Q%%CeB7b(;d~!DMk&+4A$grtWdQYlt
zp3)1nyHY80r~|Dv==w+KkQifGjNw#ULNJITlRQYbh^lTFP3&w_SkRLSFe6TcCS-|9
zuQr!Zpw1S!Ou>pPmYoyF<W)D11j^Dc4A^_p8eO&5w5|4j8`~Tc;&`37eLb5AHT2vx
zd!vST08*1sf07$N$~Zpo7)z$#WO-JXoN`CaZnCIA?3pew&ZRSKi`|)L4Po2Gcc>^a
zPA31_>naT^9l1pbNOz|w2x~6ZBv!jlmJ~6A1I{nc+O@e5B0Lq!u2VJj8J<Gr$O^F9
zIdi(-W&HlrKfcID^bLLYdU*`G$~a*H!5!JfIp7i^o_Y=Akv=m%uZp0F7hB}mIn5%C
zu(ueUSwGv@t(cez+AJ{vn7+GS*cr#n*r6?+S~26^WQn*?wA+15IhGj{K&QoV4Re;_
za*Kx^F_i$`&#}=fYk5}^IYxLS*4SjTv#YNy?_pK-@*j?Yh~CDA>^{D`N%gguBxsP@
z6&P|ILx$9F=`dWV<xW#6u<$lZIpI0i&`c+t_7lFOY#H4es+(GwA!mF6yLayV)o&Em
zW$6;LC>xJc;^`A`6_g=Tf5jS&=d<kga|*2`K2}HNV)4}}Jz3<-Sh{{`xRF(lnld^+
z;u9kjo;t?>Dx|7+Sl!y`4L8N;_}$&2#z!^wQe-8LNcS!PEU|Yf{Z}odss+}^Q$u8R
z2AO#sDxqRcqsA>PoHzzxz^}DlQu><YICQNz1hw5k^z7VdFHK`~w)IPE^v|(FF9ASt
z8d$$g=@Yi}p)s<@I4R`32fU6;SIVbi14$i8X6jTSKj`=%BrLD*SVj&p%E%VRdQVP&
z^#E<>dtXh#9dLwNK&K4#obI7nglaabfiB%{8T5RXSQGo#&-l1iqX8#LeBMlX@05L*
zwRH`3Kfi2Sq~ZD(#M=rzIh|NKeJO@hb*4&9iZj~kC1SIw|6SP2Qzv7PAR0Y83!HJF
zA}_iQ80Z?lw>=s;KvG$K)~+;t*sr#)-<6sBND>X(vlDTH$gxnd8H&0|OtwWVgd?c*
zVM}s=G*z>|2~T0XBk*PDbAoSS-}1c00aHjh`L=2AV~gBb+=v_kWw4HtB{s~X(>kiC
z%xpRO&ooN&tkN+>Rqf&}@9LGCltrw)OH2^T3zSnhcV6J84zeafyO{Pqk>X5azu6Fl
z?4+u{-K=E!dr)|p-A%(Od`z9<yxZi;4f|N_ZwzOi=ViAa`Wja)ozfIM3o+xxc5-3e
zgFfP>E@tRw3Rm<JzRWJ{rHCKGRn1r^lN5odVu9idiAOm7*?TSVN=UApkI{vnFt+n)
zmr<e4F6Pjw%Ig6Q@s)Me#Etj_z7F=}9(Opb=QiWotq%Ee4n{aFhjY`aDiG~Cy;kkc
z|1M((!#mR&3X+0Mw-AtKwS2c&xQ$}NqPz4sD$I1<8sd!X1Ql)78!zNm5w3)o0H@0?
zyqZG@)Ozy-)EKJRBF?j{p+g;EF#1IF(7+b3I(T!;jUB=41Gyv8Ym2AUv#(;gMU{$8
zREA7oV~B2@<?f7i%D2s;%Hp!CWp7u;Pt0br3+?#PKw$6UxvLdsoyXkYyBJo>w);ru
zZF)uN(^oP(r<=4I)8eHK{r6`GaCnaSvS>>y_fQD>MlK6t+?r37MQ<y{zkatxPI7zv
zi>kCPL>J%Q-;a=(?BZcGF7T^TV)4p+Yx7(d+XsnQ^}wx^MgPz`ZK+h?NDjlMuxFA+
z<mzyX5gXthafAV}4s+jE)?NooN3Vkfs#BY6xn!SOWy>&{oBE59_s~;^9<If#ik#cF
zV}C5k@)dMii9NG~DGjr7n`ckxMzPA&ZzNy|?_%VjM~9TF!MOY~66m&5QWT%zGt}#+
zMVqI8=W%8mDF$!*Si0?FPkVZMDna<pOEp{mx)^h2BX_^hdslo9zp90>64X#gn&XHh
zXTMx7w<0ZsO_xQtFK>E@Cqs`r)Y-%)d<S!q)Vs^oBw{LdKQRE?RdLCZHuo7izEOhT
z6t%$&k9%<I2Y*ZowF>;<S4!8Xwm-wVIN{}CY_nW5a$|%%2%mNCLbmNgP{-~vKN#aO
zARJ25Xf5t-3V6h(q+6dP$V{r}5#7W&q9%%dGE4>%v{lat#XiJh6@%$S++t^1+;S9G
z!qI2<9JCwdZ4Ud|vNIv9v1iy1au~D9d&QtFiTuO`PMt5if+dVCJ%=5yjb<c-fPU;N
zxpZA5cY8iqhbNtk5p5c8U$tM$9M)F&dbMUqoBoa!KDj{Ej0UnX%cQc_QTQbKt*cwh
z%eInzzA4npQ?V@^>P7Ux6Dm?jdUN-e@QPMVr3LCjLrHr(`!#+TB?62-$>dvHkHR;n
z{H8ayzM-AHG3YCDGSogfx}(=UvKtTX5G8iaDdb%EKZ4jq8xyrfA(Lu1BUBT{(BIeC
zIF+Jd1H=z_j4E@>_Bs^x{ZK3sNOUN|Be^Mu#rSF1B{Na<^VoTuWVVQlrN*LF0w(CA
zjio#3NTbE({^9Y*>pwn!`Sr&yKfTMaKb9Z}0qIcg^13}j({Sg@%zxVL?8G_!T@P}(
zvjj=4cX&g#Uv)^NJ3h*PpYJd^SHIft;I{mgFA5*j`gb0;owP*m17O<!tK@uF<~GpV
zUm%PqcK}I1w!iV}weJdg=3U;~4OPFZuiw4i^1pxAj?5qHK0mZ)`&jb7e^*GTOn0?y
zQ#pu0)5k)|zO7B?b^E&(Qake+Vr|=_X|nGfbqxXNqTM}Gn(w%aS1xPV<S^*FaURtW
z@w%<K94v_apxZnZ@uF4Q^!!Ms)15D#=Z^E3xw`Ftr`HT3&IcW^<$iIJ_3z>}egpud
z-T}-0d-O5QyS&_`?PFRBrP?j6*G}~B4*c`e<+txYy&LtMB+)B57})9qnfgtYG4eJC
zYi)H`pmnqf|FLGA7cy3uj<qkrv#~Evu!`hM{MHYH_0-nBe4IbruJiRf>VyLVT07=w
zi-p|PJX@^mj~UDf8PuKj$3(ehI1gB!D9yQD;tWH{VXT*In)eHU3rnX*Ec3yux)45H
zf4uzo<+tZ|9g-dw@oRFeuGS74MTQ(>>3W%e7)jT`P*lrOSJvtnZihfz=+E_7CFW$^
z_wM;kaT+#{Z476t!Sk{EC=4u*;Skx!a4Q<@4c~>|hj{W=;j!6b<-3U(J2Tq$Q1|;F
z8Zi^a9ctL;m$KxbL+ZPS!E-WbHkHIZ{KH8<d(knX4{Ugi4TOB^V4`(6`jN`iA$8}c
zCk0c&^>Q$_)gG${UbuhU=gX+dEWO$uiha9zif*^Pp>UgMWva4-v)k)K&h=wn)`zy@
z+wU<+ca;mjZLd#hYdY}(w`7hX|M~jmA3uEgk9Uy8vP*4Sc4cc>VcFVVtdjX8hvkc2
zfJ+aXF^YQNRcS*v6_wR}Vg}|-KTpvjKO-Cm9=YSTKVnsF1ZiI52HhvVqK_f%r{iOy
z&@oT}vJ;a^Ome8O<aE&%<5s#PgB-MI`{5q2Rl<TuonUMm<I~%V0i!4;6#<PnVH?i2
zNM-Z?m+X`6&-$c^i=o*>DOkBe;M5Q}FP(fyG*Nsy`o#lWD)EcadbSF$_W#F}yKvLX
zSmW^a`c(G%nS<L;@8#t&V+T?^w9>ryYmt~UoZtIDzr6S{ML);>UF)uXts=NglHwZw
z$KrVYpFjWdrAfp68+2$8^3DcNQodSTgOW7ZLaO|^r!}H{1Q@Oui`b)O5~UezWsKU0
z_~{jp-ka%0^`Wf!q5(0hjh8{vbX`H)q9Z|dX|sMaI3^2mWN?lshT*x1V0-AIe$w>V
zS^vihgJ#F1igR$PSXiM1$tb)yVkJ;sOSlp6=W`NS^TaS8FR;0nCk?VF+lH#TJmiHE
zd)S1%R0?G)MvHPT5p;`~Q9uJjSJ1%`hJ&um@X5_lbQ>7*Q`>bffp(gu(AiI#9UQD}
zJlke+PbxevQSP`|Ch2L<7ssA(fI!C%WV37ab8=yEMsxQ=hx2u+(b5TZ`uB>_No*Z{
z@kFlg1;Q|isguHdJ8n(t1c--sk6zYmn~^w7FM5=#XhAV>h=kQhaf#XY@;kyOamk#J
z9cf1Gy0E$JdPue)h#?m*k&Z(1q3IcOc_EdtZchy4aw);+<l)IQwcFvtc`|l7$w!xH
zp?s|`l%8HevCV`X*s!AnVA4Td;;1GKW~|h<OqrPX%8j;!NxlLFsBOJadI>-Ay*XL5
zQa}zs$vdH2<B3Ds_E;k++){n|yN|$#@xe#Vbuk?%vZM8m3!b<ggJxwky7fjnLNxAr
zyw)UiT~Bsdg<CC8f}=jBt@XqH#Me8rL!u=95}#E)m|P?B+ppwwfH2psF{ALp9ozQf
zIfbQNGet9(sAIIf`8>(Kf5hicL_Cuv0w5U5x{WKVc`0YQ3>khO0l9CNNb5<YO6;WG
z=36)Fq+bt;za#=~b087{f6c|LP@=k4^hSu!<YeHykbPn;+M-pGP%lj#kUbvYijobA
zu*jz%Elm93_q#s<Yr#+YJpS?Vr(Yj``SsuaN6BvlY5M+$(6eWh=zNXr0AMaAs$h;b
zJ!XE9QAXB2%h^xzy9FqaoDAj5u4jr+BKCfMm|sTEdAM_J;VHr2-@f{2O3+hkOOdnr
z8_qVivuStk>Ram&#b>iOK~jNF^Yp%?@^%F0Hu;How5Z0jeJErHZcSYI*X_%%-@ysj
zCe}-vVtA?cYiPywVQ#Z@(?_%Q@>5ZbHQd)H^2PZ0)M3Tp$PQRmVCe!VEgXS&^pdMI
zVTk1YiMg4uk&Wf(zf>rpA{K}gExtf<M})nOt2M}|apu%)gH&{c@&SK;{q7K(yQS9U
zJd$;+`XjZ;)+|}f8~nfles)v$wpEICfg@zc09={Z%KH<D!e`BXCGrx{z0RPl$rD^+
z?foHWi=6%-D|Rza>Sc+&&7M0m;15P1#tB~7*WQ2eh6}_2F@jBsy^i1|+*HA?YB=$1
z;TOv6F$d)e=qF2n87B0U!b{8B&zkx&fArLCyf?RoDS$_O)6XKc`0H8Per+J%>>39R
z_}Y`&<TVSH@^5bT%^*G0`I|B1>-Lnw7}_m8>x~bbo9Mr&H<)HYFGe(w544_O2)^DP
z=Aq_uMf~{q{PUMz9^Y9I+Yx-uL=daK>qTk_OUCSK5(h$Zi{@W96Jcwr!`4JAVrhBa
z1N<-3dNeo7ZfYUwt|oB;Y}goln(XQ(>M*~A@)_`*2~w>h%FUpvG@NYPpu1=~3}$eG
zNdlR+s)W(<>)I~lW(Q_MQy2f7z_b#Uoc_%u;#j6sTR!SQ8JV^n0i`p@CSDEYPu$(C
z)#y29gATgwt5AC%sOkqqG4)z?u*`s*QfH}yCNiFJ2rfds;HU}E7opPDPq=Eb!AenP
zG-K5M<Gsz79#?aFgnW@F(-uW)7DjzSb=f{1nmKqdt^SnoT|MC9e1Vs`JVBE9LaWXB
zL!*-;`Y8}~FKypkoZ0)wX2U+TD}Rg&mCb1JuIg8ush;h3C$@qU^WzDgmGgwH$qAqM
zY3ZkgG&04-B@Bz(d2_P2mk8HOX*P^>(l1NWqATs0Ep&x*(J$g*;ybSspq(H8<Huhg
zuj7}?r^lcE+j~<w76P?$c|OEWvlQFw`mmFOZeknRaaJv9pS_slMtY2v;%fcLTu5NZ
zJZp_78JT8lyxt=nj!^a~KRL+|yRZY0$tTadecKebBrP@CBlC;FF0WWV-47z?RlaYj
zXQ<a6Cf}#OLo?oA=*QL<%iOFVlLXk`3^XkU?@e1MS=5b#hqpbwV5ziU9smP)X~sfR
zFT3LV<MZXqFF(9fe#_B)u_RqLxkUcaMWEK2L>n#Id=+pnED^WAc(5Wni5~~Hu(#uo
zXMf%Q7{2-H(tf?j&DKwvwCLYn0NIRAdOO2qJbyI4`O&v`#U;0G9lp8d@W<C2-(0g_
zq6tUCD7Qx+zj^fjSJ>rv3(ESjb>s#AKs}_MI1ckF_En5=B2$+P4)p68%OG^4H8MNf
zQf<?2zsGS1cP5&HHMMKI(5wTkkZn-+k8!p8plxJG;%$~tteG88rBWLDzLH?a2LrF?
ziEp<HOL-G)j5F?IW-v1!H$a<KYgH;koczaslH1n)qJCPjQ}%EFko<lp7Cs;ArQOjI
z@S`>c6j~<nvkBMte-Sv`lPJIfy9uF|svo3abm7u1!nQJ+X5EZwx3R%{JBxzK^_xGQ
z2~Ohm!v$WgQ<aTNEQMVjl^(*C{EUNQhGS$~&j%4|h?{5b4^0l^p4RiP-XnvN-8NqB
znnfz$Z4V;e=|~an_E!4}!uzvmk=vW`*lpcsOEB&tlIL&QMC+v+SqmETVV3y32!n<1
zS`b!|+N-H}#~ynqoL^09!%DaucJa<=^Mc<O#<14b@*xYEl=EBHX^ZD@h#iM0Ar^Rn
zn39fNiGFX{fcwrAnwe4W{=yfr=}<oGk^<pF^vO4W-2~EazdXMW6qKW!1k6Cl?>nz&
zcH5t)VD1k501V!E81}ipU8QXv@f_qp#bj~(=mDj-^{(8rD3S@RMV$o7q<+P=d$ehT
zZ_BtoQvoM8&W#0M62bcqx+|OXyc#Us7Sr+3rc;1DONYtgl_DN4xJ$*GE<`Zo{h9Wn
zKc#<o{&5~<KYh78{q}w9r1Ump_^4WWhkoyMM$&)8i2ZQ;2z(cSU#h;%l!HOtD*8@l
z*#Y#(*nT+Hk2|*LQO)!lB6K)OHj5e5l<>XY=MI?0OW*Y{$fAb1sWk1*p8V^+V9Mgc
zBLTk&9|4!GRp^|Lc*)0O?GN@pKmGE~?kmR<S>je_0dW6BSikLUZALfih$gM3K(qy3
zZ(lbdvia@DHh`ZuZC=(B{=S#jpN{cc_tAndOs~IB{Sca-q7B@ieVaEk80PsBE>^uG
zT9BB=*g)nb8EmP6TB`zL4c-P6C$gIYrhAFtxVeH^@R|^Fbz%%WG<x0K#!5Je)b_w(
zA2MMyGf(hm#{t}(oLmC#ws6B)(R^bf;A=L4$EMl$ZOAwCzar*kcE#M&%hB$e7)65-
za1j-yBRVv!{iz4Nom+P&h-+^hy?C=!;GrvjKN8<`^Z(0lqiW_q8AK-8FOPrwHFs6=
zz0dhrZwwMt(PT_2J7Rvp<^LqQ1Z-tnHw#s%dQE0)7P~nXz2cF_X_8xt)QfOs2AWR7
zE6sdffH1Byzwr>_&e|o95a*}~h$M^erJi;I;s|wd@Aaw3=rAqSq!R}ws-Z`#1d>Tv
zqm5@PhByk3>dIRLj+xLY;89n2GV8<zzB+T6b%MqCHVT|Tt6L)C0q`NBEha1Be~=9T
zgL1v!YoACdvVV%DshdO~z<w<ff)PM(a%vUdwWVtnpC`oYY&9dIMCKvRhdDYd$)sX}
zUbXcci7ROyUqA1EygM@Bez!lr2J1pWeZK@yRxjD6g=^r4Wu?Jz1ZzQMV5oVa@-ze{
zC<Usyc0AY?t^)zm5pXACPK@xds+nnYc2<sArEiimCifLw>{n1phaP#-2aWb*17&TN
zZ!y1r{Qmpzub<vqom-S+T`a~*e4(i!!EbT4JGX^@z2Ud8aK@X@DWdV$g5Z!J!!v&U
zoSF<fa58|@ST8s%XHg+@cj2xF3+7mK<?ga=@u%)D)ZwNbZJ@;Fq|<+u*}6U73_NyE
z_}R9__|;tXDW_ehSJMuR_@phE8>@;1u&#D`*i~D{@$+`-3Lg|}rd<z`?A#1eCSh$_
zQybrX)60*4tmeoBKQ>2TU+sVyzD}sjty;06sTOp2#rsY?psjc`$76zvq>c346gL(j
zDp30lHf>Y~+3TSeXiH=c-+0{*Ew@>MBiu5Vwx)Noo7V8d*RtbGY8R2)#JUh|rb3bn
zA(6T9#oWJOo^11^;KnCp5cyB@aZhde-HDT-ZJ(R0-lDb}oI%X3D4eho|E_WXu`%YN
zJBUd(R}sNzPBWN-x&d~|>mGF>QV>8d6n{c`Kp)m_x~i_~5XTtu4QAdpX_C03X7S7L
zSlfovy7<s9w!qbdoqW{60o%f?hK?Bw*u35&mk%O<t>b2ywGfVMgJt;U0mAJe({8(3
zDi@w0OVN^><ixoFH6(6(nATP}+rs$Rpb|uT29=n1c~oZDka%wzIFxiUCC*Jb-*N3~
zWVS(JG@7uOEf>PEBO22dEZF;wQ<H!Q;kP#acyE&&-|aiM&{|jA5&PlXPTDvGnj}&Q
zrll3#K8OEuqhp!&mC||hVtQ6J74WEvsmv(P5K&hgRU0(Im37kDXu9kepa1?_FXZ&C
zBEBI*4in5Wc?{^Z$|;#xHo^PGO!a6?QEMyj9jR%RumfVIM5?TwX<dGX9np#4Xb|^7
zO`~Gy)6{EydhR>f92$u;)NK;tHUhs*#T<xg5m#`7S<RggBaL4Y@`bi}h#V?wz0^6J
znCl=FP!alF-1c^uXfnIUB0|qhV5SB@t<<TZyaCbSIC=2mG<#aYB|gX(vGSWcsm7@R
zLs96>hFO3<<TiT_gP$<Gz+7!pCa$22#&${KwvD%UN`lzem(af4wj{){1aq>Aq#B>4
zzng59YYOBZ$bn;sg1!8DKVoNJ5Pv3vY(47)PdCKh%$=3fM0g}c6cwX|Kn|Oqi7=59
zj|O^)MAv;d>1ssvsC@>WKj;%g{~Ja(@xDYZwrbRxI@mPMFOYmXLeUi=ft%1`MB#Y3
zfr+wNAU9-BdwrmuWT1Y=j`|sIsGm8$=^w^#zJ&=5{bcQbK_BgTD3b&ZPZUX$>GS#T
zuYA4oyu_W`PAbf#eew3+cz(z)Vzd78^Y>r=SKF)eTOimfPgq_hfMDRzpffZZY#`CN
zeewZUV5JnDeb_%rk&#;hEADslbXf0~IS=>P#^>W7pLRUIYI}P`;)&zleh^<5?MoLs
zHL><LcRQ81J3i(9_P3vo+(Wz9@R9%W+s~@v--6+eNWl~>3!>)|^chKqTI6F1#L<y6
zQo0zmJQ+BN0_8GFh^0MZa!HdwP)W{&p3Dzy6)%Sg8X|bwT{abo{Z%)E+>ZJKj;Nc}
z`YyCu^E>ugM?tiTlv@VZL5~r1$M1L$PD$cch~GCMf0)3#33v|!YcYN|hmM~R&nY<E
z=+kY8oDNffTz`Wn=q&qN$c1445mym~Ys9TfpC)m<q#kTGw``EzRHz_WYm)U63`5+p
zA<z=W0LLnfv}uB+#5{Gwxl?3QrjT+Xua;<~Na9O935#z~$VSLWlo95?XveORENf6T
zTr=qC3$_5neS}#!L+VHlF+}p|EFmjUip4|7yM}GRJ}p&bC%1|;MssIeyR*`V6JWVG
zl!S_Q$1enf$qK-{*nIXd_-xgE>Tv4VPm4Ge^eHFwKOV0@{oXlfj+6ZFMV<R;t;Bk)
zm3*J2&^g+&)H^7x1nTyp2MUT?=bt%KfDAX$v1uisTA%#$z8LH}=U%ZQyt9v!Tm%Pg
z!D4|<Trobm?=}_g%k2J%AGj~(xPlyn?TJ1;{&M}t_dovf!}ISf=3Az;mMFzw2mwX!
zr5co1P!V7o6GaV11Jn7%Iv*NIiyDB)A55;*X_;pNeaEE)JyQDvI1U4n#xo9?dOEvq
zOPQ2%q<%rHmW_J?Z_jgVfod3nhSvEaY!g}hirst;nCI>PSJ-Fl;%oe`!$_ds|EH6b
zK;5szSWJ@4(y_Tl*7AzoT0)gsG@X-S*Q|I4iZi)8sx6qI8F_XTDMKDknl_ch%uW%t
z8`;-H*F{-8E4#3SG@#eE2uh~_=dO`e6lQHtTlKcgf7AUZ+sbTw+xjO_?|X{uLN%=E
zmMcaUOdzURqowOK#*YSOBpTkJS#2^owzfK4nnUF{hVZt;Ihs(qCZSaqp`UwbST%S6
z@H-%>;*t^~CZ28Yi96TG<b?Eo8-hSYFPg_9XQwrw6l^hiF4mAIVuhqaOM2T-9w*D4
zOMs3NW4Vo(cqXD9W~dBvyyfm;v%ifbXSF>icPNXq*~(~*!Kh_sPEQ_PxGU5uktB*U
z?$E^BuB5Hu;H8d-;0s4<jNJhd>2%P2?Rw!$ysH|jkz1_OP&r&&RViq5^aL0ELkbgh
z{8)gIixMGF4j)qFtF?O>^+PSP_3*I9$;IgFe#$9SMC&gsNb$q{``*fz0~P7g5*wDK
z7hCHh3|%cP(i>e9A}Kh}9@D{%U!DumJc2W)h?k_Gj?>GJ`$l}hCWwV~0B@+Os(aoP
z^@Rt`3H5JMytY^-Zj+I<v&tN!wl(!^P)q7Ki3H$Bjh*Z^8~Hf7CqXHCQG6%8BwPHP
zeyc%lQDaZW-tsJf;j~8sXTpd#t(f3(HR5wz=*HUP6~Z4`&-$ve0ED0pL**8!;XS5^
zI!|(h;v6`lSIs0;xu<(Jz0$1lVEjlf_M`W!@A^46pfHP8Xt@|P(PI~Wfsoq8Swgb1
z8RgXR(xVsiTHP$^^xQ&6FwzkD`}z<z8%%*Ha<61bJp&jp9{x7e)}};uqRTV}g$Lao
zWGbQ<BeD0On<N&;m@47hn*uvDEI!HLj;F$(N@RL%YfOgS9x=06^eS^igfi%hkW2KW
zLHJMKKmOxgz@z@nNX|<2CTf{kM0HoqkjoK8=P==ILj*}7Fq_1iREu$39i;HB1{+*>
z>`<#?g;P>RxXrw$0=m)dMA^BV>#!{G4jXz?AxvhY0!Mi%2)h*7#!azDN~ho%%CboY
z)#!|kwpj>E`jUtZ2&K2d@}0xu4BBC|IPk`*u%%w!ba)_BBAGXOEx*92yFM{n(hKg_
z#cI1#u-rxRvio0quy&b?Qm=$W>T#-2MPus{FTTW1aSZ2Gq#y)4E7Bv&he1Cs=5Gc#
za56)MH>s~`>?u&7u?kn-Q90>5jzgo;s0}zZn`O+O(nDuW7sSnR2?9El+<@^LM1O&?
z7qe3>bCTpNECD3Kbyek8X6pxr4wf9!<HK4b9M^Q{EQ(V)n@gk@&*p=LMQjT{#}H{y
zPN(?b^{X7o42!-W<b$pFl@?RL0(F<%z6uch!A?$+b1~b%G|M_ld0|Ue1jzxqyaXIB
zp;H}UY`9i~q%p`uiG(;9vJ6^xg5s;@S_}AU(*(EpPJPt{)i;HmnEEW^vbKzN%v5_f
zs<WGUyoUFE8NAq50|K_yC_CH+P!(z;Eu<nm(v#<AVKAfGX|~ulHgnfx0sZ><a8cC<
za10kSnwcX9i(qlP;Tc2Q{^38~yYKU!BQk}5^^O2Y-S2BPDUTuF?+PxY^=`jY-A}E7
zFKb>}13{7QaN_LdKyG(zs(9(;@~+2S6IeOpW=r*sFcy}hf3(+3+8=cXNeeXH5hq+;
z?f~<*%jG*J;$10sR<fkgtf|D0P$DR!bC(0%-Ud3|0d)ouzqH$6fwr@PH@B7e*)q-R
z9boM{%Cg<{o4Uhgy51r7%|>jm=qHJGdpg^H0dDPSe2W~-N}RRcm7E{Zq3FJNi?4Bx
zF5&@dy<dp7wcj@}M5gDy`xg^$z5Ax`|NT2Xx!YZZbY*+QjM`i8##`iQ0yb;&W4ZKf
zO}zZ3C4yTqu;d0<*1u2;eYuO*o?<zdI~1O6xh!tYtsm^B_Pgcou%0HVneFL&iflDo
z6jwW@L?B=egUu)mkrm>qjsm<uQ8ufI&X!Twd1da`-Ud+FMniAn9ggg#R4nDrsK`C9
z?P-bp-9<kDbldV>(=P6sv}sFWns>g6vOUWkc{6RI*!NW4sO_)1pJ}vcdUwhA%{_cu
z+kRJ%m0pKRpiSb+#?a=#+fM)Y&p9fh9Uw^_shn`<OLWLag`9~?wt-vM^DV|k2tQM+
z4QR8EmU_O$*K95ex4&SRwcoWhfZGNL*jnuT_#@T&7gY9q7q92&&7>pe+`3@3U;0}-
zu9;&?o6uw+R3;S;Dg+cczR5)8*2dT0ZkT}69UvLHue1rflAYV`2sGEmO|}`))-d``
zx+A@%H*pa2K&%FeNJPFgHE!Ej?b}~A#>JPuP}-BV^AuE`O5*OP>!;73e){#xFYkPF
zwFt$pxU6sy;H$Y$b3k$|<_s+6rOtS|N#<ai?v66#_&z`R9f@38LGL5DANjqA94crO
zb8644eFp}UFgxgV)Q2YI({Vi6YK^AtEmB@RfL2H^9`Yn~@P#Hg5y%Dp`PbW@eQmc~
zNme`FICqx61qvH?^u3|NauyAsIp1QdRP6bK&}w`fk=3TA9@|-dpgoQ0IL-QAaPe%5
zB|=FgBeGAT^-y(cak#DLk#Kua{s5or={%aq*y2!4RBV@Opw$}Fhtj}`GjilpHp#ED
zMZf&Y8kw#}!UKoi7@U+TVhwBj@od&dC)J2AbY-T?>!ss*ISlQBEAWtD1nY6tz>Q=2
zB{{}^|NQ;$&_Oke4O@%e6Pa5^^}Not*SRix<Jrja5bD1;n@A+Z(8i=ijVQUlJ?lS`
zeGgMbNKJ~QXmUeJe|zpv;yHvhB=R?~376*{%8&}VY<&PCZ`#yOls)WJ&Qil2$u@~y
zk;NQl{Ubu~HG?w`k%M<J-dJl6q_sSBL73>ObB&-^n^hP6zWOk<%S0lfec-Q%$^)<;
z2VsP7&telJaRgk62*{>ehkK5v*Fx8mq)Q}n0y_0*sAy}TM9?rsiGk&D(eG+nTh{ro
z2L{Cuo91vblu3KhWB1wu(?N==UYzaF|E;;Pgo=M_;-*jPx26{|`kLJPn}!cdO|GG1
zUz|1!Pb3H6k|VsCV_dr<tT&!J5xgE%ls!(wpqKE3sH(RWZ)!3jz@<BomWUm`wiw&N
z_)6}Cvdi`MdnrBfi_?YmHh&Jq<zzABTjN=)_vRBd+k{CO1UYR^fjEpg#Tn_DPW+~;
zXP=hv{cI71yS1LzJqSGIu5TNo{Zjf-d-$p%|HCsB={?C^vB#=TJ}oF_g#kV;ipOA&
zoQw`M?OkX0kZY0V@B$DxaVm~e2M%>dT)H*n-oYa#dhH0GQUvXLhN;WL{(jTA8g6KR
zJoAg%C4*Cq7rm**kv4dy^cpIi)^Oh3TGxmaJexIc0j;I4t@{+FfG+0@ASUhS`|}=;
zjJqTjo68(Qc56K`3p`tu@JOI^&<4tbbT(3~N*rEHh#VB3PBJ4?{n<2gOGLu9Ue4fn
zZ9ONg*&1Zx1ZzmhTq31QDbs22qxC$-I$wIX@ntrI+)=~Py4oW5tvyY<#w7l*^x$g5
z4PvIA?;#p>%<2{<LM7I$Tqe-c;lYhs22?2-1f!YKmLqk)bf*T6p(V(`#A5aaa7~>{
zST4^=iP>FAt1BBC$3qs%c)y%p3&pnB-CN7lv)v4&@QpwO5aRk(aMOAY!H;9b^{lg@
zgyo#ywBkadDs(0g3)wr99VZF-w#T-#UQ+5mI}{D+)_7LdhexZ(kUIv@!p-4q#m@Tk
zkH36+r_-b#LZ{ic7<7uqm<K-Ph$0C{<B<y7X}H0+aCx#=S)Od@#<j#5T_Z+zU?}6R
zVCzX;x&}61!G4v)Z6UEL3;$U0iB}Wr^_v}dgzB|>K#s59k#aWxNUB%GicUTy30)P%
zH&TSZo<(5J>K9v2;>!WlgT8JJccWqBbZ%lL#hufo_tySRr_V<xyiL?Q@~wv)K?|Pu
z{85m}CkwL$P@<oAN?)59DR|I=?Fix>zl4aB^!l{h*(v))nZL(msAJ$Wd)L9-hMHyx
ztOcfm;+^b6fJhmOBkt|R-nqn<F_q|p?jvzLP1t00eEm*v3}~I>dX7vVnBg`s!<&H_
z&!1k-=`x(tW%y>g+>05EaFH<DjX5bWHI?Ifn=MS{Eu?MQ!`mr<m;~Bc!3yQ|wQoiu
zK8D-88D8g&K0Y2yUwX`DJ>OYObf3*Ex)*zA3w<wUv+K3@;dsvHn8t7xg$ueXA$>jz
zSFK;aBR!+Db5IX5s)vnT{r@Xa<8C1gQEN=a|C!e}mBxCdzX9Az3eWkhzgCCSo7ca3
zSW>dvj1vd&C!L1E5m9Vo{JU$_b~{#<-|_v5Ws`9f<{M=L#P+dz;5fMS0B#(n(jw}g
zMJJ-5MmBN`f(5{ZTOJYNb1zKedD`>3_jN@wf{;u~d#T!@-IkoH+O~8QGq+4PQMel@
z+6631Ogpcg;x0m=yjuK%gaCH-Bd)9#t6|_7*~+h~u1=9l4oyoqQVLSp!;?La?l-Hm
zJU+UvU@H7suzd;zR#z&0x%TtF-pClj+9@eV$?Q(lm($fSDHYT%App1w*Z*|t(8?Pt
zQtxsEM!2*8bcmmd3o4<a8C*Id<m@H9nX%uDo>X^4_YcX3&E4R(S9zX&Je{Mi>mJpo
zVYe7~TU}i7N%Us?PQXM2s$%=gAv`_(>wP4rn<HMQP7`w8@DiB?JlS^XiNq0GRs-oz
zKiDU#Lq-VBzUpZSCvf`HPcJ``Ui~de*(++}QoC!otcDIWZc0G$fMb5pU$M_mP5xX*
zt89UxxS*hjkMaJc`p*jQvfWb`e3srErAD;OV7iL&tfubQqt92PD8cgXyRlMj&Gz)t
z$qYyIl(2MkD@Z*C%GmbA(*VuWI}}RZhd|LAJH$<{UC?<vY3+Egl{Go^`*m&-)i^Y}
zkB<Z*!M^+D`uNj-{4R4RiWq7V7PwYl>byvfQ2UdCIl>!{D#j+cX;5jOxBm?y;mNFK
zsTdR|8rd|iQ@~tQ1KY8?#Ikgh8Awf<HFXn+e)t2tnti{UiX)bwNGl+^1ac{WYhL*4
z=QbkqMQ^{C7VdM1><T3?%k#Jn=)RF&fg13@xq?iH5ZxB2)O5J*7U!ol4iXHpnP49h
zBusrzN!P<XKGCD8Lo$!Z(ONVkjo~$c84L!kJMH~npFaKa>9^1Ch(Br$a<N!EBvpO@
zhgigQ?(vDpL`sj|j`{kX2er<rA9f*cs|U5yUd>s|%DOgTA%u#{KmX%hrPKVw7QALm
zcx1`6X_0TncxWeUAP|eoLOJ%$s#ymyw`1B5Lh~D5OFC<4&x-zfp_IpBm8L2fe$D(b
zr=zJNvP&(9fWt(tg0o;+GSy4k;M8Jx3uSoDqC08?f{U=UbzyRswO<Gxu^p5~p<*@>
z6)@t{g4d0todbLvWG>+a$ZQNeme{w~=0hpuzs>&-b8oX7$&qF2zKWy9bcfr&dCvp_
z7aXKU0ywB1QK6J5RH#%fs@SLV>94JCnFpDfsyf~0-fkR78DWeFcQ-dT+qQq!UK>cZ
z{IIna;&3rL?W4i{Q~UE6m*x!s#w86E4jZ?|WGas?L^1j!?Vknvz9C~*keh;lD=g{V
zqOvH27)yAL1Qe8lv|D9Mg&ivZa+9-=o=b3uSE?zJ5DI(H-lc}^4AZt}>YS7vpo=Yd
zLWx6aj9uq-NF4CE7#MSaw8fq6hgj2PD1XXjB@eMw*O(ca(lORrff2Zk;d8OykFOtp
z`|Gd2fBa&W^>my>P0H+0p0Hg3k+_4@bK`pn<km3TwNvpMZh$e9Nd<uzUMLL$VZ!?F
zt6cKq-v?QVa<f*kI#GlhDhvv<cl{`f(rJhq$_8O_@3YwzhmtrS3)#+oC4x6)29J3s
zl3KiW1yFOv*GWlrFi??n-lp2y5=9D@g;^UX>%;M|96SZxqT1g@C)n*j5J1HHgMbdl
zHzIm*0Xb58wb3YCDM+E}`|hw81d$Rov3DxwMbcHta4tiEti?0_)+7-BmH5aAA5(<A
zvDYgbM}mu30+~@k;I$o4iyXWMPNWLGj+C+}XRu<WW<3v%4i-vncfCsHQLM`DYKVlo
zaRZ~jK{!T^Tl|;Q8X~tlbe&@>fDu$^63Uc^)y392q(c-1uq2|f56M2xgg(kRC@dV{
zcp(Zc811rkiaH$v=8x+t_W@8`%~FdZAdn!oZ`FuTa-)m0DvO|B(o{DDXkTeS#8s7$
zJ!Ypo2yn^I=DkEs5FE8o{d?@)0u(Eba%*0&iBvkq7zMkA<v)f=qATxZr;xc~1JeKW
z3?g=o?qu9IPJQVpM}nh*qB~5LE~iTYq$iRSNu(V<(d6(!l}kTCnx%*qHF}frzof;B
z8_5oa|Mj<zKm7dr#~)r^u3xwrV)}T7PL$+yA4u-V*z^F(*f<T;DD}Jfb;a4FV`yb?
z7YRs`+p>BRDXrOPK%ZU=;WjX%F|qia<hws+mS3jz!k@q<ZeP3#)FJ*^6x@#MkoRZw
z@L>fCNud4OU+Legd6}S9kdHdw8e>oUKR(~5v9nsgP#(8df+3ZwF_BF?UXeI3@N0e3
z*V_*sHM<gslD71>V`x2(k-Bi473mYJspH1wgvwRiNFKb`IfzR{u|5{3wh9d{VkL^A
zY@}Y`5<h0@Ykm~jL?fZBEc5g8*k>KaQ48Q9pH=@92@6vf!;}V98&59?Hr}hCmH*`t
zO^%Go*qWAFo93EYm`VF&#g<XUR7|AwkCzubq}Z#p^x3DkK;S<w9e&3D-Ua{4TjWoX
zQz0OSj2L$fW{4Z@v%zwRr1CVMjjYlJIxQZv#X@Lho`H3smR9ADPnVD1|N84+zQCI7
z#&nCyVjL_?1a}}e1s;N>f7kh>pKc9pkX`miRiR0xrVTqyX{F<O<xx2iRoUK2oVm|6
zy-HG5r9@c1B}mmXj5_sf%SzKur8uwPokJqMHD9YRH)C@fo2n$VCfP~K7vgLyIx{aR
z%9X2dg-QeyUE3JH{y6lPdr@G?ztBmHG=0aRyP3C7UfelQ>yLl>LdQ;rr59)!QSzu7
zf}GHj?$1gUI%e)U8I%S6AZjyLULd7#V|M#ly^fDUJ$xrkJmVG8AyqK*A=@Gwopuad
z`q~iv2MK`jwMijXG`=5?qbnkVO2=!A*@SdWAAWv6zkGao`S{nLKK}MKo6?UnU06Dl
zrgGhG3B$W6#F(aIuO82zV(*i$P>Hb}@{@)aMwy$sX+e;Ld~*y)Nhmu&%9y?h4)gMA
z%_Kz8u}X=%5NdV+N;c#%6`l%fi=0pQX~-g#90jqcr<Os4^8D!G;u%b@mF`>S%;nA`
zR?q{2EXbsK7bxnbJxRuaIZe&I(r$4OE+4-u;&+jPlZE~f0qQ;#81Xr3=~28XXG9D8
zI&d7ZcxJ~&1Mt_{u1ztS+coRrSFTB-8<mvORhRVESl?fA;gZ6%1x0@oK9fu}hrU>6
z8HR5@b;F|M-p^*iA7^{+6LPl8CGn8^H;9gT$&<tT>HUYapS3r{|K3&KE>kb_vXAeU
zef-}qdpP>{{fn+UEAah?P8FO(_1E8@UjAeK@%r;m&%dufJ&lF)<&vpCT+R%8#dGTi
zUJ;o3mn|aZ+xaQK`Sh)TW*IxPtB}Z1SNpu81EU(71HGgxHaD!VjHM>eElM_d?ihgb
z&fqH3N>eVw80?)iPPmK5xR2?-)v1i{c*^Rue>#y?5;HnL91|0iJRRd%crkg6;5!z=
z#HxRn4AW90$M}HsquCh_!3ojov0;l3i=15&ofm9xnd?dhP2x;KJVvx*890P@m4*SU
z#tz#;qmu`I7e`->{hj&xbP~IMXY2}grFK^-vUpOU;!)5{(viGuI$00Go=)Asd3GF6
zc|0TKaWA)q1%ZA^AgSR&%GjSfdV~}JdYW-(?GR9hjDP1Kc#(;V?w!mYI3%Hf8Xt&@
z3y0*G_PPZC4#^OA`-B0Q3My8?0S$dTPE#ad5r}Xh5by1zsUJ*&PGS$vEHiLbWRqMk
z(pxY}H5iEpJQk@s+yD_89XM_j9Y0`6E1^KVY9O(Rq!VIP&~{fA!x(PGXEmfc(#K<c
z&m>&<%sq>Q`;aY-DFHWu#2qu!_dZ^`k=Y7m=oR_GGIv@%@lU1uht2s@<KC<2D#&8-
z{mR}ZQnUr~M2f&tTAp%k5O)ng1$q^4;`sT{2b7Ax8%h#DQIGYye?XDDp6fSi7b^7w
z-^q2hoPUM!BQa`cRWITFgTF=d`uM}g|MeBYEk3g%nIWo_D|9ghsJ{xdUY)T)+Cr4d
zt=2;h`E?ETxj=Fwl)!_s%7y}vhW@cZL#6B<`)8EC#SC?eWT#!WT6dWv=%(N$l56sq
z#*jX)=o$jXyg~r|kZp^^=PF0!m>LiJW6I@OpR0P)bMAJ&Dvs}(RfbRyMN=e8UTeil
zsop@SAb~DVV%o{^;`Gr7fV>cvbptobvuxtaL_-jE&8|8wU2E1KS7cT>R%cckFxUFL
z6*?+6Gi+S~Kj1PNPe*=LC0uCgC<Rf)IFwGRieMXneC8RvOO-0TVk64rD+U75zHNe<
z`*_o%Bl|*c$;^#pJ^6Fq#-UCmIUrt_i6qx`7T2wYWb9U>kyM{++_cy@#ha-Ip2bQ;
zO94;ySBMsaA|)=)X_2o)X-iw@`>TFgeU@=~JEtMfjR0#7Dt8=L{b~k<&X$mt?Mi}!
zLuEjj4{?5WxO8P76~%FsXge%H?Gl`q*jkzM|JSc#E$!%&=WT)I4djrrOSE{&GGT|z
zA9lc??a2fMX{&P+KmR_iK@njp1pr4HPghwtWNoWyM*aL<!m*#6Z(NAHXy7{xSn)#=
z@(m+h`3;(ki3nTdUC5MI;jvWjCThxsr_pIii>bO1go?5U6~Yv;?~`_c-GGSwrr{B-
zclb@+l$!Jutq$=zwUG^v)etg)eNi5|Cz0mX#jpMu)_Rb*=pY5kljucFGTP@A16ekd
zyq6iNUjs`a8YqkTDY0Mp)q@LCDe@%2yu~M+S-i}%lCNkIel2hz5{T2tnWcvnT;93O
zp0Ym26+To-3D=?2;+Agb`84gC&*!LDzb0T$V--AAd(L^C=QAv(d?1TIw*Dlfa9aF2
z&$&BfZ#L+}9&?2sBbBGZ#_QKF2Qy96U)~ArmK~`k7eqH~q(D##zw6a0dSl|KkX0n%
zB_8vXAjit2_-6a>Ph(;ZW!A6mCsIduP8Op$6#&vH`TR+))wcN6&xSbJc%~mnoJp~g
z)aATP)hTp3ZlId->S`xfYGa6m>`59mxh*lj@1v%75FV$HD5C`@=8LxY)ryeLuYKXu
zFB6Z}uA0M(=WqvT+|B8)|MCo8YW}C&n@^=>K%EZ3y%e8r%rN3z^;pg&B?rxwBux?1
z$zUp?3Uk2&b^gHRBUqL<(4d8tNjz3?Z#-WjbXD=}$*@so0J5<g9l$wo`QWv7Lz~_c
zu5>%p&kkkp#M&Qb`k_$Fz^B!CA{%G%s|P`nLgRT{6_}JGOy|%)JEe}Rsc&YPIr^QV
zeX7~9%rPC5X{yL((XtT((K6r8iC&nO7zycooqcAT6&(z)L+?C?gY3a+==xo;!f=>`
z5JYDL-hfIl8nt+r9h)2oF;zeiRO6}J>_5)OF5^QCZ|d?zx3ZxD=1IQ*?pYM>iMZ&K
z*0<ehr+J3{p>=5dZ5g+$*>g@EFa{0`Q~dOU_za{*?N=UQ_*$MB$Srv`<}%_8qNSz1
zJ=+PNg#krboRR|F6=={UHWDM(8~S^kTq_?H-33DyBSwy;7)^mNV_YT6Bu=1$8^SDT
zJMgRT7<Z)h(^ELf$0N1UZ?l8ab(HY{kX)i{Ma>yMS4E1x`1Ksa<}pmuS$RC6aP?)r
z`J7V|kUkUG<E|tSt$!@e7C>_nXOd>H5<Us?3Yk$mpAUdq@^ClPbv(hiuDn^^{42Nz
zL>ZGZDE(u9DzJ+A)sL-N3)9Jji@ieA3+3Yz^^0b=4&+|Ek}D#Xm?!0%r^T<n9-3%%
zal#*e{^^&eFT#t>*pDdVT0qZldO2fyr{_iA?GK1CZL^6l=XX0t)#dA>{7w7f8;OVW
z98$6c#Tvi;?7Z)P<CidBJvwUh;(Pk-<ByOFeU?dB4|{hN8^2RbSpoXZ)!Jl<$&3q;
zhRn!UeK!_%s&9Wji6*2g(~Gw=-zr7ZlnseSE)-{-=Mt!0{<6#Yf!}2+s$IE&Hhe`H
ziHP!h64gFC!d;Yu;`1Z&d4Nu-AEx@*slWKSD0P7<<$j%CDMEX;xWKz#rTU~@@2)!?
zQuoVGFWkbHM<gHe*73J~(DCfkhV%C_s5fQ9y&tjLT?7+Uck)GKmk)Ejcq#joEzWLm
zc5wOXLR5g26KP0p-E8NRK6}G4#e<`9<O}|HCzS*+e?@YThwpOx9Vbllfyrt0)vv?Y
zqvR33^Q*^?uP)~u%tJWM`26LIzd!#I&)B<br1K&}A}DW8uWuI_{r{lcHYI)@|M)i^
zL*ETIQs&U}km%;;-_IXuX7|;pg129JXv6IC*>nGF6$KzOTWOF=Se$R}j&?z0T+QEz
z%dwAs`)#J_DcNv5C!xbU-Mf6sm7d{z5x?J)KuXFA^xHgjwzL*U{mfIDspLQqnCa?O
z$#=1wwO0$SEM--YesXwHrgQ2P!uXU^)@j2OB_1*Ebad$n;^uNU-+bb+ndS#sbRj><
zhgOwI%$vWLAvw%LhycrRC)9-W!>G*I&5_h2+zG5ot|@)Hlk-ORcBct()wRd}iiS!z
ziT)oE=H?vJ`QiDSr%iMQXEx_ti>en;srXh^JXXHhdMCvtdvLCbmop<TbL}%k$}rtn
z(C*v#?k>$qe^>P6)O~$Dy7B(7du6vC<3@N@3Q5X$A}<_&)FFw+zz>6SY=3&new*2+
zRXNDw)Tp9PO7t=+e|ik3@&J{DJuX6GbHSsV$F`>!gb+bWAr;Z)7;-7P`AOt*$DLoD
z9xG>RUG+>z&h@J=UfDo^;b10Fp?AmsT3P?#v2ZH-bJl{8I(Nt`rNWO}(2h?+(O4WH
zL}a`~C2PmED8D@RCur%)-F$P;{CtxlI^<$_nv9bx3q#?Sq&#ZCK|9N=;gigSAMnfS
zJ8`dsJ1!3arLx@deWW`Xu#h(^qn^R_jNA1qse?tHToT>|EYgf<Dn{JZRCavB-9|oi
zC;X%I{4DS4ouC1Slvz@z$3PsOEJXLl$a1lr%iIwzy9-2-l#oBBiQ=wz!n&!FFn`@c
z)7$Q}*^lX5_AzxtIB?J$OOJ1Kdu3;>iE_x>`VsFwQxX157{nUI`u%Ue{`<?<LBnIm
zgDKJpW#_9ZXZ`apBrv$%UIX3H#(b5KyW@}W?hgrOIcAPO|B~dDh<D;hE=16(r``0F
z7uY5bN<20arpE|r;vW(YW2P0~*BFd3J#VXA6BQ)Sm~c=hwIYJmROa&+97&8z@&PC|
zq1woD!zVe0tD*x%_cCrJA=RsZ51m>H+Wf0b$Gv=$VFAc*TmW||@fhpzw1In@B2E|E
zMB1~RB6`U6yWMhVZ{w|F<dM}ccu%^s=Uvd)csF$HAw)I7;bdr96T3$8l%SnF@~Br8
zGx5umzT$Ieq~<H-yuKB+7Vhaz5r?aGg)I&#BY<YUn{U3OAt7ZTge%ZAq2rNt(m3t_
z$9)4=E0a@iQ#K8WJ(T{-CdbX4_8&dvc*mpP#8%Son1f@n-6>M3Pn&*NH%SOhmpjDG
z*m}E`g9NaIeMji&{v^cyO*`71qBM6pEQt-KFe^7b!Mo@mhV*aRD+2ru{+x~!u1c3M
zy!vrB-)=Wwt1E$z$(evj5|b%%eFZXMAh1?-Y*|A2jw&#B6|N2-!8qH;d4*SgQcAum
zl>5!HECKMV=Wad5_XzCP8Yme;+FymY1Cv;jWhuftOA5w&l~F2Vv#OAKjE5?K-WV1^
z?8h!DUd!Xc#R!*(3Al()qsG~85K;_jd=Mj<Oa;mVSQR#l@~f0g23J$OV26DuNG0hq
zUmHfW<5&lFdc&K(*C$ad3^B;7XJjR$IDYX>;Gnzt<{=L%MiB1~@qoe*A_bUCXKfva
zf}#>M0g=(BHX<A(+kkv40-LK-L)ccU!rJu<K%#g@6l^@Zu~m$IjE%L!3gI_*FtVQk
z>-#2(ktCdwMeyl6%0<=d`1?sa`hKo`y{e2Y$Ch&i!L>6)mu`!?ntE=mRDpoUjcMb{
z{ohs=h{jiPU6XhGnpHBSP0(TuC>?inX6g}AL6sh)HQ8A<tF#AXAAB!XeZ+w=UQsQB
z4+X$+C-}Nbx@*!Nyy?;VFTriAej35uitMIH((deHisnRJMn<IPZ`5iIxLvh&I}@!d
zT|CQHZEW;fEsAQDbEA3ref{;fAJ}9*&&c?GH|ST6DMb%2$VaJIa`$c2nUg)NKZrkU
zvw+JXPrlZTeb3dIEeeCTD`}_lYmJSbg2`}9Y%{xCfiSTtDJO~ydJ^9<^v63<E}f^_
z7uty9Opa=0%@uP(ZQ100@o@dWfb)6vjg%Q>TJmn6g@oqVpfH%_IN~9jQB92)U+kk*
z&I_D>?W)v{RjKwIOl*wXaEjd4mU)2<=dU~R;Q&%rpz?MugL?0980p2_0wF=&DiIuR
zpDN6YgEBhGH4uORyL_Qo<kzf1_T1|h&hEl4*=RH#7k9Ohenl4IRd;~{59Yw41aAdK
zd>f=VWif7U$A{RQMH}hj!qd=Q0Q?i!pKM?;FmN9${DXRMu!vId=)&Me2Lr$td8A;;
zyHYAxUseF27Y&^6Cwr2pp^hsX8h7c+C&QK?)g~|V1ab)CgJ-u`W%s|k2rO<S%*_sF
zvk!1D%%>RFclW_9lzEgV7W%G)8K7`dsfEy(;{<jx)OrOR><MVg7d|@DZan&8)lLL^
zDD?e7OQ)!KkLGiylsBL4S7mDOJB2<bS!d$ANYA*Wu%@rdObmRZ%)@Y%m`LP(v`2p7
z6)H~Bt5fDBf%0oqDBH)i$<3Aw>wVNF=FaITxyrm0RcBBOTw0aL=)-J=Di5b{dGhhr
znF)1%$110yls-@nZkSDfx9hxzbVYsA*Ympx4|)?<>(ll3KYhs#vp@ZJvBL<tG;E@9
z59O7Hw>oJ+s2XY`yA4*<KM9b=kX~x~7)}6)Qz!6WV3VW?)bo^18&y*jIa#=bp<u{O
z0qR5qow$Vq2%Px`m-TPN+0^D~+{_wT0aqFq_Fr6Bv6+0HHFvkTSw*SjWeC;quNb7P
zDP~@e^AEp$r<id#gl5P-i(BfslCD&5@%ERmnsrX~qs)HNl=r_1UN2Y5G4w(4L5cHm
zzE5Ye5Ki)p*ReXA6hlIWAW_DtM4B+PyhFYnu~YcnheDO3m%~(#<kYmqhpQT8ds3m0
zL+SMMeLBp$oac(>C~mJ4z-&ihs6z;rBateK^zF{ezzJ0q5XG&h6)2}_^oLR{l_6cJ
zWJBp2F^8!7Aora_&okfO`T)IhR9xYpd}hLo@30=$%w2cibbo)()GUamFr3Vmjr0jl
z<Z%`tXuiLVGhnkZ&aL5d1xTsdIie|VCIBM+330}K<9%z~xk{X`g20ie(isu%zJ#km
zz<F~en#1R=^rR`RW4_Z9k2^hSSM}R*pUBgT3_$&(Tjxo44}fB&jkr(obYb{H<BDP<
z_nVKqjdVytUyR`;c}yB}0JId80xO{&0PW)#143Zm<BOhkP?k}2@RhjeW_m+Glf)KC
z4Ueii5mD2qOgd?qRLgC;h30s8)a(>&PyPwA?HhN@;^6J=juF$Er}`N*m96=3PUS)N
z+6ZrJW2XD+&adiPclIuok`$h3;u{wdom?7Fc#Wij&RsHgcwSfpjfXB6gg`E1wROBj
zI*rD%k$}7(Gj{UwJEg+D2nvmPd1f|Jxvu8du>n3%Rd2jIQL#R2e-JP$b`eq1cwqB9
z6x0Viq(GvMdDfR4T(ioDK9Ao#j^FCQM+yQxbASTcgvG{Hhs{W-QEH}-K0Md#3#;t*
z{(3vQz=QcXyYaZ2&Hcyg&zHY^N$M8r$Isxt_X3PLpaz~||Gdz~yV@AbmvuAN`Q2xQ
zHVi=HL!oNFRR*yV)D9q%T9njPhL@X`US4j0F1OEUfht(uzPSDQ_7g=~4<YCOn@;b6
z{M+}xK7Cb0H|HO2T>s;X=kf0mD*a!?+$JQp`2Tr|uX=gceBjXvYgeCDRH^f+FZN}Y
zZ4UOgsdm+p6{WvmO`yi7<d@{sdT?LED59QBz|lPOc8LD>$wMafHkm<3{9^tKpCplQ
zP`2F>cQ~Z*dH|s^L6u+yip4B2Iukyxz)2FCexeKja1~`5yJCR~6<pvYu;QA!_2S83
zEOM^<=o)LxyG(+$w6%-Of2wH$WKa~mV`z*s-W$s(r~wm`G;{^K#}lZRQ;008S=I#C
zD5TvfXm8`Bay5{88or^Jj?O>=5g?1#NIFGVw_8An0d0Y>A%IxaS*4c9q#zwn$T12O
zBFMY_jbkk+zO%^XshlY#g^yoV>Rrf1x`I^+UD#ZP8T9k8Kb-#0mwF7ZDk7o^2k@H(
zk^`%8k(0>!EI@n^fll`^@yw2niKxMC#I!X?vUREfh0G7RE>?2CFm_LRb!ST`Z5ITS
zj&-%}AAkMp@9WdQe|-7%m#=aQ;`g^|rNS$zym`EbN+eDCNKIA>FD6YZu}BsJ`D9b|
zNklBR1-`$?p}Y7~Q<9juc)UF7EEg&r7W3TPzT(B8$qeRJB*ie^$?POgl%&v#r5X+D
zG|G*6f`0(E=oJQH{ZLb}xkb{-uIEL8FWFtiMDOFV88|WkK0v|07svQ}NPOt50fi>p
z!&!`$o4tRW!CV*^Y=`Y>8Bts%idX3Hn_eD+={|G=)wZAkJ?Vt8I@cEJ@`>-)WTwRz
zyK6dzNmJ$Tm)(3VS*vAI83hyyapq_@?hrCNc)UQiw`Fs0Af>ddv776}BhP2L^VL!T
z-ZQj-#e&CfnIM}$<2+zKoM6^zTAA?!$-c;KG6ql<_E!_~G}AsSZ&pa)NC{?0b9YeC
z9B`BduS6req;x44OV4B@+n_j}dVmR(cDH(-K;y(b**zI_L$dp+6u~#+lecNWzy>%?
zMLNgR19oX7majD7Y2x%}3JAdZ_VU8(a{C5+tC`YCqgkBFs3c3B=@q&Sf8Up5etUb7
z1_iNAodhb0M9^~K3DfgMVqzORToUe(TEUFV!bImZ8mUE5WG$sSon4LXMh`NXC8jd)
zYMm1h>c~xLa_c!I*s<DNq<SA?^e8uNV)6+fXE%uaG<q80)Bh!M#y&+k+>|r7b=Ty`
zb{qMD(LolieU!=N3eMl0*JyJR-HxN>E()M?;RN>nofqNd>vizs_35WC7ebDdTo!S5
zYJ%Gys-jM(<@*>9NT%pcen_I4yWgZH)dr_b?BoxmBhI4p@}Goy{*e{qT&PJ<dY;GO
z0Pg+#ONxiG;8u9I>At`)+Du(uu_{e!+vUjEcFckOsI%=p^6jha2D&eA?+%fl5)75K
z6DUTa+T`;ud9;d=`~I64@cC2T9^neVC%9Y|-<I-l@HVw}{-J54lJ@+8=C1n!H>Xk^
zV_f%_`5V5SZNF(bDo~*+CgH7ja*#*Lr0k`>5+4#4QEBC47Z{eDA|SQjo`W2#w*l3<
z1GjsKJsNwjYV5Rwz5OZ58mfwQ(**ca?(+P@UD_elR3Q~+18q-(SH%Kq{(7!mfBos#
z^~b+ougao5ju|=r)BiJmvwSlZ1?JyJmtig>Q9Otd?p~=s*o3p84_~#IlGZE~W_%-0
zB@}Y9r1;)EK0d;Pmu2R(40B7T)**cE(?|qx;ZKCFRRBJd=AJEHmb%^Y$~9l2sTgN|
zcrzmktxR!x!pv}4tyFrF+Wo2kBNY)gif1?1RHB6mIaIe}6$oRB`C|O799~i(CM~R9
z+>%$rtZO)8Z{O-M#SOk)_(Z&o=wd_eUy@zlrdCQ|p+(%dk}6eg_{)R8!N}1le(P2_
zRRNcV3#NNLUd0`gKmC%$46rKvILw@ono^U)LyzT>Tt`CDBGBgxDKPP&%FFW#YWcFe
zRwNk7d?Vc4WyZo=p!%#ZfOMC^Hb=KoXmtAO)01H%)m(2w_#XKClPS=S=_4l8Q6lrh
z?=I`S`+c3?`CSgka0tSTyJa~^9ehjky_>wCTVe6d@;+?8rVop|z&@f7FEaFSOE0f-
zi#tg+%TfSQQk1)b)s<frW|V*s8xR%}SpjbCj}ao5yaW9uuaTCV0>Uj%M0|zAiY%w>
zrbcq;a8L|wlQA#h0hk?Qw-yTn++-qtFe4)K8wSb4tudM8w;00aA>`h%zmcfYi3>PZ
z-kzmMy~+`$XG(fQl^&OQXi~68pOr|)@=LDzlbC!4!*UY1a9%0fCkYSjZ=EWsv%+Yd
zGC&Gksk6VdhV^x5dx^3^1xIJcK2Z0>h?6%HGNBc?xb1=J6mQL$%9Zsdg53p5KVgzV
z$6pP59unpu?z>888X+FC{l3jVl>?WS)+m${WU{e^cR&B=Y_V0hd*DR~S4x|RA?={9
z;X-pPx*Zotk+W7&)_OJ9iAq}}LPgodFq`TKuF811&eE>x9L*&d$?hNT;H-TRrQAuB
zlSsLpl5`eO{nU{UP|(c)RMc(fsEo42S}96XKZt@W8I|p|Em-n9zhd2hDNo#B)&WWK
zE-h_xFL&3y(j`9qqQ{eo`Dj9EekYf+l1c`L|7?p(K?AH5IZp>S1I}H!RXxXMVd99L
zM4N>$wovS@qW5$4PtsUm8_w$09LuhRCBO4{B!{iIzyK!+t&HC4)RAaIUO(sPPA#vZ
zpa^u9hkLGsmE^@H0o~an^|K*i(5iJ(Ejy+>qRQkZiholTod>#-f$an&6Drf1eMyjX
zYf@3vnO1bPHk(Y-?<5>y{&r77;*V~TpJBFLG99#d<R_?Z%_S)x@IuaxT@hQhB@&Eu
zaTv&D^k@Zp^CB5iGNvn^wsTGIk|^Ez6Ukgktj^?Q6;0(j-?c_a34#DfFgz-|tu7?m
z2rEX4=pq0AHyekxxVdrEf3|USHje-NwxQA|ie*2_9oR0jB=w0v=s+lVz+-2a`$8g*
zN&+dkwZ9##&lL2c9L??Ez_wEV54V-cn4f(}f{q*05Q@wxttSE@!`7)G$Abc7qPtKQ
zpLMNlTHapZt!LwQYpneCD)(Bt+}tVY-9B}AVvUcy78U3Uvo3IuxR>TR=2?K2$x?#l
zFr`GhNsOD6&|W>IM6)EgNs0a@B@)}}XHo(e2XZ2uEA2lgDP}6;*{dll4mo&lvLbvb
zE0lJ*+eAMucp}d1Ht)=fkUK&7$~5pP57qnU%ddZZ`O-hv_djr8D-zmpaB5R<?sz!J
zwFwpvukv|a>;TY1$#w)N6S<N=CG;`$CJ)1se1-i@d`((nxP>+3P3dhuI=l`6GZe@C
znEG)QW5XIR@{4NzZO$sk>86Bta1Hxv5A?x1Cmt6YCy22>D-sjg9HyQiB~wo_={-4L
zT-id4RA(9mqFB7=TELnFsPmG2X*#Xbr(YV5tc>SIT^8v*h|sgQWUy)aZj{e>j13E5
z`YTiyvaRz@uH+i7EEV13Sgg-o8oO9J+c{jDYgi(pUCKc6yfR>LzDa5gE#`X6s_9yk
zUIfw56THW?7=ZEpG0BMu5~H1H+fXE;saCjjqA`kxFQ*`hztFRqL5e@!X4LxQ&wu(V
zb_SzNKvam9Xqc7x>f~NB%LQxAk2z@y=@z@0ZV}a2=?DrZJm#JhXOo60G?wxygfUV^
z2n@NJL)1~(rHCpbei7U?t}eJDSbBUIB5ibl7@Ss*9z}I+&GjHZTW{3I*r%^sqeZLH
zYbqV;+};K2%79icWw#3QBVrd<z02GFniN8#JJMd%Y53d(y+{v=bHrC{v8$rQgethR
z;0cx82&4ZUc`j+GRJZlK<*OfJpQEAu_jw4ES48;2ITaIK7*xfX<Sf;oiuqfPk8#1P
zRX(SXj^9a6cHJ84IhuhY0(=?05mgR`zLxLC*nUVmLNX{!sY^K(e0+1wmj1#tF+Jzp
z`R#qg;PbS#Zl3_`zN$$ubX-ZC3oAkEXe?-6Gh_Tr!XhXkymEQ~@Gi}N|Cyu5bNK&y
zY+WHjF^((qalfzuOf!BnevXFp;bk{?DxXG+8n`12ehan~+N#2k`ycggwSt76B-dc%
z9Fq&sY#Li~VzC-*NtI0!-mEA}JXu`!-K(I0=`aslCNtR3Y_Sr>nws1YoeL(0<lGsb
zcol#NrgwbS#+YRq|38fN1Htt_KJwwHe|#9u;s*gV{^6mT-+y?p1N5CiI;21}LIOM6
z?X5Y~B2{+R&mQ9ta^-@Q*A8&ZYbb;u!j7nlZ~B{EbM#}GeOUhJ=HI%hsK2}Z);Y$D
zBRGI*W89t&s8A?sf$skk*ZOin&xp%si#k0~y=zFOMUhAW9iro16a?Lf!}31<z0Tba
zvwHJXoBtjp+c;=(M1^m4;Opw6R_tn@?EE)|!$dR>Y0v-li$2rWe|FWCryf98etumc
za<oxj&{Dh^RH~LpC>-p%ea4m8$x%`}`vQ|E5tUVlquPHI*w#1aY_f@OqAZcPFZZcM
zYd0yA#V^OBb|vD&<f>Ala>eCQUND;#1|NSe1u`4T87s|SQhcQ(NG5>2S#;R1$rVu=
z{7$K=Wvb|h2|W^14>zo&k2L<5b-EM@6LlBVFl~^Sqs$u=0Kas$Kx`0goSO?zj{&=9
zw+%&ZNZnyXfrkE4k57>Btd}}oHUoGGCoXTzO`8?)@y>^Z4@tY8KXA>5arFEJAczeI
zs1WG-_2w$#x0Ag8iB6_Ag?%_l<T8l^-4BLmqsGMMqy1?RU4+K0U2dP-xFN1Ti;fdw
zT~rXB55ehd#8DTT!7BFn4?BA^Vx#&8S)(z&U-%jn75f1ffa-q3S0D_>?FZfCHvjhb
zuBUZ=dGX<uuf<4$-@@}|@vUhqphF9*?=W|cj~hMkFPCvuA6hugP(t-M#_3&!eSRE$
zo`b{2!?^Nkz*sy#&OVzDqc#P%XMT|dujfXLp8LS7Hh*j&dt~@El>QyhodJ%ENo}$%
z2pt*uK~_Ny?k@7m)8>H4X=JaG2d3`bE|us|<e7c`i}M`WzhEfeuG2rejypyucuTXp
zWy1%9Y0G|1pK)~6T|f>!k+67rX(Slc$Q)t;y1F4>f)(M*Mb}tv$D*t0M=$T%oB|+>
zOnCpW-`1aoJIwWvG<EF?VaZ08BzOn96y_?Kczln;7QR^RFBFaw;OVkKYrJKHpThe7
zY)J8A-NJdn6Cvei?!S~$qHe8Qbd+H0{=!uhZ|616$M?PZ##ipvXM6YAi}F?$@>ckq
z@mw{a{!QR(y_NIm=3gnXT9F$mmkYTwa_Kba`{l!8;j5#{w9$P4m+*vG=Y&|95UXa*
zy16P|oJuCz-MpW4o@HDUYaiswoTC2KAO5Dj`%UCG@2}QY%gnK(p;5S)AKRV>aXWK*
z%I#`UCM@1iITsPBjSXVMfdjFJZ;~md`_|F8nwIky+@55^YT2+#Ht=y0py75D_$}E(
z+PP%?19><<*G!Oz;=nOXFWl2X7rGG=Ms-Xvw`yS|9fB&zIV3Dsgyo8`RGJ^39DFjq
zuJ6C*=(n$rx8GAbMQg~vkSy1&@O@@<6fUo~?>CPkqb!Sr?LyltZ7f!%j26=B;~39z
zn8wXJ(fLK<3rqys$j+7Jsk29hEHPxHozTvBiKK2y0MG##C};=kFwD{7vwZdw%Y+U0
zN_#tn*+tXrNSq_$dua1hJ^%BCZ`1`UbOu)_O()M_aypDS{)4#`v++L>j(I&n0Mhuo
z{TcZ?KwBpoOz;uwKlp9f^a=X{)x_La$+rs?>Z&NC>sxDB5_~DkOOICxSh#EKVdoC<
zgzL$WJ0zW)%Nnbv|8XbrIlNLC>!k(9QW?pczPnDvHoPge%R9aIF~y<vgHY}9zkIZO
zQ-=;O|M>9FRr!B<v^BuO(TCq3Wld4wWQ{~3>{842!jcOGO?rN7VYs3wljcW`#Q5>!
z5ihuW^|!&SLbZERl2T`g2HKuOjGI`lCon=wzL-<fioqY<P{uU{L{?5kZYC0-Kozd;
zu!aZF7pGb=qo+QJai9%DG?DG1oy@WTmH0n9<X;#v|J5h<&mMTlnWJ%v_W$zb?V|qe
z@4tNi@#B{s>HrQODl3`X_wwl*7pO3xH1LRbUU8HHx85Rh;fP{U<VR=AN8?t+GRXkB
z51Bv|N|Cs8<#C)>`1DI62aJU6dolF~6>_Z{pp(mOGcFBrDV%$FUsM{55W7-BDcTUC
z(RZeCgo>*gsI2rPBQ;U&E04GZA0$aAFYhNYh;;{`FHE(Fr2<Qz22KMmXhK&Z^K97^
za)AO}GYw5v+!f=#RwAGvSzwgXK1|R=JoOr?MkXKlvAvNEBK8A_lvjM*4RaLXxf8Ea
z8YB4Uf-}KEbwyRu#E}pi?)NG!CB!iy%P#INf-AzLEV<ST!=t{YiB>EiQi>3Kc|R+!
zP4-uUPgFRI@{W1p{QWmGoBzwdrush9!NHB>sqmo8_<Q`F1U{`0jt|3Y799M7Lr%ey
zEzC4pz%@JC3TPhOq4++MBcS1aTw@F&_5(2UB>wfYbxE5&e~C41t!KPHtLWCn=?X^5
zV$?E^gfF@(5oSp9bgxP$h%dRUxs7Gsj-o)Caryz_mP{eyi#A>43Wgd;pgQ-Thal8}
z0{C|A$vvEIyP3*-2#yBP<#OBOczGU=Fkj{>)6+2keghe9q$X2K&&U|v;OW*^T$~5B
zpu@TI(t1|hO_U$W65B>WCx=82f%L0&W-DhUPG}*j$5ZXJf+nJ!$5trv(vYnngsTG{
zdU=lFxb#zClP5_BNFlQO>bH*{*UPUzjF+ch{wC*DdtbQb0!s3LJ%GeW@CgLlYq=A6
zu)+RQVaODJfcY5?!Lca3)k)Wl-)P9hi=kH&3WPm~D`GE7;DZ?~Lch?dNn|d8(dpw}
z4CwuCteQJ0X*9>W=za9TkVq*j?JGBNcifc>Z-NNU+kLC*cP9BtOg44=A%38JTt}@Z
zjfH4g^y*G^n8(MpFM*;AFd>c0DF~6=>f)dwDj~hCSCsjwr|e=oQ4(eWU6O?UOmRJ$
z8d6qjxgQHi#2kvV+=+fc5&U%bZjAr@Z4}0&-Q{t<eW;)k@<Y0eExY*j&%Yc=)Hx!S
zk`Xsn3*;*tG44`-1s`9ViCOCW?$5s@IO#<=*zFvXyDf+(N1O&4Tw<w0kqRGRE;DI_
zStLuT!}Bb9u|w&HByZkPeOKI9;&us&!;irdwFE`3s;JfV0|(><aJoAnp%H9Tq$@;>
z^|+NJsJu#Xi4-^w>v{bnKo=p#jw%ADan}lxjQbm>7$Rp}Fv6Bq#0N5z(R>j`xrj5z
zDUvOUih}f6@i_?US40>AA$)=RrG>TiJ7tMV&ALw%DY>Io)i`m4z)Qv4j`5o+ZWG~^
za{lwTB|wj)Os3;rsnH7Jk6EV5YjMo;yDS=-{Pfj2(0n??ej)IM`p?AE!nw=h`KQ%P
z)s@YU0WpXuC+Z!`P64&?>mUxAaUb%=A6i<XRbxS{8b*rTo2n*xI*t=aSdItPp>;_R
zx0v@UiB4<x!eA72A=qlP2y{UIMlru|=T|Qur9B5NEoz#I9Yl;k*t;R!QAvcyKZZ|(
z2xPQCIF*&)oVpkA>IM8=QO;3h>AxRe@n=YIegE=hR$6*;(#?*-thkt>@eaw8#Iq{%
zCrQUG_;XPvq@@AL(|ip6#y^?|Zh&7A=9pF(DH8S^D!21W*~s~WPv1&UID{$<_YLEz
zv4v8!VnG)QY)7ZGmg`x$0nk4jFxxgKBc$l<(O7fpM^i#{*las$MbloJ$X}I{W)`L2
zU`r0p$smiR1KMw>Fv0?8Sh`axxIviR_3&31!yT}z%OqToI<*nwtI&lx)23oV6MB;d
zL@SWDvy&25^$f~v`gIp203R>!Kj!tj3?@!V`6}>$*SHGHkY;93uqx&#A<0^@Ih*^3
zeNJXgchSxt|9-vv_EpKyvVYH>R$K>iJUdfgC#t8F@*&<n=F^o=oy-}N5P@12W2lr4
z)<0;O3tL^UB~ZXLewe=;SA10E+kSiig;n@fHb>}qpcGA1nTq#Ub03y>S6<)u;+GY&
zzcHUaNUQWI*L;>s>W6}NAHq?oz^M%3-29s%^=9vcARHP2+y75b*Qd+xKVR10KK||R
z-(P>ee9h}{Ie8t*o?&(v<D+UrL-~_2Vk<<<3w$$K8_v?+u8;Lb^WZ<%`4KD&QsCRY
z;5v!Q4+W@WA(4;b82n+D1%8vec6+lIxao6H(6y%Xujry+<a2XYUv#vDq9jLr$e8e|
zB^jSo8cFp}&v&P0OL#YG8RY9sHy^Kxxk9TJRd>c2oB|U{3*1%MMi?0(>&4Qf4O}2G
z6{b|WJzLsLN7dw@+D$JyeRNKHeHKmY=+@q5`hJ12Em2L2{e(2V_NYjwxErFM$=Iu3
zwSBwD>P~J*BHcq-YEJd9gqm`sxKoWVlAGQ<Eq>MK&9914Wq?A8t!Jx^#Njf8(p3q*
z^0cI(*GG8c;jGpxMOsAYi2U^L$0)9Er$3f2FB{#dCuOs=w9L1YhWP9|H+ej#@XE!t
z)9iBU?Km%zFh;v`J&@m}T)(=eZ`gg|6)1q*vk}J!1FteN!P2JWX9o6l7>?Ys#@O|D
zbhEl51MTuc98%-;?euN^>aynuckvsbgXoel|Fre3^N*60{drth$g~8>fJ*XQJrg})
zo|Ighv{vT(<Rs7}(S)fgc{t7}uh9Wyw361*DIy%H4J5elE*=&^WQNF*YMCyc;!5jj
zR4_e&tw&FB86{)B2Toot*wvc<TC$Dwzf47?F=d#w?z7j>Av_QTq3EC3#sP}gOfp>o
zCGNH1tFZp6kG-%i!s<057iA=afUUT=+HHK`{PJj!0jGPf@FX41^<F@TzKzlK-GEAQ
z+;L<!z`2K6St*~yK<PHY<yRG}NM?V5kMgqzbI}>dwA+sbm?<ao9aW$0mD3F6&t1#X
z&eS!Kca5O~H(rPIj|zb#Or}UdQ{)5pPIcBDLQadU+9cXaQwB`MEf4fQ22wbW<(;f5
z?sV|zKC4ph=extp$G<-P{uN%S>_2#KIH(pYo?g}a+}pi4aECP0J}zLjW<;kX*wFA*
zkV+gwa9Cwx-Vs8sBo|9cvn>L4%KmK1uh9A`Vp3Ff?Hy@8*;5rA!qczdQquSdX@M+(
zD+5*=SDIF-ZQXe_Z!1N)C<9O^r>kmx`fA}T9k_5{5F1gVP?)+pPpdpO5ragrqR1$A
zm$0+TtGi8l;vo-@3Qxt`jlwRU;WHGkdc&R;cc7*!zU=Ij`cxhn)@N)??J07@N=+LY
z5T&aN0kmT0YN2>lQzgDb!+-}tnSkTZhUcad5jS1Qm|Ak^7z;_dui?YEv%1BP&e4ot
zCaE^T(50O<F#XhD;UXjcp#u<oBxfG?Q3VE+;pLYt3&g@jMODXJ7>Q<(oa~TBjiZ9P
zUdsYMu}<D$dqHSM>TXte|Fy%(V(WwtBeaXGs-3dTdM*-U3|Wzqzei?O66SH-2((Cy
zw|*uEOb0Zphn*=@wzp5e4Bc#;bH4;t-@tQ?(xY-nihyR&+B-%>H2i}M@P;EXR9|Z`
z1(W$#ME@hhl+bQ;cNe<b>@ulHQ0)r6_-3`iD82;*{g5-FqlSm(u>#{w-ayVy)!VhF
zcI-zDHY*)-9f`K#ui1;A)aobIG1S7Wuy=rkOn%%ek9*}Nr1)d~3?ZkPnmuV2Pnz!P
z$yM%9S5gCb*Gz|`q6iJvAHSK=Uo%$Ef7b*TP+hZ5W#-Vgxmlq(Rb#=0zmFst^|s2y
z-W&DohRQMY`Y}{0`F+fGF~Z%lLst^@ZNi5<6ehWpE~rSjvLO8EJUc%@>Dog8+&hC&
z809J#vYxLq%QBJvx?cnkb)N3hAU%sng=5#+6Ow4?f|PRO4G_+*a0=5p5OnJjQxSz#
zRa!;lq)b$_D)o8ve{cR)qjR2Z{u5T6hl*gem7+Xar@a*SgaX!0j%FpwF-GDJ<G$o$
z+)00O3D>&f=#-Jm)@~_3rXxc#HZF}F0XK6&M$$@BJEtb&JpYhWOgK!QjEv11XPc)q
zB|XpeLZxpRrQn{CN2(d9DM(YvCKNf<J}q0u#0mjHK~pa;>)Qv^?XK^dly6FI@~Hwh
zoQ#9seojjlY;4l{mIR!LqLXKdz{7s=`kgR-J!n2m!nOT{F9>cn|7d;p$@=~iUUe-c
z9AEGeEl?44!YO;0ZC+p2cOR|qzHr;$uJ6Bn_sRQTQq+k+V?`sCoqeEKDHNS}@)D0C
z+YnAyV}u~+vaQ5S2CX9~T6s(hPXhk@W2)h5X`N6nM?CIb8cKq8Ekah9+f^sZiuddW
ziUjHEO1jWNa)SgnLzs+$GT&C#8{aB)oOPB}XTj$;o?VDjfs^Mi`GRDPD4<G~i`*<A
zII?@YIF608BP44J5n4f5*tk~{S2~0M^;qc)lcM*IbXJKZ#W^I~HUGQR&y%cI{sW8#
zEsl!n2Dgqy&kpsl_N#HE*7_D9E)(CaR=P$&0H3N4i*%TPvA9!j#=d{4B8swWYa`Ec
zDE?Eal;SkL@)<eZI?w0N^e2~I=e7A*kuW{U(NS5oX?54=^y*G4Str_<k&j4WG?BOI
z&Y>x`Qu*=s^>4pk{_^oFa*|lh$*{|vQ?o$R?H-zpDrq_M$0TCvtI{^({SKpHF)2@m
z6;|=F(YjE6o>*v~DXezb=?9OTW3G4{!#6>Y=XxLGq(#yR(?kc%Ckh;I8Oe3~eLv4!
z1uRQM=JIUH&vw~wQ6DBq!+LXzB5}bGua3(vE~1sE$oSfI7(fX=)7ND-q2pP6jzs8o
zo>%8<#>_Z7-|Jemmt-IO^wU>`a!fSbK&~kv`U<FO;dOo2c1=*TddUgdMMi6%ld0aw
z4*@*j7dbQD{VOtyc_IC<*>~mepK?P4{pGwL=!P%!zB6yXes_l3S<maNxA$95ZoOM>
zJ^o-i1np+$Wj!^2S}#BUcDa6?nNfr59yhU@#xWPgA|pTM68|$L?+<E;>u7oKz%8f<
z*9TH1$LFGiB}Kv&+7cjKk`oB`=IM#{3t4$zyhKI(c#$t%1|bn`R|bCj-73SH@`Z;n
zUt}2ZqMrx<{O0tY$9(=mkdhZ&O1`PXhjG2z?-rFEC?7KZ>nNAz4(3;ctIWlpfB#~T
z!w*Kv2RKm`pi0L>NbO$yWzskl+m-%_n4=w0M@%w7-EVTNi0r$Tf_}0lG`TLvhl1Yl
zNU+yrXqp3Ngp8Ll55j$y(8rYsT0=N+DF0Bjb*adX=i=`Bc2-4B^A9C(BBrE;9U3j|
zm;R%nPZ|VO;Ww_r2^7E(3d$tq(Nid6h;0$^L}k;JP7d@Kh20HBZ&bm}d3sGYOhU&F
z@Q&~8s!RhAda43hC6>wDJKTQ-Sax}fxtX&awY@7G6=d2{9)%QR6oJAlYEITyqy|WD
zn@w4@K_1VYEm>ZeVYC;3t@<!mVX=aNf^KOQV0(Mif~&;LmeL0ZYN$4Gc%=xlxEEWo
zd8CmUb9=sr@ECVJuZwz*D^TV~>g)V|OsIOz#GYiIKBSmm2~vs^N)u@V!5=-TGyuwN
zY~WP$t1kZO7bQ6>!ZGewDGk^MB!jukOHQ*bUr>1QPN+zi>;yhn`yy^2GPS{bNY`Ms
zxAx-AlZu*w8LP&pZzZV`BZ$*W&>ijKPz7>d<c9azR;oRmLlr$k4lXxECtV-$FBCHB
zP~tGv_BtnznvaSX7U46bJ;~T8aFG;7PnT*+D6E1@hy+8vl>}FO2c2Erd?<T(MXi3O
z%5Z%>8b#AYEEDaE(x}6pPzY6Zr_&6v@JGC5JtKg#*b-#ROY`|K9tPHPQ58-V(B{=P
zrL3F)-@|U-94j=)Xy;XnO9_xn_K4x8!VQa!qAYjM^<ClFOUlzGf$cbmMiL2)B~`u7
zksw3&QDI&dUt485kC~M}h%ZQvqT_fC_**W~><d~25ubovsyJ>+Q8mXzHOKUh3R$|`
zWjcyOvx++Ou8d=r@XEO2Fr`HFA>7<b!TLBovyCbiRjG_0#12p-Q8eG>{gSGh8A#l{
zy)I`VKZf!ehM6XUS-t(i&-9})+`%l>e*2@d`N7;CwZThYKJD;>lW4X2mD-zC>PWXQ
z*G!_C@B!fPY>r!}5NF&q(=|hOA~VymQ!soAh3e(^I=~-RmRuzobSR0v+6^12{0M1Q
zflymzDP~Iov#>9C$>=jlB^rj&nnL!;w6W)t8|{bOzxdGHvF|@Lq3rV)$D4mv&cCr8
zh@K(XvxqQA&Q$elo$Zia1T=#6==fY|^7VI-Fw2;H@+Bk=h%)@9iSBdYS-zb*DX1-i
z7P$e(s+Rbc7kUU7`PfuuMINR;n{s=38+4AY3^)unirR;8-w2V$gE#R{j4eFOhU^$b
zMJF}K2rhy#q0iWYxv9j$!9WPd48K*puVP_l&sImYlS?@ynj=cTjH7MWFplLJ5cqD(
z!ILb~6|ccPpwMd+Frh(hn)<a9<B`0-1W3p;>>koh#*NU#Hh@ASXf0%<B+fBGWu=L>
ztK4V6`Nw1JtZ|Tq$`r?4Ep8JXq2=p9px-oyMX)?>=NYQT>&ghp*#lCtmBo`@o$FHA
zwTFlH7>{lot`ZKQnH404L4IYmJS*orI!!x;ausgP)xyTq$oLcGk%mO17mT8CwgvD}
zuI|?2Gamtl&EeS`+82bOW|p9YLxqI@*2G4EB-D1y)Zc&u9zN@o?bv%2Vr2;I-Nm3i
zl%^cVlQAUds~|b#Fe*?*l#t}TAr*y+X|t`V0_WlmKx;f0d|isfP6O%Z-=F{f{TCtd
z{Qxi!C<QFKHF)+`=Nievj=YoMM6P<6@5cR~Nhrd7n9(t<AaO~|;yqz;ChSTXoLifj
zUHSG;>e)D8F@%B)ffp{6=fC2lQq|m((Z9)G#-%^~l1(W|$ntQ8hR(J+la+KOc~&G_
zmol#;t$rhCO(#9GVOOU>tj_0jf`|xwu&jn<w9A?$w@7G=1>P9RDqtB@ou@hw1Txxl
zz*0&}1bN;(Zj<l?w6tzQ7sWE)C~CxZC@zbk>~=B+OeMp5qXt`$-q%^kd=4%r6yvUO
zk|S3m<Dkh_4Kr1A)_)d06K1DjNdXX6r*K3=nZHb4MXFq{W;Ed^#=sa>vxD#SiMDD2
zu*jt89@rJ_AAAugZGF<_74_Ysh;^H<5zwL8Yw(Ih@9;0?E7+)YF5kHnEinfAv_mIT
zRLF$05Kw8#R_E2#h3f@Iy-m1nuyGF4ms|~icxcO1h^JeD+ruBAZzh9MFrVE5?wm9(
z;Z5}3)112n95D<Tp;-wE_nE8_F_U)H;28R^&ZgFwL%e%V$ucv{ggN&KaH^{NK-i+Q
zt)yJe+YBtTicc>xzvJR`E#*j&d8PGo<`v_#)YA56@Q^Xc;bKN?KP8{b8N^zZ<IY$t
z<Wx1*rF?_)RGf0PKv=z8f!c$|E*sSx>g*FJ^es);b-MMLC$*Kc?;DUcw^rv1#ap*;
z^9s){yQI<4bs@cI@q;L{`*8}HG^G)1(PC_wBQh7F^W_pGBNlP-)Z~WPJoWbe4s11^
znad^O=8D~k=DPvYhZx9$+11s0F@Iiyo_aFr1sEgTdi#t+66`JK!9)4#LW%SZ?h&Na
z7AFy}7NCI-hrB%%_O3u7^wsEmno2{$s`lt>_ru?mNtDv<k^vPb3eY5a3&ehhiJqi$
zc!6rRR?i~g)HE&hz-frQ41^p@;kc0**A;rZY&I$Qb`F9vg1`@DX_e;>XnBCKMK0e3
zzSDxANJ^2MXOOUGvZj`r?A{T(Uw0D@G%)4h`S*EobL-)fG%JQ;ssPI~^qU$)&)Gv_
zQ9QqkB!L15)bko<s*KCbeAlyr=SqHew*t}x<5qbb;vWxrN>+rpHWjKqB@dedcS=H7
z1xjS9=yN9l%CK7HJ{d3Ou;EGz85p#>f%IgqFf8)ZB>YFS{j3|iG+0ONS2Ew!Z0aZD
z-spQVlYuA5ZTh{NySMrLHYJzabbgz<>uox}P4V|@=#LGe{fPggg)1UV`dND>;QYli
zdLseN4Lm!f-zG9JC+nr)59>_W;gB@l-V|&ci*L098DE$^SP@|r+4SLykyt{yEkcV&
zbeA=o^vn7VdwKJ$m@V-4>Ye5(vMD?MQJqS*yTFCy0@QA0DhG+gi|Cn$sDO2X&1}`!
zI$Eez0Q961UNuz%CN`}E=P}BiMsDoatX|#Zir0CgB-%VyXCb(LAOHZqbbpsgQ$49K
z5FH*#jm%pspcj#@DgpV{(977jowtYg_^k!0DFxWzAOF0yBfvaW$;jC^bDku!2L1S#
zzE<d;0xAw9na6Afr=qQgq)0O<CZ72^Ti+!anw8<|c6;ZG=7gj{Cfz^PsWvtHf5++*
z%J!`NwmH{uXcd`Fl{|5xZ;MnYDL-hYJmt+i7IkjZhd0(WpkyVoh;&={M7^g%B*8O}
zNWeH}6ca%*2QoO$LlW_l=KH(LNsE@%D!*%Bv7kBtPP+Zpsf|{pH#2qxbOm_3Hkhs#
zzY{%l-xls=(j_1*xrldt*HE0JFqaAQwyfusbQxcqq2naZQA$=n=D&{m#Dy6n#qM+u
za6W2MSO^Tga}Acsd~{p_lG>+bH0B9)vpk{2MuAVPMNih&OcHmdbaAi4>~&&L{EY?+
zFZJr7r_<rqaosncb8b>%HSnG$w~=9NeGShaKTB<SoUh#OfJerW2ZQ4IamFtG^4rs2
zKK}Jz{<R#Ras5ExRVq>`^ppIiGKR_YWj4)#K5;YB<n_erxec?E#KUpEO6*;&!-Gfd
zIS`0~iAZEAU>0HMZI9I6xgZa9TtQ;jg&dstI<)r-fHQN1gLMWO6J}eE)jroS&iqw1
zB06Cy?HpG7nrE!C(R4dw+mi*qK)_HT16f$j+5)jI68QXJew_Vm9n2i=OVD(g4kU)A
z(@xB<V$`Q7y?n+6i*2=?g4#6G=X8{E-v~fqJSKBXCS`}>xx;*^ZVdzCcnobPuRv)L
zhto~QU8?0I^diB+i~7FbN7bu=ZN~)XK~WF4+WsngNP92Y3wn?k?dozzPVH####d^)
zayJ*cNot<rzj{tY?Z5z(SMHt40Qe+5FcP-2#So4A@7hVT3|r*{n>g2lOFlK5D7m`c
zw!leXyUQ`OcF#!>Behd?Ma>EEtsSR1FLkdijux}gFm3S1tDMKKsV4)X_~B=!-on%q
zi0IyRb#ldLA_qEzO#*rxsE&kVtF=i@db2R;<~9E`?<49$vO11D8l$mn*}1)AUEPO_
zW~)6-{ey4yya3gT0!$+EOJn_r*%`LI{+KBGS`j3nKqn-1aEFVv-)C&*vTG(3dC4fU
zsn)IkS{xE=l}E*1K7O7*eVgzek+yxIXdIbGSkSi|B=5mt>IZB&xAdd{Ctb4kP}a9^
zJ^z_L?|vS!Fy~sz4en|S>hm1!?Hn(+Q@$O1;jC}ntY36<y><QVz$qH9Pv3tTK0m7c
z`7_R}dT2~NyJg(KIQS54oQ$XUJeHW~#iVCqvSEh3H9vi;0aXGZey{P6=cFN*D#mLh
zW*qQhV<I17hpX80{i?vF{Le%%{au2cc6<k0=Bla^vCdy{ve8LR53L?Sd78Y=gv8^p
zK8f7_)0?}lPVZLlb$4^Te*gH}mqpJa<5l6=73BLN)W`i<hRZ8|fBJUTejP&PnE)%K
zeKhphxX&H^?GL{klTn}tfA>1>>|uN`zM?<ZpMUs@hv2Cg{h-w;=52ZB&7@<u(W+IV
z*w>1%fP@DfyRd_7_Wj6xuxRae1SBf^^e`ryRZK(U&7_UvJ40_%*jO-NS$Aa$Jahy6
zPb+F}M%A|SS5s6LD)M^z7LWJgnQ17!Glm?YxftHCuhURkzc7@R`Qclj=FPHtXLVr_
zkEv(&(l99`n>SwgkfA5i2Fm<FH>kWv+eN8Q@t}>1&`G(j+Le@Nfw`Qg$DsM<t9CMN
z2RU03kf#e&ptuFef}mii=beVca#?1Tps}U(v14h<cR4Hz-nzp?#M1%F#;SBe68}3}
z30M%@_6CCBdo6OtCvCCbM0u2&4b!<pOYn=uW#Y%CH;M9XdEgY0)8CydxTn<0PH69#
z4b*SKy3*ZYA4orFX6Z*c#?=#Nt%1apB>e+ru-fnf5;DDdnC}=7op}~){h{hQX`V&0
zepOQ_TKyA#O<P*f_MK3`A!i|#7xyy_NFb<z0l2qouXDQ0bw$;^G~sM<7#H2%;g-0m
z^L>iYqF|{`M@IywM(rC|9u9PYMuX~iiURU<O^hLoZ^J+mR|p&d@|_0oXcM+3#O8Xi
z(+g_jrh>c6?plBO)T~Gc4Fm`<rk%tz9o=drGbKS9FO-g3LzhV7X2u>R$e$jIs6&G3
zN#dn7FXjZYX!N4kpIO+UrT3v9BOd^a9G>zxuOeo$k}~C9kfPb~gS&DR%9qBc%wQt^
zGtGENh<LZV2Y4feM8FP{<BRFlpm)qNG!83#K<BGqe6SRC)O87}G|hB%5{O>pE!k$y
zI3<*RaQa2ElDSrLbr&nA>ce6$iquWnIC3IX8eCPLRnlPfE??{F-zL;^Rd{gxK-Q^5
z{jWd%D&mm5@9#~RX5tV90mokajNb5?@F2(RJwIs8C$FWhL}ywjmppDxSH+;IA&_9A
z3PQmK;*<B^Cc8Xc?;-0^$)~dAYsG#_nj~Ys;$(_cXHh&k?rt32zA&AUVSo@5zBm=X
zq*^<_Rjb<UP&Ev4L!`k&docd;OqCCiBEgiAr)5LiUXSu1&0D2R1thxI3YmtQ6oY0c
z$19Nd%kCnV1hBLz#}zhQntlqu{_xw!rystgr%z9vP4|Ee@sKdVr6}{pN;u_KfJiw^
zYjbaI(&G{hPtZod)}{whdlPSEBu>LrODhElnc5u}IrCa;FeCp#Wf2$Z0I2nn=62d&
zRTGcpbQp10<dq$-52ZS(4GoU(R=#^w(uTj8ANrVQoyiA`50-hd@xSn)I~mRKg?g<S
z+F9Mw^Vn8|G#U!-WO!51e0BUHdRGN;D-$O}rmCBlqg|T?6;n+YkHXYogWHl5;R%Mx
zNRlp+?QozZwTh~1Z6Qj+#0R6?8W$e4Qx)Rt_$W2G!eY0Ey_<@}M)6FV=~Sy}o18mv
z{=gp?z0#xUj(AvUbCJmy{LHm5Cl?z|I%t}<!v%>X@QS@l(drD9uZRsHae~DT<5u6f
zTzG#bJ>YWMrdl@9HL!|0WL&DtQ1$428656LA}1ws4%|~zzoq!OT3QBmmg&1qem2uD
zi1ZIOQ=-rN5CG57wSS?%GW(UPf9Ww;Uy%2S+$KC^a}-qwY@yZ}@x)3T&_+UCFh2<o
z+&o_zGId@PR<c>O0HuRWzd44J>w1VP7%INP#LKuMT}okt2@^(p=As-u2ihu-Ty+l)
ztQtHx8WQbj6`$`uc9K;QauskJPjo!KRz0n4jcJO44%f;RFBqOz6Ju(;HBS!)<x=r>
zIo#pc$P(BT74+E3&4K1nBi_kJJ?&@V9KloUrYY5SdcJF0Y2DIO&|F)TGQP0Ri7Y`f
zSmZ<$7Tap-3UUTdGP$*KbTfB{In%WXYi3?t3rs)THKDRbJP3-)v+*7>37F)zmuM=s
zN=V<3&Nsd9;8!~ahd2VPgTw`8cx(%Wz7;t~P>#duYO7KegUK$AY1IDu>rYqhl>I$O
z?P)h#zY-FI+ylzx--%IEh)pC3lQ)4_dB4#ncn30T!fyYBMCk?ileQ*P7Ayf`HDw@P
zU0GMnd!e_A%Y0$P0$g*`8(%kYK#z9vi7{<xACnC#QF~4{giV2}%3XPETD@qgr3&92
z)>CuvoVB!($CJ;+J4R*w;kTb(zXHssr>9wGc1YK8q**7%F8vJS+cgj?k>)x!(L`Mr
zczVYKuO9+<3ks6T-T<wiWciJaH!xdRxLP<Lc7G$Aq%K5&mDxwg^zB#gyZg86(|>&3
z+wZOPpk7F0`#^@s7^bUMfWj82m=L1v1e=E#x)<_w>vsDEBx12zlwPy29+%zu9et`_
zGULGej??1E7_T36rcb}feGtiyu2(C~Nqab+WKvw-wRX0^@qj{iwSs^^DC_K_D$mpX
zd>roo`qqD5KHR?ld}#ju@+JRA{63xhA076O6W;^L%bESK{bByY_AUcLfueJskEh)n
z6IAtK$HG<Lvk=}AU_0iQLg-wnP5$6AS?hQPLDU>rh*u+Ar1;szr5)#REhP1kibJ!7
ze(&UjWGW!5GU0_7ZG(*O{OmGy$%>~!cMD~X%+P1pb6$1A`mEKb&<7>#mI(x?G@?^-
zFt%OMJfdlUiKPAM7o7L3zoBH0PCbl4dDZS+z|Ix7-+ju5XUoU%%lPG!WJ|62oo>JX
zfFCDy5oE|kHjJJ_^^AKGW}u3JVGEhL3<{7x1f?kTK8X@iNvR6$?W#qkJm9fR^}Kgy
z)`(ARSJ_)vO^OmGhmzApD0Rda{#2HbfY5w&5$1sGE@grC1YWe*@T`LOj*A^4D;b+l
zton18D^q+q#Di;unQ4!m8bZfGd7WO)zl3{tZ{&gl#~#Ii;J<hVP0y$*zphfaQmM@I
z^DllTsy&iIw0cTFrD@rl%uxY3w3Z$ijaO+0`+hu!E~+lrJ4Ro2DjKEsNPg3^?5KSY
zuSM9?F|Yjo>QA4~zx?I=>HN(@Rc^!UJi&S7S99PWzzKfH|D$k%AW*KXffFRK<ECmf
z#=n>Ik7a&v0n|dGl>EV!41qBX0NzEa%t>o%cCDr9R5@<$6$kt)ix7Z8u<oZjL@C5J
z=YzMelIyA#bTqbD*+^2<9>xv4Qkddd9P*d2kPi#8)(t}q3-ARgW2!%_>PmVSZ3i_9
zJH|>>Ri8u8&aKCo%k%hrG#^qa`kr5XzM}vA>3aP-V={dFh-1AVdr;SjwN(O6_J&G*
z>kg<$u~P5Qq>w^VVNHg5OyB`JZ1Q6S0VA6&pxg6X7vxH7Gm;gBQ~M1t(tUpjJRLhx
z@fPBLMEFTlCE-nsD}jDsH0vrubK0LN=y@@?L5l69Qw2zffv&LD=)*b;HzV8>*DPcA
zl;Sq5%8Cghzh>Im$fY)7kktN=cj|nOgSvJd;iC%t*K$bqhoGl7o|U?|&csjLEZs3O
zRQWPn&$8l^_>q7-EH=slP%6!(%(9UJr7EjlMIl%FE`gWf#Gp(M`JQ7&qG!mFf-6C)
z1h+n$Q8~|y`t(E?5Jg-&oN?*jo__!NZ%_a6#U37d{%_dBsk|+67uUR#x*bu~d4;)m
z<?)5NfvyH#=?)r}av+-?>kQAmpB`H%o(=5m$&hzwp`Iuel9*kbGvPEMGm>n!L&6Gl
zjaGs4V_Teq^ZI36>W6B!KyEX{i(FCXKhB5(H<S$A%(^3g>$`G;rGIr;PA{hB#w@qr
zmqfkstE*<TPU7!<1vh+-;MD+knAHOPTKJp9^x9|aPkzI-u@J&U7;9C@sM6hT&XV4!
z@Ui$KzV?SZEHcXDyHKd66C$3+L?cW1AkE+3&K$9g=faKxfg9Gip66|>(X_eD@IgY!
zYO^hQ;T#U*=ozh86gKaqbd|$JJ$U}uq==O4nGjhzq|Vz7Zk(V_TXDr4TD-YUZ^*@A
zH^QB1u`#+8YvVHSo%v{!7p;@H7#5p-hvM3J%iz`fcU_hndAtHM9J6(!x;s~mVn15o
z(he_ip4(v2V4Z&h9oNubR;S%EjuJKajhq3kG3vfqsy)w!jDGy7AvvLB8fJ{mMv70K
zZ@xDy;}aj@s+yVoP6jb+5N=5bR7~z_gqQj*+aC6wV)Jq%+>6&oJ71pM*}7JrNaIYr
z1Gl#)_%v6HdU2F=gK5Xi$u~&94#lIq8g))&yE~}FeD#8{pAA9G{oGo@C}%(dfI~Jo
zZiKVZDs)8bv<>LO7G~uTU3lDUndg^CLjK@maePkueFnh?j6+L<vl9g_dfase#bztc
z8VKE1hKSQ;HB{ujwmwF$u*{kl^~5<0y@O4<&jB=dz%(r5a>8G-_X?7~r<W7#Uh?eG
z@Zk>Dq)SK{CYdBnG8$1pj4g6g_zYDyQBQfkLBZb$Qzqmq&O-L_VvrBfr{vfIDhD2~
zZhb5YbacMsi_qg|;t2{d=lE_Areo=>*ey<cAyo=A!P!f#lw_+lY^Y=qG?ee|Iud~}
zf5_7>T3tGzXaW#Olk;y#i!ojCqiSm=m)R<a{7T*@e*W8!Kf|d0xjzyjOacJPRiol&
zJDD58>S%-8-m5d(U>1%bfuh@IT`W>ETx@B-r@}e@A&sSC5o}~c>Znx=FgjXeh$w9K
zYAwjU40s*OmF1{bw>GL%0zMV{h^AMxb^>~|8HSXC#cNrew6S_F1<z`{b5T?jnnsfk
zip(J}lmwp+>0b(njIUfr9mnXHnObgIS_j*t{Q6hm5*H$Xx?N@f(krVIP{L;m8)>ct
z33<@LK{+9s3^-&Xq(O*IrnbCY7Q11p4yT0Q$<dYZ0Wo`!*I$`$$XJ(gL|-_(qv!yU
z)!-Xf?#uDkLT%chKRXt9f)gv2uCP@`U=9hXA!}Jvogkik;Jx@gOq^X`twGHEjeM$c
zfB)<6Urj%__V5_1I)k=Y-RSO6wYq*b<jvF)@pjp9CcC&5VP96HmvDE*ywe>{%plG<
zy8@tL@c_ondH>V*uPK9!+uGDkXXAyCEKd?OP06wsgy4n|nZc4r;vfgA#cpU!K$Y`m
z)h!Kp0Fs(H0{8%^?erLJ8{WFXXA1)3iYVjGFg4%@88<j4rei|=;(UkT$OM~EX5Vb!
zFa<%xH|LJ@b;7h^K3)OaVUswpl7{lj<Ps`O&w*)JxMvcC-&!vQpaYPEMCh_PFJ+u;
zNnk$%2p9172ALK|cOeT>C#qo#fMf#tn(@OD+Ms}$xTh8=XU5#Bid9GzFj@<!zp-mE
zw4D(HNV>fh6vjCZjAlYTq6A!ay&pg~faNVcI7oM`Cw6OiY5IXKJlYsMEytkYcxTL#
z*V?%$HItnLAg~f3$h(=Zqva+66@s6f>^2_W_*$+7E!HlJOqdu~RTK?`@Ea9?JvXkN
ztP`0kh%aCw?EwhijnOMkkt3FF)fx5;Pr7sVp=o$?CYVANWn<>XsX%!Clk>|6OL@>1
zENn6MWSIZFzqWN&zLJlK@c15_%$d*B23zcGe?(hIKZ-P(-KJ{PiBQj*iv>A`fMh{|
z)F5hpX^L|PxVXE)p_=$;G$uis&_XK+OulH}3h1t_zk$ocYN4lF0V+dZ&cswK9aa$P
z=FCKef>!zhwq2v}149g`<W|=Rh*-kiH%4`xqGqa<p4`Rb8dl<C5;~i~t=j~LZh_;*
zCtcxIjk!dO#bZFv%7$eC`U?P9d5HDub%)rZV(A5Ltms(!xogf=n|2=0I)ZE64)gaA
zQzpR{1PR&j6qwO%8O^#K69CqHW7^fICR66yi>(DxMSxb%Y~RYv!@elYDbXz6hdzPi
z0f>*#;iEw?EnkpnWpm*u&>ZNv`n0*|oAJGBk&~&ZLRmRyQfNRO#I93d$LWgj&9UEU
zJUlTf7^uj8poWGiS8vjZ0Ym}$0B69#m`k`{w&;DmE=FoDJQ`=M0?rcJ*KGmyv0PU)
zi!vAZt>B<T;@YvLg>TJsij#OF%A3RML^9(kdJ(ftcEMcRBnubI0_QGI<%JE9;2~j+
zIkPvCNESa-B**Idee{cUGlvnVv@?^#%r46IQHsLM`bqX?tw)Fuz=W8!n>It!amZ+T
zY!ilW$wnu1ksF*Z9bTr2g-&c5Nf^kA;(1#g=iaRpMq`b59urt%Si%ygziV`@8K8$5
zk5+||LEwu0?Es#wL_zx_lhIxW(mupz>4x@6sWuU*hg28{X3Sy+kpNkY@UIiog4WU<
z<_+Fxg(zERZ=iiex&ewg-ddl&O?&YpYnL*&Lxv+-LvC&u9;k;c)2l7iUE~4RsqB$V
zHKoOt+4a$6#8hze(oCNWywcdd!5~$k#vC%AC?(IF_1rch(=*Jx8_taEK>ArRc8Upp
zki$sTG*eEc1qG(C5echvel`8j23P0(nxv6?&)#^@+N4XMXyOgv3rQ$OJ1~2L6Jyj3
zi!@SZr$3C%AF11y)6Zf(19OQqJ#YGPoodB6_|vz5ZL)n-jB3Pt;8=ZOstXqr*#CGY
zYgs(S$BeQ~)0X)V`!ciIt0yZ6(d6BV49$0)WCgHeLsPWOp+_>rDL1F5yct;(<NOF@
zsb*WZ<iw95X!Ir_FIjnvo<YX|Aq6Tc%)hqxJxx%21wh+e1QCtGNlNX07_Tr6)|pz8
z#f&H-=uNJn$Zi*+AK~gp*!<yUz_Fi^wj_g`7TG;4FJ()d`qvb-_?`t8{I=k<D~G`C
zaZW-rTnOl{k(*wZJ{_0S4`H@w!f%@)+c=FUBtBjxs)wX+r??D=%g9ECQ4-hb0kM&x
zYoGu_K)k==+67(~5cZjSu^_WXf`>z!QdVy2;-jR5aMNC*R%1@w6K)PYbJSyR>3G-l
z<eUf!VrOw`8M-%pv+i~njY>o73W$<(0dY!CG@HE<VCD1-F-O|0X{?Eou7+)StHiq4
z;J-kPSMrSUTn;aAxn}jmE>-Y{7+TCFg90@98)HAw`QYm!+hID9G8>@5h%Kl^ICl+p
z5_b3OcaFnv1pA+^aAkA~%M7-F7xh`47|R#7I<`xvcvo=LhG=sI*%l_xWpJHkgq7!;
zVH6AdJyx6MJbJm-D*C&<qj7U3_K04I{5_V5Xk$(xOZC-C+Gnz_GV=hDmw_P{G;0Bz
za(G~{6yLSpW{tD@Sr1vnDokQT$El)>2|ngGS@xFrz|ydICk|(7dvJiUt3_*x%p^M0
zmbuE%5ukaW+eI@j0i}8a6Q!q@kExV2XZLYnpJV{m&Ri-kuEw-WGcGs_aSrL0R^)I&
zNzpOYzLx@)95$1g^HU6U)@(&kLZ^WWv$f~Zm=P0-Ty6L>+0>mjsOS#`UG3ZEOcRf9
z5BYSZYLBfJ3udCha9gLzEqAQeb3}{f_BacGUX(|<n5En0wK<6t=c4WVXr53klc5cO
zV-PlGda@L_-B2XF`xf?Cd{#t)2ux%zBUGJ?oYE61h}kMfgu+AUd??>G2yj?-Hq~iY
zW6()vNq9<FDf0s$!`L&JeTt51j)ke+c?>JQ5S|6G4Ua8qG^1m``Z3cZNv{E^D<GBl
z=MPi^`)^hKY)dW;Ol~*nkOuf^e(DSYT^`O;agMz6!!a}TbVlPDjLU@;yu<soObnT9
zWeH^clR=GvN_I)|HVFbmeFgYd>4jRuI_~7S>EUEH$H>|Z&gk1_>I^XepLMmfOb4N<
z73Z;I=re040(p!tq#zalrE>`E3zH$^z3<?uI=W>Y&iO|6OR=9|-fOGPtM{SKb@NmW
zG=vaVvddKiA(=NT=?p`JF3!?muBkqW9*`gMST)j)gQv(mO|v+6Yo*|rqxu+xq+M<J
zn5NBY@)n2|NIS6nDc<dMB9x_1zYu8^FsYqR6+JK2n2ZREW2$=+bCRzG^>HI*0*_%u
zR#=Q1O=Js+pHx3}D9B#Al?mJa8Q-vMO?*!nSWG>unu)14CW%#}V?FW8x-UrmRsb+R
z{r&p4fBDx~>U-}gI0;cQccU|}Ht%fbNF~|fjhU)jB2oy=3#}J3zG$rLbfAwj@Kk}9
zWv{3q>Vrp7dX#+|lkq@NSK(lz0AyD~#5DCTtjyh15-Mf2%b%ltcxpTzYP?d7Eqh2Z
znWu|cp|@ajlsP4d$Bvli&gk+9-uUpz(+*ZFPxqz`4|YKT83J2RvH}@gP7d9LIhHN7
zLNu@@OeH?f{b#j0c`ywkJ9OfSAG{Z<ZpjNBg_%-sh{0m7ayWxbqhr_N?Xg_q+#6)x
z6z+a1f+(399}LCafcRnyR6+^OtG_iihacG>H)+j|zXfKvL_W*J*#ln8T#;?RZnl@^
z<B5p!G$Xnw8Cd9>%|c=h8=;QrOF$$9FAaBLx21SYO(I{_PgRAxjQw`{7*HAd*~&JM
zJ8mQOpm(qCApF3gXp4YWTeJI@m=Ed-N*yV*n-M&c2v%boJ4B;5o<Jd6A<VPC$Tav4
zasKFCi*je>)pa`48k??tG1`PZPEuJUQW5EX@)}$`DTPN6tp{ah8KkU39a@X^{+ZL+
z>08KF>+mft_^U0J^{M8Ny0ejnwjK6SP7@08p<5&iEr8j#uf*YXyf+A%;`nDk(HK9_
zbU>DyQV*Z}VH*a6ct?AZ!lBe5zj;Q7)$>WO-ApBnlU?p{`jwlt411C%$e}s`#X)?v
zjA$c~2Zg_`wl|X1pbd5QKs$1vfB_#S0Q<s888dGxPX#5TplH<mos|?4%g|-}VvP$s
zfte4yWStIfL%udlH7v9Ropo_=W@na2<>zVTsk!BIQ_`)6)kfxOA%Pu@Jkh-6vFZT@
z3x0NpzSwgH7YA~wa4T#O1mMVp;dV4GZK~pl+sN+B^g9slsfaym(`@Y~v*?~2#vCOU
zibthRVT<F8)oySMSi$Y)I6yJ#PKvIMMtJ{9JeY>VhAwQ;aYL>Vt=;i?TD;^Gg(Lr?
zG4VIMn5VofUKSEuXo7&fadLRpdrCBKAO~xaFfLjn9wsceFzvT&M;HE$F!jeKdM6$S
zY$`bJS#PK0MJQNEaL)*bh&xO=fO^D_?07ogJ2NCQ0O*6dv{p*9#N1qae5zAcHQ#m$
zG_k{ol!?J_jHK;hJAe!ziR@(zo7T}m00hq#SF}^RpC;Q9X9Nv}dOf{;Gdyv4uGl$z
zMVu1Lz04vhEVKhl5OYMj1RgjkkgJ&)mAaLfLT6*gK%z)OpQcf8+;CHgfgQbU1NoX%
zq5%)jc$6P>{&8m)50bVTLU6VK%Zp^Kl?JH{=_;!{d@yH66KW6M=5|R3Ivre)mCzUs
zZRkQX9bUYb9VvFKb|&fHP=e$OoD523ncifg#xKT<@Xu>jhzZ2l#y*>_OzI25Sd>gm
zpk=yG=Hs7Rds`+DX`7*Co~IopE-Ui<botB2-`2l={P&ly>7>Cw3hewkzIY!09#eeS
z<rvjNR~qC)3>W0J=Q>GK`@&YMKY|i|<1o96$YWAhagy=bqc}v;hgoz&)VJwUa7*Bh
zXZzlD4QlsF;X8x5jb{ap2g{4^9#R~pq7zPT#BlF!>>t3n)6<Xtqi}9UO*8uc-cj?Q
z{r2?NzkFG<@JI5Sb8|k1NL{2xtES@6Xv=197SW;&o&7uYMPfEmEHJAU>p13xjsL(z
z>i#)FjKuwnkqOj9i2XaAJnvAt>xx<QviU{Y0ZV_O9uxVkvM9v3r~HIrZ!Hj|s}6X9
zdzwsf^HhsTxr*#Rh^<@R7;H`WVaDf4#Ri0=Jyh{kY9fm5N})EDDNtjKVtJPBawtcs
zp{0m&)%z4B?W9&BZxO#@<tZY&E;_4}_T+$uiUWlJnoDJa`cza3?AoeSprfQ<1rh%X
zU6X}-kWN$#Tvk!lEl|v`iZ9lPwY~x*;Wj%49`4TQV!R#=MdR|}_KUJvT}uJ}=rL9J
zTrrQP&KOFN!4506gUSx$DHCT0P^f~w(!EvPjzUU%Q8i3TzKPaSB~cTeqK2oM%A6>7
zW9A>CkS`mw+c9`k4ld*b@+v4uO&mXtN3hEwn9Z+O*g+#!@wh<0PbtBSq@;-?v|bP)
zJx#&Ck4x7riM^pxeFXcRJxqGN(h-?BiSiN}1NmD^cbmoW^WR>+NDay*n&QO{--fhD
z+puXk|2;D+FG$~gs?YX#jW1u7o#(xP_~v3vBi}u9T)=3H))?n0Kastln-P?zdbfZ;
z1PkR@@c{-a=T83Ks<kMnf+SCDyswTLthSg@;2z@KU))=NsXo1mL;z~)&3oUwo`yf{
z=cB4TCGUZJ)PVo+-Yq?g6}~WA?G>J>aS<utxD<E+Ym%Pjhq(j`kgfSj?XxSPxJVfz
zNjrAZX9RMFpDOH5wCJW83WPYJ8+GpBRXMlSpd$>1glQEGt-?x~XlS%IT-)eWJx?W9
z&K#JV^@#H;DLV{vGP)wHHpJ>0CbU$KEf7kE;q(@Z+*delHC|=feR7y>*`%Bij&3+!
z;D((M2%>gU4HG`Y(f?~Po1I`~4t@ut{&35kAq%Uehpmff&p?{+o@%pe<{wEVHV@2!
zhGOd~Z?;A;lSO?Y!gml&6O2v}sXD(;ike;H!RFh{@vv4tlhqY5nCRRLb+ZfsS24)g
zB97vhX%21K`!2Az1IDIiEBQdx#41_g;s*IRo21XYit<cq=4Q`uJOBN|CD<NQ?w4@p
z=s@N%5rx<dYE@?f2zUxdX_-x4x8Ox;g#Hfb>FrhZ3`4WnKt%_1ij|)2O~#KgUvPOd
zsfpWbBP5LncnV<%Cz)gZXF5fj)bHE(TQJBOC+OP&dKu~q4nE~7T&!V34GXpo=N~y^
zXx&rsXv^EDdU-L+0~XSB7#^1imI^?>kGB`=a6kX{aeZ2!KVJX#@wczCkH2>!IW>Lu
z2LXWZPuj#}z+yENL<~-^NeS;4Gc1fB)oM~^aKlQb9s1O`O{I;PK1}`%J<*CV9TVtL
zr@8Poae-O@HA-nXAc<1?Nh1t$@H4RBc;&sU0sfi5dI6!!8v{uUn1>9Bqb3-hH-iti
z86gOgw?HlD>QR+z-a<HCmH-c;t=UfNA?_2t<m`vd&WLd0B4w!Wc74L&fEi^Y+7bN;
zTFHK@-K$yCW^n}pP-=uMoK@(1TjTpNSUd(xTn+e|KFpb%(@%e-v8mXQfT?G1o4u<r
z7iZiriqMUR`zT_g<cfrIDF9uK2yP<`v{ugm_2O+3#)M_Uq+mJ<s%T)j6YLMp_?qOP
zks+|bi@6ZQ>gyZ<z+ddCZXEm;$s{e@4gx1?FAk?BkKpa)SqXsg5~i5oxlKQApO2fx
zu>|Ljgfs6u;XT&QXL>X(^NAljjm$Jh)^G1_Zt=}6@%=EY9)|TT>VM!apYB)oUs7%e
zz|B+*uc221FHJ3`oduT~iX&L8nbHv_tV$b#LBm9Ayh1$%7^vM<1)qQY_4@Od>Q=-G
z2_|kS@v5Xzu*5|7br;nD+yvO9DlAjT!x=kLktsjKvPehM6x$F!9FE~r@SeEPv60t<
zo+39;@g6TFVn>E)^SoFHPVSmGg&e}`#ThdZ5K^D5_fqq~VQa~#c+Tzcw-=?GX#~gA
zco>85s5*4R_z>f(hyZZPKI^YXDT3`o*->w(Tu0&w5h(8y|1W#*(j3W=WoiBulU}=-
zn7-9!N5KXQ#A1XZSa4RLGcv(S4@MTj#8kzvA3fhucYt8ByShfYL|SHq40D4&%+&O8
z^*+u$SBHY!&=B9wUSQD2)!-b%23<7c#qU5M%*4SCb;b++5<7b5dzAB=i3o3JiOD|S
z;%?_#TlncD?<RRm6IR<X+ld^0_@?Ja)OeAkk*F49(l+sC#5&L=K#c1Y&4d%Z_X>R!
z)$Q6cV>id*kH^^yKL)qMRd#w7PJxws{Ret4{-O6a``N9M5ds-DV45LmrEqR#vQF&e
zd<0P<NF}<gGZltF1Th5Mlg9jrbc&5`*=OpSq(h}6v}7K~a$q{VvM@;{UbA;rG!6o8
z$u77)m04n&__n3Y$;U8^%3u!Dpw(cqH(X>A&f_`L#g5|o3NS@HT|9A{BfC!>M4fB?
zLry|@Ov6|W-P$HwGzd*}CH2g!i2Tq8oV>h2N$9$=J|pn8g)2*OG|pFm+gI}J&eW3t
z6Ww84A#|<fUAhN9I@pE--q_@1Oz6J&u78-@FaMdj-EMQcF}J-3YAY=h$~`|x-#)?V
zJ67#$CI2%|*hJC8iIu^XMxE^B*!M<yj4BCK>)Oh`cBZt1#sBIRf@uErmmhz=Tt51U
zTx~(bz#YDe^pt>nSqlpb2@1Oldc?CJ6RJ2XU$+v~#uVLEdF*y3B|*S_X-0Wb^trx2
z6^fNQRYLB7df3^6d%zFVp2X23-;!TkNKZ`4L-i9pAWNx-*+8x$l{YPTQevm1wuI4G
zMq~a&ygQ@U3MDkgP)Pso^61F!|Mn%QRJ<}WzSF<}i!JSX!)|0*QC}Q}<FeOVp%2a6
z8fO+i1YrkkDMPUnWRYp2qLasdiMVvA2T7DJ5L|4W3^CcigW@tS^Tjpr;;xN0s%EFD
zRD(+?Ym=tXLMK_xQDK!n!g}lUF<ZBDB1P~f#ZrsA$<<TT-QT{Xq3x<<wk+qyBRY92
z&qvggV6C>hyc6BWoueW|L%&cUB2b1?yzJ@1-6LUZJr<4~QT@BPs7^enZJ95AMkUE*
zsy??Wr+lFNOJP2Q>B7ks)5T8{RXI)%%iIc{P;-7H)i~?HwN_UuG6p?ZX6&eg#uta|
zkO!;C$Ykne`2q7;gH5_$2AQukEOErZd?#U{vY4nL;%3Qb{9NPbl0;)|Xtx*-?#Il_
zeBp-TG8K+Y;+RBj7X>^ZqR3LLs><Vzr&RIOLp?%z@OVrBtXUTb*cqN2@?%D>r#pd|
zDLg7qdVNqi>x6jKsHS;jY)P(RBE%^be*2fFUqAZTe{=y-R6@#G+@*{`Bi$x!MjrF}
zeFPa0P!Lr$Z|r#OE}%FUOm0bDLdU9KDi={iOdl5bWzuzs$X865*&sDcFG5ezup&Wy
zrP-qOcl(uCk?dXCgodVpt7Yj9mrRZ{Eo2h502*pzXWFlDu!-uU!!A)Bp2rCf3@0}G
zbL5V@Nzi|M`}UCrw~;9;uJZ$mk9M!D*7TVBKF%IR0yeCL@(PX4MF{-S{&7FPz|Xk!
zZ(lCuLl$I6KVBm_mxS_g4B7giF;~=Lzu>x*sEH3S7!l=3yS*`^`S+xxUVv$gne{AM
zGR<P}IAjSN()VL~70nYkp`+U_873(OqMk)E@DQ{$#Qj2m1r$}Gk91~7#l1%H!R&O>
z6`rN|j_Xa_AW^I5fBg9J_pcudVW%JMjIHD<%F%Vc*0SEHRNpn`$!8|xHCmM<1g*e0
zghYQ(QDnhcvneS88Uw-e6-isJmaF;JY;#U<3OE!^Hum3UO{+`Ws4vs)<d7)DX6N~J
zqwR6cT`yIy_K<!-AQhXIPn>cz(O=h}cDG_j>D$;T@iPX68w=&6<2gpB=jRFeJs=XE
zXZCRoVY)($sFMJ)_R7VIAs*}t1+Ff+{un|%2g4h((M=#JIGfyI5q|(#so3x^G#}rm
zKoEOKD^5h=d*1ChL*F1hQrA&V^6@G->UrkI>w3p#Sb2`y#4%w8b04UX#iKP^Ty3Bk
z1Th_y%4Ea4a2LQ=M|=;vfz*>d8E!=UkkOxWrbTkzr=5mUENxKl`piBNPy-ls#*fv@
zta=d)$u!wx(iBZb1l7X`)2jbp=IK)Babn+jW1jj0Er*|f`urqiti6No9kYU*B7NZ$
zAoO|~!@jqZkNYW%e>$%|ey3wU`MC4n?|%KmCsm^>CsFS8{M@7fJu3D$qy?Y+@CBM_
z<-rF6A&`fo*d(<2>~k}H#mA^!=6Q6;Uhd>vtntKK9LH@%L{yL4U$W8j4__258Sknr
zw+1#n%L`KG#T30c?y@rPPoi)dPm;uO5Ke00xYnU)ng4Jz^0>?~8lk$<RUH!aQ^kpV
zDi&J3Kia1f?PEs9aqrci)gkNhBOTI3an;kA?MFQ;&0%PWLl}iR{umQgdjGh|c!pJi
zyp@y0_E7t2f-JtInysQjJL-_~Lvwjf!|;zqZ@fKW2|s*M360S#h0X{gR23tTN+Nh=
z=%@LXG{N?e>Ucw)6`y6gl*?ErC7q;C<R73)uH}?e-`!gYZ=5OaQuOF0$N*`HvnYo}
zyek5r$8jGC;L*$Rbi2+EUq&}dq{RCn-1qj#@pf6Ifa|JKbx)Pv@_8J4dJcC*(Cu*@
z)ZbI4eD@dzHUD}K|MkNcRVk6rXY_n|NMrh|ph)lc=@2GRzAymsJ^Y|m^5v%=KW@1{
z_5W%FK>AYzfJ$<jJp8_96)PTNJ!}hNG5a$*^s55X&_*d{GESe#EWFtBIX2Gns)OLi
zTtEd*&xCl$Az1*dkP0zQE^PVZ<T-O6$vl1qR9q8inY<F9*`{S3FchnUl|<$w7)e%;
z0&aNP;tGZk9G7wJ3Uq!(4k5$Y@?^fo8vp=PRx<f?mf(jNft@K7p7AxfPvpy2w&Iy2
z-l3iVc%DBYj-{qpl_Wkn?+`}!Lt=8^Wq?LZ8!8S%`3hghY-)mvW8Le$Zkre3m50z~
zJF42G009Egk)=WagA=>*0Xd@Z+Ubfp9!!)6_Kjrf#dt0taf<<9d9kTX`uJj27Spi)
z{L9O4Pk;UO>B~oqPKDnhk~tl+BAe35_SH_<0>aVCw~j9beB9d`K7Mb)S<*#S?EoGh
zYQ*T8%kApKq-4&VVZmM?r^nk-e5S+8?a$@*9%qziTHZc@f%NxZ8FM8Q!4NI4CQD}P
zo;*wd)(CRtt6Cv1`Fi{GW&ZKu`^&rn2a*<?3LtOYq&Qc|71sJh-zRJA(T4(eME2W!
zA<eA)?AW+mmu`}SfZHslpsQj~B*5_Gz7&G=alzZQ5_02W3l~Fm$a9?~aBLg&-)*`5
z>ZNq2(OfSb&uMyTxCCcz50}tWatUB~w})7656IQlLRiEPkAmfk@{q)7#wCXgONYF)
zV^=+s&qqc`B;71q7o$=_B>~4U-2*<#RbGf;YQNz41QhDGRykU6jc)WasiB9tayW1i
zU2Z+N);h2C;utztn{S=bxXEk=_^5exyO8PNb+yHpS?2v;xW)>2*Nr@L4V+iH1kZPS
zG{akYzGLyj`FAfUqFigfLlpD2cK-y2c9b&LFk4`)-znK)m~R}dr%_pS>~G4>7;pD^
zw3_zz%b|iPsaKR!Pi0&o`x_Hy#Bt0ys+TEdsc2zZsRN_47iv*}3irF=q__WgrPI8U
z9C%~T<;SOCKkUV)`fd9D7~hl7ucy&TLqSM#AOG%Zr}tNjLrELW8rM19F5=S{H7lRg
ztkbQrf4t6ozAh|O^e<N$b-F!f`aa3*KLv5l=2Mcpb*Oto)2ZzTMj)mB)Z=OVuZ|y0
z8vAPePSxa298il-^P4|tPY~uxTn|q&Tt+K7`o}s?fF$yFI`YQ6L>ek!9tzYDr)_9q
zswRRC^4*vk`8u-usqc?D#i#dga(+L4@Znvn9>4p&ulmEMG@iFhOGD<3PL{T-VBu)0
z+MZF9Mn|<5N%k?FvOXWGGVh;BCLGNN2)2)X@R;XgSohTz({;fzXeEa+6Phpjvif4W
zuGKMprgmh6Y>w;gy3(AvC>P_przV#%jXYg{EYzAR<qTb?o_wFy&$N+io!rKGt~UCC
zxhxN?%LYBKulYg~Pc-p#?F!i?BJWJ&ONxJvA)kMVoV1?aIu-Tum)}1Bdj9%xgKh?y
zCPDCqK3wncNLa;exW9f^3dH%&RPR_mR`z&TCgiOY$h-O=<A35;WW`6+6!bo6Ja1<z
z%O{~_OS`YU_jWc^Kw-2MVl)E2{OM)XDgT|z$Q|j+KnL{ysx_Yq`dZF^ew8#ehJSvQ
ztU7fz;uVuV%S|dK<5k|JCQdlTzif$zvQC_X$+dK)Y@`*{2whDF6j))eY!3WSWyM>e
z9RUG9OO#?$ytV#!p7ek8baOKq)9jbezpbDD?eCYbzy1*x6YGzzuP}_Rp|l6}++Lv*
zE9N$8CKZcR8_KC){{rxdQa2hL2|CrWpoA`Na^J{wP6XYW!b3yBNrH2PVHZ=iD^inK
z%W+t$`!SwgCQ2cS*oP%1AaI2xKDu&H)OQrW<9b7(EON(;p-|-qk>M4&r;H8m+r9&4
zI}SOI1^qOKiU7D#Rv|9wV|VO9&iIy_K!lwq9u{FQ*)<;Ih8?D?HuK#vf*cbb-vm*h
zh}6fpH<<x)Hk9k1$9P%-BGQFop3d*gWa#ql59M`_!;n_3o7h~FV<$3E4s8Vb+5w5c
zQLlf>7dD!EKfX9L!qH<prBaIA4dbzfo-(9cplV1jQpXgVh~GYm%%W(njrUuV!Pdn5
z9*CO^Q)Y)mStCl(q$>2zP#ShID~`Si@^1;0tj)Ee&+KZHzq`)w$}lW*fP|k-XM5C(
zIp$TDJkNWKq3PGZ6fF)$bBy8b*gh@JFNMY5y4N_AqyU<%)>MftRU#-6C+jdlK#5ke
z2KU|Yv!OxHzZf}0=@^G*Sjmj2HA2=cPBx_RZTTmKIvvls+v8l(th;7xRVXrRN<xf#
z^r{$8QOrvg;b?%QRIj$hUVnc1`RgwqCH=&s?c@iJt$Y`4kGz+b_IOhD0QEI#a^H<v
z>i9h#&c3^LIQ2X9`8m#XFcABEM`t=bwrB?%i6b~#uOD&v_9<ZG5RN!Y1SLx_*pZ+H
zAfl0PmJ|s%(XXSEHW2htT^QCYRb#_RkpLbfv8Omg*A+M9+$(@5NPr<7pA79WUk=<1
zARI7{#w<wpp|y)*@CiU+A|sYmAvxwV=9ZI;XEHu8lngtnVvhG?c-rNfa{jFH1!r57
z<~>g+>JbtWXXf^8&IOn3BAl*0I0LP^Ac~ci{0u7Q?b1SAU5q(ZcwGktG>Ri56u)7b
z%P3j_5<vg~)V1smZU8}GJ@7+C*MxDt5d$6%sY{LtBn0H5+T@XU8S0Yp%GCS%Z_i&}
ze)|B6ihDQ7<#^({KNA_hEB2}HSU~Cl0xz!ZE5-x)q7S`H=4Jw6TQw0Qc2mEP`RvSn
zVNQ(gP)#@_V6vB_Eq*8FXWjNp<gi~8P{!R#M0z*Q0x{dkk$z)|1_SCq3%E-R$$noI
zSTO!BX2)Ejc$<x4Ohz&A&iG#?*N4H)qo@m4T<md|7kcNlIaOEkQ}*Dh7?x&iz8{<4
zfBZ)GJeT;Dx|#iiN-@QZV(B~$W2gq)Zmw51V4(qv;`E+HqX9A0|Cx@CP)`6caiVme
z7@chvQI(L__xAqwT<@>JRpUC}@vS~I;@v~L8{#tG@h_~5{C0j`fByPW1?h<@MlH<5
zlh*E#eySxUT`-Fiw&z90vi!=g@{0;AJ{HtYzIi;fbUH!$Smt@0u!`|lL7Me4&x-=p
zl3fu{kt#+>&NnT<mwe3cYQNskw=XK=M_(+&`pf<-+`;u0AWY^hIDdZ&86UoduRm^d
zyM@kwcNcD<R_Y`I5Y;nLldR8kp6_*aHz@NN_#ou(6~v6H=?q<K*dy8iCv;hLmzvJW
zq)PF7#rKu`vcYP6?fbF4N}xre)#4hC<hM|&kzAmmjE&80ShCSnHZar#$SeaqOuJZ(
zfr={|qML<_?@DhND_#KAp?)Zkcu4)|1i-2^zbJr%6l;OL7?K^xe*rz$7LvY3XGE?b
zE$7&*fQw^ANmp`Wcfg&+5xzQ~V2DP+Qb0k>M_7ke<}~Ywbvg6XCRC?YpFgRzX<mFZ
zwnCp8t0_s6L5*n3YXbP^=0@+b!?FQE<5BvPw9F$c^Tl8km8tA1auont#F(i5){9TG
zf;2i+>RzHUQ_=U7SVz6*j-4Z*33*%s-v?-hAU~<NO@~H0&WAFd`7j74Bol_cF7$aW
z-q-_XP_lLtI`#o^p1@2+cq0%VLt_A6th!v%<Nf=^zaM=vgymS5E7fP!Gc+NuG{FPC
zYOKdcLKo6@JxHH_eESrcK0|yQFR+ev@@EZ!qdI8}7m<gK`SvPcg)@u_c8atMa#u93
z@x6`K6;zs}6mMSF@zE=U68$1%35jv+#<}}0(1Yan=j^Ay{o|L<e<&gPqw9V|X%i~s
zrx-COhP#F#A~+FvseG>wwZqCvAs=7oFM@7FRaF|p$tgz#9x$uPn{RmMZ=a@bUmEse
z-p}hT11C%{d~{YuoUnd~LL5Gc-hhs^I0r23(<z=w%Yidn>%CKlQu%^tDyVVd{2^sp
zy292bY}Ld9+<;>@-T}<H-1VF3>&Qh}<n09Ys<+?H3h|LiiomPMb3{sRa0gIPV&WaZ
z`mhTOYbaM2zr3*PWauQV3v!UT*G0+8yyjcZ2%1(l=HP$kd0`8~biaC~$Gcm$KNxky
zNk-C;aENa+pH>cmZPLu_N?=#wgw$(-V}YCxw^gdMif1f@-;~X*)E;Ax^bq531q{Tb
z1yfDDmm9g?Ww1cl4Kp|(Bl<O}7P0Jy1R@7&5y{*gx5Y3Z_`;d3j5k-l<5P~0T<A_!
z$Xu6ok9JF48}Mz;|D2@*?lY6)kb2e$OmWKb`#^5j*iHSDa=h@q3-<WbUre|&#wC~A
z#it&jWw`$G^|#M|sAu})EWQ@ltU8=qwqr8fWwPSClS@!1H`CH)GZs{Bowg;-rAyvd
zgvSG$$k8VOd(HHbce`H7(ug6E0z~-EkZIOGj<F2gfoZwGmGNqr$8LZ%3ML7Hz->Vr
zE{u1FppK-Tcc%d3Hh?Lf;hYF9EafAa_k!Jnu#+4h2NU!P*oP$%_&JPtlebH}DQSgt
z4P13K*k#LBF`$#{M1VlIt`tJ}&vZy2sgBjnS9Kj0s*2xjrlRqJw7t0*J_Qym@Og0y
ziL~zIE8BcP8<Mb(ZZ&r=vv5XOs$UeeCY%M=1rypxXo_8Gs{PB;>(hrBmOoqEt6sHw
zZ?x(xTM*Hetc;bnvlpssEzJc=G-PK=R)F>wWN{&69%<v2Ts%@O(3phl>x)x9$xs3x
zf7n?BQ@fy7i=uDL<^aN5Sf<SOu4oyUC-eJvBeZ1d_q%vh7gdk|=mf&&$r*ft{46qr
zD&jX_sf;;Qqvh-2kR$P}HrWC!pQ9W>%u!`jp6w@X8c(quuK)={o|$SS{+T(hTwh*b
zvA5o;o@$ZsC-%95b}IDfsuk4`P4>gpq1vH7KdBptsE1?fY+5VBLW~0UL+{<OyF<S^
zR+TdGB-w;|noQkhl6&~8c4;a;P9SkuhXosGGRBz{L6bL+CzSI;$PdAQAtO*n9nR{B
zVAD$T?k7JhRwS@h)fC>yk4R3Zm+Nnas2z@H9c6Q`#QEY}I!liPZiICz*{6QK(^BX%
zDxewJ1I{EVn6ri7K7rX3F<u30ulckPAO;|*m=#2Bqie_9>Z4tLnVs7$eukwB@vgRL
zsfErD-k~>g;2(t~xg+A+*_bd*9_)iaJNFM{o;2J7Z~-P+o5m}6MR%~6jn2^frnpxB
z!sMS&fSSEahBtc;)vP9@J$^2n#|{fXQKdO(F(h-3DQ1-3ESZQZF|!Rp)JV#;cV`{Q
zK;LYoE!B{h!;AEIsvywo8xGz4*wQoD)c)o3Pd~3;fBgv;{qGdavVV3=NO&2@3C;&`
z`WP+5B3<*lQ@9R0E(Y46HSz9Lcz2Y@LK(avaesg6DlBsBYnKViC-~hdmtF$fKn3rd
zD0+K4eZed>Clv)sRgVp#3+EH3i6ijY#anD<my~dUZ+4zYEsL}Kf*wG+$=R1}XqRF`
zmh#lt$SOHade9YuoHO>C+7;k4T=>exJ{a^IU4P;Fy5&M5_B^3o3++nG;A$91Cr?w2
zSh@j9K6zOKsaOq62T6PCjkBg+kQ-V1&T3goKk|Vr6f%!yO+rQh(W6B#90fzSdg#cn
zV0{D+`Qjnp4RML4cc4Uo_9#y_GOIcZLguL2`kYmKdM|X=cz3E6x3d+UtD@3M57Wio
z&e$D4|MIt=e|h->uDUv+q+KrKqg2~5TMk!3Kw8)ak&s&Bd|wgy)zK_A1Q-5dE3&5C
z(b9rlQH%i0MI-^De?v1|w@Ij|RL29nRrLMQ>&Ot(*vP{prHqQ5nHCwbT%D>Ns6`yE
zL{w8ZLF#l0uGw_)+B>`yl5@eYwW6wL5XK8mYe*)Nj6*pi#z&KTOzR1pi}v`<wQ{sy
zl90azZV8SrBJMY3Fir3rdzl5|Vay?}duR=1<6>{fs@XvH!PPG-UNEv?5(-qs110Zz
z1M8{cw3jHwn3TSB*QNbKudDm!KqVci)h<g_7rYAiAfrnfB$QA!kS9g00kMwTcs#fs
z8(?6bU#!o=Dn4g#4FK+qVn(GvF-@LQdEUl(!wp*EA<%c{L<pa^!LP4O<3_47-5VLo
zD{G`CRo%?k$j+PCx4H;J5vl5;X5IYSJ^IQ_gO?On3%##FeXV}fg|z&tnNFMMaCP{W
zjCaKsrD;pQCK4~p@sM~A$#)}d6Co5_uPEO1t!SpR(PHXwK!#>KIl~xd4WBKWvn@H%
zJt0e!TcX|HDW<`SMS)eI0C&<Nf}=K})$VAm=HX>aAX`}r#EgLE%MMdX*RH81vo|IZ
zb@4qjP)_)EOv&am`R^1a%7&F$bOQ%#Ua43WVS?pkWIG0}$&3P747(bCdG3osk0b^8
z2cV|}-R~vnREG>$(F>7JmC>@OcY2%Jgr}T<y)LMX`rLMHSOnN8YUj*dB?Tm}VHOzc
z63kuF>dWvgB9LTa5dna}W{Vack!DmYaI$#E2V0!(BdILtfn{@zQHTTZw@GA-CbBcz
zg@6Muz%As;9wAtEMPV1%{WJ%w4L~$BFmwl9nLG*-oZ_p<^v7Xw#t?JRXyQo#B$-W<
zvnA)p$KtAi@SkITVaWoo(@II(1T><nkfX9q9vj`Qk_MD5tE(d>_S@(X=gbw~nYJ-a
zr?X~dvZfZTPiIJYJpZ+v*W|8GXbs$H+#6D#8P`BU<E?hhdU9hjSVav@MIZ}Y$<xIt
z#M&Z3VXG2RfCA4R<T))3p|6bm_^#PlSR;lK3+%jFY1_|O-ueaJrpZXKYm49poB6gS
z7u4TF+-Xr*$1T8zQEu2Aq26Hc0oL3w2yp_A*@pg7&Eu@AMcNoGGT7`)!yQd*gI5gq
zj#3s$73b0$AS>Mrh=(`g0|^R^OhMY_fap`dvYXuG04tfA7ns08N+^9Q85j+h#(Wf}
z3-h)+Q>a3<jMcVlJgdokI!=a|rs(rHMI40Hnta1Z79`61pY|Nc%^6#IK=WG@0NIr0
zo}_c;>%AH~rXGQJX;5Qi&JuAJIcznr@SL;C+u80vT_f?x#JD#ngX{h2j+F~l-+7j=
zV;DlkGQXW2Tts^B)^0FeDG^I)yA8I!04_OQcSANI%?vXtYaJY$X^sx-p7u^KeY|fm
z2ek#Lx8yCzz>^R!$=eFV__9W&*lhSOrv8C$?bWgR!5~lHAj!<M;8@aiGf&=bIu|)$
zi&Y3|!+TPor{U^QV&MqY(){)XMgjH8^OzN9^TB!UYMrs4ZvBOO#i=tDQK?BDocSKx
z3%h1@T08Ozu`$}IF!ExWTD5kXpV=xE)p#U@tt`d42h(`5a|%14Mr!`-XYDVG)bDNP
z;N5&)uCTRHWR`I&_o=6E%1jY|!5PIa*cV7tS=%`ltOeI*mSdF=xX*D+zUf+{Cp4e6
zA8D@90qbEdhuwW|-_S&+jj?jlt7KtA+)1{28=H-exZK&=($o!i3j|Z_IgE^Pyu=xL
zW@DBzzqu6A)XEQJtJbtc32jX~yzCQH5@9~JMmQA6g}qB(n}je^k~P=6p}-;UR=6*S
zV&a*E7I?M4U<zXchJs>Xg8R;B#niJ=flS^Wd1`f+ee#gPDF=R=8TgvoZyIxSzDB&I
zkx&$?c!#8>bF~s?|0DdgcA`oeW4Ni_#3Yxq+th%DfJYiC5KFGZi_DJa4U(0FvYg#9
z2YrN{%=CBdoH_YS3y$upA(l&L1JaLPWV1ofq3wf<t3B#9bpE!39KglP#)G<Jouyi6
zYGGz#Poy@oD_|wr#pB(@OcEM%8&q-EzR|5?q;A|N>6x2({G^8Iscf*cIqNhDGk#`G
zRYX7B9h-A-7AqqxAuNf$S<k<2&>ERI*@O-g!r6z-w4ILWwR+XeX>iqDM6t6=cRd_c
zu!wcdGec71v~)GIOdFyN>hO9mxGIQxZPA`{=E=UfW_RMNWtmaDfFp~<mzhTmfTS-J
zURH065jx0S=x`d@IkTZ;XV;f3nv^TTK%v-RA}~;+#+f2DJQWCS@d&_zAxBYI{EUP2
zuqrIQ!a2ZJnl@Qbb(z}VoFb?e37>wGmW9t6eA2iwE;^M{J`))8_5g1(TxMbV#H1WE
zJ{7x;0(#qo))bpoWerpDkYdPcPgbi8tAz>PSgvgr&@LKnV2-#)@nQV@>(l@7f90dT
zN9LJ?;E+2!h>F7NL}|6m`i2EE`6#<IcTL*5OmMJY&#M=d^|EMZkHU_3!j^SHXw8&!
zDPg&D!O@CyqTEGl-PvyhbfSIB+@W(xFRKNDC=D6kSdRT78W_MsZ?Axf*7?d~fBoy{
z-#$Ed`VqRUgzqAkyOhwLH1zS%==!0fKw&D8M$~>5Lc+fk@ywAJ9$4fq@1jK0MWD{n
z!1&@n`Ghw#IgWF~HIDXat}@YKk5#$yow559mWimZn%dF=%WCom;S@9(;yjal-lr{|
zS7a`l53>W=#~w+Rf1El&n6zxsb1tc2%Ec9&2irlup6bES#@MYj4P9xG2vGdX+YX+3
zhGW<6DQ4iaotJ?J(rxqs<rUSNFTno<a9GGZ7i{9}tJxW7ozLz#EuwbU&2x%7iH)J4
z+v5T_pdsyY)KTVWW>0mtmGKyN!bfMPrytf^BmpEmnyjfNCxi=!B1EYuF6X4Sb|i)t
zrmoi59yhx<wSOMkXr<oCRRKfISh#DM{<&Vg$sqcgqxLCG5q&**$yf)PfLKlT5HmNj
zLw#hM+H6DZYwL7UPh-!?XDo$)<ba<9AH!5>2uuJ5PH$%yJoPJ3yE>)HOTtbn3_l8#
zSI*Zjm#2?;l}|v}HbM~LPUZnDhQ{{F>#x^yk}tNf5ka3K)d8rRoR@$ZH0N{`&9XF>
zGF7j1IIlFFgVWq(3m2k%RvFUb=#S2l!~dcgxH#pEz;B+H!g1c2?V2VW4nkn~TM0G6
zj9L^ACrsW2>_6@z3r<Pv%$=QbYzHAnIY9~wKVROOEp*8)KUb3{fmAx*>-Vj#J}Z+{
z0{f7I>@gy~deqDH30R*x0PJ%1WHeP3J3oAUUcJsF_E}L2cP*#rrzF~1j_Vojpxq_x
z@gwnr0@9SY<!0(m!J0^PSZt-jf1ydzG>?g;urtf2KX&PAwR#MO)lW^-&Gg}RX^><Y
z0OJtBTBb{e%d~g1fbQdPzK!^D>%(RDW8S)N6@7KP&63M)24ELs0$1pc`f`;MOR><&
zvltgk5j3;T2#V5Q_<n9Zx9rx--Dw4)E2_9D63rf;AZ5Y5!~`TC-As7UqFo=XznjY5
zfA~4`!fHKYfL%V>o+LPw-(B5k225ex1<~212UMRDLv_tF{CD_FHQ)r0aWLF&EkCGE
z&e7B!#TXVnIN<}_LUFT0ozc{o<6Nrt+$LKt8j-x*1{5*!M;KZEv+@bq9=C&F7Miv+
zRTnp_(r`E<roFpzB~GvkGOLUHC)<V4&a*C1v$_^%Kq2@H&mPI}E~&(c1Oa3cP5c1i
zHHZOk=yAtv!Py?iU6O+Af(cj4$+uO1oew+vZ9b~)2x!iN*;Asea{HawB0(u!^=TZZ
z2{lrA{zyUY&F(I3uOJ?wa6-l>FLj<!F2X{WF)yu^@T}Ptz8GnBpvW)Ayx6HA=nD%m
z*=Nc_w~YgrkBb>`;@lPWDCmCKu6XM8fETuLHP-%X7`pL@1iw~Iz#ZB<cndta>Vdwx
zRR@Rvv?#@o$A2v)h3BHorT>2}{(o{V{>#f>e*WpF%jXXSLg5S@S&_3YWndS%N?G4p
zBv+nt4Yi_fXNtUa$8m**-%=rNox6;<lF-p>5YfVZprGsr{Mr3LgdU1{D4SA>;n3zq
z>!QTAd<a`qGsy3RmKjmA4-pxTdx{51Xk~l{$1VjnC~IpgI{`pp+JtZ)9S{j4bmBl`
zcSMFqw1qv}kE+c0(S=EV%;3D@B9QTzItgkBWt$0HmOJ5T*<VW7Q_8vQ{N2g(Bsr*m
z#y5i^k3}x9(dWTi)B!{GKCV10v%P}jICh6WY9OrG6Oa$3s0pS%t|IXKQ5UkL_b#kc
zPWVsaA!n4XCfJMeZ#3_Qk}q8+sV>2IJ{1{J=yz;t`@utDW2nA~iG5X(L*qOYRp>00
zR4Avw*a-u`jCkP4ELpw3H<r%O8v$AAae9gXSjI)h4mUm%@uc3DE2FC@iac})POy|Q
z7-JzpKN6#<z`wfOMw&;m--Z?#9kj2~wWO+Gu&JYm@}dN9VbD3pE7z;)BPHXm6R^cr
zs}d+fL-#uloD8G0)#ov5q3`>62qj=R2-YiRs~}Ee5_I`H_U2gF4o;{jlX53nQf|?N
zI5WXt1p`{_lPk!9ObUmR9+iZp>Mmoss6vdg5e@AyHRYZ(J@;-;Or_jbAwa&{v0Rav
z;n0LG5qGwr9lGy9%5fQMNGePOl~fz#!b(pSuRCtlR4Zu8L`JrRk>*c^tD=(Js)$LD
z6Fmnsog4v2WMoS}oHStp7Y{Ik1>;7)Ok%i<&R#gghA*q6AMyv}L-<Db@t7I~L$F3r
zI_k(O>dNZB@FyNc<z99(#uh3~XX2N;au>#R1#@X?G|B&gi4?N(5J^KFvTv-|Ly`ph
zd?z(wOh%A52P$<+pfh8W$Fp^8r{f^`a5n>FS0=E$i>=6z+bbZC(5b+iaTg+$iN|Cn
zNy}^*J<HiCNmR%H*8W%(#p#&6V;vF&iR`9HZY*V>W;H>pdi-=enS!)6!BMz_vFV4r
zu5D)xcCyots(pN1Y3z(cf;B}WqSA}T*mVK~sj@b995Fd$ZBa*cT)h<_9tjVDWU1OV
z=HnQT;{a{d@}1}oG*{&G!(o<{?IF0RY&j*IC|*C5_;yz8zA#tzF(-v1DT;Nc@f5;W
zv6@GJ*u|Ojv~h=~r5p;|j-Q3<$L^pg<U~C>;hQWk?hz;lp788v+`^4`@1YUedcaey
zfgLM35Pa-AvON`itZfH4QHrgU3cs|*Dv^{f98<{7D>g1eT%(6XB6e1V0Y+k9gUj~$
zx2M1URh#GNnD^zfa36>rR}O)(dLO{n(R~_GLLlAsS;6zz=TV4U=;T?ObUd%tG}_|C
zjtxrO2YJ{=BgbctqdWgq1uo0=-@O#P|1*%}N3GV^u^9h#2d^^!J<Iy~S4TnSuU^N+
zkBeinc!Rl@5WV$Gbw?r>aGuUaJZp~ptAzNtN_7e0zkUAqAD>=6e^6=jU(9bK);$4?
zjwjK8_iG5Izx{7~E=7xkH&zbYD*7SuFxw|msZ^d!i(J^3DrETKU%?oPi5K%-F4fqc
zRP!e-KKkm)*X>|)LIU8FCk{p#MysnvNV5^Ka$WIC$&_F4;ErJ&Lr3ip5$$DQM3p*0
zIM;W(tDRj4+d=}5(T^u(%!lQMKo%lSP&(<VitnKzNN<8DWv@OJ$sRPyW9Et@TRXPT
z73mnts+KqY{tgO2U}+F5WJZn+U!8{+rk9Hr&Ja^in&C0zYkySAWGScWPE&suv)}^Z
zuN*_dfsMX+mHL)1>LiTs{uJ<3hDnkMCNYzmNRJdHH%g_#^6wxC3i&+90|mPjV<FoO
z3VCEO?ywM^f;b|C{ODI^YTR{7t<;Wtk!Bci^8kXW(1?X_merqTv|CiKT|1z%{sd5g
zQXRsC4ZO#WOqX{U9jTEAu9LW41F*&>QJObCNtxM?Wxg0N4xB=hOXgUz`_%jn$=eMS
z!kHagU;$mP;Q}c{0QFGn5N(@OG?VtZ5?<6UjgD3BB#UwuRlUMLnOBj|C{K=u5>QRp
z(2R%v2>8*D`0bO(7Ns>y<jJ%l6G?3ole9KA2UE2DJq`Wtn2Tf~U34rt7bQ^k)R@SE
z;8S~0$2ll^93URY0}5X_&JOn&R>TuT&LgqQv2GM7QwO*7BvnBkEx&j^GJgY1aGic>
z+F_m~cEB3WMFf;YMeoLwTm-WKO_|wDRF|$jNz+~WZLH`^J^4O6f>?6RPnsu7yHdof
zWeF@r%Ca#FQG|dOE8wP*>f4wJNwn_DT3tBI+w3q8y$GWO*(~*cWeTK!b}Ppv^8<@g
z&PNfXbqXCu8@y8b^3$QU#o_u>wIk6(J2dzEyX)d{8yCNHvQ`h3Gt?!d%$3{VY3}I~
z$`uewF8_yxvt|AHr(ga66=vV7#F2)fkuE^c%W+PG0JUClslrA=wg(>d9fS_mu%;ss
z#4CJ9dK8Ey0c*jLgv&J=5?smeBg(kr(UhAoleVugaJFZ?5uk5C5;y9w0Yj9q0y=C5
zJ9ofk36PdtBf`?-?2h1E*_}_H75LHX&~Zd3nQ+<4o9P@DhP)_lq>_YUX(I9}XNHqG
zj_b2WvrJ}i9|X_Cn6?ckjU>bn;+yjx?A`z%Df3MZP(7So)#Giu1&C}peycfQ=3rmk
z;5|og48PS!etRQVb8X<rgj@q^i8Gr3kp|0v&P<r$dWJsah_)(NKpM2zTO%Y2J{3Zy
zQHadw90_s%Tq4+&Fy`J4S4%j{{c6lvFhUnYV~G1Q-PL#>mYHy31k38oTM($l-HEMD
zBf7(Ia)lqO-9JJGQ*}hsM>JVkA`Um&ozf%5&Yl65z<+t@D(YB;G*x(Qo1m=@x|Eo;
zo(N_We9@VLoJ+8CN~lDQ3c3mX9;~j;{+Gt0xz(g$(N>4kCF$HL-#%r6(V{oge8Zon
zwZWNysNd(qV<{j-_L<NOxYqL(C7>xV1RowfQ9_*^wZP$rORYKs1$;fw9W7kFZ@eUt
z&&aJW9>f^$48v)f`w?fOY}C4|(~fgyh!h5-*T{s%d!=5yWU!-#A8w}nFtnobsvYt!
zJ2q>mnue~=C+wt@bHSuM*Ud%twmEe&w<YRLTnZ#z2Uo=^5+_ywouKcm{v;8FD980%
zApTbigXBoBb~Yv-aXv*$$y9PuLF6g3;nZTv{Ibe=6nNsi0Z(d<&1Ofwx9n)%YSO0m
zEG<@l0oguBF3S34ogBvA767j#0s<cIT2%$Yb|3U@znd1KeA0<1fa5g$P<ILMpU;1L
z`R(b~-#-7bV8f4B|FgKDb0<lU!n!z=>-u|#a$e?}b~Il-(B@CK=a<jkeAb4f`0Ju8
z`4n*XO4%zWwQDmHuTWefo(X`m;I_@XllwB{#N{;*oQ9@dL%orKP~qzF8546SdqP2H
zUiHB%^+B~k8AWl%`wDg~9hN|paNC`wU}*e=ua1Tj>bl5;C9?_iE(6idv(!=nKuMaB
z!qt2eR1wQDJDYMd{&{gwkeWWK?AvD&*}H*S|Mth+=(EeA0UwY*Tg=4O5y>Jcn`Iki
z&hEg^5=f{Wr!b4>HFhblTp~_XeAbdad`9IhXsfaV1DxrjSILcX5kHoePgfL@kR!Py
z(Oa>EFA330Y_5_A{(+rOVT6MvaDYox=W^#&<Z}5;oFS6Q((H5(#szeZKNy8!M)8!S
z0qA+aKlF#$C4Jbn@*bkEeEs$HADE`^oZLB@oe^5N1ocz9!+THFmFf}<GMipi;3xdk
zkRl~Cp85QIji;7dJk>GhSFW7pTG2H#J2q;(@BHmkH*LxI^jYlhp<XIBf2hxB^A|}V
z!8hW)zB&x{q#R2a#G<<UA`#x)3$GlXSJB3cK;)THAD50sAuIo0z#obST%LY?dj0&d
zmQ(r>Ug<Kd!F*C4LQhX}T%I_X3RaY9L+?I`iN%NczUcmky>+UmdV5O<x^Ox~V#{H^
z-vn?J`d8(hhh8UAmrdW5_5CC#*NMaY`k@;>WLgD*$<w&~{BXQJq+MS8(ctjB%K&Jn
z?pg=@T91F6n%d0a+J^DAsArQ8x0b2O_qqw!DX5wZSUtyhjG;-llm1;F4!+W1%x`=5
zg9H)RY>GB@HA8*0-|i>Q-0>&%ibJOadsI<@q5D6|=_QjyEqwQbu_x}T$-P$?ZrB6L
zbpW0eemHTsHAn*hs9IkhKN2iFw>b_n1^($cjJI<2;np|f4&$B9zgs`*w$J;6CWh)m
zj6VJ_5YlzV5DjT}jFG77qWW%zTt}h@AFg*h7>Q7PxV{_aNOT$TLx0c8$<jnrN6}Na
zrWLg&W-<O&AFh3PQ20T$5jeabi|{I9ig%B2(glto+r(ONf~h2HGHQnOIYY*Mls!B)
z_b8ikQ#@f)RJ1;c{PDzLUQMLG0+DZfVI-v2X!zojr(V5XQb{4#2|o7VG3xJIB}Ykl
zlw#WZMWQp~5DCBgjw-U~=HGQu+H&wm?-%nApX6SvsuK~%NM6Pq3<q<tFdsSX4|0Tt
z6O;0XFCyO<i+X>IS}_-@7^ai(7mn^7qBqWu(vixA4*_Q!)Ps<Zpg+h*(kRJM9>r)K
zABx=SCzZ$GCsEhykK$_>6T50oa_|#uikSdGK)%18-X50H8l#<KiWPNtdF%5{3gbyZ
zNgw9BVqAWeXebgaH~wfP=pz)O57&1UfxPSto_s*6*(LUeu^nmE9qQiW+P#}-GwNlZ
ze+ol&oN$kiu3JT+5}NvUN3%&oWacrvvhqe3YcTEI3MY+4VgS(T`bqOl)ZSum7$dWl
z_Ml2sUBz1DFMCYKm=O<R0<9-7l`@$cz%P|$5gW-+KGH){%y-QAvd_`;06mIepdFXD
zL3~gJjWJR~DRbk+ti;67??OA>PAkpro;u^ZCx7>G{PH1}v3P`r^rbs6<yXp>J?}rT
z_q_b}moFa)Y<HJ&LZM5-&t05?RpeCJ*)E;!PlYBjsBxCNR3c~aQ9xu%lz5h>(w{!7
z#z=sTEH))g35oqA_>>Zjmy)p^<);I4&N)`1BJ!Z45+^w1xu0pbAoUo%UZmiJsi<!(
zlWZN3vy_e9K5pnq`Ny~FvuHIf&pe<?b^&F^FGTSh=I}~wG|Z_cRg)+2sXoyScJd6!
z!se9fn7gZi1X8@D+tv=li?r&)_iMJEq?G}jDm-`u@*1q)4Yh2(ViWDs3}<5C0aThl
z$AHL!bWVY&!bw&gXLq?wD-J!onj$JzCD?bFV*WfqwL(IJ&nK*bTL3k^ouM^*Ui}He
zChqCK5@GWN9e47|n0jY7nG0YPMO{}@o`C-h{y7-C(Nnx)@9$Vaq-*(1!QF)l4<yy#
z(!l1nbHjf5j2B1lpxfC6h>kG0FUGzFGTl)wWvs5$2-)Sy!A%i-)@^=4apIOo%Dd>b
zUHc8ymg%Zf_~yvRLm4*pf<}&;8L^i=72!77CY4_>=7$*@$!2zJ);$I)M@B@}-Ju!a
zEKloD>1~9Ej1=T783zQi5i6l4-G6LiBt&OQC2R2%RBjXN#_4@!#Zuk8I&}{WJrh>(
zelR(8dL~H)lYo#mPg+5UewCeWX++ACT#0tQfQ-gOxqN>5<?sLa@dFSihIq44WSGj$
z-G^>M<QxG1QHo=rN|9&+E{(2DO4NxkS5(EKTTfueYjJAO(X?K6$Y>PwR197$;PbQj
z)$5;NQJA@+gOqqs1fH!vVAHjj9u93^@^Tzvan|;V&%f^p@{|sOYY0W0T(MsNlI&{K
zT@&sFq*!QWxi(gVoAbN}5n2&UAEW7n%9`qTb|6On=C@C!s>0b2WO81JIk7tKH@a;V
z*I<!RSVRFk)YpuOp2GDH)dN55^i+soSfag!>z`68nt*UJQxnNr#~yC|s&J{=IGgI1
z%GNhOx_0aQQ@E_Ad8-vv<*rifdfs&LP4C23m=pmL1_m5z6FMj>AuR2}5%>GCTcrm9
zN*l1)UXDAld`AFERWnxGV6Tu&^oeMY??wtOXWH<@$vUQsxGFo$1-mNN2K9BlenJ6_
zrk^AsW5q3*&r05dI_Q|J^Ksr(8>Hf&<#>1-6)|iMK~+f>YkBPN<12d-v4Y?z735vh
z_y`bYf24)2>N^afvhT<ID|H|$3`jEGVQ;tD3%ltaJ!yc-)CdATM#fT~T}Nd8DV!c5
zS5cOktv1|lN?KreP-yj#!)It(<v7a?9*|mDFz6_p4EuXm4~%7+%k@tIpm#~4arGYL
z>#lpf&2+7s4Emsx=CT{@yca^QHRt8FD*dOlOX6X&2ok}Z(O=h_F21QH%gf6L(&!w1
zGHEnEn{ZICPZHSfqiP(soSOSAS{?0^gKV61#`w%nUM1L{l@}vO(gMduTBhG-migW%
z8^Ttd8ljV7$6TD5xN5FKwHw`(UIV^il)!Cr*8ms4eM1)|Yg~U5)P1`s`8IL}0yDj~
zqrL*H*wWCL)3e$x;5<-GJ(9%v_0bmC)t$tbOj392jzG#NpWB_KCcT1CoLL=PbLrCn
zRl@uVX`(yXNUmcEXmX}d?tYC{XVFpp`#Lj`#@S1B9$j-+sW&b$K$dczP<nw<-Gl;6
zUT35x@4(-jF2k9G#e&<^okT5RLuc8U1A#AZXGD~YfWHo>+C&xvLjqW2V)?yOZplfw
zJe-0!VxG|>p2Kw11}mUkuiVZkTwU{wd-_a@e`JdvTRq@9NUq6ZD5xw(CsV|Ji@fRv
zkC;98QUlKL*lHWlv*_qSo{zpo>rp!KAnRKwEg*E7190_~G1lX5&g5F~eqKLko|}k4
z8XqqtS?+U!Mr-l$=AMqs!dJ4knVIKn7vdT=X^~aH`hsP^XwWIR%bo6R)1o@1jMbwR
zcD7Zqk%>QZP;cKLmP=Tu&h<Sn`oePKHuKKm{us+qB-Q8rIvog3Eo4G-7WV6^3v(5(
z#542+y1d3H5C<nsM|6<iJ}EC!KxT0o!UUo(zn{f_x)eMi_vL@@6@k3{&#sAO3zPcx
z4@+a1t4c-^OTA}(bI~E&h?HlPkSx*Dl0QiT<_w`~^N=M#L_s}&vCx{mtLMLo!Qf3o
zuaV>-q@VNl_~c%=cb#inz&7^F=<{vXd1I-O*IEfhE3;Kx_E>voQoO>|P`1r!Y_=L3
zuRZUx6rMp7v-kb{%SS|7I`5|ZWcUQqdlf1H)@fl~vUfoXglB*yXF}*I9Z&wX_pmXB
z>}EN?N;&%<{a$(s2^3RKjeoDJZ_KCRDmnbwy>?~ItO#K;-Mr-soAbEi>RbM^Up{k3
zsItVop)hP-%(X}Ym%sF}UGJ~*u0Q6F<MrR|;+i9Vn(KYvJxzQ6l=`O(T0st#r234h
z{t8)}pWx%S|3i)2Kq_wX)I>R7HFvi(|2m!_WB8MHa`lhxL|}iT!ilEEm_z1s0P6AQ
zJ=FftL;s;W|KXYM)2^@%HBQ4n|M_D~|M?%!dy_=GIpy))1-^ZfMFH-9Xh#Y*OgM`9
z!+~v(tFF>3XVX0Ry#S$)a=Z0~vFWDs797o-A4ufrmgBdnwzEF+TiC<8I-iU0RZ@jC
zg0qYw3KA;Pg%NIX8XW;7eGs5VIj)~#aA4>|1=oqEMcY2ay|CN^OdEj=cY^}9I!Q9%
z?ps+gWK1J0ZQ<i{aP>^s!-T1eVsoFnYeWe>V3_xr3J6UB^taDH{rs_B(B6sO=Adol
zUjCRnCw}7evx{kn`t+I<ZKYZelrN-?b_x<4j?sr(x!z>tgkEKOJ?i&obcybKC!8bm
z({G<-C<ydb@9XiX3X)N%-tsu!k>pk1$1I)J9wAb5Q3^QI;d?xvhi#as`YUm|rGRXy
z%Q#EsRsg3H;QPB?fwOO4VrS9i^o%3oF@<RDMjT8M6m3S*=NV=RJ7n{#U{-4Q{QZ2I
zF`HkNxAnXoXS5w+ySsIsB4F1s&l=5cfKAlJoZ-QuJ8&z`fn0z7<)c$^{|v<h)w4Pl
zc~dAv&Y5SG9vjMz%1OwvI;Q?z%m4@htch{L+i}|ZlfUKT1oQ0;%%1#_WOGmQKyq*!
z51zDmr6?)SRQ|@=A60rI8=2N*k2G)(AdlZp7jmO3ltgWw3Jvsly-@4(A-c-Kzlx#k
zImpt(K?Z7R+>Izk!V2v^r3f2@16{tK<9ZGtRac)2<Lgf!_vYxdSvZV``h!Y5o>igW
z1EHsX@iOf52_MoY0&1gij_$my7zT-t*rtUCLe6Usy@*jKaS=(4+wZq@yTU`v(kKYJ
zBW4Sm+Vw{Kmc74%@Fus<v{V7@VBXHC{-~>%ks`7f{UmYqhxI|w2|wilBZ`JAxjpG2
zOg$8sRCYU;u__nR2_=|{@I}gy5YT)Q6aZ+X`O!Qcay{$!2c+5DM8CL1MB<pV35=4K
z(=->tOx;9L4NxfV+gq28@64?wu=@dCkT8Lv7TK!OeHTX-#@TtBj6>Wf=`xxj>aRpU
zjgb-YsaEfCrmOkXqZi!a3OOmIU5!*<v(=-zk73sjA@%>0UnBY8$$*?O-!1?fowoQ(
zK^N7<x9WE362X@+-(LY}EAJ3o)zp!M90Zz;tzWXdn^lk&GD0Pg75#8GS3r=eim3_F
z#~sx`xk7ii^2eVK0`iGR{-Vu`boQ#{y{J%McnFF@Tr8%5yKxv(>v*_+=i3+WbTS4W
z3f4^8FKq_}W{4C_VE`lrM^Q$)J`p<aV&)X6QUsot&-{S1NthiqzY#0=_N5{=vsefM
zu55h~p5c0(84Y6NC^0KeG-d60DJ9QEXh$IigfLoZ#Ikr23}WZ&L=D6S{HpRUo0Est
zzuoQ?9QMbzFBAuka0k$AA!uPs(t-dTlQl_XsA#sph~)&b%j5)Mehis;o+2l)Py-7!
z?H!Jlc9Ed4Mdq4(vfe5zG0Y%grY@F)38v5uc%_Rony5<~A2hKRga7!qkNhL;>>wy{
z6giKEC4he0(Kyr8J8d3x_)(FMW!e|;WN5}~59bqh0eC4CX)*cSrXT@}PuF6`rzLvk
zBT}rDMI<<D4xh;iQO9j?ByG6d0&|IKFaY9-Q)GG>RsALSBpn9L#%4ExZi6n$Y7U^=
z^_Z|gN@k4tA9wt%6kZ!^)SeMtlvL^if!iUBOLLoF$)|GshMB}DV!-9uB?&IGsSA??
zw1C-d3>qnuSghJH!S7}V#023s(=^;N4Y)JYkO$E(GSq!qW-Z<&^h^c)#?CWlg9NL*
z;*x;qvr<x}uI_XOv1jRKu263p*NUcQdz*FF@ZT)9{-qffg5;oH0rc8i(yfNen}stf
zt<L0fz67cB>aJ?GIYM-p?sS22Efr;W5pt4%4GO3VLT|2kp%H?nk9msnZQ)L^b^~qR
zIZ?xKFQ@~$xd@3}n#S>f4sUg=l<kRBiN&pyrzGxH*3;B0z52|uU0iW+D-O*C_<4wL
zqb<R*Y)V}l?+XxS$kz0fHWOg|^qvPrfmZN}=mwOimg%N5$sRMpyBS-ccQz%;wO4ov
zlR?i0?xVGn`^VeH?I+^ChH<YmyuFdHFj|i{4?3a4=?;>=*={8gR0w4rWV^{EV)U~0
z^8i!h0e3b#x)`RYY7*&SC`~jlf~lF}72kcDio-gao4sxgUcl#pyJI`%))-m%z~=dp
z8J7c|2dyJ;@A$v<Pr@O2B>W|j7_;o&*lUv?LP)388v%L=tyP*z5>~gLdHmg+547B=
z6;M^^Vb<o^rhbYHjke;xO*+lpgD=4$SqwYR23(nhKgi^U7-HtaJEsW*=a<BS@xb^E
zBL*V4Y&dy|Et?A?(jOjBFvOr&O$7uXgXbl^0I#OQAh?jroK_@sIA_81kby}4+yEh$
z=$5*3TgPPCaN$L!dGiEgjYS~n-I7eJx6b(gOom~WCqHjn!^Gl`J=Y@xET4>vU9=UQ
zi9jaCeBYu3!OTpRb>RX(f&Cu`RD!z|7>hiX8~J!y&OYIFXRQE2Bf0_7bz&+s0rN~0
zAji5b$nz>F@(`7voi~;in|@4Qw6HYdF)0g6on1;RQzj_;&78E!x*aY`{UBMts*tv7
z^b37VUm#h=lXe)IG0YW!2<9}cj9ah(L<RQj60Tg8W=)EBJ}j>e`_Y92Q|gCU<208x
z5ZA|<B~ocdouqfH5ldMn4C{HrMGY?}N<J7FRH=0$sgKo@4$`WbEl}Q_@u~SQHA^OS
zcV$#wRtK@PD%qOwrqdBjh2n`E4FsCH+XfZ#I_W+;Y7Yn&$$IZbnx(>U>o&k5Hux|M
zJX+zzb75jo9Er#~jOl9#&YVV$ZI0r=B#LORi;0{9WZ#Y%?A|1_pO7e|-F|VpsDEqW
z;Yq_zb*xZjVi)2?ktS&sm8?G#m=ZD|4F+`5K{A_{YbIZa{94C0tD7nw{RO`9;7p+G
z2TsOtZ<HmA?(v=xt`ZvvUnWEJ@>s6X5R;@~i#nF2dTi>(;QL`TsS{D9>t>$c#Lh_c
zmF#}V;kG#0m=!PE;?<M5UzID6L?ocVe{LCCWe)Sw=T=M}sMkMlv2?M*i7UBn>T*bQ
zEEEYkY;-LjsF<ae&aqxYEr*LLCNwylVOUg=O3pz+v2}C$1{5F0y$P3V9zcmJvvAsw
zAdf9s4=67NaN+gDraxqtXOBo&r_aOoU?R?-kJLq|jUAit0NjDR(XF;N$>+W1EVP1?
zs;YfqSX>bWd?jU0y)}Bliy)!~Mf4D`RL6DH5vXv{Z^b2D2~i#VUXN(?u#!i4Ad(6a
zBh4xa0komPe$11Qoo2~yqNP8!+=e?eE3rk71BLBE0yEdbZgrn_U&(RN+ckHqsAeUy
zTCVkqKEdQy%5U}u`K4@*qNOSG(A6~6^$=&zkxlvn&<yJn(rX$T7^VOwdURb5oxNC+
zP2NN0;x(d?tDDu<vQC+e9dNatyx8Eu<UJG~zzEo0bvk$d{V%_L%$+zV6Tiv9{j91m
zui_VN3Z621$mH)%l&Qg68569qjMXLJYsZ)F5TPWaq;RF2Jsx%CZ(nlv>P<wD<FhnP
zvU2(}OY`hCn++`7qG@|^_xO}t)qOQppuk$3aC}TfwQo^F<R#XeGIeTZ=I9mgEE3O|
zX2+|x)#ou2Z_V&I_Umr9Eg5XLvt@r3qsr(S+LG-^ZtsuIGdkO`y-%6LvSK4CY?cwz
z|2UNRaz=x4I{&+~UGa}}e}q@rT+JE#D!U+3Wvp?zL6=FAg}ke8XBa%zyt73)acyY0
z(j;Twsv*c&sIWu7Ho4a1;8=)#1@;_jZdR|Oh9(+ZToDbR*>>Gkq*G?bvoia`tEbzS
zr@wyw<+rbYh-Xs5FdHo^b@DNFIYICW%A+qv<Mt4FV)=-`M#6L4E^J_<8y^_!E(HJB
zHXkCuoc-d=POhpHLXztgxz-n)mr3odj#}}ms*l__K}#W-jrFC{D){KNJE~L;RlVkS
zGft6LzUim@`Eq{#`ODuw7EU`{I4wboA?mskpJd!pbu3)V_(?C`&taCUmUVVu2nb0{
z07K=Dp_UR&l8jK^4eTGPO)u#Ei!5%K%B6Hhd)lHrAY%`gZ^Y4~ykH(uFm;TR%1swl
zIvPKv#Dt`kD6i$Ugbf2a5tUCCI7?LG02%^dxBYmMXBr4tz7ll!VG|S|a?S(_Bv8Bx
zDs)Y)y;298gnq@STQG1XK~b{mV!^(YMpQ<@s_`X(lO<P^l9qSkm{E!isR5eom=i&9
zR{W@K-gj(HJv=4qZ_FS?hc{z%^w7hVI{-I*5bZ_Q!_r+!+=*^=lUX5K0f<4taTWlK
zg>!<q1M-O7Dy!KvhVJ*Gci1p{cejtWifc+H6AEO8r(0A@fohAzhygvZ)VcK1#1EzS
z6ptVk6LM!gz@dC#JmqrLhZTP{3bAaC1bB2sYY8Ack_rk-pR%1RFFClc&R`Y-2fKb%
zWS+OMSW{}IhZ#nr<ffQ~Hbus@sqWpguEDu6W^fYeMn|9O>Dt%LoFr|`#vn$MrbB?}
zqd|AVY#X|m_G{;|if_tv8g-*+3S1CRRA=YlxyGiG(s`4s&7>L_MB~}Vg}%X0-vEQ`
z?4b!pv?gt?P~}B*X$|7SA|pV^N7aFsDs-$6@a-g>$1-h3jVJZQwdzWCB7^))*_$yB
zkYR`G){@E?19Lgy6)4~wn=KF*34;b&WwdsDu_}PlDWWb5Tx2U4jq>?M{al<YGq-NX
zVc75|M?i;ur?k7tCyiFw)Pq%vL7KmI@+5*CX}A^DH#{j#mW-2p%)ZUjL819w!DbGj
z1(S4?Z@nb=F93>*Z!SUE6|22M36?yy>ag!uLMdyva&0cK!vQ3G>M!b6L1c>_A~?}U
z=L+hE3Y9`Vqrxj}7QjYVG*FiYB*UOc0SkEZ6G{FNbWR*H5%U`opOTGQm9_+>q#0O3
z)MNDU?Nf&wU|h76JH>%A#DlOutK%yCB-x3<=-P@PYLZAAM>bYD1dxtAX}7CNnaz~V
zV5^MbPS)V)$zvBsN)Xo+W}=A8v{ZTOBZw<NJ9WV?ci>3r$NTda+HVw8)<h!lC5fsj
zn)ykqPnkp1gdeRt@IT3q`|XpmuY$~~U9}@68^mIggeos`O6_=tkRIUXF%yq!O}2-*
zP%@&0T)`l<3wDX}MCI<X%ohs-k@f+h?PFd^>_Of{qGZAOnzMaA2}Y%3a`LG2D#{au
z%zFM#5hwwc{o;$K$^ywTJn?*GnJ*@gQNJp+pp2bKsWXTs?VlpVT$!YbZRPYN!tAv8
z=-<MRHH1l)xGu?5{n}4W>x8L8oe4=b_G-<-sLS*8oQ?H%JasjwUt1+`%puoX(Unnv
z6KJCY9|AZ$X#YC2W@AQS17frt!Q6iU3c{r<qsz|Y%H6&ImB`(wa?b9<VTfo*W1?G+
zH>=tXtv2~Exr)q-f{CwHBmtqWVlRHHK8zWvyxp+NtjhKuNFd<`KXBZNGfxh|CgC1%
zCu_Du5q*j43!O&#37bZ+h>&5IsGkh&74v&D)nt)wvE!%|LKoFR(@N|O2(vWWT45Nf
zZwy1i?aSyr&OE8av>Z<z5*pMwVe~q(xB8meO;ik#jXOJ0Eo0$UGu;*x7jpUWRwP?<
zP7tAwm2{Bc{Zm+n5=DhO3s)lW!YWjxMxu!CC8@-rr8Oj3M}q~iLp>%uu;i;I5y2yz
zvD!P7yDhx{bGlL{i|&y;AJ-RQ7cVa&?NpoPv5;m{s924<VC*7QphT@y&cVb{hlsA^
z$Es8eG{r=Mk0L#7q5!$=@=G9QkNK-sM%nL4p%T}@u4Vk7T#2WMr7M|JIzg7lPZRvA
z&Wg4c$Bk~%)FZwLGD4#&k6WEbFQcYW8;AV6n^@BjE>ROhvRmT6;**B8h96X^+7WMo
zqJxAH$;>R}+OyhP(MixWF{!FZ2K3`L<<Cm=J=!Ap<)^31*I$2r`Us;cI}{Eohdsn;
zk>ge>+{#J|%n7<!iiGwL)#-4e*RimnG{gGD!=y!r+ca*b4TTysl6oRgg{Bu7QsYx?
zK{Ds%5XF_Cz$P(C#XJcqwS*QbXIq06L9<*MRwKWtIWiiV=n`?FpIaSgOixmx`{LtN
z&XV2UV_rzXlyYB5GFs86q(r@pUn=w=`MBdSZfA5D(H2Op$8MKqNN`EcsHm?gH3eEk
zQJra9cl-0$at`E{U#@H4sZ+aj{V2&6k;jJ>dUh=|`wfseqC=Wt)XG)+Use>Qj5{?_
z9SRObmD83Ato>=ZT1M3xm6VzVK45K}QghFn!dUp&<>^!a-1&I@33gF)j9w>t!$Soq
zC=tsZjTFUh^BNOxgYF>801bwAlqjBrj=_E-cS9VFK0Aveko`(iTpYC;;3xU9?9FPo
zUu1$7a!bMv-H53%N}8m8+=D=Ux51M(b7xEIS+(`r{N#9D>J?|OpcIjLEx)_wk<yhk
zo<jggd&6Ii9fTJnGC$dx!|K?(veA98#;rq>UE=_g+BhWdW!;?Zro#1_G}2<dT{z_m
zkFx!S9W6t<YsUAECFsbjH2F*pLa8sZ&9t|b1qEhI>rGyOiXI_xj?G!(i>J+gc%)@4
zJ!xkF=M=7!QuBQ|ma&B&;nqtHiIh~gF{&h0At=BAVfQ59|8QhzowG>Q&|O#whnb@l
z4{alrU1AZVILMwM+N67VLItg@jkvOYtu#im7Nq?)wkT)`J9bHBqv_Z}&^3x#Krv8q
zmSi&x0mHN*z^+PKiYZ|JJ8x2E0927<n4)%*EE<zOLyYz*2LBQT%Eoa5MIOKecI{c+
zl$6OrYRYLDk?BQq=&;Ts8K$Xlk#x}}16LQ`QEgEzdh%-4%ZrLG8xavhVkt^Nq4aH<
z4Mfj?+H^sO<eQ1I#v3M~6p9^5((GrK_BE3=c7gZ0Yaq@$mI$x3o@967NKr9LBw<xX
zN+wkg2`jBwN+TY<Ep%Oss_7M6PWGQ7AzmdYmD(q7b($)Iax1hp35F+IDU4c3Xqg&?
zh>^+gp&JZAoGzNwE2b>lQhL&sB}yh8E#l)w>DL|5xkg2^syK{29-Q!BKAsQ-H+i5q
zHOL;Oxf+0fYK66Vs#==Pkt?F5Ht0^xXSzGU7m4K)^lXG*pu8P2QuBkVsnf?G9{LTB
zPmxJNjAb`42=&|k5phZ_x>eS)m&A~m_pFsb;2snOw9$hq8lMzPBuHJaDheC4RDLNo
z0f&@ixxE{xPznkWR@CC$h>@6}TVcM@VaR(GL>OJa<mt65%=}<#O>MNdebx(0>cW|Q
z+461;?!pLAsACVw0PxEkJ%H9i*lP>K8f)F+RT5q{+za-$r;-NfP&B;Y=TI1)$)TpL
zW&~ivp#<j6=0Gvbgbt;)+0u~NPZa95wA9nzDW+T&AE!zwr|-~S;R<GVA%#Fb8=PBv
z)y|wT&J_0`g{wY+8{lxAq*8B0F&J@;D!x0`HfvncDT<bO?0PWVNKx^NJat-&MSI7A
z0}H!NOEwX+DHLDS&XE9&9dq^~g{<c<D2$s++Xu6lp(1EU2@<=qrL8NMCv7JShdDPj
zlOw#j%SL4g82b+mg?tB33XBm7O~>tF(Moz$)?dzZK25*VbuUrs?n5{-s6wSG1=TL)
z-Wg;tE?{|`C76I<TMB8I5q5GA$_#?^Sw=aUWzbZUP6SdzdMW^5g>I{UEBAEgB4UF<
z%hxngcQ((#*q`LRz=bhqL1Vt*7&$g)9hW(@3%bv7_B^yY#fiE=KEV7GkLmL%S7oHg
z>Z9xBXXx|jdsR#TOt&_V^GDLwv@aK0k`}c=?sK)QU9#>rCecF_#4|2MfFEO(BngEz
zv{R7)VSk8Srlx`w-q3P72YhkrM-6$C&>8Z9fR<FxB9$Q_C%WYtJ*LIX<lSJMCrUpa
zeawua>-p$MAV*J6Ctq)w$GOl@8O|K-@_-%G3ef?xG|qNa5pSA)sJmI3o@Z2hQy<6V
zQo+HgVPG8TR)9ccpyPI3t|%J`KwPORi>*@t?W$gk;3^;;s>E!<$8z(>kdT1&FM~YJ
zqt`%oM>Szx`r(6rg?m#nM@yvpa9uZ22eCTDs5FoMl|UW|Bxhn*%6R)1B4%TzeJAGj
zg@e0Ofu^vF<Ec@myWZ|WK&6(ml{8Ge;3frY=h}W0A<9IE@|&$Zmb=!>m?lXZU-y_b
z+rN@U?S(l|wP|SQmijn$1SwENVVFd?HYEL?<d<;9{hJ?Z*Q!6*3g_~y<UrWqNPP&b
zj+Y#i%#=)VrB({M;|^LZI6$-z`UyLuwAvpO@O;Z1uW5Ur!Q;Fc8;Bx7L$Kr*6Ld+O
zVw*|cJ>?z0>wcxj-dRnNm_s`^3oz1Eru!h^_LRew$-^Ffi~dOESlQ3xK9%aL0M%y_
zcPX4DWfNPuqD>U0vr5J$zgpI<b_nBV*s-%SwkftU+Ppd@V-KaSO5Fkbk*#9M{_#AM
z08`N8tdYp_kKr*_nIZIzeq81NNN>%F;W?uNYJAvE+2h%BS$c9~X=XKCY^dubKLjrl
zNpQJ;H?qeiilpW@gKMkyMa<pN(UPe7&>FBKvaNzsL;z{PmaLUBCstN^!8^~I-z6z3
zh`s9~U1lUGDmv?o;b|7BL%OUVO1Z@T_Wj1-oWUO1v2$3bBG?pB4W<rBDPDOL*>!NS
zDM1P4Mpu=`YX{`jgp}wqi>j8G=A?qCGOhzVFsj-vd$?gd>LvjcnH+WGo|LQcD3=j)
zPi`Fc5rwrgeXsjT#Az;fm>c?=<%gG}w=<Cu)@lQHdjN0llweP*J%A_-V2N>}$_E^V
z?tnn>@ha8Fq-|%7Ph7OS7lbJ9%5=?kr(glg<AA5Q<=0@#B@izfHvj+$dOB$958grW
zIhr~p5@|yR)5l81?BqbnbIqDa=mzC5z7JCd|8~i?%o2)|d{v6n%Fn(UxTUX#GF=YA
zs6dR<YS*}&SggS@{fLxT!TtiC9BG(K0ErV7xen<iYhk9TPb+_NtTiN@dMisEuSm=V
zv2_4T3TP==qY;UDLb1iPk#JX5sa7If{SB~*9Jx{snpKg2%Okk(0&fUCjB~i)T9dUd
z%dg>XB4FV5;T0cUBR{P?An^DN<3$F{a@}xsx81T2Tbkolq~AVFMC^Q=zg)edH;5mC
zvb+@W!Jm|5h|3jgo8Ey_`GVCXpxC=?TzVl%sovob!A~q-Pj$>4-(zhk)Db5@z-Psd
z)a-`Grb-u$(Nav9S<pjqKrN^a242aR*6_yn^g@K5=nw`N9wJ8-)r5oL8l$_?F?g8-
zVxX=vNG|1^KFJqx+vVjR$*uw=V6PlI$JtLR?*y0W$Z@$VJ9EFG%TpZ$iO?a^N>eDv
z#A|mDSB`fGiFP|5hvp@RhMdUKE5<~Mir(*twThETrDDR=sAcY^wK+(hRQOd~L>vC$
zai;JOVP82Sz%EMWi}JmWg*hijJI-a=7b^3CoK_Yk<?IV7%2X@^vDASZCUUN#u+0lb
zT$Wamjctrj8Z-sc#-5~KQvq>|faH8&EUewCMwBF45{uASw@s+RBUn2i2(HAfV7K|N
zfBWg{|NYAc?w@L(c{!x`i1Pei1Q)Zy0px3D{F5d$F8G?%k>=Pgu6zz5#_jN2auYnz
zMC^KJy?zV$S$O0+@>T-J687x+nQ0`Ibx$&|=(z7=Yp-MT-7m)fHc07%vEaw+_~2fC
z@ka%J^0Pj;+`hNmzQ+fzai{^}NtQoR`|^WIU24YE`<&lj;!$svTHS3gzkU7b>&H+-
z{!4Xgs$7EyP7cMCq99CYX(W2RKgX{Z0WL%wZV`0#LFCIag$i~qTi{cEs;&=Q0%$5p
zetTh|n-_7P<xraPAylnJ!8{adg%617Iw?oI9w2bTyHo8(6f{)0n^>KG1<(x5D7Yv)
z?(4NXCqsCUVVq{d(32VS8WUJ2PUqa+Mj*{1sni5lSh#N#=xT!b1wbNt9!2NWV4@!)
z&jiYuHTC5C*Feoz32e3w^-g>yD^eskGJ?h^Q1Du%C}km6*~iDLI-f75G0aC3H9DP~
zfjzE7dW07oSGX6Asu-{oR}8>>0{PU!%*dZoW}1+o^;#KGsH{$pcQ&gFLdoD$wLxd9
zh8EamT#NwN<Ml@?&^U)%!OM04@qQgQ^fdgpKbBYt$&;{ZlNBdid)6e(4>^!FvhPlu
z+&2)?2Y6;O2?TTnJSn&_$sHLaZGEQf+{MMQW9z=)#Wd#nQ*q3<kMH-}M`p1<#-hGY
zL)%Jb&~Y*cP-F>D2t^|hbP|(=qIKyL0;^+M9~YQwhQ1Wdg!tvBk1UA&Ol29lwiIm8
z<b0s~+_REM!Udd&h9*7qj1x&8$$Gj(09Y!I1S{FGaC#s20s=?{1;rP8+y{lKA5{5K
zP`*YTkb1qFC<=yPe5SVJBUc|MFGo?95H+IZqSyXEx<!8n9Rsxp{m%8A+zttKSqP8H
z9B%z30~bJKcCFr7%dvwQ&F{}gLz2_@<pF-uf~t#;)_$S38}`<U{~ecwQu|faQ;50u
z=g$=4e&zZ5eeUt4H}_FTl66r`Ny#GCS#H05J6D+tQXQoZyaX&68xz$QbFg7mu}C9_
z=h5x2V7C+`$E*|Q_{Di4M|_O6J&$X@h&>3DM*;(YLY?6QAUDdDQ&X8{$Gdap(C43?
z{{Huu50&}SndRecT^*UvGrLLh$uwGEA$&&S0<iu{8YYfskgW?DD}r~(x6@~Jh@dhl
zZK2vsAZr>5*{C@uStw(SOdmW8ZzsallNBLrvWmu3$tEO_0j+k{1TNNbMxO|aII|9<
zse|0ADuo5{X)#tlq?rpCuSry-&e*fHQsGGA3Ub(S$IH-Ni*g3xu()!0kQOIel5rS2
zFMJ>n<mm;vk};EpToR5liw^Ri{B8)5{?C8d#~dOdQCbdhMJKj`q=vW!G``&WGf%F~
z93nDGHSVM;uw%*5c>q)MnYN2^H)g;>ohY%T;xw*fp?p8z+@W`tPgul`=5S>^Gw^z}
z8a4xxovIn8qEodT|CApaM=FS*!^5hn5h1uC!qH58ST;vqW%8`Wt)5wP+Ar@sU!Z@{
zB$r076I!T~4hxMsj)zF`B?$IlMjACH`AO74TBcGAlSmZ;SeZ)ZM3^!5L<$A@tlel~
zEuZm(2WBxXmW@4^)6f6-@{z0~J^e|I`_#xs+pBZ?$Kr9$Fd+HOX+e=RiuNjKrB*fk
z9GlZg=4TgHSWK?~;m4|dOm)0To_`X{thP3On7OQ8#b2VDGAef@U||q*>9Y*hhcTE7
zAB}w<55&Tbyg;Y08J~3#0ExtX-Sl1sieEKsypL!-gIM3>WFlg*WbdkCSQ2<vA1Z+o
zrkqWta(@u+TJh?~@r`E<;)N|RWI3-75T4;#RY+gi`v04|d;Rj?{*YYK)Z<OM5o9W7
zCe?vLry#4h_%d!OFC3ibk2OE5lxMsMnWwR66eAaIQ6C92`-)a*<`6@B7t&)i2rKLm
zyYg6U0wTl$!twgiC6Nusb?(#NL_w%a3V$mVNI?Y|;Bt-)dB!o2<Dd?Hh^E<7I>a+e
z`~i3vV;5h=d=D-g5A70+$EyoK=6I2^OZ9c#TtCm_-VZWKRb${>91FGdNXU6)VSJ<m
z=j8rXX*~ITb)9qfPC+hIsY)w}+6$mhm#QM91Jm;gS|%^b$+VD>%o9vj>ExvGP-Jmj
z?|Z-7P2sEpU(RW!c$wz(+s_XYyvSUmHNjka*Oq;WhY4DgY_h_@A|{bFP>hW#WiihT
zU9Bz<v;ixeT?PM(DJkLK>SO~eDU+R9$!9DOr;%&d(3q1*47``bI+5uO=|Tt+--a1I
z%+sglLg>?A(~{Xjy{A=SApw_+z*mA6q;Gj~Rykx13;8N!+cNs(EM_in2s2%r)0m-(
zJ{D7{kYFlK1qh==VMqvK)sP2gaK>HBrR)OvDzdMc+MFmoRrvlXieg)pRCKwWROmX6
z{dLG~sYa}I-dTs9EW+ve#f7&QQ6}O4=X*mn8*e@9w}1Rz_xBdQr~jVE*Z9`buW#P2
z_WoP_`mO6N-Wqqk`uhH2@4nXm$usO;5TAeh$KO9zX7~(k;vrH@VLyUBb}REiOQ7SM
zLt9}*?3+nQR6$;=*Luum6oNqpj#*`E!~qEoaCPi-!)hlldWZlQv_s{>ACH6;{!<gW
zT4Td!zmVQdxDxHDo6;rWb&v;hok^gIZzL0kBx5y&RFyn6Y==OjkW&<#US}b_ikg(2
z5jO3pK+}TXO+1y8%Jm+NV-wolN(wZ7`y>bLmEFn(aJ8QyX-W851e+oJV*LDq0^vG;
zOPi)6PoGRc(~vj;707E3(j4jK%8mur1G+|EpJbVWIMQAPyw_^0u}(G>QJv`VUsj8m
zofJ#m?ab4pEA@~yAJQ>p*&NJ@es1VD0tpL8yUZP1mn)mAOv<UZf+0d;Z5iD)R6la!
zy(#b|zOg>7Iwb2CQj6-Dc7^L)Iy~=yUmc7<V`dzlR9K~a&M@kinvZ<Wvy+r750X3{
zD3Dt+Ijv^%xbI<cVhqJPT{O=B(Ja?U=mSjwjR;GkE?z304u@rLTKb&%I7t}qxg;Qb
zYA6f`#if@zAF44&4(p(W$;rFf52Y~122ObOAOYsGsbW?W3dobHG?!=b6@^@8R)|lT
zt7qq`VxF15b`i6Gm~3F`7hD^($&@wZg+?beRtyo{Sr&e{(texAp)z1h9h)S0L4p|P
zfZYk#!W7Y6JRLVe9+ZEmgiXxlRLk{Aj(r%}Gk=Itis}Y^i8iRw1w8h+%-B<<3@>em
zh$ombO@29%<DQ|qinN6^@93HC<%i!TcnqsEc`Hw^MKBC}=)I^dlV+OnZZ&_V6!TWY
z3<$E0GRmSaD-RT53drf`fy0VCXCUkH>KS<~(dqPzE|cBvLK2qs$6VAEaqG9ZrnhLe
zK+g{nqBJp^Z2&&T-jRf$1x(atsEP(W0zJxJ8hV<HFm};eF@!)S$LMx66+`hcr-E4&
zs>Pydx}XYmQBzvG0VlB#k5*>%s4VtOOLk^96O56FtM>rbTt+Aci%l=Zg$c=wMw9du
zkq`aq*lXA4k6vMi+sNF|9-@E@R$+r<5dyaLm|8H)$5Mmcu(7v8?+7O?PewlD6p9Jy
z#xg?x^U|)iz!*nteez~!GQGEfdSy{saA>N#zJ1Z3T0Q6ME|jlBuwHG?YZHiKBe}II
z7w=7$qRh?lmT8S|I~~TVRA=*t+C}&IuTOvfDy=ym@BDP-iRAYffb<XTvA&AF`GPHa
zJtTkxuP}99W+|kk^r@(#7E+fNmsdHgD!=F*efI9(I^P>Jv45}95B>zL0poqNAP*x)
zb0o+y5)GnyMcsRMSCazj@TyN9bd}prG*|xYN9FBD{wj5t-~Xt$%dG<BW9a?eU#by*
zxqbB^HmW%suWf8~e2v<XuL?TpPvSC7e@<ikm!CdgKL7iNxK8_#&aV;0K%VmR+`ys*
z2m%1^PZrd*P`3T&3H~2h3kN(Cahug;gPCKrEq3OFoZmQ9HOsZC$#{kTkBbX(R4AF7
z{JtosDUKzpPw@pMp;JZKa+O^&ItO1FcdBPbQz&MFv9@}{!FVgloD$)fau<U`Uf2#F
z>EcRVNE0ZO@NsE5z{uF~t-+JEV@`Dp=$#?Nn2}>`LkvNNg7~ezI4GwDgR4OJA#Vjd
zP;fzEY_c(^;rbA!y~zKN=V<aEIPfVQ$zLnJ^I{q=Jpn-yIitLQ6Fa+hFcAbnH>1@I
z8xHu{$?@A!lE{FSebFg9k@jS(Y?#Ml@ua5MPTg9MIA@fxHDfHr$Na|aqv!EUKHGWE
zBw4qwuu=_Ee7l$q%-5gKzkdDk^7XGD{6|N?f0PbtQ7YXqrgJ=I7HK_Bs1i+iPd+6$
zcBqi5YCFo?m5-AO-*r{KI}KB9ynHV=`SnB2qa2CjE$y=7O2UdXzU<SdsH(vIG+$i6
zZy3+n8*V-+gzW=m8dXAa+-w`#r(n>ksJHDjwuX~JGFiXw<DD@<<C79*P8?<-M$qY7
zPA7pceBhJSiQP4xM)P``H%msp3_*PS@JW>_RV7g?`a+rKlLqs6h({Wau1u4sF^^Pj
z(?3`4fF2-55jLEp;~eoM=7;fiN>SeqCl0soOZ|=U;vDM=5?*&=+8n>X{0T>nK%5sP
z9LUTYSCVh8%KLW24`0_hAH8_t8z;VT;)fcj@W*S9_jU0fu9N8HtN2zvuwUGqkk8t8
z>MO_l{ZSQiBjSC(A3vGz^Nv3IB$nT?VEwB{acS?5yz{%C@qvHj4{6Is#?Ey9(XFWY
zHOZr6FKk>od?G=w`(r>YlqX8ke!NE+=>_a$c@>+l=u0TFc1VWkINCIfcRa*Ee)~!W
zbr&!zy(%x^yt`UN@1{}VRyE)6v#ICH*MI!<VXuh&AdVP`mPJX?cu;aZ2yUr`9z_T>
z#7rtG4oHQlu_Fs%A?I#|IwlDnXv~A)>LUNz6$2G2IzymIcJ3YzSa6d#KzfYx54pff
zkCrH^sU%HD8KTl%1O<^-Rhg{*`&q&78uD2r>ydg>V;WZ~e+}Vr{p*nE0I?))ivYYr
zsZh#xf<R2f8_^{R6p0^VSf#|%J$zD8?$2Y}shcsRLnkG*2x#HIgu2-Ci{hC1`q%Qi
z&m<K(@Kuqoh=PN{TncO}Rd+0_O0f8->H1QXsO+$9#L`zP21m`!#wMJOj$)=#R^zV<
z|KP5?LSakT2@j>1$bPN>jZ}V7fI)zQ{raa&vxB&YqS~SmAJP$$3IB<Z-HDS3E(9Z3
zaDpa@%&C%EUk*&<OomelD4F9KD4UW1mj;Yj=jXL5UwHzFd2|ei4!$;3tk5jzgR(Hd
zuQnJG%1)(i6*-%KNpk^lB~Zmd`M;9jQ%V&5s{#e;53OKjG?<W|66a$|MzrEK)QB#y
z8<lW|uCP#XpnyRY55o}V(Ks(f{&GNBYVmq5z=Yshvf@Orpuq-(n==_%hsPobf#H!6
z7u7yX!Nu!eW78Y=eIaElVlcPHSn{Dz#R4`f%t`#NClt(NzJ>_eO~o|n0t|&zL8u=G
zz%)IVcFt0lcTbtxfqe>6`%D#qQbC<2EQ>vor7#9sZs6o}m)R%btxv|fzxByHk9%;R
z?9matcKohSaNO-Pmu#$<@luOP+615XU*eMvTDr2qIu5rCy=_(k%)9T9Ue;>x7g<gF
zj#fv_x_4bel6?ypb9=0F8eix9+q3SuO>z18*AI@*qs*Z3xN|!-<&!C`qK(a-qc?An
zcmM)a;<liLC-Re46;>u-uFd%*G+MhHK?R40it<2a;YpQ{M57=yN>T~lXfI_@Vcjw=
zAf1Are)oqPj~#L-G8*_ij2A(APb&J}L>&{P2kAJ=68i=}e99_sm*;Iyijy2;*H+Y^
zxNT#dxSktH__63R9d`;DY7LdK{b@I-_O?()W3LYiLB)U8m=le87-DTU|BqKYy<P2Y
z43}!0XIV`{YZA<(ost&H(1G4RkClaQ|M=zS55{Ran^pUxm5G@?Lp*|){NCDp`Cx6{
zNqG8Kzq31673B~ZLI}j^k)wdK2@ks}#wzHPRNEv*yUq?ACn{X}GEM?T9Q4MkxVpwt
z{eQT7lO;QjBy00kTyjl!aWnIAS%M7~;G%^hSp2)lOH>E{3Xn_$Gr9{;-~N5aZU96w
zvj(ZIZYjxRT*n=JutA5TM^#ImvB+)#ZS*dCtD4hznt{h78?TBy66gbY_;+6jmgaRC
z3(wrTuQjI{nF5kB9CWz-_nz-E=dzQ2`SDvLsUEBLK8d&#8+d9uIgO4J$4u?{hMGR!
zy?z5E6h_fo!Sc(`R<;2N8{EE@<GXx;@jnfTTJ#=%f%YD)$Vty?Wc=VHeg6IgvA&kx
zyUT)V`(^z#tL@W$kGf{}kMj&afB5vvx6A0qIZr_wljYH%>Sa0Y!(yp3n2g0}9}DAp
z{o&H7{Uf{o9n0Ix;DB&w<dgc`<>?ZMAf+$YmihesLD9dBLTpbZ<UjttTPT@OEhqR$
z1)3Z9kJaU5tgJP!$9!L+UoX%fz5-O>a;9jiCE57Za2dIW&f3opzdrwl4E*My)0SJj
ztL@E}6ow&9Brk?3uH~maYt*k$+sj%Yrn8@Xlz`wPq00U9NBpZx3vRbM2hp@cv~^5j
zX86<h^~98}BA1QAR<MLUf&$t)@$?kpg94)}87#{pePp$=9y{A&w?YO7FrgKjsmy5A
z^!2t83EO6?;#newIH6yx0)H)$qfXT6kX)}zl?Ud|)1Mf&a1RZQI+16{I(}BHXwSAi
z3HXQouv*D^%Lx}l&4SD}ZIF#o#kHD%OSP8xG8<aD);L(kH4wQMV*?3Z6nR3Nq`v23
zY9@ia>taku31*p==_5_o*BlbV7b;CCEyXUzeN5Zp36_wRey?5d-0YT-rrwjedZaz4
z#`+>_c$C&+7=?#Okr)dF%K+vc5Z%;mK2vWOm)AP$MwOc7m+_7WzzeEiZaOjs92TRZ
z9T^4Gl(yql<;G0O<&ZmYKNz!X&ODq!3}Es$=Bm(Aii{dNOj=>VNZtO`D;23+5LUDF
zT^8d#LGAQ9%-$wSf5;U9baH*?6@yTjx((ZYKRS7^S@4J+DW>WgsB(*b_~rQ<8)ZwI
zXjq_hhJ|HErN#0Nr~r031#-6+!gJ7INC&&V^tK-F;Vsp7)~y+4rP;hb@z`cxkcsi0
z)T#9yEvT=b&5!4GgXaqr)N2_u6L-L%E+KwyPrE(0k4s;i%TtAYHn5hq<?+BLdBPr-
zBvJN9+k@=yHbf8&LLd|`bkZnKhkV`rcp*0O#Off^4N&)mf?k)cvjB{f9Q+81er>5^
z?gfx81FH#i!;f9}N7(uMdp~&eOzTU-LfhUM6b+GjzaE8LoRf^gC%lpQdW=hrl8<}c
z0NoQ_Frjxf!_Pl`{PWW#Brj?HHTr$Tz>tD)ra;n~{93#P*}>=|k1Ns8Vv3A)1AR-A
z|L$Fg?yvpB>+duF<Y2hJ^BIE5wH3&NfWW+(@Kj7D{_?HoKf1VrX#bmQQ+V>r#ans3
z`1cGAStcvtGxBdw@)WFM<r+X9Kz7{UQI_MSQ8)Iov#1i<$l{>-6HQR+(9d)oJ{Q6+
z8w-IX{``Ygx7Htw$2G6><<g%&URD<5lS`KE*02GEs1{04=H*zp`h4b=mi~|7cOUhC
ziPLWPfB4bzL#0r_wwtPw3+G?XyDh7}X{9Wb(hM#yl%%La;Lr_>wi9sL-c{<0H8cKC
zS(i#&MdgU#5=ooFa*&2YK!}1vC|PN;(*o0cQ3M{hDT1v{p{UO98W_XO2SC;&Amu^^
zS|GqDCWx5M2Lg!Fd7<B}`LO2Yu#;BG5Bu@v&*b{U;(N(Che?X&)I}X_>Gcn92F;A1
z3j61Er5f<I0*-NaP=)uz?x+0`u9l(`rRCfF_mZzi*KQJ%EK@XCs{&UsI25J@PlWg<
z#(k57S7m(I{3P>m>FL+ukY}J!MLg%jr~8P&3*MbbjVv_*v-)%&6TdJ->Jwnhs~6})
zBj;hVN5gpk?8}%+bP8D@`Ny_w(JX?pMCCy<5~h^oFScIQma-->sEje<aFR-jV5eK=
zs@AaqL5eJu@KWdSA8LZD2?o-M*UPhtxPkUay|Rf+9&Mk&C9xX0V2yY)eWjF6<I^7M
zTx5?5nzyqC_D&vPMa*HHrR_uvfv_5^w>WT<H5`^L2UtIIf<9BqtQ!dSz?udr?(Kb?
zfub$deI2@;df0ke9x+;OEMD{YzN|e^#L1NOP=8yGkb1{9Ekx6U+IR&^)vlUOx7lU0
z4)^$aV%N`!x38~Zck+b7*Qj5<m7{I!{~RQu-aj-&K!C<%l;mlcL+I<OcsZ37#n*F6
zl>sXO80pTt%a90^5$7duahmG_i}n#c-0kaTTieOnLwV8eMPe*6T{7i`uh*BAm*vIP
z`4}pgnO{KWot`F07lV*AV_CW~N^E~rTyo~L^C|BPu1rjyX3VO(a*x+8t+l@%3X8G6
zG#m*F2Bno8BCYgSdc`#JYR(kNat(C$wb|b0mRY`+n7Iu@rkWO2*8?X^*4gUD{|E<^
zcL^6>tMiQ>{t;Ubf5L``XL(|*SNp<7JXmRQXmQT-j+}&R-MynC6a_Alu``8Z5RR<(
z_yU%@c>nB7@BjYUlf3@J=VzXzKIhZoZk}aR+oND8ej9Sctww41cE8lXrE;aAUuo!9
z;-e?ssG8bLd4%o$2*aJL;k2B-!l7otUbf+~8>xT|j85+t82bgr`vsf|%go=#et$kH
zuk7~u%VgynuEsuC_X&Lw)%-hy_2uXN*F$I^G9|9_D@#~y3WdSd-+W=Yk7p)<w9QVT
z^(mYF#hkOcp6?^d>y~Y{;j%~L_09A}{aT0;uZ+FdHFI+yXFeS6ANmtDIzsvdtQXZA
z=3C3VPx-!`7Jp|KJmo5U@U2}?<<ddZAbI<BY`$5BmnB~_u79wJtXTKEdFdnj^~`-U
zw|#`}^Z$~Glk@-W+Ov-z!Kj=01WeqJX}eZ96QIJO65;By3TYjAyS!W1Sr92Zc~l0R
zum8!{ry7qECdz&t`X^8FB$VB*a2Ne}U-f=E+&}fM&)5GrFFMKx3I`}_#tt<iUS`yP
z{(hyHY$0U~OF^CFxvt*>uTZ0i0UPorDTa~{Zqt&to1-<qTMsz>m(GS7=1C$jNk_1e
zayRWV0`-aKvcme!Hhq2)`E#8s_k{diQ6(VP?yTi?1>BQZ&Q~#7(h&$N$&q#{zMB6s
z+&{n1|Jm2rd7uCLa4~|av7v9<n%_!Bk2)K^Y}>70S@AQ-UUH7Chd0?n1+~$Y2Z0ZH
zgpjHzC8q)@PqH%B&mVWq%SNJv1GB$eU(^0JB?HTU{NK;tw*GBDhVcYR_cFevZOmay
zl~^Tgnd(3Y&a711uU)b4qlU<xI_=CR<E!?*V0~AN(IVg~3pV$Ypa&d`F0+!808v1$
zzp-Y0;%dui*=}l0Rj|cZ#`V1!<W8qdxZVzNwdVum7BMyN%F1H$PcH95zTUE==-(kj
z|Flq~Jp^8WQ89^Bbb~BHLVZt?*FeT@gb70!USb+AIlzK@UqJe=n`$aDbCUA<C;(Gc
zw4Fch>-Ew5wj(#1*opx5mKeE5IQ7hg@IE18Ewb$?^d|=Q4TeV}*Pc~#O}~PPthm=P
z5?z-L%E**ER`iav&26ySZcoxS5nOmzq3aZwjIiH|$WSLtpZz?Rs(&3dEoo;I`SAMr
zyDC*@1&Sb{(?-8zn5R?C_oSRAeSzWx_E$y1SHZe<w5{$cm&*=mc0(HDPjMv0a2~rA
zYA{wN=8_|lcNlthCW#@di9U_pGbHtD*XZoV=Ogv2V>eIs;T6i8_UCxJQOye(=G@jI
z9M(pO!l&Mv)J?0+(fF#Qwzfyo;%5624g$_{cn=n%v<GuRgo2e4SkxX>x1_|%-s;jl
zX)y!s;==)0B??P$H2;%T#UM;+wx!kY7RCB)hI#na^!19x>}r~!)*@iM;IiciU{_l_
z)pvQl_kjKR*N@*MJhvb1=~5|3cF;)&65{fBy=>4^VA|B<<<iV=uj7|i-<EBDAwhG#
zw$l7~oeSfmH<z!36&|<CMmjf6;a}7`DCa!PZ?D4_e#Tc?y<YMmLT!HA)<69H-=2&I
zc|N{DN7|3Zd_csDaSZy!yyh>Z$Et^Km-8JYo|(Mu^PSa}^ku`sz21j`@~)El$Y~x~
zJ(s3hpu>#Q9auTi`47p+rZ4H%Dp6R9+^nL;q&ir_;6E=GJYc8eOWMed?Vig1i{0`@
zoy*o&(AcB_Y>#jWx0^25+(UE-G}d~IGke`?Rczg$lId8*BuGv;j4g;?Tn8rOtxwW1
zi(QYPvUBc5=ldEe0~2bryE?7OMLd!@LTS<|jmV0wm@O-9ID|@EBZC%;)k?hXT)xe;
z#G4qxVAOK5Nav802<tv;1DlkxhGSi(l(}D~*M3}z%eVB$Xi7<VA@i*mc)8@<B9gF~
zRqtqdencf2q3Cpzkf1S*!q~fMU7(3__rzKdw=!m%@tueUdE^2efY`eflY!7d8Poqn
z^;?sty(f@r(CymM*9xGLxgvHK(5UGcjrzJwHQVD=Ds)5)L&F=B2hJRtH%BFcv4!Yw
z629RksXN7P+txhFZPBg7Y-!OYg#}{}QYQv;x(9J`YR*j3mu!G`35_hq;8JVQ6|{yZ
zg%op^2>c{7Yf4I=EXhzPYxJ@ia?z0{Q=1evm2Ay3Wf*?`>u;Za`t7G*ewOVv|87&u
zh&XKi`vVDcO14TtSwMlCWkGsI9rMxbif2?rxMyER*=j~gLf1#3ZUQP>|E6k8c<Eqi
zm;*jXrMo#-8wwCHN+mk;zSW6)a<2BkSVdFldUrI+8W^V$6ag>48JM>l1#DjED&oNn
z@ln$cw@`}j8gr_l$!%3*R@*4cOQnF&@y0YsgRIGaMx4b@t|^LPwna5mj#I@2Trp^g
zlH`eNW8`2%nb4H|NJI!po%9NpeIsL&T-4^t8usn?gz=YpBoL6Q1|#L``TsN74*i{>
z9}YS6|6_mS`uOw58H}|4|K>d37YeuiPkgYtE&nqgtWl%tf8c|CtVXUkdle-?4aL_?
zzr3WFB?5H&NJ*PWnL&A9FF%-{P!5DM^p<%hw@+t4&&1}foP<x64AOwrWKkZ{w~pt?
z1U-sP;VEt7mmh!r<zJp2o}YjI>0f^Ors~P1xHKkrp%r^DYo2iDn*n+JuyZ!+>B;g<
z5*&8%`wfJWd%;SO+LrVU+YOoyrKH!Y(8fqS-^{Q}l)pQ0U<`PWRUliG&|Rz&$$dGM
zCs2I9o@Kb7r9ElB^XF!nHf?eQvALJ0A2J7KF4dkL*bEEtY!=5{k^yfe6?N{KJh5nx
zr263t*sPGF=X05QcG&CD&C66RB5w2O=h5{pdPHlWrppx^ZEdn9=hviJvT)vbxE|0B
z#jdfzpZ$n;bKu`gH|=6>NB=F(-~H3&Isd@9%YpBH{s=W2zu1|LDnZTP|2%J^UH1>H
zJBHK9L^#FN#`1&f3jQkZ`g`4#KmBg8jn9Ai>%*rH-vT3-Xp7;mv7a`dzo(DMVO!?s
zc1FiZE50-=H(!nP<Q>Uw9zBQm<_TUufg^T}<@|CvDmT~gYIPx0HOX95HoDo`7aZX5
zv(eAqAB0%^q`#TpJaVS|V1NXelU@Hemxf_IeH`--Lo+%|e_~Z|^n8el$^Ykw_pU1~
z8iuf<^6vf5vwsJvQaOh~AhHEkTAJ-Qb4PpjZPSFbPZ_a4O`<AHL=#pP$~8_LjQx%4
z^_Jhrc+qwh!#4F*$LLHvj%#bNm?D^tf~^OrG{Vhx5((NUuu_csRtbu!8o@G>fV;AR
z?Qpus{U|*TUYUVd4Suyf`4y^Z-TFBK`tA3+4*7Eq_p{XWs=cpE&oSOlLZYI#b&H&5
zeop-!dG6i(4iU>LCzh%xng6zDbwB+$e){n1U;q5{)9p{+CODQk{f1Tv36#;iA<!(M
zN6GsmxoN4V4fu(dms%QhPOuU=NJly;Tq8aU`B7*r)lyGVgGhtBw1FNe{^Mf(65PFJ
zIy@*Rm$DqaK3$a)E~8^fkB77Ng5}J5abIlxd+Th&yOZ}RkJC&}a9n2V_i^`B{1gDz
zwSugFriWOuIE-C)?r43QMt}w#cF_?G$<pAHRW-L6uuSr}5PtGoP0h7H$o0sp3A?z?
zGZ=6%?(6eC755nwYh-yJhqQo=B7EeCSx<DcjTVJb0Dxz}sdKl&?`bE}UDx#>ylI@0
zaHo}=sB?NSOC>#BVET-vtfYvm)ufAEwO83O?6^7IpAH?Xg?a|vg^d@tS#1B1Xwt0t
zzsi=9OpT$?Al=htkz4}HPSpp?KQRscH6<2Jzp+F6X72@y32T}xf`MMgf~o1?;AUoP
z&lc4<q&G0Q_FT0$=n;Y7LbWXCHRQG^;ZlGa7FKB17#8Icm$ubvu{LgRmF6<uAvr+X
z+)SD)maCmDCJokc*ewkNWgYE;HCv+CYPgljfK#{9f(P%Gco*L7?o^D<0K?}5l+@d1
zns$qzF&9l_#kK*}h&hlD2`Y>6V1abHu1qsO*#sLDO!keTx1{rTSa^80BVfPH-HtP>
z=!zCZl@DTA+=|=>*R*XpVZl{mm0dMfbq%%4m*7w!f7PmdiwrHxOI|X9zni_gJW1dS
z`T=ugu*F@$zgZ&RWPQS|i^ZPoJSQ5o*lti{VC&E&O&d0=4rfG3k0981?IJ)I-Z)*`
z-Za~Ta#f4PlTG5Fx1FWdz?ZFhRk(jvl@SL2Z7l=ng^U4mXCz6Hr(*JL-kLJ{#g;>h
z4|f{7RP|Jw_7w`>w%%iCrParEAFW!sd$r%t;f_zIz_TiY7#qW`_U-|pria94BZEEW
z;2Oa9G&#iL1W-bSU^EjqTVhwswJOGv^J1j{8w;(7+4L}K?(>7mg`@2=GH@n$(Y3@g
zw={#YqXo;v{ss1INbAb2+Q4FE=}f%^gmuK5-Az_xW3lu)3>{YYY>BgNOyeKA>NOMs
z#M`xeJSct*o>L4hnH6Ah>@!utr71DgNK+DN$aWiIC^J$9VVdFv(`lzV?O`G6ITeTP
z_~!BAIp<!Ve@~8@O4&Xn2l}hZs1h4tv0rj`CMxXnoz#9&trgvxE#4MLpe;FUDRZPF
z04E)+Szhg)V9uA(8%rD_7mO$ois1w^bfLvXs&6xMOUu$rMQT>1`}X3;hha+f;(>7A
z>E=eYiX}D7Yia@R$V#Pi>CN4WkzDD`d`}g#F|V^k9F}7X@l9S>il5@YVMS`!%=`#=
z5l+UYLPYf(_QYK%lwKXBrnUezJhJY1XEtnssHVUt){VndT|T0lsY<;YI+0<F4x1I`
znk;m|oMdpOXUwS{wJCTtwH`7jh7&o5Lw3#eFg%Klvo}lnYx=cxf1&?``d>S7rBjQQ
z))7C@PGHvf?WW$epjGQz1pgZ1XtCdeK%d3=T_t{a%4}%%tJ`DWYdla7Rabkrpul=`
ze0Md0NqNFJ+UR!Ir=|jF$xzwAY?if0QJiK6Wlcv74Ykh9K(4CJx=Pu`s7$#*mlk<h
zcz{+ISyg;iy;t4LJ`?I;=`B^zB6}K?tRkDUD}C+#fY;#1>725AHn{~xD+T@SQ;P<z
zs4|S0jeWwG4Q|R}Y7B|3#CHoi^locbY(?2|qpQ!Vyr~v;CIhlqou+kFnSyMGjV@O!
zq>~<MdFIB5(ld=Z4~l8~q8+KpN<(pO%Bj=jQSmlQK5b?bNH8NlZ>LgNg(?6$vC`Yw
z_K|CVkD{8d>h)_fV0N8$RO0S$CA9cMhaK4#+0MH)S+r@kvrAa%79Y(O5WlCY+7kM4
z3*A0WLUSiBiQDXIrPSD8wTNO?X-Bp+<RwYoy^QtEuVfKYM*mFnA&eB5j|SZpB)~BW
zigZw2*h6#n;%OY&4jP6&Y7%XlDWLArmYDPAxe?*<Mv#G^@QZwE0<Pq0qhjrh;-4A|
zU4s&B#GuGPG>e8!&Sr%-foV9`2$b4e$P{+XqH)c|6nkt>TQa)$XT|nuYYRB}z1!lE
zACf=0M%udOcLfZFd{ga`phC7C5@)te4|&B%9L-R?75?4So^$K^ki-U99();t?2-pX
zGxY?juNu3R)rT2Ii0q^?lElEmoUEz_?IRaB!g+KmONk+NZn1Su#kP|fDm8_W&Mdss
zsG#B9Q?-pevq`XeZ8mjJt4&&pAeIqk=pdR`ZfARX%^1Sl5v#bIF=l6je2oTJrxIxF
zH)rJq3AxSI5iV0qaKeaEMl2|8yBi9X*&ELNMvf}l-WZV8%tb6CM_WYCk=z}UHdrE+
zyK+GmgPn);z*WO-+rceXyNY1_->NNv?GPgSvoBDb7p}$9Y%U->&EUZu%Jb>eaV@%&
zD)AORvuq+B1jo)bk7u{~yTuMY`hJV*OKv)=Z`bhZjsF^FIoKCl{C2}`cC&CLURn@`
z6IW`WgaJ2jvZB-DbhGCh@|N*mRPbg>H?GMz#OtjV^wZx=OXe*`gR20cqsw&on6A~s
zAYHXIy*A_GOm4D9c7*OBep+LWA(%ERl_7U@ZJJmBGBCFK#&zeT+kLbBHEe`&2@Nc(
zh8{0Qskc<BVVe|@GS}IhPDboBzRWHM@RsC<9Ak%IYH@M=#MSopEd4C}<|ZAp?Tv9S
zDBRVaoaQ|Gj((&GV^ycaF__8pcIQR2sTXZD$`sE1(H3rR?@bJ5DI90eCS4(0C$%Hi
zX@=BnmFs$Q80_K+kd0f+JKe&g+hb}#X}f4nq)nVHs8;dqtv<tOp=M@0hC@4BtxF%8
zxsG>h)7iAfOX?p={^HC#LzJAHa>Px$Hq+93!78l|t=OiUq5mdFQNh5{5%Z)_gzq#V
zazm53w6ce~3mO7(fKMoK<YHQ)WLa;@u~@aI!FhXT@Jl-bMV&JoC2H(k141-0AS#pe
z-dPkso>gr&ClamVS>5yaK{$1@@QmJT`hi_*#<(}8DI$IkV${Nkv&y!}B+bx<&O5@~
zs#d?`mo{V)+n|a@yqp<@hM|nwQK0nu&{DTCu&ty3dhJu#JCIq~T`P9b@j&AfwvhHr
z`KZOW2!5wnhN4$hhu?Soa9+}(ZaE@&T^EbxlUK8jvK=*ty+NCAQ#2`dzw&MJ1C~B+
zB*>yIl^Dckqb$7PwfpgF9*zl7@w-_te%aJ5y{KWrDR|t==+rTw$h^4^dH#58hp*aY
zZmb<-C~B%^GpEG`%Wn%9^7l`6-cNSg_!#ee|8lbW?aBDyZ1>HRlQC3(aI)=wGI0%O
zh2I=qc^}noLX)Lz^iSjUM4O4xE;>-HyGIl?7Ku>qZw$lX2ap1UCxaMLdSZ=5wA#rE
zA&pvL64pSnUKr?651s{}uequMHMU&oOK(Jnj{$kIBsXbYM19xZzI^L|qpdVq<hG=x
z@zrGChLcron{?JcNF5|MOdq;IZ#r2K>RQBD*czyZsERQwokT<f_cV();j3%j1U-%!
z--LhCb#aLa!~NRBRyB{z5pF#ERHM>VC0VFiD_XasmgyN~p=G)rV|SOB@YVPz+vH%i
zlh>_1KE#MFeTT^yUwrsQ$VS6nIG)B(V{dJzRHLRd<*&vq;v@E%x&b+Uh&L(1&X$}>
z7N;SCMgG?s7hc<FF88q`n<LnuEX^&@pmAN)nX+X|2S%G?EZy%7Ym6Xipt{N$TC@l^
zop&uz<05J9iz&0GpvbHngN~$k%q;lTy1=wnkIis+_inOamsPBP{123sZQPq1QYQe-
zuqAq-lZjohs*;fSn{I26J<V*=2~g*Dp>JqW4Fx?uoF*2SmQL%P=<LU>kmSO%%y@AH
zGakW1><%E+-nZBTt=!!o0xpA*kvdsg%AW9UHiu9NNY@{0%WlD}7CCTP|3x<dDX)mZ
z5<T$<H@5T|7+h20NU>QXV~gJ8(UUUcQVM1P;w;@#7C5h_Xo*(vjU&z3Pukj9TaAw7
zBI;lwTLS;10=lM^+HQ4BO{7IAT1<Plj%<35*A#3n{+q2mihp8@3B85Vdvg6<@Vkv2
zq^0XO_UW2sIN!B#5u0)12-=AIZYabxKZ*GB%}p1$FG_*MW$ex+=!6Z|x=olRfWu+F
zyulv>BX)+=kXtO9NMv(%!Ua7J<)ej5+1qQNfqN`skANvlu=<W>Xn|GNc1%Xj-l!U>
z-y|HrL}O@a&s_6#5HY<i&Y)3~@J4ItY#1SdPqqdCaKehrYmD$Tj-MTZHBQ^z!$Zuu
zxp`O$4x!CKWkDg4N+)PF8vane?Rq(<ihGG|uj6)h$$yH?Eq>RaVdP^RwsbayEy#8E
zJ>CCOe~!SI0HAml4=kP>cspRGF_|qMi!(e2DAiBHP_NucDfU#1E>^5vA^;V5_>m<?
z2++BK_b#%J#0YUvN*b;2nR7NjYFLa-U9ef?TU~_l;?i;Z?siiFGr&D_%?&jk?4qJp
zZPdh2k(5*a{H~VR_w$z6pOK9q9~FgUWUGuF)?JJaNvCxK*@AU8m}AaLB4+74s;E%t
zv$Jikm?#`!Q$-0YG)mDjMQD^WDwu`1W7@MFSlUubYTr;`6zTbn>BAc+@M_dvL5y3;
zzYi3m?bTy>mAl7f%!kbAeex-~!&T#Nr6v0s4auf13HX>8FeTHKPMo_|Ah(eo^}Cj(
z%nYJJF%a}$fHPO_0a8ZQ$!PH_=RH8=>4}6Zj3<sRpL^s+1>@i*Xs7uwCX~s{Ew--)
z?_7eaoDyHu&_KBdYpn!NRIvn*8MZE3w+NCY8)s3u4?%27B1nrxO03qegJ&T;6+SK=
ze9<^Q`z?0<rs-r@fRQadHol+Hoz{Fr&c0x0l0ZKP{s?xpP=7|>g$QTdYfoqkbe@<N
zpeN!)Q)<Tyru2h%7b~tgF-`TXJM5h}Oj>uYn@i|LnMh6$({_0jYb(fxE9cmidp>Fi
zl=<vx%XQTZ!!pnUZR!kTB-m<f5dyVVq@2GvCa9gF0WGGm^=NsU?!CI>a?vcScdo~5
zMw%kIW+AfHN5p_99ZMYp9{Sj0Qj~0C`^C;E8kR3o{_LyA+%HxROLE&yXtK4TJ{?bn
zkG{Lw(>Gj?kw9rN%2kz{^45!3>DGJH?joCL6V9}E;(((>=NTi_EIbO+$+t)&SUWy9
zw*hsl*6<T<^bnp`@tA~ECZj?vD|@%K#1^{==&6YK>dkGM)I$jx8ni-ZvZE|m#T&W`
zv9(R<@raS3S79q<=?|{ZwMHZcPRECJdG1be$<ydm9RfnG0t39F0_c3Tw(&;iH+!ry
za%+5!#PAJRUk@UNg-48;o&ay{8*9U(;w-sfblXtkp!>ut;NPw?)N2wj*!1nVxolZH
z-)lAK6JZm@oyMurq1EguL8(qdw(C^(zDZidD!11+Nr~`c;~HT+Q~<^fY|a~L;_6jT
z6#M74-Wg9%Q!`AD11ZbAD}b|BFUi6lbs4)P?Gk)=fV_AaBT@RwW{w2=)WS%d&);uG
z2@AR9wrQzjSBI{|B?kW%TFW8gVhaJ0(8|6-ZL-IP?jWvND5JqIK@*pgSkoZr(_Gi!
z#*GxQ!=2qj37a5j@eA@s_Q1M@OB3R%x-T&rPT}PH93vNickPW~5H#av1W(G8Ri5-=
zP8mLfLFF~Hm)R?JH{WM4-l@k7hStw2H0|WLz0@Qzs5o1RaUA2#=<Lc<CeD(e@EqRS
zws(g@Rm8(<>)1nv86e_AB!^8FfCiIV`5D6kZ)le0DmGn&EuCZ>9gTWzqSE19YP{>R
zEFy_|EJfF`#@t6hun~1J)!_kS1JR6u1ToKWB=ihrt1PYumd(ndGah0u`y~$E8KeDZ
zsSj4AuvA5A)10gcpsv!1N{2P|e(}OP<wRw#tF-q(+NNPtq^4-PBRIx{ERpyLC3|;R
zF_iu_ToK97COOvbIO%-PK`fj1iQk6zSwb1A9kJadXeGIc_{A8Pj_r2MC_0dseeDR8
z01&p49!=D)s}MOg1`_I2BL?@f8{o})cO*uN&oO_JEtHSDjk*od>8c{a)3RpMm_>LE
z@p=w-i0L1P21=6$aBABN2yJnsSYMbQ_!9t}${zO18Mmy2e@Uo_htOgWY$~R~hj_x^
z&Pr9<2U!ROTgVW9R-|$Hgr{bSqt|>l<3Y_8v3@x{Ya=0#B0ht;#OI7aa5{-7vmV|N
zxw#4R%+A#r-4uR!S1+yw4L!TOV;9179DB4ibf%VNv|x*hMIq6RfUKp%HH3qai_D8Q
z>n>WXyVwj-iu$O`G_VB!yQgrvWr{Q=V1lSwZ7+EerDIB=W=$>>p*G<dRl(7OA4kUk
z=+CWTJ(_C~2J~|yDRFnVQ<HJAiT8Ws&f&(Ys%`90@-CZZkGvO8(Q4fz-69WU8!hgY
zv}Qkag>B&~w$P%0$sjh7tg08y`*R!2J(_U1o0d#!>Em-Gd@-N>4r}CJLNn+w-4BDG
z09Qo#TMuEdYj#DRe$tBAaO<JNlk)KEho5f`^dR|tY4i4DN}I#)rNTcn`nrY@K!vVk
z9c&&wb9nekj{L-A18K_l_YSH|THdCAz7F?u99Bypcf;>VFB|6HpD15^e!YR;|2bao
zEY}z7dA*(d`TVh-Vzc}FhJuc`Crdczr%87yVtYNT&Bd<8y~8<0ukvL|b{6yZ$uof-
zK`3*k5O%S8d8%Swe@#H&Eb(GSh7J0pc;)au@<09f4dK6>e@>POt9)scJb)wj#ys0)
zZRT0Dvr4OPNa5S%pYmlY|6TK6Qf|#;*Y-lE-}JfkQ&`K*7gBgFcVzXpmAZ1xJWqB?
zyUe3yej)~PE!E5UT9O`c4IcGn&6iE5`HVW14tfI43bH4uWuGnV_;S5*qeng4-3~p1
z(bo-0?megW)ZBo_yMBp2HlH58VU5=<jV|zSp$&3XN)|&+uw4k{ey=@2)Ol#@nq&Z%
z*pe)f-7v79duX=GoLp73>u_3|0A9P9%*_HOGm8VTZqpe~=?&Trn(t4Mn>W(uhUG{r
z+-Ca0Y{^)%4~zfxe?MNUo2ZewDDv;6J5xB7OcKhSCkx1bcrSGJ@aXeLZif4^y2N6R
z5iGyc6PXS~bL!~`P2U~HcPU4@<%k+WTj~Pr^0>w#rRg-a#}DBhr-CeewJ|w2)E{TL
z&m;kmQ03uj_Xic@HJUxI<=5YS`g#2L%g<E6{nIxo`L$U-dZp9luwe7tR<kmsQi!Ku
zduR`gIuj#o$3TWjjjrY^?J_i$pfO<2_Iw#z-jE2byyKJZqUWUfvnOduARdj95@=IP
zjf(4&oI+CPFey&=P=PF-0Dh3}$YIMdUu=J8U^>RwbJwTx!(_Wyu*OQmX&4t8*=Usw
z$)h|gcl@k<I`~i5#!R^o>!=Bt;;1Hf3R9B7dL15~#S|4asTy+N3vCia9Ft<TI3{Ju
zVBB-9u6w7P^39#B@EOhba8FrX%ri0r{xqe*EZg8SxqPOynuG9}3^Vw~WA0OQj!1SA
zZMaNLuCaWIq0Q-?>kv7I?&qAwKit4JziF6HX+@2jU=a$0?Lr#HesijptYgM#v+tAC
zQH%c#-m|$rlBa#kY87VYQ&2<7BiRD>LtR2><7Ta8jATJRVEK=!d#6Q~Xk|}@k|E8v
zeTX$Ht6C0ZEP24bE{b+D&&JSIhx$z7-6f|?-*%klHih8nWs;f3i1+%_yUPyiD=${x
zs>!cl@hEj`1db^4CI9&L5X&6@%Fq=nsxPRaFR0biHMfKd94A6wMY2COlbgvs#}Ke?
z@7qu!#C;{Z%FUlQ%HSesR*6=XII_EoRGgk7k7jhGk2ps!Oz+Jb>EpL&UUe~Wm;BGA
zh}$}5hyrvDovVhwoy|6c{~@?!X2n?Yl`=%6gxQ@C?$$@eErAedeit8flrvNk2^!q<
zC>(d70t%hPTV}g$i(K1byU!t?GWIN@rKK8$jav*}RI9IWFU`vIvvY+=vkJ7Crz});
zfXrr*6Z<FjWyBqEwSLo+%<w$xoT^UlwN?MB7Z5VJY+91=IXiv~v)7ipcqFUMwdBOw
z|5y>Rmc#@4n8J`v#0?X}%8A<1N}FNJ&XSC|r4#CMWS=-=sbj<iy4b!?A9hUkv|HjX
zWidmYe+7nkgEyOM8KIYsxevAPM$x*K$2o0(+XZAnB}-wPtOYuWzIO>53C};4B`cA-
zJ9xGez=j(B`UO?WG&$;Q)u(KI2ezGkxW?7#8WpLzxs36I1<^H3#<}1BmUZo}aro+8
zQ)hq~!@8$zo1$yXgPc*RirmG)QooE@JqVy!x{0{62V8-Ug=)gUK4t{sb#sU{j#%Th
z+Z^N8tE^VaDkbl5NxC;>q>d@Y(rUDz598)S$Q)f|t?lJ94NJCGxw$>vt|_Zm?vGOD
zSd<3e?Q5yBKAgGBV6sgP#^S=y=RtAbmb~^l<0&D*CbFVQKDz!q_X;P=`1(ExsG49(
z1%957RvS$e4a~GHWn?W)leH|QCq8AoIQ;un={g$cz;&A}nzO|)7GJ%V=!$`|-Nf;j
z8IpT>$Y{7gCrX?p<#N}U0@;2oR?+HcHCwyBP;2yverTDCf$G|yFR#PK1T&eaEvNJ<
zEJ$am-+0X=uxJ)%%_34#=@4X=Xj(-uM+yU_%eAMTEI5VWX;>EF&N&2yB5cgVBx#(B
zEpafoY7Hav+A=0nDht-y#hhEPZ-(gpZhaX?+w=Tkzw;av=9A)yBXhH!QKV_4b!~Y<
zj5)X7t6<pg>9+%`f9a{UY}Gw`w2Q#5pre-kXU;9`d*r|eTe<}`$a<YSQp=fRnoK5>
zsyk}5!`U@9s`-pSP@8WNZ$~e`n=B<;iXEeB2Ndq;_diLS(ij*8f{Y`=5E*)=@-{9h
zc0~PqTh?E9OGU5iB73iRHY*GX``VEcFXGH(4ynr@HV{!oT8LM6qZZ&mH=FgAZEP-{
zcjV4iY$^I(Ooz>KMq+RLyS*+xMnMzI%9v0_Qu`)Tz&1i-JEZEr71W`P-4all)4B|s
zf1`5m8atiS>jj|59xW=nyV2GzcC1sR#)^V3y~rviYsxL9ldo)tI5Jf&YP81FurxT$
zT~p`Js-5cKIS-auI=Y4GDRdO{zJ$JNWF{`1yBna1T||Fv%y0WfU;B8@My|6~lrH5d
z1~Xr7jejV3d3pR(<AJU8<Sgw9MHOMJ{5kitx%{MjYP5);8o_7z`FHWmszeqvD5;~P
zoK<ZvViLeBJL>}`+z{!xHoV*zlJtyNvlys$(f^^-?fO)DRm(g0PK%L@pq2!XJ<ye=
zKhSuZECex~T?^+6<_rujq-<N`cW!>6gK3Mwb!bJVWZ&BN;t?S<^b&+wet0^nqbG+r
z1<p!0T&|G|9xBGf6UVwrv)Mo-R(H^Fb!EBaPK(bja~5pPQQNby+@EY7TG6`hM?y^+
zL6e#1Iy#H{1@T1Z2~*Grskk9oYZxeO?mg8owq6@;iA&e0rJ&P-KfEa}KYza)W+Hrh
z>mMOQ9AQm2{ril5ti`oIBtTA=oF!IDwfJAk9XR1tL#HDGQ_@+p_}Sl|Kh_MY+PS6}
z$lA@bEk~p~QVNU0SdJJ9*9MGf^yhsfw=j37bS$0<0Mr^N*PSYj`ktK3Qz$8wwPJA4
zn#ZHh-;;&`OW_t#5q;pqde+#yN3@K(u1E9?v0MXSK~t8tE@4T?=yXtP_ht7WG`LKc
zi3LtKZXjaaP#WXqoskpgUAt&N1#<F_zLf)<%*x4Hc6}PUCwHdam|)<cMc{k_kyT7v
zHt@2XH{JYh6NafItW&xhF$7!WQmsF&S(!uRW^zHtmUg|@52w=;R*T{*!mQ4@rhD@*
zpKf5MziZ!e+}kTHl9VJbKbmn@-?ybcQVeIOG5w|sB@4$??0&qP%%y=xYJp5f-UBNm
zr|3GoY@~Iw@!2_Cf?>$(zpK6W+49Za=1fA?MjOjVp6pm&u1CF;#-snhE?Nv8vKf{K
zwn{dP%=w|@czk^y{*!-G=-{jGQ#6OdJl9ariG^~&+aqmWZiva$N1G*>g|?f2AV`n(
z%~FCgH*WSYFPp}dIid6L{L?qHu%sU`=}yG!-t;LCMQhgXS|t2~mS2N^d0rNK3iN{t
z*a0vrQLR}IFrL(*qjl{^z&t&nU7F|+(02;!+Qg6jFU;OfJIIAj*Q`sLhO|3g5j%YE
zbxZ^ii&!*Mu_W^mRP<pt*C2n>kBH8Rl+r_9O3nmdKP>n{J8ugWfi(~zh<j|!AH5Gc
zvtS$zOE$>bRf{9B{3T5zk<;fW(r>}X+X(9DGE`Kx=nsu%)6c_W6@ui!VwWiZ)C6Kq
zHtgO5lUNzy5}R`*#ci^&Qj90`qM4B>w5DS14Z#*SE#ZYDnJR|hc@jjQCVKlzwOYa&
z_8%D1uJJE9WHN>)PPoN{+fw06SKaD?hHc=<j$KT~5R2Ko>K4t4f9)d+9+eLEY!5)(
z%aFfr0_#Jft!zED*_1*JI^5$-J7ay^jr~|;Q!l8=vm9wp?s<5Y{T9k*QJ%Ft_+Th`
zjW4%ZEqAoD*byaTxe=bP4%Qb=Jb`Yz*AGh2G)~TN87e9c)9M+?C7LZNgjZ|%!`Vm<
zsTu>V#th>9`tW~#SpKHj+<tG=xXz2M8tJD8xM5?1b^9Uh8|`d&V>#doJO7h~fUV>3
zZt?l3k-Ho(mnldUI99{<o^I>MyOTAHBwP5#=a1(m(DicabnE#b;g2O=9(EpUm5<-H
z<&t!3ik=?S_lCbYs4#MH*`?^ZbQu=uT<_Jv%|1%a@AKuFn@5z%_4PFTa2AcRj<$NS
z0x2E+(zy>0i4U-Hv781XI1Bgl9&Pw$QR7>0)HZ-n!G`|xOQ7<!Zi(%Ys>JWlONbMe
zdZBV!4&R?=e~;YoN6oq~-@|<U{BhIoKdxzgyUg5sNohUM@-5reUFwl`^K7_HW<id?
zlV1pydL!2<R_AAK1P&*ii~W7wj;H&-R!5X3Ka1DdU(|F@{hy~FpCWVzr&u4&Tz_AV
zrQhTw`yNZ06BQ(N$@*^*;U0<Y&S2R_JR-7)3hYlk{$dR})qj>g2GT}g%`AP7nvvqA
zJ2)vaMF{S`;Gcf_`NQ)!&BMxJc&W*rs1};lKeJ;%$|nP-+z*s4hp^skJ`7>s(dHx`
zt06E67&0WPGhnEWFHVW!twGPqDx@mtymUwbcclZHxM)235itL>^723xW)V~d0s+4u
z+|L+r3(<(xC?CJXAXf*apm7bZjwyD!kP6}@Xq)j+-Jq`z8F*vTQyM+zpv4_j&@^!1
zU2>f9&T4?1vb=QsyY7ejE?*s@6Q-?;Xk<%2S!(mrOw>wkYYM_Z!~rS|D85a<KVIVH
z8vCPBoW|d<r~WMV8c|Fj19n9g!P7r~`0;OQejj}WaN@J2W*nzo*Vy~CRpHzg!Be(P
zatSFq2i9zDTOG(Fl5nbV{WQ(v=N;S~eNwF+ODA^VghD-C9p~F*L-wg7Nx17;|66<t
z3%H4n^Uxka7r{p{-IU??Xpsb==X`S8pigt$GKM~;Hv4VRXSOz^R}<pd?jXY&OGJ;S
zy8fDT+h2EXmj1;ov6dxs-I_(Rk;`_9g#39DQdoLaX@1FbUPCc$AsDEjtR?B4P9}i}
z(z^_-^vT1L6{v7ay}auaTMIY_MFV2hoyrm5>SPWAgEeSBT~ZjUsZjTiyJPnPJbLul
z=BKKY4&&lkDbf@r9z9lA8qbQB48KM6o4*<T&2@%nPp87i58=F4WX{wq<LkSRMzC(U
zgl4|*&)U0WsL?sRjQrz0kMum&yGy6T!_gyEKd7Ku6gIx_KCv#kMIAQ8nq{?(N}Qpe
z^ZWrQ+{K&G$iDdP(}!Pv{>CnEKiXk0tpgXE#Yh4{AT3&T7~z6)Ii8Dp7HPQnrGA(%
z&3<8ncC!1yHS@<^dR_{&_9d{|tdPE`!|SC#e?QxHa(z7Km&-;iZ|9fg?Dzh!*S7vv
zs(<(~y~Bl0uWg_$zjpUl!97d8bp5mlW*&hxV=!xdd#z8nFjMbzR}#t;?YLybyBK<#
zy*}3a@(n|AxOdhq)=H<;C?FXIdY!f7mm!^QwHfqa#5*t%3}bU!8+$6PoP<l=T|y~z
zr--w%f*bbG=jB?{ZWJv7C=^*WYWv}ei`u%^)1=9Ii9%@@+7^m0iBqm(3o|A!rR49&
zU9VZ?JeHCr1bdzbMXP$joXx28mqUv@4Gw<|Qs(AA9|^eJg1?kRgN=X~8;ei0bhzHw
z)`B=sr^Z?X78cdoc|Y1A%^>N_0?I-^#hja>wT0Wfjh1)SNw};^tFHg)*AGAc{IBD~
zr`yAi6jl8lw{4%7aNCNE$PH3Ev8m-0%~?h0C6Gt#Ljiq4<;I}Awt5QC;TQ>2RpVB$
zcNb`UAkp&KW=VU5Hu#Mk>dtLx=502sARB>Ok0;5K3yFWgSVagqHH5(=$(MyEKUz{y
z_u&*nkdu5lM~l7}ny!8RNHf!76t0|4mIvOU5mgHBr?67n!+JyjQQ{;?F=Xr0sR){D
z3ig?ag%5vyikFipe0u=lEa6X<qx;6i8bZu@c_T}1a}icC3p`p|nxL3q6AH}Zl<l_c
zP0?4Y$L~)ijdQ2t;6eu!@VxX3?N%{>EdJC*`$FHbW}q>NuB5)LrX1s7a|l*@^z57@
z65&0V2?GGVbs}yv@3oktB_$YvYYhvI!O6~8X$zhlbPzI3uF*Y2ijHOq*<p!2dAZw0
zZonBHCVs{aj09hEuobv&&k2-#9KAGKsiD0u0a({w8^+XJxwDI9J#c?nN^>$nZPBrM
z!=`?=&^Y+s(yLPzMxhxDT>bV9v$MExtoUZVr-kJtjj;-PUhe$5rCvhOEh;P6z~Mq9
zGmxih56~WmBb{O_w>dNA^x&aM$~8h{rd;Q_9K9x4{dCU(RFK`5Bsy-@Mms4KwS<IG
za(m|#V*apLh~fmILm(V$3c`)j?pY4aHV*RVPi_IOKcd7qv1yO1>8@ke&S^@LIlpZ9
z*?qmlKw87{TAt{t3}U-lA=avvX7s-<L9rEPi+U@nvk#wsdcOVg>xaK-coi<=KI7|b
zZ(38e$znX_>2;qB@&~6hNW?MF7`1H>BJ^gzhGM8ySK?3~U*mNBeM9#~&<pudNJceq
z&U+o*meMbvajAJ;?~NLaH<I2oSXB(qgagkqBW~7izNjX91Q0m>`<#E#^0s4?v^7+y
z`1VO-WFt`B=OTyXdRuM5*K%Y*m3c@9D1=H{LGhukj*8pr=ALcL=N?~*6JqzgY2&OG
zF4m%&RbPq7=6IfC53JhMWQ(CeuG_&Ud`Uw!R3;n88RpNCBZ!xAP!Dme94+w?i=cym
zw!9kPyG2B03kZeA3*_j5AvPDx<HMgn{d9Zy?Uzq~gXhQ$Ze%c1@Ahfbc6qKP5X%t&
z9pL0i#$=sulqoIobrRgnE1!#<K2J8BU5zJ#uRkdxMl}ULe1#dx{q-r<6XXb8-`aU3
zX7V2V9@xfT(>czq&|kQ$6#}1)UC_Z1c!CCao%BXGJ(($kr6Tfw+JUk}wT}h0JN?l|
zHO4gG?mr`Nu=bZHmKje;xtFHzI2qQk5Wb9rThV#p*%Ib@J$m9Xucxec0CK1u=jGSv
z=35`2N#<a=zdptPDbGCP)C1es`E;py#OWT~$(Ze5jzC=&f!_T#$u`i#Gd`NMB+I2r
z{lN&V`FxeRXbnP1v3mxrNB;R4UuX$1O_p5s3v2INbP}2eYp+&1yryX%t+Ak2gRN_;
zf}-2Jd#O$E^}3$u1bNIV**#ur?*W6AWR<-f(TX0|xrlJ{M}h)>2zp;rwLdY8<)%#A
zWu$Y>!5F32OfbH5P=w3zCzlf*{c<^va?SB5pT95Zd3K3gy1?0|h~1EmWi-(ltHAo}
zyO%)CcZO<YdQOL=`yW3?PV-@Y(8Zt!%a{-1lKtt|$6r4D{L}wE{`04Yk01W8Uq1cI
zw?=9EQRJ#>R5#qwo3Ug~`%W4O%wEONaVHkJbt7dZd5T3$a|^GC0Q43kehaF-X2Rj&
z4Xa^682pJyZVdLBKnsq|DTf{^%?ff0+iZw@T-Ltoi~XT1jV~#s=f5WjIa3dqDx}W@
zSfM_Nry(Rm59YDJRh=Y6^ns_m>ABS&hBy<|zOw*~QGmS5dtbt5kup~G0t1ln4P6tS
zWW7_|?j&CAXn7f}2i2v!y7Kg`*qhUur2aa_OEe3rL{jc=P&3C6v`1NNt3R=lHNF1S
zruMC%a6T)%25hENX}E46XEh9HYUf_E0_Gwhhl<Z3mY)DJ%JvJyqJJ*MP@$yhL0GAx
z7uQZmvm#G8Y77Ay??{$PF$#4_Vf3M-hH6R%2;ArIbv`fij=MaW*>mh{t+8f0wNNyh
zrjn+S>c6;jd%z_lxGj|f4h%n>=Y}783uY!jRTHBt#&$szWvZ<quvaPe3>1U~8;CA9
z?TSgxtM18W$a1I#w6D>HX!jbo0{d!1r&V8LRKjU@OwYdfb0ISZ=_7_XS^Ga-i1Jg+
z+8OR7Q<5~u(_)9z&c5Y8IUrhLqGpJ7$+nVFB~)jee7?mkY8rttM@J4j+lv1QBZ??O
zB_tM9Z~h8>8iHeIajZV17_}g5w+{D+_+~hNGQBRGv5?he<d80Z$vmx<X^Z-Dn3;6f
z`6WHC`5dLfhim1wH9C3E)ivI@WPckfCw+8Rv+M2eW1@f2j{|EwwDV>WFa0z&uwnlb
z7^USY+UyvVw1ttQ;)NZRIiTt;i>wMIHluMuHZ#G#El`y3q<FR|0m0lC0wwlCJ+coS
z|0&GlMDfHzxyc^9=u)^UR$^RbE|xSnJLImO*@Y!a6%w$3u{(Enb7K?j4lu)xe#f>S
z_ke<nV<lh&Ka39UrDlO#nmFr8qr<qbOdoE5koRe<X23QudJum?E^bv;2Eq}xUb|qi
zQJlFdk#mgLs6m|h($3Qr2<_A!Eo;P#8O_nLYAoO^i|VuY@TZ3wl~f{uu{L&;b_t7O
zWBWpN(?(SwmRO+*8S56JT%D0A;Q#}JuHhrJp-M<ICf(T)?#M;WzTQ)23WMK64c*vA
z1;cZkx^HEs&tybmQa*Gk<*ySoF-Kc)FHg!CYX4Zm0TXFS?2Zug=p1y+TYjv7@%H)q
z4OSPlu0WV(eDxSXGF%h^PJ0}qXs9y*^J>swHfu<;Q4<K$^1zTCr_ko>5V0*){0K9#
zbL#AeXl_$XK;1t5kq*Z!k*3{EiYbo0mZg22MNK(Lq+4vyUOmy}ZQi2I_zyL{`d_{4
zO}qXk;YnVqd|a1$?YU^;jMBBjb5aYVk-_1MFBs)!iy)g@sOqPQsROg!LO7F~ZYXj{
z4n^3lX#h2am+?EZjP6T6e){F-KYat5uccs>ow1OPH$ae!)&@oAfUs?@$sNtWGRJh-
z1e5xE&6b)a6>QMHsSVMxpCx8rf9!d&Xkkl^Sl>wb!I!<}rPwtl!L}+wcI+g~0mGI#
zwS<5qOw8VtsVEoHl`U8R`nCZNkQp6*&zW*$#lY8=D)TT5S@5TXFN^T)I%gs+E9KfC
zt(`!wi^DftwyjDtq{9Qc3y8b*46(B(8E+=09LWX?&<7iGwIG~r%0rNd`v;8ju!<P2
z9XGVA7?t|2`P~;95?QQs**f5J!1stDyiK9pthSagCt_2oQjFe$Zq}DdyA<O|R%3wl
zaW7ZIz@W4-04xn;2K_ZR57nMN_eL_Qp3H3SAiHR)-A=hMtrwfBb$GEic2TX(R!Sxe
zZr+{(x{Bi_uqeGvX6B-}*!PE(K;JbQc?qxOFbNIhk9=xU*(+rDGg)K@%IKOh7MTbp
z05cGr{-Q?0s<E+$o+^2YihrtzMJ=dtk_<;HEw5GWc~F>Pvlc+>1rEygAbK+7Z{S&M
zd6l`nG@6TU%XLgH6_(s>q-IN#(~Z4R%WW604eotPFOKs+s8VMbQ}l{xDXgbIY|ro2
zpmZ}(Kt8whEeCk<xz<R)%FNW1h$CuC6{@wyW0FrNty|}0;hI3?heEWnT_`Oe8hSn3
zwO9>XU`vVk?IuX{SZzWJB=T&6$tx8D_Ov@`4~56x*8B1X(x+z`wF9XAw%lJj+MOx^
zGZ-#B9Zw^Uu?(r@i9U%z4}2_@cDLk36)`3y`C4fIL?d({mArJ46i<fErnR8uWKx!Q
zJLsfjjlw-OoUU=UQl$9*h-tcsOt`g<;I`K#j<lrmC6_=tLlFYY&Zq6GPwDFlJo{pk
z>E(@88w%B|=9GnTtKB8=$9nDDOANO5uv?cSe>0GliCB)CUYgbZq_iye_(cKE2AYKl
z3uPGO{+!~9*b;l%1H%3Kjd#ARd%(9@tQ*uE?RpLDER#^GxQB2P*B_R|wr1UE8p_TZ
ztNmA_Ukw2{hxrv%2KHQFc)ip|qmQT_Y<&~xdD70|dd}OHDavm+`avt>ntxv5oGz!(
z{H|*-dvF<H+Q)|8iHs(FPtj&(JaHg>y!IqXZHKedOh}UmjA^INT}W{g!NJLEkC1Ji
zEb>X1St`tow}Rz=>e!uKhvRh#NmwdD`&ZUnfZC~c@(_Mv5<#w`M{Z<)_vLz*LvYA{
zM}~0m6+F>U|8Z;5DrB?8tXyK&c(p^ZGdL<mdL`&bc^ogPt|=!_4fri9QC~9Y>150k
zgwkh~U9!ljB1}o8^+$76o<ddMH2hXkb;nx4Yiq;(AC0s&)*p>^vmK-l|8}Y6tFaEn
zev=$Ht^Wn1{dOt)Q_qavj%<%V{rb~~AID#R`qlLQ<@ma6$ioLis{j%0JFpv>0JVMB
z=I<KI?)=V*`rkEl&-xurN4I~f^Y$J8&Hk@mJ8xUw&>Fh5>*%{yzk^(LUF15ddwo8s
zRd@a3`1-%`_1#M&9}lpp>-t@P@ysGkn9~>>-;uF&-9dlJ7s~z}O7Nd>X3O?nf8n$8
z-GU(G^0)cBYxQjsvX<pL+j0^wqFihL*8}YvxJF()fqm|qfX3~pDLH?M+V-8Q^OPR9
ze<ytcp8!4c-RcL}C*M`ub=T{rY6LL)^?0-F<vU0=>vzlMg8;*S_tgaaukWvc{B8l@
z@v*i%)^>j^`oHp2Z#*!0@p>ks$=}hi)#>2idL|xr>A&L~*S%A_@=c|~yB}U!@Op%k
zC!sRLdd=MZ>i_HaOJ{s|`t9555ar<rXB7>y;UQg%a@6yhO!X`t7#PD~GovS*-fQ0w
zH6G0GD>4Ql$&$*5hfU1VZ1eq$3x7O;N@3vK%;W1NTyT-W5VxKbPDn552Ua;~^1^9E
zn>@dL7nO2*6p<Fq&OH?BxM0ZyvqIb`Jz_LRLrRCY?^Cw$wzw7Pp4%WwY6+{b@eoDW
zxKQ_qn#$#7kG@$K5frJ-L`lU>0-QXJ7`pWP#d%&Y)k6uB$rh=G*{qWqgun!$6t|eS
zplg>*<BITb@zib|gq@6GX<KjIF_r$gr&doA-65h|V<!oz)yX;f87z-*CZ^IH51!9@
zBRZm|IRWz}HVt3SPYDc(N*L$Z$c)vorCZG{z9sz~WzZP1#2=rHkzX1CpZ6A&K}XlH
zic*wmE#bpnb5wms%LVCNz~+#5y5^`D_7l6ruE%Y?=a`)VC2LThJ)9bZ^iwfrpan45
z$AM)$^mRR)BEFYJwuEwc<^U$oVBB{}GT>&YbqP*ZEI<RPVqE9sIPfmXX57sxGE=Zr
zn%Gw9ff4Jz=D=b?R^m>r1C^c3V%BSn;w1xi<Vf`*v8Rb$0yu@5w+Z=7XUI;Vs_#lz
zy9bYL2zpARXKC93Y&0eYKb-SUKT0m0xU-;-DmIu;HoZeG)H@|XPaxMhOc=Z);Y*H8
zcAAG()L{umCH0i&SOgD1Cd5SS9K(niV-rXS!id|k2UT&C45k$eE=R+rhQ?}*)bJ^t
zOrD}-WW6TK3$m1p^31BR+lV}MxkMp1nMu)+F`;+=<0e3zJHW%IdS@&x%S6qCxf1#i
z(g&^y0k+jwABzmtHG#9_OD@)>I>TO+{ORhK8;`t{+G_sjC0SkoKb}e;%4O^^8u(7w
z2gcHuC&!yqBO=H5foz8DK7Tw6-LR0Kf~nt5aaj7NDBC?KDHhO!tjv>m=avdRGD?Ld
z6QbL~3;$ZbJU;yPZIEsGu%chIij8srsMu9@JPZ~yFsG7sRwA;=9cc!4>osW_oP{m#
z0dcS=dvfch=$-SKxy{<;2ymx<%Ov}6o^k8ERX~0=(#e$7MCbS9AqhTyIXYd7o4G-4
z)a<YJz+MFLT;|2~d&v-G+^IwgLdJ->6ptrlhLKaMtxYMvv<s9eg5~K+nK^nLo+<|t
z@Q{qK2)j2<^m4FYm(C<#aQ{hUm`Y!ji39Ww@!aw3!YlI4-atSia&I(E&7b7_R5n>V
z?RL)zuoqcaX8`$o!g$N$e>pNBtcO52r2@Z&ZJv&YBdJ1jEc{c(ci83MuAyIl{k9`}
zc}QB#%z)|yLlSWpYLrXe?%*Uoe~G1X2yPQfV*kEe6L%AopG@W`A;<3uBM(yEjZd94
zPq?$o<n5E``Q_AuVWnN6SYL8x&Hv8s>>;dvu=F#JuV)_R3C-jEDcbn@6dry4Z|n{K
zeWBn#HrC}hGVLyRVRw%9GX|7ca{f8KegF<Or=klV8veSrfGME+`&P=+npBTVh#`tL
z*{W`cL<x?;vUZD6%hgqR&GPNr>xp8g#zEAfIR(?!RjOgy(h0#w$UZGOh|Ja6^_Zf|
zP|<b0_e<IS&fOVkv*({6lLt%KQTuWq8t>=Z#S5tY>BF}R_$(g+Wn60Oe0Poi_0#&q
zUaH5NXigHXfS3xUaOz{Lnne`TG`w)IXOu%$Y}7H_-jvwAM}>lR-FOqFx~}2sY4wLT
zn~#T3s+$o47=gD$_?5vmW`P?Ato*pYSFO8%UT?|f@*cN{WA4+|&%rND{MfeZt`B0y
zVYsosQ^?W7B9YJy#6kx&d_52V`swH2K79J{{M$DitT`FRU-HNbG}<p&zIl}_VvN)f
zP9j5Lpv911W8yD8;&MIO^=e|&knFGX_0=G0FIKW=d9K@ip$cX|k+zP76zLirj7bCS
zCC)x+LP448m*ZJ-znNCM3(rH;w}7Ea5D9v4VRPHh&0Uhx3j35$4-&V9j)ZJYp5E4@
zQd%slCaD_0+87xHH;F&iT<2(wU$?r#(fggDP-;KglB1XiZ%Rnaao6$zxW|}En*ci_
z0K5k^<FRN$$%ooHWHOjXzxGh6kxCa)c#cJ<Q&EzTYK{O<K(D`QlHv^}gTUu#OKC0}
z38!?;>%sF_@63C6S_7m9xY&d2Icwt36@ZDj{BQ$UYaXd>QR#K<3wih|Y4e%CUnQP*
z0npd(i0=Ab9z|^>x(j;y`o^T;AyRl>GPFmSPF${OL<D&C;CALa(vW&Vj4h>f<`5Y$
zO{;189Bol62SLOwo}DxqlM8Ze2ITCXw{Xzj58-FBwB-j$24d}6=<<Gep9Dxcp)A)_
z?VO{}syqu-p}JqH!8}?k=G0kS`Vn*JK5}DC+Vyr38^Q~fT7XRkCwehL3CH@(t*0P}
z>RDEC2kNFI2*=-BG`+NOXC3Xq80TSB+?Bqo$K|c@^(FKg;C<rQ01_^)V(M})1-Ras
zv&S0}9(PyoiLy|{WR|~K6Mw7|<{z7K?cY%I$d$`jS6EEal}VvY(%$Nwj&b4G((2DI
zM~BBlcnRF2K8i<soU`J2k`tReK#Mdg#!BW51MUzkU+%}V`_!n;uKnU6NV=t1w*<Gf
z^Xa;b!TYrkD_w}yZ-rRON}+hZ5@K6~*sBQZf-3+<L|6nEim#(6rG!(xMS#Wlty3>g
znZq+X3ni9%eJQ!4<(k7du!b0A8;4vV+gM?%^^1RE-nK`F{`I(8r)=#mo$OfY<?&F$
zfqOj&Z=@Ji3v&e$+n8i7$lp(ui2Q${!H2eedidAp-yVMZ$(*&{Cv*ODs>K=%+)d#s
zN(0TpBi2*<a`f)9RW6HWhT($}d_tdDP2spnrws=#cm@$f?K4fYIG51%<lxx%=~9=T
z(Tct=X4%}Th9JvHWu~jY#+<e?n+?2hE`lM*lrmdH%YGSjPvAlh^w>W1uB-SP-scO+
zy*EQX*JH(NzN^W&oMVhiX(&Zn#`4mZ@OGnKE_1Tgn>k?8YL8HOii-r<_GWQ8ohn*F
zzcDPYBitG`|1M)~b9o+PB2xG|mn$Inf>ykR3tGbCw3wkh<55;#IqxpfTJF;N_2?<f
zie6hU<n%w`bPEK6(d~EV6X#9>%bF7!CO(CJq*b<9fud<oi&B0gx&Dyii#esSHwT4<
z$Q9`snfU3KAOCv$ZG8Oe&%b?3`>02fh^sP+sLpMUVW1D*bmR1?$Q31C(_Yjyj~w1=
zGC2Ik>ks@x7-;$Xw&M@S@TE@7Yi*f7Q1lSPdXjKWesfAELc}<}{CP{tUVXWK@d!is
z>w7d$+|uPoiY~tX$SwKT=SNbjm-clA=?Be+#U_Zw1qV_E7HyvIt(Y~~;{F_Ck_ZnS
z%y(5?w+YCHfJQlz1lO>FB$Ga2*+X1}n%{+pf~iwHWxDQ9nv9C{Dg*~(riCJzT{v0L
z(g?3YlC%^;Ho6%%8B7+p&`S<Bzr3r*-I4^L+2lPx71ERnSuJ|%`_#+GNT<9W(}han
zL^XCBzNty0BxSw(^0UjcZPckpgb2tkhFqIJmv;6pC05Atf9kAU?)gUZ0>iS^VE31!
z&mZd^n*X(h-qm>fRJM3J%-NLxEVCDa=1r{7DoiNis&kwqrGNeH5z+hm45bfobu6<|
z=Q%Oroh*biiQL*x0?!;hN*STB1$a$!S)p1tT{q$DodpS~c#FOYY(3PJ=po$DUMz6V
zW;>Izw`{}fhl3<fa|gsXOMg7k^8mO<uN%Nf-f!*Nnxx*m1;C<y1yN#xXO-YEhDY22
z-JJW=Bp4G_j15SUbL@=SP;Na0L+5M7ck7&?H_STcPs%C*DoH^Z@9$%W4)bf0O%8Y;
zamQLe^Kadd99;`XLz)Fv9(`UIW_zsTC7#9Wv%Wuz6%T3(NSK1xC#f6jz3ez1nJR@7
zUYD}S&CzFM=|6($xxFxYUif@*@JPJ6r3RxRRk^%-COJlRG@*7<9mGWEzNsYaBbg;}
zJJjp_cW<xBe;JkDbNJ(u7Ip18xkup4oOv;-mGQriXL%jZ_Bx)9?(1k0Li;jb^>x0M
z=gd@lohjkuzx?G}^zX+lyMkm^vLE3Wt=`9qG@CB*t-ujS-<R^ce+(jTZBdON4q$*R
z=041*;Tg`@rXRAHt$IoZI~EyK*D|oX#VoUbsi2FkB(g)Zo^XB0nFUxSvDh?8x|To%
z0{}dhSk+CQS~J7hFOK;lEtbh(k==MHg`zo8v0AR_I<$0`VsPS=8NRkNcYmS;mu0>G
z%V#-pS!R<#np>FMd<JB-dh5QV*H(JCURG{3Q*B$M?<Qk;pA&7_bnIuER+4nPV&^Wq
z%dGHFm)_X-^Ud|{cC^8c*3Bh%UQX70ISH4EHOx1&TP_jFI{+Re>i}!OQ9~qbi;0!z
z7Jhn3@uzBV^(+#7j<sKO$VIhg_w68h%vrC!Q?%&k)pA{n|G1vR1@+gTety0^kPrGh
zgJW6GdvA-)(t+%<hmyj;Yn)`sQrEVl&f(eJb*uVVkgHJdE$tg5#_@p`Xo&$T32;e?
z=r{^B`=XJVyuYCy1B^8pOSX&9_PG9a{6O7?lIYlAtBq&;bJ2Qs^0M5IA1dkxo|i9S
zW$lW+8K`faQiobgCDwBj3c7YRO1V5C2|s__4FFvacRrkkMN}7(#lHMI`Na7fq8xAg
zCqw;<EkwTFzV(*Of9w9VLpBj%^PBOf(k+(`%C*$w9b?UPoC@(~$sK7@%Mx%%A9jb}
zvF7NqG~X=o(w%^&nraA~Rb*8JvsE3hQtrN3#ahxdH0QbL(VL)EVf7v7o4RiXSh%-q
zdmoetjWadh;_%^m94RAl*)HTYYy4any9Va^y%RhG@t7b(9{sFWxFgi_tZLgb15^-Z
zu?)BV)eUQ#r8F*aqpX6wMi=d=GAWH<({Z8ZZnfCWR8zQ3tlpI1Szbiz2Zd$}Z_X?-
zv9d<Y$MM?BZSU|0Wj?sn+7F=x;Vy^;m@24FGj4~?qNV?7ylnmd{o$sWf0VCw-9H=4
zS!s$0-{uWRmQm{X8xwZAAnFfu|D<PTzX2Mza>~p&F4P8SrZgfr-e2?a$kKcPR9tU*
zsXjlX4w0|B+iBYyzJ59SPhe)js`eX>QP8!+0-$Vpk1YR0uBaLp<BuLdoizdHn?++8
zz(#to<>r#SYq6!)NQ+h>y1iHZml%pYZD$*k5@QEz1J1&r+S<DgVFJiGdZy*uXsn%s
zvjcS-`{Dd@bV;=HeBY>_vEM5mskNwFDxSh2gM7Kfl(s7d3tzNcZl<`;DMig=A3fo;
ziSkTVs^|g0d~}#UgAaVkm$z+OaZi#{E<mhLk%|HmX3XHhE<TLD;QPN=z#(hs;rZ7;
zfB5w2U&mj60zI4euj+~XIholzOQ7P-ihf?xf?egP0$6QgNZhK0yiDN;&M$_|zl+g~
z76^jR4uhCU1eTZS6t#H8ZU7_EoKHN+^_bw3@-+!@p*9@BGWS>1L+rjV_aa*+PsU8L
z6tSGZDRqU-iZZu+G@LMJ{xrEI*5@EGvGH0AhB;hC8g9V?7BkA+2}Qs-PWhDV5a{~T
z@rKq{a;ofT4_}>?ts@i;OE!2(*(=k^xg{$PTa!+iy(@0xgp^d+QrDEOa5PH%5QC(6
zj%X+gdfYjYX240e=ke89dk~{GEgcZFHgCfDL6N*ieZ)&lIZG%OUGzNd(leB&lAYvD
z;hrst4rTM%S=gddlPM#X4S!SB=VI?Ha>5N1=}tD0oYl$Xon3FQ>a792@H{Gb{}DK4
zL}7qYAIX)~+Hl?I0cm(8WUO5hJZ4I!&5~@$B%6CL8XO4bZgUtRkn5zgY^s_h;MVuS
zpsQ=ll+DtM{D7?(0+N1G;*6Q$I%!>{{!q>Pf$A-auD6Kh&^eU-mXO$z?OvmuWSp%%
z3820yn4+^MJ4)(f%*12rW4X!Uqr!uZrPPhuYg4Yu@aFo>>EhBVCS_9`**Rg+B{(Pe
z6u5cmL5&gtzw{1wCAo;IuF+nZdx~Fjfuma~oLNC{87kOs$WKRL&qnW)WhA!XcU#Y~
z!7d@*s(RHC#8F!flua_Dj^|MNcvjO0FRP-O9?cB%_0f2<a4TOg4s(3IOFPj+BI(!|
zRTxN&34=F<*d_)u$)A=6RXWAtNIR2xaFe<qjxd-RX1q}%`7+KTFWkM89q&io$|jI+
z&}J%kL3q3_^e#DuRQ{?%P{U=&2(-xCSv6+K9jR(#NP^kJGB0%-t(WU8mtM87y4w*7
zVUz{IG=q=(7OOQZu}w)auF<v7D?yNM<bt|XOD@mYxOm*o2%|G@cD4BPHGDqcL_~|d
z(z`?@gcOcq2{AS79}R`>4JZl|HYo9kS#n#i$juv)h60}^C)(zHOqLg2!*jO*bW2pr
z(`WBHhVE$TJ>HrzEw}PwtW1E6)jkgyI%y52PiCw#e@4%YtxbujY3ivv%y3WiUj`al
zEobH1sj$4=b=^woLP`pe<H@#JdO-}OB9BcVWi*0!s=L)>j<NYg79K9MGzGn11^F46
z)1-T@Ll~XjBHlbZ<ECbeG%A*}l32l`DmBMcrz*xL0%2LxgALL$9wKaJL*Dxhnjg*g
zI_lGM)lyY#$BiFOy(gK9GmT(e%yM+cHTq=HK3BwTg9fvDIo!0CJb*n?Y>6E9X|OCz
zL76oall$O~w2hx@1Crrt5zS)?z0{m=>4lR86|^W(cYXZ(LXyrF@J%&@IwktwF&`JI
zvl~#8wc2+<ZhcK=2GT+3KVERkXdtSr=T9@JCybP9<C)9N%DuimB~*N;n2wfPFojDV
z2WwspIdw{gn~P;EKZAwgHg97W6|vnoyNhj~dcEj2rHw@5jhi;ruH|ijvafZBSc4qR
zewrqat~y!^{+CkMHd+ZatIe~lb!MA;r78y2G4ZU`n{u}d+0X9VEt<D!0J0Vp5q0XV
zqKsp%@gsVbi7l*=dIs=^BQSQ%&o#Re=xW3ocR>`j&z>@frj21{53;HxJh&l+?WV=u
z)D&C06S`#aVj@qb^Wlq7KzYu@mRpbAAA|)q{17=DQGR10k<%VW!5HYP+9aC>+hD1;
zuohgu#@+VL=GsuVEdlXM)QaaHNk2ICGS0#Q%<+~v>uqnRuyT^stlmmoyQdRWZQ0Gq
z-dwRqSS^ZYE8MIZeXz+a;B}3nvUi-OLC6iKsQO)1r#OJDl4$YgwTDTgyw&w0d_xbD
zp}cQBRS5HhNI&jZYy*}3XGo7^lHF1z-*g2c=MJ0Qo(%s*-R^@}Ge$jzgT{KscSw<c
z<X11`p;|Ao|JoW+ok->9kE<>%LBm^Ywml8cR{3*>BGn8T?&i$hXxS)3mzNR8A?Dd0
z(W$WIm!m8<)>JhEIu%t`t7Y(0R+!bAm&7cDY%q^3_T!E2H4CG?LRpI*kmy0NbW-g`
zxcjkX7UVjgsh8kn>V*kgq(*$q--aJN$sl8Ome@n|9S}bnzpTxrm&8dv*&t2w%L2U|
z*iR2HAD%w_>$h>v)PyBFQHsuLA-b(+ujq1H@!xEP!0nVMF|Bxwy;PD<6F>6qO&jc7
z@>$3_Qo)s^NZ1wkDEW+M)F_d_c%Cx9l#xBfa!#;r8`WlKfH<bX&TDnQzZ!rkdH~{M
zru&(zkWgpLiBn5{6<n*`AMBLp*2~V^kA9$5?Lfl|406`WlEPe^$=YU9XL6pv5rKkm
z>6NQS0dw5Jt6l_!8kEGfRe12IrXb2%i;_8}n&bnOQSxyn@nst_6>sO-)m0uDp7nlL
z_?vFOketRkr$Xf)){}6)EJ7}51s+559vg57hu7!0es1G^h*XItSbv8q^tiT5p(j7J
z?&q<vTLLvLCnF-Ixv}TLTArewF`mln+$=|2$#cddcOh(PfKiQ>wU`%{5|>~2`J;{x
zW{-T1rX<(P=xHq_7}2hRo7Ijr;O1Ay1M6YhyRm7xGs8y!GOXS$#%Xe47Ap)Mbn;vT
z9n5N<_H+U^g~5F|rB?eXq~ZyyK<DhPI)GN#8`gKSj>DNs<jBPR%q}X#T8wlC-7GSk
z%v9(`;aEGn+)pf?Qnbi&^&_3d<m?(7-D3i_+IxWnEqOi6?lZ!Cv`Ey=D1#ky7fqD~
z<V7pJ$M;Jfw8ceWJ#H!P>Z;ka)ukx4Jb*B1a%x=HXZk~xJ9~c(7RjPG&3G;zSZ~YG
z+CuazOET3kU5u`L`tWf3?Qh!A2+l28wELbKxI!N>-&=0dx}q%IDftTfebsC38Sg%|
zJZnd+`<yB)wm1aE6gq}m*^2{VauLHWUpKbzIs{qLn!_SCKal)m?d?T~h_Q9;q&-IQ
zT>i|3VI*a_r=$!ekhiwz7ITw-_%IkzvUy{)Xe<UQyQbxh`54LW0oj(!DFNR$8Ejz5
z=9|tq()2Lg;EuW88CtL*JqASY*u}w#g&KS~^@6ym)2LAhx`vK+Ii%>i#qut~jGfz~
zJw5a~(zBN9u3yKH;#c2cDg5|k%n1xzp-5aIsE>Z|9(+@qWUEupcue<(siSw=_-F6g
zJtX5uH$F*QOMo<{NIU7YP~e<bS<-WFaqBkLX=kVjX2BUS)ej0==tDgZ?F{Z?d!E*f
zJxvwFuDw_zV9`LMledh~De(pH+K`V{^G(KL3au*aTQ8#K6-9_$am@kFV&7ftwZi~Z
zp_Fg{Tt>};wL5&#?`k>GzBMLo7?HtIry8_7MA#)6mFMf$XC#*hOY<^@GiO}m>RjuZ
zZl{hQ^U`iYhV5?kX;BMSDGb{ky<R(hq(`<+=@WeP<r3A7?^-wAveI*Jx70!{DWV9I
zW|ED3lF!>SHCjyf7M3;`-E)j<T`6ylA6PTQBFurV7KdiqpD)vionb2SrAXy9*SkAa
z#kQ3W*YG}zQdWsho@0h4<eql7YTh9T>T7CkhgTIm-Le%F#X1!7MAC}yOcq?iaowK7
z-<f)^rNUK=3)HyQXL{4uP$5MFyLt$nb7riHKGwCxs#K~>rDQAVdRvlX6*<a@K&@HY
zOUF*uY;YMutQ%^2F?k)=S}i!K*wE2)DeR)eS>;Et1|{m!r6Myg22fJ4U;HU0bqp9(
z<k^}88Yaco!wIDnOO5qN5Y=Tq)9B4z0TnIFti&8!vN!8_mnQ~7C(Bs}=0M8L!8gqc
zb`LngXY5z<oJh33q=}xZuAd;0z^icAIRrVlzT}Q!zV~i;yZKFrkw&Rp5`56vzvfoF
zZtJ0d#Q?)97GNa4Md__>lEsqadM)XhqEoS?H+I4=c5bd_uu0dO*1M-;zHbx1P;D8n
z*bJ=HM2Y&cDtnZUgc3UnqIa5WQ*TF~KJf6K#s<j$pb|z>bnq4H)NvfVxh<g678k2@
zV{qlpW9DBg$K7@Uo@0rqrA?X&@TNJVFBRn}rWiO+22z<i)Te97xtET1U1L|>WL@J1
z+HcuMG6B(4$ShGKA^J07rKU)u96#05(o>)!?t)Px;?qb)j<CMHA^6cCL%G{uEp}8J
z_54nev1`S7S9vMnqxp5^x|(EkPu9COt4ro)8)Ce}TqdATB~ZR*;4kT}4rIHJ%)rPj
znxc~g(w@q!eK*<Ce%!NS5>iW2Kv0b{-#(H(yP9YsadYbNj5T7pc1b@7q$=QRjCK9<
z=}Z}0fn>hI)*%jru)14p_z^vnr!8a^b@WM!(5cK8cafVXT*Ixi#x%?n0L;UdkXr4a
zcjnB6$qne$+XTcKYe$Y&W6!1yE)j%j7hvHk`#l<STyNqGc2Mfv6OZ`w?7zp?fBUBc
z6LT=9*Dv_1=hxqV`SWThfB5Ss3)BCOalfy&TB!+vV-qY-Udi2YbVRWjf;aPNO2gyn
zj(i?kC7TK=*eFKZH4(N!oc|pstN)IZrFRG=WgqcRkxwT6aMFm49=q#SQo^ysp~`b0
z;weRZNN8v0Y_|kba$Rqa*Jpmz5lI6z^WY8cfo;4JH^Du0SU;$4(A|<KE>gb(*kz2h
zvQTD7$k2SdJ8!w>fREqTU6%M9V=tl4*H0g>-{z+=f4r0XnZ4wZXg+~m@arQ-z4xe=
z+@py4i}h39l6FwlTYgus#nZkpMKDUI1giVn{P$=`=tWun_VUL56DL5T-_%RU<;nQ6
zul$hmiEx3ZM4EWU{@<gZ!hiH~L_w<v!c8+}P+R#IefDB}<re<LA57TWeGhqi?Mtnn
z{@=RSX06#jzST>RJYIt5X^&a4KEwzJCNdB49_w`qdXbxDZ_vIeV8vLxxf@?SytQpg
zmdnNpTfNBaMF<TM0f{N-p5VXB6xorw+e5R;9e+Zniv+)x$t9|<52^OXpZ+192;KaI
zPHz^9om9Z?0d!w^Y}e0r1GvlU12N6(lM?s3i$?_blMICGUw`y<48`mDFS+R58$_SH
zI&!3!$hC&v(-N~NInq^<)L{@J`9KWh?uq_m%jOXYd;GnLuYY&muXXjpMgQ@#nC9i1
zdtsN76ygTEH01lb9(1=X55@jE{K@cKCdte7wQt`aulFCdWnaAYM>PCD`0*~}vA_Pf
zK-R*mygu7da@&1L7|nm#8Yg2F9ruOG2j|;$E`R$8r@P;!D8#+4p`Rd;PAwj`!f1`5
zE)r2|JuKY57Kv(8l&=!;{^27aV3&wNh>vb*EQ|vP>&-OPO|<2DHw~Uz4lheVgPd|C
z206!$R^4rXTd++D^2I|bU+E5WIXYN$|M0o%h&sHUL)IQ2L)w!Sg>kBJl_ETNbT7EB
z-s^I|)$)3$*QQ30e>=?1%=vd`=CL@LG*$Ytxk?PJ7u%CO;uJrrZ9oeiDg_b!(@&!@
zygrsRzR1K5!Lgd8eEos9ZCzjNDe}m8-cre;4@CJg5HDN0*VucCcjo1Fq~}YnQMJeZ
zGp~>PA6bb1=Hrq`L9e&Jzh1bRzdHwgu@DvWA<n;9ERS00FS3GOM`FB>z*j?oqlv%R
zW}2t`jnz}WSUsch%qdxm|G<PIXcRIbBBN0W9Td!$4BkDL@N#S|Xrb`k#&l?qpl7Ds
zn|3b21~zISrF_CASFP-GE`LcT?b$70ACipb%fJ|lCk|0p-)uGDC}T_r(n#iU4^>~w
z;9-TfiJ9z6ZZxeY+8Zm}SmhV?mBjUdR#k^3Se<mb05k(4!Hce4Ec>x#Pm#?f<HUYE
zJ7Zt(NRxReC7{!AJ<fFR?=f>S*`&pY*olXuNo{2XS5JvE>GoKKX?hUDCMG~MI3PrO
z|1yS|bgtclGl$X~@MBI0H~bPu3`unK$&ih*C4;Ag{<Oy{3kd=C^S~nNjce1lJ3%XO
z20)H#7_WHLLWH%be=Xr8C*kZ!IXH2pV~JhwkPW7dbllyX%cQnic8$CP@{|aP3c{k;
zLUh8SN<vdACwR1Zc`Jdm1Q=XfU^owZ0T#Wh2-5Qzi^X<e{l(4PJ;rMY{tr0q*97Cz
z8}BL)E8%!%(U+Xc`ot33*6pO&aDRDSX~I<r78`<O%N@1j9@oP9{ISitszBzqfWeb-
zq9bcbzpi#y95nbe)FS_EOL&+k+-Ot-P2QKtCJPe$@q?zp01xVhGdJgT!(F@Ppcz?z
z$;r(5;z@65t$y9h;aYE5A|kU}>J%OU)R9CO0c<1)4Nm(pS%OhfafS+%eKJ{)Zh2r~
zh9Pn9_*P6egVl-TdO!-4A%F9QP-V!$+yna-9nBPZL(XA!tU@pOo1f8xkcK$D#VkIU
zC~R{PEa<DGqD=QulZkv2nJqyg;$9hIR^bXVRdYlKQBf<0uv4!^Sg7CJU;3lD-R$!k
z8fPF;p>NY2370>lX;pp!9Bgqn$#mnL99TNPXy{3dH6VEK7WNm6(FbZe!br`_eH8fl
zrP8jIaL680ErI_rQD#&cq%%w4fzt}0t;c;(xRsj-dBK1d_}Mx*WBBn+idWTBxzEFF
zZcIGJmHN|0TzDkIrCMN&i(!4O2Ls*b&?!uK&X<yAUG;ri)nrEDj!x;4AEEVws#VeK
zadT>ig!gJJqnGk)L6{dq7$}z2i!4(biPrn2Oi2)}t^IG_SNvKXD3+S;@EOt9%s0p5
zVfObr^q2li7k^1v;bcD%qOtLez3u=VABY#!A%9=52nr^qzvwjwyKW_HLW^7i`s?vf
z9ehqvX)ZoyB*#vyt=YbdtA575$=~}koB#Zj{a5YYS-(6$2f%KIL71a6TgfomVG{pC
zBX$L~+L!#UMMm6+x7xRkR?z51^DDL#Q!7H!#soS~j19+DCwz#j=5t(sAICqi(E3g}
zUqBPPT~)K(N>{dbGrZi*@Y2n2eu9zcRy)6(kN@7b`TW*S?DjIbQ+gDa%zgDIO7|z0
zuk6E;Sb+jx`;cEgT$6l1oq7T`nHcqdr8Sonh8=JFzvzr&;Pc(R)F9sfKXWkuLv9QR
z{I}=(y@!dH@@hZAu*0>JrFx$CB>%HM{pW_RL!BK${qf_s=;`vK^(EITCu<|`=&=5&
z0%9JIUWM}#Wg2Hu%aZ^1Q3I>L!*1g6_k~uzs;Tl)#ePkEU%#rSa{d32?Ef2;J7gW1
zb{9hRA{AyG#5s>46sF4(;cEzDL0=LnNYV4#*TLKCX}*+h`Klt&`*YFttv$o3r3}R)
zRBqY8imi#VxZS<49`?)Y+dZVo=@eE0ckwg+dtVQcI3>dCFL*U~|Js_9<*}yl5c=mY
z;Ax*f&SVGwCoUR1?mvFn_jN7*{a5V|TdllQ1XBO_+SG(t|KGXzKYZqYblvy09{>GU
z^=bbT*L`2kIh+2^AD+G;7?mIAL`)<)&C8o2&y6}S*ItkJs8hPgl-zV&_f!cxb-Dss
zQV3XkmxnS$Ri;$FN$y2)mV4=<B&;qeX(eUq49M7DnpAkyBj&qgjn{)>jm$Fzp(Gx@
z9zE4gem-uI7>19GNggq{ax^7Wm=r*J_q`syvv}ulJQ3+P&GZ(R*;DhiaKK-WI?qB5
z>xu#L)zOn>4!s|#)0!`fKE(OEBRy`uoHl0^^VOuWu9cBkNhkU+)A8lNR&oTB&R}}A
zu3rv%4xjq=$X_2QC9}d{ir-jdgy0>%S*;+m%sR)X$z{Xq+DIzthabmJKfR=R!tYD2
zScR>v4s(4A{q)VEb&Vvqmffs1eu;mIs=dL7m+a^x9`hh$m1JT+zu`3wd3W?X9`WbB
zr@3~56vV~kgZpRxfuRt8cE(QHsDlcP%6VIyhi>_v?_s$rLps*ECx~vU1%Dp@ANJm+
z$#Emg(*7&3UI$?CPdH{Li%l*f7h^KZg=R%jsfx5>N*aYKdP=|k_46DDgAti3Rd?5n
zy^A&}Nd!Rx4*$4*Kh8Z@*va^Zzki&$JdS)S4reQUI_k^j_s{qjx}NzbU;L9+Mr}|3
z`Br-U|M0`7w+O?o_?T4@fzj1nNgvs9W1XSCa%A&#po@-Ar{mOaINJdF>-=;WwQxNQ
zOWdE%S9|wgNGSz;KL^NO7s^<JP;mdW0X55ZK|vEvq+E4HF(EE8r3H6W8G;2*UpcP>
zq<8x`<Hemc9i5b3dgAGIr}^a!qH87L(yp<<B`)(Im&9G6LamN)0UqvJoT5}RbOlW~
z!{h6d$p%H&xtwO~AKE}0W@#KA50KXkgR69AAT8vW0lt;SIAcfR*jtQUnp9_Zsm?9f
ziCCm@usQE)^th#<4ml|+p7|X};y=Wj5f|0G3zayPx(3tgeOduPCTBrMQUwK=3N~%w
z6}OdQC<pn7Li6ycp}LM9N?<^!KRmWb%jBbg<7pk=c0N(HW~<rowW|xFE#5)aMD?1e
z*V+GScK<VzBwQ!Sv64W-yqYM7l<iA(K3zV2{GzH~Y~i2*p{N@xRw{Nhc_!p;I~h;%
zmE-r?=BArv!zwqsUD8ABYfFmzrP1p)T*0CQsE+m}-n`(M048SN^lty)_B6Z!$KSl1
zjcKG+N^VF-Bt?~XKcIm4a%N2oFr&DKl=AlwnWw5x;&LIJS_wIrc!g=K$-8^1hmq$;
z+G;zFNY#N{qQU=%wuon0p{w>{qF0P4#*8B0`oYfL2ozW3WN930w<LbV^adB@L!Vyp
zUM>4UmL8l}kO9$w;g#aH@0Q<<qrO>@lGM#^vtPyO+MzGK>~UE=6t9M7n>=Xq_0#z}
zXu8-EJS?w9DR$i(7v|0c!UG1zR{R`c9FlC-r3M;kJ|vg{4pu+8n#Lu0X$|rU0w<zD
z3wbD{U;DN+LHmrfGA$656(-FwkE9_DAP;i1emvZl-4sVR9kcY>Nuv|B`qcT}7Ovl?
zFK*V{*Ewdx2|~HpoTO0*#5?1{DZ#`9EOLusR)SA^w*&u<sB)qtSsC;!%Zg8+yXC!E
zqySsic~_ULlNZ1`zAqO_<$af!0#anA(De!v-Us-VD-Rrqc7a%zfpX_4y7gg*wtZOT
z<5cm9b+}rO^IY}!&pVn(CGc&j=AVp<mp{IExn6wt#oP7b?Qj}=`5=Dzf63|pnKkN2
z)cG3Sw;MhVfZ`EbAmg(xBU6%k9DOl}hfxxk=*{lwuki6d*C*^$$Ai01>eu>Yw*MMD
z6uW@6o(#nZsp8oYktFfNZ59(jWN9H-ISLV;*)%v=9X#yU+G%C;4{_p!GBz)avf%Xd
z6;GyVqR}BL*hxM2V(3q><OO6(r59kZ8>Wnq5SX?cZ!QKCh?If<^P$g5%h+c3M8(k+
zh(A>4X+`N&75F?_(dISYm-yr9tp>b(f5vc8eu_AFdb{gcm(uN(dWI^N$6?+k)nV-I
zhZ?UxOjO^sCgRKpt4c&;qg+;l%LNl9!PQb(I4kaJmCcNzqSMZ3zPL1w1?OZj5vX5P
zpH*pY+c*xu1%s~HzqwXCR&gBbiL)1C)%=p~r=pulEsKzR^%sNA*%u=#Sp0C!RcoW{
zFtK;ahOR25Dr&F1jlbS!_$@{4CnQ>t$n|?xZCoF2j$O*YqcU_-aJ={Iyti>6d%oXY
z1@9DkC2>vN<3AL$PU$4?0Lj?Jkx<3#^^Co*;yu^F#%l;D?Vn(UMWiQNN)hFaFF=X6
z6BRHQnSD-3+OA?0O0KT$_(RmN^l?`4QX!GaV_nJ1-jm0g3H4L||E)>YNZJzdpcrfg
zunL4wDvV%g=o{KbUw!vUokXa<>jv7IFmV<!*ac#GyL<u(F%WE)JS&DRCeMOhel~`F
zm5!IR7Ga?$ed0clx1L#@V))vrIHuu~XF};8UV*z%5z=nhy9Yx?pEvi(zLVYL>}hxe
z><{=H4tlI|-+Q({2b-TLo5|tT5k2q$V=91}1}PB5H5i?eppM8G6cxQXPEMp66zuz9
zy#8|e`ww6E9O_ZnG`IC#i0vK}zMKhSMzsT>i}nwpuJ@}vE7X&&t`DLR-DB9}c{@UX
z&1ZGc|2^y6pa48RpU1hbw2|o$o!*SqU}2QJ6J!oHRFz<l+%CmgarZhR$r}jyT|(Zt
z3q_WcJSxG}d;4)#Bb2A3%AnzSwsTwtEOOhN3xgUf5({uttQo#A5(6i1;NbV2veuh+
zk*_3a5Cg{D3KBUDg+vpP)DkCIbrCuZFh@h116PiJGFllUkZe`MQ98A8B(%u>V7tnX
znxf}rH(qI}Sn5b`K_!$LJJP@wBDkj7)A8apKWD2O6u|~<4g8gc73<stVOa-se{%AM
zQEJ3x8I5^>VX6-TyE>~xBk5{XeE=|R$|yhYq<`rfNBjX|Iy$s?6I;mY3)Xtj+I*>f
z=m|)vWw?Dctu!(aGTPR4ye2vebLqBHU>{cyD5~j@UlV0th)w%$n46%@WP_-C58|O9
z4wLB2n#_=(aTKQyz&XMf7Do*ytRdMnUGJf|R0M5oP93NPym>puL@qgP)w&*Z7f<Ry
znGgU3HP^?w7=HtIR|HgpQrX7GPo)%NU_`GK-)5VAe>+C3f-sBolLO4t_`7$~Y9;yq
zw=I^8(^$P}H{$K-<LTG)<6lm{eS9P2@{iEDi?Q)JiwixAA^%-h`XkjMl9IY5f%>wx
zgQ%*gqM!s!dm?novM_6$E4?|lWw$=Lc>$|b-E%gyQE2X|qDQ&Fh<uFCP5yBB>XI{v
zmu5JgS5>gqfe;imOnVj|4|~jPx|tbA8FPC75M#mGrKjZ)n2$4Ew4S+ZaAsJ4w2jQa
z>PkYZSzPd8mBF8e1`vi8ZhRGnV&1HAW8Diq<}VwUq%M$%M$skV4Dj`F^t@eJEJ9KW
zPD1qrw-Yqb9O<QRFao_I4T(Y^A7QM`PiZ9K?9=t=f?U(RpOBT7U;7YyE@-`)8W9<`
z+Zx=SBaUxOh-t8WC12Y|-brofLc$V;@%KoE8PL$}QSCS*i$>NDseMFbsFxU|m@6gs
z>Pyvx(WtMphP7%Rs?3-^h4re~_I$MGs2;%dBpWxQ%tyNeNgEs1cfHR4pD)j!e)`Ls
znpNqe3)VFzB5}xEjfu>}a1sp_>?S`X=|?**Z1&^TJFe6GXBSxMqWb}Yz9`s}LNw5f
zROsr>-J;Mhg7IE78v^05s#^1a@y&9H4jT38dQMKlT%rlYS=`E+n&IZDi?bD|2NU7<
zVAjS9Q$X<1^I-oBn(*uKSX=V0$BfBNH^sBS71X8&(fx@+w?9Z6;Ai-%Oi)1FK9J+@
zN(s0^lLGhgoV?Qz#dk#y1yzp2WIKTEJ2-QU_>^iJ+~-}IB6|$p=QfQFgN{f!!M#Ht
zR`gg+R!$zyrtBh$>e`Xb_54QQmG6hIWk-9Lp|zh>!*-keDl;HZ)wcRopLb)$uLDVR
zd|m{OPck6-LR-sY-|Nyz(Js*g`^|6*)sEJ(P8XS*3Fk*ViKAB~BmCxTZ-#g13A+B?
zoTty0t`SuPP|ngU!>J#BTeorgcpCX=M0eb}<~=KOPD}zKL04EcJ<9>7$<gN<WNzE8
z@(2?D>N&Ems;8nvMj!9Wn;yoUqaA*ivI`+(UxW^XNz-1-b8pro<reCPsH$`(pZNLw
z*N?xQZ5_WVV)K#RCoBFSKV6^tD&JUT1@)=gq+f}|8b<CeXtE5^tj@Yu05eigIaE+y
znl%%9OORf@YKE_{Gq~Jpuy>U@AcX~o<)37*4X>;4Altovm-_$#qsa~1_&A_~3CPX^
z{%4G|HXwCIUk9=bg%atjP=+CdC%ui=)(4_ZYW;>a4I*4|)fF)4ta==wbV0Fa5qRfS
zxV=--H0#sfZ_E{H)C2QM8<Ct1IW9<-_(Qd{_bdEOUf4paeA>TJp*!8#Z=QI&k|1RO
zpXEjo@?DOHgcYpG(jO=PZ^gFzVShU4m8#H{T{x3VUb~$O?^O~dibAD<QhU*{WLc(N
zUTTZ(t2>OpzAX|*yLd{bai}1i$_GFv4`%UIPjur*_-lPiUX)hW<k#__7$3dUm3y^~
zL6*A-ZdKunyU38Xu<p;@9`9EWGtT&}e&(xnB{k`}uUFb%F110}ntiDxyQ*KRhO<s*
z+4?hI(s6<5Oz3r$&J=<Zk-tS+jz~=Drsd&!!+LYWmT%ggZrYv%D)Z}?PcYWrub-d3
z*!gx>lW*FHD4Vwu0!6Mq-2^|6f49NYZ@XkZ3hni0D){;O#Ov~JUzPZ#kYgYmO%!BZ
zoDeT=D+#{J(W8jiFHU6G+0YQ;M7{U*K^8DRzG$`!+}t_X=7Kk}Z~7Nl&Z*7URl$8k
z=459_*WrUsYpIsN(x?1(352BOi@*W!bo%l1>!-J|uxj-{(VhLyZx{AC?{@7W)Owe4
z{Z0^<J9XrK*ZO~c@1K3Eqq1fl^R9nsPuI_M%s21ackgpw$gSKd8DZNmQV~(|(>J>2
z+W!l8^0ln}1}!|Ur|ZWuNz<JS#QKm!KP??%yE(5@g>OBsw^zHp;dk#<EGMVCJzpvg
zKQ-Xy+bM-R)k2K7x4ygHx?E`N9Y1?}@4GMVeZ84Gudc7I+K)c8d~=n4^y-P*+&<LX
z*7+jeb=fdld2=;-h9*3?Yx-@+>2MePpm%y^Kf)JJe!b>*pQ%pX?t}{2U$t05INbGV
zoBLl1OUBy^=)?T#5$ExPix2#I`xB{U$J=-B>#8Sw-A8kKciTsIU-Z#kd-tl3e39=y
z3(r*U<XgIV_}gj5!)n0480y)xY|mo=-}LfV2AYUyxueEH==bI#slNJ7znll=GGC{C
z{GvT?X8qmEtiF8pDJWE~)zBZbPqQ)feSt8{@ynT-CF7X~Urd9b|E?G4bGGKYod0Zw
z=6G{`4cOaB{@v#)GynCPav$?x4`Z41dwy*o%9s7Y$;-=1yy*`uU<;7%J~NHyFQ)M^
zD<9I<$6xWtR~OKS+w1jzOk=;loyAI%EBko+&efsH-FTDVI`wYsqPWXZ5o~SccpD%3
zD_t~N?!B3jH?rks;@r&1`L?HSnk6CWo_(1)xAX1gcKz15i|U%+y&B8;i?N)Qhx~Ri
z-d@s|`Hs!z^6}}%pMO1n{2%|TcFAzva9a9)?8@5C1!J!HQTBBzXK4dPs$;^CKmn57
zoX2sM%DEEpgCW4V4fec687T_bfC_0{waA;DGepcbXY)(Rf6^rd{FshU&H>=1zuG5F
z9>;ODUuWZ@{nGKcU|b={Nz0%$?Y*LF@?v8s$!O?Xv~a3~k0P4-q5?2Jwc2x#>;YXB
z2glr4lntgzkP4b9PbQ(q*=HuTXs=l2g1XnPLf4F1f2KM{Y2;su?^W)!qB=b47a2!g
zX;p|%KG1Gs>9qj*QbEVwa6!KU^^jKiYB!C~9%Y%Rlw70e-FDxU5|t(VDU>07q+)ES
zo(%R8IbV%e`Lf!yIa<)w92s)mB9tFVff(Kn#aueLSbAlAfWX6<Vt$yQj7t}uYGm4=
z%Wk-A$|x$XSk`u5q)I0Bx4K17*Ui(>Lw(3fAP@$mbj8o$04Nx%0K%j38n6X~Ht?Lt
z@D?10P2o(kgXQg=i4#UHz!>sKi(*j%qE&I*Z3=BJ5RAxKS2Q0K66;gp6l6p2;;Dm|
zJqyaE2%ea}lDU<eT40xXT!tq$<B!h3l`@Wwh9@pSgCMtR0fDUO?szwWH<%RB6|V{+
zgpH$<yo2@;9+`AO+l730{UPQ>G~-Ja1&UUc!s6iq=%R1o8{b(}8lLBAewWpYt+;?F
zmM^DRi;X^Xt5)-@ZCKgC%5Vt3e^zy}-dBSdfT|dcjAXjo<Sc#X2-A^6!rbb2y{L!%
zRM(Sk)^>JmS}vUoF_{V)F{KuH24D_tjMaqSlbFpaDyF#msJBIXi#Ahx7X!5VR4~gh
zFZR1?)0_M{JS3X9U4j((4owV4;Wu271%GTRc>RQ836L?V$cH>W;pobKU#vmdNbU%X
zrPiKh7j@C6Wcseh2MLbI{8O%H^RdEi_GZManWrm;qwCZ=yu1soeeLW<2R?86+mqAv
z<m0}4`P=Dw<=;Px_8C0*P8uy_Kk%(krv}rf79VQK4Iy4N^~l!N;$uoqtPB<tb7ib6
zx(RCgesSDpu};Ud3KS9{Z(5`5F*Up~_^^)#6ex0}z#ar<u9%s_Yana(FRIoKCd0X2
zpgNSeL?OUfubr0lUFbvhYs)qHNq5}G;YP9`WHXNUWy^nr{-XegB0*q1#dOo<Gkb)t
zBV5zEIaUZjLgH0f%av?r3BvR3N((PbEqJX>HxhBX5r}OF#6AjoUT?7o#ME93M4Uj{
z-u#q;JaBYMT;H!2_zp7k7Cw1NA}Nam$XO$8QCY5{vi*su+yr^Z4k2xjKvH!xCLabu
ztWr7IlgDA$?CyLKqwPkFZbOV#l!QZuGQ4laX#9#81+jZ%-VPx;y-2AW;mJ%c@gGUg
zc$J<n;&a<M{QZ5BYgHe0se)kkyc`RTmq(AR&IdY#0m~X6J-kLjT$rpEPXVwialC6U
z6MDrf>)6t|fNgNriWPhI4Dg)f{*-srJj9tnz!;cUCKX$}8ksO`Q-#|k7!MKO5+4Nt
zWxC5h7u&VRhJ?AW1t|krp!a37z#k_$dQ|6~*)J!u(wan0S63qXbTTI`Y89+T(dt?y
z?%o=gp4F%D{Sas;beZR&vFK^p5cQa&%k{>VQ-L%o4N*euX{Fze{u5`Wr_<y_MmB8i
zMNugxQA`dS^|W>Z%|zyR>ZV92swSRvv0cOOp;Df1hDZtNqfI3qIheO%H{k~s!$Dzu
zfjD^O&sJW19N-vO;T2vvQ-^$2(XB)u+m+nAuy@izMGAC23Pc{?Cjz(=wTeX4h2FW|
zM;llS{<IGR!KT70)n$MGoK0vh$yrz|`lFKT3HG0|8_N9kRQdWowmnKm`|4@t$+MzJ
zY*t!e;UK#?&TB8L`Kzb7#xt}T8?;e-Ky8+rTHOIt2O7Sh8Ujnr$-1~Dr<4+W?2b72
zvf3&7P;dP25B1HN##Fxyxi_X>@26^>fCW(!z;x{A@det+{u5pfhJa}VwyEONz=%d?
z?@DzT$sd7hq~mZ$DV*#0eHov4qvTlb-c}~R4ml4fPy_fR*_ORZ)sQnX8ns6&i*rLM
zRti+QS!0qZJc62`*o>B?xoWsXVjxHfSXd4-`ocsk#D~J|Id?()w@ra$twZD>$0rp5
zB4(S*F(L?w=&WM@^NG>@kyX`zgCoDYk}w;7Xmy1x%*UY~b6aBEOHQJ-%cx!3V}TXE
zya>BGM6sgGh25x$I}4z@@&KC;Z`GChA5d57{|$8|y{Idi-=ZqHGO&zsx4O~?b`84x
zhR%Wt(mNa4*{lA5#-GsmRmmAofNlMEB}<MqBc3(qtNjH?%PslXPVc9uHy(%_K7x5$
z6@8r2)~A5Rj`+O#Vr2|||E!G7pmLI@;0WA!b4S^#DlQoq2+PO8*OLTV&}<caggrs+
zkrZRp)6-@QmQppU$+>0kz&tJBm7p=v^z)HE@3%M!&Z&9mx6uYoO6nGZ{gu`x&(c2X
zR4Ga(9wO;L86X+CAK+GIpd|mP2FCqO3q{AKJdh0)>e{N=5u0r@W~O)RKA=Dmp#NrE
zQ8n(G{EJ0VEnNqUwKhl{0PmQDj$nrzC_Mqqw&VSoQVe)gO!lIXNFHFc#ezXvK(?_a
z@Hx6j1T-i-0Gi)MS{Sv6amTy><Ya#HOvdo(*`qOo(Pc9-JOnUPkyA^i+%7MS4$ltl
ztaFC0BLZ^wil5DzsOTcjE>-H2oRG^D43rp=)Y|pvVD$vF^$7KuL}m>;HBe_oeHta}
zDTb`&1sH{`Uh3%;mhQDjV(s22ygrd?SzMKnq7m7MH%S_(mBlq>=&$BN0wA488QT05
zg;;htIEdOvB;p^AXYC(M#NzIpKokl>BpE?|?KIM_NHKs?YBPA=NgbM)m0+nW2km29
zfJ;|)uCo<)b%Sb&Xx`!f>yL7u92%E1OwrXoy=3V-@-Ki$Bx9=jR<o|6y6Y?)0ZS+@
z1!s0OXbKK#$_|h{B9(Oo8yBQ*fsaxe!zL86mT$p(5W&DL#$lr2Gh11SRZAYcO<M>E
zFQmfsX1KOAcuJ}=33P0>VLXbfgNIfO$xSZOTGId>Kz0Ab?As_{;FzR5J3&qimYT{p
zEvBN4KpV@9Lqhf!NXMbhRLyL*qQo8xFpkY=9z@X%=ALY<AV3*Hn&hDE#w%>bfV#Kx
zK7l7lypOa$EYb`bROw%|C-{+P=*GtT6K$d1jhe>MS*uTTN^^728QBZkrNxsln{=mQ
zuQP$t#py%i{dqQ0bY}73r=ThF^3U0wJ|A{o-Gz=SH-{%B1WQKx&0Am{U_i)RVQe!h
zZ8sb(nO?LkCWLG+@27=ig+u)yN4KlpGZaUQ(*O3!2srFQZPhdAY{A5wM8LDTHbJu=
z4$QQ3(K5hQ07)P!!L1tTI&ip1Rpe5a4JYbi@!}RKt6~Qzd8QepWsy}#kK)ILCO^-<
z7RsY#D_NI;4bvED2?Zr1misJCa?(!SE#OS@ecaZUqd)6pyl4~FaoEO^^wMkSor4Ky
z-A7Ml9a1fL^Olrol<2{r9Zd!c@78P8mC2yv{y?V<cd%baub`^-Z-$#*Vg5wVMuhfm
zV4!m;i}QkH{6sjkjFH6?xbDWtRaspC<CUMOpaN{?h4MW~qA|mXrE;$6iiU=;tAJ)_
zu`<!R5)KQx`kf(1+Or{53IXnnE3<qB`NNE*uQd5rCVN*dc!%FK?zRxYK5Dh?o(b6i
zB5h?@U3Blg$j(%59UkE%-#)f|6Es|L8E~=We6s!pE!kZ>C0c?C!zsyQ1%)|=)@e0D
zZ_D7*&~Syx^zz$q<*w2Q45dIQZ4~qq6J}SCyGdupE{{V0LW3Y~)0AD&vP2)x{-vox
z3ODUgZ!(g`C&OfF>?Rcy!^&6!<qdRjw#?jiD?@2<(IoJn*$je<tJEpoK%m~U6)yCx
z$g-iK8n)eC5Qa44T|uvLA6BEHT4yOst^_+uyfh@agyurqC-$Z~<8_1hZo~C#w*Uy7
z23c$0XaZYF94g6%<SN!$H2(^HUI?^EKP1odln4;{b=Zq);i@b;b=k2YnxRjt8j3a$
zcTeZX%cuYIMMBHTBpU290?u4Wg>?y(Eg^^)W*F3zN)7YcF28t0y$+W=#yA?wnY0+7
zG?3@e+L0)4)kWexNQY12K~&lysRF#bn{fza;Iqx9O#+m6nSnTGudwQB81gE*7zJ5N
zatt|ZAu2CvyF^B?Ev_CKg%t!A#L$xjAAf%@*Wg-Rguae?)lAD`Wmsy|_Hca51$WrX
z>Lrqd?N|q*E{}9?TMCkpy_49D+a(NOyrvjxXH>J=!#Lj!V=X7G>B|fqR<kVCI5gZq
z#&1JdqG|nJQ3=(cyO{7SBqyTuMm?a!#TYJ-aYTLFOs{F%C=^F6E0jvA#V0e*Y3ITQ
zPz9#X(8CDFx?ce07n1nlfdnS3Y!7O%Box0&`A5y#sN|K)41OLcu+-cgW}bp7tBO46
zSW3Na&=64C90)xdU~Dc6R7MGMjF2pm*n27mrONM@%I8{%u;n%hwvCh{gp2OFApi;z
zx674F9s6ekr#n&FxWV2a<%9_?h6=BiUq5~S!~ghSspVTH1XfE%`U_rtcDkpRC$K_}
z+PsajE%26Y^e<(kf^$SU-YGQ)puIAzQvmMPd#+w)R^%o<DsApXn#q<@$)6WGS~tr6
zLnVzVumhnfLRNy?<|v1%{5TXmbrLGaHi1Z&*ab?DIjXGK<=`AfokWqt(2By}Rc#mW
z08y)m;!q92iuD(=)!E-aJHxPuj)bg?z(Q{RA*>>ijAebMgtm=6XHX8)S8A)eM@8}`
ztU{=g<gvgF&c{Nam+FrPdcAn@k{);Sj1&o&hpMjC7ow*xRis8Wq6)YW{gp!z_OL{v
zw-x~`r1gmN?ILicX=}+$k$w2k@6zQ(x&#bECCMwzb7C<Efb$y)<4#TnnIXCv+(TJQ
zQ7S#gtsax5#}^Fu&qH0*^xvJ%;AEbUKmFy?PhG;-^;W_gKoSvLDt&WtsUr#O4}xSo
z?3CB(_bZoj82ZotDnk(EwANbHXzf*dg!W?00S&q+Gw!K!WuUn1MG~lW&}WHK*u?q)
z0#(-KF2)O)KYdDw^S>&KQhrd9-619>&eVUa7)(=t6mxlz50NPHC-7{--pTs-j8m40
z?SiO+1I!-z)p|I(2bGKhMMhQ&mFz?%s1xXQSWI$~ttvN0c4mk3=h&R(6%ZBFWhR3r
zk8;9H)jo%kS879JY1)gh<C%gk-*`5!y>{=$w99@MJ`GA6`Ik&Avg*fz+;@o?K1gZ0
zkFGZi6|ZnPtL7C)?y-@WuI`{1XII_CI4WS1td@F~m?U*04c-B$uLRnC0^l;%lh~Wj
zNFEYWvQ(%doruD8s;2m~5Ryrrv)VJnUtrBg)FO0lZ%fmEPczY@{>uB*{2!)LKka#Z
zxtvc=zr9gY;t!{T>njhguk9Wppo8lRRz~57;riMJ*Ov|IgX?R%a(!)DkHPD0Gouhk
z;%J2HtHSl=(cZIPd|Id&m3o8#S3s!09x39C(tZwCWhJ7T(1bQ`W|S#~UPMj`XQtx_
zyPzaXI-gB5XE$K9Mu|k-?7^w_6X0mWS?$bDu*{lJQ*~|@g^bND>50ZS<W8z-eD3Wc
zY$JV0d<F~15xk0~$--wjry=(2Xe3efkDHR4H*HkBo%|lJQ|3ct)vXQAj?IsT*Fih6
zm@S~F!74k>NTpC}FVp2{UR$tw5!|c$j<C`0=d0uKP#B(OvY^uVlb#_1<Y;ugKF-0M
zM6#Y%0oxjO?B*Tot9NJAMYb?A>e9Jph>rBsBu2r87G1NsVo9L+scSA{gFNHFjyhSQ
z4SDR&-XX_oc>4Pre|!w^-W8>@$tdotZ&k6HRk**tcndfI>mf1t7-)L#)?-HTO0pNL
zFlQ1Q{hr-e26c9xRauTug}5UUrM*{aw7o0Wh!b>c1Rqjls)o%Kx)MUNz=725i1CN?
z#SOx%KB+6KqVC5ZylD|C+?~Pxlzy{95U-$z*WFYD^1^jXLKwVe0*};=zo=W9@_oNm
zP?CsfB9h!?6>h%?uA?=u_LVyo_I6e#2C9%Y3OQ|Q^!3m2zN{-X?^1K^%AkqRyQ;UO
zOM+E#6IpR9x%q^c1W_%ZmBeg8xW*WX6i26p@z*=)fHf%S9yj8L{t~~KU;W}k6zf4`
zC+uGagLeJS>x(PTa?ksDTy&hAZksXQo&}@bW25FzR#wwLXmlKZJ<j9$|5U3tne9ib
z^MAC}@wV0R+G-_8mOpCs_SLTbgI34eR>y0r<tonqpwaOkHTn;_S~+z=Wm@{#_|JB=
zjM07jr@C5Uh&=~dT{b{`8QrYL+pG7#9>-Pxq^tWkpOsKpM^y0Rug{;(AD@0Zo&Wkp
z)(~Vi3a^HGrmineH_=pVleu$}C_I!wes=L+_72yD+`4@~gEb`;GM*DZAYmGA5^aVV
zSB-R<dj%O~h6F?<&RFDoUi*fh+v8sEv*_*liu3O%C@7co+V^Lk=JC_7zde2W>HEK3
z{`ywW2w6`PbT#eB7n}Rq7EFGzkFxLy<7TAFmVf-UfE5?=MM@itD95>Ze7nmJLJT=`
zsbn|v&83nr^}gcm5^K_fV8vY+X)75{;&IhYJFc{1?Y{ruo}bMgOZ(q`Ya8EEDywWR
zDZ6oetA4%xE0r7{r9hWwX@l?jXL4{#6IkE%^&0v3QD5-qsedkg==!;QiDE^XR<7e8
zyo;ef(oSyIySTO6tN0=}H$AStqY=LAv*7x1e0}lTyS~SRpuFbL8}zJes0xudDFkTm
zD#n-X--y0dajdsz)ZaHhRUP;pBBOdPW>SMQjRN5uQI(NWD|Xz>*G~t#8uXF=n!x5h
z@~<2j(x=nQr+QJ>wqf#9q0NpsnG?azqv|7>Dl)cYOhVv}S#4h%Cm&~-?RCt;IM`Xj
zsE4E@xZQBMNW<IhK-%reuMle40}r)U+I&iOSQ^2f*mX?5<EVq_fWqNS8`PN#PQ3g`
zt!a!pQV6PVl?E-tKH!DPZtge^G99eYyc8QN!y6oaZ47!)z41PBA7Y4O;8Mm1rN#BG
zFEL=k<q;k5m?>R{+FuX1=rWe=xqqKT{SEKVgIMEox1P5TtjioI;?tm<6p58;G<yV6
z-{VCy3|T^hc%ko~@T5m&LcY_tWc}^qbhlz;i==9+{_Vu2UQvA0My*nn9g1HpQ>EA_
z7MOIQH_zOg;A_3@i>M&c^>R0>^?ibwwRh=PE`~x@bmBu-T#t|Ygc7E$>PcTO+94?3
zto(-T@AKgH4liOrtCHTaabLd>5$pp$|MKa_zrWc6_CkiIC<Rg^Uo4!m@{V{>;*PCa
zS$}s>_(WKAkAo*{2k?1<HSUn0^<hsR$|`3|mKEKvw#9FCk4^XJv*7ObhRTZS!&~kY
zqux%?Q*C$S%}v<AX7;HZ?z@J4r@AiXPGsUa-o^fZ+WOlml)L`_X!ISm`tof2!1&i~
zzWb=qnew!1y6e`(-Nu24ZQ7k^4f`*Jceo3rFvoHy>;qd;4R?B4u~70MPWBen?iE*9
zjd$8U<oF`_EaNnb9LtXAKU+vw%1U7q`r!@`o;sp0(mUmI_inr%J!t7Q5@$b%ePKJv
zo!z@Lyc(S)f2)l7{zbBA?ryuYcWx4@@UCs-s)u?vlEbUBR&hJ`{!nI)8`bnoZhdm+
zNJZ-3qxD&xx9X(OnRmfMBiQM^=mTQ76Lnp^(`}tK+WYdh4ZTI~Y@vPgH}W7Vw^*-E
z6zf}1e*|RlU9w#47it5E-oj{GZ*jkwJQHz@Lnh?j2ccHwMe1wuj_)!h@ATttVcog4
zBxv^!1<SaTEKu&9QvC03+xOjjrAw(rG7-bMU!VR6cXij~02M+eX}Q}OmVWU&5zuAu
zS$#$@J2ZUdt_e;Jm?rUPDw_mKs=hj=)Z(1;lb=g2)TkMkd)I4px*^@?^_?6jbdS<x
zc{si~M~0V@=`p)Y<o)aORXio~5fkxJKA!Af;YXq}g4H(h681;ORevXjpQK3<ZVn$L
z@iS?PNo3qifaa;9F}puHOrulWt?~-pz3Rw53lzGH>Jk_`!dRa?6W7e1qfOsR>UK4@
z|C~PW{inRO|0$BD{;j^Rso6J|{BFp+e?R^D@l9HL`JPHFc~v+_3Um(Nh!a`v8oxQ(
zC>jPAZD_z~SIBCvgz0S>CvKS2PhuTZP}^@KYAG=P<lqxXq65~e;A;bp*1pkhS(R+p
zu7xb8B<_xG0Sh4(Rh?AZJ24}<2Dfn>WCFO7rgQR=9nuDD2^QFUXCr7Qh-4xXB+VqL
z>VdQ>flNW1U8{jf<?7N}{P78A`AU^v>az_fh2$25yGla@Yn~HOBqp1zHaVNy_@f<M
z7%Rp1qEK1mI5{s8zoanZy+h>KCXY`g6mXfX1aS)Pzu?rqO%JQW!(Cxhb>Q2cUEy4B
zv5%_;<3PN>JPljor_aA!{{H>nK3(3DmUa<jS{6H%wQY-?7OfoSPc^3bNZF|(m8tJ2
z<o7`yL9+xGP@k}0D_o}|u5=#^Qk#f>xtvhKli1alaFEx6uz@BA2fJ_dD0B;sG!RhL
zj_)>IZ{XWgr|?Y!@G+_qV|FF30vW9?yv`MdFnRYms?fpcB)(Zbt<!M|xQTj{W1XLl
z^Dt<0tMO@m`Kb&wA{}R6n7h{NU8}#jx=GizOvfqsv#al#uXoLU;jX)t@|Pdz$m9I<
z+pk{%1AH{myNrSTK{z5I2}Ir$SNpn&-J1nYNBeFIMaF>9b~1YUt3A2>_<jQtfU`|o
zx5h{{GM+YvOF$`BFk?DCOD^{B2v><CT0tWC<u5@XG8m>5VD3V^4;(*C3H*b?rdoq=
zZx!O_97;~?-x76F))YV4!V@P2IF!+YOG4k9AujRZ&ByMu-yYu*M}>GW<y|W7SjoSw
z==P0ySo&fSEL5i1s-k;Jx9VRT@9VJ&gUK>pzB=7p;sLhN%eXc-8rSAa{(*md4stQc
zgPH+;Y(CWWd$(SEX};+zxTUsJ`Yo;(SHAMNy1(b&@cVPp?R2BS)#d-qS{;6hn{UoH
zSKuB=43j*@boAF~#Lh1&ZNup$X{D5-4L}Y^5@!s>V~Yj5TAbn&_lqw;L$~SLJ^O=3
zM+Q#s*nZ1)9%*J38<PBERULvOE^Vd`J6;r$*B(n2R~JjFJfOchCybavIO>rZva;hv
z0MGF=e+MQ&YNSfKlQ6EkW#8GyvW!T`KZAjYfS<KjHM(E8{RuTo-7UYpUO9$&i%RqI
zTes~=e-?kiA4$Z#eBZy_=kcrAzhXf5@u~!kLEprkeatF=wd*aT^|_iAhh-cUQWnY8
z5*~M9K`8%`6g1gb?rV|tn0Co=VTT@Kg(AOed8Pu-#*r(QB3tc!u+`ruPJ$ank+pYy
zSw2KCK{$lbbmL=e`J%vU5wN2?L{I@qq>2EFcUj)J0{V|G5vN8Jv{w8=a%ANoRiN$<
z-K?bQ)MWu%WJ<jtua_Q5yGD@uB1R(d=T<?Q>w{D|#9d%V)6)q`vkhNpzfIiN3l0X+
zB9Hd5x-&=^m4a|T|NZpa<@7cgBL;d}8Tw*R5$ALTDP#O8#uSL>ajcUX;+>5pYY(AN
z<v5lcGAE~k!I5qT31TE&wAX5NJhy?vCOHA%;|v6Y!DUB|*l$ZxA$LH@D}znxv28ey
zoaq1pC4!(>?Zl}-WeD5I53EkC1IeYY^-pH7a7JG2Pv&`7#>pfG?dIdNNS`3&7M2XQ
zj2$YxeH`z=a$MIbm=99DM7ajKP1U}EgU|E~N6ti$7jQOsX91PRW@9WB<fI!1urH2{
zywGuhebN2IG2kERecqxQJ|P_e&++^&ej|jxl2eck0ZZ=6JoMFpW+IAxINX~LiG|AF
zvwNS*<B<B{5`c?x@o_cJ0}NCR(*-fZ=%|B$ENDDTCmaARh=gn$YFm$E%Kq|}OEzp)
zDF8>vktLY%t{e?;2>{gGb|jIOl<SL$7$d!UwQJFOR5*Sk96+d!0O<3y9m`KHKvGz(
zd<^h)pFK_xb3XEjCTQXj&c&I?)2eA4xM|Z^?M$VW0K?7e;q_!1jo<L&fOE21lfT|)
z9EEY=Xh$y;X@Tk~lD0Ewf!$!1D84wsg#(UlFf|y^h;OMw5$FJi6&7pJd=r+i?^j2O
z*@X0;s8%MfKp)W~SR4v!F4;%XlQ|gShhuA&HGLFRDnr~f(xW(Nn`bOuWjzA5=#>`|
zd`P`JJ@&x%?c=bRu6V2yDYvpGh=y<!NA)E=r*?(8t3tfH>9aDN^%5<#0uYyR50wv>
z-iRAL15F2cC1-+<*b-KOjDl1^%3l?RLkG<6i-TXUX7>(PrI-k%5ErQTBhU*{-!f_L
zy!!ZC^*(G1{xa1p05!k*nvWlOede`qB5?SvfAX6re{yqszdkcM`A?en<Ui({i~IEh
z?Zp?XVhDZS>~aixbNPeceA~s1iEMDx$3JWuukZMplpr4T>}yYd@SCSUdV+Vn-utWw
zhxR(Q1J+vK2KT2w=(?i?embA|lir^GldXIly-IrwboSW(!_oPZ{{FD-|K%2s7EyL6
zK(^c3pA5zHUuyL8?Nle&!RY_Vuckj)IAgN^mm2<#KA=z&OMiYmJw1L|gYrjP%p}ps
zy?iELPk`WIehV}W5bWXtoM9x<q^@vI&e}IoB@jWdv;ps}vabLX|1%d1AQrbjzPs}^
zbXK2^0zatVJ4m!ip3Y>k8~-(zvyPy&<Ujnb%ZQH*w+P4dfMbD_HI|+V8envrqvQMf
zp!zcMs_WvfF1`P!FFl$qG@fIlLuZ+Coeb>%!y&pH9VT;t@G1zr|N7-_=f_;H-`q?Q
zVe4X!!0_`%E`TRizp4xqw`BC$f?J!gt3e%?Pd|Kodi>HE987^8Y_-T=eHK;wI+KDJ
z$*>|BaYJWF17$uwxSo2dBv@BI(WWZmhXiKMf6mtvip;0s2>XxU$gtvd`r>|CXwjvy
zzPKM1Z^TSn<!byOYv{cCyHbQ_%%kl0cbfpAj-;!krBg)2%c96`r1TegJb?LFv5Dg_
z@-~oyeTZi2886O4A<v9*15#5HC|;Fqy~ih2_(hZxqu7Iht}Ns+tThYhWZg)n-9-A)
z5=cpmL#v;#GpI$U3DCE|C5>sZkbRH<pjXI?Cz80j2AN#}A(Hgf^!(XPn>XQt137Xt
zrmDVA`h!z%((2`=>NIMsQQGKjN>Q0rF?#qhCFOOE<TOe%6l;YT2s^VV0bWwd0RRjj
zc>ZNWR0fn=-(_m(9tw?5Mu#($?ZXyvJ||-Yyl5usQtIfD1cft8WF-SYKB3)5`oc3^
z#CrMZ^o#k*Ujd-v=^$wQ7tkix9e<`Ap`_|J8_NN!M6Qkiv_nIp5s*cKr7-}%ngL`Z
zEZdRcqxZ+z6@#!YWglve#xf29s;@2BJOi4xO^EbdZDVGOtD{a0`AYzUoBi$4&M!C5
zg-e_P=%Mmd;HuFP1E=j_>NF0#xHe{|3K^uCL}=$~VKOeki>mq#0##*lZRB-ho{;Tt
zLIY>`HM#*DI5XIjo!VP{M`~8}Me?+WlBoZ5A+2-ngFyDF9+6a3xd}!>-#*aCJP=!D
z^ETOxi85hNn(R7Y7vih7c5K6=ye!RGID=LJ*zV+N7J3?4ExNsay^!9DK{^waYJ#zZ
z`+%M%xSF!A`u3wOE^}~pXkY=VtpJ4PMn;g<Mz-8UwvnhWr*>?Vq;sJA_4B%gRu$dZ
z7X}R{iPA|l=A|Hm2_s(5GRvYPM{fZU=SCz8C9@flPE87`^@2jOV{lEqB@U8{g=`Er
zz&Z4bi&*kK1vAL1!bjsw9?cuITF<iJ+btScWq<eoK-Eu(wM>o=rMFZMloGJ&a;GY<
zcEJ7HvEJvuJpTOj+ZRP~Pv9PlzMd<Xyt*aPo5TQ02@tfP4ydVX+l8GF<7a;rM`%|u
zNy;Vqylu>r+910Wx2ZTy=|p*qmr|7xT2)G8X=2}$-@5sai|Fj+hF*(`r=%V8zmLqy
zCKO?tXeEw6qWBzuTJ;N7QA)1Pbm?k@4CW$0W?y)TNtqLjz}x0b$eI=A5r$QdvG0V^
zGpkJm{|#)kw4Jq2&_2QCu<xsHWmDY(NRQfYr?8axyL3CqJz@^WUy2~ZsH7R4v^{Te
zJc5s#px47u79gw}F@FW_6_4ocUA2A#>`dIff7RTF5x9Lw?D89By;ctmF_o0FHm|%l
z?M<Paw0lP|tu-D|@ZOdU2934uXNl})r-@1+D7F<{XK@X<<6_*D8@DT4e(Ul{A?Q&0
z`c6tXOnu}EnD;FtsGKARO18*QsCLQKd5!|t57Ml*6WeUPH?#v+QUF(xpLMyrQ_f`z
zN}x{_7|t5lMO98tzNLUxL}k4`!U*M-Fp;+C9OR^Js81>6TP~V+J2gl{!{-acUh|H)
zbKb@uy?vC!?c0FUU{`RZB2x$iZ#38BQA}0-{Wah(qC%Y_5Zc7*ejkbm&seNLhov&C
zh3Tjmh=5hqe~A-|w7DgShiPrB-!KjpQ_pP28iqn5qiR^_O-o60H<19iISo?8f?Mx%
zrK9e6!uNtFe-$HwW~aJb!VfC4U77bwQ6}ypXGfQFT8ObB`I`ECNn&l*V#khCMVa0-
z$o&Xs_Sp&31eF?>zK5=*U3w?>c^uAyxI^yT{P2mVi-EsNbI$XoOa&!uWe9I0`*SdE
zrfuX7ugDvq8A;^mbtm(^P>nTd5)`F0^k+tAT%89bNAv1>vQ}H8M-bwgeU+paz=Ks7
zn5JZw>KW81IV`IJTO!)qnd2HxLWT+ci2jMNP}ReeCNGjn@Fn%`TG$^$#pS(8t=l4x
z-pc-3LVvx4ay<QDP>W(E?{bq@sMs4U!Y57B+k(Di-An{Rr?>Ta=W*^;L0>*}mEW1V
zy#%A>3;u8A?Z1_`e?oa9=O5*5twVW>>whb6{{rRh>F2-w^uzh`^WT1W6F&{#6OS4t
z#uR+LXbx9B28DEl6!J780*X;jR>#v!?lt2mT`FIskx5xd1Vbye1(|lcdy}t0cs9B8
zJlE6b0{-aA1-F7+(~ddyUvzEnA_}Qh!JXn3E#@8~ILm(yaS%b{Mtxpgn8{jsI^gHD
zM@voNM84GT%Tmjte{&R)AeO#?6G5fO5Fsl~74ezwPC#&xBFeK)Wwc0hJ<Sdp!yItY
zyM6_OS-*@d@5PjP<1702`+H3lYTKU~{iEmjrfvmlqtDrkLy%{dB<w8H_=f&HMTR7d
z@lq!!d3*MoI#;b=4Z02EAJG*2%KOXx%kBMD4uphgC8cIc1_^^^FT)rOcpje!g!wa?
zpb)We1H_7P*Ss_$j|Q~S2s$Z1cc-;IR!km@PU#_!^rkUKJs56;y*p_P4nIc{hasB#
zKX4b-5^g7ecs8%!xW(-6rO}Y+!7zz$9qoY7{lendG}_H`Vx2r*YDGQ%JtZ&wNy1J)
z1MEhIth!^RBQ#<N`FVV+-#ybiAO#pH`lrqIsKwE50AiNN)T)yo!*WF(;FM(vsO?$R
z<#jAYdvujY7sk3xeVB*9Rtj*#F;t(-72z!HCYqXswB1NURo?+lf7Kjji3v-n!1w3D
zD^sX#wdB{WXVjn6L^+(8!AcyU^N#+d8zyKKJiLemdCS_<I*k!lu=g3fNB;sp^GwL&
z5!D&6VIY<BShAKpUL#r*qaPS0?~G&1?9a=dyLmfzUue6IPz$B;NE<7dp277z<Y-ji
z9P*@19whC6VaOBt+YX5mEm15%%FVxH_hfaj`Ss%q^osx@bdj@F1hogsq~qW3pA)0)
z_7YHDiR>WUh<^K<nuwZ_NXb~)-HjFG7-)nrAi4)`S!hbeb#ykfv_(f3pQGKzQ<=uZ
z;omM8lC+3(_9Ja{XYsqZloms|XNY%%iJHlk(vjwqC^iHVPA30Ev7$j6JLECFlZOlR
za`mi^tVMl&8=EN?n1*J?JNb&13|@p>h(XRnf!l^+X1}g^yTHaSU|WWW0Z^)03;hz&
z9vyY1fA<jA>ufy!9V$g;iu0HYd65Fl>|QUqcoQB%f>H;^zb-8N&{PfwG3z<cdljH6
z9x`*ZC7(yT+?M_L_f!`nU5vchFIp$yb6GGVhGg^VUz*2P^lxYvzn(w-_Up&DXqWAW
zWV8$0+Y0Cz)d&cc95UnIy+2;iY2t(zKFS2_X3;l#?Iz@SGe9)B+~;1OMVGmq!r;KU
z);2i)e(aMcfAuuka36%a3;h<!Jf7)b5)<}gv|3YelM<%gTWM*)YSPUiTDOS}{P!Nl
z!Ak%9^6~W7(=Tshr9UP^*ZO1hM`-uB7KG+a;yG(@BW3EtR*;c3KN+C6kwUyUp*o5?
zhia#(LOYc?8O#~00+;fOfF)1R6T(jut6VZ`rB1C3m!yIgqHa~_7M%sAiX=af(r3H;
z2hG`^xt>YvQC{RuK&isxue1nrP>9<`1iS&7t2z-G(IVdZ!)TD@SV|D+$@2gaHKltS
zlsFmBOE%Pm8Bv5k8O;_bRg<LYzS&fbL8cp3F||Zy@T3%Pphnn6`dL=iOm9Efqi`0M
zS<c6)n7k4Cg-n^q6-yDy164B;@+XOYRoO9Nf|HheQZGZ%Bqy{%<tl1%Mk30YGMnT)
z7bQ33MDVPTZKQ0VDPb|HsM0pdgX)pM>-BNe(<)e{REIv5Hk<gGN*{lnfB1O*>suFW
zOSoXEwxqaHeb;TNlk6$|8%Y~|wXKh;Yt-^dopC+Uhvpq1mby^+O7F$zbN_`d8sA<_
z(DiqDeSM+1^{;PggZu?~WFcrEloFEH-`_{UNyP9i8jCQEw=42H1YM%58l{|Mb;ASG
zu1j}!B`rZSzC1l2r{6_}?j)3+v3f_^hZ`t>AsZ6@vJGdK*uvsCZtHW`I8=PgIAQs*
zHG7Y<Ue`bW=7h=H09g3`{3-ypTti?BUFIOz^3^cdavKOELU#>?t+Iqu#hc<?u%dz_
zTkzT(r~sT`fl2UpM>0quuqxh_W|`_ZIef6AXJhsgV?+%oZ2H5%bsF6uxs$!y&^7Vn
zuw@49*aUh^?(@LzGUATB>l;rq_V<Y2+n3Jn<&Bp>frbWcPwEHTZ#1w@E?I~(%|(Ns
zCc=Ox3CsqaUq4q^{b2f1v-c+R@`Rxccz1+Sw{!IV-elI`@u@6#A5~)+gXx6;J#PRJ
zaA-}m0DMCj@4MX-(z)j0im(*mNEBU?mGR|?vqv$q|3ZZ7l2!dj61n2l>jH)ybN5KA
ztT8GW4xRDDiOa!RXGd4^3z*1+E_RS15eh~J7)*x=%BV3i0W7f&6;_x69tQpvx-$z|
zf!a0UQ;T*pY(64}zmC}wrlSppc(P`2O+Ni{I)9mSXIDg*`cQ-RA7pkK`2}n7kz}NX
zL*Z-47kqMje&GC7O6Eb#{NnbN)+;zs1f(P9`YJYSA1gbeH~8u1OussxK12%XiG*TY
zV4GgP#z3dQSLMdPDA1zR63SL9DAC{YnSE*OPCk~t5&%$p>$v%b&z0j3&QGd-sx(b4
z8SE<sG!@xcf%{y$hV5hbAp}I%U-H8MH0b&a^UX8N;~Bb<ubp#o+^lB5=(5|(Wuq!D
zTqwV=hL_>t%b@A{_DIH!njp`8|DRqkTfHJjJpcIPct#rP=AK_h`{lV*;e|_LU-nhL
zOCwTMQ=V-ek9f3Xv}w#1ewn}aOyufx#b<p`W(BIqN?kE^QoHG@N>|ZS<>-K!9(b8q
zZFYC+`<e?Q1?i%r{_jCHkg|=s5Z%u&zZiEwMvObC2XzZ|-h+_WeWbK3q~%|`av#UX
zggQD?($Qb=sdW6I(_*g@bD{bU#y+}?-eT}JAC6w}umtz+e!gk)^wQ*!KBXp);r_#A
zDRJ_((H%pSzFZ9H&0=^EhoB(pO-1ltPrq`Ve!+Kp)Wf1RiKu7(_<zoir=R}vMO-8_
z;vxW%lK6HWvtnS+QIQY<=p}cBRM$?W_s9O+4^iZ_U0sRKfNb7%?Q16ew&D_y1m>u!
z%ugIp&N?pL6~lMB-*YQEBRF{e%BlBB*!6zt`%J0<EnF?ZH(*L1_SL`ppug_3@!@(A
z#g{TFifxe52R}c5{PoAn&;R~!Z<t&|wbBCkJB9Gj1z%K3nv`%6eC(I7<JJ!%knI!b
zLAc;ZZG?+PvFNr9d|V-eP)ikry@u{VX@gQ^1?IzKt;$B)fn}}I3B`scz+MzMF)*>@
z@=<84>n~mG2~Cw^@BFTGDw}qD><5qz$*d4@&h{b2^|7m%Qr#Yv*Hey9*m~3hzns3v
zT5LI5VS`duj4SX_$wwS3VMsu+Df{>l9aE*Fx{<Oy@`ut4DJtjhNqec&^*4L_{k^mO
zp8MOowKwYb_n~MjRw@+qS~6*}aSU1u1&)Xf65fWI(zmP)(*fmX_d#Fk>51sp2$%*R
zEB$u`a<z)jze$z%q5LpKTwU8mIdA>4XR9X#?N69rg+iri^_KWpd$+VHB~@V?ZDkzy
zWyp4ndb8W68PZ`hG3`dA6mOHuaRdiU#^G)QAvpZu#B|CX?UZ`rnD811XCy}$N4f%3
zX6>RP99>4AXOg{pzryC4U`_5Dr+|TJ94mXZ4Lbu}uRn#4d6uqd%Oq<Gs?}uhIB0_m
z6t!D1%Bzn)ek7~CJ<DSj+M@sx8vyQ9$FxYR>lgV)3Tu|>dVy4B3T;%7isd2cftw=o
zkEX_dh<ch>r2JQMKh?x|ob6|1D)+ZXJyaf3{O^}fKmGON51Qk*thYZFv$%+|G^(P=
zg(IoPo3djzIhl-wB=kKK-vruN9)h`$wqVl(b_f*84Nt0)<1X^2OIcPrEJZ~p2(+Xa
z=BeL~*xfnfVvo#$IgL{-%cywyp}w$Fz(*H`d;*4p5mJO)3MZH5N4N1GDjH^OUwr~i
z@&_)v#wFiA!8V>Ca-#=@?S)_3o;KWb%}lO>LhlX6$NijXeYRDx5CImWw(KkU4<4e?
z$nyU>k{4(Bev4BAduKhMzKibRwk7RVOD+&<XWZBuuObpX8^X#045MS0e$NYhSpo#f
zNr+Q(o9o%0dbPFERzOm{Hwz)-Y>#23v%)%$7<unaX@Sz1udVx{w?!fm+G+=A9bHZh
zPa;O#X2(6Ow5*#EPcuN=E^96U=C)Awo2NRSDTshghN$fE>+j$6Ig|b4>GK!HH~FAh
zvEw4<-yqwO$n-F*C3`Toonj|0=Q@*KA64?Yi5D2QCb7Ytangz!7rbo2Z`+O|S=e$O
zkRzxR){Wvgi7DNCrHUy4VqM6{h>}nWL`PuH$q}#0Ap?i3?U17<4kv#OioQJeXHbCv
z?NQr7AHI;&=B&-^jkixRp&zRP>ZH-F03HHKT(FLamqgwLkqxV(1kN2Drfo^PyiO<3
z^CE~?>Zwo{#;<mx*gL8bk`eFVf5B>&(YzaHVQex800HC{5?s@OEDtcV=9q|*&3ld+
ztn*q(GLg-W?lKAe`I59yEtfcW!qlOW1Y5a54B}R|1kN9n`CW!?6a$f{Jd>d>Rn5f}
z{I04SPyQoK*H1Wt%UAD}EI<)IaCH6b_s{l|)N76nnHRzD(40F(XO0vNX!G^NlQV1m
zIoyuzEZd&Ik)$iXzMdPpT%Y-Wfbt37k8B0zuw0VofgbNeIi~?-!7Z9EGs%!zQ0L$P
zT@vb?$cI$4Vc{#Dt#s(6I(^eZPA|u4yI!?UxS2#oB(X<|L86uyKLf3&$RA)wpd=&%
zm<-?&ahQbO1yXHrGKjlHdqKvpwTt!fA0wC~TDA-1VB#fE?VOqEf^$c!kz(k9II`|6
zl9^|1Wa8&;W97?4DtO&FdTIn2rIm8j$UC6)gx9pF%U}@T)Meg~5lL)NF4IOrPHm30
zZ9X#fg2Ic18r$k7JA4%Hm!b6`r+*zDOMDMb1wYTp5#-Xm)Pj$cYVkxzIqBl~%=ywd
z_&9=2<oFX>3xDQykhKmRXv+lD)GZv1yylp#?$z0u!N;lDzv6@GIKLk$$D9m$2B$h7
zr*4<T-#>r<^W}@Iv>(|NM8a1lN3NlSZ=gOWNFDT=+`0-#H_d$hG!Ff(bMiEkwk`R`
z=Y9Y0UAkzTY7&7XdkZ_v=Hspwi0?5F!JIOjmqnZ|upW&gK3h#20~2^t7)BGJv=2gg
zZVx*$cVEvzYYXug?XgsXjHYzCh^}NMtY1bUArz5dgjV*^ecBxo63cBUe&3V{^garW
zSVxM;HW<C5FE(CGa<osnE}M?DNx>F-$6^Vx@g%KX=O;0(`B10vO!w28?Et5JZZ=~!
zXgSC+kSt*&(QMAvR@jKTDLy(dV9^^)o34$N!N`@xfS`pPM+p>7?w1!dt#yWXQlT&(
zjlv*;YC4&U4_;1XqrJF7(loqYaLmO|X9a0K|Lr32T((<&;2#msg={UcWQ#Sb?~IO&
zuPPi00Iv^5KI4-oxk}@`d8olQ3+(|m9u+L0ZD=1g7o%j6^gh6Zc==H^>>4-{5qIxF
za;tmaB`#NI^B!m`tzaeER0hs(#<|Nc61OX0KLA^JcN@~&2oCU>>?aML`vMFi;;@e>
zq}p;eQnkQgqa8+3(CriTCl$BEhq7!&cNyfBm}8Yv6%^mafkOQ`U^APly#~_Eh><vA
zC;Mvv?8t)${RmKW)Q(|NE(WV%bE>gf(yw|BOM!281X4UpQ(OO(I;Iu@YFj7gp0OKg
zu=Eq)o%&eFCxH+O?@Vq5vnO?wwjQ>hZ5)`4M6*ruH51~XoEH(6u!0Jl08PsMJ{bX3
zMl~05Iv1*7f-{gwqn(<?hZZR;O@zyqMJ%vV8Os~g%QUD7*2PuPG_~|qO~%M$beT8>
zuisJnamMBn;Iu)JpszA}6Z4n-O~P(5cyt72#*t_1%SYLXgF!fih9v{05;h*PF%=%w
zQFB`m?}$Mc-sz(T5D0HlH~yiuLu1U+;ly~c6APJO)S07^Y(`R16-N_dasYE)29_A;
zqPxwNL6oYA8q3&vac02Gn7|ReG-|KP9u`%3rIU@*M1nG8(vkuN02m^weglj4yj=`O
zik#v{lHJS)9D|jnXgV*&L7_3Qx`#1%23uQUPdrj!f#K$$#q7)qB*^okdkurygU8p6
zpbM^2yixE}<I2pO!+=)7>7&&O17R>t4#QfIF#3rAnwSjDAeiL983{3zOhj;m<0|l5
zWFDf8Vj|gU^I+s6UP*Dj*}HF>0q8ccz9_J4Bs(jH-ezCKP->QdZKNY>qO-ic1!Wpk
z?72`p)T<_qHKBfDY4q-xHpC`tXz^b=uY^ihq&h!q&aG9wARDy5o}N!{JhM5%sS(hz
z)(5;dk7D1xRQ7&_Bp-y64nEVg_XQYK`rj98P;%8uTvoB`#7Dt9>SeG<sZ5TgVjOPL
zUq6Yr=5^8QxYG(%6<0zX*A*Bng6GI~n#OAL3*{_nDFh$U)$j{gbdprx_X&uK+nG&7
z+Z<`H2$O_Iq9~tOwFQzq<09&TxOk)9fxI;WW8%c>o&7F`^eq2#e3ZZHgJ>MP0=`;J
zX%u*xiLq<X)&zeB&vKrJoB~uu(Grbo*Xwq*NeQzTI#1*O+*en;<gu&Due+GkTuKHr
zkwsLep`t0qr9o%sod(kk^DN^*R#*-!vL=J0)noz?;T-{mRdZ7`nda}Y*&+8ogy-W3
zTa-*AN7_wNHQrH^+^1S0xmjt5&$;W8s5S1DXy+1qZ+0_z3&Pq37r;?AEU=K<y;*tB
zKC0&B&zcMY%(b%_qS$V-0i+EKXoWwqj7!J^C`fU!r%pPT)}x#$K8k~^XJadM)jvc%
za|r%Z8CZ-XvNsdQNB2O-OQ?nmal`_H!=p5fv*iBbc=ZBUzkoVyXehGA<s`zTKk6Z}
z<Z-I3-W(#*+qh57vJ4WG&dKO^8{UR!KxA~`MmfSR#yW&|UEzLK5$UFxrC^pOfCd`}
z6qwes3@1wpmf9RaT&4Y)AUj7}pM6WPV@ZK4eE@v2aHO^&e{BZ_JJ(55NES#GIv4h~
zZ@XtrbQBu!UW@_<!76gJFxL2xm=YFt$K>r{M|YWzQ_z|lu-Ip!7HR#UjNLAfbUbut
zNuT-YZGbArlf@uvqRPH%Tu8(KP0G#Cw^o~lq`@_dXbB(y!Bz4^uCYkEzg<{iF_g(x
zCLB-_iIZKF0jwd6t3~rP0)h$D<?wN&sNql&#;zpA8mPXGL`9)KUYj>pp(|L1D)**P
zSvd)Ys4~KS8%U=j@4mQPafX1lS}-tuK*bzg7q??1Wk*A;BR$R7Q~vhDr=Ooc{dD^E
z(;L7=`mve9mWZPCsSB!adyefg7#gyDI8AFX3*Z)zHm(4kHm@$23WSc87K-r8Pq@y_
zDG6dY$tN&6dXbd(+oekA0_fRUJxtx=v0{&x+@9sj0a?ui2bP2B;;5FPC*q4&mlE%3
zn*Z$DWPvEMR=jr82sSYm6m%{6u#I#kdFo{i^(%r2kQ{82y(JgbxZKH?gw#Yx4Z%!Q
zCt!-$qBUQHx|H6SXKG6bDfJL=qO2FwmG!GXqySH?h`fz5oN!a&APipgl*VcgDsHUZ
z?t;G))|6l)BF^NQTG>bA3FdmxfJQri)kQB;;q&*GkAM5+=bzp(oSZ20QdS^5wLVwl
zxJ52))VIW$eFu3Qo370t=}Fssd?#pQ)ttOwJ9q1*5Etm({voAi?qUoUyS0Whv3#3@
za$BSyaFklVOxI{EkA-kmzSvhU+XqtHuZGVbQXe^vqq<(3%H9^oAq$dfM1xRSF%sG{
zUp<`PHeqC?_~{@?Wc3bux6(!TViVD{r;qGRQ4jT_a|JOxUHhk8`*2lZ3sopG2Q-W3
zdOwby_;a*{muHE!At0}#IG;cLdd9`@ItFqASPa|vy_v_`bY&p_a|VtV`f{pMIMZWy
z7m{f=@N@m;S&>QcSyC(1t`IP6`8di>C(;LlrY?{3&(hq>V;8FFS>YZH!8(m>zUzww
ziNJYI?&Z!OB>r&LuES@e!NhO29q!$UB8X(VBp>xt^;zcr1=3g4n?c>QO1YFKenw@h
zM{*?Q=EhN1sVe|LfjG|C<P_2%W%qdA?B|U)&l|7L8~eOTmw1KCr9ogB#P=r6hp>j8
zvR<FQe);rb2y1j26|Nz~S_l&4<DIqsw_iT~`peJ%{_)qRFG@%LaFAN7zFk8iO6IVY
ziP=`Z(V1e_NJFHfW@f0w{bsz4xL{;CX=WGNtCeMH=5r%V8_X^}E9{PhNR;Gh&YR`R
z)Ej{6TK%jp&>Sf)jf-2Sn5)QFcdJ!x2v@d7*MZ87`j8orlN>!*btrn9-3lA|GJS>w
z@;kJ9hH0EvbXlL^-VegoCA_lwll5tLZ6L)&Al5Lt_?OFDJ1PCRAAGc`J0M4M^*~E|
zLpybxZXC0!td47-CA%;>C1!gk$W0@!LG{CE_snz<AtMe2Oa<3H5U#=5c14O>-<s;`
zDAG>UvK&V{YI<hxmM>0|37L&hY+N;Qhcp}d>S{%baV<u3GO*eMmv}g81YXtKJr~io
zmVm-yPpBc0HKyG$$#)a9Dw9}fA!16>(UZd##jy)%pHgJEE{iH&<$c+oY>^Z6XULQ{
z8AdrJHv2FXacePBy=Cb^+Z=q9jC__-Afpr~nx4ja!zOlB4=mLOeanCD^6U|-X?8JJ
zZ!iQiQC6-;!_JSxjB<QaTX(RUSS6!yhG!oo^YB8FYkx$r^VCPqLX0@Y5nIR6C{DG)
z(|A>mo(b>!32Y1=qH`P#a5S!cO`$`Nd#29rBbMHC(c}$8^#>0g*%8Bk5?z`&nJ?Jy
zI?*rT3v4PJB^OYC$VV<nuu+Gl+nlx?;?-G4AB89V9UXM=hc@~9s649`kJ@uKRW8Gc
zn7C$ml>T>i!7JQ8_@oD#z((<IBgS%o_eTQTzkgPF(DZ+$f!lwufq&4v1@M8kN9Pje
ztD{)19Krq1#g+?}ET`pfeD34&NRrdDgHt3r;;4dsS4E&?SSbEL!iR*=JWfALzw1B3
z*&lIB#N*$)ypD&}b)9O<I+@0GpY_|mUNOSH-tKoL>}RjD|4g%YO3i<**)l60BXe0z
ze3u*eOU=Rk4_aH)oS5~4>jRhD2L|U=U&dERpguC>DeC84D(Kca0KpmblTCmP{oTL0
zfbDtSG!x{oD3rj4fZ$PKXh(RqXa8L!UsUi?ey4~$3OJ~WKOGzV)7!mg`@z_kP4r5W
zNJMIVnr$Hi42q;sLN6zcgqXXw!(z2FIlaOgw49UL6k|-<-qXln&{Wt6ylVg2adfTH
zgcZnB-h&Vso1CmkV8T-%E#gS-K`!ccXIvr?Z+Vq6MRh#v&FmLcNf<*!OE_#aOK@Ve
z=`g|C;QzpJ1DSZTV6JEa3z-o+p2~=GmyL_C{JvnsOD+oZFlu9CTlJ$;7A)p!i)+F6
zh9fUgE|%ng12-f|WNZk*&b2o70%^f<u@+J$1PaSxj?`d@fTv`><qs*;GoOu3Z4S*5
zQ&C7+mz83}wvCp{zEYWA+ES(7&V~r-*E`+-{MB`^o!~3QdDOOfm($7-)rHccb#iEJ
z#mrkX)nud`l%WP=p+fPHfhzzFsH~|<K8f}*)Ht1bm+OjOuF<^Nj{N4<?$Yuap#tLW
zMy9Am4KoQ0p5hXDa>;jCrwD&YNpzY!qoK=e_Ctilq0(fTa(!>e+&Cy1byT1>Bv4V%
zWeDN2g*QBBnrvD&*b3|eMme_w>o5iSJUcp2?4s1Zut1?X;|O9y-wdP_7zI(J0QF`!
zWR<y*HYTKe6b`xrmR6WkkE{Q8nu7NZuavmNPRbh0lV6>CNBC0Ot#As8^bo&nke6$U
zXNOe@bsl(=Ok53JJd$sXGe(_q62QZ0U2I&_YK_InuS$_6UY%8E6b~sXz=#^YZ8PD7
zk@r=7-0hlT4VO|;yd%{9{nL+cOWn7R;jmZaHCv^4^`3*$YTj8wefZ)@OwCD%V%|oR
zmSV4Zl#W@CSD)NfMl7~(RJyuNe)VEcs)rysbn4#^+vL}ANkU}8p%ng&Pj>-?`|U{1
zQ{&_a6StXL*PHn+L}%sd`~-YrZ9eNsT9i(zybGlODdDqs`$_mu7;b_qns74`ccW0w
zS`ceJ-p1*mRK-3p|GQ8BjNeRt@21#rh$nfV>g3mvGTBs!OhO033snW9tjba~fun-<
zxi9l?cJfO7I;3KhdKWhJQ!bNVUwU^Uh32cnLVYHcUkoy_=&&ZtZzS|m;xh%rMem@q
z4A69(42<>aYhMRVV?ABRdKeWxHQJ()?rrd^&xjppQ|Wh}fRWBeo@j*AAiN%F?f^%`
ze$JxgiE3DIl&25myCiR$aLyWJJ<-~xV+zo2VG#WGazR3fRO2Yycs<&njtpvfe+0k!
zOcoQM;0;XDFCKTM>obUdzg>H2_lh`!@7E)2nu}gWDxDpfrOI#WGN5oEgTV)4)e}Nx
z*EESaoE0OM*h$n9BybzqgTx=G-jtfwC#vS6LhFSjfy=D4>L?tV{0A}M{e=R!nDRhL
zP^o<*uc}g${KlM{l*_P-yzeBEPh7973&iQa#9}37;Vc9mutPa5EdeF;6%8sbm?7u_
zxB@*~4pjV+yIy0p$rV4|xHAd$*m=7$hqVXe)Z1W_R!n%)LsGIdk|D8algqny+9u~>
zA`gwkj-cIw%}xm#$_bbtz|wSCnI*6Oie8s}jzhDfaQ@bp&Pm33mSVO!lbN|87I>*@
zUC&CI3<9wzyf4po7Zn9)wFXE^!MzIS)If-26HKkZFqksv(F`9!pDr`E={KE~#DLkS
zPYPj+rbK-L^IhzV<FJiE=)JCpwEfS2|NP_6KmGlSto0xMW!_4X_+&pNvcnW)C1=JV
z2r7Q|J#<4c6EUH300YcqNa8GrjNCts=@(J(0Jj8Tts0tHQwX&>@n0hnci7_gso<R!
z3!!#<;F=k(8j!SA=#40UT~JdrTNJ3>AQ)k9)SRF;XI8plCU8Iih&(&0x1h$`J!qU2
zP_#CRIitsGsaDnPD8x9Z-b4MhNE}OC1-nTWjM`Li$4LE#E5cldtiNm@M37I@`>4|V
z#KLO3l_07zq%tHC$TX?gUFdDZa04!m%D0=UZ0UL{x#7z4*Ont7C4>ucq!#6PJfa9x
zB}KbT2u*qG!Uv+R=9vPr6x|Ubg~x14XHvuk@S29EX#^XniyfO_10>jYU8&85poJB#
zh*BcgRfLA24~<HdD!!_Sir6jG*Fn}{@4g5F9Eh9kqK8m?QJBnvt7Vs@Avn9a;)?Jt
zl6=~=Rf$p_s0|v9eWnsAdb4nSz!QMVY|`TjoP^3o(iOy3gU>Kvp!nMx2t{#3fW33J
zmjFLIY)-KGu>+x86ad^CB|V#6WK$7{CyB&T!a7rbZYb-hs}aCv1D~HwEiQvZFlOjj
zcYLUIyH@}^CcLE*wlXG_^DYfCk~$vuv%>eAy`d_h+lOT>2jyk<U)lzWR-8It0Z1I?
zeQsq4LKH=36H%pLVX-!L4N%4<TINXF2oDTf#v6H)?V*jpFvNDU?Pm-QLh&*YTy#A*
z8&A&dbq#s#Eg&4^@T|6HoF%tmHs?|IOBkT&0C^!=k2~3*JuO56m#ESNyTFeT(}%j=
zaH445ewoh-E7*Jw^8ru-uqdjsl^AF{In(W`Adm^6z}Acj3FGF*ZY6&o(J%b0+5!f|
zi8wH*i9nr&IvQwO4E%kv#V-C{;o<C!l;2lQ&E2N2(q+1t5^*AAv%SeKX}0uij9TZF
zvmpsZsveVNx#VwzPuGs`w?o-+oje%DG+oQcI?_eN5lC_a2szzshVdf*Pw^h%m6WX6
z1{dfm6@9h4H`$jl>a78!$+P(&Wz^y+@!%y<E8+(3&m~~meIXknff<cd`7@IYy6#y}
zy~7Bs^dvr3LKV2pClWHE{01p2V@JrC{W-ckTyoZmBnQPR1$QB@3$t_Cm=ED_PD=b2
z?A#rIBeSxL@cTUu7yFI|l|;-1_*bY}fir@wYd8*sG0`I1a34r#JTC@KX&O7zpc%&n
zHRFLkWqL<@x66R#z`Gge<YYL4X<;(*W&)Z545i>ck{9Qkhy+Vk?lwe=lMe{#f}WM(
zTIqfn{la|Cc)O+9b6x~OI|2(FjAg*(<6nOLB1tTc@{IqI5(PMwRH#7pX8<GYpt_PJ
zGI+C4-7+9U;!-64b2G}(hO+!yb}1ReMCbMclYxPYbbwkgm9u<FnYExRZ+2N;`uvK5
z3J{zJX(E1tw3tc7%}Mqlp$J_f0&O4ZKfM#ZUkz|G$rjZ5`nRJa=U*<TpT0;rN<V%)
zs{R0mt``7?eG6;`_XSHVygQ5*+*pA`nf^e+fU|dRaEqJ)cHs76ogNVnjxGi`Xx)TS
zh*4p-Mx-O#d5K($NX_s-?W2CzY{-%z9IB@jN8eeL5;nH%+8#1^CaBT^bC5N<fOodX
zEsYGs-Y-9$KmPRF{O=z>egE?pIrTq~b4!RTE9dXbasxTcB0~u7ULyBNU^_W$HqbE?
zj0;k^TLGtqql_eL*m6-Sd<0r<b#PD0n~z3axjeuJu>66nmkR0}q|NL>w5kGE1}-8B
z^55TwU8VQ#dpC@v&O{879YTN~&1Mlu(A3^)DQLR<CP3VdE0TDr>i0_Rkv&ShuAMiW
zLY&>T%jIzx2HJ4Hwp9?Po$O>?3`Z%<&5M)3vFHE?kzHl%zv*UH$qwEmn$vwMB$SbH
z(&qwVS`X-9eEc~7`tgVP?;n5r^p;ht?v9rWI4i|2Xx->OirRw~0PV(0vU)_){zX7V
z&7?B|l-<T*qop{%#nM4bzF)(>PrZXX(BOuV>^jn6`WiWfXu%5{iEZ9#6ID~hnG#B?
zUZCY9;;vRWqYoFHTDK|coGt>1pCkcfBKyskG+s*BSuMnQ_-m`Xo(QU5E(EXX1bqvT
zr?V{<IMC3kjjBEn^UaADa2s`dG>s&HVC1M|zz)<QDCHWwa(oCaQU)n_w3Tl|`i-H&
zU`z3@YZ@fyl;Piv+bQ9m@vEQAYF9d^$;qiZmI;5Lq6D*iMv!C{N&Tmf%8tGyG=X%I
zJ4MM(e)Dw^e3gVs1(>)V-e}DdDdU?3Jo=H7Z;pA}#li_Zi*bbE>g1Eu$^>l06z^0)
zL5Ikor74%>%mYHeXEHQqgozAE=We@BZ#IOF)Xe@EZS@q6Y)NPRZXuasvCFtHx#aBb
zACS@r2bM79#rk1hMb2HV%K|>;FplV2BzrP(5K&PyG4SuJU7D_&=aBgx@Tc|me-m1e
z<8{0Z-A_y;rJSU{5*ym`F;5*`Nh+NzmqAc^JKm&4u|-rY@4ep5ya8{N1zSc{Q%#)y
zm?z{}p2nNKJ@R^=gV~8eM{7+fdk;WBLZ=fD(HEV_G1)YA$6}TD2~M%p#uZWM71b<c
zf>7voas5rLgT>^^Or1Q=X}(^F2`GEe>Q`Qz_JyIa9%c%;7FwOn_DKQ8Yn-F2bvc5T
zlIM|Z=*b4o;wn;3=hG@+lOn;6rzZp3jZy%zoGRXDzaHj>(>I_E6&_n3p!EeSzT6d?
zNrVgts$w}aZi`Sg2WxhW#*-UDcX7$=7L4JHequpEiuph(Xb_}{k}NgtqXSWFP%h=X
zKq(jSm%(7(0m5(xH<qgj^sHw_`dMOIDGR^97iUS<W1?UwkZD84Xw0QLXQe2Wc`?zx
zrnqCh*)SyOG`n>&Ew{6Gh5?(#*+Myp;wrfMrnztw31!tvc$kknKv5kI1#fqk11p-*
zwOCdd1iVFrgw+LUU!Fh8b&1OG@7A4Pz4Ay)D;JH=vN6C3aEkCtaX<B?(nKe!SO0*j
z4Vk28h-{}ao`3bmou7`q&D|6fW0LoxP2=rY*kj($mY~4{$8hQ2y)?h<U}F@QSY`vG
zj(fQX?u5oP!n7kZl!=!I4o5OKnB6BFVmxTD)n`-?nz1|d=<%eP>6LawH~LMbM5=ou
zJH=AydAN{<KrIYU*D<t;An9Ks=bfa*baZEgaKPB0MnGa`kNrhmDBOYCk#;}z;Rugq
zOt$A4rV8CMDZgwVlDsYkmt^#5K05^@x?jg-(5;hDFUC82Dnek?HD4tlYa>|NNRc8#
zV<gEG$aPNg9V5$wX^_;L$%|J68`1#%HsoO6LaJ7X?%6zbH*f2q4imBt%K2r#3T|Qv
zc-_vH9k^^*rds653YJj@2+-pxf**y|lP%G3APmg6{usGA3m!bSj`6taor}w9#DPa4
zKsF-*@Q~~>V9<A@PAgn$51zUs%6N+xPsXua+hAiThmr?cT(Q)LAeWlrBG3aErEY};
zD*Zz<9Ky%AgKWhBN<g*0ry1jLAl8OdFFb6xdbp%5T-b*rvB^01A<(w~&PymC*gENn
zVxxC%bm~f2X2BJw0eI`&o$C>e|6ZDFyrTqHfQpSGr9(q?N@Ow`fPphkUdl`u;Edod
z5v<96h2ZH3P17c`tdbQp2ivNad^^xzQG+d@Z56y${AC(%7EnxNE&p>G`>dvMJSIH~
zL?8otJMUvR*%zm1QZZZ3{y6rk8A1^ykik#{+so`Noc^`c8wV$mOyFXR<#yT0Z>AvF
zKt!M|vImi72_8kAUYvq6sz}ORz8;G(Wl#C67Ve(%ia_9NG%vn$E+*$-8+hq$8VLrX
zd7oszErY-l;GPLus-3~=a6wpvkaKlOsUo<uB+U(?31w`HQPZ^G?m7>56$?%f1<om7
zH#xO_XT3{n-pO1Hc0Om=N!X&4W@vIMb{H&6O_>=|ZnB#kMbz{H{eoMgkqESE8}Y6l
z4)xRN1G6*9toLR?witi*2_zc|9T{Q!$XC~NT<|>io1IA}1Ctae+&PnXA~oegfrZH4
zAwi^B%$voZr_11?qPs}^I255QdBN~d5eVrQk0o~o4vlLvgfuXxWF9Goc=1(6B2q-b
zg)s*dbumi|X-tLOdreUw!^jI;KP*Wjp%>RJNXa;kO<Ih05DUm-A}0&xGrvd8YSVC3
zk34nFNwQ+t(%2l&K#?R`oN`|#C<pcnJD_z8!{V&U40T5T&g3EM>g&+MGx_{V1s!Vf
znO!oP{9-D30&66&&BeZYcJF3x1%zX=qrt9W&Ff-%rv&&~fvLV_S=aKK2}sL?Wu$iJ
zYDGNKci139UV}Sr^RXEbMyStX+VUtPBkI{>j}+8!Y&e=2UIFYbS54-5j&zdd$s;bY
zV*PU(`ij-gYPA!Y;Ve9KN2eZ6^yKbMwd?Z%tLq9QqIAM#wAdG&ycUqqCskM$J-^?E
zINQi42yTEjLd~TG%3+#xp*>m|P+SCL+$ffi&>NXEqkywr3z$N#m4Qogo7$nu?U=UJ
z6fS{O6ZZXjS&9`}V)A~q_>bQE#m<BFa`y7GWAOk=Z=;XG;smqc;6xa@H-UAuTjLEw
zT88UJD#P!e`E%8(voD76lSrDc!|@a?tjgpyVtvdTMfFN&T6;EIz3=Uk`d6SlIQBCH
ztiffy*VIJ{K%Lp-mXZ90ofJJD${mpg+IvU4F{aQ0mBXBemamL7X|<~Dg20;#iO9I4
zGm`}&Wu2?<M$Tc-7msf+on^%2p@FiX12Px8&gExt_%|yq5$qk#Npih1{v>fHEy<?B
zu$gRu+Sz6QH}M~}*byW>LmK9NoDZ9elun{k9?oWsFrE}qC9FCf7EGqyzrT;Yu`N19
zw|E;mspNE?{5mFmMGow?1?;l+RK|ydm&QU%IV+CibQzAL#CfFE8wEAp3cL4Zw(EM6
zg;lr7ufrr`2Df2i1#5!r$<h~PI$o%nSx*t`=EX(j@g-Cf#_O0v?8_*V+J%u~!!Ho6
zde6g`g<)P;7M9RL9@Q}U)mMu{1v$Iltp~7Jc7C|aEvgOld`*%VDVd(`nj^5K;f^PW
zU>cd(LAiu%DcD?<w5;Ktv?b0D7K~1Ax(%fkV|l%b<Lce%SpJ)Jzv(c|Phg-XzYdXT
z$Kh<Xz%B|{9@u7>hdXyJqmLZ&t6H?ZtNl8RAMYUup?UlSZ9pot%nS5m(?`VqggLt0
z)<_%A-gPvTv(u57Zq}(bbd_vr#8JDHv5+wZ%GvvX)Ri>KM0w%vL)RLEJURIZJ!K*z
zh@LCf?dnO|2AJV1UJlzVNe>_>xd7q-Em|BLwA*Z=m?gkeX3|9nH;W^0PfQm?b+Khp
zY|mUJzpt~}NO(k^V|olN&(Z;>hGp*I8<7q{RPgcR=a1)~-vqJB2nw#`5_dUp_Ke-M
z@ktHAmAuR14-Z);jr5}~q$D*exo|rWDfE(7KcqTxaI)~nE52Sag^Qu~K?K%KK^y^=
zWEkyKk`rT*B42p&n(qbLXA*f?i1%V{1e+x$gksNPztM*v^@Dn5pt1m|8Ah|?J6^Rz
zI0SBBrFJigF&xXgKuHR{^*NWRsFTaPy(-nRt&dTwOVK&vNxM)fVkIT5Q}2BdN^8nM
zI^uqDq2d|H-Z^QMip>;7ogzDtKvaUu04Rk1I|>&<Ga6N1Mmx%`yp50`dDz3Fc3Lu_
zl^f3|LMT-28G))fpjahS$jDFBP>DjAtbTtaAxGEKUn0dTiwjFjD&u~S00uNb@OJ23
zoe{d`r9bq%s%}j@Q>MD&C6&&YgkK?;ybgUcn~q#ZVIF7w?%diX?Pp<JVD&)jSq-n{
z{RxVzG>;Gcex1Ufo-S`|D8%ngWxX~iUz$h~lxVI)BYNye3FZ1%f7ncbYCHbEeko7m
zODnjQCP`klI6j?Uedk^l4wZg`%*_V(f~sU+o6>b7l}DhcimEfOh{7Cqz&~nWs=k6^
zq5%u06)gPzrielo4X4_hZ2WgUsP{;3kyIMFW&5w6CC)aA6Z)y8xd<esF9rrbr{k}{
z1}HQvD?K20%7z@$ZwsY&+woB|e2Tt&_19Ogqefq^6I>eE*HOQ`T&HX=m*M&U^it`M
zFLnJ(TSy^4%GV0xV*V?sYr#Rf!x>!R2Ni45R~p5Pws8Cv2Q8z1+&mRl-<2yJ^MlL9
z(bfEsd}7?4K^uQ0U)c?vOFV|Z&nIer*9_PwQfj((F|1;@j=tzk80R=ziJPgAkD`9@
zRJjix>gya9kkv=A(GAKZ*gc2+Fnw|=)%iFKJcwq$J2QJeCa%kT*iK@0P;Knv-ReTX
z8`v9hMlasTunBDSQ9vF&0E<FtwfpW#8ph(oo0+f6Eam&qd_Hr{-h!wFs#e723E@A_
zFb>G&tP0s<LF>eQ3VwDEYKmiaOscuA=B?*3nE<5oP0-DBhQ7<A2jAY4hU3I5)XgD#
z0%MIa<;K+Tu;%Np$h&c4xTya?1bSNfcRbkaR{3F*e;xf`nK2x*g3>*@{@SM7g)-(P
z^I~+;@y9W^ha_2qwutRmL|s1Jm(>>+ISMxsqIJwCj<Y4(`_LM|o7kK)J608aJ=#8&
z!?@sn%t<f3F~P=P<4elS7&Aj_Lp}5Vk@xOBk{nl-=T~v@4}rv_`?|f{&800ggj_9h
zfvo8PIH(0A2#sVgsi;v@6}z&SYL>+P>}%(D%p;?cq_mpt>A_+_R)$A}hr78wuHDDE
z=k6!?9akydJ-K5=QtY?lq-M#aJ`pz68R&OT`x4xx32TUci_@G);ws7EIi+t@kHb<u
zWc_UnefYCm=^HH&CP^9B`1F~P{eZh*XU^?1?Yuo9X^`mqyFMvL8tR8mo<dwnX-h6y
zzX-z3aKUaUFrwe-oVLWQA+W3p>)5)I=Yx8!%cd>~`n$eC@j!GoPsVo_8%=oX#bIB&
z^L`ZeKI&KYnC-XW9F&pv<EHC-K<3NF(Hnc?exhLv_TIQ%0RMCYH3a7d?!xw2BS-e{
zpK93}p0%v^*SXuu|M=E%my0eeKi$ysw;THD_||{Cq4jSxbbA`>a6Wq0%9puIk*I2l
z$r4EU9%6j&LUd-8jM`WbN&Wq{^d%vlYc0CkRhIr%%rbp-E$&iKw~~~7w;K(k=SeLM
zR$scm3+KmJ`qO#wg6{|-!te@Q<_kI9f12H`eJ5Ye8V1`U0@6F-@QJoEl&)Cxk9dy!
zbnjjJ`A4rqTmBzkr=B&j{!Bm9o+kwnAO-tq-$c58+;=ocubT$BYc^6(nqX>L0$td8
zr|%zcf`#5jFCIvD_SWxP&(<EcJ|p^Dt5$>g!&i)RwR-J)38Q}<sn{tTRuiAvvNRcR
z-BJ&OM=Dw6FzYOHXKN-&fq=R+<FfiOQ=dtFC6Rf7`1OPKcS2=qavM?i`t6@a!S5fQ
zGa#?Y37wF!=2>8dN^r(?EXcYwQAxQq3{r+%J5%_oruj^%f2<NM!i9(u4$4F-u$%<=
z)EsY}b(<G$+F{y=$jG6RAdZ-Ky15VU@4mhtzq$YV{{7vD*YDmw=Ta&mouR_yvr-5r
z!t@lzjt>5Nh~crHyZ@8vmzDS-pPM4z@`7c2EN-L21?}&b&M}5SN3j2gXeZE&Lz-is
zmsWDZH^bzrkJ`LaM~+hW3Uo{LMsfJ`Ds1&e&ifMx?Pe9L)7D2NCf1`;hF`^8j$-jq
zJ)7g`Bi-q!+yJ4sSNZLPB^9aCb|eq~QQ30&2oUg<*m;5sXR#Q7;Wd9s5=n@P+8&kF
zT3>~t&|5B#QsD#(UjRj_P*h|f0e%nzCWvAv18zgShWaXZeC6!05mDRjpRaaXVQ2)Z
zNfXhV)>Frz6gxiUY;vF+PZkk{K$Mb*35{4sd*IfgBOO6QNQ9);*Gy<K!B5gsOoO{R
zz$B;-HbXQWLGn*Iu*W<TOHJpi>gU?((5hF72%z4;*CJI!aLWUE#N97Ph#3*-pGf?A
z8+*P8XsOcA)(!FL6~gTwnctDh7?eNKgv1>$7tGR+`TM1?r)|bmgMh1#9{6tLY@g@f
zv}p<6oWOLy#mAQko`p8o9!uy`i`rsGDj#U(P1{ZFfO<d&N1+V!BboU}&9V9@KKvWW
zfviHXegb&_4oinO1r|pc%#tY2(+x7Aoj%`a-d?Yu>Sq>IA&dxexL=4x8do6n0dApD
zm30?6jFx^Fah^Nndg$P-N<dR?irWghpiOTzW?x+k6mli?)g>wbIzhxIn<9FxZ6Xty
zg;J1LSH`fMvE*KG6kvFkxu~c#RSlxUg8>ASj+;%g;xS!ukD^aAv9*D9+H?ErD^s8G
z^i=osits1So+UQZoyQ<63Ln(_`_t*U7d6!2QVWjt-4w_+)mT^QP>+aX6Y?^7O)!Fh
z9z)#8sb%s1$E1yuUKlO!*N#)sQCVJ9l}bT<>JH=LKMKVQ!M^TA7rekgQwPWNJ*C^x
zO@(P+(*=jS9n4ioY<>NT$~k80t3!zAA8wsOR?I$pHxFJiaX6pyNQ6}WLU1i19(o9;
zpY(LGHU)wkq3J{;d@KIYi1-tYsJ#(k3P0Znu`~A(d;RU**N?9s-o1aeC&wk4-Wlj!
z6V4@~@wRE1@Jp?bi)@S0?#t5OJ@mIeW&HG%%g=uD*PP*8fu|2YzELXFwnWZVQ8!xQ
zNYPgMkIMe8zx1~DFNaUR+<)ln^ta<Dr}oQ@c1!BS;1kZ@eDVVSbW%pPyjX&Q$O2`d
z2BjP*`)Q@{i})ucchX8YrWE_fw-pMV6v+ixD){^@DL1XDgsxaERFG2BBKl%gO?inv
z<!verzlgnKZaS^_1KW!<04im+T_nJWyUapF$(@#eLuEPiK)=rYKOP_~r_FXsyWpKt
zCB(Dmm+sI~8obH^W|c5a;=3du;@ABgW$Ff{ex<yfnzW<h>6-79!y@Z(f9<hC<?T{5
zYH3|aCMM;U)@<I~B@Yxy^g@)%rATAecBL#a&6qav*G1U(c{bpzP$RmK7A!)I{<=lK
zF7;aIcO@_{<fciFR4Zd-cZzerXe|d_bMQ3>Uvuc!9Qrkfeof9&y#RmLnqIS;vF)e$
z_N58=X;v{yWsEb!aw!VfCsGkJ1T6}SNTvysArFmIhBVDF-X$D1ihTHWkKi_KM&fEk
z!&lb6l8MR%;|2kmg<xFUdJY1}k<DMKbPdI&HkqGUij<Pr;5uv%Rh!17MBa5?G+gVl
z9*Fz5{#5c_%Hop`3r1^@qAQ@n2Csk6P;k!Bf8le6{tKTn^j|!-X%!Dqz9(`3m)7?>
zajVJ(nt@%n$BPtB5|@L{31n`~;v1OtVQ&nls06bvT`5DV1(U$eZEL$%8w|}EqbZtp
z40BzxbCj08fGbO~irc&P-2D`tKK2uQ`q)qK>3r{Vhl}r<0pjob*@S{+=?88%XK1{)
z{cgPAt&*^iPgFCeLda1_yjd$c@wPb$ITx}|R+5j)misB3?eB-Dv&#m~U~QseF5rjT
zsr~z*pY895ezr~_92cPTFUiRUOZ5rdd{I^AgkP>L?KYBG+xr|ZJ2zB68Ql;wxo2Tb
z4`ct-=ZyZepVL-gyzJ5bz5A+t-_NE;x3<XKd5X5Tljp79;?o|bNcT+p=IydO10A@m
zz=+m4`rWxV=dFJ|T%J7mTz!4nnStI}*4n@KJI)Xd#GDsCNw}f5*w5}=`AE~)u0{0Q
zcIp%_NZ#5Lp<vBaS*T7Ba?Z98C@LG)^c<OCJ~B#H5@6NxV2L6QnvNNAR;l65377Kx
z83&}JrkTn`>YR$wZvi%;Dbt-wt;(Wk+gvqvOR;weI<s<73W7}5c640lo|B`f3V2#U
z9p*=g#n@Eg%kLCOZr08AC_xN;psCYnSNn^)oL?nJ5@k1`&RWmcz6BJbwM0e|SuB8l
zB09Q|0bm-zXXxK{Qe_yYEr?wOJc_U)SaW*<EMxI=CHGe7v;THkI@N1KJ1bVL^Z$!N
zZWZlX8RG(qQv%4PmW8HLWN!1(>T%t`vSCi@NR<s9n=~dAPG*`y`9QEhUkLNjHY)k_
z&9$Yl4EMoJ<B&MOw*j<w7Q#cO8|m2KeFWrUdy5{mUXlaYHQ{Jol2_eojYpA1{LHr^
z^wvOQ>+|v0zrtV)uM)ay>_iKdDltSPoH$^BB}SX5t0%y58XxRt@_uC~pRnXbfpQ3#
z=MgLv05ogQe}4VpaD2|3eqU|xNY-2_IXka6;xI45FSPDGicT&4?q#e+U*9N6HZ>zx
zQ?lH&Pk;B4C7Q10t0tgQxZ30!e3j+Ps5eGdylVH8K2_4lw@0}F%57FD!tE+HOKASx
z%iNUDdA%asBXp5ijILzkHp5qRU%^?~S4%Ubm%LwDrewYGZ-3XH^27c6XOB5=kY;4*
zT`OAIDyqU1!N!YTC~6kY@*YM4fD24us#x4TmPOnh0tG-N!|VCIRF8toI%K$bTHC{h
zCrI^MrQps&5R05(6Twew^aAQ|L-4BPHphC5f*Z4~jh@4$6XhyhNi?Vl(H`VyY`TEF
z=WEkVL=sV}c$z|hP<&khFN!RA#k;hL2COOLnWYtKe<P)74-qRkJ&^>s$UQriww1NM
znJa~0B!Dv>T21!4zmZ>mtL1Uz34{XP7PuZZQe7gUQTCc9t`v%E@<|{s!DI|N%@oR7
zE5r)(T=sX$!Q4WJ6KvG*+*VTW4P0p3t|({<3=>Q1Hj!#dgN;r|6w8VN9U{?^^lgtl
z3*Oltd!&5|ZErvev?KaWo5Qoji6X|{*;Y~T%x#5fl>B;r&jXUY-ekxe`;)G0mrD0e
zI3*ORV46X1F4HZMez^FK8h;uDRwOMzA!Hsf+^G*YB<0Z&roe8nl1W@DHFqMc5xIvf
zGT6<yIsIn?-`{2<8qHiOc%{femNxDE!OP}nHi+3?k^i_2B9jm)RK&s36bZOat`#wx
z&s_$1CBH#``*Cuuk`>(n@6Swz=>{wiEueK1F0)B4Az{7r7^F`NB~O{3SY5(Wo|rU}
ze}Gpvm+72q1JWdNV4v&+`3?m@w2L?glKmvh`PZIBIRrc4exMl3MrJ{}lkYWCEiiXL
zB3Pd|_DV6qyMJ_!A2gW>r__Z0Se2Pm_48_bNH)Ymu2N<Lq)Mz3q5Vn&$R~0;C?|)f
z8ut!WOB9D<hAsA>Ifr_R&WrCoG#J8ZFK{-}a4)PfgD>512IE23^acYUJ_@#^@4tPQ
zp3Su!zrvNXs<TwJMRO$M;Lg1kn_Sy6`$gl|xpVL<YGI1G5AF+)tb)Un&Y+pVDXSc(
zts&9|lT}a{PXfIE;vO9wM3PW%L!7A`khW3&^JENmG{m)VP<nBk3_N#pYh1fA<1L=O
zRtS?ynu&pdhvA^#5yw@*f9aw>GfsStqfe1L)Fp5^3Mf%C)qC5<=$RH!ZFH#a{q8Gm
zgrD~AjH4`v%<Q=l2JyOs+O<A;7|o;YRnCjSAho03;o8;E-Q)nZ2ml-nhQCjqmD?-*
z{91&kTrLZ&rOWR(HKaq9WKfasMKf6B7F3Z*@LJW1^RKOrW7`SyE7gnzq%$Po)&1X1
z6Yz&bJ4jvP@1hiw#SHgpa;eX{|2z5{+{I+z4}7g3in}P^=+1{#GYemal9L?JAk@I|
zLda`S;iEA0N)5QP`Buv0Dw8AQ$P{Q}40cAV9Dv8=ySE>{dlso%zy9Xmjns!4G+R3K
z7)d0P)zKx_TwroJp&qP!ajq+$iy>j$M}6!$uzDVV_Q=%&oO$Dl(5i7oDwchGSxuuz
zHwTR~7+nXWe55~GGONu#e>yyU<zMwWhlH^9@6{z_CGDR+{S>DZ9I*#yMIq8i^7QRU
zFNDO);;oI#Ldw22Ak~99IjXP;+)v(B>YU<w?8v^OA*{DSc+7P^P#Da~pmOfGibTI$
zYmOXFgXp1F(8_eSq3`P9^FWM!loFf>j*srW=`ldgB048R@*akvkC97lI{vzk-^VwE
zAc4y--U(B$e%0==kbEgnqqeWycUujFs67?4Q=OLrQ^$cERNXSBKF-X1vQ)FO#&|yV
zAq;IOJ4*jGY}0K&2g5%XQ?iIZ+6khPass)ZFE>8jS6h<fJR5;O?QeVYFtVAMP;Z+O
z%nt>;(E&qw;v}%BP$3r2QyZb7FTvM;di|WKInT*7Q2J3&8L_h5#-=Ib$7+|$uS7Gn
zo~WQs=(uTOCs*0RR1HMub=cJ55>7l|AT8FV*u~d-d%l4-hw7l1N?=mI?IbV9GLS(g
z)S<dlD{8c&*39_#cf$UcaN$&`w&J3Y1O@R?r6daw4=!-f2W`^Ihtmv6+((+4>(E8W
z6nCMbq{{$aLV^dM<=A<NkTmTn)-MT<Nev0UqHg-}O^~l{S^gC;vwB^Ykfi7bCc9j^
z|B72b5axh{4{b^j`ljamD<$XT%jPQr$9eUS#U}o*Mr2w$9)WM%sj61hc=KXE{tSS>
zZRqNSb${u3FkX38Tvin)fZVE6F{xecO2$BmMhrC4IkZeF$ui{*!q{@=)FnpUF1Q_=
zDJysfXJ~_;*Yg>w^~Ha^fkQLTcB-AV{%c!3*-Dh`gvvg<)Vow+&Fn9Gev+!5H)X!{
z#uTylfppoUT+^K%4jE9-N#k<g5}2&NiGtkboobj;Nf{(VTOtJ#89CYW1$Cj+8}bK{
zJazwjzI1TvefrlrSyKim9#EfFJ%chn&ZIyS)QM_*RBAy~_(hM5;;@j|zrX}j?=HG)
z6yxX9dw~#2>*}!_+o;@Kexb3f+d*8cqGdH{xV-dQ36<%lL>O4qHLIlFtl%HSeR!7z
zxzNPn<ve330xQ1g=sXy|SV@<)NWKWG^X=>R_kVo-@ZtUU&&xl~xY)$mg`T;woxs^2
zpjMbsV44DPqk`|(B<G0OTOt}pO)IMWTpl#g6AH^dg88_aAN3*wj4Ky0gbB++$pHnB
zM>3nu3pGJD*S09h%(C886~4z3DL5BN?E`56Vn!UULRL(!wjS|~X%v#vCk1+e2BIzB
z8^x=!Dvat7d$2d+bi|=_7-6IvSEoxURU6g^#X0cbH8ovNv+{$eja{ljTO94vEG)(T
zA-9_!qiWvt&xZbMKY9PG8SA<rkFx)^pSN9Hk5uWKSrt9^&lF^f00p<+c;{(Bi#!Hz
z<#6z&o4C?TFjmr0(OH2+=y*H@!W2NfVJAt;jUsh{JFjA1uep!q{y9Vt{(Sx9<F*az
zvAGcC#NsSVP0ds_tn~l_K<WpenxGv;a|?&*jY|F=NZK_5dWgYQH1w?|MbkvIJ^Rk>
z<fn#G39Gj>OaJDJm$EvVC=v!HvCA*0H6$M|UC)C$PR|+TEN2Z4*w59vXdPU8A>ieg
zopzI!RoeZi1zPcIVC*p|M`B>8K-l-#<eSq0p@NVaEETIe;iXqdT_5c?@9V<Z!xJ1h
z6NvBULqL!Dfme+(pL?l)`2HCRVaxV1;)T14ZAs@VF_WfnrMVKX*k7*}vHoAhuw79_
zt!X`i1Ga{x+tv>y%OQFta?u*ER8Td=lLBt4xt*@$6lii~z9OP6?WJvoSH+Z=@@>fn
zAsT7<Y^6S}S1R1lt|X(RT-Bz_wYJsP067oR4M3yycW>saDF0b&10P&P5mSWr!1bix
zlq*>6!|wzJX~(xo=IpAr^1ZhD_I<w1LUS(q{C9NIhr4gT{rY(|?zz~XM4C0YEsCya
zr2z<DEc9^o4=n!E*fXyMIz)XMdpduyD_^+KTfj%{iol*$J9~&y;d3>TSeh<83ChD=
z*DiJiLrNszAmdm-AdMVsA%h{GLblnn!j2%f=mvL*vLanhD~X#9WL_r+5(ZAflxuFN
zhzoZ5W-Vg~U7#!~xh|SATv~%G(k-eqpjSjV7qFp#GYEUY6FU$mngH*D4<>cA_V)E;
zZDB0sKhzm`w`5XlW6+*@a*&El-3cmM?K(s)q(wsTg>T4>l})f{@kjg`>Yf9?8~X2t
z{yTw}WRF5ZH<=>N<@iGJALp}m$X^~L4<;zeajvDQTRaiiQ8xG~Qn+R`6i?l)hn(<Q
zPo{L10E}ko0rv%WNF<_1ayR{s%_XKH+ykxO$KLOJmAE9hs>zpgZ;!pV!`OR!+<SXG
z_x5=1ZQ3TUhKI`u;)OEfQI$s*akj1we|3<q8jh#~>P3<@Yz(GNnc~=~%1CD3C<{dO
zn=y1!fo()BUF?Uz4l~e3qyX(`Q-q;9GhXtO4sUvC>Qtw!uwh?e!+C{y1q}NN@B$-A
zfCYxr+Xzz@n5M(31vUsEspSR6-AjSIZ)5jJ1-D`L?ZY$GX}zCOoo4lUnlT~iOGs<%
zT}<pVTid(m8-XMqsUCKqi0TGw5yf@~_&F2j9r@A6ms#i3_!y(9t975%zq2Qm%F?6^
zg`ro&Wm)OtkxToKGhT5qK`u3e7FS|ImTWku<&<pto3Kf;T6{|!*M%tsEK>!sHHl!g
z3F5{sM5dK2DtP?b4>>~{mewAm9irwDq#CE~Z0&xNvIs57Yz9K@a*E$o;mubC%G(YZ
zGaDmt1Bryi2e7!z#N+j>Jn-gt2=IAj#X@JO-SH7;dxAQV`Hp8uUne*XH@iBe9zm?j
zQ}I=4d+iG85kvyPb}tm=1VRg*wV6tyi2S4;iV2vh^nTSB4szc{2Om@pTXu*t{G$uq
z>T#&bS){+_-sjmtUp5Kk(9->6EI-AO<=;AxP@sg(Ray1u3i1Ntc+#wW`0Cjf7whUm
zs>BD%g8MSC;1&dwqS58H;CWAha)7(*9iI#>&d81#niG~&>Fb-N%lrKw%sSd!Zlc!O
zVW-MkdWA2+uVE1K;Z3vQU!_8_21;zD!+5>P+k7C*f<eXS`u8ZSLx6@cJ)NxABlbvJ
zn8S=;uwPIA9&tbcsc+Bd`7fPJ>N6f|Vgei!(oIt8f(L@|1WMfE*K5($$CYWMr{uLP
z56S){6GH3H0Xfv>8m=H^vO7>E0Xm3}e-i#2M=kEKd>sp=(VE0w6T)gpIArKc=;?v?
zLTs?WYwx3IOOC4xTj?YHF}Bq0KYw^|0B6?5g#?FjF7E@UiMBaPAP*;e{!e3eObR`D
zln-;?pTv37D*<ciccH%YsnbSaN+*quZ|~{F`9tontI5E>dywe;G}WcoE(4Peb+o3H
ziCXNM%(c56Icmea8W}y}vzzeYYy+nl!yxI5Zo`3N2sFZUO99l}Ff%&71^_TEh%EB8
z$!vD9>lbNqR)h<pM+yCf1mxr(4nxpHV^<l_W<*W{dodr5V6MZ|iH9AT04So0+jtPo
z2qD?pEW@Udi;Z?#U1Bd#1tr2qlGc8B8&{kN^`O(U#HR>Y*q{?~CZf(r9DRJL`c}iX
zw5}y5#9J*v7#--jDm$J;=1j$GO*r)c`*X16L#EiGDRX&bJ*++PY`sJ=xr^gtmb<h`
zp|%{n{XRT=_xA1GbC^h;k!C7jSDmwcQtM>DAEg&bdTIDv3=&_!R86?2)r)=xvF~6E
z6x!vA4(no>3!C~3w1t#5R7Sb2n?XwV1yrMGRae|9TB;Ku9oF@F%3!>Wk{EruM1-{|
zE5^|HU~ZoPUL{htIu2d6M$|FvwIrPwG)k0Jbm5!5@R14t0ZmPOJ7{RiF*cu#JZ-1I
z;NjzdZ>MyeTOdRwA1g&6(8R?mwDe7q$I;p_q`&iMku5g$SZ))cx2hK<OwC9Lgbj)a
z!bCPfo9&#c$G;7N#x|pT(LHo-<jM=NvFIpq=p|qZ+?vqF5zz92Rl`STF2D*vI-vQl
z;T6;_xb)a=rYWozTjlv2B*M-TVHya5t}H^3BlB+}ZDDcK@Gz+`+o~T>PgQP$+hrvZ
z0`Xu)vlw^g(cW=n-IO*e643@h9QxcdL0DM53!`~T&I(nan1a4ny#;oZlaTThJV+ij
za<^m(YAX;d{+2bgZKr}V*dFvCT?Z(eRc3WpBB<dcw%JuTWx!l-Z4Ibk9z`l(X(u`&
z@bWEGe-axfq8CCS9V$;CFN$fWcDrC9#i(HPvM-4T2DE}sMkqw9H3Y;W1C~bk&<UL^
zQJEK5QWHRDAyKFUL(nKQeXx9C0Nx<P9J{P##d960@J!12BqOIuPKYxJJ$8-8_iH_K
zo6K(I{5T1I{8cje7TbU@$VD3$<-{ym@Lnmh*u)|&2K3f33;L7L#Py81OY~|o#8Pl~
zf&SAp5-PvLRMde5N2Wxx3wR_|y4El{>J3sNc92KbXyX8-Fdjw1;sFE%n8nchg;ZAP
zK~L0!QBRt{GLR57vHrmT4#*XKrQPEeR)#kJMx}iS{UZ7&wRN)<oY@@J2xbF<RT;42
z$?EV8hb*<KrSqd=EB|NH%w0F<S6}{p@XN4&H|%eR%eNPQ$Nejx4>FlL+2ClYsjFRa
zVQ;i2XL;}&z8x>Wefr?XKN_B{<-f{_5|{<Nq<Y;N0ERU^jz+W%-s|PhcERr0Hw;3Y
zlS$OkNEDKY$OmZ2q}Gq{@J_DI#2S`PIj!B{p<RuMx%nWH!<(_8x1ViR`JdA)p$Gow
zbXESjHmS(kHW(cMCA-|zpfjp>prsk-z=A>3A(UB#f_d>efXtS-+NQ2^bI|6>BQR*R
zh|%jya*ee1WBa)|Q?(AjCPmWJ*jFVVBR*nRLcp)G+U?<t+68sly%%W$6V$4<X%IVx
zDjsDY9x#Gf_-F{->p?a__($(0rAs4&fiA5;oq7{VF5?l!fZO*@HpKWh?oj$2(kFL_
zNST0z9h90Hp|k_5$kwddE|VE2w5<hCh>3dDgLl}t`{RlG2K%T62&0jG*zDEKXFnj(
zb?W5)sr$*8E#BNivEfAsgK%N9BvE_djil@pv&=r*{-Q?6I;wQQ${hlecd(YK*}al8
zAY}lfJDe3)o;jeohTew;sIv;>pV2VWdjwwDhJt6DAA`LEB{Eq^w~L~_8J(x8HsKkp
zj0SmJ#EgOkc(@5$*b@pEZ8}p9(yq)d4lR)kjju71SUf9SveDc26`KLD66gy(9h7*;
zxb?+_2e#Vjv3hy2O*)HVT8C~xO>19Z3kyt6DPd_a&6K{*t1UM!>?d8Zld^Xy_zfdF
z(}tu#jaExnR%P}<#1479yZid}+aCcm40DJ$M>2{7yAbnvBmG)lCJ=DzQJ}IzG`>@2
z6b3Q}>aJIE1MSF4ZPJkeXXM+_m*CfMQ)ZB|;Zcg~0j{9UDAt9FZc?IdlykbCA%3p4
zL$R9ZjNyQC&U})}q&dGj=O4`>GJi;ZZbuIzVLJ*Aq5n&r!tFf8b0jy8#;|dbG-3<6
zf<U-Ys}5s!Cj5dk8n_c6xX6=V&wjcMvs%xs5a9#QwVhR-D2z+H!F9$o$B(McuT_8-
zp=#XA*}1zJNR9-8MuD7)qcD(d#F~D(pb`#qS2M{c>UlOiTa`Ynd>cZ87}smCLAEj1
znJqA<6KmlpFyqxvrcA|sEnnWPZkm=REEeZPD=rE*XXubc@N3E3|31RirseA>1L(!<
z_OV%Rtc`Q~2DeXVY~GXbg2T1Ca>P`AeRp`Lx%`P&J0>jZB(z7{F_xwdSC-(W{iF5q
z?V@jP<`Y~U1i$N1@hK;Ir2dKAzV)^P1LWut*;4JH+X}5k;um9zPoL&`0zcU6q@^U*
z-nI?rV-X0eZECqU{p<VZDf02o1xQz7<0`lCIIY(a;|3h3C|W=+X&`X;soHdMvZ|`-
z&ZdX-k9P-h3^>{r=*JYAcA<c#zia&}IT%d75S4godhYT`k2aAK8ePXqfqLmI*h?I%
z6)a0h928i#CfqSi-wuY;1*c&JS6P?^JFBMOhz3Ci+%0v!ZaQc#n*N#9v(<i}2UN}(
zmKXvpV+@!D-Ny?HC7Hi~b%G0F==Qgh&mf!#_%hfRB{7-tq3`9ghl-DsWCDjnB9OlE
zXj}l!JlyU0IYEz5FVq$9D2lm&YZrKKqlFnald`VuxF=>G47twWIo6LaGrbbnNKzn=
zK`z|{-gh)~rBXcteFpk3Ar$>efsWax46ZzGK(qkFaK@_wsB!_gM&>O7)0uRY?Fro`
zc)nZeX#P%6Wh}-?SGMN;2kvx?c)^1(<^hxjnhH^VA=Wo{obG3y|38xy5%2E)Ba<Rt
zvc<Gs3fc@9stkNcF+@U_i#}8NJB2iGbxH2aI<3r`twZ(knlqQDV2}9XU0MjKu~)W4
zk+g?x<69v7ZNsxKbiv;%S3c=yz*sRODhde9j?%9*CymmVrm?WQ!q;Vqy!1mACgRSf
zh)~{z_8#kbi4B*zO5|QEeS4ZYJxgJeFQW{=$2V=)Q$7%ZMdO7o8-b;x6=YksCeXzC
z)~!}~bVXk-uTc^Bs{$I3B;lxbtiQFr01^=}lV;xlXOHzMx!x9avK@Lo$c<A*W<y=A
zZ?uUiucUCG8)6e*8{HuH+Q^;`8}?$|L`!>cC{dGPLH{O9KFTn#lL%LqCWgCcqsOcl
zvHXjNdnNw8S_?$Y<$3VXPE^Xk4@d4;uU{CZ9vv%?i)rvOIlJ`yV*OZi3}-$&yAHjT
zeD$NOygVB(lZg#(P07GYmHbbNvq@Ab#0jo#9*x2G3YF4Sq?k~+rS|Pts~v~0Vg{g}
zwLc@DXcu`Nfr{HglF5PDK9JMwVYJ#Hv5N=yfV9Vf)khH~`{WW$butba+az}ERCP_q
zYRgk?={WfgX0ZW5+!3v2w(gpl1jN9=L4k+v+Ol%isPjH5@3J(}OYxIfO?NNNJdbtb
zVhZgh_!`<Khl`z^A#iPH*J8)Fo-EY9BOV{+_bH4whQ4I7Gy|Lf%8*c=jZka-#nGMV
zOw2IDHG`0*?Fq*LF}-ReL9naL-rYG+4}b<Ood<^nvJ&G-PX`;f)__`dkj;}Vurkt~
z7@-l~6cq+>Jg8nH0im=>p{fV$lEte5Q@C}T-fJ4gZqBMNl0!I?3w^U7u;4oF&c;$2
zkkf#ORtp=86)Y_BC(<DxoV9>aG#34-3Kz3x#%V9mH+iSlL{<p9C%uRVPV%8C!yU3#
zeYOtV`cXlVj6F}Rygwe%G(TR@U22bY>n6SxhB?!jhIFTRM1kf-rF%6PDfPPVOlav@
zO;Jo>BASx(h)*2_Zi9q>#@mWP@6vM#mW=>Pg~Gkb5Pr!`@*{$GF1~SXBKnL!0cUlz
zdfuaKq7ymStWT22!p4kdRO+viYH{{vFICAEFV(VRYp{kMO`zhm#;momjK!L}p3rv;
zRRRYwg<^;kq4-yIIJ<kL&qbSI+MP~z|1XCgkoB^HG+8eXvTmh~!Gz^M5^M4;&}f}^
zvg_kOSlUas*B2pPV`NRwd&uTN%K+3EJ>q7ly$-5XJlvMPZ+@i5=eg@IIPs%kp-qPY
z%M~49)FNM%83mP&EXIONro>R~gzxR($oB`b^!%yum>lWPD_y1M@$uDo{)#`ET=G85
zM)yJeP;3vY;xU<?a=*8e0i;{otOy*2$cN}2qcdS7uSg*&2yMs%l6NKP;&to_x|~0b
zN@^iaAi8k3$jd~;OGBD~is6CN#8eza$N*pmL>4j1C4p8?BuQ%*e6wQ(`D?Ylgn{bf
za2-kvnA?oinL1{y8e;^~g{)6tQjitsNn@P4e~nQh?}*|EoAjlX(gK>?6yuYelA_d<
zr?qRfZ+=#(4cmV(6$Gd;g}|2c$OrGJl&4!*JeCk(D6lnVuOE#*ey1MrT|N3ZlA=bR
z<-a&`x#1_VPf~LLEy#!G8PF^P6ffd8GQgY3Bv8@j#8XQ2sagUG=D6DTB|+t}*Mms^
zS`0QrQwnTd-oFU+;W466IR+kUID&SOa@o6Qa^N=sxGYxp7L7en`Dn>NW*YN>*vv)|
zC{xvGp2-`NO(DT-v`ODb|M5rG%<3}X*@f^DAP46H^6c7T&EC-DVb7g|WjlhsaEehI
zg@UDNckP0%Ak4EPx(oAES{pbq@=q!QETB6S=sw&zJurw-f{Xh`;n^Uq<-ow=;R@7D
z1hS)L1_?refQzdX95OQ<FhRXTtU%(1{`1<?YTIzvMtlf_`53vLP#cUDSnO-8(4A4_
zM4MKH$Xk11gnWU;7J%9Xt|+S=w-_#9%>p8R!Dnu8uUk&Py?^E?3WvMhQ6x6L^-+yE
zj07?XU4rYHf*Yv=K3NfOQV5m1f(oE%O;ccvv0-1m>xvlkTKQn2u`n`%n)QN1%84iJ
z`1Qudxv*O)U&eY6y0-{v%OUp5Zltei?S=sj$lRaSW6_C$c>_(v_9k{cgC}&AZ?xFK
z3PV3ey`KR>MN0&kwM!pH>7rW8sCZQFWXOBUVlNy$qq#>{(IqPtl{a<Gg1#`H0A?QN
zgBReaO;$Y*Sd6Vt_;s+WMQSiWz{fv5gHW~p(eM?e9^ryaR?=|UbU*^4QuLvfoZ0@>
z=1~G*yf7AOlEh-r9Fy6A1z{D9jaBnD^onx!u1h4caZZ`nu(L6)a(z>)u{WbDSFIT;
z4s*b~(J6!cQnsmPyEqY9=)dgHifcbsHh2_53!QRyY-=cROGxw8fB+_i5q0c&9jQlL
z&W65@Zj!;!c+7A<xI;SDn8}HiJ!|C#|B?TzTnpROwvyE#Th$Mg2*y_%*v#3X;$%n?
z2hnOUF7l2F4UV#`*1ciLcI+t2PXt~^$}j(8ECOxYcs(+f-P`9m?>%0IL3e8aQpYzv
zlh=ygOGlu{>l~Kr!fccjkz(JbV8rZ7nu{5$*gD?Z#~-Cxm`Z_=tM=wSaL2BfX3uvY
z-GaW5E9^_+Bytvt@o<Yrk}lY2XW~zTr6<aCGohhimVkHwFG2b(cJ_WWetN_Yl-eZX
zz-2UrL+(V!W;QStc0HiZ&kh&*`~3(|jr8-@U0-U?5M)XFuShN8kwWqx-=wV#^xt}F
zF0;AUzf9FGMWq(h|4~m~|K5||EOGsN55DyWFAJO&BB3PevOl`4HGquhFUE`@9f3`s
zk4{gQdN|);JRgCOuLplHJ1c>ixi=LomxuC!_`e=<JU{Ni;YHVC7|!2u<e$=c2Yh9?
z8O}}EyO<`ZI$<Y)n|pUX9i5&A@BzQv`4KrfG7+>ozPtZ#56>;20Of+1CN~(=6vhL3
zqa19hsCvDb2_+E^Z2xrLQHqef3?lcC@pKe*2d70mlL=J2a<`toNfq=Sp28j)`t#k#
z=M}JOqD`f3eezSa>o4ndk#xrGGZlH+gNR_0{Hnr-ZLrX{iAoB7_qwmMH@XCFKHf=R
zs)PSJb5-i&Izs+B$?LGmy$W|uYh4<rCI3dJQ)+kFvz>)n%ks@hm?#riz)zRtEm&T%
zy5QJ|D72mlY*+={KwagV7Xbj?h=i_QM`Z)McI?bGy1y0zP^D)<gcE>gg@W22musc4
zV1^B3!opz^+mOw2Q;-k=|En_P0tjP~7`81;t6M?5Rd#10Go2D&hm5%wU<OPOCagh&
zrD8xD5VU*+&e}#W(_c_{YBjW-GjJ$wKkeXhWF@Gcb=4;4$+&0LC#mL}d<;@p6Lh2N
z{^nYBYy#}H-9}^|lODNJJg;DBFN--07iD?_%Urb|RQ#X`cZT2s`Ygz8rH5*xLc;Wq
zMpbTlHsUOD7HO)2+_YXx2dCL)MQy4JHx?fc^TX%^PUy$;$2W?TDQ5S{PnV0IF8fbm
ztyoJxR$8+tRF=R{LDG_~v7k`|>|OzLi{?)o_Hde{4YqO9(8!9mA6AYzG;j=<*6-RP
z+Z=1xQKlt|MzoHOvu<TmR|I96F%A}-P~hrB%A|Xx-UJ!)L6Lu{6QYu|@2ZgcFpE<_
z4&qGaA`1#8o<HB;e|7r)*-|fu11495O+egDGJG~=n$KjV@ThCjlv)-9PeSG`(iG=~
z5`?2aR;X(~7VfilT}Jq>D#vZC`vu6kPY5_o)%^mxhmWu2Uh55#e@g7U=zgs)L07fO
z3q%Q*Uz?T9){v}{PYT#{g8sP>dt8bCq#}3bn)|UFiclKO(+rHI^`rts3T8}O#SISF
zy29GJU{EwYj&u644DZ#~U{wX*fpiHd*h+CEuc&>6AaJSuSfTxCNfwaWisrz=T~WxQ
zk3YU?I+vD`JUU_@EKmuo5|<#BQH3*LkQhOG6M~kk=UD17kb+fRF0qW`OZnB#D%dnQ
z)ca`r_N00tnt~$LnuViY)X#VXh)gJ~&hMiSHE*y}>f{RNYxeDtyzy4`ZK~}fHd(bn
zT}so*j0iqV8FM7~X_dt*+c&}gol-w;6AyWzl&8&MG{N12R@_`pJQuFw8jtN!^nrNQ
zwassbMO3(fk&%?a+pg!-O!D!AHu?-KKKS#2&wZW2*V!*T3-_TrY2^bT5^1BlaileF
zSwD{Kq_ZD}_-E|LiXtelN`^%x#))MyD+sF0p?2Bq)%*IZch8A4YxkaNMzqrp#A^VT
zFbeqc%<<Kx8!iJ}2_z3-Q<CT~TbJ1e7aWjDjxz_B7ReTv3TIqhBL1J6l(w5uh==Pi
z%b?|0&)E~Blq{t5E)Xnjo^24KVQjUP+<vtxM`Tc*cQJEZ%+6<Snp^IXyhvooP$gyU
zZuUqnz^{spvp_XDDO^%*q{B_!LrzfD5kWAeJY(jmP#0m+;<#-aIdz9zCkeu-zmh<$
zT|oUx07_lsm<J)~W$sU;g}OYDu&9ZoA4p)V2l~=(ag6}UO#DEQj-~=Q1y3<QCk5cK
z(1Yc)d)xJA1+8UGUrjLcmm>r)O5zM;2NHNigPFlKC=|DWN|S%NBQ)%Oma|K>Xz*AC
zY0R1diDn|brSs}~xOlTwCi!}*a~A=wR`nt<Ly#*AC*Z}NIS0p6Wd86aHRa`{6ep6n
zL`cV)9Z{s~lQMzZtaI$wp>geVOe7)<sZS6JWYR^OHBXYg^i5AMp|Vz!Fu;5WWMvJn
zb1(vUQzyFUzOnn@@iKxL@zmqffdD3qwg6rAghnez1ITcX(}uoi|4pc?PrWf;chnU>
zk~8n%tSW`&bzv6T6s{92W}9<D6@ip$Im;y`cAy#Gk`3gUxKTpORGhlt0Fhm`K?O(D
zP|;2@Ytn#T*R&C->dv~&o@$T;41{Dkn4;SiMmLNcbw3||0V5)$<!f3@@Fr{>Pf_xo
zK3qh<MP)0<QYn)umqhNj@s!Q(1f8{iIPTv>c8vil438!U`Uc<Kw0b<a$o>^~C1Xvb
zcZbop{fSEqMtl%8d3Fg$Qf9ZVH!EMXbpcksx7Dlf<I5sGL8%l%Vo3?(k9hbJ3DdbB
zOIu*m>uV;DdjX{O?U!j5paH<mhRb&WZR!kWvPCo_HI{<2p3Z}A_==wSx+Iwk#1hq{
zMgD_x<4DaQR|pGub6fV_;Q(~+%vbwo!~RA3>Avah3;q?5$^G-CNm$&`^MB{v%1_=6
zNk6h}e0n#nz~kMAhr4gTeI98@(QA-xZ`EQ;+d##%SRIQTqT{oQGe<{fV%tPFZlPjg
z5kj`j`%Kg#+c5$`Ap$`mgC(Le>>a>Zy}C9ExX%D;)}w$PWbDjfLITEVKjbbW2|PrQ
zLNoRj5UNE5#8mwu2^okbtWy`ZCrNvkF*p&EMkU3ak#0pCC==v_Lv}rMmIpaMh;tK0
zFq*<XX!C%=*+9|KL4TKi+!N|IT*M@i;ruX6Li0l|Mu$}@`L_mub^IO34MXJmHNhw8
zSaSu)n9~J8;iG)mU5jZi0A&~C+9E1v7;}URbsfqs+Cw!)o4_U`JUMR#;UejsJA;FE
zqJs8GD693iG5w&4c@5xdN3v*rISj4#&$5f8<Gm^1v7Pb<bTZp5t&{=5+LBK~r<p)j
za~)Ky<q2WUT0(AMPxYlgfw0qT_p5ej&7#!{XLBO2>{+m&q;G)wBo~`?h9U!)m+i=i
zQs<H^jKz+<AC1oT?vHgr(xbKxZK=baGdU#h3z>9WJzLq+P)G?R0Jty9pNRnH`Orc3
zgH}d8z$T9WPda~LpHHFhYF!2id_Z*5Zu(iiPCcg4Y#CIVK&)s6D1dEQ+LIqUo<<I{
zWlz!5x+MKtepg@|j68?^w)i<6q9=z;xqb@qD_E}o3r6nhk973$&Fa7i>9T597jMDJ
z(;oO^>KH&J*)zF7z)02t6HLKnmO4-b(yR-it+CJH=qNWwImopdoz|}bg}C{EDQBWE
zG@Y>weq8JBZM8@~LAnFz${Y*}b10cShrqFQOlzI_L9(JPxJgj>trH;iUh124*l~P@
zB+9@wjtbS$beS52JUGb->7(Bbz$kFkZoW$B2_&?<XSg^grga>-MI?2m-5BUN-)Vc$
z+}1<DhI7!ffc4XrqxTP0n4SM)AP6tL*JQc34=7a<`k>=ve-NQ+6GdnM)tMroRY}NT
zG^0cK@}?#q3F&ohRl@U`glAdu&Q)6ufOlsD1zGKZAtXv~<o0YvZZ?kW(T?bYP=T@_
zsjEA}nB`+{xo-|X@^a5TvM;Y^cmzRpGM|aXcC?2dT#nExx4G?*mFNh?-bo`P4GP~0
zFtnZ!Wjxjp(Z1I`D{!HPW|YdSy~hG6cJUNY|3Vj@futca%XCn^5gLsupC`!}WFNt5
zL>y!^v{*{7ZatBjL}s@0=c1n@SPbvsjAE8{KSpFybL+*r3k!;E6qtJU+sL9@4Q7tE
z5f&RZ)rdx8O=;ldbSNIxU0Z1-x2YJdSn+AxyLxk^gCQXMh<y(_3kg%<Jr0DaH6_XO
z!Z6m6{yd!D4(HDXQ#7!e_qT_+1FH5<pU!MTv8N@#<qKTCyo#bHMI*C2V<N4Yh$ogZ
zViS+ortLZyO4Fr{gR>xBv75<da)R~j)z>M`*cv<NZvu!2Bag$-Bs5|`B+^9L^02if
z(8?b91{vJ}ro=vMZAwn6arVJXc#bPgZ6{4I3~#qZK4Y|ZE4;mx0+`-H+Y@4uW)Ge&
zJV{b-IwkI@5)&-$6=dpd*xD@4C+0?pH!&BEq3yVhNg$$AC&XA0mt4>@y}vg}7~M%g
z5)QRA0E?>RhX8??z~ZV2Y@_hF>jWi)0KsXqG5b}xkwfPnfLVzW%%A-2Ss5FHwL1@@
zBwbbdP{%Z@8?ZX9-APA~#zafmMulW`je~-6mY<eH|D?@;(a(T*j@C(D|LOI&_g}xh
z8~^;-b0Vc>F_F?NCsXUZ32%gCb){faE{07L5OyYSp;*QUW~r$sf-wNVm%VnALpcdR
zD7}p+CFpf=ANDMOG|LL;L8Wm*=fFQ&MnRX*;aM~w_#^7e>fBBpF3z1qY-s+<wp8yW
zFc-dLYuadIF&;Hu+oLv<gO?S^S)5C{HTdV$aTipGSs5Eyz9_*UL?W!wy(0Sl^t#x}
zYRz4D-0YGm#uV%QYMp)_yJ}++6Qr}tk!oSQ5_IPTNt24*I<~vvy8!@NK&8I~0fYrS
z{9*-8AxY~M3m^%Hu=8#d%u^>chh{%Jplfsv0FPztO<f$Q(6!Mn76*Z?22NB+@!AmT
z+cSd>Uerh-*wkXcTKKZ+2=7`GhO0?8yNbK8S!*?^v*|6kE&xoew}n$T7++|P?%~C+
zrjzxgepNRur$B~4Ymcflu_?cP`}Mm&Ki`(aiUS$&%6d|Hb3FR3dj;LPnP2I1$YGm)
zz4!!>B(I_%h%nl2(B1=nkM))ab)Eb7e9Xm6mMa$NM?q}EO*`>binsouG+DRu-=3|!
za&UNDxY=qS76f?;0}b}yN6|HFob17ZGC;atc51N@_X+}>52d!t09Yg0WL>z)Ei1)R
zp+F)EtwSMUOc#gjieR0^k$RGlm-tZ=jNQ_VZ`<^W-s{2uOr{zDd=c!)sUOQslTo9b
z0q|9!`g@4q(rx8IqTIIlCSpaKi|JYmFxmZ0#$c5uOuS;IkGAFHK#{o8x1@~PMS66>
zg3C<p<v@6LByJ%+0Gp%YLMl}1YrhxMx(wKPMK6%PRmBr7)S&bQ3)&SMdqZEDF|aCI
z6+SXW$QCQ%Szhr8_Y+}`Xe2pMVLeY#e^9K@jTqbrEmd(3X;jsEVdj^MLqF^2XFcHm
zk=Z=2p#7v~DX3@RJ4KZN*A6OUK86Pr3k97pYqe)Fe2T`&%)wgW+yzMQMuP*WP}xq=
zc@fCTt@LBv=27`J^ZFp&S~}s3@sYIO=0t@m#lYCF0)k{CdK8JSt(6@4tlXfv{kCb$
z?IA>OzYxw-HN|?X?MQQPtq)+0$aQe#l|d2cgDv0Cv&1sGT`~6{Ao46a-&N7wh2YgJ
zd_*8xjhi$&-?BUX#nrX>$D@DT+MCE?Zi}wii&4wd(FsqQq~V$=ZNKs+Ef0xt&0;_=
z?l(oWm71M#6l6B@;*@CXaX_7^CstAP3;IS`;bre_#sDS4Q+s%q7`5&ZO!C8GS4COk
z%7r)__r5%Cvex=*YvryQe7t-A^~3n?oAJZ(emuOpd-(8NM_3aSp?FjkH!i>j@KF%;
z3~FK(nxG9b1d{ZCNJ<nK$%a=<D{1emRD4wvn@Bc=bi-*fadJ83nc_mqpY!UAUcQEL
zYHH1Gx~TT|N?i!C`nklLm@c5-SSM0XH8r&eC^ty&M>0p)bp`)d8Mdl{(N+(&A%hgC
z7*-Vrm1?IsG+QJjsEdTr>anrBop@-LR@A8L`u-!EO?e{DBnhWU;MV0JNXe$1G9%Ce
zF7#;EW9tdw^2@;2X>vL@HI*rx*553u8aHYkZ;J3nL|~EFPoOzO9sQ9i>jF6lR1**C
zl2rpmhqy2FELd>l{^~h4$#9;7kEKes>vq_wy3+uVr^5#(_`;YXDwBUH7tkUhw!r8v
zzeU;zxk`G9J*TO}>Q!O+g^ku|Rs<wotk`s&%9N37QL{||gDB5iP)DvzzTh$FX1)|E
zvT-G}l#VN8dJ_?Cd)Kd9-)pNWl&XpBF{)9~b{B=Q1?%4SchIo1<IKV~3BtPUZ<HPZ
zRGR2LbGZrm;?#i!N2OGK4a^kXR9fqRJ#!*<OTYR^8X6Ix2u?_)6=0G}m&YDF{`evR
zD8%J)(Sp%aLBO?<#-8HkaT{9D91BB%@3w}ELs|I{yGAED8S6|GEx5{urv=ktZ*4JA
zYdKBw|HOlSK6(W#_S3D44->l#i3ckz(c}Yd@#4@AQFt^>tkH9{=n>ej)R+5gl+r_@
z7&hc)z8l$FnjFGvX)IL^gvtsU4?7U^ek3t8!>X9Mmf{BG>F9cq>r%muHm*t{NPUW?
z%vkfLO=a0LtwmMHy94r2j886iD2dP(tF(1YeNhc$yy8M2taz5^E}^vX<4LUS8;JyC
zt@I2Fpz54xnO5X{)cghvM)&!IrmtF0X`)x@ZmLwsz<RG&o!zC68BZ?dH+FxEU|zUs
zgC$Q!&(sbmfLz<5!7ag<T#<VEcVLDR&#@DnnN%p*+<H-K)RPWrix}s+k}>@vZOW{I
zuodP>;jV}${4dOvQ#(mFW63kLRy(wRXfmh+xSB48tl-kz*rTtJ&<C>?qafJGCUOOm
zr~RWYehBE6pmQ{#Sl%>Dlj2AlW?f#uFa2y$)PwZf61gnru!py1?yvq+R3k}^j0$QA
zT(@WyD3VMbML`vO)Yn^A6lON=nXnACH_;lk8czF#qBp-n*jl3&6?|E6Wi*XYBF{-i
z$mGDeD_a`<C(nCf!+ILiAay7*+JeJHtxhJ8uk&=`IE7A1tlliXmc;#0!+P>asQaD<
zTAG)%b>$2uoScZ6wNJ}F(rnJ&tM^e&oUaq5G4vlOC#cON`pj<yYeL;voWh(fd42pS
zz~CFHp}4l--~zu%Gx4`1de3v~{Gb|KP1`=V<h5fyd)PgZ($kFg_-4&CBBEMjQehI4
z>O2S7-drmO`NKG<IZXxd-iKuKbgy-v?x8(~J4EV%+QY8kyRdN1cj==!m$9#$nNVZZ
zS5}1lIKf3uae=|GwT?Coz2#PQyz19`4KJ3MkBq4ML4wu-MeCAHNj=afDJqiIs24CR
zE4qYM+4iUJ%M0^?)4DEF?OTw4qCHi=np>eW4wr50W7C^Rwe)t$F34t2&Cv^zCaMwV
zg~S<50FGE3T9es@jS!g;4;)VOocvy1DA~*&%AnmhVUb`Cwnl)>iQZ<P*1s-8%Z;v;
zq>?)&G6kL{-f9i@-~m8R0;Z@~vKm4;g*I<!>ID75+Oj)gS*3U~R90OPaI@ES0^re4
z-a7)*d;$?ToCU_G!Yg>tDPx>WSJ?N}b$goLT`wN`>?pk#w_R62&M|mPwXLm<^J!$5
z53}W!FQ(^<@J8h0*t@YZUYaTLAnt1Z{7ExBD}D3aH;*oEd{TRsf*S_$DO9VUN25eD
zM&ZgM=8m3*(}EDM0yHY1Ke>Q(5xP$kh7m=RVl?D;VL|~b1)9Zr-1>I80Wj7@bSc%B
zARNJt;JsAwjefy|$uv9gQLx@;IRgaT#F7bEQ9@n-(=671PM#AiDRrU8Oq}Co^SmGh
zR=*w4&fN*;c`$oPG8ECOm4yxqs!}|TZJE38b9qD^Ls>?q34HD`k*yrN$m>&VpD^r}
z>+<aA#1#-E>Os}clP^RguBD1UDxc+mvKq)BkRTJ@dsn|GuqI40x0cCd6Q$i>SxqY_
zc+7T%66ooI%~-X?2S-piy_;SuIS*hlw(~RE#yU%vT@`R|*`oAO)IK9efO#J%v%2<*
z2o5XBaIo^Fw#sRQmY9(PTXGidcA<i!2TOpg$RZ93dtcGkr-B+yHfl*83_BL6NOCJy
zZ^lT<lP3ielrVch;y&qUYd&}$aT*#p9r<*4>gFMT57;wn?^LFxv|G;zYiTBAjwadx
zS<GT;M%BEX`jlD?<Se9D65}hb-H-s6b6d;Jb|$8^BL3neFc!Jk_!*R(fdrKkW$A|)
zh~CJ+EN|3#S)Ptq>p-+KKy~k%EaYsJVC)i%Nx=5#USl;{N%3O2Fv7iepdwgP?{?iL
zi4z5v2Ka<O#VIMeg4NEZ&|sf#xMi&KqKwY#*rm{7)tl|`ggn*UJE$wFR(OE`4Ika=
zjfJ&^ZMbwj`ssRSE!?7n?G<IjdxQ<N$G%adz}|G;*1I#MwZW}9OOS(Op({>}()UGF
zAp*L~BfTvB5Xs+F`N0T@d9yBoa+CRAuqb+p&0J2+(HdS2)_o24*pz67{aJy$Yo-=*
zl+hno>_psN5^AlDw<Q_=R}WIXaWJYQA{Z9y8o~XH(z2}5Od}o@l>}Yv?w2L(4c|gb
z)^AYy@r+x#Ey0R&9SaRQ6ZC1NY@moP_PC}3Bo4>0t$B_1i3zD$e%Lh$MgV=p`mL4L
zO=1FUMWjq*P?SK41i)FFHMwa$3v)p!6Lk|F<yB{Qs|^8wB0gJ{w)=~@QF&O~R7><9
zv?k8my-m5hsf8~ntP&)QhF8@oCBA&^niwi;G?uEwyySnHSpmVfwEMy8?u_=+VRkcs
z>uPoCtRi8~S%2!v|EeF%7F@8muicK&3V6i0=~ki&J>qATOPVRaL8U2Jk!;_PJt<Hn
z+-iQwX5_66pGw76SuVPhr8Yaw-mB`#c(6l57w+RbSO&?4Mdom2d*!10I;>U{9`{Db
z?{6a@vLerGvs!UJ*+VM47>fDQEn_SdM5v`%n}EBbzw7sHQT5o8?C#U9k=A;!e%kGt
zvCouwL+*I;t-D>NEq*`dM9b@e9URf<L+@C#H{7!uVI?`Tb}y6$om->%y2me$Pqv2e
zdD+yOk)_+}u)6@3CO*X_pGsGtw0tt1rX0i3fn+_7eRddyeq59yJ1U<JPg+BSC*%@M
z<!r)9zX63wa6(>bx#F4x-2%c<V4FyiLbSTGWl9TsXIA6{s)ubo)uK!+M!)?w?aB!P
zk!?SB*(`GyTo4YRO`22H-n%TQ49cjohZ6^=;yg<jjp^I?zV^%E7(AWLOXlXnt{r<|
ztBsP9wuDoGw<2#g3IchbnG?jW=DKBGbKNU>_Te8aMywVw7ZlW3x@D#iyrvi?b;N3x
z*|65GxoY8@&a&!2Zla_{B?7TX|7lOxdSSLF)T`YpMaIJ1M0~blm1a~y8>tcSZ8Q=m
zJ0jk@L?Q7k(VV<+?KXz9O2)jWx->gYHN0m^+S(L}sDd;r;G&!oBD{Ta!;u0>O4!%I
zmI&6OMQGNGPgON_i<Am)hKc(Kx|w)WItqDm%x|&PaXz|T9W0h;ndS0Qh=)+;f(J3t
z-$0EP4SaB<;lWGsN$J*yx{*ekEns0WDR;6p2rd&9NI^Fe!9&zEtWVCs-HX#blju`6
zf!QNHd*pX1-KF9^j<xRf;qA<hWlvBRs4!B*&tkQ|S)Tqtnp@sYtb|06*(L|B_KplH
z%Yq$%e?D;uD=i)*WP#AN)xE>o2ir#V%1u6C`EH72rLH^JSD;<!WTh~mHWxepWFTeS
zzBP7}T66!@A7lyL`Q=1g=k9t}u<xU5O8v-p(8lvHc1wSEZSpnFt67UkVQeU8*3=bS
zZUxpdb{Dq7y8DVHRNrT(X87!D6Xj1Lv_b4`Aon%My8J*g&TP+#HatbNUkXMcY-Q6&
za(b`}V7DywTsXN={thZWD+myQ$gYJUJ5En}@JDCDk$hRYS4Gf}Mc4tH3CcEDEG17i
z^v-_RCV&;FQc2zbnqlcvx=yCJBE#818yIznOEgt@-43WFR*{IOXq9xmK}!{_T-&U-
zZ1g+?Yv04P2=e|$FcWQf;z!UL3ij3bop7*eRqf@19Z0;a8yFKoH0`ImCtQ7^SLUyl
zg@&S88jHq2iM*{fDyKyWcfFIg6VQy53QP^3zUR(;Nv^vGf>Hz8p90&9))E(Ye>!N^
zRrqdGWc%DLbT^Rqdz`Z=WKxjrNDxR;F+^<=3Cj3#ur^2I@lxnUc9$any0NWv-PpJA
z{YH*cc0X0?bk4xtZ7Zz%8fAK8z_atQVrBDhA7AE8{8eqnv_(DH>wjKO7k-R+?BAZX
zkv>(<jz<|Y7?dn+4dJ5}0fG8=r*Fn@?+$+&zq<SI;qLVM-P_NeXS@g4<)Y%>=CLU0
zB<IEAv}5TkMC?SIK>XrW`|Tm3#q0^!!9@0U&<C*zvEfQl4pRCF8N?oFO%j2iXDSLF
zJ)`K~S+iHx{#>rJ=DDaeq(_VLL1bMEzBpM^i5hT851-(%R}CR8JX!wgKEW--{3YmU
zgnBzv0X+i<8~J=HkO8#=dOl{f!s&qUH$U01rwEsJnYLgw<4>+RnEH8==<$F_HxFxP
z0>JZz%HWd<l2yC9P2x(fc~AEirY#G|E|yiTkWm6jZa?z!Hgn^dJ{J9e{BtyL?G^X{
zrJb#=q*=7>gX^y7qS;k>$?Fimf`Ek?Uh%TWeO7R;8eecf(pThf%=Y9c{5?bWk{~f5
zoE>p@RJ=eU79+2tb;gQAw~$M|3PIbZw!SL2;zyCpj`L|9uq<%pOI6SPY$n~vq>JDb
zVTW)~40+Q>#pfk&Z%@bmeV>#4bDITLGc}HS{<w@6(>sIdSRIB05!<%DQBuG@KD>Bb
zhv(=c%ulXE_0ta|RIl!p!3p2?Ic4p8!DaPeC|f#8APODId~}QCiz;rBN5T3Fp2F<;
z4V?(1XxM4&vrwTE<b1&aK)#t~0d8Okij|E%uq(I6)kG4@ZF^EryV28*phQ@Em~A6z
zZCSn0`y|zDW`GXFSr;#Yk;HxhZ4>M1V(O#uw52%oH6z843xK}&(h^QuEEK2#N~db8
zTPx^dp$?SQT>3|{6x&BA!H{ukryO%n=`rPB?h;}|LI^&aEoXrWsW{gPyfnMNHf-~`
zyBmPzJLsGT1QOXH#q5QvL#xu=l7-q}p{A8HST3QjtNg=exkzm}WqW84PabBkIg3}M
zZl9K3dwr@09vFI~)kaxcN{J1%b=U#bGGiV~OOXW@2TL+8EHF6a7g&3#uL<%8svHqd
zYXWUZuF9<RCcz|SolEfvo&^;(gGLq?l=Mmyl#7IWp&kqCZ~;bwh|q|u;tdu7GY9G_
zq`kZ?*(P}G!+jS8VgL{$QX~&P<K4_%c0#pKnZFWGY%Ab<6GoWCWnhr{(`Ue?*%oaw
z7o+|2vhL){qN+CF8sXvuO<qZs##^E{2mBWJ>X9xot_C^=Kp>f(5yXRTzsew3Ri{KV
ze?}u%cn;yNKqeE%&bVWAS5;9H)1p!&<cq%zRyj1f<9T?;r{NthhS#IJ?1M`|KMyVy
zrY}Z!AKZOxho`X}&SN{A$F@t+b==1`jZb3>JzpQ&m3nhpCzpdeIA1*sKQpqRp`J!|
zycpW?Vr<8!u^perc6b`w;c0A#w0dAi_09M+s^fW7F9vnoM|FG})$wUm$EQ&ppGI}u
zM^#<9Aey$)G0_@UQiS@j8fyOT{ny{Vzkhgm&Q`JkHeX1f5$OITOIw#});GCl0ZE^z
z7#@8{)oL=R2dD;SWBaoRBjgN{`v!cY6YJC~jxe$jjg(3ZP*$u~A&ejL5mY0y)6Rt_
zlHF2W#Y0CEF`tRlsR{B<(s`6KP|090k*|Ci9Im}`0iN$fLcyvFZV-A56J!S@ckmLO
zO;^a}QdYu#ARDTeX2LJ0mFGQbfbKpJ0c44{tDMLvjmo;d6?uxVjO&REPtiG2AeQS9
z=^W$!vVR&#Pp;f0jr(0(LCMYH<=?HflrD?a*=kU*ZHLX78zPm0l$b1-)eQPNeN(pJ
zLSj)Zate^YEa3PynGlhQ!9~qUK<RYdah;v!1s%P{OHa$IcDfBlCB=p}_+MnWD4FUo
zInk9z$-I#HLft4On&!?L8nrPho2o!owly7IALd!4Q4n-OY~<rUnJL>K9IappBcyI0
zUzTS4yF|NSX>v^k@`mKM(U8__=i})-p_?g;qhAbl@HhV3KRZBHr1ny}i9B6jha859
zVwotn1&ds$7D!K@{$4Aq2iHmNf1cjAdwl7npDd<U?#a<%Pwn@GI>*7&MZ1;OCB*pf
z`pvhe`{yQF4wU@nL3r$@ahxBsUUbtsoV#iN_Ym{5&buz8pph(i*=^#d+=nFMXKm(2
zGU0@Z{hZYJY|hqe=<;)fb43D5E^Pn2ZSxSbx!wTfd<mqFb|{}*`D>Gwq{>-LlX_rL
z1l4<TI-5*kmvAPV2Mwv2n`{Y^b7Z#4wIG+W0v%{rBMF=Pfig0@<1IZo))<(~LQKx)
zwu6;}-dvZHbzYJWLPRhmujAEM?bks$^MXiRC#Z@w`oFSyNaI!jhH^iGCI5T2*jz0-
zQRimzuCA41)-(bc!X#EPD(&S^AYKfe0$8?(TIZDIv5NsUvcI@D%$P(Xq>hrV?Twpe
zQZL%Ffc(2^=x_BIe94guV);T6_O6<>VxBuhAl^|}s9T@wE+5}idR02}X<_$J`4NRh
zSG)>CaJIi*SMOZflqQ>i7HFg=)9zs0bTXMwbi$<sf{L+ehm_tU)7c#qv@+Pezy0d|
zkFVdp{ZXNu)-Y1IRkURjFG{=4ny*WHM5W4TKd#Cj7h#-BGbG7&)zzspoPrBXaX9Kh
z<1C6hw;2;M$+WYg#8qX93Mj9&2}TY{1)8swSy7c<CXluinJUBy>1KlnbLM69twb`$
zzAk3Hj3Z`iil}nuu$SAN<8qB|rHlgc;LE0w18jr%rR{CAOpSO5a<`NAuY&XPEhuJ!
z=Tq*9Hq}JWgz}v9go;oq9u|+9`Eh&1a$d`E?C<?n?m+-FP;$mcLkh)$+S)SXSKWd`
zR0$VXkQZLes}=5sP0`($jZ52B5z$lCrYS%~3z~|Rq5P<;1y0HdM*ctwn+!o!PvYjs
zu*e}>_om*6O}(t=rZOk)|Lxn;yZ1ky6JOs$6zhV~2aiL<tIKXTMlh^xD`Ac3ycseh
zSW2{qa3;sY{Gh+*-&(eg>U=6>0-u{ntrg#a|6K<XXHzs2RzGgPd@w&2Y`9PV#`CB8
zv1}0LKFN(DU4;B@gaHpyZ2s_;FZ8x431LQm4JR14w|pe;{M6>KuJ5WD?LZ%&idn&Q
z9rP|qGUe-NSuW1CU%E=J0PO0zK>-Dzjpk`TEn7oUa`0`__1eHMC;z%4I_Ak9-V?PC
zV&6^R;UPaKd2`_lz4fqu^X~nd=Q*Kqt2<SL%4<F*DeMOrR%9VaEssPWIl9rGYqn^u
zLs2}VT(mD2)m&*;xSm~#BH(rO&qP=33rC;4f6tN5(9mn1=&Xh7XrGpIVkFVp|5WC<
zb%+Z%WRJ7zVhk!oSNVu^I8lCbuG}XuDoxc}i>9Tj%k-xdd{I_%-T(DwD*N2o<0!xW
zWt%|I*oC@0ru9ZHlE>ESqxgK4HM=UTp{F>1)mq^%1M@<8@TY>8X1!_BzMdAeMY3*V
zn`dHDYgagGFW}Pc^^+@~ziEejH=0L@D=!4zbnPhOo|CCnbn%yIm4=j3=~vm>?0VJS
z9(CZ!AqA~1_`F?k*QI+q&)ejXW+q7K;9Yjp;q0a7&o7j+VOPrLvsU({sHiuTF<q?n
zh+32^U~#ks^0SL0{4luAQHHE^w3!@!nastAjJnw&6QWZzwZfBr0D`dzxCB|Pe0Jjm
zj$KO5EZ3d(0Qu~NJQBtRYI_1ti7>9L-XWXD3kGMo4NAuAAXo!P+pT*HLGBm)N$tiP
z*eZ|@i3AgJ?_tuwl$NJrbw*kTL>c>*3<Bs*oJ4+@yf}cig$&vB^m30Iz(p){l{T`V
zNZF+s*Ir1r^jtbh7|E+4gQ{G7Za`s?St~mqRtSQ#QS*F}-?GR@y`b#GY)owvbZti$
zcX2d!SrJZo6`>kcS1!PI3Ms*O8do6mO%IZO1O-M@aW|g0kex{^Un-`gILCmRl0w!S
zAev(La3HZb%yu9z!0;2QDq+v6yR{Jzy&_3)<klGHi7Kw9<emzu*bYAsyD<KYg+#(O
zx5xut@eAACvj}6c;$a2Oy8(S$gSkE;&>N+X8h372=HPCPB;f`5KbyQV{C7r6s~fCq
z?9svj0K|yQcY(DE4s1EO0^VKVF$=9NP=HEBl?A)?$f^l?gCQ%)pj8h7QIoikwJE(v
z_gDq_&;c$r)xZ?_E*@jep=w<03J$<vuR@6od1_ZtB5VX`JI;gJkHUqmfU&_?IifEZ
z9iv*^x|!P&%5?m)I;o#vCn0x7_5SUvcmMVy3(@?23n{AdUL2s9)z(IlDHU&}WOk20
zj1U+pW+TUiI2#sfj0|{g1Qe1t+=Z0_)DH7(l^^0RXxKzb&xFjQ>$Rp$^=O)KfZL&p
z8D8WaI?(2Om|a9yiWfDI@r^@-p$r@pIhb}e;48?05yCN>JHa*DR#%>hDDa!=F9!2$
zi0t5iqfUdtLJn|OOHaw8=_JbpzT2#J*@3+k8#7`Mix>q)E9GByT3X4TQQ7+fYK@CG
zWE)@7PjS5Tf{7Cq(4eH(#Dh)I77?Px6GS~b81^aMP^2SC?jdpBIrB(!h)nQN54v%s
zWTUy+zCre}>ginP>V$SID&e;V(Wc{vSm9itYAFq!gmh*JxGuLrC?o)8D8^Yh*Df&>
zHeCikT15d-y{Pv10vc3PE6Jy)kd#2un0|7c4%m`@#U|EsFPMBQgia<-B1JFL%aij7
z6bEy$E^&Ft@E)@9rCzEOCJ<a*$jO(`fwl*}COC`+t9TvlEj)Zx6-MX;X7It$ekwJ3
zNp40H%q;#&kk4{p^p|kZK{r-Z!`b72UCQ#&WZ@Oi01}L4`TFf2pVx_6&>f|G$-Sp=
z-~?Novov5zS#jZNZ<T~pEE@+cz#T0vJc;FIgY|Ff)#cTrlDP$||D>GB_JHYtPf|uO
z1wqqEy}VKJQVAvk3vvC7Uxgoso3^qKwm<@l7u8cYjiU92Nxm(zRJ9VD=FrS_G|Q46
zo2r?Td5cNGYQrhVnyxx_M?g5rp%~43M_gbLUoL=xc#_D`1Q4o5y@HM@!+o2rt!ja~
zs`q4Su+W){0A3OQh(`g84rpC=Tdlhnf+8cIX<UA;vfi@&M^@H*sqAspByW9ovmvhJ
zL6qM@drK3yC|xIUh)QU!2aV%^dq?BhI*jF7#FaR*%cGhN{4N}2e<`<On2|b`9L%Zp
zlyK1$Y5XifO@j*SjyAp^j35zisV&Si+)tLi!sQ0!syg*H7TonJFZC$j3|`Q%9U>M&
z@F-!&sZo^g+8>mQOh8zKA`%<xf`>UBaKlXC=juoSHdAE>c8Yy=Xr<P^CUl@@-VTaT
zFr`g(r8_h9-;alPZ@zl{_U^;G_dhDGm%iHVx)dMV%gy|%Sz#IaK|ycjUbq!#L~}_s
zeA*(ub^I!kiN_A<EG2N9nj`gAW=d2J3u#fC%H<S!`B(2ykE%t}?2l%o2oR%Yet&m-
z_q-5j*zWD}74=J7h=NQUMtolp=k#P2QF%l-=wLD&-}px9wCyCze!lj^6CHL_BZ}*@
zM0>p@#|GQN`T^x5IKaEF<u+B<u)$i=mbPmBRkpLlV5n2%#JrA+OieC>hXWU$%cgLr
zz@&`6f%E_lf}MkQX|&UIr)&A9gNYVnk602aagVs)-n{vd3#R7T1w5P(qXK;EZz77C
z|2p!RsaD-~R|NqLF;HryYzdfwtSa<cP{7CJ5CdpU?F*&at`Dsb=4=3y@f>X}$sEO-
z)iz)ylmHWi@Pv#Sw37YYhYkI_f)=>Aa@)LAX;?~R9ePrzK%{pOVwc$IU1pDvpu8fP
z`1mp}#9L!(_m&|b?ARs)uW9@I#TPoGav9L3OqB%KLGmg*SfQw-5lPR(4Y4kFV1D~8
z15+D3qYCjX<&JbvCx!Y9HVV70Pm0dZinAXfG?B?8b5*fmHNt=UuRu(w=hxdn8P_BY
zG+%2R7Zrvq#)%St#U+C+(vI#F8pGMgi`ywTB7SW|x6&i{>zheOR4IriWtXMrkZz8O
zi$SUbhx2NG%*xYjl$o0$m(9VG@a@<4O&xEB{-rve*!K%ImfX>|+N9+0yNM@(0A}`c
zl>xv>tt~oA>SZ5E!wJ_B-->i$_QTfbRm#<T6H9(<*E+%n`HCAHAyoVL#<ghe-;s;#
zAm6se9P)fTXB-7|QoFxhzgtXQ6eQ}0N1gmilv9?aJm~oP?T7pKO`yJh_xA48WNO>Y
zE}t8Bh!PD{X*a$~P%MVZ)_4@vN}CRnlv2~%Mk3{5K8mOHmP*5e3P03Wezst@-1m3y
z-#&A@toLbWK{K_G65BWAF$Gp-Hnx?TB|aQGQBP)2-8id=<!DbqRuNt;D5?Q|-_g3N
z1Z^a!uvj2SZP#c0WyHc5H*&ZHI>(Oaw~&P&i6xVA>vWRNrdO~UHV~;(bwIw&4;{8E
z_m>AYJhs3YX|F2QBf4q#$|eV!LCYowuB9h2V??5++8m1?U+<!0S<`0z!s1>au!XBc
z2QoF;VsvRp-bfD_@tgFEz=|vX`~IpTZ`ojh$fne~`H;{+K%I9w<MYu2YT%OvdLY`q
z*i*7}iwZ!YjIG3Nu_pA~QJQ3N&WX&z+<AOvV}LLX80Uyp*e+1ezNMVd-40?4b5P9|
z3QklTI8A~+kgX;=5)O;TX!DK?BIue3p$WvhT*O~DoO<ChO#S6dl$FgCcfP*wPQHgd
z7#%Kx(Mp@c(=0{J3=y<&6uzW-5Zer#U?G#@HLabQQj-#vRpr$Th!J&<GZuqUAhM|N
zr(pQ%W@2sA?qs>2jkb}cqj?l<hDqvx?~tzrV264i7t(0+pMW99sCd%!buS>8q<&P8
z1~#H_5mARnql6N_n}*VYGlm?`IYjJrsR`8!shEfyea8SVOlj)|Qic|f6ai_QpA|$7
ziH@+KjAqp%(EuKQrC<%FwiEny#Dv_`%nA1ng;VyJzxu}EXiN<`V};n&9ziB4lSBGd
z;Jld`?AHY$E*dv0Q45V_4f#eg0qreN<YS<XyGm^12IUW(i!lS=5#c+N!>w=dtnq}3
zhvT?2C|BF5-`}6UeQu}T+YUlG6SlW)QX6n#k^3E(^9H2&J~(<|xLU(400*kgH$?z%
zmH+lFxK1XPUQj>7`Nf;?CK=Ung8t*rg-Hv{`ylES0N=6PDfvShf?uqTXb!`K7{YIK
z=W3FvU0K=4y2{&pvK=q-!~?dB&2WekHqy2#3%?n-D{54m8Cg$M-MrYZNZN`t5XHW-
zX?SMEPEV~5s@w|t(FUMt+jXXd_f+}6z%>2huOy!Am~HL9P_qOyS60zFH;cO|P?@4&
zBw@}@iG~}?)RGl@GZ1kX>r$@Hrx1?qjxsn_|Fc00vy8qR6aYwu3YPxY-zL(fnso-n
z>Slf_Lh0~Zvb*3&XOU?V2zaU3Tl!R0%w)s`)Ws!|AJtYurCXOFc3<s0xL!${cVeWa
z(&4N`c~5a%3=t(;t>6%+_$yt2i;=>zD}MOAkaZPfTkG8~{ub{cTai^b(HB0q4!;6&
zqvXe7ZJKLcPNTCHj{-*#zsEO>^(0xykqX~EO50V{At;;W0q5hPLb;flMm68)y4Q*g
ztB8%}lw$dVAp+%<pr8s9ikB0UOSSWc-WK6&HvG27rnWYdix6SjfaUp;!6{hm)P*3Q
ztb`8L()NPczsff&qxMm%RyYVEisip#pSSsF1<6j{>jZRck@Hr1Ym)ON2xkXgE&_vK
z>zzOD-1hBp^uRIY!!o%#P!Pr=bPOl5As=Ps>%oPO0e@7i<p5!)TD__|o)*jT<&Z&5
zO2;B(O&@S15QGQyyAR)eb^pB9)Uvwrw{jK=k?vU)9+ka@xv+pnUd7_jx=%<^CB#98
zTekH&%Qab5rc&(APcL5r1dsYaX^#;MX0BSRZ6`J3Yb0fGCgj&d(%LUQ_|nYhz&x+Z
z`5lM{^1?3PKFk!SPY$O%eNJ{OLG5NM`7wrUx0LVHq(uzZy{#G`wf^GuK?PC~ol#1m
z3B2?eehOvrD+h<CP(L+$WY{~1Yxf3?ev18FZ{D-F5A*1!7(e}7k#0Hn0*xqheI?XM
zs0Fg?HIXwI)hU;6?d$8K{&Qti5{p_zb*f1oPk2JW{hW_pMI#W^FQ2&oE?j)=?@d;;
z0r%h7-GAdV_utSz^lv`(7hd=hMI|ABX6xMtY8z?yUle?d2ge9HxU#s=gM>P$-D|^r
zgEB8E4Rd~dXniVu#HPOZOIBjYFujcsCr|LZnL-%vEZi|Vz!kV3w7FKmllAupsTu*d
zIZx>FYr0Ml+r9OjYUIJi>qBqPKzk%+4r-2F^E@0RY~+i{kG$*!CFqB6KF}zCJib1D
z_l#|JafxQlUj=*Rcxi%I(<q-bd6VOoE0$QI?BN{n%&f<(^1rYAn;T!@<C_g`QPItB
zvZR&RaN-5Wv$7S0>j#=oBw(8JE6nq96n%Sqq}H&}D^;=UP0`hx4ag$dS}Wc#s+7P%
z5}orSYdAC$NokzY*5&su==~`i)dzBwXQG#(7s-r0dzKudx$lDH*J_JWw*oE()SswY
zW6cV&NlormA(NnZy^{4L){3LY0UN23wiZEW>d~v(Tg>w^K$4<xQaTDjFVsjdC?JXk
zprYM6txOE)B5gr+#SvA=z9$X&;#e;IQm>bVgm+~jAQxS+t%IgS{-JV3nX(22&tx+&
zREsvCOlV(~3RZii)&hr*)JT9I6z|>g!wTUB5$Zsl*7jTK^c30i8|wB<($P$U){57t
zhFig#RUlGnq<eP8Mlq^wB<a<I!+>a;T*||!WIaFaO3+w`k8LJ49XCYNXe<<(M>SQ_
zx(S9VJX=r44{}B=1aK<6=@sNf+sFpeJv3(I0>_KPlk|8Ze|d+!InP`<>Ko;DNnwOj
zCMy5->F^<u;Mz>U8CqA(l@&UKjVjF|EPtTQ<O)dXQ;IB3spY6>_D9M^#Mb<z6l(GS
zjkuPEDP2{NMd<f}a>Pxx6i5}9N)er(5(hKzMp2<DcGm1gIjw*%bbclol#vCtLGa~_
zH%M{<C99J;qRQoA>r$y*azs!+Sewxzjc?Y1Rlim(w<Ye(T_%Ru$UjVGFv-{+04%7z
z6}(ik8N9F&7n+{noxoX?9+l7@Zj#EihKJqUNQMP><@~4^<(40XAdTkxx60sraFfP*
zQwh=ODP*kxB>+~FgPB!jE{KULbsl==Loyo%{?RI0MZhjPbpf0L6%UEeKHRiYXMiE-
zV<I@rU_3;`^C&@<;*lbLO1q=HeYNcmzeGPe33f5Db^q||Uwrf3+k@PSpC7*X%ZK;h
z|K;%c7e5^CJ{*qv;Pp43|Kj0`56AcK{yZFh_~G;O$zS~C<>#M$bNAI}SKoZ`!xuk%
z{>9bBSD$_Na6deJc>ntF;j>>q-n}0VFaGkw)v5jYweIlQcW=MG|K|1E`>#Ly#fuN$
ze|!J#o56)4e)-GK4=;T9#nn%p_Vv5NcW>_BerPA2UhHo!+WUj<c6{;qVS0P_`1+3u
zK>hWvfBE5yskP|+Z~oX$zWVs$@!jjMhxx^e7sr44?6Y4TuO43<uI^r(uHL-({BhbZ
zdi9H6+@0V2_H^&N>civx-PgbT<!Afze)eK-+}(8d_1C|BY$x8ne)w?z_Wu1Ze|a|@
z-rwJSxbIiE`oBI-ujSDF=Wjm$?B$pL$8SIT;;(<b_~^gBfBkhk?SJ{KJ^sJ^%fI~Z
z|NNi->%aWw|NQNj|NQc|?QQ$?;l)Kit25u<fB5eG+h5F2eb7G%ZMeRm_wQdksuO;F
z|NA$8`0HOk*Gn6UFRpYjJ$(57bpOyl?(d$yJ-&PQr}LM*x%lPr^_!<3>dlMa|G{_s
z@IoK{dT;9R^7F&h$1nb(uTC#MkN@l4`#;jJ57X)X?H@lJfB8#~$uC~KIDhr~_=kVG
zeDf;}<HMg`e|w{5TpeGWe{%ZeFHda{|M{!`c7OOV{ptSuhtEHLF}=V4`n$vZ(~Lb_
zo!o-si;urQ{o&WWn|^VeULW4Q{inn4eej>}-rWD;g^z!AXeYinULAh8YB&G&(~zI%
z;|F(&2L8X?9scy!zaIbTL+`}jAO7$(R*zr&<(qf!KlfS)zdrn^2Y!9{PyflyyL<8W
zyVL0x7aei9?1+OpqOGONr@gyu+j%<nGyZu0;h+Ef_P@M;_wD`r58r?J{hP1eogP>}
zr>Q+-n>L^Stux!jr*B@LKHR^*=*oSP{q#NlxBG{~``6#LwfFhm)!~cj{%vdf`@64B
z_dk5`#TQqnsddF~@7iR&ydZPq>Uj0>*QXbcZIRyn{`lhXhpXf8`t5M~r+y#HgZ)0A
z>-_e^(|7m3`grwpmtXy2zG_eQ&FepYcYgop_pd+n;~&2G)#>-gKfL(Z<W_%-#~(g#
zoq92HS}#|RU;OIX__j&(*jDB@cMq+bUmSk<ON8KOZEhoYzIpMN&)S)!6n)ix_oLYN
zSN8X5gIneU_4Sl|LX9c8jUSuZ(u^1x2{^%{|8I)${3_R<L^qt_6X;!`n>mj;EI)&u
zi1SaPCmv-g#ec9-kK>a6dw(QG5TPA&dxBSPm|86o8Ru3d*MBs7fZQXasBiF}bL{_z
z{=v`>2Oo+&28slkWk>Sr4!Gq}P6cLId?4lQk-u_)2=OlelrmfvIR~SUfCkMFhYg}F
zP(%s1n-qOH?fv0c4bz|bDackI=^~H5iSu{D?2twzlCt&MU;E@a+`a$$vu8e(_!Yp3
zB7&@c95kbhlz#{`^M+vk4QJ@ry7d2V$L3{P1XY@kLM{;39UN(FS8WYc?w(@E3bE)u
z^`@N<wXg!f10N6dktGRDfqppvH=nf_{=ae6HbL*+{_*|y&w|3GET3TUcOd?7M&bVy
z1pfkmU!K7Cv%Fykq6PMS;;ULYX#c*X^a!cIS@7nE_L*FA@>L6x;j@Q+wqDg0LCmiL
zuMd=^j?S^h8Rcj#VNARuDE|pqj#xb&c&9m{cVkkG`s%WBYw_!52XZBB1Vkj-TdrRW
z$rr8;7#0jqf`X}2I4nRR3Hgm~jABkYl6Oi4jt=e%!#Edifs59mIg;`eWLg|O1y8%3
z#wtGqz@-XIDdOmvvXQ`?*u!a%4)<bpBs%K%@^=kzZUIA`#5>~ft`EAr2PK(tXZ!z$
zgcX#570a9VCT!Gd+TaUudvP%HII)KigBm>a2Csgy%`Trfo?FGR5Mt&mIsx9HDg3R*
zBsYf5D1zd0>{g-s_8dH`MyO{vP8~7JW%nMfmd@{+88qIVK8%Og?+>T@v6(49;&n=;
zev&l2rwlvY_wO%<Eu9mCFPB4kS`OuDIb;wG&U=1Z4&`z=luwt#sLlvY-i77Z#NR>E
z6L70@GMK7LFFrL}b=wZP2cC$6a?nn0-;M3N)eci!X!^<6*^!Da{3`s+{@*?xnLZ<a
zFMZXn{?q+?y8q_GkNX!Ls-DCDBwt_l=fmIV)620?fU_#AZ=i#J)LCB^XkMOr`0sVM
zPz36VM?Lz`AKmKEAOuob9+&Q>TLFZKVSrrjDt1x#st}Ine{_56sr7l6tG)96?!Rsq
zZt{LPD`JE1{Ifm#{`DV^Khd=?V{{6DJzsse=)N!ifvGG3=Kk#yc%Qm^AOHR7`g{ab
zp?CPd*?X7fxQ(n`_pcznu~31$ATzON4n~~dfF5-O2YZj`5^d^q$?_I$_G$h4vz~V)
z>c*lh*;2Rq5|&vg6p%<{u3WjU??QlFY3o2h&{hC<nh|!Q7CnbPSnU}}@5vh8!RQZ5
zuM;jaxWe0yD4UkA!!h+92>bFF|MtuC0sdj-4K}#jkUBELr%>zpaI>?)9XfLu&Ij}H
zcSrM_o<F>e2s!O^jUL|e)-F5a8RN<`#?CWFAK-Bv-0_HK3{Jp9=NbEX8CISFQ@XHl
z7~LQ4ce^uXYWgv`GPPhwON3~6)!3v-qcD}jP03E@$E2D^<iZM`0BJeRu|38hSHnnI
zvQTcdUEuH(YN+-Pc}S?K^XNy~Yf?W>@d@j3zQXA+_e!tD(P|W_;>RXEYxyg9xBv=9
z;n_KP?*{MPNPtUbWN<EIB3YZf{)&_h+LS!jr1?H47tTX!1h(7jyPaNk{o)aMcGX6O
zXJ(;lDL6$5Rd%RWKYU-RKw?V+V9<@Yi!9$c3QvaQB4LxwiuxcZUV*Jx!1W2p0pMm$
zIXQyXM-XDOjgK7b?9k6{JzHWb{r=4?45ucr7a4UiOXuQG9sH@+>ZIu)K!jNvNf9iQ
zGE1r|ug?9r<ZDu@r{vK9gh~6a*)Ko?VaY;O<Kyn`@!`CRV))T3Efd$V2%T|?H$o7f
z!<FIyqQF}hnNk-F!?Vpe5hJplFIQY3EhAAML_rBQv2vHR-Avg*UMFme!j@*)zm>Em
zn>&_p>J<j1on%7oXTl*VsF6KRj&MN*TjYfd^0ZE%(f~Q{g$VOn4O+p~FpH)b`79{K
zSt4Fkq-zyXLWe{gQX*V{XsSr~2Z=Hg&Sj%Qv;wvY@206!#%UJYt%Ap)Jfn}{0)2Re
z6M7^d$so)>0-lI6OE#oJ7qv@O=fQEZf|72)nG5pW>3H#go3F(K<ei?h0}JtyxGCk#
zlB@5LA8`jPlMMRCGa?SpDXEZ&;<^Wwm1Tq^0*3N&QjcVZ{tl^Qje2|c{;y{NXj4?W
zLn0`un-p^Q;PoR+Nnj-}(O2}M`8gP)#6c*^d2BZzDK{x!X#^-+m11w_e8&RtI5X4V
zjX20&N~%@Ej!?jSB|dj4x88(${@a_~Yo&OdCTiTh_K;^Lp}iy#<mrM$bXh!mY1bpD
zi~En;`UErAWifaE=tFPV;NFhB$5OuPGkC=GRi7|Y2P1!x#xD2M<iGN@ry>C367y3k
z*CuGDa#7GUUUM5stW^xR<ats#OufzzDb=k`BiiY=LBBoaY-=oCl+nMh$ZENyYg=Gl
zhW$ihmf%kiS6*%!>y^qoWNff_ws*VxpI_g-KVLj4t@(E)KVSt6@pFc5j_j|Wf75ET
zEHX+dH4Sd^2U7hcLtHdljzxA$<?2a!q9Ts*$+6s8pK0+aE{I`D2gN4I-X?Ki9W8|T
zbJP7)J+;Jxwq9ZuUw{u81>!sYGUWWyGNMBJSAD=}PXG|)D?j4vz66`y*L?yhN#&2k
zx*h2MEZFU6Eq@9L&V&nm_AS<}mjdcYCDKZ>z8@CapoPYN56N0}?pW64ce?nt5BJ;W
zp0k=?;8;<nyqccROswnN_|L<0&h^<h?`5Qwg-J*{<zb-<PtUkm*t0SHdODBK1*ttJ
zJIGDvZ0z`#0h2KqDd-Nux4$9Yy#Yir0bt{{B~?)=y_oJK)c#amp`f4xMLp`gnU<jR
zbvH<Hxo#c%)w-37`;9<Z*C1@EIZ?y2Ut8P?FeSfHf^Y>PjTCn!ikbMW`0@Y-nDmp-
z!tXQ?)J=buk`4l;Gm5Gp_xDR>y-#>-y6u$A-oE+yx5wvX7G0{ug5552c<uYo){2ez
zrNzR<&n<!0K6OS-TnOdAi~o35e%W1`l&~r(ad}}#A58Xqs+X)s4|0TDn#fwX>vJaA
zp1~cLraxaAEqg+}DDS<MW#kV<IsY3^{;zM|-d~t~&pA~}N~#&~0+Iu(V*%`~<T@~>
zeWS={0<?FYk;$JIuBD~1w{*egJ_}O$<j+f&dOMdbpZi`6hh{Ec>F;&XKrQqK%EshF
zdjxCtE9J_Qf2{TtkdrOxKbg4R-~Zb45>|iRsV+26&hlk@oZ18FT5anlZg+_W$5)k!
zdt6BJA&=~YrlKDx=)kWT{Tggcg8W9?aA%EBzvq8&qJs}$6UwkFKFAVdIaZVgogHjT
zk`Vg`2Dm%y&LA}$MHyH%qv7!613Yy%Sn5vJgBuK74@U6WTEp(l5bq9`Ftj*+yF)Ck
z4zc`iIlQaa?u>w4W}%`0p7vXf@^*ECrS3rAJHbdl)7YKynds!c_zd_ZkS^&Pt2->M
z?y!H)@s-E!Y;axnh|!tvwfMx52aHgLbmRfsulyqpAN|0Y!-0Q5x7CMrot`}WTd{_R
zyZ672Kis`P_k&JtavTZe$Q$R!i?PLnz@|W4mbL{C7_n^xSPbnXS^w{U(VqwTK(@L^
z-V$;_{35mSq?!bh4D+xyeE5U$6+Qp=`at@_AMXR2*vI;SE#r535KW2uGd;i;^l}e`
zsIU+C+k%bN$WOz^+y9y7e5Dj}>Ap31HaTRP6p2xV1Ct#;(*Hf=lDD)Z-ZFX~I&Jkp
zwC4{YLZuP*Lp18g#^VVDxBSP)qkfbqoP6)Mf9=lvXB2!E<+GX6p*VmaA0TL7!k|3@
zp(R_s97+P<MCq=5NBy2W^%UE}<X@+u|2!Uk*hg3F?_6VsGWLaj!Qtn_59{4HJ2sKP
z51^7t-F20I>}vLjF~CMD7S!~bN_R=3ncqYpTc{m7rA=9^4T=RX5m?7q>!-Bg<!fsY
zrU4d(6U&7z9{Qa;v6}^UI59y2F!mP8iAlgO9{Qc#3eim9j>0k*=+TsAcgX6W1ZyvI
z9R*Xg+DMK_;{|ZLe7Bma(viVv4b+vv=!Ca_j=gBl-!J;z_VK!yhltmGtD>Gn>5{k|
z^9?15X9}0%k!`<c5bE|IAJ(xC>&f(;*@KopY!7l08Jt80Ax%;}4r&aa(7?;)pfdC;
zxh)@)iyS0c-RBj8&gy=ATOoY(diUm+AKu-)e|_f8O|h+(60D>m7M#MTf!U9zk=dW`
zm5J?0QTrsX%=c`uCM8_*i#?A0c<(|RyF+d4*X@767fTxCGxyD9cMsQ%T~y(!u{>me
z<S!ZMLunU%iivwx>1LIAd=B1i|9ZYFg!&B=&f6k9|49fVpq`I{loy(in;{7E6<{=I
zLbr;>dak~wcu9R{#a4>UKp}#|By^nWMUFp!e_!z%H%ah7DJvwH*q0<A0<MI6G_LFe
z{PX$Bj9Fg)45?l#uDkQe(WP23#DSQFgN%IPS8`xp;=MgR<~i?Gf=oA2T;R+vM?`#|
zK=iSN_S}*`PiHX^MxRjz&WoLkc#-3|(Vv<kCY&9&rPiMXT%@TTpFx_R&Rq!F-FELD
z?_ZDGyI)Aodh_#7=h9D{?$&Ae2>*ahT;v}_w0s`_z!zd%?bDa}l+V}fQ<Qo5gl$;6
z)JG10A=RxgZy@N6kkD|WSGU&{L8*^O3(Z67bV&LL!GtO#0uV5%!NQ%cg8LEx9sduG
zr)&$w8kYT%?~~WGR$Tk2YF&bRqZyP9;*A!7V1gE;7EO?ro<ZwX1%P4cP!hamBOq)L
zR-3XB0B#Wg6kri}GYOrae(yDxFZG%?Ioj--J{$jmZwcRc_m)h_bJkqvl{Ke$<tU62
z$=vYAo&-<G9cykuh>T!Ff%8!|=_(oNP9S*zug)7lz#Pr)L8wySm9aqEvHV4e5Lt;0
zd~DZROkpDFqY5%pMIq9awnv~A2BG^nHq2bK1q9)>O?(H3JLn)zY!|Aqq&hS9!InY%
zAL|F(#4PYRkm8yvK3?z%b7UNS{se`r6p1i-Qi{^rGkI0EXjOb(cM80q_gV<*6R-vX
z2yAY=6I5WkDylh1fFSc1n=GTv2Uo}{6ePwZ#g>HkkSOqmGTAsmTI47!dk*>u=Se=R
zJv8H#8&&5<_MGXu<SS*GDTd7tO75&kNoyy0Xb($yYOq_9Jp``O<$=M|(V$6LX#^Q?
zlLW$09@u#<Wx(B*d{N@E#fNbYaf;fyDxOu8a#60WYdcp<jfih}<s5CVDZI*7(3O~(
zeA2kbpTT)Q<t;s!9JtlR_I>aN*gszUWcXgc`}OfznY$iJ2i)5PK{(vG5mpc+zH(_!
zGHZsD%$l)Z=Kti|>J^y3foA@@;{Qcge5csQvn<%DDKH!B1-0HxQI>aw_3PEO^|>@T
z3)(cQu0_bQ(^dhu<43y!-#CE<ISb`l#Kgmsx*Iy7OvwdZVSl)`X<H9Zz=9hcn$~L~
zs*F46cb=gr>3Snn{IPi=8Tu=UHJ(w)WI)o4zCL>n?^4{_9z~`q`q2c?syTtv;Qb>y
z7Upyn0UR+hbs#Cm6hcZxpF*^Oi%r@!v+Ai^x7t-!DPKV9z)M*=)y}i3XKfev1u(F)
z3vaBdL8+ni8yTTVVSqx$4do9V;WP@b9AHy|$1y(;Y)!;<x&f917{XZu7zA`Lu&JP$
zAfj_u6x?u*(n0^4&~|pALq>+1Du>Tpu8L5svI-<Li5isyO&7+d3iwg-xaBf=CPGma
zFj1S*6RJoL&Bjk`$KZB#U>u=)bRy#V8M-Xnyxb$k&3A&V8$f_j?Pdg*u=ToK>?Xd(
zhUWRE@Sjn*(}LmmH<qff>lu-ur$u70pc~9IS(GlO32(_-kN{6Wu)jHT>X}JF@I8qz
z^LmwxVNv~$=ugBUI9V3(XOw`PM_Ed%SKGbHlv)`m?nv<-8$Xenj$CkO2Mb7SvlhFG
zc;vn`f4QTs@<|?W$R10cy%;&M?d)es?A7+xbVr;#ee{ox2{{wTufM8+OED!%=wzj0
zY2g%=Xi-&5Q1<8%e|CPI-*l;MZ`Gf$(^X?{T0lv(3^3xHm5nRZo~S=WGFPDxnJQZ$
ziRft&N}6z>AsvGw?y)0EE;{<_S55tjqhBP(F8#RQKOD6`99_lIomHe9Yr&T;barH5
zAToTlFernun;76_@j|+FJT@};w-fW!yI=l(9zMIBJz2{(oE!j|wvQcY8Lh?s@trG(
zK6eRNxPU|#h|&4dYCcN#N7VfGk`dsReD4<Tj=Cz?Cr7)oce1%E<x{o&nm?xPn{4`A
z*$=Tv+i&r#^=I0Cm`t{npWWn(St;%{&u(+Ge-Eua#pzl5B&3t&mx1J1C^~8i<Ge5u
z#;@@4Bw`(6rZPgE>kh=*BBPIe9Cbmz`jzPQD_zKieQt04arxTLl)WkK_nac(f>UJJ
z-}$+Y7@Mz&Lb9OI6SbHDd@BK{uNqWEa8^y;MESM}D7kt43JS7<i^#uf5^Zvv_g|3_
z=OQRv@XosBd{!n?CNmA7T+sdccR<8df`K|0#vzU302u}jPibPcE_dJ-6q)PzSf_D;
z5t4so8(skAPANtqsD@?B>~xEeQkNpl!`3tSj0;$WOH@Uo1^n__i!eMwcDF#2`O!qe
z{tXI(rH!gBQKYS<^-G&JlaQc!ZLr+{I5ZN$!4v^e#B0#M!8>OZKa4h17=efucutK4
zQ87lg)F|Y-xhi+h20ZJk0G_If$TiFg4MbOpifC|P&;H>nCTQf@`$Jc=-rv7|^Xo<U
zmT8feH4Dp9jv*>dpdhTCA%^@V2p37$4{X^oK(fekbNONRqZgoD^vj3uXO*6s9!NTD
z&rD<4yR(l0I9Sp?ywx3uJJ+=F-24W+P`^Old}d&i;XkDpbFSE3FU4Q3G52TjmzPY>
zA9|er#V1hl=X0JAF6Zai+`fME;lnfN6Nfe4@6PMiJnZ-7kK6mdGW5xcGEx;Nh25d4
z=s@f)1&a70|0P7k9hZ$CyLRm7b<Pivgr}Pzms;wU&89!wm#*Hota=A(9e$GZ{9)e-
z9c^E_c<AT-oDS6ZZvXsY|7S~UYmAs5pdKUUN%xFiChhX8rTC4%+Qn=4?XI2dGq}D)
zJ9K920g7$tQC`_EjV^OW)~8##PMwC2CuX!$E7+Os3%>aJ-LEeMQW)j!ArZ<yCE@|G
z@#{z(_!NPj3XSn=GC;OaIcn3Re;M?}|Bd@o<NnL&Uz!AKHkb2lCHKS_qR0|ZwL2NU
zwx+wQ+6qO2b%0I&mUx`$vm(k~3<-`@kluFi9hB`RW~%+vmW%9iTYoy5`^Mu3xxhXN
z<0bIR{=ZEW@#GnsARRmO3z2qb7<x3>sog|zDp}+dl7Memea1E-u=-h0VXDonKV;8y
z;SDu9wd_ni=UPSc&C7b!*srGDzL>Z!8V-L7wE($_FsY)tk<}U{AzhUMqO{~hFLxt`
zpfdMAe7o7-V$wC10Q7EEi1hm9Tbb-s{b=&{m%+oB4>*BM<t@UXKY;eC{`1z0Yi7U2
z?^r}3KR?~?-u-g!H=XXMXAZkdNlXWq-7{@ub=rMq64N9#&3cL5hmb6ge!)BTLa}HL
zX!sa1Km#`FnF=l73C=;fOIE2wBLcKxvV?%N4nm};fQj2BlQB0FegXHbs%VqvrC&Ds
zWmmKd<HOojR6jdYaa+kmZZ;x!YMObQ2jLL%-qUnT@x`<>5d{bZbYAjwo>Ty#0ZnYO
zJ9Y<(b>_m*NwBQo<s+E~>W~1YUu0CA>=sOfCQ7T8i(QA}Vas4z1X8zn6~+l@5EU%|
z)p$15kGg-xO(=kuyl@$^{^W%Xc>0`fJq$>EcO{3>{(pv46@QQ^HB%Xpj!~w)$M-B=
zc{_>A)tF$Y2>FTPd=M%a164Tq^c*w;0IL~W$FwmP2&i1r0KmSKl7$FEri8s(N;4zU
zW`|Iw(B7ir<G@iv1vXm!iNK`T1LwSaN2%{gr5pH|`hW0;+~y<Z_Bqtc-8Sy0D!nN%
zAhZK2o>bq@Xz$Eb{#?N)LNjII4;kymrbMZxISTG37R4{k0`ZqIs6kEkVs%N>hMNJ<
z7y5NpwZpiiE8Cw;jh<0(DD=m#i@GUSL8CrIQLP&dC3bkbeG%rnR!eGLKEC$if@Ip+
zD43c>MPIwqA6T^NQYd$zFAVzQ>K`3fIpJb-HOrz4oQ{zI*x!nni?U3H84oWj%igRm
zDo5OrFPiMUOPz&|XGCS3H&&I!pa6%kwHGOCB^gN-Cl&B~jMAYgXozq+z4YXCm1i0F
zsbXGL89VLiN_Z!#Ditf>L<`YsbVr6hSb`o|M?Df7cNG6^B!e!C!ckg`{syDJ0p{m8
zBRa7Rx0K+Zblg-`3(nSpeQ8;_45mqQE3*znN>ka$NgRB}G*oTrivLLDvAGGF=8$nh
zuug(cw5@_PcUKPqfi~4s^r?=yunjav_g7s=W*Xge!Dv1wnGqI$W1|Z_Er~xC6^o@P
zis|q&O_m8TKms<^`-b)#Yk%WGZ>+eG`@f%;b(xA+OKsS=^BqDKreFW?m4q|jc%S&C
z|8c^qs(mSiW?t8jAD>-m3OoL*{GC{lr;1j|9ISkQ@`tyvQSBXjM!uS1(LnN0dBDbD
zqBud>my7}Kv+37@PebBdpvWhKjyBHUJ!@Hv4PDKuV3BHJSpio+)sylqM3@^pw!K7;
zQQ`Se>kEyJYV?DKP2{`?vBkJXTT~eUoX9F{{+zGK7vQ1B6Yb~3@J4@c+!?xKz$BwP
z7>ui21rJFH2QR0owc`)-UE%Ndmr;+VDlwr@hDyby24Ic8lPkIR{u$8G$*=aTum?BF
z%iZyB@j0r|>An6`8y9?FHh(4<WFte2Q;Rl))UL9PoeFscMkP_LN)*7-=`={d?$AH_
zcqgx+kt^m5@T(}RJXO5y`o<1jOeP{}T8nU^;O){8mDD!I%|NnJNbCF1D(_Pq&j=}~
z&*X4vUhZO(xvzgXaa+$Z-0j#IvjG0@QbJhwzy2hA(qv<YFuX`kS2Hrwf$DSYR8QBi
zJ0|xLSFN5ZYh%%_V9YIxuoHXER@GKVxkMZ8mFmK06g;Ym?3#>tO0w;gWc8xC4*kQ|
zd&WqPQ!Xq!`A7vt>Tg>H|Ld=V7^XT-7vHw8NcTIeD{`r8U0U82JBq*UptrS-69KLl
z9{q(!y)k1F+f`yevRfAidR;cEZa;ZjzGQxULy+)k?LNoyv+b790eknGh!6#wlW{ep
zsVvFd=!ih7P1uLY=_UN&V>sO}2idX%Z?%G|I~2X3{Ft&4qL8;jY@kBj0)0mfY@6_+
z(n>5$S@uJjo@_+iJCKf|aq$e;4`>3b5XsB;xSO*P*sk0^l9kym+26wSQW|}`Xn#8j
z!#y_faYa3A?QrM**@s((kHqw@k3IqP_~5uJ6g&C@TCz=UpVj@;lF(x`XS;imIyZ<g
zpor!WYB!yB+E%rJbZ!j?*my}nM}{)-`4*&XCh<m=5}Vf#3iD<<LoL@)y0+V9PXefK
z)oaM?VT}dy`Fy{9c=L4sY)-euvtgV2$e%zKBn&#DypBtu9=o3;C=>SL-);db)A!>m
z*aRi2gl}SXtYddr6D*VcNM36qAJEUA2&n?*?ArE-kFFF<+=@fMzpz!cRqPK%1zC|K
zId~8l9mCj1M*#&DzJX>+EDLCj#2q#F*_X+I-;(Sr#H=ukk?vD@SoqM2-l3LW-nwB?
zMW;OS$B$wqREqeRp?}xs5FDS6XbYU;46l6Fd<U6gBwsBY&E$b@etZ4q-E*p`dtPY#
z7;cDn7evYy`^SlQSJN)<?u(#v`<Z|4yKOH9VKe)`<DM0V#1L@ck#@(;(difY<Rvfa
z5w9dUfq0`yE?tBP^dy{MlB}n!9MRmApWNn~AT@_GwyHYXNQa#{Mx}Wg=N^ZTxO{-4
zfnCP7W54&xQ;VsdmBM9J1-<krlTYHbe(~o%AtEd!2W1uTql92cTieG~z$-3BmOy$E
z%af$KNNq|omW8a3irdSYPO`Z~a=kE;%({{w4Qv>gk5L5hxQTslGE#sH788aGrmlLy
zR+Cg|2`dH;5MGD|Yj5yCf7^GjFEFje0~iGoPW`8y@JWS1F5^5Nw|=xGj7gS0f+(?u
zM?!G?`k<=H<S!^*hD)jF>#-Xn*Ude=OP(--v1WZPn>9;ucep~;g*OCzHN}$_{f#}c
z)Sj%AMD95}7x!7xJxoRzeL17yM1lxy#{Pvk>F-Gy)RR!?cF3OW9~AS2#W+C+%TR8V
z@k5l`R)xovNxkvX&zLO$t0w>p+phnHbG_(VejUqAr2d&+hUWb-2|xU(+7Y(NQnr?t
zSazEpX)aI7GVYI<ZM30C)iVaXN&E5ZgNi@**@GmsoeN3cuCc4;jx-v!3hC1H)=@Mg
zLy(izxRTYZJZxs42lh6`!&Aoo7&3PVqjQFy4~yjf|J&a0p0AShA0V*4HCAJ+Yl5S0
zl;Ehk7QXJ7ZVG>+1|VMrl~=?DE2mW%Gz~!o6BvHahVW?a;&Y^}Rl%LW@rp_d2Vgo8
z+@X*Swh4Y=zEG~xP}|r)9X13b3-O#ozv>}6B7+R_VhSSPSwW=HlO?G9kQIF4eL+kF
zlmMv!K|rpE^(_=H>Iqm>kJE@14z5kx-Kw8<hqU-fyvK2K;<VNJkgp+Ocb_rPr?EC6
zoHPkI6hWUfiU*o|^Y-qi3!HiWPoTNf)7A5>qWQ77>dyheBy^mgQ4mFr)nP&)(VC-2
zlwZD5PQ&;_3W5BL(~<sh<d1ti8J5$rI7_A4PuMT7e|$b&;Xh%zBBl~+UwBSI6+vtQ
z3DmA~sf;LoK|%8@LAkS|7x(m4tcvzR1|kHPYAw=5XH5JaLh3=#*lelETzXz*9t0S&
zp)@Z$&QKKiD_fHMAeg~N)i19KuGZ=_a!?sa;v`v&QT$)EfTPT%Q9~h9tJh6pr^w1!
zW3Wqy98&x^mNZx%4oP_p_>7*k7bPJ@kNn2dBy0?o0Vddhd66U8tGu&MgREiw9mC@M
zg70{_>w5IzZBzB~#l~n`#on;Y_>7|KxXUv;(<O65XXFT;6hZFc)p!NA(x^aD36yf8
z8`?ARJZn7q3r5*-R1le%aRtFECq!=#*PjKLwI~E6(ZBg|v~f}tKfw?r_h8y{xON#8
z6yRSs$Lr_a-|pZ4^6t&g&kZBn{GYIlDu@oZ@iIg*1%Fp7T#*!2{j(I0P+>-jVn$eP
z3lzxFZJsVeCZ>y#Vz5QKy%}je#H3Ik^?UIhl<+sGfomw#)O@37XtY4x^Ny~*jMb%o
zbalJ`X+BbVpWeK_zo7KC|0=!cB_?uE3_AqkH(iXtSYK^7ELhqIl*y!yEHiw_|6K<>
zAO4eqc82wLQ&!if`>*<8&<_J8*r=S+@3ZgY`twL(7?x=@fg3dWis8Ie5&{dpN?CYQ
zP|ZO*R@l1^t8wR6ZdsR85OS6gX9yDgC>(7s29^ak%Q=|Bk*xi<cZ&5qBaQf<zyP8$
zP?R$`%ef#KGc!bJ#A3aL_wSKq3(GbJg*MDmx6!&0cFQQ~Cz)PFw>RiL+B_GU2?_^d
zTb6-B?Q`%Tizg4C{o(A)ZGC+3twS}MNvlFFfbCD{UK<7P(g)I(kdNpJV-|hDJadRv
zmgPmG9ziM|$T!iI*|X<@i{^xqCFLx`1;eEMQrXcsu&l4}x8fSyu=e?Zq_1tyq1TSO
zQOq$<4j!UeZRu}i1ytk{5IRE=t?qi1Q`)XNVHqUB%Q#qdPR~up&n^C3+ecq|F6N_#
zuidqcQAMGU0sKv@OERe_$7vaL7e^1I-e|-8ad-FAc|=mo9jas#s_E2t^{J16SD$pi
zX;v<0!O!REoUj*?JZ6s*FPjXTHR6P#NRw%I#D#ct$Qm4i#mdV8#d@_Q#rlv5S!Z@2
zc~v*_LOmHwVS*&aub1WhmxtL1H#yT~K^QF;85jt*unP+bXbMU%@is54S5rHaQigG_
z75`^zYU}5%4adRa#}Oc`MwRq*1%b3ewXJ!hq86}T`%1wRl1@z2Bgc0gq`?P?;PF04
z9NO6Asx8o7W+9b_dOz49h@WYw8cPdT^F-u6)<=30sHTIOfd$Zyi9MX>TkFb_h-U#i
zjP1m_R+KAROB-#wUO-DCkf2`W3CCPQq&22#OciH1K~2M9jy;kFxG<UinxwWIgbdZB
zetK$K!8lEr$dY|!Ti2#|Mi4eYsX!3K1=>rK=YVOnYOG8bvzOlLF?saI4E`A968mE~
zTpu&^$D9o*^B_v#F|rUUUdA7Tf!vfbr}5t&AMRhDM~K(uTaFN4NXdu_QuTaUg{U3{
zs6Go%Jqk`egr*Yf8eedYJsz}F|9iBToqE@(XjYHiSlW6V{O9px7aF>YYdD7s5=M{`
zJ_X>+Yn^uW@$?;skG!Kbq<R|P%4;b>HRtO<i6I2DePiv=SUcLOZASdE-fr`DAIE-6
zZy4Hrw|jm6{uyG%4{OY*WQH1dC{88$->pC**()*GrYcsGbok{1Oa;2FA1?%$TF<UM
z3iW~Ps1SGR;NabqnV4P<bZt;C2k&K3`kjk%8i9S7<VlcI-5wHm?D}hpA&+~wpHuUS
z50e7l_d?yL<Kmb|?Agc4V^y+s77<vdchyT&k=3mryfG=lb<`CcNrt<GhC>KV*!9@o
zST3digxNEnTlXQ#$epnRvK`)JGJpbZ2#+O-*Y=uK77`<kId--99RMAFyMKK5_I}*G
z`{~{I<8M3Jp_io-*8luJcFpjeU!!~Sy+@%kTc#S#L~zA<({&?1;N+8}_bX^ac((k)
zUd3-5Jm~i=vA_L}(XZi%Kew|7hef~Fo3ZBn!PHK0KM}=h-9LjDzGxogpjUMHfJ&K^
zIgOb^2oE~So@Rkc>*c0N8<Bwagtlc(%0fc1GMA!sWRw(VLcmZzWprBjOr6CC1+6Q-
z5tC8$qo{1mZm9{w{?|bsD70e*9ZHgQk?kplZIZ1i5|=LTS{@u0p_l(9W(t8+S>Hmv
zkQI!hgIG9ZH+lhxy*ve+mqrpvg*Hu|l0;sC)(qDz&fDb0kx5xZ`Bw!q`?xMkpyak`
ziK;S9hpLkI@rUV10S`8vHU?4V9$Mm$j!c}Am1a?Jhen=unXV|K&eACtPFcE9zARni
za%c_N2c)1){yFyF{8M|HZTVq~;ERgdqU>Kwm-b~&h#Hxuw))HJ^TXSOyHj|N^36jU
zkfz(Ybi|)0+pARTNme@<3X$j+^bT8%`3Vm!npl>=&%(`UA3B<DRZkMnKoRl>{VWO?
zc;YSuBvPvpKxx0o)xaSmnFQH3Z#Su1@u1|jV~QkZ&k;sI6c%^ZFoK(*tO-9dVrsV$
zx$rt<0>cQa<XyoTm_2cbj|Y+@T|KAAs38T7A#2ibkXoN@m>#tJl1G0g5ufAis1cb+
zpA-xZ2VGpb3j9f!{jwjeJV5$S>HXCa!5UPsi?)5C1}L#W#wR-(gCZf2H>=uXSuaA-
zo8$gaMyzQNbPKA8R0o{fL69lCAjh0>m}`@;$_^oN#`TDVB>_#B%0^j5QSPC_lH4`3
z=JT&7A<ay(TaxCxn+3j=^*WeOb@-sb=lR3ic|lWd!mCh`01!`-Ox)5@qLG+=j==Hm
z82Y66`bCF|99-6m@to>nyQyhZwE4&J(4-s}nZ$&K>pm!uQTExJ7<ug+cUkCua&Uyn
z{izj!yTE`dDrqF~Mpzj_u7EK0f_dv|XoqPjm;)M*P>eM`+bT2pEU0sN@RH2(GF}Ux
ztRGhwl@urA<lu)v@u6&DPGbb$WY?7Xu@(ZF7CP<B=eqi}2!h+(H4dV&ta6WTsyB5`
z)<$Irp{p3vBEy*tUbqc<QSn~g-H7OlbA>dFO16vloN(Xdiwy?dv`2E8ahM>xLYAA;
zNq%%=J5CD<NxGPz&;^YA-ct#xouT%=B%v-sR1U2Y-H4t$>$Z3BPfFFZwil`T3QFZy
z9TCI?E858Zp9oj2faDZE>Pr%xdw}OQ0oE{D5=?_OOzxGP2BUj&upYRX@QvINTXeRr
zYkHCy*FB{=5|xN^ELt2{(w}=%lWc7$bi(V&ylqe*tQ;IRq#*q^=l{R6aR~IzH;(eL
zjiYJf`1EZf6NO+ifa!F@&M?Czy?m;)7I+e`3!b;{3uzSpgp>Nwbhw#w#4!`&llM0V
zZ7byuZYvT)vvZW@z(<vN)=}!*TJC9KYeS@vf49oZ>BF1o92rY~<lD=j&7Y0ik8I`F
zCy-9l*3DSS?QH8lwK!oVx9AJkryuCghwqU*jm`pZ+qs06L+288&oTB~g1x$PiRzqS
z&n4P{OQg`l^$uJjs73fhSXbJoaSEoh^9p*>c?FsN2VN1*dBt1G2gw9yOdBge6;Bhl
zDc(_$sBI1$NXvWw?r%SzgZ6}P+CG8O4*qix2;6W2^!BLZaYcF?PY~jUaEuTq<#{YF
ziv1ZhIhh1x>HrVT8mdaA_S7SExJ`%1Vk@k!reKs-G;ed)t71_&UHfT;@qk9u(Vv2I
zbIfZxdYrZEt>;AY+a^Y;wIVC-;!j8}pGWTnBo{q!NkM$=Dq%*9f&djZ8~zWb!#-Vw
zgGN?0_{@@Z_f1oZKL_83=HqzU9zRAKr}J%;LY8IxLX;BXULtPIx88)fX_5?*6$!+4
zy!6O%nd+72%a2I6)IE2UxhhG@{ybuDRi1T~)B<k|oe2sp-$RDP8|40!(O1~}qaMoR
zbtInf+pj;o+nqCodoK^$M6)J%=Bo@pV*6I$iv87GT1POCNm?Hz2gBp5<PuZFt`Hwl
z$)wQYM$nF@5IcEBvhZNF7h~@>@l521p~a52-mnC0Vy@6g6(55OMH;kMP7&i3?jUvI
z@f2tqh9lZ|F3Luq`5Em}yMIBzKnO%Qi7I6=Iyzl*$-_8>76*KlWv2^RHBAZTh&D{e
zBpF+}K9eixFw%`?#p@vp36jw_HKprD0!ZfD#l~c(J(-(OWO*lL^I0F{GL*l@^c7IM
zSoirR8p(0vlU>$!YK;+;?o5FOZS7JZw^6jH5oL>;oBQD!&LgVDCk*r^7u+-irBspV
zJ>X;$JPN{vbiErSwo8kO!)vStMa}UHcjISB4=^8j<87S1Yy=hGUEV5!`nis+?zGSI
zO;^A%!&aUwgo#;Fp+ruNwhZe(-M>Av$fdh^wM<UeT4T_k#6N;*X2weC-1r&bs2lkh
z#TX?rZ{jWzf~A@+c<LlBru9HlHdl;(1$wkHGUN_x&R*h8uD%k<xD%SC%|?@0sGcc!
z2Fa@JBv+9;K`4$;&nl@D<ew7ZGDYpwlv$95HvsUpNZSM2TNZ6(n@M;0{ajPLWxpgV
z$?O3uols=S9c>Z>7Ui}`Tz+6Vlp7@jN>mF1J>`<`mFYIeT@kWnnY^ifRul35&D*=}
z{j+`H$8UOH_<|Ay;Msq^nSn|=m|HIe@;#*&YAyicc**5YPRT_}G*nYmRDO&XfrOt%
zEY45377+Fy?0-A8ot|S0$E>SJg6FbEdCUhgz7DsZocrVpHIv)tpvZLDubZCaKZ)79
zXP@yR&T;DmdM@A2UTNxErB0bZZCgj8b91$fY98_?<y2`wcK8Tv2=Rq&>^CJiCtJHN
zM4eDnlr%3FFBg){11viYl3SAw9>vke<VeRbkOnHec-tu9sr7~=aM*TH7=tfD{9j@X
zA*V9cYnk@b`S#K+6LW+-=+=+sgW`Le+v{hL@AZqK?X~HxKQw~NqT(HctBjtOvr$M{
zb+g3&4yN2CH}XN!uzv<W2>e$rhv*`_HzqlgvG_*2_aC!j((@G)|MZI4Q|J%(cW<AQ
zX#6*4N$qzA_|LPXw-T~3Q7fTqRyGCVH0GC$qL+5E0Fx0{J!)ClP!YS0Ofeii%3N4o
zr`C>Jc3#+G>**6!=@VVvA3Wi!C_RGr21Syn@uVdx16;!YhUCsV<?|7Nyt?7W=0U+*
zV{a>}(^1M?<E@-O{@c9I$ubxp|8{?OfnU3-nc2^$t%Ax0hM7jWa&$DSj)Ow*k(?{;
z8pXlm@l}$Z$P8^w2Oi84vJXMiwU`o<AE}NB`_Cr3y;$w@Bpo^L!xvA8q}Jv$+8jIr
zaan0|KG5cuUNddKV)F5dF=CNFIbiJDe#KcFz9Ko6PL5?IM`u5Y-Yr|aeWg3sF}C7I
z>7^P;Yg*70qx%nXaO)ZXFPdC&#An>?FBxon!N@fM>zwh&)nQ#x=YzNDnBslHJ$Wq3
z3$D5kvvAkxm112Z)`pcm51-B45#+1VA?CPxZZJK&2nN<hMq-dn_*+`(pGG6?5{(>~
z#KZmFdle@+V-OxEs`5l>5;Xo7USVHs+c%ACCe1i|E+0c;+y+f*GrNzffGM0u!VR|c
zEkdOXT9$=LK{wguzA`4axbU#7Nv;%Uj@XSyd9LKHZEleA$Pig$Fc=B0rTPj<zCdL0
zih9#s)yir3yg<BY`0<J8+Q`jT+~KA_v^E0$3=_hgD7*G{?AFD|`wEs&t|Yps2(3Zs
z(@alPN>p<f&#d<!^!`Epon>;VzL0HsscU+xtqei3pX<4$zk%}AzgYowPtK43_cu=s
zIwR-#-(2|n`uZrspRy(0Hb;TaD5vtgJ__q<!?L1{F^W-9_(V0H5ERlQXQ|9Gu4i_m
z-=VaL<eHV-=e@yE%cy?_d6Mm?c_-wetXPHhXnS<6qUb}v_`}<%*bPjyN-A@$iy(CG
z`REnYnpkv_@pWJ{?cSS&A=Rd->5-!zbhwnXgt1>b`e_Ay_FSpn_HGSnRZ|-e6)Qdp
zitBo0u-c{<!(v!;!#P=xzZ$cCR!D00+B~>1F{LY;T`>c6uZe{4l*zl_>j%m8vA8`8
zQ#BMvH{@%Dx#;U=xeBrY5ZoSQc+N`e3&L%hx0+oQ?j4n#5hjHs$WN*m7V!VBvWx-%
z;3b8|;5d_r;eX}D*Vd0kR#<c$mY7(CLC$Gv@iax(M-`mYBt-?p!L3oIVgKM5y7PqV
z7C5pC9PEM2F<mFDAZff29r&{yWm4u3)po6yBnOP309JRL$PUee*}Pd!Ne+<@Z}H05
zF>w{!EHDFMax8jLVaLEXaJMT?LYDm|(U%}zIJORxM=`2UkUc{svwiDals7SA4R#-l
zwoG{{gCx1xMWChmzN44{#SOx_N9{d<m>tEr5i+1URYCQZMk>UBv8la6eL~F1o{#Dv
z_Uxh2QE#LiEcl0-mRQSO2Aw)UZrPKS`_@LeLF}K1ODQD2b@6?q9@L`Aw7mvgOD_ec
z)C&_|My(N{V6H;pMrpL}h3BzNi=K#FO;PNInN7S2ps&m`nZ{yIo7~07s>~X4bhHNw
zmC^S=Z$6O3M!;p$|9si*uhecy?{x8lq>1y?9X)`u$ORDOc^f>(Nv`2Bc^{1<C2bk@
zaH?m|3N_v;PDG-I3O6X3Dkw{97Qd9~NghV6vmpOk8a-yV>C5(TtsGNCH~8hMIVsas
zl$4+}r3Hkjl)M~~?P&y>ZroSinWR7@2l+wvXA+d}eh$!u6{kaARo6-)bQ1)^tWl2+
zx-xlwvwYz0Z`&-smc!&ybMO!$Bcs2lk`ge0a-{$TjO+v9xRf$0_et$2G*2E$WgXBE
z$;lF}C{1z9M1OVec_tcs)5Qe7fN1cKkiervP^#H&g|E|5<Y4tYW~bPo(4#~ZOPG+v
zhvd9l8!_UwN!kih1PF4IrHUfbk1p0rH;c+xw3h?OLB*5%?i;$}(PfJ+VnB$~PFL{g
z-ndE$icmG6j9OCG?M}{b9xJ(pi%oi%73mX&ul_ZksONpH0W9+M_5l><KC<brg2f3g
z>D<~uu!wW{@`6R0Ll-O}73(Be#8N*dSj>}<3??tuwpsj7Ro1P(?l&U=#fVXEs>DKB
zD)dLnv}7&c$JCzhW5fO}^aAb=?E94<v*6Wwm#PiTcQeOIWcM!;c|0~yd?_ucP<bW-
zh^TwS4bEUHlf<Y|^sJ7l`W`$ZDJb$&nQ)6&x*+P{ieL-yC_G|Mn%v}YqxMOmy^Z2t
ziO`t!&WocPMU{>Tm~R(X4P}>`KYUMxKmsK)t*5FruhNH#jOqQhZZB>nB<3Rw3fv1`
zo46n(D5V;zjluu`IDM#B^DIs^slp~ht;X749Cy!7tDUIWDyiU#ZFW^Vsu9qD9O?DH
zw!zP``+O<e;P(J|{hJ%Xetq}zPruzi7Y)8#l%|~XD%2zc6l)mZe<+fCJ;K!jvYTRm
zDdOlyWqx9a1XahNwQWH5nSJP$F(Pfl7V^#+sA^%VLN~-3{XnL7E*N!z<i8Ha(%i19
zeND}X&h1IJc>-)enNOIhy5{csG19YiF#F|6kw{9laBrwWycEU@c!Nx9Uw(DI=uQ+<
zsJa<FPkNiGRseF+JnUgm9I-Sh6g0c-YC*+Fi$Xy`DO-)zLeh|?*(JGEK6@s;Z3$TR
zu<9VD4Le5}t*bX*H5J_tf9h)goCrtvR{hy#&Pe}7yV;kEKK<_s_|IMeZ<7oXEx0_g
zH<bZ0GXH5)+1D`aZT6-;MRh5rarQ2{$#OMV#xG&69Qw7x7qhKCTjYOx^YdSyFLC9Y
ztD+)sAaNF7nP*>Ai;Pm9=7J5xhjtp==qB@wk-Ll*c<WkM3S1<>=E16vRummXO-BGo
zNM_&yRRd>I9c5Ibp&@WQMv3?O4DOnfJgg$!!jbC9HlEaI?6H!~`R|3T@LvY}Uk3c=
z8StJPTxJ7;TTtP}&IVLT8?3@6Mj&LER>TTqaFAIrisLHI4eGWl1YOlK%NqtjFkq(6
zH>0t@148M?=&IEjfrDgk`GX)Y@KqqLXKzxfd%jA7cayb}`ldLii5n-VMBNsfHr}LQ
z$8r?ycoOb-kb+j}sf$m;dg-tRP68hRlEkKT>svaZlBtLyfNJB56N>!8bN^w~4<Z&A
z7eHp6T;%etV)-dwQ4q>HEMy=z$4<R~Ojb~gTjZqjV)+JUpkQ~Hs1sel#cINXa?@P%
zwnf{=+~Z%OjQRgO-2MD|+`aj5p_*@;Ws#bxPuPh2m^O2cHxwI!1ORx8?o|NqoGn1*
zN^H79)ue(|uEXoOfOiohD|ArmWQZKJ_QVPmyi(NO(GFY2gJvdsNoHT5*CB(VO}Qpm
zd=p+mwpGY&N{Thotun{)u-S_(fevC6PJyY-(xB9tGIvy4!#cQV3ryjLbOK<wa{$?U
z64-5GO-AtMAcKg7q|`-;s*~7J3K{cvY^J==k(`5gZ8Y>GaNI`RIvH<SoOq(%n(@g=
z@dU+zrD`fWvf=9-y!2iB&Q$Pf@7q5*$`?#`W~r?CAl6S3hq0WP@@$_X4G^xx>!^&C
zG2{@GPKI@zmaX-r`dT%5X)=Fh6?(E2F9%vpV2#^@lzY>HafxM-^?#ld940FEqfwnJ
z0fysWuA6H~MPOE)5zMnMdk?wy{`S5O*4qaniHtzV^DC-gGON;CR%s#%3Rby(i~>OM
zNVBa61g0=EKuvi%ZLPJ%(D%8z&0XaZZU1uj%l&&8aBjz>EiWzr7Su4rJ(I(e7+<7J
zC(<fj&WS2l_!*agn`KH1b3NxGmK~Q-Mze(;EB(0V+fr;Z*DGak6&3QvB54Z{pmz+N
zHcI_lnBo(*%;0DZ%dA+LsC^|(s=o#dnawIC5p8}XEu>kdpt=Z2w=Nk+q%9Ez1kQ3d
z&glj|2S;0|%C_7&tL@ZORG=|X^dK6cQ;(>!cPxUH1Nke-h8vqKPoX)qU`RXC+~kb3
zshQh%ae@rk6#diNSDhl<XR6(@DAgKnZN0Uns}wEU<8YNK-#yJjJK)7-=UifRY|NU7
z0ZK_xjJY5LP`BNrm(~i2J4V%Ds^o`}B)KKtP&|aPSrg^udd?Sh9Vi_Sg-ua*uv(Ry
zpKPbV9XOdd1ygFc$|mbDWIxMw8Fk^5<S1yhf5EQX(ydJ&tYH@6o6a@Y;N#T4KsmRP
zDu#=gd1ce)mtga5OYLpjnJ?Wo?)@NI=K(No+B|OmQ<|?YBK`rPF)g086Z5|LSq15I
zO#4q_%q1Ny*ZaHe{qyD8>rk0AM3^L%(PZ68Y`j<(^CI2}+8qF=g=IQT^7W@2ZfkZ5
zY?D$68s3{sK77bJLPcal(HWuU+sg7UHQxx8tTgRIFn=ml&R4A3xi-)zsfviSq&i-~
z0jwu?_f5v?jEWt+Cm}n4f1zroz;{_Eo4^~|yu*VIHzFJ@)~(_cW^@!=XF?EI7IBX@
zDb#?ifx_OQfd$s)q?F2Kq1KL3?W}dr-ll7XBL$EKu#iAW;jySjy(EC<4ktCwQmH7|
z1|OM~g}2n5ugno_4tu~Iz(ls=_YYt2c41T?k@10>ycebOzVp%c3MAt!^p-XQA4VA&
z;TLFIP7zwO$2Wju;hWZdqmy~UzMW&*jVp^lq?%MMW2p?VZL};%@G$HJizKoZ`?u@<
z+BgMsb97}S8LS>ra$B3^3(1QBVCdVT8U{A}s6bgb*<sQA7nu<zsZrL`9e$`>l{s7T
zNijf{k{swEElOpb(6|a>$CYir(HIN$wAmRlux%zev6hGqfI<rOE_ZlC@%{ndGS|~G
zg%ypUf(>W;yD{JR(qb3+Cmw<Wi)~$Ti>ZGZrl)|U^7(9}*BO(z<!iinpvAoOZ`O8f
zf28T5H+$S_IW$_2#8&~7kFVeT?dNmGG2JQNK=GeY{g#s18o-8=4k5^P6CLyCNr~*a
z-m!ri4fl_}W!fHGz@1-A9OMg8FGdNHo{S6;!@z8%G_0s<F(v_GXcGHVny@s@psLSW
zBOr(`%WYIxv}tG)0@Xz2!CB&m06M7V2H)ATmax&8Y%$2nGgCZUS>5qgDU#B}6fV_J
zfjlVHKCdY<ZdwT}aPcZWO$r!`iA|643!0@F|Ex*fQbSW!g?QS3@-ASDT8dzbRq>I^
z(1Kqeg%-iU7Aa$9cPtzr*tq(hWMr5X53H)!joPdTk;I<hAD+V%3l*tvL8xKiqp8$d
zvjf005E2!XB<pR!n>NjqiPNWXlP*PO6ERhKSQ*;Z{aS9bYNZH?ZCVzUb2jFsoA-Z|
z!HJ^f$rwp-J=BYx{g^+uk+Rwnc2k`DRTA;YQO|xP(3IW)abmGIkiAd~0-Nm=HR#uz
zg~p;asXAJ4Ef~^7xy&l9gSfOPOtV&nG*A~MahtkD4?$w0d_a=Pvr%-*Zm>OUrj_}D
z0J%EHs{|K9rzKtAD?kzlI8V!}|2`QbGm_jo<Xn_=WD=RHY?&N)-g=%?QMY-et1Mv|
zXsW94<zSi&=7J~zYKe-Yj&5E^MR_f$DZ8LH!3$FR*l2q{N9;3b^+k8>hh9e?zIWww
zD>&){a=Y94?C)bY{H<W_<NnM3l5u~_*s(E>_{i@5$6wE*J}1w{pX8=j8AQ+uf>--S
z9yO_1RAdJaAK@Wl9-WgA%mVl5ti-v8vy#ENN9QG1vM$+AL97H!9Qdngr~}cC73I54
z*U_4E7Ge+DbC5wC1QpO1uyYS_l40c_zQTw0U@bTY8Qhp7HZpWJaw{&%uv_Oa#)y5a
z97dlH!k=*_GL4;qh?|W45!Z>ZLw4e&=o;rBVke_Bkj_rvBhEvR22v0=QI7XqoS%%H
zg*ZbQorQFUas_gjkv733a1^pCW<)!To0v#}Kk2N*_-*X`WL){l<m|-jmy4kcVk6=x
z*IaVdIS7^)u^lkLBo2v2fQcBU?bH)r4@~4h&JO`7Yv<awsKhin%h+?1$yvz}4;ivw
zG&mb!0gHn;KN&g?nH~Hb4&v-&=p4lP$<R57^OK=-5a%bu%0a|W2InB1pFHgu2@%IZ
z;WqFS6ZJQF0S5zCnE8AdJ1221TIeaxL!6_GorgF_89NgZM;SX0agH)}9^xEj>^#Id
z%Gh~`bCeOXc7Ebhgb5?g3QA_TB@DF6b>LI<z4l`an9fL8PbaM7@%MPgIqx~=CGX$-
z^l*WhDBVZQ&dKM2DCAJ<9fn61rhn|=-D?q&2=a8ras>fQ)nyhVS^oq<Ec9Up;@kI9
zLDLzRsZAi^Rk{dPpP&dgR0<+$Lhb8k@b$CPnq$dn8L|qmR8AbDfsJsRsyGWs@p86%
zsCqFL;C#l#l+i^NXEbBy0;6#O2OkorkzIHdSSapgdk|=y#%00pAa1EkDqj4U4>(n4
zGhI#@U1;eK=*&)KJK(*t^jZU*9Rl6Zsk2BGaE{r~A<Jw$TNY#hR<jQl@OBmJ2W!L#
zU4X>Kpq)>T&Zob-#PO4CG1?feeS6CoJ?0}3l-Jmcpt!#zp^VO7#{Dm2mrw@Ou>3&x
zj6)G7g!s(*Dbjy(n1$RKXN~^g`)hDr!B$T}gI4JfgyER``WpI<T~<K@kSHVXsVdBl
zH9Ak5_4pc*m7cQdCnfL&A%a3yQTU0)gsuo7*FY3|#0Vp<PkKmE0Aq}?^Ow>2i@I4A
zd|%wc1z*I=;|yzbhIJKFlno5aT@?~~)+XAzoM;DI$hrzkL`ctkh;L5Ap2zaeJY2`{
z+s=|1;5hdy2X}t0tb6!9@dTrEI~0~VXCaTj$3xDU&^b@}?U(0Tj_0Jvi6%YfWp*+i
zMB;7dCWxfTyT39O<Y|e@aFi~Tcedh;Waw<gImzH`#Tm)a*~*Dzzgu;IRXMnVtH4F5
zZ=Mp2P{kjNPKqBRD0HpE*~s85r41`P>6(c&m(ET0B8wQwfNc|AvUQmSZpt$6{G^L6
zPotzs@e^kwU33}ux|M{MY3%&O^s+re*=uNBY#vLuEr^qh;wsKaM&~NdN5;-ooR5s1
ztDNYL7ug9e7S?~u^;TP)`&=Z15}=x;+`7IyZ96O3Pw;`Gbah9p#I)&^mxzgsouzap
z(pkzuOz%u&>?~#FB3_N?SnOZ9h_jTgI-IZ+DH0SVa>a}>a3(Tzjv_X~?s83<5Uj+R
z$hdM8F_E#eloO@LnaJ2VN|fi>8On(kbwzm<SP1UK?9xH0qF`CE7N2=%Cd_8%BjbUe
zI2RfATtr8j9+&^%B`}dQ`LFYlBQ~?LlU32d9~JXg6HhMrMeaNkxnc1iz{N`?$TN`_
zC52NIW!9<`HmNmU8O_Kg)6$^b5asBnU>50OO%+;l1J=c+M-p6#i(9t|Q!;_pctN!l
zU8=xu8%KYUgG7vfTAe3UUU@?NFy`Uzl1bqzK?cT(ZDg_~cH}LIC*G3Ty(Q^_w<PWe
z-Y#g>vkEw0QBj~6Bbg^W3OZf0*N#CEz=j%(8Cq|#p|+_zHfPhw6_!%met2v`T~-t7
zci2v=3dyv(diY$t0kcYyo+%%A@QS2f8{}A(?B9aiK_xA=)l5<oMY{fspb|Qt<H1;+
z4BgUJ!;z(}$~0K#Zoey^<O0a6X)w*d({g&LVJb|#*lY~H(<~Q!et%bcV|bxe-_n22
zIGsM*HqAb4M5*`>cvT^eu2pSPHmSrJ*wiYu0DF;<q5HHZDZVkv3TNC(VMC#vIJL@$
z@09~;-I7b1+D)UszEMJ9pR>D1MuymJc?UyYM~#7bI+S}Fb&CdzUrg8EN}UjXbavD2
zsMbEb#j%HG{goaWpFi?@DF|QfB`-X2&r9FG+y3=j$1{E{9dEK$jlwFG=YhkEstJ#V
zy{NcUm=sFK+D23e$-@R3Y%5nUpkO;P!1!4?P!mY)6Y&svv_0FA0t&P@Mg33-Qk;-G
zjro@<$oe*wE4lb>Buq%e<IfmOGT$LCh&erB51G?euraW@Km-81lH!Bx<&6?ACFR|s
zXd3%6HA<346db%s_BZhSS$3bGfUHHqFROg!lGhsb^I&(Lnw-|(M-4fHfv~ihykH2M
zUBbUET-3UQ=946=GM8-;_qQfY_9fdATata$*uM}HR@yC+=u)WBfU00ZgmHGFILOH@
z3?iXJY(XZ71TW_mK_{Qe9Xx$<);`T*+5~{crjWT3k}3{Zj|TN<W@SeSrJ<5!)0*Vr
zDfeUWEM~$LOuA`L?rv8A8saC!<^bTvXRzKZzQm0gX!u7B{}q8-*oj+^kRb6TNs3l%
zQN}RxG_F%C^VmeHEk_dT<6y&IpD^gecH+Q7AXD$BQg^JTX_-$wP|5gUVy!Q?l1k_5
zkC?C+>k$<puRj8?jro*0=L2(g##}CNe1Jo8@4W5Gz2#C5ErZEl%1dnj<t@s0<=*GC
zcDa45$Dh#d;61g~)_WS#zC}{;a-I*|<8k}u@$ubrpn*7hs;q2R)2>do+yiNdA;{`s
zw1QD|_5yQ}vT(RycU{8huF|Va)D{V0Npy+yk^{`bi{Le=r``%@z0NM^w(OB~D&(`w
z?oywWUtSgwAMLx(c`HXEj?G22=4{chgUzZz=iceTebqPa<wjYVsHRDFzR85z29>j3
zf|!U2j|&ELFU&DX8#2L?`#4FEiKhrw0lwI&g)xaYGD9uVI!GdP$YI+({@5qvZ*jN(
z;C_8MI0!(Lv)@kwOVE!VKp8LrWpqMQ6vM1&u_&<SMQM@AZt+NiD`Y_`CT5cus&$T9
zu~W`&ruRv7_mZZuOBY?{7+1IEdT>TpdvB{dO#Ak>?ncG`J&e(Ts&NjiKH2k@A7Xpa
zmHV;AuWR0RpYiHR9#`jaKX|~0{8HQQpFZX;;&!vx^#XOczk5(^5^@$4u&3~4rOz6Z
zM6ZjG`{FvEjk7Vs?ol7)Uk~;K_eqt$w~0;31wYCkzjH_Z=x+Nhgi24N%oZsVpfME>
zX>LkSnA*;$&%*+AISH*%_0@8wA|usy{n#T3o;<R`xds~TEM-zZW~cY!zAqvhU0NJ`
zwcZh)m-U8x`2Hg45;^l>Ja&3N{&G?5P!b&~%ao=$y$YE2Ynf)LOKDNT<bdDF79Dh)
z5hT%yV#|v{vBKmYhRFnfd3i$U#=mC5gNzi@lo|}cgclr%w!;+vdRH?KUc#&W!Nh;$
zb4M<FMFFx<c4Qmd#@b#Xr<Td*xEP13*!kmB@fq88Q&f;M)iBA(uR5BPeV$A<GG)kg
zektE32H$}gzSO+D+8_9%XG!(1Y<Vu(F68IZOyD{k_;tjy=4F1hFyNsD;vmy(wE3#Z
zVG*H90<UdgjAUk;@#q#C<Lj>&XX}0g{yGFEB;w~MCWPlyhNOS$aj#%Ii}g#jS(ap+
z8#I(MPs=L+%WJW%cBXu5ezku3jZw}Z)A?RW1;s&b^#2`ps5F`4_v&!uH)OCX(h^@~
z8{<}pMuC+_^m*f;#gwh@$PAuLj(D{{@Ov*%(*J&|xQThGuS~kI6FJ}HNj}fkUgZhd
z(H7brnEIvIl<yB{Fkma5ZFwxOz~{GC;`RQG?!*PGvH0q6)bEl|R#X^dX*)s37;!LE
zwyeSxiTc?n>{TK}G?rrR+Y&e0O|L*(2`Rkdo~7jcDiK9*BLez(i0Kt3$*Cs1quKV|
z`U<zhl5AEJRyzDfp)j)jtM<1N>Rp5hElbF+4o6N+#@$Q`tpdgmGwPu+VB`D<m{CuM
z!cDR8fV9SZCK(`XEfF|YP2hi(ZOyh)#5PKtcm9^vFIY@nBJzNds7)8U{$x7WD+w^h
zR$c|!wQNclGFxi$t=UgEBq$h<i}e+`^fstbK3iMUDyDAouRS<W64+KF);(LOg|4(R
zhuN)z_E50>Q!GZW;P=~2TNX~W^+citOXwBScd^CH>ah0h4KdeGiq4pFX}pgcJaKzZ
zNbvBO?A@@p!k!Xp_M8<v5sV;hc`Z{hdW3XayGazxinh>v4%z|~ID$khGsD76mRE8r
z*TskdtIpIi!!pffHaamW#eTYBd4y*75Yjwb<5%_)w*4&al`QDCrUAjXDVFDJslg}*
zS-VcnUK)^qW>^1jW6^Nv$A`PW-k*Uy#2=&<&Ouo^Q3w(l7y|x$ryLA|`1R3^LZ%0m
ze9fK`x1Pi^c{&l`0#J-Lt{X3LZw+2gPr~9^o%w?bZOWVw9c7L|e*ib9k$GOJ1d)Wr
z06I_Y2{LtXcS7<cquHSxh)yAUCwH_j`HZ_uMS;sW3!3bWWa8lZR<#7+Z;B#S6flQ&
z=a3o%0yy+e_6$Q4T+;&~(%X$9L}t0P=y-LIO7)(oV!f<JQbj?j-B~VSz(4v?7tO;F
zqPliy42W_6BUnKbo!TKGICd2#XEuFlZC?7_wrCJhqOyKKJ4~uDMu_3ynADEL)5zA-
z(r;cIDJair*?5{7iAx(<xuf=cuO?WiZ70~*)~=UwOJo71W35vvDp7dRIBpyoB=j7A
z8_?@mfN2p3_T15eWQ^9FhYk-*HqE40(2#>3P=r&+AAX_lc?bB9hJO+~m1<Ec`;f;j
zLL|@)L7={qaykhBS$x1`#lmkRY&LSg>PBWPfH9h|gjClZumMctHg1rI&ACihwyKfH
zsw!vTK+un)l3D?20*(no`7CG>Pi~Y88^vF!j0o4j6OcJZ{+Xy7m^7jac15&jykrZK
zfuK-9S5XR^K6j151)*`HY8M;Q#bzZ>CQSo_R<3RHdom`gXb)S%_0JO^+~f7@^ZLAZ
zg7`N9o&w;~xeKW{CVr%th##HX@?BPXWak?;ObcmW`8psXwQzUzv&tGyiYu`jZ)|*)
zy0-dV_OP!0G4=njDi~|N^{mENE>$<i>sl^WH|}?DnG+IclE-nVlGIYAtOg)py{q_j
z9|(?YsZoL#hmf7R26(2dXN-1YPq~>UiX#&TOWk742O&vEj=@vIl9x+bBbW}UY5KCi
z=EPWKEt-}%eZdBqXy9PaqeCW-4#5#Eq~9xhy^Z)T9FT<@lQc@4GvslRk;wQ6rVjoh
z99eF42o5-9fvC$6g^@?bAIWw*Vbu+2u5}ySrr>yCV(kiSaweZ0iiCEwDX2l?N=AW;
z+A3Rn=!_Cjc`^>5s*FgIUt{Qqmb7P_WWK?zMwHMbF6BwhV^40@YMgFVjxMUKuyj|1
z&N%M#ELT3u+b0$gq6I-5vV6#$?3<PeO>(Ni6Q$^Eg$tN~(NVb|Tt|Mnj}bB<I6(SC
zh=H>^%q)`woISjI{N>HBce`^p{Ev>{6lHgNGKPpd*yOgV6hwT!0~UOv(rN4GiAV7t
z2mScOJ%fH5*VBF*wL!MMHJr}l+T;jeU{GYsX}iY_9CzmU&hdG}$9+BO&T%gXVH8&4
z*1veeFTcZwxAFx4LtiooaVS5fVq%q%;Y$;WdG;22Y?`l>sZEuupiF+uMkP~zbrv(u
z`8K{By!t?D-%I{p>*<4F0FN(N^dNpmQ=4xy1<+G@fxtd|Pf4u7#MbMu5cyC)pGHfi
zm-fQ2<TOz@=f!B3Yvb43^<AfP|1`yJuIbQ|NpBy%H?3_@CRe#l?T(`MzFAS<eT>ub
znV~#IPL}hNM^{nz-FA_u<BR;<$wgziUAXS-T%AsP;0yn^_do6K9v}bL|4F7n9GP7l
zz`OW1_yT>J$oc|#UWa()7xK9Eh@kuY;xa*YP<|aUYEatvtbiJ0Y7oTKu1p|li}7dU
zii)?!H7udCc*b0QaY?-VT*4(^T7IJI7nUD(MRj-d?vA~?qq;lNT`=Y;u^TZ31p?Yp
zJp@6Zf&K73!DH>gbJCDhO_`ptb(p9~Mxyf4^ItH-XJQP1T;RU9vcHCM?NQ^panOy3
z=t!dae58S95|tiHQ?j<bc|HDc_W+MTaKHK|lG08meXBA&373V5A6IhvOH%TK+@7*T
zJfT_~Kr8eLtzE2ib?f-}W%I1i)ih{fa|L(Pw24b3klOGrN}?IM*|iIkj|T}<*5Tzy
zI~w*P>Em7)mG(p4M=ca5hXS#aHtpypOFim%)Up2?`iY?*4t`iDOxUEE#`ZuANmLD>
zVe)(oO3&#4J?Ke)x2hbktmq&=gB%HdB*nAGQ4@Vbbe|)o%gti#>Ex(7y_lnmOAbJ4
za6}_d{*WO!@}M*@^+8ALG;c2@!EaT`M(M?IKh3F!{V0r+K!z78nynJ?vw3dQ%kyl~
zY?=rj+F-MurEsZcbM&N=uQ^c6Q2|<zH0Dk7aQBSQG)uNN((|HgBl-CxRB2wD5QOZc
zO{dcSgd9V}ZzI~bOiEX`N9tWj|9;ZakZRAJgX0_+G5xEwI(p@~KfP3p_TId``|18%
z4M_J=19VZRJ9#;H101ugb~trwFREkK?HAOs5Y~cv!OtI2Ajqf*&33>41@=E2yoWPv
zktQPK<1=i(wH)6yz@uQLJ@#QzuyB?RMd+5`2_F5+pfCP!+@BivUq=6urw`vRD$x3n
zBE|fs-H1vN=KjI#l~(#+<2$kC^^2_qVtH=DqJZq30tUm}KR)HoMFl#Z94%h+_IO^n
za}vYA?PnA4wBG^3@dVi4>)Zj4G$ieK8g601eR_uVyx;g>P1?Ojlhfs%d~`-aPO9-#
zqA_xx9++UFQxo+WpGj1|-^gt{k+@7OdRs`DJJ8uN6+Zb^eev~$<nhA$@44f%*S8%Q
zIguS65yffhgj}GgbE-L^H~%{vQytn&w8gwTrH3PO7>>zd*pmZAMq{3K#Ei%`?w_A<
zr`*C*duo#l;!aV2z5n|U?`#)3qp1+K>n8MvnZe7pnU668@>M(Y3&DX#V4Z`LZ+;Fz
z(p$^Vz&_|ezaC&(Z^?KoJIeQ=VqKVeI`L%@67Tj);%a+IT(w_b(k3zI{P%%h^nvgd
zlb}EH%<C4v>?0{)@DF{-@5yvmxYj@JCI8_Q`QHbA@du6za?mPtUL+e~!M*TI$q|>I
z8Olo!Wk-2~wc-?gZt--XFNTq;jGc~j)gcE|DXU7g$-*C%6UgnmDxYo_Vq(Tpi)RW)
zp?o)S#}<ixx+Q9Eqlzn@^5aM7OONuz1w}wto!Qx2=%x`%udK)e8!uy$fm8f*jmmP3
zeH;6*Ox5bEt7bTdc%gy&?ek${0s!7G+@=}>P<4hr8cc0cMAIm=L{A4PSHP<wdCy9A
z!>SYfb824*l5+a;1v4l--o6YzGK6}$mh4jZ<SIQPNzHwRS-yuXmw!#EaGMTTK2Qv0
z^JTHyU&dXZU2mrg9eF*h$m<<<9hIA-Z+Bu9`PKfrq`%sdev2ub@)ZA0<h)<UfS!7>
zOYCV=K3>golJ#NO%>N~^KSN?lYa3N$O*L6m>xrXOY&zan>Q|9BxrcvFdU(<#=TCrt
z_C!nKDdHLU^W!Dd>g{FNYPVqqWp{7tr=wPzu$_b&4xK1wb~xEo9zU|FoNh({qALJo
z0iZ;XAs&#UKQlCKFS_hNxD*mP5iF#FkC1;9?s#=SG*EK_F}B_k^inYBQ3i-=T!ms}
z3toh>4O%p5Ae`G_1Z=LuuE{MwZwYA|Rbz;Si&d9~W`?zX_#VhZLdnzC1CbOhqmUN`
z3bo>&f0*aH@gxWi9jHmH$3l^e1BHjPAeFOQ$%z}-=&W}Hs?J1y6$f9Q-09w<ndau^
z<1jAMRaQ<va7+9B>MtMJ=dh+?)F>Vnqdc0-Y=IpB5H{$bNl4DV7|4=@?d<M;`|07C
z;PB-tig@|Jq{1v8tuFW|8<2z2_-O{Ds4DZMpogZX`|n(O)WTnkJU8WN*8BozJNrlc
zMbKe@{0$vw?{V}?^kgpas~svSMg;<*9-J(f$B(U-({<LNo~J+G4lgK+b|5ciE3Q5%
zD1Ol91*8Vs+aQo0g2jnL90-{O6K{UNHwb8lcr;%G#p@T0x^x6I)#zDCEJWOCTM~i1
zAYXpDvK#-xWb!+*HB78{5NHS<60`t>_$P%Al>*)LxTUOCN3YWGqLA?xq*w4Kmaq2g
z&#RPFoWFZT%Z<`NsO>m^5MU|(p7u{7_ZRBSEI<6m6THfi1T6j<Q!0csccCT;o>3Bs
z$_lrAl@x{lDw4H%TpT;8(UboyWPVlFMQByz9CzRBpC!s&ytAp-7f}G(26<7BQ{om)
zu2oOSn;I4Mitr#@1$N%cB~FAiHpxv%FT9sr{?Dhxi&YSo?KeY*SB21sG!wP(NhEm%
zOm8ox{7KZg-S<jghu$^6;^UmT*F(U<aw2mtUMWV>c8|rLJs>}L1!q%Xeow^SYX<Nz
z=~_l{h**nW8ZnvW;7Y(=1*pCL%Xp{&@vkWt?C#&b`}y4UzIX&~^Qr`dleXn5GxTJx
zP{KC{Pu(Ylq^h3sG*e5U37fnE?XRp0C`ieBSxL-By<h>EOstQpy4|(v8ewpQV4l=M
zu2Jok-a5PhxWXv(jyXu_LrhMZ?a6+i5W}qSf&dtke-!dfr5-M+`6bnF2&$bx7FZNa
zG^MP`Up2ZSsCNOk$=;9%^JNf}JXoXpteS?37Nq=PMNK7;>1Ptm2Jh*po+`UT9aXsm
zAPc;sDrCFKc10Cv)0UWAQ-zC-o@zf8g|wA4Q!%^|RM<cp9Ko6+@JSyiQ$QsMeSLy8
za8WHnQ_gz1LP2#U6)Jbo+5@sF2T~eAwc$gcT^m6%lu6|s%GjUoEzRC=yNcQ24YK1M
zkOCJ3Pcu=jg>`5gjEvYNf)ZS%wMT_=Ptz>?#U{}3+&>myM~g-dtZ+2PBu>7-`+J=J
zGOLJ50_Z6!vV3+#2hw(-X=Q|ws8N+x9o6^#35Gsifk`Ax5V^z0)+D5mL|#vITt%KL
z%zfc&)}$N_BK7+P{c>e?k(CDuuW}eEhhp;_1Hx5r%s=(qIniio{w{P|nG8n{cl*)q
z&5!rv`!_%Tbe`K9wy)QOcw0|fBDNQmvgjLw&FoPH6_B-yN~p{pvg2h~lAn1zx_<qi
zSup;amIiozjk`I?>Fpm|mNQU<tmeY9QecaHW98YJsiwE~TZVoMC7ohWe0l;soOtrO
ztY70q#$dt9f!owWCA<;}<{htu(o1QrC9_&Dnl<dd?5`R2_ozB5h-JQ^B+?~M-$gGW
z+sFD!wkrE8O{2ff`Rl9G!^s;B>l+~l>1DvIBF&gGzYO7cHX#1Qu|MCRIQHl3v5Dv$
z>?lCD(!|!EIG#Rn{pydM8ADw?^n1@IqR-mV<89W~7w*${<1P3Lv~7RHc=G)H98T->
zX%hkE^M~JdKm4!%ljh@%<ld{j5h*`y(H#J6C66SloDur~p)^g!Og3v2CQ+F^f8HZG
zx0?K<z_I8-Wc+QLj(>S{>7$PKQJ=(0skjk!jH}TXP*)UI0&9${yrx!E@<qT$EpN3O
z*ltXa=px8=846R>;e(1FY^^)=9C^8nYDbsw^xoR&t(kCwX|d>OwcA+<ALOyN4Um2j
zNOQBD!M<l@UMM2O+P|vgaSj9<HFax}$5P8ADPtc@22%5tt5Jk>2z+v(%!Gh25Rs}R
zFi<@<z(ttkQl4y79&&pE-E<4G22yw(8Q(>5Fq<IcyNNE(i=+0z`<fEa?NVw{kSYd3
z9n#yJWqwVvC`OqSy=b`!9vKjWjo2lr0J=r&1FPArLrk@jf9-e%3}EmJI7fD76*yED
znvb`uHwPhRQOODRAz)s3LlYgng9H7`<t|qTs`n2M-ij(GW&`=O2|g6lyj_@^1lXN&
zW}5P@`^b$Nxhwn`0II1c1mX!zS2si<qwxuq*j|@h9%C*$bASAGyxTp8#Eo%{cHBqV
z=4DvJY!%>i5@-84!H$P$vP-d!gxfxgbv%l4dnwd0<>~mQ0rgH}bQC;)?2Na+*Ks-t
zxj***A4kt0JN}79z+8Lq@E`mC32t4=zxxwM(xHRmw--|7k%Y;2Hr6AY>PP$N=SDxb
z|FXYk*xzISaG478>sxKl*2>$vU(Q3(tAl$0@{ZQD1!At?cHfZU!AxLnw>5eLkm_X0
zM!B}5n;4=HCEIt!vAX()M|Dz7hgIt_OM;=(`Ume5iJf{t#%FG9kq0FLFY|Y)W7hk}
zw6;WQBrC%d$arPz5az)SGE=*4lFdZ8^;_@w0KWIgv*`J#o)emDYk3E17a8^84*W4k
zA=~G+0tspCbr(nvOoH(W-=RD$+T)jH?GsQd$yCdfZ%Jn*M#Z?LTnmXA0W%G?&W}HQ
zA4#Y(nLO^`ye8>~<tYk|V+WTWb>>!ADCs;0G{9T1Y^S=@6}I=KCv*jqel`qry4hby
zeuegOkizr?uD(Urk7Z|9+a{532=k;e+DvSuJzCUof9~A~;met=zd`^3aw?HYf8H`s
zCRG*qlOZN=vBi*%Hf`PbK{A?5B%Y}DDATs1FO!C6VuoKfc+Q&4dL44LdG^}a0aa~o
z#vgWf7Ytku^!`mx(HDr`dHdyxq%)N7-|cp${*Cv4zkhr_qVu;rqK(8H3>k~uC}<OM
zA(%XbuNr6n;osO#jQwz|{hwpJd&Y$4ODLGVhq8-3d-k(K8pwN$yE+U)M%ZX?)h7`n
zlO%KHk?zU+vFBkrO(Pvy^BYO$+((#)8<MNLa_it#EI8s(Lw6q2t$jqj^yln3xD3GQ
zOFf>B#_*BRpds67R6OI`eAUO(Il+7>dHp)H{AuhZwohj-Z+`ym5m(OL`)7smLhi`#
zc7JoZYn8h4Ds!ctbvpRDRo=4Gy4t0!?6TGq7bDk=eyYoKVd}*)PGs<-e756!mf@^`
z_d)(1`pGqygMzGUa@<kk9D=k7LK!g}T4MT1p5njjS>Qe_Sb`7g*hO)vw$y^I2<K$3
z*g0J{pr6*EXYl^d+jl?T|9$-7&2HEAkQ02K^xAVe<1{Eg1vm=ka>3?=vZZhari~gH
zs<S{?Zy<R@AG3<@6l{tiaiFV#Y#|>cO4P7n^&d<eKz(nXUlEl=;n@{lNQaZdnq4uT
zWUR%(&ndM6fW6r!EStmuC{wrtq7i+4SzO8sXpfW)G@XwamnN&rr3(puiGH<-S5!d`
zpbXy;0kRDK*Dq89BL>y$WaR9f?WrBg>}d4t!g<URWl}1OiHU3i$x~TsQx!%VHlxEm
z)W+aftQ*L~T+0g;r*8%QtKa<e(H><Z2YCKgmK12z6Y<LI_LOT+ThWi>dfxxtt_iUa
zs;Bvt*-bDHp5W_0uIK%qy`@y%x9^_$7edpb1+_akB<B_cj#-Owo&;~3gcfMBc@qlw
zl2y6J9zhfmbpkO_P_D6ob|x^yXqs)U!WYIIpXL24l=GgOz|lb!0}i==4Z^>VTCO%n
znKg}3Dq^|@nLH=3j%FdB0xFbeuP!`9M;HY-zsYThQ6Et?EZ;?NKV;7IPnW~jcSTCb
zLAE1&2LouRv(Wiv0A&FDXaB)Z_Wy;R38+;R=s7#Sy`E5rOw|GOoCJ4U0D>m0(gc98
zT!N|!o6tU?pZm9<YL_yfg(N?Xd~bjrFUk!DQ&ski3PAl8uy%9BI+awz1iODK%A?=E
zT$Y%Mqpb?-U}_`K@>DRH2svwyhp$6F1&RE8|F=g~DL&8ox|f7MOJVbx&v*$j6REre
zK#^!_0%=1?Nv3`G{imZXXfIshC7z&vw<Zx5q-r0B64@qa9pg%j;Rwj#wl&|34+sy3
zJqkT2Em0}L0n0$=XQ%mMkH<-3(t`%uF2Sscal1)wB-Etiri&`}(9_9SWow!kbv>qs
zkX}l8=<wf{(<|!BX*tVF=@lQ|M$GIFw)5rb!H%A^;VY>yPam^rgcm_LK4LvN>*Mh&
zxRmknM^5?kADPOF1{;=K$oU`qNRtBpp-)6Cc=yBqd%yj4{OSEWmDf4p*D+TIRpogv
zCHUOtm%%SSLU-1+rM!Ia0T@K4P}4{_Mss<p@uh?y24XJP;pL~kd~b~}F09}g*Wr)c
zTVFyxc^HL@Vv+)Tw5rbAQ=TXvXZv|k1jMkOyY^FWkpmjS1H!HUWE{n~|HNI#Cy~!V
zI{C<0Xa;z@m!_bu9sJ`X<1<2jq{)4Yy&J$u^ZLa0Y|^Laxo2_hZdsGh+WAwg(K){K
z<EedBPwWfo7K`oWo?v<{s3Q+>0pNa&soh!^NMAraE7vh;u|Cvi969bMzdX!^yN_4e
zZ$IzX+KG)bH@9(S#jXAUdiv;MvypG=?u)beZLMPyBEQBuwn2y=Ulo6}Wt+6G!6Bli
z%qt?DbBMRH{T$A*{sk3e7oYJ637yVG)>8>t@6WIQkH5Fi<nOZ~+u{{eP|o?72|b^{
z$L!@k@*)qTdtjLTFF!?3wz59nvJZlEUS8$G%$%KsTSzV*f7#vreE%#S<h58urad49
z5pm0=!_?!6Sy4~1uHbjZj(-DWQlefGKxqi7Dg%hfU&!!jW#joAI|?Qc>PFTIQN3tb
zTcYoT8ste+MI}>p;4rwM$XF3jl!@Kp#fe*%Mxm%fsnB$BrnGw=iSA;^RZ>z;^M$yG
z*3+O&sWPz_pNOfHc%I8H6%Q^AH~qYk2T2*ioY{>)Xf~o2=9{z-inS2^H+k$RRi$TD
z{=iwSs`c@P+VbE$M2~$WJSht}Yc~p}kuIh_8^1l?kJ~rzx4UQ45!(-Icn+r7WevJH
z1l)YwG`plVSm(qv>zb5|t@FV&OAOY~Rl|d6c0M-E&Znl?h4Go7z^wu<PC!>56l?n&
zxwQkaG)0idaSgI~$Ze0eHSF=TR<q?-eTHUXclY-fCc&s%_N$6XG^R!_nzaU;K8id~
z5eDW!HjN*ICsRYQwKQKfjR3<o^dEPAf7lXhp_oG*09lUV0036P)8=x;r!svG6Zx0V
zAOK`FJ1e8FrhT38bsB$vlK(Q}J1u+4=!5m!OUBdbM?owpg27a|i>6Nr46R-KrF%?Q
zg<@}THAZOve~vL0p`^7-zg)J`iq&5DL1b>^_pffG{lCB6KmPjW-On#j`Q%kD_N-<z
z<#dSgYn}d}Y1k>Tt*XUx67BaG*Qmj1A2qnru-Z@r;ao2>r4$crDPxQ4ROrN;7m;tK
z`rv_p2meVG!kv_J4J$DZ{_~uAi>J&Bz}rZfL=pg@MFMDXl~AcdA-<G$_HWkhR?=;n
zK7u5xVht}xX<*1)+!`tqkh1!w%|uFKRrp;oItU8eoC~4I9-X_Pnt}0$IfwO|@e&W0
zBV{iaC{D$R8df;mL=>g&-y)$#9juNbu0)Mu+-j=w6BU<?y?I8opsQh{@YksZo>~gT
z7GhQ<KI#uetk{hdPRfTQm4gIZ->u<AfooYkP9<GY#XuF(QqVNTkcrn*2snV>e!R`N
z`c*Y;3WT2#7zo+;Hwv$Q_&!pvNQxToMEDqH+%RO4XzlMKkwSiM^mF?!`)h{%J@$`P
z@&5j&H;=#GzrTO|tmw<@v*nPEmcz$FUWff6csX?TBZNPn6aH+3d-&mm@O9^&@aN}*
zAIHNFN0iT+u_0+H6yXk;Oys06wFtAGG3jQil2VBwjH*bF-EtF)QU_X9oqJW=HL@*f
z{if&?So9pJP64K3q`t5$zoRB}Y5l7ye~khXS~TGxezz`u-=@~rTd02iAov0`UBs@#
zL9A|jvAUV4SkeP=D|4f$#vH^x(v<FyJU!uVjeTLP6u)Uog37^d7q4aowc?<n3W=_g
z&(a3%1C&9HrGY{w%Y>NCsLYZlLw+Ekyw)v|{puia+JyYuV#2fH->iFeT1GEcG<E!S
zdk9u%u|WUm-^9fq?_Q7F_kVxp!~Y?DF(1C9`9`(f*t)+sp1M#UPyMh@gbd}Yge+`i
zZ6Z!Xl*!%ApUD|3z$+~H=%^L)=`Gs~xb{Iv7b$}T6!RI9sx0?VgEh$DT(CJ#&7Qk(
z&I6SA4O?mg44DwtDfO&+D_=8fzvHnFBpQ*O9zHc~f1gtXlmR|;`ObR_;0=&~M||#d
zIj_lk^-`ziFVd+vD3|XOAP~^k*5M3i!}&o~0T$eflalx5;z*w)IOIn~EfDcr{I66r
zKD~f-;8WlB>*d$`yZ6r*%r_lIga^>enfy-F!`8ElnU^FEr4kxms2!AN=^nHqeLFc+
z1tH8f_R6r8292^!b}+wRrGyVy4_Qd(O|FdaNqkcq%NNLf|56cXqY{d!QDD=^Mz>6&
zYT_tegtsGN1h$GfQ6x(9QafG^F+951kR>G8clUPVK2;2)P(PGaq2en^;VoI8$`6!7
z`tk1R{#+5-%E2MuCLT~ktsHjjOhmK#$4PaOv_`A`v0&|0skj72S@g7%VkH5gPqnG6
zTgC!Ojhlp=ne#2~Kni{U%ZJ796JojJ6F#J=L)H&_Pv>wN`*+zBs_yM5{A~(_e;l=M
z?1~&Z&fezu3=Eg}QX+2<YUjubB=HPQpmNmOqkkFn#s7`_Q{(>2=wF&vG)^h^%p=V7
z$RtXK^W|~><rMmq%9PWvzxWWvB~J8U>heKrKJ`lH*KVN?$|xk7U@A9R&9E@0C0=1M
zT4GUbEz^?FYN-j!5rMcVKFy|8Ae<Y)XV^TiLof-(JW?X2jh9JWQ~@w}KHQ99YpSRu
zo||ZLdM1nUN@a>-_uelcmSE1}pi(7ttB9SVE?8rV*|Fz(_6Q*+9x*^!KcSt>Q^Q^;
zUTO^)rCKvn6gW$kB`wS<y&RMq5&#I8l)R~|QKZFMZaa3Wb<;$)nV@G6WDa&2y&6Q)
zJCcePB7?GVD<VOZd8Y)H3f_zaJj4=w-~e7)ySKbxC|9V2X<8%^Oq3Nb#sd~$y=Mib
zOjLBV7h^0*Sh6)j<ijAzDRPev*HKbJ3)nL-0je?vl}$9_M|?33J>TZG6Ye~klYin3
zqQCa)c}aJG-w^8KA3XpBT@LBgq}nZcMWEv@v$Pz7rCTihQ2ajRZl3*Y<m3aE?XaHj
zmW+^&P20!T=_l)VbCla9P)TcPg25^Z6fc5x2(x4faz1CzbuAPV<fl0)J#13$_1xw=
zNzQHPAAR{N9dA=>eGcAyoJumShLKa;<tM=tQQ}yt`ruh`Vd{CuRaMDM?-qxD`(}6l
zELyyM%QD25j28bAFg2N+<l^x*1G_7BFIex`R0-XL|00Ee7MgOfvWh4wTF!0jA-Ji%
z3Cx7^gDwyZ3GM-e8<%n@9!HvSu;IeE&uY=(<09yzX+24T7quSzIV9vk7inAtB2EWw
z`Z`_vX#^%`?2yJ~6r3NvX#%0VhjGdLXQrh5)21Z8FeTr6m8uxRAH}fwJ@CHLq5Eow
z?)yAs8*eKLCnvfOP3Lll-^<TY2tNr-=%se&m)rek575!_xrAksUw_ltIAmraU&ueY
zDpb!2@=q+Te-6L16$GL{{sJstTHXr=iGMoK3cLEx@Ba4V?*Aw6?Rz9Qj&;wkLhBDf
z!fn<vUzjBA9UKU~XVD9^?zw<2dI1~8L93>v>Q&8*PS>b?G`9A$Z~UG}R<Ww9$1|4X
zYoCQi)hrg7Oh&#%Mm+I^Qpz4}-r~!3b%P^b90W>hL8COXSWMzJ!nl#x@kmn;6{Gk#
zl!`k@qg?|JpBr^j?1i#4azlc~NSUOfbVU@*vPEg6f{|Q=gUBe?PM~Oy8k9D5U%+<%
znE5GqhQi=K&vlt=+|*ZCv%Qr+pM@=CO&3!6rfoZTEhmujbYxK9)ZGadTk$z6w`xpc
zA+f@T_dXraFXC9YRbWtgvX$m78odQYqrEdJs9Rvc%{be;0@NU{Jx^(L15%OU4-%4X
zeNcd@sa~U?P#r`u*KDykDiLqK3Dqmy4)PN#UZrew;7m`Qj@@a@0hvLpI4^^al%IXh
zHMAgP_|z55jr!}g731R;jw)~w>5;eFw)>`*0NOFUzqbrb`lIFubq9XW%`5>>)|#RN
zU38fHD-2s|ZEdOA;0?{}?2X;*8{4_C=w6H@Sw!g(wXxNUXz}+x{<;7$Q-;^LU~qG?
zuDQ8~$qlhXvv2QqaWwz>z78YO%z1d}L9*=(enAyQt#O+Bt3)B2WRQ^vOYZ!d*TLqw
zDXgm;nxN5<n!T*5INMpi?|pI*k*Ue**@0UdyxDhw+9mc~<oRASPc>;>uTYq?4r-6z
zch;LM47P9(0y}u0-l)T?zw4A^Dtt6Nw(9WvG4t$04kPc`!O6?C>hBuP+kGQ9b-=%`
zn_Q=XSfKI!^XxnYHFF!+CKg$$jM@8XYd^E$Oc>N~!Dp-9RUQQeyMgA3G0$O9UDx~#
z3CoV${R`~C^9jrL6bgHn{|p4!BLij(KzrozpK$;OWWbC8XoLdTy}dn+i0C>`pRS~U
z0ff|b!sdY=P&P^RZl}!~T;&&&lQ37XYAE+pt~X?-tPL8Pbc*CA)Bz$C_ntL9h$}Lo
zV}BwHu@UxYEv*p~fLp9{aUhxLB!iLy<)pDihz<VvVeN)(`VbL5@-So}X;5)7;5w#B
zkFqhJ)<IrlsSNlzN7aYO7Q83pDD{_I)KNMy&LKTGkq?OAa%P9pdj$t~L0P%v<He(x
zq-EJSU>d{lEb254>?f=>(JyYM(KTOdjCOOo{pQph*o}_GsE<yIN9PZF^i8MsszVW|
z-sFA~n(|z8<-fhT0Omc@SdYjy)t9|rfA?ei`pw%Xn4y>_*S5gESTF3#^YkL`GmYcX
zeKuE9#DpKlr48IIg`t|lx6fPV7d6A<5EZitp_LW5@jusuH|FTqXrdsoA7f-3uOew8
zXX|%+8bK5~Wdj^LCW<PnH{U;t2y{#FKQ2J*mA!5IEGqCy*-<_mu}3NAA$z+Yp2h%b
zCd-pkY)hSWuOhD|r{=(tQ>x>cNsJtjT27K<@ruBlG5Ib-?BoK)m<l-5HEN)|tSyWX
zfTA!;Z0{yNB8qaWi&)7gZq)8&xP)_q)2xONhS;V>RCuOTA=b&OHVEP3OPxJGZFO!4
z)s1T}b16hEI3Sb)#e!m+?stq_r+x!`>UdbcrLBdaw-kA4<e`n?+MJ)%crE%ygzLIP
zrzL>>Yc%^;yNtH&>^sefkm3<{>G;tQcM-6zd;`6xp0<0jHG5I6r9;Y?p_X6<E_MGv
zMI;uf!7<GXzeLj3=4|#2yw;Db>)Mw`sdyZz0?5<h!-KfrJ<^=n$|0s!A2P0Q11z)f
zytSSJuUzvwxd*pP0}n$xsq$i@B}1q#hO)GUqRIcZ`(K(#weVv4w51TPnwnaEJ3lcv
z?`iLa!4Bmp6Sw=2S(hQxX^9(jVE^y3)@T1R|KH9h+xbg7e+iwi{bKCcd)M7<-UF}L
z)x$>Ld`Pc?M>Dqd(0}kD`0)M1{qEE*-g|o2e^k2-?z!SI%gr3JT+@i|j?#!WNBKwF
zqx7SKYC3v9_$GN_6xqGcDspU2!N&@#!_W4Fvu?cI{P61QUHkIQpI$!!F&Cd33*4eM
zyzS-L>=a@|LG0N;vG)>n4v6Myg6fRmbO2PcI+hWfU<`7ziidKQGTffibeRD(jir*G
z+WdgO&P_)H@yWiiZlHu?_Ym#iGIrMIryfcrC@z7NX8BzkVnQ+A<Q|wI)mlx1CNP4H
zr9p?jC$FqWy2rtl0Z}CJ)I$37eXM(G4j1X)1^@#@veCCx!3ww8KaIFRhi+uu5g63;
z#Z>^kSfJXZ{4OMB@M7Q4KyA6z9vHOQu>WH-PY)OaeR2>Flpo_HWGL86M<u5qmfOET
z_Bm*Pn_fqZFF?)&(J9P;jNv|SSfa+Yi60`zj`?ba-}Uv2eJYZfdb8=DNTESv29=co
zl`4$qR3mA_A^>@}R8Rc#$e-Vah4bD%-@QttP8LPrkgf#50B->=a};RR-d!FxKeqK*
zQQ~N_EMR?6<pz4DALAem^%Jf=x*6176xizaOPsKipdEy(lWUpgi_+S0)egjmnN~%p
z{o2&T5*%OJfwuFKr1+9Noi7`G!b!jy)`=4^Y8MFs1)oLM%U(OyP<*3Dlc@boqo#Rf
zuj@y_`EV+e&%;Jh4>T4#0?1<P(zYz%pjYopa?*m0jR+u#6miu}O%;L(B)BMRt@XJa
z?@yy^L&?k0P5_P#(xHb75=-MqB#LHZ|C`{uwW%z_aMtsj7)I|+?V@L0;pc|qe`1pX
ziJ5w*Sdp7UN4=Cj*f+I@C%{O!U1j4$+XU)dI$4BAd(%XZm{MvNgN1owz(=k>^xR?-
z2!422823Z(s?MB6gQw1&3@*m`U!MfBbsn+NK=I&?z9Bm`q$a(o7n>N3A&@2#)GWsa
zYOr>IGfv+IfD*E%Xm)GnX|5TDIu$D7X)JA>Bc*eg#);$GX+N|#&9T=`(Z(#Kol#wI
zo@YUG^;wtU<!8E4wj9jJhdCSb0gxHGt@VA9+!VT{wGotP!gfd-+V@#j9-CGM?T5u8
z!hZ44>o?x>)-+H_LY_mt7N<HQm*eQhgucO?6W2c4g{+7Fw_~Jg@IqFdi_ZqFU*(;B
zfE>D64D-fkg|7ZhqJ~+_6f7~Yu+~yI7u&@wvw?wPn%2BN;~#Ay)$z6%P4jS5ua0#L
zF2<v5Ps}q`CO8jUXlziz5CJH4KdRq-sf};k!=O%Q%H8Qy+x(TO)`$81tGnH^VH?9g
za)cOwZ+jAEiED_=b?;Vo5kA&f?&kl4GeZSTH&Oc=&;s?>R=?_CAV)N{puBB+DD3>T
zURt{^ZU4VN&#qB@+T)MsE<Kc0e^a&nfQRjC(;SLAf92sF&kBK-e|xXMgcIfZ9~x62
zh?8wC5*9;@N!8q*JYcJrL9*Xx|4>ecYKCW5*1P8~?c6XNn)yV{2Z8~tqFG1nU*{4V
ze-?k?VsBRN7psXvVmB_5k{m7_eD7Z`21>|l5HyBwAj%h`O6e8$2}Ep#lnWNFP`#6f
z{;|{6U%*Xm^-!G8Dss3M?`Ko5mABrV7Lz>qbJ;bqiT1%O_tq5`jw<%<m6DjRG0X}R
z-?6nLh^8gVNz9jaxawVQC{D2oPrK#mG7NYs(m(~oY+AgN*xy|te+O4ivceNBHM;b0
zYj`QXot9^}r_<-wAIZ~o=o8t)?QT;k!j3I~cOGq1faaD>%(ousQNuIPHg3W=F3+|#
zO8WR(4;*=np`4V^5b17Hb2CCXLsSNSQC#7}k*O~Zu<SJ5RX`Tg5o8v0uz-x|dO}Ta
zK+BddWRa@3i)V|6FV1<SYABB>l_T?GHB64<$ys6Uh>kxk2Rqqxbh53C<iV9X%;4dR
z1#)&^Vc$$ko@Gd0+13S{kWq{E7MN)#GTMxUDPN79DgZywE8A{GpnktnqgcQAVFyjq
zvBRa)vX<l$68&Rz_iSdY+e?phO8X03lwG`RQ-0e1UKTkoI(8WezF6dn$$Wu;{6Hs-
zK!TVi2d0D~BYx7PcKCFIFM?ZKPsS3@e?cq_LGam+0*P%D5tL}h`X=lVP;>@-cl9)X
zRZOSbRa&zzjd!W&=W$#QZVUuLD#K!hl77Wh>^lvFF?Mct9ChVxzOvbaPT350YgqLg
z`m&hg8*%FI+Is91`-JjvqV*H?(0|Zir&SM1%h4JZzkWHdVSvV42>!efFJhOIKhyuU
z`sxq#$MK9;dWG|mx4U|{hqo>o`#5;FzVR=#lIBUBbi#-hH2tzM#$uvopIRA5@K9k7
zU}9xEAdR1C8N@ioKz>69vjec}gHS%4!9cx^csc`a8GN~RnI>q;X;a_mfg=XmEEf^q
zbqE><pW!HTbENYUlqpJkw{7C%*&nVHc%sT+eDnh$!PK?gR^H3ZxpEdp`(ae(PFb5f
z84Inf%i@tI)EY5P^Fd$M9}~Wnt4)4l<EOnan<(3zsJH#;{`Jc@e`?p;H@hb~at@vE
zh8INmAMU-KN$^i6hUdMv>`C&e_w_@ax!DH98D}muEmT5jv7|}|SEX_C@qsa~ng17+
z1}nyDl=|yAVbE#yd#m4dfT{VQPTQh*DDb(fy~K83;{Jbss;*MK+T)MsFFur4f7J{4
zfj@FztL9MLbJrf;*OlrrE7r3}mL2BR?SJ0Cx_|f7&-U^kwa>tHCGx(Mk6z^d^)oLb
z_SG!?xw|^DG%rlZyMxi$J~zx}VMhNg?AN=60lKMH=URb>yWQJ24`-gg&qATtqQ!*0
zU`2R5rBPV^=Deln)@=LX{F+T0jOUvGD#i1li>cH#{3eR~sDs5r^beDmMqpz+d#_@q
zygpRcr1I16e)G)_uh;M`e764l&u<@o{PX&=&wpCqzFluPasSO{zuA5McJuJ&PtE$L
zpFZ1P{P~~1{Opr&ZXZ6m_~!GUKL6>n&o34~v8Fb=w-5L0x1ap(@%EuvzxeY{7hC)I
z9Z&e=hu1IfzPW#G%Jgquy#4X}yEor7-Z-Cr`q}!0AAWvu?y{F})<3+ud;Qif+`gE<
zEb99cPuslsY`uDY`*{EDt+n)D{_^LaK3}oQfAOtdeDUtZ<D2`JP50u(i_O1$^2u*E
z7mqL27q>6A7q4D?_PCl0z4*;<ZuejQb$jPe<>cn>_T{IaeloxBCoks8-L7t5zWmom
zyYQM|{nvL7pMH9~T0h*~zP+m@T>QW9R`z;#|M_p<eD=wgU;SVI`pM^i`OD(e|9rTA
zX_x(PpV;gF`@jGD|M_qK{eS-Z7ytLae)Vr({;Pepv%41yIU~%6ySG0)y#7shkU>2Y
zthqjy^zU9gB81=F{o&Og|MHj5_+w4+`2`27-P<3xce{GJemnfSdGqGG{g3*xxN~#=
z>Tn}pUi{&Y{=~O0IQhG|s?C?5tuNkv{%3yLzW6Nu@3#-%O0K)r_U`q!Z#SQQ>TU9y
z7ccfd{UQGGUzT5fOEd1iyZ`=*YFuny>~GnA`svmh@!v!)xBBkx$K7Y|K3_fDz5HQ)
zcj&R}i>=pS^WxnfwtxIx71M7vtNZnv*Z;EqgCG3&+gEpgeBsBxUE75(HW%xkF6`mI
zJ2d&eKfZOL(D47`cKzL7{<8U(w^fLLSpV_RR*#?m`I|QnpZQn_zgs_%!0*=o?Z0{T
zZeP6qVY~g!LJ;evAl3-N#?ta_Z<lr3cgK3gw|8&<?N6`&$HSZN?;hU%_|=cEzJ9aa
zY5Z(g_KwzVK6~GlR`}|h`|aDihlMETPImqo|Hs{K{c!)ijlIuqFV>&0?p|BnA8x<i
z-u?9X=bv9}S0;*oy|vD|EKq&pVsr8CciR__Hb`&(uz9im<He@Af8A{Vr9Q{!gZVk1
zalPHR{o(Gn?=B8c`R#AI3wyI~?!WzE|NT!7_iyX*PoMvG`-jaRU%az<tG>qLPoJ4k
z7cIwlxp@5iw<qmuo#@d<<~O%H6Z4Dpr=MyP{KWdUCZ2Cz{Q35jprd51YvLT1y9f8!
zRIXv4hy?kK&EYpExkKZW(@VxKH?$7zKB$_Uk$L~GozKiB+o4^s^E$uvtQLr98xM&#
z5D{M8kJJkeA$BLL(wDJU5~~DV27X8ZkVmObk@!x$8bYB&)v~{in6yw;x(zn>D41{3
zf*SjUu>v%O4CTwB?cPphk8;B)FP0as+pmK&RN9FzaF0xVQ~%TwOBA_y={6Da7{BO<
z;T-FdN=W3BBMuOJSzOB$5!f5yJNDY@(e>Db9u=hNprX9U&(;XTE$c2E)-Bvc*vVww
zo8aG6ZnOfrjhu`4oEn{scrpAi`PR*oCZw8Qp&oh)1%Rl<RY-ioI1-`=9pVAJ<SFNt
z@TK)QXOwFW+302>^G~e*o8Gi*zqZlv#3=T)!{U_3sM|AB9SE}?JugHh(P|IOfw6l|
z%h`8X*}6jQiH}aX{;?WX{K!hdjq<nNq{OBIN;qz#skjY?Y3vp_jVEZ01-?VT4UrGw
z@x)C7fHHJ7{z)u^c67za$d>_MpEVu{kOu0?L9tHuh=ZL0OYTG8achf=7g|S~el0`3
z@6uNA{v?1{<1P-e;fg(nGy^>;jM<nJ@fpevuJ|px?vbY)b(8h&!^<b^u3vv$@w<Q1
zPGvmb!0*8(GnG!|@6ryKxi0a@j>6-3D{%04Z-p;G1tbx1%5q}Q5e55I0!o!-b|>1X
z9H*2}NZjZNB{Ex9trU%J_pA-C#DnqAQL1&t+n4{(54*RgPROi1UbX2sLtH7%8FH)x
zLtM%WCuG$1)e+g8kZiqsB}3tuZ)^_6p*VC}Xsu6>lff2<Af$z6S^v2`{Lt1PeH`6C
zwBOiB+OUbRfn@z^;aT%7e;P)y2w1nz;X1-Mgz<EftsB_$z1K%yNfc-YHVSsMK3zi?
zkY$i#fRMNnf-0ORVA1_=44z<4DCHA$^RDiE=MZ}n=D^hvPka#hfai&%jO$dKoxujl
za2b`QGIoIA35XbF@r7YdM_1FdO4klw(3@RSHSBWA@tIaBd)i5?&`^Ge@i1Oheoc9m
z%3^VQoC8ZvlC0u0I4pUKMY<*t*e~7f{O<~yUu+H_chWjk&;U++M?_>+T;K(;bUAS=
z$PzuK_w~3_7~@b6{qvwE)bs7)*RR4riaG!TbPxZcHB*HSN<(_M+>cF*R4!G~rh@=a
z;wbi>wY~rLb-T8$ggVx-Gb2?h7)rxsbmGB5oGG618Rc^xARc?h1>}s)zf$2}g2}=5
zzllt?;fvsq34QwQbe_@lyc;k?)42-(%D`oIrNYi!f&GP>;e$~LVYb?-ezgiV9jFex
z?lbk!qaKwo>ugoMCe~BmSCs@*Y<g57w@)fFe_u2{6XX3iKR#{!X>R=-eys)q)Jm$X
zf8xSV{HU_~eQ4RH?w%?7&@|h-Z=U#^yX0xUY!{WZ2Lh#%GMxe7pFaH&io+4i=us)F
z&t5Z#Pe*-<63<-HsY{LN@wqbgRhg-~-&>;*&K*YE*@xBoFxsB2j_&;{wITiZKk>wM
z=mHPq6MxzV1f~haSNIPv_`|FFPDwOu(faUPKBgk?UeOI&Qg?*mnU;pX<*&5$P#gRC
zE~iX&@9lCq)h@Sh()U&9uZ@La9t`iV(q9{wwNfA%&|bIOyN7S@?{+8sAQyL%Al^_B
zrOk{d%@s{LJW>8<tHY5(eN(ar1(del+#Ur5%*BQN1ItVC!^#_<DEuE)zpthm!Z#HM
z&=d8}Jt-3G2RErgX0%Hj#pQsqwA0r{Q3E3|?`a!AK&S<WwU$){E%wgqAPfUXn=lP{
zvmNl3iN=z0t$39*Y_<2a*04h6XsjlC7^Ajy_?%O9$vk}<Pj-)8<4myGZW&_6fZ7L^
z9mT4>Q(EqyRY1YOah9U~gNyhj>VVhpXOxhl&}BcXg!X63fzkWw>mRnauh(}c2`0O5
zq+ykqXIth?g#C?<f!9<adV<wJgh9~fbr$h-r@%Y=4-4brR~=ntsTCh%MSIpyDeD>m
zBnMc_ZUJji=F<0Gu*h3*kV+-KuMw6m%~r~K={#@V&xOW-A&Pl?I<55Ou`f?g3j%X$
zULXZY|8yF{g80PlK(3YksW~E#PplC=`H!BQRiy{vRe%25L!Z`->IbCZvt=)ACy<$Z
z;39VI;?>>5{rdKGyOW}M`}*4-Zoj>2@7V}`|8V#A{`I$?ob=at>txN7ZD_M?PDhL#
zlUTUoB+Pig0057)15`ow6CX5z8x?~>QHFTpDcIh3t2`(KsJCrD{sN*S^hp4u-EAWv
zYwCs8ok^W_THlnSBC_p)ohc}AB_yF74;L{YhA3>&n2QJ^V&XwWBaGB~oWHI5UI?fR
z5kE%v&>wx-63LLULSS+jh<nAjmqk|3vcMWJOo})&Sq!UT4A&%j6|?KW9VVAD)S`j)
z3u-k^&{0j<$!ueQYo)`OpH^Lg-2-=!6<@*{jzR2$5u$m-Y6W!DYAAykcXAS^(?A$)
zuuBzzL`Olx2wo$RS}Iu$32E);dM(C~L6>#~)K&@6FD=YOediRt{p4+cVTRxmt*{*|
zk~M&+4ADid3^@gHP|v7P;ZY$Io#${JqCm)=DWEHafj|cuCwV85qK^D`UCbh_-@Ssm
zAo|t0h2Vp^mdlmp2crrc?({^t)8L0!#DB=vr3QO<lkyNE__Q>_)87qF>=+ca%cF1u
zDY$}28-HI^f~d)wB%!Uf$EaxFPRM$Nw9~o+A)38bP`kX~0kB3hnG~gg5J8IE1a^zq
zJrlY~2j3+UjY=WGw_7VG<L7e!4Z5>R?p@+*&EYwU_-5?J+78Q0WaRTmp(1+H+6$IX
zVKRh8-#(qnBna=`bq*O$LW)DMKdIGLaTvVg0*xP&g3b?D*^+6EJw}D9#YE5*tX%5#
zje5PybZFJ<o7(FYP&J4WjBZbYfJ7v5L0V~QyxX_l?VH-|TkrNw?e<JSQzAqS@e&d_
zL5Im=puVhro%Eum^=>bD%-zy|_HN&Jw{N}M*IA{l-9X)5xpR6k{*)nlH=SDV_KkP@
z*1P@OYptv<24L}>+g<ypFwxYiBYUr|!@`Hr=)+>Jpm%$}TE@k|_>>sc?OS#G#=HI8
zYToS|b^F%4eWPyQdbe-A+qd5BTXp-ned{pyZr^&hZ`AD-)LMcM40YlXrrP!V`oY7&
zM3EC9w9vB9__EOWvOw^IScJ4Jw7x8~zAUu9EVRBXv|1KgUltlI3vFEpYTL{+eq9z?
zUlv+l7TTkWXsj+t?5W!Bm|1Nh7zc6j7Uk@=WnoJKl`hrp>nlK8SAa>OclI7i&1_wM
zY*(q*mSL<DYS`xN#KOdOY9;^#8wVHID6hW8r#I8&chy;-sdIwHr)Fzs)`H?m<Fk&u
zd4kjUwBb3<vzBLTKE6nEkN0k|)}=Jo=QKx8eLDBdty||Fc>tmakH`IBSY9H{_w{=7
z=9IW6q?grzH8J9Q5*slXFAL`D*klmGiP{CRQRBhFaAbeip(~n7!G+U8NdyD9Xsi?2
zT!aVTOC!x$nJRR$%j%WZ2G*3B(9e!PTX>WS2lPJzdP?AY(u>DDe<`YLH{a3BcfbkE
za-#s3P9Wk8z*?XFWy4lJm#Qa$e@;Pg=81LBls)ohXOBFe6v!$ZU;ljaz1it}Ciz}(
zKU<p(I0oaWa7os{BD6zGuw+!ea&)*bUM6U^ttZ&FV=&PtwzDwiAW~EBtPo;C$^8>k
zt0AjAbJl&J)0yN@)h2i_RVotlTZkM@!j|xiB-|(YP1|xlS7F}gCTbQm%=XVD@EFL{
z9f+qNiOB^KLR2_oEMg}|$EdPvU3Rmyf0gFH&T7{Lo;>uIE&StIwjBO)hwS)=uKiAA
zNS=70C~~^OQu}@hOx3q`MzPjY?SZ9IUz!79f@$m9yY}UqAHLQf(I(g~ZZXC>sp<iq
z#=gM8*TA8f&|CBV|CrreWSwIXAXtB85tCXVx*<3#-N;fu$gPu~yY@N-b?w9j&HTSV
zPM5%gQgFDcLSjtOuL=gp4aqcE;-<J|_U5|zNvHK*MoBK;O9!<!vfH6fY}-TCpS{{v
zu3@aAYL+iJ*L|*ft$8!oyz!bpX`pjf{Lsm13)2z{`}E{JPo;kdyL?8ZCi6+$cjeGh
z&tE$^AI@}m%la0x7}P>-ZK1vj%Ug-K!vvFvT$=er9(k6>QPq#T)=48?hd3;%e%!TA
zuZ4d@j9$;S;8Ex5YZH1i5#3nv=SNL+*2*5b;B5qSJPzqer#&OIGrjTT1rD!xt}~v#
zEvtoIb{5BJzc>iLuPyCw>Mu%~cx$Vp#(YL*hYt2^$3GtY&A#SmFMir#Py5AjmyfeR
zv%mZJw3S2{aWc;d!9lzrL{h_(zIa-zbFX>Qh;_OU4cD3XJiXe6Q4|mBGfjB%n*H2@
zOc$-P2C;{oB2)A<)q?&;i5|Dj@f7gUqw=WJ#QC-I+-b(9J8GeGi_kDHLd?D_LJ<mr
zztbZ0*Qd;*0lnydXWy{S;x<Vw-_TR6hF@$FKb{HSKZ*NH`12<5!~4xs;K>X2|LjxX
z;SJACA7!3Cu(JJf(?^s;>BFXv6sMmteQ1~U?Zc0!bPIj?rRWyEL@1)9X(#bhhyYF-
zdl`RhbxF=F-a41I8xtzifRas1F<FTd9ScAfn%&cKa{(j?F|VDJ*e!5erbi5Z8Mu`q
z&t0x1^nQ`j19YwE5F)JX_J`5PjVo;_^tYzuo+;1v>h@Q9xn9)C{+h&_jzV{nwxAO6
z!F|7qeuQsNSabOXVf{;1dMoAy+J-n%+xoSDtkuvk84zKrqg@f9eX8fg)3Vmr;EuzU
zC=Cl`X$RTAdo}Pqm_7}Mxu~Hr2G1N5vXKTqqB+jK=WgCt_^yKe`wF?r<4JU_)qW*@
z!BucM5;aZ_Ra>=?K8UkIBA?q5n0WxXw{K<`AJmk(sL_w2Ur>&|PA%g+wmM5dE@*xI
z?tS^Y&B-7wp2s?ZC&VdZ+r1JmBPnhficVWJj<Oe&-Ve!QG|H`8uqU$@Y}|j}eP#0S
z^V(b~cyZuH_#iS_ygF}zh)?}0=1Mr$>|-w&pVm_z4}>{7U8!&E-v%;;{@GvczFJ~a
zV>I~D3MEIB-TTb1)o;d+#m~2g$PQi&NHly?O(zFYCWr)so!A62z)!OG>J>xATLj<6
zNC2~tpb-ut?Am1|w!GGVW*)L`EUQw&p@XZbW+}Y={(GBO&k$qu9=(}lMzgKwv?gVd
zqFRT_gM<lekYU0z+-5ai$4Q1!b{B%D`n4+itx-1-JAz3#S?{xLW=mo)N=-7N+GFgc
zvgaTRo?loT1Z5D#z|{1kGkgqwWRjtA>CD*5L_LRu@zntAPa<}+IZmeH$p*^~nGyY5
z20ztc%Zn6Lbk3J7FNp(!!0{jtrf0}slq$){&^k@wG-zN>q&0(;s=h$W3-pA_=*=0f
zLtEdx9icbjt{^Ths1f})7g{@LPASzwPcNUuk!HsdyK)VKAcb0WsK4u1QnfWQILkeS
z$g^@*sSyfxcKWiHKB@2`nR(&-t})^STAa(O(WKjZUJU-yo}|ic7K?0xH>bEgow3-e
z#3oF&fz&clu=pz0e#?YLsx*^5zq(X)oqQ#+HjqYbQufm%Uycd8S56sta*DgInBL~M
z&`ec|dV?aeTY22<r+%wP5;A0UTnlZ6X}|W`1W(e0AsjXx8C})Tq+J8MFT*eSpxrw9
zu-@F0fbj^F9!94SiK1rkx%`-kbCbsNnJjNWyCubOv5H}%J)2@4@`^c_rCDT>Uq8)k
ze-*p@OlJFcUlN?1;!J1hu^US0DJo0V9{2wq8PR|d8xO?D2TZ^o+;hT6I*aK~w?Cd(
zk$Wc)>xB^$V(4Znyu5?JS6zGt0Ipg4DF9pq&*uQ(H-bkf*|aR5*5PKpkR9FwQM>8P
z)^XQRNS}X1@1)RYFy=EN;sj$3iY61MT`qMsX83yW{F`k0oX@{WIFDrasr=#L&7YXc
zEBDD+HrCV&cUW1xwZ08Yy^+6PjSE)qJ)>Kr5Q=7@cfR{lA$8frMI0Q|%4;oaYB3a=
z<T{4wHCys2<Dt!ab_6jacp9frd>asimC-fes=&fQg(Y4OX&iQNmAdXGJQKB57G3=?
zV$O@FZU;}q<NWu~%yn6`c8F>rkgwh&kW)btX=KatWMdF~i3HSDg*r(@`&YAVqtft@
zF#JF#w-=I(;FAQDB*X~;H4>1tM((Xe-I#zj_TaP8ZW^Vhayu`dc{_O`pxaqMD7}Mp
zoFgHK*{}AmQ{gRplW9CzU`*=z=(4HX1=xvJ!QX7GeJ8d4+Ot@)ljBA2YZwCRMLjMZ
z^&J=P+<_?R#yad3edkOkc~sa^ooV+jjPs&-%6ppnulIpSm(GLu5glbY;@-Wo4r3P=
z`H&<RA5#)aE51`73D?nCl;}AJ)<A^f2c;Si@Y`!lwYAT*b9ZUx;dy0(VHBT{0Cc5K
zd(uKK@0o47+pmAQ+2&PC&H!6Lq`yG<(kD-j(b>{{6Jky1o_u7@8nr`EgOiw4y}zpc
zfn=uJmi-6BpS`q~R!l&o`(js>=uAqzA<p&itWEDarb)EZ2T#eVoh~G0r%FPluAZ~h
zDeY32%{)CxM3h0uO0N0pj>LU#_UdlOUv&10A|^%X*Rj)^jpJ3CwE0Pg-Az+BH(H#Y
zHpG?g-6Cj-e2t*7L&z#%0%wPv#jGDBhG$LO*C^bw(>-rum6)5ou+KM0ea=ktkDLL<
zcs-uV`s_^D-A=#MO!!KDx{;(MC-Rl%D|+@b9oWZ`wkWFudBA4w*mDtxNl6l0*>C9F
zD+TGLZIHcTdQL{y>e3htpLgR7Vsh+`?7=53Mw>Qsn|hiFS{^=sugIC6{d98eZf}3F
z$u&4F=SW(ndHmndr_T$tobBs3wMzpq*979-Sv!c4e%<)6-Oi)>c^UG=VQD>l+UJ#*
z2=cb~^!hqWO)K|fDq(^W?_uvhl5(A=kE2ma@+bu8-Z04Y7`i>-*7L^e9Bj+J@UlKJ
zqsojojPJ7}$LL|#aX%P+-m3z<CWaO!)qK;>v&&*2w0m2OH_@W?YzsBe06_^HS>x6|
z4n`jbK^B#CESs~@TE+dmz4CiyQI#Ep^X$tH8avOuw=DmeJ^5itm>YiKYS_1c=SK0N
zGY{eGfQ<`>%vFy0ybxvsS6Xyl`@GVvTZu)w!ML8(aS?9gb8>Ss7oHDe^6(Wv9zs_g
zH|W{-y3RRh3V*&|@mjeItLOWcH$gi$L0|t@j;K0~UndNm<QteRfIg2d7N>(f?zB^>
z^IQi{xY7lG%BUxVuB{X4>1v^g>qI<qZYHI)gQNPS-p}<7lFB{rESa<kn3gKXsSIr-
z>w$TmchM)BS)XXhE(W}{*x0<ueL34nHmxYz&dBXXH(nPdz8fb`BE$qZN;K7OcBHoK
zs*Uk@UjN#~(}TPU?u8x5PH9DAGSnZHJy1G`BP+izWBtObW?{Pg(ssT>>@Cy$$EHAA
z@pC6gj{|}H+op$CH(p0FI1tB%b#*F_e%jHwX^ilyj=ey)-E>^ewPVRJWlw3SRXzGt
zg{RuIIb4sx-+G6HuaD~4c*$Pf=IAjuR>Ld%|EAV(16L+#CB1?&l~FgZXuEvJusxQ|
zqHc`~vwqnN^H}<|ZgUkEb(=9&{!LXfsZrI9?9QEyuUV3FMQa6BTfecEa`MzglQ)aH
zPPKoV9KEx+Upme$-pnoT!do<aI}6g9+5Ug5HQcxyXEAyc*IG75?|0Ib+s%_5pvT&$
zVUQdHR1Dc3h+!%z&zlll+TXo6+NC(!BdN|ED@_h;TaJNc<Lw2q9aVPYe@>fiA&=wM
zyNQHeW@VmxoU7LywN|retyw7bX>EPlvR+5ybnf=s_V|Y72#xcbQ@waJzD|Yyc<S9w
z9!4931l&~NU)lV0Q-!{%FLm6+?NJlgXI_It<k`bQ=F4GRhsu85v877aPifVS<C9MK
zbR5@jSL66tWqy@`$cEFA+#HSMdfQ18KN%f$T0D&8W0||G7XvvSb-8xg&v(1~-P`*|
z+h&UQ@c#9;?e0fAdbK<4_VLzJZUxgsly@%xIL4;3>J{(NYI232r=DwdZmpazK$$_M
zk0ZSNBRsylv8$&Vo%*OEajhj^s>)#px@)UegaeJG4PqD1#Wh)5XBjL9d{ksx(jouP
z4{r7k_J6zmbDR0OWC=3)EAI*B5sW36m%1Ite!8ir?S%-Dw-*}7?V_A?rmH9s@ih1@
zFh);h*@-h87l#~Uq>&-!Ao5u&*CCC)7^vP!b=S7kWTiWDe^miQoVclTFWNBRQ<GDM
zSQPmXS0*RL0%am#>>)0w_8_A9f7`u!BA@lM>2P-bW$*r&eI7d1?!O#-2D9(vmn-pA
zw$2qs{EUfy0(QDxb&4SB(5XQflY=Z=_SRE6x&XQTBFJiM++GoBnc^wK`h=B$+sc%#
z>N6U}6O+M7jD%K+F9-j4wiavrLVgQPz0QAY{KBzcO`YPW2th#Zu+jxU-X0&*fsiv*
z)WpBFZeu$&n{uq~ML{{E^Bs{EMn~3HN_t-pRx+ynX?=^>WP3+GXJ2@fcw+3X`9>CZ
ze%xwU)>)>`h4S*){P1wU`|ec9E6ze<Jtq<#1kZ{o=K^im7KEhCfo^4I$&EHlN{J>s
z&uS{cCq^{fm^`R14O{%LS+I_Qxw9z1EZ_r7TtE2Wn3QIbV2#llGF^i|0E01vahnvO
z0&8IG@+H*ZLlGK9F)>7YxJ3uvFI&boAVg~BGSio(5U=7m-y#3+Bo(|5rdx;ogTT^9
z+@aViJJS$B#dJjJOg4O=PNJ5pkZM&MRkglgbM%7E{DL;sM+N&9NktRBNyP~$dj&WS
z(=2H{(S+JasI3dt7kIW8k+I`KJ$mHwiK1qTN)(cDjV>yxS4{-1jB(pasLfueSfWje
zJvl*0L#*hh8VzFIlvym`3Z+KtS+I=@ww;?IDePeu>~we<q)h~wz$$Me(dF7mu8qr8
zQBuva3v7@2&9d77YAH#PyS8F3I-AFTpYo1{Zw_vdOGY0HuJebH;i=lD+~BP>n~}`<
zcz|m)<n>iLI#O|E4+FQMO2iIvNuAZ3SPH^BT5>`8Boce?d!q=sqOwU2Q3m8N$o!v^
zoB9V~x&{rQ;BjK5DE%Kw4BEhSi8KY@umL~_=wv?z3==|`@fVk#ZKOTBpY@s1Bt>PN
z;Or}4R`%T%3*8{1G$OWy))|%Oi@-8*p%n!o!H`<06ZzK^02m1l2?H!23dSYx*kqg3
zUZJ6r=BcqCH27@PB*O4Asj@S^dEPEuCg|x&en=*S-kxGJAfdO=jM{Ehd#>czqX}B2
z#0t>VKb6*m0&%^tNNiahtcua+cy<sr@psY{vxjWkUR6nDUBY~0A(foKgr%TNOsFIE
zYp~shg0aZt-3f9r0IunJkSxNP=*W8EB<C+!kRmO)*gzsdhY171k)(vV5%B&>nOQpp
z1nXNup&)ogUoJDusKh*)sI8M?hfXZ|ik!A73m}gDC8br*6i=$nv@}gyuff-1$^jcr
zd!wxFEGv>~7E}FVl^BSzk&LZvNtbTj4mJ*=rc8@T^B0Plq>Wnvou(GdiS?TbvLAD=
z$<@Z;ILM$qC;&3pyr3^WG`F{>q$<5Txf7V5k+e!1a5<oCm6_XC@D6^wp1Ek16sl>{
zn@KGT<S{7dDk_gfCrA&D6zn6q1eZRR5v%gVV2awu^@{8cLwmRoSDSEgHZNfdjRa{W
zVQ}WhZB#GMrD7UZ3L3aX5oY=LObpV>gwjkXs6{)P(N+@SR?yE1%`gacgt}{2=2lmd
zDmFmFXZ?Q^6q20?uh#0-l)+Bv_R_LCYtaBoN;aSNN-&*zul8O9&XW^W-?7z8w!r~t
zykxt$dX|2#=qd!(NMMZw)*K#hav;G+@+R}w6eLS;NhcYys0VVhkOv``Eds-nIgC<c
z6@tDOgC}_J$-+}p<OEM1!nec6)l@DCpVM?u52jMdHF{v>Iyv)XY!b^1M4wC`Dh2cV
zzPRcT10F3JnJ5Ed5qGGcDf&YOAsaLUeu;W<Gu6W8>%E7RydGvCq=}N*A?PTu8`^(u
z>nV73pfIu<gu?<WmbeB+R23(T5geyi(ru=dZ$Q1SQk-{GvIeffu=wb>!P~cQUOfQ}
z#yK8pnx<~Nut(gccwzs#i(vn=vF(PDGhc9AataswgHHb)-TnJl?CY(ciH9ZtWfVlU
zSJv%r8Wi%28W+em+GmhxOcj?<Jf+EYWEa*M?8HSZ1M2r!j-Ju&$atMh?=JO1wmIWu
z6XC@O)kJ@34=`1Ax*#Nya_o6sxq!T{zaV6I>V^wM&TL|H_65w}iFJW|p7ve2hGS3h
zQ*UoY66^X?(i`>rTa)Oh55<BJBd47$W5Wf}7xsLX;*v`rFSJXv6MFSz4N+e`khZBC
zvt2;~P%atm9g3~+YOBNB+qa!wKPp!*VybT+TYvkt^o?-}7i9Ik7{Q*Jl6Jwa<l>3Y
ziTdsP{cB{hc-md{H7{^3b-4=zLfHR0%ctI4#dkr<tS|&b`};2oD8A9!4ldyq=o1^Z
z;EE7JA(k4t47RQP1=B{E_-j8||M3@y-Vdy*Bl09qF|u(Xk`DO78p{P%^sQ6-L+6_F
zV4b#T6}lkO)TC!Umj#Wh7q$ESD_DicOz?iu6PX_eYpzmB#i?kdHqzscYva~1t1WYQ
zuQ`>g+Z@`HSF}eC@Gs~UND0bKXuua}8vcB~so8AgQ4`6Pb%KLS(mr?7SggmQq<GI7
zvrdo;RcEAua%NQhe!m#p1vh@*g{jwwBIT%w0Cnmj$*{#ZS3?Cj)a{GV&f;XS=8z8V
zS9!~D8Smtyknju>1R+bvrCys_zg7vnhunw4u%uCKZZ<8<q?|97Rs8*{PNN7PNN3ZK
zw3i-{Qqe=Ps_2C(ij378RMmd8jl;#0$4lk55odckuEbwuJIHJ&=-jkGn5@5d^RLkc
zxczE_%)VP`CbtXb&O=@8+wb9{4DojCF2+t%riqEo_ZK6XqfIHh*dO@shudw6`u&$g
zf|q_uK1_UiDC%c(PvR93FLOuA!(`ttcm?EfLEjtL0MSp1&iWX*pa%zS%j06Oc^}q@
z^6sa$Qat)FW~)V%RBdR~T4fE^Wi74FWDx87WU}b!*-A0sbE39Gai~IXPoC2Te>1hC
zUohWUYp&5fs{a!qAKU!^sE3d)sWW!W&b^i<A0-+@*5JsCH>z)-T;Ki%dc!dK8=btv
z?`1*#;pP3C_GQhRK^BiwyXkZ%&nbzM$-K<AsGGK<P5u$h*-G3<jp)jjv;w3ywUf5J
z5`POyAxtEtXOoBR0V&At0lSctEIaJQRx-)@ImV=ms<s_j{4ok-H#tumByOAJ$B7+U
z*!VY=ph3n^$d?$X>@3ImTdu#h;+_zh1PoG>Hm!$i?3)vrhodAFm4$jweYMZTq+P_g
z<fvXGst8M>>UNRbVvd`rWj2DSl9?3O09L#-ZBdgt`GZEW?{=Z7e`fke&mtkRl!<JT
zPp;8iRg@+6P$16K%Ygx!1X!4?0c;|*F6#uvS*BjGO0uS>TgTVchgv^NfH!UXyM-tv
zLv3Pu3I3^620J%Q9uzPPUo7v8T^1|CT(FWwctY?jh7tHuWXMTH%g9(vdsolxl&!Ci
zq+f@eVSxM)BL!Im;SiceA^!DcBlWVBXGtLJ^`BvZxPojUu1la7qf)C_fcorW{TWcw
zxTWP!w+}B*>CqjOJFz<3p4mFR0@cdoAMg_~H)Vzk9*#inkV(Bu^ydoF@EuhTGdeEq
zcn#b(L#F|BGI?kd6hiPjM=ZUVyA(XorEQNE-4dvD%^qENu3^o_ia4c6cKcp;79K#L
z0k^=bL(o8U?G^48@`Es;v3(ckilV`K?Vt!yO3FY!Xgg_BoSQ#~cQ(1R%}{-}B-?cy
z<qBkj2uyI8$ha5%Mf_Fe)mH|Uj#eqMr$9co3ZqM_acKpa4EaRw=e(Y)I?Tsdma<zu
zGZbTe@AXI2<8{QG*CC1ZLY$RFotQR>rjclpv>{^dY!jpX36jNxSM&^#@knu~t<b6!
zY%mk^l{;KnQLpP3c4(for)CnJ#2BQ9j+j;}nUmHNNW`$>3vWkQLsmeL`0<6on216r
zh$gd8G_t8F`olx?)Wx!9(=5Y4PjHNvmvkruL}nY+JB{pWsD{0kca9!Cw74B26T!gI
z*;F^oU)n*=)o2%mFe!V}DJ*J!6@@ucfg-|5=cS4=#As#Ap<TQSU`KQ&nqc(soS+g0
zM+YYtPVtnSZW*hxR91~xn{V_mo8T`|x8Jmfh>1o$-Wxu65sep-C0m-q-=Xn$80sNZ
zP8es@9xjN+1)+Cn{2h>ofNnXvK$VD8jq0TowJ)W}lomxevvQ^{x=Y`vHJZcCQ?qyx
z^<5H8)A)-@G>0-8wT8fUQ?qyzY1eM4o*W@5zm%Zb-hY(}O6E-L)1&yH@b_U2Wh}?r
zM5L9HtCqnn5<#pzsZsZL(Zgm4*QBB!vpC4O`5kj5X)wqxP-^H);`XRe?Jh!7l<M(L
z#|nd){CuPHt*)=f%kzG(u5TCRFnxc0`}L0}v-dEp9U`X4nsxS^$fnt{z`D!#E8GEE
zv#<&7+UfyrtE0)U^MAygX*RK$aNNq)ViQ~;P#Gx4HE9(v{>ts42GT?_R3IcG-e&Rn
z3?9zf*TB}IU{dIX<TfiS#nb_Y8f!2vb{U}dGQc)t+m|ilIWv$^rm}L}+Eq$r+GAUk
zp^K8`CvlIa;-&{dpdp^%-J0IXXN9ik26}BHuP#!-+|P)Rle26Uyh%)e=wge8pf>O=
zLvGUYAY){<Wy3c3xRjw$76_fJ@=1dn@GFEHR*!Lu!Yn@^L`}dpHQ&=z91NbT6$cqJ
z{$*AuPn3KxMKNt)dG9?wppcOnmOvy&4qaQb4&?_?$cbt$GtwqEt>IR^G0kv8_!YYD
zxQ6YJm_}ADUBnzUsi@YA;%#Jq)7zv$U}r)DEB6T9k<>*G_qX3Z$qzaV&SI7YS##H%
zoDZWmgj%QDUKqSfUc2$h5EqYk)lKZn^?dugFSA<(#YL;@yW`YDk0oEpk|<Fm=fEgL
zp^_?jxQrwU!ptBP-;@>ek%i#Ypg9@`yQ2Z5pfKwWD^0(Ie`uvre?>PCd7r$6O&J9j
zjJr%QKBiaB;PF~3{p%<OT#O1jP$?f&0m4#wsJ$%(@?tGkv&$Tn6Hai~QEBdr9|6ED
z`6DTY$I39wHl!LWwUW89(huES**In(AK(Fb{{y_xvf`ugV`E+ZI7iyoQk(ab>T}-u
zyWRJ<PspKr50!!pw-5wjk}O{kw(Bv|!>s!g_suT+8fRUDeE=k3Q1HE|7@~&$$~R%X
zlHn0E$?8R(DYWb;U5ea!y<g(TSN3qF%L4u3DX~iLS+H(I{j84K`+3imr36`UC7_kr
zpzDYugK=*ELEn(Y8%5mtG=x(wVu-6(wSJWjbs>~uV7UR)!rO-3x6$YO@2U@I7Y|r`
z)Vlb^*C|N=;0pW!?cxE?-L+kozrV)c(hryQkFx4)m!-e&p6yaP?~~)TH>c{pkj>n`
zd{=agtH|nJY#punJK)@PiH+i?(1H>b8z?Q?Nn>uL4@4$aQW?p1+wOnewsRSkor5V*
zN2y4Q%3A7h4R(LG$GHgJygmsZ9`2mj28Vmp_C8H(mO%w?jhgZz{@H=GgUnoI)>cPY
z95MfBne3I?+txW8aCuiIF7CB`;Y`nJp2jtdg=6cy$XU~m>6!(7R@<@bY@2`E0pk9@
zwM|``jRhFd&?TgkB!~>qVx_`M2~J3bg)m*lEFx%<VRe%{UQ<w2yH3;!D4lDu$M(3s
z#?*o-?@`*oCZd_Mq3%4aO7neb#l@-e?GoPz;t#lN;S<2y#GYyb9Ns}igxbG_E>hH?
zeYj-8MNeX5$pxM24eDgV$%5e}N{Ns+wJUC*6Q0S$51lZZq69p|H#3x~6*7p3w<N}q
zt*N%n8?m3!d)OruBrvf%Rk`SCwg!yS#QVGxe9)AKiJiH%;aD!?<oo~=n7N?DV)(QO
zs}0C0_0z5`1jV5#)3|DRR=y;8iTyWdNhr96#ARwlZj+iDT_i0Vw^8FZa)i>ht?T60
zww;u-B+vYmMI4GY3iuz80${Wv&KICYS;(|9UFMEfo+J$t4O+9YLgyiiS!^t88Ww3s
z_3A+-+j<TJf<Bu=-S^JgF94Cal10$AKRDETA5fdy`_sI(MTA49#%Ln4y?hU>By<8(
z$@$5yoVYMWgbGv5PzX}O)yoTGs!qn;psjKQMU}LJMoyOz7bd*x5Deoyk&4TVf+-^@
zpf}G~w7&h)o!eH3CZQOEb{<`3e2<eL8f->nlMwYv&v#X)u2ZUg<F)6d+^`@$g01E%
zmx^@o{#=B2vw95M3B-Zy6a|1sRyLYG%cjHhrQI+HDa^K$wskgU>+womMXq`_j2WDS
zHOE#SMDd^(aEC<6vCf<NEwha%G)6Y$-htVRhI*`tL!r_MlT-}8%Q2yhTT{J)c%i38
zhvF?>%cv#e29{*F1{{RoN7G6mq)=%Edbirh&>l_bRIc^PHC}5GHlxTZhc7b)YnM2s
zqVJc{-`R;sT&={_NQ|w-$OhIr&L}$(TQ`iyt&C%c+_XGaa**c;!geP%0eGKAqLUy4
z!*ngITfG8CZ{;TdS1FzknHqGXte?V`h@K@e$|r#~Kp#ZfVGv{iLps*#QEVxs7{<k?
z=U^%y;ufFhq@7)As&R!&{MN>ARf&yC)Pov-5YG>dDp2<($|%zA*0<ZcCy5&J-Hb1T
zQK*Fs!$}oJ`V_LW8EoujVjRJuYDLoQ3LWmq2tl{ggb4-EWh<>Bu^;J${a{HDC5Amg
z8xtnf8C5Vk#9#!#EIXyL8?hyS_od(kL)pp<lCOG>KnlNm)w8o3wW9yL+P0&Ny<rf%
zg*(}k^z_jBMa5htPd)TO6_*sjf)E4H)jBuzB{H;OqhJ$PsgE}xB}}`<5i8Rf2@!~8
zL5<1se$-SBrenwRc_(k?td6H?C&8u_+fx>eM*L{Dw1Dtccni!oJNZoNZ*7s*Kti?f
zk(4N#AUY|KHwwBP#C%8h7Bx@aGxPU1A}RUk@^d&(x$-<8%9E}?2VEZTor07*QVUbD
zWsAsm>WNZCpi!6;9diVD2nN9Du&A|+vO-+5fM^1tiOEc=6}eQ@B-2&OmwnXi9vv9g
zYYx<G(_vz^SFs%csR>xq({M>nU@=uN3+BmjIcmOj>pilYEm^Uevh15p@61$1P%Mbb
zs1AT%89sTDuBQ=_)CxCmXa>W+?>SXfb2o*m;_K*&XBwOOhPp@B`P&L+jYAF;%$h|A
zdOa|_SsAUgicKJ?LcGb(CRmN<S!vYRz$N$XJ$Pet3JRQ{X`!tdv;J|Xg*cAqrUmO`
zD94^yV*S_ZSSQ*nE4LVj=pxQNWMlZlC)y90_1}HjE7#abwfl49Y!2W(8E8`aG#TV)
zhxv0YKM%?*`h502*q&Tro5)oXV(og3cfEbTR`7$=rr;g5tsV6+9@VWi5_DNx?>HL0
z7~NYRGjge*KQgMs@1g?@FUO>YDqoLj;9vAni@~stWZNF>NBA`?5~dB0$p>WX19EV6
zdI;@ugtf~7*)B$;2D;y~9KMQhVUmL7Uv^~~4FI^0Oh675)r|K3x%u6fu;_ebe_u<f
zhw=<*3a9gA9FDbL3q4)?`@WB}Z8EiwY!&ou;-$wZWunVhHfDNi_q12OLjUOe>qigL
zpIK=@Z8Qkb;c+o}q;xcS_*C$8OfeN`=k)s25Yz8<HDUoKWf=EZfJH9x-6Hq+^8faH
zPV(V^z{WbPEK-=Jr?@V?vO?8AL#LO>V{q!lLCGEpy_fyqAWV6*W!kn~(G=`VfD!f@
zz+Hu5K@f%CGkOsua*Mc_tTh1wcH_GBr_Fx``k)@#`a|3Kp$XTA>Bb$<cAV2ZRpfz*
zF5yoV?}2i<=&5aes!v(3U$(dRFHh&G?2+^`mp%s3b<of<uQxKU+rP~u3OUTf>5Kv1
zdgV~CIJb`Kg{af7tG3Z$HjPSu<)^mZT@9o1Vr3@8UQe>G6l85gFwZkg6uaZF`r}ag
zCM<aez*SG>=a<q7Q}Of5`9*4@LG!SF^YWA@v5U9frq-oy3hXtHK#@(HV7YpDfQMv1
zTqSF+5x48G0TGy!T>%!=s>OXH7tdE*VRFJJLpHc4ziwK6wRx!cuXy4@KK$(8Kcoco
zyTA3<L^7wo)?i#beLQ~h>2C?M#x(y1B5C<M-+41fD!uO-m+v#r?+=po>khyB_geq#
z*Qi1E($55h+RN9bt8J>1y&s&$YIN(#ad2=p&HITo95jtoRgIxiAEv=iANEs~TM^n)
zhO!@b%}_iujh8nU<^L4GP`dX#ujc4^=7H<B-Zihqscw}1k)G)D>F&<dz-`ONCnpr+
zIf?d%_^4i<$7yTx-H4fb0*xailx-vm+KBX(AZpmg-T#<jp<NM^wbM&y!A1JYP?u#l
z!U~KF4_vt1tFjScu@QH65F8adF6<~ww=#3f7XYx$R5w{{ZSk43=VG^or!?#d&b4v}
zIm~hBV?zRaHxYa}uw!%za`EE|=O7C(7P8SF*|=q$Y-4fuV%l}8nqs{2rR=Q4W~<?*
zLH-Gk@dF6n`0pXQEVAgwWl4*gQxt~SqS3*>Qi25CNYHHYCZ%4I-YfGwhO1t2T->1S
zPC+YqAO|6+l;{Vgxa%~^`wA8$5J!$0E6l88bAT)e_A856W>qfAWj3lIwu)SC#Yh4J
zr;;%XFEAxw1=egSZ<87n^a)0B>tUnvky0B1+-+8o*O)JUu~oR@9Wav%uGN^H*tgtF
zN)w)ng<pHBgs&Z&d5e`X(GU8x_v7!ryL<bde(e0>l73K<B-j;5bcfQ1{a-)<;1ra(
z9cVs2)=m$P9~*_c9UT>@F%T4XBS&?-&K>=!sGDSg4SIwlJ0n;m$nAP(UypL{dQR7%
z{?x0B*~Bzl*Yeo6!O%6%4jmhQ?9S!a$rL&^wY~~gCp-@%W20)JwT;*N5?Bqn6f9_5
z<FH_>N`FC$073lWst2eR!MeP6a80N+=OwPAct6TkEWmtJ8BE>vWUXkz8DQar`AoD%
zlLoJd^tr!LtpHM>dMULw*bJrXY!@P!P@1M790`K}8ML-2BLkwgvKq?U495m#3X3Yh
zU-0HpOC1^$4t4PZc2?M>MBf0vpVS}?F+iS3bEM&^HqS>45>=>mcQJ(Qe&j491af#q
zj?!qVCw;3$JoGJGZK0|4q;COw$olYzJM`2+^x<SC^tSV6^cC^#<`fye7A}R*sWIQ$
zE9VP+c!ZRlhBjitOmiE`MJV+L9dA-RIoZk(*|FPt3?F_+j|=OI(}!C@R0@{+s}z5a
zuZU=#tI;$8+}F44W6OnqdXNIhE}XiAUPnc`L=U46>B1Vlf)+1&w%r%l(k}=JCj6Fm
z9=<rLTP8ZiHqW?KF7$a+cX@g)I_txPxm_sx;L!y$P{78Ez02|^_y1pX^K;kQlmI*d
zu!&*cnFV^KEQQy&MD4I*Bq%J7Uq}EK{<&`|eTB%?R`8=&vC0ndY=c}qZCF~wE<Y-u
zivIULJ-&T=_wZwT_v-t%KR$IOXmafF#o6Aez?jEpt3Ox1-GS8mRbX>;0>NKG?H@4%
zRp9;-WKW`Td)xwozl8NaTJ1NZXGB<}M96c-gfQkx+|u{;mv$y@*|fTS#{Dnj0qozq
z<-33LgVu$USMUC-zWOWbH4(D<7@{H|NYi*Ek<IP)o2L?q|8*r|&Akvwq_`82{KpTs
z4|ecWD(SzjRA5>;NF_ibcOsRyn}@r*SvI?;!U_L%g@b+XAe<DtSvX(cy*!mes+p!l
zvI34dP}vHDoGN*he>qr~s{?3SV40@{m^l%9hs%*14d<-8kC+}!#uelF#Fsed6;O(p
z0S~3>L=J`Xru-D2@!@zQ>~lVR;C(lqR;mON(4ePj&o}??lDvC3-SdC5uKUgknB9}R
zo@v9Ym@jLC3n~K4T6tJ|_P(MA^RBV)75;A%hxlx-dDQkUY{AWu5Sr9B!)31dq*H--
zA_=7`VA(kOaR;pGCdd?_4j>b=vzPfl(-PSWny6UBR~?=k|0Ap?U}6GoV0Q}FI17mt
z8@s*^B4q5*Tj~VL|Ds;NcCnZ$-hpoSzLLaX?~Re$>W`6&&3~NFdqeGNx5~9dAB(!O
zozJ(`QbBr*?$>>WI>vVUq+=xK5D-g{jI#(saM>BWs$-jHOkk@nRXealHI%csB5dJ!
z14;-E%QQB2_mg6wtQQm<K3UOC(^QX@E)3(vpq-L{D<LVrS@b+UJ)~_n&KNrg{*+gh
zUrg>z0f!y`kd=f;$0Tzh_Dd{5eGx2&eWbW)*zWtWH7q^3QwpO}A$H>4=sgxK%iRb;
zgyIB?OcsRqIhzwhUo3;#xa+xq>mYC3V4DL?zY5NOC@+eB1<$+^yO52$xbg@=ktKQL
zS)~J{rP|&0cDFfQ9Ktu66bnHtVC6<-=#}P7EM&jNJqmo%!zqZW08;$^XZ|m4sWp&I
z+%^j7%1T`XZW6#Co_pXu*ICVygaa5wmx7ZMcVr^U1gb02-G%X*YbYT1mwpk~M}?v&
zVo2WI9@|?#j`U>Dp1y_ysPP~^F|ojep*V*k?;`stycWoA-BTjeSGr0eSkb+e+|Wbo
zHaG+%2)U+SW7}bm!^~o^G&%GFD??R9AobtW*FaiM?2H!AgU+w}>jT<W)%Oo*?~3p4
z?;hIq4-bz|KvTWv;9yy?nmB0)&EM?l1Cs;zABAx6-*mc}Nd%R<&F^U{i{PA@Y0hs{
zyVD}Wk!Iy_+_Z`Zw}B3U0OJ~hHpP8r<#0nAk~s4y^EB_*VKdzM>Di5iA~aU`vq<U`
z;K@$Xdgey^&$V3E1eJmCv>p0bFs)JLPI$i1#|^m)*9vNZw?--PhJjH7`w-E%Eu;@U
zEHn(iZX|eY<avxW4y_{DbdS2-h$&vpp%=f5P#;_2!_P~Vz=^6%N-uI^FG-`7G@9I9
zWh-Pr)tMCEyAstH4q)o9&_mg&z?uq}(0ha(S=w9%jmyA=C4e^JRebh7mVzkbT&yi(
z^#%}CeNyp}5oCLhxl-!DwBK>W#ZF(!BFqA0>@VI?-zQU6-TSY%cPGnk$)Ya)FTj$7
zKEKyb@<NYpmALGnMxXq&)NU7w?<3>_<N2TVSeb=3jH1kzMO+1Ee@sgh$3mB9-{GNS
z=Y9oYW%^7~aAWtuY)z)EKKi`*_5J$C_4YJEDSGnU9&j(f>PaLA>sFL9wvKhhxglUj
zoO<y&<V1*Mo_g6iVg6DeL;AwiZb!xAP{IevF0tfiJy&y*wI`md4Iy%QB2(W8hgDr0
zx>!5QITzUmY*-exG^3K;CkU)T;lk6TkO*;|!VWfw_cB08ByaV|rY^w%SqUfWw+-?3
zvBr4@<-P2k6F-ae6{8@mfHZTqFN%p(_<p?X3B<?>;V}Ix6Ql*GGa%#WfeAKEtzhaW
zk|GX5Vs?G6tp*A|*AX*Hh(p$<0K;}aif9jTId!!`Zi5W6fs}5Sjey^WXbcfZTob~P
zoIrLMlmZd72f7%hPAD?!bT+bBkUW^mm;%AKZXm=2u?5>e;Wo3$2A&%dBmw|}NgD@N
z^zTCusj=;>tcUb^mtaK^mf2D5$@h7LM-v}y&nZfdmgR})0fXTWh*IcaeB`TLYU3ML
zRjX-%{GAjNLsSFzJh_M~7;t(KRvw{2G7uq?gATH6^`qQjQEa!fl)H-AL_==tmVVyV
z?e<@4tRt(f2ZFBpu{i4_93UXi$KC^QdsFlVn0}_qagwti7L26Y23vqdTrYp6dV?)1
z1gyvxm=r}Gqtl!fGQcwJnFgqwkcyaL+YERH{)Z$r4%@V5!QPk0agvWV5hMg(X1R_;
zXaYtX^9I58c@RQB5*P)DCGr;ifUjvBZH9q65R{IMGf`W1Sy0D959ir~LS(EZP0<v|
z1mW$)`H<l)9%+P>dKx|wf<YfjEW0MQwG?ZsMK^k!3Q?(JC{DQHQ4YZ5V6SOWtB18N
zZgn4*YIWm2UFsAO#4FfSY+fQcQBJo5G%BH~e>{vHdI?ArAdOnjtv*|4X4>&qGguZe
z1l<J=7ZWFHu&t><%%$V#!8G^Z-M{|!WNsZjJkNTTErPdh=i=d=+n$>Fj8;)m)tHWD
z?LhDtu4<1p_JQ0Cn*x_!lV;kNPB10{rEG%%oU2Q^FE{?V4?P<_Jc3uWYAlO@vmRgb
z6l*fIUf|zwd=+*j!m^hqk$V)aL_yv`bQKC5=|?H4ChX|$vNYWWCnNNiZ{}}@vntR@
z3x$!G;;k#fYARQqn)wVS6vuKY3c;3zU#onz>+3h`AGX4*9C_%1haQ@&nrATn`*rWB
zLC;i*376bEc<rX3Od!*AS%RXiMFx?S7n`9egIAXymE`*4^gspElTkK~SB&VYxQk3Z
z2#%TwdZfQ3^_uD3E2yn7RS|_W>T)kqS51DcA77ci_lV6Z;l=7cx^|B?PMNxLo$E(T
zi0IcHl9FU>#kM&oypzc_#Saka*`|2+DyySxJm#5VsIfQjo6YSz53M~4Ege1O(<qJz
z)8)u?%`1Q<NFLux+*H|T&GBUi9YZWlnz}_@!iEggg<Um3oeUZTZGwrQmus4{+D%Ui
z)c0+*9t4Df!o-KGjZZ6z0HXDKkFm7_yxu6qP$mxR%73KQU)whp`MyFH;z}`bnXQem
zoPs7y+T5_cX9J~X2gU8|<T@A>YLA(wkwrlSLXFTs2tx1)SP^i$3JlWQVj|WGdoDA5
zkY1-79X7~I@ii+lSn29aCRmPOffn)u3z4lVbQ<fWo;QhX910KwSFLv`HBV~raNk&%
zrKgIxu-B5?J_(N0`v9OpGG-5S$CV6BN%33O6hi6*ksG5I(n36rKoF!jf<nrnqMDFD
zG{U}rCQK4F+(XpR4I6%7slqDLD=t&XH6zdg4glpe0<4V(#0OTa&X2w#r9=p#7E>rR
zTQWLJbl8Csdkfmrh?c}^0q25h!Nv%Zrc4M63Ms&pmaxawco~F{Vq46@-w<8OGd&$P
ziNJtMc)6I_xsiy%<iHYfS5?S-O_eG56M@o|CYfO{MLk>;ND4K?Tqd{=1vQ+Z-T-!5
zZ5V|vLJE^Yh!s?*AU&bOJ@FSNQ{mGP3McRi2)dyLhZ!a$MFcRC2K8+KIpCm({`B4^
z;1yfQK|l_Ln(D9Vsq`d*V;V&VgIFSFkFO{OtD>&1aV_K%mH{`W`VK?!!ixE(zh|d&
z0i0DwGE&p8d#NdbAeZ!BaHE2SyBf69g*MFk9`iO2(RfVSFpK`gPfor;m!NtVQEvBg
zYaz}hq}(xJlFSZXqN0QzE=yBe*R!;|8-zNYc?e_U(fx{DYUtVOO=YLKgg2@XGJ!k9
znk|Z}*7W!R{1qKSeBx>)671lVYi6Rq-W8)=J#6-B5+__mYU`o@;P$}#hqs%Tx3Ii?
zcXyh8EqwEGZ`WY`^VkEee^I<a@U`<di%q%{<+RvJ_+`)m{B2V|FPgcXf75L?`-$r-
zV^bUJeSVv@O&;sBx_EpW@vwtGPMqt9$2~fiiUe~chz%wJCF8{-sI~05Z<P$O>5hf>
zh;vE`(p4uL5nH0Z5<8MD$5!mQielrDFE)u3wV8k8KyM9@N^d>i=eO0j)@@xlzKzEX
z&ps}X^L>4+_emh^`eaDb>^=0&%=r>~w|Pj$61gOalgZs2KH}I)l%3yTBaa)1>5^{v
zk6t7y%J%N{OB|?23TPjOSpfwxF9r>_n$IB*qH}5Hkgl`385X<elr#BGRN_-^7~b>P
zWVtjm?iS`t|6D$I`IJU!d01V`hVbe>U-t;*Dvy`$|JUxP9${6Jo_Q8N0DdouCKFzz
zjWWv&D3?SJz<pmy`B)ll>o@Lk0XpyJ8vB1kGR!dktvBO1`m0aA!CrlOuk8k~72#&s
z6zC5Dxv7_oSF`KGyF&Z@=FMx7SuIu8^0iEPX^L3gW^qCp<UuOE*xMIXo8m{j*QroG
z>gH3SoW1!Op#)pk@xk}D5!ecst#D`{go@%S__)YBDI=d$S7{O0>>#_qZI+|@s%-(m
zf;x4JtyF9}w3i(S>|b0A$p`%?U`WswrCFA{tOQY=thtl$?NF6q@xpW24O{WTjlzds
zPS6>Ms2C-po7$D^Xj3mPG!jROG=Oewnj7n_h+X7VD<U-zwSe@aIMsk%y1s}aK*6R-
zJd!ljx&S!Q?hz%BAabdSlUMBBml<0J^9D`v@$&{G#DB}YA*{_WGjC{SynlVl6dNap
z&W<9fA(7XZhFc;8d}~iH8KpywB$0{={)?su<v7TG5`8NilN%0@^3>yy$Ya07#M!Z?
zb^{dqi*i+<8=Bd#vO+>1qDohC3R5msilWvdyc}`tp;4LU7;<VeXmjLIX4VH~SnNA(
z4{h<JcTJ9FpA@B#l&Ov@T3w&Tdo=>WVFv|qtgW5n2yIM~{R^^8f?lCVvMu;mSRnlu
zFdt1X^^>1_Y|p#>wf@f*Ikt`o?VDbRWr;j@;^n8lEhgPwjEg9P$}s2FdhorGn7Ofg
z#2g9Pi_)6S<gMtG0W<)y{i3ML*Ct!yib{Eeg?P#i_Q6(7(4^9QuZBr~$a3Z;{!8Mt
z@v{SeuPWrE4J-av(|vH@6`PR?<DnnIBU4nF#%t_Wa3jC~B`R`7h$?#ye%4Wl_cDoz
zC~5G)>8vZzn!7al71$OrO!@__Uw*ArMC`QFcmummCM_mfWhY*eF_c@orKx5qn_d{h
zq<s`B#Leb`bkP{$WqZ~eCv6g~qbW1j&}sLkjAKj)Bwf?iJ3!2Xmp|+G()z_dlHPoK
z%8fXBUT2RhzyrIcm5T2)#+72d{Q&Bu8|y-XuQ;cS2xO28fCa_CH1b>p0rFSbj|Adk
zH9uDCcgOpI8)ZyvXG6;&spD~0=S9rnV{{A~dR4WpbRwp~<b{DjRFWb{nuvetMOxWu
zs_Z<tW~DS&wzUOqBL2Z3CO*W0yMIE_W77Aaj3TRvoPuHHPOV-$e1*J#<&k9vCsN}K
ze;Kn<LsECxiS1>nE59zU?>C?-)-rjx`A5N1m?<v%&iA_7POFtX2+3;p?iIUl&zsz?
zoI;5`n;*a?@ThV-J+bJCD=l}UKUj317%AxF1X4FjjH<{8>^;z*ViF39a8gz6h|1!T
z+0&;A`KG9B;PObED4>b=2orHpQ5#S`mFV^BH`~+syi1-S8i|n%cf1XBs5o1vA!;JJ
z`7#x;7elED^^zbdk~6EtRU!%i6I8VZSEJ$bWOY0yQU*X!{}J~PZer`+AO|((2SAX0
z5Lh9H8vi1$E&xByJ~*-9cS1}m*PYD@tQ)<+Hnx=;O({8e4cxRnxsQ_oOZ|baqMnhh
z*Y5!;Qug=E7|b`@w<g-S@K1Di+CnHNVlgFA41$>JWREosJc`YUZ74=Z+z?jiRbMV4
z0T*j=BcqT<9<8*@(W5V6Yf$1u)DLhxqX3yuyFyBNJ;`cE8o9L$WHNe;z7L9Nwv^B}
z)seFEkjn03TCwuKk$eOzp-dm96KEzUe#l?;)z?o9_R$Ri*jsGr?YEvo^*S@y3X|&D
zJnCC|Z`OpccC%`kXE!irel+&F9wm8dwa`Q{R0!1f6&Q(8zMMpsHGZCi5M_ue08YRW
zpD#v_t6OD~*Ef^u)t<`%?*;-sJRNM%tZU1CZ>>c30w%}eW?S(Jw^A8*n(Cte+eFd0
zQT6D=y*ONVtzYf`oD88mSJtDzot$45x?7fYqm&IYvM$SfrI+YUp<+&2y8(BQAy*N6
zfLGdjR%iTRfDDvrR*d~aGvDX;G`Qyh)%lt12Lsb#%j94$QE&1a=AZY)96g=~we>+y
zt8xDETh;B|D?JSokdMCiZ>XWo8Z0EktamTy4)`2br^LFucFCtJwr8-ElVW_Co?Q{-
zM!(1Z?UrTuD0}^c@b;yql-?$Hjd=iYYxjW=Z3ll=6nXZ1%q}%O;$Fy?R+3goqPS5U
zCgw3wrm>Wz=$1QM$+ISdJb@VKMP@n5L*byyBs#)ILF_y$1V6q)k%S5sTWqz<Igx%}
zuWNOkY~#x7s-*-QDZ3WTQAugkpyzcFd2KsUX{70qx4=B1OqM~J7(jI<f7eFu%KV~+
z4Sp1KaVJu)@zQUC%eB)KOEO4JL;xUF{w4c1(Q^wA5WHS!qBfVfh#HAVQNIFV*seh$
zYJ}F2h(s^wuiGqMeFIG+8TVX5jU=Q@ef2Vzq^TaxXGbt527fu9!oInvi)S6|ymqZB
z>xUAfw>V}_u@weq3Qc0>JM;^tJN!_}Vyc9rMCNsJK#gPVg5N&L{OFMdoubo;DM@l@
zHo_jz4|~|w=}(1?f@qF2e15W|X|7iG&@79wJV8M|ypH&DA!?zuglx4C72HXEoAP!-
zXnZVae#4&4c+UqcIA##(=z%x*3@LHz8AtTF<S!0;is1u6vH~Hs2M9|p<)<XWhf20G
z7c}}@Q$X)Xp}}EN$~ux57ezTM`fyX&Ol@haL0mipDzqz4-8l^v=GKemi_fjd9AU-0
z1pGUw#{g9Go7kJdfPGD8cYDq#0wJNnr=faxdttOy9vQmnl3-sc!7lH;*r0?4htFUd
zhCsvRF{oF8(1tar$GOv~8e-pe0wTx+a7!g2qN5Uk^q!KJon(jWjSh&53D{Fm9ItxU
zCPudVv68+rq~U{a$T`%P8+oy}Q)zANJVH@02!I4A%m-Q)5f*NEaVtcH3MV{n1PU;A
zZ6WV*>I&Sd{3QbVV9APpU90PSIK27pG@c?J93Z8;iTV6a3Ph({JoM*)=1iPeAUVea
z8H|dUgK1>=!^!Bu@KX3EMl1`LOk=sNY|N})*!>$nm$Z=-*F?RgRD#K*;m3-`g4WoJ
zZXytJJ-^6BXJ;Q(QC>+WxbTWwTi+P6VYR#4^4LbXKgzFAYV?d0eRnl`DGt`Hz4brT
z9n*nHeiKdIV-L#)Y7ljR*rm}GXOpirY5Vf-_T{N(t9<R+JKR)Bgd*=<<{d8)eHU}I
zuD^SwfHw9h|GcPQ0zW+@uL8Nm=`lKb32gzVI;*Bik3v0p+#u7)L1@haxYJY!ZWZFA
zyqar;rpUadhE+3DT2r+z`Ciexu&2_IMdHk^W-Gu!2BNWYz=D7nD^Ehg=zwTgNm|6}
zAoN~Xi@1W9SrIqHr8uj%#W(CK3?N3U@dG$cUT$a{lx3piE!qjNi{Lm6jXZp~@_Osy
zZM!e7oy+6*-reVV;&l{1Vp!#EJJ(Z2KNX3<TCqvgS84Ze+t$}zi5*g&c0F^DFCL2k
zN{X0IRGhBo$)(O2T>Vaz^FT_5kH9{AV8+iJANyhW>h9(J`gVId5{J9;zZ5(FA6;7q
zgru^5X7v0A7tk3`u<~VL#+JLLw^I9Zaxx!X)r^mQ*&JVF=av`Yzu8zhkISq4<nd*=
zjjXWt__}tS(eBodKc>a^t@Y;nyVs{avObI+$sBQwpf8i{2B9QzT%+R1>p;RW_`3_c
z{2ntb#$`vADcQ|9`4Mx%@aU;wv3~}UWJ@m#Qc!H<M@O4X@b$nznZ;@dF+>8ZiqXUu
zN^wO8`EHad3)F6_+SFqbK$=!Tu8_4fr9r`R^0uHBWZ87ZB4qnQ8~Z2|qxKCD7WFJH
zd6fM_psk>N#4x%jWCiq4H#rJ=--YOLH_-ko6s3sA9`=q#usyGu5>^&4N|@=i&?%i3
zcIV*l=bXbbOBZDhbm3^#%kv@5wj1)!mSjUn<c(1nL<JTPD^CYHO^0@Vu*FdU{m1_C
zmjd4cvEJvu5?sU7Q&HpDzn%8H^;9z-@5i3~Yv(g9AOt0Db!)Ay186de)TBpZL3Wau
z7Q+5PB;s9v3Gl2}1VE6|)Flsa7sY>mWYtyFr+iy<9??KWk6ZFQ^`d?%C?+7>1-+CA
zfk_d*z=VO0CLNOQ%f@fq^Qv-)Nz-Pf$ZlLLy|CJwT$5;&*(b2OvSLgbAgxvjUi~%p
zN}7qD6$GoML5KR1f~0jKug5#0C4)t6Dt^Q!Gd-dT50m=_f_RLB`&5*Yf<QI29_5Bq
zzm4iT3~BMO5|U!O3tqC3eU0ZzI$F_FJw{UH#>MLI2<|G;p?c+tV%s?H-nwblmS5dI
ze0OSbjw16^xZ+J7FJ}P40fx|Yc+#KAH~N@MzLxv0V=C)IWm<UifaktaS1p$hQ$qGg
zj(DZa=-95i`X7$i@fiADov=^Nwu(_a!fERy6cB&{h#|jn-b$RYWLkT4bOC38A3!1^
zGi@9ng_hPuN2eAq^V(4e$8Xa+a28!5iX!5S5&igNQw{H@CtHttI=LU?(<`hm|BPj~
zn8JUx(lO){L-wnc{%h9!S1Y^oP?=w;>|amd8bff@{yN3~s&yBCgq%~qPVt00jX!&K
zxjA;`{gR#W?_TtmtU?hW;Lj=h*}lTW@@tjdLZkdE75%GM`-|lb!YF=l$$$4gvRJxz
zZ-3mLS-aD`cIWV`&6({l@q*74E`8<KD%@tBUvbKG_x?X&+3l}5(QA~Q(}_*H{=lMd
zu%eVx*v4NOB!Al8zy9_arrF|yWE9tbkjWwhb_SK>zd6J2-|V^l$317U{05B>nCC3U
zyLxzxhFpLl4_L@oCGRO89IUy&Z}*=2j-RI}IhYfEZf&%+`p=X7c=ptCeFxAXkX-Z{
zt{|aD#>?C*Qbt6<pl2FpAWZ7rl}Iwlw5#B@mYB9x&mWIx66q^5R(FL%PNbcx{G{R(
zh^=Q_$N9l)(etc47c>S=LDoQ%bvGTkG@=k>Gtzt!KmpD?FM}%<xV0Nr->!C_|D3H)
z#~BPJ?JP6+VKK<Hiups*7{9g0#Xp-x3l=~y7q`%smE2=$TTh%RdIIj~>k&1wGO+E*
zy|bFGF<FKFF$~qj06x{jjEKx@QrJd?8A5a7aX*Uh5h4w#Su<Ss<WD1&4ZP4%XdQ+1
zg&J6Br-E&}`>j1z=5^SSu_em`<Ux9&hQtwHE_jiB#%luS@mpiB#B>ma;uey-$euh&
z3?*+TOwysp7@lTany`B-8QE|GrY-iZN#p_R$>X8)%8HH>ED_0)Ek~U!T&ql&*Ql=&
zWv*n9kU`wWYb{YOwl&zASj*ERfqd8MVbzlXO|DlgcQQK2y%YrLSygkxf8Om*?2);+
zJ+gEa%GEti1sIjwudOVDtMsTH%-9{g5(iUt&4h6Z)|m74_*}QQdEY2aOj}(ZKI3Vg
zMV)S;`#*o%%(-!N*J*W?C2uM>-AC4y=}SZ*C&f*2$UnNC^%3QL<h#=}54ZQ*r`#yF
zj)3(j^K~WlDGqC&;WZ_HWo<W+o2k?#z<)m=aAsJ2jWL&@CC$OugQBs0HjRVNpgaHK
zlj~xN)v0#>#V2OX-1wg2WqnGj7?7f*j?-MBrX2nqy+gaN@C?)^x%9j){Zch-Jjw4b
zS0JzKu?t9kAG}aS{_!sj<>3GCUizP;rQ<JIU>)$M*`)iIvcuvq?8L~gJQl2)HL`gn
zzCQ8x**t{)5QRNu4eT8ikQd-P6ol2NrKN9twYgM!Y%tZlLs0}c_Ii;gC>h2|u^nO_
zR3O16=pEF>l|W(&tL|#DFM+C*bfO41AZ$5NynJDq^(C^cmU97L>QWU+Y32X?2jYmS
zT9h^<7o%qcVX?&VR^!jTgwAekYccImiSg3YWJ#|?#HVRj?EburN81w-rbKH^B}ibI
zREWRcy-l7*1pIdE;*Vl~Yl&2svV)VD3h|djG-sYaw^Z*9wThQH#@e3tB7<Xci`x6B
z1&g=fV;VH=KNT7v@kVJsvMZcrY+XDnj}(UpC<+hzjLaHfpku3m>0Z4_O%(BJs3{SV
z`_u5=R(}`1u6DP*Uq6Zd8}7XKVqd-to%>OzR3X%OMK}P)<Z4?+%hl3^vfD36<`kU7
zFcRekA|Micl&Cb85(lu0*fL9CJnJ5Fi`Wi}Q%jUfA`kWaT;#f@1Rr|$ci*gUcTZA5
zeXZ42gt)2Ff<56*o62+SXqlL1@xIA9-Z<p`NNIPFHcGqyCZ!#mf9xJbtR&E+v@mCh
zb1yqPg<ScfuOR+yy(IA=`j2w^jLv&~?zgcMv2y!NsWmcAahmK_akZrCHkzfi03V#}
ztCT#6*e6k&?CU;9)c{jKtiPPreGa%^1efpYe(pCsT_3j*a&qLS6?muIY5Vu9Z|iH2
z2kZzN#Z<5W4?I1cJ*2kr;L)-~5S;lzoG^+w;>-fz@Z_{zsk`BO;Au0+;mO&Vc;Mm9
z?MrK$x9!_Ee|kzO-v>`?1vp5W#RgY<T8HXh5Aw4rK#}QrEaJ}sz%#kq5<L}y+yMu*
z4v8v^JNd&21yit4J$s2qHco(SDUV<|F^+1-J4n6u$G3wX@1Ax<I|-a8Z*5GM&}-Oj
zlV=qNxzJ6XP*(r1Rd4X-N=S@nw^90Zh^R^<Pkw=4bI$A?MSzk0@ZFc=B!F`QS_yi%
z$e$d+C<u^A&Za^DxBvj`3dI^21ylxzVUilOtc6R~JF#=oIDMs3RTZNEok^f;K{la@
zp*kZl=;-i+!b+1_?1I)uaOPm3foBMDBP=y>IYFLg*(XT%odC&ZF&06ZtG%$2lbT?9
zl83a!1I5V{{Q$ildrR1z@UJVh*_3mii~0!+fee<t2Pun&xKn_pL{l{7b`lv_-VuR7
z+k&^5+KZet3Ng?LP}0kT?)ZR}5b*?uh-XU2n?x$;wM$m;jHD23?QX@cV|7ge)<*&e
z=|!C*+>0N^ap!pKkpN`oGeW9Cc#t{MTDU9A{#N_DfStmxjlzY|5cGFUFvOWrg+UR|
z^mjk>{w@HBNJx~NzMjTxK#%JHC?p|mLd|MF7hMP3P+L+|Q(2h)UYVWMJ7obX4mj?m
zc$Dmi-lbJ>$nD@-R)?n&*?$#urG)~o9Yr)A6eX@$7j<}>*`>jOXbA+CcVf4XJ~mhe
z1|NA2GjEom(@9#4xc&UmN%0SynB%l{ELD@Y6CqR2`ls*(G!F{JG$V~i*C031-1If9
zy;tC%up(333hJ%sld$HZMnQ&L)ryj=gO-cyuZiyPE&7Hzt{b+}fanOJU)P8D_||9V
zj|h62Kc_uBr%iLnkY}YXN?SI~m2bWB@4k$%`k|k6GQTkEjX`vy(yBXjgw;@Y^>5z1
zdNL^s76h4Srh~(WyoFIRX`&0(wPmwWz-@uukeGZZ$(Ugaqq2|cZJmP4W%u=i9fUpD
zn3(JoQku3?7IukIHms9yET*5X#z8SEFb)+dfLn#Ni1={A&_-l-5bZd#W9#uC%AQBs
zxk2p31DrF6wj@`mS!E8#kjp9H1UMJj#V0K>;N6(>u~ZS83IeE8Bmvw3EAm~%Bw~Ru
zh(}7XjKH7<?(Brh6u5>EM?tnmp_c4W^bE-}0rt&Os%Xjt@2zsb2AZVFxPp#|3{K9;
zu;p>~2p-3j7oCI7>fwY2y})att?qfXsP&OJYH#l!cAFD0Pv5_sVPKspdY7)h$^}r5
z;CzpHqnuX9bn)r1W&Bc}_-X>`D~I>I#fEi9fj{Sd+|9dg-+@22x?VKsxjE&B#tUL<
zESp|brC>X!pn0DqP4UfQca3$xN6(Z|6IwLnWUZ+Dnmfa>{+^&(=ln_u>xa{T?=ZS8
zQfm;f%aP24*4su!KPIuiDTYH?1Dv<Wj<0gePUIU&0Rm)q9K{jTn*tw%+XnO1ZwbPV
ztbY7aNW-L=Ax|E#H+g^W*)I@iEQVM+J=Tj_{W{faTU}BJe-T}Nsedk07JI2}JO+iq
zi-e&k_@8YE+G=+blY`HpFzrQkJjW*P11GEI(ab+L{~vqrvK+^8yl>x1Ux0d|>(JHJ
zO9eJqj8=-k!aHaP84M3Z{Rs;G%&Y(Md9!+^=Kz|dC|mZ=A!?>EeX7c;%F5%LN_Zp#
zz#lh|cx>;XjRUm+5m}U16etGnjp_Vr_gNk3+u!Y?_SZrZzigpm?_W1_6t&Y-g$4kO
zC$PN550e6fZ<Xs*$SxE1(9qd~$-uFNN0ox)gAL-N%@DGf;oFEEvV6)$AxZc}sCqV%
z!mV;Rl>)-e=QP}VTiZo#q?f-I5^O^besLKdBkA&W-oyB!>O9!j?sFcqOs7vyu5FgZ
zZ{qmQI|!=DJUJ|rsDU&Q6cWptupdpTi(pvoWDxRE3(6-zedI7GD=6QjGPj@Y_UhMm
zy4Tm=+x?rj7ujp!-qUqRkfi2$Jf`eiD~v-fc5KCPQgjX>C@EW#nUZty^{G5OW=bmw
zTjAP5@Fbk+uuj%@vrh7`Yme@hM|b{cxz1LP^cy<XRvy+3TEFpbYJTc}(fg>i`|%0c
zIM;u6-8XE~$0u#sgFr}oB^Z9;qidGGH>l>p*Yx_!UkRlKd6@tFFTDG@8S86uzkhu9
z{@gG;xE~0EmY2E$=#|H!4FXUrNWf9x$;8oz8!DwmZM<V@+J`+2rZKsYkF5`xDOKT)
zqV5bP>Q+He0iB<WedJA3zXM><gKLD&kv(enRph3*oJb?%QB*-A+JVU_pD5ZJ(iz%P
z_QNFRHzS14bijnKB$a}<1__y?!ng+sab@Gs1A|nO?1ztn6vsF;$T}1RJT+stLs=wU
zieyvLdoU1z*@^~`Rkg#9DV{1TpBI|h6!`=v4BHv$gD~dZC?Ief%%O@@RmqgtTZGR$
zkNXut@0A_R_NT8F2XY`jshG1feraXZod<Vuw(h2z(FAK%_sNpPnF>JermoEj4{Kuc
z%G6R$lBunOwha)!jt~<3p`)xP)yL7k1;kidWu}lyGch1_nM6TwK4pNm2rod0VUQya
zWtp$f5C3>Li%<!9IEhe!1T9E~!$X{ksybYTs<fY5v<mn`hk%tQ(nB#*3=-i{jRli~
z)f!pP4YPjo@N>7ETJGWpKi##{8bi&J!_Ui|a{sW6O+$O7jWnpHp>HOsXZ_WMQ`qnR
z@N0kgt6%;K2Ow}QA(fJHNqh?KI(S}=T`=#OXD4(Ar`mJ`4)?KuZ=C2Jxk%SkNZQRL
zSfL@ve-jmBfgi`wKXL^9SUiHOM?f@Y)66FRw25zv#Mll9_Nao!%Vy8vvKcxkH*Qds
z2t_}1@Xa208B-Rsdq9#h_zEJ+NHR+(^76<*G&|CQK=5>+a|3x#Rp_l0e((gDmR|MK
zZ|7*}ad0q7w-Y}0t;&k3XwPI^R+8FnstiBkSOD$CzAI*TyLi_(C1(L~YTC?8J(TwA
z7Cp!RJ=RYkj=y{g@A4C{b&p~G`g@h6=K|hFa&SH7=t;J$D@|^#wKb=J)U>tghMFc|
z4;7{e-vBW0DJb&hwTIowblR`_et0lonyb#QU-Hsy!bhd~@WNZIGUX?~{?;$+f~@Yp
zJ@@zf4;T4f<HP@^;2$vs3y#a(6;RJfjuE9>yHy+4NNE0==r(0td>hIuAgEqcOc<%(
zVtPD@w+GF<*PghpjdecF?N-$VcuFKaF^z=$e|_Q~>vEmX`#5=1zWKa=`^&@gbN}J(
z(?#98(n^iYN|D~NRgBs!Gy9Vac3u|iS$}oyujT*#@N0kgt6%;KSqg^)t4JQ-h`BD4
zZa6zMi?D2_@aRAkm<h3M>4dK957)i8MRhm$HHVYOCp`vWP<Q?a{oEa1rH?y+Y$?Yw
zf8wGSo>D)GAnfv^`@zXBgs`?uOjK-TOfUVh@}kOb_$@uapydEZLwEsrAu|XiN#NIb
z2db@%=yehacyk=!<_UfRlw9c@6bbz*4>%!e*|dsCC}URHs7}82S<lvC(FRaF*)-E0
zd`X<|-Q~Hv-%}0c!@KixzQLmpl=3L><|u*>T|0m}ZX&#F84*oaee<u3fZHW9EL`eg
z7E(coZeW&)t=>+;t1NN`>lD`=u6Y61##Qg!EoY98c+}bAb0#X{)L)>F7tSiTL|fm#
ztpP`m?DZx*`aAy6Hhh{0|B4p;UMk#0ikW?F8;Ic&89ajKdK3Q1T)5-(4NgZ~K>FYh
zA#i3}xA~I|07bSf&4*v!++Qrrlstx20SI}8_jknXdx-~B^-~<y)1Z(wB5NF);pzwm
z*kjwurod<17}p~}h~2o32zapQbj?uNp87J9zcqaMO^zTxx^uLSn^tG_B{iGU31s03
zVUFO1+IJViHlgzrTxm+4DxMwq?J`J4%<XEB%#5c;qCx^cd9iz*5VTpW&c|ypE*@Lj
zofG3oC%1DBzDWMKH%QHm<qv(wzn~ZB`M<jpw}=RTWFJ2D0&T*CUogq8hwZltq!J-k
z(ewy6EVVDa>9wUsj96YGu&#uIovg0i<HPQ6=j$s@dGUq_q4va^acX5gaGX{c!Z}#4
z>a7Rv@g*i<lQM0fzV_DqDm=u(fG#})KZFx5eeKCdPOU=edgvLi4hLo}BAjsRi%uBx
zNra6R(C%icK}Lc$gzKGVPmL)GS{USujfG4je60$Zp+0QghS`zpsF_?wRb7~?uuvQn
z{_F{5{e+-L?EQU{Luc;%>h5r7k|U3Ib8)8|_cd+`Ab@DCvr0({{$v>2wOzZBi}emL
z`Dd!I<*=#4xbr3*ZcL?hkc+)>r!(};{XZ^{pX#^Z|2T6<Wa(QXOTUD?Qaf+SV>xEH
zxaQdw=pi=tcAavw1}y{G<3E!nJiYzpx93Zi5U;R=3r2Wg2WK^uR?OgYxbGPg_{>|{
z;y<kYrTo&e^iO#C`Lh4xgfq~mnP|&Pj?Fka=}zRU+mKe|UCCF=rgSPq1@}rE2k_VZ
zwebu88^5m{KSgC+8z?L<FMYXw>J=GTF6is0t`D!hqFg<(qT_l>*$c|`Gwy9Y&J!$J
zS0+mO-$ePki4sRI^Dyi)c|CkwhgkQ0S0Arnm2b%sAyCM!JwELEwf?m3@U#PJc{pI4
zb9Z-mPIq|Nl}nG$YUll&4tUw=Q@W*-SFSwv@hTCvCO?pEHJ<5ve}8zm5J;z*|IiJe
zWQ!|1ez}HI`s$8Pis^sSj=#HqdU$_-o(_}-k4B7`rB_)fpSw7karcrlPy;P0xq372
zCP5UFFreDTsv+w~kJN@5cM&UQQbLz3ljNmwdQ0J@xjfeEEa2l0$;)%FK*?>Vx@)gW
zN&f#cAKmh6xBSs9f3*LXs<67paope%nG|$6XQ@gLpyP92-Cf)JFYWMfzH3)^b&;|l
zdjJ06!~1vVzO=!`+Kg+)M>WYKoYc=cP)qLm?0+>U=(U`rEJr-Pm!W(P1aqppa|C98
z_W4r!_>?09bnT9|Yn)<0hgA0o=Q;&iccFpq`nyLyZ&~wK7Uz`DTS<su5oUtMzVks}
z&w%Ikz+asJCj;MU@P}U3|E!w9r(^tl99{pnnjEWHVgKCaMr837-q8)8svvRf^YaNK
zavxW>B<41F>+X_cwZ;DHU*Es`jlylGF07w^V$u~-GO!c^azSPL*&!k+sksMbJCF`J
zjys}|@PCk@P=thPuSsNPkVHBv7Tp2JXN6r+Ih(q|lP4RL;Md{0939C)^I@taPZaPr
z4sTH8Gw>Vj*}TSIfVUa*u{T6FRAmZr1C8mtF=}|HhHtZSbFvuiE7i<XgEh!q%YXEL
zCQoU5kS(~ZawGBo?ygoomp@5mAA>5)Axe=mQ5<6=9=O3TZz!PaRVCNFV5$yoEcDnp
z-cTB?c){fyJPS4nyk$^f4dqNT=T-7a2}q`=ZzGjOY`*TiggAwPqfj=OXq1(p(hevn
z#7ob+0#J$PVaQ+PHL)b;NNiFe>y1hq;E5dfQRS`eFQx@}BFZ!B^XeLY5l9a=o<5Z{
zWD**b3r+gh(xk0UlPO&Opq6hl{=kmnX_H{Gg<CQxeH*k{m53ytj7*|Q=ss!RD~lY6
z?^zHkAf7bw3HTJmA;7eiXta-{5fiISH856WP!S>c6~l!S<p;`6&DNDb4X2`X8)bj1
z;u3OLQT~uN9o6Tqs;WLf^`at4pL^2}Scy#7BHHnD?|CA}y(dsR?aAQ6D1xtM)T&U{
zG`aJdXnBAYg(xrdr21zedFJ`d;?;*e(yPMR#YE~W1Dm?l00zPTR6d*OLK(QA!b+QU
z);WJyr8ew6ZwGAk-XFOkEk-ChMWDrWu6byF`Q`qnx971_<M^`!BP9}h5@G$6sV71b
z$E!`Pqy#kprwciUupMI0NdK4=O-N88(?1YtP(6Q?N-VikLg`4P0Vzdv35UFrC@Bp;
zkoq@>XG9m{DNEu<$`~hYepbz%4M5cdZ`4YW(^|xqXQgB^Xtw*33NGN?P1d(jJ2}{}
zM{>f7A@+=90MIs-DphI3=Jod~`jNW!<>8r%<yXQIJDxRPIX{y~pH-h76yp&lZV%Pd
z2$GybJJyp~c6PP$&o*=Bn@wuUbl;i|qcoOPW)(tjz3~c>qC&4qD+Dt-0gR9wsM0`R
z6|Sf>O-P4kp`O&zwJ+}p*=a$ZM)nL<K8e}~=0OQ~o&>2u6C^kbbB>H}RBg+-jlPom
z!hKNH%&vVoe3`OD6&DeqSD<Cqmr2<RsuCd#a{r?=K!C7OaS~<t^$L-s1Pp5_GKpxL
ztww$?%Cnm{5e8P_XSHv6j6ju>*avigw=F0%cnEX1;H|L`tQRI&Rhx|CgiLKSAPCNS
zQk8mAPwz%STO5LoI{imM^Ci~k5LkqwW3K>$fFebxyhbk8kb*OLrrJBd+M-@90>es`
zaz|zH4nkXJ4yil62HyS}Tj9RhSEDN1>!vX)RT{b};?yX~_oU#7L5SUsY)!Q%je%Fi
zv0I6;Vo<B+;YBhr$%@QMBp!I_tcn-PEKLX(GGN<j=P18E|F*vZDkVv31ZYDcrh!Zs
zrDjI3)&|f*lr$-yHx=dF>AX`xp>A-{G(fmYV`UTkQDFB~X}z5g%Y;6LoO%-lsWB=4
zbMk1Wps!IJPy-hQG$Lir>&DRxoo`t){Qn$+%4z6FV!7^sj-RC(uu;meA%@JB8%=UU
zmNI&p)(y6XfH_81eMW4Z5u$ZOOn0ZuAK=bSQ0G9<9ivKlAhQ%NHX(pC<1wSxNGRe%
zfMma>Qa+zrf2g?l6cl@ly10jmg;engIT0qi6yGs6B(M|qtms>n7i{*TAu4FdUeA75
z9CvJX*`xX{<f>NEfD&h))Q)|TRKvbkRRwGE@|wH*^D6S;Cr6K%XQ9eZfGALAde0m$
zo`h->Mir!H(A;g(jI3T}O;F9k{Mc)|h37MOKy}k{Bt>FKTHZFjwo_2~>WQQzawIe%
z#bU>#8ox;)Tnc&*dxGk37)EARluu_AVo9iC<S{=ILp9x?CIEq_vPpr;7+O&rO;{gx
zzSPC>ii#8faRRO8bmuWiUlD6*6XNUQG>usd)N~}kJ$Q94ZRmWfP0dmg#Aub$!PJ~s
znZqQFc}B>UXVGR+f{9UPlv43FCx&@nNMH<Jpkic~=UrJ0jZ)!$j45GM{ZVUaB}ZPt
z`mi8&8?VcvnpETD$B&FMxCBa?os@79$ZXIxDlao_shVa=Dgl^#aw`%z2{ow(b&`m6
zTE>G?o)LC9|EPc$N03v30&7Z)oJBPub1?0-t7_%xK*1A;2<@p^g*@c<)cGG3-loUq
z;Ln9ODJ4CLTd0aa^`rJn(})fcAN8cbp@$hKCHVqpn9{zb{o}msSG~STHkXeJhk6*k
zaE9~+3uo_-?DWWnS-_iaY~UCzF&;vCTQbal^t5Lem&6^l3kcxSelVU?CZ;Tg=)}{k
z2j6PSQZ|w)OKI8ll&!-*o3bjd!`!OFx16$dd8}#+e%X}$>Hfoqhxh-utcLQlTl6p`
z39R>EH9NByoM9}jtrA!)=2vfA%+XixODBQQ>$vMv?5WcUMNZ508Fi=F`&V-HJrZdV
zBiDiGQ@j#~{?g0XeG%Ut;??+eFGMw5J{?b+yUs37gmU%0d2sLC=Qhcn?~dAwwq6Ux
zx2NafdKZ@2vU`93{CI&|^x&|US;+$IzcuWca`qsCIwtI?gQJ$nl9mvzDv+yL=96S1
zj}k0w_Rk7@998R2618nu!V(ZL21S7=C}}E{vHxPDt%}&>AvpAn?fno0amgME5JV9K
z3^OfHQjlqe_+rHqW$GG2QAPwJr7+3s1865I*NEaaW2y@(Q;B4~jl$(IX(>jjnn4X#
zBa5U?^i7((R~rQ$!xjvz0-W0$8I_)i9i#4r%B05bXkitaMp)Rl)V5JobMl@BB8!H+
zQwy`&;>JW&#^n0tTxDnw>QLAfm2_3azO_(#1?{7$c(V|+D<T^vi3z=H!1$RlYYs>S
zvue)*w91Qw?I98eEkJVOqUuJ$>qfzMB$WgukFruCbIKo|Ob!t?3IgiM{Ge7Z)sB!h
zpmvgQ>?T^^ee9QVZ>mQ%hSt8MkTDyKZ|sHGJCnc}K@UPv%}794_1IyB^n^Nuak&um
zUmb)miwsgwysD6?2P2dm01y%bLWF{NR5nMX3ejt*s@BlFCykV?!(^qH*)L?jFTK)B
z_4}^(Uh7eMK&NNvewm<597qi$ry(QAXpoe@D&4IJ<2ib?7P>G~A@&%Sfpo%3Vs{a-
z1R;760)iEl5H7KiOGqiGt16-%eUY#p1&IP)kNpo+)LvuL``R6)%mYXm7zh<3L#k&1
zgCiC0G0+L>Nnd)G3X)?wn(Sc}#3=Mhc(E3lz+n>lu~4)oH-k5bBM6W?#;U5w<)Fn+
zf^<<;Dd7z{{29YGt09_;BlEUwRD)R@UV47u=|b<aw@2cw2MzWBD7Z|4=ztLuwG?^0
zeNdCj>je55V@BF93tvD}Sq8{a7)t4$6j*YO{mc8GR3(^Ifc-s65w4nUx%0&4Al^WM
zvw1H|`>3Ux$ityP+6Y}K0jE!YDmtm|pJ7stmsT;Y*p1P%ti2Smox`UziU4p}z=NwZ
z5zs_rf$&8185t<bt|oXUjU0w;b%L&g+=5|bn59t?DCfu-qx=>WbXIX~(THdCKKk&z
zgj>qC+$1cc(S%@tb3r}{9=oTqkEK`VcRf2)7TOV`ItyP*JUcPoqX)pxa>@vvdk6?t
zzBDS(Pa3&iBX@6V{4hwH9~!*n(CS(v280uKCMyJjb;TwGIZf6B;!)HfZ+twVpgY^N
zHb6KTRTYnUIFF5j<os)aSCxrF2%iMAbtIvNp;v;qhC$1aI0TdacnGvG-Cx5XwnLh3
zt3{^m`1$Rdi_EU^K@kTa3J^PDd(t)sw>(kq_<L+%lza9sw{4{&a6nQpu>mD{$i4Es
ztT-c5?x>2!**34VWq&eu9?MN^)zwK2CVQtavm}LL*0}DKlD47xdS?ano=*$tJ$jzT
z=Ukaz^K(h~yjIK44K>P6w?^mb7!Q!#)%?61A7Te&D@ks&>6c?a_3>%4A<DxoZnHV<
z$pQg~JSy?eHb0wyAazy<y_f3B*-9y3gm$F5Z_x}l+T6d~|8h1h>d!9Fhw_~%FZcFk
z|Ay}Z|8xBP@(cg9tNwy>^*hr(ZpR5o_rWgW@?mw^a9gs?sqgIH@^b+gYq($ksN>tY
z+|T8^d3lRXPi~L-e*JEZ+nwzsCoO6X`3ti8cQ$CYxWBW1bRc}E-ha<JAHVa@!O!@$
ze|Zwv>~No=J;TrSI;KUZKlYy2{Qc_J@6_ho81wqt?{xeZinxkG_CGhCU4jl=uHDyG
z@WY4x&AY!-_rdO8#Z$addVIn@$0AmI7MhKKaj`~9i4V>F7`9>3AwasA4B4b=?<Q6b
zaFh*On5I@Jwlr)JSQY$ZmR6{jeLOa8|L`;R49K`@+Pq*C1eEVoU(`BTXlY^aIhm91
z*UrAOR5<(E;vK?ZGXZoI)!4B5fSpY8BOwiC+lsN9AQb2uET?gHai{YKBfw0{AMGux
zKD>YX*T*ZJxc8_m;418~cdaX~Ayx-C84<zMh2>5D@TE=N(kAZcjvq@GI`6`^wJgoX
zpoV<Yh=VUYt6FL%BTH^^Z_KLk&;Rc?`(CEVX`YssO{9kKNqo)cMmrtiYtDk5PQuYn
z;*(~#s8WbIpp(Sc0__6oRm4OHE5=YA9g@4c1%12?17)$j?utA;?CP8r()J|*+C)4h
zz#Ntg(p-m6WiuSQdXed|boN@-#et&di4zD`$e`GmO*X4kGC>p(N$g7*3~c&*w&MWc
zs_#zZFzj_Dikg2LsYWayWAOs4BQzV9Kco+icPLJF@6Mzd`2)%<ILtZ9%QR%sHiNHX
zpXHK>%St$#M)452^>yU<D$1K+mA#`0AvKH(Mf!yzYwG#&Lc_k%us^v)IK^Y}k485U
zvHj7Bh%XTtZ*0Y7%j`1`#atBZR@Yvk;BUWPk}tII&c#6X?dI7h2>bD=k*#lJT&7@u
zG6nlJ;g&x{JlhTC=o4)YJjkinIrUa^&&k&QcwDI0Xg4&n^^J%kTch`idLrA|{wCx|
zKm=i=MuS_npX4A6@ZX`a-nN%C*4y@yi(TQce>CRXj;l|Y3x=)T!*`Nyy?eB`w7;4x
z_5R(5iwGy}&e0gUJ#+NXFX95@C}$lNmk2%R1%MzmazA3;;$w%2X!$>sCN*!0tQFKX
zVv}AXD>!(@E&u|menHdS2Dx8>))e0*@?fX>MgElFVUcpcDq5T{)gb+vI#S8~Kzm%v
z1y`dACHM!nx6~7U%C|SqeZ1{=HCYGl`Q2lwGrm9Q{<@2@*Sk@@mq=m4K>$rjaV-Hv
zA@&R-PAYzaP(pj)$0wVSk{0Hh41~Bm&O#f4@e$~v(2jvFV;S+%7z!y;wCxx+^WN^-
zQFfXJ*cb<0O|+R#b0J#aj2<=hRaL9eDdo|%YnNI3p=aR#zU;gw-tyQ=!Vef7Xxwls
zz@;hfF(eZE`bds=4t0kLEbMmlQx85$gK)L;plawT%zMIrf<lVpRBk{E7K{(Zf?~=&
z$c_muxE*_Cp<s(NGULXel2bWn;^?ZWaW>87ISW56631gK(gZ^=qV0)ENW-S)@mt0u
znq>ivb;8<LHEKgv@Iy6*g3I1`Q6z-fT1P4K5rqRW5<e=eirO5p`0>)Z8YDf94!)IL
zPcD-hmn4#o8CW^nz3`{Q{fHMDWeKpqfMW}aDjJ3HFr=(lsU-hT9tBi4aG^D*mMxBZ
z;xMVob`u=dQlaH~p2QiDF>i(i^Rj)Rdv(JjY4M|NJCe%0-nyV??H$o^&@oUVyKd#?
z$E=xesdYw(%4dx-_CczT57ovPdlbmH7zRo=qG30r)z!QrD!<7IvvJ6E%FdUe(2}~7
zeP8Vt-ra<TwgL8QKEE%M-s)ew)h4_MGVPDHm$d8qc0E>G`H~&wc^H@d_}c#PVM+Qr
zTVvDz*4Y2n*uQ9vDbmhXNNwISBDyD8k<!Y|*@Carbo5uI#bL?%s;{07E&n!6{`1-r
z<_^HCCxeoC({wayrNyd+tFFF!cFD!L=tNs|&yW54hrhmk{-7EpXR^%!(>n+wnpEqe
zcvvh{NFhocBUE0$CnOV&KpGNQ`6>swKLqn%&kwq7L|aI<qz5et%f|$QPRY$L%m-DB
z433%P;e<)8kiB7xpL_DcpQ@cfZL6vGijL!5c6hd>=;?*$c;z@=A`xbr!#jokjTG*h
zdJpv-O%240uPB7p)P6BLwxJUZR*4_WJUEi2TTQI)JT1%1ED~k*t)6!^?FFlsk>wA1
z{v$aBl_Ve|euJyK#q5~}>X?1`(>}YQreori`UX#Wt&ty}BIjl1RvOEuoB`N%CzXX3
zAANT$A=E(ex^=Z6JvjFV^Z94B<x9JXNm|D7Kkg0EpU#!1^3#JWPXmrFvKo~hp_dIp
z7IRNK@z^tYf%AChxsU8tSz=5%81Y|;5qUn13sFo+?hc529v8Djk{lA4x&!Djqf)QB
z6GVb*Q6z-OplDj78m3ykbbMG-u08fHR%&hRTA`Q7(}|+M4L2$~O5fyUNN~eu8wDhd
z>g|CNf_0KPkkYRu?;V!*B_!aWKFf)6m&maYKJ60)=T72t`eW?Q^D$J%KUck6^-4>y
zN@@F@PhlcGy#Mg_=eIVWF3P~&d+s5k50PC6KXETek&(FMVHkn2oCfzDPRatXN1OUN
zB>BTjQSH1$7)ptXcpN>t)lMlhU<jap%yaPI$ExTN6Z!D++V&b}UC0-9DdLnVtuhIY
zL{a@&51ztJ0^YmgszoxPAQ2wxhzVjC6v2l`q{6slPh#k&8dA{jv!Vmo&%pr<>Oy9Z
zkI8%BprZwR6n|~!uk|L4y*KHGl3%Fpn|YWhv@&4%F^MQua@qz0N}^<Kr$FZvaN5Wj
zIN#VJgg`t9bTY!&DUX<$@riJ%KuE*b#-a0Z=+}SYk=C$uJ}kY4rSoC&Zse{F%j(Vj
zNt<A@^Q;*9nmlGE%I#i?ghH-t!{VdTNYI^-2M(OvxedgrU4e&!T!Gr1kX7TNnHKg$
zYO_Mgs0i{)C>%ibH0%u1ETcB*{=N;%$z<qGCW_oU=pOowE{wsWl&0=%f}KpvZZ&09
zjiM4Bk_N8}T8cs>>GA1A&)yOr3azlm`?u#{aK`N9?2#6!a7&dYReG`w<3NDVET~wa
zFCxxT57GXRlosVAr<`^MHxjGNp!_sIfE{q5-VgyS_<@A{*0mfSSlA7A8726(E67iZ
zwcQL7QC9rA^2vh7zH8TIVkve^74l}KQt0TGU>VIjw=in&YsR$YA=ZwYUTD8XW<r_p
zs){62T>7vppUS4r+0TVuN?o0J!awt-U2KVxY_!;YJw4A_AKFmu|Mt_n`}gN5v13po
zhe~`Yiyr9HlJBI|#3g#0U3Bn&w^O{yGZ_88IdYPNJW$G%TiFayFs)T4tz&^O?XOlO
z@$koIqe@>n^tS)-aKC%JRygrch*t<wWWZrF-<TqhunrP*w;AS}P*o}}Iot)caYxw|
zi3CWhL7crjf|pRlrkfp7UlCr!cM*aFd+CFR#<2zSXs2Q#ipnI9gHJDmaiwB}c^(w5
z9f*`0F+NnjRC_$O;(B>nsyarw0j!x+Bkc8rUavqb+<1wwcBlkxDCk=}Xt3*D{rN2J
z0bus!mu@*ehy)*h7(t(R*w}aoNKk&4dkM+lyE6q%A!(fwWJ0G*vm#bjfuS`zyr@3C
z7qGfz<q*F<Sw}Mw)`~<VLP|9kNx)L>Rhgyo&vKV!kwlh>=q^pYTc0-+7W5N^P#G>&
z%a<wh{;zL;`D_3D;r_$hcNZqy@xlG;u-mUmtERNqmrdj+BWO>Iz$?Mf&u4GWpNzS_
zcJ-$_LApy(Oj0CzluAQIwKLO8P`naqv8q+V;f?sS;;XPYVUW2|##Ge29+er9C;&D4
z;bdyEwucN<F^v9z9`M-LW3lJaOPBRax#ior+^Folb03}Tr0|My*#x>vLw>AeY7NA|
zsjei^sF~vzY;9qut)&PG&L#i}uBDS{kn}S0hH6lVJ=rT`H^zZRbDBeIyX{{j6zq~$
zR~d+e8Vd_QOdL3sUK`m*jjnY}35_bSw^!<xk#mL>5qF*BI|-h^hfiYm!=}6_Ih89U
zSeD8CY1>e|lu9&KJ1DM0fb+yh5}rFM$FH`}J*^q08+gJ@k%n0q2)?v~b;;BMQ%WZ<
z%p80ow6NEru;H*(P)8XaN&ng@B5Y7lWl&6W=MBe)bYRSKlsw#@Tam)g4{p9yP{Ze=
zR9?qyIuz*n9FV1i{E@&hAfK|skT`BtJtY*?%SqCol<rO7wvs4DcXx?sTgiR^<*LS?
z-7^aof|`N~n<dBs6K1c3{z+;1(~2NJ-CtPMhB`REQ5r@Z&Ow6v6Aa+HU`=lb!~F^J
zuRb0x0E)X47~+G<r)16c;N!=~ry2R`(=8AH@mDt>B2s;#0ljK_f4T`T)NjdO--hYa
zP52BNP$cMg5FyO<Q!NnEJVKSpSg$3>gmR<3MYfA6aOh|{>Gcd4hn)F>o#{An_ir!J
zJmTO{Hh+@Fs%$wJJ*Y3F9~0Ft^A8&Y31XgdJ)w8a6F3{lvzzQJ0P%m^g9n3YJSjEB
zMq~7kq+Bf>s@@*}WwwzZlkmw{BW@rF6;Dai%UcjXpY9dM$KNh&*A!2TQC^w2Y(%mj
z_i94t4GGd9`A|FjaA}8&ZHM0A4T0V1Q$5B082r!)aEH!8eDp%aQ6zK~dOhmDzSW@T
zydHFi(lRM{nt^<|mATHe*QzileeD!S@4@uwlI$i*>>+=yN~FU;kqhz$CgxG0{$zS6
zY6brxsd_WXHVS_UQyadPWI6(2LTO_1_UjFR7phd92!hYHI;Fr-;0%Zf8WN{jC<8bi
zCm>~lzEN27UCb1Sw42%69LzwK3Z{)i#0JmP|M){x!ldc2WVq}oOEE6hnj5@F&ECwL
zT9kR>kvRypqxF)9$2u^yAb`+PDkKLbPK-ej{@~jT{Drl1NBn%x?3ha%Kr)|`@|rO7
zrH;S_Tpm?5a3>`NDKEv&)@^IC>xK`zznyPCgY=_d#IJ<tBcToCi59UeKEZmK=jr4V
ztwf2YBoy2A`bzDu-SNuW>B{8~Ki?)g-nRl$3=4Dw<6t!1VfB{vz0={|_O5RIu5SIg
zw5?sS?*)6`>673>Z_274?Z(#n9-~cL1V*oZ_xAm6f5H5Qaf$TkTGFB2JtLoCluL)I
zXMFz%x>n?D=ed|(JT0}q>ND4^?&E)^8dfh`)K%a6R>uqmlG%^A(2rpx6I!h}3_y(f
zZeP3pc*oqXZGY&33NRz0y3IwC_xEhB15SE<t?#buyX)cZ<$c}B`?_^Imln25_5sc?
zcwgquKif6_hd=vlB;LIH?WfC;7>jcxz?v~S?$I)&Y81v=Ttu#S9gu9Y%s=d!whhTW
zm<Vus?P>y}A_a`GQ?-jQp=pxkZJ5Xl12{=%{fvN-bo)LUiw0dO?)=`dYcH7;)Fd|>
z<|<(8?5bn<7Y8kt3LP=R*SMnhATb;*5;3@D3jzm;J3avY5~QUAe~1h5AZqPZQk;+R
z^{Y#jD^%$4@g&Hr4dlMzY;59ckUSppA{esO6dL~J5xFK&4j$e(W6hqw$vUd9tRw0S
zGF4R8_}{UP#?>+!&sLF*&%^V%i)4EE*`ri3+?j%R?-E$c{aO6qXTM^8U{CoW&a*Q9
z;`#y^scc)?%3k|83I`XKN7_~vLK8zCJ*%l1m>-_cv8-$>qGgkVKol}Ty3inydN*H$
zvi`9dV30WS_ajyfB6jrUDRRIiRMkPczj9gv5K_7_)6X8<yMynn4ZU=H+mVv`20+8<
z6$-g8ro3jXrH?V+*RHmQ*1q25;rIi7U?R2d>iKW>-qkOiDN*^h*0bN%7YXJlX58tv
z#E1E;QA(i&RtAX+APYixBq#`7^;$P=#a^ZVwr=FK0XFITHOVkoLX|sH53USSjQJXc
z5fQ`5izK3=8w3S`PB_g>^n}af52eJX4QL^m)Ul2DMJQK_CY$E(*Hbq;9>`|Qccz2g
zoBY{c1865)C!PEVY$(5HRU3=t^oH96{l4V-Fq~bDyXa(X5wRlwQvUdZJPX5`PL6)`
z;vQuiKa8bCg5~H%U0)wRQ?;%R;2u+6P!9B1&nd4oq7+^k!&g?xC&#eu6VK26Pj8<e
z-(5t1=cIiCxgB#9&gr1MSlP*$Q3>lL*)SlFC};$~zw!U1JW$*;GR-9}?5j3u{5Zvd
zk`j@KfuSz5JmX_Au1z!>so;kt<k)4zFZzLh9#2C-e%X?&6eo>AP`E+`foTq8NaKGc
zZrLuWCdDG(-r$nT-KdONt++|0fR$l+!bDr-fHK6^zjlt9;%-MAl01lBS|7)7Qxx8=
za0$dq0?xaInl`0|+^pJHCPO+OPA$}0uMP6)wf)*$puxo@b1tam<gOUJ@EdgvyFUQa
zxbbW^@IM`Mno?Ywczd{pqJg?|ebGRW$c7-+<8P_jJQz=&|HQ+F^$UZSzTSl63l!H@
zeFfo;(1})*Z2e1nf&4T6PR{5Zy&zsrujWl>m;NxUez_&flYUtPPp?VBq*`_D$sgZ`
z*%ZTg(#qc5pC=7!zpWoY8xMc_RrJs1>v;NOr+1_^U48Sk$$I`kAC+}$yn#Mkr%mGe
z_UMxvR7RO*tRLR{D4mWu-D=m~9(s3p<!R?cd=fjtxSB|<bL&ZSoVb5``^#U?W!Id3
zKFF?0z4_d=V^Zm7ubn6Rk~L*i^~J}vWFS#tEazfD9xg?Nd@dF^EX?_j^-NX(YzAPR
zQ(hx9Nd+KpO;vK(t4C5>YQ;Q-MgsamIo)E_w_#1wUs`tAX+i7k$S^X;7^~a^WvmqV
z;dDy`z78)Q$P*I)q#>SenSvHk?xAqb;PvCZm)6yJnadOfQAR}%&k`wLNEb=>(h~ea
zsU6A*ne$%hC(ZHny@C|m`{V)#?Lixm)?~R83L#Ny*s|uRa@s!4IJBAiy<8C8@{r87
zzLC;<0FlI?HnEcjK%n;h+|8?Q3_U57F9GXdI3>W0BQD~fRV>CmSj?^Gy&o^X@LL4>
z`=bhg5Ig_*Tfvu1=i})AdViV2oU<1a97f^onlw9nZX@jX(Or@`3-tzcnxaa}5%3tr
z=k=~^5NtzSJ6Nm=aPR#ZbeG2q-Qm^FJQC&~cEphjBP_|&9Y{Bt+98{yt77d&;td2i
zuSpbCOBS%}sO!6b<zD>%etUTM<zg?+qwmE91^%9pGVVvNF{#P_9GCa#7<B=x?(zkL
z^(8ar3C9)&IWPuQ{bO{MOo`xRSM;HUT4WV*jk8is?oEOk=gvR%5=Huplf-nxZfy$(
zJUjx(P@x5nt3xsw?j?}vqctaO6eX19#+lH=UD_+5b0-eQojIIvjyWk%#%3Na0I>iW
zkmrqO;$nWV!&{V>>#x+`7%@gkrdTj2o=vXW<RB{QsXDs!Gbo7zgeP2<kyu?|d<fUW
zL?!H=0qgVFC<<=h3GGKm=rH!W1t=VWlyL)8FzzKDqrw75dvTlR<F6*#`*-jDcFE;E
znnI8{k2bNcOr2KB^I~7s(z`m@Y}MG75U$>GE4+&1oWoZ1VpDgI0HbJZh0O%v1C4_1
zBH(1O)djNAO;T2AmqwJWLHLRSp_MVi9)j)T+I!tMfCIO8sba;WWqL54s|wliOP2hX
zte`d$FYn*|(u~%J9K{m{ysKDi%eAc57Z&TqK5c5|xutq#r6xGXINQ9(CjmXNDK0kB
z#h8jT;h}iA#a}nH@)9&Lyd~J|fpQ&Ry`0B&?Qs`oSrGSQn!RyXOtbkA4|GDY1}AVv
zv1wtJMztI00rgfi`tcJqI;X9Pr3CAl*pr-Q-GOFTt;bHXS17s#vt!oO41*GZ`TT17
zx0a>XOx@QgwqOUGk*qExtGl2~q%*So2=Uq^JSXRR%3<c9aS>%ZX;KWoZ&GM}=`GAI
zMf{alFW>vqUKyONW*0+wmE>3HrIhzGV$IFyF_xRE&VRvtTCY{pC1tCipCXer?RWG}
z%aIA@ldC&SuCJM>Kq@o6u8rLJV!VcGGE6?D22Vgu6(Ihy#fgZ&xK0~Y7@U>cy8evl
zE^})~4)Vqqx9S(#YZIW?Cp{Wt)NMlTng>dX=H^4SlLL<KjCsH3dx(MiC*a5u;aKdn
z^evG<sQc~q_QLM?LL<fcb7^4b4ctcg>ci5-)+b#Ym)`gvx*?tsud%RGRE1FzH=uJw
z7~p=iUR8X_NEowPrT3^c?J&7iqYilc)qF<XKN`t|Ql>eV<a`l35`DzSCzxAeN&sL?
zWdjkaUv6{9$MOPywc4Ym_+e|xw)J2lFTgKdefaflpigMBFsU=52o4Q~kf+if8n!d;
z3lQJrcU@CIt*M{dd|Dhg$0^mX=9EvSzRfJ5>S<nVgGn&>ELmf)HDLb+q(`wfn@#;;
zW(DtA&d1v?C-E}f+iYroEKS^cC&xDSt4SEwlTf~*cGC&{F5yjv$v4F|SA(ntc@Okk
z0z}lm|M_fRh}WGEuXEx#**d4;VL|zNj3!CXBU%;t#jKSvw6&rE@`P)!?wo|j^?Yr-
zKFu?>;yS7IQqy^gYkJocdiO_{+uQw{Gm$vlD*%#8ToazLL~#&B_Cx~Gqy1{1&k{QM
zsnbs$$~sB@Y`^-o&;1nrx6<o3?1@=^M8x)_D5g9Y|56QrX{^g%3L;`%DgKGHY|3M1
z=3(Bp$0!ErGoRD`?%L1oFTb`MJZ5P`)lhDR-EvI3E!rTAJ526(L}9Q2ZD$U-w>pgw
zZaM|l0MDQJiu+pw_Op7~``7NY;p@IC+FjlBk^Sxc?(rho;EgPWMaa7#;;8Bv$rCn9
z?>sr>dYa#>2->Tnix=lw1;y+-#97dH%b&hH`C8<<=}BWCHUO7Cu~}p(eGekI64Law
zXdx!f0V@~puw>7L%Fs(7ceey`cM9Zw#&ECbZT<2xldOH`cgrtKu=7aDxL3XzRdo%G
zUq*0Bi5DDD*V{}{598@u@MmWgAsO@c1QbaZ)7PQ~`lCKRl_+OWG{GZoM^zRXUO>`g
zCS4sHzjLR_Eu3KShom|tY4#^+PDsEz7w$qhNWwQR*43kU_q-D9t_gTQ9%bTIT+M~Z
zU*3J#JzmI>JI|l>YJLOBMK%K$M5{VLyy!qkVe}lvs=)uD6d6jQY*?T?V47l8!BmAX
zvFM6OfYrUMf-_Ytg@5}grW-(Gx}aY!81Tep9CMoqFC8vR{1c>U5wbmD)x<ky=Z!Yg
zXp%{mTZ|zU3ax-OCdS+Prn~{d&E4KnljckS6Lug=Q3(nu6NFccZ)dXaR7Z}SI@sGl
zyd3q8givTp!mAqLjf;xK%G0D3JdcX`-i#^uiZ0VlnjO?aVTU0|eIdeY0&sWHt8ExT
znMhQB3RwXU6KKrVq!_S9f|hD@2T*$Q{KTq=N&#0$5njg8C)bC6oL4!_a!eE^>KsYI
zx^pu$$r<u?B4hi%+e84p&S0L*-E!JG^)ks@_Bx+=HGiZIpStmN6#qKh#{6n?QaNl1
z=V8I)R9-{zkDh;h==*r+yE}sN;33zxdcnWx4w(g$BAki}_^M<Z?7v?ZGEZImwOgkb
z2uRDpbh;&T0f(A+)ql-<<U=FL{>rN!mwMpe=v}Y&=|A>G?3DkaSN+TS^c62Ur0IOg
zdn9Ej2INa#^)KtwSG`DE`2OuLZ+HFE!<)Ce`~7+T;q-G{HgVfPwx-@th0fHE31}NU
zNC5|kBZ#xHc$qpAyj}^@$=5txcL@|99yo#V#PcYihs#2d<w>A>1jep{UcCN@i4`kf
zbo+7TQ4S7hG8UQp&wgEBCy*1|-RsM|Hp$6Voyn!;@$@3u1=-wfLq#u&dyhjfb|1^V
z{Za)>UmJ=!s8(4?8_lG3YCc!Q7%{X_CF)FeIdOM*3@%q~F{kC&RjM$pE>WziO5Bqe
zF@rB@ir~dF^rk%ls>mlbp0`3s?xQf=ZIb-j(zs8w#}s7+BQ`9M()KkFq00YwCCFBK
zNOG8a$`75(@l$9xD0boXU|g@6!>S1l`s=X2kG{b_H|#HWZtGuv_^ChqaoE3^h#};c
zKAyzS_2o7U@%}9SZgmNDzaK+A`K2$*8g%mZidw#KTa}$B<tbafUx<=$qEXD+|2_AO
zCQhVR%htbI;XJMjzOT@kR|B-dW$stB4UXg42<tR_?%T0bc_F0Juxp2Yf^9tj)R|PJ
zH>m21%KA3gW@BT57%g}VHeruEUwR7b>5}%pi~+(^n6|SQ69f#Ul@E@BBrO0x+Y?No
z%*u5mgJ%Hk^py*NW`(M`K}gq5=eS6<MbE}>|MvMZwxqoIlMdh9O1b;^oet6S$q=26
z?dj0A{pwHh6l_8!Abx`>NrDjj{nr9!<$M(|t8MQ82~QR0e|MRs6&4TVcQPV;SM5Ll
zZr;c5Oz-4a-~4Yn>ftwzb>(;UFGNx2`MVU-BirF%Ki?m#DFk*PJ8jz#r^}=&AMxJQ
z&fID+5Y<k`e`1=iZ}svFkLmo!??AB{%YLliWqa=T>$53WwI+tYc-Mb9x1Yqk*wnh$
zcAOWN60h!p3I}>+8}urH*LFdB;17hmP~4CZ3=&;zM8!oa;064FJ@0InT|Z~ts&#AE
zoFg1q$I@m*BpThg+`H!o+oJA&1*yVA6HkdV+%LrW1Oq!Z<cxvQy)R^7RL~8IC!Tg#
z!^lKcK=p<?U=dfLP$D=FoU`ziH&h@iy)IRK90H0+mL}#0J6-TYVzV(I&B9=b5>E9v
z&W^-UhfWUaPPwpTBiVx|p&qI5yNaF9!pbIB30GWDnf0u|>?kX*ik9j~Fs>VwSR4Vh
zoT!R1M*$9P3Q?ut{|vvQqaz)i)w}7~(djEYy3K^45c~8M{q$us9(x(Rm%i?PJI4#M
zUMoz*>j@JtZ~V$*=#|Y5pU^>aCogqq(h7VJaPEN!Diau?gi_k#4RBMGMz$u64zei+
z7>4Y+aYK<(#ETC2f1pbHhW>LK#Y(Z9*-V~=gA}KvzIiVB<Yk1RB(XOB|0BD~GzdY8
zP-BPqQOt2gYy<}i6kd=o94)UGbl$QCe|sZ`^#0xbn^wm4gi@)7|MQf3>Q#cGv!+d3
zvcd?X9a=8pF;$TRDN|IO0l-Ur6S!gU4*=LzeqGqD9Nk73($q|h-3h*=ds8~8x+{E1
zqU%Re;j=mnd&Qg>^-xuJUk&Zk!~KV!?)Uo(xZ5Path@k6iBC2j--@C<pRm(Y9(u+&
zpNNYde*a^7j}F-YOs5rY<43kD>mI!NtkU1XaY#l8SXCm=PXJdkA@F&*a??UddNzuu
zXWSV0O;sbBa2p|BsS2Mzo!9V?PM9Y&&|jn6>PfGkyWA>|8w0e5cI_o(V$aWFmkO8h
zA9gPE^AdtfcuBWBgXDev@3jf|CC*J(=&}UOs{0h(U7S06!J;UM(_dlV&%Cnd-L0oP
zCFAQAscXOr#SaEwC!+X9=zvWTIuNuIE$MEzP+M>9d1c>TEebyKP7!sXGASmYKwzRj
z;{oCe))}wnK(|$!GIk!)CF=tdp6QG{5+#VZ7{b36Xp_sbaJ+<`$pb)>n}EHkVgs^C
zsYWJ{14tj>=ds%q*%ROk8zJ)vK5rwzCElpNA&<V)@U%mw=-8oMP6vpvM;tA?Cgs8$
z1iq7%@42Z?DGgEzE?THQpw6blSvcNCD5t<D==(WMzNfN(@dG$vx)N4F>qgZ%<}n9Q
zmG(?^M(0dgGl6G>2;iV42SHo2f_ImAU}e`LXC$gn%VS3=k6E!#(TAJ^e8k-~HB*ob
zop4A<=7oXMFi;zUvaQKhC#qK<Zs^#PAJI@DvZV&cW;E|44paoF&BVA6t>G*%O+KPt
zko#<0C?c1g8#XDn)68Mgc<E<r30^m#Pa-a>^zjKvLpb%u3uaXhL8=Kv)3Z-4han3b
zn+t7vlU0|yi2@!$OL~%auU(1x0E@5me7ea9|4emjs^dFml^sk1fwSHwm1!Ndj`jZ8
zUDuQ<0SKdGQblC0SxiBARn^lf<T?_^7YGwhHNm062C@zS4c1h^Js7%$#?0PL)IOt-
zH@~+ycTl|$Aziv~2kRJJ1@yqgiSbPGBr5SQV*u_Eq&Es+4-O5Lmr_=TdDp+ce|s_c
zCQq45lrOgh*V6UpUf_>u=E(%zY8Z4RZZ%+CH0iJx2xfI?l88)_kxuhKJz-?UYg26F
zY$rJLVT$1*c2Y$u!ayRq(lnpiRPuiSTD~^Tl2!}#Y9?0qq1`sk96AMIK?K8)Kpe5~
zNOcgLGxI|c9A`hNtiec5KQn7oaT`fpGOlhEbU)ru|Au*zn@p37z%zFcK%VN%>?`8C
zDh<Q9&0a<i_!ZlO=_5>JWL~L44MXb;vM7HuBT+~4P$;*mO=6HL5S)}M5zpI6F@<3;
zE7`Op>%q)nkTij$0a-{$50Pw^QMX8dpkPyKATtX)EqnGAY+P=0(CVb+v`K`jzOQK(
zM)7lX&uIoPA2zDZDtteinE`N>VoYnt+XRKLWo~a3_9OzxEIH<XE&5Mt(UH|GT;^2L
zbpTO7uD=rt(lceI|7)ZXusF}R`{%Xb_3;N{ENtV93U4FQh3#TcMHjxS*L^_CciV}Y
zmnCn6XT)<h1pDT1tjxj1!$?wkfW`6zpdJ|~m%O!Smacg?hyPn|KF-AF$9I2!c>ml#
zKHR_j<6=r?N0+YJ$gqbj%PC(jr#4&8SJU{ls|lGc;GYl*=jHNVukJrVbFjYusTzcH
z^3T+s{?9dF|87Pb{~e5WweElW<=ld1LZd8bld#n(mADg0P_a#<-jMZOUQw=OO@a~;
z#Yj~kZAc(^!KPNJ%4NcFQGDXefy;mlk!YX;8Th-@p<!;2^r~xN)Crm}xXlvc{AeCU
z(Q_4RiWf9sa1cht9Vg8JWIfEvKyy3zd?Z09OYJ*+FiwL19kEgze%JUdhoj7Z9cGc)
z6{1<XF`)*sU{75mpdvndnOM+)#%-#F7>2N8rXo&5S2=Q#()rj%qUha6%u=v--IyAH
z@@A8xv~R?9JF^X?U0j<yJ>L|j-H6=W>5w0FdM^bDKoXqFRR9A!#R1E9u7lX-nn~LG
z<)YjlZZvYac#ifTT{C3W*vDR)XT+*lTnoSeLFZhJBcOluA^<3)QCcY(zp2OxDOsFo
zZ4?~Y6nH7Pa-D4URmLf4l+xbOy(4upL(tsGuHL6W=SIa)<L<t}V}fB<1qDWym6j6U
zJ72(r$f8>STGO%bovxYd`k^P%kKx~@ACh;4f|xugTneHf^S`NzXe$|pCh%f9mscON
zDwr$rw5m3S+u195`AJ3s)H!m<fj$Uu>YQ8=o0L7GBZ)jgHl^6vG^!gfVzyH@xan+t
zgMpUqLaKb;V=*Cum^Z1hVW;_nMTd$ZI*9U%?{!5t1>NI_0{&dR01N%0tST?qb490X
z$pjlc<B<{|db|pfutMzN`*uNpxMkPO5u1i3$kTbKKY46xoH}SM=-h8Spkw0(5)sL!
z)5g<aWV8oLLH_Khi?mC5^DCC30$s)`{X_SF%_;~aB@V!-xkBcDRx;)-v}!*PJ3S4?
z(1v4UQhokpID#P5gKu<UbTu8&6z9#tU5Zrxa3ew4#6Ob;_UF?H|JR~_-l8K1{_WS-
z-GBdcl>R_QL>3%$q6*I|<>}TX9ea1=^(t{jH4q$jUR`l;CJ`pzR^1J_CumH2sesv|
z9E-srOQT0<4t`DN*Wga<f_u_uIsN(*_uuZ_?r$IN-|o-re-zKxVb>#gY%F(J*r&P=
z0HRt8_)5TRk5TDLD#4Zz^ahpD%F&N+5zniD$Y*?h7*VsrFnnsO<k~Q99an`{+_g9E
z9JoUkPk9Q^swr%ta3ciWu_}+Kx?$g|tsv@+iZ1GghWxSI>;FviNYWIkUgQvVBMDnf
z6YZZt72+tKZR9ItaRC}4%#k?Zt0W3AbAavKW!+9y_gn^kRtdhT$-as$BWJZ!(Hv@`
zHK~MMgEDl)nU+qUHwmFD38q^ij#*IHwSo_=FmPt96qzh3I!`*X|9=FzO{dg7AKNz%
zXUjB1AJ>WfLU&M&4GPIg?TjW2vQ((5dfv?2l#7-UAs%dB*}aZ5LL4OSi+e?O+PB$e
z<)3iZB~OU6jK_l_ClOhB6<4^+J4@Aw^6N@#v_}GGsJ&AzUak-`War&TSc}_0M$}mL
zrbv`tHQtdySj~%&*RI_6$EWq~&Q;DP8#tZsQ3ha~46*87DEd<f9MSc@33T@?wTdaS
z^9Cs*bL?a@=P9=FGRA-cXR$wB>#agAb`+dWirKi$!1l=s-Xx~%&CZSQcU+^wtzm3_
zVhAoD4@|DgoxdHKFe61(*z>*Cy>~%HP+HKaUo5hAjjS|WZe_S-P~d4(QElS%KfS;I
zMcH+ydAqS3BCjdpcts(9MviU2bjoW@O%G3K0zp0td}CFvr6TGm*cBg#JE+}diinoc
zJlH+J6odWSz<6-14LUeNQa5Vw9b<lBEl{aulwj8C)Ql=q<NC#AgMakqc1vqHrr2^P
zENR<sxbr0t&vB#QQxQ~Qmu49ySaDay{O1$d9wT9f4;t5&=Ec#Zz@%pI@c4o1>nbD{
zf?*S?VIT=yseo-7<tV|~lui~b${<TN>pnN|NMMB7$n#q~;3_q{N_C%IW~b8;b$nEc
z)~il*rvW9;C)?P`-qo$cQNR|Yrp=W-?s<LP$-_^cjn9<~?`tJ@Kf4v;e?R~HaLxgT
zpJinc^f@rd^QFClvU3w_>9GIjW&i(ig!v<f5XF$dwDS;uj~!kG^S(q)ic|B52S3=B
z;L?8Ar2S6P{&U}sUHDgdD>dfhlYGlwU{0~;lVm6=97<)ki$_JJM-O&HPR!C)I>&X~
zz5DA$EUgy>t&_A9#Sdo1kYtH&vV=tOTva&3xwl_mFw6LX66Ah(Jm82HQUVE<VX{@+
z;ht6ACowogLg%`QhuEZTs!YWYpySk*K7ydac1(3wET7$RNAVJZM)WMzB}KK=OI5XC
z(vCH`6w59)ON|o?+<;Sn02=hoEqBu>34>)f_X=!~V#^Cz#$j8fdr9eR{k3<oef1to
z;cDI_M=8s$$UUkqcOH7^#t^ui8+MR0w?+1vD4s9FP1J!Zw290bh)#6Y#^?Fg)R-#X
z8+AbHF4ioVs@Af<6$4=B_CIIqt*xukgU+2;EOeGE*d4n4lHKm3hi|+rc()L(Q-}f#
z2|9P$gPhJj1vbD`AdH4?8Jd?~4}{V^@6Dp4RQ+XW_s0&m{@Tkr<b-9GaB`9<!p#=)
zLm%c=7ksPhWi#9)%@LewAC+;AtgraxZi!x=+fLOEo9)H7t=V~Z-wypmTSU+2%%qNP
zdD2EclOf_F55|WMv&AeOO}Lva_#<c?xW&`+06ZeLO3d+fGHU*^1UO)EHeoEeWlPeF
z<mc2X%}*fpVc0kT^~JskOfpf}RK>F{GpuW1?!YHq$ghCMwWCKp$kiK0lHtnT;YIuY
z*qY=vkd1=je5%r3h0saw)V`&iap`5JE!<@*g|0Qy><_e4*Y!Ae3TV$#UfC#H&Q9rx
znqiZhS!Bm_&WAAOscLL&NiV7roqTDGnzJ(P)Xo{-;l&t_tB2PGX?>$BO^qV%J8-rr
zYVjbOn`Ac1Um(gVG@?h3Eq;aU^M169Q46IpZUocG{ozGNBBai3j0$vgZW}!2Y81zc
z8ZrqpOCNhEA6+~MJ>QKo>k;#z-Uw<!&+nbMNZ-)imR8+4U%<pxqYq$0+o`=ioI4X2
zSlzPBlB0oqfDNsZ9rhV03gA&nu8EE=-He?A=zSOj9ZL7<OGH%6^1(8OMZs9oIOZj2
zge?ZL+Z3Rx4c+AV+WK)3$il!-z=?h8yjU{?+<@q#h)2ml7#(B|k1ktBoVmGMWFcQi
z*3&)??jeXW8Uwms1#_MxeIyzewAVQ?w<^CRTGL~e`mBg56{#KF!YS*ckc<-1X9_Eg
z7yxW9VI+hNmVDlb+9GCZolQ=USqF;88jvdUmZ><5qQ{`YSLCZKv7zyl*{La^ySROF
zc{e+H_R)|!tZk+>8ka?AV_A@SCO0&Tc!$2<nYe^M9Llj#^zveaW&<95V0bmrTyDZD
zN@?RV+U`D$D64MqfrHW#0h7YowAuN<?vLXyxuUZ4WuxtuIU*TatBepPK{>0YYtZEC
zB(o`NFNynUKJNSDyiMXm+6qbBL265~##22~7B|!I&{U?$y>h}<m5F9*pPcSM(oij#
zBCTss_#U4o?z+rQ#_j)hkUw+>Ia1+&TgV@<h5RrMT3so8<_=P>?jRDj-u`l43ug>M
z_Q3{dV|SOyT<fGsRaI3C!oGh7b=+4P_`~@H_Bh=Tx{UCsu`MtYyI;51_m3I-fuC%T
zw{0v+|FgNIK|6iwk2z|b9AaE0_Ba>Oyq?$15q=YBLU*1)`x)(}*vGC{lM>6FDK+|r
z6?NdvO|7|lx~EnIV@1uxODL}oi+xk)%IUCcdkQ<O4BLdZVyCo+jW5R8if31cGTZ<t
zDT{iT-8>TWK;NpU(Z1Zk!2z;z;nV*hq*dN;1hz7`#Q|I;*i}2=+|sUuY9lY=jFT=g
z8SxZPaO~>g#y*RfbV>G^0b7!zPQBaz_H;30hBrSgnSm*`%)mT%0we|uVV2EjjUUj(
z(;USmIq)(^aaE(se_rPYMnOp53KeLul|Q^VE~))KP#yl{XEp!n>EV|T=gprE_~a?x
z5cN>J?LkgX4G4y(+4mu!oIB91iEy~dGVsY`sF`0#?*PzI+=D|YuwrNUkl3xKAC+m2
z%ERZb$Yf^IN>fSxdRPRnQe=hLTyX|uLn=dw4vAEtePi*Mc@E+LkeBQYiyNm|8`byb
zRXWY=oIJDB#$qsH-e{S~$KwaKT0E^&tLkV<!F)28mx}jY1~u`i(FGAy(`hT<d9c$k
z7cSPAl?CQll>0Q+=A_AQ-tG67#f-}s&WA0o#x1S~ZuF50gwqT%jRF_S0A@xIyZ}27
zLZ-%Wq>|}j7{50rK8uy(TG4-paf`mwjFdBl4UEUZOZA30CZOZNtwb7j^my{IMpb;@
zF@j#ZwGClB8N*apgJ|-L>b>QK#~nbhR$i|Y^sN4fko6+xLsIMul{-}gJp$uCQgD=}
zSDn*dh)5Dtl{zYX1#=8lEvQGZrx#JC^|+%1YOgw|;9eqdYL@|W3<%4FmnR6{Z{rI?
zn``vLM<zFZ`~ndxFz<;f2Rf?qGw}n$)re7Jz$+3I=xL(kNX44AQ_>UF&Q=`%Akk?G
zaJ*Rv{iK%TFaxEJ4Zzxlw3rifBgs%ajHFn5-k$^i9gLhHJ07t5x+5mwi<49oC7eSw
z@S@`KT@ccWQ0FOGZ>{d2XeWwdOp$(;s;3mk&PnRz6k(w$`jYl_aQdv>_k=tIX<mFa
zI2UNzi>AF3wRfsQMm?<hkyDi)nCc@&xq)DiARlhni>NNuh^CkUN++7iHWXB_M8OdS
zyo^CuqJxw?%E-=gNJ3M@_u+gQe|WyA4RQbGznu5}AhBhNvb)Or?($tPB)R8y*y%5B
z)8^|xv_n7f@kx&HKg(m*1G_?(I*F_P`C?!F90q+D->a;7HN@X97)_V_xLh*h?`<n$
zO|-8Dl(go<^Xq(gUi0BuNlJfKsH*kAJn!$HAJ1b*@=x+f;1qd%ZF#KgD4PW1KBGO3
zES*`Vmg{S)Q_KS@{07FQd^~-B?J7gj>Lf%?(!?eudJfx3ku_DGW-RDoYSyhZ>I>M1
zk56N9mmJYIigL}0XSo?iu^EN$j(~AjEC)Ig%o>-@`qUKY+f=}Eqeup~>By%JWE$Gk
zw9UvpChXq0(&dg;Ua#u8TTBlmFYKiMPO{D5Sa(}W-j9m3$r#&ra%XT>?}=_+*t>Cu
zh`Uj?|LQqtN;KyGxP+Q$?4Qp<O@>+yc{j7F+C$1&akxb_g!ul^#%M^Jrimf(NrBF8
z#sLVwo1^<oli~^K^tiZsIT}C7cflw29Cw9R4NQ#L14VHIS@)O^5+WzOG`QS55K`L#
zHl2ZjT10J@uC*GT2BC&sl)=u%R{lhsc|G|Gy<Rga8dvtuK%}j4G@BV4!X!%95_pqO
z;X!*3b|XwoQ_~t_c3muZhG4`8f|jjFuFZS{aCcQ%bLLcN`waDH;7&lJ6E}cwEPAKt
zuVTpvG+-LBjffI_dkB^M&>Mvx6TQ&swhdNc#c*zz@KaAqlES}aadgl7c*y*0b7Cb)
zpQIf-VE@V70OlS(cx`s1_4J667edkm88N9)9Nk)MYG5YxCt>=CE^ZKd6r6=~cwMw^
z(?cNM44fOsoG$VO+M}toM`b0HT4XT^^vo`bVetT!xv#6ql8&>bM?subWY@%V$;5H)
z?S&E~S(_$r+NdV?bB%5WrXg8uW+DhhERs^`Y&3dA*nzs+6Sjn)$1Rf^k8E(jYo`K2
z6r`U*k%R&qkq9|_j7VTRN63-!k;+bfgv2<@$vV>*LWu%myPCq>N&7x~w);-Oz%zb2
z%}hF#kjnfxC+%|zoRztDP}!#}+jJ4O`Y_$i4MWPKzZMj!atQu91ckjg1w}x968#8?
zVb}#mDY;n2UB(MWLZek3O5~ICa_pRbPz(|k@i*?7+_ae(`J|d%CbeTDTTmpSpAH{;
zCt&ZO7qT#ps)?rs<`nFFjxsGpK{cjx3Ia$E0Y$$K`UyEeK`Kx}$Bljxzmue1W!z?W
zq)eUD&$Z<&vM*tB)s-_RVej#CZ2ljg2>cqbvKpD@n~{_eI2SnJ+LY3$Ri?uz7|;Uv
zq%13Ie&!4f9#j^VCZ1**s18-*v$3^0iLaG%&e*1fv&Ejt1#g4P)Vk(wN$kxicf#LH
z$*s=f28^Gmf(+}_mMligVN$6JYS<^KO*~+14_Npev4kiY#_@>JA_huN+2DjmKgC>!
zK3bWv=$-T(-lvKsQ85|QDf|2NerF2E+vgpnCFXSqW)QA5aOj|&1<6t&G+FSUL#9`i
zyyb4?ciKI-4#+*ou`TY+GWOz(FD<54f$ttuE1uN(F6IEfOD4o2boY5liD-!tOQ_2+
z^#`nZ1e3aw>${^c|9lkVFNFD(_}`~y<TG+nBK?F=Av@qZ5=a$BLYj80KZU-Hew4)W
zTI~gX&x(9oPUz6j4Xe9!)Nb{%2mNv~&wipEw|hSx#|yQy4H<`rQR9y*1J{0TW0%>h
zmf?FMcY~l07SXs(Lj`43X5V`f3zGQ3oEE_y8D)~B0w@@nI9YojR3V<#=C3hoG7s4C
zscl!>^BVVDR{fsw+Oz$s{)W9jy7xzWr0gW|6=57B0?k%}!eR8@tHS+h36<jVU($*{
zAhdfxmAkhDjd-VU!y@kw?vQQ`Gptc_;gl0EH9yvT?SvGIB0op&7I<SeUaF@a-_iR!
z{NLk(ek>9D_<DQGEv>zBW_iu=&GzrnSmF^NQeEpB>Z7dqcPTgE`n2k|{rj@F)a-`O
zixVqS9lLL{3qkayKPB1mf|mor^9fPT25KGo7UCDYeqn>mjAjBptvei*SddkvArq<;
zvP!3<SobW!IZA{WqU}&@qSYl_+vp3ny&~<{INRXXO$uD7{&-T^gQEPiXqO6jm*YCL
z(0w)=+rx=F8<a{&70H1Y;y<BCQb2N?2))H3W}@5d#gc5sXRKFR+qNxCbNd6YVkDBK
z^#_QX9NG;hpY67x-SY8=%nnbbSKYczBrDXscM5b)0pjt4l$3y7F9!vVT1%ykP3;fc
z@1X(C`*}Ljz{}G3aiUI({2QV{=QNO+a_*c4eWL+60wI;X_q|bKx9UpgU1@(T6d<)r
zg@g39TT!fA-^EgK0-R2i_wV2R{rQ^9V5(kUeHfI8Q9bn_YvYj?!@h=3Nt7c+aYpN*
z*+-bR(p+Ti?X;DIMbEkD4rj||$+^%>$V1&HMNB9$qWPtvmORQF*sJf7mwdTc<+c*R
zKFKP<;%)Ba@{VlS!9-xiCD>$FYenfp4v1XvYOyBFHrJrnI`&+@oYp~Wa$<L<4pdS|
zO}a@z&TaXTt4t$B2X)D1aW&N0R(HU?)#$5To1lJss6vY^rpx;N6vJ4Sn}|HC*ET}d
zXQQXqxO&_zJ-#*q8l!$0qw6$512b_3Km`OGU%&8@Q6{`k5sT=`Bmjn2=7@NbJ&z$`
zH3o4b+tQG!oRrpC1hMENd~GARtF^5;4LXuf_O;ul|1Z0@5AXl_(Es#s3Dq~2BW6A*
zpcw$u6BohCC-Zu#rTMioC*if~Lw3qE6H0=P601yWAdWw(%vzAA$Q0j4`RidlC`MH}
zf+Ce>IgBI2UyRM+i)Leetr@QuZW^xklsd6jyXrE@yT83X2iqOXA)lDqeptRJ8XEEQ
zOg8N09+<~Gqr>>OJ3Epdj|FhtD+*W<XoMLPX(px26hmXPp-Oh-Qe(|3x3lNTuDRnO
znD8o_bS2k)nekgy6{1HYWUftkGBA*;Er_)K<t@R)G~-OHN-wgl(7IoBX_0@?znhOn
zn!Y`L&U<x|e1|w)@1!DAY&_IS^-*ECqplw6)GgnBwR+fj52vzey7f-|BLt>&>R-=<
zQ3q+wH16rLY(+8X$*HwEEv@d<#a>;chdn)1;j&3iwppgv*is37$_-S$`ay|i#r2W0
zax|<x4VSKlwXb3Avq-W-eWQm---_R;Y0fa1-u+K+KRjG=i+o6$XMeYah>&UW2nklG
zIL6y12uyVe|095fQ3T8@Sca$w4(a+jq01DvPh6qOa*P{obYvw(ABR0J2}ucW(PuBU
zr`z}W{0)~AIQwMh`+NeA7ZZ4F&mNa&uO@KO1Xl9P<m+fa32EQw6S!ysd(7E*HiM_b
z1eQsVI@|PdHGx(5wSAvY;BcJ5l^HyGOeKbPT*hP~$`CsT=s1V}Q*(It?$>{uYm7U&
z?})v!-(3p|s<NT2bSa==pNINdtpG<m-xNxhaNFs_8Nc~)iZ4;n_P{sVWRzo2*<ku-
zyI#ezVPg2*a2v*W@}85Yy*Qlz$$Jh0lmJtfJG(;*yQPKo7NyVuL6;uXgS;4BxOd@y
zo2F4kfmIs#dw)Zl^COl66Q*x%BlhBhFDAg)Pxq_Kdfn)9{X%+`j6JWg_w&5CPldy8
z%Oxoh_jr7?b-ZTmSXnz}*5c%Md8un#q6wf2TX3T?Mn^1F#$qNF3I&ti79B;Nhgqs#
z`xD(rZWZAe+J;}e5L){S6rWL(l6*na>547&f!|FU!O#h$Oo@lTF=vi$m^5j+$cK=^
zC|^TH>8hJ~$oH<{Hv7mXCWW|{m{egkIUL8RB%&cp5iD*SpAccvsF+sM#&AB&V{eDa
zK7eZ}#<pe^$*IEYsqI(-7S@0%89R{0Wt_(4FJn_fRWQY@T^>Lb(;ESSoRzl|jpwz$
zh_X{bOCU=shU#Pu26H4U7^(<Y)EF0L`=S86K{k8_5UFp#?=y^PkKH*>-V|f&Q8jei
zmz$+F<0y|^Elu?L?V@yO{z-Lx1fpUK$8;geQuc>XtQ9s!uag%b!nfjN=ZGy_c`fBm
zQIp1Nyol&E1LX^kjJ1{a41!x&n<Z}nVo2AqI~*`Iby-mtY=w7ukzTt)MkBK8D&g{&
z--s9J(L~{c;Qbl*w2D??ZlU|`UEzCl7x8NWZSNo6y#3Jc?%%&T_rVSGn-+DOUa0_+
zTNR}4ynq5W=i!Aq4o`}0t=9~AragYPq3$*g`Dh6{+M}>h5s|L|k}K~p9{bs^XoUl>
zz2OHu9d&rg^>#Rhe~KE8VcwrpV?`;=`S<UBJ!htI^h8W~2Qf9?DWgsZHOA8PiAqZt
znc|+JaCcH|YHc!IAGSwy`YiR-uk?%jP}iZw4oKHFJ8v=h&ltlH-nWib1h+k}oq4Q3
zbzAGr#MQotv`=X@Wh10*v^TokXFk`d{D$q$hrO@!3l2M99$q3V`})~vYmfDeiWtYO
zdr&#N%k}j~R^LmHTWQ-#8NNra7<K(@eWllJb-eranytw=;`!JuY@$qSsRu@}P`nJL
z!u~6J;Oz8YI;>tLce+x#6t>>j^qo`Jh>K6)1ZALjO?nlLjuo54op}8<!cu#6Ep2uy
z2@~$!IQzA;KKrgU)8r$E_`7=6?rTpxlUd<-cJC`^+eUV+69+;(-oJf+5yd_#ihUfk
zD?TcVtmK=F;(@Hm-_eV|mr1o&;^dY)kok#0kIod)*RZx8jQ9u7Ms$6yTTa6s+iRA`
zx5u`x<yU_L?OL1^*B-TSTAanQ`W~DD?IrE0OBW7LZ(US8eZjw5?u-ntJ<L4}Q4*UM
zsZ3qt-t9fh3zi2j--qA*B{CiJqSqd`xI``}`cd{bfLlt+cd6vBp*%5Y$tX{P8u1vE
zsbT73K&nY{aimxsR-odI4YnY^xUn?C-^7y(Hg|s`-_&|v-YASdf7@Ni^(*M#UPRNw
zl)L4H>ROl%FKmR<e1dpiKB1NuHJU9iTxhnua5YLkWGkMPv^e8*&_kaWB{ojJT$fcW
zdDegRi=P{Z(aqgqUH|<|&K;wGeMd=#O6W@EW())-TOT%r9n6EUk2){;rSx@n{06NO
zJuUqO1+Z>|+%lj~jnnspzXhc~#w84!#~`}G(1=DT5>17(I4GfhQXbHdwv0m*)P%9I
zO`i8?PRQ|?z7;}Kz$cnFL6`toypcpqUz_&C0}3@r;tH`~aneP-F6WwFmv2)L2oz>s
zMMM!(q1bO~4v@4~IMB;Se|f6k?CpCptJpmQcu6<8jtXn{>@#~N*h{hKkS*H?y$7JI
zG!<l2@O~ATAIKXfc2>+pP5(cd8QK=xwQaXse)A3cc`*|BuDNWc>pi_Y?2mu{<zoJL
zu_X$6Qz;GByTGk<2N;x>>&ixUm%xR#v6#t^h$<M#pNd1VT&>xIOn{$DdX8Ku5N%Vp
znGFae%bi2{%pUn?x{%}V812iJf)1&x<4r0-CObv!n4s!`JG*PO*Pc%s0Ntp0BSawS
zZ;50~r5qFYv{TS+P|1Oo)m+sArGoFVz$YQ*?6AidIjw>_gR+BETx-OS_Eti}A>mX`
z3m5I=FY1U&-Z(tph6P%cY-BTjuUFd4+HfhfF~v+nL=e+8HR}2F<vu5V`+)L%7S%qv
zn1GSOlyjTcL>E`=3*n^5t~{!y4#XM+{&8})bAMLa+g;t+on2ET_IiS=6({G(xZqcm
zF`&u>SA^dZjFQ<ur3p(PZ6P%+u*S3=L@j;Y&loW}|7?vO6~<=MWZnkTRWQetK>^e_
z2ZngH6W&#QUhRn8=l7HEF4Ofi-V;gg@#ISwzh0{*jC-}PdV7tRfy_%3?qq!?uuJyj
zak_VD(M=z$0b-3u&{9<yrQ*NgQ-9yf`rY}b8<Hw!VBNQu9;lQXr=LDG4SxIS+;<gz
zawj03H{+Jrps<HykHzYtxH-Jw{+-8{C=k|xwm?OKuktbx;dFcM4}$_%&^{}fm<l7+
zY32gatAnue2!IToFPP;i;+J=d17t<ZTrbet*&WZe8fUe#pXyCyu<+@QgMTmma3q&f
zH+fII$`oIMhMwap2jWDDQTt8DvT7SsFL!Yofo>}%0gW#qC0>R?)G%F)g6HCP_^Cl7
zk@9T~Ax7R_6N3rT186`4#Xo1aqhtlK3NC<&C@0_u*9pCs1a1dWCL&$Z`6a>20SRa+
z3+L63c+_1a0CmO;k!<GO2m@_&{LWaa$C`tVe3$07cfj`rMFbFy`_SW_w~fOBy%Cu8
ze!yAHegcT)1Sb-fz4-M@hn`18xxW1+o{X;}uDVl`UL(&(Q|Dma8K-1b@vHd-r$^jZ
zn~u}Vlo;kPvN2``(w1iOSt&zhe1T*0hj6et&B03#yQ#Ka&YBWc^LBh;VFf+f_Out9
z1uFGxTjeXyxcWYF8;!i&^lhK3x%c71u_3h=bjCq(OWQ2VH89TOL_Q+uf6dgxI*P(5
z!Cub*RR5@+^C=(&rqv9mXIyO^+nlDMEY9MeV0{S~gk*I1nhksnewc(zsk-q)Y;w<H
zX#G*<0L9hX?)I#c2b?p&1!X9pCE|1mU-o7;2{WtN5x~Nv&})4P49oV)LKu5Zy@KnP
zo4f(dq}y5n(B|n&6?fWxY3AA}cO(zCz7nc<=+%Bjf-PYCP}P`?ume?%wW{XU?1u{>
zyJZaOaSZA*2HWGnsmArespio~(jZEIbc2<H+R!z%p>#(#SUH>`JP`Hdn>@=V-kbXm
z_dne~Kb*}z+Xa?nYg>vTrx&~`fn+yuBW8ZG&4Ji#Wu3TII7g(Rc6Jb<>Nwr`6K)j2
zRM8{{+gg$WUXY2O`D~{+^vgf$<t9?S0IO@~^lBACTfJJQz$lU3UcH>P2T%TLs$`Ns
zgGoe>B|vGzHfFz$li%!zKc?AaJcRJUpVHnB#WB>an?V(=bu)}^dXjxxGnTWM$-Nn%
zj(uq}QaLum?$=;F-2Z%@6@Tw+!i1Sv<oq-y<W(R>*)DqFQJCCV+i$&o+YL(<XH>{q
z56EZFO{=U8y7G%2iQbZ2<tfKtw&%VnIHfdI<_WzB<N9oxrZ5HZVgp1gB;c~t=Fp3~
z!;Agj^WnYS@?LN-Z5bMCsLXPKb+F`zXO8{nuKjEsGDaP&LsQrcrYn=d6#{?F^CZ7t
ziE-PE0%*xqb^w6oF)>8;NC!HWJ`ObwWT1Ix%>@uBPmZ>2!kX!|05@`zWTgq;-)1Cb
zhO7%)Z;=aF2T{(-D7Nc_>W?H^{x@183E3WGT5BA_HdmmrOh5~AGnP8(vp9ds%O48Z
zB=S$n)=Z38_UnahQ%gJcyJ)@c*rQ$9_UB)_)%DAj?GMG64*QBJf$~R0q#j!%mRTon
zQ(2fMdB{jKlhU!K+&WNR?Evkkqb8Fx^FE{fTV-~RgGlBLdbRnG$7K19QfkYvTR(Q)
zqNVvJaEL6$zp^jcr+2&e_aDxb_9;t0E2`ERsfdmIie}2Tqx-!+t?C^VVLl<x>F`z?
zCa4Yi*eS_V*??#=y%+A@xDQyx6k2HlC2KKnBVKgbKB@p!wgTRXDkUMzsG>RzieJeB
z%nZ>L6?qKg#YFB??GA#f_@AC2*eVZlYAKc^9V%Rsrc1xgTLD8e>%g_gf&*A5W<Jtq
z<uu;2Piful<c<?s3`&T!`Y1uujviCkdC`YZ)a>j8n1Mbc{lml?Ns#rCPzP#w09Qt{
z)HcB1*hY!Q4N4>KvT_)+T+>}c8&>r6UZoXy>y8{pY)&!_DxBBTTAyqMqr@P9qgT*g
zsHD8INCh9JTJRL%O_aIC2)0$wHSt9I2EsH50*6j+C`3b|k*>yyx=)@(JLv^{1iMzb
zwM2?KygxV!BkC>*T#C~5k{-LT@#;6OiA>!rVSW=^iC{@PrkdqWPE-FM8-_}bs3Opp
zbPUtYe`UwW2m24`n82Iz{P__B7&zsW)VBY5_W<)Ef2QqK&hVc9_CcQQb>M)l!No{9
zH0&jh*lP#5z9?((T1bICoWbF+pI!+Ye-6Vc5`77zx`?TM?%OT?kLU5|-rsUPaN!l>
zBUUZ49*O$6E18I9@P|Z#$NTqB_q)gYzrDY|fCF+b@l0;TNFX6Rg(Q;AP|3QFifU3g
zG$Db;{wXhz6j3>tSf;StS*g5P0CUp7;rH(4pA=n;tYVS?A(%LDH*%hs+)!Gjg$Oqe
zvtMU7Y|{)n7%B@BS+kEK1_)M3+U;2V{mC1%1<`YckMB4&`xB`JA<Ozq(U3>g`p#78
ziOKiKQC85|FCnC#ZYww!NE!Owi3I9)=Opmgc6#mJ``wEMJN3L54b<~qL{OhdW!}<p
zVKx`<e%EL~y?AIKR|i)+O*^Nl_q-to(DBZRpayh42wS{H8o!<QUG%{vArc7aZ+h|W
zgE|$H`rSDRmJ9akc(0*%SBog1Zg)<C)l1X9KWS!hEgi{Ko_A5;*d+jGRIM^lilKGh
z``vje-a@DSnx;v-MHEoCJ12p6yK7^wo*QSeA>icf&zz1uvx7(Py^p<jymuP3>9JSG
zefsZw&Wi{><(&xrS|`0Xv-4&a$0-sxou~x~mf7rm?~i?7MxRh9P5#3gX*6xi$>+RC
z;8Wg7uv&g;zgn*JTf~|A)_b4WFU!OyViyAR!XOt3g2H%p8NS8<Rc8}u!VdETQN(!R
zCJfTZ5d{OUihxjWMd{n5BMT5fKm#LQEm@FB-)wPubY~v-nOE5&P*NjUfyR9GW2YZ?
zFhk5Q8}dqKS(Ayn*CRTAguk)(H%dUoRH-^GSv+D2-a=W+#T17`9Cab2VV_m2FVa1=
zv{Req3!u$O4K0%Bhy~}-L`G6lW00K&w*zDlK2~%xAOlCw({%JI(-`)vd!xLR>RM^|
z0o742$K_4xj~W);_!^t^of;w+ojbhCM7xk22}@r)Z&|NKYOH#1<cbo4F%MGpc67Q^
z_toi6{XbIKxLWoRal<xw`QIdB`YCGBf@73Szc@~Zov710p=LQ_6!?FbJH?ydd5M9b
z@@h_C-Q#4^Fm!F)eb{>+cBik;o!#g_X_NQ6Z{7|@!)KZgU8kWFNjs<;oupa{xs7xi
z3-JAgg=v?~yWXd-I;83A9a1ma3+P4fv(RU+I^>gAW8JNu-=<;b!pz(Izy9*>`QaSv
zJx^{Pn`Pj;A{9NKI8OVuC-y|9l5Y&4Ow2>b9<{O$0wdDb`lCtE`c=@P&pokaK;bG6
zuWQ%&zmGqRcqoaJka&oD+bcDOX>rfAqIXf{@`$o=Oi&nGV#vU<E-fkx*)uN~&ng{g
z@AFHU6~)~QGL9<jLT{j82@JA&p}^{(AmF!o2|^ntr95eLNWgO7aO0cktU?18J_ar}
z<zi;F-m52*7jcsZDP=HWRbB}Wr2;~<<R_VuVCl@)QO+H_5&b55O(#{$C@l+xM+g(8
zQ*kq?uEk*=gLFN1-i;6imHCbcM09!BF0`g7Ju%&@RPOF5i9W9+PybwrpDW?DSD8&W
zRR8|x$f5PSrsSw45|^~Q&x<4|!?l;b7D=GBwL7oJGJ1aZ=ui~5nfh!6H&dB~`N}?T
zZ7Z^1Ow7s@w@Ur6!5UR8tf>$e*sVnHy@K89a9Y>FTLm40q4JLi=y+0@Q=9)LOHbQ4
zYT{)_teBOZs876(sU1@|79Wl-v+ZPV{5i<=w%pR`7VD`l-|8}xVgN<jtuAht`SJ2(
zzpPVhcE@K<-LWxr8%QxZHX<eL{t)T}8CL(Or(+)ePki<tN)-Z}S(p8rH~_v-PfAh?
zgC;06+?E$Qz*g|f(;#guq05ckrs4OG`169`lZ-bDPBjV)b)eLpO{#&KEEDnsHHUJ-
z3duA}j`leqb5K73tSX?(0M)UVr>JjG?9xjpcqn)H;szm{3lj-#D+`HqCc%57*i@`?
zVU|jW(`Kg)l2D8w^ek5{bZDH4lqh0MFz_V7qQs5N%Xu`Fr!O9wHqJ6~0u=S}2~#Wp
z5r`670$#GrGb#a#>Vsy%9bsGuUzM1FGATLNeo8_FrI4ROYFLptC<R=GP)RV8@4qwX
zG733*REj__{-K47oP0y10$7yDnG2E)mk-)X{EP%FzkVw;MYQ5_8_AvkIA_*gJS!O)
zO;irhNhA(XV>CgV)NbTjkvm`z;K&*t?gC99%0tM!wySxjkj4&EErJ{+G6gk1MeiC?
z$V4bq!a_~>2MHON%(xK^h{pm|gKZcI0takxlmW?*)hR3Bth^^hGAa6Nwxt8+Q}if~
zAge3xIYPe~>7B}RVAmcn?oOehf-xC<-t<0im}x*i3456+!$F|7))-K|d+MFoq#+q^
z?{ggvJGi7G09;nVPNo#%mS&{#2}qx@fymj6NRt+~FESr#yZbgE^4U&df2JyU+(a!n
zfyQazj_bFaW2cli3KPu4av;bVWk!gA?mo-xL+nPw`p>zgUrS-YmAOTi2<<+UIaCbx
zC7%#rU-^pNWDEq%JAyFxU>>L#7+<^5aq0roI%)bxuMx^^Xjw8c5Q(c!#t9sNmq@0Y
zFeg|~iXV`bWER}-piH!EnmN#fCPdi+s?t?!Q!kNnRb6?`?U+US(&O8i6b_v+BNZ{y
z>`JK$KaT+R2eR!b`KODeHhAi~XBxIgDuuT-p`!^Ca(Gd}+v?3^O6TQ}7T<aQwtAmQ
z>_+r@qs10Rhx`bD^$UwujW~|)&u?EI&PRBRidCW<qjJ$eNGC8(cx3~J0CzPztHM`1
zzv2Ls&M7~!0HEtE2<Y=M=2br*Q^tN^M^cf$Z=$mf1aN($XDuaH|7_3thJ8HFh<Cre
zznl^Ie>37VBi&VtZ}hZp*s{YozWe3M!XE!E!{`WD-^dts=-~6)|L?Mc<=@i5Z#_@H
zA%pm4kNVa#{+l)I+db+qwLUz)f4H)GrhnVy`gVl>mfO!aeAbcle}8vL`1)T!_;0#?
zoLql>`{91yf4JX0zWeL@`(H1x??*?$EJ}L#RL<%ra%;!wwan92K}09lJ+Xfuf1nbM
z*KIk&1-`}eegO;o(kqbg41*b4+a(BdHDw<k1EKj}fZTkgDRsDtP)so1?|nA;cmHJ%
z&wx?vt`*`DA?wvTJo%L(GtsTQ9#7Y;s>~1&5e4gX1ytH`YkueKk;(Y|!|ub|cbC=R
z9$HqkyjFt!jf%i7isAx2JvNON(DaD%?Z>9Vf$y}H_0w-`7kf}=JJv0otpBO(QAjD3
zq_5rT>UNzUw@0_D`}NfxzuK*u(+%Dfc~FH>%}K)iG8+0csV-8pa*&mpWUumYvy2*E
z>s_Q$xUp1?_r?53udLu<;Rf9)F9VtIg>d^RNl6BU*l{Y0yt3`B`*jP|sw7Bajs#Lp
zAo%A0XYXB_+&GeL-M^By$4pqpGb7JT2D585D2>{z2K$UkU`fTZK~k4RRd@5(U;maz
z;#DY0?54WU+4q=4APY!jM#jU#AIq1|-RJ-O?(HSkyhNuEiY|J_F7ZbYAYHVZ(0@AL
z8!q;P%T1uG=GQlmr;D>M?sTyW`4*7d*95UbB3I=w>g9Dg+(RQ*<*>Ty%a^}j(tuZ~
zG6!1e;UA{~C*CwfQs?#_@#1AiJH%Mj$Xz04BhRPj@d5qqWlaw+JMw#!QakgDI-H+9
z9A5lvKUpWv4qx+M+=e+Tdng`%27PE8gjNM3muAOVu0JTs!rD}4*(Q(mNWJ6j^RbSn
zEJ1yA=i>yL4`0|gXVptw$|imN=J4(6=KovtT@s_{S>I^_eYn4*PoCuhB)+<29P6qK
zsZ72eCJxRn3y)&l*fQP`jGcHWytj)sfuyn?s$08homyz4xPG`vCQL{Gu3kz(K?Y=a
zFY&x##;V?Y*0w<c9yc28PQ;|OhDiEJY6)wD>bBK01fwdsLrNCB0`#odG0)z!2;~oq
zRIM&3lsIz{msOCd!NbWsOuQjUW!{NgRZYu^FDnH>!RWlra+HUK$al`i62W=)E}}#p
zl^O6?+9Pw8t@us2C4Zw1+F4bHhn~{I_ydo^l!E<qC-vAf{=yBZoIAxiC?hb_)B3iT
zYo=oyTbjo{4!3y5H(^^h3aZl@x_Q<e6H2z?);zXuS0yI~r-33K?vZ<nXs(l@Tm86C
zcl5aSmsy3OnTD(t&yuc>R5vLSiOpAv@-q_)kZxD`&?KrUl?&jkUc6RW+XP!N3<4zC
zePdB{BoT!rBF`QaYot-o!fBC<vbmQRRv4E^uTBgg=bM9Pg)-wYSR;y2#Tzc6b@B0+
z%gQou<v5KCzWg`#{BKw`kpdv)&IIs%sBi55$^L_Y*N$&eZ5N-8Kw+E6lwSFbZKqd$
z6B}WwEtS^u8&Wy!EyXveBDHd47reJO`(HnMQ?tD#>e=<zN&o4T|Aa>34f}SA_jaPr
z<z70z0i&9z8A8zf4Ib?_JHC}gQQidM5m^<>8|8wtypv67WvJK{9*f72@x9x1@r9Q+
zHr=efwr55zP?y_mcUyo9|8VlSZ+grAlVaKSEQhYJ3wZ~foISnCJh`1Mi%Io>#;13`
zd@xhVEQk|avEyk;*@{x%vVtxETk2LNikx(r`m_ynF9&n-#9fKK1lAQH$cv61LH#MY
zm3>vkrZ*~Y9t8(c=7ZLmtps!(BIEYUeUj+UyIHvofX~F{ms#o~lz3a{0B7YwPb3*s
zU#-;ty_52P36pT0?Fs|~D72}E+svw}*-6WYqe;}-811wKg=I(VHGy?hi=lcJDiS~$
zyhTqJ!vQnIQEZ!z+Dwk%IdqPW9tDitDu3BD>?SM>Ss!p;DWREXSK%+Dg_583+x@77
za_c0l4Ymo-A8txBQJkdsOHi>h0er|{*4U-Vsit0FPpp@&K~F%T?J{{AfS)GMLau|?
zVTa7s$s=lTSR<PYLulU+pb32&waNGQ3xSbmPpn^5`V7r?M<IIV$SloR#R7Sdc~9h~
zphaUiWz`!C!v4d_9(v|Zyv-_OZ<|Xb0^CN;8&Fa@nNtvZkS9pwO`aSs_V;Z1h&>er
zKKMwuDLoXYDgQhx!@yxtx~7LCH*t><LVlVVZ%uH&`4(zN*iOIR45}s+h|^suhW|mk
z0^qz%<`HS!rlmC(!^@Uj?j{8(Y<i;bFx`Z@oi|Q%;P0>EiyE=$MLYmxUWkLlJAyo>
zS;h41=E`In4ig{60p8w(eUb)&zUt&F8A>CR4^7Fyun{{n<tqpu#-p(<osL*Lj+kRL
zK^z^~P);%go{qdE{(6$saFSgxIERNs+~3Ea_xGQFdU*Sy7UJwVo{n^rNpU3)V>Q{&
zB#1<QpgKk-Bb+;?c$XkgY*!_VyOb__U)-1jRDrQw7ggUdl59ft>N>Wq5L4YgCVOmg
zeL)B4hA&e?p3eGmN9nPu)EkxdUG)4VeCI3Hcs+IIb)ehF5BHxhxjFJr2i{!Nn$x0z
zUZ~X$RM-=6joWvFNF?<w(`jl?>zV66o0DE}$99*yW_G%@h#8Od5@aMOiLIi%1?k*A
zP%<g<a5&{T$ogV)NrxRTxlV<atV)X;`8@DJM5*n!N%8-J;z%P<8y9UaCVK4R;?GPj
zPuQ`7tM_*BNS=iad?zr#Z4mqJ?E4Tqc;WV{!Xyp1?rTp;G&Npz7&p#dg$pM8QS}0e
zDYHUtyOkgohlrg*Q8*^yA`>qkyGBQkGHjIG;f-Rby%Y8FY>mf$+Z5GSoP-Gqkk8Ud
znl)K!fLuMvr_c<Mg|<|fLsHM|VrNYfj3Xo)BvfWMSc*TYYBfKqi<Wg$7KKE0>jj&a
z9xL7+p*GY*V~u{sEL9#z!;Fv?K}7Z=`Uo>4vlz5(6bd8<ew#b~v3S8|uU$Z%IrtDk
zv+a@zM}1{`ll47t2HFPiM^EL5de8(sZZ|Uu%IL<r@=Q0LZ+hYx9?%=`-Pxypb+<nB
z%<%Zzl(Bo8Uc0(wPP{VRDYJCv_}n$M)g_}+y86NDky#xwukiYI3H|ZYxZ8hxdMTev
zRAqV-3}WE2&+kAfZHrg|KqJB6Mw+`bxZQ*qFqJkACBL(rIgbN=c_$*TZ!LOJPkpl|
zp5E7sUi_GYP+k9Ukawq&fCmrO@uXvyef;&|!^;l)>7>IR$2Q$*|1DdX)|%3jN)!;T
zqDyJ(f&I8bMfVINUC8-c9~P!LV35{kCkrwqZHCiSePH@mrrsu505k7wM)4mTiImJ1
zq^$f-1zgAtqj)qfiX6mR4n@Z%kOEZK82bsFQ(Ydjx?eC(>r?#+degffXKC#4%|u1P
zW2b)}cke#!_AjbD*dwo7&YwcnPExG&b0?Nibyu-SIJd-;z4gz=b|5c2VV)Q+m?wPi
ze15reYPG4f4H+BHNQTgJ=1C0!<ge-ostOIF4d+C3SBA;QMSy;?4VwH8?nJ;RlNfsa
zCbxspAp;O8+wdc^KTrig91^yGCO+IbjokWBi$BaJJfm7~LGe{c!Pu`TL`zrCO1wu3
zN@6Q*F^=6DHG5^N%IzwqIRrT)IVhDq9mWcbD7J@$rP;Jow6c2Kf@~Y<$H`mo)HPH9
zB)2)$EmzM$8}gt$QDqJ1#8wKRzVc^HVoHd@p*7e|c5UD(Ks?I(2y}7T3y^PZ3pYe;
zRU?{ZIiW-s9bjZY{Dor?p>6#Jugaoi=v56pYEDlFh16e<YT{Aj8dmM<uOIdw@84eX
z<c4MCMVTJkbTzNScBl5(WWCK&=*U`eeK63u^zd!03rfYTOepMYaWO1XT?>;4aHQiq
zqn;*2S(4h<<}r0oLC}%BLo5Aqx=h`mdRl_;=1^ekJn>_#V3CH)a)_iTT)XBY^_S*7
zsSe97cB?N?;;Q)3%s5Vaavqi&$h5EZli1X$SH(TdzJ$0<|3BHkfj^ltKr#>ikNjm{
zcx>|@_?<-Ar~98jzx(jZ*lT^hq}&$3AQy5f$->#>C{1V5)0qsl2Zcg%rpi(i96D1B
zms&3r3D4SSk`e>qTQ!APDVV{@A%*UC_A@b+v^_K?xR+x=w7@-8l#-TJ_tUOd@VrnK
zN1-4kqER*))U#vA7ljNaWr~)W8HJ^>2}<6kWb!5}841?W%^bIRN<18yqImyFW<ub1
zN3OUy6^opZdXd`CP`)q9i33r+uQ2u6F?3hEjVe%wO;X4%+9TWhlR)o!X#0S26Z;Y%
zk!|>Q6ICp1iQ3#O+QiT#3%jGIH<FxR1gdSIrngWcktxPgCh;?2Wmi9xf_05S?CFBe
zYv*POgdA10bCaT_lM1s|R9ks^(SCi&73J_+ljsg{c@;r^;rIe0K6}0yUUSTn>TXWV
z5Aqd7^~fD34GHvaLdZ`-Z+rBk3eTUF;S5t%5^HW2S(v($8gETyMB?q_C5WqL%%B;w
z3mcLC5E8{EkfE_GKE345-fJo<|2#{^j{xm!+TyyTO42-YiD+}PBGt1`f@bqpC7ve%
z&22|z_}J34-63~!r%XJJMV{($PZvOy3nlO(Ff6hA>He3GmsGU%t-P_G;t59~nGhle
zOG<NH)CD$l6eqBr5St{Jeen6tJ}T6GXCi%!XvG*|*-bdwG;3GSb3bk-ugq?MNDjPx
z5d8r_eJu>qNQ-&|m^wcJY%iob6XaHy_GmW~ZM+J!1PKn5QEcDrfqfPrz4*S^F4yD?
z7T4%R)-S{{;RoVE=#>8Eyq#hY!{b_>(M;;{STjMoNuyrV&W1#r1Hq}}F}<WixX_nV
z-q2~y&c(wnew-k0Cb5CdG^uv+G&!fnG-`#xq+_j|RRo-JiDr>Fd0v*9lbn~Y;5D}?
zaT8%!6)8^;T?6tTN;2ktRla9X>4ln<v%M&D)?|dV7{&XF2ML3451KUo3rd155V_Id
zoeF8;%c@${Nze<`Xj_yNu#i|YRMI?<>GF^;ZdrS2CHAl_vZ?@h$f|0co;AxO3(qAg
zxrud5FbulN(PL(vv>jYgi!2xH*?{D<o3PdvynGX<J2+%kA)KhB^~r-@HA@ptSWl$I
ziXI}CJ#xvp8N5QgY9V+&1u~;)JIQoyP#Op>#X71&UGW-g3=_(S;t_RTx4^%Szkb~R
z-4@#meBHyt0bd7h!ci0UOGOK($P|TknM|fc9<~aelQ${W352;HlKj)2aMNdn-iW}i
zAMa1DU^lQ{(+vi{!SKfb7Fvr{n^f+!=FAnLSrh@ZX2mVjV^aEu4IE2Y!l|lYPP_&k
z^lXgUIUxqWcJi=6d?qF|m#u%7W@Um*;(Sk<GjdH_gB|vZPJY4BFQ98G&Zx`of_BIt
zxto+sy53k4^=h{a%;F<v(K{zeJwV4&c~xLMWPgPC18xtBy!e|70q-hySD;v6k?@`6
zs#ubyfJi4W$onkd{SP5(cHU(F>Ck_=KVH2L6U~}4)ZBXWW-TH}+mMD12ux07)OuWx
zp&c~&CpVwlL6z6x;p?%V?5>Ha4>6ZHKlSPS-1B=3XZQH>qdl7!19eyD$#+j*Yry$M
zS?fMy{<)`mpS11o{3_G=w@+Vrj`OSf2K?Lm7y7Vlo}5tdB+sa{nUq&&dgeLlb=Iaz
zGT5Hh2yT#GP=hPKE)!H`qqY{Af=9G2VY-ojMVJJ=PO1oRLDk;1*4Q7tl$}l0P|VyS
z-<VZ5LG(h|MAD`zoQK3`8g5mps~rl_g+ab<if}i;bGB6}I}gI609Aw%<j^otrsjkp
zWV^|W-``P)iNeEpV(aWolPKxZPRIURm9W2ZZ<@4YClbk?Gc?Z1Mvvl@t9Sl@xGn(@
zvfgIpYKz(d9RUTdvwO^Vp-kHVDI`jH^dD3r9ob5o7CH8#j^)?)BXqYwcfz3T<P{{j
zk#`xyUXSfEpN(Kva-aseiJAOzjQvYZhCO|35^07-W1Ev|PQa=FJwU?0DGE+|08;ai
zApKc|uu-rA7clkEi9+b8Z(YB=AD=!yJnVnH|8QAItki=OCz<58=U=jm_a<_4xeuO!
z@X6az-JpPQN}QTR<lq5qWb&adHgsh|Q`nmN!RSBWZR}r@oyi_Q5SC1imX+3D6{t3C
z2uHr)R!OzGb0fwr{vGT43<a4~>{-zwzZr#~l}T?FZmDkiXy33_Oo>X=ly<j?g>i|J
zqi!Wf5e0~pTK1!Yf%rxJ0UZI`@WkZ63uKMMO)qnl&6|8vw+E;`D%j}Y-*fm>9D=Hy
zULOmHx=k=k;t;Z(YFae0$guPqs<HzvRgEgtFip%p9UAwvV(NnL=XZ2t-6{A=DMI<O
zP~xk0ybW~B&W5KMfofRq7NUq%`M9RYE%IcL$%~Q{J>6JLdARvAbfkoa1RPL;t=ZQ}
zR_H9V&H5{=bIT~Zf13%z6W1j!U6drhC@(Yiky7zaxdbv&2lEasaAtlTXYAAGcf0?(
zS|qo=75Ea*SW|qTrRJ4K{H+U3(Xvctv(2hREB}|&K5vK)m-yVA(ksiB<9P{yDIA0(
zPz1>IwNyn+b6>Ga27mSY*v`E)JOn9u9<yB7@~AUSOh918+80r@Izm*Kz8PS()daz3
zh|f;fE`z`J?HvDTRhsXl(Ep4@G{cEBD8fIN+h~KBM1c3mqb&D&U^HF5`Gu;xKx{%|
z4Lgz7!ZG;k;OrAhhb@xkToMQk7lsp~iW9DC?avDSAnlUM1XSTI1A4iwaHwjM@EgT<
z$KT%nL|ydDNP7OsISlah-;{ddPCId&nZ(aGP2vHcF5xT?)DAw$iqKU#&P@r^$=zFb
z;xZc!<=b9x5FSg-rV|&Q9DqJ;!S=j<*5lX-H(oXy*28aViLL%eN82NKM?Dr%xZH91
zip+T$!H-$~rmx)HwhD-8?@ImFcIRpO_I6u8am#P};VW(HGv-&@tv+3BRP*BX->Y^c
zkZ;lr2xYdx<E@KoR!{<HTe3TgWnIgBDapHS0luQmz#48dZ*ol;>t_}j@8LW9_)dvO
zgj}i8J7o|YkK+HmrA`%w(3c;zi%*Y)74{t(+iuu9<dPO_bMTO`g61^QCjEBAoA1z1
zUBLBA+X0HGB5m$XdqPb&DejfH^-U~5vF&5uyRYF$UPEf>n{WQj9*%G8g7}ThL;tak
z_4xC<PY;*D$$1glCI_JhCp<kH2&9lVwyVd(fUvoWPM9f>6e#lA4n>7DOep^T7>k+5
zRJX7TYe=6RSTym_$|IwlOhs-O`4=2>9fVb<s*9tTm%%BlmYsbocTCW~<o_@OH^Nm2
zs}xlY=8w!-VLSv2SP^UW`_H{Zjq~AOKk3kAO)5Fpr*O`iFQBY-q$2i%!j>}j7b%d$
zPpY&B*w^vsqO~C1vPa+qG!$uL90jw^!DmU4v&VsQ#f*o5wk=gL;y5PCfZq)8fsPhL
z@`N))Si3qnpiW)K(UXE~!aFO-W*_aa_eF<21GKgKHa!X75y)u@+=*p82(CCe9t2Rk
z%FFYff#QI;lM~U8+*pzC2Qu6u^CRQaUEHC#QS3b65)8*997y)Wu)09{-UcrLrnCp;
z0ni{+3R=>HRP{^?vE{pD{_x8KzUB*cOvbKM1ExJ5sy)MFIsx$rO`r)SlB!NBKB71d
zUOw1#a`_<^5B2z)Yb>JZz~|MrqvA-A2ZAmts#C(VR~<3=L)y*mRtln?sUl)6V))EL
z1fV}H@~o@Ooai4ZK8Oa7%bS48tZ+>6f&!y+8(If75DNt6hqeWp-f&8`jyFZY5+v*i
z*LVL4XA-CH+|36^j{+WH@R;PJ95>M2dyoh&-KO*daSuGP{?_fnq?mHHy_7h$IG-j3
zmdX8y(jO<$7?tK%8~tj#ga@;Uxwrcnr{wo`WVuO?pghpmaTSMr#S2`;QeVM*sI+E#
ziTR*(NBo!EXrA38Z_^hXu4t+V#(;$@#Lv)pvn#2Zi{co?(7cB-Dq)ZHch~P(?tze7
zQz7R`h7SpSP1!W~qeQ<+cki1fb%7&hCz3nyXxja%*ucdWE(9Y65niUUQR#X{Y0(wM
z9vsA`Q>9R2EG~*mDn2EwnJo(&z67ODJ6QwE#tn9Kbh&Nq&;y!tyw~c&$J*ZyuBBXv
z7)BANFEE5wZL!YXnfpS8o2T?;J@jQ=S&JD5iR$^`PSL6n4j*lOA`_;nVwFk;)TlK#
zXwA`4Gize*%s~upQ8a*K^dPz8G4qzMjm_A{rg?Y4Hq;0;$${^&5fKb)E(|^wB7JRr
z78Qn-14uB(MRBoVtwl)t7ax<s$3*P0MQmAY2~|s;F&!9FAOF$EU(w~F(27V=Lv;^N
z6kl%vv?9t~l~VrG*Tv)p&7Xg#ADs@3(Z0*`n!$cZARf+AsSkOvcm4}8ucy(CRpsYu
zHdehq$yk_`bz8;EX8S0(G*gPgH{A<uuPV?uqoQQRdK>9kO!%ZUi+MJ+5T6x?-*R<4
zueKPiZ)kVy>s52n1G;{3+fX0gzWaP(=1kd@UJ|I;gX12%npqon4(9cLK|u&Rx{b47
zno|L2x(FmciHy=qhRC;!a0w2I=Y_%rN$1`sloH*j<6!x@zwu%!Vep!g%icAy><X5c
zKYOm(;zxvbDc_)kKVDY&@p{?b;ww)Srr~(Yz5JQFz<QhHd2JBq={8?H*hT?J0RvS|
zn~Zgn1iPfjqs)PgGM^cmeV!<}JPSXJELK?uSmWeOE{9qORVKJs^;7<qNEohEL*R?6
zbqdl%NfnRVYLj99t~bNcG{~{IfmIK84noD>sTIMr_~n<2((Cij?k*vqy>0F?j)9h%
zwf2NJ)5$T`f1`f{xbiR2%fazeUHpGN>|T_(D*_~{z?HzA81vv0lA}qFMVF7c*O(U_
zoUj&PJ}sp#w8m)>=3@eO8V;z3Lq+BvZCXuA+n=msab?=dvK20x*virhxR$Dl0&kM-
z;SGj3i1Ub5C&K-uFfoZIXR+323F5f~|4Z8aOqiO|%ypJ_S!&rz--AgL?Z0Xxh}b@i
z>)I$;s}KAAyI-H)J&lhq5S>{Gy%dx3ybbBvNt~1vzO>gTd($VQf6@;R-w*xlfijr^
zx3yPdK-oV#{pon3|9^6ylN+eq=19<g`lqjR_VCa4@HU%HA6~Nu;D8OW-|GB<p3b}C
zYdyjC;l<8$p|dtVowe~V0gURPQiJ%;#VbAN*X(w_Zh!A0=MQ?`8m*QO&ky^Lzg|LL
zr-x~!xk!%n*?Ea4RJ9qBYfO1F#_rsucBoo%NH)5`33n}D=?)7@=&Zpr1=`?g-a@7L
z7KPm#oOT?t!l0xnCD?|Z8-f{^^;;fQWZT5T<m2F(^+j?PZc1U!j$tJMZ;>K|S03+y
z$I8IBfnfDZt2kD~v#pdbYg58x_8(?txJ|NXb%qSXLDu%BD9ZypoF6o*jRvZdzO3u=
zszl~|Hf_((AZviu1Yv8ZjrimjCPU9aQ7hbYJ-FkVE-Bp`pt6cmA)It~9q<({e>Uv#
zC-DJ+WjSHEKIO1J9ocXg+Lg)r4m#2~=6l~nv>__Bripl9Hl-T)bCAYRq5?*xLlwZZ
zR8{GwQ$pC15ubxp6>Lm~V6mx}%$#J%Fd-SUur$yJ8n`03ke%*>7m}VkIew1<Y=XDV
z4h53lN-4g6<H2tne>iPCUC|#3(r@%JKuV_ffVP^%qFbs5E%5&_k&Bo4ND0GqnPgxz
zkN-75Wmw;e#LTj5Nt2F5rKedsG#Ctq&;egD@C>tU52sHg5I6TQsn2u654=#sv7a^i
zSqc_r83r?^%}g~?yCz^0zwg-Z3lIgrMFl3$KoM?>p+Co<=P>Qd&W&g>_VoAQ&qT7Y
ztl$i+0y*xMI`4Ss<}-3p_3d0F!icciz3KiL>!K+?bk<Ctn<7O8VFy)l((<nQtITp(
z&g4m(Mk<&M`S{k@;HPQ1b6UpI<f((1HB_9#4qZfj>USRf&aXYf=#SvfD=4Qu@5|LQ
zet!7d=NG}dBB(IQ*3qmBT>00{ixuN>VP4#X`85k>^*LTxFkT;OEu?j6-hAH%h|-O9
zg8pwqD~=z;t=wM~_67>rm_5AQP9i{V^=oALAYEP~%h!)@(<HA`W~I6(QFYgak(v|}
zEy9k-P}MP{(z5`%Y#p9_O41x5`dQAgB&%PDJZ5Qdj<;*P{Ewr!8Bp}6Eb`^DQDMnQ
zBH4sHpwun-K6RB-Wc~^vC$HJg(=Bk2Nj~{mzDl)}34OT>ZNw~3eqHLx)EnhS9|Y~N
zHqAQdnar1tBqfqd7LU+`LG9DCi4?rUMa$6Nrv9JHv}c^`WxqHnf3be>=t#>DWiMU@
zpgaqnEFuGHWr`nLK$2O0M$cxM&)3J(|NGnhrxy%~Ceq#bLqYEQp99)dI~8ZJP2>}k
z<i&(pjgl)9roCQVA<Sm0(#vpsOnKV?DJ??GMs@{z3i8uQ5~09UmU$oQd>2aeI9@F7
z#mYyf`?dC4bmUR)-w!=R3Y$3TkT#~XHo=8(J7iVz9|a~Njv!!?_=?0fg3qRw0;`0o
zzgLyQ0dq>B1e2sfCYK56-+bHDAVf1n{51Lfm*NH_V3K(*cd7QcXDm(#pN~}hH;0_C
zH7RU;Oa(yw3Owhc>Rh%7ix42Goc1P?2;ZeSn^kt_mX>IOaNnk#631-17G*UFek0U)
zWrHwDLN(*fl(bJySv8|viJJf=QopBpAl?i}>zAn9+C1sT(Vp0DY!ge`tj)Up(+k$G
zorl>dwU&<t-tecBYdJUAzw(as!KeEt1((n4xA<0lu-I^b&7ojxRw$66_P3$`C4>WQ
zg(j$}Y@wo`yYcLFKd<^<)lW{iM}$2S;^FMF{jc@vL%+I`Fn+)gom7~bx4so;KEPbA
zJJYoyKME>ziSdn|_&lnhioW#EM}2Pp-@pgdsG^nuCz2S>`+~`c>&bpl^|lXG#^s9s
zejBUbA+r@0Kr?OM(+EL*crjkRtG7QtK79J{@cE*@=cRgo%S{0y;mCA&7A1Z>NUqCo
zZa_(03r*&>(kWi~=9O?}jQLu;vQ2k#NJI}a=Rf+F<6KvjqQ^PGCcYL2fB5aw$CXwG
zMxf)wEKVhlU?EomlMFl%xf$#<RVD3`q*j|fG)^?x1fSHjij*{&x~Qg8jB;HkWMNif
z6MtYVR!=lAVG<W`Kd9R55<t*#c`uJLF+mq$2&_}kG;eqkxZA#Jf<*!Pg64s#29uY9
zQ$(XWjS;`_ziyOI$?B&Rp!`9NysIFLTa@sdl~Iz*O_Zd2ar;OWJKHn%Y;5jYEoAsq
z($Y6sRjQ{BE5t1EpZH%lB#`2>Ade?GnrRU!K~=#|EFi>4IQ(V3EAN{%uLw>TMFiIr
z=#d29M7gH%BcXhtNZDT76g`-tf-9=?XgA`1@NZyAL=`S1FqEreg*Bk*B=Qrm2<L6Y
zVHyO@S}?kBW|5F(Ta;-tNtk@99^|4=XVqar?=KNEav~36wnvV;u}cdZ;bD~u12}!}
zJ6xxHzX}rn{}JO)*+MGSP7BGMv+ffykPX(T<33tnyNzbZD|bn<$hHKn6Fg&CGZ-=p
znK{aA_QwTCY+GcST-CA0G1Y{fu~w;+$E>JMP|cdMNI{vR$QLF6{xe`y_U&1~>!4jU
zI|A|HZ@b6)55GK&_xl$nOsevCvAS2HgjX~m(<{2#MV`v+D$1g*JIlgdFrU0)xiXb^
zq#Q*h9(no^!%M#p0vp?&wD*)|)n8kLVz#-|dJ>vFdG<s!``Ls@T{Bg$YA;{jX8^pE
z4UVe-jxJefX>}!|jpq&Z1`yglG<Ce*RBtI9S5ui)8GgaWjHaog&8B|LmW}FKr&D$D
zOb<Kj=Cfz$pfMY-{r&rUC}}Uflg<f&!I`B_e6OVVA5rhv%F(X&?tlXYN&!`e_Aayh
zOz3QQldJH+Y!i@n<(;BWqLeXp5!uM}Y;s?@Ph<+Z?8s%wu+P!+nil1s=Z<%X0wLUF
z>YHwXEJ;IPEavs})0VE&d+n}QI0`1mg>$h^ZY_}X?Cb;iz&^nHUz)Oc7+m?kx6PRh
z0Jrj<)5=Zo#4mJ(cHlK2;U+`3p^V`?$s_8NSxez4*C+pD&>#N)c=%{M{4x3;6tEGp
zM{z<EFq!PnOxlJC9y!RY|Em~uCeM-s+Uo1b|9V8AWb~?}a0RhoDi5!xEKOd_!<9$B
z@{AqbW*Penpd~X_gc8&F`s)#FNNOq@+}wu%JVZ&x%};fdNXaio>hq^}CX;-u&SHj6
zCu(cY_CQ-`wqB=@wxzjok;(F#fVO9wQ%b-a3W<Oi7MPi~Jc-o-2}fSz3Nk6hRcx^l
zT%G4pVup%GI5kw-cxeR%Iai^U*c7^9!af}cDZ(^1?Fq9icvwklY!0nY-0=U7_T^|l
z{O#BK4{tAnbG7vC#?;XRZuSJW%T8k|H%5R=00FyvuSNf7qjg@w=sWOD&Ce}g`=amK
zYNlAC^o<W$&WEcVZ@`w_j#oSX!cJeCbiB=L$lseZO~;!Le)EBX$pJAjV+mY6!EXLI
zwtV%g>kX!_!ZlEGlHu5U<zOlSvV@1D9nGn;@99n&aOIoR{yb?`SnK{>qNPtq@z`Zu
z4lp&kI&w}X?6rj=)2LOI@JrOPBYruFKX@^{Kaoec5KyNLoxYs#!RhAS|9AwixRv!V
zOXuS8m%cNbf<b~-R~3N4*`_!p$pD327O-Yg6>bTq)d{jd%mIJffdCRhPnkQmjF$dK
zjIJ;OWMv`xo6cVbKgEyrE764L7hm4%o%Muz4W}xen7kkT*++l&Ev`qLG{qHm6zW>V
z>w<%FBKR$;^=-z~o#bpFB+d?tWzHtGa)S7?kN)g(*hpZ~)BV|#yp3_+AA9IeKOP^1
z6hj`r|8aQy(I33O`7e4O_2abz`ftuA$fr*q|N3-oo}}<_2=d!vh6GpHK7+r?pz1EK
z#KaXw(B0RhlsOHwZ3p|Lg2ndY<>eNKLs!%gU@K@RWWs2&A#uSk=8e?(k?kp%QhN2)
zT7&D<%C0SQ`{2Li#sSV8yE87>?75D(BC)TC@2QAk5j;haP_wauvz~DQlRYo*y9!Wy
z<o?7yoZKEL?vNci7Kh^_<JsQ>i^Y_*w{&a0FfdlZ6LoZFT)#AkPJ6uC-Q5>@m{P8H
ziy|oaPjzdvKmFcSOab=Le)Bf?%`+K00D`r=1;(Mr2)AZ|gjc2S^TVeP_xo}G?!$jw
zHEfD|!Ng!ZK@D_5lZ?mY4eXW&xDC{mrzgB|H%Ght70#O6ez3V{|4-|=wiV<`B=q>H
zj&<AfPX($;FKLObk^lLlnJ{lAlUP(@WdP?lK4r@r29RNY!<@AZH@(s8ZAgWm+Nt+3
zzlr(Kreso+G}!q~n$N#Wc5n+PQ*3X7yt{Am9IQ1=@;CN>4sWcx-}p3(`G?aVtA+ph
zas)gEaCNEHX<e%4?*4BGH6Pvmr-702MU3Dyf<Rs-Liq-;HQR-ogQ-h_rX^WdOR(=2
zdlbH=>WgTIW~USgawu2HQj{xjaL1q@6TIyKxApgSuXTsY3PhirS=K-Nrqf=$6gWow
z-ES;@^<@cW0in-YQ!zJ9Bsn`vlJTTt&YPEGTGwk9<=-DJ)$A$(T4t3QiA1Nih2R42
z5K(17RS%{;E1k3Ezj#tL-&VmDn*S`o6(X0-G1YHU=xf<hzLK~=6~?sUxzX0+I+$5d
zX#z$F@|D|oeb9M+<)R9EFI|IUJrfbkYgV-#js8jU@~qBaByrr&#7Q6XbWac?4F1}$
ztm6bUHak;~Uj5fqyxaEj!y<+df90;8>PoVSR>a>Q#<!n7{`%{~rx%#2pL;18G3zA;
zYUc`+eB~mGh^-&XL3C%T5QIN%+IyS;ra#j|O_N%7uHeWw0WlNxLRFC09q)S*Oh~=u
z4W&zY%D1OC2cwn%3d2AHHp{W1kdG~Di4GZS5c+!|2NvNL7KO<5(m8aTNGFptOO|yn
zi8}4w)#3}wJuGst_>oNdp?g<EXH6Qm-ge4+)r+n=D0jPG^)|zjrWv$5UQI{+l79dF
zv6;Qudfo9{L66%8KjwL>k}LGIhmm~R-#@)5qBYHvW8=_A$xJGmCL;j_VpYm!R%PH3
z(Hc-2h36^MnpFzZ;z?FfC0w=Cl=~{4kFtDaF^LK5u$Y#4T}*0>3C}3*gb6$qVQX<8
z$ZwvjxV#gIRST;|*~0$T)fEBy!<Y97)T*eZg0nN2Jdw}*K0(>V^a+~-ZwSSykvCCk
zwy!PNZ2{VHlq)%QxgtN3U0JFBLx1xhs%T1NgyvhOJnXM&{=tJ8y;I0}38o-30U%2$
zXJ7N3a_07hkgrMY0=3g6O#v48riFb_CNaLHbFKqrz$mXkX->*lw(%7QP6CyX+7C-+
zmH4Y)nE0b<Hurp12Y>AkrcDSvIx1XWC2DFHH3TgQBHhC;4>7`~t{P=PTM8`2q%;Ab
zHa{@aV7KzOehE^%C<=i9j6;9(@46gx1+Dfn%UL{YIFH3`99RKA-(O}%wd%nelDXvT
z+>OpTHNl*PwS@3?7OVh_gB(9p2w+=b8=E)@f-n;;$k{%?f|!!C7cENhIOMbgpcl~1
zndIU3@Y`{l!SATsXmwNSM^Y4$gtqk?q0j0rXrM$Q2dYO`N+?6wKJ&{$p8$K(ZPNNj
ze=@(%s9Wkbqd(cGM;rXn6h)A`T&1ak$NzaGak42<gxlFV>6af*Z#?>qC+|(&%RAKX
z<vqIhTMfFe(uMQjcjZ>2-*uL-Z>k1Ajk=|7G@jn5|It}PT04+|1x=lCjY;=e=YVEJ
z;?MU_pU0o>cmMU*`%iCQI9T)IZk?R!omeBgqhj6T&KxKwJ{?l@m)of1RLWLwBjf?}
zdvdiyiG>YZ>@$eY#iYTqo}1gWo{Jk$=W=i;|45inE<DX~&qHKOxfMZ$$+dLngiWuW
zD78fAtzn)&<YYQ@*v}t7UG1+jt=P-i8e6Y<w$6P-$BW;gCxu(;6%@Hg0S*Bb1@P3H
z4g<RAU+o$C`T9bqZ~Z}wvy<kWlzeU-(V<a7qXv>yRRLkWj$4ZWIezCnDR?^X8)kwF
zoxfeGP4^DxARb?*JD3W~DSaKgzdIYuaFmNds=yB?r^t*)FyGh}&VK8t3~TKfAznvh
z#OdPGks6mOnsa&ua2T$Src)xM;GuX3&M!V4J%{}CQ;(=WzW8uZrW2~$pK|5kv=D#F
zwg0?UPq_0$cv~}g$LD-{pUF>q1PA8Z$4$B%vO!Rs%i;Awzc%JCW=+T5{QPha9^{fO
ztAlR{`igZ<-dr(>!hMgM46Z1+mjKq4DDF*6`Egcyp}pD;P*tpv*NFZFH7ZbKK8H9>
zd9SlFZ-K3}glisI6>P_w_dwvVhGsE@Rsf8iL@Y9Xj#x6bCZ5)h)9Qgtx3lQ-Ai_%0
z+S@^EZ|7S3aQITP(vSFtw5Lkpf(jSoRvUPf{zVa(*=0|F<}Zmw52rWTpD<7Y>J{23
z?=qnqj%_mq)!gJhf;kEeN+3}C9g*=pTSIXom>ue3CI<keQH++j(^|&Rm!S>9!zHwj
z;5F}2sXwg(dfH}S)R9y<@JsByB4n7I4;4<qAkgT7U!&p~Fw-0>ooLFkK-wL%1_eU2
zSwyAP4YxmeP)q?i8x{IJ!EQCpyDV2Iv$TmRxYrIXkl?`Xt0y3*7h_Bm#ZiR?#2_NB
zq>^t$$7;`(mFY`AH%JVz3P`$@Yk3yuV-WFa5skX-Z7>hxcC4ag0^+zWQ#TW&))jO?
z^=R~6eey;3{(k@PKmMnw2`9Tmi#=(7@XF2^X|U1~b|S*g9(gR;xEt3~$CXgA6HESO
zQ4kAh!X@7aWzvF3&!Egz^~NO74<731at9B2&X0<%u_N22gHnd7mYBpvV0l2DrogL8
zQJd~ht|07iliJwtfg!L3Es6umhH>hXA`M>rS_=m!{z?^eL~R_SFe$!@L%8$bt0s#K
z$2dC#-qz{tB=0~>7jgr9y}bM75q^{Z_3-(HUEKW}*z6JG8=pf}M^%W2ZlS{s1+UK|
zsXh}C40sFDkln$AS}H#XX?stQDI+E2voqZlcpkB)M<LTi`?E*9a8k3ay>WDlcS=XV
z(;i{+p)61&GO}mT+cO40o%bByIa$Cn6^ox`h@@M;jye_&X1gSjCo{^pj_%732(0K^
zrg{}>vp16nMp^%;FQ4LZ^oLiiPrwt_SL&m|J8ZYC=MIbb*h<q8yALZd2!b@}s`^-K
z;vFmEEX6Vu4F?)qFpYe=iBzQ6IDu9_fFh~B61z*l-mXOzZ8yZ9>M)#P1>v+6f+O^(
zEs|$g`=M=`9$~K+-3i7EswvQ|VcvsI9TpSU8_{A9V(O@al1P?5-S(?P`QqVr|CWbC
zpuA!QQ1<GjrtX!fU+BN^OI<OA8p=(*9?Jf1*PreE&$<KoA`Wx^j>G?H_xSGl;l&i#
z338ieW%=CVQ!vd*jCA_PwMO>Zai$%e>8d@CG=~RbsfvUma~ii~`@o=4Dm{%;n1Dyy
z1V3_6ve+F!N8##1ogwv<zS)RT-lmFx+5nyS8O0pF9OtSq6qu)|!vC_V`{PnntK(6s
zFSmvqX`_u~hrd+fMHQ#A>eQmEF1L#ccoZq<kB&v>w-<kUA_?mF;p)$)w|emh<e<Bv
zXVnvU&Znn_?(vNds-D5ky=xg4aI9*Yj!q`XZ*Sjyd^tVle~W|=6|%F(O+8&6V+M#1
z>F~EO1g5#(IN!+2#a6D`%ak{P63(>Wa?JS`Kh#DXEV}q}pv*gCsYF=lQ&0~FaV5~j
za*Suu?+TE|%vODsh?<<m$s}?qUKT%^qc7b_1@2T!ljNmRz1(9S55N5K9;`fEvO9?M
zRklFYkK|~UB0H(4`bBJ>;Ss}!dbqjA;%AReCsJ_TwGQdRS+muGbZoXKz~EY4zMtsX
zeSCXG?#Rz|xLXb$JMQ<J3W|NIoz#frRb{^RXdg=SvhQgb{`Lb7OA$gHc=p3^a(Oby
z6=1qP<&IN3m&4@F<zjkY)eC)!UsnwKG)E@dDM0n%T%O83vc7Cqm-GzK+)NuOSEjSe
zJZ&MKpJr`_yK~up?VRJKNEV*GQcAnL;Rax?$%brt8I<vaBkG>yT2%r8zjkrm<1hB(
z>6M|yG&2PXc50|CD%Oz;2?)!~H70Fr)4>nAsg1&Wb&30`Og>EQ8tcn*2c6}=*z2ma
zz^{7JGQRgyRed$P@$Oeli?HNN7g)Nleh{Q$nW+^!bhWHqKV0ipAED8QNIXX4wSHAE
zjoz;~3zPTj=p8#=>)7%5ll@mNd~*M<HPhxk=h`GWU49=vf4bkj(EdzD{yStl?j%@q
z#sh24D1sc)V^-Fj1DVdDKw&%(=}@3B?)=x&=ma}Zpx(i3p=w{>{nFsfZN4mGxw0pN
zV)B?Ce3Cl+bdoA8FC8{I*%8oWv2WN)QIUrX6D7uSA~La-<{%Md0@FqCej?+QLoRCa
zTEPg?c&j+!J^Ky2`#w<ErVjnhCjx0RL7B}|9RL(YojP&tad)`kXw%5QK#IgHM}t$r
zwdI!h7FK#$_R;|Z4(g^-BF$qlq5;HdvWUPw_`#ZFB~WWU$&r3KW<+DjviE@MAo)#%
z@wk1IDOp8QX5tG!76BX^QE;KE{ls1%|5FaVB%_X>Y~=_(S5&!W)((_~lXrud$~w?1
zaeB~pIu+45Q#nN(W6=w*0E8A#_C}IE=;+IL)sK%0^Xd6=P1d(>{~c@cJyo4NoO!Vz
z9>?~L#TDBhTxz=Vb(B)i)w~K*x_<dD@2T-5#>5-#@mJUI70H0=Hk%HuBySY4Aj%~_
z0`$Ri+aR(&q9(m^=<Tuh(!dr0MP~Xa&swNLF()ja-1;%l5IPWtgldvRE&m9HlpAt<
zV_MxG?m2Ju=*^b?$TnE|kvAJAZbfpPWH9j9)@n6+@J7>SQX8YDQWA+w>&I%d+_FI|
zb<3b;l6RN-aSwgg{LGd`@K1FkFi7&GqFEJQissZ~OnyER`>8?``tB}XmDnc~YRAs#
zw}Aspz<LjBHpfA#UfcvH$HbK)^&`|8Na}-NA$Ir#PX{a=J?U>O3OvW;C`(7MHsB{U
z^kZH28=6T#2)O0)eWk@(Nb%)1{_hbPv-UL6slYHNRtxZ4GRR1I1QDoOb2?Pf1+Yvy
zlfr!S7Cr~-P7D?K_KPD~tiwrNiwZP8k87T99?rKArwx9w2R}D6ARy7)+5C;NmoRpN
zZh}XBR`s&_Ckge3zwI9OFRh*QZy6(1*j8vjF=up9eYDtI-2sMfBjN7m&n&z}c^tj`
z0~Y7xM0lI*U1ATug_3y@uV4{-obojNosq{%71I-SB3bELp`$ZhquL;zq+~Ef(oG1;
z8I%|ktKZbyBK!rdP1G<c<KakLkhc6_%x!&_))9{8wvy$`OwDeOV&TFGK|UzFIRtUU
zX{^S%xkr!<fuN7a>c3|%5DtH=J|yabn>d54E2D$Sqc)3S?Z5n|n9vV@`}O0e&zBiq
zr9PY)(bwnZAD-V|ek=+uwY`?7R_d+~1}~27aJT}?UOfM1HBt7N*Rl~W11J(XpB%2g
zo_(u}+oDwmYgnpwNljZA1~4hty}u{jpD2uT{rYVGj;ksaw&QlK^6ha*-o3y7<%(OQ
z{El1WBvR!d{P~(U<6dqI<<3qAb9ml33-mJoo4pzDh49S$yuN}Nf4ab=UubxKYB+rN
z<vqoTVxAr$!q|fmCkAS7xcY2k01w%AXLxbIcEG&iq>iM>pw6$8pASb?l|~;s>ii|#
zeEp+?$Ztsi(2pnOU!0Eix&Y6E+dnH_DrD6+Fyg~kr=oIM3Z!y1USFb+Z~lQT$VLTL
z%3y;J0gvYcGBMnTs_}h}fIW1b;%ubrY8?-&Re{%AR%4nxI)UO=9T$}~EnGkhM*%S$
z1jOJ1LKo3O;%*_;Z(M>*HL50G-`I}B^5Oa8yWNXrSR7m|aGDsQ5K&b1QK!@ACH!Hr
z_y_y^dkLTarrs0rMNZc(%x|#QUTKT+5vJ*Rtw@;99Wk$ZC7#D+<#W5xF5!N;re407
zd#0H0_xGP(PQmcK18e`?CR>}nZIJ)y<w*|C%JebwGArBnr3GED&N*lj@z=@b<<p3z
zJqk;lgup?rK^+b4<C5%~Am+yrv=yOC>h#H(27Ap;^%x?6vf2y8Rf$R*3KX4a1U52M
z^kgilK$?n3aQKJ`j@BsG1QpzhVCWo$q>>o&0E~jMgI8O;DFMpL{g}lVLw1ai%n(=d
z3_Mg)cj%a+GK)qYY&Ombuh^CcLA*zi#N5SnZ5muR($$6PK|WFkqT0%X2)Rd)Tih!W
zC&esjwPWGwKk4D(sEA&wmp%ecBp4J`$JB#f^sI?V2jF(BqvsST(LfzIdJm30{6)Y_
zURE9TE*#`UNpeZhg=);;T?h>qJ?H>*I&e^@4bcr(9rq4IRVztE(<*hF^QaDVmYt*2
zc>nPB-R}N{g_!60|9Ei$uET+(zT(DSu#EL)O)mB2$6Tu$nqx0!M(~#NuY9rAJsWz(
zH=BaQ)JuKwaXuJ=gYIVY(ym(S<)<&k<!UPZ+*WPEt@qZpb5<`_SFQw+GvzA9Yjx>X
z$+g~;3IXJD?UJUSU3DWj9On=NTAZI6_t+@5<y};Td$}*NAE35P`$Q|?_qZW@b0rr$
z>Y7hSo-x!;3VN71NL@+Nt@iT34StJJg_Aa3-NO%bk6RU}mp7)Wh}=IgWt2F6eahGr
z9jQW|(^vFg$Tfd|z8{A2*S9~vw9B*`hX!C@nGw6OpaSHLSWrzg>uqS7AG7-h>{Kwa
zT1p!+XRG}BEJvrDTU!09iK+TfVr?Gh0Ww^A9`FZ>wNg+B{8Z$u6I$YCDMSX%?r!o<
zAg!!-T{bz>LsI)Dc_6&V3yENoHFDF4-TYt-KHBtr#!m7fIvECgT{)l9VGuga#+^xr
zE*1{5VVE9Krw)3%oE+^i+++j~6ivg0Kgk^pe1O&=^=5FW6u>FnMFW9&c1uEKa}{vn
zQ6wa@(|nUCijW_RcjHE=Z*~U~51E&Mh3LYj6~{Gc6d8e|U>Tc06}9M=NTA(|lDq~L
z2PT>|RJH)xv1o-%UcG^YA|aK;l{`{3o=a6hEVw*R0cI8XZmrP>Mt(ax;3n&S__2@(
zyo(EcVvkTNP!L<Yh|iN!8Uf*Cg|)<MD;L9=OY)V~@HqZK;V<rXP{nCS!x<Hwq&ySy
zS{9N5<-!t~MH`m>cCwN_{`KM0uOHuicnKZciC%;XXtP(DUd2z5drNCXSzJ_1W%dA|
z7U{l-@EKVa-=OMrK`T#8?~HeORQ;`IoPP5oAe!&mGym#s5j1#rjxBgGRa=F$JV6hX
zRa;+4i+Th}b`?-)Dp}pcYbd7{R16z276n%0ZXC@gYRIpj9-ele-u()L)JxMP{(HRD
zO~Cn?ST0(0l1i3>ApXPg<qXijM~sLddbuU%69&B0e&;8r7atF2jeeF6b)xNlY?jb#
z#<FK9CX85n{heQ}v~uGiIbl3Gb@KD}x{_b@R=EG{L66u=*<P_@&+0Ut*s(_z(MvnF
zIgq~$M;yPy_+4f7cx81m$Rc1{733`H(G#_)+n(N4Kc8n?q+U|5KlT^V>BYG-w~}M8
z%Aax7N+4ue)e;?hGv)jnNx%7ycvoms??3<c=>;uXnLQSx^Z=81P6__cK`<ET<W@r?
zj3|mwWzsX3NAg1)QPJvuGem{vbVpRwb3}y#%?W~sf+tvZ78ye<71P=qG3mX~`lL%N
z|0?f3d|jSa;VH+JfWFuksFgS_owI?24dUltzFT-jo03B<B6FmYGW%F5eJR=oD%4et
zfJmPGRSC9Kw4ywFRE%^)LL$YOKeN9QLtC=Hz`-#4VS<i9+)=aEsa|#6{;E&>+Z{Am
z`q`i(U1pg48pn0@+pkxH&~yIxY#Bv)>47%h*xjEG1syJtSV-gR9>6x;DB`>ud%#$(
za0RcU%%M1siWu*Yp=;dY$ib>?@wE8i8sk0*h9g51Wr5cLxu7fQs^w3OLqETJ`)~!$
z-TvjM+si5OXGEl4n;wp8vbh04n>DD4{Q!)pD*Y}wIX}=!X4{|CgXQE@S_h>i9vXLc
z^Wk@^0JI~Q&~W(1e=KIPlgB!H?B@ho(XuZT$5pB7DJ1cxfn`xK%+Al3iJ}dsjX%zS
zzkdAmVx5NFzelwzvNR&q(m~#Hn?Sa_K9&__2BAqblmafY0j<LV!+b~{nYRO5#@aAD
z>PZej8HS_4`9;VB&;lTZ$cz*hUv>VK$5GBu?wGZ51PaN$>UR+Ez@E(Z^M2ppHm4oj
zgdn(8_4~U2mqtO^v)6Vp_J#ujGsQ%iD|$2?Jz}w+rD_}!HP9eTeQBx}YG2BDq_aeK
zvyrzG+_Sh8=Rrm@U(Nu$WGqxAD0oM5@Q9CKr`B>a{7!A?T^N0?@hLU2?KYW95)b9V
zUWO~;vPS+XPHRUpW`jDQsA{BadUlKNoiSiDcYhgVofT83s#;Ad&SCm;q*APMbmy&Y
zkq+w))GeN5`j{3fBA2JGbMvM1BI-ALCI=2{UT^UV;fbDSr&T;r*2jZh9|;c&KaSXL
ze&(?1!}-F*Xwr&!6@YBzu5o@SS>Ac+$D&Qrf*?J8uhb7*eS!`<kCn)%<ZBAfGo|f&
z?#FA|vWi4FjgxB-`g$L6aX=l-8}!my?x-^OVNy_H8pV}`b!-n3BXvoZ`NsCw#Uu|~
zmMWnpt~75{{wZr+QY<2=oG`C+D8&K1IC5KG{jPpPxd8gj#kJLEiMMJ!YxJ|cS+>L+
zkXJ-Z(xj{NI-oG+{+2-uhyva;@>LA($G2wXzO(@j72C|>dLr9MnaZP69qi->q8Jfb
ztleCy`Dx8=_RQx|#9*zzq1Y)t1lMK$ljdhVwJ86I`5FJn{A_=8e&&B{e$KDW&vKZa
z#is$BVq#_c?$h%R&CaJ+XXGmrGM`S!e4LOrAKzc{*G$cMSs(^{9KpC=bpyS^U{f>T
zhO581$@!I^*lm2%mlL2zGFp31uc0&uj84~FP1mW2RPki`=HImInni1_M5Pm#^{7<L
zYST3S@h3kLHUE(YWy*yL9q@nd^&{06rt4|S<(16I<$C7iboC~S^T^ac`4)l0a&4$z
zTNvNoSFeo4|2a2s`SSS%kIwXyv&M?{-+p+5trpuBT8#mh;iS@_$|;-0k?Q8eEvVio
zD=FN0jSRdZ;CNe9*dR!Ii#WcZXNXkxz;$TXULcAcph0Ehi}v}%UZOe|gPPLr`nC6v
zHZPf|i@nd=5^=Ew=Xth=$DgZ>>+l5rs2_fL`1I?icONc`NEMHyE6B&*Lpo14(uM;X
zuG?<|$xt}QBUQLnhK=w@RE!S|7x1%cuCS7vTTzuWw3qua8n$QU;&ZD&G-49#+$=;z
zk~43HQ4%g&hO%tjxrb{|xC<xE)TTaxYe2#!IC~UoBU!<=tT}Cis6E}gR@{XUlvAS0
zzpB9%cOpKW<^B<yqVpXmIVf}VXR6xn76rpJ`c*k0?jcT<R!>SD@h_<pMixoic<C|^
zd#6mP)XwFN<|CB_<7y_xLYfPHlqk<1acz;RWzS|V94GOfK{+|Yzi#~t^;qV(ipDd~
z;t$6h9+iDZHR06#rw}sgX_$x!-+Yz&Q}DjvoK(D!CaH>PQd&zDXCl~leK#sCY!Fi`
z50mH@=m{s_C!Q}bs(ZtTN=<#V(R-Ius1-D2bui>;Q3}dLp(w7~c5bDz|2uE{NPII<
zt!oe`5S{Bl6478TP$A)ebgkd!82;C!hRPo^m!3dK)1vnZl@T>uRq9t!5JisGI14f}
zi6UxKoR&s>LczZq{k&OR;tLv-tlI`J3gJ3TKS)%@UiuUIKqAxbJ8Yatb(f7-8jJXg
zXOY5F-cmXfk7@$k7I9YXxa4f;HZ7F-G@&Ib3pk4k7ztqabkFgmg#R{sW~1y;<t6nm
z2R|<;h5zu4pA~}ljo0&pke5+T!k#SjVot1mdx01=5$*-+)0C`4V7~Q^XMlOIxiSL;
z0aD4cH2N=?do%MJkFLz+pc;*wCobC1zbx`5&}~(t$%*%i^(hq@{cX~JqPK@ANsRTI
zQepI(MIOuGS(mc_(A-&yXt;nYMI5WzY$~p-krULZbbjzC(?yvQQC$q@ypm5tul-Q9
zw4;`Jg&%+R<U0-*)uhznOlQ?mQ!shXovlK703{ejqZJ=Fa&HAWlv1b9txl_Ne`0n(
zM9@G0WbayPQZkz<+@eagi^;;c&7QfF6`3Meh{%G<Xd)0)*S5K=QCSw{v_-Xe7RB4_
zkLo<9K{gt}e|}2nXP|aXE&EZs1(Jw_*~J}xa@@jps+E<*Fh}jN4HDkw6}#MKR_ds_
z+aK1$L}@MAWO8TEU`2@K?Be#EqL2hi;DV+pPmV~4r`F9C31Dk2NX9N+=n~R!tc<3*
zvsk?nS73mYvtIycXIYTS(VHbBC(b8!C7}+qUD&mv!oQO{%B!}itoW0FZcS_uIr&ce
z>5>#_>M3VIRn?m~Eb+uqXWdP<S)(eeYl2?X9yY-5EauB;^7qya?dqr&l`y3yX68(l
z1tVkLb{2MvDl0B3iPw)SYQr<@qTme&jN!y;v>>Kl%-dFB*+zF|B{t4U1<?|QhI5-z
z-Fhu@u2iP}?<o)sTt9`U3`2x^tqUrzeUS7XDS*2=9Ii9>&kqWZBqj$OY~Y9xT9VUZ
zvZ7X&P@1xCRd#zDskNj^^c6jx8KQ9pPJqT?v%swGCG=HhGFG*}BIfO&GB0#wa56Z2
z9rU`rKSfzsGKixVq%9PCHpt^<s9_Mc^f9`Mkc>Kmy$vyLVw7>-Mrwqofz*Y`ktTC=
zzUHX1(pg%H#0ZC&YgO_^<>qZ|QyV$89ym#X)n60qRV2!s08S?jGU!bRBG+9%IQ?Uf
z4W6JdYxos|pte*5UL>H3BT4731mGJfP^<>2Ed)SKWY{v*e5Xc<t&ZbZKK$*oDVo2%
zdwLWT{drmDq(RLIeR@W&r$}s<yc1J_iL+Yc8PK3K1UWstHi>Ed1<tmpbULaiC!0e=
zYa5%P)O+aocg&4U@Sf)*qa`5>Dgq?>t`sMUlgUNaWWs(XWG^<~h`WVKa|^(ergWDj
zO2tWR7q;n0BT^mt)Y-p-it*WafZAQy4me?fn;Fu3PN=R<Zt=`$L!`>vK%U_u2il|w
zYVXg|IDm4(Dw$jw#gTb}3@scjHfC|T%dNd010pp&ycPqBGL$l6(1W<vzQzM^Bly9W
znX(R#0)q2b#!Zjtv>7W9n8uF?{A|{U4_}5w4>ht1cAN#Ulg6z>@NEg+Ka(hkKlVmt
zwH0Brr=l)e=I(=<zx>E}&K`q|@eqVmxV^{nb$p0e4*JCL661P2o~9stdip%xzk7S>
z+st!kkUpys;yAZ_s370&4yDA4Q?iyM$7GwxUshQNyf~aDKngip_&>it2KUdz3xD~s
zAT%A3lJ($9Sd%$9_C6U;>!RpGPg3Le+5n#(U-*wbjw+a;FgX$~a)pq^jMTHuC`8wf
zV2HoP+!#c!idhid6&kc@MrS#51Jv}eTa3aiQ6a3n*>!{_l83I)d=&#^&s9Kq{oURy
z<Rnozm2E(W<;ON_(M4u9GL`dIt2xTHg%%goWp;LOy_foz{?)RcjvI#h@3v~%T08U@
z^6U}M!K0m8Qu8s^IrxXiFlS%beYyJ;hBc<zXSYr6PxtSh9$thn>)Qvn?=cE&HB5J5
zP2o8S>yIyD{wKJoXV6wl+7;(RnOnDJm5_k3G3$^5fK&42fEB%%@@9s*$WEnA*U`0<
zlh>O#&C=YPDx08xqluxp3%5;`i|37|w&bcPE-}}O>ZO#~j~^*21ofCUdb-IIEOZ2-
zTxdcvEl6JB4l{*~sX~e*q!7(Up$So&um_XPYc?WPYM?q&*%sT(?`@x4h{G<2id)!D
zBwEC%(jSQgm)5SF7=<3=Y^ppHgEZwih=DmO!y4Rj*4R^oLgAZ9cAN^2Q#}McJFp}X
zVgP25XF#Z<Bn(DEr=g&a*fwSz`oIQRzS2C&D#fg);yYUT7E*h*S|xOlIi9qbvZn)*
z`=io33g%*PN>z0pp67XHYB&k7EIeRPh>RW$u?;5NYOL7`NG$ZJ_^b&~VVGMqNtXBn
zeQpc5zqx%!xHQ35687TbX{Hn5H%RgVv0bwne)Ei`N^(@%O{YANeV0`Axrmh!#Vnt(
zCY)eo4%O5zZfTvh)ma`Z2(Cdl0rGd(_+P%f*HRg#SMT%>JY1cw-wWxyzyIaZ<LRXj
z6I{U*y<sV)EfwjOx%EFaIp!FI*M_N!Q3eNSI*-5{%vcr4u<?QqV9JULO(ESg+&HZK
zt&gg$PMLV6#w{vk2r@&bpn4`0SPde8LyrUALAe=j3+TXf#lg+yg&olg>p~NQ6DH%j
zqUeqEA>5g{{EoKtI$-9RU|-(h$OB4(t1Dw_6|c<_pn{>Cc`ECls0EEFwU~Ix%1EI5
z1ZeiU<NTRXguu_6y#%E$0t#Ox2Ib^g4yA32X^6~zXw0cSf)ABJG7CY+iK@VbEW9Lu
z6Q=WmH`GMP(j^3><V}X)Wb=bA1T;dgm;i*5L@vdqlB-pzUHZ#+6`L#L?(t#wUk{%i
zUX+puUI~$#N0m`o?qZR;5LiK|tf_-FkZxc#pP3oha`^Nc<kVRn7f1Ai;P~=BM#ZjT
z+Nrf_>!^|wD*3=X;b6<yW7qi1Jj_d<mFtX@J|x{*r78TA;I;j9OMCI@$6R3IG3_+z
zn55ud*l#r1(s8N{AUc?2>l8aqu*+Crcnwu~m{?M7m{jV4;1kLZOOj>ERH8A>r;#7#
zri2NbK$<?uCy#(x<m8R=UjP&K{Fo+N|Bgky1N)=w6EaJfCYmKSN054eTM`bqod80E
z(o>Ko(Q`xWUZ%gASzj3HD5}q_nq5T$EslyWKV~I%I8~5*qa?J*(dwfuZ_iz9br&H(
z0o)}1SHXOII@D*~g=Pq>1^vNBp0l}M!launF+z$<!U%Agu+Ar&de7ARRvQ*<4$TRA
ztLKnJv2sYkRK5vkOg*bcCs@DntUHDST|J;JNMGx{5hwC4)J`#=qQb)LsLYr3LE<xY
z=5|qTRR%6=R_Ow^{XdUtCGc6|@XDK#H?%JtJNMbvO+TY}e|t`jpRh55EvKClZyUyX
z5=ec$`=%UM^KVc0m+N@WZ(TVbrmg3&u?6`7WlDr?W1*c<GNfbv+%aj+te<Vo{^PtT
zPR?a*QCCJLO^KQ@MRX6Uu_*`^j_A?sa!=R`u*2`DTQ;j$)ex07R9Hk55-W^m=&603
zi%0BpN{DF;7);7pbCuzy2m+Ia+bQhBA<D@}%2L~q1<cZ97v0nzc>KLaKH~x3Et<M=
zv6k$8jfP4_6(1ILjApOkWI~YX8lxVR5bhsoDDDhzXIk4?Om7hIgY{gLpNphjI2&g#
z;4fTe)|(;$(;`9yC|D9)^inj!<S27-kzG3>1}dE{LuQk`Ow!>w%U7TC_>}YMQ<^ph
z7_hJT0x6MTq<G8ND>!@_3k$TV<cL&%>lk)=!i<D+BqY(@@8%*hV(Y0s&o;r0g1YHN
zrh^g#PswP4t4za7o}4GwoDP12c=Q_BL?C+gk6g$X%*ExZR`&AUuBYaGx68R|`1D_w
zWz(IBD~lXCgB6AI#X7tIjClouLSgPJ5R@B=g&tEXhyLY2?cP_BG%%0g2J@S5JwY;;
zNo#K7^|t^waqyUM`tFM3MjKOHfvW11ObzrU0W5{s_gPySjMZ!%MG#s?$NGUug*#_z
z3cXC0tUR|VwX510x{5N=9&O|EstEhvo*o~lKfj#0K%Bri%b|b08=lS{{=8E!&^-8-
z<M7X4=SNauo2fuykT6$@zZrc`d=gb@_3&@(pV{x)Us5ZBe?va5A{4l%d(NVKmhkk(
zC#sjzZT>+&JbXR&lSg8~k;Kp0Y$#kN#NdX>LvgA?L0NG#qWp8wEV?7kIpv8f@BIGL
z`E{Sp+B1BmJsQ1_`?oJKA+xGlWQRN6#2M;j0FB)xNM&{T=n98)V|?~-%?T&xi8t|#
z2I`dg=`N^pnZ7*bf9kHa|M1q0@85m+?dftKuf6W{zqOIhj9Onw#}fh9!DKzlDmgf%
zP7K+RG_B<o+QQYZ>pk-E*M|?6p518{VKbG6E7tu&URk<TwI2$S1M_S@$Tcw!{mnBn
zvT1pXyRmOb^oyMpB(l_$fSB1_CycGh{pgjy_R!Wx4+Di#epnL+xn{u0R7`PNh&$!o
zdOc5&L@IEFLDw7nawe@x>|ThK&f!|G|G}}IF{A6=H2g{V;U>O9+cp9&2#KfwE_vO6
zAP^{i^V4qrb$@N%J@k3^rq8?EIJGxw%e8XlFA9^ZT=|P4=6#}_U7_FOKYzp|E^o{P
zygybmXY+f5UqlRh*S-jsr;n(tV9H*c&o}X`27B<r?6x1Ew_W+-{OWIX>{Nd*KmSij
z8n9UByKM@-+bS^lC|@1KTk=$*K`mzm24fanNA7x7#(B9oh16{~TW$%8$%B2PHnM>H
z9A8Oi_3kELUWnR@PsbMp^Cs`8M`w87%cg`ljBtI`pEe62|Nawhs^nRP$eC}<R<K$@
zx%EMx_Idl^^LYQ)ho_J4AIAO1Up|gM|F##K%(C=3{2%|1oiqI4=jb>2L2!4~jT@#L
zQ*S8`Dgbvth`+uAHb))s;j;=GZ;_8Evib&ngzsD*;rks5ZvVyT=WxW!oi43Vvpgoc
z%rx{Hn=l0=Z9@vdDDLY9e-etw*kt7kkOUi2VCNI?XLglGM_Jf;YzN^BJW7oxq&#CX
z>?C`VphVsIEY0cJS_#W2IdVlMX?WLsVn4=M5eaitH99|vv|C4fI~=}c5LNACBNm_t
znrhL_o@1aUHeR)%s>%rQC?X9(-T;gfS$Tun&jS&^Eq<h&CWRqn00bvbSWwl7yxR(*
z)icN%Q;}vo3E`%h9Cr-?%%&(vXdrJl)hr+?nwb?vSIa4d(v&HZr=yA7KO0Wc(FX!i
z(sl4`@M6o~Rw<WvECFg~+{m*dw-$g7g`kKAQS?g_S>z;u{4}wYVpSK-FTIcbJAa1*
zEC8O^jSg8*PB0)Cw*d6sqK74Qt^TljHzi3$Rf;!Z*3@t_3{y=<ygcJ#14)b3HLLgy
zex*hET@{m%&_8{IqouOQGZb4ontEb=p4d<WaqOxin^pWu^e-jIjl}h<s9>v{E7m8^
z;7Q94`*8B+lwoa{m)f?DR0ZWI3sFuA=6Av*UHr%<Q@f+EZ@dY(<%liNSqZlf{2qfW
zr}T*D@fow0G0id|@ss85j%&2py6I8N4+77@`A!DEh~6IM0e_ZpfhNW9%c=$5;AE~k
zT4g}o2)pF%)sYFZ1po~WPkG0vSx(X{M<dQa&)yS5>@2T{Qr=2D9M<S_nm2F~Ld+1l
zQv5TM(NPp(fi%6^pFGAQzGoFW_fyGg))8y82YZ6tO?VA7{<;&khe(YXiLfu8v!}<A
zAA-Y2;bqE~_XY0)R(;*$0suB(&#Y)vX5KisA&e+^dy%D&<jsh31+bPZTt9ijhZp@v
zO}(-wIp0Le;gUjyW?WAy6B)4luz|@sk34pcdl(wDRtm|+o~8nTNY3$DfKt0MXKCFO
zO-wyt<_8IRC)AC+$10VIdmpA0h9`rT#2GK5p5$H-xkoj)emr~9r_e$^9sDpT>`Sp>
zpJO;kq|GDIb*zOj4U2#hh4*#!YZ1W0b3n(+X(>;SVy8AF;%l;Bs)G|ki(H#saCdiH
z+;N!w$nLs8Sr4pnrY=@@-DV*=wb-iAKmy6zX(nOhwN%y9-RM(ZqKc_hh^W>vb#^Cf
zhSH_I{RAuhsJA7-v=yC&h2_qXR+Ecvdj@}(i`wl@pM-Mr`cZ%hc$B0k1`W_>CS*|k
zs4q$J{vdOks$0=p@;5jyH@~It@bmhS{CU#DXHi-KABcXWR!&N9bzrcLG)p8o7A+3j
zclx_9Wl%9?JP`8q&Ds$`TIvwbDXUNN|93VHwz$4=)URzEO&iA_-!}3r&qutAY{ZUx
zYpNWCzOcINCKUqf`$8HeKar$<G#!7;XK3%JtoiWcplzl8gWC#QrG%D#f<&j9arL9r
zr8V=24UFi{OqVMzvUp)IJ&8VRtZW_m_A+SmkIKHDTvpDuPr(z#s+@hz9QUckCzgHW
zYf->y9q8rDk7%9)Ue|h%5?T&jO3Vj|agY-1)m=)=E(s1&q8+6~(zbdgC4#PqoCxbm
z`(u(Kcx|_}Rb5ut?@we!xRe#|g|-%mb=irhOEOK;rg}p)MQwB7pzG%!KmT;U-;ccf
z$A!-<XSXa{cj6^5OY+P`5sQr~bC{ItjUt_6m&KHJmOiK$X&%~bmRkbC`_TuQ1ePe|
zJ~O9i&5<veslsaAm3NA_Nuy=4ajU`SlQwl{y3c^SaYPUNUP5EJC2$D!-9}`W^kbx2
z1FN3V(~W*)?~Tnm&~_#yRGFro3LFbGiepXANcqxd#)(%uc~<s)+y*fKYN|!C5+-S@
z>s67(nwo^)c1b#QP!O*NPizqPo(mH&QMgwB*R^*0c+a>hQQ+j|)pL(m8~fLztbk1z
z`~7se{(>UpVT6DF!nblzvf}rL3)k;);j<PWF8AumypM<L9sV_6#@zD!a=gS>&plo(
zT_3)aafu$3smE*o?|j*QvEu&LPk+7t^!C!>>MI{to$0sCa>~e|%1vA9o+~HHK}u3X
zqOf<*4p5h#AW57>VJk)jv#9s|3Sh1jbyv_VVHmJg0<kp#z@?_+-E^JeJArOBeV-fg
z=$}6RatV}-F7eFjEJ@M4w9QEg4XCn?9;dcY6kk6Gpae45t~#q`4>QViAfYO;s`Hi|
z!IPt?uP)1hY!MVGv{sNew)=_aa{)e|o0!k+?eVN^+o>ye8ioE9<taQH{{Q0$72N`&
zt0|Q`5!(-<Rf>x2q$2p1r*xs`)UHLtk+H}!EKvDWkj@*AX|%TQoC}~l7YIdFbSwoL
zF#&vARG?F(s37b@)dM(}l#MidHkW;&bHo8FFvMg=9rzlMq_qy-u;|$xL`xa*pnR%^
zM=2}oAu01nJerGb&*3(sZbiE5rr3yoQ+MIfGcmL@XHTQHf&#2LlSfg@4+WUe;IBQ~
z2|{eJHrZ1+1elnkU?1|)<VG)&&M}b-6$Lt6Ak9K+qCC^_*mM!@n0me^4gCs0wc}04
z4p2Si;Te7pplVb7uOBXUcQc3_KlINBpx!sS+>{fi%1J#mEO+SB*pEm3DbORh9{->p
z`WI+0)q44#zmC#g1~~JgNf2z5RHZgFQB2}k2havnp0XSQf%k>q;D+D1Mv1D`qxD!I
z*(3U83$T8cW>XbsCsaTA1>^M8I?SdDNF?Bd!n90Asdj@LAuJ|>4c)!Z_^d&ci@4?e
z_Zp=i138vb<ki7vefD(L*<b5x>s@f$N@GhhGozS-OGlH*&`UacQd$)l8+|4zymO6M
ztVgI@a>ht)6>+X?4C2L7?3UuDPJ9vxsc;5-Cbe$|_)qjc!FhkU3@T%=g{9QDY3ENm
zoj<|T*^>`nd2%0|-#&bJ*dOaA)I6O;UuyJ_f%5&phb?)pY+S~{MAo+8O%8y@a82i)
zeqC_OV!2~0<ZS{2Etk*X)J2)ac{9zP+76+bm@aqn=_>JUQL>*1Jgl{Qlm80<;$2i4
zT@Y$GE5#75E!-?lpjl>H7K-ZQ=V*e`XWI?LA)|#sG|+5_1^4L$#K-gJ0jgD{b57Ni
zXx9A#47QPtGimvPwMsg&e^2^r=zp#M#>1!M;jeN1%l_FE1FW)mL4=-efj0BI1rY?~
z)D-)_1rg2)BCH874$S{rK?LtY_2B0Jp9K-}^@0dL|MvN(kC$v;;UT%EoQLS>)I?g@
ztkpjO<abHT`(KDxpa#x^kp0MUo#TJCC(b+h9se+i8w&Aenkc9Y@VR=x+8&XjpEPnI
zQl%X$mprPHa}j)YVv<fIasl(C^dv}r)#9Ee`Tr;7I-ABYiF`abX=?T1Uea=_h9>x9
z!I~>iwM2Dn^^^!ZX@|N~lQI}5Q*vfy$2$VLUwr5nCtIDYTWghk1;{pUus@1i=%qj8
z*dLOI=h=}2Ng#E6ALR0r^`KB!X6@m<S;F3A{v_vb;}mpBIRtZ7y}UHZxz}vM!4W(u
zW;Qol3#I@}0vLfLZ&?)>X*B?5NTH%kQvGK1-}LK^e!YILvENJ07`z$VOnj8#NQ;`B
zsYSXhdKev-iuD6B9mZb4%yqK{QEDJR(1!wtEV7<QRWPGOksVZPv!C~<Qh2if8o%7X
zfB5zO?ZvJYf&*%rh&~q~L+)1rJq_|>5}wGSN5*><e>ng8@Kc8{#oF#g?IJB%K}Fh8
z;&X}DzKHqa(-8`p5^vhoFV0UNoLZ*n7gxS`akl+$?Rb1~vi<+%J!#={y@xove{Kh(
z|CxIn-2YTY;qu2$MREA${%QR6xA(ukD8m+2hApKkgiEO3P>K!9_a*T6ScP!(3-loU
z`yd=G8PMWrv;Rf3rhiBa9mriXo%v(z<DsADPTNV|h+Abw+swOjOkNan-{F57(kh6X
z#5*dXxiK;Zufx!RaoxUYV+Y}TnI5@{(H_lS)c=oTyHjZ|#SNn1^qs=)W~tjct>yt=
z@m@2zqqgC;J2RRe+fML(4GJQ`$A|1*1>F_Vz>`b{e<5H5Ujw-_!;EK~jn9uT>hHi)
zR4L6X9ZF(L7HU6vQDGBe)-d3T)-U85`O<rSxZEzL!*<~ms0)N9(cNY&W4-M}I+yw@
zlBX{Hk0g>;h2Bj35{I|f+r;vp8d4*cve$=x!tUfs!|C<ViFK`86Bs7CnPwBJ)9>E;
z785z5?BW+{yR(b?@p_BFf3x?;8v4_noWGvwe;gj}<N=&#pwkVABh^HzUdPkNR7lIY
zSa=inU0eSW7oTYmw|<+9niAUjo8j!Iga33827%7(KlZoX*-zGU`(NvA_A>m?-u!)c
zeuJ|n4pVR4{`7JB1Ny_BcfiT8{~0~6I4ImN{;ppr$7FV*$LMpS9j1>a`osGRKU%sk
zzP|`3ax1S%oo+HJ#4W{mZT&vZiwCpG00b2mbq-;UbQ^^;ra}yHjab+7_v7J28&2VC
zzWgX7<WYKtJwVTu+qspgN+RfpBY&k^oojN@({~=>u&(5d5|5NOI1Gx#V4Z^!Qv3aE
z{V+~mrzH5jMjhSQ1Ky^h^d?eu(R!0IcL2;-8_;*6ch!ft51;lAPf!2jf10#9_E?NU
zkCJu|yi;~FiHjb$Y#cs~{dm-$_Nos?|DYfG7w;z%m0L--p#3h)Zie79@Q=CC@!z<9
zIIe$;>mT+{Er0y@^!YNk`9a37*nKwBvSq^J?2|7FMp14ZZCs}EOntkh7u?08H7m_K
zpnF4d;eKkHuvrQ|r8OXqQ^g|`+ff;;B)c;}G3*I3J9%oc6VD50=rD?&W7@O#30l=S
zG0kEp;Qqyl3KUC<>xsj9;@7UI>I;5r<ppb(ga)QxFbE?`EA=>oKTeo>fdhz_^vF*2
zqg-P>{hdv*EeW@cxE{3;aH(2jdk25{k;M|D1BmL0W8>7b@zS+%>f1PRZoJph`##rV
zhP?avlH6{pKlR)uH{%a}C%?!5ro2MhFx{l6ebWnX>f@su@Wd&jb8Y23yPII)v*}Tw
zp`DZ(p>9;&RVBYULN!zFny70IT84+Qr(Qi<@e|X}g<<kqSF=ai^@)Au2g-r7HRckT
zccq(#EODce70Di|;f)f%R}a*Q!|lNPf3Dn_Qhimqb7J;+GoLuI<cYHvK^AwOuZS+{
zfI+FHPyNu9RO(-7X8_ztR9|SvW}U|Yl1-QLKX*z7l+b|9L4pNjpfU|!s#Z^9KR#-|
z%!a26vtwR%?#xs)7ABP)4!k71hp-$t{Y>T{>bJ;d2Wfz@LepE;NYkS#l~9oeor!d$
zQRU$Ul~i<4x)jcR#x9XSAI3vU8RzjeUIwBYj&BJH$4@<8t3lr=$N_P<0O#x!lwFa+
zuC?hvKF;IoVevp2`mkIH3o(YU4e&#5JPoalK11bU=6Y=ATjibstYfEKP(GsoVS9I$
z+O==R-D?tO>`yCVg0cHiG4p3V?a-fg=-*1x4#`10D&oV@>oe0iSgtPA#?DsM9mV_5
z*#ZG^bq`ZiaU(SRBH>&a(#6XvWKH_lL_o_bh@rY6F@H@2z{q+7mx1I3E<+V|$C<t(
zSPG6PyDz%vz!5-fmW1&Y+8PD4(-9Uo@jF=otTDwm=N>v#Z8n)Fi~F_t){n9ykp$k8
zPhUr~gIWo+21mT8P@-T+u+6{H?Tb<^?npMkOTOPwc5Guqw?3)YgI?-uk^u7DN$xgK
zQ<@-2QzgqNq)0%Pff#@f=>Q`@C2;5?K^IhcjUxdcobAlRtSZrE#;O^uh~336yz|M7
zEhO=mCAI7eOn+M@p0ue*v0{>5*)F%Ck82coSjv{vs;s^%tkaG73#u&R;Dthd+221s
zkr4mz>FLrBKQFSWtMDdSSf;W0sue6q#5F-gRK)EZsSrdDnS^hiNVFtD(B=ttVUyzu
z%p$rF<bAiOulTI&$`0C9Qm3abD^gdLoR@{DlalMGF^VFxHzf-9AR%?Cs;9u$RJIwY
zOoaPGKT;mOXd6u_wHDsaDxC;s$eV4W=8SBNsNg}cV~MUb_7VsJqaaP`KV8q1<vmc}
zG$`F!J-;EisseYotVYf|bQ%}TN?Z>PLQcn<--cOPq&eb1-W1(M-UA^HHiEzk0)^yE
z4ns(eH%t4d^lh-3QMDop(9S%l^@^>v(mNpgA?=#HrSA77fBUu&3C`toEWJ~P=7QW^
zm}<YWvWMO)4jj@WbLra(Z68TTyR43b8A~^nBhQ4FWCMMNz?M+R0y&}GS6aDf`ZJke
zXA@BE%ljr1W3P`K!p>;|4CtpI=(1lAn0q;y<L~c3eSY`h-KFDbnkM%i5R(z>?6xS)
z11}^Prsi?sJnPmsxE{C3Y2fAD@$+y%>eou#0N7OXU502K@f1nZk}9DMzB{xAkHH+m
z1VeiyzP5%Bj<K1^FEFmZ_5Zo_o!{y9r1>u&xziDz`^!B2@4wMw|Cn=frr^D#V!KhD
zfV}sFvd2W0bvo&tzdpWu`mcw-zu*qI?_}9*k+!FAgJ5z|)ndT8Y^2bZJxVpM;+-aH
zSYHZ)MKhQqvxb!|qxhuucfQdq<!kEu*iOi0wk70#2YV4pTNsSNl~Oj0N}(CI%uW8<
zB116SE|=!j6z0Jmo-PqM$)~uN1BE?yzAaJw!a#>bg|vu2V;1$<La>XFS5mgPr{*~-
zBdJ8LcFGV~fB`X_0G{D;8DPMbBB!X7P|-a+=MkzX@s#(aQ<#NDIFJAn;RNx6@)J2g
z9bZF%xCBXBrna5HD+Kpo*k+~x8W1Xl*kN#*OGVT?c!py|Wk_djmvK*2qdIwCbPb;e
zXkriW_U7tUgZvO^4Vs1Z@Z$bFxu8hWqFUpl;yX>T8sak0ae}~{1jm`(Uj-|W{=m6M
zbhRv^Mh6qbt%Cel)!Q~YvEa_TFRTo-QVg@;4XFtt?j{+OAVRf4UacTv5|b67x*$VW
z{igm^Pg}=iiDcg?k`IdpWLyUXU51bg<IVZSPa1vfe5gksY7(Gq;{kt^#ZfF`XH5*q
zsFN2`V`yi=!6%j1u(^{He(iQEl$Pe?4^#!F?ykR0{Xa;Xns`%UAumm|KkS9Yfn9)c
zqhq^fYvis@&VL2qH_1^63lYPB`oZMbD@qORXo6&IF8W~52U}ZLxDiC@Nhpft%55^J
z({_3v&BA_vGF;%l)G@nk6UmA-8GJb1OthA*4+}^ZRne-Je}uGtYzMKE`dXAIAdMC1
z6Pq%}H@ZIQt&5U<0kx$??ck_FP_68rqFmfStRXvZa_mbH^0(HHQJ<CBHH)7O-vb$1
zNlP&9vBiW~kMWDw$>9dkL4rm2G@7x96J16ohmWIokC-@EIeBqQF8Py;dJ@05AX|~Z
zLY+s&lkLlCZC+Ik!rs)y@qHl4NZt{Xrifh`I^{IEM{WP{r-uu;&vd`*p&|5N@Q+?R
z2CWdFQpfT<jk8zq26;iYp;=4w-1C*4txr@5JgC6&>;q<5piS+fKchY!g`D)n(Wh1A
z!&}J*H$ml?rQ=60Bi6G5{Ced5Lk0w2OO&mL`rMQx=qe<`CohZUND``FN~w@hcunlf
z$1nj-5}=->=&cxzMIFm<H~680sE6qh&fcL47NtcLVaGWudlo{__6ql-qB11iQIH;p
zkh&qqLx1Rjt%Jt3du-v=ovcL1-&gM*J(``3;@P3=&^hCcn}%-p%3e|T_1?U(Uu~7{
z89cWmCQn4c1)J7^!KOdldBilqQ;a)HF5^+1%>HV9EIX;u4M;Dghp(gmG>bQ8)(2QC
zk0bNpeJJWRI%Nlb-B}&HcG@hfVI84IlFB>|Nyqjob9C&ujuV-3C{rcEn<ai=m1JUK
zE00js6a>V|uJy~srfjiU$#jPsb<M`+|9JoNr+2&im$0|p8SD+}@Q!@r@Bn^uy7L$K
zxBhX5z-6)icN82B1Nc)m<+(a@V)1P{Y449Rsb*1j$=&1B<nw(Hk=xMUdUP5sZM3UP
z$&bMSM4So~N3T6)nptC03HxnBf~3M`kY=%|rHvP%oyneB#7eIX5qReUUwH&)lo9na
z^wg>buVMmr^vI2EK>(Z9J^3*Ek)9F_n7p8*vIlHxChVf1;fqlC%@L%gGa%L>5f(Tq
zE#hj6khYo-1CZpqw{7^N%0PgzifAz)hDKH8q8<0lI>M3byY~SObSUJ-(m4quS<1bM
z=efwoFqhi9H71eYTNCh>Oya;0nG$}lMZStAPhQIRrt*W}=x_e}Ccm}qKFb}j&!Wh9
z!Kz!_D|CE$lzP%+q-VjXq)n90X)jpXJpjHU6gqEx===B2{Br7E8KIAYBE$kKHn+|9
z(JNw5XhRpPY3OebBOn$i)X0(^ZCGtIvpa#MV``_>UIMS~o{6FYi})$Q4?AfGP(U&3
z+TS*J^WHg3gSdEIyHO2<Nj{Y+`B6|ct*>;C^f{n*p;zBw4pnJl3&EL^_bMWz7cCO!
zq~)#8{ll3z_>IIhTLjAHF6TFW2BNlupBhv=;BeP)P|0-KlzIN_m^piX`;^(v`i(?3
z1Biy4_pNWuA!zZ8hs84<77s_{7N4)4@vwS&gKQY*EqoVteTOY()_{k<C%o0Fb{D61
zgW7fec*EiGbjee(_x=I7_w-Wmz5TNUU(;G8OiA55aL{N&k~p)pm(aT!96p~W`H`!_
zm|i@Iqyd(rs&7P@F@g1xd&TXBB%CEWsuu+D+A$*x-ISRDQde~NtRls27gT+Q_%x1N
zPgd}(7b#(s0~~9wRj6zR9qN1VBc@;PWaSHB=n#sOg>9+a!R<dq{T6W?G<odM?V8L*
z6-o&~z<p&VpdJbJg$Yzeusu_6qm8!i?iJIQndt9b8nj;hWzLGq%Re{^<!v36REHTy
z;=&^ZSu<JczWf161n`r`I-*>WZ6S0x$=aI27MMAMs0s=ImN-A?2=gU8d+HBkiB7W!
zSQmZ8M~o^Q0`ZswbQ0e@3358d=l^5xU7F*zvTfbJf;jC&2G$b`x2Ir-4XSa%5p2|L
zrBiZIr&5-;D6?+q*WdY#xsXgIld@#Xu6=e?SWbYMz{0|M&c~Qzrke<bQHaX>o)lt0
z%J`%lQsO@5tU3D9y|#3ydUb!iYIuGXsMDRb)PzVi^^HMkS|L$PB>EF;b;LsoT6Izv
z6(KgQZ}D#|xJhbxR?IX?$y#_0Q*CkTe;fjeR>7j|36ct9UTk@GddJhV)ER<!5_|Ag
zY-H%2OXZOy4zlju1+sQ)m``C|A6kf*Nf-uG=#wNZHcI5R)~8?C^kd(OGtouLanh8q
zvu8f33+|o?kZU2RHutPHK|pK;w7>!qbb23!0mn(SbUzA#wS~>Y2`qe%PILELGj9a#
z6sXa5B61G^Nc4m6L``d15V1EgP<1`@aW056<Q^umXI$M-d=!i_O1a?Lw=LU6lU4cI
zeMwkkWLV}M-gfu7uWU~W=C1J&lu?9uR`h!O8p^Y!H93M*k!%*q0X?coUA)R*Hm!k@
z6f)MqC{VUei!<$+zNVy~PHY7_8?7PVJl6koUA}*JK^T4eXRXPaw@6=@HyHV_ULoBm
z7(!t1<lFr`-;LJyY{d!;YFezdcxv5d_8ojK71_zYG+!Stv;Nnun2TmV(<R{OE|Q4d
zu^9+OI90c=g3ZY8pcD6c>2Nk7oAgp(so85h@u;@MsKwU?`=MuP;gebqiXQW-oV?m~
zv2hiyvUF?s5aeGR2+v>Qu=e(dAtm}ki3v#P6F-Jdr55E4weuQ$Ry14a2+6A$Rf;=L
zQ57?BKUF*2RDHuofDcOEh2?0k#BGros<1Ozp>?LFxQ(G+id-NU7`-!z2xTkNRnU?o
zd_L<~RhQ9HoDoonJSt&*)`X@ZZ30e&YS?^FdXAQ?D*L3WzO2hGSYjxX=a-xJPWH6=
zWOR*>qigihh2S3ibBC3XbbEeSMSNahMoN>WDYjf0i`eVgk04y~$Ur;ZjeTqR@<W62
z)$w^@^U!Y3NPeI&;G{`OER^AZ72jk=UfJ{)BJCxN*(R-|L9D7t)?O9`HVwL^z?_Ak
zL%hOn774q5`f`<J9i#f}&Fpxhk*nHMB#gT1w4{TKoDB7{%Yzfqp@)(5&j$OQBEyt-
zVO7oowirSp3A+@xN+wBxlt*|#BxOKGcD(A2dAJ8_#NfuXY|kF@gKSOMfwnv!KUeTg
zR@45V=F|oiUR(kmkX}xf#<#zI{P4@$^Tp9t^zRj*_FfZJK%wXc5Z3e+L`=3VdHF>{
zkThOo9G3LP0&{R@_*TPMajZI`25i-zK=%9#6YQN2BgyCmb`G;mI|%Brh_qVDuVeR;
zf{fCg!jAChyJN{=7(xyO)hG?Uw82YT3+rVKZbI|2Y+|USVJ&Gmmh_;TCOM6tJVGCL
zqEfnu8P8%t!hR#_2UpWjJ)-0j`8>;Bm7qzA01|#Q;rk)>G#yWJ*o5b)YVOyQv0cZk
zWkpLF!>=O%vRYC&f_;ZzvU|%P?N|;wF@-QcA<*s6^;=UE6|NLjVv{%4L$`1q%X}I3
z-oO3zc~6~mVlAA@*w2u#x8U;X!F}}P-!_2&2$Z7?gb+bV7txD-9D9pCbSo(pyxbYr
zv9N`y^)KWFy3ly0_$YbLYB1Dbk@Xw-T<+>wuqf5QRw?QIcDPDTE>%6JlgQ$_oI`Bq
zBq+rq@}u){7{xDNE|0|FaTpHkFw}?B0&9j0eTED^Lxy#R44NUmjec{6d=}ymmf-xr
zj&~tsK{Gt=ead&5AI0t~t8ieFW7^hi-tz_4*y@}luDXf$Ku<u(+-rugQV3<HOVT0;
zCk-<1A^g!mD}A`&^yK7@$X0Pw4H6&Vlv$i%j4uz$yMX`T4n~)~V1bgl2Mxa1;b1|r
zvf?3B5y%Nn>lMV=WkV<{*#a(Gd0iLm#EaOf$QdZD(Air4{^9V`k*Ot|GPM+WO&29c
zx)T@ha6}0mL7Lt<7vV?Wl*YY};O8);vj?2~h^qiWj43iJ?ZF~`qc|=C(9Lvw3|AzS
z6#xFDSZ&7-v!g7sSMt%nx#v?~aAN;={u{A5Ex44#V<oT%)G#^|5@ph^Dr8{nRB(aO
zfr=saxQ39Ryod6Sh+abKt@iRk1UEvQ=qAoSzh~kN!hZh=#Sdq1vpl|yVv-aq^Orsq
z_tl4Ae*L(6f6hi*J<A{j_Hskip78GZL_Z>1Fa31PlJ(@5`={HTv(5gMm;SKm%3<*<
zL%eR&#htiK*STH%g_~Xo`8p;kdI}3}(=Bb893JQZ$UDajjt-mlW1Z~M$2NT|coc8$
z5nB9Mx>a*6eeA`LPs;DbA4|UgPrgmHU5Y(>-RZ<HRVLI+mC4GO_xZh|9GytmhxW7k
zPqJS;-tSA~$K9J>cc0#U_<7v#emO@8hDFxZ8a)j)8ANYV7RqH-q;=7bTxUs3ewIlR
zO%RA^N_3B)1O-W-2oRmZN+|y{Y6PtGXpUrj)mBz#4_6juH?fJ3Jy*2CtQl8H>DN$Z
zgP=4~`I~j-iESo+FEaNpatg>Dj+3t3L?sN%F#4pc;Dj=$va)lK%`__y>jH?A?1!lD
z=t?3CAxjcFx;QXQXO}X5)8tA3UQo-`GT|Fb6N%zH8LDc_S!-^5EtrV25IIqX^C}og
zlirHi9=VUitTI3<;W#pEydfEF72>h%MeP#3A#j?@GTB@I0KL?rtkN@iSPCLt6si{c
zn>RiN2OD>(2s{Gs2d)dX%b+a9MXFGeyFxZX(0L*lR~EW*Bk`okTPEGDp@J*75kCH`
z6ubC7i&E?Yal*`nMuV-&%Sr;duA}ko?$g_k<EOjb&*zB&i<3>0Es?I8=+_%DG%y&a
zU;_u;4&Bug3zyLbnk?w<ps=AU3$e9-4SQWT_$?ZcMGC13*F85;k?DwwzP4v~1}w`}
zRGQo>ZilSA)y?s|6HyGNG6>g1E$!MY&}GSr#3ucc?k-NulgmNkU8f`sJ1q1V8U5fI
zFwZtodwEbadh#@dz>3tV4(^gjmlsc*^{g$&xBvC)?r@&rwj`;dgrG+Gt}&>Bq!UY(
zz<EUj3pdtYM11%zr-Y+`ROfCf7bqYcq}_`hz7dI}EwYMOb`kEtRNO4`4EX8F4cL|m
zZ-4ew;<K|(D72uB{a&3Tsm~8g3rBM&3_goqTrjJXt8SDW2J>lDed999@2DWC;t=#A
z(uaEEtRYq5XH{dQx|z9&QDj#1lxREW<@4)IKTgwie3BjWlxWEFoceE}GYa{?yDYN2
zZ9K`?c1+kNmVAD!{{48&b%D(A@!k8~{v7mD=AXWo3E?&IY~+F++hsxYflRN{1Hs&r
zGO=cM%r4D7rNp^wx=dj2dhv>HA<coFVDZGR07G*-t;3V=Dx9?6^+H}@%9k7D8_00p
zduodpbc_DP>7h{xBng_<zPii{_0al&IOnA*ZTeoL;lCX(Rdc)$yc<%g6kL!LY9y#V
zxtYc&J$H~OFYFXiPOJe};IV8nC$aKPNaj^<YR7wsMP$f<a#DVOrPl=9<Q|}*I*dzr
zQw4PowskhNSUpxX&}m<8-~GJihJV^U;k$KD6$A-%@17u=AU4fz>G9}l%8qVF(x#_K
z8(FlR1{^}YAnkrDn77c1{U_xG6X*$$14WKrr1l!^FS2@%$NR)fz7-W!mQCaMF#U2I
z2me=8R$Y`azyEckE&rj>_T$^#`{%>$`<a(n4YJbsQ3z6^*mJR{0gl_wLi)+_6a;)#
z*v+=cgJNxhjO7kF<$dtLm?UyoJG=KdGer<#SM(^OMb-@gXa*6&qJ(D^J-Un)obldP
z2r40<vCfX8?cY>ioR0aM>dWeeI{e$?4XZ@{Z!zA+`+u5PNnFKrDw{V?yM`tjpQd0}
z4kqSh6j-b%hk`<hMFKPmzPW{uq3S5>%5;^5=tcDzaNE_OLksvis=Sj!o|XD(hAy0G
z>l^?*%pauwI4eM9t77xECmxA#9A?=qgLJdBj`-o5=gVHt!W*fu=j_aU;%pbKp*v5+
z=cQx`oH&Jp$xvT4PUCkTrQw@L>9@?P?_JwJb54D)HN2e8srapP>hA6C<EQ7SwwAxw
zD*k#A*0>Sj*>eEMzB$WRfbK07ZaFC3BBo4v8jABv0^M`7XjY#AVeYnl<%-spE?yyz
zRlNy|VpcM|m2zwez_9w9%3$3)E6GJWhGa5XJ@8Nfun5zB{O0XAI;Q*&b)~zazHxbc
zuLLvpDtO!Ua)ZAdLlw7@!W_3k`q=7s6PxR(LQYf<_nm!73~ET(Rw$#65_|9-DGs2B
zEaAYU5T*&l)n5J^W?^b-Z<$lnNy1?(s0aXo?AK~v#e_VL!2AFD_1(`G#Mbh?M&Nq^
z`C$Q`4-H}onp*H#yFhge@}e}E7Dc&wARrml8$Z$P!M5@yWw*<7^<nhFw7@9GGCj{=
z6Zl!{Y_(UHy;%!Xl7BE}7yA$r4+Q_Ty}}{35YWl2r<W9af&VOv-5_@-;2v4%bT_pm
zIxLOHvu_%=-)md{V@r?^fbo;9M9-4tmFB6%CMW1+!0{M%Z3qh4-iV=)6GfJt=qbJe
zjybZPf(~R({E%}UZO@Jpy0cuCJp)0LN!WQaRE!GT3f3ndVsNsDLTi0~9VP{9PPnw4
ziVYEB7Ii}uvubzWC|-PV7iS~MHDyzm`=TEdcTBX4>Y&<Ck<o+7DT2bb;9Q*mH7L{3
zR`eDmEI{dqiV_{6c42p7q$$cBZ*$L7CMCtExV%L4mx4lLled?p6prMEzN5qoO7p<`
z)Zm*ZOw5HDY>O_WwNyE4H^&V+Dh8$aFio_EkRVPpzZFG~*tTYO^D~CCCp*y{-0QjI
zi`qa7zr0=WEhYtE-xEeKDJV%xEkCFSg_J?4va0K?^nS3s6-`_~_eu6G#%J~?M$tQO
zf$VtxZ~w^7{G1hsB|$=qWAKhaFwmTc&Q+l7wipU$!BK*sD@Y!~!YsZ5EOO3)0=-cj
zOUnm^=8qy{2ns0Qy42!vY{7?PJ@70IFFYrsqQlrPi;vl&kDH+3mQoXZ&>8%quGQG^
zC>9e?V{q_+_B<w~vXCgPPx16X^?2H}f~C53G)|E(aURJSgeprYS5%XX%77JpVc9Cd
zi~!>q#=!;|O}f_rg7TeQbP4Bi+iUUi)n(h4p{R5~45lO_t#+6oZCx3}NETO5R*X-+
zRGjS?^Y_{@UN7>qLZAZwDO_YhlQ58$UP~atx*r(plQ7JKAUoVJh>^<ixr!NMU!->q
zLUpi@SbOQxJ&1jr^<X%xMhK%fiVGwx<<L{&C}Wq;<{+m&^Afp#IVg@;;0PHb1YoJ!
zkfdY!z}6J_w$0%vpZ-Ci=E>&p^+FB#hwOc9vH8k2Q>y4c&}I%m>una-Hj95?0Pq9d
zFU*o0ijPBh-R+*ZJ4<WgXVVTNzt6vQhk>*q>pI^o{loW3g;lN_ukPn}mvNTSH%oTU
z=sh2NyB?1F>)_ioAD*1N^KeAlu<uP(CzOOmWO6f}A|O%CS?C1&s{ZDg$2@L!%CqO4
z-v+6Ql1R7Vsz`HGHX&OGk^02{KeQj59bZ4pE`M8>?Uh~1?SevXswCg?&Ud(UvcqZO
zG*);~E5S*VS;HE8(U#~Z#@!$-6rT|L;0(luHUeW*6zm9`r`!kPkP&0De>p1AhIPhB
zArio?-^S=lj{bM=jZ%v6zy#`eBINY{76tl$s=7a~I^wCU9pn7CoD!*#JUPXmW<vY)
z;pe~q`V13X+Luy`2+x2y2~@<QjD`3{Q<VP5VmUfCZ(Q7kRFFvB)Xp;P5$ejzfn1=Z
zq2G0fc~Na<?#I4d1=P-}DkxiNPgD@(@Y#yi(Ygx?nML!5H6&=l>3yw;c%`gpq!T*T
zF2%9;gr02-zsp<a1OE>fqpfXVBvzM@0Y@s@NdjxqQZtJiPjjJ@f=P8MQgoui76i6n
zp!=d*T<es~7A13QyQEERO{02lRgq5lP?KXakPn@;S?LFbk3^!|inD9MBAflJgNHn)
zE5=wE7Q_&!v3)*<U$h%|{uLn&)BHcJ5&kW6^n01ME-qVt%^Z~pC?cQy9;3?FSa9ZU
z!I@7jI816H_P)xB)VdX^om!C|EmpHztSI0&Y*x>v%0J)z{Ez1o#i?H56K)PFNspM4
z(fQwlm`w8V-`Kwx`{{TDi~L&#=J(h<UQ|#1nt=(ILhRy86QogtLtZKI<0{rbH10t<
zq2kpgryxtP%`Yx_n_@T0+>&I&R?q;#CTBl@xeml}QV13T;<&LA$Oa?voA^8W9?A_;
zbS!&+6R4?AIQ{SY>7c*B+KJTPzv!p_18=8rmMQ)ZTZNDF>+-}B70Pk+D+SLJ+r#}A
zY!9b%M*&u2z6{{G{}OWLsf55PWW|5gC?lOzA7$xrl;y7*Wl&)=$`XZ~j51$qpN=tm
zak>GPq~9}bPjNC&gy8s+5PW}GI^RE<!q2^NYd`-o-hKG^?(>JAKV85uwl_VJ!&+`-
z>8&RL8@*E=YLD??9n42s?tw7yyzlp{(p>N5j;7X+<673(p-GY!?|hv84}Bu7y43$P
z>UVwOaZDfH{rvWszh&MX!$BC&-<0a+B{uXIQr&=*`ct3q^i9Wyw;w;f+iM2f+IsrR
zWsSvJUI=4(DKsQsriDL=c6hAiXT{P@mmfeB#~**f@r6%bHN_|P#kc)cJNxK5o+fbn
zNnz3X_YAn(FN|<1IsKKB_^*E8Yo%a}-+L1OW}ANR2mW@W{*_MzZ2arHPrHxLR;ap?
z3!_>sH@T<C+4=LF*#IhwYT`_4f%piVfjf{=9%s=*`$t8ZU@Tm25=pAi(Ex}*X*B3_
zuV{1_xMn$4C3?;otuV;`F5Wx^Ld>R}KzQ9q#3=!2*NBlA{IfGID2|6)=KUzKyC|b`
zlqb~*mx59OW_>@4NJqA9#rS5=x+kDU&R6J2fm_9wWcr6F@gXlI`o8=SOt37ZAVIXU
z1<tBcOnj1VMHMUWmgLK9z3f>u<C1xuKCdbECnQxWse+j|6RFXfXPGx@db@&yzKPd~
zCy2DRRN{SNREknXGRt4;tfjC+xi3S?cD%`=?+x3S4xmq(cfs@S^PW>D9<+QR%cgib
z4hDin7z@nONr_T-c)+xD4vr1fpZaDZ8yx3aN$;>Q?LNLem-wciB=HfY)ux_)0l;BE
zdV~?Rm#IxdKQJDf|LT0vw+i|5-`21FzB{os*3Ny>hPB8cJNXRMDaXyCr*OqtD&o7r
z;}}V4b_^=?{5kshY^%9+w?`uTkNW<6%SrRP>G+SM2Zi3*-geB9@(uUig73XtPx|0)
z_x{IUKmPsg`5MqBPghmtC9{U!J$51gEhZ}1h<WnmxX2m<KGgPxo!8BO@prcyT%YwD
zbWV4ieJkxS)UyJp@M|)D5J_&gEs*~0(KmQ$$OC1{AX*x>pcxXwD-9t<r5CsrSpfns
zG-&Udh*Q)m6Nv(j7!e>G37Yd)m~G(t!<saq2`L)gpa1!_G_mmbnn4tZ#~$&)KCFSC
z5L-=Ob*-oWN?%v7_uzYV-zjH!?Me0KAWo!(#AJs~A*W9<5)}Us)tR5_w>9yh^B#oJ
zIT%QFQglCG!q6sQAvYINn$&Rc#BKh$XQi_V=bxc!A@M(=%|2x~TSR23%O3*t(`;{0
zVhxaU%L^!-cJ9gM4uq78V?Ee@SGADp6O)|qa7u$+^>r#Dj}SA^>FfBL569QnwTxlC
z`@vhl+vuDPPN!=Vsq(_BD9sYtM4}=zliI}gsmb$5DiukqO5}@bjase$t20T>=+sTv
zo&|KJGE`4_D-Pkp@W!Pkk8C9JQbDr{;Dnm&z7{z28KT9%(T|6SMbA2`kgJzxF7V_m
za?X$9cV(|rper4xeO8}+Ox^FEg|Qcx3Kjx|iG7XbimZ)nev3j1^AZ*I)|}c~IcRF`
zOELDMV-|pWB^79%QQ#qn0*<&$pxpRzZEo5p%oj?pBkm00ys?njzuWwqWzOGR=7o9^
z++GyeYa0=SmRdKWCsK%dcV$hBY83pTWe3o;)}bGKQB$ljYgIeQRtKMuEiK9PgX%Qg
zo(XMP_^kwSR&%@$)1q+9ASV9IqK7LqkUhZ>y0DwR_)u{yHeY};nqW~(CTsPm)UDVX
zv$MyMjKDvK^>frugRYdlaT2xlW%=~}sZe?*iC)r@?{+`G8Sg$E-n{$y@Biy;3Cll9
z2q?A4$kybQ4{jox0W3##p9G|v4F1cyJ?a|Ko;sw3QElCxuj728{yl1j_fLZ8XJ|{h
zb0Nt_g>^M02Vp2j7(os}OcI#x6cf+cwUWL^8io8;GIe>v23rem<kKdf(+j%zQZK5Y
z1zbqLp2}nr<Om6Lr1N2npXYtYENr#pt%h+>6s;TAPMg@F=+7J4x%_6qx(jqjh!;I*
zYZgvst0bP2FQs7I{KW-6!E8xl7k4)x)QVWfiE3uS&;|KnNyD!q11OPM+GX52eib3`
z9)&iaK&1$}LV&192=rQM^0tn|phL@Ijl|QuUW4lO`F&g_Qd!sk43<ASSbn{K^K7W>
zJrH$<0C2-<ln$i6oi|MG9XS9t`k3s$u(4K18z%0walqWf&+Iu?V1v8Ns$gozv`LfS
zq7eb`CbCB3_oBw)-xapZYP^Akb=fd5b_|`i@lTb&^<`t-T=_P~{^_N&i*BS`ZW__(
z{j>jQEf=`FI6I5guWe>qS~sEcuw?I8?{u<9l%%$>^)fp88N@CiVE3?rVm-H(6PZK`
zn<7vcUj~!1B!s~%pw_SKAlYX|<W&|MBj=4t0DBtMn4su3G^YKTH#8<E<ie=0PTF#l
zQsfn3WsKHrTeU{CCfLq2gH__-{2S$!B%_Ug_VysyY2MU8Bj>d7PjBQT8ft6EM)@uF
z&;Da(&s9U77~+~wp;@HG^%{X8&4Nek#yHd1QAhYwk_egM{@maprWwn|L{Xa2##Ium
zr&251FgMXE8f;=Mo70i`H|-rZHov%eY<xYi%WOf|krgCw{L`B~+lLl}9pj+(re*76
z0f>uM0NQI3L!vDK8_BI&1K5`1Mjzg)bUK_8udHj*aa<Pum{=98v1cE=I(Un+G;EOm
z7Of2%UmIRM)`$P{G}+3qJN;7Up6+4Z@ml$KZC@2OwkqsStD>34a`3m~a&UO}dH3<z
zN)U^1lqf;uR3T9x$yVmM?W}7TlNtJ<t8b>0C1<a$=_V~?H<?k|Y?!?|RU)C^D4Ar3
z*O9arWQ%rN11LTjc}ndpY}VGuo(Q-R@S6VJMNok)>_zgZEbTTFiCTnZ6koCF2a=bU
zn8eAMm5wI0^6Js7fs$ye3g&@mjUAisK^X*^`(tbAKG=sNCqx-~eUGdV!De-yOii}2
zNorm{tPe0zPjI+W4#Zu|S;*2B!YibC$gKU~*Q=?qW~JrUn*4FSe*f;xo5S1jCtI`M
zemwU!w8^78W@Uy+f#fbbn<_|Uv)iNTAA2F|c#Kes6588%e-Q9<aW)$%3e}lF7P;$-
zv-}*eZHZz2iVQ7S9hzXN<N=u`D0y@$hr`ajuahgZ({1TCn%M1HJW=k_LPnk^;{wxC
zZYF|HXN7dvL=YQH&?4!kB5Y}om7Jg}DavdEqo^bl4F<@7b&gKkZqr<!JzyrC9-QPu
zurV@A{n2M1vNmdL%H)R`o1+>x4F2gCuqX&moEDOeE)r#y^a@*(=c3kCNah8Z|1O4d
z_M=i5O(&iH%kCF-_7l6A3Hct%0~=8gjleX`SE->5W0xVT7P1!s4l)?(lti)%*-G!m
zc00qYEj>udjv99=XNffwL@DIj;$TZK+mt8$%`iAw6$=I?C4?I0#Z<7F5=F0a1@<zC
zlqeRK*F4%?z%3|xp`HVTKN%WaP`aKYn$kEmg)RowuT5WDzrfr^6`j1qN#+}sXs76N
zP(Ur62Nc^No692oZb6N<O{dCsJ53t-Er>^;&G2uw*ss8CZr5kOq7bAviS#+f!LL4m
zQmOC~u@q0`$-w5jX-?|*0P~;1uj0(;B7{21YLKGxNzDL{XRA+zo3oJ6At3DRtc~oc
zSbF@pDuDK;GK$S?#%<4XqI$wAOz+Lg|2*puP46YC>yl1}+1uUznRzyrANw$4Uhh54
zA39}E6gc$^%OXJ0?9>%{<T9Nr>?b!oh&1I^LDwhtUbpDlzx#2u*Sa+qjr>k*L36xW
z5S<!nPjX(an)+lYY)OI>hm_TxntZwXnvX@##>$M<XbM<lm?t&_t=Ev>1uTJ2D;#E$
zxmaIA{RMq>=!U_Dsz48E!fg|I*sMu|!nBqdO=k8TW@_Q!X#`%WnKg5cTcm9v)h9oB
zsc~8`_krEO#>^JZ$Xb%5mzLTAjXG5oH4pyT*9wPqbOZI}ra$T74@3sO`S8zYY+Tb$
z(LM`Q(2(Ane0IwQvQ+6Mphs+YXI4pTp(Y|-h4(H&0aUi2T_p&|tU7pCY*DvHW^1?c
z9i7ioL$WcAD{73r*&>#YI4OY2h7}`2yOUZWKm}$}0|ekr`|}KqwoS#!rcP4Umm)c{
zVK*~TYj)UCNsx0jb_DyY=7Xk!eUK*11cX?DyfiJiOb{69Z7x=9Z}TLEwkSSmCt$<U
z&c;U~prCvnwh#qJ(9B5%<5!x&PLcKi@t~h#ogp5><cH`l)a?0l2JUXc5sA^nePuOZ
z7%ZBbxhc`XoMcedld85iGAt+rquO7j9$Xxzos?g7an88KBnG+<H;Qr)@HP;c0a2n^
z=-(ct85?*s|5B#jvi`vppI@^l&G9zMt9UB)IG%At>RIBx|HK2INJS?US_+r;AN=0y
zpzKEd&J_TeJ6{$dc7V}bAeqSXXnmbUI>EntfKTgJ!+JjWx&DpoH+I4K1US6?=~<H1
z$zcmwL98t0(G);L6bRaV=xZ8`KJtAUj6U-FJh&p8F*9XZG!YacJqzKuz*dOGSjqlu
z_>025kA0sBpdEb{41MhTOc?su_n9yp$G)b*&<DR}!qCUQ&xFCpexC_U0XXQw!#V?|
z!RNr(hrZ^)*oVGPgs~6)S?2R~=-WIP`_S(*VbtK)JQyEGKLVAGJ^}C#``GuHFly}k
zJQ(}n*Gw4u*!P(*`q=l0F!r(UGhysw-)F+8vEL`cbyh&ACIBN`<6ZM$Je>#AItfn4
z{^?BlYy*OA3#`n`!<;$r(m1~p8u_Jherq!Bi*w5+0f9=w=S^rMXT$pbY*KuAPMlAI
zkMI6|cVQL?uY^rn=4toFng|!Qj*z?Paee6LcjJOfBjBXLE>8Y~Ch;%hC9qM``)25i
z6t+7#^zH6NS-WQT?#cb=)^^_6wx6)s6WWYq)wGu|kVN`DlX^-3*ExHrkjYVXWI|zl
z(7>}HyVw9TVF=S?TV$1+YFUTx=)?Dl{C&)UY;&u&BvCv`JX`!6+RavPMQ&Jw<`Sbl
z?2*4DmsV|Pby9$BYwPSAefEh5!Z$Sp71Ne888tEXw{=F3eMaLWn#I<!WQ|KQ9oUs<
zgwxnp2+*RjZ?Qyn0x<U77uFo|xmJk))_@K2&s4A<CAzhCa7bXK(7JW)`vuX7qWMu=
zqqRs*!$~&_K4`=Bi=+LKPw`s^`<Euz=hsz=%%8Ix{QAptVMwY~z{rN{Xzw$Cw(%9>
zbSkKg9@Z(K!9V&;=wrXngwq|mkNvUFgg*FvCY)~hR|y`0nH>pDNyMbuR+5vH4zgYj
znggTnC4Cxn>4UL9_%!Hae^_V26B*`8VGj)ekV)JV?%1T^Pqbr-Wa+5l%M4}G6c~>p
z)xMAaQFFmZ|Jdik6DjO!Ax{ouoKYJZnZFQc;QEbm-TRb$%Qr+KcFFw3RvEcT;uM$)
z4gAq3K_B>Ip9X#4_i3P!Klm)r$RB(bJP}-PwOME{@T|=RT+ZXjUxlIM^zwg>#PjgT
z9C~Rd5aQgUY_t`ejrjX7j`*|bay9`jnHF{{B*zAr`ydi4&?uD&mS()tlkx|Jic%d>
zX|6K;&PZ7hoCaVUs5WdTX_m%wZ7;GjC4GWA*AH%efvZ3^ojjB02WA|W!MUER=r&9o
zHr2GUnda?!dX+51+UAR_uE>6Q*Ufc#y1^m<JMyx`)wPV;G#u5Y!8O*S!aBIZYRlK1
zSU$i0maID@$A0A<wi33lz8bKBz$R$lOXXR>a%@TYt#6J);Nyq=KhC898-X1Uv;~wU
z*wr#_Gsa@+<k8Q-PPN;mZo3YT3v4UalqAw8UG?(K-2%|2-+TWbeZCFZ!>Dw4%szQr
zUMl4Zx2BA0Lg}Cw$evRlY{3D15amQAE*YssqCElD&8@wI2v&j<-^e2;F0SZjn5G^`
z=%J-U3c+KTnA->xO*TA<7<&NXv6s)WiIGm8TjK1oM;<cXTR0nvhj;Nq%qLgeVlsTz
za{2L{9|y_({@wlkhv#%cu{cLaU>7`2i}=LOGm2r@VRC&`%Pw(hq_{u3K_vfQLj2vI
z!TjQ6!`f{_BncxuT7V~oe3a-6vzxS)UbA8P;tKJfg(&4BMgrjKlKSO?uISfmQ;ry}
zxjrAdU1;cLA~y`Vm1w`3h1^Kg%|hKs<aQx95*-jMYks9gFb@6T)_;lLwLSRm?)IV8
zEaWyKHw$$m5sAsLyvsb);?NJ>lfbT}1!8)+{ZD%Omy7Gc;#z@?k!dO$c;4eY;YMRy
zp7JI`aK4!E@CuyWvXp7wJf3wAC45K8wlxaAMwXuDyhF%Z>VjwYc;?PHLXKN@xa?Bm
z5^e%1AE!BP(wy)q#k7-E&A#x1KM2|*6wHFczO;6zi1*fEcxb0sVtbf&5u{*ldD%Rk
zxd#ppGs<tnbU3Gc1B*qPBc4Va119G94p!!}IRIfmp1+>(;IIJ!5paG*kiTs{kRYez
zVs8hr#ggZFXX{D|0bjWvSO491Di!ngHs_FUlxU$^SsOT8N}k;Mx75@&#}j{Ol)^lP
zf?sk9wH{1xnwGrSPv{Y)*@hl4j8FJZ*AsuP&HH4c9As5ffb?bCCX-rmi_#fYuUg`!
zA9@R$S~5k_5QAh|Y-J-)_cW)C#M?$iT8$MSuQg_x8!pW{<Au!RCeCEaC5Sk+x@?r^
z#~!6=Yu&pZd&}4?v(=?;Xb^ij;8)A+HVA838$)UjYqZVrr1!?mK$xuY@uY<q{wBEF
z&u{L}h+^{IS#~F<beXn2ZH4rt(eWO$TMiVw2YkbSpB)VXs~<lflCm4Iqfu0KKCM9x
z_#Rpd5=I$k#J)lV?~%r_3YAK++i-*D(TdEs%Syg3P}LDr^}~c^h+Sc+5A?I*1%ygr
zhfstd0e}fCk1AnnhwTOfq+ZPlbi~CbEprwv7ZK6CKv0~a^8szE5Hjsqe9WyfMX)9k
zYz!t>1pZRB4~XM_YRVgguc!3uLw^y%90GgJK^T8&!nBFwUljeV_8?iCw_4|{>5!mN
z@wy@k+sZz%sQpK^|FQp6jKVAFyWEL)f_JdK7vo^>FR!_@B(yK9BKf|O6l~(Ib=ERz
zY%U>l$cn9`S~Bu)i>MsE`xOfbIzqYN6p%~nv#rhEMWc6-h=h9gby6bE()7|$I4<A!
z<K5fCFOIJ}8{i&?)_@(xYdi*urnLzp6FipakvyyMeq<|ya7W*mkf28K@ZRN0U4-02
zgl8o>b?d26u&zC@J~|<Q4dtutER&6hprrK$@pj?$&&2r$>nu-%qoJmNVYDyQu356w
z4IV=oe6CUdJ%0LWU^KaOd|<5*#K%~eyY_<Mw5nRkAtJ}9`}eHyvtU~{#ToDFRROh$
zTqjmFBq;W0d(aKOSCEp|%K3q!;ub|G2~6Uv(n~Dx@l{e|<AbvCC;gu2Tja)Y8`q?d
zF7dl?KS<sm`xh=owL8cKk|$*=VoM4Rg?O+gDPlLMMD#M^1c(;xUF)(b3i<qbT?FrT
z|9E>gPU4R)`KPS*y(8hwvRD4UAnGp<>D81K)$(Feh0;rI88TZD@Ks+tWV!`<M-9B1
zL7Y*-?JGMXGfnAO?0d=pA+?3vVjB;D7$E5)O{9~~2ImGWodRp9Lr-rg)qa#jjrU#!
z+Cy&2<Vk!;X{el|x)=#q*hB>2gD+e~-2>rMU-L!e>CTz_`86OFq~-WPe&xjjvpg>A
z2!FjJXBOAoN#hclB&qSf3@seONe-vS)pa0}U}CB1@m|kHxIgWBVjbprkU1>Jb^5W)
z`zM7ysfZ9;%Wzs9D=De5ZD`*lQ3^zRdI46!V1-SB*}%9Z?n1T{Y#qTNovv<)Urf9l
zvolI%zv3pgMPvbY#FRHDUzmKzq~7GP3@8&3K`?4VWf&9&ANSd^m#!6AwW_*-Eo+&e
z5;)kKY+e5l!<<7l3AWOBqXf}K+6sI~Vo_lR7j4s7X=_B{F!Z@gyaFruL2Ot`OeuOv
z#lUZs3vO|Gz~W?dHm`pD$GhF#*|e%}Wl&T`usT7Fm02p9EK_94d@wPE1ZP1;&b;PK
z_8g;k>J|V<zw=f+Prvil-~UkCYF_y5%jMadnzTp$n&0!(5+^JjJtix!aN2eB_iZ~o
zMo9Wx0)l2c`>oQu=+3d<<o~`@qV1<oVe+To_uFFzxU&*h!0$^{bm+b#@)fsF6qY^f
z!L}Q&xP0##=biQCqgawX<6K@vxOKKa#(JMu&ssxUDAvv%MnJ^CTA`8H?iXH7q;nK3
zV`krd13?i{%R`-is6u!Rez?cZ$wUmC6rdPC6e7MbPy0o7g#Ki%!}NtxlQN<Er~Rj#
zQ%IG8e)iBJ54ZC2V#9Xu#qu2TWuKSo$gV#_@vBRktZ{mwFBIt^hl3w36}lX&DNq>o
z)ExXmk#kj%I$SC;)OaitGwD~98MB8=>Tsz{!n%5yT%<C4lAsq0#g~A^W_qbmuxq_g
zu`GT?MdjgEeC`WnW>W^%GHd>-GKuiTKM`LXoZ&b)i|<oi0{{4CyxTo<s+vOW!uK?I
z#=v&OKcb2>^6`Of7Czfnk$A&+0%dy=ML4+(!BVuGM@#lq<6ttPDZIGZYrJZ}dzEBX
zNCT4uaggY&HCsjQa#o)~3Gyud($|vHFV}_SX_X#VkqZHw+7IvVKJET~?q67<`xi_D
z1Eov4#Yq_pu<TpcY)xvjH6;~xUl3TxWRoKMT1fq`J7kL%4uNRU#9Ox|T%{QsU82io
z(f|UYu4(`v%M0)+CHCD`>dXvV>#VYETenh_moa!3Ukj+0&mI#4_|JKL42=s0Q0+XC
zI`M0s65!eP0d#F6D}UkI!>HD=d2vMoT0w7#nGhnQh33FX(6z!)-l=JB7A#=Y3cR`9
zU%#e&tPeDxH6-PmbeEz#9(yiB6G^@JIVuZaEou_r%+?|qnLSH`E?SChY0SD2GvxCo
z8G5JoCMk|U<00f-NuFcUT7FntUNHyh_?!rLz}$lnp%p7%^&lKTd5-=zxE||^*Z$st
ziIW$oP;9^TgwL-dj$Z3K>#Do4zxc`hYg71FCo9gUasT0;KYsYvxx(K(cqcE`C<`f8
ztxXgj4+IpkR(}yHv`CIddqtc;+b1hGAuT94JB+Ad@K046giUE;)>Kd|K(Y~UECQ8m
zuE=anQaDWvN%<^_I%2e8SjR37`WJN^@3Xeg{{KA&6hZu`Uznv&2NZL7tFWfFrz_2(
zl~^2Hg96X&_Sv)n_#?zxS^FOt?VA+z1!F!ICvdzAqln1fmR~(t*alLrl2Mi#Mq01P
z;O0Y`>e}%>nOG6+&6fq=aUz__YLMqAm8?p>$%~)$+Iau&&D-Z)=Naaz61Fe+S@+7i
zDyy>9xklXV6Ec_wc1`uF$z3kIEa-Mym8|`@OlW2;@io+6dNSY2^a|*a`MOowT;i^0
z&x8tQSZ|rj*28<R%hF@$qY{W0xsWEzb4mLaxdhNOP#BeKCN4L*y4}H6rB|mx|4GSY
zx7n6if(9^jl~Yy#?02?;Vt-j~U=~yAP}1EjBQ--!8$B%s+|M~EMefjKSL7{C6pxD>
z!0}+xY9s9TN`gRDdw?NYq?fYIFG3PMVK<Od3EO5-MpSXu*+@$abRHr9bWF$I{O2)j
z=5*h$Z`(@#gazwGf&WFJ-RYUWUTBAybHXTwy$-F$KNG2X2mPrT-~Z(4wo5^EIhx>=
zgNANR#6>Mdw0=wJ0W8o3E@-*AC}d<3t9Onv*@k5&e|>WYDaYQANn|m~4~u|?eKfP6
zqa7fI*?_i<waO%1yCr4))2rv#j%#gKvEt2}vk;|eH#r9a(An&eg%eb{_vr9N77_g7
z?hSoTBSKfimuN)n5|fH%0tM%xAAAYHH!x%157pWYC!%sHr#ZjE4Wd2qBr$NtrV&_{
zuW|p>ww#Vi;q{XqZUvB!I}(Xu&#=;8U3$E1P#~)&)p9thscATx;p6N><lg@nR&&<S
z^;ms19{+f>Ilm`LeEN<B(ywoKM5CU~qwr?G!ci7x3pRk0^)(C^<kiliacx(hefwNq
z?fe=_FfWp}sV9B^`iFeWGnUIY+~#)SdaKM=)<T)<sW*zlqCda?L)K3E<?h4JZ|~2+
zqtSCriE-tM5be@q><B<&8I%I_V0B2x;JZo27za$&7!k8mQ^FF2c@rGjieNghS<)Op
zmOYWB#JreKu~<(aSGTb}!VRBbtwvzEz{m&#la0yNs5&dAqd|cr0;U@0+n(WlvVE{F
zSQJ8X1{w07+y7)l?_Ur7>j$*2`6|ovNtAb^OxyGpJxi@4`q1iiI01w`fqgy5yz)}8
zq1}mBTN@v&5expw=CE_rSv1S3ZE-=XMU@3^39n8YUa%};N8BBPdw%wi{|tXfIsWha
z+_BqxTHGgnUz&1Qds3cm<-=XWi+K!XC%HA<;(^#vd7r?+dVHn-GOU+$ug)pQS@mVZ
zgqd5L)W|gM3JXVb8zRwq4P39nJcZ{B7R47RyXqk*^ZBVgKlv}idI>e@FS0tGf_t8L
zld->wQdEjO$D|+qG_Kctew+|cvQV&SjL>vK>QmzAO+1$YUa;G(0~6I~79A@Ho>{=%
z=4Wy6UzL@85@##!Ca{$H`FB0@s@T0IKlaKeMLO_G{*LSNaR2tx`S@70KQl+H3f^_k
zNa`*P8?`5qw{nsBZ|jKhe;3Be>LIa5nd*SeE9bLbQ~@HN(&*QZ$Nuww7YEPLZ~bUU
zKIi9KIiRL1;>iNrH@qxPV4)sgqnf|I@gGKcYt*HSIy{Wtmvnc#?>(GC?_ryQ#J^(u
zA$D>rM3D*9@$rm`B!MnL5g{%U4$h~avv;oY&{=F=M{^y;s8ez2{zN#ke|N$3_Brk|
z2oZavX<9r65K2GSClRSWxZ>JQ1da>Fq_*rs>*M*rnkM&bSE;daTdzRz7iW!6V6}0W
zMdjv#g7AjYOmQj)>5iZVP=Dkz%-c0_jqV1&ts+HlC75;{D_4U5BiL`zTv`rrZWTpL
zGyq`Ojr4Sfc`TlTYx2uRzYH(|+Op}^rd1Fek10S?cUjllkDtaLKYsYf+n=A)$}S%0
zjl;@5OoAsFTSN_pX#&2dMgTq$6^r8_+D%eWvob(A>ra;H37v-joe)TK0DYibaqSGx
zQ5~A_h{W0|Ym6Spz`7a*APJ6Ii9)#O)kVB^h~ggsoKl5}P-Y-JZu8d3;2~&fT#K7o
z-1Nlm;g}1KLBK_idGOf%Kfc|a4}loOX~V7%Wm0J3xDx0xixv`AmY7y2c!b#oPjOK$
zals$c#EZ?>B%V3&MC(Hu;pJ)<kO?BGw%L+ono)3(E%?WNSx)+;C{G|RWq@w2pEg{X
zlLlp&CWW3WhVkTvSvM^G)Ni=d0rT1csW<<f5?>v3a|0D1+=*P_>aOI3J_KhUWVZ>*
z3}h2|nZ^I+b}c-ub3daIrh`zh)@9MOsqhuuc6hh{@XIH7>z=0PO5&|clNfOBKp9<L
z$I+O1K`=X$I0<52|G#Aem|xhjR!)*<zBk(rzD*Yw(pR3h8w5I{Ir0_DXd~hvc~CKS
zG++)~ShrKSDuRbtU)d`%CK@Xvj&GZc5*7~#Om-9cw+&8f(pSj3MELl@CAHo}wwIBk
ziKzMIDr26~hQ1}=V&m}<XpL1tQTPL9-%Kk&*cJ$>gxA$1(zK3OaRA0gdO%tMa~RkZ
zT=ALc_L(idnj$N|x8_jnk$8T74NmoGb2e{ItJ8y|C~wrVHY#;pPfR6(yG%LN*ecnH
zN6b)F6sk5P3&a@{@U1|%6rtrzBwrN6T3so5_xHO45p7~e%%{1`7n##+4+c@vZfsEy
z17u`k0AbW8a#HrsoApv_Zr&2d54g%5Da`2^Ke$dFyrpd&KLk-aV0B7L)R4dd672;|
zVE+V}R)tTi&T%595;+WK@~Xuy^4Q~4sOv3_s$y~u;&`=@l#U1T2uDfMfIub*1_AQj
z1F~t<$DUm-FZ~lAmJA<7#F@m|niOz@eH2B5%+l?^wgG=Hhjvp$nlrFXWw4$>_s?Pt
zvpRyFNh(DJChw4cNRxjOSXJLjlW*28Zf%T7dBSi^GBVV|*!Qt(@U@&9fZOfO!D(Os
zWfT$6(#0;JQWCMFvRqEeVG+|Iic*RNW0|#fw*E=^Rp7G-VSL82MJg4W+MZlu-s9I8
zo8t?D5KW6yHlp;QW@M2xVx;y2f|3}fnMg>R*f3+vH_UbDFHrL2D3QU80tXd11gH6<
zz=L%Yl@ggI3>`zqf>mPpCSA3%IDUTZL>^taxr`w||Hnyr01sv_t<NhqM<Nar(NQwt
z)!;r{*G+&wumy=UkUV(;*CZg3lY#+D6uxS4!`}=!unkpLm5!bbe@~OEmK%^KL{i3b
z>(uL)1m^pvtNp{+qUb?2%@??^#6HK%VWxJ<QN37;{<&uqZVRK^dJ}S3n0^j4+A?Ai
zQ)-Kx{Buu^3tTm1;!fJ%YSignUP1R?FPRGl(OE#W&lGJkgcps{1Tw&h6YJrrMe>JO
z`}bTnopW9cPi1MJSHJx7;TgQh*%KR{JFPV8Md-7GM2JGW7e&EV%%U}3W&9t?9T`cr
zSdh5gM(fTXd5<Tt`PnApa9z9sx21NYO4ZtQYElVneA|gNV_f6n>}gjpquR<wkANEp
zB2mq<oUjRk|93BdLN7V70rYZ@SVb@EN;9kS75F%tnbHSX%Ai!y3kszH437wB=D9+C
zh1rKZA%D};P>aRa{F3P4Y|WRg_?P9KhY@BMZ2U>gZ=`Qp*qq9O%Ftj&x9R*@CQ*gR
z9T$NULFfK)J@C(ydY#l`=vKXV_n$s|{MR$nt0DmbQX-?56!zA=xL~TbBEWL=q&4)+
z!YjK2e`Z^_OnsPG7IBj@ETW=}r0x`t+an57G=P(6b{2<XOhutgSzd><h&OPW4-Cnw
zHP8;$q*a`Fby75KD(Fwerc#odn8dR!U$IF}H7bNWU^xJR+91PlwUVeM0TU-I1HmS6
za}zwL!Q0e-?mvwE2mMcwl)R?cR<baYOLdK6vL%|pjT8?8pya_1z|tqtr${qjuz$fG
zr8iF@^}iHH-HxQ<>aOJ7dJ7mO&a&89UkF7TO%T8>u%suYWjK@*gI<R#<oh^@G@FPa
zk$0K!AY<f!5JIri;BNGpwO_)=;Axf!QV&48*u8C;nc<zvhsDW}M4=1`v3A8=llYU9
zcO<O5QE16JFP;(!^*1lKBvO6ZM0;FME}BObogEG)gu~O1Of{={c{nu@C5(+CugTy~
zS4~{M{;>bY+kcI}{Q5lJDVO9TBVbM3SZ+!~YsMnF)O(GcG`KCntulk#OzrT4wV*6}
zb~~9KY~;jSC$?XU8oa2%iyFNsFm=Q^i>efDRe5hQgLu+|5rb`y)%tKa{A>L2?Z=P*
zIuG8Rcbc*&^kDbccaGam89KER=SOQ!-*n33o>LyT9H|@*Pp70OKi)qn^-G1~nN%^C
zs`G<*XnnDN+yh^zjx-d(nrtZw3_O%h^p(k#{5HxzoMiSP?VwYvN{5{Y8%TuNn6!v`
z>%6kZ=nM=9UOcE_<yAxD4WQwb_$oQH-E(D&qgMCWP?Q;3xpRpZ!e$^;uoKS8j^YUV
z^=Y#|EfhBsA=nNTGCi@E&EVmAZr0<FhP6;=`BuVYI3BQLq)Cw?K&{t+gVDjyRf~Wk
zcvMRiJlaNDz1ym(vq$NVvIy{~B5O!*4c1=OV^QD(Z#Gg3-VA0}Jx=jW^YLj;B12)t
z!)vfIj!M1ETaMVl$)gNN$|f&!TvWANg*6gkp#&W&e_S8kdsf+=kM%m%xoxE=Dxlxr
zXUL=Yi}`=){oC)vIDyGx&K`!d__!D~E`mpMC7ws>>+C6x8B$DW;1f~l!?&36i2{ZL
zcrb0XxUGy(k3r`iZxAJKjavb=7$201w26o>lX6qQ);f9yf1cYG*P(SBb}R+rU_K7X
zF~b8eC^~uR-F>{1Sg?#?t9tnwCk}3xt!VC}YSc|SsRM0<HORz8YBOpyDt|kz6ucX>
zYb)l;Z9E^|zdiTJ2loaxQj!e79Amv9Rg!6BAs}WwhZhnQi+Z(<%hMl=R4?26>Lvf>
zlcHAl<$?tH{1K+3-#A+I0+8|6Dt7~2ZCz`;3sT+uv#b0v=6+Vbg(~XMJl`m?3bSE_
zO=2offp%8+csG_a_#NjDupog(gMimM^ohe?83e(Z^`|_&U5mkXIVkKqg;%HGGU5@K
zuHgXhA+&-fq7ZF+_BI}xXiq7MDY6@$V$@_H-BvwgOyR5o;_Gn+!MhJ1@6Sg-{i$Oz
z=sk?@Rm2^mauuM}(v%IsuV_195kggk0$<;W?bxPX6;p~7=BX-^!Vo+^xpZvOcxcJ0
zSB1De+b%=^YE3JjbE$-bOxL8T2gYRDL0!}VPC^pK9&K{1;EdRX>7vzFZ23wh&Zzb1
z4dpok<fgEanUmH$pziDS#)t8!NwMiPvFRm`a%y6!Y$Ir^NJ}7wk@`U=SOo@|J=_9k
zWfRmQ(m0a`E9sIBN&*|%BdP#B*#SL|nUkmpG|D!BGHr&j+y+rm?07%)Q839OVEuYm
zQPCu1DZsH&B`ib=wvll}kFILeNlBwv&oXAHvIy4<J)ljJ<%QOINy`$@E@FH_r<@qT
zNE98@3_&0)gX31LNHct+cC>~gDhs)GIk*B8B&GA_glT43kp!MoVhz}XadTwtplLpU
z&@FV*6qR;inTLMxwxK3b5m6aVoC=H696VYl$o=rgRkQ!4$pxSPGl<!|`_c8YMeBOR
ztyS4138_x|zI_t2gf+)RAyZW_h(vN{5CE%0b)#<;?9~!E5m89N<@rN`EU!1{&kM6y
zM30MH4${!IuTAc*d$jVLN5@6B*S$73g`J`rbn1F|@Z~>l`N0PGp54D{i*DJ4f>{8=
zG`cTKKZcQDJ?(r|kzaE1@Uch4>9NhEL7CkL$95e0_Gc?CI~>;XK@Jt2p-53V!oz}y
zA2mA<xoYa{tA|Y&k70!5SI0ZxihBjJ4FXsuk4{tU;6aj1!sCZLvUqT{Q`gbyVlMvt
zI>qM1Mk@G74&;i^eLr<r%g_}e2ZEf0wc4kz#P`3v`?NbeOS9Eh5LI5{L!7Rshfxk*
z%t13^pJM6<->l+v8{!w(x?1}(D`fZrN75Ya_LqN7b+X6ry;>9djp{b2Zq`&vog#Go
zzSmuQ>B$Q`$Y6BxUVg9ryUV8qkL!;kP>y_TjBzc?|4Hc}g#CBj{rf6vde@|Al`r0|
z;LwLrarl>Ou4FF1uL{5GZIxBc=0*Ijt?}ime12_`7vXWSKA6OYb=MbXJF}5=`o&mp
zb=}!_^T|b{eQ{@7*llXhzI<}oz|*+${LATS75WnHvvS2wJxR1NyZKfwczNuc<@{Nk
zzo!xjmuM6SLVxKuG3Py}DzN9V)ee29jeVmHv0Z$)wQ_|3uX-Pi%Apdy=Z?MV!mj(7
zp9~b|JXlv3@6L5{=V9&sp2hZ0eFAUsXFubwcnj+yri&8KfKy@YF&ZCYz3}x!1b~vy
z^EJcSR)1Z8=?5yK9gc4(!=}t_tIxlk_Rg<R2R+QEgq8X1TdHj1J1&22v;64||70%T
z|Lgsa9}dr~hx6MN20LB3wNFxXKeO-e{agVXkN=OyZ?Pl(fZHq&EBXmD92|Q4Nx}3O
z1QZf|hfz(bluRFy5vM`K4g_<l4}v!S_Vq}}dj(X>q|&$)K2BXWxYdjBYb$kuYP@~T
z#qro$pT<wW{`d?qy2!?wF=FHCByekw`*u*Mk>q;TA9+^S^E+5G;(l?L8ScS0Hh1oL
zb^t|XA#Mc$7&1nlB6mEYRxWjWTAI8KLISmj;fE}$L3z<YMO>x1$rUAcG;V6ig%!WD
zV@j1<!mHt4O2yJhWOtvF@<uG~WyJ&|pSG$oEH2=CjtQzEc39yG&}D*BBEkjAUJ8iy
zzfH45I81x9L|UVx^Zw#yd96^tQm=uSjW{Vxse!~xitaM_r*FuqIp(Qd<JEitTIy+9
zFJepKIJyiRT_Ly^aICgf0-}^Sb7U!4=ie#+!I8eecKnsn;K+7h)5@;(O9v-G(8LNz
zS&F^*PwCG~e_bUuztCwv0MPKSH9-6){=9$M@vcdIdh_8t7^O`=btWYM8|c7!M~Lgx
z2b>_k5rm#|M#bZ=nw$Qs9}f2GczVTY2}JBDjn87rD0xbNVPf@C6r>f61~~%~T!cvs
z`3hD%VV$eiD%4$U_0+?Jp8Jtm>$#{kW5I_6peb2)^9;3)yb(!mJLfB0;{CJdMLo}!
z10{MGNMC|>pM|n@o_m`c$LE!k=jn0t@p1X&aryLdo|Ltnyk5B?td9Ub&@dC4IA|w%
z((;q|b%(Ac|HNQa#lI+<Pw_0Rvp=gpm&~cGWl`=ntvOj>L#llr<XW8-JQ<@<HG5BU
zOA`y1rI+wpdIR0R@TmRyqr6p~K1pWXD0*Y-AKL5qsC@FM{OnQf<WaVVEg5))Estub
zvUsZnAt0Vm2sm+4&x30UHXx%R$*g+ghe6*dg=3L#xj+Min;yenD<V!1YIw%<GRGVC
zf>{hmjZ32l78Jc26`)%cw8^DlALsV@ea_w7iz)L4-*i)`txdCoo;&z+F&oL2*@|2%
zRRwri2jJ7yQPigN^auLGd90Eccn!U>eVV^LoT+4GaUOi3GrtjATCa2!E!$7Nge%3+
z`f!o}^6Md~F`wimA5J-(I^;x8e$@FM6fX6RA*HO!g4p)p(xG!@Gu><7T8FSQ^WCxC
z?yDq0{UTWFddWj_l0xoVe|Rk5PJ8uUzfAgiTpys12mOveU16I4z6zjXjQ`#`ybiMA
zg7N;U8~&8KepWP(lR%!Z6^)`Q0wl52Q~n~17oXot&&gtZ{zFahN8YF>HvTtOK&#HL
zAOC*X-QS-<WMk3FlYHelF_NCeHa;3(&v7#+xfHd!ucu&UUXCan6q>VCXDQaYVB0PE
zJR;l(5u59k?eF}APd8RVYeeQaB^8s;5}lmEb-obHm`weA=}jNTP+xpidyZFn^h%Gt
z(qpeQA(~fd0(+R1eU2BRX+bjcuHMXDPwgEtzWw>lc}9rnh@k)U%3s+l$7n(2c4#sf
z1JVaE+jJUozEe0M>5vw<`h=!cKojQkeBQNpyTeb<`!=q9JN>7ZzO|Qr*JQ9wl;$9(
zk4ZiRkv64HG35rJ`U2T1ggHcFFA<qmDKSkVM2VV-#&(Z9I}5)@(XZKSEZELe;@qwl
zY!^*(Z^`)RB`W$^T}O_Ihixi23~ht~ad(`()#drhaR13us-KOY@SpMXmye(7w7{~#
z%sBF!=&yWH82aL%+(-&LWjWBoF%M@e!~NUw&F=l~?{ClDGW93t;b8>fN3S<kq(uol
z6e*^O8h~94GpgsY!mzAdlI3N9gC~`{5nmUku*JEbgJO;+$=;@}#&`qe7VJy}arh<H
zTsH}fg;E4u^N1I)5<xkz1=kAI^&NP%Mi3eHXS{iQD|iqiFF*>_6mI~T1}Jli=jObm
z6V#W&=g6bHSRI`oZ`zVs$eIh=wQ}n~rKS)7o{vdl5sZ(}d6>`xVMaGaVa(tKM37$a
z1}<O`s96<mNWd7_exsr=QQC=D9I9JA5k_^n-0WO^6KBO1!;J^S_5`IctdI(T(rF~A
z98f4?FsY$@{{8V3S|P?Fr>!D4tx!FEJU)G`Ym$Wp&=LlNNYVmHd>{Yy@bkOfc}Ubx
zefJTO;<qYi*?Lv;x04SzIg;Qu2_z-vUEpZe3#q51Vm8`L6%m2bXNv_008JxoBySaO
z36dYYLrL0iSt@KnhVhL!5s^Y$XN3kNLV!{?hCxkbORxB)4hlEp#sV#I79b;d@M#?U
z7OrCeIJ|#O0u$}2gIpHGpkXJPg~nNQdPjhoa^eBvl3qV3Mo?$^n0&yvWh-Db6tEqP
zQoA7vawclx+cj>{vy-?$tPA*KzqJJKuTdQ)<6{z9IS=YEas{NpJFJ0c8?p@V0~}g}
z0r}!NIrWM6Snsew9X1M?rVbm`VQN)k<H(Ute~sP|H2&xvLE|eG!(ojQRELe;vGkZ<
z=$))9gF0E}Ae-h^_ztw}BAD_Tv?{nWS#Is7Ypr?vvG<uwK)4B_pLw5+MYB$pHTn!p
zoC>i%6PgLG64Aha(;T^mp{%BZ`V1esm7t~n-MIht<NXJcUzx~ovYqF;y6+G|a=Q&+
zQp=UT5seLa^%<IR1xAoVtl1T?udyeD(Po-$F(d}6gur-+9auY)DHd(tHq-^ZTIOZ6
zg<ZC-B_y4){1H|;YaACLHLVKv(}V37H5d19HkKN;J*qeB5V8jqF73+H%)o|$eR@U#
zC&gbT43$tP8wl~1WcT&=fHBg_QEaci*i2<bhdquE<bWea!JWMARZ%iI0WW2&&jg=N
zRcE9%i4RIvlk}*f1r~F%T4Q!>WAs-NokD?`e_D|CYqO@6QIK?G%IMRUEL@+bY>!SE
zIYmX%l69L)Cz8M0rCE6}79wpG{YC4udrxKkBgETm`*G~pn#Mwui*)>H*1?*4?9B~D
zI`oYhY$!n<Kqb^Xi=R)E;>1$@c1X?LnCflsw7qhfF2v%g(ZQk;YobQykB|YA*32gB
zLqi)~uKir~^@I`c_HW1i$G5xp=Mf|=OzW1UC{ydZorJ2aX~zVHFT?utx=l}b^CqEi
z+EX$;j4kMLg;>kHAS?l;EQ)b2E6B7kK5h5KTLG(r=O}x(f44t8Bbu6b4wwmw?69$Q
zRf6Ia1nQe8j<s^ShIMC>)4%7moDtYyDu{<R3;b>qWbaUT#`bph6H1$I0?fvQMIYdG
z7~oz=dyw{o+_P@`2~Lmcfa<9@Vvnz~-@RzKtSS`rIusFsWF>(hB!b0y7B#JDKq}BK
z%6<^h1ocF(ojq~GyZwis&zqxFH3!3+Y*d5+lpVDaEVr)xfY@Sk_F<7<7ZQ@RkBZ+W
z3oEsUI(H-{Z-nWw*|4_53=$NfN>LN`B9aVn-#SY_)6(`1@?UDZP@YFARN~r?emfXr
zy;61BEw(=gIw!oqb}#ZG5B>Ze%11>QvmF6gfSh)c!zJb&0dC9SpFX_EI#Y#MYIj8Y
z%;BYr1Wcv4L1j_)t0)w(f3BlAL5lgntHz=W^5CDnCB=aR9$NI5`9c{{yqR!C-m0+O
zvr9&mqEDs=d}g)nZ1ihN1k!-n3ZXyCx~1y;^ZQf;R>600ht6Q_k3&hs0&^jHorOd?
zt>la7z}V*Jcj(^i@Kv~<pwN1S1u-5MrP`^OD<{DHwrdYc<FS>-ux&kbM5lL3R(e2W
zFwvT8`CY>>`+U;Xgf!Xdj>p%*KfRf3z%0^A%3<+HF4GsoJ}bsm15taq!iy$Fz}qPV
zD<qLJiRp&)JfgKV+5IXVvD^wk7jO6CXXFG+w*el39Z-QX_@{RT&%il(iVp}#A_^4g
zuHlT)z&>#;(;-lQC52szXcJ#+y(MX~!dMuOF_IA{v_JKUjul)aHz}VHUUeprVhCnm
z>fek%?%qhneQLUJs#%DErt7REhhD*cLXJfl51z;VvCLnL=5wu4>&cUVKp*3#YPi-)
z=f9Yw1n|;tCQkYM9`Qb&qy-Yqocr(ZPf`T=r@nAvuM;{t`}{0y75b)#;FLCsb$=_}
zE$i%BR61A7B=4z=QNoS`Wv{pdxX50c;A4-HQx++NE}h*KB?cVWS41GB&=J#~?iF<<
z$|S<Nnq3IVF|RYr!-E51cC0$NCbn_y(0yl|JvCWG&tq1!EFU{m`hl`if-`^{!fv{4
z(+k}M$TME<^OXkmS)UU;Gd<WuV{szlFYeDFVsP%9W5mKUJe!H<(*-;my)A3e{~e{i
z7U$d&|M1X!?V3824j2HfFJa#%R;S}S=;;#g8abc7Zh&!VY<f9oh9GjG68$A1CwXw<
zsPtrtG%OB0Y1hzlNbQ%t+xTtL&x-pw9ha9;&OfbV6R>iFq!*vyt^Ku*RH1TO@lXmA
zialuhn+Bqg=a+`Hr<~7!xJ%wI!oZTxdC6aD5QIaC9f(LuJQvl@I{WTD)-Lqe=hwm@
zT?Ui874ITooJ=zj<dr1OzaKt)IP1%Kw=%9Nm{e^*627j`6Lp*XfS9SqQQkY-!pG>T
zn4DkmmfMwCK9H79Tzm?<Rs`}SY>~*;@5nc^#QsKB0-<<!Vwk_mjRg{3ry(O}LQS>|
z>xB*%^dgw()x)0~#Ak{(rYgCK^VjXlHTM>HA+el5`Zl=sGA>RMj*3z{>I81&B=h$*
zv>?QAV0HtIqR3jbavlS45t`6@@gX271;wA+bYLL!vXcz^)1`PSigpx&8jQ9EJmdlB
z@tUmNpOxW8A&ZJv#2=sBJ^#>?33&-6jrzg=snaotpEE5cb$afW_m_#ZPbT4WBJFTW
zg>%Yp^B_FsMbd6tPi1)k#E!toi1Orj(~SASl;L~-!*k*Jzw!9hc>H7ZKS~u&5Y{>S
z|2C2}7(L5$AwRIJlV{gI5n-YG@ISEHpdG>@W5en|`f={`!`Ix&qf>owLLW8t{n-Rd
zlV?b25;z`?GT1lJnfLTe7keRq$Zu}J5wIL)pEfuSu}wIIfN73xdK44RIY6C6@A28E
z&v=OCSmQGeBOz)ZN5JX(IBTi{_%FTe{n;Cyz17)xa)NUB=AZV@N%st=-7`FP>?~-_
z0frH7?8mRT6W<A`sDl#SPjJhsi+}#{!~gdzJbv#8v)M`A(Rru#y-DJm*l&8_uQ0<c
zdFY2#*#*^IQo7C4^irQarN2MzmfL>!?n2q4o-S-)EQAm7YLZ#*6wkiQ2i_Ae47<Tx
z52F;DYZD(iwYBk@M5Cekb+{ILd%k)5^QZFw$D{@o|BVbP>7eE8NtC}bl-GFhmF@~1
zZT38*auQ|{I-;3O<aJ}^%@hYJT@IqouY>k03JdW`eM|bJr<Xq3uFndPXo^m&-AQ?g
z(<|^pQmP*#v!&gV3mjZg$`>y2dnF{Ysb0K>pwNUbau&Af@-+}qfXQz?%I3?p3i1^F
zR;|cR@WonTQU8isLA0aZkWc2-lOAU|`ue_jN|3*Hg^#&k?>{{w$cnQkOojJQSzVzp
z2%_4J1m#c5!&uwaW9qPNh=pWH$|{`}B{y$PL>e*U=$O{~9*Nez2qtppPwY5@V!Mi_
z@eAJm{3VAwUf(G$Yfa}b)zq8hr*}WU`}D78w64y`JR_GZ@G%$M4hhr0%!i)vC(Md=
zYV!N)+n97=fY*i-a2~_r0NPm=17fH2t%CS;9pa5Rnb8>RDqN!2WRdY^%&6jLQTa^?
ze5(KGrx14yy(mnFt)E({KNKQd1TXJz!V)I#00fad$!P`0gzE}AGigptL$<^BzxPQQ
zk)VGC{y;&}B%%^;Bk4<8B~Djy2k&j`=Z3wLuuP=D&9r?O7uQCVGrBYI@`S;^_X_E;
zuG#1e-6loXZTc6z>rAG%iTc=WA&OI)yhfPw;zA5~oN>X1Yu?zV;*_zaM^^R)7bEAl
zQPN)jb^T$`ZypEU?;A*x$j^g*et?V3AM?^Bx7pWV{W`8cc<EoN(t~&*=I~Orq;O1E
z3S9DufQl9!N;AVpsXvqt+y9NnudEe+Kp>c<t5S|DzSf}Q{@us@;q7^(+f;U|L$O_f
z?ZD$iz>3aE!!)?K1WyIb5<!)=`H)xcHPZ<*ZqXn)fOGr*3Rb?g41gj_nO811>>8#{
zz_$=IgK(pnf{HT^obLU2{A<(~BY+)!HTqY_Km5nf?<H{O)hBrByTT_(P~eFt@zjO&
zFs?qd=QIPslZ=ib{+_#Qet{+6Axt**;!D3eQ34^H@Am)C|7+9vREkKeW_!MG9P_M@
zPO~b_dD1vMrzCo|`}aGq&%#tLZT?3}BR!*`nNP4ze|0LC<wDjP-uC~zee>=d;8Zo^
z3v?bOO>Kj@g$w|;oY!Tu5QG=dAQMb8Q>z<W7Dt!>mu8Ze{qbM;5bTe<q1(1Cr+J3F
zsgmi9RkM_0BAOftbJ>uRvgQ^x8J4@0Q`?AHInSAAU&FebY6YV~YM{6wJDb%dmL1`S
z&2~on?szuYf5FB|m`vhD@Xax_d4o@{){-7ibm7K1!mPHbT@xZ`PbxQ{bF#e{5GZ^-
z@EtF6<1y=*-yI;=3Arts2+NMW;SP6lO-tGwPyABydImBZ@q<aCDL$U8g>B0Q=aO!<
zdM=MA{R*nH38u7K%jFFsYO;4*k6c8;Yg(KhwRSBv?Waxl=CD@K!ncGCEcPanqzza&
z>rN{S*QK>SN$RY#mZqos$@=s-CA%epy0KStJ<p1>c1dc&nSIu}c*&cBvF-TR68ht&
zO`QM)#JnL2prl}r!NSq_3cJuU&GuC!W{EsC5X9BuZ*l{xjCK4bE%OdX&l2oS`qBG6
zOyia@WzDvJ_8+{?q-U@}cMwBQ!6h<V$*g4*T%etz5!y}}%i5+NyaC*dXP1}5>Gf7k
z=RBL1EI!L)2}`g6xgL8XT1Co|1ft>2d_yjvOy7u`jMrm-U5dT(hA>j=9m<-mmpALt
z%W7l){f=I3w8<2wnm6mwFPqiQ*^V<Ue*^X|w`AR-N7~y+mYWnJ)gOo_%_iGsJ@(2^
zo2_+J(L1$TkH>X@P)f9+&Y{W;XWd%E27F?s-Lr5K*6AnhY#ov|>#?`=rnhuHjHkC)
zgVjxM>P=b)EUhvxdQlyZJ<h12HjJcKCO8$Q(t7kKB|O)2_Ca-%=oOoBo1`?4_NolP
zO$97r)!)NmYYUr5eCYoTh9O%HP<m}$<C_Il5K3CoiM)ajiJr8{emv7O-H?OUI=O97
zb+kA#@sf?vyg8mcnRugInASV{gfq30>}B@Vm}zVSprTb&7QW*b>$JAgnLH+|E}O@*
z<BFjnS)hmY1!l3y8Xr%N%MYu___zSEfGy$V<Z&e%=f0S04a+4xo*Wm%vWdR*zKS!e
z)sk7L*E7GYK$c##7Hg{B6i5EB>PUBCbjPbw7Oy<$MO|o1(6oW*F4K|zSN1hA?l4eH
z6w!~zUBgPSW}rRVO<s8a%y202Z)}$z-eF;Qs@N>9>t%(plh-C-)J-eQA_-!^N?7~3
z^-)<o57}^xV3zE+QYI*Z`4|QLAYBW&H77zqS;U2?veib6xg%Ki$#g1@e+*bPmA-ON
zdNG~N6mh!-O&<fP$4Bl5MOYuBsUHBUQ9*|>iydDuS$qt<sBPaf0G><;ekx+}7RPat
zJ8GIq@mO(JWXELUKLn-e01#^)I3O`Cl2UcSZF)!e^n7CirKe8->9H57WtQU{I9C=8
zbO`WBH+dFH`21Rfq`}%X*&RiozAaRNQ3-jfp9Qcb-_!<C?GCO*@x@pb@)4z((Y4ZI
zLvNzK*xkSs$jP^Wj^#9FTH$x~HXO!^?S=CiV4)JW0NN(~5QP5|z={MQvFzpKhik3@
zkp#d4i#r?eK`OA+>6~6wk7?+K)nKxy!vY*!%H}zV9zVf`dLi>CmR&{ELb3h%b=A<0
z*Ve;&*0ShfwOo8yfx5T}t8O<w$+$i#a$IHyv6{%xQT_Wzm_M4;|M~Fi$DenH@t=3^
z4u|`5tXi#7t}<bDTBb=`UD){HwQ(s1$y6dh|C<F<GSaj`Lge&+3!=E#-VNq&Ml{**
zoJ^h<%9ROz6J*h!S;CQx^qg@$Iev2ucmeiERS3U}vUKQT*&T0}dS#+o|L*Z*+AOxg
zUSr|ay;qN~HK{twdPjbI{sXjsyx;%kTi8mxeixeLZ?BnY{<8vafFj!yM>c?dALk_R
zT#M148*sDht$%wRBD)F;Z<wo}S>s?MufU<E>M~;UbK6Wz?wGq=${=UEdPRGiQodP_
zeLrFC2ASo>?l4N$nK$?2x_Zar4DYsflQBBDG&N!ME>|Rrwr9{IlO!UmsLho{tr6)v
zTh^f{@EzQ986(nfSYDCwnrzkwkk7quCzseHcol23^?0lh+qAvv!pkY`s1mMcc0WJ*
zmA$<nTSCNnwQ%Re3;MCkDpuua>LTg&=8b>)FVXk-wVY$aj%&m2^+OsZ)MOV`M$>-!
ziFzq+R?CQWc+?i}{&H2VNZ<{CS@iM;d3CkXa#CmmyHz5ij$I1tVwg@OPgU2*lvG?=
z92SfgN-#y{c;<o$B#=A|(hGl7C8Ri|`gqbGleaF9xt<zdDR)IPCGL3ATdKGcrA>x5
zJCGFwsY<leR@2I;mlV8#Q@`wN+}i8-r^{}*EPO06rl+zTk6pGy*v*7~NYy!vE=*=Q
zj3r^sKJEy@p~H7peG}MidFjWgx4<lA4w8klJ2q!U?k?73JgbS7KidoXr(fakLYX&F
ztNM(vl_d#9)8Vmy(k!ZCYIU<7{dOCh2OM6!6kt3iPJoh{L6iL^zop;c4QFzlckRL7
z!y4V+;|3>yx6y)Rt{1cEQ#b3eH_c}DdL7o5*>pj7JSoxTYF^jW)XjSIifpN%DekU2
zZHR9u`SIuv30+9l14w*D)2_#LFwkN?UHEA+(fW9N9518Z`v5XPL)sS?YxGE(j6NVG
zn=)c;X~>)7iI4HP>YCU;w0<!OY|bo?Cy%p1vzX~nyl>!438kH!J<c&I?lUYM=jUcU
zk&3q1oLrCn8LP6;=k>ZAq~pmI))8+O<%nw11|k|kUKil!dj@j$KX$txchBrnPHJ0}
z64nIC;sn`*OxO$Ukkv`p;|G^g*tO-m4d7ID&nuD=DU+)Xt2+oasm%|W$P8-&1ZbrQ
z3VW0tf~LfCzeJs7^a4`enJ}xX9!A~i5{t5yG=kT}Uo94DT<4?odhs#G8ysTR@(=2M
zp*iH2F=3EEGhsidCCP9Oq<_FzX;su~rg`XxF1`iFaQk)8E;JISRZwXnMnNnTeM~=B
zvA0wpl8kWf9KX>1VTfiMlHs>3ei{)KU^fR@rrhF4#YtJvw#ucUh%6IE=dDl^!iu(d
zl|0d`r@>P~SU@>CVH5(3Gg%ObBsr%f=~C8El%k2UngW9qN;fUC;z$nH#krqy;e$#7
zCN4@d!3AEfAmKVDP!mKB9~s38rmo9#KUJ~6T|+W_sI0H8;Vhs$xmpTJi^iJR&mJFp
zSX*#!Qyn*jo;N7m^Y|JMy=sKV0Q8zbe36Xi_(*!fn@^LNFou<+I*i9R=<f)JNpHL_
z*X`JNf3R+A!+lNNSQOr#yIH5^d_36iSw6_E2-aejOmA8Z$LN@^Bo#%@AyI-yWpfL{
zA|NVbnYBL_!PY00f(`nWg4dRzAKZM-cqWhtX_-`1`O&xf#CJL<m|*(S@7HI^zMuGX
zAMjP$Mk7y0B8tOS4k7Y0%{6f@kjViEdm{wak5_n{VF`>ZYf3H0dP5jh@N@A=O-k3p
zVv{(|w4k+A>90!rWm~@VH4TeREcj_}@6SSspMZ1DFe3L)aUo}5p)<5j@8lmp>^{CZ
zTl_=E#fU)fccaXn;8ngJW#+buFT`S9lWgmo1Lj_2FLo}x?@k{5p9lV>4;+~p5TpKu
z&-}|@@_+sVf4dvM`|KAB!j~Qx=J-3FNchEnmu6+9zuW!%W_PxuR}WguCUiHG+SIUE
zF~E@%Wj~4-l2}H9)22v3<3eb#A38cqNlS?&-`n<>6~-6@3|4?FA%IE`H6zTyJs=N*
zxF#T*fc65^PXvL4z;{rF%*17>Jjl~`P&yv~IMcFEt`=C~?A~M^>@n)G$)N-#;hgqK
zDNhL20f!6+A<42!KPN<#D0n4l9%XRmvBV#vk&d=`+dl7Edu)SJ45`>MJ)Do6h%}Q}
zBd2^5r8`16ie-Mm<le&Gl@}uaif6*Wp0ko;WR*U6>BvMysjEu!8W1eE^xB|)%+WOu
zrGwgf__g(~-e%C-5TJ=WVt!0^TNH2T=`N;O4K=8tyg>&wC;?528ohX4;^Y9CC{F=8
zo+N7=Jyzrr6+S3)F`0geu$Tj!j>>nAW-~kgN+X9C13@8$XataOD0i>DBjZ!wSIlUU
zZk}Y2yTZ9;?J~g`ip6_~Q}Iw=@O)@u%YNo{y6JnCRX*baN+ceHUt_8Oju&MFOR&@`
zP#=C3ISmx%97sIsjFs~uerE6x7zhO9iRl1>N%(U3Frb>5N1q-f<iaTg8<3xMv$`^t
zEspr>=VBJ}pY^psfa@<I3i=k|WN^VhiZp~M>3XoiiGB}q@d4CCL0?RCYneT{tzwy5
zKaU=>CNgAUW<5*+6YW5PUrwAP*}rtQh7i<$(%pjc2T_<@o$`%@LOsOAV&bX7JK-;_
zQOyqRkrFd8k~n>IFz}A6k3r|6D|&P>xPPJlLLep)1rVg5Nz<|eEqfC?0}t7x7v@rw
zLrh&ZsLNRO;4cBzoRtTOo>%wEe0LyVrw`FRkgC}y{E!sBSrm$1JRnzH5%Km_>F}@%
z5c)U6vn1Rop$Wj+z4^oB{wl2r$gxiT+5pxn$G5Er)B`0V5KSr1iZWJn3TqRs!n5mP
zW>pCUtFn?#;$A=vsT!!0VwZJZAQTY^<_tBjq631@8WxZ|iFT**4qWOb4_<O}rw^^A
z(;{Pm2)$tPrnW<`Er{!^7ptC-OEZ4y=e(Xcb^h@V0>!*Mp>B2l4wLDD+l4`ZZn0=M
z^?o=7)(st4w}R?^NVbmoFQ~~V=TGu#oWxMwKSoUX=ShUlNxYEafs}65L4JxW1)quA
zhuy~p0m%xB^GC|u=Fx;U8}cDwKV)dL0|5S16n8&k)(|<X(BI=Xn2>doayk^2LP|y#
zCP4a+71@;Fh%g9wS<A52lnK!WQ7Q0F3dHJfr&UO#H-gWP3TICBDlSBMrK+r)3fE44
zRP2&<f2n`C>2V=4O2!{M)5X)VGJn6Zg0$iLndhe4kBYe?8L4-=5?2L}Osw~wSaK#*
zE_i%n)tv)(B4f;KUWD?=^4}A1k{>gQyva&bX46u2yeGLmxgpt@Y52Ui>q(3mCPm>>
zRv<i#6iRC2|BS}3AC0V|_DlFaor_&8{W+a`9Pj^p_wzr<87IQRGUd}zuT)@VLOjbR
z1>5G{ymj>k`Y6h&TNuuSo>HTz6rdSPs)7xHp(7ZZ_+sxV&{DMb$x0rpo>5}L3OU6>
z2IIP?F_5SrI`Oq0f~-T6E1^JUg*+g<{_Mf@k+&?cKG>cE@6V_TXfz~MDVvxGMnnxX
z%gZq=Ao6q3GeAVJB-oCMIO>dW;CHB|3&)Z<B+mt;=;&w5bd|-I1VZIF(|`EF3PEr&
z<IBSdww_c`VH764jU;h1nZvW%9nTb1Fu?uxN0++yfv}2y*DfQD4rJ!<Gq0)KjJuI}
zUH{O$R-lQ`YZPwgwT{ed5FNAF&XN{fX6jbDTNC4mjb{yOJjOmb;jPly4|$qEfelbx
z#fkKW1mK3?t(%nd#3R8e$ybiXWDD6FBQjW{pDEWX%S{Y(pTz%sH~#qUImtswf}xRC
zwPE?hiF8G>Q(}rqWQg6i33p|pSO)EqIK4xHx8<jJ{FFE)qbFxT=bjOZvoa4LNlMfb
zS_L;zmS_s@DY|!3x#W|;Zc4O?#aQYFA@<U9Kwdz=0t*pl_o0ie74IMEfA`;*Ej8n{
zLg^4&jXY-XZ<|V(n;(l)^jK??I~5Z|MFnlY=V_o=ajiuu1eGBL6kblBJV`jk9e9-l
zS{;&W_-RQf<5-fQ0?RtxgXZ+GLi9Cfx9rJW53_U{LO-PGH{Jr~vaSAybPH|SPr1`t
z7$rp*LpZ;f3GR(r>AqS|@eA9RQz=XX+@z5RA>C=G05m_p21dBdTDcz8$b5>zTGggu
z{m%Uv_bbJ$RLZ<MJx+0512nB-EaaDia$r`Xnc({EtecvNaM}b-QC-2F(;i^(Roud1
z_w$?gyN~~PW<L69-NW2W5KLVY$K8ONU%6U~@>XzgYf+RpWxBCSn!>JoUIjTfhJHBu
zh$q_gmI&v|G>+{>rcUBj-L}T+6^L1-zw}IP_03b%EI7_4`8O^yNaDrFjR@lXi+LH8
z2D8HNJHeQ9>F;Yo%Cg+Bzk~4d3-5WEZL#;*-+vW-z!UUr@Km*-MDaVYT)MR{D$guT
zU`Rdv<ZfhxV0(+fe^=W3gR>ow^TggJIUsSV*M!qU@c{TTc=EYEj)xxGxF$1A`t}iG
z_<ocvq+2$}r%B_`KQT-?X(^k-OoTIGQH0bjqJmQr07(qYI_b$!(G8+&k${t=91jvd
zDlZ{nBSD<O1w|?7x42U!#d@-J#*LZ-g_*AdI~sKWR6wi0UN3K+M|O5;MWTm(BtTLv
ztAI=2K^crm4<6SCM~P8kO<<5ktt2iHw(MCMf_dR6iM{FGw(asN(V>zLtzd2a(Kj+y
zrCElA1A<}FTLG#_`y%d~D5-DMPFdAHwt#7ag!eAMsuU-09$A7#D%!LenKUk3^mXpx
zVnYuW%Wk{IgS@|x%&+E`ehH#uWOSdV`SUE)&wqfABM`VaM_=&NuRRg(KqzyYZf!6=
z$>Tfp;ilyf3#|=krBe<XHFZX4u=asAO<*dSWjVRSFuNBMAw;-?p2wbt8d8uhgN?u-
z77|UHtt_l!<8?dvopRrtByE>q!VV#AL^c&?ki$pMys}*cYa>EBg1GE7x`&f%kmal(
zuDel3JxgXgpZULh`tZy7yq^?hRx#HFo2ku8vj$@CKsFMDX$~&M@@0zG_-Fy8h%7dF
zrg$v7x<Vwb;e;M+IFf=nPln_^>_pD(WB=}~GDi-zJoewl<G4WDJaUY&ioFKUz4Dm3
zP<X<75#m)7=Od-_8%LrAQ{_pwx%0@_IDrA?*3-zri6OzxTWQ>Xctfb@(+Go~oWr1i
zL=yO*mOb*>pbyN`%}=8;Hcba%vK*nM3&-QtqhIZe2PD{bJMco<G0d)f#xLG;7*9(d
zkC*yYe!A8JwFz~P&;3b(C-t7Z(ubl{fVvWQluX!x1m0m~RtR5yXWi-#{EhmbUilmK
zKYjWa>wlA)G7{2~YQ!*jQ-1NT&;OYK=M&)l+c)p_yTkb$XhGCB5t+r-)KVWx-L+w5
zG4)`I(=Q05DE8ob{^jXq9{W*{?CbfrPp=!=18J3>US?lDedy5EHrk1GckoZY{Mbwv
ze>-WZOU-0DX^4_(zI~uPA0-!vN$ks-(GmR9U+6eYF8<a>%4KGZ!|vC=-#s&|F5k_t
zDjgy|a&es)K<=MfK%QDoP8iKbtRo{ZsOgWF16|jQaA;FdtPaSPxOhk64ghV{u@juz
zYG8fR`nKHe;ympamn#q#Ti>S#@v@twWP7fRgp`n-JawHi*2XWGuy^0BrRAA4xnTco
zmPoM{yR{_1LxzBeE%N)=N{@zcL{vH3;V3T0{`~J$*K|_X$C|!Qi%YNdDlInhW^xBW
zg4gvjj^BAWoeY}$|N8aa&!3(Tn;*a1umSEcfJdCc@Y=3{@6fd-v>zpJz}|Y32r&d<
zcYu>$W)ysaLPJYch%$`%)k3tQ9?z1GXYUwZZ&L8G27t}W$-Mw5*h6x4Nxo_8fCjkM
zif{`sKuT{rUUJ$xg@a5VL2b*u<J=96+@0iFz|MR;`!{zcM*Zhqx&Llm3F5`p0Nbzj
zFB?AZ#aII#Ro`Kf4Npv;`FEH;MbF7BYEqfIC02#Fy6bjw=zjix_THtrjU>zd{3>Cy
zR=~oa;ql+exZ#4iN;58cR!k%-sVV5uqQsigr=R;f*8>DVKq;j%tE+q3G6e(!5gs1?
zypMCw{oxfHT>C<v+<$c!{`3Ch_}j<#pFh0FhW<CFa2JF<!1oq+CIJDk2@^p(+bX3V
z1bfEWuS091xDXAXE608%elTLPi>wWvo)!ji#_wc`K$Rb#c-K4PfhG}V^X2<`FZ8C@
zWx~9?9aYjmq5Y6TF|$x8CMM|gZ3tm^mfVf6z6!#H7L(yWidtQZw0?QNieN(WipcI6
z=0{2g?A$>t4U0^eZy=eoAv@V%m{mN`Y%BesVh8n7wGP{_ENlC<=k{xB``zS4`GMnH
z;rCyg@1XV6c;eK-47`KV*~8kRzn|6K-Y@;o`&mt#p}-*!O5q&-)c4CIk^0K}A<Nz0
z{q2;fusR@{`HCIFy>D2$d~*zf2_@#lRVK=kEbYuC)`3Ni7qUXwT6+~*^jx4rKXNek
zJg`oXP9eB|s9e#gD8O>|6uESw_&ViZkm56hi}c}FI2@{`GTwo}qNX}kCn=I@Mp`IV
zH@W=;#L;=Id4%!{yGFVmK~V<zMJZDRzO#fiJ93w?zptGmwq5jOGv&@RO;WJ~lE0xS
zN<0BR^w9BwRcwN^KT0AQK_o^<YOoaJ8dQ(GegEz>8p5*^XHuZR^=RXuCOv7%82AZ@
z0Lnx-#)6Z^>Xzq$oE^l>H-g**Tf++0gg_#qT{=ThsubnPt3TW1&J0ED5sIy`0(x<*
z<xyGkqKGumd8-mo%gM88Bz6#cgo6gl`o&u>uAeT!FDZUQ98|S1s%j!wh`A1`8h9^4
zIGO_EbNU%lHrPTzA=))I37Y9f3sDqx>ops_X7UY%(W^Fk)kd${m!F`<Y%SoNDlw{Y
zLenB!$h(bbV-pDgmNo!P7j5X@_*{Y#h7bmpvP_!_)GUggSpR}4l!X-tBEgan7A$Gp
zWK-#&LBO-Fl$CG?%4!W3i&Zm<*ndh_))b4}6h!LH`c6SK4QgNO7}weI49cqDsj(u3
zyNUv+O#l#8*5D;Sj{PJwM2kNz_$3aS+1)=rj-MXx-kl~5C`kaT1ZhE462dv(;6KE9
z2^e+RMce;rzKNhX0m`uK=UGFw^q38#tcE~Qurwv5gIcbX6|kyguzwX1qp-1O7P~s%
zP;~RHAlwn#7sTE+?KSLv!SaOYBG;5aq_c9yC7Eve6+4sSG}3S?YvrF<Q&>Jpp$@S_
zcJB?NV@Dk;({n<k%o<Bp09o0U`kkwi^Jg8m;CTO^pJnJcqAn<D_JvhJfS9_iK0%u<
zlG6-cFku!ZpiW5Fs2Vx!aseI5IA1_YT8%1B&){H6_%c}9X6@#tg^<%@7Rf|qh73WF
zJN>cn9NUuQ;uJCxJhZ$nLMZPv&y%>b-0YsU6(zdS{dH3XYe5U(wY%{*QlgmU3V@@x
za8}AWRz0y+0;iegCj_LPp0beeEegt8W$jx$mjVetFrH1*a}3q9ZN2*%pPVRr4|Xlj
zW_cJf!wL<}hd#>gUJH9*=n414?*8e1H~#wmAMZM&{SjAO`o&q$sd{k=zLdfZL$d(-
zCA=BKBe^+LsTd?w*IDk=XpJuVQX9Ak06Dd_45ucHh^9nylK}!AU&7m(hzCT%5lXym
z(>3iF^BwA}&?@?3DzLiPlku|ISaII#s}YV*txXGFUD5AqicC0rVY53V2=x~3ZTXa9
zd%$B{>lVz0sB&=`Aexa%(zjC5s7}1aK@)!daJ~WmcG!Rn`&yTM1CrjP_U0Rpns2<&
ze7%IV`N-Ett$OoeFX+vO>(!bMSI*`3o4oyoeftg1?U$8eHunZBa<Qlh?eMe_k0JrZ
zTYtV0$D>9Z4;%5#-|okcZ{GcOsyBq~uP5A+>3~}@b#BQ=F-N8&M#)tVT+h2M2#aJr
zV37<Eq&No3y2#c7c$IB~_phxKGqUoK^-KakbUeUHA}az>kp8vv8~W{cQA-;M^ZZ+*
zb?{63my>}jkP`s_byh?wtO~(tR37(#c*1#cwd#~hndANs|B(Q{nTmo%OH<yRzKq^t
z=<npOG59+jRc&pBqql)Gyni3Q&A7geKN1lZk?OcTw*JVWS3r*(`t#2|dH7m89=E&`
z%GzRlzVh4Nb-f0?@4N=*dhqbc2ovk~;gi=MM0$Pm+ry_{KJR|9nO_bi*n63u7VWqh
zk+8s9f~aO4uqr{q3RXoGERa7;is$k4aU=xPr`xEhvA{AcQAz=J;Trjro0m2|m)88!
zwq9G5#Z?am{{-zKygqOSD0-!d4r%ge6lnC5LTjwbjcjJ914ySqgyL+MQH-hz8z3uY
z1LOlcmJLta^O3J@53(g?13rR?goohS2YI~zG;Sa+4#0*6rCS3L5k)n&K<-<;z)=NW
z5#3urBPc9MY4w0i&Ym}B_WUtK*#ykl<k~{bK}cZL!t#+FZ)77^(b{$o3j$dIwxbdU
zutLh+)Rxh62RMr404XBftYb&qWq==^zyPv=ur{)EqKAYy?4c$HFqFsR!hBG@JB0&H
zJ&_e%Oo8ylFJTKRG>e|B+1Nq5KzJ@RnCK*sx+Ii4j4cWfXFqJn@~X5;RdB>Yr2L@I
z(QlXOE5hT01sNoQ|Eja&^OdtKDqP}BJ$3Z2E!>?V@MKud4W&Tj@=+@NrcMl2G|A0O
zADcucQn_OF5ZM~GZT4{+vzQhdM5a~KCMpT<Ow@&1L&7zAFa2wax;{lgbf>83ip56s
z>|rP9IRkS0(l5wD;F|trD(%#Ca#ku|8^=&k*;0n*kUT|;(g`jC2nLVZF<lZP+FTS(
zIQ7`I86D4Ff`O8w@+NnPRF+0$a}v?or_|KRFTf)#Sr}7mobAYh$346?p*tQNu1QDt
zN{ybBAbKjYCQb!3MNvpxkxWWPP4MW8l-SY)OG)7lj8cYazJL3I&Lz>I!3!cODt%VU
z_zZcSdOnPOSokRE17RH_M`LOu_0R@gc^-7ApQUPfXynCPAbXX_Je#VwAFy6QlAreP
zzP?TVUQ`fZONJT{QYcidiKHVin;pICN%OF(jdIURvk=BH!g6ugq-XkOI_Vph6SUfC
zDy}eOv1%Rm@YqMk^A{tBQAo<hK2}b~mQ`i+FGi!^TMx&gRG7lR!+2!RjEw6Au;#(Q
zela1k;<<Qtc)dM_ZaJDmgZO#8Y4ZScirbEC<Q&Y#O_?0mHEGkzqAR!2QI99~$x5Ix
z;sdAnvNDHtl>wFL!^d-on<V)0ZhU<6+Y7BcI60-bMi&%uvV%jpV=6WKm`>Rq7quf;
z_w?ggHWrSRf?WF6qAYhxNg3*`-N*3TAx+n=2!{Cj8C5h5ZoEeYEW{Sue!((NFd%N5
zFbQ<#_(w`$e+$?Q@He6#E=a|oVSnctL27TlwQUR3_P0F(G7Nh{-qVPW-yYQskbjwP
z2z_L2wKq)Rs8*ApyDgWe^|c4pX;7U65|c@`y5WU7X&fPSwI>4W($b5M=-e-g$IAP?
z#e;aa;%~8cUI^HR%LtQ4g1$<q;^?d;Gx2(uS&{2lQ*Bf$@K$U%P02cgB6#>&+S1(r
z^1b=-(~G=O@=zlw)OH?{Q1hAm94}6e08fw4b`-+f&Xazc`lIG=FZ%XE$*wE@CAHQp
zBN6@l%?V^67Cck_`2;e(RerGa+cupo+#BWx3%^ixU+Nw|t%(GW##8j%Si&4lUt@@Q
z&Rz9_Am(x!vge$G7YJfVJV6leq9@ANx7hNNamqaUAA|nz|Hu8QasS8Yf4ENx7S4a)
z@{~d@t%&cl>t~$u#RXKz^0O;YoG$ZXOyc4AAN|Dr2!FqOF~GM{j?t1Zr3I8#r=2f%
zxWnV%pFWMqYsan^mM3(GaAgXpE#L_Q4ybdfdC3iir<k^IimZzm!tZ(%QUB`mQZ_@9
zJr`6)q$YoK=@wV~fC6!En(gB<GLt@<1ed1lNwJ@mLs|*WIDCMY6WfQIAn{&xCN&+x
zddl>KmM#m59Nnp3b$CZ)TORyV>xpn1a3nZ9oS?)WvomK8H7LTTqY}wEy9n$F4Z|S*
zjikt#z~6#}dOc=9cVf1V9ymf3A?DL}-e~E{ged~XFMf!AOkh+}jiIIv^6br0xNPVo
z+R3yC^el3T{x$0;sk;7zRr=x<@Mr8V7pne~PEBm6C%DdVg5bQa`8H1{=d8@<6SGj5
zrfcp-tTC^j3yi`&wkNXb{od>###@9l)}n3t-CB`|3Rb@;>l%(zp^<|^;{3Q&MXbrE
zgeQd{sZtp{jAI=~>3u>01ExW`HhDdW!a-IiM)Igg1Z)Y8aB{L$VABn<!m7|<yGw3x
zX>L-_awa7^6E3aE?E}MF9!jAAnV5@03A=ZuiMioQ7XP;CAfwq0MQK7geacrDv@uFd
zN|5QgBuCGS-sdxmo)dXDht#qeQ=7?m<zYQD4IN(F1&}}eQW*5Z|B7TUOIP2$-`;(C
z^Zwm<_wnQVf4p!;M2970F?`_Ay^*y@e1w_QLbIX`BOIKvwi1LVD1E2*nTt~TF5$_)
zY+uFXIV-1u(y80=!96?FN0U}$W+keSG<BH5os=D3SJO@u<mjJLQQmL=ewsTnD(e#g
zy&@kMAtRioO5tGdGR=aV07995X1n0*EDO=o9QQJ)h7r<a={RpsBB`IEqLllXdqB$c
zI|dh8*96uIE;^UM`Yi#wgS)LpU6d3RL<qd+D4XLWd^p5l>x9*8?X|y;??2qXJB=hx
zZZ*xYoDb6#DIklikZ}+WIqD7V$6L0jf5A&)vUmc!8~pVY<g3(riuX>Q!p<bqjq>a1
z?SmiL>$d59SXPQ>V*;OmBo%e>P%yk>0Pk(l+wI+NKGIP`<Oa4DjO8d#uW;@l6BAUy
zIb60g5L0kjhQu<J1DnPI{|(E&qO?=&Zja{BI}**x77%u=3V-8Y+eN~qe=3Q`(*GdE
zHey`Ae(cv{u7MX-Uu=#cxanqnO#jRF#dfYacK3h#bP8!mlNNDV6>wycDLd5*A~2yC
z7kTfzgeOp<PK)XdGWLd0s~lJNMl`7d>BUK6IUcmfc+@IWZ;_Ms>kYBC$K)+dvkXVi
zxs6Lb*B&2nb-iqmUsew{eGu7ME;IUxy5X!M(TB&=+8je4AKn~;50YMIujWZ_AGU)Z
zudOlm))<d(7>~xs+SG@`WLVoHoNW(*Tu&y8kc8*}RS)@^fvQ{@Hn;uehu#+JOz}qO
z17tWF!Y|(Kpf!3s^gs4<Wjr1n<I(6C4~NBYG%2s!I$8cPKD~Lgz4CO?HMvx<pGv|W
zTc2!&t4Vam_y|ZXxnOf($6;xc-IM4t405*2kokNQU=TC0Zh^}?^SY!dS#IzL%(Fn(
zAZ5sN5`-r!ZIpvZATv1*ZJ`^*?qVlGK-&spnwtb>^&9O{sQ9=MoGJiSyRYtY!ceIY
zzNK6>6d`Ppcob*`XzY~TwL!X48Ky)_z)HB8AXb}4GCF`fKtmG0VuKN1$|Kn~tR+a1
zzJUc;y49TEU;%M$BOyh2Rc7#Z0lPdtnMfihyWa*wUT(<N6UfM867m#Z<KM(?zka)*
z+nncn;w^Sqma)s?8+pLX3yV$S6(JJ<VFmWKf4i{cxr~%{$Ao$^3yx&8%6Ac(8tBve
zw?7UD*DOGmxc5mtC8lZsWO=I=AH1u)#a$|2dZVL8FFWt6(fdkWHTE0TRbzJo0!Qy%
zMZh%k2V?@xKIvoG7QCv;Dz<36kdC>qy^>QDi#8_SYONQP+1u3K{^jp3zl8S-5fPId
zioOHx90gV>J0>W7YE#4-HN!sxxww^FAh>V{N^MUz4p`Na2<sMQUlNK<pZyrTG|lNJ
z#SNO5@$fp4AXXO+=c9Y|`M^_{@Uw#BV;1RT!K`3PQcj)+fF^DIEt<c@d<6)32Kos}
zqUb;-7_$c`ccOo9$pNi|1hBo~b_ZaU{NIG7piCZXZ)z1--B}Y6Hd97VN1T2B?YFz%
z?#He3Hl5@jbFdFc=s1~Ja|^Dz)6-RF4pOK?k9B|tVk`S!CuQuh5(6<1CY#w+x4|=0
zbIG{g>i<*nQ|#iCmp}BVinIn&WT4%OU0lORPxv5Ac(|H3U6besU*(&4O4<_6{00mG
z^dAYhl&GPj-vMg)A%!1Ud-rna2{rjvnMvFwDBR0DdiVs{Q?X0^wGX+jj$r=|QVr9J
zu}|Kv0lBMX`ao`$(RXhJKQwoPaU(74Ep$hma&8d2X@O;gQTO)lHxl6<>*K#p>tI{z
z&g#(_r#R>}(?Jip(LwJl8yR?eZ1j<0gslThf^wTTBE|96JH+TlkP)5GCo;NS;wSc3
z*o_*mHpy&Wsz|^3MtuJ^Sr2a@h{t5Gqep|!<GQ0~E82&2_BNIA*e?*p-eeFL823`U
z$~eE0EQYqP=@~W$7W|xp!p?+B3ySmBGV9Ug+>1}oPNKO)A?4*#FMdRPu8fA*PInF%
z(&u5^JFo(YY6>8ae%MVedZY}U9$hZ!WtWtFYt&cSu8+&jpPZyNPr_(rTeM*~BHF_C
z3Ai`$3Hv89k8;ZiqGNyiZ#uz8A2ILlUpV^a>dH_SfhhK&Ycdz_{h49xf`6Ot*!$|b
zHQHFR$;VE6bk_cV!qO4od-cy=jBxMR?US}8#KKY!?zW|nGOw)zPR_1n9ynQD;56Ck
z#gim^@-PJ(l3wxf##L$;8%Puz1_>9UNLGkVH4P`8+#uz~q>z{8n9jTLMWu&E_L)H?
z3SlN}%K_cBdTfiMnC*{8{I=MU3-IMih>l0-v~gpT6CM)CA70jE<LJ`2cW-v%FQ0dR
zKNVH$oV`OqxS{<k=$}Xm4Ryl8Sp>j$5Z2ce%ts*0V(XgikGHv9+JGKNd47IdxkZks
znlu>Owes*}UXfA{ejvh56&RfU4qSY^{_2jn)k}bDVd`W*LXM0KZe|?LitPLex|Vm-
z(IX5Bg2d>Ynqa%o%!2has-z<o$ArnZif}r+zkYdZO)x?iBT)PK`dUNT$_~yCqouWN
zkuAVP-wM6(Kp<M&VPZC^`!;(5@JsC~JI#f<=)tjxK8lR&@|<(p#DqnJ+XWMLbjI!M
zoB$7z^o^Gay<TkZZ@#EIHWRrgs~Z;Hiw(~glimIQ`M>Slfhn;i$A=Q&ZNhx6UWh%v
zmQHH%IPU-2*QlQw^~cZFURBN^%0XBOIg8XOxr=o6Y&Y2?zpMy3L~2lJ2}Ad(Yx!tX
zwaK`K8<ZoEJO(F77QXg-&6nZf*5D6ouFSLW@g-gm0=y|doT{6%EL2t(`p85t_%XF&
zIcu{Okp{`Syx*dJYE_#x;GYz4q9~o4t!m|BN-c{1@{`q#n|6HHYy!s(M-1bZzbKy<
z_uB4MZ-7472(TYasabH-5mamsaQJ;XK;e7X+=5s0R*|ucH!81C<K%++sLCt6xb{Wu
z!w7HO{Y(DDMNtRJy|5MGf_8D|>h}b!1OF!ewr`Nz)`wv729k#@%IBrHGJt5f9|P0S
z55bVimKqeq!nSU0LPWIK>vh<_^*9Ak75P!9(3hXQxj|E1Z12bdS)a&m`K?`v(G?h(
zb89N1X;HY)B%W1=0LFs7Ew5efb@-x|LR_e}u>|ey6KattbV3sYtQ*JbsQ3$%u!!lU
zD4k;!kkJO}T$L`$7OXx%BH<kYRIYL`E#e4N_OsIO8FUW{uN!qmc!tA@T+sexKep8r
zvk)~Pb&<vw37aC$=x-Td8Ex057uk-!cZ97dm7`I1H~kxrGP#Oa-IB<>2sA_)&nU`|
z{czA<17;Q~<tO@~|M0(q^}pX>{dfu-owA%jn9!m;AvUDut61f#TY}=xP<ibQgM?8b
zPa0u+Vg2f7ANlO3f?z6i_za3f(SlYYkX9(g`qL7rHfFdK82l(;S=i6ye<T_ipx1Qr
z5^FTs;fthg`S0)|+9h#-0TF4g@giLjO56yjc<g_T`pf?x_NRvZAA|qVp4;Zb8#$<2
zJKX+VCqn^d?BypSrt1PHH%4T*#kLs4u(m|(+cEY-e5de0Fy4gAzV#AhBnA|&bQ3{)
zx>8L>eLsp8AYl2BcECA%Y48PCicr=lUXSejqaO<m{QPg+pCuOlXW*&gn@~ZlU!Zp3
z0k!$9_BR#RzOj(Yp@7SvxyQghA4hj0G*^7Kin^c0UrgS37-ae6#z6{UzgxE+m9%ec
zK-iC`F7P;eOz$K}1oYm^jev?aL1&n<tDst03j6r1yF=u4$%f`8zIKkcHPmaRNH~s&
z?KHi6f9T7I*hGBHylpI6vL+~Gq?;PLH6a5g8}+$o*{j1#mc1{s5oHDOo-x~5-Om}j
zZf)v1SFQ43B{GkS&g@C1$4am%e3Mm#leybjh=JWVoGc<Y4$LBL)ABpKeHkAuM_YRh
zMSmRFSG=_ATrQ=l$7sPyn>H)W@lmL-FH5JaE_Yg57l@h%(hE$<Hpy9}4ePfr>N0pY
zoJ%`gA{fq{BDFY=x5A>q9K<!vRU!CYIam8v7sVH}CGrNh9kE>F?1ZOH9D@GEDTo&`
zhQ+ckZ_B!qO8+#ymRL?5`+a!Dq9V8SsSV9Pi~M6X_D?)vr61$osH`IB>a#m+evcs1
z?Opo(IuRtCGiB5#%T-zY^G2wUHn{R3kQ#hC0m1?-Gkk3i-gS6><0=`Ax9y$!c(Tbv
z2OksWY5MOtdkpOCGZPmc(JczG*|At^zqgSC@7RQ4CW<FFk1JkKz7P%Q!0M>TWHm$<
zY$8os9?QAav8;<D`e1YNSS9UxE_cU6{qg(S;A+Cbr%IC7K?hX(cJBW8XG+}>)?1#L
z=rwk%K|2y&O5d3t`=Re$eRo=XV;cM6c(_e{d>ns$|M{2Q{fo6TYVAyU!bJUTEt{3%
zKz#IwQb0k1yn)e84&79M<4{Wwv1~N&)PAU0v(ihnqh`gJ#6PEfE@FS;yKa0-5gA<b
z1H9PrVq1&U@dw-bZ7NkGIed3hO3HO<awJ(Yxh!gDz{4RTBPE1|kto+Bz72&1;|ry6
z?Plos{LA0txUP@Kl|6n*7FoTzl>@Ccw#G>wZL$z(9mu0U&K`UPjRd3^Sn9|VR~3v;
zsI`4>ap<|waMZQKAMM)w4PE;*&Ys72?tQxnC+1e00*{|QzW@9EsR(N?@cpYx5SNn}
zqC}7=+Nj(~^MW#@h>{zUH7zRv-Yod=`bCs1(Q4iWag?hVd!P0%U$5XC7lzzxvF)|=
z8tPz%@2q+7U)rv3u)ZoSHQ&JIhBGQVaz1pjt8ZEVM)6)VE6dtxf6W@`17LgrG1R8R
zAt1z1o*7(`9C14-gZdDpL;qA~u|-W9kPgvHbA1})bY^9F7<*pNp`(tni?dJB)>;!F
zDzsir7JeqQbYWpBE4GVv1;C*WAT}BNOH=wgMWzxSO<no$Be;OFR#_Oc_CNOXI`p3=
zDH)>p!)nlI+&JtXdYx21M+gmj8unqIZ&Z_S^dB_w$N*r%))ODw$zgy@8)VV7p?1%$
zNp=|@J=G@)olT;lIJ2CXpny;$o-kY<ur2u!1{y|z{&@b-1ylcZe_AX}e$?+9)-wI7
z!SC~5UyP8a7b;!sjIS__#iSnCx1*YHRAbVF>cJ<vH9y4jZI;gumpI*8wX)iC>x+;i
zcUrS~I7$)TNL=xk7Mxk`l%R1tXx#SsHmnO7G|5juGOm|+c7W!y0{|NSLUIPVXc)Q-
zSmEOJ;y#N0_`oE4?EZG!<NVH1KjTI(8vV+K^<OYR-rha_{RA9R|90mL2ot`as+B6L
zHD&snS-nQpxQa(FEh=&rVKg@_ijK~4R6f}qsT~pu_AF>5hO!8iMy|p#=(u({T-PdR
z*K(CHyI`S`2AmTC<XH5EJj*bKBay|V2}rRh&FFL0MtKSX^#hk>t5TMMVZyOCi)^Yw
zKtUc?ej#EzrcrcM#n~7YHPkgk24i$WSzw{T?->s6e^j}0?^QoP==_$_2Fe|D)XVJ(
zvdVRmS;0;Hp7G#*(`jLX`R`kQM%n$Zce@uVt+TUtBDI7fe8V<SRbI(%vz&+i)wNPm
zy5doz8tF>pl+)-U0b?`Ds%q;<+kpoYNe3XnEfG_g27qM1w;<YBqVgvN$9NvlpE9YX
z>{-{a>ok_bpk!3CL{-7ztOyS*D|yEPfr%F7+C&Ut-lV3^&c{*oGJ1k1QoSkDB0f!O
zcvV8(SG-KkBk|TMIBgNYt8u{<j670-3N{_szsFf7e*a_rH?Akg^^bA=L$oW4C|n81
z1Jjq3dNpChwsq7V3-1fr#|Y6$715kJbW67<Rh^a_5ddHrXgiuwbj!6k<8D^E*@i|A
zx4hps>b@P181)E$vXUGL$}aj0Kmd%M(0s@xA^6Hd?prW*;vNtsD$-2c!f!)BAIf}y
z{3FTn8k-+Fv5Z3e21pErzEZi%PQ?r=W>D$uDS0dCrkH{fh7|TFar1VoKp)G0fAa#c
z;%g?fQ4KuZbSoEliU*OyCr(zPYc4v4?Pq+NMQPSq${wsd3|TAu3Ts4T=c*S%jG-M?
zB`(G%D|^)M#65e8>;sgV7Y<M?^!gFjYg+IgiI>Epz>?E#iweca?c%T9CYfA0@t?<z
zWAi|c%fGKUw<I0|o%fO-4l`c8{MBuV$wiT2t&#n&Y+3EXkKX;K845!9^LX>e=I*rc
zqr}u&4Hhx`DFh_?8m3FZh6vr^=LdZy2fhoQgt{*viQ`BP9`hYJBqe>`Ka9WZ?#?ic
z-{n8G&HkL!%E|)pqs6T6{qg;7_vYPi<NZJHA78$H`LkZ1AP8_j*z7m%BXXHiMDw<@
z5u}7xBH=dbTTc_6{{AHxUq`P(fxx~Nm*&CoNyiehMTIM(%8xM2%J%7*LRT2gW5?0V
zj-s)(0>1(@73jZbN2LwCv!hZ@$>@e<WT3-xhkwU+_qF2f`;Y%T#a<^xZB+OaV2=mg
zatZg8;#F9|P6`w7Fj}xTxX%axMxhZMYE+(;B%VKfXJG!(T{3`8KY0t-+aCNhl6fG@
zJV$zkN*L6r0yyvjxL>$9P^Ny)9W){Ys#%*0ZkN~un8VciEoXm{TVAQugr4o5ssm?~
zeLjXm=C)gIU<3U3yMxzQ>h<)r^xfgz`;T`Iry5mvogz27Sa8V;mw|M7w#akv?YH>u
zf8>7oq<^G<AFTjptV^)MpX(%_E1!=Vw6)_G_n^OZzS^oUMBjyiiqNV0{IP<-QwYBH
zqXi+a$$#{t1u1aY!-s#YAWhD}KapE0hXY%-zpI?SL=U{57c!kIqcHddemGd^hIQAx
zHc|58sQKD>v&{qr;u-XMxP)FT@pArB-65j*=nSwu&A=i&tjHb0rOI54MY)(8_(GTl
zts(3z4d!*3_AIncLi>jrEB9UL<MuP#(uplFttc}{hbK4x$q?AsSBo2?JOM&cl3=oT
zdJ-dL;AIDLnsDXc#n9jI>qKdx8`78ux97>%gQbe22SKK;VsxVdMsfaGeV``Yj)GS6
zNDP4N^CIJC@5PopV^#Ao(Ddx6dmN=MDq1abeZHDS7EZ}knL(qj-w@i|@HsU-RcSTV
z{}CI5DX>>ce2o98Zp4X^<Uf$dDm&(zkj)I402*l;qTCCfuT*q@S1vn9MqvmfX8@QK
zv5NIlSs>tqBVqv2Qi%6yTKVLLZ!%<(xVC<Wi94AZRKLfN3wM(Z1G}ethYHmt$X@jx
zRc~zGEKWXxl+p0nq4D??hsLoZ#0To9`}e0vh`DH-76H}TE9=`fkq(C7ziBSZE21N(
zh$+F^dzxc@g&}C3!klnErYVK+$_9>|n&$ac-7HI6(ktu}X^yWDd!`&;*=-Gq#gbk@
z0Fi3D!{k&$X|MJNll>Q7f!J#$zrvI`IUYPr^%Z`Nr9y*gGUzhp`IUld7f=6_=N6V%
zfD`kChZP3MW)D?0Y<lo_wF~5&v12P=L7Yo@9Ts9Nr(9n>A5o9+s?3|Il~-W~nMQD?
zO0@^Rf>y7fse37q!o0#2YrkhOhs#v*VmI1z=fv{Nq_H|DRnck$9*}A;Evg}UGwd5d
zFCXWu)>z2ZK&ut26K_=8`rKDRKUB49Txexoca>(MFk7%I3v{2gyvnl7Ojamn#woV&
zDlZW1&i3B(v_xgy4lTv<YJcF>IT;`S@l#?FT6F~BnBp|QR(MUDvNhcPh+FL+sE^sY
z_!X(wr%6q%0M}v-@_aPuzZWI{hw0F3iDD<Qo^%pvuIk_Fu(AKOUL}(!W7xm^Ri0}T
z;hdjhwkNE`z)P|~<BE;6STn2#UjF*0A1sabnzEgFwLe(94<h+8TLodUpMpJvDfnjl
z@%{GU&4*Kj#joyL3{}>uaLEdF%{Fz(xbz%^cxqchp}k<VLIN%AiS&|#16jjpM-QgU
zJk`^4Io?7Jc5tnI*C*S{+wrMR+xD%c$}sgmuh^fGEzh$FED-}_nhuK^;hwy%r>DYE
zu_J}rb;sx6Dq8;kUFtfOK0LgCcYnfQAJXJ#V^30WLEe**K)?BEPh4RC|7^RbU)X$9
zC{+8L1S<>I2ou_PQT~;kb|xmRD*G4oDb2U`d6D-ewX3Bnd+c0^ZUhWz;x{Z7_%)_Y
zx^)5ad&F)lUTX;006~Bt$tBc*K!&IUP8E`mENTC|bbA3dN_(7_zAvI=N$#5fTVKVd
zw9GjObEqKUjL;|&{8FDy%%_U3tbqF-UqR-F-JZ6N&`C1X{%@E3<z4bSGwfjm%AAB=
zao%vjRySnl(qZe>gZ&Q?zm1|t;g{<;M~55#*O&3*%f!pEJ3j929v@z?NF<HmiYkVM
zv2DVQ&_;yjVF|d(O{{GxC_RN3Dw|R|>F_I^^?TF7M)wloP=qT)`R<_FBoBnb`irAV
z;7kl;{lWU%6mJ{-5P0AG04BZ8JN(}S7+h!9$$zK^{-iQ4^x`9?nDrFhnC&U`#y+!h
z7tB{!Y!?XgMP6@GyP!Ru5rxFLz|>86%;m~2;`+!%S@VgD7!}LTv;`cYq*R%csfpHW
zW#ft9CN$t6xO)bO1Eo8wgz~)3+d@>DLR+%B4N$pf661#QMeKMPSmHXXmFO2<EWx$Y
zrh9eaG{FZwHPH&l9PRF6*l}dx4oaVCD;)NH@Fw6Oa>2ko3u}ni&k6?)NFsnDBKJrX
zMR=+ZC49pQ=X`5_?Gkr7>(0)&kizMV+l~10iAFJvplZh94*+hM`iv{|{=dbHyDY{0
z4;|REGFVr6o+8XrKvhIYRh8*6XkdrH$hOM-j~&?>*pJ)yAMQ^S$r`4W7y{>1h!>xm
zFF)39yTnvbv67zitzC|h0`YdKMJ}-`L{AT?A5SgcAjswR37fcF<psJZPkp*L!n|Tc
z)R6$Uq~UGKPKr%!+5da8iiuT>Ca~2JPVJ~8`}a8R{~Y_NuaFK5=Ucd)Z{pzsOTgPP
zRe5a@F13$YvD)KS9^<~h`M#(Bt^@Sve(?y`4L^t>c{_<$dGPzilB|LA?(^d*$7*e>
z@xh+_HIj}LFZ9X-2<-Dird#FDjhVhiTaCu;n~&R<fhSXuqi>%?Z|Dj1@Ya8eUw`Ro
z_6B7L$k1Ls8-Sm!vCn*$&qiS^w9!V$YR`Q(0q@BmpG~}jxMT9c`#k>V=ev*hr=*i1
z>wQ?(5RckbByK{^o+5TrFi6j74!)JNb&rWUA*THa?A~Aa%8SQhz4`R%{@ux&&cArl
z8wj;cE9#h|bqR=l1z<H{<_!CE(SvgzZ*{Rxo477awR>nrFQBi6Zwt%%0@4{qIN>wF
zbb@sw3pCl@*;7d@4~A|Lq+Ix5Tk2;nT)YX2LN=l{<8}pnn+~W9+6cOy+}*@E)J?v@
zZVy`bAx+B;E~&B2TYL1ZN(`XqX2mW9)j{p_{+Bn<sT?KR3{FETNa}t-VCU!uN7lfT
z@vvI;UW|vmA@FoOD2BiNNthhH&e`OlJ@w^(uXlPYm&?@74fHyln?tvCIy;4?>D&}b
zYlN~%qyHSO?RKZq==7^r2mJLle+8=&FH$#^`66}GMNkZ(reyHd{PL*FXF?wj(z_N@
zJANp6Q8jBlGIPDCV{`<q77jCKr(kR1gk0o>!t3qAs^a9KFB)|E@mQDcdUR5>JwEhN
zr@iznCZz4u14LDUaU~fNGm<L0?Z2<kCS5e{>64B-q7UMu&Pcy{-ohd(x(6*lVvIW3
zfFDH0+7xDih@-gWE^`92xA#D$pd*0N#=BWr!2FX*p>VoLB(VU!&0V75<#m1uaZzzc
zXn<XG+pG4i5&&KIje^CO|Ni4}=^1Ki7#l<=2C%UKd>fSNvaKo-XZ(l9McjG>pjVu*
ztOn8?P-udNtjEQR&;2hLivPHKx_@aH5+b(R%4a)dA#>nWftH5Y5$0JTsi_1BQd`d)
z*?NfL52<Vr_Z&SKi9k<cknhKnn^UUCjc-J@AbdHwSL_6-0~L6On^l42lVId_cooQv
zI?Oou7lkb_M6JN^gtas>{(^!fAZit)U3@i&VS0m^-ypD1CSZVZuxY}x9Cf($H(=wS
z{?=w<;!*v>`iH;3;E79lfk7`I@FGK>&~||h7CYzR1A?FHaCY{#6h$47HX6Mgo8sHT
zZ6iaWsF6or1kFaY0v?IiBuwO412-fA{hjef?UHe<4hrz8<RBy-AYF;iH#?oN+AdIC
znV9|P37$SH^zDSD;R$5^+_w1MX$ULH)NVwKx%13b)*2H$3O?>8T8JX(ei(HDuT^bw
zDcm0L@?W+xN7Ym@oumayN&*fiomA~iyi6n1qev023fn+NB3iBuenBRY$x|V<s%8(w
zibVR+%S!P=L8P`{fY3m;q5x<QCm<9!XiC^JS(V0@D>MkPx>y<KX4|>dzocLOcgFo2
z&$z#IG(V4#?Zf@{?=Q!O$nu?e^ZPeIEC~~v=NB^CjL(jw1Jek0ljQ*9c3@a|M#UXk
z6tJ@#xs48tFd}n=R!r8Ay+kl-^M7EETSbDsr0^^}?4^XEiGpP>XzWD=#0Q1GMD2yA
z<)<lsYx!{LpD*5X=bfp%HS-S_ZnGTf%RM2srd3)vbX^6pX}bNYXYzTpoL^0TT?P9?
z5V{`p4Dp0=@ehorix#==po<V^-zMQOPa5S|bUbR64T(Ak)?3DnrznU-5kpN5VUl>w
z3d<L0D#D6M9t@9tQJ`_iJ3J6YMTBh><(h1#EaW0t4oXa?@KmzOM{1$)I4vVV4DlR3
zK$QW}QE?HtnF6*%KMKibe-VwFxUB-9dsPLrp~>D^>r4?izYu|7uakmaDycbi3}1$#
zJCz{`rZ#1Yv+XL2ZU?;nd`tAtnNfIt5YmKd!Hp*lh?u#H;)YQXf)-PZ5`+w9*(qj;
z3*LUC8qgVrKyA*7y~v|H(zM{H7E~;-c2sQmG~lR>L=C9JhtXSbR1;Dx26}9u!SR=h
zlc5O*<y}w{sxpH&Vb<DSwraqE1{~CAiXDvoxHll14x$JR=n1$-HJ}0}5S5r<601)q
zs0>wS$KrRaT7qN%mV7zXF%f)g@pkR`(%D6RwC-Y<J6F1FMDISoy?^)Vgngvk)x9+h
z5ZEOj!zIKtTjhCU|0QDkw*nd4Sjxy1Lfd)da1R_dJvRorIp-Tf?~^BDbpELEnTyO1
zS6V2jL@H#AHC!li@FGRbR-vNaNn)~!5ED$qOrDhVOPU#cGY)5N8t^)L5W}_dOv+#b
z(8JkY{GumC;mC56hxM1|G9GldZq~_ReS$uoxYv8?{kzjFYt60Iux*FnEH^k<C8iZq
z-e-x#3zS(4(#$-9yIjx`NN54jwvD7&muEnj?jrtsr~1kpYiZBKVKPx_N@qXYHH5GC
zKcOaFU{)q$NQ_Zz3!LX0DGVk7G+xrQE0t$$;#85Y5<Qvef@gg$A{L10b;K`PaCiE*
zTO-!j#PWud%!A{V%aCO*=s4=~_4oeEu>NBI`u6$p)7{7M!~Nr@mp*`U*NOX}7af!#
zovo16AhQf75!p0roROg&$4$t0i7f5lQ}pEnEX@+&A*UnD3pJ|K16`Bm9kh{c<a6=l
zp9=T<-kIj!wn<LVNlX;DBL}?61h!*7(b~)gShZ{`sVR9~*n4aZwnnatiTjz5aWNm_
z?`on=tD^7c_(8Ob(0@!$5X7o0&Q@I{ZYWlwC?ZJPbJ<kHOwgh~Xw-wQas;rSr|R&g
zNl+6IB~7uDywLZp9GV-C|M~g;MbK93V)JF{`FhETL>Bs0YA(=KR6KZGY@^pclL*kQ
zE_8A3#{?hXt1FSKGO0tL-?Psq=X(HSJu0so`e+s(TTKig#0MfOaHU%t-r%tz^%N>S
z?3-JOL8-?B+KPeOTsdU@wn4XDMSRwa6s+WQrL*)>5si{sv?mN>)7O}RM=N^u6+01Z
z>1N1$>B8f5EvwcA_Z-olm;7_F`%eyj-P^?<*K+*gC$~*`DnrK*%kWAXLwVV-Rw#+#
zgLBe<d$AW|)o$hWx**45dHlHtMal3;V4+(Qom<}eNuNIWKE40A{pWUfIsi?K@<<1W
za=aOdxG~AqdV(mNgs8%nu-s%DN0s20>tb3{@MI51ISOw*eSku5pz>QOCm#?Mg*=eA
zi#wxJf#Ky^cFv5-U}SZL2Iwj+V#O18S<4$S<0-*qcB$oz<7{>6A3M&f4dR_bXiUwB
zK<3>mGCBl^x6Knv9N*V?t*%6^pNW`3B$XpZRD4^?mC2gKeH&*ewQsV&t&C!#V&j55
zd$dxM(3->^WKT}6A5_Kt&P+5>sazEW<}8YLQ4G=|Z%GP-ogg2;WCyv=KrS<R-^pp_
zSHb=<6XHZg>GOvM&k};LOP^Kzc<Q7=-}2_OxCim{ahYg`LM%JB4l3K^I;^~)Bz=!t
zQtAx+eq2?>U#HfVdx}qLK*_cRSJ7D!rBy^}2F=;XXBeIKsPcnVExN#=o}^_wbG<Du
z-@;$E6}LDfcN;O#*n@6JLk97l4-;JYo2FgQ))jp}w7_@_qRNBZjr?hv&5FDtu`YlX
zxJQY#Ari|jusRGg5z902T70m@daN2_RM9|wG>flDA`4aXz7cVpb#&Ne&`Tu4+tT4a
zt&pe)PD7d4Da_m|2L0QpK{1WGq=<lSCu|N&^Ro4zbESrmMNE0XbpVw)L1ozJ7@2WU
zwaB>ci^Au3pYGngdqK^#b^I5U=BA3<zPuYD;4mrsDnYjcNsj<V-RjjNPUHS3jc=`U
zek%g{oru;w`QsG2@S$wE2^G%i*z?f8T%1aRthk~Nc5e_PQ0~+#5T8PjYOA9J=az>4
z^<4N!;mK`dMD;Y=wTf<re=geg<-Q5*qt!oe_Sg1Cdb~f;JleJ!yAla=NTO4xUgQ23
zX~19nU{#&OdpEfiLJ;}a$Cv3?i#a?xx%oxPKoVvN7$-L<4z3G~R@3pr`#0}CIc@r(
z`#ENZ9!y9)MDUa0y<Q_3he;%Jjb(+IwWKYiI|MD}Xrgy<OY*XibuudlB!BF%ONT07
zbtX8@|H`iaB#a(`H8v$U=4X_542$T&JUn^MrmAdmCWv3bg+|tK(&H*5$0lG=I+UzL
z%=0abJ<D=sZ*Rj+<he`4COje1np`=PO3)s?1OJ-?Fb|uVIWl(gEbB;^!7EIYbgZDf
z1~#|+*c<WlZ{x%JPp9(s{EG+IYiSEM=}pSqU{Rh2Sqq9b8@2*?jJC_BGe7_=6`5lK
zSCNosMOMm!S44e>TYXl*D$7R5zA;sRed2D<%J~O>hg&FYniuW(JmR`3>U7d3P?K2d
zs@N#oHaWQ)By*UhmFlt%+Dhen7a(J!9EZho3$fP9<4+v+zx3^p+x_jL8`>vr?+>Fd
z;*0O~R1_}1pk1&HfA9^3Gz!m&mkwmcRb*5Md9ec19<biSqz6azrw->gkpoXC%>f8P
z$_;=A@vu({X5Rnn3D4bY?)UCN9S4Aq#{+=J(9`66etenmZt`T<q#AGJyAL<0RT&?~
zYnO2QdLp16(7LCHUo5;1Fj&bhHR*MnDU^2`1?2@xx*%yiW;wWZ%nR$ML2{)sUZl7q
zDb!q^0^IT8PPEyBe|GH>lMvpEZ!Es_;#0gkcnQQLIN$C4+*|eT{?k9+fBgISk2fEc
zG3R6h``b!>5|PC(fH1F9&V(U9%$McwOXBxevtWHi<Cux7{t7X`1z4&{quf{j&@;i(
zez$(%=wfS}q(?i1_h0>NV4Ual?9N(e>P~gevYM|ko4jQ+M;}}Sj3Z|kfCJzv$|8Ai
z(gxAH`_G@?z&~Lq*scr(PD=(Q^9UXA*y(`z_p=sY+1_V?051pFuPLLyAzJ>{W!B#b
zd<THtzDY9vJ!ao`_y2hOaQ8uZ01k5jg?k|@N`dd=S_wvbdapHQL*D0XxYj(l^s^#`
z*qayf3uEktpw$0=ur2u@{`N4Ycdtg0B5+?|&tC9TA>ZJ1*9Ol<5U?u4Q~_CBG&%F&
z2bjBJ(qs>vP`D>DAIoN+!To7$+n(5cSWkP8kY({8uebl|UHH`dbxj68thhLPBHS{z
zy0m}Q1M!!R%m3_moPPHOS3-%G4@`Bs^uU$n;^h;y&Ak6K-v8(4yWJ^fxup98bolp!
zydRVuy6uW!RFwqQTb@5EH%8u&d3jc1q)uO((@log7NYvJ)n!z;^~-ceRQe|FxJeF+
zvvuQ-A=l$%>rdSwyA@=eKURuq71{Izz2x98saD3cA5>?>!xYtd@VB%T9G22~tClDd
zZg@pCieIBfxq(T)pqEbyW&7?fu$2pSWT#hTaOLi|wobo)9N*sm`ev(+KT`d23u{1a
zw?sM8?SLt6bWXaVpK*wu<9&q|Y^8f`<7HGkITg+#eucg}5BWt|KQPM;-7IJSKOUIq
z{PVy(H}pgQLDUDp6XegseZ0B~ZBH)s<>@SxC!!1*Ky?>isV*?Q_#t<&=%6$5{IS=U
z`r>p}w8!A?z$$N`m0IeHvkrfBk^QJ{`zVm(DukEM>WGP>V*6lt|I7b#zx_1+_VNAa
z4=*x+WI17k7Lw_;bC&mY=5Rr|&3Rp%4i~NQfa$)kX@_gqQ$*&weD8ILSN;$Q%JSsU
z`8gk~Ylq9-;8f%?na7Jyy?k%J^nT*9w~4anzyGd#pI7b|jpHP@Uw%S!m?5OPxX8n3
zdSQ_dD`nA(RsI@m`-L6F`EQqtx5iX2Z$>3bt+<dD6*s~|%U`MQ;o$rHZa@5vQl;k3
z@rcN4y4~FoC&x<;iE_#z5g~jyz3w)(lgr8}sYk4=Pv3Ci;R)vniEhe@^>?p4K12PZ
z)iq-i!@;5O=YwLV;q)CR?s_;mquO8Rso|$-hy63``v<{QDC#2tbiaCf?B0RMdnBPg
z5q-AE4KyBBZ#;R+iPwHOKH)D(+ddt?+1V>!zN+=->O6k`W;br{-o4O_LvjS?BD46k
zN&9S$9{jv02sPh%PIUkDC!m}|pFP*>*e0>PluKUFOA5DwAihiSE#gYH{ow|>ew!Rf
z5stiY(~noK;J>tO91Iy^NbUHs(58)&sRJ!Y`Dww&OV1WO$w6HAY|~0q7KPx+?S>uD
z9+#E%?V^Naazjnl02)7m^yZ_GKT$9wu%Ww%4T|KJfMK^m=6Qr25U-BRwIitTZ&|#M
zi3$+qBA+|Be85al+SSEZK;o{U5)dpRJpn$=X=fsX{?uPKK_G!o%I2qdq69H~z?;`W
zN6(*+j^ld%(Q!#Xmqh^{L;rs4a3#>K{gOe<1B|uzZ%?CbJ%w{3owc9|`Oe-W%Wsyu
zZC<W{N-hTcyb@*VnXBaUnCblDz_3X|g*8u>Ki{6P9`^D^cN||V&>yVFy3wryzlwq*
z;Qh35Pz9a~f_jlT5>Iv&S~!*+Fac7!@u^5^pfEVb3x{&SL>F2~780}22t~5F=Lk}^
zCVScpMs4;a3KQ<QNO(KI#|j`QnD)AWENn@Hxs~BiKo!n77lAzEg`bpXZzlQ=i4@<w
zLdS&*9t5@r*N}Fx_N;R@W(xy8JC`xJFO*yX-yBdQ`R<i`Xi*NnNt7>G*ZZ+R0RwWW
zo*qyT{CKrpW|vj{)Prcpwxc5e5Yz|>!tCB8kjs-A+s-pSB*5z1=y@QfD$iJ><%Gay
zvOSOkG$|H_l`yYO&<}f_bz%UN#Yv~Oqvs}On+C3pahi9-tEohK6JX5(n`2R0s(EG6
z0Esk^Wb|sJdZHo|Xa#6cfYPof?wUMZF>Ycsvo%b*r!i#x6t0p1BWJ37-vN76BuswW
z$K9ZDCv^KVXxxoH?lj<h@NHE{)%ax8adjD@Yl9rp#F#*mVhDP}>R6w*$r)0U#-1RJ
z5oQv#q%v%<KHCynXFV{J2d0Tjp)I2tN6`ua3qKAP9noJV=7#z>xjB~xC$g$-dQN-V
zg2Ly1Y&9Xzt!zC-YaYI3Jn_vx0A4_$zZXBY6-_W5uwKv?pg$F5JF>Q|i|db|YVqAS
zFsdq^93OH!Wa2KGFkG4bEet?>o1-E|G_*#|grIE^B|8E-%9C_eR%zQS1T4_;ym%6g
zMKdpXDu+qPUJw%Yhf_8%L>N`s(f@_SDJ|XZ6LUsZjgUQ^4a-J{=W12`B-`ZC?mbV_
zGh!MF*4>)llh4=Az~G<0))gCM<RZP!i<4Idde)`@Q6|KVB%x^`y0}S!XfL)}+e8;f
z>(G(VIQS8A35~N=qyi0I6?&r~Q{;GQ%D)#D;R@spBBu_EbQGd?4uTGXz@|9~JD?+H
zJk%uEu*2&PVLGGCKb~sv9S5Q`YLY-^7c?IGq01u*pZ$uUa^5~eHnyzP+KtpvN(p3T
zU0^TxYEd}FqSB&;Aa>grZc0>d;D#!u-(BEiy9{F&U2-@d4e@v!1ku~33t`6r73etX
zcAWk7CQlxxO{p4OvqHB^xzT!OTGouc#?>A+nIeE*6t)R4Ga)}3zMnt+D#Y$Fr-BC%
zg-Q9Fk_}bR;FDkv%D*Jkw+@Aw3AZAU(z{0?+LE$5hVkH<-Kep8=WoAm^MGrKo=j1p
z_TlLFE_9}NbdyV*`S{YcdylUj*T&O0i|rbFSxc`Spzojkc9Oc<`?dr~Hsv#y_`P5W
z9-?iuXRl%SCBiRe0d>z`W2-x~GR+MlzgH^-_5W_IZ0>x$R#9H{->sE(r1yqmN?sp#
zR&L+X7q_{c=?WWjAMSp8k<z#Y!5*k+&89xy$sX75)G^s@4$lrc#+Gq%cJvGbCnebb
z9&Mj$v-RkpW?|f~42Ng?nncc1(WumuTX^rWD_F<nd7}u-PwyW1M}u2puVH{aIypMR
z@$jrKrO-*7ob5CB|N3zE=G~|9mye&t40Y6+!I43sdLriuF5NBACd5qE0ux*dfL@@b
z%d8b21ffFYD%ki2P*ieNS^8m60wq=t*pRf=m7?G`oAu>tQc^ZDX)BAA)**Ol5W0$|
zWuqN)^3V*#gvsMy63eXui;*p`qXRVAjquwB0lmm54X@QAymnD=6Y^Gq$!QL}8Q^<j
z0<R*QtUY0oz#*(E2><Mda3U`*RDq>NL(n$Y6v|_tyDBy<TjxXDD&9|VCK=5FfmU4M
ziyzkLIi;4S)Kg-o(ljF>TSar7CF^BH5DHGXNZjWzgW$QMnWEH|tR`At^Pq=G9V493
zQ5ToHyVbFQP4lw#d>^o-@zalNxXE62R%6E4eSTwS7aBct$9nVO&kSvHP#uJfAI6nG
zeZ@EN71#7-SoLMkw5(3-N$2<L4*OL#4};oAcQ}8z+ufU3ciQ4fXa&|=8{UeAR;sfs
z@F+mkjgsPNyb(8#c8A!i<S=Msib1gbVFGZOq0m<lM{pF5!ud_h346#Z4rk!5%8iPG
zuA>JNYiIN-rN=-LS9)UT>qisJ(iLpiWnfyf*nuKdQZ}!j>=Te5JR@q<cHVB^!#I+p
zG5vTstOXq~@uTGoe?mFl|26<lg!<f+p-{AHWgnC@bony&J#V$B9kKk7Kadd)hH=yk
zvIpHxPKSL4AMN~MrvPbLRGI8&p8FioaQxs7U^#uj8vk(&z|O*FeAg|e;(U8;@IeXL
z;cQ{@%w2;D;T&knH7V5eobtlY`eOLu{^R&zclYi^kWKj2DZmub9d8^MjZ(gqmLtOw
z+r|nl_IwRo2*}u`)GoG}?T<_kTcL%qt2p|dy@7w}1}LZr-cRTmZm*M35>Xl$xe(3v
zkedh_W30QN5OxwAZUc(9z>gWHsELS5Yq*<D8n*?y1hB;rp#rx9G1%Y5N29&?b_eVF
zv5>xXIxZOG$k<X%Pk}Q;bcmJ2hYR+N1b7l$H<mNojxckg^o5%UYXM@fDgSn4eFXTQ
zxdCvm1pkwMhKW?@k0e52^vBE}i+Dxs8A{g?Dq*7aCK3}L2nVoLj1@w=o?`C{o^xWk
z5`P8MtO;)XNX7$4CC&<yU!>32@--@xY=V@gVC5n}ESbh<`?r!1ps8bN3CbCnP}TU-
z(i)?y7j?8I3OgbeFd0CEuxz=ihzOD>C9d@wxwPMQLk5H#!JuMEm@#QC$r&;{!)j%e
z2z*<KJplJAi=FItRptmQuh<_m&2OX6gql#x&Yo(j8(KI76Jd+NFDRMGRAuDjFA_wU
zd}UHlARul=3R{2$^M#`e{lCa8T$6zM0Ta&6BCAw{TW~QQFkwkWZy~j*ea6K^x+JTN
z31Es*uoq7-c}_yzPcY9Bf>rn{u#v&7X(KB(8`f5p$>#H{Bmy+ODW5dmq86O^Bd7G-
z^rfolXCViYDB8GKH`4Se_Zv3~tJ7_}(H}GTV{8zWg-}6lgUD2bVE{`+^6QrSdEDey
z`eO0%Zu{{0)BX6%`~UZJxya7&#WslnqzDnM2m;0?+(&WaiG!0q=c}|#uyM??D>6IW
z!YB_JJjY4M)r3uzAO!0&kRA;$!Z^D(;X$AP(BUCokti8*?t!>af#r!bR1&7yBQr#(
z!nN!h?!1rM*2<vVIoOQLO`Sa$=vvW4Gi6zehotm3dI>u>U(G_jaX-;DCKwk*ln~`&
z2aD(~KyPSKpC6EdDPvaL=dwMUIByf4Ww!ZXHyu2_={aZR!S>n(HX@1+v*|$;-GtY+
zR|ZkCY<g56mOmLrl|Nl;;m5n*KHhzJIHe~1_19H>Jk?S6x*9*!cJ7xK*Rzw$*b=|%
z7Ayn)3yWb_g(Zqi4>6z95&f0^{^s3pr?{mo6XL&&Yf*v8R?YDsJL~g?-e37yFnHeA
zpHojg3k#zYfRre|pUIn<?BlZjkc&yjZVc)M5It6cfkgfNxXC_lWKYcFD%^XkJwAST
z|MAptRqoty6{U&VhW(Hfrzon@C`#XoA-sscfL%E#-dcvLS?-G{I$hM}1&0nkx<Qu!
z3r~m#(UY+&vow?f7%_+E>u>{Vp=Oa}1s6So)WG#=4@!@{^bCrGS1iO2F|o5^y6|f#
z%H9(kvt=$1%2AEe1+QRMF6M$+cve<wuFQk3v~s6OVVR`w&`t1HRAuq1a)IShcZ~<-
zkIYyqpp;sT?EnbZL9uVEC?LXQOH0_Q#bnaX@+-wrEvA+@dQFy@ybNmoQHBRKzc)y4
zTPd=DXs#Sw&Lmln_T(b2R>o&aH5q^|YO9x(Vowt*dt*2|svnQWa<@xM#Ceu~ACKk-
zfZq^BV>3_gnnbZFZvS*1-k(De*8pm9RA#c^%)M)%;Ce&1kLZkv{Q<j(l0yZCNt4SD
zy<h&pBroQ3TlOJ8ifCH{b<{vrX!$%ocTb;3pYHy4_wmi$yEl(-Uj#jO9x11(&a|Y7
z6Vd%2MeZ}WvoQkU_+<l8zHi|GgFGowMi%NGsZ16_hjNKqYbC{nVRVIgut`RjktBfw
zLr6|I{>ZVev$8EOMV@V(Nm0@?<PA9qTQG>V!M3~ks!WsE!cFb9IaPxA#&Dh#HYw|N
z_~aR0Wl|)&{K8eD4GuK9ql==}kSVob2KlRrx7M+|Il~?^)R8BS;d{nGZ^!<iQ4bpQ
zpivJR^dNc1waFoL3@UrnbNX@6kPra?5p^P0APIaG)%Oy1VeV$Qa%BRLT<P?<Y;eo0
zX#OA{-+7bA3W8kiG;SVa1ymi1YfxDBNNm58P6e%&0y7D>$Aw49OdwMmWct$Kqx^`A
z`><AvSXqm}S)Q(9QByQUF`F1P%Vx>Z_f(iRZrTbf29<(fh+ormG;f|k&4VYolG9KK
zTv~}1$9smSt%`SJ5$Yv4<YP+XL6?&^P#KmrSZwrz^_YZ8f;V;SBVq+>c69yYIy(IS
ztv^EZfG|;PiqE|b&6&yKYznr+*z<7JU`xfB2(vjl21{L7{oo#sZ7(SWZ;_K#>Fz1K
zR!s>!^72*}?QzU3+^%3Hiq9#*N>FM*+Dz;Pvtw<1QVu>Tg@{Pn*;r8JkY!SjKB=v8
z6Ue%aoY1!OStsGXWo;Py+93037RiqodE7Y_M59Ci!mJ-z+*m7`IDPc#KXM_j6RK7Z
zNuGIBvg1I>!M(hMBo1Q1BKB25-A%f9mc7;SOG5NzO+mbxQ5fzl^RBkbpiz=!{?1}d
zkVY&t51^nZ+9=JFMIs6i1c>h%FB9DNCRU;(KDj90z70<dK!TXaf14Ei8roobTa)Hq
z{qP%yQx$hBGkq!;%}G!{0c;o*zzHXS0>GuJ4svHkF~@UAX6FVbtDi(A$XChMDvb$G
zq|gF&Vi7^Y#-#tPYae0!+1Ea6t&)VLfJqi&=?0Dg$wOn>1rMLU#E@nAMrokT2u^~d
zz=Enq9=wr@2s47Slpq9@$vbKAPHMbu+PL!FhU^i=KFT-@4hO-@Ju`@H<JKS<eUJpT
zDLYwl_=~!^_*fhJSX)Q5d<npBeBWU(`Do1&l%$VI4y{_d)$Uwo;<qa<2pMseGD3S6
zGjzO{M|8sFl%XH`4+NN?Nd9m+T`;&mwK#dakpz>b#hD##(H3Dns%Rk~<)%E|3Mn4W
zMg~2IsU%#<BJFZaV;x9XF@~->JtC~`f5p?JX?Y#<l^5sA5X(%~E?%FK(8K=BBa|p$
z&@km&tF)V~O=Sre5T%c&Fw#@t=uzO5fcOE5O7ewIz^bQ<fK*R(zdrc1+*@zbqw4P;
zLX$p)X$8CTbKAe0)nM|#__Ew8AN%5gt7PO{?)<V<>tyJ&!!Emu1tkprWml0*a_C=v
zwe%(3(q%<O*dGsxyj`v0d0zHOCWbY=W7jcn=cOy2LqF*XDQe=m*xCct_9V)d1R6&L
z9&55rB)PA`!P72l%ZGJ1cv?3k5vzYbze8-!e*Y)rcX-R(OYywoeVBgWQ1PDYImJ7-
zGr9^1zP|K`@xSsB8YTZYHP8Ptt?i^}T;-$XQGgp9h3jtG$@i2b#~M*cGP+5@wYA@m
zA;MJv2ys(L?GswkB>1lW0ON#74G5FA-2Dap513?<UoZ>P)%p`gJ>g0aj_ly4M3NsV
zYrXc0>zuU_L?Bk9d<$0NDy_uy6nU6MZ04lhNd!I7F`p>li^AU*)B;=fX6;~<GN_b6
zr3@-%P$^>cPJ>E8Jgrjx7crqM%6u*QlVo*klB=Y?Z`oP$sQoWv-<Gjh53x-iKLfUy
ziWY~VHOS6hVO@qUoErw+Ahn_mx&eNMCc}SLs(I7oxi=2FS9!DNFK=Vh<`^Ax@LX*)
zmmn93O@M<p8xLO|v9mVq_Xo}M+=7D&8CA$|(8$AKKVUvlA>&c&*j?<;gV#*$<MM$m
zfmO|Bi}gV>h@~@+*@-rRcs3NE@u&%P@1T3fgJuwlZ{Jqj3=kXq)pK)dw%p%sSyPvK
zsCIj3GjMV7Nla;Q=7Pof()#Km&Ee$&(@*;vLxMfXAyn9YtJ+F`Sj4zVi+bo{nX&qZ
z`6j}i#_&qFGxu+s^L`b<AxcC#E&JS2Q~L5#3>f*?FQo2@ly4!ZPVx?(Zqx4=v*?vK
zQHvc9e1cRjS1e1TAKoYdl8x(y!GmKx3e;Mp*Cv;7b%n~h^>P$ZZkNv+)*;lM8>_Ru
z5ZNHn+wl3pG7az&-BB2os%dR29Pg8aYD7&bf=1zO^0!krozf-RHl$8k*r*4kaoPpp
zh*vmqoJoH$_?O-;2v1$Ff~=32B*5hQL_opTTm`RBQRs9*kUf>4;y{eWNoz3{pdF%g
z2>vNw=Un<{c9uCE<0S|{?rr#+XyKnnb@g-p`}Vn*Ivf-RoP&aVTfBeQse(@$#Zg>~
zr2d(v|Eud*4(eF;bu>XZi<FR#6=VpEu|BibML#aG7fd$*l!UX($vHrWJrOAKPh$4T
zFNGtkx@(JMas9%6jSgcc3sn}jIQrM{d|SL(WDa8BOzCx!RTP}Cf4kEF)s%q{!fv$F
zHu<oj3Pz6X4XLi!u!QknJlFP}iiku1>fVQi(ZpKSc2Ee-%h<n~SdIH<hMZiV``-QA
z-Mj5SUxJRbGC^Tz^U`i!va?0W2R==1x1DHqnMCaKMwE%WtTX|9ERyH-xgF86Ba3*z
zJ|T09j^<4#lKDMaz7zOSry3^E$mC|MPP4n=Y#i#5{`i|DzN#IBhO8}3FY=O^%3r}>
zXGc7P+R8ow-nRa!GlPEp@{?9C*{D;z!MTgF4T*Kw*`#QK<$wTNgjh!B3E`@UJ+ETk
zv%OuU$Z~HEho$X%=G~iLUiORJUpVcmSY75tkzu$y{LA|#JJl`A5B*YYn5s|oc@qE=
zStGJT(U1$77-IKiCJ}J<DWy1x`Z87fqf6XtdiF!A2-I5)xx*eMj48lP4puB-V^nR?
zSMlzNHqZbl;>SMsKK>^DR%>{i!l4%Y#|26^^uxuJhAMkr#pv~4vm&j%cPX{nFRQ!H
zX3J$YYVW^0QKOC=e&3`={RHPOUSO-;jXXLw^0AiU%9l@TJ4)`y=UWvK<%k$QcKptT
zH}I69HQM7HKPo25>Wn9wa>Fu=AF8=uJc{!;>AQ*Z&ZZ0u-9(Apq~N$4dE~SHi4u_m
z47>^(!+prdcK<ZK^+c?kFr*c9g|h9x56=AOq+8RC9=9wwnQ=M{d^;zkp0Re+_Ra46
z4wv>joHa@$<*KL!`A{0AA-j7d`N2%31#}7i`~IJ<VUgQ$uS(G<(jY?k4t^vj|FmPc
zV%63~!kT#Wn69*U=Q8WnmfgkQOv<u;OPIl!2jr&Eq-L`cE+u25B3gT+R3^4TXiP<M
zU{)Od`rP*V4##yqe5ba)Pxb?R`IB-M0zt%niZ`n4{|OO*{>MWRflA)?-?X;-fyl%j
z*K^v;#L-!B$7Gc_>`T*u?)dT(7Pp8q`3VODpgYQdzZ3pAecTj*GUs~TL`-nd=^sCz
zMcdwcKm?gcY`DX5u?wyU=u4`dDLVd%1=9_^?T*=RdW=3hSU~%?hJ|Rzog*K_=lV}f
zy_5g4Q!!p7BeZHR)N%!|G!qboOHC@5JnO)<<8mVrdBOJ@<sXbPSjKML_P{`r(d-EF
zz?sDt=9Siz#KlHQ({QXWM8UZ)YD!OloTN`*N&D5huJz+8|H7n+GD&fqsIu%>`pg~&
zR;5b7tz=p{l8Mc&2;T^-;Pr;+N8v;?^?|R;;%<uHB<HeBE0}YmC{bhrcUyeEfhSs+
znzC`m(e(+aL{+kx9A~?O7S4y=sQwxDeZ#?}Zk(3hkJECwBN->zKX0NMbI7)o7Ig<&
z7GGQMuftyJ#^x+Q{jR~+h&nWH4?Eb8dp9dsul5oC{=@Em+}?fs_|Mab^Sr%ZZMzrj
zVL#if(^;+&XO(`#k=`DUENYA*+vv}iQj*qTc@wbm9@^-JlVWhtF-?7$MMV_DoK{=g
z8w9vh<|Y_!<CguIsXimO1@!!WB!dw!CLmwhFGPKav;=@#vGj_D5Pu!uRE11VETaW+
zZEn80+nP8rr0OWn^P~(=0Ivglhjs#yX+|Uv{|{QVTviIbo2C4NE)gHFjmqRi+KO01
z<9<?thL<qjn9ma_OU@BG$|($4;<U~;p;>t^8)Q|F1VAUUB9s!vKl%;SbrcaaIYPNm
za8{y`JKJ-H_&Fe=HU=flV9h#o47;WwqR_mn7z1bLzGNwquA6KCEQ;66;*P|ZStoZQ
zZO~KL!qr@5^j<(4SQN_aSZ>5$`GI#HfsF{i6}B!QYAjBbj7Dcy?IaG4dGV59T@<<v
z3(ZzSO!VDA@yuC^h1`9+!oaelvegTUBW|O_5Q3r&#RCc;MRq-YRH!%&T6FWMoAt}G
zahs407d>Ir6S_t!w^9YHkyKf0A9`#S)?b2_N1Vd{@2@<puk3H-=KrMXw~dgU0A!=f
zIaoS28qh8jC6Fi^Wo{9|mNmv(u_83cJ-gr!sXUa8cXaR{GlPEp@)ObSLP~2ITI=<U
zqAp4xNfb>V287O{3@d#>klxB^1yb*rtN>MQb}^))rnBsgeTDh}%KHqlYYU!41epcT
zH2Brq0Lk-CI9ZRmj#p8vwziP?rnSsU?=s;a5*wYf+D)r|Y@-nJ2L*~HfIE1o0jpY_
zwS~n%Or40&r-GBE;BQH?J_|TID~b0aUp-KiS#CBIb9*jX3amT!RCn467C3ipN=3~x
z`%(A@KKv4S!zPq|I5fm<P&@xtZ_%u9t@s)Nl;z34{FPG0BR<Ft!h%sSa+;7eS6Nac
zkDkT8!6LUj+0tghQUfz|Q>LoMYp~KrIl!xEu4P=W$q#KQOX04|VZF{piZa{z;vqEm
zAGa^#O5-B?5Pk?e0o92?IwNaX8Cid(Tl)_xUO(#3$Mw4Pp8$k)I;;FV9;-aZs?@Op
z<#7k{PI#rLhn_q32fcXmi)xSS<?FxBBYR$zdpvsnam7znH7NG2KXxfdWdbaowPcFl
zUh!$#U2KBgV1ph=H&XAS8=5-INs{N{i$|24liAb4;;IkPMUmZ+q8ROM2l^gz=lLql
zEPzh%&&tv(bkNavznyY#mmF4+84KBrUla2EWf}E3_^~N|uztz}8^(j*{g-~MUx(@F
zPCxGV4}Jy4lG4xFLBGv<7iN_T%iZ?JpYi<r`Xn9q`v<3gSd_1u-^2QLcpwBNLU2!-
z|J5^oEBoT6_(yV&7>5$9O=pen>R|`Ze(A8ke$e%UU=Q$5Xv%t_`wROuI_zcc;KgCp
zoSpNg7nhe|UkQy_uI@|o$H({Y#$VpQ|MYOma5a0TdokNBXOlamv(ZvQ91~9nhkC+f
z4yWvdyupJNfN~Xt+<+>mqSz`#S;9L9E7fjr^&KaXk{~4M##h?MmPxBg6h%@*DZOC~
zM_G{8bS?)Nc1a&Di3}$Q_MK#{$>i+~^G3U!tPC8_JEh{t$@%w=3+4aEqq3f4Il}wk
zGO6@eiH|_rcB2OfTJg8Bq+QfpCyfBl5Lga*CAf+$W5gzi?Kqr4-aj71!i_yC2`K%u
z61u!Q3BaJ5p*rF`kcRS9&bQ~8$jZWm<y&eG^+Zz;0g#|=m?S~i$hMmO2un7-A^s$W
zXA)_&n<v~Lsc5OeqbIx2^y0mS-*4vI=^8?em5O1)PyJBy?c|8|aE4d>%TL92L0$0l
zo#WX7$MZ>Zvray|e|H*DIxXE@(gjhZ`N?rp63r!JDqM^|6!eiaH<|>OQKlZ*w}pX1
z&?VWzPJ~Y6B{6kW3Cm=#rd5@BLW{XRl^UR82^B+Llinb)EFhK<m?_yG;8(j6jeC_T
z(e@e>2I(Uc9P&=6n0zJDeKN|%K@w!qeG>I!abYy$rkkWzR8*6WwItAEMmAntyFxVg
zRflFfXNYS~UL}Ju)e4@!#ny~=fOvrpZO}U?O$#sjT4G)u`d7!rxGBu49)g-r*J}sO
zgMYeoC3T~T*~=dGItrxbpIxG4>D|<zuC!lXA5=y&Z7csR^M%ManqmESSZ^sOYKxt4
zLi~tD$3MF$nU$;8mZ^iLdfeTK58xyny!->PqA!Ey%iq=WLOEanWRPnq*a-M9vrFl{
zzttk>nQb<X*>nv{M_M##9&*^oG+`n#l19^WnrAfEg8*@t&clTl6k8011kCtoMGWYh
ztY{|y8s(}$IiOYrIAIqTCIUyIF}*Op{`|=nqPyhODGTDGDR{~V)NV4Wl|A(e6=IAE
z9L2yMDJb3~U+QGmH0fSX!;Y~LEH&>6W;xrtGlaW?n8@i6?ev({aqn#;r9&H*J%*HC
z(tzb(^jtFQFgfdnn3nb;>L_b7RM-&|MaOYR;n3YP95^D*afPqGi{PhS4o3L?X;H#N
zu_Y&2hKV+$5gJ6DWGs-eqDJh_S)rn}+zCw5C$MRIlUtrm&0aj1RH;yot_q;fX_(lS
z9Xr+HQgbWNUoAu#SX)&^KSuBi=vDMTh#F*jzNHH`k~*q@JJMQD!k4b;a-d8m`qm$3
z4;sBnr*#R0L0G+aRW@$B;<di!p?~?67}J8M#|ApPIIefeaw6MnPJF-U+rDTX^>3Sh
zIqKin-f!#T<XwArcyiyXCuhAw4^Q^K1j(iqd4l8?bG-@4uMb~574`O2@LqR32Ki<O
z2_=;Vm8*Mwe|o+TgB|+071xAE(PzIVXXh3Y_lG{$l^rxZ+O74&Fi)?;>{gUzy+GJg
z(`Rv0_3kTfB4QO!;^Q!V7pZ;0^`x)9*lR%aFO!1&>emNF4Fuc9h2o{D&#R&yKrsW@
zk6|}sq<I}yC_&t}R3mp&<=(6Tlh^U(6eMXr==G=fyU%a$Pie5@ov?T8k~Xu@@0Y5T
z%9gS@AAQ#bv<VCz`dDVja*JsmBrUFsf{aQeytiVw1QRY#UW_|D$1F&wIf?p;`NF^a
zT`J+u5?~86$Zo>~4*^^7>)X)3{0))5tLz|iSj5TI)Gs&^?XIFMXR*qKT!RA%vx3wE
znIM9vN(z3@*+&e=k2tJSJX@vXS9tl#8diHRkJ=}D`w(9_lgDXTAc;u=(j}P)r|dX0
zoExklJgh>{rTo-I*!?8;`=k_nMLXDxiHR5631}s*yok7GV+w2ToaK{SaB)@wz|>S&
z^nw5zgoFE6pZlY)DDGK-32$y}byXndibnZd!tU^qP~D4BS;J!%&8Ms*2bKKt7E+To
zk4n}xZ}DPgC7zqaYch%Dir@(81bJ3SJ#2i0u%zhWW{kx-%Z^wGElp{sm@h_WDGJWV
z4QEwh{aus<)5a^Y#z~73Q85hjS+V3vp3_Q!Q1NKriBqAwM%;Vaew3G60ep1Lb3wbq
z2ScdHJuS#PKEWKR^t8`4wPlfq5U!VjTW?cUifJn>N?4|M@!|#TvEpmU)nietg+2dO
z1-xd{Q<I|=sh$(&PkXZJGB2W0XZHyZKrT+(G!c?w8<Jp?OA<3^NmV#T7GM6#K!M8a
z&MG31V7{FLBcXAr^{L_@L}PGJ*6#4(L{sUx*_|F$Z;<BUu)gb(_38ci^yb(5_ouRI
zbM#|X-U{3Bj?xS1_(?gLCgqe_NNX?=aejE+u*QF$+$_~MqU%lR&US@9Rqe=hz3K4G
zxZKVMmkf5|;qVIk23CUcXKKG!)YEu;>)Em<N%{Y>lD_5jY_JpMcKxCq=>$`%Pnvvy
zJF4X~9bw&ct|t~DcJ{x7l^<<*zP8h#fhtB4h8hlbnVsSQ`*mxutVfh<c)j`Uw||bm
z+`aqzsii9aD*Q&NvIIS_>=n7zaO`2LU<;T1GviipKE<U+zei_WEfT-+SIr{LAPf(m
zm3&Y^rkp5Lij!f@E9wcm5>X+gQ#@QNRa4%qXsS_VMtxwsg15uAS;Z~!NK&~#nLM=z
zTR;SfsA7e1LULuekRmffGd?O$7dE_-+;o&Zy(bANuST5{9hH2PB9Rtx^@Fks6sa;I
zpu$}#$;@Pk+Y9E9n$MU+M2%<fxhE9(rh6LJHFm@ilSS-?F=<Bva3pKC>74N;D&@eb
z@03y8iJ@KwI2?s}4~NkV$FbdtU0~IT4eg32TP+y{wg{@!4Yse1oP%<@;Mp6+axg-A
zAPxklJV0~W$ciQdO657&I%Qo!$cQAULW6U=(VN}w@pKTkyt+{!51M2_8)Ouf0F-m5
zkdiOs)N%26>bU3>4qSZ3hmqHL*DrgCK6^ZJUOefpfWMmwL%=xp<V|rH*G5|zDF|hy
ztuk}VyysO?Zo#R#OF8vKx=;=AGO_=ps}%c97#|(GQ9wqziLww!t7O7DDTN*MQFTu@
zY6Rqalr^d>?PFuc-z$41CAkeF?V^WS@wrV>--#(zJfSWaeP${kv<_}u^9H0$72lVm
zFJJD)$K9Llix?u?Jk^!VMB8>j(Ntj&@k<cA59x1|_dChX6r}+-r5KJjQS2_c=up#x
z;`C+9Vnjq-kSWYN%prQwxo!DGSV;<p$xbEIL}sPOELV9^wpiRHgwteKab}T^uhq0!
z1<w?sYrIhm@<LRr^sg}Zr*8mpl5?u;64+ytuY{vOq??_F7-k`qbrBTPeZ<-?%Kym3
zg<AArgBVt%?|y^mCfm1I<VyUuYcb8SM}Eu2>cHLI_I`Z-xA7nEKR!OZ`S2oL!|aI+
zqqjUZQr|g9_|b`c&e9RzCJ;&WXmhmY^6(jGF>D9b70(Ori<E=pql?pxZtKrJ$}71R
zVNFCl2J$XoC<n}<1Kk4utVxS!2E63K+BG^UgRtv2iKSO)h{YlD{vqVMAG+shx*=^m
z5$9k8hN?2;oXCEt;%@a|B}WENXX<%-jbgnh-|K4nps{QO5l0YjtvMe&u5o1r5CuSW
z3IJFER#E^b20==+cJsTt6_AL2xjCz29WsWx><(*)<xbYwX%^+5X!l4%N`OeXiB-Lf
z!ycV|a>_Bj`iKYe8gL)r{gX+v%BUs3$0SCFqLzTB>jqvAy!`fn!0d+4P3g9UC6g|a
z6plY?wTki)LDOfCyb?6m#Gj}XU5GACE<AFYH&E_uTv{7QRv54R!Za(cL<p1CYtIn^
z3EXD(5-`&v!U%DuC*JsWL$XJB)MP*=JQOufz|ttsa_o`NzNGip%nxdc;(_X@B<uvJ
zJc`fqWX@_`o^Xv*&U<(|NjLf^i?x^_^!GYD@ezFd_~uD@z>cP7x$9Gtq_XXDM$eVs
z@N{~0hQk*#_nG7HBzX$K+=^_U2t(Sn#!I*9jy-}@E&kPqiYQ~TGbd3HR)}^|**bb;
zW)%f<Cwf}j2~fR~rb|`M@mb+z;--ioPnd<tTT!G20FMIE1bA~j$MX!+s5M<!6vMbE
zUqA*$&oxS+VRz<f2g67ab!e$D8Ui??dj-4-V>ibvvJWJwhE+D&#U{vvaw}6!n1mf6
zOd@(ZjO6i&+9Yz`k&6>SOWa6|ES$i!DHiwz=xB4`lQdD#byFCf%tGY-7^!Z=lSgF0
z?9(kF8no!qKZElbNy=(%C&M8*0NNH?O~VLReIP3kGb-Om+Izh<wtl_;aQE@kXBo_o
zN0*1T{wqfp?31vW1h#)A!>M8_=rk>};0P(XS!;(dPymaxJC9WK&p!OHe^7qh5st*L
zAc9Wg52Iirg04^wqhnEs%A|0aBnJ=t?v0Te<>^?&$Dt@0cvs-<i82`#<)@e(XE}2}
z+l5n2K@I7!2#hk=dzOe(NN8Ovdxz_?1O=nAbOVrYn65Cn&5LYqeD%Fk{1pKPMBa6V
zw_Xddd?ukYY9R7pzY+=i20F<iwiQ$zyE<v!0h=Z?Hi@Su&$8fpBE+`ly=VKIXp@`8
zZNq(rObX%MxZMthzKzn36+LfiyIBGf@l$i(d;a+%uHG&6QT)PK)@}$-!yI@8j#9&X
zn0nj;v*<QE5sp+moNWpi&`pHN>=Hm18*X@+1XmS>%vgJN+PHcVtu7bh-A(@g)8gHO
z?E7&>oW)}|0YyU7MgC?DQ@Ds9gxlam&&pYiNH5H6|8eK{n<$KCusH4!(||1e*_Ei>
z=ig2Y<Kf=%gmHQ$^M-xCn)uIJ<kf`mQ1gG7Q27c)T}1e=?Ek6%XU}w&!RM1YzE+ye
z*Z66s`Bnc~f1h5Fz^F-*AzL7SoW0b#>Xo(AEfxy#&L2Ky^tk+^3Z>d8;Xja=zw$cX
z5|5`tt$KFEpcJXs)+d+KS?n<rXF0rc{$uG!QCOv1p8q*rCU~3jgUCG2{`{4kqJ5};
ze!MW$r&9jBp$?*Q?%4^)eG=(`tcgo}QjVXOzZB0|$Qq-}(__z9xah9)zbTfPAN-t`
z_OR%#bHCX2DrN}LUCR7m6|!5-{ZQ(2vt95X|Ly*T|M)Ltt$aI5!ad)Bf23)z|4Uo;
z!~0*icaJYHvmTg1kVq!#-2}=~(-pB<5lSn-G&8mV_f?~Hf@KACqu`gKsVM4RoCB~1
zJ7uw`ALlE=o)<((_6t$*LWg8G;_%~GtQf9y**?jx5wbWfXEZH8K=*>pOQeiC!&ZdM
zpqP|~ya%{uUL=%>X*1$5F(n^!Xq5%h1e>f%%jISA#pGW6;_)&j$lCTfBNBmPhE{Ge
z*~TP;IV#fA^jv~r7L0Xdb;_gCR)s5+zy=u?2-iZ4>m>U|BXAdpzOtc0ITBs4tTdnr
z5>h@IBx+O+KUzh(5pHvnCq&1E_#v#%a&`iZ76`G*l}qwMBCv&ni{P*AFZj7k8bV61
zg)Kdcj>?__zH=er#G?4_7L{mYvfE+XATJd*9MO;!ac46Y5T9Bp0K84|M)WF(<#hQ(
zblM_6AlR=|mn$)5*JYULq(t-%SHz$|9&ZQ4h3a4ln_sh{5sRW<tqT{p;NakfW^Pt`
zJh_Bs-aT6tX>kP$&f+(kq8#{(r!Xr^^OjI-3N3+-3qmF0&z>-Q7LcBHjs`7Gkvd%|
z9;%C79;(JN(TVaA4I>g;B{mlcSCLZIR#1GIu#aOm%L7iv4*DvxC2Wcq!b-xJkz~0i
zWS_>Bi44OVYynz8CWZK=w3slB5k-D6IqXc8&Csgb*ue9ro3Y>$a50Hfy1*TR>Y~4b
za<ZXrpyR+9Y7H`ztt>7wi-}8oE^=PFnQXaAC^1BdS%c?U5e)$`eevUGd$0C4o2l$q
zwWq}rzJz2iGd$~pS5C0b*+5sIO=)uRGmB=D%~``qkFUZQK|i9kM@==*R9BdkBFyLn
zpRsz#)R;8~vYU+c?fq6n9@;|hGZ5Lb?QCVp$>Nsi#+&T+oJap-PxH!3vp+TN|JYMP
z`ue%soh+W!vw;7rHl&||Cm8C=-ho0l955*7)eEsIb<eJge4sRrdzh)KhX<<TlXzi4
zvwrWB_H51H`lQ%XjeqZxdWx0rc+zUkv0fY>P9=-#**C<KXM*2_4*1i0_=}t?N;G=@
z<@W0N$;*Y<&cEH>0&v`b*F8>Tso(pgqhxu1>67aBJ?LRS9p9f4rgia9%nWc_gsWWH
zUJ}7sZF0UXKa$Nhq3k7$LUaHBK>>1Gg;WAZz?>{AMDruiXj)VxD(shs2W(Yag}9*=
zyL$$NGC_{<g~M(XI$cqf8(C}F;mTD6(dpQ9WP8U97e|?jl#3^0`G#G(O;*>Q3u(W;
z&Az$~a*E*FnZ={4x(^tTCisHgr3kU8zxpr>7b7q&$kXg=rC1uSqGI#dH5kNGc7uSN
zxGIP;hPnU$z~bcP+h1e<Z4~Y!sa5ciRUt?x51(AV{N$Ol>T_hl0p9-c5RLEZRoG+S
z4>0wk{4PaN6Unx-Od?|iz_F=i*OoFtTdjCN=R!<B>^;iZKH!cV#O4wn*c_n@;5B#|
zYzfK~0G&jnhCiO)$k(Fx<Kw6IAK#uXM{^MqX2L<1NX9vnGl3j3q+!}dAp%k#J2H;y
z$fgEa><4)xaHhy`DhL{IWSc#zxZKc+I~DX<SJ=^mwH{$Z2@)9@Vx6BO4+0TrI_M}X
zwgNCW{Y&8^hG_g_#I}wY$)ap!N{nM$NtJJb!L?-+fRz`Vc<KkqlTZ9*6U%)gnpkn=
zr9guCBNI!puB;5AL%_!o31N#WQ%p{%PK;ymX~OVJXp8^<kgX<L-1zDxuPx|mdqL})
z#2z6Lc9u>hT}MX`Raxr2{Eeg}Co;5Afy;d(yR3IuQXp-QKA#`#WjflG{Ef(3x?+I;
zdDDCl%x-_zMrA`q)GhfTO<Mw0Xc)Z%&BG!XeAz@NAb(zgaxwKa`NL@z@UX0la;m;6
zXD!RbNI*lhJTJ}Rcx|4A<d6Ayb;cAY$~*?7mbPhj#jPLj*XVM>>&;+N=&5s6Pw;!V
z=U|S0*oTz-Vx)6B99ZI|U=%970b@&pEBdk>G`#YD;f_ZucaYJs#WO>!90;dJt2fJc
z6%Trx{ml+na6<CdB|IIi;nIha=TBNx?*GT$+cdXvWLvv`rQ#j45S5>m_0Alaa6pe7
z!GZ6HhG<i_A<0*i*>Uvi?|#<K0s#<|CAa#V?h_rBi2_ilkIbyh{jv61qI<MfXYvg`
zm&bK7kH@q5tic@fi}_pyfPF&G$1^(3C*KBTIFU;e@t-;)1PU4-@7{hoi;brH$!o2V
zWLQlqB@9A0m7aj>U$m&G9lmHYs}$p+%`6(w_N)}H=h<!k$FXl8vb;yr&(U*_$?*=8
zEyBw{AaT-^q>dspt-x`-7SYjmnUwcrD6^1g132%K(qfG5;E!8SBG#+q*?Lf+BtTS3
zO*arLYB6n(RN)AZB9o=rj%nU>S{?zZns0HGC(hE>mp|UW86V&N_8#1JJW4Euk`D_E
zsxkn;magZkan1vgsE+Ue5^U8CF|}JDTn&<W?Kmiol@QSKNR~VeeL1cN@P7|u%TJ0P
zDA>hFs+yom)y+>$<eT$ycn4+#Dlno0O)&UP;h80c6jgsILiA9Wk0an%VgpTK8zFrv
zqtpJDJ!zyxBo8GdTccuv1Sq-)8o-eRyBvfIL1h(_f;w;j<enj=<BOgTR2KzvWs_87
z)TcH)p-0Wy3gYe$MA)z6^lG!}x%2PVM)ZF+%%7APh=1j`OMRt#Zj+p*OWo7Q%ir%m
zjvs#g^+mio9Q@pZeO!qV4T8D!@~f;sh``07E(wlp%BqVZ5JB*IYipbe_*jK(?pnjx
z8(adGvLrKg1G5kdHXX_dBY-_p((vevVv$48ZoUaZMlH~0$jT{0r|)W7{*u-zDZ|+Z
zjSxuX6-p)IEQIkA#0mt{wC3@pw!j<7BcYsYR=E_aJ1k!#STB)Xh>Z#c#!)($pqhcD
z3H2An&Oru@L=!c~<ewykzH>4wrGZDWXrwGyA+%|LR%^bEovb^lHg0_8Hdh8j=*&@t
zar)94_eoBE=TO5$TIsu$-*7l*rvx9ISeyy^BbmXI$+@<)rY6=|vuN5JSMZBXhCjt6
z_~#;oKNrk6#>os!oiqSpNlNkxYK0K5S7{q4eK~<#g*=t052mDee{l#VJ)DcOwPjf)
zfHqF93B(|Y2Y-ff&lQz?$D&oKh>x!T!Wps*sYPrc$<u*ZnaZTYMj->1s5JmM9NilT
zM&{NF<yH5iBg?H?yuQ`m*f4^bRvuJ#CSOre`kp!rIJCLk!0drtK(q+vhRCf?HfyS6
zD6o;IM{N(<wto*wtLBYrH;S~_MLS3<M-9E$Zm3^}30Um7dyOZSoLQhgL7C>BUa>BJ
z`~J7_;qLvL#}_~|M}9`&3=3cj&$bO~vMsyw^3*PeYaY*CesrLV=g3x7j+8qlr7mi{
zWk1iNHUuh7^*KE*31-@j-KmU|+5r}g*N7AvSk|F~4QUXl_M$zUGKe-+@)?`ibNtjC
zpl1aY&6YRJ=#wT5&u7ShV-tAPf&^zYS7@0;#zhs4;A693!ppouu_kFyE}@GZPqOe}
zY*=%Pgz}ja1rER{YtlBc(XywEh$;#u<1MwS+_6vyI1bkBNj3u9H*|#A4zcxY;}}ll
z%HF{y&eYHH30eiG+}c-I=a@XR?bRfLpTpx-g&2VO^(HN{2SXOg8m20voM%WJr?xus
z1T0-erKtE6Oa;&xwfm@c_dZkiQFc@{<cjy4Y|-EyJ@k%ln_h<)eK2S_)rLmJt$R;j
zF~$_Dd)X|HXG2!aN7jXMyG*=kX`*Qpo-AN@<=!cSI%Q{lS0&gXgrQinHE)Rko0$Bd
zjBuprXy_T?rOQ&ldMg6b;;<4q7a*B@*1dn+eSG`-r?(&8pR=0$65KAMx(m~6KWoV7
z@9vp3_!%6@IsoL+`96~W{Q`tC0il$W0tm-ky#z2ve?@LY{Z0_06)OM)w#%?C2A6%K
z>rl7qB1J`$lR0C=i~RZ$EGb<^tJ0SbAaDv)*PPMsd+@tIy7RS^@xYv%zM47NZ=MK8
z*&iSMOTXD4H|>`?;pVyH#DO7<sNe&6I0Uxpab&9=B0@mm*ZPv90W$vb;nS!6i^9v?
zisMUM$kU9>til0=Y$|YqCwWjB|9mjoN1#V2YWipGymNqsp1Q*n_|PMJ&s-;6b@3Jh
zSHFYS*e27iz0%7eeZ%Y;`Ox8oD#-(KEc$r0Ynt0N2h%C)!-MJcTFdrA=Cjsy^v-|B
zW&J4UVft&0$3S~mF=IHoz9s-S$VaRlSaABWUHEy2mI|Wa{8JBJ9CtI=1}C36`xp)f
z{Tz-$MF1P;b}Yn;FPsqd_m6KO@H+J~;;(BO#)kDR93o|R5jQ@s58NUNDL&b$C@HK^
z@V<vOuWfPz`q~2kK_H%*wJxk_!k2*<N=+_LU^cleorC8Ro@ja%F|@4eCNCzxTbByB
z6t|N40F$t*ncFdJ`^nW!@i1}Ad$HnL3U%><Rctf6|ImfM<PQ`diGvT%I;@}hz<um)
zMjzmP)EEEdu!;|PkAB$Qzxl%+u@~C*f`Ao?pk*Ln7wIMecpd71+F7C1tHSZ6_tEg@
z1Ujl1E8)4BzT!8xl6`umdI?H&FWfSN3i82<9~0djRU}tDQrf~#o^BE)j|%@RB3`W5
zC0sh~<LS-k$t=U0)S{OVZPQFdJ&Cic>XndmgXmnfCy2k}3CXn)!a1vO56%vrT@Ids
z`KRXxbe$s(^ZPmzfHI33fX_j+qrlnYX~_O8V*VU#8`cc$#}EJS{qEEF<}F&w?_OY@
zvr@4lCy0~RIKGAmTos}(VE$Yq`XZ{Yyb9Y>u<%t>pG~-1KaiG!zV+qnSg42E6WEXm
zwSmTnj0?8?Buz;tt7&d<5nYoz*Gtw*V5TP-Yftz!bE4R_RJ_ch@ts@d%Xr2=K7Y35
z^7ps*UT1b($`YbduSM*bQDCcDD8&NJkB6(w9L_JQFhuBDe<$)k8{TxbIUG39+{)qg
zQHm0@Pn*`w5hrc-*|J4B<9wQBmGw8RATYmmS9XIW48C1+To0ilb4Z!_vp^sAfSVmx
ztHO%rWcGLX`dQX2*$Zb23u4!e^Sr)m_ENS^FyORHvsfB%$>-9Zx1R9MW11h~`>nR%
zpuCGS>~A&eSGqu46O>6%x)?}l*y9<Te?qmxMO7M6;sD7tfyz9u?_e~V^_WtJ(AN9!
z@8I|meF$-VN1v-Ym&`_6-+AkC2(wkFUQkhp^sWddBG{Pv8*u8B60;=0hCC^DEu>q2
zOXk-z4#X&u_z28NZgr#hv)*kBRIuj7f)iGtl_;yTEG4_-oN;6oOA$kb9Z+bs#Z^{H
z>+cw;|KG>mhc_>j<f8IWUYG3;(zS}`Rzuy^`<lBE{w^pG<h6CauRWdivAZQe5N_9>
zP(+t;Tx>sUx_(d@Wwz&f)F-XufaKAX)&uG~dJcL9LCryV{uiJR4_=7gflLp=H)}_I
z$lQAVAvgZV{o@6v($1x*&J+cgo3@adM2Wb}_8?3m>zF5LfGr^t`<$Zal7uCchDI^R
zUOi4^o@AIZ|IIu|1lOf7V~1FFwm0Esz+f6JApuuZj2x?hGMk`myp8-t_0}yYW~KrU
z;E7N#LeAvx%xRwGJXQSZs$x%wG5sA38%d;?QTR!M(ZNG*NjmGxA~o<}y+MMJ;v8vy
z*hyf{$rO(q-Vx2uQ=!~(wQ`D^KIPfIpTz@ntnWA;b}>`P%wBW;8LI$ht6+lB3E3+l
z^Zph*evQt2T3{(*>Z&3tTGTOz&gyFtOvGi`5yA|M0By`cVqKn46Y+QbWm1B7Dg9gj
zcsSnY(cg^6JB0D%Lw`3Of2Cz$9b~UU+x47rQ||wh4_JuNsxI%K9meZVO;oRoONf=a
z6$svjSn}6=fVn^N3mu^yM9Dt?C;<tCcx@tQj-akn>Rm;y`%+wJpx8KqXO`&=W)h;z
z0#qhg{;fX=klN(a*^wII(@O4Cf#Tu-LuVZUnoGI~A{~5@s-#hjD%+{z_abLSZZ9a`
z1b`A5^Xc%8dPQ;U<<5GP^hES`fSP^HfMW(!fF44Q>jBS_vIsfnx^>bYObCLGzy`nz
zi2%m8Z6?XDWr@mbNunn+7Hy$o8KQdD=4rHf>Zoe2d40#TQe}CRhNP$DZbau3z0H&A
z?VQ>mC1{lZ<cjl^*sB&i+tTW)uX6u%@K1An%#IL20>0Y5T#=439)9lseCm7q=FQtr
zyN7evqqLsRP%61%A!l)zM}-oVydqaKYm-%QOM#)aS9G{V0Zp>LK9X9Bu8AR{j{PFq
zLa6z6E>8jnAb=bS1I*}=98eYlYo~Bz7UL+!cvCj5suU8NVgc97xDvy>h)xfiW`Prh
zM7st^28aulC^g@*KN?b^YZY9H51zluj@z0SFMn#j<-Zya2pD}Z9=@`bk*uf9A~%(6
z%}`xu1<pTE%%h68aV#jW6;CwUjC(E9BU)#mlR60k$rzuY;d<JuD|P$W0rq6U;|%AP
zh!*m$iP${^$KkPtBw42G!R;}*spy;A6TRbt;8bf)YagB8vGnQc!>9XkfB)+Xiq9~K
zwKBVJjcRZQmCDIEN&Y{yiz&2&3h|399eSs2;~+>$fmUtU|2<E40oo8=A<Xqq_~il>
zY_;inso(L+x3h>>#al2X&w?)TdtUZ)w|sp2+rx!^xnKJQpDVp4xa&U7g)6d-^jgIg
zPIdrzsADc>PuFnXdGfUFydUYhad!Cub?O(YhP+c=!3zJ2UbUvsk9Y51;G*X>AcsDK
z8L0Mv?F8-Ze4s~vh_YqRn@>aEkTEO99|8*caOwZdezmy)#7pxvK*t;ohqHyq%c2N1
zDx=<XQekd9b*`7Hm@Ggv=x(&LK!q#HP;eNfR9LhDlf)e#i%LXX=#o$*_siBJ(g!dw
zIOl+UvJXn}Xl)<xFi8VYj^Q+kvjQbEyMj<GRca=aYiS_U6_tf;%TCqxWU9q=k*Fb8
zF|f8Y!c}xmZVqJGXvVSPIYbQFtPBrQ4MBzIFy$+ks7hk?_g7|ghq$S*T8gsVgji9c
zlcF?bS!ZR6R2)rOY($z@IJeNr5FrO9f0dNH59BM=2+*_4Dwj7SO}4P22~kN_k-Sq4
zM072OJDc6HF!gs530G7?4Rj3(jf!4yJzOb<yEeERG24s1B4gh7ZT~9@spMY_$6xs0
z;7Yb+=|+(k^y6a3d0jK%F0^?!q<UtJK$2Rt2A#;IP~t71VG{U`=HbafZ42*W+63R+
zk~T!}!d!o)`Y~F?%rAe@OZd`8s)LHHupAN~EW#`3#Rh0&98=~GgkJb<M;Aw-El1GB
z)x$eDjVQ6TUexgM?#<gfcl=J2e&=5nPZCMT2*Sz-WDD!gCEc)wM$wyB2ck4B*aR}L
z32ap4sC0$M`%!)y#are}@qzbOO>;wqzs*g+^P;CQlDKaPGeqBlZ2>Gu-$uk(_?wN|
zwaFBh%C&E4Ew?6^WL9N;6d?-1hcbIvq{+>Hu2Tyj3<`H+T|ziufciW-RmLEXBopY!
zk1hJbhfhH$6x(*!M9>t3S?0i+hag8Lk1lV1L%kSNA<6lRi{9huw0gQ?olf{H6aWE<
zNqeuz;;v5Dr3HhQf}>*Y_gutx<yawSc@flEoxsOidJWi#aB*%uGO)?X@~91rS5ael
zpKD9Y@nHn5w7#dq$kFIQpw<U+<U0*de!uh)<l_f(7H@vExu$V*#QjFJ(wZ>qV)ky@
zQ5lBB$Z0{OTyYl!@)P1ho^9Vk5(gt$v8!++Azf=5HN_&#e(!&tT+P#3Tg6vFnV8?L
zyj*#0<uS`d+Q=Ce8lvnZ7UaKC5($S%_HEfa;MrXC1>s1ghD9+gK_vh;Y&<fziW^lL
zS)=S{RWy3$MhUtYeVEIDZLUGZJ?RuPr)WFb$)ZbVF_U-$Ynl+(V8g_)GQeo!K~-<u
zATYX0L)9zJVaApZSsV2>PivOWXT{{L4DzQ3xt$7K#+OCtB%3l&vdKZZNPRbPvcnG2
z^5eL^8~Z0eVZezJ&@JqN+R!qHL4-UMv8@=6%07-NBp#27D*WG3t;bPO#o&Rjk9Tk1
z|MKDQFJwc0@zQ2#Lx9p}u2m@jTR^10ui~?F)hn7$vC~_8ZB8goTk?oa(^kV(Yhde<
z0G9?Y^5L2f1@tRCIl*7iPj26QHkn*{-ZNaffD&140KU&q(SdZ+gKrZb4GpQ}5TzHg
zV9eXF_$%k6IFzAQq(X`HG|54Oo3MHrLeV-F6~XG8!5)C{S57BE@=-ON&XqgD<7GF^
z+Vc4wX8=>T1CIx3(K4zFOHe5Su+e9tl5ab4&%8g^?sOgKo{I1E5#Mx7k_1fSl)+SA
z<wx<(X}rFF^Woij<ZRA8a<*BB?AZaPC?VNdGO~xi0!{nKCDz0GBrm^Zp&BQFpQoU>
z!Hn$#8NRleQ|#q7Q$|;)nJ9PS9@dgOtp(6F{mjrhnHgxFIx*r>F$>Bfv6cjSnu>yS
z14AtpN{T^q31KIm)0`CJU2+;lxYmY~3)rt$EEYbV#D|vm@GLp=V1a-8_(Z1{@dFvO
zMJd*0<>na(YR@QO*Dt}QOMN9E_W50+sNpGjL#h}d%Ntp$7Nf&G42OFdd#kHk#-lD8
z*De~LyU2GATcvUp2UUPqc}|30qc#g=+zZKt*ZXJk{u$IiH$30zuif*5Gs_p)USpM6
zTqKcBQ2uBPsGI4eKHJ{!?%)1?Ue!^ufWvYVfz{toDaYC&Q4Rax&X=UJIj||oh)}MR
z=x&<7ykE_OXAZR2HWcha+3o%WK6Mn0Fgc=#n|*IAX#Kj{7|U)FwDYqJ$5-<;JL>jq
z$JF|c<UY#aQXv~K?eb(r$rF0C#U?kW3mXsL^@_qe?anb(bG(3^2`>RXL}p$>v{<i~
zmq4w5#e>QKz2ANK_-1^1`~JW7FGx(^EC)z>vEkwDn)C$!_jk{qYRF7PyRy<}@maA4
zBF+`D;-4_vIe-N)%^d$xHXdqz>Rrzh_A`b~ApQI)XYKF$1NC3K{keQo_{F(f5yc}M
z0R&}AC?~QuB~Pl5eb8K@1Tw(-CYgYWh>#7mq*zKuM}86y3VGy-bnB*0q*iTFC0_?U
zn<k)z2}pC%b;#`~M{qoM995qjrw;6|Ij?ZJ@0h7mQUEl<%N~K4PS#>NzqJQEA#Kk^
z#mI+=1pcHnG8ZgWphzLk2v<FD+NJ7Vn2zzq#bFvs+cSy9H2Zz-$N&;xSzKNrl7H5G
z21{D&YsOytVz20@pWi_OhyDPZX`$?4zq5TS^lMd@rKdR;_gSegnn}5gde&hp(G?A+
zS2P^12oQp=STkHGW6}cYS2P}7(b#{vgV$|l#%Piy-ndra9G2e4<53^i=4Xn^Eg+h~
zbvJt^A#00)0NIpS3`k`y%G78jj>@5;Fg;6^MnwYR1uemAEELmEzD^M&Q(`CWS=1<v
zAR+|qCK{yhlK8%v_z{?a>M{W6SnPEQRnpHn5%Zga2ozPQ4W>ScDR{1`_bKy;=)q^{
zZxK!<dWS6nZDWuo@>GjosaJW(6JBJ7*|3vKmzn}!L1L7xx}sf?R{VOw+I!G1i!QYF
zs|L%3cma8n5Ix&Fi&`cSznaRdIwkSvfC1B+Yn#b|i&45V;lRY8NJ-4{7gLk)Q{qDc
zfa%$A3j#Njrra>A_%_JmS>6~~$N6A0E!za4Zo}}M9YPU3J(aYTq2q042j>R-sI}cp
zt()dQF2g2@)|0Ns&!SI6Z_Y^-rr^jPGs=NGJ&1cI+_?$SCtJ2RW!}ppoa+xRu`%=)
zUp3>(b*3^1ulJ%<XDtB}S!SRnj9?pIg`p>rdA(DzbMU`?9kyW}8j&@GZl14aAn0c;
zBe`{3rt;~<3Jwp6v55Ut*~%o1JbF;!9`zzPxuOJ}&+ZhGMdrWrM(74rR5P7@F~Wf!
z&ki*9nmd~Ok^o)&bzStBy$73#ZB$Suq6lM!TZ=40Wc*TaTLg-r*pd8S=uE9;n_&dX
znx|UvCMBs?7Hv|en8U4NlpXPK0%x$l*9mEn9Ckj2Ju0a(4;`^v^xeT==A4V789bho
zC&j^3Irl4GiMcmuX>qos$|`JU*tL*QCj@Id#+IOvlFCY@h6my>Vav8K-V#~J<ehm+
ztlt_=y^j@p-68s{Rg33k5tyxZ9VM8b0Hv`fQxP$r>J(BFbJgOB{Ukyzo9Py*)A-Ad
z@eqggFUS)tIBRRWKn!H-6!2_K;F?Sx6=h0bn6VxYW=A)Wy_{4M#2N(-qIMhv33Z;3
z#h;O|I3A)R_GS%RhQp}vhxWI(kDu;sAe|4P;<9|LIEG-d3lwvjH0tc?l4!tk=UF|x
zdk_KUEcm#Mod*&7ww>T<Dte)6XBoN^;%^Y%o|ez&xR2U#AL%0QW4+(r9v9Fa=?Lv%
z_h1hl{O6Osny(8Hwsj|gaI+dzxwVYK(uqrJ#^~r6OS`S8EcC2c^kPdbQ6QUM`@1<q
zvIU$WgF+ldUMeUF0ST(3TYvj7O4)JlFzWK0l*=77eQTcN>i{A`igo@1fQWouO%D-H
zw7O>nib6##X-1`y(b8Y~%o<!viek9=0Y=xFcfr-Gd~ax&dtszj!O8guO6$Sj`*$Cn
z?#Ew0e0+EJ>7`!Io3&V9Q3KLI^M2VlcicSRL^2;q{tiM53%gyTTH{fYb=Dn1r!+l$
z*kdTz=ck{J&K7ibfD!j25(bV$@WM@+v3s~Fdta5eGW)aSeEB>tJ|t9=&o6TXX^sW|
z;^L`cLuL_xrOkss93M<7i($D@EdmU<CkMbo4N6NC2`$o;pfFD_i0{Q^9i+9Goz3{<
zLY#G)<B-pEPGF*d^#(SRAdu>9kY8`jlzejdeg9u)^Fq2;?GOZr3;J|W&E4Q;q~JN5
z61D-Miy%SJk~?imfl^MJic%EHB&TB5oWN`%7K9KFa}5GG!GIMbjY2e;|B|z+bPMJ<
z$xK^Cn!-E-lD;7+*H#Nrlm)pvbfK`f&<q1S&2rE*@uG`?X^f~@ka<;DRGKOjiR?<q
z45|*Q-UVIow7H_RViHUe>r&pRX7L0QVG)ZBqkOVOZ4o<xU}u#a6_kc>p=^>nZvRKk
zYs>fkB_LWTb|%5&R!(HRo?Dq<urq4Y$O@)$Urn29BV$rwGUF}8K@LLjUZBR+={R-c
z`Mj0mKibLw%Ves6Ung0;#Ml>P6+n0^N54)eG)r%2gkxW8>YKGukWmRWpR{&(t+ice
z$KM<cRy$(x!D>qiamU5SYU_TH#w}JeZ~}>mVcj*H-x00YR(_!JTy-0ZKW7S=OFegK
zcg5Yi{^DO_!!BNP-1OwljQn`(9Yz3D3j{4-E~2J`r8mLYo8aWx+x2_4{wQ<lt$}ej
zJ4pX9+-$V{@yq`04w%NtBs~{5(sS<VX5b&=3Oic=NABzubWhC>Oq^b9l&UfdL4wiB
znZd>&wWt~PA{d}nH5*Bcg3h{8+B=A8DvD7dZlo6nDJH?uq9PPeyrn%U-RQA>BIFBE
zeF8;E`w2NWbaYb088hFOBSs+@c2UW?qVp3_68dG@2dPSts8EI?@5-QyTa*?{z9T$g
zK<K{Z-l!t@-+FJZ)AH|dZ_+_PB4kXL3&_^Q&vPzjI24TcVyYFQKi5n7oTXl@8gq32
zf%V`kenXKFNf9#|(oSF~Vi+U|gV2DKor`Q$eKP2A6$zR@xXb2<;PRvr%%_3JPai*!
zKRTTRevzft<BAtcwSHP50Um}tDbIR5t<-u)FmSqjlmff#Fe#sTApf{r@byl*Zkp;z
zq$}!e%W`AXBv+&ploUlfQSU1Qhz^#}&TY`Qgz9)*Q87dv+gPIiR_S0VZYdq9b)MnR
zvHYBa&bcKF2m@Ia^$a(d1v@3!nJM>}@?|_-eg#EoKeTz1&_B7!NsJs`r5gosSU`-3
z=jzoln=g;5%b7*R)L#sVAA`nK0R6G^#uHjVS&Isk%IT1vn@?!mrf&qZ*}~4&^Ya9k
z!8&NeMm;5h7aOI0;j8JD_Ohqqm8SG{D~iu>*(fj|pH86YKI}jJ{r>*b*{Gjp#Yrj<
zo<ivd{L~E=3{QRnZYDAMoSloFoooG#XXr@iELl|A{Sf^pCx6e=dV%n@BZ*?#xwWXj
zgj+(=&y?QFc29YUH{!R;Vu`+GMMjq_m*9R~8TyONj5V-={>QTSuHHsCqKQ{PDS<q?
z877mcX3zlOP%0^n)3JYf;(|WKsMGIp*6g67l8NAXT3KTP897z%YAWm1k6eDg-{Ek-
zq)d<hdi%K7=}iR6sTNfTfxSrKhnN)D=r8X3h^pGnUW}AmOw4AEkYD3)bd4BE&(}Dd
zT%%oL?~>?U68}6id&5)1K*8pr#Q0@*_cw=e5+)53sG;%{cPB@`oS^rM84lOP0688e
z!_hFIp#w?X-Uhd6`BE@}v6`3N8k!r9LvzDvXpRA89kVVXZ-4pa!#UhHzY*^N$S5A1
zv=fMy>mEhnMTVC3o7m!>8Z15nqTnkvfuf;wDa}pWLyxams)`EYNJ*b_@!0)LpWkJb
zBG?Lo=zNNR$07>WBaoZ`YbAyUvozBkA!Ev=wDm~Xk4Dr-Vo%bNBGg_%_5JyE4`OX-
zz>Jbg9Tdx&g-oD}l7dESu|d&71&#}9OIbpiZiN&}j>~GWo94-Fq3VDbsZoyTm8qO`
zBfcX=jJ*MaV}*3=N^sM)u2iicGC$FVh9E?Zd5Tin0k+i!DU}8{gS>f3$EX8DS_M6t
z`FH~ghgl|ts*QR-zyIyb|DUH{)_iKsTcV;9TQUoZtIx-&Jt0?=w&F6}C>|$7>@k<F
zy>?(LTf`sQd<$EZ1b=`S>)7@U(G0zkAtgLDRTqL&ahs?y*=kG%iY+D412sXRCj~mp
z`dqez4VBw(0`s!orlIo(^J>PP>PZ>;kP;!czPNV7)}C<6ucFA3FjRu@$|^kKlEu@h
z%GWx&B%i&2Pq9fTLCUtFwTcw%B1}z5oOe}$FI_-{yK7P^RbPkXqD=ZFsaCT%q76o5
zA*QASJlB0c3i#9*@ls?j(zUVy=iT_>?#;P;plf@USt3y6FY3JSf(#=FwXAS1_9ns}
z!Z?xA0u9?#RzTs=vS$Snn{C}~kd2)?D!n=P(o(ghpl}dd06=b@OKf=M&}cB*g;1dM
z&elWAv0YTQKoA29XHnEJDFi*=VBq<MZ^8N7*(ti>goJp6v_-UwOctfzEi;v-z|m{l
zsgP4r?_4uhpv*+)2&077E^0?1B;yRtdxCV$cM;kv-jGG`LETRPdO0Tdx;^O{vVz;P
zNK&HcP{6(f-_@OiCJ73t6-dfH0C-+@S<G&viFsJ3MLPh$t$T`|n78c?W&k4-P8lJw
zBt(Dkp<~+*%rR(|kYx1qQzbhXX5Y*CI_!AJqH{nqHZkWi#9<HAr$s?li|4%-fL)j?
z-bS?HzBps<pSER&X!FaBsbdY8$^%jzbZAfwL>v2FZ2MsT<-@rhS6uxo#j7p{oF#W9
z-nD85>D6IFI#sArHOf)yt9$sNett&;3xe3(?kag>n>DTu8`{-8mn-NM>hy&@D9<J`
zOipReSN+9LC0gHWdx&pO)Um=9>R7jCk(qb#!=)eET_g7OvyG~ZCfA)cN$xi|YWs(z
z9M)BTaY3%W_s{RfE+8hIdP#~ccKcjOfB$1H^&1Y{_dXoh+IT$>y=7nBN`n1zlaIRf
zYn!E{E%t@p>j(Q;gJJi#`*R{7d%QgBY{Skb+2x7^(UK&<2xuasuUAqK6;~}ybrd`w
zadJ>ho68o-p;;nk7#c<TXPHRHG-tL|uQ8XHXi*Z8b(xkco|?&yd_`1ovTwa5s4Gdc
z*mGc6m~GvgLUB>!QtT40RHUQ4QfrkCLS-`(A_TKg(Oe@%Ra^UkiTO%@R>e2#QFj7b
zov#iX{X2OD%?<$94?-suJ3=fGx!CSx4w~AA3_ywDN*h6-59{4(w+`WMnOjgN+vbf#
z2{VVy)bhrH6~T3;E7d#Ah2Pi*w0_bzML)Ghur}SVrytkT-{#i->>h$`aO0&c>1d;i
z&k;D5G9M?~oBc7zma@}CPQ<{mKw6XgYwbAG#MZ5|qQ&L;owTZKwA>PIpK0-(B%Nk*
z`V@8Bolwp(C0Kz82U`=^O+9}`#TDZX&lu|MV&9TfxO#qDf_LWC%R%}x>@{X4Ov&1^
zwjZ9Ky>Nx(;-u5tXXe_a7@s%##C7~*e?<QHbdC<oZw|703W+V9CTCbB3G!Mr<eR;0
zXsM6raN0z@cx?EXJ^xHbo|0OYLyG6KGA@IITy{hb@S*eraLxSWF(-$cdv)J(#9Vd+
zrG7kOF{8ed$c$vk<<faMg;;|XW3pKpDsVp?m)y@WqI%y??f-<|`wk)!KjKQmIi%#n
zQHwmvC*vae%PXzeF^9YFAQ18K@r9V;a^GWoK;z7)BQLS+ylT{3)#zX|7O%{r#Y=zp
z6O03aRKhT=KYaB4Pj@_dC*G<#^*8>_=Xa3Z)asJJM72^OZ>CCk<_sh@kfowv4n~X8
zU$!<L#41@NU^Xdj6%_EW6%2ZiCr}-AQA7+{hAO#f^8;tK6w+UKvBBX1Edi5=Sk<U-
z;e}Vy{_+pz`S1#W5SwyA#-oD2I6ai!J@iu}P_QV1K><#qz6p*A8f+2W<Gd)!4n_-X
z+BTDG>*W?zIcYLJQc2BOo=B%ynXnSMN?Q!8Y8W9TZW2^!sCW6@J2zPs!DLH1v#3J=
z2qwRdMfAL3R`nA_sL+c<ZU|tRGKso`{wksifRO|lh1NVhmfk(|lM9(Lt__eP4PX<!
z8f#Jmm{aP>&&St<8iQlOPjs>JGOVT0nTPpAH%YJrumk7HN!~c)`t5kEjurgl=OX4G
zq3~tC82eAh^{2kW<GSrf>Lq#WX^&5$`aHm3#X)Z=gPQ}THwBK%^58Y1Nfvv~@>6S~
zJTjUeuGF|#Q*3Go#4&lk5$a8c*CKF|_;~p#A7s&H=#7pVp4L+nQa~OJ00Q`98`rag
zSp^Wy5SJ1j$k3ZWQ5=>gke?YYaGpfUO62S6bwh^Pju>&`R#@!Ok$7h<FahYC4=s>s
z0q|0j<3NDmH>HB5{3yhZh=zf2C0(#0Dt6Kl-TD9ow5aIXU$*#YIR8arj`*i2$t|h)
zCbwy3H^?PtuFukNPDxEr*#}lDomzxp)R+Rsn5fg9qH4T>gPHq*%PlGwe-(@xk#M}P
z#q|Y_kEC}#&j0vje}9lsIAK=m>>@S;h{<)@62;1n$Rxjjvskj1b};QtbNK17%W(MJ
z^;}=A-hhpyvQWNS;BlLXUtF&6C^!axO-I0fx@w<Z_!7YMs|+$FUUN;aef_FP#I;fo
z&Wg1}RSWYnLQD+w3bDwz6YdM&n!zW`b?DnOekk5MRsOb;MzZY#MMF05=KB2RVT5&#
zkwrk&ozg${_a9$4rE){6C{-9+@dlnU)dS5+=cu5AYE8J#<b*STV11ERN4T-MpY%u#
zBtHq;Z6tIkF%Jyhy-?oF<HRo;<R~OtH<}bwW33GBY=^`%@#tSvg`wTSUq7h0=)i~A
z!Eocb%B0flSV}+a{LP2mQ}*Vf2=jNnUO~T=3o1v)<z$0S_Lr~trl~}?>Kwh(wnU2g
zITO4+p3BBXuUKXq(d4T5k0*YeU7uLsMoea!J<ClcbVOpEFg7O@>robaI(xX6(&rZ&
zdE@TGyI<bEzkhQM1hyGnCSRSz4!Kh5lE@RERXZ)W5wg7<Q2<N#=$n4y)n}J}atpBW
z(l5T9Gc$|31d&%lLuI3~fg+u?8_8T+t0&3Le16AlTBUt)U>}aUrj>s<T)w{|QoaA4
z-vGXwZ%8={il1Q!DR5*B3K*~Vri}+~KD<g1{7O?Ejg^NFAK!ld@cz@?3*4Dmx(6gs
z6f^TvYu|7yP2`6EcE7o9?UkQgr!OeVdur_xOKJ(Ps=~t<{ii+jbpP?w+nxHyyvgJK
z@uIHU+)(}6r?NGFl3%&c|KZ>K<>&um+tV$tJso~+zFxn7uiTck<8f|lCyR`fbbZBx
z_=y5~ea>#v<GA_(FMWc+y^17(3IP7BD5TgZ*^OTqTaRb=gt<|6GGjcsP?}r#USdRY
zWm@)a(-q9!n-JtmXGr?Me1@ciTEuK3Yq%^dBNbgrtW71=A5<QNAVg(ff{p}O#EM3&
zQcRetp|azN6qee+CGP<YPHHL8^|ETj2?NZViW!_5*|GNhUVujOSQ|=10%z2UD-Y3S
zpPO8qsN&fAnEc0@67>mwN>qi#GWuaOeu~@?tg}(ozEMmac^?3><$mAh<v@I}=)TCK
zFDm*WZA6U1(}m(>2zwTI=eJe5mQVos91(4(*rQ2n##NX=R7<gBB4?w_8Y=8$GBDaf
z)%q4=LPLle92I0MS=I5`dtCf1J7}sq<xzme65MRc)p$GGE+wOZLq9<C!JW#q3FM?f
zR8G)GWqgvISEdMCM8;Fn9K^taZxgJ4<+*uWpGs8{@(~+-y88Y8{uPZl7eScX@VcT{
zeoau!e2%T}D6c<x-~o!lCu%eDs~$_ETXxYa+Y}jzm5dU!m{olf2|N8orzTKUPZ=lq
zVKGMoHU=zZCn=zwBefv5OMmyp!g_K5EFoq*6Q|n1CnY4e>J6LV#_)Db#a-M~s@L<Y
za_G5)gG{?dTeJJeZh&XSI@u}Q%xxjCCYgEd$yl;O-$1n4L;|}|zO(}YMADK$g3=Uu
zcMSW*Y|=zdwF#<VyZ$xzOq>K&KnoP<v2(L>iXzI1$ku07%q01L8eflhZ^qrn|2pRs
zD!;hQm_12U1%^}d8EaC}<J0*9+E8>yrAyodOhQM&J)`LC@1vvY96t9%GS_^9#qq4x
zEz!ZS1aIy25%LmYG!~)a($^gnnB6uzYBOp&qG%ejQV$yIm76%?)Pby7fph|Ankbty
z0c4SGiNH>%B9Qzkxto%NyiG%92l&_omxbnNbjBrKmG83kLxm!aYynx;nM7^tr${jy
z4~(h=peVIt7iZR_hcya`Scwdc{*-L4goOcr<H{XKuMTmw9##WEL#=8iswTw@z0(3p
zhvg>JD0r3%7qg>5vtYw5&=y}fF9Kg*YAvziedpF9S{XF;=e4z}5YvEn*-H#J(UopB
zu0P%1eSA5v^A`s8pOXn3j~q}awf*BM4cOMtyDumt%A^*BTP@C03qvEZ5n5H!YNAl&
zHHc?p3&6=^XgIV$_ZELu)Sjv^k(^0}H_z7NmCBlbI2-a#RiP?iiCaJp)PevOk5tB~
zUM4z#P<5)<t-SDSnPy@}o5VTK3{VAUnh8d0Dc924sb(?G914%aPG>*feY)T8-@eGf
z&A<HWS!%OErll@d1P!JfC&n<Dh_s|DHbRYsq<L$hgsa1bC(S8gn&w)rrkiLpOqofd
zv(Sf7coy0cQ@CP=pUZLw7gDJyr>o~JKTaXBZMHD;Wr?wgAFbG-=PUbQvZE<=y`&tk
z$XFB<PZJsQX}%&)I+GQ~u+4KQSN1r7t&C0l0Q0geSN<B89k)gzm)o|>4Z8hu#f?mL
zKD=l5c}aKVJ|>_JhYjUI$Mvmm<V1MLevzyx>{y{S@*`7CvyRmIiORC?7c{OHbd!mk
z$K{F&=_TvltBQ#$HMp4tZl3bAI756`uKJ0*0V;KNv?iJLtLLqrvsHUi$gCFLgRg2u
zQlEBBVU(3Ql_Z)#dpxS&Z@lU+2h;@|`b(Q{q?B6ooUcF%wIFf98f#(z^$q_K%7nSL
z+O8&HE|$fIk8iB|D6_q+2itQ!W-^s4HmvvOD^@J)Y+jZ*Sbv!9I+5S+uYMq6Yg3!-
zT>HK``)4&5{Uq5_e|6aCx3%tK9)X|cYCX*j&&6!5*{*;9Pf1Xnxh<((9X2`)=H(Og
z^N$35i`@r#b(K~lqtYV7RvQ=^6-7^JU@rP_vd+KKMs3T_@1mKVbGAw03Ugwr+Hpet
zS3fM(k5sPK177(7_42b%^Zn5u-@JW%IFHTEJ6E!%KsYZYU*$?~>~Kv&Vc14{0PLs?
zW`-wTMXk^T+LL0pA9-X_(UfaVb_IlTip@(H?Rm7DmnZ{|Dkw&4g`mp*sl_ehajEtk
zCTcA0`e)G|OaLp;ZU8W1BQk-yn5->Jrh<I|G=sNUt^~+hT&2;*4u}k059PsJU{2B%
zWiDYfgGICxQ`VD~9Hazk8$~p(&4%FU69ROyW#MtLW56_`ci>i14gPRsN2K_M10&8p
zFSh*qq-68kC`^tys&@HE6KG<=0_DgG4QI}K#fJG@<>wy@DXh8JNF#++XI1~&5J-s$
zvTyjjsl;ZaG3+JB>s&G4trf)lRF`7ESU37F@KIw`>5Ba(Br^)_*{^lB8zI4vt<O~x
zT~cmWaF^K}WRvV<=def8##bV<7)37CvKiA?hmFH2%sp7NVNXyY?1YR)i9fJmkIr&+
z*yt0%MCuko;2g^~%_P+G60Vr>mT05aTEZqB=4*4hTeipUMI-(EZgc`5DXH2$tJz|(
z^IRP^4$WqUOIE|h#a5MT7G&lMuFEE^cy-t~Z#IhaZHZ!%w*CY|Y7Jw@&Jt3_O_5aZ
zgyI|cd~+?>vQZF4uLL2*mH+LB&P>K|IqMv4p$r;my{$f6s15D@(&uzt^CVQZJ&{{H
zs9Zv_Yo5rLTC>?u1lVQW1~$R&%N|$3CTg;$lHB5KOUlnO51wAA&FmbV(~AZu-gO$d
zq<pEr{NN#`UIL-^BrW*8^X1fh+1c)n&Zc-xS$a)_+4nKKfvECh$%|wcp<5NbruD1C
zr-O@sdBqnRO8TfnQK)2JKOK7|*aBxIVYAy94td3M`l!=H=&}EK8-&t6^6LF3_@xm8
zHo}_JoZUHso7lt(y+&@7Bo;HKB-+X!ClIVde{lpaSq4xgo(_E6J$(4Ee~}M-77==i
z^DF9rZK9g#3&Fw9?-H1y_8`6ox!Z?$_Nf0(W8jBit5-N4;;$kqTNND{EA0>xKMK_z
z9oEcfR>UIG9IAUM3?{!kYg*>oHq**c1F%u0qzD&iryty+8Tv~nQXq(y;0C!ZLGog^
zsdi`DTjt<S_gYDhY8*8h^qTsij)Sn5l5a&)h-@jWfcH|9^W_Pl<$!&lw=M)W3Woc*
zZV!4(O@S8}_$TYOfA#qtT44m0D?rzY%C*B4j>qbZF5me|(EoAw@&4~`KE8b-gM5~~
z6L&ILcBc$n>XX?BcnA=pr9ppp7^|chi-6zgSx$;nObU)SkrC^E!ou=GW9#2&uNwpa
z7gc`)nA;Q9KpR~0kw2<58$i}_qp;GDma-9pNrpaMfBQDVK}4wG;tXQs)F#kNG5GS=
z_wjA*hpKLZoCTc2P6_$Z)AGJO<8{%g=wLtUt$*J?8m8WeANJ=@+}y<=a6R!XJ&&+%
z<#wp~z3>p)JW5<f`@-)s>lXu^J`vA=%t<AQ0JoKP6ADG)*=I=PHFH8)wv^lftI>U`
zMHdMKM5fgz4S8CosmQ2`ZQA}SmI#0{#BC(%05MSR6*SoyMr*$on}^}f5afENE`Vi#
zi*dvws7mB8kXljUJ`?0b#JKBG4*t-M&+^zKTr90e;@*tAyN_?qF)Z`W^%iYxPDqK~
z=#lQK4J!XVspyp??WL;V+k*nhsUD;aKUY2>8HrA5*CM6X=TARkSlr)zMAqlzv9jr>
z<HM~PZ3x~_)uPf(IlcOyM`gq$9_MQqc~q*UE6*yio_V!f-GZ-Jz?G)xI8%nl^wZ=Y
z>g}U8`Mm$X%S}zNC~^h+4bNN7Pq^4x-0~1T`e=h-fHH?O@@HqJ1{D&j3(^M5Fe=l{
z+m6ag+)M36B!cKwvWDc`(nFb5H?K#$C|=naCMW-9{cKo2_x&|ii{hCFCdye8ZU1cj
zjSm;K`}oG5NkzF%+P}88;`0%!CkI8$1I`%!*5zV1JSYJ1q9f3J&mNgx=nSUCMKv?(
zkmy~Yg~>Z*@=mh-y<<Xuv+m~aj=Lxv`bfmcf6`51@O${?jw;JWd@9RA-RnZ>?r5H;
z&9ru#l9?nV5Be@^OTa*No0#wf%UeG@`o8~|kF-zL*7{?8opjXFKOCRGx5;kSOk04#
zsvMpg(BuKwARnqIe?`Qk`4+HwX6$+6wif$KvBJZ#VR-;q6?R$zn0~RPs4^o+C>#!d
zC{d*^XQ`H`0%(#B$DEK<ajKITcKAZ0QzvayGmZ06ypDtBMMJ6yVTHl2G#V)~LG@C(
zl}hv18c<l-gb0aZNOX{rDgu3_^zE!NCPKj~L8N{{bUgxnnQ;ZB!?MrLvrRJ=tvf89
z$^uGFL|eTT$sov>k>-i`KAUeo2%x4%rE2bG*``KL%{ZoBibp7Wq6ihNsY<eFMp{ug
zPyvpt8M%9E&B%~$R8$;;(-pErPy$Oc4r)fFYDHC*gd(+Olw8vb+cMP4wk55oMjWMa
zqr$Z4#d_NAttbs*^(1*mT2ahuN`a>3c%IpR*hzrm<xI2uXQuf#nQ6EPFs;<0P#vxF
zC2TXh(jK<Uls-2HfiP_-zpJJ$gJg0QnQ!$D==7jJ-Oq4qA7;C};NaR5sUJvaWa-=f
z<6-ji(?XL6`I4XAx2e%k!3_12!*>@#U&r*jx9|UWd?An-ddyJPx|@2HVs(w0?gob_
zsC8Yv;5_!+tbjIr;h%N?mn>0rGAA<B9B6>j9`<8|g3LaerD-^o-HBnL4IgXhBC0s}
z$b_1opDB?Vc7Zvbsv`r+UbeE2Fr=nqE9$3b3u>4i`Fm_f?Udb5{=mqP>Zmn6GIiq>
z>0Tml56p0CL#4rQ#M!SouUSYbuhrae-bxw_Ao}|MPn3~}R>q4%9;F=yf$!1(<N6`L
zIPT8h_ZNE8{gW^DCSb|~3IEwQDPHd9(jk~%KL(2UIxl@=`@b9<c0pYO^gpBKpE7D5
z@9*F2Uy?86H?o{7OzYRuD~L*3LmVu+y8iz+OO9;Cwzw$4DXxn}<^K3p=I@R0>>=UB
zXewgasv=YpvK@%Bs@x?><gg2I02N@=)^S_W>#F#!FiNP==yEoMPW*m9z6^iF<b^=W
zWKYi_vGkk@j<d&6+<)xf9=`Al@H1f67mohDXNo-p;NOmiFV;vKY3}Cwi5JOQAHyl7
z%5cWVIv#fRe_ee0dmd2GkKDf4I-L&eKh5)><~cnePu|1b@Ar@Ac60c(SBg?-{{yc<
zYzE|Pfg}?Idj3>t5#RUccWGY0CANAa5Wsu|oA7d%;7hskzxoB1V94MWl-mSwwvD7>
z>Qw}48n2>Fn?*;xLcd~K*u2hjHaBLggjCd*1+Ye5e?_UjAMR(Sj;kmb_jJUpzyPrA
zTl@C-(<>(+c=;*wiyh&I<4^mMfA$vqcn<EEYL{aI{2QJbTv^8m@^uDRg<{1=C7xUY
zc*S{gZS#aDcPlD9^n(EIx{o<eTIpE)Qj~?Dsz0hwj!1HcQ~Fk6PgnZZ;h4UaP~9_q
z>lPh|S_iJN5hcXp4&W!VszgOTGb6H5jyQ6;m6f<v#OKc(xyKZ_;fNs@5ArpJTs7^g
zDtJ;Odhd2Hq_>omqjJE4FW0cCSi+oTDtrJKnT20qZjC}7g7Gc+ZmCj=>M!mlOjKgj
zmiDLnZiQG1tc~~)#QI<rh@F5)uRGy6*Fy8C(p&{zf5O1=Z`gHuR9(1sI8@8e8$nAK
z`6+N`##t3V4UVx=^i9)kY)QYS<^^R<VU?y^f37a4`rJ==ex}F6b@{*D+H8Y2+vtZ>
zvyHvkdP@x65<g%fOlr0C%ptBIH22X@e0G}0vlbZ-*VK#NPrCZGs^I&u=0Z-BnP-)^
z*NDGduHZc?{ym25k1sNy$NACEGS8zNzO3;&sSGQ^7Di<tIkBc?qr#I0i&1fYuesdW
zGn~>g^p|yzVJt0af3oWq3cf%Ec$l1t*yao=p;3}89pAc3Bw*;TA{hTPL-cHh`(uAM
z>Ye`^4j&D@9%+X8XeuJuu?y}AiMGt^RS*4Afa!6A6uP1w6jZQ@`RdNSz3#^KTFy`P
zc(^eCw_BTS@MatRnBHt-Z?=>3(`r+n0NWwy{Cv5j7X0LAr+PeVmTgikSkNa)VgqDe
zdV8J>yu+Y7CF0IvMJ=%PNu+_wf_4LbH$(qVJ|`uqvH>@QO})7&o9Z0AidTv%Mb!L@
zG?R0Ns+rK1H!vmlHVxyIWGNlf{z<w(*+-TXZfqWAk)Xy^dPNgiJ~U{=D;AjwJ0k*c
zXX#^$*`McRVf<m^5NuJ@4vH->aB_C2HkcFKCbuw*C?-lJhbtG^%@BCw-ax9%g3ehx
z?75R^a;mbWNyBV{oG@3Fb4=bt*{fDS4^=NUNpR{#u_{5<g#T3}z;maZx@Xph72RGl
z(Zjlk!euE*ysflzbmb-xW5_s8A@eZSxo$<?4&a?Sl0k^!rW6#si0DE<4YC3yL|)g5
z10~E}{A)-F%EdsADR)g?xVZ`wOi)!wksz>gn&O=(zn%D7_eg?9`clMSiNX={wHwOS
zD^P8`*u6Q@6za|%`+T_n+x>p6zBrjIV<+jO)T9!(ZkO|%xm`|J>j(I=K>|?dOg($F
z*D-HBY$b>Z8MLe^=_ya&dLGFQM9phS$M8qmALq|MX0Lx5nbZ9MW6%9NEZ`|>`P9$H
z^_M;kUE3seE2icPY0WPk@t_0fgqcTtnY4=9g!|}D`?7lNx4B(BRqv{|_xm@OlzP&=
zW|%BNRC|0W5fgXdT~?wz_mukNhSB2m++Yy4a=8~t6%%a~3uPsk!Sz$5reLV`k_ynH
zpw&rAvq~bkxG*6UAkaEA^Cch5hy{Cjf}rtBKP&<Hth9lyMHIyVDIm5h&ie_?_egXZ
z1C&XQh^?UZSfBw;PJr{+^WYQ(#hzvtlD1a*{VanYgCii!-l(jDTv=N7X8BG4zw`os
zG7>>SB^e-iNg&L#K>KEO%N$zbO;M2q@V$8ZTqm1OT*1*p61NW6NJo-J2dBw~{}+5Z
zdj=j9E;({GPh83;WN_^gT(x<TJ)S8>faS0#-xUOKn2W@gLZAAR)Kl#~`ppmivW0cC
zMO9eXv@<i2l{P!mrpOP!aIK-PL;VFgEWX4fHU#l!EV2hN1v0x!nma8_w20DEuQ7}G
zA_{2eaURUV;-H=#aec{=ImyC^$754Ca!fg{2P+fNc^mT!gtU1mh*jHO9E{#CtC-qF
z<r_hkE_a!p)S!$K+FV&BY+|#ee1|8tz<Bog$KaR@U<ywS{uYRD@n5Ir1(U^*)Z$U)
zrQ0Tp))&|Rj6vjbw}(`?jq2auzW;6f_3rV7Ku&I&sKrf>IuKwXmS}Dz3dJNXjD<n!
zDVv)NQYS!hJ1*nmg$jpnwFQXBr=zH91S)J+nwx8zZnsU~tU)xUs;~isV&8e$?%+Ak
z+EbpM*BiRz=3tEji-sbl$3mRDb6w9oecjQf_BBWQ%1isYgTdCWX%ZVNo%$)seUyhk
z-NDzibxG^7)E-~Iz_M<ZDAGzNRWxhAJoe3l6XX5jAM{QC!s!gAfBZ0w(w(M}0)7rO
z9HH)oQ1=2eW*@sB?#JIhzJ34c@qFZ#tdXlHrcMtEk$6Ue5C+$_f;%0;DYme3KmvXK
zaq2#!?|%BN4p-te4R-l())1=XB^j{8e1dtnv$T*Nx3-`1Mg^oiK(i|%0<zf@uMk?l
zW+?1M)+9=+8T&3mwguiL^+bJ$UJu;aOU?AG3lbM$K%f|yCY-erU)-{MVibyFB%n97
zfZS5RyQ$(ekBTGU{hEorp&SHb2MHQD$-=VDHYKvKMyXR_^Qs(oAq!~}&raz1K{T#}
zbp};gKVM<KVe<8R+f}0SE@zj;2WCCC-n@#p6rwR#0nTtQq*}k;mLkL>X$9+j#XIyW
zYe0}{O1Z_U%R<^znXUrUb^Q3;_siXHFKpE15W=wm#DlYyaM4U7M2M%lex=MtfXv*5
zJ%_%B+a&N4O&v@tL}wCS)8={yZ?*}1-mZUjz;NpO5vXky`ym2BVi9)`8j^I4Z2TEe
z8K!qW5i62kGc{_o$7xjdWC40SUUU8L$!dGDjtvU)($3%Wh-ZEA__zB{=dNyC6kjO>
zo&eQ8n+E4cdl;MO0fGWzwo0|OEm)e6W!GqS086-pSO;=9*({Z$&1(>wxWEuKH`Zf1
zCdr>HRW(KhZgdbSNPuHP*x6ohh?7-+IBS)MI#UO?2Yx(*HK+)>;-scUh}B5+PK>T{
zXqoG?)Td^9#)XiLiyT?iK>HrrpR5{t`0h6ZVl$APB|gN&<42@dOyMo+oa4z!SsJ7*
zYR+KQp%#}M41UhgcOQHY?OyuH{LDAG0TW#W*)1i$D%b$0Gl*UD>lOUEY#%+ov<$=R
zx&e=81I&{w(?9hLqo#p><|$4dk=@<L7Z1oZ%N0QzgeINfSy(7`LxR-S(ruX)02t<`
z*l4LL<YLAsMF9<1qHSKceW}c(E*~n3uq7cngN~BvtN_0ZZ)Sd*il)`!&RyJN-Tblz
z{~!s7gu9^P){LJ~bh2c=EtKv-`DgfzBMK9e7F_-5KaZ}_6ClAUkj~j<bCSwLn>DHV
zLDUr0Ja01(O`ct75pK(fW1>Ps-~P6fB0&PpI8@1+ERu6l6cSH7o@H<LZEy*-x$eMR
zD`<prC4#AuOHIgOLyM65yX#1zA`lF<6}jLEMxX;(+{SSt-w(Y9k1xJi|1sfrU+rx4
z{QYGPd$;Qlk1LW;s<7>OG;RN|exg*9@Ab18dA2D1+0LmtMR|%>H6QQnHs|TiwJBZo
z&Qo81wznNx*MUcTdhA!OTA4pUz<+w|yfUksC3+RkZ}P>JG&^?YO6)u7ZGQ1e>@ICa
z6p#7og<RM<!?Nw|H~#s~c0?U{6x;is?VVyLLVwZPm-e2f-Zx)!Z1qivUwLeesAe}Q
zGv?2Bw&qi}o3Bvu8=G)`2(s`e+#T(#j9a>zZc-sXd9~P~0#un-{lyPymf4k}Az<;Y
zq#iYy4QNNCKmls-rp%oE`$07l@v6W0@4>gI^xG`aO;(9B702lR`aPJbS#I;utxfB#
zT^|h>|4<Rf(l#nJFbBF^#Q-S@k1HHHOS-dn$*xa-^`k4q*;T$+XR{=(!nB2x#Xh0P
zkSay{tf02&n-mx_U8Jl2(wjD3*|IRf!?>xos8BR@d~ws2blO2Si$VRgv9At|-KYz(
zRza8Q>_PEw&=e_NeEjgor%(I)@#*gU3*YS*SL%r}`$;&}LR`Vts{vl(`3F%75B}HV
z@EI2g@8Fq~%fr9bS-H$A77fZ}RxYnefe+S`gD-P~XKweO@0niZSc|L)3RecPUQw14
zqjQCrV`yDJr_X?>?1{b=+4$2^uf5997S8E=F#uQWRrwc(v$(tP{my|4X-DJu<m=<U
z;UYoiq!sDyZ|`3q$d(>Zl{rG$T)hymxHdyegf=}q-dSx35{0@Y+@Y+=EV2wGWP3T|
zDc<Z*+w_%4G-7Z3;KEn3{4U2;5Yn@G>$a<uKE>6Xv)dovzP}W9kH6{(kUkitl<gJ7
z?8;_ziivcptfP_F2i}3)&&&LdLdutqe>-1<T-wemP$PTagHN4p5D9`Fe;VYqVs@Da
z0_bvv&y1>aGl?8cNd%se4IDT~Hg7eNyMerP>(R;Ao-IeS1pPY&jiMx9b+mneK3Y8A
zse?Kd%aw4zQKRqg-v9Q;-ES|F`0-Aa&C=Q>=m_$A-i<I#jG^<XlfqPL0p)UDQh)P+
z#?_LZpyLSnx}dQ`I@Kf26MN+(CZNzu2-jb3qo{oIl<nyWBr%~z2f$$m$tVLagsItH
z*2C-f^{WmKPlJ+@7|~J5S^@Zls42DfcMsy9K})#bz>H$W_dP?^+r8r35b1;O;3iN|
zLWNB15M&4v5u}jeB}$WmI7=XPs~y-okgnHw+MosPJNVxFAU20EG>Q<)9hHe*xyXyx
zLlcK~RA_8ZBGGoa$I?qs7E;*@%1AUjQ#ZNKycZ7&FejE>Th)_i3;m_%N^SH&xM#ja
zz4pipq~S@l^Rz^)DuT(2IGhj7WAi)0Y2g1O>EZAI$wKr(n9yLW@*Zz;B?4vNV%{Sm
z!<cE*#+YAGh{#p30}IduTNqS3S(%!ebrD%EM{otb2Cw<lh>dNgDuL2jyaVX>!8-xv
z(WW?NYA$;qQ0Py>{zH{<f?;EfFi-5ojFD85<?I=ROhQk1QT5}@)v0PcE$Zk><q*3h
z?XB<UVclEb55D)F!gm6dC@9=;=2BH7GzC|K(mkX}hmFwz97%kR1!zZ7A)tAHlpzaY
z0O~^Vv?x*!_!1}SGtTBHwq-!6B@6p4&P3XLAz(Yo5KQ?ypVf|?5nv>5g8O)M+8J}A
zs642A@6%duO_a_c6SnL$IvH@p$RbKXMW}%y3N6^0a(~GD8Ovhyn@Fn@k(woM0p2c@
z^&JR;MI~y>vh2y;L7av%=Hd@%8Tw1Fh_Nv>`B0hX=b8J%AD=F-m&MHn0D$Qxp$RAI
zPNXGRX?(%4weLw)&kW4Nk~8)tM*+K~2kg?(LNxlCb1ND>OdO&BP)!axB&*KQSDi};
ze4?e<maM~S{k+23zw6}{0<ojzdg!0}I?e*TmNq<BTpSkbmq$NWdpWGu$H}A1M_tXd
zyYt%hDX2&}I@IzDfCWF-H-Iiwt9J>h@S_)yD|2`8RI&-a{!G2IFP!OJM9^{hBC?}>
zBbLN#FfN^pxWw`$%!kr4-*PUm8oktnb?Rm4ubk?j*!<O}dZh{1ar5a9z{h9q-R$mN
z+Bh_IERqnXWP_D&C=wTiR{#sX$jFf4MKVc3yjiI<-@=ICIp(xxdq?5{1T+UA96}_`
zuFwh+NWYU3GgYms_Twm6jn1c8l_V!`AlQ#`?~8bbNAMwBqKg37ym~{aNg#2z<*5Ou
zOqg;4xw3Iu(hQv&hQ<y?KB>8SjS+|!2e<5P8pl~z@t@Eu!WqgRNpMtP=-d!%mxUMr
z))1rwqbM9jbsUA4X$Dg2G%U>`8#qV5_b7-pcAAXopv3%wRJIiAU0FapvBD%*;64qD
z2!#jwM_T8+b<R(55){oCSl!$ftpbhnkhB(=D{KZF-J_;}E3`?$fEkTqBqa%pns(Dj
zS8c*>6IB&0E!^tTvfi_O5qS3s(L;9f8nRz)W$O7_b_aU`m64px%iij9;f8$!$D8oJ
z<^wyt{r_Mu-5;M0pSi>Tg3R(sr54r8xN4`rIQU@0T8<$B0IH4fneC`L!+PwK4_{p{
zJm1GmFMvozY0`f^9V$r9mlD;8XunSO^7hmHySsCk({$f@y@gb)zrZ^0F59ILOP5Uh
zHdTOkEX!?zHQlBr{Pj_4riXV$Qmh>f$}tG2U>qL*y-wM?$X1S5VluCDyo-(Jo9{MH
z>M1DdwpjIE{w5h+f<D?J7a6GB==WvA3{Iyby}NHZ<zH)H<bD5J&&VMA+ubK;w?B5i
z=bhVd(<y*tct(vpKI27Rphiw%MASg%zQ~=$h#sGVHmqy9^9y^OM1wlp{xF@MbGQ)k
zu@TGK0WMfP+=IA%soWGXkk%^4v+Ixc8P|QZ;rl!~Bd?cy@{us;gMM=;s2ABW;_CMI
z5sPzVmFYmMT|e^k6?jzqaXpnTXNEGUh(g#FNiu&_Z1P8Lx!3gjma0UFwE8jif5_{#
zL@%9v)WKEK+7}>{(w9+xD8SSoTk=PU8oTWsl3!wTIww#Mq~gn7%0mo3x7X$A2{9(F
zHm&^$H#BHTf!S9AMqFVKPqWQ<d&uU=ddAy)n0${WX#4kg5+{2aDQ(yZ;#M8vR-Pej
z(AnF+9m`mT7-VF96T5TRH`YJ?>~x|05k6joaf4W;frqI_iqn6A{uz_MUWXHH#iP0U
z@#K2_A$og3{e0))({xaXI3Ke=Wr`*EG#$x9lox<3g>M1bFg8>nJ+2kf<8y^HO(df2
zK(`jD?SZ?2A71)Im=_{9CT=f&f}MbaK@vt$c&AZN<$42}0dyiioMvn;JF&!$0DeiP
zvv;1^F?kQvc~DJr2FHuo+6_o8DwTGQ0#?;lgayW0(Oo)ZA3`U4QSh*T%;--0#4t7M
z$A-If=LcCjpp@H2H6cM8vRuh6jCNi^M8nc)x_iKpsSCAF#`6RSy6$~2L>-xj2HPhQ
zp9bHIT+)dCQkJ!7_qrQ5*smK6FfPr((nXdS?B5}YcEj2x?DDYo14@mGk}~j%u604A
zNfO<Ihy#lf7e3x47A5L6ny9!jktG*Z=+x*F1D1E-8ElUCj0BAq0!<aDSRv#P_i$Cn
zWGxtd_Mtr_vIC2zNFD)(`~rl@+e7sW^TWuGldSq3gyf@U5PnnoleI|Pis{ZeWP`4F
z-qW?#RBjgPVHn?k`1t1S?i?90?}Us<slNJ9Brcd`EY&}KC{*yY0;<kq);)5;wAO}a
zL=w)$O_s_P(pnmvOw|%r3%U`u;^Hy*3laL9ZxUK&_AoV{nI(84B16fYkRf!jlbe`}
z!dANzofB(TS2>Z$i8M}J;=~TuZ-G#u#7#y<4CJH|9n&&{HO)M4zKE*lbIohy{zWT1
z_S^6AdYnp~Z5kl`;YqaDS>^g`V;yiZte^-B4&*%+JJa5!aIJN0&!l?~KA>1q!U5<X
zrLHBy0j_Pa&j@Src!mw^z}C`(2JmKauaIHLbxEORH|rCZXK{5F%@wOQi;8y&@+w)^
zp!jeB_$Z+AD#@~M1v!?e-Whlzz#rjG;da~PzlT`}uM%=4FJt72T=18b4JS9-WT+_8
z(okDT2&RbLC`m4*tEDhAA@8<vsT6HJ5UAd}5I~sS5C7XAP!FCg6eYWq5KhmQsijA+
z#nd2F<4*i(!AmcwuB}qr94N#ho>&Kc(U)4MixO?%US22E$~?^3cV!<O(2c;HQKIe+
zm+1)UF1O^AOv5oix>Wq0uiqKA>79=@&0H!xDH|0IM_t^wUfk^NcA^W!V5L~Yvdvms
zSo*4$3M{#kL&%CJ6Q+hraCZ-0VLG{!rkTN=%&|L}qhmDt=CG2+9yzB+zNp;Ij<5U&
z591S~_5HZ}_~G&Kmk;mnAI~#hbI5KmEUM-qvCTqk?KTr@+mjl>iHEau$7*5AzO1m|
zJZlOb$s)`3Mimy-ma($aexsHb_8R>c>^3V<bVEa?+{CLX-J)ny6ogmnNd&sYuJfbM
zibvf90h<?iZv7lu!o;k^?z)=6uZB1Wc-sa~Zd-3oCm8$$T+`s!clh1R^PYmR+-bL-
z!T0j}9uAjNZk$_~;QBr^(k@85%yGA#!>>wJTI;PBKf(BX0<MViQQdL$IGT1x+`<MI
zqy&w;O4h7IMl#A91Cl{%Rv|IFLrm}D+e#NsO_l5l3oXK&Q<CVrjoOW)Y9X<MW~pUG
zoKk!8S;FnIXP_^n-L|QUUy-8xDLF%_K#xDQsecX+ir^7hEkTwcB1%EMJ5vjXfd+J<
zicy|pc@CD8Zi$cUn{ka%_$R&&4(s-?#s`G${5}U`s@&f_KAf|(2Kl8$TEhcHKsDV!
zdJhal4&1`Rk<r17%Bp2aVFg#qx`_hm^MkGD-LT-C=L`1J%>JsZys4OsW)Nbx?KrG=
zZd0dew<r-WiEx2gs@X-vb~-;3vQlli={Gum)o=XX?%)3Q;^rLxS24;5uu?NKBz$~A
z1S}dKVIF&+wGi0EJeOO@X%X^XG%rKG&@J5kBHJ?WWJYMYh+1-eW0Cb7n8>9LgI&l9
z#GmWSUb`bnU%)g9Mdzy9LSHB9w5+O?<&tVXkldsEF8RB&>?CNG`w~}JoiJv7d^&93
zhWBlr6mB~TH~G62`fva`DAo}!z%3rnO*q(**U04QRQ(`VaOVNiNl|by3gRWQ^Ww=;
zz+esMRKx`9S1aI&G4FT)NkF#0r-7j5smJ(qDEHdGeRKcuaeN{75Z>Ic$QzO@svo$B
zz40oVi(PabE(TLxLEp6Lm0rCFzTs-b5Pa#Y%T-P9xC}G9+CTkP?7F`BUYw2ln{EZV
z<3l0uH{8kBBckHezWGMTY`y&I6+{#h(Yv?%`!i*!5ZYQ1{;#4e1*UiMwdEf>PFV8B
zJ-4_`%HvSxY*Y8bd`Y}h5@eG(o=7-pVt1}bVjx~#q7(>~(Ns3iea@VGy3OtaNI6=0
zo@MG=kC3ovMbKx;0#S=0P)HQl`Oq_J;&UlJMbJOvFZXxvUh02+w_f^D%vXwZB#${j
zTSJTpp8<=^ULVELu4x@h6VJ!q6GxDP8G^?#SYwJSs|C>$D55wE)$1-*TEm8qS`lP4
zCdFe`O|~IOQcBB~heY%us2cfTozEJ({pBt!-?a<tNf)N0E_|nu7vSjc(<B(xGHWVL
zlC|0+I`J)?R=v|g?=mmzKOSv=fBXJ#=c6sZx$~T!izW&ZbUMNwzc9j%N2Yb)L@wcC
z=I!xIPw(ktZ_l!#rzBa4nutnq^FqK++*8!dw?3X|QihfE0Vj>E_?l85{t8NciGxJ-
z_C_?u!Ut#EXN@n>9JeDKLzoYV4cge<!p0QI)zK5duD*J!*z4B~sG~XIA0O~`mXjgx
z;NN#2emgft%ddxO^V(j+_`YHZ=KRX~ba6Qyvm=pTS>-RE1MlV=&LQs4YwXOgKgDYX
z&gE15D7K?!CaR+JGSCB|k3xpThAaqHhImzx1c5g`v2lG}sJtbxDsN0u3qx00_^C7k
z?i7Ya&;{0+Tz&F5m|4D@fhgQI!vO(cwd#_^AGQN-HMz`U(99ufYa5hMeE4TJi1F6A
zdQ8=ggTDHPefp?PXJ6L;eZc%p8ILoD0uhwd6rG_UU#i5<o&Ec$6h9v-@z=t8r->VT
zDSp?K`LUoeOVlsm?SQasa*)F0FLvj*?fhq#FQZ10WrLB`>`q2Qc_C^?eA-vpw4@(N
zmH1YO*$WH*^bVc~WF}Bx#WNn@z?hos5hb`AH!EjNi3c9C^CYYLDEj6k@cjU+;)0oX
z(8D=@!k9TjWc(}l9_A{{1oW*VoPc>NF*3WqA{dJTo@`K$`_*k)H|pEerxzlw6)9!1
zI+}A>Torc|%}iE`f-Q3q>$kQmG;|}Xh?r1C^WJ3hrHztQ|0%=I7f6l!@t3<7{PD&4
zznn4b;*3Q|3B69C9>Zl90k(q|f#AO7W}TLTa`OLp_|%rN`qNn?v}fN*;wnqHXbc8z
zD7Z;oWEQsHX_J!zw5)Rb=+dYB-8wf=*3=Vq3K7Q?l||SLE9?+*RMM4sU>dU}akaaZ
zVbb55RJGp5>Dtz;i!*G^7l!dQ)MW8SI&ETE-UjLY%)&yc1r&qfW!LXkECfwi#!kUF
zDQNGg(pmWiCngRXg(64}c;Z)RDo>R8s;Ll0QG`>Y!o_}hg6#Ey*@sj*qfK*j8Jm*v
zT$f;IN-!2(CMVaHpT%dMpvPfFw9*e)c}k+=^>7lMgLzp|6ml90p|cRA$!*3+%A%sX
zCAx?1<eihY&bv2j%7KW58c!jMAUK|v9Ze*PrE6s7Ng3dNpdM;Vo*2v<Sq^Ts64#1@
zc&T;{VB^u;AS5*_vrCJRoPnkei-sp7>9u-@Bm^136w<@!4f)d`yq(s`s<bmnEzQB&
z)R@&6ADy(D!9TS=_>)r#Nt2k^C(ookbM-JGtj~2{&ChZfEDl27PMQIVZ}g&^4N*fR
zBS)p$8RVY*Y8!>iJj1HTDF`{2JjA534O$^AK%qppnYDFoCc{^7(LBg%*p0f1NmpEa
zqhp0POyM#!@dfO{qM(;t7nZUfFrlf1ePoNv^2{%0BL=4m=d!l&mdRtb3m0;!C985e
z#IjjMo8tv|U}P(oHP1cWIP<s}CAZGW_U8w`6>@p(bE?mkBXcUm^5R&Nk)?rwiD37x
zP(c!SdiKX$s=tC$W41SqHs9bl>pb*4X+N2@Wb+!1L%UApUv==L<zHd&fK*+FPx9fz
z%=7-k-+%dV_wmgoc+CCxgvUhnrx}QKr+@)hiV5Cv8BrTO6N#~yeV(l<%Akv?U_}EC
znOs4fL`>zqmcopkQRGU=ZS-oZQ7~b$2J+kYOuI985FM=nZets>R?I=1(|+E`r}wh+
z=mze7>?UXMheWs!VXc*b@HJ|aeZde0N0fds?}aAQky$@jz;>e>_Z{A$nY8&90$fjk
zdG_PX-2!yl$#5QM3;b0OFH{OLqYFla3$t-(%%W#Uv+}ZM^vQh}B#AXqc|yU+lr*!x
zL{PV?`T?IB>=@I$W(2Tr8dOVvFP^j=&UEyGGEa9?R4t!npQ>VatP8u|fZfAlFs>WH
z(Ia9)Qz8Wrwi4cyQd9xhbUB(cbU8nvl$VQqs>(u!g((P8?vVo4Dj^$qPWA}kNb)7@
zd?6N-lI#TeR2sy~-XH7<xllde5iEF5C4hY(;|jKCOo+-jXp2!cm~(*IPLP&7DN7}o
z=3!ByoM#a*5)UC*9BVI$XDXR)x1?EaqhutgIIvY9AyjC#Q*3}|O=CiHwYF>w7pT1U
z4)?HzTp!<G_ji9gSDlS-l&KOi$B?l6_JUZ6-OkL#ao%ye4#D53h;R1s$ULzhJ$5Bq
zfv!0K5A{GTs`=XkRYPY&5~9{>SWV4&E&Df|LzV|n8TIw^ulpI+6A0!e$LskbxXj^j
z)w@}Sl*rB%o|Ex{k#i$X5&~EXN{+LekMqc$>@W%@m*hWj|Ms)`#WQ>0Zr8t$`hL)k
zP026q<F`rbmr#*Cwz%<SUpO;=UW1eh%$4-#RY0o%_SCapuIPR>fdQqjk461?{rJ=v
z*wfS4BMrWnC%cD^pe<@*`}3sR(tXmqJe#8ftG+loJk+c<bUYeHpzk^Py0z?QhT?M%
zkG+dE-wAOd8`gU7Mu<I_K#$_ij3=KMiQCzfdFWw4hO<W$`>A6;HGalkMu^7V(E2xn
zU*4g6)wN;KnAS8mK5zB!zC1koImY!Q(XZB@GQWE+@-QlewZItx8Yu_`mQcU3AY`T8
z>#pCtz8|#8^cLD5nsKC6zj)%_HD7o-dlwIfPVa-@FeqLhH$g^FkOEJKJv*S=t89j8
ze;A&(dAS_dyPQ4K;MP2=vHj}d4^P)C51{ku5nAbw?BNj}`a}K2q0uLYFV3ILFvDRu
z?t0Jqa1FgzH7f-{N_x+Z&I8zd{A;}r>n#87?wtK$ek0Dk;{6JE4}gknctMKHaCT6(
z(g=diHI$ry=HSFV*?OtDrTW~W1+wbZP5kHiMYD^2{*)_pro%?-_@Jw0RM56D?fmpp
zw~m{PCTTSfYsehLEekB}#i*6c3=nt_##KMy@woPq*cy$Gm6^4eM#5E6sT`D>V7$;y
zV5yi|xfC<?b}YbT{JBV$<R{V&%a-tJK<bZ<uv0YtUeEF3%|_Os=Bb3@PrCq^He}oY
z135D99S6BKx>@%dq3gM7)rO^g5XPQ-)s6+9sVi#P$L85YcSV9DM+LFisKgAVVU@=%
zvXQ4O+WY8R6tE6OG0`l5-MZ@HwyCJL^wVn~gNtP2VOczbAxKh{oh?vVbabDzpd56H
zY1M>I6au<9zQ1@~0=W)wvQ;7*<E$b+I0?A;(aQ-o(SaK{U~$y&3!@6@?51zZWOo7u
z^sdR#>d5%ukDdl>ay|OvqLb%k@bTEsJaG%3=Zt~aDxrqs9{vl5P)XST@BvzT<Tuf)
zKL{AV{@Xxg#s6~u(vSP=C+{=R@B0sbKhHtEiC*e9X+V0=?gG5|nT}-W736~>n8Tr%
zTwvxlb*9Y!HAjga3s@XDzA64k)jkyY`xarqTLn)k&Xbq15!FPm3*vidB*fJI1-nu^
z^XFB&Z|}K99mW$H{PFlQ6?VSmw80dr3rjq0e4Ut8ZXoxJP%=r`o229ue()9q@ZwHz
zO2Xz7LZ<nyq3*w&KS4BL46l8=*le*CT0F@WC2Lk>Y7m%~M$$5@*|_z8Rj$60ts7J?
zkTfABK|7d_a=W%6{lu&V;;a`Qi|sxShZfmCH{ENd$8!g~+DC_O{QRR6@G9-l_SGr>
zCrT*y<Eo?n`JFYLL(C*r{HH|Gy7@z_<|qd9cwCB?l`MJuu>0E!v9P5&Q-KXR9DcY$
zJVjq1zM|&p$u4P6hC&?An~L7BirP?sQbOC-)eOWFuA870X{uYYLNJn{Zh~2jo-`~q
zAaBJ6Z(~L1TO0SW(0D|&!T1s#!dGuHAreNldHlBg6iA@SooAr{5hGdD-Zn<S&f+>#
znHEIzyqRW?&_T_qBvsoA9F5#>Bx0bj1R^!pQeFy|OFR=QtJ5u^Yx3gLbt<oy__Fiz
zg^F3FG+3Y1q9J`li>fxDbS>&4LVrS`%39~xx4+z|l6&OD`3ILmo`?0-iA9RoQS+^U
zlhaeLk@!E4ANF@2$KUVX-|t`2(YeS2VVg$c$p+9K?h=%V%WcMab*^W-6aNA(J*`hs
zg5>aa56+KJBuZ?5%@R`|LLy@})P!->6lalhGs(1`qW|54lrm#-6BRU$+Fyqqor|G#
z=<m|@n<<ZeRL;#o*+&t9Nq*=Q{qN@=OOrOHJ-T^Y8ftcOb0CLpE^$)?nzs>QExM%b
zOxzoS>#*)9?s6RgQ_-5XLLG~oHR%4SaU&W{x+Az<8BB3;K#fvB55)|#Im3StUBnRJ
zKdVaBwsK7K!gXh!tR#iz3UZ#)V>lF{<zs>3RTB`iblSsXgf$F&YpQxXikFP~4oVKp
zP)4}#X3@elHI<zrIK`Z=Db}W|D%EnE$E;gD_-XIOn70Y4cF{?&N<eShj(Y`fB_2aI
ztL#0DN;2GL=y@i|;kf(tAUY;jN+HIS{h+#3VEjt6`ZaOX>yj5av>F8VJ~M52@a)6K
zPyhG-v2lG=yWitxK|m2(ym!&lSV=-BUhy;_<TlTqwe97_j>&$m^}GR=6UE}T2`e@(
zJB^$D1tdpwzvw_UzgjcOaY9ReoMAnV6S&#m^Gh82C2|UXP(MNe^!vlz_~ygkUq}mu
zqAa7<7*ELGif9unu&ZG(=U%tz?85<YFBv;mQj<O%b8A)f)|XX9z*BG*!{gs;wX~(!
zz8R4nfp5O(SwLwUoK<uoKEEuL-H#N|wexG!WyF(XYx_ZKDC}1_MY;Uo*tCB3Il8vZ
z+_^^2e{9p!*{7ppjbFA5(#(6EXnc7h7d$feC_&Tn^2hcN!0a?O*0DXpDJVtN>4)Q!
zqmqN*8NFlue0CVAB$>%sWB>hd{(J7$oTvvP$?5dAiYhQ5m)mP`A!!gF=D<67V@o_a
zRGu__+R^OEi|5Chlu}4&>`}5xxGvw&jZ58Y+3r@y`Ix+<2-#ZrcNmv4D$$$%jspe>
zigfvIzvKAlZfyM9B>wWpc3)-DJZc`wVPL&BFrClpua3-&ro(p|nWz$c&B!$8K_k=t
ze|2d7@%zikQu$CFTr4DK4|Q+)7yU7c_=#Uo%N_;Z2(nxml5QG|J|sttypx7p$K<Ht
zx*a8;5?rT^8ni)@6}qO+?|_=xVEmpV<v%m!UmuU(ai;v^_sjES{8t~6w5n{(?>AEZ
zGe!ROA^DxA$af$9c>ifNDNifosw)A3W2P_b`Q!X*hrF0!UL7H%-eUtN`;S`&^FPHh
zh)#)kZI<iT-oEYr4fpR9Y2S4GuYUqRdtu`@UB2D%g-Pa8-&`C<mv~BB%U(c5cU&AE
z7mxo9V-D=?HyUu?&?XuN!#56ti|zR8FkqZ9yMF!H`G#xpVK)7%K4j;^NEX}KTonHK
zbJ36b=wD{_)gt0&o(@$tU)|;3GLrt6%|ZtY>ue4x|CxjSC+DE=_INGd<?%W(ZVyAK
z8$xHH#5eyvp~S;gy#M3f{l~Yv%aOhs*QpR;mMXr~P`|Pl9+s~j5D%|E66c>Pvfa$G
z1srL&_`~rj{7Mzlg_j%*Lb#ikVeVS;V=2Vbsk-GrMWXSl!m=K>rDImn5<D;P)1|wX
zv9|rMZb1MJF*Ys%>{S7;s{Ab=3TR0hv?avG^Ik}+X&0eqfzm`ER*@iOfh?p|4HTHp
zv-PP}rCS1~v~LG^Q&A)!G7mqT!%LxhOq?|+^)PRy<@1kjc-K2JL%P<1c>CyY<8-)w
z+r|{0>-aq^;rdTqq>l&ZWmmTTJB0jPJXM4IVx;0PjB;-GpZGxH(oJHh%3pqj=I2Mq
z8u9rNO8*m&(EQ3Hq%`<fK0>ztS3N>6#^{CEUro-6IC(0p{Tnsqf9GuU@3+AGNX=SO
zDMMZUswMD`TPGKc|4ZZY^2{lPfPdZl5KDFLJ@=nk^Pl*r|BuX?nk~;vUu8-nU<X3r
zK?P4>pbj}|(WIH}n?WG#dh&Z%li!0|zI!-HDC-C!&g?`e(veZ&k%OauzdNI_Ex$<3
z9#}@C04WMEG$GJ50>yQLIU=43%uq|J6aoW;AW)G~kIHkYmk$tmf;>vr%i?@d#X?-*
z4Tyc8(f2_!I3b$RtYI4!Nk~S|{X}C^QCm<)%pgJN_F2S%U|*utqZWzA<5yQ+T9Zpp
zx&Icl>`WkbLi}BI-S$WWShCkgusl>v742<T277JWQR1KBl13)I2`V-7ocfVR9T^ae
zg2;&>F}ps=3=*bAa8zJ)?4bkKMlqi7y*7f;no@N(I3F87Anh1H3){Af4Z$ScC0JI$
zZO1CQYvJ2-Cc0l3k?8*>HSbap5#v51@D<p9q}vpP*wSX9Rirh(EF3-{d7#)iYMDug
z$O0DI^Tsozy1dy-<-ARawUgK~pYRU;`5C^K{_3MXqx;Q+oqL?%_q*Nw*hM(c5l?0`
zI_06Y&qVDYz?Zx&cA7b9{Mo308WqhhiY)Sw$u9uvgAOLDre!Gr28&B!mnOo^WmZ$s
zKJ_}ybsGU%s?6K^2ZlpRttavAfTPpaHIhXULKskIN6M5cVz>U!(3C)20hSo@90#od
z6cdS0%ulK<r+TfaR2M-pFWHtz^<Vnkfy^&^!MZ3@bSbxeDkliSJ?x|tOF!^fGGM3T
zcRMdY(`>LnMYBi^56m1jn-fGKfi7hJ$bvk1yIEWBV7!=_ekuA$ln>A&;GV3<m^taN
zN`+@5U4#4^*hUgCFuF$HE?yBi2aV{KrE#BNH{@v{UIk9l))*&LVyg7A>-_u)wZ1#B
zaTCi48*o<gRqIpg@Aq)fKHTsAc23RRmf+K>YUdxAz$>>Vjyk#k<a`DWHq*{`NEF1u
z|8`TL@C;U<kor9Izdo~*(b9tzwmFKFb<*P07F7!*>w@XQj(uUZwQ2t4a!Wqi77Mcx
zraOm9dlP_6wH05?7Ym8F3*XY5a5jqf%%<^^^c<48M5dvwPWA5SE0I$-|H;j!*!W|9
zN<W-k8_h@k>5H5ii8RoFH>@2ju<Zd3Yiao|Sv5lQ>A{*B6L8#%OrZ`(o$mbkN7`^!
zq8Ai0{Ufk&!d956Vb{WI*S=?pWR136?(7gv0La$*{Y4;t7<1BB8eC-wOmyIH`O+^q
z;^2opx=OjgF!DNh+D@%wh^)FT&%0FM%@Y;FP5T@T0VZc1#Ft|zGtWuogPW)&IA9Ym
zo46N{wz)oJ^qA4DS5bD{@#H4qD^>ScKru#@;mnIvE^PH>K36GpgGVh<%{MPp{83k<
zMT8}Wx*G2TYj|sFqytn6lBn^Qv6@vuoqQ)1;zTim+s&gP*lc(SpsByTXKjCMm290T
zE@ZO@lXaps0xLH-)+9{;)=;>Fb&N?EPF{M)n57;)cx5J1-3vv^WTYW2C}?!>u8&&b
zJgp-FrI}UQnqfyRnqn4FTAZ_*hCAn47Rg#B;ab~H`?1pW-Si9XMin)M&XXvr?bg$c
z#IqRx*Qrur&q6BYv9c8eKdTzk%+v(3SgLqY#Z)`)+di03Y_Z+)!h+9iEfWA5=&9+!
z0tFxTRDoqx`-J%h1#n?MwIccj2Xf!kdiQ%8{bF@v!}E<%{;s_S{{edq-Uvk;3pCej
z?K-GkZ*YWolIcM21Mjlq9!o;x+Fih{o$T(CNQ{t-NN9q=Vng!|M;CB(t?Q-so#=z%
z=(e(r=J=3-cdKP=9VH}{eh{3x4gJM09dG~ych6;%=Q?!GnxVC{cI>meJlKO_KZ6h+
zVLvP&Oofom*kKXmFr{z7H=)}KTj~|k;zY^`bIJLInqb~i^llr;M#!tka6knK32+vU
zR&_Ly=mpgw^2D^|uUtRNFx*`u9OtU*x8wE-fdz8)=H%PCHzrJ3akuu9#)zaRdl&f=
zaP+X)UUhUv1-vAN)NpvN8ZNEbTk`ix=u?tRO!I~}QqY7V0V{{uQq$Mq(-+g6?9k}b
z9?lRHC$)5qUgnZJ`gsxFotNiXXY^Ue=O<~LHe0I;!#VQsW>D=k3fTLJsnh1Wy{u;H
z<)`X%-=MiqgD-ep#iW&%DRA!um&~bsK7apS6Z%PJH9Vs{T4z8DquX_BiOFNHQ(4u}
z|9|$*Wyx(L>(;M=2M`#@D-uHmCpDl)j;KM;%2dgv(=5qHl&k;N)1Um-PLSZGN*Bxh
zclU8vCQ$&GNaS^2*Xriu!yVoHgHH74QILzLBJ1%d`^C-nZ~46CgL=V@*k1KxN&_^^
zi&J6oqKC^rvq4V$*o4Fvi~jtm*c?wv(J+2z{aQta$xgcEd&9l}uGkMLdC>%bw@sFR
zTfe@q^o#0hfbBkf+CH3vwf$m&_^5(_OEKQX1U4waY66+1s&NI_9;ETACSVQmV4gVP
z?u1Q1+#rvYTzyBHOfN+M4LyxyuVN4wCbB_fB-@cB>`>3@%vA0lUV!=&XOED<B^a+J
z7&U;jIOBuPUK`&aU1aQ)03uM7LTFc=o>&6HE}(&TuswUR4M<cY3QXA$L76_1ZIeV6
z<Xmq#Z(Ah>PQv693NDt5D7paIf`CADJLrZp)7=;HsT{7tpdUq+k^0Jm>BC{iI^&H#
z9ln|1E!{|Zw8)9kGpiI()g01;{SN9aXmfI1;)0N5#z__Lt=?7i&c=r{?XqBG#<;a6
zpvSU|0TXhI!^Ab2x<56o=i}W!`|TCbzF!OnO?u=rIaCiyu6-r}Yf{X?ZLpxM?s@7y
zLBJm|;Jb!%+n{gH)3)UHHf<ZqV95x|T=$G7BMvsue0Plukj2DZCs(v}Mn(2>Y4*<o
zF1&EA;z}^1WxxPamA}IAem?H>CwisMbarMwwo8`1_AD#m{_Ks<TI=kEW;&N2)wp`!
zA5_?+#qdWJC3E7BD2%1=|NegW@f^Bm*a|irn|T0ubnTtcfSA5Pd7a?VC;trYXuWVq
z|6HVe8o<1gef=SIw4Y--RgeDd@4Mak{EKO8AQPTkz?<QAc&Oh`$@%3kKYsXdU>aZQ
zeR<Nmq*3W_J~^$KT5Ii7iOQCjh~yTE9hz!9Y-Hag-z{lr#ypWF#Ju#Y_JD5jfbMXA
zr~8{qTh$!EGHKnRJ)m1W;JIJzmgOIAZ1?20JRj;WFwL}Emj2RjcFWc|R^a%qrqb8C
zC$Cgm>b`87mwp36uP0-5fC5GijHJ}$Q92w;`G5r(5pdkWR)>|E%?36N?Cw?Ub+4ty
z3YUtnCY=t(x#EvRXQV2(#QA8M^G}8<u4|l5hZOn;*uMO(6qzqTX$xy-d6j7pju@s=
zW0k6#(j;OjmM+iI6(yQa=;2i)V7G(aa9j!L<EFmzw$*1&)=!qLf9u6u$v$tVkD2>S
z&rf%czg_G{LfsCU4i7QPymupF;LnetM5QU>6c7<^Hcc4eFbV*vv}1ifVXBl+Ibs|t
z5*7mL17cE^l2heGu}6){699+<(FV1oiW;cSSdFVl1Js+CvEfYuf?ymKK#zT+t{@sy
z_&_>zT*#?|j*PB0qFI>>WMn`T>9&~e*D_|1r-|Ot8AfXqP6-nrSIOh4iWFPv(LUQd
zc8hnk<Ck{HnPv0}EpRN)Qszn+xVlMN$DLcChQZ?a61Gey^1C{QV7>B)d+6f=d8x1D
zyM|+?WPi22NHp_KhG_6(dd4q^Y^eUp`0PY;88yY_zZ#V`Pl{^&A+W46^=*yE9aAm1
z3cZklvc-ChJL66T>`9NRV=`==d?`ReBq8>yK7xeU1gwU7h2XNG&J;<yV=vykC<r0Y
z*^&T<ZON{U)8D;+({DfC@3;5wFG3#kBwADqJ5k`Vn3;Q%AnRZQ5(Xz7$cnYYU2YQ{
z|E0$fmd5!H`}!H0QWQnA7X`)R=#Q;mX<w@^1ou)a6B~daX9N4CbX&(Njlzobs;Qy%
zewAb%iWq+CxOX@)*E9tQ@sihzQWpk8TJ8k7-|Woup>LSYB`yJ*VY63yHC`*^do+23
zWUZ$__f0Zp$p7InQs&qWYgwA~1us}u+@bO-(7}TplP2wD>`P*Z8nuTxFrfei$(YN$
zqs{S63J5GviG=3@1*9Iq%nW2uv2(m{+S$)L{oG1L*mo%X*j?p%bDGEwYip9bE+eo5
zP9$WnGMcNit3MyaFzRrZV#%`%YH%UsG_XTw>}J@LdaOTaFZ^iSz|BB5Nf<G01~Cm!
zZp#mV+Y+4|)snvB%s?T~FX?eOSM{7;&)GExtZF4FC4uaf5!Nh0X@S6&lkhs7-b|*T
z={V*e?sjj_1(cy^tPAu(Gp7M{6rte?z392cB7Xm3Q5X2|%u;bXoK|?2s>0I0y*1#k
zs*tB-3m2H(7^Ye!L5v!$>TWG)3*r10xzHk04#aRQOUsuYr}?e(WWU|v<Yu^l2*uFW
zkn+r6d;4^FeZBu6+wvG`0elLBc@oqHLaYFZwXD&Oi=aT*hS=T>3k1p-tm#gcI;{ai
zZ!QBgU8X|PT3U5S@KTEKu4~t5WySo56)X`FLBEX7Y{BiY7$lAS40UMWon~YSj!YIc
z03V{Jx_}LkcGy~g<Q(E*5%$MbxB+;RjpXEYW^vyMJ5*NSEHtcwtDqPX96pwSN=?yD
z!3IgtvNr!Q$krKOf9fX1m00t5!RoluWJIqJhM;M~Y9sKAs(KeDfOu8QaS(lY+rPPc
zdiRE?p&Xa1yy0}zH_bwK!AuTXe_iF^^c0e?kfs4lh%6*<>}0)3)dT{u1^})lY4Z4d
z*B-)Us7?ofYb7xZn2Ny$_Hn+{BR8r)1_O&94DJEKXd*?_PYAPhpawxS>wcQrZK@a=
z<o@hLI*L1MT4VQjirR!aCn<YP{L?ymKxm!9PBraXO$P;8B>H)h8@&xdZ<5_!)$R2r
z!C*;LU3=?AsavbArm~m!vE6UgJvOgK2{KwKJ437`ilpx0qRgnG?gP`m-UX0f-E7M4
zaCGDF$;>Be0T_@1B|XSvXUx6a`S~a6551q?ctaZzz!IxZU1a8KpMM$!_TL_QQlI&X
z(h|lDaE1&#^^z0JRjA_JC@_A?!_e-_2Eb%*t$lo!T_dVULpa2^EG<larIQbU-DGz%
zWOwi05@%8Mr^Sf%&P;+%p&w9ShfN3v$PYq$CXxTfupOD%#I!7SW%d`tJqCx#D;|pF
zZEL|VqqdJIPosXro$S3O8##MjkyQ8rlQqs*F{~$y5#@c<@hmhOR#lyEU^Y4=&Ox(e
zlZ5*+MOENXUGqrd!kp~+s`N(dBL48vS#3M3?MiUQG3u^PuSQJO93NCPe#7w@ojrrs
z>+DsJKirwC%bMiy47*LODA>wYqm$M?bKs2Ty|LGQum(A}acHOJ$+0H84T|E~En9ed
zsH<KN4{hld-LdSvL*I1`oh*j_(9w-G>(l*j{V#XhzyIUz<D2vF$sx){K{QG(x3G`&
zVlpNqk1eT3&nw#o!Y<V2P8UE!5+JEqKMMe8-Vob@cyx)x)Ip9<(7|BJSP5-N2HBD6
zECSlvWg&|!iadKX<SeMgXiu-7H=|4vtcwE4jzaAA$CrEi;p5eJOO^mf$Wc|kWsf{B
z`=K`!;Pb+7{p4(IkUmo1Zz5+U764djt&vi)NJehO2jWHS0N5z6$08--+&a}+STUG?
zOY@o{cmL_(!+!hWxBD|CWq50gK^zU-Z7WRp`apPt1d7??aIQOIZ;fn`ljt4TDZy4Q
zw?SMp@bUH%o7^DCAbrDTDCdBev9$+dzUmp10O_jOBXCz?cOh--NI+lpMGSH*3huHF
z!oczx(8Hj&tzwnI)I&>*)InRwJ?e$!Uzbuzg(B*}`yi=U_i<T7!8=nYSMCYHL+^lP
zz_{?hmz&reCjs?=ZzfB-u8(#!<y+9mRZb5XmQ_b~hu(rMORLnb50-T_u8A<_v5<}M
zYWOr9qgOh0SQkSm(xz`DCA5YyLl_B65{MDA+S|<;`Zc``(yv$WT%J+KBnVDMO`dxV
zHxBCNbnBsEK`@hg;A9nG%mrH&IvKmgaqC%;6CYI@i=Q9s5MENH_1}YrS?Aol?ce{|
zzyI**{(Q>$Xxg*Wn0Tl&`&I^hCrsQWIOL6wYuix~$myK=mB8?BQFK8zvZIO26Dt>I
zixn4(nbm|e={%H(yS_@+Q!!N|8iRx|ZO3k`o0G-b`SL`kvlh_ribbw_nN&fWb{~Gb
zSS8>5%dOJ27X9|!$E`vxPiDU_2X-8&H7D^z*|+~1YRxIwoe-ePZ&7UfI_YUct-Ks4
zx17I9b#mlNIu4$vmMF;E{NqlJ&eQSoR*88+KoKn!BK_1TbIga$_s=dX*khtp-Pi*I
zjE>(cPf1h553mG?BKi87?)<g&*ZJYv{-$Wo%k2X2KG2SZlbI}5K%zkw=@Z7-Ok7lA
zLr7cPhO!uX;clXpV&yKjOtXJu0<izNN7H>L>!FN?{i;@B9fkW1uwM`ch|er`t<@|E
zuC6w>ju2;i#p7G|+T?~~gB;(!&ZqX0$M@zX<FP@GZ{NBRk4<(<eLO1MJ!1_*%iN@(
zT`8@TV3(6NLxBOh0dUD7uNBpSeO*^ab!^%YJw^#z`I|Mf`p`g~Cx}MScv*mJ`zuFO
z3@}xsCriK}S0VPP>x2BkifivIm%u6DxzicZ<>}~0|44)OnV&^1aIDDMF6ywTwHClU
z5Y|LbD_p)y&^u%hJd+4Ld=WVsJtyi12G(Q^b8E<``H78L8MN5||M?x&^7DapJgDGk
z@<O4;IJ#<PHz7~U47(z^XfTtsS)?xv(ii0Ax4r~%i!oAG*-|+Knysx|gdWZ!Zm@ZI
zagA^=uX7*oo1NzrN;5WJ!(a%ozV3T<+o<BCH;&iK8aBW3l^WLl12kWu0t82%g|AXt
zRVs^M(zRan!vD`wf>@R1X!kb&)Z)@%Ga{f@gEll^_lSs4jMt@XP0vE;A&Op9G2F$`
zO&-b?hMi7mq$ARWtYPBFggg=h!#5BD9Nx)~ZEAkJzk59Q*Cg4>D8`qE_)I|AfhJrU
zUGC?9#s==PZFJ}<()And<7L3w=f^1D`pm{^D&VaDbuK^m!)I%Dq}n^HT0>tL53H<z
z=Cf>=e!Rc`)IYtu|Hs94?6e(+te|m-eh5*({FOv!L5|sAQlyrvoSujXiCg?+-oo&Z
zyFEy-W@rKllqOfe%_QHH@yFG#pAjmeMc5P)%eKn+&7G`^y*O`x=2Ib0y*-L4sHkFP
zR(KYjAZxM6WO7}r3%ac=O3Kn7Rhhxc@63569zNe$G+6!GgMA?X6DJ5+7%(S-wMuDt
z;xf|-1%hm>#vRE_2};9*$5j?D(hX|!|BTY5^YU2i74X4j4(8*|j*(_H1}36ho^zr>
zwfKw=?b+CmCwr4?v2G8FwUpI(P(+~=8xMyW!SNk9({glp;C4CHmzx*j@Sd-Eo6_(8
zURA)4AAbM!JVI>PT7=kSIBOs|Pjw}dMFulvcpd5O&OYVyF+-n5*h41v=rt?P)Y+%q
z5<*>~<@-Ddlb1)9d6ahacT}^CC%252Q&#WWRh_f0sjnSY7C(E)$)ifBDs|DSh2x>)
zvc4?7*kQ^Ae=BYkj49jsN?B9|22CasM5@gBuT6Q3rwQ}(On(N;LsZ!0#n#5_VmP!3
z+3y)c46Qk}&(@}O=Z<2zmf!noqq^b*h89ns+T7eUs%BB_E?U)=Cu>zDKAtx!0kO)7
zd$``H{Lx#ZnzcO5UsirnV0j&R&2#+m19JM?``yJxVvwXo#(l4#h7AVtV%Eo~U<`e3
z04@$n3bAaCq)*&__{W0<cZh|?3TSuDzs3cr5_ZQQCxW8H_J(5HC~UF}XDZvCV80zn
z6g?^PgtFG6*$;=a12p@k161qT@ibu#V(zpk7z(Rz0|q?a{xp+X$tf6sFQ<|Czz8zg
zk=-zeQ^im1b5Thpea7~QDk>E2Y1{@|xgES9uq(>D(h6HX_3+T{aI;=iK}Ra8yZHRV
zkG}ey7WG{|>Px>;mh__h#fR0zF7B4atAX05dcCtxZz)TB{+PGYXo{@LQ|q)=`VV@k
zi*aDD(_f5(|Jbftj^dYpv?%>>%eCRY7{BM^pe+<%-BX*~qJEPU&gW~lnG}7b<!sSs
zKjw`Vwe2njLHqnq?xjC<AzRLr<2I0fcrR%s&?s0=+8^^i=K~-wcZ1~s_>b(NKY9H+
z9{_2&7yP(h+So3jCE(a!<qrR1>g>}bJ^KNu0g^%vqEYMBjmaz*qS5AfyTq{Hf7x$8
zzWeRddD@Xb$ox^d$dADjkyYE0(5L+8;fZ7+N99xb7KsoJA>wUEBfVA9C`oPUq?RJ<
zsFMH5N!i_Fxl*?}C}P=-qlIeu{%~|%dAM4}X<bEi2%A)`>s-TbuJcK)e4f-n=fAi1
zxenfA^|fmDN|K(BZfetAmUDZ71lGHG@ciTMpXX-wFqyxwC^JL$Gtya|fu%_2>G4DX
zBrs(tAr+#u8ogTw0+xo<rJ<@YV8TEGoW1#}M)|A6AxO@QyalLk#M>se=GBzUkTy=6
z`3bciYjSCH)G-3<6i%``B!4^Q^<Xiw4n==3eFucat*j#a*)DSkijf}_X>*Gy-~2;{
zBr(QgOtb1}m%3wQc50#7I8leLUA8Mn*OMFKcK+oYLmkuXdg9^3%a8Vd*0V7qr2I$H
z(T-jxOX~T~%(?TzG!ox^+TQIieb<dOuSjpL&wS1g_5yKQU9&zvW-{Fbu3p!t8~o2k
zt)o@J2Kk{-t7RwXg>oxvXt~N1rff&ygqOv$7Zqy`u!En^ip4kteAEp3*WSJV_+htu
z_x@Kfg32QPENv|`0UVBeeAX2Uk)=`D#nT=TYREIG!)7wRV&im52>ZU@8MT`0W;f>C
z_n^c-V=%+0f&qiaHH@89KmqBB=A(jKhQ8>$;f2Vcsq=P@yB~ZUEGVbey0bDm-U4dK
z=}#;CCr99KsT<u>0qg5FKKGsvO4xd)3+Lb3q&O$Cbq!-TX(%X<5{XVcuq$V20(%ZS
z9ooOXo#@-)B1_IIuC@$>R!?$2j^>SGSsGSxE5Eof6hK>T6GZV=ASMihMdb?KB?{UJ
z>oFcfIoxsZDC<$un9AlU8{&72J=h8t(PLK7sLX}L8Nwo{Y!)7($`MeEa|O@W{162N
zu@|`Ad`svLziV;CPN)VrN!vVZ<y+CZ`%t&72xJc>>qymC$(GP@c<rr9ZlTIa&bdYN
z9GkH_v@PKySyiHWaEb>41nbC8viOrw1q&DZDdu(}HteuyuyA<%u<L^^9?o_;+YW_T
zb11MoUT4-8Lk0W&xBHLJ$dJFxG9>tQy>RS)hzJP?@?R3<e}x43@wbof*thE_S#DX{
zw}~hr>ck1t$+<c0|BF#4C3SX%Y<eR8v}qi?xRyj(Klk<E=+<3$al2z8>70=&w;Ar0
zpunr%+(~0EZ_>UUns2H3k4Ezy_3f~4o}@xeEalcRTNjVnpH#1Vp?YdPg}MCl;ltn0
zP3YTTp)Pd|%CA5H8r{RN39+s<uZR!J;9ivQ%037FtLkCD8pekK0!XsgH&q;X1sQdz
z8;XycRvIa8)9c`0)qncotCPq4?I%Kst6+2!#sG(**{)xufenjLyP=jr=00`N&S=-`
z9(IEZWm&R$)T^L#`aFBU-=KA^2PfC+Li4IV`t&5X!-siS$5{Q>?yNtqWz@f;P_tgu
zfAwtrPx9{T`3&dmroTPX35B=-LhT-M{96?XK!6j2EPtz0-aS47<8c~cu#M)_m@FMa
z0472@FzACs(62H^LbR;ISV!kzq49Oz=q$-se(Q`XQy`R~aU7F|6>#zBxGs)t6@>tL
zh37{BA3D3Iv-`jE;WI?zsHBb};mpa69F$(+<e&gF0sMhlxPmcC-jYSp>&X~2kdui2
zQ3fv7E;hPgQf?r40jN#fP(TAp6Pd;?$<JAoa+U;c>2*cehV?F8?9*6>DtIm3M3Ux~
zT!B&BW)UEpm$jz|fuV@ystgLp9t~=gtPZeiCPkC7YAMGui(sg#r*Y$m?T3qb+A0+{
zC^Li%yt+9|L4aNv^GvGi4;rs<wj1~IAW+3*!8j0xw_Kh{F(E}k@sl~T$x?H|j;x0i
zunLl29GkZHEkfLQNVT%Lbwt;#9VXE-Mg!DJz!wQtdw=!G+aL01!gCLg7PYB8+FJws
znU7}snV+1>{9x9}<e!h)P(JJx#iafKE^*~cdSM$1xTwm!jQFVhQzaSYtdM4bMFDb@
z?O=cHSKB}5SI+}CDR1{`G)rBSP$3$!#Tj13ehG77|GEX(#S-S?0Hnx@R~66xw+|mK
zS&Fw(IhX|vnD}2d3k;TNo(0T+_Wz$b6m1r?N4HtPW4$%NpZRFbg7##a1)BAm{C~}Y
z^I1^!h!%kJ(BgUsa#!@(wVjU;P{4HR{^>-09tCN}cCL)I5krp&nOVqqAzz4@*#x=o
zv51g^uV|PE@%2Fk-#6V|r?9ueD(zznEBarqi}!>GJKzAjARxzq1gc4q4w8e^a7ZF#
zj)E*aOCsSYi5P+OKi}W|`r+5#@6T43JW0hIYb___%S|S{$qQ5TH4%@sr1mxIV7`$3
zbej~7O@0FrNLAY|dYzHj(%^banTkN(=@3Zn&yNYP>Yy;}vPp-h9)IJHzw!DF1*=iU
z;}cZ@g-(-MA4W#|NOnjbt;<kA0pP7&GB`zmWg#xk?nWJQN0FC`se!%R&_c)+(ATVg
zp$o=U)bl3-c&iXL5<Z9cX0c9K=4%s?J(vWkk=6oSge^Ubr=yO90E(z3Tt(Bqr>f9X
zbS(_?eM_q=63djD3G(Zt8Y&I9DnCic0^k&+Iy8iK4HO>=zc@sqz8=8WsDf6&E?pPY
zaZ-xDus4BRaqUR&PZXTD=4ijetv6zh6aBmZvzh;1S&<%jP^5wL;Z`Vqxa$(FD^z{E
z|3Ss=><Mw$QU~JgKzwoSh&t$o&Z@vqs{XYyPI~z^z%R5H+Yp;om+rdaP#0&&zqt+Z
z?Ya57<zdD_Nq6+yE|Lp0j#WLecrE*CLz_VHfXWQm4w)DDD}}2*N!S+9E-1yXo#OA?
z&s0HTd?R2dcgt&xy|FivmQhl9`_jd_`i^X46ELBJV$9GFmL>G6wvrr1a6wNB=lCWK
z!`a#To4T5wmC`G>0Q{EI3mQav2(edc0MTxaM)+!9D!0x};k1;Uu=qPN-Orv3q(-f(
z?2(txzqzPXJ-)rHf9HfO8q(!^5x)g&AOZNP_2SsIuajO(IAgp(Aqc*60<X+;q*tJ2
zU0!f&oi~OOa2>9P^S;zN!s_btYvnmxmlhj6t~)lKNp*ERUgK%=mJb-fzVSj1_hrp`
z6@d{RqL7MwRlQ1GT>!LKTw5&~a|{r&sH1h=&qd+7!Ao^@0$>Lj0Z&_Ip1HdIkZv1t
zP)M=1V8s;Y<aB&fM=roEb*{##Gy~lvtJg59F$R;L#=K@GgkV!4YDFyWkeft!w7Ca)
zHg)j8oo7Klgu2=Y10ii9`ePudej3+tEGq{$M18kfp)@EFHKj?1RZN+pYbkjrt~&Fl
z)z2G3pr^*!0K$w|8vuk<iM;|3T(76O9hsg<`JNH}2tiLg@E${&wsQem`wvyJ0=ia!
zew&mKn*c`lwhjAH8(Im9Xb27qAv43`2nwdXSe1AI!q8s;r(#<qVvIC<CJa0b^>=hw
zuMX?fVPMy!&N@uT4+w8{T(|z}tiL+-S7-gzwf>@YhYW2Swy12o4?^!?3D-=Ie(tuu
zbz5)U*0*l!=WZ)l4@hSp0t11zi6yJ|ilx^^Y>Y9fHE+Yhzk1?6o#Cqf`LU`y=g!7h
zjEiFsT=-bq5Fi9Ws9@?r2D1N)aO8>JuwWD&Dinpwr~&%cr9rq4W3LpTIOB?|%s*K0
zMix^b({?nQyc-7YDA=Z88M9G2I{_x>xT`$?T?a|>Bm|7dqR*aweE70ze7BbZ>WJP8
zDi6^U86TA9EZi3*`0&j7?42vlJQ#9W2(3w<WSZ8SK0k(`7EkU1Fmqy`Xs_M3*Y20?
zd8K8}s_*BNxnqm7%VqljhhTiZcorJ%yU({y9pvLC0(?Q9o&Eh>OHooE;&v`)?no`?
zwVy}4M5BCAX|C|0{?8T4S3mbpAKJJ$6stl0>F$@^g+G0(As#c>8!b0Al8DkNZ$r4e
zC)ueNe&qPPXZPTlzi{mS)RbouvZSx&;c1dT7KirPN$%yeFXhV3XJ^^y^rHQz`}gnP
z?Jq$Y-!vE2%CLUYI{8sam>BhwwpXsj`WjiSot3c-IsuNnPT=jjRA+J~sem?dawLL-
z1`aN%^iF;?@dHJn@Mh)N6Dfg(0N>5HNrFVe)wdOto%J~)JU}{~&0Xv|I}F3<P<aDj
z5_klC(L_ru#Asr56f;H&Xf#m?kXuZ%>M;RQ$c53n#vTv{zhl;602;T-5p{D8s)Se^
zvhw`~)J4q_hb<}dO*(qd*`Rzq5>^3CL~5^Mo0%!_N8?zL7J2YRpLwDWe(0kYdLFBv
z&Y9$fyE&11IOI`Fz;Z1V<H<6P4&fEYVft(u^}#EDmPTzuv<yGOtz#qd(=`UN@b*9P
zogM`yFkHpk$ct>@Mf!9euBA_tK7J*AI#|ZAHQWBoL=dNzmx#9R*OmZm>QIt_PVh#^
z58K|9f{xT@kQR!4KZK#4+0t;pAVdWkh$vwVyk{$=Bg@lS(e|wR-ic&6QU?orEAc(d
zz9?tE%3eFe%3uLk)wHDKLC{DpGG7zfn=YBdo)7~h0iq(T4t=Z3=bzHVOpf4Uuu~=b
zU_J0s@OuC+ly(}GGaL1aQ?In=x_73DOq!@&fm~kTz4%sJ1vL%;EJ%IGl(kFKU?>)o
z6<x*BEKxz*W77YYKP=TJm<SU|MIJ>fA`mt3-q`vnf%P%jhw9x??{-Od;X<mPdhN*)
zeZyvcYMVUUhYyeUpYA_i!^sVA4bK3E2fqd!V~Vzaxh#OQK`W7PJ`A`g$++SLsx4qO
zMu?P38L}|U%5Ejh8NCbX%K^}F7j0%10SOknL#Q9?lua1-DmqEPRZ8|~OJSW3Ni0ED
z#ops-v;V=1BG)jQiGhi0S)YM*7{wqMViEEkk?I~RAn0X1fM`s?ao3BP3tll<y!b6!
zuKC%__$A}v;czkk+XC>jXT{e7ZG<EWX9IudnIG)u<I^Q$xn?XE4V?OU_(6pcsRSN9
zVWm4}19*5Pu5lXi@=-vo@)~79_3E$~OoXxIfXC+z8B(L?25Js8+N5C~?SdF8iX8^2
zbcPYdRBTo@W^xq>(zK%<MqoEUFymwj#4jnxJ4d1F)7*F^%$5?d8{wPOjz4N<5G%`#
zb<K&*O73?~;EWNav`%SoJI&6fq){&+SQI2abjS46Wi#&2+EKR1fHG*@iWoY9@5-{9
z)N$<%>->ie0<G%5UYNyX^u<zwKZFfzJv2enJ{4y<Jb+(Zuix1gXjTq&2VxnT-VPb8
zz(i)>_{`DJPro462{cX~xoJZJYynqt8clsaxxH_<x4-N+s9SoXfKu!C>t&q|Z}Ryk
zqD*r9VR5mw@y_?dVUFxq<?E1^4Pw*k)f#3|y+h>=5=We7k)t*B(`7>st)SN4*Bd&X
zv~ae+ayK{Gt`*z2@76oln|o+2ZB3|!<JgAFmf0`b(>|9v%CbE>VoH;1116}`tJ>zi
zz4Lbfw(|c5?LpcT@ehjSm?oiDOrRrXd1{2Mp+l78xMz3In#VcH#4%sl0P!2ZZF-1>
z`1v0^(rpC&cJ6eEZ#4g;Xo1mx2#D&AQBeD1{L@7g)FN(5Kv77uB$fvPMz&Ehs9?7g
z6pBuxBWFNiJ_xRPK=HvMWB>m=7<6jaBE+~ZpKJU70j#HTfoySf5FSy7j_yGwVpB;D
z8pnRtP3*IqHI##H(#<N#{_p$qh3ii0vkMjkBo?`)eYUndu$xmLa-|r4|EQoEe|e+4
zW@Ln)+SCUyeUKZct{Jff3Zc*Wx-8<_9R!)2{RVuny5YfRECZr_+WqFF7D{EpWpPoJ
zokn9p$sPT%&d*f2t|k{1-jJ<dCqYtmwa<;?;VJ?@wbd4rC*0A#7jx-JL8_;uP$pQT
zH)4gVQ&|LsrrfAy%Fkdb0S#=xdO4n~U4x>V!8~#oY=Z~4`IQ*VDhGXakm(~k<M4+|
zzaCooIG7FO4;KDR)iu2T=iPa@?=PmCVpfiD;WB<<Hb5AdjKJ1ogwEny6ML_YZpg$D
zAc{nWrL@pnvc*!E=oSLR6A%w|L9<23+a`d!p+1A+0TnM)Lj*oio0q~wjbYG3=p(6T
zXoLxf&cZL8QfGL%K{%aNBaOzWa1Hq*_!rRg$vSxfdjEyrM$rm85fC7%O}b!caI&ay
z54t<%7ny;Ko3buLX%IYP6UmeRG1Ay0#7NYoik2*w23YS!fs7YYtV7P=k`0NS;|K5X
z5hrVE=jGfI&T(w)+y#u<w32INc<9McoSIeWM^&96dw>7w;XHo8Yeh~~6d7)&yf%ax
z#`=6D-h|<ROJk>JgOqTp8ry>QfOfSmAGg!9<U+DVg#5K^ZVRxWMchs=z}I7p#v*(}
z3>oZ{4Qnqh;x|~(P9T#OaWU;d3%l(>O4^@FNqT}@Kx!Jp4)WsHO4-bu`(9WU1p4aK
zQ=jtnw<yE)w@7BR)e|n?;-P>3HA<TllOcGIR-^j47u<$b697n*>Hn73FtC>Yr7>m1
zV1Im2$$-N=?LYi>|NcCdF#ES(o~;M^>m&@Pe2_q)QxX^yFLw$C^`*(GG`w${N|GzT
z=B;HP<&D01d}t(o&G<<9U-JlZXTN!Pd{aZARuX@2N=H0s9W!i~ZM5IGRJS^4%xF~P
zg>urf4GE_3>*m!V;P5NwRqOt~eDwn4pP9MOEkHgVd;d>-LhbyoUwyu#m27Ev{O$hZ
z-KXC_-uDmhetkH1*Nxe7&+CtVKz8HM8PMV%bbi$LV$iQGYC+C7EZG{$-SBhpc9t@L
zIw$-NuK?EEAg6IKm^=v#BPRJA%|1T=zh?l=Co%Xlnw8)f<RqugrT*}?KA<I<k_C*T
zu$!3;rxxoy^g@m#SPW%JGG_(=)VX=0&YIN8G;NNirz)*iaUAvm$#-g!VogIaohZcQ
z7@Up-iI4O?L3HgY<xC&n_ZkkqZ{rO!wJa}L4yAy`u~LIagTuabf9>Pa=d~5Ori4{d
zm?oNt-(C!}-G>Vh#xei$*C_js9%TmW{Do0QAnTtu$UfaGg6Jeue|$4qXq^n0H_l%J
zQhpNHzy*%7ivt1I*Dj@e1!DOYRm)vPUvAs}IkIz;|7x|?+!{1!#C8Vd!Sz~&eC+`T
za)Q(H)hZt!-@U)voe6$bdbYgvQBWLy1oP5uFgp=mU6uaeWMl}VysAduod8Hcx4-h#
z{%EGqVKdhKpLAE4utxnLjmJ;15@MI_p&{Z&161|UwF{Js>@Je5AqGzRbx8W1Lb5@_
z#B~&pKNiJgmN~3`ZLKm^ORHb|<50iD8{%vX+v5xQZt=6C>B>*Ab=BrivkdbLCP;8E
zVS<DgAVI=QkRY~J{?DiW;l6Ih7rxdZDCaTAigK9@ElAR9$<XKKsU{{qU`H9^&4t0M
zd(Ng+C(+m1v>y66u=wa9*UGw9tJ`bY(VriM7#Wn;ep{D8&_7tLwPfIURE%B2f>Icd
z+u5>sQkbACF|KOyTGv6QWJE6)s}5OV2QBaq2HwFFw|#q-f=az&f*MX&XU|f3CoeNU
zN|jhA%<#3#3SLB^dDcy#%8A+>j(z@*cW*vDT+pC|WQoWAxh}r|NqxS{=|MjLS@Tdw
z+gEqG|7t@f#j4Zwn6Dj+&-A*2P4VH>)|=KroQOerHbD;Z`Os{QH|}7)Q-9f*us*Xf
zVSU!R|D+bJ!>l9M;E@$$_H&TtO@~7Q<6?R62R2v@3>$nJh&CW>Anq<k;5-JkE?-~*
zTX2;lOQaTr5n?#3A{T+q2cBA6eooe>18K*VVA}`Q+FJf{2|8J#>YiS>gX7_;FE8OD
z4M{~kzYZ?m;0iR-q9VDoqzOVJ=KJ&)6{7!YU0x{cCSuloW>H->$K^UsE<F(&&%Hw(
zhJozN7fbn9wM1_Zigk3HkAUxd+?DovvC}{Qgou*=ya&AaUeFY)zp6a-VxPbKh%a{f
zORqP3g8sK2|C7zn@Mm|!mxi?MTMzy2?&Gf)Bsarg+@$zQyujZUwK%CMtPU?Ma{x0f
zYVg(TT%9W@MKe!PY<xd36-8>1^2viQ8}GErU%j9(KWe4_K;eFRX`y*>a?sqa{GsyC
z+WT}^zVuRu;qY#Mk>E58zbv;l@4kO;I~la!zPbJHu3kT(D{Jcdmj>n^sojfX^Rb{<
zmOrp`eQ{NIdF7;(`0`EPzm<QnZp18BY4YVq{F(1>Q{?`RNZLoDSuWf$!L;&0T(lm`
zMv`H^C?2&wgiuFioOyWBQ|QKMNhmTKjp89G<QEZ9OjsoLX}=rc*u_i+LSh2A#!qPj
zy(QdZAO&s7818`+Rs5m8V=q?T`k)bOje>P+$xienqQT{B{=>3D>zfB-#x6-wm4JiN
zT%fu*f-t@LtDV?`v)KAT_8nw!8WPdqdZvRmJdpA>$>KB7#E_(TMczhXIrwoMupW#s
zXjWZeRIYLDRj6qdggmm@a!_xB2E|Z$YBhPrfQx+yWLiYxzb7w<o7yO1b5SJlPSvgj
zO(do}kro5cSIY_+nI9qqF`Y%xecE5aSSB(lhJrX4XezNziQl_Eo7iI|{oBKd>&`$;
zkShxYg4||M^$r<0p6q)OIR+v?#_99pG%9ugi&0&*Y1&BND0*Oo!X>UOX%jj}Pl)}b
zAk!>ZfLbs7GhUEAGJe*s22Dr~8?k*()Qd>ip0^d6HL4H>l@`)OE>wx=KBU|V1S!+&
z<hYAXIEY<s6yufWqF4V3ONP+xdLtpOnGuiESjZhkN#>J?r6&g|D)p&#pOjW!+XA<e
zG%fUY4Zwo&&}X=d2XS}@h;o-bN30V}!y{cgCBwhS29h9-cZiik>MSGG!b8-jVrw6b
zY8j{|qDZ2RioTT{0kp2|<{*frikZUz^=+Tw&Svc!gYlCn$FRiy*lPWv)%aBqZ3uzu
zq5#j0h`Y5~>eOoVcz5XW?$G1ip~w4UkN1ln?-xDZAA7u?yS!^%PIP;nblg>6iZ*6U
zI`{dJ=|Z+r5nED%CmOs0QU5_QP7W-VYvUwUD#A+M&4lVAw&lzsQ45U|&c(4{>nAss
zRirRj7&>jdJ0%GUT&MOu>ByN#{kp)A(<=t@ZcLCvKLS!*f4~rte{|UhWzh)XYa4+$
zbsP768~6QT+`rU=ZQOrV4~9bzmSYc^k>LL0qorP)r_oJ~P?~uI3dk1nrX*ypUaY=e
z^ol_&djlz{kzBJVUq;f$_h-89dgZB5h|KR|ucAzn>{s#o3x<rl1NJWNjs<T#sOvd=
zf3d2s6H)F)$rTQlMe!TuFk^QHL?!Bb#xEu5w4JwelVOZbnDwSQx*zK3oi?#9f23{a
zZIH)?4B99jzd^}|0=DsuE^pDF{r%%_pZ-||fU5E@pa8ZeDNnwoO2{dnEwbW>g}CqM
zXp81m-<q>M=I(ITZr;z{`~&S)Py}I40cX$Tyizc-96dy(Tk?+GQJVo4FrwecG8au=
z-@;-L7x2=pa-9(}P^>093hO$>$3o&&Z2`^&QY;d#g}Rq%p9l1%c26cAt@cGQ#}&*8
znl%!NYx(t!#$zOjn;LTXAzXNmkI=xxCj-bKuPlOF!4_Q1p;n(|$aA8tc5<uXtsDI9
z%oP@KDFBog%%5KW{al4*mhQlAud?ND#~fS*E%O{kVE2e#7etKkrHDGOg%31PUG3|t
zM&dt_$ys89a~Wq~G$A7Tji9t^58_@^<ZVL_1M2|;;>Eyu`}=NpIc~-|fPB$h{h_(+
zA3n?0T){7zYkkuAdC@N?{k5ehCuOA$7$|`%U?_kt&_VM#K>DR{5AbFue!IfgGvK=6
z&tT)pU?GZ)s(2Vx0&9p#3+zyr!Yt^9!*~@wI9(rdfu*d<q&#7ZTwBNmsJo49wZb$^
zQGZ1uDQV|gN%L9>^~z@xsaTKIXTADtIUc&hcsTW!hR{5w^LVJWCBhX`us2U~Z9vT;
z8)TiiPC?XJbgSH_IZE63hFLClFbnal?+<!}vc<(5?b=*Xbf?v*Zo{*)dxoj<qgC>W
zWUEwyfpkR)JlXudPUAZ$PPdkNF#;d%c5g37;PkyK*B9PN80ug9QoyBr-Anzo5dNnx
zg#Y*VyN~tzawOjUStGHOuOEqI<Nh@e|GyZBpB_Hm-_OHwe>on@*Nn$mfE&)oW%tE#
zDZA{~j!T!zUjy^MdSL$k_{+Y3^Wh)w&+YIoCrk59M3}x{Wv)WW_nBayHEMr;jJ2rY
zdE5Q|U`Vw(oO=cO!>PU*v;8P~&n>#WD<l<q6nEh``pJa7;24i1c-AXFh~hQ_2Fuz!
zF_DImxVcboCrxnh5<xTlUUl_|Who5-G@vQVqTz(XQpclncg}$F+#E6w?oWc3r2f?1
zVyPY6R-lv-=xrZ^5Y$HfW-R(^q6ARloDdu9sLvC6=rB&qv237aZY+c$*4LbfHb`(b
zS0#T$s3uRn4xMRA<Y%u+tmA`ZKT?ALaLS=hX4K<QPe$;`#xMf6VTc_AP=cU{LcY2h
z0ssXL0k=+TMsAi^i@7pc#Ck^ltpaz@wc@crj}$T@bCd6-EI+8yq$IeYNUJ)@7|VIu
z)wZkuKyxUQ)b=SV`99Tg4v1RPUonUr!%btqa!G(VA&J@D)rSFhhnWpZ<k0@Q301!z
zeOL$n4uT!P2no<8%(uZC(k8iGQB&R!=0Y|yEGJT|<sAC`x62u1pz}bceZkxF{WHv4
z5X*HR&QBy)o)J==+_XQNSlt&U*5{vSiBcCVVN6BxUlqL$Y(=iKrZAIy9ZwUncttL#
z+RR&kiO7@&et`o}oG>pf`=l;zk&!V40z*>-l%q}rt+B@*uG*Z93Amym5U$HGL(~Ui
z>T6#rmhdowIxy&*Ao(y)4)qL^9Ao3jh(rl3hxt+;D~og*g?D-w;%mS_J!tjpLC~m+
zQJ@Wq2phLBWOhB1D`^AU5@PGi2yDX$Z+9UzPY<e-dIAiU-P9*Rxumha`%raE(DVVM
zX35qDbDZ8<CHlsdI11h*rm;U+D4y!_#Uy5@BHg;yzylWnalmom>68mCD<<)50Ibzb
z3Wr5~x6>6&k-jur{bCno9WB@qeUP>GxGb(c=$bBdwzhUy;*0P#nKr{#K9{;47ky|f
znf<cPqfd9+zn_KW4#hBI7$6u%ajN8T1CH-Vu6Diwm*|BF^86N*l*DA)4(rfiJ37Q{
zU7wKH=!S6vk}&&<)o3l>O1(=xM@{fAnV-wQP?!t($$&dYZmL5MuNq){MAnulETFOM
z*!9cSD^xWJOaOajjshZYHU$#P*@?thIRGfer^S<LK&q%)aX^OrY@?arg#=Z{Q^1rR
zdVDKY#N(BN#>5zct$**fe?P!wouU0GVN8-;9v%W=eiJaR1u68ikO!t2F6$ht?&)~t
zET83!L+v!RWqJ<aZhwZ)p<9QmsZVgpFG@K{gL<C)OB8**8(tW1q#?er2MjNalJG)z
z-MTh|-aX#$>+DG<;S@G|qB(q17S+dK7!GyBIk|B4+1YUr`1^ps6P3L!-!7lqesQ<m
z*N$~BC@UEE>bl|OW2vK(WB29XahDu8F>OyOW5=yZoo?T_K@SjBFTV>c`{NgXx6?ax
z_9lyaxy!f1<$DC66nty0ZrNPV{%*HytS_|e=GY}|8r9D0x9>h~cb5@T$t<>j<*p%O
zg164TzlxA)Iza7`DF!H7U{T+SbFKaF48FsSn*hLnUArJNvx~hh>R@an$$?ES3tTZh
zf2Z)ttJG9<!{L8>R=s7%k9*Pw?R({(yD<pDU;?4UuBpOy00;)Tr1-3a|EMZmzfbTk
zb2-;u-q|dn2o+`%>;0$mc@=|2UnC)UVSNS&Sy*8}x>sQZN}PdRx^9bP0j)KLoLtOB
z(^w;n{UHPc^^SN01w}U+>#8%>)jbe?*sD_~Fh9_FC)OD!fB7VTsw0en4H`AM$`mM&
zpMRnRWda%G8NcyzZV5@Cmu`3^7jW;E8GzenmKOgAIX&~gE7^kk)8x}OxZi*3_q)6O
z!zDq9hISUdPX{!$+eBcZfx4_~T-nM=ED-Z5+#%gitPY`9>slk^7aHLU{n87l3k@n5
ziBXkaonRaa>ppQ<xol!GuAxvjdd@?om2j6uVe@$m38+J5!#yY`F|F;UAifa*{9r`V
zP57~=U9z}zfRD$p&FF>+j50JRIeSM&7Um!DXxt<YCrBEAbAa(+5*(StNf-}!SALKz
z0nCQgTA2zqu-b@|wCaU&h<!jnc6Dcm3n9Z=<se;RnHo1jnKlUV5gUaQgon5hHAw3#
zh4~mn?qKuf<NccpQn_Lq(H|$3dt|U^pBagpC&5FoCd3Xfj1{s{H`m$~5q#siu>$0q
zflUnCvN9#M7veEcj_q!xfiP3Xw)%{QdBc)TNPx2Zsyw80ZP^6^9{V1e1wFAg16cvJ
z2vNb*=kRSMD5^o}1ksuiBtU*!pOX9e*Fk)mL?s-KKC8*FCKJw}HUsb}stLSg`vH(y
zq0ox!voq>W;pFn3sArlt<OxPDAU@#s=WwrerBeXFpsYagbc#j?e>ARc5o3%rLR^FM
zREIa_DTTy1!4I}N+GPLm>#w`}{=?h1=K`T0EG4O6!vtAojXarW@@HbuvTFmPT@j$C
z{coYFgg6DY!(`&9-Bc^;e~#0ji`g{!Y#OlmfqMY+k(`@K*{qFxw<~fpw(DKH-VN<)
ze>{Kq?fkpGxhGq>{Es<Q<&hHvrS=x2ZzlxAk_sD(2Uf5Iao#}3e1lo>E2?s(CMT`_
z{<6{2d86mn;Axl}J6~()xsmg-fftSYXlR`@L^(D?m>Z!R?8<y@+2G~)j^XqTt&H>6
z`}E<RAcoHpHnpUXA5|w+xquhD6<N-Cp6QLt>v3hURrc+U?8=?}xaA*l0i*MpZA5xr
z(YBp!M$2X+$fICvvp`W71*c_^@}eE^PJW#PJUa>7nH*kL;7MD%8rvIwaLB@PC8HLA
z*QkIM3h7k{q%fp|@fcaEhOr%~Drgo8Vkz1rFh}DixD|i&=bs8n_g0+9ovjlvBG-nC
zN+Kl+F*iEotyq?Ooe;-zkpRbDN#J9KVfl7EuyPKfmC#I(n5MjGI}CoGy;5(x`Gg%<
zF0~zEH}{6CG@ocgnojS3yZcR!yOU8py8BtT9M-i-Wmd(*z=|Mce)3Olgztv8fhAFE
zS{B()UA=_o$!5P+0Be^Bmag0HFoOWIpVL3S5EZ+XHHBV>O_`tw0fTz6_&B0e$uZW(
zRrgaNowh@sG9;s-=!^EFU_o{wVa$V2X-zK{V3haIpmpp|B(zhh>rCi+WP<-!mGTqF
zrUEG!hzPzK^)&~z_4bA+!U|?5@Z{KFs0XZFDKz*I6~y8thrj~f%8*PLjj_R7DKx`A
zEi#IO92>k9emMTL1?t1@mk<AQ&IFspq?-nXeXxM!pkOth?6ZpHy(Wx{N=8=BpCu`?
zAv}-De<Kpx>z0V8GTdN$N;JA4_y~&h5?<{AN@w0o7I{deYCXEF$9BicDA6&%#~~*9
zeqK(`VMCT=WlPu)O9%b_-$AvM^wTK3?a|)j*iarO7JfajuiZ}eJ9Z|v{oy&VB#?Bk
zqv5bSObb@FZ~En6CabGBb7)}C0nJU?`=1)JUmZv1z?I{h$wm<f=RmbpHI+rb%G-<q
zR(*XWL`e`%8Te6Q@EdLEXjQd!Hrn;s!FSA&DxJW5utTKEk|HgiN6sB$bUmwOP*gs1
zE$*Bfl|WEGiEYoFJ_7NRI!cI!!;UX3)+0Bie!esH!8k6s1j(8LV(TdNMcQ|g9PQX3
zr>Z}p??icbwiv-B-op*ZAV`vb@!=($1P&vmNYv$bBi&8F4;i5qZW0C3V@*(SuS1{Q
z^&>kPA4H5xLJk}9C8sK}?R1_G02G7+5lnW597UqA7fqF{?&zMmJu%zEJ+Se7u#3xe
z>o`JMuPwYQgaz|aXMpP!cbkdBHI;-~PpBJ%n%=`*u@co+Rmjj^VqH)$g4RbQK68@%
zP{rT0*Ks|^A0T(K+w}U}nyx{nhv?=}nha3>)Khfu6BV;tYGY?04Akt*2W$4pX1MIz
zndU9B@l5veNt$}H@UIwyfk0`cBDTP3QB=b^$MlEHP*ir4z)j6`SPX%eplf+qwb6n_
zNZx{nF;YrwP{_UFmu3AcEq}o~2#`Gb8FXBrw?`(X@xk!mNDf9;DoQj)#3E{EM+!la
zN?Zg}3ACnhc??iy#h@$%bm!XNMM=5Ap+_^W+4Bp`N8pw7Qk}h&6Lx%5&Ia|W;zn@>
zY~s*UgM3_A+%SUFCIIVI&}u}A6R@pJ1O~IQ(K*9~$1s2bIMseaktDIlDCrc;t!$fO
zs`At+2MAWk(GHpOChd@wfR~P|DQcm~@SA{VF2lw)iqB8Y%j4wEax$`w?RX!OnMzBt
z)16LRF<mPL51}+zN1c)?!W;0|cI={Y<`P-K0#$<5St(4sUT?2gTOd2qMc}{6BqvPa
z&>Fq92I8(`MUwSz3Oz{y#oDxQZCX2lL?Xirc0wjAs}|YWTj$sq|9E!+ZF#5cthznP
z0t8i70k#u}UhFsz$mX#MN7E$U*~}*3Sz|?V%0eeJ_bT0*`$0hi+BVoho|bs1c0<4z
zQ$In$u^ZVnecis-Q*J*+_h?RyDghxLk5#t88u5VPt1gOqd~c6`1bhYKkS=DssI&o~
z(!JtK9*|NHM^Jimwlpj3KzFrPSVr}!$}{=oA*p3PB+&JD9>i-@<k4}zLq_8BaKG35
z2;*y}nL2RH?J8z!sazAq_+*g=6r8*Y)5G23;Y2cTA}Gc|*6@gLZAf>RW-RTbHFGCN
z!CZt-?bG5moaKDgn)nBT3gWoy^&V7UynGFQV6!r+{!{y$FY<!ks|+uM<Wf{_Qc+q7
zL_#<hRr_?~S@E)7!cB=}Bwj-Hp0V9ZVwY+GGYM|jrLbtyt%l1tjifnptO=t5_^A5X
z#4z|t$gmihNQ`p-&;~i1Ol|Cx9%Nv38s$-=oJ?db!p=Ql!Jjsyyo*IIi_WXQN5Vk+
z(A#CQ^`@iS<ip2z@A_ZwK3zCX@?B#}%;Iqnib<XSuR+`rUqhHlAJw`q2yeBKu$+7=
zg)?E_G7((4_6)!8ZG9~v7Jt_d%?NUF?O7V;hu)w_pGQHy9qz6)R}TT4g6V7-K#~;n
z=Y!xJk-r7kbokq@YN`Bqx2;`vwpfnd)Fhm0AuC{l*hY9hFh3HqR`wirI<$X%JJGkp
z-VTkS#m$gQ;ULVgG96-Gj&e-b<d`PN^z(5OVIIo>>kAN?f`rx-AdyZ^F2Yzco0gMs
zOT>_<#aGJdl>9)jhmyxgU)v;D#gGt#z{TjMm|A)n?4lTxnLcYwnMnxRlN8n}=ty|r
z)uxpk=r?lGRb7DnNE6P**U<MlNdl8IY2N}7h;g_9HBMoP<3VRkEotEik4chxBf?K|
zZ?&1{m4%-YO;&%nVcGF00KKr>`LHA6J>|?|z1k7{g*8R4!D$ljDcN;dIlPKonZ$rL
z`Wx@%ymfMl695LyFHW_mD8W*f<TKOR`tPAuAQB6K3wXlsBFm+6XAcF}rD#!$mukDo
zQXfWW%-db<1|0@lf%Q%*aw|q&y_epm(~Ie4?D@B~`<|(JlxNtP|F3V?>gzuBdM5;P
z;h*bmdSjd|k`pO-(XKC6Ro@c6-1hj=I%;oj7p;lxrFfrSZ^rBN_GWr&Z~YX)@Lb(N
zC#`ZChD^JC5}A}X2=Zs^tFY~qRW_JIT<Q_AD#?#fm9$+#=IHggtuHPUg;_?rqh&;9
zv;!%UmMSxJ67-~<Nd8XN>S)4Z-{M}qfqd=f<3nbRe45@In*Dq{C*AOR3B|wMW&joH
z<~6|uOSfVxC~Z-DbN_hv@$YBLT2*W0@&c1ew_isTB-MU<1-*})_}fT4$rVt+`r_B1
z{Tx(>`sLNDL)qd667(N7c@3%_z(@hv4Vatj%14k33FZI?ti&X!TeSm65mt5L9LJ($
zS(62V#paXJ;vgabv6SH=g3jxB^w6)SJ&OSfo!5D60>w(`TM15HxT0E=mYvDLT#GD4
z6^CReCmv&!>LX_91?nc<N%ab9v~Xi^h;sA`+>&c*0>6V<4$s!Kb>`8NodQkBz8-3g
zrQ6Dnh#5ec$U9PKiE1CWu7wg%t<e-dvUH~hGF`U@St$ef$^y4=O6%v!(BI;rz%<dB
zi9tHpe8j_hc_1dK`Fb)A1*`FjFkIAO<pSFXsoyu*mu<uRuYIXkZ4p}^@7}(Bx9xWg
zHt@u$lEXN=i*N;L-wR|LZ-cxj0eL<XV@4)*J(%#NbKg=vGy${CO%GalRSKlL0FTzJ
zr=2JyZU!^Z6K{;~WW>-@FREPT`^z`L;xSk(DmF2J7mUJ!%fgGCKxbGhG`{L9wnXDy
zF)RP%Exf`htJ~7barg^StL}ek9q@dkwyI3IU9ujfLqB|N3w>5nhgPQRv1{MRj3j^C
zzh7Cl9KPG#pUZetlsKM!d_|X~7>zsSRsA>cpUI?#T6j2F|0~07$YpuwD;?huqJu4m
z0N6TV-K$iax?VwHoXFyUIWXl{44tW+epQ#@EHuMqX$a6&@H}~NtLWc;szpNiP8CM9
z%~$QqDjobQlrDGcLcS}nik0}P%Aq%<EKj^De|xlDHE9VYh#!aXAo4a$?$o1x?>U!=
z_35ckJ#$(1gUgp?zari?JyXm6nOa_!#MD<8!3*;h_w(f8CW5y46*u=`h_8mbLci*)
z4$AO)KBKc^R@*<;L+9^m8`po_>|SX-c|D)exq5R9{%>vMy+1QH`cTZ+Sd?rdpj?Cw
zCqls5%kmG^6=6X1%)2Z<5~gJD)~KS>00IJ$?xQk{Qf>h>7MgW~)pR7RmfZ+eJ|v?A
zREwgyWkQ@b^Al=4*4Zi6DGDeV6K|4Gl<;7zhdJ}eT=e)i<s#0h{n;*as3d3Ps*rEp
zf;Igj@boMP;56=3pwG|7oxX%X``9CGi4OoDDJ?J)6ZnR1Z+{p~f&J?brw+*X-k|S$
z)9Gt3K3;f0l%`3f3EZ0k>z-9r(^P*BL(*C98TP#;QZ@MQuH9$<km_c4Kwb1CRb&Y{
z!OY`XvPP9gidtN{1BPXDj<^OC!HsL&*3d<Z$`x05Co^M}ljT%L>{+2I*2$hWRjHRL
zwveVQ8U;7QjxQ?v<jtI}IHqO2F|}QN_gjl_QH)M2r|r9b#J^P6znv%bUVKkm-nRL5
z^rkZ;RDB;4pX+mO%79}E#hpP0y7~N<DfJq9wOYgC%!3F!<a)hY&;4obUhE?q2k-a4
z-oJmtUUDL%)D|++PJRAEKY|l3!<P&)el=N#5rW~exmG|vM^YOI=9on3I|vL5A~Si6
zBMU(%fb~g&bC&;Pj`H9qQF0yORM;2Pm9Yxw<px*mHNk$kCc1~Z3S9*Xe+CWQm->^d
zR}}Pdj^mAm?MYt1ZD!n=_pM$Uoz+|RZzYPBCRrzZbNDx4?INTOp_Jx2v|in1F?q=V
z%T$nT4_Z#T6=M7an7G9s5*&05fPUW&Pjs;9sDdp}<D0xX4}_VOyDZf#Z>YxrbAS72
z@KZdD2A_+K24<=v{hPzmNT;oR<Rse33u&%MCnn_jaR@m+4PB;`ppRp4^Bk1i8-t${
zl)jbIyH-a&)_5YEUPGW{O4M_hatsC@^NxMj0a0IlFrS>=-@2=`H}CEB`FDKaF>?DP
z4qEQAPIW$skv_yxA6~k%HV~nKO(~$3)QF0jvex|46k^o=HHXgT5To!1&7nGl_UCR`
z_tqpMEx0!d=${mZx*A{G{@=`pARsa1aBAM+YV)0aHkfMmIvm6sSY)389={3}9xqV8
z`{w|@e@ZCMF^?xqks3}hJ%D~#F0S-3ZK4)|ax;gN(GK$>av~<)zcGK^1skP~MbLP9
zwnyT%l1VSdPPC}EP;=mfSR$u8?U)8kGyEAh|A%zuu_r#>?>~L`cz@m-#aqP7AMSI|
z=MdP&dhf0XC2%5J?+&-O9L=%$))egIh1Z4JuDfs~5AyZFswpCIqDc||WR)#9_-as5
zmOWw3(TDT1(lRj^5a3F_5|3z2F3(;oS=RRd*si=bxr)F01Cy)DuR`eee|6!X)rFrv
z-k-DKxL<xT8C!6de8p))5^kj3>V7&9HYhY#N*9o&{Lck7X~;^A5YwxdCyZQJjGwZu
z4pkY-DvHEVd6%}6Or(xraib3$1fZ#a5FtepRRD5pw(RLDut*E7-MaywBjb@N@~aJa
zu%bP**r7Lw*G*jygiKq78ON>oj^aeBM^dInQn8(iU1yCWmjrh@iq#oDLLk|vW6gIx
z0S~fAP7c!!$~)~K$XE&mvepayafqY|lK@`=c!i`#SA~_(w{&dQjfj@5%@vtRX45Fv
zkt~?A6>7G|UZCQ|0BB8z$2v!r8OL?J)SUvT*&Ql6<U7SI_$XW=8u9ATIlLw~JARl5
zoi*GAdS${Z=;S%lT^0wl5fllcP`ZsoZ7NRWFeudJME<BoW`JnJg3KnxJ&yzu@jf!T
zx54<~w}*e8v)LGiWg=oa%Gxw1b}PthJlZ;3GGj+LnmU@HBOV~$&A3A9fBh=O=#xS+
z;XZYW-p+=GDWgBZSfoyY+)@;ANNkpj(raPE5RJk;NNjnSzn=&ZA>W5M{La`CsSZio
zb<y$HBv^bG*928JlO)O+hqWZfJ~bcy==T=vsJtR+D#ZIKlL*;$l!XJ)br2RZesxnx
z^qM`{lkx=dy0@iVZQ0L1ft-WQd{q>3-?6QFS@e_AB{A*CT2+_?AqeY;RwF;1(s{dj
zRPg7xq##ViLh*WJn>nk0eT*#g=K94oBvV4*NX;0ve$!1rLYsswVr#QYcYw5X%7RET
z*I<L;p*Km)Yc|4u-<~_`hBvc)8cW;*t0iV%WmzhomDo{GJDsS_h^>u;*3~8g6tw>5
zo$x!`RUO?#ExIj+Tiw$iBDiB&d&~P6x^|$|9F50ckefXyC>hf9MtR=}r|3X@Pw4Z@
zH(bq;IR=NEB*|0-z7AvXgNzMsb_%4UPvFQ7*IWYW=n+UqhrlDDLBk&}hB%C&s6j=!
zR9klks4BR?)9oP~h@S0tAMW0~d;jZsu4#N@bkl=EFvt=1GTdpnXvNH0>Exf=c?EJN
z8ZBMg%Yy7>yIwKJQh8@nVzOMjQ)A-BB_0qcmq62rA(dTIpL?Yt>fA{36N|(;F!x6}
zP8sA?Qc##S&ZJ#bEqSUTvJB6d5(8nsn<Rl5J(9P8Ih?F4shhaj%g!-Pfg|2JSu1fS
zvg;JCa=Z(~swylpt|O5Fj16KY^4MHy1n<=EZJx6f<;!<nOESJ42y*}YcpxVHgX7`Y
z*^eLI?+w}S3?BcNc|MDq%jL#}e9b}mp!KpU4wGUQ>ptyY19<Pn!#K3qKi2d~knuNX
zsUzK79F0C@AyizA6)VHH$C1?$GWxAooM=!I%BUoFwgwY$;vR66Q7|m2ohAGVM|t|5
zU*aSCwpcQ(!9mRH^|=KUlU;J!9B#-9eGEhEhq~%-6_h{HV&c6;ibf~^TpI_<PWe%M
zY>5rW(@(anm%T0EWl${0t|iOpQ}F<HtKDUXmhCd^R2m__<7-yzVzJd_?pFq|;973|
z_*|^qN$$t8-}FYjP3LU`U?vDGY*4a%eJ^{yz0wydY6pvV>W*#DUf-_nUVfzjf;?N<
z4Wy#qHsW|AuQ-OFlsGvee9^0P)<wq#{X#95?{m1Z-J`?#&6k~SBEQ1W6Co8*kF~Z`
zdw)x8<depnhMTuc6%ti7>IYeeYyTYI=EXWL2i(g;^YAuz*E;7o*45U}&a|Gi{&_GK
z8;P9Ke8YfRPU3pM-)#?D7{E{ert=f0(!a(0+>lB|dTzvY{&myy+6d^6Q|bB5;;-rX
z?>#-&sP2K(Zh}7t1qCGrs@B~fJVTcP&(l@m_N~b~_@+G(#ybE^l0LT0s~}GlRwxp!
z?5GaE;dT~`&i%*r9cQ=fAOW!>fa{4MZ6U&V1y3IFV7%QDW$f|_)9L}qwDds9)<N2w
z6zpi<D(4V=+1wUG4?qRd^B@UWbDZc#l>3z+GC7NSpX>mY`Las;lVZ2mik*d>?p!mH
zR8PC~=+;5`ZLRIR^64XM4pLw@Q-?=uxP3b`zjyO)M{{lW?a(e%iI}*FKVFPn5Cm+D
zwbD`DP$ce;7K#{G<BkM1GA9F_4m;`RM+TjbfB5mo(fQlE?carkc_xi-57Ic%^k0z1
zW0_@fu)SWC#ffrwK^Vt~+#)TmUH-1T4)Vd^P{Op~3Em=QZ4gtF4jGB)c18ss&C_ZB
z?`ORz&We$SWS!*%y<=_(DumGvvPAgvpYt8Ez5;Qk+~j=G%2cJNp1hs%A_DuEX&~h-
zER?(>Rl=<0g@u|I7J`Z5d45b;Sbp{o?>>Gy$Dm5VFsPio|Esi#LE33mb?al54qewR
z6x%4o4KH7l|Cu-<%a-o20@hz_irRt|S8l5QU|Fz;=vtv&(h^fgVV$QIDjdw_(6T;9
zg5k5Ja*xVoG$ShVOX7>EcN>j7?lMY<*>F8dh}C(kkZFb7TgXo>P;*(26fWylH5V3Y
zOLnC0n;f*BxUv<y5zFVO*Ag^AQtN*D=Q#%My&`pzfCUCHzChBbI}%m1Z^hG2pyBWU
zpM}KX@#A!)36%CZ*3W3!s#(-yCbblcJBRfrlZ039NTy+y+n1zAcKwi;++nD)Ua6hx
zJqX?@Pj-Lm+Lzr=Kva;wro_AfOB`69sg6T3=3_FHt*E%cY%m}behEM_L6_d)NeF_s
z#XCdMu4`Y*Cv^6NR;AFXO6?V5*S?mo(CZa8zR{^<(8lfd(6uk!ZY?Bf$3R8GP>#V4
z9&=_G!y(q-CMux5Ug%o<g<V}nVAN|meI9J#Eylc`FA}=&h|l_k=RI)guLu5nKM;cs
zF|#iWo5}y!NB+y-@xT6o%>6XH^vEAR_qAic^g#Dr@93*E^6%2B>~&A)*<M*9u9B^*
zeEm8u0vcw|&b8QwIFJN$8i6nzM9{Bw?IWyR`u2(8=L%1`5@8Wf!Y)jt63U_MhB;!(
zP4>FKKmPLZez&_jcgx;epw1}YDLU{vMY%^KF_RHJ6cm|kLKCi<IZNnF*E|c^ej@v6
zEs?-}uiPh<s=&lS_$LTbI2nq0%d`hd--#Wlp-JEv!lH>n!9o3`mpd!WOcv;+^sxui
zg@kp~$f=k8bix6uBh=^)XE8=?NqKmNbqR-#%0VSk$yQ(zK8aPr2|(K_(MuSjwu9L?
z=9)_?_$-`Xh-$~%IO`xswbW#EB^w0g=LPeo%2k^z$`hY0Vj1Ctaj-y5nLv2?N#_+l
zp!1+&l75e1D-joM8WdHW1<{Ty0P!@k@RllOkRrun+FL{@lCESsfzGUiO(Z2Ba1M{C
zYZPJgc<O(-zuR6xg*93xpe~i(u$p#c^MF8$C3G8-kYF6xAUJo4(TqYvfs<v#Sp{`*
zA%n1<D5YV0OvD)=c6LrK;=B??Km-FWD^3CVJIV)S6rmmyQUt<b=YyahK==#P03=>U
zU9ryd1`!g?2n9+3-A2)Z5e4Xiu!&*naVu6$RzVR&kSeYKsC@uAY7dVjn122#VFFSP
zc*30JW%6R=l+X|dH84e;oJfzW^NY7tT+IL_0un5_#H7L%wIDEHM3N{jYLZP&GY3AB
zDBKFmSy6yS?Z}Bx6k!;FJ~1k0!vWsV6Mq*7%*0Vl=pE5o5Cj3>(0Mp+b|f6QDDfCb
zJY`7KW%OB{yS7MO^Xlh%fNz5rl|HJ70E0_R@l0DCyJi-5taK~Us9e!mS;L4R-@SW(
ze-@rLZ0FcdVIef?dS<%sMo1MpoZ;>NJ-HBvv$bTbXAc((buakID=V@ezj~p!s@$0=
ztEmmO65sg1i+$m_=Y19+Kgk~#<vd%(Z`g}k4}3VsHoq74gJ-e8L@z9-Fy~6Q4STtt
z-#X9e&~9v>Y|q_5e8X|OUhd^j#AnrC0bDlLljO;br0y$%iU_36W7oGxDp1~8DF)I<
zStqM%7KKkz3lI7mRvBAH{F-4pL~z*%Zz}rc@%TH*fX75XAYnyOUh*~`9hN0J)HQ**
znFP)29n3>;f7H3{_0B<N)CAiHR8mAsc|d|87_u+WJ4bTOBHA$vkSCH~vtkvY&q_Y6
z9ni5@Whm1k^J`TJPn_$>PBRg(B{L{!<ACzy1~-mrP*=xxzHjICzi_g-1tYpI0>$PM
zL>9GHqk8sXVxf!Abx|y{6t)z!y2i1?xS1IymV?LNTV5CdF|qdE7T_(G9w&-{+5&ZP
z1|tX#XTW8%ptDNa0Lwc%_P+YH22eT~OH2Zp8uJf$3E<OC(HVH>b18Cw+z)BmYAX<?
zgt$msVT4AGuD1v66y}uda|`^9@wb&pRH<b!v@o$c3;709b8U<XShLcvMsd{8$N|w~
z8tG<;tfGBKzm8x+6D%4T%XNikQ*iK^MFTy;+ABO%rq);`vPlbmCU6sDQ{ZY!nPC(O
zA9GpeiaH^H%pR1;AIRoNVMC;C-FL7v)D~d39VHKqjKUn0xl%CN03}gJZwPCmV0e!R
z3_cN^fT4|Xo-vv&nt++*!?UwYp!0$G&h#UIlyk+V9-)p7W+3J@HWDF#gI6{WiZ+7Y
zJ>7rY-|hOl?e>1ZzZgkV8%ec=z!Q%$;2@tBaM}hx>ClT#rCsii7y5RwKm1Y-RlA{|
zZx{}jj~C`&KUVpBfZRc^*$5umaRW%78({hWS;Ii~04&OQBz%BTZ9QXai#@Pg{B<2_
z+i;&x!L>2dHE?Z1_n~OeOeT@hV3239JKUpS)9w4iU%gKBA-7Y#ojUws7pt_z0*#>!
z=_n}uYOIR@sA7{qpqvKOSYH+FM41Ci6|ObUsx&%a9IazO5x%vBamFPmp)5cVu8>uR
zN}j+}vUBB<f`@4Uom)VAg1hs%-6|7l9ezsX)#co7t}@0r$PgF?nL>vmz;>AfJteSI
zrZ_#+@^Z<7&A^MP>I#rD7{NXL?`83{AK;f1Y>aORLP=14l&ku6tpbxpRI8R;k9PB+
zg7e+A!5mtZsO3-$N>aK~bggyz);bv3v*-CkQuHJ|gmnzoHCfH=dTa0AGDwG@*O<JX
zm^Bu~vW4d+3NIrIC6HS>JK1j8PMJ2rf?E*UQAW(5JL;>hu%ooCRhq=K5EM<!V5&lX
zY=w1JSQS*6g|$)xQmmgwySY7VY<HXdp;h4BrJZ_`@*WKr^@+Uo&eUQD0QN&qp0s~v
zi@M3fbHd6K_6{GHrS(F@J)QxhB%(sqnOjwiI`7II>l>2EH05@aO{IYws$}|l@oTFx
z5gY)j#hdsN$I#-z1B=W92^ots{S4RZt|pSpoFs(Y>HMuvY$|?0GJNX&^A;IW)*HS^
z`@Z(~&D7+^Dz^XqywAKLm9PsCO+O@d&MFWwvX-B~3pItIZNhAKQuFKA7O*{^Wv#E1
z&?dvw{=~E&jg`P|i}sb~zwB;=AG>j<LX$lrS!McVHReB56(gj9a?ZZKy7K8zd0&)G
zudguwH7YG&(4ts;=$1FlSM3+=mihpzd2EgIwKX4G&FlE9Ygx*5Ez2xF`Q%mFOPm#O
z`ar9ky+N`%_UCmxd697XK8LrxXre_;PG0EPsLyx83pGD<@^VC^uKi^LBOL}t-^SC)
zxH$}?!zjBLoL^b_V?X#Rjuvl$DPF8sOh5bDPMU@K?CjXf3s$R%J`vp}2Q>wRGSjwS
z+~4kOf7sn5)R+haUdgyUDcO$a@;m!QZ91p(?R$Itg`e-WKjtU2`Tv24{ZqBQt=WT+
z+{ycZ2u%_D#v(vQ!Ki!=;Vof*h(o`UMxq!LXGdd0{B|?Q@lm!90{)jEXxJB>)<G7@
zH2@&6Ay)w;^%y0+T)>#1WTdR`fDwdmVf_=NesdD~Y|d4gV4Kn5O5A@)ervy&UE0lh
z8$>mCnOM-|U0Uo~GM)?fe>K~+X8Xwlf-Tf|?=9~{Z!ToCef`pzUS|lN*(#c>A$IAe
z`nd<=!+u!*Jy~!3{u>zy=Z25T7{n$4Zafg3bWB@XWZu}eSa8f!0R^$mxjrr3q<)A_
zP9R|0Q4afLcmf=FjPS#bUZzbwsX5+KW0XLKF;PkGPDeK)YRrv{Ff9776P0omfy)sz
z=Ir`Rb9?z3wckyy2#cJoz7b&ZFfe40NZkP{2IgCx9U5+oGt`(TpoNSO(Z<+f_~F0s
z;DRdBfwY{#{_X4kqzs|cbtr9ze?5QI3yrDb+kZzF??EX!U7rSH?K8z&+&&C*f68$4
zGXNBFKWKx)UB^|E>h>r6I1=-U5u`lGoWGUkAcX+9YmyRe!a~EAEOMmiOizd`KUuRq
z8%mCB1d8m#By~%+&o@n_Cqc;9_8RdeP;M{6zvZVbM*9PD$H^3kL!Omx2(Cthw{sCD
zd-L{S*8e#KgSY3tK@m=N8Cf&N{e18IzlGG%L`j5#-_S(BSg+OQ%32Z)q5>LYqs6(>
zI)pl1Zyh)DPMy#q@&8GyTqnkhZ|^K92~b7j#S_`EEbCz%b>2szbD+{sMd>)!3Q>Cg
z3fMYp)0TuKoKvLrKr|=n+hm>s=<UeOjF8*ag%Qyz8Lu7jvm26;ptM7aCB=?7OSuRL
zA0&9F6r4OsP==k-7R9Nod`gJv#9k-*^etW~LdLY{fJ;K#qelZCR1{S>tfdmF+JuRg
zL8&BqKzy23&vXR{>V6|&fKF-JFf=UMdjIL;hxd2CUu=o-t>p??iVCXv7XJ_0c>*P7
zGK3)h0#?rBISS@NWE(L8kE<c1(=`UF2WkK7VD+RNubypdz|Z(;yj>vanAo~(lt8n;
z#5bG#bd9zOJAPjd+mmf_=JFjL$g4bz*0xg>b}E5R5lh$71&Qxtlj~*7QXXNi3s2~Q
zkBHrVS9LkF-sqrdcRFZRA03#9x08h@DOT4p(yF4ay+=!T)+=MMu>{P0FDIU5+70q5
z*15VyP^n#OzSy9E?JtZ80$mT`%?k%JUU5<;52134Fgl>D8wK#?tk#oytgZN!F*D2S
z>IW@(@b!(}Qrs>(Y`^TMlc91lKpN=B)h=h4`zC&z53J)*-#*-L|9-ioZ2#JjNJ!OM
zTvx4LL^t(Nw6l3eW^#4_KckSIa75Nuidf^t+f-h<o#GI=rWsl(&(KP)U&$X(c7?F)
zx>$j(lxK7$X9x8<q&!h0Ux?##5$$>2*3HExa$pTUVchh;H0tLcz_=+mEQ4k58Z5h^
zu<sWz>=$6{3;6bi%N__eN(5;PvRnt*9D7?wg}y~Zq(xyQrKpmDIw_BVBSHxV91JT(
zWp@@`YdcL=&gvwejt-oK!2>x#>k(<eY0`A()<l<~Ica<^L35lWNv^~LByGN|QKjoc
zaK~3El`x9f8ZE|UH=uG|PP#X<Wl@3lV%r>$YdWLjG@%74<{-h$|M&CBe*UAM|B#%c
z%zNO4<qz#G{A3g|bN&B;86dl}R&Wv*R<Un4Jb_ciRN-nnKmYgv#bB$SajI+O^1rC#
z3Cg*C`H5c|8w6R0gC<xf?jnN*Bd-kogxm{7q`+FM{AVo6>0i2t5T~@YM3|re1rZ8?
z<E10DFk2p~&W~9uk0a&7W&X}vspZ*$4i@U>7q(tAgVkh}jZkV(bjc3aB3Gtu=nZ$8
zOg%3+Zl+384|A^uhjz-cSCWOJ1hqN71N0oHg%D9hC8Dy)$b<hN(zprE4#69QCjcAh
z*Pw!s<LWMmy};spYBg$u_JZxsE1}G<g5r`$-?Hy|>yt{66r{i)+yh=uQ7np8$6ipv
zAr^^j)3xec!rD>(mp7XL`8|5UPA`b-26+`369p0cyT$u?i_~&DXp)3lb=e4^Gx%{d
zYTvg~I-&nbfMJB;MC}fbWm!>xJ}R~ARLw<4IZ2T#kvZY4rP}lRT5}AD-&)|vIcP0~
z{9Nl$g&Z2Hvqn`vBc86vVY6>q)jEe(?L}tQ<gnIvi#E_)T8*9Y2G`2=7MrFCskve~
zQ-?tVz8KGx;NG`kw&<qMTHoR@2nHcbY7x<uL}eZEu|NFT9nR^9W+>h9g4d`%x#jbZ
zmRme&1|3Ne4Z4A8V(U<DuL-md8w#r^-KuDeqP1436UnR}B8X;GMw_QdgEsksMa2c7
zJqDSH5KJa5VX29v^>oP6m;_%YCM(5&Y<nA}y@93Rt_LLlaMi)s=xv_*(jR_rDwVQb
z)r%`~h#4wXKmm6?=~bQP(du6=xVb^GgbGPy@_;#Duo;?Zbv5WkHZAWR;<i7ooA+<t
zeY#vY-~M+<wSH{t(>%-A<<<Y1zMK;sOzS)(mr3IjBZYuNwzAPHZ>ZjC;_5Wns7O^U
zWY31Bsjjfh(JYn)<&=?3tQ;8WgjpZEY!VXzm<sUJ=P2_qANpI@%4h5p9gtqrCQaDs
zJn&lVBHBr)6$dg}knL?5RV)S)dmXmsqF_6g)gm~bt^Hi|A1b0bDUQS8?Z<cb@89e%
zqDKdDuPJG~j)-RvNq#mWsbB#Q!5Bb9%P14ne!h49zv{f&Q831;sTDRmXkIfQgm21#
zh@?f?-x?0}?zPn3HX4HI`XGP%7U6qsG*k`#x{gD<5E>{-andgDlns0Qgg8z@{#G$8
z3lO0FL5;V6o&M}}a6k>JBgNh`v|W0#T^jMf^vbbC?iWoxGXiC++$b5=8!Rdjb_z94
zVx?&D#?kVF1Hz&Jp>$LSXn7*CmUgHmNhS!rg!y=rrt7L+eTWdN=%v2(DE}V^$FCpn
z-u!O7V5jVpgYkm7$xKbF24m)`1OQWwJ}?3TUnK^RPIjg4i>8L>)l#z=jNZ0Wr@XOI
zN@&JrAU-{k011iOX)jo%rzEI0nbG7{m&ELe7`NnJc_poJEz59%7?xT^B}tE+X*&et
zcbe4kLG!ASg=#Ng6+z0}5!;bTZ_{9n!uBFQr4H#b9}LarAVGoHW%@hZmRig%t16QS
zq!fQq3q|-~5vyx$XY}>m`AWM#U#L+UY()(WBjk&EeK%#3NbCL~nRXRToA74Q1fdNW
zWsERUG`5m%<tX7mBW>8Iky(wmLTi-b<C?xM!KzND;|O~9{{Q^`@&3*E02;k;bHSqs
zN;a6v+SkE2VA3R(6ha?2Z#819mV;HM*xK0yeb$E(XgH8U>!#fV;{z+k0GD2sMs;yJ
z$JIw+RS@%u%o~JQ7~whG_&@+31&Qp!pGZk^yUy+F<_7NOMBvH7I}Ulk(`b3kc{IW1
zTDq~7dMNL(Uy=>)Clo|tv>Di*=_I~L&rI;I38gP2TDI>NangSG`KO^f?u>4UgwWx%
zBRM0k*`NwW1cN0EBp~PI&iWbVxjN-!`wwM@U_UB3Imt>-4)HuWTW0WnnNW-$@KHR<
z^&M;{Zyp5sm|S81hw)tkKsibPgzgq^C$;J`I8Gl=5`|?^NMmVO&2&-icfpKgC4ef0
zBSQ9eQzh!HwZ~lR84}{e)D;wGKfdIBxn`P3gI`Eaujl?8M2KjT(cSUnV1voTqlo~(
zySfF{L2sWHjU;|bX#wmQ+VxZ49F;n-HobFW6fCQKS!9%xJ$$e`UaS6fRj{w2{def-
zt0=NnUZGAYcJ|pKu2y0OBQH(h0+>(BGOS)v{N3;b{7ryvqzf|uYs*E-!}9E$Xzk<K
z*<K`>!&wPD-1MVG;Z8Wt{hYPks;Xlwlvp2(S*R?FGggpeuRdNZPQ%;b$4kRMxgjcW
z_?okSf8ydlg^Zlz&z8Pp$Rp!ZoVLobN4dnqgK@8Z19|#HbaZ{xs9ga2mo`A8ER-X(
zDPlqu8-q?|y2B)d-MkXGiy{@P*e*>eNX04=C?rtgi(-G604+t50%Q-WL(D$3!D@P9
z=g@r}7?669^l@Zcgcyq9LEZeIW`r?&;v_Aes+dyg+fuHrUq<_42W*+G767!d4<%fN
zLQYX*C<Gj>z?%UNg`JQ(y_73@CuP~OS4vl}2WFM+u>{B@B6Euwe`Hb;c&=iCP%NLo
z7Tkj9+U%#DY}ipuV~h`c@C)}lye^Hq#Tji2o3@k-j1BUWMe(L-`~n$>Y#f9N3!he*
zXYvy(`MUlwA)|XF?mCi*eG-^pm8g(`yp7c;A(VS`#K)69C0Y@FRwP(8PpibL<4k$?
z{`V`2LO7t33{8T);&Pdj@J_sJBIUW}^1F_w`PdV16Uz^pk^dX|=^ygC96I8Cm8$M8
zWpX2QvCPE!ZlXA@tHPi#6|>aUvumipCo?^V<bO=9sW4a$UXr;c1%pSd#^{Dyi=Po|
z6pD8uK1tBEQf*u(JrY7XvG#dPL^}McuHMo?=uDHaM1-8gW+{z$J;^OJ+Tu8G7Fz|=
z$zbG2jxAvNATY|1%COVl5zk7y^7#>`fhc;edOSr9d(B6>=(yiM?yms#zda~ZkaG>M
z>Px*+p3(FQF)&S>l{)nbbqc~S#5QQwB1DGM>pI6FZ_}sof3-8t-w^U}^%iPjzh84`
zMKWHd_LyUp{>E<jDhv?`hf1{~>d1gR>^390-5n{#q<}zOKWvozHNL7s%6OOKtNPDw
zAW5elZyZypKDU;T7o=pvt0})yvA6XBXOC@_`P)yf#8<VG^LUqDrAB5}*Xsu?%;RlL
zXQ%6<a$cT$m2PuAH&)?tIy+y00y&=R>(Pxc!NRR`>HGqk-?%*4r`tLj$-*ns>G@jg
z7+;Bec(7>l18tj<6JHH~I}DiLc9$!z4{@>LnuH_o{AG;9GmCMST=Wg=bbW-@hKmc~
z`uYuS>h)lbzgG4aSN8q=_T&8}v5GSufg)quP;f*bwUN}nmAHr*SpF&!QS|*_pmh*;
zK&$3tC>+eLP&8&%VT+Bax0Mkc8POPVOP*ys6s+1NqQC*thah7)%4fZVtY>AC+EPqS
zaVF(VW(pzxhTc|`KvoLQwnxlMX8Zs@K)}D3rBxpBjg#FltSt1gc@Ku!@Q{?iFK1WP
z(SpDU274bpJ1UqK)2giEBj3TYT33SkCko4U7~bzm{$4+OxFS1{vv#;4nR9D<)SxsR
z%o9rQ6S95t0nw3bZE69J5#vMwy+2wgi%P7gp=FmbDkWTRpA93d49bVhy_ivL*rQWK
zgJ~lmlQ5W_00oG+jEZBzdlIUEK$s0Xn<2;Jt>5;t#mbr6$){|NHks0?BXWPVkTu}*
zy+YIaB8OuAC}s}AUG7Fe)sQN?V0Tx2s&7N07b3iGF6`9n0kp#k-)oRZ)V_%V1gZky
zMKa1dD6dyy#j0QXEKdg&(?ovKz5U9`;gjXLF=yaHlHEVNyWhRJ6lIewta3vFAh2r|
z;V5O?8Q3Ahjb@u<r*=!nEmGm6X_*XQ-yq&I63Hwkbrv9UISGP1OtKBD<8-Bym0Lxx
zQ<8<UOd7ciEgah%c?HGE%`CgtXlNk*=ts<~RvsVtZc<#Ld>ga~rpD$43C&hpXBCp!
z5BCqsp^0L%(o(@ovzDwZVqrzp&(v!(AW-sOy<BJ8pA>(+QmnTJRwA;ROqd$6hGYHI
zp<f!tuZEi@3&lMNH_aML&={|y;*-4Su9Xd6bYHag;#&<ErlHA}r{Shl(Zpx3Rv{Jm
z-z4OeZvIkp59lL<oc#3#!&+D)f@snB0a|V@=Ge@i?k-|Hl0}4P@lS`k9!@)!#=r+A
zX@yVvON>@n4Yjae!}zb46pC-|e8nRO1qZtUhUL(ybSJ7(KG*{7NDjeaH_>2xY|U@o
z?qro+G2euD`q(?|R^DBY@86#U^`FM%o88EtXA<<Jeh?Y<+>~7t5ULX=bNA=dxw|#9
z^z2%YQ&N+-9#y?ZAxJD>{<fAvD<cN11i*lM(_?vIo&Dn?*QmvkS?t;@4o@aQJ?ji_
zk?jVeqm^!w&;xic<P&mF*at=#rnk4FJT6_KpWa<@bd?`(3VfUtQsD8L*#>Oev*@YB
zM>FMJ5W6qKG-TYN#gGx#Ne-z=o|a^8tS`>JFG;3eHYmBL6@iQE;oSK1>D}Y~6;(t#
zX0o9AIP4-)A0J!xZj5|<OM*}+brGO>(Z{xL_m}`6=M>Xw*d#*tYLmuYe=P91yRF3T
zP+~Vf*`BHks#kX?t2-2U_2y%F?GC%jL3`wBN!|RySMNQ(?=wxZIW*r7-+%uD^&ke@
z{+w56D}(%G;h#nX)fwssG*nP<7^9Pp?O)eUbnURgHsIb8Yxo~8#ylARkG*f<Zrixl
z{VOm}uS+%njrW5J>*Xj;l}3u)I8~Zz`D8&5B(ecXg`_C!b$<KZ-?s-KNKt9roA&ms
z)s<Kr3<mR_J^Q_#+B33hRz#M8_SDn_`lCC+1Lh}KoX_wfvItpUXyn~qW(}3R4pdcl
z2H+m{J5Q=(fQ6GOH;T+D_{Jbzg~YF}kl|4e7rO%+PIWSf%KQ_xGW5cuM}%<Si}A4^
zQ-;8ki0MHWVDHG7>Z-WAv5v~)XxMZOOAw)6G9FTxyg-bY!DNs=+;Hz^EzD%GOZ_x*
zvzGcPl+XX8e)=Ev)BjcKr}Rnm&r?7BwIDbJ8-n>Mt|+CX1zgFXZn5prHfUv>H4pO_
z&`AI!rB13!qMq41CKW3{B@K=_Hma#rt-IQXBp$Rm#FRKT9tkRs>O(x8wFk(bQLK8m
z4UY>~LnJ;1%bp8p03_&X&02?BxK9bF$}WAHx*_Ku)Tku^0tE_kEf|@N9=$M>;P0r?
zQtwnM5*PttsY5-6zVctNIFhFn1Fp(n^FE0pP`KCzF=-Jf7&8IQD%E~Hf<H^BC`s%8
zzpjmCIbDn^XK^{3O&>d9BO)!N0QRc~_!UL8y_MNPje*8Sr<;5pDq7P3#z({_<j(fV
zR1(Z8JcI|*faEYi9pig&+i|*S7I{c}96Aca=Omvjy}4B1#H-*{Ox<dP1qEzWJ@lw3
zM@|$Q({|$k+~~|o>9jQQ>wdD!#OrkUg4%^%+rX++18<ikC&ct*G0=v~L-^rHQ=YHV
zgot+^rUAIEL!=7EW$~dGV>bZL#n&2YuTSSy0f}Y#Juv<O5)$5hnntQ)9vpR#3=JV<
zJur6R$qLLy@RJo}!=T6|<`!E#ab89wsZRw49M-;SFT@_NRCN<3Q?`O38lY9c`+@RK
zvKUyq@^=GE)q?@00FXVs`4l08g|bO0d5m!p_yhRhL;#w|CqVxC<ZPtcl(cY+E)+%u
zIyTH^k9<X}vVa;gx&4%iA-I)OntU_bC^R7i-o?s2_v29%@AOL1M3VKllvh%}uXK*;
zLlU(CKQwS%Lwc{uVmX^Ti=VD?1~K0_7g0gUM?~w_wDEhqBiu>$Wc-o?Rl3~uSsk3m
zc>Fgh#vjzP9w#QZKJ9R<^i)Gne`Q3*aSPQqxc<nvMf|9bj7{{e5glW&yT4LPEOpPS
zI$XzcmmU$gX`Z^PR>~#~4<ICxf_x>J5gddX@}$m0qnQyjJ~1h}0EVX7xd<7&uDW!1
zva{pI88t;30Q`8SbX~BWR^{|cV2oTMEg0idTbUON9caKw0=6Mk>caZpJJ8caC0WQK
z=@Tj^EF!}d;}U>(EJ)HpLjD1*5TT_Fris;Zgl=ubBM#yfqdh%(q2AF+=&PC*E-#s?
zSU%bLrgqQnXp>Ik2y8`ysfdji5_)!U7;c5Q2l`FgNu6_q^iu*c9X0qI#(1)fU+PU4
z)%w>lh2?*9Xl0t6v)R>Y_2|s{e*B;5{`IDN0&la;OtgEt9$YgK>&{!IqxDQ|y)n-G
zE#qv@jE-|5|8~EtXJfqpj?T7D25uFfgd=6b9!XltddQa|Aqs4g?heRur1i0S9>Il0
z2`d!cfnS6>9i}f@Ged7bB(9XEhPOw@e5}+gbp_cShEUTM_X8JKV~EQ=2x?3Y-jw{7
z_Y`ZxBZ_WMXT3e0W_z}d!z7>6Cu-Zdzpsk!5p+%=f-pitYF!ZFAn7E?ROKm44%l?6
zq*JmFUK>NH17`yk0{L|eF?9iIIU$a!6i5s|`Mx>;@`!g}t}QdyRx{U5GuMupYo|Te
ztzEg;+?E@2?bLJa=v-T7uB~RS>t*ayutrPtNPD;L=M&CqEaI|035ZDXUa<C|O&U_B
zlPZ3w(^dF}=EepGJ0dl|25VF20;wkG`g+HizCF@4-)BE!B6^0g;M1Gc)8Hv|-G6uR
z6z>2}))R0U9tLP+uUldh7%et{nDsM2jCb)kuLRvs+lGc2)#by4WRzg*-eKU<3k=zh
z)b{8@-P~6VWZ=w@j)Zh&#{!lqWGOouMJkWTs)yR-I0GXtAd!-NZe)NUZG5T}dtsm_
zE+&kjJxNTRX&nm;9F)!g6>X6n9w1&g^w>a2&>E|5uP_~AXGl+KkAskAb_M%t>5wSK
z^{5l+DXA%hXypM74>27;j`1frH1F#<+-8S|>h&z4uYEsU`P^sCC1Y*HZLDKWuy7G_
zc;Fwv5G_5Xk_pZ%APD|DNc@6I((;kTTq{-A;vo-KOvlP8-PgF#3<LgW5J#BIsq_1f
zQ7&`Sk5Cmm3S#%4GwvXE|IvYSq0Y+Lc4U`8gCYb9x(^`6+b1PN2$M$a6QgLXe2C)r
z!N<f&R{||eRc|#^u6dtshwusIfm()oUGnFc)f9AW7aGP-{f>Wx&`W8qCwuKM#MHz1
zYUP1BSSeMTAXulbgdcztU^$rtN~1~}U@#S~Mn$2(mGHhPpqC+L;t7Xb8mOS9AyI+P
z5mIg*8Lpa7#S7eSOa&hKqEVvlM!VWQq!xvaN5<z<o(c+oB^1ZcP09g$Txb7}Y7~dm
zK1;z)MsOSfEfpzU%L~$9pjH89e`eH%93w0YsW=U10EX!mTFr8=|CmidXyjTtJh~C3
zO5h;~F{pN|eA+H^laBIvz8zOIHyRZ_tg_H%;!y<4z(;Xdfx{G&bj#2d{D|`=K}!0H
z<3KGw{}AUNlp4MQ)<;c|ppYF$gLK@Du}6I+uq8cCfqbTp;^43z{&Enj5O&WA<}6KV
z!)}<iA;Sdo8-^0`(^V|f&#=Kh<ck?uUP)#tj)s)!p`|^{$Y8`*2|`ThXt}O{-!Z!h
zZLGkdVmc-hy>?Bs=B&>E7x1fzhzy4@PpLwQ^drJG%Yg<_{4e~DtEg(1Nx=n0ctaYS
z$wK)Yl*2*Egg{RWvYLo2vKZXdj4GXerZQ@od6MJ;)O?@%$3pIaU8)ZwxW8mvSVaV8
z<D#78<7#W?rCCz@_3>aQ*I?VUCxad*Ydip}HVI#?-+Km04>9J*-~5uhF(qRIfnpj9
zLCb4y2+LTlc{PoNFdi*?HZAKsDr?o`@2slIo723i9Q=9YlQB|v3Ia2NjJB*{nuEbc
zCyo3u{bXDtm*!6y`Fj*CM06zJGo4a^EXPP{2vJ#PMoC4GR0UW9PLuk_^k01wW<F)6
zfhu>%Jtp0Nv7=>vv>TMULFGVt;V}XdFhStVwRbklIG2OaFr{!z6+Y!0r0izq!8-z?
z8)46Zfe2=QW`q)uI6%jbe|+PFiPFGC1-<mL0QRMT%~!j|<0ptufkTdo#4MU=fX!}3
zli*a{mh${YQYr?E$o%Ly=>jo<(sXKcq7c6(Qjxq*KY;+NIf7$&5P|SV+o94BH8F9W
zd**MwF#r!;UJ#)QNZ=7N!ysWshpB+;EO6kU#0q2Gg2xFGJ|7rm6xMVT7KS}Q^mhHx
z9{4H2Em*T^$%hq2%v@llm}jc+Ah;?Pf}REFyecAh87M!Qu^!z9KoDZVdqd2biZaXm
zXj?EDLGOWr`4(gw_(KB6rT#eZYA?%-d;(z=f|?edRacYJIh$QW$|2Zb3m;N%^Dvfh
z;iS0lhKJB*M68L}tKHuE^aQWEZ${5;rLr=-j5J@B;w-qDL=dpJN)e0(0jDye5{P!d
zzYH3qM&(RWcQH9m5tE@%30Xpo^_U*4QfFNXD3ecqx(n-KRSE|z3<4k&9#kMbYWT%a
ziw>!k#ETJ^9Iq-Met2WC(0%}YIv@>jD{e825U6QilR$CE*@W!OrB|1PLM-^!kQF99
zgpebB6Gj3^fwQh2F9J4C1QIbXYDF{cAMQXn?vv9-#l-})kx4)gBwgT^k3vW<1D}3y
zQocyqD?7PbKH~YsdDdQ8G`?P0_g}lR>3U`3CssDOJql%vR7j7h%|*wAarj6_%U39!
z`l@E;>)%afG{4bClhQ=3eHlp*tM*!5^V6T0s;za^8)|7pUhwJ=xFt7=sXCzMS@1KT
zRPCBgDN_QecApuFFx1Jgn#tJxLDim%C#URiJ;&|+Gdn+*?IW3Oz!015V<9{P?D{i=
z{Lrmn?#g<*v~xFh$|1fFL$81kOH!WM9CBE&E!L+UXVzhMyI)tA+sr%Hc&Yebv#Tcn
z!_Xo1YIx;Auf)JBXyE%~OhmL&hKqBA$Y!Y!k@{GQuPjq4Mr1`GFu34gjYolF+&sW|
z0HnLnI~m<pBDhz?;9VO<v@aG=P2MZS%L6E*n6~7Vt8++ZViu5F8C&b#?neM$=uL(;
zWu+`c6-RKmgoomtDIgb1h~Nlv)sp$h<1WaXPa|u%HGuF*7Qum5eHJ20Qv$=O7}JA}
z!Y35`M#)mc$UUX<l}G)NcmYj=l%O4k>LC?~f_Oi4**K6NEFiV-5JasG5x0OgRzgj3
zsWb*oXhEkfR586r+xSqW2|mJkIqS-0{0z^;)9;}t5F(Q)W_q>H@R1?CZD)|}x)!WA
zBTeE23UUN1ABFVEuX&lJ>&wgoP}0jR{&&61YGAZ1otrY>W>F-GvM5~R{+gzbBjDmi
z?XEK>GYG%Nqd9Ol2ohieCz%IH&~Nz+Wq>LE*8a@FPl9wLwU~R5(PZ+#2vHxKC)9G~
zZOs$e_fII0*79MMwKk$wb&5=$6)fP?-5sR@R0eAP98j}kAJGS~92T{3ViF|~KJ<fQ
zgj<k*LJgAp;JbdM%$bM|d41)Pc={8;-);qkNR5n}K{E#W-A|OHJ_M@6d#nEEsqfzi
z3>kPygcf|^n70lN8h%hU*h&dd?*xV|SQ^JPgkmlW=_Z&vMLs_}oyng^8^O=&jli`r
ziUQ=^flI4i!4Q%9DXBCj(f13V!DXTBih~cjCqX1+IQK@VHZV#O?$S8i_Zf&+P7qxo
z1#(pcSOB;Fw*Yz0QwdK=AkCGpp_N!#2^`iVbPsg@0u3yvyhN~>$xS=}&-F=R`xA2d
z+avH?5c-4qQ4xhtWc);`u(znws?lfk_Tosj_MAHHH2Tvn44i(Ax@0Y{^XkX(^g<{O
zzpauRg{oczbHSZj$M1ZqySW;ca6!{XuWv%5Y-*a_PE;RB2xR!Errj8{Awes_=|G`G
zEus$5X&ZdtLWn@6I54CF)t!r!TJ+$qfcxB6)f_sQ%<3%a-i2U4QoG#uf`X>H9xKJU
zq}<e3r^_DH*dU$?DDFY8eHHcvhbeSW(*jDR3C%avIte<WxPK}?R*k__Nz#~%01~Gz
zokVK`(AtS$%Nx-gQ9dldtXGj3kVGn(q7?RGMH^7M;0^U9ul2;DAuwe#eqde@b|T*>
zZen7C)YyuE=q}Xf3P@Ulv`nE^MlX$(aVbt$5)c*8#4<7?ER0JP_})^EvRVMkMOkSF
zz%~Dw*|XRpg+8Fr)vGZ8N^pCWP=+knLkh{1Pi7hyh}XE!-BUS{Oa0EmY0Sr*wGEj|
z1F{9I#H`w$3<!2a-}u;6pz_&&mpmMuWbT-#qM~p>t7=gBFstCyC60Q41YZXZ9xC!&
zVLlj{vr?7IZB?sCRS?M@5I9d|xwH;2O>Ux!U=}8+yv30T+wh3#Xp!q4Q49}XYpMQ!
zKq!aP8-Pjyhazf2QUwRCvrg?K1kPo2Gkg=d{o4B&lVN(SiYDNb(=In*W9FqGe;{vy
z4F$0_Y+KZ6g@9JAz@%Wj4IC|X=5d|R%hBv=Q9csP5!xUMYY_PdU}%SrL`oHIvBzSi
z1E^wd38_qof(<d1`jKbd-Y>0t1V`e(tZuLjS$X_REC1yk_gsRUAUg~K71Ad;?EI)5
zUNhR%hQK}aDHZmTeQ@zDPkonKKw+t<4W#ZEEpHE1cI~#PPw{?2Q4g@0>&Rb5JCWm0
z`zB*m5Nb-WD1XOH?x>!9Dd;PJ)B{}%rnnIp-7e4_vqWs84eByU0#yy6dPhq6Hm@Eq
zR6}YjKyfz$j^_IfHxY^!fub@1LzIF$bR(<AdoG}|CV}&+=QzL#PmM?%iqF(;Kn4LU
zgH6S(fgkyf`lelf1Y{NR7lLu(+?Lva#&m9gPSQI9ltIWo4hT?90^k!d=^@L4nz1s8
zsjW;+4jgw{{)4H_A%@Tmp=>YH2r>$o1C6sqZ?o>xFBGr?0!QG?@)7)Fs<NX8rfJ9M
zkR&Q^hROsWIL%=ciqpTC5JEf|h`aEg1^TyMp#6wGK{8yEk#9uoh;fYwmsXfTy`B~q
zVM5ajn0U)PK=tH53-r%jAkbUa`KnxNdT+`CO-My`Y9jPjm@_Prr6LxFLV_YNq9=J#
zy!BGjLbK*72-VC+i=>@va2C(=kK?pmhsIhOd6B=BYe8KrOh;LK?8AlS<4;0&s|Aay
zE?b?E^nna^ci(wMl;exhHc}R5WQ>A(gVQFgX1X8Z_6!lw-uR7xN}B6wlCd1gdP^MW
zR|R$Oas0jm83ngJG^SF$cv<xfc5P7%bNGZ76B&Ft8cZ!whnZ+Dq1@F^*Qgr!cy$qj
zs-?8=@^MQW120brwPTN-iTP6VoyM^B$fuJSw}96zT0X}v6xQN^Df#yf9&7oECa|!1
z*7q5iv5Tf~{qJ@HPyO&~l7$txh$);w3Kob%nSvP!DH?C=jHtSc6B^S0Ds%zJo}=c0
zPe-$O<qO>>RmG~T747?(2bP{Er4WM>LQXKIpkz?Tzyu>yPPF$p3Z|!FFqNsBQNtmj
z%cO*XXh{oZDpS+F;f(U>h0wT<jU>+0NW#?(A?q7gi2Wra^5OlCnsub^5YStYQo@DA
zr_oxXX-2y7Bg_s&(qOnn(7piS;A;{HJID#wr-ziZ@qoUd7j%<lDYwc)UuaP2fyEoq
z>2T8uuF8=9FB1B&b-}1(Z!Gra(Cae-7>2SB6-RjR%eZI)OHy^F1bzy=DZy7>CS9kr
z!G$a}CLb$hh`s=Zte)9p*n>m`!!;QYx5$9_5g8D-$bfj03>cMVRgCiS{81$I!00vf
zJ!p=|EfmLD1$gQwq;2A$KuCA+d@~TA8gD&P1vrm<2N`??7h7Shq+-fw6@544M{r~f
z&L^l<Pj)eU6sA<saHHrD{G&L5CAfQ_1}ic_J`Hi?Qh-&dhvTQEum)ig?L)E=f}1WB
zm`fWx%yc4KAq)-UuONCJM7;6>FGc@iA=d<OxR7b-n80_ELoe5+9EKR*lS`Gkd_q5<
zOyJ7lqSkdk3uvhfZ33_z{eV(*@ZBI0$*K?s4oG=+04h#yIs+o8{Sq_~S9M|nTGBGx
zfL+LMywsO^BE&@Y51=xl3v84Nq;s)P9n{P}BzWZ+lnb^3oh9TX-i2Ag<#KeGT(HF9
z;&HvG>gc7=@APz%BH8euT-+GEn?#O)jLdgKsx|xINy$pcu9uO+G)ERCqHefHyM8|m
z9Ah~unL_zQE=2>etal=)fy<j+Zc6A?c<>e?i|VUz2<-bbRCPBnpTm^)+(8iRhd3-T
zqg{qPFL1n`#k72)VsZvi3_)BLfkP8F|KLxPQxBelOV60xDpCO)&A9+D{$XqQJSOAw
z@z!PUl^QG(caKLUwN$RPh>Xw_*AczJK{*~l<OPPBGSsq$Gz6{*$Owhbf<ul0z)uCd
zTXlsKFiv2IP0o)C@ug4sB}5Vya5P+t0OrzBMrp=F0zYjDq;}BH2B3jTnn%Cl5k*tL
z(BKt4sAXwvDGXFxVq~DH?*NprPbQRC<hNO!R*Sv4*kpEWu{YaHQL0(_t`FX<(2EhZ
z-Q+q2Zww+c2d<TT&(R?6a<@c~@3}<MfEH5a4dOeQvWSc}FTy}VowBUJATzSzIm-bh
z$G|0E*9m!{&+lAlX5j%>Vn*R0rweL#5nJHx;RX7+(@(V($FxFRLpGm9>66U2Y$fEe
zL%L<A+o7HlpZFn!bcs=({s<joNHXXthz8^8<btX^P^^SJlbl$n?}HWx+YGQ#Q=Tfq
zLrA9X52<xZM~7t10c{|6(o^XJQU`Pg?PS_Np!TU=z}VW*#OcSXxEunLPw*!rk%AO0
zCsea3QU4y9)+=A_Qwc1C0WL@zUTO7|fI$y^xe<<W#Apo`sFD=mhW>ORh6S<?UTa|D
zAY=gI5zqxs|3s1UF=9Q?7A?U&a&{9&T<WX8Ivy=>c|Ce1kklwpH#Z6*Kn5$nTIXax
z@RjpTKNqC8==ck;ub_>HOY3RnB(LY+H}sFge5{t!tlLNJg4>B8r-1*^$V&=(CZ{kP
z7nbs*jSuxEXn^HzN&yxv$pLs_MC2@2={rUV!n`3)3%y<d(bU=YAY_xo$gpcYHPH7c
z2{0D?J|mET#}98jxOpRJgW)R1>?FR*&lrh{I%{kVMH1NACi@YhA7}^pF?NTEQLkvE
z9IM$iVk|BmY4C)etL$ISP)I#>!=pt6c?-IaD?qWGHuz5ka6V35<;!jdik|?0#q<RS
zDPL;U|LBc@0yTJl!YINz7J~XZpfn2!><0Icgab^HE8K5HMZ70VYmH7*WAjg2WvL1^
zur8-bJzaQRpLxpxXhNH8dSx|rK3R4>-Y2HykVB;gP*Y`lX(#!I@nn4a*e3JrU%a|J
za4t=VQ=pAI%m&xiPAx;mG~5`@c>2U}yk<BN##5*p8Fy2Bw|dHD#MAM{X>_t<M6FKE
z%f)i`*i_v=^J`P}kmekw=}m|+T1zVc|2NGU5jy=iH1-NnYaq_H+oaZb1iwgOU=Tmq
z=H~pg2DTQP{NlzY4n@wzW4p7bjNk+Z_F+h%$RH-MbWUf><zvI)L>-|=E-VKu;u?og
z_JJ}FRr}?}iu4buKurQ64vZ3AOpHS{;(S^FYI#F7y85<a+*Sdh_**d6Lh8_KFs|H?
z7Mc*$yWlq<s!?zVZ;*0cz_HT^aaqQDF*E5nQl&e9Gq2)bO&6`Qrj(|&j9WoFILI9R
zDR3)NFMuvwfzo9Z__G(LOBMUAV<?(&njtb-PYHi@UJB|q;g6+SPEuNE7neStVme64
zpaB*_;Z<E~MxOqqCc2B|#E;b)T%Dyq>*c+u@&znmH>~i(GEikYj4YIM;2sAE1mqP6
zjzxAMVgVtLPXyCM5C)z)ih|h(gKHt&Qlbtzs3;a=qrf^q12RX@fdKDNP-373kSS46
zoUo)3<H}7O9RjDwWaQ*7fUFWo3MLJd!vr62selGP5W48Y-5u@X$k4IK$*Ea5i19%w
z5tv3%YUD)V|1eJ_MaXx6rL;Ig%Knl6w<gZXtL66OMMe3a$=f}7M<kmqTE<B4ssvmj
zfu$g^Q$E#B3$ABVXEDB*ZmW5EQC8b%gIV$smbPIEJ%<<u0D{62)e|79Y9L<iHGBjJ
zLmMN~_CW1aP6(#!VHmlTZ>9$U?3gMAL}d2#14pgHJUVk@g_4l^LiOa#+8~`w>-yk$
zO(sq7Vjr>G7$%z5CB_}LsVuG)SK@<+x@xL*M(u(`<p*5r_)x8^q`HqVaE8z0iZT@c
z<30qD2^>i2f6S;)MGm?G>Qhq{gA7NAQ&U8`PBb|0t34W~M=(O_(4^@ICQpbT7P7vC
z9(d58))&<E1wUV3sDh6)J&33i{fl=8eCAiAB>`XQ?KucJA7rxQ{z^dr!sskuVuW>C
zP<G@)MLY%n#)pe>A>j}+95HtpeAYwY2k@sHT=#*@or{<B!6bkmBx%8rO%`QPiUh-P
z-N>WD3l&?0hU!ywC?uYV*A=u_gi`X<k$?xy5*7RS>+aSGb{Em^u)KZM^uSo^UgI)F
zzcZMmunO%rar=b2h6vuL;*WVbEk;`yft#Pz7y;Pq(5Hni5IA1cr3?BDIs>QxAsQAX
zQr$n;bd#Mcjj0V`;F-V7F>m=7Yl=a|WcvrI6$usyE2a0{Ku=i60E7|X4|F8J<4SNz
z!&O;m@h=GWC;|_SQefz<Vm63Dz%9S*!}uu-!ZR3zwT(1*Eu;a<3&nCwH-6xnOW8W$
zxw_!x$|jFfwj0o!o80RG42c~6g@IQBQ>K8~W-LiSi@6YhTJ_eU)J|MTU1Ws{AmHfH
z<XP&px>kKx{q|bzUB9#%Pt^dxADnr9^T;MxjR5_SrsKP)`9+(Ex7tSHo2KCt>L>1s
zNV3={xKa5ghk#L41P_n*k&U}ae?QWA{g`ULk8IZ`E={?Cc~iW$qL$D{a4<gBR-U@w
zwH8aQuwtcPqr(N1x7OULRb18z&5ugQ;V)r{Y*H9dc%}}u7w;rZ7MsPls1S8Pb>O>e
z!~9yGsHI75)RUYP<KYKhoc_WOg7_b3fxgbR^5aJnNmGxHnP2J5j?z3hH)VslY#7ve
z5zh|HAbgdsLH*iM7mL)fRL&&mf}|p6Phh%w282RYKsPX8BqW}yQ)&u;Jy?*@0hpm7
zV(CES5L`(0t07R#3CRHk@Jv*LR1yc|0zyeb5lH9@B#QSy@OB6y3(QvcAPjdR2i*FP
zk%Lt36gaK~&|-|pkNaLazRGsKiFSKe$@tCASHUhHG6z01@1aavseeuBCXl*cUISzH
z1XZf6WS9E!P<hQ%1trnNjG5AXF`ha%IVHkj*1~9Gy*K6PTj@Rs0XMJ+G(6m!MEB!`
z$w#5qKWCjS8$Ep|`;CT5d{6DeAo-OvDWS3haV$m3QrD&sdBL=mnSj~_6>MDILYWV&
z7Q!=CZFonuz?e$nA?1{&N~^9?>sUDTgErChU_BbEHG)N}?~g~&9=Ah*@WbA-^Q&pG
z9M7iRqIb8P-`o}5-b0ZuixD!$=iO(E-f}dbU0cP&L$@j1yF2Q3&htgbKJPvB9=bid
z^$Px`t;KRaE|#6WI^W7s;k;a4&8OXb*s1e7!{PGgvYee;?`|fiv+DWt&Vq^U7ya?F
zoaf8g{AIh#TA^i177v3RFAJ&j>E?=lF`G(nui(^iI2<<l&+2slaz0zm@Y&0{Z-b`6
zo;38(406>i?5cNnKAU$}`P>=}-M!JLRlh2y7t7J!=#x)+cgVjTRwtwPd$;{^dNq+z
zomS<r{cwN(%(HLNvGei8mA-%G+MQKiU6q~j)Vh8CynEZfo{yL2UC(}V`nR%J_Rq?5
zq08USXP4!Cc_ZDq?f+Qb*tflhbua(YU9J0A486VL(|mp*jZc@0y01mu*L*m=s;Xzh
zro>6{{$=}NaQ9$WL({ypwdm%(y&V&7N?er7H`mj;gF3?t8BR5<Fksnx-JdHdmG{rb
zmF$J?j-}rD<>%$1n2#@IdAqq?^jh=$(ChW=sxMRVI+q>at`I}7?2&!DR}EM8?Jz$X
z4U6~o$dcKwUhbZ3l)vK|4Q}mqD+5`&_EO@xUOGuX^aj`s!&^B>W*DpWTFrGwnHTLI
z%He!97xc70Uhr4)di9Qfkca#Gb!k+g8&aU{E%wrCC|fKau4dyi%iY7tuQ$ZRUJQ$q
ztwZ;|+uM8Ay&ZNZ!$p5uepq&Uz5dy3TJ~h=M*YjH#i%>!bL>6)S#^IuG8;)wQPtZ+
zlfAt)U|FFH`LKA9`OB;7hM?#6{vKOxC@ttX?(gfA0HwO540~ljQvOg+*yw>{Yz<kU
z8Ouz|YwKItfUoCs8DHnisq|5XoG+K<<Z@{(XVzJ%r~hhRTGQFo;gDr%WTh9&d|H$p
z0J!yvwD;TJTaRW^tD$R;hUkoWXQrpOSAANi_bNGaqm$~rOn>!$uNm6*VzQ~N^})8(
zP07NYlNleRHFHqk%R#IUX#>yt%h@}D)6<K7A#>Z>Ksu1~`D_C4w%PtKpV`Ibyv)yj
zZc-HhwW<avkv}8+xh3SWC&Rl*KL2r0*po6}$SMtr2X5HT)l?7QS?5^|WK`loaH7ec
zy{p*Stl+d@^A78W-9?YCmN`22=5$fcSLGa#cetIo`%{4mvi=hcSH7AIThFaamXoj;
zcB}q0UyU!Yn)mm254}FZHoUr!j@hL-r?P~Lmz~aFVb6w@eLNi5%i*nkG@RJy!)MQC
z{dy$!fjk~JkFTpz2aC*+EXmFb@wlI#oxNU3!Nc)lSxzz3oy7`S)n#cawJ(SNQ}$)5
z%MWkPyPczVU%u|hZfWOzJ0G7($rqiTJsx&`_~C~y-hBP-53jy^{qD`tYkBP0r$aBc
z_XR1)JNDtQvshg?<7ox{vV*M8hMlu~nM>Lk`|`45U#)X47v<I2%qg`y9sBI5SI%WQ
zJ%ci$ePN2o_B<bd=-98!^H`vC$9^aMm`#`Yb-9>L%DTmyVJBbQOpA_vJv`|ge0y{#
z`0ByySD(wzyKlcge2w4zZ@zr{t)RI-wzo94svawW_06iA9Pa_h(}&@mAX9_RVkRd@
zaH@Ph=*-KDt16%4sTy=Ds8b?+Ht3vP$?=_*csd<)PUrdb42W1>fB#_rb$G|*Kyfrv
z6`rI%R)usWlciPRN!rz_@Ng=X{Dk#zs{97QLzV*aJNBF5i!WqqtXDcWR%CVGp`H70
zw1xXa)P4WC)_VUL>%0GAUY7TAN%mgYe;eLqu4}p#YD&5^#i^*wL!jA}bm8sr#It=n
zu!VxOV>_`^JF`9az5ROlwni3CJkJ&?!V7FKw7tldo#Z99m)c%t`|kUm{k5!DLHUlo
zx$NylZ}!Ym`n<p?ZRJh!#gDS8KMe2w@Xeb)za4Zg=Ci9y*(u+>di%qhx3BiU{Pug9
z{OkPEnO)|^czM&Y-+uGu(W`GH`*J=O@Fh9#Uhlv8`g7(jN@?^AxexZY(!CGp+X78i
zvei20*YfA8!sA%}oX+NFrA$ocQox~8mFLSkJ=a~)SzL~%nzw+|MZmipP$zTOX)kR(
z_z51)tMR2Xn$5?z*zHxFBhYL)F4oVdv*id)Ec4>W`q%M3G)W)H@l-xz+qz$xgxNUt
zQ!%@mE-{uL`kYGnZBL>+nt8*EdcNM*OZ~P#$uD=HeVtBSqOdz3<Yp1v#ALjF>XU0{
z{SiK}zZuT@*xY7s?-OAIAl{SP_V@`<_|sK6zj-GB2E;?}?&PH2Gm~+3v)*X>{8k^|
z+osgKysYv<VN<<9TY3A;YD(u<%US)2Ly*)#);F5-PBJ!&3NUvH)``bgXJ`A5YRf(E
zrhboP^LA0@^J26GKe<Qw;w|%E*V)ZyGrbMrZ-=)dzA$-5O;%HyrAjBi6m&$eZz-!e
zuj-7Z<d0=3CrdUvP(WufyP8wDi0n5e_nl_0D_2y(X<fN!Ky%-=GS_1sQGH{vkSl^f
zf#a3TBhCAgS?}Nf9JMe6w(j=?a~Yiolv>G;_g?Va4v;TFNgjPN+}c9jj*==TollBS
zI`2C@Y`&_-$|?{xua<(bon9?VVrI8JV0!{B<?sR37CfUP*ldXg1q&C{+fZ-v;+vDz
z`(X}x9c_Ox{7YAmth@H!9PHcM8*p%FZ*DVCFY6uEJjwn+de;US2&J*T4N!J-xd-+A
z`gmDc_|ej#+U@lLIc0y-+xw!w+3EZH?ic;-J_rTW+rw0RrBm@mZ*K<(7=FbvUk+yk
z249|x-%D-y5gfH=Bhg<hZ>n-(vdz=_?Pxapv3bdd)|aF4Wc?u?ghJC^eLqB|{W(as
z@1(D5R?45Te-30tzk9hTm*0*j<?ITu&+QF9S5izc`3Dr}emCqs!UN^`T``|k)yo(E
zUCr{d^6dV<ix-3S!x+!K{!$1d`5HL<%{wd=_S$1CvD^9l&5_L25_znl({O{VLJ%NS
zF`2E(zx!3ulYx5n=TE?FRQ3Q^&FT4*{fA+vLFxV|SYrtl9jWFw;4W3?<BCs3F%+l@
zx(83y7PT>ww>vQRi)wb7%VAQqTMm|HfO0Cz#bW1euvw&EPR2|7cBA^HsC4zq$)r3R
z%cQoJaL~@TSB0#6i+_fxTr+Llz2ehV(dO2yij(5KfSs-;JlRHn8b0f?nilywDGWQH
z(5-SJPl6@=NjBl1K$YJX-5gt~^~s`G1FWJyyO!k>SXcFbSYTHOw38%Yr~tg;WCVa$
z^p~S@3gES4qE@}T(eO7U;cka30by&b_`D#C=Ha14;#T&X&}YNpZ=OG2YKD!+qImxN
zT%TLLlurZ%8wML|2keyMqux$}^_3+{B>=x%SfGAS1(}h=bUIsFHCJ(zFReu`h^{Hw
zSAaYMlzlv|kw9W4y8(Uk?x@$(-W0>p&&@~Cux*qKAFY|GG9|Y%2jtjr<S&mf%Az+|
z>TmC1cj5E;b<Y-%xJ`CgQqGjX>xLF-=5lE^NuhU2Ss3=pktWs!kLrSEGe{r*AhXjv
z{?RUUZwS3AJ8xRBQ_bh+ANTpe*5`9>Oeuod9h%?ff?l*av(vh$R{R^A->%;uY`!lF
zEnq*BtdWp00!yAhAIZksam>4N#!Z=T2x+jqb<gc~D`U2@vx<5B<$>1J+4yi)7{1SX
z|2$jopPl>rt?pUb%t8wadTtS?u*M4uTRd-gSGuQ{BY9CXXQa|uF~t42v*s`Iv2+j|
zo`!X9{nj-1+ky4AlDoRJAO(>1uzo9F|JDMF6s!%~VoQcS)ndKZXYaJ+ag_S=MXQ%M
zdic_;wcLs8eNUEqJySIt!RCHYiAMW`m~$hLzXf*i2W&PQE%Y8{#hOJnyleGwFe_}`
zAcH^H?8tyDDlYUuFAKZgF2GM%WV55nhP@*c9iTlegem6uTFrH<0)iEDl?`M|ntN<e
zJs9@jGdZ2liu-$=8q=}>fsJPX1kI=q86YS&vz)218Fg=~$ZzUO*WbL9;)_CNZm?bn
zy+lR=m<i$@Y)<MfF$}*!nJ(uHGj7XF%UZ9m<b}$dHu<R1x1HPY``MK>xmql(OTkmE
zT&_qI$F?+k5p{Qa*g2*Ps9@IG4<oy%1u`c<*WLAXTXol5_tht#Y(iP`Xl=(?-QSP8
z6s?$hIkzWL$>h^Uj53jnxtk9cCzJQRomfN8DS4?s-Ksn30lMEx`C-0S*Wcqz%>|cT
zPt|JIRIUEusY2yHJ6D^6ExGjFz1vS$^*C=a&e3pna{I(Mb$h(jA67OfWZTq3Qy8@#
z-FosN5p3V8mDFEt$?Rsu%WCkb!vfBwbkhQ=ST`_g8rV6|O8Z7k^SIb0t~3+(()<E6
z>=(mR`>+_^EylOyz>Dn<1J}Nhf68}}1UM>x0boGldr3U3cidGC;^kZ(tm(rIZmZCT
zATDH;s{W!)3wF>eAy~m~c>%H?a;@=HU<_E5!(wkOl2jIOzZi|Hv#)1o<)UV^3%P2R
z)A9Bk@6*-Z%5iET;7Eu^+1y>(sQJa$f)fd{(-9hB_UB81?E3=nyFGk#(r`l$zx?{E
z&ijT9Jn4~ho;N}+(+|0G%K7rMQaV@)XciQ&cp!m#Ce!YEeh@}+l4kj7A!zi)X#BSy
ztI2eB`O|!{yjop<xVe4x+5YFRzxcz!mw)`~@aXF|Z~yeoyKnz|{M}!^|7%P7e7T7|
zd%j%>RletbS~$*Luli(oR-DBC?~d~2s1L5?Y|`!ByNwX0THnN{T&A^LM*zoY*cA{g
zShktI-~ayi?%s$ML$C*&ct=GSMVqwglLG|m=p|ZMKlTRlv_bb9Ze~wcU~yRieXu$|
zCl@UqTDZikqIDAydpC7BvTIhuTd*$j;cb6WjRhunz5d^3<0;?PqgV-ASfF{FNaE<Z
z{XgF}OD%}+OYEpYzHangYqTwXU9WE#4&4{eUtHLo=lSGvuhYuyF!!gc*>WTMx6J;p
zAlu0Ol)2Sr(cd%k0-5XX+!QSc(3V|~RQ572&#vU-O`uRu<|pd`RCZ^8sW*?1-q{_r
zWOv%lU2m>6;Db!zp{DNdi~a|F{DAb0rf-l|$e|gUMlQifo%nv;%#Ry{TEohg4N5JC
zWiDjs{JZhl63brn!R6AY)$pz<J?Jo5<=AS?z+U)v2TC|Sj4dDTDiip>tNI`8j@_CN
z=H1wxp5zJm=qv=cYkg920$zCW?<C1ly>z^R*W0Y*QK|3iQml3{G>q+by_zF^b}hHp
z?A$w{vIXs0*#wP)_Mn?@bGy@Od$RE)$f12HFk<j`rt9{F|2xN%PaQL53erBv-B8~N
z*O>T0$8+8P)3HbDN=2Vqcfwy=3;L|<JyO$XaVXX*8AAEr-?tz4nvIv&Kx9EGYyAk=
zL4M(`{9)&`0{0)Fx#`+Z8+(lmQ!)i6vdIWkAT<F;ps#Fjas^NfmxpYH_WoSRlWNx3
zC0>k|RcS9JCAZl;w~r)s4YU#xWcz&BjQQyK^CNpMpz3^fH9dQII~dv1;k?hOwGSkv
z^9r%!dG54W{)F>IIj*|X7YD!dV!?iA!;`Q2+uTn(f4SZmU-jF(QX2rV*)u)aK=%0k
z(;(RK1XeB;tjo04pc1l&x{~H?4RNu#kA(oiO+6PHL9Uwh$_&V}T(;KAzT1#*$u4h6
zxCTOqlAk*hY@{j&?GO9N5pX`9Ty*RYlWMvcbVkeN<>1AO>+9?Ob<m&9FJAbr>%O4i
zVKpwVKbw6Rbf9kBOwV-Vq#O`^I+yKq+-m9Mv-fiC_U!Wc^W%O!E+rxE1h0^@gr)Da
zhj}+X8*Eh3$>(FpB~MFGMW;8N_tJHKw_aad_i|L%GgrQUP`2T|eQ00VXZEFiYG2r|
z?05E!eQp0}f3W{*|75?h|7O3nU)x{XKiJ>e-`HQ+U)tZ>pDTa(*uK-L1^h4@S*8^m
zUN#=K`{4HfHg_%DZQRECuh2}Z?A9PlQtxH9tRu%&YRPu|Y8*u;XSG_2v_VqlQj|=J
z`R#YU!DF!x(oW-^bDJJ(31A1<!OUO=m>GynE)ZEWNe8J=JHmu>^{~P|rzTpm!!-4J
zH=%bFKK3nM#ASHoPVY7SWbV4)2jZ?PddRrwQFyIM{}nx9gyK_pp^I+miHkmjv`RSQ
z>q_KThTxO1>q78o#fQ^8HB+eIB?7#Q#S$_isNW8Tv!o7n`<L*Q{fJ&hzF8q}@cu%y
z58ttm8va!o_y?uJ`p!g>MEqIN$}4E1rB`0L82iwKu*Qgd|9mB$Z|aFx2Dhh=^v3(J
z4n!9SOS}k42OC}&i+|AY`MkIiQ$)+}nNr@2hcn_bxOlv}CW-TW{07ITs5(-c;?*ry
z?g;P1a~k6_-7BfbY2B$+r5NXn2uHXDo_gW1hj$X*3PKBss1sndchbz@oSYK^f1r+T
z6r(;9>*+yJLVPowLV`}@1jp8lDojM3K4&VuZ!Fqg&<YN{0IXA}de2qB8ul<VBD!&V
zyj=OYod&ZSSq_5Y<In??9_FBVZuyDAPf)oPbMkIj>$}LVu--t`km({wkDKdF-BE#$
z=0!eQXwJ*HNtdi(y*V<kf*eO>a@^3i#3bBy!TiolVrz7n#ZM8Iu6Iy2(kygN|M{y#
zrb$f?UbVHFmF+{iP~pAy*cWfY|74y1L_e}7Mmc$G8-#DfW2Zs*lSq5s>(KiR!ci*|
zFT>w5W#S3_u+V>`AI|vS(NC>fXcY1i<}w4%F7eNh%%JE~0DrZlTVIuMuYG?@Nc)lb
z`T@MN-Z|>R>zszLL3w!T2k%_Iegb5F0by%RE6y}6=ewb8DT2=HTA*&CVp!t?vjRQP
zYmw?F4F`%&|31+A6Y2g**xc>TH6wgt8BAsXX&e@?KA^8VnsoYb)Vw3LUDT72qZ%Ys
z{7DzHvxeRgSTjHK3^S52L*$exq0e(lXsjeBBj?syIa&uSvb<3<M^?>Db82RishOlK
zr=*T*ZgY{`TQU$bbg_~xm4-F4TAo$oh~?n|IMezMYa*wjFQ#HFj>S++NVy=*#B^aK
z5sMpo?<5;}==DSIG|UN}bQVo#M+rP@u<dMYi-9pK7NlclpFRywHFn0CTj8{K5ll&C
zKFw5STX#%#$D|*hHgg@pVXrQZ9){lA3{{h@tqG0zx>sct^@$pe;>H-ZWHNFsygm^G
z)eKb)th(T>3xcf1*lX;z{#tujD}dt{L@n2%0GFFE(DkFL9+4RhKC@`M_LWt76#tDL
z*V?Y7R(abMaEr!k-x{x%$rW1p;^eH}xJ@oT3}=pm+Ii^Eg`%k&@aBo%ZGCr>tzTO0
z3~yAMOB^d}p?m4BL+N!i&T-z%5rLA#zlgTBHou`cpq@?}ld=4i6QU6yT(TYfzHkcv
zA`YK6%N`zN-O>M>@c!k$szL8GP!7TGGmqf+F{vnV`0bNNwfb%oIkD>Bif2wQBqd(N
z49Uyn(+_dZWWlclzLe1LV$<D*_B4r`U|l3653v*bB|WahZ*jQfSE>$AzG(2K!(23u
z2JnoJJ6D3b3!V|SUc1N<9O<A0>72wmnJxkbxVte%UwcXhtfDH{2w(KPG=$;45M_wE
z_q53;+leq02zuZ>=}{(U20d>cwncn4J8PZO0!Y7FVn9Uu-D!9J@S#5n``(DEqi}XM
zKPOvQ#CAt=<ZPO}EbP#dlv05>)?I=FaU@BuI@z@Khgesm>Cxmec{K9|zV(XturZ*w
zK^r@E<60{JsW^ORR@fi;8QweMT@2Ut$NcYq_}@1<Vpsdmwje{%>)3k|7ciJ@8Dby#
zHI6P90=`2uflJue)LZ`K!g)uYZJ%Q|=L`?$;Q(*>7@6~i6tQ)g2;;L(woi=?X`(8<
z-Q-zJl>|&`qZ;vC(G-D6PvS0pHI4MgxNtzL4j&{oml6Kd#(A5}dSn2gru+Mdofz0h
zn8u8O7`uCs+1>M%MS`99pJI2P)_Vs(7~al>^m;=k8V~koXX3uk&5hP%b!U7gV*BG?
zNTd{;ov)lepXPUVEBB4nr$35|N}yz0<7Y&B_-30dlwDS`sp2U+u{}vhBY8Ey+S=mN
z751D~j?&77Te)tt&o=&bPF$p41=UVB8sk`3H|hNcs3vr+{e0*+-E0ppT-e9^`+=}s
zE%XESr`3}-8)$aRJ8WB9kRdXQ7El{?J_7TAZnfM<%jh)e-}B~<oq>PFhVa$d8PKWz
zrSI|cbLxDNGRy+q&WVoux78^Jg16DhfLi30>v<-$7QN+)=rVGZb4R8{y|eQmGBlpD
zSaCdmdVDMr)W35N6db9JBUSOIjwiki>)%>%)EiDHeDQ6)_N_XjAPr(T!sbQ&AI_#X
zZ_xZZHXD&x!@m2wvmwu|Sq%Oqzm#W;5liR5r|{v06Rlq1fa`mo=}mPYWw_KtQ)LoC
zo{+vz@?@RYAkXK@e9Eud--V3W2%8i*0mXqb+uJxR^_}N%@Q}E$?2w8eRkBi;aP@I0
zEgC12TXPcHtN(hp9Y1I^GHulXi*tbnHAtY5(r^rGx??h2YJ4|K=fF_Ccq75SVtDHa
zbm%RJBuIWc-$JYZ7y@h~7J-}JuW)c~S+dNuHcm`Rd(IXs>AK(`x0lJ)4|ms&wo)>G
zn|~ucrF)skWR}$6E$!|{vvd|~Du<Wc(L5|xu<q%ehi>8$I0lwK?EW6-7VrvM_(YYY
z2+XgH1Pbt*@vIAY0a8WSn&-w?9sF+P$ilgXXRSiLb`Jgk<ra_qb=<(*49&vE`G2nI
z_u%%NQ$XadV*_T_*bQ`CNY_E8%5kw52Y-oqzYOY|329t-iljAh4P=*;`<$;gwf@90
zdJ~#~k2ge=kH*6hdu2bFs`Z4>E8Tc=r8n^=%hQ5$cQ2#DK+3aXHLYn`1Cr>!#Z6X}
zJsodASXDC+qf6o$_A+MKGnYBP>qufCDC63ZWWR~5K4l!jnQm+AY02GOtJk~@kt9dj
z<&;;BF-@H<z=p(i&Vk-mvHNWS?90gnJ05n$k-fL1T4QYRD9cAF$oqSCU#QgT;9ST{
z7`zUYW`KF71)3D+=<+gA-Xhknd;kgWR1nQ$ui|O5Dh6O{Yvf@mosyvU#XNhal_g^o
zw^!35C#OFT+!di~LCdWFt*zgmWv6i&(?X{EKI4R0j9<^!YWgM(5Uw2A2jLV{Z&TtN
z)My;tf%8#$E_RRYNRbhX%`H{P+Cp!~Mp@tRju*#-4r$1QICyC%m4h`hV;y1XWcNfd
ztq_mlz=-&bn+s4Uhow6@Q6lYPA=Iwg)!Gm6d8@6Wo`>z*pmX?;C~5RMxtsNzXRVXq
zNOfe;>st+wkTXX(t<^WN18#KExi3t`)>hl@;`f{;Bz8;_-YK-*3hyzrL1i(J>KHhX
zpvq-CDh@QVIV?07o*6jg78tRhm{mpol$^v$zG2pF%s6{O;O6y=&#rdb>Z*PV{ytf#
zQkB0C(LbTPJ^=a8GdFb}D!fW#(_&uH;+<_V4~Z+&<cXY+DnL^-OrJ&1aFSx$chlRU
zT6LE(4G{sBxAj1|$As$7!+H0DRG<%CZjcU0q5M#2(#SR8KuKzFN40nPDit?r>hh3r
zsdn7_L=~U%FI`S<$F?f}j+!V`s;AIAJe-?N1JV^pg^<pQdz$AdVK-hv<~A`4lkAA&
zlzwO`>xT(jMq&z5E^?ao4-}l~L2`V%_3!F_j!Ja9pqefm25ec+Pu^izoRe~+s3ves
z3T2@CkZ9v@CQE*7m!+6nYJ9BojfCDBF+(rtlNcZC4LhMN?(Y|fF88947C53eTH`WF
zw^0++@|~s8m{1Mfo^j}uU=xKO&k0F7$%Xnj*m{LQDi;P{C_My$agdySLzE_6ux+8s
zwr$(CZL`a^{S~@w+qSJP+qT_h-}>Jh-RYg=iOh&W4$h91xz3KgF}uqK9En`e4ij#q
zy7RlStG0$mCIig{;X<2UVt_+MzC=YYynGU!q%rYOBq5`BH};FI<Ht&udUi;JG8b}I
zz>Ln$iX-3*BQoy=tTkssxKXH{%x??i?o>w9jBRwuVwSXSMQ<abw&hETE9`YCORhoK
zb-83zbJrrWCz(`?wjyAvXm*~I5=!RO25KTHYqp{aJz0|k)9ePArt%@SBJ@gq)f)c2
z$zu~XGE~Si$KseZQ@^ZwQ9P4XzN#d=pp_n&CMW?u$=hro9&_V$14aY$2#5^1%MjFH
zv2baJj;2`4+?Bl^HO~vbFZO{2a!KThHTA*I!T;#>yHh#;ncxe|#5dVQ4ED+Iq%L-c
z@O*RJq28$l$WERc&lj@OccAfX(18RssR1n^!_SIcp}Ma|O#7X@<hAQWZcO0;I~b?p
zI{-QbsigyXH00fMK%l;P+7^rHT68)C=I!vqr~C664QYq6)hD?E5z2rY9PL;r57Ccc
zqM1CV*<vee%Fi82+v(Qn&V6G2<~4!#F!Lby@imNBnRb*V45-$#sILP$HCj<Fb1w1b
zJHzmbimmNIsT*eZ?d$_t9i#Aod6(pw!+-g`JLK{oBDPzev4L#uRYr<JXe5#3*7ULA
zBB#0oe?u@`mk+?ff@p9$C|lP@PSCZ)J539dj9xv_|7{cr-x4=#hTq=l$Jqc0c=baV
zTM1&rWHtySb7%(@H2LKXM;e6&yB+|Vz~pP}je(KM0ZCOb#bJ)99MX{!8yB>;R?Wl*
zG|vy-f0k+K<;Imr!w-A|Oho}N=~6e-)JMgA27Djxonc9cX{U3`Ym5!1VA54PPe)t`
zDhE5y0<%dz8etNPg~>S8)ZAEV7qO1P8wxMSVIZ`XkFe7}6?~N@)lqGU=y{R$i;Lkr
z0!$bvLh=`=c@C$=ZTFZ*{$R*o5m&A-i8h3REp?I`NZ7crx8<k=K@_1Ms~3%1Mugif
zJU0Ho!2N&mZqZDI?XmbCWm#jXYs11s;c2YI=!fFhjL}R`Kg3=deL>hsG>F}VLCm4y
zqQ0TwCLm}-=E`hL2f;qSFi!?EanQdGQ_!3-=HZ_5PIh8G-*fEOVMvos*@JphPVZ@f
zTdf&u9+SqcYLTzRsK<DRFITsz2VSK=WBc4WfR?Wx_5ClK6buS*a1`orJXy~HT_HF(
zlj*lW1yQ_v><LQ4eDH#O*tReUo_Eq}Zbb05TBzV7s5(Tp8xXwoMU(k;6X03H7IW>H
zAro=9=E5sq;hxo-fMEo;(>oyH`99q`nN7ut#!sfP!z?tcMY(ZAWpZ-nd&LQO`Pky8
zwm)GDZM%4uV7@*QkptKG-Op5I_BU6vAi`h}o?%R2<on$z(41(&naf}oJX8U$8$5b%
zEBv>qzTn4-=Sdd7^0#bVH}oDEw)r^hYYlo?olf<%Uo7ZEp4^ccMtRrNTR9+2MJE%K
z|F!{?E=eNTkcTTNNU@H8#Ixa(Kz04+`#+0$K2U=zHhw`ovq2wX@9?Q2JM@NnLq;Ga
zH3|RGR;_E=QctCE)OTjJy1XkEAw)~QZ74iMpce*`y9VNo|26(IcN+wx1H!@hFDNeu
z-a@dsjqE9o2PGK8do*lH;R8z|+gCF2Y8k&anGU2OnyjDD>@KXNi<9rXSAd_7j*oAM
z25~KGS)Z_y?ym#^gIl_#mhQhDV7sOD{2P0kHQ0EBhdFP!PyAAp6Wq;naIY^O3zrsa
ziEP^xLA*CR^zvDyC&0qHe=Hz{Y(C{L$lhLclX+-5uzM1g!!<m2y1a@9O2bmqL1c@+
z8E8bxrFnAuspLUHp+e!mIUkr_jiX2NEZUwSCcTrjyNPX^VyRCPLt8g|163|xeQ-z;
z?dsw@f#r00=%$`Zc30OP=w;WI<K|>*fgi1Hn_FGg-3?>ayoSUn(w0Y3;)v=Tao&HT
z@`uv)(UYw$+vAO|?O(w_QYKQKqCzdRH^&3G&gqgl@Ro~`;`@!R83LlJp4Zfw9Oj7#
zV;<I(*l87LR#6B!?2%)tUI|x(%vDLvtg_bJ0`k#SEg2054WKpcWeb{S!Ptn3!End8
zru05L;65Oc9BQzxmRQut^PKtNDolvJ#?;#kb3PC6!mpRf`&9gI-4#@c>uU(__30Fw
zS$<S2y`x3ghj6|bZPo`cV>lWDG3NMKjS`7-Y)FeoG*LRXg|X(fp^+h^jWh8yi>Ka*
z5PPSR@DZ!}#3Y3~(F3CIssnf|On%AbYj{r2(D;T5zx880C^g@EJgg7Q;)f1AFNsv~
z;Nyg{vj16NN5cYQa2vhz=^g{wTTcc$1pa~Faw!Y^0dvD0!0gXu)_qyaQMH=OFy+~9
z#0^!bFE8q{hae{{v#-}btml%?+;);|a~J<nJB?sCy&=4C&U??VFPGf^_qSrYKk1(B
zY`VKq(uWikSQ#3EnZm;4_Y-NtBwyd~!laEt);cA^U!97(Wrl<3Ep0j@1Dyf<5Chzy
zC1?L%p^Vw1yT;lCILy)ndi9PZj_L=vV?E<gTJmJfwSEf4H)|hOsK;AsUNtKN*#vC@
z_M}f!)8}$9w}oX82V;{w6M23N=O=z!0vx@CuIZc1ly};cqmZRf6nmLt6e%HB@m%$b
zU4CxUmL~IYBo59I?f6n5$DLX{T+)Qii0C<T;vx6dUa}1!BP(x79F8$~6bCB{zhHR}
zWLwdA5-|Y<DKdvdiWCyubHeN)2+z;;nGJ=pRZF5<DCw*yG4HXy=I>aZ#mlsI^G01-
zU?z0oetNmWZ>!-sCokcE_v)8_uyAUYKrJoc_+!$sGuj%spMQ4_1SN{)ACq+Q8E}0s
zW*m?hSdL<&T3b$eX7-)?r9f?3HJV_dr`$x$N1o=9*Xmt^${<|LqMOt7AzkMyp4&!V
z`R4QakhCn!*`Ty1LD<><dYl+-y*O;?ze+P@v&vjx@c(&!F8^Cp=LbW!dhk)o9YJLO
z%Ooi0;Ly(2#C3;f<VC%C4kpp9JD+VDA1%7sMM<6}A$I3=G@KRhm$4y^pXkiT3gh{W
z`J)E4n$>5qRHC-P+!!N4=0lllvj5^;cqR#Z%ku=**KzF7bnvtJ92cD_gNZ%Qq^OAf
zqO3i=<k7!T!Mk9jw5QTlnR@2zP?o5N{>v}@0RUy#7fqf39h!jfo#inx({%0){BU`!
zN+z*-8v2`2%h>e!A8o+Poa_1odQIYLm2OehzxiP}=*$cA6Ek-_CcKz+*-45LBZKPY
zt@6r*&8)By%?wLR-A+XRMI&P0cpX<0Hsmb4RRG5n`nC#Rm!*-?@E`r@P$mklg=z?l
zEdGM&e&_=q>4-o~lm*!Ztb=)kzf-5!#M1dGC@ZG?%Ks+x97EDcQhk%}B^Sa^lezOX
z@X6Hkc%66;ti-q46S{oP5bgk9c#rY)OYSIb-A?-cf)}dCw}QF$Tf=cW2VY;$IwP$_
z_o~iLZZ8fCw2<&mn=W1Sm{a3wtj_EUvzuAa$`r+1Pb-oF5+oG$><kR`t{wm^tY_&8
zkur%m=;=4D^pGS?(fuy1182n|X<BX4{vs`%@rjt~6&REas@8-BrABQeSqc<wy!*BC
zR8ioCo~%vqdn4|lY>;7a@)}tTy-}%;{D~jwYoO2rA!fYk4s8K@ib6Xi)0M+RTTv$u
zHhAnQH**dwG;b?nz5Atx#kR(pJKMr;)nlQ?=GGpi5mxPu3tN+o7Oqu;4U3;U1oIWv
zwe8up9NVUzTHggTbCE*O1q<6qkqu+epmn+hD;1K+i*7hdD;-mN3zK-?I$$Z=$Sb)m
zEgu3qL6r@{uI?6qkh?btSu=u7qa2CAq_!=lcj@oU>fqlfW+aB;reV@)axNmWC0EAG
zTFX6S)l-!~_hj}JHd``-(-)F5@Q<fFOOKx$11pbm^iSAq^y8Si3cOfg)%39qOKK*^
zOm4LlXNbh~;q;@dgit$bnij6+i5GcCf;H%BF@_C!B@t11-|q4D(l8mELb|)yT1&2w
z76++G1Dh_o<=_Sj-8MCDZ;VtU0F@9S4S#Dajba2{G+?H2cOC!VF8lUpC_%L6h)91x
zzF)RxRKIHx>q980kXK_F$|dDX`Z+%R%-wm;smE<)3n%vE#_w(aIxw{l8jGpx<>4qv
zwRS8HT)OMwpE9S&K_Q*$iQMEUZ-u{1D8AQp0#)$UUc0(LB`VY5V!aw$*(`{T@40fz
zqN!=f20`zTBGR8{4>Utk1h8E<M%m~b5o<FQrr@Wr=#`lCeEcC%&91^J($Qg(Pl*)+
zE)btM_#lAC%&x{`pmv^QZ(rt|8mq14suJK{z(g*r#kMx^wOM*$X0tNYn2>F?;b^`3
zhNc~T6VuXceR_Ioj_Q%Ylhnq`-*-7gCs_UWl)X_;f7u4W(`&mzx4Rg?Yju#oxb6Uy
z6!Nt?C}3Q70*+zeHwQrVJWkQ^Gx}Sd3hmE~wL>OgbS<@d;$^sG&-5_o;A~vLvV;fJ
zaJgw$ns8Ob=sy1mNTN~FRnb(FI82C-=y|U&$mvxo9hPY8VA4qNDEWi*kd`dlAlX^%
zkV+|Qf@ECTOp<z+Bl){jud(OmP-*(UJb|ac;(bajX>N~ohpN36s1nPNEhtN6-1HRf
z9ChsP`xvxHrbLz;6|fqpDnp}L>mrP(2S&(>%H&yF;gM>p>-(@xDzIMpNs$E4u&x1h
zUUj8RCtNJ@+|uM}u<3j*1boK%oRfTzSEt8X{!p;uz_<;BCXx+XYyhZk7Y6Iw)<oq(
zuX1|z+MoB|!;}H{<?Z6;e0hUx4yx@i#XmbAR!x0y4vju<`U_l8RSQm1gR(rO_oWmh
zLpv6G^&f4uvTjB{6V0eLrR`i<z(6q;s`fvK0%IG4ZMnh@0=2IF>P+pPPGPNO%lf|$
zS4rlH+VrHVsW5oN%AGn^5e_-YzXBWY#93%tQ8ig)VZKWAiXQ3Yh~I@|?s6NDC&(+#
zOwTmKa~nsmezdKq;Pnm2n<r_Zf{Kv;qyZ|I#FXoSs7AX|cE5eB?R0n28LW3bvzg{9
zUd;GDE_gOf20IoZ&PQcb7jG95!iGi{N%qY7lGHslX53<7F9tmZdq7kYdL(7J8Yc_O
z!?0B<WV!Y_+FtYyvX@#EidS5~8ePP4p9&g;Yg>FwdZ)6TM%FS*E{^5P?XTC{<>{V3
zzj032Qop#W_G||6YBV?U0ygZm>6RfGR_X#0C*Ojbfa@iMLn(|A(Kk!cjl_7zc)NaM
z1O<+7cL~09xV4Uf*?zxSUrT<j7$8xo_wEmN`*ez%$PK#C36^WSoa}ApWQY%N4H1-q
zs_JkR>_j&=m%pD6)OH9x!>`W6v-_AYEiVUSghzEm@EOiyFgQ5v;+lRCFGaM4HeWaF
zc!dP_Luw(WYK+kedL=j8LNvxNUS+X_O|ppuzfHdW^f-)gVtV)Z*QlYR`^Jeq-ih-o
z4>&+W1aKs6`LNaSt3GWEf5(qzG-okNXw(OBU{gd1*DrK>$76?6gZgKEc2`}PKv^!P
z*-yUYjSt!^YRGKf)P24%)=mm`H%7_p>rK-b6>{83FRo|EGmV{ShoWmdp`Ze7)dP{a
zk0p|}iWG+P@JBqX>9oP(Kd2fSVwq>KCVOxLjb!BwLfI)eSE5()GCL&{%6TlMV2Q?5
z?s|2#47%a3B>-UJYvz&AVXj<+16qU5#IkoT!&+Xq+fLnAy%hv=eLTpVOw^*cJ(W#k
zssYpCEc^x=6*hTAQ~8&!>C{&X7hQsA_!^Yw%(Jk)M<zSz#&Y#jw3nE0%G4yQdZs+b
zJ^jK-(bdQqX7h%7MLuWvG>1Hrw+=Lp%Py6bmj1wVurr3|=ldKYrLOT8M`%p8cmh;?
zl0#94KM|Z6xYOMDJ06{e96W$=j`2Hy_&^hj+`Or}5TBZ<#Wt0^_u1npsVk<|G{8Sz
zDAMzqPKR_ps4WvCIO<u6i&qip9`cLD8f15E2U(y4$sGG1@$^+lm(xR^P?3jzb)1CZ
zH5afuH@TnPbr_>?C!Js1UV{CpYkgse-o?ad?NNdO%wg%)Wu2W%bU?5T-ES?!HT29w
z*!Cj9X$$p0G}w!I44;9(<~H%3XiqnR(DtUGN`aG!#6Ba*R3_32!n=o;S4%keu|48#
zgu%PtC}&OwtZ@92`MiV<0);Gb7zqygx(`XI!x}^Q6y>AlyR%f(70wzi1WhzfUJk?&
zK1iW7<Cbg=r{90|(DY^OwXOx?M0LtV|8CR1iaXE&GQCOK;tIGQ#c!p4{JTu+K#xku
zbH--9_0dkg4ZJFlh#|N%)&ZH6H>B|3lk)5B%VXt?6t_iXmgXC*-quCehnV%PHB$BV
z)+lP3brUsDunk&YyNw~D>XI!CTcVonumz%Ll0?)~``I!?(#a!+w9%<jC9GYpsJ|SG
z{4ryQ)L_qgxM)-EC8|VqleZBkshyBk8n<6A#B^g<M0I0nNNOVe{z}aA%xl#w;D1W0
z9UtalO7=}_t-Cdytt8>3JSAqB`YGGv2{7mf$nRFzesmLG;j*(#>&F<ZthRZ>0itX5
zEt$VM9wMzB>#{0~IRd6f!JhmeDT)JHA-e$!K7q#-0WSLC;>Dri#cu1z6L9_{uL3!|
z1(xn&np!SRG-MJwQKaTF?YJe2Cu!M_8j^=w1o~hK!$+p5AA|s0ec3U2nC(OtLCyg0
zcL_jEj4VWy4DvW+*66bF8!21qOi|ypuNZZWK=AcUB+T%Wk~)WmO)Y7t(R<b`VT%Uw
z;7_ngIIXTM(&#I1p?Fk2IFXUKRJ>asp{`kNa;hsU!q$E9F@a{v&tkgWYU<ZQv_0Bg
z%X`l~lI+rB44;oM+xt~?Hj8RL;Gw*jlrA+Uhb{LfgV|i!sZrcRqp^gdnAPM+s@}cP
z-%o!WbChC--N2ODdPXE$ZyW2n?{FHwt-TRLt-Vn#=nEhhnLROWpO7FSt%bw27A=9}
zjK<?RtmbC&<8~Y^w-yZ%z^L8M#K|6Al|L^AmTZ<9{DDNx=6r-~WeSyyqZW6TYCx!3
zq_UG>Bo9H(ob+3G|N4S!-_hmF#_ON^<B<q~Nzo2X1}1ZoTj$tyngjJ78yfr3cSiaL
zZ;3M|{>$_f@ARQe5020z`AB0t>{s;VcnrA(tJO`fdif`{ueKQqQX&(wJ5-N#0hafo
zuC%*<F2XDk&IKma(jTv9`zCC8aXI#iF0v+*vgyieP<Qgh?h1KY=oTIR)6Zm&=JBg}
z#KdC|#4+fxPk8@CKPkX>;y5>iA(U+Z4rsQ2crp73%yWbGJ0CsvgIBEx^@XmXgXy+`
zevk0L33H|^pJjv4JFWb#1AV<n7&|@UvHHx-7lEP-=r2?tARtJf*vdoID;m=eM^GT3
zW+)&azMrSYu6Cw2zZvWuTo}x4TwNKge!IAMGT3_<xw=>|n7BH-*xNEVyBN7xnlLz<
z7}+t{*qfXGb~12qH>J07PFCHpTNgz1mDndx_k)U|?8jI}Jd~DlSZ`8RX1hYs9PO70
z624qy4}`qC$=+If#HK_7(|VfD;&MJV?iItrYSl>6Lin1+tmZXuDsb>*-}H8{A3VaA
zD>T0D`|ZfW-}&J~b_ME*FwUp|;2NDDmUL{MyV8wPe`3?;g>j7!)X&?2FUmFtj#`Pw
zq_#~_S2wOzir#ICliBT<cLRVa>m0W&zp8>&7}whT+Q-GY=Ty!#`IPVp=n%aY%n`$F
z8A+IR1Aq_c%5Nka>2~P2sZ5Ean<kc(Cc3<&7wEBC1t=mEw$}`*{K~EBzdEBuj}f8`
z#Ll#7pY<y)w}cQ$g4DhiOW&-Z1#I#%rP+cD*%+P1XhrW7^2{G4{25YaSvfvq9wHxu
zzXVLs&0)<^D6etz*cX|0C2i-J_M}`J&d^m@7jh{|auQebP(O>a)kO^#=7h$T=m$BK
zY3oDK<mr8itMlMRJ+vtH6Flwg4#p`otXc1koSEJYBp6c)po-AI;+(hRW%v#y+ws8q
zJ}O~x8~HQzpoAVZ!sue!|H+!U<YQ=fNRK`!3;!UZPFGmC{B01ffg~&x9$=Y%^`{eu
zeaXb0;7m0x1&w{!2zxHs`Ym?_iw0dwSUNK%SQ+OSJh_+tAQtWC+Y5X#uqnIl6_xBR
z>-Ur;>&%*jW=B{yeS#E|3<~kpZ?K$pzeEC0zstAaGQ*4%7*-?E3DKF!^U%*VRTc{u
z1aX~yS7GPq{3|$6EK^@qOuE6Usghnk$8NE%-Dd6gKF*z!W}`mieA|Pp`{bMG!Z|&o
z2YBVxWW6S%dXD1~n<EmM9vVlkCORvdXXbysTRU6l4m}eaOKChyufNc}%(DyRy8nKg
zo9D*7IO4X$1qm?{as+4Te!xygFk;_7IHp9s8so?r_x-~hNrVoqHFlM}8w%eg&Wb#Y
z3`^Bgsy%BF4H&H>cwFz$C;9ix8(K8<t+DflUA!HS-WSAm5Sx0#;dme#lABiDYSCjT
zNHRV0>wJI+`{+;9BX-l%rE1qjHLDN;Vx=@TdHlJ6qI@1xuk+6o!y()F{qKz7H<Dx&
zezij&-O43m3`bdVOV}D>GA<e8e+SoJ7-OrsU=uKQAIt`{kevDpTFP-pRUX`<vSum?
zbz>n%o=M#ze4h)AURMnN8_N(p%SzrqSU&#2vhe>M%dXD9o$QQkfBy$)wGH`=A3)m`
zeGHB>3{lGMdkY^*2d1T{2URpFL;yBDK#}@OdP4Fjzqi-2^=f~Ze}og;>0IX1x;E@e
z;x*tpBXt;GvYGaL);+F!|76=@cliS*mOHekF8h8nvhZ(Q`Ve2LI3iG|Q5c~&z#@&+
z0(Vr8`B>-d4>z>2Gq<5UWCqqX(jp#k5&uPF7on;&R#1XFVU3F%fdgFqf^m_HKTthN
zL>v9nU4evYo}M;>yiR){a0`6C-wx_{%xM!#Bn-iZ9k3SVMrkP9q35bHEs`OcsH;Hc
zxVk3BW50+h!Y9h2$Dn}ZQvmK=)PTte-t)`Jrr=2TJ)*!3FGLc_t{Fqksjvmr`2NK(
zhuOgxG=FB&=_BV|wnI}nN7KS=omUNfhjcCwT-PRIJe)sgeCSfX8eOF=y4`}<j0^ob
ze)R9(J}&~+%`Dr1V?pr&B$c&$t5obo4^@<Xr=v(EIBhoBar}zbrtMF|8urnnk3A1i
zf=HkE>T4JQd5j}Gxj*SI9+Odwm!l^_WwA^(PMJoh69`k2&?9hND4|P@aJu0up3^#S
zX&72wGPV0ZsK%n!VpzDWp&F`$auk9@P+^8(duF^GA5mhNuMoo)U;Q1n%95(1^DJ=1
ztevDKOr1F(RF3BxJ3f(RCgmbwkZQRarx)5o*ay|gp@dv(xvVFCk<|m`fD`aL{l{q~
z1JS4!`rpGA_&37s!ECO$Sagcil94e&1a>|X>_}y?vEm#_nhV`D)FYlSgf}$v=(QeW
zYY^7^=gS#LS+OzL&7lsWg@l|w%JJ0m#$wD5wGms3+G{j=I}+8*mQ8N;zPqPZ+fy#m
zURf93Hj-Px8|&48fngdgtNLld>cRX6+E4FmZes6lk)Mz61Uq*oj)%OECH+ZRa?Z@J
zNVrILi_2$^)a}OJHLell9N~OB0z>QXC=M+QKGBknB2Xt}QK^SVH=Szz!m5eH;bV0?
zSIae9Zw}sM&M4moe7GV}KEJ(o5tftq@C9;)vq8c5XT38m^q7%<`=C`~18FAxSzD(&
zb^MO=2lcWHqTfvxb8!I~fcn^;m(OGCCEO>h)%Sk{n}Et>LKf1kT_H*2B#&eT*N9KZ
zB4>K_b9_xSeNd3P55f|tok$2c;MXGq^VCG+U|>#MN+5Nq&-29p9jmzbQnzFG3HHCC
z-TuWZqYefHG=T^N#PxrGwzG?;&2M@WXXh&oCHoC_L_a$}urOoEg^Y%(Q8!}~>rA)n
zKen2!Eh6=)K?#%*Fk}^^Xlr;+JMO4bI`Ee+U~f%R5pwq)yxYDzTS|Td72=Z7+G7M+
zDcT%XO!y}S%hZ%1l$>O6Dnis1jundsS*lU?J+JW=_2GjKzwFsF1~EJu7aEVoUiQXN
z8gWiYi%(}zelc)x@L-%SUh?T(qbF@UbO_3#OwR{)6;@F`g7hP)SD1DP>K6UNWfPyB
z@S8YWv!ER2DTkth{Cm4I!s5qg&Cv03UfOD}@B2NX&FA|J>kr8te=>)KOGQ&akoBa3
z63$g$twqiJhpZgN;qIysQJ)i5qcT2ScACO1OB|Db`d!M!6|i@Zp3R%NcK52n@$_#r
zEn;A8T>iKoFL!-d3U%$yY5(uG(=QmitPID;Y*&+JZ9apX57&Rij=2QGpVGINkS}Iu
z@*vv?kRDuD{9XQYM{fcO!nPnMxyc{B^94tu+vJ9X`~hEPVSbz4G+!g1nAh$U-}zMn
zK`+G;U0L0qSFR)a-7iNw!Eb|iQsp#$xOYg(Me3SLWB-WWE=h*a0aNSHBM5WW6=?Hh
zVo*w`5nbQ(mH^Z~S*1#gP|avosfp+^w4lPkM?xwG2~{bUtlJdv>BNwt6#%Mj_MWN(
z5yq*X{6ErCnNG{R^OZphznl{{zTAT*H80GRN6t2&*erP$QFG+UQl09G!A3>y;y+c6
zBg}gAh>#G}b41A&c>~<M>9($#SFVDbixKc;qB_x0qt-r@5BHosStaUF@PE3|{3S2t
zNUN6%^i5^sLqG|pWoeS@RbZl_P6`Uw=AB92SbHK<;!Nuci%~gL_qS@q7&v=UOH%Kp
z{7miX19JRZIFtZIO+5f<7op=j7n}%{feJa5it9Sw&6BS6owxG3fN0v78|K@H)ll%L
zldQ!Rc^v2|RoO9CG1>g6<0^3CL^$aXdiNzUD@5r0<dh<<r{>X!<z05v0^uKmvAD8z
z(XVsaeCm5xs4JyZ!`7Rc64BWDYZ|!)wkB9{&lZBDIIN+o#ozI95R|y>--P1k6a2{V
zDUP^r`h7B0a?ft!oFSnyD>M0&R}r>y%2RgX+sCyQlH;sRRg8>XaLQhBbHQ=d+2YUv
zDIWNrTqr6uf4LmQp{AK{Hr2m%P@7;gsRBv_gX|$uk6M67gO+w>?2Cx^;y)EL!Ilv5
z$F9eV$H>~VMr1}h<(#b%Nd-jgq*8!$rBxS6K`q<2@3t34&kO8ZB1YMB7f$-WaI6SP
zaF1+k>3I(Q^#bl5GRAigniZ)L8!#!9UH-)Qe*=%)4YzaM<VYkf$+EN+-UN!x3y1Pu
zr{d%b!f!!3At)zqt&$5rRa7d}MwRRWma4_%yjiURfhnlv5;#RUr6_j_fvx8R&t>^a
zlVg08dBDoB>8NKTqL5Ej$A)%f-_-kskArM7Po9zM|5lKupJo}f5X)L`*^2>4Gy92K
zkj`_E=xqDKI09zyK+C3<)|x`se|{|N7!H2vW`O5)XXp@SHa{oQMlY;6X~tahL+;tn
zSH*h^B3H8$zF~T;=0kY91xXS?YjA@%2`=I2W^N!mS?@&$TX>R2dOO3#FRpCQzU%lN
zuor<o^JyTxTn9zbCopDQ<KUGD&GbelF6i1*%paFz_5)TOK!)R-&kF(!1jVBBr_`+i
zm2b18JL@KN5&|%)-Q?kOnKwa2XUaNt<;o0zHf?#jR&#dkUl~8vy+@-u)3yUPtRN5d
z)kHf>v-tS)GJ%_7XZiCAgR8cdu?J!bM+NY&jT(dhKDSviXFrmD!Ts-Mtx=^X6wV0*
zghc=hB=~=5)-FaS7M}KY&h)mHcK`M4C12~<i?;f!=Z`=9T#$^3tJ^8G8=ry!ohR|8
zaU-VxIyj($K*v%D))KBpt=yj<uD<<VDHGI&3$CWegd9*zOS_ki%O$0XXr1E;{5}Xc
z{9j&<7`{HP?EU<msl~O}$L+purb=!Qo(cFLj*RaccJL%NKBr;@K6ZnVZ=UpY*f(x2
z=Jq|hxVB>c7S>bWUf6#*+*e)|Y~xu!T6SM?#4cIX+Y4Nt5BE^T5?Hho_^&?L-mlxZ
zKRT$`uVjAd<9WO>`uyy<4Zqcuna|s@#X+an=aE9=kpqJ6AFZ1SYaO?Xt82fHmN9*e
z_w3}Y6W4d3NelMc4V+>3+NCe8g^jH@zx<+RWtvmq7*4;{+;h97%iL>)je{1e^Hvd!
zjl9Z+Ep~?IE5B9&{Bbe9TYtWgU^CZu^&a)3{e_MVf$J0zwIyHo9rq)7DIV9h)`p6X
z-lvV8^6!#{vlQ1-=F@jy@7|4@a|o50Vyl9h%hva;ZfIrq4mArI$v>IJe^eM2hy-ud
z;bMGScdBiNb8NOMeG5(PBR?DPeJWCdP1f+YweAbKbK$tbTF+te2$tsX5g@Y_{2u}o
z?qBxm1nlHW^tQ^96dr@QVLsiI*hO3etK6T}JgZ!h@UGCbtvSa_-_oevdIid2-xgZ*
zI>q^(802i%AF91n$=rgku5VWnp2GBVGY16$RT!Uwtts3rWaSrbt>vAzu@|NEtzoC<
z52^V4L)I=xz}B%ZR@1TVr0VDBbyQ!?{#=U!%^kgPm!&oQ%iZsJR@-(<6f~Z$7$TmW
zi^b5*WjAypBwITO8=udEOMZ7AxOVQH9VGRMthjQ!w!3NJnV)-#^r>&+IE`7tbMkYn
zMDfmRjL6FQrx#!KE2U@rJiLRCe)j;RFCn(~4J#cE8P_6>)J=<mn#|0(%?}=yR8^JQ
zi!Ee#v@d>NzdDYlPX3gQgM2E3>v!dBGgmfVgxr=1Ka*N?gYU4?sg~NX<CON+t(<d>
zC+nY?Q|oi(=au5#jPVga1iALr#YhEeJpb~fiK{RBh@@A~RlXLrt+PZJjCig<>h3E$
zNDV9Dvh@^bgFQ3Ba=fL-w$%^04q?~iNhptiMApq(^>forg!@4jI{X+*;Kf|2_$fZr
z@v0U%J|AAzcc(LCxoyT{e0PcmTdn7#7OtKS6dktrVTz@(rgM4!JBvoX3iXSn=6@?w
zZtYb|bd~&+6}8=ei&&vcjTGUfeM>UE6!BXt64~;<@7ivba;-3N(sJC}acNsi`x~%m
z-vc`}mk2JzJZF<v{Q2D;4VyKNIs&f+!82{@#vn4s3{_y+7y8ZER~L)9&jn-4T4Wk*
zby_Rz{0AYkj9~G`5ALLX%k}lxt)86Z0L5k_ui}``+CZEOcJ|ls!aYsxGAf#soxh`#
z`#YDyz7^lNLwuUex(APl_jv7yAKm4R!%vO*%f(`;a^jjbp76M*b|SfPs|5dzZTol4
zmFf7KJva9FUQ(M^q0I>&B8wM8scX!XHC=REt14?soMo@gF?7L^w9_|7eD9x9*6zbA
zJ2Xe+;M9S`y^ZRjaF-`)ZTP|O87)$rkp|yKcRtxS7G3ob-$Jh(2)^l90`4{t!hx6k
za*a2ZbI&cr>hCXoSNn-KEq}&Xh^9n8mDnN*J}-a-JIf}{gFwrb(avMBmle)gshF!0
zjBv1tWix)o$aaqSV>46flnnTrf*J$umDQ5iV+Ckn@Aj`~gi?pWOm!r*mW*WUe}QG_
zv6e95LUg}XJ6>l1UUB2GJK~Jsalks+r&seTA`hFm6Lz;M%?!*>!mi;JMX_Who1lUY
zNM-Tns*m!e87lKum=~W1F_x0$A!H8efB3Iu00I5Q*c#FtjjDfl+lJ&lP)XF5;aG6h
zqq*tit#YltoOxR|<>BHB2q&0HG*h-p_c~|{Fa^?OVR!6Ok@>Ra;pi0aUpEy;Y@MMM
z5(T%nwy+xNtLdc18=54xZ`_qXhK&P-A%i+<M7E|taZswDKMe|z&X%Yh20NLGIYvr8
zY<{d>Eb{C}`cJQ&Nqf2pdxrO4!R~M)%`t{pXmj)t73$mC2<huQoP>D$_dkL-NA@p+
zI0yId9=beatvII{#+)l==+Q@Yp`7i-Fr->*qVzvk^a#~Q84zi^hK2nc4fk+iUIBps
z7TQA$F!Y4+TNn@+n4cIFUA`{P08%r}gs2y?j&V@f57=-oZIPV&Ra9ER#AiQZHP>aq
z((N(9o%i06sl``9wnklyJv~21CSmfv{AzQNqiBo!I?W8_bY<n8oL+A#(6=1tkuC9G
z$1m;<($^Wa=5gr_Ap-nPkwKKS<=29&0?L94TC+qod~9jovBSa{r=K&B^_2BXZ>jvu
z$_C%2(e0QqMnbFcF(>?aMT7YZyam(5S05`Cw6o5CcKUgPk_DX|HRvt$=ibN!QGZR;
zqKQqF*kZf7{~i>yRqioIt&X|qGu)-4u(~%6gMiZ&md6&@<o9@W)>re|ofng8Pc6P^
zn8d4|y}32(%GFEv<f&JR=^3TFEHNzkM}rHHAtQMTstUg(D2QEW_Ij1wZ-x71|MOr)
zkk<R#7vGWFsV(s4##PG8vKK`HEp8f6$sa|4m$Sj+n#>M&un0Pr?Td)_R_a1Ct59(q
zKfAOCjP#U`x?*S1tEmaa>nBYe42KLhdKbr^p18Ei0AGHIPfuEW4SVl4BUY!-c^kU1
z&G|NO)YK2_yNEEC#J6rw@Rp*AFqIU%!lm#<3ot(`jWXVY_8iALh=3x&)mOx&k1eGF
zIKw=P<jTDS8RKy1%AR_MmsAMG+v8+dgM{^{Q69HZrM{Qu*PPtX`n3`4MA<_>>d|U^
zACRz|I@k2_)#e)d!mq=OP!=)2aUQ5fP|+*(Asr&WjSxJ)xxUzJJG~i%hcY}rZ5g~w
zowl7m$=$QhQ<&KJB`eyREA+jf>Fbo4wM^AyuJ`nL;G{3(_pW1LwfLBgZ`|99m?DDI
zK;e)%E74kk{AQ06bE(=K8ds{qH9q20zcxN1QnxcX;zuWCA4-2+3?*%i+eG|*GLIAb
zLD)|;JzL62$`wi)Mk$j@Zg>rtQ|yJb)1T>K_rjr5e?F>MsWo0SQ0rc=OoZ=++y1^i
z4tv1!kL#t!ew0({g<P|^eH_`jd9+mY=MX#tEsK@6L{`kD(RP9$_&M3!tj8FgsD^0a
zxgYGa(5hcqkXB_{nq}cL&%>V(^e`35{}B>Ry;pwhw2CT862@g=?JXVd8jhBRYmU8&
zk>DWQ9~Mkw)^=6SRqM6WD&7!ydIlG^2ig&@Eb)7ae+X+uTFhmHZ2TSiM()4lzh%y`
z7TtcdaW(x2IJSRA#+FX&A4sYzoeWSkxqo)rSZm#Rt{Dekjvn_|r~vmqA0MpzzR>?Z
zKp5eK$#Xh)lya3C$w+o*9E-E^EU60TFNfkQP?dRh^;QKnUwf=QHmAEc8Jo+3fZ>V$
z%BNGNoV~jxMw6jE{B`}zOnfI$@G9HUVPF#u&d5f)IQ8eS0yv>UDMS|39+{1HYyna?
zBh*X_TSyX_xsMAQprEASv09@~DDyn#s?4c2a%LlzEw#qNZcXn}&eK)#PVvb&<9ZAs
zHv;Zyx&27Kn9_8!@OTNcd8-V_qG$Ej#VaME2-Nti@EkC%h*tRrMMRC%Ru{?Vt7|!1
z_+69DkL}xD-yeq%l+alaUhp~q3J3)P6$lkR4TRCP4>lkj^cZLo&jF^d8Z_hIDriZs
z&SpPc?{e$o%hLDNJFkdo_-Fv99rt7LdUAcP4;3Mca7F_3S}GrGdZihowrlP8Fa$q9
z3k$Zm63?gQ^IFMwLxn@WRWH6B_l?4UO&Ql9=Ddf%Ctuk2&9(id`}KvT7$>RJtM$sx
z?XmIQyRJM_rP@D5<J1I?A0EGQMDLsP^vUXB8^P@@*Q9%Ug(G%DXw7!Q46$LBgI&Q)
z@22yy1@~d2g&#g^@{n2fPyr-}8C`4pBed$9=rHwtOG%-99>slpn16C-4h+Auy2HF|
z(~zTg4h{rF_irmWRk96pR<EtTvb=?_a)CztI0>C`eW0~$+<-)Vw~%p0HsokT+0(?Q
zoy-dZtjqm{0OwS}V(-_DWuz8t`SNd#3UZx!Q=o@1n%La)>!KW`vsdA^L}BHp&eIl+
z5uLJ&Z_cJhDMqM!8S%70Dt&<GoCM+hwf$of5@VyGeBWje3Wz+d=1`bc`ArpOmbQa<
zUpm-{vUKaOuI61l;2Ty8aw6ENhy2CKI0zQ8a0LvkwO4|cGR6fc3HfRFc^0IPhm1LL
zXB5=S)J(Z+{tX85%!qg0)fvFMkF|h;?`t|(XnWY?Bp}+4sMk@>Dxh6svRb%TTDUi$
zH+qt#GH`C8vRM8BvNSsImI-J;0yrFBBAEL_iaUXv<7p0i22(lBn*yTFA7{n=Xg|?w
z(*C?>g~3R5#iYdg_pwYNSy(syAlcxY#~(4<Zu&w-vx1efwLWV?=K7gkvrzKPm<$ED
z=2ZfH%tEM7`gDcvCX9>{@Z+6#r~H$OJ_u*7{vDi8bl@*>FTP;K-b3bE=GN;mpPj9!
zhO@g8_1L%yupLEC%dd_7`h^?8-bJuxb+|_}@WeC5P_Hj|(slkd=aCZ0rV4+-w035l
zCB9#@5H>+|Aax){tpRe5U04AuzvOj?xMEKK><~K~$2f=e@n9_YalwRCmsTLuL{>o8
zgjRsn1Xcja>mSMgTb4UU+|pEdbEkoX$kl^#h7dR-=*vq;$!$AGhY~(-<k>A^%!Mgs
zsPa4KSGYP!f9Gw?J-NQe<?lS0xw^B*^S6HGd48StTTTVy|5O<CYrIO~ADa{X9zj;{
zmciG9Zk&_-G`G`q{sGhW_16}bY*e)QICz9_J38tU3-W5KZSC9!2LoeRX(I*bEAA1a
z4|;>gu_vWk(iqE(SVVzMjwSysHxiWoew2Pllzu_ff5HF1YKk+&#lIaF<8Kap(7eCe
z9-6I#flqY@YuMdY(XrWNKC|U85~yJxb8lS0xBD~g_&)$n`D3qH9U_4~)x-?e@n;Rp
z9-41}KV2nuaPiZu@&p6E#*6F)5KbA?-uxZ~?NDF>q-=QM`c_4kdJ!NfThk;StarMt
zn!Pk-KSiX{?rhs<{+u=F`+vpt`9dyHk0H97aD@!}hTAxi!-<Ux1wbm<&6pO9iYDn~
z$mHaXiN!mi5(+21rt6}nhclP9%QmpIQ!2-Rgnae?GIOLYF!;RT^`)6>&B>8@*j!+V
z$no@|o>Ni4K-Tl{BA!E0I6=<#=1x4FTsY5(uw)q<n2BrXVr3hjiA*4C)n`_aI@V{F
zkuuX~mXi|h5R+E+7$YT1_mIj-IMh!lChf5dY;Am;Rpkqq!tG`hLQrI3nNgSkot+#R
z3`hq+++P4OGX#$g@eoc%buw<jE3(YM%Qb+mPS%L1TmZQ_pHr5Z<GhS9(*sQ=2*qXM
zppgId7?=(ZJY&RfzBimC#f)8BV_<~qFL0ZNNx$7cWLy9vuWM5ed8IRTinJz8TS6{r
z0@^!nc!{7bQ}zOf8NTd7W3?P+achCjsMxOoNh=f<N=pwaEpA(Yy;qtvMfDF{)1owj
z{zGAS4K=VCg~GZu1PJvccS(ro)Hig4%F*7ZhH#c14MBG2>XSw0jwaO=H2Z?g;N8dK
zu^#ey*x{qYA`hyX`{-hHU#lpP-;S_n2)D2I@Dt)4*<S;@gN-c37*e67rw@mr&Cx|v
zsN?J<oUZ5WB%H3(oY~`{z!!lV<khV~KiTg9nYTneIrv%1QBMwkmNV3oqo0Ke?d15s
z9NNjre>t?1)Bkd4CujfV&>=WEr|PlEOKZmtA0$mF%4+X^JxZETl-JIYK1v!>RMe_8
zWmok)vCNSKX4mzYp)8Z6XE*iyO<X34&Ti{@Qh^eS&+h6WPh261&+Y4xmzfmpWy@9`
zQFGDW!k)5@zISrgS%C`7-8rXDOX$a4Y0f>MwlK`Oz&>t=hEBWac)Evg2S4uYuu*Pc
zJaN4;Z~Ti9pZR=VK$h%xeStmW8*S?Mb%8zQkCxfgP|8&v;919Cp9FtAP&1~x`cmS2
zZ?s|=k%@vsZ>n{AGF)S%Up0%+x4FuegF`dAi}gEO`Gu>2zBFWdCQ<L+v*B*){CK?P
zOn0r#a?59pEt3IfN7!!qGGit^`C6aH-c9a!3Yt5OrxRYqxP4RrE*)c`rPr0Aiplf~
zeg<HoLHID=ggPLlwBV={anorz29y|7!qE!7lE2`DPc|%zU=QXPuW9GyBeTApg$@*j
z%48Bye8(sVgB*&=VFJ3?2ZvB)j86_W6%bfBLWU&&C&TDhHU*0;<jKr_Q5lYIl{6(~
zvR3uzV{y)Mh>UDu8>T<V$h;0ypDlME9SkD|=;Q+MF>RkLETarWT0M{oQy(jy;W!AY
zaR4!1o*^)~aex$eUkKRfFpwv=;53M-aR4nI;XUxCNw34*9gNf)e!$U(@xRk{!d6<y
z-aK9}`q3<~J&a_D8L;$v!jFOfGAigH2D<os7)6FcFJQ-W&O+orrK3NklG8!AFjIvm
zK_QWF;8NIwft<ex<W}|r&J}f(y^633A<L0cl*=_Ox~iAUiBcKMB`ttzmLr%jQOY?j
zL~E9vq8g9p5cR5u``P=-F)b#a6aW#D1EX}jt6@T2+NFOT2a1UEmGJmPVDby<^*oAT
z2Ys65V;+*EhYJq;n&m}15P$JO#xdk7;ZBkj#MhSg814guB1Jevj6~nAGa%hPRfM-X
z4xJ+XLedb;8bK;FM;6sZazvMi!dFIg6dSU{W%9BT8bU*g<TQT33=XFumfsJbbA}_X
z2~Yc}hQRx&W*S5~q9BkZB`(Pg_A%O{HdheADBS+51fa?0!`F-AjxB`N;PKY)z;s2I
zK&$b10&-<KXN{rOeY}h~H(n(EiC!;}E{qqYaMjx0)>u}C%RGM~&{dJu;j%q?2YX^m
z$=G!dJH!x;M0FIjKM&V(#l@c!(%RI0RaL&emSRtE<aCgjG`|fjv;lrBQWKaV$#o2z
zboM(abIbvI%1_A@(+1R%m|lt=XjZOIcocLnm{dplG5e>=S_5&A*Tq!aV-T#B34=v8
zFOO=Gn-i+qi-mK)6<<%X+mciVdThxaBgTocl3Q*Jm0Tw?h4VAeDT=o;wb~5#gOss6
z)FSVZrHzA<-0dBzWqXH;!Qh0Y+c-MP=--;l6~#as8=lx|(T0cjk*}K>YQ%Nn_nO>p
znK8>Z-wlZZN+n^RQ&yqpB8{<uQ64e^Qb$C|vxxuSOEJ$$wel5Ppx?HnLl)vA?Nv4T
zLcp0@W}kL48BM?#{Fv?OR}WL3fXvo(3k!&e8F@f3fDQWkHlugG1C<W$PWNiVeD;Da
z5ZziRRu7}#?uuga^1gseiXwwU5z#U0t6JA@AUIIN;t78Aqx6RuiN3VRiziuSW2-_Y
zLW_r`S!HAXW^}xMtGac!VVVRWdLTl>5rh2+C8ol~Pp)uvGAvM~#>FeCa3!7x5SniO
zdyEqqF4Vw{gEw8$#+<-SgBFrtU%?!pY>xTML4}ERzU-9MNOZb-vLOVE8XX`E6W>3Z
z96vG`E(cazXwoc?5Emt*UuD_`3pk_^!DIyxg+=A&s}>j}i7TCz41iiul1Gco)lmaX
zNUC01u=gSazqTIpaeIjyH}W4U+us1T@W1gHAzsOx`|X@5KMPuS+qjba^0gSZaHV^9
z>0a#Mk9ddbmor5UP_R3ec;V&5nR2xgSqAn{{)i;V2^ozxr7L63+nS+<W@U0k!bP|f
zIrh>|=1*Xrs@ynDa~cmoO7_rT!mqijgo?avMeW7;bDZ4egQ%4S=qQR6&b{^YK&#;^
z#YCj2hDxi>t&b{3QfsGRRw#*8l8W$Ec=#HZNfJ<lz&zo;MG5vm`^q~)C_uuFJ%b4m
z-TO%^N_OTVp*mfku+o$I7()p_p6rn>1;F@r%L{iC*Dw4{K2o*_P}v01g^G6ig9D(+
z&zE-;aU^5ima^!gRI-?ZyAkVR+|0zO*Dw;^DZnYO+%qmk>mVQppl?C)A*%>S+J(sf
zp~@HI5bhmLn*AxDIfw|lYQPPX(^@Q@^mT$;Olc3pWp;#ok(n3(<^ocI2smiW;sWx?
zKiV7#5XDXnCm>iSCy7%iAEUb7g$g8UFCnBfU6qA`wq$1s60Vub`U?o*$*t>sTBk2e
zQ)r*S+Pj4sCOWIhV>I28qk^?`XMq;k-pU#d9iqwgI1O8;Hpx@y9_Km;haw?-tuW*?
zHIT!CKht3O8Sq`o8VQ4b=mBAbZ}JUA%Js@cS<Od@5}x-B6dG;IHAbAjGRF+jedmgR
zipa4jKyYl#4H-(GTscNv36;rat{_4YE>=(~PKRILLv03K5L(D8C^6!;s8-q3<`uH&
zhr2+_qTO`DDNoE}-U-6VKQL4-je19>4nf}>>V{bog0b8G3O&yQ<8VX}b)EewP%wsC
zN8bd{`<|{FVZ1%;jSBUsge`r!<!gjBzq#e>5TFOV`1yLkjPecz!fJBh&l`TW%>Y~v
z>4}yTJF7G`u9Z!E+b3dOkNKsxox^B7SFRQgeOo6I-M8tLw!J%LJ)f_Xk3L&x*v>0O
z8kEeh8l%0eQ|%V@I(-Vi*2!>PSLqMRMxLk^;JFWFye)ERuL|@^nqu87=jGRrB)u(D
z39m}@+|DPQRq$gx@=fnww?FsL+gz;^qMGk}Ht-i$ytvyfR_sF~r&_f9S`6p~Qnz)^
zwZwaD(qw)p0_mzl@LqaSEP&Be(fbhk6c?0G8zb-8$l{`0AEE$1d$)StT-N*vzly>m
z?aQ|`95ttIPaM7u-+SV0^To9tgaz)-b;%vg0lV8`Z^&*=xWALtWqn}aTLZ42J511(
z=TxiZ!2-TY_>=RBI~Tznh2R})0!v#3yx33ijj>@OhVJ|1u7yhu?26x~SH-fvgHIk$
z83u5r83O$3K||XBnl6chAz`i{CwGima>%J&e0{WEF7s64bgUw?r*7~AT;jks7yn*X
z_r#3JO+u`r;=st=f0w4-iPG$)HF!<r<6S<Oe=p;Z^5@wJd)TpTP{1!qg`kbgdkJxM
zhvtnuy56_xoZ9}lPe8R6Z>nhE4{#6F(bsczKwOlp;m2%{XaoIvqOahwOh?p|MT)g{
z^F(ZQRN7d36d83eCbJcx)YT;GPXU3_q2T+_X!3$2cAfL?-aIw;vLt!vouOhA{8njw
zOEe&jW>424ljF#q&9FDSGmomAu`f*28fR&@%-!F(N?3r_W)D?0&q?gw?vnysZBSOU
zGe2PW(CJf%`Qo1XZ+h!~mioFzqDO%6>5xm)0#aq>%Jd4L>AL<ouwQ>EJ?dJ!UcpZG
z(tmMxo%N)t7vNSjb`)4|^zTGXeglftr_D<T!v+*N!kPM_xVl8sbYGMjCnO#V2WCYb
z9uF8<mAnG9F207V_*(_|5p17}Ltp#~bFm%_eN{DNSMk&ld}+G*%eA;HHcoBw1vo{9
zBlFUFA3{U@Uu~jR1d$vzpq0XLmiWS~f607%j_nR8**L#im*1}_>k2K{<o;e~_#!Mo
zgs}@#4Vcr@-JHx@1cXJO16_RY%;cQ+*K+dQC}s0Ss|VpA<|+u%XD{h;mveE^rOs42
z{I*bpgL|*W2em~9ZLJTOvb<ZxTSB3b+@{33afw=&iT=kyvIHGDV%3SM{`kDn@otke
zwaBt$%Y=zG+{fEd;9*Dh##g2OJqXdVC(MrGuHaz6XUGHBnrVBgqT<ak@Sae|oz=Fq
zuXv5Wqrv7py*2(3(yu0ABHE0f(rH^se+~S$p~nLmAx`$?8u)PdWc=aB>G$KbcoCca
zopu)6{+)Iai}LMQAb|d5k}n|tIa2=R;qHC{Y$C{n*biHV&pfEqV649>Z#JyUGCh2u
z`JGq|u8Oxb7+ZL0vif{36RFR*lz*J)g<TQrTaB}K%Pb0`yM37{l)zI|F42?wzDO|O
zD?s=r$Idx(g7Gp2*3;Ifz;MfAB&0}bh`z{bJ-ojxTxJFPM1$hTt=^i_MoeL+{VukD
ze49AP)2q2lIP#`g5eDlTf5BPyKa~9iP#kaYFbD$)F2UU)5S&F9cXtTEgDeu<U4rZ4
z1b26LcXtWy?k+)ZfB(Dpt*fj1>Z{wWt?8ZJXJ)#meV(T~otN*xI(Wfm^*(Zg31|J-
z%GI(FHmK_AV(z*y-;v4Q7Jbv8y}S)XfYiZ|>E=LpQCms6$Ss81h}IClf?~U=6H0$7
zS4$5Xi%}m;G*dsdi9mf^ig3DJ;>=<i>ulHPm~MTyTdE+tdkoeBEWIB`*#3Uxc;BB|
ze2G30>iYLa#;yNhU-7~5;dQ$|BvkhCa&lUAP^WLcWv0)q|NF6M6Nl{M(N@UEo%_S?
zk-xHw-{<wY>9i>N_w#~%9lzIGnr$YY_Ve}Q@7KAeu9yA0F`?hL6G}o|HGH+DetyRM
z<E9_I`CY6-Z<91{_RcTcHhCXU_q0iOO{Xls@83c!bjbu0>xAB4uOn<fuGd*Q-!AaF
zo_C+k^nW+JXfky^$z2a+33=b27o8`yDQ#LMo^F=^zAfLe{#f(6k6+zgjDA@?WpF)h
z^g!aAr%lwb?$B!~eY076eO;|eOk+`B{r!5r*m|BN$nSmsD)MnC<NbOwLcDQx^3nM`
z=33;er9qZ@c(Tjg_3HM*_WpD}r!>{@D3lRDdcYSqcl+TEaPL@3N2zjnK44+#dV@S;
z&gy!;FdMRXNc!#N%=h-9f0N~PeQf^Hmi1P<VfB8!p0ruf^*mtoc6X1r>75?0`=O!3
z(zHKepF=CMp3t^GVRr5kvJvI=F8gS;L9*Gx-o)JF6QyK3$rL*G;)rbI9$`ag;gDn_
zlD<-`6V7nCzyzycwa5gU5ys~tcdul<!X)wM@jNkMcmD6X<ZIPt$EwXjML-^WV_lo`
z*veh-x_s7BolePG<9fNU#o@*GHB#G+49sPhO5L`$JUNrevz?6ai=S-j4>fzD-SBjQ
zyzDlQ=j+#_=j{?EMpCxr>O-Zn@zk$w4u<-+)C-5(sTCb67^{Pe=NFOTA`$v6J>2xa
zCcD)=y`&V#ZEx2j?X9mW69G}&jo6w>il1lgCB{vJkM}cSUBFx|;A6KeITuldv35||
z*b}3SsH-jN?7*;}d5N))t<S1lVJ;89uJrV|7lGcVnS-Pn|MTB;n=-aG$nw|po^x#m
zlr*~5N?M<HJ6J)pj`7Kk-!W9|Bm@+w2H)Mv9tVt3!50X<+b?cb7e?c8ZO&E~>hgJQ
z4#W?`_5QBb@pRZN^=dQ>4(FyRVMd3KW5z*~wkah#s~oDfW-2L?Y`!E%Z^6lgH&`~=
z1v$>^k3UEl9Ba<BxVPEJCjGgLa4CCni~>x*6@PVFTN{`VTU#5NP+8;epRive9+>c6
zi(y@*WEbCVGtLD%<;iEEEi=pw4aw{<{)<Wh3YIdJRyNxf3Wb?9PI6GTu9^sMX`D;o
zWFtMaqlB(Ls8V?y%7KF>SOA0%UEqekYS=>IX8{%f9#=0|xfaiKTyoVg98+$agk`sH
zIL)Xq@LTRW-duXam=0*i?U{X<MC})I86e*$pcv=5ukB&@E-2TUjl|KkNM1ygd+g4i
z*1k(#mbPgeoQE=Xo|+=>mAnR2s~lEd;Zu`ivB{zfx9AL@(HKel<)CgvrofEVIExau
zXOkM2Z%Smr7TH`xGdH|y!4}(ISBR_E(qgKrJ@jHJyV8%F7I$~XoOTSeBbk;%z<kz_
zg8ui~C9Q_7X4jOFzwOvmHgm~UEvC)UD(mmrqV!wQzg~-KMgzl7lfFR$z)!f1+bEjb
z)#lxWXlbxk2i5M~y@~12RBaA$z>Va&$FHYuwu+<I=R5*wOF8kkh3&A{f*E3OB<3cS
z(1uNu*&$MX3(UeU=&YdEmI_n?C0Fh{>gBDNJez2-D6{GbilKGI5MtLfl5i=#<tnP#
zM97ymQkt9g{pQt|m|fGCzQ~e9PZLwpT`nH~v-ovWe{#MQXEpL+YoSn35D9`kunCc(
z_f;?u0a*uQCk9kYlw&%b=Wn7k1O1j6xEJH2BkC|+%}yb}xSq}`Xt$Jw{s*LkO&NTt
zT3j+lgo8wHUL{J0zg{{0?dnUc;ZScVVU7YaNY&nDN@$Myy74y(mxj3ICBEUU5K_Ru
z?hTe+Twlh<P1u+nLn>k1^-Eak>uM76f#WFO1jjTO3+%=DAJ`hRe=!!PetglG_zRww
z<p#j4bNPL1U8O@8v8n5ZQdslxLvYZ6qZ~db3{`a|f`=QvB*D*4Srudzc5DhD_g|y&
zFW#^r>wyZY_-x-XW8>e9v=i+Ajis~5AbZammh<wkqtFGHI=BD8U!3ZKMH;(=39jbo
zj5$C)dF@xsF{URfo4Q4t2qj<BE;$wrH;Hj;e`kPvP!s9=cZWw2(Lo|~%+zxcY2Z?D
zwd2d3`At`s`sVVt#mm30T;rZxXMAKwB%Ti$sCSvxFO%>dLzCWSpY%4`FO^fjZ%HY<
zL3w?<o=SI9K!)MN{+K2H(b#Q(wuK#F(9V2)*>4zzj5$~3;5VJ)`RMYi7U6-8+kKqJ
z0#hZ%OHCYQK08Gc<$GR=1X%x>QZP#Y4My$#>s8K}(V9ld80@Tld~$%SvxK}zMXR~I
zNJFcZ{J*b&K+r#R04v^4V>0?<cqjb^`Xo&$S$4u~2XzWN<u(g?JLL}9)cmca(U>Sm
zf&6aj_8p-+0x9o>XZ~Db_HC5!r7S>b&Xb~a-;+Cb#iy?vxu7R?j@)p5gv0ZMVuHoz
z=ghrlNe@~)BEPa6Lq(%LI{?RD87oHSU^xCT)ZqaibJQA@y!^KlLQS+ffwdvKOIy_r
zg1P6!4eC~4rK>~BD#+s3apW2n8=(G9@`5-8U)zJ~F-iU`X)V-Iu<ax`ag{EkRbiD)
z%=fV@iARzIC_?Tv#ef{xvsmpA&iYiUK8b#iw9|bJDTE4rx2w5oOnhI$<u1-++Djna
zN(Y2a;Z{==ex3kh`GiFs;rskS>wmIrK8H|N{rD!?ah^Iin@tY`pqyqy2vE+j!3Fpn
zM?C?3?$N}9-m5BV@gLPo9sHcus1LGL)iKnR%Pa`hlq)Q7)qG^WY-{?cf9daWTX-P&
z<o)M4ojod<6^4Ee4<#h^4ib%XJ`?o4sgm(`>YoQ_Y*7d*(6)%mA6vR(T8=CzGA^W>
z=KvH{L9BH3Q!*BikeG%~Mqx1D2NAsl$Gz4E2c0_D9#Jqz$0PnI9a5D0O!A^Sc_nN>
z5NwfS!fjL~SukBoRFjpb`fE9I=~ksgpOAX=e(i)@L>?D`qFU^F7%LI6#{i9-)U(%!
z0{`wbC??rw1pOy`yM^>P4?VAf;dxA`-}l`fnsRbXfDcA21Z5Ho@#V%rxiEzM-JP7T
zjNdTTVmerx15G51MynVpiN{!&{ejJ2uAeC}Po)j15zD{`#NR~;<$ATLU=EXrVj<i^
zERug=aFt7iv5&tI5L_Sygl>__lhX7J#PUInJHqEOX`2nAsnR_Yjicma`*|rE*ZP%(
zUrM9Hpt?mKyVJl;^Ti*-?H{sIP!hitEQ-iXj0EdvXgzo_^rr&W;Dezl1Dw?sefkl9
z{A^K6Bjub9=^q3V>!bMC5)mL}%JS$Qdkuq8gow#+;kcs)pY<5}ep(*yv*ELpCyU^?
z&7f@VXsoXGKI01>JIa~;n)wa72eY0+yDqqyqc{#4I-}&*=}~HtQ(;Ju$g+QAny~F0
z^e~tVM?Mzfjcs9Tvxun`)ybJ6Ak|s~cR%`UqtLat@NQJvu|ebe2xFfqoO`Y-RDAqJ
zOFAZSRLd9GwGOXGv{WNzKer06mjS5}b8cIPixpZa*bk?iS%h0=a&Qg+urdoZfr{Fx
zD<2|KYMvcAGI5#L><zhxA<HS+m!=jhsbQ4ry<^mt&3{TrsAbdH*+z1<gC7M8>$aJf
zlUFSD<o#Jqj4V<@N^rn<U*->?aA~UMBY*!17)h#D@GS5fN%9Zw{M)rRmJ-}G+1YQA
z<-`({ihhe366Q)r8S6~9L#!_T9S)q*j~)v;)7dFE(4nNA;TZPRm3y6+=53CI8xh?r
z&X;FvYTDAIr1W?VK^}4M!{j@y(GNpz){|*9-)Ps7X)fLXYmH!SuXv0CWy@vL#T36P
z@)T~N=n5;TDK6Q%4;G4R<LLcM?tMIYnn+D}YC*LM&~iGAjFphNy>$F0@s*h{K{~AL
zO~$AM`GH#XfY4QSY+S~APr(A#GENZuGMck%j6RfUibe03!)TgkB1ou<&SiiLqpdqM
zPGL%FbiiyHWpp5D8U;F_Fuedhi?>jeDEy1{LN}GN_{y!ykQ%#^fJfIa>5TFxAw&8c
zM>0S0C1zzfc-{d|bxc9p`b@+^|6l)sNs#cK@Q$pNaCq~UkVQ$&&`LDE^tx0!ctXmb
z@_|%hNLn-6SnrJAqKb_)=+`sVJ&8nx@z-GX&7{@ez0UK6@>1s#Q!4oeiFps@y9jmW
zeHhX98@36<|G?|gr2%JL7FDc7h^b4K;u45u7&ry#lHb1)M5a@ovxnovPJ~JuCt<`=
z%S(#KU*R`s=zuY0M+~v$)Zp?o-8b|TX2%{V7on2YByttm@azpob^4tTD<o=p_Zh?I
zFZx%^7;hI8KTJAB2*2H;*W&OXw1g7}%1fY$W>Uf{1QZO546E#s8-H^^zsKVFUX9gY
z&W%w>$*$tLAt!Eb`PHH&zL--o_s1Ou4*+GqEJG?iqFBI|l9J;Vy&*0r)PF-n+|ZUh
zxBBsm%F=2`;HS#*q|Y<_;)a(bm{{#5)vjnNO9UaWmI^PzO(UO-$ojbAeV6pJxg><!
z&A;`FWaglc>ICy+6N{0G2IrvL$iInNk1_{F;jD=s{pw*1j0$NNeF`0??~e{k7wyF6
zMslaTL2OuD3Z#rZ!VDJ!#4D%WAvBmVil(b!0|T}10u)#gFy_<W{;r|N2_WRL!uG78
z#qospqi&F+P+6jf5vPmbOAeBwu<N52wlfv)SCYdoeU_hqq`wR7g5<rW^}tlapbhlB
zPo6?CQtc$e6j+yVH=*30-1|NKyn;87_F}d^I}DE#`4O`{3X(^=5ye!Mx<d1OPVp60
zuYvzY&8*|=B^vu_7=ZXm*)!+^-dy#8j5>B*NIHh&<MV|3<(HX)3L)`Chj(<9*{6W-
zW{_qlNsVvlTBG-3;{A7Xnb)uNW=ul8w(Pc4j~N`+Pv##uK3VJ{8-|ZOSo?Z5S&sG_
zpa&kTL%pB>1KvYG-lFJ_k|}vEmKodM{f7a{@VR7qv17CbJO*lkJ;s-qZ^q$_g5Q4H
zJq2!3uJbWjUm1RTc(fY@U`-0oD)b-@x2HJ3%-Wi!Bm5=x0dJilf`12j9MvKWc4mhD
zzgWMXSu7G-phvELm~$lk_9E!)Fid6$QD{f3pp>#O`^N%DVYc?4t2VFdoBkmr#mw%W
zQ#<Ru9P)>2)<Fy`Nnw*`|83=XpHaJFNg<G1^;Pv#Pfs8H6?uA5ye<{<z&lA!X6#x?
z!KfpEV_3!ly)sCWS0=K*VcL$iWV@M5(=~7qjEOdxksU09dI4%~;tu;64q3w<a{9GJ
zEn=MjOAOhzA2O{qCy3jqXsCX=m#Bu!c*S6O`(LK(Sv@QC_&66!-4(%$Gt5!7O!t<K
zhSq0<PW(S}P(4jq4!GF{3y3xTYD0!T{1$0ozonu+d?|T+=n*d1K8jt_Q9J3j6ac@b
zljiHz^mSm@k5%T~Zx4t6Cn3MK`eP|a*o-0;OLFguS07w~KAT0EiFW<{q4gQ0uh{>e
zgQlEP8j4@6z!`~OtjHOWY%mfQg+<Jh>2F^I5pqKzw6Da1Il%9^EZ<N#kBYE^?_LOk
z0&qeG(G-bOpTxYh6^$g4(O>L#R_tr$kT^|Me+9-*BgiA3J7BH^(dCpVimCxjs<-+p
zhOki4h^vCGVIjVO3zaMH_s}<Pd8W{eA17(W*xF81_dmWPGPTA&vy=wnu1gCLs>7Y4
zj@_2u4w{!-!{wlfiy_pmLuPECpi&MyVO4Lnh+O;c2OlUBbEi9?2myv|`w)f!gj_MJ
z!5BSOebE^0T$weIa^+kYhsD1Vge8e4g;%bDepX!Rh|Fn6z#ijWy5_miAsQMIylA9h
zLo5}D%fL+jTR|MwQ^BiztMWSif-kfs7!YN!PFed`nK<r144Un)GXIl>rk7Efd6mmT
z|7b!9%?}SH1qN*k1dGbBrq~owN+Jsc#aE8=uY3yB1~#doW~Qm3Uw)=0YMQTII?v0@
zIZ&Y{E+ZTL!I)nC#Tu%|fiFcvhy?!ywTB5vMeZ_<o=))VPQrOmNbJ{$U;u2tz})-o
zLCOQtrThy^_2hI^63}eLAl<No_<kakqTagj&9%kUtq*+;Ja1t;$UaBI#D48kJr2M^
zEH<Rcec4KqvF7yLV5Z^$r9Se4dYOOOp=R0-im$LwCQGN;4fX@({sWu_`&F<elYz#g
z1Xv;IBa_L^2Qp^z5Dyw07POnsUigp9X^>-)4@7-TU?xx1DxJ(;cs-eXkjwW~^=mqy
zHkc2TDw5mJV+JNBys*9m^AKIcu@|=dC7?o3n@kSo0TCL;eSFH$`Z9_CKQ^9y@PBMP
zWb>bmC)oWT8&A*&vGId}spw`XAz|z^l(FnI|Cf#bXCg#7v_#OS)k7erm}?&M2n0Qq
z#5&m#p~eLbtH`7n+t@;W5x;x-f){r?iSP0kWQKxgX9jkfYj-yT+o^OAn1N|~8}1YA
z6M!IKNID?hLB5Be**CK=y?S#N%pP1%-+BWGx?H$Ua~`~MBwB*2JDMb-G6NrM9)iPU
zb)5!dFg5r<{i=BBfc$aJ|G_AAm|zZJ65kvD(OYzAggi=Mg68{ysMfgTm={Mgxm7pg
z=lbTT6tQvs{&Br=;(>ARapIwIvGKK`yD$ec`FMxHC-QNEIqAt{NeE@>%;ZBOPw?sK
zAarC%2cWtRa>TM1ZbME4*|9`0*M3vdI)>yoOwjjdi2%#KhhR>5H_UmEHHH@iB;W&m
zmN)~4Ma9|;4!1)7th*0JoVk-a0f%Xi$fB5aVsL*1vKPug7$5?2t9#M`6Ix~{rgM|{
zq`U3xG_ki3;(Ui+hK$<=V{p{42Zv)$;?v9WfQn@u27wYQ1Xv7|W+<`4llYV}Ku{>n
zHrTw<Wso`{j-4j4Fda~H135@RQU;(BnwbYAp0Nks?oD71KAq$P89PI`sboE@VM_C$
zEaQF5D}Y1!fMO49j}AF70uP8dFdcxF3TFlmh+!WT879~zKLOhpZ-LEcC-LPaAneu7
z9z6S(V9w4=9+VD<JObMr;g4$YMFY*`9XANXejR|#sm)MeJJ^GJAzuwI!8z5gg9z}t
zDJ+P&|Fe&Z#%;{tzuk_5Pm8G!em3#&{er>PG|)9d6xQLsZV;*mqys1tTnF900YUtb
z%b{3H<^`oDu)~os0726;{t(~`59kUbg*})IiwERIcLBZ@--A#9B0`ii5Lq#rOr|*o
zn@>Xcs_2{DAji>A@)nq)nCGRUg#vPMl7{}iEhG>ij3^y|FFA>i$pZwjf+4Ue1V?u>
z`MwMQS~X&F>b7=@>^4%$b4)9~8F;9jeGvX(5<l9_3@k>oL9mN)3BC?>9ehIRU>~ID
zA=r&caUBF2Ut|DCuP5>K)i1&J2o8gRrAB7*(z-5#Pl1$XU=SvRfJkO2v-#-&X-Ym&
z4EZq_F%=>mxpI7<P{w^QMQ%PjT*)LaD3tjeOi>HDXQ83&g*>|uWOzY=o2DC*7kuU`
z1aq$thBWhU?;~)e8Es1k9PYFaLBPrX8|XZV|Dl$ZGNG5d`5wytpPCkGr8JZ8cIYld
z2%uZ|`aFWo15$3^0wZ=ww7P1q5cDaZfwvPtH0gf%Y5rI-?(F-Y^EbzV80mml{2l@<
z{12r2X%h@^1^}YBWyD2HS}BdPxz;(1vU%4Tjr`eZcoppi#k(+13DtY6AbJ5SJ_^gH
zKSWmjzuZCTf4KwtZP$NW;IL?%bbw#L;`R!Gn8+E}5KKh__8q;0?aQHgOW0P9^clR`
z0vlcjum`Jei2#*oTO@VEGXSCjR4r<9e-4d)#l+8(>mo-w#Sw;C=4>mf_Ssw84I)Gm
zd?ii?h@i$3Lec@YwwN8*@kVASi*gP{xNYn-!MGct0>pEo5L2%h{XeE&Xt=(Ipzl`T
z5^Qb|m6QVa({!8NW$^Q~VZ3ioQ)Mjzx)*@H2-@FPXrECSg1ix|8MyD&ZJvwZ6GRpP
z{{`i7)=0r(gA)ncF)r*NH@iWITSBml_`9M}Z&2lb5mMF(mNpxAJpoHO(q=Gh3%or9
zQBG5VJ{1)ZXK6C||8kbp|4S8E{Ff@Qzy&}~262`^{II)<t7h1JllZbgFH!qqaeZZc
zi)ke~l;cNsBzQBFNRo5_$92e4eR_X5D}~Eof5R^1F}THe{xkw@4n{KO%06{HvYMz`
zMqr`QD1_)b(X@o=fS<^_$X-bQ1^!OO=zO4LZFIhhd2SWD`XkAciek+FOuhd9n0gP6
zQj|&j#6vAJ@SLg{iYQ5FF!~-CQ4<ZHP&|g6#-N8FU<cL=Wg-J2Vf*+#MltNc7%?CY
zD{?awDu0MnQb8~P5hVdZl#?nm-~1rD-LHPv9)<@5#7YOu*!!~&s@WA`n90lYGLzy!
z4wy^sX{aj<p$O7s@{=ZnkUZ<I5Q_sM?rD|S1Lpv#CqiH#+y5bRKSU{>gTwwn)N}dW
z|7dFTd0i}9D)u08mqGM&AShK1qEWlk0T@$|4;e&p+YdHxo)-V7y73w7@cQYgvRwxa
zAo#OJr30|hCh`4s>?DQHz!X5o!J~*1h~=4%V~0bA$Q@)(3}6BWBC`5h;2aVb`#}x}
z(|GWlfHA~=naST?It*R~Q%vHQENp-wx*VdT{yVcUL_*f#A$EFI_lvEq&{NOHr~kFe
z5ejPZ=fQW#!p8so!h=Bn&&n}&?oN<yivPPr1r*fv|6>sG|L;Lo=0=YHdn5uBN9Epk
z`$JWv4P+=NWXQrww*NmP|Eo;HWa8%ZUmXi8eIs*Qb7N*Z_j4T`+f^X0Pvvh|DG~06
zzbdpN2CS?xOtbyg9dk62XXE^gxNuA}fTG$xiV}{Ef%iv&kX&k2yrC8+R=sjk)rg&z
zn=8JMqzmsy-ak9{=|feEL=EyglcYRPr_hLTF+<#+;z|d4l$K_XuNHVQ!iOWz7{zNT
zyJmDwio&J(y?EquLt(>dYtG`od}kJ#aee^xe$Prr65%Fm8UHO><XEaX$cVx1;~=Hh
zaJMKgeKfG+`>%}JIF^k1+J7_OpYl?7<>i~g)Y+G>c|=bMbt7%ja+Q6WVH323b3`<Z
zYDSq)J#k1QNV#=q4ZT`y_G2O~<a?EG6kWlKvbLZ<kiJ&UD|;DI6cIS>8XiOeY9(=h
zSU&YEj%uWF-o}Pm%VB1TBHtj?->V(X(`c2YVYL~@pMkRElM}84krc*${A8spQ|G~6
zoL-YRZ8OXL95@e;TjAK$WFI|-@svH^I{3`3HTwRtceCU0PSmeQn(aux94)kG3#`w8
zH!ldF$i0qSEto^3q&LaCZL_ADC2~UGr_hO61`p{@nCgw>N@NLhARO`SGdzSzVI&nY
z2rl(iIg`^m=PLG)rr?zWJZN~`o&$k(hu{4Gx8DH?8VHO&SFmAN3zGg=Dk`L7S<8i|
zs4SC1NqG?^X68{-gzW{PkBPK-j#*$~7DcLemWeT1P^@o}A?e=UXGWbFU_Lzt(bP6|
zvaE#s#*8%EA`k4fOj#wj{4(#(3k!$rvP#n<N1M{n?(&hB8-S#P2(^mTykl%nMX<QK
zc?e6rB5RQ>etUW0swP&M&8?mc<sX{hFsHZR%TSTV+zg~>(zWz0^0SndzUn5Zz2M+>
zSuo}2&x}qo!C42fw{LBZE1u=d*lRY95xtDmY^X5Okr5o>jO*Z^YO!p_YT0(f`IsX#
z@H;>DtP?#mRXkUPE^`wsDJ&pUM~{!O0vuTQBfja&<W(7T6_JDFVf6s8bQ81ltX<MO
zxCfT+$cdUUD6v`@H&@fLKQM#+Lllq*)Kw7|2u!E-+J6yU9AW!m0H)V#&2S6Wl|ysC
zIyQPA5qYiAD*vg}0rje;$2ydouP6`n7_)K~3z>0Ta3y+}+&QZG{}{QMtv@3`C|orl
z6g^BwE1K8(H;}49_uZimAEp0T>p>W%9OqgN`NnC6U~eyw*d_>jh#^A!7g?NG)$X+T
z$OI~K&IJsoE<z72Q`z5A_;UZo!|5d|lF67)F&6yV5uc0pbm-lc>Cl+IG_O77#%_n9
zu`GId>EdNaQOhUK|C+cku-{#fCcMTXJ2Z(dr$YLvNuz=wU(*bqF%13L^)o=0QdzM+
zzG(+dkP(LARz!gEpK{OGb#}(rR+Glrx_U^#aGD+V@4Ex9#~zM%L*uzux-7O~#8f#5
z*-5jsoGzbgKU6O~_e^lpy-(vAhNGU(>G1>@N+&;&9zg%0ZPw_&6?oDad61~XT(|O@
zWomwS{mR%nWk9!le!r4&hJv!EUpr+4ZRtk*>TT7Kp^RLi{b_;6yfAKxv2*d0%V9Xy
z6^49aEd2p47OOY|zDPDMe{*24l?9LJOaB<kF9S_Ws9i@2T3)A9+?~3jM9mDSZ_>Gm
z*fgn$zF(0i=IqEiSuyMQAVnbxh9>)M_H>`58sVK|@@rC|!PjoVUImM^L(aP{CT3Hy
zovve__3^<LSNMXare;y4_Xbe(6F*l`U1Bo5sQd~t8qAHC4k(df%6uGN=jeDrOf|Sx
z3b39@p@=9?b7f&WA;<x{^74q@(2<nIjPN|@lpEVq{u`nZeUg^MuT|aexNDmoNIi!<
zC!}8TCpN~1Z4GS5fCU#lkLnAGkrfhkGRe%mCUqDPT3_Q1VC?BQe;U{Lah#U#W9zbg
zjW7sjKO;$i_K_?`-2plEID?g_Z?uP&U-9z;?77ArI~6frL>XtZ9Vy@@sO+nF{Aag$
zKIKYQawM$KTBtaz<c4f$#^=&ZrXAC1_ieA0aC;Ng^Q4q%lPmR`GO8Yuhk5L_PfSk*
z#7FMxY$ukH^o;aea(XzEwe5XK_buZ(t*HFEoTdDu;f2p8Wi$~sdMS*q5A>f3+JrbM
zc!=3iyx}NJ!qjkT7`h7cz3Oj2e~JkojtgVDeLBVIf?GvxH`^~~y7*El8R=l^;4Ax7
zhJ)f1cJg%4U!ti40LtxCmyroq#Ef%O>q#M^-r{uom7JbT>(B|-uP2i^-D2yst*Dq>
z%ji-)B771z)_NZUSAXgl1`q9x#lg!lQe<47iXW)crXF9}RCbdZHI`Ur8Z{cK0En^*
zdtC6vzLBD%NVGN7@czn-QLI^P+H4#jDs&h)u9xdDbx96(m7T7AUa7IDldZ>lOjMtY
zN-JAIp8LwDcwf>#w_v*DC}46p`s4eUuI4*{Cd+V0HYn)Lb>o)N=j`V{zxZ(BEr%O)
ztBuyk`T=4!^v4NSUsi;L-NE(aU8dMu4tJ@@o2Ybj;<+?E4dg!sA`09Q>Yb!O;Z%`M
zVsu^;;BIcfqpdOy7aR-4#wq8Y8|3d`jL%z^_%x)?u5t~v)s4=*?wOzySjHOHn%j4E
zm5ICbhMHB{{E35|keTbP>6vSgLwtTHvgSXDMM{tAT4&Bp_O-1s;7%b80{Nl_Swm&R
z`EOTC-qSa15{tA`&(HTcd*@YH@wx^StY%u_J&?NgN|ZOdq+)sTuh1#X1ayh3d-7Su
z(UUTd=gUX!QgJ~WvRbEePGSheMc;k6>XClu#xQCb*)p4yE~*xX>-sA>SUW5i0l~n$
z@nxL%`ftc$UY_LV-;-Kc##|+{XoPhVlW<CtP1iw3&cyy&==R+(<kiD~ManS#IkJlT
zGzm7HT{jsqb3$){=$Z~o#L;OL({Zzs(3|w1#Q9>dMc!AzA+#H1!JiH^HuR^VuP{FR
zxQUV6*x!AFL;FTCdZqNCc~#I^|6)hm58#<LP#{b(n?K!>{T}XgYKx?VPo!TSv7X}o
z{PJuu+o`VFD#=U`<U!PNYkN5#C2b3ZMb>m2_Bg6?Dpb&wu+;3EFOXh`D_<F}Sv#6s
z!-w1L<-a`B0GF@t>eDb%yiz7tE?sIKGc@wYy$L309oDL%(IoFQdB>l`)Rt|?T;wc#
zhE{9>iWu(wWVeBZl{NX=E!N5N1Ndr&^)qQHKxrcEz<BwAAgSd9E0p$+tS+st&js&a
z4F{m$ms;^pKTsO(W*#@=$FgL$)jP)g1Wk;5xnP#~{AW6{@rv(bhql&kI?Q<jqOFOt
zBjq*9jpQQpXIz&<z{XsgP_m2Al#go!*@XW6xIC~7DN5bpxm(bj^RRz80LVZMFQG1!
z!@j_-?oa%e9?utBv{f2kR^fr!Yl02;46Tg7{Ptf-El2Pwxq298Pjd~Ui)X_vODuFV
zYe?m`#BFl78{d_+l`9oDX1ZZ^PcD>eG6Ez9{ItR~3f{>^Kl+tBzdgjed!=n<TJaPY
z?apM8^#FulKs0Wc`4~9MDUCH-M9_AYuH?V(dJBEB7wSJ<8|U{G3AZsdVT`MGx5g`v
zdL8`<ElM9;N;KmpBcB;p?bv@R1`&i#5SCq*4zaV84jHT{g&IOpR%(*r5&IwKZ7g*Z
z$7U={OLto}aZTO4C6^MKzz@x}ZN|)W+&VjD7+G~LY303LAU}<C-l1SUQL6MUXj@zG
zHF-2SgiN+r{4uvVo#xMP)HnxWBv}sqC5g>3Xh+3rinex#3Ca6|`pbu2^_zo`sL#Zf
zHNVd5uGRQzIN54$+iTu-(Y>yK7@1>f<(l(d<=5o(56d40JTuI&$+L1>+^dP*UrNmJ
zaaezBFq{{ER2ac!**cg6e4O@kwZCT3u7_hPX=6ZRHs_8@9Gq3gE?Ra~&AU|B+$Rh}
zjo{>wt6i2GGNp)a5Os?RlTC8`V#lV$$d*e(vl(<3e?!W3UQZ=S-aR{6JXsw4lmAKY
zX-WC*4ykM_l(i|}L6dlV-4QBop9A^a=9-OnP_XgzF6MDzao%K6?g9x)z^pjC9?g|P
z9wkIOGC=7zBfa8K`{VysFYCW(p>XcAI4-0N-XZ<}*J#1i+}M`wzi2^w-FCMb<M*R}
z53i=?;J^B`GaX;-VICQl4h3fE+SQOo)@DrWThR!5nXfKi-ZuHfyyN0tW6$ojvps4D
zw!Pkg?9|TUKG~@Q;xyuwQ|xur8vKd0NtS)zMPWM)!?rOvRfCRAS(6!BD7&W3TG8~K
zik<Lf1`zZMR0$lWoanJ89Oz4Mw^{TH;MfXL^E|L5{XezEd0Bk?iLd;Im$JgiZG0M9
z5FF6kpez^T*v1(0Wx<J}mQi;kIgE9*KDJC*D!hn>BP}5aTTgAg10*|^zfBnPfFMp<
z#lt&Wx5Ue>aThMRH5bV(Q>mg_td&4#!?oXjiZ7A!)8c+SZ<I@;F2u`DRPdA5{h^;Z
zYQUoXbzz#lY4f)hN(!~C?MNvd=`VT7d{~8m%WM}-!h!gKX!(43&KMJOa&5#XVZ-4d
zaHbOpk6XbnBf*~4o@}>>+tE#rys|~~;vRC$@28X1u--MqS!f9SfVB8!Fzwp7sh_El
zAVrXBwAX-5GrBHb{u8;x5+%9WxlBN~09%zN)deZz*;bbPfmbYD*<1^>zV`%*Ww>0A
zcQ6W5v8V$o7>M(l<<e`X9DB_plYhJ$62+B3`%K%27>rxbZVeLngn&l0LrCe(rtcwr
zkq}r6<L|8sgC^qaG)gIW$VkcygUy~IJB))<4b&TI1ZLc?)Eg9z;d*@pg@ZFb@237!
z3Gigp*h1d&V!-;L=8OErPJc50xRq)uRCb&cE@6#$UuM_7quwa^r?Qxk3?X|^#OHos
zL?K{31z>%$(`JBolpTD;7*1X>&Q8JQtQ_GhSPG^{LwW?{TYu&LdiUk?i-e$Ov$q>r
zfkk9@*CE{p3;{Izr;`PA{c)h6%W+1(ec!n1pqj`(*-LAUo+aKkMI=JXiCyLg*j@QK
z*gkn@UvOhfZ=!o&)-pHleyW(|fmIubrhAKwK>RX_9;rLfKptWKv7W-;l;j@uN*g=<
ziXl&CTI(}WL?#~2LYBsl6^}^q@MYJSSl{OKkTQGiXpUPMI6AXL--qT-OU!gXPJF4<
zy%-&s`k3^L*xd^!o$OXaEGoy6a?r3n)dJotuK;$dn+bp(3p_%0^XCF-uqY_?rUtH1
zSxrAbd{uG-hw5i4rbCUv^>|?ie+ReJ4Dy5z`QG!7)G>7nu79W54yVb})HI&xN%T=e
z*1NT>L^l-EzY+#3+!YvF*Ux-AR6TY)tk=S|d?jjjHgfD;O{~C6!hbH4f9;&?;WYDJ
z+nMZP$(fe^O7D4XrRp!%w=cMT#&%-d&dJboS?{Z{?U-u+67NYziYZ0tLX1)a;O{QN
zA6OnO>=9EKC~=3eUOle%&WmkG*U))d;aJ%VXui-xS?4JVdP|qOh(<eVLu*lEEEv6q
zwIR(}Aws-|>#g2F9K-2ra1GT^CSsA!I|wK3knNzuq1=2G>H3mJaWt;H$iwmBaoiF$
z9^_?Sh7$Ja*_>AOeBBr!vN%WPGb~MDIm&aU=bZn0VpYbOMM`ig%2-yF1j3mA6t`cS
z4<E4QsQQd~4CXA%k4Y%<wx|079##R@FmtJ+JuEshc?jAd>0|U%Ck3(B=;<)aBAm|Z
zUqB_2-&7{UwGxWU(+GQ`l@F`)1y5Vc1a!7FvpGC|mX9u%WCnk<Qs$}me66?)g%5H&
zedE@&zO6)=pXsDqiU~`5BMoWr(%>CZ9aExr@%dol)Xk%K((dyIO5@!m(n1h<lU<Cu
zdJ&Qw+Q`VH^uO8)%{1r>fmz)ah7wZYhNeqF7h7VBS*DCP9nZ$bsSX!~Ls~C((wEd{
zv)>QKIUeq?zfxuY^=q{$dI~gIHwS1>m#Hdf>{n`$!o+`YbLjo-k!kv8iv2sWZTb{=
zb)&Zlh*9WbJuS3cWA7;Kd%WlB;gPHrcNV=LA#SB&)2lr~d^2a#pEdhIEeyw}Xon&x
z&gV#(;s<K7IueyLB>Amh(>lxpTTr!fJ^t@K*2_(um1sZVt37>er<O(!(dhgngN21$
zj7r*t=uL%3pFl)8)s5g(GCAg#)jpt30q>J@V5N9*lp@3DcVq{;XSmC_J1y2!FpaSj
zFX1J&vSI#$H?OC)e!=yF<SbsYKBKd~tb&147GbCNSJxmO>V?RKV>^FWJhwj1-4R{5
z-7eCP4z*uqBK?OA3m!_oe~};ULVfyzuh5gZ949)3VKoPJi~MbDHUqaN`4?v*6M2|^
zS-xzB8-78wm8waz9~1jAF|MEQ0i#nERo;$Uk~mX-v>Y6N06<;%9sCWxf^lcSf<*@6
zRGT#Hp3AJBAB7A$OKe--vAA!W%3wBfnS_+~b$u0x0)EYN_4tn3)G&n@yhnn#V(u~<
zrc<S{wBF&vU+(z^T$AedArZQxPqJL1T2Oe+oakCScKvCxRU`BO^OFpb{Y&Q!kA3sT
z%s^)v_HU_LlQ}ylDv;-xg`Pk`D$J@nJ@8<OSs!gPNopR(?rFp5n=Z?QEC=QHSu{)J
zK;7Z-v)T5Bj+2)B-VcRCr^n0<9Fix)F>ljDPAQ7I-`Wy-Z$~Z04P<m2t=m)%Vp#^X
zpTd%ozXm0wNDHHUpZjX+6qohTceZqon*%e%-4NAP;f>>7=3x8MN=}V;^Ht=H!Vov|
z(@nHrR~wJ{=30`|0FKY&!n-R}|5Xs;^_v<@oCC4XrQ7Hq$2&NYe~ZkQ*K&D>ySnq9
zN(oeDbMYb0oEg5%FKOq6;L`;aI`KuWsXia#FYQr6z`W+02o<XnYz}lrU}ke&r)7rn
z*4*l(^_!hR+V9Z}<FySL(!VELbwnHQ;6+YpsXdrlbz?h3BqRaqC)iZb4Gc0dA(S6o
zcmmW@y6=VVbd`TB85!9nf|_ipV(0!fr6gROD?2%8kF1*Wxon;tpZmj_&)=)L{lh_^
zBi*}G;KRY^?f5lBDM`RA=IPsLPJf*<k><Wy$nH#Gl`=A%^T}?=7qV6=HR|ZwH9~pJ
zX+ERQ;@N&WcRUcXD*hT?NoLiHPm<<+;K}d)8pq6T<|&;i?*&G=c8}obH%IZw-R7dK
z>d%_BN#FHXPD5}$TT6iwHo;9qev4$=98=AMZok-{xc^rQ`2WnwCblw^BVa;7?HfWt
zvHpL`$=W*E{pVu|SlX^iHg3K#G_(0DH*2@LxI6~nb@=Y`M$XV&-%~|IkfZ;yr&dsi
zr8nEt)Vb@r<hdn390;+ZJsLQNQlNA=XotM7V%DR77J-dbw8Z!OMuJ)LzIb^*bjzsc
z^Ssl*7S$yrsn>2?oS#c2?Jc5KAVh5a;9$9Je-(|8;8<n-S()psUMVv`x26=q*s64k
zYB*HQ7%tnHd2^mhEJgh8UL7dZ?>xE`{C#L9`kyIQ240=VO*!Mi9M6Q|0Q7cU00ERK
z{4<)KRcXRpt+bD!Nlnw2vC5>t*l!im-=X*z$f1rm(6X77Y-K8?pX|ITD&Mpf#yBYr
zhGuMM@KUe$?eCf{JJZDFMDgU9eZ;#WT5z<K2fqr;DM&=;eLb{v@q!Zn;G}vSfgz_g
zX#i#uASKv-*~3&lKc87>EqA+<(^fxjd=HW@`CZ4fnx@g+Q?C0pqE>g0+V6LzudBAC
z1*Xle7Jz|$Dbm#C=VW3N&IB$som!{7u!l#Fj<M5Gf3&$`5JyObW<gz<iANmEX!y;(
z#dPkephp~EZID2F5lTLow+OeF_xpU>*zF=ws#$*8Alf&fSV%_=td>DvJJe?;k=MA5
zB19^7Ww@VH&App@nDte<1an;J2Ogt{^w5qry*7B&wJ-}M1ri#2h1u;X|6<1H2n=Of
ze;)p-5zfneg|ls^0v8}lkQV38kLWMGe$yJ!$vGZR>7r+cxkHGMT`JGD%*<A&rF%w$
z-GcN~?F@c|(k7gluO5Zh-IF=iO_5$bJIS21(6*-5xH+J1^)tVZW-x%Y$uv8W#jkEb
z2F8Bpwi`$(tER03Ya=VN6DC{x?co%U>%>*f96Xx3k7_C_+o#<P4tZ`_<bucZjuUz}
zl!^dU|GY5i)`c_Nq;AvMIC0=7rP~o_9^Z322>D^EM0OSR!y<$A3wH&!yJydXv9Q(&
zoA+iAtSF$(6nS8Wu5AI{^%_dKj#ty|sDu`LO6EP?jXSYuL{y(-xO1snV={eohKLc^
z6!`JA?C5*B)uDN_*o}};ar2f`zB2_fBXA@3Z;}B@i3dQ@TFBH)xk^-E-#i(PUOV9P
zE5e2N=Q_9i0Ri3<G&HgXcs6k%3;4a+q0tZB%8O-ag`b-5qfp9`zXw^rOm8H?0$>5s
z2$WKGCg@NbGNmxHa>pOv$&4?cp?<%3n`x)56$BVyNzu;G)T50~P#+cMM*pcxlY`~C
zvUhga>O;AuD2K<~Qp3WB!UNv2-Cqn?lg>2MksGJgRA<0dpkTT*ridh%-YR4g;T9O^
zY7osf--4ko_kVcaWq3V(aX2qNJ+PVg-BS8{NA;N}fo#?|`v(Ksm-Bx=7`>#PYR46C
z6DpSsGO-PEVmW_}ivJ{nse-a)g%?fg_=J|Vu1j15?4X?jkDAh2`^MY!$U}8k**$OL
zng6Loh=EVq;;7|P&QB9Ig>B4M&DcxKmmrq!8s92%;Bn2Eye8yJQ5V<!bRII|L6UlG
z?l^SI1HO_Q8CgJ~RQ!8|HAfg^9x-fu_x3nr=*h_L){ABHb&;6xA9B>&5lMQ(0d@k}
zVR|9sfa9mV4RZk1-|vq4wa39>p}5$#Mhtu-tkID}xE#D+U=lX|9+cv=#E=l1Oq*_R
zNt-DmSy&A&1vFDZ1A8k`;Z0c(tXnY~q3R>$x2U8JxM4}Xu8I4TV${}p>CVv*R}#~T
z$*b|&!K&pl;{M-&+6i{^A=V91M_kIP-%T>9rs*<md;@9ThEUzb7-&Ee#MP-PKbe1B
z7nc7RdY1n1=;PUIYutPAlf6ZWQGV#$Gb`iV97Kav?CygRlU8(C*j<>FmrtVOD+@EQ
zR<XuhdaCK#J#UK?y#m@d@plVQrgEtoX$KwF56icD-`IVc37xES<9~quB)~&wg!hhL
z^2{uZ5EWH{FiEzhgITVpP8q}^n^TDjFiM?1NMczUqvq8s9DqT_V<yRd27<6VLOnhM
z>=&aRbte$c<922@uSAG{VoXXDRIha#w~t0y`s@GuDJcbIcl|+M#;2*Bmcj3YD6D4a
zqXvzJrdCC)2&ZyzwW7SgR&6pbmsR61PixQaJiRDw(_faSx4RI#i=T-(sQ{cp?`+*2
zfclGh#l(@cAt>fo^-F|$3C6`>ugB_9TK;cvAxGNA7-3QDbs0lGGdY1w5MusAKC~uZ
z%g_;Kt{h^NuYC{TM?Cg?X0bVq{M*S<EE(%#((Iakuv)me#1hS68=M^I_*=48HgN_k
z9Vows4c);GMKzr$huT-%K}y_VivcC-!J80#eiBu=cyuS;NLgu0WITCwS+TN`PIXu8
zT7uh|GTd`K+qgN6_LL)Rsn{)%(hPqc5j*yP5=+gwrM4fLP2_ZVw3;a8)leqobzdZ9
zHJC+eFBSci#2gLW^12P-Sk~C=HcrW#=`62ysi_?1tw2c6tMsid(qMUK!6jwRM=4JY
z;Nix{3pNcSwc{3f6<dD0O?7M{b^$`&@q}&EAM@;>MimVb6L;9dOJyCURtN0cBch|*
zlEtg$Q0jcy*czuJjSG?y+h&J37%Or$F5`3-K~hCj7~r!t#1vG&YFR`FuSDF?GgAjr
z<Ur@Ag%5J=gx%Jc+AlQ>g-a2bobs=C4r%f~gvCmp-ArZ;zTC54`Mfc?xl#p^dbhf&
zt>Nq^i3YMRYvrH+#onjFuK7~anwX+a$Rw;+VIFF~+f?<~Q4lD(L-p0+r%~UO(7TJ;
z{$%E7@wMpg#n0-sSGH%`El0z10?Vy*&mW7)cPBan`3ABWlheLKb?`q66bji{wH(>l
zVfDCpztX*=u#wUyH~f9_iuk3rT_f>E*Xyvu;7|ODQX^DkRX9nspM7TGhB#MZ{moDd
z2jgcZUOFTCAaXF_OjR&6e<W99;gMA06Z7oA^xfLTfDYC?33d4Hsn%9>pp>PR-^+t}
z4(7uVl!k%lsb6|3KjXhq_d@ijKQ94f|F(*+Ck!Ze95I~TZL>6=l#c!c@2vd$HUA4k
zo{_s<$+NvrZ<FdFsxDbveF#>ERwg@kk0r;rna>Avfl1)LRh~wKc(Nr1NFpAcy|rjT
zPZU8z+T30D^aH<jWXNCD6)|$c8^x&?<vzD?`3-CaC%;*4LZv1ckT##6rN*?&<TD?3
z@;C06a8?$y(3)^Pi&ibvNG?ugY0(5U!7mF89bwv;u@jTsJhz61ly7f?)K*w{kur>u
z0&*2a>3fEff7gO%SiCRg7kkHRM$s*AR$(hyCh3x8F6>~#6O+J8s{DF!%NY>_++ia{
zq2+qAH|{RNKQ6v5`2AbfpMbAO^iFHM)#uH)<kh$*hjB0~6$|y$X~^Xw5%OsEhTTFG
zIXaBUEl22w!EB2m*Ebrwo92u~%eN8wee<wBa(s7kK5{n=LqRzN3gvlz5y}iA_Pyo*
z{PuQrq=f(jL=(w@672srWnx+7ra&qBgwY+X8d)o&s7q*VO;8#+ynMudh1+^<{3S01
z5g%CV=RQuqFXKeBwaZgsZf&Pa6Cn0E22e224j#%v6IzwYJb!vjA9Ep{nL#h`Pn*GA
zV2wO{NwnBda4e%ZrE?ZWKE@_HH(0V5o^^(62Yn~(KZAIFNwuS|ICv*f#{m=?Ix#5y
zNORUK7pdRphN)SGIITg~xeLA{sT@Ol@`Swwio5jYSBh4_Z>Fz=cC2#M-i#0UVQ8tx
z=Ps=|%b>AJ-xYYA(fhMeU*(Y_T<6&yOE`<bH4en%(s*=9p^%eYxr}ty>>L#9q4WMY
zIMA6iU75W>wX2i2N-U2zluRzP_Hl=Y^utJKS=&ldX(Z8Dy?Qbs8$H>bWfb>3KcP$F
zz(j|802_Dep#KYom;bJy6qfOblP6M9n0cw1QdXoIpsb{F=iJ9s+cyMgMPX02exYr<
zdIZa7Q&9(Jb|T}aHJ6T!+!;91G8(#nAB?Q0mho4LiG$P*xuShxnJ0oI3x-IHG(nfi
zEjNWV^e1Cl*&jRpm$F+FrFC2E)vn0CZ^|;<JF!<ISfkfwU%q>Gw3GE@HYr}PcXCMk
zdJ_3>bAQtI`*E3Mpz~!-;okzM(c?Y8eSIlQrypbvuGWT%(aWqsymCPQvh$pc5PdGE
zjIedHcdj4TUJ!lN(e2Sr0;J`=u$Q@fQtVdoui(xklB($YYD@pvX!_vAj_07+KW5%n
zsbu*#_4UHvy4E*drb7*EI=fFw)9zhPf$eZ|)Iu1wf4e}mw}hBc@&iC`Rs9wi)|18G
zoO3EZX$>4>j0DsgW@J;$Q&k_X9xm?xwlP^l{!poedC{ySAnu%c<x^ncb#+jez^Vq+
ztgC9q_nIu&Dcy7yAMOOqO#0*;5cDQ&rQI4Q&k#nFw&Tyhxky`TBn@As1~M#JcrIW`
zJ$_>R$N_{GpKIlsc3*xWd(Q53pFeOCKAz6WnqCd1o!J&Y4GYl4K!1r*-*+k(x-{5)
z=TP-7%JQbS4{Y4A&gP?cBmy!8*(_rdzZldljnMdxhMZvd2tt+U{dq*dX2dBx8iymI
zE44<)l^vT3o#!I%GWbYP3f{pDN)PO(GIyhr_Rae(d<J~Ti)Xa#`9k`MrSo&!kEA>@
z+sWUd4x?`9$<BLrngA^QE3G4)^Lp;|VWr-Bg*_E2=^#(GIt0YT-HGiWpew&f4WUxI
zmKm?GT!S4M%K5bLtYv(wV}HZQ3b|hB<|t`ZNSHOZXZw5V!*GGX$=L|^fKbKRsn)Wv
zGl8*5Z?7mpXbP3PyR_MPe=38?@<(`D3oYdVuMeSq&Fb-=#vHog`)=;}l?Wx6^~#ar
zuphXQ7%eL~seF$na<6#;7#27)zuPc-XTFmWMmeANXp;QZGy98u$55ek5Q)Y%jYt~(
zPT)odCuP}42=j5=Hf4wvYhLpn6LY>Jp1ZcYw-;WbeeJEIAsa)}#9TF0x1aBE#tr|I
z<6|p*18ONTK^yZZGz8cwDc@fM;+?U7Ith&gW~PHyo-q?Kqx`*61PPY&u(XL^W+Lxi
z+XlUf#riBI{_-@p(uOSkuy>ZwCsvB+272VNM$yv$GUM=Z7~b=X`G?xqgYJ4L{G94z
zb0|(W)Z}Ef*mrN*3_`ZJu5=%Xp-icq;cy^MwF=7SsDDmDO*cu*r6NH+7nW8iEUs0N
zY_v;df#0eeb6~J~n%dC{P~mJ}cTfTT+02)JS164exEJ4g|GO1NpwEddF?nD{ocRZP
z%i||il%~NA8As??YD3f8*%73b0)f{&wdKI$v%g^E36CjDG^JSiHSA)j)l}Y4zHzRF
zix6i^09X<(j6iRC&>8k99!q}54wF&1W{Z|?mv96a8xQ)o2n5&<;zExw`7p3Qe2wm&
z5wbdoV!RcZBEO*7L9UWk>NEYB=t?UWXZitisOxjQwU}aFFCifLy<PWrdB#kEi~l!X
z=azCzc+lA^>EZ>Ojftj_4Sp3Olo>%Tg-TYYLzZHx!V}Z%`;BHZT{Vy)g$M1E9{PKx
zm%EwGGw^wR)d;KgibBxMY2TxuY`uYG>qR(|Qh8S*n=F<4cV^)=rx!S`D(X)AALe)&
zRUgdBR|hJC1NiIMze~`7nJh~MWxQ0Amgn%SXPfQc5;4wf-uawQ%j_82pz^da$1wRf
z<;`528oeM*!yFh9#&=>`OgYAnoARa!aUw7|^wQ@A8TP;L4!$poeqB@gaJ&PV%lfGa
z_~G-VEYRT=-ZKn9y;z2s?u}MSCBTmcj>iTO1lMs+%I#S>{YOu81-Wve6XfN=<B&%o
zU1;rp=6^Mn2%@oq7A<wLvqG&G2sV!Y>Tpq<4V#(!=;<Ui?4sgN5%+l~*B~+lPHc7G
zhlvsE3<tSaaR@F433SQ&U=6vxg*bb)5%h!BsRcuZT%&cB%n|T##7v8an4NAtPe&?r
zSrtcd_VMi8{*TVSGAyoSYqxQCcY-?vcb8zn-QB%$cMlfaCAbsZJ-9o;g1dXjC1+;t
zIhmRB-EVI7(@*!0-tSwr_NrA+*IxB5<S<l?jB3YKNPphrlMs<g3kd6MQu2MA3^*5%
zOcW4JhLxFG?xET&NWncgM_Bj!U|0)HL1o!FpX-*OVp3);UP0Ks@G8+lmWxwdi!@nl
z(YTdN8ZUgMPgqB?+cC97qeqD>-XApy=t79^>}{LlD$MQ<eTk5{MA*(2l^<v9-7?<o
z*P_T`c8D7-*<;Q%&FR>#-6*ezwB7wjNxGlU?u1*kcwa~WfPe`Afa4$SDmgjZzt*Dr
zS-0+An@bi>t4)sUH?;TS^=!(_ghX7rc^?y|hi@xUkKB^#CHr^M@<L+!*g`YNxf*U7
zZaa(cpd8rTM&IFew%J>a;G&ve2aD%V0dDip64E~X++AA8mvzF@v7Ik}e6wz?>uaN~
zLdMl$B9=g(P*}cu^wi#-UaBoN;>gxXKeCcBmOxT5OqaRNpmvp}lC6PZQs%6|HbqXW
zs5+LXq`ELfKf@MTOFit!CpRxv0ZXKlp%Z~BK$)HJP&jmXtE57HSAVar+9*%2u~ze-
zGgH2IR3N2FAN#G=aL`1d+9V;dzh9%)P`q6$Co(^Ue#tA<RF!nl!UaMgb9!e192=0B
zlul!Hs<N4Y?moTB^GVHQ`0~L~i9^u1y}Z_$#qM;Wi*&o9+_Ss1g$}+0wD2q!`D-n>
z1}4W+MIoxM4UO)NY%TauQ_5#ICqpf9&1l_-n7Vz~h<X7AA@%bMvP3&>5HQ0s4D*<v
zA1&&tcUE97t~=>;^n2-89Ho!6Ayw-&E9JJO#!M*zY_L5sIjEV=GU0lTCgef37?!2w
zP2b~oCK=6T70Kli=!k;OJd}EoDju-TpGf4=(rY!x?yE-f5QPFN6TYraB)dZfC?k*G
zj~Km-PlpPsrHKhp+<djD&8kmZ?QlzE9W7opE=%h9!2p-Eb$53@P0b>4oPbHHa){sy
zS7>ZkRdR}SN8+X(KkbhA5tA)JdCYgdykr<yXYEny{r-|p?5Uu%9fQb6@yz{uYk}?;
z+(_e0F~<D6xsa2ZD(Qw0!ZE9k%F<d?^-7^rS=LR+3mDBl_v;3kY4>Z$ZFu%N>U?}3
z2~e_qX!Ys@$(&CdlDc*6eBp!}eX(YTcZI`O$1UHr11l1IU*MAr?d(!1on@D!IgMoy
z!BMDN!!aYvzohk(RBHIJM0Ulh$YTaOr3tmx(?uX9rFcRBe9yk>!V&s6=1iUIIJQD{
z%FsH`3JSEWv5s1Q(7%8Y91*nk-L0qav{^c)0G&eu5d&Ky(@^*U)fz(?-v0q2Z8Ci7
zIHz#0*z+94njeG#w6a`(Lu98VTRoO`-nvv+QoDU8Lw5d1TbN7IzszhhTLv@~rO2PI
zcJ@=GH6{365*t6S7aW0EuWla{;!C1IYE`MV7OV^t9JZ<??sEfo$+^KaP`>uq2>FvN
zCNL0W*Z%Fq;X;|S6A>EnKv_OJ4>g!)%P_3C0t=<&XXvP=i6BAwXq-Gw^<bg3WCSg+
z2|B4IMm#DnN3EP65DesEmvm`@Ct?V5lu+!myVA{I%Ec8qExRNQu^}Km*0yc%_kP06
z_bi9P1mqZz=y52Ep~d|+RDl|C+JPBUa2xq8))3K5KR)cvf2Z;e<}`NDVIjl6Eu&d)
zfLi!MiXVc7I!{91iOz{Hygp))Zp^;CwEpPlid~#=H3F4OLwn>Cu{;2&_zmnNM-={(
zU4m5u8yA-<#oI=I*E~l5Ys1H)L$8YK>xFgkZ;#UTRAS!|gT~mo<JfbZ^*ccBq9V<@
zcbv2m)18mXqCa&(h)xTAp0DD?ly_V`$PasJHr)g%JdJ4mjEkL8|4i5nVxx>gB?gmi
zz_ew9FTOsPu+NkBF5qa00wM;;5rW5L9%xiQ#nOY9V;&rr(ogC&iMbn4p?{o(&#At}
zB8VJ<cPQ95g?CZ1U=3pgB27u?<&o1pxDf|n&ya}7^3nNh(luw#!?*1Rt;2#_J@8_0
zC(rK}xRy(M5Et-%R!t2HD*oVIGX#g~z%CRdqn9y!$AKy&%z92uZ|UVwQ`(D1yQhH1
zpz4m<N9uPZL)|d_o#{L|SKN%r*(6-45&{@&<c(kUAz`bb+t;{h?Cz1+?qXzWTG8yT
zyC7i{R9ZlYRuXd_Dq<AaGpebV_G-W(G=tcyKd9_OYJycz8KNE1rKu{lw$}S&Tup&?
zVfWx?e&8OkP>COaa`8q1S(36DQV$b~IV`7u=*76FppECH3<HZHW;Ec}pV_om7x#VL
z^xnf+&<mzHgbG>I^_U{VurrimBBD4NV|)I-jn<m&l_7R|<gB=$H%wFCF(kk((8Gf?
zbWR#*ay3#Gxp0Ol(AM69I>oEDb|0&gm`6lWlW~5J0^F@5&2_&{3k)_4oiYybujXR?
z{3Rltng9O$`CHh94S+<kQsFDvSRsE@;rg7?cT9>eFvQ7Wcg1}*6Q6O$SoZIVYPp$x
z?VuIA;yvoLYg;;&{H7;JxvVfwCP=s}R0I}I!4<rjGCZ-IVH`}y0?fW%ji+*$Fzv@3
zFM#ntf-9+VsJK@d2CRsJ=)oY1-^Y;pvl4}K<z`&AIFagDw~wbPnF~gKK&JTmF(4&o
zeo3yp2LkPVl~7Xo#dEXHS_FY#{A%KXLzZ!w2U91RzAS1?PlT?Nf3hD(6L@IuCW_7d
z_O6#o^$>p@l<hFZAaqT&?Z7CYixDq&Eg04^cX)Y<fJZ;SUYOxwtV%<%Z+kffM<E`L
z+?KE2FYn}a*?A_wCZ{St%vIo=*R$>nXKc2B8mU;Q9O{P}kQ)O>OHmim5R}&FPeOnc
zNwnB|To(7NDy6&CYRF3^qnk>%o{_tz3e47Dq(>euG8x;b#{TF{x$V^qo=r73{Q)Dt
zV9{Bu7ow}58lY$Aczviez}H*O);^WJ7QTSdY66j9pqK%{g#4Ol;-}%<8Cyn7(n7h*
z0@?bp4KVkEu1s!YzTusr*D?g)8y=;yh#(nOaT#3rfwWOLYVaLJndPSZK+v>YR4JNt
z)O&f{<JK_gR)kw9QQ2IQj*Oj+Z)5pH>S#DQqq(6-%(_~y*&PKE-m0QRh45J0g+$&G
zq`a3<2AlC(%@$PVob@rm>U!c6NKGCoBD)~ts=#n8aTxBD@+<{juR+bkKFPRQ%$Ljw
zw@tm;IC|xYd7Z0VoYpC7&`J>2S}4{&*3Tc$<`F9&v~X7=Or;UL`D>iPhcwW;-egQ#
z<VR(~4|Oxv6y+8Q-%qdkPV7~yDAJwfF=}K5Ufhq0m?$K883wBfE$Mcb2A>NfDA8B6
z=}(gXkXk%SE$mOGlz9F7z`S(`<4W(v&S;BXO}Dd;ir|&fAoe;4Y>y9BvY9TGLXPMs
zefq5VT9i1O_02}1-u!#+EJ>Z_5A@XLLQZDqWo+S?aC~(8)d>7w1LB0r{CH<e(M`Ue
z<A^kh#N$rn!YGJ(9TlNx+os*--?^3>dg&m*(?jWv$OBPo@@THSg4t2AHX+Ld;Az`T
z!>~{(<&2=STs3t`@0;j2a$4Qp(=oK+*%mkUp!fyXQtJ%sVDHKspy%q~r`q80HXmeF
z3yRx2Zlbl$S+qQwyq<2zGGjAGtQ$r?M@=zPHn6r3ZO&Ba5P#500<Gzyb^O58xcla7
z2&ShX-1(al4hQ5iM*8otx%B2lfg_2QKs=+OrCloY-0!=eXS^mH*`7<O!qn!3O}m%K
z20uEhkc_WWIyZc#bgy}PoxuFb&sM-OF9An8WpU0I{4K$H4Y?+<VdA*@Alitwv5`i*
zdd(c$M>0$lu3e4j7W-ki%=Kr#Y{P6x7RNZDjvMGA1rXifDHtZW?6>eU9`wuI^$;;i
zIX(Qr!wS3(-|}{6OkVtR8NWnqP7x6~S<p6l?C_g1a`s4R4UL)GTE%BSWrAjBiceKe
z1ch&&e7z<<lw}<qjEqi2$_9dNxspE)C?yOkRaM{WDU&Q0Kk!T7pjjh{-QtyXth35$
zOo{-hpf`w7_B9c8rhQ3lGE`=FKoGuOdqkz0u8eHJ<yL;iJ$wtf0D5F9El|u(@W$~F
z#WD1}Mw`Tcux<PWK0(TOsIJ-(;vS!de_$C#F74@XYA%wa=lsG!I1h*1S%-mzFAc9G
z*U@47o`Kr7KcH;@Z2-%%nljaNmXv!B+Y$a9_o8vzYPSYQj?AMxq9&N5iV`O?O@wh-
zxBiwMa(7e?lvNcMQ{{<|IVrn$x&aP6$m+hR3L@d0q3EM<nbb6ux>2RdrO>xMiY^J*
zu_&aGAc7H{-nT0g)tO-_QDGl4Y=1yBova|f=dX}`Eg-ky<ED;Ee&A2dDYV|7)zP)V
zB0<~S-Dd9(!1dsm2m6}Fg6@kg<U^^f4-bYpX8>l2Q3s2V@;n3+^BEHf)eqb5%lW~4
zfdr!GZEye)H|XQm1qm3#`;`IFXdxYs$+$#hjA}KX`U43f>J_!CBd?T*7$pI_eusp9
z#bl;<mO&%LJ}PSWL$Q*v$%oC#j=%@--PFat^Hh`MSSWB~32H{p?j&?eWN^D)hicHu
zjI#I+8bg}i7DFp+ZG)_k2CF;ckWF`Jq(e+^S_=rQfXoVFS1EdAE0+<nz2;e0$@*as
zCxdFi-gyAV*bfIq%6q)9&8K0jz<#Y=iYUz)pvAzBOx^IfRRVUh@fXgJLg?*>M_M<$
zG{llNW!zk3R#!fHXKQC^+ypS`%{Aqn!zMZblT&6|exGV#Q5v98Z{R1wBhYUxA?;&b
zS#vibD+-YigQk?pE45sB<w$vFnfB1&EYAieaj^6<G@n5_-y0+$W?}D8fYaAs$UvL|
zgr47)qauEUKQwPZD5FFpSJGv3O`wMI2ka3IlK7p|INYX8$T3V{?b)qqcldO=IbXlr
zY<(X(uxftG*T7yi5qSy6M9A}~q4@ElE--K%`po~e2+JcF?UkZ>qgu+er0fm%jwrm9
z!35dY^7)NaV0W)S8izxG_#ET61Nax73{;H{5$?XLTOBE4XU^Prq#j+9ixEMB0rfE0
zTX(JvX{I;aa;I1{+%4}oe=HwkS^8BcWr>Shd1<js%Rm`P7I^NarIVJ%j!o;d^VL_Q
zXBZ-E4ezI_m{lgP;{@VeeLQ{Wg<8Uc`O-LE*@l@1C(i)wYG-x}vT17?_euPOGy;-E
z{gHGkx!{AbIO#dhki*j;A6E~A^I3Q3eMQKfKQM-1xi@V`=JZje8y**lbP=9TfU2K@
zhV&ib;#O1F)4K&|3RIEye4hzuSy)Z<bBuF27QfXatK$vTXqOV@jEzZSBi{=8jA{ac
z>h+Na54yplsmw}$9dn7$Bb1DaZsO3&Xa$tYj;5pxS*$e%GHz%ZFllfTOylJ`Jj^zb
zNQZ$Ab|kdsrI_~xKY}VjPM_)&+w#d7Du>afs`ri}yvK*55!vBmp6{vG-*21ACpBTz
zU3A_(_BN5{08WQE$9RG^cIsDZ<5vPTly^&(Kh|VsS<WpGCYE7g3%8+<3Tab$PX^!K
zX2{7MXX*gI6v$a=V{H24B70`(H;p6kzAmOCjM&Yo8Z0n&EW*HK0FqE>W$NU9QPS<%
z$fD|PszEhjZ<ZmH3qr4;qRA)qAD;f{gsL0m!(!bkmoV+rtN1WE?z42%Bos&yQGM>A
z3LZ!zwjp|FdoBG*Zx!q{Lv#Z1VD-%drmVBpnSXdJlsoRzPqGZBL$gVn4t){C1b(s-
zm1e{ZHnI{i)8G2o=C0TY0T0Fb3|3gmx{b`pdSA(9&e+gUQ+QxMx4afMn6HxFv(y+y
zhPYnMxoQhiVgogCI5M@Q4@KtNf}qFI^@8#(xW623a^|Gv<y4c$J>t@57{((2oR7_8
zvM-0MT%k9eMCh9c;~c^Q$PF?5$+J~8bZ;G#SD4VS`9Q|Vmy#$rK@T?As^lrr@?}}C
zhzlG_?3*Ago;$gbkJ+F-?UMZ5bR%=z6Y+*iso?zXr5|v*AU+h`R9LQ@d`}2hH4{V)
z8RKWWea`Bz=_3dysHG-t7wKIlhnxppih*>nPv(3*-8%Y35xeOuYC*o|%1Y-8W1ohY
ze~{e8^5SS$dniaS2C8Uzfa%ABQ!T6Sn5;;P?4z!1hz91-M^aU>G>x+HV%wiaHjDgB
zbr0myw)G)nwN~W7E}cD-Wtgm1Vm+6&<rLM_w$#iQmcneL_6(_nUlfMqH{0T@7aPb7
zW$q<y@RF4!;Yo!OGbLASUymdRSm>+z*F@^1Ch^!Wt$^i{&^u*T?4`$MfwS8n^71e%
zezuMDKeR#Nc;gUc83YveKb4_<^q%dN&2~~MZ{{u1(Ez>+vm-m8I?Yjm;!c`wu+Ab}
z^(7W0Vtm|Z>`qeC&Epz^#}$DSN~0~nLLJ@e-}H-MIV8+WMTPc=Z9AW+UGv_tlzD2<
zJ){}-?@etiEq+T<XMQ{byzL*TYhXr_zN!|Cs|B)7UAA)Chowip33WvxOAqK^+a#<0
zP)`zH>)?$gcT_n%0bg{5-j<2&{K*<cLbM_1Z4SG33G?n}J$A||CbYo%bqSKyiCypg
z<~wW$;RL%Vmye4BmRb+a?ImZrbaYx*_J^kG0t@FCZs~{fMyWZ23lfIHD_vlhdHwDZ
zs?dy-B;(Ov1LV29U5l;L_Ya~G;Hl9pn~?cB^7(ql6hF*@DJVCXm9MbkjPY`+w8&m5
z(^}Tho8z|%m*=LA0Y;fw;6<B1f$3vsc5}QWX+@Teqf>{1vzShaeskN;tk1!VMr7Nn
zW8VO`>(|?@c|2GAUNNyjxL_jLQXU8%e)a;ML08ybRjG6w8j=Xpa%~VXr4cZKC&xI!
zknPA=#H0y&?50#GM-ji!|COi6<S<)%1yj)8INW+;XpVvgE*#cfQgYKtf*s#7w9FpL
zi|!oF*|-jm@v>YPfTgW+j$|`fq!Og9tqJf#kmMz^TA|qE*$5-BgN~<KnNojjVa$ag
zSVhb_B>&1pSXdPXM&Q{B9YVOG6WioF&<`8KQU3HP{JW@M9>v#d{BfQtwXX=dv0FcU
zQobxC#1K(5j?DF~xd(DEaqetlB=tw`NA=7eG_2Gi!(Ad5I5U$8yw@xkgkLJ1Ov@%f
z6jTYe$LKX)4-M!2?!49K*b}XLS@zu!N~U%k^BI17tvsc>oCgy}BCgMm&Qz{KiyCT3
zQ^2=dE>E`{&0at+jjden!{Y`ADeBqm^d9G#M*WwB!c<R%EWGm@+i6nFI%^<r?A6B$
zjv9^0ni7Adj5|^T6%+rcZ279Rcr9yV&ru}nQ<BsCmbG$b9}=%=Q6;n+i&;guIzl)I
z%1Cg}I^&+ZbUL{Q57171N8M`1VV4N_&qlAcmFpF=#SB804(l<YY{4KZLpIS4BlunL
z<03H^Y0nYs0-PXY+Xk3V4_3BeH@`qK=3eP0>mAI4nsx!oFPt9(y3z4Q89Z`F1zmiW
z%s`Ec)W9$dI$ns64Lq@e2I~ZxD8;4I>4a8DfuTlMOua1k)wwkqAjEBIJPA+fxUJnr
zz`@OBT;GcWqK)s|n;;!)4qiyZ8(R3QQ|v7wPCV#&^GYJdzBy*tJm*Sjb9qQxBs{y}
z6+1VDK=rvD$YO~e*Mxi)e<`ic`-gWSoEM%5fdp0oH*FK|on^YVl17V3*HTrj(+yf%
z@#M`zB^+x*;_^j{Z*D~%=5b#I2FRvoD&K13)&gP}%d4PN=^Y>#W~+rplfCZ!u<``0
z%NC<B`$s3?J&#T+*XqRU>jGNP?~Au6m6xMS8S3Aa_BbmyCaxNBuDr>g8v&!Ub?Uli
z?wPeat4NV|+1=#WF9C{i5Duu|U|F(|Sgcn!_5?O8esrO6<FqJm6;_6QqJ6)4fhetx
z>YGU@jU{m3_|*%uk_<Xd<<dM#)n@WR{tO|`QTv!@h0Ca|(Wwo9FoPB?xgoX2V0@D3
z^l)h5Sd8f(f&W%6cYwArgc%2MjJL^4iVelJm1+fUoQp(risO{9q*_qRj%1Yh4P!q_
zd^hApYg0_%S40NPkz8Ot@FUvld;zZ_6ktb2%kN8y8nVaY`lqtzv%%^X;Pi!$1uFMf
zJ+Gcy724fc*c3WEdHqx=E!9im&x;Bf8iIyUKQ0B^@7}h_>ODkrf5TWWe*Pi#gXgtC
zD*bh7o5C}r&}L^%iO^!VPl}|FK7S6487adG8?WkR<$T2G%uF*@8zWN7(45_nCXb!}
zNV+z?+H&hyefv<NXn*tcTpg)2m&ktG7w0x3w$UOI7$^1;E5(2w`Li#yIycUhm6eWP
zG?j+hHx(r%PLLN)o)ox_Wt2rI%bfXLNLxU;<++<mhrvjb>}67Cjl=ztSB5y=kK49c
zUBO+Qf6rC^F>7dBCqlXvwMUN~>>Zb_sa2+|8t13Hvhc}#24Ih=DsevJlYts}yRXV)
z>OTo)`#tgHTHVw4@T9@b{;<FmNhN!UsOzal_Yl8+eaGDUrK<RYll)a9o3cMn<5jT^
z@7&bWkHf6C7$t8~39MDL#?mvxp{Unf#W!^~mEaro;`2Jf{bmBF>!iAOBRUOjELZ2b
zJ_MieWb9#2w!0}?YZUgmPp}8y>$6-rD0D}w2I1qbD^PVJo1qwnYO#_NVjrjl+MQjX
zDKMHWq^~rXDWE&=Ia3=8fiUsTHygd3e~0>@dw=Y7<geYp&5x~iJtEImRA2C+Jo{@9
z{v3nC21`$@LzkuO>QiNi)yZ_^5b~1aT{QDYh=MA11-S&aRc}<FeQ2^Rb~eWSq#F<n
zeNPBwvgyeYjKRu9OW#*1wOh8NGJ+Cb7#m9o)AC>i7>2^-g;PjGq`{-_%gBE1fp)_x
z3E{oz99JogT(4fg@uh3!?zEB9oYxFdst!6%p3mt+DxIa@JY+E*%Lcl?cJ@H&AVFh^
zSsTTLrda!iP7;4FZ5r7TcXg}JD41Vm!gZ1?V!m1Xpf-XVh2(fCBwD3!rgriHUsq!3
zI8uf`VZi!5Q77L!&n`t5xH@%nb4TFw%l7l}{!?QWB@&pHw$=}_2Y4R}O;qdchu*Hr
z5n2C-6D9Xj>3fEBkO|xJjAGz(*zn+4(6iQ_T4m?*bShLta6Jz&LtT&2<wVDKz3U`i
zCdUB&DNF1i*r?^{bfaiN?dhW1jQD-zNPeB#diD=B4z=@x^BEhh<?)mE!Ci*&SvbL)
zqa3*`()TP5#Da{qtD#`o=GaxjwqPx^O~|rMNUJ|kTG>s9nM$(Xye~Ne-yC>BI?-(|
z2;GQBZgnr1P{QR8`!<scUhuJ*!L1vdxp0y8X<g~itK&S!a9y#%Ag{Iky;nTzSQGsy
z76;CVd)UzeAt?b$5iotCv||pZlV<adq<K(Y)r)B_@b->Ldr-=JYt9qD$cSH)X!Icr
zLvGs*qiJKz&c0H7->r0T@1Q%QmEfYTTR+D&qlS@<;lV|R;b0ck({kOOe}K@ewVSgy
z86<HO(j|K;6HyP`xnd!bU@^F*WkN$=^G4R0m=tv8<)LvFA<d|8f`(vcs&LYh-fo+9
zS!4S+Jt-&%FO6~H2KQT|K)%m3U;fKc#^sB>*P|NCH=QJR#5&yptW*OERS}6muBG=*
z*)H*oOqA|n$FC0`>{Y5UBJo==1fK^9%ofn1DEUXd^p<s(;}#L5FF3EBvn03luF)^w
zn5rd37q#4Rur(`!4Ft+n6Rs+B?I}>oByF@5%INMYRLS_-S-fPYaB3vrFHP)TBD{B;
z{#Yeg4;ic7Ki40GkuK)=m@iJ0W%njDE3g@#@5Af{N+d0?WfCZ}oG(M`H5X;`k{<ui
zs_SczQ+Q*sq&NO7%=leXpu&A1OobLLObk;-x12>3_*SQj^WG0gAXeD}4W&5YsX3@X
z*Ohia6m<6*4zAzt$c76~O|`OQMJ<X-r%sYH&RZO%XmermKrIj4a9^Y<4fBh#vvN5Z
zxMtu4WdCU2wJnL`*#@aTRD#dd_t|)AL6@_~``|QY0R^Lr*T<SL$<13Yu3T?yfX_m{
zGdUbgMbL&kC^D=J64z`7GX34i=$NN2KJywYHPPHx#WVfdA|&LcM6pYpfY|rIU6%bD
zoieEEG=^d)3%2O2P4{92hBf(dy4&iZJ>Bx~>IDolG^t-8r*TjbVX(lsZbRtK2ecA)
zH#E-LHFkT8^v}ZS)T!f!B$sQ$AnsxXe!ytLZXd5%R(N>u2~q|V%0j7#HiGH{4;dJW
zm>a2BX1CjSB#j=}myz|XrXUv+toeQSPLpr2P}+Bv6ougtLH#yrRLC0MY~@$R%0H;y
zwDhHOk47gswMGdA+s`9J*+gZ)?;lglrb$T+?33t#TcDU#5C&3hf%(96*O_(nC^^Ce
zvJyae&cM6hXs$zxnpcc>uZj^|yz$&j@o~gI#R&uW$H<+J_D)Gzc34YcE6#CRw(_5(
zI^=LBx_BV3g})ctKDebR;m-PUb+z0xJg!}#<X~+%S#!j5_#m2jU5>C2o``$$Iamz}
z0>Ap83T>gR`+R)6)#GvneR01m+DMH0nxk#b;0ql5ciw$JClYUy-pjC+#sik9lTjU8
z3^bi9GL`mZe3s`eRYqFK3>M2mAcEAYU3y`R<>yU{55Uzydi8Is!xe8OM;IZvhl*eb
z6CR8d*Sq!l^c8Uo!9UDI9d(pS>7;*VGH{SGHO6aDK$}Lkol;3mH|4Moj}pR-3hv^o
zM`v~NN1@Nm(CZ1MS}r6QUCc<;hrT!b?4GV&=Y^+>yBUpdP<#ttZJPfz8B+RL2puq(
zv#U=G087;?6&vC(m}3|BEgkQ-60sOsK@>5Id%D2C8W$-_zjGc|S*jLmxb-Y}Mh-@j
zW}{izf}QxjOw+sTh1GWwE<vs50X~evvuXKU3z)w^Kqa(##?hmE;+KKgIFLBCe`kHi
zOMHpO8kv|VvZmW}2&*)6BD8h-5uw~F(ULg1IMP6jB~F;Gr9-XiJ%gs6(2Ptyp(fT0
zI)GNcD?@C{_tcy7+B@Yky`l8!U@-MgGNaKkWT637FM0AzkeMGXI-tDE3hZq$gg56z
z<zA=thEloos93mLi-m30Gn%u*BLD$}voHc1;pjcVEaX&uNr&LOJC%1nP6(UTB3`bt
zbsYs*9=@~L@NnT6n9^+0?4?FkgEWWOnP8>EpveWQ_2txhmk)1z*EL{d4<&OM6Cz^X
zhUe134y5|}TPjS%OiYaHUg6{U3>`nrJ!xD&6XkV=X9;-Tj^=z*b;`_Eirq9A$H+S3
z>n=pf<{z7vi+6^^bhtq$HJ0lv`yp#Q+V=e9>+>=wF#TN6wN^t00Y$n6*CZjmdeYA)
z(QC9tFEa{HVRwdO76z(uK%GGidYee!4cfa+%zn=Shr)Bzch_aNW-%`!ap0Hc9WAh$
zE0W#F+1TxZ!<QtrKD({2O1o-6qB)Yf|4_6@;=6c0D+D{f#_T>RHKNoJsHiKEI8=_7
zQS_!p*2E~sY}hUr!~vy&%jvcvNs<iy^2W3uKM(q~n5%*pvI^$H9n<QQsbI~yIvu=o
z{Y*e<v)o1(sHi^#Q=?Gwp*Qt&$fE6<+Kj(({EDna{jQdLeThRJG$Fz)G@q^z)2j1X
zu>=n{+zz%qX~2|8G-qdEt*qRX=UiCnivbOy-QW~<hE@lyPgeypUr-~}6&~@b((d<$
zP$vIQWtAJ^j5%yxPLnb#)z@ut`9wTtwjy;*%S_Gc-218P?4$mOg~(N#+^w6uHU+#l
z?XghnG`fTIKr2ifo|~P5K?B+rCmW%t*2Q`+xShwZS@K-|EC_qV%;|tmstN_-ni1$S
zltAkF`kq}Uoto_g%8Z86qz`Qfm*xqkWAn9}l^o=I0CZ_|`W&B6>{W!@(-+koc2jZt
ziEd_8URXAF;!us&s^rGCl(hEG`P(h4tZi@n;X3WnDZ!>mT@~aN06|Uq&^;PiSk&3D
zyZ|Z1{jVg#3aY9KLG2rn!<j)OInvAYd~?~y+&8<AX4Mn>-43tEq9++==Y^K4RlqpR
zqN!|&*#?6x`p8@~Sd`pGIo*azyfacD88B_;zB82QHF|n_A}+=rL57BG65{I0F73G<
zvv=tTpdVb|uByK29%o^O-*fSo?7yFH)d7vepr0ohE<-t5C1q#`g%iCWx7&P5ajgch
zuo<uL=OY_`<ffIu=RISx$sf3c<&+Ik&rBhEE(DTLPg!QO27ktxy}5mXl9vVneJ!92
z_}Tuf*7d5Q^?O79{qsMxyZ)yO|M)oo@beq>>-#@0{F!$1s@e75X)%8%`|WDAzq#7d
z<W)E6f5ag81tapmV%WJEI0Mapfg;oURkMuj7pQ^%7nG5+6VT4)e?<Igkl)%*^FV|A
z)jYoq@b}LBj%e|g^QTJMA9jNV#FT9-Uxtl4b-aQkzJhT74hjMwe*Gr*PhfvzVz76#
zdrgc2T9`Qfn+E_O{gXjnr4oK`Kf7-N`oHVGy@8p@Pp!5;`VRp7+0cxC!2Zi?D*h4f
zPbIhi0RPQ6-Ki4I7T^GY8!Q08_dED+#(Dhb;3l@OGI8>*#td%eKpX3SkK;G0P|tMA
zTu1-_?e&!7ulJz?>Yv!>U*oX0GqbS$dmh*O2)w1&Az8i7O_5)Q)QI^1$3qV^v9Y%{
z0Gj+g;Yw+o6dMEpu=NVh`wQU(+CL_AGH@~Z8x#ID^3eX`3Vt~MJ0>Tf0nozeKimKS
z0R5BiGW`NP^v{6**2&DLez0AIKmz!JPyp|LF%TB+KkD|s&`s@Zf%FEhCQf!XCiH9!
zZ<!h1G8kA}GuXU3gynzC%HO>1gx2`k0So}Be^oH~)xlj}o$=2x_wRzr?<V`h?aW@&
zBJE#&{I66{Jo5^kuT;CQRKmXuQ~1;WH<h!~Pvu1$lfU6>e&Ll?ef7JM*BHa~3m-wr
zKj(7-x?7tt7&-mLf@<YDLSe5;kvK#k0Ks2qhAaO$4bZ^I+}+OB>0h_&7q-8;IM(lM
zzpZlBdw*s7zrvXR4w-)^jrkkS&rrPc-$8yC%KQWA@1-(-BK;O0iT3|%cm9R+(_j87
zocW(Y@$bZS{*5nt{ZH`!klOh({-2MP{~N#V`#-_|?U4DO(f^!Y{BLv^WT?MPuHSFg
f-&p6DWMg@0h}TsD0Kk2H*}YCBZI;*N0q}nSblygv

literal 0
HcmV?d00001

diff --git a/oxAuth/Server/integrations/passwurd/bundle.zip b/oxAuth/Server/integrations/passwurd/bundle.zip
new file mode 100644
index 0000000000000000000000000000000000000000..969e8566df5d86bafdcde4e0ea4f6c9bde75057d
GIT binary patch
literal 447342
zcmbrlW0)qvmM&UVUF>3a+32!u+je!?wrzCTw!X4$+h5tX&D-bhbM|@8%$<Gi%;b;E
z__5ZTxmHHJ5%K0qd8u#UC?Nmi;CCih`F|V#^91$xYT#^RWMxbz{~sD5{BNWGtL@K!
zXKQQc^e?c{|3B?bt(=|zg%j?7>||l=<mCP@T#5g0uC{La&Q50k0)guPCxW4~qm!-m
zzW}2D&jFb;u-p6-4H_h-d|&xCY|63YFG><92#COc0qq~L(%L!L+8H}InHxJ=$4DUb
z(Zh*6iLdvPL8F^d5)R<O&~7&sM<uc=SQW3$GbW)WyT2r)zyjiA1mmP8q7+K9sjW09
z`Y%OviF%nn$e(yJVZVjzNr^Ix+3=xxwvYs9aT|*(eS>$_opn;tD*U-fpgr;Z8%P^z
zOf+tD?#42V5EytFml0Vnf34)f*Y6lqcP?x#G2S+up`;A5R9u$gpe~5UODlyWTbbH2
zNq(DLQ`@io>hK<g9ew6QCOWaJ;lqo)&fn{x|GWRn|C>(E@SjVKoxZ8D<3BU~@5c=1
ze+AA?-_g<4*}>?axc_*Ay=h{tn&2QHZr?#b#Q$5k#x_pI4)U%>v~Ffj)>c`n8n*NN
zNItYbzx3(FB}lB;@}PgjOJ;)U@LOyl31WL%*;-tsZ#b`)j`^CpEJ4A@gQ`aJ9KIiB
zNF>AS64#X#9fnAOvZ+wqQ<6sl(CycotQUC03&-|W?vAGSGWwK_?Y=g{k+qBhbJxT&
z3SH{3vj)SJ*(F)u5oRMv)bnQx-0VZ0@B@0wXw!OCkj{d_TM{|Y^?k8k<mtp?b;hj}
z^7JW~CbE}5k`3P&?Kzm98o%Rh)(xSM!^x$_QI?@DO7D#C%tUl1oX+WWBKn!Ciim&X
zZhSI9SAgRv#s}XRLSMA?I!@I=yGCK6MFKA;e@#Dd8<Yv}9qeC|JbE1;I79|YpQ)BH
zGd?=pI(J7x0r^(SFwnzMLi%7beY41QuxBW1YboD1b6Mk%TN!fFC>|MT41zUTDFrU_
zCXRWHXmC|Ac%w}2%+PA<A}ML}qb?nO?H%7pNqz^CIv}*^0j&BR)sJ@CjCQdc23=yA
zSA(+LKvXjp{<v4C@%SeKEa%MZe87c*HIW75SS2I8_y>0sCOnn?$VxwvN>xR%mC-{a
z@ONejX=e%yP7!#n9@*_aD0Sf)P~1SCi=~d#0l@9@6A_S!M^F~d!@n(B;sJ^+&2lt#
zSL$a>yb{Cf>63w~J;nlP9iutPJ~<L9KU!7&_a52W;UOC)xsOxdhUXO3uuHH|Lzu(E
zgNZG3__TE((7T7KYltIkXH68+97~rR=?)1G^KB+jF<l9P)>u8s3WF7I!g*()s;7iP
z7GTycBwd$&NkK5hd9`S(b}lZW2qs;k$;8?c=ksq~NFg9nN9Yq(q;j1XdXYQ$S@M6R
zxUS8%V|mhy7q8;EJX`t^QESaWI1FQJkzAdKL=<oLJy5NdlV6%Nj|H1@+QW)V=mP#2
zPrTvu+4)r&SyFe7G6=e2RJr@GNoA%MgloBH{8I7}+k{t$F>SYtDi+};uBkkepRa8I
z7atUUEn_e_KZ+i#v6<GZG+E#|YWnlr^6Yoqi9DNxU=)<KfNXB8mh!Oc1|UTpd&g9u
z(rplB@R)nm{xUmSj)x$-{W5{z*&E)$fU}H^Sq}jAD^zr->xe>O9{BW%%`l{TvV97z
z)Z9=hYT151l)UzF#qZn=JLZ9Zc%(Ou9lci`V40i3Z&8H8EaMOqlX69n#JqSu4Hu=i
z5)hX=>*qXqVP!Z(F3X-@e`kgz%*Q5Rho#|fJ~Iv#Lr7oNyX}O-OoPtc_=`evR8d`E
z5jy4W9>s=-9ch?CqcTibA^Old+~vjMi7;!GmYA-KFKZlK7V4O=QEYy+zpI**SXA6;
zgEI^60@Z?(oU}y8kxz6{3@o(r@RFPvWE$&W=$ptVx<J=4u+&U5+3ba-5q<L%X1aKD
z`8#QUwT$ah!A?&1&7zP)=`((A=6UUc8`98*fHXODoi{TZm*E#u2&~@1NkFZxOZ!#2
zQ6Xa|;um1OTkI{+H_hq!+yA23fAE*<a|HJIU;eU$1p$%$Z}FFvt*N;Ujgzspot3_m
z@jqCsQS~Hxo*wD5Q@o=eDG0<rA(_W-hR8l#=yw3oc1ecx&nr@wnyg}oo6E?oLW%=*
zm~fZI#^Ic94xY#JxjnWRw45zo|2|ccj*si>gF7*#8uC}SXYvR<I=uc8(?4o-`dG4h
zd9BQS-$~ptMdWm#(CPTUV7^<Pu}7>n!LRkppKxn-{8@~4I#quqtmi_}x0v7l9E4@6
z_Rvn6oAB*t>hyfFY0kRGbyHstqnU&4n=gFaR!R`Tl&cZ86m@$<cgkmu9@(W6Hw~yy
z>8YpIfw9VSgeuB{Qe`_<MMN+W`As0VkxHt%{PSuW>j$j4yjE;SpS%1W4!RA6-|;8)
zZK;n~aPkv*Nula0WGuOPXSQl#Q))@ePZ&nNRv1A=araT_KB-KlG8@6crF@Gr1z``D
zm#h@HZe{}(L_Ftpt6G4)Si)fAgX~sd;r42778|Rft7x&}2-A%E)Hi{4Fmh(aQaayx
z;mDy7VkctTR+=uc{r8AD!4nN<GpW-<H4%}xu*HedDw{N!d=cy3<AEE%L*NjakqPOo
zsG}P1Rd^H;(xI7dY6|5|pXE}wSV^I#?XtexPuV`nk?RE~NY{ZBjBiCs3%QK+E=u_n
zu@Mm9A1btqzgIJ2DPzYtyN#oJmgx{;w5IJn!9}HtD)Qn1o!a5{As<||<I$o8SXsH@
z<kNNY4}4)XauHGSho=2p@Y&7tE=VSn=5WOo`%=^^iu>1<S{yZH(fSV6IZ3H2SpYQm
zS}wU@fK*pFA(cH3v^#~vXwcx;KrDeqMQD+xvkVDj7ju~vH3Ai;`%vU_1VfN3i)tXZ
zd4mEc<k2Gmb_TM)EhfKBEX=5KeK0j}wH79AxaQt@K%BV(ZTaO#_PN=uDRan)k%KX_
z8v7Y$)d;MEC}k^4%PuEb77DHDz>WC5H{HP0t(%B|#17;;)^kR8;2TWu^f+?6bBWFu
zZBVnTP^lz(@A&-Q!OiGRb`olFz<l^=_%J&TKG5^#Rbx>kX;-DXm;7ksfZ1`2#*fUj
zRW(X_MGth-Wh)0W^$=hN7bjPBzNT6u)Y<rllLQ-%V;%9Sf=j7ud85MeLMTJG%;}rN
zD7^OX@l1*R^hO93a(O2j$8l-4g}t}_)CeF*^~(S{TjoziBkV;~=KXYA0<Igb$0oOy
zx1)C(N*Gk&Xqld}2D8=5y|56lE+IT*5q7jNIU``MgBrU7hzV?dnx(BCau->J+EZ=r
zLE%=R;UYp?ojTBH?)>J0{RD4SBAxDM!xaC4X9uogFHBGqUUE#ROj-rZ@pMk4RO{tG
ztY2p1{KC9{Oqf#S!^h%Fl7S7L+oh_#t6K+2p{O`kMU!A-k!O+E@c|TJ)KZ5Y`r0st
zaMR8<h1JRVPfu-^Ri~v(QRgUrEb`+<Yr-bU0^;kpV<x)x9v*7dXxlY&HE|(o;LAiM
zE)7ouPOBK><`DGR2q74T?_1xy68v?u$xzYjsuOdBI?j5?r;bh5DDZutSFFWbc@3+w
zzm%mms%n4w(xhsu8{c{#_i6z-@%3B%F<qNAzvh_k{l>?O?QNT_^*&U@$^0?0=T@nA
zpZaNlI<ul#a{}~L(R&xMkV1}jWZB7P>pVysXN!D!X4n6QHbXr#$YLNtK#>1#mqh;i
zwD}LV>{LIq{mYhLa6i8SVZ>!1B*un>5-Y<>{1E*HkOU0{ZFY$_GufAA`<X9%kEW)|
zExDeB7m8gjciMBVrc&@0yzs{J<I}NerEc4iig@oG49nb6SY(h{-}00-?zd0oOJ=Xu
zQTp1Q??Q|-N_YygLQCw8-Q}FI1{G`l>kpS|ikVFUFnMZ@mh4<fF;tZUuw0HsIE#&m
zjfTc^J+U~I(0ibB0-bc|g^(@Cd3#?X>JLS%yo(=?X4)MEEEDSIu2Zo9eUh~il#lto
zVOF+9uLkPQCqJ_D#VO!-VCE*>p;?Wn-F3lOG`HJkU;C~FdXSTE<KyDd^t?rwTn3`_
zHg~5)@|e820qMf@mHpYw9If189=(ICED#6A)KcG))vGHr(m4<f1saEn@P1~^3$ykL
z)lCEx<sM*;qVSN3AfHd7gj-q%sE(C^lDz1U<y<BNl`+MZuWahsNVCAxyzAMI4#>@~
zWnMW;9zwW*e;&)GZLhLBN01B*6lz|?QRc)2Oo_i@AUWmB^6pUiz05em=2k3u8so(u
z{*dU|j?U_F&h>BJ!<^U@=9ns4nEH*P0f%Lwzl2kHNGeclq#buJ;pgVR^Hvy-Q=_&?
z0FO-?qQO^_E#J!o-IAI&u|4A8OKh7)F^U?<&Q(NJW;jU2G)=fV1MRyC>k?uVQ5(PS
zFsQ6IoG~RCW^C+TWT@0j&V~!W!JSlAL%t0E89x8x_KoJY07vm$ZL$Hzn*NhD2QW(a
ztCVg?MBIiS&w(f<_wKHQP7F^&2(WQ(12YI-xDgQt=F+Np$>H}~_@=IG@<)aKMLCO7
z>UTU1g=I5l64eP4QdG|Kk=XRrOxVY=VA&yl39vwm^zB|N$Z~Ew`|xm3{pD)%<9Ha;
zWdbvNNU3b?K@au0KI<2G6~x=(`e1iq#a^ETrDd7yY^VxpRve#UWV^98ug7{<4|}A_
zStttXD+ro|ltzZS4lKrT6Vc>TP~uG?X?`u#hNvw5C3`rVSkj}A*3vdf%N)+=A`0z~
zQWUyUPQ+vvkqY4BY2b*)+?5hk#veq_oXj59QARXwUM<+qNQ3vT5QkH_oSjW}U`9<-
zZ{*G@WYau<Lxig+1su^}Lj@}PQVu1i63^5Qz~zVk*cvBHy-p{t*lh2`o?5joPA7W^
z0N$!McM%w|YT+f0H)+yrv+HO|9$ocW>}=jB)SDbN?&<(4Ou!M+-sNhVm@qF7TMDO3
z)va~pQ(b_noq|hgPWGnBdhjr}k@8zsOX+omUO*=macNshtzF(&%qnZsWSNhn5kAWI
z-mJ#Q8=8%6qm|-v;@UFXugv~JQ$b_~Y<VA?QW*4rY@pS}{{t-~`UgH<OvGu2+(E(&
zDWn<516Qh;JNP@R-22JMIqtLNuRP+efa*_DAZD;(g)|P<{urtVKBn?C_*_nsJdx42
z#~)_l0g14A5|t|8!O_HefVlnsl;$8y_=J#*Og#^K?j-<21f3;0VwXwe3<*l)$*YC7
z4*`hbGNZ{RbVz^7(G{{Um8zEVP2#hw_kJo->}P|s?cHgM6~$A@5|hAPZq;pro-R}4
z8oG!W#}YViQJ}I=`4AGL9U2yq6(InrPJn=gNo%IwgJ7tC);;*dAFgZZ#`7uMR2jYo
z4vL+~GR_kU{(BEstLJQEc^G{NC|&)uGHB*Z<a0u{J7Z_2lP1zaHqv)hlbTUj#<QQJ
zA`_+>z-2FFPoy6Wvx;oU_ro#zh!?Ezt63K*XLtnlpXg^ad&{@7bIpM)^Ev%!UauH}
zG1Y0m<VG`b5|EK_-dz&A-y$I_>o@AJ9UHvn_`ZRJZHaYAXSo_S?vWx*F{9u=!C3P2
z#itE5c_hG7cy>e8?WwldTJwX2wYWeBhY%E;`7N<T4ddeI_px-CWch+GyAssTM+e7@
z>i`W>a%{A|97?nvJGRU#f^lt<k$qTSpZxmA4VIRSKpXZs<gbmPZE5nv{wSLudd90^
z^GJB2y{AeyRq_%<hWu@G4!ZE(Tco_iZC5V%jSRJ}WT!TiVW2qomRKsAnQYTwA4i}%
z9IWbY1ulBG?Ok^!0}sgc1(_Ube+^fw)HLSe;Mok!RQ)>pj`3(CRe4b+E8B)<eLRL>
z0|ojbxN`;Smgc8jNtF?He2R1O^-GkLY2DZIZ0l~Nb>HETC;g_UXc%jUi@Dq=fwQ3x
zgUba8{JH*<t*<h}h4&paXxA6y|J*37mBmRCLx6zn{uL9&{#!GiqrQvrKXr~qHS7N|
z=Y4V$e+Dv$Ta(0B=tIvoCb*#z+z?s+6*_Dj%sV*jYqCs$3tv+!?v`AfvoOUrj_2)n
zj?<k*^YL;-X{d^h{l>CYOmSzJGEo$y0`e+Jx;%G9n&5jWbh?mBfKhPo=k1YjnRwY5
zp0^Z*9V0sDpTdd)bQ-r@!pLa;AO)T`_XsCw0sa+86FrfToCfX$`vFHf?Pp8!)AC4s
z^G5Oh`V34Hm&->ap{FYQUM81Yk-S~{MG}N;+y<hQ-SYDE5Y=rmRF67kj^75;e`c#E
z{l@Au^t4gsHBje&XBeK}p4h~;(v8HIa)X1J_TQ%#x`)u}fnWnWUfIi#rn`Uge;8h}
zg7N8Xs49%`HY9=MTb$3G-!i2)<c=}2K|*#Wa4K}u4^xeUsMuD6S$&q>U-dF1)rM+;
zMlsVUgLaxU4LHIpw`2Nt)yjwPQ9B)U&6NF?(q@koB_v}&j8yh;7<8OCSa&Ns;<Ymg
zF<w0)Sc@7iY26{3`LjIg)O^{3bXt630o5WA>C!IFe^ET4Ix7Ap-*E6IE~FA5@vB%X
zA;3}zTLlRjInDqxo`{DOlZ$lpZZWh#lkadG;g6rC!IxVcig7Y>w0lt}bS$ID_s5AJ
zT9%ikLyn3(&8{SL+-En@WK)9ps@R}M5SpbjHq>WF!ewwwR-)PgUkx!0hHF6$5?h^l
zgLAC1Ksk5|1J2@~mELb2J_6G=dujyq(<yqLBNH$bhk3}34l&#@1k>Dfl8y**V0*ER
zm-2!Q8Zd72HRN$1VLX3=l{cTCF)E|Z{FWp6kBj1(-k@uosS^f5jK;DQ)O&~F3RXBW
z=;P@TRa<`DiC-UEh|;aZ15bEn0To>={2>KO9<1<gu$gW;?N&RwJ<i{{1lOfPG)yUk
zbAB^0<+YPnp7`59To_+GDD@r^ScrLivzgDh8{FX79rzvJl2pHOB!QmNjj;Rq9Q;M%
zx6>WAtq*4aO8naxH`H_aY;M=(M%Uov*63ieR~cjtzDIF&cBMXo+lV?wH)ZJlqviz6
zNC!8e70d96qgH#QQM6OuY<1okMSqV-B_btOnO5K;o29*RV13`2js|5qRWR~WlnZ%7
zE@7ODqNorl!|R;`95$q0wsX)v81xvqbvhl9d+62frt|eg5~`rVxhWyX#ymrHZT{Sm
z3F3UwdpH5RaZJ#xcy>0V_O*(jMZA^tc@(sqlN1Z;SFGI8l?1iD<nnA3vW)70cz!L~
z`Nn$mcaz9naVmB$xsZh|Y6#BT%AVM!+k1*U(IkE`?=9J}4)^x3z3GSFSgd#E!ZsGs
zGh)*4(r1|Avpyj!2Xs9h$a*Q&YWRCQxmo6cvnR!hwSd6j$ZGDWRXcg7y5Q*uu-j*u
zF%j<dxMtkzKarm5m1to!jrl9OU%jp5!N+BlE7KFgCpCxL#h~<E{mmZvox|&?4dLMn
zZTFS7#FKJQ@<E|#u(oUMo!g^G`n>6R4+_oh^Evp|!ge((Di<uzvV}}%+>1cHg{=bv
z5{TueK0@o@<6`ipZN&rPUiW%XhmFc~#|-Vaf|?a}&(GPmGsuWk70}Qhp&c4U^Fw3F
zzaDeD_Mrjg*3%=oXEcu$qkg<0Pc2@e+O=6WYwiIIW@O_a5Vi2kcNXl&hkr`!f8j>D
zI9)}Nzgvp$Y#C^N6Mbh@dc*FuRt`i{Zl49?@&n*TUxpKNgGjnzpk-Wn%SZ=CLB@2i
z>4xI*_8e7S)wjH0|1Tm20a5uk!Z_o9j))zd^qtHN|EXaAdu5#Kzl8T6NaJR+Uo0;~
zkRUukKR`78d%z~PHcmA9uEvhG*2Xj}v<!^247B=IR<zdUHnbLw6ItfAI5Mcg-FH+W
zUi>g_(pRuZwHUE+6GZ+2NP=c_H{%$jFv~tr^y9Wi+(*hWGJTZ({Ne4EZI+$RXO}7;
zgVVl`Oc~R*T_2wtABSh%on4+^j~;gyYiDONzB+724~Gv|Y`Sm4bgl;*F7@5rUk@88
zUC)DLa?>eKwt$0ElU5(sCqzc?n^+v(_aM@2UsLz5%S)+@KYu3KeCkf7%9);o<b0m9
z$|s+?y&D13XZ4eVZ){7tt6ooBe41yzc}-o<Y12NpC+!EHhac@nbf4GfN{t?_zMl2#
zd~dh*uI(B+pF47<P}*HyzHgqLK2L|Q2^p?Sw%Oi~2On3y-XEU{leV^-o$g<2)83aa
zw~V9croL2b8BgOSw$)o3RC_xIuX}?z$r~SazFi&9{W)gVU$-v~pEj-?FN2q#9~byv
z&!K#s>}oMK-Jh_=yq<3EUcPrGN}XOW4qrgi>8=JouCCuxE_8^dwz|B0+0{vZ?_A$L
zA7hJKHBX87wA9X)^R`~^+%c_Fm9>_2wb}8qsDN2*b9q_4rM=~I>DYdE@c1_#Z436d
zyZ)D`kcajw-`n>USKsF>TOQAwVLo2>`+~I$wz0=SQ>@Qv-_JW+-!D(T*Ow*V_ey-9
zulB7uIi60>7w{>NyT{kh`8C&^N?CgKoCV+4`8)KG&xi3}{Li-!a$BG0F}_|?7e#sw
zqPy>xpHHD@TzGt+9$xLfU!Q6nUhg-B`=5t2S9rc1?<do9yB|_`KJFK%hwalT^`Yp#
z+rXWJyF;q>HC>D<*Q3xg*Y1`r-%H1|gy}9XcaMkpLsMPv*F7oey^U%cA8!e^sYg0F
z5rn^?3nV;$EOmG2Tu%Esf4sFHA<|9#O}tmzZ$90(Ts)k)z>o3J96X=L1F+)h%W2!7
zCtYoy^noWA+iKrO#uGXkJ|1%KruP%+DBl<6gP3PG{9O7QzGa&3*FF3v-A+3G_mkWD
z;a1MB=YFy)+Z<Dx1zjE9fS!~TIxoVFwN9_6lb!1oWP;M;ayehG@Wy+!f(?Kzeu3fW
z&7ZTktFOlmM4PRz*Vo6-C%*TOwWTXWR~^1k$0!A}yLbHk!rMDJ8-%B&W-@tRqLnS1
zy^JN-@r%joE0*nzmD}C-*Q{5cc2Dn?&-p*-bW;dNV1vyr<DU}25P!orMbzc(;I@dn
z^l9^LeLuJAZgp?w@M>&8_NZyP%Y3JFd%k~_LNtx3^g5{rring|PSWx6e0*M9OnOUv
zoeZWR@NImZAN1$wyaV9&o=c9vP7~4$J2P>0y-osOP=De!GV-l#z)aAk{O#85(+_)T
zc56XL2`RpAi)z4X-=}jazKgb#it3E|oKNYOjGfn&mHMki70*qZ)haIAlnc8}+q26K
z1%u7S1f9sEjV5!EgN#qFW!VgKrX046s)PK6&ki1&qem|ti=<O3JlD0>S#P}Q;X;qj
zEoC46QC@&Md(OR+8L&^DLVKz5v@|0e=X9Z|Y5~{d7j3<@Wm4Kb{}q%9Ab-9he@vN-
z#p!6HcopHn1xJN{I>cI=DZWanF7Lo3ccc`HQzcz_!|{R&xV4zE+HaFC!=oITb((SM
zwd%0aaGyJ^y{GDEEmxvtj6qtoDnaq|scg0u(<a|Xm)WLd6S7X~di6c!qBWGK)EZI~
z*5&lUYdIVCc|1A%6nsJ8>7_$<3zCFe%R|AHa<g3WC)V4`eHkFxqWpAJ0f0*@dy!GK
zn8>tj(XX-+N<6UiFp+SGzxHrqyrG(Y-DW*?)cJiW$waJi5=)YaCDK7$@Isn`Pxijy
zY-Fyqfpl&|wK%jn5OnaIPRm)g@kCC=={_-05)R$E=mhh=Jd2a((3tB?WDZtEtt`|2
z=@bBUmBR$hGMVmiFwacRU<{TXdeu~)3+UJrVQS3i%4=<1b26-c4fQDSDZ7<~9&HGK
z)q#bR>Qu#NVcn_vd1}IU?N)Z8taQerly6>gpDWl~7$@~~y-{qFq|iTCp^Du&Dmaf%
zBNr+A#a!*Nd9(JkSfFf8Aku$7<xw!+Qv?)&a64?4c%UqyNM$@YrPrRBJ}kq0bu2F9
zx}Kj-7D%#?@eqM|5eG2naq6&Wo)@T2H^jPbGuof5!#g}lJYWk%HcCsuTU+R<rGsEO
z?xc&=6AI8}6k<i4@1z~i*=ST<UD^nvHP^Hw0#v!A<tw9|32R_is@pVUe+r+~31aN`
zoHdzRE1%kwh$u59!J`zJNML(QkaLaj2&5ktLi*_d6ho$kBNI-~;nZX_eV3cSTIr;!
zdrLV~1kn?{mGf$;!i!B&t+-4KRYmc>N2>jTUif|-bvqM?mpi{RsSI0&CG3dd$-?+x
z?m^xFj&eo-DF|s|Y2+ncJ7zbVi60WKA2VL@luphfGOb+1pU+L83t>R-H>sR8E&FJZ
zz5?2hCoqp7I;g|bVsRW<{9RAbmAPe5MyaZ3b+wdoZp_%r4OSsLSa4&G{tk67vy(kx
z*I`x#EUJvf8&}B7!{2(PIMyNQNy1(MubW%t!Oi{IhG&W&fS(IMP7G)@eVO97wBVQR
ztmKI+phLf~Lx{KV!U9bk3)hiD=SOAUSyg7?@T?jtC2OQE-i)jO?qj|*Gw-83)7*dF
zUw)81>As%KsL0KFKvrt0K$TlZYdy%&gdxKcUM;-Iz<<9#{T9Y+Yf_J4s@5O7jPz?2
z4+wE<t5;j0`+<?P(2pfqnuj14-v+q6)BJKi@@+Og>FJgRZ3@^J`Ga>J<yM2)oS+JX
zGqE@=33iA_<PQaebgLn4srLI&seXsvR+FkE>#Lm~tG@?*%aNGDI#zq44w&5tigbz9
z-k4gWZxcYTu0|UhyUr6-vE>hIptxAVz4t+&vG}fKm5Q4{yCa({(g=|kHCmQ_D^IFQ
zoF-%y2OU%)qia2+V<q^~!0so`#zI}G0KvT2rLTT%S=wMaiejc*aGzFGVj`TiLjflz
zaRB8gS}*hpHLV|OC!h}oHc9>pqkg}d4|5x}YU)+_9omL_F17>uq-8PtvJr1)k{73r
zNW#_QkRMlXP*XWzCb+v)>Nk|5;ke9DPLn|t{8(Y(NTCKo<Uj&D>J6B?Ey$i3*F3;{
zZW)R$HJiB6Jpw4W!+AuYtmM{X%iG!7E&$iPw%MVzx%K(_QHiq1whI{#ikC83^ENOp
zdVRu7Ca$OHkEF+6k`7eyi+`)YH0fapvtDMaF&eT78ADW>AETahpc@Yu&6AajznyYl
zH_mQ`D>nr)_*^56^%4s}3~%RzVz%ljYG;h{tEIp*@vx;eNzVsJ6^}xmV{q^zufNc;
znq&j;)G22_mLolPDn+YuOomPFoD`_ky2bP}Poq%sVao^l4`WaT2NO;&cP>sN>f(kg
zCdc*kRQfA6Afi%KJq{fMvNN(vsp%I|Cx67Q90Nj(;|*NKyg@#x@swU=H3A`C*TBQc
zt|xDUbYRzu-#Z@mF={!P4yk0~&<q=cN=T6R7U||Hq%2X7dR%h}@eo0j#?^5_r;;u$
z#>BUSCl-!PbX;v1t6`;OVHUBd46*X!#f=4_UrjAcU|ca|b}fVozIi!8!BM(G!>6)G
zaAQP@GR~Bh^y69M8<e&~m?hv>-wiDn!Jv0UPsEY>)FjT9t?5b1ReJPwM$hz3Se{P6
zNvr=}6BSpd`c+<wwB`s|{aSz9ie)Syr~+6cR(^`l?vu~G?Iclv6p*09CX6JTP3&!0
zl%CIoXoP7%;O}^b_n{BJr6#o$M#d4brN)YR9q&X_V^{;-PXb3Ahcf|nwuQ5<KooS*
zk|KO4jqb&t$OD#?ChgbEg_sS^ZRE)}VC()O(#W!ib=)TN@UNOcu}~Fm@~;`hMdRD0
zm4Y-e0nezEU}Sa3fMMMmdW}<yJQ6@{^4~JMF<vT5nIBr33uSf6tP)bH+vQv>Jj*Jv
zh9ZT-)|FytEYndxb-R;wxaa0pobss1%`}KT4WZ<Olir|C)dkyJ?QVYed9M1NzoQOU
zS7xr7m#_6<|CL9oZ*od`Ykj+E%Q}y{qy+Pcx0#OeE%b)cR)B!dlI3g<ug!%&TNwPO
zHMX$kyB5;)8EJvX-xZG(A21bfm?b)aBcL3ot#ino7k`ksYEdj#sIp4OVD>u01Ml{*
z{k{u8Kz*TiyDsx~v5XgKK~L`^d-_OW_-fzL)wzbtdo0OyUQs6fBa{vswF8Nh0)8<%
zWNG`7kV;!wGq6J8j40t?EpDLetT6zsT9*g4N{}>u#@LI6*}zj}9}XF0k+?cb5C@G&
z_)Vt|DRE&pu&x|l;S&R^EmjYjJQbF#*2y70?>4vA$v~xS2|tKH5gd*mYh~=Sw4$JH
zh>ixpLW;`+8>^5$3GW9ky8Nex81)xYK;j^T#VMI~MfI|s!FOO1L`meVHRh3?LZ(iQ
zp2qI4`%o*=QsjMgU;5+2M6}T<Ph%rsd1N6M6IVG{W5V2kRj<ChYMacA=;4xL$Ynm6
z2urn;HvxNs;GhVilq;nVkeQo^gl%3gdY*dld{?BOnFuVQ<s7)#=T>37rpfq1)98_k
zC1u5(Jh@O$tm%d=PET;p)C7D-qqNZk3=^B3>{!F*%2UKl{w^1zN9cj85uS{{eoj-H
z2^!KY4<70tZ86^Ad9fmFi2v!IsVT|?{|BF5RI-`iJ7vdany$GOkW>)6;LKVRa~<NS
zBxX&)JF+QXY@J1U>rZN)J>Xykt{*a5eG9UN9OfDDy*;GRBQ8RRtrC6$LWBS_%`7ZS
zK_AV?idbS=OR-bNKN+apc71{1qtEgKjkPwpP33Rd8Ov3sUJHn*$Si4)$-W|Hqit(M
z+x-?BxGG48EcXfI8sgJt1mClSuIZ~J+IL`B723M;fI*Q6NQkL52+6>Pu_SdvX<)Ha
z&d9mXFNt>_x}{mM`^!f7u}DP%rAc&WV*xd_IIz1ago?_CiHYV*nsZUPG-dIbAPfbu
z&eYCm9kxctrKFvO`Z?1C{+93gCdm<uD-J)CNpUWt95uDkwa-*EHR_OGY?Hn{!`&lN
zIQ$q`&!KTq&=!Z8?Lg>>@o!{hV^CgWU&Mqm{4ORBBXYcsEUFwOA$}BKC+5q~NqGVZ
z7+`K`jy9JN-=HtFwbAYN{P4fAwBTa0hC?nmHD54)P#+KhM!|K)ACrgkf24F&;Ut_i
z%q5)6$|s~J(akw51ro_%1SG501Cdh_h}OO%HkPsQ?&vJZLmKC)4mJ!K@jv%cD{F|?
zm<OO0iqeiOrk2W-7H<M{_E4`3E0?};yn0A|r2bLBfv8wauppFA<u=;@Xl02Kzkt|_
z6_^uFB%!56+_OqgRw<aDZsq5e`^gLQ=n+woGd)-DcZ@0m+o36ciGu6P4a7=NNs_$w
zCW>7!pgD`mO(1iRD#ar~usgufX&U3Mci@gPt=NTF%eG}lnCVAR3jGo+K*)%CBa){w
zEf-Z^`9&$gWE)(r()ojnU-QR2L!PBk$s#p{r!Bod2pGho-fKREBAx%`%&eC@m`A=(
zn7|Y|&0X1%Aw$NbW>kSb{E|w}59XvxqyrID;jUIy$oZN0-&mj%`wd_zkbB^iAtNkv
zbgz3s9xRMSSmQN2?xP9!{PXGEetq-o@L=(j%$Exu6kQe4IzL<hnel!8NcsJAn}3kJ
zjc|18csqWQ>4)SBwtes9pOPC(88e!d``Es57&i9w*kRnIE6&%Z^z0akB7BaZTTv{S
z%J0&`F4?O*skaUAe`lbltcL)Kv>F61r)mKGHrOf6fD8oC`$olIivkMfU2A2=Qc28i
z{+vj)ihPysVHRDdSQxGuV^QrL+0Na{H^Jz%3isiKEgkvK!TcGgoZ{5L>ZraHN~&H1
zVyx(s+lI39-<hkfH8kB7?}^+QO4)`R!%bLc(?h@E*OVq0lF>EFb*hyl7Le>5U*iHM
z;wpbE<WdFSFBk*Cz;V5WK7x$!QW=ZqxVf_vR$yT1fuKpczOZ_aIh+t@tBh<}o{-LT
zyu$TXrN^SagZ+IK0ZW=!+*I}4wi8!uM;E=t6sya{$emX;Rv|@#`5kR}2jy4?b*(e&
zbxXMk6Aza+y@#WF!9+gt>n3szHBP|9a?Nq>uF0{smxs$IeCmok%L<jKQ#Yu^sC;3E
z2?<RQ{0QvkCM)3aWNl@xODS`o=}wkodTL7{FnwR62AlO{iM?mEj3TYcgOML-0=Jc4
zhz8=J#i!M~$nEqqz@;YGqTw4<Jk&#aEEO3l5sRX<US^|{Ueq;M+_J0zapCwN!APSC
zN^yvjiO)Q{`3)=%p3o?eLz_jySvl+3Qj6)&id3Z>eopbzX^l}%f%Vc`>nwdtWYY;P
z8P8HoI^Ow#3@}WGB5+I((Jb0-sknokbIG`Wd9`5tO2r4~in;@OC|zuRLRBdD8BE0d
zPi<bA^6Gp28p^X?^`(ySX2T%~+6w<7Y&PY5+F&NB&XAu%mWrhK2Hg>pLA0AXs3f8v
zOM*pBp{EICK;gkLkW-rB#PSF8AWJpsx2<bR6+C(4jM-%TK%`(5{O9IMjyBP-C7-{a
zuUrwYw!ATR<s)%E%+hM~fxU}@4hu5vO0O*8b(ScPbo|gUb*%uok^bC)Q!!-r5kywd
z`;!?&9d$md;FC%4JZFm;B%Kva*IwIY+T)*7l~b{?@o59p6S%E?w`=|4<7F-ap*85U
zw>MCL7Vf->P9MD}X^T_^!u^dB$c-|ySN{eq+=~}ILHJ=L2ptZCol;Gx0sa}S4?jJI
zY579^28l{F!Tw-Y)#%ll2Ui{XV=mWwt@$H~y`1w2NV#B^fOOyHggwClbeSHtoY+?*
zA-}?Bj38{4Gnl*em6tRm7>U9$i(78=^1bc!;`UXzwL!P_r$4$J(EPWIboyvA>=^6D
z1x}{*6`$u94c!v(DD6$OB2+3cJEUqmguj+_1<45DnT@iB@uG5%R1+Uopt8HGY9|bm
zpj}o5*v%{FNI3?+6=c0kAVo3gU`K79c`Qu_j5Sa+kA0nAgEKV}DCC?vP*sN}_rVzu
zfR)lT-@06$^caweN;NU%?uC7Uu4Fm<(l~5tVqdOXg<ex%WhtnM=RoI^*I&)h_-Zo{
zT87CQQp8h(ujAUZ4#cDXj!`=>;c^;HITvM7y1B0!5$(qt$J4>dbG4Q#QCc}USP8mt
z_o&!*a%tP~1F{r(@T!2Xr43!9`3#Hy^lViawf=EQ-(_QHspF?OQV!)x68!qQ>RknH
z5;B^(klMtwfq~QGkM=D7Vtw3uaqktG*t@9eqLK^c_g=I*VE1lyy?bX#eW~+r$&3-=
z06JGRaBwP7h_zlo&jtn&zWr8x&>L{j?@`CW_TJTsvXXul&F};AXM=uQBHHDv92W7k
z<)mw(vuP3IFe3}LfoKmREqux&wB<2UUn0$%t*KhHZ_ICHM|<`uJ^B!$Tlyb*R0c8{
zzM5M`c!q?vlTHz>HNh_f#hCBwO@l3s7dRY07+k`tE1Zv^F;{^CTF^3`By6ZGkBJzC
z;puZS^I`g`@X_sP@Ui0&xc0Hz$oMkt22#N_SZsFM#uXvB36u*F-92$6gR5*<b3y0q
zpdo`tN^sIWL2L5K{-Q=qI5TxF+j*34NXY4;?O4dJ$>1$0aGGyc{kRDl0nDX<Rzn1`
zFTaQ7od8H)y0dpt95j<f@_v8eQ+f&YbC#$)qyByOwl@sx3tZ+sn$MouO@**%n>ZU&
zYD$eO?mfiPiXn#f^5(%!nu&Upb6&!+%1_Elw`7UsPDYS?1HcqG#xC+gms<z&{LD(+
znS_$<ZxV2X;2bIcTpdq%NU4qr1G{ygQt%03vvYU`JT(If6sDS%Vg9RC1o+E6aiG4z
zMuYYOfvE;g6puu4C2JpyDI9<vnWynVOMBW8n*;1?%869ZAt+R%X|->-@JCa$ws_9?
zyE&swBx&rD^B_vs4#hFtx?u7Bk{u$usZDVe*P3JtI0i8fY0W~)?Yg#5P*rX`_6OoM
z9KKL>VN<y2!&vm27l=^Qn4o7eQUg<AH{wYSHSWNzh3CdGRSnqa+A-MPRN)7Vck|(P
zxaDqtV}=}hb(M-c4zh=Sx5w{1194Qz*lIvI#thF9RxsTGJWrZEA_LVnK4xH)R;)MM
zg43uPx<<do;AT>aglQj7{b_Z{=!`L%SMaN`Ol=nt5$yaGzma$tpgqNtuU?X$58l)A
zTeG3kk$gYym}dQrv-XpVO<6}x2}LvN&4r1{tr?9;e4Mit_Qa53`NijxGfgl7+C-T*
z#WW${57d&W8Nb3F<a)T9=Rk3YMhd&dm*Xsw)f{WyF@6Ck)*lWR-4j$P?V2;zE;RKN
z^-TMdjZz)R4QJO}jB1t>vZanPS1uh`1}d}OQvpE~&r)!a*2KJUFhOa-{D>N%o9K>W
z;x1m=JUFnyHrnQdk+9!?>KXDBFoJ*9uT|gIqA$xWsDEdk-djj-e7{F_wLg<zcwy5s
zp`t8TfH|=yh@Xl9Vhx1Cg;v17I_5TY2JcisxN~la73fXez1p^r9hXbDl50^jbG2hS
zX$+%8sD43KG!QQM48e8iN(Mn1>WM~(ThVUM@T~1N-Ryk}jRJ-SfJ*<eR3suS2B|7(
zw2e0(rLM(mleXX1%e+PA6u?fa+p@CmMS#`H{e#f=9Tm-WL0NX$)=>*8RM~_97p^X0
zwahqt^rC^^s_o%|c#Ukk`3+t&Uo>#>kX$iT<}w|$+^^b_$^)u~npqYJ2u>W;g=lP}
zxu#KD8g6G<7%fL0v^JItX~E4?iASaI?V69Ea0OP+4`Aev7)fK#?h)^>7KAwq|6}m@
zlg)P=?VS`90hI`B%n(;~ZS^@F9znH1-IynBmzu@Pir&r)f=S_1zBJ;MuVm|GFdC+$
zL!H`5UDJu+5pKvyHN^8nHa>U9z#}-vMM8g;j|iy4j0$aPxi8$v<AQs~!=`cvM@Z;Z
zcac<2JiJ5e7VZy)>9;UfIh!M`8SWNcC3>$uQKK^g{eb5O-}yQ}@{2aLiOn?-atH%6
zsT9jfNu%QOuqvS1Vs{|#Wd>o0vea<Ts)euP0$wofGqM0-rcQ(Oa!i4RSfq!@hB9N8
zrb?eqvFm5z)n|;0WZcr6G<KeQL&GkNu#la7!B{(6^J+fH^ue=QFMTz#a<te<MP(4h
zMb*jFeK%+MgB&eu(KvGULCM7Sv8gGrJF%6bOReI!>2Ylqx4Gt`>8sr6STE|#h_^Ec
zfwwCuoQQ2t(%)httwBB@fC6KxjLNIv!D;9+<#TU!>Nj>Jpzaau$=7pH@7!{#*pZXf
z+*}Djq)!WxWIS#t@~PKK+>VBO({W6a|E~9t3l?%fSA__5LHRy&s!EdFT3;|K`njqZ
z_)T(hKFpqGl($!_oXgE<JN@u6QP925;b2+(G)<+iDdaW(MBV%Rm%ROz>Wy}pCvKK7
zYPuBH!7(9JN(wn`C6Xl+%uxKM(m8MR{?)U>!J(VLEAo?(qW3$Ql7bWRLH<*8&0XIw
zkK88C^o7z#I!<a79vV$nq-AC0{ggxyRNe5?z6PGeLQ?8C=+(M4)1Tf>eyW)QJ?K+4
zPLEj?$;ik-EG!U$E%V3^BZDy*3THz<%dDPVkcHi;G_<XgT`X+<^{%CiUzWgEYohYP
z^Fvurs|unjY?6>te!PXe<PWBs?Ivs_yZnkFSvjGwR%zi!d%LY+7fe*HS1Q{Spf6@8
zbpRxUe4`7r1XqqpS$WNWks$J&493Ae(SyDD_683%ERhEGoh$^-y+*>rX^!_1JSxRb
zKD2&9S_9iLAgj+<P2G}Yox+*!LsjY#jf_Q9XI6ZjYe}&>+}~Ao#X6Lk@<g!tM4p!Z
zoAWwe7c0O-yeL|=4ppXS5opQZx{f{kz?Y7W(EzmseB@7GR$RiWNwbfESjF>H?1VHF
z**rFtPzdgf7DF`tGgGE}TD2xgU!Vpn*D&y~Y`EX&S^j36O^r`l^jjZP+BK!U0fG-_
zN{(e-qU5}EdJ}2`=1pU%cJFVUA9yDf7n0VPOEh*?3Hu0|g=>+he~%YE^SYKBjrfuY
z1IwTXu{)#W#&54QM8b^b?kC9ejJ=1@HU2s>N06s*VlLuMH9+OwZpB8)(tC(H&*Tp#
zjfVR%ce4~VLCAUkuyz68n8z|((I$qL%2g(rnl2sEZ9aIS%NWPnpJC7BETJenKNx>l
zvy6Y_F$~pFSQ50E43XG?mXL2F6V7R_e_Jlq$EoOu(9ygzA4lM7Y~dU-4eex9>T5jK
zSg|B?KF&9nn2dH(*2lzhzGKD7BQfT&877s^$DR;>XI+4cUwfb;XOCZ6Yz}l~P=y=u
zu@CPIpC3mEWoW{;jg>#$b_w~3o0w}*&^#GLvaMkl4vZ(0o`Q0BGtlHDlgr@FlS$ZD
zBJD>jPYthLt#xqP^`f8jA26BLZSqE8(Qwi*7cBx_H3u$j{$3lO=CAv^Yq-s`a>BMW
zWUY$S0mp5<9>M!b3WChUmHaJ5Iy+i&zv3ulx~+)_3tPpy8e!!HQ)X$1XnX|0fhHP`
zpc{*PN3^)KkrpZ_Uo0q<SRi21et~VU%Fxl=<kw-mP|rk{Cb*Ll!vl$5R>kJ3nf}o4
zo$f$QDVMM~QUQnH?Vxl7DBEcw{vX|`Pt|63DP)S}B$OV4a%(~3ocA5Ko482`Ey#_N
z&o!T+&@9Fm0^T>rZ=sc*ko9Sv3Gy>z8;YdW9M`M8=G%{Uj0cp4k6P4(0V}9jCmIkF
z`xk8Bc-!i=P-~WJ?ko7rS~?D!W{{=M6#NTBZ25wnh$}x0JR`ypmC~-o_bT}JF<Eg>
zrNxWQ9<Y(lgmDelU<KpjRk%5upE6)WoQA-IXKKz7+<qI373wC=XOuL0pxEpAy(!yj
z+7#JBwyo@=U4<8+Qqg$W!X}2G3z5<KqD5>FEm#bvOA5wxqz6eAxS}AHU6Jb^UIaNL
zx`;C)E^x(>RIPX$p>jd$AXW?{EF)mPMIfJ+qdya3lTed4PMQf{B;ygzp|w~g#mGq=
zo6AY9Fx&h(x6nWB)EZ41PB7BSXuN@J`%80UL^kbj8urn@N3y|f?I_~9gjU4R$Rr<~
zg7HNSVS_=1XaX|qM7AL5Dlvr%D+;DirTp1AQaT4R1ix!R5i;;U?@MC;u~Z9hu~Ko}
zY0bfNX~rj~oO?R=n5<e9;Ms@?#3anh=GmZ@S6s#B$L_nKy1G_2MGOFCl)5rkU2Y(d
zF*pOKYxV(9oZ{AuUV;t`2Qo}`9M|E=BC`7U6?z{u;Sl3o-BkN_cFxbDE=}`(Z~Y(!
zMM!&$fKO{mSlKSkre8sp`{}Id0=Q{u=4~9~_c&b&y+DC#PTveX{6jK6Hv645aiv4G
zR;Cc4vU!X7ZET?lx$8J@s}hl|gzc@115O}mGo~Z4w`lH&o}Uoz<NM12pmVF-uU|<A
zf6<L&r=Q)OL^__bqk(Jb?_(7`v^8!wDPvks%WG<JE%4I!;a%schhi-mXd0CV82*A(
zM^U`(GW~Mb+wo^SCkFc?98!sh4_b#VHc!y^#xa@elnPAgtx~F|sYmMp$#drYV?RLX
zz)%;^W@tNy->*|a_yfl36Gx!O3O<)iGjiQpe9UB{%qldEcA19hMEBCeMQzELX?ic`
z@V0^EIP@Yi^J0#E*&iL2AlH>?w+YYY;iw(omeS|#z{Oi5N$sp(37}{o<WU*j-K|6Y
zxAMXj9~VD1EVl}*fDScpXcU6P;U{hQ)$#J<WZ$L7$K#pJ*cT7od&^w4wR;K4hsACp
z{N{6B_C8<NR-6*mHs9vn{%8$~)v5f%1ox%P!{P<b-*op0E8@PplDAcn)`161iEMRp
zvh3AZAF4CI%|X$syDA@N(7yT(d++UcEs@gM5o;ozt)I4fp3=Gl1ojp;tt7=RELcl)
zL*-TVrGctD$%^A4H*Q8#9W=n@j*F5IC^;UTffb58bI+!1LEjE-$~StesoJZXoeQgO
zCfMWHgDD1Ph_PdVlLO7WCg$`X3=NH3EBhOWzopSlS};3C5*=$6%-MwH#Bifo(~=A6
ztn+<a2WsZdJ*hd0!JpN=tH*}QKy=maigeFrauJ<-Y9U4Nn;+?Pt|{~DHi^^_#8$@l
z%-ws2Qmp`#t9R<8`bASWg27jdkZ&ZtMU)BfLLIfI(+!kYBKg!N{@k-|QBdLrwb-+)
zM6Fc6S5?oWj5DmDuDF%N@~P-raTZ|NYPQlxn#WZ4A7X{Le~_Ru397kB0wo#?ax`zH
z?C90O!ZLp@dS=`w-a+7mo)Sc@OYb&-M<^h!T0_Puf43^gJ5W`s4cD`O6vO#J;e5Jt
z0WCXi)i1J&(r*96L-GgHZl!&|qG0vBwcxNWy!xAMz(UW)8llpg5j*<<sQ(*~_3zTc
zXFae=2u;Sz2@(ZcAyc!}mdVtzYBN#3^+T1M>3bjNh$-<;6``9Od|sNuvCW>5kCW@v
z#0_Z`j#A?0V)<<f&!W~DK}9D@uNs*7sSshehE7oCr!R=sN8RA{O;4mxv6=$5*8&#t
zN-e5&a2{BBa<OO;iY}G*NGVA_|LLUMlu-)ZXpibf4v!Sf`*^9NKY!fdwA<4BwhB)j
zL=#!I*WDUS7o(%T^&bK^xFPPdd-}jhs|B@EDqc8@`9r|qLQHilp_s*scB;?Q7DNC>
zsSU)HywB@Vsku%CUN#BvAqOx6^D<<p6W<RTMdY0pvQ!cm!zj0(U_@=@!njrp>X*)s
zW}*TLH>HeW^%Y~@@K14YAXw_kv}L^&&Hw&f*H{4!F02DnLqGN)HIxW?EE)QXd(F?J
zhy_3hzJ*q?I~KOuzB7G4{p^5K7)76`_E3=%jE!5x$F48LyK`QW9TCm^y=&4VsK?_}
zGbWH!u?cvxqA)nIGxBFv2M4}jU?fVqDFymRj|4E=DQ58R&;k7EEk`zlJP$T;8ctdK
zDz0-T>dB~a!KmD5#-q%Rb$xS~<ZQ9pkqe%Ri6+r$WRY?%n?f|(0${v*XT$Si?lF4m
zj!iZDQ|`Gn+m=y2VX^wlGq@Gx?hg@}mtI9%T}#F{&oA_`YIt(P%5RYAD~Gc^Qew%G
zA|LmuSCjfo5bZk+tXf%W9p0sp-P=OqE_JeOajqeIKW1V@To+Rc`tMP=(otu=zW?y}
z+Q)!PqSTaex)jL$orP9=N}^0~)<p{?B4fMfLxfT2hOC?w-goX;k@>d@)G}ilH{dsW
z5J>eF3HhohiPV`WpVk`<S-m4oVit@3Y(?guq2DNNTos2%7EJ!NyXrr0ItLIk&}E$%
z6x|rK0?0o<dw&<6f89uv%mul^m1aUQS8mdIZr^1_r<O)^XI41tEJQ&K-3o{wU5b#3
ze-A@TGvZ=jj1yJfH51z2R7e@KI7;i>2@q5aENI61h4u9j=7_L7E{eK&-2(N6Ciz0n
zTwT9@gSuI(w}H%anz`y3z5jkS8yTnJ{oL254@*7POXN0XP*~6D4XW8<dNpo^W})?C
zZ!qoH`$5)xA8pp)0O{G#!Ep0Q`d|)2R@E5UuMaa$)?IeeGD#<Dj92#>I-EPmmo@sa
zDLDq=0!Z%V5JC7Bh2~-ZWk%>m^Ia2p0u$KXassB(>D(t>Y?rNWYi&XYb$%b(l=?K_
zs}Q52!Jq{st?lA7OUC{AtA$2<&v@8;MPoLFX{)NC3&@iiJgmY!!Q-V(8;G|g>8^X1
zk*h<hUR<*MxVwBqKk$qvX#N_1t9kFwf&}yId4_R8u}<AvK-6MF-2CMF#1(D(dhCRN
zA07uUvXN(rsru&JLH9AV#3Bk{Jg5x9;VJgA6=B=(ezwtFdE8J_s}uvc0t{B4+eB|B
z5tz&$H-EY4AtQl4ZxU|LbF**G!cLVL*cY#I5{(asF%`_?tcV|6jH_v<nBwhjTy1rA
zF51s^zY-)D;&!T3h1yYZwZqp-LqGL0mc4n*sKfuNky`SigQjQSpoBJKMyGELkE@D;
z-2$((t>YM#wPj~7hi|7F;dZ&KgW;$@-s4-W3`g&bnaPae%PiIxsYY%I(@B+ySL+oS
zXW)%Z?%nn*`>C|hriM23{{S{X$-h+vTYmbu+}KnHPw*)hF-F={oXTM0CVM`1Xf9?e
zy#?v)Y#5abhsMfPz4k%~t!Fph3|wc>vz@_S?x91W8TL2xmML%rbk|i4fOCq8yU%el
zHkTcmI8dW(Yt{FmoYbs#59(DMF501o9COubLOVFiV&Y8payX8+W|?TK9O0EdXzH@>
z8hJ&-Mb={z?M~{m%sPiT*}bKrpeYevYFG>0WZ%PY9h+b$P3Yv9=qr0kgytFyonTG)
z)Jo1?GmG_659L(C))pdOuJ-Z!!%l~8?mk|x<w%FdM)$#|kK~}XBBtptG34_3I+%}%
zw-2qtdEiihVq-L{M=YEcvGE!dnmv_3bIyfZ{SdQRK<#6iMlZ?EVxDPjIpQ>Bdt%8z
z8IV|zJVll#l%jJRBrZF#83)fnY(qk)^nlJKAlbaX8!K}uix-o(f_Vqf>EzQYCv2<-
z0Dby~14}<L<g}|Zzs5&>>^q^IZ9mnOu6=jh>QQ;J(H$z|Q$NJbA^FXri{;i^q8t?2
zyY<RPE8CdZtjUqhe8x>nz`V*L>GrV5L<<;MTsLbA_{7-d`B5`ojw|UL;$*SD$FLW~
z#p3FVxRp@GE-97|OU8`S%WNn<cC7+C_B9ME^O1(4Q9%PZ<0PqeO5hGNMt}5*I_3w?
zskT5?+s0EH3=VKI)g0ZFX)ad714yS86<>aL(Z{Ud_0}0*J<b*p!AVG7c9uJojCIDc
zGzEpp6yIwkvoWFkILRyo>x_mWX22lB{rg|v>QM0CUEh8rb}vPlvKRaSAv2d7ab!TI
z*>9{vtB_K!x(b9I{PJoogFn7v*ig_zPN;1w%BTjPr<9*Qq~pQJr+U;<<-N3`K%qI)
z!Lmp{sP2+URr{^5|B9&d5ekvwRuMMyIw>lZz}urp#`W($bV`k#4VZmmZ;&{e<utQ{
zcWjoULA~kw%Bme2>_yJ1>B5spnp+l8fND|;+F5ZyQp=WF4j3pk+vqa7pAIR`cK5NQ
z(8(rxz)k~JWAXJDV`;U-?O(?Rq)zy};1aPE_dnX)$xJwgHV?H_H`9vKnMLqiqAbAI
zxg2J`azUS_P<EzWCDxZP2cHR^v(eo3BDC7}tP`6lu5lc?7-JSs1sSbTS+{&ll?ARc
z-k7#-`=Q%8Ac_l)nZ#8Ttxa|L-j`htCGfvz3G0!~Hs=4UseuYtOt^pl(biU5vZI0P
zkZns-8V%eKe;>a#{#6}@#+VEbx9Z^J-i!;p6pdJ;g$9S;>~ZbpH#!t5N1bE99QyHC
z-JYc{0_0P9Vhx)IJ#?Nr?O@5H9*iO2_NC6}IeLTt-mqXNTekdgWSp;bjqGUZd!H6`
zH0$5bv$8m4({+|$WAa%-@98D@7_CAHvnP1!$pv48u3=Nm)8RKYDIY$VBNZW36rd6k
zcj{9)N!9gwXJ`o~P?{E8Njc(Q|FW?Ov9P>yW|wsJ+qL>TRqEPL4KB{PiOy0wmM*Gd
zfz?c%-(eUTC3QZIn=ZRfK(Y>E@!)a@J&#<as}MA@+0h_5LCM)&G&`Br>L1<)k8#b}
z-pgO-!`_NUGl0Pf(o+u#FnE*$djU@*9cO`W4GHjyqYm|s+g%(P@o}IRF67Jh1|P!A
z3!YGgwJiN*x{IOCjW)?j2R%Y3=qdD0*P?-+o|gO@*9-(tRc%Tedg6HgQ{$V`uVN$L
zq`P-EyHb6|vv`z6q4Od?0bo-g<7rpzCy;FlH0fSYc7^l9TeElkwBwO12lNFM=Je_e
zwOitB%+al<oka<DwA0$P=a5P*6x%B(YS&lJvlXyGwKdozXRl{h<oK96B!_yj*U#xt
z=#Oc{RisGCx*;E%C*-40EeZ|F*JBC26CrohN|E1vh}e2|oV&w#4(_Vs`{=yo*Bn3Z
zdFm3o6#%jT${w-iiYTe5V+NQ&eN?yco}EOIA-6j2K^KoFq<g&hapmN8eY^FG3M>tp
z*XzeNs7gYqATxnt^Rf7YM^DWh4DuaO>S?1@vGqCiw9&S7WIbqmh!4)SSphowbpFOV
zfLaHPdq(-H9jd+VNAE)KkGke3aVI55(;jT%;^QSzDlDSdk+9wm-W*Ioayi`3ec!X|
z2xHHl&{t@UpKOb($b`?ik&^FXuXFsb7rR?!Aau9+7rT253i@LZj8wz^@55FT=(*f7
zm(za^eE^P0rKy~|V7gf1vMSaolK+W8Zys5<r6-o+SWKK{GqGN*;>2(7K2oM)vDR2P
zR7JwN4h+$%Z~WzmBF!L-PbNx^!>sz<bj}G3T-V*#nq>eDDTw839(EK4&W}gu_TDwe
z={Z}DlH)`&RRYPGT6+nj{?$7z(?Pp*b1Q|1MsK{mzPDWvgWu`Q_9i-(!<ZXy5}y4*
z5^o}{1`1a`Ic{z#Qu$m>wGXcoz`fC8o;`%44ekxW&N;zLGs=882QHV%`w(VmqUx^W
zAd10oitn?AHTwK^&6lar)OafUBuAj_O)x~>c-ZV)YRU;Etd7pH*f~gCNY(2->3Z66
zUastnxt0B}D19;f=ai?ZFSoqs&0s4}%fhWRR|1*Tzq$2ULk>`B8_!9XLk45$Rho=e
z_k2FM9vga%F81}-N#-*UY6Nw-u_k8$ySL$eAURs1@mDP*(gO!p21ctKg2dTW9K7VS
zS7yg`pwlFTc6PunrySe*?O4Ui?v+WoEoyMgq9F#l+I2@1?Oe{39F$q(fdf0F(a7kS
zULPDj?K-fFO95F+U7C!30l7HVDjQMl1a?RhHEB(lp|hkb4hrD##I((cq&b6V!Yu+w
z^JCFwv78C$SyyqL<#hULLU`k_s5Q79)q_x4>K@oyxrh{%>rs2vq5W&o@gWE!6UCZ<
z1>AlDk$pYu`NG678cnnklMsk80S6W)>(QIm6Co=ws4{%$CUV|T%Ndg$Q%LXi@Ud%q
zyH#deJ2`QQ766Nnp?NYpqqJ`<jOrf0q%|@%ISX5*IY=^9pO4;Avo_+QG~&a3F=?2>
znum*}R|Fm~sd06*Zn2qnz*oyXw@fj}6FIs*rbkPKe68hHKE^R=wy4&+owj~LO6*E>
z#8P|?j-$0B2Aa})1Ka3j;NTvg?Vq@&o(8k4e>R<)40h|Q`IL|k_f3qEy>dR;w-#x%
z0OzxQvx(2_5;8<~FYB#-dy|I`&8&KVA7!%VvayRN_%nL-cRqnk{fMh$bl{MWpz+F{
zxp?2V3bEKY)eX;%9V!}+dP07UIV(FU>Bbz~WRlim(E@`zjsy*K2~@x<$G!-q1a^Ng
z#Jhy%F^C7_@TP#8YqjpfQps%e$Y)@(Uo6K@C5XClNR{Bsyp$zsH*=9=dT&U!Zc*9b
z+=+Gg#Dv!4fgTP{OEK<Zr-zzwQlJ*LP1;Qk$FqgKK|EFY^5g5BDj;02+}9%^y!4@s
zgOA7xGKs%3fsAwnM6+n?ZfHlAYPnVZ*Rsn=>$+2wdZS*gx01n!s?N6Y_1+CC?avlr
zOcGuybv|$)y6FR89nPfH1(-uK?E_LVv#Oc}VZH|mrkjGH19h!n&vey7MKuc7azGuc
zZX07JN=J6EwJZgjwv^G_w%0_57ua(=Lw^<B9llU=0Bd4V#>f&rf3VT>xRo<maZ@Un
zI$#6)Yi&GUc5i?E!72RBo4%aF?>Jl4#%$m){nz4br+z(VU$|hq77+o^ochW(XTHC-
z*RO-aFxVek4kUZMyT4a#z`N`F4`a%w)_sx{&bZC;choCiX3D{G0K2mrcxEp^2sZ#^
z0+AUi?=LYmo_e3X+j{SxzZ8T~%#sKDP?S~~pZ?uO3aJsX3PGJW=UvVw_6ZzTVtd;g
zCj2EZc}AUM4Z(9y5IZuIP36kQ)iGPzCiAd?YwKek2XoFL<V<hdi-z;fR+8D;ed47J
z3aKGU`tWj#^ev(ryP++wFwPtgP+R%5-<iN&4c&HVlu*`3<?j|{n{G~?vIAxCmKBDe
zZm5--&GF`FunouQIPkZzUwDGN`k~DZlR(S~bp9eC5Xe#Ani3=*7NPf*dj>YM;kZ>P
z4J#6<ezU@cq<ddl)3ZJwN8vaKZ}`)?GL!S}7?be9BpqvNoi9EL6aWnPYViIV%wSI3
z8LA=Tg-dItaUBto0yDMKz_b~VS9;45og9N}aSX;~-dK)2Z>BKpYH%!2x1lH2HTZf%
zRw813&I#2r$BJr1W~NOcavVdKaJUf?wo_Fi*SS{yH_>BZHW9|PHB~KE<FW?%n9An)
z!AC~}BE<P#?LzTP?6D^Ka4&ovW=Nw}j;T6uv9K9OJoL|z-~13DklpN`A8lr`nGDH6
z<Ko&j;5t!>_M$O!O#K4ti=M&qyst~WQ+kYgvc+-SdP^69+CKC%%Uo$e$8hbZtVr*2
z6?!JX&`f^>`i`XGqlWng;)qP;vs~4F0&cWc!ui(E{rQlo1l}a-uS7CgiBt8&zVNX2
z0#*AottyL@tO2mEfc1kU5P$UyYk(9NHV*t7Q<NS}a0J^G6;|#mUsA0^&=4!bV6(}^
zPTStcWzT{-JauM-<80W>)}#A`RYG&hiBf|uu>Q__-;hX}oO#W8D?S)ik6}SMDp#0S
zKIldiPE!!OQCG=5ZE{=juUGFx#D7z_N_hWN#1Xc)A?{dQ0SYw;hsDu76fvy5rz0mz
z_{j1Zn{SpNabAi2j~Fxo_(|o%qFIQ9s&&}%d>%G#`7IvNgonWrhoTi|IVMcTAO0dR
zAj0_+$3J3G`7|k#kfX9kds7Hl1Q-aH;MM3Q>iv1W<c+x}OKyRNgNSmViuO1N1}0~<
zeyA}ocrV1>mcG{R&C#Dr5a2*B{UAu51yn*0i0OgGduc&m=^#R|nqpO$%1?s{ZtuA@
zud`F7{*5Jx*)u7b(nyVt$~OgLNazXfEvF8tm-^wbJ_%bnp$f9Ep8yg;$pJ=9BSaV}
zp4)ob6H}iF!WT7QcUbSIld~*`m{qAtvjNNV=2BW7HXyh9t}32sv~L`Orcew)zc{j<
zozd-r#tU}$s2TZCo$dc!?eL8-FMsB&7TfjIs_U)A4M9v9t^C;iEAuGO)FfC4M-<3O
z{haHN_<Bd+<OB<99FYk9O%<gDckS1Sb%5YAj*!RQM{=-8UCVc#El+wD71PEvhOQ+~
zSDTP-oax{q12a@Kd}}Q|3cpjs)&jV7YA+*~M^8{)`*4CWs-I0q4&+TFuW4E@8l`%p
zh=~qY<Zc~6X3uA(9CnuD=x4B<tqG?1kZ@SA!)j+MI59^y`6^6n0$?_m&k}hfb7jks
z)&K(M^?vtmx&H8=o7ee(1iSeF!4gM$K4NH|zNSWpdsP<Vd`c<#pw~`bvPr75bzBuJ
z`SNnk8}f&4O0r&$Em8kXm^Cg39r^<v?2OcJW#)?pmx>cQeI&HahkcUh$__+_RvLcZ
zN-PLDrNBj*RwsXM)IQ~gm3~RhubQ#h1HpxmSSrqEUbquhPOaYZVz=`M8y$4#Og{@_
z#ED(%NTpY^Mv4l1R6R0A38tW*zX>q**;kD`0(<kwOPa%*%8^s8*=Uj;aLyC=CrkYV
z@mz0D>47937VlV8zb(!}f-d`N_IBnHFWQx0R+H<bIv19JYfGK({!pY80UT_$+Gg{4
zcFpH&$lj5tZ%jH${uHs>mtcuLDeP~apc2w0NGipvOV?oCqTt^4?l+(AZm&Pwf>*yT
zmRx(MXP+Kx2f6J5rfiK<d)X;%!sct!-QYN@^9V60jY%~A&`W}nnw(2R+6P?$9y`&U
z+I!div7@hwid%&BA-&nRoJ8a8J^oyhWm12!*q`~XPA>7f9J-?YY0f}%r)>$maAv0-
zP^12OOW~7kgSuXF3Rboh>Ve;FKiE>ZDGw?0;U2^%`x6mQ=$Yntj{ta7rx-NpS9*vS
z9qphpkn%-fe`(ljw$F!!?Khjs*_wuAQYiW+4%Sk<_AC}SbvaB&?IGCDkX#3?<E1ca
z4drv8w(IcGiYn)pE!pAaZe*h>xsvKisHxsNEMKWp?4wC%*>tG?eqrSI22T4TI-2Yq
zIqZ;Rd*yT~mN~olrhGQ4NvcVMZCCb5C)IkvR7A7o;L~id^OnJ=^fzzczy9U*a{tj5
z(|n=2#vgInHW%fa$n<_lgjC08=fL~%@sr8<zvqP?SNgRr?<B~+8oJ>2;D>sW|Ng}C
zhTv8zWdB6@7F!PHk@V%{-g5!}1?l~<7K2J8Ua3TH+lMt>&ciF2Huvfzhv4jqUlHHS
z0?2oc{VmNkB^Drznj4QS4Yv4yPi^-?e)rN#@t6&ZIU=Y%MXXFE#hO=j%32sl4pLVl
zQ-aS!#dEd`e9I3vr`LNIZ#i<YM9!8wc#v7UfBot5tLys@tR7-y`E-npC|~zC_}7!t
z9qz4j5i!pBT3*<hJ{<;|?~pTgv1s|4Jfv+b)XX;O-|k7pN>~WK>MK45{MRo{mQ8#d
ztv=;i-ZlP+>{aP3Uykd&FIe5&6BfsrI}Y>E^r0Fa%FfAd1;O(E=G{k8TeIVqtM2Ky
z9#J+ioVV>?eeZF~_a2dn%NHMK^5ob0&Bw=b{2`gKr>oD>Y8P~u(R**_d<##OHlWZ-
zkwY%CN;GQkD4M4?h>evu?dt3KaKFhm|Ec$BpMB%V)SA=k^s2RJr|bgnV4ZNPTC9Vr
zPU1;y(-WLk%}%8@8p_8%hiR~<6m4C?wpF8%I9<KbBMhIMom1)a`5I!qMOi_j_otX`
z;EA=S8k)O|44obYAHBHOkGU2D!ma0c42=P`uI^&J?^XwjI8vjSDSpkCSZ16&eEZJ+
zim^kniPKJ!gfysJn#KaZ#7JImn<PgK-XvXB*(5hD8QrGU)#oZRpA5j(Jlv!m>KU0a
z`_HI^p0%fG)!Etzz%=Dx6+XYBE{zLPIeOVp2H5qqh082o?WrnaAd$5j>D)}L<LqPt
z@r-OTBcA$}lM>-TlD5~x;}RPtX$3&o)k#IN+9q`|=u)anOO`5{X@MA5>M5^cQIjm@
znVU8B)8IXBnll?D^~)X%4alL>4ama)#JQAv#&H>tRC9v<P$zm7vE6>`Mr+TVgbT-=
zp&O05i6q;x;My&uRXK4O6-v+Sqf<E!0?^Gm@iaSpyz3m~Q;83njVO05u@Og4z9Q8t
zSd_{~d*X+DaR_$FA~Q>_FqPS6&eqmqJe->YGb)VWXgbXzs>YyVno=}PL8JIK>^GV^
zj@egLeW5MC|G>uGX3q!lEY=ORx7@pGAzjuB@`0&dNV!-z*QNNC$CW$tK06G>P*~4B
z$;$H9lr0=KK9`TXt>5^_F$F$~UfCehY;>u;`O-ohd3+?1^_GjVbytJ|J_M<Jz?)^u
zZu#|V0REKlDnjJ6a5b@hZ^K9FF-s!lT-8CJE!bJqSbVlq`AFfMy$s%iH{`R$4$e+!
zeYXFZJ62YPnjAAb@-9bf(rp_G)ncO9mDK9Y@n9@M3#!IBc>R1(hpn+Cux*GmF+I6h
zV{wv2lLVIo95qGD8L@+(KVI%!etoWz-jz$V)r^ZcTY8F?lVi(-+uk=fb3uR~qDr-X
zx%EqL08C74fq$MJ)fc$bFh`djT|XOTlu&E1J#SRR-c}O4IBrw$u`btNYK{7G*e$=>
z-rszrxiq6s=R-0(>cw7vuO#B>D2nxqK0RC+gvNq+$iSuvZ7v%^(0zGCaFBix{mVWc
zcHSL$v(ZEP;4ZwrzP<hZhg`aB$Qa<cLnNsZ3#wLqIKA3*>XH|SMmi%>npU1jUbCv#
z6UEx3TBArEK_9(lOXe$oykVo3_9O0kXZ7d1O!>y7Xh^qu-F)o|ytl-uhwo1Lu>C}T
zYIZ&FMa)uTHdoSN?`Uz#HG+XdIRo=l<FqXuohovqmxpXUpp}oh=}MjY`<0HTN`*&m
z<=?J1!*Bn_@M8cHl53q7ptfD>EmQR)2>xkrKdO~Ot-V!zxD@LARaYM?eVnO(t*gem
z_rLhX_3cOcOg>PQ4>``m;>{WfSIfECrz4U^>tWDF9ydH%qj(*oAXepT9c2#7Ny6IT
zOl2buYt;?dqo0F(n}TBNDMk+d=RRfQyXmOjM)x0bc9ZOm1DepB(|3GS0Zh+?5Bf_1
z@8i%NFwGeT{jimZzv7$T<dgUL2o3a27a#hP1JQiGG8@Zn08(@FcKtMncQ?C<9BExb
z=6YWT?=P}5!?W+tUoP&HqXZ?u<l92EDOx^AVersF>$Cn6ag2DvFJld0H7xSAYga_S
z{8{F5EIIMF{AO9@OU|xiG?;nnw+ZfcZk4+5<{9q>#(o?hweNEj@X5U@8Ye+_Ip^G4
z^!SWx4w+gKj6LXw=hZviD{rRG*9(-5VmZ<U#PBhHR6<|iZ)Gb2lpxX1F{jlguH<8H
zC!c-vt`1#ortudk9AfDR5JwfP2g>L39_yzbN`&JO_Pd_Rq)9w|GTfWhQf_)Y|7<EB
z<Tv`+3$2<Q*5fB+%4R<O%tuCOzra3aGiO~kFJk&C#*x~~4RN$egkOM}4{Ar9*CUTN
z9Jnbl$7<F&LcY8KN`C0|V{H`|YEL~~zV+M%-+^Qf8!I0=_EBUeE9dzPtu-*~uC}43
zbL-arE_)`!UcF6kjUsP+RC4)b6_I`ByM_F0Uw?dP*PBEn*i5HN%O|rWZIly_)?M;k
zc*LHDK%K585<qPR^SuS%Yp~|Ihfz)_Y`M&Z$Pk|u3>eyks>=PHD1TqpXD!y%Ol+Up
za<YlTE>*S=DDUgl8v#G3NgDvwMVyVZ{XylhvrUe?SU>2&4%(dXZ|dc*R&&7qVDG#s
zjrqU+thL9d=)*F7Y`+~>gbA4%x@zXdg6){N3!k8-hxy8tw=R`$|65!wAKq$<NpP}|
z9dmG#eKa|%f>wQWswZA4cU>!y??oo!!=F|0`nC*ev$zwTDYQ?82Ops$<)oA%HI~n-
zuDeN{d(Mac$_|A%j>;AVV4l%oSI97JP>u6|FfN{JoK_wv<;}<0cm;CssPgGjb547i
zEf{o(t+0>AJD&xPggdv?IfD~LFVG(dRQ8t`Msv=zbl0+jGe=lP(V^5(BE2n3GeKpe
zroXenz1CeXthdC$6~N5v(E;=jIuxe<>Gl2l_xJk`h1uD=Q>E_N?yD|c>AdEgBzo{R
zf6htCywq>EB=rgi@L-#ZV4RCyPQwF6Pb)v&1*r}<T$kBYVH`uGe%Lm7)g-U!cV}mO
z&ZwuX`Sqzf@8y~DiQc&!jepg6`!4u?tT}}Es%{asa^^IKYZN)KT>jy5_rqMQgmT%G
zz4KAvwp{skdPvl0%5;LEX_GeUJ_VyaYU~=t&PBwwHYEU5f`t7^#rCQOS`AuD!;W!I
zx#R2Tb-8(Grd)U2ic_;1YTw%#6~VsU)=_}X;jc6QRYh0Dy{z8JUVv+~$yac@&WDoL
z&Dtf04o>tC``h5~<5@-t-=?jyWSem__jXX#<;F(<rZM&aTXYV8UGQn%;Ylq)MS<|{
z{&x54k3MTZtf)w}e0^g<$S8q$BfCR!6GI_NdXM%$;rAoXaqk~eZ}OR=<U`9WNz`o_
zL)1IRwi2nj;A^gI8x{iQE}G`=Nm>qo&)Zf>?3Q0Az4uwp!x2_G?VYxlhj<&+d6d4d
zM_<<q1%mpzhH0x^2ZL3Ylo~(IlFhct^h$O8?Hn$NpWyE{^VpS#?+X5eG-}!i5Va=V
zTR!f+3zm3He@I^w+8-r2X`6UMz$4Z@`}A`fd!Mv7Y}+-nY3#$DAb~@Ydo3Id-k%v;
zYD(FA+4@uXwXK;@e+2F9-K$|U`TB6q^qG>juoDN%U&uR`9Z7Z~48KZ=eWCO<ol7*E
zUd#p|&Av$*>Y(BrprHgjJ@Ng&v${_A3^yS*Xr?oxGM&DJ!x7<#u>Gg~{bp26rlbOQ
z#7?cC^0A{}V)0c#SHn2#5C}*m6D;cW`z^?mmU^vj{9>aDKJ+>CNV>dziHRj6Cy(2@
zMk!^N`E`*Y0<vfjxCw%=y@&L0COorX8&WJA$vPU8HwDIvcEiuM4(-enR%2jkT*Rah
zVHHSPvZPoApQurU!DdXqGMf@|NqJsOIhw4Im<b8PiA8KSFjrzLcXX@)S*dU;{sw&s
ztX^i#!THj6Tn?owStj1zpqu*flOV07?KYg!m)d{_3h|B*Sg2706fhpG>9WwyaH8rk
znJn8xXD8bD(Y5rMrT+Nl7kD{-fI|P))F3B?k#+R!Wj%hKTq8RGTZ)c^#(0|HcTO~a
z-p(vT3~|ET1uspH5P>K(hvSl9_$->`3xb^`PyFj-ET5yzNgL#fcP>Fq&98!t9#a+(
z@SlJE>krfEQC4s7xhfEdDGXNYsFylt<Y)URxg6)jidTI`i|zA^{mj;H%qM9%)57g@
zk85UM9OckXzM3nL#}?94u?3u=LK>{{x-L%Ta%P&d(-3UW^&y`TX(|LG(-V#ygcd>K
zf}%<Y^Qa7XK1(4DiKj2l`r<>rk!t39J}MZgN2KGauJ3TcU?n)2@T(8ab#@!sJ=XIa
z93%dkPs3#pT!r=|yuU;H9UV?{CW%^l_KE|brkNiZg-M3a@!kvhI(rkr_wFpm4;iPk
zlI<vkXk2Hr@-t-mITH`!iQcngK7Dl~k9^K=#l@^(_Qq(2s?(F5N%D_BgxmV%`tq09
zdG=2)A7)y=zFRnhiC^MxS~yciL0X>1m%3b1jHLKOi8#l@$E2yhC5|8eEP2Uq$>Yb5
zl1DYt_EwLyy{kxGzLhnJKUC$PfAFC)j~{@P_JEc4t~RCrgNC*bwfW~CP#Y<qfBx(F
z`*ZAG|C^VeybI?V&sLnGi-|KJ4nn8M<K&ZVeZm-Oe&N^JQX@X#{z@!HPB1c3&R=1_
z{zc_rwL(_T+qRUl>8QCBtOli?fS=Z`h)JSdmLRbUh19x-6oX-7Xh7-K$Rwhbc+Ka&
zz#)8{quQt3N1ByFe4RudxszaH{1P+oJw*DZaDg%5wR!9pNABwyJfmldC;SuR0OgUO
zYsFEg1_;wA0beI!m+aKfSdBy}{Pk@5M8XYi_HveM(+<XsADvJTmdyahYkpjF=efUN
z^ww+gemr51l6DS{2^JFZQVa2ZpP3nVP(7YkY~@_sc7+>}=}yDJl^T1d;p>EF!?g_!
zo(!23eHfDhXTrgn;UNl+Y8M<5S2TtNLk@nu2yr1h!nYOIgd~nwydl4?<GUh?;JyJl
zwTQBqvp7tg)fBW@EA4y^4Rc#u`p8v9_*BDDhSq_wWjB}!ffl4F^j~-oB@D7B?qAHU
z>ih=$Y>`JqekuSshE9AS@x82?x6NG5-v0U;XVN|Y>h;5!bUqCdwFz_8)y5TVL=0(<
z&-2y)HfHO0a{2n?|8N(1qsVAq1gLFMCti9=5D$7pLd>m2yM2K`7q)E^pV*(jfBseM
z$8-MOGrN9XU!H&cereA-n)K%(w+{-?+!u;TCw39Scpku@0UMnaVvkuN;A+FEE!#GP
zc$?y+iNqW9>a#AfH0z${E~9)yb`;G+p0S-IL|pIpmZ$ZKX-CpJ6Do0{LKI=%(0R0Q
z$@&q5)*rxE(T<Ig6$m4XD?!<m;9T0L9Ck=Y;+}k*#&X;vlXbrGN_I3xZ*fM!Tvz2p
zODV=q>o@2ZNpY#fH5g(Wbt7F>0m;t8Sm95tKGW(q=og!hD_e<Bz-W_SqZXhDG=dpC
z*u)kPK1sqm@aigJ-x2cYpPkN*hbMJ{s)5RZ#U(l~Ei&Rq?hpjj2I}Yv>P=zZX+_^s
zEt^xd-`*Sax<N}6say*9=sVU|^7V@IW`J7!B3B!W=KWFv`}q2)&1wi+t?Yib2;$xl
zX{AMZxv~^<2cZKK4P8{4iN{1h{XKm4^YibX|MtW8?3epq(AF&WL2NGw#0@^}_Dl;Q
z9OYYXy5e2_shnA-#5KOrkWmnq_m@yiyF`iFjZunZwyk>8JP1WW3#5tE0(|z}NeEnR
zl9e@7z8yc2OTy8+Q5zupclZQO#)y)|$<N{^pYZcIs!=A-Hutj*e;=p>=k(Teet~GG
z&nIVj>>=gm$T)3dyY6`!)V&87*8_W%=K#^`i|PT&(1vBfr-JrSWfKy>7LO@B(iXe-
zse&S+h1CE$K$)8b(X=<;NTjC;c#iyBa~8Wi=GiV;G2Z`OArK1Jw}b#1M^iufh;k4_
zx4L@NmBd;cB}Xb)t@0Rn8}>*F4Z7Wu3_{Zo7Sxa0AP_u3IoYiSVID}PP||_}`h(ou
znaV02`7L1@c#!Fx_<Q)Iddqk%CFTZ)@-dSNep6ezJ4VbS$Wt`sRwie&0u-@ehCA(2
z_pNps(H1f`e~}MQ{7qZDiRGv{3)X(`7#mMX53;GGi7~1Jjl~~B1TQGB0w$@)_4L0h
z>{&mW2)W8QZ=aenRJ}~*L|b^n=b@P6ET3I6g5>=$r|S^7MhMjI!DmMrUlXg&SO$_D
z95jxBs`1QB6oyNg>W<9<gZJR;tQx8jvwsqJkS{8$F$H{!IEq6F6kmn)2kdjPI2W;K
zfjiU$z3|ZeS4gH#rQrKvb>3CmF1bc6fJw#3JJ|skX+7`|T<~j%5mbqOpbH^*9ziX?
zBfTIj$1mlMmkCw^{)b054TSv;?X#v%g?X4@)8elTbRz}Y0ee)`p73HvtfvZc<jJ4Y
z$zoG6iRjw>Ua0w6TqC_>a7-gUZ1s?fa-ZAxsmM==knjdQ^0xo&Tf>IWhqx2`mEZCy
zA8d_5ucpj6h2p-DJJ$S|dh)RoSobmukJs`AQ`bNmcqdaINFZJahEeA<AE7&;LSBGX
z?7+MLE8^gguZOC~RK_<O1&LnmoRv$|ye+FQ+?|oYmCsd_=kLHl+);C;h~uz3lw&W;
z51)@j?TK2zI)p<BeDX88{3i@BFzH`zt4Yed_&n26=s{7+j?TU5tdc#xj$*-(+P|4+
zS##2cFmvlU%kvq$;A)R4zcdN-u98+`(5`5-+q$yG0yM!~qG;3_VGyLR_Yf;`^GO1o
zPb>~444dO&q*iEA)XqJAMUP8M5alGdL-RD%gB2DY##UBTQ*Xm*k<C^7-mBucF&0I1
z4qxbIW@YjsNfr;P3!a2sL&@n*zIM8@Zbd;L+wLZ;8ZI*wNWLB`cSCN?g?8EJEc7`(
z2!wj<@WCp=f@P5zFfKm)rb6l}62*-}EtNzYWwB}-?j<C6BS0Znj%jkH<=!=@%;QDD
zlj$99BHhkm5;x{lCK8`P1r1QMDp#dxWfiS-$?y0Dy-1F)VEq_}QqiF!;sSgcT;#w&
zB@6M76Z}Ajgv9WKr0GG|gS9IwgzJ6i#Ef~)O@3%dQ<8-o>B;!5{wH(E9Wr-dl|yB{
zeLqt<yQ)XIPpT}#;8AkMi^obz(ile@ku`wM#c2G@E3_f}%90(B)&S8p7Ku|(d4}e%
zCGbRq1rbIHhh;f@j?VEZI>oHdT@DwO91pq`wXUj_c(CFj^tY<hfXsyBbFSjcSGW`%
zzJmxzbB20(H-GU@auIuZixpGmAQG7Rfj9G5H8Q)R*%>x7bdau@kq_{5Jk+o>RV7!-
zlSW;+;q)_|0lTYxKwKc1Mw=s_?(t&_SWAXhnR#Hco;uIyA`Jj>`c8{10VS^@hk!-)
z^>OO-@|X9Mru6F~YeR0HwMsIZjcFP*OaxWX6_*|4dBXzrl-FRrd>CP}JMV2bx1ezR
zir+?6Z#01=WwT4X*=ceK-t}CZA1btp!y5%>I{ILi$9E+xQM(rgI<;@B*KN&x-d7PP
zH|+_)W{~i@=6&KdCmxRV0=jS>NAoU(TNKcn!g3XQK2L}&7x==}L7;{9DiX$_FI|A%
zc-o3u?wRx|aSB9hyyB{{XiGt6bL&Bz+5uLymkF~8AA;p-#d=|nU1E!Ll<Evs8wv<v
z#u=V-5g;~DLiBDLkbx+lR%uj0@5O+7i+-l^n`M0iAP`7H7U@Nugtiu9R+s_eX@J@;
zdNzQ<j|Kp{0iL1driG%)I&GAP+y5P%8Bc~T3edavh6qTAr|)T(5AHLC`9>x9K$H0U
z2RtQ=-tk`VX-?kUJJk)KP47%~kuyRXBAL7R{bRb@G#9eTfE%q{p|Y5vp4ARo*spVa
z^ps<DeHw)k)kK&mHh@n={e8yDFlY~ZF$!5=0FNubPDw_`C9-cdh$4)m+%I%l{LsT&
zTrio7lc0ECX_P7=RGomrwXv?sPaR4ut}$Yr+iFH)|1qF>#-9hmHh*dM6OSa&eHf4s
zMa|WZ)|}}<de_nY$iSpFk(r6`)HNU>O|P2n=J3p{tZ*uyf=Azbb0!I+?Cw0yR^;oc
z;L8@}_*wDE6=EE?nR8SokRP2Ym7a8>h-P~qpXY<!=V{8KEZ$w(*f*=Skvk)l$~H!H
zTz35OP=%BlsExUSS4wk&@t|io3ro{gOBU@97+*k0yxx7tH81;o*(y)Ib&@G4Ssn}?
z54Me4TCj)GEz)8<A;IYi`g9x|T3|JMNEWhDW0W2$&6VZd_o*S0E9lKi^I~ne*l=UI
zusNeF_%8P47@2mM%=n*`7BLN>yOF#y&Oy_qm)jOhR*@@w>Z5hNEDGQP*)p#{nDQdJ
zGQO*=?>4Or%~|L28u3}KmkR5~K%w|kk9i-2aMQ>K4cl$Y+83Plg=myA0Za<W!rzSx
z!UP+$nV9GsEu6m6Fl7;}4GRljGeeYR!Y`S6?T&_A9P>KYr85NM&k|`TN6{{5bs@eV
zhv#{h*NtEKhPVwcg!n(Ch1M?GjyvQxL*CPIq;b@b@*Mi=$a;Nu<MPye;*f@=jT3Z^
z+pAtG-)!I0@}-t<9MD@?8}ij7dSgf~RN7~w(>j1|S49H|DaVYS81kpKwke)Sx9KyR
zdc{7v0l0URLr@o)k;YIq-=@iCGoYe!CqK)Qie$^Xg{3_iWEn_RH+hfsxhu05zu3++
z0o$A#B|^xSuiOc9TQP(U)%~F~e(jQI;7%Ct2C_^;vPWbq-V^faUrJcrk1hsk4s=c&
z>C;CXHE?9$BaYe|j%4ug5(py+>`F#5$<gG(`hc{A{3f;aOA|2=BAZ&Vw(wMI`=~5{
zln&Zhhy>w7c+#GI_k#O=ViG15TiP9h2w3w31S7ha*U{TT81F5ZxPc`F$IbICgP_pv
z)P<Kb^ffn<hdJM!2CVhvir-*v*=j9{XC<x|W*R>d(B;bf(Z34%L*pnAiD4jZQjS*O
zHUBpj9@;R8SVM<{7fK7Y`UrT@$iKQ;ty1Gv!)0on43zlT0Q>FE!C;}4>0rOGIzvQ*
zkQWze1=0mB62H<^C7iR>K5A(#=9o?B+`_N=VN%zWVgXI)FWyCAs+bglu-9EJDpp_c
zU)MQ}kVOVA4&bCwSsxq&-}f>l&&*cEM@^{uYxzd4ZcK*FViIGHsiSe`&F^jM0nq1G
zS=a49a4M|Zzv)y6UsX`Q0{q2fXo2iW_J}1-$?tr1NU%Wrv}2|3P3j)^mg_Q|qq&(y
zsY&wXxL5na9J5NWWd2L<5M$f4h*i&IztaT6D;gAFdiK^hcAF|&x&>(U>Y4kgU|xD#
z1;{z;L}EAf5Fj!G+6pUE*>V`(eP*|m2O7`h#Ni=QJm^(-HIVz0>TWjoNB!(~j~lo+
zW~ANfnU}w)<?`2<NV45=nF<@_n<=77w6QR_w7HDOJ={s(w0k#~P0-~m!J7)4*K@Gi
znKYouAnvtr!rxXyHJIME_*8=BFnH4sc1`=9v$@bV?Uq0xJm6R$VP~@D<v_=Fi;M5x
zUwWZozA*@ItIjKfpwMt^&xKsQo-3Xif)`ontwuQWa7DQpGSjhBvr`}Bk#y^y)-NS3
z)C~?7RNh!2z?vearYhYhf5L3U;J_e1pA<SzCvDrblSd89<hFKr-4FILB<~O3Ymj6_
z46{nid(&#)u=hL&xn&LrCa<!re!kc5U~Rwp?)#TNzMl8%pMUwDx#hYmMn!$FZitz!
zo5t7X$e=z!uJk$YdA`jjk5@*%uuQMNrEw0CDeup3c|Km5r*C48o7A*)cuUqaPk$0*
zi^Ho`OWHjj))3p_(!|n7sDw_{fgs4oepeD|(`iHc<kcrIlF|9?X>>7m&m64r6FnRt
znw6xd{j=Xz1;45Yertvk6IqpCne1$fqfMwQgD0BlHR%SmX&wu=yiX^xf-4*GU|k5{
zq8!rFG)xwEXr7=l(M%uSwKYA03iaCX8@;^lKippa_|drLV<yc?STq)`0(Gio_H4Ba
zx<JG?9l5G7uEo5o*|co{-R*ye>d^11m@U(6_%Y?!zncWWQoW;`Sb*)4Gp?avj(~(q
zq`64S5U9s=TGqCJZiaMP8ZkUfFdM_ShI$w?kbz17UFNjv37-cu<w+~SDioPTY0Fiz
zuQ5Yb89<jLMpwiDP%k(unBQl9%`(rym~E7=a%=hS%i`#a`RvTakiR$^o_BxYSM%B1
zXP{C$AmDn~b_KckQZ4OQ0Q3L~MMI)r;dXu;MCtFg>3jEj#UM!o#rr`>xh$U0pZo$8
ziN*8|r6+4gj^N_GU0eL}qGRZrRE98FN`)lf1;IcDRZ<EK_w2=ya|%?aFTit<EZ}h8
zMLP15p~EIfF2@!X=)#(G7|PAqpGOT6z-WeMk$#m~1kQ_8!lM|lsxcigi$)2yIOwEg
z_8mmuuFyX+&2+u`UXz}ASt>2na#6op;EtMlE)c3RN<A{y?y>ka(Tmha*vI1flrpC9
z4P?=b!j^~LXpn_+k;xMKDXRR<1_lRz7<VWZkTO6F@SD`)_`9<M9Dp-Hl_v+1A9HQ2
z0LI`eBGc=n{pigF@Z0?>5>2~R)FL5St43T#4rH&rq72`TBd#p`*9mw#EVM&7t<hM_
zu_T2dGgGP7`+M2xqWP7aB_cyO4?ndN*<Lo=h_rpzd@k2WlBQ3?d`l4MU?8}?^Wpz8
zGAP#Cd7Bs}z@f(B6SQSGE}P@KhC#d07g4pHo2y+k;}&F7Jgw>D@y3cku<PZp+|xX8
zdWAtqlkXUTL|k%BZvceWKr*W<Gw3`GGr!7T@>o9=xxtHriW}Cojk~tBZ;IFP(MDjt
zNTJQc)SpL}H^;-K^M2tn&WyL<2zJF;PxYF8LvgXRj%VN|kP%m}Zej9I;=Bmpa6fch
z*br=5p%BONZ$qWL3E|&8zy9gvkNfi<fAvueCsFv&civp_B+hG=;v)kLNln*p#+HF(
zEwelD#XsL(bdjoZXwHR;7gWQGluG-aDPt#lD>1%x#>qe5UYOYCd32ir)$!PF?}!e(
zzX_^<1qSY9x%AMG4IH`)*b|1cLjlP^V+U?E_?n&`d~7U`FO?PW^~&B~@P)D9%D&<4
zU0wacr75IRTG0s>p(EDJjv)Z*?FYce1K5gxYP_S`-+vc=D`ga`k>-z&2Li_g^vV3M
zJl_&HqnSrMc=)XZF8HmE%5y?*RaW;IEhOe!va+%2mCaop@P@aEJ`VxqPn?lk_0}|U
zdf$+@UoP?z_kN3_F0r3z&HaM7bZkL9xhhpuWwOWgpRmXD@3Kb}Zfx&6OCxN-u~yk0
zugAVL4Xcc}l`4fcv!Zmu&VcakNHWE{>AZ#YOTlvThYx3z9R*PC1h{5)b3u6_6m2D=
z<}<E>nPq3Mk;Ee%au5)ocI&}<iH!^{L{-afG1ROZRW7S9)(khh{Vk}ep=S6V$^7vm
z3t-ye02@!#0%%OBaZ2De!Yz9VK-|~iJm#vKZ;1<{#Gn9PTtbrgoAQspdHZ6B<s-A_
zHfJoX##(95f+cqcd2@IhKv|(67j7U)9GSaC7XJPArm1`%!FXg8#dIo7)1wNq9X2}-
z>37qKfu!%jK3{JRwVT8AIxD%$DcO%L;W{^CXYqd1<P^UrkeVfuREonys7<H%O^>@R
ziua9+Z)eekHelY+klm?cSFdWq7f&ojcvWRP$4G?L%Y6(a?~VK052Kjd8sj_eUqX+(
zZ%Z4`Z1kM5^xhcRwXPTBr`_y2ByJ9t12S#VQSOr;byOC*v$b=t<C4WCnvbG~JhP9M
zsh!bd#1lEB7($s@HAk{?`?iVs*Qhzx6ym8TrNW)<g+%is?u5Z2Keeh12|H~)IcvOH
zbdM6Nf)uWI)TJo&b^_{IpQ`F@3u)SX;nq!J$sVUDa$w8(Q;FUKq7qM0X%7a82+Z0h
zJ^^x$x~S};JUu*KiN0qK2hAvib{Ai;j0|vlhq34-V=RC>#!j1u+(&HHcr1<3U(&Ty
z)dJm>4a~i(tcj^n+5WDwWODXqF>@#A#B+pASz>C$Yv%Ov>=t*0k!jinj`tsnWcub!
z3J?DK&0R?Q_xSo(ce#ua{GD7L$8Tkeh<#Khe1nUN(5FbQ`i<Q67lNAwG#UF_C*_T$
zx~~0@)UK;*?FY2X4dXZ5#GsC|)+7y*xbXW*+oY?JW8C%h)+D)aQ15jnxFo@qM7Ma(
z@8}k?gt5%6yVvere=PorW#5D?YvuPBhn8GMWNPmzPaW1GgRy<~lC_h^uyNr%d4GVW
zwFr3z8-FXXP8A(z(eIzHAJy}E>^0BSL!!+Q7vAYcQr`E?lLrMuaAPQ&rEd3BEB7gF
z$WcPU+l~^DG}IDiW6-GraLFWI%h0UwFiC?LW<riQy+(%TpRS2dww{dE0j6_zr6!2|
zo`a?$l3}5U@v(?Ji%<b}D@Kxxyp+<iz`PU$=%}b9=zlx2%@T)%)bMGtB*~nK51JY2
za4eM-xt`6d*3T?S-YPSEuSVkWiKgQy-DOqMyaG8p<9x4`hIB%^9RDasx14*r9lH+6
zwYmCUWd$EIINtFV)}E@e^$V&6Uv!@ZUhO^OUX3McW|XLow8GsjDnvGTHHD!~($VuA
z<6kNVsewU2TxFDYxZTnAr?4C!jsH>8y^j>fBirdA{*NA9e4onCrXVotzTpJ*WQY>E
zkS$klQK!Gm9jwq1O2C7;t|8kCr0wF7HAU-3kz9O7s4w`q$eers+WQ*nez3r7M754M
z<tHr16aN`ssjf3r#COR9T!EG2@1j~djMq#s?ji|EeK?XMzP~|-ie6H&3seX#dim1z
zIMp3u%p%5eCq^o@(@!dq4``c7ar-tQRy*<-?YjR9gy`MFfK7=11v0#=Y3~WK{8K`#
zqyDFaC{s}J@f06v4W0Xqqw=*H_0SDfVsU>Yg88SgP5Ohc?-k2b>~pL5Ph^4eVfB$9
z$?kki*5m?S4P?zF0+6mp!MgL5_ec=~V4Gk?>3o|lh$I(u2(8!*>$~5-d=y$ffH8)m
z=C@Qv5y5tVSVL4@LeLZwZi1oXK-Wv%!=bezSc{ZMOE)d8Gj*-kc%&#ZqX>z_<il|S
z29UmL*e0vIA^fziOO)xTq51rO>aCkQQ;rzTWZA?B7=UxL+YP83z3BJzs0$)lZqzph
zBAU2&jIdK5mz1H^N^8-F$-po#j5(yI&)g}?CBU#8wv?&8?q22UXaYdR`LJajXmltn
zLPR4~6ABUtSgo8=cC^8O7cQ|qp2vMP&=&OOPSfyZ5DXmq8Zi`DFl(LLQ#l{8e9MY&
zt)70EEaHd!Dh6zmDhKHb;?k~E#i5zifg-mOZFq_y6q<XKK&z^Go<py}oA688fzM8!
zvo8rTP8ivGm5mC9DQyxAQ4{wa%Mu(zg*i*k6Lw=%ChN=uP<ss#w06}SX3yA^<2OG&
zX|Z>tM(G;fm2T70PVdJWpV~E(?b}=5YANTC{2+rEPg*$Re!&!>HioFTXn0O_4E1tE
zXe7J5ykBUHARwer_cp&Ux=!$9l0BV^X7@)lwIQP0j!>kaSn4BNMz~g_*Q!A@ZzI8W
z0Jau2s00>eh;T>ubQZ_w!6vFQ<hdg(QTw>8hPp%5J@c{oSZA%g#W~!*dwu@M*cLIi
zbpcc0^i?*F)iNjW6VBMaGvm=H?1-!8J0&4$c)2l=nA6YejKHq{TkW-J;UA8R&pCPF
zeGI#b>I25XiC3Ljqj$UnT7;LJDW1l>+OfassYsL|f{D9PV5g_Z8(?;bO@f$dZ@a`J
zB79;zQ3p+~T!+PLIQXr_5%EA_Mw*f%Oy<c>W?+h~p_8dRC>7^PmLv#$Lol|vBk4M4
zCYqcXN<g-5!BK`Q-WYq3FjQmNj&UclB)N%=8g$<_Tl6QDXP^PKRp-oQ5!2DGvqlNL
z>0!NczC#E@F%=`alhT{f7)sNn-fgc09V3Rgd4W`xu7R~PdOT;-=x2XL0Yw#1JZgNa
zLRY4}Qv%}7{#-Y*QLhxl6mu@kG2zJ?g&HzZs=e<~aKs+;*LW|4!{D{<CrGzzRUyr#
zd>$I$ZIsBc+h4xNOZCIAUfv%XFcvSwB2O(=vJP2%ei94{Qdr|6ZTsvO0q|TY&OCPt
zo~sA+yz_|XO2M;43gxI2%26q_i4=7v(WgyIKDLmlWYuL4@eVC@8bHsZn?YjS182}M
zL8b)Qag-oM5i%ezeiSBoCa!5d4*`o2_pEiHHuDDBaB*%RnE~$ATu}z^qbId09G(={
zijuf$5&}cq$aV~HBK%c_4h}i#xsV{rk)Vx=qVpad^TYcciPo`s?=Fa9BcMc6n7DAF
zqfP(q%VuYQH{a*o^~djGylemXD#pcrK>U__bGtfl;kYo~gV(Jy4I3UE$45zx?TQn=
zr+o5iEXe&cvIZrdN4PAypNIdHz?b_c3im3qW?u03ZBBOeqAzL>;)_NyQ~AvSQORfW
zWo8Gi!0E@Ar%0(Zs(?Jl;roHM5~iptn^r4(?bOAkUC<&3MJ7w0a`7xtDWCXU=XQW@
z+?QM*`{16{mt36P^)a8BjE(;agEAE)@X~1R?4rkXLiwz;@>|A{(q1Ln;2d44Xt)^p
zLxo&AeXhp2N=Gf<5?<B;%^>N)>WXFku}1f<VC;HxpU0Zq6eB<DyD6Hn!KCg9gt}Yx
zFdE5&dwa?yFtx$+-)QKqGfk0D>mwP7viqdmJ9>|mm=C?@Cf@t`rXE}84%ho7_B4EX
zf3kibviuQxVxQXQCYcDq?LM8}>+rVo+})c!uZ}nXv}>~@E?KL$HNo{(1acw<<O3#F
z#VVE0xyRjlebW}{a$V^Qui3~B7-Ol4q9d5n%J7uU!Up2<etG3`_6wl<PeJc4WKaxo
zfr=FR8g2Ys$|gBf_cE857nMDOH@uo)MU5y5z*`X16>6cvo5H-INUs9TA{wgE5x|Rt
zRi2MZe9I25QXBcvKi5U7;SxNbD#a%b{}rd@&S`Vtm`=uV0`+4>b;!`POQ{cbpU`U3
z@`@>eB@*l4n>TXUBV^;97#u|;QLA?C>-DME=bG7G+E;Hl`0(TwC2u*B-Ohq8+BmIf
zi|5v#xb^y_hH4pqAG0#-4B62+Za@2&C_at4u>T%gxl%$KHy6h>J?nb%)m0SiDlyK3
zP}wrFre_N2<>Z?ZC;zCvh3ll$i%Ne^90;?We481^5B}H|kS)NE%-5Sf*&`1oNc46*
zUK`L)7luxXU$@{)P8V|l@4v=vX;G#{>8jh%wR`AZfB5sSUiatghmA;w*N&$ljjaY7
z@G_lUG3!2pp~*-zM?ewuDK)th1C?8stQL^_5t-vN637$)Jv=0QC=A#KHIOlY8j^gR
z!;{i+(DQJWdX4Nl+;fVHqF5S7<~FHQ%DgiXb<~+3`w91YgeP^_oaQuqu6(X*l;b^Z
zoTA|tcPKU_zgekLi<6w9&09N>je#upJI{|lzgzU?6<8lR-3c%`Y?UWLmbq$g(PcTT
zIbvfTx37Lonuovh{i*g6Ep_#$$_k1NDhF|606##$zj|C29Z3ejU+h!b)M=!T+iN^K
zk>CVyq!utAyb;pxzT=pKQhucSRuPgaU0Jzgj$7fRUEDaLc6EOZKvMzkJUEfWZ+$)a
z8$j^RPCpot$WHdHndcI(UQL*Mx#&9dF?YU$A#==kTuB7|=}t1|5y^a2M%?2UAb0Y7
zYxgZy6nyvVI4Z2C{@8M#vn(@1S?VrcFC(7>mX{*eF48H?v=DCrd7G6gjdp-3h@vAb
zO}bv5BHM%<XPfe2wxE&e87<)EF!bh=R0dSdClH9OLl87On6H#7`6X)>jD7PYdP6<)
zVI`iS4~#EJ235u8uo<ZeV4uNFLo?pkufE#B#zoLYw2$#kQ%=3?zM*=3$#r?!V$gls
zC@8Q!9K0%^B|O&7-=VVJUE&^MhuuI<x-7{(i>dNJl4Q+%#b={O8AVO0Ma-pXHiNMN
z`X2;$*mSQc2Ol#p(mZan9hXaFI1fk@v?8xJe$G`KAlr+?ecH~aynzyJ8`mR6z=J9-
z#HCZ=s<nd76Jre>1}HTMfgcynw4<~|?bjYIg@>3c)OV`+P)w4~ZW0Fp#mrq5(WJe;
z6bscoU7>&Q(|IYZJG3$$#Qn3(>xJVJp~yj%K$sP1O~$PQC1MYx)=A03Sgb?np5Qq)
zrr$$XiUBUSxqE;T9B)qd*9ySaw|Yhj1NzpViaw7Q$M>p1ppiM&r?9tiS0>Zb)ihPY
zh`7(Swnvl-7eN>8meZV`H)L~9a`U%ZjeWd$%ixJi)F28?2xu+2uN0+xz-pn(xL@?j
z);%600_W?Szw)YPKR&*^ILEnx6EDct39yKC<~$6`wp-SDskq%rRnQZ%_>&jtg>J;o
zb8sQ<ni23RB2vZk0bf-?7mQuId9dC<H8Y7-LTn<xe|dl6aoQD~-dIdJA~AzcXD1g{
zE!b2wR$O4ofygQGqsvymMoX16zU!Yjdo>_5)y2{Dp_kTG5V>qO*x<GyeAt}2oaPrb
ziiWyZyhwu|*O@101MjNANi{gR2K?x!dktJyCk_@t5zY<FP>z2%>o2o1yN)q9QxVKO
zBydH}r0!1L*xP2HcP2K<Uo#0b(ua=Dh}$ajT;4vDF!e^`zxV?!@i{Fqnaoks9O_#m
zCD~D&KR?gUY4Q9lv~x}w3OF-O6sDB+GcPvw4-ezRD(rDC6QK=i;^&@((NYRcynZa9
zpvbN5s1gi1n!Q9aroXG|)$-{*6h5-^0qLXD{OHTf@am?akCW&FX3+2<236OcwS=L?
ztvesB>*Hwm&8?es``yd$ze71*9|$*Fr>TymS~BZZj%D_czpb&lUo-`0w(fl)`c1m+
zrL0WvBUjDt`=_X@W`<QfT1$hMiZtMkhQOTyHprXp<asufV(eroT8G;=t>|>XUm<1;
zLGN(b&$B?Ot)79(Vvcq$nX=ncM0F87b*?DP`2a_x_e2E?aR_UJaTR0s`?u#OT_;?J
z)ihGtA16y}XXDPM6+u<29Z?#(gBYvK<aqqZMo^w1!qO%-w10!T{vu`RPHWTbbwc|(
z9Gp-QR9+a5bwL)w+0ozsI?kB-et-F}W4HG$hZW-v+r{74!zYPmt)k-9)j{vQMJfcY
z0t)~@9vGbGRd|=ftP7$UcA62@3o08~<N&ov+K@4KBOBRKy%!;$I1>~#kS8lUTEi~=
zRPO_46OPY{7wFMkdM(@SpbATa_>{6Y!iENAdZ(`UR!7{YtqV9occi0i{w~Dp%g8@0
ziazomOMzav62<-u<Z7kmEa#5L@nCLQ9tfbWsJ9z36a-*|w-E<5%ljW%f73Dv<DigT
z4O6N}Eq?E~JHeZJ#~^r<2gCjd$dhBP^i!w0d!QxU8~9R*`CzJH^ASEZQ^@x(`=5UG
za(lV{@cZ}ctd<u^vbKoq;4YjuvSC4A<vLi_1jSTE*{lsJYQ?aQtIt}{vDg>0X^yy-
z;u|pwcb-+NR;-S#M3hh@56yI0Pc9(HA=L?24%H!31Qj6=y^>9s<=)-i5)KZ{7gJ1$
zYU@Pz_LP}mq!CJMSCTYHV_|>?MT&CVUf*TGM>C5AFG*p4V&>E9%mR5$d*aUaRHO`0
zGkS#htl-HAnLm7EEYof<z}6rmtJV2LV~nS5gzN>gS}#*jfuahyE(2Zhp&>;Tbd;^g
zN?99yKrSLOD^VZp64ZI0y~UXh-u8VXH$x6Tc7jI#lRX?e-YyNT0-4Gn+o)0u5*pxg
zB0eh$31X{Vpqug!vompATYSH9J|Vw;l%<+t{7jf)y?;6Ci>P9v^xf?!U0r(4>MnPw
zu!(=6L%g3@qMibSbt{s)dALujCs5p9|3N0JkeWG$%Z+z;yL>se$L!Tv=VjK=Bz^qw
z4VqEI<Hvfw<5Jr2XhsxveA4b766(i^P*~Oh8n=%b4i7JN&e?R<Pz=*qo%tcdlCv{3
zm~?hkHu*&JmoRs`J3ZRQEE3;#ff&O8u&95T*L5PYY05=EZu(*SU;()oC)!m}_q8f&
zp5scn{#Q)892mx#UbiTs`<STC@G#?oL`?Mi{8F5TPTF`t^OrP?n$K1J?WuFyskuJ_
z@;5;K<aIeyjB5#9ih8%+qEmLI)hm;!nvr4mkytMgbPNN3bKBIziaS|AGN=+>+_>F!
zH`(dxZksUq#!yg!zJM@6F8Qjn3!yDu+*Sy~C<ke6_RGnyPe&(#s$0`o#LK{(L1%%6
z{&iJC)he{<CZk-uAS-m&uz`52ZxRGH(xAq5{l#<uGjDtZ4++LJIjnj06C$(mEH@KW
zAjXZ+v#U(BftrB`=_h)n+1?XbjzWoS{m?>ap=*u!6#|n+m}f}jT>a{-S12#&LMoEi
zM1#?sr;?;W6BsA~mo&;bofI)(^>Qngir`B<GFkYYotMySR#*xyBeJ`ZbYILS=w=C*
z>h2VogiCYnWQ~HX7B4}0Zq?@>7aquw05Exc&SRy=SOf-AV;HPr16{l#9(Q^zeqLZD
z+Uzq^(GXLUdHJeyjYwh}z`FUzD<Z;@+K<hVE^EUJELpoXbG)^HXazUmr4$KL99E3F
zS)N`W^oeIY;modlvrofA336k6!JaWC)w38D4g|{jQdfEhd$7Cp+L!nQeOjy)BBqng
z_DnFc(=I-DnRUw=6F1XVC8tez_?$K@b*lv^o94*1LZX;FcKVsbW7Xu(xnR;nHyD`#
zkAs5}Oge!UvVDq{Fm=3PRZ3e>_!I(NIqXL9yjtw3I-<@p8IHN56GhF{$ji0`Vq%i)
zKH9`5F6Lt#8phicU2QgG9;QaQAJMDP%iP!IEY|Jjo0Gfyyz$X?-CV<2jPc@!N7?wc
z_>jVvIi9b|U)u;zz6@=uGU_%D9K8tI7lLGhTZ4`g<2-UmFvdK`JDEoZbm{IPX!MJi
z6A2nqLG&IK3NlzMas2b#hs92oxVWOuLO78B(Paa=kv<}(Y`hCChm@TByEAIAmr=R9
zmK&}I#P$AOnpi=zJW*~~jKq--!Y$N>Rr4A=C(8uWxFzH|)i<7d;2QM6UHn!9ALN=v
z!Jy|n;7`v#yqhKFu34hz4NKdJ_4Hl=-i!&ui{|5NFh`{7aL~O~a_*&m>A~FmW<EUW
z`Gp<7Kdp8g&wxe7rgjV+I(cpPjAdPPKD{;`@lvn2Vq_p9_#(Y$&xsdYXrY(;uy3*k
zHb;)B(ppR=|8?H9i=UKW*gm0vJhpo)1})r#dk`^*XT~{CIl(_nDMV}8XoCUXAppE7
zw3G?5Ymq!7lXsg`MS*Q0c!nm3BvXj4jrXvicw}2Uf&J9nex03i5iAp#3ezN^Pr!W&
zeC+Ok)9e854;?U$Uh#iNRQ~X%KgH2RaeU*;^Phk6-m$&CIIc2A85Kv+1h0^KzzA#%
z^&G9B1#H@pXe20WU#hC?EnPc&g-o`St`qKxdB*@kRFoku%-TBVw!vZ9OF!@|Cu$kI
zUvOFYWY@DTA3gd9X}s#>zfTE+f0p?hJqveiBq%_R31GcPQF!P|sWs_3!8(|nFx04c
zE{0w45H0M{$Ob`$lb`5NG>>JSaL$_G!MU=I(}_e1%++<maIIA~+_C9YZ6&~CYV3{l
z)RyH_MPv^3cpx7SLu83Qs=SG>;mTw`O5T8SL)ZdUS!qebtF}bt>->~oK1f;4SmJ=$
zlP5~mCQ~uNKvuVnGYeOpDHv1DN_U{bG`uqePy4=>_`tFC^s<oUzOECDf|!SDv3qnS
zbb_$+X%j^pn_WPJ;>PohI?!sAa^krfE>WHI3<=<<xBowy#D{nQW5Cc=K_i5;OBq=<
z8MZURIOa0E527Wms>{{9&x*w$J*h+;AFN<#Rk~;i`%t~{V&5ySP#v#*m-T5tj=*J*
z07e3uaGqgCqEmUls=<w7nqk^S=h7oYHv}$|s@}vLwj@7ZqG{AIEM%VPOW~0TW@~C!
zJJT+DE#C(zRIF}LzX187uBbH0RbLl%WIn4W*%hy8U?82KF$N%=(P>dslZHcCG>pA&
zp<fz9)04r_tWm8rLEL^eh`rIpDjeu9%NDi9nCR^<y|i8j6EtglnQLp$@nJ|hUmZ%q
z^Px1s%9&i+0m}%41oXb2^<HA__s`$IT*HH1mq!owknuB#b=zm#ybly~j3-!|sU+Pa
z$o6e76nXm{2jTei&vaYJp>UaayYGE&E0U2O_uc=r8lfS;nzuB;<5#E0&(RU%egJ_z
zZQh8|tKNABB(polnzy?2dtFA%w-g5G9e~T+okE)us}yY()94}G1zP5IVYv-cd{>z%
zaP@v&)ZiMQ!S5CR{i%puc!zCm0_r_@Kw8|#a3dPX2-(Z+LYCLn!K-NpsUpd^4{xf;
z{Rt(0pL>*XLpFmP-NH5E6<pe`5`Dqj84&*_Ucm6R+j2~F3qrqWJ1EXasI|lULy1&G
zBW2Q9otni9?7iGCl(p?PYjgF%a$M0K`;U9LyN8AUGB@O6S95BIE}~^}=r=xQLw9C?
z-b&po-4rDaTa{^cjRYyiI5h;hY4f^b`E=k-4Tx<@N|8C39eKU*hI-nWtt!EVgG3uj
z8vU^!8%l0ut3zMFwl?QyN-t5XZh``iPHNoQ@ukSXOdPN_|5IRlRumJ?{dp9LO#a@S
zn)^jHtHPK>y<_Lq##KxAA__M&%NhG)x2;vJBzzF|Ne3@S5tx^^$08!O9Yl4N;6qOs
zB`O202Q2NIZVqwk3Opx?qjjUzl3ZO@cC?SUduQ<;<2G_wcF;s<B}3?h=GZUV!8@y5
zN{7ry(oi@V8RW<FbK*mNZjW}q58!?b;OqfBDf`kO?z9*uswf$$Q#p=7K;En4`H>0b
zP8^1!dsZpCCSC7^5!i?H(aao7E37tqbEN1hMDl<xJucs7XHDz5tVM?Q_^0n~FX#P-
z-~H}~?_YoNK4`W{k<3h4id3DkUL`iY!RydQCq<z$LqTvAcnccDuztW&+m_?IiljDN
zu>#E1a4Te%=A*~gNE)d;(iT@VgtAB&V-~*x<E+>2WRk=vUR0)g<JAGRqzQU+Nu=gx
zT_jI<#lYg_P#s-C4}xMM{Q(!meOOJkC8f&Q8q=RG$_WH9f2~Ei1dbxbxZ}vOZe6L>
zn%_{gJz%K*Qw%jQRK9_s_7Ow%z)&)Jj>CU6F)eS%A^jV6wmW(@G|Z3KSuqA}>o*XT
z4g|IFhN0FchJut<evQcPliaCQuqZXgd9pJ(p6rXg#mv4K+<3(N@pO)XI8wv09b!1v
z;}<CwCXcj0k*=9%{P}g5ut<(cd!$`nwdU1-TJs*gSPjQDM-p;daO<B&Tnq2eSCu3m
zzmyAg(l?QmfY;-P(sUsw!Ah(!kNMig)cNbHWApsWzrG)y^<`Boqr<3)%f2zGs2A~*
zTSEJl=uM8q_wz4G$rMjgR10p*&Tvb@Y>`gVrcC7p0Jq!jb%s_Ux~IjYktU@~2H$bl
zci!2ZiC*z)dPNiRpfuzW_gC(oPYWtqrD}hj({K^=Do}5Ld@)G{MSUvZ`y>yKf)W$Z
z5lvq0*GAL069UjDQ`Zs9KvAN=gCM;pZ{+Gypc@I_^;2R`CvgIPJD#l@oMkQweM9)E
zTTLw!PLRVvD)uxR)Rnp-=CP5Oyoz5K{yKepzkj3;>&tfpt#1fIpuR&;{w9LnqCKef
zKSoe^ouvk7_dg2Mp$DdwK$f9CHCL2XY_x8DHHs$eC=W+WWk(zaj21<aSVs}|)neI;
zzO4Ai#60YQ+#9Qr1Dg;&8wYjNRg_Yc#<?w3#!2GyP_8U@5LN9(I<g1~Z3V4U&^$I(
z`n3?|MUX!3NisIzd31^lQQL~m%jj%b0ReyuJcr!Di1vF6Z^l+3E}va}F4{c;+`(?G
zhE|<mpcc^}wQbiTO9$(cA!*S_Kj)3;No`gE;=KpcK-DFP)1$ZX$qYCJy`tEn=;JWI
zuB1Shs5Fkgq}{C66A&N67(){C9SqW2=Ovls3Sd#0D~Xi^jauNhNcjBn=Z{ppO)7@Y
zLTWHzt=m{VofIrBH^E5`VPWV~Ve$b5i{5K|e`gJIEUegRK%T$SFz<GFN;pi((1~Df
z2IKm;WibZ8CT$QsHCz`>^aJUkcLx+<iQ3CTsDq?@OT3XiVkTO>cQTfZRT)ADG__AS
zckhqw$%hO&b_!l~CVyw#DSTIfD^o+2S}DlS7OzNhb>kIkb=D^3SMS8rd}ff={MZb`
zNRNaJ!C}}Zn9%(TnknNdBoXol?cBqbHWkH~s-Y_-$hagmdIz7Lz9GW{h|K52*jthj
zVQdQ>1L%M}>t4KjLSvrT#foq^_Ctl9%ZXP?syZ;=P?3tG@EgzUk1bxwtb3CV7e9|U
zfZ2>hULd!F*v&gJuhtfDGAws6SqIP}wG6<YSy}XpwXkD>hnCVsITTA^>o>>6Z-4)B
zTs;4)<DzO@jDI>V^80ZSPZ$~PKN}e`o0}yEm6^6M`HA9*ab{X`fe@LLX#RNfnS8y7
zT`w1aTkDsepdo;&xa`LKPIyd{N^Mk64#5k@28C+=%L-R?L2sH&#3N-~>0h}nB(X)!
zQ85LGMv9fG7}dLWbdmm4h<6f)CE&MMaujW6+f-u)U|zLw0%Gy*7(4bB@9-^WMbyYX
z)pdgSxbD>QBU;Jc+Nd7GylEk&cA`q(ppsvGBoQK-{~tA^-)%wj5|>&<pKu+7;=6`f
zBj|AYn8(A*+ZouezmDGDe+9j}(K}9{DS7lUvws+U&~*Zl$KNaH<r#Mn?C#h!M{P$8
zEmf>IqIPfTE=l8~@8Zv`?ikg?j*-cp-z6=KwQI`&<_<Y*u=?X~=v>jtCY+ssFdytD
zV5W*)hYGQ>WjA@lq+wbLViebhhZ$m?<vspZN&JA~vicl&m9uCyOVY7qTr&0zz%dVA
z%;Nuxgq-Br8W|fVPFlu`Mu2@*Ivi$v%IKY|Pu42s@>-X>R_NoOAdNPx_XV<&p=wLz
zSj^#@N+(PkNwz9iY&l}g6aq8R5)!YBZxaMLBGN?DXsbbA;rKFjdTRuNp)<N?<b?Gy
z;2yxY$nE@m{nJO1`_<!!KE|HM;v?Bb72nOAfz0&VKU9X`3*r>-$261WIahv|DnHJX
zk7=^jN_!-FOdEDwt<VL@=^$@^=hw6%_`GJukAvMXCyR<GM!!H|`36(Z7eM)unVM=5
z3%5RO5!4(ZU_Cg`7qo{6bnjWGBfC)lwfs{-%R{<_MRhwt(=s)9#^47Kt|71acg4tF
z74y+-J+@ui(CM0|&PXWje`iQ*s!{b7nWUd6VoeZBCQ$FlN=v+MB5NH~vX{kGV({}c
zesTLcDgE)~ci;WxBPG53zsd%}cF2lz+CXs*+^%6!mAV6|Ac4gtK)#UdeY3sHe4e3V
zokFVd^=$8I_s2yn<_0*fni6@jx=*!7kBy7gGh8V^bI;GECr@v09UfFSHHzvgWq75@
zvKAB*sVI@RYGb;=!gJNn(1oGs$o!{OdN@QS>+|My$<;Pz@8gBL)eI`22Guc3Ju$PS
zw9myy-E89)MJrkpbMM#b?DhF0k^TDrl*nSs1L@g0+-F*YxZM|2tYSTz!EKv%dYFP%
zs~99$fzk;PQB+IOge1p@6E4GEBl%8Xyl}73aJmc#@TLXi$jdel^lgT+nQik?bliuS
zciiATWH{yyKC7WJr}~T=FA-;ACSoLuD<9<(mw@!+0yF&<nf&he*YCdn%?D!n_40p8
zEWe}9l4CrRpo9c`<Kh!OmlY(>6AD=V=zTY-Cl^EBL_?sO;kOpMK7j(V<8P30^rM*9
zPL<$=5av9&U4Vt*#w$GrYb?%9hc4GVuO54X6&;62x>NvWc&rs=`h{=WL<b|;@vV`y
zmtvcc(d(FSv$_W@k{5Q#6`XOA%9Aevg#iE>-*z$PQG5s{#J012&pxPME2eC=rmo}2
ztpm{hBfodKc_&Qo?u*m_QfTB{zp8n^b=U)H(1Ww7N9|I+-t*X<hYcVEvicU?_tgsi
zgXUVO@D;bf)m6>LvHv*@qRAwCqN3LCAG4$qWcpak=-$t%ZqPQHcSK*wy*Z{C7vKq-
z-c5d_CzfU+6g8#ai4%ZW=wxqdE7HNZYJpaj(MDQR@OVeT3|ar;>jR$>)Y@<hAuEay
zcGIzizv)d-z|P^3{;xtWzd(-4r@`^(a*GHNvi`?h>-_ucpI<++uJr%Py3#^Mj{20@
z$9vf&&B-Jh+(U^@WB%Y!O!g7vt_|(9Cw-Oe#3KhanzS~m;~*784OCe>+^cvY3`@+!
zyV5oi7od7i+@M-Wl)QR>OI%5u-z7GkWDSV6{-_qd%b`!xWD%2Lo4?4(&GSlhx|ts3
zv%nNqKJXvkFnZdJTrQ0@f-ucR!vgv5MUjCKqmUp7R?ceHEaC5s78z0S2+<4)nHDIV
zmF&QQV`^O46yv8`kyMl}rf4#IOk3}1eMl-8_JWGxv<hZ&2~BAO2T}$G<YrTJbse1c
zUV{{wcBres3RL3$7BaG0t4OX1+&`&d5o@gd)*>dKGOCr~fq=QZosA##9p8dtt$d3=
z-8JFj7jJY2>H5qc?_W<6Pk0`sJ1alEs5pQ3)da7=s)L`YYJ7EgP2asg9ks4+wf-jS
zxjg^z<s-|<|GzB9`f%N4cna7@_Z#4HBmNanG6s6T3E=+vDMO%k8xki#BHy@hM))QE
zct5`K{!1#_WLl2%ZcoN)q0j4!EbcpbA60v(SY+KQi|P=IWm!Tkstb8;L!`B$K$)8$
z_?#o!cFe{i@e?0<_lU~oiBr(W0u3Ty{hZAN88$GauM^bYUjF#QM|vv%uk^%}9Oui<
zr<=64%y?vOZZK8b>3gHeRLxHw-u|L^LmO{%4(ytr`R2?wXQgwFhB5MDE8RUI3$l?K
z>|-oY<R!Q$N0um>m88phQ<vo~a55KUYJ4D|RPScZ$54n@Ya}3_@qn3t`G%+cRjjEb
z19H^Mx<r<z!HusCr6MLdkDyxT5wi%azVLc!ce4BLPv7m&*Yh8LxQcx}Zs^u`dv&uy
z-y=?sNYiE;F@q^uNNa=8vVO4=kNu_wzE+rT7Z9oYA3|gWY0-Aonh3%E+z7(wq5x#c
z2Y#<(m)c4hQS}(%rtcgrjoVgSHr}64ECQ^k3t(ko#TdmgMJj^pcrNkbiHl1?5zxY1
z;%k07;4ZXq3$x-9M1aTqIc7{wtc=bzF0pD^O9AL+S`9UK?R>jL7VHJsW*|krhT?&Y
z?mws21Yk8Sd4R<c0>$};kxg&_23$0{U3so(oi3KfLTe&J^U3;lgUYZ;JBT;w&;sJA
zMXNVi@XJoSf;{3|Ds@)m20!>TfqunUDFPe<)am&;wE<#|Pd08*DdOS)L%mA0d5yjx
z^ijK_V{fa(4t1eykZs&M_eA&SCg_sr2{Z^8jiRZvo<*a8?HNZ@m-&H~PXslPm!h#F
z!C9e+YDCn&(py<1F+7gefS3?5UTGADj6#CZWQGl52R~2*;yWJl0jBA0P^)4WZo{`g
zejo-S$vwUooi{~{=^(cbk}4#by<8LIb%jxB(8mLaoyF@>rW0?%ZB$j~%0~`C;93a~
z1eS?Y)5T=w0IskZL*&$k^=;(cX=DY72~Owb!y*7~*u=?05vRB<ysLoL%6D;rcpzfT
znjm62kL>6SUS%jIaK$W^0@f8MSmUwuq=Uc&g|`4T6YR)qG*o&V?+VmFp`JN{f>gDl
zLyxlR1ka6U&k3HO%QF83%HePzFEi@23#JCZrg&CG6KWBNVqlV^CNZSv!E?40*hF||
zFrnEZo6#csK`VVw3uW>u_vba!i@we(6fh=jcZqv~ez6R=Wh|axyuvkPJtpK5Ad)Uh
znn4z03liD{iTKy_b8#c;><v<gGp?-p$;27bvzk?qDdS)ZF`#Q?9B)Ke8eZt1C7>uN
zK*Pn*3KUofg~t;&39dz=V#F_aJ@kYdTwNJzfap>?s<S64G!RJVhga$skCH{ccWM-W
zEDc_G4+S<=*87dIcpX>2Rxbw>Wv&YS*2**Dj_9zELh%vdytLuU;v4TnTi^-<l$<wG
zOE@Vk*};x6d|@+*-y4Ch5IE!!c2MLq<V;Oq1FIsZ5c`Z^eEwzS2MvIYGinev^fHTN
z;{JyU*_~GhxyG0yu!SQFQ>1qQYkn>(L7={xVwy(MXuH`O6DBV-L+OZ5OfU=^me0W1
zx&}vkmGFT{Ql)s2SPO9$E9pEGPb=ojp#3B&&V}n{LexHF2;2-%034JX#AjBnzXWNf
z=TWGSuVyuhJ0f~lbObpn5Y&4<SBPvb(43^FUI?bk9{zN0$z)C>U*$1^N%2ZF9d=vw
zLU^s>&>Qbaz^6jV*d$Hhg6*V>@hYVBojE;h0L^Z7JaiBM?7uNGRE)Sjz0Xsi7P*t4
zW%3SkgOux{m3=%EvsDjMLB@54wpt+f4@ryTP^*wYyC(S_d4(E94S*8e*jT2fw_UxU
zphnBQO+TZPxWOHUWD4I!bL8Ew4#M}wFY@2FXT@`KF%qD3N*#0E6hm~-o)wNgmAkQ;
z*CT#3H<xtmSOX>9w63w!ol;sH?MY6?cnx$tSC-7_;&S1{{ARyE@WIkPElw5BT}VdY
zm^3_57)U&P>jn03LZhW-?3z9#JZqq0r^ll&#0fK)V3fA3z;QR8Eg00#<SD}Lm^2|Y
zbuNk)I*3X|X%gDniHpfvXp7%0m4+Wm(THrK4ak4&0IW+Ev1WR61&g9chCkop|EC(c
zs4Lmfgy#*39`hyf{}n-s!Bi@BR2|6)T-WCeLFnRvRv@Up)Bg_ZYv>|bJt2_TPY5?5
z(E<tvrbQy+y<2=7^$r*!VC#m-WQmS%1>OdA2eVxwj|idC-UxlYNEzCmGdemK*G3}?
z`LOL$fLLPyUBKbEcc$PKqNSj<!9mLq>!}NUth%!@pHVGqOsEa;W*nv&%*F>&-X?^O
z2y$#QLXf0kN&-a#hGG^OZAP|P@NZ?N29>aoQ>9!g$B1LZLUt$$8`CZ?a*47WsgHUj
z^;I*K0?BQ393B5G#>M4L_b7~X94l%bj0!bO6tl!o^)AfjC7q#*A`;Lb{l;@hYfAG?
z?Z3kEB`qUYNTF)f2L(V5NDxVP9cH36)uPhKfgFSUX)*0*_|$^fTHMo7E5ftUQiWI&
z&;m_BGx%XdF{y`7Q59hMI|8O-S)rx^lckfU7Sp;?R|iZ-w)XI3iQo*w9PmY{=r|0>
zYz(?>Zk7qUy=rv@do)g11pSdz_aM-W3IMHYu~~vM9jkJS6jmVcoM3dCeXLXiv8YwN
z49;gA4#MS_GQus<oUzLW#K0$Zi+*yxT^gWiGsBoW7j#Kg2c;CebD4~g4=V9F`tw6{
z+Rz+~a$o#nDt-$CUCU?bJarlz$6Sx1=q{<Tp3XuWOeHr@D9VYE8i_64A!CI5Qz7t+
zwjsXBRy?dli!~`q&jfh!Hx&~m9dzcd$TC^^`$=tuDnT3q@K|QNbPev6=br8Lz%X6L
z<<7<yOc3H`M!jr4@JX89B>3W=J(e}Vt~JnLLQ}#jmOw4Es}>c3C$1KdRAZ%RjRp2|
zF{u@r$h?_vw3`-PgDOdndt$dp(Ss%jdgR>gP;)nry~YhC#U#hTekPBTF780{46S(<
zJ5u(E<yLUVOwbO9rnHkTMzyCTOuG}hjszofK9LU9M~gx!#h#(YQ+w-d<gbM{vYB+|
zl}N1v1M)>|%&DCXfgcH$fwjlF8tNA*8f6UC7q%`ONE<OmsIhXYCs94tJ(MPrWB_Ze
zE(pYV%xJvxOR_UHP=dNF3iq^}EEnIH0(~iqHt(iJx*Zdus-;Jn5;eXx-6uzA03Cq-
zQZ*%<0#F~Upqb7E;ybAUh!ol*cFO3oHqFeMSuY|<bK~fG*H@aOoZp&}c;oF&shh!*
z44>f4MRm<F1ABnEa_v<UL3@B;dmv+#Y-1J)d!z1Z=m0^GK%w#oY|@JzVK5*Eh?^#R
zML4ualjzWHvaX(|$1_P`bq4Iu%?#oQ#AuXD5|T35uO`K0Ve*!ez>Gq@)jY4G<$yM)
z!v2^r?2))z$xX$m&q!H`d1eRTk6x3_fL1_I-O@9@5haOaQP@!b<P{H+LePnYYa%FB
z2jj}Xz~v1Nk_?+ZYcTL9ZJjBa9-}t^c$2VU3;lq{S*Io?++4aqq7cojz;?0nKp%<x
zK$Ip=GF)nKM0S%gh>4_4!-~d9NA(coMSMy~mN;&coTS*=G;w0rKQV?)RRFB;9-M=0
zh=J!(d$XpBZAUSSV(uqX{hVO%g=HSCl6fS1P;cl<vUd<vF7;)z0#wXRpf#z&p7n_d
zsZ}i6XWou&RQw#`saCd!?w+wR14xoukxaDMC|M4Dtz(+g)PyAz^hzZS(0mHpHRB_S
zWrTP-$b3T!L)7yXQi41X=t)FUw9=O8J-?a}zG{AA3d+1eo#!q_!e)rl_O?ht5I)k7
zXY5Oy#G+QzTNsE`_AEUJY;tQnKp<(d&hy0B06?Rgt5N5o2sk3G^vYf}lS?y9{?@cW
zD2bh2#V%mh<A&Mf29u8qn1eeUB-$m;`Hn#(ekS(_<R;>mY|QEJ<ekfs<T??CU!{U|
z7hzp3FNxmtVpu`Uf?eY?P!kjkOdp!d)05x-%hh#yxC9Wah?%xkwyaAkl}hDJFRYc+
zA_P&dcAfH^X&$tk`NlLfLuSI0y^skQkqsDi$X#ApPM@`)b2(Nst*^TT%PV|BMu?=@
zf_GfDNioExp0(78W0kyQK*u$x+PW=M=*dr!>DD##EE%rmhcwUO`=0Y)9{FmH4$w#f
zxI=HiT)-b`Yc-1KjszdT)eQYPi*#0CXD)I`KE5bR1_^_A%qYHeaZU6Qj4|1?y=WJ;
zpsU7+m`q><|A+)pcE(V!l_hA=S<;3R@_S~L4kTu&8SL8?eb7;1fUKq+@B>v6R4;qu
ztK)FlrdsG<!P_ipP!+Atu(j|cmCiOu63aqlMR%blvq=vgwaS4Rv}D3mFb91syE-y2
zZW6R!_&;Luk#xw(B1+G`E;o9L$cLn{cLU16r^utAk_`NHfPw1sVk;@MG7IFWL!bz}
z^elG*F30Xmv<B{PuO^;|z16=BD$vBWYa?p`o4#T_WQ<^+B;!w;y!VIgu0RX#L6()&
zSYLFo0?8r9g}UNnNU}th@uiQS)|^9y!=QMS#o$UXYwS;nMDppo-7-mLf^AM@P~)W5
zJ;no;9%`ks2IB#Xz)2&CWdiVE31(th<sNbbM<SILP*<U{$l$o+FE8c&sR%_*E|t?}
zWaxY<9WhgpnaqcUV?x-McEu08jL0(>pZ*~yl)#IEq3HyXs_m5zRwASz0YVAhc`2p%
zNbq(>1^m=HzG88Smrqf%)QPlhx<r&w@1p|A$w|$NdO)@4&IeAVsw0{vOZ%p9;H=pB
zY2h$5l&SGnHg@<6Mt*!1h8!6Ql%HgG2_nFsbvti~TUbdAFiA_XLL^+OP8OEGoZb3h
zDM(?WX$@;6x<t>No?(oFoueYJ%gDF86_B%@uUP8=3mjoSaH1X*;F9Z9>hFL2{`>2v
zUwwYLpjch*!J+Xgtlf)GHeQc&{+g@{K%1@m-nx$<U9^B!68ya!KTh+(UL3L>19dwL
z%@S-`(P&>yfJS%`U5;9@B4`LPH-}o9euN{gcivL-=%{yIQaj29GUx!Nl7Px6Os!S?
zkq^jTiw(NA^HHTxC0u8I_ucus_vZ~42hSgrEOQH){;iDa5ov|ehYl77R1$a7$x5DN
z>)NyJvp2GCR+bkj`61}az*1uUf^C~Xnf1VZ8p%>s&vx7fKYT<k2}+Yx6gX2l>wo3G
z`KTbV%r>bae#Lq4uG?yE+Mq;JRs7<kakUoFD*dqov*ZGC4_kDrdPRptcXhGRTRic$
zz$ki>Yvs|q!@2leoqMA=G7Q^M7RnXL($WCE<!3{{*sOu6qJ5_BS+xp}3T!j9F*4W^
zL2W0yjrcmbwH?tC1nVs(AaNC*%E=1y=v5@sUPOo8p>|Nsh$aYr>2_RqX|j<8wM{oW
z7X;w6f7$@H#t8(qZ?e$AYMYO{FS!ADv;$Pzc?_IYh#WcXA-7Wea^f|`6f$p6Y&sS1
z-5)-XR7jpcX`W9+X0S%*>++5QsFKdI^`uyUCE<lW=Tsa@2IIwf_@OL;ZRB0-MV9~o
zwCr}ydiCLTMU@R{j$oW@6RhcnaK_z<3l&=8sl6*NXa--&^KB)8^j^cjx7CMK+1Anj
zRv>#)^U!V6UU16hymg*|?-P@0RtN5z^$_q~z+>ezk>X(+73m)U3%`LbU=)(`piHP2
zp^Gh>=wpjSJWp}sAwcpz!8SNGGbVO9lZ2lO){``q!pP+F>-nnC)+BCBlZpmW4aS}z
z2>Ogn0s%C8mkfRBkPnesQfbg-=BxcC!8fRm>tjx_%!;b@IT$=-AXuJ;taJzHBFv8j
z8fPfCX%XuWOS4d}YVs0vLbxNpC8HIiLBWStUfFaQW7&Wj(}XN4CR1nwCGD_c%tHYu
z@+zx;z+9jaFm&r-klj7P2Ql>#Z+-?A7e-rEP-$L;ovxIn*9W(dr?VRKx(JJznXP%L
z?&m&fmSxn%RwT8X*f`!AfSBZLHf7}}0JMES;LnYshUDt!X;|L?bJ6_hus?hTIO3NG
zBC7)BK(VP+*g^#jG#N~6a%gm`sVXWe@ern6;&e?z8X#X~lm;o|W479YwJ-tr38PrP
zX_e%=EakR3hL#u|sR1a09FB7$atN+bTn2XhMcNK0gUW!i<%rT1GLmF!kZZ=!_T9;R
z(YpFGd+@TjZCct@QtD!{Oi!$+M7~y`yJ^iD9*5Nu;S_;n+GwiNAx6w5#hvn0R-P?n
zdWfzSU@ifOmm}r{#ew*CqaG^D3n6brK+e(x0BphVtgjrF4LnT!7<d@FK^2{E{Rgqu
zN=(h*iA-;-WZ?<|fn|`iA+AXn0@{KXObxHWUdz*_d~ITV*M^A;RkdMSUQ`ue)@rLh
zE^Zsmp-ZN;F4s2oJcV7c#UelA&#SNyL32~omdh-*lh$rc7e|d`5>mG(C0P@<N}Gpg
zKxT{=8ftY$Kly|wa8+Xoc@TVy9%?lb`S98|#H|gM5KomMGRR~QZj-wTy!qzAWNic6
zF|D<od<-ZO1L~-JS%t4El-JCgOku=FIUla`iDE0MQaph(s~6e|wXS<jX(rx)%$p$y
z4fD|wMYUKnDpDK2XmJHUJ1BunvQt|>tE%a#qlyK}Q`YKh4k?Kd?Z%7(n4rOokq&6K
zbIe3P-)w7=l=cQri#S#`0QW$!ZZB7A_3F`SMlnW-G?i=y3yA{G(c30C<FY2Iw+TtO
z$OZvSb+tvzfy#HJ?yk<P+Kda!MJ1V+BB@2h&7(&3qKte##GUg3@<WQU#B6B&HgjU#
z7B(QfO@QTat<vgf&NnEvpe3XoYA_c&1AEctqo#>bxr5|-U~61fKk+jPp+Igkxdta-
zV(5>Uq^N=cvg2cEU3BBs!eJ_!^@Rw#QBtv8hj|poWbmhkg;_~c?di~GIHoyEvpP$v
z&>m>Y<P0l)uHNd3K^LPas?jL|U<sd$)()XZbInhRxi<q2hVivGQ;~&9Wfu_ggT6Nh
zvC=jF7@?x2N%H|j=0dz|P($C{6NL?dlK56wD@|y|o>EVp&os<l@pw`BP%B3FKE#UW
z^V^QkK9EV`MEak_O?seD4Rja1j}+xd#^=#@0_p%l3EZqH-j(TtN!K^QlBHV!YT6u%
zKxMiNAcWUuwdqH*C>`M2@J8Gez0K2B4Tu=0S+=CSBacfkhi4Yn#@{4dRGEICBAVhP
z0H~RkW6#H{%p*~zOe3H-tJ?$@;Ud#&`U5CbkGDE9Oue#($uVXXjWOHem4wD=8BbFz
zB39R%CRVn&gQh7qkVivfT0*Dbok5Pwm)?2KsJMfEQZN7)TuEs2<BB2TfLG7?s_^BQ
z%~%&B#P)``p3fjIpHg)(G{9Bx!I3{E{TGUZ2OdkRq1+0HpoxdKSn{C)UNf0sDoesJ
zK<cO6#CDQzvnU!TJO2vmVj4PtTzv$jRwvac&YIo3nxP{_SPUT-yGk`TH;G6w^XO@x
zjNxuqQ<udF-^*Rjzx?!<FA<ICUHI<4KRaBd3*>xqlF&JuOHj)&=GZe+`gySktT}*F
zBk5J#ZiF+n*xMGq%exq1g4tLjfCx52Af*fB*j$&21~PPvWz@`|*bm4a819`oFSe_<
zvoEYi%DNeqFuY&9&;vN#p+p`dBof_=YzDiIxurIAv0nU1FktPi7i6vDgGEaDNf4j`
z+F=)@D!#62li;BhTP`$h%w#)#S8=2kVDX8B_L3!KJX8eWtX@mLWADwOmJ5F+H}dYX
zOo|DFnUux{;K%Stg*-fH;yRAL48hs{#q+UvR4Vf;6HSe~mQnMUO^|_^fM^Im{Dd;5
z(~Aet;vluKYH0@=S`-C%2rGYnL{cjc<XyDKrvQ5G67^>l?Vy31>Z%}W!k|rq3I=LT
zB4x20-_Sjq(1R_a(5y7H#9Xlw1_#=+W1-#i$=K$q>4C{&CY812)*6?&H;Z;y&VUbJ
z8fq)`a|dZPvb2tbU33{7eX9`$xEff-?(NRbNJHF#gg5KcIsHunv>tcQCdUo{rk;@r
zNKSM&XE96~#euft40fJCNJO}Z8=uWaW1O_8!F5qfS%;ZhSF`*1b(M$l{IxTR^F(rT
zQAAgwW=G$lVU+09JR&x4)1_ArFnO#>p#_p;rx7!*6-V8%qiO9HhdGhKHgRhrx790(
zUxlK+EVLsj(6AsYy@7o!#MqqZR5!8#4vEN|uZde2Vo9~&@{KnMzS9Mv^q@6jYn)9x
z^kyOj@@YZ$*seThA=2G6Sb`FMdi7?=&Dkt0IeD3z(nv8+{H-}@ms@E1bfw#kARI4H
zCUI6nHG5CY2|gmnL?lY$=Ej;7vXVC5&ut~sUzsdr2DVcuyd5FV=bjw8VHmH1F|}lu
z%W8j`b3A!RKI1GH<7L}P#S#yyi>r9C_`8Xs8{^{wju7zzgcsjc&wysNGWaIL=&T!R
zYw;D8TsgX7;>U}lx2maoi{3PJKCOtnB42d#w!NeYzMcfh;TDRF&B+NCX~^3g43$Mb
zEe$3bQX{LbYT^GRe71U)P`LV%xxj}|GV@c-YG*H46houo=F|wS@D^{11FMt0QAJg#
zrOJ!|hse%SP1-gWnC5w>p>q3frF0T%4UfI$p?mFQFfbTA0yEF<kXA&X)>Nb<`(i9t
zBupCdxwa$?42WaC%Zo%k?uz0vELgiTezMt2k(z*q^y)4&F-^4Bxp99?GAu4z;Onmt
z`<=EK8cE;sjm!wVuNR!%hiu)q@uhL0AZbsIg<Me(-86bdLF%O>xvPDWqx*YWCjuu;
zzA^7)@D|UTMmTd+_)p~uz6G8uitUpEu~sc|9E<)TfYu_t_oQK1MeIS+Zt<p;7}*A}
zM(B>sFK{v_<~djr^lFf>>U5l~J=1G%`v!L{>aWtgn@>IQtzHb)7cB(&V@XZYb^zox
zvnWBP*TAz2ypd-a{EY*!Sh{E*bOWSZrHsq3M1=5!n1|2s4EFlcwC9=cln=!v#N}=s
zOSg6GGSYofGQt;L!e;8%&i9POs`WzByTaXaRUpjQJb<ZHgULbm{dP!8XT#YL`|2hs
zF?hsE!UM=McWh1oHs^*^%I%#FqVBzlT*|8&JYIRO0KZB7*D|GtgzC`8xKIzv{du*j
z!&O0RC}(JF^MEEOHiqeeW!8BTS&przmHQ%wljeGBtNIY6YFbG_EK1ie3Xqw^qD#-n
z+%P8!e{vF|<Gt#kp%_}3OvIWHarMg7d~}VvY_D0?9Jm|H8oa-T$?}$;gjUz=&8+A>
zWXLI)6?;=3@v<wngkI7!HA(i*@O#1Dy{_b9UPK9c<*36JGFCk}-(JPnc|g@TLIjwX
zK!1(Ze)gWp0_(!4Hifd5pztE=x5;j`*ELW^<3tIUqI9Kiud*Jvz#<(ncdGScz+YRX
zM(9GRl12;k_J=+qK-#AcS_2nD1Ax6jWA%b|gNA+KPb%HWaR_>~M$XNHR*1qAFZOWG
z*7cdQ)*BxfKN)iEeKZp0-@6x1Mmg?pAJ7dJa2T%JP}KKB(X2@1fp+nJ1tQ6s(MpMI
z&Z-D_6tXZ8ebks!MYENzQH_OkTomo`yXVi>zx?*g_n*J~?wyDI)*K)NONa81`}$0n
zh6i01{%PONN}SUlBtb6mj3(5FgoWYv5=f*69_2qQ4?0d$uf_whEx+eQ;X$o`pu16M
zvF`)Mv_CI7KNJqpTz^t=$av6|n#l;C`H)96sPfcTzk6%)FMb+1^T#@tr|8?ql7I2j
zf<t9`sDv4CAkg%&46Mcio%{L+?U176ZnCxxC*|xL{i|5sOU(2<@cMu7m1>j7yOh2w
z<)kU?9VFYvgcy-?7KOg3^DO7*u|;3FxSR*dDJp0D0jLcsTs8o(=2<z;`VYSPBMd;o
ztclSOj7i4R_K?<(sg*085o@z-ztF(HT=qZy^3%If&uNj6C3nZteM-=vnB_^NYMTcI
z6sN*kha(>mUNk5;Rtsnvcp3LgM(DZwTRoIe&8g8oE+207_?&QzfVypt%sS=C<|)Nx
ze9U!$bUTZMH7u`WQ0kIU-0m(R9+PKq=jAH~7dkrKy38lls)_LF`g#BS<&Q7#0Fs^?
z0I7<#$^j52|I%fdFY}Km+|KGV7*NtnHA+vl_9|ae-l|WBo^?-77sKMQs*r5uxgU2u
zc8Sm_ixo*V%P#buFa4G2GQX8sLNVTCZclYQ<|L@i$jxyZ%WG-b;gII)!5tc-4Pdhx
ztc#zPpw<f(f7T7?uPN))mTog=64wp!+h(EMF4UL1YOmJSbB~!imH>2;7R4vbSiqGz
zbh`%v(oDEAv9hSM<NB0y{g_*SDw*%uk`6H!sXNalt^GA^`4WE~^50*-{N=kZzkX-3
zSjH#Kfg##j`lS&)o>MX*7^Ecy*r(d8G6vbHB;QS=WwuPriuodQb*J#pu;754d@VLZ
zcoVpNr#G-n9Ok{wGX*}Tg2<<9tKO5Cm^3Uv>QW$b$xf+#iykO&t5Rk{HGfQL&whGb
zYz?p|Ero_ta2PR3iRS<R36u37!KBu4+ByWM-3U%K!Fip*hgkFH)3aVY^=iXP5jnl%
z9+;bQG~ci0Q-5?RqsC$V`t&h_+Py+lv$_*s&AJM6Z@%|`zTEYAiC^dWF2FVG;+3Ap
zBmej0c=^rmzkUg7IDTLq>VUk9lqV@)i<k;zk2)%DYS%0f?9&*oNEb1jk`v`dswluQ
z)4W+Kqqg}F$fwftPHAlce^BKO%at<%wbchgOIIzOcZPqai`}{pOKz-e7cc53!N)F=
zfAk<|hfQiz$pwtk$UDgB+Qg?tg05JMfIOc<sFbz65K61V%W6aBW7}X=+f#1KF75nr
zR0_vdkSbiJ#<Luzf#wxhJm<ziqD;%=I6GB}bPj{r2-Dw$HZ07yFgplXV?1Lqd0b9b
zP)d__ijPL#HTI|jWawx^HiH)GO@gU51CA9<Hd0k73!x7AUIEn75b?!jR0&Q|xzTD7
z^L4u=69vGeYmILG+N+P_wuKc1+6FF20=UOJW8dpH0iR@-Oo6OO3vAcU;x;59Ssfsz
zG{Led`4oJ{QeM-7>;Hv;Y<qD;CuL8#sl8=C9fh&dWtNua6wFtMa530yIAX?N0)u%3
zVCwuV$^|uu+7dGy#C(KqKnifaYH)$n-8gy)Iq@TpE2(6Y1FYovj>Ls5d6(DoNsmXB
zynC~a7!N*D7ES8YJDO7ThKuvSS^4Z{yv0l!M-rHlOxGpJE}e947v#=?No&AiTzEa8
z9Ti%`FWG0+uJo!;#uc9qEX*a=SYUXG9UJTMlDyNd`NH`79HaH_c~bQK&Cf4rJkyXh
zEaD=GjVrUc6_Tr$rXcrQU>?+ARaR+fx-uJ#iFDsM{3W4qTWpb-X<m_6XllY9TX;mt
zK3TP~TJ@s6XjPC<Rn0jd!yUM0ijVIV=0vSN`-k2SJ^?!VWa9DX=Qv^i>-XVxknad-
z`lW2i;~7kJzS=tgGnXW(4pOjq`KpLAMD6o&_Kxpnqd<HzL|-6dL#o8g+o$FAtTMTr
zDY9yxtydq@A|5%WBBkjYN;^ks6h=W5NI|?*BXBBEZ!YhTR9-j7+%Bk1kXyAuEc%4`
zX^<=ZI$j3zMohRIL^DtfDb=`|E3QvVU@0iaXFh()r?FameOSIoKYo}MbFt~SU#+^M
zeVBLnlB>dmL6XM>+)R5Z*5yckDWbHp$S)A_F7Z*(a*e1$XOMBm8K}u1@!+HfJ=339
zatcj;TGS=Zu{ydG$d+uujU3p<&n)V0HcYWa;1F3GT=`gM?iVZyU$pHPMQ+ya%?Qd=
zP#jAv?oSR|B=nD_&`<L0O>3JWcX+^WjDW|9xUg@~e^rAEfdf2(b*XP7xX<8jc^W&s
zrH~6{)|ids3V@T20F#<fMUwMe?w>sc{(Mx?Ycxtr!!$hN%`64Kz1tV$=~CnmI?A9?
zdB2F8yz-kWx*K~pNKbXS8$(`Gq0JbgNiPl=JXNyl=PJCC(My^q?<#fKYINb&nWvhM
z8S(k~<@aB{KEK;RtefLGqd}~aT{kwhJ~C#Alh`1VtCK%l<p^6-J*_=%IPJd-8~?MN
znn`pD)<7hQt1H^}m4vsOMS7kj{E{gjiz@RS?t;4HK~+fvUXX~NunQ<NQ~)d(DVx#q
zb&ZO&*!ldnrg9c`<Y2J0<Atj%j`?$nu7bMo1yra}sIpgs`GW(bVVPtjNed;muW%f6
zNXah$Jk`Y*iJ!ydk7QGF3sVYu)0rkCYETMQDKdsl5Nx33OnTIQ{eI7vo;xEplEiFC
z27>mkm1w9ibsslvbC6)hDo4-2FGQR{Ycs;kB^Gs3f%6*_MLAT2N!@GKaWN!6*3_S(
z=8vwZtkM?qhH}AFO8d58o!|t1T!^zW3nWQ_7d|bs$c*WrD<@!>n{!{-eH9YDARN`E
zuDrIGn<S#obd@gah0D`B*JGod0OsfKBTDC&{nPXBe)N7T?TNryx%3aRv%bPC_osmm
zdXpVB0{NbJ7B5NQ9@Di!)A^IR;J}dSYjsa_kbU>{5$dp++2{C4M~H2#09%u&$kQRN
z=R{a)xJTg^gI(Ti`6Pbml3-EP&GiiSTG<ruQ{Pp}cm<9Di?-A~^?5YW7-VTu08>D$
zzuwDjp%6g8gC}Ww3aCfw!nMD0dCIN7MnOi+m;KAv@7^)LWwR_6%)&&z7Au$H<J2Wy
z%;L*ZhbE?U`$fk}v}-=LZQ)Ei%L`xo2PNOX+7&Dj{(lzA*GJk}pv~~4?e@+2_~?B1
z(UE?ua$WoUbrkq_>vW5M*sLIq{e0i``TU3d^1d8tLFpd@kUR2$x+(O;7B^VqJ|uz2
zL&1pG0pVn4VBV+?bG%Pc2=cN*H%}GLVTc`$ik2e%AKnHbwQ_B-19M*A$e<EpZ7r3f
zp&u&_c04$7ow;t!1*q^sj5Fe6Fc{1)SzKzbqRP3BfAACEwmNivS`kpj4}QR;ss}_>
z?R$+MHa|)k(z(_uN$LAvC=N%G6=2DmHgvgG{bbXHNVmvrE5m8lRXXh^LnHh^{o?+|
zOHOKaMg(4UPE{V1*9xnAz+a(?!c?v_?!-Wu9TCm|7pox$Vve|_e*Bscu|7M-E9xu?
z1-uerQ38pS^;S)tGYIJq*yMJ(+qjlQv*71tk-XfeWi8+33tu`~XL*S)t%%FpY?8xV
zO_GCc!)xdmz%&t+ux$eIV6?fMfv)Xxwev}vwi)#XI=bvBu>=}tt*J#vr`HZ(18Hfo
z6z&5QTEM7xzmP?&j<^O$DB&!ay!&+{NPqnL^649rRAvBXnUL%J&=LtP`^${n%}VVE
z-jQH)>)VyD#u>>$o}r>y)Wxe5r!8H1td%vfQZhUV<<A;}`vz^0ZAq^WDj?*puzPiS
z`F)VMvTSgP2nm|p@!_VE6tU{3Q(dwAW!xpk8xZEf{e?6SPshXK$B|2L`m$gC_{#uN
z>i0mZ+U0GMd-nxO|B+4Xhub6UyD<3W)VF0{gvg+=19Us|cyan^>mLVu(XGnU&#FUl
zdeUd&5<WsWXoG2<ERzo#Isr0RnrPWYzaC3wMPr)R1v&)lOR4~zXk(5As?U!7=F``A
z`@XU@b*$=imeRF*>YVx2IKWp)Qo%sP1h2Q(Jpin?A4_Z=0@<?n%E<d(-#$J2Tdku7
zVwm2(PcsWiiU7s_(c4Ts8GyH2#472C&vRuzQDog!t!zOm$ZHwIN_lHj9KI?x(*@PW
z+-AvoABmyDfjL^kJU1DO7OJI?N`A~?pEz$o85;6zXP|YMdn5P|g|hT#lPyA*tQii;
z$+l`R^IAY<>%3?^@YOb@l6A$n8x32TCrVGt);@cUutak1tF1b1sn}?&PT&EQ-;TsR
znE&0kXI}raK?KRZKL6_bJXy*2GUu(|B1mjQ4Tm;z>K-D0grc&oWZtyXNXMDXDUoC;
zz<lWN<4m&hV(`oiiT9n_xK0-G$%L_k2ANJId&UpBRq0DmT1yr{WTNo}?4qcPcQCd;
z#3PjN`f(b%Q$?0crZw#GobnJe4pWrZvT*1uev<Bp@=$ix1n<IJurBclZ+*bYX^0$`
zY4~7m3l(oV9!5+rjKbrnMkG2(&VaTw3Ka$Wm9>EV#ehzA*>|n!S}7>A%ekdEu+E-`
ziCwAzmI7P3b5ZJrB+qsC^ZDalPMiD9pBR@7Aw2B+ZbMl~$yV)f=ZO!%-fe6^je)5P
zD6Ud0J&{#2sX=Z8J(g$)J`F&MOJ_3+XXZ`kjLNY97RsuOuxD@)T(L^pkjR5}l~Pld
zqO8Y&8^1sQ@|VB7etN&_TzwpC<H!u@7g|2Ci@Bwb*cSSg>$v|r&*w_V-_Ht!qw>8<
z<fO`=6$lxy)aW|`%SBcp%M{`EjR~{0m0v^Aw)iRW*QiJ=))gzUB@MCMNW<yhl2Ka6
zLn8O^EJ}1dvLT^Y+3fC?R!45EVk~kxQ~XMc3ZGMS9oZ)+M12EhG&ZClVa<v09jm1L
z$j557CwTOzlD`W8OHS-jThgf&E1YV9hZlJtF%r!9J_tv@Fz2JG%g`i@JiH^CHmpOJ
z$5XT|rpRL1cpaN|ZcC)3@@qShhZ>BQ<?yu(gh^2eJ#1x_P@)keH|ldV_L2aGB2U7*
z6vX(b4DA23Y>%Dzh(esau<i$~UVXOPTC@agJ~*Lgb~TCt#KM@1#6hVup0Wsrb6SQ1
zycHz49S%~2aMMb_;ZIPHrGxgVid~gJoXwDKZ3XQ&{8a&wkM^wF84z!qxak#TCV;Ca
z4cO{!bxAtOq%8drx*Tt%<cJ=*&4p#KoPN*&i#>>k#DJu-(}TQf=_-Y}m)3EX*gj`v
zYO6ONYwL=6qEPdB6lUf^G$ih=Fptv^hZW5EI0K0!UV33P+7kChZx)mbkOfD<9s{9f
z9Sq1|{C6O{CM_02OK7bfam3h!+ev#I6itP7y7)Lccze<1PQjj4m80{PCiko=SHP``
zOy#xse41JjRIMATU*?IU(Hykn{PKrCa*)$EjQ9!-i4Wn8@ne9e6`ewp$`o6t&QubO
zdDd1Q(^7Nc^>zjeVjyj<A(0<yN0PW8*zSWfjY@H}3{9wFP6?C;qwGv=b8)MCr6oS0
z)k3eJ1*Xe)LN?L~+2saxPqG{;z3!1{cFx?&v|wX;(kh*+m{~nqu|+OFXiuX`hlWxE
zx)zxsQ4Z3ijaNL#(E(s$(-EIxYu2X(Pt10VIa;Wj*_l~LS0`E2;#2DzxK-Q!s%n}F
z2K(ohyliD{N%VqYU?z4S{T;NqR33D6p}g{ey?i~C(pl$Jjecr+o#?Pf2CzxpBk<Yf
z&&HQp-3E(aqXxbz;y`yhx`NVTA8a`&?h^=r7aKLuYpKyIJuUXd78}*mG&Xhl4gs;5
z(Jf-8yQS`%1uus&kvei`*%Q|%&XZLCFsIWy?zZ|_{AND%H$OBJ(mU>zE(&cs5|Uvx
zGCaU?{QZpAo&H9Gm6Qz7g!{j<ANmU~)?a@A%P)V9wL0G$f_23S%ZQN}NFT`;_yH?;
zByLYWAPTG;MJE{g5uZ7;w#s^!lpXd7oG;8#o}a%d)(O8t8qCLL0lGi9y)N2cHfx@v
z4@YZNuUp4c+Bfc>Ml#XXW+43W_s`dFjNvxBV9HunZi~kWh!C<FN1{tZrJqGXAXIEw
zd_Xz0)wZ-7RcbJkluFD2a78%EVm>^HWS>SWgGFL}1$OvD@f4E2I8iopwFR^uu%2zE
z5WzO3WIeWY-SbwF4JVCHIYZ>PuFa7Q-o3$U(%&uS@gsv$Lk?|FCi`>@{^*Pxthw1z
z+;jnfp;Orh*T`<YRdQC@7~5mJ-n>DET%nYsaZ;%x4AEk#K#Mj5<fSpB`y_w%Q%9Yv
z;usiHxmDB3sbnWUjiKX8Ne^`<7zs4OM^S1YE7QB_;|-RWM{n!}2;7I7rBT7O<d6+f
z+&8n;_BNJ1#8{}ftI=7ZBB|ECK*}-z)9~qE#shXP8cI|}gYn~%XTXV0?wV-sks`x1
zr}lcvI<M`&<rsf?zGCY4PCz4s21Q=Qb6<Kz*Q2wNADJPYNOeWhL4Zq2x&@^Q_{Uly
zgi32bn-mJwdeP6v!qR`ky~3W6lnV*`b9||6Ne^4ItajJH_OfXGL=No9>>4mG5uN(<
z{Pp^mUw;1j-OD#S=EGCkJJGgV1!U+YnPxGxvF<Ra^h;Am?)+I|0Bw?*IDlbGXe_;(
z78MkI+pcwqCAMRZ!+<24y&l0^yvJ^iq?GOYbz<%h$xD2y-FD+JHgOxvF0)N&@tf`D
zi_JW5{|~cIr?~0A1V(h^zbm99Z`~A`P4cZu4>U)5d9&SWW@VbT&UQn~BJY_96<Qs|
zEyzRDes&yE<^!s=w&R#7i2)B)LIHw2DwN6-?I@`nikT?I#<|^IMc&rhZB@-8hyEC)
zZplOkT|s5$^z<$ihxO(wcD@~?npm66(=d=A2!odG>gF9krf25ilCVH2&0m+1V_|We
z*S%2iFo#tg2OzILMOjq>CW_2_?%rJO$ys(On|Z|ZnHM^1cY0e!WTBwxiEM?g8Xlx=
zh*9}QIDxDWqCvulx9E1(y1V$6En!n1tVzz|_JrJK78iLdM`A|Q0+x9?kG9o8Q?%XS
zfw8>N@yVoh33%C?ioPE1szqR4Cpt)ct@*-Bq^sJf%D0%*u&-sYNi2!Z#r}X4lqh3U
zu0-u>zDOb29cx2vq1%#3MvBgEf=E3ARA!OY#v&)I<1Op=V_wu^_Ja^?Q|3-;$83NW
ziWZ8zaG`L@8AgZV5DD(&G|r?wJagzccFGdp$i86BGsqd#xQSKOn#U{JNaj`icLk1~
zCR!%NX+)Az#BG6Vs>U9}a`+TTc>pL6e;ml|WK}Q^ws05J(C3L?Co>yfli6>n6pZ0m
z=b#XzdWS1Uc}%ri&`!X}WaplzWeYThtth~7=&;1=Hrr@`32~c6#G9ciPeL*GfM+e#
z&m5QJoDK_13|HMH=Ug#`Y3xFoXJY=q7Rv=pwe8h-X2ZgTbG(q~8L!QoB?&!6NSiec
z_TOK{geXycG^t0t%n^4aw$h*-Vj^we;xIyk)MjRpo_qNK7%P2|Ar)vYcpX8DntI}x
zO)&hCvZvSDjSNE&nV~Qo3e6VESYMbf0m-6;^_S0od8hEGzmg`WFJ0P{rbASR*o-Zb
zaZwV#O-Rr}nTwownfS=2#6)#gkixy#;Jq_eumH9`AaZcQx>3uCV;UUuur%Luhl^C$
zDQ=~_7Kj~~4ow>;sC1x_UGivJCo3+69bDG_#qnO}(f3X;eHTld%SMa3gHu+g;2qep
z6}x~B2D#$8H)MNNFiAoD+H~5ks5B_D*`rP!OYu@v&(80Mp31DKmoC|hi(oQ%)Z$ce
zq=H_7Vq#p26@4J6a1uJ^8yT~BW2&yqLO><bEZC6`j;hZyZ<{dGTQe@^_VWcX2aAv$
zP%JJ^Qlh^Sv6pS<=EFgF=bZo);o8OWi)Kp>+-h_m4EPX8WdsU>Pz%G63YBC#U9`oJ
zZcZWRm~K!)CqH<5l{en=zzQIz{FQc0HVfo|3RKEQ@Ea?6*|7&aTL8gAi@};xh$5(3
zbFgw}JLP>tnk%}^$+Q3(c1eSQf=zo_C~TLnH6w-{UCIOC4X}jDv`<VE%cxeV)>YGx
zk>TLJu7JlhRh6w0%s1}EN>2INK>?-9=>c$+&BO?dqL>wM%ULuT%1DM9iTZ>c!!D0z
zaAac=G%Yvu(cJcTzkV;i&m&tig?u#}87p=owaO`vArC)CL`eN%Jc!*-kwBKUv`9cG
z(gQ*q9)`sBfkhQ5eW&>~JOXt{3MRqfQ3>tt^G94WZht8!xdqDI5g}Z7`?ZC7!*vow
z4Bty0l#Rp)Xz&qC1jpz+FrYTjNDr7g>sW+n#<}war^h*!_^gGX_@UtIxY1d)BmN^Y
z?GKQByb-zTY*^AQIsKEAnu_sl(Z7nGwT7o-eokpnqHptci*%DcK&_8$srr8H^7I@-
zzv>EPe*pVm{8W<M^`R1UWqnT2=zy+ol$!u;5BzAmy)|X*Ew@DMR-{<c0$BP_5{?`X
zy82rN=pjRp+upP^2OI>Z_^v%{I!_bV%;>%Q0Y%v4B%pYswt(5BY=&X5SBPe{58z#~
z*VbvGi;htkT*3W1(->67Xz(mR;6o@|d5~7*k!$o8&EJFJka5h&55ZkL<XUzePsuAE
z+tVKKn+Ze#_Bwf^j>tFMc2X21{mo;p318T{b)cS81&J#QL*T$Y(0}pU>=V&8EJ>a@
zIpIMU10>oV6q_nXl-uXc@U;m)sFeewqGR>A`8A76qxmiGl76mHU}E7!=Of_zN2>KF
zJyDFW$LIwGjav>7biu{9*<E>#wLs{Bu>eSw!Rj+JXMlLD4RLL1a0k6Hk^y`r5VlAE
zX;CiBp_IXhx<v=56Ze*xL_l1r4vwiD{?ffjJU!N*tc(knW1{o|Ehw-&^%u~g>!;s-
z`rY?mzP^*q)v|~fA+kb5fUM>*u?#>sxnLIaS{EeUICHQ}OE5uB5*NMO)7%BU*WiBS
zdn|G&t(HN_M{Pe%T}C=gmY};EL_TfXMX5*xx7QT%>M0`+dR3N-Ob1^{Vkbgyfq(vb
z{YS3_mMhL`+nsQy{mNF@bx6C4j^;QtfTYh2@bkZ`TJ>XVR!2pV>h~yCF&{*!+z|1s
zkkjb=&@rNNAV1*;r0h<;#4==G8+o?)dunl@m);P#uy>*E<};=@r~z6-UMbVbugG=s
zD{`GQ8&Az=hG`R*l64K;KVIbZ;h-Ax#aS=*Th*?Qv3JR5m8>_enKwMs#d!qx-~RF&
z>!6y8nB^krNvrN-(oWA8_P|aEG$4`Le~^S1yWKDqRL{PVzP%tnVsVB`m1jD?gsS+4
zlzDq`PgI7@8WR2+3hVhYRT*6xj@6Buu^YOqfwH5dQ%bcsl4X*8MV8H><21+wzep-d
zCvsC0ePga^Ad80O?0{j_!Znm$fmOTYzEqp}A`R-+;Q?^pKI9vA7OvB`sKiG~%t+&d
z)|^VQc#htWW$qLOVGB!}Lyt}tt=meZcJk0WIBUyY1E^rTV97TOhvaw+om82m5slra
zqEUz>^#QJb4bb=LBygWxZqexCV!=_fZ0DA6XDe{A?F(o_e}s-2jr|shGYt#EZVAR9
zQiTE~!=WGsy;u?gc0{f;D0+n@7V!C+@xDv>P=(C1WqPt+Z{H7lygE8fJ@AK7x4efg
z9Erdne^!i2jb0Qxi574Qi$miSCFUdW8!4~(WSar>##`#8v(sQ4skU#1OPRTZc}=n%
zQbkox-xWcu0u$NMgBAKnl@>Ik_Q|lJ=>(m@gRe#6xi3b=^I<qN1##&}h_*1EQc6Ip
zxmam$zfw;R!TT<8mAYX>ANitA${<wZf;5%!0P@>T(=C3p2&})Qt^gfMz<#B6hI`Jf
z$K<U*+O(~LIE>@|LRTyw@?`TghmhS;7qCF3Rl16tkm4+wDQ^kLngE(0cBUPXrd!fX
zxo>3l(Ajl1fyLWf>LsA<ot7=Wa9p-q*E*@ppkGeWFwgU5u<2!9tYa8&sjE_r;7W-)
zY=2m$a@BeRW9qyM+bLG~Bn@PIKKQvKug-jGp|JE++lk`hbLy9zQX4gwwOLh2o_<SU
zuE~^>2Ja<_Vop&~*UTo2BmC!a-w&yU$Tl<SEfs}1()zG$g!x=du04)N>V-~e-l&Ic
zOFT0`(Yur@l2wI-3FtzGBiX4C)3@PesRv^EGpeBTx5Nub2Q~=l>6RqdChE78SJvNu
z{`%=1Pm{hgPcv2qUG&g?;C!7O(#g8lLhLle;HyQROjf2R3px$Aozc}gvW<;$NB029
zFm*NcGhvTx5=FHg*;S@5ozZMw(GyEtK>BJ42;$CG09DTM5V9g6pD78T5&`9ogy+Sl
zZHT{E^+aBNtG?2Twb*oF>V|n#l3NZ)9}8Vdhs+0(<7Deho>d}=H2dq1=x%dMs8fa#
zE|(|)v5hQ1s<1{c($lQX7ANVgx9b6vv5V#pBSTeWnj7e9<bqA(2rOt}7K3B6<VqUO
z(rtScbapQp^j70==+Yr+m4fBdy$OF22VakonFDjW4b16oV9v*<`++W&-%`vSy0B&F
z<xm%GB1DcpAZ}{A-ms+uI8)m+EbUD67YEu!gq4ujfJoy6-kffDbGqS;Wqfq(q}F+?
zX|~+_4s2%9y$U)qCN?&Ez8)|<ANXuEt_-k5(4PGhpJlF!#S!iqGdf3MO-%={&;4hZ
z8qXa9y1j$(f8naU&WFa4wqUoCEID7A01dj_U4N!*Nt9hl7i`0y<c-2i)gc}KV6Hly
zo1^@m-_O`Kh3%{m%PrnX^6WV=d#u2n*_d-mXwscU$Lx*lLC8hloEd*%$<TsuK8ii+
zeXJeIh=pVlwMSp%G*eEj+S)`n++@HsFzTRqY*CDMsyn$AW+<;sTB8b@Mscp0N$-t;
zN@OYL9KlKO_H0f|=13@`NT{$E%vX&L$D?bncKbH9W2V;0E0sB2XZddp@ew6z4$H9P
z_RSWf=A1{!)!hVuR`^r^^UzAzKZT{=Poc;D^yE(gijf^MNM%&vIpM~f-56eJoJ|V>
zi%p@`?9NEIdlHUnUR$fLgus%h0qi=S7@Gc01{0JgPy!V}-NnDP1DL3pVoi*FYOu>Y
zdbaM<kyyHAI_=U(028xA(hwZ5^2cXB)*|@3*Uw*{-v=psv)b6}6b+Xy)xkU^i%NJ>
zKE#KTZJaY9B0;$|$qaC_eT>>)gcgpsvp!asIfXZesd0=xxvNN@)pytu<LkLO<bv<O
zfJ6azy2Ht^|IYUEHecQOy)uS&Jhjn0(CJM^nR<}P=`%}MC>_U>)IfSIT9eJ+_vPH#
zB6;;um#|0>?7m)~fA{NeJa>GE;c9I_3tN@CGzCYfvu7>Cw~8G{)=m-?RMvrKRw5zE
ztXYi~E0+~v@*ps~*ucn(t)Q2evDqgfUu2>$d4OvZ>_;ItlZrePMVjDJu_2&Vym^ox
z?UMGZ>N)_gEW6AE#zVk%@?jI})B-(GmV*hU#bi*-eB~PH9_e-j7-BJDe~6MW%{3)m
zw?2*jcTo&+`1a9i>k+DoP<)PH5a1N_zrTF?`st6qeHZwnW(ODZ<mn4XjdsjPA$7w~
zPCVi0(V2$@Uzq|p^}~?KTUVwiHnKqpp>>f`Kqy!L@|Slfo#yXWRXsrX!4RxX`*3tT
zN~cBC5W7Pkhq>z1tSv|%mI+&fjX-J%uujp}4CBF39!;k-)gfJ5=Est@Q%{O6)gS?z
z9Jxw{K)1l3j3Ia}Qg3A>(^=LX)r#OEv$WpM6wzlz#1R`hl)g<5@4|kzA$7xPC)!Cr
z;OMp3u`tlBDC$1>R0{rYi%hZ;yR_b<hs)J&A6S&PNL`4p-~|9<Re_4u&(s!|k3NW^
z4X|!#!rmv?>|%1$MBtjH^kPyOT>~`flBH0<1!*zMR+?6<BqO)H&2fTo5Las5bzHsH
zpk=^@Er2NiSar@xTN1ytgSRR%sKz+sU%1I0R~rlf#I??}%I;<FMZT=^Lu}n=%xs<G
zPS>W0z-xeSRAJcbr?0>J^8KfGST@Rb1Zo;twyxQt04xZtM74eI=EKaLhPrJa!&;>6
zfDQyueR6-3A`DyqC1&W#--nco#H^jDPCA6UNbg83BhuJ3Fht-4DNdK3$$=gUavl@e
z!v3x^`4;wz(6>!eyOv4!to3lSMBFh!6vxn^HZpv~Mmq&6VY-#4vTot*??wTO<p&su
zczwvIhJI2T0YZG8r=6p&#H5h(eWQ7cSS0PBq_WMKYpdthfQ=)9^1C;*b#WP7+d}&b
zFiUjEgiE>vc}4|tZ2)8_2a2%x9k_2@6H<vR^QqN>AZrJG)b`-ofB@jMxLSdP2I%LQ
zOxQ8%yOV#x)<|=^tPavU6cIFF>SM}dS+RwBrXVa>EW>hQ3CbQNi5~?H6gLvfSCtkz
zRjB@8`Dfaod6n;jjN*EQEy`UjX*+^7SgqADt11Edp{8`GYKRfaBnE6ySaw7wn&;#r
zq$XjG+I0GNkHPJ*7<WnhM1hYW6_r~wjQn_&?gGCTDwpr3JeV1S%)UlFX(w0%+E778
zz^X%cgeqg4R5PP^*6a-&gM3JErGrvL0<~Qpq7y^pG?D<9*hm&I{Q38vzWe<Br|(`~
zuJ6PQxoDNruB5Oj1dvMFI>QSmNm%}$&DWiWd_#)gK1!9ZoMzWkI$x=%qj(~OdxM#6
z6Dzq>T>O}eQZHQeLeF%0jgGO4Gp9Qc9r_-`Te}%3H;)Ui{P%kHM+%+-3wTSMmjArG
zFk&6%FYx1LCfKA>-zoK!kor56q}~kQxO@b=%D(8epTB*5;Y4eFXGVJXrthM<fS+_$
zNbp__L}r#xl(uVY<$j^D-Wn`C<2`r&Vj;_jqV;w@Kfb;2nZDu)Z@Ke_CM<~;<6DtW
z)3)j!Fz;VW`VSzgk1R*`PR*dGPEoFHQC6FC2^G00^-|g)WhJE-f1QfJe|dEHq5r#6
z{<SyFADUAvAX8?0&bG}R9ZqOE@QziTZ<OF0a^}q`PlUC(1hP5Bto+sU{^^%rzWnB$
zt;u4W?zU*gVG}_QSSk*8&z}vR_!nc53se(Uk%K0qbi}_K1S8k>v7m^;+q)1m_tMKN
zl&a$rVft1SRJ|&qPIub7H&!b2y!iy}x=X(Hq=4^v?4r;h*%6d4Wv8W`nN>!L?OqV#
zq^7hr9(-&|2pHG{0^dxl9lm3uH?#Zli#q^y{?(7(@z`ZE^^&y=A$d3r0U<QhJthH!
z-M;5cIQBT!Z)TRwrL*|w>hy(H=Z{!D{495^9ri4NNzyqAnT1X(hD7>h%pZ0D%&#j9
zG1~aCeT=3M461CeIaddyTY31y{`~gS%gd+V{rc0_Z=)$W`YKi<O{g4+=`f7RT@{+L
zR_}`sd!O+NO9glYKY?gyrGraAKp-=5>wp4>q(^3f|4EXX*H?2UDHDzrCT^Fi*$OE3
zkeeAE9Vgu-e0nTpWf^M$3XfU^9Z9)`PP*0dId8^X_YATkJ|MA!ESz^CM!l`iMS&-E
zb*oq{HmS=aUyB|n_GMk46BK|vW<-`KW$;zQ{}R&Tb$u&hA*L%`;I|KMU$1L9-__Yq
zy1LGj>O8AXs`S#>@2fni%5})fXCsUz73wqxM@5EywmNx3YRo^tf`8!cxlEI@Wl@aL
z@e`2_S9y!!{e1sW=?iN^{@>2})w4d$X`emqo&ML;UNQQY<z3V56?p&ftcL~_ku_ib
za{krz^RF-8pMU)v6X*Su>EG?1GS=tz54wVA`l}`pzWM3Q8Ou3_W<11Kdsnzu%e=A`
zqrhf^FQIkBl9ko14y8$AvgPNl4PY7~!j+j8X=aM(3=5&*9_at$Zf2ZGN&~$Aft~<d
z%}}3p?2u7)3dW;Qne5|SuN_u3>p!4jOtnN?u%=tpluZ8WD1q#=TL&ZU)S0L`$)c4#
z4I71g5_!Z{j!TnzmrE%utINi9rIEahtF^DT{hj{$YGkMCMX+nySF*ao$V!q@X)sDN
zsH6O{X(ZpqHQ9AT!n19AuDP*!NvB)Fgn*nrwp|jWs{Q8zA0ehdEv<;NXf@RVf*vJG
z+b+H6B4-@-(Ez^a!J45FUF<hqXc~T-xLYQiDY>k4q)6Vi<hd1LR|(6j)>ekDW@-ls
z91^|qq*-<^+EnH_%-WO!jKYA$1)2eSWix|~>na{UZCq=WKv4TDlrAo)ptM~g8{kGi
z3rP9W-)r|hop3XFZ!E&@gT1u25-h<9awp8B@460KW~0jBD*B>nZnt`$lvfx&`A^aJ
z9_c187Wa2>ts*aMq(FE!E1fHCUWAZ5Igdp45lag?1)Gv2tf-l<%Lg%XSJLzE9Dg75
z4$;}^_?044MJ~9U=lz4<iu3yP-KRf)6X13g+Xc-S6%B=~CS>a0QEmb{K_Y+%%T4O3
zruxc(15H70uo8GG><EL&5B>u!s=a$GpGkExuudTagU-#<4y(gWRjIfJRkIoLW9C%i
zd3~kgSP;Ay$(O#oYCc57-%{I!=dtcbLOTE-1%#5qE58##F?_gIazsx1u}ju0WWSti
zmbgTNf&r}5vQF^4Uj|}2TSM3qy!zB}crB+=bxg3;UTN+Xa^9wfX0&5hM*u^WAzm4|
zDh?N*PQ#wO&hrKP-pSa3Poh7~2X!~15pl=v5EOH_OSP*P(h1m8-%7Ru0o{q8>lUB(
z)k8qwb+$-|t}C%_0ZFV@ktl%(tc9<6kWB+#iAtnY-cWu?8g8RVk&6Q@>a{uE*m>Sx
z$=O{>RBz!l!E@=NgILFszg@{?rO+*PK}K+ugM(FNydZTcL$P!lLxCPAuF(Xo5-PWl
ztxf#@@{O)#-Nuab<|uE;#&m*=?p`5lOu@=l=UIYmUA&0T-zcil2y;>Z$V40Qx{*v#
zNk`PLKPwXK7lz)oG7_2$n5%p!SiWhKuJfkI>JyN4PnENk@QH7zVu0jxT0m&864pIA
zq!231E%HZ(4w?3CW^2;cTm2S!xb)|2c8Kf2jW|qp5SgTP5eeOM-B<v9bvAoeLN20M
z{+>sJCHK`eCVAQD$a}Vt<YsPK8_16NxoEx6)#ch!DQhGH`>9*PEG{n9CXhbzP7@r9
zghC=NH3kb3>#JL;`585Q=qtF?gQ=BRdOgYm?N*m(t=G7+`e~#6+_eh$>hh*pO#9G^
zD8hK|72d(uS>|GuJ!RUiA#fhj5QRQBExfvZ1I*&BKhg;jas*syo$UfmEwF{H6xeOb
z*Ez_Fow%+pQkG-QA-=u*kLPWJnf2A}6xE^ULpqu$vnG?C=oNd8lddk4+@MO1g-2AT
z%c+ZA`Jh|7<EE-c`m~d4Pv!{ob4l!fbiHpQ=$){~Va{<`pT~eb^wo?I<>!P-ZrY=*
z*H$BC93I&8`a0QcD=&rr<#uyX4SZ!9VD2S*Sz*|A^3`y$Bj8m|nsI4tn1Z48)s5dk
zV3}ok0ZmLS{9#e<X>E{(uA|SM5jNUXK!Sbrh?GP=l3F{#qW3IO`pMVXpz4*F^#LT~
znmoiSiRaef&U~F@ij{;1*SJ>%VU)q2g;Lwqp>KT5oD$saR4H91=zynbq9CSCLk{iR
z4bhwMQk#S_uSc7;%!UZihLv7<HqCygga~#*780$X{9@<Y&9)1yGd(UoI;P7)EE>*?
zj&Xy9=i(ldJQ3lIChv5`C)(5*ej#(OFw*=g&!xei`RW4TKQs@Ar+9Q3>^V?JHU?G<
z2Y8^|i{!&&xoQa0xAe@0+|aYYWs$R0qw1@RwfQXehr|yP6&OB&rcP%=c&o$un+1ZI
z4~s4q0O~&vc5Jq$5HS;6H;}S`<|bx|<-pg)wJ)aLH{z7Qw0`pKXy8H{Sifao!166N
zC$jefF8F%Da5W4eWoqNI7_M>hZI%h(OwJHbRF#SO)88j&ClFQS3~F`~H5+J(PQJQK
z=o8e;8=i%l>!Ka1Z_ZW8MaY;^n{?&Nb5m3?UnfO27e-;{rn5NZuA3QSkjmNS`K%dz
zj23|Pd0WtL_&RBq<4>6(|NQIUKEG2huD1QiY_2i%{K?S%)K^!-yX8q_?3w3!>30&K
zvp9bHmEWxI-asCXGGMYX#frRd<-W_~OY(I>hqNy4)7MYG`ts-Zo`ij~bQj(DLuPx9
z=c!L?V<#3v%`XycBVTzJ6T9@=Pv~I78PB(yzg5W&Q?@T;deGH>8QVn3%l6}e?{zrc
zRRIe=T1K|1&R_WXgD<+1qrUs19v{>}M!mf+`d#)s_@V6X9AEFZ6cya(D*buj3CYF%
zb=I9OeDg)|Cr88Y+Tn&*7n_d!wW=XMgxJvwk4xdh!sC_gdh=A~Jsq0OQ0d9W?R2uM
zYTn&7(^}lO*7%!7J%XcO=)W6@6Tr+>xfp!=k<SH|IbaB_zR8_pjY1;)psV5MSNqWe
zK2b4#{_?}$?_N{MeH~?1f^4%q_<E~^_J6>)4ad*zALkJa-5YnL8T9Hc&3ylUX1emR
zP<DUI)!jU|&9_^&xU5~6jT<Bmi@wd~unPJ(m--W8IgV(zZ_`aLWxOe69cFYN$dtQU
zmibM5zvo1r?ZLOB=xS=6^6nX<DeGp5)t;>iKS=)k5$vB%g@ti4<jcfI{u)@ObEH*l
znxw=Kqo)AmIT!ek2j5&Ui)nqz4S9aNkER7V^3CsSV@|YP(#P##1>g*0;e1zVQgMnb
z+w?V6+a3_!(6<K=;!54|A8qKBhWWopn3EHx^P%(bvPKbyH|Ly-d#ZF*BUP$ov;6_a
zr5ZR_^yR|Hea?M>DA6WOXxau?;`53057Bqin|Mt#?mv6X9QqL*(Y4_CTptKt7(aSY
zB90|^PHWOA`{wrMjt_DH_B&jgS{bli0cT1HCv1jKj?GOH-5SeYK@-X7tV!ox1;}#+
zlLi6hAAFtOvyFMdn8-QTS6AM(fTUf0buEQ~LrS3eFMBMi^>fdK6?a?FtEMw^5piH+
zOXG7EtSie^Q-mn|%kv2CCF4fx+iaP~x1iD4`5`o+@LFUN)Czvoq}GLLCZOOXy>-iF
z^{%cog6bWB5-)ejK1zT|lP$}mUcfcRE#!h7Y#D6KP0<8|5i5rg50VA%T8Z1_5A8s=
z@rVhQ!^t<R*PQ~S(%XzIBxBCIvW03Qu?gELJX(qqK1>Ks)hOWRug9{<Uz)|f=D5|E
zE>xmqZjCoI98{}=UnWP5!hgUb{6cCFa}?)ae*N;Nmv5DZ+ad{O8uHOk4b{RgVly{n
zsKi5AcdUW05V;5aNOwPa(T}?Q;<u$Gnp|Oyq(SROyD2GeiZ;3Fh{rX)f^G@%18EbO
z*3>T`7wCDL<sd3*GA!f>orF2jiuu+Y|CB%$AF5IyC<U2z1CgPyDX}$FnD%&UXWGOo
z8IMWb(IWfbm^+gmNqQm-|CJKwFHw58kEkWohv9@Y2X0L=(1>DfC<MPAKkw_TE_&EE
zp_$H%%5-`OhwX4|{!Y#m?yHAIO6tZsUS=cTmmUh6q8rX5I-lgZ4tO5g+q`vc^5oTD
zG6ZPJd#g0Kb7-Cj91@uQ4o43rof#-fpp+|zndstow2L{l@h~J`{9U7m(!5+*6{ej2
z1u|nK`{owqDE(!)(ogJFqvkp|j&Ecf_Z_NK!#BR&kB*)X@_x)Nn(0`7=;ip0x_<T^
z9_^yRFkhpo<Y^;eosEnlmv1!Pa5l=k-~gh@zH8E>eN1A%j*xDkQGAw&27}^+&p5m~
zl91OkArmw49rWB4DJoS}V&er_`S#xUT742Y?!z*Zlul;SgQhNA3^i%RK6{CrbAnZ_
ziq#>LU<uo2zSt|z{cP6><-U0?OEU1QUaf`X5wu!^sEt_#@rztO;W(1#Qcd2OSuj3@
zmM7Lyt`p~wSPE6MMuxoSB#SxZp~9pt$tc!{r%~gAn*vhAPBC#mBNZe>fT+!8GO5@=
zew*t7&k{li#8!o+l1;SrSW@d?=ErrfFLls?zM3MdREjgjcY;3p#<zv?&=Tbj;(#hb
z2n?`1olBus*^z>Rri`|@5$qtf3?N%6k?{(GWy89*2}OoPagt6ICsigPBo@|AI0)bF
zoEhXVv%c@dFrnZ#C~*`dgLVBnf4{Jz?`!Pq8u!AtzMUg5GIh}`ovTT|MUB@T-PlYF
zGxzIF0|fjsuS2{uHKT;tCVbO`W5$3gV?IJG=w7^cnzJBj;2t#hDc*}&pZSw(2M+#J
z1{|{rLr1zpv_rQM&tI6^R+2{9-4g7kFw^c@#n9$NieVFJ`i+&5Cb27Hw?k-5uTW0+
zQSlBB6PbL^h34(I+dQ3$MdpJ?#t(NJ{UVr(xFa(^ip4_Q=X2%)m&D^dDPbMpGLYmm
zZY+DQ$Zn)|LT=;J63}{YIxtx=CQk2e6k&Onu;2=*+3_ta{P8X=7x{F{LYwqBD@HY5
za|I~-<QIFoH&;XPVBL^nEfe}k%PbV<x_ZNm;D}CkL^T01zDY*Qg`c#cBH_W+ULQ+0
zre;uKHNyp<<+)en)8GYBkL9Xx)}9>fUhF2I5>!+9sHpizAc>VSe1$I0I2t~_uu|8|
zLH24Zf39v*bpiDG?pDoLJl<#tt>`>Z<iLW1H;NHA13H=|ZItvWHha;=YX(qn1hVNO
z4~LMVE7oDl1(1%T4bpREs%J9`1%q>IAP!+lM+Nh;Hi|t!oZFL4Bmh(#Z)l#d9pRJt
zC8*7pmBGQ@N}o8AV&5JM0n>6<KP#9WeSo&85fJ8kJKTiguNGk)YJ{Sxnw)TSx#KAZ
zHLG4T^)dmnR=7r#a$=vT+DXcuev>jgW*^=IJ$D`Dt!Mi+hT(LmK31^Kq<2v@Q<2!3
z-Xg1l-sFK!A?_l5S(Pe<M`*(T*DmwSK=~F?W&1mIG)t__dOx#>Q8|BwsLVrg&{?#)
zGHw{621D)01)-=WI#l=gong$+{9xm|1^V4S^W}NglTMz7{`g_K+Fq`|{np3mF#F4Y
zD>@98OMOn&PYQVjdaIoVu&UA7$bxMv>Ld;t!}o@q0Y;p>^)J$6UCj5+k`D}m>q&p?
zKc1u=mDNck&Og^63mpG&u}+gY7{J*qFxSS-@rL|s6<pctI#)h0q{gD9ip;mw=3jB5
z2X7Hr>+^?i(^4FJ6|5Pub1_8COOR7sxc_pgnLMdSaXk$p{jZqU2ONJUKRECuNf+Pm
z!elI*boRiwLM9<eW!N=Wb_Gp{^HXFy<+ASn)S+^?%r8kNpPF{j=g?|w^FxFH`EuU<
zA*J~Ub@cXRpvZP}(xG2F%%NOGHT!n^Wdz5sO$q3YXD|sh`r)=tO0GJ|rjltWvgS-`
zcdArg_lG(ZS|8CXjHK;URy!JPuUW0`ZghWabJW!#3|C~!Cie+tWISUK<og4j^JY9Z
zwj-)zpuREDa0dXA`;(?KwL3+FXbvD7OyCkPx-g>FmvFTaFf6FTo;mNTnzUK3b$3mS
zch#g_skik$QN0(1fclr3uAc5jz_n0e&{Rw=LSJZ<2(9|IzB@6Em1?Y@SI%Q_%(MB>
z;z3{2dWUQpn`3y=dODlFp2?yg(QbV89o`VrB%%e*c7wv1G(tvYg_91bDDLDIn)Trk
z>J0HhE7a~x%@YH`w}%#IUDH*`iau%nTv-Xp9vi+tAlWUyQnhaHU1}UNl`n?|ITM{a
zl7<&Uu^M-hyl4<KIvqOT9p|;v@ThFSWsAbWU`p4FuA{;}D1|0no}P_5xvu70i2ZrO
zy4z8)zOp`Gm=!yLC<Q!g@f;}i9m=fF6eQrKKCYSLLtkf_&oeC_evWB}g^fB}gsV!$
z$F-7HXQt0Oyw>c3Id*%$-M=nXcS_;DJDU5nVm*HLF{oRpU;fP8_bK|+1KZWmAAfex
z#>3edmyhRWY<l<MppEnN4gcpH7Liv#Q|bVqb;U@^hPb@le_ps4(uEg>?w@@~f~Ix$
z|9>reBXS<!@$%Inx;g*o9_v3(?Bt0Eh0>p5Epp=Aht-QWE)U?dx;E%2a1K@Kdg{VH
zdfDb+dE3B5D#v++DPL@SO1>m6nA6Lr$LGn+%(<bRUfTb@;*i1KCP&aAzL<Z(=r~Y(
z(_odx-7%z)dQeVW0jeCqU3oXfv(~x9P`fz&q+<Z89rR@u<wI+d;}V#0O)EsTBN!_<
z*HiQvYoa?uObi41HfQy13yw(<nFxbszo#-U@{%{b_67vgGqXR=N#rt6?qaS%yJAYT
z&XyaLroRgMCSy7)gP3dLgalyHF1j?g&~C)+sI<lBlOMUlmawIm?c#Ov0fm~#yXB2@
zEc6QUks=)I3<}*)i=yn4n`~7=$2J!<Gs8K+5zY2Xy5W|<-$bj=J?OizYKtZZvOW(W
z9%!HmuAbCq!$(bm+=fnDNXp3YZBRJYc^MkKA!)OFhF7<@1a7;sVB*_krudh?`0e)c
z`!8?5{P~x!H}Ut=N;}g{**OCPdhvwgNC-N3F+o;DkyL*wP3{gv4DhP=M+7N;x{<~Z
zm(S!f=O9w(m7cy|Y&4l=bDIvCD2ZSlPphp^XcLGw>a>*`bRsA!S~Pu|l@L;FhGKFU
zYx2=NLmeSa_FXm{nO7g9z>KeO){dv_{ct9t<*Ym@l|!J>-mo!74FyVZT%q9`m(RiB
zK4?JoUXXq=1Ou>qZOLTVzMqRBz1Vr+_kw)c*NF^{@RgLG7>XMo9U2zZRv{WTS(WFV
z@Tp-<y~Xqx^1-}%b*VDE7i#GV;RE6%6N&=3f3P|SADI)%!k;YJ=e2>rneW#G$u{jH
zQKoW;DASOuoiJZPt&F3}IwHqVRs?hUWF3z|Gvy>Gj3-Ajb1+8J$!=nB^smaBW(t~5
z-pN3S4T@<>&^h(qMfs~ATvDO=O5ojlijS8!T}2#*xIkJEkFr<ME53ERDcpwM;}@;B
z4;MHnp9tYjq{^aI+U=T8UYcruP6@liXj@THfoMQT>GG!aP^x8(5G^-!WKt2#WQOhp
zSQTCpH#rsTI4TTF4^rLREE+Lw67glo+vgEry~+KL|0nZ|h@Gm)XHJ0-tGkJdAXQL<
z)-uXO8UtKb8G3)dc+bIA#6agz26{s}16;ly2S2{P{N&?6$gzkO#K*ABD&q(cvnm}b
z)ehN#<?^;pbN3B4skR7h#opzMHqN8zk)MQm{>bP!eI`Na+22_J-23_^#v?KQ6n9(I
z#~6mi)W<8<!5q402F$MQz&@(sRY$$Ov2RfIk@oII69v1q>~q}Fblrai6bTgS-&R5U
z$9em#Sm94nE|-g&g&&TjO|6|jAfueu4{`3aOLlX07hd-_r}10E>&9?IQ4!Hdyw@(G
z)zUF3d#N|+hp<Hqbi~XuE4Wte_kK{kiTlr5Y_~gz9<BXe1$V4q=g)@&>xK2rPu<G%
z2UQ}4aC0%H4Vw&Zk*Pd?O>6T|tY2<F{@wM87ws5JbNsFE&NP?rIE}u^U#jS@$cf^)
zw2AJCBX5Kkz{4AZDKTbog!7x3rQQL&>b>Lm_=}A+hPZrI)_lTqXERf-g0VyHEPgm2
z!5MgZxzu;Ra_A*G6yx#_Z`%JG!tntj@4$Q=)-gZjhJsNiBKYv^1{4ix3%MV2F~<l)
z(>!;QvKYbLo?&6R7>d*zNN)xCvTHPM=58(S9V%?j`$w|q+o6?wT1T#A&LXRc1JtSh
zG)RZv8Y+tw@X>GvaHbD+$C5XvNUafzD6$Q%$>F)ja$q5<#h#2K71ZsyBIUWsY8g~h
zA=yagd%(?|ZLH!J#7LY|<-|qMt6XTvzB>D&eCe*J$#+QJpBw^hfJ^Qo8%H7cooCRO
z?%R6jI|9fsFkzOs<#GmfaFf=(NAH!Dm*4n4_kN9s#Z_n`jWbT^FvR7CSX@rBG(5_p
z1cPC55(pJgGiGoUydAYyfS`$^s6Z}xm+7zk8U;<N;;U?nczRa((_027CgI`8^f)8t
zB`Eo<SQ9i6+2lpTPKEVB^z8_e!_Xuq<Q8RiYRJ87|E(Fd>NqPt(d{+h%!D8;QDdKi
z#So*@fT%N$WEy^{cmoOXITPJpH{MRV(K#Pl6`)+Rr1A<gbj|^hnYOO_0&yPZV0nq`
zLC1L<$|!<#_Lc)Oi7W8owlfvfatCWPO>-;V=P=@)U=}?SeXq!O<T>tpoj+|M9<t@W
z%}HZhA8mZ3GGT4Cgm?EpB}v(`dkZ(8T}#k*Q_X=j68JikNCZ+wutjjavT4y~SG#Rl
z-^;-!&imHU=d7b$shq%zz%%hKJ8OT`g_WyM#kprGcNUT|D2q5caA^fpq}e%Mb5R+C
z%>r2_aZv+CGJ^_nkV<t?DiNj{nE4<v-zD%=rH}WyR}?`|Ux;L00t6MITZL-$X*%j$
z!!1#WBl4LX3<iX|603^1_^qdKqlVXE`olq#xu2t7gFxbwAUyC>QjuXAj2zqKU0e`?
z6O&dJ-wK67yxvb`Ls(tlblM;dn8x9n<FJxE*qETZ)<}}g8Ae<+nKJA|@|vm~+ywnM
zPlq~`IP2~)AEDL_xh_8VQ)7gp4KbQLx6%gReNvA;H4#exXh{AUj<zdL2L=yvf@;Y1
zlMMJGpB;-LXx~mnZ0TY(kc>|Z1xxc{b(9vlOGiW0lFGpS(qcnU2`#d-3Zz`QtDIz)
zAUx<voM~<FL81aDP2r8r{Qq|s4wksJaMZuGaC9vk|M;?zTa_;Rb7Ubt){)ew1wxkz
zg*tey3|<#N3XNtaHMGBf%(F5a)jZ!n4q8^~zqqWdi22!{Fr%Y0s)o{<t*vea{Sawh
z5|nX2`Hx^4#zZyb<wbGpwQvJzu57o!{BYdGDd}OI8iEkaX)H2|7oZE9K{h3@8~0g)
zi)RL|<Krwbe|VNK_&7`S_gR84LLX)cP{}+Y=%1M>?8<nrmFEhk)rYwve4HzAyM*e&
z>LE!4UE<lMx}qY{*G&NYIqdmQk6-@c?W26I?|(snjV6@o#U?L(#YJN9a*GO)l_YBr
zRuP{{5WwxVIzaUq{{1=Beha|?r0D!8u`noaxVPzR{F)1lW1b?1admj!1Gy;lXRmVI
z8xHTaiNY;`9=gwrxsySR{S{42)Z$=1flgLWChp1p;+16x)>%LyP^`VC8Nd*M*m>r@
zw1n1aM);E;3-X71mxY5wUv<^i9&C`WkI(oVn|1(fC{$Zov08GKui^Za-NrF_pbp0#
zSnE%82?Gk0A%ux5pAUsFV!n|Eck%1+sp%S&8U$XFtDp-I@AO`Rz^D<aIxvb98Wp=6
zia-<cI$Rt|62G9YW-4#^PKw%o{L^oJr8|q#S7@prEYXOf3As<pg@6d)pL2qQXkvGy
zTTRthcm&i5pL0*>+2Am-#)>37kOVnBUNX9~j7&UtxMd!0S=Y{W1}mTf(!nu$=!)7c
za2oQ@=9a4_V#~V0mY}9uSE@taUIptWgjNq_L$r&PN)afyC*(5;6`HC8_p)*Mqx6Zi
z3q41iZG&x$)U=*03nr*+Ak6xA&F9RP8_hkNe03-Gg^i2?F@*i5Dg2^5FT4~|Ba>D#
zQi=SH;G<2vn&q<#=_N2vLK0knE`q|Ym$a9Z`nd9$-c8(2H_WE4MNLUj+LMCyYxeAq
zO_RuT(avukGzK3Jz_U!CLlLv-@VLx42O|MCg8{8;7LH%3OT|jaQaL(+*XQ3q^7ZV8
zfA`zEbza$yE9-GTv;eGa{IZ`D06)y!&MmJ^ivTkBVZmtk4RpeaeW;!P%pe7BnUa*p
ziUsIs8kP)K0qgK;83ZQp>~0%7uHp&o!b;<~?)C?DE=~L;P#0uB^b0xAR#Gn)a(-g`
zM)ANfbprkaxPA_?|FtilNBzs6Nm%@hfyQ6`6#D*)A6r4+g`}DPt{u9gJ>Nmea7J~q
z&v8Vy)Ip`de7lUo9aDhbVW_-&r5==`(!Or|V>QwGQ}u_+8DIKBABb$o&&{q1p;+mv
z|3z6J2Q(U&ucFMoBpJr-aOq8k4$=B9C^%UUtNZ-Bt<{g0p0(Qf_sra;kNCCmmOCG9
z{)#NOmD%|>(cwTe&uP#9e4($@^>3Dn`rPHV59MN!!$M7|xR@B#EIvM!y;$XX*AquE
zsa@-WhzG`*0V%eEA1qI5Aa^o!$P%Xe@|0RMcayTb_z^s^DzT#>Idy;uk;tRGY1@1W
zQej;1zhl%>G3@%te`tF^#l-WjGptvMVj6s}veh+<PL8UZNU!+dBCS%>3~h-Nr6%f7
zA?$^>CZ162Duvk3=i&sFa2`B8W*fEIhJqN97EaU|DwXcLFd1^G^YU#Q@XlQPVuADV
zq+l6I=waa@^W8lGMI^pnDXLnX1qZ<(#%j{Pkc7;DGpJD}kz({TxgNmtU6G}PzxLBW
zxQGExj{EbV=S^1%r3Ia4PEygss)w1x7lFYn_WVc3@NK0$C&&{Uyua|;R#dD9F5sdE
z>|l7A?g=^x_~7Ave|vm+`17jQgV(_PL6C03CA&hDAD|Q^OMalHQmwQ;Ey^Zc#ZVmc
zaeH_iozLJiI^zlm=U(0)XXob6k{;@H@HiLxrK9I59c5Gj>kqlLQAs+=1S)#&pf=e%
z2)^Vsolt~Ml5<sW>w~Cl*soR)MD<+MN)ePIen@fVk(~krJ(SZQ%W=iPm`aK(FUerE
zwbgp9I!n-1cMLf)1V}4QlE!MJBo9EJZm5@xSiihb#^wI4cr_BeJ;2H$DvNZigx%xM
zR4q8EMHy1o0BjzB3oBZ`lw#b6b0!5}e;Dm=c>~&@fu_9lfQk7rH(MvoM`wXfRGcXI
zSK^k)K%ypU?iW5q@t&{keB5q+MQ*fKxjjC6i}P~9Z$;0I&kck+4Y@e8a(>;Ms`5=0
zi;nd+Rn3;M_;er*d@72k4edbXya-}j1i{o#qRjiQ_q4^S06##$zhM8|p0skI%wZ1)
ziZ%M2>My2gXBwCHp)}q`i3+kficU9q*)tOFK0RvW>W4M<R$dHIUa9I0_(BplQY1#Z
z`C6i;%b7yWV{Rbvp{KyAYr4FDRg@xLwQ?Oi?+?$R1g0oH1Wj)f)byn-DG4=_)o@ih
zGXVI6S73?BlG25IO_mY#6}|3$T_0cb^~39NPcMXO3^@gJIZfd`)l`ERHGWUKNnk8@
zA2_MUS#Tn?NQQy5`8)7QPT<We(fK0rg28B*g3P6mq$^3$<D?`}aHbC!c_iU6dGQ!H
z04pzv@;)Z<)I_dC^tfk1(z6s1h%w?ewDpw!Ul+fj3MGL>pHQ04ID^UVFvR#rF(!7#
zVi3icrw0=)K;G?VTsE7w+8RveBj$g|GiuS7+E=EU+U~a^0YrheI+r^%cM`mGEJTa7
z5V8Afa*az8PR|s|h9_6Cw$<Z5q8vY`vikH!l4QR4k>BMGV;kNX+ef~43IXeDl!a=K
z|Mb_$rUsvvzy3L_{6F}$Il!W?hwq=+O&ylbNfQBXxQAdhp41wJ2PZTOvT9$BawNWx
z`16Q|M85ovX8_A#qP(9dWkIu5i~!9VcZiaofgAz;a)Yu&Q^>R=RHQKy9|=(BFF_s8
zsWd?2sp%iJh#4-zM7D#K%yU8D{*R(u8<~F)=l^7fhn)4bgrfbQF5V*Q-~4VK{QTvk
zggVF$U!knnaz7!{w_PA=z{0(BbMKtaGDt|6Pcatd0I?J(jvI|-VgvFNGKwfOMa0gn
zmwO3Qy(S+pIcz_rPFz@=(fB}_?{+v-;8Mlhlk}xl=_j>}`cSB_PTg`CN4~UwDAl-R
zTWSV<6f|ywKa%XWP>*@-RzM$+ngq_K>LLjaG|*uq8g%NJBJ0d0QCf3wEl8F@gw+r!
z6j3TmF3hW9d&@?vh@PpyjG8|NH4&}qj5BRVeN>V3RdFo)=W<x)A-yFtrR_+p8}3hW
zC~&J)mOWmQl`F|-z|}+Op{}VJU!|_liBB=_=gDg;`m2;r*=NhOlW>0b8%H*uV(9wl
z>0sqXGATUc8UN(tRv`#8gn1BMH6@5vhOSh>k~c@MO{h}5xhoQf+CS17(C`#G8po<$
zjwCPn9XisI{3XV;xgPGX9c3Es3RbgPglsxe(AC^|mebtOCr@99tksOmY7SZ;D2@cE
zTj*Xn9LrQ3!Ge&y)bfI!LyLAFwP>%haW+89Zvk=qeA)Hj@$x!2%FUxp1Ih;QwhXtW
zrbvrElGf7oftf+XiQ0p-=gKQ+DghFt18ghTXs0zHQ;fO~@vseiS9^A9Y_`)38YQI9
z4f6#@@dU-HA{RlgF^r?16Sn*$RROsWS$y@IFJHFfmp_`9m!JO%;Z=J)xaN?R<WTeg
zIY!DpLCW@8z6lQT9|2+@zQ-A#VMN3mP(YWvZu|}?3*Y#<>tEOdu_E?~i0;T>4!_WK
zCXr(a5bykH_WGplklHs2Ndt{_!u#-`aO44QU%3&x<C~HdH=z>T;;B{Yoyn^b$)?U9
zxzB=UIY2MqqI~14E7fPN)H)NQKBzea5>g<(WN0R#vOFMV6*Is1lzrv|Yn10T;%r#u
zm^T_grhCd$a$pYhEVH__i%1m@IR3%+Vj46k&;0huf);8ut1~nA^#?y6m~`?xu!&1g
z4!*({w31(;`B&4gSl7E5c4nscv4-8kv5ba}I61^L0J+ko?%3ruvH>q}gfn{ua<7pJ
z2Q=(bz(#^8WXHZDwo5<{KaoXf2_14(39U{7E95b7`euNsfZ66u7NjwzyGxP@>a4pM
z0c<i|J}p<c2qJdWZ(5+$C`o4fW)`W;zwBsPrA%-#qxrx_dDg1hMUrqb&5_3xS*2C_
zy>RY85;>D3Y^_g>ZS+rgN;;(E8%`6Vj0kdB?#h^HDzQx>mSy<|-z!1kk@|pQag9ca
zKdG!Mz)+pIYh~VEz8VKxS2jMliu#N25-7&Y*idt*uI%_2Rl!U^^fwxIDAZ=^Kn$AM
zjuEL}%?hig0kMHb9dhqbHOb^SGhnhz8M3$EM5k&a0uyh^14CG(pd#X;>I{PKghYwH
zdiZ24lNege6S4Cx_PIWUkb35(?w{xbi82{23OJRwkr`O7uLtn=3qD6tL;n%K#Lr;j
z`r+G0ue9`HryGJi`Bd}3u9XW`0+19lpbi;LD-gRbHpzn?gWoujKU^MTn#{Ge(k6w;
zUZ1ASN0G-)FzxMjgjf|4YT7(CEunB3Qt;{=hQqV9E-dubQ7m*`aPcBcEGRFJwl%*r
z3DCRtY<ne9%ZIk!mZUWwN-v;NRSUxrL(6Et!NSNE0JL<wRD|GGXM4&hVz?A`)Q$vZ
zr>x_1xG;O#)Wpvfcf1(F2+eNmw3D-F7O1O30_d?HJYK(_WfPY=jECV^1DfsS85GQl
z!J;f@tpr2r`XvhA#nSrF&S{2y{N}48L(Bd{t!c&QK+e8%=xe;9SqMJG`(r)b^wiFr
zF<}wNu)sBz8T1pwJnFoJ5_EuR{IpWe5<heDZ6BXxg;kU)J4R@pk97uaZI7j`I$Rz~
z-X3f5b2>-i1wO%5I?GLYUX&-wyH8<Moxs^4xaKr-)?2m1f^c#KTK<3Xa(y|bF~jzo
zFTeWT52w%U*Kr+=Gp<9~vm!gh0tg>DA~@U?0>N)S9_`Je$1o56xvfWvvd~!So&q%5
z6l$7Xfv%Bd&p%v*)8x)-&-W+jJanLIP3zZrC>T$aD<2rbic&t}Va{YXhGcvR-RGbB
zetLB?c{iP9kgs+(=ZemiuxdKuWO;C=%CafWqS7CV@LgE8cQnIz6~GK;FKNpi72@a@
zQWvt1_Gz!LglUa=e!1NDOB5Y&f|jaeH@)^5O((G%qWT1<^&88#4_V#i8-g1h-CZb~
zW;@t>yh{EOxfX{vPZwW#-h4$zm1QWD5DS@YL=VSP;qY~no;Zb9?#C<;$q!c!X`z{E
zUeEL;yI5yGE+31fI&=o!EG=EuZP&l|x~q}nHHDiBKPazkv{mI{W3*RSPco5m{i;ki
z*mcoWrT~a%qXZv9e2ElSHdXvph~*$Xnk*dq{GFX^HKG}({)EC^>?-7Au_uNpvVdkt
z3w}zazgPY<GiB#UC@j<9@f3kRUQLN6m=~OD6Jy2qMZF>t2&T4IQTc&zwul-rXA^H8
z38|4)FOH+wWg?S`Sj%*n#4nJ0gvN)=)}u+hTtx3dnU^E4$UUrR>;j5NCS^!QRO>nq
zU$F<$fl#X7p|fv1OoGnmWSn?xxRk3}>TeHjJ!~E$acH{{!5*arm-ejuk!Z*Rj<(kT
z^2V@aOctW=IJ!O{^q|>YqdZ?|wxhC+ixK5vF1!57VHL^IUlfn>&pPHHhjbyg0pgM~
zbBn5TyO9m?xLmaicShChNhs7+RkO@_3l&JxmMLcP)cl~fBf+80p0d;|rnb_K)F411
znBER@;T*2R>PS~Q7`v~Wl>6ta!#qIm<+oqiE0z66UK@r^izQAk=Y8%|P?ajPS@)4c
z5sKh|C?EAVB+GCNt1O+j4>wDQSW;SWCXDJ09N=HU_?n-x-e{{W4cpMi{NEzE2Z$@P
z6h_S@ij|?LHa=-O&k|_)?5%D{;|b|xE=-n1uP(geL+LZ5@<mcto$Y01oAZQ1MD1u{
zx2tqfm2R#!?uiVUMx#@7LmflM;j$qm#>%`Yb|9oGS$4KdeJY=Y)>rK@SyN(V&?tJV
zj;=0|VvB^URLDmcAf?zPn2@ijj*+jb0a#K%B8I&LI<|$ByRXfMtEL7|KjhJdQgqF(
z5i%{X7b3q5c@G+<BN@4lD4%(WkE+aovf}cymz9YH8$c#GsITZK;=~-NQO{f(#AOzQ
zdYPI-Ix~?bO$D!sl?Rm-jvZS^R|siHF~v9peVKk?8WYN9&WVXSYlhF2hA1qO@J+G{
zP292=GEmOUxKBZ3&E&Zs6B#rQ4xNhT3hH$}i4u~3wE0J;22Fy*P+itVWq}3}OeG_F
z0c5GV7gbk{Ps}ASJrHnlV_9H)zN`p}H)6v>Gp;t_is6va$_LFQNg-p5Y>jkn*EOR#
zEZ|<;Q=5CLYoiu~$Ig^TNH=%)rtaR<h)~2aBqq6-eNY;(iAHjROqH65F^Jn?TP>1%
znUqU&ee=>TilzT|2s}mj+pc5g#BbABS#t)k;L|%2bJY7N%YoKs9bPvIs2Yjv4HsLu
zd+wm5P%3<+@OML`bcjVll;waQU47>s>=&@tp6tQccY3d9^{+k4a25hSFc7t$?xoGD
zc-y7p7@CN(PhL<*x#`BdLl20p@${wsR->8RGhmP>s<<lZtV84c7VJ2;`yaOIWa)|3
zyA=Fr?e<b!lT9^2(2S!TI093Vb|GV=s2qHRtG%zg_Qx#kp5-A&q2#s+cT%`PaZDwW
z12vPT@qGTsnSR~fGh0cdHcT&_Grjut*fePe1$c$h)#d7agE*V$kkcbV_h(>*z(iq?
z%iDH7fE>9#fV_*zpq`?*Av5Rlo?H+GHZ9V;l><%`qXQu<Sl92z1ZM(0umR!z#tSeB
z%@}@oV)*e&S(RYO;9iHjRjoJ?>K5$l+xGBi)AbSd+XX*l@pVeX>6C@jO7-3Wk`vEb
zSq`Lsm@p)B$-)s60W-2D^jQb3FJpqx1U;ee>`+yspv=^$BjN*;kTOKpI&_C>qg}};
zqwmqM(rNJlWJf;IVTuMFEpYetjS+Dkwa8m?*~kT%AAJ|1c`k|ElMCEbAd>uQ6(_A>
zUG=`udh99+Oy(A1;dLW(wbg+uR~!;){=3jLp=wQMWlBng24vB{g4C^Gy^<fWY0%&x
zhAMC#YwFn*dYJWUe#uz>wgZ>VKaKPd^pG4_B_ilzv*`0?Ec*`w2r0aMJ7N6IR5CB~
zN;x{a&H1fo{8Z6?9JyN)7Jd9>YFt${S9)`$Lm~+iieyBn(PDAS6{grs<(J=Xzxw6z
zvoBu-CyBK<JQw1enlYMgPxQ|GVaG8$WXr%gp(NWC(XcouPoAkFb^t&}5N8)-vSVpk
zpb~sm9&5x)Fnpf~vLI=g7$mcB`-a*;GX+DF#CWzpb>}R91DRs7mMsuD+p*uZJ|d8I
z;bJJrQp+Y@KG`Z>`atteT{@rj4#YEF7lX=hS4PU$5Et@mwwbYazQ=Wl%lqIbKl$pQ
z90wY1L$c5vN8X*5>AF3@pFE#AWvhfxBx^1X^~Ob^0@fw=%i~{RTda%R4-vil6GwDQ
znEoo?PpXCsdaTTQ>W3Wext`^m<v!HJwc~QH@u!IZHRrupljcvh<EOtlu3vj*)ZlZE
z8_`YUq{Yjy9P=ML@_yv`g}z3DC%c74J$jIeQz2pHBBARA+UAn&p~OX#kuUPf`*4Y9
z{B$Wv!f0u<ok4z2x3RI-@rA=SU-B^0h2+7>??P{X^Wh>Tr7je8p(uaG#YtRVnWcTo
zDUvrL&7E%)a8<PU)8BqTa`=%g<xxpNzvxAtLuyZ>!7n0DH~+~rXE?%+ILL%pLs3MO
zX5VKikYr2Z<az-hewkcYWx?9C#AJ<{p*1l)btZj@5=oav^3hdUj5b9@t$04%eZQZI
zocu!$oJ9o$?VMN#&L2(uq>Z2)qIve0<4pu9Wzv-?G)X^Ij;IKgjYT17e;0NGTcy7C
zvlL6Oja$R0LbBj?#nV6*dYl4T6LpA48(jar!l;o2jXB{sOGfPsLW++^k&AItbwowY
z&iZI-WYXIf7+Cs|c<x$~k;3!?DpYHCL~CvB1mc1i1<cUKnx3J*H-!5@(yTYjpK?B`
zd7#EC-X4LON!#ll!t~vxzYc0IQDE70Y=qxKQ1wc8i^C$KWWGsBIlmAg*@8css6fEg
z$1Q`vTZ(ua;^aKD#!vy52A}b{S&OAkGt9MyH=Z!A;Q932@DY;_{Ik7BjR1P{=Eal5
zmA#UHsYqg`O2VLoUYPE%iYrv0+9luczF=JKLAf|NTcsGRh&Mk=z5u6NM3mmD?bXBs
zIFl6obf{A20l}X(Hqu~EMYY!i-v{Cp%vF37+B#WhSA)-G4>z&ZuR3M8-Ud;2h3ye7
zivsK6!rP{iXLp)8E&QdpWj$*G&O}RKFAwMQDdw!*b9srKJ&mvHBw3%Ge+8)K<dc?*
z=qrN@2S^cn)W)sSS=tnFt^N9N@a&QD+LLrz7ziV&8CpB3$~dQQbVauYH>&d@>>!?J
zUFSmv%D4r|TaL&`GAkG*6UaQa;HH$9ltHYoXBcAfa)$-QTwzh+yRrncKH#EMBC)2!
zPBmTHZcAp_6vDIP$~bjYvt(uz=skl{pHbD><oUX<e?sLojKYkl+gHh)XrenfO0{oa
zCp$al-qki<`q<myM|PrR^v^j8+~<Sl%N-%em`etS3#92o?A{KgLm}u&7EE`;=lXbk
z<X$@7z+OeUN*gqAVy_m%A`xe3C&_t4_;-j2v#>6B$mrR8X~1T*4k7y@?bPZy!OyvW
zc<9)%j}I?;`1;{{fGpu(YziP3Bw6%iknE}IYc<TvCVa@&gN1Z~dj0*#0>pk0SwhkW
zk&WNlqB{>smhV}opdd1m#EtSQCI%_=oM0wE%!i@~c?Ko+@-k>2-AT#Tx9L#(Fty@Y
za*m-}t>R+C0@%lBs_1gfu>}{4s7kNieyunoS%~NWu@J7k5`|f7HWgtdhdD%>19;?2
zRy%0yiqKcWf)Vf}PwD7uy2PPH);r#)52X7b-1Ger6ofo0x(B>TOa`?#ASXD60aB7B
zs?ePe3A-XblR5wF)~+!w%R)TGlO9hx<O_zc6@k7%!vt8K&3RR*#_I-#B(=g)5~Q2x
zsa&tz15)_uquFhTi^GA!%wiHFB;PbzUK`>MyJ@E|RRX+{3~-W0mOL?_&{V{cqD@ga
zVGMk3%=9h3^2o-pIlMZC_MyoT%DVV)K*hgRU?bSK)dU~jDgnGt63Z6s-C{&{6?Y#7
zZB#-@K*}-SYNh?V6je|P9YCD}S=44&q*A<f%0(T+>(mu=bTOr`zx&|_75F}6Fc5SU
za2ibp&9;$F+F?iClMMOo#^L*Xy4sus&y>0+1lDr(^PSI;e1_#Ei?M&y%Y6R9&hr7u
zp<bUKNkQ3vRKvEYxHQTU!Iqm-SO(2QRJ_M<)w!Ksv1}=4LfS@k{EpvLBhMQ@Psd@q
zKy3EsEWA_zAMLFA6UvORj(s3A#f@RELj0g%HVIWhgD1?IBU{SIV}&C%-V6l$s#ZD3
zcxO(VmK!#)EJE23#7fklXLLKiboN=-K<2saa?Zo50lcC{@W8C#{b84C*gp%GnTgbp
zj4m!zN`h#z4;RH%1lgd$5lxgNb1@hk9M2hn!2qsBG~I}0_Vlh!{H~s~RU+>$m4UIY
zQAUT3UekFOy~4j`p%4@UI7}E31C=eZ6tqGPII93ukSv%~PpiBjtT*F<m@S4B8_=>=
zRawH9xWo!>9$iQdQuO(rt1t|9pmgj_xc9VZw?IxBj1+3K<EJdIkzC~7i8!^A8&E8f
zyJ*TgGntu~<~ZJ8o8_p0E#$Vz<<iZh$Mu)ogL-Cnt$Ah4dc4@Ln7?GNCqF|DWHu@=
zDo^iK=S7~*p8?EZAveup0QU$j&T{jFuz9%3)IK_DR6Quzbs`Uq{55!8XTcTBopmP%
z@=;Nm4fu1lPr7pT*C9S_6{4#<qO9siPck0<>$kDtJI(Y!)cB$S+d0)asD-D^lW*_)
z11A@fk4u!8D=I#diCa@bDUc|*19}6L4nG>=;e~{T-k<3c(i!5}WWM^$8u>1pT+LFD
zxuhx#Kp8$@E#|1QOfOB+D^@Rqt*q!p#y+bbjnuo4X|6n=qKy0ujpB&MVp4{f9}mzF
z*5Y7y0LX$47m&NkiAqdGh4M^#2a0k~C_059M{1O9%m~A#<$;JTw2US@%CG0}j_`~z
z$zhE&tR{<hi0;=74hKjsDpK(|4N<s6l5{g~qNNK`S9>}%%?_r;#GRQSB4VJfWoPDL
zZ#q;qhB8%hcSE7C*ky7GDD^@=cr0lWcf=U=uhAAsy(5nvdQOj8=0SE?`pjJB#W8GD
z67zR6)NM$Q=Zeu1c9C?s!><`?X*=lFb8iV2s3fy(s(W!H0~5%d{2pl6^n4Php*uOh
zldkCA(EZuN82T$4qJ6~w>A@9Ik@Pcb=AnQErf55$8R*i?3I}*#o>4DDSyUg3KS@jM
zJ*l1%C!GK{WMQPoi9$7C(RaKU$7O(`)@gP6>7ZXcp0LE{{5m0CM%4~Fb;uy=KOiy{
z72S}b7iOgB%OI@)l;^3!Q75#RIlkAv!dg)SsTl+5_?|7cp`@6{2?)&9;nCa9C=TmL
zG=1w_V$`FeSBNM5E_cw7TnSGdVA7bmLyl>|V9*5l064H9ihWCD;{&9ird&!T^`Aq#
zCNPt#JaTpr<l5Qe4!Y@Etzav_;y6g=SfB*9D0mgTTy=7o;JTpirw-=_x`1MVlZGak
z4RV$?qnd33E?uJ!E8FwzH@tk+$J{6wP}(=UO*4fsN2r$_$6_u0e45r0tGPp7L^KPT
zs9!K{l(FxMY2ea^ZqoRyRk7$-^8K;6!Ike>d-+N=SDJKB3q88X;ig1D>JL1hP>Ao+
z9=dK9wZ-8Q)KnMZRo`bQE-b8JVlVD(m84=^IH+?b_EAb^Km4bhlM5D(0)J$0=V}L#
zA?G)8AzM8f2frNsVqwD>+EZP3Zwj2T9km)6tL@picdf&!brMqi24oGP#i)OXAYpuU
zKPPXy#DaK}$%z@`)@7J}+?OnQ%CD>zxXavzA*7f-PTj@Ne)ICPFTa=?jPYl&eySWc
zt7fIp&)_!|95UQBOnAV|WI7QiPmk4e84f=3(0V@PqlSi&7gE;RB)fi1SuyR>07ZP4
zb*PEvL%w6apmU>`#9P>jFI)LW%wI1gWH>Jv!D?S)7`Z(ng1|LuA_`{vnkhDId`(7R
z(7|n}z9WP*N)O&$q{j0VA7?+IA<DT7W$G<Na;$0Z6A4>4W@ZW^%*I$dHmPe3rR6@y
zSC#r@YjbV1BoDu)88&<SQVsQ4`sdJC`#4!z$f|B7ke$#A6N@g?eSeAtTI*83+C3zm
zP}^@I+ljK+!gFofsWOFm!mqTgd7qmNQB83kke9vfX_;&Q%1v#DqZES}jTk1|1qnqc
zY;<f88{0ykYw<90*?4&om9MUsEyrS1&%;`E(Iii{cCxNf6^ie042$>z9cyhd3ysMJ
zc|3u}ATLMTDen9%(z}TCFd}*i4);csehbj&Q~(fRN9hmdwQ6n>qIVRg72I8;7Pxww
zJ=59wmS`-rfs*P|$l`2S)2N@~t*!z<HT8nzkxK`ztx`nih>fH}Un|oDx<rX6K(S)6
z_NUD2$>l-`rDy4IE6{uW85~S(bsaZlqv|}RYDkalwtWOp2|lD=GsMMfa4@;>VB=zl
zZ}gM5#SoW8|017<<WW1!HI}jupMoOpc{q(PZ)Ex5<AYous#!l&Q`PuT$u%`zUw-&e
zeLkw?`PMVDQ>UGMiDd+MbMPs8b25AHHKa-Y;@pb1Y;42c!O5k9(B3T9s<V?%+lVIi
z?HaQt6-lwRMIJ<ltJ=@^>ww1QqYHrFB}J#5?_d>4qz|2n%&25OAWMkIF5nlb#N*t3
zqPhRujk~J$7uBBDEqwj<%Wpm&dKQJRsyMrtd_RZ!d4FZ&a^pANNVR$|8(x{HeX5=S
zp3Qdd;@|$#ONbGp2fw?`mOal0^Ofpz{ppXsibL>HZ2b`Fo7^RxcO)H)jn2aqvd>^>
zyy9IcK+UorAL`85?UrbYKN1j=w^bs;>U%Dhor!M?jQZ|FAIh5W#2XaH|FlbXFklfO
zd=c}t0oeMbo_X9TJ#2=op*d#xDtB#^whtSn%X-K+A9q%Ich}WmX}zMCh802*Ohqlp
zgQCrjK|kIKRNbTZMalYpFI-VsUpH2za+qGvld{Xqz!1Jr)Erp0PBq$8pcrbw)5R|K
zybEAjE|MSkyr5n#xR7vfdI7bwc%1@JEv!2$cJ&r}7_y{r8G>}_!slI~?AIcyu7n!A
zYc>>vTN^1p`Ch#9NYS2)*_A7-1cI_1+Iw<5>E;nU0uT#cJ5Qp^>U(>3Mj8$Qi6pCK
zo7qqZj%vQ7di5?kgyPJ8H{H{6n%5xNzB*GVn*GbWCLoCR;FB{Ls9bp^eio3L1>BLM
zbo_zD7nzP0t9!I9Gj`}Anl}suWZ_TAVNtYGU4o7n9IJis(QfGsBMe}4%Wa~1*MTt-
zTB6x8Ku3sL-jRyR9&MSe#m*wEl^#<YgClzvpuoi^XC-$~B6)d@wiA;D-G-7QB^4@(
zm5v~Ii8LEC*C<T>=$2U%MFa;rTJvB|SQb%>VtFQ<k9ZmJ$DSXOqt`(47G6ak;aKeW
z3ZvP%2Qu2te1RX4F8Fc0GiVctyTv`7x@Q$7MHoeC>(vzAF|*NNn#$s^z(&_-R)v!%
zs<gK0RI*9ppj+~uIZG(fxi7g$p7msilCPQ5lt7pFj;w@`X|$-9v?c*i1<6<wwvkrl
zleSwfBEJev^}n2PXPE2v{c#J^95@6eAZN}{Wlj#$GMl~T2gZEzSei{8hR#^>DH>UE
zfuMkisZsU9eC;QXZ&v_)pZAdIs(N7rUn?V+u6=@D3&~;|o~&Zr4UEo}wtFNvAZCbK
zAHY&pT0>&md7HJ`h=V8W0l!44v>0+TB{f0xwxu4d#&F&oWr`uukvxN%5Q}777Y9jC
z(qsFO%j}5OV1>W}2Hgw4{Lyc|y!`0xD^K>WMRyGCm6%M(Jh8no6Arg&H!iDb@8|b*
zFNRF=cH@@BNFNR_C>EJ+Qk_5_I*?GL-Qk%`*NnkjE!t=j3vfZe&LyqowBJ$!+lj9u
zRV+wl=k>W%JGF^})4NUYKI63EH|wFlc_k-*Fdyh0_aghySpt;!rt?}e*GQ9I=dyyO
zQ98~DZz#>rD6w8uL68r8Q7}~+zZDCUx|BzxG{eLsgY3kP@Q#Z_4MBwk4vjQ}Urd!6
z;>$i*%xzz?70jrlUzdy$;&Ny|OB0$jv5GUPNT=2&t(ZHC`NQXsrZf}|ccjir0^l{=
z=M2mhi*2YxiEl(3Rr7eUbSavhsggUBP%}>Ov?ILLcae+luW}DK&b?`(c|HTHP$Ao;
zLN)LKUY9YoP%D_W^8goAvP!c%F$%;msOy-%JMpuaehj2Pw3tTuVWe4|=(B&D4@fIM
z4D1YAygPtomTrrO#v*eQ+zl*@CUxlny-BD%C*h>xyW|U$QF#cqQ}ylxq?X)V8>eh(
zE#`0{UkHx{&ud!O@@;~&+}shz#jVODm+IwYv1U3^QecjUW`=ZuF@Zc~=B3kzOxE6w
zL83H)Vk>dMBzbjUOz^E>4MNIM=})UWtQ#Q-a~?_$+H;0r<&SiTMu>Wpvk$p|*8`I*
zr{{eGYhAM^`DO1Y*?jR*s(l9;EW?5FhuPF^g5qE#a<`xx+STd6EW%Lc;j_R<wnI=p
zY8X>g^^MmMjSD7tPfhIit+BWKX-VJ188wM!XYn8qv6$h}=zZ9+yeY7`21DZstl|oG
zG2g5?`X^Ub%Km7i_OgpW5oNPNKLJ6hD8@7e>}(r5cj?Lv*`zqGs0n_)f+ifbS^;Md
zFtErniwELWe7wM?SilR$KjM7Vp$6B&*KIgJ*RFVCkd5K7qCurOjo5w7TY<{SU3o5A
zy)e{L#o*Svr)K53#*+PbY^rIjY(M(VPj6qoj(YwgHUhs_rc$C#Xfyk&h;P?WHBNh+
z#m+<$RWvgf^;1AW>;p;JZ^&9drLKiHh*~soYr`$UZ!VoFN*Z81`=l~`PxV;cUtM4R
z@O5o}Xr@Q(1svO_u=^n7YwYxpYRyc5#j2FeZ3+dke07X6$4xW@FLTRTu_x`{(Zzmw
z_t^CQ8YRe>*H7d$ZFCd{P5S1mm}W<nktA6zE_X;3(AxtJQ52vFp=_=rq7hd=kKy`n
z@AcQ^)BXLQqvm&SALD<-A4-8Q`Xu_t-M$C%5)Hrk>DT@be!4s$I^^TG?2emtf}B2V
zT{!1^BEJOS?`{5w0GIXPaMU_luRTilp}#r_#IDVVxbzLk3+n)Boj9~0@%MI4NE8Lc
zL>AssUeM+K>@Y8>A*b(|GKrGI!U%XH!}`kTL-mnF3d<0n3J}Y=d$XN=s**SjY$Act
zoJ)AG@fUAY>UkpNwgJ8BD){lK9xlk=IA#3MlU`D5e&Fr*9~F^#CqTyR8x*3Wa-?v|
zc%}`7bj}W=(X)TZl%mw9L`cXTq31sD<&xwFJclX$jROJDp_c63rzS-vlMxCae{cF(
z0Wa&(fz3hHt`$esBzw`~jb{x(M-Pv9)sbGY@^epz6uQ<2*Qm%$dz@r8sE>}<>1F+r
z-Medp2rkM_B8K(LebDHmiho_z!Ii1rpMOY3sJ$AN3t9<cX<GIoGpdXnT1(Hu#trUZ
z-^Xj{gz8fCj#-yoCmN;p8UH3sI7t+41>4g}SH9o;^wq!4mn-Q?^IY+5xUCG%FF(@2
zUo$88QU0Hr6NJhRuO4?Jfqj?47l6OF^T%a9IAqkqZbil_RUQKIYQwvzQ|1%`cm=px
zLY0|xLD`}e1|j^YA#eQ56tXw>gZEeKT-72TO-pR`fo<V=HoylKy$*K!0R_7?b-_UO
zr&LH=`T@5ws_umC&>4kYo0T}Y(RYSE$6Q|H;OBEHh4)JJ=Og;}FW2kW9+TnA7YWvj
z<{q)@(zVr{i>0B7DccH_D8s>IE?2WqrMEP*4)bH?VUxPi7BKADf_QtSMJ7!Gg*982
zj*fSR*kOMT>K&1XrG=6|YVw0qmBU+Y=C~c%)Mh!87+-aur(+U|v0dR*Q?e})6AAny
z258+DZiyS`2TERl)UNyxyTA!#e)*i>+Mn}|g&@+0`EjR{E7CNY%<E8m7$Q~VJrw~W
zXU*D_R~Ga-OM}HXJ);5jfsCLTTFM$W5xf>4As|=FF1r};A<GpJi_|MD6H*0QrUffO
z(@!w&lmyn7B*F$!K^x&yFa4XB-~RMhFMs&3hKHX23u|}?Qt!p;Gw)!xqgZvWz?cr{
z!CFA2Ztyu_jh!-$=-w(<N$%ZyT0#pK?XwwK)`W+<l?oKH4(Ch~8U>Xi?|LRHs-;n2
z|JW86a&8~>Qa`GW7N};1cp!>ef364&988A9%(TdF-6{bd`d87qE=q%lMtA3;R97gP
zO#I#@7;qlJqd~F5%odP3VXPwZ@_>>>1P>Spr-iXYWb1CZy<RZ%{iy5i)H8RMQph*y
ztMvX&R60LMEB%?X?rjZh290Xb=Jm|CMU6>v4n8lF9!j1?qbZ?w;aYJ6Ep)Of0LdUT
z5{bB=cH=@Kz0cjuU9lM4c7kMEfgmu=1D1vyR=c6@gfjzX9Ext(-rMuhTV8RU(u--w
zX4zqCj~=|-zd!LpOchcvb_~6Ty7Q>9?x#{;SkmacZ7d4pc*k6r*n|b%3Xe=Rk{j6r
z8XR>umTE7+2ESryk{wFc#!R?b=WP16+NPZ`d0ROnRydtb3yeXEl^ShGX++9MrNA;f
zM=Dpmy_C9_#(Cw-j-9Qtx+U{myaXqAI7$6;wZ1_}D$I5-r%6AbN}^2P=?SCPN+r>&
z2aM%x^P<8YpdGx(NC1{yxCMnpqtF_$wKq@|m^FN!2L&S+UHLO5Y5tLn#rnBIW3hv>
z83#i{xicxigGHUu`~aP2Aaw0AU|i)FST*mn^a*>=qz2m>Ur~}qFVfuzT(JYZu_RBM
zzo>J`9b{O_sb$W_FGeVxFY-&8Wkh7mG;{`}!{i#(sIHxTS2vxv{XCB$ib^aj^g7N(
z<uU}VTM)}3i5K;DAHCm62=SZnFojq&zS{^BEYfS9SZrU|cn^VVEj3e;&DNB4a(|YN
z)Vg{fOe<QjT+}$}^kudpttQBAer!4FW!RV5EQsVvUMGI~s~`Uq#mEPF<RMl|&1c2P
zMBQGI8>nyOg<-GNxmi@*iN9mrna{;aKG{_a<Wp!uj+K*iuNN|D>X?Z%PEs_-5XG=r
zss$Q@{Os1w6@n7Pm!8gTd>R@zvm-Vzap2hVFkzp+>q*756in4f=MdXf&0_S+d8i^6
zL3O}?#l7%K{FTm7gEARznNgE9*Ac@{<`M_91$95qgESy@sC8(?oU4?C>gZ5SiI-&r
zu9e9^k;p7+J}RDegIEVcR*6d3QVQiV?7O3-=ld~^<`)1`(g&Hc=cVKOGTtH3%CHyS
zN?MWxLsVZ%M>-iY=H4Lnamv7Z@jaxvG>f3-?!S>wHtu)7`0ZEZr&xP6NZdnYk!A90
zRW(&V0ogtlS4BblweA?#$zpt{U+=V2I>q7A8EC<@te*UZKoF@3$g+QFoldP{c>vx*
z@yHEk({PqOGzoeWnXx4Y2=Yz$9N(24wCKgEdp1x9?BG7i;6sMmc8_7%@X}2?GA1xO
z5rvj%tHHpV1de#cI-!23yb!FJ&?1zzZldFrSFwnGRixW8ls0M~=g|D*jba6}Wc!a~
zA6sKGWUHZ}`v|?+0KI@B1ra*PLKS8A)JZD~7unm}$h26yt6)LP;(Qr~bRbR7!P*M_
zWfAVlMb3XLgNq={ctiYKG(#lRc3~`&|HFa8L41`ZWyw=<BYWb;s}H0BT(gHhqSf@+
z9q`a}hq4sFj*Bcongs8{S@Kvr7bVF=MW%KJbI|MMufuTjvE}YL_HF9C`5MszgLUFj
zn`)n`$iSjdy3X_}wVMW+cy`u0m0wg3<s7Q}ZRyh2X^E6<qC2TioQ4-?(lW!keiUg2
z!t@X7*Fjn`_J*-z{Q-mP&+BW0=(!^!@(IVm&YXF<Hh9PG<xkoc2O$Tr3rP`B`NGS#
zEcUHK(9BZRoTAErLbDg-7rKo@cMuy+h*HQ(41$Tz;RWql$^T_sPEG7y`se3>F2~f&
zpGJ_wm^vvv%aly{n%YG(fm9%1ool3~gXpYTWm{9tVk=GD#dr<#n{{O9GH$i8I`!i_
zp3W}!#*8V((_;{yl~s)56wrB?;p%?%xYM*1Af<zX_)c@USIrY@YoBLB|LlYN0A%Q4
z;j<0f<P8r}wG`W$RsJ58*12J<YC27(tlOJ+3-cq9=-u15LU}Zwtb@&p;#27PE}mNP
zfhJJYw}{Tn6$|rJLOiZdZ3lH$?oucFWcn;;qxWKja&HuF+O;TRHBRdt_%LCtvz@?(
z0ML}7N3bXa0+mly#s<PUllx&E8PlIFHAw|_GhL_YkNFOmZuHJ|Gf%w+_<7)<RpLA>
zGPqOkWoP1rC@=N8G@0?7db29YzQALf1e&oa+`h|ZUNlqK>``isMcIrN)yvLI+Gap1
zwBhlXKaiohxGa{$5E+7kX#OO7v8D?(31|zk&Tg`4I+;+Ko`;2*Y={})-JCD6#F9si
zr)`>?Ff>;bploK{j@2dz$W8rW!xA2WJMRb8hGqjjZR5pNX_HYXN9)^=d3Hh%YD0Qk
zdtvAf^a^jtcRrhlo{~?M`^c=693Z_#Uc3~!Qi*OguO=cff^BncbWEIPHyg!_J46ub
zy|~NTQPy%ObO?>}sR5e@(%F|to`tci4z7#Y8$4aJ#r#iR;$$MXQ%b{4Q+KCcr*(vc
zWZf$BWu;`w+0JDniadk;Zk#jOXuvJTxY|uewX~&bvdgKIOhF_piv)WBdw-u)buoOp
z54YWp+2-0R^g+JV!7rGhz&1~pH=vzmJ*BDb%S>Hk#<MOIV_As#3~iT4DpH`eW-Iu3
zs#j&GW*HS&<uz%+v-ZNaiwTLJ^a(eU_@pQr0`aU)>>eb+bP|ObxHF*wBt29z-naYF
zaT1Jr%?xqPn_B$!z@}I0QL#`xO7vt4a#3uSdy3qhX3Z3ifq)cdSrz%$`+buMDB~m9
z2776+>>2U-pV&K-<;s03jK9i#fS9soi5-<q7R`d9DhpTz(-7do9|(lu>Cx}|<eQLY
zrl6ppx?}6wvWBB0>FA8LT>4;CmT5_zsY}C#s@OnV2T>2<<{@l)=mMh0NL!M?ZVv#O
zURX<<^w(NylX%!zFBCED%0Rh28VMO@E4l-@lk3vWxP+2(DjD^~NY2Y{1JoC!uCrCF
z^zB?OK^GyuEz=rFb3lB^pbn9^W`Uz{XNF($=cY&&yQzrLMa*7*1ref7dy1NjvEGw0
zjLASDCIgDOYm6MD=$Tuk7TQdEt8M+w-(qkgF3%UX1vFE7X|tIdAzeAfFbEY_Oyk7g
z6}&&UN}Vq3{~`?Uu-W=t7B8qeD5V=qH58|^afxg^>(YmDDmLraMMo#sn`MC{9y~o5
zYyVK8yab}Y^Bv_z8WL2)RnVaXqr`Zj%>fXnL*D8DmtBIY*QbiMYS<xS1SA31Rz^DI
zxif-d(SEN}8#vF`bj9?$xubDKVrRh45WS+sC@dO^S+Ahv1XEF`8bH7)`h_ZUvJ#oj
zWj-msPrYG{t@`8QU74ZdrQ;+~uCpPTbCxin+crgaN97mH*KQxZt3^|Z^qU4zt7q8?
zAgtYI`9Ts|*btrU^F4zz7E#h{-KP)xat0vkj08_MjRmt-6%||3(IpC&j%47wEG2a_
zE6pvsv}N<7^~e;S7RtoukTCQ9JQJ3f=s?CC<_)#eWnf^TP&IE`C0QSTamW`dwKC>j
z7OH?iy@M7nc2?SSFySk8Po+elSgqd5kVvVw_<&#&JQY4DSK2oCK9U{-x-pBBh2WOG
zMUWx^z|FIgBxu%Y^l1921Cp>b$}f;;>Y4v)n$N_y4+LUZ0(dP0HbMt%!Dk8<tJ3Mw
zkbqOzhji3Nucqz{!zx~g#zL|U!#3J-AQ;UTO_xQETT@qxR0G#4A`Q&HCHk2S?7MBd
zWe#~WI|GJbE(IjdPLU6%dMaciiD&7!9HCgi7)*id^+h1#4^XdohrHABYM^k`wc=Y<
zD`tw*ai@utanLf#AuE;KI3z(RzDnK9EaM|lYQ=W!B*5=e0~z?X3hs%2$vf!_dkJ6^
z0x3q-(k;_)pag#!J5?&ovbBc~W2!eV(qK930Nq$;tq3W+*|Ip3^PjCWC{*!D7$6NY
z3`?lvU=(pN?C)=>Z2%`r^}9t%KIDUA&I4{Hy%52%d;KZi?J0;<pL`k#NYF$+nJQVD
z{Y?XJ=G$7mm)(5v3M2|nB!%Xtz;A6LpOBQLdej5Amu_N$yq#JOwa~T_I$#O)Oll^f
zTG*;dqjA$$re8z5brSpZ*Vmta{kyT$_uNzINkn|CSv&Kp<DC&!B*`wnF(%z?NEqbi
zMX47h0e}-cyLwcqHe^22QXdRO=qU3x?C}8UsPteX3S?KSh=F>CW+n$+003RMl>&a8
z6wkak(dAu$cg#1q)oGpZnO<k;)2JO02y=J%1aExe$txYWzp*!c@L(6De96dwdp09W
zG_GhDaLimiGFh?4gI~Q}QH#h)erOAnti)c%bT7*=&lA1)Xe3NflhvdUNLg@tEz|*+
z;@TUA*gKWG5m-bf@JZs9S|MKKj29*Q_IgV!@uN0KQO!yBAPi^8xAPkwtjSD`+V;t;
z+B`hgJ|;mcO}J+D#>Ya*94zWEvRUt0-3xAlhR6792NTz35n(;zr7RwUNQQo<vJc3;
zE=w!D(okLHT4reTDz;%GNAjW0M4e1%t-+%e0WwwzzEEq7Kx8zf?DozCi-KW0bnmo7
zGq3uvN(K=zi|0`dCy^{;@j$9a9^m%npn!Z-W#F+|TOhL))BTnO(Qf54SvR!&h+pkx
znWx|o&0!G5@$(kIOWn=WToL^HIl*Xw%>dRyQ!M`kXhJN|L2G$(m+ZQ#FZ~9KqChy?
zqWhK?C*AnO72dd!YO&nC#{o4{8Nut22aTaJLnbRlVOoKWl0d2W2yZfoUivUum!JTE
za|F=7aJr0HoysOqGzF@l=65DiShUmvit%#IBoXF!O_s&rw#t`}YDw$%5CJ?abrY6A
z^3xIOblvBsWIy^oWNum{=$L(w32&F_1i6yUGc3)d-+W{kfabbOJ(!xc=0vr`C`mf0
z8`+If6&4<ASsA9L$wjT8MK^L-=ZIFP1(muM+i1p!X={2(^KOg-mMNfR>bbiKbc1qK
zHCW1>vS>CCQnSrgA;0dK-*WiKLm~AkPB>97`Z(Ng9*HO?8S9M_%^S$jT$C8stW$Ma
zi>0o`#+JkUjj-s)cA;{S_*wNcKETW?FRffinB8YB4ggt;xmFl5nelYHcVS4R7~NI1
z&L3VeSM2dcPMOqv+bN*LOud=fCm~4sJZuIKc{;tws?%bFK{v%Ma*c`1=KT1+BxoY2
zx5e!{#S?>s0FYU5v!IRIr5PRe%`{lVZQcwmAr71(#@jPvL>Yx%p9x3%2L4oG@_k;b
zlVe47u;%OR%hep7Ih3C$fA;JUkl1Q0f*U?Gzc{e0&-nv2wwXD6vd@l|(OHxJ)sgr>
z$W6<siG((Ew3*oT9WO(3-OMEZAcEipE)Pofo5Zvx@j^=D=tPvp1j`uTutZ;l)W?cv
zo{T`3#XecXF9hRaMWj=-?C~_C#9>9ApJqsrUv5A9{F|3Av}CRBjI#6VeDOU09#edn
zB$<Vim_a_oaA>_YuBT1dp{<r5vuWg>Lxl5~)bq2rF^{naj71!D0@t_cC}K-=^SdEs
zsiO>$gykm81<9?EWz8AAdq{D=ZWwIXQOSpn{W*2+^z?&&t2(!!7UTF2hMIx)%cr0H
z<YUajA2h+L*&YL@E|AfQXb!Q@ug$xwgecg*O<P!I<)9emK<1klZTv$=r0(nzVkGrv
zLT2_ZlKeJ>=Upz{sWIbTHorg}XzE`Sk4g5ep;C2*4kApa9i@-pumM|=rMUf6&p&2{
z+-Y=iV|3O`7Y!Di6e(H4tj(zIfCorNb7uEVBotZhnX}8lMyZKP!R4y=DTTCytkim|
z<+oqtuqr!_Y}f@S>6~#M4btWc#EmqeLIsWQ5??_MBeRXNqtEC)Kob=!F1J_M$O>jy
z@fT~2wGQ#!+|8~7Uev|GcnuAtad|lXf;FpSDRiF4ndbQcyl9M63CM0g|CIVlfIi9D
zqxO%oNy(}}t_Uj%(J(m~vi8k-`3-T{fQi&nYTiViu!4$vDBe%-rW_o|35=k(zzl`e
zG@n&y3j5b9+Cd{J7V1tYe|bj2Xd=ywoGFKsEzzY;m+;=8NM7dF5B2C`ckMzPjAIM~
z_^qWot;zADpTB%C4az0j#furfjn!UsvyX=7-?OmNu4MN`K4<P!{2KS*y}<HK?eXi~
zv%a%N^>RD6io}{v9GTh=tIGOtWWhS*{7%Zmxq!Xcsn#G3tS3IaFR1~|p<wP0aqTZ|
ztzXin*N8Tq+N!<peM`fiZ0BP{Gs=6Q9^nvj-Md%MVuCNMRC^6EN{0^u9F~GFS*hp9
zvZtm|H8pX2Uy}%z0j+0)S((qE<lHGENP<*NF~B4d4;1hWF7PMhbwxt7zPt}Rrv35}
zd}>46yj>Cksext_xnkzXb2CGnUuCi*FsF@zZO!hIq*_WHmO~Dj>cr_!r<l^*iqCyw
zn9*YT5@%llfAL12mjnVR+I#9UeXrM&7Pt7YgP~LFPi#4hEEZYnV{FnpH>@b-W7o1j
z>a?^k13~x58Y>X-J|@4W4B=vpCM%<#j{2hgRGQso`C?y+>Pp;<)fpqYVNKlS7CSkL
zLDpGBT{U}ARFwB!sl5$(Y-&Cw50RRuBcE&mN?1vm&%B17L}o%%8L9pE=cXWD19Lyj
z7A0?5+!KYfZ%);HSqOCdC@m|gtBpz>vR6;)`z!GbL-VpB5}o$@l%BH%rXjA2f1<4J
zRL*42zyw^D7=nvada>()-aEy`QW5hy-#$=kk}qQLwI~apVz))M$OK&(6J2%>Eg<oO
z+vSCePe@8}IhL|iNc#D9F%38MiMOZi`SbPXpMUv<_3`&?NS-Nhe?S5F{&bs|tgu+E
z3W5ix*EFx?&||U2tDQ3Q8KyAMQ#cMxHq}ZH>Xi|tNcp9Eq?kjmx5Bd`rN*t&WZq$Z
z(j*2MWYcspSKiY)lHU%jFVfKEW<W{?tU(^uI9{ALD<3Wifz(p1YU$a-M@hF3PL?ID
zBcIN2N<GBg>PyygTg(V2crTwmW_^;y$Eai;z)gba7AU`GGiY-ee9e`fiLC`byKh^3
z4+DBimbetY%){h!-^`C(x~Vf^oA1?H5|-HxMT}7*L|hMs61?W$rUF>XrP^<};J*aa
z)Z-h=+NmZLWq&wt$?HxqKR6ExTdr4`xnghIHeo@4dE!0Qi9uekOi<xw5ZF-r^cG<V
z-Y(B!XFs)~i=K#&>y&e8a==Z~n!LF<$yt^vV_Wqv{ju92GcCyK_P%o$ckUA3gJClm
zwl}H&5W9S_U$y^c-gj%rC8vP#s}(QhTFm@fieQ{IMqbnRrB+2MYjAC3Ry;$E0wlSK
z+WP9N>yJK?TT!QwV8<;bUQ>rpvMkue#H-85s?-09Sf(`VzPuKW@|Z@TN$X|X4j+bP
z_(T4ItRKnXn@)iZWSc?}5xdqfDH3`S^jZdfI;E9PzokgZZ>Qd`ngfQd6TEs^pTECg
zZUzJ=YCKFJJjN{h$<p+yi7ETcuSW>M_NnY5Z-`uH!xJP>+75gv`w~r@DFqG?n)sP*
z3H-^$-&MPI8BUc*aA3wzj9xzjgtw31rR<yEk6hbvYl}XWftyqITw;?dGyDMD`Kr>P
z!8))4@tyi+(UyZvsTY!>Oq}4^D`Yp^ldgeH=0NjWsTWe>n2_KCWaU#}qprUNdhrYB
zEj~Nr1LTUh_sJq@aEVrDTM5VIqWe`EQP*vm!XSvSH8mOfa0_rxCl0}G(>42i6(E>0
zkEukV!>cByOo^=%D@lUzex_G!>P5^p3o2-zjao3*4)S4YD<N^`crFuv#xh;Ag;N+_
zb8Immm>N#gEu{di{U0h3%3})c2pYENEjq@NR*Hl2MlwBM<7FDuR$N)9AZ$SsHL81(
zvro`x?Cg*tIs}Z|2iur<468me_@~FmVXft$M7C>I)%qoFzx*S(-GtjtQHb|IMO3pY
zx8KMDycW&2{90xInXNWKMv)cOkw$IoBuZCpY>FgMO>1L)4c+U-;$J;Ov^4+nXW#qL
z_4<)V<Y)^GHiZ0Lq^H?Xl3v&^GEmqX*BlR2CZdg{aZ$&zJDZ>0QjTDs!QYrKNT2Kb
zBwDONZgt?t0E}IGa1Y|cw5O1FTC#4t{soR3l@dmVsE-m;G@MW=NEC^#klHLp^&kdv
z6nAIHQ@_KqLw|QTIwi0?1wzGRk?{=%rd@np6?SWu6<{&SMOU7ipbyQyH4aUFIS3o_
zmeP|{7KJ7mX6t^9V(BOzB<FQCgQk-p6yrDODS3UPcI41(w2_#dcBL8|N;w1vT7a6#
zFiOtQM>@TA!B|`OiW}9aJ1|~2xEtW;KD(awtdQB9oSV9sFTT2q^hBrCcAs}i_r=c1
zikvzSL<GWc$}fAms&)<-*4GeY2Uq_NE=t0K+AhAWJ_gumLy=wTk(esra1lO)#lp!|
zM;G-5;wY=L!mVJ0a$&IA%GUKDuZWC+j^%Rkm28&w$g?SjOrc(e510=II|;?5nV+K+
zv^cP8zz|Ybks&1#tzLYt`MD%*yUty+<8+fY`sNC^0Tv2_vkbKz6mS$R-1)-BRkgvi
zCMS?K2Bw=)J*I%5bB2)vK4zpms<6gPQCHQ|v!e-yTJWeQUp=-mt`Q={wJQAT$4|ff
z$YcMW09in$zXOnpBvd$y`;=LTp>6EN_Pl>PM(f@y6i<?Tq21f0z39lz$}7<^@k?bU
zu4Q_7!7s~QN9Le1l4F{!qnAWa(m0k)4Ev3#{%*dKW~BD6k)T~+k05fjxMcZAV<H#(
z%qrp!8SS^;ML|lb3gX}5c`@N_7}3nnfgN{SL4W=G-+usAY=?M>O&YLF(g&<s(_`-Y
zOg*Nk(?WTb8=Y&~3+<ovDFdIm=wJQxT0U4ohV;Etl5@3lzfoow?Jz90*so$;ved*+
zcrdb*C++NKYW_n2@Yifbiu@cJ4!1;4sOK5-WWc+_&6D(mh89cq6bNV-gl$r(fvq9#
zFr<pLs0uJr%8ZH!M)8xq(?Kgd$E@<KH)yHVjQI2N^RIsO1w+8h*xGc$K)`p#vUa5U
z&X^~s?2Omisw<*P!rZ6zPjOH5GiAG^u$71H`a|~3Cs+Gh^O=*@u2Vap<cGwMPC=5r
zaK_Ll=c970?8?dGs>e>b5`BRnl{b{@FQ~{h@~Kn$bQjSljn`-m4#bT`;iTiiR%T^a
zKt!qm0H>DYj-)`_Nr@oM+S3=SBTbqYx^rb+e+;1>HszvBszsB+spUJ2RbSAe3@*BV
zJ3)nF{^A5Kd=IUxrZ;ROEL$qdd99o>mu)=d4cmiL347c+kGr0r7IkrWs}E=yIGqei
zEZIO`!qSW7Vxwv+QZMhxxf?~OkoQh8Ne-X-{1iG)Pn{YjcBnIwr5Y=)E9ynCN~WDX
zCQvk4Bd88*m{$J3tmLJxt99S~z)8Q*l%HO;pCHECJJr462y&A2g}We!UQct__jc#&
zei!B+>FVn@xb{0=cm4aLufOxn&en97Va(>|1_AVl>@UR!z4^{h<z~8Wo_qTy=iwr3
zlBoLZv^{;r$H*@8JOQ$o`v`W&J3Zn`wGolUxc%acp1(6~<^xZ2ebm6FXSg6`6_yb6
z+~;0rDIp|!l6vQJS~$xZNXz`g&B(KuF&lBvRR9wB6giQTc%kJvtj-{vx;X3J{I1Tm
zE<Xw&9T!(U9ol|?ER@5@P^qEL9}`jI1|aL~gB(=1a>ueg$$m9~6JL6zGZR3gzQPmg
z&uJd~W8uMD4@>yYPYIzhn}z61VuVUC0!Wf8kNVwu1SQx$r8*w~toY2)rCf>imF@-`
z|98GAn3TIje0OanesCzbOQGu}Z~$pZsR+X&-j}j7V4<-9_xUxjbvfVp=>#K7N_;43
zqS~XbXR$H?r&LJYyDDfo9d}~m-WOE2XF1G~iL7wV83vl~I@YgQ4^c|s`4B+)Q<~@>
zF&^#@X`mAbFH8#YJ$#2*^3(5s@8g#H{r>OP07!pU1Avg6b{_svCss08Sj;>A$g^nZ
z*A05*>Ro{3e7v&}pFzdSD;Ly{RX|3`L?RwmB~C};JT=iwR~AbW&sp`b=IJY`ii1F>
zUkPf<oUDD)_l~vXaZ1Ex-R->#vczmN?#01FY#z(<E@wEl=CSFdQ!)dVJ)KwZfk)tA
zi&W`Tcf$l;eufiY?H<hv&wS!UP*W(^Y}T`eFu`97&=;3soMCONHF`sR?Zj^ZlJtsa
zK*}#W8X0}LBnyg8VO!L&G&Wa)?bk|<+)qiC?Wyf3j|4!qlAyJHtxu}EkIED{xJqL}
zOZ?AXe)Tk6asBk8j!u<-ix}<S9?7P|Cz}ZicYGyvec^$V@2}ss!&x>ZQn8dXMhs<M
zZly~m)d#y)4%V#9=5`dPxV+qcUbr}=3oo2HKdT?I;31+)u4q5Xc5V~Bi*j+w_H3Ke
z(RVH{>&J)u7nk547%kWo0Ak{FaX#2?8@~kmWQsldQo5WN>ajDVWwj3(<5YK(ECf7*
zDNw2o6iLePvVEa2gpxcz`1V3!g0D@?T$DZD&V=j}7>V^2gV=3Gvx-J))h@RpoN{|q
z1ie%d^im(W1@0gz^^Q{Ad6%)NP<PVdT@^hj4aHUM{jl%8VL`;O2D$x?N1oYp2(^+z
z@JGW2Y$%IXs~>F>3@Qa`nL<>YO7ew5RNOXH)~2!mC~sZbdUQ|*g;{h)X=;tzMH$w&
zb}^S#|BK4l$g&!Fs0{i?5h_gO_@W}zzX?v?+#p)wvi!uFXt%lhXY|lUDQgaE3#|1U
z7(3)UUrnbevS^(faMk1P>mt+MzMLc&M!mS4dMdMo>>SoJ@^#{zqL(4F+$y{Z=9*G3
zibWx<a6b)qJpQtzJC{T;{VuwgyA~!P=Oo{zZ;zQT4#=koq)8wo*vGfh^zVIXG2GFt
zSq`<j5GP+~R=%TIdP*f<mUH&6qYD-N<)%hC=|&}v{dWPMv-vLN4jBfeQ`>hm0x9*U
z9`AY-;KNL8J$|EyNuTJl>-ow#DUc$aD||gX1vrCuzWQU*Y15N$aMgoVM4BXEj(04l
zZBk)G6A=yajfonWk@dg6Kjsvl-al0OVSe!8sY#DN`rf5}=bNdc;WU%1c>oz|cS47z
z()KJeX#%Rfu(D5d%DkVXvYr#(iGi{r*p3I|l}>TugbSlw=`vKxE%Rd+`m(t&$~8I0
zJKB+1WO;a&E6Q1gQkcuVYp{&f$h-677s_gsJLiMzY5h<eRo0!`=(O7C4y#yom|_F{
zb(t?Q^IA>R6JBvHNpK@(Cgh*_?))_h6~6)XJKCXVK(gbjj~jHel4%+d60_8MaU@J)
z%5~QthXQ#Qz2ovRvWJ-&A3}kg@j?7w@+(=zN0BL_`=EH<QiSCjj_Sv=jc0EuNWkDg
zqs<!d<<AxaQ2s(Oup?EB-2wemt@&mdqDAtbF9o^HpD!g7r_P7?*pL`EiO+C3qusGc
z{^gT+D9ZuZa;`;599^AntY|u+G8oz`#Y4FfE8Ysz3Ky;#A#94a*1yoxzuG%*CZO5R
zKL2X_{M(;jzxw5uYB8~j*O&V|bmdtCklU-=i52@cYIZ6XvqE&Fe*TieCjfwj93^zB
zIl#zE4fYL3=Om$9Lp;>xjEPM39(3Z5Q89^`j%m)FF?-Ju1$hW{M|R_0<t08ka!@1>
z@;j9m=7fYDgS&6e78M3Jg0I-+bA8{X%r*whV^lxwLnWhxz^PCy>9Je(05iVjh7w^{
zk4K!vWyg4c4I4{fGv6&E$T5lIo8&0441Sb0pNZK}&Yz>r*5pN_#k`o`S;){s-XLE0
z7#|X`Zenvxj(zB0G}s8pHsnNL)b&$5v7G8d**Tfi*?WabDP4XxO4-I--O&04Adq9o
zCgPMFX0<fs`Mfm_Y%K&R{$Qr+juT~#sDdWds;G5o&oHc8p52!SE3mm%(K9=Za^7v_
z<zQIW0HHsd4s+CteayGYw(2_O(De0-`g5>0N0^Uw_Gyt!`sG{?j6+EX(0V2z*-|}(
zjz#j?ZY@#fDPv{zv(ncuk6c`F{F~KELR-HC1ig(rx#3Tubvot`bDXOv>kh_NM3EVk
zlw;h{D>9(cv!is^B+9c_pT%B(^zx&xe)e&tM<2~$?8HGwaD6Y4uvdF=Qt3c_O(6IE
z#8S)e$wLedz98|e_lK<5{B$FaQ(PV?#ad5Uuk`foGL?gM$dNeWU<pcE!ALc`2B@U+
z?IhK7mi2uC3F=?W&g7IaN=%9*#e;<R6kF&z;zrAx#*C5!4|I;pvN9WDGoazX)+#JW
z523Ydr*tV4BBuj)!61O3<Ccw#modK7Q0R%YHp4>?v%u5j{F(3thfkFDd!8amxKJdA
zq&UU}dr#&GRRRQ-k*k*ChH!%q(p%BB!-?qrtQ=gnrfngbnXN7{kfH>ET5yvqgWe3|
zvedxzVY7#rdUFgoKBdk&HX&gT)YV5GxXW@~GVemYuYUXd)yuCws71xS+sP%S)BCd|
z<M+ip^<5_*ARxhuWBbl4voQ>A%X4$J5u+V3I$q>M%u=mN(m9bpg1c8h9$P&i`~Nf5
z9+DjP!AlQziCVpzQb97?nEQJ#(RP?;K?}9p33z{~p&nGDFC=r}PVH(GPoM$)pOEYI
zGSn5>_w@mgcev2I?yXq;H&YKpCxZwwJ>;1G_KF_Vuj4H!WtoW-R>Hl}7}9{Va^2m4
ziyCl2PA@E?0Ws9S2hdTjCz7CR>opL`2|3bcktg5Y-}>b;-jy1+^+Z*DY=k@g4h-?K
zp7;wBBfmPHw;z4=kp$^UQH)wxh9|AvYxT=8rR_(&Vs*h`8NTvsgcE(p&BI<LW*JPK
zE+Ks^D;=#?!LOp#te2H8J6&XRW?Er5C0A&T3HXx7%FBMeAI@lJuGFI0O2%jO4qSzw
z`LmUNUj>H`S3&tybmmq1k82^LT1g@@7WBz6$@)sGf3KUtuvvq5*!g>v#!Sr^^0acF
z*Z`O6a^l!S`V#f%+sOClW2BdFu!pC{f)*W96P^?HEe_Q<NVUM`){Bn**c1VqkhiR~
zRd$M_gjLYqUbvLElDDDK0r`O-aX@}_C?sB{eSY2f5m5R9I#6lQHPW7I05c&mj4GjQ
zE<pf@P~e$exubHcBaR#49+XHIdLivD;ISjy%sT3HY5TNORi{;_pGspqe6?-`Z>_7z
zN|M?7wdJ*grK!2m`>>0>XlEz=2`Y1hi*GIoS`W(SKCv%@k615(98PA0G$aqCg`h(%
z<ZBJxr!MdYwm)qX5#@Z~f!s+>{lqpMg>*~624JBlR0};$puf|gPMc3;izg0<h%q_N
z8;*K!9S`Dd24F>8F6elFfARNNnnX;mfKjBbt|sJ7P4GZ(jP-m~H@96K>FdX2yn{Y$
zMdL+Y$GYrirQ77_q%mBhT*$Xq6e}brpm~}ROix;uNCa?)apTDxXWbE`ppaNl-a@lP
zhH=`Bb9XHpwdD6{?We!`_0K-Pe4(?F&5uiVaFUP_D`9olP?{4cFO_feGDnCaec|*=
zXh5ss6u?PckKI%a&-Envxzm$1JtR%pkL_lGW78J$$SULX#~<u+&+>zA+mN!Hu<d4w
zpCJX{d^6t(IOT}hqEtl2ZOajfXa&10TFwotE6}xD-+_#Zh;7GOwne$X?Og8A!@E?G
zd}KLA(7pSV%)uEbT2+*8$~B7ku2yR(i^Xr|GN0K$!*UMdy^hAwy?ok?n9|aEG5)Up
zGP`V1;I@i@v^x{2Z02QT1chW<r)5t&?~J3lzVo>wM<=yQrs%;*Bwh}lG5;K2Sf)MJ
zJ)#p~-Wzm#f@0?M02{gA=ORsC>m*n^BV#d0EMm?Nc5O-~&JX&A)Uz@iY-N79DUXx7
zKB}PmoV!cTdo){WH2`}bV{^{Xq|1_HK%NnY$4Rct0NHkx;R!GkFM95PJx)4ff}KH;
z&Phsigs0*5v#);j`HOg_-&?`gf;KA%9}k2^s986p+qgvJ<Z?@!MRbFC{BnGRWKW@i
zTq3Kp(OEiWb|~*?zV_^h3`sPs#dlVjrY{r=6~hcu3#?bByVX3P0jYwjvnDzCm+b7C
zTxg~^*uwkde)@4t#&9P>wLKiWxeY|!6FHF`^z~HO7dfb<AW;-At-3F3$mS(Q3%Bhs
zOk&8LT$cn$+N}(5{f7V&0Im&Kl$CPm25Wy@u4p_VecoK^Q)y{W0WY_ZMBHVs?BfH}
z5Iu+Ragu5rI0HL7-B@@m&dL-7Lfa79!7f3yA3wc5eZa8%*~@)v7-}b4b&NAmcrr0o
z-cm0#3O9^R@I<Q$(AsbHXv^DAh-xFU3SdGD7?W_`Uu^P8Z@Tp3hnYq4)UGgGNZ*zx
za<OB(Sd=r3v`jir_V3?!;~Um0_i<DQRfx<Ah?_HU#9$3c4zE<`v9exwjb2}eMUFv2
zetQd8>vLRzs~l7JFrTy)@PiF$Xw0)M)ol1@&vE6vy;NFkx)n$@z`Xf<-d3PTN3Ez<
z(bRs(79+}`JOPGr@zpdNbEO_Ap)L2`J*Z3lWUP*cRHi{@`O0^8axec?JCusArrof}
zKT=SWbvT0%wDaZ>#QZ?>W471M2yTIO?5_WiaSm0%XWdUjKA4r-?rEno!1}X@nqHps
zC@;s!>qfO{tsaSNQS+3w4>;e)q=7B_&=Y)$l54e)#!6=s$9NT8dqzb^Fh`S?+9pSE
zK-&xI*uI^>)p{c1s%&@AMP#AvgZHXMHYF}HHZ&mOnG(V@IM{dzS@qlUq=_w%!2ZN(
z)A|aU(PRhp1Pq?r#WnCvR73Wdnz>6>Z}uJvR#$u0Zs>XJ@&ZtZG&h97mfqi-Csn&a
zcL(@8eSNiesZK7LxMrbDP*uZ|bUamQp!>RDwlqSzHnksr{{D})uYURc$)f*2V3u8O
z^%AUUJ101XosKRi!V%E?aWVt@E*68@!JK%PMBg1El2PJK{E&1Mmc|^k^SiOXOESJ@
z)@a^J-<efvCB0y2b6ei&*|QEgXQv0c0RCI*>Mb^FmyAn+_Dn#QiHmH_b<r<}iv{yp
z4W!)6WSOZdn<hHC1$nsFd5w03q4}gNSCwTthw?8fzn<}F&V(Zi&@MGriV*g6P?x1B
zkZ8BW%N9_~lYOtCu?ZT-F2hx@rE5NL5ghfRmSuV5n1mhy-t=k*p&rGJq4NvRkKiE}
zwg)|TXr_7w<ZaDWfbvXOO^6tox>%|ce0nbci>D?n-cp-rt}2oiI*h{JQraCq|LiAI
zTj2}6>S~En0}tU*s_j8kAccCh@EJtX$Svx*CGwJQ>65B4XjYXorQD&?48dlf(8>P8
z(&FIqtZEk!!WJ+Pm_*mVlaz%RV*`iBes}33EwaWk?~BMV2I}UBYSAWIb-Dts`RL-g
zH#`-RZNbl2QB@dZ7F`P7B0Bv{K#_IAzQ^n|`t(ZgSUES}w)BT8t?{kpUVdAb@|^ZE
zEr{M(%8FyKLS<8`jOwh}M`o$Gkp)zj3qtZZp3GT+>C_m2eD`4zdg;DH{Wn@hy*aR3
zlR2W7qiM4xnrB!Ks-l(FH{t@^VClG4=n%Sn(bQfU>vN9r$l4mLa1Y4r`_hDIGD>Av
zW4mE;c|qTG4w8PJ{OgmQx_}ShjSS_@Ya~d;MB{f|#)N`*+`XjM(*{1@z(W?9!Ta1w
z3$?G=^)+y$AbVl9BZQk{3|Saf@IH(4E&5uL_zY^XyxVloW}8eGAz!9NH+svS&S<gX
za17c13swxHM_vv^NFc;9-J`XnQfc7Xu<74YJY_yow#Zres7<13cTuhO!yA`%Jt(-G
z0^47<=Yqr5(PZ*b2M^OS*>_L$IG#uSTr}NSjICDYrF&3L<JA&ng{3TKkBL4r3&Xvq
zsM*oDU$$kguu*`h&=o=@xv^|DwAd3-ZwmkfI=wAw!YEe~FTp~Q&uwSJ;ur?3ftVJc
z(~Eic1Y=&(rffU<OlHe=hP_ydocCcy=M*)g-rP&_0wfhMt34Q~c<Y!^8T>ZjKohky
zn}q-aPs>T8v1-b4!JC#Hu#ES$Qkrom*vW3uhZd{wLcPr-@EBgsG{m|j+MqJ4i5;q@
z13r-O*s)K<clJrv5g{2wcRtE;-Zm<y9~)|`T|xt|)sEG&_%?x*F_-D0Z47ieGNlUS
z)UpEZ*(t2CHEqeDcl-frqVBEI6xS5(qf$L9w!#;8zHS<tN?)X0N$;FHaO7g4@Troe
zzy!SZAmg-s7-{6&WqD)K903g>Lz(sh#D4IbFFAtVJQD0|5vpMM+dkvk^oy9Hrg6*A
z+_euvjkg(}=Jzo#sVC|<shMmi{-$K3+8DiLXtT2$?$}9zV!PeBV6rGvaTP6@n<}HJ
z#T)TpJpvA_cEaSKr4P7jH(Bd|6IC%UbOavFaXOL}qX${s6`_mqw%byu7CFH&g9;>u
zP#55Z=IV#%zx~xvkyT4|NJb^f`=6a+N<H<Y0{b!}(%O`~Cy_S3KG4{SdJ?=tLCujl
zSmM0oXsdZ;P+3qQd0D(&MpBn0<5s!h7GjC#G&*AnH)J1Nyymw<2mt(is0=>3%EFP3
z+Z}9E-+1obP{<G1>`p-QU@SLB!?dR+x@nR|R^uRB0MOd9{ow)>Z$Y+s%Yez=tjxby
z^oM9`&yLL<<Hm@%Tbp*{b2CrgZaRhV2~{ocNe*x^_?iZSI-5ELR0{nADj3lm_6KL&
zEe_<z{Y7=fMKfVWNZ<0IeA-^LYgU`J+rMovu_GU(c2i4h*YQ(80K8c!ASEr5-h<Wn
zaNVRkKqJAQ{a}B&h}mZwyf>bgBWwW$P>eSZsi*m!{TI;Ab-*u{Di1&>&w=rsm*YCG
z4>|T@ri@EbonR>iCkz0F+uoxLd-H~tW*Q33RI0VMX}M!<^)}{4FE_V?XUVi7Pq^5{
zp2f&jwj$A@XK&09^D7jQsq)iLZ;@Svm!*Vy1juPjYhbP^!Yzs0PPequaq~(hLXZYa
zRYX8XsmfAJM`+Vh82EWE##R^#$iTwUJwa}Cwn!kYD7WbIyLs|<3a8L9%K{(NzERAo
z-UUSWI@?8WTM-^rOS$nM<)79}R90gL+h&o_KIAcibT;Kz?8<GeT*H&>j2K04lZfSP
z!0<k51v?$wk;}+ux8SB-v-!FluuR3Yb!?y?Y#%C|_5iim#PvF~=-P&7Q2^02OZB3e
zC^;>6(hmKqRxTEgcNcq-V9Zy1?wx(3o5o08dY?AWq#4>ZvU=qMOIujCuXxH_5+ho)
z5NS~*gNYGMA)O?;>HOOU&B&bIgoYi$nTIX3)g*PuzISL~+C`fv)`W@e$)iRYog6wP
zW@isvw238I6Ok}g(PY~hyuDGY@PvBATq3LbQ|<NabOCRvjShgcH%AKI;djcuO+2S#
zF=te?h8k2W^UiYd7PZPMSf`$;&v`}#iMG@QsRd_A=HQ=*K{`wdSAg4wq3tspC7Sv>
zQADJLJ&8A{EO^#brOj<b4_=csjWE(jJiyvb#tFZ&$EWICSDCFMh&;ti(FYSAA`CU#
z1-iP_YFRS5i+N~5yfE5Qa};}2Jd7Xxa&q|dsP8rN?1W&z4iC7Z@I1k+R#@Kx1uTD*
z9m*Y~t<LQ`{quwxx<@m6<k=#C_=wQR?CA`!U0?~A=Lm$Y+xji&s3hL9Yv?M{)5;E_
z7&7I!jQzT`YVD=B`-S_q?&|heKm7cw5B*NxYxH~8D+c0yO6`m@5eK8IPD3Th1wxn9
zeg#6R!WMDnS|F`S?(i-ZeCfe1R$u&+H+}$ejDwFheWX|Db$~bcA=S!RB$kOHU-PbG
zuh_68!yZWYxKh>jM<4^JA*Var@B?}y5=sQCC>`SyzqAKswTy;UM!f{y>P%%ReAUKy
z1~J_@0Cbz=Qw6ZHB0Hz%4hIjevKp%nQ4KE&xC=C2r2dx~%G!MbkB3V$Gf*@ipDpe|
zyYKdMY70{BGPVmNIc9ZQSBC`0r}Y%I;ny<UqaU4Zo<3-|R{$1|#%Zc$#<Xf*2;Qcd
z{#wi&C54GeX-(UsS)AHG2ODjoZ<z%tlDlqY@#ng*ScImI$kv1N5`9a&<lV=@;PbLM
z#KF3p!SsrZ;8*lI%hP@Sb;8DH4x!&|SXYcv$s~;h6NysOTk0xKy-io^T2)@?oSqIZ
zoy9ZftDjz<KH612NrlZKh;TpeQs9i%?S<>l{Ybl&kBbRr2^)&G(71dwfOC{mY4v_}
z&^<24M$>)C<QBW2l=B!zJ}yqBTll$nwaMAwyX>OGIOh_DCcX@bz(`rt1QgPQRptkm
zF|qTW*<_z7;0_DW>hm1?Wx|Ka@msS4jPFaQTrM=kb^UQ`t5YS=?)P2~IgdH=T~WC%
zH3cJ$6}xOb8SScyhjGv~&t6*+J5^}m&UA|IC3w$Mr_2u81y%8p{6Ps4{Q!dHx>LUS
z<wo77R8m5c1|B!P9ROx9DPpa>XE02D%3YD&hl{0QOHnK1NP=}SOUA{tcUU0s>2e5O
zw~J^0?rz?|w<VZpH!Qi{Fd&j!N8pMcGTFUOh-f$7YMM&whxxoy5{d#ZfzK(e9lPmr
z1FdWVSs9i@GtOv+Q~h=#pzP7@36INmcC5ccW%}fl@j_$~mnB+CK2Jt<@LlQZnA($I
z7kJ6B-}@DyZ_7*kH<Y4>5d|3w!_C&BqfQ*L8@SPnK_@?Dn8js=x<->R&q6M9Zj(<g
zjt_Vas5js*)yVpv3!jk9aT^G;Oliwme@zxy4X4;7KwhnlqGCxgKd$!DyJH2v>`_gw
z#U)S(PKC5WA)9-q1OT(UjD~-J@EUT02{OiN!C{W$&Psu%%BilFldA<@$1t<s$4A=E
z0__w{6=h^LvJ+%vyj5i2A`XVgNbLNz3aak?RDUfzW2!q<lc&0Rn3?4Q8F)#`gN#W9
zq^Cz30Dejp8gW+yK^GjLEtbiHCa8V#JD8CZfuaP_rZvmFfuRmwwT;u*WSJ?|@iGP9
zYn7!zQfW8js>}yc77qW}pcLO5|6Z3A#>F1~kBk4KxcK9jAN=V1-@ktT;6NxGaz|ER
z)}<`9i(Df--4<mlA0>saBDb@GymiZQTZQXYqK?qLvr#3{=rxQDE3>v`ZbcmRp(S)6
z^T3)C!VuGT<g6G840MZXt`b-}g1^Y@(SjVq*I{jC@eanWP}*IwH+BgCi}W-DNA)N%
zLYEvU>|Vp8sD(Y7k2-&0(4F982HO>v6hwC>Ttmp(4CS)iC7$N|g~1*s=bZC*8_#3p
z0DQorkl~5uB1vZO7B%D{drtvd$h}IBW9$}x)KD~4l2krQMH-}1P@W%Eehus1FHG2!
zv?-3+LX}n-s+k+S+b2i|fJf(RSCEm&k#|<e<KQy}@l9}as&Ujfk2+x^7JZlfBmNPi
zNXwDL-^@UNZw^?Lvy`mpPESBIQiuWs1sqTEyxWg%5{E9yCs@ilFvcPS{n+_Yi%NlQ
z1RimItFu-M?JKkvq>2t~0D2NHWhmX07FVuU;v*&NU8f;6o?0=W3{AA(7|b_-4a{R^
zqVN0c1O^xuf^~Ro073d99e&5&EDPI<7>boqkg+6e(WK?f4*sfiK#O^D=)8k5T1D{!
z$_*@^ElyHFiB|2fYsx)=o_jYZhH;-INk9%Dsa9)d7$9_sjaM;7)jI}FFQtiuiA|W$
za4szK)WOu1i`-hJO_^ko&0+-pWcjM7GH#6*fQe8&h|<Y(aE4$Ln5#CL@B$ZybOZ~B
z8@^-^Lyopy7<j|yRMH3hfIQG|G>kD&)j_aEv~&c>itEbiUq!TFA>7MukFiCOrWq_;
zWDbep_aa-6VdMWGL<%{;b{w4%AE`lxr>^t)UhMd|cTKjTr8Y@BGd6|G>N-1(Q7@{+
z8XU!5DqAZY<n}5hkI=gU{D@tsRax?wEF@{!{`YeRl3l8-yV*q*DNfH~UsVWnAV6nQ
z>5^{sOcPR)LCa_o($*v&g}ZcY`e<xpJ9Cg)(blY;A2rqu<(8)Sa<RzRvr9mbs^-Qn
zMobQ~MSNwsdMh-xVvymrl(yx{wlRjZty;dv-2u1)(@zYuT)EHA&l{@<COB{)+7ZD*
z;mSUS^hipE`CF6pt2CP@Jj~)u^fvB8Oo0(Mxoi#9-R{z&sDQX5z5%XS*(e-%irTn?
zs0}`xO)0SPLl8WZ!nKB^k=O?rQb`(wJxLZ^d`bZ{^OoU!#b!OGkZo5yRC>q?9ZDoB
z&mS~zD+_n9HSkZKe)vN+&k30K;j+X&NW08IVPbufZk@o#h}y@x<Fm#U3~+@dOiDa&
zRa|LP8f54^mrLAFeb*L0-#t!n{$k(e_56E)!24E^ksq)xuX(gz?4-`WXHH+g;D;V>
zWWpug)iPOegH=~RFnXj5ji|00v{mA{)>#OPI5tdM5-dLd?t4!!pFfba`3LrI)2re<
zh4B>nqH6e4dOhKv2q9!Vj(rs}HsNO5ux2RCf!!h(?Mqe8@WU@QNATUP%h92++EeQo
z_5145vDfXkAx?*A0KT&Q6TV85o+x}6V*^);qx?l2+&PSM=oCBT%Cg_Jjw()&nCrXQ
z)zZAMw}m8qj6R+U%!``_vaFp@rOS%;rOqVj;3OXH)k&P}&5yWG1ow{ZG?I>fC07-{
zpIw%`Yz#x0cRU*dJaJ)qxiWF)GW7(8^XIm3Tpki<<a<zm&-9N}%iJ<-gZ2vfmahOQ
zijaH?;#BJDl4e?_iGqmYi8<aG%WeaF4j-=dAUWJu;7yPVd9A@k6mNJ6t<xyqT(<Vj
zDz-zqX0{)(c_!%8-o|`C3UtPjc9#YcR9pR_pi*>P(M}n)fon~NJ1iQh$qt-E+)e?k
zb(0jDH$H_@u>kbVjj}og$i;CinSE;i4$0e%TnK0F*eDB7UaNwXB!F}ZfMms8ZTwCY
zBAPQb(OBi4wJ2v?)g%7Nx~CpxC#O#JjSY}pUR#3o`bV59;5mwFj%2zDhMU^<wPZ24
zg((SR#*r=~t)ZMnGg!qz2~y{S{1hUzny+h6=#Er8#-|`UWgHgwSglAsh)TywI>jr3
zvH%>?6QlwhE#Hif!rvfIa9wa|>@ZI(JK^H%s+*70lPhW#U0VX1317{r-x($@Z*2|q
zd|!a*I#1>&@Z_S4$CR#W$H<&9OVjDBQ(X|73evX;6B2IS8<R~JS3?uWhJgo|L}O-3
z!piigs%oz4lO`q1$MHhD<Y<$Gbbdm98q6&&=cj5%qOTOteO)gBjS9c^KuZVV3@M^h
z#5s5rp-x~c(A&KK&5N_w`s4dQ`$AP%`(90whY>rqYEv6Wk_eFbB9>~Ea|ZLrS#+eK
zqi9%*kr<<uIko2i5aFZUH$<^qqg8_Iuy`lPLrE~3Ff$i<*0VY5O#=D`1qt6^sUd2y
zB2`H(buh6klXb?kbSssDQ;yZQ?ddauAMPc~on*>Zp$N-{MMGYY8>QkX_maF08W=<Y
zoPCe>GP$B6XDXj)OS`<l#xQ3iUs&J53X*|TxmepXExk#z1*jtEp)kXqgI&0l_w;tD
z-}1_jZL7JpZSYG@i_M?0njxtw=t*7oEk&tIqFn)cQ^$DAX_j|l<MU175;ZD_F~IBj
zbK>5f<!I!9{c4>v8Xz~LG~l`n9Ia8-q;RynA{bH79;KZ{;ABMI2rG31U05w=JTfT~
zHK7k~vNB5?1(f?1Mc`(766F7KPzr!m3^;ndl(ssJ%aU2sBRreX0(l{!a@u3rJ#U6+
zlc0wtR}Ft)Aydu<g{8JyoE|O)3feVU!svcProJrAm>W)^i2Ch3D2orssubD`_M5V_
z1cU<pYK~q(++e9iPA5yPDo?C-gc+^b!E@_NBKZUo1{j6LcyBeFmO)Q38#$xa9iWXP
zr==Lz1vLg&a}Xr2*Gv&h{SaKY>H@ISogMN%TQ+M|wGI$g58+!D7nrbf6(tK;jXIfX
zMWWjYmo(`*&qB1<42FYO<k@)ROq<>~*QR$Y27X1Z&2PvRrQsk;rMByhddX~18aEte
zTpWf8L>86r!F4#UY-!#WER%kQisjeFuVck0ylIScN4^4ZYzSyuOlDP)!**ZDt*4Ah
zCdE3(D_|xEF)ZFcI({;pQvP!K68nPx{JoR^j4$Zi?fXxGBpfT~Jwur{>!BIVCkNX8
z)Ai1*={KHr-qurpH0S@&jA;t<Z9c3e@x^f*n^W|bX4rok_l(2ifN+|UZB}LrgeqS>
zPJx(m4JNemofoegBf$n`Es8_jS1aicuRujr@~m1l-s-EoLewQ0l`WgJ-+3U~;ZRFj
zpNkH+FiM>h?DTZZDzq*A=Zl4covA})-@c5<-VN0DlP_(f4~Ii*cIpcYpZzCV>#Tz?
zO}MN5tDdf?s$3y?^1Q|l@v0)Cwc=?FP*5rjfdE98V8E%)m#iD*8bZ|c=|~|Za+ECz
z50e+)q}t+&k{8wGMkPoIH3f$B5&^Di#<Ggtk_<6ZMl;i$8A0vCCO6nSsBbm{pg#^#
z_-TQpmshwVKBs^6%hzA)Xj<O~l(TonF7dovKQ#aaD-b~K>O9A$*8~~(Cq;^d#IxQX
zr##i}+MMF@s*-2jE;F+?P{*oyQefR~OXk~WyuXKftwB(!&!Xn9Tetc~d?4%VHdDCP
zmg*AVzOsZjL*Z4|=MA^<I1qVOsE;eI@TCBPYo`@t^ZNA5r`ONdF9<pLl`eap&OigK
zu=E7u@=h1Kg2iRpq`U9%#Nx|(UXl*CcXj?dAE7}P?gmb5xtz}%3XW+1MzpTu%&6tf
zr|&12Tz6c~?1KtFWwlBUOrB=->*c(EN;_Qq+2HWJa{y>}T+XlQ{<v$jnaiyW^D(Yx
zlP~8}4so+#=yjs1#sQXo%x+9dy3Jmk<<fH<<_TKuju4Os_{>^pMyDBPee#(*e=1&a
z=vP^A$2(MX#v@EGjwH0Ozk~DqU{HSD)Ea<P^g=Zdt$@p0gBXBJ>&ZMnN+@2pH4gFV
z&y2%-l&df2^H~E=I)67fs@muMQwWX^F=6~+AVR=jE5>+Zjzk4STt1FO55AnW4UI%7
zzMM~kM*=B=)bcYnSs)^S5~TXA=d>nfJpNW+)(Z&kMzP(O_hS)WaZItgpnnuF$~BCr
zKoUp?K*n^Zi}TDL!cI9DZDKEmN$pn7xlfHy1zgV3aQb^NXnWB}K-U!T{mH0TS4JC!
zoCuzGqzvy{wb81_*y-_=r8A2m68<O;5m~7G8y%Ony7<-m$^4yfh7e}GVD}u!>%_q@
zgo8!+sAT_?0&ahWl+)L7*QDMbBQxf@<w_I@^e>R^F`y7Tk0GL&qL-UqDjozpg8m5}
zNmEFU@`y+4_^C7kkc^p6pG3;*k11*DRB%!k_h8O#{4n1-tI!&=ofE|h;O26^N_}QU
zDCvuz%H#4YOGC*lS+{~`{aO^FFXvMvkk?&<2M=hrk8<(V#H<^Dcce3SM~Fdg{TmU8
ziakC-Cl@NA0oxtQ27lNH=J1#dh#Ac4!MtNEk_JFDUB3g*aP8eQ0D>p+DTV^pL;8pC
zm`0nMUdnZjXp%R>ECyzDSe9Kjupxa)rL*qEf+E`606m5TE9m+*h@aAkj8tf=@px7e
zV(?vPw9&~*GIXQP%zNj&kD*O8E_3pr4e6r$M$xYdWA?m%M|;o9uYT~;j}B~ihj9`?
zm(ZWP+61e>RN1v%+S*?cns~5_SuU5APK}_arb6l&o{FDNRqIGdH?sIBX_t_hYv*a5
zse&%5)S#t7=5$+;bYm26ObHnBuFr0_cmP3CHqc-Z>Q+?Eq5+*s*}B`~rajp>9#p5I
z$+VnQH8gEmVaBhL;x~@NaKdd)F4<Sv)DtIp<ACSZ;vOs6lVby@;$hv}fZ|vaRU;UP
zDjp`OyHc)xxAja6KvudC>s|(}-6)&p8_-+R&$x|BBdyMzHmH_F>Rx3A>xM`=ov5K=
zVBa~4`F(0<ATp;<wT97FWp61_&Bm)gqhS;G^zYQL`Kf5!<yS^REugew_*bA5&~6D!
z|1<dWo@GbuyB)#m6eM#kr)scjhXaV3rNNooDGE2gpi*LbOI>X_7Zj%WbW$x*u~G-;
z&jd0Lvnhg8-N&!OAh_jG;a#}51vitnLRXSux1~!rxop=9j2x9Y6|+&X%iOCt5v=ng
zjE%Bpwro}qvsRAcxKTSalv8<~4pRh<(P$l&g1cvWUPl!%=%~M5HyK1{x((RvdMpUy
zs?8~YE@uodZ@GnGghk%pW!7xYB=EHcVUyk{FQf0A)4dwCEt!>Q)=N-Ir1<BjpZ)yT
z-}|756GOb6Q4$=5fMoX?Bssr`jxWVBP)sCRIp|bOag)kRLjZxzMNgX+uwv7o(U>p0
zoY5fk+-j8<aKAgVo<F6FBFx1dB+CO5cy0B;E(~J&G}yjuJYA2-_Ub@*dt$_Mmj+h|
zMNF<(&tI%vjd|bDd#RF0v~oEc%i!j`>X3xC1rAnwkf^K?zq3olNI5Y<t%F8pF)#3(
zSS9xZY`9<ug+pP<QPwlLh<O{%9~C74Gd&wSpPZtfKOrhwbKIMeWUMvzaDyx2QrhUI
zu3OdC=T~RW^Jk*;PI+wc0iIGyXQdZcdXKllgajzgdlh=6K=1IVw<l5$bvEY{3Z<<8
zjb6q*UcRFglqwj@HrT72Omt~9kc<I>Rw*{Tp25}H@tG;l1^Yl-A6VD(jRI&iK1l-&
z6v{a=dp;9+EU)u%RT|}zi1vIsM@4HQ3l&g7?iQ|$z@BidfI3P&G(obR2@Ufjz1U`8
zJ+XEl>sLZX)IA`{`VM=$VXwTK?$JmyZ-Am~m1g(N@6N32rxYC#xq>3m-fF|G(u*qn
zRCc+p&u})%IADX5XG{P$*2F%%zjq)|CP2#iDW&e6m1vgULxX|8*BhoYZ?d!xdY00P
zwVn48H@`Y_o<E^3B@g3706Gd@XQdZc>Xqf?<zp=Upc8(z&0`qsULvl{KB`KTygYnc
zUs0566wRg7vp#u^c_u5i0ojbDCTqs#1bluTvb`+_(^ZLL##~&MxHMOeJ_V-q8pInG
z5olu>uMDJ|gF@j7t56DgS7;DDK+jYgxk<fBv0_HtO9T$w?eUkDTwP*0KfA_qA8o|v
z?!N;^kjbdtFMsNehu&^h9V_&yT_v1Zl6-;`fxtbZDa(X%_dS}N6^-ietNTLgMWB=j
z<b=jGhRp#j_@!cko4~5!R4Ufph1}zTQ+Zf5mY3>D>O2)eQvs#~U)s(rQL0X@;iOHx
zrCL?v6c_E3HUl)OP!vJ~5sC*LS7s5QF0b5DSq#d&<eo}F_}dTxRShZE$;ox0!9^sC
zwUfK7BBJh8@Tg<Y17yG)mu@18zHs#*udYL&@tcGPnOqPpytlI)4Kk^N?k-C%o6h>Z
zx^8Mp1qR(pQgKF5DpSS4MJZw7tE{$#na2sj&<sK+BE!$gz@s6ch+S@TZyhaYC>PBh
zW|%-N*znv1-*Px8{UDza{4DfE(~WAVS*eGSUPIa8v!Cc7;S}`dN`+ms&IP&_<Qeop
z#WO}ha_}m=kBTMMH0~uF!Vyo0g~fkqDv$~S>wou*n8|;9PF$#l5&Uv$gi^NJfk86X
zHwPW^88L`%m-&m)lAkgHb}IDS@laDh5(OZC^`d3y(*L(*FnE*T9_cO^2JC^J-aMf9
zPWp_yXe?&7$Q{2sXZu!2(WaDq+3U1-BngktgR;QJeKj_okasGDXK52_@B0IHXR;j0
zPKDuDsbJknq-JSJ^u`ObBEk!HCNJO%MK@4jhNnm0|0~PJ%@nK%qT89OOr?gSBkAaj
z-+%e2k(Q3#E<ZJVDCxbn;NZh@JCeN%dO>)htDFx!j&|3eU4=1Bq;h_RIQuu>v(fO7
z4BYv9-CVKWuIK(3kfBXO=j1SXnPXoQiCN=DmH+t57u85x7<T(T(LLFKi%j3P>s=}D
z;juoB{yPiTSE`TK-}a`x_0oT{UU`uz1HnWJh%n#}y9e)b|L2YS;ZWBq^91Ir{OP3i
zYrMca_-E~;^l#c3xD(;TXfbg}MUd-XL8yI%(0^9*H+_CcJ7OKhI1T^!^QV~p`;T2W
zjP%v-a(?W7bE1&m{Zkr)Y?pi&cS`!*>1!wS%CYH{p9Qjvt?LKe=R{~*Ni)|AmK>^_
z-=^9QUh#<MF5U0(_ZlR^b9kGUwx&KLAHo?Sr@O*p`H@I~mDF4N)F;xW<Z01opLw;T
zUHV1Vy8PXESGJRk#;Z*;rt*f2T_=3=92`Bf6f(%?;mGIi8X-b?=_8N(UDg8h>*)*h
zW4xffOM06_g%1Tk=Cchy#q<N2wdkkU)RVn^%dI4NBzfcu%jm;BTyL`G1b2>JPkeuf
zmasE?J>AyZDS1!8X@37u$5Y%RWIPsGIbiT^tJ<6nGmxxmXmW&<E<X|HbNCDsXX1!v
zOYze5KPg|}9h#t7X1@1V(_*A+(&h9bM#NJJ(bP@f>=@X#<11x4+<Rs79W^T&?(fgu
zq$y30W2PqaP1FwP1|q056uZVsH8r~pE2t!=!X8|z*@|l*x9`7vWGe1I4-BTFXLX&(
z8=?@HGcSZ5o5W5@s9Q=&?Q?|n@3cHl2skrCe|9ckmonepq_cPIQiZuY4@{eLk!12h
zC}C#`zp?hGw98kjBdW5UO78)M+ILCYMpwBcYAcC0(9>B^>#Gx;u<)-L@pRy%Ck7eq
zX6qi5mUIg3PL3=RIslCdqOP<QQYn2+jIZB)+?%7#X0up!F^VKcV{h<Z)_T-@-P&&T
zAs#dRxQNucZaNqwz0x+FtzJ)gu>5$bLS|WS-&4mb;W1_?3WV-nW(zC*nb8f<-amg?
z?~mf8vLNbURo8Tnlu~%WoLj{ViqXsZ80ZGQ<VE5!H?=1{dTpYgRO@zL2+JUILKdbn
ztEESB{AWXND>SP4vD)j)@b?3!*{*~yuJV2Y(kAIBF`ax|(4mHl2-UEhyWc@d9s!h$
z+#B~oqS0?^C3N4_l7*R?<(qy{J&9t#5a5*rr#Uh`nf4opK+Rh!;ckG(En_;OMgnVX
z^&;Kpu=Amu`u~%!wekTbJ7>)I0%)ubkk=wwl)~qoOe!L{2>bghjtJg%`>IwPNk|*{
z`ka5)d>Qg{yxSs_1sUmw!Ho9|kwOiG=(9!|80!k0hLq_s?6TNu*ARD`vsb3~g+P7b
zF(8GwdYKx0%mvgMkIn;y=bbJi6f8yKxnJ8ZEikJ{4TS;7GWMtaLgNsqbt8jarBueb
zYJn%g9#|SL1AVA0n_RAT?byiJi{BeFnj9NPmRWqFVYTC_l#Gj!%NC0iC?)C8iOya#
zkA<j$epz?IyDZ~j;M>h!2`XyZ4XX_K4p6gmx4Y2V$xPF71*DQ7@qvB67P@VpAm9fK
zpTkQI#eo5usA)$57yk_`6h4tTCZA#=$V-ecC=t8f>tNy{m`In|#FC7W6~ZU4W$=%G
z{^)<C9TtL0juI0~?!|Ex92#6#9ZBSvk7jFqEbDv`?9o-!o!)pCNF<T8*!i5idGSWm
z#Y*E$Pn8TTOqE5g;LJJmOg8RsgTrdWjX{^o73(N+)spFHRQZ)?Yo!5t2H~V?OpDS7
zrklITnMe0L@jt?&lRJ98$>xkuXrseJ3vS0@oV&POu-Oidiq28g0WJd)J#`ottDtI<
zk2BCtp_!R>dGidSo-Ghdd|Im2!-;iI9YRBOgfDV9#l0<lPWG!<fDon!;=^Ro=%!~O
zQi~%aW?7h+i3^+Xj6xyD{}zUM-nC6<U!VRJqESL}X}v-uEpACS86LK3W>nH5W;qv?
zsi3-CziDb@9o+!|KvLYE8=8{{Y)pWb6}VnFh8QB~9!z|DahI^xjupESG>oPT0G;X_
z5JYrop(i9PE47xl+{U?;yLA6etfxg+diL4Nb{RZY@k5eFt1b>ow<)}z31!5$m57=I
zz4S2wNUl9^6Jgv1tx6%oI8UWEviC890#3i8q-7}AUhzxF<C$KH`=Z(bYSd%v?WZiX
zazz$zTSQLl;pW+$(6G5f1K-XFDPf5+2ZO=`P9w%chL0J(f+1)}@9-^$vBz8=a1~0G
zX<I$4Q7}zZ=;p4Vj8<MS&x1?0>bfCf7t+E7t%pXezG)t9gV(f(KNg3ik#Ht9a!<QA
z@3qOD*y^H&3{}g4F;hwC>h?q3--SeOxlJo5BGH+x8Qbg&m_p>4>~yEOd+@gvU`pP3
zXbzdwuC8T>!f8hoeijRes~WYeHSLlxlYp~g*|L3MM8U%Yx(g5W4ctolXs42DJ0tH@
zGYh#Gt!&WI%>ebGH7JqIpA^T=tFE_oA6fVXHjt$W!92&Tg5LE6V5$Ff(Z(>w^5p)u
z%>at*xgMDaY<9{~h-|i24R$)8dnwVv45sRY?f^eQ`+pLtoDbuR97KZ+iMBPH`8Za9
zMI%(8)s;*1enzoPcZ;oTqLN={laHt)de!_9p{~h6UuY$N<)W$XU|uVxiT0a?w8^v`
zkOVuuGXaIMM!x`K!(uFVS6v>O9msPN)`&u4-1wn|eYqI*E?Tb?N&o9Hyj~6S(KBP2
zQN)2X5fJTw57ePwG{yJ?$SCGSn0)$+t@g_)BEL$CrBQ8^MZ!o2cBEx3P~K90+sUix
zZP(p^a-b|?Ar`YzTT`J<0Ya!yjL0&}ydN^ydo=Hw*L&?B)!vY^cO$U0N1bhKVI^j^
z+2Po4@<rTyuF*nb1$}M*wwxw&UQ(Q@*&g(pw_UKeM;eVTsf@HD(w0GXJ@B_)JcKkP
zWVv&Z9*jqp9@Ism%Ic5R(jNJ31|#jH!OzMU_OQxxFvRgU+|<NQ(=NQXB~W&UlXbWq
zmMj|Losk3a0TSs7usl6h&rT<4I*VGCRffr@;QFXtKrB9>+0U=zJvoYs!;tmUr@G^q
zS)%JXeiB!W>LWQBO0S_1a_iOwWlxjf`L9Qsy5WpL?Y5oHd)+(sY}OxvRxd)g6i!>9
zeP}qSVj>m94AY4!7H~WSXcM|5eKYGc0Wdm~t5KXOd4^X85AU9R%gqX0;(DGg=B;FB
zZ}jGQ_&k^-XRssQMK(feQ5$Chtv6IfO`ux#ob#e3Ospgvl+BP4K?*qvv?dfh38KiL
zSOpEi!lUj{W!QwQNm5T5#m4C_nmnv5Q8bJN&#t~T5lH2rdBH^~7QAyeiP@3FlLimN
z7P>PeZj%AC%Bqxan0A-M@RE8jq$~CrZZ8JRSJM-=K*X1cU*sE8&X5f!nhRp;1Y==#
zHandL++O@UE1W>==C4pCL#dlrGNCs0+WL+0^pd`nO>4H#Pv_~$lg)lG^$b+EGJ?)t
zbuoAU@{2!ww4FGT9lycgerb(>jXU7m9h*1ElE2$frUq|iLa?G~3`qKNs{h&UWJOko
z)8*`V>hfNkyJv5b1UbGyY04_6zi4XOhp<doRkYpqirwR6sf^EZDVpm_==zjOJA%m&
z1@o{oN6=lE!(H52Ry?Q5cx79CN&T%EPP2-c6<O(ed`n&S*VZIQQCo6#?eDKDsvKf$
zTaaqIbEjg_W*K$#9|OaeLll(F`QN2><R9r_gx8RwMnjJ~TE1DQ@j*NRJIPw{D$bNC
zAyM9LhmHNSq}PkyMiQl+(I?chG4Ku6T4eq;JDx16pfx%R&;cbh2;h<~xKmP~d<q;h
zUN#`~YIOU}^Dlq?<qu!Kk!NP{Osy>oIr)@2Ob~Ge;phhrjE_-0ZZd9W&g$t^8(5hP
zB#m{?PXY3GX4cw&m1U<(#e}fXawOMekX@!@Z*`Fs1mUf!I8ia1pvu0CEFL{62qscz
zUVuv8SLJjszrP+Y-~Z;fANpB_1E(dq#lUr4iO;FxvB+0*%m>nnBdl=MiABpHd@$J8
z_N5R3NdwzBgz9OqJGd@&&vfI&El=f{P0*aScm%~{hBspAQNHMSsDP=hDcp34N9I!&
zZpi~H{v<nMT-wrEPS6mes@c?`eG(}b)*dNfhwrN`?%mlW7axg26d*yttK<qD)Y_}!
zV9TI?m%}qH{HjAS7vM6Qb+qD2lbI8XB8()AmUqc9BZQ4i13-2iCjxR-@lo5VH*7QU
zoD_e<AZLY*^b40ZBa$DbO59##IxBEtxD(y#7B)6WdQa2EI13Irbl|j!r)QvpWN#YK
zem9;(QA%B4hiV&5AvUTA$c&$E(pXR6h07WP^cZq3-R3jZj5VDSql&}Tk)^b5PI-!G
zgo<A+g1Bvt8_gQ3VGq=m`Xz~A^Eo#(WyI5*DCx|*eSSr<GbW~#TD(NPF07k7o1x>*
z^TSxz00FyadJYj3_SLXv7{r!}2lUQhX#u(k_{rUgunnhBJQXoiJ42KsX$4J@FNo(z
z^|~0>wCSWN41m>Ury8tt^nDg&|MV@=)4d&j&QhG%N&!NQ>;N6$6b=EIc2>LX8(Wlz
zGZ~#nPe?8!Zpl15V3K|EAgRq*9mw(yr{f4HwRQV)8v0p8^ZEobl$IOlS}>QB|40Bp
zK)=7tlNCfg*s|2YvElhfJ}>lGnHjCf?BN=vbm%9geO~^gMO8K+h`T9K{_Nxl2Rk7H
zeF_cFErRmC8n$^cD8TPZilteeq$9lbl1L{hiZ|Hwa@iHDxk8B{O);vAcK)F?W`K%v
z8|WnBwSEJvsK^#N0bG;Q2z5i1D}{Q9ghy-^q#IpDfjTr`5JM3HEQp(*F!GnDB}%#U
zZ1-vMf@ZB%s3p0Sv<H?D=|&IJtToFJeM~@qMh=u&AK3~GxGMi7*@nT;+L9oGB!Nn_
zvBD70>ZqP}v#PLc28c;pWelH#yw&0O5G!|lO>s;F@gq}Jy&mDfXw<%T;17tA(#QMs
zP3^Z9R0fe`_>yqd6z%zm+1E0k^_|v@Y`a_qh~<31v1%uFWRiOy2n3J^rqnLZkX8?f
zD<2a_H6`1FCkkXIWym`WWY-pH!87C#-S^FlK?Bz8)cr_W_G%S;uvK;7Q%;~h&N(cu
zkC$xEBAyh;tmhvE_K<q<Z55uXCP<FqS^X>Srt9_+m^oDR1HoI-(v%@yx{v=1Ap*7M
zT0s|I{jL0CjhThz8vJaIXp!yKNk<*xOlVbOuND?Yil_HVaWWgvod)URd4|_8_@tC9
z0ys(AXi$YCj^Xx?Iutv^XFwg=Mv(76D-?w5WEVxW268tqpbrpd2u(U0xwZlagpF>!
zxLMWb(0Y$;&EhT(hW3L*hw*VmlYL$5`U<+AkFayB$`tRg9*HDAvS=y;iJM2q0+-B2
zhY1V~eDIQR*Se`*BIM7D<^{RE5`F^#`%_}2QPW65I)GN0*+~&;wzX1)uWoAwu?O%`
zPXoITqJ|ZwFjYn?b*;VCWwM(L$QW@WZK#&JdTmd)#hzLd+nxw)pXO{JA{f`KbrUH-
z1Tql%syWVUK@TBZL`pF&*$2Y8TFXh+Xmm7nCLlC!W_<;TBs?l&U?w(TyJ+Az4J@-&
zOSPVd3my0EhSN^k49B9f1u9~-$OY>zcAXb+=5yF_6bywTK2`-r!7e7!mJ3_`tbP7B
zg!w0#y^g=MG7cm$h)RMDEXw?#EXPxlrBlZ^>;|g|!B27)x3yy2P)P$Ku7ouL^pRw#
z`g;1|V$|j(|6L`fG{TUx4AyQf|Dbxd*BX5=L71pBu$2grp&BZKc|w-06`I79W_BFD
zPV?&gzZMBe-=j|iU%q?3e*OLT&mYyO$}SfUF-5kf0^=4EZnMWR;e<d8A;JDpx?17s
z%mXHpt-V@h?pDWeYhp)=es`R1MPIs*v+<TKh~qpAQLz#bY{Hb3%ya1LBq}sio8DXQ
z5W$$FimQc^Ai9>g#FA$@V|pHuaq)E#XUS~ua3GW>yWJu;`dUOp-R75Dvj^8*4C8i)
zhRKX(We*Ch*cHwq@QOfbFzS%hIt9tOsoS6DmNQtle7nzmn@;WJ0OkNp>#-m$?~G1t
zRx;Pp0c9AOxwQXAb5?Lp(3<IR%w%Fa+`D63ohPGeiVC8J^AsSh;AK4~JXo><MMMd}
zZI9QVqpX^Ib(=NHMfHdx)||)1Zu1<&Zv!<{U>fL9$2@<q)o^h!EG**Wp^l@UA%o%(
z5aZy@z7BmozsM3=z?O_fn<7}LQ36Tb-627}qlV3teP=`UY;3(gesaA}^(tm?Kt)b?
z4c{F+!d!{*92?^j0I=#Bj*1C>dTXZcO8qP?TugCufiM$a-XtZKGgpvr1>cV#O*zi(
zf~UJV%H|tlQ0m<^i}$XRVD?rC?gX8F>W#A*dt0GI@N*6*7WC{$Ea!X#wSP0(?876S
zaqF2nlq6S!L>Xp#FC*~(gi_Orlp1)N<UJ4kV}N|_NvQurbNHODNlHWanQ9g@M-v`7
zc)E7P?3*oE!zS9x2o;!H?BD)6)zjc9i61JVm926KDxr<0lT-Kuf=dP}o29bJbE42j
z0``OesxZ$zUjwrS?yrMn;{%ku6Wy1HF?gNOmnNWmI8M?c4_i|1BGG3B*j}X8IvqHG
z+`yq>nuj$ERG6G1GBS764#no+6C-b?)m5uItG^b3yj3~S2JhCffeU@skx48A`Uq!2
z=zp-Q@NF}n9qMZtYwRfRb;m$lHI^v9(iLDjaAc#PO8v=08r*<&qAp&gwLEHDpwT|&
z0VEEd{@E#&g)#&y)1*Zr6p9b?qTcwF!l-c#Lw(U;n=-(qjTYi`1*w^}#oJPPPLWO0
zS1<9Al{f2f?NI@%ipAJ{P$gu@vz7u~jQsAy5Sr5f@uxO<ZC<1n=p0p|sMIERr`1ZR
z7Vyy$7K~*61Iy!J=1HfX+S(u`A+v<09rrs9&*SSNzs(=Pr__b2GSi+FgJs@W%YvXf
z6cms{kII0V7djM|uXjpQ`*Ara*QUo&Ip&omPC}tVx^tG7jHLT$8XUt?4QI8l<&w>{
zW9hF>J`ZiQ_kETonp`-vFH^f$?&MUKKhoq=fN$=)rcTetrY%sXvDUr3vchwQyXm}b
zRAPX}!I+EBff!!MLDQ%NId<S>qzr8iq(&kO3%XAlI`&Hnb)Q;5`bRlI2l%>3%38pg
zhV>2@%y*ip)y%EEvNLDehYx$3aMfq&4RATT3HA~&5fUi#z0PX(^~$Wcg8z9d8}C9|
zH#l|7#lqe(3T5lu#*|G(<FDY0i2(?jBMW=A3YpI5v<V3yybbnZCK7=iC9v#rmNu<i
zo-40(am$6t@|z1K+vy1iHW&(c2hV8-TYO!eHC58%0dp}gd|G^`b1%Vk_c4qtt-^RD
zhNQc02#jVHFkELACaGY16=Il&Mx6ZJPM>usPg-?BHE1Fm>9dZLCDSLqg+1L#$Qz8P
ze9#DRHsfII&x$+B<<2oET7fJ{Y`!kk7wt0+<DtnZB>(|D!2BFV2>R-83a37SK6IMv
ztLtK5hI!G=*YhK&HTLDAmZS@9fPGHO+7;KnAkky29VTx%0?=Q<gL{|>GZiHu?2oZ?
z)I?a}4K1g`j+TLAzUTxk){z8Sm2L%6omAJlW{5GFg}mULrSx=tVn(4nU)_c1h@LvP
zm*VT{wn>IVSF=3i9aIDnGuQr+!40Y%Vcv!uEa!z$?M^;|Tm&3k6h@_fs;ZjtGcC63
zUCZWDgi!F9oV4{}zOZn4O~gZ0=rqe$SA;<V2yHe*^!4Oi8c?k>*25QnCH5w34pXH2
z;&03?qP*HD$ya~X00+_xs*fTPAehV6xYZvuP9|JV+AhkY$g_a2i|bedm0AuHX+cK@
zHz}ApXZv|hqD_50Ny8lJM?c{8OV`j`PM?2Si`oqwV5Sw`$(iFgA_P>Td?Aro8y)Xp
zDXEV1o)5J%>xZ_&H9aeATpu{#(*~vvoGhr%wK7F~;gO_(0@#BEL>B!7_9q?%3qnMe
zHj}eZULdx(xqysiE#Ke@$T2xcW{UGU?~J#v3nWF$G}G^BTEJ|sV)lUq5ISQfAy2#b
zdUu0fA-o*McKGUYc{f<$!x0o1R^<#DTv&pI*3yadT1T%3prvk|v$M{oyf8JNHZwKB
zN+NaBU#2vW2aDfQEMOg>9V3zFxS3;K5}*@BbzK7h-I|kz=MW8e>8i+kyaiC2dNHt!
zi>H(pxh~^};7P&?4*Qn}cK4ouqm^qb`y$6(0NvOd26MoS$hLJ}0Gc4RB~zus2{u{j
zKNP3J&Pu@~<$6cyqN0(`@_&tt074xD)Z_A&zcCmP+}U3nr3mK22T`QKq9OZc=Aw2T
zZb1f0B5o+PK|Y}51z{<oY@=!B^&mv$a2>P*i&Wb=4>wAp67A=m-;ruVS%*h4SHV58
zakP&h*3N=G^|8c(%RO9tJ^LmuM{kEDBg|Eh)1ev6TyN~J;;xxss1y(zoy_c~&lY?5
zx>j|NwjGR5ys*0?I9g9Rx@NOebOMIsFhn%v*Wi;&pna?!hXu4rq*?(<B`qYKhae(J
zn`kgz9{^M~P$_ApR3d1O?A&#f5r4a6pUjd7CwNsGyXA0v%FvWGl*Mwe5tI+7)vR%t
zSWGpT;N(YyewzPf7AB;kat1e$k!L1mTJ&_^5J`eznySpg0uoryhyErhLyAhlQ8O!i
z7Lo^}4U79MMYLkD1VJLr1n-A7`2-NP&O7je9-uue=5QgeTr5Y9@M1SfVBq$_6$hK)
z)4~CfAHT4JnfIsys%`h$$5~oe<JJ3@e4Bi|Gb=r#AzpP7WPDkQeUuww#rjNd!Rg?d
zbW#N1vwT4zWoDIph=@-Nucun(4)2kl;-)!720Sb8NX=|`ovG55F=C*=f+9Lp3@DZw
zioBQ`BwS^AxJg2fbcp&K`9^E&P!k5j#prGVjJQmJrwMuy^ugxz8D7MFmxn!)9R(_&
zDp=V+-O~_PF<t9;C>l$ih?ZxJ=v#*zV4|)?A%Og!Ly*?JMWWrz$5Ig8mzhFKg0o)S
z=%bdk8g<fWz|a(R9CW@}NS?MK+FL4VnN%8LN<=Xt*yp6B)oC1|&2~3_9L47gh567r
zotoHPRRVwNFqxt`8;1y;%-n(E)pRcxGkvtbr=4w}B=#h}zEsK72J3v#SeUxa!}}ev
z{F%3{!!8Y`4vM5h44>KNzyI}jU;p&wgYTbeo_QI`K8nKw4lW$wfS)#mWv5VquL(dN
zyMqoW7x~{VFD1{OA9}s($#&)n8<!`QbL=wC(!1?^7nQ>5UdF(<<9>*(VavW>t^eCl
z%_FsudYvyG24<uPfAR}2uJ?SGdp^B*jr%}7G_26F;W2ebhpZ1dzc1p6N2OMS?e>SS
z-+le^O(3Ic)6~T9i^;JK<d)SW8Oi{EpB7&)N^v1}35h!WA4tBurYL`ufNCZ6sSdU(
z0$j(!ouSY~w_ikuLjlOB&O-^xdMMdoMlxL+<+K52awvP3WH)Lu+rL>>r>~@FCdw!{
zD0|QrfqaVFV6K#m7#a%6w>8<9p3c$TMyWKH&a&W0>zyfBL9dDkgjCq2=uLxzrej>H
zoEg*`3an7hI}3JE<D&ddWfnaY`m)d}4?vY2rnu${Xaew+G0kBf4cF)ba+ca7cXFwO
zhp{8m+7-YMGSy+HSb_wE2Ey3?;Lyxacm&&Pb!}ExElO5Cr46Kxn8iPDD;NQ4kN1x@
zsm58{YG37y+PcpQjfQ{zHpEIuM#AcNA#o~Pf`s`o+iYatZ8*8(14Hf5=m{SSwTfG5
z<Bsfz3opPgT^$@dw(bJ2g>U&OIp*8zhyDJ_UhK!5)DNk*BiVzFj5(}|+#Tn7&{c5P
zv0A!}NqJU512hP;Y{Fm>sOR5(^n%zAMV1MU0$M@NM}?nz$w|U`xJL|4dhG1*e#PnO
z%CaQf&dF>{B_HBmqyf}`5*x)sKvex0P`hbb$&sj^wat|u`f|bw^-4-7aU10VwhEF3
z@vC@#{0>}0*W>;^E!z$jbxsIRapz=x%TgE6lG&NPE0*I-Bb0fco()Mh<A($MTq<W#
zUrqgXso;lW6aPIqZdQSVn9!JepMFsw?pO7{Kja>7y%|PbD_O_I6hxL}on?LdE=^}B
zVoQ(%x1f`Z4-?fV=HP=>)rmB6!MRI(mF^ZoavkgNIexWW$cRs|wwGD<Ez_(`w0nkc
z?GU1nSh9_(UO>Dh<@agf(9gen{_SsXA0qRmL(|9GI)Kc_vTiD@8g$LN5KfURFu)=?
zn3_Ui=_=dCsED`I%W@Y&n3RSJzT>dj({PO79BbjQb&74e>X{Im%)UiAO;+5PHap9*
zYJ9QP1T0okf{E;Ew7W=di{=*I4VFLOVqN)g+5$!{8mM87J_$x-Nkx5BI%~Y9uoY|u
z<-_9i<-u)BGc_*{BOaTd`^NKmc?n5+l(X{u?RQ{W@BjG2K5@tn$QbS;kpe7*k1Ktk
z*%`L}vXg7ehKM~47Bp7@ZDuA`kkr(i3QYdbDejl5A<QfEMV%AnCw|D!BI-mj^X$Ww
z@l*+HIFJ@fajEt&g#hMmS_B_kjMT2idRRdXM5HnVlILcJzP995UX+Vly{zWgFFzY!
zGFOlsik^g8NTSON4S-W8QoIG!9_*2Z#w7QoQV&fS2z;v>!B7vHY#F=U;;L?kg|>49
zz%+C$rp4krtm*XqAAj@FSx0*QCo%3*ixTQo+4i&6+h#Z{CmXg{YqFLN6+0W-u%G56
z>)ka9jOkU1@FC3N>wK7((?uEmS@xePR`-e%q9Ggn+T=7YC>93Z6JojO)oTdiK-hop
zWhiC+tZNGPxuHrQT0pCPru1A(>ycDjkrj)K_Oz>#FQjznB?gpDGp!>=eQa=uJCtxr
zFAU<fHY&_8udU%3UOHtI`I<4fx8MBW8{?7&#AmCDov9o`D)^ojvU-azvr757XmQqA
z^GkreaYZwav1kfLj@}}#5?*pd720!%ReNPVE23@7GU&mM#YaHfqH1wGUtN=|;Z)8;
z+U0_fBGJEv1R4jB;Jm@T=o)0>0DvE(-R$M2Vb0oyWv?yphn}sM9UKFlzAF}umY6HV
zuA;9~IiKfQ_ajHrhS_tmEYz#V3T3J#=t%%v$o+fFcyfLZ>8_o^wos*FRwA3}o@7@Q
zX~__JE~RDLMcJ5E&PZ0`b67OF%y<a0NO?c;)6Syg0AIFgPFkqQfB$?mEeG?bTN6@t
z+AaG{gkD>ITp)B<5M&BI&M0Nk#@sTy0eTuhN9*AdX!;Il!2Ry%v{7Xa8J}r_*o>TA
zgE8;wvkb)r&?dJhE3Ey{UUqsnRdW+<Y+V#EeQ2V_n@;k>8u%D!<-=ZEv^qeI+m%SA
zu%OYG%_69w&68HA;^t+o(7Vn|n$899g*J4u2x5Z3c7(D551`_{RY}-0nA&V8y-4`}
z<2Wkf2XChPCN}82_SY@%$Ieqf;ol?;`#s}Dk1zd|d>7>dvOId>+i&xA=esE1g?uxc
za$UL}y0mX|^)r{Nc;C3Q^i73*o2~zYKJ1<lKmWrYfBP{q!_Vb5ao`ja-H%|7-6njH
zcNTEUz7zN<Z6<4c%(8jH8$Iw;Zl}yDn<D0^3gglV0h;Va-2v@Ha&=o_3H1Sm1iX62
zdc-qcRSfskO}$ArTW8a;5h#tN9fM=Abv4mcWj(DnU|)WIBx4<CAiXLwDcd5<=O~`i
zWIs*nm5s`IrpC3?#?sb`;&$XW?^X_gyG4rgl%Z2RgJYgeY>0r^^+;xy<W}#=z44YZ
zf=D3EJ)lkJf~;eu)+6m2va7*V7b&b!W8$IuWuQRu?^_e&-ms?Qs_i%}sUbD}a+zat
zvKhjPeo!vMZRdP$R8nz85V9$)bcm=%NT33%yPSCD1>cLkPM;<nlIaV`qRQ8Rdf^h|
zVOZB?R?X{9I-aLe-t(AYHpcSaeYb0lLZLie8cPc{W7a#ooJfblAm$UQ1<OxIMLf`m
zberl5C<`5UWei`KUwEYP_LQ*0Czg4cBXyyJJJp0E!!#&$bwADS6k-ha5{A<V%omzB
ze4*y{<*aN?Pab7@wy*+!$|^nER+Y;R6I1ijc1|bQQsZqiL<T9KV57#WgNQw4P{?xo
z4J~hgG|yolN#KG2HNfJ=1)&JF7#-;gr3v3@mVG(Za`t5G+c@oqG)fULkV$Q5;;*RW
z%$`~TNPrP&rgdFp?=I)KM{TYfc!=0HrhED^l+@yZEz!Q8hL3xr*u9rx%cNyyyqnBl
zCdE8bXGx?8oZGgFg#*>MWao5-z#x~NXeN;oMuG$~r}ya60OKMUU<27TsVl#N9|aW>
zPsFye9|ajPo6Z1!eNnc!3puG)-vjOjaBVE<sX=e@u7+d*l77%Yjjp|lS`}Z%sUVbA
zl>wM$pQ%X+p-wM)8b5NHn4zniu0aqJW(&bI5>ajMo^w1d-kwB0P`D6M7%fWDC;|`t
zWbC!G|7v^nr5ZP~Z2f6o*7_BB1~ARyGN`qv@LRC%s(EKNQo1G*kX?&n((0yZB>K-&
z8{n-yEt50KZgv^ddmE^7b3{rE%^+KFevatv#0@!zU^~yAs|i$LcN3bGfCL0>>k-j#
zaWnpYr;7r(oa;n-Y6{_(&%gZ&)ttvWK3#cEQpdNI^gbq0UMq(x2<7vVHZHI7)OjVH
zb(xF@f?7Z>UmRX#m{h*;gm>@$HlA^xe?KAggPxjdD4L>~I93%L2{1;Ym8f1t?zz^t
z%Z1A;ZyqV-{t3A9&ps+|A35uVtnWYS&74v$PoejBzY2aK?^z#X%NHKKwlXUgr<KcV
zZ~oaXT=*Fb{4d}A{QC31e30w3p9%OiiZF<FAZ7y03rJIKOj0J)Jy5p!=a{ogCJIi&
zj6I{v278WCTq5BF%x^JN!E!kTj(Rvq<Svz?l6jT<eCyG{vE*oH2l1)68|m!hP698G
z9d=u@X8{K@*~CclhNHt<Nwlu4&{^&ld%t`zTHMT4t4X0%!9K=^Ju-Gm&-PHB#11K<
zo$T_L3OX)Ov<yX347ekHYPEL*IiQh(TOmJC{B<2RshpP^FE<sV|B3$~j~0%m#wTYh
zuK7aEj2=XxPiDyzIB91u;A-u5H^Xe^VWJ7AkKZmLNfxl2FS^1`q&?|W#_<?0p4nlj
zYFuD;ii@LtIQW<!++V%SFZFKMGqMDyxM-#dz23f1O8ENy@%yhoyMF!U2ma9r;vc1<
zSd^)vz<fl@L^HwYL`pR5o|Lp)ZG6sIu^j^}+3_jCG$-=irx^3R{RB4o`BLc!BQbx{
zE;~!gXcj56lg}{?g@W{L*S|Jo2$uK|5jGdU3xtrIl}&-(fg1GukYG%-u!c{FWHMj(
z@d;zv_?!tlsEbQR(@MGs^I>YfoPjZAFdaYj#(!6qto^dj+fS!~=}?qJX7rWmISZkm
zk8z~gbu3K?xA}=beU9w_9f<Lf4nyON_$k!P<CG$~1KGn{{<4w(Y8&f{CcJ9eRMWfS
z-8x&U_iGC>A)=%xThxl($%pJA3c^?A_@o@4^dSQkK9<dM75>u`iEdx<xAMXJ#hnTH
z6507*b$!^MQbbrHTz{CKtmk^dyZK3ke)LyQx$pBEJ^8!Oc;S!y(g^+MZ(8v)x1#3P
z1V_hQ*m&vkCla{tPeEj1v!C!WpDBzq?<%pZk(}{evs3NTxz0A_{Sb#(D!-j?3*X=!
z9J>TQ87ht{tE;N{VP8!>u3!K7-G{v*_8~c9l(a0eipHUk>j8C3CVFg_gfdhrm)ad6
zDvX&tSj%H&eStof9}p0zIx_l>3>2;COoNN8bN4v5Aw?C!b;qb57X6kUy`sd?Md@H6
z3hh#>2*;Sy`THdzgbw*As9PxBRG!a=%-(A}e+`z7v?AuEAoU7Np|EyJV)1kcI0$u=
zx?#T(N<2N#>=fI<0=;Jkf$Ci*sio%ii(B3EO<|hOUzfjo$Ewg#UzPI}TyQ8bS4KS9
zC84Sk7LS_NjgE(8u`OWVkrw(2ZnnZLjV{8hMe){Z0TK3+tXncv6ecF~og9QZ{2~g2
zlo9*+lcO1UC1QNE0n+52&Y!xsol%jdu{?qW8)(XqIaQg~m!Tsv*n>qgL?(Su*pwvY
z(x5}E?ekh4kjA^tCtU}JJ|VBtq!!X59Y{S0T2;j29;r3$>HG!dQp7+-J+(*xm*h_=
zCGER=^ABb)77cdD&!ob%JKBOWH57+ZuR6i*(GdrVbWmsM*u_Nad371Vh*)azOrtQ-
z5M!Y((KZcsB}>k-$QpU9uACz?Z)0Df;NtmfjQM$#vxX9NU~VmK=S#GTQEW!cDfwMb
zL8aPXLzK2#sL3G67hy!@;lO;r{bJ`V)xX@!)Hv#ct#&Cd)GpHI)5&6=E%89Z22QcO
zgGo4HLhfpqyrttF43j-tg4f1-nAp^NU$$hsJu4PFX)ERYRng2(4!$+I7;ahaZS&r@
z_j#iDNHsX4X4Afls@q5TJJ1wyD1r`id#nqMPn>`2>z><ME`R>}4~)-Ime82kyPsMm
z-gPbnH22k;cWu_t&lqku$O0Bqn#~qnqRc=)RV)y%11n2Nlt)<>eoAfNM!{x0pP-`5
zrJOaOH}?s9dw=?)Zz}#2plKNR{1|hD?ucZ?b<BL@>+XN5U`Bt=jYxZ|+IhnY;ZsCv
zP~0{wv=1`JO|7Aro;I~c9oeYjpMv2NU_iZMb`lX({LmQxQ)3>}=&SkPmiFnbw9mOG
zVw~rw2*epRkM=1Ih2(zUpG7SE^^ae^|8O`>2VS+mJ!R^cZV?aD;KOP2_TjYonZ?sz
z{oT29BPa*T5NIGSj+_EGOT&k^xg&H+vz~i^ts%zAKCidD>%m12USmvf<wD%IL6KoO
zORs0Bnjv|b4JkeGq75c@yXF0lD+*cF$nngv&RV;@k!gX%4afZPAD1`DInSi8-+d&K
zVlSfiOGRjg)Npx7ZV*{l#HVc2{qddyPAD2h4>3As7HgYW!V+%Rd0=-2;Lk=L?ere~
z0=lM9<d|nAEPg_x!~w@T&r^55<kVhbNb<H%^gaBVov+=8FF*hN*N<rQ-R@pQ+@-xp
zsQNjFcF9Fv4w3UB?E^8m|D=ucRS`caKZKl7IF#fQ|J>mk_6(==HN@G%j?=%2BerX>
z@*mg7ymL^NJHZz`&>Zl8V5nJRr9|KRexm4m1pSFn{f_9-PE&EjW-pVI$n83;eR=-v
z?GLPhA3E)@+~RkomK2i0o^KqmI<W->)3c6gI9Lo7j8^<gURfYGLAE1w$uKz;EOu88
zc%e2%m1c%MeTrkyT*uXmU4vMaLIpHQ@f6tV`(Z6S(Kt5wVWIEfYOu3gu?%{L7ZF4N
zF0bk3s7S&p${}Ls?UEBJV-(}h{;5wzoyC${eyQAHT29hVKbB}{%lgX7I(lc1_DtJ>
zz~9;rr7vH7P9bUzV!(HM{{)-FM;F5-=3O4T5iOzrYNP(cZK+o1u<B$3`h|su%Cs|y
zkvA)2K!SOe4w=41lwF)ehF?}#YRd>&Y#QIlgAKj_8K_j^E!9m*(rQIHWT-0b7m06G
zX61J!1D&vw7(Ul}mT5y9GR}r98ul|A@Uw2IQlgB)=?DQl#lyQaWF&CNl8Tx$3i?=A
zS+y3&Gf?{g);+O#)(mydLX1GIn`;f#lA470Q8_^i)QjHTBODhJB~q=GkKT+&hw5SU
z?98;U08<M6dfqQl6*bVdovC5>%`-Ru!J=eAm8R&=zurF3DAi%2(E=qhELwI0>ygJ8
ztX*EPMR*-SYA~1{lj$M$r-(x9qx{xfcCBW6xzcS}Uto#xRIzJ&Ouh2i{xaIUzvdc1
z1Dx90<#2n-qh4DC7QH`(k*_f@3<*5VFP$^V6?$As5}~~)JV<+-g$4qINTE0rNh4hQ
zu9?+ek&Rrzj#eeR$*(c)&^j5$IL5&*aM9<K>bo5vL0~0E%+L64d+E@<PkQm9lFDm>
zLaUDwiUxl(yAmL=u_&Cqu%E5)B)5UH0Yp!Dg@kTVL-74?es-OUWa{}n_q&_Gs2Wu}
zNGi6k<+M=5#jh(Jk%k7D$h7TzB$9vT_XFOSw$d{{KS^BHli6sdNn#q5W9QrI*p&T!
zuG>GVTnkbArtX~ISDwPX@*js`quPS_tZ~2eVJ}v~fih%_F$Wa49Iq*1bn|(pGi!%}
zr_}(~U0f2$TWF1uZCytE{sGpN_!G(FlIpovJxQW{;u8$GL($;?m6rAZzKoSNyL#Mc
zQeHnUe)adi#HX$2553AiiItF_SR9=d`xoO*$f|EbDG$*DL1NPqt?6cU1ElQ^fASay
z0aFKW9d=bKE_t{ul_*MB@sZ`U__CsdY&NMv(>!Yl?8gtiuqCdLfR70t!_Es>))*kU
zA_-bhfVWJLW!f*qKt!Ea>UYI2BR3W3*O&FW>a$DWLZL46GM~$+SWgv}UgyI@LNl7C
zmUQ3eONmkjjTvW@EZ<+y)ne)70gwIn>g?WYE1<BOBJN3cY34&gTF|3V>~LN|fdQ}J
zUwzkE`wkA8XX$^woG-5@MDpS9QFAN02aT#ST+R#^ulfiWeOCo8-#QPD(XgHG3{!u9
z51^BPk3+VIEUKg@tYnd}T=D~0Q~#ms;xGt41ym;}dAARHedW*wP6UHi;%o_5-5^Ec
zrFw_b<o<%cGFkG7_PGS1s3aHQh#IpnC0LEm^pJItoeGr#tToVdqek<b*z~B;&ViR!
z!x_pO<6+CRo#+g)g+6w(E}nuDg?D!Dt#%A9%T@PG^2=gt?k^kN+JFL&?zqR&EcqIM
z0Sd_yQnwf=$X!F^Mh$XRTSPh?yU?asV$DS<7Ihx`790`P`Wo>qms54~PdTn~!tz|t
z!1*B`*-k??gt`|HkrdQ~?n7V#L|I_UJki|}D3Zc=7XeMB@Lh`G4k_=jwhEupePisk
zVp#RbLmtQ;UkkVVD(rl*Dj1N01oKrhQ<IA~5wy5Ri)*?%D3Il5j<zDqg!FN!bUx~u
z10KP+?w$Lr|21)tK&8oer6n!s?pQIYNl6LlN8<p1)3PABv*^`SSlsBmm*Qbn2aCyQ
zAs_Qd%KwiR7f$T_?9dLyv#NJ`PGwhMT@Kpg<)Nsr$%k`4nOENJj~V(Gg<=5;02!5a
zuK+k_1##4jb^FhEthCH=`p-B?_1SL$g24~gsmaQHA$J5Q>oHYvrz+RvwLxeT&Q~1L
zQ4CjA?m|7gaK``gungVNp$1_mZJ1l6T7~m(^{ilX1*U_~p|G3z!^(ulaorn`eH$$2
z*z{}7`x98=YW@>oy?wsErheUBzSa`3js7{Zm0&c4?%VJnV79qbXw^%OYg(ojRO1Oz
z-K(b={_7+TT9fJh_8WuZ>Kve-+oc;w#mme2QlHQ!Z@ut(*?O({mi+YU{6t#(d%ECC
zEq?KlE{M{li~CUU+Y>e)(eNpZXt;iyM2@rfVO)6sVdOrH?SjyD;+_YN+5ZjhQT`=m
zH7*Kqi>?g}X8`PM`iPF)u$0z!8uwVrE+&#^GT`^(;6Lf>$1{dD9RgR^n`;<rv35*P
zhwV7AUT-hwTeW)J|0p-Kh3nP<GS1YCafX@#F<VQ)lMp6jPzu_UD2wl5uk067co!bh
zBpJ>@_+>rj0*D_=N2kAFc%XiGccXhQ=Opcb00o_P0-c)uhKtK`n^=DfTM3+N&8&Q4
zz}<*t+?UY+2AJ#>q%{=p#y{wI_<sBcfYjaNe}W4LdK>fT&(i#@gY;y*dz-d()vV>`
zT`V&B!(-eW4smTB2tG1BMX3r`a@s(`mEL1w+C*L^3?&4Z_BykXh%(85^51@S`xyE+
zeP@lQh=zYhQQ1clA!N74U7^Ton_H+5kjoo;+eC<*s?&_DExzt?!PczURxBl%od6q{
z9@4?^nzd{)it)2kvNYk3KuTM1(zQH=JXk+GT=#H@MKK>L)rb+ycf6C5E2j%b!n4yq
zMoR3B#FZKQ8bcCEWWU7u!gJtUY*EA*wllO$Hffxl2px-^3VpWINC3t}_x(i-n5d0*
z>5uC^Up=M9x<Sh}Gq9^<<W7a%BQbm!(+a^lY4s<7`?-Uf*xG|NbNCZ?tl~}>nY-Rj
z{hx61iXP+6q#j3DT9=M}wbTXsIRr9BXh#rdNMCd5PEpPsYNDhyqO1>k?|O2gudpHx
z$Iy{xpRJ^vPb#N2Ux>2Zc4X`=!mNWv5O1q*g>C?tn!L6Zr=ml(nF{4QssX#4O3k1T
zQY?-V6VNt@W1C(zh|ZJve2IBcgCG^~uyN9j`qtKrOws4FEOuBzrdK7CcdA4UUC*}F
zh)$JZDpMTh;D9t0<u0o|*cL>r;1yT0I|WE-j}^R)jTt6iaSCk>dziFOM}tLJ1rS!S
zEm8fNqENp{Vx9~1`Fo5_3e<Ckm#@GJT{fp+?1~n*_g(I14A?Kf{mlo1=k#6HveHqs
zB9abDi1}sSYQ`41Z%6{dfQ8pzQ+x<@f88*?dzz`2(lEz7gUd(63NJNJN~ThTu1{fr
zIG92{%;YPdktM}>^UD~~fl1{be*bM@bmZ2>9eLl8BH?LwjOfAA`)0r77^_M?<nf3S
z&yL;pc$Bv#on_I&)$>w`Qj?;KdD*fQ*K<+e&XcjyH8`>kWzsuZs}0qgPOA>X$GN|+
zsHv}@qZsntf!8b-wrBs`L56McZ8}W^Qr7)t>kaZ^_#{gG%e<v%GJCT$RZ&e)kxS<u
zafNA7v-~EJkTG7l4qI-N!>a6*oq-del3+qR+PR%Z+ah*bj)bDBMC0iwR%mpyKBP@>
zmctx&4+k_*N@j_NcnFZfn%K;B`s=kJJ8IkRFr+7+DtjYimAo&P4-p7!m23>%K|gd<
z%FH2}S$9KA<;$qeT$V161w+I%8%A5Cwc>`AC0uf#^P;_=@_Yb-ZkdcC>jUX(b1`5&
z6H7J{ZKvHVNR`lS&gh8&aWGoQcf`<$EFPA35WJtwB;ujN%P?wqlm=84r;rqQm*|!T
zqmzSds;_4AJffRLv=UiMlPhYm00vg-gkW~`APUFl3}<0B3Y#z)8TF;VPJC@H1=X_)
zIM`aF&_a10c7AzZmW7=6NEuVx+C6w`PDp4n|M3sM|Nal(fBhnDxBc%XwKO7n=bN9z
zXs!zi-{@+wku%n|sMB~PMa8ohB^uT8hPIlX7?p}_xx`SZD<?Q(_EL{Fo9`}Rcyg9)
zBuk8%%E9j2duy}JRWlnaKnn46la$qLoP<y$6cO4PSW?OWJLOJA)K~-y4N=f*3$=5r
zqDG{QYGx!aw%k8cM3#_M_Rrj7^5)YR1zTH0iOM-tQGqb#GAJc?PYfq&0yMUHY<^)B
zk5M963PB};JB({&0hq+aZb3jX^DuV*zhUjb6YeX?{rs=o+~Wk!4v#ec&y+Jo5ApxA
zW3lG{&yJ;3|1UfCn<&Y3RjeW#s5NUj3>-EWTm<;ohe?`DX4t&v?I%N9Kxc6-_SCa=
zo@kG7cySfNTdfRI1J+LF&0|;M<~5;;jA8M#j{Vo~zI^@l_4#)D^8K&B|KRl`R-aMv
zp|oN!i#(y_m1nZm9=oibuIwQ;L*huJ%MlyTx=D#*^9_X?<f1c{PrA?;mgn;sm-^T_
zz$7t%x{tL5(VeLhO35xt1#r3COHt)2>MHV`%Pc0J0dS$XsC(!oV~`@LWgTc+Bl=c`
z>67fETJxS;wDGLn!=`?H1uInQMr!l3Gj*sMbQ|2vzRJ0%3px=260w3hm6uDg&F{WU
zDBEWxOGoXnp6*C)dc{*GxFSVr;<<HyJCl0u^vyr!TPL`}bgb37of=uHfNpua+_-Fh
zL5d59Mg}5w`^NH%d{e>$@9(pCA%BN#+wFIMeE$8<KQcyQ%_jUs?BiSPqxu*+Y$%X%
zw+fk3na0Ps-Jfh+l)5RYH%@UuM{L4!e@!Lw<?`>K9XqpOKVX>8WB34F?>4=A>a!}p
zSr7fq3nlr3`9SY3dM8^Nz&g|&*&kZXsP8s33QFBbnc7r}XGk1bGswRA>3O;7N<q;n
z2Y3w)>=`>mXFjcro6SE#Evhi7bOv|d%8=mdro_er-w%CbjTh0b;$i0%2OdBNi71z8
zxlIHeQ7|n5)e2@Feb}bBt8EOq91=^?0)@KfvSp|pE<S$vvh%F?$dS3!D_O`qj#Y-4
ze$5w`LJQAQqGQ#bc&Rc}nJ*!2YLVA@#s|15g8!ZTwjx%tZ7&{9J^rZ~yRYAEzyJAf
z|M;`(_s0)D8aResODSzzZZr=TG&#|mx7cl)W`Ei+KQolP^+DUPCvrF)j--J9SXh2?
zG-hw9V=k5O67Vyk6KS!_Xn{Z;{tCI1s**eUVuS1`M+Z%Mc!TT);~Cove6A~B*%k0^
z@VpU^M#c$(%bs){U}G}_8042T?BN(<LC#?mb;sQLGibyt5-+#a9Y{tE-V|+fRRT*J
zkBfzG`&OCe;vj@B7kWk>EHIX51>QHBkpvU~TGbATOgR7|yurJk{gfuT5-u=+_XfC|
zJp2y45eu9df4PQNLflD{Tit*+XD7#Wi9|M`&Bab!L$F_F^E->>$Gf9Hbsem7*z$RV
z<qaS#Guf%3B>DU=v@J=QI&~UeBZXGEUhD-`X}N!57<^wY7G-{;2<=s|7vxM>q)D#!
z^m;l>bp!`ZW~TOTSNF6C;40>-V}o`t2trgGWB_u7D50utMSX2aK8BM+?orWvPhmpK
ztR4;WWr`&l7=@y{t0Ds!0Y`#pX}lo-POvKEOf`vH7>tCDV1vam01j4Y8Ufm?5deG|
z0EfJw5Z-r3=SX${Q5<2`5fEjdk|hszEGa76`2^zt71bO!hS-vf9~C4zmxpVx4IGnD
z+!Y7fpb~ooDb&=d6QHI7;2j7f(jDzJz4DRxP$P<B%(8BToTSPcbghcrr9#BMpsA`k
zJ6>*RfUa2!gn?%`DnpEyQQ<+PdT|EoVqGRwDgjnAL>pyF^Kig);lU7Y(`eu&cU4)=
zlPPBmW``O&=rVXk`@t$n81x%_gO;qopwUZ=6zLU%PqWLs2p<`cY|)Qom)d$9|5)De
zlVc3w_Pf)L<miV*@rE2<!jS?;)EWeA_^MNK8JL<CzHg>7_`aCoJ7gRJ-OW%Zv0y|d
zR)xflxNG$?W}6o(rM+@comLE^q<P*MTy(VQqW~x4t~ApsIXM^<Wx;P?p#f4WfK()S
z2Q?K?M~t(fNDulDQ50(<1+W?cJ*|Zi_)=6RJ1&6j9=e3z%<*;@%OKHGvNx)n7(Ry<
zR%9S^(lDgS)L}vyNJ$8T8%-L(7r8suVBYO<7}N?%XO+3zKfe{98Iz_-N0O0|MwNIY
zidHh1`9=L>DIVU|K)I|wY8<717adZjJ0bvu0z$TUlCt@d^adA)S{EcyLKH&*dj@BO
zq?~P->6yHC6)CdH(YLc+_d-(p;%rR-=9$rBhR>^N4B&H(ywied79BzjUaITfVyZ&!
zNf9SH$dLhBW&M^^ZiR}pBOgAhimS-jX`3{MvTH|#Ea8cQOY>pu#yg&Xk3&m!0lH}z
zOi}0~?xwv`!)Y>^!5+p3VUa9*B`c`Rr<s~qved1_SFKrIjm@D(fME@ErD#F}$tKb-
z(J0|=)c!9zvE&U3z)t8D1Ov?)a%**?m)Z<HMPhfvJ;!?xqmM;cSmKw%4s)u)N1MJE
z@lb-6y8#ZjMB4maysUaX5gZA0OV6{`nH&tNsK|HH+G|)Qq9bL}5kf=QMaQeE*lFOf
z=b56pXw=Fq&)ow(q)=|J_iQ%|6d!h-R~@XQ$e?C;>0%^=>1D+OF6JLQa!ONa(k+m*
z(vc3gtQCP&5)o6GCuEjzv#!AQgK6%-A6{J;r>!t2iyB(gSFJa3XgiGBDAIyK9U><*
z^W>`p24`XV%8C_;?lgNVS<AHIqILUZja1$=298$cjW^A1XxN1piDm%>O+;E3+-d4-
zfL}W)i-ETJ=tvPonq32A?X>=o<V4hI>{{Erw(}IAc5O|9Cjys6@eS6$0uaG_2CuSJ
zd-`|~QeT0At0fvh#VW|6h)h<AjuZt|WhAe;te8&xzC^px9}Yew)tW(nf||s@OTRfW
zVZBn#Vm%j!<j4_}h{7V_kL`t%=4i6axvFfI@Tz>7EpVtCh|U~Rm`fPcp-VJ{E`l<G
znhEr$GdvqqI%tK}S@!4!C9V)Mfms7V;{}&xkBUUKE06{6o8zx&14}E~V)uvGPZq7V
z#`!k$+Lp#%{u@Qnu%Vh*_5c%<kgB4<kQ|tm2i^}y5D}rw9m;WLf=s0=yT~w})+92l
zY!%F`RtyY`Nzv9ovrT`pIIr+r!GzeTrgdeCtw?5Usdj`kjCgSGR&do(97aQAulF@J
zq(tkgn;Pm0yul|$<dvs$k7R}ru4HB&=<Ff{Pdaj#K!yBv<9a_8auZawTB>-m$uUbQ
zI75Y-*y=!9k&hiiuTy4R-ps|Z^g5cn^mN<qqz)EU0AG2}I0$@F4=hQ&Z}2UMU2f|C
zh>TlPgb-<eE(DEi{Z&}3-BQ1Og6j@FJgRD7c6t*})@MeWNFCu|C!FVGSM*(0gdQ@3
zjM*ocC|RZmFPh<iLIKpRwBYXLOwlZai7~-(Kw*Mu!4fAb#>NgDmSh^>0DM}`ljCb8
z>I4ox^~T0C&YKR&>?Of#5}k+7CJN}p)h;1j<na*Am^G4>r|gaHw}>rXvM_-^>R4c=
ziixLzqmrUPlU`F+1i@MXNDw6oWtG^+gQV2eo@x}sNSrd^+3rY2%rr7H%VBsIYcM1H
zQVo&H16WJx5!4sr(-0C&d+wh04j04%LYsIp6MTsz5(?8W*s=81%=6BseNll%8Nz*a
zEz`W_AO>_PM4?X8AxVP_I82=yq+L{1QIiuuC$9q#yLC{9rpLSkHtQ97CHG+qRV$zE
zv)2C1*Q%dWJt=lwP=IPqYSZ@oo6p-xRk6-!PswBkrk#FiDanon>(#3BB@<i)54*F1
zng)oJA61r@iX;}fM3b(1k1M{k2mv2}2P$#cVs`1Kltb&7;KU$kVkVXgvq`GAbHEY2
zjSWpI;j;rsLmhcBX<Dlj0D%-u>YV3%rPB#L0+Dk7lyL+lpq`m{W->V(la>c<at;v{
z6b$XuJ1Xqs@_xyeWEHK&Gw1_Hz%rrCwxb1QwIf9nyepJc?sTU43+Nd>6BSFvgQ)<O
zS(_x*5TJS#Bf#YuORu-O#@3kUg<fz__rlxtgJwg_SK7e^a##%n@{o$m%_ho^i(VAE
z#9{{R=aBH!$9Y*=06xc?>*E2@#t+(47_$d*Qe^AQu7yW)IWsHG6xk~eAY9jpt?M3w
zw`j+MTH93gWOj%P(2tn7|FW=g7B=QfO|jA53X2~L<Hc}c%@5R&{tpVPXJM6ZG%9@4
z*XG^f&HzV7L+4YUdJ-ATqs=-%rFA^&*{G4V?pMIj^#Y{;u_w(jRNz@tM5Qs@15ED@
zO3o4Vthj<=c_9F2O>o^V1{XUu8$sA*2uTXQi^rP9^@Yb_uCH1F&Kb!YnQHzUZ)dVx
z$xejfS2@ADE21Q&rX}G`FJMK)U9dAng8?(O8v}1oegCgIHfAOW;@++!*PtPlN~LmS
z?McoFRwsr6{v)Zw$Sna1guFUrnW)?A3bcVih1QuC&Cr8vO1E>)(pg>XjitwC;|s4*
znT3GaqHDCD48VlQ;>Mw;Vk%b_xxBcQ%smiuT11e=nL3lcxeMxH@1tc1Kv70G@#FMZ
zd$3oSEXKp`%o5p%v6nbr3ICni&QxtS@eZs3kq=t7h=#n0nxtwHHVgHzy-40lQNk%7
z;l&&6>4IH2Q?SiqU6qfvP#FP1afuaW28@Vx?zPnzN>YpJGB^}@tA4Es&v)rXoZPop
z=}^Ta>KMZwS&L5g+96CZs|-^?VD2uKh4#s!!5feTVQb-T(iR%D=giQO%Q|0J)t2O>
zyev>l_J&hjb0~!O^=7XHT6oW*JP=HrPEjU0|7jvg!+T@ck}Du6VCXCWlkcuutbyXZ
zq#9$EV+J*Z;^j?;?q49R!bso@U}0T&e70d=i^DJy?jkXh*T%-W1NSTj7b`IwY*w1F
zDBO1!x0Q8H!YqV1VNThC^DGxFNh^3`PzYLpwoN{9W?#ufnic<>2sG3Jh!P#sEE4eB
zEz|Ca4mkICre8eb@4+J{$m~24>PV|X`<zxd%~(jQtl#jb)o8e1yKzD`<B2O%h$iEH
z_GCUW`SVS7ta>43x5UneOGzh`aBcB~Mga~SMI4OwJu#u#nf`)xEA~@ca9Ki+A^Mob
z6+uZY8n|>3-2^6uW%ZV3m;=kgZL^HjUNVc37jtGj-Z7d4FSI!Y#MJCknZ?vty-@_w
zvWNs{vT6Z<z4{y!=e$Y?B1*8fzj{C6LFTl$8Eoy)IxTGZ8I2n-=F+7uau8=}<Py|L
zyuA-@b5VW-yFB4tDGf~@ePDBD)9Ans@tw2(q3^U}Oaj33f6XJG#}aQ_nAxfdUF>S(
zB@0T~q}Z%kIoh0+(AT<;Y>tmDaOlxg$42o2?u%qgT5G{bQlfRL$Zi&KfMsm#1vD(`
zo&*D-j+bv&HkIo1rj`;@MYSxWtZgG(hq|*duIJabRLz-NmD<I*CbLIiJ@1+*Qx$wR
zH3NW^f_0ZNhfZ{B%$#{tq=Nd%^#q8DwQy3Kij;t%-W2Cx8Fp{@#Y%$?YoB((#wI1%
z3(DD)II%&6bb}2%OKT4y2Dj0~(N`g&S1(T>!YXJAh}zCGzSKPWytU~Y?Hu-6(9BW`
zI4w_ChRS-YE2txg&%Gk-@6rmHLFnq%q`uvD(yXM+o6XH4h~&XovXm6ODfF@CW^FJ6
zu9bFTA2z8nnK^C*jri=%vX<eCc4$Po16)hI(Y>))AY;95w%@_EV-~74Usa}tmCZ*>
zLEe$ZtPGXlpO1Lhi~8Wx5A*pAh*>QFWYf}(_vyV;F(09`uLUePm=hkuggSRH2wEl7
zEIwXSAs_`;Rk+gRZ*&nFR4prVTn6cMtuPu^7Sa>IM2X1`@4?<oQf02I>rTQ08LbPG
z*XFKAYyz3;ylw48{{R($mY}U&r^Gzi#Fnaj43_iT!KCn(7--29%tBNBm8;uFuDNN!
zxYim_Qz+M-`Mek+R(R&J83qh`bh8xdge6h*vw^;%@>AI3dODbsEnkxjeDY0?tZ$ma
z4ycmJ9t=8@Dux3Z1vY8Ai>50HwUBJ`2Jh~D84d_ay;CiqvgieVQ<5%87pX+cfVfrF
z_6Y|$gm+l|g;a=E(E%B=yHZOuKrQYBw@T^`D>wl@<2UP+B}?^@+UHi@-@!Kp_;ey|
z6{=DxQ#CJYm6#+-oQ{ab=-D;JykN3q3kJ@vCQK&2h{NfsGdg;Hy~Z+-t3GpBhY!2Y
z%p${LF)+1snnzw(5VxUP)S&k^nsHL=q298ilw~s#78o?0?dY7BY$^;A$mozaeVk51
zC=cd<l9p0Uj_$0M?nT0kQKEZmk?2h&$F_!XWYN*84ueMCk}Tz~-WtP$SAQilUMV!8
zsG4^XVB_lESVTf&qolF~4;7#nubU}~-lhU(!~_S_E~g!Mt2zR;LFh}t)7zmjG0gBc
zo3#u{T$Dl}Nh8R*V%ubm-PQrI8c{YWza%tCYGE?8%H1NoPQkM(@mapB5}Jgdi5F})
z(k<3aG#yT%whkmzi8%S1W4Sd>D(S+tYPi`MvIB8Nc}iMQyco>CFh4O~TD*?=8iVwm
zu`G$&s#T(CCdbQ5JBb-8YD;F0&AdrFTN$PGELIBdwp(j`9Vn<kgBP#Ur2+-TI}_+d
zW&zD~WUPy^XmlJiSIedo)1`eE9u_dz-sdjP%~i-`K{0E%$b6}C5xbwj#Lm=Z$pIId
zcZ+D2NU*X3ouyVd5nQFn&n(JneTZ_|^B%jrnf9@Aqhuh+6@{bNNiBOVX#lvynoTsZ
zT_z{yuXR-FOOe)ibFvt!S$7D>QdvUrtxBeM;$qq~mv73?B4Lo#TTd2*CdHzD#>&f|
zY%-LW#J0;o%g#-W6<mGTNMf(p1JT*5L0f=0!>>*>-gbqBo#rhPTBb$-_v9O}n^o_E
zrMQHCGPW>%>|m=^bULa+!kx0F!Cs1ZiGWKWZ5a&O!R|v_U|zgeUIhbukOIFF)lLOo
zGVNi#z@1qAki})0cET}O*p%c3&!%SJa!?SuBn3iALn@IABhkxSJ*DMVnC~KeP!UGd
zx9Y(St2~nAGq6iMAB@}28UDVqd{s}C>;N@a(|Z$5#oAts3ov?;(~B=G&|+&_ZO&vQ
zljNp??An8Q2_fDR*ErX{*Hvns|DvvFldbk8tJ=)OU`hDzlLA!2SgRuo-4I(BmV^x|
z3~%{W{F+FfHAE?C_42ecBEcX4H9*S01&tILfd~mL^wUCu;(~lWO64vA!gR+0GA$Nr
zTB770wB1ebB~KC8+D+X|4=RlV#oejdVcoMMWa;H1G)?p#hFSo2a5a_0v$V2oAia5Z
z-Zy-P)ff9*J<O(mR?V=F>G)B#xC%>I2km94=>wBjeyWfSEj{*dyFC2v%Wsayuirj~
zHZMPQXmdG7kzmug%aP%52VoEwm0l<gJyFR|^6q!Wjf+Z0t`2Xro>!N6q-Y7}jQPDS
z%MbW{Mc0cj_YS<jT<yE0?oq#L^TmziDcNk_A5wKjtB}n(MQNlo%1)97*~WBiPT5y^
znUI|zms0V`F9KEOejAb)@A6DhrK1Vm72+j1Pgk+=b$0QB{4aj`!Qem5pV-SJ0h~g}
z18n3T#t^XV2v_DwG5AeG-Z*-B$T^>5frdyg%WIUwPm`WvwOsU*cE`728B+DsC`*++
zZaLYb*q_mX6jIlZuzNtB>6s?L0%w{x)cXOtc_kp(lTl0G5uuSGuN=y9UmeD#uN2>!
ztwPf5q6Ij9u$ow~`TF?5YCJb5x=4VsWVPCNhZm|@K7Bf}MyG4F${D~Y7WNY9po*VU
z<S{Vl`;|^_GFMm+*^`-b$Z~c@ScknFg(A<zVSj&u+&rW`K*HfvxMd_GQaCnp;@|c6
z(}~?^jQ}^GJMYTX9em^dmZ!ad_``i6vj-*OY3@n=>Wn^iyP)=Msv@}ql?;uxnZ8yS
z?-Gu*xs-ZyRujI9!~ijAQo8c>5W8bXkexiY&rMN$3#A&jLzRkE*&n(^S(jhS@4o%w
zH`^KYmk7Au`{0tFi^50Oo@of4=U}bM_1GpC^gqN8Y&uMAeKT%dahmA}f(s$JCW!8z
zh2Rt4kRi0_9Z%K~-Ie;%&x<;~(-`j#s+8PbB3oA>qs|*wI}B-lW2X`4Hnz1KT4}zc
zYWk>(5>HnUlh6$=^dr-<&B!)7!ecH|J$?~?dgIT#FY|$X$6mYHp}=g483NWFJdA}k
z>7BIew>r@-F9RX{O)V)54EtIMEQC`&w30=9?C+s9HCC=ujn1EzE)=E<8k5k+spfd5
z)cCeH-qcS^=g?%^(PlbwqeBe~e|G221w@`ht!G!G3ms_tLxFvAD(XxRLBrJKoQ!Bm
zQ>FDN7%^l`UZX)~OMTAVlJT@|6%ai$w!TS*47N8aVlFf{nfC_wVKV6&|EO9BJC*|p
zZPaBU&D$D86=v}eI3y3Su8HS!KqAm(ftuzEv(_mk=Yi&LkX_B#GYyEZ_|siz2lwTl
z$q%FC6TX~uO9TgiLlE>f$gcY|Y+t^hYdkVST_K%V5?9VnrWG7iA+5y(gav{WYYM$8
z-Y}V83FD`<3_^mUDAC$V1lcYmMNSW?lLLq|k*oB|^d9QSf?xN%4t1g0Eelk%VnU^x
z9(hq1=QR!7vHgdHODi^oUrBmGuieG~ll)*sYy@NU?k$^W38))yl;t($6(|D5p2V#H
z`t3wjX0u&$$Wves5{08tIB|=^3}j&<6^AxF&DA{$G>|GFs`h{?mn3zg({-Z}J)*VM
zX<LSSth=K+6-|K7S1W+fpz6!va~J#oGi_^v-$h$&S|ZMWED}+vhL;ReEM%>5D^<-2
z3R<jy!7B@6OfFi#!|Oyd<~T+)u*mi`eef|_S6&hqm4yw}{EJ{n-k{DpT1L3{?gzUs
zqdL@UA3<QSs8WxLT^Sq;bmeK{hpM>nM}#r4F{;Ae!35dqZxE#{x=2Df?n_^QEpvfu
ztC}u*7r1kVv4S<M9ma58{cpx=S~pG0*G_E!14E#BsHZ&iK&Jk6#}E>*oa5Bk0|8oz
z_p|;@W1wN7ZQ^`iza8@01Y&q1aGYk$b+;8|RSANks{;B$ExSm@H9J6$Y6cf&x?EdU
zEw3kQNDTnvpw~<eJ=9FCp$L6f{yOKi^kzLYb0@>3G&wMf;pnX*_a*$h;*5vj!y@AD
z#zmzUiahZz7aUN<f-&EGt`}808?&9E)0P5RX!62kiS#6&lD=5>_fQE6b*%6;4w?g3
zD%5Zk(;Co{gL4!!!><@t?QlSVl4jT8a<%lX<yXuVv0iw_miS7nQMzOiNaC01+Gikz
zKDf8ziCSDGbqgUiORMAAlK|4tw@H(dI&$=+&fvFdM;bH-cB^Wd63<D&Nu$$Fm2~>h
zY{TKXvG4(dR)zKAWNx8;fhD}1ynGp)e!cgb`?4ObYy4oQa4DE5ZXjQAtR5;cR%`he
zj}T@~OYcq?`sIFm1N&pS)+z<5UNi~3Z_wVB^{49&>K-m=V07BNp1^KNt!g%F0w}z9
z7$mF>`YP%`*|TFuVmGA~ZPtu>X{I<3Hm|t<401_KH%GtJlHwzM2*AU^j<(4dhk(?I
zxDY7nmEJ^0W+mg)DPnpuS6qHu11UU%qd!1yg(#iqHniy#lGP)v?DJwCOUT5$f*k1H
z_`BSZFI_BHW4x_-X0Kg{Wpq|-kZS*{!MSW(oB%z7GD%+B8gaYLr&GO70YQch1(lV>
zC0`jvH0h)Wx=*5mwH1r0E-RC7*Ww0YHNURr%JiO9&9zheQpKkVc$$aKV8`N6sX}<{
z(^pVgHqGpGOpsTO{seZH(#2zl`tM%Ic?Uy95ir4)KdcVFpc#o|&np9ltMn{&mWww+
zbNRw#0|Pmwl8Kjl>XS?m>~#&*oJ4SVclgL*I-9D=Gz<=odxJTmWa?Q9r(83Vajda{
zV7;tASc}F_sF(7u`;PXq!mG_u#k~gBrr8}llpzl@$ZHq&3tc>(5XsB7sD@(3kFU*e
zu?E+a3J|(yBE*<|`15Q5iF9sa0<i;}B{MES&hk*nm>4mwvcGso)rdpkCye_NWdI0?
z$bb(}cd2wEme%LsIm@U32~<sDf~Z}{rsSv1<cZ7^azX2rmg#%XVo-L9j)u|9jp_s@
zMssTSaiorRR!B8Hv@H?P!H+~kfG`ZIOCjhRh5U{%Nb@8#62dW5ZD5)&9TddqEQtW<
zuGKX7YnMpRK-KOnF4BP(g~cw#0OMIv$q=g`ju0FvnK9YEg|y;QPO2(jsg}>4iW;po
z$qkU(;Ugz3FE~>bO9MBIPJl*}3Jr}*cdh1mhj$s^x-@#gRXYv=O@-P{+-{Z86i~$-
zYq6VnRCt6aAVceir3e~*Tw5|Iv33_TP!>6H@!1Lhd(7fr*EG10R$xm}EbaN%%x=sl
ztnHxYP?CLdDq6XQl9(8P&mB#<Wl7w2qvkQ~3%X7o{*XDPLWRQjo;)o&v4HUF@r$2+
zNZ&H9^hzNkB^fV2$>T16S0X<JT7v^!xsFh>!jUWXDt9?^?HXd}7$3TatgLkv$=K7B
z_-x+B`JaCOz4Y3%_|28(Oa@u){Ao{&Y{cu9iM95mKh9TxJR`^c<B_G}1tZIO{-eCz
z@3-)E1v+^5K0$K`%yWW*Oe_skpQk|#AjqWSqwO*<lZwTEh>(u@5Xn;JLT6DnP|<Bw
zsCjt##fMo4=Of1534PtensS?H?c%#2N-)t>97l4nCyRcn#k449V19H0^ht`B0u~Bk
zUgG5*qNx`8f^u3bY>B^T_B!bxgG|@pWg*t+C9g0aE(**{S)7L~nyCnTJ|Y!;?D946
z)%l28a1_j<mkxB_6O|~neTSgSs0y5>*FHjWSaNoJCo2jskm{|)kO(@Bl|Ym1iH{WU
z@leE9p`nu$c>fU7EcbKUu}TEVz|5CH0K5|*b8^D&t_B<#fr#a%6o(TlnR#+t`<&@E
zY)HB%1Pd+Nf&$f^DpJ8S5=fs|^z!?xXbIKUf5?!ChH3uN0i~UBqnU-1_l-AhNOZN@
z20K~P?ztE-v(2@MNf!ARe>BC9EMZT3oCyrm)r&y!A=#~9BOq+MTP(Lr&(wkSxR`x&
zWLH2<#v+%V;d&TLKP0CFCqZKm{Ko4=-2jLUU<WuqyvZos2;<8@lFd~>%_8=~#15eN
z-m0P`Fjdt!$CXo^Q*9N8ll7p}i(DPI?01hp{}O+bY_78oSN=RwHS#O%QE>*lA8~JG
zwmb6fqp;?maqNJZ)PNcvF>+(Prj&^S2R5|t632@lOmG-V7QAsv9-0JQuaiSJK(^3&
z1PE(B4_xK(=MpESs}6cPi0_>NFdK#o@TIANtwMA0ELU`Jc^^6E_k2C)<|#FWYgfV#
z&m#M(%=1+^_o~^Pxlbn~9>C?oIVk`_(4X(v4Ie@~egn7pC{-ripP%(;v^N3asVOa7
zdy?7Z>xrDJ_}!fAUY^`z_kVj2_VtW0rgQ%|r}cB}^gTJW9@6sWWy`d<#C=p<%nQSD
zDOXxJYoH@kQ8hn%L2>BAMgK0h@qGPNfvA%Fgxcw^+UcIxpHq*gBy@u+>eE&#lRd(n
zgqL|rPEM36YtZ;#M8aLl*{N#=Wjz9$iHZKa^e^l`W_Cb*RSKb;%B<y5k)}A-0mnh6
zP{CaY|NM*Je0lkhJS+{Vmx`<>q#~?N?bx(8P<M@c!PI3W5k>jK6riBwBr4mr7yhS-
z`(+0F(|B>|@T#R}sY;|Op|eyE=1aY?b&8Fl4-50>78Zq1-b@0-u>P6@^mH?ve5K{%
zOBiy;ZuL1iQKwk3IaJA{<*r(@BM<iXMFE}y+Z(qjXnS<6yW#|j#nvwA5a41Y@pP96
zlK3v~iV{+_MWUfCt1`#t9TUidSIn^!T_P&AP@D(v%b`;)H-QG-(%G(qO5)eHDW;*b
zDvSirKl}32zlr%hi~)k~ERGpRwY8exC#?!~Po`b8jlV#IouLbkLkGxVN@zFkL_rcM
zb%qY}#sG%1Nt}=-0O>FXI_fNOg{D`9?5Mn2xwz745xSI<mQ3l~1^g<7j39J!o^%`O
z)9zy#pf{_{dXrJ0{A}IYR9lyj!ReLgnZ;me`nj&(PG>tP+I>jPQcCVxInER*D8a&n
z&%X5I)#E%tLBH(XTO6@?s;6|oav%rn%h?hEW+CW`w>F*xp9=;_3`Es&N+tL~t34$-
zxPgvPbGRnr{;7AYUIdRSJ(c}A>yVDc#fzv&;nG!l%7eI+5te`Hm;3r=(>G@gFRBhy
zq_9!%A*o4HdGlRblLqT>D$D9)X?B(j@8}dyCVza#kX|+)U)7T4ni>X%EmrF8{^9;B
zu;fcdN%&-Os?zGOI_HlNg$sEN4X=xDU%&kJHy`-&@>6BlbLzk#S&WT9AV?vuZfv@)
zG7s5jp@yNCT=Yw#7ZNObH~{#19BiOjC_q<fal$XIra2(*N;_Gf=Ki|HOrQ7Hn5*x9
zK9}`Js{TdBNXgpjSz(IBj^1;biKkuoQ%sl{f?UoE*Uwn|F-I%YU9u`OTSGN}U`Efm
zKI%eWo;4|i^vk-iV5?n;molb(bjq1-#WUyx!;<3^1taKgHP)0<Ih_x^x-3c|JB1G`
z6}h2RpB$}Ab+~_oLZ(%aDV0~ydNsaP+UCiyxU;Pcz1CA!=78fIzBX|$dtY;ub8||_
z1{?^1ep6KQ<kWv(OgG8`f3~Eosq}=x<ygU3tqn#4V*R1dL}76~Re>q<%G8)MH<pn_
zo>!?Ss>;nFRgLIusN&BZdUNReo_Iyt__OyiLOE@#e)H$;@$2#U(=XrqVB6OBux*>8
zA~lTK54Int7jY6K8IYUoV*>ijmTQJG9V-AG2O|lp@)R{l61o&gqK8;kjP|4o<r~>h
z3kdT0wXfh@4w-d4ha9zV{5x3j5+OT=aF)-K4iecR1tZ(iLWWSIaya5v)lOGV5pZ@?
zJ8FC8sDmhfa%jB*D;4;1yXGjwiJf99mYsc<nX3c#o!4x?ZD$a+7QQ?p;Y{P^AD@j?
z)zqA)2U*EAE3vy!0xujkKQ^Wg4=%0uE|*>zvk&1Q*7wi$Rm23Ih6X0!{@L&0?;W|c
zKQGcAgM+3Njdpa60&|@GrHaUEhrM%_BN3+udBPxo_8!(bt2#mg@Q`yF(*p`pMou=(
zrNyog4^<u}Cv=A-MT5$DJ5}(6I7SWMfZ2Ij=ZuaRN#RwL3jBF9Cdy6Bq1kM#izT@&
zf>&%9x#os0T(^{}P)R-ztRQaFVY_}7n{n`7tmu>pD3r;|Rc{}utE<r+@ofi20XoTy
zF=zg0RRL>d+@NDos>lWgh)C}=s`5BsF1cLcHg~3+96TgRnG=Ir1^0P&;4OFxhgp($
zpPlIFsuJz=W@iJ(19kVN)xlYg^-_|uoLB-52qz0<#>MQ*+tw&su=N)yK~GHggE?V8
zHSSEgBsr35vzLk@*9hlr<rUAZ$wNoWNlcuoZ?_8tEnBHoDlE~V(~R*KFUM)k_%{i!
zY|Gep&N}U(6m4y?Vmz0@eVy2Ta3x4|vi|H+PEI!1rG#)g{|P^8^}%_4NQK*hBtdtS
zESP#-LL=@5#9WF!U#TywZ<G)9S)tA_g@S9@AvblgFKK_%0Pbw<u0O<i!y?;kjV%-g
ziBj&;K&>;^C^R|QEqLgXG!PnefKqc6^bl<D#vOdG+BQ9RnYj7L4x4zKI_aM{s$JVx
zqGp$Ah2hY1{u(gO+G98qz5-tWq1Bf(!(4_-nFe>tj#Tdwk4y=j`c6V~M^z6=RK#}J
zyu>0$3RbZRVV)j;^7R+T<G0^_{Tq3XEQ3qNMj(@NO}xuXP8P8Y3(&K&(@m-TloL^V
zqiy=GU!F^L`l5uh%pHYErJ4C;r_hIYF+;k3pUpjC9FccpL2#M;Irtv2jlL#xoR-4+
zp;<);e4#DE8S>jnfVYg^20gaxak~HiY}>;r{<!Nkv&b6i)bt$dGX}^F{XBzajB>M5
zX_%YO4uqf7PrBK(maXQxm!28sIm&DSq`^BV@wF1+E&$nbFkQdTARL2aj7zZ%%sJC(
zh}H#Lvg77lvRzb2(Ay72+W90~KiX_3S1vnCn857kmC^u~ZKLvTfGy2GpYcMmf{EI)
zU#OIZfQ2|XF@UaV>YHLL=u`u*+r=X4*xc1ro3?hfbfTusn{4+fb>)D`G|I)LI<#O$
zl7yQJ1`4{M^p5lL3>ecPnns&9wRw|{Qf*oppVX|I<KpJHyfx>N+uTMvBOW^ESu0=}
zdCIs{mr{icIMM!fm)*zj+<0)lphv#=IbZpqKUic?g-~^Pxtbq+`t51$|EKL|Umt({
z<&VGp`m68#O^Po`uCkcwq7;G5v03|NG(vqk!mpHSQRw^DhFDQC0JaIJHgIlc;+v(~
z(mGQr=SWZs@^`aFvH|RAMN47+IuH8|;x}w<b~Am9YOHsDXsDcup}%dAb16(kq^A|E
zeOvOh059pBhJ{>JleAT(T4FI$$V&||t<|>T-+Blpk;$iECGik0@TUbNya5z7l6slA
zT}Hg(qeCq4QmO|RVIF5Ieppj->d&H}z}qS+UhEIKI{~4#h9;jgOAiH7A!N|&;Lpip
z`6&vI55Uyq#AK;ZX26gd0C!%iH$H**rk1lL-CnYrl|>!!6q{Pmc;~NltIHrw5qWH*
z1_;>khP_l0S}3S6`(fA7tvkme8)xUU7W5K;bD@*#teFLwW`&ux$4jY`e5C6ZE@dYQ
zwnY|<UjwB%hr$pr0PVBZ(Ix42n=%^Orq@m-mw^ig3rZjwhxiKHymqHTuOX_V9^Ejs
zyYyC~mqwxPB;Uz4?SkoC$nS<$R<^kH%eLEnS@tQ;mT(!F2F8wzVRF~jxBQb0NVgSM
z;v)KqFZ-4B-Ed-jP*H9$M(G@Z9DKIZA6ktliDK&31?59uv7g$&aanOx4Kg(iySkHL
zhe>=18wNUuxp&yELT1GwqCC6CrFr`jn3;6pdD%F?Y*{)wV1?$~f7Z)aSNg{A`tFSv
z2V0O9n$yM$7eH>uTw7-6^x8&`mfICcvk{{dkD}~?L2_Cc*{G;tL1nj4wS!P>h-_TN
z78nWLhpnH&=`<|Qwo8Cz?t!9&e5jt0g}KY}*jhZvLg}QH7Z(-IA}eODJQqlTouGu{
zj8~!f1dvY6x8*v);ucRt-QtSRQgSkVnuj(5D+`PU1w_i(2$GJ4Pe~NPDLWLt6p&M8
z1Et{&q&?7i!nU|X`Mjh#h4<?sERAWGuZrm$5ZlBMd%g;n%GWkKEp6dZwUzzw9;+QI
z0DTtdG~;Ir-jb3jFx*Dpfu5}>+OR`X5szxKd2^xE!xE+=o{>u(fMU=%JZv_UQE8f`
zo0f2!E}HFgf5)=mSFx(D<caS<60C#TI-{a+R`g*}DSd6FNt1Y&0cxbc(EN|HsQ1Fh
zl?!WHb6}ab?PC!bBeiZ=bz#<J5oVz>qch;5R1H(AU8Zk7A@f4EV+C?dvyEbbmX8g9
z946W7JSd?3c6vcAHCrs-CbNLS%ah9z$Aqb=k4gFyp53U;jjEl}hIFCy>{%71;{4)n
zy#Z7G%icEyfkKZNXY*omz$g>Iuw$lZi0O<{!Z25kRL2iYxxGcsx3%+|8SrL<Nv>&f
zh|X}=J`}cYbpj|Z=>uCv_NAYG{q1kQ_d#f0Q-Uj-=8(n%BFGT8kvS_QM^pmaNt~<T
z_)3CVSyn@bPe-s}_jPQD;`J=U?DL|W7a<N?#u4=)7e&30r@0e0TG^H*AshXuiomiW
zUlfTX+U8)G!=YtImmXwZ@eu48ZTp_-aAZk}ujVN8bvj)C%)Au};lSa{l9t-hLruv+
zg4dHg{*jBy%rIfJ!31PRgw$EBI3cDSQwErO3Hq>xtO^LHH03ss@bM2Z%403m>+8;c
zjHSW^^*C5z6*#pe@KNl4Gr~<l`{Xt4D9u@b3MQ#!dXUe;N|z#ilA<xJY!b<1b^w}y
znI6uP(%8cvGXY)hiDVo-IWe<Hb{zme2uJ~uQc^XG7pZgwnM9&2X<c_dk`RH;lH;;Z
zIC7dTGb6NT^~ahOD$ze~{5Ir-hUD+aPHU1ehM)E#8*E0kGh9nBTM;Mh)2Wz*DrTeG
zJaq^{@Nddm!7ga##2$`BS_b;d{+vyDhODK{>$FEnPj0$;zQoIGGf%R571A}gLzDKI
z?_HuV`Ic#6w|N^1Y<9`Lr_76!^$cvO$oz(KMaZAN`aC=oOIb>3{E}&UB;YduFrcJH
zD4;My8;4_WC{YYIp)>+o;+HtdTIS#}4W(eV%cOTn($KbpteGcS*`>HPzFoRns}_=D
z`s9SLwgd5!5tJr|-Rgzj6NDQqD(T)@Tt5aUjX?F0;U0N+HPlpsQ*?EX3p4bHkEhVC
zP{@)P?@-EIzMsQMto&nS3P#4B9fx)`?+=07`B*UuyJI+wjaWcS{=dPRHc2M5w1(xj
zXA^^N`NvI&I%6V)EZa}Z+fz1q#ejO<s4E_d;*k-}YIj%|EwzgR|2pRk87$?oD=vqw
z1{7pa!d#uw6zxwYEn)qIBPfByPQjvxw*=GkQKUHOg@tgx`*1ps+AVxTX=<r?lBGl0
ziw|~r6|qgMKML!%lsuP@R64fx)uvZ%fb62bN@2h1@K-MVTG~gp9(aAs_%zaG!}X%u
z4pYQ8F8xSc#yS7|=88BL7KV>`i2^zZ@yAlVAByE>Yw~JVPkNxF60)$)pY13dPLZLQ
zwbPy(xVX(u5q9VaW1Ht;rTRe1ocN}R^Pf7{&9#Sb*++F)(QX}}tmZ7JwdrCJ`(;NE
zN>6m8|KP1XoV;ZJ4h^C4`n&;0wO(XaA!|0Xm0`Aq)+ljS5LD7OEd4;^Ub;3K%pq8d
zbgS9_dD=bQNsH;0ePx2evlL*rsifxWhfUR+7{9vL3)UjMiC6kRfi#oz_hF53OZMPD
zM^5ixUHnZKcUu1k(Ec2$Kie~!addM{zxeXg?RUTUo!t9lybl}l_(iH!1QF#EvKv_f
z<npQPp9*L<KPjUAr^4P-KTX2ve?RZ-6aRMom(P{g;vr${UCz>{l0PMM;h9qI`DGTK
z<bAyVxA`um^WV8)!=!!kk875s33eKW<E#=5nSZVqQvbvz`2Ez;pMLU>o~2I#A*A_Z
z|1=5XE%b=<r4F0G&py{*kEvJM@Q*7{p8Fz!#xb;AL$FIZd$6x8GrfP3`2=SI_L)yr
z58zKeW#`gAJC#j<*<Z&)^z;cMoBAo527(y=)4K`y@eflzAMR}pt9e-M8W#Cq8P$Ud
za$Y>g6j`$qJd0h0b4<bW^&NGTPb`9yWv!TZ>*Ib_KPDr|jQ~HN?ydj$uTf`veE#+^
zIz)OLwpnEdX~!l<vrQ+jm6BbBX044a*g$ac`O+HSLXMcF>Y(10RCC&FJHf&-XH&f9
zbA#gHTgvV!S%a6MWQfg9;j)9V`$4VJ=I~1*TKoC+E~!+eoLF#n#qBns_7TjUU|GLI
zJr8?rI$W7Ax!7)tuE^Z8!6(|~uh|+;Hsipe>bR>j6gT=qWw*7+q1KQ*hyopZ-W2Ix
zX@f~wd5+-LXmD6AdfrG^BKt<~9o%APRMhY+=wpY=N$prdSnIHyd~6*|W&SCxsPAa|
zX2ID2!fs8#Q#Alorie<#<#~KF2_67)2=ph}l=^aimSV_K2?Pt6&o0NPk>N8-am0ox
z3mT~`1H~RXa&`pHyvzN%T$+!<=bBd3TA{hh8sm_8xTNVdY<F5+N>cm5FgX5uy!n`+
zrKDh~Pq$4?-J$AJBH2m@x^R}a7hV%ZN_qsHl&Hsr;=HsB#Lj>$csem%8gSZd7gfKp
zaTjMZdQ-E20H;DDj(Dc?0ZqD4G?FM+tOIR!%pYjDnBp+NhD+LBzzB_jLD{h{YtpS|
zNK0S(gJi4S!LX%*rq3R>e$(=92QakDovXxyE6@<V(iUr(j~Bf_PDfT`1~qBzfYsnj
z5*{w)5ED{|ID5;eBH7X1zQZ66t=m6AI9l#1G)ovcc63Wsv`B6RFiE)V9o8{4s$!(t
zo|4J5JF+0_HbJje7E(@O1*3B;8~eal{$%-Fk}-?k^^Z;jSmv(q6le&w2ouFPn*^*P
zWddr>lff2VmW67y;>`Y%(WU;i^<t$BVSmqDCInS#`7G<CSA-wW$s)=yHWkJ1f<KTh
zJ)Q;cmYA=FKbp+CQ`wN}21I_gO#PUW!`30#Hy4to?9xIP>x;uF%7?u9ES8jt4pjKS
znru&x-##kY;!9<J5mziN$57su0-=?%7{JV?8HOTikqgoQx2>2o<pyMZFH@><Ikz^E
z-rdi-bHCZk-c#Q^$@-fyHruW8qKMfn7DI;}*^BwH_oXRZ1UqF9FTy_(_3^!V?Xx9s
zN}_QST#-V^5Cav_)K?x&M_XehFBjNO4|%JBEC5^cD~@DZhg{NF#O^^89fS265F!1t
zQ!sPdCrl^#^<kGDbF?uo5<IKR;X~Rq@BDVo=StaTx7`)MFM?Rp0{P2fym<I;B`Jid
zrf$6>pueomo$+vMK~*92mc_TN%Rl1K?|%0&BYS$ZTg?tYbqGG7-L~b<o@%VgT<XSQ
zx~i=W;1+x?+Bib1r`yn!Z}rrL72b`fK;0E~R$0vepdat5M$D?JrP*-JV*i(Qr&U;2
zAzZVAh`L10%kJ1pi2Ep1`hVtz|6v-4a24_+G3}r`4k#}5X$DHNWdFJGz@^0QB#h)C
z>MsPcasln%m6V>rOtF!#kfMgQsuzT{1O)V?C(>HhVU>G1KDGy^LFv97(t-1DZ>d((
z(#Q(;AST5=h_cesKIUiiM{$n6i`4!>?^ZJRFrs$~;;jUn3pDD_N90AQ{q@U71fEGp
zw1WC-{@{fF`DuQZImvkN&RK|;P-G5v{ydc|wrG|WnqkbP;daDE9Sqw;GT%G$ZGfWK
zV7U!pPsu+jyZrG6Lv9WjGU41fq?iV0vjti>$jZlcFGEUYb5iWhr9O&(5`aW_!}5zE
z2C1FB9_Wm1;Wq8)QdW^`-n4)~bcBXi!Txl=_{|x+?#s)!4>nl4J&fP{$WrO=y?p&!
zZ6oIZQFCdAY=LG*zM91kYg`!G`Rh0?_WqjpUl5bB7OK&+whK{v*j7O5+y-D>OmM0)
zd+}i(Hz7-z@>_YAaX+3`GUap;F)m<{?##aJgNEhXKAToaw=Kg`^$hDQ%?;eD{q)+>
zN-=*@t%Y|0h?b9WUL^XM=PK1^z|n+MtII+m<yC6-QIv+4H>!*0)ejog7Y!qUPkpRH
zHax=qvb-cA2jG(*z3poiOvEKn81T#$=PQ;<)g^cbs^bR<yi3iYxiYYE=$d=sg-__M
zHd5rXg%x!+t2%ELNO>aiLz4oldPt?E6_j)#^6j0|<_p(1$8+yqcii3ByZ*|LBA4X7
zD=-&$z=1<0krIOzneS?@h>4Kk)rDjFo$9oB&81?$#OcK-a3+_Ux0SKeicfX`#LfjS
zw_%3G_85>i7t`)TQ7u%K?3Cm{m#cW6ghs`~zfsH@cF`ES-h@ja0{v{fH+5JHmzYDZ
zBc_aVyN1N*Z5K+VbxPH*lgOly_vx;SK6!hVRq+zk>ED3$QCYkb4;g!#H|aQswBo|_
zp0#=}^>x_12JwF3mjihg?CH6<_NzP*4wvCWjm}$HbGl~v15W(yo?yCGPQ>_^+kC14
zvo2y`b7fp8?X*|vsgIntnqdEYR~jncY?nYEA>S_bFeFuvFv3O6v&mTUyrmGOssfqI
zyVhwFN#Z>h6Y$mYv2t5{et=W6{uL2Ri-_fqM9g8O*m&L%v1TH6Ct)UBA_^|mMZnnj
zmJ}uFOy_dj7xSC1@RTl2udLRrB(JsyHs|UhT#YCg4d0CmB8*xq76|7PB;6_jHj4<5
zh}3nYtJ-{6;Xa|*2JT+4-AF3pt?hRnwi|9XA%7;q&;OF)W4C>N{PWAV$8W#DXYGSC
z=g%B1R?5JhWmqg~AhvLrdn#|GAC%m0(RVC-Y9M*3K)+)2DRWwlNf@lS1r(-PGaoL?
zWOvX^O4u-|(Gh)Lxfe$kBM3TCpA`s>Zq7Yg3rpTDL)fJgVz@ymz(T3Ksa2uju%O6c
zm-zasNEKi-!}6*5+9rME+{{#hyZk^dUQ5_+*W1g<PL_Pg2TW$Q0u7rEEkoNLLg+NL
z(N>n*SS5}%EdDNwwFY`>k%hSpeCUgidp}>ZEoibGCy*0sTL3(o)9Xl7)1uaIrDvlR
zxwc+w$RHi)6^E?q*Wq(YO+odp5X_W7rP-{qhzqnd?Kwo{8_xAZCcak)32$?q(xRTG
ziC=&F(?1;Fwx>V*=G#ZJk35EXWYMTZeY+V0`%iOF<D!xjQsq^9%@f5V+k-=I+&|C-
zHBkIx-tqM2yvK=oi!JlF8@&v}mXmO{f3rg;Vu&%`E}s)J-Pe3BKrDpc_c6Li4sYp8
zm$+z2{^8{b*Xk(mJxISK?Gk&ZFG4sZRmh^{=X<2xet6a4AVYr+9WZ~8wbwO-F1Duw
z6`GZ6dByr`&uQmb2~6`%L`;}$;%Q6Q{tU}#(M@(_KbDD2B)tk9&=L)=i6m|*sBCo1
zIFR^K5A{nfD~|04d6<)wuA8G{(4hh2cYf}ZdbjJT19U>+g{U}AWa(~s4P0hjqNRNM
zjFkKB79t^=$iGysh0kqv_5+7l!OQ=7S>;Ye@a#G?s+%mTd+9XV?;_L~R{S9Qv`=J<
z=P|7hRpZSDnnzsGejQ!cK>;<{fByCa>5UlgC)-DzG6D0B@vei-$ys47^K8L0r6-w;
zyoTMROH;pKMRasyRw#Xj(dmcwD~qpL4gReJtY@)mv570oSWe#`-elxCb-dG2&cn0x
z+ydOe+r~kcR4HBSpL2GA5VXXpLBNW6Yaa`!?LHbSW6FxS>=c#qSduC?k0wn?9LY80
z-Ht6TWbg8hfW=?-ymN_2@OLL07r1}^Xk(lHyYRA0C*p{a2Eo#k#(U&Rch*?r{aC-7
zNf8e+rxfnddp|X^euW+9M8+K|lsFP-k2NDaREdvXfu0(kuL2&9SI1`H!Q2(u9D9<@
zRC_0cPXYrPFM3fq3ZK)<18?mQ*LR=Op3b=vwbijuCObabQ@KjWnW>pc6EpAzPXo+Q
zyTen^6*OH+@8&DJ!2K7`RJmr#;^g1|{-gBor_HMZXV$m{pGH+bYHrHNRzz?lNAHo|
z|3S;LanUxCieoH>d>{4-FNn>Uqj`qBRc8h;BOFzsb!E5Mi#!-|Qo?p?c1YG^TOWL8
z5v<}^EH}y0;ZIY}$|EeUn$I}6@9lbV^NXZdt_s3$AI9W704Zp=4{^GYDnB#xsFvy8
z&#em-*IydT%!qvD3{td&Q!zQN^R~cKl{v0C++z-Lnj!ODdo1_e+Lo56X3rr*@mb+>
zqYKRvgCgl$pAYBVHp)#It&31@o`<Y`Cpkpi_Cww+rRxp?51e%-bAbsB%~1b2xVDl^
zJNQ$Ua&;yd`i#07y}8jLR=N$e$9t18c@jsz*P?Oo2jdVz{oxnCc{v_Wf6xy>)9So(
zTQoukYLz`E1qSxj#!{$jiE}vDalH*zZP8o(=JXA=(dNOl6N3#EWoxex(MEK_x41Mr
zI^^A<yk)UO6fN@}`2YMU<@Mk!DAmSG+NY)U=X+dN`7xJ{t=Ib5^<Nj+lQCdjaj3<q
zn0qc)XxQ^l)R)1&)=>a4xcN9)rd&LJ7q3eizPhE2+qxLkzy137Vfp4Ge9qk^Zjd!m
zo;p=9I&&_UP_7jJnwwj4s<5JTnMnnI7KoVW=>SHQ;4~k?r}X692I6ls3^qTKU{Y|v
z-Rmrt;g-Z2hR$9|_mY5&!eu_>4imxsLgv>&h)^G<_G4I~I_Y$${xLZc6fr-y!b(2B
z?;0N>o<i-t(<dgdL)1N1b`o^-&1x2f;nw-;fZGO@w(v136#C42Q5U=%XB1Hy>`}4b
zsNj@Wq1Wa7%f`P7sba`5jby>Kpz{&DdLmR|_8#J0y1EF~<3-_=C2|$ip4J?oW=TK3
zZYQt*%P)u6{E^<Rx}QmxbKbL8^aCY@QL_9^6E=kq`A7SDvafd$jb~{Ji%k6x>C2@N
z!tq^<{b^1PjSVHdPN^C{MjeuTUB^zPz2Wtg$oA8htg0V1gl0}&6OwDYl*+WPsCHbK
zKXL%sYC>5IK$>$VD7|F4kIVPi#q%a^(b^ETysOSHW)$tVg93ON3UIHiot)(>iHH`-
zTj^yqI~(3qm`hOCSP%1FA{^SB-<5__=@s!vyH;k@X%$nF!Z~Lh1QY?TR+#qgz)LjB
zuqill>AoZv<5B?fNF}Jsl(zeGX_e#2xFmK~-h#xm*&I-tC9l)$ZhMYb1#mD9J-+<z
zCttpP{qw0?L3+0LH#F)$v1fJ%1v01E;$#>Hd{wi5bSQQie^v+bk_(6B{E}hwcak=v
zSOmedAtk0Afgw27xEG&_wEzmAQ6KFDFR!RBV+E4Bn>Gx~GW%WX0Smyp4#HyRNwG<A
z*j9QwI-WrUkIY=%EwPeWZW-3QuoU%ebBcdqQPYH_6>rW*2RVkGzdn@PJA@~QGBeJ5
zz`xC#6AXdbPG#V4Re5sQE8NP}B}E<{_W!ip&bHwW6&?mDL-K|rrbG`n9;y!SP?LX`
zO(gx*ZY7zw_N;D+5i_yE)a!+~OOez^MojOMW{Hi3wXjAT%R~8|21Yx}TecN1zT!Y9
zh2mxpN5G@~e1+c2xL_$;g}sSnv&wTBxSEl*5lXe!xdYkrsl{G$4CN}s7`(t3)dmbH
zzjkev08q8s(?&5$jGC)2Y{??bS2#O90UflIHT}WF3i81?b<~y4l*J<3eLl-p0d@Pt
zsVnkuwfnE*4`tuCsJ_~gFEh_oheNv!S|tYET$}La#b4>H_QM1#x~sC093NvZ{63{4
zXCDuN>9FYrIz>x1rP>kxQXP+`08dH#u~&|*=&YOrJJgYJPrZ>$;6t`S29t=bu!4=C
zJNP9HjK!r;vk1MyPz|uCbwi+gp?k7uh!OCR-J)P!k`5ghO<NqcT8c9JV~rP^^f6Ys
z5sv-fbrT<6XCXLdyI$vQLuRr&kwZelBr#RzO9Cvw;{)e!5t33JwfPL+D4CRl8{G2;
zc3qW?+l?+x_q>{Ml-^jjfM%oUv+7S5Ash?Q@08=_$X{9X4g56(sH@mQOQeUlfG|oK
zm+6sX{nH~6L;A9!7BUAW<hCfY1heor{kF@Xg@IF*IH;A(D{oECo!zLK+&r)m@@P5F
z<;0wZgZ8n2S9%3mliKAoS%q}jC?<_$S^qR1t<!)=q16VeA=wyYMdaoNn9A!kOoxFp
zK-WW|rT|+Z2G(lv=UV%~5O5i5in^9*P)pgt1Dm>)c;BGwSN69stbnR2>%4Dmnx83$
z!Bm^p{@d!1U5#4(wj(Sz?{%t{VX#{1on|U~gY8DV2<~+dPJ6d@GQn8>MG8Eec9|(~
z`t`OoE#{QdedV<zGq|G8E8&fHMpL5%e1{Ax7%G3)&C#in^b;0gIg&_l=gNjx><xM4
z8|1yrdrRt5+-k~27;y06m6J>xrxU>lnVscMkPDvgV7F{A#V~7M9(-{50VrrRt$6Zm
zG@+Opyv|(P_n|t^)1)wHM>wG^g%&_yZ=(8_@;&ojTktm`@%n8E-?R<Q%?5Kz=EKEN
z04&r5SG@|{b-N{-I!N^IQ?SEmgf-hxVa(q^({#{dt>p9dr7FHmOu0`l=rJFG^V%Ub
zcY1Hy&YM4k81`M>7O61rM(rS*r{BxlX(Wmlxp=BB&RYsf<GQ19%SO}HP{ra4w3RxF
zg41YO)vVpzXwCUaFFIlaBe6cKs#97md=Ol!HQ!$U&g+#oLE}ml)woojBUY4&W~-6R
z;-+?{f64rWvlT^GLD$$NL@8QX4ugo>nAq%_^A-qx3=9A|JKGR-2QHMu$lL9tp2Z?4
zfHK{Ycf3ZxO9S40Kz;6;-)2puoo%Xhp!aPPZyG7&@?oomG%jn^Zfh>^T6n3CZ&UL8
zVfTZnQ^rgbupBR*vz7LCS>@1SXZ@gL=SfGSrS7K5Zo=4Ms}}Ca)+JX#pVBS_2KFlf
zd~*Ub8#g#9-hHcfZ~$4Aco%=ER+D=3_FgXu-%V;VZ{AqGU+G#ZM2z>hwb@IDvNNkq
z;(Oy?J%??uaXz#9kN$`ZS2g6gIAYfIBKSi$pkFJHhXd4_|0~s`I#VJ#xQ?{4)?MMO
z88Va@4C0IG=!NuVx;KN8XlT4{92~eUOHsX5_-OE!(5`J%H>q7u7@Ix?!-hQOt+Q}U
zl@;vA9qrkOQSPFw0C63kC{+i5HxsV)SUd}r_9p{zj8rbgszS$zH~U*S2it-S?39BE
z4NP0WZEv_44v8Za2L<WiLQqSxzdpWxdH(w6k9y9Z&ZW__iB44@y0*MmbmUgV|16!$
z(!DzvxjWq)`pkAx<vLAU*%^LjW1R$eMM)dr<#=R&#_4SoO`uPn;b5Nd`DsO_UZ-X4
zX48VW05iqJ_3QUG%|BNOpG;7CqhwX5*@-DmzDl^3*Llz;&l3K>Fa2l+0BEdu2Nenj
z=Ax$RoJU;6<>{1kd4N)u7SQD-ymAl}1}eQam9YKm#3!RPpzLgYc0K@9?$QnuNvUX%
zI~X-Gc4Ur&cWwAh$9{?A#H>>lTmHx(p607L{<_eWtnDZ!Sw_n5^>PKsDD=@(#XCWL
zFIC_jb60t>omXyKEoV(KoRBL+BPDjDdtk+*$m${ATyqn{N6EQ!A{Qb^VVv3NEIM{D
z2_MBIDPG<(M~cg#$Elu{TT8Nxs5?QL13(1V_vM?sQ~F{y33ql+7Az0WX67`w3wOt!
zK_*W&9(%R(LTNtQ>2(e*mPxatdYW<<6#Ft`1%4~OQy)G$h-!iD)2k?<YjGOME5T^8
z=w>daaPtIgev)Ymu!UO(N9;o~bkOnsMql&F1p;QhD|+>nYOO+EanKs0qOWY$4mjSI
zK26i$figSpM(B`VjWv!&H6>^F02t=-sS#dJ=Z8v&>{PTY5~P^&cuo`?Z%fc>HuOuu
z$}sB^B643Ik8gjIjz+?{Fw%BeGMhIZT2@9X=lzlhaQQ2AVZBGB1z}jwYfG%xoQhbq
z6(vY6bb#BwiGU3R1MITb<x$pVw-VX$a<zZp#^~iz%nfWOj62m5Vb!J2gcy8KV!5OM
z*Jg>2Im`uVAt6sRYmC?%^GdhFv^*58gJ}|l)HV2($W_|PY-96Aw-uUmq-E#G?}@XP
z4Z&V;qiu^EOgL1_haE47PC;)(FMU2zj1w^fS_k%Tv<=q9Pv7XfIUc*jtZa#smFA||
zbeG4R1jA62d!mudO&XGX(>zJbm&c>CH(b&?XzD#@w@v`|R^y2_UcN)&U_Ob#z{Bcy
z(BSSAw_e6Nv;%6CS=bC@YQcof=0o;Fqiw0{sJ1L-kAd0@RHAA@bO#}P6n1=Sut$)w
zbV$*B?XjpptKOWQl*1geEe3^gMF2Lk)36Bhl?+%02LMhn3)H!L<}Ox+rF~9hM;j|2
zql4+L;AYH|Ju2sY=>y3yv22ox=q@j(5ElhKHw2lNawIA#7uP3_ng+Y`X<yRoYWa~*
zWLKWxvCzd^dr(IMktk1-_N>FIgD7H2V{7DzKd()Gxj6ZpN$QT?v)&W#s&jmhswAuK
zxHE!I3NIy*tAIbDD8~?uyN**?vTad^alT8x>_V7Thq4y&r=2gI83h!)yVhE~YQkgA
z)<R;qLn;%cm3+qmmlA~++wWYtmJ+Q<FOa#2`KTb4O(Bs6dc2p7=MJpW*qvD~%aqDf
ziLup{&Q9YH$q}8fsMV+);T~5n@U%p6K};_uZ`?&p-IBgs)g;jFk`f!shh+`Up3iHl
zg%zwl)?-Q4TuHV|G(lj!S9?;1qx{*)TYa=*A&M4k^$v_Fn$gT5)wmQcbI}v~3$vOo
zF~^ifl)Da*uQi|vro=Z2N6N9I>*UJO&q5*zUa7uJwjT-ayka{43_7R(;~Se%(g<tX
zr!8W1N?xZ`Y%$9cNMy?3DZm$aW!65t&a7hep(30c+v=BgSPa7}PC~FwI*g0D+qG?_
z&R<0nYb}w{iU-3-Yha)V$)LV)Q>PuB=^3N&&pRZmP&G2>X5l?(K{^_Bj=o6-;<(j|
z8Laf&Y(6=en~p)pN@QQnAGalVbI>qrhSDWdoEAXnsJ%pew$`HVu(S)<Wi2vQ<{BJr
zFliZUR}#%~eo#6$O;#MFksfq!Phl4*PlILDBJoLs8&ZhUtW@yU#ion@V&c5*G)Y^R
z<BodepJaP9y-xM~vN@U4U%MF~vz@n@_f&Q%^p8zAVa1=^T@A=`L1y`m^R*2~mn$>>
zczbw9Fo}6{53p2Y`t8BAS=8yMuj$ffRFmbrD81r;@=(fNi)U7j{AAp*>qK69Ac)n)
zv2l)Asyuihab)1SPN&10S!fk$@z~a|EvvD9x%z7!npJ9f3B5gMLQFc)Xn-UjPA)WD
zs?t4EW1+te^ejA0z+0J|Sl>skny#qJ_QWMFFZx@>x685l1IwIv!6kig|NiZAXOzGE
z;p-Wg{)5GRuS&I&tpbN9h-X>?sHy?@2tS8bYOI9Ecgg4A_r`BW)!->%BAQM_|3+o`
z->A&FL+Y;dWNcz##~&)yHSzj>*Q8n<JNSK}z|N=NhKUAi@US99?YevXzVH##zCOk@
zo(^`4ZPXH-pbr-7FRAX-Z?YB_s&4_d{r`qaPn$%B`${loZJ7%^{x0{X96e_Ctorm*
zK0d$or@H4cUp1@A0hT+zVB@h%&OK^J;3r=0uZo}Y8MlLMv-K-4maBc;GUGPYcdGE~
z-;-2AX9a@_BL5c^WH=-3ODm-gZ}7{9bqeCty6U_BJ)PhE=lw+s>Tr}t$ofLNm98mk
zAk=F6iN7;ppL++@)T#mQ>i<PwL5_deRTAgaQxDk9R@6tPPgAJ>f|p50rCj8LJDgk{
zw!$(Nb?)HRp{}*%<<h{gsz!D-G7bk6;US&yOGHNRP~G-e2(-q<jV}rwPf-5zVH-DH
z{7_1YXUv(a%nw9NwE;WKEWc0Xv5?3`7Y_)4D!RU97Uc;7&R^{KfBU*CV|~>l(|aq?
zts;SrNb_YnTb{#gk$t2oobp>KA?yzXAkTf^KSrA;DD3!06QBR#yq|dWN~8ZAEl!i$
z4}D>k;uJ#52z$QEbv(hDJ}R!FE(TBDh-5rI-rvsq=cmv%b^R&LfBJFnH!k;&(}^!S
zRX!@9A(!hJ6}+}WWr^~Is63dT>z@Ah3DsS_j2oBt4K;|lIG#+az}a+7+&eR=!h4c9
zErd2j)I(Fmai@ru5Dyo4hzo$Gcar9%`cSwxRqdj(&Sy#F4k<aeC9PV#zf-VTDB%M4
z?t2HAznIAT!xu`DN#5&#0$nlZ4_2zRFPRmq-$X8cj;`u!TwP7>sm94W{R5aiGxHzL
z%u`}ASyx>Ag!`VG+;}6&|Here^J69;BA2TgYiOU66JK~@xwA=6u?z+0=Thrg;owbN
zEF8&V0V25|z@6`FGaX?-?;)tVc&^(jbG&P~{~;p&%i$(^*Zvv4(3yWY2SyfY#WaZd
z5n1TAhz_U9J0!rXkD%b7Ik~lu=fA`Cq&Kby0;N;XzhI$I8rhf-l2Muh`ufL^xO@pY
z*v`vMULQDwzdhxU4Nh)wAZ)kdIFpF&lLD~B@9jxD7YD3C4yB>9scf?v*g1vj2`Zn7
zEP|9Kb6l$Geo}`zIx$uKvpPCL-FnC)`CKmhd}_%`RW<kxO?pOTcK%%QqBv~*SiGk2
z=E^|5NF)dB^CfBOI(n;EZs%~W{2o^4j4pPPk7vGE@*!l}snCZ>o0CXPV<m<YGc_mB
zl(zRT?48My97z#|U!{z5Czi2C9I?LW&>S$#`Y^Ye8bQk_7?>Iwczg2u|H$f6Nn&7F
z517=MUYU`xczA5S{y|4@5GLBt<zyT1zFLH9{Ssm90LEr#M9Ix;!86sLm~V^-i_E%o
z?;N<+al6ej1U)><QDVFxD6QT~BuWU@Nw&e6B;Uh)rJlX72W7O0s$_#zGnLLgT8~?m
zof0BZF=6v5TG7dzU?Dc;D^ykdkhs?Z2GJHgoMQ|5z~8zH6(mDM!d2(ZgV`rWrt4qC
z*63i4^!CMnETdz>;@ixs(9zWfM_Zv|-ma7;TuouILz04n$S?jPQT0|GRTC^BGlMNB
z>ZT=HI3b6q9ul=Mg{Xy#TUbZIH@I(eZW^HR^9@~c^tz-0$HI3r;Etttf|2>=%<Q#*
zmYy719W@-$dV)mEnKjKe{WLcph8wxk(4lVcU?X{|7*+-HII%;ze1tID!B^KcP;^17
zlbP$tED#R9IsxZ-+hE!QspCgZCvVJikw%I2;;TPv2o6ulA!g0hb(jbdL1w+8NxJw8
zX(FGj^J-4SVRx`5z|6fpeyF&jNt~Y|B9#AT-}a_yxS_m0)i})(P4?spPnucGL96_Q
zBqCHn%5+!dz_7cpvk~L&@5%g@WJX{;mfTs?eA}_GyCT~tp`$$p&L9w3rP`uWLONLq
z9LcsHe4R+4DktV3TLalM>}1YJ{P;+N*gP}u^Hv6CI)7qXk#&XuE%KTRJ$M>Q^{SA_
zgR!eHWq4}G0A0;-Yfa2}@-f`%uG52o72dSaG#_)~WC=Is8?&1<E>)u}5k>@KDkS68
z-B%Yyow~TS(bxGrtj5tvO%FZ}4^MseyT^&A@g^R8+rJd?hm#q}*`zCP9-5Gfn2s9}
zP?oRP67!<dqt$h|G-x7No3Iq}1ASn$N|Un1T`FTtE|g?6QE(R3uk3GpbxG6y`Rwr*
zsk*OzJsDspi9zTi^0OYw^ru#ismRm0Z}Yq4IpP!)ve~``@}W2G(lZg8SuAPE1gs}!
zUro%rw($zIgX_!knH`!(3I_b+y00SdeP<P}+W=NTslRZB+<Z2-;e2uo%;#L*^5gGa
zTE`dm%O$YOv)b_WJQ3!3B4781Ubw3P?+;6$qYu~pC{2|%861s&>26L_3>NDDvK)&=
zL-Tm44RQOg9Wei)V+<VlyZr7>nCZaft(rR8NlSH%-N=8$^N&N_WOYs!>Nmf==bq+o
ziVVu4bh0XTN4-mE)pevr+sXD1-kkMSpnQlg+F<d-F9m+=XywMI%4^I;gM^p6KNbIf
z=^P)!8m)CCv%Bc+jZ|UEfd^_-)V-1{%aN?*m6+%`^#;5vvA?-)x$y|}Jmmb4>e-w@
zZYa1k+RMp?y{36;K7H+CKi}UqD@{rs#B*9V-#^DbPM#6`^!lZ2_wz|#@k~7U`TjLV
zWF_lT*B?`;_;Ej?*ymWnf4<b&*jOY-XWIEf*$Kt=e^23V^N%R^ImZ5<FIBDm5#>II
zv3k&d{r-HXU=+StEitKb@0A||+fyL4V|;qlp)?N)tva|idkGslbeUy2uop~|PhnF$
zd%l^r7eT!|T^HG4HS<;Hg2SOhe7nhoFgBi!Us#l-0Xa0!);nopi@ibTIF+CKX_{a-
zXkH}4_6AK+p-ljhU+oYxY>~>yIcG~~!pTQwvQ{$dfM21hXOYOgumQP&sE<UA%z_FQ
z?0O>}zlCg{L}G_I!<nyR8(I-Gd#~1;#6kTH2&;@$eVXU%Sl)nX!)M8+uWFE8W`&?E
zv(=X9U`~gRWz`8|)!}#y(ZQ8AY)ZO0==|=(E5Q@)U9KeAkrtsjz8mD1slB*xEzjL`
zh3kw{wMWkI$jnJ3V{kqJc+vY);klnKq%p+hnQRydB+)xP-Y?cr(0P{jyyC2l#iqI6
zvihM<=sA=rH<`T7W+6HkK`((L+84inS(Lqvv>*)!UleqR$fBE+n&S^7{DE4=-2Rzb
zdi;O$&4+sp!*HBl6*XaCOMkKgk;j=fsD^wz^~>wi0~bTV0-C*9!H{09dbwPmIxjB&
zLYGnryyhThuMmz^dM1AQR5i<HK@|;Rpk8T-yf?AUYF%Lnrs<0+b>EzMF_M6Vr1XY~
z%PrFO3zceA%G<PPcAiXm>|9dpip7Fk8PiJPNK&f7qyWoVetiAXfyCK!+057<`hezR
zsa2|ip|ty(^ww@zy{*O>{<KK<i<AbYR|F<Fd-g7rn<mg~cQr9iB7>v&6mR+tt1|cW
zHZ?BTzFLRTaRCKw$Bxw@18fCtpTSELB4mV5ANZ8QpL)#NJUq3kuI|>m?Pd>kU%FjW
zh-mHO)TyKHl!2vX{e14IXt$*?CR~Rrbqg|e|NTS~4)-Hz3HOAeS=K{!Ii5ef|0Jqk
z>|u8UqM&XXv4y(zsgGv<YO%IfbAZB5VcBYx&1{$S6i1?y)42=l!+Y{D4f<u8eRF{`
z0o25sHpJy(ZUErhg*w@^jkR~|F?A#1-FH<$@p2FyYHXN2gvsAigiaNoMBzgGYL&>r
zj#os+5brRlhiT_mDW~sHDZ+E36Pl)-XwI@@C0~!|Bo+XsARs;%_VX`(QUKM4Loku?
ztlM<ipkG5v1fkuXr3c#;uzLckQsR?qAk9iZsI0~zHeR>)t9ZB~^bO1E7k7Z)8`3Lx
z+H!rmTsw`-thC-f>Lnu4MzJsl1Z2Y&F7nS2CfJJ4ZrXunkZrPU*FCFplN7{5%g!r!
z5ak9fWX8uAQfDy3m6^vAqO8JX+{8TYCab!x{afQcMN>3%rBWm54T+3C`<lN=Z|H5z
zeaXjcI7Tg#-9{QLlaa#a-;@b>$}I;jQlAE5-Rm9-Hk8!er(#;7Cw675d-s&Wu(27u
zdC<@;-zdFVC{_0@^;9Xcr_gm*6Sj?3=TZ#uf_hM0-W%dViFs#^@`0ZM`Nb+&xf<fK
z@!GW$scdnbOwXM;(3dlx7gtHioH>v`{aizQ`A_=v|E<QTB~fqEeY4@C6%?<s1zCKm
zGGf_8pw8ApR!muzdM5vT`g?K0N_B0xaZ*2r6RMU~HPJ?#yPhl;BQh1wmWU*#CyLn}
zL1cCzI^_(`ms&LRvNm#%{gP_g{o$h03KvapgL`U5_V6*o`z-WEiz6WOL{#TnwF|&X
z8asNlV;IUY+`5JDnet&5P0(-IWi)mf-avzV$seliwCwApO`T{#a|ir#yx#%0uTMI-
z<UpLw$bPDx$co}IJ=0b!8${Rpr%^V~xW=O~5#05@V1**DDh^twa9Q@{lC|2(S4-8v
zSz%w38)g+zE2I6zCBq=EYA~(S&0mw3;5Oj^A+Vzgq+F{wR?)CpoHY>1gRaR6x|yh1
zq?_7yvC_HL#n^yD1m#hSNp^_%nq|wxHaki}=U+e1@^6`ul+q%mT<(0A$^@HbmmKh_
znxC-cDp-6P;5-i!33!L-H7pIB?>|E1n`0itzx8!WPSr-D&ORz1o$<ORDAvyefFnK5
zQb?4W638XqkW?TKK=Yg!X2^z%LawfT|1rA6PM|IZ8Cwjhw-)tSa$k#}ez*O<KT>rW
zZN-3Pv=!@uL@3oRirJyFG;yTMj|n76RDVb;O+MmqIG4D8&=Fye817@qYaju-7dn@p
zz%TQ9x04{PH$~<Xk3n|pS)(&1F>pJH`80)b@+hU48g~Enx^~4lYLCghlVRuVNgM%}
z%h7ha$HMfs;Nv<|3@)3o;RP}Vo^_ZCq1v8+E~)B(EGXt|M-JLoM;lV@F4)I@c>VqP
zFW-E^bEtb@)7;m0A@)bK@cALnsAeFf5}!j|A2)iSR-|xzkWPG%Fyg80qQ9=U0Q|l3
zZn^;6pD%s~hhZe@FY{)f8ax>#uLM~DlaaPe#q2&At<$*a8HNh&&QFSD8ZsVb;@YtN
zvQUWxmmx`9A?7$!Gv8<XT(D~_D991`vyEr1ZyN=80Us1%leM&!l3|w7iJ^$4kaWPD
z8<MuiyR(s1Sf-VLeaaN;l>@Lm?9q3Uw;GnxQO9Y}l4&UK@(Uz-lF3?^Sb2a#EBX$Z
z#!fRZYwp<99`GKsFMGQ&s3^#_6RxDh-g8R`J53_|wmFErbz<G7vP@-|Y9K&=Uc>4h
zjfxJqEW32O7%GMR#x8%zjvWnAc@djI-nC$R*G5)`XozO1o$U)*W%_>_3kKm?=T<Ll
z@w^1B;|PHwRhRSYMCq1IyEHP1(l+A^0(ytZi$$^P5I{}n67M*Q%?AQEC74n}d#U0~
zv+a8nT#9ka3r$3n>BTz;Xcm`OGo+`xi_7#WEkuHweO%1nOjpnfouYwYlM?~e2aM>k
zLNPpb`DTnjTinU$672}jzd_Q<Ci#E3#>{c_)m^<cy<OfPzdODB`uP3(yGbtpO77h8
z*!Y_9g`V+{|8Cp##~P)?l&K;aCo_oZQXF?%WFJ=Zx_D`RO|-)k9W<^XAswpjHCweY
zCWgXc_k7TKFkU<SaQUlCwjj2lQRNOLde;H!*lnPe%opOg+1(6>eQq(q(v0XRir6iL
zTlP0$q?1YwwhY5~jA26)b;`CE7kF5P@(lbEJoj1?#|OpSyyIq>k^PVpTQ3O|Fhy&l
z3m|O79eQn7FBTz{6O~KM6VcipO%N9rn08t{8%heH`7!H$;o@O+h0dDSDEp$h(({*2
z>3cwH@8wC83~+fh<C_L$(-Ku8M?;KaBcf2kFcd3G3#ndJ?n_$T%j<4YDAT^IyEGlD
zHALFZO9g@I^>v|JE9(%QCba^tkp|5A?9l_jhM|;wbTvB=?!ta<uUGp2_Wb(ccfY=i
zS(V;5pSwkfl0)WdoyaU1PEtityU9<9{n6lTuA%FhwnJJD%4PMh{#4Y-s6CxyX9DID
zMw`A{5dCUmd<+UG!rqx~?d~w8Ea#}kuyr~~>&6P$c@MYP2E18YaNAm;L`rq2e`%MX
zuk65hClXRg2!7q0)$AS96q99@XwCvTs7_B2ciJV;5Ut3P9|^BiB$J~Zf;duwSfT0A
z<v!jk4L=ge8?u=zn0yZCQ+Ssr%r!mc!A?<YOfMjcx7=|pK^A>O=o5zcCRV+i%qD%L
zg)8jVT(5T%Uio_RT84J-9JI!f7`E-8t96nV;OZ;SYxZ>>6a1Vj%JFChvHGoLQ_>IV
z7}t!Vjc-%kg4odv>vUeSlpCe*h>u=EM)>Bu8=4(%L4Hi#cKTY<>Ctq^D4)X-2!Ow=
zZNA=H1COSM?S809mU9vQLXsQdoL*tTK^z;s$(dUlghycd2XnHzswPFIjBps0n;K)}
zu)+^EyBIH{Nnt@4JMFc+Zq<5GxP|&0iAtB%3*Vl8^ZxsjPsi<}0jSj{BYy~T9#z^2
z-uzHN)Xx42C)QLnFR^A0q8Vg82IkQ!1t3b6-b=6(vk)B?GjZmsafVwB=B_FZNYQ|c
z>Ix2Qlk18;NPF~mIacz7zBn6S0Yxy8X6LT{XB}x4Ads;nX^uA8az+k@a(Ge?*V^kt
zm~T~5h|CY2P1!MOmE%xWa7~?Y;GI|W_KpcMO9$UfD~eHXZ~je^oThmkm993VK<1kh
zr%J~m_Z>eAIjLmdOn3t$NDja!d0CS4)4n7q9lWsj&3{0)y@427FU)M?B!7EJ+^VpY
zsHg`SfZ8WHTCprSF9CDvq=>sY%wNAOF;TD3^1+~la2d8onQcFOgb4y+W>MdeT~x*r
z!&f&{GbUjOu)S)tlVLX{iKseOvxVKlI$pQ)_%X4V`dfeI+_p_>qTSb=##>e`lT~(B
ziF4JKRShRz=K|Y7iGYhdouR$nG1gC1Kv}Bh>EP>I&BL|8dQ)J}H+4@pbx$aj`TA)K
z=Ggo0x0g>=zM)wVM(3l$<~f9(=GDs-e%}7w3QvETdO7$FZ7SmPg@MKCSTTG<<cJN0
zb_F)Zb_{Z#UaFuM9I>Bm$S{Vr>XZC*lg(2Y$vnPzvT9^kDL!-IH&U_BL$PvxVJkSM
zWR7#TxKY*av@EE}xTNxp2{4!!VFtkE_^ac0AMRyg)!T!{JpSO@S?gT)^(oZ)kaGPB
z6_*DPIUf4<&-d-wFM-OMfw}81jkG@#+y(WoexA{nFAt$JE1%gSYLlOSMxN{TFFa%d
zH1sV=cv+9v#|tF%zyYy7<*>aTOr$sOc~z9^WxdVqw!p7`p1^Z@82Mb8sZ@cR)G39B
zMsy1oJ)d5SE@xHtL7&~1{qRZI*TRgvy58mr7N2{*$z_8+YH?rsbG@ydGx=(p8)hxv
z5*stB!jn<+FqF4nx}guW*-iMQ<<~sF`mLgq_Xo5>#z!?~5)Ka=+2-vRV##=$L0<X$
zs0H(bvjJakKVe(8-@f{JU1{ORI9mF<o^Kx9;Ru|)`v^zQ<g4GJ&r}}ZE$xlJBQrIY
z4*#U97gO2Dvjgw2eAm%_tkROArEFy@lT<%SGqP!xRct5wcwZk={at~k>hot?p+Mz~
zhOMC+na!@xp{twYr<9tR<3$IbkU`+zHG_?2YktW2hbT11{&9!h6Zu!at!=4yW6C&Q
zM6bp&Wqz(B%BT3yOV$73GXvNY2*pCi%O_;K>|~tU*8j*OZ!^%t7C%S#XW#Fs7&Eyt
z=Itv-hbj;A7La^zXxygaZ61wq?8|=hLnqn#&eb+Wes*rTA)ItKF*?=V#Me!~JLTNb
z+gov4(K$cFn&0JkODp$%$?s6_2jgv)&gLsEHs|-3Uw!-C>HS>{{+`U+&z<EwW=<S0
za-mjE>;?*3$E1S<8z3<r@`Ni}&Q%gWc?hs=gE?=JLka>LX@&IDB7-P>sI6WT$R__n
zmI;@t`;!xUIRE17k|!Kj^K}}Tl653QzmbESq>UR}-(x3FU3?hYUWqe;o~p!0Q9JeR
z0Cn&ypxsj-a;F9xSF$Rs!H5Kj&<s17q<x%uW=TfVi&DY=-L}v*Yg>=Bra|z1mE<A8
zPAkOW0WaBcBoXl~O=m2wMM__hEk{N53)~OtxP;c|pAk8kL{J*&n)cW+iONj=T^gpy
zUUk?Yo{Y{%via(|#>$qqSz1sVr_mIT0X|Yb_;%fxvj@+_zljnD2dlSc?-#MS3}wOy
z!}zWZaoHjtTPD^X3tPzqzCjDEt3zO9v%3^_a2zu&=6BZy=q}JYvAVee7s>S|O=S5k
zm>`Tl2R+Vkdl$(GqcTt*+T0jfRG^PCw1{Za4n`^>VCbO?81UGpghcwCbi`%PL5hxa
zm-+^zbZP)3x;G~_+mW+FhKteBJJ-;lF1e^d4#w{^?_J+!8kC^Jx(prz9TO-y_&N>W
z#-hPVBbM#7N8NCN!l*(l9<WQv7^t+98cJw*wWs@@K|(9`E${H)#k<&O(6w6aXN_7I
zQUtEe>M}Bg7dr+3N4%(#z)UhJTT#cYkR5$7tJE_XcB`&0U9EPqY`Q9f5#x-2MvxS#
z=`{}I>MMDZx6Ed(aQcU#urk!Nn3}s7AdpN1Ga9TZfsErpSC@`7#a_|i9TqF0+d6Dw
zLh|1bX+qaTC=s)?uERtn<?1xZ83{xP;2it9Bu#xkT_qL?OdL`4hplHfjM&ZGjF_Q3
zatu4_z>Y5OLhqk@+l0W^Htt^n`sK^m>hQVO&UrIGV)2tM1ZK2$_9K5Qic_PbPb~%+
za-PJI#LZw*3_g+Mfsx_CBw8^TL6cOb;9rPs7VE)erAkJbku!~r*{4=-3<l9fi}tIN
z8+9w>UhJ8}V<1EQ+usI(c-wkOt0Nr)rE$3;Et8g(ma*3yin6)mFvt!#PCr1F_hsP0
z6>c-*nXJ=+%MHpGtr6t2vcgO+`BIQzdc|tF%G#NU@N_%Uf`^(x;qP!WBet6fv2zU)
z%Fy0guM=YGA5Vy&NXwgB*+Cc3F)4ptU3Dw4P{RvUF=xuMFpJRBo+`_As_cJzs)XGy
z<9gvM17+!cB!f)K{LWQt@&uu@{LwVpZ>G^Ur%~%~>~pBP_kJ3UpP5GO<^JPI^l+Vs
zZYEDta*2Oy_Kerr^KJTU0}z`-SgSnBr&SZP=`!@U%Zq!K_W^{s!!rFt<LL=}VQRdX
z1i(y)zC&mv^2oX_Y1;(b<+FC{G7;jOBPic=UqpvuW=LR+nir_fq$r@9%hJH;h>Ik?
zCBC2nDst}!F89;Vnan{s4ce^PJmJrmf?h!0N$ceSoNiE4@cpR$bV3Y0*<<o*6un(@
zc$VIk^#V>I=}w+iqRULvOn3tnnEEElxoOF%jA(E}x2DS~yzTfqm7Sby!w99(LMHkp
z(pofg7VW-5(0mv{ZDhBm9R*VrnxtcPRe}F0M@pJ~#(~RcrrjhyaK%@X`nSs=g=bE0
zUJNrWNgLYUWwjxnZ;+1)#~?v_uMJ6#ND-7K9-Q7Vq{ccc`JcQ1xE#ObXzr(5H%Qo2
z7^P&pZPl_Jnlp124HkY>*?LO%KR`NI{z58WTF2T8d$iBJHl4g8Me4kd2QD{Q+t;$1
zKl_?Ia2h4*UlGm{_|$A_&{097cKCxCh@qtY@tireDS^k%WzUv3bam5zKP2U%%2Zwa
z_)2;ko~r!>p!LG$Q}d)ZYp$o)pYR6E38vdaX92WFgJCdhQk-)>bL|ceZ3>q<zb}5`
zh0^dbWjNZpx=o_tsJZ>Z+?G8`smO^j#DMXH!n=J_j0se_8DpXGfdMic3`_f}Q5JY4
zcjb8L#gke}7Gf|qk(Yv+u%@I{<B)mK@R1-u<>2e=5ls@&R>l7Fi;4cosG=fic>eB7
zQb=2usrr=(hq}`?)3}FR&DvTFmPe|@^=5fE%sE^71C69zerI**-QewZrTzokmHO}4
zuB5l^N+s)Z;Bq@`yj|fev<9+A&gDWuw%pEM_YWt{)!OkB$yuBLpY`9BTtT-ro}u|_
zet~AomJFNeeYxCmAaZywowqfB&(t;&pzkD~2N$dQ03U3F40}5UOW=H)i1MkbIAmZ5
zT;lZCL#PEu(Nj=ro9b|}F+;k@{17=o+nsaUT&a>SIUG>7l?^!Oq;L$;bm-fxgJW(4
zddmUP`Jjy%r)sc*H9NP;EQSucTOHdh{@4n}aaY4c1<}dZ7V287#S)v=sDQX1W2yp0
zDf&xgM0rZ^9>70Rt?32QZnFUjRXc1K6wR($dIfgSet!iC^1NVYFIGa+JBvo9d-v?a
z+OTI(Y9cl48mNoZkrE#S??1y;K@PFBaJ7edu|<uQ{Ro@E6J0&LX>g{bGz6ZOX~B?Z
zNRLwY5zp3DO^VjCAyS`XD(zlG^FjTw?g$1Ga$B!S-3HEd`;zSJHZUdCLhlX@FS|ab
z3T#iWYUv((GOQh_@beH;OJ&E@glyXyZ_G5A?#}k|px#2zR~Z(GlABvmhE|>32T`Af
zMEV=k!p@O2i_yta0x4RxO!l>odsU=i2NEio$Iin()xN5PrH&jlye!z4ZtJ_X;s6bU
z3`Y_F4_@PAl4zWa6x}y1<YURd;vGa;OjQ@PkPC6wHE_yGbLHYVcao4HJ&BA^Elk?7
zGPB9Fa9BTTL^2<Zwnj9}bz|DI9;SBqOTI?TV8~No>lO&x6s9)EmbN}6o#n7RbdNrf
z4sH(K7}_?uuxm|I=|HaTFQUFSz=~y(<s^Df`p*H30AP8>v6LP8jDn}1ac*ZSls%?1
z^x>d6UW`PyGR^8D8VJRTGHv?o)$Cw(>0<ZIlZ9p9(A;;kKTf0+QrVb9*C)8i5b4<O
z7wY1;o>WcHiP1L=fyQ)aWG?77TU^lD6grW;I<ltChxYsHVogz7dWcV<s${kw*+^e}
z&JzQ%k;fZ&#2}bC(l;-Gbt(g%;_k7{T4}@TXi3KnkYdHhxBKy@GFI5PAF|O+2c~3)
z@l_Uf%&z_?i`X6BD%prYZF6jbZa!QDuq~RS-ho5R^q}o)oRX=Bt64QBYfc|KnC9Xd
z$*RJEoKC97m{u3E7}oT`a@3(N=f&pHbE~Z`rCLS_GZ<%LA$iOxgWpvr;4I_&*w#1b
zhmf4*dtImF(B_cz(CgZF+7k}1jj0TnGh@$7Qc|VT$|$B*Ru&%K*MiDqrDI(8HnD?s
zbxp{i*lhI;E2f`lYSg4XtQcrp${E0|*tL6}ixPE!r(+$t8Uf{HqTrENHb7cWG8L*>
z2kWA6uIZ``-K0DxZFUV-5n4Dg>lp9qa?SQENK{H&%s>m&3)1`%#R^vtKlM-uWbXEF
z8i!Aa=ss$+4O2q40uf7@PF+IpW62x<bHR@=1fCgWkQP1^PBZ$2Y(6#qb7I~}T7W%+
zqQl9|;|&Tl2I1OCw{KQ^Rd<1O-P>g4uIvb`N})*!>vaT4nGNy?Rtt77kf0Cn+927L
zU6$O(@4k#3{!aA(o9apHC(DzmbvN_MGe}O~@Gv-H$0Ua^?E*YhwcW7?!5O6va|4um
zPu_6ZKPlbkiqdVvC<va-d`IZzax@z4c$>|VBf&bv3zIDAm||4-0~fLk&^Z}2v7XHq
zh&t%WS!?N_2L<1`C24k}?p+J?SHQW3gZGEB^E@UAh<x>V(e`Ut(SfpkLDUeW&^{<M
zYioacIe+-`Ck8D?ZSK9!l!h<Dl4+;5vq=+?y7`cKJeobP4fx{Gjy}(M_OTk+X3)O^
z%~1#Kj&OMkitu}ocAmsjXl#ed*&ZNW`v|r>c(V3$@0cY>#W{O~RSgqcBBZHi&V=P}
zAmX03c0~1HpV32Owii4;wX$wT@wPD9s)Nwi8Lv9-F;_qVlDnrpl>+WCIA{jiXwyE$
zQ(d0s-aaX$h{cpw<9-fPF&+}rwlh+#{^a+tn+E-l6BlaXa6Jx1<M2Ut7U>WfgPIQ{
zi3!}KAgx;)qO4n{V-+ogGY!v?)b{k6S|d=LV_9iaS>>{)xN?2Q1MKuy)ZPILt}{4g
z&<AQ`5wq-cpcHYb9cLEGmY(wpKBYe|Rp4w-4a~9h4Z85`Tpg>sXNW<e&8evuz}OuY
zs8A;_D-6P{;giE*U}ReLoRL`QgkG6l#vWZSQEJl!P&DJ>HokiOWaq2?Exe#Yj)wz*
z<DtT%<+~4GZ{}aA=UYz*8ZB9~e~Fs0p(PDZs}&0Blngi2e#@HhTeNen?Fx?$9;MJu
zC(BGwQEXQtU28-(g`ZZfv#U9l>1b3|znOxve}pJw&d!%@(IgwDZNUT^y|-I>)2E(o
zx~ib<ijN+wi!xj*U~>=iOVvb02&P#shQ_fLX~py^Ksx;eP#`Ljg(1{-(vX_rV!J=g
zkYAL=GS4t*Yg%*ca+rd=E`c6`<Q=T=mv_4ZCSN@s6jJ@z+Ur`lowEVA(Ln;3@I~I!
z!SXcWSodf|)zQv)EwF$OTLQDRaM7*@pKs@scDJ>u`1qeURrI{p?OiC8fRTJ*x1hls
zqG-Zllx344%aE}99@;&7%ea_gJoJ>n>i*f=MUnroIfIRP-v92`A2#FAT-Vzf-U=j9
z6IWW9VL&W6iO(6O{?RpT2{cglgZ`_NstY1aYsM<QH7aXFxH_A+x83pB$={0NoEI~+
z12E(>k~G$9Jq!ht(q;|sKd)>Hu%d(yy4skeMUbIyk->EEQS8f$ng@qVEgkv-Et$tB
zhZN%CfT$sQv|IXo4PzL=W>Aok)ssqQ1@RCAs`g@%(^6oWX!+M<wq7H`HM{i5XZr)m
zGn{anA?uSzYS)gXvlcPcngkub@szL54Z6rK`ySS8mo^zLMHeyf@u-T*6Q0>LJx0eH
zZd~Fjtan4km~5|&j_N26@;G`9w*IRprb+NHLwwOwP*=lt2x|0rlK18lXt6;`jy#^>
zc#5JaUTCw%yq%V5jT|(@-lIS+b?N-OERr5=SKSZY{}#bZHyxkPr{m@OyKPGRW^Pj;
z8~gfdk95V=*H@jszN&nEHT(LS2kPC|R|9y_d&Xlp_^JBT&~~ZM%0|Av^oEDJ_%&KF
zgnFzBZqn@TD%w|NwV&8Nt&qGQ&_PaEV>ZfWd7^HtT~kw7xZ8lhOlqD{$vjN@?czEF
zeiwc-v5TN67OXgs@$@ZeLL&vwnP&am%LQ8{dueinaLSlgdl|@)Og!zG(TJhy->6FN
zUbMBv8?+>OoQfWzM%~)wv!l6bp?YYr54MXMoyzt%-3-+NnOv*a@j>c{wv?*oEi}~a
zt8Sjpp%;D{F~SEgumHJMy6(-ndQM{Ck)BrD5e%*VV(IGj2qx9*WA#cM=zkkV4W)6+
zX3|XO_MqlG7syi(CzF>2oC|SH2jP7*T>f&$kB=eAYib&jZn8UA`w78U)&ZzUPr&<-
z7z~rB=f{$nbb;d`*R5e3CZN^ruq>^!)6$w8LTiDmNuj-0cC>Z7M=?QLcW8$wQVq=!
zx{@Zzk`$u2H2=_ku?2ey7*(U9j{S#jL0UwK@e!rh7m9><Mf>n7cJL4nI2LK*bvy7#
zeg1OX(v%;!qC!1nnw=Buvf4H9<?Cn-8vChpe(WbKF&tzX`D~t*zW$u|pROx0??9dQ
zETPI0YK?`NU`1}iDQ=Z*zC=tJ69Q=~;n_msn(R0kaUw0uU+)6zUN|jE2*UN)U+h18
zdyaTLh)hW&PKVnxA7_r8<;deSGo3FFx7C=p*MPNV?27r5v1<Aom5zs*{o?%pzFIeq
z?R%~BKU(W}TkE*jS_YEkOSNuysQ#O^j<>ar*IL6W&VQrQ@kgM#qIOG|mhEl)dr{3{
zbhN(<)rcWR4ytu&LzS>kmw3(Hzh0c{51^WquaRjnB+o<Ny?!{ozkGi@{pJ&^Avv?@
zoYU&5+pC`r0&iY+5-vQjAU`?yuhtF;&@hbai*!vBh>fSD4`eXSOvoI;wmEx0{224l
zF(i;mMWhIv*Y$v{`lye&l$k{KcMd3M|6tXOke3hNeSi7zyRZLv{>}Y9BV<|=$Stt{
zP2M$MonMR@7Cz~4Gfid7-%b{EiVOKX1N<JY?-r+qnIaKG&SYiYM!U@_Ijf&nal1z3
zkRNo$h-W9O*Ag2mZZMyre7Q_`84fA@nN)42s<6*yIP*AD)z8;|rJL#t8|d=NZtz`b
zXnkwPzP{VWYt-Wx68L%Ap0gj?pNp56*^#cwCpw=PwkD0t<9D(3+gzN93%z}=of^qg
zxIT^_XMS7i&*31*t~qQKdQHjknD9xlE|D$9r}b~EHV-dQnByPaeHv;P1#(<3_N0b!
zqF6MBxH!~G)KfipyXb{t;`>M*4EZZdhIr}+*9)laKJq(4n;CJ6y<z52732WJ4&*CW
z6+Tvr*XEZm3&-|4sW93*%ZvwWXvi{Eo>lq;vNL7-)aG6(3S#ZotHP1M!XE^?!S~SZ
z5k>4j`9<d;RA-a=7h+BOP$v_D>Y@;48M1m|ik4ALfF{{R#M0(w7yx#|?DVkJ4MUFS
z7~<@>l*NN$aJ|cGeO=V4v}AsySl{E?-F|`YQG3m6#ZVva2qx({vnSX#YR?*%Ids16
zayf|;D`GUe2hv#OW?0S=x*RXG6$t?tCgLQiIQ@<Jx^$gIQuV3+o^TbfDBjgEK(uiC
zJ{hLbai0<A-?y16<n%dQ#L%4G{b>Dp8e|tk{4_If$O<o>)7tmPScfj)JlzjkkMaAF
z4~tjF+}jeajnb$Tc6_+6_fv$|fp35R;a7jTTLMODI%;+#-m(`9$Bf;PE-U{u?Q#0s
zz|^FA)vv%sX9wDX<`3-ZD3)V-E-TEI%qe=yt;JtbMx%_43Lb6?#42j*-ty2^sq4XA
zZ4bV=3W&3URKLSxY~dkAtTrQD_xKRE|EX=aV<-=y?3I2{tiHThf53m7`5q&pGwif#
zdWa!CGy&_1Rbz*-@qpq#CZ^&Xm4{4wq+k@b57fe}hhnn#NWIsp16q7w`GD~y<Fgzz
zvITb*#RqVy7Y~|X>O-J<AYw`VA&vkVuh0`iugh@u8Se}2n1ebe-1g4)@0W2XVQt{-
z7M&Y%Q=+`iVFV5?C5uXIwJNrAeqb9kE7fU}YoCmqLZi#7+Gmir@^bJ+aMz%A`WWG+
zgol!;3dP!Lbi?Is9kv=7*=YObpTR*K55CeOaEyVR=Hds(L?WYZO?1GJ1s4i~GZAM$
zWJK<CLfsw~;W<+0V3K^`<7Io~+J+Rc+?9#n19L$uv~=s+oBCljxwVHH<;)3Y%l{z?
zS9L%fOy?T~B;cWL*)regU4|8fcU{y`3tiG9N_QeCHLdZKboC?n9L%e`xLvSNBNUhO
zgL>x_pz8-1C_+yTdd@HuHq^aQ-d3_vveXrN?G>+zl$<NM#YPU8hhh;--SA7eHN7r0
zG!2Ls+PwjvnDMjB6w|mYCV*~Iq0b(7gwZ?2XibCa-XM}ep9jtA(H=X(9G_~F^30~u
zPO1%bWw+0T^YkFQwO_;<N!2>lzRmKhIp_Upb2ocu)?U6Y5^SvUZo@1Reim~@N!+(R
z8da$d+92ct9&R0`_k&;DdQLya+z@K}cC}_un4=jlqUqvSsE<k=t^X{CP6SKecKzNO
z5v~%ikYyxEOH?u=Sc7fCfg^w;Y1$?)nIUb3t)8^%x1{wWqgr0INh;*m8@no$Owka~
z#dXF4sUb346U=g4YUpz=yEdpz;4)^2(lyTsQZlh+*w>kxfArlK#){4-{K&S$$##)&
zA9=BE2#E@&m9j!8z%rAQ7%B=HgH8Jyjjdfl9@6n6%u;<h58e8e&KUFITWho=e)#R?
z_3-OIemLJdEsenx(#=$6*{&z4K~B$~RHhr+E^;bU-zkvaGaSLws>BdAua!`ca(WC_
zQbRa{xU35pEBU0bJFhJ&L)mk2K`*(iW~9+k%GRk|z${*I3hyh>1QEKyk+`;UC0K)~
zm@pL`*$@}Dr|g;ilw>?Ll)RY+)_X%-AX<vrpXRquIjBYQrBuGxE2T8#?_H&9U6iY#
z<opF+^Vh|t4sXh@9|&?kU%vnDGs*zc^wp*{k8P>dMjF$%Q(VpKPQgC(qoE<s*p5hS
zZM)iGW}{wX_>srv(ucLtM~;zk(Q}`Xl-%$s4W((-v121bB4$#YU$EzwBX|WCCKR_m
zOiB6=ZMEVmZmr~T#-Qej@k>daT9{?EaM8;H=?(^!juj$L@aC~`_WjEp!Zu*{ly|PM
zV>SP^Lh-#W*5#MWBaUV(LH97X3Wxo^?xQf+S;kw^!%Y^56Z?9ed8;75a3X);k52&>
z6CBhm#gAr?{5Q0oowZUr2iKHyii((-tE4`2cRGKg?@x*1C@3iRg@PCzZpBT?<t7Kp
z08h@m9E`7PC5FDJs+*WzWznn993EjvRokGKSnIA9a^d0G87#`+a7E8}qIWpp<O2?m
z`)Qh))#NCC!7*!#{H95iQLdMaHU~vPy{!;=K)>~_E_$?pk%cdO(Pzv4nbXJ<ATd%k
zyUSpl(y~i7%*jXw`6uZ>FsyQBt?EL5fIn`BN=drBx(Xh0GutOSySEEJixc<}Q;gHU
zeLI%<)#9(zp<`YX`~sEck_~GV$ZOZVN9$9yR~!xFh)DSmIOV<!bU~`5VhBwz9+23#
zb4FwyM|bEc!jFeIf?a{@@NZd4B3wuCsUO`P=tq*ZcVp|@D4ifNgtgO+FR|w{g4cp#
zM|p~cLK03DrBFOLdBXwVqjMBfBW_K^@=01vSt9#7p7L7hs(hx#d@Ak(TrV1xsFWfM
zAT^g)RWwYVVxH4oU`12wP^D?+g;Go$E1E8H?>$^UkM1l@7(zi9&wn|7e?DG55&j6%
zHAB@y@q4N?WvqYdc#-W5<|SP`w6J8wLnvGghg|(WBMgp0GrU(rIht!F!L)VYWgRgU
zAD0Y9)VXzrJP|}7ca)O3>Eg)ccGww)rD%?Zx@6Lrp|r}@oz9gbXoKhp@IlE-8M+Bi
z7yEh7gB)SW7(RvWAh<D7$CwMbL&1ib0R}BHFKbwr*AOi%iuUaoNnpm1ED<bdgf0QN
zR31u~%Fam}fX4E^kQX7&(Q!h(!X-HdjF)KWv>TFoj_JGT#)U@|HY4jKqcVHHx@$9$
zZQdE~-C!G5qDaH*T%KS^UWO^rtY&k}tRNDsV(;D&Ez?|pYInkcBoKBosAWA)lKuU?
zFWJz%rHJGZ$3V>(L}Xi(FdfXgYbKJX<l!LLwC?t5)}r@OVgCj_fKV*~up7yJ_(g7T
zP`R(W@^#4B24c2Hp3(#ePvTsflhs<PCcsrY%+XGRRh`@GmFp=on&0T-Kz?@qTHnf<
zP?#A<GkO82wv37(JBV;lD^91iOI<h&vKv7zM<)#;YSk%mg0=9p9xQ|q@7GWgHEH%g
zWbsV<gp3hR9Cl=#4Mh`ku!f%)TMMV@J)lzYbffT66X?wpE3Pt4K;kOvl3)-~tC~G^
z`-VZDXWQis*MN0evJXSCQx~^0K_;#E?y4_XICF`fw89|!Sw?4D5zrLN<UD+~XtI+q
z#FD^1jB1wV@K=TI5FqM4BmBCf?$M#{k)_;={<4W{fGUL1GIQ6}@GrqW&7X-E5>vx)
zn{2`_y1weVEh0%G>mT^$;wLWNuyaxG<R7Ts#XtPou&>W46zI>7!bUfvpInjkOW*u5
zq+v%kV${bkR!!G;O2#Hg4Lv#U!xz4}e5nQRbba*On9(rsa-gxsGB_?@K;2#gx6W^V
z0NaNjS<9D+RqBHvZuadD^v)09`?-yOy2i6cgdLJ*FFcbU=!(NXRq5ATQb*F@-v5EG
z4nHt(Ozi($#oq}B3e=>bzq}kTFQ3Ms{FP74RU+@z1`tsS!9ISoiaHLMy!__fhz1$o
zdf>^TsX+T8<pSVXNQp1T-<6@1$#VO0>9*J4El+2FAGY6|teHXKbS6)`@n4gj_Xy?m
zH_{%;<m>1KKBjkdED#W^OHTw1>*#h%$H)3ad>OdvWd2ds<40#btBp3EWutS?a>zIv
z=iwK-=)5D0<3L@co$xQo?v_55dQI7s18EzxN6~_gTG=Elwi6soTodCAAv4boJoAF~
z;hXoDmrt3&!7k8)Pc0>(+?v<|b57Du!BA-yx$0@#A6#EufR<Pfy7T0Oe0Q-)6PN1?
zIl*Q5|4{|8p<&a1UmgcYmzO^+PZ4hh91mEH&v{TirFE1J9xU1ScWq0oIf=@-{}T6%
zWH;u%+wnLyx~%a9duWoKgYqdJrLfv{U~(J}_~^1ab=cO&!povBB20{84no(qyP-|J
z$k3Z6(A%_x#O$sd-X!gIirQ)nQo|W0Uy}tXJITh%fKZi^Y8<nw#H=XYoNT8F6x1Te
zXGf9LQI+(SC(XiE+o~!$4VAT)w)SnwaT4Zsv}u+nj|2*A`>r-h5tgECb69OOU{!Z1
z!Rs$uMa8PzN-NT!jP3vi3>vPnKes66bJBiSgT|`<RnSWc5T=I6%46Au4nrh(6^b-o
zes}ym{>twZpyKiCf1TUpI>gU}5h_!C@h`=NwDk*w6K%F&^GAi=$)0X(um@&9=CttP
z{<5e~e7aQl89pusK&*XjfR}|%^O?}IC#a8|XX7nSjqR6$%{HuPZsr%SOdw-g0J^Kl
z)sTbi?BRTZsv*FGtBE?(0&Q&>JEV!LnJHf+=MtigB)h)Jq7%lT9U4pvzb-V;q$~;+
zu~V3A(Ym+#>mt=&xq@a`%7!~FYAUVc0c?V1WR0nPOoO~sb}y5(m1c@`lfHEv0=3;I
z5z{xdvN<s)vguZ#2}oA%u_1A#c)pf-s}H1$q*5I<mhc#Q(&>s_Gsl?W*j4~1iw3N!
zT^)`R^E@6R2g774Qxz_%=Mc3-Pf66bHP0%blYv2M8&TSb#(pVyExrcTr>+AfF+WbO
zgs_@+Z-yNp({}F*%A#ByQx9CsW<y@CfNkh!5KE=2Nc<?=UY|$~>OdN792Fih%GAHO
z{Y#*nE^zR8kf7er#8;r@uzaU6rFVUEyf43g`S$YtCqZ$K(t9i<&s92kwWZU72tKGW
z#oGNz+tjrWbSF}kg;aog*D9l2NuOJD)XQFJ;@TAbrU;3#P_<fN0!4bNS6k=D?jL8|
z*};Zh3&B&;V0<wRuUdp+QY60;{X=T?;!MMJs}UEgwseUlD?Ur_3jLHslsU;GaBH@N
zta)h}9ac4C42jaSMjH<PyL6-3?W}!iI4}!ZQdcdiE#!qp<|MIH?2C$vDm;h%SD;nQ
z1yFRVa?3fJV7Q}tJsD+zHjXLtkN9U<74CFp{06);x%4fmeIJ4W1g~1<o5Fgn?ixEf
z&Y8t4kG>@O@W|@DHP<&wf<b$0q+aVdF=cl%O$zfRTGfuTxCXJ~Vr<yPjfBd0UeK7|
zGA;{cZRD}_T#?Ru3yG;r{;*2+l#!Vxa<!c!%JtJ}Rv%S6#^!jFRVILIaoir>kzIir
zs?>1Sz$yyOn3M0gjB6(Mq)EA_s=*PJu%*I=d0jQX<pSLe#UKqGp08Exp*zW)bDKZ5
z`o*Y-*wJRNtMp10FcVr3ttF6A;qR|O{31oDLju7fR>xx~I6Tu}P1KPs!&*d+$Uso6
zs{VyftgJ|LA%}%gMo$HUlBpy1q8m)!RWU5MF_Z$dC<DM|GsuGHm^=;*EQ%98ia7Zz
z9uc5UP|oBhS7akc*=W;AAr0m^24d`v!yO8KhVa_VVAnaWfT*?ef>|R#oggRIz}U-u
z>%@NEkT|w3JE7t(=g!@YPikEZ`c=B*5=dD(NN!mUZ==@dV7-~%WIMcSzL9E1D#$8E
zmWMG#V@(i2iDjY9+B2@U1A@`KI-abzt<gQ$AcL_o(>qAMW<1(J$&EHpsY)#nY(?fk
z(Ky{Hkztbmi0w(s`fMf5!Gi=RWDGbkLFS=~<=q;66V>!y#_bIKr4Y*T_>GlXR!qin
zhbvUf4K9gY$j1SFZ({Hs?&I?=dUqGlcaQSx|5&(_eaQdcy#0Uk_IGXG%Gft=Yn_|7
zxc-0h_Al7HUB3O}@4h*mzy0Gkck<Klwd7GV#8|;byU<r<(XC5U$Ydl5sMR~UUqBHE
z(miAQi<G89Edn@~^No_2GIWpE(DTZV=P3S=a}irXqAxlZ8ZL)&UKqLx^646>LR}dZ
z{!u+;*;JtDie{)X3xGaXefpwYO?+Fq5GNa;6WwE<crKUX5U*!VA>^JFWQfv9N}0uN
z)m_yFq5$3boI77F03k6|CcDhziT@Cu+W?(Nw(9+fIj5v3X>EipLyI7(geOi{Wd2>K
zInUf*AOYj;#W#>UJ<QCU_diKf#8)0~<(J#?&x?o@auiS{+L>I2*&BuXg)HYYRiW8i
zU0wjl;HDB;6>v&-hBuD(#V1tJ%<0i7J>_OBOd54(xDw{>q}e(89Ed`=la=%?_-YZ*
zX@UrN7C{>Bvm()*F;tIAJ#<fUM#0dex4UU#6*0ONb^p77Q<py$J_8FP2BBjG5u!#-
z^2<zx<49pgngZ%6;ir?;9CMk^G)Q<31-coYS3rPGmXm!O_Osy7>W(TpOTcykhj~ue
z9lZ@(W?wpWGQ4!$)POYS%hKVV%)}hl5X*=l8OrPhY<MVI`l$A_i>V_q4|{0Q+eY4w
z-=VwQD!6+!CBQA~m-R4v7-8=#oGcRPGgCr#6F~@BIjw16pLsk+G)YZ7sF%DldalDc
zialw1IX5m?uA^KFrP-vW5iHDz_3U{Rk?Y%h(isZeS-<9d0>5paQKDxQ&miUPZ(lt<
zI{27O&IJ-;22&;{Z4s!CT_(*x;vT5CU0;>~g(5K$Ed3^>2@#6aEE)NYRd(9prVly&
zFjI+f4iV3McuSvh#~v)2ZG0fP2uFVdHKf4Ao!z7+bQa&Y3n<RXb5!KP;8FxZPovT}
zv{s>bZ>*@0%57KjPVTNG+Avi|jYX1^l)Ewj;v4Q{X4)=u5Go@&Sv2i(yfHIh*M7Ue
ztE16Q^5Sl)rSTyby45Zghr77$)Oh{dw-gzA;$t$A1tVWA0Ln<Up;(vG{3l&1H#(mv
zmCBgrb+0H?#eL44b;+*FJ~GDsccH-fjIYm(6ViLm$$_5rB*p9fZ|*L(Kt11o_x@hn
zrG1mE?V{yvmD01eMpB{L9_)XQeoU&sPE3sPpxBx9XIy(d__jL(cDT<`UjyF#j<Rgi
z#qY1bU&hvi&%R!`Jfn3Nwj$)0+_#zLT5CwK1$yeVQu8jgnsftd*KNlJ{yoA3R^jLO
z?~lJZ{{CK8`YR!)V!(>-=A&2(X!9ogoH66cO)`#Tq#0TB#R_^&Cd3NYS@2uf9PKn!
zxt+>-8SFE*WpO8(bjg$46GnNrtV@?7eIlPFmP9}cT(=^+WzS+y6$w6241xKdA&FUL
zJ;|^KyU4L5o7N=7>6|_&isH@?QDGGITnAeU1KQWcK54LJvujof{HPV$ozy2gs)SWd
zB5*<fWL6ucREVTguJ|8{2iYAJlOeK5pLC@eiV@bRY|L2AEZJ5B;S{?xBHE$Id86Gg
z<RLCk5nDl|0QJzC!)UUO2?t8%nB=p+f+*Xd4OgyooSpwUaEhIr=YnxVP7<Ec$5LS`
zhXmqjPlC?{Oq0@7+o!b%t7??KW%CgqQhNX0^3D6xZ|+&JJ&6TNr-AfQ--UHOa-QN(
zWUs^O`VtcSmLtfRFLd~SCnc8Z$XDEp-{<WMGL83{p}PJquODZ$^euTy&<T0i3W1Iw
z$#x-VYd>T>e8&|c_U%pcI|Q<*+vHo0VL%kV&Ju<rX`!0&>FZ^G{VuBOj#XiAeRT$|
zAPR<BkaC_YlKj5)Xc$&VsA!;M>j}fhhI;q69@pP~Z-dEEZ;w=`j|5=M4AfgkQVYTS
z^j-|c(_29p2e>y;*s567sO0RcVAU4H&ZSu#9054V3k)Nf^Q=zN5P#A7fQfQ6lf%Gp
z`23;;t{LFMLmzMhzjr5hm4kNJ{RoCy{IKA5g<g()pw(r{9d#$gWoa`8zw-mq>g9!3
zf&#jR+R`R2_CH6}sTtyL`=Sw_hDk$SNI?N5-L^|OF*RiJG{EJumE&#AE=p}Dd9C45
zspj}p4R=FeobI!Gp-LkfiU?+C9aMuL<<EH^Vo%sH&}2n;77&DsF6PR3Z7~&di-(ri
zCI(d0N8Nt4&<xdzN#0b7$v3#6ac^-_b}^YElA)*_hFj9F&XC$<!CXBZCb^7q&q!a|
zU~^o%K`V+DLl|2bRPmR2PWi&NYZ57MQcF1Ob%=r(GiFU*et$fDYIA2+M6c2wWUrXD
z(v$-iLvm<uoz0Q;To*q#=vRbi?DFj!gVl-RSag-AfHvVew5Pb-yg96X`V<vN4<{5e
zgLZgJmVi@GQrP%s1TEX2!&a9?w|vsNG*>6X>{mjjPrP*a>CL<1AM^cTMf*igh;-w4
zm{~0_jPAydFG7JqP>}X7{bAVB-n3!4X~QzxP|mEJ{3+Y)3)!}}Y$K5uNJ!9?Yxg*D
zRX6kniyKt|&i(fPw8y6ayKevdac!e2>gt}}dV6n|*#9bCn=usF2Rova_>lS8H$Kfb
zb(++oFZ1Wxl=UiX)DlwiR)oliMpeH-RRy+9QP~l|pHmK}=bD1jLkmt0Wh8z*#n5GK
zgfsG4g03#1EN>-%L5cu*PqEXP3=8&jZ>Ss--U(_)CbOdx_*L=`zs7sjhC<<vnI#Kl
z2VH~}gT~72mSF6T(@m8RZ&kMW6t&&E`-{Vp>Ey0=Z@VacIvCR3V0h|*-B{#lz9YYK
zCBNX(UT7@4COPU^-v4<Mj{NS|pU6c*ms})Bbt*+nC_}{I1d@=X*a>PTr)2K<Xuwj1
zhb6>UDcQX1>9k;et3=W}GgJxl6Q?R?omnp(KNB0!3vW;d&!2hq^MvmDmi1$1T2c+k
z*$`?<&tvs>&-{AKdaFxb*=;C;8ytN5`u@9LoxlClPwqUqhU!hr&@Ll{r?FwPvUv9@
z2Or}c2ApkT1{K7VPobl_&%-mlSSXfNHEC6lBW#%<v4`DKM~NWXINP}>E?Svk)gtzU
zHOd-}s0x}yX=SA$oG{obtP~OZ3p?0X@_g9<IUQ>3T{B2XaeY~`wr(%j^_2NUC=dpI
zfBeL1vFGRwTb5BmlzFWVJM6#_?hLJ)+3<_@n1qfZDA$XAoI-O@Ij0K>{doOmY}Q@2
z_Iu5_zgwRZ9*B#*VOkBH0%Eov17o4cM?{koUc{qXvYL(#+T08S1dP2%x-|u+!SE?$
zg&*Tt8?5}rpfv3YzPj2Oo3}07leZ^DyT7&4EZF~nniyv7W;caVl|3Am38(JmSlgT7
zGtHbGnjO<NNlL|SaySmht2D@W7D!wCVZ(F|ZoFs{rd`r-_RJ9`L=Lzzga1Rgy8<(;
zc50BK&Ybd^93$JhnkJ0(DkZvoA<+uMv;}o{j$|F7T7_T1FYuhDikd6jpBxRpfF<0p
zq)xD}giv1!+^J5oNUP%)`J+(SPh2xdm7`Eo1gTh_5)JN1<X`L>|0&ka8#e!(gzZT)
z?r&414kUP?QF)U1U(O$X_nY_MK;!Ezv!U3FOO(<rjCnz_^I8{J4M|d3{dt?&ESlWL
zX~<cVPB<;*sYP4(k!1QHI@j*7D(PfKSFr;vnJ*r;;v~B}{gt>gS(03*!tkp&Shopl
zmX<_sYEdi*B6`6t@omTslFQ{5Bmqy4zyFuBi@M!R!4TbLD{WcB(UEj?#w-?l6b`Iu
zzUq1D;njy^I8bxA;C1l3W!G);R++$ch2eOv<cPI@u?K@5s94+;zwSYsJ&3C48L@o<
zyI-2vbKRa?QH35|9v{b^)%xsH1s_L9GI^(kfAAc|j}!mblDxR~wUDY}P={waDR&RA
zThjlgCAS>y;fl$lYlQ^WT4^zMn1DT4r}>7ploWy-g+<YR>JDh!)~dFS)zGx_<ZO=N
z45hINR)%J|NrL=n-4CH1HkJ`=%pWE2x=Z{JT+KKxievJ6#M3H8+;P+qs-&i6yz152
zr+@=C4x*gL`Th$qH?n`c{PqWj0AWC$zwauJ<ER|8kq)G$gLU-58f#>w#Ly5sWWdd>
zI;U{1#V_zE-nP;%CT#@X@=40i+Rs!PW+ux<P(h40dYy#Q7@i$J?N~S1&vUnZCn@Qk
zv!>dHOh36arCyX=a`c@?_i&&nA{@9@r~7a!-lo-N78D61fc9fWpuP$29Z0i5iJQPN
z76MX8w*V-Vb0@&qme}QaouoZq0C&9<#f9;81}ABcI4QOawNL!+pc=z^7S>Ic20(1)
z^MeL{>@GyRJSWxXd6xI~M^TK~V^x?0`j?<WnJ#hq2?L;!i`=|hi5sv4y+2*%<8?66
zIF?GZ>b0d*2UpOYOM3B-wD^frU`+R&C-h`EHJ?H1m`_q4Ha1n3G`{C*R4aO>pIrRn
zMaiRyzVm38rn}mGr1bUUooP8R|BG5a%z$aFARLAzxm$ajp<L4-J;1q!$llI}5p{;C
zurJ5<M?ww&xY-DrCRsVceny%v=WDZGnI}}nlED+|lVk3+`ZFpM!pj4)u)xLub_Q^Z
zeL6MSL$}5ilT3R7h%2(-FaJP;DO8A?5ULzqD|XH*bP;nW0?~~&N{&p;IGMSx_70f)
zocSD)in#7dy^zuiJ>ybf4uWEu)4hXz!><VUpfw`xVIIb8kW;&5ZOy3^gcwEdCBe&+
z;e)(C3^}C#&*@{0!LUu~B*RA4o@zlUF6jk8DYf|7nGyt@;@QeirykEd4>I$>f;KD;
zg>OzxyJlYMsUC0{PWdZ65Tn;Af3@(Er_B%MtG}HRfBx++e|P)Q4<s$x6w)YQSM$&%
z)yE*qsRP&K)*UH@ZP4?VnRKo_8O>_&`p0t)L}=$QPBpE?UJ<;*G^d{<lyM7^U@nl7
z3TDAN(DO{`8L~|qg7fOASBOyhhsf&oJerohZI>a9mOsZ4WQ2}8J7)_zIg6}!AfcdH
zXAQ0F)cZ6n63RR*+y$6+P^4%hR-1^}skp71UtO{qIu^<W9#k70RbY>TvCPbwyS7gf
zTI(UNSrm8;wl^~P-D;27YxnWl`@9PEp!+PD9Jb1-QwNMzsijVF;lN1Atb=qWM+s)c
zdVO^frL~bR6c(N0l_Y?!BKg7RSJ~QLq#bPMQQ*YIPdh@I-~RE&@?2Vdjf+~IOBG!=
z2tEM&mw(<^(VL{O28AZ(13L}l-8|INZ60!kRsp6x)E9jf(FrlfJ4;AibRQ-)%o;ci
z5r_96xooKu*c58N2hD+LpkJ3V_54;bclAY5b;lEaS%0%wapO$b6yN(vm!EsZVxg9~
zhpyUknoPAipFtf`p(N6URO4<v3?bvDTM~{b7>I-KI?ke06M}frgF9`h)NP3!=PxVR
z(M9lGvV_Tt@X{k%g9MwCqYJY7RpBu0<GW#X3o~JwU7KneNU3eJ?U{EY28&Om-sz}B
zywP;<JRw_f{4};6hf0_UJ0k(x6z0W2_Of<VG2JP*EQ4}kzgq)J(LJpL$$LO$Er_hh
zcI4-`WS@-A01DPJq)ndQ)_PG-HcK+5?k8D!tUIK6rK{TTrz_3oV2%U8*EN#Wp*n@X
z^c*~RShiU(<CL-W)uUXwPzyAW-ZffJPOLFWRZ`t;p^=X8?7%y1p?Pd2^fZD@AdIOA
zyT~2LLcn|}Vp)^TnpBBCgAh}IxlUbT8f37YkwKE<SVoVnCuf#2vyQ-Q>>AD^pNEAg
zuL5#0GU!)Vx-zcK>LQN%T`0+TOI-kzS1uy(P1ecDE-m;`J?emK4lH$82hYmZCfJdW
z`_31jCM}K*1|uxrsLKcHIe5x$4Z7ec#Z3WE8CPNE8m4NMeEKk3qiV6691UyH3d1Lr
znbWCQ%|qtyEO9twq85&DmXc^mRww!lCX!7yPmf%ZSGHv;Za1=Z;V-(rCSbLZIG&@R
z&4~M;)Va_UN)~iw|1h_pOoP+|BTVwFN&K47<_o~Ffa#|qxPJ{@gXlG_>iVo}u?2p^
z2ios1_sbj3Y>x7&fei>!EpczIeZX<i-XAJ1oG@nb8-*AN@C5jMGX>RwNM-_&x}x4u
zZ_|quVRD3BM{2g>({~@=2EC3$t*FJJ8C7nQ$}~{RW|~GZIT#1M#Z#tI2K6>Q^vu1S
zfW9~?hL51papXF~TPc}+e~2+$`E^IM-LHD1cn5H6P{xep#8Gn$=??!nUNfpa5ntxJ
zO0&j#7rf;7#0Y+0v)CAOosv=&wXjg5LpNv>2D3K-kMX}J`Iw)(Dtui#H5ZW~Ow=T*
zc0(ZPw@F5w)9q=-c$VQHQ@foYfee;bJJzKV7APo6OXsd(^|52A%?{6<^7(WV>Z=2G
zQZ?@)lMK^J`F)19x#w*cQZ_@y(WmY2jnu=B<BS2=oyyJU7TI<;6YtrnYQOv$WN@@9
zTQfww-DF5Ur(Vczf8|bf4q!gVS%A@)kBy&7#p$f4(SAE_H^nO)%DaztRpZEtNt>Jq
z*3e2K4FPJVK{#~psOHJf(TopOX9OLI$N(ItahODp;8~7X>=dvCs~zb$JHZ=if(kfU
z^j$Lp+X|5)M7tPa;4Ta1Q>y765$J+h2(v%{23riMY<*fYS(rQ7snc^G`!oBGQ|-V$
zzMj5v6Az?5S(Kt}T7Pv8BrRbyJx`PazI0dvYzuV<(M8Zm-%F#QL@<dQy%-;9QlO)D
zN9LEH1BS1>Qi{68HUJZ^S;3`xVnHG;+S#km`tnvlmE*<Bpq*%BtMf;GfXv?1p|_k$
zjvgmG_5$Qc;H)RG#-hyq&B6-S%h`O&?0x!U0-Bk7sMF(WX=2n=jUH7y9XB$XNH}*T
z2y2E-sZ2dc`51hwgA`4}0$VS30-27Az{a;z)2Y-&(x^Ze)kN){VJ1SERJPcTF-#Y3
zO3|CSr~L7oPrti=`u6hur#A{0=~vw@Y&SuXSf?yaggWUG=>^9!mJ8AbY-zPt8%F?V
zJ)VJqnNlP|)Z&+4f{x8;27gy-j}y?xY-{s&tBS(U5Dv{Ap>FY5vBzuOcC0vNm=K&&
zeRL^2p;qs4lF>-s)4_lCDqDddSu38qX$qS<mzL-i52e-Qy`pj&!Wm&mW=wa60WF1C
z9MDvgB`6}@b81WmMABKOgj?v0J9TEqW+kvI%n{`2BYWySryxJIIP$iZA)xDK5C%{B
zs15Hq7pazpTb%Kq?afmeWM^t(KiZ#Qo3t~4nWyLY85Mr}%iG64e)qd?-+DN?WF1O3
zx)*D`SL<=t$Y=;X6o*#VnYOz&9=WHTr1AtdR&er`GM`rVX{(WaNU1ZE)CpK}9`dHt
z&vU@G1^Pg#)Q@7~wR=5|(e`3rEH*T4zYL!rZiD7H#q-%z?`?4=H6e*c<mt^+b)(wK
zMX8^6bYvm?NF<i5SnJa!5WUBn2xu=D<=hP$QhN=Wvk&-`nUr@oM<_xa+K~8MpHeSe
z450b=&a$Qj^3^D=`={@BSPXAuAeSV0cBxW89EvKa`#<M_<Ke#C(J5@{F$6+e+WE%i
z9yayEu|mxXkq%ovQ|t)hYWaO}ipw3!y<AH>&?Oi4S&lv`_toWvizEM$;PQdxPt4kF
z@@yDP_-0OJ>Hg^f6E`{4BC!yY^z(HTcX;_}0eKfCzKdk5r*UNE(v-p%Nz>F#>^$1&
z)Su<iAEzM5UiCLV`Wp|tNw@e=m!lC>9qzf&8%P!RzH)KuhrP!`SQpTUaP6?b782z1
zuDSll?>>J2-S7VN@%xt_gpRZoaPEq4*R>+D=4dO!vn{;QRl%&a8j_(`;7}#^TX|5#
zg5l%@W*4=WnPu0^JEd|EwBu{U?ph&|Lh^Lm&8lR@8#t0(a0Ue62&H3!s?zPN$fdj0
zL>m$-JH^u`q>-`NrKbXCQK|?%y~!#;9(M!w9ojv^;`e->dE)p_g_O9m{M7t3yOvWy
zl@e>1ApY+5_MDV{rE`+$-zY|N^*}?tInFj%bEY+`OpY_qtX(>E+K<@`Ld>4wCcy+3
zfFR4A4AEx4acZ~*TicZ&Q<|l2mLd&FEz6l2NrDvZ-SFZ-rnQ~&!md)2YDlCdiy2nb
zs8gGhfwj$4G^0j{9=N?%A<N(?0L$HN4^eY$N%Dat7Ao^|3@%i~fLd%(xBwUvvh7%l
z>So^0c$oo#EdxwS?ZFL%{MNC+saOmgvDc%1I+d*XT*T&+a}47<iNY%}MmW|xK_u05
z92s<KS{=;Q8%&`>5i4hkOHr+p7w%Ndrhg=uqAz^lR2n{J(OvT+f|;jI*$Od&zdZPy
zn!%|y`DuI*M|X+$-2)#6&!y9;sT{2|^HT}woGH%kRVTfBDHI{8{`7-4M7KK?9hx}V
zU$F1IIEqjK95f_l?MElCDp0~kl4TEdN{~-xonaJS`0X&FT%5WxSm7>L)9g7d!r;&e
zPi2NH^xxh+YIYaUoCtXyiiZy|UI%nP8W~yF3*w~zN(0-!*ubwe&&mgEkD!LRYVrKL
zqVB)*!bg8zbMF#qrmKvc?iNl3N(ZB1>T$nHf$TK4<wejnvdh%KM{s5+lmh*yz*n=g
zl&g<DPjuyDzCGrv4q;zz_frYuXm<NIn+<vT<z{oNxJKbJO?=8-`j_C~_)2RF&54;0
z9vv>PJ1jk~`gwe7V!jpGDf0Qa2C60zRWYBmJGaO@DAw({H!uN)1v-<_4hW71i8Rmd
z{8k2XuHrjItw(|TTKsfw@Go!op7xD(UmEU}<V2*_m(?fa#68M{a+n#PEpul(RF^Al
zuo-dJ`KQ}`UrcQ8X<9IV3e7Pnp_PXC)lk9+^00eABcs7&O(+vyAT0UwiB{_()v;Qm
zaJ*zKhK`Qs^JeyiI(Q_<&D%VqX$7~8Hl0VXZvP)<+%#qM!dyiO@SL*v5yjlq#uY5h
zXAqddj^>}E8&j0JWYl8LmfH-s?OHEIT$pX{gt)`!hM+nfyo*bcq+m?JN}SPHfIhan
zV(|xVA%94r?s|5L!mvrS_Lv0;HWFsrHkGS=r3$|~FJbUmMToD*kj#v#>^htAJJq3j
zTL(-lOH>tF6qs0i8^ztqiY5bbpc<qLA<KEgsyS7v<`k2{`<Tc$UOnZy?RL^46f`5h
zQ<fGy8#-6Z-P6!>2Lj0EnL$0OCBRi)rxJ;7zcBW<VYXy5A0kXqY4V!#xOc6&ak^wA
zg)e$il2__nQiWY)4m<_fm^L~qXdkeabGNR8sAd7e(t%<YCHn$ML~nry8~Uk8nLCZ2
zibc(A$U5kM6GFnHu+Tl&t9Oyc6#s{sBJQ2IQuq?PU^SQ*U5%p_U#5yGWdd%JUxF}G
z4x1%bwW#ydH_4K#)kKSBZ=L!C$|Y6|0(_--2dmU($kQ-<^%ODeqD)jW)j7U7A8fjD
zsZQ4yJtsxexqDIj)2Cm(4Rzl?hV#4v*KBhX{UVoE>sT%6De)3U#U95uH;HxJT=fWz
zS<kCqDvVg{KN*?j(pOLRL_7r6q01P=`to%a+4bR3PvOr`RY#(_vCqbZNaI3N>zL_J
zfz>wqz11hS?zcwLf;lO67nlHH@Ogm!5}M+6`{v3(p-mFw$b=y6n_gR!T#WGF<LF0x
zGx**;AdrfekulWq)gOSyLkw;?yyzW~A#<pLz_G6dqtx<~A-hsv=c*VX??MAkxh%TA
zf-Y)vUm2DxqhC%PX)(Yswq0qtKyp_A@w9Jxs{vZhmw~b7k#DmtjP>#u>*R}Hxh;$|
zZSd7^N@8Sl?dm~We4Pb$J`8_5(yAdX8tJ2D>~~|Kj5&}`32s~9U7+Sw?KBD)N6T1z
zdsSc->QH-WzRs7%ws5qZF8Jy<IT1ynV#fQW?ydrTMqSgl&rlkk5j!ZVE;Mk_(}>X7
z5iFH`6G7uh=)m9vUiHvW8K6nbVMj*HvXc}`Fj02Y9+ZNW_}75pP5>7Xtrr;y+*Zu0
zBYJ2<nr-6#CP`52@&F^K)PE9FW{vP|u5!7c0|hR}w4vGW+hg)F95PwhOO+i)71Poy
zAd9|&3_D;3steL9pmRAW;t%Y4#;U=J_sumkQygPy>{<G`=I=FmlSU@o=p-eEC<}?k
zCYJ|0ZHKv-WQQihj=*lgW+wxU1m4O4R#*7iGT!`(nwQ{sA&oe{r6pfNY?v_ncH#zJ
z;33u89umla5=(*>qN9mLF%=CEM8W$Mu~m?Wq@ku(<Y6#nv`3{ckwBM~@{b(sL&afY
zcv6543XVkYm8L94kfYB*2#F2T{^<_oykGt9+du!nYW<u47`IYJe4L*W)?rXuw8@CL
zV$V*h*}r*PZ37tOnT(Z~?o^ppcA;Msfd_^F&*KvYjSr9fHvDHq;#jln>lkc?*(!fh
z*Ua)&BTd>`R^|b=q%;L=iAYT3U_^Uki$Ij!8FRxd!2tpw+u134i^zDh2d!rnC027V
zXA#z#s+G7MB~pT-_Y|?skz-Lw9Cot6L+P-0YwCBgBJAr>^DmnR5srlRQJeYUh1KU)
z2~lGe?HovhrU6739x+3u7EEriH)YD(pv7Ty!EgcZuskJMtXmOh7lBG)6^#)CPuN{+
z6vN?2l*}fSwLk@T^MKZn#D$MnhNd%u3>v2XRNabve|E8B3Yj|ummsg$UN$!>%w9s3
zCSZ#aa)RN*ZoA4_G0Fp6lSuzYCy+1hL9K-i#Y!XLY;(kwvMJW8cI`o1@&+zQeBPr#
zGgugsWYAWXX~!>MojTS?DgkdbL1#7{P?Vc;SR1E-z84cI{ESGVgKI1zCN7G-+aX{9
zMXjSBP(U2$5!p{7O*OGDauuRfkRrETi*q1BjalwkN0G?6y^kC46StJbmct}A?@*97
z9gky2eBaCs-8P#sm(%5C_OHUX%s7CL0Fu1mmczdxMb{=mq~JAcozboqz<IAZtTyNa
z%Ui~q^(LD`8?*HNFtQu_QMXWCr?DAyJ$E0TRB&_*`J@m9$pM_JK*T3mcPsTL6V}Db
z(vD;Z%!|Y!)-(cBCMhjpS0W{uepP@|-XhIcu{<7D%%8l#t`36;2`$$mB)izs?Li>O
z5<>P)td6wUf<wM!k7xD;(s`UJPF+GQhmz-uIveP-SZ;ROq@H))Thb_oufmriawAVf
zb*8dds(!%Q!F1lGc^Ea#J60XoKwG#c)cBJaBU`<14`QbacFF$GBzc{jX9|+;9F-SW
zwl;v1f0m-8G+t|(eSva-Siw+hbhPw2-kKC?G78#OIkh8x58eS78S%)50L8TT#Xce9
zlDxKxf=dGIz!I@N4uMsW6pt00L!(#16OSRQF%~;$#*BM(c(`P%6;=)=sMK9#*QH}8
zoJA5RbCTu1=$t!>l>sI0?(avOEOyo`K0(R3(2b%QA3#nzp0hZTOftrq+{_CJ-;KuA
z3a!@TYQj%zpBlZRx!Yx`<=}Ud`2rL*%y2QSd2`%Kuo_Ak0wGpnEOvH)Hhd5*GBmJA
zH%eE+?x?Ipw|2k@x0{-~-Y-Rn7^fbL*MQr{Uw{7tBeA&G|6GWI7$m?NX!AJc+6Xd@
zJDp(A^XirXZ23}*^ru<NG4|7ym|03zVgk4%><lbXNU+i@3UkG-!R+VDTH=%&aGEqM
zoVPvgZf)GmPc>&cn&V}=MJ;H<=05<@`<0cOZER5_bUp#Oes{Zk`|*eN6*Eq*CQU~t
zuZkcEbWNOhP+r^}k5+0nVyDepS{svJ3sG+Rg5l=_=IKM?q14R^4svcf12H0IgT16T
zbWQ78q)1dRLK7Nit1QJrZy5~3&P%Dp#$LPHbB1!TtF#~-)Eu?GvpH_4gG{)5yMO%l
z59^;ke){F_eqdAoO#v(tapi%8Thnb&t0tKi!Qm<LKA~*aVPz$r6tU|dxqFeGmKbGd
z6>GX{X{b&)Scips5N}R#Vd<R82YC6jW<4aRZIGJ12dPz6>dI^bn51K$J_x<{{s2RG
z2&1%yWVJ7Y&4o)WgH}VJQG7!oj`c<&4pzQ#G>a^hNMdhgMq(s?rFtcO<pBF=Ybeqr
zn*mwihS_s77$M=PW(SF(83LBr-OR??p&LtcdY|y&XiWfcf!yk#hw=Jx{r=-O>z_aV
z;nQ2MT6I`n-XSMB@-lBWY5v>)i9G4}l1v`SX#dvi?mF&TKmp(s8!7yttuCy5O&R8W
za&Ov<PUQo>BfB=pOVIM>>&bPKE(|DAC`)G5cFQS=JFT!qpIC6Tu4UM*H<ZLLF)3)g
zZ!XgMQY;jjh--huo*4$aFSkfB0D)Zmoz@lrLJLlrTGgk<e7E6676cNRtVC|jQPzOb
ztmW8mkX0Fr*B%uHDKN;C>Y#<gs=|31!HTJBAw{KL<Z_oJ_KdIYnaD1<qf*x_)I}%w
z5gey`H6PT{Z1c>w>x$M$vID_O7;+2Y+bmZLU&WvjZimX_&R-KT-n_tzJ}M-}#9OxM
zi}YFg;@df{4M<5~6AD{ru%K6hY&YeWY<bXmv#;7(L2p1mZMPk#H;aImX(r(7n^8Ef
zBGBvtb(%5oVWHEsjA`1(=>rR$@?!chZ#d_!+w?6|W-?Cc8pkebCJ{s6y`8ALU7%|-
z4h4EbPFbz|B=i8|)wh%O8w^^x<jm3DSA%FuR}!I<yL8y&4JgQsvGr5t-s|0r-YRv2
z8O5mR5$w&2*0a3$Hn}};y?48qXO$IZpjyf-66hIR!0Y0NWJ#dzoUEndg2Gpq$Q!V8
zFR}z-;3#HT&~HFZ)XDQ*EOz>=N_UfAd76F2ssA{Yb{Sn}XZQJ}khodT(b2jrK}*Sa
zRH(uSoEb&R=6uWon@}@Y>OFH~HtI^Pmn!bFujg^Y<{NSwias_EnigdfzN*zerdI?X
z2E1$J;w|1jShHm`Ms8XS&oOCkqxmKJ#0v$p*pt_TaMZ5p2T%<_5jG+&Gq)@+1kIK!
z!aE9>0PdQucA#fEGYZa4wz}+!13nqu6oG{x(+3$U=0nC(Lwq|O?StZy^%~{W1LdNr
z$k@FzSZ$iUO~|E&F{#LDUpPoYHEUTs?2ntzy@zByH^?chGaz$XaUk$5atkIGpuUVh
zgK{n<!bS1*l-5$fO#;uR0Zzq|PZ+S59AS3(>JN%d4bo2jdYb<mx9xn-dz-<ehF`?l
z?Tc@ZiEX_1YT7)0*~7)(dnmtbVPgzO;>hk5E@O!rm`Q?*8|$@Hh?lL0qcu0Me*1P#
zcuhD6c|l4$HJ|}AJ<}#=P|}Dy@5z~s(Q0SAoj#>?jeA@)i-zWQ)O#Cg2^|d#05Sb-
z2pcP?;<3L0Li7%3hm7gDxV^y0$aY`TZex9*&F<oryeezg8w#e7pcUO$7emJcsGW=L
zKEQiNBTg6~OFhFZHRY5UhEq7#xxhQ7YTpda<jISJjS=R}ufXJ7nIY8Kjk?X-I<E##
zI7E1pJ{NB7ALhD2bDS(2Te>S|o=2J|UO>-Y1a-x;CwoN`1Hn4q{IG3~{v0m;?5?15
zb2yD?eH7k+$Fwp#@?^7lsmN)>rRLy;OrDz1^7dEJXgR$xl#|FyrxpHlfTf09q|+*E
zshc3dwELtC&&9`j2bpR?|KTm&2<25B*ic_IxKvcXIlg&w%#X4Ma<S_JRPFM5(XzbJ
z+cr9F2Zn0G6`KKg>lC3sOl#6JJ|8B6D-bSJm$pfv+9Xol^1!+0SZf(VtbhgyYE9xR
zc=&{AjDD?<@ftjzRlV|!wM88hslH_iuOo6a--LHYWKI7)&3(2}_=)r)AVRfM&@p$D
zF-<h<AnUMaPVKrai5jC%fUAOC-ok;eihLw4U7nzHeLd~qn;`_78WExvx#(!tZSQ+3
zZU$|0N$6>BXx0rg%4b^0aA^F^YqVedX>+mI2HT34-lnyJNuzlz1HgcMeB_`P!ca4V
z0r(&@mt;r#Rq)ZKw|L@}xh=+NNs-N1Xqt33kxqKoL0X&E56yR|<{`_)p!$$6Xekx%
zZLmHH1x}M~PzE4X#ip_p5hS$si`W`nhCmzJh#)#gV^W;KPx7RDGb&pef5)|<G7)rD
z2Ort1^Ipi(bl}`&Oy=-G3f#%O=ps{YiEL4O2MbYLeDlapbg?fggR9#JTlMl#a7;Q!
znr{?6<@lzw$(jryS?R*Q`g;OoDrFiXMF?EB<Ece$FD;~o_|j_wMJY-vmt!1wN?H?o
z#w|#~gp51bq8-Ew<cY}13-hk;SrtG9Z@<${J=s~9M-uv&bw4@;j)Rcea=WwlQj_3s
z#|M*?;cssLd$tai7#|+JO>^L8a*Zr$kU!B)7=ufpAC;joub$o8uuWbZlNk+W4TIMO
zEV6I~#sam>^Sb9u&}x}<GNRqNnh=k`&S#LhUI&{Yotse<irkN4Jjz}p>h7_pU)tB3
z7)=`94PM=(WTd7lAg$o6SYic4H*Qjx$<AuBQ)>pLx^1)sA^}L6W`;Dp1f9AbYD9_R
z49&C9#dAR`^d%N~pZD!t&YJ8Af*W8T#A=DV%uysx%2qBeg4VbhEWytBg)<J|Y}NvV
zq?fTw0>tl=loOQAIq`lqbmjpIxI)lMChx14e^!1oN=?1UN7}3+@XYWqjKVZ96P~jC
z8h&*(;sRo8c5&(a>@;3KH)b7q1OTtY>ti@xgvYiBvf^7csX<21bfLB2Z<Ish?~<e#
zqN_VZOTCK&H9(Zn{n94q;(&xzd(?_MnY8<}8w2q(7?GzG{fZF$y!L{(a*Q-PTBoGB
zNF6s*hqhrL<IG`n4m145JO%gxI9Wg?vR1JgO}NC$_f=>-=!*DB_)cPjFfF6IPoQRY
zol%S;c~_sg)d!<p=7sK!9sn%|((-Sw&JB^RF2)dPI%N)eF;sLjhE`N>Lzmo<X!<&l
zzB(wK&jMyy(@2wSN`a2X`6f9IYEMx}XUi8}D+rlV$p-C%W?yndc<!s)=Y^#Eh$Un+
z3%Q71%uJ}D$Z!`$58(1(eHqi4vA+6+w>lG(?7~{bCSM?$^!A4U*7W#eg}w|aj`-@*
z;v_+K!(DWMC(AI4@5VH1WH^l^Y?3+A9UK8Jo7nLZB5WpHEtE@ITZ+zHRc2XcPx>V8
z4}9oUrOiaG56jzQIj-KF&goB+OsE;nF4BQoe4R_88HcOM0zrbpeaiME8mhS%Myio<
zNCQyo>Y_ZM=OQFboekV&nX&Lzrw^5S^e{(<+nQ$M*}D!yxyl^L=w_O#iB`#8jg;y)
zPmA+FyOTBAt;Y-#<%v5ctu+UkZt8XQ+0T$;`jV=bp3s!@b>il<>)yr4f{e71cRNjA
z=s19EQ!&+;bX&){9C>>Zx<nGR-0LJjd93^{XY(Q9%6hKhJgGdd4ueX(=K6#{H>^5;
zaQlDzasS;LAy%0}L2O{jnRa7rW8;Gi5i5Cc;t$W6BaI?&?txW<1zgAOOakd`{gA3{
za8U2-=ziEiJMY7D#9t>u92Ax~7>z_Rcq~Hl)x>IXUC6H>Y2jnP$8#gPS@MK{qgoO*
ze+ZBtLGg8Hgxx7=1crFW8#{zW;8v_;_hK32CDz4RP94&bP(+<vo<_ygvTxVO>_R#h
z?0TYbJP{k#_hS-5HD#%E#Bp<=VvzKJKw^}Nk10r<qIRO*NEa&<4q6e>3sEyVN=Ror
z%DBocu$(-MaAl{(5*kewKS4vGvS*Na?b2e6$sj@$WE*;xLEW!wbb0*ZyHV&+z&t&e
z{mxyw)V=T(cYqQ4edP!JCAzf(gqB_Mk}6;*Od&;Z7rmM7j+|6j=Ud%vTT9UBJ!eZO
zvZ$U->b1VVtXXkm=0o2fDE#T=_BMt>{ADx}ce#A&b*HwalC(yT87ZMWe&IYmnjh%j
zzWJ9ksY6E*tmLJ|`E>o8Jnv)3j`VxfNBsi_|AC~Na=@D4#SW^H2q7GVtdSE!R0C6W
z32~_Wh@K-Sd~Qe-GHy6&Z}Q>4G{96Er*@w5^*u%EW#+lpf!|oA@K}SN)A=hnVhoK~
zi|fqfUfq|qDD-YWA9blu8J4eqeYqSOeU<}^ALR%xe&hN+7sKrz7nQzV)cMOgjIxh%
zS;2+PUn%l-4JW`gxQQ%9%NR=E)y4T&v|C1f+>HvGYgI`neyF%OL9HLjFI>9^ZT?6u
zIdngZ9)7z`7keQ~*(fU1bZu#=%|mYth>`zp<yu@wHC&7;?}LZ>fx~G_GZi~^%aULi
zhuxV_x24xdGN>b9zk!*Jk4fbUAKE39uGrY;-Q+@m8%QJexElZ5=OTP}KLDf5YR52=
zvO^k7wEQv6Qhp!0-)Fw31$fd|D`Gc7_~%}&ln=-s6Pg$AQ*hrss42Qb*v|{$5p<CV
z0LLJal+Or4UUfaVdY;X6;z~JQ5jNMHjB-YeiDX&VIpK?|aH0O8CD3T;?~0)0R=Kmu
zUq^Q=5B;isS6mC;G+s}XiI?ET2{ZrrJh(<mRUvtkClTw@`?58c(q|=Tw0c;a&I}@6
zlY3vf@Yy!Ao>hkRZ2O!Jv%qoUq^F({?EK|Svdoy6!Q22c&T#%xDbUa^+-Ta*U&@3-
z&omKX5NBZ4oX#oe)x>kia69yI(~v=ZvUm>jjqY)%s^Rf7hB^G%t#m~dQ)RT$G(N7$
zvt|B>(KvUmX;oJj=1>Rm{56qsRYTqBWE7$#nJqbFeMN;^!zJ&Ab)3J*Glou;b6OS6
zV_@Nx#85LDaHBE)b#74Vkbq6X?_O;*!B8|vW+mI13MY(a$tvdj;XL=%WgWEs@W{Vz
z9ME_)?gtHXL2lgq@zn<M^lX;1exZ?T;QFPOweY58G~_kd%74Fg)bbjH<;x8%KWymN
z$G89M4efuYp~DUJhW?d-{%M}8NbIoxy#kdXd>wNU-N?#5V#GRsk2<GBsNQFLcE0&D
zw90Q~Fi6+rDO0`MO*MM=)T=>r(eqb$bfeDRdGdxB1ls1;RQP$Fo}cE|bVaOZDmZeV
zfbHe}Z>W`}n6Q|S+z-EbP(S}pIlZ)hp&UBn_wLiz+5@N_<;;CFI$_X97l|kn$hVWS
zfjp^W9Z?_zI^I7B@Zqr)6fr`d>+`I7EBZM+Oy|#JMA_C8L)_}-ndIgFeN@EGxZr24
zvt@w{V%;vuWH;#@f?zw!!XIiXO&YjKLG`_r7?b8q!t%n)uWskBu+iL8qwa`8vZ8+f
z^40@#OE&1N_I`mfLzi&IaV%tYYeyx8AWK$8!p;``s&o)HX+9=I3wj~PU80hp2rReY
z@ODg>=UmfLVC70814AV_3d8Ac?(n$z&ByguAHVtd{pAmze)sKLUrHsUQ&rgZtO|s~
z&k%y{$KOBF7$&W||8(@rJ*qtB93`ea!_)_-ef@c`U3YY`@kLJ;<y)L~zSLwBKCC9!
zox%$R1tvyQ?w0x!a`^NijQ&*M@u$jX^%~^<BXH)w=FY)CmupXQk=d@RQ`B?~j5f@K
z<B@bp?-9Q!vctb)EtjurtdziLaB#+p0StEKV;diLgmXuwE#L~PAbQK?4he@^c$HG*
zxLGh`F{!#Ms92SOU)HJ7D~DVnFJdE0Z6|-en{CyVQZ#9+GPav_P^>H5#I)-qrvjGb
zL6TBhjl{unNXyR~1yWJqb-@xN2%!NF=TQrYU`VBz(OP@a?g$c3X2KkE%TmwG{=BTy
z6>@V7paBaf3Y^0tz-Z_C@igd;(O@wY;F3NZ+N!J0O@-p=70PIT5q>)|hQc3#kYdNf
zf~hmD>(7HtR=SmdyHhWEw<`DIv~wr0L?x41i9=g2i#a&zy@ZKciY<0k<O4A8$K$D6
zp`H^OSW_DQQhNYv20}3W;XknsWCFpu2RY#|bE-F40i-PUl2~!_p*7*izCD4r@0-01
zlaEYU-_uSdG)bfMTbUf9W~4$t7*>+L7G7B2GFW^k9|?r|>C!GZ(3{4bv#ZL5TuGi?
zas?nD#JdcQm|t=xf@4~lfuzP!C)xIbl=P%o0MsrquoksM?a59bXObq4X%l;tCK|EX
zz^2=C^Xj`$U*l<1H+n@oC>NG+>Ace@H)~BF@xE`jw_McFgF`J?*7sE8Y?H=1N(T_Z
z$0nBFR-Kg-p~{t7m9<p=za}<LL1FcJkJ{*&D)mF}cx=;qGmMKbh~m*;Z)ea2O)zUy
z2g~$9Po<vV7D$r@IhXO+PD}YwKLBJgR)r_gA97LZ%CfiX-KM9UV;@=Wl90kLOp@2f
zeTr~qrn4}upCFpbaU)!nv#1gA3ytV*1io{>-iVN+M-11hmv8Q$UViuen>{(!X!p)=
z`-wGMA`~xbK*_;$lN5bwU45IsUi@=rS^qZ6>t|p3+BrDTzkWzi;Cv*a@)FcdtpF_g
z?T^a&Yu;vC=gax@&25%5f3AO%b)7e}CCM0^VZM2DlmF?2MK)Y4R6#g_YN7^A4zPY|
z3j7kbAzCE0Ar4(Je|)qdVQnn@s$Kf|BaL1BZ%3?7L%w-x6usC-She(Z*%of4tTi9E
z4&y!?Hz<HI1JH-6VmCCRV5jAuD6*XBK;Jk2a|c4b>C{30%O#bL8M|-JWHb0$P#Pva
z2>vd6Jnv^7%*_yLa3~+QW3^Mn)0Qux7o8sG-BnADSrjy?9w3w@rot_?Y`?h`HDFq=
ziI}^?Wn{K1ti-^W9*)k0onf=WS!wbdC$nH2YRvnHzSsU9?f1~+nXoy86s?T0>&G?=
z?PaIT#bquob8(sT4%5$NDpyD=?`)>kvzsx_EUv!9`;m!YmRO7n!*VGI>{D8s4bUwX
zVNL6HXUHB;RQeb%iJ!SH=iP90Y*dG836A-c!g+HR323Tax0JM_ASY}7(xEkwOAU^n
zIp&3|O}-9s6cCQKqIb7dhO5=KOYT47it%2`YsX4mht>e0i=x7iU;j|r%(M85nP>4A
zGs`l+xc_)VZUgVB(~`P1WgH!Aplt+Y?6EC;7n1UXvhoG~1~wkf#wbfHZcJAgQYK82
z?%ZfcT_F^3#@ZAqO1XRV$}|f#Niij4{W|*XEXuw*!_2-q!_2Pt&b#>i%)R*i%uS7;
zZwRVx%Tc+{+H`|krNsiCC>YbTnk&Pb*0VO~VI$;RxV6@~m62x_<@Wo<x##;uxf|~n
zXPxgC=brBu=OznlAkfvL)Kq!x&QMebQJE8@2g~a*lDX5|_!_vOyJrGJ%uT;qdRhH+
z=2`u8=Gl)jUPE-g2UdDNb5jigqN{-ygEDVpR`ItGRgmsY?c2s{aE7j~v>|YA(Z6O6
zW%ldkb>_u+dHo8QbXKqXeD7b%Q40$|)ss|JbDX&+DDP?-+qE419y@i4+baUAB@tMg
zqAYY92-#*^CIfW7tsKLgvX<<|WMF!9B|?@mP{^53!@~xbaQ>_ZMC!g)SfsY8D5}C@
zcoa0IE43cvH*4vc=g>)%KfQ8Q+oc7iu5GhTjzozLc|z*WvKX&Dy?&Ruje~IML0+iO
zm^8GDEFzclhh#}2=O&S}rt{gifDA3+kmT5tIvR;aFAmXQ^Bw(-TZ|4|N}tM-PE!?I
zHroK!WAU|+dky#5{~#<~D*w4aZe7%MMZFd#l?~N{4R$+{x#3jvxQ<|NYsIPFIDwB1
zQMfGA91BreAzk;%X(Y>itsu|y?kEuqK@uJb=9}HyV>n`sXa`vs%k*v>J!&%~ht#em
zj;2W6sj9^*&LY0@wkR-!72^DOov(CY3?EYDy$(1wn*!#v-i8BKu+*Uq*VR&v<E51w
z!&GD*C|KGB${ut)rwSR|k4ZiM>C+$f>s!z1AG^;xtTpd2&d%*A;lcs^1%gy3Vl@Ba
zr?D4aKSij%_923j<>`3(i=S$Wrgz&rIZ}By;0=Dr@G|<7H7h=p5N|`iY4rBm*vFr9
z#|Or{Sn7xE7eCGUSOnWU#66t($P(Xi#*I&L5ER;0+3#vT=5{_yPL*o>?Js68|M2nq
zH{IOE5Qal{HBn^^SA{7`H$Hczjv_`=iq#^6&_pbr9Lv&S1mJk3uk-%+4e3$DvJRL5
zNpC9*ae_i>B5=2gQch+A&(fN!cD|#9H|3e88-<Do8g6MlGr}ruS^CsTOM5tO&;oGJ
z+lX=!(fc|eF62<WH7PHSt_m?~9SWrsv!+()^9MxJDI!KVZ6m-MGWzN*LC$Yofnai@
zvXJd&v!6fU>yKXUt9pPI@Tl_jFq(wtLA6(z#^)4(Z3;vF32R<mt@f-QD0th-`KzN{
z5~e!APz=w}WO{GKg^?A(rDVm?DFrgNLc!XpG7ei9Bi3)i{;=b0ZB@5dwNGBlP%U7~
z^A9%Jjpd|3t$73N(FXgBlJDnlcQBbTP_{UG+A7zS82lw#QURK&xLoYT01JK9$oRWK
zcH>#=>YE+Lq&eJ+T4V`R&~DIVNnE;O?!>5gA5&z(xBwxW|BN90q#8ugY#p#wBnKI4
zTKj{i&DS=Ft%v{Z29diAc41k2HPs5JxN@#ep^lIk!wcbhrW2X0*tMGbv&q7A*ikn5
zwjZ;~!WFU(exn=Rrc^}oR(KqTu!IvcBfE*Ko6E!2h6JZC66VRuKc_Uqi;O3^C{;7e
zzoReM5S$A4?A(0Fx{xllusAHfO+`z`|8=C8;N3sk#*fB=UUsP}(?Q}{^Lh7qXsHTG
zLX))tW^t^S>bn|Xdm^_ZbFm%Wv@csEhZ2TWbI@!<ecHuO2rX9OG#5Bq)9?(eve__%
zw_$aFFGW9egc)r~fBx=w=?$*s_)D>J8o)X(h?Drv<_cnOC%P{Sbj7u>7a#zUkscn2
zI<0eAh5&-ZTO?>%z}Ih<k&#JIc{~ZE_Qcl~BCUnOrI*MFb#;I*bg-QO5lIvy9NQ6m
zd0OLitXbUR&2vR!QdYAZ+!-fkjbdCC8blG`7%!cU&H_7B5;ms-L=?qsia=#d3yD`G
z0q-Aw$wv6M(A}bDGGWS@%jh7!XFxrhvpNGFjSo31{y2l|4EWmB&^=|`h1nfAkAx9U
zarwaK?{n@hE~BhP@n@x0>EI+82=ZOQ;Eoj*Fi2S@&>eil-sL*-K`X~0S{ZmDy6_*;
zpwjoGcF1%|*NTZrwTJrzzVYPzyZQ|;pc!eHu6%^2;U{X|8<>?f8|4McOolMib*RP=
z5zWj<4Pd?BHpkS^E;g_z<vTN@2?yYD`Qx{L_~RQ%UHj%&|1qaNB`WCpE<EvUJ*7*I
zxgg|1P{Qc)+_tVfCr4e+QD1qk94lWc2Sp}kwn`*NR*B>|*w)={6alk*E?Y;}!YHS>
zESq2Q)DJ$t@>hDG_fGjMy<8tpKYuEwlzha(hDnq@rje&UWJv8>PWTw*3QZ>ab;g6b
zS*k!tTfQlpn@ZX57?mSid=BViwryWyv!=Qu$~lUJi=#QQOAcq-gb8e`z60UMKmcol
zl*g8jp3w9dFc^Hd^5iiL6z4(YvE{EGKP0CTK}ub|YA1BdINMgbjcL{lW}CI!dLRaw
zk!Z`Uklc6329+vfn&S-S+e$TKHKzVWn?n`{tE)v{(`84KE81PLK(MtyTpzxB;`*w%
z^>e-X5#DwL%4L5$o5vyB7@M?)1BBTrsW)0+2q!MthLRNpJ^NgjIR!uc=F=a3ur?;G
zjgH<;7_m~HW9U+q<J6cx1m-^C{%X;22<;XeMn{x^r1K>2#AmtDLC68}^AUOx;rUSk
zn?t9lp%9pKWxK7NN3tM8>#zYt(9DF|ag6`|g6@9_ub3*`r?`kFL1Fm-C#yU^N-uEX
zL5oXU$Wp~V0yWz*mk`Sho#I8c?syc>(lLp(((s_RpG!QJ7duIvm7+z@UR8fDWoDqx
zNr+YS4?=cWy1y4&KS<0WCwzruZdU^5{$3&H;AQJoUiHc!$CZzzk!k99mHNgd#*7_;
zZ<CL|Q3=|nK%vc>-<>nBcbFx1zcS#e*r{EgM8={JjXI#ooP%l7Wh_%Jau}<NOUx2J
z_HjLqvZ!|`M_af&auDl_e`f=i<9K$u+G+jwxc@N`Rj60{Z0(oS<u%i{hka7b@CHKp
zJ<7^JSt?!TDED-sa}F^7FdBz_E5T&{Njx(1=Qj$K#5iGw84qA)74O^319>C+!Ky;%
z^>fj|ruXUhDBM`_o92joYV@Hm{5@K~y76>bI*X~(<*};Ez@(0~^W`gWtp~VXflrok
zw{%>t$Edu@2!+Z}?D%5EEh{*|;4*wbDHl>`SJcQ0xp!)eI#>`dITR4bx6c?8)M?ZZ
zWC!D$U&9U68N##k+fUzr{Pm|J2IQaLhJW0$sM--tXDXt(!>$K=MiK#o2W|qszYjrN
zz$&v!=s6Rr{u~Y(+n2<$cj<f_0o}N908`0jaV))KWZ4nd8Arf=p|~~HW$pZ>J#_-#
zvqtgLa`Fz4mMD#x)WxNZwkMiVH|)!b9}0`v91);BA+P3C!PjcM<n(OGM_a_N%Xa!_
zbE&-A>jN4noIBXH61{2qAhNM<3UnBcr$^%-4_)1MKRWz)w#={H^Z6`n0uNm|pPjXg
zSLMl6`e`Gg=lLwuN*7>A&c@qLi!B!rSP4O`e~L{|iohK}sqgOI;_ijGN`UyJog~$#
zh}@f+IkfWBWBGV4M-YDA{^s$q4bp8Dlp=uJIH}Rh7#q!`o!t(i?EP#>r?<W*LjLYU
z{BUy}<BXllTaY5HsfAfH`0}XPk+A$6c+M9;O<k<V0=rPVJo~hcG0gZ!NVql9&j_<T
z3cY}h&Jn_P-eM5h?e~qSvTaY41X7Bxp~Ie#azzGaGIe^83ObMbcxkLGkXUBI+m%pQ
zj!S+uFKj(*A2>3<d^-e!m^%zc`uUvdfB5qoErgNHWfT|gT|B0AewTBBDGIK{ciLay
zRlNSci($M|6t#R~t;AbYdd9PEh9UYcu$;$tX&_|3A#iKtcn4D;zbo6jFdD@mU_P1<
z0T4QK;z8tLo-O24dq?1gqojuP{#`$4xub2pzf<(N^dv>2_KV+c?;`xO^y~-kVndnp
z=y1RF%9rwLAAW%{$dP_d9A_JC)%(8ceSXdbEm5BTLSXvC<-6~`c^i#;E9NK3%vyR|
z1YOZglR|Lyq9<1WqRD^Lj7nBI<YBb`IlJGo>1KYW4bW3kdunF(NJ<6IRSOoW%r+#7
z7%sDyUDS}03~;o@X#!>Ym9Z&ns<;5iKK5|9L6|UTi7a)Ez9Lv}idyV2T$D%8hRP(j
zo%N<pdKIxh7nHhk7)3Xa42vVuRU!>=X9;)5eNccIq&tnAEEw6P#-eW9dqSV><D%ec
z<{y&7fnJisW7%JVBl!nORP4|LLR++bb6jNR@N8_ge^(CkGthS4_1!YRTjqBwjiO?5
z=_8DDG_b`N+p|rTzq~jOjy?~PbNIwV{~=SwS|O(nrEFV(#Oh(<T2GhGEP(d5%LP8G
zzYHty+X~!$=E74EI}dPQC*1WasmQKX!o?ZdtD((vLwh};y*{A5PH2<c0A4&?HV`ig
zGaiXNTJhQ1EdH{RE@Layv8q>c=wjQu*h7U~m61*UihK^|nVkx-#}E1@K7`L<R<v1q
zBsG>{5o7cEDS&SaS4~9gV4X8;dCV}+fW<T5oM1CnZ#5GrSi@8k40LE6ih2~sTdMTj
zQ$cp$g?7@lIuB;wy}Tiv+Q&_#)0QZI;|NK@2l;C5BB?cu520^Q3GpBsIP9xN3p&j!
z^1%SwCFQ&7qr;McJU!mybX`q7P2ZW5>d4Z^)h6I^o|pZ2Rnbl=#|IUL$|V?79f>Ij
z;xyQvV-IbE0<Yq%QjF^&l(LiK<^`)*EbVBLAQZz4UvwswgAI$hM~~Awl2ob#rEI3|
z2gG6*kuda_T`qEzx+aBttJp`!tc?+M11$;FiPkNFZOnts9Uhj4aQ=eRKq07dswo8a
zmg_{}JBh$+QY`dhbvA~aX`)`~RXO(B26A^f5(ql?^1fOST38x@%0x&oJ|8KmnL_v9
zS%hHUMhhQ02nLM1*2(E3!cjR(W`&qA&ldW!Nq8M1#R8`3ha5S=gXUT=*la_-Ta<7p
zNn!2FFW+o&u{Q@&m3*Lpi)lJ-tW+;)ba^gW7#S1}@MOIoDKhBp@WXtn=~O(wJ$3p0
z_>*THHkYT!T-#4qS=AA~q<$?ALQX!V5kI6NV+|3p9f0}%l*hJ9%tG6E?!S8<5@naw
z4<8?0SG`$56&|ZR|J}uay6U>G;6Hh^DrRx4;q5yuk#2&h3myoGCq%?m-`^)lfF?Ae
zmuWIblle&t7o~RAA#g1$5s1$3fd`MpfEi-cnjMzk$D+_^Z9%Ly3S%pVj9|$Wv{G>s
zh~?Mbsi>2jOOF&wN*C*vy8VxbI}ZUtj$Xn0>asj=Aex#epK|u+|9Q-=3DJ{BS<LMu
zq=v0GF<_aPVecW56ydRo(Q)-gFY?<RxbZL=hrfGyYw9v%mq{l*=3un4qZYF!bDwNS
zQaD#_){It+1K}@VQx@wmusTEAI3XE=8?o_>3ETNzqoXo_D-dFRLg-zT9h$|Ih^-=m
zHKSSds|=8ng*ee3yrM}47A@e;-AdGKrHny19S>VFAw>})ZUeRH5n>&QBk7RGJ1OLJ
zhicXdkglaRlg|;hlRTymMq)JJXBnfNe#M|~1B&j0?Q+xuw6Y2DR*Miui3m)z<JlV~
zdbS`O5U8hn$RPSsv_*TJ64caV4kMzk<LmS_M>vuNdY~E!UjF#)x0knSB6(}tgYgh&
zo9$bf(O-|bFSn2yJ_m!O;v|8aeUR4a&5@PfI#9q#hv%pkI?SLAsKHRm=6%={B1GV`
zFaAhpDO*{r&*ORBZdp3s*<R<Iy*vU@iZHfgV1}0<{30i4^3+4myIMFMTnd>OV+Ucs
z%}^H}cl)zun_uifoo03Wv$11n4PK+>0c46eC}dM*@X&2;QAGvc>f9vla44NB{r00J
zEngdn*?Q=icv0xotP+8A<t76Sqf1d)>Hc#-HFi7tP95ZplnlDMD|H=iNuvl@aMWgj
zmM1I?Uv0TS7HBo9pqp#-_GMNP93VA?*>cA2<Wek67aaK-KJh6rj6VL^Y@xboF-u|$
z9MX-hWU&dJYm+2Ijt9FPnVp_TC*WjtQ^G=@!MaR$jeB+whL)caQS*qCfLz{X-V<*@
zJIW1Bc?CR39yL%-N5Mud{m57Ci{{3x7885VU>U$P$qcxXgc>$tlafKw0p|VK6s%-4
z8Fmb=n{YL6&xL9Rr_Ca9E7Vz64-^?H7<|UMDifnpERO&u@P(-<SLdRjRZ_69=@qLY
zl4*-hYQ*va&;ew{o6(2@S~?~4(aCq%hbRs)SFg36@hay?7%8_~f^?h_IV5_V6piw6
z0DMj%sYn~EHJp_`VwGFKYR!h~Xd}XsD(+RYP?i?c<A=@y7x3QR(X&@{*-1K(!~iCC
zlcgCB08ejaMU2e;2;h;3biEAnn);^}D|s*^-3-tM(2FYFD|t6ts2MJN8sr`n&P@^|
z?Z7g~Ac!`*qtRYVdByJWTtXE7tp_YYK)HXSt;45ahhV1>!UoC)YE0ZR)i;u<++k}$
zk=WS(j3&9H?W<p3Uwm75r^NZwiMLmk;)L^4i{oT>Dz9DrXYth4=@<Xd+x7L^&kx>y
zG+#RDD>hLmvq)bOs891oa83{>yXcDu*d779<J>T4ADCc$U+HaV(`Ny6v|ZLYGX?dl
z*cqgDw0gz?Fk%iTqHK7x&d}ql%_{$&W}!Xs{{dD0TAQLm-&i}KQ_$M=LDxMLEY^DD
zUE~WEWl~*gUb;g)I_~_KG&c!}gYQy<-bBfHeiasY?!=0>&(vmVvW?KRZJHTq|D%qC
z5Xmt^+}om-<t7+<D%i_arEuOe3f7@Qt#`2Nq^VKn7%S#_*bjgBSL=f4Vq|nccPIk5
z@-i-?i^!Pg-suf7{+$}itRcOwfg`Zqi1&(VDxSe8&xXXov5}ioiS`L09Itxu4jWH?
zJj`IxHQb{lUDlhk)ZVEC3OYQ#xqJX!K%&3qlNnpQxrZ`+Rg0Wc>bi>T2~te~$ig!7
zZ0C(eY`g&g^qYr5UU3S6f)?<p5bpRGC*kTo2S@EP46UH9I)S0=5(Pa8Uain)jB_`}
z88yO22P#zLo3-;mHFE~LMx*ir<T)K&hNm#XX;8p88JI9gCox+sS_+z0A}E7|xQI&z
z&?b}S#h_AVooz#zT+-JVo?MKPCl|0)3Yd6$ozaMfQ=VW|6D$A}GDnSR_FX487wn!k
zos+bL%(xW1b8L<zzN)&@G%K?cQRk5R<?_v^Z-1bmVKs-CwH1nR&@Kc%(^cR~R7|C=
zD3$H%7iy~--tGk8`T!f~)T|r~iUynlN&Q^<YXFf1dG84y@bVQjti_5ISQQcV6k(1%
zRQw!kr*V&sCqlf5PmoODd^`QxT0CmiPNiOGK|^k!XZ(u$YX9F4Np74vY$}Av0YKCD
zCt9_y*_QD909ArhHU5>iGwrRTr{efm8F+!7icT5tHc%lHKt(Ex1S&5OLSddj3YQi&
zCG325?(hHi+=Q?R1gOni&y2^*@v(h;R`vX9bMJ<Z)$|(?;hp+54w45z+*837F+(OF
z72x;2v?8q<Lpj@a7e#s>9T<g0qks-%j5yh-d!W$GWTx$jrkxFagX(Q0szifbm=Sy+
z8^U#AOBUO>&6Jj>!wYK#R#Xfx?=_XC8c%ea6|6BpWbul|>O?+$F;il-jTweal`K>u
zj){QPNL<>txP9apnx^K0C-qDzq4L|a!Vb9nS6uCwbfQij@ZYXApVsc^d+Z<iOeR;}
zyxLCk)gj?`zePS}Lyx2<mT33aQ!xNW56+hQ6y0{YwMcxy>FeQX?kDLF&Nyi);kB1=
z`nM&MT56t6|McdmiF~|v08*3}98~H4MZ1cn0|u=LNrH~1fe^!Q&vv80UIV#q_mKYB
z3}id!u|z?Tl@f8`SN>^QW5sTKlo7uum7vHIf-ISY$}ocB?HGfmI87@wEm?6yz-nvi
zT*A37tJC43LqEyk-G=!9!iJztLF|^kU5&EjQa}y|H0d)z2eCQRNlXh`cG$V{khXK+
zL`})_L@WevQZ$qHMadPJ`T)+phlTNB?&X|^ic_J6>4&%rebhA-AfI_+w~NmSYB`8&
zEJLj*QU(lGo*QZ*Q$}a@V8(sdf-?P+vr^)1BMT~l0mBJztroK<#$1NV)<+N18wnUG
z4MqQ!%{$w{esl$Ku@Zs67C<BnAEda3<*gS?$bpL!VV#|g?_PDlU%Sev)|2kqnvV|*
zbRFVL@oyV6B&ey0ZxPEdf2MaG<NrS}iip?O|4*ZcZ$+&SsmuAlhALNawl)&jeMB3=
z5muD@p>?0rDc{Uwm;p7at;fs}uQMVmw4)<invgVyZRl;V<K=2zXkD|(EPM3;dzI=o
zEXc`$CZ)u0Eqy2rP?c4-#knHanQUON`1<CF%W2CY>r7;c!c|G`GZ^uJIkr-ubP1jn
z^MvjC%#mr<fU%=`fy=2T%{KK(%leq7Ryex2FNbSXQ2y%G%z^4ux30gby(2Ioy9?N7
zpFO6h3iLQYHbZX;xvNe=6vn~bjFE^84RctQO(v8F$Z-m_r)LUb=<GaNtByxusiMD=
z80BfnW)j)n6~r)zh9G9TNYlS~xSQnP%~W7fB4!T(6ROZh$vgqSS$yG;j+JD4N~u?i
zx+)XAi7&)&LVMatZzUKbJmo46E8HR*#AE<fMaLsf$k}8AfYDCg?I!@3c!qBD1Hwds
zTe`Mi&-Uct8wfj#glb-&)UFY@29N?xG8mXJhywfx?N*fF@ZEc;J{=vS2x$qpU7_`m
zXY{(MJJlW2vHRpnTc)18m05g%pjbPgcZiur(v(n+)6rAx2erIWYUUDiMOKiDPMIA<
ziK5K&+Rs1JIXo)-0I7<_uAN~<c~IS4fMg-|o#pWnzE9D3+cm9Ck2z4<LIOJ*wASX2
zr8`{sCk5wjNyt#!lNbk?I{UD&$*eNCyJQE7RSl}s4~`~C+qBy~B!;S9!XzEU0@AUV
zr<!j`yNS;ywtW?j1`CAJfS~F-=MpM(u;(bSaSs~Bd7K3n$s(K?=$i@Q6C7O;sKx5m
zI&JUyr1D%=bizswgch_oGl7dp0WKYJvF6O`p`~Q+)F5(SE=DhzK6Y?yfHT}UHwm|X
zMJSS+2!#E}5G_q}_X4$a%eqyGtJ1;Tv3686KmKy_PfL#bmLz-6B*ZruM3hJ^i!(g#
z#ZwmnH{^tW6Sq|ddWW7%yCa%WZKKv?6@CS~s3g5}>5XIvh8Y*FKJKSy7u`-2;+XY1
z!do{6#A=t{N?NVTB9+u0we0rX;K4Iqc1{sK*764$n@rJL?-+^%UZ)|3AKHutG`p~S
zBZ%o^7`xNS?Ekt?fvl%h$n)neG(K+jgyqY=Nzw`MobP1T$1bt7r>^6RSYBhznrZit
z?FTIvK(EnTir&^q?#uvkUVVT0H*|d7OutyKCcXlhui|!bbrm(q8<tUWrNfD_4Dq;Z
zEhqFRajW-xq;Y<_lE*17ZzyHj@#&SGK3qVqwgl#@mu&FG=i!#8rDq%x?MWfs)MnR$
zqakv#3zKaL)5zV-6iA+oBY9VX7VjJ;oG{g-5p`@}kikyyB=KTM5k$#u$n;7b5E;B}
zQ{^tIn0#1JIvR?l$~^P>YqGusu%Ir(0r*Ymv6Wcu)tn*g81WL#+^HrdX9Wf5Mzzts
z3sjaI9AO07RE7F1Cd1^96u;^jlBQ}whJWM=V*H<7L4-O*VD&Qc!8@wL(^X9#uMpI)
z)uYR@NW%;#(Mj7QPI5_yrRM2hEx8=xlb9!2tx(sTykGz)12WqcDF^T{;+{m{k*6u>
zdI!!K>WsP}B<9%D5mCd{%4Sg;o3<`pEa(%*Xz0}uU5cF3a(RNsf?r{r^%fI3GX1bQ
zqBc&!SDT9@L>q0Q^;!*>qUI-MV`I&aM*seAPBYD6!gI4bK`A-d7BD&RzgU}rWV7uY
zOOAF_ub;toY(T*2Sgpy@MM?6B@D!>|dSbFa=^9`Z-5J~H<n-y`1F?wUV%Q*_4HX%-
z1~%*CO%jGOrx{KVK-p}?LP|{@iYgU1fM(0QF8F!wG22EGeO~p>Hsh77-Lp)Bb<JEY
zTbhxDl&luCwjlkZgPLr?9=ugzv};t2mLr==;uoBAK)_Ch%e$MWQTX@kgHaR<ZWw9I
z4!UQDzp0Yq1T~U`pRgR5Ak2wznP{!1$ZL!b_EOceW6&$?!Ej??&4}7;<+{PdLwEdY
zBvHe`td}L34ifF1w~TU;i)A6rz=SGA0onJb=~&Uk+l+7Ml(e=XHu*`GGVrYlhM9)E
zS9^pdss(qN9>ybzc@~LRXE^4fNhI0wK}0B#t<=bALvJT#0W6df2WoSE^aY$Mn`~;N
zi!mm`H_dPR866tHUp!Hv3SDQMlFMQiWHOOvx0|G!`S-XF?XsDjuZBmdn8(jp(4?hF
zP+`W(b|}A_*Dh;q(No1KbBKqvr}P^RZ;TDrw_-KUX3%jrV?-wZm@{x`T!I(>8PQbp
z)WSDy$mPCkgBL;QMW-B$Z4Cv3t3yqq9YW2*)pi{k2J#&TeWhL{RCsuOI5-C&PE3G=
zA`t{LH~11pA--~zfT>x@miU1z!Q#~hHgoS#(JDz!P~*WYw^pd;%aQ7;&!Ic%Gxv$&
z^QQmREI%|X^?R$aoZLR+y!Utx29vEJC3X9qm0hdoUIC(O3fNJQcS!A?v=bC$HIcfb
zMl_X4<Gs888#4>LQjo}%z1f00&lIW9KBQhpKnW}CdutPE&taaQTNzzwqqUbxfN=>h
z9PEOb1>&wu27p%Tht&EwH9uJSU@y`>Dq4joOQkC1O6~j0;zGYaQc|kvi@^0g_KZje
z5eo5pyQab^FpaWo|E$+4W~?qIb+Z&PE$IKNp7(#%^H(*tf7S6ZJ6<qjQ^yM(KDw^c
z8j6gjU#v5t)sa3wq)rb--CZhJFR9yA{r7{-Rtf!(#kwt*p}dp)U%L30?y{6=QeA*@
zN%>O)Zx^pjY=&8}YPd9kHPP^(B?i|+N_|+}2l3@DT~z88xM+6#`sU|%PftKWE*DbK
z7Mf+=wMq2`8*E5aeqU`8CFR`tQ@-1En9GnbU`K$1>keg$;!LJQU$EVJc#}GBII8Le
zjrz^?@1I7%>Pc-XTa<A%9;w?^VRasIs!-sv2OPmB_^RlKVc|YNRGHw1L#@giU5ZLx
zLofA3SD$%BKDIS04lrDYu~w#$%nMUGa}e@ZOQ2d^{gJfRGQ2q!6D)yI{B%g(qLUY=
zF8SDqB4~{X+OSGih6ZoGM)L)N)zbQkHLzpHZYpE)Yg3ppW}>wArJfav$o^QbMz(@B
zlNLW=5@hy{ZFY(>h{&2ni0ukss7-;4w{9U`<J@V>bcOiZbCjS|o&i(R5g{;Gku^Hn
zs-2eN3t<zy<ieBLfJZTs^6gi^RWzC-<4vi(+TvcbJ}G!0Jca-bQe=T~+*}dIhN;}=
z8PWS#faX!~yrPqKt@dG96Ch=yYU~Hy;h{5E)CG7J23)u<r5hPcKOI%E>9rAOoU=fw
z+NdR@-Db9VDU6HK#pz|cTb)pbncj$iT@~T=uRg8*)M-9-LJythQ#n|vK|?ik2r$JW
ziX!w?S1IyJ-zc2UcGwy>hK5tL`LHnNM1gaF0q$&(eWe^MEg3REOpYMxSDSjJs!fN3
zDkfB2qQF|IE6paPpiiTYLiL<5@2W85@GlUU0V#m32~{-FZ*G2a`rVVMUiMu_u2{g>
zS_o^1_!)C~S*56}ErC+CYT-#*^D30$R#&;%@MA<>M;g6Pil}yM15OqSn{Q=vpXek6
zyg!<CIDG|sZ8ix06yAA36JQC;3PUrgD2e448)uEs9GRm7rqtw(1KA_6Ws@qfGh3eN
zGytfiz+0xhxk^BkR@k}r&BXzO2IMMi#haP)IIV+sa~Yad!8O2}u?x0REXgahk2F5~
zW;!+$o{|?xwxTU);x-Xv(P=z+YbwFf2`7OYZXnC0G?t@qZs-gjrR^;dbj&jy<q_Fx
z%nr>U#uxV0wkjA5j^cg9b5vmBg@A&6NzkvX%LAHBjkm&X)%Vd!@FrTU?Fi>ByZTkt
zzpkL8&qr*sY6Bpp>1x~vPNr=4sqSq7ed7TCU9!{2)5rA61JN*je+6dTR!-`dSj9b_
zbv}3iLIt+@v7dWoPFj;WD%^JU6HIdYj*UJ`Ek5}9qUSDWaXBj35Oht<{HQIYECS=I
z*0^Oe9kr8g?u_K0ai&vY(dNFfh-NK&6_jkOLLf=@?0x%__fH*X_Q^d3BZvnqc@5;a
z=}UNdq@-#d7soyJWy<xU&XlHQ2FPpgWI|oDw3xq+K7P@wOHmV;_|9T8qVaGQHV(9;
z)z4`dm86tDEs0`>Ly{>Rt@y-OtuAbcO`6?>y0Yz=!@lMz$#Xc4=0sh{yC%Eq)#1}j
z@+@(Ij+;6ePY$^_)h;JdNLC*+HJP=FHyx+(9+S+Fn@)nv)NeANW*10@01D7p<{=Su
z-DZ!NsP(P^3J|ICgb#MX(rj@?fDg_|vj&j8+61pautvMrt?pP(2e+L|i&SJvpC;Jz
z*K~*k%D@aXmlx#~1`~YNgn{PiwgZ?N8fHJYj4Wry$`4S?U;x8CS8r(Eaj<x^NhWwb
z-L{LF&Uc__2OJD>RR&UFQ=Y>2QTU^mU|n1?RIaqQJ7uTs;^8C1X5dk`?3d0fVMLOI
zAx#8PfJ}kN;aqI&#T%QKz%!&_S!zD42P|xY!&D|cym?VCpZgt+ry2p*PnT%FSQ<SG
zQLU}ah-ezoM73c~+TXr?_mms+>D0Q?N0oVNt186u)5wUzu2L5}-8P|#Yn0J*BLT;;
zD3Kh0MTyZQr!HcE3>%<n?-@{bk`M7zbY1N_l-lYx8`b*4IKtd?0$SW=LT;FB)UyX^
z#+$Dsj28BrFs435ndZZ!AgeZ61I<t$_Uz<pl;9#Dkn4E3a&hVi>oGi<PVi<rLGgH~
zkmHqVO_kntxJeZKcZ*my7tiHM5qjpf=A*6oQCr#dt6MnVaPTb^&u~LaAHeq|Wc&UG
z%bbQ<(55%%OrA--{a)HoXpq9q;2^E^&H#ER8Q`$Sa>eB6GU!%cq0d((aa@RGqe&J1
z!KHCB&5*5-PQb%$nb2_}(7R2qj%N!OrT#u_X8VG_qJZ^yt{`pFMg0$JD}T2(t@ME4
zX>H8F+v|^aXYU_RB@HQh4r<$LOtv(Zq8Z)+5>w6c*~pq?=}e4Kf%=u;kByGn#TRTB
z9f5#|09DA~6%h-23ox2z7lM3ok=fvHQS^w>Dp8VAP{&NFmbC~Siy6^tb)>fjdKbcc
z1h5-2*!=4zyXP6k;3S!}NYbtu{JO!W8psx<!3G=O>VDaBZo~*q4fCMw2eiwqSNsF6
z)#<~ao`6o%7p<5doRqcAav2t@paDiIkVj)l$=z#)%RId3X5&hr$2J!%v=QQii~Xo*
zPIWKj+9EnR%-AL&=jzAO9=dh3ZHzSapDP`(W#-husAdHhs85I_s;zZBgy8z61KzGE
z*A;0!9IMwZ_Kr(a$QHDxT6Ho{M}m}tJ6LBLWRzyL%ZcQv7Y%DlrHNjrs;9m?H-zo}
z&DB`cJaL8%d1IWqpg@Iw8*7W^nFyK0b8Sb~D77s~)mR+5_cHP_^phCd^ihkewp9H@
z+l)lLkU1`WE7J@GP)?=BV_N<L32@$aE7?Q5i2v8TQcAc+%Y%~M)w~8t`9RW5v*|Z@
zopjUMY<W649HtEDHd~SM`i!1!n8)l=ih0=p9eh{j1l7*utX6zZi|A_?am1KfSkC{V
zLvHgUQfChn7L3STmUhkMEtq(kf<L2<6{uKy93Ws?Ees26qNjRMs*#dtYc&pAq*9#9
z;m*cJ?!a{1yz3}uM`5CL&Oh$1X!r9ArYf}u;r;Z%P=!N@@2t!fO=Fts%y&WJ39G`7
z=>W-4IyUKW=<!)4G1lqy!b;C}m)RJj#YRq)C|X;-j%gxrpp=UNiCS(87eTcHxFwN;
z8q!5wrcGtSyGniZ5yai;3%Y(PSt~WBi~lzjgfphA*RZ#DGE^zZS)s_fTWoZ%tAs~(
zjM^i4HJZ^Pe7LE}DKx#VOiCD^lce+2n;M4xIf{g#6wme$NM@4O+}`Ywn~lRM=h);5
z)Du#1brm%?IPER>m;2q{Oz0`u?;P#!X(SOX`P$2NG>6|dLL1JAVq3bTBLsW585#Pa
zr1{WXQrl}s4YGrc9ae!=F*GA2Z@nl`N`&rD+sX%)p~`4TmSx@IXt#`-LJ%s@utpWu
zcXSTg(pOc@OUQN_XtAjKp|8gwIWcJK>_!w)tLjP~G8(CeE!MMdsj^amzV{gcv`~fW
zKN#r-D*raSYS4CC>1z0ZKWVoepdOZVFa&~+_dU6@7*_3yyTsI>WVQ4>JH_Sha=UPG
zN*7)@#bp=Qrs(S@InRrt%@XX(cZkw^6I-*@`ZPkIX?Ek|lX99)0<?ZXI3GSILOF!9
zCE8Fv>C0(gy?ORc7iZcUr_!Gk5$%zuDhom(DQi(_HZz6iUeL-R`KE52c5NGN?1J`j
z<IIDx##E=NWRizrY^~uLi+UHq>sH#c{OcSjF_sezQqitBkk?I!hp7aB0iOCWjIi{4
z5^j|ED(0dzV>w>Ogc8xo4l$_D+?4~<eNX23$5z87>j=17{gADk$JWKA3EV~baVJBl
zLgaufCHuEz2O{dW(Qt5#_V{{OWeg40!90kpbRF{{>ohYP>6ivsG>5iHw={6+OP(<f
ziUsKpQ^HTcfYp8IS}#qLoZT`1>gLn8*XwUS`_z$At#+ie!DNajfr9l{tTbujh-Ybm
zuq}DZQXGK*fX0j(Ly@2qab6DPw07H+NlKYyg_-DAx61lDhJ{KxeCrs!P{@kvl4$s-
zRzxw)=w-8QC&_BtNi7?7o-KhM+Wi+#PGQqE6EL*~9F`^NeyCn6^GsXOEbhb9yHJFf
zrm?AXOsy!S<u!UnL_c~@VXdg1Njna+WQui)xo@WFH`C61m#XJc7DP$4H+g^t$T<jh
z3)GZ@Daz``XHoj_)dU<ONz)aT_t_%sd>jh4!=ZT<<!pg25A9u%V%1a<TqxVV`gA1n
zkZ_mtoErh42^s=$z327Lw5JbNyV4RsOK{0<r<;?+wFx(~31ACaOV#UwbH1XiLmpq$
zoWmcaxw*MbKly;Eo`Ng{@Uj@^ru_EZr|*CBbXyKh3}h*<v{UF>_ype8@aOx6=W-5<
zw9gq9GQ5ek+u<)Hwfwb$hW&LG1+>lgdaT0iEVpk!1%0bm=ZtSseC-dRWZlZ&KACxC
zw|E@A*=`=zP*7Dk{o>zqX!AIkgC&;%(0<vb#RYxn`Y0)_E0%~TYcelxG9`krY=xth
z8Siq!m>wmyD;6J?N<Oj3v;5Em>u!PZ1d<os>%ag)rXHxEB(6ElG{>~&=oz(Y?7QDD
zdjGnsBN4W(coUIzm9|_l0h8I^j_F<P4_{{$Dy=6AiXwzt!lJgyLPsaKEYz;M#Iw*<
z4sWP4M;8mJ3`II@(8uCmY>meu$fPj~du83@g|_L8Jw&f;I$(9{Ey?J3G`lL0OnLxD
zf4=B*b8-{?;WRL#NxBh>8^KhK*xg09exdb`lJ4v3zV71xaBSXCEa1y7p<c0pUTjE*
zi#=|~a0g*Q`z$qK&(iQAjpLZZX~lV~RC<RR96%?jFh<)&Xq_CzX;pKNz0KC{LY<Dl
z$D;9OKT12f(>nL7kXC(7I!e0Mx@_b#wn2nO4EL~fI?kXa&g<w8yk<KB_gcS`u90jV
z9C>9y0&P1k)1m++2&(oy*kw0`JKu(Mw}J$m&;^FAnN1pPZ#kL%b>o3PUiC5XNCQyx
zq*_;MeMp_)q-iy5S)uKlZc@EV8rO^m^kTRn(cWRj+h2t?^J0@|({WODRy?t8KTDL%
zup`}_ZPo!)5}rQAyOL2;2ZN>W)#gQQ=6Q;X>VBMlT};2C=Y5a{zrX(Q>D~JNr|ZYt
zn{|JGefRMxjnI-@go>kz+_<n(9o}*~J>0;Z45@^D@`ON!dWxd%bTVz2y)zqxH`T_b
za=KwNnFxx+gn+Ox25rv1=;>=UPEcz*qf0_!skjh$^>c`~wo))EJ=C=cHP=j=xd7TI
z%aLwBWq?lJy+k?_Vs{QwP{go~9JFNP(B>r}$#oGrT2nTb$4Q;m)QXHc<@*vgMDn&I
zkv0X&t#wDGWUy0aEoi|}`^9<$66oa@Mwd@*&aIfr1Wr3{DpBKB=J7zn8?^)yij~#R
zM@^J(fM^#Tlj9CZ8UrPO7#8$}WR~qO{TQs_^uv!KCC}wb?bP6u0?4D}oe;cgOtn-d
zf4M_WRJtIK?g>HPfGXAMSqWOQ393a=iWHSlhK7fxAK}Y|GCA1E*v2w>{)N04ydmi^
zn8*C0hy-2QI5NjYGo8q6C%y*uY&AupYNGa-ZgW7y*r;`n<4$f^wc~8)Hf0L&jozif
zJ4x?_%PG;c2m*^y38~M(ya4Hs)=FS+oQU(J-<`^x7H<^LgzKBmb}>CpYw&z=AqqtI
zSLwopp;txcZke&C_&B{rYjac$1-x6X4@pk>a_p*U>xMd&gLZTeuF>IWZLy=)a(WS2
zR(3vLJp-mOTB}ZSXcVtgngN*$BH{Qb=}r{7Bg9&bqlGSLzXFyAHZJsJp-+oZZ(A5?
zBS%l%FccuLilsb($|;aWQ(KFuppx0iFR7~<8sJ5ipF4A7qG-yDwQtU-JO=HJ9nHI4
z>tSVU9u~o|qshV~YcWEUEv|T9fed-Jxk9n=+rmlvM#8|Dk3n&kit1^~RMOs;1lA_-
zDZ_bQ0T;^#(}@<(ffel7C`R>|x#y9c%BaXX4c}X3DWW9p1dgy+0-*yyj-c&Js~&$l
z7;5`<Gr_?mHe1oNnyyB=q|%vjl&dwyg@7^*6}BQgDZKUa1VhERayn<CGK$mCdiW_$
z$dJji8vndjaN~+S`Z4o>uehf^brM)4qy0UF?=0lTDCih(RWwXUajQ0L6p!K;pVc*!
z1==dASmin2sF}yFE)1R;Ne-wupat=*2$d><Ecd(~lTg^AD9<3SPcdEK*>E}vir)N+
z#MX>j49sv?83@t}3!gD-H=@%;ZE1oZocF?p^=M3qHOhEOvk|DZ;K}E5E*bHfGo2Cx
z&Em3H?r#~^lScyZJq&alKul+?k|@=2=i5ZfInvsk)vC*=Cgmq16a&8=J1|Kw^KF8t
zoRLB`>AdnfeUHN6FCjzi>2WuCFq<iUOA_>qTkfbEAhb1ZvHTgIJ?uuLbiwF3z8Opd
zG_+78OcGKlldz=uojWVoxjBTx@yk?=I<&?Y^4<dwRqLj+E4UU<9M^I*MOo;WGgAt$
z1YDlDD_XUqPnnQ7J{oGv<rzrhjH*Yi(1?<v7%!!oVcwL0fRNP9&>Up~yLs*#^Ul4$
zOfO!#wWdYrvtYNXSF<#?f*kwfHhOIQlI-^a03*jsqo(rCCenywA~^>&J4MZut#we7
zM%te0huCh(_i&*&Giv}CE!jm0FFoGU&57P-ALc*B&~h!if`-^BQ7G_$c+C{-?g3zd
zQ4h5idkA3)4e}ZYd_mI>Ak+rosiD%idV$+KuM=#pBl7_W8o?_t@Ume1_2Lyg=z&2_
zT%z|?YQN+<=;CE!M==zI=to_{gIBxH+H9Pck?~TxdA)LBJt@Idy<I05yT%JlfrEIE
z`P*ML!&vFcbMmd1o0*A7TVlg#`9!PL{b7`723RJX?M4o=0m=^6X9W5*8n3`%HxWSx
zG^vb8Axwlqt<;VYG#|&@E&&SkK&JhS*N`|uJA(I8<QucVq$ATN!3Q6Equ{{8Q&3!|
zs2D+JPR6ExPR0q^ArN}Z_E^Xu=*R??Zx>PL2EqjoHbKur5lvdDKu@R+)#7bgwI8?)
zPMBC$3jX7u2mo~CxuBR6Dv%aGNu4Oc3keYHRJ}EgI8${<v~;WkvT6V)bk0v?G5O^H
zYv?4aYK}}gqEJ6pO-)+xI<~KMLb`Bfq{8z{OHh=39=#yarZ2&9>7&nBm(}GU1q>~p
zD4mM^#9L-4Rq?2|84-cMqJx8pFWL&z$j-qtk4Lf<?RZ3jiw<T1X<CbvDBAl9TVIDW
za<8+?Znfhuz<Ge=%~&ht$w(mty;E<r;y%!5E$`rwvzY?tJ11SlJRa)0>pasYP=%II
zx5fxlX?DmQ;REZ`Wh#_I)iwmBIr_9o=9NQ`aqNa9<#JU^apZ*Hu!Br|5=a->l#;_4
zn!<pIQl0bxQ5%_cmdDUR_94Yww~96cuzTM$(Va~a7&7XXC(eYLW}~iivRn?~-n_ld
zO-h|ItOKUSIdGn!oG9wRR$?YQ&j%17WeQc~phztd1-b*6CcU*Co)|6R-VP`_GrY(F
zns{`APuAS>*|2(}cvRkn3Rj^TAwYBN5k8=aBvV!@)o$#&iTb6vHJ25H@J1RlZ4id0
zI%{_q^<Gdu(KU*mq`Vdl(xxRu++_U^onqVE%nRdS3a<y#zE<}b7@Fz)*`@LhrWU{(
zp&vzNvcZ}GBS+jNS^cl?kltc20tm<v9~+JHCpsm#K$*rU*|hx@nx|^#S<$qFPQPJk
zV(zM5#T*Ylp~;;|JbA@1AzH<8WhQl38-3E#XrF+HuzUwtml0UFn7%d9I#?#cbeAQr
zek;5u;I*V5gZYfkg+iGCrs{b5eQ@znT?6Y;n7iYc)M}@*47M?xi>W5^UARqovZ*5i
zba2EgjJSB`E6bP5?ny&sipHy|WL}j8RWl%{N?PDLJT*ZYmTTRRK?wLjA~A?UmkFH6
z8dNCK=#b~Ryn5TZ*Wt#eM3hanSxBBJlpg>)qE;kd?%7B|!%ej4OZGi)%jT(Q+`x_l
zoMaO6Qiovi`0$`FRWLUPjiWD3lJkCY<)UF7nh6CH#ezGHrQcCA(sNT_@Z6*zP<|5T
z)hA=0R6s7TX)H~1n{&%OsitfxQ;;cAE*yH?|2dkYyX8z@BVU{6Dz1H|opJNHf_GjT
zo%D{idBdF`6{@m&m<y#rr)pEag81X~$)}-gO+q&b5DjgAolCXj)24AQCZM#-W&y3!
zc%)|Tj(K)E6so%>iqw`z$rE$PuA3`itBxa_=o@KaN;r{WOg2Y=4O$%IAS-&&(d5p^
zELd}AP7xT0+ji>bLVcverY=q5#0#Rf{j8P2$KmEM4)$9J&@#G`kPM8mIh<yI?sP4z
z*6AC1-(8&9m<A|K6K+=R+R=h7MkzHBI#qrv^6;S`BysGOp$2i0>M`fcm3-jg?^;Go
z78w^1YFJ0eW&ofVM{4qEhnHx~vw?{tuCU8mZ5WnW&|>1#M(@&KrvNKF+f7o;FgF=<
z^<<7aYm0Voz80_5Zig%ppCCabp7UuIlqcJGsm&f)jOrcgw{|Y#2abUxqNCERm|GpW
zXucr#nhIAF0G<aUQLm{8upWP^5o!{m!kb~D9x}$Hn=-YKr_8VV)Nx6@#=og@?r1j)
zL<Lc&kUNWXo}NxB10O7DxbsxJ5Z!u6MT~Y-7nw{XtK3EwJ~w3p+(rZq`-K^J;o_L$
zFg+zS^B!sJf$vhxQt=+=x$gO)?aaiezH}dHcy@G)u9-qL*vVB2@exaf%ZE}}n-&i)
zGU@PW47ObrVWLHY<PE1_^la#8?sr;1^h#PF%VouQR=G0AHVf)xqL8&f7O?XQdSgEo
zwYnSkPqQO6nE7Qx+iAP&T|wly+H*<G8rXR5CTsA*+SKcAcVt7T+Pc(o(<E$F)h@_Q
z7B*ttIb$uVpV$e8Z!Q}tKO<lvML_;<qehBfkmk~U*^WwD*07fbpXK8*r#o#LjPIpi
zVseZ4+gAs3vmnw`nAeWe106gq;beSSCRfFws&X|mAtimbF#<m5UHGsi$%Pmpc|)h#
zI#K!vy;SL=g*Ni2V_$Li*l02p1ywy#`+dkX!7r+uZI(fube<MgBa=+>^KsKRraLM?
zo<qUB8sA0O1C7|rxKjs22cJ<x;FIRT2^UQG75*|Udg69e#vn!=vr-h8d<V6|wr3lE
z#qgPX?lz~S(94r?n7Bs`z;j838=e-LO%mQH3dnpmb`mM_A?IunddiFh@G2ogtU>1f
zk-nOmqkJ%eggMG4ua3iZXSMSd?uty+U3jSwGvv^q9O63j8b>yT=$%h9mNWl2D^m~r
zSDi7Y><8EXGMyf{7XZj_FVu)pMcF1Ci}pE-6&b>NCV>R??@vEne|5e8V*SbW$B);i
zx9{J5_Nm2t$dc372G-^Va87|0+h)hmEM0>Xm0a4J65<{i&Wpiyup@gj=)*diH(Uti
z0MRdzL7alt#1c68rt>@sGD!a}l>OQfmt1A=99J69(W9!&QpJnoG?h*wcIbSPAN#;A
zwQ&5m^iUq_prv1DY(Axof}&?Y!-l#-m&yR`;7J0bB~F(T{&3Hh!$i2e&K&8$_>*G}
zrkO8fc0(QMwxvx^0DRU(GB^{!+qJ9vNZe&>KFz%gT)b0^bWSs5WkHHXdBGy(u=`li
z2UKMWd>eYF+@U#=W(h39;yyu(>Lg)Bg9O~O+(*l=c(L3^1jQU*>HTDT>B{!1DtoD|
z%i_f0>I5FKJG!_)wb;~yxzWVXE!dK?oe8yhRbHn$v}VWc)No>DR=!B}JaY@_m?#Fi
zOjwG`2wHFEs5oC@dwZPr_s%oRQu+SY<G500T_2%0TaasSz*qi9+R7?m9v_E%m!p1o
zg#F1?=<dA@s+*y**x=hdr_8<wg4;vcJa;%aRxv)hMew4ETjWtN{nA8c8o$~0Jc?F3
zjmAQWPPEP!F#t-o6J>jeR-jdF^q~m#GwCuG5Gfe#ga)GMG~^bu4H>P~=7}yeGd43o
zP{3NJ{A7q>pDBv@WYqVoAnK|ubIw2*s(^)zo?4-3bxk4zFsDi<&7emUb!mdtd=#79
zT!;w9zDPSIBO4r$MH7Fn5UW-Q`CRilD^;PgF<cd4gyCiX3fp8iWcr(nSq)l{WF1oM
zy|7ud3hkD>s4ZU9<cmzTl9GB#99|a}t&8`o2Jz%!_MG$b%Bp*yrRUy6^`H*Ry;1X_
zth`Q%6&Qf+A}zCy$B6@ehcNX@rh-uhm-7pq_R^da4#Nr~;$cpR8VVchjpL2LL>A!_
zj0Ig}h8kHMP|`E4EwBVZ6UW6VvKx$^3?j9Oc*DSZ9b_R<r^IcMV1(x$+v}Lh!k?WY
zdGKSCuA+BBTDXUy<w@I0Y+k}^m9<XLAkE%qkXdzOUl=^gR&Q~IdF-g#DA!0Y4%Os#
zhKqXco1Hq$tJmt%p`-<v9Cc(LfVbQA1~h>Dvt-#eY@!IN`Z21*q*#tk(N(n)MXeUr
z;nd*8zYZoj7~S<Uyz9g8u8)S-qg#)`?aO6wapwAXbdSM3#&&ra+vPI0%VlhrIkxLD
zwrM@a7C1hPE#@)&=D!-;C3<9+zdN%0`>T;%9}VsLXl&Pqv0Wd=c6k`v<zZ}>)I6{&
zuvs5Qb-j%0qd{GdQC%NKb$uAs^<h-khf!URQ3aGWX;jP9iH=greHd1&n!o?>>90QA
z+}%C(Rx+e)US&X237f)6o1*&FknLH}N}m)lJSyp^)v}<Ly^bx-I7auXxZkjEq~B=6
zI-p_+BO8(SEdi+eHg406u2Xr~?YJG|%3X?eyPHzH1pj3P*$<0j*$i}9Fr2Hk9}_3r
zj9ie0&6L<(DR9W4$6{v(GVah%v^8C+4pH@xko!e`Wq)Bi8}CtecMs6Sjn0&EYP^W{
zpO^<&jPglJ&?k0gO?i|Z`Dp(5siC8(8dc^|iz6txS^WI>TC31ya(-(|MU3NzEjL1y
zQ5C;c#<IYY>;r4Tny8=`m;%Gr&#*r15K)MsLN8IE%1VuGlbM&@(KBB3mS4~TcAecZ
zaE?ZKi!~H43pR9hSF(O$03RHGBHQJ$dW+f)rQocL_z@2Byx}y8_9Pq|Iej2=6OuLs
zEr7EcF*Pk)_IufC+NU@(9llNH_saHo<U_j|(09H#U;W0{`D~|@Mtd{wWvA<MfND@c
zBonvn3^EsnC-L}t6`0<#M)c)!ua<s~TL`%*n~<5>57T}ZWFH5Q3iT=NSRvNCx4-<=
z>E`JXEeD1Crcie~E&bBXKEdP;Uchwx-NpO_cvpbT-#!K#4&N{9OSHN2TJ3N`!G2CO
zKHF#ORR@={{rR#$WlH07lnLdSP4NaC&eu_>%}_o$^4EY$IwOJ6r0*nH%4S?lsd71l
zv#fbUA=R}3bggr;Y>f@vx1d85*2>qHM2HusHPblOIxyL8du`2a2CEWouGdKJFNqMf
zFgU~nDH5|B=KGuwN#z8hSd0G0nrG9bOfqg`I}HET7TZ?~8OfU|7C+vs-{L^ARC`p;
zKYQtFE_=sxSWfG7mUIDjv=IF>p^=)=Jvfypn~mGeq+E(4Z;9ZgRe!s4@X{#<#BxC_
z_Kup>bUe3+U}<c`-N9Q1gWLsGXy#MZ?lG{S53+^~RAFm>ew%kLHYFRtcQ0s>`f0a5
zh}4WTAE(0BZ1Ii2>4;^r8bD#hX@d2upWOWH?Ynn>6DTK+<~aPQYmX(#$6mfFVaQa5
z{kX>^gYMO#8B&9`$)xv{F5)T9jQYGvR@7v27jl%Idqx)9(OayN1#D4Cn*wcDk<)$d
z3oS@Jh{0ESS5+Z%I2f)9Cu7>z@vN7{h#8|I*y%bipKFfwO0-pEJ;RtJ$=JNnFByJp
zTb2J#*zGd=kA!!y#d{U!6ZQlSUpBx1HAfF~v!P481@q&$*U7n++jZXi7WSYNXylSJ
z-dm+`?9ex5t70byi>OkOR1z+H=d3>Dw-4!V%+^aAZO1%dvxBZ`5A-cpSztCVI4LK2
z<PS1o;~-el>dJ3Jg(2IIroIZ;owcK>#)+HX{_6Dp!{6e>r#Ill`TkgxjpreIw_DGD
z{9f?{&#!iwqaa(}L&&K#4mr8{$@~tmM(<RFV*pzuh0n*|6(GVf1OJ`&0N#-mkxqX6
zxBBV)m@|lQU&f8SIx2ryxh&kSTztz#w^)zi|DUB@9=AunT>}NIWutsY%{V7`d}3tm
zdfs%`U~O1~_JV3#d(oa2EuuK({kbdDUpmcf4l2o41eHu|>-FTXyOxek+Y@%=nGd|1
zpeR7my70^|xb?99^!<llKD7yrqaUss8g^_6f_<k(8abBCKyXp&6_=|psJ=^A=$t+C
z3l;N*60SCfq6p$T@|oQgyWr@|^Sx8#VCcaUa#fYXJ}vJitakJ7b{znuJG_m@d1MN!
zkfS^*(Lv*r^6o3OZ+y#+qTlo1rI!w=tf&5)&BXdVaBt$*U!D=Dh^f`<eQK{@k=(DT
z-Qv#|tJ#KFgI>&6B<IT@yvU8{?Bde2SK|z@Q-xaOmL+17C$;-?iR=X``uzJ>CC@h`
z{Z1k9T(Syt*%8M*j^)oiK8FLqO~s{PoRQz0Z*NH$IUvx^6F!eezU$JBndiBSG7H#Q
zd6yj|H%~o3C)1<9)sGLV?0c!pd8*%I+DMC%7g#acg6y-4CH##c+#(0r%1)L<K`^}5
z$mqiinZWAnWK4V@4aRz|7{&)>l+}9dfp>{56jH1YX%(Vl(;`U(Pf23jjT*Dvc*%ov
zVXw{NI-u4dP1|9PAt~B8vML_Zt)dwr$-qRm_X+&dQ5sG~qr!A3L|OMOSqWe=agyxA
zQl(TIJHyY3Vvi#;)n~E@?&4pK$<mB%29hmw&%%D-V{fYE(Q_*l7LK)BmyO^Q&c;ql
zJ7i8KC1NLL3YGfU7Fl&#wC-}umO{zZD4?uWJicK=d5Bo4%!elWsH|C%qoE#SnWyGC
z(l@KP(o$+lh^+Byp&^*U;Q_ze4CD$o0zr$uv|Hef5vYycg=t%3Jx`J1G$l_{P-Hv$
zASd;xAm!VHTa_L)s!n3}&?SQkWHpB?*cwQIA*6a!Du7ioND^(ZM#vHdnS~`u{g>yl
zk-H`eOi_9ONs0=>ca*h?7}zkmz|lfd3iU~nvuIUaPOzZ2>d6w?S!E?zY1M-usYzr$
z=%}qa8Y&+o#8TVfdS*-R3pmtyN)`&RvR4^Ws1LHHwOD5fQ_n-OA0xvlW$aAK68*u~
zjB0o5HdQN8rsbEqi+orta<^3Pw?BFR+rK#>+J9elj9EOyWjXNVQgt5btlt+21k;nD
z4w4-$S)LoC!~YFO+2Pz*ZEz~*7#qn=j=Q)}hK_QM4!c1pjH@BvVp-8<&&A?wMhP}w
zSW;@A9GFJl40*DQU}6*@w=`}0a`GDFR*9DQVC5KX&5>uK2>3z#MeJ&;W9sbG&=?FR
zGQCSCTQUeGyD;f@+pFDl0L=Or_%I6R`KEwAZMvn6k%t^2GRIhN$Ub~QpNjD^118cZ
za%SB|c~c~n?VBq&%h2DT1T?ll83(j4t1XYfp+!xnql1z}Y{-XalJ6Sg>0IS*gLVqd
z3fbI%H4SQQckou569QGs2ZrNvTL}dNKwtx4nK)MtF%$;Hh>zAqfaDHvGKvP>u9XH@
z6Xa(Enu6vDkj1}r+P?4<{>X(|8pU~ZN@DofTq9W2CLJJXI)z)m)Kj&|ooYw=2AP_J
zI(!xSFsLK)x~7CW--*K5W{eKtY(5o@u9TN(xjjO53Hg+at6vU!BX?tk7|tFC(8>;t
zK^FZY^HL&eTE2bvv!`*Qs%Xbhqu6_h1MMwNwb@fj6AL#chQsceXB@|9rfpN|)d0D<
z+swU#eG9auXI4=PAkL+Dk{p8BT454qL9akUWJQ)$`D|G8<M1kM+wK#H9Rt!FRUc0|
z3#FK3sYkh7<+v`&vZVVnshN`f7Rv;SuwW7ZJB+0gw=fhVO|LXvKKAfZsq$HJKmfFA
zfQo2L4(>w`aMZ#gP}wz@$CGcxQB~@;%AqvvH`}T$N9E$KF)sfovR)nk&&Yab#8nI=
zB=@g|maD?&YX{X>ZbfvRG6>i!Y}dee29GBI({wHPN?f(e+n}fF=a%!=UcdpZI$k*(
zgY=ZdqA5`Pnu4G~XZC~Spo156kuAcr={vfTfcVzB3Q%9i(kP)5g%aM3Bgu|E>VyzH
zN}S`=sFhY79aSMrCoVJ#XQEo&c3K4PiQ8NAj35iHFscW3DCF&&6C~*K*k=sfK3!c=
zvxfe6XV(<J{K?yQ*B{@1cslkm{p2{;rFeh-IlK2s@isF~F;xe4d7VNME=5JXX|FB6
zO0vY$4rwbTI)qUlVP(Qbj*}w;jzI7qxctpK)IG6iUd2@Jr4U0ie|LTR{%Ii4FvLlS
za(EL@oaF2b9QeuP(q2U2h$tZ@p(IwOR}Hjr;$**F8S%o9m%ZZnEYV!=0Alzo%m)e|
zp@g{mOgB4*3RJ^ti$80M(RStl_W&gl<SSN=nkohkhxTy0_)<;OBJQJWB26NgIcS!~
zlGL-SG^ijq@=u9n<!Xo+ZomBH->_hM-W<Tg1~CP5psz*|YQ9?Xn72(8M}&Y@F~GEP
zOxvtUD$H0=j4%u_D_Se|1*W#`u1APgDKLqCgKx)iRNSn#%SS_%9ImUBnoX4)dGChk
z^Db?HOUaTqk0|<<WpFv#6t3w)TYPm#BK|1kXq8CR=q53e?cA-wgp=a8bX9Z>&1jP2
zRA_4s2NAOtxNv8Jf+lEeW6({#md@|2G6=P$&$tXktk+RKS#)&{Z4_o*pE`!G$k}h@
z(1aro$5mv(G{V>Um91tWvtNf6Ktw3ee8o6c0z($-iAw$|mJDYRQr96Vl!bp>p4f;%
zFaX<A@YOGoZzvQ*+s|cA8`5E^I3A=(Kn^zZW17w8@**~%Sn$C}`0mr2GdUhheN2ug
z?fXS%EZEVn*`#3jy^5zXgNX0I5iz>A=*X&<oeCKTCo%GkA~?+0V=X`dyox2?mk@8|
z5AuyFxTUZ&+rY7C&EJUwuet!0J%*v@iBs?unG9ZChiLmQs{KgblKBlTr?i&3qwCvu
zA8$UK7u2&R;q~dfrlz<(?srzdVNuiBH%TrQ(YI&A#MR2FixVFQi>bIp+bw=t&zbCj
zuASLr>KjiD;ScYguwB}X;G2e)k?E3iXg$tdJFK{jndQT>6Cj!GQ?*=NHnZbW0^(Ke
ze2&w_k7!jzc9l?}dO?6}=h^&Ob;4L71NrN^kF$zo*P~&Y+}fPP-t;6loUuxib=5n^
zLXzi_=MS3j5Q}Pdp}c*q_K-cfvdO|`RwbTN8FZ2`CL=?_jKkgME~;d(O{xUNP-y(5
z8POaX!CMSPCyH~xMe$8si0C~^>c{ULP_wc?)TTs`6FFg}i5GXqm((3(;G+}h-l?xH
z!$tc<Re4pJKdM%zi3WU|y?2+DM?l+td^YO<>1bfzxt%)UQZo1=P6X~H_)JS~N1jep
z4{)^EFo@b}vL)e^-&U$<6sSf{5gJOo^^yG5LGQw2G4=O0Nm<8a>ifN!e3H%j$s=KO
z8#?6LeNi*T9E6H^p$Gn4hy~(9CYkJ+@(8C66Hn@<!sh9qI#>%NMjfw#qqqP}eBqtI
zCRe{6MxTS}YO;@4^gBQ{D|P_=x>Amh|FlnOlXy`2)Fl<ns&!bJ2E0>;fV;!|`Y3Q5
z4GaC^Am@JKhF7*9o+b>Y9g&OP5!vOVv}uFLjP^)LAnoI4XC&=N(*e5eRS!c0`|-yF
zYq4uP)L&N}AqUN5z=H#)95R1kV{x>O8fl{i9E~Ihr7{D53Cgz#gZ=BsqquQ15mjj{
zPhFAD3X@wPUwCTcK@$6L13Vll+15HoFc5qGof~`*I7Q-#ajd5EnaQS`)32VMQ*V3@
zqFwS}8czxcC@=A07tUKD#r2dxL&fS0uchFiX!GSdid*HYw_s|up^IbwU4Fa?57wxu
zC+Lfxqmved_W{={QuvPLI*cI-!9ONPz~QJRKYW#%`{JwLh9Rq~Jhqe1@f-HKI?Eg}
z=s6m}yb`UT18#$i0y8o_>TX^<NJlYXxndS#H#{4%(^Kj2w1++#Y4Oz`B{l^bjwb5-
z@hdG)X3U1KJ|?qJG!G4_@kx=YGeN;@gt^Hinx@-LllOcDO|%)MM7>D@)0nP-c+QJ|
zTsnuo99HNAs|prh{g(M4`?V?;tHb`OhU0bQxx2tf_ap-eP`pI;mj0Sl%(93JA{Q$|
zBrB;du-3&_S82}RDQph;h4?w|MscwiA~n(qC&d(hLje>9$>*yJi(czk`2be)&+%5=
zLv2MS;c#F0^mO<WsoabpRo~mt>uI&s;w{QilHZFrOoKpHrwDv^9~mrUXT<?<{CMeE
zzi)EgUQzB<4%+X8Q(*}86XKLNp;}BBLh+G{*m;ZFBK?{nzU^(T9J#WVh#|E+7a44V
z6-g5+#j#q=0)w~UV}I+UB7!*Nk$WEV<X^M%4X5x{Y!ZU+rH9iUojJjL3Fz4cDOE@f
z!fxw-Z{PNaHPqpl@?ISsXhzSl4(D`hd<Jl&<K#!KY2Mc~WN@_liZr)+9j|)^F(gHi
z$Ql?pg%X4Z_17PN{ga!gv8HNs<Zo;i;LviANV}}pg0?1UBe&k<>9bYU-7`OBw5tqj
zvY)GB<LVDT-;*ME<UzyiMLL+d*PSx6J-)_BncJ3x6S>Wz7Z+{kF2eI(FL%;-*vgaJ
zyG_CAQ(yl2`L1p(>c--3EOMGYYl60p;cB*(0iyMfe(yrtymUs0LObxH8}7wQFT&zp
z0H@HxEPHj?vq7tSaoo-3J-T%-R`+84>*q+i1AB}bQMUdjG^C$J&aPXM&0qv5k8jQE
zo1^}Z!l)!o>d?)_M)gRX5b6C~Qg8G|2>jRVzeg;-^Yv9m+EB&Tn(V*z3HxuE5BcUP
zzwi++5mypXF)Y&=CPfhum}E$CEF-XT<q_y1MPKrj)qO)`%gc{{aj==J%nKeb#Flr&
z5z3R}WXLyOQ4saXWK{_&z9i1LMvIo?euvbcLDMRo1;gb8yxp7L>6wN+{=J*+S=64D
z_Rt)&=II=t@rGik%mF1P9Kw;%DF6QU?d`9hc$=*b(G30~?1k}??xT!vP9Sfx+_LE;
zmYQ%ltV-Wz!vDVUH?Jsx_-v!ezJn7cCus~DPWoAdoA`O?qP8?w@kx{4=y+ak8^ppr
z1tn{*bY#~9>FTQ?l|{G-$bC)TB0nT$n;%ZYq23|R6}4VrrFW7k+^*fM^6aoZGe~B%
zWSIwYp55jiC@zsk8R>(S`k615eKM2nt3ew~r#MN#Wn)z=Jq}&eXP)7C*}+#bEfFB7
z-a;9OlhQ33^k|Lfz{*yHQJ|<>o0Z`KT@iHyAh1u*Qng^k$7xvlrC-%5gLkYDv@SYg
z+f<sWco$)}8ML~HGZ|JWE}68M{)7bUGg51j4<E=#DSjw;@5pzJ&mt0PTAbO~2XT4;
zdRI_Z+j=Ek?OP3ZFt2-~R0hB7hjqqKFsi}emZHJ&fUr&0a<^ivryf#1Nx321pm77T
zXF#<JM)Kg4;fM{}`?bgEJD5>b0-R1|sY~->U*++j&`#R|$4AK%bi5>gd8)nH&RjO?
zXe~<lgNlbnIz39>B@A3SLBmxE!WGO4DKpzJCEcmb*b0c~!$ek0sd~H8MTLuq#Jec_
zB_47}44dWhs4U9;Ucg4&&X$5q#qBt@8>j4n_xzlg)U-0gv}$ejC;li#O|Y>7W?Q_$
zG!;ezcKL`ZkCS(+$gZfkD-2DX5q38wEO6~iw;B)6U3LsHWPg|-qi3jPD_AJ@R`68G
zG641&v8w4wekX#G_k)wit5nzp0Ej?$zweIYMzUJ)B+hTc#tL+g25Gdvf0GQh2M6P_
zYG-6*o?@$&s#Qt`K=!N(h{(UB>4)C2$p;;wN*TfoE4z@j0-g%?QC4&k_FiQd({S5;
z0kS%&`lN8rLYCrfh*4&D4sYLm_HX?mbwcgpg|_ZLed#kl{q?&Yw&ExIvp;<N@Vh_k
zpFI21e*JO3<-yyZe)5^SXCH4ry#LLz|LISkTrxlV!?!;9>`$-HvYekj`_r>Oee&%2
zqgS8(_1(>K_wmEq{o`l9bbtL}*<b$QPtQ;1%a_hIoL`?=nm>K}?&j0ae&*%J-~H<5
z{ZAJMhWOm)KG|P7`Rw`M%l7H}{nx*|dH3<0@$~YzdDPxNQQPgyPxcq@uJ7Oe3<1<1
z|M-VLJ$rF((TA`8?40@e?_b`(fBWgOy?pud_A8(L>=$pJ-@n|SU%xy(|K-b1?q8@-
z@_ptr*O!~GpKe?$4{vX-KmFY2K6~`{voDXvUB9^g^wY23pEJIGd-w6?th@ZV&t1RR
zKiph@yrBe2{qyf%yoI6rou7X4*>8RCn_vIzvp@dv(WCEwc>C!&+ZR52?*5N|{NrzY
z=iA@^@mGKF_3wS>TVFrlo}b>myujJR_2K5@uRpx|%yxmn@g)4|JSu|z&C7d$@THp{
z{_;nE{NpG5ygb9?If)l{AAfhcx%1=W?&0lOLiP*4JZ>I+dHeR4es|ow{NayW<Hwgg
z{L<0X<y)WZ&wu~y54<|P{3L$)`oqrz*Si;|n|D9^c>B4}c}za@^5x~#595!%^7!V9
z4CCE7HqI-W@%)xy^e3m!eeQG~#P9s%=QsPu7r(gq-Q6d@fA-?T&8NTKZ!Q>nZo!Eb
zfF8g9;ps<Tnqd0O?Tfej`*&a2f9S-wuYY;-qnA#9asT1zoPNIl>G`?xFI|TG0Utja
zC=C2}&*uJr{NwFcK29M1aR1T6SlvJS!&%Ao6VHY4rTuRp@TL9ppLg@FU%vbG>GYXL
zfY=R)<K~N+OOJbdt+qWy$C=}2Hy^+An|I&+@cvgfA3px>d%yeTPu`#IG=EMn&V4+i
z%_sjPCxyTG>D$v;`tS&p2a^5$I=*&uw|{v1tB>anUq9cUy|{UIZu^JppPX*~^z7NQ
z=cgBEP<;J*zkOVwapU>z^WT5z^z!~ZNw0r+`*Q!$^V{X^yXEwiS&!F)qn=O5fBx|F
z>zgnB{`o^KU;NDW{M@sjzWv#+FZaLs@b=?O|LNHmPd~i<(aYbT*R9!&`#*hh2I`}c
zW4=7UfA+;E<NL{eet0H(ukX%aez||{b6NyHd&X@oJU@N;htHmK%B1Kg=kGrIH{1>L
z``F;>#=%^>CQ45Hgm}MZ4l&gsozD;a|8|Yro814dcEh1QVY<tS-0yR!|3G^pZhu#M
z;+~^Y{5KnQzt;SpeuPI5v>o%g2XEXkT8$GK+g2sVf3)|2#&6AcO0P=$|H1=)NjjhZ
zqk}BAN9?z<tJ@)JOq`<3P@RA{yVrH!WZ&XIsaR*g9E?uEzJzR|g1%<S*cl9&>cF)3
z!?jyYf77SZY;}r4?p=xOcaWQKt2U4li}->(e_`)TcH`KsF#IZo?8_+5<T4NtXrZhE
zXs>jf=pudN;3`pur%!+X&u+C^l6~#i$;|*;RqQGj$HT+JGwu#yKCnh>^&EJlI8kE%
z5~Z2kx6f0W`Ch{MYvtf;ivFLSn_s57!DG8eb0MpxmNfRYKdvk_w0U{5cK%%-^6%Cu
z0ABQX>5p2HJk*!`BN|oB{~@Iw0QBw;zx&~D7ee7u>N8#Zqayy37XE80_-Fd}W$_!s
zT$ZKqHhG`oRW%a){VJqpQ(*ER3O_ts$gq$&=2l`pU?@UHZ_5GGsw6~$hUyS`I_F!#
zR-Az%1s-wq`-6S~Bm7#^F7johj#hjhW+1~WQPs&J+@UX)q=H?84CB%?u~d0t3<HOV
z{LDg7vy_56MS!E7$HHoyl`1TVmT1mKd5(Z=AquS;`?bS|*zumZAH3&_tk;V&(muZD
z@eEeSMc+sG%JR9zP-L`vr+C*1<9lmKX0fyV{~<;DWlZ9fArTph)ifx{?N#e7>8CEW
zng%bk!OcBWJ6YqWRxxmDgPW~Eh)MU4H72<++Ki$@yoRawM?cipmA=lwY#wSAdmPbj
z?EJ&w7_{E)|FrJD`(d|#zaEY$FZ?>C(w`X(Yw_s*<Ceon&UvvM%F}WvPs<@oqoI=j
zY&n$k<xrk4hn2wy^)ZBczgD=D+l>8h@nv@m*RmgD8DlpCtMM*5amajlw;tX#Gfc%o
z;}gDBf`V_u>-#@s0Z*wiE`GIy`1<(n-~aYcFUMCj)RXyjTQ0`*;Ui;uJ{Jf$`?668
z1N>sJepTe=<!OXJHQZ<sL<pQrq3$}s>MmZ#QXi|?bgY7?g{T2zsqI&fDjJTbKZc!=
zYL`P!d*S{bzdjUvA3{A5Vhc5YWMqH%?sxaE3@x59jxGR>_Ug;o@crsDKp6z)@tpvC
z1l{8pe;QoRXTUSo=<*Y7c?2NCR>1ExBP^gcJcl`0{Su^4U@hFi=<`ye%P4DL&mo(V
zufsX?9s&EUG5+%(Uk<QHIDyZWcR`ZT9|^6O!_CeHc9_Uvxg5-gPmbmVJR{+R$U&v;
z)n4Ala)~np#iw;Yfz-h3!6jjw;qjfr%gCPQMF|Q9DP1m{3BkX9zu#XRrncWEAEpL;
zw1kR=qsAsCO@XQGZc2PQr!h5;(1lHr>a(1$CZT(Y8WbEi)LU&Ap^43wDUknmk{KVI
z(q5CCMw1!talS(6P-djpYHu~tRB<|PUCW<=!K(lqOjI)6y2Y(qQE<tOOm(#7N>V(+
zX17#TgQI$_fFU#1j$(TllTR<ce$`uSmmPSfl+`kP8&r{`RCvTqPGW1{#W0z;*rLc&
zd84DG3+5SUeMl*ORnUUeeJ_yUc!mYE?OGo~C~|)wt*48hLTS5z`TgN@de)0=gHw?4
zc&@H>ajn;CBthykN{%{%(ASzIvw<-`(=}g*O7J~v1EjLdx7isE2`yQmYJJ$>J=|YL
zQ4GIzq-FFvhP*Rw@g`LnTV6>Iz>$jvtW*#=FP4hNhz;zn$Ph(N4l<-dcdEoCeP0MW
zNO!`nN^Pl#|2?Wm?nnVEmwnh)6}KY`N?>HLo?LUl3EpBso{keJGeDj@5Me$>gATSA
zQ#`P&)qrS5Bwm!JYXc|+hjD{nUSvHf754arKp9czs(Sz<!>gc~Oks)}!T${}+wuZF
zmY4A12q$Wh97&=<Y$Lr~@JU&aCQ6M_aUPO}AlU0?1_|Ub(*w@_x5ELu)hzoW8&B&^
zRm#Oy-<ltBpSl7`3~)wloIjERnT!gYj=Fe+L;{BTaZrz?eiGE-Mty(x!|yK?(6%UZ
zhlEnpWGQ4z@SHL$317)0dPNV-&l58$tjhVEZ-7y5lD*Q}Gq<JZ+mi2C08<Hkt@p9j
z9cw+)F_i7``HFt-sJAXcE&ua(``=*Vbz!J+_ZzD`GYS1IiXd;VP(-hjXK(F#D0OYT
z&!5HSdY#NYRsGbOg(_D1G3qz1gDSRfTEj{ljQmv!d##;R(dxIJiqI)GKc;%UJ+7&~
z23ANPZ)3K@y<~bmqH}h*-lx=dJQiuEcZ=RV=6qOV=~Wv2mu<*9SGo=(LTUbZU>4yY
zQTG}*o%On3Dat<Zc6SHq!f)<=xLiCb9qsRGzK07K;^z!qiR`bR|Iv|YSy}RUP&4lT
z0#m;b;u~zswTf>kTRk0~6cX`pt+%0Wl=v72WZ2;?Z$L$h{ec}v3nKoKb-y*6mPl#q
zO%nMl;2}a5^{)laZ!IGtw13kI)=`&Hzj+nkwi98*Z(PH`O6^N@-GKjBmEE+Ke>?~l
z)CE5Klic4_sKb<ql?FNSw9pnUH2&SEL#f7&buPb)#kaeEzk4Y;Yxxa~6~)SH>2hXx
z<GJzcbIkSSA0KI?BMKvViNk`4r<YhP7>)Vu<va#Ie~HP?>849GcK&98WsF4%X9xMW
zzd_%<XH<7^U}N5rqNvmvOm|ECNX-X|0IA*gXdZ7PaI1rl$nH-`r{kw&_J?w1-NKOK
zT&g?e^>>T&`ol%J@sNgzd)Ts0n9?r~_yDs%iyl5vKu|MX*P@#H&UsJ$OZE62wfVE>
zVD|lYfB5smOE8P3Dl?3b*D-v|udS81y}DRpevK0tBK{;G7ef92;y<62Kki?flyE$x
z#PP<E-mk4bw)*Oum|vgBR{834Cb?C<dUg8qYopcb;gic3-sAb~i?p2oizok2-+ll7
zmD#t=X^=5o%Q!Cx@D%L};K(H>!Sn3~_K*~`_qNF7@<!f6NhIFlx%1`v?DA$-mGcJY
z)2;Bu#k`eM{d%22E$<HlbqSX@OX)LbS57&)nI<41{vWsmTn7~&+a*kS-Q`)RY)1J-
zrndb)3>@Q{#ch#jNXtnqwhoMZup@g0Q_%@29XQYGJn)#Bgf;0X>d8v{iwzw-fF0yD
z4?b(<-}ym_;e?KOOnLjV0hYk-a)5`uD7U!a^E5nqfRAFZq%l5@jR!b!xfF#l$eV_E
z|CEKHZ4&u=jF;mW|5pz0l-gYauxS<|3Lt5})hM5YV2<W=61HgUfZrE_uxM}}o&je8
zbTQxX^c-P${cjy#BzBjBYuY15Bj0P`i8Be9yox+Yz)maw9K%N^j2xcu2XNawtjlp&
zm;Wl%aDVs1pAHeQez=r_Zhh0J4%x_;c#jlgS5ZN-LjaOWaJiLR4DBRYe|~ek+^_n2
z)#rM$95bnm$Cx(Rg_7Y|@ae(`=$!wlHstM}X+s$Oqiq=VlP!o_{-;`y@<&==j|x`!
zGZ1ldbO80^|Lah%c;K^d3nZ;{2$xiD8mxiyq=IvwYu-_kaLcN%RThe9uU3MFN^dNg
z{_*j6#DiP@^6_XN1q#4djEE`Be*wYgT0ZtV>)-&V^qC9Vw|vl^IibZ`zP5ACpQC6$
z#V6r@E`cO}jEP^bPcKf|6~{02WM){88J=E0y*PgTJ#ZekY`03a?dOqxoyY8RW`MTj
zTKJKw83CNOam9soeqG=Z)Y10XI<*mT>lj=6F=dRsD;$fff5y3R=EYyC#$|FL#wIJ_
zL3reP&JviJ7k%m6;vs|<<;y&@K(BXX&T3y*-t6|_rs&8cc>;~MoZIEQ7tZbSI4bIr
zWYK&fzo>5?le-<4FC|a`iwQ%ptOy7#=9|FS<R*94xqpfwH2Fau*44xMQGU?)Vt$Z8
zWHE@ye|su%6*Pt)QNY{mpz03!vutpAnn|zj%LqXs{Df8bX!ZWPKmPi|K}Y;ToSR~w
zoDy+K1uO`KpDSiRJlD+re5p+A{WGO9zYGH|<g0SAhjpe;A~ZeVKJ%SkAdAHe@`d>3
zb#V{*^i)qIbIv%De~m#OYJXLxnE2*M-5hBi&%uY??=N?S(0;;z^L-8S<|7Xy9i?7e
z$}?_3$5X5M4(@mpI*i||tgaMaJHE4G+rCPv8qevxk&iE{J}WM(^fzvj+ykXNsCmfq
zkTL)@WFY4p;6Gfh%$Ozh&w%Q+^tvaWgo-^PM06HJBft4J#qCYp8@D%b@1yx3Z@hh5
zBLd?A{Eg&SIQeCJdUAx%81q|=i%5~<CDWgnBK2BjotOSn;UaDQ{0Y?j`I9F(=>EgQ
z``@g)yFX%_b<n-Iq<-S&E$-v^BliA=ElQ}Li9e8qr1Tlfe9M<>_A$14i8ctIC%?iS
zSGMwb13=po8e;TjejN*prGtk7={7mJ)+Qs9(d1J_Zo>krj<>}gh9iHA{VB&KEXDjw
zes7LxJ!BAohbOyxqZkew=o<|OQFu2<N$Dy21c%>c5W|?RB&s7RsmWob(t&d?%)}jP
z9%<$VE&Qo&j<40tn;f?#;za0Q*h}!nhwrhJyhP2d98q(MiUU(kl9}<xo&-+F_BF>5
zomLbnY2&WqDq$^xClB1K(*ppQRIvo1aeTMM0%gbgD~As66wM87w_>t=jT96pX3Z3?
z?J+a#c=sXgeLxDnIWTYh#t(N;B5rIKO_mmmJH?ifs*xVNiIONCPjTG`pJ1YTrHP(D
zG)8SAVL$SYDTR@T_!0^}uP+z+;#M;_%p5MG<SvAnAcYP4RaMMEIl86`orxpC;L5Yg
zG7@E0wxrJe0h2O<(D4AX$dw#Q%m>Cvo>i%4Tw<eUY=pA;b<J0hHo|B#QS(GakV4Px
z(C$Zl?4aA`s46FVV6izGFv*nLzvNAl6NY*pa(>kU?zZOFC@$!hx|p2ma(5Vg3O-z~
zWAA$%OYvrRLzi>xk87nXI}XTVGkMbZ#&z)Ak6hAy>N;raoXwj>Z|L~>@Ethde|oqa
zzdTjxa%Kt?I@$h9>=NI$G)K!C|39~^adLGMFqHo0Po<duulWDa6+a>N;lc`b>s2-?
zDJs@m+(k)OSig#{?fanK4J)`NvNBg~W|eU$4KLRf9(RlCv|)$VaMOqzP~cy1m+udq
zHraZpVW9@Qrgcoj=BOWqR3kOkYOnbApHDNS+g)r?$z%Z1j6V0H4e#I!Hci0PK|i`2
zv}#T|W6l2E0klIu;zsFtvm+_S6hKN<_g%F6V)j}4#~tFL^{ZTHTrSLA9%DjnDM?^E
zEDK;@i-|W@745bqBQydM7(>W<xXzdn@=eAFSa}@w!(hiA5l6$3F5oWBfe@rbuktEo
z3C?{`Fyov<2kq-*@B1)aMuwZl2xFjBGvk6=LO~oxA0#wgYvorH=!FPSaen{|OE9#_
zJb@fa_yM$v`RcfF1nxN#q1VsQW%1@=-h<8ebeDrGSb%||bvs&9w3~R1E#3B}K`w&n
zGm7T!v5yM-X%QKwStJY#nz1B1lsB1{hi*me%*~cbe2@ZV9R}(uCBiiiX@5cvfyqdD
zJTU$gr?ffR?p1C>i@Q<*F3bQmr%bqa@>Ou67CX6Xo=fwOcMlI2cEBN9mpnTdIlAra
zXG!R_yzA)>J$c&b+w=*k*!{XH2JV3QgPOifv9xfiLbPOA)XI-o)Mf8{{^+%`UFzzx
zm1~_vQ}Rm5b*1E0C9f39MVib_UWoEx3;>CUSp-*2NF6hsi+JFEKd<MxwwdGX&7wCm
zJ-_$+XV>|?bNv0A1UfroFvNalY#pClTgO+-t>cNw;9r;QsSkhr+ok&Ku82ls!^vT(
zh1(vpjNaqC{oDt{qvKXAf}rR^t6%?^A7lR5F~4tb9rMSasdr~hmD{H>R(I_%SGE4w
z(|*ezJMEA9%3(jmuG4;xpE~V_tv+fY<8!VQandsWDgFPx_s6)sC||KM@1bRB0YOK1
z_{n1=(qTdxPjF_K6Gynx_J?_5yYcO*G{1FD&h<yQkO=#d-}>9}t%WJM?|z(6BwPwb
zxPP%A24!vn$>NP3t;LMPw;D3O0)nClmL%8dqlz)N)pGpV<*sZK3p{s`HaV8lPiVwa
z<q8*nXOnYYWXY7buyAiRo_?32&TWcwkvb5ElVRN9$xN)Zafjc6S{C0<(>Oqc*dN6`
z+kPlAF$y8cq(8IMjk4+^ojiJ!f5tJ0IT96-XcYFHR^`JZWQzs5*pFL3{sMwFdaT$I
zRj0Kyf8btr>r4RM?t|v{-j|MmDK4!eHSjMp3QBX3_@2`$AR6GD7AvG;jBKe<p6g1J
z?cS(sR<6)+1Q!@1*b2SM*JfxM9MH3GUNM1@*WMrIG3(%T>bpO^>b_+gI%O4X%q$ps
z7k<187g5*uY}sN!vdDP2l0&ICT)FTD7G#0q!jVfw_vVr{mff7&UN1Ol*vQvrA^kOF
zykx({Qr#{*Z(cIk%=k~~O`EG0KgW!s#aERnspCzf`&2)thLGN}q5sWyfB*Xn*C)08
zlwF@3y^J&|O7)eA<Q}I;p+lA9&=V4IPqy`Ac~?L8GbcK2y$KSjrODasy6oP{eJojb
zm%i{u^)GJ3F|~Uu^Wx`zri2UMpXy&ummQ@Yb;O+Dcnq1xsQ}*M?#-^H_!IBit9h3<
zX7JdFzMM~Xb5@@_v$ICioRRfuPS<mx;lndF+H)@01@8;Icwjrdp-2%%Jh?=u{}zph
zZOz|^>Im>=Fm&jQUl#+iheoPz5B{;}hySmBM9M#$+5Z_wHkZq7B~QZ`#S_9+?cVNg
z$|`mbu2-FaCx4r3{!ERsH&uco5u|t1`Oc>3f0a5^+1`x0ooeSZhow<?UG9ha*yvDH
zxJ?B~$Ob=OXY4RDLhY6+UmSq|Z(u4oa+E$C6;*AH5E}9n&sOi)%(`GbPsW>^qL*FR
zMe;^|mT^q=2>Wb*3MRhO)2B<_7IsgoN!3kS)`vp3I3oo_$LFAxdj<cjWnTDobNb{!
zU1t{Npa)c>%Z@JdCr4&ZWcW5W_zCO^ZxI$<aN4_a**Umo_9y;g2txkw_<n!zj(92k
zc)vXf>^@?|6nlT`G?GL85+f#Aki&q2?}JKKRIt%l94MBP11EeK8F&M3gkz%wnfeEv
zU9v(Y#w~Cf-kSY&2YIAuo1zE61xu|EQ@6CCV2x$WY^$?fQEuoCVNw-8I}>qR#zbZt
zl}Ib;&At2(((i4%jdIl61r#B>@uH{mHUO87YvL`#cK}9et_+<B%Z9)Fh3QY3FG8<k
zDsDB3MOYlmg?uR}gu>=H|6@2`Nh|rXyc(C-VF$LJsAo$AE;FsaDbGsnCEZF5$n@wD
z9M;3%g{LYU3RVHdVBnD!<dc5SaOCYIEZ1TJp+e**g7X2W_!xlW<d);j0Eg9#ZEB`|
z;N9oM00{TVBr7#KyVA9k3M0~sT__W157caT)Ih;uv}TQ=EL2$X_&K4zk-_-3&41vB
z+zZI<3!s;;%QnuB^g6(VtXStGDZby5%Y~@?<pDo#aF?*%=9mLdse<>S+}*^=z}6xs
z{!J2}kkzp^60zY*$qpz{v!Wfwk*=`gYj`y83iQX@K{GYLFnBrfu;FVc8|<%ChkU+k
zwWRLw@y)>nSx~Syw*;3vk2EW+T6HPZyMntDF7B2Zo~0jlfU6>oF79-~8u0xsjk%cl
zA`~RNnf~FFL*a<0=Zh{r?`Val#GX(GjE%4u3cw-X+Czu6nyyl+29+Ag3rqn+tVDNu
zGhF2&20u~En<8VU6I`tfMpbaEHrCFrtbl{~A{R<<m2Fj(@VKM!Z*MC-Pkh;9bPrbd
zU>|^dNGF!zju0H3SOg3#F6Q~P=R|*78+^*F<08c|$2Vc{QY*dQlH>Q+MF=ZsnnOki
z!8!?^=&f<;qSM?p)m!vb$6VP4diPAPbEX4RlVNElu@Q!QT$*c3!jH8xTQSmOvnJ~n
zIMwCq*7t?hx7p)GJ+9hY{`UTo_^6JS+7&eT4kByh#W$}czy)_b!k4}nuo{n}4m9Ps
zhLpa{xyH7V`R77KVVSpW;cwP_@Lbh1K6H?eT@_IDSb`!CESc7%vyd^k`|NsK^Yk5`
z737maFN?27)Pk#@aaEcl>sOXlsLcDb@GWSVr?|F2k#5QwT6?3=RfYbYVKX=nu&F$l
z4n+pQPh^vC{+zF{7ogI%@H#QPQ57T3@E1!di@#X-A~(5*%taEiTD^8$nRbQ4M859z
zXlt9j9<eyX(cjU}B}#VNUphKEe~W*kaB^;x$KCn6ORq+k-?~;9sK~&^g3vCveMniq
zHemcJ$KgO;fl*0Bs}cmTbPR)1*j;=(j(2hljoe^o;J+$D;y0x2`o#`iuOi~jLP?Bi
zEMt09;tBUd*=ga=?NzDtr`n$pRM4Es<+XXai@i{yZxgt47UOQu&X|F=a+easy05OO
z%t)mnEN_C-RVmv!)aNLu_rSn+OqLNht)3=sW7V$E!#)eJ6MN21(N<T9L_6Y@X5uqO
zQVO!$`vu7MbC7jMkzx4u6k>KOD+4|Dt9rYhdRrG?-5toVvC!S+?G<Uc!*NBT0z4(3
z(R>v5c2RHF!`rgB!>c>Is>h5;>{qD_Bp_+n(d(dkYj1DIC3A3q{{Av{pMCkID%F8Q
z-)|yBRK9`}S(YeLU$XnCK;ob4r~7RsTXx``R#3A*(E;Vxln;QIBqxp?uTZzRzS}p<
zzqpv9HD^E6?J;bSOD7LDPm+PKNn_?nMACWd-CT~q?uh*(R+;@(Q}^vHGy482|E=~{
zS$yPZ7o{D))Vbwzbb85s>CofocZFa_UvNs!{mQfYG_@G?5LE9<punU97(fJYLO}Nk
zJAJ3vKzhdK(JACf>Udu}9xM7ilXwF?z`QcoRnr+-y^cC-n>Tx|K+R-d8_a;Hv-$jC
zcmLhv`xkS%tJAHPW#o@|7DNp?a(G=wB_2Buc>pWu`0EyDW%_-dgH2GRO87~v4v*dW
znqZk6NAl>1p7Z%5Dpirei(CKbN`b|lC6Y#m6p;X|3q=fWq9jSk8YwW0b9AIo(7+p<
zOwna2a)&PcY3+*B@mmsqr8FP>Bh4?w<f~@yB8kSX%Zx?Tq^9PNQ?a2cg?`N9-@Y&8
za4NQy9Ngz`JX5ULtA(eTJcFA*|K__7FQKNLaA6MgO48k)kd<<~knVcgL;sl5xlrGf
z-S)SXu$lc&iDy%C)h8UOFK*5rzlA3+rKp#<65|B)jkcJlCwb0E2*E^IZ@GxU3e%tK
zP0%riC-ndy{oL)0z0w>}C612gOFw^dJJI*-_l`U@a>E|Fu3Q#Zg_GdTKaTZ2LLv-|
zgR%nn5kfGe-FUYtfL9!CIi#y}d6JGUIyR*t7|y!25@k}A#B+(*dch<q%GrZNW}|Z(
znQIjKewU#F#IV?4TrhRb0b5hAlmr(80SFzUz%~nfg1_B|-@Jmfh7}m)B%Jt9d-*4Y
z4=Uz7kB_MxYE0tvp+sqG!R-7NTq?xZPWm!r9k>Knrj>lf>RpzEHRxmA$H_`@|CB?~
zg{2bRrB7P99yLp;Stf~m^HeY5v!rjBjIeq+bHa%z5gumjKM0e4g36$rO{&`=+t@!y
z=c_D^s}Ae+MixJ4x$SssWAz#Oxh~|{O92bsuHR+ekymfmdJ~C%rp{12)lfW{swz2*
zEf}z2`~J?F=9Z+4^^{_^>mrt|RCsMCnw{UlpXclW657rI3x&1M0*O^10W6V$`#71V
z8mydSHAp4RJ{8U~)~8x{ZOF44oe_F|S|soPx_iHWxk}Ri0Kxiw3~`NlyJxZYQ(OzL
zyH&<i72xX7S7C<L=as_NYZ`(ACNTWfLb9Zno+HMF_vngMLun;}Pp92FM1YB5$s6X2
z!&O>ZU*}zbj+BXR_hsg~7m%s3_7Gz5Efmc-w^cyAvh^I>0+~1#Qw0zLTu!}^zNihb
zB0Y9w6B-&T8lFk|aXQ6s!aeqz6So~BU|B<23*(jPXY2BC;&Aez(>q4-3Ff~0{_c0L
zVCM3_0CQ=YtLIy3^TTn~W%tZekP{7od8<|+MO%~0n>qVN#z#yDatE%@&L3y;xQA!M
z@_Z~VOsP&2_Q&7+_T_Yi|Apy_Ws^p862Trx$2GUrVr!IS9R@oJUs#+SMPkiWoMzY(
zE79j|o?;6ueyfmL2|7YRpr1VLDzkmvpu?{yyGxbguXst4gTMw~6~DaEj>zf+9NMBn
zOIR{@b+52BRk4FL6k@e5(P4!%8M}3vYgbV;SI10+bw?n{x1D<|Q~iLxYCkKIG|4wc
zXQ)v&D6}<cP#KjW8#bsU<gUgS{6@;%j;X(Y-wASq?OEM5p*J`)o>2$j=?sjKZl<q1
zIlNK=13e8JQi0t#x>yQ*O*8{w5jORBxPziMX-=Re(A?BR<J5bwe#!KENChO(zVfh^
zrAmu`rK^d)O0RrlPUuRLYR38c`S6$bKm75-cYk=v7}@3jg=N(6=x`ffcacoM-y;{U
zii&E!*J=$FW~54Igw-~HKvK7Pd);MXim!X;M(&UJEZ@f@RUfr`cn3xO4QL?GATF3U
z`ZBE)EP02>hrw#<zumKJ$74A=^gbSfa=vot?f*aYaxUrbYHu>6O<OV<0kgj4+gRbW
zp(v9pg17=6^8f3A<ioEP9xQrKA|7k^TfaCw^?xeg%{TmZxg;X~x*HYmOQcN;w}wGr
zMOG;eZ-Vku8nt&PTX{Eny=7f)A?!4IDFl&z+hD8{zAX4St$|->wDw;<pzC=F8u5Pt
z0Yq7#$Y!uexF8xcGem8XuL6FLlV;f{EWaSthN9#4;g3gHAva<Fcb#UxOKhV$eN#+;
z64kaW28GHeaW9T1l^0je&fJgH2X7sU(TrJD<aeiXOkjctSsv1qqK#W)7Cm6L92(R(
z-el^9I<*0*K1l^Hx%xm=ecCKn9&Fk#WgVR=M_6qu)hD>+*yekTzIN)6xBkSpK`1In
zj}Qq?-a*n?^QnL!lVEi}wVcw<XF@6$1uy0x-_3f{dA(KjvYEbB?-JRQd+=$4@rTVq
z&GdvOiKWtQ!_8Mp-LKFn5})kves`&n6un0#B3<XDBh@E9MqF$TxE0xQR^)s(=LEe3
z<U`UEhjr2;iX{z*DyS0O<xZG%UyXC&SUDU}Y*!;m*9S|;R@i|8zuuLRmm*deE{P@A
z%W<7jW&k%C>DtFtt70&erpc_4bs=5+c$-JHg>RC{aD{{J|M#Kp{QTqxD;*tSb)uxF
zD*&WdqHPrr6Vz!$r=n-+EcIAP?~a4Cc#u#YpMym5FgCdj&Eer0raZ*^fe(THOjnTo
z9<IuU=04m<S`wB52$cv2(CLIaNx3~VWu%5qc$P*L>OVE>@LBs>>$|aKDL969l{W-)
zX{kb*OOh}=pxF2{$I_(X_fD+8E~+gDd4}pbe%iFH29kx1wM=ujZHpHGkq-k<0SNR0
z+kgeP!5VEEtC$g)>{Lx&UCrWZWJ~O7NFJ+MW;GW>$~*`Xs0I$9^<`WQ4Dy&a!}y;c
z?%)6BQbW9rpR$Jdz$7C|Ni{yHsGcdPzEDr)PSV-@pQeTQhG^{J>6Gg0*<N-oU2{aU
zb|%I;cmDHm+J*ezBCbn!LG}?OgHL$y>eln7K0NQ^@@60D6?yVcrdy#(!{Ivgtis}{
zu>Mq7f7+>;5oep_c9;90^r>LM?uY$v-v4lkq1&&g&ZudI7WW*SYVvi5%A5Ae4BM*-
z)g&dqzJh71A5k!k4f7T0ZDJi2;$970+)UWSYUM)H7PWG5D=X%ACgnT=R+GF`a%#IL
z!<`u6Z4(sY^=RB4rkd9;@{6-=yI`^|1;^Fn0P3OLH;1Ugs(aPzBn{V<97>6Xd(9gT
zDl}m~b$?@h&HN`6TRwNo5Y6Py!Qt5AO~wK!Acn9mQM_((-{6n{8YT8Qh&br@%ln59
z-@jk?AAa{?{q3Lk;zN%y0qbYKIOJJ=?mYS?zqb}Dv$bs31r4rP-uY}a6Fhtr^?n6x
zK)mpVy-M#$-0S@g-QW4eN*<@U+^T3k;kk<e)Lb#K6D%jnP|!=Bs_3wQdEOcPp`&DA
z8@0_cCTzv2Y%`16N%M86$pqSC2{`UFhlF5dq@q%U7l{QGFpi%^Qe5t7qIkG8)CX6F
zi&K$ylhRwIeA(=6R-7S7=o5qZF@{~DBsM`A(nA{CEy4`{TkWPx?WaQ=3yM=uWZ}Y)
zkYGF>L)`=tDT+^?O_4WTYliC{%Px)Se}IA`4b<(rjzGxmt-PxYH4SRuJ+yM1lETBg
z#2SmRdsGq^rS1bpX%t^wd{MbfR}@ocOvuduwVCqV0UL|oeCHYPrTaSH`K~=}R0J|`
zu-F_U<L55Tdyh8SQ(1naJ1pVG!{R11vax8*=W>e6;~IiuJ&9{4Mj;ga7*tgc??a*l
zn?0@vfJ&sgQ`@cLNg^4j^87(NNgbeyuX5tt#KWNSnJp(7$@CZ~bSDoMZcbT_4QooF
zzcD0A7$Omp;XBD{!l_#DObcCj9dhq77OM2Ma+oT7qT4-2l0Kf(;=mCkvBa1(QndLn
zO!r!T$=aU@;Bz6m5y}CuLm3<lI()baToP=*?9>ql==@V>dzC_2W57>JiWFK_ae_x7
z1*0O*lVnqQENc#+K+7pvqhXpGM-d$zmUeWRvgaJgD2(g4ZT0YT;m0mOVL_ldYi#qQ
zm5+RS4fAByJ^!i+YG&&?)^PwVa=w+-9oVNz-b?ZMz-ldnlQNnlGxPx-Pv|LAo;hqc
zIKM0Ic=rr_S_6$!a#7Nm#r7n#KI$43ZT@jR6)C|5Sy_~&GL0MWE8LDqw{zU*LLCxt
z1d2?N866xKGeg19ZOXMMmjF{8%sU@L8DTAq2$0l`oK-U0CN_DIt8+dOvy1fv+S24Y
z-ApP;PsZTjWRQL+o0x!$-+Icf>vRfYUs@x)a6hhoErMX4JLAAlnvjQKkaG-s2D}gr
zZ~|#%Fj@dY0bY#^*-0V(L#o~YjRTbIhFhLdIQ3$y?Cshk$#%dnp^DKUF{eRZsLDbM
z0!i}Jt|kyB%^4G++MSwhNtLGn6;(UMYBFx655C7j@AavH5JAICg^fYZ=K8}$XYHaT
z>eO74O^#pKPUWy>Sju_ykixgsj!lMBV(N>|Y8J#+o+_nQZert7MsW%#G3FR74)z`2
z9bpruTb2x-?lntaXcNf;OyR#0{Qt>~gDq}u9Q9)xN7u&j<F}36s;Ep@rw1sIPp3Y^
zr|Q%KPNKVyA$eb5Q0O$6)T!<1W1ba2DKk^YkAt?A`i0vHTO~-#pI9!!JS#Q5qFFp$
z8Ge8i@Sj|HhD1Hd$s<vn%2^+>`D^2Lszp@szz;jKu~;)_`_wRCC3E!U*JmcU5NH;3
zA0anRSb~c&1J`khB@RD~C7e9R68(fFBsIFg5)37HLaEQe6b_DlYL#&XX!Q(NgbQ53
zzR-bsMpc5b#*`S_R5w&0dcP{6Q{E4U@F$l}d%{neKf$3L|Ic;;_uSFj!*fq>=N{rn
zI-mdB(!1t=+M65=GOHtRf|rK;RI5rr+>b7@*b1A_1|?aWx9c%8?Z<6CUU`o<qUrq!
zSn<jkN<9?qdVV%Re%C>yUMqoj!!_`WTHK0YJ%q~RmG@T(Hew8X*t^7}nd#u}BOEX?
zkHMFmth=8yq_`f3Y;Mn|?coA8J~H2Su#@6ff|L+X6mjp~deb@zluTfwV~YARrslX<
z^|JHj<$!t}palWT;iA+-X1~$_jpsbt2{sZ%#G}d(xWVF2F@0ANXH=@{l@d<)^PhhG
zVSkAf-a9-jGE5Pk`6`2t*uJY6#Z_}jQ(=!4?S7(z6GTCsVNb3ykE#fdO=1M=9+NLo
zNUpNDZamEi@(ggqff%Ws3l@PbSJ4!_>hs_ebW~4+x~j)zkkty4Ys-x1kTrVYHK$AM
z{uKfvX3kvFo(R?i<0vi4gYBP2inGG9BZF2=A2XWEu<n<Pe7iX(b{&SfQIWphMu%8=
z-qbMH<zs~0<1i+B?a6$!OGABHMDV4)j47`{xg4)utowWuaZU(7p(RuXDQ%%N$|pdB
zwssvLcTupY5oL=j(2awJHdzjYG?qlj;hSFGk%XepQ%l5J5GK;qH$ZHk#>%*8td_`V
zQisI&jA>zv8q#>ix$WmB*G+HLmABWix4rgxeksR7j-4b~5EDgIp-4`RwixTbd;k3f
zM=sr!GcVxcUr*;7jKNYEE17d6X8@yG#wf&S*<9R5RIn7&1xcOA#WWM9vdOVJN1~5F
zhs0rB=mn-&^Gd|xj%CbjbdiN>nUrUstomMb6}A(#0~tES9e$Q-4VNuyrzXsTPIwCr
zzD6L8Yi|k)0Zgec_}+P{OLmqlBeVMw=>67ZJK9AE4B57bT)t;H)EgNCid2JB63K#>
za(%R~UB|f1Ma`$0h#w9*e!KTC_J!a6r1yodNI@*y*C=KQ6?W_EihPghjhG8zydDV~
zo07MDria=Eb@5e4!jCH)=SM^f5c@>FJv@5Nw{XnLRr5kN>Wuk5_v5GM&pt1sX7Z&|
zWHp(5v=6W#N%OeJSN$CK380tsZRy)j89K!RT|<GQGrL+$HIee{9D1+h!`i^eoRj?#
z4|h^rQbvvw(u$%DrWn9{(3lO}A-Xjw@ep{=L1_3HfkJ|D+bZIzQ;<?cJhRFed==pT
z8fyqTm8rH(;^llhbj!vZK@Xby(LE^M+sv;oc)r&gq$S?;jxRdOWs&?)R_0o5=8W-y
z*%I>$PdStZl`z7tW4>TRu*e~rgm+=0Gnefr+r0mo6_Z}BnD|exm=lEl`u*MaFF`c^
zm!qWqY=FN7O8OomTP$j%1wc22Vxm<<nM3o71Kf7{M$B+X_ZS>tqA2wMyO37t(ZVA>
zBM7g}Cz{MBCcV#Z(STG&zstgcWOzg&POD4&Kv)@^`vU}dGvlVzrD<4aS=1rMl2w=|
ze*Ew0&$DH)KK$kV-7EOoN6pNBzU|@=g;S^>QI1nZaU7(A59Qnt*GLb3faB;vnWr%)
zvRQfAL(s`9VM}s~ua?c`uNpAQS4~P8_aTcf!P3E(u(?<RaU5Z@Ji+GIUNil)V)FTl
zL34d0V@0U&4QFxrhTvEyIMyRL3jNR~i5w$uEL@kPn!)^KrI5>WQjC@#z>0RNnvX1u
z_yW8AO1|-dtLZ}N0zV!F)~!;U%d}5%Pq>Z8XqN=@mf_1~QKm6SG#HABo|n%??hx`#
z<`5+wB{#61O@f6!5Q|0ggnvpa{l~#be+@>Ski`A_L$uh3mk7doq9ySaK0LnFuJq4u
z``;gK5qx7?K87SNbeSo#HQ%24SJVx5v@HUq3|bb4sq=AW&?HbX$7S$PldPEbQPF7l
z3li6MGo-8;B5q8U1c?TEg(NKybG)K@x^G%J9hq0?)LIKtU5nXh7bz|(ZN>F-1LjGS
z+O3nj80oLv5@yY4BZs+>*-9o<s-7+MO#NTfe+I{pI0Q?!%~aFWtDP7@;-9PDI(r~{
z^`9((dIV>JgUU4M5}eC_Iq~=H&!Z53K)iW#u#s72@QjaD!CmceR<tojA*zn~fbNXf
z15Z~V`1oYM`ioWPFrTb|yJLZ?meITiB+1lO_DL;Z9iLLWr@Ypp4>L2C=JXO4tpg-R
zYyR_R;=%3$*6cf?_d|2|_9o>d?r2w)t15cR+E&`+tg9bq`ej?GW7+$oN~?;}%Z@F8
z?iv>ct81YAV6P7@!Fv7E0a?EYBvrbd$4sp>S+hq9qIn$<lB7)1{TV-KEL=zxv8sVM
znju*$$VETj4dOSkZ8tzfsVKbx`E4pYW*00990pJ5n6~{OrpN^qbqd7+URr`oUnsR6
zuSoB`^}~^^Pq8(zV~dalR5>&-GPMM>8R|&6eN8Gcg8uPiXyFO@My6XTj6IM!rs;!G
z(s)BUaM`V5DRWteq}e@z1F6e`6T8Q4jHiZ!jZ7+UsYKG~RqS%18}i99=%{_ibcf2Z
zo&=Y*i}bCEC6Jv=)?zGLdTVD;1L;IbZ0B%;snQ#X#qU9sTrmkWAf}b7$$Ep4259dI
z4Pa~xZe#6nS%&ci>me8I6>3wYf3`;@YqnaBz1}4420LI&ORVQfgKnGqS`AiQ%v_Zi
z1XWJ0eW1%*7r$5HK@CkNPR~fd6}Ra{XuH+1!xw{!*TvvsDLmD7EqXL^HAT_r1I^j6
z0Y!2RRP3I@WTeQ+AR8U+f%3}eJ<!F6Ju`|Ps{Z(~JLdFmN$ZsP9%|y!bjKC!BU3&$
z6tL7Vi-y;vHiD6owv2MfO0JdsyJA-yvf--Jm?}^ZBWV*YYZ-Z+5y-_>>s^0p>nSfa
zS&PWo*(~_p;=-(gso^Fj<PlX-F;O&S=AV$HoJf*LPfrq%FF6MvX+d!Te4D-IbpW>(
zje4}xl^NM892HHHZH5ItrkZ6LE-?C44on|lA%qmbY3f!tl~QE;q;kSE-ZzmVl!0-w
zNGn29oFmac3430W20!Uw0$+hN_*YQiQ6y+-h9XVETquER_9;-av_z?k)Q*NH<L;of
zvx?G2{0C^rYB7UX;XBL#Xhz1?M~ZvpT+7^j!xTK4wg|ofh}&K{sCpJ&B>X(-m{*Ei
zRHTI8R4clL%s4J!5>bl!#x<(GZ#94wS?_TGvj*_AG)!1r`Xw#Bp9l*U!`CM)Qla&v
z;)s*5h_!u;uqYd-k@{pgF??yVx+V3r8Oc!$PZ*qRv}tyQ57UKT-p5p)_Az(Bm(rXn
zYV^tv@GTcoO&gkbGy6)cY`-FTs!xC9Orx^SO0{Rp0=dBxSY@IZHHyuCFB&}-HEK%=
zyT%`mbb;2vRVd)wT&=OEliZdmnmd8^toMqBMp2&!(<aMaFW0dSesuBWh^!ar3nn&{
zo|@LYLLW*q#_fh28^fDj7aKym!Dxa-hy<7!KrLmnYm>QMl_E^FDZ(a0t-|`R(3a-0
z%Zbvh(h+>{t&ZAs-8<osr`P}U20xGQ^R;+`hpln@Z)bx2>BAp>_viO7NrSJarCBrZ
z>uAW;G*it$xActiD%U603J$#PPSx_bX1l7>p!HpV_9-6vz|c|v=4*Q+P=akZLN~w~
zoe=At468DT{>vT|+B$c-RmFs+f$g_>!`Xl=pI}qXlRHN*WmJMUkJ3bvsRhMnt9Zp`
z-dPfB?dz}3H^qsz#@EMoctaz^1*1n+dsqU+H*@LKy{i#q>LgWAyp$c8)w^xdb4N<<
zNS|F&Z%l4$jD^j}2k4x1YnJAdtpB`*W2oC#2+({1`fu{hzMl5!|5w2O_6qnuRS`0Q
z)}OJ;5{^XvX;#^{VC(^p&Md7ih83g9Czj=rVHv*$yK<R%m#@ZKeX+>@^4%YP|8j}T
z-dqtC`v!sUpyq(2Nb53=W-jnRJha<F%>s2Gmir+8q^Q?P60F^;qT6sDF|boOkPyv4
z2IfeUDw4sJi-y4d7)9Re9xR#zupFcth8-<a8<oO#vaaR7%(ue-5%B*J@IQ}$kJ#W1
zG_aGvH}(@6sKa=mcOinPRaQX-W;lo~7$aBdxy7u>Ogds`mNy6>cVU2_Q5)cZP-mL6
zYBM4zi*j;-keBmSTwE6yxvI#k)RS5>XwD+x^q{%RY_`z!wp1xQ)-!F#XX=hG^&Jz5
zWBOci688~>RZ=JSEj@#h4XaPG_=f>Sa^W&xta>3}$v{gwflCv-1OZIG3K(WIdj>K)
zc5?t3E5%HXoQ}M`>BJc;e1|Q<m+PEX0qknlTzA>4%KlFaWB#-IyFdJ9-GBG@SEBjG
zB92rcK4Gs*gm<3fO=fjOX`%FJsRI7a*#Zbxf{k8inpAw1D|uZi{w_jfh1zs7L=wF}
zvO?uvDQfTNPg};lW+po%vlr-f$ayC@NmRH=`Af*Hk?IUKGN3k=Sy`$6e;+`f1ekg^
zdZPh^xjXbm+`*wOFol~`qTF!jfM@Sb&TdmFbaUqjI}r{^Z9|5to6u1T3eO+=;qYE!
zUovrzx9ySqrAN>S@F+~Yg^XybY+XDvJC<sx?y-h%B{=k5|9K-eb6R{mdietB7M9Ai
z2VtB8gRoN3INSvqc(@X-8#!a&nx&K;*y*>iBO-&=D)7>)@b}i3fSy+kUfRQ(Dz@b5
zVb|Y{QPr7}z%a2h{ykR_S84vZ?mi_|IkTFGpcF5AtK7T2v#m>C`+Xb<0Kv|$DuM}U
z5OL5Zy{C|xL_az111@PxUm^rkC=5`~i?5Eo!_d#Uy3Hv*!S)~T{`md}5OD72pe-pb
z4lD}fV8oBtqYz&tOefT8i1K$5*H#tfpeKT7GuI_oq3k$TG0g@omih6tw<XwSZdbD4
zstV+tOJzBRY-^=lj=#bdAK_&Ndutd)x-wDwO4<~Et#*88Y(24)HK+xKRvxp5Jn6QP
zmzr2240|aOH<ok*o&%!|qOy%UquL2g;JgSX%_-hTn8l;9cZ`h@#q(DxtMH9DPodkj
zU`Tt++<IQ=+$jC$aRUt6GVd<maf%S1DR#?{sWsR-6_&0{v_^!HoMrEx3Y>p+Tzt+E
zqkUtxgbq+jS#qp8phs(gdg;C1By7L|-<t0gL3PBN;!yr+BfQ+S`AP%%briv{Me)H}
ztKxW#EOFpg_7SAi5tVIi2<(eQmr)tFBtb!M^9Ow0o^Hb?%akI(Pl|NsahgAXoZDF5
z^qE)R_41b6yxZDl*)@IjvJvlxSY`z+y3F(Pe@yZ1O^<)A;v&yhJ2B7VJy0`E`Hw=(
zHJvTj_jkMZFPH0#Lxrou85ylrQTmJtUigM^C*JOGa9UZW+a_6m%Hg(ULtx*sc6FpT
z8GHDUN%0Cq>nHM>KkEF^@=d7pud@#c`4g$KT!lzC`cj~lEd4AZK<&VKv$$`=A#Y1|
z-jkpmN}JJ4Yg%ZeJ)HEiM}iJELLDu(9c?c~E}%z|2Z1q!J^F^Kfwl$$dxwrMuwIf(
zD#y4A8&F%c?%CUvSAL`dJ7+7T?~z!vE$%P?&C{J!DfUU0byg`wR(PZBqft@_oeJ(M
zZ3v5RUhs;iC`F>UrJH;rrSqxrv8ENuILmuWFPRNy<GdvzyhA4dYlJz)acmt>_U!;C
zWs96oW7@B7h)JqV(K1G3fJ=`oNX3^bt%@S+asIk?w<Q$J-QJa<WZ-&4(QSQ`EF=#c
zz^H8l^LK`S?Sc_pOb*R|6&qoLP@|=L<WRXWY^~;J!2nrGk#9m8d-awRSB31jN{wi#
z%->*V$nRKRS!)UHfZ$-Iee98jBK^aCOKH!;6gEx-4c~D00SYF*u^J8jiAoS)v90qf
zC;!0dMd<NM(8!E4CUVPbyf*zR!@uzU75kSIz06|IORZ0Zwlnfo4$9Zx9IW~;5yy5X
zeFN!#0`)sWW@`X@vIF~8i_=^lWyqe}-C*hW#kZ%}j$6$uo733wW2-QVOg)VzGHgq%
z^EL!kqZfG$O+tS%6V^!+s>SJ80orjZwP-B1Hwdb2Wy21UREUjcMexp!wG`I^ZLx^U
zQwW|dtL}I!6G@%Kq%PG5n9l09DP9MxYOg}xc)?i5t^-(XN+!ZDXqHNcv$thC&S@NB
zRQ{uz0557(xhWor5_-jpv6h7hgS1~6v%?pI1cZ%`?@3ICf<CbN&$<XAB4bIC50`Mo
zLQRkW5H+1a-<sB}ozehEL{Or|klZXF&7SV>wm7NC+{dcW!!e4l6<WQ`423<hZDS~$
z^A`N^yx6i`2Q3?8P{*oxvBhaFx3O*0;aQ4h<`Rjw^1>-D#{wdR&nzJGlxWB{LJNAE
zbD>vSlOtAREfCVy99SwAIr55G-r<@&4YV;B!qhS?44c+lO=5ZWRLNOJT??g@dlcka
ziB}0M#F@5Hg3r7gK&-Sw90ov=f!e52&^4NmY<aCgy)K&~>UKxE$`H#`Jet&(LkVk1
z+Jh7ttT3R_?1fZi*OGczgrplqZe;<sPjeI$N|}!F)oJLJLOjjk6KFs8+zy}5zCUB0
zj}|{V{g_!!k5>J-#3TFnzx~st*5_tx{7qtdg+aty0r<!mByCv$MB@G<I7G-}Vv^lz
z>@iV^v4>H~V(c+-$(6WEOU4gU7UNj>HFqW~68N3;b*y<O6vBz|ghAxRm&Cmnu(5|Q
z$zlw0T;WT<ui3mDn+{DhLMp-^3|+G$)V9^t=))LhX1QPKmXXM|8i5#_th0*igxVoH
z@u=i61~EEWjX)+k*{??&0yU5VsY>C!RO1tEt>K7JR-=%KP_7cdv!QniMv+xT3G_ul
zZ#fC=R-+QUE60gXNNFB7qZ1(!Ba}sGL>T3oELX-LGOwxHjf<wjFoK&aY+pCyk~1Xo
z1kU#XSJq?^DiP8!ns~w{o6^e}4q0;cU1)^rj6sY~mWe~;tj-w3=wvYlnfPQe2ATL|
zF$S6VWHAPr_+&8#nfT=Kgh<dh4pO(-I>S5O<q?+5_}0w*ew~=ar)auj95OM=Y8)~#
z%4#HHjItVsOaNa%pudc=8i!1bvKog>jABBsO^mVv*2X8EqMFGx1IaHj4Q7F)r|6g3
zk6~aMk!;Ha>Uj7R?zqG~m$>AI?|ygx3Nn$okC2_g=N>KO(Api0M;4}T#u<h?1`SZb
zZ%hyXY|S*wI(%1v^x$EZi*N6xtH81?t;<Px<18XsQb<zf8ai30(B}GCyngmtb1XS6
zLssFH!iiTq4(}U;gFVGd*v^2Gx}UU)$rQ~<oTSP+vB27|S$)PdmZ}@mkYZ3CBi=f3
zgNu}8t4B)3!H>CtsV174bjoU?WmYheox*m2dutOn>4*+--7ulE>L_50**Qbj(w89)
z@}U17tR87@hg;kMbYQymGV%0kJpJ?6Fn;1!(Z+D??JdLfC{H9P-Ei8NXElYg8o%h_
z(?y~(+Hg<vwpe!zU258d>)@6{k>}1>H2RCygQW-3QmUMw6*>fBIOe&&mbqisBcTzZ
z1e;r{i`OVC_L#ngWTmC7`b`FW0jL~+Rh0k4+UjitkXzUxL4*k-te?46p@$eJep!uQ
z)XY|BQZ<Jw7Rj6@!di{6uA<^)(<@`Wn6oy~KIueaEdbVyanADe%q<lLSU2O<lBnEi
z@a;s&3~($nr-W@v`SL09q{Bmc3M_MpLLNSaLoSifB~JPCA77qw#Lcu2P3M@m(aHKm
z67ME9SvEtSk&4rU>=UC*qTFa@B9g^uWnz-WXvK(RnP}x1Wxqe31&)V<tHYnLNP<(8
zK!jEHG%;1DAr$7RV>P{EltNac6R&okTqZU-k}O6fL~0f;*_mcpHa(uCi_@^DDZymR
zYHDTTl;hdTM9a1spTJU|2<7R7b|jluBb13rR$&z*lGRwncw{wJnRsNKSmoK-@l|vZ
z8`BBPz1?by<H00CV`A~sNuPJO-9#m)2{uMKJMIXTEZgJ6B}O8vQOXgCOqB9OrcWfY
z8l@buh*8Qjvj2!hj8f*&;T)y-AaNTtgGMG3i7dt_Mk7l==FyW-iIK=^j53kPI#J5`
zp=TlywXzwBtP`O;J4Idf%_yYND^mxx0l`X^;h8rwvGJ;x{1ZMg7FkYML@B0+FO5rB
z6qod$@yI!vF*-S663L@t{$}LKYjTl0TOxNj{_=~LDttD`JB-2=6s2fY$~S2)YhyGc
zS+>!E-4Gi$0%oOZ$pOILpts8?<g9U+yPc}!RB<2%TWgc^+fM3N5|DuSCD59`DpAV=
z2*l!&P3kH^48|5$z&)Q!OX4$WNwKsfy&^4%dz7~;r|O~r&R0YfsKide`JNxQ9Lz^;
zRXo(tI<4I$ILmSJP+PWIN;UuRoP|1$EYzRZhNx}v?ObLO@mU2rBDP`9+-lSy$0lR{
z9wZK`X&kni4MbtkbsZtr&y-*=4QHIT7WAX~hggHHO#WT{Q6hkRWDTbBiIUS>1ruT7
z&0=HtM6oe^Nqdj{#_&d|J^vWyboy-GbgQD3t85g4*yN}kut_ngYtz)qw4lLGF4;1z
ztxBd96D5t2r8X4$Goe;JXu`Itg(H#lfF-Z)0|~X$?T}YSX2%vT;wB$Qje&W53iq_?
z69$VnIQrY^IFWRWH|us)X@{_h1wrxht*VSKs)Q@lzF{X{*7$@=fB3Nb{pA@i7BP&_
zCg?RUjmYzHCq(F2^L;3|RM=3Z)7l;#!oX?+9ki9311QwN@(;Q2Ya8h2bVQ=-yN#`n
zHUWEE)Qc97DwQH_k$U)5K~Dc*@63PWh^aXKuMGTvT9FCk+XgCx0w_q~kU&8KA(U=Y
zHn44>+lHIJo%wv9ceA_6_MqiPZFW4i$LF*C{LXwP7C&kr368(UU;<DHRc%hUDZ_t8
zX3cA>b4UQNSGHs~f;yl|65^^M@xsegaY^ozACNEL*HM2eK|xAtQyA{>GsC=$6%BTl
z{2s~4(g`u-8Vr!7)5+O+9T7uo)$F2{6)+!!S>==$S-ZcB;JyRR4HCR7UN0t?mg^;$
zXv@KDhu6@?6eYz`E7x0@Id&XIAji(!dHL*EaaZi=QyT1HOqdbEkwoUQ3#-vuG^j;s
zL86dSS5UI4HIQ+N7M4SkbQz(~*NXUoPLobK1K0on?K2L{#+G<ljT-(@!+(b07Ifn3
zKoSgn31HC*#t32LcHB%Ypa)Mfc|t<#{V)%Ixs6~_b&r7sLZ;SFxva{-@TPqZRA_?_
z3E;UDR+@@cF|}e<fNyQ9@X(I-H|Kb_IormZAK39D_;YW(3$d4+%U#LX<j?uowtxJH
zvQxRYIc%C-4_f@O<qp=;n5{qnV_TwQ?~dti_gF7(*6UaI4Gs7t)|Jt&rd65d<?c{J
zbS|0}w1+5~Y8Z^`I*J9m>KKM~t(--qwonKQz@@O4=-4b23>D}pm$I{7k|DY^nk1bZ
z`Ltv#^-22WxdD7C-+0ao660ikgR*1MaDpZIpfm3DV7%%J<8lvyYa}A)EP)~vtVm})
zJ8dGqj12<1Ip&zS4S`tl9gzr`n2KN_Lz|--W8yDFhH8E_Lb`!zyXYK$=o4|+vi;G5
z(-0cd-<bUtiCKakTGm2M5{)<9-p3?qF)w4ytqdkxFqovlnJZNu6C-Y6kcW}~)@WpU
zn?z$TX&S*U?r@HA!`9pcj&WN-V7AAbC5=krc!L+)nXj9I@0Glq^ZY%9pO<J;9fl1j
zdE79Mdtm9RKU%i&r+0T3?RH7qbptw#-)+80++s9=J&7+%eKwl2L=U((yYtQC?8>Th
z)Ccj`-CTq5r0ikal(FDP@#9y<s2`1OzW`8asV{sIVukI-h98CLiPOJobuh62Wv_#T
z83qXqpaJJ<51S;xtw~m}YuK$mfu31nG<eU(`$DqOu*Jbv>lNa8;E?vP^F`Ptc;<54
zWqPlF^B~$GB|5GwQ<zdXaV|sZnUbzcp~+#ggYQ(DteM9+nGBh)u}KumP0<L<t|W7Q
z=Q{DPx+yu`uBK4g0H!Lt-=Vr}uU92fadRizz{EfFxjorVa6snrYK)K&Vm$#*&6CY>
zu7L{^CsbK55iR9LQ$leQM1J$5iQDI?L@q-)lYJ`QhpPfoRbo5Y2CVADLYNygR~(D?
zB<Jc&xC>am41(0sNn^lWb;v=6)IvC^Vpw>f62a@qu{u(W%^SrgmvX{5*O2O%VM;L}
z9zH)ZA=FbClK!0Zk8P*T?UHYn7JOSZ2WMkyCp977G#|Aoa;Tj2XaCTP8RSc2+LsOn
zd5Z0u(4oRK&Cz!u`ygVgA~b&z(ap?Aqp+3xFnV^-?2G?qVbFbvG|~e0?E{eX(-)GP
zNUfa2h~!+17jY8Lv(}S1fjd^`uS(-go~L{ppg;$$IF-q@lMKevia+1>=t{dloRUAe
z3-zyrlw~;vX>~Pfu-eE_)hW8O0CO}{cM?3nobz0MKF!X}^XDrYfIH!vmSa2#NYRJp
zR|!%=IEfI(N`N~WeVS)8!4C`NgpH?)Z{%`m+gF`$*_A8LCe)gXCwC!(CO3hFg7v|z
z<$4%0JAY<RQ|&-_3El+KD)SjcfN&X{-WM0sNo=Q~=B#Za`?OLoX%|~eX&!tawJ=W?
zr~VXuJrM%q+}v2vwdN^d$a1XWt(EF7Tq*2vzMNE$h@8E6wo|B0c*_*#iXAS2Qvn5F
zp=O#=b8<=4LDt18!nVv)o9kw=r$uBBo7WSH7A&C?u<z_ARtM#`6EP_#NoPzkSNdZF
zPuSiQ7(9DSv}Vk`f}Y}vq~aCfW`I0(u1)#G33O|{2zlbpkoz3ehAD6m37-?g!c689
zF_lZ3fdQ({R3pPOrJQCsIrYr$1<S+L`I`tP+p<549?Y}V6Da7c=~#%+3M;L+8FIk2
z%T&YM#fgEB?Wgk=%?`a@Uj6#|z{rDtnzTPVY3az=9h05)^UaiXld{K#C=@&{Ejd%X
zF8&hoZc;^SqL1p}x^S*qf#=h$Z1HTE`Q~V|@~J1J{l6@+n^Vy|FL;6ovc-_h)IcRv
z24g4iDjNyrTs4d31?J@}<jg0d`NJ}22j;33O&nO?kqjQjkt9_lFvsoAOllwq!0pU>
zCd(5(ED@1jP(z{O*c}k5_59GcOY5vgQcghwo&+AU0l(h0^S*0Q-R=u*&ni2%f+iZZ
z0z)v{Rgj!H^mS`9*Y5$dhbxd}VZMmYLn%VU(EOt(v%^!-*3;6jI(9`D<#;zWwbor<
z3L4tRn_$MbU89&<&s)AkvY;;6s#kI<k?E)(yJ-;Db^PZ6J@*+iEtR24G{&0)CYy6-
z=3&i51YNKp&(aWtC&~{gv^}mWRsuBdOkkBSN=j3;O%@6Cfs;|+37t*}fT(X&<fY!p
zUMaRSe~_^}dTo>hR7s<AUiFD_8yzDqdy9y6gOSM$BS4ar$iyglbSuUR;w+PH%8kX;
zDK#Atz{gRqG{?|C6LdR3FEEgTy=gAKV5^dWFrQ<Cx96(Lg}z6*PO_X12|_7P22BHl
zmd{g+x6YfiN1S{3=>W*?@$A{5f8MJ}`$jG}0N0&6ql%N~*7$(@XsYd-rXJb%4SdJB
z#@^vTk*d4eNe1NNgj@+9Ud-du%BIx07@?&7G1)&+6{Zv~<1`)hZd|8h-i`a$3+ALk
z0W&#{JgRD4Rvji_t*L`UKslp~R#&CK5F+ZlaB14ajE*mom&(>Tbreq%Y(5Z4+F=at
z6PC<fQjZ%gZu_#$vq!9&OKf?VK4XDQH0EFrr9&o@4uKIZOTTAvlD!;Y8^nd_*Nw6?
z!gFFF#<7&hmBob9r%ZwTxU*s?#LGq=8h<rO^)vBJ!IPddn!=pLifOuWTgaKgVU<G#
zq)2Z1BIc&D@*?3A6dnmR!vK=sIrG}1JwkF_qBW)q*lI`#P1>bQsd<e3DG$vTrO=q<
z<oQv|GnUa-&vLWR()&<1ZZ{htFD*>I8MKlEOf|9@`)3h~NqQu67X<6bvfCIXCx<@v
zlgu|Il?_x@HEplfzqxsHwK`<OKQ{|bUUawHF(Up2`=&?*5uUHCNBQNPV)4kMSmL0>
zTfP~THg2Nrvn9n@X%b+!WC9L8Zk&e0a(4^ZZOrbM<NbnrTMwJF+e))hSdd%)>;)g|
z167v%&+eqFR1$APp3$l?<YN;GdG@j<uwZT?NnWm;H2HmmUX1%yo+vP0`s2c@OXvJi
ze(&7UC1wEkGBheux}*Bbhy(PH9|SNq%+fgEb2xVm$%pdsFq#XkoIA{x9Hw~dk4w9p
zyNo<_Z|@<08fQ1>H0U-Y%pK=ENRumHhI*BUPALKbK)q`x29NGOlk*^QHy3{2m!6CV
zar>FZeA&o%5Lc%C7TCgn`}&uwtMz(z_g>>J*(I8Ok{yFb;PcY?Bj9=N{F!B>x*lSv
zeLT8Mz#XJtC!HgyjYDB7Y-#|+RL^2Lt*s5dRg<@dH7ukvo5ox`x+IR*8}jkx=i|}k
zM~XFfwC0Yzxucpp(%cZ>hvE7il6gaCLgYZFP@Ls8b7Xu?Ck;$Bdx+8jIi!jlTjlv9
z$nX&v157T+E`;c>E}v(bVIL0q5ELCuRL`~Z^41#aU`3g{#Lctu>D9AeqLj8j=?kYx
z4|xFnIOA5Y`Lh6yuA<8id%E(qKIG{Nwc{g>uH<kHEJt5cG|b%?g(|hY^%r%AOs)y;
zP>0*j?dZ<;)!Opgf1$B(q`QmTEaS9=XO3%yM}_VGKm<>Mme2m<lB@~ys7qJ45xDMI
znDZUia|FaQxYaKl7-v@2o%jr5Bv{Bz)@Uk_>3Ecfxzre&C5{$}9&`a$*QXLYvk-;c
zS|x)s%Yy^2YJ)<XX<j^}1i$dYyrm?wo#tR-Kjz{XL57Dtnt_f!JkNDHI?rIUVM2K5
z6q>b}faC(H_WpwhN{IewCPbQf%ofzS7=>H=YEIWM-lDTAYF<%(LKO)nW;R`KV#dn9
zbM}l;8AtU6_3v9P4I=d=|6q^g_@7d$d7k_9r82|b>~ipz*N4}DaII^AGIh9v%b^}5
zf^xmegdDw&xqR$8=5!P((c*U?5X-26o9*`ebDV!Lc<*8c&g3}7-58GFl6Suv*rV7=
zP4)o>jU1>8x~6943D)*9hqnJmiy~w%mf8OQ@q0}UT9?7&%x_wa6)Ius4`wgdY`?O=
zTBE&4-W^$<3)c|HhA`9gWoRGzWy^ec8|!x7)`yNeCvT2rCypEgot=T+S}Qt_-Qbai
zr0!0`C0p>+6F2ep;nL-~awg{h?}_mM$qB{pV>HMYESccwM<&>%>EjEztoZ;fdXdLi
zci?On3U7Tn+I<(}(f-%zSocH4#EMRMP!xly9dI#-+J%~X@MgcmF4S?G@k7h2eR$Xb
zhhY~ShAlYwDzAYnHwAq-KR@tGv4y94TPH)r4WfR1{fDQou3jIKf1F$NL+J0{4C?gv
zYzFA7_RY^ZGc>~1IRL&7njoRH2aSEu0L9W~OJO6W%}A+1U6@cOK8iy6dK_J?$Iw+@
zkKQI*9{yk9=dF-^WvKogb)HxMd8-UH{&PEt1!n~8|Cycqr%&YnEBx#gjtx9WNas;1
zKs`>Ra`|YTE+4Cu6J?ezJG4I6P#5})Hgcu0(=A<@BCvVND*VJK`=eq48GTpo({a<$
z#9cIV(xscQ_A8e~Z-oqI43~*a!9r&JaV<`qss0wltVUP(NV3$b#SY$K5}WH&3kC0|
zGor3Ts<yV;)ePnk9h$RNp3Bp;K-Nw6P#FVR)ltX{0KmHlW->8!!vgsX^J-w;rtAh)
z$JukLpUEWUKfqx|MJMX>*hdCXAND2Nih=9q9s$ry_idJMO_q0q<#}tc9QaC~+jjeL
zyX(pB?KHtGuXn?#be4w7%p;-CWoz^wFtL*Ss{dco|F9+f0#bO&|6Sm`UB?(bHD{O5
z)26t)n#CmR!*H7Z4`QDJVpM2Owq#Ej-mQi3syQ>v@Lz@A<ktLiP~}0B96!MPbKDw#
z_6NqF*AH2(UOa5JI#DYxZti{gaI4ibvP~ZiP9!tC?<Rl!jzeYtFv1{uq6G~DB}|qH
z<k(LN3|>O&rwZIW5-fy)475x&?#73XNXd0?F=G^0y~^>>fL<id$QoRPykMcp^AjU)
z15uE=3Y3=?J|fUU<5{@D0Z^63B>aGc5G6{EsJM-zC3Qien)Uqq_k0mg02J0xkZWn?
zUAo`$1m`r?o?IEB0L7{yKs6aE3EfK^P}!xK5-U}qHl4+mb*k;0S3i2kIR`a0LTNIw
z81!fuc~!vHAZKxb(!DK)n2jaBx_bM|<vqmV^LZ38_klr<S>EYga4i~;8Ktr4k!X2k
zo|**YR6FUGb*F?MxfY4o&YCjVW@A-YS#jgOG4|3%%R+8dXSvN(lJ{|8_}M-Vwtm-o
z*<WYf)bsS|<<P+>K6nTwuD5k#&f&#6nL{j`#;I2YUUMXZn1q&&&vM_Rd66kz%P=bI
zSj|IvQhB2@T^j+&5&ZJ=x!w2=29x*T)@4wBeeX;ps9^~46Oj+O0^P_hLDe;6<6TI`
z3oN~2f1>@v>i#%SNnmDMkCyy!&_tYlg)G^oTK`4he#FmAd-^{Q@G<bx@{T(a)n>j$
z=_t*RTj9F(l0x^QBw5Wun;GBAD@%4#`j-pZu~52weX*@eklU=Wq5BtMus{oWT9KoQ
z94%RTQzrEq2XmmHllNg4Csk+{^PyJIO3VJQhr|cHAhgB54IG~3$~OtAg%1MBGZ*8=
zmGTEc=VIF`y$;o$mgC(!bB+&tifQI4#+fhNt#1fItvg?QFN(dr8L)@38?r-!Vu9yV
zf-MKT1Z=MWMWKxci2q=`V0HcC)yqTHdyB@wHLnC7Mb&l|8G1BVJe~-gsqUjfQshs0
zN)4?|*(NWT_LtTL5G3Wj$lVs`Z4Px)dlVvlDaw<Jsb~105@PWxFZa@`IpFkO);p5p
z(kC=IXtt+0p^;DG1umriAj{-*J#3*`mSP_``A+b1vDpx|4>C86(}s-D7<QZLSdlPq
z(065zz@A0ZP`CwUb%0#Kjru6N!CE@1rPA(DL)~Z%9j&2khnPc1=q1#~x@8TbwFO@`
zNwX!PggX{g^XO7W<<QCE;b0FgQ<zG?`nnmKBvZ+QzES6Lq5UWoN_Q|ME-OAdR2pLo
zdek~l`)IX~)IRpwt)yfH*E1i@yg@X32dKa~nWvd>*TOn<O?H)=$4YQ9@43J>O4L9T
zOk>q)k7nzrF><mM&dssAK49<fa{4V58H&tFj#1$rm_-NFc7bVWgbmdUBD(0+_Wm3x
zF{sGeq`+e4V@rsmO3Q<lJ*rlx{G&1?WzV@+zR51luCWAJ;gt?!E^@}{9mtjC?N8O4
z0)^&keWBTCGVE3!?Yy{oem%~PbAEZK+v*n2HVW}+iVGyR8=B2K4peqLs5DRN)+2r8
zU{Ma+(|7XQAIxrT@}X6X*B8G^K}>IZELhH%B4jmZmX-5WZ{EvZV2Q)jKN<QbBiCss
z`SjqLJkX}nHm@Gvy0D?R>}OiF^@K8RJ)v}0TJxjFjTX0k>3OzMgwQl^4%;2QL#uJW
zFX}`Zce>>L*t;~1)|-RwTcd})9u2)m%z<?Vn^mY8<K~wk91jM>Y8<WpUgK!>TeSh{
z9Ox*Mw;~o+<G5dAf9=&K#!$J3{_WvJ^jYiG_gUL?xKH1Om0%q}>A<F`*MBgF(`Nc~
zh+yUO>D$%QSwb}J9wgW1?X6_&5ps8Ek@3w?T&7Hb`DdRudo;u5|JwBD2^zl;8nOh(
zya|!<Th05)Ue>k3qy0xjv^zIS*g;uLP~kWUAUH}Zuc{Qee39X!8W)@f5Ck)~rb4?!
zC=6b~rJNru=H}$?i$9N)V_B%Zmo{2y?zBWQsJ0?HE7?a?dpaf5FI+vRnSOqcgWmtB
zL7UD>U`i&&h-Oh^v1Oti62B^dNlko~vMe2zN<tQastH9Z!oVu@x#+RE@AB<DD$7`J
zv2MD+vIbaq85!S3<L5lGd^geL)XZuhdtYS&$cirtRK*(ILXRqn{2D}2^dc!H!r6@=
z5^>}%8E9A1C(d_;&7>ftT40fIDzwuwbf-qG$T(D#H6JTC4OVVwayb#HDP{H0oknZm
zK>K38ip31o+oKzT1O!0CZcm*J#grC}xe0;M4Gbksc75bVjoeuXa>C`+k~x=rSK9}k
z>Cv+=-oBVAWzA*Z+}Cf$tJQszxZZbZ$2%$8*fwIe1UGWFe}}MRo!%wu7^msJtYgjZ
z6?F`8IuLbyF)~I7&mYm@IrmdMro)5u{4rGwKONJ>K)AK#|MnV3p9sJLXsF6d7t~?8
zd6b>%_5A2@qs47sdY*06pch!CE&m&rH?Nf!SHC$FMK5OD10(Ndz#J8L*zTujcrX(!
z!x+mK0gZe&w0u5?F1+jZ&A*w=R+l|&ACNa4R;|e_HF27>yRtjeA;+mPmomwMJ3H1l
zgW0U_k7-j9s*$XWd>TCFo7p@#K~j(z9FCqwXkiT>0{a?u(ehC(cg=IVTDjuc>x#R|
zbZ@X<s|Uknn7LUw)B}Uec)4$Kd1`sEN6(q)Sc|72UZT$GrGM(gS_sU@<jvTsg=cm=
z3RTl79>;v;4&vG^>Wx_7165JXB{@v#JUVWGmyVlG;Tzc)3-dP_{qR!;I$UfsqF<r2
z+y#|4DEFn~8kkq7nL{F8Brl_{Eg>5@S1o9`KICpV_xZ@y{{R63@Ko>eXP^vZ<o7>W
z#N-9E7}U`wQ%Bo6h^==HVi^znzXZ*&Y~6!I<tdY^_Q{U#h<R?tr>m<62wYe3-+qcd
zgY?d4bdt_czJ9e@&DX#2`VZIZ`y-nEokz5ym;)iBiH%ac>__k{eob&FcmGEscv_IB
z{Wlx$rZM4$tqO#RvfK7-+RtXvK-^;wWoz&f+0falXQgMt%!fVy$Ll@+$6!Zu@u$Mh
z`EIQC0hbc53PdZg5LFGvJf>N9Qun$)N7KP&0QNhz-XD$O9iu@(&d(6_Z`;-N{+vL*
z6uy4$YW%S6#n%ttUT$8#UBk+`dVS9^o{Qb`JF)|YcWtn)xWT!Q%v1t#clg#Et=xuf
z#je{Myy0~eaEH^m$(&{E<KX+=x6k8!2i^zx_ps;6dr3+5!LC<t&~oyG2pSG7G5sh{
z@$Wpv1u@cCQLLfjy4nU}hAhn$;*@X5d<_zBqxtIP^&iHkH>;KIAqVz(!ZXw9^pg}!
zWL(VKl^w%Fk$_-x$WFIT9Lg%DCnRcYc_eorpxh(5^Qhd!j3j{BMmZKV{R%H73e&DI
zM><4qwJXN0#+t=j9NEzcf-w-|jB#L;$z2uPYYz5n7Zm7SO?N(ITq;zT2Qv<2vD_>3
zg6yy|eB}eUoBdiw6)-|jJrBMvtg&6SLz*3xmOT&;St3tTWeNUFZlFz-rBs59-)-<)
zQyT}4qL-=UBOa$O8>6GN1K-o4unt(279|B3HATFf2*7vXeqo8@Cf@!_8%qgN^RrYV
z!7NR|*Ah4J_J8i>B*g92J^q5LTC^UczGjkhfd!6a&dVUt8Ub)ZJGIIRc!T7iDv(0L
zPaq_U1O%khV#W}CY-1_d7Z%YzRx!3K91lM8vMQGA_SMP$JpdLlQ6J4Gtc-Rxk7e>0
zuyvHo8BjH?eGf(7n}yMe!7IuWQ6E&*wQqXteu$iDPs77|Uxg*$#>y;TvSiHH8DVb&
zV9AzXk^N8BGcjt#DoPYe_u3#Up)_!E87oairU^m(olICZC$GY7!k6^s&B@zk?98GX
zJMS$bAtv2mY^sW$AxFw*5ie;4>Qs;qlK=%OOOJlrIT|<8@LG}(iaNG{lU0KJt?yok
z9tDWJy#C!<UWyO3zOIGgr{p&PDlQ>pBDt4{L2IzcNSlvRQ1<c8+QOj&fLq|-s7Z(g
z$=k=Bi|p9))~>{%*R)IY%6hpyVS7fI@vY{iBJ7|H)Q9xN*1Jk#x(5yQTsCXGUz`Rb
z5^B<`EGh>=rcTBx+o*~8!J~K_@=+rM?YMeHIj)w|@=+TgUb@b8!urNIKXl+rsW49O
zqG-6IMmUaBPiW&Y>WN_)@2+x+A75q2@pzT+VB<fz%AxpwYK@=;ub%$udhurb<?C0t
z*Euk%8jBfKrM`O1xJNv0{Nf#O=R6kPVtlV*5RpPdQJ9;{ZSltxf*6RD&)xA_kAGYI
z(S_wq<J$c_-xhyta2Pt7iQtS*o<lW&hAuhJvm_vfP29Ofy#NoWAP*q7ByqsY^9^6^
zM6ygNadhvQ0eW|A3QBL_CyWd;!T}~aV4M4f;iR;wvEG~X>Avon@69!IQJ)>wG8dZs
zkwoaLhwb+ra{UyKv;@*?t};u6ojaNq@}<jCUl3jY+y{S4hLVpIk1OzH%6z@M(%!zb
zwRTA3jMZqI5xLdB2cF)w*ckb$<~si$v5sAy{t@fA)>|K!<3FHe@8dsWhwz#*^N4h~
zL%a~}$Kp2YU#5aW@&|i_kWSl0Hc<gw@6*@6`u(1neE&A|#}_74kPr7UUq56Y^XXk3
z;cLNut^a^2x*cnsOMdSl=*~-59+;VfNOlY1#p7>g>gx49d5~w?Dq^I*bRiTsOZ+d&
zuFux$DbyAC&d~8M9B#Ytmvk9r9+FQ?s4OQW;d0mKSViRCV4KUbVk4tpAbsa4-IS)X
zT&603z?%7@97*#*a+`D<xn<obBy~tiqlsyi&}~4viy_CQr0MOnF;~7ZTFL3`=1Dw}
z9Pv{(H!NfmE_KE$VFh^SDZI+UYNFu?b6tdnC{{!IZ!+1@1b17WKVViDxlg-rN%}d#
zo9v^nl~U*6ivC9lpoKmgZ`ar3;^y^Yb#FR+HL2p1MVf6Ubi?z*NV6?i&I8hHx+Be|
zJJM`quIyU4Lz+#yq}jAjnr)2F1O%Elk3FNS%Q4o6EVr5=7A5T3a9z&1m3hyYYbRU&
zW9!f?tgilWWD;C7Lv+Q-C}>3&4XNg`VD>AujKO3uQV+OWKXsqm(d0%wKRt0}-@65}
z7LqwsAb9lyE?Al(({RR<>E4;hAAJM>fUB9u<UZ}23ExcP`zQHF3EpYmLPj5~qr}tc
zxlAlcf+0>1l0FS#sP(~=;2$Qq*2-5OLyWDJuO3Qym`bay_JIU}xy%3YMB3lJy<We$
zdG+!LluxPcZ8fJ;40keqm2kHa$adNaJ2-iEVQ;;a8l1LLg9gLB3`r2C^6;h<{N1(`
zp~ZD5G~kU*;2VqI1>nJw+@KiC;1txCgB9FM+~2(1gurSXG3+iVMSvDo37#q>;#*^X
zL%gZxa2cj|Sdx{qhT~Ei5Hg!lLrav%s$^xS5G6rW8uaYsB(|9{qR2IhDj2+Myr<|k
zZ@!VAI_LpTf6X~jg$f6osMNT5^N1ReSMJe7yJ`@(s=WMo$t6Q?PM{V}L~4n@PQ_7c
z&H$V9QJ(lJl|#j@sBq#wB*+~kw)Kq~o+Y>z)#8xDnXBDHT5y^sk3tae;N||SSa=Z|
z6%J;AGA4;a0yg$mD}Kd2{)%)_qfdyBLB@4MM2U9(UC)mmH(K2GrRUj35sJcvUSI$6
zW<C4tync4i>C3Z&<q*P$iM)P@=<GWHKOF*o3U083L%_E$iLng#0pDAZhmg;jiE|ng
z;EW*?k(`uGEyS$T*nopdk}r;=sV3B4JZu1Fy-Cu&dg+(vuz8boN;Y-3GzDxbdi)EE
z@;homTeVj%e|U$pMdR+!@7mGt%TQTwmPq`r$<&J5xrL<}T5TEnYQr-{SR%KQ>WT&C
zw0(prTsdd_r90Ud#!B*=Aur_)Zqdw}70?QU3NIwe<;0M0*ww}R8#5g6m<pQBs3h=7
zBszV8h`d0up9TWa%{Sq=A=sO_U6|Tv&Wa|pzs@EA)mdAhJ^Gt=@%7bgQuFm6?(y)S
zhR?>s7dBt<w(D!>7yEq{>Uy6Kd+QR)JHaImvWO38P?>0KexB<w7w}|wbodJS@RD8Z
zw+}?RP#Hv^n5PTiR<=ZfWC#usn?u#?)RA*4km5JnQkB7wDS@JKfmr;5wf4D2@oaMS
zP(NI4f2&jE&0oSG-nmLJdjlxoA)h-vtk-0%I@YN4SsLXB>GFMm2?XwIo8fc^!)aat
znqRPaH2R_2W8s<OT2c#0{AT+dN#kh_tQ}9iZP&}2*=EN51@mt$Mg#}Ye~8q>!nBK-
zm!KU=E;P(hJ64_>c_~Hr?GVgp1UWr3OLUeK0ixN%Fc}RGSe3NMmE0~PJdtmzWBv@f
z@1IKo%@m3TSh{D9gRV`2YUC(E;T1wgz-%)VVF2c8Cwe{ChBicy1m2C?4f|9wkh1zA
zt%^}^h_?uUO?cd7u-8|&*M}FOg%}*-ZAMzuc&<2^YW4lG=UpV2wCdk0tWDA}W0YC7
z?K&%A9PwMH=5d@APx*C{F@4y9o}<8fD1ILz%k6L71np<f1pk5T-%(Denzt%Af(wH^
z?#gGoLWhpn%joYJ!}Zh<`~svlc~)SpLPts=RO{Ma=Fs;4Xi<dh#WLG}Ry0g0<ILwf
zX|WhhHfe1y2c}PnBDBrCO|+e8IbWAIx8_5xbQHFkvXe$3(gah!h$?1arkX#4V$^(=
zY%S9gxYbUrD1;zx@VBX)x>gr#qmgZ%?jTG8F)vBSuVl5fNno~^5*dW8sc<DR-Nfcl
zSd9KmZi>8d?-9oFkh2shb3>VJHXE7%)(1{Sy{0{ah>1xI;MR|Car+3pkUbRIT5>4+
zPhQ4Zq9|!D$@Q|6ZivG`z$E2OX^ny{mV9ZpQ(4k23<;rU6J&OCHph4gq*pE?R#Qhr
zjvSI8BfoL5a5MxDv;-b_sC<?$eULT=SHdtgVFXk41MV<m^Mm4(6r{k)G?pkV4MCC*
zgD@x0Hw3q%B!!j`*o>&w{MCad0Vz<2(q*hGzHr=}><KrB_ST3#<yB?C>R=CB!a^BK
z9EH^`&@0OLhDy5SAS_*d?m_MME<&FDdn_kAf7Ehv@W=SZIQwL#K%ol~f>ma)vINDm
z%sRLvT%t_+GC1l8Et8aj)WfDk4^mB6!kp`1kG}l5u&_Ina^HA!h=*P)h&eFc?2(a&
z)I!4t(}Hu8=^YCu9rteS@Govw*Y~8w>%TJ&@j0c%KZlu`h)!}gd7FXLRYw1z*Vm}$
zT6%$2WR2RD<wS85w&Lx`HBvhVu~R(gr=rCkAlk4TkQgZ}yCI3V&uUR{-DLV`QY1kl
z7n^#9VrHuXMX4&H9f!U}lfJ>DY-0yB9=3w>^xqmlYLx0_{FEul|FS9ZN2UbxW>oFm
z-)qC>ea8E;neH<|=a05*V`Wi?*&sAAYdHv0T)c0E@PmvA9V<6&%KhhAH~i26x?4UE
z+A@jH{;jofoGU=0@kcios`~)>35)Arv)|1tC^K%KVawMoZ~8Yiw8E+W^40I2udaT5
zczN^B7M%^w@WLR#t%W9KfMNm8wb1rMWdY_AaL*6geYoN#Wd1@sV1R1V@=T7v2LUri
z@+9TK75Pnh1=2_Z{ZN`&zbsTWsH!5jsoMfp+iEtocz~vmeAkvuiwElhxMJ!qOUV<p
zU4ZgotFc%s+hSx^wL$2%7L2i#$P*fE4cM!o@bb>u5&C5~7PeoL$Tn3q41;<>(O~av
z3IYo#xDjUilo2(E;^nj3@Pt{)684mC6*(+5^*p3oz{_&YTzWJ|yz$a?uJDLi4O+%?
zseoB}niOUSwE&($=Hjf3kur|fbKxTUVyw!+-l(Uwc2H{*J2IvaZt2}>+)lLyV65)l
z&{Ej+(MajwKzcNwGw@@)8xRYPbTipwpY72VGTKD5JKJOr+sQUtSb$gQ=0yb&eX<2b
z%=kO2zsQ4!O8`XdSa5^BbT{2a8!rogJKy77Xq);jfT1n6yfzhywo@!aABx`MVDQ?9
zV$e`b<bjgA>E?x-hS1zX<3Leb9bwpxRUgiAGrsSv*(IHf?)bv(6FzJ~po7E~M2<s|
zRRhTP9Hd&HL;Mz4FJsFlHZcIpLx<_50ABE}C<G@gfYg=%e!FIlR<d1r#}_A^83pg7
zdbgeAp)dG%fyqTE=mOPu@3WgNXxPkgpJHajiI~0JwzfMP%mlKT3K~r`lt)UzBGB9?
z=9yU3H2pme%R=%W>9EX9DD1NQyCA@wWWYuSVBF*Q3mEq#14hM=Q@wk0b*K?BO{x3A
zkv5=X+pU1ZB;V%Qpxeym6+`*qbrWj%NQ?6Q6zv0e+09CUoInX8p)x@N4`EpmD4xt8
zdKf)~6Rl<OAu@flquvC`aK106Krv`-g^3>FURT+iH<#7MVc?6AFIEt6O{PgzVTWkp
z;2Ims0H3p}JtOUb22_Rq;)@#G%a}u|IN%Qm<#Kk1oUDOh&Q*H}{&*W)6R<4S0o$1K
zSpg`}Bn>24=Al(#zD&lryjnd!BnM8_WHEZxVW;Z&VO3vFnlD?564jG@fKBB?(-r^z
z=|V8?$Yk9zwxM_SX7TGkj4xlkxhFH^qq-X<`!Yk}l#iPic?W46THtYCO+Hts>$@~?
zqZGPM3SS+k%<r@ej)Sk%H<nC+OM6@d4^h(cuu+i3`#_V<eapu+h@hLFYcpV@=wtQj
zH%BD`p%ni+3y8h&EssZ~0?%E^A0x3xDG!V6t>50)0Zf9UCKKC+&Kg&du8FBxIC8S)
z0tP1_Rt<*?CX1IxjR5I<K(tqem1xl_h4LaLH%S0GnQt2bKMSEnxl*QqOng{X+8H)C
zh^{Q1%uh+WvzfbnswW?7+>k1kVOS}yIAi0|nKMb$dcJ|1;`zlH@;dWz)+z_O(`x&P
z6<ma3vLP{)6oReIZA}9uYJz?5t3_)7w%r)ET|4t(8q%a4F;Z@FTw?TG`#jPd3C7Z(
z)ppp1?NGuKiX2*M2ved8t?$f4)6Cg%(+_?P$=IiJ*iP_*M4jtY#&+l|qy{ja6q7l_
z`qtJ+DiSfJyEU=T74~O0PkK|Hd_i|&sw<n|QpQH(Nz%`#%!Sq`KlJCgO&OY6Va24d
zq7ZVmp_k8(YIOQ|NED{$sY#g_-6w%y!b#8(R}`54*1Qnd{Tqo?z+No-=1<(MJneAT
z#Wv>&-NS-I%Jw@D!Lw)ECfE{u{hQY}>qEMDTKIowy3I6d4>BL4`))+ndu~Mc{g3Xu
zAC;)4N$+z=?h{4Uhg6Z{{A_6_%+F8egmZ4ZS-ySobUi+M^}Cn%gqXAKjTzgbgNNYb
zK!i&au8vph9L>;99V-mN?4_KJ0F|hYxgsa%o!G2dOFG0cBMf>L5ooHp8$TW51i#Km
zM+N<4yI2pWllDs3s_x8Bm}^a#RC1Xbi`b~1?P@9FO-zUx<_K4-uz^Y0SQxZRX{=q-
zojQUy83@&frnrw=UH33praNu-9N8?Y?VFgKOPB-=6&7fjD(8-bK^G2wojI6Hf$}F8
z*uirO!a(y-*}vFXa_J9IRT9D&;FHCX%fhLcIl7jlaSpFH_ZN(PmSB#CqeDC<Xmbjj
zh>10v;*uk(E@H(PqdBSEh~K6DQj=;JX?J4SaG}9uI+Ya>DwP_KZ~3?f`SpSS{6m-d
z2ma_$9>jHWWt>Vlmk37V_JPDGs|!}OIBXVf@f0m_VX_G%j?bh?UwRk@sq4Sk+5^m7
z9aZ3{&(C1OHi>qiu8yx|rq2s&Z=T?}^YxN(35$gDbCWNfkhZgug!txYFH8MmlOUNb
zipg@E$^ZqwS=7s<8>`E9(PK(9|1D~I&09^CIA5sd&!aWi)Ki9z;2p(eKOmMV=wm?C
zQNjSJj3S;+&0<H!)Y(v4LoK|!-tTMIx*T^`I|?}MES7n(8CSZZiK5-uo*`p@a$@~Y
zE>Vwn)u3tIfvj`*+}QYUTrx0XCg_w^WCaaS&x8-Ap+k5;7zws3HT%kbfY`vqrhuSB
z3qV8*Vcc0P>=PxH!5%<vc4^2AcNy=N-Z?v`t@69Q(-+%4-@ggO8F&IM!^DFz`bsp@
zklOTGk~J|VLqeL2pmw<yWyPRQ-rhh>y{IX+yU}h7lww<<X*|_D_B~QKM;sfBZ!`PR
zwD^6}O|i8x0(E}a*=LdFN>SO8x9vvWav&q$?b(nI94jjYU>_$p_%vdUFo`DF4ma+=
ztoeMZSf*sGrYcY$@1TA;+Tvh>a%hse#PVC~D{^-oUHUjJA?Nsot#(P)w<;{S+1kfg
zb<DOKjQZ`sUN8>bf!%fq+ZCq%3^EO~vr}-yV1?C6QJlB1)ik#RF^~n_cVsSnq{^%s
z``s)zLACE|aA!S=_EZ}%lv0vLT5*`N^C6GhRXr>2=;G_QVo--W<@#`|9p1Cm+A_a+
zalJmOwo(3_HN@N`f-_`^3k;d-+ZC?^KMN>#n?L8x+!Ul6Pfke-^wg151z1eNrd8f*
z+!l5uua(A+m8QRKF3>l%XWaiemi4YIOS5KMfXb{j_S1_xl5^X~hX;X~e{+Lk!Xa|~
zZ!J^cyeP6$fMOWrh@-QQ5`iRwWZHWF2#kS|;UOREN$$0`V|Lg?tn32_U|pKE>i)VZ
zaj?30VvBv~e6j8*#7}j{Dal>dVt4<Z8BxNCyfO#njTd8$QWv%kMAB%2`q&CppG@_S
zo3@?^H;tV`@t{|coxEkBwU$@hdShBNaqu@~udHI-gN<7!uE3^Y=rRv7ZY57&q6?Zy
z^f?GApap^^?#n<oF-omYF2ZN7R7SSY09iK80ur9<jQ<XDHc{cxmZ~;-ur;g{yH1O<
zn*jPaQl-_dplxKYuhvUUgx#Y6UYoW}Ml?4seY`S74<o;s4FOl{ZtO-&dOz>RnXt=y
zB@o8AXz)YD;0#(B@I^-sj6G7HFId?brgO(wv|Vzcq=O~M7%o~R7t*r%o1#cr7PGTO
z<vVc-W5p+gyj$LeFj?zC>=>(Q#~+phoviIeZY+{JL+T)dyKnAD&Xz(IZP(5+Mqatr
zxeMPwi`5Irv<;6oQd2&!6AhqgSgUY;jP)NiDKlKm`p>Tq87`BKwIG&|%s+Z#&qfc(
zW_F&;6LC>)@zAC$ngKbR-#y=P<mV_ga_*>-fc!Wnjf4atO_s=hE+Rh4@Vmc8@MYlc
z^3$?x{x2$oaegf1B08p8p3I~51d^HfaRuI8kLIajCVj5bEW{6e>C(@&E{YKYksuXe
zv5S)ah^?3e^2w!vQmb;VH#s+d5Jy0ov8pdvmgRV!Ew4ulqbO#-is0GvZ4<QEnbnT8
z918aMr?%W>AxstlHx~Ryt11TSwEwDSTOq$z#|w4gVa?n1p1$qAlI_0oZtwADI!R+=
z4ngX5dkwM&CyGgTg(l(%94hDmnJEs2Gih6nB<7)!HW@t_+4X{Gj$$BCFMQ(w9Foul
zI<F0ya>kGbRaha=QmZvUL8Niu8CH>-J-~}nrcBx!ZPQKZE@+A;Y7E3j3j}9ljWpRN
zL4hcMq25eql9e@3)>$^q6I#tMHU&(Z_+!+!qS53b)DjBfxFZZNXq)B7X0q3~SiM@`
z!;zz#x*`0(hkF}c{z&dEcanI>ef>~oZk*yn%v{X0&<MH35-RNsm4?a3&w^d0|4B;P
zEN4{EUn=mR9X)*{T>*03q0?|Vwgn!|Z6)$!C2s$$R^?K=#{Hk;neWQ8RO^5RtV(N@
z{q*9F=Dq7LE5tfcc86paU|wAP{^rHaAMf+op8dPRjBDL^Ux<4hxp{e{BTgL={yd%U
zQkr*3$m<?7+VYa!%(Cs%uh(M_Th`qMyuO~<maiYEf9r)}I^W;0cdR1ZinDtpE%@o-
zVJ6|>Gn+Z64^Kg?N2Wk0P!=!NY#&Xx9;f0uZkBvX^B?+FI#bpj8at25U%vK*=Wkyw
zu($AN@%T?~UjN}wi${<DvbcJ)SQ2sb{LvTIkKZg`zxv&<_{(1&Z8Jaq)At^I@%gN;
zc=G)5UmpME(c_byB+k@f{pR(};>{Poc6;@DSUmaDUrtu@&)4P}=H!>puAkq$oRR4-
zJbCkn-(0_XKG@`Z=}V6mPb~QO<e_ZOUM=3fxPJL&&bWHAdD&_2U#M;Q<k8~v<<;%Y
zFR$jA{_~&z^q0q{obuoN<(&ECk56u2-8>tnCr_R%zwyN{esy_r`($x)^<;JO;>n}i
zQx!_SFMQ!@`||D8wbe@G?ArX<m%jAHO@F`mWYf5-)2nCCzI{7qyg*t1<@M_?ed+3S
z@%sAe%{3)Z>R<nOI(P5-_dj_4=!@U`(RaW7#m9gC^G?){U*9~Nvwh`@bN7Goi(h=_
z2jBnkFTVMcZ~y2A-~0CbI>)Y`Y{%KA>-F`Ux36D*VY(ZG9^?Kp&x%I>`pGSW@U`oo
zz4-Z`|NMx@lX*-|2%N6p{9$#yCi?E}E_M0p)vrmsd)fJNdGms_yO$?F`?=Nl<_VEs
z+cb6f-lN6IA0PjTq}7v0{_9t-f2na@pRTT7{_@T8OJA}%`NESY+oYfQpMPWb<*Q8N
z`qwwVIj0#XOQz92S$*kCt9cTCAmehUzrOy%`q3XBpUxzSw~Om7#Lg{P(E`BZk3U=e
z{A+!fzOX#KS-g7rjm6I_@cpY7*FS$^;jb=!wwl8yi@%)Am49tJ<#+J-#s-Cn|KZi*
z*MI)=@*8jZApUIe^Simaef+2AuU<d0wcx(CxHke{TYUM;*1W4HFW;_KU)ULl1p{&S
z@>SN-UT?2x+dXjXIevNl<_Euf`NP+*W@B1!{_vweym<O*wbuGsoz8un!RFCBa#Hx|
z^PAOddty73cR==V9pAcMFJ9mL=FQyUtCPj!)9aUW+h1QjU0wg>@#DuQtJ8TXzJ0Y=
z?iOgUak4!5<JVSCZs$dM^|R%Z#m`Tc!_CWK^^IPS?FXBB9+7|kaP{{3tA9MXtL3X-
zm`>)NJ-_+o+wJ@BUf;aw;lDio>gs39pFjEIyl?ex-2Ua!Jg7S}$9g%ref-sf`F*sQ
zBj>~7YCRA0lf{?5q)qUPGi+<)dH&>2SBC~Va@4sdo5N!Fz#eP)!WD?!5VME7G&6GN
zQ)haGJ1Lyf39||h3hywv3V}^{*E+A5!&|f<N3rAV0>(|Z){n#sobwN!EJy&ziB-T{
z27E{fAXlMI9{o<Z8j?csYGu0cQmjLRdkM|mOUyUuK=o;dSb;PJg!0{@Wy6KC8Nfh+
zHTA;v`GqqJm2<>5WwtyG_Slq|JvPL#%jYp3L#6`@=iYfMA>dCAJwW8kJhUyTrNixY
zPOY`7dw3pnFC|SADvDeGZ2F}G;FlHb0oz5;$)N7Rc}V6PE&BnE34NQ|phyoF!-B!C
zZss&0bpHxHIOq*Q)GQQ|r-PB;qm0bo2``z;xn1$4#nz+TjyF1lql7!n@IT{C>+$Kl
z8txIro;K4U=Zk4;nd;79)~)%4=ti`5EC>4O7?#sP*5=Cs!oFPoJ1{K&k&VJO%HR7D
zbSM*)Fu4uZ+?}w-dPh#<P+G(CZ4=Pj@y79lO*6?swdp_MIaQ%^Rz^H?@cL?m2oXv;
zB_L|j+<S5@Cb?eJjoYrsaG@1iriBRkc1uHQpZhr$yL}N2x9NSXbH*SFmcAu#wGgG;
zQp+BgEUsQZyJy|?>C-O1`*+<`>hzH}m65Hq<$uaNK;}9t5We_Ivq0cqFbm&HP{o}$
zGwkp!%mn*+K$I$q>|Tl9cPTL_W}pr(56U-GV!PJ{=ubKRhm<;l;?=WXy<NXKWI{&W
z@%Ajl<!lz>!VwE`As!gV%E$c5q6t4o)p%L_0)}FlbkNo)7s<{M<c~;89`6#yo@ndn
z=Joh|UP((X5%WR{HSTcM?8+ZXl@$Txhuwv*5Dzew8)q<>>o=(Pc9LWhrK}n2XenHH
zsKFx0u|RNKnK{;ytS>}+diiO4Sh{&V|Lv&QvoZ>~J)C%|PAX$i85bd&b%uNz%bAy#
zN<S4QGJ^hiFNVOR(0OY!+d|?C*0VEnOc#)j%#a;q+n16H0i1ea9lYDuj3U+S9Bvr*
zf5^$|65Qt@C#vQ|KxOT_Q$6=S%0R7yBEB%3WRh@zNkl|*J&L?yGQ+KsEKxPd&g03`
ziekb3+tGx(_;DxoN3JA92~wu1{Y7Ucg{rXK><WWLB7SLR)9a*0d*2~z_E$TbR-CUA
z0M-FBBXm<Rlm^S_fP=$u2LAxhC_cmiqS^;oKxVP|A5=KbkVN}m`rz;j=uBjSU&{#0
zK$vZp$Pl%MG9W19IHOe9{Tv*x`uLJ^NOyyNEY+F-;osUocOPztRdp+eS?+jCe68<l
zN<dVs-KvnQ!^UjicP5{W@#gs-?$3VP%zkwLs0l)-)z|;%!VmbUv3^9^m$BY2dS_}@
z*U#VFpO?(MaEl7M10kgn;x|nM$bPK~>ETGsXzoKjlBZx#$6$&QAILHZq-wZ5R>rm|
z-E{Z6TU4>R!)mMHczc3>M{{C)e{1IT_Mg0Q-GRVs{E6R(fhrh~*6PO;{Nc?tCmOE#
z5C7z28Zyh?a#rEG!<8d5?ecr)y4YmD1LR_SAIQbfL9S2fyBhTVwNT!_E@OQEx};II
zE``0WR@bk8d2_u!fP<KgNy6~DE>XIbCyia2wA@4fp*q|{s4qdhO|_$c+&L@<#kur>
z<puv?<<<CM<sE6?kHr4aE!PC-(R$~b;8FH-p{va3mRM!W0c2^d*CAA124YtZ2?)(#
zS#YeH(jvS|GLntZ(zOCN+XUVs+E`$?rrr|DN_S7^C}g9JHHd{S4QaC)iJRYtdt=V-
zqkB-<Y`v>uwx?LOr>iEn+@DrJhQLujsff?fhTuP`1i1_P#1h6&90ykKi>GgArxlCq
z0|%4Sb75H7#|<s>(qsJ%z<_Hi6+Ma7L^E;HE}{%iPg1-an~0ltsS2G(mp_t<c9c&k
z>RJlJj#$fjM*w+1hQF)@TZ`|`u=QK8J1QIqc466$rXlOv@AGF6jd3w@LBGGPq<ow5
z{peU9ATOj${`(2!KBPOOO#XY(vEHLbB>W%Ui&dkG<W)bt_f_r&fdjeWi!)HH8j_j(
zz#=y6VrGuqEUsRTYp{$NJb(H2>X+B!4Hv=R%xsX^>++#PRDTtKSM+33#3CugjwUNy
zz9nfP#5Pi2Gyzp4`_T_-$c@T^LdHWp%0=e(@HCbr21Kb``4id^{7M0`HC8~>);kra
zP2H9LHc01yYY*0$oTD%o^01eQ1yQ_Yi)zd=5a9zAp^Z>!b=|z3rX&fdh#`K6?k?@U
ztk7hLP$3{W6!cyp?nR8%n`3+wg&K{lEn$DAx(kQ?2*Xuk0gzlSy=cVxC2Cb$8DL>#
zb<ew1qUE0TJY}qVzz%A2Ic|ZCLFj`XL-P!)lYz#Pi!AQMAe&CbXPKce4I}^s48vKA
zWYp3Db}kGg_q=f+nXFSTBgx*fO5P<+W}-JWn}azck!=im3?X#|qFlTUxjf`#hJ$u`
zsS4LTTKR*rNC-J5s}nVl5Ev_QCxWz&lx~^pXz9Iy%HS<`lsy}lExWw@_@U5dL891c
z*oPlH*&@E4T^LfGAASrn%2*k4GwkTl+ErDsf!d%M3cbHF+2AAntr1D)fNBM88I{4*
zrd$~rkQ^<0h68|>O@q7^&25---Uc>}j-FMmp(>ok2iM=OLV{zXUqcJ6<YXhh&>kLr
z)oPh)pNHKnv`(5r*8A3>V6T=T0tW&X^(MP0H?EV342L$_0FF(wcIrzpzzqnPhcxcy
zLZ@z??CPDAu>wk0SmhGb4}y9d(=rO`hYs~)vQ^!|K7ksdNt_w2&;|qh(ZGJ_U_Tnz
z4;}1fdnov!X?RhIY?#C3Fc2&YuEW^WT?2cK#|A7d*}#4<upbTV`>rzj4(~jw=Aw)S
z_6DYHG_W5G>_-Fp4z-juc{lK}(Or|5nrIjW$OhGYS&Rnuwk$RcG_beaaWJq~c5`p*
z$D*ZbV859)1N%W>KN{E%0{hXxel)Nj4eUpO{bqjqGB>av4eSSj{V1?^gWm#icCCY+
z<u8LB3xgdCgB=Tl9SegU3j@$OZjOb~j)l>Vh0%_M(T;_&>er5iLC3;qd;Df@`i{Rj
z7DhW3MmrY9y-c!995n2q)9yl}qFRe=@#d_z6jwM<nL-C&I|0Ui0yI?bP>Y$&Rg$mc
zX-K*<)V`s*RfMiCPaw^90^b-L8!%K@`uenKYW7v%1%|#SMD5dBpQEkM!PaMAd7BN6
z^@&n$-RxTCt$9C__8x=oG}zwL>lu2j$M&Ah?DoB9)ZWuHCELZYn?;!K%f<55Jy*uz
zStnq%;)MAI&tg2wkgxp^6Tm_1fbD3u8EWOZa8qV0m0UP86gUv+0zecJ{*HQS3s`f_
zbvk<#R5lNO5o;2RRSxwcbwGPa(6eUyB|qz@zhpIb+I%r=z9?`Z_<?cHmZ^fRmj1E~
zz-#V!67tW%Nu0UmfIxhzSYtHJ^Cm@B$?>J*&iCSU)cIcWx3Hqig6+3TUD6dZG~GZT
zfe{#);Bc;<1<Y(u2_fZD{1CX#Vljsy#qCIuPH4cdco?;0VPl}o;FE$)=rj&lDrZb_
z8O_l^9Rqa)$$gILxUa%E9di;m_r<k|0a>tfwZJ7JG&ZClwc^HRyBWLD#;%X{KW6$b
zqUJRqPwvv$i2d;hEk{qj5FP&xwErk$NalDT$8;x_n$nJ7s=aNcSbG$qZSHNNkoOr|
zUtQ1k65c-LVP+G8pLW*R6tu=-fTD#BKH1O=;H`1{=cUo1yW@_6U{4)LRe*GCRvM9|
z|BU<`%X{%R?#^Vnk=zKwuY&MdP!x9H=+H$6`Q!*4e3LnCYr^aqyJgGE)4RSuL8?fR
z?dh3mZ_zCl3WYV1*m6xlsGWAi9saC3CBY6#h2ctr_*&E$1yXi6(?}Tv+plRzd#vfK
z-CHfmlYS{MTNA4ID~O37n|?ht7UkjS9jiNU`=RNx<@%<8TK;Z;E>iKsBBpJOW;SQc
zeqM+EQSI^?NFNezE*b8(k-DCCm_3}aI|b?+7&Josk)n`FPc;jA1C~U@(#&V@m=&Eh
zoe{b^hz}vQP17|#SJTENm_@IvBY1*bg#z?cDp^5%H$<1I>|qHuMj65Umfp&}4zy!m
zug^4f@$~0v;s<sMI(ro_4o#wmTZB|c<tE;z{5F`^VRl5Y>xh3k`4zgJ_)y+eyf{Po
zcmQa&zW4W|gu#gObuMb1YfXlv+62edNpi89`u=XY2&6vt^Lpy$GD136hw!YM6Ax{<
z@bVgzGBfF+$zetNDG)s!8~yzFS$Tpqadyj+nvv+`FhW;1p*A-mt-gtsHPnCGCiJhD
z%(n@Bihmb-I9Ksl>b8g3)IEQ;MLfjzgBS6*grB^K&;HFN@InX6|N0U*dw6B}sB`&%
z%JwrZAF-4lynLiMe!}vhTh{MC{r%kBLa9HOxrJYeuBto7fX`({=yb7%_=APfWR}IJ
zEo~7KrlkQno7TaE`02STn<aFjl>j3NG4J>qNs*)?X;m~!7SSXX=Pu6@3W*4bS}t=4
zaecJ)v1a0r*+D9v=8_xLuv1O2U#oMak=(k8zG;_qH*O22A->FgEm|m;JPmy?lPZuE
zqUXEDCNA_tlKNQ#jU@v#Oci>mi-hlpBShSeSBfe}<B65BileN5d~CdjUO}lO)6fuu
z4>l%5BMlZ}I4<_{<y38s`}-|$h2sg(=m9eZKpGrn!Fi~k>RmA_7y|iWEF%#}?j462
ziw_K?C31Wul?Ks<lW4<}q|cJp*LTC^KRlmJ(weie9T+GS+K{`yi!I6)&oo=qyXXbA
zSTJWji|q2m#9eUm@0VYvIO9_!p&9(DMfM;vUc43?f%PkX^t0(+Y%QQp1E_BXa}>St
z8ip~2a`o$)kNAy8v4cagl<J!I%Gb#^<72h>jb;a3LnIn|Q)Z$8{D}ml<$)(kQ5}Q2
z7&6?VfGk4;VY?Zwig24Sz7+`AXSZ<CCbc9R*V0Hc*VRA%asT0xVT@whn@MCe{73C@
zStPC2HtisVP8h<3dAMCa3Eyj@=~Pn{9te`QZds!;p*sReI3*ukhbl0J%X*KAYI;N0
zTf9;j@06CvDH8+375dibn?ko$a;+e9q6|#W0b$>PSs{wP2j3}cG>`CrjI2|nq8zlm
zNI_L`wq;pK1aguEF(}qi{Gya*6MX5`XeK5Cenr-*W(V-IMGK;Ou_oqc_T2aC^eF||
z;wm&z-wbHJX-%mt(nO|4;fVwSyZIU}XqwQG`CVTNgVLM<vkK&y4unj&LT3k;t@NS7
zt6)aq_FZ$NQMlr=S~Qfs&@t?nmP{za%w|N@!x(HXdX?zHm;*!?OeMTbu$H|KnF`kY
zfv*Ntr4z3t&H*x$_;gpWi2%D4H;5BHQ76mWp%<)F486c6ykNKGQ`xIZ7x-70;Hn}R
z)>3r_7gO<xXAtsGdjJ@u>|{?y9sRU>{`U35J8QsZLL|yGgRSMKmN=hNzwF8K5oxz1
zJudTM62nCo^I^%CJjq}3Y=0k@e8sc<Dqz=Xz`>m5n=wl>WvSLr!^m%P)@z;%G69b@
zU$jVi0MlQe{(eS9E=6D}Rq|BNW@3iUBLpt7=PLr>DP9x+$H4PN0q{qON66W<D4(NG
zdm)l_uo$P9y~$l;Li%zQr7l-w%u~E5V~!L}&PbWw5ic_Q3|#NYbIJK~PeQ$1i<a_F
zt4=pd`Lum<(Hd(iePhL2`&-+d8+rb^Z>)NUFlMN~@cnr1l!_o2mRE3vDwV&n)3&A&
z<3N*qpGTm5VA?r;({5vOELuS46ieeR4RTd&+UTMHN>boHEz4uLqP0~wsQxx%E`x{b
z;Ct|lgHgM(WSO-CR2zW&`ZEAI2PB$C)yEO<Bl0Bz&@vCyNgz6Q?IA?D;lW|}n>o27
zkQRYR07?Sl06>mE9ac$mDC#jS%X0|zqPAPj@8EU~K3pd+0O;ueAP&7OU}r#(Wxt7E
zdS1pRZY6nfv#qZNn|WPGVvSnQ`ox{&t=k8%@HEhPfyU27uo@=r7;uF^v!uru;yt)?
z0ZCq^wnY3~Pp_lS1-qxI{Pw7bbl26-FF=&-jKhpQ2iGbdlHdYV3<Y2Zxx-9&h-O78
zhON~=fTF;hRDfj8J3ny-m>i+2z<msnS$qKk&o!T7(izHpZnasSe*5#SHXr3Pu<E#G
z&M}sFTOUK54&Aj)zv)U#1Xb~G=l+A=gDxjA+&?h<S#)~wL*KC)hp;KgB-a~@maQu^
zJzA26%uc7zP)U&m)bDjl9rbvtr|2*8NNUJ!egpUQ)eCU<pLO*D(gyU0xX@~p4ARi$
zC%xTn4wsuyFAl`L^6mk&K)wUeLni-+0Dha*OE6Vn_zW9pX-22}9BT){fqt(K$gIae
zt#c&cp6%Gc`ua);u*c7}5`Gj;J3(4-a=_^x%)Wxa%q6}k^6g$a5&KvKU~1|fmv<pI
zPypB=kat{z(L-J)!SFg8hg*(=pZ{4#&aB4(t&d5j{nd~yW?x%e0rk_*wzvw&4tVd6
z^Zzl8cm<&KBCbCQrB#5_0%GXg1Y+=-u0dCuv-&eIOioCB9p?pL$XcIc)f`r-VSG#h
zm~j_~{Rxy=r{8I#)MQ!+iETGx_fx*M__<EJ&cWrDK0`(o8L#!v(UGaa^K+bxw(d;;
zK7<aMtf9wpSY0*~fn`2zmZQz+y~f@c0CV8T9=Ef308S9KsEQNVT-MgAi_LTS_sTL=
zb_CA#&eQYjd=gRqGk5ZKjVOLH0!5>0Q|B;+9|ANk7&7-c=F31x2fRKauj22ObuX|u
zfoL~CTme_`p^lTa@QNCfsjq}VLA7oN^r~b*&OuA~b-bcmxwhN%c^-w;^R{E!GVVwO
zcv1+IJSr5xw{>*0IdN;dj8sCN2f76%Ay_S4HH1Z**8AOph3g%7#N34PAZeU(((dcH
zfm6Bb%#y*%tlz6J%ps}5Ea;eY29I<&*l>1~_lx?NOTCCB&p_uQ+#Z$jp~7;bmav=q
zIcu&++V74nFC3rWt?R!v@DwDkf^lJ6*+XLsqdI%2?3SE<DZkV{U(AaZ*kDQL!+ax!
zad==?H~73rq$gA!_V!$`s~aC;L|BRqw~_zVqD?wC^@v^7UL<t8jMH)+OqL8%_DF3u
z_2icZL%N=gedvh46%z^HowU<g$<|zVQq5zG{eJy>oGpCDRwiyGt$~zI+h#-kwvS<d
z3Y$&aoB?yb9D#WX{n@tp*tTs}Gv8<uP@}2OqB}3^{5nAL&`@ijwbnAuQqF3%CT)KY
zaC8%nhAi-<HJ7%{JdTkK{I;4$hI##aoh^JeI3B?0tYLG!Px^O;%KrJ?4KNwiuR--C
z^Wgc&@*I-<yy4)I=Mfx-@!BGmKSiuGcpm1!`@uT`WZzY`v&Z?csp$8k2S8B0%<??<
zYRx<1z1!mbDMHTLygh8VF3i&-+VA~IhLaf@{RZ*l$^1G8`s+D&J0-jEgsjd_;NOSZ
zA1BbCty5=1e3;TFGvy)Vth!B@@clII{&d}Wh)R!<^QHGQB)l|_=i7bnuM_6?IZ)R5
zOg7M;PO<YLem6V1JDtgAgJiJYOyqcia(;{FFE6XT!<Dk__p*DqsuKB^zptT>FXw0<
zpQ1)Uere?N1cBo$<p}9}crC8j=b3R{apv<SgeYZ<-hGGtwf?^JWkxxozN|>uShKCF
zzTH4y*w7SL4}ODUHeXz09qTNDWrIhBw<QJnJ5=nB6+5f=Sg$+OTPsQu=JzCW+(cND
z=L=zrb{0*CP?4`0Hqo-kCtV7Gw=tUC0%H_~1CzXqvCLqM$&Cy;2a(^|xCLlfb0%EQ
zn!77#t-y^mepN+?IFV^FE?R5w)L_a;7o|lK#7ux05hEuP1C)OQ(fmUu-W>T{cZc(0
zFX!&WEXp5W-gpL+ck(lq_%U~E%fV+%;0dzR{&tZD(ZZP;31fVag}Z{92Plvi2}x%h
zk``&CWs0Ya>?k4ZsHaYzQJ0;VJRBMaLn8FXKF`q?X9@WhoTZ!J90{dEH;_IbQb7Rj
zHAqpk1k;aM8VVT!@b6c&Nw=Z*-P(4z|8k0>(qpQGV7ArtISiIFsu?}sA~e|&ZN;&T
zXYVy9A9%xyJ0JH<%cBcZdx*=kt`DnEzCWBF@~T-OX&rAhiB)-|hm_1AOUMykb?e09
z8?6nwL~Biq%^GZB<b)fODb=O6hyR*8Z;iFHO2I6^15BiEHaW&1MT`xqcuWrwZe&Nq
zz3-DWR6^zCneXC29SO?1>BRKTac&y3z(2w>5+c)cSuSEW!%jWq5dU{%EyE!{#Bi(#
zS^5Y&6k6rduyZKwAy!<RfYM4SvCXDBHFb8-opjL64&qfQO4+vxD#;mC%m8Jn$~6v<
zrbdA31XOQ8bp})~pw8_3lPb40I)OAegQ?p#R9#IG&6K$J0;)R#HGq!I6?}r=hFIE9
zrVRp`mPqhffDO9?V4VThABMuz9u9yVZ?%QgrDW3CMZ(VD>I7GSqn6@%YKsE<6TI1?
zjRUHQ0YOP}gKVb%eQtLw{O)P%{HQYrWIs${Xj5+lZ#G|MGVv!OTln=Y+1&D_Y--@R
zbStKpw5;t;vJJGLj@pAQB2mzgY>X7p5;_-gZ!W|{{?Exs{VnLcqA3*GP)|_~4LZbd
z8W?v#6Y&is*b1^5>&F0LV)|&ykRYK|n0LRPF>qFLB*@>dL&?0m7L`GU($Lr%(@<Jz
zD3%d4;T^}YA*>R>PU*d}K6Y$n^n^05`F9+CtuyOrqIIg5rpebT%j^;}uCg<{d3qP_
z(#RUekm-p_YguXO5(!JS+np<!?9sriQep>i^D)huP#~-qHi`YZCD6oZYy4<5Yb-h|
zW>eX2t;nft3x_v0Qo#wCuoUEpDdpp9C_&0t^5nfp<f3)+65g8|b%sFS0rOW9GF7MK
znwlJRj39#}Ne**kgh&$>^WG4Wy(JD5EzFm@Tv>TI8{>UVbm+vUKf1y(MLkCm_yFS)
zH?FzpT7}n=SK#bKxyZWCvLmTwG1&`{Y3SGp#$zpu_W{kn#eu?ZO@|kX8PQbI>Y}A3
z=5TmZK}aGL)&L3ew&KW|gef)Hi%re_)45TVVodH7x-`p{{)}7>QnnblLylv?K3>VV
ziAYk_i~*?Sz{eJJj+7sZC6X0J3iJ^rfu#>+q^w<FGDY3viZr`J^KS`ZwMi~+kv1xd
zaft?Ps(V(u%$Leo2RmruqD6>nHi1E>GB0H3fLe8<=}q308=#JrVQ59#msu&ZS4v#P
zt~iVmDkd=0HK(q5b<L@3YVo!?JDC9#l-vrX<OL;b_7MbTCnu`C-K&#co%HIY-=sc3
zpLN>_U`_yY0+>5ikJsVc=%<Fvx+#$?_0rMH?9@xQfrmrp1b{gJ)_ux++JeCxycfLi
zOcy!9oQK4+{kb3Y4)r-L2Qx70G_FzBQY~`K|IdkS21B1LAQV8E7T{+x#HuV+nA=Jc
z0IO&*Rgbz*fN$_6W@0yHVTbg>5VX+RK@c)_tqwt<z-{RG>Sq*obt1EWXl;S346Fn4
zgjSqnj2tGMINMMWGkdmmdS|F_z8PZguQl7O`~KrQfkC?nYR4W+zlkwFrFgUcUv9$s
zm)OZ#C+3%gYfgbk3oQC~lKVFwBU@sNUadovvC+sPuiMLLQu*Z=7w|S(GLmR46?d3;
zN+Z;MlQI!Eu{Mt1y`I#uy!eK4`cmsm$Tg>rTGCC&)I_-}3rf}F29-$4S?gQs4aWP*
z4JyN9X*Ynpa-#3~CKM%PcWrrnk4vB&iXUa|RjJ2MNj)mZtV!mm--<;>44-ys>FuUO
z)z4O3b1m^ECndJ7r*$A^*F%;g&Ag^)O;v}!_MzrD7^}D5^Y)_d$Lc4TX78i7-tTnY
z=p)>O+x2U2sNxs8zxMte&@(52a_mMfD6W>-&GlVgl$X!|!r|)?K9<?QN8-eRAOPCm
z{Hi9DoO@l1M$Q45Gu*1%L8y_5`_PcLqqQiOjXHRi8}P?E5Y-4QMs?sBhQY>wm?&l)
zECX28+oJLBSOCjyMcSHF0-B~{>0xb5SLSW&e)AEl!abwBUsWUPV_S!-(&pLFNNYI9
zowbJVYAtJc0n?S*=itw}xK`PkuWGGaf|7|7@J(t~zuq)#%sg5mxRzT2pvl7Rpx1n(
z<GNv1&x*hos$z5kC8n!=zu8Rgn&C<<VNiaggwpE@NSYwR7W15eq9L)YFHBT8i*)0r
z`(rAN49V0d@Q`%EyXaN#A#L)ORt~&dE}=3l8Pt56M+<Rn)ds)ox_~U2MV_X{o5ic4
zfRu*56-z@wXnhP`*r2AC-h97#SG|theMON-O7W}W7<r8Vxfy{lR(xL$Ut`I9O_|1~
z1l(?N?r&}7ZEY-y2~T~w=`4j|{in<KFFT&2mzZvj0e#<OPpSUqSE+LX9?7OjGUVj<
zh)Hx2@UnKK+{XHTLl=O@4Y=31041<ou{H;8z~G>3dE87k;jqmpp`YQf^wC?-Yb#<C
zs`frxl{Hzntz6q&$NE;%3X28I=BjIJBBwI7XyV6NJzg_+j-w^8oX3`Hc6Z@F8uHN}
zC%_EGFp+U#buQYPioT>~0}j0C(d<E}>d~=>p{qydefW(isDJt9+wc81<~IY681Lw&
z;{)3zvv1&enQPH9_WibVs$VGaS;vT_?r|#+ydvW+$bJil!hm#i34Vz702H8m$hwdY
zS!=M6rVLR(drV3+Pur2rAEH1ulJj^5;w7fn!3`}u+Z$U@6EQSbR%|25^}}19U(Mph
z;A<Yla%r_R^G$}#&zw|DE7a5U)y5N3IGE3(v~x!lVQZ+`Z=740-h_Q6AQ4qOlNP8J
zm0RhaW6~miP?z;xE+2Xv%|DtK2^mWn`RPI$tyML;zAX@D>Rn@kCJ8Kz7$NhvKFmNd
zIH=&W_Vje(kP<vg#dBCqD+&}8R0j0G=R#F&jcdb{0$Tg!HfLNiRuPT`%UML^YoNyJ
zv6s@FTC8oP*Y)%+%w2--qHrP`-6@%caD?GUkqw~%WoEuS>v&n~RU;6g_A6E(?o)z+
zUISRnk(y$q9FWp{8JMIoO3PnYM+4{P(M>3K$RmE@K$~`gmHlKSp{uSw;&8CYNgyCV
zDigwXyC9GtC$Y5SL%0=<8POYDkeW{xCWvg}VCaU#gqO50k(y9cdf<*Od9JqOVwJO!
zWLK24QUQtvWWlZuN(0eOuh~`k2Vp_u`rbvm2^I|UqB-4~H(e*g?IeG;l_1{NT-M$_
z&UPh7$xX-%m{5BcaW7g&tgB946|IF)siLRk0%5Ehw46aJh-Anw=YHZ<ui9W?qby~k
zd}d6Hm16DpwErO%=m<b!w*hAWK$M#eG)|yNIt``HeNd2fKz0|XOz8(epnG!^yhdT2
z%$3Qtz{-krcT(7wG_UZ9c_NEJs<aQUe(9J<k}g*e*;IZyx9m=k!7G`LjmG_L6hPd}
z@=;^#?D`u(F*R`EPM$PyZI+i5>;ezhsA6Vhxe;4d`W&S_w9Ov5`0~q{O>GNIG{0$v
ze=CIFVna9lrYll&qyaV10JBRKMTlW%q>4>nd=xY?L(m6tWMi6`bZ`=Ih%7-0ghyDa
z(#9#u^17K<<c`@12%ZdlSM@gV!HRHJL<Y7R4(o%nKC~H3!%LA*<6(es0)+K}I+Gm_
ziqm))K%D^Uj-^zBol-<fgIXa-+DM|Gr_pe4nTOkSM7WEiX$F7O2=`V7zoqjr47cft
zPS-}M9ws3vzLZ3@4S$m=PUJ`lv<ysO$8M^XBtFSBPIdOMO+r?Ck^}t>^bnRHq%&4U
znUg2;KUga(OiUUuRbLX>BdXd^evlrT;TMJZI)<~b;=R((@HXD^D*X&Ap5^<uPrv>9
z+3MZe&P2qboC!h7k!Kifu*UNJbxc*UBwAkl<N))WL7w`L&Y4z|+;QJoWF;7{oJArr
z52eb|udzKeK#@?Jf{=iCpSvh2rp{WXVk^VN?}|7kYA>BSgrWLW#)U2;bFGOq-Iuy&
zK4&H}hp8+dw`;1s+T&;sxIxMANyO1qF;?I}iy_iCSHRV&$VCRQ)`_bdCr5-CAtq<t
zOL-HWfFa5>ov;hMXUYw24-g~q4xL(+?pcv?qm<WzPnzTizm}qQ^gRb=@c}W^gxDtQ
zJ@qQk%vUQ6GFJS%EL9#U(u<|dvXQ98^aCm$nXwWG<kl4EhrgB21eRZ3(nbXAN+#4W
zZQ3zei+_s+>8RnQ)5xx+M4m({%Bv{#M)Ws&L%-Np8{IP7BcLO$i#~n(^!s=IL0dB`
zW?3R@#+pkyEl^U_KJANS@b2igv&9e=kD=;wEcM}#eI+uADrmN7m3}#OJ@i`hy(ozS
zMKT*0bpdiv%I{(U?lnPo6dhh9a7l17X-?<C%gF>nDGYQ#u9c<>R>km@v%#PQaSL7T
zx0%38uD2}dNilv%R~|KcGD|650hRKD8h~0Vl{T*e>6mW~Y>8m5{6e!FH(H`l%;+P1
zp^4!x3&R^j=^N|YFEe=5nRi6+oXL(KunWDY3P(YwA74&Ob=OOsYu@e;FMoV`XB@hi
zsuad>D@qV6B<nA$6ms>uF-hMe{_|kgIp_lkWJJrJ9}A(+P>m%LiwsocIJhwDhz*uS
z?O3f?5)0p#X6~|z6gs7XTnN<s7$mr&j~2g1+J7WEvQA|s-!64mDew3r+z`c^gZSQP
zHN0@lJ*M(XWkDsxq!_Z?2-9M>EwXv(_w%`C1%6Y(=4ZA=UlA&x({Qe41@`;-T>EYL
z`ux^Q3vSyVMb+7FO8;!0{RTRph2w*U)7rj)%>lo-6}@wPCG?V&jff$N{b7rZvQME6
zCGzpMD<B!;N1X>^Gau|jv|E4ty7z}N%sK~atA$e4DJpBLi!kc{ZPghFzW?q_eYkxv
z!!|J7qptU9>{8~Ss$Z>H@Mjx)2cEgAomRniSdhVZcAPY;E;s|e^Gh8hF1o%DQ#@b$
zE+$UcW*0eY`RR_`b=Y<6A-9DaAngCA6kM9b0uj+TOZ248zh>PkbcE*+%xTw-oaruR
z8G<e-=M8bZMo?3iMWz*kInWn_yY;n1k4$;t(1vUxCvz^;i>Xy<y{}%jI92|d#4dvH
z1MWQb1Y|@VuJ2k1pYp=7e~-DyD#4_1$ATLc8WogaQM(hFV6s4Xi8@4xo4QmZ&`F*t
z`hq!OE=39P5S`&w>W&BYX2E^tQRprw-#c@lM4(E!bfFioavkMXPq}N7{Ni(_gfh69
zm+X4IizAxt1Z3ud9E*h^c4H2}DV6c!>i_^PX}C4=?0gA$nf2eGEus2WfhU8T_KD%v
zStM--*J*H_7@>@<w=;Pxi~(btNinhvhjJQ?pk#8P!-CAWIwbKublARkd0~`?ps{|2
zcg+r+Tb5<9UUv*E(2m0DM#=2wh(Lg|IoQ4Tc=|2!Dk_R#k6`LjY(hOheS7ZLwpIyh
z4O_q#OoXDpwKi3k-mD_RLbrBRrVwl@1RcVK<&`-#7vrUoD@3HI5?c_{8?!HqY=h8+
z2=j#Vg;o?u8N30xnSyyXbAmwdEF{Gkbn{p;^Si^>&$^6=CXs|gysJ5LpHl0cwVqCi
zu)vhm0)Qo&Dd}MNTqW;@v5fsd;y`qYihzfCqbXT5oe^o9$k9z?+mXazABXU*P(`fz
z+d!X|hG5HH9K;6R)na~U1N(g0d68{oLZfpb7Xs@p8fI7v$D&&>B&iq}XJ|&D?`vlm
zz$vGoBe)Y$OT>)<rHYiwqY&h$OnK9+KxtN+S8aPW&RgT0wc4rGJJBh)4Od;HgN~kd
zU*`PIO+?`G0+$mQy}-B&qD67j7wJ>PV=v+uAYV^;?Bs=c#*pk;01T&r=#a=j8xJ7O
zOhE}n{t5CRN%cyijH)9^wnXMx60>|nt-wuNRRi%vf*a7T0lO$ClDv(oCsbC0eW;AB
zlm;w`R}#zW$T~}OlxP(>RiyfZQv>GRL>@)_%kF9a;hm#~Ebf4Mh}06sFjz7)a$vB$
zB=;f`V@DQMJCat{I6PxN2&YOSOaR^aXf7BzB1!gxEg>nCsxBrhs0XQnZXyO90cPlw
zOddk(4g6Pp2(9i#2Fdq@kPmrX>WkbSv!nmS)_Qo&AQOTg%E_IifT8wc#oVW!e{jPE
zMPxx1`aaw2W+yUc!+Iy_eJb%Wl*H*eCN)-OpK}0#Q(y(iM^_HzzQlgnSV!)c-A<;?
zG2kxMp`Ju-ExEF`scDcv^4m9GNiK(K;R{WoJO`PR+7<9MYEw7rGl*HO7f!u+%(?%F
z@^h$PXb<Ha^`|EL`Q0g$gKOcOPe(+wQ*)Fm0~&HgYBEO|+8-L=5{sf`NhdGZH**2$
zU34>Z*HEX_B+FIGcO`0dk0uyaSOaafSs*d5U3o|_!X=-U+FfcovsSHwnPZ3z9~+rr
z<Z_^7MI&YL{Wd37s){HUF3;5*1b#*Mq$5jV5R#4+M&1}sE%$1<vz8kvR1M#$i)68M
z)>}(wy_J|X47mpHBy-Y>oNqgujj;hl{bSNS=Bo}?W4=Dvh)W*FyV+n970|iXvcPov
z?_L&S@0XSZADO9e$8>W2VGC`Jc`mdW6iEuD_yr5?4_WnBrfQ{vvu2k|^9%*v3lmL;
zJ}m~Q3xC<jA0}m%`F!p^5oTI3bRuD#sOJpzj(9EQ2OXP&A*vy_p|yWQYs~~D^Ooau
z_C`oeHfLBCI8AC+!KG9{=^@1l=Ke4l=l^K4)|cZ<_VsOsKZJyPXx-e7ONlkZsYTlv
z=C>2lZ)PMtv^*!%H$`WQRD*I8gAol_l{xz4DJrTJ?Q?50Br&Y$d?CJrRz)VyfF>Kj
z`+3+WUQ2q~@cj+P1CWjbZxvv6?C>oKr6u35bEZ^(2`fKx{#f+-<&*R$HrjUxF6JGu
zZx)Y~P8JU>1sCSj8f!PF@6HJ^<-=AN08N?v-k12x#`pN~@48R&_9lT1by!}c<U1wq
zYLQo{`Dlwek-O$mMM;R0CfHjRF|Z&!hKl59TrvlX#Cew2SeX_rm6@ko5tSoep)Qwt
zrS6@#+76Gl_*tp9O8ueIR0BM!ydc^RbDCO{vs(SE)v4AxGj%KDuw;Grjeq*~oAY%l
zn<o8Y*4bpPLp1j3_22$K51Ejw`62<H^J%M4oV`i)VyKgJN7`tcq)|J+@=398gi&#^
zG7Dl+P3tQK$@QC$S1eJyoT}BIs?wj@9YC&n)Sq68AJzXH<@_wI(WLpb`~I5`=MyK2
zf+_QVj}_}Ruc>SGh*kO?NVcvY?o(Yqz;<oVNCf7zrf59fLcUJoLyCJyPB{~G{#E()
zx~@ajzQTzM`R%jbe^3db|M;&^!a|uX=$qR6Y0c-~5@d}rze#Ct`<-`s#`E)OV!d8R
zE^m;H^|blCAKRZTjRxch{oJZL&(OV%DJ4%lIM>x!c4In14k;e)6REwOG}1h3G$_gX
zX3@th1-2C}q4bL?VGy=e^Gsvq9f~^mM%GI5nfmb2bG^cyeR$i86M^vGRimw^FCW%p
z;NJ7|i!&4BIVE6^eiW8dWsj#rf?q>O;{=^ZT&$c%qPA+8hIPjNFOVRMgtsh&E|`u}
zW}$9c+K!N*qdu|&h+8THp=LWfNE{V9ZrR&%D>Aou0TE~TK8s@8eI4An$d%!ghNFRV
z?c9MU25tCUU4!e{u&fjhCdjExG$NJPppbQ|(y2=9kHvW4V&-T~la5!uqdU^g*1(Mh
zf5LS9q}k-`dx(Ms!ICMr)AL4ilOzWKV)8Wz&`yB%!GL^g=U&<-m75|xE;1D0AK1wm
zfI+z}TA)^AoknqAs|<F-XsN?o#|9e*&Xja!P;h2fHeY641F@&#0u3LDe^J3jduV<n
z#0oH9pZ7@viu4IYaWq`<M@l2O1z;{tTw`98n0>(H9YiLVxR&c}t%%GiTdj^-y)dF=
zGaU<+F@Xmvc4F}#KK%JJcx?8?1^s}NB>E~xcO3el|5LvVDpBUXF?{^&ka{vcc21-=
zsX)zvAhjDYs^ddmz^5uS$r3gw00%mwM3oD8V%FEA*t_P_H3**yD2DWKdzj^MZ^J@Y
zH-?TF|J=^S*U1#x-E8mTDQFa`X->`ZwD93r0=uDEbj0F)E{tgtz5vBSUsbu<fmDmc
zx(qu=6V!6+#6#>+Oh{P)=4ZlSEDvK@3(Z)y-T?w9vqnRcH_=z}JGCl+<1kA>ok&_$
zy#c}C&@_VNNSFk1fd18G@B<iVplr;1p<>D!MF>t~la177Fgc!4ftY9Qj;t8QsEk|E
z3~P3fshxqR*@5UVK^3g+6AU369~ltn2Qmhf?zqde4Df(k9^7))PT`iPDf%&uJD0SY
zFb(=)>}(iqNBr~ixn%fGaw#byY5uf!Ip64K(Z4mip_dAo<|)*hQ0E82=%k%R8X<Dw
zw)Gl*c#Z-K>zC)1=PrecM<~W=72jtT;%~n%j}`Xy6ZhD9qu;5dkgADlqIw<M4Zo&F
zAJR=62cgBA!nOMbTKWwt!KmLd&h3{cZOi!v!gGMFa--jqwu{qqv#dCrNFeWnCkYOM
z0<p!lFPl$%pzh^R?@pJJ2=OH*@dV7WK=Epxr=_}K#dsrsi@y{AZuEN`DtmndM4@iG
zLStLJI3V{7?E4W}lb;kYK`&*46^T~U3xD??KK}8~e}B(P(BfEf*4?RMF^^xb$Gu&5
zFzWp=a5*{?!QYD7zs8skg8LT#=4iZxxDmnMiuI!g`P|JT!p0>+K6p$B9jc&xo?kXL
zT$TMG_rK8x;Qv3iegEBG_WSo;U;baa{*iVKR90U@lm-ND8c!hd{Ivhwdx*sUUx>uK
zY(NrYeg~32{pIP?8h8(t^#2Q$l<Ed5>)$)5{Q3FQhYttXyu1fa`2Ph?$aw>t6qf^V
ze*58@b2y~wX{zejFXL5jg3MzYud<glbo}oWL*NkJ2s5V=y;zP*zQTD6SupO)WnSXE
z`<jcG76?-EYbsYr`6*uE;n*O&=Ke+b9-~>}$5Fn{X}a^xzX{0?pU&_6zuV1w=M<QI
zEcNOb-p71rQPVv|B#cBqcV8~Q6E&1*<D@6Hcol12b-fGwzMx>oppDk<^7JR2YLQF(
zoVy8@^={z>v8u<=>d|_cKUy!d|0vaAzF<xFBnDV_^8sx_9{t;p9hVRuU=}7$lS`SC
z2pC6tX-Lq>Ei8zXxE{q9q}vTw67sKeFtWGN5Q}Yoobhv@Uc!vA66ai0N`HvA#3CQM
z<?GfV#MtlOAx4_c>f|dr70CmcxU31OT9|bvR5&}64qV*)nk|8-y)hKH^s)#OWZob}
zY1&j6KDp@{G%PIggxrod-IOG_5|aFzMf2mcrjsubFx5Q4WD4Xz>`mm4E#&x+W*BEK
z=zhscP^l8j;T{P=pX<JbK^eI}kPD+aMeJ@%ver3kotJ?K=?PXU36-GM(iS8`WEXd<
z7vZ{K&SsLN>2HJCKNJ^5Uy)~qfr2Z0E{1_m7)v6kQngVqQvPNC^zwYZIfUP7QLHGj
zAS>79p;ss8wumbi2E3wf>J(^IAX5DKI{(8XwexWQk~5XA46IXt|2vvE_lWmAWDQG_
z96)DN5tB2*P)ExoCRqD0ZXZZP0lC~+BGN|^<xUwSas}F3=^acq@9Dcrn@ovMmRPWa
zAw7pG?jrZ8YEu4fS17T9_oVV<h)U(jP%!J(Oavq#xn@{X+tkC%Sg-^RMZ(HKBF;Y&
z*O0Uv@!_OC%=s<<dP2uiKR=-j760+=hfjX@mrt+ngr-XQ?c7#q2@DV${x|c15W5&>
zNjT`6qBoA2)-S|w95Wp}Gu3>8P8$zLT9tc$Mrt0@3aC-iav5j?qvXSlUv;VyfILnA
z7HEbqiaxTjI0*GA{wyPP6jTQM&b&Og0d_DKz$=6_A&c}1X^kc?lIII0K4<JdOQ|KJ
zN-A?xjad@|M}>tgF~GTpOw{42vX@cc7z#>rFhBNr-H0jP*Zgw=^_4-o22~U%>@aEP
zA~WnIXm~-x<>fxFg*1*jL;Af)1P65g)PAWRicS^HxmN*<E%Q5y!N3^|1S}KKM!kyP
zVsl9*<0e==V6_1l(^q3=3^Eb}ZZ^sgIKR`lc+pGUs97Kx`?DkJb(q?5?Az53^Vzmr
zGp39GAFL#Co<E*X^5z`v<+zMv^!ra|r(1oRCm4(i^z%<=B5|A3Fb8F>EFoO`n6^?J
z`pDC6?_|CF^;ITJ(URm4`h%@C<y-7E*{JXSzT2N`C`EIgTM+I=uzFzRfRj>{Vn3Fd
zWE%qOh@%wo1yXhFcUWmR%U@DtNWZjW_o9EPcJUy&CDweEa~0|p&ed~4M10_>uVce%
z?hQ)>S+20io{<g9GA+%l45p~wn$(5I7`(~WDb~T7>|V+sQRaJZmC0Ocng%E5+jB;z
zV(NK@ChByw8f5gfC#fVZS*qX3bYi0?)m=dmBTI#&ujvC^h=IjfI%0|msrvPUX;Q={
zNzA3-WI}SNq$9j5?DSD0-z<S$hW17>%6V;m)aSw|rKjy6!1r0I*{Wy{8McTSkZldX
z4x~Lei$UtdM8;gsI-5o6MUCk}Z%cE-z!q{5+bku%_W}8yMneHdK-%707_RANwPHw7
zUqTO3%Uo#ouzOyFn=LV|UgaDuixW{|^`vQFHu6vQItFqny-LHYV*EYsNTdNS)QnDo
z2C$;TA)s;C!XUkj(k*qbkJ(%7THJ&(_sDsnlhEeLt?uQ_K=qE@c1)`son73HXaM83
z7gNA3OK~kRt?v2|vp*$drkc5vV9<*!LQ_BCXB1Z81!|aRpP4zU5i&@V8i;&CLcnIo
zX=9Cuy66}OZCa~fvF))B@n{oDLfFf!4-pN`hRR8P2CyYJN$AI3X$bcvhO)Uqf9p=R
z15;&Ft%Zb39;y@!r|u>dnNs|14^ix-$eFjMq?U)yAf!|n_=pMyIFwuy*mgQtw-rL&
z^i(pOz);QLhG{t<CWrMJ-$A~e5_|F~Y4euPl6uRx_ta9mT(IW!)CNX7ojo)!gc`kY
zAIYQb4x{eQ%#M4lV2q@pONnS{CXT^*eI$zPz1ZUVht)v(+1lDoJuffpj!(JUp>Nu?
z;niaJr?Adg7zlVuaHaS;PGr}fYktzgKI0aNF%=})9wg4SB<0Iazi+B%-P9xK;;1J@
zB(9wW6_)8ttw{JcoTh@Vgj)7C61Yd1m8ifwaNGi)aK_6AJjF(1m!<J!#t3KU37!1S
z0%PY-G7=*`=@e{3Wk)ABV~Dd?&0Pp_U#onL>v!Mp{<24A<;?o8sUGG~-4z*s_Pr|v
zz1$H~!!!{W8;mirw%yerZR<pqB)`~9%_tqS{F?I@p97^#zdj%@GNb3g9jQ3oMpaNF
zJd&_xtmMdUa_eXzbtShVy}s*rhVN6vOX{-Lz~hTs_v*8jt~}TJ?yLEPUx1V#<73XZ
ztF)3xt||TikY4e?nuRFOrt?fOwAcpt`{$>BpjvyTTH4L!Q%7Eevs~yp=E_P%GX2)h
zsq^SH$F?0GGofjrvgvYej{RgZAJfT^XB=`rU&NXw*8D@Dv_>HFBW<#*!W@MWhkb>H
z@C}iu84-Z%&7n9aY#B}aN80_Fp=OiZL>7={RvcFwWI0VVVd!#G&B5xM1%axh3N(5z
zGK~{OK?a1Jq=5hg%ciU%z;;C#1dsO->k-sjcO+z>l+nZn=@hTXH%lW_j$i!XYfoNf
zNbz4t(|n@ZxIXOA%hqCjsgBRokTc0EtMr%>7t1iVJ%vToDoodZp-zda$PsEGG#CoL
zlZ~&LXQ`?#2W>TMq+Kt8#sL51DMG?3i_9+o0h$JrpAS`T;plHLi4++pPXr|BZ31ik
zDDfdG)?%SwhYDO7dYOh1Jqu(}?T8mqxk^E>fL360fmY~Z)R<qM)-;4igo_+e?n25Y
zMP)uITGk_&JM6)TvID7H$n0e7#F$`-Y*$T@`ROXNn)BHjrkP}>!HB9{CXi4y1anQ?
zhk_h2#qk};2~Hx>b7+tXF{p1!dK@*)>553EQ2R6=h=3~qGTMMAh7I8~rG>ynk<m#}
z2<=b9wyu-_OoALzHRXv#H!un17}qpPMNS*_+8x{ip}OWZvBA90J54P^YtSi6U?m>R
zxx}VrVSaV`dW4!B2$G~&!A=EB?y5P>K$_v@ONUA{ACu>c%%3QdzhYn1L9Y%T;pQ6%
z3OqA!g3L=;Dml79MRYE^1GEec!d%Xx`4fz^lX;@{RVQq!FIr3J(G(%0?%>nVk9>ZD
z5W#~GaA|Fn;xIPh(a>M9gVD<jy5lj42%a<9@q^I=zy0**=Wm{{^74ld=kC|S@4h+G
zHQ4{8dtmz?HgDCg!ZXX7^dghfu{itE6o@Ehm&2x+{oxw{toLLs5YW{6%ttn=3c1g^
zmUx;iarU<AYDwGbUS&(g0CNI}XGjEc#tTPqeO!MFb!UJ*1>P&nsYMEoi)ch#iOMwW
z*s2_>9GVC^4)J1XK24n82&mVIeDwN|PuZ;3GuskQvr%2UT3zn_P+gq)1Q2e0A|z?`
zZW@VbCr|>(##11tnVjAxn?o~>XQ?mBz(z_2bh>ml{BJLkBg+26ci(*YbantOp&bsO
zsf!h68V}{D@=yx_sdQaCo29s1J)EU@-8KyUJSACf$&4=wpPS23$!E353{Pfvt<R`e
zm;6uw%6;y4V$|zAK0_cd-Mk_`fc##Rnal*uQJ!TQhfA~vuzf#`^076R?)y<LK=Bsm
z*1zWvI066I%rK7rWzCN*zRSyPAagfCX1)%r9Rx10ny!=eF;T()@%j7jSn5uWto655
zypIuG%|~!zGRTxv3iQBjzefCmegTvpo%tLnBmQupgwi=LteCjqcD3lDkR(DF6^6%!
z-$@bqbac&xV}%L><&q+I`e5q#dFpQtE*-kdHWd3ei81m49)(Pcbr;)~yKMwoo$R@T
z^8g;(I1WmmX=!^;beDYS-N2lI3>9;TScbn99c>iZLTfuV$HLK5CpY$68Fmp<twvCN
zkXPrUIHtlbs4qhiNWms3l&Y-nDgr0EJq~jSUv*R*Y8aNvx{UsV89!#-DDlUw8#(`M
z>xNdwZ@)XY6dQ+$&UP88DS#`rr|zcog|MXS4AmRjqlGHtQrBT`qMxuj+hegT5WZnZ
z<X-lWIG4=bN+$L<<x=1zGzXXvQH0K<Mo;4u*>#m7t@Vgqj@ZkNQ90<4)0(Esk!hK&
zI4HtmS%OlO=1CqcMe<5tX9}<MS$3~_$aaHDO?zkWJ1(Z8f91@<wT?k3=U<1o%rB$L
zN~W{VgmQj4rqzG^MHHysoW8-r4iLE+YDza)$WYH^agoEIJj``6@Dd_AbA5S*9Eq_P
zxivc&Z{<uGY9Rf{GEtWwuu76}+xI%4J7yF1$wkv<2?0>Fp+^RPMdH6pP2|^v`1?FU
zj<swB*4lj=6uA$T`A}MTWr?bzKR~x?F3SQGrpQf0RNiyovvx_m*8zwEsvL6PXDK)}
zFKJkc?n$0!0&mG5<cf%!cIuCDi7+YlI#nWoB--awc1N<*ZN#*(+&&@|GRfwl?FK}6
zqdlv~sdnBHm9HIMbbG5smmSonqg}m28S)^Qvc6YuiESo*|NC>>h~4};n_dANSaXA9
zH;s-g`yqhoq{p-biLaPV8CbA_90Cix03Er0Ng67JxVqVHetN8bIlT`&hRBKd=$?2h
z7k0%vel!_2&Q+7PLc0RYV<;(NQi7tgNn;W=##-_EmA1AQ86h<<Nd~ij;{k`*{ey!Z
zi@qZ191oa+;ntX1MK}B)eTBkvXaKX5g+Egjl2i9##;Is4U$^PYGg1{hkvxq2BjqW`
z6nAA&AxYP1jS?g(TDG1<xqX}8WKXAblbr#|39l-5QH@nK@*z_=6*mT}5|!2`qbJ9x
z(u|P3()AN0At*D-p%9IQBXcyL+Etfo^<5BOxCPRWFxFDF@K*gcq2c%Y^Ywg5<{%n~
z4Q%8;1rRD8t)DljSTWqC+RTL(=@N4w8k{3`Q&N5sq0n+2iH6(AgOnpK129nk1$iQ5
zrigxZCoaiOa|veSI86N)+3G^z$E*(yHvB~rlaRYuX4y9iybZ2$z1_AW*I<&ihw(U3
zu+#%{6*K0MpyfeSq#p86)&%XJSJ1{~1KJNwG|oXEmir(Jf{^P(kL`C6_YL48Qglsh
zh_%rBQtxt>(_taPaEv;147NEiTDAe294B)8D712oR$~!?YY#(IyB@JMD>4EpyWN9W
zp%el)4UsaZLe=20CL#ZC89bA@b1$+WSS0-+>+Hwhz9ZO2BLpmz+|e|Y57mdvWUK9(
zAN4)hn;kzpBdgZK>Q>4j)Qi#wsm^JmiLy}9dHxz13E(6n4Njj&<qK0Z(H;axY`suX
zDir7SZnUdD;B~?0$K1iv!XP8GWgR8F7qB=|;<VGBd4%|)r7qh4=QWLztYL2-{F=mD
zYW<&fQI<<(y-K)~_-&yt+p-=JgCOf^nIF}OQuY#6+Zh43Ii9dTsYfyX5MzP1_M6`|
z%P~DqQqT!vx|=bX0CCuFsg0>gMTgJn_}N{oo{DJO<z`&2e(erJ@KLp;{3G)Ih!(D^
z1{+B`oVz#X4)}d<Soh_`o-Wp&rLsG!bWC}25L8CXWB*^aW!NnH?w!HgZ?vS8(Qh^9
z5rEsl1JM;k_Or}*_94tIHNE<VHLRM!!@*X?hCnMy#blbcvJ{PSS8={5=Em@i!<#gN
zD@B;lC5tI_p~OyIAz1jHgXB`Bl9!AwHx22Rna(SnXyfwhs;wk&H=r$$v<Csq^YWan
z<=L>r_ew9!S#z*mF-od4Szn#{%KD;#4HgO{HWRSD-&v-}1yM^Z&LDX*U7E_j<K7lc
zo0x*FU7gTwg2)L(ULbM;kr#-Zq;&w1nHRL~x=q)gV@r74n-Fq>kQ0R529kGWF?)6>
zV?yvx8r$P=(H8SMxLE5vjh#V((MB9Hr>qsK+g`Bp8@yn-i{O2*kYI&H9|3Ek;P2mg
zel*R31zNRqN^o_ddyhPSM7mU}l+U>+$jouZo}VabTB}=8Fm;-!+uAfbREH#L8}J=c
z0ED|QiPyXz0F9sBxrN^od%zOM<Y#MZ_<~Vl$>I+C-JP2*w&0;i6&IX-x3-ku8yS9U
zq!+os>DPP`R~5q%8ra96%eb!aY{%iTa+%sQRt;M`QdC$2L8xxRSPI&B_PvZbViof)
z!D14|gm}o57PEl;0J0lBhXNU1l}CnZB{?h4Gbt!A?NkDmG*qngE8^xiJdBFaFiJhb
zsyq78B#dk%?WnqKgk?;i02E0?$0m$7m%Q907g%o~AS@=tp18aR!>;ETx$ehl^pz?7
z5LllO8>xV7g#D=gHiTD96f_AS4f9RXWXm-e8y@^LSNLtMqDoPKxr+-Zn7W)BNp2vJ
zBwn<1Ug>N)eE)}YeTw+T0IADk%$ILcNOT&-gU3diGZC?o<m_+8U^WI|jPNHWBRn8F
zWaj9*HZF6<tw7O=DQ<_exa5?Qk(pWQG%%THtd4_hXs-JD97Eh${gv4Dx4x>ObV(5;
zyeBI;*)ND*f9tD{Vt>@HP---f6lJ-e<gE>L>qz|%^Tw370-8lK$G1c0HwALlS#gql
z8Pe5>*wZ)XoUQs>JH0og80+p|ZSy8C5qVf>W0ph;Z882YOZ~<SoBGYQhz>zKYo>O2
z%FwQ<(xarFq&KK@&KuC&MsP=WzBeGgGH<35k;q#bSPe4(RY0o0rMY?fg7>O(*J9?P
zn6q+xp7xcD84(Q=SWth;bV9=Hz|b&GTFk0L_Jnp>c+qI*ZBSB2Qr*sHVU9GKKb>Nf
z=z&uNq6T^27TUE~S&sBn%CY8<c<+zJ`9pbp=X!Oh@gZh2s-5@#&`yYcR-~tHS~|O;
z68*76lHCRpQIt~Atn6u)&T)j2ic@-O20Vw<W^z74?fU}RXDMd<)cJ9oh95tC^X=|w
ze?Al2hx#9to&VE9+;Q^kuFRf4kpN^ola;R<GPc+?Wi7STv&ejs%JtV$*Mw(r+eGkh
zp4W2Lgy)f`$$Y0elAgv+X?IS;Uozsy(fa<6AHF;1k(JPOKLK^gCQGXYpd{J2uG6!V
z9FAeXyK>7fkYOP%n`Bv(D9Er7YeIWXRol4<1Q!|Y)zQ9-o}s;r!#EW4F5d*8*N|O_
zEHjGQC|UXWK;d$gwZL3bYb-1WkoB?RD`cmWlDR5}+oGdZ7EQO2uHh?9hX1?n4FTOX
zHkaH*{{UGzJCUIa6h;M<s+%ziirqp~-D6%Bu$tz@tZs`;)4DZ{U-X)W$aLE1aHl1@
zbFluI&0&$Ht2_r9aJ1{?Ll9=$W1z0ITg<__oO3`qG~hG*W4w*?r*(5gq5q6O{*8oh
z5wSk{zd~Gt<LRjO|Ao7*q6i$q1P=c#0|A5(<ha$SwPB}|j5IaDNGQn3EX72a4(0%}
z+=V23z&bz23%->=AV9=_W!HsLZM>}zR6OQV_?>?0W%{XdFhRmyqL%_8Vp53_$^ir!
zIzxiKT>Q*n>LCb8^D!bWSaoy;otuxe91bK4Z6sB$>!iz4!^}f-BX<oGm=(A{nH&4r
z$?lZOXOj%lmcgbrszSPCrdN)_Z5VGL3?hT^R1(cA*?d9CH>B`33U!is-4AfYxn0mn
zC;A%o3OZg*nPDJR9}TSPqf}fI2!&*LCng?lZ_7BGmOnmy`olTJIesvkgau*fem4aW
zHev{Ffs=m4-{@<u`2qGFH$xRNQS}p?`=|Z8?W5=2l;jYhI{xxR%3F-sek%H{@bmjv
z=_sB=dPQOaB2o~d1ZKB#jiQZ<qG~1v@q-+Uki5peN?KZpwo%*8e1{amd2fmYXLVMH
zG7)ish)(2t!uxq7XRi18CC>}><$tkkAAA3LrJIZYuUPumZ24C!8_MR_EBosKTyrSJ
zuLzf~*LK;Dh`oQU;s-*{KY4X|%>8R2<G;P=U&*Q<f`C7z?5nuK!t%As_M?8aqQ82x
zf4TXjv%n88`QMHso2~oh&wt-v*t^qV@6O??t(pGk=-{=&!-!w6@KL|!lDW9AxKDk}
zvi(<F=$T~~&%}9Ieqhm$P*H0CvPtsS{i@G-#nNoGNz!HOKe$eLft$g!@qfv_|C??9
zezaK(aZn5EWs30&!FSS-JT2K)hPq~%e6Vs(^1XZ}-)Vi)k_$Qi<kskF^|!P8c&-9l
zSq9QZI2V1$WlE3qyIkPco1x&8#iPkm5?Sssk||HSD7T@Nh-4iP(`S;=*O(DZfgy*{
zPHX&7aZ<!q9S_keCJj`j=?fYHr$p9}CR-jCd}%~UkU@|;YGJ&|ndhT&#i=^VBfIZ1
z(dTcXKE3l`Fm$ub$Pa@om{~Bwv54Qg<HDcKG7A=vV6H}?t+cw^*oqBg#tO($W=MK8
z!z?x5CTJ=TvcFqiLo*Ts*%wnYGQZAYAEjo9nG@6d0Y(tZ3CP9aLn#3;#k`Y?xkSwb
zV2)cTg~u4meyvvI^{^99Cx`<iB|SBW0Q%*T28M{A?p`SwN06d6N2Iv<qwEG@LSU$Q
zKLSlJ5W~}yOEcL$0$t9}(;oWPknw=sFnuU>naV{ki9i-_IYP4VpfYnptZ_O<h9$HJ
z+|V;-iB2UpVrF@&5|QuOJg9mipo#Sg<&HW<G@&OIuGX9rA70Mrk+~W@vMy7UYk3_N
zF)9#C(~T#(I((a4i4#(_JYl>S*1-1V1)BF`TJi;-$`A-T(jwQgg?b^^d2{6@Z`8+s
zvUes+a_m$Xeic2yRYz);mN$CiMYAHp3wBLiLpvyAa2pfw^yK#+Rdv<`ZewP`?o5?Z
z<I&M{#^sf5W%+V7UlcdQkpE)mtXGux%Dyu+pB~@uFKwedN&<FjnNO=!xtdseKB|qc
z@?CKRzRWE^-|gdkx|u~kAhgi2DF&ZjO#Z|+y-(W@ryrXoR#E==gV0>L;XTFsSxYh*
z5QW+JpSQK!|C2t<9~(jaP_-|8*A^mU_+1O6%jhl`<N@>+@UQQ5jQM}B)BhnO9lvLR
zbHbl{lP*7r4jUKg@Wr8>SuPx=X0zGri(cyxTQz$MzvES3LlWET+FFX!Zi9b8!inud
z{zNN*XeLY}zsysCEDuVN;67AI%y$#OZG4-~z9a!=PA9751|(aK7B4^8W^Ie)4Zs2!
z=T;S6JN&l~9R_ld%%<_z>4-E{A_YfRyWUp9vS#$N7~dc|Uv-v*Cz@`J1)katlP^;}
zI?2(Rn+6gpU6$_+1?W3NjSjPcKl)4&XsY{c5cM>OcgXHq{fCh%Hc)r*KF2u6(<OFy
zKvEg+(-Eu(4X9RkSAmv-pinx^Ge;ucz$0%Mlnfk^hrIzaiGg-+1{{P<8lnhSLqiFO
zs)ZO-J6OW&^3VJCy9@2V_D<L<`tp4Mhgth|gf>kb1rTGhW83<S^wAExWn*LxaW_pP
zncM&bXo7cv>Y#*GVKuPLCKPF=ojZg*3BXUS_oY><KUeaqVK(*Nzx&nh@%h3P)Gvei
zJOHul4clp>-m;FC(P`%PVq9{W$viu>6RktLzRg2>@3Lbe!%7mG)G5rY#F0aZy%JLg
zhJO`rrmgjHvVHoS+;4pAiwrCK8>O0Noat$DTZPq<jBRv;)<*c?>|Ql=r;wuPrtL?q
znzObOZ|&pbw(U2*#ok|e5u%=J4KUwn$NtUU+8$&IJCcoJDcA@PTt;V8sh!HBbt^$|
z<pTvPRxuj^hl}VnrE<GY<cpBQMQrYKY(75zw2sYZ|M}w|FHOpqppgj(2W2s4QbKky
zO!j&ZpA`i~)4ZubD|9rzjBVM?KrV{-GnkQ{d=@`E4(9Mn?0sD1bi8Gihq4?NNA1Sj
zbiB6eeN*+uX?IzC)H1oXG2MqG-|WM@ipMUssD8Ajv{Sp0Hz!qsvr8kgJoZ;7PJYF{
z=Jf1MBPm|N_2}D&1e_D1l}Ha8KRLSIB#<eeO=v8$_$7(5HfJVJ7^yNOQKW4x+_T?t
zz1QFrnNpoijAn6wc2-0-LElPqI%3e##1ASvO^%MW(adox_=I?dByN_dB~zmmsWl{+
z<utx&GwOaMasR71CtU$kJQhRI2a01o=!cA4C_nD2`0I3{ySms~RK}on5G;$7l+Ahe
z;;B`jsnt`4Ko$$I=U9^&>8#evIB7&;K$Rw60OynsFf+s@s^!7LPYGAhJA*7$gyhvI
zAe+3kHA%2OqCf~1O$qmE!PuWYm7*ZW%rB@^1KSp0LkzmS!MBO;Uij{W?_T)sgzpY~
zcfxm}vjg8}(D2=Bz=ZJrB^t6ptCW`*>Rx7Xo1*80Yc`TXcn`umA-oq#QoYD9jVg8U
zsM&%-X=`|hG$MN;JdMcq)d%`sk;et$tw_x$3$n871cyXRh%}{4U*ddc8)(6TrWCwY
zolYEKB*jdCc)lybPW>}n^X#1rG8Oi}o>Zt)p^#>D;!zslmK~^SYVDv0BO|&`+)LD3
z+9zR0B1dYa@}wtG@T7l;Ia51)xKO0-o^>7zWZTV3Y<}yx1k0`3tRDYTk5@gBnAViU
zllstjZ;f9`eOUFA>w1x2SoL~viD}-6<&1FG=B@tY#}5~avc!TgCYnL;iY-hmN-{)9
zXFVIuMhdspx5_-Adw~_UGAm02+nBu)XgLO+*J#n0SnRw6g7zazc8OWmc1dz9m}u%4
z73NE26mfeewH6sZ91z;j%nnqRSRK9TgA{3iH5y)q%4z~_O?IFjc^k&KoD@z{Fz@0+
zTMY7UtoaqRFAQr3CpnJ<D63dHO)@MH8n%&4moX!QL(YYq%$-6sikD1}0>Lnvd4^=3
z0E^o~)fLDt5@O%2Z(EF~&{2e-XEqu3RJROO7oD}k(~fD-pwO<q!a_|?P${kH*~a@1
z&rfH<Jf)a9fPz(#6z_F@)!BH4FffClihNqdo0h0aw`>fPZ;f?hb*JVVAD>SxK!5Q{
zzq@81ny<JA=j<m&R#>vRuXypjnh8X5>Vqe)9G$Q}uP=)taFF$n)hX`OAL}2^6~03^
zTBP=%&Vl`IKyPoLf>dW1?gl;uY0s3T@S7a78S;&|0Lk2IdX#auo~gfbKMlF;QNoVh
z*-I)7qdL8sy$s(=m++x1#45VaL|$LVOzV}TqW)6kOnAQTQ<n8omu23*m=T5&T$Wh)
z!uxGZ5<Zs+(}Jnvqi*6+adMtKoIW2F9?<|$aV*8Ehc+&$$mfABM%X+!w8`0P_f;M7
z^Y=_Ne;q(#$qrET_PQTY&`zxbZr2g(Yz%{fNdm%er0Z1g8NdW0yR~36aLg-xNH*A5
ze9SJkMMhXTc8K!HpzyL|bH{_q-e&;R=WF*>4R;2DnaD=^`0D_IhmZq_<tR0xF5kz#
zWQ~)(c3)GB`x@kW$fEc)!f&mEyTCcr%rXfYAqyBubArgRZb8_v+KC`!qXv>7o|+X5
z(hAD=sg4=FX785PDX-1H_xqpTUuds|M^o2H=trZ(i^|Sz$2jO>N21hXXP*hh{3YXZ
zF5X7v<tgWm`pS)oU`jacI8U~@nJ0PK&7$3*XlF%>b+#$eGC1Z|UbYR|*7&v=pZcFw
z-xr^8QV%V$|E+Z2u}Oda(5jGI%YDzUFS=*(dqa!g*z4C<nHS^4|0h)V_S-Pl=H!0=
z^zqX<VR$h<5CpBL&S2=3Vz~`wjABa%NXC;B=iK{}O`aXMsPpzAyJlRzd5hM^nJIPI
z9qo=(d*5Y(s`mAHpJ4s!`c2XlBwjyxQPU>aP0LNAUh$#Ae{Mul$Vu=-b$jD<7TKRI
zn6&r}4&j3iw5C$*svdO6EHsGr$ncGs9#|?hWeYwvnhtSjDO1a3NccKa&_G?PRB@0+
zAd1k6LXoU_o#BRxEr61v8P3WiZ3BWu;FJW(k_|zN{n7=hE@jHH0MNqd>^A^?ly-D-
z^R?*T3-D3J9O}E>%KE{C@>si@?n_PP-G||JLWK$zSP*peY&UT5@uf^+bDeUZ1}$+Z
z1S_<NdeSwHyk&?H0<GOqtC1K;8^*$qiW{H@4lkGxgCK_<$^l=W-~H*`nS@Hn%ZY>v
zAecfb1dT~)@mEAuh~7x6WNyaxUB<I>f=sb6q`DesnKT}R_#@6f9;4mi(;*iT_E{n2
znjif!`jAuXAGWc!%qnA-HP}E%#0dQ&wEgqPSbzLQ=*$qfrck6@JBhbI08Sd=Qywlc
z1P&>WpKL5xH%{&zx$3Sdk+gd(PN|a`fVfP1AdAsYBi4^uBWM%v=k@J-bG#yYA!yek
z*U%Rko<)a?Zz@6K0#&pa0hhDa;5o8!KoYcBxEk^!&D0Z@M+_p`CDd&eux|@`Ptp-D
zj#9vG-qzJ~Yv^$?W0bv5BDB$<vofM_*->iG>+9!9D$ZQs@llvbY#zdC_~DW>tvL0g
zYd=MA9Q*aZVsZSh*{%C)X6v59`1ZU~(yLQNPYP-l;-Rx;-`wQ3x3<X?;A7of-T04T
z52=xSAA@-xf+TNl74}x7)A{kVV2o*QI=`*t3%Mr5&MJJPSr(g4#NVe2P~BJT^N;(_
z7y4f1-TzVWAAy1u#^p7mo=uDqsaq=^)`-yoi1vz7;y0n*FoJ4M#Zv6w2R%M$Z4Y4H
z%@WyeZ=v~`Rek|Ja0p^P5OWLhN4<sju~}2TJKn$l?Yrk^|M~rg3%_@Dx*CBp4Edr-
z_i_<ivFgY)-C{lK7oqK+KgRmwFNNlxB(&t}e4wQaxlSf4274qAg`Uh1#m*aTOCOZZ
zAJcvDt&(K1G{=uGB|U{m0xLq%O688J-X?e$ou=GQ^o3ITp8<$=`C@!<v<m@jsP3)@
z+?ZbF$BK)Z`*-F5r%_-5#7>b|fOR!VZ#RlN(7OnYDawQOv;#aj!5=V6F7=MM^l#&U
zM|S&kpCY1+If`*WU1?CZ1*<jy5xGTqO=8XQeY#p-`OkPm`TX(Roo_JdgS;$eyqUUn
zz_x&(6YBMrr4q05=5LLF(IqlVxUPrUPdAj^^HAtblfBAH<%%Wfk7>SO*M_kt!QsnG
z5l{N6%!(w51(cbu(k+SoU)cbl@YkB~q&ohwZCL!jx&?nP6y8RhnSE;;LahddSn9Xp
z!dpJy*NmyI`QS&TviuZB{;LhZimXjdY=b{uOw5!_hE)Oxd1LSI#b)1^$U)}P4(nDZ
z<jf*#Tqfb_XbjNI`sGx8hK+Gu0tDHO>lOjmFV{^BmWXZp*Jol8qAzty2TVV!UsAnd
zvhXQiHH4^r_W)QOI?s(OH9;4L2Kl;>Oe*n)kj#M7qoYEKF#PKkfI_j_j@KD+@uj8i
z92k7s(m5%i|08SAH8<9OXdVBAUex>@I`O8}e{3KAS_RsKYi6q565CJlsx*D>Otsf%
zx;52uHx5JYR~LiR*|mFmxBJcc{E96bH)L9<jkl@HT5&dxAzs|3Xvuj!Nw~zP5WhKV
zzG)sJ)mxl_%_@Dp<n2lwyb8TstIfZleci0q*E@kBR>a1t8%XiAy$mwe!7B|@jj0k^
zSj3BsweTZ>5@rUl_J=Uca$O~Hk=KPG)?g~}N(psaLQoNVtFM{q%$=on$D9nm>Q-W>
zjQbw%Dn<agwT_+AI^~;boibWt)e$m;*yJJ7_NDBU*qUc)X9r1ajXTBA)y2>`ezyKS
z*8iFz<=Lb=&MZy3G3{2Jn55$7d118-qx#p4mW}$Kx+Hvf|Jy%2UoHvpbV<0r5T<(F
zhmsb9uU~z&2)sH=?$_NfrFvy8|MNfXaF&)#MOO|wY#dk4S8qa!SI<{@xps&OJ)aKX
z@AlWmFZ_S}zH$7RURMVS%FCDa?=@%Sx{&J?!@E{duYSnORg|jBn&k$vo#F`;tt*I<
z{*Nf%hA0tk7f{=0^m=$)H?eN}t{yjRl|RIoB`CC}Jr;H&t(E3@+%V6s_BfSu4Bbk4
zEbF>S^!;fmdfZ5P?BjJHJj6O=xAW}2_s4hdesj6u=YQyiAA7&H<JbI}9lz%PtQ~*%
z_~G5B$8&X{w3sxaT#ulI^2*7v=DNNz^u8C`BFwdGK6G<Oi*IA_=n#4e2tDkgOslm!
z6V}sb$LELCWS_HNTLK_b@?EWlfsb)>k$aZI-!l(KtOAE01h#)(ku#6kaa(o^*j|h|
zi&uIKIzF#2#dwRE!TEhgI0c2~2K3c<;^$8v&v|K!9c#s!u~DU3+DAY8f-kvO>IB`=
zNy=ix!+Tlk*O*{V{lWq>WuH$a`FxHH(6t=w8W%R8L+bmqn8k>+3)ASX)m?bL$u(b_
zoGqWX5)r{Fn+Y0wr@=eHfamSNUqt{V-+qP4DC&Ri!1r{FpXcZv|N9xS#R~m5mRne^
znmBehJV>1P`T1la5|2xH<Ho$TyIis6WdGf-KYjcIj@wRISik%wNLM41tUt-f1)lAP
zOhn41=Ds8tQw^J%JEV|&GYy3rXo5`MmMkUGf-L$pKt6U#=anNUNES=yD9kK52p?KU
zc|!I!jx|W~8S@*nY^t#ex=9^b1&$0#=9D4Pax%<@yQaFbbaS#6+8f@?#RBGwB3}#}
z)OGwV12E;=i}jrAp3lWk!tEn!DDx<V&P2`Xb3CpFzx@dZy4Z6(cLQd|jb%M{#Cu$$
zRdcwUgK5F0A|{U<YYaDCX3OOh-*G$e5HlIl*a1qZT)_ehhG@8zz|#&^P>`1%J2@7H
z5p{H)Tr70(vjf5sXBMK%o)n&6poOQdAV=MsG{neA4;fEO9i%Vx$h<Q5Lz5o(EKTA1
z4{G^Cj-4u&uxm1t9c8UV>f0$z7m?_bp-I%5JY4U6qy$WS51CLYyKy)^4ZLpAi^WX*
z$9-HRfDe+cAL-kW)?>2af{7xxQ^RGnnx%<S%%!+_+U6WaoFmQ?2hQVFeF5s|AbowN
zpQV~*j68mQo)7Y59|l%l(BP`Oqt~)3#dhJCAzEG<u#e(GH$Q+vlIA&JjCxRHkHV2g
zhYRZ?klSG}i1n|~9MGjvaU<#7R_mPKor3G$^mZ1`u~wu^x)-7<WoRfShvv7xef;J7
z=L^A=UzuT~gkn!x%R@&;?l@q)rYOBK)L-D8x2|O;xGKlOP11x2C4&9|NrP_sqj+M;
zG`rKI<WVW2OFmDt?9Jl{hKJUS2>!?c$P7ti+#`<1$F*_h$mOmh%I<sBvOJ`c$)I&7
zpNcZPdzbZ&YeRTvV|-~T2H2zf$e=`DqdbkUxc?}pAIZ(vqJNU*XCx7Dr};%Ywm_fd
zpS>{`Sj0!S(h!myVTM&Q({4>I{j<A~d9z8iO!w<zUPjOll_T`o8?W973LZcM2X6q#
zS%IvLy(2t`rj~)u<=K;7oxNsH&`t~DG_q&N^GVb`FxJ|l4Vtq-^FW%3IU?g5gHES&
z^qofkG01DCvzJxjr6nr4hzPvG8e%#%v=^ikDi?b5N1X-%0@{V(EmIj0NxIRPOA#cZ
zZK)Fv1_rrLU;*o_XWdUd#y;p#pgF<X7KXEzwM}10Gj;*>Pn7CX0|RKlkdU#b?D4k9
zw8c@_$m!oxc#$>oik513WiWSX5FrQqt!NHOII|I<GH<rXt3~TTny1`?3<?uCsXJcX
zp^u(lAR$p>7%XV7GL_6232t}EAj!KSJV8atEL&6V90Si7kQEs#2DO_WUW|l-q{E?g
zQ|XY$i=lDha8Z(dwiV@f&wtooF)F2#R4D}rpm>U=i&QgZYi+?=h?FL)@tRXw6xhk3
zkSXjG`HQS`DQm2cO-^g1)+>u@W__$Axe8?6Zi7miNizk#idI12pcQwq%bfX*qZxcx
z+WGgq{&__bz+Y^{cb={WY?KVD7UU`4_K<4V#uazqtV_a8W_{+^Iygit6r)xGdgdz!
zbprIv71neaI;rMtqS0rZ7@3cRs&(j1%{Q-<&!^O%5Tw7CsXA+Ol-mYL-Zw3>2j@FD
z83pqj+m~%s(GC054ep7(zSC$Icnv#ybOnN4wGxn&Guotf?5WUEq3>h|9)>UHUgX0s
zhn?<*tjafxDBxy#FEJofLR}H2%4t+U-aP@hCahug7m-2REo(lwgH<<8$I1bO877&A
zhlUY)s(2HmBO!#;5?hjd{3b-WOz1uA5vspu7{ROvPY0mK3=oz;=t-We@3|(dU(9V%
zz%vFjN}&ezVP{iaD<0=8GjRf}MtYk={We+4Sn9XQX_kDq;M1|2f;dMQZRot!rb#IY
zT4>ST5NbAN=F)Uy9vpH@FnPAbBG!sb?c*nM8T*O?V=xC5rTL_~GD{eViiII16#S2J
zyy<Dzw8pRmX}2-IEDiiE&B9NNav0!%2qLj-_b8UeDa}Lb9ELgqnENo~&TXv4<AYlG
z($Cy@v`PT{{ka5Q%z_**%_$agO{&J31GLw!%FMHXgeTl`EH%rKhxnfQ{_`{r#pYn;
zrsz~LV@1U@qg!ak*p28#;-jB9I5aWi)FmYcAt~*r+JA&1x#{(N8p~$l<Z+ldOM1n`
z*;|oLMOsacn(jl>Xffd>(rd~v|Ji6C+f)UQ+64+9Q)W%74U~ltohU8T?}oCq8_I@w
zin4wATPRzXiCca7o+#UAv55Y^7G;0=`1$j@Pk*}fhN4SG?vg%%jtkZ78pYtrk6Tm;
zC>G;ZM##~(^Q99(=&juKmsoBhW6u2sM!gMnxv8sfl1TZAAbN{e<j~QOz9!!u;#K)}
zb40aVmJX-wOTPLc)T{O8g*;#1q`Z*lT3fG);^$?}aJ36ZY}tK!e15vHTlCJ%Ugl(8
zD^Ul>$v*`l)X|`)E@rhvl(Z!0rNc-0ljQQUmsS;%0T~k6&@hWDl?_X_1Y{VaV|@cd
zB$?Yy?Ykh4*ytgku`U8e_nmiJ3vJCDy_N!|<)#ZV%}6{uoT!kgq-2gjs1zn~eKO?@
z8j*Bx;&wE;j$7jaNg17%V$@YLsKIJv)v2>}YwlicbZYO8Mmn17)JV10h)#V^3$3v`
zTG+8#p$1xGb!;nY?4AZX+M0K2VWus#P;GT;p&BbfgRBmP9qm&~DJgNUQ2S^q+$;{-
zef<Dugw;sOh=pVo;~I^t+F)Zzk%}@E3&g?fD(?8u)br}gkXEQ%f}%&+ago{bN?spY
zL<0xZ6a1*)M=%$&Ks#|b7Kzr(`>ZkbvDUlZs++Ir^NS^pqo?-1!W9%kNRXSlMxioO
zC`(TvFqB#w*j03r&jN!kC?y+uJ`^Citb?NkNJl7u7n>R133^stKEv2|Ml#97P0WoS
zwStVqJH_vm->E1oz)_avpDtFd1ZCQpm@i`_{Z$Z&tuL`cm>3t$$utDQa>tfa8|12e
zFF<$!0)W-%^qk<z3?|pr0>Gn966Rx}VI_M060Z0(Hs0oL(Pe(HEin)z=$z`Az!@Vh
zkCo-LI(w-u^Kw3*3$2B9EJno)A`5}0ahSyYSXQ)}k->+CKmf>&vFbx`)8x;{S<0)F
z><yXuGlp%bA;QH1-cBFPTH)`CsVWa}K($BYtrrHHw9E*|dqElv$u9D6`+z3Nd)tLz
z*2{*9%3apWM1U+VkmWI$&au6$|KNWeJd3>ElCpQ9TXv?{9JDrM=mUFE+6z;cRoDEu
z72ukO)6+`TomBY;i&O$&6kEs`P0QL`5wG9iDHQ>L6&B;c-4>D2G|0ek$-=`%!6osn
z+Q>oJrW5LVWd0<s3QlD>%9w`Kf;n`Sb8W$hGN@`=iA%mDwp{t6#u$hU=VJLpw^Aeu
z=)70wcb*+8%i0m6I%rhVnw=Q$A{LkkDw>WW7N#(#Mvr@MBj+`8kGbD1OLz0N@X!2O
z>+ldxmNQWya%H({fKwD&Ogsu2g*)RGf|J>%xly`cjt@7!l?g#~{+Zy^mq9${eNS5u
zY8bo}#5D|F!@##95CV%37_GVNRIgz;ZpY8>e|mSh8)x%aDA_HJ5)U~T<q3DkKSBeG
z#m(3B1Xc$PL<O@z{1u1XJkN`YQ#j?8p#^)ni|HYE2fZTJ`#8O;2PquHSivlvLLqBh
z=Su0eA^&=34)mT+9q2uU__ZnXEk0LYZus&uLQPIloz3k<9w2!m(j3A^*#V~*0*93I
z6HMtAeay?70L3ru(E`B^d6eRxJS8kx>g)h|ud6FxJFbA`5PbPQ%`l?P<Cn+Zo}oqm
zl^y6q{UI*>aeb}-mmdOugnyhd`ZrVk0_N%uDK2kHtDK<ML?mA}$(A=YuQ>I?`u`AJ
zF^si5ZX*ffGx~AVAI71UFe2Gwe%#hQO|PfZ7R`qI;%8*aDL&@@L+&JB|Ec#sGSABo
z_FVL3rv1f-ni-qN6xTBBn^%|?okmW*<{vk)G?=l9d7GBNS~N~v1)=qijAu!tW_vB)
zoWbut`=37k5x);9ZU$@lN$T+l`W%y3@>$$$SjN}}g#v6Rwn#sOreMj&T4s~#GJ|Y^
zjyS^ui>78Mv@~cDi8AyU(H$!L^GnnA?|ub612AryHV!rl0+;X9zo>Ph(9*(SIGK~}
z*S36NcT%s1$hikv+rm#ZHf$a&Crx}LPD6PgWE?H}`QAa+8+P1rR<LJ(scu`#why1)
z|N7}lC#3x<ckUGX*17^g!MfnA3*NeLsL2XHw8<UXL=N}zICQ~T7anHI(&%@6$@f;W
zc;R^=Szcs4@6ecS<DY;3hxKhJa;~RUmgz%y%GbP7+Nm$sg`Ftrx_r`zBnGMWfjddO
zA!x@}&)0TWy%DOTa1myN0&l_+b~=9Q>TksP!Dq+kO8|g~7XTQ+G)QUaa$B2$uHMk}
zptCo%E=s(iIKjb+GiY%Ef_yJ~dW#Vhdr5<#SEr|i>0i|DWI7CcrHsSP_pV_rM~}Er
zBrsbJKYZu;Hl#@2-QBW?A5cfoX()=zwB+KIJS%y<1fpibB^t$}<kq)=<C`Fl?QH94
zDg{^`AmR@Y*+S342N?PZL%+=e*nyutCfo$X`NIi_Um|C`f>OFc&<TRo83Yf|zX8EN
z{O%HbLPDJ*zBiuT1T5g2VDo@+gM$791^pIq_QQaOpPms7(MF&kpf^#_z_ta&0WMDm
z=uOxy6KvjqsI(K_+er-A&iA)&w&!gjO(nibK@0F<{axnLJNJ^g^v=EHVpkxK-z>f}
z+znwa7HsVvwv)K+?lEhbzvfx$)5p&j5>8F6A03WVG10FG6RwC^myr%xcwhiQ*T{W=
zyv1V&iD>=-zHB=0Rn&_0Px5aE$qE9`zDoqCDu$cxLlFBla&IFIk_S8aFS1gCiA9P5
zYnHT$)cv}^i8VgZ9@cV&)rg~n`GEG8FruxuHP3jwGhR(rK(WgnN*#8Jl)vwy==DZa
z_lzmL#Nc^|eC{h>1))^+fzClRS-s`OH9|ft@&dg<;sb*g)3;Pb1TPC+mcxJcBNHiV
z>RY%Q`!&}tXUW|%#zCngK;Sb8eTqB=yw0FT`w%G)38(|se)bIfA8qG7<Ce$i5`KZ`
z&>V+98C+^{4<WIzlA<G?L*H=)UV<Ikrj5)5H!`i!NtCTH_K5#5mJqG#J=TI{#wTzZ
z=&oSdF>wo?VUfRKU@y@}vdZOD&e<0(!5K6gBg=kTM2;s87$C{qfN^1k(piYhxtW{~
z9>kmD`m0e}vV<S{lEkvl{Y^xKd2L<fcLApGiHgj8WqfnQO8BL9JtQq&W_&B#J-IeD
zF6l^GvPS}@_yW-)(7M!%C;=rfx+6%csC4l%Q+5)y5dSAb7v!WL$X$AUfN_r;CSKX@
zWsqlzma9A+XRwTUzqt8vz7`qBeF_T{umQDa4p@-s*|m<S@hT7~IlDfH&A)W2Dj?PP
z%29?s*b=Oxb&R1$VHp>~Ky`&1_O!IR!7HTlwZ+MqYBH6bZ?QsK;Tzb#>JMx8JT%M=
z&~MlIeQl~$uelYwlY`9sG53<0-p}+<ZHL!W=a_QXkFV_ypQZG5Img=n=h*+}*gt8G
z!Bv*2iODTPqPvNTls0Tmcyjvk!mmsRhUG%;o1eu!*EfsaQo`1}w?3}f6#qihN(ZVI
zth#>lYp6FmF(=*g)2hbt>-Wzq<M&c}`)JcU$VPPE>m=soqKk711Hoe`9!#zZVQEOl
z%18ZbhkzV$uc-%(dd*AUs9(Sbd5jEZGs(mWlUgBq!vlQoW{yAQJHsQC%Yzfy+uVWn
z!RhHG=Xk?7K1d>rWi5<@31vkO57ATBdJXI#cE6^U6|U-GhiiJ+Al7xYEOWDnl-c(x
z?@Ciuh40Hhs{FO-l8lgntZA<94P?)};K%IsrG0fnv0vzF{thMGXe69{zK3|`atK9@
zYc7Yvr3<0ZF1-b*V3`JgMO$9mO-RzdFaO9IbbmU(Jk?)H9tsvv8PYD7dW0%l*jp#3
zy+*!w1YF*dYSC_$b&RP;BK{2-k>^vnkR7Rj@k~|SR+8kXz;rZv%&6R8Cxm)KiUbiE
zE}DK+Y^q&ne581_*tf9{c>mMUOQdw9C<Yg$OqcYo?D)VbBsjI%g!rQ*5X`KT$bq9`
zDtzzFK}1L^dVL)e<!y@Oa<J%p!`9_>%W=;$c*K}ZFO_UF1^eRu{!&1scb`7L|JC~y
zpDx_MJ(}(zM;|1+3fuf%CPfNz$;(nOW7!tt9X4qJgo>2pl7^1M$gRRKM)DSBr?$5t
zE@2HsEdlEvV+0d^?2;adL%x4%@^O$*FX&P=a5l8;O=b10f?K#xnD_3mYMV<ms}}jJ
zs>oeaY2!#F$G9cQrINfM1>$vjm+%2M{1ViK+?b)sdJv0KfBJq_>#SO9Qt{TL`v!}Z
zBjZ@s7e~D68Wv5u!)i4GB~fQ>gMc##7;KzibH7eP07O9@T0wAfew;JV9Z{a3MksR}
zoQ;Fu{(>W|VR1GrUc=&SSgae_&0*Qp>`&UX^BNXs!{TgMoDGY!VR3U<Y*Z!)+zEJC
zfs-+}TaiE|913&=y4!-)#zmMG_DE_oLo4)HNJ=ISfU*W<gJ!wcncvT0IY9<@f+%9|
zaQ7fiT`0k%l$tw3uoJ{|8<eGt(VORNY<@v&m53xgK1K9wEwQ1{410Qfe{Kw}?!;sW
zx<yLda?nlaL-4Q{kFuFe#mf33$Jw}ae(01I#UxK?ipfNL=1rC_Au84Sx<>-INcBRD
zt*OJq5_TVAFa_V4!dw>4%vd7ItlU(vHv#!%;(8#KWXI$oZ%CCwp*IN22=9!-sJ(9z
z(+-88!t7=37r+9x=xAfo3#Rt9vuTP~9Z2_#2<)pf?P4HaBB-MKN<ELYI?SQk|K^t;
zA3vR|#FijMjv;qyS=43tk8jNh!9jX^fCcvdO^f$=+>N<8>LY=?;L4P&Yz8HE`u-+&
zC=mG#M(At)XK15xUwP@R|NQQ8_jJv1;?WVWEJ&dNCwHl>b0x=`6Owo1KHxQwM5Yyz
zrOsPv&BA-<15uy`>7@Og&7{60ypZog1c~LvQy@hbg$#;R?>TuKd3w1bXeW`hfyq`7
zttA<5&z+Zik4LruQn%^VQJ=ZZrp_TlC3vdPv2eNwn?WgP13}y37k9d=KcC7y@ZTwh
zz#;4`j8sIy`aGAptw4hGyNpYS2H)FJncSJ$GJ3GmG^<(bFlJ~|iCAD@77JsTIcqdR
zo9G%$Rg^lU7tF*0C}|L*D_-2qx&edgCSY~zd5>d3`%pu-q-yyAWj_6S^_AnFKR<qc
z|M7x^TizLeJ=Jeht4?uwB_e-_3uCn05{7<0t2s;N`ZcNldM8prRx&2Z1Qy`To?j58
z55P|xu>`8K!pDj(p*bWG!~R|xQ&D(bq#2QL05vSw;uo*&A!DkTg??HO00Y2>-PTKC
znZA}K5OOcK^S1ivBY~Q=aK+wn!T;2Ea&ss0l9s68GT|@K+5(+pUnKj8^oeU<m-_sW
z-cSz`u}6EQxDpo{&1ZtC#ka8p1nN+n)zu#IUS;BkMnF)yIkHc7hmJkbE;-oSOLfZy
zwAZC##uP>_N(y|`kcI{A@?y%Vq|m{#Hshx~go-N_S#b_b#|E~WLD&L4bC9~v=bqLq
z?LLs#jUj2uHm7!onQKAqaLTmd7$Quu*UIl09>R$7G=%!s4nZYS7DTr@^IHukq8%4z
zF-qP&o>P&+uihE?RzeM5Z>93O&8D~Q6{b!T=Z{n|rxGQ)Hc)%l!dvApC+Yqqb#DZ>
zr9@GT-6fzs=<J7~T>1E0^Wa5;ouixBY=wChz;T%|l3IS-0OXgCpDyjAEVkZA4I?h+
zMuJam0KW|_9xM!>TK@Id4HTc6AwFLDNN_0l<+1YFs{30lX!Y-DKupVDZGdMy{zenN
zcyyV*y$x;odtnfk{`UYOjDEWXW@%oBs+w;q$b@=NgwfbrAZXTf(rpcxnqRpyy&&%X
z{iQXJxFF#0Z_`-Zmdi#D*B8`}k?M#1!v-N$_cDF+a&Bw;1nZZFEde=V6vj6kGTT!(
z>Y@jQw5p&vAjCjf?d+9$?tCSZhlN5_<x_~CXH+=u^m&tppgu_qPo7Fy%=c=7)6;H{
zdZ-;1Jha1(ZO7j1g3LJRX+4#jD+?L`-g4(aKKcMf0Ashr(^3E3dkuQd+d(%|TCw3k
z3y=44NbCz*L2~xmNse9*N~Mz}(aA6*Jl{=8I#<pcDYEp|KwksW91_Eps@_<Wu%;Sq
z#blYPg)w1*Yhv{F`+ZrGtP=3zCfPZitPk@%+G$8^)a~V7wnYv>dIwIOZ)3(m<eHhi
zElgpo9@&ID!2n>GnP?4j_9zRwGYco8gSX~s-lJ!0=6$cyJTb`}8HHJUN#U_CcS(W{
zYH2||K#CJ3BsC8@Ccgq2PlXFA*fHuHz|Q$WdQCZ#u-!?AK@P}i0Rni^OIg46huLCA
zRc4XTx1UA#qp$+MBcjg<Z9z{IeSUjl>t&2~^5j+`Mbkte@AXRa*X|`{cS?EqVc#dB
zrx2MySrfFl235Ci^0sZ>cFa5La@)Gx_IYTVQqUKfy?1&dTxd<%^kZh6t@jXZGzkPR
zzkB~_x4&5YmU58vaFB|px3$`))3c-3Gu}VPx>n??n;!SVAkF;MpGmjL#~-K$)hoNy
z_1*_COD86Z*3(&-g`|xsjT75`zUOP_Uvi9@)_z!mj$uaW_4d0E`ku{oDPz92x%)PE
zKjuEv=T7Q#+jbsW=w=H8E5l-a8BWicX8y3U&qm^>kAL{(<w%se*hmy3I_^DZemxlL
z%%52A1f*<oz(44kZk>$ge=punjbIc8{)ltL^Cl5UmLEbxFRbi{J$@lz+4pf&k9DO;
z3SFXRB~3z2VzXuWb+16=DE_6ul%?X17+Kdy;rYOOBZc*lYL(TgwmT8hBA^87wF#xg
zy<Cd(D7RDBE>>t&iW4EPIgoo1|KOo-2Fc_hFN7iU<G)BE_k)j%i8qc8LVuTe)NjnA
z(6dmb<?^qYN5zs@_;ePr{J(oXXOXmb()~apT~5dzr@cM?z3{)!V&%)Svqp^}jlZ}}
zAR<+A?O`!b&q1Eh!;sommW3vUJepQho=tl`w`G;npk>XBK-B!GBcN4r6rR{d9z-KJ
z{{2`|;a+Ml`^xbXsw=7(S3Y}X^dU+!{jA{0;M>L?@A%6;CHf`<4W}szu&D7($QjaC
z%#YpmStwr1^70blyO*WHxBWaW)J+Ur;F#a^eipY)Br``b!%i=_**|L(QwQ20oBkRN
zjicB>A?JRzn@D3^h5tjp6VnE>Nk489Fhx01K$5#QNHOMX5ax&&PAclt;z$Y-0&UF)
zNDzI`ecK#^J_Wb~(PBI?K})doc*l=h)XjtLLfd#7Mt`jCPz^>qS#{DjQf5Pm&+;}F
z>uH8J3HZGxeOS&?!!FuR9Z9S}V}N0sw3uw+6qN9bILeG)7`hj+jGI%}+vAr~y*hw<
zACq+0!GUwg7bnQy7{f5)tH;px2|UlO#_OIwUPyoEq<x~h2vJ2EenEP%qLYJB3F;);
zFmJQkfC+GT-a96txf~Q}E+w8M<dlk1slFv&*>$6Av`Ol$J_Mv2xr3DB6f)ao$S*1|
zf4+Qni^V*ktQ4EZAV^%H`ve&h4QcqV5wYzBwbc=!O-BfNu1I56GY&QZq4Py_N)FU~
z7VAW_WyExFX%qyu!v-qhzDm4Z;u4NMl3T`vCU%6EY*g)Q$dKZ-iQ4<MK~C`!$F_qD
zOXmEbmXod;;=<q2HPQVsFukC18X7;1DPV5d?&6!7#+(K!=Qa_7?5NFe<5Ev6;%>_~
zzh29>LLyiP!b=5`YwJLVaxC$5N_G-6D-eICX8SVh@G|jonwpxnN!9F4%p0^k>6cs1
z(j;tBZDI1kiuYlJyAe-X>5ct)EMXJ3Er2%GyiG;_U}%-oNT)i|7OvVn5i2<_P^~{{
zjWy7Q>$FLvx1vuo5KS|-g)8;>n5$be?VH)VO_ise6YvA7<YkWYrgIyl*&yz3R?g7*
z*)^wM9nY>(z4_X?lS=&Rxr0MpQBw*coS0`hJ1UfVek{n#<xwG@9}CPZ%z0$r7VfAG
z!#d|HkgQ2c0QsS1RDd!I0=kMF@)S3cfQ^yUEmnP7wlMvzw9C#NT4%EiBXZ1LZhK4_
zCz)hB-4Zch*GUj$trNP|>6R(eBGNsSowKyCkjt;GeHXc`NG!BSdU)ta`K2K4@TgmY
zCDgSeiR+p7Qa_oDrynJx_;M)DsI+%&K$?^FEu30Osrg>uj|Ke&3&OnkQ7nj;!x7s$
zECn7GC6DxtojhO!YVU^|n{F%~70NFG>R>npz<?1K;m=Y>f5aB^?76q_j8R;~^f!x%
ze0IKKD|ih$zl{Fx9xrv6b50ujr9g$_G`oClBi8t0EXkZ@^~QC{a<JB6JVx?)-Yy%d
znDG^Cu@(g^4R@Edps(%BlaFlf$dL~j78a*FcxZq#$R=r5v6&Hh0~wqb5(W8^#n^RJ
zdiT%Vi+}%zckh0Cu@~oJd$D9x9}y|5^ITJ^x1VK}Xko4k*y^sY7_8S|%m)}-5ah5i
zDDNM|u4GaKN4vs@DQc0c`2ItxCXcy6G}Y58k)*#?l9=vO7r(Vvh{{RST+HKI5KV?h
z9msgh<`C3FY@EhDoY(+~+L$;MdSTeE9B_4q%$CcJm6iYzkV$BH6nqm(yHTZnPp7uS
z2Phag&qi0RnGqHBR2`j_YH0@75q2xEh&c_)AajC5RV3E~^|?%lHg|??n4dDm$OjCC
z$E-D8Mg`+OELu3D%+X$C^UAhCv`-&D{^oL(mox>?<}_Qb;revtnftY=cMaLtt9ri+
z*RsHDI=hI%ux)i;vmKqY#AX1U8^w#eEzWlAST?#(QJ+!?=Eqo^1qEZF5TD}Jdc_+c
zolZ5U=k_4Z7mCd+Q?HrwubDw}B))w5_}fXemX6{D13o>TQ?5m|zMxpA7i#r6rFui9
zZb>F$#y%vN<$CT8G*aGiUcpQh54QMiLMxTT&aMzpkCG|Zax*!_xzMhYWwE#))3C-}
zA<Z%%S0IKtflG+BxmcndbPqg$-UdcL|0^&$hb<QJqqtAWVCHz<rXCAq*C9$5k;f5g
zh6QySJ--?Lvt{WPsrwqlupMv(Wc>iLz6;VsIs?nk0p3JHy>Fl#WR64^xojsP#q#$d
z1^7kThFy~Qt2dMHRobn=c@TCnl-EFh9bTxsp94#jPIdUctMjkGr_EeNmQ1t?`YABE
z*#3^*QNIw(kjv@$t%%x^6M9`4x%0_*)vC$T45b!RKusM({PiJ3>6;>i6H=t`)YA4z
zHKmT(jvT~|ug&X4dsAs%Pe;lam93~(3ob?T<e{z~7Z}|c^1kQ2#6bQw$dZck=gg1L
zX8tw%tkBs@8Is#R4-ItIz=tSaeVAQj^p1(+?9Ke44Dk$jEMXT`6-v@ROb1;|upb{H
z24$PH;fGp9JqCmsOm?cF1J-_Peszb(1evUq3Fol5X3LSm#|d18T$v1=M>IhBL$<x&
zR$x{0P+w<oHswJ*(3Nq_r1sdPp98&xi596VK*_?WUI6nfG(3y|Cb?Y2ciloiZK0p6
z8qo+(QOa*{%8<z$X3=ABc<~T=2cI;@S=M^i^ope@e=5p344J%P)-n4f64Rb7Hq9T0
zCO%jv%N+X+62>hOidQr<ZQ*ytyvfpRQ=GUOL@mhsFt8|?+<gCSY(D_codD12Il-ok
zW%m3qA7PK@QCuCsOmn4#Iah`g1Siy-f$(KMpN-d7tQiklb<*r*+1c#d0`3If{)OfC
ze*e?ikvKd`01{7J4bE5^X!^(iB?9Sjja{G5EzYR*w-P!f%>Ec_X`k1Z#Z|93=!sc;
z#6XiI#gs?2S0iaFef~0GrVM^$aV^a~W)8$Y%wk&l`f}!PXRpIAODlnJ28*i(x*247
zQM;`znaNnv+kf;2?TfJ;?ek<nrphHA{fTeOKO3+g>ZP~W?zG|CzOt}bH*IA9@M-sS
zp=|JzD1}v)cVn*RbqwW+aVO((w~P_qwxBJii#NWdc+*NY8DA;6p8J;)kPQeS(*BB;
z(vK-fsK#E$TL`A%F+KSfO7@Uv=z}1)k<5-B-=1r>7^j#o17+>E<YwTewR@?Io9COt
z&cNI@A~>$ZD-5XXZN{lbibyux>8uZH??(iRVs`eLO+FO0G7_SgK@pRc4<+bs_a%%-
zS=YzLa_)rOvJ=euz<#4ztt4>54tVE>yAX~i;d?vQ^_Sz_^X6c8?SS|5mou?BSF<|&
zZ$EzCJzbn5ccwpU-u#vVfA6jyEL!yi;6*cp6pHCEb_xD3wTe&@MZ?0%1EeWt6^m*o
zY<ERF0e0iEj^d^)h2Ha%TZown6b!<_p3%f8XoFNQmSu(J0ap;IHK>|!$JXy*AgSM5
z7F&!V4Nbv<Q=RyhzDaKYadV@0^dy`K*o0lsQj~&1$_U}rCAp0DU6lS|hU_B&u`Yi{
zvQU`f&b%7Ijf;}S%B^VzkHSpGS5Dx!lqAzIqZSf73_;hIG$2p+!<9y;jg^Vy8zO}g
zcxVj*BI5qRM_Ef<;l6O{G5y3YiAqK!Q|oaY4Y@x5>D<d<7Gt7<s3W3+^;TqP7B=IA
zW*_JOHz~xOeStigoqZO4`AZYG?B+UiTYsc4Gvh0*`1j>a%r~2p>T*jgxU_o9ihm6C
zr0?a}cVh(QC7WJBl6jmL%>qu?L~HlbH-F~HJUL>|)eDkj!}aN?xd20L)c>Y>#6uhL
zYE`h7zGq$Z>A$NYcFKQJRsXa;eM3cWTYY^!I%V|!%Bucpefp+~w1uzA6z_Nb!@HkW
zn+5xG{loUFc-X{4C=YeW3*FL?H}?S!Qh)(s7R1?D3JFm9zagfRuW`EGrVwN+$GkIA
zUXw3AdKmc`r3e%2M(D--kCghQ)bq&Pw=ozrDV3z>vD<Vqa#AWu&mvD!!LVKnJ540I
zU^gM2G?4x>IRu>Q*2grE(6HxZSg@sXQ#X><8T}m=fVq~191A0$Z4>C5Bh>@sv>aW>
z3)3cvWL4$jzC<Y@O6TvQ4ArzpK$Y`JkLRt3vhqH_k`+mQhZN2E?J-4B!PYn!ci(0r
z6#b7|LbiReb9@};e(3ZZPmEIx39k#|n$H|&P0%T6v%eSH;GgZs8an>>$0&dNaooQ_
z#1QfqAD1(Uy0FAEiMnkPw}zfVKZ)_iCpm)GBei_VwyL|S1WZ@`0Vv5&XV%_8;wMZD
zNVnY9-}Z1Gd%xk|Kg268&Nr}~c04Cwoq<(wGZ1b7$$O?deqdV<80s`Hy+K}I<kokZ
zZT8b_bA@AY7xun`zBtxXlKEFjCVL9)VVE<)vYVeBpGbq@=e2}fv4=rBs)z9(ZzYVK
zhM^#5ZRs>aiOjd?+4${OTV<ES_tU@W@Qvxp-Nx^9h@MY|=yYsPht~G1f0t6A361zY
zP_o08|2qt3<$Tp(7Tx?0DOD@~$4f1(aNt1xAR@vKef?)|xQ~R&k_q$HUmEEcN4P80
ze}NQr9zUdzp4bkTHG1P?A^51z@viW>HhKAok9qkaFEd4ujmnrn^KI52?6#QBA_>2R
zBT)Jec`f(H?bnpMS`))Btn0r$r=P@ppsBfAI}YX~Zta4h)tlR3?l*QpX7<kzcgb?L
zmN5v*h-ww-y%XyAbU5E-XE_(GviQrD!}_vq^A~T8o~zu)=XXE()ip1cDiBS)P{B2|
zn!mn)QQOr8EQk8q1uTZHbsjSSP{X49NFbGiAFv3ka8M8515=+R-<;%oC2hWd??vkM
z&6M7?gHT#Er~gAXSj@+jisNhXZJ}!Z9MvYYk#MvO%hw#g%h~zBR<?ANvN^UjQ!Uuo
z5S3R>OBI5uNqI82vcB6|0`{#EZK_C>E=<wCqoak64)w0RbhLeAM;|g`D9Ap2LqBcW
zl$Tyc>!r=RKb+eOT6--qk<{*t35+p9lc7gvUF(Db$(X$Op-CI#dqW-^64+9KM3SoQ
zeX7{fqwY`yXVErA$nK^tU!@{m72t2dOZy%DCmYU6p`5vhj2|CcQr}FMyba+$kj(k;
z_r$K!Xt+F9dMJJhNG@Ck(0tBfn^&`zXQuNs2L&53r1u{mf07&5Gf1T#{^ud}!3SAl
z?|sG6IEGBCFH;xssH&*I)Gma!oUCs$ZU9R_w7(ea5#a==*7dVOZz2m)yJ}xD_pA0L
zk*+VO!e@0j2Ii)|QzwOPhW5j|$Irif-0v^U-6k2#$}$|a@szT0it>E2oSv?sXA9?t
z%ti0-FNSr(>Fz#fcyXXWV%`tjsLS;?d3XT8PO5Al26pa!NPN-Z3zcmko}OW2z&9<5
zagkBURDCF&YAD1}2!%TyD%`0W@{>U2I|_HR5=W8GAe<_h5j)CuR6^N~O5C9gl=u0Y
zz6pql<HegyVuMq@KvcEW*-^3Tv?^59GgW%(o;}@VGO3E>$VUMdpaqK!42h`GtHvWh
z9o-dF-2vLF)l(%f)mz=APOr*m3@RqkAt`>b1~4P&jCpgQ+sGH|En;@H0ACi)Bawp$
z$B_Ad3fkm)m^gBwhcEq7O;QJZ8-iPCm1m%bDBj3zK5yfswmVto%L0xLF7ZA#MHQQB
zJ%Ga25m#WY98H8hWrSGgDc5X4XUY;9cY_oUHl#vapmu#t$FGsE4PatELGS0(Y)@tX
zA_6;MO36||>nO%i%!^SKm1&)^Z~YAio|2{=wB!W*?NadZ(jHjdP01M@RSHG|apf^2
z`xG_g3M6*;Yu8MfWZ(-0R4t%1tTBr!i3by_fpZ`W^2!#Xp|Z%9ynqYLosI)t_Kq6k
zg0x1T1_5nE>Ep$?M7;OfYB*1^PM8DI$P6O$wt-V@60oe&Dn}4GjFij@J(4cpGHcX{
zO~+u!O<gaPkIx+#jg<wRDGfqtHWlH6miSK3+kMV#WFSFKX5TT#LQld_Phz4{6e=tz
zK7=MdD?w#s8Q9`TA)vC3Xu+U3R)3<hs0@(?GZGjcQJ_TWUI1YVKfpL~fQ#B^B=V-b
z7V73NM3ye?a2FW~T>(un5xgD3yJm`i*?|xoq=6Jr0XJCm&hXBEdVGI@d@UIrsx0!a
zW$OA2m$`|hWQ1-R1`CB~clpHW&?kVxG24Xgg3kq9TYPIeD_%pfyJE|ao)r{>MQoso
zwb%(ltTf@%L?!!=LCafcmNZ*B$i?hFwtGc0wQr5w8Nfo)9#VW>W+2$gOhk1Nd_{Mg
zDKj`VQ4}Lc4>jJAz>2%~8KW-@+dR|c8YpN70K}=zU|-d`o3rZXLlpW1u&UF?!~z3e
z$wLi8YYSwR{$_S<VYjNJx(nJ!oL)eSK+dYY7gI_$qY3k@$70R`NfS^S5QPNwkebOE
zI%N9BumKE%)Lc&Mo_z%xm(d(FJ83y>5}>;6Yr?{)^_=eUp0~q=?THDK<YX=EDbTM4
zQd^^}gCVm@og6^GlK;2pKdVK@rADjF<w@5_ETPJj?|;u}B*o=oyMNvsyl_9zwQ)vs
zuI;jp%BVcq8#)K2^NQ4@=H;&UbMAJzTi^VK%B<yw)tNnoC6*E}^~gBc$-8SOaFfHi
z{BPC#f{Cm8{~zCddiGE69>4tQ0wuFqm+sog+VZjp=F911*m5zO%D2v@DoeVMXQ}gY
zdNaHKjhX}X{okrVspo&I_V|CV0sB`kwDDiD&~E1aAAWmIL909SOWx>v!d2o<AQ^Ws
zQJ^i9yL#ht74;=%a*|xPd-KELQzvWXaBP}UgMgg@86v?z0sa=3oZKRE(xZ~hC66P0
zCno1ZXh4s<ykfO@4g*?-%8RXzO*oLDlq@2d<+K=i5GDilygV4EMk5PUietRSZwC34
zsg4UMzeVp@co+qncmp8O!9!xv9jH8{UR@Uv$p;;$fvXs~oYHwbM5O4AN6b`M>$;CA
z`Y4pD^S!p8FAt&4#C@Kp$9)CuO6Na8Me6fD^0PM(S=&z#*`C}5Y*(EV*V>x=kSP0^
zQEX~Eo^$)B-Hs;fv2PW4LscXYq6iRl&aQDj8I^&FMv*+E@tdlcketQ2{z_AnTZbxb
z%%s}rLDZEh8^DwABq;zb2zRnw?^B?2g*+K{_kHY5gk2yO3)4zdiT6$uSR%3x8ZvM8
zy^}d}<9=w0^d<bu?uVh<1yOyQ7sOD%_Z88n&VnZ6#dI!j9;2&EfucxJjn3ZD%TFQ_
z#0uI2c!_Xha&lUSlJ<x~M)DR-DY_Mn`gCHpOB%p~iM(O7i^3!CeJdbfp(Zsp?1Vo9
zJO<_jqWI!_rEo1Mk69G3a;boF-O;To73@jjlom}ejV#O2EZ&8#8A9RvnZO^j>?S#4
z+7hI66>23Ho8$6>#)Qs(3Uo{Y2|xm!Xl4e7ZQmJQP$QA;Qr7$qrKkdz(s%igC$LXt
zjhR;6>`770Wd%P56R}%B%ju~w#<c6<y6}gg6PZXi?*N>NuIV&ruFYLYkLM2&3D`9M
zoo-<Nes{wEx9D%T=(qx}3UIgCfB$Ec{tS%><}XHs`j=bo>2km3JWl3VSnV?`C)=L_
zMU&#l2Hc0G5XlpJmsdSb>#MUgf%B~%3^_&k6ZYTkFYKL3lN>n}$G?h#GwMj~(vj$k
z55<XyK5%PlJky4nG2t@J^6AOn|EZR)1;$`@!tP8}rc%q(ll1h~Rn6w}^M~DK{Euq(
zI_!Eiqr>`?Qpe+9s2v*x-4brLOY~e7f=v;4mLlwlmVO6$-sOmV6cYf9EH#W|*_^U%
zpv<j`r&;6H&!`su5Y>W2W{5N2rH9g;{)w^AGkJ-!=N<s70Dt&a|A}XsI4LT|l)12z
z!4_zu{WB;+9Ko~mR;EL88d97>ry{FF3ow&_cb<;S^W_jU&hw)|`|7vGbIBGohnQ%S
zDq+{CSzBVPPS?i-(Us(;TPlt#OwAgGHlx7;#!_X-qM~zCYW@2~3Bg{edp5S;yuX;H
zA=<b$_6vPMG&UfFka{jOVewtuib%`HCS{PTOU0v;%cPEr<1N{CH8>T)JBhd!vS{B@
z36a3KG89Utvq4ql05eqyc_r7i_&srlJ45ZA67iBli(zDk?wS>w5Somv$Fk;7jCW`d
zX7ho_n>ly>RGQDEcoDUM(|ONffQ6GG-trLbPu;~E68e>0$eAag$krNka6(VFDP`Sw
z8RLg)c@3RrtD56(<$226<iV;;cPGV^t=W05`;I&*P)nI|VgSzK033ibU??#O3?4W*
z!C`hmK~PL-RGBAOoq?4E+W?IqKNZ>$6~yts`t<w*)^!(lyRjZMuXEnsI*{+7W9Jhm
zyVf+%;mK7k%@Sjx`b5{NpaXVGx=iLVMWz;XU+$m5mqM-rQ>~LicF@@7co(!|;DV24
zrAS$<`xd9BaBon7w;KElYpzpkXF39>T4`-{eEAyC=XlifREs1*33t{u<8G4q`!}>b
zOhPQ+ShaQXBGnjG{X*Ji>I<4P(;ZS3ami9(6nIvnCd)F?6OQ6cSPp|7fayCnj!7`G
z*mP3W6t2?bt8~fi08g`2D~RVie32UpCHptq*qgoUB3`ay+T7aX_UHND6#k}cWUiT5
zP=8M=wElhj?fc6WaQQZy$GvE7kjE9j0!9w|e?9I0`LO^0qOkZwhsb6YpLWZc?(ms1
z?`ur)ibW*l2et%J`vCeZuIk>;wAW9Cx1urYx`=Ff2AGrXd82VG+*L>RHFJ?xx&+7a
z;K>V+v}S|EcUQW!$@F@fPAAeI%uFe^YdgU}D3MTvGlYA)^9)1Gk0w!W)q)Go3Ehg6
zWk9x$IJ}u29*eP&gtqEtsS~D6>Y!o>z_HD#?-PrGsFk|DrO5CUi=xe_bn-1aT2iS6
z(rDVTny6UqVuQ)4C6JjmM1Tg}`Q)h;C=5-zLEpQMh^o+0;il{Cr9-FsOQC`7ON~Dq
z4GFbi+^8z?sJiUbWn+dg!;P^cI&)K-Ry3{o$pL010JCJMHV{s5*2ZV{*2I{q)*E#|
z$6dHt4nVtOt&W|{_<y#n&$gb89&mPAVu7=ZH0apv*KB+r6;3{u&jZk0s`EVBXfqX0
zI12^nB}2lxc^H~kuL6Ozr(Pg!NB!f_?oJ(6e}xY&Q2E3XUN*5JjBOz~^bxmQu&s`>
zyGZ3?T4CW&vN%s^>MtL)m&e?xX43JCtK$LpneF&uPNMzgV$zFop0tsVu=7UpFiB+(
zCv0m#hM_0|3G-lbJP$!RnGcNaVV;y3LR~ng$vKI!WSlM5B9RDOiYW``7x83{j{1aE
z<ck!Qyd>+?H2LKwz{gxjIkd*j)QbwT;|(L}1Kl`Qq+ZU}0PARTg7G@ES1NRk2imvT
z8IQem+QN;t3fv}Wc1PH$>nbi#xb0c8D=XsVY^gN~!<yJE#>cdkPnvjfDy^tir&<qF
zgZ-Eagl4q$Y|tu0Zt8Wwme)EoO^BH6z?MZpi-M9{Z#rlneM&WYij|e+$bRNMjZsqj
zSdCnu8?&NwAb>y7CIR3*v{p)djRzVsh?!#_J&+fexo{U`-j0}tni2u75(ZqTZ{S`C
z>SgP~fP<*>Egdclt}eXw(hKCRnyVMef^X;wRC<NCkfxTBPND{UowvJIDAl4pWB|RW
zh?=5LZ4s<e#^S_bJ&s!WP{q{r+IfAg^0oCRrc<7ai7$Dg&g<F?Ic^9rmT4S`FeW?P
zrUca&fODXQG>_=1k4g>hG0EvVCt7BeSj;pou-8psZWMk=u%^dM_2H-|@rferY0{a$
zHnv!rBXX`X#G>?g8I$lv&^BPE+1X_97)nSVYk{iF8&Gj6WC7r|k^l<;?q^X3O%dJI
z_>;44?daJ?L&ss}=b_O%+AznmdO+<`J^=67_ovd3hYND9GomEI<N+5O7^*I`MJ%l9
zDVJ=tofOq;WNhGov`D~2%R+a@fmNIQ#4k_#fwiWW;mBkpX_mPJIDs|&4Nm<P%|^$7
zH3KF{`xD+KtwWAmj^d!zByM~NO*~dkctesclgi1rs#r8_UU}_WGg?otonF{=C3lTx
z$Kv+?JIFtD2boa#{}%F(*+PC^7R{~{e&h~PZ|)!>wm$rD84ITbdG>(^xQ^XZ&fQMy
z$@MB3{)il-)|)0GzvYD%r(TbVtIJ7aTN@*gJ6X8@BEvthm$UeF8)GesEG&%3MXA5Y
zk*DNQF3oKcwBWos^529vp{G>hk85uUQ2uICV!DG;Jo9`&!kU}Z+*!JrR)nxE#^RMK
zuZD$tDGw74+qtK(!;%$@5uXy5g0FQ&Dy*x?usrt4O?@xMJkJY#>w<>ejFmz{Bz5I#
zKTv6v^t&=Ea0{<lW6RY{@NTw?a*9b2M}^1Ijj7L|NvHwR8Ww?cN&J}wUQ#rC+5PVO
zD~wsbG3yn1J)V|<d6+}ul1N$v&Jyq0DCSVFZ4@tKblKx``#^IcO*BxPDzAU9@=MC|
zh3N3-kFELNfB*i6&zH?_NB`t0KBDzNf&l?eHXtybhV4VRa(1QRpAWrqG591g6y{gV
zJ0f>h50W~-YB_7(cI);FS(^97>AJ1ev}S@(N%DG@2&zi)V2Dz+0I`oYu1aRI$X%9n
z=9P#Gj=aco6yu27IQx!N>B_RRnPn#)##dlIYMOwNGf}h5I_IpK>=XNsKemqaT?{p?
zQ$>V`j;3vs77Y<5$R}>h83*R6=9~8NZ<_qg$KCEam~k!Pa@gY8xW)5<D>iZgb(%%2
z(IwgdW=1eq4dGI34B<Pr(=h(5J&aMDt^&*1xJ4~mYznqIm($>-{)iq^L}I)k!HBS<
z`PCU0?%R;bcQ%Ca%^0SBHi+Lxi}#ifYut2#b>#G2dCxlYko79zLz3=GW~)v`Tp7i<
zu%>st(_R>1AqDd)AJUoxaf`(x*wKsVb=@X}R9xiu(#xrP(6<p6mI)~jg}VA+6GNM8
zwB!rO-M5)n^d_sQZmBLg6Ay}yRJaaVhvOkd&#>bRv9!5U#%RHCO^<&G78Q#XZ^%PG
zrsW9CQbb~;fS6E=Ie{BVjN+wWVm)1pow*P5Aa6bS>eH)f`)42(L>&-yf~W(cP7rm$
zI#0iW%9`rn9Z4YS459{1XCO6j3b4S`0aG9JH86cf<snpOH$z7+n0mp~8&JJL6)>u>
zZYhH*4~mP_2~-_Wb%LsZYE+G23LBt0!PE(+PB3+XsRO1Cm{u>CI$#>TVCsPB<uv}h
zzlsg<{LO#)+H3Kj8cN@0x-?zMaZhnSlTN?*j0fCjw&RN#S?b@VnDc=(?^4%Bt>2cv
zWr1dV?=Q{uY+dfI-&v3A^<w<9v}jJ)&AxlP4v+im@Hk(Ghm4f|U0qe356ph|ynngW
zA<4gzOrqw$G`CFGm8eCs$z$J)q&lg7Z*IxdRZ4FNM$H~i_rG<PMN%Rnn@(b_OFp-0
zR1&%*%|+gPCU+|p-AclxLa8Q_>#!QYzbt*0$5OP+q%0{Z&M)B{kP<|cb?7P-@Dml_
z+(?tbcsi1)S6W#j?h=a3CG(>WT~p9X^@^UmNfH2Ad$VhvA`q+_FD35^EpxdLQ&-{)
z-m0Ex?1df79aA=iJt0dowZQa@*aOoUjk~{4HCcL{b~k3(C`bs^A^+(f_g|p61fUno
z<&qB2S!^7@+Z|D+)EVg$(&>^d)k&4VxbEVgSl4Z;s-@C=jehTN8;VPOFV;lUksZ_T
za7bhcglTN!1Uy^Kng*bjZ4|?<x+HmG<31oGR1H>?HhAlGaDL1Efnz&OnFhRxgvQnZ
ziXs*hCF%H>7u~0YU<{J@YpL<5A>+8)!kU9qVeT`j>b}hs*@k3e(K<zc%~+X9P@=XG
zL4vzfsMwq-+)P`^D$ovSWx5~@lIGVW&m;V*qvW08IA0I;lajtNJ1*%8H&U~8@D_HY
zbM%N!_>qJl1(piI(FrI22$v<e1nVOjxsgykV+mLC4rx8nqx6X%VvbF?APc1E5IZEb
z*bUHP5cGTqN~i#ErS~&rNhfUa91w9N4bO6zKKSr!g(4)Gn<X-;$>dzc*uXR-n@ufB
zC|V*3mCi<^BEmNE3biE&Jw9p1JW76TIXo@7ZjrMADf>q$zC<NoA{5xRJ{*M0itJ>m
zkRT}+p3s;Ys4om_3b>PYKAW}sR?5HwIUShE6&Js8rgPFhXU^_L2`lVV7H_)BxBAka
z<be99{dMpnRgcPFdaNDDASeLxNbqx+gS_D91V3?gfuHsT8cpZ~1D_ZCoWT!>0ivq)
zjc;1@0w5y~{7@lI@W`eYNx@Ia7jFRcf*{3q2LvrOA?OT8K}$hUjd2FST$}(X__;!N
zQs651&Gdwy$nWF@KPUKk!Ot1|?6eHDPHJ-94rc~J-}Pd>VZxLv^mSnI8jqz0@FZc1
zUbQKu!Yoq~Z4Fz^vKMFNd_A)TjWwtqmNcztaad9@KIgL5o7S~jFBi6USlOZnxl#b~
zxQjkt-IA8K*50gd9CEvsI1Xk*M?r?Q%_&=!K>fKk2E4EtMio$I0f+T&87z2#6)&^o
zWk)GYKqxm~d93qj2V*&R()SnvH_(tyMti&b{q}jg9zZ_qw}h4$^_<%&zt%B#xl9kP
z10itb$GJ@J#o3#VeJ9_%Gl$%Z1lwA@M+CauU#CuOJn7VSB|<$p@I6>U994JsN*pyE
zr>cuG93Rf;v1fF>I}!8y6B&O+%qz)V|ACjlwclR=Dr9r`4h6!TAW*~BwD-AKDlubc
z>;*l~!=1e#Io~a3Unw;|^?L2~NZ;FwnV#SN=`>y(JLiy*v{AF?*8``=XJePytLE@Q
zL{wrtY7&)ATKYq1#`b;2upo7(+gS+r)|{?8S@fr@JrJm%&*~ZrHI@hL_@%(ajJoW|
z*6o{et86RPTiI5$x1v?DEd40hQLdxegX?khJ`v&mB7{mc`Y&n5<DvbwGsY*W8&*kw
z@}-+$jT$eeli{9UdcO5S2MhGw?U9wk#@p(79p38T|C#q=k=R!KtmR#ZS8vX%nKkP_
zA=>kF5c$@Dq*UgX<teFpa-8+s$1kj<XBeN?FU~=A>OTJ62&e7^vg-`;@O%vv4b&aY
zw-CRedM$$!GhhK<#T|}O=%FYLIVu{FLZ_tIchV-0A|aMI9t)djHww1|SK;j`)IAj1
zBJQSwWhnl5T9RHx8eJ>Cb}ikPsk+Z*(<3LF4$IJ@NG??9LRFBY0Oi<Fy&bg6*^RMc
z=ISc<Hf`7siEJa9EVDm(5GiMVFt2YuTjnRL)_P8=qwCX6$_hBKGYB|?z&40|p)0#Q
z*M*jPHF*Ab@qz)u`_WD?u&^|iPQ+<p*bN5GVBiG<N&)B-263QwQFqpNKS6NT6=z+U
zKMoMs#iCe2cC-BM{CWVu{Ne&pK7IQ5`~5AELF*P@eOY9P(arQAo8>`JM|?o0B*?iG
zXmQlYX&BtORmH5Gwq`z6zufWd$>u_ske9wo(wImZ2**XxVl0&Kp*^J#Z_aXJ{2>5T
z2o`IzWX~YrK)*aoFTtmv*3xdl?X7b;LzqqOLDe>O${$`UF`Jy&-H8K5n|(@;Nq(Z3
zM1W4yM~Qy0WueVyer+9Xo}-_Vic!Bk7rN|cmvz6tU>v8L0U4GS-=mSf!c%ixJ=W#k
z2xyEvm-{f`1h$ehI8=bZvH2So<CFYlV687<EQGr_qBSX$$PhU|@hCus(a8@enOMDZ
zV}x&R1W&!sIj2E~^2s)LC;I=e{qX+NcdK&#`)gNyr5=6eD?(R(3hX)c3qvi9dtpw(
zo#;cn>JNpGphaX=uE+$Eh1d(7R4VZ$XF3<`VAOR+kfze`qVyU5x-N6bqS;vM7YA-y
zZuXQou{XPFG|9)`e0YBa$fG?mvHjqDjU99z2X;8Q&mlqdB{%PfQ1L1r4q(}NzN)$w
zMdEHr*9fH;x@bqTw!mjg*-^5c+{+dnnS#(NNpxQaa;r|zHJu2-wf2w{McdjEi?f@x
zL@cI(Fp({i$yf<judH>6Zr*2RJL&g@c<<_@qm%7+CtVU`t&{4bQy-Ok>CMgi%&i_e
z>mePqv-MW}bM()te;$NU2gNifJGv}hQ4A_M(Q3QTlGR18F499!58IZngN}7#y+$)7
zR1X0l8u&6at9Bl#XM%=vNyD|M;at{mF0<fKUA|IbI&a0V)HD_hLvR1951-#(uNK*m
zTxdnuhz^lC9tH+h#dGG!4FK11_z@yUcsb^6LL6yu<S}1ZwjwjPs<8B6uQs|ijy$Cu
zm4qaNw`kZKgPZp&{0-L#oQs?HD+DfA2wW)J?pFw0g}}{mt%ks<x_Q4s;3@<*owIU*
z!R?5^W};Sw!08Nu3H&<mR|p(V7~H|&Vmg&D+7TIJiP))j1mHNr{}c{yKmPWQmnX(8
z;ydYQt<UWgWKlNW1khNo#Me3o;JA#bF)7^n`uN5^erfSF!fljC);633gII&<Kf7Ls
zvypOsTHb{c?+5yLHFy5=^+nVVIZQcxc^LvkzSUEneK_`@AL+#?dVU^%HmMcvu5taD
z)i80sz&RLhd6!DG;DfKe^62?2o7aa%*B?Nykg=B$_P!nG!TexvBpKo!(`USnd(4hA
zZpUCQw)0TeL@~||_G2ru7%d}WSX!F`g|-T>rllYwpI*Y@XXi*G7FJd;S@b7jJ^l)a
z!i1DP==@jLslM<$J>(@g?ybh-Z`hf|7?WXbqGSjuForN*O&xj3&pO^t{s<ufx|2jX
z?Iij#cN|4VL`&8|uo`c?WjKjNI;}BfXTbv3WLhsFOSdcz1<C2Y2CkMCfmIo>^e}=r
zE~S<Ei^Xs0v?mRAc`&zx?Aj1)8Z6spztn>|=pimkI*jU+IzLLz{HpRR8dCH?uF$as
z9=-+;s&DBI8F<<$%51Zy#ODBDgR|RYOFfj5D4^F#di`$uawP%oV3wSytP`i^7s68d
zqbk;!Zw#-OS5AcAv65YRY$4|@lRIfm`XuF)+YHKAij3Vtdn(6Uw&c6DZTEb4n8VcM
za+bj$Hf&}oIz4!wXxF2`<+&x~tKvxX{2J<y{$@tB3S+A7n{<Uc)w}x&ZJ$<6iO+t!
z#*(>|!7W3IFtT#J6F{Law*x4^b6#FUt70<w+HW!NLaINSQTHw``NRq1)iDYg(laTL
z+^VC+A74eQcWd~0X%&6Z+}|xH_0KaO=Kc~IXOI%kfBN{_%f&PnGsHwXC|2W>Eb8Q;
zCIzo6N7~}KI4)ui^?9sKo2+HeaiQttJZ4hT@^Ok?pstCM5r*~wdD1Ey^Hs!Zdl@^k
zoS2ZkKQ?mPB;qA_&IXqWWcjG<hWX^<-ur7l?tS{?Z0F0%YpnU++n6GgZXI#hQi>mJ
z$*0`!7umI!o^7RbCuR873h%$|cY3Ya!LZ%pHI;fbc86u6wlk`S{}bX;`c3hl*#j-7
z|J-3M^<L;wmUUaE3DY{~#D0I_WuRJ2`lJJIhbQrr;vK*ed-a^!RE=k=cZzr4)_kX#
z&_^-eeOvS0@T&#d>dsp>vOAqP0^;TQ!>21P_989zvMgdA$%?Gz$IQV4T9e<=g1=V;
zm>hnLbC)AIpTuyi3h*s%>$PMfHj^#bYg-;?HCFtw*m;{zXALe&NO89)t+aY)k558@
zS;;JQcHva|?4tDPEArj?RF->%F+KF$WDNFluHLgAtKeAh@qT=6m56m*mixu!<qkww
z0U&Tkl`rL|RP)~g`MmJ;W2hX;tAZ*=P!|SLPoj%sPEK5)YK;xKe|ckRglbaBwYyoP
z?ya<Ajlh4__7rme8{j`HqUoV!H!HNRg?6ma0B87=YW^D#YF2cB*{tvYvtxy4qhv#N
zwq~XC5c!f)uebS()M+V7?)cO)?^Apeet*vE-(QBvkBersC_@=^rTSO`ipkK-s2z+&
zzK@(jewq0?JHBkxjhh7}!U3>vLL_e*(B3~o{Vh~CZ_E6bAzfL}&_<{tO|#e<GN?xm
zv!>IAafnTxF$SES9VaK~cv#<&S1TAXn+x&@Ad|i%HxO+Xqf{SImm!lUyE1vQE00(9
zO@f(`#pXpL3Y`km{jQ$U%R?oh%8ON=`d6!c=W~$ey8I<Q=3b=MZq{cx%lA^OO0s49
zzU**Nc8u&V<^3*ae${h?U?|!=|J(8Ze2aB++jWO$PLKETu-EeBNClnk={!E5&ktAl
z6NEnm^d?eTh|}H58#gGgw+|aR)T@)jIh&kkCnov#6;~{`WA;#nY(RC+L4;!Jv3-+U
z755*oKwYmXJ0)c>S*lNUlL~s2y*#EG#IlpdPEESyelzyk{%r$*TX9Th`XR+ij4>@n
zja<sgVpt&urd4xS3mh%j!GTX+;aU`rj1K5%t^_@Cw;F-EA*$i#Q20&YBJh-1hgR}*
z&$ogjFi>`y+o{Sh;saTM4bc)hIoIp0W7Pg_<%Sc#`@DU*(rRx;Ccva{0lY@LxCj2u
zgY23}*)5ycgPec7c{}A<X%{-BynQzh5<8XP_3O=hEG~G;VGLJga#w`h5+5bQt~v>O
zT_ke0t5`X;IlDcN3Ln?5v(bguEaPJn7PL(e=1GBiL5de|cEY-<>&=d=-`V$Z(Lt#p
z%NPX>O<gU!RjVeHom$wv-8Ko&ylCOJwa+D^Kd9@o*8h`6PA(21*-lYqWL^_>)$eC<
zza7{437M;Xx6?V0ixd3pDm3`ruP$X*;a4UEOarF5JS4ymhaU^q1HCy(!R?;QYlN}M
zH0lRi<dhGH$V#{4`>;rHrMPOAn3;rLyM+v%4AT>Ea5iCPDYjldNe_@2%~ozsYlqsv
zY#eH(Z~ZYcSaS2V=zi>nJh>nR$h!a+E4~JXUg^$l{rc7OOlfhoT`Kh{wu0-ny7*dN
zLrPQ@Dx2p4g8M5Frg^G+s5Ar}`GE(?{DkgYVe>D37#}4|iB;|bKtu@v%N8(r3kf_E
zQ7j^5ah4@mIH05g0DrR-MLk6nPzP*?gd0py1`&-8ezgO33$Fc?#@st9D+mCW8|Wci
z+EH6srt1wxCR##oh5ZTj^XQatCEm|U-zW+T|3f7*#<vu?p46m!;8_i-O9zSwB|E{d
z@YYs4Zib6b?X@L_Ig|{#Jp@h7WLOy;iC0!^e#j3tuSvXmmYYsMBB4YV-j-J;R-kD7
zpT9Q6=acyPP8m1r!?sc3L%(*p!oAN|f{lFe&bUZ#X_Ljd#*K4n*dq?l#VN&547V7+
zo&o4~>DYW)GJsZtm7a0!F043BLz$daSNZx1@;4G8sHLLRgOcW%(&EN1(deEdqxBbJ
z2aIm!?|Z#G_&KA{B1Qo%(Mp$)Wj~Cx37KZoIn&-sPFFd@YAd(`BuFBwKYnBlFqW>h
zLbbfDl>h$lWU_0c#E}#nrK))9)$R-gn-q(nng(&(AOv+0AT4<Sq&tj3KaD{@jKStK
zaEft#6sqNu7_6R&!RnP5tdcn7JQJ!dl=*eaS`qJ?=g-f-dfvakz`n3u4#w6kJ%pTI
zGbBWQ<Vh%lM=oV_v)S(y#E(1F(0scHP`$J#E8!6q2)||TpAtFvYT0w0uSi<<KdJK2
z>T6i^PF1JywraRS`n*uJy;Z?YRVzwn2G5I2N$&!S=mK?yaDtC#a+N)ehYk_GSSho9
zARg-SrWv`tZAJ-JQVBHU@D?_?H6x`jZ$_%8W~|?9u--p^dubK_Y|8}pDwTsUWP(M3
zDB@js`J=#};Cx03p5q~k^D%(4Ge2m3nU5TgzN|>jEy<2N^`y+UKS)7qJw!-fpEERs
z`(3im^i6hiqa-EyJ5=nB6+5dq_BU-YTZ2$L26Y`Qm$QzA`<}EtcJ`PKwX$Z<7~Cw&
zkOfx={2HT4?pI^n7*jx}<SsryOghS!=u6}}8@B)rYtDqrMRRcolwqlgYtmcwIBw*l
zrJLDS!?SPkxbRpXw@8MVNd%53EV~m>{sf}=$F2k=)C;-+aS5B;7e)RkL1M<*o37Q?
zr))o_!X}!3I&6&vDWB!9PS=^XuV}r#*m1h*#o29ZdCqg%59OAR9assTYaH8CYr3<v
zzM+50AK_1TK1?Aa`koEC+X327M_sO9-j8ViCIxvP7RanYcbgA*!U}kq)YfHtUhH{`
zX7f2=2`tra*{1CGAGe>LKVKZ$Th{rkB1C3AhY~f@Nwyt*@AHg6nK&w$5>8O^oi<Fo
zHt4dIktY|OWV`}*^F>Q?f0buw0yEa~fnRd=oB;)wjU4Z+fAS=xzrlS53n72BgG!|w
zNii$5_@W5@Nq_C&Vk_`tnpg%4q+oHm%|GvkduWPAz&COoNA;Y#lZ3`Q_9@M~t$8n>
z(HeBB*K?&_QrLDoc~_dNLTEd#&l2=y+!a3WFQ_{B*5s~?W~ptR)?%fQMd+$yvSG~T
zD06xnmiF{6QU$ec8|KEmG-uV*`&J?*M-FoIEZTHNmyowGb#5zGLNF6yIlvSjb0ei|
z^ocn6Sa;i2xfF<oA+y|ayvCSPnkwKDaGMpCE0NoY?jv3XiK(R<eWcW&Ck;l8?i|^8
zYaxR9fT7%GhtPEX!NX9<5k&<0l8&X?|2sRD`|_XAF*$F_<Hu_Zz~GcnvM)dS8{E7|
zo*D97@b<s?EXj5|x64}kfl0Yc-%F;kHxs$PrnuZzDF`DnI3#_$qc*-Ld9FxxTc>*e
zR?D99DB4>sw-p!eFdyM+RY&LL9|(<R{0|8PFVCO8f8M@4|K`*4l{+Al5)TVbv{boO
zi7b>$-?C6kt0@nS{_w3Ryg=f7B8y0=<qnzhW;vMC2|O@R!Y!05jaCVpj0z?KTo!hM
zEa;*N178ixw|=lmW4$?!EFiM5FTuaVC4x@3rCa^U8neNp=U^S*@@iO#EqmjvkG3XW
z6ze;0dCP!-{^EiT%YsTj-FAY&*81%Lfpyyn1hZPFYIoLeFBojqa}Nxx=N=$fpFEwS
z<MP>Dt^1CPI<6||xKnO}sWX_W=O#0;jynOt`t58GHlfY&+gjfRpXMeAoci}_-CrF2
zSHGQs;E-Xbj(ZKgL@k1Vb=w&T&MHkif8I>>+W`S}+ZhB-U5Ww4TwS-v&Rf5oKyZZ9
z?i{9c+X({JZ6^@SZaW)$>$%Ge0WXJ@*{o-CXkV=NHulzWZ!nnXu~Wyr4ZeCV^tX;1
z`p;?&^wvyg%@oc90qeID2oBh6efOundoJqrME>I(+4=M7WH>Jn7|I(6&Zb}5olRHz
zE#NfaK6e}V1LC8x3jpMU+&~~TUdx88F#y%kA8Odbeh7FgYI0nZ#K^0zHXsNux|=g_
z%#q~~pwo+jR7)IW%r~c=9^Dybm#M1e2N^Y%0Hb2jL#KxpZHwI}2gx@EI1;T0ry^#J
z-f9$q8u(OEzqLlRU@i1&q5KA~4;wY4w9AUs7wMi_>S(hXD(Wk#q1CCzoi)|dz%5|#
zf{1~^1CnT9@Ki{b_+{*vu{-;g{%8la{y25b`ZH^?{-|L<L7&n&>yWq3o$5*}iIC(8
z%Whk1nO7q<R^A$U28o?|O+{%-r=fgjr=9wLf^uEkV<TdW?byGP#`O15lQzI_9y@<R
zhpnLF0hB?<3s5KAsn&d_<_k0~7=ZPSz+}VV=D6Fidky=9uQ&M8ad1`rHe8+9Wte6|
z=QMNzsRO#vK&q*b=Sa`7@X3tpq0z@yy$~i_FAS5d7qbF-;SCE7d+CsM!VuY=l|RwY
z88P$W`MV!J?%!Yfde6<+W8iMNB|+W45uCn}#GcbsCL60B#{_ng>79MBaPR#Wsq%EX
z7TvE;951=gBzOH^^$`cOV9gp_NyD85-fsu-3>oBXn(h}8DVXD7;M3*Hx=yVuXwQ7`
z@$5ROG%TwltBD!9IY#0kH4w05M}6|n4_HiDy;%rC)=-%|9YSmda~vL;&a8~G7O;Sb
zO}3a>t+(jOsVIJz4rQT9KrGqB(gmI<`l(qMQ;QZ*B-}|zDJ*JAv}hUCtWYRoM%N^`
znH^n)Gfjg?R`VU)fviPCa<qSQfHgts(dj-j<vz2C+@DdNT;G_myO}&#eH$nJE0iOF
z*58GaB}AFuhx!GY1a;|Oph=*)wS9l3%3y)xhSi@N$`Xi~>HwF^aE+;13q>`sGQ~}b
zrqNOqEbNZ&R<Qb>@79>_J8zZikXHXO3LW1o%xUwu2y2^Igm{QPwB&|5uSgx!OcOX3
z8IH2K00d@cclL?n6VOQ6H_GO6!YR_$GMs0#^r2+S=G2<)sm$h%jiK8#BulUnbN>fH
zCy257k1Bof|Cwd~L!p9#GxO4a6BnE>^fw`?<%1?HRi6aT02{eqZi`N1iL+dB2mk#A
zd7ex>(F&kRG0GY0`U7dgScu8epeGW%^aK|YG*da16Gq4lW{G@0u{84#N>?w_`pIjk
zNGRpTXpx6=`9w-i#i9v^fj4l<F(G~(IuatZ*=mDC6~nw|aR9I+D-|YD=$OFZNpg!4
z6>JF^;)8VR6BP|_F@wsg@Bu3p2N94Go6v^1ky!Cb+Sqim;EPZWfbTNQ;4mpV7tSiQ
zr2_d$rG^=afKrajASzL2vi*19T}CQLFESAbn^-h)p_3nDF^}}+;L1T;ifD*%c;mw{
z|3=;v2c^A>SWiTBBeWL}jFEK`l>oE}#34qS8fDrIT?@G3eOU^3{7-=<pyh!dS(sX8
zDWtLUj2&BE;yc8t(Yod{t4<^pM3KrMBLDy|0C<YURSmphD2QQBfDc|SBvP?c0f^Uz
zkPzBrojUk@k~)cjt4chF>Ng{;C`Ubmcm<wxFl1npn|R|5Z!*0I)Aw@mo&H!nqXIeC
zE7}gr!uj5CJvrgJvsvIZ3${gq?MhWkpd;B8b0P;uBzC^TB-2Rq^}CRe{crf0y4>R?
zV!<U|GH_?}w_f^Asow;VtTA%<2WLhB2rDdTgY7wE`ua!NGFq}`Dp=O6AgO)FVU8mP
z`;rhs9<*%6K4cgK;2lbsJA57}7#KI^Tmd0K>m>9C8pZ1~PFZ3yWDHr<=N29^+V|^o
z`J7-rNq@lNy35_~QdDc&g%a7JMtsO!XVpHBmnpy+5lYW=X~d#Jw$qRvg0oeN642CF
zO<WZm_6Mx(((BBuV}qHlo2B6_(oy7Wf};ryI=m|2ZMSBE(s?G;;wS6hM)kRXs#t%d
z9c$WLeuPpuo*Wu+8sBd}yuQC2;S$p!9Ak>+Azg}bd|wxmIPRK!)>J@l<v6)X=apWV
z19ZKe9?-{8=hYq`O~%Z1aO(Lhommw!;476SJ&=FHvc6&;PZ;s>cb~2?BL5#F-jszz
z<m;986<c;3$B#eUnAqiCGK?|iug8o!c5wgU57!;6|B?=VZ9M&o3&d9|>T6^CS8LeU
zE9!_^pI<(`zcG8-zYMv)9^k*`_VX3XI)VQ8AFl!5{|f;BRp*a^>$?x1pLhQADk1*(
z-KXc@UirQ+<^{7Z-Tg(I)xTt0TiQL#QyhuhvpoHITBJ*P?HBl6i#OZ?zxsZ|2Xl=1
zh7;z#9`=zjpql>$o||tpr7t%<6r+sy_m++Q-G5o(8D|tX1MvXJJ8^jOogg!D>9?cI
zpb!z8Otf!|SjzeD#vZYZKfT|6{_ycS8r=J76^)R`-2O&sU{`5z4RZk;?J9NnWNE|^
z37>xCnjg;0j%%7}K7paC?7J8fd<DC0&vIM7nVv<@-2Obbw;Yz9Wm{7uLB)`hms0b~
zoY0%aMVefWCV^un3_!4yM`QOX){K2Tw(K|XBi)(7%V9NeZ`ZPyfU#~#)Vz49TXy-W
z1jeUYcjqlss}k&DrEpSij^f+o`M-Yn=Ka+^G0bPPEj_lXn+p|N+ASjb+r8mpKe*fk
zj5NQqdF(H8U(|H53)vQs`(Ij!Q@pnhr=IV60J!VMz(Dn<KmGC24R~!|%MCd4CKoZC
z+nL0R%hrOKbMdK3W@G+BblH)`pI`Jv@iM7xd{N!o+)kHMZp%zYzEI}rFtcS@4@LWI
zW|kb&LWT2D_GcfIDElFC$7E1>=6c84XJh@wOVC@7Kj$&_HO{%o9CIz^FIS#&rt*Ii
z*ri%8VJ8Io;rY^iauW*>`Rd3p))g5NOTH;4ro%%i9O9-mOIL^yMVjH2#rj2NoB1WH
zBI!#?t{>i|zH9>$Rtu%zB>hc?5YJ@ouJJsxZBUdd@@q{)rm{0cPEt!eEkWNJ@R-FV
zF$7>H@)OnhDW#oOgu&uQ7lh`iOqZ}T<bJle^_rmZT_^)ab6~tBa7MliWC1tKx5q3-
zc^HGYXCZ>K+Rr8D;S>&sD8l4Q(XF!KG}M)?7wk+&n9j@&dvr?qX`u*%)RqOjih8o-
z9L-0%mh9~e*9>4xw>0}X4x3PkdAsrq3pr>FU~bfS4C5cvZB<vbPVmS$$5GibK{O9Y
zF;D$rz+aClHZk1QMDxrQvy!eaA$Hj=PQ-~m0jso-B|5TT=2yV6%GTA7!E0r;jj)x2
zLBL72Z7g(7R*;gz2lk*?BaIqh6O(+#GR}@-$Qazr7|@&->MV>9!%sO}BK1&&=EcYF
zE+fl)leDZ3c=<n#G5?fl6A1uPp7N;Aq5gFJzpVd)SNdJ5{o<)qVY{3u-T5Yjc;lPc
z5mP-DsH&gFs#}Ubjfi0@sW9Smilp?}PitOpif1>ki~cFgFL5LB(-7E^o@*wr)ur^i
zjG8SmLlBy;1!In4`mIcg@>A1CWLAu|`?3WLD3T^wsH`Qt6q6ytdtb|q$RK{YqFel_
zG;JuLj!j-`8>kEa?5w*#oh|z%!LrxB7%22+F#sKN^Dn2U+?<#!9?;4-`tFDIs1*CT
zomwdxIz(V1-?D@*D7Mr`Lh($e%Y9KGuA)RsX1J?mk4WE&C(A{t7qtFl+{(TRE-Sn_
z39Sj5>knZ@og<+ycS%cs-Zt4f4DvB`GgDomY#t*HD%d4hyG-XxmQD%{dqYhEn(d|v
z2CC3;Eif~yYDTxt%o4TK5++?!kd`KvJsxr4KxtN}tN>W>a%a;BQ)fsi_K>NynIuj=
z0Y|A94~QORzg$fhsRE3)CW;K2>3gRC@{dPC-|l>(`zcFy$2LJu2b3Hu6j0Iyn3|hB
zDjZH@m+-cBOZOzjo2n;hp=~pE8z?_5W`!(m+UalEoJZ6kwMH&zp790&O|Weg<on~r
zf{|Oa1tSBR*4Ul9V@(C&5_`f>M-T~B>c9kT3ogijG#&z+hiSPJH@V1`q+u0f<^Wk)
zJeifnlX*vL5hcnvoTU|Gmz1ju1o+^Q=aD)^wz8!tN0F4|tjxvAh`W+xuZcxom%3lu
zl*%C2ztW5-7XU5L-T-38s9nJ)b_!;gPi+&5Dktn%C|LssU^P@S1qk(#0mBkN_xt)q
z9a;2<0(e#I>N)}887fz-a#^yuBjP9a!WO~J#s#dZi)J!Ig;|rKWMJ6*5b-51#dMAB
z<jsin<A_aN&0O=DH<U9Af&CjtfN#D3DckXdm_oub|LyMi^RM22a}^7*NsKc!-8fR*
zvct&z#tNb(Kg5noraZ_~#8bj~V!yev#B$4A#3G8<jQh*mOVt;QB%4s}H^+Dd^H!8m
z@zJJ7Cc*1lrXl-tSkiq_h_ov3nfhPCS1z%}{Dq2cAAflMeCeAb|LW*B7qaF&Xdn^o
zNLXOcw&(>J7uu+|xszdk$T|NAHm-m>1b2Pv%L4-i#y4g$hXgK4y~s5v?-o5IixRrL
z2A#eNOZ9QbW2KM<U)An6&FI#rBpQUT<o^Z2kw!o^4s9>pL+`Um895tdk{Coel6di{
zGw{RBO}Pt#l&yV;->%G<-O(uAx~r;O`XWUJQs%u17EHEOwE&4p-gC3Fg?P~RH48!E
zx*2EqL+4LGdhr5~7libfOqLLYe9-w#(K9_jvMn$1jNVmke|4Hp3WWgDj&A9@ZJL%{
z?5w~GvfcsVq|F>qTUR@Y7lCLTHf129gh7bkzNlQ&+7N_%jmn|bQhOehJmUh4ECq}>
zW@HD9JTP*=h;Q@Me=HWTxlB!P{JCeapiyLkQD52KipGi@>7jBz<5c?0uzEdw*Ah6Q
z?0%fto1SroU8a*xPpx!2eW=eRv1)hUlCSyQeQ&+gtvBa^#Vq!OeegEM*j>NAbA|r+
z$!~Wb_t)!liHb~LW0nW5_4yN8N{?$oW`yR!EjRPv#;(^;refpZDLaSdBf*zXIrlFQ
zdQq4Dg+VWVo&yc}+l9Paj7g3htYfBgkbV5^`yZ|W_Nz01z4*R7Y5y&c1sjnn1)&%L
zPKB1z)`RzB3+2D22-W|kolTJR8Pgqe76g&j@M$U-6vdYuGPr5n*^J`fHWDe-CrGgw
zz@>DNzhYzLAg|?B5r{AW5=ZJnof80)0Q@Lu0#kl+HSm*Qpm<9{KPS*X`|XEM+uc=^
zhcMzl)Kxo1v7*n-v4lT*kucv9`}H=Tc|E)IJmD@pPuSl1dcAW#A4A(<vGFRCfoU_J
zSRXPcur@3zG#YIM`jnJn>kcXO``AR^rpZKrCzBX@eUtm~(2>m=EYYYcW>SK$(h7Wu
zyzp>qZsZP~8rGSI@Cs@D7(?N!(b%sDL<^{iI>o9sS8SOrMn6xZex;WcxxH0QIJhfH
zl**p&nixAeJ*G-S3&~z4$ISxu8hxCs_2#;U2!M%neWdgpvQON#Jw}%FRQQs0ik~&f
zQvww$aB_&-?&wAJ#(f0N7+(S4QegnbWvdv`@|gk=U6crA$nh79MHcN9ZunIh>o+Gd
z^h7!Bj|AzZfdYAskA)$tN5tL7=Wj0k<c4wZi?Y1*<(6FqBtU=ZoZi@Fd0Tm<HUnHB
zyoq(llb|f28fPBi5E#IyHHzJsekTx@@Tl5_{gpCQno@9wj$XCXrRhc-6=Q?509%^i
z=MgOKghO1vx>Y92Bv$H}I*e_kk-88?#8S=TWnuF$-sRqJ!U>s_;#E;c@SFqf|9<^*
zg9~>qhyQ*!<uKXi-|(H5vQN+7e*W;ocYenDymq<WrP5j&+fd2~w?yeI^o}*O$g>}u
z;qE(1&#d{2f)x=YJZqy#G7QAu>UN;x%2U4Y((Yzl<u8=^vsNVbaxA`N`JO5=Nz01+
zIWnfk@+D=WAc}w+JJ5PI9r7WO!O}#lH83i7NW~(u5;kv^F;c{ozs1MABszzsDBOPw
z?3AJo1l(n=JS0Ap@nNQIb+FIKr|GUX96|+3@7o7Du(pduP5SZN_fmSN(>x&D#I6LK
z$o3AI8Ys3a%&#`FSlDy=!MqXU{34~=j@I-eE|IVlqnF9aYd4cYNf^PmJ&5fu+<Afj
zm9H!~cciQk8CVV&khbFVLjBs5D~0~nAaGQ%+obYav8VHy_BGo9MuXTiHfQ$*dqs2g
zNR5kzq!*$?YlhWykbczcj3m*>9lYk63pRnX5HD3>MB)b5PlJXE;KG>g3dk-F;?Tj#
zoXiYEFDLX8Dte)!)_5NxpnD9EMBs6wh#1#qv8rc~fctg~K(k2Eym!U}oXOhmSa-5<
zE6#kCzop~$7m6wuMBs&Bn8~@$&F?;5x}vS$h#SkOD2$XWAx1PoIgv31f{OWqjE|S@
zbXC-3^FHdtaklhJloJm8x!4hoHZ|?)xy^J>>nOg0O%Z+jF!ZoVdXZ#CS_Bc))cFKu
zdughJARFnl$B2!ouqe?Wx(YGM**BYDp9u&Qzb~aK?lnFMC8)15iAv#TnRy<aZqsk4
zc@Tr+T3(?{>UgPn$HZXNVWd}QhP4Q%QnQCj;tPG8`wd;Db*?z<@{bd|o;))-mg4MY
zc|9`>>@RC8;oVz+$o^Q&d0rNolguw)NlB-WcM%V(QJh)U6RrQaBm?)&-ZLolLQS&S
z9u_3Ni;6LMUm>9ptR^)~_5~rq29DflF!W1g=u_3KPEx&4j5gYc{FNzEG4o(e7l(v#
z%i2pTvWLf_Q&sDR%(*kjB;d%>CngZfdI{zVxRQFw%#*&wSJavS*M?THMkUO(0hezf
zyD5h>1;U9kT3;mml9hmZ$l+Ka4QnMr2kVmgW`Gveazaaeur;G=JIR1HU<ShTQN1G6
z6^pUPFhP7s9#Pw23;ezR?Z@38*U5IJU-$mK>DNuY3DcTbzm&9aiJ)kLy-^EVEyV(!
z2L?4pJCRs2VKK9ZO`m<#B6@nfJ1b$WV1=40a8`l)aS9fii&dLcmRobf6|`AQ0yx&x
zBj~YkB4ps0!djea=6XwYkWE76T6vDLm01P9A`@!m(cYydOOQoA-;;1A)H`a2ZZ_5m
z^eVv0M9yf%Zi9A6h1QpdbsQ@uaT_cSEY>TYPT(YvPOifhUKKT-fHiddS!Mky&TexN
zFi^3(qKbts61=lqB})<tcq-vQKCxiE|2U1Btu@&`b@S8RsdR>EHml|C>^7SP;fk~w
z4rF8LpDg0&Aia*1{617YaQ0v(=j-|4$eLK@5L3+Ctoyfl-`3&I>Y$vOabl>pEN|cK
z-<Ep6P>PX`$=}_p?^ELG)?0htzTIE+<9?~O0srp%D|&cX^mGV3)-y<5L@_!N=eJI;
zGn=Z6!FIF;b%P7%-}cs%k)3s6*Mz`BT1QBK*<T?hiO&2W=*GHING<sJB)!P;EtJ=Q
z<Rw`cz1Y~}3uaRlpNGh2I&4*<s~rQ;1t(rNLAX20b19j1UI>Vu7SUpGorC#-NgRY8
z()IUG84n8!YIv+)=4lclJ@T!e-ztRtb=_*xmYqmW_GqoPj6p)pezFe2x<rAH`PQ)2
z=GsLgK)_A!9t|$k*4$TgpuBV~2ZIzl%reB-k4krUcq*o40GxPGHs=)s;1Mzb@AW#n
zv^OIt+dUg(#@JnrvAuK}V_=L|OuT43=Co*ms~w)Dgy%ggdFZP&Y$U8mj`pejmeSS*
zg8KdE_wRSVeg5GxkXWflCQgcv92Q2l<-N<f`E<EDqH#OwaF&M~{4(zQ2w~UAPRc}6
zoHg}<w-31a`5Nm?_IMWxOQ)Ihx_Rz`;Fq)mbt}rmva&yd!%-e5SO-PVu`QCa%F;3|
z=|k|P+5ka7zQ56jeS=mkX&2%BfLJ<QR)z5-3s!+i^nYVNDjX1J@R7`+4hKUFV9-g<
z*LfUm&g@O?JV5kOsf{|lS8`uW1(luN9y=aCrZ~)X%W!Fd45A`8D^z5Mkh6_y9DtyO
zqiWoKz1bsg+V_C5!cdTMgE^7(JmVAY`)uCugb|J>PXj4pl|63ClJg~5@;(eZv}LZ;
zY_Y<NWJD+q&|#ggQ>TUokqEr9fLpxI{f`+jyquS_s>n!w$SyO^kz#PWSOVFVM)~Ae
z8u)d>*!|}Z+uz&_l3TxNT3xX?mwcb8rpP1nHW$sLU=WX?H$|c?)Xr#uxt3Hck!~)%
zvd(h!7XcWYXRQQCfS}h>1=;Fz<y7Kyo%LWk+~E+UWOmGAVT+><nzW=-Y*G*uKQ$_<
zXZgy&!Q#=wvs2l{>1t(DaQ786U#4{s{hNqaP1F^&scd4xm$ZaKbY(oN!_C=k7F3M|
zvdFpHbYwS3_oN*qCU6A7l~!|#?A{8-Cq^Y}uA2Kz!XH+<#E1`6HiSP5G<sHuU1naf
z-SKzd|BATimy+}>!9!RwmKCMmi$TBScU{W^JYB?D>vhIC<Ds-^`1fL&Z-&Ev$^CX*
z_YjvmG5-y1`^#U-_2P5C)9l#dm$f8zdazYLUH9si?^F99shxVxzm)(Izv+JMFjH|%
z`&8<ewmUD&m$y5_PL*Hw;hnZkjQQ=lTYb9NsM@gj?{(2C5*FiacR!@{XuRODqnuG6
zOBS=(PS;6Cf@EMDsIO=<Adc@^9F(%1ewv)|9^b8xpJaH1$dxF)OMV3@<o|b*7v^%3
zr(|06f>=QXdp>6GXaccf@DzU(n$twLHqpb)H`PxS;H;b#`Lb-Td|Y;!7=<bBvP)m+
z1t|7ioO^fu0!=Nw`QmTZsyrZwU+8)0Cx@~2->wEFm%_<5vetRz<}>=l`aMN3BU(HT
zNL{8oVNgJ!Qf6$2!ajz?<gbr$=gSre(`q7p3Mz~+!^b(0OL0i=^|2yK@Hj|Uy)yWL
z)NtHg7~A!&*fBwW$^Jb5J8cE2a4qs9aaKAWm9GvOYxV2nUWy3T{`p7;E!(HVQy}iM
z@C7YvQWnJCBIW9^KSV&fVj`ZQm>_Zy7F7<MVw2lQfilwYOn-AQEGc64n4(;Xz6IZ;
zE=Qg!oo_k<xoD}8q!r(r>DpCMu9>b{YQLuVdN>k#wB@{Cr8Dn?BDBDw(>n=r6vzfz
zkmd@*r4K?8P2uIa=iwH<8)70_$_^{y{Ztfbbo|JEfE5(Pm{wjBSLBr1r9qF|R%DZu
zS+a}{Ofkc$L8)3xy6b7$K$y3DTbY0O?mfKb3vx_{U6BT$JsheX!_$N05kjCPL&8LQ
zJ%)$TPT3>jm81MD7KwW1Z3e9>*@BhzM=v=N&I22=J~EnekWwIjNZV#?B{<6#Usp#`
zohLv(=%*phy28wLl9gnX`&`BMZxY883n<|6Z75XfXe<m^r2R2Mk-?PgQ{S{5RKoT?
z$HOaMld^A(&4-U32|Ng!H$Au8Dlv9wBG~G-q@N-8SihUMc`n4=9;o;tId!$5u!>ZU
zj47#`g)&RG(!7<nO>i(f0v9<%QWvalPu+NA3bF&euUAp?ZM}+7@92Egd|T(^dz$=D
zsi-yM$R|0CN>vV7*&sap7d}bC2`091Q9edH$MMJ+mh;%W&-nWR$yXWjaaqNCp-jkn
z<_!EOx!(lbyDp?I_=v&b?Q|m>GK_l*dZzPf)PV>t(|WOBy`U#0R+3<G0Y5v`Ur=yG
z+AGh-iJ^>R#Y$ZI^s_lIP_t7JfTe;-e8_|Ntl5={oA(oIDHkM$u>qlxy-7Fn^xc`~
zMD<M6Ij!BC)|I&^Z=~ooNU2A&#%b0#$xA!HvrfY0(VTOda{#I_CmMa#G_@&fY3Lxa
z<2mMyzce;}j!idk)h@M??m>Tzu48m3E;z%52(0m8h!n;cKvkQz<YMj+i;(sY8xyB7
zk@r|G<_;I(NVPF_jH!*kxAB*Bxv&tJQ&a|H2w6PHg3^jy?h;D*A3racfd7=5raLr7
z`zg1B1^dx}*u62OKH9}T*%$J>p1d7aWuGf-th(=cCi7O>%#(E=t(i@|gfFVA53!ws
zbOM{=Q6)MVw0<U;S+ph}e_qKiDLn?xz<`-{$2nhxi;~(}iEOBZ_rDD6pN;5Uq8W<B
z-GC<Hf}*NB`~?Xi*3>38sc9|+Mbi=W4i%XhG9+vMvJpw9rOS>S<RwyK*Jf|Udn?**
zT$U9EHL8f6C^22OGj_?eH5-;HMKS5T4F0&7`Z2}6Y4LTBcz3FD$G2Vu9I8o9DIDif
z4gL|jg%6fuAfErhZpf*=7Aol!UrL3!Ff_Zo5ONs@xU%rHunxuZn#3^{Le&x6qWZ~x
ztHj&U5K_4lr+}FK>o<0?4W_JqtZYXoAkZ<O05`-Xvpa1ST7382Md<bRt+7iGXg~Hk
z12$xHNWAYdIz9jM_Q(?mEGitFK2_nre!sm6aaZCY$e1a2-VM5Zvb|1jxeUO}ns7G=
zvl(E|FWp5%X2d!VOG#!{!SdPb7HiHD7)qvA@EKvOFe~*0J3l8J=M8>3<NyW4M4oJ3
z>$4W(R)YN!b>9$E6PkIwi$Pe+qv$<6X+r&1Z3HpX5_f8pPOB>$>%(vNANKy`N~1Fe
zNr2-aWVL8*bc7_D;JROLdgATLOwRZ7fm0GE-dPbgD8?;sv+phA>Hk?hXBBwL@d*8w
zzq_12vv(%Val}*{|0*iZ$ko~<ZYft$IhYewKETOL3<d@QaWKoLr+@#a*=Hbuuv3Y<
zHQj2hPtx1pN$20z&WCZ*c|i|~13ho7s?!d=o({!d8VQaM3wEZ0PTKf-(#9W#RM@(t
zA`H7p1fIU;v`Zy^K_Q2BT((B5<=1b|+f{S=T&eMS*}1upQ%UVQ!^;kg;KGp`#MonA
zcEMCmjg8*te%)T_5eiD$S<Wm4x{AzZX>Lc9E79z#AabPFC}boCl7;t`>iHH!EmD<r
z15-eKwin6k1)(sTN=X3&fU4~l?uG({?)2NxU{%oyj>P~bnS9YEoR7~BbChAQC|czZ
zVTemlF~5gQc$6?|5buvy<GS43k;(6x*=LwV0j;4dmlpFUKL7@^K(SUhYlShc8Im%&
z0bSi7l?}}2gqynjd5piGR84z`&OBTn`KrF0*`TSlw{vcBN7`b3QpTy91TET|RGwQU
z_{0dp7)q4Ds7zIb3T==XGzKMv`+#{N1f0>BOu<+|FXbkJ6cUm-3!|frpouG^T6UYf
zkks!a{XGR>lX_b-RUqN5gyNeOJF7UpJ8nEfF*}9RZ}2gcl&Y7u)gmvtrJB&9`zAmx
z7Um-*2-C5M!00Cb>nN2$eMe28=vvIAC6!*<@Z^a_Q)mibG0=zBgFo((l(?xQXHUP&
z@bo*Unaf))2@A6bgXTNZmFy9XFL_t5pY@`M0^g#dCeK76Zi`{|!>J!zj}$Aqz@XPB
z^v}Ap>!N>91!CNd+BS5$8$^!b=ycH*R>@H`{0-`&%RaOL>2y=m7_%04NLt=ize-D5
z;t|<XbW*bk9;j%+vL!#WWhhO09oj&DG=~liHQKIbZ#CcQf>#%2e}lLFUalVh`S}l@
zFNAlc3zKPVSCtr7H^_@nuaXz<L%T)6gnE^NvG`DZx$^RxHvpGzS|<Snyoxl?b}RN*
z^_g*%kL2;N$N_S%f5};X4)vz9e0}_o7IB?2E7drOin}fysRde9m087>#;J6JY!)M+
zt1rb@iRhb{V@Xv1P#)<0$5C(i<$qy)6mvPAL22<WA-+@vI5I4PdY{0zcKZ~Tzidd_
zq@*=%zqL+><+4?(rJQ}5EHn>Uo~&F)x$j3k-e_&?Y!80J@?~n0HV5BNIG{$L&%QbO
zHq}Loo43XO%{}c6CVSZqbIM;H$CQrrjHB#Py&k`LWi#gujXpP1Bx&L^4%^yK*T?H`
zfA{q1!b4&h!-zi+WSxIgp-tMMBr#`!B)J7Jyt)A}{dRDL(E43ql=1Pg<ok}25`1<z
zPz~;JDoH;B0j4-p0sHnCXo*=&85b)bJl!kyo4u0wZ@za^L|Q070en&mI=$-v7_#w?
z0)QB@n$_VIfmDcDU5n!6EBZSP@)@1e<RZfFEd7y%-M{PDv`L7u&1_!TiV=`8Ff-*b
zNiD(J>aCdvTaUd>m>Gr5_tV~EmOwv8>Bh**PTtD~Es7Yz&)uBEDjRdlg8Jtmv-nn|
zK$45Bnnvc=66jp-u=TP-D4%prE;*3Pkhle<#6ZO+h%c^(wPM-U=0z39o*;X|7{X>(
zsN23?c>UU#n2k_t`Jd@r%Y1|VGiziFKCMBvKb_NW@q@--tkaQErc2xr1v1rkb9OTg
z2il68psuim3x69wGaTou_N!Xv1bZYFi&b=1?EJMW-ObWvgz*kSbjfbs=24t^0J&T@
z^{&RoGX=VAi3C356i`Jk?YZYU|KF#g<*)@`UrP6OACQbo)CX0!ZAeWe&ig~GRzv0}
zEGW(Nt;`6i-GcGXyGHx-%k!sSKYu<O?>4H9H*5-Y8KmoQ)$xjUuB(0ya=z}81;3Ox
z-rN#r#+a|VL0BHekccK`&R_bgFW3A+#N}EK?OgcXr;j_gI%_${ZgtF+JR1wP5|Cu*
z17VwynOTLjOWL)1Gtqd=9`@$oSsiehGPo;ydUVCm-}M&j`~k5jop7Q1arl%agW!}v
z1s#_6coB(-b`gZYUI}__Rkzx<RR9*H&=;70jPw=@1t*C{O~Kn2^VfUXQ$~6dgK?6&
zN6#)(Ow{JrWKojK`>37nqWYNp;LO-^uo-K$6zWe5bMBe?r&?jH-aeVX-eW)t&mv-8
zWZFz4H~@e6W}N!~s<ivX==N$RAf;w!Hei@3$yhB*WCQ4kj|B3On>6OSqz6lsaD_OJ
zR78FF-++>c3S1b-T#IL@LuFiJl`K27`v}7ncaHpwVpg>vjePiGsgMi>X^x(@OoIn4
zj4oqxP!v^!XoGXN@F6<e6*Q=CbL<vp?{^!C{eOY@!&=BfwbR0-;R_ABoxx;zrERwU
zVl_a>ty+>Ovir)^5A0$E!66qTbNaIDE@?2Gv<TH<J^;0n<z6Bvlt+_PCsf*5h7gn`
zHeM{<bzXa&+f9nsL8oXQwjlqoMvYyi-TrBNLBgaeeiy4-juLKTK&dVh?FwKbhN27|
z-B}dwXkizz++zG=auglcq$|_QxO2+sOxk*7RQ$EUNdlqQ%?OPpl1sI8Uf5ExRK1D4
ztZJaW12lM(A@^))$ikAUAsOADHq={7{ZUi>^`=@&!@|kZT$Y7Jllo;YAbK;MB6TxZ
z$LQh-9(FR!^UaCU*g9X^r(ZqclJ=ZC8J{M>Nlo9-DE<eacO2zlS6gGip#@3+Ra5O9
z4L%b%o4CmcG7~BJHOm`GpBOFzpr+sjo}FLAcp^(sv7TZ>W&bw2rXl<DJoO!*@QLM2
zeA9bWmcS4+7j2jQxTON`qv5*YqhP5THVT{0ty5+C%=<vzdmrHb!;UqNCbyIOetI(K
ziMw)7-vqCGK?%IGuTcgkRTfzc=S3V*bD1>?sa#*}$C}#z_xneF|AUnN6VNT0_yTMt
zWBr*!rw^O;r-bNL9(35s0y(&`j_lV98%nMlooRN`R3Z=0EZlquhmyUO+=_>XC1QVc
z*`Al|E&u%W;%h=+u_34N5Ks@1k#V=I!CBUenfm<c=j)!tT%E}bTQJqgaaTffIj?{e
z(tYVhT;zsDBC73qg{dl@U5Q}2B;QNOkvE?C1@jauXbev&rFev^t$A%TL_C72kp!f@
zfFS4Ee4>J}BTP7_10uyxGG3R{psE}y;BBh)spS99_W5kHi>($KAI^nywanwDFOTJx
zdx4lC0%*K&JZEQZUhJUt_Q>;;2mo(AUwbi6Z8eiOUT<v5a^9Cl1&1TMQ`)r`dD%DV
zP|YpP-}h-*4wX}o+Jr2OZK6R5T+Ogn{^EPS_Ud|r8LR6`$%*rUat?i0_tEmpwL?x_
zzSnTlfGcl8yxOb~Zz!ts;&RBe4;W|&9XWR<9L*^mVAQKZ_$6Z5MdZx#A3S1o2|L2E
zvG8nmMYHG>3z<LgxfSn4Jv8B5bbri~IhTro)<hM06jHM!?Eymt#5hrfhZeC$+zz$O
z>&7bM=+ISawr$KGQ3NMDh9QM^Q~u#Bi_-R0cgy@@WoU9|J$3F6N#^}|>#gtJ`hFkV
z5R;}D!VW@RYjugi0VC`173g_R4UP?OGHkU7x}jv*`2?}Pd+WPX-@WzS&Aumb8{>9%
z+s)q3zS<yI_vep&_q}y|-t3DxMl-z|fceb{fPDJ&@%OLS;3S3Ty^ud=`tc-dAE&Dk
zRFmbE09?9=_NjF)nj2`J!#1H>!NtPM4O54%pdqNOfSq6oBVb$jB{!`?=RL<$cpvk%
zs#${v(8`7_Q+=>6sW=R$nqk3avvq7{k(rV2DTpEDF?DkBnYy!A0gt6#);l*)rgiq%
zrjzQ2Q+v1StvhrX&i*zm^7FwhJ;YHQbEPhO)l8SEUV}#Y*Xm}t4<KcD_YgbKK2_CW
z%;826Lim_f-knvRvDiT&Sj(H*BO{g(HwVGvgpkiGFXn0Mw?F^&FRv0d#kgSdV7%ZO
z=*Ug-;*~y9x50JgJ_G-Z&C$=llK02{ZiU6%d1QG*MDX!+{8VYGJ$ovpnsniom`48S
z2f42qUyw2z$hPkq$d>OiflT{%f!T7`(sy-z2&wStn)NB>@5a1uQ_2saz&8ADYNzkg
zns~?we(HCFxVzuYEv&5p$iKV(&*8iIjvHVW^Sk4Z)xsZL&Vb1Pt}fNO%%wWn{eOd~
z`M~Z!7L51{8Noq<AXFTJkl3SL$AyuDY3>4DOS0}L!FgJ2LHN+dG7Pb{wd5i{#F?d-
zwfpI6X$fzqz-@j{UAq&CJk1^DEc3^#blJ);MXY|_t>UiR2=}Rg&vwUR8Ldt4ED7St
z(&TFcv#!5PQU3Ay9L=uUKue2?h?;RuUl1<94k^-wMKGEywgL8*Ka^3m-d3qAbo(qk
zCD1@;*Tw!x^fm5FgRg`6wAL=18;%}I<o+7d3b_${T-8{7(AI7g>Q$&=a9Yn93B<Ij
zCgtr(qTP0z+wsf^lRoC<X@FHYyUvo8PN>FaPE@<juPffrxV#(k5TYw@=%--JRI1id
z_8&fd{LOEkKV9flna*1=&w7c8LZBy{sPjxb!kHF>=rPCq08B4ilM|GR;u*}&u`vW^
zaVkjMHhnZ1@7oX+cT~5?Zo=QgapmZ!rMup#m-A7&_FRh}w8WCkbt|0WO$NrgN<^-U
z`OvWoT=D|zBv?pPKGKqMx*CVYaZ$=h`W<%#ch-Dkw+#h4T~w;0RLe*t@i462eRC*H
zsad4AA`i`+&DM28zk<5kozm)W#kj(HyPwI|?bGW;5Ur(YGfTopu}ms}2}`dr`~_=f
zi60oIwQkTx>GQ1l;0*&|W@HsBO<<|%K!m$O`Y$Y|K8_dDXmc^agyGIMH~`5KCAOy9
zrg@yJe0e7fs|KqEYvFmD=!z8j!)h{x)~Z}f1@q2Oit)^!QVKAL?Ka!hNqh0cn!CAR
z?@L*Z_mv!NUok$?TCz<4o!#b#3Yrp`q4ogC<NY<YcPBmu68zBqzzaD`DaWt%PBwGf
z(qYoNTyX7l?xrADkK}xd9kVc&*p9RCGMZh1%$!jDVSeQUCwaE7{%&MeiLSHY9E8q2
z@vJ(#&W`C20*{V}>j7_FCk{oVG(t0E1?<(;-dLF5z*0;y6F}AG9gvoSvzukqsDhwr
z1B}jY^WEGB4MD3GW?3pnTGd0ojRPy-r%&gWQN5b*rbJemFckTmg2$4%vw3Tg>8R@!
z8$VEp$TGN(T|NndbS6682^?!^GYA^{kcr3MroA<~PD-BS6HV^BYMg4cYP7lu^`l)h
zVlj1Z6~#1b0RtTrO!VkV2xVNhH@+;432INOChdOAo>@JfDy<rCJ>$k2RM#X$fL(5(
zse;M>6W21#P(;=Fu*~B9amC&$UKq_;mkp@ZWh1(^s+{VTxo~#WYE^k^wVFJ&vgkck
zT1Ec2qWNQb4e8ySff;Zdobjd!Fh_28fBN+L+5hBe^UL2qefn_0V9mqWIyu$HR*ijd
zU=nySP_FTGFwq|mQO2na93<jAfN^IM%&VIcIQmND&1LNJ=Dy6l@cxvS#3B46VnWYX
zz_{5V>PUHrIzh@^dd#8zrHnQ2@}>F}Os4&S{q*CftK(Ico$h5@8(Xh&w%`$6EBrBb
zc@V{;irAwl4y{)JAkL=WbtQBv&;0zh?Dy8uV%|w}MrBl6mZ?TD7LF_y0byT`QHv;Y
z{FQt;cgy!RkYJn6AI{OHCsXI>GQ@ps9J0sm>p1<5*^nM`EIU---BA{i@vSH-#B%bj
z(r-EU<EJ}~jChiF7vplo(-L?(@zHeb2q}1_U;M>WwDHcK&LD^v52fzM-1mP-$?UEF
zsIvcYtzKZ~$>D9yFBoU%<9e2TFbKKmg04^T%A_;B*CzeSoL@qXPX?{ePw0c3d&`>2
zHwb;@bxzz|Jc)7@n=GKqQ?nH7N|f(SNO|96Uf4P(Kvl3tuF-dMjfyHV&vWH@8oqIr
z>3dJUCXrAW@waVg9h{t7Ebttw84<(ku~dx0IbL^<6I+3;qb7HGEns!4^`#}H)G5~P
z_Ahx}mC_r`o@%`l;k2ZC9pDlCi#lV|-ouHNK+i<T$}2z^+aRT0X&dEDMs(x3CYNZU
z*hd|#C<RjjUB7F%6Xa+p<_Kn!3w>`{NMj~z$kKcb8VEGalPRjq8N9|lD%I$<fQ?c{
zjasI1=r3{h${|Aw=0g{y3Mq{a7b}y*q`Q)6hMd6n_4CZ6fR}TtgGnj>_(>__bXFMm
z<V(XNZ5AsODDCnTY_UV(Gs$?ost4T{`U|lUXJ7$&5b4rz&F^C=A~>@weHrJz2}TuU
zn15no$>(E`<I{rLHfI~2hhaNXiZ7@*-j`*P2}0`%xS&Qf+Nr+SqWjg;cI9QnQjboF
z9;ea1v&hc5x@8}7Gn3kTk358I-1uGAeWcInSn`J>D(4I*^eg1P5otF%#!a?^==!}g
zQODeOT9sY9WNURJ_nsj*p=t>rE`uL^D2$P!6!qols01H*EVOaf0U>aYwkQlJY#1g`
zBxk{|wQx$Eu7XaqHV#sl6mRMwJlgk)$ua`(fr}u0rWTyF2NJHwVC&`QKYPKy$uFKi
zU(m&qzmYRII0&-b4`!}79(stdbPHUc7fgK?BpCQDNRCf9K!KE^Wa_UtQ)ZX+F_6il
zo`<aIMVjey`?K}6DpOyN_D<>n?vzrfr@izy3kwvHjI6mc&Xyvtx1=9&7NFwZ_qRHz
z=E2I*z@|(R$rD5w<)~ghK(L~>fI9gXH=BtBqwIdv%U-;A>pZbOr982YmBz@~fNjPu
zuOn6ON>_^0hm{zbG}~0F9&1hfeEWQ6Vi}621B@-C`nbH0`JSm4s98cTlIjiFT}t(a
zm#IowQ;B%5gwuB_IH5{!JiOJrAh%7+3*PIixi>P@v>=CQTeMT%=o=XO{540vxb0Z{
z^h<m5MdvpElFqTA+@J!MehpK9^ZgqB8*0Bs3U!d1n*XuoxAp#yssVcuAHMPQf7-nK
z{O$Py1U6O7h{k8-A+`aVPaf&?M_Hb;);HQAJyxlO(HuI&QY|9m$wrkN9}0h0rNBLf
zg_&jtOPNw~kpm2VBz360^3s#dDHWS12X}I;_dgwARXP-qr=Y_BG|>IQK>Q~RcUFya
zq&p50jzRmRbQ#$wPA$0Vco<9^!{_Z&Z{ME%lpzV|_@Q)ew|_(&Qx*DZy)&CnGY#Fs
z8+D4FLFG2I%u9`cY?!Gd0QudApMSgrkM=LwA>;~K-sAS>@=oURW)A-lmJI*)eXG|O
zTe(Uv$Bx8LHg08a^G}&(c0UV$3xs)RE@cRd`xMYa$2~H{VvL(}UM^-j3K|zdlQVCN
zoJ(;TmTJH~y;=B@Il}J)9~ooW@4s9F^|1IGQ=74@1>%$n5JA%lsqYE_&KgA|f2iDK
z@zkq;J3|J=;-mM|W~&A1&}=h+fwelm-PW`D_~FXF1E1?qTMo#M_w_9W#6Hzxb>>E;
zaqOghAkkwx%`)t^;*fH%Z?{S69u<!TxdcqtLGA$B**>=90laVHg{j^~3@4bgC$3pg
z)yL=ZQl8lB`BPQEA@G)kT-|jePkV?b*#JCzcaH5}%5x|RW8r3zQu=v?Qp{~@L)!!D
z{k5=NZ!xY_BoOr1&dNP}vGvC#;}$dA#Zk~{&EVUxvr6)48B)d)ovyQH%mo5VbHr^8
z5_p08#d?|7DVKe*RjJWY>RHQp@2o(t65XN1G@8>@d97Zj0zt7b%ZgKVwd{u8*|1)l
zA<wv4_q)F~t{Nq8;|jAd*|>TeSbuF`{o#}CUnuyf{=d}B752&7+sX3#_2*Adn+xo(
z)PD)~2Ro^uQMdP+<8hFKdCcBx&UB`86reDAJyPEH_`tBNzU#Ti!494+AXdM9(QjUC
zzJYuT-DF%$9?XM}Oow0nOiwPIX!Kz=zwE$>{NOcUUEU=oOGqYmp*f<L<N{M}Ml3WX
zDKthCMqtKU;qS}{Mg@=P>vi<%?6#NFBf05fnu-14iBl(Ed(@6^INId-!&s8HAx~Fu
zeLRGmMWvUq<w*@NsC!qOc$3B829T2DkOTW*35=``X3$4A(yuc)d6JwxXmxapNg0Aq
z7H)=7q4aHlkL61y_DkXrWAHf(vW7EQNJdM)hJg&&OogTS&SUAxiy)?qfO{pf2aZz)
z0LfLY)5ln3XfrZ5_%;+J8Jbdm`lk5tVPU?$ov+FI;lsaTP5#OcF<mYf#Eb7=8C<b{
z;ZmdI8(K;r#5dHGt`^VgB*qhSl#x!{Si@I#22i)QDR56Uz&Y@RrDUo^zweS(PZZG0
zhJNk#Rv6fjqDW(ma??U(gpm=V7%|hRhA@EB1FVAobjr?=YDg3D`Aavc7jLch)@-lF
z^2tnDv+=|YyPH-!TJ6+oHQHIDX|tovPVIDR^GvJFV#{*6<G)tT^a#jjdWt@4e&fhO
z_@}rL1xke73xGhnZm!1wejdsDX&|9@kMZh`9qQ#^sG1qrpfd(0*6gMS+1-$^R}qw?
z&C{$kA((xilCQo)Pq6Fiq35C84Vcb?73B*Ogqc>cU(rkiLID}^x7{svffO%~@qf*h
z(KtVZYJuTE;YR6mi6AS^qBfu>W67xKKg-PN$$8(Bh7&?Xy!|3p9`o2EDVFk^-`V+Q
zcY1`Rc=Zf^>&r_mxUdKrs4x{;7gR|IGqOpl|Da8Mwaj_mUQ#>hUouCEur1L5GH2nU
zdNfv8-JlHJJ>u?eeGW>!Ku3<fcYP7ZDz(z_`?z%ZQ7Q^qfMQYF-I@6;x0yb$8EB<z
zg?jUJJs3b&&B&vWcprjn2DOc`{CJ_Zc-lg1lc%+QpW1lxb$3^l#qBf0XztTlJ};oS
zX*Ts(wAI`pnI+$;Zr8Xnm7Hvs&|_cid(Hys;d_eE5YXn>(5x%ol*uD6sL94J|3gUV
zRgM4Sr_YyBTAojc=&P{#<=fDoeo!P_>RT;Ot<;Ss!!D-Vp_@#k<mca4g?;8)@Na0Y
zw^;bL?)JGKC>&cF2AHwu9(cPL3X&ixcW3`Jx<5h~Tm8$>{tZ`EDjdiCTIAcql>Gcx
zPd~fD)+m34t#Kr&3dYX3#?5#V8zVZqS#I(r`{ZBD&G?lxJTsry8#?2!XFBO;7@lPf
z^BqM-i+J<mv133-e0|CdR^MI8=tK6+iM}|>cBpy9g@Gim<*$q7uc*ZdqmNVT{8HWA
zpDK|*q&PobWPfoy+bqCK;r34@FO_E1S9rw7U!8)=Wg(EV)wsPxQ_o*=1g*1zSIY3X
zAmY0fgQR9F$5yM~uU5ZbtzN5@)tDBOPJp;^XSE6}Y=dxz4Z?AmicEfAh!zsHg;c+C
z2?A=V)$8DWG%de=`}p(C#WF0WTrA}@d4zhS+hYzoV_w1+Z;M|z=HF`b`7h<3$Y11g
zox=PIdhJGAWRI{cZ)4}|?UWI7lPmG&N4<_+#(15@a}IkT=G*Plr%MnF-&(Nt-v(@b
z`MOE|(&8}=MtqbYFLPe5Qqc7(%;6>xew}Duo<=Bb(<M&mRq!em@IttDiO}Hk{J3UD
zOeIwuybG&{u!+2iD3sM1Ag*ewgrSfi$eWw4=&@K*fHd^vNg}R-HkIr~Vm+}4EftbN
zV(^5<R3Wcn&=fVJ5xT69t!$<ybD=vas8i5gGo6#!b4L0o=7dFT%T6lZUQS{jV~Sr$
z{l3`{Y6N+t0dyH0K?CSCfDXi(0hG*=R-<`k<L5Pi&IZtno5u)xM$j>WUL$Bh&pN}K
zlV<=e2AT#?$ro=U=rx2C+Z{t_sX2r^DUKm@8bUS3*%0R9G=dsHSLjX(Ts43*JqOS+
zfXQnBod(cr0G$T#uxtEk_3plTx}XqqYya`v1$rH(NNOt%z}&63waKMkKF)_QZalU{
zSStCiyr5t`<%xk{spP+SocDwv4+WQ{u9?rDUd+o?Q~K5?HZiI9-tSx1DAsI4R}HyJ
z@mgHEP%q-r1#G!C3~*7*Jh9=(gA8cMKebqA^0rKDp0Nwvoh^}>oo%8O`1g39${~o-
z0oRo1;7A<N2jn1eB{8?!da7_%1=|^G!BdA4R>y+^)QcNa6-4fD0GSlxO+BZQJW<GV
zx()AZ-CqLl`>FiRho4^3Wx*ofEA&>O5MQKMht_>%H`mQ|!ABE+fUGXhrDUG76@I;m
z(JAJZR=<x^ucFCovu`d9-bS7&s*VL|M2U@kb{M-csjmxR$hx=_vC}tady{#3NNOLo
z2?wVxHipQjymP$U6N4`yL2>M+=r9d3-;eo-CeXW`x5|8P+rnXQaLWtm)E;k-yz2Yu
z#v<5-78ElD-3!I%QtN!CrzI(xRGBOq9EfM5BosDR0w=nX$)3&4H-@4fm@hVr_}|v)
z0Az6RN?C{@>{@Y@Nu#g`^r&U57ow;|qeKGj9y0QxoZ?G{=hR(MJBC(>n1hA8X)4KA
zvL|RfMb$u`DV|;w&ibHzSu+^<mh+6Rs=h%5S$BCqqrAY-M4mODnRZ&mrP83}c}^Qy
zsV6MS8>`{Pf8ple7(29z(}spKE6M~k${YJ|Nv&oF;(;4>J6=g2fB*dHHy?lg>(7@9
zDqHA@1c<GWu-|?PowqfTG<V}pIL~nAbYG6}HM1-}W<zaq-8{Vq5-&i+c=Jf;Ur?g?
zrX%yuJ{HjipUklV7qg2W(A04{O!9_V)C-zq{kriI(ur$YPCY0XwxTU?mN2JEwRSYK
zpPpYgpML%uJV;%VF7aQ(t?p8sZ^&}NqEm3XO2yyla;eb2^^p^k%R@r7e?f2muY7V`
zxZmgU%4JDqbc+tlEQZ+DCxuwo^{;$2-O5?6qswfDw`Qm$EA>Ho{}O+QVUqiGI(F3S
zbS!Gx*Xh`9iu~nBkDo*}M$VL1R&xefq}W!aau(I~lnJY{Wpo+mGi!^~Ejhc5$7r@_
z^V}*M`~D@7{l)zAp)B80-xas1PoIDH>B22qX(o%2d4S7NF2Vm!6$~a?ehbYM2|g{r
zWk(#+k7a69^!i_>QBjUGD(b051%hS>S%s7oZYc)@LIUcW@5rRL=28KN0{<-TKK{DQ
ztinu=<t$v@78WSmF?}{*u#xa$@Xf?4I+RS+A_5~7li8O_=u5e6s0=+bAg|E#Dg)aD
z63Q}>jMRrVw2J{h&92DMMz#w+7@8&1nhf$C)mW!?Rk?PxC-!!O8!Ub1NLev%u`&+p
z>UY1nDuizNUvp#>*`){C_&%;R^yTWtiN^E|4j@)9Bg?786c~#Yj__KF4^r8Z#CUrU
zUBebHUWyEoaa(dH<319Ghs7c}GM0+|sghJ``G?A(-+un#`HDJs|EFu+8c6(OB~rJ*
z!?c?27Ho|`GHaS1wQ`Z`vYgC6(9W6d?5PRMOVR+P5&zaG0DZab1UQ7h5C$Q2=3-k4
zBks9{v<cjT*KOyYFC#^B$BjQg!0$g|E`JUH{~FY;h|-8eOGop*Ih8J4MS?tz47{3w
z6i|p_P#55wBg2!0#EVZlFsIg&7=XO27Ra#hYe^6i)QwXW9<tmPhzc=7sS(0!7d1;c
zoN}P)g}U&pH>hY5??Y(RTdiL4e|gC^o3}bHyc*7<24W)16?ILi7bx}<Q;of$h6|M2
zx{D@96Y<Dk$=!{`1&*%KS&>ykxIW2%`aYZo3>4--l6Z+jb|KX&%L<}6hcFtf@icZG
zGq0l1R4{A}jhe~k*;+|OJ`4<iI77o|`r^kow-{I<cY7{mZDki#t)f&QFC}s0X`|cj
zWACQc9ir0_DGN+<<nn4bw_ciGM18aMUCdiuA9^rObZh2T@d#O0(mq5yT&aj{yIW4j
zYo*Rej4rH*YxhUKYs^2?aJtU4+$J$n@|v^_q4BBR6l-DzgAlJNn4c*f-)*L+*|G(R
zFgH$yLFn~1#(;3bZkrIPS+k;~pbEH_uPmtJP|*l%>?!YSSx07riWf@_NGbsMP<T|W
z%bvgqL-D#Ypfz}1UFo~4)#~g@g=MCx6ezK#=sMHNWz9m~tg>{az)`%e4umPsTlTp_
z=y2VOh`0X3O66YC0Q-n-M9Re4NS4YZg7{~mnHXO*?RSRHJL_gFpY<O!a^67fBp<@p
zW&Q`j=cGITZupE}0-ya$;WPhj@Y!y`XW4^i5g2gb2@c9P2hT5p&exj|c>^HxF+gUg
z>)hOab?(1r5k{85$njYG7Qf1aP0c7bT>a*K&euPo8Xfw^1elVH-rv$KEe!;t%NIMK
zc~iub<*UEx*D;IUuX%>X6tlY2;+OaQ&F8OZP+rg}81+B7{MfK+yl$pk>h(Itb<4@+
zY9+(`$kcyu6@g@lU$HR0eyo^_|L6*AfBAgjM`!tod5x9Z|LQ=~@wk7FTMa4rF1eWp
z*Q%KNeUcLoVMG`eB7!VN23(N<HW|&0vaq+98q$r*p|Xf|xRyOSY_byU;EU_?g|j3n
zt)}$HS@t$`j>_hBZ}%m_Vhd{0sII`z)xovzfpzuQKU+l;pH|Vt1-fV^%ca`cgE`M6
z(hk~inFMJJGg{=3>?A`Da5^R91H(o6Sus~wN#<Kokux~1EiDY2<|*7i0TUyy7fAq1
zlmdZ5Yz{H}7N)YmY@4h>>0NNZsfF6(l6E-4qL^YV#tJ>G&+mg=dm4AG7z-iDrbLl{
z6@x2o<oL9S{X-Iqb(PLM<!F7XI_`#qVaz@cm@H8RsnTkw`rXS0>R;`hS3ZkW=gYG5
z<qhT|lqF=LK_y}40w0BGE`Z38Q?+c?%!PEyj7bWx8Xyr1wWUnDMqnuuN6!Lods*KR
zO*l>dX~@ZX6Pg-aozNeKH&UON(Q1;Sn3`Ej#b+W7ws)R<4gH(0&LqZVsp<?+F7A(p
zH+WF$0*$HBRhDi+jYkmPr`Xzo#toGVK`4O_Lq*S;<eMqcw8Zo?xTZ)VH<-h<ApWDU
zezraMuSpFRKc<ywKp1#yqmr_EFMWC~o08~pQt$gPz;x3leGxs{gT3>X4@{2wyQa1H
zzA)QEMlvxl;4}1R?+VadjCa_{I2gPnz>V;W+fYxj!^y+CO5pNA33Y9(yrBaY{G|mf
zF$h(XD`0j2AEG$NOhdE`Y$~EhWtTKxI?ER@;Xk~wTp?&|ES@J-CuTWG_hc}NIkEN?
zzm5f7B?V5Megy>c-3DG0OvhRU0*assfl2cA1+dqEZ#cRlmjeq?`Kt7}=F1X<j&^(L
zmGNoBK}Y6o(Z8a3!8fnC6{Y$CH27XLd416W0CQ(4g5jcEDaWx)RwlTz&74%7sF~WL
zNEca3#HN?ok&kzrAuMpctWFsrH_Z5sB%4>WWMi<Zr=M(DO(0_&Ky8ejWPG`c8ylTP
z564`ywzKuSV2%hn8UWdbmY9@4Gl5$asdf--^*)>BPL^aUC50yE0e$X4ac#TpH44kp
z#kN$7+rlS}uFmF#AQ}zfKcB7@^QIEb)iVlow_z|l)Hh??CO%HnjT32tUQpv*?p#}>
z5gKlFc8ZA-$<gR;+OCsD0$*A5vxvSKJk>5DJ2@mFW?I*(2Nc~1+GB?Wx@<@YN+)+6
zqIzi?&}uQB3kup<6lBy^qCIjUe~fyY_$o<vt?-zak_|<@L;fU1H=dF$*-889+$qvB
zP0m8q+=9+=XE|3R*&4HIRM(R4<$-JMrrgTnzQXQ(657?YS_olEBWfmR)%llnvT$0|
zM0t_j+S243#8?5sEjUCo$7-}7&S2h9$>lzZl?6Ojrl_)~tqJ)yRdnka<lIb|=HKi3
z=l4&27#2TtkyM~^awOd&0dRK=hwGmE+jBN&*NJ)H<d&yVh6TQ!6eYP1Uqs!O0VWiQ
zwWLV&6+9jYVYsAD0LD=VRQCvTl@VG@-Rp2I73PJ34CV~3gvh9Ke~qHBL=cn2cRYIE
zh2`u^&}PdRXT|KyGY4neV0ER;Jm1G2*+wy4SWMHTMf2CpAzPIUg>6Jh$hFG;LMpPh
ziH)4tYixn}CI(-N=0uqcuEO{bK|i|ob>RmmKenX<LA4@G)rzikTL@PGL9j!7A_1|%
z*Wo-D+R}rzjL{6<T~J7X!(6VR8CFE|cRzn!y&GPHWloyZoWQ3W`+ACF>zNzS>%vBn
zw6KHB5MX*(0ttD+XIqpxT`F?R7?9R>4#PU*xGo!DBO|=0f2j&eYO8D@(N3kfBz`Sv
z7#0wGLu4;+zA+>=(FG=se08946NTcWrLlihFd~a1zw`bbMpK5+9J#A9Fe3zuv<%fN
z_dT2$9f(AElbzuZ15GgyxxWeHK$R1(lF4?X=z$aV&_Zgga~8*A?)|n5DCB%w1{5Kb
z*l*et;*RP&9iSpl1iD68hZnLrer4G7OJe?8s5Abf#S;$OIej^^_o6!~wc{)WJ1}lb
zqTiPA`*#;A+aG6RmEmjmng$KgXp;xEI<8_qo5>(!+zTOFKgjY)A0(DePe|-??qBV|
z^YycT`uT@*-eztCusjP1E<LxS2=e`LA4<IJBZ(KsSLV<*FXG~mO$sU4Xu<#d_By!#
zNPXeeq>)WC@+EzsQ4GgE4thBcgRX~%Am};(Utccx$0kRWnxS-Zw7G~Cf)#Vg()$n5
z@S}j^(b$AALL(8d!dRg}hh{V{XY5^ahxicljOgQ}D_@I56G@^gVZKFME<osxzT5T&
za#)e%-Uo14J`Q(^%!k8LZNzG|Qn?bEQ_0d~!^WL@e>h)_U3S<oy=jZ=`Iwy6S}Y`B
zmFh)xyJyZG>*0}@lLWclf#yBPR3~(=!2Rjz=daHnE?s2E=rxMdAZONLXTozN*7qj!
zzu~(g<O<`sm_L-(jhdB3hlq`)<O}#+(sB?LJvJUfJr(8cAk4y2j<4_I(uBEpid{UV
zIW|F3cI1?|J3!m^Rk^r?TrWe{X6YA#3gLRJb{i(MyHH9R<<ch1pdyJ+8)_q>$_Q7h
zKs4Z!#wv)M!F~W0oUWy8y+}n4^QX2pIy<iW_y_@1nFD64eLgUT{Ypl%Snh2l8|5LT
zhJnGF1+snC+~-CHV(>u63C&RSkYHZvLKMQ=e9FT0M0`mHBZ1Qp&_~`jnvyoLilYn&
ziqM3nT_5u__j{b$bJWV9qe3xhG3i-Vv~NQ1NSG^vQ>d!>;dyHf&@d;!ELcjaY#CD;
zvaAh%V6Js4U|49N_$C0T+a!Jq*Z7VxPsPpK!as94n>n1f_~StvG{QGfcz+$&9EM*F
z(ILu1ZP>d!5Pg?|0^XoNE5t0HcuhFckzoV8QYC|R&x0u|2qbm1gxD|rzet%+OT{g>
zYWiC`SC{K`u{&>{es<3BjD~IFE0~}+EX8ymX;<s>r+}lyK)+x-CT2Nrq@FKj4j@)R
zGE&dJ!X+(Y4Tbc?bm!*mX0xi*S-tT4cpm`i&_r~GB7YWa+HwE~9+$es6{OnY!78#d
zvUzYKvOAcYn93R*O&-~z@S#kl<*#5%^>)N$gnfAfBQFF`e~@g__$YcjLPBRy&fU+#
zOF(M0b^HNchR+n5L)-n#AVLGkFi*m4Q1B`tC>OJGDE+=HRZ_YF`5Hx%Xp&m6bQ%mZ
zR(Qlj($Y>Nc?PDAxkKb4<8U}8p?Zc8r4dG@d$}YLOR<+MN#Q8=%T5(w#cy7oH@|%T
z^n4LYA_O~FvdkSg(H~<Gx)4}FpsYF_swgt~Z+rtXpyjF;Ur@RkD6Wu$5sXBkl<X>|
zjasX=(o(eyPES+fp1FsvG05D*r9tHmB83kLw^nEhdopADsmk?Y;0G)Kcz~UN&Mg8s
zbX*MB(gD;Q8XW-H4#WVk8^K7=6@V@P%RIQ&IRe1|%94eFGf<*2-M~mmKqwjj34D@(
zN1!8{JTLx5r>k8l(fW@p>djrC;|3@K6G4fO+Vut}5eztnkse~6!fp~ZOR(wc8zBG+
zQyu-7=dlmPX&OVrsYjM!N7&fWHmF059CNl^OaM%;o3$0-ppe>T2j8unSl_5c%?MN*
zkPjCf&niNwoQm)fc6Ae@*@amHXVx3>zSV{S%|QlptYkSrCIqzJ>`lnAm{koKBqgV>
zcvS~irwLi+88#YXrH(loxRGQo6|Fo_;;tj{jW~0gD7GpSmw_r?DunTyS1Thg*94;(
z#SOI_H1e(XU5=vhHk%w}V1^z;PLvN|lt>?Wv0GK;u$q7O`gFdITNZaJ5pV!ug!bo|
zND<w(Yc3hm!G7*wH20X|ea-rq<=<3-L$X?#nY5%kaEZo16~-ut3DtqlC7Hoqz&rdV
zba_-^G-C{On?;lcfQB@QoY^d&q}gF9ib9hf;zqE_boYfqwCq`FmP|mydPkkuYeJTV
za;gN6f4z}!aKJZg7!)POjmDbwO)Z{>lwpBeRfcJhsSK}<#%1}UhPq|f&NSPJ+uK3U
zBkQ@aX0+1|az|tsk>)InrksFj5wQhGSQ51L^0VH@0W1#DwM#J%%+Uy$yKG^S_Wdk>
zv7d)tw&Pxoin(N&YrgoQnbcb6tWfgR7Zzyun)X1aJc}fH8oP6I4etKf*qW#?PB>$v
z=t8}lL8b$GGAGVxX1o`7=_lvaFed}*W9v@<LDH+gr65}{XT?>m?D5UYqj}%1I71Cz
ze|a7@eUpr7N9K&K=tGL&%jL1=TPi3qUk^?m;&Q{yO1P;>gXa<0U{?9P8A#@`Xw519
zmMJ%pcu5O{UMZ%b1BgpdRm~++NBa^1mPG8^tRoGN)rljHeS2!hlAxkYA8VfYwCr0M
zvSe8uIaG?Hlouabv|;?+%Kjw&{5WBO3`4SE=-(KI*OShl4(jPpinkoy-(QYQVf%du
z!D%xOGR-gbl_$JA`t$P{OsyZLUYxzb9#;|y*wfQyQ9R4W^|eJkaQ48Ghu2=2NrL)e
z_}S`vu}oqBztPPnQYpSbMA>tvTOwsX<vqbjtp4S++}D%#xZCZq+55QtaH$j06xAZn
z$WF1vttm84mS7%6@AX2GVT^Akt~v6_dBjaTaRYVi`ROqza@kRo;uF@|cdT{(S3m#t
z?_ST(@mfCo>l<mFQR@wJyijlYl?gZe%7k&lZDFX#Bl7V#&%ZwB>@IDyi!@vZ$0BxR
z=|Rzc2uQA2@bAQ$XwGiaA|vN~H;j$_KEw5zUO^&DO$LbB$A!|kiH~0SwQYDOF)>gm
z<(<@EXPKcy7S>A|1GfKWSDv%-oR#NPp0ncC-KxaNg%Er8`lx^DTsO$*x~=1GY0XRY
z8~S}m;KC*mCBO}ho>Qrtl^+lDZ?@Oq?s>x9cPHFE#HD|?<{RP4m*q;h^2;FR6VOgd
zn05T<2av?&yK&T`AnCy?Jw5DQdlAmF3uO(FPp-U)eK~&mT?5FP!P~C92=(+KX>;{=
z`TR%PX@33r{IpHMPFo2EU&O1!@s>E1U{K>Ez+i;#n(TU3#%Z{?#as&3@sNg85wrl0
zW7h3`u3ZMQW2-%TdKoZ}0_eGUc;AYq#Bo?be6F9aW}JWj11iOMR)S05P0*U7b}@Kv
zdMdbOkp0u|pI<-z>e+8U{_Law>F>7kCNsu_;qQEZ&Ewu#9(|LarS4ALI1~U&Q+Uw3
zq55Znhi?jOe9!(^<vhU95WN#VqW2pR-1&tkkEOUgs%Spp`7CB}su;3KO42UDWE1<k
zd$3*HZ}5EmW8|ajpvKcQrU~Uy3R<>^b|B5yNU7n3l(!P(8W<pvDiNt@DKwD_UPe8b
zxI)r!C#%k57aH|}_i(XPq}`<SRw=tI7VSfv1QEz<UsTy!44XtrXulWp&%rEK3Wti3
z2R(*P?GH2!Hjt%?d3jol08oPQ098Zso>QdN4b2)tWWz}a?|Up8Fa!zvDLB$V-QL#`
zR(1ip4HBb?DJ8?BdY3J=JO<b`?7{H64A<bI)Js5IP4U%=FDjSm5?c#}4vC<U2Gzk>
zau?V{;A7r-27Kx6=R59n3*M7_v6#w&?~(DdF3o$7CYI#8`Nr-mlGJ!utO-q^k;3$_
zp_DFf9^<V=K_jJNU;$mnpsET<m?&Yvs99<ziBz}LG7anV;;OhMw3E~dReUA)FNKFe
z<uhBBWF*sDpwJEU;bP4xZr8A;)H;w2NROfrGgSiL36gYJs;;p17!e4)53uEYDjKX*
zLGufr==K8V@eQ&z(PEL1i6zFQk)qA(FuiE`rJ_kn0G}1&REX#8n}`cADW)H)mWyPK
z*;2bbAVOW#*<Ml{@?%6NhNrk=g_SspQbe_y)_YCmi7T?^0$TRT8V#nol`f)4SgpxF
zGZr0%Q9#;8Nay7Efxl-9bZ%K=n;&^TQk}3MMOk;7f7Jx-A*aU7MA#Oy*`qt+Ln!&O
zW>IXO0(SwbzHWVieZ{U#Pnq%@3^C8acZ=IE))kFY(kVGJ!`LLVKI$5kwMaOaha%Am
zB`b@vRHl)!G^_JSw{zU)qB;hC$|y2LW^};p%M69c3*~akCBRe%^Tuo_8DT991j<xl
zUS_c$07zO9GoBB8GA@YNqfG8hw?rkTEhHeA$sn<BV<G@9e(NbTuccWCaD=5OQMm6`
zzZL;rc&2tNKWRc927^#Y!*#J(HNc5YE3>1CeGKqwWXP_sJ7Ta{8lXX3EMwi$ppdlK
zv_W^Bkz^x?KU_-+W!VYjwN;rB=%@^`d3T~2GMBdYBdoO4Y)h&<1*oW6DXk{$t?Gl_
zW1;u@lsPgs?@Wb-K_;6^Ogf7PkwLZ8T$1wp!=6hxReBC3EjXq~zGdv-^IA&$JmKNZ
zi)~kVsuZoHF^$jZu~I+@Ju*LJfO4I8>6Cet3*bPA)7Nw&qG_oloKsd`Eb*@%92{};
z;HZD;;OIIyzWmt8O`MPT7&(Yd@2!JnpoF|<*)0kLX6FKfLZ{hDEwvmz=2;o$zbfxP
z4mwuq-*~JHbHA4DlhjzC%(GHy?$!;^tPDRunrW8cI5H&a3C|dUYN?#{A&0*XZl$De
z_ZHY6HnP&ynmIbBhEfPPwH8^$Goj0B|I2nCK{xih1Q+cLx{mW*V*R0A!jdPuL_h2j
zi9tEtB^XNf38lVfr(il=-?z&43bxgwy&|0L6`TtlsAp6+^3%nX*lts;p#sqtuf)X9
zKYsqn({}5*eCLd3ma|co-I#c6@>-OgCJs6PYe1C05N(kqF8Mx3+l!fvo}6%J9SHp)
zi!G7amu#YorxY~zft;c>S5T#{xT6c;D#qfAj;bu?B2{t8l3qChQy>Rxnfze44~t83
zeFq2u8I(aqye(ve51B!ld%7b)Ejv_MmQ7H9f~FyNF(buGZ_LwrC37p9<@=D6c;}ij
zfil3kFO|Kx31V1PtQoS?WfPvr9U?cS$>4T>!rJwC>m$>4a=D%NP@12w8Dib7J}Yis
zqKSmtw<!2Q3`$n~c3*J)76qTQcoug%v+jOh-u_QjdR2K^9G7@A@4mEK(|0s4>{(n6
zW&b-DI}0nuZ~gT9r%xZw8LqbS%fdbsfpWsgfyyoSu{VqGXi7?;Axez;CIxlF6SNcO
zAbF?>jq7%nun9r|!IqUu^1Q(Ihh7myEr;4D$0}Q_s^!~MMAtuk{MospWV9VGSJc*#
z=B4{A9cH1jrac}8TpnpRN3p!cmTZdI14Iqq(5e(wo$o`e(>RLw>a-B?G>agEwRQ{%
za-kFGh`{>A^BK37wB)NQNz6IgzjAqspAGx};v4EW+oZF!W4k18Ve~sD(db3$TV~P)
zo>M0lJ#eHX%CHolv5LUR&@i#SHJ=L>R(|7~1szL)Ml2}4ji3WeU^l!_Jrw7XtdSZW
z<b~yt57;hmO=AO=N!(n_x70ADqcr6MGfw>t{t7ZDl4(%8{Adnh$3JAyt;le_FLn94
z;VMafsRo>29Y7U8kp)3VH~L-a6vB0H?bNF2+GI1~$TKVx)RA~Jxig9}@uZkeO{9h~
zz?xz|POrEKHKu9rS^u(vYCcs^EnlOcx`O)ee|>hkhk!)vn+TwO)fWjJLfh#aFx1>r
zeDz9e$nB~J+-JW13ow|vj`H7MPH2+lgFf6Rso<n4w4uwzWQjDK`>U_bwukHo-@t~~
zbePA$DXoVB$tKY+_o0d#!nPnedqtc{f!traso97&%ceMin3ms$+Bq>oSWE~TjJ>b<
zF(Jx@-16yL&C)7+t<Dg62KaQ$UQY)5_E>9ld!vs%={yRsOJGw;n@p>p3#nI`RiR^}
zXO3qZ!-&BEr7*=HGpt@(U@%QhUM$3Ju$7T|?cK=Kq-Tz28#$L}>k7QF*>M!JF04qe
zk<SX0PJ8fr=((=9dv25SyI=qMd3%VPQ1fymeW_6=2244o7|p(|tZ}8d(%XG0S>6*f
zyMD>j{JOxFg>r{h$oK1TM6rAhSqJ*U_$h2MZI?qedAdYYKMmgySjqXl^yIf~pvqd8
z4aQm$&~uW=#88oY%9su`OS?}d)rZf41qlNFiuOK9*<oNL(1xor+YQz1=TTIvGUr@Y
z5ddcu0zyueWcCD7x~)m6_3u@`NFD$A{ZqgHrPTZ**sY6cSU`mS6#)@K{eM7&s{s*8
z{nCI4q5iK2M99|zBK-7spMUc4+}l@pPKGIC|6*D+n3XjP)11<7C+7Y`<Q0*(u9KU6
zoILYae<k11cg})Wv0tEjzYtKlN8wI2i+UsICygAwh({@fVy{TfMe4H)K)SRjP4Q0X
zNi_Kti+fqJZtFvAF54pK<H4M!R-5jT#)BG~@E?n=d6I2hEY31{%d`RAsVVSuiCql7
z?o0!E7Vc)@DWm1?X_a^d>}}Ry>q>WYWp>hAC)IiS&Q7p?8B~47mLIE!NKLs#lb(;T
zZEJ;M{&uo}ONt?wb5nr%Ma;b(t9%46l9{z$H#n!~7v3_|s5tb4Sphm4oay<Ew{K>7
z-pZSG`B|5m;j9_=8TlyFk%pR_3*62@XDnUtW(MB@zG;=3xhm^8N)6Zt+El=hWv{2J
z5@wXx$X8=@mhVNO@R}4fe)jaM=ifYiI6JjMFol{fN1sEQAy2yvdcE?8cp}R^@?gf_
zoxa|GYAQ^z_9wY^nYK2h!LZ|7iPv7leD+i>WJ-MBue~_SK3&TceR1W*d2Z5gg%2*C
zqxFPdOMSv|_I&QLSe^QBdF`hx3dfga1#$S<)2si@?|${0i!f|aVc1ft(r^j&D?+iQ
zxLi^EJwzcqg#NQ2;Dz5<K+8v)@8&>Uf9w_{jAyeP^J94IW<E#0>4@zi2PwJY{a6&Z
zH20<c$G5p7H;Ip_?cy-_8HZsi#+~}voUP7c6@xwYuK&c?daTlCE5@p5(|?`(huzm@
zM;`Esd(CgDaNzdGw4fImqe=2DPy+Xib*~BCo0xj8@f}Vb3ptVl@oR9#IruEq0=nHu
z4TUsMcPL=DQ)@pds4z&-+A!1=LzS(OExotr^W$RK9~b5Vb>Pq>8rv+kdE3b8T$<O&
zhB@YsBqy&Dz1`K)oURXv<-c@xjabT74=uyys3dn>o?B*F4=G^B-pyU^7gYTa3Ohp;
z$2<4Uap5z)tHRkgTkDpay|X;WIp>dE4aXfYKLdT<yxd?oUHx%4%@<>vH}iehcfWEm
z>!Js%CWEGgzWc_VeCq5|X@O`k?KXdHW~S4;_G@MlUpLEn?!3>B&Z^th<7Yj`-I*QK
z^=tr+ru`o=@{)s=;OAXmM6au}w7%<m@DZRt|LTm7mY#~8FXfJLhiihz-Q3{M=S6BR
zFKw7GJA&T;y2^u?BRxdv851F9a4Oba{;l6<TpqA(#Erj*kQd<@YX_#S+(uNUMG}!0
zSbn7k@<PIz`OZsh1Fm(DFM%%7AA}x)L3eAva@&Uy*&sDoU0$j8rPYU2WZs0SE?94p
z<xW-HT@St!ZK!^|>hW!#UthoX<JkLQ#9~ByRA%?6cjm19t53OQC;94U+VhjE9&n%e
z_Ah?5_?qvvy9LfWiT%su8Q9~TkN-RmmDv4IV*aV+e`fDYdgI8gIQ~_LoJFI!lSe}r
z9h6f59dhgRD3Ot#cw)^cNIre)_kZj~t!~GjaaIJjs@PR5u8-u~-_ytEAJ1)@A4U8^
z4q{e&3&6tc6EAAy>0xG_m!-VKnkMavd7R=~ClT}rmJi`Ac9E|{@gy9_RiDjGB^28r
zKRRX@qvps9xlrAn2hKQ+^04FVixQQRF*SK7p#D-V8EM!)qa))#Dv_$aRgGP+oszhL
znFR(O(n{-&v+e}BN6~e58CO4+^y>XX81WW^+m2i><9a7i;2dD=!y*)!DG=2Y#>OdU
z<1K6Bl(&%%ugp?>`8H(%As>GK<N0w{e>ZKLjEq0<ohU^AIWQj*p0*?BrUGxy$CC~C
znkl2avG*5a6AYd$PmpR*+Ms`j=&r0?r9jP?E(u%90n3mW+w_-;AQ7b*hop4Ix@wZL
z^Ior%P&qIiY)9tag^guxH=5a@YF(yNdk)lVCgn?CE+KchUq<f8t#Xb`tjRA;Qg$)}
zxj-+KZ}?2|c_y8H5&vSCRb^!>be&K8I(Q`5+4wzwZVNrvrcq(v^+nmaUqY>({Y+bJ
zduVt*BRksI8Z%SU*pb(IVBldQMPZ5Y22?y-{cUVxDrpqx3zSFplBOp`Dj^~bIMcRC
z!!ejfCW)ly$QVthX3J|sjY*J?*Kiq-ZqO&$mBGTF@>)&$dY1rR)>?~BisDgG)ax`~
zJM!_`(I~HRE=hM}4B<A!-~^ZA{gAR=1<K<vzm@ITK)r#10r`wl2-}HSN~7*eXWq)z
ztG8CQcw*`bT~=@1?5&$`9ocy6$i|S7x(=DC#A^$+bFvi;N6{D}?^hy4<1o$OMqv0w
zn{#DKhlN!Dy032mJrfW^{!__(eG8CB*1Md$?H8~N71%xE6$)V~dPI3zHj^+tF%C<K
z@g>^g5-gRwR*q2ttTD+qjfZWq*^E3Ho@czBsa*JwLX4+xDaz#JW+v!q1)@!3L6Ix2
z4EvC&#RJ9$aLIQHJN9m!x_wW1P0z3G1hGZ!1H2OA5_|$wq_Uy41%YL($8HIT0AP+c
zF;C-1ONDOZUd+r_95E*JE~U!0JFMWXfEl3Xbz;j<ch~6<(PT!Ok`$Ats~GM!2C7h7
zr=_S`9KC4n3YpC=w_`?6uLg3@7{ot*!V2PSYY|OdO#v|_tx@`Aimc}CEzl~t=BPW{
zF^4Hon>Wz0%?)5K(1mbuXt|C8NWgxd8!#wx-IR6_Q%=+6g(p?Ud085DLUK)OETe!!
zMFj3)hg8-!=zGQATkfnHe1GVpu4>5S5(?(`Ed!hA3|X`NFpq4^sHq1v?B><G83IAd
zDD0+;ALXG^v<sE3LgvnlH@WCM6HZ~|I}92HW?+Q^DLNf1zYi^GY~orD)2CUY7Bmh>
zl&JzW7=AqriRJ>^3P&kjO;V23He{#PSH2^cePBt6|E;B6Rd_<a7bL;CoX#bK!bi4|
z8w*qIr|{(FsF>oAx=hjcHL;R&&fBbktG-&L@G7v;)84??v0-ad$Wn5urYeW$0#j5K
z<~pRPwhBeNR9W@N^GMk|+4QO7Q!CF=-U*C<zxlK}a{F-3I9irvA6jB5@;ZB4q9&qB
zShRGL3+JY)?_fRNCUXNH!XY0FNPR8CjfnUqKjfO_mWr`l*cs*lAN-!Vb&wv+ps+C?
z<6a+SGm91A_utxoihi(~?oXQkw##xy_{K%@@BYWS{p*~Qc?#aK8^Q#XIUK*%|4#`k
z>vS?Ye|h@w{Kv<?zVRKf5kO?<KhE@91cRKC(bTX3deGY)NHwhDtpGL53*yBgFjVR(
zHd)I^KG|p7SA$Ys6W^zL6?0oco;9qOp*kI{Fr>8c8G&YuGWRK@dwhU`xurHqVRh{B
z`CJ1h8HigrP`t;s`vRM<NOc&`0Ma)Rh8K{F<t&j`lC`**=9yMTQixoglp(MH!(d@2
zkS+iQ54b|)B$bj@^c2sTgbF8?%t@Ip%tGIikE6XSTXB36lr1@ZqUa5sjdX0KyyDFp
zW&%=B8n8%nP1z$dsbsXMa3aJ2^jODb+#%JVW;~b!py~j9%wx7US49n)$&`Vq1u@Pr
zejY3++KCQQe&PjuuS~;qZe`ygM?LS0Wv=r_3MO4GIQ9|4NmT`>x~y$pZA%&!hJ1RU
z9omJ9`qDjpF_NtMVp?snlPVgH;u#K&TXPyWjW0zqFgf!++ZfxlXhQscLb@lv3i0GG
zmdR`G=2Ux|>X;CJBewzRYdp>qFdTp(*s-`o%_mcCioi}z4&b^+OUq#Lea-TdId9AS
z7g0`--;`LeOOx9lS0rbYu$<<QdcyQ7ZmYad^PEDxyd^nJ1Lz09v6GZK;WP9}0ZsJ4
z>A`IZ3Sp8{21FApRn=s)PWx#+g2Gup7A|AVbWnuE7q2FxAI>l%t>x&00vf`jwW{Hd
z$gCgQLEcGiEov*kjMbMwLzKQ#`M152F`GxOG-!uX6$jO_{wcD>4G{#@{3b_RigNze
zEp3i_wa3Ff67Qi7MnbQ5KAF2fe3KC;$0~@XBv^t>1DY^1)6cTxleggk<i!EW!zj6A
zJ@M*^74B8|HcF_DJeh7Tvw3Pundvx8zYk5a1g??Q6WcA)i@IzZ;K$!Ro~ipR8&Swf
z_<{5vW1JfB9Yv+7%k%7;Mez2$ld;67(3<R(rx<#M<BC#&7P*gbqN9Kl)ki&5ueuU7
zKkre#;_bm*DC8H8&j<cs6=3CI_n)zX;`kJ;2m0J)Bxook(<d&AU?fSaUr4DmqZX%^
zPhshplQyF}i11cu)PRno(<556YH5s+dkZR9WEN4VY#~=RD}<oq72l7N$|URs=rSgf
zYJZ&LL5FRC{2U$@UWKD)!$XhgtrFx0@tmsbxO0XZx7cu-Yfc+JHwSP1>eixeM`OLx
z{mFt&s@Li`*6bloJW?|nse}fZ^L5m15TZTk1JoIFy`TN(mObF02Oe<np*6&RWY?f<
z(O;*XamG$-Pz{F}!eVUtT47)<%A5w)Gfy_GngbXFQSF9K?f|N0o3bn;JA#Sd{j?U7
z537@kgxLuG{pR<dK5RE{)!w$R)ZTC%J~iJ++9=xdOZsm-KB~YWYdh*HBEycdJ*?(A
zvDh)4boNJ)R820s#O^WI<ZTn=$j!~$lum=C`L%Q*`7xLR5m`%gx+<e+L(aJl{q_z6
zNr}xGtn$Q53qsqlo*ME>uLCh=puSg5Ih~DxmdF6vf(ej%qT+1_cUV*>53{AzOEBQP
zT>wkku<%ti)$jpLXTh*wR3j4O&==7}zbz1Z*CvKSl1^_9e7}}J<H;9?tE3c_i*~I2
zH*w^=&oPKaJENp6%n$Z>Wkc+eQk~tDQ^?(-9!fJ72bO%UQ=J1+sw`1clQ*qPgTrp~
z`_5U80qS@_?UQ4Tc6kOyb9THu`Dn8NK0ByJ*hDd(_NJD$DQH9wH*a(5=ld7FT#PGY
z+DAbWVza3;+I*+b9pVrU6;_k8n-wNGA_qQBT;Fvtpe$gQfxVryI!o}Yy8}?7YYdJ~
z`5>nq9EAX%5L1GS?Xt-g_-1R^jbb1y;;AgjQWWMsH$1}UP_+v)`VKHulNwv$`s5uS
zMqRW>Msjwuc|XZ{7sf!J&45)EoK^bbvs}A3s>>*cgW(uTrff^5|Jiirwuz@eJL@+h
z*$mlp;O@+GD?QfY@rT9Z4~vJ?Q_N?pM-6hv2FXwVZ7PHEO>Hr=22A|Dz^x7%`=#II
zn9jQA4&76cr`z85kL-KTZ#Ta0{#hGe*IG@banzu{2j-_82k<G!DD&vy^E8Q%ToGeh
z@Fd1h5;&r7Sg0XB>a6`HaAhZK+B&KQ1hLpLKEi~mLn?Je$ro>N{{oNU^nsaIGgdIG
z7mzT81N3#qD#V&WNqhfdPH0(s!4wRm-XseUUa3L!A77}8DJz`L5N_8=NAOU-&sy~s
z=7VMju?=ex01$7Z`*&@HaP8C4&HH{g=rj6D%aY1>b-YPwywar{sk;oi6hzHrq5I+o
zBsqXzOx6)C#Kzdk8>{(ny+zHONgUd$Lv@|UO0@+<+Dw0#OCOkJg$cJ6A0et>2*jfe
z&{4jr%j;mE_p!2#M8$ni+3707qv*I;s!RKFN^O}?$7OrS<=*B(>vXe@)Y6@<bMOEr
z$E-aeOOWuKcYf_ZQzXS#WWJJb48$b0oEO7-Bio=JmfA4a{|E$RtrEQvujFETDVBVq
z_AGKnzJ)l0%^O+fS*6O@J=42U)b8f&HY=qnHY13HFc(Q0o1ic{y3UMUFXvI5u`W`K
z6ARcmBcIf<3xU2Dh@vs$*9i4(L%x^fFeE7Xtl%dS5{)TGsSxfQ9vbp$XLM>ds}`p-
zBxXw2O<JUoXt#M1b?s#V3`jOmb>8eXP;LIZMqiO^MBObzH~JzDfKlIU+eM4DFk!YO
z3^5r-+bGJ6({<Ll@TSIHP(%^zS)uC_aF(0JRi=-_aI;W$f%-)*-sZeWGb4#0V;_W2
zY$PWk)S=fD^pjBo35%i{^8KOxulD8V4;PTp$A8wI>;)1o(hX5sopsbB9p$`gHsne^
z5%!;>ILfXcK(Ng-kj#LOttBp>U$4h($t6BDr|(Kx7WC+@gr={ilMSVBJFhpIJx|~3
zWva9JTxO?o_F`#R;87ik1Vhq7-_0m3TxqpS-kS2dYj<T?zqrk!tz&D@)6zRt1iSrg
z%W^u}MhOc@+9!4o)0G-@aUxxVRt1bUUluJcscCTN1#{<~$-x9xJMcl^fp0Le9JUJF
zrnrPMJA(^tDGkL#4E2)bLIPdnnxy|P)>Y7!<jHF>w9-U&Nnub3J}P9rX+blP>jGRb
z)#&eXq8@Eo%wK07jx)&?R+{5-eR!Y5Pphw>%O9aj#Tnur?7D$VSevuk0mY{S4J=KR
zCaV`gGs$=2O5<?JECbj3lN~Uhuaxu%cD-<TaBc|dUnmT9QVa6MNeJ@>E-ziqX_p3h
zL5MSI2b|}^f##;bp~1A2T{P=R>=iamPT1`_ozsasM)NtFIq{;5Q+1{Y88y;rq@9?Y
zfO^?vmnV-<J1{)dCs~G}D1RW%LZ?C5N6ap>xogU83o;6r;s2a>C%K*~;DoLb!0iHk
z$}Yc%*Q5Y4)Sn^c?2y&6-)T6Vu2;8!7qFL;t?}`vPpgI6`R3R*@mm?Fttu!BNt$g8
z5cc$`M676AlJX}2CJA1|90oSnU}UHYN+>Xv9V>T{0dk%sl|4NGu{VDhusF5S#PjMb
zmdu~HUivHchO3z!)q~YFTZIx_gg>}hnzPdOh0U^@%5qj#id&WB_9a<@%Zol*sOfbT
zx;)91(nX!|46!Q*Wpe#sWE!ML6n;`A1>UL=42cvZ>`wT#mlcfO#;^%*L)AQ6f`50B
z2y}BR1N^22K-NgQz$i}@%<Q|#qjgk}xC<j6`*BoVe+Xm9Tq&wVu-2@3HsNvbT(&m9
z>c09(;^0^d;j;AC3kw_4VrMe?w53Qy>*U^Rh(M&H+|A`MTZwtmwYzJRaTiP9&C%~)
zG<Y-6blfux1uWuzgP#x48&Zp+1yCKL``6oTGUrmV8jva80nfp<a{+=lAGdGeFcvyl
zE<>U_f}z`kp)TeYSSth#TKmH0b-zN`Uk+pR4_An39Hs>~W}J8zOcu1l<JOk^bn_$I
z{W6`?gIp*-fE9wcu@(uE7r|0VHGpJpwL&_xLW#<fhEzBikhWc$VSrX9xFGZ-@szMJ
z6<`T{$Y%34Y!$6VBy-;tp77`b4`E{6PQVwZIv6Lm<Fe&3e_bZACb=L1-(V{zG$wT&
z37+?mV|AcIZi;Ll{<!=7!Ba~(_0&=%H62xcD`U)4(dxA|E0c3s{pjn$xC6l#)R5j(
zaPksS0f-n&q-ACZDr8_f+@zz%#K&-(hB<Fx$a}QA&iVnrQkVJUnJW+Y$=~#U6I^E6
znG;ik4>Y4&iVK}#mCA2U<sz71p3QrlMQtGNp~**vvkMb1UlM{6fL|ZQi1s84&q??D
zpHRFz>&-a!Mm9+`|Ep_7eD(2%pFVBAKleskEz00P;XnXEz`KhJU7D@eUOj|*;mz~w
z<IcRz{wuToW+<l{mNUe=zFa(s`*N52#W#Eu>g89lUs4P1%L8MXOg+#PAh`_%A>u2$
z*JaIm9MfaL<~R4CT5P4yX6{S(vv~ii{8{{=^ov0!YQJQA_Uq|R{8D2=z0?>e0xVu-
z<!FwC*S|~Or}*~!iK>3ueD~Al#}6O><hPq2&b0)?5O=kTNhr;Vc%L$xvg8EP767Mc
z!j>$R2@;JF2yRO38>teMOx0;7lj4w@=hCsuU6dmcUv-q#X6DL%nmxc&BHg?8j9XL?
zjhGEZc5RB^tds?|S$JPy_bbw}iKi6nyxfBl!<B}5y$$A222wWiz6Ie3396gaQ=w#z
zH5qBp2BD}Hz#<wke%~cZNV4(09SgFtq(E^N43*ZBQsZ<8H}IDxqOWM9sY0coTlu*}
zj^J!goFoSk4jb<YMoT#$u5#@XZ6Man#+jU>zl%-GgU*r7h!@}JfhFhQ`&^JxrV>Tj
zg(A^~#>I77QbY<Ri7S{VY3F5{rzmvgUg$}ev`n;HhXi+3qGSZd>y7eiainVIbM$?r
ztJtip<S1(ojgOljA3ymYpEiFw4-8n$*>s{Ms2VY^_wvx-YJ;uq1GF8qs|6M={#`Mn
zbQ4glpeqh>2*^T|&)Fvcq`t6xPT$-|S*C+7+TNZ`7%;}IVztwd49pX^nh9|#KH~!l
zy(YDC%?lV6YRE~Z@<m@4W{)>J&^wJqgknz-+ihnzqkvU6afn}Jjh+;yP%2ECR8#J%
zUM;l1S#QSDKmPfr&F(zHZAl_UF+q*UuEkJoiZorjDd!aciytg@seV=X15rzHa>}I?
z5O$*O<sH6nt5%-)v~V${cMt}PJ!wUTa-T*5%p>MaTjTy`4Vjpg`gW$l)Y}Wo!nC=Q
zf~KqEQnNbAbw7e(k0YwRad_m8W(0*TzD+V?e{Wtxs?5)-V5AzGxd(+kll2tyxh7ZM
zQOr#3U3?WC^VHFh#W~eGJwA!pwtl!h`XD;>H#EKE^Rga28R@@phEE^9-)tY>@K=BT
ztyl;$pvwzZESC|{7b3kbFBo$#ip0A9@RwcUJauK0vUmN(PIDS;Y76X&VrcG%Hk?1J
z_@w=&8R^23f3Y(hDh#n-p)FJ+W7}y&%nYp_UG@w0(kDQi`=u&<`Bu>IALo~<(+3FT
z#fYjTg>ab~N!5NpNKgMJgJiH6XH6oM+fZcOlot7p0yD4ll>765qLrXIrWs;yE5du4
z{!}=WDogu`OodAE9V(V;tp!SIyJcpijQwVM!Z(|qnrKbzBEu`)mLf_cW!BY{9mPlD
zqTWk@zjp)f>2Md%CFzwvzG~Bfy{AZ0&0CS?|5%?<q(6M;`3}09+87g6c6hUgga3}k
zYKn4-|4L}fzX;lX_qh4~Ex3I<_A<LcRv14DDUqhCVHM2|#=V=b>@Lo@XkKKslA!p|
zz_Ad>aT(K&NM4wfdiE-q-tx@xOkX;_%#!CNBf_(ao;FiK#;fcQG(w8TO6{TT-_>4(
zj`^$F%kI{fFM+oKYwSM)-u&}l9yhW$S@J2=S=cow(fB$9JJ;N#kS5ZC-e#E+%L$NA
zq97A4@pKQ7*}KiDs#}aEo;reVJt+LsjCS7?`l;bAoMoGVnZ22R<_;wUg0BAT1CK;}
z9A@z?gJ`p~hj{nZ>t(CDf@kLIv;-@D0A_M)Xu=cu^8%y_33K7#`<KCK{Kilkz8Xru
zW>tOb*8Vfs)VJEh%juemU%RHB9#=cAw_0sIf2&>m*JIHUi-l)ZH|a1bF3{d0;l@tk
z7GY&d(x7uv6j(R5Xx5xHGKja&U$!G%eud0d^*#*QtmGsqwqx|mUev^()}2fzD1C2|
z$znCb!)76VVQ7E#aV*d(zicWciu&5^@%xaHRzA`;b<SDm@|0K&6P&64zTU@fG^#Ww
zs+s#X+Y*BY(r10isuJ3h-C%U-9pk@aQ3U>c5aXT^1EcC1Z`dg|Nz%i1l<$)jFf_ih
z2{}UG^PhkE@TUuCYx!0X_<f@KfR4$oFA%&^f~mAJtBs)uM8#T^%hg>Xk&#_@-peRi
z`Qgi3?wwa*+F%#}?z|g1Yiysb$tU>D+Ms0gPxFNK2}#^_PN^;C5DX!AE5Vuf0==Fd
zSgXGE;Ij6$wbIi{KT}_cMt-Yf{g-V)1_1uYbtifgEU$D6Ew-40UI312JO#F-<IQ!t
zW={PD>O(7lhN3b3u4zsDCg<vl%aLgp&&R|}TzpK^Z-$Do0@phoO=M?H$*2SC;;>kF
z9Yoqb#wnSmF`PeqJH<Chn7GLK7(uQno3=a`y%_p|@R&Amv4FocL`A4Dxgj+NsI)`J
z+OU8Hfd-c<4S_^U<(kc`+>tixA}fEvdA37K^ChFu*vmdDMW_MMby462UHHM%W*OGJ
zE^Fg$L$Q!3PDdc9j-xyS)5K^nYP1EuTXbrM8bnEg;p}LOzR<T8OTKW4+W511Sm%gD
z?D#y`;WG6z$9lmGQjm};nyy}{e|UK-TDWy9u#;gAO;wGGv5stdAOG7fI7qP30D@Si
z79c|tBg8;!LJBLLw^Od|iy`wxmtBlZk?jCuAs<?x_p)Q@dFQFiQ<p}TV~X#lcMhgO
zl~I?E2d51C5a-2Uw&-#n1a2vH3$j2reI&2JMlwYtd?soN1olFnxL8=9V&Q@6A=xb`
zPo3I0MY6=^i5R3vdK9c7@v$+gwz07E1%WJ%0b)&*sb>L@V&wDF^J1&b%XSyKu8CGS
zAb=@}No%o}MXe_qNwBzjvSa+nR`KS<Xy59@`1PPaa-gzHOpP(-eNtF@ev5>&TVlL+
zym!2JeBk7f%Jg$VPdOLKiRVE1QJ{Rwx(!a6Dr8_mfQ;VDE-+zMG(+N4z};3etoNx#
z<vEV4rx=y%DR*m%RAc}wHKbYsUwJqPKm7(sP5C)AAC52qG>inlaLiK9zi7-%0d0<1
z+>crO1pvScre8Ws<O@d-)@gSx?kv3n!a899+JEy2Q&6o@K07RR;p4fr%!7A+&wImh
zhA1fh=C%t}?$rLn`Kq(pE*6};&(`{P?Kv(oC1Dd;jExtE#kAK(*QvBx&ok8=4?9Y+
z$)~UMa>l&BEhXwe$mGwByov+Re}i}Y`Jx&AO>ja*momPfG&fZeN8Z~LE*(!eTR1&3
zFhi(=P)ETDayI{N0Cz43xsJ4jW;N66K*y-a*fElN4lP=M!)y=z`Vg21o<f*+=FKaU
zfO1H5V-<QTOlTcrDHZ=)2<ZP+a=$?%p5xjvw&Ql%BHO5d@}I^+`|;zS{_xY|+oSVy
zp+%(6Q00e+uz1vmY&1pDj|x|7x_N$>2&sUP8mqk?EYv%r*epU_|F$R0RkE42uZEEw
zva_lQU@9|E!4&wgz-XJ?;|;B!L@%}Ano=>v+dQg<<rQ`5fq@i%xwH<z|K$-dzV|wR
zfW&GTvafb>1tF|FXLPXZWi3pnU_hq^)Dmooi*k77U<z#~Tr9RqP(fs@>}fQQ@4C^H
zFEvRgL-?V*HZ$gd)Zj5XgrwofW~HX`(2VIi_9~(lv)PZgFnpD7VDVQ5)ur~oHVFTg
zHTtbsTkYSsM#Tb(;3q$asq!TpoHjW)?UaMVqQ+wHi?~QK%jJH`MLKe<nsKZs;PX7I
zw@c+OAO7^mw+qEwy=F==rIK{iDVhG?Njj4Azn>5MOmf%%e-B`Oi^HS*djYd>a82|D
zv~wcbl1kBkrK;Sx2hoIEvbi?-b{z9i<`x`?fsD`}(GZpbvPtSU=v)WvI4LAXx-Nzq
z13}94@hyNG#8-4_Y^^7_ratlM|2&h9UtApzxX)~d7xZos4jli-cH#Z{y0Wn33grO(
zskt-W!}C?%!|Syp11p~|EATv@Ypz_!5ZHyf`!Xntz3-tc9ic3L8I+}-1!bxCS5T(C
z_6){+%uEAbl77yzJ=K$Wg#^cINbvJz?0h>};TNQF`+5GsKYjf4;cp-R^y38`#x4zI
zQ?A{6>8&RQ8+(h5ik7P0>G6p>-Sy4<=FCsGpzv}q#EC7UbN#<tBcnR%{|EJ()_8#F
z-G@ItKEHKPc`yfw{VPM=<o;EmZqStar`GVgr~c(}by&L93XbKKL2TLEVvQ?iEZ0m!
zXwSu%KNng#z4u?P04t7PUc<h_r(I3)6@T&3x;nj&9^h$lxsoK5?au+YhtEJbja>ef
zi}+t%;ja~fF@Ebs{13<UTUYpx2lZcBBg)1<eOLuOZ+57<cP<QRHSY5ak+V@{)3ZS?
ziq?6bdcZycVc;eejAV43xnyYqvvAxef>c4Hp&(NESXTud3KglB1gpjT5kM6N@!#b)
zFBkJtTAP>Kj3MiUxartPI9+FrQFc6h(zae`cd7DoDoJWJJgP{uMbDeFc$j7SZps#Q
zPl_5j-}*4^j+(c44swZKuu{V7)^9>DuEZ`0BzDMaQ%c+hXe%|b(zhg8X1B8Czh;_q
znESjg+n<ossH6sFdR845>z8`e)w_a#zT?+PHQ)gWxom>YVPu*tnUR;8*HU?hGFgU*
z?RcMY->aa^yHqJwQ}A~BZ00nHJ8fT{YdnPmhp`B-z$%sZjkuBj=6y6cIk}%tcxFGf
zlRm*=+I)IE$M}}t3**aR>&pzkfWo1<G9HIAb!g}X@YwCG*V_kn_4#i9*uHzBy!jE0
zvLbnF&S&D9I2;zK?T?F4)6tGG)M->`dHnvh{r~LOW{Iqq_Wb<FN$nV|I~~KFJcZcT
zs=xZ%hmiA?b}|P~o9}=3)2BZ?p6>yDDVhR^&%)_^m{k44ZFLUy^+Qjj3Yrr^(>J6h
z@E*)aHzHf-2TC&?XHP{PhI&?j3@A&-j7K(~1E+sm=#6HcWvf^jgGJQkOuzSAfsm}y
z3%(WQyqFG2n^X};vUZv1SPee%zPq3`f16#v7qqxZOQTjd>xUa7N-WH78nAmy&nJ2|
z+f9{y`J%iQ{wsZ1!8U`d<GeGU;dKVpYv#aiBw{d|i#S~^o?)?zT%9SYcg73Qhq^+x
z4_&rJ-}4X;ZD^tC<Kim@cRLH*X4fq{UGDQ5DjUiC5o48)XDMI=r|d5Q_tPA2@{Wvi
zZb<=)(+kVA%Y&^+*KMe5q`HbFCw;i?)Dovw$$5n1a@rm1xl?!FdV1UGYU$61yi()6
zu4GIUmYq`MZXO#-GAk5G$F|c*YshN-Re6$PTrhMLiHvq75SEvWDV)y3CQr|j$VMzL
zWi%@TPF#~c*MblIn7QhSUhX0sJ%X_jtCu=Q^_U;}X0mnj5hFuaCXOMs>x8N2%^NfJ
zVpxHqaHpl=(3_}@ku#|1@EcKPZ(WYIxr5Hktr&jMAqv1Vu>|<7D3n1i;IPZ|S$4O$
z$Xu^@zSw%6JD%vJ*UN|e56f&{UFL;$V%%OZ?ByVe%Va;$OE3-fy$QcyP$X+F8x&n@
zb#|MZnrw~PtNKp7x*`AOOS%nN@ScZ7LK}m3CCFzr_vf$-PFR2&WH19pM1v=Kf@$dD
z-SlduUX|Jgl%WI*HksP1ea&`#&gMNXJN=}$`>WS0r<~$9^5Hf7^!YVXdWMN!qLNp;
z)$dl$&+fYqfBM6(&bF}pJ0St37BShnr1C*5GS<%`bz|BG5}Fe`KwhHq$nB}Aw1h0E
z$ak^DOMZ2pUm4Li+?Gt?LZX_mn2(2K`VdMi!j=@$LE0)x-6`mMWKhcVBTRH?8ONr3
z$+T0?*J$xkFOs08qAr)sSGIg_TSPG?zoIADXl$fC+Vb{{af`_|-VCv+qQ4zz^X1q0
zHkJj=4A-X7mJ;kj=-({bN~PLq9hdUSFeR5MZV27f$-6nKX<Pta%q>l>A_i!xXdNB6
z<F_%x^UhSZMEHgbMB`7omx6(XDjA_pO{fs4HfxuoT|}cC3!$v*|AFO~0?SX&-@O5q
z?P8#U1Hc=0qqHORZM$J{Z-@bKqsy}X3peX1q#G9Qa+B4dh1Z-pA(D8a33Zc}o3z*`
zGv+^hZFw9e#WTnk)BR325&wuc0LBK;={I&&3FI#~csS*0j`M1zbBf-GxV-6DqtEMn
zNj!hD7xT`twy)o`cRk&NN@c07i6<qtppxq+{1B7LQgZAPiEouGLdCmv<kk|H_?sf7
zFdl~DWAfyaFMW|zWlh@3h;(JFFmgVap274QOrO`18BE;0-7uIWo*2vbCu4b&QlyJ`
zWsK{v(N0G4W*td}A$c5(dIs`6>ww;Ko#TPAQ@g2wLC#47ndTrTI>kVC%J0#x^CbhR
zIV-1(xUMCn;e*=;!jKy3(e`0%40hBV|0zihneqL3gM^r2EH^3ml9;8Mq}Eeu)mX<O
z=Cwnqy&E^DkojBA4q)@MhsTZf1G42MZiot!Z*-l*p4W>ugbi>|?J3=iYyfd+2VlI+
z74)+H5Z<aifMYq{aG9gZq?h&bKCO=ra9Q}Vuq&*C-2h&@*?VmbH(-B5d&7<G4eyWb
z;a^^smr*yT50$oX4{bxY@*%J73Tsj8o71KMAKDInd)N+kAO5!a^kyfBrAxNm6<$Sw
z`ch>%_03oZWOO%glYAp`t9h@k={^mjn>2{FRQvl=A~F?Xfn>O+G2b#<xlHzHBn?_q
z%?legOW>X$xN&`I|DPgSfjw;H<S{$*b6Vu9bg9i;RtR4nG3{o2n}W;k^8U!yuz1E*
z-gDQ%j@{0nTqUd3{#vFC_T}IcqBynp#4AL|?Ok5#X1$G3oZSu;ysJa%aHZ^m+__7$
zw1@B>Y<>yOZZp4zT48g?L+;CQzyAKici-(E{qNU3`|;DS-q7)8-O+|(<OG7dY*GU&
zv+HD<btWDr)KEbC*y4*6KgV`C5DL{ifvnfLi^<h}>JmEV+mzU%WCg^OS(xKqEh&M+
zrn@~82s-wmOdd^~d@X8>+7F4y^9nBF!jG4=$g@JGXd)Dv6tqbis|a4&v5^bzN{S-e
z;8BzZUBD3HOebJ~IQ?%bXmuyg?C{LqGiuq{b%HFC+P;dx8$3r1Zg9HJ42oi)vwiH6
z(z?Ef*Tmn<1!i8r`JZAaXD@Sys5zPRA2vTQ*{}I#u}o7Qyb+<@k6YMwn>y4md>Nu@
zfqP-#0K?Fd1d<&O5hoe_q2XCubdZ7_b-q;0k`R4fDA#W3HgZf^(BB*rN}8^~U>Zuc
z@e*32M6!=tbT26lbzZjD?ANbQx1i`jJ8}3!fhsKwvQrvK2)Y>5zP@~E`$7zAUtX-l
zCA*>$Ns69JY*Et>D7--qmm&IYj3j4NxT<Fm1^GQRMO15zLoLo6#VLQb9L148C_{9X
zdly*i_$6X1Udk)L=GoGc<~@wYii<F$fi6s_qlNW|S$>~lRurzK?f~)y9S4w|O&EB;
z4{qKM1YlUQm|~5?xNq4`)K0t#GkZ<(pPOzmbZ%p$6EJ&Rebc-Jv)@fHV_nZUf$<n9
za2cdB9%pQIT8`lL@`PYN|KKG>0ZiYsZjT&Y{a-)mr`%j9@+Wx<YVm%6I(66J+K=0=
zIdO#}N$SKQWsRp6U#{%=8db2E2G?i_&D%QZomm5aN3n$BOW3vit})jG|I87PF~(qr
zRA7dB01(n*X5at<;|?X$?1Wi**jX5X_ZsHz>~>(aR{;Uor-T-9MyBpk;-W!tcbc}V
z)OS$Ssj8^v>^k=fsdb2He0AtgX80qPf!}@n%NuW8%ce<`i7RNF-nV!0AyG~hT@o`J
zYR_^bTuPTC-6qYwAOosU@Xz{gp`%DwO2n&Gb_w{7=Fd_f*;&RlR7&Wh$$o#qfC{hz
zGB}-V6he$}z!DC?yUyo^8||ckS0!bI?WkIqMZwr|Gqt0VTn23|`c?BzOJThbCM>)w
zv2FwFSIr7E!-0EOhlFTJGNi&E^mM@1lcpp01n9KNkA&YTvL_XcT&YF4b;ZzwnXD|#
zMfgLs4t2c6W#5Dx5g1LruSS#Xit%7utfDa!3{|VC>Ubl<LX+W6E?~!fRO3)8zUnZa
zabr9%eG;QEFFI|PfVCRC9`mcT#AH3WWj>_%RQ5l}vD#*0XA&PGLWNgYkLfew<p}C_
zzM{hU-krP9D*o`ozP-b#loe|1wVA;y115ISt6u!iXC#J$L0s(rGm1}oL}H&NvHx!$
zkce*<!0z$)Z-T5YrnW%8T_}Y?cnY8>IA|B>+cNNi{J9LgLH=9^x1m<8lmReL6Y17v
z$k&-EFvzWezg)N*?9Y|p@-kO}GuWRi!5Qq&mEb1q&!ylD_-!RPgZ;S@oWcHF2`qug
zGI-gqfW_Gw@DucdmZO3GTnOHPUkkwt^yfP86ZGdw@B)6V1Al~m5Gvhm0l38*?9Y|p
zf&IA-yaB(h1aGiESArMp&xIi4vcpR72K#d*c)|W$2zSimmh1uO;@4aU{&XEI`$cdH
z`=={~NVObW=*nCN^DyF7IL8;+bvS>B%W`FHu?R?oxV0tV&cXWmY*Bn}O}t$MpFaHI
z>B1_=;=_h$>}iw6617tMNG<MUf0*efKM-jIgfuAwkxK^nML`j&wa&S5Ha9XCmq360
zdMIjFb0u*m+hjYN?Aug0>@jTyvtqeK0Lh$wx5!<-)fpNMVXK}61@i&G17t^AL8Z!i
zwvVinyp}!q`qWiXh>O-h#%E$rLdBENvtj8D;!qzVEw4dq31|;n@Gmb+R|i^Mnry}T
ze)V}<ef;XcvJe%h<xE6PnEidfqWxUa$cP$chLHuAJ<AJZM^L2HFm2H|kJ!>UZk?UJ
z0B;CGeh?Rn&zu~1^YHXFiX?7x-*UEZ-Pw5&lj&7xY8jE7EWKX}qeA6<7TWJ({+Ymj
zeSsl=ts-RpIj6x-KfFbTL|TPZSOI1|S0fFZJH+Wy&=|eUC1AksZ6!?DpDW??gr2bP
z=SrBsZ!6*S$iGcB2=qgNQj%j*9V;nYTHH&=8Zgjza~bTh4`AQfGMKRM=1O>t!`!Bv
z1o~-&cX>e^n*{!Of#wZ>Kk2(r7A*mPK&iG9{sG1?q2JH7@CpmN9mL5AM9t?w18x)O
zOshKWCS=E&=Yfb+j6Uh8jC>??3Y`i8zPCj%0pHJMFah6|fkD30Dlo`*whCS$t`9ma
z7Ow>`A>TH**T_(kRPCRH@yK)N^^<^kgfTUbg7dxp`LhszTrQUuz$MngW~$@>U?zh|
z>_8rpNugeb2bv^KsSwo>lIAuu@4YG}dIXrVNE-ztZk798sC|={bxyOh+vL8a$O#P8
zH{$$6xM!%1*K-nm1rt-7>ODD8-bSZarwnbs$tp*-?2|TE_H-YB?;v)-Lq3vC?m#v<
zqgW3FtJ5R+QBVEFf6XUZU&Q?7U&Q>>zc@F_2GFpgzDK1l)N*=v|KQ0H1U`M-{_z|O
zh-K;nu?8^5jg@#D8D_C)@@T2tq2Ncg)l($`Gp{Mh=QeX)|9El$`tozX|E2YZRCiwC
z@LqTpK2yrA954Zv>_H+7xVQRJSCF+h+X_A^RHg{EcP${W)I&K~nT~IQSdj`*Z7En&
zFZErsts}WtW@6$I=<)K}Vr+#g3%3wun{WD*4m*4Jk-I#6kk5u9VTfMDe3IiK#Qt{V
z^0CiHAbH+?cz*u))}2r+<|8CjmygRLzT)%93~egeO{nJCD<;MB*#~m+|2d7n=QB0G
zxb&CF8zM+pgNx%U+!zr7wHZrW;Way~FLKELS%@MoV(g9_X=ZoIG4nTPIV^wPO}>yb
zHjy!gCYNYyY@x{{nrxxTB$|97V-oE^ENgzRO)xsUP40gYp4MONbT|Hxv4tj&XtISS
zlW6BTnv!vvdUST1WhG86Z4k@#@jsdAA1>|(!>EE~{bVVtj0{oRf*6fsdC509QF0pL
zeOMB5kEPulQ&U2jkt()aDEJOsdTDtR0RB3V>>g6e?=d;<+0<o6i6h(xLOw1nu9B>T
zOev;~xN7SI-DX9FD5o3?5bUG(T?M^QIU=E5Vu}4_*~Ffp)$_PHruf`K`a%45Scfg;
zd%Rer7Lha}7+6BE6Rfmyvrka*`mdp())OLM5^a|VY?sU0yGSVQ+}eil%po8vxBH@h
zumnmiazLL$zE_}y8di~X9-Q7wHAZ4ho!%-jD~%$Umr#&PE}_<4SqmF^tgoOWN{?j|
zV2m%wPG@4)i<hKj2{@}-!hHhOSz4`#MVXAMu9m2dmcs~#^`n@Jr@}tcR&lzQmTrXJ
zb{f)atjKuR!Az|q(yR?BWbR-RM9NJGAg<$vI6qXSWxG!Ayw4WmE-B|#(93|VokRU<
zG~+?!(pxql$RXbx5_2{hfUxu%Nzy_L2s#1t=QBq!d23#F7Y;mzbB3)DokS<WM1%$+
z{L)ir@0;T-PaUs!Nzsis(I|??<dpz^n%0h;?buvUPi*es#<5B(RbF$#J(9<@$ow$s
z#b86fS>OyMspq~h&zwT0mBI-@ZSo40(B)AhQsy*pRdM&TIobgl$lP2|dxxU~ECDrI
zDFosd1D|x^HMDH_lI;YlBDHtEG$lct>jL-cO5~-$nX^NaU6ioKWJWS`lstWl1sgS8
z<Y-ZU)qG_Y##Seo#@}oF5A#Pcq7|4WO`;xag6%mO@|-Vgxu_(lFPGv#Lq`PmTAihO
zehJ~CNmWR}f@+yQeZdCZre9-9U2xK~v_s8=ozb@`@-{_sBs8Z_iu{&J%Qa9qY~RoR
z>2dc1`gLyr-0aYLM{0D3#GnYPALeKqPPA_@d!N^vo_IZZ2vLJ#=Dp)qQ{+MeQZT?C
z{Dd(8ckLy&=@0-b*ju>;j~at2sxP>#5o~LTo$=}Bj?F*~Dv<>OVLg3--y<;;!{-k2
z-|VMf8%7gL#{lcK?~WJV^>f7OjMPeJR`=ht!#AmI-Irq4=C=i{P4K$d<grL%TY7Sj
z>=jMPJH`BfP!UIQItfgPF;XYiyF6zAN(J~ULj1UcQal`jJ__Rpxwrq%^PE1QQT++$
z0!Wml8=*KH+)I7I%M#uV82YUsuA9d_qrWwto{<Gw1T0URKR%wpN&KB*{wXuQM5Hdn
z(~w#k!!b>IwPfXLc`RG6@RIKUnRoO%RNFi%spPU+V9f-F(Y_-&GJU1#GGA|$5hx?z
z)+z29X3&jjLv=cxoxTCfbb;lnwlW@sN^LwxdanZ4O74pYy`+$aiaDyx#WmAS1OeV@
z<I-hICEoT7X3A5XmygPlvjpt%B~tJ-AZHtUWtR1zJWryya(Bx64^<0a#c(3ee2gW*
z!d9~ud=bK}w!4LWnEE_N_Jz1m&#wx7)sXEXAUSCcEe8*izuNmGmjV&3G1Mvm)*_FG
zjby;?LcA1s9l=yOjogZZ6kBaGk5ZW&QhH-Q6J#+j+UFJn8DM80Hjqd}jJS=rA`D6g
z-*vexm7XfQR@F3cWR1m-H4_fcjQ#)wi>YjeG~taB3V>Qx08RiJTM+v(P27gL?-<@L
zN-b*#-wnE`z?9IBfD~`F#M#{xh-R*<pZ@q^^K`bX>SGmtk(h@?Au-u1x;Rtot-pi_
z(IdJ2qSs!p^zTX2f&$Xd{4~a&{pruIw0C#q-RH|&dz$n5?&sB7;^LNrO;$ddWF4c=
z?aeAr_0?s-TUb(*e2DsewDP)MBIoIAHTk3RJ8f<CVu_~kd%cOKx^Ei!qv}7bN9;oH
zLb%qL#HYN`!y{UPH2{x~7Gp<S@5{|gg(KADyK0LNO|J%#81-t`<aCaLPh%tz8k&UY
zfZtSUcsaX0!{=ln1`-8TjNcS2zF<!)6L;L7wCa}6l$s)i+I9V>m{VYtfq4$y3M7M-
z7dyOz&z1)bt?Q*WrlnG3w=7-UI6CyXB12H?xLxk}n9Wok?zRR$S7fUc$?bBHp++lH
znZBsZm>0_AcDc+LtCgut+~s@WvxVkGh1%`nfc9CaGJR1)bIp{=?Q)s9ELNs6eNmYu
z3OKo40nRXiQ<=C=4E)ooP`~-{ty-qIWYbEDC3Db!gcRw-;|t*VL#(SB?|~<@Z2R)o
zE)w+OlDTDwJD<@gMa*8~?Ruqc3DF@S9~T59O7;Fy^Ha{unOuT|OC`Rx>O8uPID0yG
zk+%)C^YHoU$ITzk<qIQfK-T6~v~&r#xF}*lPO#U}OeZ8zDxAJ4v!jwjjLeYcuP1Pe
z9(Dn1&_u8M2)C)hqf1O#E3ok}Sl0j~@T1Y>T7a5qGb_y6Jj-^2QWTdl*c9JMQ7@lW
z6BY5W&1y8bJw_YnWo`Hu)e;i+<6X6swY<;d-FZd_Z2C4OGx+V;OjKIXgUC8jU44*z
z($L%wIAGD4zWMrn{gU#1umNn1^6>_mq6r=q#E|4HzC}d=tVKi87Rgw0OZu)=eF)U|
z%!eeO-VTYIlRAf_NCQok45EnUowt#9`;nK;K|0hEGm!$P5h8BI$`@6H04TR;y+QO?
zujc)^fQgW|Adl+*sD{;KuLcCCOx2UOj-Pyg7z%rIvg7>dw;%uVyN`c8C-}P=@8p3}
z5g}G{m;G%_gIg~8g{jaG9u4)HE#P<_uE?YX0%rpgH8@?Z*=X35F3*~j;k%D?e9g|4
zjNokCLSu+=Qr@UIVxt{8;OY|EzmVfdpXv1e?->RP1*(0aiJlG+=J>6Go7!LRG($VF
zd~i7#o~@rZH_!_9aj;b85195{1p3-z^PMoVvc&9pm*2nI*j#KDQI-})Mz6qd6G*G6
z+@DkEIFvwH2HS-&6gVWeSB<O+zDdW=X3al;`0nxT)LDeNs(|eSIV(|I&6=Aw*XWUX
zgM+=xmb~o}m%B*ajz%?{BD0`FqyP}*NhkAEtXJ2uH-=|(JMFGpw9k1-FEi47Qg>xc
z8~PZ;3n)@eZa%UbnY~|z(tuzr7OL|;SMeS2JNW+8=sykVb>?s{qX8IQ<<u*HFWNy%
z!I4PF$wG(LErca4lRIJyi!s)F4hoU$I($X-k|@JN0^qnCo$V(8c0h^0_gf(XRpU|6
z%@AG6G0(<%=JFtSV-dl#7cpCPKqmm5DkPtd=`fprF|(O-BkIRKoj-|#73$X_?S1(=
zq#ehcOZHX#I;a}ErU>n*pZwqdr1lgMo$Y+D>vRZoYr-ySl;Z3*7d?9~RBkT!d8%Qc
zks_9D7#qp!IeO-O&SR3Z7{!OJ*_0=8-WheE$n6nn8o!(x!~gwHYo6uhzx|wO#dqJG
znJ6tA?RQWJX~{36e!UkF<l<M{h%gmb-H7mYUp5Ux!RG8{qbAuvgTWu_I&KIN6;nC2
z{62S`iSstW4xUB`4ic}Rk26l8Qu_Ld$|>L;Add-Y1*N~gRJ~a=(Rj7e9mv#lWW&cc
z?YZs88-s2=@`oQME{w1eU%p|1%<JO@Yt*xK6u#R|breJ$oRF{3&EPKJtHCRMx8^>3
z`W9aehp6fg=A>;Q==)by@-=mg%O5=Cej$IT%NMrd5DOo|fzbH>j7s*C^uyD~)d$?U
z@@N$E*gUS>1~y}}v6BH(23$mY<o?R15CCKflQqU2P|+2z1Y|zHTR4jFbg(4XO@S<T
zN;F%<m``=FUa4HIlX+A(e5GrJx*<wA3Tz=BQyD7|2g&5x@SN{x{59Z#B9`*5*8xW%
zB=aD%{&9aMZI9i2{1W)`HpiwSW9^jb(io~sqf<NgCx50b`AY5UCA50g*pPlB)z-m>
z*NB09vYXmD<ZSF7OZm{7jcD{5(f6kVFSV>x_u`NY?qDYWc_7O>{OO!KPCH?7-v*Xa
z3~LL@Gr4?<A%C!;Y}_kBx?ivzmGlWcShKIRH*TK=sm_^?vq~a?%siyHthXr&3woRE
zm7jU!>s2~W;jIUYLPEJ-f+C-v^7E6uar-Q^L>)N_o&pK$iJx8Z>WWua?3Lf=`P*?p
z;F5)c<;Dm~C#1O~Lb!qhT;bd80W)NJHWC9M8Wh_}OGT%*Xgu(cOra=cuYXpZw`Kh{
zr`dRbT0!CstdD#6^W%@_@G%y_$53OgIH|h?HnotbQ?pX<4iIDiY3~)6e{q4u(JI@;
z*(}y#vpAt&FAwu)|7p%O_a}_rHUE5jA5hCJ_GE$M8^0{(z(O-FtLCp7e0*f>Cwyqa
zLDw|h+@DG7shdxqJoc~fez2WnZ3QCD#AAwvBzhgtA_85G-Ro*;&dw{gc^odMXw)gX
z^n5^$_>aIc;JYiMAp#G1p&FTK&a|#rq#AI={Wztu-e{%9a)Q>UbHG{_lWbSW*!5Cx
z(c+h<Jpi*>#F|KKF1aAQr?gQKXoUeCu|WQ?g<DQ28T(rL+bUA-t)!-1eI;k0H-1RI
zO8lcR5+99$-a#Z8shy9M$`V{#HgDNVMGPfv5uzen$Xw=f?<iTF^}qY{@sE#xdh1qp
zsM9UctAxHqM0y4poN+IKYZhOEyuJ_9gXs53M$L)<WnO=>SWnP2{K3_qYr}Wq*^w77
z^9X#UkBF_UqQ<B?0PB`>70wVtqn^h_T@TFKE{4ds2ITzBB0xKSkdQNY9JF-uB4*Bv
zPJv`aTxdE7>z~+zhv{E~7N3Ja4DxBisem+6!=br@C`X-yR`{5v5ZqjxAt^43B`)>H
zw9v73SBVi2y5^8UxZdo7W&-#knhiJ?ppuMRn&Z5TlX)qD-bKa<CHa}`h%y%eWmp!O
zo@2v!`a#nN!;<rZOB2xc6OiWcKPm9lj*pqps7P^wN1Lwc&?oyfQxU^Pk%98?qsjl9
z@wHr}VoNay%MR2A@;u(<9=>4Ob|1DMe^~X*&%<-2q<LGixNxz>EBm;jz$bILvB)Pu
z%=^Cw4uE#$#0uABZ#jP@Ego8(lDGTXEh<>PWgG2S93(R;PAsY-jS$rN!fio4g!x~x
z1135<BZBXKpM)&#LS6W%R{>{PIVIq_BRacHOwEP}{gi;mGK#s)u%~pOE8b$K`iN>x
zc12eBV*6%B0f%h?lgdF$V@-Q_EnMT#J)l%JVqTMhH#KA3-Z<jxyVfN4)*6ati8s@C
zF)wGs*|{?Y=|xzS4Qk=leD3y%rxfvBrkHBo*%9wyL)9*$*8vp)7DKC;mLhGrW&OxP
zI~q~4TC?reKS5c^`4saA7C%64G5Y;juQEy4r9uUE1y9O$z29fW#dJ2o4|<gwLYOl%
z+zvc+jWk+kyMRjvah;Mc^8COxbJ)bBtDf}gbu}L+j;|yzY{XTI6XjW}Q=vw;beamw
zImpLrTjy_o<Cz(MWt2b`AqD~GyE|~x$Ylm*9`lL}ON@^q$C=pKzDxKbgvDu*rTdO!
zqcx{nzb|r{<2a@=x}JgW)q2_}?U|%fRA90R`6HD4Ys0GgC`!Js<6_*#m=N<L0uf|r
zhT-qS*Wj^)8z{H0Jx5Oi1}IR}x!DdOt(1iAD4a{+BxZcwM#Ll9Fh<kf+2@t=tCY`T
zgs}`~D<JQQ_ZD2DZ6iF*Zu$j58cjp`A0ql7GdN_-6xad?f-%4jg~*HYjM45{>$tyw
z$fH0<fsO*53Un&aslZ)LYLuL5c0g+Cf>mtz7Uh~=9Pvh4ySb0Pu0sI*kC1ZbbEVU|
z-p0(_OB0lE8NgaF87{|ylDI0PLUCa;!a4Ai#){1l^wO^y#`tS-!|D#v={DDd^%J*i
z<37eLOUhVqV{-*zem?hN-J{%tYMBpwVc~s_&cUWOm!sCP9__jX3f~o=d!0?3!v;KE
zhQZvn0l6g?B6i(Y2Sva{42DB~JC%IOQo8>t%v@>^?2~rR&=Q_wUS!^2Gl~-@+{06j
z<Zoh~&&jr&`@C?kacNsuKm73Vje3!JPwWBgepIb^(N|iXLS`C@GOa3DJmTSu{6n!L
zBcT=x7`O3gO&BEU@j_cianaOukp?`JI+-d}d($aP1#sleDK}#>Gmvtx@YgvO#iT@U
zAjpYo<{;$O(f>Co02q%FG3M(tQu7sBsmTjXh+3JV2iVGRsiF=_O9M4LESy>AGWnIx
zKF$;JSJehtjKAiqs6&cZx%gN8xZ~L+LYB(&Tg>vOi$O9ZL+_+p$2gsx^K=t9L3Ex;
zo~aq?{;C~Z4X&Pl{P^jwZ&<Gz^8=fOqn8x6@1mT%R~<zmK;K4er5YPAj0OG7wZl|f
z*cK6!0v1tLMk05L+3jJ48D!HaH#;Mf9?Rd^JCo)%ax0F16;#fItFZ&eDP4R}4yjb>
zkQ;|_VkgWv8O<omr%(U>4_ri%itTaMN?Gm(yU|!4wzt0`Q>HAbLmHmBu(Ul>vNmtG
zU0<IKud7r63-nVdLDH+ir=#aP4#}mWN5#2Rw9mDUGYpZH+;>t;TngjUv+rWTD;WgS
z`Fg(K;qiawbRy4SSC`J@s76sNwL?FS6!%g<$<A)OAm6WcMVc3Md~wJ~xNN_$qds>k
ze)8olwR;$h;@IJ8fu$Xj)X39F&q~YtJQx^fw>$9rxX5XCfEMgPEV?dGfP_>|TN9%<
z_I_5dhL=Z-KB`@u-XS6jZ9VUYIY*KUWt<Rq5hOLa%0#h&jGXb(maJ`9NF>PLJRU-c
zudrxCeT_XT>+G<v<xO6OFsqh#vvOL}oXsL@iL=_(5~HtIL#KCt^?&^FrM*)wNhqU~
zH4$SOD-EhS7H*H4JBeRV&Ae5@e*Y4$GRf(4B0cnoGaY*BC~9Wb$5xbAQPQc48H8Nx
zC0pEE*dT>u_Jt#MHh#bVtN-@h_uv2Z(s;LRwPZuqzN&NQc<dBs)^kdG((}*F2W}=$
zM~+C2+^0D0`OC*=rM^}ul1YlW+MHj?53OzXoPn=4M-+<Gn!-+Ts6})_uPjF7cYey?
zBRPeDHy5j-Veyp){vN>=A#csE?9n;{27(p;X7F6hY2gY@w%{)D3&*NQAGLg=C<@2e
zxgLp}Ytjmy4rj$jp|*CctyyiM7@H_Ume&D<li^lx0`+E92R5vYg58>#3?2%BG^nhI
zY1NMg2i}yQE7dUHW-C4Yre{1iUNvpTD1eXoMO8)IkO>V>&)g|=FEFMR^bF6gsxDAl
zJJ!~$HVg2bWzr;T62;$F?NM=*QIe_!?wTM<GZW*bCe8Bwq3SuZ*aV!~b!>Ad0~SQb
z{<v%b=J-G6_|7k3PQbEg+01Z;%?qCdAG794)Hl$eP{m9Lj%f;ExJ}D^Z5lrk)-$eZ
za0erhozie<G<KD*P-$X*sMP4lDEr^ctRnlIJ<jUm{b_0)r(Gule8S_D^x1-R^MB0Y
zK7KhI+eqUP<=Z?l<#zFk+MHDYe<rE}MjfE~Mr*ugqvE%BMw!YrGG=o%c|0Hg@a|F~
zA0!P#b0*Qfwa9uu5YMmQ1kkLP>V<pe#sZATvzLrg)Y(_B$uDcZBEB5u&9y4tEJ)(B
zyQ0WQ`O9)2`SQ@>Z4l{Z*Gck=nfo`zTVNMQY<7=jmDq+AZxTy+u4sq#?t5SA^QWYr
z8pQ2=!hVkdJs0>}1VQx7W-ZS@XHaph9W7G+H)k(dpMm8X_Ax;<dsxpczvxYH)*Dgy
zgAdN@Q2A7(I(!Nj4QQSW$tJ+}kC!u`{$}cAFnX?4mbwv2A&II5l)W*jIS#Z5wT|cL
zq-SgZ+Ofc?#FY<Bjw&XU#U~eyO&AYtS@o{83Y#g*0ceZR6WB>L?4{o3yx!vu>Yxq{
z0GY%vnM#;4&WID4F4}$NEnlI;nYGH073XO2(;a3b(fd>RT#3$+l8UYZ2jmZC<<#Y+
zvU{|xB9H(LBlLq3a0SHnFb*7LmnZ=#u1h#YIsyS?Je(0#3O%_vZl}meG$i3=V~?Fq
z5wm=qL`Amac00N>g(Dz;g%uJ_NLJuQr%8i0vD-7ttm-PDE(#hI<v<$##z3!G?g8sV
z9`*C6EGgPWm`^Qh+kw9+N7{u%<E>jfa~(#^o6LO$99CK2wPSAtP!N_*&oR@?MLV!i
z#l^522u7wA3#08*l)4wQbt{%^b9Otrsucr`R_#5rvmuhkT1Rs<e+|;?XIfky!Rkvv
z(6=*AhxYY|SgQ_2YQd7!j!)=padUjbs@^yG+ZUo<6{ybZsL)w0loJ%C&<-yoNu1Yv
z=;y&IPIt;K^J^fWb8Rtk9bBI4)^RbxmS8d{FDI-Cay>0T03x$mzYdFMhUkdynS{C9
z=KwNUmR<&rv7S!8D$6ekdARHnXc2FOpV5+O{x?rsj$1Z&7Jqh~3n>v&G%k6Ni(F?&
z*L|*9Iy>1t3fD0=9kJ^Ez7Wz{hHR!_30w}ggZnIe3W;A=Jk?+*67LywFeEs75ftz|
zZ1kCB>f<Sbv|Sw!E+a_u%XZ?&Kdy1!_AkP0^@9>s9`PwIZ<i-80dIwzbj<d|nPi7m
zTpmJv#ambJuX}|IulPu6asB-E>r|Ju`kgfkD-dfN3A8DaLZ?W(e&=T<f5<csRWXe8
z?)0tx-skgzy<S?6r(Ykv^oO$SPecbM>|gZtmo;>yyB1liy!yF}L!W%lH(Rb?E??G!
zFX}C@QdF?73XRvBvbyH#5%aiMpJLrscfje^)H;*SANcy9d>7B!StegSnpyB!UOar3
z%~2aUFCIRx(akM<u1a*LUIf}`#=eyZUJ|<$uiE(&G~k9C1&q*dy-T%Ub5&4szUI{-
z#D3k$fRwv(sy0TL(Ap5Vvr*NU^2%RK6lc%);y9ePxK+*^{u#ygpIQUG_-EJgujqvj
zjpYJu%^6ocv)yY6TzR}!YbQ(PG1K|U+w8seg2wPvPaJbU)`wnSK3#S^V472zW<Pmf
zKBdVyyEy*2VELy5{@Gf7{OcdS{kVU@J#46>95ul54C-kqv7H~4CUySbAD_ZU{3T+u
zZ229~lMg+H7PbWp0hvUbd)Z7*-+7EFv>ZkFQJ;GMr2G$oRjsFbLRS27Dw{K|7v|S%
zsiRW(r(}*tX#L=S`0?8p3Zo+l9|;*EM|O{87oamb4}{l;Y?9Su`n_T}5RymaM+3u`
z5sS$NlUZefZUreYWSBff;`orzYB`3bLHyT5>P4R_Vl2>lIo!tcY=e_O#nFhVg%?)j
z%IK6@E4-R9rIe0l2xXVdNkqGvA(5j~Gn|^?)C@;6s#7zZn&H$8Q5Vh8jLcbz66=2q
zSYlg_V2MCuYUlln!Ga~N0+pg-=7S<`c$|2N&>haM(`KTZ&QpI|^G(&#81pUN($sG$
zjw1KF8NyoT#zJR~UJA7SF8m+pg;ro<+p_0+rtGi|EUW8!tc4Z8vPO0PFa28SKQ|-q
z8-w=CF%FM4L3m|9AD<7rQBptr`s1ZBN?)YtPUw;%=0?ujj`jc1s1{{gH1y18R6M>7
z{MXxg+pll^DaUyULZl@>#91_PN>IZT*GpEAC5pmqz6A0h-OP7*#gncx76xKoVGc_h
zkVHLtR;|UN)`~?xB%qpt5Sc@wSkPQ%G6fb#;qmcBeUbXu4zji&!k0kZXKC4*pZnPR
zvA%LvpQ>xe>hf82`MkQM>biArRu@8}dwGcthCS-2$s}p{nf-cr7Wx*rdBM%8A9~!Z
zu32vYRf_abl7Su#G}i3LkiB~0_!+%=VPS3ovGlU&#B8OvPTZ(!cUhG|<#|n2HDzz(
z1H6t^<+G~ti>msmD$cNx*HVz-3Q%Pj)Pgi1#xsDqvpBdbfgR8xOk%6v+s)}2do69?
zS_oImUtN1)@z10++y+eCcps{E@W|Vp*{wRR>SAoJ%4n0Uj;~h1Ue1%<3oG+J^ua*L
zYPs%Jud{k#8x^N&ovNjPS=K%-Qkk;bP8H6|RjsF5YoRrEF7tQ$3zDo1^Mfz#%+J&<
zt#>>SWG(TkUMY;$r_}T3n}^1H7MI*Ti&mN96+ci<GMD;HlTvnNsn|~AQa62Nv)tGJ
zCs&3_z2~^yRbhg9L-LsANpBZ@cX)9s;Jw#tudnr(q$TvV-Xl*R_21e6NDTk)ZNtw4
zJX~;~Py67X($>Gpn#Y_#o_Q-mOJYb#V$^g0MQ_6(Vk>kGZc2V42!2YBEU@vvvjN(5
z)=2#O?c?Kxifk;}c@jI%YqpK~rryjcmZI(MGbx>!+ZKgpnlq|-DP~_l$1Krwd?QF(
z{jL?gLZ%yQ<*OvsP!*GNe@$KI6=TMf>dl^F_;jnQjE^<iTciDKw4aUkG&(Kl9)hC;
zbqLUglGRrOv*^_0fcSUcA!oT5mGu8n`B#t1(OOWk9eR^8UiQ+M?MjB6-;+U6pa;JC
zc!#wgueo0g?fdQiH!sIF9>#Y0|0sR#D1FglSPxOa(YiukkAVq<Y&wP%)d$X2ahQW8
z_K0srB*Cd6Co~OfY?H{3YVV`mudUq}@Xl0X>vsd*MHk*%GBSFhik7N#<|q`)QV<yS
zCKY$-+0&MnJHz7-gj9bqf5QLg&%b>BRC5a~9!x`!-{t<wHU$^vT^mQ$NMxstqq&Qn
zVU?`^di#g%Z}G!(p}wMVjm)4xlke-0dz_^~m?4Ljj~xWQgiI4jMh1*(Z!0)hP`P{g
z>w*<F%=dGU&G91KJFGe4ed_YgBqI*X;%dH6=vV}WQlW|)x)MP#u%Rp|Q1lLdwFtA$
z&v<|86@CyS9SCR;$9n}Iz-1058#iczddqx{ILhNbp`E6wMr5I-!Sb-!I=E7k2>|sk
zkJ2RLRe*wQd=cAy!Hik@0&<XEkOq$6DMkuh^d(Mjzfo405bfA2I&xbcM|S0L<i3wg
z62dRS6sYK}6nTZj0LqdIDu*f*Hkh<fGXGgUh1P*svZ_!uLACp1?P{yCc;zOKDDz@;
z=J$Vn`tHN_(j@9P^YrQN3y8D4j;hx0bUt9tk)&>ulFwrAqK>wXLYg6|SdFy-cEB@W
z=wf-_I=zq%lA^mdOw>?x(s`Q|o_gH3C_53Xby<_4uUQmmWHQ5QM6s*MztmplW_(!2
zu9M`8VcDEMQ9dSssrR=eWuhHzU{Rr6Dv!_RLVYOtzVrPqFw@vIOq;SqQuDHC!ick_
zdO+ZNpp4S*V~{p(tDjGC%RM`R3*>bn#m_In#>;EKoCb_^%T5F47%*o8))!bCS&Vo2
z(83JJHqXUepV)}a0dpEKFU>R!nAd;_s?D=y>@;4UfiU2E4TOO2HD1#`&<0Eyy++J3
z+8`@u@ES3mw1WS@ZA`LOoww;QhLr%<3VYjuR{I<?v4A{dW+@vp&zL#JOf_{^smR7m
z+D!N=!43T9t&z78#s9R|n5~&8L0kU^zx(m~$BzWRisd}meXdh{CnO~I2kE4iJ3Wyb
zn}{t(L=4guqk-sb3uiJNjKQxfEz900*I|*GW0$U78S;66B~p^=)o8=N2|>KA5fVu@
z5Sdjr&Epb=2uWT&r9t>hlW+FsijF;+*K`ZHsG!mBFdpT=fIr<Jz$@My6RAMX9v=vH
zU%x~dBOQDc=Zt}iXGd>EuB=k<J;}IJy}c_6CYSk@HA_n(JdRR>s4jGA^rWhaHrUuE
zG#a;_qjgE{6iR9`_Goe$v@R2}R^SiUxQ{HozNA|;myt^hiqhSZvM#+jvgSgC154YS
zCiFe6Er%Z=KIHX078W9Kdx6^<xV?efPjJW3<i0UyjIxuHs)WEZEWIqU6HE2;RchY*
zR3B{6nBoR>XFx|66<ZU4t{)*s1}$^QGAHIim#fmVz0nrH?w#L#|8Dz-OAC@7(Azy(
znXY5E6;hS8>{!6PO33lHFVFnuEz-j2{rN*bDzsd|)-n%}rEQYcvaT~%VSc*hK9wl1
z3Kpa6!|uaw|H9E!+nT}*=CE2<cO}S9K}vm#dGG@p$Lr1_q5q6&*&Lss5V`MCekY9o
z&Q#$eAZkjewB<hJ#mOvspEFN;BZ!w`q}V}gi9!u~NKe@jn|;;#-il66W*fSZH<4FC
zAR6`7DwC9i=MV}cQ?{ENP0-HbGq|+@<l}dj;OJH0V0zc$WaVGBw5mJ1PF2;&>t#O>
zs48Y_+C|xK6NQ!5Hxv@F$&;tYzE0~UkyqNBRaO%&uzG|8WqIk>vg~_~n4;rCaULP4
z%-4Rj&tv8*nj^PcI{r-2Ik}ekwm7R4MUi9{#vDf|EbP5R+5v&aHa4`Rb+wKu>Wl=~
zt-r_Gr-fUY9GNK2sVvI=CQ1uf*W)ZsIK_OTtFb6UcDmYYr7eiR++XG^WkmVS#8>2l
z3fsQO;#G>SERRgg|Gq8Jm1v6jYr^x>p72aRS0-vIQdU8B@ZQ%2_{Rv^DH}tq*V#x!
z(<V_+rWo5Ty~3#Igs;p+9m>_oEQt9y6l$j`8V}0-_*Eq%-WjwZo9T!p-z!+@UKaPR
zlb83JhS}DWa>u0Pmg=k1^{847aW8xB5$O}k#9>EezOE^wU(CD+13x8ku+rb)_afb=
zh`NF7quO0M>T=5fJv&OX6fwclL%@%~w#!6W*E4_BZ`yPHfB+^ULlF}Vv!U@*qGbjI
z*I$Z<VvaVEwbloMCd-V4`4|-uC-i@6jixI&_!d&nr0Ogn*$_0_>VNIO-ToR9_kwk?
zGuB0_m`5ncp*7GFim@2#Rog$d`K#7^Mm6&0xj~@jIHbm?|1d}i%1i$+a0)R`j-q}O
z>Cdo0i1W`v1ld&&xX*mY7p7Yklfp>OuwDzIcF}HGskd^ab2k=APx~UH@=PL)ib#M=
zy9JPUS;@h&G^9(Z_eFsL9p{Q12+4G$yZ$JvE7l3WeP1&sMUT?A<n5NClqYIA4CoGz
zvllFjXmQMnw&ml1CQ(F5L)902LzGq@`f_8KQ1Xn|$2|At`j}%pvpl6GvpHe$7hkA|
zg`8jLh=ogiHsU-jSM=E!ZASRNq|~3w=iG=td20R~N?mgd1|VbE7B=Z|(Cdhu`}_VT
ze(D4xYwYS=F*jFWAy|J2$w?xoA+^ovh-_q)dW%~Qk^Q1~JMR{~_Pjoym)EtNe>3MM
z{*kctFqz;(&BvKq1@giKgG_l!<+CSZh&QISg`Cenc}V_%n>|We8=qeTi0d+PVWc?P
zfUe+7>g$hKe=%Z6Xqh87l*!-wn=$!_G!xOh62|%4{l||NW7)O`k83g}6%2|$(DJgn
zO}Yuq6mS&xZo$Kyg<>-Qf)9L7WO)lqhc7-eyG}yerCYSfDgMBZRkR*a!ULp<Jj~za
z-T=V>ATd)947-`p)CFe|Ec9yT&wYJm_Qo_Nvo8`F#Kw6-;6`9MDe2>KUd+V><Y<O=
zR3d?)MNfx9>~hJQvHywDENh|4sU`#&W#>mGCN0(j$8yNsItvlmuiH~mv{#P=Fkp@H
z5G{bqLDX)Ga3hmN*()NCPbQvM2S=PGl;rio{xs+?#4kN9CJnlbXJ2)s%_6+%NITRU
zj<la*@7JAngF3)@kP<rxBQwf^-z_bYD)rHRtf}LlKR)uuAEfjrJ;Bta;Q0`V8VsEk
z%Dl0y*Iwrp6t?HX54bi^hjHmltGzEpUzYNzU)C(YySX1h{dlp!(h?6LV>0fXzQCP1
zeu-|4LO>(G8wUr_Dr!HWzU>d85NevfFAx2e4^W)w-SPqY6w9&27e0&t_zh=B<~23M
zThrk2qK6l~dg+*b$nop``S_d-k2@b8cN*9h<-IZ_`!J+W{jvlJtYMGIjkupf{N1-7
z|MJ2-erFnH&78VJ^Dg~sJBf!c84rbjlba&r&)agOW^u}s9`dr>7&DIB8)Nn`zusOc
z+pBiz2F8N<5M7HhYKw&;+Ma%<WT!!^d!Mxb#S}^UHQAs7yYfl2IN|y0ci;VRY2cUy
zQ2D=cNj?roy@-|M7AZ=urR&ulG+MJbq~r)Fv;s)R4)l#j6c^eQ5G7~jhhQ!&@F(?I
z;gdrB<nT#<fTq>yq`1WCn-EcnwCns_)Ge{V(JM;%N*4Q8NMcOO^*k7bCS;Kf-KHCP
zQjta{44UO1w<@&w39X7Tzuu}C!l$$<)J3CVGMV!@E}F2PF%}QGUl|IUb3Z=*@WMe>
zY!)yTzlR8FAklk}tKC=#1wWpA?MO0(A&yWLr#J=S9%CrLd@nqV89~Q#`0k<9Pf;c^
z;ZIb0Ar36d_@=Z!zb0@;>bt~oXlZ+`r3RAUeE9Ce4}X2()-@YQz)J@Hn2Q^bD@k0_
zCM*V=M%GSfWXz{ADPzE|4GHu-xHB}Mk7hf?QwH4fk=o&tnOrd85s6O!<j6Fu`Dao2
zy*QrOOG}Q#msS+4!){5Cre78;T&REc1hP(5rU==$NN9zR3DF8lfz738)WZC|OP!3a
zB`C~FL137YwVBHmuvMP$9Qt{Qe6aKOq31)-hkl3};X}`dLUVay&#ghKRuqd;qHSmq
z70d^7=vJIQjB{6Saaas=A<;1oY`|kf1RLJcW0YcYWeZi**pf+*N7&wcdwAjWPIln)
z4Ug=#)9a@g;;iOYmWQl8*xvfX3oHGVCUNdIntiKTA~=>i87@r=^b|>xYVmRYXz}>x
zkB@wdzXTy@qE#tJgf9T~yAR*5(uzw<x20?k0>yq8!jQxXgB7JaX+xJns`4xmLQtNV
z`{Dm%lvp$f4<H>gzWDR8jD#9gX;zkFkA|GsMbnXDOdSO3l1b(G=#RfV54g@pq>i}{
zFISRA2shfmXELfY`^w(WC5iU>U}G8cEjI(am81RmC12Nk!%M(ZSeCWyTW`%#0w$av
zb}L6TF6UT8I#9N`--xq9IL)ds=SlOhe`4^Ix1oM=oEWR4FP<tw`1DXNBfe}6z5U(0
zUw^n%aH?AI1$Q1LEqw#K#b^9JFLi7NMtA`VGBqCcx(OBKvW7}m=f|IrA*?_0#uTM<
zY7OU2l}K;wnx&M!DH0^Kvgx>P%sp&!W;x~5H}b5UTc+-}4cxWXelHexiyNY|<)y~5
z#oVyR665BSTGoHT7eel(?xFQ#=xu{cuhx=I31!^KM;J{{{cTOEsobNTlh=-+0)?!n
z4%81j)y&lVIwT^}<vuoX;gb&ZSNt}Ov^gd$D{(zTY+f%?O(`A{r^4Qp4Z<aT8e1Bt
z#LPi+Hh9k*X@yPz0qX5|U-;(-5NAYzYpH3sY_fr4g@QJ|5jGvIq#n|yv^NarT9~{|
z=hWyy9HUda5~teZlGaZY|7@wr=)7D<+@Rt?tv&~)$H<$qzB>IHLDd0^x}Xpc^Cm|o
zSQr~|I69Bu3yr0%kMJ<dxb1NeSBv%JJ|+<ln>5-MLC*+bGw;?$SZ!~ZQ!Ci!_3*;l
z?1v`ZULJZ1B9T^0jm&RmRP$Xx=v$`q=o`CD0Emr8_Od_EA9@1;0>n8`<gtVi)(JW9
zvkYj2G7?HO`ZC`~T$(dB@=ZqfVv`m`Wj0hshq78oG)MPYR`>J$dq%alEgfEJ-pu>V
z)&%Fg-W!m=Pe>_x8d+7+8{u+`Or&Ooo%18M&AcBPzii(05R3ZMYdzlQYn2k$sm`rR
z3>RXqVUxn3j|R8a*Fo=RP)aRr=G{u-zd<_h{pk|{tZpW#H)&2-L8lEms{3ignN_rg
zne<IxR~AcY-e*k-$#u&%sqPb_vaJ103iB9ZVFGT}2}ng{hY#DHbM=EAh$+^X*s)8?
zqVQxu3gVKMa3bH}4~dbCn^S7hztjSQ+&7Rqam=kFEj8uMA@O|S`B=1>^<Am}hhQ(w
zc4L-t?XCJM-?!=XAcVtw3@n~dS=WcuX~)o%EP<wLgBd-fcuLH6sO;uX8xR}V2&cr^
zPUf3!=C+6Bl1>TBG}!5)_6_9i>{cVU%_(KsN=al4J=#*eFQ)m!t|Quo*&Xjn8P@n1
zhh^N9x@@8x`KK^{W!n?u76!#a5xSpF4N53M@aXq>6q?6$DDhVummfdCVR%m145Rh3
z%-BOm$rfhJLCqpb#eki#&U9U;*04Ba?r6d6_y<qrXu*86f_@UM1>Tw!mNW+W%aeMi
zJm%sMfN-DL>>mSM%_vG);l-3{6!CC1LVms)RUbt)8fa?Fc*i$2SyvZzbg9VPk#^wy
ztjLphhzjD60BUn(@M#*Eo5>H+(liAS93w7}U$B~R@(hO&^XYaUOSbR{XnM$7StGE4
zdFh1Sg{t-iQ&5R>)<C(MBpt6^%lbu;QlDb+L@uLRN>21X3kERN%o;%U#c&n!QA;zs
z!b!MJy@mF|cSEP3RmJ=%mW+9Y!k3LUK8&&LWt@R*7&1?d9-djn;s1hSMJniU?Ih%1
zX90Pbghk<YIe_;ffkjT|^i4IJ2D=>@CPM=jB11ql&qeO>6W&m-ME-=ci$yK-ysS)f
zP3`zLr>MHdP-V4Tt*nerSJ73k!ORTK_znlQLu$7?%8Ro4-D-XD-FEN){Qkp!|9GjZ
zR;!4soci3RQ^QSqYJh2CF(K+GJN_<ByBph1OP2ga7UMF;4LW}f)MP_Fxh+<%Sn!)5
zj(%ec2RBkZ{*X96d5iKw$+JPoU3?DqiuAw-)!ni=JUb<p&8VB@ZI02ty*qVlQFF%O
zi+rm8DJARQFL;{Tp?z0C@~fY-((HBWS?vsKjh+Kwen*<%o$-(_+TYvbr@#7nh@2{H
zyrES~t-ygtUQvfyGzq9*>CM``eQFagWs-ATeFMBl$s4;L&y%`nv-ei)7N%rv^j!Dj
z?j4H{R>?gPqk~~n3taDV7ocG}BSHigoe2bU8iGb-?DE3>(N1uSWt{0P+bcL;ufmpm
zOoy>u3}X}GRaT(Q`>8>-sH=m{DeR~MuII3s_nC9T%SS_Tz8QSE&_UfN7-(_~bxU}?
zw$XLIiFU>x$~gko9{{`4i{ypWWJ6Va*c=iXr3iu>tj|OzvUxn;`67fj_%!F`o>x%^
zEr|jQ)=%4J-Va#VM8ilJK2?n(^CU#Y1qD4Xp>0knAtrJHNo78dSyjcPIHh_@s2UCl
z!^fhH$Tx~z(R1A#6BAO!h^Sby!EEn?8l(^~w6rqotFWq0*6liP*Y4;#aW_O3HkX*w
zOBu(zy-y&!c`zI)fWvl!JIyo<tJ%Es$p(B&Ec}|==5Svo1e%DswS>zrHWx*1ueQWr
zv}BV}QMc>NVSS;@`<T1+3ZAcUshl_PKLLxHm^vTpK0jaQ=H6$cOT%JYYKY#j;cOq-
zC-VaXT-X#F+CBXM=(8X9aXG+ffSIdfqptNG?#ukwtX=yF8OFjE!KuWFSJT~G$7bGV
zL*CH9v5A`SK)#HUPj{;%2uZaH=tcmv^M0HRKupU;S;i9T@qU^wUj5#OWlm{rE&x3e
zCSy)W;ik;knnT_k6E?@=fz}*JIIXRQ5W+YmPOCwynB`DxYyw>S(od<=8l(ET!qRbl
zZVm~NXd|?Z-Om>`!({i<c94#VyO5R%7R89_q6Q)qL7p4%l`{i8`}f=Jx7!zdDRXLD
zn3`x!7IToDszdjE3$9+Hv)jZ{IJG6a4d|)z4Y6)nV$N=sZ@S>=?I~lKv5yr5S|NhM
z4q_)A{M?VIRE92a3mKhqJ$Zd;7>lBobd1-$Di%VArwq~c6jS2;;?N3DPa1w{b4V_e
zBkcbn-49wxFr0nNkv^BTiRxx*PPZfa7No;H^Lg?SIIU(6Zl$7T47Zt9u@5vL4x$TA
zAHTT$gAwhcuuRAlOGZ!yx5$H)#TF0pCRk-o6)X;10U0IylbE3NJl-V>G;3k-QdB6q
zXbEQF6Rj#B<do%v=~9-XEKgZ5J5|&Unp0dH;o-`hXOfIhDoOqXeFEEmwShwck3!#h
ziggt0DNEV&Op^5zS~#j#S)bg(CPn#%iVZ}I=Gq{a@*cYFtlR5SS6DMOK9h^osX+Qk
zF<vwu#aQcSM-SlBB5qDsoA3h1sgJbGAAt9I+YZ3{scky|?o-;vrtt1k%)0b!79Y`R
z`&hyq>DYwRyPUX3)A>r3yM?fdCh-r97P<(a%5Y}aA1nv9cP+yOCH^Ecqj{T-kt&5G
znW;y@Se<06&t#`g#stf2@84bo`+g?Vee$hiaxO_nss*p_Q5yLfa4n>zWU@zvy)V(v
z`&|I#CYBJ}TF53D9hgxCOSh_fBdQ!rntKC+E~PTNniB)uy&eNtcw!9l3EnFanxvd_
zLr3KCOfTd@Pv@n!&K%@#Kd!o>7n^^WdNHy86fLv9e36!!@hV=i#d_Q77Z}Xl^j>Vf
z@V>h9=>J#vFRjqCGDiKE*7+~*<o|w!|9BX``s$Y#gx4wzEq+0bF~$EFu(H#?-+uS&
z?Zt^+&1f-)f@yvgU{mu7ke*4&F=QBE{ffSUgra3<w_^yJ5#$sz?m}fR2g{IRunc6=
zuw-u_bNC*RguzGQb(r*2w0=wn5QJ~92$_j&sXR&2x6fJDj1_)!GO{2#o$f>)oHpvQ
zOQ6&XD9J7<<Vk?eq8TIm0>^5mN0ob8uOQ7{3}>pv{y2k&kMgF4y`uJD;3^wZdCNp*
z&7+=tGPk-!D~_Ta9eT)}f(vch8S#SUpES#nUF##Kk5sy|(tV0N2a4TV;0k2cOw*cZ
zlt)u=Dl@-s$$I0|o4s!mN3>J0+ah~I3wN<J0m=zb22dw}V$j6Lm3{;CWC}7-k^*Qv
zVb(DYiX0Junp$%T1W<%b_7$>J1ML~;=AiF969K$@l4+3|D7t$YMC*BljTRZ^MGUz+
zgj;a`2L>2X0pyCA`l8P_K$mun?uhlxwaeN!$>=Lrmle#nFh?Dt#JZD3Vv&Cp2@L=d
zz^=tSRyM44z4Req5V$l*?tN}_5Y??NS2NAq@`%YxC{(zRIz?Pfv`JW{rOmUDUfW|H
z9N#E3zi5v-4DpW)0MKZ4pBK4MMRV~fBBO?0Obja%uc#&rx@Q{cq&tu9E7DKCqY3b<
z#Efui>0~-%8b8r)n1Wkjp28#>359kH$zXDqd1nsz#1PnVdqiL+%_Nd10Rw$BS;9;M
zi8B#{$rt7uA5i+0YkMeZLDm7;``GhgJmO$2MG3?-WKKi2qw&aju%Drrz{qQOePS77
zursIVE_5cQNtlw%H;YWsiy7o<D56JjCK^5$xm1b`KTFaZZ3^S=hk-w^8#7C_O$>?}
zks<5az~FZl+7Z~<cD|cr1u!dF0@HC(-F4sCRYHT-3so~*oQ7DrGPe)uf<qBG!9;Q0
z$vPm|s$m1kXj>?2^<=e@os~?zPEBwmDNAbYYJ#=aS!-!Z%Ia8Em$Fv;m}$B<bhLcH
zfnpxdT(_G4j@+eg7hD(9XH4}`p78GMzvtOhs{3W?#n~IkWQg-;aW&3ts2)!iQ+7RB
z=$zXN$sS1IR#Ea}ZfKAi<5hf<=~{-9Y5pT&x1GW<=6!&F$kg^lMn>dHGo@97<*ZD9
zk5Be~e&nl{QVoSlsg!2*pH?Ihn`m5C4tQm=rHXtH-RjgQ8Dd%QY!{*qG+r&-6n@?B
z;=sx)RiI(!+R5&+T_QMR{mGz5gvc!M-{R@w#awA$Z?1rC*m-8L>2_W=cZmyw&hnN_
zMX5*mje-@TXIlLF((xrYMzipg)#YOpOojD;^(TE*i)>n|?vDhwCpIJpv*XE*u(7mc
zkrh5=1<b<;p#+ToKN~+|HnNYdZ^G9ZT=-(?pEJ0}`Tpk*-~FDLadKE#mV7?zy9JF4
ze6y@T+W9W%s<n10im6+e&K*e6$2W;IoYW!SiHDUY?Z4r{8~|kY88AkTi~<wZy@J~!
zpx6NnFser5+3V#XYu}T`b%(stSJT&Tw4+myOt*CAH1y@w0L_M^CgtdcFT()TeCGSn
zNfp(BMg&_zeFNZwd4xlMhh`dbESzKLlmd&6mKw`l9##9n*-HQA?Hxj{2$)}HP9Q^V
zphN|0L*F#v9ExgpN?}#N$IDON>i!Vo^6xuk)*+(g^p(~%jcbS-<xB4;t?QPL>pJ$%
zy0-hMGmg@r!o-HF)w|xzj(TC{*tAAsY>N}WRZ9IbFNDBk31OB{>8u5KHjx=KEU6?%
zNm~Dmz)tWHHp*m;N?EMeL`k8|Mf~Rv{@V{PojjCO4q;V$AUpb4rA0*pC6FO}TM&1L
zX=g^;C6Rm&2H$qRnEjM|N=CLdT@~_O?OCrum~odn74#xc@Bjz-Y|=@^l21~0Q=m;a
z#vs`;u@{}QATLN=UWgKdHqq9)7O3#QpBpVTBegQ8a!FnbS;ZBSFn7C`H#Q3vC_6}0
zd07elOKL-l713H0K~R}ey=z<trZ!1)q=dU9rB#=V!cQYXj3-2uXpkzoLz}a!4(K)W
zZaIUw?we?ukg8GoonAx&*z13G0cv?B`Eqd#w5O@^`Nc{wY1DN0g+PAHWGK_03%*Gs
z7DD=RO`@Q=n#`f8)3kG)$jE%s!a9*n?(od%@ng(qBxODbJ<j#I9Bx|Wv5+@=#lWn-
zCHeZDUN^N8@oA&TSC%6xBEo=>W*zKT-q9bn-~avv`{+0G44Z6%5bk3YagCT?v06)a
zb~~AVW*mGXnD6$@H=#=AF>lLx#M|)@@{MVe`%O=s*sB_Et@#YtgT_mB>ZtD)qGljC
z!|Bcq50XeRa>s)Bc3g%q<i&x4-urR&_ghTLvc#}o;P5i{&-6$-N9?yh;y&QH_H3|F
zwV|+yS~OTVQg#|O3tu0PiT9oZLNWY<y>~p8&&i-jE^BWR3W<s>fH^%b9#Fot5US5(
zqn?79COtj(BrIOYay4jN2o?yyoR&@p3mg+!CUpa}hE0f%njsg^$)vg~Lg@f$5^?M@
z&nuk}vLVMAWB{EK9%tvF1zXp=q2Hp}c^o*=X!9X^ryn#VwE5EMWdT@xlc?EF&;~43
zu|HHCec|09fB^>_t#gCuzm%%&uBkshbbZ^&tp+q7!4E0ebB%V8RVS1fq^^QWs#l51
zcQihkS1|Ehm}Ba`YfeXP0E%=%IPK&FM?l|o7`bG6(Qk8z*Ms?mdM%h=&9~l!dM(VK
zqEKIXfj^Fb;bLRC2)c8I*&nm-VV#W6;`l1dVLL4JA_j$14w^N!?SckpaD=gUi!Dpy
zeF8HtVyuDPQX=mhWJqb?w(ATG@<O6z!?(;OGAZ?*=`qfNw$G^j-KY_GD$|2p<ac1Z
z<Rkz|7a}e`jlLoA7R_>Y5Md8$qw4b1Wh?)WKYaY-<+@*FWmaRBt$gal^4WRL4!N?H
z)^{*0mWL_6jh$9>a~7K{Qaqep<=}eQ$qpM?<aY3rA-pg0_87&jgn0C!mi>I^kMja-
z(+aUaV*6J&{g_Rp@XYT;h<Cj(J1CuZ+_4r+m6{&pdxBR@9$+3Uj2u2OgxDFB{O;qg
z-~H^;!r(XN!=RvvB;|uzc9nBk7ueHX$r-U}*-IzO>#B_YnA<D&^mssk?W7_GVaH&*
za*eNkv-jtvdu2G~vgDy1z6eFp)v~%%(X&)%rIM#uPQ+25MATqiak{?VXMJiF{)6_P
z<@`tOKdb%q_TMK|^9_<-pmbd0>tFrt{|n%90sLXLNZoDsmusMhs5OwH+(VT5RO+_7
ziNsA~it`5;Qk1%8ynJ|`&1^qPCF{l0i+rxH6_WMh;qyveKfq`!ue(lHdwT-Y)puu*
zx&|h5M>xJ{qFl_9>yAm*hc!bZ=xVP{)8y(q&6LZ+PWaxBzkUCLu{ypQV^uUnoW8i8
zGe91nb3mSRPL%KX0`?IRI(~XNy)$AKuCgWb{l+c>x)S9^wfgDc+*J^{K9A-8KDK2y
zSU83*_IXZ&YJnLb4C5<GP+6q3WCY_IEbQ%9gEZI*9IM^uaU$il*c%EL=x8=iXkUj{
zdSrxm5NHwsZs}n>|D)QP&f01%HGcar?6uydvAEQT9e@+ONtdnnuRWd4Ce7oYeq2o%
zUrw8EzuL4(zyy87w(o3kip^kDQ+BL2G42Q^iHRW^cKbvkgHCqdFW{oe4+Uho_udNg
zP55!sUENz`ysQb3d|GzihLi<t<kC=$9=}lwr<ieoo8xXJI7*-fUK@g2^{sD|WnZh6
zo>ux}>fbz=F!f&!<?gEuWn3U4)*go4ZN}$gnE_FTo;jX9V}0f?V13FxC##5#A33oU
zGRa-zlZW~hcJP=)Vdj7N5dQVu_x`uvfBf-}FQTFU#$32ZF#|KkW&4;ExHK#n?d+<E
z`eo3UJS>U%#c<2a>1R&lU<K(zaF&FQjHYn3r2AMU$H(4vi#^cNoZaTRJ`25{ZCPM1
z@4QNK6gra>3Y&#OVKMclXfW`d!Mi1^uTtTHipdU5ZSAf_RDTk0Qffj?n`%|^k<#OU
zJ&^6O=ka}8=uTYL$<S1Ma4P+*VQ1}9v(DjH#sPla;AhE0SMwOOCAPK56Zp=cC*a{z
z2Wb-h!(NI0MeAR$^e_FS{>9<ULxD5MCs44j+P}O|;_d!{%e~wF=F(ANHHGYKyrE{&
zw-9wCl9HNGVoluT&ZbbK))M=`kl=-=5WX*Wp@Z1+H&dpJ-JEQe*+5J_RPF#O1h9lX
zMIxPuL{|5I=sx@ofkV|&MmiAK)YPUbCq-m|m!jQ`<!OpI_B=a5vLHC%A#oa%x%fnx
za^Ty9tgR^%8LMp0FKpWjooSgI4Up7A>6JQ4BQp#>QdmkQ%r6!;!bJiniCG89jA&3J
z@`sP#U0Op7^RPw;l++bhxhB;#G7SFYvQ(Kml3Ii`X?@WgF*~rC?-;q!^#m8JO9Kgu
zcF_!I>m`emSAV%K?#xt#ACZF<FpFa^kBX8P<w(Pu1O~~G&W2842YHV$rNMHz(d%LK
z=?Ipk*ay+6X~C;$PA$vTscFNhX|;PbE&Vbh^^;N!vY@i8U~j<<tSIWvTIQ`~k_`oK
zP4m_?Z%tc0j%H#`1cXy1Mgb>uZL)>9+n_c}cPL=#0DyJT-Mk}n3C&4G3l@V|n;~W`
z{Sf9a76u%2Q$fU75{CsN`8T--4#kFKJ!I2V>{(MmI$bqKIrd-DT@L`pVhY8kdkWR@
zIEk4ajAqNN?<lgUNc67gyOX_(v$C9({OI*iIm)o=f@O(zTD^OG^gpbsyO%)&N~#tf
zrbxb35FFlz+>rW78FlPq=n7lDU=+8rm~Bv|nySTYHaHp~lsQNC5)Cu;?-UiVs^q+A
zXa@&PikZ!>wtI^1b`*qdikR*=Zbu4xW*AQ?D|(OiQz>3b?$(Ms<k+XBYNjDnPHJZb
z_ZYBH7(|Jis|{$})5hwfqE(X1^MPV*DZ6qduP>fM(7*fBkK6sF>w=P+ZLBf^gw?&a
zC+N@xb80(~sNu}dhBRHHT4ZXM1MNuW`S59>MZ_qQtekvZf$B%oX&!tIh}Pv~qOw99
zKT6e)K|OJJi8!0&3$aP+Vj9YOt@A{`hq2wWj-tdc_Ug^fFdGDr+TB}^f+8~AWf~v|
zXGk>ddPNB;Z%-gd=KPN3Jje_>QZ!X8mI47kVkU;t(T3_g$|VU*v-<8_+4bD%<+9xH
zJpqsCw(ki>@af&&|N7&fzmrG%3tw^RTl0cW(~G&_ODWtlH493=m^Z_CBsPZ{6@!rK
z+NyrVp^1YwI|x8d{ZNLvCXAq_SaZ9&-m00mbvYg&`8JgJ(3iKBCwVJhIn~*1a{HO*
zio_Gj-uzzQd3=0oZyHE-<$jkXLK#lp?9Ls8K64=YlwyBhk-gU)IvZ%sN@P%i1W(#c
z)b+g3i!%`Z_{Zx2{LMK4nfA4gBLE3+QYZNQGw}Hv;F~2Jz!#EQHNgk%Fu_L>@FB{%
z4Zp?U=Z^4mC-`NBn9UP_CBz9rk^<swFROLA0Yv`{i2fXiAAa-BfB)gT-(J!UVfX6`
z-;&9EOP<n`2ISW@I*{ilT5y0$oOzK94W~d=#g#Jl3M@H>v)fLDS#L5R=Dd~En{Bs5
zp9=t(x4nHZKi@`eZPm^DG`6&?^M*5UGvpL*5{5HJD(niuTY&lF565q=&K{9EW<I{e
zz^~Cz*YU8M_m`dNdTD){-Eh{YXHDDtE4^va&HJ<7_(N}0rBGN<s^{?7S(VNjU{$(V
z|J9n^YjAuHd2=WmQoG*x-5k2vf;o29g3A%StQllt-k;SxKNR-*;kWO9`1Z&Bx9iF;
z=NRlev7d%c+zd)s@LS?41WPy&LDChhvMLz+&_wc<89r_dr>m`0!A#0BY*CmM+{)vX
z$4c|3(z<2sGp{Q4Rx$cd354&hgjIXaPyLoWxK(qbpTNp!awnP@<UnEB6d46n83=T}
zh;#`h!zAxm!Hw`HgI~W{+lPujdMSi53l@El>g|<(Qv#ON6p14@DN1lE$czb!M+JHn
zc!zawK^tMA+Qd{wWwMc^*}AtbTX#GIqnPA`B$Vl{IGesvkLU=gt1@Z#9rwpF0$<iN
z_4h%d1GuA3$dMX@=G7DKCWpr`z!kdZ71<#~-H)m!P6gQ4&kM6j_1&d9&@uyAF~k(u
zan}`gXoY6EC+o`)bpi5R09cnvPsoOpn;Kh`Lfra7QC<~xiObHH0Zyc=x6g-u)#xdL
zm1lW$t^Sm=xn*WCPd(M!Z8v}u7mI_pJ~!v`ap=&k3zM}o_gjoGHe+>+Xlzc-*5GYN
z#r+U#q2tK3vTW2UD2e2PpaF8NxR-X@`N)A+o!$5~mg1V3oj~U}@b)n?WNxJmqVz3Y
z4_h8Go=XurXAg(~Ru~E=ID)sEzHiAlaBd6UKW*3A5)?C=iISt@CQlWqEQ+WO`Br5~
z={9#4?9I?I1vop;hQ~LhN;P5{hilO>ydt9)1&Cfs_PUiF01RGNHjB`qTf-0$Te{Rz
zQrM!SlzVjZZq+MGG}Yh%N(xDz6*4~OVRNJgyTv(6Y$6=z$g?@M&N!QN<uvJhq4(Mz
z`iOj;IujPtqHvn9*1(e8ydRzF(=Tga-Bl<#{Lon#$fah-ta#ql3-GY3c`i<rh1oEs
z@f@UA#%8$~8@3au+GQz5Fkl5&o{g}#*>SpQ<}eG>IL?*lbBm^U-838R+j>41MZy#&
zUSe7G7Ma&0<!2N7#e&H6m<yUr6bRk(Yz;a2=P}S`hvyXI9gT6m8sC(~^tzTxRz@bm
zL8;Fc_T^5XIbr~8K$E`{rwliL&0PkqM4LWkOib|mt$+OR+ZR-MFz1x=H99i*8-i^R
zr@O>CrbjNxIBQ{els1(~d#(`VqPO7jD0B+<hgd4pZx1$IMF{fwH&d%f|BQKGfbo-u
zZ0A&z%i8AYBuZzZT2+GC{lPOp-Uxj-z>3#O{!tx4WN&_GomPHg6{DzzoWH=TyJAw?
z?lFCA^0paLc-AWO+TL?{I&|BqO-^lcYLl}zx!ESoBe1UilptHiEI!6?rTCcQXBQt^
zruc_k`z?d*28oq+z<U{idZKwPY1r$*W(BWfPsIsb)Yir{h#qKS!K2rrmfHMfXY=C^
zFXBc?Lfsc;*maeJny<v?sQFr`l$x)FN|B%Rm!Usu{`8_BZj=nI_)lszt4x9D+b0K*
zNpbn~05XEgPcHqTFSh{m(+j`RbhbLClDGz!^C`w-9J0Q=<{_ppUl4{YmH4`Y7y?g3
zjz`rfS>IR&sk}Vek2Q7t^T$X2_=A-G0OP3t$>l`_0MIzy+CSrxZ*HI|-gHv2-1Hei
zC;r!KJkIcs`xg^@C*l|?307KwST(ovWgFnaI=fCv70M7?c055tgu5>H)CmR-TIVA3
zk}(V~b=tzEW?h64zMWP?cAMEvo{@sgw1Wd{vZ~AExCX58bQtx%4`MPCJ~}yYDkJPM
zp%H~rlzfk0PIw>2f<$^HPiixX*He}!Zt1dAk)sLqtCHIsV2A5E2?Qhx_((AIaEubC
z%}&cOLCxTj*K`8k7E<=a4FjUB#FyZ@{6=SUwxgkRm*pGV3`b~UYV)3<PT52lA{<0o
zGG{Z4N@{WUgP-zO?#<#Q0jHIUfX<5fpS6#!N5I$ErEeYqU*mka(e$752wrKv)awiv
z8k}!ye#pzkvlLGcKoGNBa_>Fdm~T!6M(I8Fr<(uq>cGYuZxleZFaNMr8Mg?#ByqpQ
z`xzmjv^D!omnw@j$&`?!U?f#4lP9;Cj-vY(Z%S6|$;ifnTsVm9#7y>BB8Zn@8cybH
zwY!S=P3tuqJBsxs%1z{1&fAb^fvz?pOlwIf^Df!K95N;3d!?xPP8|RKW-1vqV-%$Y
z;`Axs!O(^&VF5CYmLzrB^nSdu=?P2JL3<2nXvg#M?_9lhA|PKqYli9af0XP7O7?NL
z{o%vMRT}pF_aFcKLKqSAAwB|r81a27Zjt;E=D3sIgk->Jc=HW2v|~cm4NEJe?+8zJ
z!>c5I?G@92aO$MbzS%=Q4xhzl-I@28)G0n{S+s!+w5H>gUaXz?{blUPnAGxRk<Pg}
zWW=YbLO2j(amJrRM)u1V?df_)hScH_2R#NtEmO}sj2i*0Q;F9DSjToFfb}0R*mWkh
z^2(HC6@&?Vix!#eu|+*_JfLM7H9G7+{_)*+mzKoIxTZNK8giG|ap0WL!8J)j=9}dq
z#{947BrJ<3ba#VwPe#7Yw`uR4NC{I#M=)CNgHm+2FW1eoQoL#t_=HMQ(Ga@=;~fV0
zgvEs0cfYln4jF<N7zoC44nY|=Ni#8Ju!V4&&wx$AZ5(n5eEl}-w$rvREA14g*rS(l
zh#;I7Zu?%Pe`B}Z5OS%j1@Rd3M@kgwmYLt%O*Xh;c)M{phTyH>S<U?QHq?F%9Q${_
z`QcKfAuU^hBW1NL5-B^?8z?ZQ7`M>vS;CXg*4SkN#2X+CD$kpHFE^<!ronyZ&*0&o
zL1i(BT*7YxV&1H11B-iB&qEyb8a%#7)b$b|LgiDiF^HTjw>|omdW(>l)8pv?4rkz)
z^FsPB$2MCtFGl+u4wgPZ!%t}V=O6g<`EdmG`806{c!aC)K*{xTu}G7!bHJ*S*BDgg
z*0gz;AHSclIII+Bb7Df|d<wtpn?c|l4)e!xt@!7Y!#|rH28QSGp1<DqxmZ>xJbifl
z@bSf_8@Js8KNGMAe{6)>kvn5#1OcDC@EkaC*xJPRY!RuASosS`V_2eGUJrbEXSz$6
zl5rp4LnCmM<Ph#C#&rk)yO)4SN@fxq=9oO*U3d@z)K+MHr_9yqLuFkn(ubAIPT$pi
zPB1EE!Z*rYhY*4ni9`V~#Aq6jwI{~5M|HCFup_F+`q$QbOlTfJA!Tz~&}tF!*!VGO
zrm_;d(N--DWUfU{^^$`9w;Uy3?R7>QMsyF(oyUDCQjd#>FqimEY*Bpsd7p@GH$UGC
zz1YK9&Mu&5OpLW)4)EwA&IHnec*M>7M3yX;k;3ly&<9@aB1R_Lh?|<&-Mm|MG`}?|
zWXbnFp{L}j8U?bv6U3bjl|kIF@-cy)9D`+J<!!7qRNg+cp|UY<Wc72XJYyAQ0@(oj
zqRZG7q^dz~Z<sF%$6PpGmuwtu3q+Kbu+0{s+-|e)l1tdQU=gt(Nt`F(-n76fWyiFO
znHk`dwJbtR2alq4!NG;8pw#}f&I5L}B!_kM&t++`>1t`|O9M`ONVb%RKhL*#mEcsu
z`L~vSPc1C?R;2Tlhc8UBD9%7m76$;3_SuVWy=Zr_AjO1xkqFqPpy|2udvVe3J7PfB
zXd(fJ*gaN~`oF*_D2v(Jr^GxSjfE(0rp%tHarWbHf4lll@H_lAy@)?1Wgn1Gd>y3t
zfL`@<Pggllrl~_Bk>p@vckYx?wi44<P$~?{gB*I>_x|vy{ZaB$H1tXDwZ&Q{5)_hA
z?UwCgs8{_#ybbk^2bwgNc-`N`Q>y*?JJb-+{v!aF0yUWSJA{FfWcwu7<nnl5O(ZD2
zm!|J6dMbRWe{LmjYs{bNRAZ%z;ZHuO*fY-b8QwhVIT!q#-HnbLVPPL|cf=#}4YGbT
z@G`=z`@{CPA9k1Y_^+44WE*uKs!b^xr0X#;O>RhVwZy9KBwBPo9YMlLP;B$Q?DZ>~
ziqXAPM)W|}<dnr8SPm;l^VJ1xOH`z@B6*l<fA+!O**lZvIC3KlzX~2eP!x9HIKc}K
z^vMxC_{M3=rtG$)P;2Pr>0RHS=!MO0S+vHxLt+)W3WX)H<(@eyAl|d8OHjV&b(2xy
z?As#eMgvE&cR4iJu1MZ*GQzJUj-ks7pRxu9a!vwt8~?+s$(6~h$@T5s&_gH})+YoE
z7fWHE%RG{v)YcS+xIVM>N3B4pnxoWcNvqPSN>7z~X{gLLDf*Vzt!(zy<!&`oDYP4v
z=5^C9Lry){Ze@ILA``YNI8XIloPOKY9&nj6=EJ)eg1%Ob7|L=W3V-M}#OLlO4Ds*F
z17}~gr)$Eeb@46v`BTzQa5@71UhO)Ik=}b?8`H4_T3G7I*Naz~x2eUmr?bpcA*&&r
zp~Ul=^iGw@*pTpwryuUI_P8ORykS%`5gMfMvt8oZ2M{+Xew>%Xv&~!ERHkX9tqfz0
zV`jp!9H3np2npqj{n#P59o2E;LECt<(CPkd^eigo{e_miHSN+rJiOofRY~vn=csCJ
zV(8G9Eb3oI|5#FJs$&-JQ{<X4>+2Zvaqgj>$@zGn`?Uk;F_wDeSh)v}s9H2I+qLsh
zGhL+AlNVUnsR7gdUH7;=`s#_ep(qdpEuBot@W{yI&Xnu8%SVFp<~&oogpX-H&@+Kx
zGXQgKd`^={S#h4??qk1lzG8-0=o4{8uC{jt)TsCqj{$M^A~Q9ZX|5*35*VVzEiC4@
zG2Ukj0DcXwyt>vFRUA9+qZE-{l5-xH=m%#zeIG!j1>jvXxgy~kuN8Vb>P_pmsn=}X
zBEc{W`o)1~o5^-{78S-RE3qfj55>S6cimNmP=77csm0D8ejQpgA9?-wWnK6&!}No!
zgq-EnDVd101*4pD@_7JSP-?W&6k-(7^3_8%q<V<-a;hXRhEu3te_!);_3%`1OLX-;
zgLnlAFi?IvCpVioRErCYQGH6eB9`Fydgq#x6Ru1DhQ_H^4r?j@q<DwmQ9krXxf)W7
zq6rZj`Dn|%=KE3aNHL9jCUPs0`ygjRz0303#fxo712J7Gs=(Cmb(<BK+1x;?d5=aD
z{a53?8gGcYSL3}JKR2~c9=~z#UiwcQvN}-gg^e68=oB|!{W&Pb-@@<p-lG)a3L8Rz
zk)wECvMWo-G||Ij8Cnt@Qt?vFe|Bf{$auC=)GbTe-KxWYiWZ2BAn=xfJBD%{-Z2-3
zGM43=hZ3f1$XM_gf=TgR22Ap^YAS%Sz;Da(?z9bm5u`vDYLor;BAwP|E_6c2<=tdW
zR>q>rw`qj+QWVayqR7ZZZB^l-dfZQtSgW+|hs9tTJ`LaqO*X%A`UZm6n7U1yZg$jG
ztY%BEyD4lTT0rO`&94|U;eNhtg5_A5V4>C5&oKC1FJ{@p@^3uLBr56~jg$y#hM{xM
zaW|8WUtApzxX)~d7yqBE|9O-3^SR>ak|hL!g%%|VA=t!CtP<6Yfc=?B-nEB8$fz_=
zI%a!e-u6#-T<0T_CKzgsFTIsG1_k<kZE0bo@TI`yhXBjc{Y>^F0b~@tma|T<;?6sg
zHswE|BRVA!fMxX0Mez!|>Y<V9%WnQ!lZXHA@W>s0kmCOlHlN;0K-K%{@ozL41Tb?i
zKZR1UYMEgu5)&vxN;Fmxh-;ilWT*InV7^H&``$``Nz9&P;U<F4bcLFXy6<>a1Dp?0
z2RvIljefz6ER;2iX9|pLr!=Y4KYw_NE&MMda=Bz5*#3pqZfX)o3jS{k_u463%NPQD
zy7I(5h&}OoBCC6GtApak<3W}y9~wcZukF+4B^`i`687#~1Rh&6x3p4;=x7byNl`J#
zJ4E$Ws#;kDyFb$Ix3OR4p}~l|;<q)_+frXx#Fl9h+m~w=v8fl@)8FRFO_0e*YNy<U
zj53+$dh{$<FL>Gei+DtN)XQwU6fZKn?o-d^t2W3X3z0`7P=F}VixlxUSrc8)Iy*Hw
zH1o)3X?LcW)tJ+N!*5?kMoVf_U3D4;72%Gh-R4rSnhFC>1N8+{VcV9@y}CREQ85Wu
z*by#yS`W!4rw#KyH+3<*JHn+cA`uwp<|4J2A8(mOcWBmqn5z;VR7A9r4!n$^;6}Ki
z-eSw;bqO-%nKwOhTwpAgLwOqyrB&v25E<Lj^E;$sQI=b}>Oiw=k$kL1yGrO*X1b7x
zT?AUanZV|6IfyiVm#$xT1lb$hRb3UoYS{HI3@Miw@v-oSKb=tNtGC<cq_6JS<LZ{#
z+c~JavqL7vXl51>y)oa+2DaJCM1<%2^kK4<gCs7#lY@(>PKa{9*B1;zG?Zd@lx4C2
zL0T$RJ04%!9m{@mgdXhXJl2<dTJDxgt@=Z25H&geXe4nRl%U!7ZOY@POI`bKdw1$t
zMt^4W2i%6Y(`qIizqmRcaG%+@ACD<Ox@uDV^yBv3i@h^8fi|xI_*Tdwf^uAL!r(Om
zK1l-^9^k_bSaCNlotE~}zYDC?NZqGkg_*>kxqU8pf8x%JRn2k+*DVncyj+EK?ESl8
zz4FVeW^#BnD23%3HtEyg$MAJ}z)L<Fld{VVFsB0<va3?Np~(srvL=$<)Q_{a?w&RF
ztdnfAe6rRAs3;~bl4$!J%xh8hs*Z|pLZ$kQxs>9>RV?sXH{3UEFy1eQ*8ROho4;Xb
zp8z;x+cdWGsqV)mu>11)<L_AlXS>UI{q7?7MO=hh=z>XG<BwXCCBWruTL~#CgPWNs
zS*TUp^0BjG2!;Dk->*Wa;zKJoYUOO95_DrLe^Xp|Z#_8)KGN<|6jQfm)12q>t^40P
zW#_6a`$7B1?144`{39AeeL0;1(iqCE(lTPiZAA>~B9#vPsm+XydeNtfUTT%7mB*ds
zWn9m_)={3)i?}>OA6MLZb#eGv(4vK<OIhJv^qbIGTBGA(DRa*e5SJ|TXxhrfQUMqF
z+GX*WrANo-O4=)?9JO$PYtR91bcafBliFt*LNxh2-l!Je(Pckfe<ZHX6BlsbMN>xu
z@AiP&9-&Ee8Jj)T77Byi6uzJBq!w0E!cQ0%kGCaDg^-v9dS{nohGo7zJa#;`)cj8G
zxCBetclP$h40(D%(#7fVwIG*B8i4~G1ws!n1wxJB6T_Mx<7JrT%hM$;_dW0xpahVH
z!2?a8sCg%SqvFc-4W~(*vc8^+jwyQ>2_<d=gS>ulJL1I&nlDa(xIED*WKw$7HDRR}
zua0XLeaFNkdaORO)cn%(8ZkOTR59!Fzhr{^;bHgtGv$!_8_f!E-P&B$P89`BvHlvn
zmsg7`NtXbZ@idy}qao|)9KGVnZVBy>Ah4TMBWqPGf#EXTkD0E9hg)8!yf+!P3mhs@
zz&T++?lMA?24jrmhRvh{<v0{(^w=~nNkO1}OP81?!(f2MZ?c_HOF9m(^rm2blsxXJ
zloFG0>`7A{8=^|o-zC^L?&SNO%5^H&o;y9?P@1D$r_?NW638mooXk>gv~T?JdsuvU
zg89#FKeO!JuOGHANLusGJ{_qg2;n=9fvWOKHlAg3^ERncLb@VRqZ#QYQO)8FC17qw
zaa9Q!ybTb$O>1k^O&oAkqf|2Rw;;E%Jt;(QG3}0l5mgbd>Ndd$j~h=JTCSRl#p1i=
zY%SdS%1ksVZP;Y#yopS0=8pryb=F{kRPV|%XtG*(Q$js7ye!=;@%BwHw?!yk`Oz#;
zMysd_b|u!o9Y08%{&^lMvH#)sKje00phqHuJaqb!La!!yKI~MB-xs2fRk#=x)SNa<
zPIsN&9PVhD0#x-aV3fP%THvq9II0Nm2dik=zVrHSOBG&KSj}EFvsw2j_YUy*_*zpA
zQd(sAwnX^R=6fKK%#7d$|27!(LClBYk#7jS@0K*jGBWXV5gv^h2=Z>LVw{R`D&0}~
z2GvcONwGiLiC_3&as}pG{{8zG3M;l}j*1~M#xVC1fhXLmT@kWkU2|0^yuL=JSrlg7
z!{G|C!^qmJU%`#&oLu#ai7{@6)rc$h$rvI3ZM$dMc*XEJ%=X1j#K(Tn#7j-gxpZ)}
z^XS!~t8XVyG8u7Vuf6H9O+$|B@2PaY+&`yeDFE{IwYSDgOoocsOLvTx)vvs?;XjX1
z5W>&rH{W;a?BDO0TD!rJXFr*MMBBr7Dculhci3~MTO!4m0&VQy9YYfAa|M?Far<z=
z)A&RFSz-3`gjTML`~KLO`+k4^xZSRP_WZj)zuUd+e)+k&j}b(SqJ(J%G9tq%Qxe+h
zF;apm5po;3t2TOh?1bjmv#wAeYG1>!dGz?$15LAq!p)+}QblUX#c1hvP@~zcH$CBw
z5>SlU+*I^@Wmd+1c~(j&8I7^*mgnWVf5*PtUh#*IpZ|QWd!1ypu|5;hGth3iruUTM
zjh-0Kajyc!$&eABDe$btjgK6`VUWlL*_nkeO`X$tK12rxE9m9PkIwg=0z3s!p9&yh
z1@OJs_iq0T0nKy>RI?5j#4fQ*Va_ez_VgEs<@L+7XQ!m<D2(E|d*-?Ao)1Fo|At@C
zjZtrxr!h~54<A22Jf2fjQ*@dkJNs9paA=hQt(-5)??49J@;%>&5x=j1?`=R|{8cM}
zRm+amsq0RYwod)UnqOEQcv^C;pd#(m_4>U9Wpl|8>h~4|zQ)7ldkc#D*tp+YkQS%2
z>!?-^iJEt>Do0ziF3T)rxl~5Uc`84soYNv4J6(y)npcahTfH6iRO$6(3%y?A_4uXw
zLXP62d4L5Z`VYn==MEvhHuh<#uQSsC8q%EwVAhu9;DwgNsDBr*@;sG3Z+_xfI^zYV
zy_OkHhZnK`j1ky5S4-gM41iD+B$()(7Q{#qcsYU0O*kwDXaw>gb%6?181vxCf(f;B
z;gx!n%G6Da!{#-T9x90l(xFTs$*6L`X_vFUMQ5*g$qlZWnSmx-0)}{qT$Ht1CV#$Z
zau!a>wJ8XM^1mHa;ws(Xox*A|{-7YJ*SDJ@#Sp%G8>uNFKQM{a)cJ16rW~%#Hk2AA
zUa)wj(G{90+<~?;1ytE$P<9pWWo~+3xCT&5G~RJi-s&qDnFOw_uV8Vfx_<H+M($bx
z(_sB(N{0%~#mIgrp?1UbW^=L`6x=g`#_mj@ab0$26ZOlxkLQ{Yt!SPWDXR51IKEzD
z6Qiast&BIR6RH7L0w$X+<~J~c+7enq_?VUy!kf_B`e<qGO?^8?AL$MJiPYj7(4Hm7
zH+jv2i^Y=O-~b}kE^n1Jl>X+BSk`~x4H|pB<TtP~7t;q1OMQb}W7JfztgU0o?Tw6T
zhlT&it%va@Vw|%eVZ{SvUn^BJk`Mf@<Bfu&kY3AQTSnrCFtD*)a(#15(T?z@w6{wy
zZ$d*e4dYCeT6}neTfG9MZl&N9<_)6Qv8H_)IBw13O<*irVtbAYaA-+QOfBVP%^p1p
z5EBdsAgJ@PWkF*Qs{yE$wN3P>cB>a4=tUJ&;{eLacas`cm_4jH3+_H^d6UJNS=K^B
z#Qe60H+kS-w~f3G--wF39eRr8%^_jUIh!B9`bA<9uFa7O#}b$JgUoCClEa%rick3)
zfMKa?b*PCi09biiY3U@j=--QyfAt4{DA6Yy$p`M_vb)tZ-<Crzu{@c>x>;9FS`&Mx
zhP>9WFQyGXe2~MER?3@0!ph(Ow8ZGZYssSlFH0PT4@dH)tqrVH64pvsg6}t<KW-l1
ze>&H&__fIvLlw6wT;oFBhMcc5mvX<xTZ%DXV_JcMmi|O|Nmuvod>v8D`%^uCmg7Cn
z!A|nJHT6^<Lx29r+_rslsZT!tHx~PgL=3aK=7j;7meZm<z9(<%`J?cxSWlsAzGu&9
zt{?x~rS6x~r^k;U-ko`{4@vs{=1Bc2z9%Mu-q~Z%WB&iLFU~S{n-z7rg29Tz<rUKZ
zD*h`zZOaIK75yuuHEl<G14n6CvyQ6hv8}%CT9yfK#(|V{^Y7!*Ux{|F#cL1g10KH|
zEGZ^=!H^*;fK$cEN4_0bG50HKqrl@b_I*`Lwt$+WY<&}Zp{qGa=TJt%8KjX^BwN1R
zQ*i;0BQ7QLvtdsg)6hv`)c$`+{^3LN^%X{3IXr?$dqtvk#NRl3>@(S|dAMv5ir;;A
z^UZB+5o+$=p^Wd}CSJ~6zuP|S9$$EoNEVMjC3(jn;MtwDjWErF6L6DzS9s~5@Dy2*
z05Wxv{Mumst>q9JCIg@>&~$=Ki;4rW6-HrNCHPDXen{UgcG=rTOGa!g9(_*hZHxRn
z!*0!?e)kCcOl4dd#T~4e{Ue4k6JF$Qz2+u`_M6nfq$0xo*b$XVwZ|f&5I9$HI~3N#
zGLb)$DYKrGiCHnWr7N&SF7mBf8MPuyE40lamYd9;E3ERc#RAIWytYljDov&>nPKCD
zNG>z=E`O1Cyj=5fRV&bM3$WTFtu?8xylWwYUOH|C#Ezcg;>L(UsuAIZvBs!a`X&XU
zwZPzR(lx9}j$uN#KmbLK+#^;L;i;~_zh#G88~P95;?7px<rNoFIA3vFA4+2dV5e2J
z;%d-}3u&&nvX1`0$BMfj|6>!oDT1|0pkicp5)M*=BSm@)n%E&Qvs?P_o!Oe$yUpr4
z@{EwIVc9!|KsXiR)q3-_YH8C|PX#q!k*!^~k*fJBM6P;Qh%sOHkF-p&4>5Fa^1xk`
zg+3joVP0V(Dix)(P6Sd#Ck-%Q?a!Fc8+jF*Z2LmU8&dr3{NbmckG|q`z+HxLzYJn`
zS%C$g4pmZHkW0=niq#qC`m^&*&%FNK2Hc-pX5XE?aNR~-kM+I&*~Izq)9&2IYVDKx
z02B3VPC8P&<}@Vrd}YdTdS96{+N0GXzj^<8^V0BSDfL+pJ@rHPZ<FhfWI2)R2Slyo
zgaIsW?3usIBU2a-ZLImg&*hDK?hNwC;&t*JlaKu&w*SLt`tuCZA=kY(ThOC^6N81^
z6y{i*bdXYct<%=NTy{+RixK~!T^`Y<)R!;sKAiQm{a7p%ZAaR7J9UosTR=R->9D<t
zN2i8~S~vS;6OW-fY=`05i3qf?tq(MvBQIh!XD{fw`GI_;>r7oxt1FzFW_}}ay>Db3
z27)4!ji|%8-z0<*7Dt=ZK$1ZuY)rfJUEu^mk1Q=?+u$nqwuupejaod^1Pm$E2Epm$
zkMFnd&H`-)b3-bX)Wd{;&tZwl4ZJ)bV$7H4L+)4RL#Sl^nRIg0or}RkH^2T5?9(4Y
zhz$ItiC&jWYv{f%7njhoTv|dYOt`Js=%4)xyX`qPy8K$Z1M>QszoM%Wuexq3?V9VR
z>q;@0ni9d6^<}n~Ck}nq1a0APLi5=?5NXvar{8Dt$|u!o7Kj<+3|Zp{F&!jEbrV_T
z>mGTa$GhjW^rWMcCs%@-pvNkmIbs`u8epxo+Pyp@&4zC5{Zwt5nGWug&IW=>d_EZI
z*CGwX1?l}!8&K~r4q)E!LuMABII>%wIA=oix+F*n21226ADW_o>B^!ob2{t`Orf`T
zr!QaTvn-C>TTBDiO!u>C---dOz5iCk;xGUC^Kit?oNi1q5e9_>GGT?f?2|;&6ML~6
z)sZnf#nx5)7*P&6@zdK=t02XHz*PL>!_&K$jG+f@3^9O179t1UlpaN)$?ssv30fpU
zK+0u=a5xD6hGSoR&uIiB7U&7WWuIP*ol?zi9FlZIT8Qo+(}B=|GQ1l_+yr@;u;fiB
z=;yb=biiyuQ*<pbJS9c9w*c=oak?j|w98)&XqbA?c!vWEMFK`KE~Bmsfu`ifdLV=U
zN^5Hbj%t6HKV}D<I^gJlQwN+n;OKyiU+I7oJA@9*B&`hQpE|0`Db6%upTm7m#K{o^
z=?IjK+zOZ_UKcWvn<j2ZQuH^EH-bwJBxT@JBW>wxVK?&UJKY%zc7f)?VxFld{Pg99
zNGf(>_BGf!DKpp$C55h-h0XlT(eW(r!pYNS&rFc&e(=gbx9YmMWNu&LKX7M`YN-!q
z45CO9g$7iS+8KM9j;TjsIT1Ej9U+P_o1SIJ1TuLlgjUt+!Lef4*fdp$7YgbXz&8=`
zK?cxfPLQ!mU`en|R_2^?XcEG8S<ASz+Ai(>CH?sS758tv;{Ktt`8Y>5kMB0We>pdB
zmTzjef5!m`Ct>06B%+N>Jud3T;$8Am)MaS!OR=0E{WGzVULLJF<W?*$^O)Zw37{__
z!~;s8=k6Ku;PptEalvv#H1xtx^g*UCvE~cqrzL-D`7K^6Uh?@%jc@h)3;#ux+wOxy
zY*WA-B#l-9ZCdWH@OjT?%jMnV*L%eNR0%!BXDXh!T>Lxc(^Zb#6wpN+XWyrsUjhZx
z@iJ5h3TMW8!}Anp0}WoQ>|#^nRVr*>Xj5TU90(LZAoM2F{Jcd1QB*|OL|(C;iF?H-
zt<J!7GEXI{e54gJkJC01U;``p7&~WxXhJyvCf-4`R7hI=JfSf)P+u4{Ma^hw>vJJn
zf!gO}EOaLYbt(Z4rR7bDk|KSS_q*a1Kbj4rHtFlP`%vPgS$KI80zyHMM*^VBFb@Sl
zCjd&T5dcbAl2(H*82r2d=nQ}!2s-VEl1KwVF9^yOSSKnxd;sWmkO+WY0Q3eyFA!2}
zcYx4R6NEe|4iGwlP>pd0!d#pnC;+-bcT(Ug0M7ITpaX!(3xG}l^a7v*fS^i2A&oCA
z&^WHm#aHZF)9C2ZRPW2T7vGmFrE`jWZ`)(L(suEPKK!)WJbXFxK2jd)ft!XBSbe3&
zbSm+68q+H;x^)mOym&{`wrft;Nwki2S~AQz-^Im9-GieqfAmFW$-P@B-(ZYz30I1A
zR%BIxYg|!p!I)?WHo;iT<V8WhEV3udA#1bnT$Fm0hih5_fb@=xhfHgy;r=bkuzzzb
z<56GhV?88`CG;`h+DLu;a2{o?8@IYA0x_GH8w9LE(@I$9zfj^4L07?Mnn&+)MAsD1
z0!7>I39~NAfONWx{ND=!#Ixv<ED}fdF|pRAEnHf)pUMl~MaLTiiTUi{Irmh|lK>QN
z14EZn?Jl1xqE(^=GaZeMqf~AC>4%71v{X0mlN&L+DGNV@WM&+%ScYtKLFuUM^Zovf
zp3c8{e187&@Y#QQxBK!^22dWR<35EGRfKeo!Wg}-(q#`mYn~~le<7yiLn2Chb-EpV
z%r_zMIH!w@$50qch9<S`7?|#JmEF3uh+e<aOxm`9V<O9ygLnmK4Ki$peG+vtkz3n#
z5Z1h=IeSJyWxfs{@CKn+vQ>d!Iwi`_s?sn@wI$=Z4hT1PUHpq$Ca+AmXo}R(hYn?V
zCg{;B@~Y@2$AL_DfzT2)kW!^Cl31p_*4Dz-#wz}J_rhqa8`}I8*Yh=B#hUA~$C^tU
zR5;zKcjU$#J(0F(h_j{Xpdu}oNUlui5I+*v-gN$<W6krSz!O>i*lJ<|wI*4xMCmIG
z?~vFKdJ2*r@0%N;L223pwnbudV#v<VoIbmWiRwgPCFYZa2hoy|(4rPFOo#p=sITd0
z&39`4V=7D;apNqe>-dTf{dkoiK@NAs6i>hMverD!|0Ld&g)*Ev#4Xx&Cn?*SRuDr5
z>~+OnwN=Br`c*u(65Ek4jPYo8t;R{Lng65eIw#+kkDoVx-fYh&U<{($6wXV`LFyTJ
z7K%ewI0;lGL%81M)S#VnzAbUN7^CoB%wXQ=;lbtPBdDS@54yAWAb51F!_3{9XVe_{
zB+3oYO&aow*JWRtX+d@haGAkcE(*><y(BoR>m)|OLKa{Vm3fnjcvAtQw|Vhn=zfdT
z>PD{hGZr(Tq%Z-@72k$(lV+u3r(x8&6a8)PQLOU~8FDjgr4G_chZo`7$>@VByWhq_
zlPi^*QZxXRB0UbAJ5ye08_xr|3M^F?$bshQUMyEw24yWek289P9Y0GT!iIfT+K@F!
zg|VgQ?QPH&spU`6EdH|P=%BG3(IG7{gXd|t1i<7~i(Hl3i=d4VimO^c$!%>kpkOCu
z^C(J2&oy{+dsKOW;L#8cjU<pkE-kkAxA-sHAc$n#Gq8zNbT@|F2b+!s^8idG6?zkN
zf9!$z7$QLF=25$9H8VFAShq4xO`$!QiDdApxR%UIX>nY9uG3bHIVx))OEvi`63Rl;
zY-}QMFDodwdGMTo91OTED=;dI(;z0c3>}2a1^{VNEM8ftG{&uTb3AA2#*EGt8bTZ~
z#Q|3WSLW+drXuai(WzNPT(?c(rw?Bq-hX)EnrUPDUzw9O!>8T)*l~A;061{C7AY8s
z>vgm^jfYp7-|TbtsSxxBIa&`+w?mkA@g^bR%pH4ncC**wBnA=srn_ezf%0^{65(me
z^-B}t+>^80N#UNtlkvtzK!+<YMIT3`ILmg*Cg6`&yWSo0P9W{xolzcrBM6Dx_5f|g
zAODn^VZdL$Kr3E;?-t`iNJajK=h>9jX5K0R%PiAV7(5YzarQxs2Y2JN)PMT;{==7d
zpU=h5F`Mea0>(33Vim@E3uYV^IhpGzSUAU#HaOkEXfem`-xlK}k1;%C2wNUMwmyS$
zNLHOOj<a9c=${1BBe2J&gpc_K@eX6LB-;X##cZnCb$<05e4$0Q&1eJ70xTtyQXuAb
zkH?-dZWagbHq@pFPk0#>25fB26{_AwmLN{{@k5j&b0@<-VL}YNelMc2LKZ`{%(MaV
zr{DU=k6+I5?e?Rn7~9%Hu3(wOEyhu<_y9U=I0^#qz#a|f@LliZcNCU{xssGq&?47&
zh}9bgtE_G=I+!YoeMtxyP%AfKaws^NicWm0xb3n!U33W4<fyD>n%Fl<&fWN+yGmm-
z*>sdz04H&Dn#2uSRq}l*iN9O^$-Rp)&E7>A?TT`#sc)OODwGU`9`Z2JtG}~{(lj~=
zymW#ya<_OtVuQP!PA#)h>Yp0@iR%y{P=kRZL=SO8LNZf+kvjZY6boC=_U%!r<3!<O
zccS3oW|*9xb}s|oEx{abE^_xyTn5Ohj11!kx^WB_*6nx>PZ7CT_#vd>__Oz;nx|0u
zrm$Sl#@=l7vjp5q(_y_LL3|0|6}JS1YUL^P4ErJ|#Fbqqbt!e;^v%VWS$v8QC!GLI
zsu89~Hfhxw&FzmLKmXqU@%?8a=A0j3zu7xKiQwYbf<303F++ZASMl%b!J=Z!e-Fjc
zu&cfeuU3a$GT+s|tIklD*V7m1><TzZRrB+oUw2q8hn_UAb&xw%KFjc!5DWadnne$e
zDqV<CrErjn{E?hKWD<RN_tSb%zVJ}6*?TCETQbF1l{;Wu0q_4-x@&0ZlIiOP_O*Yr
zwfw!|tY0^Lr+U}F2{Zn>XI}vD$K9ugPr%?=ETHi2K{R2BsF(CUBQ~6bY{-Y04Yx6W
z<+Ut@IGab5JHiER{%ZdpbBibTx2HC}A|q$1{!pO)6PT+)8a#A2LlwhSz7JV(%wq1R
zFI*>BgPEY^<us7_X$1EtPjz~C8sFSol*N;{-lsvopAMnGPosT1slhB9%_;YPR)s#o
zr2Fsg<MKB<n3ro6rn+3KFfZ3?)G_n%i+{H&EpN|tmP>kfq8<KvCGSTc<=C=Fjj9sB
zdPDslYY+6}GM^C`X}Yh?=`M#Ns~ZScveDo^v+>0Y-^3SpDHta=#J^8-JuZZq--5dp
zaGk%eltSo=tyd?Vby84<wI9@GNAru??5vkH%S&n72oiKrd8&Y7dAzz9*mNUX0j6xP
zAA;MMAxF0Aq92t~_JjUz=T{G$?>7wmbJ8#OFb!%aCu(ZCop_4#=9A9x#Hh=IzHiMI
z!l@X-cwMVK_I_F8H-vai<riZ8$d<F6n0w5-6BeCa^?>`#cX%P!2Wgpdam2?a&C{7&
z>dVKuOUO56eAPsJrIP>U3vw@d$`h0Pl}i2>k2BUD0v8V@4J>ud{NkypKZX&{+lCd$
zg(ifTb%pk_*f|+K{`k9hn=k&ipFjTe=|u#P+_VXFA=yMXkEi?0>4tJIM@lFA%u7%A
zb5A?nyPhIA-_>t1uei~Zsh-hDi(o$4*Q~&2uE@nQk5_BG{%yY2Kl!pxJwL_2=i9to
z1&*BDVzg0-nsgtoZ}Oq`YnyyX^~x^4&XKDpnEAgQS3ixZUO$Wqxc=3!sE83Bd%oV@
zXOr)z4>tYIL#1ZPjtu2}if2AKUiy$I=RPE2y&vcKh;((9t(-gch?V{68#0y`zC)t1
zvSR(4IZHfme_Y#|;fXDZ`kRi$=-+uC7f+kco~ZS=dFf9K!0Grri+XD|IQI70z&T_Y
z^*PG>3`2dw`fMNuqO)gJpSESa1F`cC7;M)@{>_{(ySk2NEOX|(-}=qNhZmG_NT$I#
z#1>!Prb9GGGkzX2Ld_2r6J1xULBx5)bhO^azR254sjsuqybbNOgl|Dbm9yk7HEBSB
zMVRJ=<6@0Nl7dQBLWit2<w}wO_qB__2-Sj=p9V5sMz$bH21lworWL3xc8bjXjuUXL
zE-UKWRSc<RVzYG=UI74lUDEuCQbR&FbQ|G8RUhGd!7wbIgWNP;VW2C8EBt#lFL0vr
zHgQ=x+*D1yFmOpeYzOS!TnR`mB0c#EI<(E*>8F0J3#24k3P%R0BA`+P@nBk8r`MgX
z{`k`C`pYsRmAQG}*<)$9wwada0p{ArKb%|JHuE_`IBTgU<cF|e`>d;t7|?_RzLlKU
zbFCM0EuMS~elf+cMM%Zcxir92XL4VjSAp(ofmX4q?UoDmD}205`YFGxQl6u$e42)b
zzbb9vSl040YQeh7lDfMp!FVBw2!<7uEO{Gq*^mG?pD}`n)<kU$9koWV1C26JEfOcC
z>RZKHyAL!AdtwTp@?FsAOSEQ4nI0+p5;T9iZ_IQ2+?(mR^nxAA_B3^*ZLAh`jyYSH
z@Y9!Zt)wDvqDR#T**#_OWQp3_f^pYpT1o-JOQ{_YCQBc9msz;#eDsJ?fT>MN1sRU4
z`C9Bk$R$aQeQOaP63Xfu6!+<(1wQIPP8!%Ow#S5aGPW?LAi4*^OoDs!la${-+6YvU
z+HuK<;=THo3s4;qb!SlljWJ+`m=_Ht0d|Zxp61CFnUq!vCp9kZGD(?C4`a4cvYAQG
zAM$=W^(rf4MYWQB2L+`MsEEyZ=QQtT#8S;WZ}UzQ&fBz8AyxCUkYt8AX5CBz;toD2
z8v+5=(ssR1BhJ$;DR`171LST&i6M-+B34s{*>@?(<cP|QfFo;#0EZs|i&Bi2Li+Dy
zpd^3;`rMfii#<@`ZKl_j5a(9Bp2D6d*)o#&Zr7nJvRJ9<gqY>N0Q#vY+7Y6LA^K5T
zwT(%Ij;e~!G7~UmOF$DbU}Ag=6A;;^$6~~$me)!MIu;?a6_Oz@qE*?YU0_AcbVKk&
zm$dSdg>qPePJpIzs6Vp!SRD`>%~AvdxjzKvRH&4YX<605YwEeStA2qu`TX>5%W~A1
z#s%xv&=9-+U>+FkI%6+~rdXu6d6@IckS$ir(&=IFiAK8)-JMY45!rSVh)q<DFE2L^
zmI5yUIB@g~;8mtKnleR#m#+AGVMwn)(ja2$ut~?n<A$uH%0vQiVs^klHYC)sD+%^=
zg_z%+Q}9y{BpsCdn>QEQGwJjT^VzG2%2oah(b%#=Yj;9N<=mxw*_YQB6+70668r~w
zw~gVhL`FkmsFL$Fe{9#)*yS!cT(*YTJvV}QZus!rpaL34!;Y}O-sQ#Yv?-OzB@J~p
z#XIeHAwD+vHAePu$ds-vBJRDnWAdZv`_q?Sqp^GDQ^5>~!lL+1sU~TIqrQTSE@{~%
zC4m#BoN^$gzN6U)1Y+RrNuI6wa(S@cAI0J_@X9I5)IL0We^6IEeR%YveD-uI_MH`A
zz+;|ay8^$gryoo~->&oXL3GDueTkB6$``WOx9Ac)#<X0{!}Lp-Uo;eTujENZZe=<Q
zk-y!l(Be0=D#rZvR>cs$rB$IW8V$24`QiCs<^GDXxX=CNP%!5{J^c1XNaG%gSTtEy
zyA{G_P0TNqCc4e(Q>Qe%jI*aR!oc$qcxu-6srGe0I%!$(hn?Z{DV@+hqR0hjFZWhU
zlfZgj9*L>U?`epDIlnW&j(Yacn}*}*Q>Ul6lQ?_2cVY19VO1dUKYsoR&roN&+@={6
zD!f_6kWX;fWZo%+t|@|-DWHy~9Ul!snaEXi<2#C?!mG-#B-2N}V<5?-aV8taSfor<
zZkR!X-NvFwl_0#zkgj53*??nauTm;VSsOMr+pP?X!7bpUqiC}A9n4gUUPP2GO*%{p
z32k0zWUP*lBzhJBJN}+xNWvBd2#4vaE)-$O(oAht8h1$)0>_-_GU)_vtGsEIwNZW3
zR4lkghOz*mm9Ow&$qG4Q_(cc;OtWQHQ6GnLZNl|{4>b<j+$~A=F>U};6xosmqJ1}y
zBdpLd=n0)GmOq$a!{n<e{>`W%%%7P;8ZhcrZQF9~U{~Z7i`;R|b$=}N)MWhBuKX$e
zUCO^Tzg{x^<V~i1<-C46v3x%owd=oaP}_GaT6YfdBy9!u+vEzi&=%?}bLlSF^BL<A
zyLqU)_0NLC#7f2jHkB3>E;BCld02yK;mDl7_z_I^#wHYN&yP;FWu_k6c-x?>y3tkU
zO^wv>b?wnj32-l1)@*iYkwPZUc8foe;?Ll5B*mX4GL&}LntzsZ+|N*sjsH3U&XD@t
z<34OlEHX-Z>E;Li&;>6)#1CYKqr*sh#0kD%aEE<SKRU)so`u9wWwBqVm-&9F;!rPE
zkm4l;?2LZK>prQ=D_VmLN}3(!Ei6?>b<v)oO}P&WwGi^+^eLO66d?SkHGbF&Bb)H+
zK4TlRrQexiG(`DERE`)+92--$SX#oCF*qy~@;3Iy@kgYG4T`%g?Wz4<UDsc_3k`*a
z_5___{5mluL8Vb6r&cPtiybGbbsJ>DUWf!C!n?XeL&%&&(8q0yKBst7LU9c`YoKmd
zNm*a$xjMetzW;QNq;D#{rYD(*E%j~4_zaOd#7f}90e>UqAg7QeaFiw74~XascM-1z
zpuKsM*Hoxd{%38VxL1Pxtl~dcQ}s-8C=C6W`7z+yf$qnlDS(-1y^Gky2h0J|Tc)d>
zdWGH>B<I+2C4L3StOeirk%$MTmDmdTM-%B#yH_OH<nZMPmkR^2v<;vU3PJ#-4yPq3
zW@Lg?<HnC1qmdWYuOJHBh$T(nQEFpDuHy8eQ{MR@S?6c#h)ZSG$*Di8v#{vQLxv)(
z0-R*Zw>5Vsy;pJU8rLdz#9Cg#rE3Vxj@mogx7*Oy#$>2)9881_48NdYCQFTO{wjFh
zDEJcy9&Ovv#R2YvTa6Y>yEOeuQq&KyaPEe<QgJ}Gl@0h=tBJW^(2Pen*A0foV=EiP
z{z_rZ02hvI3!djN!7BU;349F^{Mx-<x6mUCc1sE(0O(s2=!YP<@FS;m1bwLjeQN@J
z%^S<C4;^{){E)2kv#qykoK@2|grz9W_|)K3rD*ms&x1Jkvfs|V%+2ES!{%{S8}mPY
z{L}e%k<G&w$K;@VX++C{fVqk9qsSH0C0*N18jCAMhj!KK7?v7l-+h;2(>4&W9N`d`
zEkH+#0IQNao8LVjgb;5M@)MSM0-1G-SsD_A$sUuiyuyt5mU21Pic{>I0-x%xHt~NU
zDA0hTtXO?W3V%Z<fL^<4(t6{2tZT-2OGY{_a|C1xs<dfSZ;xQXlmXikmhi>Ed2fSo
zwoBpj6t|DZM~v+hVPgY4jiv_xa|c_Y%V?Ag3ys6s(Io#88<v4(Tz~ud;nU-}Yr<du
zdXkSuqh6xbcv1VMH|P0vk`KLj)hDS$-aIoXP_%C1$LC8lqIK!_Yh=iCy`{YTQ++MQ
zOhwDH=&bWVKX&<u7#z>_W9TWzvr`8kg_91{o1-Fd$FuKDd;OdY5LGM0K&bv<-sBU0
zVm=`E2DRPp(`tBo4z>qlT!9hGUhy%>PBBPg+C;R$2ru$qz^NQ$Zyk8qf_Uv&B9SO3
z8bhI=owA@7o<I+x1!ISrluLmI-{hDNF`zc;MPcoA#6t$2)b{ArtQkSEBT~SAh=rZ8
z>5^OnD|-uYtRr(gDn@nNm{c$;7IT3u+&E*DGdprp?y?|V0|54sk7#r2E6-Qi>nnd!
zzGubK08azDOPN=v#r^^HTF|Mu_F*H4c|ptxVqOpvB%XD1;{m@D_`Mhp0>1%d!d8SV
zN;Eej$FxY4I(050dhOJunixRk^;+Qy6Knj&aB)`eNS*Vgh2k9X-`%tIfx>Tya%0oP
zHPyrx0v1T|_salmf_U^%k;%++FV9FFK2XY@AXN$QMPkT6oyp}ixtu1K)8uj|u$)ug
z%h9$bs@FvInyCIbJaZj=dHBu4=l2gE-tYeK!svPWkuo>c8Axt?iYEUkQH`xm5-$Y5
z%~&vioaRZAg3yqaHl3B^!1JVCe|;dkFqp1>Xo(a#SW!ALV90z5t0L=Zr07v3*)HJm
z!lr}MOf852E1&jt?%$LJPh_abv8GB$l8**hJCXYafAUPPvdEIXNJK2uCP#|}570st
z`(GPoki2^2nP%#r=nNGSdmX-`9`we~io7avs>rJ%r;5m5b;yBqIF;>H&rE}0>lkUW
zs0(y<G_B-i%@($yO*UM)$=$q{GveaG4bW?)uChFKXM7s5$Fu{g4aF#^Dt}ZlY(-NQ
z2a>S?JOjzT5K9(N2_Dv$C3lh|%1O+8?07tj@Dy<q3!sp3nb4pH&yv)u8Vrm(M<L%y
zgL9#nn%-6ej}v%8F07x(4weNaAYM@_>f8~S3~9XtseG_woeVi~0||-97;51T)QXt_
z+)UZ%M7@4$*YEbT!~Soq3a2U@Rk)MUzG0On4h2q_mL;kQkp^nkipG$=@sxwh99xq_
z1m2L4RpIU_yjCp<B=ShBwSC*l%8V%PeQZrRttom;mpBU=;EZ!ol2a=y1Zj8JhRW>J
zqV~3^LkD2cP^_UA8MhH_Z}4+(5c@Rq(me8T?Le+K86Y&hbb&L5mvvs}OES`(P_=sq
z^UPksjsqpDA>=9r%vLmaPqLF1EuJH3(_d=hh-wKU)r`{N&XkgLTn5dOG&IHKF+miu
zuX-NEC#S8LSqeoNazsSOVEmcvEvfBQ10&gf4dNwdfG7EFlJRTkZmbOx<zAKi*6CE`
zyOou`6yKq)9aMFmHr&~PU%Z{9stY{9#=R@K1EA<+&4-?cH>oT(Cz3f0477<&Bxhsk
zf9u{Co2{n;oyOVIgL)V}Jw%TI%tLcph=<m%*^p()MgdS}21D=zhEN1#XFx7;m=QGh
zg&38^2FckVb$Xk4E&dOKYvVkV!PG$#g(+&}ut`Ew`qX;oc`2s;qG2vJ*SyWO!;CIk
zFb!;HPGzsz%DbS+#H-=SRlUKTZ2d2jZ~@7P2O)7k5fb-vA#vwE^PLEZy$H$gE@vVJ
z@6I_+W^W|Kq-%5LL>oFHV)U{WLZv*UdSB{Q%b-VjDhW5@NE;s0*#{C_3^iL;>iOiY
zF9jgW7~sZ=n-1tAX-@I_lu|t?gPv-M@*fkm`_Qwot#iJrQMx-<BRy9fow-jG@k1xs
zW&Fo6a7`hVK=;=bQfb`*WapIt(x<ijSvIfx?3-G!m|=Vw_ln0p%y6~x<Ux53R3}rP
z6LxGX9F*Yfw&o(3q_dmlCSS5oCa#Eu{n?brn>|-Nw{ZwEp%@b<H0FI9lkn7%JH~b#
zmu+iLNZT_jTLNfUffp%R`hL=cliIFR%cEW-mc>X?pRdGsi2cW(E55@Yyj(Y4CcJaM
zOnA3?iSW+-0<A)TuW2#<53NG8<d5g<`5%`(oMerwc(hc7a)Y#RNrFMynUW+}s~ity
zPvEvZ(|Ib=^Z@OEsUlPoXXgBohAb8Ns26vdVgAT4amhfb+ULtmtA-n?aAZ?{N`<CE
ztXb>LuCwVNh^Sbxgyl}8LX|+LNWv_~X6CdzdAV>fozI+g(n*gjiJ9JXf>DZ7DNdz0
zmEu&2Qz=fRcuH|9#j6yjQiNfxZR?;;M!s)2S+dvpm*H=VSxhAy^2izB#Z;)c7A0qI
zVC_}j81;eE2VNgIeXt1u;OC^bqU8BDI(_T(?JB|PIvk@Z9UPkt<q{B)K*gN&%%651
zw6k{3`%~~7A?Q?yS0U~M$nJC;V4tWE{|q`l6wYU-mI*$FAFu^hz{bgb0tTn<dUe+)
zR6KhDi+Kh@ee3kCKLNwWpTdfd9Un(`0#2=#cMlu()KO2#ZZmDpUHgihwV3CEL2}XV
zV$UyZFg!l)F+H>4+xvbvsy3n@hCFTpQ8QgE%^{s=cM<PtOs{m`_<qyP?-#vauMzC@
z7&~f7E59kg<m0>$xr<Xi3awfA4wCLZG-shJ@5r50;Zp#gs&JOPCGS!tr%Qv$lR4(3
z)LKN>Cc|-+LuK7tIkG7C5e~&uU`Xm+uXHHoEV>PuUkVLih;~FrMJeGa^e0KHv3Wl4
zk=}Xhoek5uyTr6)4btGCW;|ownjW#Un~$v#)X8q@UC2UGZ@?RkB~h}U3jqR~3=r^%
zqTV)r6Qh-&;yPy1$VrU7xCNCC!LE{ZwqjRv`7+Z;2?8qjrGm%W^;ui(nZ4f}i>dCU
zFt=DiIu=)W$W`zQpqLid5Z2!S{Xe>m<)n>e-$oE&_?{vt;8L(i=QXqLElpwI%Xh6v
z{()JB`2clXEG0*vdqu@9*W`5F==Cv=CHKxk!=h<xH+yPD+zqjVm^e%NA&D#6-TuDl
zAEYT0A%v}8AHR+CLGl>rR5{g^H!SJ+53VIVsEBAK9rXv9P3%>D8%D+YX5KnJdFK^{
z;9}Rq=>F#6!{*N~m5#JCwIM(L>&GLTx2WRmX4L}rn4PY7a+$czoK?CE;q$s~JXCgM
z6UP`t>=vaY_W35ad}r!Ml9EYG25)ek36!KFx2kehe`o%xwxLz+EuD^B@JwZ0u<mTJ
zX8=}QQM~PTwI`0ZxOQjv5|28?yU?ouNkF#0i0#;j9XJ}8hOW|1lk^wT^rloP_%zP6
zoaGc*;!Ss2+F@iqy#Mj#xJdkk(5}j>OB=EbTavTe9G7gaZrOeqm%40&#zfb<u;yhZ
zazX*fF<1dpl8HW?QpP&C9IAcyJUshZ_;;+~vpZ-B!wR4<6^q#zO&huu8=lw(M+uwj
z#r{}N=+)6YPUcVp`Egk*7kxNZqM?ePS7CbnYj&hLdRIfMSp@w>tK~Ww)tAd;R4Vb6
zbkr|ml4=ZR%bg@TE(N%yi1H=V+IZpp)fMx4XPiS_w!A0f9e&E78slc_k2>zvJf5r)
zYPMnIP;`hk$mem=9lv;Zc}kfLv>-+grgtNWeAXZQArfMu%WMqsA(zdeHty62VIvP|
z#c|p2e7@7Y1D`upHwHpxkD!^m`Giy*`+?fL-(Ei9(&2=20ehFNxfbMteu&tY;&NJ|
z(dZz10()<NGmkd8E#ImX%_7gmF?%dkn|jW4bzI2QonDbrPPdQ^!C%i3@uP;MAaAh2
zSO>(W(4v-%#)ZIuBY0qQ(q$WB&@=&T6@kC5o7rCXyv?V5>ihm=OEem!n1yQsZFote
z%Hc0$D`ik=;V{md`Ofjq5^^TCBWd}a@{`%|fifLRBf)#>h2s`8>TC!YwsHz2zA(J%
zpvzs6Qf8~S9eMZZpnv}9qPFcjGl&>q_%Y+-VjGMQ&`qRWi1S(lQU+ZgSpCE4I+X?N
z{9d+}u<Hgb=)<2p^)B{it75!e6O@Fm<t8K;jpTQM-VG(kaA3!GT-F~O4OurPC24Wd
zrePq#XtrTlKsR)Qz0y0SqU6#w9qS8Ju+2?P;R(Q#blv!q+{)K2t-OW)X4#r?rOEKI
z?5gK_iv!4@;5uL?Ve8|7UaQ!=VErgP5thEx*DV14qPSu_m;3&qEB%rzTM=aLGRApb
z=+JPdH9!(o;bsz?ZBHPaPlr+C<Mv}i;_5Ii8VDt>4<z#>+x0FAm@Y4CuNV%B)oo+r
zbvkNF+sLg|_W@^_>*jQTEj@?XEAyP;A3tqZZq~!+&woC*IM17Rd*1G4ei+j0tf%CW
z&nms^WZRu`)R;x^XfBshQrFW0WOmPabndK}5Q~<nZL^Swc$l-@HhUR1S>z^H2b!DH
zt!x8t3()y9C5DlglVB(*PBHVoUzscx&{@_Hlnxs`$z*b28!ep@yY23EeaMum$S%9Q
zAp_sRvx4&yP^Jb-Apbv5)e>3B^bTrNJ$);G!1*pGbEGYcH7IVlwwKg+W4`Q289c|d
zqZXcNi_<>esk_jx>~mF>o+^FN$C4#ieW11?Y^Mvub$&!sY#-{M_+^sVW?aKZz<`L*
zO&xY;-fk<V6EFjt`MzW;60MsSmj``BXVWCnp=$Uye7)!h7r2V2G&PJ>sxCE#u+y)?
zR!+G><e`VKr}UKpEr6g%2)z|L=<~3W+9Cu1k*|FChB-y3Atuw^7x7YY@f1jvjXFp#
zum$Hwpku`h3UG>SbiC)a09y31*T;G@n3q!aT~vct4U;0xYMP^IYOKo|u_j%AAzIOh
zRY!LWl(Wm$E5IuTSr%*@uyHFe4bOQSfhC|cq$n+39Z7-eL6P=Qtgg~}Mr;!jaJPe(
z$=x)r%nst7RMpb83_%{u6ON%0!X#KDn#cCEJ6<P^i{=T1gJZB*J&V;#{u{NN#c!ND
z)F-sOFF1DX!Gef@vmlv9fAv1#<az5$G@+xM)`ubC>^!tagIWQvp5Ew6CAG|dsQ*Mp
zECVPMcZy8UJ8jkx7Q+HR#vA8}y$g9u68AX({iYz^16jRPQCbsmTt&>4F1?9^t2-S9
z1E0HN>!a4$`VyHtmzf1Jl?4rlp;wZrnj~@$(G1@e55qY^P1<dCDb)<iRAP`0C7d0N
z_O0?bMyhTZAhOAgr?!qle(dNB-Ib*Zc)f2Dlpm0hn`<%GYqDe-MEIO|*lcqVq0DhU
zG?J*SzqBijqv((cQIY^Sk4KNJVegUkmkjHCq2hUIKX?0l`#&iV*5z9qv_2=Lo)b{A
zJ22^lHHvnqUJ@5;K5w@DxZp?jGAXxvR{!&cpOb27XjyMl5XrP*im!LcnE4FEM(5;u
zTs3HH!j062C`OZAC+0b9^N7N8GG|&CY8ypS?chQ46tzv@DK(-0+}Hr+;9on-Y|zO-
zuO^-6QGasSqs)=rA%P=ustm8Ivve&uhcgyz@b>KFjiv3aTTZ{6>G{309I^0U&q&PA
z*3m6hG-e)~@2^A8PTwePZ^fOr&q(k-%-+G3G*zM$gldW%Xjh@>#V!en7)e8{p;@De
zdJ0>cWp!LErTol&GH+F!vqJUyn8%W{%x!F$UDIxxSsV!Up%Kgr<(^yf=iSE-t3Lh5
zFOTOQu9_m<n`gUGFGfYbXf1`tvFr(3m0&*NjS1Bgqb#_jn-IjE#m@zVZ4>&?qY?*K
zyTQnJghWlBi8j8e<Qgm!czKO0MCqM^OqfOU@<NAQ*oR>v=Njx=;abazZ@(Qg0EEb8
zrQ0?R`B8W(^`c_@?paw+;v6A;Fq~BMtI)^T;ls#45WdxYENL6*1eXnU@E61MR3qg#
zrSNuqQS*LB`Yb3(i2X8#&Sa&*H46+?8t2^ma*pRm1+idbg7Yo1hjv0K-~b5F2u8B4
z6>l|LDip*0x*vvhCBDpjTdgx@EyX9zQkVMW{x+CbJ3Aa=>|HS|Pv-Uiew}%j{fYyg
zlCx8Wr&rErQ#fvC;AWqET%#<Wy9OUqTrv^S3brS`DMQVLW6E5NA2Rw#S{q%6ix;a0
z<}9Bx4*^~5+o~8DgCR%?SO&vdP*vm!ZRWaeJ-Iyj74rqU!O*e*T83dJ^>Nw}Qi7IL
zu@YT^B4UjCz<dq~cD|9*{j$(3VUR`NaofaV$Y`$M#B_z!`ZuX#573z2MqR};5ki6O
z5+km+v1i03nia$wf&<f!8ZUB(22`x0j*k8yG_N|{4%QgP3R^NF7jlu`PSEUho!FJg
zjm{8I*$+`lYP!x0V2?zIV<>6H568yvPqJ5lQ5;|xfMNf4+HMgig2h&PLcD~dqwCS-
z))Hiie*&uA_F?z<G90|*1F=Fcqs^CJHS!yCORDHJwA@HerUR35jy}$yM3@-aMAOv?
zOKH;-4=;gUD4a_L)99+FE2OYhG@PcG3W;P+76>@N#xHMeLjRS!Gg*!!D8lfo^aH3I
zT~%4z(V>eD;zWcF+{D-*!+^muCgADm@6VdiXf$ImJA~!w>h9`VvbNmw-dfSlR|o@?
zfh171rEtz|sX>aiU!7n7{KXcNi{uy-8Xy8s5rO)>L0WCK-sY|al(;~bQc$|jzSY6j
z1iPm;@iEAewzifI{cXi?xVw-C5h2wjij#Pc4iLR*d+Ro&j8gR=r*tj9Op_~Oh;{Tg
zR!24tW=AB??2e`Y=*;ry+*kOS>>~Q(6YHa)fQj;!oW&W&+7KZ0=9<b;%!-=eJDW^J
zYk8D1$y~rhA9T)h-PfTUiOYDEE24egfm<JYPO9Npb1yqX256cARo0IQ{RQYM#vhHE
z82q{q`lJRgV5>lJa{Mw8ZPgIGx~-z%O*(H&tU>MG*RpuG-s{p9zs#I4)1rsRMs;?$
zUhgmok;C?%>-pGf(>x#F-hTdSeBU!@lQKOH?c?b~AJw-{eLznihDk^%>c>!&%gk_r
zj=w+ccrF_4+c<P}eT>SsR@F}c+7^E12aNoj27Bo9t+<XpivP|$X7Vj01t0&NFBHRW
zqiz}SrLFHHOH)5HgLF^hBRuf=5uydv8hxx`89$~Rq3`|TU7izTUiLY9?)N7}EeS$k
zP&_2Me&?G)IbsYqm^ANcby@U#GVnQ9zO}gMcQz0Rqndp(>fb)^x8SSiZm`p%bniGN
zb6%kDM`fpi>)7nowRTjS(7{WLCQ~*;@z>FVewmdeH8?*oF3|~>Brl~sl4CX`$ec`j
z@qD4ngabS{a|E{Zy$*o2ONlQ<&)*lncz((L>sWwn9Qzq9zqn+2`>H6)S*j8t*XW9b
z)}jzXGyuz9pZGTyt5{xFaoVJGu}QDH@V3ii(eKPH_?W{7`^xPVdi@1!b}7>3L|Ln~
zW!@P(2$j_>Q52uLNO#}upjL(8D>}g%EG9a(m!g$?<)ymglL$ArnPhSU5og5!OrVkl
znG`l^UUYf!-|0JwOI9-9c8)rh8)#BmPD<FHR*9>7c~tK1v6Fhi8crLz`6`cFfh~;4
zjMyQ?GzFepO@=xn$<Dh=YaLKoq8w|6f<G$t)6-<Ls$I1tCMTV5nw_P{IKNbAj>i5w
zT9e*BA;1A(#pqw>bZ@dH&s}#EXob?Gw^A4`dA!&0!yr@{@G&$m1?^8OF3cEm$1KCC
z)`N$qeQD{oEmBEK;-*{NWpuL@K0SdfYjh*1m(E!EYp|+fSb?S%)X}74<UT2jNYB*(
zLXT=o8vwyLec}jyPAa}Yk%7zhOGl$l?p%Z9mgaXBI(l?2til4xm_;$uEwXN7S||%Q
z2B&51Pb<foO7)rxJ*s+;+j7$0BU=CUbNKe@!^h9(xN2{^gY!fJ@T{-G3n~3gF_~7y
zlo<&p=~$ef<~!Pdo_#FRH$m&I`Ee|VrMjh_LS9dwgz?Z$vMk$!r_&tEmhyl#Y3+Zl
zsBhbozgpG`I{NP`>2K*?h!rchyPPfzLh5HACyhI{3j-0y#gQ0j?7ZZUOAMZV;|2|_
z;!fr}_b9%X9pKD2jb+`y+^5&4U;gq>;pdOP{q;Gg%05VcqtsO%^Vs%^L~984;8k#h
zH+~GUg8Ne(Zv9SX*)j?JMqbtOqDYdGS-A`<ij|Wx7k7r$4q8tUnt+8fT|C_JHllMi
zEg4j1(htn5YzV*HZiy<>%4l$TiaU=UfeflmhvbTILET7L^bZ<?_GV`tNjF^@^z}CA
zS?Nw+G<PChxjZSVKoKcJtvEMx%&cv!s4MJ{Y8TxASy$92>p$>Khr1RdBq>dF#+Xw_
zIq<WAZN0>NNw!{)oidB%80xQ@dB3t|cx~G)+l5i(*rG6+APo#Fo1jX4myrt=e!4&&
zFw(95_Z;K{fnR|yy%QHr43tVe@H#z6Uf`Yskc9X~pZ5Fb^GV$8AV$gQ7O{gbm!4cs
zVm4h!NtSUgxOhGnTuc`ZWWFH7u*13|+ePiO=hrG{`YIytX2CR&lEQyi<Dz(k2i>`}
zHBpe*d)}m?xmsPMob@Bg@t`xwUwJO~q@+Nu?-+H8y-!0z|FnGucXIH2>;lF3kID*^
z6;zhav0zK$S4v`?A*8T<5<5e`J6NFn*HomTOiW*yG6=201cQ2^GQIe@9sT*wkKuX$
zY4`E1SW^@?Ze~zzDYB?$-XWLB^tj9V0Fy@XnUW~r9)V11yV#pVbRyHi&&_#R%m@Oo
zqV&Em)m5G`3*k4>)2ij|u7tXrS*e<FYh#rJvbs5qIf>Iyzd1H@TUA?9sB5~H4f4RM
zRrFU}^n28xm2j%;bHmiXxE@7<R+k%Mc@~0LmxE%4FP811_>VD3Gvf4sm~7v3mztWV
zA(r&F<&CRYR)14w4d8yW(g>e_5w=){&rhFz_a<CJ^FW5lAz$nC#H)ZG(~-|bcf=1F
zjimbOaE!yvXXF-RT|5UH@0E~)F(F5}*JrctS8*i|MGz|4-U;7D8OjxAp@AMy|E!tK
zlL?Whv35=Flp*o*KC|^ksc^fBy#Gk^T}kCj2&;0I#W^|xOH~;XPM9ZE+=D8HxrRO+
zvE=*v9L4kS%Sn{p)C^fa@r6g78Zs}QKq`2Edj+U=>Kg<saf6$GJ-L7ewWMR-bsY>w
zooSKEvE11{ySC(UgJu{~3`F96s*JJ(_R#EWw8by8%~E-d3z99gP(?tAsU^7w%68NZ
zByiJppIFXS6~vgNz9PpOqUKi7A|Mz|ZnfCtI*B_~c?&xf^d~7q7pO~@2+!b9-Dmfs
zz>{17!>wn`O?D-GocnA&DG-uEhIPR+Jt$0D4mI9KpU+Rsmd@A>nTJBgNwE~Hnqu7&
znl1g<O?wh3iW{m!k{F%qiyJ{Jn6pDyQ6Uk^O&6kP;YOduu`b7``G?hsjNr?cPv0K*
z=S#CZ&ZTMCu3wMnnbYOvRo8ySk$6rQgQsB3&HfB6S?j)cI^EYt&WN=w^D?JO(H@!=
z_<@}qM?1OfTzf>`XA4ByA~yqF4*axSs$z~enU~?4f}G}FKpcv4YG86b*0Q9zF(j?*
zV%XwEwg7&6lA(1`9ztmFrLFrgU|#C9ulJaGbZKNEG2{7U#|-!bd>wsF!5h2h;9JG2
z;bj3w?On`wQS+pld+W8mHBFo<-$=}?#FFgBZyBL(X^MgJ)^Wj94ercB&ii3f-IoM-
zss!0;k5MHRiEE$=g=O`=7vpe^9EI>|I!rhePj$l0co#DDFDG;B!^h1_*VjM5Fh84J
zKVSddv#YP1x7i}cf0Z|W3W##kqK+nrZl&WMWT2od(jVPYQNKR@G?6GDQ;V@`T3|t^
z`PWS3NCSOrt`lfW^>Bt=E{gbNZJO_7+7E^^Ktj!|QYNrwq2g0C*RyPVpNe+g;;td3
z79pmL!4*xRt6!k~eUIp}L>Z%wAhj-76|1<SZH#4J=GiI#6%h}JHPPHOd;^xuB)WAy
z1<Tb*Y!budy$nMWqz;oXYuzOdwwAOsh@?V&on2O!Ssz;`Fu5P%4Qqv{LZc_nw;R-_
zuwzB_t$p8wAYnh%=GpV7b4koJ2yy?yaMtcIPlFwJiykF)hyWDE&nkK_cZ4Gn4`G`O
z2KY#3GW%Ru5Pg@U1dAR`ot=~t0I8GCwB?Gudo=r}*}F&a_frF%ZHmevE4|Jl(H;gP
zawg(KMBwBqsBBr9HOqXt_wU<|4Mh$Pm0-dGndAWe!!OSm<MCsqGsNB(dt>{(S@{>L
z-K-!F)qeJyZAfD3?g;-TR^IDhY>G;7`cUaRh1q-`VQRJ;zZ~DMH^yNKCW8WkZZ2lc
zCEcV_AK*~LdRB|u<-cxFuALHo2FCoI?l>f#&!<{#Cm~YrQcKsvSv-aB`S3RT`@)Y#
zGd{ldI$wA2wi+M*cuY}EbzpI2s;{N|^QJl)m2E~Rd<i1G5H)e6ZzElNQ#@wjA!4B&
z;uQ{kb@`oanP&*=mw1aqUtM}r>M^+WOVsOcgHJBKDD?=oYx3h?eEfHMt^7?8hMWFr
zpuPK#LiTr`KkOc#-{{P`VMeM*MUbWUcctcAY_k$Btx%?E@CIB~U0k=8t1NPQ(NgSW
zMmUg~J2dF-`mx<&_B=o(IWMw_<iZH3kM3!C#c-M{mddFSEm25=(((kf7v8+&lu=JS
z_|UK+lBI#0U=BWnlyRFA0+Wr%haHMaHytacM%R(K<khA4n27SR2k!+XLW>!<a%(a0
zjt2gP(Mt)P{B?nykSr){RlH3N8VgWIN|WxN?EKfJbV{pF$(|gsB)Bn%gouxh6Ezx#
z9IdvpY`-LJ1$7+Q55awwuoKm2DIwOPbEt|4vMh0FHbwuc8D&9>3rG@2x(zAURG3Rp
zZyW66LdB`dX{lv-+aN9#JRG?pEApMqTmXIQr38?QRjw-vXgNc^_8>+a;55|8$89vg
zJ(k8GWvq9|kzyg~a4@J0SC+^LilnK+q9Gg|xQ~(-EUn|xrbwtYT3>Pi;&i8hL9WPm
zWo?l(qGfc4L<tiT(6}SWJp<CA0KEY~M*yJ3U8JtJvWJ>z7wIT5`gD{JYM7P+WtB9p
z)!HK4p$s!IO0diRPoraGtWs?dGNx&pVP<4;?lIX1xMGo6l8%RI1HmsOWsI=R|4KJA
zzfl|$>s5232h+#m;9_vG%BOU}cL=15?xJF{L2f|fBx2qr;+J8vC$?C%E_rB~_kE1p
zoL0sWRIgc+MMDHlAD({U_vR#Ta#CBVGc1<$OB%}zKkHJjTyuj2uQIeLT_XNuA|i9x
z04F-WO2=r;VnPlF)dHw)VJW55r2p60J;Z7>`bL`e=<4HEmQ3|=j@hyvRpT?Oqn?Bc
zG3Vzz>xR_vFB~6*<IU@^9b2H3v(2;i`0qTBW`H5Y9Y@mbtp{Z%5A`yfi7xDQ)Gtt<
zOM%01y{!P?>yOqH&3>$=l<e=S>078jSkvU@Fp2>U#<PJ;M+e_IT^oRZ+6ZqW$;mvf
zb}pyOor|eo?p;n70eCm<L`MD5no_cVQ%&{9DtbCD$Is^u(<XXYqy|p7f?KN`FS%4S
z@!j8+r^K_(18NYaP@8{GGLXYs%{ZtPQXuM(_LTMIQk?&%fQ_3>+@OlL8!?5H$mxy1
zE=W6_ya-dBwX*4%CNw%-H$8y~tuujqQ%<?48P0d;OuMbEGZxZue`{Q;KnbO)z9ZqH
z?TgJw_}N8@EiJR_OG{HDSZ3^t`Cch64Y!H!;poZ+1SE^Agt!!>GL|;~p4gnc{OvCI
zJF0M~jX-IkN`rKj`6NySJaSf@mIbe)=RCg-pYuBGj`GbHlDoj;0pYmK78i2^xIu@y
z0}`XHUfiH_VAGHHo)iio3JS&xq4mV!XuG0r&>46MiWGo5iM0Mx;v4y1^f^3#{ru%O
z=i5;$@`RZYkY$2#Hex0;U}xJzOVS9)bMA;as?<}!l3e6Plxb-pAr&;+YxSt%5<{Ep
zCio!-si!iqflV1FGGO=9KZntYPQIp;^nzKL()&{30Y-Fyje-(4OtJ*8Os}x|uayLo
zYsV}YnA*tL*%M+8|0@?(?8k+b@Jr!|zi(m5)|H(BF)clz@wYjtOlFKoCmF^X#j_QG
z{Cd&WHy9ws*C=^w(XOt6v5_}up|DLf)na+3o~okM_hp_lT9xLirik3-C1nm+mLcu5
zK5tL4N-C=sNdj%kv82SL*3gsSZPD7^2VO^e%Igk86#$d#1P_~F^lcNGAhgVNn>lk&
z{@r;L@Hh^ea<0BBo3`azMf;8MvNgxodvj~rLG1PJ3@Z)_Q~R^FwzWCo=4tlm%YMC?
zOkJY(CeooS+&lYT$vLH<89bcZ>BNf7XBMzD%`Hu?<lA=i7=Fi%JH6VuW7iBzr&H`|
z9J{%Dr-euC->G@ePIvHDU$*dkx`$5>_#QuLs9e)dZraMD@8#*RnWvZCT!jkYXZtxX
zUN&?)-O&Lbr7AL9*QRa~@`&R=1dT6`pT3^)M)Sv2yBiVtk0=$C*Gv#2B-YCqRqFjR
z&TRb}&OD^T^%5yu>zOO^zL`Esd0)04&v$&`?oCt1ZwWLaTaphHl4(=wPL7Ul$11re
zQ<;NA3DkMN1u`+Wqc67@N}E>lN<GO?GA|0Wqj1Q6#`b5da1es(KJ+bPmQkX<C2#i>
zrF^57dA|JNw;#gur(gaSz3p@&Sc=7t2MkeV3|);G&sX!D1(910lYxY{>V8KgNL0AG
z?Pf;!QOdYXP8L(iO9_Vp{O>7r`zG!I%r4EOTHTk5I=^-~-)!S}m*8J?w><4l2T)my
zx+vF>QkRBl#D1J&CPVLCY@0(cEU4yQ_6f1IoII46w=*i`%u(S%(Atne$XWu_`%riZ
zF?BLL9+!}6;0yVwxuKe>B%;Wqr#Qew2&Gh%@BRpf{VuIn!K!uV?+!rJA7P)q#RS0r
zo^MCJGCU8t+Lhs%^W~2pzifIazj(v1jz>DTfFD<QM2pm1V5cdS)@g1p*ClbfkVe~)
z-vaacHYTj?T@NZPM>aMlNjl21(9|tC1_w3+N`+|`IT1O;rMS(cg)?*?r5QEW-E<04
zmg&B$>-fu@RXkjI&|!g8u91^7aD21cn*28r$&%lh8j%xPH#MNoKvH4mv5p|Xk0M@k
zkdWk?5HmU`4Y{OjoyCiU<0LlEJ{G>g(@WFqC1o<omy1cQ5VvV4tyX(T(^)s}YXw68
z6G5!!FMj*ECi|8&BY35!NB7+j#5{fRrq4Aw4fO@d;H%BK_B=%s+BN49b>xruX86-I
zqCY3!dLA(2EQSt@bSbF-K8(Rl@mng#F7AXR*aa0}DyIZ0DZjrvR-zW?=;SJ6h5$M^
z*Gye6XLJgG89ZarsYJ#-`w9NTg-8u~1IaE9G!q+G#ik^yx}-CpD8jf=7g}y^rtWq>
zDp_RJkbNsRBgr$ZC@6DJzH&wBIaN$dFhuY1>;YZ?w+PP-iLS4~5KXCV9Lvv2FQoZ<
zl2~<vS$C#GYl?os*$xCMzxT0Lc><Pq+`Z-#M^0PlMImc*@d`t}#RCgZkH7u!{6^8N
zy9l<yoIu&arEN!Hn@w3;zs#<AJ}3DbY-P#Fj!`+XO`ViF1ii6uO|A_S<F;ci%n;1L
zjqDvxG@}eg<2E7%0D~P)WkUdxVY_aNGl|1klWv;J_#;^I4EA@+O+gr`O~d6GAVx}}
z9yJKTnesjiMYPUX(MWx)+2WTM)wfQYJlHWi9!Og`(J@a7)#S<nAZ4f`1-$<5W7BLk
zHsjk=hk7h61PF)4R*-#CxkRc!&3H;1&%%}cCR?SQk>e9>mA+)o&Tm28aLKk?lc0Vs
zKVEzQqMP!49>NEs$;le1Dzlt51nP~_4l7{HC@LjNfu_)q-Uasn+~=4vd>&;|Q?B^P
zEgCr==w%Lc=Q(zW$tS~-4++f*WUqhQ9P8^vusoklS%Gh1-yYg-rFp(`Xsc1+T{Z`0
z(V!3rt<oN8nK5P>Jx{UJyGw)<Mn_K9Pwl~|HQMEXw76Ocu!8z3zUzK`-hKJ>yRV-<
z|MuLg$<L$XWmtECn(dpWjDB}7UW1jIu7h2Ja_<-a{f-J{Muk#D3Q9Qpzyz-TE9XYo
z@5sXvndHEBC<**7(?)l(-fD=lsNO+RNPH?+bV~DOZB@qdNqzwLGdP*|d(rQAJtybC
z*>kdYel(n!oRt23Z_6j3{q7*#zYLswU`R()>I3$|*s7<Tt$O4Lp#necOI{|3JfeL4
zx_@JMX}!39iK1G<J1`jzbfkW$6MPc|#r)TUusuS1q}snO^Hi|Vs(VqdNTptky7&;&
z{0_Iq>$1++D{c<y3Gf>07o(Cq5srn&N4%zUO)scZ(!(R_bPci?GQWi`+B^TAW-*4=
z*S`;VOf)&S@070BFyI!^h!w?xH;=8q8PHO<%x|7rKObgv8@9}EALGM8pNAe)Q|Q!9
z{tGXx`!4wDw_nfcjP#2shGAMiG*;<lz43NfaD(RyPj)g&k}CK~4khnKB}#2}27oI7
zk>FgY>orCUrY4s+FzX!oSM`b3s~SUtZ!fFrGt?LPR^ZRhS%Lsp8C&|BM>kE$czQ5a
zwEmq2%h;x+(>QXc0ksyNo^?4qn?biGnK38$ob}~2F4uCPCO+>ze)z+-#NNcVmkJn|
zi74WhF1nkHcCZ8bky!I3{ml+^WHDAEVEUWCdC0k5wO+y{x(v7Q%CUz@109o`9F5cX
z%~K31?x8Vx<US8MUaWT|UaI!_b?0pz@5X)Zpt-W$Yn2r!pIwzJbOCSfvusZY{thK1
z(gqD@s8Kmuj;u!t=Xw|O%L3INak{_Hoj{R2JVeb46YYd?_WYV<f5tJN`TTG0!JmKi
zarZTR_(ZJb-@MUzwxqqco0Rpb^{Pf->em(_udZqJm8)udVix9WukUiY)e}DoX6pOx
z7}!JYVQf^nb;pen5*Kj$l}mDGHSn#bfuzW}X|i4-J3YeKhiZ51iL}y<m#we=Y{-0H
zpYacW{_}QR{_fMq-N$pg*O(-FE%J_;q-<47+==}Xp>WHX8o?t=zq<5!C+B~*js*>r
z1f5P-UarrIC;@!>dPoL{wC1~IM@z(?ny|8Y(+dISZ=IASh`VUJ?s`42it<?2orm;c
z`q%m{*DAK+h=;pUr9LusmfTxdly}|K+TpH8!aBKw0e8F9=(1eOwbEZw-*SfHYR|C|
zMX^vS{uy*Tcm2u`$kzmB5|}Q=wUO$0<35CGWu^=^;n~27Orss{@MzSuOtC}gv;T*?
zLb$-@n0j;V^TcB$8~t$S(4&YAS6MSen^e=J^rWynDf^8ZTtnJJ!_(ZjBn`{)7Rj$m
z9N<x8Mu^}(y`q6P?`})MtSQN5ix{nNS%)XLCYwRXikE_i3JR3A+DINCq5GX?>hHho
zK7V)<NiIna<#yS=knS*^J0j}UzEzz+9F$RvAYLExrov+<OP&JR_(a&N-25qD>Rp9S
zq%8GgspzZ7pdUGuFHptNn@Z1UP*W)Df1vunhan$)eDZ~7<e}pO=MU-lA3i=`ASz?(
z;_9qP>T>HX&P)<PTyPRx)+`YwR4rx(whT;P<Sr>!k5dfuU>%IOIP(a@Iv@3BdjhU!
z-8CYiuVOc&45rx<b6O^k9IPP+(6g?BY{=faNAb+IH?E%8aShq#9n6;|;;BMUR~dVb
z;dkyAD@W0Q(w|f$S7*6p#aSOCOVbjc>xIcj0ll&XB_xj+j~wsd=G$5@cf20xvB?k2
zX?(|5aTvb^qC7EIEy?Z<n-q7*UacH&V?{>jo=*#2O4z!p92E@>%yF>hnS>|eGIjyU
z?T|tndyu>?udN*JbO9d9R_0rOyqxBF_M7mMfxCG*Ei;_H(lKzDWLH(&wa)02)Bh1x
zDLh))<sD;(as4T1P~xr20dBhoA?w+%c2skJ<_k*Toqr9p9QJ=H2mk_m#Ax6#LnD*W
zBBfRW@(*^%Rya6HX8tBAROXUB5U_$8$LSrZ!#=IZPQ@rLu3+e1M^MdGgyOZ6xmF2{
zl6!XtE22Rz+l!Jnwb2xTeLdb`ub5;zGQA#Ut%!M-X?Az?Vz{5yJoy^V@GKdpO}x96
z(;skZe7<qzkSlTk<LObq*)=IqsaIuqgd%1JBQ>jOA&3y*8q#~6cdV5v%%gNddMezF
z-1#Jjd5)yrwL#8(=L)&<`3moq1CNwWSG}_Nlt=n|wi@(^n_yt!UPd^6?ti}Zefsd>
z)7Rb8Iq6Y+@8ggFC}7Bz<)2loL<z4F7_pLNMdfLgcgf`H76omR!}U2sx_e9vIqKLC
zxh=#s-_FC6yc@2NQ{|_<C>)SU0}H{2ff6<CmZ2j}BNyVa0<vyW$f$^Yh$D8A+%WLm
zJ$8+OuC!^Q)IGKRjKx(Ac-s8I%PYNDNxLS3r~IohHDKlgemu3EjJXPJyRQ+DRFAV#
z=^}|POa&S1y*y+JF(Al=$c#+x=w`(v@Iv8k8zD{@N_Btf6fHl_OPP)qY`0x_8eI>M
zGb9T$^}@x0ysz1$gh|A68n$#QqI|JB%iOL$fBhKtAAj-2#b;dQwbGonCTcK;^rXRG
z3;&<`MG@LVsaK?Q#5?Wom!&EcXjNkSkDTtZYQr^$xv;{o8K|TVB{1qgvE{e4)_J+u
zDpsx|{WF{WGAv&{{qpI;xO_Z}3p7{07I2q}FSe+!&Wr>auM|A!-WBPo^~=K3zSB5r
z=mL;Y0{2jT{qCS#(G~u0ZMC-0FOR={qZi#KLr(D->;XUhJBkYK5A^g0E}Kyq<nc@h
znPuj1KKsKl|DG~-=xDrjKLb>zC;0gmB2|ge;S%+(N+D<bN!6vUuFuL`otc+03p?ch
zvqUN!+6Ha1lS8E>!xB;*N!>_FJ*Rgl^F=*bc(RWY@#t({pfC{wV2<H#5}Wa)ku@rU
zfufnL9!n#mEy>6bj}Uf0IwqX3GNM;MW=b<$M(6J$Eh$?fJ3lAEL28ol<SIo>Bz0ht
z`e4gOe!pr*mx>$Ismc$TPSB2^c6jrGnzwV~=*Z)(4t8wsNl;JRO+6i^+Bk&Z$UO_5
zD8UL>aAD^rBnerQT(Yi6MH>D9>$}#<qTlI+i-t05(QcXC3)(|VLEM#~H}Y&R?-d4m
zKhyrZF68hR{^-?j^hmZy=_qbFlnWlm3j|!?T_k85GZ3Mcpur&06imFOXqcsZ2Y6UH
zW5KpYq`4<=V;l4%uZ>4S$qHpC8Qp|0BNr}Fyp>qU=a+f6P0-Ff#>{`zohB`Sne%>X
z7uTb1@lzt6<}_;f^0@KRz{$@d{kESA7tbgPs7d`P(gb|GYjY5fwUJ1HI~~{!Ou&qj
z*Ag#QIq&aa3G!Q}qxi+|uRwF3hFo&=zGI3^z2^p)=?N(`)Yu*m=_ZfH(29a<7b>nO
z*GlOu2L!8!wBr%a??po`R+3`F`RA%y3c{6jx(!J!G;CygzVcWUiFK~e@KIehBh3Ke
zw!0o^v+FEVaB+{#$Vl}JTYfxkg5KwMmk+(?*W2p%!%rzv19^N@9OJI;u8RXhPzyk6
z_PGpzW<F}bN1aF-1RmcqYRiy!YH2gglOLHZOKoAk@_ddtKTgygXON^}Z>EuJqsJsf
zsZpAyC*O}bgM9vg&RPa=Ep$3p26Ja^v>BvWQ3sV#5{Aso>57(wzK;i=75TK}W2ztl
z8I2(!xI%0UcWwd&J?e+?XXR?2E;D)oQ_{?PD=N1u^=v|sa6AXX%cGrw1^G7;A~nhq
z8o76c=URz;MG+N{M|lJAFzY0q*<0lsl}958f0jj~OK!T5p`>Z<2yFKlRP;$zG^*$z
z%?VXEnq?FNW(L{eD&{p5%EY6IGgTe9beA#lp;e3oek!e)vwjzITh_P6<h>jMcr&7~
zE-x9OBWyBM$yQg=joo0?6cYS@4u`uipZpXAPA&nbUUW1@p(PdB;B7&X{Vf3{UfX)S
z4#(gd;HTgI{PQ2*gbn%m!7aVBxD@L{ro7_MwyJAp7;ta#12Uns-c~wUMf5<b^_5B@
z-5qkg??ENlvD|1n`Zc3I^TV|X<<fdLeCaAe+{z|^Tc6B%EW`@!rV5~ODyi6SkpzfV
z`+Mqa#&nk*NhZ0~E&{FLDulu0KR`{~rkRY}0*HT4bululWz*@tazm2Q3n5mvJ%Ad}
zsoMpkyPds9dmTG0DM9}4s(4D?-^78o<=}hbhs!L(xA6|I#7}uJnCSEMw;w+L=A3iZ
z%sFRpejwuqw#&OA*39Xzl%{>=!t3FD5|!UgT8-0LJj#SB2*%h<hgi8hSVT6D%|v;W
z?_pc~GF{Vkc$jQDcnpI_Tq<Zm84A{ta}Kg7$oIJ<StyAIO%o!!9Px+5;~kcR9Io}{
zRRi{i7Rw7CEAgq@z9ih>d)VXnx}w*OcpoWqEPi>3j6r{vQNO1)UFv0q7;1DFHGESq
z7;Jh`)rqRZ=-7wl*oQEoK2*WU5QW1Kg_j}n%<)#DT+=A7$(^t(&}&k%V8%Tj#`nf&
z_3>FWKKHEe{P*?w$vw*#yuGHnkg2RWI8**)4lv9bq`BK}0>Dj$=1oAZEG(hOz=)U=
z$pfZgFwcWW9ZCFnFD8zQtdo2(x9{hxrs8I4x3Pd1a#+n3_|5uy)X9;HxaPURp!IdN
zeKAJ~`gtwOOKbkNjC7BTxzCKqJ_?HLs`Z`e66BI6)}!u^y9*1)chjP<u5WazTDqV+
z6W=QIB)g=d#d$sI|3sleKtJw2fB6u;efsU6_HUe+ei%oU^pYN@cTEwKE2&ri=agBE
z{}P|2mxw)aiBn@`KH-_)(zVpmKkAJKo1gkP<%C}2(Sh{*KWm+Lb3y%S6Q!K<!G12*
zHH24z9f1nUnu(k!RaqCRAbnsjaRD-l_1!~%^gVli%i^UNapYI|K|zkZB5r+G*Sci6
zdCkZHhkI)rY(R<RU9^58Bba-~x%J75=s<7oM#Y!=j-5JZ(`JNU_JoS*YCWj_9^@ya
z?`c#@Jj}hT!85F^q5>rhaRR>TTR`MngKx*8#pS~^mcEY)X4&)^czhLuWpn`|A%E6>
zrg)q4%-Ab$TIQ#l2Z9caL&RrVEPIOtSOKS5TUE1c(I?GYRpQbRxdg5CQL?vadEKJr
z*rJve9aU;kEFp71&K8A}7KQoc4!>@V9iy9h23ecLF~>NZjB)K=Q?g(lG=p~cv<sO=
zMi^vk<}g5%HMosBiIZfg>t57+b;fb6a;PjyTKq71+?zZq5l=bqIn?41jWx=SoD1J1
z&udFWXTUR8ogi(mDq^4t%kcbKlmkT>YNJ!1<teyT+540h2zu~m#ovOR3il3N1h<WB
z`~abNOWn#tl<)uzW7-AP-Kjgpy=b%=)m~(%FAY}iMPC**w9i)WsfZ&((I#Bl+bAH#
z7?=P}c1o27#awlRceWLEF-%t!J}X6WN|K3Q%srDm^DuIGLENI0n{6!o_L=rj5L3Z9
zwIj|nZu5#+8;Ean6^i8IsjQTZLaqn1{xoFq+OT!g{zo%%3EhRRr)zO;L?1rCG5vDQ
zo^_SF(^D{U^|aXMW=opr4tr6At-kjV8;dS8({l86CNl^fliZZKcgk5NRR4h4rdM&9
zLS(Lw6c!i#9-a4AtQ9JgaXD$v^3JqAOp>VW?{#CP4v!OK9Q*NKo3z5CgE%(=y@|-p
z3J~@BW4g)y_XY?D+dF~j>_v#^>z+P5vAF}}mjckGUmOlScJHO{Ah0kK5r=Vm$o{fD
zV*X-qTTqISv7=nHmf)9L!y}MspX$XynnAFKlBI#35<uao@$gEWVf($yR>-vTIqY0X
z__bc*#ONo1!Oq!A;FsmOx=<XQD);@mM#VEHmKL>TSyq8N<6Wx<MLnTAspq9-kFrv+
z;ju+mOShd}3Y;0a^H|u%U^tj-D01Byn?+lEy$mU{)fq>rra|ipIoXQf`BZlywX#<Y
z7wl&_<jVUz6rIK|JLW@L4!<==p_Z{=A(IwOIrQ1OlxwUFg>1>FVWxUInO(afo6>Y6
zx*kNGdJqWImo`ZpEK;(r)hgW1QkLVa@J0K}PtRXJZWHNz3Kb8_*X0UJnrYSw1KlMa
z=~-^TZ2DO}-YINFZ&eXQqdm#7Z{JBhO-3(R?F=Un4mYWx{`2Q^y^lKeKJo><kC*;V
zcwEr-$S2w!xnkWO!IihG?Sf%JI0B6DRDvwGMvyL@d}%e14%e~dyiJlqV{*uxFA^cQ
zG4J4XScl!r@ndqXRa}(>h6L8pecnC=MRsgcjk>%D<!mZVKjfCKD-gj_tnIo2k>qtX
zKc&Jf-E#r~Y~uX1$7Gr<^D=kV=&__QhHFpTD;OZrqgN>#qnV~*WF-6Q{s>BMa|`;-
z=WidwFE&Rck6+)$%lU9H))&_RF;LqNWKWEFyH7|yvgjQGEex{V5w%7v5^v+tP4VeN
z67JII?CJCtbXI_ZZ6w&h2@YPo&kekXPA!K1wW0;w6|>9roIez+#`@b@?qaJK8jlSd
zVHT|lp?rUm!=o(5anC|goW=U8E;b2?C5i$q=IW6aUpI*NHIP-Y7N<Ak(=6_FTIC?m
zL|M<(P3wJP3Q9@!Awt)qj+A|K_}%_bXZu3_DBB?%AQGF7jiBB`X5{EHn-Xv17@(Wt
zHQ98VQgA6p(zz4`Gs(5&oh!4+v0xsH&@~*uB_(5*PL*q;n#oGHbau`}{h^D^qmaIl
zHHy)HhM}G#cw3Bd#tcJwn&Y5r<24$Cpr$~sNb0ikQWlDEb`{91V37ad#I=*%Hp2v$
zOhamKk{eaq>!TI25y29BPmAd9)TA2}pitt?9Djt>ay15lcRRlKZxy1Gh__r{K{>~C
z3gyfaN(Uh4k{rlg$q8hkRG`dI3&|t*M;`@jT$7UOxSc~e{i9Guu}r86`s<1zlhQnp
z0ZVcyCvPV%G|L3^8n1);{s5GeD)+CT9j`&#<Lvm&%VY()DLz@3Jm5PHpQ~MTk*5n-
zGwK9*l^1r`A%4TiFu&fH0`2R+GdfjeT`8nyaq`YD^R+@@xXp3b%4-U+_uvBt15^hD
z5J){}I~WrLVS?b*+H(MOv=vG#6B-KuKsY}8JQwpHe!hiydHn6!Cf$l7>1Hl&mhw?J
zs2$D!3U_u{y9Y}@HqPM2`iLAA#zHnET^$BpS|DF`NU4v}Y!qS??W}u=z1`DPG7k(t
zcFN^8!bL_XE_lm(M7orw3i!!8v5vCxRq`)+$~Pg#EEpvw%I-T7)It4*m_^Zl_hfK4
zNPMx_t}JTYkXS5x#^f%O*B|LyYU%&BZx-wSNZ%9(K{5UFWdpK<;OA9zt>;%ExehA&
z?P8p<QLn@dlW|>N|K@KnGD0X~8!TX#y2GEPBhJ<e>;TxBkIACtiiFZrZJ_;BFPXvl
zHt_uQ%V*?AuQ!383sakX#fzp|Kb<N8WO(BX=_R?yRskEu%cT@+dRm}opTB4Dg~<eY
zQ>qfAi|gGBVs6b6O`D>ybRs&mXA;zRco^@#=xs^59<^dxKsaB>$x~p7%Q-61oKjf}
zWqF;8>b%W8$^%)I>lr$TFvgjkhPlUTm-XrFiWX(=?3=LuD-EOX(@K}6L@U75a$T;^
zS?lZHE?JEA(v<i~)Vzvlf9xE19pFi7QBkFeO1*$j+PGbB0&i~d&Nk)qIf=6}NHFVT
zu2+-{zw>In0<V&;DWv+jg~bTX6k`CI&XuC)wEz0Yj~~CD&HB{?^;cAQ3Z@?!FVJ|w
zaN(zM2;1&NI+t8J*ZpQn=n&`(lPm36#QbFbUKZ=g<wp*F**UhTUpIZxXA<ujhH)d^
z%fFq;OY{RLavEUs(doLf_(f>Ok+IT{0`E1{sQjBd&rT5pQc7KG9l}^zr6`${ruCG*
zJS9O1-KXmJ1{Gc1l}tjPr<VgyzzC=6F7gho4>W)FcRBVKk?HBL!^f#k2N7CM6<BB`
zTaNEj7GuLNllGCTYDarPQXW7tdylh?%SjvSa@xk_w2eS`4oM1r`RkI|`)Dq12j_`(
zcVW2w=4GBJ0ub!&jwEIGs`SeOdT-1!+vF4Ebeiz-DWD@l-3fz-Jif<FV6NKO9awYA
zDQj+d#hPOZF))Wi<kQc8{`p+p*FID&rgy$@GMxj++Hne}Gi<XW6N7#2eqfK?m?w2&
zVaw`Bg5&*&(te0;RFFb%GLF!Gme<W39iszI5Q5HUgjidua1`bha|x1?uA&g4nCh5I
zDfJB74<PE%!Xq6ii*`JszQ0`e4Q6t0;1V)*5HG7qGl3z>Vj4|j15Ol0No#U#DNIP)
z?V#;sj+I`yv?>4+SBPP^#}ieQAe0T%xKBEg_`-FCRCa~A>9MY4tsrN9H364M{#frb
z!W*e=^+l0NqoY9ruVnukfS>`0fVeM_om41=tc~V4|Mr(>^nY7jFG}FKjjSP3LJJf%
z9vZHHBV19wl`q40;>V#8`^uN@cAbi?q#{^Od)PkZkkUL<*}SpfIV6#VJ%!^u)i^}+
z_M}u_<#9KO6YKP%mhuoegkRr*?|GUhW!~h0`iC08^*KOXPD?K2c@afyOMF`!Ws2xb
zLR6TD>bN%<PMcf4*3i|m&@sQmU@PO4?H$l!!)56~JIm)?<xcVquFr9mC{?dx_MlAq
zG8YBXN^KzE$O`v;YWMvd__SN#Met7*Q_Y9*^W%r}@PQuNvowT-l3&!ep8**H8fqqX
zF8F4GD<@ZzEG9f7Vpbr-qp{}%T14UR6gIX^t@P=8X;h_P3X>(sUlLe|0*J??EP*Wd
z2@uDZqD9z_?A~#ju%02VVHOLz-GktH!*4^S8HUjn73Qd!rto5<p5g#}Y^6C;dhI(I
zaw^n2Z3YVznmD4TpI9He4sceUuVq1C<XIMFxkrjn(@6zrFQ+W3+l8)_uO=&?Y{uvi
z#XiO-*2lgaqWudB?H#DwAS{^4v)j^;aAnehBpLR`E}98o2Poy^P9go|eZxWK>8D`y
ze@D65#ZR>dSe>3Lkc;xl2owmD9CQvB$9TIfGz5f1NGE_{y@UxPV7M>xnETgZX*k;a
zJ}_0*0;;S~9Smq(REuhyX`jrS>zy}lAIx>tZ)P}PQ@AVnU8}Lyn`1(8s)$O}F-NIa
zbEv2-$d&?Tbi|>L6}fRv{pOfZR)Sbn1M~P!4$QOR3?ox&cH@^>mE8K?rQRQ2qGRa=
z(Xk#zg}Qiu>BC}1u&<wOv&x9c^|*n=W(R}P@3UlBH}kUU-^~59-vkdJ=5gv3Qf$;4
zwPfD^#7g~vg2{baaPD>}sM^XaXr9L_AP?&LU1=U$>^q}JVbr6^u>1ALb4Nfi7wv5X
z^i69VH*yl05h^0>Kw?v{F_kN>TDt5gSRZL^Tw-tK*6IpQN4Ii;KTHZv$J&gv>@`|R
z8Hidzyt<AXR?V8XhQL)^x3>-n>`HQz_nZnJyk?kvFhwP&DO)a%KgpGPuMAK{ZV8JJ
zorOxwHAGak_xEhfH~Lv$M%0ObUfazvp?7{;db*LXpN7^3c!az}SZOyTY8Pyf0F)GO
zlz;$<Nc!v6^_);)=uv~bCGQoK&?wfh<xK@Ff_7%U27uc)JOKJxZ;C!`Ep0H}AF2<B
z>L0B4zt)GiCFpo5BflhOo(SW(g$b_xAS!9k=58Wac;H|l9rvJuV*|uxZLJ0pFLw+<
z8M!@VgknH^r;tvqWcU7=3S){0c0j#>$k$X)o~0Ny-=K^W*6`cgMjbD=CHi3Ayq%;!
z`w2MHYHQwLS^N8!wHI#;NT~W7BYaU#=_TQrUVZFK<PTrZwZrVgF|3|gVxyk;>O66U
z_)PM}Y-rTy0cqD3E_FTio_`)jzJQ&Alp=VQ#0BC~!4Ha5=>3Ct(LZ@6`C{ESUObnb
zs!~6zZ7*K$V)rP<RV1C8Q^;$ucudvqa0Tww(PY)(QSX&LwjBMve?}0ApNzUtPJrG2
z0ujMY0n6s)Dio*A;Xfll#Fytc!4!uW{hFv9%_-y(V_J>Y5t1vLRVGjjewlYaT^Bjw
z7w2z&`0V*-#!H_q%8~s>ztHrt5q#J~0>jnH1-Y3l;WL{r;a5BI<sgq1WnOM^-R*8z
z8?FE(wu-A#gZ(LgL#w0Gp^jSy1uqlhpb1jFHxDNbIU=D8IAu4F!qu3ci2X$$w069r
zKnPAb8u1ZUJ1<IiPqXTQx(tLeudR<jql*xoA$N~$h|7+S7P@J-hOBLxTU5!Uk@zS|
zs+lN}>0)ICOSC4bSnXOFIA(?3qV8C|_g%fOiQf0DnycwzC3BHp$UqJ+>nDs*jh&GW
zp;#tKqM9(TIJ%(7*p~)_;=C-~J<ZCcnGy~F$Y}%`ZQS4^UEMJkem-9d)EF(liHl|9
zU<yt0EN)U<l;dsWBnM8=+w<sH(I21s`gaFHyD&fH`AME<Ppbz1Jyv^GiR|+t#!IgB
zmJPkRo#I1NF2{r0h~~<TS@J;ahWS>sfN0!Zs8|jWJ|^pXpsjnn0{s^7$E#0yU^&hk
zFExIfRbxV`@Mwj@mY1zHS7tS3O|T817AnC}7_ZSOe;Fp9CkeBXYV%4+?u5F3stSC4
zUJ`dO?^hH$+Ytf=1Y&gvfIIPVPySgGRI(fmqsEohU~yE^3THx}29`&w^KuJ~)*&?%
z%+Z}Q;$FXal5W~VM03dm0xODqoCShP9=uwqY7^(01tE_^xP3=Ju2SNNBDvFA4p*sB
z6C@n!YqWk|lJ0z-Z$j6P9!BBZv(oe~k_Sp1(A+t}EFmfRLaGc&QaUyWr1;ZgmgV@}
zU8`5EHxk%cPS*`Qh*R6Ix_N;x`1|4rY@e2N^<{te9S<@k-Q~6ac#w!Yi6Go7)=07z
z<`PnL)vE?dxRc%&v^A4YI@i(D{N|Kr$cUUc4iUB#DHgQ)a`P1MI>*d{q3T5GANC)=
zydg?OhE({Snp^3<l<LN*je`%;mRd40{|H9HgqPQsAy>%vWtDiO#+?VD?1=l24SB=@
zacmI&AQB^yWc?{d>FPGt_oim=MbA@n7T1;2*Z%%O@kJ;7kR>tq3$29bDBJZ}Z2RG2
zw?>W`6ruf7+l%VA%Yw>Dxm32OvcJ2<_gyBsRdvikyM<HC=fR{bF+Av%j@b@3xr+be
zf&fWCw!dHZuAdhsfY>_X;oetRM+nwoV^e7*htZ8r4yRJIzi8%#-RIx@{L^ngemGYI
zE>?x|Rm6+^=u$ULYn#$f&24zjvlAD<)qeDwhf%M5^3c-dFMix-CKeuO#x=1F%R8A3
zl*Ulq(^sIL2{*HC0_>)ABTrj48lW~E{13;={VQ^+_wV@z<-2x|$XTlRhKG<+!IEJZ
zAN!`n6P>^ABKQg@Pv*+g=P#fB{Q0+EAK&Pm6>CRLpd`=C-+KRnuJlg#|L4BB>;1|n
z-wPQZ$JLneC0>mRAM5(pN9fzfFJC|HG(M@k8lUc~xi1!fU{&_+E4lao#&7=a^?woe
zaa@D_Y}-7qfBRd>wk+0D+1Bn5!DQ4c6vR){=>9x4DX<*qfVVWkBC28rsE80kd)m`w
zvYWm$x1P`X)EcH>LStOGP`WV9X<`%-tfPH@HzSxkH6fKN)sXcd<&Y&%OQ20i4aeXZ
zsl=rO+mulKN#;=mgs9{#86sVRNWLqw3^8n|C{Ipdu?-xyM`3Ukq@wK{tC3F_)Vu>9
zcH~nsFWfR`_j!Yaek+|Cb>fOb^svueBu=7-y*_7s%**Oe7GBE2VgxTn^QVX$0Xqxe
zBJx2=h4RT^v)@*c=jNe)AxB3g6~kp`Te!GTJ{jVk1K$1HN?dD=Pg|Cw4U9c#3S+>S
zqNnW<OIBnylB~tWB^e;?Xw`a(IiV?30V8aNC2QbZ&l?ioz=Mb_f%HRWzc4pDvKqlz
zS&9(@hjGBo2R#*P6Ol=$PHPB%9XU|c*eu<mk*K&2vEQPnVb)(+H_iZ?w)iYeCFXYZ
zyN@5Q#E7eh7;)DlikV$S<<qU6%&;Jhv|JQ^Gc0eeQY@We*(F)Fkza-k%aB{ls<BD1
zo&HXuCSp}z8egV}=V&P#=OnYz(xJ3MGqU*IcdIGL060SOHY|gAu~bpuZg1G7ZX7Gp
zGAD6!scz37mw8$B4@tXbTi^N*-jH_Sr*5+h*#ct?TRr7ui=gQH$mDI&O^nvMYp~0}
zYBK^#ma(z?^B^cLGFAERAnV^pp2;Uc9XpRmFG9y8Q<S5eWK~9w#rOTyk=y6T4`KJ^
zPv<^`%FjK_m~~kN##84r!o7yj>F$Bo!1B}f2FVU6p=-gtXwl&?-?i!v0nA5*CK%FZ
zWmu9c!;Y%!bFJ>j68<d@{<cCp-a*Z^Hj}m^jHa#Xnu@OK#EDNGoHdu}d$eey>=N6`
zTe+tyT16gRGK)-+1})7sGPFh1f*frcjSfxM7}Pa46miWKG|S{kRH>gPjM-Q)l+6gC
z16)EB(L@OXPAJq!anZx(W`0oqhLk%xy|Q@fh*9dGTu~g202A*F{=4vwYqh{TuDXM7
zI_Q6oz~Vdgme9Wot-RVl9a?ZJqqcrKK&wh)I=Y7^whRE4kMsKL$Hy;kC$?Rg*ngWd
zfzz4O6@c&`7iq+j-V9&l*VxopSe+4Efe+AY%y2<nQPrxh?x*oKHjk+21TCt2!>@IS
zm+K>LO}JFsM!aHK^AAfyej}?;8L*_=95r=nQ{)7NMJ)-Sah07acq<paUiq=<ccRi0
z5%BKgi}@4vQ>Uw0A!kzk6T!}4KR<r`xZi(zBZF%{SGbyj2Fp6?xXI`{Sz4LHNFwsc
zHzZ<B1)+KGvBaBW!iDCTFs-eYoAo~R4TWe3(K+a2EUbk-QjRz5@U4tTd?A&ZE#JJP
zR1VzZ6>&HFWl5>aKU&#}Za00q#^}MSMz(Z=#G<UIT_Z7H+YNHkhEy2D)><q#wo11$
z^}WV!jB(@FG<I|iK`!0inj5)p9iSs?ZO41Ew~-$+XC0~z$An~|;c)8-%eGT9a@pP&
zj2d(2u*yv(^;uCF``MsyXwbdEIZxvT3+Z9%d*u@l*qDt2uC2BX_Yfb4_cu=f)YKfV
zNY-y&QiAJ*XRqcE-VX{c7IaN92+LecCSkF~>iuODxy({ljq@12-78XRwPrVH3iYVq
zf;H951oFiED9M_$*M74~=VA;^pP86>T(Uh5h3#ois@n*XSlc%IoLFlKTt<uekpK}Z
z@_oO0LF6iHU$?sUGuixEwW3dQ-d-LPvs*I@QNz6&9;ljo)<uhB%bUP~a;2ZGkKAvL
z2`}aC3PL3&${?&DSC?ruVN`lz+A0B}QHki;b<x9hY?E7w+Q-j+lXAnzyQCY?iM1-@
znsW9JOATHmpQykaFHo1CvCSWs{uZw0`RSZD*LJI;$OSn<u^X$5#tzaX7N%_)ZEU47
znVFtY6}85YSt)q~3`-`{4%CnHjo~^YbvI#bscfBBPzIK&f!AdW_L$5)-7+6XP1~}<
z#<C|QFvL=^8+nC8;{=uBjMl}v!Lk?@>;t74sLjH9u6-y<BXcL)Y)|aoK+B3N%3i{3
zMi+6bc%SH=#TY!nmWyp$8NoLML$7sM(00(`ylbq)8hvpX8Ywd|6(i1`m$D05q^Rcv
z>EyH?-gS1t(0I|Smn_z>QSS|jxW-KZqaea+Wt(Y;uxgX_?=}T;W`p#^+&5#@GL4Ok
zr8}#j?`w|o{8UG&H#2ekqOd7fOjr0O=37J9TWgCqirQn_n9C-*Wa~GLXfu}D4Mv4)
zUfVXmGLpsAsiK>8s!-yk3dn<@#8`WQ?L-)jlHQXTxsRJ;f=_&m*KJ|ZiE^780(Bel
zh8=IDv@NoXAea4`pimZX-U4Y;{Bj3CiljQ~5ZF@O>Y+L%UceS(GyyJ+k?oEHnZ1H`
z)n2zZGw}v&80VJ+Va2Hy6Vrd)$~Fa3j^KQqS)XAi8H7+JMRefYs>a1`{C5^@Y{sq5
zI{Ls28rAxdHSXKg)@A0OZC-m24C^fvl$DsbHm}G_H?Y~-Q0&@<EsjLLw&iM?2)T?6
zVz91P`<c*#Z*QW_>|8r%8V$rWrW?47xN~0KJBw+WKnR}wUm!1!Rkb~y)FysS8Nr*k
z;rGcLLCnPi9)&}^=R-uV_3-NWbO!&bHXki|1Tn0P{`t%$+<(-N0d9IoF<o{abuI`!
zr9U4cQciz)N`*t0ro<7wgMfDL&M6lx!m6Q1(u=(Pl)Zws^5YH!>%!$|^_vrjI?Ns6
ze1Bo@T$&rXjX3^Q<^wFY20-I=bn&8ta&napxhdRD<O=O|EN4^6rw@Ps1}Tan<(0E}
zR%%x>;0y+jMgwT{bNle=)9!^l@F|GU=hUu52ka}>OxKx%_!_KG;SV9%JZ>NP*@1s&
zJn$p4)h!&4{MSYQW<<vXjs!iPtlAgFqSL^RSmZRP?%XgK`Et{;oEBYyhX$O(f-)_h
z=^I|pT%K*35;9$Dy(>}S#qM%tq>hl8$LXW3q;oY+fQEZbeW-E>>?Prwhe9MJwgRV@
zn(>$CJOWqP2R>>m(~9)tOfzHry66dsL(b!?y+?`8sa1jn^yvC}B|2lWt4x28<)@E-
z`S8<sd#?Wr>D~Qwpf8t!a)@8|;H#_!@Jw~xLaZ)yQi|Vg8HzM4O99Tnaz?B_xv-H%
zZTB~x>oymr@&evjtUK5msn76{G6|JJ*1&iPi;Gc!Gd(F~(RHRX2KDY;y~Q0@CAYk-
zi>{u>)1Hs0x;eung#{^re9(3AbmP>ux*wJJsGt6RK3diZ#812P8P_}*1mI&)oHqD}
zlrbZ&PD1OOQD@#p*l~TaFz9PvOwOESl8EBA#BS0;5qq|tgg1_m85>OQP^(ct1yTI^
zkfIqvc_7neWK{7s%~iZa6ewfbB)ASZ2C`{E194Aswq?H#_rAEw^;SbLvNuK=k6aaA
zwnq1WA7fHTN>eIE){0}m?5Eg~sZUPao)LHd(}!~%mbOhm7~EV5C3>qV&19Hs`E!fj
zhihRV?~V~jPUAre{i+8sV>7Deu}H<-_~l2S#h%HseK_|@wx+2cz8Kblw^+5vbW?|3
z{mGLzByngrc;u0(mRfEyv2NUB>Kh|)c}A-vxt=NLv3|Siq5pg&N#gLgwJs10ajx)w
z!+bOQ9IGt8c_Py<E^WbO4mEPw4!I6D*##+)Gu7@Sap6LaFmnZR;aGeRNa_Xw@Id4n
zq@*)R37K^J8=mR+;koDMr`{={{CX1(&*nFdE)MtbVLvC~ay^HC?cL#za9cxA>n_l{
z$hD4(!|)&m#MwZQn}j&igTY`~9N5hGfFvIRHYNr|Z}e!N-v=hnA2XZ(dNxGyFh=NE
z{^BsjMSXbtK$XErA%w&3bzr(1#=0MJx>-zwmj$%%jFc+|YS`onj~C_e@Z|mcm`BQE
zN*zAd>m2m)d>D@J3EkSX(iYTUF^2~NF*^e`>I_vRzk*}ZJ%!qQrdjWu)*^rOkhY$D
zNYLq9Z2>I5qe5;CF$txI!zBURHKTLN>w$B9#o=gqrywTcx5aIy`R+RDy=<mAd=#}J
z0^SH0M;cZT>=L6PB5Qn}3zYts6HrjuX$#w@@?X+Z@CG1w8USgs3}j8RpOCvA#4He3
zmJ!$qjElfnwC}KaN(u-RJvE`Y0L1{h3v>Y}dh#IvMw$s217Hk*F$jzyPg6V#fH45Z
z02qV72o!_BxHuRCa0G-6V8Xa%>r*o#7#gKdya<eoz_<vEi-R$*muSmaFVmJlF$sdi
zh7sf>xVD*|Pz-`%5EO%;7=Ypkg5v2qv-`AF0E(9@&G`RH^Ix*k(1?URS>4JydWL1{
z>dsnbnk&$f(ADL;0(Dtxb!<jE;C`@v=rYe4PVM8_&ISkE9{mFa8W}U~A1|xdAF@a}
z)#$Z*8XFB7Df`K<9|-+`)8Bvh!=E2t1jvk&XK0Je_U2I-X5P~=I409M_;3ogFlDo3
z*9)E<&%a2Clp85G1?dfRE<PO%`lu<U;aaxO2n!_~*NBTK<KPn#sy)pqIW_dT#H>0c
zp!T<o=pzWJ^^}VG_DDft=Fjz%j$*kv1Uhj-YHF=%%J6X2bn$u9mgh87);!^!OkIaU
z%672kZpA}`NfG_<_bp~5ax2r4$T~9Msq*wM=;8e0bU1(9T^P;v<1daT%9JP+UV4+$
z<#8^Ruik<KrSjFKH#uEEj(vmnpZp(d{%KhA`0?Y1-Am^S_Cb_$HEih=uOMZ~<5$|0
z?C|&IkRzL<P~Q@8_C}BEqFUt2Dd1<Xn*^h=$jeq`%OpPi4BL|Uh*&tTc2N~tWhlN-
z-Ix|PhM~mdHX2Ih1nb26`_oJIN6Oic?>YfKvBdI|C^$9eqxku8zCFHJ^zKPv);Es%
ze$jhp0r=Zl;)&cCF?a9RowYumxl}p##~O~A{r?QU{WS}WQNrt2q4PQXA3XmD&xHb+
zc@OtLetbNqo1=6SurtO<0(bsgW{XNPOrYaa{*iLy|J+6>&{4Ni0%-5>COqyl{!-rQ
z>R&(!Mni8wvP~4uHVIKoeV0%*P45yBtGnt;6_aX`H`eU^h#Lu{l3o^+HSF+JS(_J!
z|AM}6uGF|!_pC6hR{GBRv!^5wpqxKtJXs^ZIej`y{;fmsr*q|wwa#!%DF4PM53cNE
zy&XNciWM7=esX)CesW1Z_mjJkE4&sJ>1ODRiBe0Pn_o_KdvM>nJa>}2Ja^x^oVssa
zPTjXI&)m0eD)P6w(8eB3d)SERPvSk*8=D$IHp+>Q+~ve^>+;-3?x~C1QxCbzD;{zM
zS{&TJuo3;}bZ|)vyhcS9Wy9Ceu*+B?4w(}T+SNzFb8C|3VMTmp_roJa&D-k#f?-{o
zchB=~q_Gs)8#zZrw=WrKIv~=0D}By`p*i6|r>Xh3wibV*tm`ApSkG{@mTyG<pskTH
z!qBKywHqH}rRYspH#RX3dg#WAVykqzeqvp|4Tq+j*YxN=$mca5z_vKpf)^>Ug$cF^
ziNzuD4J5)!3EWPiGgzb_v*NRA9?u{$e~{Au=R<wXD)?iZvXC=j=9%T~jr9u_yywQh
zrz-p5g#^^!9yIu+E~o>a3112IBTsg28Hh}*Yul*!NyCd#asOVe+?PF^@>u-l;PUU=
z$h&7*HwhEN*4&+{Tw#y>-2?Nh33~`<1Tc(OksANn5~)%j=dXS8_<!+7q^3Pm8yK*c
zWoULD1QLC;L#vnBl-Qy=m{xUh0XgY;T6MVRz72=AoLBXDY?%Mw9>BIZ*n*eoU<(s$
zr}YbJD+{1*6J{sPMYQ0RpH=mE29`~hEm+i(oXx)(6P~AtH<9jzBW{yd)Ka?#X^`D#
zzqN!w2&0ays13FbRy~Hbb`Q!XI|n6`BB~U*<{yfgY=*05SX&O@%BmkDrxK(83-Hg1
z3uKO2qh+!6tP1CAQ#X<F5ram4#S%;5^oS4>-NpeyS31=J{%u$1)a0hfwM9B`I_y;2
zr!u}x?vlA$x-2<7a#4=rnYO9{vc_k?VMkBa71ktOR1C8<fnGH)q<w_Utya(;s%~nM
z8#e6ns)Vy9&R<0Vc<v=rUvxccw^vhOu#vYwqGb7P1<r|RN1BWZ<G4m+GS*f%u}jMd
z8x8>2;k}xS!mG!MsP?2NQH^Q}Nr}aNou&llVrY&@c8y%PdlV*P7nP<6d~`*#x^IzY
z={ntYX7-gK{%hNcb53w>t8Rg6`wC4-anZ||i2L!6A9u38IA1K&bkb++3-GP`WjUwy
z%K~eC5E@viqv<$3(cUE6KuFH$^hnT5OVVds-&&8t4J55=fa0)}kSKd(vFwLL)^sl*
zOxgc*fSa^^>ho~;Qp*rgB-T5WhcAgWUn}t#2hbg6p7_fIDuT&EhU$=+r*@)2T&!vi
z)ps9vA1+1e$se`Cm;$2qjM1_C4!k!B%KbWZDyrDJ!JQp$bmYd9hky))qD1Pne{|Ur
z%ipF9&{K+}6=_yN1oK#fQ3)@a^^ymTV8L#lz`{m~V#Sa*i4D{i#PBi&!?9g)zn{4I
z4se$tKw0GA*rIArwfHu{xueIUi-8PXk<XhSMZWv-OoE@HYe0<pzOoO}vOIQeRp17{
z;Xk>vmeB`k@FGBHEo#ZkRpih}w?#%0sP82g*greB9aS<O5J$tIoyV;6L(@&NSI%_%
zIY0r=4x6V(N}|E8G{K`bLqlp0frJ(Ps~BHEwiR1wZOgMCi}z!8e(~ETCUjEJNI;FV
zEnT5m+|#CUd!?<hUUd$;aNv?R1o_Vxq6Z-bjO+@{od*kTl-nBXO^z>;6b;4a5m`8u
zdbaTO2}d@aEF7FD6OPH!p|G;ToiB^+ky_zQ3*JV$3ae3ty%PB*)~iFNnHrHODK?j3
z!sgy=<De$R8^jJWx=sda3ZHw!M;uZzJbrXHm_!ku+v2yU7^9`zjQ^Qp;lsOwC>*T*
zanH&NzrTNc5g^Ap3$=XHqe~)XA+~6`lBC5Hfz=4nrpV^jhT*IQ(ccJ?Wu&LKO5K=(
z(@a|Tc~JSA7}EwEaS!gi<8J-){#`#t;ylFNbQGC^IHy!Ewe&I&=gYXBwtiV@YyXnc
zzOZRuR#>&qzDz=6<>%*=>}QmRU(8_rqPzc`E_+$83ix_rMRPJPk0j4M3l;7&+wq0F
zGg$xeVmhWfU6_LY9NKWOy2ru=&zKW;KYa{8?!5s2{CJMJ#lT!<jMQ^rksy(n413yk
zQ0@#KAwcOT-~PW@=b6#7KYvScxbv=dt++iPWXT&Cr;tsaho_g8nBDWQAwkbc!7n``
zVrRF4P(FDLD(rC9<Swlm^j(T_4d&-rFVF3Pr}xsFkOn6n5TF<}O?=iW_~OPI!U!WQ
zsg^EF1I;axXt>dnAU*=8-`L>&1Sn&cJxkCcV`F8!H~CRDMp|K&v*H_KkUX|Qff3}!
z6}HYIE9<8g+HERz_HA3?%6m9F<84jLvGahmh(*);Qit>}PF`<HDLhLFn9I=`_el*%
zr5aOi`P5}2?Z6<)!1RDWzV`j@{tqu`)G=8&LLes2hIH}hk2s#1@he3(mds;V9G-)O
zYnt7xQ<>I)X$GHI>-*~e(a+n?SNsmg_W@N~G|P~3KvaRfdY=YxY4Kc9xkX1$YMpJy
zMh$qJaAnUKt&hhai+-Ow)jyA!=#5#vW{GEG@woSydVbVRBf3NA$|inF8l0E*5W3t0
zL@~sOo8C7CN^>0xCM=fO!c9R>k=<C^<E4@}Xlzz!oh%o6?lwE?JXxx2j7sbZL`&Ro
zkr4aZt^neE*I&+{@=zOga68nG+YD5iB8SvGinM~^-pQjY4S*-2z<-LGQ2L@AdGY*<
z=kWY}QI47YHa1ShjoI;#GSd%EZ`GoaRA+crDO*D}IYnEmiW<R-@;YOfb$SkEFS9bQ
z`PMpWqC+aXrKGC?8}R9j#%{VxeZ5K_J-(z2<Mp@!k7o$xLYDQPT0=<5{<&40P7zdH
zUrdm-=_pdrx&m+TvoLnXSv|9tZb}maU};^v(E|Dntr(?<p@Em^G9V_g%#5`%>OF1{
zh&HsNAf27TFT$IZKaFKQ9JtNt&13R)3jRSMATq}V8Mj(yW~#EBid?!=89qu`$CIZ^
z{bKGKBY`G32GV98HV3^RrkMp>AFwH^);5+`GI*dxd|T>ZB11#cZ>=;XB5~?a)U{Y-
z_eoI@JTX1XuDmbNL#Va7Mduo(ks?=ij1OpPj)P^$);xdRBm@<)?eLXog_B@Hb-?7?
zIIR_k)5g$rHuH}qE%DuMk3D~RDZ}1wr;5irgix}uopLm#znM?;Z|2&|&{7!nmojGr
zWk%+A)lM@*bDn3eUE-?mUG(*OZi=QI${qG)|8lD(`9lf#7t6MTXZ2wHT|DpPd2Zy4
z$!H1DX8P+bQ7_|2@?)OUFJ!iA2l$0w&OEA@jJNk+goyfBs^Iqp4Ot~h{KB#|HYI&w
z*}|y4?_{+v7|7av*i(egW<KO1o~17F{v@*`Zh0@g&1J<U_1G5`ah3VbZ?nkM(mQcO
z1`=9Dk6QaXl!7r(z%_W6WN!ce8`(&tcYd4SM`oG56D9iIWa5m)G4X%B4+O8ivy-mz
zPw5-$XAe1DBg%jVCq_(pmm*F{n69BhOyBQ+<^ImE)3CX}ck{*Cb`dw@n}|=`cQP_e
zwBTJVL|gPE28Jvb`JLaMM9Z!3;j|0*K7PltdD1xk0nfAp&hK6T``r=P9lMZsQNbb4
zCW^mV89FyUe)#jxKkq(<&-XvPIJ^C>I@bZRUjnCEZXwz7Snx~SzOl~1$FHmYS!tY{
zPMvZ&`?r!@p^8(#>Xj>}DIH8M9DFGod^&c2Va|Nj$68`f;DDkL2-r4h)8KbZ41L>k
zEUT36?&NIz^QbqnGE^9rujK)_La*w4ajZp8zhWI>RO+Do3g>OtSGig5B4`i|ywD&U
zlc6edB=yT-;cohRCE(mmtegFBNlg?TW?Gk~OZsMR+w|p{Xz<?n;KHlEUgfLg4#Pl)
zIUUQ=B<JXU`0j_x0rKm?0lr~M*{^8K+ImSR(p_bpVBWcNzow^0mh!do?^?Z5e91cN
z9+^+m+hEB@{?npUt06;-w~2$nAbcPHExI-(9C$E0nNCpoi32<d<Z&eeU(8kSoPU%Q
z@>QknBJQK*=Q~TOlY26CES~^<cmKm5{(S$37ef4W-vGN}?ZR|K^Sf;Wo+eyG=C%zh
zq6I}R=a%P>hnhH$ea0O}w3|YV9mJ{5abC$~*mbx{%juUJcjarV5g%=Thfw8IgoxQv
zC;1Q)>2WAt-`6iH9zP8dN+w27!dfZtXK`0*oxdLBf2P-C2O1G8zHSXwKX>A9_u^_X
zbb<&<DGaoYR1Ov~NT^3ZkwZ+J5!0d!o;xmND4shlp22hP*p)Lr$}mDG_t_+Q@S7h|
zq{!l0p{ak476nZBIMW1WSY>eONJajkP-@L~@`Hk!6Wgxc$1G`~-@Iu0W--FwwR!{R
zMQt2eZs&nSs)Ih*NZ}Mb`}Li`Y3To_!ddzuGvaOt6MGANj(F!NAuA__VU<7zoaxxc
z#1;x1xw<2V6q+iQ6F5c4R9j7r;78f#j{a#V=rZtrtz{W5o`U(20g_o`%DT=}E4y5!
z>t%TV!OA$}VIw3wPwXgZ%`(Yy?-?a_s#1wq{m^TAB77Pe=o*J-$>jF;ZSmam{o=WI
z7`~?^D}ur;HJ4hXq7^+Fl=_fY6`PVPaCnUFlCe`t%FtzoT*l!2aDG}c0fBj__>8UY
zZ(|u<M|S5QIn0NlfFwdN+gGl2U$$9ZC_MH4tl9=SQNmydzIL@Gp~Z(@bhoh;c7kxJ
zGyuPr!jE3$LJMzAHYb_SF=F2FaDg=-R+Qq{G5Zd`&>$ExQ5$3Ikls}jL(PUyP_pPY
zEn@Ip<fzix)5^UM7IS&OEKW9{0GMwxG2w9CN&VVse8UN`eU{a8Nhe#57%kkBO%KJ#
zJ?Dv8hX}oQ*E^Bc$q3qYf_5G0F<jHYhg)j7KJC_XhxPwA<D~<!^X>YX&oegQqiF+0
zanojft@QI~FYMMYgh!W4J&<Yl=eFx>Oh7!js^xWs1?qa6(nVhFvZlgsdiQ9?>y@fT
zeN#;g_T`$sS3t*+Ue&{Rqb^BW`<2RKLe%m~UAf!a>WVR40byM+L%&{?_4SQaT?XM1
zZ+`wW%ExENyXMEc{N7blLqXv~;RV?FmSVCy&x$ARp{8BR6^eN<b(1JfDG?FOV`(uZ
z=4YnBv7o}?kuN+#t0hv{n@g|69Xt9|g=%zvniV0r<OZnyP!UtTWJT`glL%QLW!-+;
zm?jABHq4qB5*>n3==M46Qn+)2(AeUUuklniM$&k3<(6IPfy26t{{qcrQ6@9<-2>dm
zTX^lF5aT9Mj1eMKdK8k6Yk0(!MWha30gGs0OY~h$bHEl6(;Pl!BGYNMdr724rPKTs
zVYC#wWZPRAp9ZY>iO)|@<)Rg%_MmP7l^im$f!&kz7@;ye0!65((@+m98pcSJNJ5^C
z5LdmATScQq#^J15E<Unz6Zrm$qX%>6HPx6dZ}jdEQ<p??y{QH<?o{GTaPWq`ul1ms
z+;s16^E|#DpXGGXndN7hT2wdVs?+@i8J|0WQ~-cLp@CAp2FiZ%@al%)@;+92dP>g2
z*T{4)ZzVY$^5wbK|NQa$`*Ss?^<zIo-_Ngl24@Mr!eSZqS40K)o^83W511cX=e!=Q
zpZ<dDGY;CIl#y}}ad>*Y$>u|3>y<XV;^RG)`YU>Ct40bJbsMO9H-A$Y-N-Le$RZ<_
z8|n${68Ut3BlByj{B-~(yzjrXMv&}}_dmOLd+VoD*lD=+xdO@Zq&4#Rq%ZP9Yvj2a
z5jN0f{SuGpaWZZE7d^k2>y#TrN4-5~nkp|jK42_+2YSKs!@X3!mG|sC_bS(C*F|~4
zArFa}=TRT)!&Phfj_eDUCxiN^`Mk)I{ZS#t*=44p)t17ZwZOUJk6zVmPQztTsnT{F
z?~(jrvB`yF`LyZx6jq|*v{L5$i#FRr$s`^roO9@L10quT2)bZ^$%QRH6ka;*9kVyF
z%bk-HcH*j7<qA9#8(+jj_!&k3s#AMEyCSUz5_tAi0HZ?7SiO;4?iv=KT<+|+_#PK%
z{eN`yJz_7W4d5?5D54jRDr|CRzyH5w8?%K?l>JTKo#U>v|8d!>p<JlRV;AB$Ljlr#
zyr=uG#Gah}e)BxG;>lY5c-r1MiN3oK{e0`}(|xWhIQy-Y?oabcc!+YYkmc-Klx)Ba
zSxD<oNOrW47Kq})g<<tLe!-xwy2mGiyg<S$zP<btY^6AeWe~_<9L%JuTyN9JXea8!
zwS|(YSiz1^{8E@s2G0pZ+cm0bg+dB5qwfi_3|-QNy9`MUNuY)#N`9ovxXX5DFU~xi
zj~6oR@`$2-_UOKiBnx>A-DmKssbdk@s>>F_zFt^Fi!&Uv?&N3uvg7lL5;W`>)kn#i
zG|dgs5+oor8fX13c|FD3o^cXEYatj-b7kowN-QyPhy-WACT?w+<G{Q~;*x^+MQt71
z2z(kaEKt4FHXPp@38*rGsOVuZk9EbMCSMq!yd!h4^UMJG3RMhg))_&<g6~3)B3T(x
zE;()y&GDWkk|_`p-{msl5w(Op1U}B9>bHTB(F(#hMKeodqH$~t2tG#k<DaTPC9=>b
zL-^s-PanS9o@++5tu!NYu2&~Tu1Qb#d46$H$l&RqP<76;o}3GowSJ<J#Np!B6y=K0
zS|F#EYL+(<x1LHk@4n2TH@nTP%c!!S1Uvzj9_|DQp$9v;O;*IVdKTvduzHje1vw$c
ziJQd3eV<*3RgcIIQri2Wpku&Yk<R4iCEnJ`+ls3BWhgw-{U?4she~QgB9k-|xi>yL
z0_)U@IMr1UXLH`8qKCqbA>kxneUFY%5$ruG`X{1m$>D(7Hule8YcW0JzLTuqn!Q?5
zGy<R@?FxcI(~|*oJUWZ76^Ga?81JwSGytZVrdokZwWp9QyIz*E(mL>z8G-)M%D6sg
z@!utOfL7#O$;}vP5$~dQHV(OVn})bZqwg{Y+Sd8SI%RZ*J<?CEgQ`7Lic$|Ss&~|m
zJy`Xf;?KL?3)hX(`_Q3h6FIz1-5sic;NS=)1Kv#WF>8A_d7S{lAgW%>t=8Q|0g|!P
zsT0@AOlI?}<VoaiN-3zjtIJFc=^1V*)^i1Ee0fxRLuR~9ZynpTa<TJLaiC%~E*u)y
z{J5PNf~+0{da$upL`F#T6<yskdMX+B38*}p>K7O}q|KGV51FCbiMPN<Pd+(~Jvp2z
z+le<>SP=hsF)WN4`>=OD`S|#|Pd|KoJePR2XihK;S@R&+W+NtcJiNADG*rV_zX-v?
z+Wmfr3XAS%P0S-vWL9rwVNvaUFI(jce4t!GUnpA>qv#euX5)0mwrWHcZgO~as6<Ma
z&~=nf27MN#*gWua>vgb&k!ewOwPx|w#DW}+Uck>fbWRm4eCcgkynV;-8uL9zpjz|x
zP=n|4etS06q+VErxxS0NqN6=lqIk|aW~*r4vFpVv2(y9-Cd^0G<0SBSmkDmME-9ny
zja<dFDs|R%PF)@ysz@IhpzE|yJS}nI+GWX}-Qk<~xtu+fEhrnMmf(e&qGhGTkhGO8
zycH60MeMf8Sh_Solh;g7r|$E&eVxzyI<315NJz?%2ugvy`?`2BxB=a#X8^kL#4IVN
zp+Cxt*dK+&AuEY_e09&DU#BpZ%H93r!?~B%sB>u<Mz6}sxZPI#b(QP~xX}WmfQUp=
zHB%_8C|H);Bqe=5*tpyc3eNp};r-OeFU!i?3dxujgKpbWtPgJ2peY;0E-H41&QdiG
zBDPiiEXZB;cYUM!tG@BRef;hZFFNP?e>Eo7K{$h~koe;>^-TB?o5!4S$3s-@UWll+
zP%E!-N2CnoVDF*`krCQ1<VRs9xQI?-U08Ia;G)#c#Zx;9-<Q-h3P$I$+se=$s<v>n
z?vVAgnYCT#E}eHNPXXo9+~Nwm6U40JC!!EYh;nBu?6y;OlmBwnhZ92^cpVqjEgsKE
zIPxBSh(BMdA9NJl1H5?0UA&~u7cvhQmZA*SIh<1O@zqp#I?;C$)AIR=@$=E#YxmuU
zk3T(z7vUb_hmTY9h9%SO2QKQ~z^S}4MEkEUy}6=&)7SkcU#xsXYw!^K2CJq$-%|z@
z{h!{Ioa>wW($_b4<pyWY*5BNdFV~1lYkzY`()tFCC>EmczuSF0i!2pm|4)l7^*s<@
z)_=U5I82AGmFP}c-}RNF)L^}|b*16l9|Iwrw6MFcM|dD^UIOf78I5Ign``Fk%dPnl
zK#`**=NaovJ>rB#JA$4Co?(k&e&)<w5~$?DYKqemq45d7`*{ET%lKbkZIpf^&sXAf
zWal|Vc}&0!1&ngtALXN6%Q}=MC!hWA4m5O*)d5ia6LuvX$8b+@jJG!Ylvt&HuhgS<
z1V}nPTX?1~7rr##wwxuRn^e`12dln4u=}qb!tzyzus$2Yd@_XJi{*uK^w$9iL^Wg$
z8>OHPNS3z^TJ=GTbI1yfeuiy-`R<25o@1MR5Z~qyG!d1cGYosYieb+&6St4Z5-v*K
z9$%Zir_)|@S=`fK2zQuz_W*v~@kwBQZvejwb6<<p$9W|VPG5aS>J$4#{s@3F1FMo2
zN;-*S7>gp?LCkMrUn$;4BIYGmL52I5A=Js5@Q)+>`}7>;&3A!Me>f*b%kPiY=C$AS
z^(~a3*_Hk2;&vL$HIZX|Lme^ox71+~iE>KzhAMKdZ>Zuo(M;+$QCxZv=yAX$jf(A$
z2!DX$6&@10VtRsDv!qU}g>e#U;Sg!z+tOjUV;GkDBJ&7ZpPdg@gHc0FgbT$71PZHF
zP0mGZ3zMmH)1F7Qt0^Y(CZ#x^EwL9WHiJ|ZyWA7==_5%J^Y4H#e?;PO?xEm=a3&}B
zP+*rV@y%YC;@i;@|6q9UZsPcuCo`tZZ%WBPts#qmiNtwgs8`%1w7To(pIvT7MJ~jt
zS)vbEc5X7xvTwfZCxD~SkBCY<6_a6D_ys-q9P&yP3d$N>N+1D9uPl1|`VT&93VsAH
z3t9b)!W%t2@h#NtqIcHXFVC=?Kq&BEviI1kbS8QOitKqCt695hks1pOPbIL&{bHC_
zBz3^D`HI!S{JKi2!<s`y&UegQkiIL0yr{kvuEwrMRK(0-jCBvcHgS(7x&Bkoj|~#M
zcf05p{^N@Y`Q2mK#T5&d((V}R<>C>6QF+M-CN;@ArAeLsh2zt(|NHig6FQ~u2yqA1
z4dGxU!5=uMy$pD^F$X8eG;5cH^}24d51N*qL=}{)N(@m9qG-yyQCt~(QEN+_bhnCI
zbiK`0`)yipY`uK$s&>iF1lMHgHk!HXiMEM~_tT^cB?yQI!)-fzyU;;;tAu(hroC&G
z(%V3<)G)Ck5DvKDw*Ye&l=-g7XJQ8M5lb%;38*>lxMPth9c%+k$af@+r(LL_xqz{#
znN+Tn*WxP=wU9}CB#i@9o`mR}dZ<Kour9+zkt9?sbT$I22viXYKdFM$JmfvTkWC9&
z-SdM`jRf$LIvx~-CgT9DBseHbY0{@_8>41R5*bRsQ;`UAhY}-+qz45BArj4;LaV$O
z6pdy^*1a-<pty)&4Cz;-E>xK*T>E5|*xB5@&`er9;CR6DR*AHBM}GR^eUlOca9!;t
z#(G>3G=d&t;({!L&7n#JqZObiF^zKAy(K1UL85k$+@)U~TB}b9tELk(-czXqRx%P6
z7*!~_+cZ+>K-VwuMe`8Uu%K3~YH{&|S_XvQcMS<tEDfVwi`oUH%mfqO(=1QXEJ=Pv
zHZC+K&@81mEk~GKFB@_Zl2tODWDI-(7D+<;AzIlJ#%POEpAZq=rBT1AaN^uu2%C=7
zsS01Ch%6xnB*MP$vH4PFe#{`XWzcv6+1`b1o}e6Ghn~k_Uv0mxbqc)6<v$g9^7v0c
zp8oy`eKILud4Blxm*0Kb>xf=bkNNmD)nk&zv+Vo3g<&uQiI;<3Mp9x*A|V#d*VzhK
zIKGkc^K}n83UWv^V}KN^5jvxAl=5SvTU*g>bZjPbd&jcd=s|LAjRIkwOgrWxpVMCN
zN<+N7GLQRdlAO^eiS$0GVvzvC_b8{HDjgW)h0NMTI;N5%C9LSWIdSjm9lnxwr4*Fw
zbIGV2G;^hGS(Rz6hI#-8)CW<;QX}FB!w-4PGhfST9oW|dw5<-lLMTqy08>raml7Pr
zfhO~oeUucu4*jMx{(IrgcF=-I@20rhIu`~aSEE}wO__2&p0GehCFZDW0|Th!s%*tn
zlmft0BLqPzRdc?zhGz-WX2wPah3S$0=?+aYdNZg{teh2qq7wxO0Ay4@=a~v5X86?8
zHElEZPT%=c{pda*aYeT$WP-}L(pINabq`)xo@NYLL=L2WqMi@dgC*3NK?C5W;F%Jp
z@4KW`4pL+PoAC-X83RA8*~J^EQ-M%xwNl`4!Ijs})jjrrJWSu;@9zJ29(6W-kfh2?
zf_E#@8Pd!EM5%_hrMt=3j3~uI$H&;g9Oqq$R$yrKK6uV9n31W8%{Q1+2w;{<1wx7W
zhB_A2!I6rwe)@XWaHs%~DA!3NXy$Tk^%l%!<_R4$$V8#gtMW+#14~TFKt?hIa*~0w
zsP}(S|654))ta4gx1H~k-m~=THE<%2cN5WX2Zz(=&^SL7YUXlHrF8e?h2g3~D+>0q
zXT5uyC<d3lj*GfnFF)qa?CIplw2=EV4cY>TxqMc))X$Jr*3i(ujvdZw28NCUdJpIv
z(2D@wK*gsK4s(d7EyEmM#`!k!vF%eQd}r`U3nPQWVdyx*C>b`Y&WEbgteSJi&Xxo2
zEq%UO)V!zRZL1n3oYpcIo>KGO>*z7-2(uDx+{*XVdm4Gf%BtQk^nQ>5EIM{97T3P)
z+u3=&U&wfX(C!Gv090SC*oWq|**S-JIS%?nf+JE~$D0^=0CG><*IOl~LiZ6p?`*t9
zdM4!7I?Ls1@yFS9Z34PKJy<Jq${wfiGAH$`sNsvl>+5F&1CQvqog?e$3f>-9B}O(J
zM%GPy7)EI!YLh;!^55T|dw*yjR;gO}xR%7eH)(jO6y<<HtM7VKb*>Z1sZ>A2eGX}8
zZ4r=zZ;(~@hwz-$%Z2Bkt>Vsfd9QtZ;UcU6wkdDD`gKyromxd_)v3NfDrti??%K)L
zAU_Dl_yLcnwwLhM06tWvX){d=U(pfH+`j4or?gOyHzn+w!Ul}QpGLAJe-1Q#6ITwY
znUDu^M$)<7v~;nvi9M)GlmJ90eIT;m2{1)>6wsF=(3ieQyPj6lV6+^gbnHuk{{SY0
z2zu!nldE@#qwJVnU82xwZdxg00AHG(Gq03t0H+xFc()#R-2^XL@}yb45IILrJd7a;
z2FE-=mPH&n$wU2C59;5|psA&um?Vahem`%eu*oQt#&IHoKr-SBkn!f!Q&YmN!U9R5
zU!>E4PT!Uloy&cpTOQ}B8LxLhjvBJZqdzq|dD;daPtTdpj)l)`R&cUPY?FVe2-FJy
z-39di$TunL3mC@Nzm?LpU+I4+{}2S{3iRXd(_hYIP#=<;x~(AOWyd6sBws`^;y#ny
z_20uj|8JF&oELzJj232Hv<oRrfTxPVU9Zf{)ur4zeXu4R-|sTJG?(jiC0AXp(tSIZ
zEpnLx4KBf=Pjgdhx()7K7L~AxwNHpu*!_%HTxUDoW(l7-2XAtzer98x8g9_fBqo@6
zt5@VFG2$ru+S?KLS|HLE&s0l^rHIt9751lOatCSL;SYPxYtlNm7sy(Wa&`;igeUD1
z(`QyKG|t@c*uCA`a)iikg6<X4<2V4<$LKhW?&_eL#14Ijghi3@IO7Gkw3T*qn<{28
zeTk!Jb>6c*=fOOlIgMsgf7<@>MX<0TUrOTEbKu8Uh>Pe;y+bU52bflONGNJS3R#Ia
z%r?R4yGo#4m#!epiNM3!k=DA&t9v9Px(Q@;YSIlKXx@_A5{@`)Xo;m-$tE{tQp4b^
z-d(R}Y$>>xfJ$GN?A*`-RCL)Pc$fD!L+CT3=ma_#tIiWyt~n*7>KiFX6Ye*`F#u?M
zCC^h=O*}JER@XaN*VYM@pG$f*^LWK#Rw51dCqXpkH$YUj0cFObE^_D(D^yZzOEdjC
zP!;ZxitQT@h1{0Iebv7b#hGX1b6OdBm$H4@M}iMO-v97%_tG7m2YG;P(-)K1xm_Si
zB+hQ{jKeEPgeJ^<fiFGnPidbQ`g6Gcx{`h2I(9*0h!dIZJ{hH@PA(m8)~svt>kdt+
zQN#Nrrg2h!6&om4$?k>k-mezCRO+Ts^0c5rbxnTVi!D1;9FfgzQ+fjGoHB3@+dafh
zL1`W}hCM__-n7UwJh~h*;tEG4!1o0~>UdA-uHC<OIwEXRj~ZFzMA#K-Bm#OU&Gz4K
z8T=VLxkQg<rSwpD2JJRxR#t@Oisn4kLpT&^%cp{iS1mxS(s_p;BdFno6UeHc?oGQD
zz)ZNlM&Q2Nv3d+vnVpUXKg0Vd2iim}XB`{(&Dr^HdCYqs$1bQ6N`<M#c<H=mLBV5?
zW)=N*VR+8_+z2^b?|v5IWztd%F;=6{+0;~lzgAF{N-4#L4zwTvzl~)h`}+6O&wI}Z
z>C|?A^39?YMN;ltglhsbeRhkd#c&fXcM{j5;U>7cL;U0D7wBog)Pms$N=}c93aWP1
zW|VSb&tA^r<!Dp#cAPg+@=vc~PSl@p0rca;efaR{FE2t1#Ud$VY)66oo%MTBeZBx3
z9SEL1gx4gAokvoOV@f}qd+Xb(IN&+D7sJ!<wOgiT-M<Nh9l_sxVJ;}rHhNYbh|inl
zX7`~Q`n;E#kxm~@4uba3NO`#PF5hVW9BOaLW7{-*jb8XTrf2m$=^DR;4568Kswljy
z$oPRaTgFY#i;tNEk)Y(AeQXyB&N`Vo-<;%Bl$<690;0{%iouz(WFu*Qznp(hZ&R`d
zILY~Ww+dzt3fQ>Q=7P{5J+#QLxailjqHJaPq_i75hkBtSU;r`pa`EUgcFQo1%8X_2
z@0W1$Qbfq!<9`EQil|Ket0GLrss6>@eog$RH@V?v>E*}hZ4RxY*+8t<5i|Av4`8PC
z^($hg_4SJ|(^gy^YcQ{(=AVCjxmZdbs>0=kB(IlNkMsJa_vK$~*~}pd)SMucbkZO=
zN(N!xGe912G6-Eap=dw%IBnRV(HO6JuSsO9tjfM7ru=`U{Pp<w6<5kX|9E+wO#kU9
z2~?|nRZRK+68Y;<@+&Qo-+%h^4?k=Beqk9`*BK*W(OIwBmkvm^FU1f<@2Q7sUx6}c
z{}jq#x<tH5wti{%_u1dje|M4grt-gh2L8<r8{gFYRO-v(FOJP6G`i^5yLWQ~Du&~s
z+837p2Ao6p_KgJG8(<<dSl);RsnjoR3eG<YVa?xyJ8x)<quKhOI?2w_2#W1|EsFpA
zwdg-=_ifJ!LOy%LkiP|!{>N4!D6C6sQ2GBF^zU4QzS{H}UuAkdBW@=OO+x4eEAhj>
zhLw11#See}{^L*IZ7*~BYMM(Scq}^><ZfR$3J>Fp5#r(clsJD1XB$3#-cfaaPOs9^
z$<mE5un7`$-^S9${Ja$S>9MiXNUR|#Pl}BAXe@+PGJ=SIx_sXaYFk(DLP)D#Q!u($
z1$|YM#VHR>Aq2WKC~P;ROR-JwyDX|*iB(RJj29lO8dYEhuhpd^X_2yLoau<))Ldch
zC;5kS_0m9iWNIZ8JlaU>*wf%5yz4!Zp&5Z;p9uWae?9Y`kixBouR#g_Q+Q+-k@NCV
zw*EJ;{5*K-!*sp=Rj@pl^v|4-9O+hhsIu3mP<xs}ahyz{{O_1T?aCC2F@5nA+UNhG
zDRhpbmw10QgPjwSsr3IMQ2r}dqyN4Q<~P`^WtlS6@oOo8f1EnGK>T0A%gZY#5d!{$
z`ynsY7VH04&42b(|F^7~td{4buOua@4QGMxyXmxVILfGTlLqZ;8R_>Fe#<Cb2`FEw
zau1nxxZ}*}2t{#ZWO(Gt(Ldgwxv(w2Q#AWh(U0+%8HD8_Kod@ur-L~-o*A8?o*}g5
zxRQWCMUi@Bo?9!tR2&jj#fK{L`BKTAM!-mV<_VssG46p-NETu@G+r6FSyAXRYKsg6
zR>^~5CsD9zle0l|Zxl41b9Lp`yN>jj`)^`Pd}Vz<?6RXK$?1aoBf30TO%>%%S>9{=
z788F9ErZLwOI4~dPrc-zl2L+ziHuSTE$ZGZQVBh(h8j*@(Q8wLBpE{%T3cnEt>D?K
z0``JHgLLemU?%Po@XF|Irz&^X(r-6|yI;V_hJ}W}J1RlM=x0KG1@Aw651TuAl1`e(
z8Xtq=qtVd>BOUpXim-(u)}}cmyS(P6at>2??TIGmai2Qz(fV?@JJuU<znR$Pe1biW
zZ9j$?g!5eEDURkY4~fr)?I4OTwkd^(Xu`ieR@9{^W*0^lwpdHtZzAqsl5AQ=Ntk_k
zDD2V;ogPh~Y6-$Ox4KCvT9&2|Y7GyEm|CMV<a%_Z2x9aZrc6gg?KCo_jM$5jQfLfC
zZja-jw1%QsB9-j3tsYBobeZbLfu5_siuKohcXZ}wZm=$wDQe2yT*_gB(1)$!#4-*{
z%fcE}yti$jnigWl70pmIJapy?nocQcoU07(tt>~lSxZ~XfF1+f#+Zbz5s7JK#6mI+
zSjED#Bd#I*8@i1MVDRXgJYC!(vPCeOEWwBhUb(dbzp8hX_3!&K5owxT+tZT;Yi)Gn
zR<;uo_^jkrUni=4#0Txe$L$}_U32#leOdKb`h!CbT}yn;5TH44sDm}&eBTBtR(_qN
zKw%D6R3Y^|`gLxHNVGJu;>MDkvaZ^k`jE9iwgxk}l?%IVN_L6&Wb7U5gRS?{lh!M0
zGX!Gtd@&HjU3d#PV<{}l49j!z93gYzOy970)%%lIa!%d-liT-YEQ$3ge{<G0z=!?m
z3z?d^8AQHi?-){Y!-utE`3{qfP<vij2bfZh+h@K|9Co^UZ98DtB<Mv8nemabaE4ZB
z*sv$r&062FM5f4f-?~CfUtOPwxx&uq@s$>?QiQe0wY>HPC9<-ecA9_6u$#)$`>IvO
zSakI)NA>2l2Q6>$v<UVyuf?}xTxOm-m5)xMmgowboU-A2DO^Q;Fyb-qd+kQqY0J!I
zwU;eaBas0KBQth_=m@s*JY{l3l!DnCLl*_=n+RJBb~Qc*c1t`>WBb~AwtZ5$%EAYp
zY0(G!I@Eb$2=@D&*bH>_4lBRHY2_Ve(4q(Peh^dA&W#>x#%@@9D87VM#+nwtc`5X@
zCTCvVSgbo~k%nYKX^L3<I_qQ|mpxa+G_xwUX53<nCY}Y<B;5ft^qjU}g_)tlJCuO(
zvD3_KeBs#^zSwE|uHa_Rx3-!qdEVrTg*_XoB9E1gRPYUJOvu!XW-+!}B19BGFY#av
zwUNyR8$PQwB!JvNuU!)>WE{q01!e>2$97v+2r^NthmHZDu5c0FC-2_u*z(k|g%8NJ
z_y<Pi`as}X1g>jvT?E%#4noXi22f+*L-uUMGUcazFYv9MZC_(oV;40xLB9#S%Si)H
z+IncJXVR!GC*86hT6!?ly9Jq^Ia1{Ojnt|8;<wp!lml>ZcW2jP`NeuAmLK$B+%+_W
z<^8arVJZ#T{Uf@uid=}%lg7HR!CoN`cch#Xj0H2Yb?%Dj-65Sv)v3brR_C}#!5*fx
zs<fceWQWL%>EqY5pKTc5T>&5Gvg_}`riH-3xq5f!+ctq|eSr>`<0KrhMd)%e1LkCz
z<5U?|<#8Nbj`ON>q}|h7I`5S@mn4yxeJfpPorn`uPA8SQ`0`btJ+;jFvd3X42Pm@{
zqnEYho^c*!@!QF&6SV5g^(kn5+E^-}b7JxuTI~R3bZLAP^xxSmSa(tL@U?Hz+9%`#
zbk*0%MN8mL4lcE(&h`9<A6U?zOIG8PmPel+(BfG@^T)Gj=*z3o(D5=Tmy1V|_3V?!
zlgwuU)Xypkl;(TYS1JvsVe+f#rJcS0mJM?7v6hePMSIJDdrFuTt?gH~Z#HBd{xF{Q
zo9GMp75geBpMW5)UG1(bw_jKKd2=1XcAtLUKAbyi`<*M|x5Ug+<VAu>F_)Qwqikit
z(iOus%LFLVuz*WW<C<?X<OX)E5#d?n_^5*bC-l;=UX57}`$wlt)UZqkM8i<WgSAvy
z+DETK3>SIr;*=`^Vv8ORx+ZOWtIi@V$N*$9)62p1><MO8?i53`=cH%@eVJNdvWCdA
z^bu`aM6y8VCbxOp(!Vm~lMgSr;#`=*1;7j9+T*Scra$bGzGX{ARG9UV6&a&YnJC;H
z>rC?S>DxR=%iKukXay(coJo-NB9AC(XE;)0wb(`gQ9!Q0?aQz*)bOBob6Th#4{7Xb
zk{OC^1p<v&6*FK!w?tT6!;kx8o_c<||7+M@aN74fNl_8IT(zM>*nT}ApL7ne){-Rr
zdg#8#=kfZ^g7m$NwMc3C5HeUa0ygV(zmpg`6kQ7jm`c4CTv6+c7a0zv>Hk!?;60}_
z+>9c>&IOK4C;d3n947s`=n08K&f_b$UK`ii@p#tbGiaT4=n&53YXNuE@YP0&V4z>G
zs5rh-Ct3Rb^ymAZ&RzGc+dd;Zf?n1)*lqd&x8!}w{n3|n#qVfI7hQF^gL&SZ#eQV=
zc{{@I_t9_8=bsg=!~5UZ0^Y25>jS2;`@hpKfBN)Ek;czC7Ik!e4K;zz1Gk;8wSJYM
za?wS$on1-2!w;SKo7lS*EzN87>+4_53YL=!7A~Gr{&}R$x0Wd!JLOryqU-Bl?M}<r
z>ytc6p0;1kG|TR!^jE*xokHiS0ZPqQ1aEsu6s)$Nz~<F&@X(vESX~JL;}+@0%ce6N
zOZf^184|GVLN{@#6Ki}?gjn3f#&2|t?aRDP>U8y(E9oiFS$Q&?Hxe)iAr|#ckIPBe
zv&;tEyVw_aY0I1Fc9mrX?Zqnfs8XxJizyx!CpA!Ar1{_+p1M@6`)y{k%a{q4lD4xw
z80pW7Y0@1lwD0r&_-MJW>G|{h_dmYakK}bbYdSobiM@A|lf3ojZZcCuD4;;N)lb3@
zhekEAd)lv`VO5H#Y%quDI_thgkIAG%PFe=LI17$zb&Iqa@al?=&Tx%e<7w+$t-)7s
ze4JE-l}(DmDP$lL_GONgN_n_i<7DL`kOo3@&bI8<_(o4|SIfC$`e?QHO{tXXdmEqk
zBn5@gSMTF;(nn9fwoB%8H7v08t08l9y0%IBz@2lT*46d+3cSpy;CBOOee$B$bRL(J
z7sW}0sdO;*7wp?27YyJyL{SdluN6M9LtM<1DT*oX@~bAZdCP+jamy-J-<E9d^`)$0
zahSdce8IUcsN6+Wg$OrXvXp`k9C_?jdjjpb%{|R7WZ2#6mk0BNMK57XB{f2!9%nEE
zoN)ichp_$W<Ky<@4=+?6>llCv#*WE(ENtfB6eQsh2e=7WhkJ~5PITm#2|-wC^T)h>
zo1(-ilV6n4$I%bmENNfccZk?al*t{sT<m}LOPy__F*l=RIzBbD-oGz^i?hc7?;}FY
z4WPgvUi3PP#ypl$q96O$(<BEr|8eTDnP~QjM%0xRrRXFNksM;B%{pcK%ut2~&F;x)
zKIuDBFscu9zjBS))0jyoG5d-lL^bVUidvAFi?GX51m?&l8ExJdy4yK`kRmd3ghA@h
z7M|_=^F^O~sSBkl6e*C4s>M9aK%yL`HUxVq5@oaQyQp(%m5Ch`#I1^x=N8oOt9FV*
zGJ15g%qsOh`{{*`+HJ-k0}`LMtImxnNWA#~cUzQ8K7HY-;!eMGjzhSrdV=cNO#!T0
zwWzg0t=&>6uC(yLRto^`Q9TRl*%Qt`-0yyWPN1w^xGtv;nmN-^M`wiPz3A#<VZVN{
zASUjWrQ&XV-rxgOl~3i{TQOe<u2zaKT=?vUF*O^RI9Ykq<3_G61|8}Wp;-d$iH%*J
zce;&3uj|maaA%9qB`0C138fM<*n3}&-B<tDApjT<C_^CV!(jm43k=pbz0wvNMcWYD
zd-FJvFxLu6ICWXLAY2l^t}zt~Ybj?({H63oKg?HF;}Dtv$$$&Xv0dNgne6V8MskK&
zC7lMd<c@5o2Iim!(qds%T-jQ-k&W}X2&bo2SgZiIMv9U;v$*fbNoN{FA_U2jOjOO#
zbVGHcsOX5Y0Y~EG(4`C-k?|fjq*vnLNkh}PPZ}{vg&}L&MDrkp9KAaeKyg+36B2#;
zefV(y`MVEj4OKf`<?sENQGg>Z6N-c^ta8NklqX?%nzq8A$-9o>sZPn8jIIF=*NRT^
z$b2`cRK}pvykt-eV4C{|PIh<|pc^$Ft2>Kd%}d<(8ch+6Q($f+MckeFi@~BV{rz+u
zuArk<Xl)o;UJx=cLQx@CC{C#dh}MyJYUwgtx;AM7FwO%p`b0rm%l%Q!4eE)i58hnw
z^+~B)Z|<VzO8PkSdvlNAbu58K>xfeZD<EX&Z7zaz?GJefmr7#GBG(~x6OqXr9)#W(
z5|s2HiCx*voCJ)_N#Xs{ZE|lTa<Ihe({2y%_BtI6&e);SXYDz>K{$(}A6^B273JnC
zo86Gf>w?jq`fVZ}phMg1dU}Ue5h%=ur={hQ-s|B*pb_yI%I?1VJ$e?_*At9Q(OH5~
zsvjBry3P6M@*`%k(pyLL(3siiw4Ch9>@V*3xDxh2`cQ?;${08jDPIiwMmbw3%I<|P
zD*Wh^)egR5LIhLX?gM<@1{YiSa|tzO5<LgalG`G`FT>P;V{=_184wkC{YxRU*2P!~
zQV;KzT07ktn<>|#uAx(P&=2au-~3d^!nfYN#k>0S;m$=}4w7RXo=s3}%dthzpnWcY
zYLec}?mjp`93K7@sLc%02$UAj?i9k?V_O%O(9+S9;W!<<<Jgf&;LG7S&}CxP#~=3*
zLAHPV%ihuXx%%X4;!#xS@P20;2o=d#@n9BtctFW<I$=+|So8vKNODN3sGl7NXtL~Z
z_v$81OcH3@<gPd|jnynlbq%Uc5kMj2W3CDog`GVoWSH7skGJ8b)$PGSed0~fo2SnG
z{?ktv`&Kk%XoT5kOLn1bbT2OzewREFzxub(zfov;A09#38l{l1epdk--IK^F(7lE3
z1$8gSq%}6b1-yQc`}p(2r^oH5A3vTQQr6%5Vqj3g2#g_pJ(#{bzPEtD8Gmd5`RHxl
ziU-nQ4&G&&qj<bQWK(3DkAAP~GNbthlMpk~u`%S3t}I#3UFEwAYFjBBeKF|na?Cvb
zfAn}?nR8gVB|LF=H}!$Gr6O1$9`(@RETy6fIg841s;FY}>GeX!U0yxj$Y%%-^&tUu
zPL)u8VX!$4IqJi|8Ju>1-#j(y9p1=QP9PYTH%EMj5X)>zP+cL@`$9CAwNb5tjnFk@
z8WHT(nL2N}dnjVlpFv81hDV0*ATXtn#TZ`CTnWEMD@6S!DbLk|*D>zf;i1VD1m2X0
zwcn*ozvIxrKnS?JfqNmJnB7h8(pZrTml5F6>`}O{|DZR_{ha%5`^UeAA3pv3@qEf9
z^V4$_PCUe1@5IpOG<)hCQhc%v51hBl;K1U=hxgQ?%L}icSY)Z1qwLY4bq~CuFvN;u
z;RrbTGP)l%=(wWkb2eVuL#WcV!~GhA&RW2@OBdNf(^1f;-KQU4tdbx8<y`4~E5i1>
zpSHV?=PZiUkI``mtvM7YO7|}dtvRyiBmk=97Tve6XCsZ*%1elH$McJ!PS%StO6q!m
z>0j;<be`eM@6(L3;bEyn(hm=rGiBJ^zr}Zh`=G9#QK8}*BPcs1O^vh?B|ssPFR$q_
zU0Q!*S}*NywqD#WaNdWvWBJJ}Kw)~ct_u3J7^hztiGj-&v7yaCL7r%Exw|jZnfHtS
zW*%ArC(Ion5+Y&WgpI{PC5c(#k@H#XCe+*rZpr(hLB-j-ID75?Q8#=7$W!m{@}ZN*
zeyfxA1dylR&tXJjQ{(A*+@$Va;RbQaye+wDb=wrVT`t-TqueRtFEXxmGc;xBGjE#)
zw%kVZ61I{zYi0$H`UcmbbdtHsnRt<nXq>L%<t17TE=6%RB@d>QxVSArl*04E6TMUF
ztAF%&_ReEDj^qf#uhOA2i&5Sj8MxpuIw=AN-LSKiz|e3h5fo*fUi1A~V=)7QT&{eO
z=&tFmE}P}j{K?yEpJh#O%*a|U@PRQ5V7{}YupD-AUWQX8x5A1jZxyI`(Qwm834}GQ
zVeSkW6}RF8)+Ysv<~_tX6LA-?jt3Q-lf07~F7^hK?Z%r><&FpAB5y2d@g2?>(wCf<
z-^HH5_7<h={Ov}{s-;{GJ+wKEG?L+CM*^DXL{jj1o<M2lDQoZx^+b$~c%|mgvDC{Y
z<i+I@#w;{np#r2}UgQHFak^mAHD9={GV`5OF`GiSflW1CK)Nn+;~N3H6T#A0lm@?L
z2!s|rr%GZebX$F2$6||s)<GC5ymq|)yJU=C;}Bq9r`YDu{J8bPd@ipk-Vl;xW1p`m
zl<nPwXFYWD|MUhf10-5>5cKBu@uI>SioC3Zx7{Bd0Tst7!nF^tmJIRI#iC90g+>{F
z@w^~Yn)mG|_xau1zdTuvgO=k|r8JJCAGzYHQFJn7W9GGswCSpr&uE0?HFC0OYIyQ+
z4HB$ELIS19rEoJOn==1#+uLv0RAgz`5YlN}%a6E=Xa*+|ae0uFv#c0`(kd>p2xihr
zMI~}7(G9a}GmcUw=cdAVrLRqnrgzoKw86Hw$L-DJPYa<zNm7F$MrxA8RfZD>2&}Qp
zccexNjB%2$SsbrIpyuDi5$rkf{3Cs=*93N90{TB`V4&r4O^8<WRT<i-*I!-Jb$g)o
zOvvP!24L+<P0HMaEd7x)jgAwe>5=QV&*<S@FZmqO@BXko0)G7P=ii@ei21c?h>dDO
z=aF!{(cwRkS5I#;y}jsaG9P2~74gI>x<_yFfI+S6jFM7Vf@GhkcH&`5rphKmPimHS
z9K}YS;%(gPl3aKbVyCZnN%TewNMC82I1)Nu>o#pEVC90pmDe1FjCaoIMo7I;#+n6j
z-0jOv9&`6Ewt0N-<O&<R*f*Jd*1k>Z0=j#))*SOX+jK-;!1{C78a4DFFtmJ{tBJYQ
zs7|fAJZV*%o~%`oG(Bn5i2P3=X_p(7A8_yX-10JSGku1;Dcw(k`@lZ^cW*aO77~Lb
z?Ok$mDK)HMkay!g=0cjft|A6+O^=<P=!)16`FJwr4tb$b0>nD{n&*~+C2B8Gio%4A
zs<i3CriyW<v@HkwwqYoGlIDra+Nhda@Yrc>yzI3$p17?|{ouDY^eX1|C_ATCVbOK%
zG+}dr2{IJ22vX0%w#Kf<g_O}}p4U*BKXhI5wWUa67TP6toU2|OF3Q>4yNxBaJh?vi
z(bv@JsJzEnJ^z&j+)?^R7b}Ugk{l<m2C}R5`eIi#s9nELtwc?kS$S;SQR?5TQcvi>
zs^gC6;6J>pj;_ytbd>tD<bF)Q=X6l)`r@8iRTLU*_&!^@)j<1*QGYUazfX;hO1nHE
z0=xc4_tGyqksXhe!!l65doO7wfC^3q?f0qAIRR8%%Q1QX2lvn~Jb#@NK$%VWoqK6z
zs{m8L(SYsu$QR4Pb?&h31KgU}E<|4(_3Fy@EKjyZt9^9ahW+`6$Mwf|fBbZAb`<w}
z{+#=F!xMq4J&n*u{pIjPs*s~<JAIpIk1BoJW=?O50&W{PDJ9N2fVnz;XngnFFO)4M
ztchDQRjugup^Jxy%W0gJbx~QJ%DOAzqB5TsHP)dHs_jzyTn6v4@>($^h1-X2Q@Vue
z*!|OFCh`2`{%_}O_B2dhh>hyxpJC1#3@k-w9)~2#N8xZ+4)vU2S`0S{g(Y8>;^XTK
zCJau1Ycx4ktK8*75StlE3plz(hq+4@w1Y9y+E~pTXq+2tX%rF#rfsymhz{>Yz44|a
z8<xsLop&A(q}5_S=WBvOF^V2d8yNh4%7+X|qUD25Gi9__$C}x^7qCM>cw?{a&5?F?
z@OiCQM>^EJH_;QB`{%Qczf|5Xb0+>d=4eO8b1r_n<=lB<qQrNf*7uK3W!KYd9!Yq3
zw%6of&p1xYetQC|Sh{5i^isS<{%o#wm=z|G^YN+cFJbG68`>{=3d7pbaKig#k7FhP
zvsb6i$AFKTpntRO*oJI2Tj%m%1oeEZ#AvDsi6Km0*IIp=QQ6DW9uR8C71QAqukbhx
zg!bFMtLs_Dv%Uu<{xZW1q7nmR`ujIv1M~Q=@yIi@h4tL<LWpb6^-QrJV)ko`yL3I@
z-lzqxA;&M4_^(6GH1w#Sx0EVO#;c6Madi~#zqLVe?#MRushclSkR9cib^_=g3~^cs
zE(GU)Hy^keJhGCDDC40Ai8Nf|$7a%~;&7Cj*O`zo6kg~3s2jR$EQ(_DT_y#|QnL%w
zBYU-wHc*x}xvbFNG4H{aIJszyC>JDk%0QAmWun3@WU^L@3z;ZDCW43A?4l&M|8D9L
zlLtwgy#0{AlD63UvaM;5eaaS6@rhx@I8=MBl*vL(Ll#HPb7;n8-?pfaR27NlX|JV>
z5up4cjz0!fnSBBm7kD{?9bzG9m!tPyFZWLuJ++{|(yOD({EC-GWq*A8@yZ_Z2irp$
z;+^5xeU~j{&Hvv){+H|^KmPIKJJ#(yPW0}hVS#sPorI;65~rk>X`S@4*c+_rQ(bJ)
z*h_I;iqrHq#Urt<o5B5Sr^p1&1(niqNs3p_#7T{N&5tv<)NI#<2i#}0{R`aPI&C&g
zdVHGA<4N(BXNsrRlbXv9A3pryoQ1wlrs{%k(O02@;ql;CDd*SaRcpe%!Q|zYT|NI?
zF7CB&4}QaK`+pT<euXpY-tThEtC?EFHttP|uTr!RU!7$0Ta2Bz@BD3Q2_J^WyM9$X
z3l^$&ewzlC`;<j1quyf;aEl1#IAv89O{&xUEQ8<vIt-qkybE=Ey*+zKbo^o7Z)t4Q
z`G}9VX>5OIp=P~`nWx)-+V8%ZPxQ<p{q{Yb(9sLH3j=}QZ{H(I>O82K-|Cci@3$bL
z=Nbm<Y(kA;<`4of5z>J{AIK<ZXtTiiU%|)ZO*KALd+K<)o~|;pEJ3D^<I<6v=4#;w
zOsDW$IkdJ(ua^O8aTbgJjhSbj2HAN)JldR@7&#4c4-!yBp)h)>QaXOsb;4XpId_D@
zNhTU*feW{bg)Z4HH=(>R0)|%Dp&Ggr%$*`RXYafzj!02&ic>6m=}KGW)R319j5OB{
zt;gi5NDbjKTpF~OD4e`pbuV@7W>BLZ(MzK`s9Q>XI&1UN1Sd1{DzqfS)-l$Y;?jy}
z5OT<rtUO578yt-7{KJVim4okPpBKiODdR*}cD6jjb^XOazE!#*LAsVr!3U>ar8Ps4
z8PU`b9~NmL(oL>`9Y@yIGH0N)$Q{`__s5GlufI#yv5rI5vG`rqG3H-7>(&lAm%ht5
zMQ+!%Hd4Hbg_OF9?BrHTnGbfrP<)pCX<t;_rASa`&quYu<E5|Gzsy(Hftymirp;19
z<OpHN7Uy^skH;_<_J7fnr!W_LAVp@p?ZMOi@xzCwUW(ToIT!`d;6HT~WZ(9qK)LV!
zeo0bf6e#PXQIO3;-7lSWYloam-({R4xBriV^HGq!p9(k+rq?4ScdC1F<y(e<>Euc|
zY%`XnplKFs4Mxv|&B@xe)hFA`Y8$z4;fP>^A0>ap@%8=){;0G2d<4H0uhKD7tABl2
zV(gr8fdj-aR4&qUUIs*^hFjEd>_if4XglmglC`{o+Ufr7r~BW3`2C;Xp3N?G=!n@c
z38@(8R@9rKFh$>>@tD&xZ+@>Fg!R)Mpc2yalm^nqrLO8UbW2l^JtBQvhXtcY52I8p
z<)wz*S7o2;;hT8)Ch8j!UX<`YM=O9-r?IS0P3DTtQFQAv4xj_mySB|*8ekP7OeSue
zL1J_=keUwsazhI#i`}fc204#in(`kg@W$7rZL`<*&2*hy4YYZI_bW(^a+9)@1rvtI
z#jLCvZ~+QtJAIFON7AS=!oHtobzR%Cs8$0zS|xNU;kE@0EjqA+TL)^8fa2r8FCQYA
z8-|LVjaG_TRzGdXL|@pOg^@W!)L&X~(VAm^hgh${j+6U&0cK}Mx*HAM1p1~s1W9|a
zBZd5iA}$vHLCI~D1A6V0!I3j2K{G@d6k$;j^hsH3gY3-|oB}LXu~llCy2FT+C5%NS
zm?XYFXJ1b{%<N@!N55_I(xH|&F>6rH+azri#S=&7lo@Yb@=D>V4>sEdv<ph{o51hg
zXDT2%z8SES`{Q>ZK$YgCrD<0_Z&P0_G*>EZWJr`%(2&O|I2Bt)4*2IkO`Py;@&4?o
z*-xCMVzvd~x17EZ5h)XNuhal?yV>Mj({7e7R`udpY$z-J(ofQ|RNS_x<ddJ~e|ugi
z!guH8SNMUFmZ$YXe=9>foxH3U+hVuVUMvV>I9vsu#USv?N=L?=bpD|d@w_p*HVlX!
z&im4-FBkgqO=voz*lqUZq4Bh<gB~yWX^UnLn3`vdg~ZZ)!+ezs^H3I2Q5<0GbWp%Y
zjg~a*n7*b1GP{#XNkPWb(KQHw9b|+cK>m)&ZIZcds!1xvT7rveQG&v^aa&a{gWEj%
zWY7(9y?i4gH=3i>8%9D(HWadE#2)sxNvKClJV@RuLj>-e20|!b7GWTiRp$Jdmdt7N
zCN}^O2Nrm}1o~@9Or3)u+mw+5e1g5a?L?loz22r=h_p73uu;q)CM!$P6c2(^Zef!H
z$Shnl{v!lE@jyL%8S7mFn)~-fvILfyfKv*Kt^lJ)TZUuPg4UBX8j}1#FfvS!pfB`S
z=uUtzInx@B{>ph#fA!|nUwJI*FsBY%)M1WJTCBqqeqi(F^LqBzV*RzKzlg_e_E&Du
z2yWZpMO9mUdZTUWGYt>7>ozyL%~`j(*==suZ5{4GZooW12((S^RlV2Eyfz0yMXh<4
zj^wMy;#2y~rs|K|<IcITF?aLD;RP4owrvOyLX-8*8WGC;ga0wLH%u8t!L^&O9k03b
zl=Y27xby?AxYGQY39rO41u|_zv*m@0xRPn%VivPmHaiJV(0PNcRZXuklE)yR9g;rF
z{gC-_(YVh_Rjlc_C_T2G?C}S{GQxeqz(;wyxJ|7i6q(mVYuL4B%$mwp3=2{^whO?_
z$@|2tw*Gi`+@AZwT`m6JWbV-7ta8;ZfnD15<P-Jaa=mr1%v<G{krKuE`&vtpl1rJ_
zCmrdX(gI()=t41PfoJ)zH$OLhKa-88$%@E7-T$z8B2Qn7#B<FD+tfVv#;JMity8bb
zk@I!QZui#&yMU7F5L>gI*Q)<KB#+&O&L0w&$FcXb$QPcn(5a&C)7zhZdiVGgl<~(Y
z!kSn=<)*|YBh1dw*7C}`oCl;F1VTs!04nAt@OHi0IHoOO62Tg@>pFvF1fr1SYDLSV
zP<X5C?9r5fLxAk2tqP$~3d9xLjx=MCRIzB-YLX6{lrhHx5}+d1i~wb5pcOY{I>;!3
zM*4=1lL6!!)~tF=fE2uKE==zM*~d*{I^(jIji@deF{cJy^CtUE92Yf80=%Tkz0fE;
zP0&2&9?aXdYu|3$j7@<&I_;#<ds+0EB$}%NT=joXtDnw2$@%-8A+?{hYKI~VNVOx>
zuQa31{jwRgk!bhdL#*>FtIj14Wa)SRiFJA}FaduNZ=?E)=F`<*GM`TIB0NY6@jwNS
zXDos|rd^_7BW^GNCZNr}7<7U+V*jvqb|_ddeFkZv+x;Q=?UOYPH{=qw@W$aND*0xq
zaAmDj(v}zXE*Q&UI@noT3)F3{wcJemM#ado>{roBu<uKtg&D7<%l(K6>`^gbCxBLj
zmBCqAKpY*(Fb;u$q&vB2lO1)ychOffJI%70&8p&{)|i8@%D|E)YgH%<e?#}E*J_+1
z+z)f|1kj#06pNvx*_Kvq6|_7S{SDotBMAyluaSbww3$*^NMTV53q`hz%Dqr-du6e*
zi(FN05RO#vU9NNRtRFtSfBWg}$EP^C44@x(Fmx&2gvj|`>lckq*fSFu&W8c_m|xon
zsI~#CK_MI}jgbXomZAyKGiL=Ka!!DbhioIW3rMhA3`dNcQf)IHm2}YtmmCSr?PnoB
zXGL_e_xUHhC~OTgECw6tX7!nvhdCHvWodANq>g+o1CIv6VJ-~8w&6&xB3C$Ge9Q7Z
z<!r|MYJ9d29*zGw0sJO1<EMi|5~;I+zjNgS%@|LojN>`uc+$w775h6S7PG)xv5W(2
zFYq?>e3Nog<#XeSq(-2aWD9nKi7+oYiQSqZLyCHCV?s7g^Fij>UdTg5w;*(7isR~~
z$z{_>t_j#a${`1K@cFV3uH;<8AnyW+s!!|mD`C78x!w&h0Tpp9dZ~z5zU9d!kDDNH
z#$4gGCE<38&t^uWQJY|2EI1qatQjBA+EKj7)SYoe5kFKaOXZsAItuIj`w@X=_1~ZG
zLQSs-P6_f57O)#{8%?{i!lA|+edhhW*1yT+P<Kr4D`OMo&m=DMj?A1B`soeFI*G=q
zjYumDU^}>yquKHOB)Xf?=P&z)<Cby+D3$x0<1+1Pg0@P)1=@Ghi`_Qf`FiM0v)>BO
zHnnhH&2rH&r^VYBZtgf{1J4GxJ;&3A_A{Z`-j^FXpR{nbUv=3v*=8o|=6&|g<>vOY
zrD;N~p!+sFYnjKZ&QZ?WQ@&D4m;{s5>8l*W*LVH~z*hcNoE~&~LjOU!9AgY;H=!F>
zVf4))hvWRn>RvUDYYy({%_=3F$KWh3cl77KGo>2^{qbDrl7H0r(?M&*BZa8tpau1K
z(0@ADg0diY{l|BmmtlEAVPu`P2lYgjQYdE{g+iT{+k$KM9DHKl{r$!pbn4U)(|Z!#
z{XJywPmnFn1%y017Z28KN0Q?c$K&p7V%H_7)3XU-Yq!TgJf2Tn_c}fYdRQR6XZ+c=
z_*D_cFzi#q?{8c}d>T<wvk}jE>caHN4Xg3V#Kx9g*Zq5O#I-sAnT&;WD8h%ppRpK-
zy3Y6}q!vnLL1giyC>v2@=aAdtq0Co`97}vs;8j7CP}LrYvvoZxu9dc_umf>)bX-mo
zQaQB?t$FX>C=X2lGzW*98AM00QJ5^+<aRQ5d1*Ii)+Tuye5sCU?ES?`rteu9{m)MQ
zvT7xrReyfsSBft3{_DGQb>AQCY+9p^LN!Cbcs5`&FwB8%bi9$jHF@t<=oU+yny>hr
zxqZeD$hIni$*@T%+9D8z;iu#mlBXDpilN0zYNF<0FgA8YlK4-D2{BF2&!foGuFeK>
zj(L}JzlQvg;&t?Vkb-FPZ}=9EL57JesfQmEe6Mh)P{iTv4*MlJRgUMQy5a@TIJe{_
zexKdg`{)hTC2j)Kr2*DQxj;q=IW(aNE?Ma77Ji5U8F5il)3!ZvcJJiWiynYcTiEQz
z>>pg@APiUNI~E<1-Gb^ooa+xn&B!Io$7#Kht(RzhhRkn*-{aEg@tz?ioGQIgOt*Ur
z?BlrVTu8i#RA1`N?FcMrueYP?Lp?%!JyPG0hYVIqav*}Uck|0r$fP5^n3<8vbml_t
z@pPA@93%pwX(o11ECQ;j#^!w7-t3XnqtDyF%eCnKaxF@=TKJ2#cyQON(QQz$knT!g
z<$Bx(teAT8x%dB`Y6z_5Uqw@(gMAO8f`OxP>b5|%xF|att-t&7Xx+QNF2ZoC`yD9m
zl-9h+Pr#tQG+0BcUptgid||CqG#dPR`Y82<^ik?RCkt$6znVP0s-ZYm=35e*9eD=Z
zwT<-kQ}rx^XvT?Vjt(b|WvKfXkE;~FZd}docm2f^P|RO90mV62zkG`OrW|5lUOxML
zLo3<T@P2D-cK_+mTNuZOcfWr)7uU5a+jF|?J6Jc${QKt%KU}B~{f%iYNcdJL*rHDP
zO^SM|Gy?jV2pK~p32z?f6NElD3=Nii&Bh<!{XIfJyN59Rq2}yJgvWz2_w9#wA;f8D
zn!C9++<P`0-1~H0uU%Q>u*9B|<6Y<5i>AnPn3g$8!`Obwrq%X$YLaeELo((<EGWl=
zgT(jrK1y`ta^XDw2!-%q(i?1QabBtfN-3hlrUsX^^^*AO@kHiDO}qgT%7tm6iTL&j
znQcD&<tdf@@P8`%kEXKZ^OvbC^k0(5KD|YQ=+sib{n$*kF6#6i;w2#E&!t|%Q4ZOo
zaDC}jsTUxY?_&0Rbm0}t{sm;`x&PZ1>xQT)PTMjy_LWkl>M!M;^QH9FDj&C&B=?)M
zjbDh~?ADv0IAV)vw5?z}p<Z3v>lDOfNKH~zbKhO+m_H^f)UVoW5BL#E3%Tio(hk>F
z^jVA!H$;5oaaE7I_8_G**tBxn8%xpGspz}GH8g#l^WkH;n5@m&ZLPx0Qd;@ukA3;}
zHAL8$)`tqk<>)i$+dhHU<(FKvhq;aklEQPCAn6%Mkn|iRh|QIM{p23rZWrSxvR0q6
z$XQ&Jr^e8NB)wz|9WOJY9^j++eB1p?d0L^q7?Bg$awZ>T5?@%VyGz#5=KVOOYUm$1
zgZ{x}ttlhGvj}aE1?3{)4b$RTy`ULH2R3=#q-Ms5Q6g3abCxkYSr~YSIT)FFIr55&
z@|uuVmKW)rw#zOn72>9JFA+sYidYn^AisF-hd%$yyB|M2JaL1P%EZ{e*5%#5uyH4T
zi2qElxR_tu>G8#kOp>M3Et{9p;+0;PvMDkgzrEcg`9w^zvq=(=&*0=W-iAH*PW@#x
zVSVPJ!V|9SX?M*I+ZbUCbaa@{49>ZYeXwS7c!+y%uw-NeVT8Cug)O5e6gX+n=H(}t
zz@}UkGLv8u6T)9tbdLFC`Z<}O?n=F;Yzrb$ApPSh=wyll8kHD?{b$#o!$tCiq@I}v
zyT39Io)@G}qX{2oF1ue8i2lp|xx{XB?^h>Pn&bLB-YW~qwK|YJ`;+dssr>6(!dXUn
zDfKqy?~&bw_Ijq%0Rd-=Qh&J&o~aitF#F4uN}qpY7GLc2=c+d)LI1Mse{JJ4{nFj=
zC6cyv>%ndAKmPuSlN;~NH>n)dU=4b0zQL=*bJN_Y-!{)}#|noc{1n-ny{96=@>LY-
zbB#CRH%%yvk2ro#;&Ie(9UL@w=szp{QLkrky;8^I@b2-`Q)>9(cxj8_+t)UT_Gc_^
z|JvE>*C7@gy74+;{=CvXN1FiUz(M#KQ`Z+~h398ZQpqv@GE4av%ZAS45^MgK)!&B5
z+j}%=-=od)L>!asRPL*w`QdC7G3I+Gv0Pjk5~Rxqkn}BDHY1cQo98G4gy2x=5w@5_
z4RO=(u?w3Fghaed1D(CXy(PZKKnhwrEOmhsmHwgbnR`L=u~iw;Rk<gSdlGYl%Wd~V
zIxs?RG0)h&NUIWXP?{?@kOkl)n7lg3d$4&198O|{gxeCd!Ifv|uCRB<ZrfQhI85kV
zV{%zo4zb-NA7tr{%ZAvn36{!IGXLzMvDgyufjokt^1z`hjT#N?51S|9ge~aklBCO<
zi!^~ZD)tiEz%V_Kxd8g2{8=Tr8m1l5smo>eYkHZem>3G;z|&OnIwk+!Z5zp%CUUmS
z2l}iHOr6|>fgrJ2@D;g#p=VqOX0(cT+^zSwCfxxzMs@9I+DzX>TBqT{B_n~D?i^!5
zGaV&UsZ12gm1ti&z?h%4U`V1;p&mwwGJO!5qqd2%aukB0Vk%9rKZRT&FKSsJNR?jC
zRi^IP;_Ib6UPWHUZX6+A=InBnife`95gH4*qf_xb<XC#3;Y+)qs5b&{N<ge+CoRtH
zM5X;Js@X+4CWYr4chYk%6nPqMbnPgHe^Es`rIS|l4H>6dq)I)+`c&T9n_MjmstGNU
zY*gVaZCrjg+ARdvRK!X!;rbSb_(fJnEt!83*%<ch4z1>nT8*z#RjXB6H(9GKhgK_#
zTFp_neUC5u9$)r7?hZZfj(Xf3^|(9qxZ8F4GP^uE4Z3YCDn%O`T*}|yGhDD%>hhLU
z@DuF@Zhwb}yI=$By15>QjIoZAbhB`Dk+<c_Bryg;Em{{y2Wlxzx(=~GI!5pEcy316
zOdBK1SIaiqHa&((6ui{7ehB^&YK#FA$?LO5=tqr^UfKxJ?daZ3x_6@c=X-EZ_b=+f
zwC}-w=s{x=Y`M2)dU0+>Hw?%Coh(`x`E7$A?#+d2kyfklD2E&%16j_RAX!Gy<=ZV?
zH%@jcBto)5-m6G6amnAF@G3H|FxoeVgjX@JZl`ZgR^<&`;!4I90g*+IE7>r^cg_H#
z=sxjFWpt|N^BDm>g{?PS9}ipV9jn~UY`d-#5*sdT=73R?@gX68Yw<toPq&qbefryW
z0}#s*gEy{ir#yD15)#T+)2ujPA>vzWJ|iT35R19&pIYR{oiu;%b_<yjM4u4$j1Xml
zQ6=a>D}7`_76YIncyHCo%3N;p+*FHUyMUDLb@juELGgN6DBYC$y7jRX%rSYEN|QlW
z#o;;YJZwDtDpvH-wtbOIaE0dtjT-Jt9N?w2gC<EB6FGdZF8ny^e6&n}9H00GO!00l
zNROn6Jl7mGlvoXEosUXeO0Bg?%#_kz+5b1)FHGHu)m~{!-rm>RXqn_N$1czp6<qjI
z(mJo(YSKV4GpqGREoo!64FQQ5dl3D~aYcLPngt#f;sHIZcayU{A)Md+d9!&+H*Kdt
ze$-rU-(2<|ndNM*6pxzg=A`lKp<hn>YfVoMNCH|=CpYtk+}IehqZ#^LYlb@b_H_-A
z1hm23=&2hHyirx&Q<Zm`8#TfD-dz=R!=7G+4^G#o+VN7>sw0QBqm8R0DJNd7Fbzx2
z&f3|jonMD3wdz8fs<x$KK31PO_1Q5!EJhFK@>1wQkM{Hc1WAG#%x|(Np=LrNGP>0I
z_PAS3d|LB1^i`u=-oY3xkQI{Pl*i6<bkJCtI=@z;*v??8cr<aUVq)1#2GW(a;i+Bk
z0`yJDQhh>!5BHnjJ*B|$tuxmb>J(#sd8LBSFRax6C&K^qiSSQ<zW=zrKc&R`Uy2fY
ze>o*)|9?XKA0fm~4_o)LJ92z{N{{^|^tju=`E$BlzDSp$`j^vXsQv$h`Cm<#e}4bN
zqx<p0Uw%60!-pze0x_9meum53{Wr2;uQIi<NnE18&bxm+W7VHa1<nKkFms#Sd#*X#
zhn^TF9NdND7>8~4Qh**Cc-F6@uXJ3km4r$kE{j1HVGAXPnV^r_g4V&U#0+Pt_yiiz
zsN!e@p|GUwJ=_~m9@l9gDi_UIs+Sn<%0OSqKq)iO+c760s5O1lx_%8(03|LkN?;V!
z!8z2o!5FIsS{7QriEPZ-U}K4Bo=Y2>>d=JKJn+i@07`gX)9$kN8>ma9*EytxLboP-
z)s`A?8;027OQYR$t_wT(lmQycT_`lN*3-5&z%(<B^~(PDb+1Y9dV~YrN>jPAKx{ML
z;VMmsgpj0Z<-2IPj?L=;kiwd#7)i~S2k}cx%t5i}S58C5v!l7!p;X!8mnb;0(gel}
zn+=!9$$nw<27q3=N&JTClEsAV{B_Equ<)#MCu|6FshTsa5V;?Zp+Eoe=?F5=c_7oi
zAnp0~5f*cQM!tw~WsBD(WRGV9Yk78Hks>Y8!|N=Jsf_)rwAV*tc8b0;l45Ji$TS=x
zD4Kbll37YGWhfAvY|W4RWc$}Mlrd6w&__kTG3Mb;dU)d|P2elKLPAL-8dHOUd}{8P
zf)+670>s#1Px?9}qVU<BQY44az8f!yGsKZDt+-<nzX1$1`e<tqZq(&bU=l^f8}}f*
zaSSf<13@+ex!)Ya55L{rS7#Zy04Z0OXe4veUYcv$#u!4=kAY{sH+M3;HA^^{xpQv7
zc(1vWiQ==18pLZafH6G5M+XBtEJqX1k|@5om?3A{ujcN$SKUr$FlqYw?6|RtGLLpg
z577(9)8b78T{D!$=GFyHd=E0QWFcBh=F;NQxrmlDkTj0A@G*ZlQ_J<;Fk>JP7^4VP
zYFmNh+XhzOw<-4L2FUd#sMMSNvXkPZd_vOMx;`M`(fPLO(0$yM=myyeViENmB|*Ma
zgVKH`v5@L#1MX}@dL2m}@f5oUsE7`0eIqoeb(E?qL}AV?Yv#w8JOw$L&A5%}0s^(G
z*FO=YlES42*<Nil+jy10Qb`w&?G4#VbgFU^O|+D3{(HCHx~{*B_Vc^x|4kl<5^8<}
z7}w4&)Q|^8y^K|dcIp*-mSZ1kPfT0JHGsRv<9IXb71Jkt$?sD+GlRPB{0n0xL~zg0
zTZsO-HNZbZCFz;&x(jmzy?g)maXWg-i8_Tw4@6~KAY6U0ld;=6NQA5FV&TMImfB@`
z8H!AXc3nG*aTL$O78jJ2RuS})SSy&V5e{Gej#v`l<gz|4%nZ*WEsDMho(!ZBuJ01l
ze*5Bg8`WX4njFO?R-D1(dZb8`&E{I{_J!{@M~(HRmR%jXM8im(=hp8&t~XCLq)MBP
z<K&QOEcmU{{bdfB=m@o!EL8)LflTUa{GrW1ikJ)yBBd_8*SdD|rQ@Xq+H{hfSmdg}
z70dOQA!P|dx+3UrABjWghL2q>j=Pe(7LkR@aarr#EU*IPv`vVDG%kUJuEisXh0C?d
z2X%=Gro?Pu{q*U4T;*ii7ez>3aG%!*{S01366u_gu!YF7h!xO{Xeda;+%=3vVUiyu
z1NF{G1A(IBdC^|Fa(~?3#jh?4q0l<{ffg!x`H(y{pvJ%gT`53f&x|Edt7ZvgkY{`o
zCEO~6_**X70zRHt0InxnTK-3{>6!m8Sqna%8lQ@|X+Zb5xqp0k>YzlVU6W+~KvRcR
z9+?fLw&;B=A+bQrUwiFtLY=`1miugk`b;Byp<mcz6}S|9n3O2G16A)4QXsNk<>_lE
zwVT9qTxrS1ISZRFCc2hW*NQkCPI9@iNW_ms%AGWbgdBTpis_~20$%*OayBg6^mKxf
zu(v^3uz$d#3CJthY{#~S>EbG_l<74-h{TGH4~h)HCRyDOG{Tw`XS>ztxv#SU*&!fL
z=4~6_NqA`F%_`J6OBMQp=Ffr38V*#XN@*8v9Gq;te0=-k6Q^?hdpVVR53y*SY3R-8
z&iSy?94wY{GbdxGzT&Ve|8tu}Ap6&8-FYw9k&2I&jm6$LOUyN!Idl&)<C98&to)Ko
zGS?PgAR)1rn+4_QLf@8$T^g=nm{+)43JWQa1FvbuvQ&NR8fockE2X29ZXf!)nhb6-
z>I`Z#p(3jZqW1Q_QYHTQs8cDCL?csC%+R=THIq%_;t~53d~|Kd#xB`Ih!0~f)gbEZ
z<(g7+q;?Y$0F*#qnMzEcY|AX84fYSe|NZ8z`>@^pooxuCH<P5E<)3lH8}^fR=lnSj
zeoTUxZ^DT4Z>k1+&Uk8v5#2r#1&zPS!}F5ll!u*wqqtB2=CgCQBjw~a>OS9i9?bUy
z_2=hXcX+=4cK00*=6g5a!wyw?*aYEHdkxZe5CUQ^ec>0df*l1pnPb*l*orSG%F~jZ
zw)#&`8@-%2dYuhk{I0R<rH0-$ay@R~qsD!2Xq_}fKQu#9Kqa;}JUegjeyC$Qt)ZoH
zUcFBr-T^UuZm`)^v&zhR0bcAb)C+c|x1rt;g}U4Q$h$I64qkY80n_=0Wklz^u4TJw
zAR5o6@&!=O6N<V^Ij!Q9S0@hY6mQCqD_CJWXH;qeGIefh?1>+oDp;<xPVx+Y6jqdo
zQz9u#t)!BTI90w`$co~^RAT82dAO4j6WrzgfLGPdq1${SFE&qfC*RmSFn`FEjit2(
zGld=y@3w0Lm*rwv-@1O+_Fg$5fo863wN2wFYC&WQHOlmM(Sv<pA<_({=!nF9_dq0V
zo$mg4zcmLxr|K329VD{3X_=){XL!vB1n?>q8vbsm4PFv8r?H$hx$SN0u-;gtEB4s|
zjU*KLwDAIZRs9n?TCr<!Q)G4wMFqqAq;tBq_Z*a^3>sNa8RvNh$;B6QMd7;Eqhv~U
zNuY0@4T+tL%_Vt^SI{~hPj+ahyRNfM*Lw!|e^n|Vo07}~5pknhUlRx;K1yCgh;d~%
zrw9a?yGpVz7bV2x6-zyaw=zK*ftn}0l~gnAy67!|nw{Pf&`+D7K5TyY@Yi!suq8sJ
z1>KgU38W?|tHom1wX4q56|<8hDH2mb7KH1l{I{V!=Z5^YHKoo@RgDgbr+o$s8LYU>
zLakk0s?!4%#)68AKMr}4ci{^5Qi_*hLqh#|-{ESh=+oRCg|~Vf8Y<$6#VoACK<cLN
zY8J^we+?`t#cOCdtPac@^;^EgrNK3vxt#k|pt-@?kHO52j?RHA+mFMjD4?*2EN7)j
zzjaRDsL<P`u$7ElI{Qh~;8$AGIaO_2XQfr26?`+Qb|-i~*s!Ili>~5MNw|ZKZe+Gh
z3+XJRxCw!2Ue`5bvvA>f6BXhJ#TlEM<3gn3^hzPc^m>JpH7Uf#vW{J+@1lKlSQ_`F
z^G;s4tYLz?%2W0S0pN$MowpFu@pr%l0fFRhiD$#1k=7jQm4qosq@|?X$?Du#(YUy(
z=m9MAlu_y*8$IW;t{g3>CQVAjVq4)TH&uMrID6KaW3|j9u<=}2#U;88gxIZbTX@q^
z3+A%!tl3oD{Lu}q8U#3Qcr|_8ICdertU?$5d&K>I1pJ<BE!sZ}|GGRX9E*N{+!<N0
zbzR$814|G7gav7U@~4uby_~3Xhh5L(B%b6G8SJ75lX2<h6N@$J`P0LhnR+qxubh*C
zKxw8zw;*UzRKteA@W+{9<oN*Hbg~Y+A@HJfEh(!O+Jpi+?SaS0sy%>I?rDS~?q4_i
z1^AH-vkrN19zt)=3{3L}L&o`a7TAPHHxj8=r&mPMk+>%<`dI?yrnV~R7ABFWl+JtL
zaSARQU9;x*z=63~r53A{VaI3LY*4Q5*<NTz7&xaU$++Zdv!ItDtXDy+rHU9hm?Z+l
zoNc-?T=+~l3RORFki@XZT+)?wn$|Ymj>>~9n!G|b1vTbvw}VvzQaaw2tcj*>QWl=M
z7#r&>e||Ktva8x%iOJSx_z`$eHCWMODzi^!naLm_Bwx;R;`b;k%XWsP)^DZCo$Xw*
zGCRsl^_*2Ncx+-aW!Jb$(9f<loVCW1h?BZ;|3-2R4u`d=n{66{42h=Ga3Pa*9Rx_y
zI>%`I<NXt8%X_S|Sf0cIsuddK6djdbeqe8&x0|Ce<af5R2t?-C4)rB3<{eDsBg}7G
zHawa+$9SlFH$WMtG$=S0F?acIk2j;vPg~v#H2~yk2)~vDH{t=tSJ^ma@02}=JwePN
zy{z`K=q2Wf(l2>nm%?_0LvO7zvl1WZJ_b0Wx?15Ge3Fph4!?k|zlk7Tb3|@|_#rL2
z9^%KSLDb$v583Ft2iWd*<QgOsi)k8=aEVGRDzT%?(PUm_P>hqf;aT|p<sR0|Sah9{
z5fto`h{dk<&Z!of`r?D58g1iL4+_wpR)Y_0RA!Zb%<Fuq28oe0*cDQVu5^o%3X85s
zNx5w$A~Rl9CBi5eBT<Q_lxI{7yZBU|N#b$>$S!K2-M^NS_8`HE$W~cz<~A(jGJZph
z)-^EW!z6N7Wyn&>gBYwqRGvlUSR!i@4&k99(p{xq&5IsJS&4cS7_<-0USqANxATnn
z@!dQ3`}<E%geLWVdP=Nhoj@_c72liWWpik^y$gWnHgDTTs`=|(IOmR9$5;9Hy^E!S
zSp01t=KghVm>(t->2(z3JAZ$nxo`l-ia^It9u2N-nbbxlK?C7A{MK9B4t%^{Z@cVl
zvTV_gNs;xbN@1eHYv`;NnS1Y#1Q&wyznc%-406|hfiCPIm(oG$r5)+Kv?nSrjleGE
zd}U_PE;1r(79=z+$ugw<1DkCmo^qm_)b?4f#pT7Q6k_^{D@|jhj#a^{7(2uya51_m
z7h62pwM3Z744<3K_Du-dLkHGA*cA{$XG8+@TM6mfD#bul=Airr_kAHR^EUBn8o4a~
zHsoxu>}`K$ENPw@k(d-6Z{+Z^C84LW^)>a=j)%#-%?$=cLr^CycP<J^-&4XY=BrJ?
zT$T%rqk(ml7$?JQc%!sbf;<+)+ZfHax`g79?N;F)nVT4sywcN!r~H4|79g)9$qmw>
z>2y@6%OT;kar;s{U)ojG@uAhV-W^3yFxd>OIyt3AZ5HZfwOOc`RmSqa%fnwOdCqGd
zoBYqscWzr(r#i7Q2mjn^Bbrdc)?!EP`g~D!ce*O#QT1od?WLM%R*L#KYNqNqtC@0j
z)=w$<Yh|wwC=KOx+(jR9CZz>p87u+>K=aGS=k#p2Yrsa+#N(Udp$lEt)m5=5j5D$v
zI3r@C?VTd=dIHr43ZHiJ&H&kIvpAs-NxBn$+=cg+HH)4Q*u^|Dx}kc7gMYuP`GGTX
zADbN1t?&x^oYa1N`~LppAI_$=Smf(Pm{df+f+&co{U!9i4pw6J`O-UVmM=m31za8K
z%ZqP)Un2(M+y{%+h-!PEKz2TDG)E3h#L;}?V>G}ls#f4EhgEW=CUK})O?DhCnoLTQ
z0~~klsHCzccV36kgL^$5nG874MLl;sw-nq=AxH|>Rf;~XGYRZUQTP5b7oyQFf#S2x
zQU&S)jd7+>qorGeLri80S{(1J3F2mu!L~GGE%tdPZCP^9+rzfRI@?N)D3_2t-Xxy&
z469?R5>PB&Q(OWM1)-yw43}k`QuPj@v_5zG90>)i38k$p720R+7$@R)c*}VZS0%=!
zn^@P4gdq>zZ)@!9CK8}8RaMj2+S2Rqe)n$eHi8X26ROnIrnm?$s;zse;R+#9M%GlZ
zKoR_Q0s~n(@z@_;aUwD5P3v}csoAzy1mr^E)*FMqVYiC}roJA$RJx4!=Od)(EkYEy
zfWQl2jKOo!!UH<PO&dD$SDT`dt{9hpL{qPzjXLC~?Mz{YL0e;#n}p<>V=HNz*rk${
z1*3my3;kV29XZtR<QYlwwtv60Y&zV^ZO-?2BWpWeV}3=Km7L9Y%B$^v&%eEN?#+BS
z|8;+tYCn!i0C%*w0YucE0CI@oRmpB_-*8|YZs3Lp6O>nw&X|v1jqP_apQXkII;GQ$
zXF-4a>ur*_e5VMF)8;F?%|fU6DsrH`3#s1sSKU&4)g3~!qX*m2Z{ORhS~P{G;HJwz
zRCi&yhpPJ{&+3p9!TO3PPtr!9_cZNSi4)|NQaY9LB`GoV)kUeqm&7M$f17iEQDm2V
ze&z2w{i>%5bpK{PvAC_O?cZ;MA>OCB{iVp^mFAN-dSX!(Ij8vBNqIk=F&ks*#%$~u
z+ejBcn~ordfK^7&jv2wT^{ktU97(L?7;aLpNbeT}I5{*~7?nB|Xj<id+ajx7X%d0s
zm5-fK8JYE^G-Dx-)h>se`%T?uuh7Dp3&%>EqJjkDW_nXFod^?)OGI3Y{hY5A#K>9u
zs#Nbnd<KfB#pjT^!nY#OzIW`lYF-<15G}BCOb{o!z5UpR_W#}fk=y?ur2ljNc>hEK
zazFislAD2bpQ3R8Ci$YL#PN?iPetdz-TY@)H^l)s|JSafYLk<=4=$3t=dKpl*<m4G
z(BeOVB8Yes;nI$x9T1Eij^5nXK|*!5J-DaF{c>5w?8S=hm?_JRg4N`-u%DyY>AX5E
zH>|dcb-xo;D>0rPt-G-yUkcmpLd5i5{+`y<*5o>>>4bz*#clhXIxxQorZ~7mWTE=~
zFFVxpl=AxdWX85tZq$qAd^|1PvwdWA@YCb(-~RL?YstwTCC0o%>h=$=jkU;9j2SU=
zt;0~k2vwpL9ub4fO&GimK5Msy60i89nHvD>+`XxA9JD<6Bsc9C3)c|UmH96Fe%tEh
zjlI7N%KiB=Q1}%z@YuJXTzr%L1srcUY@a0sTvzBWWYKJNEm*mo%FR5`ZD-BuStQ@U
zYggOQNY-5Y)?4ERj=xBw&}0N?=DQFt6k_ThMt>QA{*mDM8EkN$(e^L2Up*p(omcMe
zkEx-U=d=DT)DTDBQ$wuXsDY6xP5&vdBuby{BO%d7Qb=8x2)g64S2;daT_%;J%lbsI
z*#Zbm_4O_t7iJl`+#rbvR71$;8dGQr8w|WLcyx!}+F;(GW)^>TSD!U^R(<{-GCXK*
zpXfnLT(+ppCpyx5J?ed>B>-VSp1)wx<z^14UNnZx*X1_wk|Ffq(*MWM`521Xf3GpL
z9YT-iV%YGzeuNe-g?`wm2$<j4`tSKC1SF9hLe2Y_I6~=a?@h}M0r4uNdIfm=GFW&H
z^`!vczb=V|w6<eUkw#9rJb-@KpS*Fotg<G7emhml)DD+i`^UFGn!N6bH%f(Z(0KL~
ze0fV*=EW|S<H`hCHM5o<KXg1aU>g5RME(!y%tKFneEYZ+2fRJ+jULeu_zryz`Wzd!
zwvD^#LJ1sL>)nTfBD=1$RVNI;#aa{#L9$2I#~Uo~gqW%AUsUimmdgJ5xF`0yLg!Cu
z4j2YfaK&DUEM}8SvNuz9r2HS-m6rxrkM}=gaE)LH{qg@@_)B%+r;l&Xz2Sr(ey}~Z
z;4Zo4vBC&9({B9%9vUuEd{F8FvXuN;sHMKjG(w(Uqa<Ms0Z^Kdp1!PNB`Fz(O1iWj
zw1oU4z#UOq-F%qJWSM0aPOcs{1Q{7yI}+=wh*DLB4=lNwM}n0t({90N5U;D|DVuO0
z15uG3<>4AUKG|O@*+t3TRMAl=f;(+wN_kQ7uH#VhjYHu<{Kyet?QnRf9U57Y=%C_F
ziDt}%F@W!B$(Tsem{NT!hh|+BGO#vZyGm*lF;%H0lN!ft(O#n9K;asXdnzmVVBy<P
z{pXlbwcv;zVbmE1-^`sWy_4fXy(R?<KMYi7g}Y$37DxpHk|T@d6l*0Y61GC+E~B+6
zJ&`?8sLRp(QHhKJG07q{GB#tBruvBKK8f+eA0Pg9?#;$9EK7m43b$!**qyZ9KQgjK
ziplc>t79@c@*d*dm@6%7Ki#{zPfEo$_hpgxb~Q9iV$17qjC{wAH<=csF{N*yy@WOj
zaWcX!zq@~K5gGfjk9I}~cP5>9X$Kp}<&7$_m5%vuFY=ODrVPKuM^kpBpj9Uo^!;Q>
zl-YK6aW*Kl%YhmVODL(Dt`@tix_7-_Y}u`HI=YoO|LRh?UszV7IQqc4Dv+~0#{lZL
zW~ZX+by7D4Fa}S=-YGyCQhI@|GR0E)x7mm@Z=&DI?z>T7LTbjW`I~M6654jyk<X1U
zy)+aeAzWl9Rhc?6y)AfNn-uov^|`Rl|G48%FPO(mrve2<nj+HR=#FOEC{q%2YxBso
zC|soB28EA@w+h{6O}bNuTitWe;LiPq2bzm#Aa}VtzU18OA&7IC%;mlPe>`%0kLvUD
z5pw?u7yNR(nrk+xfP?}^#eXDtE)q~#XSDqbvxM?LKbejZUZ+9j)rlj~22j<7%iUfb
zh@N$u5BER5`|0=Rwx;<<b2sg!f`N@NM_R_Malu3`gA44xC`Hafqm`%pvgC-land=~
zk$1;REW|lyCayvugG9QSQ!yk}!#qAao;f{hjdM4QiNx4%P%i@(M;?`;Axzq2N~v58
zk;PwOB_`B<S4A6U&XLpt&*4~Q>9~oQy>CFJ6dduIVM;9C5NlY>O+r^yYLWRS2goRM
zGG=o=MQJ5=?(1q+iqpzCD6svz^C-ESE7Y9(&!&e%XTSgO(<8`!PvG%?*o|j=bBWZi
zdbxjajfTpgeMYU*@lEAg7Q4+|RH{Re@oXBedc_~Oo4KMZ*8SJ(k!>lY#Wgb}`l{NB
z$jF_g!8SPgadb2)A{(dq6!j|v<>gzxL`L>?x@2&J6VnWO5*-wiP1#;aD|Ti9Z~efm
z&q#^vXV~d^`hv1hJ{iA_jqIbitSdT^Tox{d*)u(3rH$R}x^{|ih^3&tgTqE@3zs)R
z%G!%=vtJ=xgKN2q?V7G!idXuL8mTrgb*wTA^|Hz=)XVbM<x2&%z)_u+LmSNM+uP0a
zRZ1Ypvy|PY+P{+Gs1Xb*RjNQARx6Q^YIW40Unu2qef0V$j)Jr1$DKa6{A~$b*`X_2
zYfIYut8^nji{_{cbZ1o&;VDhg-Jva?FXJ)6Jx`kZ+T362oCB@X*4Iax!>oTtjNK@a
zM;dP-psDnI#P)a#1NiCRbbN;KZ!$htm{MV$n_u^r4$n&z;0{CSHvfNk{$~!)8;<U&
z3?9briIob38o7Vx5qiAg`FwG6`#an31U8VVA;2!|M!Bp_q+pV$!1*zk8M@8g-_?9s
zew^YB4<<sVbm!#eKTSlKDCNlm9!#_-d6<i#VJ5O{Wb<xso!F=9S<SkW&JjK-ce$tr
zpn~1AO#TS46H1I_w%~=KOq$406sXIkB0ZiYyS|hxo1Kd%Blg#77xbZJim-3HD0}*x
zqU{3ruEX=eb$C8^9iF+*X!{rDy5Il&WF&$>VWVveoz)GU?Y^`EO>(!%a4NXa>7O0*
zK13Ju&(8ipoqycI!GVQ&z8hcfcjLW(aW|g(ZZBTy7xv;QKD!x*iCpvL*WYT_fjt;L
zlqyu%prRl;j0zeha<(&9@Nx%hf2L{Z_D`80M3T9?*WJ{1k`fUQ1#HD%KA&&c>q`-5
z)Va@ZRbpQD`FEr4HL#B@4GaYN=#ZD5obnQZUCg7630e8?lNOwx$A@<xKb>Pxl_cT>
zP!@C4vdT%P)0-SB>cldfl<YSPaU*&KeiJ!f+w15PU#z;?f*H3F-R(IGOe`wgrVt7t
zGfquam{f?U_e(<=zM3g_Lw+%tsO(<~w~!H<cYj$+D3*FfONiN-A!jQ0Qu(3yiAY&l
zF3M6RC+RYc9Vz>&Ce0_IuOSDC|C_26)Xr+%Pk%edz<rx(TCk;L`P^e%2Uw*P&F<2t
z9jWSfid9G)v9cs!CeY`#ZLis^RVxkAZP(IG?>vSKZ#JZUk1-9ST(>E?f!$vi+{u>>
z+`t^8OY#A4@ylX2i%%2flw|^u>nfEXSf1h64vYC*3}q`jX%ZU@$mrD^ko6=}kpZsl
zpn{e|SnPI^!(utiBBez|vMTUWx05P3RbdsUI~AdgTlBQp&7!M?Y%64-BFXoIvO{c+
z9!Yy$gWH_f_QLcp^!7{xBQ|?{u51xa$J|mR5Rlo`#XplD{@(we;lFu?E+u%#&ymfD
z-#5#DdL94kGi2-+@Bf)&pB4Mr48u3oF{b!$)2gg>pU<tmDqCDLw!Y2%&5=UGUb1sZ
z_aS?XU`{m<yi@oqMEh*kp33&o;pYvxT+pz{{rI8NL!lgsZ&)+D++x+;Vsn3dyV=~I
zi)G&qRT}UFI|JX8Eb(a0LTN#qfyX=BG$E=<@#0zY@l13P8rqMk&+ldXWU0PRmebn!
z1qd0sNz1ebnn%Q?L??B2GAcTPmQFF$%Znuj%fim3^sz8qQn3^1aPUu&={E}%@<3P&
zQ=45LuNJ*RphG%rqm=SYun3>T3K850yFxf^hA6Ev9nMNli%9+{d|i}1@AB>payXW9
zWy2{6t*BDcR1?(}5|bb}vn?ygRlO-{7QI-A!E>n(==nknvm8s>;szu-oD>`J6p{ks
znP%Y~MXVr2%8w~&b(4CfsJoP0DMp+odPy1z<|1rIPwt1e_v;I&u;!L26e(bUi?_j=
zCj<%K`#KdN!33~DdKH33&O$@MCre9mY-uhs`*5N6iS04aGho{(wCT>A01e1_ah09|
z`|pelXu1fE6IvqFO%%c#`SnBz8dVG`VW-UvA|#6mC6ofXjij5pC^^BW_~9~486Tw-
zfd*;Q-nB``sbOA-f$3Hb9s~KIhz>go0x%Swo+jd;2$QD3`Y$uSs4e9Wew(g1JOfr4
z`Z;RBYS!nb7d6CF)5yUeNlpZ1vtkMwDbk8{xGb~Y(3^BNLgyA?A)%Owpg02(f17B)
z3V_2B>i}b^as<`(*fsO*3Yy2&GxxSdJ}27c#^Y~;it<wO8E&$CJv*&7?)ItEx0lbX
z%wcGdZ{Gd%_Dns^uXnni!a|s?>wBlkTYz#9hR?r8Y$0|}DZancR~NLcLcK5}$M)ih
z-imS$A8S5#6yhs0OfSvP0QpmgCGx^gzGf|&J@DZi+x%^$@neYQ?>}blx8Y=GdAy$A
zg$Q-<z^-JAAxQ2=%k}YE{u%wO?N@<SrzQENXqfIxgQ~$;i178%q>>v3O*kI&QRd0|
zI_IwWqQ=B;d6ltgB;G)#K7-4KdQ;b(?7e_zsSDw?lmGOg+C<K<j*5ol7@H;VI)(z@
zdkj=|qUxNoG+jz|awQd*n*PDwl`yxFRN=oe>!QFe)TZz0aZqgqvtYo>E(F4nS}0|#
zM24{yEZa*iemnhruSYYI<&Z!)i?TJ-)A#ZEdS~avz>vJ4y|ea;Pb!&;Rzd9~*<!qg
z+>s5(rl#T?Z;+>O=7$9I<+_g8X&NwW;V?jL<50>I=`=M^gAA?3AAZA+da@A(NOYU1
z6dOS>WKsL7=EyFZgs=OCh)QS}Ha=)o#l{ZchK!|Kz+>kk7X}3}K2#vdz_2$Amo!wo
z>7Cg6c21!WQl#pv6i%U*w>Fj6cpXEbbbyr@zPM9_&{Wh<+js*h<aZhH07GNbax0)t
z3ECnpnVE<ZloZsF%_+#Ub*PXR<r)oj-)hko28s>}b3`@Q4(uYXN$RksjT&^a!_lLu
zG0ZSz<>l?|vA0MVE9U{rO@2dj2<({wAo*@lzTwoWVKAQyeykJ6FFJ&V5CKM>X5u5z
z6_^lEnXMCPDUjv}?ld(po8*CK2u+LKwzd_Y0Agpzer14ov{WqZ+_7<v?eH}!Cj4Z&
z_Wg{(TP9$P6u+uzauw50J4b!s;+JIVX+w=Drop@hj)WS(L#Wn3Q6T92Hrv~qb!yhO
z^VRAOBsGL2RDk-#JrFo3Unl5k)3$+=KV6kzH3X;<sMaarQzFpGl<VLjpih0FmDe!t
zfM(Lb!{9Co(($!RNjm&T#vUxzg~8whEUF#%y0xRn|L}E>s_k9MwSlJ7t|^I%{%7x7
zocjdqxq};%;Bs-L)?W%9cor|X*0I-tP$ygqq7A1bNAauLSg^m=4V6F{0#pqfMZm++
z8k(+Uo@s+b2zNSCHM$O#!l<qm21RSA^sN?UG?30ENvaVQT&AX?JrfjyOH{=O4I?WC
z#}ZlPy6K=SiX$pir>J~E2U_HSr84+tp>h@}Qf&sPn5-@pQaUkkuahLOl_XFoIiQk7
zgHWKVKIF^#Riy%Kh18PaULvn6D6!dL2Dd7jmczv$1r<ELO7E!BJIZ1KM)^9Bd(vBI
z+0(X`?lwyLoAR;%1~#LyEHM%mX=TfRFw?B)S(hl4c$O$_6VWHY;3gc}aTyVWZp{~T
zFa=VuLesD)auXY<RkDpQnN^ZmWigj<1Jgz!yq3tNu)4&?GEi25^SgNJhL?A2V^ARr
zx%H|y)R$cg1vzPZ&lYtO^?iqxTi`paALpj15qI#ZJhm7hb{pGSn9)o#tZ%X6vqX}q
zq!FP?>EV!Cs!R?J559yG|1KLt>w@uzhWY5nK2o`NSd<gx%CzGY@5iZFz3?~(+WRpw
z5Lqw!Map~E_eoREjrrLA$L%q*qNxPC0J!OOz|PrvLe}^R^+M&sP&Q#~cfR5a-0+x5
zuHwteWN6AKQ2So25=b;JuTZ`uHb$vL?3ig#@{-D^aW&+lRD}j<XmU<o?_K$@uDnf@
zrsvD`Up2)7G#ABWT~)j{LM26s;wvpR_ex&xTk~3K4)_ZZ#0zC3mY>+}Xv9Va+XYJH
zqy<6hsJ81kG=%=UTYIOAMm148J9Tpq-nZuKK^{XysN_`uBdh^Kg5xIK^k6hVSr42a
zTKQodtn-Hnn)Hx0tX^^Y$*XNR3;C?XZAk?KW!zyMI*pE9QDaSQmBbmxl#db{0yT(8
zZI7XDH*ywtpMNDOI`0kr%ex&?*b=vV^d*$}zij`weQhsmwx%X`$bG;N8aejGihu#`
zj`AGTw`76b(h4F1R(Md1xay+ud#&Vnr2fLT@Evqt;B6`6aO`T_CTN8rs2m5>V1gk=
z0_ZbKL%(=a*Z*VGa)b4`TJt+&%ejZ|-v!%BicK!)$4>j5f(1P9N{{Ul#xrjI|8CpW
zZJ%2x!PW`+S<0PA%c&V{m0$G1+mm?)xu7$OuS8vC2NTlc)+d7R3rHkvBR(1@b}gxJ
zW1*5Bi7gG1H)UH)Ak3oz3E{o0PZ2lC515k^C15T3wJv%I=&&_%?J&x=;<F{kKOfLE
zh76b$T_-fu7*iSAEuG#M)<l&cF}XAR#QJ-h;p*7#QY20Tm?#W7WN;!iYgI9@d`n+l
z^u`#x16Z?=YJjm3_<??r9U{YI6z*8^zskR=!2@qR`hV3_j3JgP{*H7Q;??|WdwtS1
z2UsrNu<avwk4+0Vk8I-^fOr~WI}DXm-KvjSevpIV9HoE~Ai{D?sf}I~4RFHJ3|kP+
zkwhP5q9i%S_AFX*h$9f&+ZG%p(SO)fx&@{HgIa@@fP57V{*9kpjL<o|&^KPka_Odl
ztGbbez<Z#>0v-AH$hp7(#M9((LNFYNvg+gZKeE)Zi+~#cpe}+M>tpu0v%*AQ3qvDU
zn%%wQO}wXfOmBB;!z>bh<6gPPFrI%lTN}nJcJUm>o|tua?CEbkwR1$=h;j^Zd5^dB
zk!z$+ix5^UW_qm4Q7EL;2&Dk#?I4@!j~&IGDvK9NaNwUkbzt^06dk3A9r!G9VHTbF
zo|f#q7_w_YWbz0_Bx@->m7p*LQ<%CCJtdI1=+NR3eio+A&<c;r9`i~Fm)M&E%tk4|
z-!_N$3<Wf(+fynA5Y>FX-hjYW7A?J;-E3`%=xdP`5)l<#&0C9(4JZQUe?&tNzMxjl
zf^vl2O8mrt$8HwVW|sx3g+dX>j`d_dmLpr%fJdOySP7_WmPr;y<X`9|w&3KOU1qC*
z$5&~+J;^2~BwxKS-Ve~qoeFOcDPc+vuEhoOQ)E|(%%U72p5O<;B8y|U?Tjth8#wS>
zI||kZ4m{}qh9?;Ex&hK`Q*-a((jD34V9^D5uM~-RB59{VO$4jealp)VHVIHCJpTqv
zBt3AN)*}LQeo|zT-g;936;xR#eb20BNeb9j6}W2Hz^CSt2YY=rmAma4u+?~+Hb7+q
zK#J0jokI>Vw>W<60IUJj+r_;7<J~2t{r`ppfmBDbtM3#I-9R%M?^(TOCL<2mXQZYl
z5F()=N@0=2BfTp+vcr+9=~XL5z8NuxAYPXY)K6JzSBh013<twul*beDsd2o|qLhb>
z5NjCiVl{Zn;--Ci_R%bEQXQ74Wrz0lK^OaKq=tQ48N0+=2Ot;cv4td2&xOfNoTHL;
zG$w!!fZCDsfFi1pK!w6Kaam|x0)YX$5PB0o$DIZlK@m7<I&g486K4PtJiQgXA*S2+
z=Al70e0$4-W)0pAs7zp~6-qsJp#c*F#mk+JNGu(O_h=Zp<*rG`QSiNCx4ID}SDrhx
zr=y%=;Mn*nc+ycm;8_27Ts2fLOnRsi_7fn6YrGej0mM6F1xElfC=qT|9WhlHTKt(9
z32`xKnG9YC#v4DHjt5iD?%-Rb6l)MJatFeNg|>@CH5lZ|a6d^3yAmb$t;jz|IR2%J
zh_5;C(Q}Rr3N$DLJzj804`a(S#(t!=a)6ZO^Sf}uYk35NKZQ44YcVs>Z*a(-NA8ji
zq(y`@ty7|R+L1-v6#;a)9wK!T)d*IkSAwvkIQBVc2e{`LE`&IWFh^xDPZ~sWfHzD`
zP~(uHyM@9Aj4OgH&v70q!i5VQIb(ekwcSvJjfmLB!5voKm~Xetg{PnjaV`3brBs%h
zH-`q|aELatO$HUN45}4G?E}ZvAvPLVv4IBtK&99TF6zG<wa*HtmZ77ZB+#oHo!}~z
zDU$G3m0SSGs9+=@)2L*%E*8rQ8T4_bHWjNm8Ysh4B%+{d2Gw4-SGq%22(hfVuS!o<
z7TJc%v!g0@Dk5?PL&rP3WdO?HpjQ<lTb{$#V>jvp%q74L+Ji<A2r45Jl5<65rV7v?
zOrcCUxT^wYqhWf*_04N=Dq&0#@ic;ANp$hCT7On}46X_R;_8#tTTxzp>~o9NhWC@$
zt8TzFk##7RW;UHjabOiK2H<ex2}Sz@9T?c6sYy~No(4Jj7!Nrid+&%Q!odVrA+f*A
z0cZgFzTlApELp*ULIq0k3Y<+fl;p2NO#}^4<|+E1q{qv0pX)7=Sd|DWNm1{7U{giu
z>*2rr;AXTadTIb=$e>33q*AP-rQvN>kjHI1tef+*^Xt0{=d=HfQ?0Gb`c!5acYBP#
zOkem#09zS61NtE0vj%nnkCr%kWzm08%W)OzQRvFo!hlxd+3^A%jmT0ORFxP*+&3WA
z!$*hG7|}Qs#V1+c_>gaeLDgAwj_OmJ)6fL0Th5RgfFEl`2apz^aUe~Fhr;%TUyTKz
z=CsEefk!LJebr}Ch!g`jJi9v2T47grxJR`n_h>`*ru#IKJR*x`F%^tg(zM8kHx6Wd
z-137iLG%S+BC)GAZv~jw1PE}%5Fk9nqU0OkfY`^p_7-RWmc3~Hw&3u+2O3hk=Z<3&
zx8R6NG4fSlleOa~jpefK<Y5^p0b0p5e*ItZv!Vk}`~!g??Q~_AZe*8Ev<FQYTb%nf
z1{5>GV*;O`CCZ9gRB+gl)i{J=jh{zqw3F<2H5EdMt7-BycTh{Fxn!ZC*lQy8!IRMJ
zyy{_t!MJinF`E5v0FLL`D$5P*f^A!$)M6LR0JLDAuc$FIu>-fO=L1MUsIPKdGl*CE
z+o%Q?>^pG=HJXQvAvcBzgdPRX027EpfHk!7a4$Fvw}GnKh(=Rl(<9(*brJ3*Rg#@s
z^cOWS42xQM3Q5<z1X+amij&$eIIoCJ<*Y&@Yo0PYWdgv~5?GO?aDM~mka~wMI0wKr
zT45C`^El;fx`?V^{Yof_SP5TYU&A|~7r8QTue7V}g&LOzSy3IpC}9l@b=O2Wk=j<y
zw5TB*Rxp~-&;~Wi8oMyIMu4Uvp@a@Xnm%PG`$Qpf;!9Dza$hgjphifP^UFWnT+Pq6
z0jRc#8xB@n3L7-(*hT|2lb*b!Fz91st0@+%Nnj-^*5xoq7V3bN1|qbk=^9vkz>1+^
zOV3*gY<s?XU$akYoD(b_P#XX{ho{zofe#tc*oECVCB<g65t_A0{az5b5%!L?9B@;M
zTyvy|#BOn8$#tDy|D!a#ZE!&Zk2aawF`W`sFJdOxhhU{oE>!(n^H0*j0<ErwozV=M
z5cvNX^Ax)KU>y-i1W`-q5+p^(J1Z^EDW8b@cd7Fh&1oWK#ET5^mSpg1EKp1Vn7}Dv
zlkDU|K@b{~N!b5WDhGfxoB#rj09HJ?>H|17i}xO2QB*Y}ZK7KPkTuneL<)c+J#?Bv
zMVuBaq*>S6H#<;Wj(qm@yQnX_P!mDh(aGsy8A~yUSWZT>wI}|D;}KQm&!Pj+^C`hp
zlJ0m5z>dLPKPVwoibMKzW@?W_<yCmwi4WHj<00$sDtSrq>w&&Ui!3nps8jG2pOUW_
zni9D*Di;9yG>zHnwXoISCQX&EL;;rox<O<f`}Ts?)^GWWk<5*_ioWH3G|Jpik2CTg
zA{+Sxh7#BZu`HCv*@;z<VN@^fEKd5F{`jZi&yDtA9NtOnUu}^1H&sS%D&Q2_u>o@L
z);BF>>}yd3f|VZcIw8y))~)8o#LbNxAdlO)9MNbP&IW)n+^OX5(5Qw7XV-DTN7Po~
z=!^Oy77r8-u|SK${?I^aDNa&QvIkR#0r-W8=(pH87_Wj3NEXEVIL@{>#2_0KRP_ZF
zB#c2Uo?4|Ua;dasDd*Ntq<s>H3F}%o)X<W6uSIhTJ45+iBa<NTDr7=UfXFbhO|E8*
zIL00h!OB9fD!mlZEpP}*iQNKqA);E~Heo5TXpP`cffg}%2cRT`GCz>tY1c&+f;`><
z)wjG{L}ZO|^|YHt_=U>Agso2-<P|W>%S^t-N)D4ZjiGQ5N-(y9FB}WUGms^$(pMpl
zxbV2;lSeBRB0E(JrB#kqqnUDkd9&l9;MQ76G*7TQNiNRrpt8Xz&j;w!yii_aq54QO
z^51bk{fDS7>w&n;r>fcAGr1Ua5y`~VfQoCeDrf*Y;8c8%1C09t(f~;I<J1}z4qnU-
zDi%iIp;hAwqikyy7z_Xm8API88eVMxvX1kW_S{+9B+mC5>Q)80Gc^va#I&Vu5Z;K7
z8<K@;SseS#0;odK4vHCz;ymUqG^CcJH@`h7D<y=AH^oHHE{Z2)vUk%+M+0|rwc4Sm
z|JnL7Wni;wVy&N0&ZwCfU{@RX;yQ(3cL;-D4(m;R`v6Ihhatgun>;oCiW|nYTxxbl
zK`kWxF`SYm;H4?WNR`Bd8|vh=#|a0ODp|N-VLa?{#K}#Jj7bP>rGemlO5v}1;tzE_
zi+&QlM4*sPcApwdr8vQHF0PG|;jf7kX8YLGajV!;ncseHlAqKDI>^E#6k}#Vg@uLR
zV;{D>4eSMv{IctDj5+Fw4b7H+f+~=~Pi5B$b%MFa#)Rzv-2CdXrwWfVG(rk5HJkpq
z*4|HOd{~p4d@$RFJ4Al}b`3Buy1Of`b$+zs$_Xd>ojelvEXL6z)d#H8(dRU~0^IKP
z8+udy|5x@8U)fjl_G*6Du!<2o0*S~roj{0iz$=2r$m3#Aj`S*uN%OrBrFF(oei=(z
zqG%0WgqcIvIxNDnGUASG@OHp@6y4=mwdIIXYwF}yNZ>3E5w(h;<f#&Tcug^K%4q}@
z;^3EnaJMyzCNd1iynx~&97Kr$tw6k?!;#duo_e5r#6tk+39-x6s3K(Dq&+AbB)wX2
zxtcf}yd9-lx$lvbQ+61%@0Rpl+f%rF5EfLb?G4cI#61eV&;WAStzI<S7a9--^4JQO
zTSGW^VCenmhceh25E>EjGGa;zq_?6YEa{E_rf3;ez#exBFKXJX7R4SN6$)7L5_?pO
zDh5u;W`mtgG{-kobBKQ8IFg2s`6)OT0-7PtiyH4x9n?)>08mY!(ZrF8-L5L|V1P<7
zc4g%@E9&P911<|tECBsL+N%SZv%J9t2vrppxnhHd$!n?z!)q05<b#SuMn+sveMs<$
zq}&KGFpZ|!;(Xqn-95?%Sy)MigaU!CV1zv{<A%x(0Z}sBcy=mLDn#KG4%57x0px9c
z!JQk_Js~6|QUpk0B5s%i$B+uKB<tf4h@ngkAs3(p!ZutMTx&vRuDR8+C}jsaV#I1?
zYiLVv$d?G(273gk#zF;g7%>JLoXkEteUJprR%1{B*l0A?lESe-uAc^jUgInMtCwp`
z{ht4tyxu4g$5@Zd8+;mMFHSo`jPGVQ4LaUoH;sfP5Bh~SmP8!_2`#xJ9$i-6!Zq6<
z!d-S#R8fx4mc0T|;QtVo(<c7y?$)@EXcGAwoqNNGo>6TCexO=TvKeoO*R$t$JGqul
z)|fKUgTRao@v!gE(YgTFkh@36f89{wt|2*J_z{o>8-wkTd&S&oF@q0mfpj4X1Opm$
z7#@fe6@%cyW{LTRoWNF}xObY}{Qav9rv6Qy{31KQElHrPr8Ss)k50#62&Koy+<mk;
zcUz*Rix+Nj4SdA~Uho>tH3rI~8;@QlojHm%kBE<ib@n4r!cnx$VpC?Z12QYVgBV^o
z+o?o{D;=^;01SxWCZSWv!{Xsld%7Z;H$dC@4nkM@_^7}OsMP@o#j*j*_AKV9RG=-`
z&OvXhsQZb^6WP@m5Y<SKYDj4T-`e{vb?-izf*TU~67}OnpUx)o2c2^<-*FY;jv0ih
z-s{fe)Q3lly&FhAybViN77GfWe6)&jN;n+!hJtVpW_%Cy;5x&5V|VhF97~COOQ{TC
zy(;FlcHJL&$d55fC>^E9&7AnSH}1N<_jSqXy8Ax*{`+5e4+5~Qw(SbFM93HRPbau5
z(fU#29sP=K1$X(c;DL8>R^kMCi&n$`@oa>Gq2fsMGwvs{+6$*9jz5G1T&-{ogMtEv
z>E_Tc;%+Uo<(7;JZq^6OJ>+-pWyf#{0jwDE1b%@07;t=ih73~^ZWDn`crxJnr*dV;
zhF2>}KbUBcdn65kGtmZC0dLBC$RKZyBXAr$wf;uX-Z43SjdK&WwuC8Fvv}Q%PA02e
z?59CDBlc5o{?C5;fA-V=GWJs!(?65_^kc2yBy8B0t018gcOx))Mkwr;vaLqhL@E)F
z089>GD+!aRDX>#qQ5IB;1=`WGrglB=Dk<@mK^YB3nB83$tJa*Iy#~m4FjhU<UXP&+
z1&z47EE^rLS2zA0oVAJ|ObTeBU4rxp$KTCS%L|C}WPm~d=raTn95w$2E3HEXfKOCG
zHAD#k<OKhc2M2zr33^O_)cqucLyzKXWGHm*1P3{*$o&dr8KyMYL*u_|+qj-zuFgBP
zda+zy-c`aT_V<$pyc(=uA*c{|*G7(xs8Ugr&q;-a2oFR8>}ZTJ^(h|uQ)nO+GarL}
z4}x8Si(-+d0Xa}n7?Sh)#Fz|KKz>21n5fn8ZO}dIp%E?nh{?jF+~`!qnv|%tw6;>u
zQf0KiG(R8hyouw6i-5Q0l@nxotRf=AWh#KbxC}}G0TDpUZb*Pv9;zT*7EetCG~k?z
z)I1~b@EVZ7^L<kE1Jt~Di)f@M=D}1q*r%YM)Bv#yO;%29h&EiZF<<f21WQut8x+pk
z$z(0u3(;^(1<)Ya-5PIzJpj;fk;WJ!0dq$WA~!BdWctK{Y-Hz?1DQu%#U<Bcv<nL&
zYQl{uRY-!)V8))QJxh3OVmXLl-z&&wL%bqJ85+YH<d?u0!d*F0<l8W#3T?EoaKQH>
z#GP6x)|O=L7V}E7<(?z_kUZLWQZaP7df(35Z1Y;J{&X|Dns3jG(30{IDE$f+wtLN;
zH22ysfdSupk`?1TMdN?(a#n<bnS#E<Y=>f{`wF^0RUsM2(NVvg^}z!1!HFOfeNT%X
zqp`bFi6oY&XU(}Ia^6cJv0eN`U3IzHB%i-<6G0FX1COMUYV3(Zn+V@~J4FTniS8SO
zCZg6k%X=#RxB;gKa=NdlWLyAFxAV)JyvEoxCZAbyD|2J1c?E3*48vFy@Dc9Q09J`q
zVQZ54M(JePnqjB;v5V=XCjKDyYP<Ye5&ABB#4g^txGTWxopy>{%t>~H4C>k8x1k8^
zmKUa0=tD)b14IlOI#6#x7K(BXPdz08I~6rj)5a4$s<fq|TAqrL>ExtkH><Pd&C~AA
zoV7Oozq>zPcV9Rchn^VMl#Sc$h@tXTsi=!PL%be3bZ8y=0;#sbwt8b20QAPXGsJka
z?`gt@SK3<m%N?m<ynNv<N)1Q|G!=TUY*=1!-SEbHm%{Yb&@=caO3Rfybp<L-NnA|o
zV02g=uhu0VJMFOhVRLt`KgmTPK}OnBstt`O0-kCBPqhZm(R8?&T>(S7q1@jJqk90)
zDM%1PBrFP{t#DrQFx7#kQkeg6*}>!37gOp0AD%*@XH|Jdb<8K08%R{CAwdPX_^R}E
zRr<PG_qAI0wJLqBhQ8i_%GDSwxB8lV041?P)}^njbzk?xNWz*(q6ewnP|tgm)l@vo
zT3#T6oO^-V2RA8tMfzvmU9By5ZUDH$S*X0rsSRn-WH?0i_1!s*3j)XdnDvOB2{AO(
zUi;4F$!q<ezC6Vp%TsmFx(p2i6tX8sY%NBsjYX__$0EkP_<Yvo<9-?o8a9^qoVq5l
zJAy>28xfmxxWgI#F#32yy8)ROJXP5-LWKal1s#nj9q!$5nNyq!Oe7ma0-O_G1mkK|
zLr!QXGcIzCLD?>nXIk0<0SDeQc#E!x4tKB@ZhhoU0%)Cec`YhZD#LfFvGa-*W?fn1
zBxGDeo=78CO%tJ{0>^!H2M))0xYH8e_u)1=+>6$;n!5I_zqN$3^(HgeZQQgq!N{#=
z^OABDL`#p!WP&-16$F1LwQb>pv9IV`B~dL7PbR}3)z@fnhT;5I4vs$c%I`mfxlDhM
zQGFNnKd0R;>c6+)9H_JTa@(?t6Qc+&iWP5=@s4>DimXgvoeYI^ElBa;7@`giMgpAz
zN#Iy8ycOuAuR<Jg;qe&RpizjzFnSM<e9=po05BeU>Zz8##@!Ui!A@?qb%53;x%gpm
z(qPGP^0onG0KtSZ0(=^*tO#32;AY64xJMz^+-`A5bii|X(#=D`s=?MeZ|UN4hIr9X
zOSxfJxu@tVX%A#+E$OM&Lq&(F-_<E61{d3Zkd5NhTdJa|(5nt~^v-ZH8<*aLtpdpY
zrmzhmP$5q+PE#2GrVK}YJ>0{i00mbg%?JwJCwRPYii=o4Cs?#kfOIjtnr+(^oe4(;
zcp4JRtPM%9G<+0&2Mkl>)vZBUb)zu3=t5m<D;svSr<nhykyJSK8Aaqno#QAxfTT6#
zR{~nnpbL;p6vaVdeF`uQqp1b8MxQ0oh%HE4rl};2iJEGrqd)aD8*IHn1r_TB!P(*}
zHLRqD4G@e>Rl~%Dw3g#)F~wO;aAP?|#&mQhYOQIl86hxmfedMD<1}KHVwLznbIm?2
zOw|9%bR0!tyR6&5zK8vaM5YO6*(k+E9oFQW1Fa_1#2_X>XrtI4LZgOcpJ{0O)j}sJ
z7Jr~g@gXP%Ep}n$Ah0}d=NGf{ZVU2KQ;#%;&xX@B<;lRu$sA9Bs;&LQA>5Qhx<{LX
z-AqYnOhjzh+KP-C(-=6`|MctcSe~-$TXEHPT)1V4TXx<2<<nW$DLn4zWDMl!hcP49
zP?puF84zqCR^?UdX^Ez!_)|mto+V|hCif8Ci3DWms+w7k%$m|lGJ+%$u&|ug{j1bp
zbQ3lfG*i;$gv6e!0b$2VUXqm%6>H5}n97U9Fwe}rcD7!*oC5)c#IeMRf=`OoYz(v`
zz`7A&4hY1ATY?ZJNO1s<A0M_TVInoK7D8`8V4^Lt@NidqYz_MqnB?e4^kV4-$m}+#
zm`S3xl=C;_SP>{9d6jl1Dro@Ibh3rj3A&1~@1ca6M|^ZN)Eb3KUZor|4W))<0p-i*
z8Zd~3<_6(~Kw>m0E*{Q+u7K(+VBiu+H4VC&NMnmN5ClNq-<vQntbwj8d6gR2#O2mt
ziL-L~!CFczF_F4}2pU(#Kv1&)l~)B~mvQ7zmgsbYUcd%#Ay&<v3QZ-iQdVk&<=JBI
ztU%kqgBKi4{_%wHrV;uC_A-D*KR0eJ<{3BiHK-ge`O$gE3bNn8WC8|4`%`c;>WEtP
zYHw{EDc$dN?)#nrE{Ol2Cm8^sW0zozrouC{lD|CB?=^+W#i^+A`*DIzhE^zKH96KJ
zHCQDz#KMuu5}&RiT`WxDSPLChu9*gG$K>#f2EvR1LEIRlVGzycFr;FnV+VdZ92%fj
z93WI#+@>v^IN}Hr8niP_tu8f*SdGPnJsHKUL0kq@anmzu$Q}Wp&kSbR5UGSQ8m`q2
zNdp-d>stBZ!1WrM=wPwfgL>(#LO^0bJs#PMo9jC`zc_2gBa6a^k=6g&kxj$M#(PG#
z&eZPQMlr)eZZ5C*yu+hq3zL@Z<R#BdW;6?z1XP+wYYWqau~Xxm?@!Vd2cO$)X{>?-
zo#JdsKq*<fiqCf>>Bc!Dbcg}hxXw<aL!>h*KJQP^jr!vLE;}9icnm+wtZXP_=tCSY
z46%Su1@jCENFtd05Kz$gTZ7An?*^otBE9#f%`do&00$-uz+#x~G_MHn4Y-EI{jK|(
zP5)g`eSu{dJfx;yuS~7#e!WV#xDYWBD5V?_<SWKPkgXVtK~;$rVObFe7;JEm#v{Qo
zu0NW9Q=|soq7j9@=zALP+K3``sc_WfzQS|4^J-ldtR+Yv5}DWlV~m5+P}}2Rlhmd`
znW2sqtcp7aCxGlxiBMatgC0!xfkfJRQ07DKvfz}%ASi>9yh>aFO^E0oRJ6h2*((gS
zQx2ex0|xm=;tHGwViC>2!=Q>T9(&EgO$;1Ba^Jy-nm8fu4aPNcl52-r&>$Wz9<7vF
zu}riYeWPnNWL{B!g^}5BP!kZ5eKpkTnC2sKyXT9D7^nxM6UF0j<W0ZQ*B^5;OT%Vn
zuqe?P;(zL9)-OiabM<mQ+eT5;wV)_;QGZR*#|6&fYjvFwH$}chqd8_P8O@TS=Sl6x
zIzwq-itnP&oJb~6M^Z)KlZGObC(hm@p3ubIoF}2akAbv_I}HSjQe@(+4xPkk2ytWv
z8XmZ~fxps=tb=gjfLaF!(msZ{1(#rGm)HlZZ70Z?K!v<ka3n@v0s3}3Fhq)F+y<O6
z;P1XCCNimz9l|U8N}R%Kaq6_jECDILgeqhBLNHVagU#6BQ6q{|2rJPvBMA^(sdjdC
z_H>yacL2dQ0tjgFz$g&CtagsD0Gy`2k1CB$w6=x(WJ6|GOnlsXYFI*sa&MSw>nxs%
zTjenh;TDsgs*s$9F+RXy|69@UUu6)?zD$DGkW4Dc#5F`yc<}x?F)S#!M4*`yoF`GI
z`-$zl>GYtHMCh?7{853#CxzmJ5*EJRUGWoLMISi&m~a#(K4N`7PF{H|zn*n}JimON
zZya{ak{c*1O$&s(O$<D;&eIoh^lH;I$_A$y1UH0A)d0X?8jiRrsso17ftG_y<3lQt
zqZ6ES)I<+wqnz;01-UI6)i{B3E37$GFxeC@;l1-fKVmQ-C)g^A;V@IoOH>8WU(~wL
z*qInLMlj|sNANTmEYhumT9m3mt>qqw@BkLq$ZFydfT$)S04}ScB)Syf!KVmW-av6g
z@Z14ek1~NaqG?Kr1z7AT14<RVUIMwT*9e5M79v+m046B?6=Setok$Jy(k&dnsG*};
zOKj<)frTYeGb6i86gN=BGL#l#(T2kmiYPJQD8<zsD?qIIJ9@8Ti2<48hE9$=E+|><
zt#)h+m6_w72xJ-u$Rmy=^mHm{@^`kS+mZ1gL#8P}wt|${TAmCC>_FZ404m(_S$|C&
zPOr>|c^gN`S(G0Fj^XGcp?Mi%xRHrN9|7kI@xf5$N;kjWX0-}nLFB!N3qF|T1_RS0
zOVF$0toXz(uoLMhHg<v$jazHgU?*7RFndKGQ`B&dR#Gkp<GD`mBpA+ZEe{gx&7yq_
zPGkxd5e3U%6RF0+5J;m$yxzDC2C?zlwi>Z3$#cAtOU!kU^xxHdvCMJ+cL;M_ZG!eR
z{ttw<ze7^$u#4R#E1d*=he!py?KYW8^vE-B^S*g6Tukqow=#`XJic${?_Y7Fx#YO!
z)Vahg>X}bKvB|S2`ywm$sU=m|)W^nfYWTt`P$XY)sC$f(x0{;u9a5hS{gy_$mW(6c
zuy%s!pSTT5xTg!pF6-0#WY4;w08Clb7EMSB4ZvRD1Y)k|S6jEsx^}`ELiUaXaxtNr
zQW@S7i73jafcINt6OCA_vT#8XUt~16cxhBXV^tQX4_Ld{=Xi(^i6Z$d3ZuJn32{+W
zWDZPZftcM$gu^Q6FI>iz30%k!5~<t(m85nAFoOW+E1Eca2bNFRqz5evY{nc3D#c|r
zfD{+W|0+Z_5mdHDXnPI(LT{_ThC|Hk>iYw*uyd8f`q1zb`H69A)SwiN+b11DZwAW*
zR&W($$@i$em}=(C@c#b;^dCMz$ALOQ8f=rn77}~VD5(a&ye4}#$gQ=810vor2etnn
zpnvuN;lB0t>~`LBdT-MLi%CUMYI5SB7!vYGLShkX*I)#O^&}JGMj+harkU~VQ9RdN
zBxB!lW--P-j%l1n#R3*4*iB!!Z=FwzCO)=N?@HqJRtduDvRN6pPlB<#>&`7=e*S#1
zeJJxyWUu&yV-QC(9eeDaz5;Ep*B=22HJqYgSg>=o0)Lh3jgRB~2-m2Huqt|qi>0b*
zKr)Lel19%$R1?cdtu}J!Z7iH5x(`P+;PFZn`R8$v0fT@SLcu5_nu!@G{)1pE?bjh!
zXx*y0!E03mn?zUsJ#yYl5Ta7{S;Cu$D64hk{+DqbxatI8_&Vo+?5c6=<~=9@83`&H
zckIRz#e^B^sejd0M9&q@11hOykTo5qaujB*aBLd`l%C14Eb7tJKup1DdmEU#A(qA5
zwSs9By#%S-fWv_r)5!RMC!CGY)C4xvVs`mF-*N8>Ns!Gb7%cz+O=_L09a?0e{SM2U
z-0qAh#^t(Di_lsvZd$sr0lh=X86BW9C-LH7#fbwut`piSZv{r=e+8@(z2FdRl|fx_
zFGS-cuga}UQASkK;s&P^<&M16rebYQ4N8@!9D~IX8vGgz8rBl(P!fC!Tnldk(CAox
z0I8tC5|5Q=qR&B))d-9MdgU76higC_T?68sYe0mfkGXjbSj^{LyO^C{-LZu33SYya
z(S|p~7@H33sjYdpiLQl7_Xd|vTt3C#dJqOUL%f6cp;NeKN4YAd*kbIoXQEhRA_cT4
z52~k*!bBDg9m1(YSJVw=)CmPv&_Om-ns^Ee!D>uDiG?xnbvQP-J^`B^V2&R>g`Tc;
zF47moU(4gU3*7RYNvL0Rp^AAFLDP~p0q;~BT%&ysLV9AU8jUa31Iz?4G#!c1Z5$<)
zO|S^})`5ynyc;MYO$RH^h!>j^=OQkfWr-m7i>o%73tg>x@3QP#0DiJLpHNdE$OXHh
z5Ezw<mOQA9J>~MsIS4ajxM$T#A<Q=|hfA@UGGMjB;K_K!ih~FKPQy-up(k2h&=I(s
zIwioS)gBED7C0$ofOrWOPMk*quBSz=-+BipewD_JK4_8#V&h?|B5CgI&U)2=QGr^i
zj1}S#(D%s;yITZWJyD+9Id|+aSt6}ndd?S%6H%n(6B&~mkYc#RH31l!xc=2fI5Mak
zL_;$sK!vw4gA))I7<)Q2U#7|Vv-7RZ-ps{VB=#OdCbg7uy@&`+*p8?Tu7TTu`>H8%
z$Yl*`2vidg5gMWEn-~KuKON59!Yf?2nDmH>NE+lz>k!KWstr0pbesSNVWk-#*sB7N
zNVsdtLIajGL%rewq1KWovXrFylDrdgNuhxztFV-?PQ{d0uwztbH9~K$Hjo|L=uL5t
zR6tm5ftyXRG2V(+1mMO%GE)|6iVVI`1z7WU9_7)Po58%WXiRJrnAtez&=4<O*0gA3
z12nw!va{U5aO6vl^g_#Y8k|}9z?Rs6I4IrK0PThnWcM(R$-zk}rKnO0&l-oGML4X+
zIx6_FLIN_E+oqmt%k!ZLBG?c=jK>(13~CBOO`RyY5Vj#NM(>D;)gmS9fHuS0NEdH)
zg3L0a{!j}qDJf>8<0rvR8sbmsI!Tm>X;?pO?5Glg0ovfi5lKw!YB=WO(crWV7bPbO
zXHzZuJsQb3r#dDRSOWoETy3zWt-AyWdRkw_G!DRrA`{>uf){<dsVFqdrL65BG+4v~
zjtfQ}AqXBL%7hk4a6`;)jhIIC)d8ZoWD+Ay*TPZFjTDTm90E$8fM6(???6tn8reil
z44fEDBU-Xi3Ngt;|J!o^K|ji9sear(3<@&IA$hF-;K-{{q~mPhh9x-ZqC<UcG@#O(
zRDjjke2SN&L^1r2Yhfe07_Dcu8x>TN-X@U^jzvM&76E;O{wNasD5j{P3>r`Y8dnn0
z74%MRg??s{DS6gd8lu#Yv#pN<tRF}Pk(kiowO%t|U|KD|hK<G59S$CEw4i_4L!Nx<
z1xFhkJ0j^@7wm@_aDJThZbR`GDv7RU7&<^3%TE+`f}lq2PZ}8^iYnm>;o_(PF{ivZ
z7)N_dr~vfk-5XnSRO=kqKPgqQROG<CRB^p4@{k`xO9SXAMXqaAt@FG$uC(_ZU2@8%
zk^^X+<#=c>W`91vIDd6lCiCoHJi10$WN3ZC?-m=>y961NA2kOW=kIBbSvM!3J*|@Z
zZIbV9-3K-Z=z^Us8dvISzRCjYJL+V6QFTvoj#BiHJ&PWw6<Gf_#Tic^<L*<b!Kfi>
zTW!+N9-J?d$LZ|eGB^8YXc#N<frVWtlAL$Qo!ut{7wp19kRaH;6X)vb^7{I&;BYO9
z(1WIF9G*2!!R+H5RIoJ2-3EE^7AQ^}h#_)S9DGXDY8}7a8nuLWwA)%&e73Z;kbu3f
zNvjpL24XkZkzQ%tsY#%yJ7DafC5tE%K8rgBVY<U|W;#B_-Aed4mbfL3?o7a~L&>Yf
zt{4@cxVkn@H6Zv)ElQO-)>}#K*}9>L;_SPGZ^b7fdWA<t7h>1yP#XqQK}rJ-Fb{@T
zQK=b>Jjsc!y^>coYFzInuVHwfXW1V}!fr_6`?(WlI<(9~0{O9nAt2L6+_%UB1kQ$p
z6Jy=*Vqip36vRF{L}*~|Q51A&;*|g>kPZ-o%mF+Q`UH4V91BQOBB8iuOd;c9Cl04L
zQ#85d#4g}k6(dUY4pc=4=~PD<Pgc=F-5urPh|sBs$sq~{4o~)Q5g-Yv(20QmfgdSF
z;;(Q@88AXfEB{*^r)J&tcISn5{{PO~-Fct$+Ki>uK$f+ufh9`%1Xt|DFO^CcFE7>V
z{Q2cJo2Lm)k<mu8K19;iC-6B$mB43jc+?B3mu<i|TsazPwL#>*HBKZ9t)Pa-2T<lg
zZ+DPm>SQ4zvWMzqf|7fOV-h%Wejd3+=0@sdD*53Q1gb|oF&4JmP@P2SlA;c~WEK%W
z!EqAEt5!?hoR|cc+zhnpM9sPx`vC&Z(Nb|15G)^-5SL7xfq4ICk0MRrO`}0XX{29-
z2oroVP82vtlF~h=HjsxVr3FNuU_Z<=zZx2NP+-Z=F$o;+&X0&k<aZLH{}AY?AvRni
zJFKtCQSP4oVM#|3b;>nW@H;vd7^js&$<`uR!51pVRRC%oQk=FXQ3-}0BH$&GdvB36
z0-=Km3%^S2z6R8LMCT!x>HrrQdG-WvQ)nn!A{z3+41~LBrqw&mJ^*KlkbUe>T{ud0
z0oXFUqHw{ZEq$%AnWEkeL{gANsW%SJh{t-HLm_`$%`e-<)`>vR1hcJcqS<wW;w<*B
zhP-sJP=;c313WbcC4l#js9HWzn8*-1BTw-up?qRY(WpqYzZ0%Vpg@>uL~ESPFi!)7
z0qc)(I5tq(FpMk$q0FZW8VspTO)4<?R?!<gLHNq!P9N_(L6~xasJ0IcW^`!4@EQj+
zkG$HT3t9&_R}EY)#4Hobbu~%R7WLG%;u8X1HAI;ly-QnaM~OL)g&O&WK{<7R1045-
z+r9UzL}_);`o5v3I!MYvQ#BUgKdY<R%R4f`jR*yKijMEP&9BCn_zfZPEh{3R{Oq(y
zvf7Bak@+TufL2xXiHXPX#@@vDhYGJhHgTt!6J7ao1t571H?9xDV0@^oJb1s?Tr54q
zN|k^{hYBb&aPCwLBt!Fkv7>(<l*r}{0}RjPp*C^n)nv69ed`t?3aC!39t87+pJ;=V
znm(v1+QS4UruR(X;@?q%^>_W_osP8r1N+ywxFa?v&dWJZE_Vd#OyJys7(`J<9H2&n
zDi#S;!Z!(=7MK77_pG8B&<p9m7W1!A4l=l~u)9?;bpen<h(gGz(V|y_`lM+TBXUQm
zSq>aHLc+|8D7+x%k)g#TcFw^P*{V;x-+4H2cIV+B9a_lEbIpZ~$PY|!bh>SJhJ@YP
zRT`$*8RYD)3$O*}J(y`(O?Dg(b?=`8ZT7e>2`X8WKi(Cqhk;Z}b|YK`F3vC2%NZ%c
zz8RfpqwJg3rz#yAV?Ze7qG1|1HRVx?KO&8OYVcP1_sAt)0VJH<hpzreoRk+BHykh=
z`8v0V$Sb<n2DO1Q1@)6iQ>zk)Ty%l0foy@1OyZt&%916Lj<Q*){zHl=HMmc8-D*_#
ztrl#xTa3KDeelV%o6Gk4e0jOw9=yK3dilEDKX}{DuG<AX&Y$gnvO2h4TrIz@+P81_
z*O3oif4;x>Y_{5)JUe)M@OJ-TG75se>1uU-b>3d@J?Q<b88XbKqHeA(_h-|+-hXd8
zy?*&(zI;|adU^45*?seydn-Duy;E=|Ow_I&OzerBiJggU+qRu2wr$(CZQIVo&J)|*
z?^m^J*T0YVf6&!cebNVA*IL!J*1GRjaKt%g;RD*k20nasO{Qv6v)aRj*nT#kho8fh
zVORHbOHY8(*qL+Z^Up84)XxJej~<am`HxQg8aSSDh#p<`d)K}kXQ;Y7y1Hk8x%!Gx
zB_VC^Ccf*#6mTsHDhlBDvB&zUFWW^CRY%axHLcZ7?^x9+*Ln7OIFltmeS}W^eEInn
z6YN*m^f*@Cm2s1!uU6OlHuI$(rmvr)pH?3<fhqqJ|D;5aJCk?p^_HeSh51l*k@jIb
zdlL7MmZS~^2-EuZ{BbQe=4M6OxS6fZ1r9RQsr%?|_SQC?9m}ryFzJrDFZw?HcjM{P
zrX+jHf#Rx_pX;rGcvu?N9B@tF+h<)}!P7k@Ye|-yg=1*vo7;%^VaOb)8yfP}CEU{$
zeKV(iwel8qv9-5e%!~E(uo)B-B<Yskb<m{Q^=}+m_J%xaq6%vJ(e>Vn%d0WHRbLiE
z_4@02X*(z8wT@FvypCL$O5EdgR5$_vuj|mq%K^qBqkkNslIg%5y^<oJ0(06kb>!`y
z5?2-mr0H$i6-2rNJd9<r3)`6d0m)F`RQE60w1jL}XQAojsCopS{v;rxC$F;nFtJ|r
zY4N+=OZrk@`ieR`zjgcuUVH@w4K*Dfe-a^WAKZ@2ST*=LjJFcX@SW{+YoZBEHkEU`
z`x7G(z{5$?>jD=y+d6*CbYBvs=c?ENAXZB{fzAKD%fV!o6d~$NFP-$_rR}a^RGS4!
zCJ(LfZ=mD1%TpA*f1a-H@$=Q!DbpGwyN9a}Z=bt^t}a7WQ^)kT%~Mb3G&Cj)wy<&z
z(A3a1<4!|kFBD~B`)%j2;d<Gwk|K(VT6s|F1&`;n7mgjMlLp*6kbGHbo{59HD78f*
zkJ`W?^e+J+Be~(#yf5<nC%;^GFG8E-tTBgJmljuB#}u?`nDycMOJFhHTzx9)GGprJ
z!_)QYz>1ICOTBCojKyT8gp?n{z58I2xg))I))V%}eOZqFq)C;ar0AIrgzbhojR|z_
znePk}yTIL^69qV6qTbwOI%NlXEB6t%t;pZkkz3%X&oiTjW(QQ)@F?5N?MgaP{S)^C
zk(s5eD<i&JB%7L3pLy*Tme#cS0K}SM2k8CxsKM)@VRKF+<PS{p56HEA+nd~4vZ+gU
z_wJqPI`aCme0h2@xw8CkCLZIdL<5rF-re7y)mhTU`yJ!LjZVVe-W=TAAD3+6JiPj*
z+iMo*vlg}lD;JzhqKXWqei?+hz|o(#DDw}mJpT6ub1!VIQQy9HF8(RTz9zT7oO#z@
z-!FYX1DO0@BR7QK=S|}J-rt(vTUk6gnH-$6VS(#AN6wvXoj$d*4BUHZ=-s{S+uT{Y
zbB)?Ln|ST)9oXJ_)hF!c(yVFcm$I|ha7qj(Y32rE**px2dOF7_9}hc6hHrcTCt->>
zN8Z%5wWc~?)$vF-!`-nnpw-i3{aUs+mv5c>Z3I~M*6n$}K6C?IE7Jcwd1UU6^ZPDh
z@Jop6@WTsY5l}5%q430dIxyZjxP1hkU3jN+ZD`Xyz)zZ2uCFZYtbD%7vUd%tyEU%`
z<ov#FD(Y#<I(E_XxO;lExH((7ytfI7<NMm20F>38@gy>9O;G#&;WvYDOXHSq98{-Q
zZyX$3%AUykOHi5B6MPqc@s{Uwr!Uj@5VXa*B7Bxbt@074Fq@Sp4Fix%c*(kvt_Adt
zeeQhjS@HQLu}=iu$bA3x*|yNFJl;1-p=YG&yx$-0no@mrd>@v%9G3kgl{qNREtX_v
ze6N}?Ut;(e8bmcFAC-&F!s2H%O#CykjG9DVnxXNvGH_Jp(XF-UMxHgqNASoxtpnt$
z`ztN(i`le7_)z}s`~Dur|8tP0PjJQCr?t~P9)DjIrvLpN#Xv~#bBftFk@NF(8KTvj
z-U3`>cp=yS{uIyS|MYnFb#Tc|t4rg2HXqafeEfLSo^dKLzxCmM6Rq9JQ*1+zyvzlT
zHPt;FmJR_ue0g;Ba%Sop4@LD5RoVSqx4Y`*w<X>WK9xSz@;i@?dF2&WP6uokPlr}<
zN}PcV%SIk9->~yLPkbJ%U3`GG-F$C)h2f{_FXJDzlR4|MkcUqu3gdM!277paX784%
ztSRf}<Cn0@$xi||qwi$jAnR>?{U_nC<Ng0sgkp_%ck~F0W+=P5n~s_!?_Mu^N%gD#
zp!}Bc<<lhqYlpKTeCQ7ic@^BTCERU7`#v-CeY#)hE)shUT9eOx{Ojbf(}M>h+uL_!
z4q5#B!s@#)tEG|c354sOJ9G`%%hjppGKrF2((CrU<CSNUAWQMVs8;J}!UAb-HumO-
zjrqis5E01b%$ld$5>@krswvr@_Q-(SPq|cb8G2rL`Jc7s=R1N^c#H<f=z5elUPg;Q
z<DG{FPiVSd_T0ntWPdD4z7`#zRzfHE1#{#Dg*S}!xI90U4wEYKCM^h9J_FYXs8;ic
z>M!iy7<zEJ`%s+P@O!G=97HQ~@rswHkD}nRPMBhNSRvhYb$Fc=Pvn*?#U%<hPS#P)
zz4Yn&dfrj@f&%HS<xg>G|HsokOVL`US%e~QR)=W6;l(yIJf_H<$NYS6=^6|6K*dAY
zGj&A=_4zq*rM`rHeL?vFwWNOo6kfexv?0KkZw0+Qb#8<)Ywv+a9;pN4x4!|2#~YJr
z9RP7)5Bn(J)xSZcA>PI3GU?*wYnPMt^}XGL3d2pAeQ^JQ3fpuUXU`9UI*rVeQ2*T9
z8;B({ct;(5TX3Ej*%Oza?VIe_XPpUahQSN_FXwK1L)`3JL+jH1ryI6+%P7^s(I@cl
zHUVIvRJAL!&-unzYtuLBg0Dc;_v<tJ2<2;~tm^HFp)qIZ7-5yq$NterZ^S;)FADmj
zFY|hr6YAtf{7O{~`t{7sca6^6{Go}x&$`cv#XI}(WABzrKibhMdtaY#PyuxHI{P>C
zwC_*UT%1$e021fkuO;=C87LwXhlcK)pBa@aLA&w{Z@-t!m}!u1s6}4>tWW#SHonC#
zjyxP-hA7m!H~7C2dJ>q|mDZ*1%7dMtI=hS3hVcS!x$C*E|4PWYGLDzCs8IyNzgiwv
ztblg)*vIz14!*n|th2u1nN{yaQBiN}9@onY$OJK86m7NyZz$jJx|~F|&SD!|t;RMp
zwpj^`9_#CvVG{<AO=lDz(`L>-Jr;0W`REEBiGBA}XXe<@PR==1-TdH`F^Sb1h67ee
zY5KtZDQjJ~*N+ue>UUVV>H?1eYi4qA%#Wdqk<Z^zYq7DD<7Fd{xJd5Dc{?X$HXP{u
z)&YeR?UkH(b%>577#?IFqwIYibOfm0t=L5`(YuFQv)V)kuz@ih##hq|m{8md)ksx5
zDjoxQb<|tFc_%|Mt~z@3byWma|24#@SFMk9$9Yh~-GfzKZoAUmOVO^`RrfZ1jR=Z?
zj9bv{tPoz|*pjT>j+p%V=#RVv_aUbHd30)S<mKob#a;4tJ2LmNA00hy+gyvK9!tW4
zzrG<B*4M)%vNV;?XoKjv@8Adxzcm;JgYSstpYCb;{=6$j|2O`!0`HMVN6kv=_iQ*J
z-<qfo`Zocqhnw!^39`p(OaoU0fAVegm!<eVMb^G;6!dBCWy|<lx?L_{CJNr2yY$UB
z_mFIMu3^#M{UcL;v?RMJIY(3HiAtWdtS2T|njCLvu3n?1YyU$!U>$z?jXpgNh(3q5
z@>U5JKDXLV6L5ARiby$*ZPIB|_K(o*<TGg9qn79|kM*+0Q;pJATWlpm*Bfmb9JK&J
z+_^UAQyX=@M8HP63T;JxnOOOY?=^3ZF&FXAx|NEw3~zBV<7jSs#J0|hN?)w=DSv^5
z%{+(HxCx_{>n%v8ZQyUj9r{gBQ8pjm%EN`m9B6;MFZ;nrJQUH90KUW-qs1V&S&HaJ
zIE0VPs#BE7B#Bd_R)ETuZyKn5Pm1ZU^nM9fR{&wM<fdu0+{Xz*(lZ%Q)Zh>o4ve?>
zT1OBf{UMu+p@#2Y<UN8(XU54Ap3lljE;o*t5L?2?fJkb48>;I$Jrn%m-&wv7cwW8<
zUfv5a;6ciKHrs9ax)VFrx0#2s?pAee6=stvWJ<RvF;{<MKk@wzKgf{;disFlFQh2R
zO;nTIz4qF$tJY1z`s=pc@8=V0X}l|uip^-?==W3WZkl;gRQAM(+nPyoR5zo!<J$Se
zh&mLvJOZ=pMA`ku%`*dHeP`d~U0D;9&o|U%MU{6de&@NXy88C_wr<Gu?uxp0a838w
z1yo(H*Jj%T`bJ0k4xfjMJU8Z|TrX);5nGU~WoEUa@P$|oQskby`jzANHpYzIy6*<Q
ztvc3}M{Ey0s3trFtwR47!d0;yk0qa-TLO*rn2*+u22Ske+0uk%Rsuj1Y;SycA}{Xo
z$n+a#hm6}_@r@M&lEXI%9{?5Jb(Z$Z!yx~DxJus23PA1FIZ`}FR6p$6)2l_dYZqwq
zhFbHTZ<%FyzyVh|Zua>bPYMCy{f~aOt0|A3`KgF#!$FsBsA3x2wAbrnPpu*sx_vxt
ztdGr&?%H-q;8TABKKfVkv}-0Go($HpqDB`2WQgMXU5DL<iE1Lf<PyE+>t@HUWTVO0
z#N-7yK@8ml#hEjg<jZdqw-jjB4sR(h;*CppXECfVciC(o{tV=&y`m%;9M9L8C5oL2
z6mV3-rX!w-WSvg@=9Bp0vj=+CdhL{d2PM*c`MIbYUqm)`Ev;^@FNsabtqW;A-&Hi6
zSh2PGaTH5g>sQ-ZZ-;X)eXsXbbx6H$&lCF#OXhQZAKxQL`~*Lb4^#ShR}U_}FL=R1
zixu5heu=9WSDBw2eDd<GLvgW*mUW;NWK?`sfG-&sk}E0iP{T$~{J*h!I%F6!T{bbj
z^88=PkG&x9BLvUGrvCKU@!RkF%`r=gP^|yfv_t?MPJO9ntIN<bwPdYG=zt(SG*2t-
zyTfJ82=|v-!{rDovpc-PsNly1)OCtn<Yk;Xv9CYCOucCf?es#=X^EX8ih~!zX$9lM
z{|FO}sCg9CqOPlAZSF64Kiw~q-shEpT(g~%eByXwl}vV;AauO<n(5Iwr^u#$5amA}
zmL}ae>6XMt+&i!J;y6CMc*ttbGKR&-AlyWh*cTP(@eO&Fb1#>4w{vNGYk>44LL<0G
zohfd12vdI_c))%7gq(|XvJdn;S)3M|9+K9cQN7Mjjc62&+fkD6_!vg^J<pS8ytD*Y
zqJLtG!qhw)KNQdKUv7-$g$;os$;Nq49X2)1+!t?jpx^-wZnp#ks~52t5t8mm6+c9n
z{NjOa<u4S!RxKkC5tIeh)IKkvE*X$BBKtQxph~rD)_1VRG^rbHhrDV<p3W*}SJnhT
zeIH-t9q*AXe^?tPDRj%X{-*paCzvmDiD4R9ytc6YYduJZOz07C<F^+<5H>Xrn9aP6
zV$MgZ9Ei*aB`Fwhw7>WJSoN_r4^G1(2aAGxLGKPa4lzAza3lZo1!X;(`OGD5P5alh
zpx-|{Is>+uJRX`Q8B2$>6AJ^0aeM(7ypwDib4pw!ABe|TQg)4x{#*RfIm(udWxV)&
z`rZ5Sc0U0NwW<><A-RM(&eI4h4mVoMK|mh1u5hlBR{UtroA2t`)aCVbugD<FwXf*)
zNV16X3r%wD_h?cm4Gp?MIQGnPxWCAcGcQ~%6r(LZn)Zzxe3i*|5NP5tPAuF3Uo2*~
zQruazfOHIgM!0FJvU&9|aoKL9S#2nd)Gy&Uv1Z&qU8pZZkR=AZH%JnRuI%x`i=fY?
zOBbgLMVp(Oqqa?qIQo3BKD&OykztyBULS9#^!EmK*#+k5SyWKnKAl94T&`AJZ=WpB
z<?6*q{C4HO86?Aj&*%wb!Z#h;I`KHnP=nH=KBr`JogC;n2^)c#v%BkeBaZUQD@L_m
zohn8{J`R+2!yWAy<_AhV7!1R>4m7pHIj^GK7<0okcRJowxskiWNC#ebDX(JPq$sq9
z?;5mdRs;Mje^9jqZ$;dR+?YNZybX!aB$Hb8B!gjq=Y}wxWyD(0=qyiafP-`2Pf@xd
zxQfP??fsro^;}(Z_x{VyVkqt?g0Z#CNBwzJEeWj)<{W2f`D|zOCF=e9I_U&`>_YY}
z&ZkfJiAhU>OvctdnqTf|kr3`8N88Wi<3rl3`M$mhE``PuYvhgoFPMcs|6+SqZyD4B
z^egCWX0Rm=!jnUg^b9CE?<e4(j30T^S+!KEa_C2zWLfVf_f{V>d)?8!1e^ovB^a(s
z=3_7t`&4e<l9XfuQuP^2J~=MsEmH@E4<Ra|yXHdqg?u7u>ChM$8l1J=DRLEY^Uk#_
zy?E}jb>xm+`6x)Mrz?Q7kL3iTZG&CIuGh#KS9ol+*+a@gdub{QF`4D^Bc7fL$?-eU
zV|)1|oPiseiY_s13T~r~?|PxFz`>%C1TWob&k@aj9Fz3aaJwy>xd~T0)v{Ex7+_2s
z-CPzyu3*#FebR6<zRc5+iDmkaWMWPIO73JqQB=FE!|;hGWQYd~&1_LerUy@!Bh_$3
zvCy%WBVKjl;d^5`DVZsdXO}UXO}s4Q1zm%BS9D!KzCiiCt@Tps_xagqRil}?sklU^
zf??0IsO%@!j|t6Jtey?Zm(OujwZLc5>mU`f9|d{NIg-N@`(N>q07>nitZf-@Q3mWs
z!0CwPkF@8CHe8I5-r&|mf06V<8GpgZkL)k67Q0RD+C9AhO?-cVyB@#4%c`__*Dd%B
z@^yp9YcEERGw?}W;F%X%`=(i`Ysv9FXE-$f!HZ7e#dfmnE>|;v;Iu_zg*n12QjYNH
z@jK%Ad%JzXY7R|g8spksh&vX(UTxlMR?hSOF5f|X({<kkYIZeWdII3ggllaP(Vuyj
zp*cN%Of^1XCzMyhc}Y1tF}_dm*HwiuQkiel46)JngtTqua>JI~HkG0oU$u!Y>}WPH
zKm?}F1g>QWC*3D|dvqZ=3}#Q|%5PcjNJ1yP0V@)G0h44yXMR>hJ;8z4jQw%Dz}7>j
zC%j7BA@(jl*p+AdX0Q>`$lR&*G{YD|6N6iqa7-MBTi9BS<2qZ^*g-(kY|7>Vk@7|$
znvy{s1^$_*;fK*Oovu<0i7>W&WG$yrc>zLk$XAPy50>$fV}CuHef&R5-0bs0V@#3E
z@n$W+8=(qcEn5E_RN+A?<=`<fyt7Z$q_&AxkR8TcEv7ehi4fs}@%nm8cQS7mb$eCV
zTGZvO=T47EMJ5N&-Fe$~Q`Pq}qXKsfey0M9OHhZ021&<ijBa14=f+Ms6HtN1y435s
zRygUxBt6SRISfL|=qIpRg3YhM48%10qNu<-$+!@PDEoo)RaFq~hbJbFMU9T<)LHz8
z)!=KYuTlU=sRTJt#}sAYSxhH|<M+C97`bLeM4tLm;GTH`Z<kvJUt#sOlxBH79@s{2
zL)9=OE$f0ixi&1OVXk`+7C*dGHd^u;6Ab<-nQ?!l7sHO;xx)e3zm)8v6IdCQTWaEZ
zN-SPq7GzY+Y;@u5jKbm19mx3jOqpv{>4>!dAm{S?aE}kO3fbifwPgJoHVL#0DpeAR
zHt)=(vWWxvY$BO7z8PdOi@{T*IS;SJyjUM=m{hd%k~BB*@4JdXixsrT9<*%loV3M2
zNivCCrqgi3a0k!sOHW)wE%~8OVhDe3qQ>8*$U33F`6KyHH8S>eDPJl$eJnJW?Cxe4
z_;*YpXYZJwFBIP&#<Bn4Fm5nJ`HNTT7QrBE#*rOOs0HsGKsO7LF>tf%Dq5R6PjEdJ
zc|ur#zmUotkn~sPnLZ#?3Nj{sO;iZel!=9~D3q+)-IJEcfRR5Ha7C;;xABu!H~UE~
zECQ4iOJ9<a>4(0k{Cj0LaIitjBSh5y8i9yR<6n1hy3Jj6c(pD|*h7AIEvGE0=?@}?
zj&$tl@t3Nu{L9M;_}Ie7{mQA0X6<U_^A#o{OB|%l;mSKA?K*ZeUU?d`bU>witG;9I
z=Cu-&!I)wLG*TVH;5PWIl;Fc;)bo0eZ=knkLpHwF9rXb}U!s4wa4<D#f-(`<VTEg|
zqMUt+Rls$vyW)7|HYaZnJf0=2q!LtF)sbi?)#Ts*2^483*AFDa@`#wltOj=C;63=;
zwQM1mGRZ<BXsxh<y>Y1q1DwqT%HE~FDvrmN&lKYbNpxrLVn0&FRj9=4tA;_Xa(8v+
z;FrK&v}q&gQQe%bZ<~vq9C64(M=7S&@TT$*t3-)!P-!}59bC#)Ms}6ty|KIq&GyP$
z3BqN)PgVI;xFR80EkX7}UMff)%|K_`Do{j>5I&9)X3}&r*Y`d;u#aS-Rls77@fj?d
zxga3cfUKqLssW^7M6xWV;>5Q}1Yf_(E~+6tc+yH~`mDS#C4pMdRQaGGLfAmt)s)q2
zVEYT>%piJ@%DcZjl}x)7KCF7>&_c~Zuxq#eP3BpU=k~Q4e*HY$a)kgUw~`g2e4J3$
zBkfG~f1Zy0YcQS%zD6gje5dtX6p6@AZ4AxtNCW+BMkwuXU%w+CY@}-CHm2qOlZ_Ye
z-`Fy8btLhNXSk`Y!ZrCXQSdMw@!U*aH){v9G&A?1xnWo{eE@Y9Xz9&vcb3kD+2?*^
zr#Te00SemEOY1v{Dzjt5?{E;&_H*v4e=k#4ClX}>2OkBjjVz}QG6K!zLp-l8zhEZm
zD!*EG`(@Z?25TdP7Un|K|H4Xaxm1rWvAW>n0~cB2shD*xix)nqC_~!-qyKsFsFK!1
zR8efo<9KKTsJ}ve9>rL|>Hy)Cgv$R!S|`7)s#j4ZZEI>Tvoyx<iw(B68&t3)J(Q+P
zS!XbaV!yRF_F^1WKX8%NR-lW^6Hnl^u^BQ(O=hpT5-gw>IoycW?FLWei(B`I)VnBX
zPEIP3q~I5>uC0@l^*BR|oU;D*CuTF}vuk$ap%3`-;|Lxk)NnL9$!J?QBVd?%FhDHc
zHoOU~*T%-cdB6m%1Z-d%WLpM&lZGs~rPYX5pWK0RbSF6+3_XUKd1fGiWMrx~B*#W9
zBqazwM~95bp|z<g6OWbcB5YCh5;RXoDo6SGS+zL0E(VsZS@pw|V)^M!uRO|f_fIXK
zAzKTs_y#@Yn~g18uge{mneEWkh?BN=6gz5WSv%MmU4*)Ha}YU82$Qn}VXo&3v6wIh
zvS)iGCaZ-rK-2#wXE)E6bCq^`7SYXkh=^-2sJj3`U;w7EX9Yt)pQcmWJ%Uf{a?Lhv
zB-Kl~7|d%=x%vlZV{chDeU)PU<2|b;ml+)j6C@wG`A2*^#3(8<XB$}V8?a4uQ(x~A
zO-o7%z>o0<kD0~8X2Ij3;~2)k`dgHq>i&%uJv?bM#MH!Sd<hepwQJt()Us4odtY~+
zdr_%kbOXLBclzu}^pnA=3@jbZCsa04Q#vqJGs0M^&UWrgB-wzSM}DG^PbzziPXWl=
zeORsN7B7o%XzX|<FvUfz%#AfYW7`JQZs-^+79kv~7D(`_|B6kdw8vcfd82)m-RR~y
z%Ca`;jyU`I6bG6#W|<!MDT0T{JfU4cSv@Z1YMUUqcC9+|@t28^yGMAmCcKtdtKx}2
z7FJva5;!pZHja06D7E|$7)T%>ZB}3Ht?EgTvgs&Krr&}&HBZf>HB8SNWiG|}R+HB!
zDJc&qLO86T-DpU8-BQ{I#|My-WA}F=HItWyK0%6E#N$lw>&lh3Hut0Sl(3rrv^Y?d
zzi~Si88Yql@E*>W)+2`y${SY%>ZH%^SF2l)vVdWM?u6AF<8g>lP%-L+UqN;ZKMz+~
zSA}ZH&ETmbl<VbT?EdMmpURW4(3J;}<NX$U`vq12W20S})G}^j%c^;aQsm+`XPs03
zcuQYF#u0)0rSDpw3tNIJxwa=tI1-1a98tiS!lBT)mtYVRjX|-b<YFj8IeHDYs?R08
z3?WZ}mGK}kl6#1G3L{4t-zMs~Zn`8&s%}Sl0QSZNV%Q1&!7`?Lne)%Nvs8)lF##1)
zVnTE#p?VU+)~+VCNv=1(dxmhTU4~muoN03W{a4b}_y_g?L^vMwJ0D&tNnM@y_;^1U
z-^bAeq1@>bc!lbZ!b0si*_aaTEQt%asPwJwB;J9ecCc4CGU26T_k1es89pRJZ)o4h
zi}l3cVwul%q(S_5ld3b+cmo;(g<gCASsHO|zWnQ8sIC|_G6WoLusx9|0{f6I=vyea
zTD(^81rY*z7Z{Nx0IL>dBhBD8uVKFla+^1Zu(TVDh6aF%av0+nE@r_!mbH)2rXaPa
zMojq^pK7mc-7<y%2MA?gdyI^o>tx%qB7<mu!GUXsrwg~>g}ql??=~DtD!m1m6&xmM
ze$GsMuk``<UWKE@pWm-1JBThObqz6dAY8@IpeTO^qwJi_akYP^xq<$4S)PJ_J+2nF
zd4@Y!+8)lD24^qLx9<zi3wgCtQ-Q1nA@2hAqe?;cxWH?{9drJy2@~q(tNV+=wO-WN
zdK%3`;t8JYqt2+o9n}j%yv7<4LA?H}0jDy8^D*^Aehm^M@@5V#8%fYvfbd=ed&Y||
zHwd!?{lj&K3}O+L&(67FPvnlr7#$eKxUIO40p1<@R71{`8Doox=hffuZ&_MXV+&%d
zXu1`uaCs2L>q&I9cQQa^nuy4Puqqh684!!^ZQ<{~`rim4WG++5ev&6DVX%zFmWtbn
zJ)E0B`<8%8ETp4yoGc9t3rca^-=4s%jws(E+Hx?2tAYgd(db;C$9`Fa+psce$Pgl<
z`EU(nTuu`l<KG6<|Fe>0z`%y%1KZQl(%Un=WI!{gsly=gkn2(Jx1>D^AtcI((;aw(
z0#W?GACfl#kXXjKj{ADj@*Vim0v8(cY<5i+Zz*U#b#3iHmwXW3u_w8)E+Q_15P=um
z&%iD^_i%W4ausB5^5Z{qu+;NXoaa!T;XJw4(?$Lvu;Er|Wy9aAvGT^vQQ51A>=>eS
zBCKwA?WP?BNvp0omN{j-OP!{1sW{XhGx&KR*TLxrUD}WBaO9Q-v+Ja_3@LVglp)8@
z-8!CJCeSinVvAbknj>ccXw<A%amwp-=8sev#-TN~@7J<NtZi*P0jfrr3Q?}KFjHEQ
z_LI2cR**Y4G9cCXHZ5m>=YC!<sA;|d7UaOzUBr#gv_9UEwX8LU7`*pYRE?>@EAoHR
z{t~n2&yWG(;cS$qk=j@zvxt;1!vPe%L@5jvd)x}H7utMgxQ@5UftBEaO)U_KAWd7!
zc=lz9tDwat?dU?w#6cal%DT0~4l|17y)$Wu0V*o}Qwn!^_F-@E=Nn+^VmP^r7|`>W
z?Ewjxzn+?<5h{y&|A}2r;}<KiYn?}QH4t7m`-2hsh#P#8&;MZ>p8i>m#|(w~`7YVN
zd%9&2He1JA)g!8;+h~)u1>6;jnvM7M^q@`f$v=5UY5MX)-|Fi6sqd;)iRx|()cJZn
z)oZRJWlaYRD&&vG=iXi~f3G#{nTwp$(1IY1F)d+lfN%BErsPL)4*H)eFR97?Vx45}
zGHGpUB<E7fI>oY8nax6CvY0`fjHbOdO|Lz?JhCac%Kt{F*L2R!)Yx7P#M%=R!3py#
zX8HxOp`j|EnnPdYl2Y?#bCyepXqqy+$642Z*!-An1Iaia^bb~uH~MoNoHG%RU1Fj#
zmTaBol#oNhY@aqfuyI(68+ei)C30WPuR0*Hr>&_%T*={9G9r2Dw1S@~xf-fdu<^Pl
zS%f81LgIipI1ni>eTzp}ehHhiL4A&Aj;?cLCt#cLOznd<iakxugi=QC^lBnp(g@>{
zD_briVH`{x`zs@BzSzhkB3Ha`E@fsXl7Hkvt4ybPpiF+;xMl(k9=Z8Uzfc(A9trYV
z%ZF1junHh?=(<kUj8GeqKdYa=O)ExG-Ago(1nqrqsX%c#Cx{nZ<g-p;^pOjhJUcGA
zwZfM2ckB|UYce7Mv7<2%D!yVG?@sj0lCbtq#x8B3dpy;V5Uzk&#mc<}jx2l#Vz%*%
zPTsQDdpj@c=%*r#|HLgWsL3CPaAgj^Nq4;_rV7c>)!Gzyc_%EsLUvo9O=fyQOzhPt
zCmTrHC5K77O$ru5sK6uI$IYhy27-8(*^VW<sWny@(;ZvMuQZ=XQH~mijbIO;Im=>7
z5+t2#Jp7}|Dp2I{?x3)D$Z-IeRqn=3Y8O6}!8H<hJ90YsFJw%?mb^hxhCbC(lrEhj
z_9O*W4l0cdjxwpj5z~`>%KKhyewo7_PARe0E%xeBTWh#59qSQm;~>4{?34T9fp4Y?
z1$8`RNdC01+KpmF#{!aTf&&&7Z^h-54Q%zi^Wgakk>k>MY-V8CMwv*{Pa1=)yD=LR
zdSFTLgWZ`BB!RwD(h=$cJ~b`fy5d(HINt))7)ZZ&Bs)xg*C;GI#&Z0s=3ETG$R^iG
z2#LXMJPaJ}$-hpxWb2HVRQx0U8QrdAjlq5<(``91Oe|Y(JUfyjd+HG?H*KrG;Dm`_
zY6voZ*)7$b_?<?bsVw|777#nFVtS%>%G|a4uH6JZB_l~O;T--hNp37uXm(L1JC#4b
zRC^;~GgniWm9Q=JIiqY$R|*ue)M|<LN>598W{!b&KHXBDFLe3$@ANPy%tblq?76X&
zt+YtY;p;$7us045b?_Z4Yma)2e?<`f5A+GBC*;ib#^8Cc+v|OD>H=I+rYE#!Vnt+V
zWS2z|`hUL*A?A&<ew3jho)YtKR@5iANTz(D5>Kvs$^(Q`gLJNUO5TdsqFB)__}+#b
zeYx8#^@tp?x^aOF45r0>R^!S^YD7sgDeYP-BCtj1#p003I1c`-p~4cRQoycK8tlLu
zeZcpG)V(n&p(bjCp<dr6rZ}sGZKQ^wR(m+6hm(k2$a0Z&vpHt%&~mj75}00RyMSOj
z;wE|vY7kOTmu=|;g@k{N+Qsv~?ZmC@Q7DZ}OG}+D<i1rqVoc(;^U|%~tN12xH^cPZ
z;+-CcgN2dkJy-}qHT4#UcsUNQ&~Z8Fp>OfOk4^-VLJLLz(oZy2C+Gx;-qAqSI@lB+
zeaSimW0ROarh6ht4?#%@$BD3i2RegfUCokdRG&c$uH8&Pu*Rqf0v|AEfk>4V#<$30
zt2*!vtd#H%H7&OFsaA5+h{2CEOo(!g3Mmb^_7|l%7Irca5&10L;vO%5BL8jJxI{b|
zpqsgG!Br$H#0{WdzH8zHqfJ!@_i7$Cspm`SHHQaDR@1pgOFeiPE&`LaC-%!dv{7Qj
zNwn}E7Ai1BKo8+KJ7dhgBnjPM(crN9m~x!S#m`i;GRU1*leaDwO+jpX_>nq;Tv1Fm
zhmUF~60esd&SQvdT%blWaiG_{J2a^9YH7T+kuc8P=WpBAFkxj2416-o)Xdz>Z42m>
zEqJq2sTQ{s)?L*sd~~@>r&mLTx=QCaetT&~Tp?&Y%2vpR1Xj;OqCsFcvL{c(_u$%;
zGYmbKo-=vhu(BsJK_jiE{$nI#Q&OtWLf>4z=he0n-W2AiX+>1S_=}4uJj|`qZ&Qey
zX>zWOr@87oQSwv<;#9|=+I$_7F?%5){p@lvbpIK(DRk4Qafwc?bHv!5>&_DX$)+XA
zUpcci`ut?ENP!^^Fn4AlLfjSWQ?TOdjP-_c<g99po(RNoGY$Om!@VnIDUw`gsLxi%
zE{3?dlw6pR{Yb&NMc17=v8g2?bkyOHv~c#&k7}nr+iQdlSCoql6QKC1b^g<+7j~<F
z_Nr{%NAj^NGz^wnoMtRhaZV*tu;7J>X;_ufjDEa2HsSGOHh5UGDZt_rHWDf4l0Y4t
z?CN0!`A~Q@8^C6~UW^>Dvw|*36lW)^4xqfC_m?_Z=_Q|lsNAnGn7|ZHLcfw?;>>!a
zh^&-`6zl-}h8FW-bO0ZOF$lS^she{|sUbJcS-P5bCdZ$f@@ovKOmvA+>9F2}dDk^0
z(n;TZ1F&JGw6L3Y&Xl-XWLv3xzmUjA!1~Z=e7J3lzG`JPE#nGwwZY@eT;>g;9es^Z
zH$Attxv|9cW@$+1=#a@n+TGiw5^Qy#UkuO7!n+tP$=aL`)3G~9Q?zc0C@-{Twb!7!
zZHX)e>9RYhQ(SjMc$MDy);{r3JP>zx_Seu(u{-{eJl6sWJL3n|h6_uy<A%k*Wu6#Q
zPplF8Nofb9grq!B21&2NIK60QIxh_lDqNtBF0SX4=Y=ywRIqpt${zRFwP|aB;b?%<
z-joO}TYe(U|5ui}0Bh|*NisD2DRyk^Ncw=Ux?h)y)RDxlE0)=5=yR$%Fi~BzO4O0X
zsUw$V1HhuQ*&|4|1{j($Bc;z)1Vh(XSHDtY<(X{t%Kr(PlXL^W?0<^}yVRGj>}q-b
zilpObHjw1-1AWPo9C04~F=&_^bnXVr<J4fZ#eU7=v$Feuwwl*VYtZq1?z4cf&($qz
zBACw&Y$D$d`F&{zf_j-cxF1cNZ*LBsZ!Zq2l{VlHi}^#lN~h!!&a+ukff1`E$R+?I
zg0CQ@M2FUEB9YvD^}Vt@bx~0jso|_Vp<cEqMNM~7-f8P;r=X5HgrB4#CnD8Zk_rvX
zNEjF$#f>vGJY$q${tn%rI!Prr)F15XbCaSaP_!k30|vL>iCnjixSE&Ty)#vW@Jb?+
zqALv3>iFUcjubLBU-a(zS+6@BzRx~Z#{yl#VET&Zw$KE|t*Xt*pAwWjA`<a@wd|9y
zGAhYFZ88t)B%W-ZP}}cIaF1YRB;Sb{O{aw#C#-txlvfnx+R5o#S{r6zr<cynxxke>
ztL0o2H5=5jdOLPTQ$1*X&(ya6Ri-FLdgW-<{`??1Z!YzPv7WMRokTW*nYR1Py?BVb
z_nN_S3{=;doFI2Gn0QNMCIr4Md#|)%E5g~4>FXC3vd^7~TRCNAFFn`wbyB-{)(EG;
zg<R(=)avOg+c#q5tB`G=2@NzOqqx}y<SONxWq^Cu)y?Fz=gnH1vY+mNYTIPz-&7Mn
z9Xh#-DfU0nOzh(oaN46`_eqqXtktjTK3|Y2z>|juwi6*p1>aIzPd%4{S4`DF0uvCx
z&+*^Oj!UWcM7y;@TCgS6pUi<@88PR!HKF;?!a*SjRt+L6i!eVIIQ&*c+1<EI2T>wu
z^`kH!Q{)a(oWl;>dXg&$^@71jC%Ar;x>=zPk&8n-NeAd%EL}KRTXf1u_gdtXW>uUI
z&>bgs!9Kli!3_8nr08mqCv^k^sx97%;+5Cq_M3P~iOYKEHJ*^s;nbXabQUzY9?e@8
zBv#zCcJ9OwT=W~vM|E(uXK<KGy_N+~ab1_-o{T6c&72Xv-{8O$1{>}Dx>eUJd$Z%%
zy$(Uaa>CUE45f8hwdvCVv8+maf8wJ3s?e9F1!!H|8058xq}Z!UKOg_BMULgj?_aGX
z#1jxDnE+>t?5;IRW)#;&RBIVmoCoGH{{r)?g*EyPLtsf~D*~j-TvGC-of*Dx;cN1p
zF)ErBC8_g%Q)RKp@Tnod5$l3z1A*I7T{%WdgldolGtzZbmkEioAeV`WWfv{1=aqA}
zzC<{^G$X7jr}(6!={BN7)Uu0I>f2z2R{`b0-?L#BRB!rGntNYDSoQN()!p5ILWw7d
z3=jida?Y{UAkR})@$m<K32`{>h;e}ZQH-X6`12zn?<O%1>3+$~Rf9blAvShiA-XZ&
zJ*$J8mJn?`CIZzo+EDj3ko|Wk^xC8P^yL@U$zo#V3w#>I9lUUR^mjYlv&aijHJt5@
zc!y^3o*kK<ovi4bhAJ82SB(q3R<81ESc<5;rsikRKjHXDp<jsTg+{WMk<UT-q@_@F
zb0efI>eZnu{)<22ZmO?>YM50|;)xd4LYj8BF{fIv(KgS%<f0y@F{d$TrZr_CZC1T}
zDGpB=PY*wvsaD=Foz_y^Zs5oGr6>uJthFvi)YH)2SXjoJ5nopM*GE|OEwzXZ0H-c$
z%-oYj4b>>PEWcm@HRx6beCB-bUy6m!!N@6@C?`VU#19~-(ubxd><DAmJs=<NqBB@F
zBOF`oT_eQ!C}dNExJHd9ytQRH`}{x$UY$b+UfQR2`VH))jGx|EN8YpfDG^b**vQyl
zSfI9LwnKFd*r^RkIGWrQ#$&TlnEAr#R=8euBDi6)F%4<PYpg6MdOitn>I|&dKTVI?
zvYhFmdY&Yg*qnd52nR#a`nLsEI+VR*52yp4yA5Ktr0<s(#5TP<_5s5`VMSvsm-KMj
zruc%`K!3&TBMT~0hXSrJgI0sWO9B*L6d)<xn-c6gKkgDIohKPY7dS_oU$UOF*tUtz
zZ{^U#VBM$+X)BpLDbO>Y$GO6f?MorqkKvP<<z{s}VP)Z1OM?xXR6{DtG4{Vr8P>PW
z41W<!2-Z7n%o;n<cplU=YBT0N@<JUw*Y47!$Gxq_KZ!{mlAgZBYNd7?xCjrPIaxV_
z)$)HHf<oz!prWBf5i;z&?B@ScVli=3hA4vXcr3dsOp4jKC^)}dGt-lM=-%3Hlb~v5
zy%!Wtb<JF5{9ET`cYW@rb!~;6=bsxi0v0}G<sU_CR3l`cjt0dvM4FGBj{dT}O)J8E
z0Wqw1K3xe-U{&E_C{Xg^9M3CI;#K1ml4TMSEns5m`GF7;<*LaroVW@Q40TM2Z}*%d
zBXDD|4WsZ=*WY<!6n*VEKoK5gLS;AojT-!0FYS*UTg;Kq-zy`mmrPER3?ym!o23QN
z37J9wimqnu=x5FMF`Y||4L{wLK(RBH<mRtk-olKB@{Z)|tIg~nL>(9^rGMwWAMES-
zrgZ~hmFHkxhZ4k-*WhlX%RQB=m?0x{>RP=*FE7W%EG&{vh~a?UlikBz6I)ZbA9nVO
zOMkLQ(Cm&l4-_~bJcg~Q%$(h&g8;oLu41m7rGG|o0s?wOdk^O<*6Jk@kh;dMU_nkW
zF!+=00`9Gg!>`~9(%`?)KtMpCLE@^8RIX@DJ`KP@Kw4lxKqUS<HFB{tu`y-%-y6W*
znZew~#f8Dj)Y;jC0pM=v;%vcS?Be7Muw`&^HgvW$X0SJOa&mKVG-0p-n46nA>f5`S
z&|5jBsBFq@3LyK$CHrZ-K}0Vi>l;ys)c*R{-27Xm#0Ly6!yO!DptKcSQ1QEmxvNPp
z2}Bm0=0;~Wqv|Ue?Xt7&w%r9)2S*)lw?oU_-WxYp*!_90U2M#v{KKABWvVOcp7BiB
zQ;c<5{jYc<{Jc;Z#mwyf${^nWNs)W4$t_~Z_Gp)|qMX1Q1!0`CT298ZXl*<P-4Ssg
z=s7fdu(5J9D!ROCKF#xmm<0b=ssmnF?yBFOBB9bHwCSLt7p>zJs|Cmj@s+>9Sb33M
zrH91|Bl^t+kxw%3vT~8o**OW$gC`);qzGs0kJy3-Y`Mt_-Pjg-iq>x!MM-xn250-K
z1~gaWzp{|Tt;n6FtA{T=Ez7!zyn&HSmYk})<s*QBk<{|=NwESO{Oz?EPU4IBbop_-
znv9ChTov(2RFT&*HTV_cYQqvr;`k<Cm`4Q{Ps&J$!r3|(E-RZTiq}IFU#v+7MxW|H
z7Q#6~cQxI`u!F_OLtU4fkrRnm%O?CWP~||>IJVm_j@lb~d&zDpqn(GeM(TSn-yCw)
z-#U{rW=Y-d|73;%qz8h;gR*7o*6C0V;<{m3xpG5GjR&#F<PmN5GkXt>dn?`J8Z}EC
zxb`PfX5X*bzS#xGLI$^<6gK?VTV$GChoa_*(^B6Fb#43H8RmypndZ@tE)cyP!<We%
z(1XPXnX6;41|oAAxf!hC;!6=`^E<*=bgyU0GbO>#YIutVQ#A&92u*5L3l|X=bc2Cu
zR#znd3CgU6g1W)qkrNQ<f9-H=co8LkccJ|ir0X}Tn^xVP)YkJ+pGf&b+V;_zCV6{x
z@F_FokfyJ0T&s%tSL3wBMM~`o<NNByZ{r}$_mVbpkkX{ga01a!3`&MFM$?yjrq-b$
z29epoBl=1bVo1G#tGe@0#-8!W==k%*P^(3|lMcomt&#9*wQ<|%v8yjMpVqw!Kyp>G
zlR)1t${f2^l(yvTCf@HheXY!t<&=+d&nBSDk#E|Gj1r|KsOxp0dvlV}4AM|(vSt$h
z#m{6upT0}R;41Z;o_y@2SNu+*%9LHXC(vitHifv99P@xCqdF^<TXH$}Ho~BG%kQM8
zR{qJ9HHVEw@L;Ld0JL;@p=ZvL(-<8y)=QPV1AB^oe%`F<`@boM;$Bs>_>ba~|0tII
z|Ak@~CsRi|LtE4T56X7MpF@)jd(;SbWUfL-QfOH_q~%f{zc3sR5k!7vy@UN9l<jH8
z@2{sh&1+|MmFlAg94$JQ_NF=X-)G+zgT~tSc|%`72-Z%q=^l^?;AZYG55D3r|MV1v
zp3r2HsEVBym=kT!4!kY$4T_81=~V3DOZ3H<hZW)l*h*l<*{CIDj25a%WMWvM*afp4
z#OyavjV45vQO~1)$dZuGHkjg#6|_AOdN+rmaSw9emGfc<LeXL8cTjQ@Z~WOP&$1%e
zaF!VP;2KB1A=s!;EC_xdAMMV~B7Q4}bc<GW&JCnib(vyxBP&T2QBwJxy8(y4WknaV
zjU%HS5KLEWm;UtX10ZopyCzT+&1lZ91S}tvof=82h#VIwv_{8@i)YNsHWt)=qIQV>
zSitiMv2PW##h*z0*{2rnn4!0oo~jBLF!(Y&6|4$9YZhmTiMbZ9LAVe0<ryH1a@3jz
zR1wXTJt53hGQZz(G#$9B=Rh@ZqHtWb9&#9*9}FkaegBQkYJ$^B1VpB<eHK(lerD<y
zOQ!rXXG$8OWw2{Sz0;0xj}P}hV}YW3p}ej*bjLkwj!#8@xlMe3wmHij82it$zH?l|
zc!>ws{Y1-5FRgn#5%=3MGZpT?N%o9ip$<3H6N?ZGo=ql-_v$b^7=~)*OIEq&(U-D<
zy&Z!lD=uikk}HW%4Mgexd`iVFVh$#}OVL?8;gcY<XE${u&kbh&Ahdd-&RAQldh&X7
zgLqcd@1?xM5*zzzuZ4QNz~41o7wJ7<bK>y+7W>hJ!7A_V&#jwrS(=poKTNm(57UoF
z8cPl>gzCn2Dwu!&-Nal;t!^WJ-(2~)4-p>xb3hAG9PbS!<9@}yVm4&Kcsu6l>gQ$m
zoL0aM25x>VyL*8YJd0MNRMm2zcEY=8YW{R&s6#KvN`WYkUpsSG*#WnoLLz4Z%RD(i
zqu)*5_u??{;_?W3OS`x;yN#c35=CQ(H(rU=*+JTwRIzI|HH8&#MgRi*bH#AZswiFL
zLBrUeJ*nJ5tDlg=auYavE<uJI#(#p_ef#DR7n5Zl&~*Mc(i3O@A>GHyK*Qpzx6BGY
zX3IB6?aE(Qo2zQ}fIao<JUPWgMUY=U@zG-kB>caT?)c`BmVf{OnL-8u5&3^Z+R53&
z#+2UJ$>~a6yJ_(+vhS)s%9z8gkW>W(+Gtl{EY}YH7$$}75?gL_g`}0>*v~b&WdV_U
z#+@WD6!f|cTi0$|7ZtmvB20xM-P@aBtxL&Cks`HJO}9*Vw6YT8@kk-oh}5=(<iP9u
zhH>Et&*Rsh?sa=e{k<7TOpG#dO!-}wE(a;2$lh$RTXUct5D#H`XTYc{|1ook(<sv(
z<K+m!RI?Tc9c!;dcF1`^O#a!;8c47~7X&xdiv}oWBb~z?m>OmF<gBS<*}tNw)93ZN
zH7v2~=?UWZjFDK{1H+?&E1W~RbhaPJ(MY4kfEh_l#%_OoPek(j_mVbMkP*!gx6J|b
z*ITDGY46z<p3rUUXm&Zq4bW1Q0yQeLC!c1=1h?%zMHd^?AEQ2Y<-Q(UKOc+AOn<}4
zo;r2BJ#to8_QUeuOj-Lb1`j7#ujcz7&>OE`JlQOSySo6Tuel_J%>Fk3*$-UiO7^%9
znARQ2<C^y4(24Ccp<C1kfa0g1nm_P$1@X@N{e5OCl(*~W^G5LN;MBPm&KK|Qk5aLU
zhT_B`-}@!=Fvjc3B#b!bf^;SNBBv;dB3i_<Z(6eetU+nH8jE1HNapaHRx<3sLVqWw
zY5O1QGMHF*S#TiCzi@dbs&l4+hCQL#h4tiOMJY^IW&IZIm!S1y7MF`N__3D7{03ly
z8w8J)OCSlCF@SB|0v#duy-}5V9G0DS;SDdKzU()i5{xHx^}ykoSXfF9BJ>B>0BDLq
zQ3A3@AX11gCw!fpQQ0r3kern3_<ClP6|E@8+`pp4a!Io?bSVwWurV;e!h(syL$P$0
z?>}^Wl7p$KI^Ko90d6xjd#`#p`Z+O6Bwos(kDnVm5~hiZjz}qcuo)pqvZOV?)m-qD
zU8e6{cUP;vYWU&c{z(kpLP6@-^qKX$&q{iLZP*rML{4OshEpZaC#MLQG>aw7zqNKs
zWcZ6%l#o?mv|?~BWJ)QA!{#{5MHeqiz$~W=sh(gf!6`s=wRQ<b5SaE<vB;{=GhrQ1
z*eM8+tGJ#sMU8tLA#J8%7Q(^d!az-NJa*~zJ5|fR*u~gGBLHprU(D#pTqKQV_)vN#
z^c54*EiE*Ap}L=xJJS|=;&XDOVEt2_d0c_f1!~n!d(pqM$!eUmzb?kBu-TMhbOL|*
z5i2BTK@u^m1u~36Pk#=5$hw%T2)mQMDbmN(B~~@rFWlQTm9s)8mc?r)lBs}3K(I~-
zSk<<5YvX8UtefFRn0#^j5M1^ZLNX01PO6<W3UAlJ{Uyj#IP>8{k@65SE0Ty5TUh84
z=YX%%VFTuzBb$;f!C#*$8zd~p8?s+IlA(<k;0j(lfJJwb3%OQKm8uIF-wvLo78XMy
zyarzU&S#cfBp#F$c|%0dh=NrzUv$tq1#$j>RbbUZ%SXi`o2M#taAQ8}3B)HR**toy
zkf^SolqAOaPl5}jwB@?BP$tm@fYJrsVk#nydHaH^m57Ux_php{5}}0#8U$XGVsDWJ
z<jES5t*e?Bm&^f69<!(9TI_D$Pp5`RRQGLp!~fsto<SJFR>L6#tYZ5jV?IP>&Ok~B
z-JiCT90z1NMDqq_breb4t1FMbCHCGh=Zo*qs(dXMK}dCC{`5<ntFnOozNn-n6#)5f
zM<?zexQ2sYk$;YxW59etP02#pw97do2b`$42iX9Uzx0+feP48z`2;R?YRQ-RL279#
zuLaG3sV`qnIbqZ7QD+qP+ARXts-kIkP_M5d@XcxS^!Y<U)wV6YVfau2%b+%Fu>j94
z(o7k;h+UBXJ5sAx>k1101p&b(1O<`)e~Z-4hQ<~i06QmoTT8qD3E0cJmT`yeC||ky
z3zEnN><zrBw1nGY{?oHIh)4fyuE7QOg!!20HygIqxxRLld7?}be)Dn*#%o?iKb<$I
zB%3IuzE<vd|7^1V*O`7@=J$QB-q+(%?kT!JWB2XT)S(mW2H4Rti<)^b^t-l2V&C<9
zpcC97l>57B`=k1T0eqMlDqg#JY8YVfd+y58x50e+);V1D^jhDV^NIrRUSEqEvUBx4
zY!Nokg1gjn-SpYsUfz5<aSY=okn4(j`W$**>{*siyT)GMUcV=NF>ikU*!9XGOr2x+
z%U#p<(e-^%>aL0Z9O<gQ`gbLD$3kZaVMCtbVJPV@;N_wVLdn{Mgk{C+QXUEE$+Cr;
zXNT8jZu70ymp9ky*qJrx>iP{4@nh(XLwgzj!%~Wy&dNQfXWBdp>0)W$x9`$O9jUBq
z%Cc4b9LDX1D{D^Pug8X=>m7hKW2u?<H*o40#O-6KH+RyP{th|EEbYqB&#g~9l!N+N
zf)txw`cavo%r<z<1L)0(|7^X|AinbQW*FAIHe#sh#y6do^8g>K{`?sYbOL4v!sHe_
z@LpeipXML#zm(pyYzF!AWVbObD)$V<6P{D$hD^CKZo1roY2MtNG&#{_LIW7yEnK{g
zkzc61^%2Fl(6qHR{ugO)0TgHO^bICqgS)fXLh#`3E{g|ucXzj7!Ciy9ySuXif<th(
z1P$(xTmJ98@AuVJUEN(BRXx?y(=*fk>mHcp*?A^2*t>`SueFz)!SA~z<IUx>xVyB;
zZBLBf2TLMpH#@T!Qb<$d<HyJDz2%ClNH>c5_A2gf8M0HW!?K<jR+SsOQT#%eiJIFQ
z!lCzzKd<Uv^LJjV3tJR!+I!MbPIzpcWR>*Chne|EjtM%n=RL-Dd^$Rh2eu8?e;GLi
zoY~(!J?=dmm<Kql)!a>?Jl844HSR0>&OD09&0mL@bAjv&E!&hHkfzfHUnH_hI(P1i
zYVR_cC@wramkcyky<3L_y3@D3VY=+?y-gnO!1~Ia-g<x2&b}D+mMW?|gtjdHaP|>A
zGoSKEBgirD0_JqYt?rwBs>MC}ckR^JJ+JqW(ylT{68kxf<M!b>v15M1O<H5_<kfjP
z%(=cCkCd6nr+hqhb#QZstnsR@H_Xd#AgPjx-0cHP*J)2>?K}V@u3FJo$pDtCiA_H)
zYGTt^qwG&2|9cg`#E!6Eh>8%sR(`>U39DR0M+n=QR=`C0gmq_S=iQHWqn48vKchX5
zwXEqyGr#Y49>4KijDL3y?!ch3e%-vbh&pSr;J3!>Qh)7OW=!MoH*<oKPg`+R1q<+^
zWNTSaO<vcWjZf+jnHC=hY>+bEW0cm%5_zTloOFJg);i<;DJx}AwKM3=!WTIi6?a$K
z(a3AqsUn38%9e-zna-ZbYb@u@G_qhjvOQYHtTvWZ6HDZ6;V|5MHAm+iByr8ko{Gb7
zhSRt1&E`%baSRX*dfah!UqwB$++3a_;SJOKz0}Wx{i7!|+Q46hH?5f1gD*|~xAW23
z-yMy=HV*EB#;Y~_4@`$VgVgSw!+#DJe1A?L^AT+qU3ABLJ*h^EnzNAHK};m8b709_
z#)(mL=nfp1|DeD|^X!bzlyOC#q)Bm~u&wM_jjW{zkZhe>4Xi=$9boa`V)RxcxZpB>
zr8}$jq{FYCvI=_;8e+GaI=A%~JaOFn9_iI1Byjjy*sBk%)0?s-J3&K_^60A9(NkwZ
z(O7JQWJyH(uMZhS<9DjO{2k`YEpBYsoLNgR{K{((9>*u^wc^Re^^Y5e5BhcvLsp+;
zq<n|`+vinc#O6Q3p}!oaaIX>X%reHwMCW(%aD{c5ELT6Nq7*2kNH?6Hb9H1uR_+XZ
zyiw1oZ24zai#gn~pUf3HovP-G9Kwz9uD%E8kgv+)6fu6-M)ks*zzSR5#XPx~IF03v
z7eQk6v^#h`^<N67*RRaBr$lSq{N`9YoU<9}rI!j<vYP$(yvefS_50<zzrpe?w}d2u
zgc5kb+5K@^FV}o3(2p4(%x9a%a^=X4eUNU&Pa-?#)j8;(Z`jq{odU_`E^`{Q<y7$z
zB)Vn!7d0HDI|T2hr?R<^q9d%Swj<OZk*V>y!Oh{R$IE47Lh#t*aq~F5)}++qsa-6m
zDW00qYfY4-b59A$YcDa3VJ}~{MtdYhmZT{jj<MaAERC_<k_?ZrUC5T|E{vqpwlGbw
z*V68bA=2Yzebio44pPs3t;aDYHOf$gED;y_4@ReXVWRdSBbb?ExnIInx;uG++>Q}u
zF!inx5-|0S5idp=OQhc84H4RpYvl3^)Y-5TD&5F%IZnMtmG!}d8kH6J(UyCW%8>mp
zDE4q!7>mA!K$PpY9>EjO;|EQh++*U`@$1uqkEePnqIg$oEGjV97q6~sq3@B8ommJI
z)3|NaV_+*2QL$e~kS%ie>o#-CJ~i{`Vh5Afv=bHXE=X@?!|r4)8}hhQw|8uWHEtR5
zlZ<`YJy=~nZ7Wz8mu__vFevNU`dehdiDAM;7irwnSxZn{VZWb@(}?<Q*ZVN59sjp`
zlV+9rQ2CV7im?{q%I-;5c^b>Cb;y;$X?#I;4Rz(d^`E*OJZ$K%M3*q!?xVE(+^sf`
z2*FVnaKU2&X*@fP{m}_CIZ5eS?taW{IeZ_9f36}2yb3`^l^MErbUq?-D8vaF>DK;i
zRnar$%sucF_g@*|OijCNDW95`tmV_z+CW97a;=A6;1gE~OX>jc1*~^K)?dgF&rz5d
zYloHWm-QO&j^CT7baLM>W)UVn%$a*(O$3n86t-C%w9Z(1pY+!G9R3*i@dwe19wv$d
z`9pC3XHq71{_Ab!e!S;qtXJU~xYob_gvsV~GyjYv+F96LuEp<neP=+6TNf29P$Kkr
z$$XU$?H!hR-pu{Z(2M+#Wd7Q>pBA~=5=S>Hc~+Wh&El$~YK%6Dd%ra%=zl6WTAHQO
z`Qlre^D@I%c(voYbgJ*OV|s0H?%;H?htMbgQ2TD)NJ`ufJ)V07z6_3_!jEj_=aqvl
z_E_jpRhp<zLYccNSPE0AN9M57)i-5D<M5FVy5aRr8Pl-xJM8PQH|1=q!6W>*=vKhC
z?M5p|Y`7RR{cY*SxCqp#kjyI={2fkm{Y(ZqJ0>pXe01{2z6CSRc&OB?n|Dik@h|M(
z9+xZPe*{7^2Dp6B#WW-#wt)M~mjL1+tG+2dJ50Vl`9bXW;iv7J&b83DJ~Xbup~a`^
zAlcq^R)-wC?pldtz*W^W>xxF5{YXT{)w=)U5!l$+*I7DP=ztks@4ElQzNye=%5d)6
zw^3?2U0(^Sg!_O=eS`4B%}jzs@Naw4^t@kH>&h?1g`_3V)5BLETsRfGjvd)oa=~>R
zuHl&Hu|anSi0H*~Puo1hP=qqW5cS6llAlvQPo)K3dQ{2^!o{#xFlHe?=1%U7h1Mf_
zPtHDMe#mn7><kf`ZFgVAI+3#MW5(Q+!6?1AByaHKaE3%+8F+S$ENbgTj9ldz4)))D
zj3yJdTU3-5hzvsR?_#>5fh__n+?ds0a07i#$=vpb>E1D^zW-8WikIH7!X1%^ZdXDR
zVaO~|&w?2&ij73lQfWb4yv!Pm9culZyn#j$pI%mKA{>!wrK^X3XM%rs6fXlJbN$_S
zfzU#>5MHEkBk(sdISH}<262ohb)cK1L#AWIaHsJoulBIrX}CbZP_asxedQz5<z{Ek
zdqfm$SQ?HmK*PMi!1r`0s<8OhhL&FwU?pMkZ47O{M!-_R_I>2Ri&>8pdPM4l)N;Vu
z2}Sjde&PNmN;sK`^;(8&XDQoEZn6zjlNCp8jLKpiHZN`E?S2+WzeiVLXG^KMwbqI2
z{Jl)ldvtGNzhAwNUhC^r!Y!10;j{T*9QO3QZ+oHB{$R4_W{!5_@6)losCdBEBRniM
zzSGQKaK~Zie)jwB>8Ias*S_Va>E)>2$(zS7n`;giH)rlG$6v5(1xUs_1h*nFd=J}0
zAJ=BsakRNGdP5^drB@g?$)bAsclmVdC{uMKLirkp0~h{=!`_wJ`CT3&c0QzVgEF>S
z>ZJy4Qus~npO4PHPw!{$babcZPEI&xG=C7u$^XhE;m8{qJj3Y13jDi`_Ec^0PgInv
z_c?o;-hAiuU%!wsqKl@DuF2Oh+rt@TOAju-fHFli&$y#pCO9rtoa9%Aj_$2jT+f%>
zPHPSXg44&uoX16-9ko$7KN5=EmueCuG<s}JZ^QDwKsZ!v&4*5<t!bDrL?W*(aNw>c
z7z-_n=6nIh;Uf(mnd|;#{`^>cxh6SwP_01os~AU2m8-J=^&;Q;P4+%Vw>%jx&2(Io
zyj6>AvjFpI%1X`nt+*YU-BZGcj^fb0vCtS#P%lfE>Iajb_@5<bxUl`0=+Crp=mot>
z-~!Ol2t%Izz$2ScAp<WU8jovXpUW6RFPqaEe9>|Kq&a4Rn9i*88Sn0)O*g#e1Iw29
zpUsZh`5f*{1@hp-okHI<z>PO#Ejh7awd{xRYlBL}Pn-<F*q9<KCvHJFTqE?U#Ngtz
zOHq}Q*yktv7IYi6>u+6I*S}*tBlCo?3~E5wXzfFVaxX`^f-PPBzrucJ0v*UM;Cpz_
zjE^^Q@1W15ud^*_+PHu18hH2piM-+C{o;xJn^BXTY%7S_%L=K=wNBXt2CkA_oo7kh
zL~L;r9Q+B62tUqbvCvA;sV`x9sv2ekn0xtyfWTF#UdY~{?z24?^a>QTIvD$N{7$@9
zZd2I907ct0^UnEIu||R9RTvY}>tDBhwrKP2W-XuF^$7fn@1YH<tDhPLlvhm}1s0%s
z)we<{w-F7S8K*jHsW17cw0jN9IjNi@8^X^@-+lzM=A@|A=nn{)7^Q4_gdW#+`ni|j
zK`v7o#Ffw%!}D8+gS=NH0nK&@-goAoqqjyO!e1yNsj=Y5_!FtIkjVIfFQ$Pl&<o7G
z#HSL%bF{>#_zNs>XV~KY@Pz--k_zeVI)}t87?htb=4e?-;Ra8C;%c!*vb)?yCfK9;
zMpoMxj33W5b$O?Fm)hdf`XQaWPyC$;96pla-n&olk%<jyzK*@8dyh<H2>LqvUIqvM
zJ!{=-{MXkn<i$uSh-~4$Cq8ZCL#z?`-L&~Qn`5_H9J&j~Q>6%N9c`zjdTY1UNU=##
z#?$Dqz-BD_^KLmHxroWY&!M<tdO~B7!rK9qo-`*hdP_M^f~R`q$Zwj{W!;X!m&O`S
z;;9arR}|(snpfQBBsy0#<|JBI%;qH8E;wu&3;f~V;TCiu<Ha0!EG|alJA6r+rbZgz
z;xx%+H>JamO70x0-UP{dFe&=aMH+&|G}!hj1*)m6U?td8<r13WVr&FN;uSoP=A1^=
zDZN4|r0ca5FL$k+P7+0!CPc;BT9?HQFQmU~I37)FlX@1v=^I=$7I|ckgE-t^i&9+O
z>*eZXAfip2-*6#-&&Joz>4wD7x&W*y|CyiYYaC1)L1~7?QTlzDRSp-pt$<2xOKI7<
z)L}+b1ob*}$z$~_iO>DkI2PqHb&?W+{bSf3S~7Jc5{!}v>iN@{$%dy0Mol|ITK1S#
zY!`Un0hO|A#gzRSm<}S+b%{d;l9*MbPPlP^O3A&Fms0{pfY$1bS734++NJpaxBa9W
z+64XJlJ9^Mp&TnvZVh%f8rGz>pQf;X#EyB~a?7n_%<@Y+3M>H%tbH(Rp~xX84J)v%
z6nezPmHN~ecbg*PnIhsqXy-m^ez6IhP4g;x<7Rn_S6Mp|0tN*1KW5-oxd0io4dx2m
z(!{Xn+KnkP^eH3EH5Cdzo*c8AHDkJaNb415XeFMi%FDI1xDjJM^JMXkSg{w%X5`FA
z3@)_S{NmLxhJJ~|M!?81)>3-L5vX(3v4G{@m;dzP67t>l^f+Uo#~D~1ptpKc8zIJ<
zR?0Jxe!X5vw^!d>XXC*@f3f7f#8K+$LDD2EX?kqDXst)jvb3_qQ600--XW#M_RZsm
zC<{xD$3M}o$MG`T>XVFxF=z7iRdnbsaZ4dA{kh=!uTMD8H*;xaxw-wLF+~R<CR)ia
zPa6_VpZMpKS8^qFHW`)A1A`^(j<O*T`}M?r=hY{pPZ(@@Dtw~l1Tp6w1P(hhRzn(+
z0vReW19DgyFv(haoJL{|Arn^i@$m9!9Sp(yEmuh6t4t2k+#JPL;^dQZ1(~c_8MAu@
zI#=H=I4e`^4ISFtGSO2qFMiOIxM8|6OY@}zP$5ciyG_APTZY(f%rboVA5p(4!3{PA
z8*Sx9@|Mk_R`m6Qjtt}7nc<0&mEg=)L<qQP3Q!}Pf_Gg0juj%&itn30_9w}fMvY2k
zX3P0fyNWzmHYU~o4Pm4swR2~^%$^S2FPu>L)`Qj2=G(L^z0a4AG!9iohN>pKsm^+c
z;$_5f^5#cPjOVOKy-P$A%&h4yXMqm9gBQPlNx*5HsJRoCXxCS&Yrmay53mhTb&~35
z&$^#5J5(Z#xb=-}5t<N1W1lMtXw`CdUOA8yPZBz}#S)BjLAo2VaQpkikiRB`NpQla
zmq5(Gwn6b<S(DvP&PvvF%-4UrNzaZtW6&42mY%={6H?5+_Dwl}lK^a{URlg>>?X`&
zsXth*z;kd=0TD|ad)k|T><Wy91Qk@JOJ$g)ll|QN>QzJ=M$o{YI{s-wXgq$u-jTn7
zkJLUM{N%!YM~CJRnohP_=~EnbCpjK}`m1|oFq6`J<n~DaVtXBn&D6)O_VL_3lAxix
zL&M)QU>JE>f4x$uYuosnZS5Hss0+pf%G~N0=89XVk<oDt;zeSb#)SXvwYv_`Quz$~
z^YlEl2ylZXw?6%2Px5|1Iq33xiIo_5$yl(3;o61VS}c80rtPA07<yT3Mi`R>Wm&G%
zQHvlI*K=CQhW}v88adg&UlkrlaZMG_tmE^2q7%7cPRW3!=|w)c^$%+;z<pg^%`2Uc
z-Nl68JeQgFLax+t(fzQkV~8LL{ATw@sTz;TMjF<dv`0EM&o|tL5R+U8_V4$UY?7lR
zbL7<3?Mh38OLGw<?~~)ZxYkcu+H-@3wQhc>#EwZr10EZgMR3D=frJ!0z4&*laHZio
z6xdyYcb+FUQ}UQd8x2q5Knwzs7X6)oZN)FvXM|;bkCaJv7*~m|ePQl*YO2qRYO@5S
z$EQe@(@9)ArJLqj{@kxvOIyZ*?t1ss+#xFVLyQArNtZ*^5!aP$t7D|M1oW+Q4vRtA
zrCAqN6feNZmYpQTR!55&T1ZdBZck7I)r;g*OL&KL=T=hu-42s?mG&oR3(CJQhJRuw
z<PY(}TjbYNg0Tc09+-f;ezuMy)T}R}iCzVV^e;8D4G((|hBYnU3LUAJBE9qWDW3}h
zA#p1YU)G|#LfSZA8M$7uVsqahWIL-c-wx!BHY$EjU7+tPvcUwEZwqSlM#xe3ki4gD
zdiXsuA%FEj8vwWgAhmeG`|OUD8M-_lVFyshG|vkRMT}9!rR8940v9JFNKgR@l5!J*
z+&S}V#tz8p1_o)G^a${g1<x-;2UF0}fFzHO#oGyJitPNihJ^PK9~Ql&0h;%qP=7kH
zC>G=oV)++zeX=oVFkQ3vG=0=SQXg(NLj_`H1T}y*fX2;8pEao-SyVP3Ma`0?*$5v<
zXNMp9ErK%|CirwDl$ZQ!2)@jb>}a6)+6e}YzirxbKfhQqj6~bYbuS+)CRT4A_8A?(
zACnaprioTku5#7)G(7t4Cm&x-Za19&yON8!hd#71c7K1;`@jr{;=S13mONHk9~F^A
z$#Z9WL@eFh(4E_07*K(8&GCMFUX*PRBZ5tK0vV2WvWlIJsFmBL;5+mNB-PLRSvPh{
zxb<p(82r8hRJBJyFu~ZsGUP9BA24KKKEcSbGcSBaF}3(GW1%h_ilhYYoc)2qf4(JJ
zm=cx>B=)u}o=FH(VCQvLB0L`j*wzRH;*dy^<&O0ko(IO^0c(8Q=Fg|YKBL6>dKMUA
zc{q;!rgG#%MW{O$LG;uAhHHWk_$Iom_B9Pi3hP;Xq4ZUeUGUavH8AS%D^UHTGB<pv
zKdr!09t<7>yJov#d4E2VI*_P+OFY;Ft|?IPK2YJoC?FglD4!J`R>zfPon93-_vgE}
zVRnw>)EW#QDzxHj7-kL>XheIql;17&#)?K%xlLIef{n0x)@eh4Lsj6A6HJveF_=do
z)hnrYIQtgIHMgYUH7J#5b<)`#5iLEp)avID=Bo8g+Jw>w7N}V^4K_<q{v;Nq3M9}n
zEl8-BkOTBHD;VAHau4sI?QwzvC|Z>s#M)7yXG`sTUkw#RzJ217AV6NnE)jB9$$H(A
z4}2`-k~l)!#I|PkSE;hCDuI6f%qT#SvLUqR)?M`+yjX!HLS5qAaU3d%e|ev=b0cYq
zxIkE7SG0j|H+T(eMOersv-+;vXhkwiD9595cex~iW7XqeP!&i+Ep0&aS8?^zYt<bd
z-YHYMi)rIJgAgBmTJ8@G0wo=7+4&80Je*Lz30vA!bR}7B>iG?227K0-UkW-p7aBc~
zKwtZXl^k68FRN%AvWo?mCiZpvK&*xI4zDZ=2J#8zMSIHGUS0RuJVf6^Y>Tv{sEFEv
zcX+6lSc`hE+XcLpBm>{%A6=_3n!865BL}*WChkwl1sTjOth&*v?|yvJx(obe+Hw-h
zd!I(bMENAUe=)?tbRuT-!`lvH?28g29FV5WHE-58N&^Ot!5dhmJFOhXSdo_ib3<h!
zPt;ik`@Zpyp)>>6gWP8S#{+`Ti*32t;y^`K=&i3bJWY!!uk#j4Ag2}IO{$;N?iUnC
z$YyBd`9v)gy1HC<PoXqy2g%8E2*RZz71(NUvqASKPCon&Qwkr@^*YN0hi5~|eolQ~
zl$)edX@ghLd*3z}k>96~>1l#Y4*n=woKzBEu`EVZXz5Ko8{<!<Ovv*u;4G7O@}H=h
zLsF4M#re&AeiV`X_vht7C&D@XQPrG?0>1&qh4ydeA*p;u*cO89<P_`reXU<&iuZA8
z6eHJ8!h7dkbRU!iI^2@Pt$K2)=r$r}i@`w(N)qR$D}U}B<323{YqMjYbsjWwT?Qjt
zU7ou7|K<U=9K0_{ZB7(*)>TZ_xlRjrHRsPh!Q#laEf)CIx~u<@LF))WP7UCaXSQMK
z898wYyHe3WG2k9H;M~a(kz26nGA`q-N`F-MY_BjCT_uJ!hXli7DF%@XMFf2dc&PgK
zz#cKDWXNdmUF;ImHXm2&s(nk2hNmY>?Za?^IyQK#MRvV2M^oW@C`)yi=OH_RFc;Iw
zNA&La-(6$t`tPi48_n$7^>(=FEJac6DQg10@?sC|m8q&OR_<_>L8H$H!r4tz*tpZj
zI%kR&UAyzi8dD=|7VSTfEFLmRNJ58Sd^`JehyD$8Rp#DAVr;0$)9L=va*Leu3!uXi
zFsuAG$xhSuCA#1jR*60bhR#GPWZv?0_(VBsed*lOZgG!i@%w{c)T$d+1N2J-w>o`M
zox8s3{<<MkGTT!h`4Z=b@0rHW%sLkFGDFwths>?GWb1kAGGXeqmM3IvQBM!P*cSX5
z`f#r$N>U=yHCoh-{i`hlS@M^r<~2f-dUv(l(vRiI^gX-uzQ6U1d>rvQ<RVi9R}y1@
zG(GD6eH3*k`IT6!xtG}D(Rtk`tbtt<vQ=}RWn<E&rApkVx?#Z`1Q9owy==7_O}8d)
z?_Q)$)`uyO2?0+xTR{MLjVQpe>oP3#cu$wq!ZXQ<8$oCTMny?@-ML=*2<7$fULbTA
z@kB{eHu!}0JM(+*g7ZpxH@j_RZ~c3qPU!N1ht|~JMXt@bWK^7}l_oub*6@a*NaW$!
zhG-hukxOJ7zm<+4AB`y2V9G=xok_+<KBCZto6KE*0i0e!Ni~b7Fs7cz36p=ng|tXF
zc5)3~ZlTYk0(x;t_YH)6?rx{<r=FNL<D`1g`{H`n{2p#d{Z+bOc563#I*EJR{f-v@
zPCE2H-#lKNlKMMs(8n3P9$6?xweCzg1pEuD^}o8>?iBiWVj=YWEU9KX9MK<zPpaiN
zkk=dk^rHRo#ht^;r4xhH|Dhl7^6PP(>Gj5Zqc+aLqHy!y-fL9t>%)y=@8e@>@BPc;
z4}+e~-fX6xd)b?(T>hSaM}xQPuY*&ZKW}Omdc8#hR)zj<{4;cZy?kXJ{kt}l>|H<-
ziACsc*RA)x=B1?fX;kBHTBe8R$>!^$tkVhUCVx+W_or9>oddpSq<`?8_rG5Zdi*t~
zjvg}C=blfe{9oNK*8-k??V@GI-bwuknejaxzP>KCAXsdSlwOjM6MFi2RU6QAfByT<
z;NLwz>C1lZU+Tet=i=vnJW`U@-iM2+<B5Y@gWf0am)Fv$o82@6-xv3j;m1#9X{*Z<
zUSzl;>*KdSGpED_Eube8AEFEzy#jg~Sh-q8m?mTPo*&o1lb>f|hMwux!IKR0G4tcv
z>m%a~i%=#K$}q0Ptc`a-8K(7^y?>H7_G%S`*%lhdl4oikI}>u18VR*ZY`Oexs|%{3
z3#Bt5S*2I!WW8l{xz{dLWrWabGcT2^Ws?4P%=k&<Mux0JH^xZyam>7ptdB`jT=`kd
zgkVh{7iU)wgo|^G_R0?vj!F9$=Eb*xRE$avRB}lZtX)&FP}wF<oOW>+n{3%V-z4R<
zCH~fx;^zXT#_^1_k#QQIh$;vD2h41C+}`A9$YWa2wCabsbT1q^tL;!`428vkJxLov
z$4r)G*+{(MCR}~IB)Kkjs%1|%IV*X*k>rB|;CFCaiyReady6s^=R>;j_ob6Z@9#@A
zy{1$oc5d<K!L)Ye?=D8Mhg834VyOfkHC6|g`+0q2tmdl_EuXfGkaIp-7@GI*Hcne$
zQY%okY|^EAxH&Q*AD1zu<5s6s(eccev)gKBtq!0Df25`}?|3b59h?5bg;iZ$%=VGC
z%-sru&eIB1;Z=@7=R=FG{-A8wbx&E)^;#@EN6B2BpwWMAi>nJ-`GSO1ZMV;ykf?-#
zrR62Tl8~-}hZVt7%#wgx8(SX3@R2pa$uCB3E<9~iTvn%8u81A)XA?l5NhQ-o#+>{#
zqvAWbx5bf)bF?};V*d8>J9w-tFQO`%JY!_6yf6ZKr*{U}s<I>^c_Aoc#HzYHBI~vx
z18iMe6;ZUdlL4Nnsf}1$!^{MC*Njndwv|j%&0bmCk+U?eQL$dp*^^&n6l8*XOU|ff
zbz~gKgVi=Eq7fZ2B{{ee3R$y4lqeMj%J8X;RO6DE=|*W;^iz@y_0zHJMpv>-clUYB
zenJql1NEAvn9Js913py`ar9NV(Q(r+S&<1Kg!A;&H|1NDy78IreMH3>vmv6(O5;)G
zu5~SQ)IVYFSWJ25!DR4)R&JOvO54y2n$g6b)wc*|s_TyOLd(vfbPJ{Dysw@gMMcZu
z$&6IP;+g3rXu`XI`Slctm<5z&(j)G)N-Zi8+P}NF^P4G;u?iTJ3Z}I^Q$*R#u<69r
z6{<yxnv*|^OI8?@Wz0$-wL4i_zvk1b-zpAtUFL>(T?ipuJqBPNP`<+%uY5<Bh4%ru
z%SPz(7?S}G%v}rrXZiX|k@xYfs@wc&(NW>5&@X{jn+A(6$-Ix{a(TOYV)Mz7AGO1e
zpd<sU9bN$o3`d014!4HV7#yZJ4uC;i0)Qg!20$oK4no}h1;DUpq_ITkDgk8xe<Bui
zcQ=3%wWE;8ON)CztShp}<g~S8Ak0QY6mq7*1yF<Y7z#N<?G98Di3*jR<(XZ~23yK#
zkcykAyccD?0*2(slPhEkvik=q`~BHhQ9Typ$}KS@<$Yx5c$%ImrCkk+6_no>biJ03
zyd$<CPX^_OihC*`p>dYshkBVK0lb`{<PW7tr1zKfc$oVUjPM8TjBOL?wrl*mq4noQ
zc#wfBeS9QEKO+YIr%=`l0DgF>i=lWlMAC2PJ9AY8^<W)U4%%RbrwlUdMHT)E1j{5Z
zpNva#+&a3zVHBCbbXS^n1af5>A5%Ieti!AGjrlT!0C%5<Eqzo|uGjMb*=}o;tts&L
z)HH04=peo)E=toL#jNm(TRVGQKgS_^d`_+s%;<wOM|@VU29zo1i1(FuM=APEu>@7(
z;e;w#aYB`>plzd^P$dT_L(2tKT0kj!ir@nDxj3|yy&v8-BH)HEq#z1WB0(LX!GSa4
z6y`{{2qA)+!t-WI7e8AV=lLE{V1EcxX`N?eY@Z<?Idz?80cwy}4XQmG)hb?2{h+4j
zY;2!#=cm#d@uS#2QQ|}_4fa5|okJoLjKX@QTu&-Ao1Ibq^ifw?1+DUAl5tZ$Dr)+i
zrNOWKtx}dOu<N8b+hW`NqhWEG_9NwV8ApRZ?BMpqf90IRNH6X^3w!&opi%rbe-*a2
zzeFoKIQR!;5YdYcEZ&Pa`;enk=p`Wm4j&GM<Fhg`0Ojq{BJmlScu=Ms%H$G@Cwc{;
zLqp4r$S)5c#IFJ+Ehrg;BW2X>i6@N%2kao&IaGv{nKrg%whi?c4a*SNi4wv{T?P6>
zRq{6vPWbb|h6R6?_e8fFmqT}c&mp-9PkusqkT6y^!PWzt6Bu!>MvUkh`(S*Rv*jXh
zM7R-~Bq}fZG;T^?0>^(7?od}B))<DupCxEJzx|vq#`&FbIz98`LwWlHWB8bgKA3RI
zJKr$pUUZlLE|lZ^8qd;t^lM=B0R=wTaxz#1kb?+gXU~be7EL)MymT-GB3Fze`;tQ-
zR>;rujrIH)|GhmSGEA_j1nEu$>va5NN+6`fm0(~ak!6tCa~8Qtm)4>18GqeR@(7v2
zFX@E9{TIxXy$EL}F^muw#R%B5UoU?@Aejp0ZY`d6P}{2k*<|N|HKd%<43-txXr3pK
z%^gfoT}37~S|s8fh@ZgK-+V;XCb|aDu*?LhtN=7<GC?{^fc6fmkyH+mnhJzV3HkU+
ztDw&m^5+Js>>@pR2sLwTBC%NrRT&7{!{Ui4`DQ`%v{+}$O(RRKR>{RCK@Q|5LAp3t
zdr|42X=ag@5QG|a=6)%J^sP@fvga6=lq0H4BD!4w`4vjbct#QJc7Xf<rR6+>NT)4A
zPl7c<gM{pKzGQnM<%kk}KQ%hNNTxo5_MXginR-yNCPINWv=^O-b~!*gAG63+CO(-~
zM7tOuPYxY|MkGocIvGv>uMd>>G=7-AA^Zq6YSbbig%2h2LE-EO>8uEC%m~IE6yZM;
zK_xOD7-fResStJ&DZ=RzL3H4tWD*2SXNvIh1Q4BMP%<t8rZR=4GP%e%bOcdiOlAVi
z5IPEY32+|=7(EFjA{Pii`9J|ajssB%1yS8#G)2aNq<jG1XFrXol8B_9!vkHVrm6UX
z;=T}z$hZQkGd@`+5Q!A-z&8M-98)&nYf=eCT2|m$ha}?*If97FF-&P=^3*H=)x4i9
z(+EU5$KYATCFAp1f@~u&_C800bPNF+M^RgJUKpkoQ6LRn!1opMHW_Vz25nTHye2?b
z1E8x8&{YHIsseOX0J_QmT_u3-7l4ugM$x`_ygHUhQaXG_vp9MJrbrpZ2U?1tvRL@^
zX!s8}80=Buc_Lx}76gnT9C36!bP-)4fYSr|&@VA`JTwtiK5R5}MK4_*fYLTP^Ex{7
zGCK1wbmkfKA$GAoO0hm1F?0-M5g8@`Z96)^I^WR&6Zwu><dmBMC#XpoURjh3d=vtb
zq5^2qky&CPh$w#opkR`L=|Vts=s{(I@CBEk@QPp%9coY;C;ZMVDExCUh!Huci4oqo
z0R*omf*u(Jng@u`AOwYz!>5Db(@EgdiQv<L@ag#Q>A3Le*zoC?@agFA>8SAO$nfci
z@NMw$1wfEx!aEV=_kf8Hppof+!ky1>EAv9}WUqm8r)Yc90U)Ud7_9-)k@*+loD(=_
zRiSw77vbOoI3T4^y!x|n@D`k4=mwl%#2TDn!U~j@ptJy`dAOePSvb*rG;udU^rQ!2
z@qHMK1T=AWLG*-sVYzJ>r9iZz8-e)bJ7Jl17+NQ^q9%d(#9LwIWf&(TH1<E<Aco_>
zq6)ag0ur#bH;DEyu&DqJGl;};_DVQ73vSk$1RUiBs@@N5N`?a_^P^*33M>DBp(Q}0
zQ00$DzYrE3gh4<+E5hcFr`!tse8cCM;tN;v<!>L(4sn}kCyWNzV~cJd)fB;FOJ*Ha
zmvS}mvnross3ly@^hqC1B5|8cJxrh>oUu1?_=wxrO1H03ZeMNOzRJ3R3g!dTzrZE(
z5`#xwLHV<RAz(O6ATb#13M!rsEE9&CeIx>pxqyl%1CzPolvjwr(k`I#@xV4_IG`&}
zeCociate&J5-J4;Pki#8uyz6rh6rlWHFtdcuCQ(lj1vp$P%}4r+K#Yj1Pp;FQJYK{
zjK+u~NGB9#nVe{3VN19L0QF-__}e?Un%T`hoJ+zH^-bZHd)S6%u6Ty-z|YBC=r|j~
zavm@k%P8WiT<93<!s0G4ETbqzI9&1AYr--PFtqI`Mf05Tn5)9dHZUm4gy7G1AljzD
zqDk09Rzh%vEr_8ZkSYd+9c&A#t_y7HgPnZ@f`8iNiRi&dJE0Ucam2?j2#adLAQ+)g
zxN=N`Dg$lRP)wt&LDl7fWks+%kw7rKHK@Eakdp_csmv-*LJr1?0mV}p7*1ye!k!hD
zlY(I(K%r1&N5`8H78QeGK|rCvW}gP-1)9GgH;r0=igTd<7n~CQ<_;?u=n6YKMgZDI
zW<N9sQDz4IOR<K{5NC^@9~V|;g|Ukyu*4k~4%UYilwrhDft=K+LFvnX5o-!d=jUXW
zPFu5aMh$|-pX!hkXQ;^cKh>+;ozpGJ3edNLKRKH4U-J}RZ6rbX7pK3SIbxRd)6^8U
z+TvMW^P}t2Sk6qNW1=r~AlygEq_w!L5E;mQGD}o%07JEDbZ-Jn3oAq);yHqEL$Iq2
z@sx&mDnUF&Aev+N-O((g_`%T$X3^3Re6#4r=nD;2h&JT@vArpUg_9LRXd0aq?G(=<
zN$_bDzdD*_1YZjh&MKM6Qt&^0f}@=nOmu(ZGmYXijo`PkLc}06tdgHhun7vs@Ux?5
zenJZ+vuFj#AG2t6h^1LHg$aP5Fo{L`ZAcMFx@mN1^hGjD<Xe%$Dw)E<`_>9e@ae51
z)H*2wlTRk}X3@pb^@&jNE`>=K$b^Dmm&Sz1G+GIwIf@T8xjDK%l?CdzBxGp>|MPzu
z-@I}9k5Ck%`4iuVzyxaM*qgF4WN8dvmS9%~(w4}g@HS<|n}u{Hs&6K%LCRPqKbx4o
z8ITms@)I8lY%+`g2-JNg)9A1_NpSScC=@!VYyYdLjy^<tzGc%OC`^I+0@WmcLm=tD
zhL(hY-$471XHdU?LQ#YYlHU-PfpCxFD?#v0qiIZ<-X{L<g308XRq{VYDzxJ+tqH$b
zbm^NZK!U;%e2F)Z6aKfE{zp_1Ju`+6NAPJ3zcIQ#o@J61A`Q_Tf%<DgZDMO0of2K2
z%;NrrR5&XHWD?CPnfit*F)KvJG@5G^-yxA@0}8P;<X-1(Qm8f5P+YEN-XI#6s(h<L
zWvOooU<wT-#ak4W-eM~P8F_Q5AR5CA>IxLTkvI6>5(X+yWodZhv)>xu;ty>Ufxy3E
zqRt8_j&`Cn(H+6ZV}*o9JCT{_j=qIZ`7Jt(rqM_QyP^<iqSw5E55+y^e~VSjn?UIe
z%XpTcXbjWnx6FVBpy9vf`HykZZwbp}g8W}b|HnA-w-Cg<IRN?}keQ%XnfzyNs2SRC
z8DsOGj2Xd)8UW3dc$S6#kwXoF=CJ}aQ4R{#pgEHsr~X!j`kBm<_&>OeL0z9;uATWk
zqxNRP8#D?3S!brv^#7G!TK^SxsG0vK9P!XlK-09!45|S|`OPM19H|L*L2t=UZ}LnA
z6+=`Ye@vm%!T*;6G{=J8u!UxOB6RkPj<=|9fS@z%s=Tc(3X^9h0+Y8D3-$d!2@PHE
zrsHW$oA3Yotiro@B5pKl(BldJ^FspV{%?+ZJ9@cVI@mM)uf9J2m%g9=AN$%`8N2+?
z0PyeFYxY!~ek&u|AiaBs#QpA_!2i1e{`+t_gPEu6+ksSD17j-(D^o^CuT!04`&CZt
zS7M=$rTI}!yhpRhgNA*C%0KkFn<Fsz*5izrEhA#v#}cKKwYrS{_J}ECO6b}C7_CXK
zZ^j&U+27_NWqP?U#G|!fI$-y&-v~Fu^bnM!&dtdKAz1mYij`|-`O@m}5_f1*%Yk~f
zvp>qJ|DpB`dr_T+H#2~h#!e8PrZ~{MhP~S7>smm=BJcQ<#nR;^>-7qs%~%J@&>FCR
z*&``6KCDI9osJrMf1x1_CKm$leC(DdNbPd5+7!3qr3qk;w%=Bnr1~q!sT)>rnCZa{
zX$?t{i?G^(lO5-#4TpVf9{7&sE+x_qDr$Kl>kicD^f1Rk|43VCoa8|gN`ZTBe>aJu
z&<<7?M8nrZGO%43N|PIFp}62_0+R$b_#<WmDSsaw3~?@t2b>fjY!hur<=Zb$B1xJy
zvx+&vOvIR``cMUlfV;^sqQ~9O>Ink5M5}D70(K;CTazk(Rz4`Adw6}FWT7_j&FL=B
zKjjC1#zDr2bvR|rRzNqJB+UNX5);0747v|B4K!y1s<33XXNgBK23Z<Td&p?)5yy~^
znJu1B``kC9mKjhVVV_W5MK{OhL?GrciY}b+;2Dnd<A{%a2H>K(2JVPAC5%MSFvmQ2
znC|ip{*1c#^~d>$W@5qtWdn1>OCo6|G)^)PZy4i6?c#DKopQ@69gc_R!%uZ?)Ozp|
zq@J6FTp71;k$Y#zT|s2c;nz)Scth;vi$JXM<?IcK#odD^KcOBnQ)%I1;r317!m1qV
zW#EKy8uiJB;%VHdqoV*nJ0>D**s!Qb4;wHtM-hm&dv$zh$=lJvKm8o^3OYtQ(u3d;
z=g!`aULQR^XKn|kTFk>OXV089@E$LiU!jIdhkF76Ux0X4*!vv>-6iyt=jx_L_qj-^
zwyxy%Q(X+sOzh2#FIR#xICi1thCO;Y8yH`Gwm}1~!_7T?TfebQqge(&lf!>z=NM;7
zY72eH=z&8ttV;hytEebD9N7zZ_e~zrtfGi$`g>L0lV`ncTd@j2a!A-iDn~QfH5ell
z#ihaT&#~Y)D&gYeg>-JF3rX`TC#*=Z7oy-tmmrf?j3Y1e0t@senN%^AIW|M_=6?2&
zNuKO1WtgjC_F83O=SF<wkPS+0X;6K^^K7D*?jiF0-@>`^Pd=Vz3Cu+!3fZv|Sd^`;
z6o9pl*6G;F>J7tA%F?TPZmlpTqwm3Lg4&JZ3Zok7b9o<7Wl5&jqPt^|pXj=p9!?qC
z68r{398;=C1?cTvJx|7SFD<%#qZcq>ndp;f0411fSn;kO`iU_d9RXwYybqIIp8_a8
ze7+L#L%{Fy<Y{E6dhlvdZfwGI+@wB%$-6LqZJX46G*K^b?DG30b;tGoI{K*$QWF-N
zdtm}6FxS7#;5Qp&t<<ZsUtl5e%S*UlA9_4kD)w(*u6r}rL{PhT;0~^?KmbD2nF!_p
z{nbjgEei6yfvcP`tc@qn{f~xbQ!4?W4T|QkqVHhAc+XO}v25a6GJ7vzgt0vatXNYJ
z2EbY}__O7-%1_J{iCE6Q3wIk?ywLa_L_L#y4vrz^0xU2hQ3NF}ST;WX<8QMzBm?-!
z(eAJ2r?YG}##~OEuiK|0#1vNa=J60q{v_Y_ISGr6{*y76qT@9TNjzSul(0O(MmDKm
z-tplU`h4`KVDD=t1p56d6y~)}3F1}7>eoZfFV+(yK(<R>BP{&$AB7RPnk);(az{vx
z*zX%o_9M_Qv%OE)O{3;ECZ7$YpHRI1ZPV<PJH|a9%B+r0w$`&En3cQP6hDy-uaKyb
zO6JHoL;*sbm(<y*GIHfM!%{DlUzDbJ)_|ckt;P2`&Hn(^iG0&?XCYcV<H&-x9F)k9
zGN&5%Ft+rF2m}jT1770OOse!`8QhZIPqVnN;zl2oaD|;dG~#l9l`ybTJ93M?opLHE
zbC;()A$mEyxheBonnOOhP2RHTDm_RsnpXp=X{y>Du>I0oBvvj{^xD{wAz7U-yJQY8
zxizb#LTX(RsLjqHDl26KOa0Qmpb$kKa_Snq=fK%d^HF35D`RM5O1`3=XYRY-PxUP~
zwDsc0n2$;GXj48k;S{X&9O{HObHE)d$FlpsYZhhS%yT8C<Q~^}M@=IZ%hwmypz{mv
z7k^51jdSw*+>y#6eo?ZRqsP)18aQtyf~jdHSs=ZU%*y5>0+BHR8($~JlGyk{+kuj~
z4KBp?$_8i~b-{*8H}ZwP)%`X%9(U<Db+apsL4!1Uv4OZ`yW4OnuU0@w2cdxYG(-(k
zzp2c<sMGXEx!}R2YctEK8oydiO0|}JC-c)_I)6OzXL#A$O`oZ&uP@XcG`wQlnfw%7
z4y%$Y<_fUkoy*K$nc;smLe>x2Y&>(6H-1WbF;$}z?XLQ1Agyu&8Pv@M9LcTNZIwp#
z>dUGTdOoNwVRxNxb!iTkA2NN#{{-KM$1KNw{Wr}Rho_S|Yge;Ge*n{ml+U9!l70?p
z0b);@&zV`N(@$NR8tag>N|E9vLf-r5n*^GAOU(fnfKC{KAtCdwqusyK)vd)|-lChd
zP|VKd#f0Lf|Ie>GEIr*VMRtv2yylb=YuACx-JEDioChrS(CkFx_88bBaX;6<HI3kz
z(6GeN6&bC{Iahfa9tD<v@iT~?$?_eV6&uM{*c3Ku_n5wkHc3AP(*|iQRNdVvNl}Vf
zhM3mO(|At>_5M2hWniw%>Z+F=G;tjyE!M-Ei-_;r+Zc4Gq~;}tpv_Ay+K_**-uLW}
z^=(&Dj#cZ_!7OStaql%wg}!dED%dq*D;ce)#AwrN!?Evq?ZK3!EbfxYGfC{d!*`)P
zvLF{+&B>$B!hY}Ht7Pod>t2Ln38225Bz}Y5y6N&V>_#YY%c?d$TK(Gs@Z-pOw*GfB
zeme#JdCT>r!=x7vc{YjjJg0zjj*j(<{qsk>kjo1WdnV06^C=)BPr_Jwf)8e&Z_x5~
zDr}LChkvV<S}o%Y*m^!MJn8tP8=GcN5M)zd4O}0>$31brrE=k6_(H()Xh}l=4h!t<
zxLip?qu*vWOK96bD-~)nPU*lpO)~pwk^H+t5tJi7w$HnL6l|lFJJB4>kbr<hA-4Z~
z!sdDdy%+CD5A{%Gz<XA*-?<;sorhO;lM30=z0%j2oLBkEPy72Ya*3W}RAF<}K!G*W
z0VKPKC4Sca-joBriNP89bB=spMZwm47S(q)8Ky|wI=)=J$iD|edXwQiCnv6NM$=Ha
zw=qzsAsRQIJLoNuAAED$|G+5~=wci{?|O4Ob39QN+n(LLer{h)zjLFMWs{Tm$8jRu
zr1zP*2vIf5a!)1cF@WwLT<N7meXiUtAJ}_eM1VBz^?^Va*3tu+4?#L!GM$#T{o}tx
zK#d37(GwdlT=R)Azg|gWgWi)}2>nyaUy5tqF#QP6aVxoHXTPiWh!gb1+xb6OU6m|u
zlx{o^%AAo)UP2CLm2m2NbRC%sV!chC3cd+e_G1Ju_c&ENv2bw6g~2$Clx;llb||n+
z_KZ~2Kb;}zX{O~EeK4RhZqtsExBIPrrhYcZqrrewoPk;`rhRMupgDA~Qobh79&P7^
zMzFdAP>4yz)Xa*+jy#!+4=_JBw}=Wzi)r3JZTZvEuYT3uF)H||s>g7E_SG-|=YtRY
zJ1lF2XSYGjdyt&iR$co0GNsr@hrsUvr(=?@l}QcT2L?H9IFuyK<ONZYWhdl~JvMuu
z!+yoxhQpI81@sBJSjepV2dM*zwDa9L{5gTDGer~e^&x?bPwT4O?|OqQLv?Nf+q3l6
zf&Mq{C5#U~+977eJlu;!xNt6fsKT!DpUpb?ya=+>YOJySHY=HGlGgALu7kiI+f^9x
z3BrhWPh6-ij@uXhw--~q?cz)30OCL4-@W@y_y1!TZ*FDk!1}g}2QJrOvRr4^maXA`
z3*Wsp4?-Yc^ouwS1}a-1wrZD{tSU|4|IKM>bi+;W7r3ATT2A>ZOwBq6*&9oX4t*MG
zZ4}SWR{>sDMpcuO56IQVgJ<4-W_<SK!mk2s=H1<6Z9L`{GZm3KilDC#>C#*$kEBZ_
zYSJ(+ygqs8e!x$NG;F_ukqp#@73A7vEmD!wB1heRG$oAJR3h1zQ+X$Amtc37;yRHy
zw0R!SECepvAvAyuf{bZ&rr+ZuCu|FniC&g5#~j=eeWhzsUx}}QEVQXls}Oya_rRg(
z`IY4>9VGsx`RDoBw~Q3)P~2S0_~Qea+i`n^X{2{Qd-*>p4;-vB>se7{(TuTH0OP~)
z>UIXq*IqzHr~~{(ZkB09nC#k{Wb{-8*jli#T{wX#A?`f8{cu{IsHuS1c^FM%<dcg2
zpMpQL$J6?if<^l3l4I<zR(yGS1clG>5^=N{t;ByhA4(6XV<jWrWZ931jp3&N*<a?+
z{ZZb@AA^Ilx~OszTb%C3Lx_EMXCiB`j7&3V>wa~LC$M(nkC#rL&jWxRNFg-l*HI$)
zsLsqCq8J)>*G>62B?(=M?i<s9Q)Qq56B!_kmM_f=rD|+lN)Z58D+<sM!AOxLB1rmL
zLxT{83L~OQPVO2>K%}r($00MPp1mN>aagcuV4NCXxzPslS1usAL|OVkBea7-3;I(L
z_duV}aHwz{z`?nWT~}9g9y_Z0*)DvbwQc~78#Q7&46wu<1}Ru%IiS?CrsBqS{UT<H
z35Zu$M=<H!&fA&(O-^>s5a)AGowCJ;_4pF}k~&Osws}UbN`|rIfjgHb{%72BZ)^z<
zU!#Wm+<wOsJWqi38+k6~q$-WlHb#%);{#?ikTXFMff}<mVp3JWbN-iE$2iOe^<|P)
z`_Wbq_p(De0{VUW*Sj3UKrX;gFlE_ar-+aC6%LjeI7I)5`x6#50kUB^B{<EIX=*Dw
z(SV?IjuG&?tnI@&ZYKA!2a1Gv2l9B5KG_kV*rH*#Nnh0Ui51F>Yh+E4HK&xDG<A@=
zE-2WYQvT*+w>gs4s~KWGE`+eq<+cbfTBi`A#QZJe@q1KV&0dmgX<`Y!L9KM#ywz06
zUB$e9JL!43@6az}tjcV?Tj$1Dj9Ah6_uN=cS=!ANVzPgdfs~aZQMe4|jBq|=*MN3%
z6zdf+CHk^bOwyWY9I5@|kd)n{BMc|EW=xI90MLwbQ4Cv|fosUhaj7a;C%5a{Cw}%N
ztwjMMjiy=*rXQvb{eF9nbHs2n^(-ewDyPHykfQ#c3TxF&VH@w%(bu}fkGX{${G2iB
zikKO<V?51Ei|njE(P#vF5g-=a8iwn0u;@7-VlyEpJGnZu-|eHOgsh6wY?*I?lvD)Q
zkLcxXv`0VuZ+UEU4K;ZWX%;wh`8d0|$K)mmM{PM3ib;a(1&C7bvGGY8SV#CO^Sn+O
zHa*c4L)AX)*HVR|{RpaY&++j;PDaE*a*k?xr?Gqw^0ed<U_)ais`krVn(NZK(F_ej
z<$D@kXr;%xKfK+2`Zz=+>CaS&E|oL1DjsMcbeLLwBxl7?8n(**?nKy_cujyY^U62j
z_*hAnyr19+=Ynn|Lo}e9OFM-;?-Ap|8Y3=t3AsCb*|u72o)e-T`RXCAVg0yCpmS*$
zY8{#P-3OUdD|?LnFexdUSgKCF&iFRG+ObrZA7;ki_mP{Q+x6%qpvj_<b91gn+Gnt}
z$VhGWXg#-GYXnb`EaM<6Ag@Thv{Ines;xU{Myb4{+}VQSDRlJTw~~H3*uw+@$%!Af
zh}}rL-;tJ}52F>MA>K<(e=GD=FX^cd7Qr_}>wts4?7Rm81i`NY)dv>$SkhRazz8hl
zLIHB(tgqAwD_qkLumkw7RtiU{#d~Hg6;E@s-GPjx`{T+yluGz6Up<cKG{ws1JtgF;
zS(J?}+W%E-)R`o>3D~hw)y=1!`ls6(ANmnf9?Jjt<4qE{2}-kG{nJXpb0e8F1Bj`K
zgTN7(vKTLFTbx#acl}~av&+3St-X>n`s~wy8~%x_YbS-z!$*&f1)Gf5NO)`Ss@k~x
z{q|3{m0#H^+<v@khP!J+e~Cab%4Kd|dij7ez*@v=?s@kojJz%9cSh$7eW_XXfe`wj
z`gAV-uvz#{q8jE+WE5JS%|?RR6!`;-c8LJtIfLGup%+@$$*+bH&$ZknwOi)e4>em0
zm7!NNjk7MH&CT^pk8;~DJmfklZe_CpSk3r5yuj?VPmOwD133JGtC7mmWoeVO*ryF{
z{o}=MeL{Dm>FV7ueY5&df^y3pKF)vIiDHTbk1GauA5sJ{nSF#Fblu7X`;TkHWF#j2
z#0E#jNHR3kO^$d{@ki{9CEa4}8urhX-6bYKs7%YGEVfhg-}Xu948z)C9}hC9$By~*
z_jeZba+2(i1yI<2p!#gE9ZwN`oD#4Mu8FG>bTLp@oECe2PxT#8pqp(3{*DnAj&Uww
z;c9CC#Nqx&8_B5T&LcFsSG`xH+S%j5?R{6><y1l{DW>@fx8)<*bnBor^e`l>Meeyy
z&MlKL=rI?;1W!o3ZxpgE@k5z0H;L5HG~m=(`rquIIh>zIi9ag_i{@)9z1qS;S`Bar
zO=^TaZ7%u8cOM6i$M!F4cplsr+1)+>;dk`Dw`t;Cqe$Gj+i#-5-L6n)QVgzGoh=`^
zBK^&s17+vw#8-bPjsrcXf~`71bw?K5Ths5DvkSi9zGEVPMu6Y(h|c4i$`uk3hi9a7
zjT+DPGUs(8VqLfvX!z)}@9e#M+3KeeKZUDku#wG_%0x1uKY1pYzV2H`)1|}psU-31
zrIz8ZfB#2oZyA+mlC6I~xVyW%ySoGl?(XjH?j8v479hC0y9a_h!QCxbUOIhxrqkz~
zIsfT-fwgMg&xg8x)UI83QEPJ*v>PwS;aEzvU{<T^_p9B@&SXc^hG|J*hmYr1tPXft
z2re)Q)T<|-=k@Mikn|dwj|iA(wb%O+Q?mC(=4d0RZ)q1cK__~vKjjQd-(e-gTt8O>
z72}ylpNzRzAUy=oWM1JdsOv4mcK*p%^S516aw|<aBN70xYXAW7{N1xoJ7@df_DHx-
zb}OO}_s?iyG^|>nDX!fJLL$_kjL=SmGT`$*N3K33q;k1l=rn@&|Cn?`c*>SNVZ|Y2
zf@*v?>s;`udOE9%n{tEdp`wOSUeBpG1nwv-i}H#rBOY0@)1I<UpQ?>i%jnsJ)cLlt
zpb-KUNW@BW-R_-(=ESOlqDenpO0CwMj}=WJ7P(IL9s45^tw>2>8Pr<&1*F2m{w471
zP>xw}xdWT9z|JvSD{axlj)lfJc^z#S+EA)&TrnUOcY$QdTZfF5ChCDh5j}`Ron2Qy
zP(jf^8Nee==s(?YD5#aa`b|6G!tps$;He`$ktWnXdMf9@C;96Dq|f&O43YZoC2yhc
z2saoxTHidxOLEO>D{GN7<y(mhj0hjEQM;n{0bKND-yM>f1HMkws0Wty5NcJ9M&@rM
zluEJRG7Kue*wqpRX@KFrA2Z=)c)R=A=wTn({fiVS`K3)eWswPVTb}9uuCs%h$sz8L
zi7*C}M3wFZEaoZirAvaDcKVts?Z?AgVy>}$lcec^+L`=Ide5yUcMz`!dJ;mD&01Z^
z<JA0hZ5`jH$tzT~C*ki%cAj)G1K4oAm^WJf4|E<W{h)FSg#M<3Y)>&&f={EL*llF$
z+Or)86aCeLs#n0u%LQGqEli}nm5h}q+T+YdP(N~NR9sn)s?=mZC&KX#1(P~S;+N!4
zjcg2`u<Aw<Z8#fF=p|E48W|`srKv7O4vv>@gEr=ZUqGwnc7FAe(8QjmRNv*(+L1VX
zE5chjInrUbF=va{j_M(54X~Jqv(g6xXHfdy53{%k#*U=ManYZtWfWIzVM@y>$Kuuq
zm7to-{KdZ0kX;~k4~j@vD8%M#lsE{epCYfwM@eumfwW-I{W_wA)*k0AkK}zU1EpO8
zb`n?eT#B=NA&_jKl-vPXz3Z4zz1D5Mg6^+t>4tb~(9MOE0Il$8GXIfohv%MRh#*r%
zb`S)am0Tv9Vo6oR>I%k^K5@eM6LHi6wcZ)K^i&Wb@qwUje<g#~O6aNYnfglR)$Zf-
z{1#-+v7coLpI*|%l4cld)7XSe!8}o_Au(YU1eZ3NyzGZaQYT5eeTHydc*34e10bip
zPW{zetDYI&{tD(Hv~Rvrt1j$&j0o}YzssksCJ(n2-sBRd3u50~kxUZgmVb1*RouY`
zTzu*BoGEooN#C^LbVaJjwfUqi7ie2*t;e;}qCC;VuD!x#Z_s$zQvrdz>4b*~*yp@v
zb{Onsk27CNBe*IF%JQs$MRu*tmL;m3nD@}tN(^MGoNsp6zaY5KwQYWPe%#lEVHIQ(
z^il%UlT%T<fVcw?DE=&7p_-YAc|D>2fIB0Wmc1|8NSft=>>nat%K6S+_ZWl$s7eFA
zU)vP{m%fdQN4BTc?V-Emy(=;pt{uiWBH+0*bj>SCc?226;{sBaga%G*Ypi_gBlldy
zxxHfW`i(S8$z!uoRhbj73B?TbwOQ^9V~g(4_>Fc9Cx4i}CmCl;ws5~Bnt%aZFXTX`
z<joEgw?&)@w%kduRs<Ubub+Zn?35Fy)dX|q71utL<YEhu<9T7Kp-*WI!=bT^y6AOO
zN{v_17gG;w%HYD(3t-fBRr>}Mt`t06lhldc9;OUUs**-5;O`)i=596;_%~SfBMB?O
zQ|JfXAkuprU_1}Kl!*j{#mzxV%Ua@7McM_xeY#V~WaZ=mm<rt#n1Z9Srh`apppj9~
zqnNM<!CAKcph>TFa31L@qWzImMr=a5lXY7b8g%b&<6qm@K7BYBCr`IF%>>$tZl^pP
za1`Un6AM7Qh}GO7RXwdr_B3pj7#0%&h0<CJZMzh-zFz|;YR+8LI{TJQl&&wPU(s7v
zF5%LubF~Q0Ow#(kZ+IDzDhL-N4^F^P+2<RP@sn!mwbw&(>Rcstb}t5*nwl7F26_GW
z>Ea!Q=t&GoCI~jigIuy4q+Gdacp=!+hWHklP94kU#HX1VuR(p~#49O-me7$CDl9fo
z0bBj$_@I^tz0o5&TAOiM+*Zz9D2^^D2#B!HL({ocdT}<oIHe~6LIRKVNkV1)YqNPC
zu}*ZlS$8pScN;L_5@#OU!y|UyxYxunXAN#@)oQyxB|>?pp{e`R=|cqK<41%qPmxMf
z@QQIT`+f)I03%IOcIW*}pvrI$Ip+fW&KTC4IaY)1b7(7xWohu|C~k4Q@t1hU`**L2
zhQMlo<IFp_<Yh(4V48P4?;|lkS0oadF$@@BkHkZsG0MRQW=l$&Sufbt%|W|=TZ(i~
zuf%dn_rn-o$qZ;am4a6#hA5Vv@%7=^3=R}`(#Duu*zSLyoNOi-s2nGU2Exx_{^ioE
zf5?Y#Yx@VEA;#|O28k!%7R4yZox$dYO>LY&;0W@n=AL2$OfFj0<{tW_!h+ypUm3=a
zf!;nEdXT!kY8HCu31qy@;-0R>GX$&2mEEar0HeG4vU9k*Q+VnO)tNI=7Bo*eFFgQw
zYl5Fjg`LHA1k+$E;eEX6F(j%xU=Ngj?^6-*HCSb8(N(+|W5gP@Xa!>Za?}kqJ1Mw`
zAc%zh5@LFI*t|`W<6_JZbPy{^8ShfNe$8Tu2qlTDM=`>-k2hd_h#<(Vw)kuf)h_DF
zr$+>{4anwX9&r~xvKi0ens%;?RoK5&a|Us{|C~<>PiiXwm5WZJ@5_STx^hbc#WX*p
zwhTb@HJ~#oYKYJ9>-G<$gb#f~k&@z4HGCo<_zY)x{*}yGu_Nij<Fp60(^Rs<a`G(q
zXyckz-j!nYpY4t1{U-G_F3|*CyF^yAlq{ig6l0^c-53nSJB^ph!>6v^y!t2gy`=<6
zxJ&XN<m!3E1laoTsngtKzEt43q0I7;J{r(nK)j!(PWypkk%#JP|8`|--Ml&zTc_R>
z*(%jZY|^`|DsNbCrPSdINzttKCK1}FxMLMK6MZ?jMD(71N149Pur?jFlT$OMfYNDX
z5sH@>(wt%A=64kYW44D8GbYS8Ta2s0GeY$UU{kpy*ioVIoPzUM;%hrBH?B|?ld}s@
zGfPoNruQg3EZtq>COx_`mf~Za57Y1+Y>x@DKEAg*^QK)SlL=4~s1=K)rpvG&0*cV{
zfSkkeRpJuk^5+JP^PRCjx@U0Oy(cD`sq1gv?Y~!Q&j%KFJH#<-r5le9%%kdFv+=Rl
zfl0YWSIaf`kgTQ}xCYDaY+$^WA>Kldua}ZsH}f(!5lFyGZ921DwqQdmi`j)KyY84&
z`P{aeZHZ)v5T#@=b6N1Z=mWM1C3KK-4P08Z4+S|N3i=&cgOs8n!ddWf+!I&8%h#2^
z#n+XctEP7*yFb(S_Eu;Zh%=1npzPyJ5F)5OH|PbuxCfP{*K}$O(*xvYL815(DFu8?
z5d7l{`Go`eDzIH=0EAa+I@Urr7Y=Ql205!Z1}s00(#aD2$8I9vVgJwv4J>gxS=$1-
zSU)fP>3PIYff>}0G`pMoPsx_+G1!stE9yf$s+*P&=tpnPz2NM~;(I4(?G6{6<%(_t
zG+g=L^^?mc9H0$D4vR4C?2M7)`a&DSJIv=y9A(lIOGQMiJ}Y@eqOIqRRL?|L0iJ3>
z$A)V03!uW>n$pVaoHuG|a$SX>!a6?*6DuRHF=Z*cp9)S8IThjXSOnK(h+IzP*)kq1
z$`4u(9rY)G7o3Kd3^E0U@HkMqkJozL1mom39!`)gWvuk9-;qTwKh`c&JHtVZK0UGx
zWkln_@gxo0c6f{$SF*);-1oT!ku23mYZR`aaLT+-;J$TU;@q!Oc1eOeHywm&|5gnX
z@oxOI^2jErx38pO@+eC~?rJ<;5Mn)(UZ44yMEMI2eR}#)A-|==_DH1bdiqIbaI#!L
zOpjnHOdJOa_dycjfRromllJ;Ijcuu#mtE^m)Ua7`!5p#j;!S)<yKP96ml^0oy4d~Q
z9YA?^8I`K6s^^LNYamTpqYW{OzI<^673pDe-`X8?lkHfn9~AvQeh{wR)%moLaF9-#
zJHNrNAaZ;sJohb9iCIDe<w4rW1q&)R((}N}xs9WZ8?%y;??|^Tq?YW9V+KLtRddP{
zb*%NVk34beAw%`@(Va3u^s|*=FMaz(=_{W2OJ95?=03s^O$s1z?UBJuO5s66`s?fm
zA#b0{$E_pB=i{BNqoZ9k{X3d>v?$*bo2ZOJ8Nyx3>219vwP8d9u$-p~`T0iPwP(Y)
zfvh}*%;EuS<1-GnVpVAFIm0#hpUy8gh#5a)1<@=iR(akXo?Pi+vmkwL6BPi-o$%6~
zEh}R$11W{ay9!-zQRm0X*Uae10?q@`P?g>N+=u0h65bWGLf<rDNR!>-^^M&g8`{Pu
z@^jKc`9~Q*2YLonrjupLE)QUo7OkjzojnG1uITn|eIk5^J({0vBRnIoT8t=+{}K{A
z+Yx#5fB;UjnNxZO{keX}S%A32H`=$k<r#lh{<YD+#f%0dG3kMvN<fCq;yhW@_n_E@
zG8S8xx>kdS$d;>f2JI*SRoY|gHWDkU2)#%D96TY5o$GG7ka^f|9Diu7fBp;p5W!dc
zCG_ZKrpDB*AF6lX%F7E{ooksh&#%vx=a(f}n!eE3TFM!ZH$2}cY^W`_77^-f$XhY+
z<DGttwloi6V%Y)C7|eR9-MtenQ4!rpM^>DJu%f<(yt8buA8V8q>`K@(u5|w3FWZf`
z%^@_Kw<h-~N%z98b1KqIR#V&We!$s*S7H6z&Q4^6_GMuO&4BdGhz-Uh{)dn3@7W=A
zZC|}*&jE`GiRsAITi=GlBfJVx_GT(;E(y7cJ~JrL<O6r*@M12lLsfX!WO}`>J9Npp
zhmd#SYOe)}(4wfFA3R+^u2Ml02nsccZHI-u9~IdXK!<N_=7ISdcH`86@)CEtIJkCO
z)Mms|{~&@sa)d3zx>&q!Bw}GTm1LF%b}X?U>N@_3Tv7R}vd%;bi2i~}3mW?~h3`VH
z3fwt+BAV<j2i3NKy-GrL8szGR1uxQRStu>dlyB&(h67OLK2IpgPU>nD_-nK2>5{Fh
zad#s>MWK5cn%_59epaVItqj<jL9|TdrS80U#h~;&$7~{n??__$Su@NMt@GsGPemAg
z)CWS5enyvPlgL+p4?m!%P`(Wd2fW2|S1~>n&kKQn%`i41<T5>z)JBwVm_BF<uf}Nx
zV=n(h1_I~a6{2TlYX3y2FztBT>L9N66)HW4HHI!a@0Q1M)nswBx_gzeQthaNwf|~H
zDX&ZJQcn4449QJN#F(6ggh5`l);C~7V1a`#kYN^nInRk;D{#LOSC#!~<BmSD3^MJG
zc<TOWA}7qk8ze_;WT?2bO!j%6Hdlj~9oRH7u09k!+~B2UKJ_qAGdZg2VQz!&85S(u
zEE`>5uOsLAnU>b6Q*6wr4Yp=gm@DwZ4}nOqWcg<k4ZF4o>S#isMbITll)2a1peF*i
zo0OZNr?Hxig8CyEn+1$H6zC0BlXEI-4JEk%m6h}-&l|hi!&Zrsi?7>jx~)ZI<pM`A
zOM~CXFgEl+G%qdYtFw{CYWi^=FPe^FZQPDeGdA6JW=K=6tqwWgTs0lMQY;q*XKGxo
zBXn>xzJ$aeob|$2B@hf;#{6iAt;!KPIVNA?<JG?5&aOqTRE}<oIiHCdyr19ZsUeIU
zGXZaUpz?z35_QNQaX<^)t6o5X(3^ozjaUWe3vm)6n4;Rt9bi64wXr2}Wd)?`eOS4T
zjeBs+T)+IGBZ<NLeFs9q6#rTJbtJK?Ei}Uv1txwbYt#pq*L6cQ`9)v0Ds!)3$I^}|
z*a=}j8E4&-+$>hJ)4*8KLdI%4SfmPPTJ#%DxM&|1a`PPJ+&i1OCPIW)@IR{7elI!`
zZq?%DCjtNhzW@NjfA=89$;JNdW|QA;Liz1H2Jgw~n)T%V6)kVWK_(CM?h>D)nF$<r
z5u_1l$aY~2+YP2(Qc_Xh{`p+Om&X;k_|!dayOXZbL^Ap9=hUnx%t11N@JrxxN}tOu
zqIRWP;e&CFF2N7Qc;YCGha_Va?x?c%aMie=p7!CC9$G!|dk^0(LWN8+v260`7i+Af
z!iNY{p;ql(F*NN2TA~3`PBIg$4U{?Nu`=2(Y6|V6QVQQMwoVe}9{69WV&_#_KZuDT
z2_%;@zU?73c)bXxMN}&CRkZu1p>`-4h840+j8#8*xH_OSM9iPzALLUOu^>+*%pUAe
zN>+XQqIvq9f{6);F+C=(z!%&72<i^(w_wR|9ZZ|Q)LQO8?5J8;MqP@pMk-90e+ou5
z%B$op_P#1Nq0S75`ODs6hiKAk1HJi7+%{J9ctKqQp(-mYPls{H$4%_g5dnIG>f8&`
zZ+e<QAckWm*-#HdOXcp`MAlV<*Q_H2x7RJ^uSh*#^x~iD%Oe+Y-iuQMeN#e=Xk;G@
z*HbiTfLJS6Mze7JL8Z~%&R8~==7n7h!{DuUjQlE};0NTVN4sU2jWGuGa?DJVLD(}Z
zxgR%e9iQ+%!AD#Gf7(tPU$git=>sc0f$a92s8sFqg@QIxg+mfOS;)pNmSpuaH2?gO
zXt)n86LJH8ksi(FS}ryIJp|D6tfW*vn0$Ituo9Y2mAcZ-h^MLx>l2l3A=DAY^a+gW
zMZ<&aia`HvVpHm187n7bWh5Kc2R&0`FqZU2Ui!#(ef7#nR7~DN=*uLz>aoozUfKLj
zBTTcYG!=Z>&2#?%P%I!gS7zsXP#bhIELcuYe-xqYh^~bJ!}#@)t*aW;E?<OnL&j9P
zty<@!m}<$iXe=bCG>93C^iOln*vZCBIiR`2&?QkpPU*s3WU9LY>Lj()fY<q^0MNK@
zF7u)X`p@e@UCwka>OH)zT56)s3*B2N{>i=7FH%}?5Vf}42!b~m{`rCBTdXt!6mj1e
z*%z6_(71QjJl*i}PK1aKydjza&9%`i)Y@?(AdW(%F7cO099%e6sxa`oq(GI~J>Fj-
zZ%Ac<(uyK-%PMljo9_#2zkO3n<$OCP#$C8zV4d*RDa=sJ4NB{+r8YM|F3W<(F$KY^
ztT_QbHCGI(#MGz7P|(C@P@6M4@SoDdO<I<OJeV;_N5Wu>KQ55e7qlS<4K#cY5c5L{
zz3eO>rsia%A`__0yBhHcy~9XNq)(veLDZC!Hs{C9kT1)*rppz!f}c~w$O~}R#az23
z0BOzT#Ck><6~^iZg942QItUZo+?&u(7;s~pGzXhf$+`!YN=+(gO$sR@!eF=1u7feC
z*29RBF|&{0?KN>9HIVuEybqfqlIjJ+l!L=<lVi8mt%W)}@_kpfMC!UWgZQ8vgAFj7
zgWQ<ti?k6RGom4A6yX7KA$x-qj!>kBzE49`-1V}Kvp^7KF}VyAyz+P;tSMwQ;0?Ej
zg_li*m-9rdSJhlGpR?j3D9c^G?j8KD>|EW=n^Ksksj9TCh`a(A+|uSUeAS;n5)e!r
zW~d%*PVm$dwae%}EmIhDe90|YMu#P9P=Ar0{8Xb+c7%!<qOsTqp2S#ej8)7S!I{hl
zA)KCvE~?#ul;bF7T8;i8n2vc3CT4^Lx?BlKz2j*(-@35ho`tK>AGfy1CAaE@u8xQy
z^PnbgX?#hLu!a)v%s7#(xznf|1MxwhsIP>>>yk0x?H)hPB(Ck=mj=`Ox=otealb&O
zf%tF?{ot+hIglxjreQMy(0aZBV2il(_-Qm{LZI0Y2|fN|KgbP%snCuy_X4mzj_~|x
zULAFkk|Y;qsj8JCsqAU>K){4B&f;JRYuLIVb*+3DH<b9maHcJ7wc=Aeh@cT95;mSm
zxUEWN@SB5Pl)p7;qbY5F(YyDmS-^fk*~N(dx}4!4QTp*Ig+;EGxO>wCRMcy{1y?lk
zV&A(FR|3#vkT1!J!S_s?H8*<BtDXh%!<s(kzIuRt%gDJVW*U89s0g{RL3ICdp|9cW
z;p6Z;ck_{<vPy$hj^MoU^HCu|rn;2-11K}eLkamcQ{aH*Q;&UMKs6-y+jS4T2tyoR
zO?>kl2%?>v!6_=*6=N^@H-=n_dObq1KrN|0?}*@Siexf*`#k(cGf1vGfOWeQ9QiVY
zZhShy^WuQd8fsrD4kVBKDv#jvDW{^JxQ}qR`Y!@0PJQ?L9kDq1B43;hQh<aW2!NTs
zlbkyCQEtA2?XPaEC!7cyr`Vydx`;WkM4TgTkizGi2RB%hrGmZwM*WhG+H4?vh-Um5
z-OEedheZ)a`04}2yC_bb<n?Dme=136)|^lD7q}PLO`D9Ys|5%d+S=7D=JzN|4r<_B
zp5Y<&ET+H!U+umFo$y@r$nwauMIiwyG{Z55RuTtv?)$-;aO4fj&rK*elu`nd(865-
zih-l~c+?>zDu#<P)?+eQ>bI_ra`d=m0%$0(`ql_0(0rf3tb+_0l}lW41+h=j6y~PR
zG~!HK4QiHVv3O=4pdxi3h-@?!J;DZZ&(y3l8O-!i$SmtcdMNo%rl#0|?46*yQ;xwj
zZ=v#%4X9P@E_T&USc2mv#Z#jd82r2a$%G(N(c+XkVFH2pzI}<N`!1;5H4;V8U7jQn
zDuUB(FASxENSUCNI7c;fBe;^^-}A&tCuJ%h3ZF+{DHCQRWHEJ4ORsZY%|l2Hk;IZz
zi)-CZ`2fmpz$X9rRRja8tSY_FM8*Fbl&v@@$BuZ@6QAm<xO($$aup3w#o4lws6zYw
zpfc|bnN#$7Wa(w*LUqsx{+&DvLKm?jsX=>x5e^-M>{q`S*+xV@vNqr7ffBi(t#(y0
zXhTDrU5<L&)oTt?b@+);<W>q9D6vV_s1*O$%1Va>A})30d9qnVNU!=F9R-5M@VX_D
z3l{5yz^jLd(9uBZ*8t;MA)R9uRhcw2YUPHnSJ6T#^|N_Z6p_g_BIRox5@hQl!2Jk2
zR*?Es*7U7B%~&JU1zI?vSC`*Gca5dLjEc1xF{L+qxiR&gIgLTJVNADU_35&nB!d>_
zdQLr%Dd&#}M~b;E7J2EbPnBBm_E*jxxO%l(kw)C&w(6^>YjAv8W95UX#Fr2{=)|Vf
zgzntQJD?@hh-W~To{evY+NXQvAenb`UKupgG6WCuO;>~ApS)rlJ|pgutD_<VcD}%G
zQlTA4G(9%C9#2rgWsxRG4>Bdg6*49hI&5gLqwJ9zpYA(d(UVQcb8`HgF5F<vU}9?h
z`3LV&GCgLjR|24>Ct&4WIIMsu)pBS{G2kr06Ayx#Ai+0c3cUWlXIIm?HKJC@x(q6j
z=%sPRqO{-HR$U9-PsX@tu~=P6RV<cMq{xc9%tX#Yy36UkP3}s0rnxb@&3kJbfnG*D
zz7JTIgkCAK8$(7b+O|Bkne-!9@Rsv6AD1A=Mti9$ocVu%MhRy~qU@7{{LqA;!?e4W
z%HJL<?}SxyoOlfA0E<$h>}3z>l^2a`M@nM9MS%5@#d)lHji$qIQ)?hFLdP{Mh#8bQ
zwlzw)2gi9}z$-J?x@^wt@~|pPFPJVW%(OIbE$m^;bt}AfH&#)-gOMRVIzCrQWa@Fv
zG41MEKv+;oGFwJIMFK4$>M2&`(dqSdJmjpi%z}XRjG8O(N_R{aiV)GpN}E7OJOfLf
z3w4$Mj3W%c(8n5P&93e)YVt_KnKYcRfQjLG;eoLntNC?Y6`?Z6?>!oU76oTI(23}7
zopQyVrX^)XjP(1=wIEC^chwf78aEahJC5~9%4xz8{g1B>Fh)8-%;g0q6>zXx-HgV@
zs1|+tgHG=l3#J3v?r|ZLTzTq|jv8b1z(qi8&qP(A@dxtXJqF?z)XZyZUQ2H6`w5#D
z`Kb@G(z;>AF0J-eiuE%RFK?{9LZqH%(95z{sGxmumuU6TFl6)MK3F+WN^R6*s^8)o
z*NCO2l%Sbc+8u?M3w&;n56}dEUy6fPqES(G4S^;a*9I+kqh`F8aMN!f7jx<-1$y&+
zMhyJ9Bi}XFDvG-)cOtk1+{c6iXDyb;+NW(|A{;H&mS@~}wq8+E_I;EFrA*GHDB9|b
z!0No~#RbcgN3s^Uu@}_&b=-skr2(Nife3?=Y-FL1%qM1mIOyccrjW#}&I$#~!#>f;
zEbU`kA)2<lYiYnL_1kgF(gfiMA`XB5fFn>UO9&WpBXCK{>$ekyXg?4pmLnY7oQx?e
zIi;`VjVx|$91#wZfzc!-k@~!Gen3_t(>)<>tIc6)<Sq{71SAAF!1qj~;rP4X5vZVi
z0?}v{^SG}Ol9}gSs*a)W$YH!RldTkIH8#16<d*bNt6SWJiGq#d(5%xLsiI+Kfx2S4
zr3p^k_7c_34#K~|BQ7%d#*9XSJFzx?Z`h7VfMRX<NcAG<e~I7&0{Rr~;q2(a&-deD
zdu+Sx@LibN(9GM(rjairA1i!S9~`Ox$hJd%&VUAfCp-QReshT=xdb_h&fzpy5J1h?
zoE1T_1Hl-n27{W(A~Zs)NX?+}&J`i9%x2fiwEIaN_HwJJuQaa2DFR-hO&!uG5ob@V
z*UC#p2f0OyW`CR#5?<C|q95~<$!6@fHEu<Xi;Ntb%|L={e0Q_76$0f{heZ`<d=>Z|
z91@$D;?`M^hwz>L_lvX`cH^CRoUQH_qE&~?C2&v$ljKk0@vGhuPmw5>PTJtS1xOEg
z3>Oa&#%%XXbBo`RyQZ(sB;7VXttFO&?@!91-sIL0^pp<7QmOiT#h)x0b#;5m%|PNp
z=^dA>Fl$~bcTRVr37*xnH8PfYW+)TOR#(;3tmH2DL#})UJk>>46*ISIuO3`w3Tt6&
z%jsKt1l_FRIEglMZ)>h*OqMH2OcGLN&Crjw)ADp}!kI_2TuC=%3{TW;1~19YvUWT9
ziATCI_D!ht`c^r@;=UyA9XkdM$7NmFi2Cx@^~a>f=&V~HY{&b<HV<vH>Jfp`RApVZ
zy7FSuD`=2z$q$-3mWt|WD4Xih1`nTQ<uy0&2&vS{c68*+x^fAVXJ7J@6F2yy!afm)
z8q!>#g5~T9810xE+H|C09P;)HASLGU^pZZRh&<-hETU&`_3HD5@-0D~IEo9-eBxU9
z;T0Q(pX|{iip<dd2;>_Q0xVQlq5-QF{G31RzvhNX8dtqjr2dHc8K2B3P`nAY7@Qi~
z*gSgLI(-BA<w~9ogHh`Ys>m$Q_>vY2e|VIp5V^mHq;c;!phoK|zxkP%&Ii^PL2VAI
zB_6|wfuJ5mOG%^c&|Dz=U4hDRxvMRb<c&b}K~>Y&mU39tE0c5U>Y9%NQkS<7iyel%
z9H}ly8&9E+OS2n!v+#NYm%d5JH_*s8rR+hWy2!g5N$|_t^H6?RQ+SNztyxwnDH!wB
z5}$1g84CE>PFFskG!m^e;4nuv;iR5TOqvyY2-^V(StV4$yJyi`cL?g|)Eg02Vs*pC
zs*QO~-{<N&l=NeL2sU9kvATE0Be9h|LDczt6RSh8<%90-V4uOM!6)9h+rqLe44b`n
z6qvH9nx)rE@l<}deyAXxGYSmFPo8x-655CIu{)T3aUj`QW{VP*%z^F@O?!u3suohT
zbyd$(%CS1?J>!z<TFItQDD-ae`R6+Pp~T50#n}(ADq}cHo9YQ2<ikeWfz+XS&6NGa
zg-Ky=rLb?O;?(lRiy@XhR<W}o@&PA8WAivSGWs*jVeN`&F?nl;RE_xg(>y|FUohg*
zmDQ={!>x?avq+6kum*0IUF?sz=jwdD?C(PWc<l#;0#*JRs`)Jw(c-XtwY=%{EEc-(
z%T6Bm5T`;291P`c<!;qZbH#p2^eQL@-2wY_IMmVF8mtW~&e=6VX0=Rk(lgb9;BIC&
z<moAOFkvOF7cK28AFVNNVxZiBtX63(^UF6@2Uc2P!s7yX&X3l&H4jb2KO4(NLY`9%
zt28T`j#IVKI_B4$4_{gfHfKzH(cj}Y?1xh6)I81Xn^#-D(z~cF*;f)-IFVgNU2NSd
zxMXL#<u#tr57flWj)bZW!n+doUrk0EAC2dbzLNm6M;!H^`)sVoQ$<3cT3rZB0mstW
zATTkG96B3IiM)BlI(^QcQf?=h<S%o$>?12SQFj=GHMtjHl6)7GM-C#t;39g!fkE{Y
zz%nQDt=Vp^A(tEO4s8ns$-cMhgyU4x=b6&?hYtw}nd8i-LnpJAQ-7W^s^hX<bg%Pj
z$77So9;}YSv$?UlF}2T0A3tXUc;;0sbQp)%*WWxp+FRx;{Wq%z2RYP^OWt!)Prj34
z&fqD=M^I($YpSwVZFVyc0oS%y>*=i5feQ4j2Rtl4tpT%8w}QoTUV4A%uQ`p`&4t4L
z*fX*DjrK6KCZna7-uWbx7}FEAnDFp>8n@~@^*k@u87`24th31&_kEv^EgQ%H)R%kH
zVF3g?yU+{#wTpSwtM>ARFgbM$g8c2Ixzon1<TwhL8e%vhYz~pH$AuQ2(F+P8I@<oF
z;DWVrbpac%+&eXyXR=E(z6Nlxt1Wz=+z8!F2i)u6jUzQ9aY4-3`Wglm&Iqj<?lad#
z;e^Z?1rTn~#iuVC*WZU$99Jkqu^x3=q)&xiX##f+-9kqfOdKo{76eZ*<mpbIqwkvm
z&6Jh{cjaY^Y`(J=^&`E6O7lRtCo&$VTZ*~3NL`h9=Ytx)A;^SHIs3)xoAuuN2m35~
z<klQPg4Ez9V81;wUXW8r+ckt3g&a`!zSXUUd<<I>u-0G~88IB5$l(ysP&cIFGzq`<
zKJIUeMsW>hVJVCr=T~~G9dO)0G~Rhp;6=`RDV}2?@*s!bO;VsYKk{>$E9)`H`-JDk
zU|Tdm-zMq!tJ1J?SZBL>fa5e8*x1(SS~OqVwYsLHHNdAdzuswY=Ed9t>)Ez+_F+Cd
zp}Rd^Y0N+)D4uH*w}J5ao^%sSSOJ%Kf5f})SAF)F`5J{oh|k0)6FUeBZ9_h-vN31>
z)zLi<BbTjldq8G_2?%DGaiyE1a-dP8@zi1}()C#C%$ljO-;+c7`yjHsR$rDx-15AA
z<uJCpw?SfTjOq!Lwz)xIxcWM`w?3M%Qa|}wUaENl6aL9pPt}q}cEmVf0(8Q(TiJoc
z^g*!U16%Pks%RS}i`z{gRSr)7ED!mvmWEm-{8u<SG}3JgnIzvl_VSneCROt(^fpCt
zFyAAaN_`SLFEAQAlj_Z|A9UyfzWPha>@a8v345RFj%gDYS7GPgYC%|@CR~l9U)Xvf
zrWpAYxB{*mh_}me_si%;@G7)RF3_$~HNA}+<*5tAuhsqTN?gOwBS4qhi8a42oa24o
z12Vz2FhRs&=s}_g8fs%A=$L@-UuC3J;aLf7)O2JiLGxD`pxFzV@>*^?Blq)xg%NPq
z?2-_cyKd6yA{IngiRb7x)@TAmDKEEgBIGOB;_TUhJZ-E@pZGvq%^>?)*R^blZ2t&Z
zH==Z-yD_J`LG&npML>S&O0$|W)_=;mur!hUC{R6O)RsO#y>59bi}_W~ok&BMp(UMf
zsj6jO*Kw|NrK+VgMcYPs_G4v?XYjnUz)ow7!LFGS7u0sxtc@ZzM8T<~+HGbTSs7|=
zg7U(WJ$>PeZ1{P`>K%8mFYr+CBfjW47k6{no6YUu=7Eu-CR=)i_COQ4W8)59M$74W
zSnJ-t{-(>&HF$Jy3*^`bsWJ?=44f~YhF__Sint-;XJ_O^bofRL(fuxAEP`y}+~tp&
zT@YmSSYWyz^9X+Am)#zAm2*AjK5n#z=hcCwdEl#^cj>ix<g`APGN)3gDyeMXHc_>D
z^Z->cxL16bb4k;rR`(EGd42vciGRcEZLSACf{l`?P2qv+!wr4fgtxt%W*X~8ZER1%
zIh8k!64EZ3;qMvjqq*yDP`Cy=T3J183!!p8fA47OvVL#A>jGs=0R$J<kgX1jmarWv
zQm^bKsO1D!?pQx|aDtVT*&3SRW)oEQv|E-P2@4d(=b&KAu+UqGF*ya!FslA2L)92c
zz!?^^hf*Ab-R?R>y`$V~)LqXF7wO;6w`awuG4lkwkE5sT|MdLXJw+JPxihT5&SyUa
z&A>L-ukD4L!fp$=3V0+z1zsek4gDx~waimvv4ocbnCv?TF_Echa2l<5z#eo7PMxzY
z$pT$XrHhwa0x7#t{9-6i`=*Lkb7&q;Pb>kbGX}*yD07A0ar@rrwizY^p#vmJr611v
zu6^-(C!&kIqI0M|*30gF)=gM(*7-Fs4>mr&PF7|Pp6|oJr9DUWQr&G;zd%4%L^>$X
z(hA%O^4V<n^Bq#xoJl?0)Tug`F>z?YUaMhQ!?x@T)9%~FQk3L{Z9^`G^~Ly)m0q^}
z&B=_cv$b|siL#vItLMvlr-Q{1vNL0Sb#eT>KU}Av>X&4z4iyhqvTA`~vTojMW6D~i
zaWjGY_0oeLh_Yv~WDLit!I^@j(=;QUG82@%^vT-14>sKLV|R>9;(=1z7fAF_A?d)X
zM9H5h@T~OP5Nj8KJSr$R?tvs{9Yp0Bdi{dy^6b>q*ZFOcIsZv3>jC7Rr$`xtp3qqo
zowff~D=YzAY!%u`V|^@IFYUq$Nx+a2rdI1P|AmNlfv7mzueH~OyMGS5a|(?H_v+S?
z^X`NZnZ}t@@%Y*tSD}u?djbb`JeK9k2}-NeKg5m3wdl@hbZBbpr1{I$r`$;E&1_e_
zp~3=!#PZv8@mHl1lgEoX1HWsiLSn|Fg_NL<(^WJ4BM)wjbUVcxmjaEl3cSN|hqq$z
zAE0sR$gIyByKK=ta<Q^MSn$tbh5a^fky}UF5$I9h*Mlv6#Y2%@S9ZEWTso7^S@B)m
zEzPANRDVPf_O_Bf_YA-6Uwe4czHfz#IIS)ea1juAc-c4>KI?5W#BO%*bi-cst8^Ne
zUh4>Ia1!}8f=50Gg^&`V^3206gWKR2wr$MG<()0|48zSODeRV82<&{i_4Z#BQ3hmZ
zui<kL*L3|~LG+f694OJ_5L05i)+?&TSXjST#f=|l-31mGx=1Vu40nCd>Ke?M{jzBM
zqyy1Ak}w%19;z#&I>o?mpBhX2r63H5>IL6~vldSM!cwzb?Rf7~mHRqs6)LW;i}*(*
zn)h<k1oH|lYYnFsjSA24s}!zwhJDcoot<pueS7_^E-zT>$l_-o;Pj^qCV33jr<`;G
zDcoVroR2*~Y|L-J-9N*vYxbpM8|77|A#W274yd#p3gKqhZ-??gPXTr~-N=oH=z9jL
zRjCJ*ym*v83Ji$bRK0fBrekiG!)w*=<Tf!a2Ai*Vuz`f<*cdvL4OBBSu&BX0S`)cD
zK=vugjSvL?FkbyER@zoo&Vi;){86<z-LbgtAY2=Zi;#dzQ4l<1+-SImG?&mE-(ixX
zri^^=R6dJ-0hPyN+zYhAW5eE4nV?HPX0XuUfg)1D`o+Ra%3sV5$!+IT2*8JBwgeeE
z{3wi%DDSFb6wO#O4T6rOPS$)hG1dXD;L?jN!sWgwA;G}GO)am!x=l4spR$+9CwP->
zc<d^IhAl|>R{l|QUZD$ZI6;#S!U@Nre4=+^Z$x2xJQtGlq6R8kofBJfBIWJaVSrnc
z#b+nWfsiwV*>j$ET3&iLQF89vhqW9EY8pPLj==CQs%m^jIVegFL|idGVkQMZ?2k6;
zO_q%9EWzW28}E9e8sB>sI*D5?ml0gSieN$sY=hdE9N(S}@<b0kC96iOjC~CLqI;ii
zpmy$)Q<MF5H>vr{o4v%GdRQ^%*JpeVGnrEr+YrfwADMaa-q_o0X*q+tAkTa1@1fbF
z1Gf_#__9lpzmUtgs3#^w)WuzP_Xc{&FANAPwat?-vs+Z7tLCjjr_Tm(d2(}g1qTu?
z77~mvW=b&HK3F$=C+;MPl5zhW!hsGca#P%GSnOL3`pSq3cvoP00wpN2H)NPzWj<IJ
zF`Y8N^;8a3@v=;WG5>0Ze|Fy@)aZXdPu=V^+sdGd&Z?JOitX0vPVFPG)c<AQsUzDx
zb*kcBE^c=&?N_}3mu5~LTfJL%FD;{uiEyCMFgkctltsa%=N{Xd8ph#WlJeUgWoI6C
zdpdn<_><=(uX!0lM3^)Df#Q!a7BrOUPbX1S(Do$PVu*@&0uB6@H*3)c(pm%C2d;)_
zHBYLO`rIv2W{l_h#)CF}KtnLs!P!|sT<sF)`2-8{sHNCQWk|8}bI(a`;@jC(XG%~)
zoXVmnvAcz;nQn46KJ@j`XYXXTF{mJ)==$#ERmwtR*5y>D-St^hC!15=|M-fFWKCQ-
zjn$U^UabUH+WIrU;*Sr$b~eG(x1?o>+<d*Hp}b>|Ca++TVpw=tIazo!xHyl)C*N=9
zNEf|W+^H75P8$|jxzETJ=J=WkktuT*Z(qx*iptbBC#9ys$JCgF?~bB&A!v>EHe=lG
z*L_zu&1e=OkVT9$iW%`HFX}NGaM_|F?igWx?OH5BYZ3@y&emr`{hx*3E*%g6dMUfK
z`zm@;h_+F))^Ri+5t|6~&F8jjHBTX%qqPYL%>+a`$;Q&2kq+!^Gdy_}h3^Lu>+ro+
zHnya}y4EOzCX(P1l+>e)N!EuzBrP;tkTIoKU~b4Ewl7Qbn&9y)fErz76jH0NBcjhp
zGDU82)vGI(g4Gw{Hn0sh1%gSl<cQU%`Q3p>sp-mUTz(GYC%(LkAKtsJ&YC4plaxr!
z&E`Y8VE03J#FQ8KBi2W}ztm?-w0Cb0CtS{Oc*P#w&i(=#vB&XNlKFIy+({@UH{jI{
zJuTGiKdI|qvcYV3d&+dZ^lnMH?R#neW)GFddi<96t7LrD(oCkImIQV~u1Jl1Q_k37
zLStQQNbQ#y?@0vVWg-Mm<#t#y=e{V|iM!rItd$`Y6ES)62HpFoVqisJ3g}7BsWw0x
zC6$AqdIvT;d{OwjhSMCLaNHMp0^GS-Pq-_4II1$7I5@Tro$ZrQL--KTS-RQBnIKMX
z_Pa+KZd^XhR?IPtjjZV&xHdGXw4Ed}%vT|A2syV>qp1@*6MOJrG2M3oPsOOyR6>Zk
z3@3?l@c2LjP~*1fdBZSI9bBu*wiKv9Y^k4$ONXtMD$hG1UZT-)dqr#YbuS8n@{J0>
z@F$NHvWPx?g+lyTJ((WSZ6w^|B+Dl<H2YFrg6ihodaj;*dfKcXbdGak6}iIkHf9o#
zY<B|km3Uu(CY@K~^KhEv+rGI(G=#6_qxB#i$DSk;@!?M*<xzB{ofdTT1di`~IDSln
z59FPz*p_dC_n<S;4oQIR<Y9_Fls*)h`+BBVA}qjGvJCh7c6TxmumAw{tr7zO5d4d)
z5Cnkq=jQ;x+oktEzy8ag2pT~6^AQMu3Bb_<z!~)|0)e}0{cN|s-@*R&{I5EO|D|KH
zx4wQgKKgV2%9X$N|A*ec>L2-+{uTaP|91Ay41d;OB?0=$Ue)n?`-kSg(!lsdBjA73
z_^m?a7oo~{`JY0ia>_s3KZO645Z*6BjsLrlrHQk%$1if&pHY9x{Ly9%q5ORQS8}Ak
z$X)(la(3<pF3#q^s8-RV|5OnP#`;D5U#ZgkqRImF*BS9!#D0$E@4w`KsT#RBIosL%
zA|BaE_fwShj{ax+2h6_`XZ%In``;6{VB)m>g+S>$#!uy5OYEPmx8U#3|0I9}#FgzR
zUxiOPwZ9E-(wm;pKL`llJ{kQR1iz06y}hH|TWOTDg^AOj=Qm&>XTLLU5$Lb&Kal_c
z`M)GT(?5`YOa5Kpe=8#P24*Hszl;h`<}$%=%fcTmDka{}(fKpNU)LY*Ul3S9{szJy
zhGoC7<mXfU)Yg*qLH~_uz3;CqzelJi?Olr|C;;FN4FE{|gXOmfMgK=ECbn<pY4UEy
z^zP=)HrD@MpnfNFdx*ptdn5bJzD@QQviEOR5Wg;_|1x!c57a+K$=c4$!j{h2#Kzv*
zz}e*Q^M!e3P{e@)04T@+fY>j5L2&;u-`~etDUFvR1p@%K-~oVlzhJq%y#fFJusIpH
zn*7ap0stz1Nj&C%fc=(uuUP*Un3J=CvxU(wvt4WomHf9^{zv=A3i+=xkLMQ#S?s^V
z@Q+FL=LsHKA@ei!7I1%m5vm6KzD)lU=JyG1KK+C3J25zbFBl1+@ei2aQm^<wgE6(U
zb*3|LGjX!BF`;9lXJV#jqBpR%rnj-MrMLVy7tP;MPic&w_21Tm2B^QT5*Ym8|IVcP
zuh{)#+}@JW?5)hz{%xW7dt?wi^9tr~WP5L9GQSMsn$Z6rWG+s>c|h8j{4aQ}rcXa(
z{l{D9uQ6_U<&~Cr%f_*{c`o`3UbWbNgy-b!VQoTh<n*_~saCEdB*F*)U=aWTq<^8(
zl>U#XoDGc3J?w0qeonQ28}5Jd3;px%9NhbVh5Ik}&_AbPAf3X`&~Oa=z7PFlU;57w
z0RaEqWAx8@!vCk<Psh<ei+Us?D*Uz({n7pb@lVnJ$(QsG(cf}E=>JXhj|}?nE~S6Q
z0l22G_WZUf`b+y)oL>!={){6T{(p`6&oTJ#IDgnJ{T-ZNoechrV;BE7aentT_&YGa
lR`dTE<{|%Y!u(R(|Nq7W_O{ai0C3;Fd*5E{$^E}Q{(l}DHHiQK

literal 0
HcmV?d00001

diff --git a/oxAuth/Server/integrations/passwurd/bundle/bundle/opt/gluu/jetty/oxauth/custom/i18n/oxauth.properties b/oxAuth/Server/integrations/passwurd/bundle/bundle/opt/gluu/jetty/oxauth/custom/i18n/oxauth.properties
new file mode 100644
index 00000000..0f21c90a
--- /dev/null
+++ b/oxAuth/Server/integrations/passwurd/bundle/bundle/opt/gluu/jetty/oxauth/custom/i18n/oxauth.properties
@@ -0,0 +1,9 @@
+
+scan.password.title= Enter Password
+scan.save.password.title= Save Password
+scan.message.strong.password=Type your password
+scan.enter.password.text=<p> A short text explaining the Password scan mechanism. </p>
+scan.enter.password.label=Password
+scan.confirm.password=Confirm Password
+scan.password.mismatch=<b>Password</b> and <b>Confirm Password</b> do not match..
+scan.enroll.password=Enroll
diff --git a/oxAuth/Server/integrations/passwurd/bundle/bundle/opt/gluu/jetty/oxauth/custom/pages/passwurd/enterPwd.xhtml b/oxAuth/Server/integrations/passwurd/bundle/bundle/opt/gluu/jetty/oxauth/custom/pages/passwurd/enterPwd.xhtml
new file mode 100644
index 00000000..03c4ac03
--- /dev/null
+++ b/oxAuth/Server/integrations/passwurd/bundle/bundle/opt/gluu/jetty/oxauth/custom/pages/passwurd/enterPwd.xhtml
@@ -0,0 +1,69 @@
+<ui:composition xmlns="http://www.w3.org/1999/xhtml"
+	xmlns:f="http://xmlns.jcp.org/jsf/core"
+	xmlns:ui="http://xmlns.jcp.org/jsf/facelets"
+	xmlns:h="http://xmlns.jcp.org/jsf/html"
+	template="/scan/login-template.xhtml">
+	
+	<f:metadata>
+		<f:viewAction action="#{authenticator.prepareAuthenticationForStep}" if="#{not identity.loggedIn}" />
+	</f:metadata>
+	
+	<ui:define name="pageTitle">#{msgs['scan.password.title']}</ui:define>
+	
+	<ui:define name="maincontent">
+	<script src="#{request.contextPath}/ext/resources/scan/font-awesome-5.12.1.all.min.js" />
+		<section class="pa4 shadow-4 bg-blank gray cust-section" >
+			<h2 class="f3 dark-blue2">#{msgs['scan.message.strong.password']}</h2>
+			<h:messages class="list dark-red tc pv2 ph0 ma0 f5" />
+			
+			<div class="flex flex-column items-center pa3">
+				
+				<div class="db w5 tc f7-cust">#{msgs['scan.enter.password.text']}</div>
+			</div>
+			
+			<form id="login_form" class="pt2" action="#{request.contextPath}/postlogin.htm" method="POST">
+				<div class="relative w5 mt4 pb2">
+					<h:inputText id="pwd" value="#{credentials.password}" styleClass="focused-text w-100 pb1 dark-gray" />
+					
+					<!--  <input type="password" id="pwd"  styleClass="focused-text w-100 pb1 dark-gray" autocomplete="off" /><i id="eyeImage" class="fa fa-eye" onclick="javascript:showPassword();"></i>
+					-->
+					<label class="focused-label-big">#{msgs['scan.enter.password.label']}</label>
+				</div>
+				<div class="flex justify-between items-center mt4">
+					
+					<h:commandButton class="f7-cust bw0 br1 ph4 pv2 bg-bsgreen-success white hover-bsgreen-success hover-white btn cust-primary-button"
+						value="#{msgs['login.login']}" onclick="javascript:gatherData();" />
+						<h:inputHidden id="k_pwd"></h:inputHidden>
+				</div>
+			</form>
+		</section>
+			<script src="#{request.contextPath}/ext/resources/scan/logger_pwd.js" />
+		<script>
+			//This is needed since JSF does not allow to set required attribute
+			$(".focused-text").attr("required", "true")
+			
+			window.onload = function() {
+				 //document.getElementById("pwd").type="text";
+			     //$('#eyeImage').toggleClass('fa fa-eye-slash');
+			}
+			
+			function showPassword()
+			{
+  				var type = document.getElementById("pwd").type;
+  				console.log(type)
+				if(type == 'password')
+				{
+				        document.getElementById("pwd").type="text";
+				        $('#eyeImage').toggleClass('fa fa-eye-slash');
+				}else
+				{
+				      document.getElementById('pwd').type="password";
+				      $('#eyeImage').toggleClass('fa fa-eye');
+				      
+				}
+		    }
+		</script>
+		
+	</ui:define>
+
+</ui:composition>
diff --git a/oxAuth/Server/integrations/passwurd/bundle/bundle/opt/gluu/jetty/oxauth/custom/pages/passwurd/login-template.xhtml b/oxAuth/Server/integrations/passwurd/bundle/bundle/opt/gluu/jetty/oxauth/custom/pages/passwurd/login-template.xhtml
new file mode 100644
index 00000000..aa3d8f03
--- /dev/null
+++ b/oxAuth/Server/integrations/passwurd/bundle/bundle/opt/gluu/jetty/oxauth/custom/pages/passwurd/login-template.xhtml
@@ -0,0 +1,82 @@
+<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN"
+        "http://www.w3.org/TR/xhtml1/DTD/xhtml1-transitional.dtd">
+<html xmlns="http://www.w3.org/1999/xhtml"
+	xmlns:ui="http://xmlns.jcp.org/jsf/facelets"
+	xmlns:f="http://xmlns.jcp.org/jsf/core"
+	xmlns:h="http://xmlns.jcp.org/jsf/html">
+
+	<f:view transient="true">
+		<h:head>
+			<title><ui:insert name="pageTitle" /></title>
+			<meta name="viewport" content="width=device-width, initial-scale=1.0, maximum-scale=1.0" />
+			<meta http-equiv="Content-Type" content="text/html; charset=utf-8" />
+			<link rel="icon" href="#{request.contextPath}/servlet/favicon" type='image/x-icon' />
+			<script src="#{oxAuthConfigurationService.getJsLocation()}/jquery-3.6.0.min.js" />
+
+			<!-- order of stylesheets is important, do not change -->
+			<link rel="stylesheet" href="#{request.contextPath}/stylesheet/bootstrap.min.css" />
+			<link rel="stylesheet" href="#{request.contextPath}/ext/resources/scan/style.css" />
+			<link rel="stylesheet" href="#{request.contextPath}/ext/resources/scan/tachyons.min.css" />
+
+			<style>
+				.focused-label-big {
+					top: 0;
+					left: 0;
+					right: 0;
+					display: flex;
+					align-items: center;
+					position: absolute;
+					font-size: .9rem;
+					cursor: text;
+					transition: .2s ease-in-out;
+					box-sizing: border-box;
+					height: .6rem;
+					width: 100%;
+					pointer-events: none;
+					margin-top: .25rem;
+				}
+				.focused-text:valid + .focused-label-big,
+				.focused-text:focus + .focused-label-big {
+					top: -28px;
+					font-size: .7rem;
+					color: #15b565;
+				}
+				.media img {
+					width: 54px;
+					height: 54px;
+					border: 1px solid #dfdfdf;
+					background-color: #e7e7e7;
+					border-radius: 50%;
+				}
+				.mh-3r {
+					max-height: 3rem;
+				}
+			</style>
+
+		</h:head>
+		<h:body class="bg-near-white cust-body-rule">
+			<div class="pa0 flex justify-center gray f6">
+				<div class="flex flex-column min-vh-100 miw-16r mw-60r w-100 bg-washed-blue2 cust-content-rule">
+					<header class="pv2 shadow-4 bg-blank cust-header">
+						<div class="w1-ns"></div>
+						<div class="w4 mh4-ns tc">
+							<img src="#{request.contextPath}/servlet/logo" class="mh-3r" />
+						</div>
+					</header>
+					<!-- grow horizontally and vertically as much as possible -->
+					<div class="flex flex-column justify-between w-100 h-100">
+						<h:panelGroup layout="block" class="flex flex-column items-center justify-center w-100 h-100 mv4" 
+							rendered="#{not identity.loggedIn}">
+							<ui:insert name="maincontent" />
+						</h:panelGroup>
+						<footer class="pa3 f7 dark-gray shadow-4 bg-blank cust-footer-rule">
+							<div class="cust-footer-msg-rule">
+								Powered by <a href="https://gluu.org" class="link blue">Gluu</a>.
+							</div>
+						</footer>
+					</div>
+				</div>
+			</div>			
+		</h:body>
+	</f:view>
+</html>
diff --git a/oxAuth/Server/integrations/passwurd/bundle/bundle/opt/gluu/jetty/oxauth/custom/pages/passwurd/login.xhtml b/oxAuth/Server/integrations/passwurd/bundle/bundle/opt/gluu/jetty/oxauth/custom/pages/passwurd/login.xhtml
new file mode 100644
index 00000000..ee8f1232
--- /dev/null
+++ b/oxAuth/Server/integrations/passwurd/bundle/bundle/opt/gluu/jetty/oxauth/custom/pages/passwurd/login.xhtml
@@ -0,0 +1,133 @@
+<ui:composition xmlns="http://www.w3.org/1999/xhtml"
+	xmlns:f="http://xmlns.jcp.org/jsf/core"
+	xmlns:ui="http://xmlns.jcp.org/jsf/facelets"
+	xmlns:h="http://xmlns.jcp.org/jsf/html"
+	template="/scan/login-template.xhtml">
+	
+	<f:metadata>
+		<f:viewAction action="#{authenticator.prepareAuthenticationForStep}" if="#{not identity.loggedIn}" />
+	</f:metadata>
+	
+	<ui:define name="pageTitle">#{msgs['pwdless.pageTitle']}</ui:define>
+	<ui:define name="maincontent">
+	
+		<section class="pa4 shadow-4 bg-blank gray mw-20r cust-section">
+			<h2 class="f3 dark-blue2">#{msgs['casa.login.panel_title']}</h2>
+			<h:messages class="list dark-red tc pv2 ph0 ma0 f6" />
+			
+			<div id="panel_list" class="pt4 w5 dn">			
+			    <span class="dark-blue2">#{msgs['pwdless.choose']}</span>
+			    <ul id="list" class="list-group f7-cust pv3 pointer">
+			    </ul>
+			    
+			    <div align="center" class="pb3">
+			        <a href="javascript:hidelist()" class="f7-cust green hover-green">#{msgs['pwdless.other']}</a>
+			    </div>
+			</div>
+			
+			<form id="login_form" class="pt3 w5 dn" action="#{request.contextPath}/postlogin.htm" method="POST" >
+			    
+				<div class="relative mt4 pb2">
+					<h:inputText id="username" value="#{credentials.username}" styleClass="focused-text w-100 pb1 dark-gray" />
+					<label class="focused-label-big">#{msgs['pwdless.username']}</label>
+				</div>
+				<div class="mt5 flex justify-end">
+					<h:inputHidden id="k_username"></h:inputHidden>
+					<h:commandButton class="f7-cust bw0 br1 ph4 pv2 bg-bsgreen-success white hover-bsgreen-success hover-white btn cust-primary-button"
+						id="loginButton" value="#{msgs['login.login']}" onclick="javascript:gatherData();" />						
+				</div>
+				
+			</form>
+			<script src="#{request.contextPath}/ext/resources/scan/logger_username.js" />
+		</section>
+		<script>
+		//<![CDATA[
+		    let duration = 500
+    		
+		    
+		    
+		    function showlist() {
+	   		    $("#login_form").slideUp(duration, function() {
+		   		    $("#panel_list").slideDown(duration, function() {
+		   	   	    })
+	   		    })
+   		    }
+		
+            function hidelist() {            
+			    $("#panel_list").slideUp(duration, function() {
+				    $("#login_form").slideDown(duration, function() {
+				    })
+			    })
+			
+		    }
+		    
+		    function choose(uid) {		    
+				var form = document.forms.loginForm
+				form["login_form:username"].value = uid
+				form["login_form:loginButton"].click()
+		    }
+
+            function storedCredsWorkaround() {
+                //Needed when browser pre-fills usr/pwd due to JSF issue with required attribute (see above)
+                let user = document.getElementById("login_form:username")
+                if ($(user).val()) {
+                    $(user).focus()
+                    $(user).blur()
+                }
+            }
+            
+			//This is needed since JSF does not allow to set required attribute
+			$(".focused-text").attr("required", "true")
+			
+			let loginHint = '${identity.getWorkingParameter('loginHint')}'			
+			if (loginHint.length > 0) {
+			    //Populate input text
+			    $("#login_form\\:username").val(loginHint)
+			}
+			
+			let users = '${identity.getWorkingParameter('users')}'			
+			users = (users.length > 0) ? JSON.parse(users) : [ ]
+			
+			if (users.length > 0) {
+			    //Populate list
+			    
+			    let li = ''
+			    for (let user of users) {
+			    
+			       div = '<div class="flex justify-between">'
+			       div = div + '<span class="dark-gray">' + user.uid  + '</span>'
+			       
+			       if (user.displayName.length > 0) {
+			           div = div + '<span>(' + user.displayName  + ')</span>'
+			       }
+			       div = div + '</div>'
+			       
+			       li = li + '<li class="list-group-item hover-bg-light-gray gray hover-dark-gray pt2" onClick="javascript:choose(\''
+			       li = li + user.uid + '\')">'
+			       li = li + div
+			       li = li + '</li>'
+			    }
+			    
+			    $("#list").append(li)
+			    $("#cancel").removeClass("dn")
+			    $("#panel_list").removeClass("dn")
+			    
+			} else {
+			    $("#login_form").removeClass("dn")
+			    if (loginHint.length == 0) {
+			        storedCredsWorkaround()
+			    }
+			}
+					//    	]]>
+		</script>
+		<!-- Sample markup for list:
+		<li class="list-group-item hover-bg-light-gray gray hover-dark-gray pt2" onClick="javascript:choose('0')">
+			<div class="flex justify-between">
+				<span>Item 1</span>
+				<span>Your Item 1</span>
+			</div>
+		</li>
+		-->
+	</ui:define>
+
+</ui:composition>
diff --git a/oxAuth/Server/integrations/passwurd/bundle/bundle/opt/gluu/jetty/oxauth/custom/pages/passwurd/savePwd.xhtml b/oxAuth/Server/integrations/passwurd/bundle/bundle/opt/gluu/jetty/oxauth/custom/pages/passwurd/savePwd.xhtml
new file mode 100644
index 00000000..ac04f2be
--- /dev/null
+++ b/oxAuth/Server/integrations/passwurd/bundle/bundle/opt/gluu/jetty/oxauth/custom/pages/passwurd/savePwd.xhtml
@@ -0,0 +1,98 @@
+<ui:composition xmlns="http://www.w3.org/1999/xhtml"
+	xmlns:f="http://xmlns.jcp.org/jsf/core"
+	xmlns:ui="http://xmlns.jcp.org/jsf/facelets"
+	xmlns:h="http://xmlns.jcp.org/jsf/html"
+	template="/scan/login-template.xhtml">
+	
+	<f:metadata>
+		<f:viewAction action="#{authenticator.prepareAuthenticationForStep}" if="#{not identity.loggedIn}" />
+	</f:metadata>
+	
+	<ui:define name="pageTitle">#{msgs['scan.save.password.title']}</ui:define>
+	
+	<ui:define name="maincontent">
+	<script src="#{request.contextPath}/ext/resources/scan/font-awesome-5.12.1.all.min.js" />
+		<section class="pa4 shadow-4 bg-blank gray cust-section" >
+			<h2 class="f3 dark-blue2">#{msgs['scan.message.strong.password']}</h2>
+			<h:messages class="list dark-red tc pv2 ph0 ma0 f5" />
+			
+			<div class="flex flex-column items-center pa3">
+				
+				<div class="db w5 tc f7-cust">#{msgs['scan.enter.password.text']}</div>
+			</div>
+			
+			<form id="login_form" class="pt2" action="#{request.contextPath}/postlogin.htm" method="POST">
+				<div class="relative w5 mt4 pb2">
+					<!-- <h:inputSecret id="password"  styleClass="focused-text w-100 pb1 dark-gray" autocomplete="off" /><i id="eyeImage" class="fa fa-eye" onclick="javascript:showPassword();"></i>
+					 -->
+					<h:inputText id="pwd" value="#{credentials.password}" styleClass="focused-text w-100 pb1 dark-gray" />
+					
+					 <label class="focused-label-big">#{msgs['scan.enter.password.label']}</label>
+				</div>
+				<!-- <div class="relative w5 mt4 pb2">
+					<h:inputSecret id="password2"  styleClass="focused-text w-100 pb1 dark-gray" autocomplete="off" /><i id="eyeImage2" class="fa fa-eye" onclick="javascript:showPassword();"></i>
+					<label class="focused-label-big">#{msgs['scan.confirm.password']}</label>
+				</div> -->
+				<div class="flex justify-between items-center mt4">
+					
+					<h:commandButton class="f7-cust bw0 br1 ph4 pv2 bg-bsgreen-success white hover-bsgreen-success hover-white btn cust-primary-button"
+						value="#{msgs['scan.enroll.password']}" onclick="javascript:gatherData();" />
+						<h:inputHidden id="k_pwd" ></h:inputHidden>
+				</div>
+			</form>
+			
+		</section>
+		<script src="#{request.contextPath}/ext/resources/scan/logger_pwd.js" />	
+		<script>
+			//This is needed since JSF does not allow to set required attribute
+			$(".focused-text").attr("required", "true")
+			
+			function addMessage(message) {
+				const el = document.getElementById('messages');
+				const p = document.createElement('p');
+				p.appendChild(document.createTextNode(message));
+				el.appendChild(p);
+			}
+			
+			function checkPasswordMatch()
+			{
+				p1 = document.getElementById("loginForm:password").value;
+			        
+			    p2 = document.getElementById("loginForm:password2").value;
+			    
+			    
+			    if(p1 != p2)
+			    { 
+			    	addMessage('#{msgs['scan.password.mismatch']}');
+			    	console.log("mismatch");
+			    	return false;
+			    }
+			    return true;
+			}
+			
+			function showPassword()
+			{
+  				var type = document.getElementById("loginForm:password").type;
+  				console.log(type)
+				if(type == 'password')
+				{
+				        document.getElementById("loginForm:password").type="text";
+				        $('#eyeImage').toggleClass('fa fa-eye-slash');
+				        
+				        document.getElementById("loginForm:password2").type="text";
+				        $('#eyeImage2').toggleClass('fa fa-eye-slash');
+				}else
+				{
+				      document.getElementById('loginForm:password').type="password";
+				      $('#eyeImage').toggleClass('fa fa-eye');
+				      
+				      document.getElementById('loginForm:password2').type="password";
+				      $('#eyeImage2').toggleClass('fa fa-eye');
+				      
+				}
+		    }
+		</script>
+		
+	</ui:define>
+
+</ui:composition>
diff --git a/oxAuth/Server/integrations/passwurd/bundle/bundle/opt/gluu/jetty/oxauth/custom/static/passwurd/font-awesome-5.12.1.all.min.js b/oxAuth/Server/integrations/passwurd/bundle/bundle/opt/gluu/jetty/oxauth/custom/static/passwurd/font-awesome-5.12.1.all.min.js
new file mode 100644
index 00000000..91bcb117
--- /dev/null
+++ b/oxAuth/Server/integrations/passwurd/bundle/bundle/opt/gluu/jetty/oxauth/custom/static/passwurd/font-awesome-5.12.1.all.min.js
@@ -0,0 +1,5 @@
+/*!
+ * Font Awesome Free 5.12.1 by @fontawesome - https://fontawesome.com
+ * License - https://fontawesome.com/license/free (Icons: CC BY 4.0, Fonts: SIL OFL 1.1, Code: MIT License)
+ */
+!function(){"use strict";var c={},l={};try{"undefined"!=typeof window&&(c=window),"undefined"!=typeof document&&(l=document)}catch(c){}var h=(c.navigator||{}).userAgent,z=void 0===h?"":h,v=c,a=l,m=(v.document,!!a.documentElement&&!!a.head&&"function"==typeof a.addEventListener&&a.createElement,~z.indexOf("MSIE")||z.indexOf("Trident/"),"___FONT_AWESOME___"),s=function(){try{return!0}catch(c){return!1}}();var e=v||{};e[m]||(e[m]={}),e[m].styles||(e[m].styles={}),e[m].hooks||(e[m].hooks={}),e[m].shims||(e[m].shims=[]);var t=e[m];function M(c,z){var l=(2<arguments.length&&void 0!==arguments[2]?arguments[2]:{}).skipHooks,h=void 0!==l&&l,v=Object.keys(z).reduce(function(c,l){var h=z[l];return!!h.icon?c[h.iconName]=h.icon:c[l]=h,c},{});"function"!=typeof t.hooks.addPack||h?t.styles[c]=function(v){for(var c=1;c<arguments.length;c++){var a=null!=arguments[c]?arguments[c]:{},l=Object.keys(a);"function"==typeof Object.getOwnPropertySymbols&&(l=l.concat(Object.getOwnPropertySymbols(a).filter(function(c){return Object.getOwnPropertyDescriptor(a,c).enumerable}))),l.forEach(function(c){var l,h,z;l=v,z=a[h=c],h in l?Object.defineProperty(l,h,{value:z,enumerable:!0,configurable:!0,writable:!0}):l[h]=z})}return v}({},t.styles[c]||{},v):t.hooks.addPack(c,v),"fas"===c&&M("fa",z)}var f={"500px":[448,512,[],"f26e","M103.3 344.3c-6.5-14.2-6.9-18.3 7.4-23.1 25.6-8 8 9.2 43.2 49.2h.3v-93.9c1.2-50.2 44-92.2 97.7-92.2 53.9 0 97.7 43.5 97.7 96.8 0 63.4-60.8 113.2-128.5 93.3-10.5-4.2-2.1-31.7 8.5-28.6 53 0 89.4-10.1 89.4-64.4 0-61-77.1-89.6-116.9-44.6-23.5 26.4-17.6 42.1-17.6 157.6 50.7 31 118.3 22 160.4-20.1 24.8-24.8 38.5-58 38.5-93 0-35.2-13.8-68.2-38.8-93.3-24.8-24.8-57.8-38.5-93.3-38.5s-68.8 13.8-93.5 38.5c-.3.3-16 16.5-21.2 23.9l-.5.6c-3.3 4.7-6.3 9.1-20.1 6.1-6.9-1.7-14.3-5.8-14.3-11.8V20c0-5 3.9-10.5 10.5-10.5h241.3c8.3 0 8.3 11.6 8.3 15.1 0 3.9 0 15.1-8.3 15.1H130.3v132.9h.3c104.2-109.8 282.8-36 282.8 108.9 0 178.1-244.8 220.3-310.1 62.8zm63.3-260.8c-.5 4.2 4.6 24.5 14.6 20.6C306 56.6 384 144.5 390.6 144.5c4.8 0 22.8-15.3 14.3-22.8-93.2-89-234.5-57-238.3-38.2zM393 414.7C283 524.6 94 475.5 61 310.5c0-12.2-30.4-7.4-28.9 3.3 24 173.4 246 256.9 381.6 121.3 6.9-7.8-12.6-28.4-20.7-20.4zM213.6 306.6c0 4 4.3 7.3 5.5 8.5 3 3 6.1 4.4 8.5 4.4 3.8 0 2.6.2 22.3-19.5 19.6 19.3 19.1 19.5 22.3 19.5 5.4 0 18.5-10.4 10.7-18.2L265.6 284l18.2-18.2c6.3-6.8-10.1-21.8-16.2-15.7L249.7 268c-18.6-18.8-18.4-19.5-21.5-19.5-5 0-18 11.7-12.4 17.3L234 284c-18.1 17.9-20.4 19.2-20.4 22.6z"],"accessible-icon":[448,512,[],"f368","M423.9 255.8L411 413.1c-3.3 40.7-63.9 35.1-60.6-4.9l10-122.5-41.1 2.3c10.1 20.7 15.8 43.9 15.8 68.5 0 41.2-16.1 78.7-42.3 106.5l-39.3-39.3c57.9-63.7 13.1-167.2-74-167.2-25.9 0-49.5 9.9-67.2 26L73 243.2c22-20.7 50.1-35.1 81.4-40.2l75.3-85.7-42.6-24.8-51.6 46c-30 26.8-70.6-18.5-40.5-45.4l68-60.7c9.8-8.8 24.1-10.2 35.5-3.6 0 0 139.3 80.9 139.5 81.1 16.2 10.1 20.7 36 6.1 52.6L285.7 229l106.1-5.9c18.5-1.1 33.6 14.4 32.1 32.7zm-64.9-154c28.1 0 50.9-22.8 50.9-50.9C409.9 22.8 387.1 0 359 0c-28.1 0-50.9 22.8-50.9 50.9 0 28.1 22.8 50.9 50.9 50.9zM179.6 456.5c-80.6 0-127.4-90.6-82.7-156.1l-39.7-39.7C36.4 287 24 320.3 24 356.4c0 130.7 150.7 201.4 251.4 122.5l-39.7-39.7c-16 10.9-35.3 17.3-56.1 17.3z"],accusoft:[640,512,[],"f369","M322.1 252v-1l-51.2-65.8s-12 1.6-25 15.1c-9 9.3-242.1 239.1-243.4 240.9-7 10 1.6 6.8 15.7 1.7.8 0 114.5-36.6 114.5-36.6.5-.6-.1-.1.6-.6-.4-5.1-.8-26.2-1-27.7-.6-5.2 2.2-6.9 7-8.9l92.6-33.8c.6-.8 88.5-81.7 90.2-83.3zm160.1 120.1c13.3 16.1 20.7 13.3 30.8 9.3 3.2-1.2 115.4-47.6 117.8-48.9 8-4.3-1.7-16.7-7.2-23.4-2.1-2.5-205.1-245.6-207.2-248.3-9.7-12.2-14.3-12.9-38.4-12.8-10.2 0-106.8.5-116.5.6-19.2.1-32.9-.3-19.2 16.9C250 75 476.5 365.2 482.2 372.1zm152.7 1.6c-2.3-.3-24.6-4.7-38-7.2 0 0-115 50.4-117.5 51.6-16 7.3-26.9-3.2-36.7-14.6l-57.1-74c-5.4-.9-60.4-9.6-65.3-9.3-3.1.2-9.6.8-14.4 2.9-4.9 2.1-145.2 52.8-150.2 54.7-5.1 2-11.4 3.6-11.1 7.6.2 2.5 2 2.6 4.6 3.5 2.7.8 300.9 67.6 308 69.1 15.6 3.3 38.5 10.5 53.6 1.7 2.1-1.2 123.8-76.4 125.8-77.8 5.4-4 4.3-6.8-1.7-8.2z"],"acquisitions-incorporated":[384,512,[],"f6af","M357.45 468.2c-1.2-7.7-1.3-7.6-9.6-7.6-99.8.2-111.8-2.4-112.7-2.6-12.3-1.7-20.6-10.5-21-23.1-.1-1.6-.2-71.6-1-129.1-.1-4.7 1.6-6.4 5.9-7.5 12.5-3 24.9-6.1 37.3-9.7 4.3-1.3 6.8-.2 8.4 3.5 4.5 10.3 8.8 20.6 13.2 30.9 1.6 3.7.1 4.4-3.4 4.4-10-.2-20-.1-30.4-.1v27h116c-1.4-9.5-2.7-18.1-4-27.5-7 0-13.8.4-20.4-.1-22.6-1.6-18.3-4.4-84-158.6-8.8-20.1-27.9-62.1-36.5-89.2-4.4-14 5.5-25.4 18.9-26.6 18.6-1.7 37.5-1.6 56.2-2 20.6-.4 41.2-.4 61.8-.5 3.1 0 4-1.4 4.3-4.3 1.2-9.8 2.7-19.5 4-29.2.8-5.3 1.6-10.7 2.4-16.1L23.75 0c-3.6 0-5.3 1.1-4.6 5.3 2.2 13.2-.8.8 6.4 45.3 63.4 0 71.8.9 101.8.5 12.3-.2 37 3.5 37.7 22.1.4 11.4-1.1 11.3-32.6 87.4-53.8 129.8-50.7 120.3-67.3 161-1.7 4.1-3.6 5.2-7.6 5.2-8.5-.2-17-.3-25.4.1-1.9.1-5.2 1.8-5.5 3.2-1.5 8.1-2.2 16.3-3.2 24.9h114.3v-27.6c-6.9 0-33.5.4-35.3-2.9 5.3-12.3 10.4-24.4 15.7-36.7 16.3 4 31.9 7.8 47.6 11.7 3.4.9 4.6 3 4.6 6.8-.1 42.9.1 85.9.2 128.8 0 10.2-5.5 19.1-14.9 23.1-6.5 2.7-3.3 3.4-121.4 2.4-5.3 0-7.1 2-7.6 6.8-1.5 12.9-2.9 25.9-5 38.8-.8 5 1.3 5.7 5.3 5.7 183.2.6-30.7 0 337.1 0-2.5-15-4.4-29.4-6.6-43.7zm-174.9-205.7c-13.3-4.2-26.6-8.2-39.9-12.5a44.53 44.53 0 0 1-5.8-2.9c17.2-44.3 34.2-88.1 51.3-132.1 7.5 2.4 7.9-.8 9.4 0 9.3 22.5 18.1 60.1 27 82.8 6.6 16.7 13 33.5 19.7 50.9a35.78 35.78 0 0 1-3.9 2.1c-13.1 3.9-26.4 7.5-39.4 11.7a27.66 27.66 0 0 1-18.4 0z"],adn:[496,512,[],"f170","M248 167.5l64.9 98.8H183.1l64.9-98.8zM496 256c0 136.9-111.1 248-248 248S0 392.9 0 256 111.1 8 248 8s248 111.1 248 248zm-99.8 82.7L248 115.5 99.8 338.7h30.4l33.6-51.7h168.6l33.6 51.7h30.2z"],adobe:[512,512,[],"f778","M315.5 64h170.9v384L315.5 64zm-119 0H25.6v384L196.5 64zM256 206.1L363.5 448h-73l-30.7-76.8h-78.7L256 206.1z"],adversal:[512,512,[],"f36a","M482.1 32H28.7C5.8 32 0 37.9 0 60.9v390.2C0 474.4 5.8 480 28.7 480h453.4c24.4 0 29.9-5.2 29.9-29.7V62.2c0-24.6-5.4-30.2-29.9-30.2zM178.4 220.3c-27.5-20.2-72.1-8.7-84.2 23.4-4.3 11.1-9.3 9.5-17.5 8.3-9.7-1.5-17.2-3.2-22.5-5.5-28.8-11.4 8.6-55.3 24.9-64.3 41.1-21.4 83.4-22.2 125.3-4.8 40.9 16.8 34.5 59.2 34.5 128.5 2.7 25.8-4.3 58.3 9.3 88.8 1.9 4.4.4 7.9-2.7 10.7-8.4 6.7-39.3 2.2-46.6-7.4-1.9-2.2-1.8-3.6-3.9-6.2-3.6-3.9-7.3-2.2-11.9 1-57.4 36.4-140.3 21.4-147-43.3-3.1-29.3 12.4-57.1 39.6-71 38.2-19.5 112.2-11.8 114-30.9 1.1-10.2-1.9-20.1-11.3-27.3zm286.7 222c0 15.1-11.1 9.9-17.8 9.9H52.4c-7.4 0-18.2 4.8-17.8-10.7.4-13.9 10.5-9.1 17.1-9.1 132.3-.4 264.5-.4 396.8 0 6.8 0 16.6-4.4 16.6 9.9zm3.8-340.5v291c0 5.7-.7 13.9-8.1 13.9-12.4-.4-27.5 7.1-36.1-5.6-5.8-8.7-7.8-4-12.4-1.2-53.4 29.7-128.1 7.1-144.4-85.2-6.1-33.4-.7-67.1 15.7-100 11.8-23.9 56.9-76.1 136.1-30.5v-71c0-26.2-.1-26.2 26-26.2 3.1 0 6.6.4 9.7 0 10.1-.8 13.6 4.4 13.6 14.3-.1.2-.1.3-.1.5zm-51.5 232.3c-19.5 47.6-72.9 43.3-90 5.2-15.1-33.3-15.5-68.2.4-101.5 16.3-34.1 59.7-35.7 81.5-4.8 20.6 28.8 14.9 84.6 8.1 101.1zm-294.8 35.3c-7.5-1.3-33-3.3-33.7-27.8-.4-13.9 7.8-23 19.8-25.8 24.4-5.9 49.3-9.9 73.7-14.7 8.9-2 7.4 4.4 7.8 9.5 1.4 33-26.1 59.2-67.6 58.8z"],affiliatetheme:[512,512,[],"f36b","M159.7 237.4C108.4 308.3 43.1 348.2 14 326.6-15.2 304.9 2.8 230 54.2 159.1c51.3-70.9 116.6-110.8 145.7-89.2 29.1 21.6 11.1 96.6-40.2 167.5zm351.2-57.3C437.1 303.5 319 367.8 246.4 323.7c-25-15.2-41.3-41.2-49-73.8-33.6 64.8-92.8 113.8-164.1 133.2 49.8 59.3 124.1 96.9 207 96.9 150 0 271.6-123.1 271.6-274.9.1-8.5-.3-16.8-1-25z"],airbnb:[448,512,[],"f834","M224 373.12c-25.24-31.67-40.08-59.43-45-83.18-22.55-88 112.61-88 90.06 0-5.45 24.25-20.29 52-45 83.18zm138.15 73.23c-42.06 18.31-83.67-10.88-119.3-50.47 103.9-130.07 46.11-200-18.85-200-54.92 0-85.16 46.51-73.28 100.5 6.93 29.19 25.23 62.39 54.43 99.5-32.53 36.05-60.55 52.69-85.15 54.92-50 7.43-89.11-41.06-71.3-91.09 15.1-39.16 111.72-231.18 115.87-241.56 15.75-30.07 25.56-57.4 59.38-57.4 32.34 0 43.4 25.94 60.37 59.87 36 70.62 89.35 177.48 114.84 239.09 13.17 33.07-1.37 71.29-37.01 86.64zm47-136.12C280.27 35.93 273.13 32 224 32c-45.52 0-64.87 31.67-84.66 72.79C33.18 317.1 22.89 347.19 22 349.81-3.22 419.14 48.74 480 111.63 480c21.71 0 60.61-6.06 112.37-62.4 58.68 63.78 101.26 62.4 112.37 62.4 62.89.05 114.85-60.86 89.61-130.19.02-3.89-16.82-38.9-16.82-39.58z"],algolia:[448,512,[],"f36c","M229.3 182.6c-49.3 0-89.2 39.9-89.2 89.2 0 49.3 39.9 89.2 89.2 89.2s89.2-39.9 89.2-89.2c0-49.3-40-89.2-89.2-89.2zm62.7 56.6l-58.9 30.6c-1.8.9-3.8-.4-3.8-2.3V201c0-1.5 1.3-2.7 2.7-2.6 26.2 1 48.9 15.7 61.1 37.1.7 1.3.2 3-1.1 3.7zM389.1 32H58.9C26.4 32 0 58.4 0 90.9V421c0 32.6 26.4 59 58.9 59H389c32.6 0 58.9-26.4 58.9-58.9V90.9C448 58.4 421.6 32 389.1 32zm-202.6 84.7c0-10.8 8.7-19.5 19.5-19.5h45.3c10.8 0 19.5 8.7 19.5 19.5v15.4c0 1.8-1.7 3-3.3 2.5-12.3-3.4-25.1-5.1-38.1-5.1-13.5 0-26.7 1.8-39.4 5.5-1.7.5-3.4-.8-3.4-2.5v-15.8zm-84.4 37l9.2-9.2c7.6-7.6 19.9-7.6 27.5 0l7.7 7.7c1.1 1.1 1 3-.3 4-6.2 4.5-12.1 9.4-17.6 14.9-5.4 5.4-10.4 11.3-14.8 17.4-1 1.3-2.9 1.5-4 .3l-7.7-7.7c-7.6-7.5-7.6-19.8 0-27.4zm127.2 244.8c-70 0-126.6-56.7-126.6-126.6s56.7-126.6 126.6-126.6c70 0 126.6 56.6 126.6 126.6 0 69.8-56.7 126.6-126.6 126.6z"],alipay:[448,512,[],"f642","M377.74 32H70.26C31.41 32 0 63.41 0 102.26v307.48C0 448.59 31.41 480 70.26 480h307.48c38.52 0 69.76-31.08 70.26-69.6-45.96-25.62-110.59-60.34-171.6-88.44-32.07 43.97-84.14 81-148.62 81-70.59 0-93.73-45.3-97.04-76.37-3.97-39.01 14.88-81.5 99.52-81.5 35.38 0 79.35 10.25 127.13 24.96 16.53-30.09 26.45-60.34 26.45-60.34h-178.2v-16.7h92.08v-31.24H88.28v-19.01h109.44V92.34h50.92v50.42h109.44v19.01H248.63v31.24h88.77s-15.21 46.62-38.35 90.92c48.93 16.7 100.01 36.04 148.62 52.74V102.26C447.83 63.57 416.43 32 377.74 32zM47.28 322.95c.99 20.17 10.25 53.73 69.93 53.73 52.07 0 92.58-39.68 117.87-72.9-44.63-18.68-84.48-31.41-109.44-31.41-67.45 0-79.35 33.06-78.36 50.58z"],amazon:[448,512,[],"f270","M257.2 162.7c-48.7 1.8-169.5 15.5-169.5 117.5 0 109.5 138.3 114 183.5 43.2 6.5 10.2 35.4 37.5 45.3 46.8l56.8-56S341 288.9 341 261.4V114.3C341 89 316.5 32 228.7 32 140.7 32 94 87 94 136.3l73.5 6.8c16.3-49.5 54.2-49.5 54.2-49.5 40.7-.1 35.5 29.8 35.5 69.1zm0 86.8c0 80-84.2 68-84.2 17.2 0-47.2 50.5-56.7 84.2-57.8v40.6zm136 163.5c-7.7 10-70 67-174.5 67S34.2 408.5 9.7 379c-6.8-7.7 1-11.3 5.5-8.3C88.5 415.2 203 488.5 387.7 401c7.5-3.7 13.3 2 5.5 12zm39.8 2.2c-6.5 15.8-16 26.8-21.2 31-5.5 4.5-9.5 2.7-6.5-3.8s19.3-46.5 12.7-55c-6.5-8.3-37-4.3-48-3.2-10.8 1-13 2-14-.3-2.3-5.7 21.7-15.5 37.5-17.5 15.7-1.8 41-.8 46 5.7 3.7 5.1 0 27.1-6.5 43.1z"],"amazon-pay":[640,512,[],"f42c","M14 325.3c2.3-4.2 5.2-4.9 9.7-2.5 10.4 5.6 20.6 11.4 31.2 16.7a595.88 595.88 0 0 0 127.4 46.3 616.61 616.61 0 0 0 63.2 11.8 603.33 603.33 0 0 0 95 5.2c17.4-.4 34.8-1.8 52.1-3.8a603.66 603.66 0 0 0 163.3-42.8c2.9-1.2 5.9-2 9.1-1.2 6.7 1.8 9 9 4.1 13.9a70 70 0 0 1-9.6 7.4c-30.7 21.1-64.2 36.4-99.6 47.9a473.31 473.31 0 0 1-75.1 17.6 431 431 0 0 1-53.2 4.8 21.3 21.3 0 0 0-2.5.3H308a21.3 21.3 0 0 0-2.5-.3c-3.6-.2-7.2-.3-10.7-.4a426.3 426.3 0 0 1-50.4-5.3A448.4 448.4 0 0 1 164 420a443.33 443.33 0 0 1-145.6-87c-1.8-1.6-3-3.8-4.4-5.7zM172 65.1l-4.3.6a80.92 80.92 0 0 0-38 15.1c-2.4 1.7-4.6 3.5-7.1 5.4a4.29 4.29 0 0 1-.4-1.4c-.4-2.7-.8-5.5-1.3-8.2-.7-4.6-3-6.6-7.6-6.6h-11.5c-6.9 0-8.2 1.3-8.2 8.2v209.3c0 1 0 2 .1 3 .2 3 2 4.9 4.9 5 7 .1 14.1.1 21.1 0 2.9 0 4.7-2 5-5 .1-1 .1-2 .1-3v-72.4c1.1.9 1.7 1.4 2.2 1.9 17.9 14.9 38.5 19.8 61 15.4 20.4-4 34.6-16.5 43.8-34.9 7-13.9 9.9-28.7 10.3-44.1.5-17.1-1.2-33.9-8.1-49.8-8.5-19.6-22.6-32.5-43.9-36.9-3.2-.7-6.5-1-9.8-1.5-2.8-.1-5.5-.1-8.3-.1zM124.6 107a3.48 3.48 0 0 1 1.7-3.3c13.7-9.5 28.8-14.5 45.6-13.2 14.9 1.1 27.1 8.4 33.5 25.9 3.9 10.7 4.9 21.8 4.9 33 0 10.4-.8 20.6-4 30.6-6.8 21.3-22.4 29.4-42.6 28.5-14-.6-26.2-6-37.4-13.9a3.57 3.57 0 0 1-1.7-3.3c.1-14.1 0-28.1 0-42.2s.1-28 0-42.1zm205.7-41.9c-1 .1-2 .3-2.9.4a148 148 0 0 0-28.9 4.1c-6.1 1.6-12 3.8-17.9 5.8-3.6 1.2-5.4 3.8-5.3 7.7.1 3.3-.1 6.6 0 9.9.1 4.8 2.1 6.1 6.8 4.9 7.8-2 15.6-4.2 23.5-5.7 12.3-2.3 24.7-3.3 37.2-1.4 6.5 1 12.6 2.9 16.8 8.4 3.7 4.8 5.1 10.5 5.3 16.4.3 8.3.2 16.6.3 24.9a7.84 7.84 0 0 1-.2 1.4c-.5-.1-.9 0-1.3-.1a180.56 180.56 0 0 0-32-4.9c-11.3-.6-22.5.1-33.3 3.9-12.9 4.5-23.3 12.3-29.4 24.9-4.7 9.8-5.4 20.2-3.9 30.7 2 14 9 24.8 21.4 31.7 11.9 6.6 24.8 7.4 37.9 5.4 15.1-2.3 28.5-8.7 40.3-18.4a7.36 7.36 0 0 1 1.6-1.1c.6 3.8 1.1 7.4 1.8 11 .6 3.1 2.5 5.1 5.4 5.2 5.4.1 10.9.1 16.3 0a4.84 4.84 0 0 0 4.8-4.7 26.2 26.2 0 0 0 .1-2.8v-106a80 80 0 0 0-.9-12.9c-1.9-12.9-7.4-23.5-19-30.4-6.7-4-14.1-6-21.8-7.1-3.6-.5-7.2-.8-10.8-1.3-3.9.1-7.9.1-11.9.1zm35 127.7a3.33 3.33 0 0 1-1.5 3c-11.2 8.1-23.5 13.5-37.4 14.9-5.7.6-11.4.4-16.8-1.8a20.08 20.08 0 0 1-12.4-13.3 32.9 32.9 0 0 1-.1-19.4c2.5-8.3 8.4-13 16.4-15.6a61.33 61.33 0 0 1 24.8-2.2c8.4.7 16.6 2.3 25 3.4 1.6.2 2.1 1 2.1 2.6-.1 4.8 0 9.5 0 14.3s-.2 9.4-.1 14.1zm259.9 129.4c-1-5-4.8-6.9-9.1-8.3a88.42 88.42 0 0 0-21-3.9 147.32 147.32 0 0 0-39.2 1.9c-14.3 2.7-27.9 7.3-40 15.6a13.75 13.75 0 0 0-3.7 3.5 5.11 5.11 0 0 0-.5 4c.4 1.5 2.1 1.9 3.6 1.8a16.2 16.2 0 0 0 2.2-.1c7.8-.8 15.5-1.7 23.3-2.5 11.4-1.1 22.9-1.8 34.3-.9a71.64 71.64 0 0 1 14.4 2.7c5.1 1.4 7.4 5.2 7.6 10.4.4 8-1.4 15.7-3.5 23.3-4.1 15.4-10 30.3-15.8 45.1a17.6 17.6 0 0 0-1 3c-.5 2.9 1.2 4.8 4.1 4.1a10.56 10.56 0 0 0 4.8-2.5 145.91 145.91 0 0 0 12.7-13.4c12.8-16.4 20.3-35.3 24.7-55.6.8-3.6 1.4-7.3 2.1-10.9v-17.3zM493.1 199q-19.35-53.55-38.7-107.2c-2-5.7-4.2-11.3-6.3-16.9-1.1-2.9-3.2-4.8-6.4-4.8-7.6-.1-15.2-.2-22.9-.1-2.5 0-3.7 2-3.2 4.5a43.1 43.1 0 0 0 1.9 6.1q29.4 72.75 59.1 145.5c1.7 4.1 2.1 7.6.2 11.8-3.3 7.3-5.9 15-9.3 22.3-3 6.5-8 11.4-15.2 13.3a42.13 42.13 0 0 1-15.4 1.1c-2.5-.2-5-.8-7.5-1-3.4-.2-5.1 1.3-5.2 4.8q-.15 5 0 9.9c.1 5.5 2 8 7.4 8.9a108.18 108.18 0 0 0 16.9 2c17.1.4 30.7-6.5 39.5-21.4a131.63 131.63 0 0 0 9.2-18.4q35.55-89.7 70.6-179.6a26.62 26.62 0 0 0 1.6-5.5c.4-2.8-.9-4.4-3.7-4.4-6.6-.1-13.3 0-19.9 0a7.54 7.54 0 0 0-7.7 5.2c-.5 1.4-1.1 2.7-1.6 4.1l-34.8 100c-2.5 7.2-5.1 14.5-7.7 22.2-.4-1.1-.6-1.7-.9-2.4z"],amilia:[448,512,[],"f36d","M240.1 32c-61.9 0-131.5 16.9-184.2 55.4-5.1 3.1-9.1 9.2-7.2 19.4 1.1 5.1 5.1 27.4 10.2 39.6 4.1 10.2 14.2 10.2 20.3 6.1 32.5-22.3 96.5-47.7 152.3-47.7 57.9 0 58.9 28.4 58.9 73.1v38.5C203 227.7 78.2 251 46.7 264.2 11.2 280.5 16.3 357.7 16.3 376s15.2 104 124.9 104c47.8 0 113.7-20.7 153.3-42.1v25.4c0 3 2.1 8.2 6.1 9.1 3.1 1 50.7 2 59.9 2s62.5.3 66.5-.7c4.1-1 5.1-6.1 5.1-9.1V168c-.1-80.3-57.9-136-192-136zm50.2 348c-21.4 13.2-48.7 24.4-79.1 24.4-52.8 0-58.9-33.5-59-44.7 0-12.2-3-42.7 18.3-52.9 24.3-13.2 75.1-29.4 119.8-33.5z"],android:[576,512,[],"f17b","M420.55,301.93a24,24,0,1,1,24-24,24,24,0,0,1-24,24m-265.1,0a24,24,0,1,1,24-24,24,24,0,0,1-24,24m273.7-144.48,47.94-83a10,10,0,1,0-17.27-10h0l-48.54,84.07a301.25,301.25,0,0,0-246.56,0L116.18,64.45a10,10,0,1,0-17.27,10h0l47.94,83C64.53,202.22,8.24,285.55,0,384H576c-8.24-98.45-64.54-181.78-146.85-226.55"],angellist:[448,512,[],"f209","M347.1 215.4c11.7-32.6 45.4-126.9 45.4-157.1 0-26.6-15.7-48.9-43.7-48.9-44.6 0-84.6 131.7-97.1 163.1C242 144 196.6 0 156.6 0c-31.1 0-45.7 22.9-45.7 51.7 0 35.3 34.2 126.8 46.6 162-6.3-2.3-13.1-4.3-20-4.3-23.4 0-48.3 29.1-48.3 52.6 0 8.9 4.9 21.4 8 29.7-36.9 10-51.1 34.6-51.1 71.7C46 435.6 114.4 512 210.6 512c118 0 191.4-88.6 191.4-202.9 0-43.1-6.9-82-54.9-93.7zM311.7 108c4-12.3 21.1-64.3 37.1-64.3 8.6 0 10.9 8.9 10.9 16 0 19.1-38.6 124.6-47.1 148l-34-6 33.1-93.7zM142.3 48.3c0-11.9 14.5-45.7 46.3 47.1l34.6 100.3c-15.6-1.3-27.7-3-35.4 1.4-10.9-28.8-45.5-119.7-45.5-148.8zM140 244c29.3 0 67.1 94.6 67.1 107.4 0 5.1-4.9 11.4-10.6 11.4-20.9 0-76.9-76.9-76.9-97.7.1-7.7 12.7-21.1 20.4-21.1zm184.3 186.3c-29.1 32-66.3 48.6-109.7 48.6-59.4 0-106.3-32.6-128.9-88.3-17.1-43.4 3.8-68.3 20.6-68.3 11.4 0 54.3 60.3 54.3 73.1 0 4.9-7.7 8.3-11.7 8.3-16.1 0-22.4-15.5-51.1-51.4-29.7 29.7 20.5 86.9 58.3 86.9 26.1 0 43.1-24.2 38-42 3.7 0 8.3.3 11.7-.6 1.1 27.1 9.1 59.4 41.7 61.7 0-.9 2-7.1 2-7.4 0-17.4-10.6-32.6-10.6-50.3 0-28.3 21.7-55.7 43.7-71.7 8-6 17.7-9.7 27.1-13.1 9.7-3.7 20-8 27.4-15.4-1.1-11.2-5.7-21.1-16.9-21.1-27.7 0-120.6 4-120.6-39.7 0-6.7.1-13.1 17.4-13.1 32.3 0 114.3 8 138.3 29.1 18.1 16.1 24.3 113.2-31 174.7zm-98.6-126c9.7 3.1 19.7 4 29.7 6-7.4 5.4-14 12-20.3 19.1-2.8-8.5-6.2-16.8-9.4-25.1z"],angrycreative:[640,512,[],"f36e","M640 238.2l-3.2 28.2-34.5 2.3-2 18.1 34.5-2.3-3.2 28.2-34.4 2.2-2.3 20.1 34.4-2.2-3 26.1-64.7 4.1 12.7-113.2L527 365.2l-31.9 2-23.8-117.8 30.3-2 13.6 79.4 31.7-82.4 93.1-6.2zM426.8 371.5l28.3-1.8L468 249.6l-28.4 1.9-12.8 120zM162 388.1l-19.4-36-3.5 37.4-28.2 1.7 2.7-29.1c-11 18-32 34.3-56.9 35.8C23.9 399.9-3 377 .3 339.7c2.6-29.3 26.7-62.8 67.5-65.4 37.7-2.4 47.6 23.2 51.3 28.8l2.8-30.8 38.9-2.5c20.1-1.3 38.7 3.7 42.5 23.7l2.6-26.6 64.8-4.2-2.7 27.9-36.4 2.4-1.7 17.9 36.4-2.3-2.7 27.9-36.4 2.3-1.9 19.9 36.3-2.3-2.1 20.8 55-117.2 23.8-1.6L370.4 369l8.9-85.6-22.3 1.4 2.9-27.9 75-4.9-3 28-24.3 1.6-9.7 91.9-58 3.7-4.3-15.6-39.4 2.5-8 16.3-126.2 7.7zm-44.3-70.2l-26.4 1.7C84.6 307.2 76.9 303 65 303.8c-19 1.2-33.3 17.5-34.6 33.3-1.4 16 7.3 32.5 28.7 31.2 12.8-.8 21.3-8.6 28.9-18.9l27-1.7 2.7-29.8zm56.1-7.7c1.2-12.9-7.6-13.6-26.1-12.4l-2.7 28.5c14.2-.9 27.5-2.1 28.8-16.1zm21.1 70.8l5.8-60c-5 13.5-14.7 21.1-27.9 26.6l22.1 33.4zm135.4-45l-7.9-37.8-15.8 39.3 23.7-1.5zm-170.1-74.6l-4.3-17.5-39.6 2.6-8.1 18.2-31.9 2.1 57-121.9 23.9-1.6 30.7 102 9.9-104.7 27-1.8 37.8 63.6 6.5-66.6 28.5-1.9-4 41.2c7.4-13.5 22.9-44.7 63.6-47.5 40.5-2.8 52.4 29.3 53.4 30.3l3.3-32 39.3-2.7c12.7-.9 27.8.3 36.3 9.7l-4.4-11.9 32.2-2.2 12.9 43.2 23-45.7 31-2.2-43.6 78.4-4.8 44.3-28.4 1.9 4.8-44.3-15.8-43c1 22.3-9.2 40.1-32 49.6l25.2 38.8-36.4 2.4-19.2-36.8-4 38.3-28.4 1.9 3.3-31.5c-6.7 9.3-19.7 35.4-59.6 38-26.2 1.7-45.6-10.3-55.4-39.2l-4 40.3-25 1.6-37.6-63.3-6.3 66.2-56.8 3.7zm276.6-82.1c10.2-.7 17.5-2.1 21.6-4.3 4.5-2.4 7-6.4 7.6-12.1.6-5.3-.6-8.8-3.4-10.4-3.6-2.1-10.6-2.8-22.9-2l-2.9 28.8zM327.7 214c5.6 5.9 12.7 8.5 21.3 7.9 4.7-.3 9.1-1.8 13.3-4.1 5.5-3 10.6-8 15.1-14.3l-34.2 2.3 2.4-23.9 63.1-4.3 1.2-12-31.2 2.1c-4.1-3.7-7.8-6.6-11.1-8.1-4-1.7-8.1-2.8-12.2-2.5-8 .5-15.3 3.6-22 9.2-7.7 6.4-12 14.5-12.9 24.4-1.1 9.6 1.4 17.3 7.2 23.3zm-201.3 8.2l23.8-1.6-8.3-37.6-15.5 39.2z"],angular:[448,512,[],"f420","M185.7 268.1h76.2l-38.1-91.6-38.1 91.6zM223.8 32L16 106.4l31.8 275.7 176 97.9 176-97.9 31.8-275.7zM354 373.8h-48.6l-26.2-65.4H168.6l-26.2 65.4H93.7L223.8 81.5z"],"app-store":[512,512,[],"f36f","M255.9 120.9l9.1-15.7c5.6-9.8 18.1-13.1 27.9-7.5 9.8 5.6 13.1 18.1 7.5 27.9l-87.5 151.5h63.3c20.5 0 32 24.1 23.1 40.8H113.8c-11.3 0-20.4-9.1-20.4-20.4 0-11.3 9.1-20.4 20.4-20.4h52l66.6-115.4-20.8-36.1c-5.6-9.8-2.3-22.2 7.5-27.9 9.8-5.6 22.2-2.3 27.9 7.5l8.9 15.7zm-78.7 218l-19.6 34c-5.6 9.8-18.1 13.1-27.9 7.5-9.8-5.6-13.1-18.1-7.5-27.9l14.6-25.2c16.4-5.1 29.8-1.2 40.4 11.6zm168.9-61.7h53.1c11.3 0 20.4 9.1 20.4 20.4 0 11.3-9.1 20.4-20.4 20.4h-29.5l19.9 34.5c5.6 9.8 2.3 22.2-7.5 27.9-9.8 5.6-22.2 2.3-27.9-7.5-33.5-58.1-58.7-101.6-75.4-130.6-17.1-29.5-4.9-59.1 7.2-69.1 13.4 23 33.4 57.7 60.1 104zM256 8C119 8 8 119 8 256s111 248 248 248 248-111 248-248S393 8 256 8zm216 248c0 118.7-96.1 216-216 216-118.7 0-216-96.1-216-216 0-118.7 96.1-216 216-216 118.7 0 216 96.1 216 216z"],"app-store-ios":[448,512,[],"f370","M400 32H48C21.5 32 0 53.5 0 80v352c0 26.5 21.5 48 48 48h352c26.5 0 48-21.5 48-48V80c0-26.5-21.5-48-48-48zM127 384.5c-5.5 9.6-17.8 12.8-27.3 7.3-9.6-5.5-12.8-17.8-7.3-27.3l14.3-24.7c16.1-4.9 29.3-1.1 39.6 11.4L127 384.5zm138.9-53.9H84c-11 0-20-9-20-20s9-20 20-20h51l65.4-113.2-20.5-35.4c-5.5-9.6-2.2-21.8 7.3-27.3 9.6-5.5 21.8-2.2 27.3 7.3l8.9 15.4 8.9-15.4c5.5-9.6 17.8-12.8 27.3-7.3 9.6 5.5 12.8 17.8 7.3 27.3l-85.8 148.6h62.1c20.2 0 31.5 23.7 22.7 40zm98.1 0h-29l19.6 33.9c5.5 9.6 2.2 21.8-7.3 27.3-9.6 5.5-21.8 2.2-27.3-7.3-32.9-56.9-57.5-99.7-74-128.1-16.7-29-4.8-58 7.1-67.8 13.1 22.7 32.7 56.7 58.9 102h52c11 0 20 9 20 20 0 11.1-9 20-20 20z"],apper:[640,512,[],"f371","M42.1 239.1c22.2 0 29 2.8 33.5 14.6h.8v-22.9c0-11.3-4.8-15.4-17.9-15.4-11.3 0-14.4 2.5-15.1 12.8H4.8c.3-13.9 1.5-19.1 5.8-24.4C17.9 195 29.5 192 56.7 192c33 0 47.1 5 53.9 18.9 2 4.3 4 15.6 4 23.7v76.3H76.3l1.3-19.1h-1c-5.3 15.6-13.6 20.4-35.5 20.4-30.3 0-41.1-10.1-41.1-37.3 0-25.2 12.3-35.8 42.1-35.8zm17.1 48.1c13.1 0 16.9-3 16.9-13.4 0-9.1-4.3-11.6-19.6-11.6-13.1 0-17.9 3-17.9 12.1-.1 10.4 3.7 12.9 20.6 12.9zm77.8-94.9h38.3l-1.5 20.6h.8c9.1-17.1 15.9-20.9 37.5-20.9 14.4 0 24.7 3 31.5 9.1 9.8 8.6 12.8 20.4 12.8 48.1 0 30-3 43.1-12.1 52.9-6.8 7.3-16.4 10.1-33.2 10.1-20.4 0-29.2-5.5-33.8-21.2h-.8v70.3H137v-169zm80.9 60.7c0-27.5-3.3-32.5-20.7-32.5-16.9 0-20.7 5-20.7 28.7 0 28 3.5 33.5 21.2 33.5 16.4 0 20.2-5.6 20.2-29.7zm57.9-60.7h38.3l-1.5 20.6h.8c9.1-17.1 15.9-20.9 37.5-20.9 14.4 0 24.7 3 31.5 9.1 9.8 8.6 12.8 20.4 12.8 48.1 0 30-3 43.1-12.1 52.9-6.8 7.3-16.4 10.1-33.3 10.1-20.4 0-29.2-5.5-33.8-21.2h-.8v70.3h-39.5v-169zm80.9 60.7c0-27.5-3.3-32.5-20.7-32.5-16.9 0-20.7 5-20.7 28.7 0 28 3.5 33.5 21.2 33.5 16.4 0 20.2-5.6 20.2-29.7zm53.8-3.8c0-25.4 3.3-37.8 12.3-45.8 8.8-8.1 22.2-11.3 45.1-11.3 42.8 0 55.7 12.8 55.7 55.7v11.1h-75.3c-.3 2-.3 4-.3 4.8 0 16.9 4.5 21.9 20.1 21.9 13.9 0 17.9-3 17.9-13.9h37.5v2.3c0 9.8-2.5 18.9-6.8 24.7-7.3 9.8-19.6 13.6-44.3 13.6-27.5 0-41.6-3.3-50.6-12.3-8.5-8.5-11.3-21.3-11.3-50.8zm76.4-11.6c-.3-1.8-.3-3.3-.3-3.8 0-12.3-3.3-14.6-19.6-14.6-14.4 0-17.1 3-18.1 15.1l-.3 3.3h38.3zm55.6-45.3h38.3l-1.8 19.9h.7c6.8-14.9 14.4-20.2 29.7-20.2 10.8 0 19.1 3.3 23.4 9.3 5.3 7.3 6.8 14.4 6.8 34 0 1.5 0 5 .2 9.3h-35c.3-1.8.3-3.3.3-4 0-15.4-2-19.4-10.3-19.4-6.3 0-10.8 3.3-13.1 9.3-1 3-1 4.3-1 12.3v68h-38.3V192.3z"],apple:[384,512,[],"f179","M318.7 268.7c-.2-36.7 16.4-64.4 50-84.8-18.8-26.9-47.2-41.7-84.7-44.6-35.5-2.8-74.3 20.7-88.5 20.7-15 0-49.4-19.7-76.4-19.7C63.3 141.2 4 184.8 4 273.5q0 39.3 14.4 81.2c12.8 36.7 59 126.7 107.2 125.2 25.2-.6 43-17.9 75.8-17.9 31.8 0 48.3 17.9 76.4 17.9 48.6-.7 90.4-82.5 102.6-119.3-65.2-30.7-61.7-90-61.7-91.9zm-56.6-164.2c27.3-32.4 24.8-61.9 24-72.5-24.1 1.4-52 16.4-67.9 34.9-17.5 19.8-27.8 44.3-25.6 71.9 26.1 2 49.9-11.4 69.5-34.3z"],"apple-pay":[640,512,[],"f415","M116.9 158.5c-7.5 8.9-19.5 15.9-31.5 14.9-1.5-12 4.4-24.8 11.3-32.6 7.5-9.1 20.6-15.6 31.3-16.1 1.2 12.4-3.7 24.7-11.1 33.8m10.9 17.2c-17.4-1-32.3 9.9-40.5 9.9-8.4 0-21-9.4-34.8-9.1-17.9.3-34.5 10.4-43.6 26.5-18.8 32.3-4.9 80 13.3 106.3 8.9 13 19.5 27.3 33.5 26.8 13.3-.5 18.5-8.6 34.5-8.6 16.1 0 20.8 8.6 34.8 8.4 14.5-.3 23.6-13 32.5-26 10.1-14.8 14.3-29.1 14.5-29.9-.3-.3-28-10.9-28.3-42.9-.3-26.8 21.9-39.5 22.9-40.3-12.5-18.6-32-20.6-38.8-21.1m100.4-36.2v194.9h30.3v-66.6h41.9c38.3 0 65.1-26.3 65.1-64.3s-26.4-64-64.1-64h-73.2zm30.3 25.5h34.9c26.3 0 41.3 14 41.3 38.6s-15 38.8-41.4 38.8h-34.8V165zm162.2 170.9c19 0 36.6-9.6 44.6-24.9h.6v23.4h28v-97c0-28.1-22.5-46.3-57.1-46.3-32.1 0-55.9 18.4-56.8 43.6h27.3c2.3-12 13.4-19.9 28.6-19.9 18.5 0 28.9 8.6 28.9 24.5v10.8l-37.8 2.3c-35.1 2.1-54.1 16.5-54.1 41.5.1 25.2 19.7 42 47.8 42zm8.2-23.1c-16.1 0-26.4-7.8-26.4-19.6 0-12.3 9.9-19.4 28.8-20.5l33.6-2.1v11c0 18.2-15.5 31.2-36 31.2zm102.5 74.6c29.5 0 43.4-11.3 55.5-45.4L640 193h-30.8l-35.6 115.1h-.6L537.4 193h-31.6L557 334.9l-2.8 8.6c-4.6 14.6-12.1 20.3-25.5 20.3-2.4 0-7-.3-8.9-.5v23.4c1.8.4 9.3.7 11.6.7z"],artstation:[512,512,[],"f77a","M2 377.4l43 74.3A51.35 51.35 0 0 0 90.9 480h285.4l-59.2-102.6zM501.8 350L335.6 59.3A51.38 51.38 0 0 0 290.2 32h-88.4l257.3 447.6 40.7-70.5c1.9-3.2 21-29.7 2-59.1zM275 304.5l-115.5-200L44 304.5z"],asymmetrik:[576,512,[],"f372","M517.5 309.2c38.8-40 58.1-80 58.5-116.1.8-65.5-59.4-118.2-169.4-135C277.9 38.4 118.1 73.6 0 140.5 52 114 110.6 92.3 170.7 82.3c74.5-20.5 153-25.4 221.3-14.8C544.5 91.3 588.8 195 490.8 299.2c-10.2 10.8-22 21.1-35 30.6L304.9 103.4 114.7 388.9c-65.6-29.4-76.5-90.2-19.1-151.2 20.8-22.2 48.3-41.9 79.5-58.1 20-12.2 39.7-22.6 62-30.7-65.1 20.3-122.7 52.9-161.6 92.9-27.7 28.6-41.4 57.1-41.7 82.9-.5 35.1 23.4 65.1 68.4 83l-34.5 51.7h101.6l22-34.4c22.2 1 45.3 0 68.6-2.7l-22.8 37.1h135.5L340 406.3c18.6-5.3 36.9-11.5 54.5-18.7l45.9 71.8H542L468.6 349c18.5-12.1 35-25.5 48.9-39.8zm-187.6 80.5l-25-40.6-32.7 53.3c-23.4 3.5-46.7 5.1-69.2 4.4l101.9-159.3 78.7 123c-17.2 7.4-35.3 13.9-53.7 19.2z"],atlassian:[512,512,[],"f77b","M152.2 236.4c-7.7-8.2-19.7-7.7-24.8 2.8L1.6 490.2c-5 10 2.4 21.7 13.4 21.7h175c5.8.1 11-3.2 13.4-8.4 37.9-77.8 15.1-196.3-51.2-267.1zM244.4 8.1c-122.3 193.4-8.5 348.6 65 495.5 2.5 5.1 7.7 8.4 13.4 8.4H497c11.2 0 18.4-11.8 13.4-21.7 0 0-234.5-470.6-240.4-482.3-5.3-10.6-18.8-10.8-25.6.1z"],audible:[640,512,[],"f373","M640 199.9v54l-320 200L0 254v-54l320 200 320-200.1zm-194.5 72l47.1-29.4c-37.2-55.8-100.7-92.6-172.7-92.6-72 0-135.5 36.7-172.6 92.4h.3c2.5-2.3 5.1-4.5 7.7-6.7 89.7-74.4 219.4-58.1 290.2 36.3zm-220.1 18.8c16.9-11.9 36.5-18.7 57.4-18.7 34.4 0 65.2 18.4 86.4 47.6l45.4-28.4c-20.9-29.9-55.6-49.5-94.8-49.5-38.9 0-73.4 19.4-94.4 49zM103.6 161.1c131.8-104.3 318.2-76.4 417.5 62.1l.7 1 48.8-30.4C517.1 112.1 424.8 58.1 319.9 58.1c-103.5 0-196.6 53.5-250.5 135.6 9.9-10.5 22.7-23.5 34.2-32.6zm467 32.7z"],autoprefixer:[640,512,[],"f41c","M318.4 16l-161 480h77.5l25.4-81.4h119.5L405 496h77.5L318.4 16zm-40.3 341.9l41.2-130.4h1.5l40.9 130.4h-83.6zM640 405l-10-31.4L462.1 358l19.4 56.5L640 405zm-462.1-47L10 373.7 0 405l158.5 9.4 19.4-56.4z"],avianex:[512,512,[],"f374","M453.1 32h-312c-38.9 0-76.2 31.2-83.3 69.7L1.2 410.3C-5.9 448.8 19.9 480 58.9 480h312c38.9 0 76.2-31.2 83.3-69.7l56.7-308.5c7-38.6-18.8-69.8-57.8-69.8zm-58.2 347.3l-32 13.5-115.4-110c-14.7 10-29.2 19.5-41.7 27.1l22.1 64.2-17.9 12.7-40.6-61-52.4-48.1 15.7-15.4 58 31.1c9.3-10.5 20.8-22.6 32.8-34.9L203 228.9l-68.8-99.8 18.8-28.9 8.9-4.8L265 207.8l4.9 4.5c19.4-18.8 33.8-32.4 33.8-32.4 7.7-6.5 21.5-2.9 30.7 7.9 9 10.5 10.6 24.7 2.7 31.3-1.8 1.3-15.5 11.4-35.3 25.6l4.5 7.3 94.9 119.4-6.3 7.9z"],aviato:[640,512,[],"f421","M107.2 283.5l-19-41.8H36.1l-19 41.8H0l62.2-131.4 62.2 131.4h-17.2zm-45-98.1l-19.6 42.5h39.2l-19.6-42.5zm112.7 102.4l-62.2-131.4h17.1l45.1 96 45.1-96h17l-62.1 131.4zm80.6-4.3V156.4H271v127.1h-15.5zm209.1-115.6v115.6h-17.3V167.9h-41.2v-11.5h99.6v11.5h-41.1zM640 218.8c0 9.2-1.7 17.8-5.1 25.8-3.4 8-8.2 15.1-14.2 21.1-6 6-13.1 10.8-21.1 14.2-8 3.4-16.6 5.1-25.8 5.1s-17.8-1.7-25.8-5.1c-8-3.4-15.1-8.2-21.1-14.2-6-6-10.8-13-14.2-21.1-3.4-8-5.1-16.6-5.1-25.8s1.7-17.8 5.1-25.8c3.4-8 8.2-15.1 14.2-21.1 6-6 13-8.4 21.1-11.9 8-3.4 16.6-5.1 25.8-5.1s17.8 1.7 25.8 5.1c8 3.4 15.1 5.8 21.1 11.9 6 6 10.7 13.1 14.2 21.1 3.4 8 5.1 16.6 5.1 25.8zm-15.5 0c0-7.3-1.3-14-3.9-20.3-2.6-6.3-6.2-11.7-10.8-16.3-4.6-4.6-10-8.2-16.2-10.9-6.2-2.7-12.8-4-19.8-4s-13.6 1.3-19.8 4c-6.2 2.7-11.6 6.3-16.2 10.9-4.6 4.6-8.2 10-10.8 16.3-2.6 6.3-3.9 13.1-3.9 20.3 0 7.3 1.3 14 3.9 20.3 2.6 6.3 6.2 11.7 10.8 16.3 4.6 4.6 10 8.2 16.2 10.9 6.2 2.7 12.8 4 19.8 4s13.6-1.3 19.8-4c6.2-2.7 11.6-6.3 16.2-10.9 4.6-4.6 8.2-10 10.8-16.3 2.6-6.3 3.9-13.1 3.9-20.3zm-94.8 96.7v-6.3l88.9-10-242.9 13.4c.6-2.2 1.1-4.6 1.4-7.2.3-2 .5-4.2.6-6.5l64.8-8.1-64.9 1.9c0-.4-.1-.7-.1-1.1-2.8-17.2-25.5-23.7-25.5-23.7l-1.1-26.3h23.8l19 41.8h17.1L348.6 152l-62.2 131.4h17.1l19-41.8h23.6L345 268s-22.7 6.5-25.5 23.7c-.1.3-.1.7-.1 1.1l-64.9-1.9 64.8 8.1c.1 2.3.3 4.4.6 6.5.3 2.6.8 5 1.4 7.2L78.4 299.2l88.9 10v6.3c-5.9.9-10.5 6-10.5 12.2 0 6.8 5.6 12.4 12.4 12.4 6.8 0 12.4-5.6 12.4-12.4 0-6.2-4.6-11.3-10.5-12.2v-5.8l80.3 9v5.4c-5.7 1.1-9.9 6.2-9.9 12.1 0 6.8 5.6 10.2 12.4 10.2 6.8 0 12.4-3.4 12.4-10.2 0-6-4.3-11-9.9-12.1v-4.9l28.4 3.2v23.7h-5.9V360h5.9v-6.6h5v6.6h5.9v-13.8h-5.9V323l38.3 4.3c8.1 11.4 19 13.6 19 13.6l-.1 6.7-5.1.2-.1 12.1h4.1l.1-5h5.2l.1 5h4.1l-.1-12.1-5.1-.2-.1-6.7s10.9-2.1 19-13.6l38.3-4.3v23.2h-5.9V360h5.9v-6.6h5v6.6h5.9v-13.8h-5.9v-23.7l28.4-3.2v4.9c-5.7 1.1-9.9 6.2-9.9 12.1 0 6.8 5.6 10.2 12.4 10.2 6.8 0 12.4-3.4 12.4-10.2 0-6-4.3-11-9.9-12.1v-5.4l80.3-9v5.8c-5.9.9-10.5 6-10.5 12.2 0 6.8 5.6 12.4 12.4 12.4 6.8 0 12.4-5.6 12.4-12.4-.2-6.3-4.7-11.4-10.7-12.3zm-200.8-87.6l19.6-42.5 19.6 42.5h-17.9l-1.7-40.3-1.7 40.3h-17.9z"],aws:[640,512,[],"f375","M180.41 203.01c-.72 22.65 10.6 32.68 10.88 39.05a8.164 8.164 0 0 1-4.1 6.27l-12.8 8.96a10.66 10.66 0 0 1-5.63 1.92c-.43-.02-8.19 1.83-20.48-25.61a78.608 78.608 0 0 1-62.61 29.45c-16.28.89-60.4-9.24-58.13-56.21-1.59-38.28 34.06-62.06 70.93-60.05 7.1.02 21.6.37 46.99 6.27v-15.62c2.69-26.46-14.7-46.99-44.81-43.91-2.4.01-19.4-.5-45.84 10.11-7.36 3.38-8.3 2.82-10.75 2.82-7.41 0-4.36-21.48-2.94-24.2 5.21-6.4 35.86-18.35 65.94-18.18a76.857 76.857 0 0 1 55.69 17.28 70.285 70.285 0 0 1 17.67 52.36l-.01 69.29zM93.99 235.4c32.43-.47 46.16-19.97 49.29-30.47 2.46-10.05 2.05-16.41 2.05-27.4-9.67-2.32-23.59-4.85-39.56-4.87-15.15-1.14-42.82 5.63-41.74 32.26-1.24 16.79 11.12 31.4 29.96 30.48zm170.92 23.05c-7.86.72-11.52-4.86-12.68-10.37l-49.8-164.65c-.97-2.78-1.61-5.65-1.92-8.58a4.61 4.61 0 0 1 3.86-5.25c.24-.04-2.13 0 22.25 0 8.78-.88 11.64 6.03 12.55 10.37l35.72 140.83 33.16-140.83c.53-3.22 2.94-11.07 12.8-10.24h17.16c2.17-.18 11.11-.5 12.68 10.37l33.42 142.63L420.98 80.1c.48-2.18 2.72-11.37 12.68-10.37h19.72c.85-.13 6.15-.81 5.25 8.58-.43 1.85 3.41-10.66-52.75 169.9-1.15 5.51-4.82 11.09-12.68 10.37h-18.69c-10.94 1.15-12.51-9.66-12.68-10.75L328.67 110.7l-32.78 136.99c-.16 1.09-1.73 11.9-12.68 10.75h-18.3zm273.48 5.63c-5.88.01-33.92-.3-57.36-12.29a12.802 12.802 0 0 1-7.81-11.91v-10.75c0-8.45 6.2-6.9 8.83-5.89 10.04 4.06 16.48 7.14 28.81 9.6 36.65 7.53 52.77-2.3 56.72-4.48 13.15-7.81 14.19-25.68 5.25-34.95-10.48-8.79-15.48-9.12-53.13-21-4.64-1.29-43.7-13.61-43.79-52.36-.61-28.24 25.05-56.18 69.52-55.95 12.67-.01 46.43 4.13 55.57 15.62 1.35 2.09 2.02 4.55 1.92 7.04v10.11c0 4.44-1.62 6.66-4.87 6.66-7.71-.86-21.39-11.17-49.16-10.75-6.89-.36-39.89.91-38.41 24.97-.43 18.96 26.61 26.07 29.7 26.89 36.46 10.97 48.65 12.79 63.12 29.58 17.14 22.25 7.9 48.3 4.35 55.44-19.08 37.49-68.42 34.44-69.26 34.42zm40.2 104.86c-70.03 51.72-171.69 79.25-258.49 79.25A469.127 469.127 0 0 1 2.83 327.46c-6.53-5.89-.77-13.96 7.17-9.47a637.37 637.37 0 0 0 316.88 84.12 630.22 630.22 0 0 0 241.59-49.55c11.78-5 21.77 7.8 10.12 16.38zm29.19-33.29c-8.96-11.52-59.28-5.38-81.81-2.69-6.79.77-7.94-5.12-1.79-9.47 40.07-28.17 105.88-20.1 113.44-10.63 7.55 9.47-2.05 75.41-39.56 106.91-5.76 4.87-11.27 2.3-8.71-4.1 8.44-21.25 27.39-68.49 18.43-80.02z"],bandcamp:[496,512,[],"f2d5","M248 8C111 8 0 119 0 256s111 248 248 248 248-111 248-248S385 8 248 8zm48.2 326.1h-181L199.9 178h181l-84.7 156.1z"],"battle-net":[512,512,[],"f835","M448.61 225.62c26.87.18 35.57-7.43 38.92-12.37 12.47-16.32-7.06-47.6-52.85-71.33 17.76-33.58 30.11-63.68 36.34-85.3 3.38-11.83 1.09-19 .45-20.25-1.72 10.52-15.85 48.46-48.2 100.05-25-11.22-56.52-20.1-93.77-23.8-8.94-16.94-34.88-63.86-60.48-88.93C252.18 7.14 238.7 1.07 228.18.22h-.05c-13.83-1.55-22.67 5.85-27.4 11-17.2 18.53-24.33 48.87-25 84.07-7.24-12.35-17.17-24.63-28.5-25.93h-.18c-20.66-3.48-38.39 29.22-36 81.29-38.36 1.38-71 5.75-93 11.23-9.9 2.45-16.22 7.27-17.76 9.72 1-.38 22.4-9.22 111.56-9.22 5.22 53 29.75 101.82 26 93.19-9.73 15.4-38.24 62.36-47.31 97.7-5.87 22.88-4.37 37.61.15 47.14 5.57 12.75 16.41 16.72 23.2 18.26 25 5.71 55.38-3.63 86.7-21.14-7.53 12.84-13.9 28.51-9.06 39.34 7.31 19.65 44.49 18.66 88.44-9.45 20.18 32.18 40.07 57.94 55.7 74.12a39.79 39.79 0 0 0 8.75 7.09c5.14 3.21 8.58 3.37 8.58 3.37-8.24-6.75-34-38-62.54-91.78 22.22-16 45.65-38.87 67.47-69.27 122.82 4.6 143.29-24.76 148-31.64 14.67-19.88 3.43-57.44-57.32-93.69zm-77.85 106.22c23.81-37.71 30.34-67.77 29.45-92.33 27.86 17.57 47.18 37.58 49.06 58.83 1.14 12.93-8.1 29.12-78.51 33.5zM216.9 387.69c9.76-6.23 19.53-13.12 29.2-20.49 6.68 13.33 13.6 26.1 20.6 38.19-40.6 21.86-68.84 12.76-49.8-17.7zm215-171.35c-10.29-5.34-21.16-10.34-32.38-15.05a722.459 722.459 0 0 0 22.74-36.9c39.06 24.1 45.9 53.18 9.64 51.95zM279.18 398c-5.51-11.35-11-23.5-16.5-36.44 43.25 1.27 62.42-18.73 63.28-20.41 0 .07-25 15.64-62.53 12.25a718.78 718.78 0 0 0 85.06-84q13.06-15.31 24.93-31.11c-.36-.29-1.54-3-16.51-12-51.7 60.27-102.34 98-132.75 115.92-20.59-11.18-40.84-31.78-55.71-61.49-20-39.92-30-82.39-31.57-116.07 12.3.91 25.27 2.17 38.85 3.88-22.29 36.8-14.39 63-13.47 64.23 0-.07-.95-29.17 20.14-59.57a695.23 695.23 0 0 0 44.67 152.84c.93-.38 1.84.88 18.67-8.25-26.33-74.47-33.76-138.17-34-173.43 20-12.42 48.18-19.8 81.63-17.81 44.57 2.67 86.36 15.25 116.32 30.71q-10.69 15.66-23.33 32.47C365.63 152 339.1 145.84 337.5 146c.11 0 25.9 14.07 41.52 47.22a717.63 717.63 0 0 0-115.34-31.71 646.608 646.608 0 0 0-39.39-6.05c-.07.45-1.81 1.85-2.16 20.33C300 190.28 358.78 215.68 389.36 233c.74 23.55-6.95 51.61-25.41 79.57-24.6 37.31-56.39 67.23-84.77 85.43zm27.4-287c-44.56-1.66-73.58 7.43-94.69 20.67 2-52.3 21.31-76.38 38.21-75.28C267 52.15 305 108.55 306.58 111zm-130.65 3.1c.48 12.11 1.59 24.62 3.21 37.28-14.55-.85-28.74-1.25-42.4-1.26-.08 3.24-.12-51 24.67-49.59h.09c5.76 1.09 10.63 6.88 14.43 13.57zm-28.06 162c20.76 39.7 43.3 60.57 65.25 72.31-46.79 24.76-77.53 20-84.92 4.51-.2-.21-11.13-15.3 19.67-76.81zm210.06 74.8"],behance:[576,512,[],"f1b4","M232 237.2c31.8-15.2 48.4-38.2 48.4-74 0-70.6-52.6-87.8-113.3-87.8H0v354.4h171.8c64.4 0 124.9-30.9 124.9-102.9 0-44.5-21.1-77.4-64.7-89.7zM77.9 135.9H151c28.1 0 53.4 7.9 53.4 40.5 0 30.1-19.7 42.2-47.5 42.2h-79v-82.7zm83.3 233.7H77.9V272h84.9c34.3 0 56 14.3 56 50.6 0 35.8-25.9 47-57.6 47zm358.5-240.7H376V94h143.7v34.9zM576 305.2c0-75.9-44.4-139.2-124.9-139.2-78.2 0-131.3 58.8-131.3 135.8 0 79.9 50.3 134.7 131.3 134.7 61.3 0 101-27.6 120.1-86.3H509c-6.7 21.9-34.3 33.5-55.7 33.5-41.3 0-63-24.2-63-65.3h185.1c.3-4.2.6-8.7.6-13.2zM390.4 274c2.3-33.7 24.7-54.8 58.5-54.8 35.4 0 53.2 20.8 56.2 54.8H390.4z"],"behance-square":[448,512,[],"f1b5","M186.5 293c0 19.3-14 25.4-31.2 25.4h-45.1v-52.9h46c18.6.1 30.3 7.8 30.3 27.5zm-7.7-82.3c0-17.7-13.7-21.9-28.9-21.9h-39.6v44.8H153c15.1 0 25.8-6.6 25.8-22.9zm132.3 23.2c-18.3 0-30.5 11.4-31.7 29.7h62.2c-1.7-18.5-11.3-29.7-30.5-29.7zM448 80v352c0 26.5-21.5 48-48 48H48c-26.5 0-48-21.5-48-48V80c0-26.5 21.5-48 48-48h352c26.5 0 48 21.5 48 48zM271.7 185h77.8v-18.9h-77.8V185zm-43 110.3c0-24.1-11.4-44.9-35-51.6 17.2-8.2 26.2-17.7 26.2-37 0-38.2-28.5-47.5-61.4-47.5H68v192h93.1c34.9-.2 67.6-16.9 67.6-55.9zM380 280.5c0-41.1-24.1-75.4-67.6-75.4-42.4 0-71.1 31.8-71.1 73.6 0 43.3 27.3 73 71.1 73 33.2 0 54.7-14.9 65.1-46.8h-33.7c-3.7 11.9-18.6 18.1-30.2 18.1-22.4 0-34.1-13.1-34.1-35.3h100.2c.1-2.3.3-4.8.3-7.2z"],bimobject:[448,512,[],"f378","M416 32H32C14.4 32 0 46.4 0 64v384c0 17.6 14.4 32 32 32h384c17.6 0 32-14.4 32-32V64c0-17.6-14.4-32-32-32zm-64 257.4c0 49.4-11.4 82.6-103.8 82.6h-16.9c-44.1 0-62.4-14.9-70.4-38.8h-.9V368H96V136h64v74.7h1.1c4.6-30.5 39.7-38.8 69.7-38.8h17.3c92.4 0 103.8 33.1 103.8 82.5v35zm-64-28.9v22.9c0 21.7-3.4 33.8-38.4 33.8h-45.3c-28.9 0-44.1-6.5-44.1-35.7v-19c0-29.3 15.2-35.7 44.1-35.7h45.3c35-.2 38.4 12 38.4 33.7z"],bitbucket:[512,512,[],"f171","M22.2 32A16 16 0 0 0 6 47.8a26.35 26.35 0 0 0 .2 2.8l67.9 412.1a21.77 21.77 0 0 0 21.3 18.2h325.7a16 16 0 0 0 16-13.4L505 50.7a16 16 0 0 0-13.2-18.3 24.58 24.58 0 0 0-2.8-.2L22.2 32zm285.9 297.8h-104l-28.1-147h157.3l-25.2 147z"],bitcoin:[512,512,[],"f379","M504 256c0 136.967-111.033 248-248 248S8 392.967 8 256 119.033 8 256 8s248 111.033 248 248zm-141.651-35.33c4.937-32.999-20.191-50.739-54.55-62.573l11.146-44.702-27.213-6.781-10.851 43.524c-7.154-1.783-14.502-3.464-21.803-5.13l10.929-43.81-27.198-6.781-11.153 44.686c-5.922-1.349-11.735-2.682-17.377-4.084l.031-.14-37.53-9.37-7.239 29.062s20.191 4.627 19.765 4.913c11.022 2.751 13.014 10.044 12.68 15.825l-12.696 50.925c.76.194 1.744.473 2.829.907-.907-.225-1.876-.473-2.876-.713l-17.796 71.338c-1.349 3.348-4.767 8.37-12.471 6.464.271.395-19.78-4.937-19.78-4.937l-13.51 31.147 35.414 8.827c6.588 1.651 13.045 3.379 19.4 5.006l-11.262 45.213 27.182 6.781 11.153-44.733a1038.209 1038.209 0 0 0 21.687 5.627l-11.115 44.523 27.213 6.781 11.262-45.128c46.404 8.781 81.299 5.239 95.986-36.727 11.836-33.79-.589-53.281-25.004-65.991 17.78-4.098 31.174-15.792 34.747-39.949zm-62.177 87.179c-8.41 33.79-65.308 15.523-83.755 10.943l14.944-59.899c18.446 4.603 77.6 13.717 68.811 48.956zm8.417-87.667c-7.673 30.736-55.031 15.12-70.393 11.292l13.548-54.327c15.363 3.828 64.836 10.973 56.845 43.035z"],bity:[496,512,[],"f37a","M78.4 67.2C173.8-22 324.5-24 421.5 71c14.3 14.1-6.4 37.1-22.4 21.5-84.8-82.4-215.8-80.3-298.9-3.2-16.3 15.1-36.5-8.3-21.8-22.1zm98.9 418.6c19.3 5.7 29.3-23.6 7.9-30C73 421.9 9.4 306.1 37.7 194.8c5-19.6-24.9-28.1-30.2-7.1-32.1 127.4 41.1 259.8 169.8 298.1zm148.1-2c121.9-40.2 192.9-166.9 164.4-291-4.5-19.7-34.9-13.8-30 7.9 24.2 107.7-37.1 217.9-143.2 253.4-21.2 7-10.4 36 8.8 29.7zm-62.9-79l.2-71.8c0-8.2-6.6-14.8-14.8-14.8-8.2 0-14.8 6.7-14.8 14.8l-.2 71.8c0 8.2 6.6 14.8 14.8 14.8s14.8-6.6 14.8-14.8zm71-269c2.1 90.9 4.7 131.9-85.5 132.5-92.5-.7-86.9-44.3-85.5-132.5 0-21.8-32.5-19.6-32.5 0v71.6c0 69.3 60.7 90.9 118 90.1 57.3.8 118-20.8 118-90.1v-71.6c0-19.6-32.5-21.8-32.5 0z"],"black-tie":[448,512,[],"f27e","M0 32v448h448V32H0zm316.5 325.2L224 445.9l-92.5-88.7 64.5-184-64.5-86.6h184.9L252 173.2l64.5 184z"],blackberry:[512,512,[],"f37b","M166 116.9c0 23.4-16.4 49.1-72.5 49.1H23.4l21-88.8h67.8c42.1 0 53.8 23.3 53.8 39.7zm126.2-39.7h-67.8L205.7 166h70.1c53.8 0 70.1-25.7 70.1-49.1.1-16.4-11.6-39.7-53.7-39.7zM88.8 208.1H21L0 296.9h70.1c56.1 0 72.5-23.4 72.5-49.1 0-16.3-11.7-39.7-53.8-39.7zm180.1 0h-67.8l-18.7 88.8h70.1c53.8 0 70.1-23.4 70.1-49.1 0-16.3-11.7-39.7-53.7-39.7zm189.3-53.8h-67.8l-18.7 88.8h70.1c53.8 0 70.1-23.4 70.1-49.1.1-16.3-11.6-39.7-53.7-39.7zm-28 137.9h-67.8L343.7 381h70.1c56.1 0 70.1-23.4 70.1-49.1 0-16.3-11.6-39.7-53.7-39.7zM240.8 346H173l-18.7 88.8h70.1c56.1 0 70.1-25.7 70.1-49.1.1-16.3-11.6-39.7-53.7-39.7z"],blogger:[448,512,[],"f37c","M162.4 196c4.8-4.9 6.2-5.1 36.4-5.1 27.2 0 28.1.1 32.1 2.1 5.8 2.9 8.3 7 8.3 13.6 0 5.9-2.4 10-7.6 13.4-2.8 1.8-4.5 1.9-31.1 2.1-16.4.1-29.5-.2-31.5-.8-10.3-2.9-14.1-17.7-6.6-25.3zm61.4 94.5c-53.9 0-55.8.2-60.2 4.1-3.5 3.1-5.7 9.4-5.1 13.9.7 4.7 4.8 10.1 9.2 12 2.2 1 14.1 1.7 56.3 1.2l47.9-.6 9.2-1.5c9-5.1 10.5-17.4 3.1-24.4-5.3-4.7-5-4.7-60.4-4.7zm223.4 130.1c-3.5 28.4-23 50.4-51.1 57.5-7.2 1.8-9.7 1.9-172.9 1.8-157.8 0-165.9-.1-172-1.8-8.4-2.2-15.6-5.5-22.3-10-5.6-3.8-13.9-11.8-17-16.4-3.8-5.6-8.2-15.3-10-22C.1 423 0 420.3 0 256.3 0 93.2 0 89.7 1.8 82.6 8.1 57.9 27.7 39 53 33.4c7.3-1.6 332.1-1.9 340-.3 21.2 4.3 37.9 17.1 47.6 36.4 7.7 15.3 7-1.5 7.3 180.6.2 115.8 0 164.5-.7 170.5zm-85.4-185.2c-1.1-5-4.2-9.6-7.7-11.5-1.1-.6-8-1.3-15.5-1.7-12.4-.6-13.8-.8-17.8-3.1-6.2-3.6-7.9-7.6-8-18.3 0-20.4-8.5-39.4-25.3-56.5-12-12.2-25.3-20.5-40.6-25.1-3.6-1.1-11.8-1.5-39.2-1.8-42.9-.5-52.5.4-67.1 6.2-27 10.7-46.3 33.4-53.4 62.4-1.3 5.4-1.6 14.2-1.9 64.3-.4 62.8 0 72.1 4 84.5 9.7 30.7 37.1 53.4 64.6 58.4 9.2 1.7 122.2 2.1 133.7.5 20.1-2.7 35.9-10.8 50.7-25.9 10.7-10.9 17.4-22.8 21.8-38.5 3.2-10.9 2.9-88.4 1.7-93.9z"],"blogger-b":[448,512,[],"f37d","M446.6 222.7c-1.8-8-6.8-15.4-12.5-18.5-1.8-1-13-2.2-25-2.7-20.1-.9-22.3-1.3-28.7-5-10.1-5.9-12.8-12.3-12.9-29.5-.1-33-13.8-63.7-40.9-91.3-19.3-19.7-40.9-33-65.5-40.5-5.9-1.8-19.1-2.4-63.3-2.9-69.4-.8-84.8.6-108.4 10C45.9 59.5 14.7 96.1 3.3 142.9 1.2 151.7.7 165.8.2 246.8c-.6 101.5.1 116.4 6.4 136.5 15.6 49.6 59.9 86.3 104.4 94.3 14.8 2.7 197.3 3.3 216 .8 32.5-4.4 58-17.5 81.9-41.9 17.3-17.7 28.1-36.8 35.2-62.1 4.9-17.6 4.5-142.8 2.5-151.7zm-322.1-63.6c7.8-7.9 10-8.2 58.8-8.2 43.9 0 45.4.1 51.8 3.4 9.3 4.7 13.4 11.3 13.4 21.9 0 9.5-3.8 16.2-12.3 21.6-4.6 2.9-7.3 3.1-50.3 3.3-26.5.2-47.7-.4-50.8-1.2-16.6-4.7-22.8-28.5-10.6-40.8zm191.8 199.8l-14.9 2.4-77.5.9c-68.1.8-87.3-.4-90.9-2-7.1-3.1-13.8-11.7-14.9-19.4-1.1-7.3 2.6-17.3 8.2-22.4 7.1-6.4 10.2-6.6 97.3-6.7 89.6-.1 89.1-.1 97.6 7.8 12.1 11.3 9.5 31.2-4.9 39.4z"],bluetooth:[448,512,[],"f293","M292.6 171.1L249.7 214l-.3-86 43.2 43.1m-43.2 219.8l43.1-43.1-42.9-42.9-.2 86zM416 259.4C416 465 344.1 512 230.9 512S32 465 32 259.4 115.4 0 228.6 0 416 53.9 416 259.4zm-158.5 0l79.4-88.6L211.8 36.5v176.9L138 139.6l-27 26.9 92.7 93-92.7 93 26.9 26.9 73.8-73.8 2.3 170 127.4-127.5-83.9-88.7z"],"bluetooth-b":[320,512,[],"f294","M196.48 260.023l92.626-103.333L143.125 0v206.33l-86.111-86.111-31.406 31.405 108.061 108.399L25.608 368.422l31.406 31.405 86.111-86.111L145.84 512l148.552-148.644-97.912-103.333zm40.86-102.996l-49.977 49.978-.338-100.295 50.315 50.317zM187.363 313.04l49.977 49.978-50.315 50.316.338-100.294z"],bootstrap:[448,512,[],"f836","M292.3 311.93c0 42.41-39.72 41.43-43.92 41.43h-80.89v-81.69h80.89c42.56 0 43.92 31.9 43.92 40.26zm-50.15-73.13c.67 0 38.44 1 38.44-36.31 0-15.52-3.51-35.87-38.44-35.87h-74.66v72.18h74.66zM448 106.67v298.66A74.89 74.89 0 0 1 373.33 480H74.67A74.89 74.89 0 0 1 0 405.33V106.67A74.89 74.89 0 0 1 74.67 32h298.66A74.89 74.89 0 0 1 448 106.67zM338.05 317.86c0-21.57-6.65-58.29-49.05-67.35v-.73c22.91-9.78 37.34-28.25 37.34-55.64 0-7 2-64.78-77.6-64.78h-127v261.33c128.23 0 139.87 1.68 163.6-5.71 14.21-4.42 52.71-17.98 52.71-67.12z"],btc:[384,512,[],"f15a","M310.204 242.638c27.73-14.18 45.377-39.39 41.28-81.3-5.358-57.351-52.458-76.573-114.85-81.929V0h-48.528v77.203c-12.605 0-25.525.315-38.444.63V0h-48.528v79.409c-17.842.539-38.622.276-97.37 0v51.678c38.314-.678 58.417-3.14 63.023 21.427v217.429c-2.925 19.492-18.524 16.685-53.255 16.071L3.765 443.68c88.481 0 97.37.315 97.37.315V512h48.528v-67.06c13.234.315 26.154.315 38.444.315V512h48.528v-68.005c81.299-4.412 135.647-24.894 142.895-101.467 5.671-61.446-23.32-88.862-69.326-99.89zM150.608 134.553c27.415 0 113.126-8.507 113.126 48.528 0 54.515-85.71 48.212-113.126 48.212v-96.74zm0 251.776V279.821c32.772 0 133.127-9.138 133.127 53.255-.001 60.186-100.355 53.253-133.127 53.253z"],buffer:[448,512,[],"f837","M427.84 380.67l-196.5 97.82a18.6 18.6 0 0 1-14.67 0L20.16 380.67c-4-2-4-5.28 0-7.29L67.22 350a18.65 18.65 0 0 1 14.69 0l134.76 67a18.51 18.51 0 0 0 14.67 0l134.76-67a18.62 18.62 0 0 1 14.68 0l47.06 23.43c4.05 1.96 4.05 5.24 0 7.24zm0-136.53l-47.06-23.43a18.62 18.62 0 0 0-14.68 0l-134.76 67.08a18.68 18.68 0 0 1-14.67 0L81.91 220.71a18.65 18.65 0 0 0-14.69 0l-47.06 23.43c-4 2-4 5.29 0 7.31l196.51 97.8a18.6 18.6 0 0 0 14.67 0l196.5-97.8c4.05-2.02 4.05-5.3 0-7.31zM20.16 130.42l196.5 90.29a20.08 20.08 0 0 0 14.67 0l196.51-90.29c4-1.86 4-4.89 0-6.74L231.33 33.4a19.88 19.88 0 0 0-14.67 0l-196.5 90.28c-4.05 1.85-4.05 4.88 0 6.74z"],buromobelexperte:[448,512,[],"f37f","M0 32v128h128V32H0zm120 120H8V40h112v112zm40-120v128h128V32H160zm120 120H168V40h112v112zm40-120v128h128V32H320zm120 120H328V40h112v112zM0 192v128h128V192H0zm120 120H8V200h112v112zm40-120v128h128V192H160zm120 120H168V200h112v112zm40-120v128h128V192H320zm120 120H328V200h112v112zM0 352v128h128V352H0zm120 120H8V360h112v112zm40-120v128h128V352H160zm120 120H168V360h112v112zm40-120v128h128V352H320z"],"buy-n-large":[576,512,[],"f8a6","M288 32C133.27 32 7.79 132.32 7.79 256S133.27 480 288 480s280.21-100.32 280.21-224S442.73 32 288 32zm-85.39 357.19L64.1 390.55l77.25-290.74h133.44c63.15 0 84.93 28.65 78 72.84a60.24 60.24 0 0 1-1.5 6.85 77.39 77.39 0 0 0-17.21-1.93c-42.35 0-76.69 33.88-76.69 75.65 0 37.14 27.14 68 62.93 74.45-18.24 37.16-56.16 60.92-117.71 61.52zM358 207.11h32l-22.16 90.31h-35.41l-11.19-35.63-7.83 35.63h-37.83l26.63-90.31h31.34l15 36.75zm145.86 182.08H306.79L322.63 328a78.8 78.8 0 0 0 11.47.83c42.34 0 76.69-33.87 76.69-75.65 0-32.65-21-60.46-50.38-71.06l21.33-82.35h92.5l-53.05 205.36h103.87zM211.7 269.39H187l-13.8 56.47h24.7c16.14 0 32.11-3.18 37.94-26.65 5.56-22.31-7.99-29.82-24.14-29.82zM233 170h-21.34L200 217.71h21.37c18 0 35.38-14.64 39.21-30.14C265.23 168.71 251.07 170 233 170z"],buysellads:[448,512,[],"f20d","M224 150.7l42.9 160.7h-85.8L224 150.7zM448 80v352c0 26.5-21.5 48-48 48H48c-26.5 0-48-21.5-48-48V80c0-26.5 21.5-48 48-48h352c26.5 0 48 21.5 48 48zm-65.3 325.3l-94.5-298.7H159.8L65.3 405.3H156l111.7-91.6 24.2 91.6h90.8z"],"canadian-maple-leaf":[512,512,[],"f785","M383.8 351.7c2.5-2.5 105.2-92.4 105.2-92.4l-17.5-7.5c-10-4.9-7.4-11.5-5-17.4 2.4-7.6 20.1-67.3 20.1-67.3s-47.7 10-57.7 12.5c-7.5 2.4-10-2.5-12.5-7.5s-15-32.4-15-32.4-52.6 59.9-55.1 62.3c-10 7.5-20.1 0-17.6-10 0-10 27.6-129.6 27.6-129.6s-30.1 17.4-40.1 22.4c-7.5 5-12.6 5-17.6-5C293.5 72.3 255.9 0 255.9 0s-37.5 72.3-42.5 79.8c-5 10-10 10-17.6 5-10-5-40.1-22.4-40.1-22.4S183.3 182 183.3 192c2.5 10-7.5 17.5-17.6 10-2.5-2.5-55.1-62.3-55.1-62.3S98.1 167 95.6 172s-5 9.9-12.5 7.5C73 177 25.4 167 25.4 167s17.6 59.7 20.1 67.3c2.4 6 5 12.5-5 17.4L23 259.3s102.6 89.9 105.2 92.4c5.1 5 10 7.5 5.1 22.5-5.1 15-10.1 35.1-10.1 35.1s95.2-20.1 105.3-22.6c8.7-.9 18.3 2.5 18.3 12.5S241 512 241 512h30s-5.8-102.7-5.8-112.8 9.5-13.4 18.4-12.5c10 2.5 105.2 22.6 105.2 22.6s-5-20.1-10-35.1 0-17.5 5-22.5z"],"cc-amazon-pay":[576,512,[],"f42d","M124.7 201.8c.1-11.8 0-23.5 0-35.3v-35.3c0-1.3.4-2 1.4-2.7 11.5-8 24.1-12.1 38.2-11.1 12.5.9 22.7 7 28.1 21.7 3.3 8.9 4.1 18.2 4.1 27.7 0 8.7-.7 17.3-3.4 25.6-5.7 17.8-18.7 24.7-35.7 23.9-11.7-.5-21.9-5-31.4-11.7-.9-.8-1.4-1.6-1.3-2.8zm154.9 14.6c4.6 1.8 9.3 2 14.1 1.5 11.6-1.2 21.9-5.7 31.3-12.5.9-.6 1.3-1.3 1.3-2.5-.1-3.9 0-7.9 0-11.8 0-4-.1-8 0-12 0-1.4-.4-2-1.8-2.2-7-.9-13.9-2.2-20.9-2.9-7-.6-14-.3-20.8 1.9-6.7 2.2-11.7 6.2-13.7 13.1-1.6 5.4-1.6 10.8.1 16.2 1.6 5.5 5.2 9.2 10.4 11.2zM576 80v352c0 26.5-21.5 48-48 48H48c-26.5 0-48-21.5-48-48V80c0-26.5 21.5-48 48-48h480c26.5 0 48 21.5 48 48zm-207.5 23.9c.4 1.7.9 3.4 1.6 5.1 16.5 40.6 32.9 81.3 49.5 121.9 1.4 3.5 1.7 6.4.2 9.9-2.8 6.2-4.9 12.6-7.8 18.7-2.6 5.5-6.7 9.5-12.7 11.2-4.2 1.1-8.5 1.3-12.9.9-2.1-.2-4.2-.7-6.3-.8-2.8-.2-4.2 1.1-4.3 4-.1 2.8-.1 5.6 0 8.3.1 4.6 1.6 6.7 6.2 7.5 4.7.8 9.4 1.6 14.2 1.7 14.3.3 25.7-5.4 33.1-17.9 2.9-4.9 5.6-10.1 7.7-15.4 19.8-50.1 39.5-100.3 59.2-150.5.6-1.5 1.1-3 1.3-4.6.4-2.4-.7-3.6-3.1-3.7-5.6-.1-11.1 0-16.7 0-3.1 0-5.3 1.4-6.4 4.3-.4 1.1-.9 2.3-1.3 3.4l-29.1 83.7c-2.1 6.1-4.2 12.1-6.5 18.6-.4-.9-.6-1.4-.8-1.9-10.8-29.9-21.6-59.9-32.4-89.8-1.7-4.7-3.5-9.5-5.3-14.2-.9-2.5-2.7-4-5.4-4-6.4-.1-12.8-.2-19.2-.1-2.2 0-3.3 1.6-2.8 3.7zM242.4 206c1.7 11.7 7.6 20.8 18 26.6 9.9 5.5 20.7 6.2 31.7 4.6 12.7-1.9 23.9-7.3 33.8-15.5.4-.3.8-.6 1.4-1 .5 3.2.9 6.2 1.5 9.2.5 2.6 2.1 4.3 4.5 4.4 4.6.1 9.1.1 13.7 0 2.3-.1 3.8-1.6 4-3.9.1-.8.1-1.6.1-2.3v-88.8c0-3.6-.2-7.2-.7-10.8-1.6-10.8-6.2-19.7-15.9-25.4-5.6-3.3-11.8-5-18.2-5.9-3-.4-6-.7-9.1-1.1h-10c-.8.1-1.6.3-2.5.3-8.2.4-16.3 1.4-24.2 3.5-5.1 1.3-10 3.2-15 4.9-3 1-4.5 3.2-4.4 6.5.1 2.8-.1 5.6 0 8.3.1 4.1 1.8 5.2 5.7 4.1 6.5-1.7 13.1-3.5 19.7-4.8 10.3-1.9 20.7-2.7 31.1-1.2 5.4.8 10.5 2.4 14.1 7 3.1 4 4.2 8.8 4.4 13.7.3 6.9.2 13.9.3 20.8 0 .4-.1.7-.2 1.2-.4 0-.8 0-1.1-.1-8.8-2.1-17.7-3.6-26.8-4.1-9.5-.5-18.9.1-27.9 3.2-10.8 3.8-19.5 10.3-24.6 20.8-4.1 8.3-4.6 17-3.4 25.8zM98.7 106.9v175.3c0 .8 0 1.7.1 2.5.2 2.5 1.7 4.1 4.1 4.2 5.9.1 11.8.1 17.7 0 2.5 0 4-1.7 4.1-4.1.1-.8.1-1.7.1-2.5v-60.7c.9.7 1.4 1.2 1.9 1.6 15 12.5 32.2 16.6 51.1 12.9 17.1-3.4 28.9-13.9 36.7-29.2 5.8-11.6 8.3-24.1 8.7-37 .5-14.3-1-28.4-6.8-41.7-7.1-16.4-18.9-27.3-36.7-30.9-2.7-.6-5.5-.8-8.2-1.2h-7c-1.2.2-2.4.3-3.6.5-11.7 1.4-22.3 5.8-31.8 12.7-2 1.4-3.9 3-5.9 4.5-.1-.5-.3-.8-.4-1.2-.4-2.3-.7-4.6-1.1-6.9-.6-3.9-2.5-5.5-6.4-5.6h-9.7c-5.9-.1-6.9 1-6.9 6.8zM493.6 339c-2.7-.7-5.1 0-7.6 1-43.9 18.4-89.5 30.2-136.8 35.8-14.5 1.7-29.1 2.8-43.7 3.2-26.6.7-53.2-.8-79.6-4.3-17.8-2.4-35.5-5.7-53-9.9-37-8.9-72.7-21.7-106.7-38.8-8.8-4.4-17.4-9.3-26.1-14-3.8-2.1-6.2-1.5-8.2 2.1v1.7c1.2 1.6 2.2 3.4 3.7 4.8 36 32.2 76.6 56.5 122 72.9 21.9 7.9 44.4 13.7 67.3 17.5 14 2.3 28 3.8 42.2 4.5 3 .1 6 .2 9 .4.7 0 1.4.2 2.1.3h17.7c.7-.1 1.4-.3 2.1-.3 14.9-.4 29.8-1.8 44.6-4 21.4-3.2 42.4-8.1 62.9-14.7 29.6-9.6 57.7-22.4 83.4-40.1 2.8-1.9 5.7-3.8 8-6.2 4.3-4.4 2.3-10.4-3.3-11.9zm50.4-27.7c-.8-4.2-4-5.8-7.6-7-5.7-1.9-11.6-2.8-17.6-3.3-11-.9-22-.4-32.8 1.6-12 2.2-23.4 6.1-33.5 13.1-1.2.8-2.4 1.8-3.1 3-.6.9-.7 2.3-.5 3.4.3 1.3 1.7 1.6 3 1.5.6 0 1.2 0 1.8-.1l19.5-2.1c9.6-.9 19.2-1.5 28.8-.8 4.1.3 8.1 1.2 12 2.2 4.3 1.1 6.2 4.4 6.4 8.7.3 6.7-1.2 13.1-2.9 19.5-3.5 12.9-8.3 25.4-13.3 37.8-.3.8-.7 1.7-.8 2.5-.4 2.5 1 4 3.4 3.5 1.4-.3 3-1.1 4-2.1 3.7-3.6 7.5-7.2 10.6-11.2 10.7-13.8 17-29.6 20.7-46.6.7-3 1.2-6.1 1.7-9.1.2-4.7.2-9.6.2-14.5z"],"cc-amex":[576,512,[],"f1f3","M325.1 167.8c0-16.4-14.1-18.4-27.4-18.4l-39.1-.3v69.3H275v-25.1h18c18.4 0 14.5 10.3 14.8 25.1h16.6v-13.5c0-9.2-1.5-15.1-11-18.4 7.4-3 11.8-10.7 11.7-18.7zm-29.4 11.3H275v-15.3h21c5.1 0 10.7 1 10.7 7.4 0 6.6-5.3 7.9-11 7.9zM279 268.6h-52.7l-21 22.8-20.5-22.8h-66.5l-.1 69.3h65.4l21.3-23 20.4 23h32.2l.1-23.3c18.9 0 49.3 4.6 49.3-23.3 0-17.3-12.3-22.7-27.9-22.7zm-103.8 54.7h-40.6v-13.8h36.3v-14.1h-36.3v-12.5h41.7l17.9 20.2zm65.8 8.2l-25.3-28.1L241 276zm37.8-31h-21.2v-17.6h21.5c5.6 0 10.2 2.3 10.2 8.4 0 6.4-4.6 9.2-10.5 9.2zm-31.6-136.7v-14.6h-55.5v69.3h55.5v-14.3h-38.9v-13.8h37.8v-14.1h-37.8v-12.5zM576 255.4h-.2zm-194.6 31.9c0-16.4-14.1-18.7-27.1-18.7h-39.4l-.1 69.3h16.6l.1-25.3h17.6c11 0 14.8 2 14.8 13.8l-.1 11.5h16.6l.1-13.8c0-8.9-1.8-15.1-11-18.4 7.7-3.1 11.8-10.8 11.9-18.4zm-29.2 11.2h-20.7v-15.6h21c5.1 0 10.7 1 10.7 7.4 0 6.9-5.4 8.2-11 8.2zm-172.8-80v-69.3h-27.6l-19.7 47-21.7-47H83.3v65.7l-28.1-65.7H30.7L1 218.5h17.9l6.4-15.3h34.5l6.4 15.3H100v-54.2l24 54.2h14.6l24-54.2v54.2zM31.2 188.8l11.2-27.6 11.5 27.6zm477.4 158.9v-4.5c-10.8 5.6-3.9 4.5-156.7 4.5 0-25.2.1-23.9 0-25.2-1.7-.1-3.2-.1-9.4-.1 0 17.9-.1 6.8-.1 25.3h-39.6c0-12.1.1-15.3.1-29.2-10 6-22.8 6.4-34.3 6.2 0 14.7-.1 8.3-.1 23h-48.9c-5.1-5.7-2.7-3.1-15.4-17.4-3.2 3.5-12.8 13.9-16.1 17.4h-82v-92.3h83.1c5 5.6 2.8 3.1 15.5 17.2 3.2-3.5 12.2-13.4 15.7-17.2h58c9.8 0 18 1.9 24.3 5.6v-5.6c54.3 0 64.3-1.4 75.7 5.1v-5.1h78.2v5.2c11.4-6.9 19.6-5.2 64.9-5.2v5c10.3-5.9 16.6-5.2 54.3-5V80c0-26.5-21.5-48-48-48h-480c-26.5 0-48 21.5-48 48v109.8c9.4-21.9 19.7-46 23.1-53.9h39.7c4.3 10.1 1.6 3.7 9 21.1v-21.1h46c2.9 6.2 11.1 24 13.9 30 5.8-13.6 10.1-23.9 12.6-30h103c0-.1 11.5 0 11.6 0 43.7.2 53.6-.8 64.4 5.3v-5.3H363v9.3c7.6-6.1 17.9-9.3 30.7-9.3h27.6c0 .5 1.9.3 2.3.3H456c4.2 9.8 2.6 6 8.8 20.6v-20.6h43.3c4.9 8-1-1.8 11.2 18.4v-18.4h39.9v92h-41.6c-5.4-9-1.4-2.2-13.2-21.9v21.9h-52.8c-6.4-14.8-.1-.3-6.6-15.3h-19c-4.2 10-2.2 5.2-6.4 15.3h-26.8c-12.3 0-22.3-3-29.7-8.9v8.9h-66.5c-.3-13.9-.1-24.8-.1-24.8-1.8-.3-3.4-.2-9.8-.2v25.1H151.2v-11.4c-2.5 5.6-2.7 5.9-5.1 11.4h-29.5c-4-8.9-2.9-6.4-5.1-11.4v11.4H58.6c-4.2-10.1-2.2-5.3-6.4-15.3H33c-4.2 10-2.2 5.2-6.4 15.3H0V432c0 26.5 21.5 48 48 48h480.1c26.5 0 48-21.5 48-48v-90.4c-12.7 8.3-32.7 6.1-67.5 6.1zm36.3-64.5H575v-14.6h-32.9c-12.8 0-23.8 6.6-23.8 20.7 0 33 42.7 12.8 42.7 27.4 0 5.1-4.3 6.4-8.4 6.4h-32l-.1 14.8h32c8.4 0 17.6-1.8 22.5-8.9v-25.8c-10.5-13.8-39.3-1.3-39.3-13.5 0-5.8 4.6-6.5 9.2-6.5zm-57 39.8h-32.2l-.1 14.8h32.2c14.8 0 26.2-5.6 26.2-22 0-33.2-42.9-11.2-42.9-26.3 0-5.6 4.9-6.4 9.2-6.4h30.4v-14.6h-33.2c-12.8 0-23.5 6.6-23.5 20.7 0 33 42.7 12.5 42.7 27.4-.1 5.4-4.7 6.4-8.8 6.4zm-42.2-40.1v-14.3h-55.2l-.1 69.3h55.2l.1-14.3-38.6-.3v-13.8H445v-14.1h-37.8v-12.5zm-56.3-108.1c-.3.2-1.4 2.2-1.4 7.6 0 6 .9 7.7 1.1 7.9.2.1 1.1.5 3.4.5l7.3-16.9c-1.1 0-2.1-.1-3.1-.1-5.6 0-7 .7-7.3 1zm20.4-10.5h-.1zm-16.2-15.2c-23.5 0-34 12-34 35.3 0 22.2 10.2 34 33 34h19.2l6.4-15.3h34.3l6.6 15.3h33.7v-51.9l31.2 51.9h23.6v-69h-16.9v48.1l-29.1-48.1h-25.3v65.4l-27.9-65.4h-24.8l-23.5 54.5h-7.4c-13.3 0-16.1-8.1-16.1-19.9 0-23.8 15.7-20 33.1-19.7v-15.2zm42.1 12.1l11.2 27.6h-22.8zm-101.1-12v69.3h16.9v-69.3z"],"cc-apple-pay":[576,512,[],"f416","M302.2 218.4c0 17.2-10.5 27.1-29 27.1h-24.3v-54.2h24.4c18.4 0 28.9 9.8 28.9 27.1zm47.5 62.6c0 8.3 7.2 13.7 18.5 13.7 14.4 0 25.2-9.1 25.2-21.9v-7.7l-23.5 1.5c-13.3.9-20.2 5.8-20.2 14.4zM576 79v352c0 26.5-21.5 48-48 48H48c-26.5 0-48-21.5-48-48V79c0-26.5 21.5-48 48-48h480c26.5 0 48 21.5 48 48zM127.8 197.2c8.4.7 16.8-4.2 22.1-10.4 5.2-6.4 8.6-15 7.7-23.7-7.4.3-16.6 4.9-21.9 11.3-4.8 5.5-8.9 14.4-7.9 22.8zm60.6 74.5c-.2-.2-19.6-7.6-19.8-30-.2-18.7 15.3-27.7 16-28.2-8.8-13-22.4-14.4-27.1-14.7-12.2-.7-22.6 6.9-28.4 6.9-5.9 0-14.7-6.6-24.3-6.4-12.5.2-24.2 7.3-30.5 18.6-13.1 22.6-3.4 56 9.3 74.4 6.2 9.1 13.7 19.1 23.5 18.7 9.3-.4 13-6 24.2-6 11.3 0 14.5 6 24.3 5.9 10.2-.2 16.5-9.1 22.8-18.2 6.9-10.4 9.8-20.4 10-21zm135.4-53.4c0-26.6-18.5-44.8-44.9-44.8h-51.2v136.4h21.2v-46.6h29.3c26.8 0 45.6-18.4 45.6-45zm90 23.7c0-19.7-15.8-32.4-40-32.4-22.5 0-39.1 12.9-39.7 30.5h19.1c1.6-8.4 9.4-13.9 20-13.9 13 0 20.2 6 20.2 17.2v7.5l-26.4 1.6c-24.6 1.5-37.9 11.6-37.9 29.1 0 17.7 13.7 29.4 33.4 29.4 13.3 0 25.6-6.7 31.2-17.4h.4V310h19.6v-68zM516 210.9h-21.5l-24.9 80.6h-.4l-24.9-80.6H422l35.9 99.3-1.9 6c-3.2 10.2-8.5 14.2-17.9 14.2-1.7 0-4.9-.2-6.2-.3v16.4c1.2.4 6.5.5 8.1.5 20.7 0 30.4-7.9 38.9-31.8L516 210.9z"],"cc-diners-club":[576,512,[],"f24c","M239.7 79.9c-96.9 0-175.8 78.6-175.8 175.8 0 96.9 78.9 175.8 175.8 175.8 97.2 0 175.8-78.9 175.8-175.8 0-97.2-78.6-175.8-175.8-175.8zm-39.9 279.6c-41.7-15.9-71.4-56.4-71.4-103.8s29.7-87.9 71.4-104.1v207.9zm79.8.3V151.6c41.7 16.2 71.4 56.7 71.4 104.1s-29.7 87.9-71.4 104.1zM528 32H48C21.5 32 0 53.5 0 80v352c0 26.5 21.5 48 48 48h480c26.5 0 48-21.5 48-48V80c0-26.5-21.5-48-48-48zM329.7 448h-90.3c-106.2 0-193.8-85.5-193.8-190.2C45.6 143.2 133.2 64 239.4 64h90.3c105 0 200.7 79.2 200.7 193.8 0 104.7-95.7 190.2-200.7 190.2z"],"cc-discover":[576,512,[],"f1f2","M520.4 196.1c0-7.9-5.5-12.1-15.6-12.1h-4.9v24.9h4.7c10.3 0 15.8-4.4 15.8-12.8zM528 32H48C21.5 32 0 53.5 0 80v352c0 26.5 21.5 48 48 48h480c26.5 0 48-21.5 48-48V80c0-26.5-21.5-48-48-48zm-44.1 138.9c22.6 0 52.9-4.1 52.9 24.4 0 12.6-6.6 20.7-18.7 23.2l25.8 34.4h-19.6l-22.2-32.8h-2.2v32.8h-16zm-55.9.1h45.3v14H444v18.2h28.3V217H444v22.2h29.3V253H428zm-68.7 0l21.9 55.2 22.2-55.2h17.5l-35.5 84.2h-8.6l-35-84.2zm-55.9-3c24.7 0 44.6 20 44.6 44.6 0 24.7-20 44.6-44.6 44.6-24.7 0-44.6-20-44.6-44.6 0-24.7 20-44.6 44.6-44.6zm-49.3 6.1v19c-20.1-20.1-46.8-4.7-46.8 19 0 25 27.5 38.5 46.8 19.2v19c-29.7 14.3-63.3-5.7-63.3-38.2 0-31.2 33.1-53 63.3-38zm-97.2 66.3c11.4 0 22.4-15.3-3.3-24.4-15-5.5-20.2-11.4-20.2-22.7 0-23.2 30.6-31.4 49.7-14.3l-8.4 10.8c-10.4-11.6-24.9-6.2-24.9 2.5 0 4.4 2.7 6.9 12.3 10.3 18.2 6.6 23.6 12.5 23.6 25.6 0 29.5-38.8 37.4-56.6 11.3l10.3-9.9c3.7 7.1 9.9 10.8 17.5 10.8zM55.4 253H32v-82h23.4c26.1 0 44.1 17 44.1 41.1 0 18.5-13.2 40.9-44.1 40.9zm67.5 0h-16v-82h16zM544 433c0 8.2-6.8 15-15 15H128c189.6-35.6 382.7-139.2 416-160zM74.1 191.6c-5.2-4.9-11.6-6.6-21.9-6.6H48v54.2h4.2c10.3 0 17-2 21.9-6.4 5.7-5.2 8.9-12.8 8.9-20.7s-3.2-15.5-8.9-20.5z"],"cc-jcb":[576,512,[],"f24b","M431.5 244.3V212c41.2 0 38.5.2 38.5.2 7.3 1.3 13.3 7.3 13.3 16 0 8.8-6 14.5-13.3 15.8-1.2.4-3.3.3-38.5.3zm42.8 20.2c-2.8-.7-3.3-.5-42.8-.5v35c39.6 0 40 .2 42.8-.5 7.5-1.5 13.5-8 13.5-17 0-8.7-6-15.5-13.5-17zM576 80v352c0 26.5-21.5 48-48 48H48c-26.5 0-48-21.5-48-48V80c0-26.5 21.5-48 48-48h480c26.5 0 48 21.5 48 48zM182 192.3h-57c0 67.1 10.7 109.7-35.8 109.7-19.5 0-38.8-5.7-57.2-14.8v28c30 8.3 68 8.3 68 8.3 97.9 0 82-47.7 82-131.2zm178.5 4.5c-63.4-16-165-14.9-165 59.3 0 77.1 108.2 73.6 165 59.2V287C312.9 311.7 253 309 253 256s59.8-55.6 107.5-31.2v-28zM544 286.5c0-18.5-16.5-30.5-38-32v-.8c19.5-2.7 30.3-15.5 30.3-30.2 0-19-15.7-30-37-31 0 0 6.3-.3-120.3-.3v127.5h122.7c24.3.1 42.3-12.9 42.3-33.2z"],"cc-mastercard":[576,512,[],"f1f1","M482.9 410.3c0 6.8-4.6 11.7-11.2 11.7-6.8 0-11.2-5.2-11.2-11.7 0-6.5 4.4-11.7 11.2-11.7 6.6 0 11.2 5.2 11.2 11.7zm-310.8-11.7c-7.1 0-11.2 5.2-11.2 11.7 0 6.5 4.1 11.7 11.2 11.7 6.5 0 10.9-4.9 10.9-11.7-.1-6.5-4.4-11.7-10.9-11.7zm117.5-.3c-5.4 0-8.7 3.5-9.5 8.7h19.1c-.9-5.7-4.4-8.7-9.6-8.7zm107.8.3c-6.8 0-10.9 5.2-10.9 11.7 0 6.5 4.1 11.7 10.9 11.7 6.8 0 11.2-4.9 11.2-11.7 0-6.5-4.4-11.7-11.2-11.7zm105.9 26.1c0 .3.3.5.3 1.1 0 .3-.3.5-.3 1.1-.3.3-.3.5-.5.8-.3.3-.5.5-1.1.5-.3.3-.5.3-1.1.3-.3 0-.5 0-1.1-.3-.3 0-.5-.3-.8-.5-.3-.3-.5-.5-.5-.8-.3-.5-.3-.8-.3-1.1 0-.5 0-.8.3-1.1 0-.5.3-.8.5-1.1.3-.3.5-.3.8-.5.5-.3.8-.3 1.1-.3.5 0 .8 0 1.1.3.5.3.8.3 1.1.5s.2.6.5 1.1zm-2.2 1.4c.5 0 .5-.3.8-.3.3-.3.3-.5.3-.8 0-.3 0-.5-.3-.8-.3 0-.5-.3-1.1-.3h-1.6v3.5h.8V426h.3l1.1 1.4h.8l-1.1-1.3zM576 81v352c0 26.5-21.5 48-48 48H48c-26.5 0-48-21.5-48-48V81c0-26.5 21.5-48 48-48h480c26.5 0 48 21.5 48 48zM64 220.6c0 76.5 62.1 138.5 138.5 138.5 27.2 0 53.9-8.2 76.5-23.1-72.9-59.3-72.4-171.2 0-230.5-22.6-15-49.3-23.1-76.5-23.1-76.4-.1-138.5 62-138.5 138.2zm224 108.8c70.5-55 70.2-162.2 0-217.5-70.2 55.3-70.5 162.6 0 217.5zm-142.3 76.3c0-8.7-5.7-14.4-14.7-14.7-4.6 0-9.5 1.4-12.8 6.5-2.4-4.1-6.5-6.5-12.2-6.5-3.8 0-7.6 1.4-10.6 5.4V392h-8.2v36.7h8.2c0-18.9-2.5-30.2 9-30.2 10.2 0 8.2 10.2 8.2 30.2h7.9c0-18.3-2.5-30.2 9-30.2 10.2 0 8.2 10 8.2 30.2h8.2v-23zm44.9-13.7h-7.9v4.4c-2.7-3.3-6.5-5.4-11.7-5.4-10.3 0-18.2 8.2-18.2 19.3 0 11.2 7.9 19.3 18.2 19.3 5.2 0 9-1.9 11.7-5.4v4.6h7.9V392zm40.5 25.6c0-15-22.9-8.2-22.9-15.2 0-5.7 11.9-4.8 18.5-1.1l3.3-6.5c-9.4-6.1-30.2-6-30.2 8.2 0 14.3 22.9 8.3 22.9 15 0 6.3-13.5 5.8-20.7.8l-3.5 6.3c11.2 7.6 32.6 6 32.6-7.5zm35.4 9.3l-2.2-6.8c-3.8 2.1-12.2 4.4-12.2-4.1v-16.6h13.1V392h-13.1v-11.2h-8.2V392h-7.6v7.3h7.6V416c0 17.6 17.3 14.4 22.6 10.9zm13.3-13.4h27.5c0-16.2-7.4-22.6-17.4-22.6-10.6 0-18.2 7.9-18.2 19.3 0 20.5 22.6 23.9 33.8 14.2l-3.8-6c-7.8 6.4-19.6 5.8-21.9-4.9zm59.1-21.5c-4.6-2-11.6-1.8-15.2 4.4V392h-8.2v36.7h8.2V408c0-11.6 9.5-10.1 12.8-8.4l2.4-7.6zm10.6 18.3c0-11.4 11.6-15.1 20.7-8.4l3.8-6.5c-11.6-9.1-32.7-4.1-32.7 15 0 19.8 22.4 23.8 32.7 15l-3.8-6.5c-9.2 6.5-20.7 2.6-20.7-8.6zm66.7-18.3H408v4.4c-8.3-11-29.9-4.8-29.9 13.9 0 19.2 22.4 24.7 29.9 13.9v4.6h8.2V392zm33.7 0c-2.4-1.2-11-2.9-15.2 4.4V392h-7.9v36.7h7.9V408c0-11 9-10.3 12.8-8.4l2.4-7.6zm40.3-14.9h-7.9v19.3c-8.2-10.9-29.9-5.1-29.9 13.9 0 19.4 22.5 24.6 29.9 13.9v4.6h7.9v-51.7zm7.6-75.1v4.6h.8V302h1.9v-.8h-4.6v.8h1.9zm6.6 123.8c0-.5 0-1.1-.3-1.6-.3-.3-.5-.8-.8-1.1-.3-.3-.8-.5-1.1-.8-.5 0-1.1-.3-1.6-.3-.3 0-.8.3-1.4.3-.5.3-.8.5-1.1.8-.5.3-.8.8-.8 1.1-.3.5-.3 1.1-.3 1.6 0 .3 0 .8.3 1.4 0 .3.3.8.8 1.1.3.3.5.5 1.1.8.5.3 1.1.3 1.4.3.5 0 1.1 0 1.6-.3.3-.3.8-.5 1.1-.8.3-.3.5-.8.8-1.1.3-.6.3-1.1.3-1.4zm3.2-124.7h-1.4l-1.6 3.5-1.6-3.5h-1.4v5.4h.8v-4.1l1.6 3.5h1.1l1.4-3.5v4.1h1.1v-5.4zm4.4-80.5c0-76.2-62.1-138.3-138.5-138.3-27.2 0-53.9 8.2-76.5 23.1 72.1 59.3 73.2 171.5 0 230.5 22.6 15 49.5 23.1 76.5 23.1 76.4.1 138.5-61.9 138.5-138.4z"],"cc-paypal":[576,512,[],"f1f4","M186.3 258.2c0 12.2-9.7 21.5-22 21.5-9.2 0-16-5.2-16-15 0-12.2 9.5-22 21.7-22 9.3 0 16.3 5.7 16.3 15.5zM80.5 209.7h-4.7c-1.5 0-3 1-3.2 2.7l-4.3 26.7 8.2-.3c11 0 19.5-1.5 21.5-14.2 2.3-13.4-6.2-14.9-17.5-14.9zm284 0H360c-1.8 0-3 1-3.2 2.7l-4.2 26.7 8-.3c13 0 22-3 22-18-.1-10.6-9.6-11.1-18.1-11.1zM576 80v352c0 26.5-21.5 48-48 48H48c-26.5 0-48-21.5-48-48V80c0-26.5 21.5-48 48-48h480c26.5 0 48 21.5 48 48zM128.3 215.4c0-21-16.2-28-34.7-28h-40c-2.5 0-5 2-5.2 4.7L32 294.2c-.3 2 1.2 4 3.2 4h19c2.7 0 5.2-2.9 5.5-5.7l4.5-26.6c1-7.2 13.2-4.7 18-4.7 28.6 0 46.1-17 46.1-45.8zm84.2 8.8h-19c-3.8 0-4 5.5-4.2 8.2-5.8-8.5-14.2-10-23.7-10-24.5 0-43.2 21.5-43.2 45.2 0 19.5 12.2 32.2 31.7 32.2 9 0 20.2-4.9 26.5-11.9-.5 1.5-1 4.7-1 6.2 0 2.3 1 4 3.2 4H200c2.7 0 5-2.9 5.5-5.7l10.2-64.3c.3-1.9-1.2-3.9-3.2-3.9zm40.5 97.9l63.7-92.6c.5-.5.5-1 .5-1.7 0-1.7-1.5-3.5-3.2-3.5h-19.2c-1.7 0-3.5 1-4.5 2.5l-26.5 39-11-37.5c-.8-2.2-3-4-5.5-4h-18.7c-1.7 0-3.2 1.8-3.2 3.5 0 1.2 19.5 56.8 21.2 62.1-2.7 3.8-20.5 28.6-20.5 31.6 0 1.8 1.5 3.2 3.2 3.2h19.2c1.8-.1 3.5-1.1 4.5-2.6zm159.3-106.7c0-21-16.2-28-34.7-28h-39.7c-2.7 0-5.2 2-5.5 4.7l-16.2 102c-.2 2 1.3 4 3.2 4h20.5c2 0 3.5-1.5 4-3.2l4.5-29c1-7.2 13.2-4.7 18-4.7 28.4 0 45.9-17 45.9-45.8zm84.2 8.8h-19c-3.8 0-4 5.5-4.3 8.2-5.5-8.5-14-10-23.7-10-24.5 0-43.2 21.5-43.2 45.2 0 19.5 12.2 32.2 31.7 32.2 9.3 0 20.5-4.9 26.5-11.9-.3 1.5-1 4.7-1 6.2 0 2.3 1 4 3.2 4H484c2.7 0 5-2.9 5.5-5.7l10.2-64.3c.3-1.9-1.2-3.9-3.2-3.9zm47.5-33.3c0-2-1.5-3.5-3.2-3.5h-18.5c-1.5 0-3 1.2-3.2 2.7l-16.2 104-.3.5c0 1.8 1.5 3.5 3.5 3.5h16.5c2.5 0 5-2.9 5.2-5.7L544 191.2v-.3zm-90 51.8c-12.2 0-21.7 9.7-21.7 22 0 9.7 7 15 16.2 15 12 0 21.7-9.2 21.7-21.5.1-9.8-6.9-15.5-16.2-15.5z"],"cc-stripe":[576,512,[],"f1f5","M492.4 220.8c-8.9 0-18.7 6.7-18.7 22.7h36.7c0-16-9.3-22.7-18-22.7zM375 223.4c-8.2 0-13.3 2.9-17 7l.2 52.8c3.5 3.7 8.5 6.7 16.8 6.7 13.1 0 21.9-14.3 21.9-33.4 0-18.6-9-33.2-21.9-33.1zM528 32H48C21.5 32 0 53.5 0 80v352c0 26.5 21.5 48 48 48h480c26.5 0 48-21.5 48-48V80c0-26.5-21.5-48-48-48zM122.2 281.1c0 25.6-20.3 40.1-49.9 40.3-12.2 0-25.6-2.4-38.8-8.1v-33.9c12 6.4 27.1 11.3 38.9 11.3 7.9 0 13.6-2.1 13.6-8.7 0-17-54-10.6-54-49.9 0-25.2 19.2-40.2 48-40.2 11.8 0 23.5 1.8 35.3 6.5v33.4c-10.8-5.8-24.5-9.1-35.3-9.1-7.5 0-12.1 2.2-12.1 7.7 0 16 54.3 8.4 54.3 50.7zm68.8-56.6h-27V275c0 20.9 22.5 14.4 27 12.6v28.9c-4.7 2.6-13.3 4.7-24.9 4.7-21.1 0-36.9-15.5-36.9-36.5l.2-113.9 34.7-7.4v30.8H191zm74 2.4c-4.5-1.5-18.7-3.6-27.1 7.4v84.4h-35.5V194.2h30.7l2.2 10.5c8.3-15.3 24.9-12.2 29.6-10.5h.1zm44.1 91.8h-35.7V194.2h35.7zm0-142.9l-35.7 7.6v-28.9l35.7-7.6zm74.1 145.5c-12.4 0-20-5.3-25.1-9l-.1 40.2-35.5 7.5V194.2h31.3l1.8 8.8c4.9-4.5 13.9-11.1 27.8-11.1 24.9 0 48.4 22.5 48.4 63.8 0 45.1-23.2 65.5-48.6 65.6zm160.4-51.5h-69.5c1.6 16.6 13.8 21.5 27.6 21.5 14.1 0 25.2-3 34.9-7.9V312c-9.7 5.3-22.4 9.2-39.4 9.2-34.6 0-58.8-21.7-58.8-64.5 0-36.2 20.5-64.9 54.3-64.9 33.7 0 51.3 28.7 51.3 65.1 0 3.5-.3 10.9-.4 12.9z"],"cc-visa":[576,512,[],"f1f0","M470.1 231.3s7.6 37.2 9.3 45H446c3.3-8.9 16-43.5 16-43.5-.2.3 3.3-9.1 5.3-14.9l2.8 13.4zM576 80v352c0 26.5-21.5 48-48 48H48c-26.5 0-48-21.5-48-48V80c0-26.5 21.5-48 48-48h480c26.5 0 48 21.5 48 48zM152.5 331.2L215.7 176h-42.5l-39.3 106-4.3-21.5-14-71.4c-2.3-9.9-9.4-12.7-18.2-13.1H32.7l-.7 3.1c15.8 4 29.9 9.8 42.2 17.1l35.8 135h42.5zm94.4.2L272.1 176h-40.2l-25.1 155.4h40.1zm139.9-50.8c.2-17.7-10.6-31.2-33.7-42.3-14.1-7.1-22.7-11.9-22.7-19.2.2-6.6 7.3-13.4 23.1-13.4 13.1-.3 22.7 2.8 29.9 5.9l3.6 1.7 5.5-33.6c-7.9-3.1-20.5-6.6-36-6.6-39.7 0-67.6 21.2-67.8 51.4-.3 22.3 20 34.7 35.2 42.2 15.5 7.6 20.8 12.6 20.8 19.3-.2 10.4-12.6 15.2-24.1 15.2-16 0-24.6-2.5-37.7-8.3l-5.3-2.5-5.6 34.9c9.4 4.3 26.8 8.1 44.8 8.3 42.2.1 69.7-20.8 70-53zM528 331.4L495.6 176h-31.1c-9.6 0-16.9 2.8-21 12.9l-59.7 142.5H426s6.9-19.2 8.4-23.3H486c1.2 5.5 4.8 23.3 4.8 23.3H528z"],centercode:[512,512,[],"f380","M329.2 268.6c-3.8 35.2-35.4 60.6-70.6 56.8-35.2-3.8-60.6-35.4-56.8-70.6 3.8-35.2 35.4-60.6 70.6-56.8 35.1 3.8 60.6 35.4 56.8 70.6zm-85.8 235.1C96.7 496-8.2 365.5 10.1 224.3c11.2-86.6 65.8-156.9 139.1-192 161-77.1 349.7 37.4 354.7 216.6 4.1 147-118.4 262.2-260.5 254.8zm179.9-180c27.9-118-160.5-205.9-237.2-234.2-57.5 56.3-69.1 188.6-33.8 344.4 68.8 15.8 169.1-26.4 271-110.2z"],centos:[448,512,[],"f789","M289.6 97.5l31.6 31.7-76.3 76.5V97.5zm-162.4 31.7l76.3 76.5V97.5h-44.7zm41.5-41.6h44.7v127.9l10.8 10.8 10.8-10.8V87.6h44.7L224.2 32zm26.2 168.1l-10.8-10.8H55.5v-44.8L0 255.7l55.5 55.6v-44.8h128.6l10.8-10.8zm79.3-20.7h107.9v-44.8l-31.6-31.7zm173.3 20.7L392 200.1v44.8H264.3l-10.8 10.8 10.8 10.8H392v44.8l55.5-55.6zM65.4 176.2l32.5-31.7 90.3 90.5h15.3v-15.3l-90.3-90.5 31.6-31.7H65.4zm316.7-78.7h-78.5l31.6 31.7-90.3 90.5V235h15.3l90.3-90.5 31.6 31.7zM203.5 413.9V305.8l-76.3 76.5 31.6 31.7h44.7zM65.4 235h108.8l-76.3-76.5-32.5 31.7zm316.7 100.2l-31.6 31.7-90.3-90.5h-15.3v15.3l90.3 90.5-31.6 31.7h78.5zm0-58.8H274.2l76.3 76.5 31.6-31.7zm-60.9 105.8l-76.3-76.5v108.1h44.7zM97.9 352.9l76.3-76.5H65.4v44.8zm181.8 70.9H235V295.9l-10.8-10.8-10.8 10.8v127.9h-44.7l55.5 55.6zm-166.5-41.6l90.3-90.5v-15.3h-15.3l-90.3 90.5-32.5-31.7v78.7h79.4z"],chrome:[496,512,[],"f268","M131.5 217.5L55.1 100.1c47.6-59.2 119-91.8 192-92.1 42.3-.3 85.5 10.5 124.8 33.2 43.4 25.2 76.4 61.4 97.4 103L264 133.4c-58.1-3.4-113.4 29.3-132.5 84.1zm32.9 38.5c0 46.2 37.4 83.6 83.6 83.6s83.6-37.4 83.6-83.6-37.4-83.6-83.6-83.6-83.6 37.3-83.6 83.6zm314.9-89.2L339.6 174c37.9 44.3 38.5 108.2 6.6 157.2L234.1 503.6c46.5 2.5 94.4-7.7 137.8-32.9 107.4-62 150.9-192 107.4-303.9zM133.7 303.6L40.4 120.1C14.9 159.1 0 205.9 0 256c0 124 90.8 226.7 209.5 244.9l63.7-124.8c-57.6 10.8-113.2-20.8-139.5-72.5z"],chromecast:[512,512,[],"f838","M447.83 64H64a42.72 42.72 0 0 0-42.72 42.72v63.92H64v-63.92h383.83v298.56H298.64V448H448a42.72 42.72 0 0 0 42.72-42.72V106.72A42.72 42.72 0 0 0 448 64zM21.28 383.58v63.92h63.91a63.91 63.91 0 0 0-63.91-63.92zm0-85.28V341a106.63 106.63 0 0 1 106.64 106.66v.34h42.72a149.19 149.19 0 0 0-149-149.36h-.33zm0-85.27v42.72c106-.1 192 85.75 192.08 191.75v.5h42.72c-.46-129.46-105.34-234.27-234.8-234.64z"],cloudscale:[448,512,[],"f383","M318.1 154l-9.4 7.6c-22.5-19.3-51.5-33.6-83.3-33.6C153.8 128 96 188.8 96 260.3c0 6.6.4 13.1 1.4 19.4-2-56 41.8-97.4 92.6-97.4 24.2 0 46.2 9.4 62.6 24.7l-25.2 20.4c-8.3-.9-16.8 1.8-23.1 8.1-11.1 11-11.1 28.9 0 40 11.1 11 28.9 11 40 0 6.3-6.3 9-14.9 8.1-23.1l75.2-88.8c6.3-6.5-3.3-15.9-9.5-9.6zm-83.8 111.5c-5.6 5.5-14.6 5.5-20.2 0-5.6-5.6-5.6-14.6 0-20.2s14.6-5.6 20.2 0 5.6 14.7 0 20.2zM224 32C100.5 32 0 132.5 0 256s100.5 224 224 224 224-100.5 224-224S347.5 32 224 32zm0 384c-88.2 0-160-71.8-160-160S135.8 96 224 96s160 71.8 160 160-71.8 160-160 160z"],cloudsmith:[332,512,[],"f384","M332.5 419.9c0 46.4-37.6 84.1-84 84.1s-84-37.7-84-84.1 37.6-84 84-84 84 37.6 84 84zm-84-243.9c46.4 0 80-37.6 80-84s-33.6-84-80-84-88 37.6-88 84-29.6 76-76 76-84 41.6-84 88 37.6 80 84 80 84-33.6 84-80 33.6-80 80-80z"],cloudversify:[616,512,[],"f385","M148.6 304c8.2 68.5 67.4 115.5 146 111.3 51.2 43.3 136.8 45.8 186.4-5.6 69.2 1.1 118.5-44.6 131.5-99.5 14.8-62.5-18.2-132.5-92.1-155.1-33-88.1-131.4-101.5-186.5-85-57.3 17.3-84.3 53.2-99.3 109.7-7.8 2.7-26.5 8.9-45 24.1 11.7 0 15.2 8.9 15.2 19.5v20.4c0 10.7-8.7 19.5-19.5 19.5h-20.2c-10.7 0-19.5-6-19.5-16.7V240H98.8C95 240 88 244.3 88 251.9v40.4c0 6.4 5.3 11.8 11.7 11.8h48.9zm227.4 8c-10.7 46.3 21.7 72.4 55.3 86.8C324.1 432.6 259.7 348 296 288c-33.2 21.6-33.7 71.2-29.2 92.9-17.9-12.4-53.8-32.4-57.4-79.8-3-39.9 21.5-75.7 57-93.9C297 191.4 369.9 198.7 400 248c-14.1-48-53.8-70.1-101.8-74.8 30.9-30.7 64.4-50.3 114.2-43.7 69.8 9.3 133.2 82.8 67.7 150.5 35-16.3 48.7-54.4 47.5-76.9l10.5 19.6c11.8 22 15.2 47.6 9.4 72-9.2 39-40.6 68.8-79.7 76.5-32.1 6.3-83.1-5.1-91.8-59.2zM128 208H88.2c-8.9 0-16.2-7.3-16.2-16.2v-39.6c0-8.9 7.3-16.2 16.2-16.2H128c8.9 0 16.2 7.3 16.2 16.2v39.6c0 8.9-7.3 16.2-16.2 16.2zM10.1 168C4.5 168 0 163.5 0 157.9v-27.8c0-5.6 4.5-10.1 10.1-10.1h27.7c5.5 0 10.1 4.5 10.1 10.1v27.8c0 5.6-4.5 10.1-10.1 10.1H10.1zM168 142.7v-21.4c0-5.1 4.2-9.3 9.3-9.3h21.4c5.1 0 9.3 4.2 9.3 9.3v21.4c0 5.1-4.2 9.3-9.3 9.3h-21.4c-5.1 0-9.3-4.2-9.3-9.3zM56 235.5v25c0 6.3-5.1 11.5-11.4 11.5H19.4C13.1 272 8 266.8 8 260.5v-25c0-6.3 5.1-11.5 11.4-11.5h25.1c6.4 0 11.5 5.2 11.5 11.5z"],codepen:[512,512,[],"f1cb","M502.285 159.704l-234-156c-7.987-4.915-16.511-4.96-24.571 0l-234 156C3.714 163.703 0 170.847 0 177.989v155.999c0 7.143 3.714 14.286 9.715 18.286l234 156.022c7.987 4.915 16.511 4.96 24.571 0l234-156.022c6-3.999 9.715-11.143 9.715-18.286V177.989c-.001-7.142-3.715-14.286-9.716-18.285zM278 63.131l172.286 114.858-76.857 51.429L278 165.703V63.131zm-44 0v102.572l-95.429 63.715-76.857-51.429L234 63.131zM44 219.132l55.143 36.857L44 292.846v-73.714zm190 229.715L61.714 333.989l76.857-51.429L234 346.275v102.572zm22-140.858l-77.715-52 77.715-52 77.715 52-77.715 52zm22 140.858V346.275l95.429-63.715 76.857 51.429L278 448.847zm190-156.001l-55.143-36.857L468 219.132v73.714z"],codiepie:[472,512,[],"f284","M422.5 202.9c30.7 0 33.5 53.1-.3 53.1h-10.8v44.3h-26.6v-97.4h37.7zM472 352.6C429.9 444.5 350.4 504 248 504 111 504 0 393 0 256S111 8 248 8c97.4 0 172.8 53.7 218.2 138.4l-186 108.8L472 352.6zm-38.5 12.5l-60.3-30.7c-27.1 44.3-70.4 71.4-122.4 71.4-82.5 0-149.2-66.7-149.2-148.9 0-82.5 66.7-149.2 149.2-149.2 48.4 0 88.9 23.5 116.9 63.4l59.5-34.6c-40.7-62.6-104.7-100-179.2-100-121.2 0-219.5 98.3-219.5 219.5S126.8 475.5 248 475.5c78.6 0 146.5-42.1 185.5-110.4z"],confluence:[512,512,[],"f78d","M2.3 412.2c-4.5 7.6-2.1 17.5 5.5 22.2l105.9 65.2c7.7 4.7 17.7 2.4 22.4-5.3 0-.1.1-.2.1-.2 67.1-112.2 80.5-95.9 280.9-.7 8.1 3.9 17.8.4 21.7-7.7.1-.1.1-.3.2-.4l50.4-114.1c3.6-8.1-.1-17.6-8.1-21.3-22.2-10.4-66.2-31.2-105.9-50.3C127.5 179 44.6 345.3 2.3 412.2zm507.4-312.1c4.5-7.6 2.1-17.5-5.5-22.2L398.4 12.8c-7.5-5-17.6-3.1-22.6 4.4-.2.3-.4.6-.6 1-67.3 112.6-81.1 95.6-280.6.9-8.1-3.9-17.8-.4-21.7 7.7-.1.1-.1.3-.2.4L22.2 141.3c-3.6 8.1.1 17.6 8.1 21.3 22.2 10.4 66.3 31.2 106 50.4 248 120 330.8-45.4 373.4-112.9z"],connectdevelop:[576,512,[],"f20e","M550.5 241l-50.089-86.786c1.071-2.142 1.875-4.553 1.875-7.232 0-8.036-6.696-14.733-14.732-15.001l-55.447-95.893c.536-1.607 1.071-3.214 1.071-4.821 0-8.571-6.964-15.268-15.268-15.268-4.821 0-8.839 2.143-11.786 5.625H299.518C296.839 18.143 292.821 16 288 16s-8.839 2.143-11.518 5.625H170.411C167.464 18.143 163.447 16 158.625 16c-8.303 0-15.268 6.696-15.268 15.268 0 1.607.536 3.482 1.072 4.821l-55.983 97.233c-5.356 2.41-9.107 7.5-9.107 13.661 0 .535.268 1.071.268 1.607l-53.304 92.143c-7.232 1.339-12.59 7.5-12.59 15 0 7.232 5.089 13.393 12.054 15l55.179 95.358c-.536 1.607-.804 2.946-.804 4.821 0 7.232 5.089 13.393 12.054 14.732l51.697 89.732c-.536 1.607-1.071 3.482-1.071 5.357 0 8.571 6.964 15.268 15.268 15.268 4.821 0 8.839-2.143 11.518-5.357h106.875C279.161 493.857 283.447 496 288 496s8.839-2.143 11.518-5.357h107.143c2.678 2.946 6.696 4.821 10.982 4.821 8.571 0 15.268-6.964 15.268-15.268 0-1.607-.267-2.946-.803-4.285l51.697-90.268c6.964-1.339 12.054-7.5 12.054-14.732 0-1.607-.268-3.214-.804-4.821l54.911-95.358c6.964-1.339 12.322-7.5 12.322-15-.002-7.232-5.092-13.393-11.788-14.732zM153.535 450.732l-43.66-75.803h43.66v75.803zm0-83.839h-43.66c-.268-1.071-.804-2.142-1.339-3.214l44.999-47.41v50.624zm0-62.411l-50.357 53.304c-1.339-.536-2.679-1.34-4.018-1.607L43.447 259.75c.535-1.339.535-2.679.535-4.018s0-2.41-.268-3.482l51.965-90c2.679-.268 5.357-1.072 7.768-2.679l50.089 51.965v92.946zm0-102.322l-45.803-47.41c1.339-2.143 2.143-4.821 2.143-7.767 0-.268-.268-.804-.268-1.072l43.928-15.804v72.053zm0-80.625l-43.66 15.804 43.66-75.536v59.732zm326.519 39.108l.804 1.339L445.5 329.125l-63.75-67.232 98.036-101.518.268.268zM291.75 355.107l11.518 11.786H280.5l11.25-11.786zm-.268-11.25l-83.303-85.446 79.553-84.375 83.036 87.589-79.286 82.232zm5.357 5.893l79.286-82.232 67.5 71.25-5.892 28.125H313.714l-16.875-17.143zM410.411 44.393c1.071.536 2.142 1.072 3.482 1.34l57.857 100.714v.536c0 2.946.803 5.624 2.143 7.767L376.393 256l-83.035-87.589L410.411 44.393zm-9.107-2.143L287.732 162.518l-57.054-60.268 166.339-60h4.287zm-123.483 0c2.678 2.678 6.16 4.285 10.179 4.285s7.5-1.607 10.179-4.285h75L224.786 95.821 173.893 42.25h103.928zm-116.249 5.625l1.071-2.142a33.834 33.834 0 0 0 2.679-.804l51.161 53.84-54.911 19.821V47.875zm0 79.286l60.803-21.964 59.732 63.214-79.553 84.107-40.982-42.053v-83.304zm0 92.678L198 257.607l-36.428 38.304v-76.072zm0 87.858l42.053-44.464 82.768 85.982-17.143 17.678H161.572v-59.196zm6.964 162.053c-1.607-1.607-3.482-2.678-5.893-3.482l-1.071-1.607v-89.732h99.91l-91.607 94.821h-1.339zm129.911 0c-2.679-2.41-6.428-4.285-10.447-4.285s-7.767 1.875-10.447 4.285h-96.429l91.607-94.821h38.304l91.607 94.821H298.447zm120-11.786l-4.286 7.5c-1.339.268-2.41.803-3.482 1.339l-89.196-91.875h114.376l-17.412 83.036zm12.856-22.232l12.858-60.803h21.964l-34.822 60.803zm34.822-68.839h-20.357l4.553-21.16 17.143 18.214c-.535.803-1.071 1.874-1.339 2.946zm66.161-107.411l-55.447 96.697c-1.339.535-2.679 1.071-4.018 1.874l-20.625-21.964 34.554-163.928 45.803 79.286c-.267 1.339-.803 2.678-.803 4.285 0 1.339.268 2.411.536 3.75z"],contao:[512,512,[],"f26d","M45.4 305c14.4 67.1 26.4 129 68.2 175H34c-18.7 0-34-15.2-34-34V66c0-18.7 15.2-34 34-34h57.7C77.9 44.6 65.6 59.2 54.8 75.6c-45.4 70-27 146.8-9.4 229.4zM478 32h-90.2c21.4 21.4 39.2 49.5 52.7 84.1l-137.1 29.3c-14.9-29-37.8-53.3-82.6-43.9-24.6 5.3-41 19.3-48.3 34.6-8.8 18.7-13.2 39.8 8.2 140.3 21.1 100.2 33.7 117.7 49.5 131.2 12.9 11.1 33.4 17 58.3 11.7 44.5-9.4 55.7-40.7 57.4-73.2l137.4-29.6c3.2 71.5-18.7 125.2-57.4 163.6H478c18.7 0 34-15.2 34-34V66c0-18.8-15.2-34-34-34z"],"cotton-bureau":[512,512,[],"f89e","M474.31 330.41c-23.66 91.85-94.23 144.59-201.9 148.35V429.6c0-48 26.41-74.39 74.39-74.39 62 0 99.2-37.2 99.2-99.21 0-61.37-36.53-98.28-97.38-99.06-33-69.32-146.5-64.65-177.24 0C110.52 157.72 74 194.63 74 256c0 62.13 37.27 99.41 99.4 99.41 48 0 74.55 26.23 74.55 74.39V479c-134.43-5-211.1-85.07-211.1-223 0-141.82 81.35-223.2 223.2-223.2 114.77 0 189.84 53.2 214.69 148.81H500C473.88 71.51 388.22 8 259.82 8 105 8 12 101.19 12 255.82 12 411.14 105.19 504.34 259.82 504c128.27 0 213.87-63.81 239.67-173.59zM357 182.33c41.37 3.45 64.2 29 64.2 73.67 0 48-26.43 74.41-74.4 74.41-28.61 0-49.33-9.59-61.59-27.33 83.06-16.55 75.59-99.67 71.79-120.75zm-81.68 97.36c-2.46-10.34-16.33-87 56.23-97 2.27 10.09 16.52 87.11-56.26 97zM260 132c28.61 0 49 9.67 61.44 27.61-28.36 5.48-49.36 20.59-61.59 43.45-12.23-22.86-33.23-38-61.6-43.45 12.41-17.69 33.27-27.35 61.57-27.35zm-71.52 50.72c73.17 10.57 58.91 86.81 56.49 97-72.41-9.84-59-86.95-56.25-97zM173.2 330.41c-48 0-74.4-26.4-74.4-74.41 0-44.36 22.86-70 64.22-73.67-6.75 37.2-1.38 106.53 71.65 120.75-12.14 17.63-32.84 27.3-61.14 27.3zm53.21 12.39A80.8 80.8 0 0 0 260 309.25c7.77 14.49 19.33 25.54 33.82 33.55a80.28 80.28 0 0 0-33.58 33.83c-8-14.5-19.07-26.23-33.56-33.83z"],cpanel:[640,512,[],"f388","M210.3 220.2c-5.6-24.8-26.9-41.2-51-41.2h-37c-7.1 0-12.5 4.5-14.3 10.9L73.1 320l24.7-.1c6.8 0 12.3-4.5 14.2-10.7l25.8-95.7h19.8c8.4 0 16.2 5.6 18.3 14.8 2.5 10.9-5.9 22.6-18.3 22.6h-10.3c-7 0-12.5 4.6-14.3 10.8l-6.4 23.8h32c37.2 0 58.3-36.2 51.7-65.3zm-156.5 28h18.6c6.9 0 12.4-4.4 14.3-10.9l6.2-23.6h-40C30 213.7 9 227.8 1.7 254.8-7 288.6 18.5 320 52 320h12.4l7.1-26.1c1.2-4.4-2.2-8.3-6.4-8.3H53.8c-24.7 0-24.9-37.4 0-37.4zm247.5-34.8h-77.9l-3.5 13.4c-2.4 9.6 4.5 18.5 14.2 18.5h57.5c4 0 2.4 4.3 2.1 5.3l-8.6 31.8c-.4 1.4-.9 5.3-5.5 5.3h-34.9c-5.3 0-5.3-7.9 0-7.9h21.6c6.8 0 12.3-4.6 14.2-10.8l3.5-13.2h-48.4c-39.2 0-43.6 63.8-.7 63.8l57.5.2c11.2 0 20.6-7.2 23.4-17.8l14-51.8c4.8-19.2-9.7-36.8-28.5-36.8zM633.1 179h-18.9c-4.9 0-9.2 3.2-10.4 7.9L568.2 320c20.7 0 39.8-13.8 44.9-34.5l26.5-98.2c1.2-4.3-2-8.3-6.5-8.3zm-236.3 34.7v.1h-48.3l-26.2 98c-1.2 4.4 2.2 8.3 6.4 8.3h18.9c4.8 0 9.2-3 10.4-7.8l17.2-64H395c12.5 0 21.4 11.8 18.1 23.4l-10.6 40c-1.2 4.3 1.9 8.3 6.4 8.3H428c4.6 0 9.1-2.9 10.3-7.8l8.8-33.1c9-33.1-15.9-65.4-50.3-65.4zm98.3 74.6c-3.6 0-6-3.4-5.1-6.7l8-30c.9-3.9 3.7-6 7.8-6h32.9c2.6 0 4.6 2.4 3.9 5.1l-.7 2.6c-.6 2-1.9 3-3.9 3h-21.6c-7 0-12.6 4.6-14.2 10.8l-3.5 13h53.4c10.5 0 20.3-6.6 23.2-17.6l3.2-12c4.9-19.1-9.3-36.8-28.3-36.8h-47.3c-17.9 0-33.8 12-38.6 29.6l-10.8 40c-5 17.7 8.3 36.7 28.3 36.7h66.7c6.8 0 12.3-4.5 14.2-10.7l5.7-21z"],"creative-commons":[496,512,[],"f25e","M245.83 214.87l-33.22 17.28c-9.43-19.58-25.24-19.93-27.46-19.93-22.13 0-33.22 14.61-33.22 43.84 0 23.57 9.21 43.84 33.22 43.84 14.47 0 24.65-7.09 30.57-21.26l30.55 15.5c-6.17 11.51-25.69 38.98-65.1 38.98-22.6 0-73.96-10.32-73.96-77.05 0-58.69 43-77.06 72.63-77.06 30.72-.01 52.7 11.95 65.99 35.86zm143.05 0l-32.78 17.28c-9.5-19.77-25.72-19.93-27.9-19.93-22.14 0-33.22 14.61-33.22 43.84 0 23.55 9.23 43.84 33.22 43.84 14.45 0 24.65-7.09 30.54-21.26l31 15.5c-2.1 3.75-21.39 38.98-65.09 38.98-22.69 0-73.96-9.87-73.96-77.05 0-58.67 42.97-77.06 72.63-77.06 30.71-.01 52.58 11.95 65.56 35.86zM247.56 8.05C104.74 8.05 0 123.11 0 256.05c0 138.49 113.6 248 247.56 248 129.93 0 248.44-100.87 248.44-248 0-137.87-106.62-248-248.44-248zm.87 450.81c-112.54 0-203.7-93.04-203.7-202.81 0-105.42 85.43-203.27 203.72-203.27 112.53 0 202.82 89.46 202.82 203.26-.01 121.69-99.68 202.82-202.84 202.82z"],"creative-commons-by":[496,512,[],"f4e7","M314.9 194.4v101.4h-28.3v120.5h-77.1V295.9h-28.3V194.4c0-4.4 1.6-8.2 4.6-11.3 3.1-3.1 6.9-4.7 11.3-4.7H299c4.1 0 7.8 1.6 11.1 4.7 3.1 3.2 4.8 6.9 4.8 11.3zm-101.5-63.7c0-23.3 11.5-35 34.5-35s34.5 11.7 34.5 35c0 23-11.5 34.5-34.5 34.5s-34.5-11.5-34.5-34.5zM247.6 8C389.4 8 496 118.1 496 256c0 147.1-118.5 248-248.4 248C113.6 504 0 394.5 0 256 0 123.1 104.7 8 247.6 8zm.8 44.7C130.2 52.7 44.7 150.6 44.7 256c0 109.8 91.2 202.8 203.7 202.8 103.2 0 202.8-81.1 202.8-202.8.1-113.8-90.2-203.3-202.8-203.3z"],"creative-commons-nc":[496,512,[],"f4e8","M247.6 8C387.4 8 496 115.9 496 256c0 147.2-118.5 248-248.4 248C113.1 504 0 393.2 0 256 0 123.1 104.7 8 247.6 8zM55.8 189.1c-7.4 20.4-11.1 42.7-11.1 66.9 0 110.9 92.1 202.4 203.7 202.4 122.4 0 177.2-101.8 178.5-104.1l-93.4-41.6c-7.7 37.1-41.2 53-68.2 55.4v38.1h-28.8V368c-27.5-.3-52.6-10.2-75.3-29.7l34.1-34.5c31.7 29.4 86.4 31.8 86.4-2.2 0-6.2-2.2-11.2-6.6-15.1-14.2-6-1.8-.1-219.3-97.4zM248.4 52.3c-38.4 0-112.4 8.7-170.5 93l94.8 42.5c10-31.3 40.4-42.9 63.8-44.3v-38.1h28.8v38.1c22.7 1.2 43.4 8.9 62 23L295 199.7c-42.7-29.9-83.5-8-70 11.1 53.4 24.1 43.8 19.8 93 41.6l127.1 56.7c4.1-17.4 6.2-35.1 6.2-53.1 0-57-19.8-105-59.3-143.9-39.3-39.9-87.2-59.8-143.6-59.8z"],"creative-commons-nc-eu":[496,512,[],"f4e9","M247.7 8C103.6 8 0 124.8 0 256c0 136.3 111.7 248 247.7 248C377.9 504 496 403.1 496 256 496 117 388.4 8 247.7 8zm.6 450.7c-112 0-203.6-92.5-203.6-202.7 0-23.2 3.7-45.2 10.9-66l65.7 29.1h-4.7v29.5h23.3c0 6.2-.4 3.2-.4 19.5h-22.8v29.5h27c11.4 67 67.2 101.3 124.6 101.3 26.6 0 50.6-7.9 64.8-15.8l-10-46.1c-8.7 4.6-28.2 10.8-47.3 10.8-28.2 0-58.1-10.9-67.3-50.2h90.3l128.3 56.8c-1.5 2.1-56.2 104.3-178.8 104.3zm-16.7-190.6l-.5-.4.9.4h-.4zm77.2-19.5h3.7v-29.5h-70.3l-28.6-12.6c2.5-5.5 5.4-10.5 8.8-14.3 12.9-15.8 31.1-22.4 51.1-22.4 18.3 0 35.3 5.4 46.1 10l11.6-47.3c-15-6.6-37-12.4-62.3-12.4-39 0-72.2 15.8-95.9 42.3-5.3 6.1-9.8 12.9-13.9 20.1l-81.6-36.1c64.6-96.8 157.7-93.6 170.7-93.6 113 0 203 90.2 203 203.4 0 18.7-2.1 36.3-6.3 52.9l-136.1-60.5z"],"creative-commons-nc-jp":[496,512,[],"f4ea","M247.7 8C103.6 8 0 124.8 0 256c0 136.4 111.8 248 247.7 248C377.9 504 496 403.2 496 256 496 117.2 388.5 8 247.7 8zm.6 450.7c-112 0-203.6-92.5-203.6-202.7 0-21.1 3-41.2 9-60.3l127 56.5h-27.9v38.6h58.1l5.7 11.8v18.7h-63.8V360h63.8v56h61.7v-56h64.2v-35.7l81 36.1c-1.5 2.2-57.1 98.3-175.2 98.3zm87.6-137.3h-57.6v-18.7l2.9-5.6 54.7 24.3zm6.5-51.4v-17.8h-38.6l63-116H301l-43.4 96-23-10.2-39.6-85.7h-65.8l27.3 51-81.9-36.5c27.8-44.1 82.6-98.1 173.7-98.1 112.8 0 203 90 203 203.4 0 21-2.7 40.6-7.9 59l-101-45.1z"],"creative-commons-nd":[496,512,[],"f4eb","M247.6 8C389.4 8 496 118.1 496 256c0 147.1-118.5 248-248.4 248C113.6 504 0 394.5 0 256 0 123.1 104.7 8 247.6 8zm.8 44.7C130.2 52.7 44.7 150.6 44.7 256c0 109.8 91.2 202.8 203.7 202.8 103.2 0 202.8-81.1 202.8-202.8.1-113.8-90.2-203.3-202.8-203.3zm94 144.3v42.5H162.1V197h180.3zm0 79.8v42.5H162.1v-42.5h180.3z"],"creative-commons-pd":[496,512,[],"f4ec","M248 8C111 8 0 119.1 0 256c0 137 111 248 248 248s248-111 248-248C496 119.1 385 8 248 8zm0 449.5c-139.2 0-235.8-138-190.2-267.9l78.8 35.1c-2.1 10.5-3.3 21.5-3.3 32.9 0 99 73.9 126.9 120.4 126.9 22.9 0 53.5-6.7 79.4-29.5L297 311.1c-5.5 6.3-17.6 16.7-36.3 16.7-37.8 0-53.7-39.9-53.9-71.9 230.4 102.6 216.5 96.5 217.9 96.8-34.3 62.4-100.6 104.8-176.7 104.8zm194.2-150l-224-100c18.8-34 54.9-30.7 74.7-11l40.4-41.6c-27.1-23.3-58-27.5-78.1-27.5-47.4 0-80.9 20.5-100.7 51.6l-74.9-33.4c36.1-54.9 98.1-91.2 168.5-91.2 111.1 0 201.5 90.4 201.5 201.5 0 18-2.4 35.4-6.8 52-.3-.1-.4-.2-.6-.4z"],"creative-commons-pd-alt":[496,512,[],"f4ed","M247.6 8C104.7 8 0 123.1 0 256c0 138.5 113.6 248 247.6 248C377.5 504 496 403.1 496 256 496 118.1 389.4 8 247.6 8zm.8 450.8c-112.5 0-203.7-93-203.7-202.8 0-105.4 85.5-203.3 203.7-203.3 112.6 0 202.9 89.5 202.8 203.3 0 121.7-99.6 202.8-202.8 202.8zM316.7 186h-53.2v137.2h53.2c21.4 0 70-5.1 70-68.6 0-63.4-48.6-68.6-70-68.6zm.8 108.5h-19.9v-79.7l19.4-.1c3.8 0 35-2.1 35 39.9 0 24.6-10.5 39.9-34.5 39.9zM203.7 186h-68.2v137.3h34.6V279h27c54.1 0 57.1-37.5 57.1-46.5 0-31-16.8-46.5-50.5-46.5zm-4.9 67.3h-29.2v-41.6h28.3c30.9 0 28.8 41.6.9 41.6z"],"creative-commons-remix":[496,512,[],"f4ee","M247.6 8C389.4 8 496 118.1 496 256c0 147.1-118.5 248-248.4 248C113.6 504 0 394.5 0 256 0 123.1 104.7 8 247.6 8zm.8 44.7C130.2 52.7 44.7 150.6 44.7 256c0 109.8 91.2 202.8 203.7 202.8 103.2 0 202.8-81.1 202.8-202.8.1-113.8-90.2-203.3-202.8-203.3zm161.7 207.7l4.9 2.2v70c-7.2 3.6-63.4 27.5-67.3 28.8-6.5-1.8-113.7-46.8-137.3-56.2l-64.2 26.6-63.3-27.5v-63.8l59.3-24.8c-.7-.7-.4 5-.4-70.4l67.3-29.7L361 178.5v61.6l49.1 20.3zm-70.4 81.5v-43.8h-.4v-1.8l-113.8-46.5V295l113.8 46.9v-.4l.4.4zm7.5-57.6l39.9-16.4-36.8-15.5-39 16.4 35.9 15.5zm52.3 38.1v-43L355.2 298v43.4l44.3-19z"],"creative-commons-sa":[496,512,[],"f4ef","M247.6 8C389.4 8 496 118.1 496 256c0 147.1-118.5 248-248.4 248C113.6 504 0 394.5 0 256 0 123.1 104.7 8 247.6 8zm.8 44.7C130.2 52.7 44.7 150.6 44.7 256c0 109.8 91.2 202.8 203.7 202.8 103.2 0 202.8-81.1 202.8-202.8.1-113.8-90.2-203.3-202.8-203.3zM137.7 221c13-83.9 80.5-95.7 108.9-95.7 99.8 0 127.5 82.5 127.5 134.2 0 63.6-41 132.9-128.9 132.9-38.9 0-99.1-20-109.4-97h62.5c1.5 30.1 19.6 45.2 54.5 45.2 23.3 0 58-18.2 58-82.8 0-82.5-49.1-80.6-56.7-80.6-33.1 0-51.7 14.6-55.8 43.8h18.2l-49.2 49.2-49-49.2h19.4z"],"creative-commons-sampling":[496,512,[],"f4f0","M247.6 8C389.4 8 496 118.1 496 256c0 147.1-118.5 248-248.4 248C113.6 504 0 394.5 0 256 0 123.1 104.7 8 247.6 8zm.8 44.7C130.2 52.7 44.7 150.6 44.7 256c0 109.8 91.2 202.8 203.7 202.8 103.2 0 202.8-81.1 202.8-202.8.1-113.8-90.2-203.3-202.8-203.3zm3.6 53.2c2.8-.3 11.5 1 11.5 11.5l6.6 107.2 4.9-59.3c0-6 4.7-10.6 10.6-10.6 5.9 0 10.6 4.7 10.6 10.6 0 2.5-.5-5.7 5.7 81.5l5.8-64.2c.3-2.9 2.9-9.3 10.2-9.3 3.8 0 9.9 2.3 10.6 8.9l11.5 96.5 5.3-12.8c1.8-4.4 5.2-6.6 10.2-6.6h58v21.3h-50.9l-18.2 44.3c-3.9 9.9-19.5 9.1-20.8-3.1l-4-31.9-7.5 92.6c-.3 3-3 9.3-10.2 9.3-3 0-9.8-2.1-10.6-9.3 0-1.9.6 5.8-6.2-77.9l-5.3 72.2c-1.1 4.8-4.8 9.3-10.6 9.3-2.9 0-9.8-2-10.6-9.3 0-1.9.5 6.7-5.8-87.7l-5.8 94.8c0 6.3-3.6 12.4-10.6 12.4-5.2 0-10.6-4.1-10.6-12l-5.8-87.7c-5.8 92.5-5.3 84-5.3 85.9-1.1 4.8-4.8 9.3-10.6 9.3-3 0-9.8-2.1-10.6-9.3 0-.7-.4-1.1-.4-2.6l-6.2-88.6L182 348c-.7 6.5-6.7 9.3-10.6 9.3-5.8 0-9.6-4.1-10.6-8.9L149.7 272c-2 4-3.5 8.4-11.1 8.4H87.2v-21.3H132l13.7-27.9c4.4-9.9 18.2-7.2 19.9 2.7l3.1 20.4 8.4-97.9c0-6 4.8-10.6 10.6-10.6.5 0 10.6-.2 10.6 12.4l4.9 69.1 6.6-92.6c0-10.1 9.5-10.6 10.2-10.6.6 0 10.6.7 10.6 10.6l5.3 80.6 6.2-97.9c.1-1.1-.6-10.3 9.9-11.5z"],"creative-commons-sampling-plus":[496,512,[],"f4f1","M247.6 8C389.4 8 496 118.1 496 256c0 147.1-118.5 248-248.4 248C113.6 504 0 394.5 0 256 0 123.1 104.7 8 247.6 8zm.8 44.7C130.2 52.7 44.7 150.6 44.7 256c0 109.8 91.2 202.8 203.7 202.8 103.2 0 202.8-81.1 202.8-202.8.1-113.8-90.2-203.3-202.8-203.3zm107 205.6c-4.7 0-9 2.8-10.7 7.2l-4 9.5-11-92.8c-1.7-13.9-22-13.4-23.1.4l-4.3 51.4-5.2-68.8c-1.1-14.3-22.1-14.2-23.2 0l-3.5 44.9-5.9-94.3c-.9-14.5-22.3-14.4-23.2 0l-5.1 83.7-4.3-66.3c-.9-14.4-22.2-14.4-23.2 0l-5.3 80.2-4.1-57c-1.1-14.3-22-14.3-23.2-.2l-7.7 89.8-1.8-12.2c-1.7-11.4-17.1-13.6-22-3.3l-13.2 27.7H87.5v23.2h51.3c4.4 0 8.4-2.5 10.4-6.4l10.7 73.1c2 13.5 21.9 13 23.1-.7l3.8-43.6 5.7 78.3c1.1 14.4 22.3 14.2 23.2-.1l4.6-70.4 4.8 73.3c.9 14.4 22.3 14.4 23.2-.1l4.9-80.5 4.5 71.8c.9 14.3 22.1 14.5 23.2.2l4.6-58.6 4.9 64.4c1.1 14.3 22 14.2 23.1.1l6.8-83 2.7 22.3c1.4 11.8 17.7 14.1 22.3 3.1l18-43.4h50.5V258l-58.4.3zm-78 5.2h-21.9v21.9c0 4.1-3.3 7.5-7.5 7.5-4.1 0-7.5-3.3-7.5-7.5v-21.9h-21.9c-4.1 0-7.5-3.3-7.5-7.5 0-4.1 3.4-7.5 7.5-7.5h21.9v-21.9c0-4.1 3.4-7.5 7.5-7.5s7.5 3.3 7.5 7.5v21.9h21.9c4.1 0 7.5 3.3 7.5 7.5 0 4.1-3.4 7.5-7.5 7.5z"],"creative-commons-share":[496,512,[],"f4f2","M247.6 8C389.4 8 496 118.1 496 256c0 147.1-118.5 248-248.4 248C113.6 504 0 394.5 0 256 0 123.1 104.7 8 247.6 8zm.8 44.7C130.2 52.7 44.7 150.6 44.7 256c0 109.8 91.2 202.8 203.7 202.8 103.2 0 202.8-81.1 202.8-202.8.1-113.8-90.2-203.3-202.8-203.3zm101 132.4c7.8 0 13.7 6.1 13.7 13.7v182.5c0 7.7-6.1 13.7-13.7 13.7H214.3c-7.7 0-13.7-6-13.7-13.7v-54h-54c-7.8 0-13.7-6-13.7-13.7V131.1c0-8.2 6.6-12.7 12.4-13.7h136.4c7.7 0 13.7 6 13.7 13.7v54h54zM159.9 300.3h40.7V198.9c0-7.4 5.8-12.6 12-13.7h55.8v-40.3H159.9v155.4zm176.2-88.1H227.6v155.4h108.5V212.2z"],"creative-commons-zero":[496,512,[],"f4f3","M247.6 8C389.4 8 496 118.1 496 256c0 147.1-118.5 248-248.4 248C113.6 504 0 394.5 0 256 0 123.1 104.7 8 247.6 8zm.8 44.7C130.2 52.7 44.7 150.6 44.7 256c0 109.8 91.2 202.8 203.7 202.8 103.2 0 202.8-81.1 202.8-202.8.1-113.8-90.2-203.3-202.8-203.3zm-.4 60.5c-81.9 0-102.5 77.3-102.5 142.8 0 65.5 20.6 142.8 102.5 142.8S350.5 321.5 350.5 256c0-65.5-20.6-142.8-102.5-142.8zm0 53.9c3.3 0 6.4.5 9.2 1.2 5.9 5.1 8.8 12.1 3.1 21.9l-54.5 100.2c-1.7-12.7-1.9-25.1-1.9-34.4 0-28.8 2-88.9 44.1-88.9zm40.8 46.2c2.9 15.4 3.3 31.4 3.3 42.7 0 28.9-2 88.9-44.1 88.9-13.5 0-32.6-7.7-20.1-26.4l60.9-105.2z"],"critical-role":[448,512,[],"f6c9","M225.82 0c.26.15 216.57 124.51 217.12 124.72 3 1.18 3.7 3.46 3.7 6.56q-.11 125.17 0 250.36a5.88 5.88 0 0 1-3.38 5.78c-21.37 12-207.86 118.29-218.93 124.58h-3C142 466.34 3.08 386.56 2.93 386.48a3.29 3.29 0 0 1-1.88-3.24c0-.87 0-225.94-.05-253.1a5 5 0 0 1 2.93-4.93C27.19 112.11 213.2 6 224.07 0zM215.4 20.42l-.22-.16Q118.06 75.55 21 130.87c0 .12.08.23.13.35l30.86 11.64c-7.71 6-8.32 6-10.65 5.13-.1 0-24.17-9.28-26.8-10v230.43c.88-1.41 64.07-110.91 64.13-111 1.62-2.82 3-1.92 9.12-1.52 1.4.09 1.48.22.78 1.42-41.19 71.33-36.4 63-67.48 116.94-.81 1.4-.61 1.13 1.25 1.13h186.5c1.44 0 1.69-.23 1.7-1.64v-8.88c0-1.34 2.36-.81-18.37-1-7.46-.07-14.14-3.22-21.38-12.7-7.38-9.66-14.62-19.43-21.85-29.21-2.28-3.08-3.45-2.38-16.76-2.38-1.75 0-1.78 0-1.76 1.82.29 26.21.15 25.27 1 32.66.52 4.37 2.16 4.2 9.69 4.81 3.14.26 3.88 4.08.52 4.92-1.57.39-31.6.51-33.67-.1a2.42 2.42 0 0 1 .3-4.73c3.29-.76 6.16.81 6.66-4.44 1.3-13.66 1.17-9 1.1-79.42 0-10.82-.35-12.58-5.36-13.55-1.22-.24-3.54-.16-4.69-.55-2.88-1-2-4.84 1.77-4.85 33.67 0 46.08-1.07 56.06 4.86 7.74 4.61 12 11.48 12.51 20.4.88 14.59-6.51 22.35-15 32.59a1.46 1.46 0 0 0 0 2.22c2.6 3.25 5 6.63 7.71 9.83 27.56 33.23 24.11 30.54 41.28 33.06.89.13 1-.42 1-1.15v-11c0-1 .32-1.43 1.41-1.26a72.37 72.37 0 0 0 23.58-.3c1.08-.15 1.5.2 1.48 1.33 0 .11.88 26.69.87 26.8-.05 1.52.67 1.62 1.89 1.62h186.71Q386.51 304.6 346 234.33c2.26-.66-.4 0 6.69-1.39 2-.39 2.05-.41 3.11 1.44 7.31 12.64 77.31 134 77.37 134.06V138c-1.72.5-103.3 38.72-105.76 39.68-1.08.42-1.55.2-1.91-.88-.63-1.9-1.34-3.76-2.09-5.62-.32-.79-.09-1.13.65-1.39.1 0 95.53-35.85 103-38.77-65.42-37.57-130.56-75-196-112.6l86.82 150.39-.28.33c-9.57-.9-10.46-1.6-11.8-3.94-1-1.69-73.5-127.71-82-142.16-9.1 14.67-83.56 146.21-85.37 146.32-2.93.17-5.88.08-9.25.08q43.25-74.74 86.18-149zm51.93 129.92a37.68 37.68 0 0 0 5.54-.85c1.69-.3 2.53.2 2.6 1.92 0 .11.07 19.06-.86 20.45s-1.88 1.22-2.6-.19c-5-9.69 6.22-9.66-39.12-12-.7 0-1 .23-1 .93 0 .13 3.72 122 3.73 122.11 0 .89.52 1.2 1.21 1.51a83.92 83.92 0 0 1 8.7 4.05c7.31 4.33 11.38 10.84 12.41 19.31 1.44 11.8-2.77 35.77-32.21 37.14-2.75.13-28.26 1.08-34.14-23.25-4.66-19.26 8.26-32.7 19.89-36.4a2.45 2.45 0 0 0 2-2.66c.1-5.63 3-107.1 3.71-121.35.05-1.08-.62-1.16-1.35-1.15-32.35.52-36.75-.34-40.22 8.52-2.42 6.18-4.14 1.32-3.95.23q1.59-9 3.31-18c.4-2.11 1.43-2.61 3.43-1.86 5.59 2.11 6.72 1.7 37.25 1.92 1.73 0 1.78-.08 1.82-1.85.68-27.49.58-22.59 1-29.55a2.69 2.69 0 0 0-1.63-2.8c-5.6-2.91-8.75-7.55-8.9-13.87-.35-14.81 17.72-21.67 27.38-11.51 6.84 7.19 5.8 18.91-2.45 24.15a4.35 4.35 0 0 0-2.22 4.34c0 .59-.11-4.31 1 30.05 0 .9.43 1.12 1.24 1.11.1 0 23-.09 34.47-.37zM68.27 141.7c19.84-4.51 32.68-.56 52.49 1.69 2.76.31 3.74 1.22 3.62 4-.21 5-1.16 22.33-1.24 23.15a2.65 2.65 0 0 1-1.63 2.34c-4.06 1.7-3.61-4.45-4-7.29-3.13-22.43-73.87-32.7-74.63 25.4-.31 23.92 17 53.63 54.08 50.88 27.24-2 19-20.19 24.84-20.47a2.72 2.72 0 0 1 3 3.36c-1.83 10.85-3.42 18.95-3.45 19.15-1.54 9.17-86.7 22.09-93.35-42.06-2.71-25.85 10.44-53.37 40.27-60.15zm80 87.67h-19.49a2.57 2.57 0 0 1-2.66-1.79c2.38-3.75 5.89.92 5.86-6.14-.08-25.75.21-38 .23-40.1 0-3.42-.53-4.65-3.32-4.94-7-.72-3.11-3.37-1.11-3.38 11.84-.1 22.62-.18 30.05.72 8.77 1.07 16.71 12.63 7.93 22.62-2 2.25-4 4.42-6.14 6.73.95 1.15 6.9 8.82 17.28 19.68 2.66 2.78 6.15 3.51 9.88 3.13a2.21 2.21 0 0 0 2.23-2.12c.3-3.42.26 4.73.45-40.58 0-5.65-.34-6.58-3.23-6.83-3.95-.35-4-2.26-.69-3.37l19.09-.09c.32 0 4.49.53 1 3.38 0 .05-.16 0-.24 0-3.61.26-3.94 1-4 4.62-.27 43.93.07 40.23.41 42.82.11.84.27 2.23 5.1 2.14 2.49 0 3.86 3.37 0 3.4-10.37.08-20.74 0-31.11.07-10.67 0-13.47-6.2-24.21-20.82-1.6-2.18-8.31-2.36-8.2-.37.88 16.47 0 17.78 4 17.67 4.75-.1 4.73 3.57.83 3.55zm275-10.15c-1.21 7.13.17 10.38-5.3 10.34-61.55-.42-47.82-.22-50.72-.31a18.4 18.4 0 0 1-3.63-.73c-2.53-.6 1.48-1.23-.38-5.6-1.43-3.37-2.78-6.78-4.11-10.19a1.94 1.94 0 0 0-2-1.44 138 138 0 0 0-14.58.07 2.23 2.23 0 0 0-1.62 1.06c-1.58 3.62-3.07 7.29-4.51 11-1.27 3.23 7.86 1.32 12.19 2.16 3 .57 4.53 3.72.66 3.73H322.9c-2.92 0-3.09-3.15-.74-3.21a6.3 6.3 0 0 0 5.92-3.47c1.5-3 2.8-6 4.11-9.09 18.18-42.14 17.06-40.17 18.42-41.61a1.83 1.83 0 0 1 3 0c2.93 3.34 18.4 44.71 23.62 51.92 2 2.7 5.74 2 6.36 2 3.61.13 4-1.11 4.13-4.29.09-1.87.08 1.17.07-41.24 0-4.46-2.36-3.74-5.55-4.27-.26 0-2.56-.63-.08-3.06.21-.2-.89-.24 21.7-.15 2.32 0 5.32 2.75-1.21 3.45a2.56 2.56 0 0 0-2.66 2.83c-.07 1.63-.19 38.89.29 41.21a3.06 3.06 0 0 0 3.23 2.43c13.25.43 14.92.44 16-3.41 1.67-5.78 4.13-2.52 3.73-.19zm-104.72 64.37c-4.24 0-4.42-3.39-.61-3.41 35.91-.16 28.11.38 37.19-.65 1.68-.19 2.38.24 2.25 1.89-.26 3.39-.64 6.78-1 10.16-.25 2.16-3.2 2.61-3.4-.15-.38-5.31-2.15-4.45-15.63-5.08-1.58-.07-1.64 0-1.64 1.52V304c0 1.65 0 1.6 1.62 1.47 3.12-.25 10.31.34 15.69-1.52.47-.16 3.3-1.79 3.07 1.76 0 .21-.76 10.35-1.18 11.39-.53 1.29-1.88 1.51-2.58.32-1.17-2 0-5.08-3.71-5.3-15.42-.9-12.91-2.55-12.91 6 0 12.25-.76 16.11 3.89 16.24 16.64.48 14.4 0 16.43-5.71.84-2.37 3.5-1.77 3.18.58-.44 3.21-.85 6.43-1.23 9.64 0 .36-.16 2.4-4.66 2.39-37.16-.08-34.54-.19-35.21-.31-2.72-.51-2.2-3 .22-3.45 1.1-.19 4 .54 4.16-2.56 2.44-56.22-.07-51.34-3.91-51.33zm-.41-109.52c2.46.61 3.13 1.76 2.95 4.65-.33 5.3-.34 9-.55 9.69-.66 2.23-3.15 2.12-3.34-.27-.38-4.81-3.05-7.82-7.57-9.15-26.28-7.73-32.81 15.46-27.17 30.22 5.88 15.41 22 15.92 28.86 13.78 5.92-1.85 5.88-6.5 6.91-7.58 1.23-1.3 2.25-1.84 3.12 1.1 0 .1.57 11.89-6 12.75-1.6.21-19.38 3.69-32.68-3.39-21-11.19-16.74-35.47-6.88-45.33 14-14.06 39.91-7.06 42.32-6.47zM289.8 280.14c3.28 0 3.66 3 .16 3.43-2.61.32-5-.42-5 5.46 0 2-.19 29.05.4 41.45.11 2.29 1.15 3.52 3.44 3.65 22 1.21 14.95-1.65 18.79-6.34 1.83-2.24 2.76.84 2.76 1.08.35 13.62-4 12.39-5.19 12.4l-38.16-.19c-1.93-.23-2.06-3-.42-3.38 2-.48 4.94.4 5.13-2.8 1-15.87.57-44.65.34-47.81-.27-3.77-2.8-3.27-5.68-3.71-2.47-.38-2-3.22.34-3.22 1.45-.02 17.97-.03 23.09-.02zm-31.63-57.79c.07 4.08 2.86 3.46 6 3.58 2.61.1 2.53 3.41-.07 3.43-6.48 0-13.7 0-21.61-.06-3.84 0-3.38-3.35 0-3.37 4.49 0 3.24 1.61 3.41-45.54 0-5.08-3.27-3.54-4.72-4.23-2.58-1.23-1.36-3.09.41-3.15 1.29 0 20.19-.41 21.17.21s1.87 1.65-.42 2.86c-1 .52-3.86-.28-4.15 2.47 0 .21-.82 1.63-.07 43.8zm-36.91 274.27a2.93 2.93 0 0 0 3.26 0c17-9.79 182-103.57 197.42-112.51-.14-.43 11.26-.18-181.52-.27-1.22 0-1.57.37-1.53 1.56 0 .1 1.25 44.51 1.22 50.38a28.33 28.33 0 0 1-1.36 7.71c-.55 1.83.38-.5-13.5 32.23-.73 1.72-1 2.21-2-.08-4.19-10.34-8.28-20.72-12.57-31a23.6 23.6 0 0 1-2-10.79c.16-2.46.8-16.12 1.51-48 0-1.95 0-2-2-2h-183c2.58 1.63 178.32 102.57 196 112.76zm-90.9-188.75c0 2.4.36 2.79 2.76 3 11.54 1.17 21 3.74 25.64-7.32 6-14.46 2.66-34.41-12.48-38.84-2-.59-16-2.76-15.94 1.51.05 8.04.01 11.61.02 41.65zm105.75-15.05c0 2.13 1.07 38.68 1.09 39.13.34 9.94-25.58 5.77-25.23-2.59.08-2 1.37-37.42 1.1-39.43-14.1 7.44-14.42 40.21 6.44 48.8a17.9 17.9 0 0 0 22.39-7.07c4.91-7.76 6.84-29.47-5.43-39a2.53 2.53 0 0 1-.36.12zm-12.28-198c-9.83 0-9.73 14.75-.07 14.87s10.1-14.88.07-14.91zm-80.15 103.83c0 1.8.41 2.4 2.17 2.58 13.62 1.39 12.51-11 12.16-13.36-1.69-11.22-14.38-10.2-14.35-7.81.05 4.5-.03 13.68.02 18.59zm212.32 6.4l-6.1-15.84c-2.16 5.48-4.16 10.57-6.23 15.84z"],css3:[512,512,[],"f13c","M480 32l-64 368-223.3 80L0 400l19.6-94.8h82l-8 40.6L210 390.2l134.1-44.4 18.8-97.1H29.5l16-82h333.7l10.5-52.7H56.3l16.3-82H480z"],"css3-alt":[384,512,[],"f38b","M0 32l34.9 395.8L192 480l157.1-52.2L384 32H0zm313.1 80l-4.8 47.3L193 208.6l-.3.1h111.5l-12.8 146.6-98.2 28.7-98.8-29.2-6.4-73.9h48.9l3.2 38.3 52.6 13.3 54.7-15.4 3.7-61.6-166.3-.5v-.1l-.2.1-3.6-46.3L193.1 162l6.5-2.7H76.7L70.9 112h242.2z"],cuttlefish:[440,512,[],"f38c","M344 305.5c-17.5 31.6-57.4 54.5-96 54.5-56.6 0-104-47.4-104-104s47.4-104 104-104c38.6 0 78.5 22.9 96 54.5 13.7-50.9 41.7-93.3 87-117.8C385.7 39.1 320.5 8 248 8 111 8 0 119 0 256s111 248 248 248c72.5 0 137.7-31.1 183-80.7-45.3-24.5-73.3-66.9-87-117.8z"],"d-and-d":[576,512,[],"f38d","M82.5 98.9c-.6-17.2 2-33.8 12.7-48.2.3 7.4 1.2 14.5 4.2 21.6 5.9-27.5 19.7-49.3 42.3-65.5-1.9 5.9-3.5 11.8-3 17.7 8.7-7.4 18.8-17.8 44.4-22.7 14.7-2.8 29.7-2 42.1 1 38.5 9.3 61 34.3 69.7 72.3 5.3 23.1.7 45-8.3 66.4-5.2 12.4-12 24.4-20.7 35.1-2-1.9-3.9-3.8-5.8-5.6-42.8-40.8-26.8-25.2-37.4-37.4-1.1-1.2-1-2.2-.1-3.6 8.3-13.5 11.8-28.2 10-44-1.1-9.8-4.3-18.9-11.3-26.2-14.5-15.3-39.2-15-53.5.6-11.4 12.5-14.1 27.4-10.9 43.6.2 1.3.4 2.7 0 3.9-3.4 13.7-4.6 27.6-2.5 41.6.1.5.1 1.1.1 1.6 0 .3-.1.5-.2 1.1-21.8-11-36-28.3-43.2-52.2-8.3 17.8-11.1 35.5-6.6 54.1-15.6-15.2-21.3-34.3-22-55.2zm469.6 123.2c-11.6-11.6-25-20.4-40.1-26.6-12.8-5.2-26-7.9-39.9-7.1-10 .6-19.6 3.1-29 6.4-2.5.9-5.1 1.6-7.7 2.2-4.9 1.2-7.3-3.1-4.7-6.8 3.2-4.6 3.4-4.2 15-12 .6-.4 1.2-.8 2.2-1.5h-2.5c-.6 0-1.2.2-1.9.3-19.3 3.3-30.7 15.5-48.9 29.6-10.4 8.1-13.8 3.8-12-.5 1.4-3.5 3.3-6.7 5.1-10 1-1.8 2.3-3.4 3.5-5.1-.2-.2-.5-.3-.7-.5-27 18.3-46.7 42.4-57.7 73.3.3.3.7.6 1 .9.3-.6.5-1.2.9-1.7 10.4-12.1 22.8-21.8 36.6-29.8 18.2-10.6 37.5-18.3 58.7-20.2 4.3-.4 8.7-.1 13.1-.1-1.8.7-3.5.9-5.3 1.1-18.5 2.4-35.5 9-51.5 18.5-30.2 17.9-54.5 42.2-75.1 70.4-.3.4-.4.9-.7 1.3 14.5 5.3 24 17.3 36.1 25.6.2-.1.3-.2.4-.4l1.2-2.7c12.2-26.9 27-52.3 46.7-74.5 16.7-18.8 38-25.3 62.5-20 5.9 1.3 11.4 4.4 17.2 6.8 2.3-1.4 5.1-3.2 8-4.7 8.4-4.3 17.4-7 26.7-9 14.7-3.1 29.5-4.9 44.5-1.3v-.5c-.5-.4-1.2-.8-1.7-1.4zM316.7 397.6c-39.4-33-22.8-19.5-42.7-35.6-.8.9 0-.2-1.9 3-11.2 19.1-25.5 35.3-44 47.6-10.3 6.8-21.5 11.8-34.1 11.8-21.6 0-38.2-9.5-49.4-27.8-12-19.5-13.3-40.7-8.2-62.6 7.8-33.8 30.1-55.2 38.6-64.3-18.7-6.2-33 1.7-46.4 13.9.8-13.9 4.3-26.2 11.8-37.3-24.3 10.6-45.9 25-64.8 43.9-.3-5.8 5.4-43.7 5.6-44.7.3-2.7-.6-5.3-3-7.4-24.2 24.7-44.5 51.8-56.1 84.6 7.4-5.9 14.9-11.4 23.6-16.2-8.3 22.3-19.6 52.8-7.8 101.1 4.6 19 11.9 36.8 24.1 52.3 2.9 3.7 6.3 6.9 9.5 10.3.2-.2.4-.3.6-.5-1.4-7-2.2-14.1-1.5-21.9 2.2 3.2 3.9 6 5.9 8.6 12.6 16 28.7 27.4 47.2 35.6 25 11.3 51.1 13.3 77.9 8.6 54.9-9.7 90.7-48.6 116-98.8 1-1.8.6-2.9-.9-4.2zm172-46.4c-9.5-3.1-22.2-4.2-28.7-2.9 9.9 4 14.1 6.6 18.8 12 12.6 14.4 10.4 34.7-5.4 45.6-11.7 8.1-24.9 10.5-38.9 9.1-1.2-.1-2.3-.4-3-.6 2.8-3.7 6-7 8.1-10.8 9.4-16.8 5.4-42.1-8.7-56.1-2.1-2.1-4.6-3.9-7-5.9-.3 1.3-.1 2.1.1 2.8 4.2 16.6-8.1 32.4-24.8 31.8-7.6-.3-13.9-3.8-19.6-8.5-19.5-16.1-39.1-32.1-58.5-48.3-5.9-4.9-12.5-8.1-20.1-8.7-4.6-.4-9.3-.6-13.9-.9-5.9-.4-8.8-2.8-10.4-8.4-.9-3.4-1.5-6.8-2.2-10.2-1.5-8.1-6.2-13-14.3-14.2-4.4-.7-8.9-1-13.3-1.5-13-1.4-19.8-7.4-22.6-20.3-5 11-1.6 22.4 7.3 29.9 4.5 3.8 9.3 7.3 13.8 11.2 4.6 3.8 7.4 8.7 7.9 14.8.4 4.7.8 9.5 1.8 14.1 2.2 10.6 8.9 18.4 17 25.1 16.5 13.7 33 27.3 49.5 41.1 17.9 15 13.9 32.8 13 56-.9 22.9 12.2 42.9 33.5 51.2 1 .4 2 .6 3.6 1.1-15.7-18.2-10.1-44.1.7-52.3.3 2.2.4 4.3.9 6.4 9.4 44.1 45.4 64.2 85 56.9 16-2.9 30.6-8.9 42.9-19.8 2-1.8 3.7-4.1 5.9-6.5-19.3 4.6-35.8.1-50.9-10.6.7-.3 1.3-.3 1.9-.3 21.3 1.8 40.6-3.4 57-17.4 19.5-16.6 26.6-42.9 17.4-66-8.3-20.1-23.6-32.3-43.8-38.9zM99.4 179.3c-5.3-9.2-13.2-15.6-22.1-21.3 13.7-.5 26.6.2 39.6 3.7-7-12.2-8.5-24.7-5-38.7 5.3 11.9 13.7 20.1 23.6 26.8 19.7 13.2 35.7 19.6 46.7 30.2 3.4 3.3 6.3 7.1 9.6 10.9-.8-2.1-1.4-4.1-2.2-6-5-10.6-13-18.6-22.6-25-1.8-1.2-2.8-2.5-3.4-4.5-3.3-12.5-3-25.1-.7-37.6 1-5.5 2.8-10.9 4.5-16.3.8-2.4 2.3-4.6 4-6.6.6 6.9 0 25.5 19.6 46 10.8 11.3 22.4 21.9 33.9 32.7 9 8.5 18.3 16.7 25.5 26.8 1.1 1.6 2.2 3.3 3.8 4.7-5-13-14.2-24.1-24.2-33.8-9.6-9.3-19.4-18.4-29.2-27.4-3.3-3-4.6-6.7-5.1-10.9-1.2-10.4 0-20.6 4.3-30.2.5-1 1.1-2 1.9-3.3.5 4.2.6 7.9 1.4 11.6 4.8 23.1 20.4 36.3 49.3 63.5 10 9.4 19.3 19.2 25.6 31.6 4.8 9.3 7.3 19 5.7 29.6-.1.6.5 1.7 1.1 2 6.2 2.6 10 6.9 9.7 14.3 7.7-2.6 12.5-8 16.4-14.5 4.2 20.2-9.1 50.3-27.2 58.7.4-4.5 5-23.4-16.5-27.7-6.8-1.3-12.8-1.3-22.9-2.1 4.7-9 10.4-20.6.5-22.4-24.9-4.6-52.8 1.9-57.8 4.6 8.2.4 16.3 1 23.5 3.3-2 6.5-4 12.7-5.8 18.9-1.9 6.5 2.1 14.6 9.3 9.6 1.2-.9 2.3-1.9 3.3-2.7-3.1 17.9-2.9 15.9-2.8 18.3.3 10.2 9.5 7.8 15.7 7.3-2.5 11.8-29.5 27.3-45.4 25.8 7-4.7 12.7-10.3 15.9-17.9-6.5.8-12.9 1.6-19.2 2.4l-.3-.9c4.7-3.4 8-7.8 10.2-13.1 8.7-21.1-3.6-38-25-39.9-9.1-.8-17.8.8-25.9 5.5 6.2-15.6 17.2-26.6 32.6-34.5-15.2-4.3-8.9-2.7-24.6-6.3 14.6-9.3 30.2-13.2 46.5-14.6-5.2-3.2-48.1-3.6-70.2 20.9 7.9 1.4 15.5 2.8 23.2 4.2-23.8 7-44 19.7-62.4 35.6 1.1-4.8 2.7-9.5 3.3-14.3.6-4.5.8-9.2.1-13.6-1.5-9.4-8.9-15.1-19.7-16.3-7.9-.9-15.6.1-23.3 1.3-.9.1-1.7.3-2.9 0 15.8-14.8 36-21.7 53.1-33.5 6-4.5 6.8-8.2 3-14.9zm128.4 26.8c3.3 16 12.6 25.5 23.8 24.3-4.6-11.3-12.1-19.5-23.8-24.3z"],"d-and-d-beyond":[640,512,[],"f6ca","M313.8 241.5c13.8 0 21-10.1 24.8-17.9-1-1.1-5-4.2-7.4-6.6-2.4 4.3-8.2 10.7-13.9 10.7-10.2 0-15.4-14.7-3.2-26.6-.5-.2-4.3-1.8-8 2.4 0-3 1-5.1 2.1-6.6-3.5 1.3-9.8 5.6-11.4 7.9.2-5.8 1.6-7.5.6-9l-.2-.2s-8.5 5.6-9.3 14.7c0 0 1.1-1.6 2.1-1.9.6-.3 1.3 0 .6 1.9-.2.6-5.8 15.7 5.1 26-.6-1.6-1.9-7.6 2.4-1.9-.3.1 5.8 7.1 15.7 7.1zm52.4-21.1c0-4-4.9-4.4-5.6-4.5 2 3.9.9 7.5.2 9 2.5-.4 5.4-1.6 5.4-4.5zm10.3 5.2c0-6.4-6.2-11.4-13.5-10.7 8 1.3 5.6 13.8-5 11.4 3.7-2.6 3.2-9.9-1.3-12.5 1.4 4.2-3 8.2-7.4 4.6-2.4-1.9-8-6.6-10.6-8.6-2.4-2.1-5.5-1-6.6-1.8-1.3-1.1-.5-3.8-2.2-5-1.6-.8-3-.3-4.8-1-1.6-.6-2.7-1.9-2.6-3.5-2.5 4.4 3.4 6.3 4.5 8.5 1 1.9-.8 4.8 4 8.5 14.8 11.6 9.1 8 10.4 18.1.6 4.3 4.2 6.7 6.4 7.4-2.1-1.9-2.9-6.4 0-9.3 0 13.9 19.2 13.3 23.1 6.4-2.4 1.1-7-.2-9-1.9 7.7 1 14.2-4.1 14.6-10.6zm-39.4-18.4c2 .8 1.6.7 6.4 4.5 10.2-24.5 21.7-15.7 22-15.5 2.2-1.9 9.8-3.8 13.8-2.7-2.4-2.7-7.5-6.2-13.3-6.2-4.7 0-7.4 2.2-8 1.3-.8-1.4 3.2-3.4 3.2-3.4-5.4.2-9.6 6.7-11.2 5.9-1.1-.5 1.4-3.7 1.4-3.7-5.1 2.9-9.3 9.1-10.2 13 4.6-5.8 13.8-9.8 19.7-9-10.5.5-19.5 9.7-23.8 15.8zm242.5 51.9c-20.7 0-40 1.3-50.3 2.1l7.4 8.2v77.2l-7.4 8.2c10.4.8 30.9 2.1 51.6 2.1 42.1 0 59.1-20.7 59.1-48.9 0-29.3-23.2-48.9-60.4-48.9zm-15.1 75.6v-53.3c30.1-3.3 46.8 3.8 46.8 26.3 0 25.6-21.4 30.2-46.8 27zM301.6 181c-1-3.4-.2-6.9 1.1-9.4 1 3 2.6 6.4 7.5 9-.5-2.4-.2-5.6.5-8-1.4-5.4 2.1-9.9 6.4-9.9 6.9 0 8.5 8.8 4.7 14.4 2.1 3.2 5.5 5.6 7.7 7.8 3.2-3.7 5.5-9.5 5.5-13.8 0-8.2-5.5-15.9-16.7-16.5-20-.9-20.2 16.6-20 18.9.5 5.2 3.4 7.8 3.3 7.5zm-.4 6c-.5 1.8-7 3.7-10.2 6.9 4.8-1 7-.2 7.8 1.8.5 1.4-.2 3.4-.5 5.6 1.6-1.8 7-5.5 11-6.2-1-.3-3.4-.8-4.3-.8 2.9-3.4 9.3-4.5 12.8-3.7-2.2-.2-6.7 1.1-8.5 2.6 1.6.3 3 .6 4.3 1.1-2.1.8-4.8 3.4-5.8 6.1 7-5 13.1 5.2 7 8.2.8.2 2.7 0 3.5-.5-.3 1.1-1.9 3-3 3.4 2.9 0 7-1.9 8.2-4.6 0 0-1.8.6-2.6-.2s.3-4.3.3-4.3c-2.3 2.9-3.4-1.3-1.3-4.2-1-.3-3.5-.6-4.6-.5 3.2-1.1 10.4-1.8 11.2-.3.6 1.1-1 3.4-1 3.4 4-.5 8.3 1.1 6.7 5.1 2.9-1.4 5.5-5.9 4.8-10.4-.3 1-1.6 2.4-2.9 2.7.2-1.4-1-2.2-1.9-2.6 1.7-9.6-14.6-14.2-14.1-23.9-1 1.3-1.8 5-.8 7.1 2.7 3.2 8.7 6.7 10.1 12.2-2.6-6.4-15.1-11.4-14.6-20.2-1.6 1.6-2.6 7.8-1.3 11 2.4 1.4 4.5 3.8 4.8 6.1-2.2-5.1-11.4-6.1-13.9-12.2-.6 2.2-.3 5 1 6.7 0 0-2.2-.8-7-.6 1.7.6 5.1 3.5 4.8 5.2zm25.9 7.4c-2.7 0-3.5-2.1-4.2-4.3 3.3 1.3 4.2 4.3 4.2 4.3zm38.9 3.7l-1-.6c-1.1-1-2.9-1.4-4.7-1.4-2.9 0-5.8 1.3-7.5 3.4-.8.8-1.4 1.8-2.1 2.6v15.7c3.5 2.6 7.1-2.9 3-7.2 1.5.3 4.6 2.7 5.1 3.2 0 0 2.6-.5 5-.5 2.1 0 3.9.3 5.6 1.1V196c-1.1.5-2.2 1-2.7 1.4zM79.9 305.9c17.2-4.6 16.2-18 16.2-19.9 0-20.6-24.1-25-37-25H3l8.3 8.6v29.5H0l11.4 14.6V346L3 354.6c61.7 0 73.8 1.5 86.4-5.9 6.7-4 9.9-9.8 9.9-17.6 0-5.1 2.6-18.8-19.4-25.2zm-41.3-27.5c20 0 29.6-.8 29.6 9.1v3c0 12.1-19 8.8-29.6 8.8zm0 59.2V315c12.2 0 32.7-2.3 32.7 8.8v4.5h.2c0 11.2-12.5 9.3-32.9 9.3zm101.2-19.3l23.1.2v-.2l14.1-21.2h-37.2v-14.9h52.4l-14.1-21v-.2l-73.5.2 7.4 8.2v77.1l-7.4 8.2h81.2l14.1-21.2-60.1.2zm214.7-60.1c-73.9 0-77.5 99.3-.3 99.3 77.9 0 74.1-99.3.3-99.3zm-.3 77.5c-37.4 0-36.9-55.3.2-55.3 36.8.1 38.8 55.3-.2 55.3zm-91.3-8.3l44.1-66.2h-41.7l6.1 7.2-20.5 37.2h-.3l-21-37.2 6.4-7.2h-44.9l44.1 65.8.2 19.4-7.7 8.2h42.6l-7.2-8.2zm-28.4-151.3c1.6 1.3 2.9 2.4 2.9 6.6v38.8c0 4.2-.8 5.3-2.7 6.4-.1.1-7.5 4.5-7.9 4.6h35.1c10 0 17.4-1.5 26-8.6-.6-5 .2-9.5.8-12 0-.2-1.8 1.4-2.7 3.5 0-5.7 1.6-15.4 9.6-20.5-.1 0-3.7-.8-9 1.1 2-3.1 10-7.9 10.4-7.9-8.2-26-38-22.9-32.2-22.9-30.9 0-32.6.3-39.9-4 .1.8.5 8.2 9.6 14.9zm21.5 5.5c4.6 0 23.1-3.3 23.1 17.3 0 20.7-18.4 17.3-23.1 17.3zm228.9 79.6l7 8.3V312h-.3c-5.4-14.4-42.3-41.5-45.2-50.9h-31.6l7.4 8.5v76.9l-7.2 8.3h39l-7.4-8.2v-47.4h.3c3.7 10.6 44.5 42.9 48.5 55.6h21.3v-85.2l7.4-8.3zm-106.7-96.1c-32.2 0-32.8.2-39.9-4 .1.7.5 8.3 9.6 14.9 3.1 2 2.9 4.3 2.9 9.5 1.8-1.1 3.8-2.2 6.1-3-1.1 1.1-2.7 2.7-3.5 4.5 1-1.1 7.5-5.1 14.6-3.5-1.6.3-4 1.1-6.1 2.9.1 0 2.1-1.1 7.5-.3v-4.3c4.7 0 23.1-3.4 23.1 17.3 0 20.5-18.5 17.3-19.7 17.3 5.7 4.4 5.8 12 2.2 16.3h.3c33.4 0 36.7-27.3 36.7-34 0-3.8-1.1-32-33.8-33.6z"],dailymotion:[448,512,[],"f952","M298.93,267a48.4,48.4,0,0,0-24.36-6.21q-19.83,0-33.44,13.27t-13.61,33.42q0,21.16,13.28,34.6t33.43,13.44q20.5,0,34.11-13.78T322,307.47A47.13,47.13,0,0,0,315.9,284,44.13,44.13,0,0,0,298.93,267ZM0,32V480H448V32ZM374.71,405.26h-53.1V381.37h-.67q-15.79,26.2-55.78,26.2-27.56,0-48.89-13.1a88.29,88.29,0,0,1-32.94-35.77q-11.6-22.68-11.59-50.89,0-27.56,11.76-50.22a89.9,89.9,0,0,1,32.93-35.78q21.18-13.09,47.72-13.1a80.87,80.87,0,0,1,29.74,5.21q13.28,5.21,25,17V153l55.79-12.09Z"],dashcube:[448,512,[],"f210","M326.6 104H110.4c-51.1 0-91.2 43.3-91.2 93.5V427c0 50.5 40.1 85 91.2 85h227.2c51.1 0 91.2-34.5 91.2-85V0L326.6 104zM153.9 416.5c-17.7 0-32.4-15.1-32.4-32.8V240.8c0-17.7 14.7-32.5 32.4-32.5h140.7c17.7 0 32 14.8 32 32.5v123.5l51.1 52.3H153.9z"],delicious:[448,512,[],"f1a5","M446.5 68c-.4-1.5-.9-3-1.4-4.5-.9-2.5-2-4.8-3.3-7.1-1.4-2.4-3-4.8-4.7-6.9-2.1-2.5-4.4-4.8-6.9-6.8-1.1-.9-2.2-1.7-3.3-2.5-1.3-.9-2.6-1.7-4-2.4-1.8-1-3.6-1.8-5.5-2.5-1.7-.7-3.5-1.3-5.4-1.7-3.8-1-7.9-1.5-12-1.5H48C21.5 32 0 53.5 0 80v352c0 4.1.5 8.2 1.5 12 2 7.7 5.8 14.6 11 20.3 1 1.1 2.1 2.2 3.3 3.3 5.7 5.2 12.6 9 20.3 11 3.8 1 7.9 1.5 12 1.5h352c26.5 0 48-21.5 48-48V80c-.1-4.1-.6-8.2-1.6-12zM416 432c0 8.8-7.2 16-16 16H224V256H32V80c0-8.8 7.2-16 16-16h176v192h192z"],deploydog:[512,512,[],"f38e","M382.2 136h51.7v239.6h-51.7v-20.7c-19.8 24.8-52.8 24.1-73.8 14.7-26.2-11.7-44.3-38.1-44.3-71.8 0-29.8 14.8-57.9 43.3-70.8 20.2-9.1 52.7-10.6 74.8 12.9V136zm-64.7 161.8c0 18.2 13.6 33.5 33.2 33.5 19.8 0 33.2-16.4 33.2-32.9 0-17.1-13.7-33.2-33.2-33.2-19.6 0-33.2 16.4-33.2 32.6zM188.5 136h51.7v239.6h-51.7v-20.7c-19.8 24.8-52.8 24.1-73.8 14.7-26.2-11.7-44.3-38.1-44.3-71.8 0-29.8 14.8-57.9 43.3-70.8 20.2-9.1 52.7-10.6 74.8 12.9V136zm-64.7 161.8c0 18.2 13.6 33.5 33.2 33.5 19.8 0 33.2-16.4 33.2-32.9 0-17.1-13.7-33.2-33.2-33.2-19.7 0-33.2 16.4-33.2 32.6zM448 96c17.5 0 32 14.4 32 32v256c0 17.5-14.4 32-32 32H64c-17.5 0-32-14.4-32-32V128c0-17.5 14.4-32 32-32h384m0-32H64C28.8 64 0 92.8 0 128v256c0 35.2 28.8 64 64 64h384c35.2 0 64-28.8 64-64V128c0-35.2-28.8-64-64-64z"],deskpro:[480,512,[],"f38f","M205.9 512l31.1-38.4c12.3-.2 25.6-1.4 36.5-6.6 38.9-18.6 38.4-61.9 38.3-63.8-.1-5-.8-4.4-28.9-37.4H362c-.2 50.1-7.3 68.5-10.2 75.7-9.4 23.7-43.9 62.8-95.2 69.4-8.7 1.1-32.8 1.2-50.7 1.1zm200.4-167.7c38.6 0 58.5-13.6 73.7-30.9l-175.5-.3-17.4 31.3 119.2-.1zm-43.6-223.9v168.3h-73.5l-32.7 55.5H250c-52.3 0-58.1-56.5-58.3-58.9-1.2-13.2-21.3-11.6-20.1 1.8 1.4 15.8 8.8 40 26.4 57.1h-91c-25.5 0-110.8-26.8-107-114V16.9C0 .9 9.7.3 15 .1h82c.2 0 .3.1.5.1 4.3-.4 50.1-2.1 50.1 43.7 0 13.3 20.2 13.4 20.2 0 0-18.2-5.5-32.8-15.8-43.7h84.2c108.7-.4 126.5 79.4 126.5 120.2zm-132.5 56l64 29.3c13.3-45.5-42.2-71.7-64-29.3z"],dev:[448,512,[],"f6cc","M120.12 208.29c-3.88-2.9-7.77-4.35-11.65-4.35H91.03v104.47h17.45c3.88 0 7.77-1.45 11.65-4.35 3.88-2.9 5.82-7.25 5.82-13.06v-69.65c-.01-5.8-1.96-10.16-5.83-13.06zM404.1 32H43.9C19.7 32 .06 51.59 0 75.8v360.4C.06 460.41 19.7 480 43.9 480h360.2c24.21 0 43.84-19.59 43.9-43.8V75.8c-.06-24.21-19.7-43.8-43.9-43.8zM154.2 291.19c0 18.81-11.61 47.31-48.36 47.25h-46.4V172.98h47.38c35.44 0 47.36 28.46 47.37 47.28l.01 70.93zm100.68-88.66H201.6v38.42h32.57v29.57H201.6v38.41h53.29v29.57h-62.18c-11.16.29-20.44-8.53-20.72-19.69V193.7c-.27-11.15 8.56-20.41 19.71-20.69h63.19l-.01 29.52zm103.64 115.29c-13.2 30.75-36.85 24.63-47.44 0l-38.53-144.8h32.57l29.71 113.72 29.57-113.72h32.58l-38.46 144.8z"],deviantart:[320,512,[],"f1bd","M320 93.2l-98.2 179.1 7.4 9.5H320v127.7H159.1l-13.5 9.2-43.7 84c-.3 0-8.6 8.6-9.2 9.2H0v-93.2l93.2-179.4-7.4-9.2H0V102.5h156l13.5-9.2 43.7-84c.3 0 8.6-8.6 9.2-9.2H320v93.1z"],dhl:[640,512,[],"f790","M238 301.2h58.7L319 271h-58.7L238 301.2zM0 282.9v6.4h81.8l4.7-6.4H0zM172.9 271c-8.7 0-6-3.6-4.6-5.5 2.8-3.8 7.6-10.4 10.4-14.1 2.8-3.7 2.8-5.9-2.8-5.9h-51l-41.1 55.8h100.1c33.1 0 51.5-22.5 57.2-30.3h-68.2zm317.5-6.9l39.3-53.4h-62.2l-39.3 53.4h62.2zM95.3 271H0v6.4h90.6l4.7-6.4zm111-26.6c-2.8 3.8-7.5 10.4-10.3 14.2-1.4 2-4.1 5.5 4.6 5.5h45.6s7.3-10 13.5-18.4c8.4-11.4.7-35-29.2-35H112.6l-20.4 27.8h111.4c5.6 0 5.5 2.2 2.7 5.9zM0 301.2h73.1l4.7-6.4H0v6.4zm323 0h58.7L404 271h-58.7c-.1 0-22.3 30.2-22.3 30.2zm222 .1h95v-6.4h-90.3l-4.7 6.4zm22.3-30.3l-4.7 6.4H640V271h-72.7zm-13.5 18.3H640v-6.4h-81.5l-4.7 6.4zm-164.2-78.6l-22.5 30.6h-26.2l22.5-30.6h-58.7l-39.3 53.4H409l39.3-53.4h-58.7zm33.5 60.3s-4.3 5.9-6.4 8.7c-7.4 10-.9 21.6 23.2 21.6h94.3l22.3-30.3H423.1z"],diaspora:[512,512,[],"f791","M251.64 354.55c-1.4 0-88 119.9-88.7 119.9S76.34 414 76 413.25s86.6-125.7 86.6-127.4c0-2.2-129.6-44-137.6-47.1-1.3-.5 31.4-101.8 31.7-102.1.6-.7 144.4 47 145.5 47 .4 0 .9-.6 1-1.3.4-2 1-148.6 1.7-149.6.8-1.2 104.5-.7 105.1-.3 1.5 1 3.5 156.1 6.1 156.1 1.4 0 138.7-47 139.3-46.3.8.9 31.9 102.2 31.5 102.6-.9.9-140.2 47.1-140.6 48.8-.3 1.4 82.8 122.1 82.5 122.9s-85.5 63.5-86.3 63.5c-1-.2-89-125.5-90.9-125.5z"],digg:[512,512,[],"f1a6","M81.7 172.3H0v174.4h132.7V96h-51v76.3zm0 133.4H50.9v-92.3h30.8v92.3zm297.2-133.4v174.4h81.8v28.5h-81.8V416H512V172.3H378.9zm81.8 133.4h-30.8v-92.3h30.8v92.3zm-235.6 41h82.1v28.5h-82.1V416h133.3V172.3H225.1v174.4zm51.2-133.3h30.8v92.3h-30.8v-92.3zM153.3 96h51.3v51h-51.3V96zm0 76.3h51.3v174.4h-51.3V172.3z"],"digital-ocean":[512,512,[],"f391","M87 481.8h73.7v-73.6H87zM25.4 346.6v61.6H87v-61.6zm466.2-169.7c-23-74.2-82.4-133.3-156.6-156.6C164.9-32.8 8 93.7 8 255.9h95.8c0-101.8 101-180.5 208.1-141.7 39.7 14.3 71.5 46.1 85.8 85.7 39.1 107-39.7 207.8-141.4 208v.3h-.3V504c162.6 0 288.8-156.8 235.6-327.1zm-235.3 231v-95.3h-95.6v95.6H256v-.3z"],discord:[448,512,[],"f392","M297.216 243.2c0 15.616-11.52 28.416-26.112 28.416-14.336 0-26.112-12.8-26.112-28.416s11.52-28.416 26.112-28.416c14.592 0 26.112 12.8 26.112 28.416zm-119.552-28.416c-14.592 0-26.112 12.8-26.112 28.416s11.776 28.416 26.112 28.416c14.592 0 26.112-12.8 26.112-28.416.256-15.616-11.52-28.416-26.112-28.416zM448 52.736V512c-64.494-56.994-43.868-38.128-118.784-107.776l13.568 47.36H52.48C23.552 451.584 0 428.032 0 398.848V52.736C0 23.552 23.552 0 52.48 0h343.04C424.448 0 448 23.552 448 52.736zm-72.96 242.688c0-82.432-36.864-149.248-36.864-149.248-36.864-27.648-71.936-26.88-71.936-26.88l-3.584 4.096c43.52 13.312 63.744 32.512 63.744 32.512-60.811-33.329-132.244-33.335-191.232-7.424-9.472 4.352-15.104 7.424-15.104 7.424s21.248-20.224 67.328-33.536l-2.56-3.072s-35.072-.768-71.936 26.88c0 0-36.864 66.816-36.864 149.248 0 0 21.504 37.12 78.08 38.912 0 0 9.472-11.52 17.152-21.248-32.512-9.728-44.8-30.208-44.8-30.208 3.766 2.636 9.976 6.053 10.496 6.4 43.21 24.198 104.588 32.126 159.744 8.96 8.96-3.328 18.944-8.192 29.44-15.104 0 0-12.8 20.992-46.336 30.464 7.68 9.728 16.896 20.736 16.896 20.736 56.576-1.792 78.336-38.912 78.336-38.912z"],discourse:[448,512,[],"f393","M225.9 32C103.3 32 0 130.5 0 252.1 0 256 .1 480 .1 480l225.8-.2c122.7 0 222.1-102.3 222.1-223.9C448 134.3 348.6 32 225.9 32zM224 384c-19.4 0-37.9-4.3-54.4-12.1L88.5 392l22.9-75c-9.8-18.1-15.4-38.9-15.4-61 0-70.7 57.3-128 128-128s128 57.3 128 128-57.3 128-128 128z"],dochub:[416,512,[],"f394","M397.9 160H256V19.6L397.9 160zM304 192v130c0 66.8-36.5 100.1-113.3 100.1H96V84.8h94.7c12 0 23.1.8 33.1 2.5v-84C212.9 1.1 201.4 0 189.2 0H0v512h189.2C329.7 512 400 447.4 400 318.1V192h-96z"],docker:[640,512,[],"f395","M349.9 236.3h-66.1v-59.4h66.1v59.4zm0-204.3h-66.1v60.7h66.1V32zm78.2 144.8H362v59.4h66.1v-59.4zm-156.3-72.1h-66.1v60.1h66.1v-60.1zm78.1 0h-66.1v60.1h66.1v-60.1zm276.8 100c-14.4-9.7-47.6-13.2-73.1-8.4-3.3-24-16.7-44.9-41.1-63.7l-14-9.3-9.3 14c-18.4 27.8-23.4 73.6-3.7 103.8-8.7 4.7-25.8 11.1-48.4 10.7H2.4c-8.7 50.8 5.8 116.8 44 162.1 37.1 43.9 92.7 66.2 165.4 66.2 157.4 0 273.9-72.5 328.4-204.2 21.4.4 67.6.1 91.3-45.2 1.5-2.5 6.6-13.2 8.5-17.1l-13.3-8.9zm-511.1-27.9h-66v59.4h66.1v-59.4zm78.1 0h-66.1v59.4h66.1v-59.4zm78.1 0h-66.1v59.4h66.1v-59.4zm-78.1-72.1h-66.1v60.1h66.1v-60.1z"],draft2digital:[480,512,[],"f396","M480 398.1l-144-82.2v64.7h-91.3c30.8-35 81.8-95.9 111.8-149.3 35.2-62.6 16.1-123.4-12.8-153.3-4.4-4.6-62.2-62.9-166-41.2-59.1 12.4-89.4 43.4-104.3 67.3-13.1 20.9-17 39.8-18.2 47.7-5.5 33 19.4 67.1 56.7 67.1 31.7 0 57.3-25.7 57.3-57.4 0-27.1-19.7-52.1-48-56.8 1.8-7.3 17.7-21.1 26.3-24.7 41.1-17.3 78 5.2 83.3 33.5 8.3 44.3-37.1 90.4-69.7 127.6C84.5 328.1 18.3 396.8 0 415.9l336-.1V480zM369.9 371l47.1 27.2-47.1 27.2zM134.2 161.4c0 12.4-10 22.4-22.4 22.4s-22.4-10-22.4-22.4 10-22.4 22.4-22.4 22.4 10.1 22.4 22.4zM82.5 380.5c25.6-27.4 97.7-104.7 150.8-169.9 35.1-43.1 40.3-82.4 28.4-112.7-7.4-18.8-17.5-30.2-24.3-35.7 45.3 2.1 68 23.4 82.2 38.3 0 0 42.4 48.2 5.8 113.3-37 65.9-110.9 147.5-128.5 166.7z"],dribbble:[512,512,[],"f17d","M256 8C119.252 8 8 119.252 8 256s111.252 248 248 248 248-111.252 248-248S392.748 8 256 8zm163.97 114.366c29.503 36.046 47.369 81.957 47.835 131.955-6.984-1.477-77.018-15.682-147.502-6.818-5.752-14.041-11.181-26.393-18.617-41.614 78.321-31.977 113.818-77.482 118.284-83.523zM396.421 97.87c-3.81 5.427-35.697 48.286-111.021 76.519-34.712-63.776-73.185-116.168-79.04-124.008 67.176-16.193 137.966 1.27 190.061 47.489zm-230.48-33.25c5.585 7.659 43.438 60.116 78.537 122.509-99.087 26.313-186.36 25.934-195.834 25.809C62.38 147.205 106.678 92.573 165.941 64.62zM44.17 256.323c0-2.166.043-4.322.108-6.473 9.268.19 111.92 1.513 217.706-30.146 6.064 11.868 11.857 23.915 17.174 35.949-76.599 21.575-146.194 83.527-180.531 142.306C64.794 360.405 44.17 310.73 44.17 256.323zm81.807 167.113c22.127-45.233 82.178-103.622 167.579-132.756 29.74 77.283 42.039 142.053 45.189 160.638-68.112 29.013-150.015 21.053-212.768-27.882zm248.38 8.489c-2.171-12.886-13.446-74.897-41.152-151.033 66.38-10.626 124.7 6.768 131.947 9.055-9.442 58.941-43.273 109.844-90.795 141.978z"],"dribbble-square":[448,512,[],"f397","M90.2 228.2c8.9-42.4 37.4-77.7 75.7-95.7 3.6 4.9 28 38.8 50.7 79-64 17-120.3 16.8-126.4 16.7zM314.6 154c-33.6-29.8-79.3-41.1-122.6-30.6 3.8 5.1 28.6 38.9 51 80 48.6-18.3 69.1-45.9 71.6-49.4zM140.1 364c40.5 31.6 93.3 36.7 137.3 18-2-12-10-53.8-29.2-103.6-55.1 18.8-93.8 56.4-108.1 85.6zm98.8-108.2c-3.4-7.8-7.2-15.5-11.1-23.2C159.6 253 93.4 252.2 87.4 252c0 1.4-.1 2.8-.1 4.2 0 35.1 13.3 67.1 35.1 91.4 22.2-37.9 67.1-77.9 116.5-91.8zm34.9 16.3c17.9 49.1 25.1 89.1 26.5 97.4 30.7-20.7 52.5-53.6 58.6-91.6-4.6-1.5-42.3-12.7-85.1-5.8zm-20.3-48.4c4.8 9.8 8.3 17.8 12 26.8 45.5-5.7 90.7 3.4 95.2 4.4-.3-32.3-11.8-61.9-30.9-85.1-2.9 3.9-25.8 33.2-76.3 53.9zM448 80v352c0 26.5-21.5 48-48 48H48c-26.5 0-48-21.5-48-48V80c0-26.5 21.5-48 48-48h352c26.5 0 48 21.5 48 48zm-64 176c0-88.2-71.8-160-160-160S64 167.8 64 256s71.8 160 160 160 160-71.8 160-160z"],dropbox:[528,512,[],"f16b","M264.4 116.3l-132 84.3 132 84.3-132 84.3L0 284.1l132.3-84.3L0 116.3 132.3 32l132.1 84.3zM131.6 395.7l132-84.3 132 84.3-132 84.3-132-84.3zm132.8-111.6l132-84.3-132-83.6L395.7 32 528 116.3l-132.3 84.3L528 284.8l-132.3 84.3-131.3-85z"],drupal:[448,512,[],"f1a9","M319.5 114.7c-22.2-14-43.5-19.5-64.7-33.5-13-8.8-31.3-30-46.5-48.3-2.7 29.3-11.5 41.2-22 49.5-21.3 17-34.8 22.2-53.5 32.3C117 123 32 181.5 32 290.5 32 399.7 123.8 480 225.8 480 327.5 480 416 406 416 294c0-112.3-83-171-96.5-179.3zm2.5 325.6c-20.1 20.1-90.1 28.7-116.7 4.2-4.8-4.8.3-12 6.5-12 0 0 17 13.3 51.5 13.3 27 0 46-7.7 54.5-14 6.1-4.6 8.4 4.3 4.2 8.5zm-54.5-52.6c8.7-3.6 29-3.8 36.8 1.3 4.1 2.8 16.1 18.8 6.2 23.7-8.4 4.2-1.2-15.7-26.5-15.7-14.7 0-19.5 5.2-26.7 11-7 6-9.8 8-12.2 4.7-6-8.2 15.9-22.3 22.4-25zM360 405c-15.2-1-45.5-48.8-65-49.5-30.9-.9-104.1 80.7-161.3 42-38.8-26.6-14.6-104.8 51.8-105.2 49.5-.5 83.8 49 108.5 48.5 21.3-.3 61.8-41.8 81.8-41.8 48.7 0 23.3 109.3-15.8 106z"],dyalog:[416,512,[],"f399","M0 32v119.2h64V96h107.2C284.6 96 352 176.2 352 255.9 352 332 293.4 416 171.2 416H0v64h171.2C331.9 480 416 367.3 416 255.9c0-58.7-22.1-113.4-62.3-154.3C308.9 56 245.7 32 171.2 32H0z"],earlybirds:[480,512,[],"f39a","M313.2 47.5c1.2-13 21.3-14 36.6-8.7.9.3 26.2 9.7 19 15.2-27.9-7.4-56.4 18.2-55.6-6.5zm-201 6.9c30.7-8.1 62 20 61.1-7.1-1.3-14.2-23.4-15.3-40.2-9.6-1 .3-28.7 10.5-20.9 16.7zM319.4 160c-8.8 0-16 7.2-16 16s7.2 16 16 16 16-7.2 16-16-7.2-16-16-16zm-159.7 0c-8.8 0-16 7.2-16 16s7.2 16 16 16 16-7.2 16-16-7.2-16-16-16zm318.5 163.2c-9.9 24-40.7 11-63.9-1.2-13.5 69.1-58.1 111.4-126.3 124.2.3.9-2-.1 24 1 33.6 1.4 63.8-3.1 97.4-8-19.8-13.8-11.4-37.1-9.8-38.1 1.4-.9 14.7 1.7 21.6 11.5 8.6-12.5 28.4-14.8 30.2-13.6 1.6 1.1 6.6 20.9-6.9 34.6 4.7-.9 8.2-1.6 9.8-2.1 2.6-.8 17.7 11.3 3.1 13.3-14.3 2.3-22.6 5.1-47.1 10.8-45.9 10.7-85.9 11.8-117.7 12.8l1 11.6c3.8 18.1-23.4 24.3-27.6 6.2.8 17.9-27.1 21.8-28.4-1l-.5 5.3c-.7 18.4-28.4 17.9-28.3-.6-7.5 13.5-28.1 6.8-26.4-8.5l1.2-12.4c-36.7.9-59.7 3.1-61.8 3.1-20.9 0-20.9-31.6 0-31.6 2.4 0 27.7 1.3 63.2 2.8-61.1-15.5-103.7-55-114.9-118.2-25 12.8-57.5 26.8-68.2.8-10.5-25.4 21.5-42.6 66.8-73.4.7-6.6 1.6-13.3 2.7-19.8-14.4-19.6-11.6-36.3-16.1-60.4-16.8 2.4-23.2-9.1-23.6-23.1.3-7.3 2.1-14.9 2.4-15.4 1.1-1.8 10.1-2 12.7-2.6 6-31.7 50.6-33.2 90.9-34.5 19.7-21.8 45.2-41.5 80.9-48.3C203.3 29 215.2 8.5 216.2 8c1.7-.8 21.2 4.3 26.3 23.2 5.2-8.8 18.3-11.4 19.6-10.7 1.1.6 6.4 15-4.9 25.9 40.3 3.5 72.2 24.7 96 50.7 36.1 1.5 71.8 5.9 77.1 34 2.7.6 11.6.8 12.7 2.6.3.5 2.1 8.1 2.4 15.4-.5 13.9-6.8 25.4-23.6 23.1-3.2 17.3-2.7 32.9-8.7 47.7 2.4 11.7 4 23.8 4.8 36.4 37 25.4 70.3 42.5 60.3 66.9zM207.4 159.9c.9-44-37.9-42.2-78.6-40.3-21.7 1-38.9 1.9-45.5 13.9-11.4 20.9 5.9 92.9 23.2 101.2 9.8 4.7 73.4 7.9 86.3-7.1 8.2-9.4 15-49.4 14.6-67.7zm52 58.3c-4.3-12.4-6-30.1-15.3-32.7-2-.5-9-.5-11 0-10 2.8-10.8 22.1-17 37.2 15.4 0 19.3 9.7 23.7 9.7 4.3 0 6.3-11.3 19.6-14.2zm135.7-84.7c-6.6-12.1-24.8-12.9-46.5-13.9-40.2-1.9-78.2-3.8-77.3 40.3-.5 18.3 5 58.3 13.2 67.8 13 14.9 76.6 11.8 86.3 7.1 15.8-7.6 36.5-78.9 24.3-101.3z"],ebay:[640,512,[],"f4f4","M606 189.5l-54.8 109.9-54.9-109.9h-37.5l10.9 20.6c-11.5-19-35.9-26-63.3-26-31.8 0-67.9 8.7-71.5 43.1h33.7c1.4-13.8 15.7-21.8 35-21.8 26 0 41 9.6 41 33v3.4c-12.7 0-28 .1-41.7.4-42.4.9-69.6 10-76.7 34.4 1-5.2 1.5-10.6 1.5-16.2 0-52.1-39.7-76.2-75.4-76.2-21.3 0-43 5.5-58.7 24.2v-80.6h-32.1v169.5c0 10.3-.6 22.9-1.1 33.1h31.5c.7-6.3 1.1-12.9 1.1-19.5 13.6 16.6 35.4 24.9 58.7 24.9 36.9 0 64.9-21.9 73.3-54.2-.5 2.8-.7 5.8-.7 9 0 24.1 21.1 45 60.6 45 26.6 0 45.8-5.7 61.9-25.5 0 6.6.3 13.3 1.1 20.2h29.8c-.7-8.2-1-17.5-1-26.8v-65.6c0-9.3-1.7-17.2-4.8-23.8l61.5 116.1-28.5 54.1h35.9L640 189.5zM243.7 313.8c-29.6 0-50.2-21.5-50.2-53.8 0-32.4 20.6-53.8 50.2-53.8 29.8 0 50.2 21.4 50.2 53.8 0 32.3-20.4 53.8-50.2 53.8zm200.9-47.3c0 30-17.9 48.4-51.6 48.4-25.1 0-35-13.4-35-25.8 0-19.1 18.1-24.4 47.2-25.3 13.1-.5 27.6-.6 39.4-.6zm-411.9 1.6h128.8v-8.5c0-51.7-33.1-75.4-78.4-75.4-56.8 0-83 30.8-83 77.6 0 42.5 25.3 74 82.5 74 31.4 0 68-11.7 74.4-46.1h-33.1c-12 35.8-87.7 36.7-91.2-21.6zm95-21.4H33.3c6.9-56.6 92.1-54.7 94.4 0z"],edge:[512,512,[],"f282","M481.92,134.48C440.87,54.18,352.26,8,255.91,8,137.05,8,37.51,91.68,13.47,203.66c26-46.49,86.22-79.14,149.46-79.14,79.27,0,121.09,48.93,122.25,50.18,22,23.8,33,50.39,33,83.1,0,10.4-5.31,25.82-15.11,38.57-1.57,2-6.39,4.84-6.39,11,0,5.06,3.29,9.92,9.14,14,27.86,19.37,80.37,16.81,80.51,16.81A115.39,115.39,0,0,0,444.94,322a118.92,118.92,0,0,0,58.95-102.44C504.39,176.13,488.39,147.26,481.92,134.48ZM212.77,475.67a154.88,154.88,0,0,1-46.64-45c-32.94-47.42-34.24-95.6-20.1-136A155.5,155.5,0,0,1,203,215.75c59-45.2,94.84-5.65,99.06-1a80,80,0,0,0-4.89-10.14c-9.24-15.93-24-36.41-56.56-53.51-33.72-17.69-70.59-18.59-77.64-18.59-38.71,0-77.9,13-107.53,35.69C35.68,183.3,12.77,208.72,8.6,243c-1.08,12.31-2.75,62.8,23,118.27a248,248,0,0,0,248.3,141.61C241.78,496.26,214.05,476.24,212.77,475.67Zm250.72-98.33a7.76,7.76,0,0,0-7.92-.23,181.66,181.66,0,0,1-20.41,9.12,197.54,197.54,0,0,1-69.55,12.52c-91.67,0-171.52-63.06-171.52-144A61.12,61.12,0,0,1,200.61,228,168.72,168.72,0,0,0,161.85,278c-14.92,29.37-33,88.13,13.33,151.66,6.51,8.91,23,30,56,47.67,23.57,12.65,49,19.61,71.7,19.61,35.14,0,115.43-33.44,163-108.87A7.75,7.75,0,0,0,463.49,377.34Z"],elementor:[448,512,[],"f430","M425.6 32H22.4C10 32 0 42 0 54.4v403.2C0 470 10 480 22.4 480h403.2c12.4 0 22.4-10 22.4-22.4V54.4C448 42 438 32 425.6 32M164.3 355.5h-39.8v-199h39.8v199zm159.3 0H204.1v-39.8h119.5v39.8zm0-79.6H204.1v-39.8h119.5v39.8zm0-79.7H204.1v-39.8h119.5v39.8z"],ello:[496,512,[],"f5f1","M248 8C111.03 8 0 119.03 0 256s111.03 248 248 248 248-111.03 248-248S384.97 8 248 8zm143.84 285.2C375.31 358.51 315.79 404.8 248 404.8s-127.31-46.29-143.84-111.6c-1.65-7.44 2.48-15.71 9.92-17.36 7.44-1.65 15.71 2.48 17.36 9.92 14.05 52.91 62 90.11 116.56 90.11s102.51-37.2 116.56-90.11c1.65-7.44 9.92-12.4 17.36-9.92 7.44 1.65 12.4 9.92 9.92 17.36z"],ember:[640,512,[],"f423","M639.9 254.6c-1.1-10.7-10.7-6.8-10.7-6.8s-15.6 12.1-29.3 10.7c-13.7-1.3-9.4-32-9.4-32s3-28.1-5.1-30.4c-8.1-2.4-18 7.3-18 7.3s-12.4 13.7-18.3 31.2l-1.6.5s1.9-30.6-.3-37.6c-1.6-3.5-16.4-3.2-18.8 3s-14.2 49.2-15 67.2c0 0-23.1 19.6-43.3 22.8s-25-9.4-25-9.4 54.8-15.3 52.9-59.1-44.2-27.6-49-24c-4.6 3.5-29.4 18.4-36.6 59.7-.2 1.4-.7 7.5-.7 7.5s-21.2 14.2-33 18c0 0 33-55.6-7.3-80.9-11.4-6.8-21.3-.5-27.2 5.3 13.6-17.3 46.4-64.2 36.9-105.2-5.8-24.4-18-27.1-29.2-23.1-17 6.7-23.5 16.7-23.5 16.7s-22 32-27.1 79.5-12.6 105.1-12.6 105.1-10.5 10.2-20.2 10.7-5.4-28.7-5.4-28.7 7.5-44.6 7-52.1-1.1-11.6-9.9-14.2c-8.9-2.7-18.5 8.6-18.5 8.6s-25.5 38.7-27.7 44.6l-1.3 2.4-1.3-1.6s18-52.7.8-53.5-28.5 18.8-28.5 18.8-19.6 32.8-20.4 36.5l-1.3-1.6s8.1-38.2 6.4-47.6c-1.6-9.4-10.5-7.5-10.5-7.5s-11.3-1.3-14.2 5.9-13.7 55.3-15 70.7c0 0-28.2 20.2-46.8 20.4-18.5.3-16.7-11.8-16.7-11.8s68-23.3 49.4-69.2c-8.3-11.8-18-15.5-31.7-15.3-13.7.3-30.3 8.6-41.3 33.3-5.3 11.8-6.8 23-7.8 31.5 0 0-12.3 2.4-18.8-2.9s-10 0-10 0-11.2 14-.1 18.3 28.1 6.1 28.1 6.1c1.6 7.5 6.2 19.5 19.6 29.7 20.2 15.3 58.8-1.3 58.8-1.3l15.9-8.8s.5 14.6 12.1 16.7 16.4 1 36.5-47.9c11.8-25 12.6-23.6 12.6-23.6l1.3-.3s-9.1 46.8-5.6 59.7C187.7 319.4 203 318 203 318s8.3 2.4 15-21.2 19.6-49.9 19.6-49.9h1.6s-5.6 48.1 3 63.7 30.9 5.3 30.9 5.3 15.6-7.8 18-10.2c0 0 18.5 15.8 44.6 12.9 58.3-11.5 79.1-25.9 79.1-25.9s10 24.4 41.1 26.7c35.5 2.7 54.8-18.6 54.8-18.6s-.3 13.5 12.1 18.6 20.7-22.8 20.7-22.8l20.7-57.2h1.9s1.1 37.3 21.5 43.2 47-13.7 47-13.7 6.4-3.5 5.3-14.3zm-578 5.3c.8-32 21.8-45.9 29-39 7.3 7 4.6 22-9.1 31.4-13.7 9.5-19.9 7.6-19.9 7.6zm272.8-123.8s19.1-49.7 23.6-25.5-40 96.2-40 96.2c.5-16.2 16.4-70.7 16.4-70.7zm22.8 138.4c-12.6 33-43.3 19.6-43.3 19.6s-3.5-11.8 6.4-44.9 33.3-20.2 33.3-20.2 16.2 12.4 3.6 45.5zm84.6-14.6s-3-10.5 8.1-30.6c11-20.2 19.6-9.1 19.6-9.1s9.4 10.2-1.3 25.5-26.4 14.2-26.4 14.2z"],empire:[496,512,[],"f1d1","M287.6 54.2c-10.8-2.2-22.1-3.3-33.5-3.6V32.4c78.1 2.2 146.1 44 184.6 106.6l-15.8 9.1c-6.1-9.7-12.7-18.8-20.2-27.1l-18 15.5c-26-29.6-61.4-50.7-101.9-58.4l4.8-23.9zM53.4 322.4l23-7.7c-6.4-18.3-10-38.2-10-58.7s3.3-40.4 9.7-58.7l-22.7-7.7c3.6-10.8 8.3-21.3 13.6-31l-15.8-9.1C34 181 24.1 217.5 24.1 256s10 75 27.1 106.6l15.8-9.1c-5.3-10-9.7-20.3-13.6-31.1zM213.1 434c-40.4-8-75.8-29.1-101.9-58.7l-18 15.8c-7.5-8.6-14.4-17.7-20.2-27.4l-16 9.4c38.5 62.3 106.8 104.3 184.9 106.6v-18.3c-11.3-.3-22.7-1.7-33.5-3.6l4.7-23.8zM93.3 120.9l18 15.5c26-29.6 61.4-50.7 101.9-58.4l-4.7-23.8c10.8-2.2 22.1-3.3 33.5-3.6V32.4C163.9 34.6 95.9 76.4 57.4 139l15.8 9.1c6-9.7 12.6-18.9 20.1-27.2zm309.4 270.2l-18-15.8c-26 29.6-61.4 50.7-101.9 58.7l4.7 23.8c-10.8 1.9-22.1 3.3-33.5 3.6v18.3c78.1-2.2 146.4-44.3 184.9-106.6l-16.1-9.4c-5.7 9.7-12.6 18.8-20.1 27.4zM496 256c0 137-111 248-248 248S0 393 0 256 111 8 248 8s248 111 248 248zm-12.2 0c0-130.1-105.7-235.8-235.8-235.8S12.2 125.9 12.2 256 117.9 491.8 248 491.8 483.8 386.1 483.8 256zm-39-106.6l-15.8 9.1c5.3 9.7 10 20.2 13.6 31l-22.7 7.7c6.4 18.3 9.7 38.2 9.7 58.7s-3.6 40.4-10 58.7l23 7.7c-3.9 10.8-8.3 21-13.6 31l15.8 9.1C462 331 471.9 294.5 471.9 256s-9.9-75-27.1-106.6zm-183 177.7c16.3-3.3 30.4-11.6 40.7-23.5l51.2 44.8c11.9-13.6 21.3-29.3 27.1-46.8l-64.2-22.1c2.5-7.5 3.9-15.2 3.9-23.5s-1.4-16.1-3.9-23.5l64.5-22.1c-6.1-17.4-15.5-33.2-27.4-46.8l-51.2 44.8c-10.2-11.9-24.4-20.5-40.7-23.8l13.3-66.4c-8.6-1.9-17.7-2.8-27.1-2.8-9.4 0-18.5.8-27.1 2.8l13.3 66.4c-16.3 3.3-30.4 11.9-40.7 23.8l-51.2-44.8c-11.9 13.6-21.3 29.3-27.4 46.8l64.5 22.1c-2.5 7.5-3.9 15.2-3.9 23.5s1.4 16.1 3.9 23.5l-64.2 22.1c5.8 17.4 15.2 33.2 27.1 46.8l51.2-44.8c10.2 11.9 24.4 20.2 40.7 23.5l-13.3 66.7c8.6 1.7 17.7 2.8 27.1 2.8 9.4 0 18.5-1.1 27.1-2.8l-13.3-66.7z"],envira:[448,512,[],"f299","M0 32c477.6 0 366.6 317.3 367.1 366.3L448 480h-26l-70.4-71.2c-39 4.2-124.4 34.5-214.4-37C47 300.3 52 214.7 0 32zm79.7 46c-49.7-23.5-5.2 9.2-5.2 9.2 45.2 31.2 66 73.7 90.2 119.9 31.5 60.2 79 139.7 144.2 167.7 65 28 34.2 12.5 6-8.5-28.2-21.2-68.2-87-91-130.2-31.7-60-61-118.6-144.2-158.1z"],erlang:[640,512,[],"f39d","M87.2 53.5H0v405h100.4c-49.7-52.6-78.8-125.3-78.7-212.1-.1-76.7 24-142.7 65.5-192.9zm238.2 9.7c-45.9.1-85.1 33.5-89.2 83.2h169.9c-1.1-49.7-34.5-83.1-80.7-83.2zm230.7-9.6h.3l-.1-.1zm.3 0c31.4 42.7 48.7 97.5 46.2 162.7.5 6 .5 11.7 0 24.1H230.2c-.2 109.7 38.9 194.9 138.6 195.3 68.5-.3 118-51 151.9-106.1l96.4 48.2c-17.4 30.9-36.5 57.8-57.9 80.8H640v-405z"],ethereum:[320,512,[],"f42e","M311.9 260.8L160 353.6 8 260.8 160 0l151.9 260.8zM160 383.4L8 290.6 160 512l152-221.4-152 92.8z"],etsy:[384,512,[],"f2d7","M384 348c-1.75 10.75-13.75 110-15.5 132-117.879-4.299-219.895-4.743-368.5 0v-25.5c45.457-8.948 60.627-8.019 61-35.25 1.793-72.322 3.524-244.143 0-322-1.029-28.46-12.13-26.765-61-36v-25.5c73.886 2.358 255.933 8.551 362.999-3.75-3.5 38.25-7.75 126.5-7.75 126.5H332C320.947 115.665 313.241 68 277.25 68h-137c-10.25 0-10.75 3.5-10.75 9.75V241.5c58 .5 88.5-2.5 88.5-2.5 29.77-.951 27.56-8.502 40.75-65.251h25.75c-4.407 101.351-3.91 61.829-1.75 160.25H257c-9.155-40.086-9.065-61.045-39.501-61.5 0 0-21.5-2-88-2v139c0 26 14.25 38.25 44.25 38.25H263c63.636 0 66.564-24.996 98.751-99.75H384z"],evernote:[384,512,[],"f839","M120.82 132.21c1.6 22.31-17.55 21.59-21.61 21.59-68.93 0-73.64-1-83.58 3.34-.56.22-.74 0-.37-.37L123.79 46.45c.38-.37.6-.22.38.37-4.35 9.99-3.35 15.09-3.35 85.39zm79 308c-14.68-37.08 13-76.93 52.52-76.62 17.49 0 22.6 23.21 7.95 31.42-6.19 3.3-24.95 1.74-25.14 19.2-.05 17.09 19.67 25 31.2 24.89A45.64 45.64 0 0 0 312 393.45v-.08c0-11.63-7.79-47.22-47.54-55.34-7.72-1.54-65-6.35-68.35-50.52-3.74 16.93-17.4 63.49-43.11 69.09-8.74 1.94-69.68 7.64-112.92-36.77 0 0-18.57-15.23-28.23-57.95-3.38-15.75-9.28-39.7-11.14-62 0-18 11.14-30.45 25.07-32.2 81 0 90 2.32 101-7.8 9.82-9.24 7.8-15.5 7.8-102.78 1-8.3 7.79-30.81 53.41-24.14 6 .86 31.91 4.18 37.48 30.64l64.26 11.15c20.43 3.71 70.94 7 80.6 57.94 22.66 121.09 8.91 238.46 7.8 238.46C362.15 485.53 267.06 480 267.06 480c-18.95-.23-54.25-9.4-67.27-39.83zm80.94-204.84c-1 1.92-2.2 6 .85 7 14.09 4.93 39.75 6.84 45.88 5.53 3.11-.25 3.05-4.43 2.48-6.65-3.53-21.85-40.83-26.5-49.24-5.92z"],expeditedssl:[496,512,[],"f23e","M248 43.4C130.6 43.4 35.4 138.6 35.4 256S130.6 468.6 248 468.6 460.6 373.4 460.6 256 365.4 43.4 248 43.4zm-97.4 132.9c0-53.7 43.7-97.4 97.4-97.4s97.4 43.7 97.4 97.4v26.6c0 5-3.9 8.9-8.9 8.9h-17.7c-5 0-8.9-3.9-8.9-8.9v-26.6c0-82.1-124-82.1-124 0v26.6c0 5-3.9 8.9-8.9 8.9h-17.7c-5 0-8.9-3.9-8.9-8.9v-26.6zM389.7 380c0 9.7-8 17.7-17.7 17.7H124c-9.7 0-17.7-8-17.7-17.7V238.3c0-9.7 8-17.7 17.7-17.7h248c9.7 0 17.7 8 17.7 17.7V380zm-248-137.3v132.9c0 2.5-1.9 4.4-4.4 4.4h-8.9c-2.5 0-4.4-1.9-4.4-4.4V242.7c0-2.5 1.9-4.4 4.4-4.4h8.9c2.5 0 4.4 1.9 4.4 4.4zm141.7 48.7c0 13-7.2 24.4-17.7 30.4v31.6c0 5-3.9 8.9-8.9 8.9h-17.7c-5 0-8.9-3.9-8.9-8.9v-31.6c-10.5-6.1-17.7-17.4-17.7-30.4 0-19.7 15.8-35.4 35.4-35.4s35.5 15.8 35.5 35.4zM248 8C111 8 0 119 0 256s111 248 248 248 248-111 248-248S385 8 248 8zm0 478.3C121 486.3 17.7 383 17.7 256S121 25.7 248 25.7 478.3 129 478.3 256 375 486.3 248 486.3z"],facebook:[512,512,[],"f09a","M504 256C504 119 393 8 256 8S8 119 8 256c0 123.78 90.69 226.38 209.25 245V327.69h-63V256h63v-54.64c0-62.15 37-96.48 93.67-96.48 27.14 0 55.52 4.84 55.52 4.84v61h-31.28c-30.8 0-40.41 19.12-40.41 38.73V256h68.78l-11 71.69h-57.78V501C413.31 482.38 504 379.78 504 256z"],"facebook-f":[320,512,[],"f39e","M279.14 288l14.22-92.66h-88.91v-60.13c0-25.35 12.42-50.06 52.24-50.06h40.42V6.26S260.43 0 225.36 0c-73.22 0-121.08 44.38-121.08 124.72v70.62H22.89V288h81.39v224h100.17V288z"],"facebook-messenger":[512,512,[],"f39f","M256.55 8C116.52 8 8 110.34 8 248.57c0 72.3 29.71 134.78 78.07 177.94 8.35 7.51 6.63 11.86 8.05 58.23A19.92 19.92 0 0 0 122 502.31c52.91-23.3 53.59-25.14 62.56-22.7C337.85 521.8 504 423.7 504 248.57 504 110.34 396.59 8 256.55 8zm149.24 185.13l-73 115.57a37.37 37.37 0 0 1-53.91 9.93l-58.08-43.47a15 15 0 0 0-18 0l-78.37 59.44c-10.46 7.93-24.16-4.6-17.11-15.67l73-115.57a37.36 37.36 0 0 1 53.91-9.93l58.06 43.46a15 15 0 0 0 18 0l78.41-59.38c10.44-7.98 24.14 4.54 17.09 15.62z"],"facebook-square":[448,512,[],"f082","M400 32H48A48 48 0 0 0 0 80v352a48 48 0 0 0 48 48h137.25V327.69h-63V256h63v-54.64c0-62.15 37-96.48 93.67-96.48 27.14 0 55.52 4.84 55.52 4.84v61h-31.27c-30.81 0-40.42 19.12-40.42 38.73V256h68.78l-11 71.69h-57.78V480H400a48 48 0 0 0 48-48V80a48 48 0 0 0-48-48z"],"fantasy-flight-games":[512,512,[],"f6dc","M256 32.86L32.86 256 256 479.14 479.14 256 256 32.86zM88.34 255.83c1.96-2 11.92-12.3 96.49-97.48 41.45-41.75 86.19-43.77 119.77-18.69 24.63 18.4 62.06 58.9 62.15 59 .68.74 1.07 2.86.58 3.38-11.27 11.84-22.68 23.54-33.5 34.69-34.21-32.31-40.52-38.24-48.51-43.95-17.77-12.69-41.4-10.13-56.98 5.1-2.17 2.13-1.79 3.43.12 5.35 2.94 2.95 28.1 28.33 35.09 35.78-11.95 11.6-23.66 22.97-35.69 34.66-12.02-12.54-24.48-25.53-36.54-38.11-21.39 21.09-41.69 41.11-61.85 60.99a42569.01 42569.01 0 0 1-41.13-40.72zm234.82 101.6c-35.49 35.43-78.09 38.14-106.99 20.47-22.08-13.5-39.38-32.08-72.93-66.84 12.05-12.37 23.79-24.42 35.37-36.31 33.02 31.91 37.06 36.01 44.68 42.09 18.48 14.74 42.52 13.67 59.32-1.8 3.68-3.39 3.69-3.64.14-7.24-10.59-10.73-21.19-21.44-31.77-32.18-1.32-1.34-3.03-2.48-.8-4.69 10.79-10.71 21.48-21.52 32.21-32.29.26-.26.65-.38 1.91-1.07 12.37 12.87 24.92 25.92 37.25 38.75 21.01-20.73 41.24-40.68 61.25-60.42 13.68 13.4 27.13 26.58 40.86 40.03-20.17 20.86-81.68 82.71-100.5 101.5zM256 0L0 256l256 256 256-256L256 0zM16 256L256 16l240 240-240 240L16 256z"],fedex:[640,512,[],"f797","M586 284.5l53.3-59.9h-62.4l-21.7 24.8-22.5-24.8H414v-16h56.1v-48.1H318.9V236h-.5c-9.6-11-21.5-14.8-35.4-14.8-28.4 0-49.8 19.4-57.3 44.9-18-59.4-97.4-57.6-121.9-14v-24.2H49v-26.2h60v-41.1H0V345h49v-77.5h48.9c-1.5 5.7-2.3 11.8-2.3 18.2 0 73.1 102.6 91.4 130.2 23.7h-42c-14.7 20.9-45.8 8.9-45.8-14.6h85.5c3.7 30.5 27.4 56.9 60.1 56.9 14.1 0 27-6.9 34.9-18.6h.5V345h212.2l22.1-25 22.3 25H640l-54-60.5zm-446.7-16.6c6.1-26.3 41.7-25.6 46.5 0h-46.5zm153.4 48.9c-34.6 0-34-62.8 0-62.8 32.6 0 34.5 62.8 0 62.8zm167.8 19.1h-94.4V169.4h95v30.2H405v33.9h55.5v28.1h-56.1v44.7h56.1v29.6zm-45.9-39.8v-24.4h56.1v-44l50.7 57-50.7 57v-45.6h-56.1zm138.6 10.3l-26.1 29.5H489l45.6-51.2-45.6-51.2h39.7l26.6 29.3 25.6-29.3h38.5l-45.4 51 46 51.4h-40.5l-26.3-29.5z"],fedora:[448,512,[],"f798","M225 32C101.3 31.7.8 131.7.4 255.4L0 425.7a53.6 53.6 0 0 0 53.6 53.9l170.2.4c123.7.3 224.3-99.7 224.6-223.4S348.7 32.3 225 32zm169.8 157.2L333 126.6c2.3-4.7 3.8-9.2 3.8-14.3v-1.6l55.2 56.1a101 101 0 0 1 2.8 22.4zM331 94.3a106.06 106.06 0 0 1 58.5 63.8l-54.3-54.6a26.48 26.48 0 0 0-4.2-9.2zM118.1 247.2a49.66 49.66 0 0 0-7.7 11.4l-8.5-8.5a85.78 85.78 0 0 1 16.2-2.9zM97 251.4l11.8 11.9-.9 8a34.74 34.74 0 0 0 2.4 12.5l-27-27.2a80.6 80.6 0 0 1 13.7-5.2zm-18.2 7.4l38.2 38.4a53.17 53.17 0 0 0-14.1 4.7L67.6 266a107 107 0 0 1 11.2-7.2zm-15.2 9.8l35.3 35.5a67.25 67.25 0 0 0-10.5 8.5L53.5 278a64.33 64.33 0 0 1 10.1-9.4zm-13.3 12.3l34.9 35a56.84 56.84 0 0 0-7.7 11.4l-35.8-35.9c2.8-3.8 5.7-7.2 8.6-10.5zm-11 14.3l36.4 36.6a48.29 48.29 0 0 0-3.6 15.2l-39.5-39.8a99.81 99.81 0 0 1 6.7-12zm-8.8 16.3l41.3 41.8a63.47 63.47 0 0 0 6.7 26.2L25.8 326c1.4-4.9 2.9-9.6 4.7-14.5zm-7.9 43l61.9 62.2a31.24 31.24 0 0 0-3.6 14.3v1.1l-55.4-55.7a88.27 88.27 0 0 1-2.9-21.9zm5.3 30.7l54.3 54.6a28.44 28.44 0 0 0 4.2 9.2 106.32 106.32 0 0 1-58.5-63.8zm-5.3-37a80.69 80.69 0 0 1 2.1-17l72.2 72.5a37.59 37.59 0 0 0-9.9 8.7zm253.3-51.8l-42.6-.1-.1 56c-.2 69.3-64.4 115.8-125.7 102.9-5.7 0-19.9-8.7-19.9-24.2a24.89 24.89 0 0 1 24.5-24.6c6.3 0 6.3 1.6 15.7 1.6a55.91 55.91 0 0 0 56.1-55.9l.1-47c0-4.5-4.5-9-8.9-9l-33.6-.1c-32.6-.1-32.5-49.4.1-49.3l42.6.1.1-56a105.18 105.18 0 0 1 105.6-105 86.35 86.35 0 0 1 20.2 2.3c11.2 1.8 19.9 11.9 19.9 24 0 15.5-14.9 27.8-30.3 23.9-27.4-5.9-65.9 14.4-66 54.9l-.1 47a8.94 8.94 0 0 0 8.9 9l33.6.1c32.5.2 32.4 49.5-.2 49.4zm23.5-.3a35.58 35.58 0 0 0 7.6-11.4l8.5 8.5a102 102 0 0 1-16.1 2.9zm21-4.2L308.6 280l.9-8.1a34.74 34.74 0 0 0-2.4-12.5l27 27.2a74.89 74.89 0 0 1-13.7 5.3zm18-7.4l-38-38.4c4.9-1.1 9.6-2.4 13.7-4.7l36.2 35.9c-3.8 2.5-7.9 5-11.9 7.2zm15.5-9.8l-35.3-35.5a61.06 61.06 0 0 0 10.5-8.5l34.9 35a124.56 124.56 0 0 1-10.1 9zm13.2-12.3l-34.9-35a63.18 63.18 0 0 0 7.7-11.4l35.8 35.9a130.28 130.28 0 0 1-8.6 10.5zm11-14.3l-36.4-36.6a48.29 48.29 0 0 0 3.6-15.2l39.5 39.8a87.72 87.72 0 0 1-6.7 12zm13.5-30.9a140.63 140.63 0 0 1-4.7 14.3L345.6 190a58.19 58.19 0 0 0-7.1-26.2zm1-5.6l-71.9-72.1a32 32 0 0 0 9.9-9.2l64.3 64.7a90.93 90.93 0 0 1-2.3 16.6z"],figma:[384,512,[],"f799","M277 170.7A85.35 85.35 0 0 0 277 0H106.3a85.3 85.3 0 0 0 0 170.6 85.35 85.35 0 0 0 0 170.7 85.35 85.35 0 1 0 85.3 85.4v-256zm0 0a85.3 85.3 0 1 0 85.3 85.3 85.31 85.31 0 0 0-85.3-85.3z"],firefox:[512,512,[],"f269","M503.52,241.48c-.12-1.56-.24-3.12-.24-4.68v-.12l-.36-4.68v-.12a245.86,245.86,0,0,0-7.32-41.15c0-.12,0-.12-.12-.24l-1.08-4c-.12-.24-.12-.48-.24-.6-.36-1.2-.72-2.52-1.08-3.72-.12-.24-.12-.6-.24-.84-.36-1.2-.72-2.4-1.08-3.48-.12-.36-.24-.6-.36-1-.36-1.2-.72-2.28-1.2-3.48l-.36-1.08c-.36-1.08-.84-2.28-1.2-3.36a8.27,8.27,0,0,0-.36-1c-.48-1.08-.84-2.28-1.32-3.36-.12-.24-.24-.6-.36-.84-.48-1.2-1-2.28-1.44-3.48,0-.12-.12-.24-.12-.36-1.56-3.84-3.24-7.68-5-11.4l-.36-.72c-.48-1-.84-1.8-1.32-2.64-.24-.48-.48-1.08-.72-1.56-.36-.84-.84-1.56-1.2-2.4-.36-.6-.6-1.2-1-1.8s-.84-1.44-1.2-2.28c-.36-.6-.72-1.32-1.08-1.92s-.84-1.44-1.2-2.16a18.07,18.07,0,0,0-1.2-2c-.36-.72-.84-1.32-1.2-2s-.84-1.32-1.2-2-.84-1.32-1.2-1.92-.84-1.44-1.32-2.16a15.63,15.63,0,0,0-1.2-1.8L463.2,119a15.63,15.63,0,0,0-1.2-1.8c-.48-.72-1.08-1.56-1.56-2.28-.36-.48-.72-1.08-1.08-1.56l-1.8-2.52c-.36-.48-.6-.84-1-1.32-1-1.32-1.8-2.52-2.76-3.72a248.76,248.76,0,0,0-23.51-26.64A186.82,186.82,0,0,0,412,62.46c-4-3.48-8.16-6.72-12.48-9.84a162.49,162.49,0,0,0-24.6-15.12c-2.4-1.32-4.8-2.52-7.2-3.72a254,254,0,0,0-55.43-19.56c-1.92-.36-3.84-.84-5.64-1.2h-.12c-1-.12-1.8-.36-2.76-.48a236.35,236.35,0,0,0-38-4H255.14a234.62,234.62,0,0,0-45.48,5c-33.59,7.08-63.23,21.24-82.91,39-1.08,1-1.92,1.68-2.4,2.16l-.48.48H124l-.12.12.12-.12a.12.12,0,0,0,.12-.12l-.12.12a.42.42,0,0,1,.24-.12c14.64-8.76,34.92-16,49.44-19.56l5.88-1.44c.36-.12.84-.12,1.2-.24,1.68-.36,3.36-.72,5.16-1.08.24,0,.6-.12.84-.12C250.94,20.94,319.34,40.14,367,85.61a171.49,171.49,0,0,1,26.88,32.76c30.36,49.2,27.48,111.11,3.84,147.59-34.44,53-111.35,71.27-159,24.84a84.19,84.19,0,0,1-25.56-59,74.05,74.05,0,0,1,6.24-31c1.68-3.84,13.08-25.67,18.24-24.59-13.08-2.76-37.55,2.64-54.71,28.19-15.36,22.92-14.52,58.2-5,83.28a132.85,132.85,0,0,1-12.12-39.24c-12.24-82.55,43.31-153,94.31-170.51-27.48-24-96.47-22.31-147.71,15.36-29.88,22-51.23,53.16-62.51,90.36,1.68-20.88,9.6-52.08,25.8-83.88-17.16,8.88-39,37-49.8,62.88-15.6,37.43-21,82.19-16.08,124.79.36,3.24.72,6.36,1.08,9.6,19.92,117.11,122,206.38,244.78,206.38C392.77,503.42,504,392.19,504,255,503.88,250.48,503.76,245.92,503.52,241.48Z"],"firefox-browser":[512,512,[],"f907","M189.37,152.86Zm-58.74-29.37C130.79,123.5,130.71,123.5,130.63,123.49Zm351.42,45.35c-10.61-25.5-32.08-53-48.94-61.73,13.72,26.89,21.67,53.88,24.7,74,0,0,0,.14.05.41-27.58-68.75-74.35-96.47-112.55-156.83-1.93-3.05-3.86-6.11-5.74-9.33-1-1.65-1.86-3.34-2.69-5.05A44.88,44.88,0,0,1,333.24.69a.63.63,0,0,0-.55-.66.9.9,0,0,0-.46,0l-.12.07-.18.1.1-.14c-54.23,31.77-76.72,87.38-82.5,122.78a130,130,0,0,0-48.33,12.33,6.25,6.25,0,0,0-3.09,7.75,6.13,6.13,0,0,0,7.79,3.79l.52-.21a117.84,117.84,0,0,1,42.11-11l1.42-.1c2-.12,4-.2,6-.22A122.61,122.61,0,0,1,291,140c.67.2,1.32.42,2,.63,1.89.57,3.76,1.2,5.62,1.87,1.36.5,2.71,1,4.05,1.58,1.09.44,2.18.88,3.25,1.35q2.52,1.13,5,2.35c.75.37,1.5.74,2.25,1.13q2.4,1.26,4.74,2.63,1.51.87,3,1.8a124.89,124.89,0,0,1,42.66,44.13c-13-9.15-36.35-18.19-58.82-14.28,87.74,43.86,64.18,194.9-57.39,189.2a108.43,108.43,0,0,1-31.74-6.12c-2.42-.91-4.8-1.89-7.16-2.93-1.38-.63-2.76-1.27-4.12-2C174.5,346,149.9,316.92,146.83,281.59c0,0,11.25-41.95,80.62-41.95,7.5,0,28.93-20.92,29.33-27-.09-2-42.54-18.87-59.09-35.18-8.85-8.71-13.05-12.91-16.77-16.06a69.58,69.58,0,0,0-6.31-4.77A113.05,113.05,0,0,1,173.92,97c-25.06,11.41-44.55,29.45-58.71,45.37h-.12c-9.67-12.25-9-52.65-8.43-61.08-.12-.53-7.22,3.68-8.15,4.31a178.54,178.54,0,0,0-23.84,20.43A214,214,0,0,0,51.9,133.36l0,0a.08.08,0,0,1,0,0,205.84,205.84,0,0,0-32.73,73.9c-.06.27-2.33,10.21-4,22.48q-.42,2.87-.78,5.74c-.57,3.69-1,7.71-1.44,14,0,.24,0,.48-.05.72-.18,2.71-.34,5.41-.49,8.12,0,.41,0,.82,0,1.24,0,134.7,109.21,243.89,243.92,243.89,120.64,0,220.82-87.58,240.43-202.62.41-3.12.74-6.26,1.11-9.41,4.85-41.83-.54-85.79-15.82-122.55Z"],"first-order":[448,512,[],"f2b0","M12.9 229.2c.1-.1.2-.3.3-.4 0 .1 0 .3-.1.4h-.2zM224 96.6c-7.1 0-14.6.6-21.4 1.7l3.7 67.4-22-64c-14.3 3.7-27.7 9.4-40 16.6l29.4 61.4-45.1-50.9c-11.4 8.9-21.7 19.1-30.6 30.9l50.6 45.4-61.1-29.7c-7.1 12.3-12.9 25.7-16.6 40l64.3 22.6-68-4c-.9 7.1-1.4 14.6-1.4 22s.6 14.6 1.4 21.7l67.7-4-64 22.6c3.7 14.3 9.4 27.7 16.6 40.3l61.1-29.7L97.7 352c8.9 11.7 19.1 22.3 30.9 30.9l44.9-50.9-29.5 61.4c12.3 7.4 25.7 13.1 40 16.9l22.3-64.6-4 68c7.1 1.1 14.6 1.7 21.7 1.7 7.4 0 14.6-.6 21.7-1.7l-4-68.6 22.6 65.1c14.3-4 27.7-9.4 40-16.9L274.9 332l44.9 50.9c11.7-8.9 22-19.1 30.6-30.9l-50.6-45.1 61.1 29.4c7.1-12.3 12.9-25.7 16.6-40.3l-64-22.3 67.4 4c1.1-7.1 1.4-14.3 1.4-21.7s-.3-14.9-1.4-22l-67.7 4 64-22.3c-3.7-14.3-9.1-28-16.6-40.3l-60.9 29.7 50.6-45.4c-8.9-11.7-19.1-22-30.6-30.9l-45.1 50.9 29.4-61.1c-12.3-7.4-25.7-13.1-40-16.9L241.7 166l4-67.7c-7.1-1.2-14.3-1.7-21.7-1.7zM443.4 128v256L224 512 4.6 384V128L224 0l219.4 128zm-17.1 10.3L224 20.9 21.7 138.3v235.1L224 491.1l202.3-117.7V138.3zM224 37.1l187.7 109.4v218.9L224 474.9 36.3 365.4V146.6L224 37.1zm0 50.9c-92.3 0-166.9 75.1-166.9 168 0 92.6 74.6 167.7 166.9 167.7 92 0 166.9-75.1 166.9-167.7 0-92.9-74.9-168-166.9-168z"],"first-order-alt":[496,512,[],"f50a","M248 8C111.03 8 0 119.03 0 256s111.03 248 248 248 248-111.03 248-248S384.97 8 248 8zm0 488.21C115.34 496.21 7.79 388.66 7.79 256S115.34 15.79 248 15.79 488.21 123.34 488.21 256 380.66 496.21 248 496.21zm0-459.92C126.66 36.29 28.29 134.66 28.29 256S126.66 475.71 248 475.71 467.71 377.34 467.71 256 369.34 36.29 248 36.29zm0 431.22c-116.81 0-211.51-94.69-211.51-211.51S131.19 44.49 248 44.49 459.51 139.19 459.51 256 364.81 467.51 248 467.51zm186.23-162.98a191.613 191.613 0 0 1-20.13 48.69l-74.13-35.88 61.48 54.82a193.515 193.515 0 0 1-37.2 37.29l-54.8-61.57 35.88 74.27a190.944 190.944 0 0 1-48.63 20.23l-27.29-78.47 4.79 82.93c-8.61 1.18-17.4 1.8-26.33 1.8s-17.72-.62-26.33-1.8l4.76-82.46-27.15 78.03a191.365 191.365 0 0 1-48.65-20.2l35.93-74.34-54.87 61.64a193.85 193.85 0 0 1-37.22-37.28l61.59-54.9-74.26 35.93a191.638 191.638 0 0 1-20.14-48.69l77.84-27.11-82.23 4.76c-1.16-8.57-1.78-17.32-1.78-26.21 0-9 .63-17.84 1.82-26.51l82.38 4.77-77.94-27.16a191.726 191.726 0 0 1 20.23-48.67l74.22 35.92-61.52-54.86a193.85 193.85 0 0 1 37.28-37.22l54.76 61.53-35.83-74.17a191.49 191.49 0 0 1 48.65-20.13l26.87 77.25-4.71-81.61c8.61-1.18 17.39-1.8 26.32-1.8s17.71.62 26.32 1.8l-4.74 82.16 27.05-77.76c17.27 4.5 33.6 11.35 48.63 20.17l-35.82 74.12 54.72-61.47a193.13 193.13 0 0 1 37.24 37.23l-61.45 54.77 74.12-35.86a191.515 191.515 0 0 1 20.2 48.65l-77.81 27.1 82.24-4.75c1.19 8.66 1.82 17.5 1.82 26.49 0 8.88-.61 17.63-1.78 26.19l-82.12-4.75 77.72 27.09z"],firstdraft:[384,512,[],"f3a1","M384 192h-64v128H192v128H0v-25.6h166.4v-128h128v-128H384V192zm-25.6 38.4v128h-128v128H64V512h192V384h128V230.4h-25.6zm25.6 192h-89.6V512H320v-64h64v-25.6zM0 0v384h128V256h128V128h128V0H0z"],flickr:[448,512,[],"f16e","M400 32H48C21.5 32 0 53.5 0 80v352c0 26.5 21.5 48 48 48h352c26.5 0 48-21.5 48-48V80c0-26.5-21.5-48-48-48zM144.5 319c-35.1 0-63.5-28.4-63.5-63.5s28.4-63.5 63.5-63.5 63.5 28.4 63.5 63.5-28.4 63.5-63.5 63.5zm159 0c-35.1 0-63.5-28.4-63.5-63.5s28.4-63.5 63.5-63.5 63.5 28.4 63.5 63.5-28.4 63.5-63.5 63.5z"],flipboard:[448,512,[],"f44d","M0 32v448h448V32H0zm358.4 179.2h-89.6v89.6h-89.6v89.6H89.6V121.6h268.8v89.6z"],fly:[384,512,[],"f417","M197.8 427.8c12.9 11.7 33.7 33.3 33.2 50.7 0 .8-.1 1.6-.1 2.5-1.8 19.8-18.8 31.1-39.1 31-25-.1-39.9-16.8-38.7-35.8 1-16.2 20.5-36.7 32.4-47.6 2.3-2.1 2.7-2.7 5.6-3.6 3.4 0 3.9.3 6.7 2.8zM331.9 67.3c-16.3-25.7-38.6-40.6-63.3-52.1C243.1 4.5 214-.2 192 0c-44.1 0-71.2 13.2-81.1 17.3C57.3 45.2 26.5 87.2 28 158.6c7.1 82.2 97 176 155.8 233.8 1.7 1.6 4.5 4.5 6.2 5.1l3.3.1c2.1-.7 1.8-.5 3.5-2.1 52.3-49.2 140.7-145.8 155.9-215.7 7-39.2 3.1-72.5-20.8-112.5zM186.8 351.9c-28-51.1-65.2-130.7-69.3-189-3.4-47.5 11.4-131.2 69.3-136.7v325.7zM328.7 180c-16.4 56.8-77.3 128-118.9 170.3C237.6 298.4 275 217 277 158.4c1.6-45.9-9.8-105.8-48-131.4 88.8 18.3 115.5 98.1 99.7 153z"],"font-awesome":[448,512,[],"f2b4","M397.8 32H50.2C22.7 32 0 54.7 0 82.2v347.6C0 457.3 22.7 480 50.2 480h347.6c27.5 0 50.2-22.7 50.2-50.2V82.2c0-27.5-22.7-50.2-50.2-50.2zm-45.4 284.3c0 4.2-3.6 6-7.8 7.8-16.7 7.2-34.6 13.7-53.8 13.7-26.9 0-39.4-16.7-71.7-16.7-23.3 0-47.8 8.4-67.5 17.3-1.2.6-2.4.6-3.6 1.2V385c0 1.8 0 3.6-.6 4.8v1.2c-2.4 8.4-10.2 14.3-19.1 14.3-11.3 0-20.3-9-20.3-20.3V166.4c-7.8-6-13.1-15.5-13.1-26.3 0-18.5 14.9-33.5 33.5-33.5 18.5 0 33.5 14.9 33.5 33.5 0 10.8-4.8 20.3-13.1 26.3v18.5c1.8-.6 3.6-1.2 5.4-2.4 18.5-7.8 40.6-14.3 61.5-14.3 22.7 0 40.6 6 60.9 13.7 4.2 1.8 8.4 2.4 13.1 2.4 22.7 0 47.8-16.1 53.8-16.1 4.8 0 9 3.6 9 7.8v140.3z"],"font-awesome-alt":[448,512,[],"f35c","M339.3 171.2c-6 0-29.9 15.5-52.6 15.5-4.2 0-8.4-.6-12.5-2.4-19.7-7.8-37-13.7-59.1-13.7-20.3 0-41.8 6.6-59.7 13.7-1.8.6-3.6 1.2-4.8 1.8v-17.9c7.8-6 12.5-14.9 12.5-25.7 0-17.9-14.3-32.3-32.3-32.3s-32.3 14.3-32.3 32.3c0 10.2 4.8 19.7 12.5 25.7v212.1c0 10.8 9 19.7 19.7 19.7 9 0 16.1-6 18.5-13.7V385c.6-1.8.6-3 .6-4.8V336c1.2 0 2.4-.6 3-1.2 19.7-8.4 43-16.7 65.7-16.7 31.1 0 43 16.1 69.3 16.1 18.5 0 36.4-6.6 52-13.7 4.2-1.8 7.2-3.6 7.2-7.8V178.3c1.8-4.1-2.3-7.1-7.7-7.1zM397.8 32H50.2C22.7 32 0 54.7 0 82.2v347.6C0 457.3 22.7 480 50.2 480h347.6c27.5 0 50.2-22.7 50.2-50.2V82.2c0-27.5-22.7-50.2-50.2-50.2zm14.3 397.7c0 7.8-6.6 14.3-14.3 14.3H50.2c-7.8 0-14.3-6.6-14.3-14.3V82.2c0-7.8 6.6-14.3 14.3-14.3h347.6v-.1c7.8 0 14.3 6.6 14.3 14.3z"],"font-awesome-flag":[448,512,[],"f425","M444.373 359.424c0 7.168-6.144 10.24-13.312 13.312-28.672 12.288-59.392 23.552-92.16 23.552-46.08 0-67.584-28.672-122.88-28.672-39.936 0-81.92 14.336-115.712 29.696-2.048 1.024-4.096 1.024-6.144 2.048v77.824c0 21.405-16.122 34.816-33.792 34.816-19.456 0-34.816-15.36-34.816-34.816V102.4C12.245 92.16 3.029 75.776 3.029 57.344 3.029 25.6 28.629 0 60.373 0s57.344 25.6 57.344 57.344c0 18.432-8.192 34.816-22.528 45.056v31.744c4.124-1.374 58.768-28.672 114.688-28.672 65.27 0 97.676 27.648 126.976 27.648 38.912 0 81.92-27.648 92.16-27.648 8.192 0 15.36 6.144 15.36 13.312v240.64z"],"font-awesome-logo-full":[3992,512,["Font Awesome"],"f4e6","M454.6 0H57.4C25.9 0 0 25.9 0 57.4v397.3C0 486.1 25.9 512 57.4 512h397.3c31.4 0 57.4-25.9 57.4-57.4V57.4C512 25.9 486.1 0 454.6 0zm-58.9 324.9c0 4.8-4.1 6.9-8.9 8.9-19.2 8.1-39.7 15.7-61.5 15.7-40.5 0-68.7-44.8-163.2 2.5v51.8c0 30.3-45.7 30.2-45.7 0v-250c-9-7-15-17.9-15-30.3 0-21 17.1-38.2 38.2-38.2 21 0 38.2 17.1 38.2 38.2 0 12.2-5.8 23.2-14.9 30.2v21c37.1-12 65.5-34.4 146.1-3.4 26.6 11.4 68.7-15.7 76.5-15.7 5.5 0 10.3 4.1 10.3 8.9v160.4zm432.9-174.2h-137v70.1H825c39.8 0 40.4 62.2 0 62.2H691.6v105.6c0 45.5-70.7 46.4-70.7 0V128.3c0-22 18-39.8 39.8-39.8h167.8c39.6 0 40.5 62.2.1 62.2zm191.1 23.4c-169.3 0-169.1 252.4 0 252.4 169.9 0 169.9-252.4 0-252.4zm0 196.1c-81.6 0-82.1-139.8 0-139.8 82.5 0 82.4 139.8 0 139.8zm372.4 53.4c-17.5 0-31.4-13.9-31.4-31.4v-117c0-62.4-72.6-52.5-99.1-16.4v133.4c0 41.5-63.3 41.8-63.3 0V208c0-40 63.1-41.6 63.1 0v3.4c43.3-51.6 162.4-60.4 162.4 39.3v141.5c.3 30.4-31.5 31.4-31.7 31.4zm179.7 2.9c-44.3 0-68.3-22.9-68.3-65.8V235.2H1488c-35.6 0-36.7-55.3 0-55.3h15.5v-37.3c0-41.3 63.8-42.1 63.8 0v37.5h24.9c35.4 0 35.7 55.3 0 55.3h-24.9v108.5c0 29.6 26.1 26.3 27.4 26.3 31.4 0 52.6 56.3-22.9 56.3zM1992 123c-19.5-50.2-95.5-50-114.5 0-107.3 275.7-99.5 252.7-99.5 262.8 0 42.8 58.3 51.2 72.1 14.4l13.5-35.9H2006l13 35.9c14.2 37.7 72.1 27.2 72.1-14.4 0-10.1 5.3 6.8-99.1-262.8zm-108.9 179.1l51.7-142.9 51.8 142.9h-103.5zm591.3-85.6l-53.7 176.3c-12.4 41.2-72 41-84 0l-42.3-135.9-42.3 135.9c-12.4 40.9-72 41.2-84.5 0l-54.2-176.3c-12.5-39.4 49.8-56.1 60.2-16.9L2213 342l45.3-139.5c10.9-32.7 59.6-34.7 71.2 0l45.3 139.5 39.3-142.4c10.3-38.3 72.6-23.8 60.3 16.9zm275.4 75.1c0-42.4-33.9-117.5-119.5-117.5-73.2 0-124.4 56.3-124.4 126 0 77.2 55.3 126.4 128.5 126.4 31.7 0 93-11.5 93-39.8 0-18.3-21.1-31.5-39.3-22.4-49.4 26.2-109 8.4-115.9-43.8h148.3c16.3 0 29.3-13.4 29.3-28.9zM2571 277.7c9.5-73.4 113.9-68.6 118.6 0H2571zm316.7 148.8c-31.4 0-81.6-10.5-96.6-31.9-12.4-17 2.5-39.8 21.8-39.8 16.3 0 36.8 22.9 77.7 22.9 27.4 0 40.4-11 40.4-25.8 0-39.8-142.9-7.4-142.9-102 0-40.4 35.3-75.7 98.6-75.7 31.4 0 74.1 9.9 87.6 29.4 10.8 14.8-1.4 36.2-20.9 36.2-15.1 0-26.7-17.3-66.2-17.3-22.9 0-37.8 10.5-37.8 23.8 0 35.9 142.4 6 142.4 103.1-.1 43.7-37.4 77.1-104.1 77.1zm266.8-252.4c-169.3 0-169.1 252.4 0 252.4 170.1 0 169.6-252.4 0-252.4zm0 196.1c-81.8 0-82-139.8 0-139.8 82.5 0 82.4 139.8 0 139.8zm476.9 22V268.7c0-53.8-61.4-45.8-85.7-10.5v134c0 41.3-63.8 42.1-63.8 0V268.7c0-52.1-59.5-47.4-85.7-10.1v133.6c0 41.5-63.3 41.8-63.3 0V208c0-40 63.1-41.6 63.1 0v3.4c9.9-14.4 41.8-37.3 78.6-37.3 35.3 0 57.7 16.4 66.7 43.8 13.9-21.8 45.8-43.8 82.6-43.8 44.3 0 70.7 23.4 70.7 72.7v145.3c.5 17.3-13.5 31.4-31.9 31.4 3.5.1-31.3 1.1-31.3-31.3zM3992 291.6c0-42.4-32.4-117.5-117.9-117.5-73.2 0-127.5 56.3-127.5 126 0 77.2 58.3 126.4 131.6 126.4 31.7 0 91.5-11.5 91.5-39.8 0-18.3-21.1-31.5-39.3-22.4-49.4 26.2-110.5 8.4-117.5-43.8h149.8c16.3 0 29.1-13.4 29.3-28.9zm-180.5-13.9c9.7-74.4 115.9-68.3 120.1 0h-120.1z"],fonticons:[448,512,[],"f280","M0 32v448h448V32zm187 140.9c-18.4 0-19 9.9-19 27.4v23.3c0 2.4-3.5 4.4-.6 4.4h67.4l-11.1 37.3H168v112.9c0 5.8-2 6.7 3.2 7.3l43.5 4.1v25.1H84V389l21.3-2c5.2-.6 6.7-2.3 6.7-7.9V267.7c0-2.3-2.9-2.3-5.8-2.3H84V228h28v-21c0-49.6 26.5-70 77.3-70 34.1 0 64.7 8.2 64.7 52.8l-50.7 6.1c.3-18.7-4.4-23-16.3-23zm74.3 241.8v-25.1l20.4-2.6c5.2-.6 7.6-1.7 7.6-7.3V271.8c0-4.1-2.9-6.7-6.7-7.9l-24.2-6.4 6.7-29.5h80.2v151.7c0 5.8-2.6 6.4 2.9 7.3l15.7 2.6v25.1zm80.8-255.5l9 33.2-7.3 7.3-31.2-16.6-31.2 16.6-7.3-7.3 9-33.2-21.8-24.2 3.5-9.6h27.7l15.5-28h9.3l15.5 28h27.7l3.5 9.6z"],"fonticons-fi":[384,512,[],"f3a2","M114.4 224h92.4l-15.2 51.2h-76.4V433c0 8-2.8 9.2 4.4 10l59.6 5.6V483H0v-35.2l29.2-2.8c7.2-.8 9.2-3.2 9.2-10.8V278.4c0-3.2-4-3.2-8-3.2H0V224h38.4v-28.8c0-68 36.4-96 106-96 46.8 0 88.8 11.2 88.8 72.4l-69.6 8.4c.4-25.6-6-31.6-22.4-31.6-25.2 0-26 13.6-26 37.6v32c0 3.2-4.8 6-.8 6zM384 483H243.2v-34.4l28-3.6c7.2-.8 10.4-2.4 10.4-10V287c0-5.6-4-9.2-9.2-10.8l-33.2-8.8 9.2-40.4h110v208c0 8-3.6 8.8 4 10l21.6 3.6V483zm-30-347.2l12.4 45.6-10 10-42.8-22.8-42.8 22.8-10-10 12.4-45.6-30-36.4 4.8-10h38L307.2 51H320l21.2 38.4h38l4.8 13.2-30 33.2z"],"fort-awesome":[512,512,[],"f286","M489.2 287.9h-27.4c-2.6 0-4.6 2-4.6 4.6v32h-36.6V146.2c0-2.6-2-4.6-4.6-4.6h-27.4c-2.6 0-4.6 2-4.6 4.6v32h-36.6v-32c0-2.6-2-4.6-4.6-4.6h-27.4c-2.6 0-4.6 2-4.6 4.6v32h-36.6v-32c0-6-8-4.6-11.7-4.6v-38c8.3-2 17.1-3.4 25.7-3.4 10.9 0 20.9 4.3 31.4 4.3 4.6 0 27.7-1.1 27.7-8v-60c0-2.6-2-4.6-4.6-4.6-5.1 0-15.1 4.3-24 4.3-9.7 0-20.9-4.3-32.6-4.3-8 0-16 1.1-23.7 2.9v-4.9c5.4-2.6 9.1-8.3 9.1-14.3 0-20.7-31.4-20.8-31.4 0 0 6 3.7 11.7 9.1 14.3v111.7c-3.7 0-11.7-1.4-11.7 4.6v32h-36.6v-32c0-2.6-2-4.6-4.6-4.6h-27.4c-2.6 0-4.6 2-4.6 4.6v32H128v-32c0-2.6-2-4.6-4.6-4.6H96c-2.6 0-4.6 2-4.6 4.6v178.3H54.8v-32c0-2.6-2-4.6-4.6-4.6H22.8c-2.6 0-4.6 2-4.6 4.6V512h182.9v-96c0-72.6 109.7-72.6 109.7 0v96h182.9V292.5c.1-2.6-1.9-4.6-4.5-4.6zm-288.1-4.5c0 2.6-2 4.6-4.6 4.6h-27.4c-2.6 0-4.6-2-4.6-4.6v-64c0-2.6 2-4.6 4.6-4.6h27.4c2.6 0 4.6 2 4.6 4.6v64zm146.4 0c0 2.6-2 4.6-4.6 4.6h-27.4c-2.6 0-4.6-2-4.6-4.6v-64c0-2.6 2-4.6 4.6-4.6h27.4c2.6 0 4.6 2 4.6 4.6v64z"],"fort-awesome-alt":[512,512,[],"f3a3","M208 237.4h-22.2c-2.1 0-3.7 1.6-3.7 3.7v51.7c0 2.1 1.6 3.7 3.7 3.7H208c2.1 0 3.7-1.6 3.7-3.7v-51.7c0-2.1-1.6-3.7-3.7-3.7zm118.2 0H304c-2.1 0-3.7 1.6-3.7 3.7v51.7c0 2.1 1.6 3.7 3.7 3.7h22.2c2.1 0 3.7-1.6 3.7-3.7v-51.7c-.1-2.1-1.7-3.7-3.7-3.7zm132-125.1c-2.3-3.2-4.6-6.4-7.1-9.5-9.8-12.5-20.8-24-32.8-34.4-4.5-3.9-9.1-7.6-13.9-11.2-1.6-1.2-3.2-2.3-4.8-3.5C372 34.1 340.3 20 306 13c-16.2-3.3-32.9-5-50-5s-33.9 1.7-50 5c-34.3 7.1-66 21.2-93.3 40.8-1.6 1.1-3.2 2.3-4.8 3.5-4.8 3.6-9.4 7.3-13.9 11.2-3 2.6-5.9 5.3-8.8 8s-5.7 5.5-8.4 8.4c-5.5 5.7-10.7 11.8-15.6 18-2.4 3.1-4.8 6.3-7.1 9.5C25.2 153 8.3 202.5 8.3 256c0 2 .1 4 .1 6 .1.7.1 1.3.1 2 .1 1.3.1 2.7.2 4 0 .8.1 1.5.1 2.3 0 1.3.1 2.5.2 3.7.1.8.1 1.6.2 2.4.1 1.1.2 2.3.3 3.5 0 .8.1 1.6.2 2.4.1 1.2.3 2.4.4 3.6.1.8.2 1.5.3 2.3.1 1.3.3 2.6.5 3.9.1.6.2 1.3.3 1.9l.9 5.7c.1.6.2 1.1.3 1.7.3 1.3.5 2.7.8 4 .2.8.3 1.6.5 2.4.2 1 .5 2.1.7 3.2.2.9.4 1.7.6 2.6.2 1 .4 2 .7 3 .2.9.5 1.8.7 2.7.3 1 .5 1.9.8 2.9.3.9.5 1.8.8 2.7.2.9.5 1.9.8 2.8s.5 1.8.8 2.7c.3 1 .6 1.9.9 2.8.6 1.6 1.1 3.3 1.7 4.9.4 1 .7 1.9 1 2.8.3 1 .7 2 1.1 3 .3.8.6 1.5.9 2.3l1.2 3c.3.7.6 1.5.9 2.2.4 1 .9 2 1.3 3l.9 2.1c.5 1 .9 2 1.4 3 .3.7.6 1.3.9 2 .5 1 1 2.1 1.5 3.1.2.6.5 1.1.8 1.7.6 1.1 1.1 2.2 1.7 3.3.1.2.2.3.3.5 2.2 4.1 4.4 8.2 6.8 12.2.2.4.5.8.7 1.2.7 1.1 1.3 2.2 2 3.3.3.5.6.9.9 1.4.6 1.1 1.3 2.1 2 3.2.3.5.6.9.9 1.4.7 1.1 1.4 2.1 2.1 3.2.2.4.5.8.8 1.2.7 1.1 1.5 2.2 2.3 3.3.2.2.3.5.5.7 37.5 51.7 94.4 88.5 160 99.4.9.1 1.7.3 2.6.4 1 .2 2.1.4 3.1.5s1.9.3 2.8.4c1 .2 2 .3 3 .4.9.1 1.9.2 2.9.3s1.9.2 2.9.3 2.1.2 3.1.3c.9.1 1.8.1 2.7.2 1.1.1 2.3.1 3.4.2.8 0 1.7.1 2.5.1 1.3 0 2.6.1 3.9.1.7.1 1.4.1 2.1.1 2 .1 4 .1 6 .1s4-.1 6-.1c.7 0 1.4-.1 2.1-.1 1.3 0 2.6 0 3.9-.1.8 0 1.7-.1 2.5-.1 1.1-.1 2.3-.1 3.4-.2.9 0 1.8-.1 2.7-.2 1-.1 2.1-.2 3.1-.3s1.9-.2 2.9-.3c.9-.1 1.9-.2 2.9-.3s2-.3 3-.4 1.9-.3 2.8-.4c1-.2 2.1-.3 3.1-.5.9-.1 1.7-.3 2.6-.4 65.6-11 122.5-47.7 160.1-102.4.2-.2.3-.5.5-.7.8-1.1 1.5-2.2 2.3-3.3.2-.4.5-.8.8-1.2.7-1.1 1.4-2.1 2.1-3.2.3-.5.6-.9.9-1.4.6-1.1 1.3-2.1 2-3.2.3-.5.6-.9.9-1.4.7-1.1 1.3-2.2 2-3.3.2-.4.5-.8.7-1.2 2.4-4 4.6-8.1 6.8-12.2.1-.2.2-.3.3-.5.6-1.1 1.1-2.2 1.7-3.3.2-.6.5-1.1.8-1.7.5-1 1-2.1 1.5-3.1.3-.7.6-1.3.9-2 .5-1 1-2 1.4-3l.9-2.1c.5-1 .9-2 1.3-3 .3-.7.6-1.5.9-2.2l1.2-3c.3-.8.6-1.5.9-2.3.4-1 .7-2 1.1-3s.7-1.9 1-2.8c.6-1.6 1.2-3.3 1.7-4.9.3-1 .6-1.9.9-2.8s.5-1.8.8-2.7c.2-.9.5-1.9.8-2.8s.6-1.8.8-2.7c.3-1 .5-1.9.8-2.9.2-.9.5-1.8.7-2.7.2-1 .5-2 .7-3 .2-.9.4-1.7.6-2.6.2-1 .5-2.1.7-3.2.2-.8.3-1.6.5-2.4.3-1.3.6-2.7.8-4 .1-.6.2-1.1.3-1.7l.9-5.7c.1-.6.2-1.3.3-1.9.1-1.3.3-2.6.5-3.9.1-.8.2-1.5.3-2.3.1-1.2.3-2.4.4-3.6 0-.8.1-1.6.2-2.4.1-1.1.2-2.3.3-3.5.1-.8.1-1.6.2-2.4.1 1.7.1.5.2-.7 0-.8.1-1.5.1-2.3.1-1.3.2-2.7.2-4 .1-.7.1-1.3.1-2 .1-2 .1-4 .1-6 0-53.5-16.9-103-45.8-143.7zM448 371.5c-9.4 15.5-20.6 29.9-33.6 42.9-20.6 20.6-44.5 36.7-71.2 48-13.9 5.8-28.2 10.3-42.9 13.2v-75.8c0-58.6-88.6-58.6-88.6 0v75.8c-14.7-2.9-29-7.3-42.9-13.2-26.7-11.3-50.6-27.4-71.2-48-13-13-24.2-27.4-33.6-42.9v-71.3c0-2.1 1.6-3.7 3.7-3.7h22.1c2.1 0 3.7 1.6 3.7 3.7V326h29.6V182c0-2.1 1.6-3.7 3.7-3.7h22.1c2.1 0 3.7 1.6 3.7 3.7v25.9h29.5V182c0-2.1 1.6-3.7 3.7-3.7H208c2.1 0 3.7 1.6 3.7 3.7v25.9h29.5V182c0-4.8 6.5-3.7 9.5-3.7V88.1c-4.4-2-7.4-6.7-7.4-11.5 0-16.8 25.4-16.8 25.4 0 0 4.8-3 9.4-7.4 11.5V92c6.3-1.4 12.7-2.3 19.2-2.3 9.4 0 18.4 3.5 26.3 3.5 7.2 0 15.2-3.5 19.4-3.5 2.1 0 3.7 1.6 3.7 3.7v48.4c0 5.6-18.7 6.5-22.4 6.5-8.6 0-16.6-3.5-25.4-3.5-7 0-14.1 1.2-20.8 2.8v30.7c3 0 9.5-1.1 9.5 3.7v25.9h29.5V182c0-2.1 1.6-3.7 3.7-3.7h22.2c2.1 0 3.7 1.6 3.7 3.7v25.9h29.5V182c0-2.1 1.6-3.7 3.7-3.7h22.1c2.1 0 3.7 1.6 3.7 3.7v144h29.5v-25.8c0-2.1 1.6-3.7 3.7-3.7h22.2c2.1 0 3.7 1.6 3.7 3.7z"],forumbee:[448,512,[],"f211","M5.8 309.7C2 292.7 0 275.5 0 258.3 0 135 99.8 35 223.1 35c16.6 0 33.3 2 49.3 5.5C149 87.5 51.9 186 5.8 309.7zm392.9-189.2C385 103 369 87.8 350.9 75.2c-149.6 44.3-266.3 162.1-309.7 312 12.5 18.1 28 35.6 45.2 49 43.1-151.3 161.2-271.7 312.3-315.7zm15.8 252.7c15.2-25.1 25.4-53.7 29.5-82.8-79.4 42.9-145 110.6-187.6 190.3 30-4.4 58.9-15.3 84.6-31.3 35 13.1 70.9 24.3 107 33.6-9.3-36.5-20.4-74.5-33.5-109.8zm29.7-145.5c-2.6-19.5-7.9-38.7-15.8-56.8C290.5 216.7 182 327.5 137.1 466c18.1 7.6 37 12.5 56.6 15.2C240 367.1 330.5 274.4 444.2 227.7z"],foursquare:[368,512,[],"f180","M323.1 3H49.9C12.4 3 0 31.3 0 49.1v433.8c0 20.3 12.1 27.7 18.2 30.1 6.2 2.5 22.8 4.6 32.9-7.1C180 356.5 182.2 354 182.2 354c3.1-3.4 3.4-3.1 6.8-3.1h83.4c35.1 0 40.6-25.2 44.3-39.7l48.6-243C373.8 25.8 363.1 3 323.1 3zm-16.3 73.8l-11.4 59.7c-1.2 6.5-9.5 13.2-16.9 13.2H172.1c-12 0-20.6 8.3-20.6 20.3v13c0 12 8.6 20.6 20.6 20.6h90.4c8.3 0 16.6 9.2 14.8 18.2-1.8 8.9-10.5 53.8-11.4 58.8-.9 4.9-6.8 13.5-16.9 13.5h-73.5c-13.5 0-17.2 1.8-26.5 12.6 0 0-8.9 11.4-89.5 108.3-.9.9-1.8.6-1.8-.3V75.9c0-7.7 6.8-16.6 16.6-16.6h219c8.2 0 15.6 7.7 13.5 17.5z"],"free-code-camp":[576,512,[],"f2c5","M97.22,96.21c10.36-10.65,16-17.12,16-21.9,0-2.76-1.92-5.51-3.83-7.42A14.81,14.81,0,0,0,101,64.05c-8.48,0-20.92,8.79-35.84,25.69C23.68,137,2.51,182.81,3.37,250.34s17.47,117,54.06,161.87C76.22,435.86,90.62,448,100.9,448a13.55,13.55,0,0,0,8.37-3.84c1.91-2.76,3.81-5.63,3.81-8.38,0-5.63-3.86-12.2-13.2-20.55-44.45-42.33-67.32-97-67.48-165C32.25,188.8,54,137.83,97.22,96.21ZM239.47,420.07c.58.37.91.55.91.55Zm93.79.55.17-.13C333.24,420.62,333.17,420.67,333.26,420.62Zm3.13-158.18c-16.24-4.15,50.41-82.89-68.05-177.17,0,0,15.54,49.38-62.83,159.57-74.27,104.35,23.46,168.73,34,175.23-6.73-4.35-47.4-35.7,9.55-128.64,11-18.3,25.53-34.87,43.5-72.16,0,0,15.91,22.45,7.6,71.13C287.7,364,354,342.91,355,343.94c22.75,26.78-17.72,73.51-21.58,76.55,5.49-3.65,117.71-78,33-188.1C360.43,238.4,352.62,266.59,336.39,262.44ZM510.88,89.69C496,72.79,483.52,64,475,64a14.81,14.81,0,0,0-8.39,2.84c-1.91,1.91-3.83,4.66-3.83,7.42,0,4.78,5.6,11.26,16,21.9,43.23,41.61,65,92.59,64.82,154.06-.16,68-23,122.63-67.48,165-9.34,8.35-13.18,14.92-13.2,20.55,0,2.75,1.9,5.62,3.81,8.38A13.61,13.61,0,0,0,475.1,448c10.28,0,24.68-12.13,43.47-35.79,36.59-44.85,53.14-94.38,54.06-161.87S552.32,137,510.88,89.69Z"],freebsd:[448,512,[],"f3a4","M303.7 96.2c11.1-11.1 115.5-77 139.2-53.2 23.7 23.7-42.1 128.1-53.2 139.2-11.1 11.1-39.4.9-63.1-22.9-23.8-23.7-34.1-52-22.9-63.1zM109.9 68.1C73.6 47.5 22 24.6 5.6 41.1c-16.6 16.6 7.1 69.4 27.9 105.7 18.5-32.2 44.8-59.3 76.4-78.7zM406.7 174c3.3 11.3 2.7 20.7-2.7 26.1-20.3 20.3-87.5-27-109.3-70.1-18-32.3-11.1-53.4 14.9-48.7 5.7-3.6 12.3-7.6 19.6-11.6-29.8-15.5-63.6-24.3-99.5-24.3-119.1 0-215.6 96.5-215.6 215.6 0 119 96.5 215.6 215.6 215.6S445.3 380.1 445.3 261c0-38.4-10.1-74.5-27.7-105.8-3.9 7-7.6 13.3-10.9 18.8z"],fulcrum:[320,512,[],"f50b","M95.75 164.14l-35.38 43.55L25 164.14l35.38-43.55zM144.23 0l-20.54 198.18L72.72 256l51 57.82L144.23 512V300.89L103.15 256l41.08-44.89zm79.67 164.14l35.38 43.55 35.38-43.55-35.38-43.55zm-48.48 47L216.5 256l-41.08 44.89V512L196 313.82 247 256l-51-57.82L175.42 0z"],"galactic-republic":[496,512,[],"f50c","M248 504C111.25 504 0 392.75 0 256S111.25 8 248 8s248 111.25 248 248-111.25 248-248 248zm0-479.47C120.37 24.53 16.53 128.37 16.53 256S120.37 487.47 248 487.47 479.47 383.63 479.47 256 375.63 24.53 248 24.53zm27.62 21.81v24.62a185.933 185.933 0 0 1 83.57 34.54l17.39-17.36c-28.75-22.06-63.3-36.89-100.96-41.8zm-55.37.07c-37.64 4.94-72.16 19.8-100.88 41.85l17.28 17.36h.08c24.07-17.84 52.55-30.06 83.52-34.67V46.41zm12.25 50.17v82.87c-10.04 2.03-19.42 5.94-27.67 11.42l-58.62-58.59-21.93 21.93 58.67 58.67c-5.47 8.23-9.45 17.59-11.47 27.62h-82.9v31h82.9c2.02 10.02 6.01 19.31 11.47 27.54l-58.67 58.69 21.93 21.93 58.62-58.62a77.873 77.873 0 0 0 27.67 11.47v82.9h31v-82.9c10.05-2.03 19.37-6.06 27.62-11.55l58.67 58.69 21.93-21.93-58.67-58.69c5.46-8.23 9.47-17.52 11.5-27.54h82.87v-31h-82.87c-2.02-10.02-6.03-19.38-11.5-27.62l58.67-58.67-21.93-21.93-58.67 58.67c-8.25-5.49-17.57-9.47-27.62-11.5V96.58h-31zm183.24 30.72l-17.36 17.36a186.337 186.337 0 0 1 34.67 83.67h24.62c-4.95-37.69-19.83-72.29-41.93-101.03zm-335.55.13c-22.06 28.72-36.91 63.26-41.85 100.91h24.65c4.6-30.96 16.76-59.45 34.59-83.52l-17.39-17.39zM38.34 283.67c4.92 37.64 19.75 72.18 41.8 100.9l17.36-17.39c-17.81-24.07-29.92-52.57-34.51-83.52H38.34zm394.7 0c-4.61 30.99-16.8 59.5-34.67 83.6l17.36 17.36c22.08-28.74 36.98-63.29 41.93-100.96h-24.62zM136.66 406.38l-17.36 17.36c28.73 22.09 63.3 36.98 100.96 41.93v-24.64c-30.99-4.63-59.53-16.79-83.6-34.65zm222.53.05c-24.09 17.84-52.58 30.08-83.57 34.67v24.57c37.67-4.92 72.21-19.79 100.96-41.85l-17.31-17.39h-.08z"],"galactic-senate":[512,512,[],"f50d","M249.86 33.48v26.07C236.28 80.17 226 168.14 225.39 274.9c11.74-15.62 19.13-33.33 19.13-48.24v-16.88c-.03-5.32.75-10.53 2.19-15.65.65-2.14 1.39-4.08 2.62-5.82 1.23-1.75 3.43-3.79 6.68-3.79 3.24 0 5.45 2.05 6.68 3.79 1.23 1.75 1.97 3.68 2.62 5.82 1.44 5.12 2.22 10.33 2.19 15.65v16.88c0 14.91 7.39 32.62 19.13 48.24-.63-106.76-10.91-194.73-24.49-215.35V33.48h-12.28zm-26.34 147.77c-9.52 2.15-18.7 5.19-27.46 9.08 8.9 16.12 9.76 32.64 1.71 37.29-8 4.62-21.85-4.23-31.36-19.82-11.58 8.79-21.88 19.32-30.56 31.09 14.73 9.62 22.89 22.92 18.32 30.66-4.54 7.7-20.03 7.14-35.47-.96-5.78 13.25-9.75 27.51-11.65 42.42 9.68.18 18.67 2.38 26.18 6.04 17.78-.3 32.77-1.96 40.49-4.22 5.55-26.35 23.02-48.23 46.32-59.51.73-25.55 1.88-49.67 3.48-72.07zm64.96 0c1.59 22.4 2.75 46.52 3.47 72.07 23.29 11.28 40.77 33.16 46.32 59.51 7.72 2.26 22.71 3.92 40.49 4.22 7.51-3.66 16.5-5.85 26.18-6.04-1.9-14.91-5.86-29.17-11.65-42.42-15.44 8.1-30.93 8.66-35.47.96-4.57-7.74 3.6-21.05 18.32-30.66-8.68-11.77-18.98-22.3-30.56-31.09-9.51 15.59-23.36 24.44-31.36 19.82-8.05-4.65-7.19-21.16 1.71-37.29a147.49 147.49 0 0 0-27.45-9.08zm-32.48 8.6c-3.23 0-5.86 8.81-6.09 19.93h-.05v16.88c0 41.42-49.01 95.04-93.49 95.04-52 0-122.75-1.45-156.37 29.17v2.51c9.42 17.12 20.58 33.17 33.18 47.97C45.7 380.26 84.77 360.4 141.2 360c45.68 1.02 79.03 20.33 90.76 40.87.01.01-.01.04 0 .05 7.67 2.14 15.85 3.23 24.04 3.21 8.19.02 16.37-1.07 24.04-3.21.01-.01-.01-.04 0-.05 11.74-20.54 45.08-39.85 90.76-40.87 56.43.39 95.49 20.26 108.02 41.35 12.6-14.8 23.76-30.86 33.18-47.97v-2.51c-33.61-30.62-104.37-29.17-156.37-29.17-44.48 0-93.49-53.62-93.49-95.04v-16.88h-.05c-.23-11.12-2.86-19.93-6.09-19.93zm0 96.59c22.42 0 40.6 18.18 40.6 40.6s-18.18 40.65-40.6 40.65-40.6-18.23-40.6-40.65c0-22.42 18.18-40.6 40.6-40.6zm0 7.64c-18.19 0-32.96 14.77-32.96 32.96S237.81 360 256 360s32.96-14.77 32.96-32.96-14.77-32.96-32.96-32.96zm0 6.14c14.81 0 26.82 12.01 26.82 26.82s-12.01 26.82-26.82 26.82-26.82-12.01-26.82-26.82 12.01-26.82 26.82-26.82zm-114.8 66.67c-10.19.07-21.6.36-30.5 1.66.43 4.42 1.51 18.63 7.11 29.76 9.11-2.56 18.36-3.9 27.62-3.9 41.28.94 71.48 34.35 78.26 74.47l.11 4.7c10.4 1.91 21.19 2.94 32.21 2.94 11.03 0 21.81-1.02 32.21-2.94l.11-4.7c6.78-40.12 36.98-73.53 78.26-74.47 9.26 0 18.51 1.34 27.62 3.9 5.6-11.13 6.68-25.34 7.11-29.76-8.9-1.3-20.32-1.58-30.5-1.66-18.76.42-35.19 4.17-48.61 9.67-12.54 16.03-29.16 30.03-49.58 33.07-.09.02-.17.04-.27.05-.05.01-.11.04-.16.05-5.24 1.07-10.63 1.6-16.19 1.6-5.55 0-10.95-.53-16.19-1.6-.05-.01-.11-.04-.16-.05-.1-.02-.17-.04-.27-.05-20.42-3.03-37.03-17.04-49.58-33.07-13.42-5.49-29.86-9.25-48.61-9.67z"],"get-pocket":[448,512,[],"f265","M407.6 64h-367C18.5 64 0 82.5 0 104.6v135.2C0 364.5 99.7 464 224.2 464c124 0 223.8-99.5 223.8-224.2V104.6c0-22.4-17.7-40.6-40.4-40.6zm-162 268.5c-12.4 11.8-31.4 11.1-42.4 0C89.5 223.6 88.3 227.4 88.3 209.3c0-16.9 13.8-30.7 30.7-30.7 17 0 16.1 3.8 105.2 89.3 90.6-86.9 88.6-89.3 105.5-89.3 16.9 0 30.7 13.8 30.7 30.7 0 17.8-2.9 15.7-114.8 123.2z"],gg:[512,512,[],"f260","M179.2 230.4l102.4 102.4-102.4 102.4L0 256 179.2 76.8l44.8 44.8-25.6 25.6-19.2-19.2-128 128 128 128 51.5-51.5-77.1-76.5 25.6-25.6zM332.8 76.8L230.4 179.2l102.4 102.4 25.6-25.6-77.1-76.5 51.5-51.5 128 128-128 128-19.2-19.2-25.6 25.6 44.8 44.8L512 256 332.8 76.8z"],"gg-circle":[512,512,[],"f261","M257 8C120 8 9 119 9 256s111 248 248 248 248-111 248-248S394 8 257 8zm-49.5 374.8L81.8 257.1l125.7-125.7 35.2 35.4-24.2 24.2-11.1-11.1-77.2 77.2 77.2 77.2 26.6-26.6-53.1-52.9 24.4-24.4 77.2 77.2-75 75.2zm99-2.2l-35.2-35.2 24.1-24.4 11.1 11.1 77.2-77.2-77.2-77.2-26.5 26.5 53.1 52.9-24.4 24.4-77.2-77.2 75-75L432.2 255 306.5 380.6z"],git:[512,512,[],"f1d3","M216.29 158.39H137C97 147.9 6.51 150.63 6.51 233.18c0 30.09 15 51.23 35 61-25.1 23-37 33.85-37 49.21 0 11 4.47 21.14 17.89 26.81C8.13 383.61 0 393.35 0 411.65c0 32.11 28.05 50.82 101.63 50.82 70.75 0 111.79-26.42 111.79-73.18 0-58.66-45.16-56.5-151.63-63l13.43-21.55c27.27 7.58 118.7 10 118.7-67.89 0-18.7-7.73-31.71-15-41.07l37.41-2.84zm-63.42 241.9c0 32.06-104.89 32.1-104.89 2.43 0-8.14 5.27-15 10.57-21.54 77.71 5.3 94.32 3.37 94.32 19.11zm-50.81-134.58c-52.8 0-50.46-71.16 1.2-71.16 49.54 0 50.82 71.16-1.2 71.16zm133.3 100.51v-32.1c26.75-3.66 27.24-2 27.24-11V203.61c0-8.5-2.05-7.38-27.24-16.26l4.47-32.92H324v168.71c0 6.51.4 7.32 6.51 8.14l20.73 2.84v32.1zm52.45-244.31c-23.17 0-36.59-13.43-36.59-36.61s13.42-35.77 36.59-35.77c23.58 0 37 12.62 37 35.77s-13.42 36.61-37 36.61zM512 350.46c-17.49 8.53-43.1 16.26-66.28 16.26-48.38 0-66.67-19.5-66.67-65.46V194.75c0-5.42 1.05-4.06-31.71-4.06V154.5c35.78-4.07 50-22 54.47-66.27h38.63c0 65.83-1.34 61.81 3.26 61.81H501v40.65h-60.56v97.15c0 6.92-4.92 51.41 60.57 26.84z"],"git-alt":[448,512,[],"f841","M439.55 236.05L244 40.45a28.87 28.87 0 0 0-40.81 0l-40.66 40.63 51.52 51.52c27.06-9.14 52.68 16.77 43.39 43.68l49.66 49.66c34.23-11.8 61.18 31 35.47 56.69-26.49 26.49-70.21-2.87-56-37.34L240.22 199v121.85c25.3 12.54 22.26 41.85 9.08 55a34.34 34.34 0 0 1-48.55 0c-17.57-17.6-11.07-46.91 11.25-56v-123c-20.8-8.51-24.6-30.74-18.64-45L142.57 101 8.45 235.14a28.86 28.86 0 0 0 0 40.81l195.61 195.6a28.86 28.86 0 0 0 40.8 0l194.69-194.69a28.86 28.86 0 0 0 0-40.81z"],"git-square":[448,512,[],"f1d2","M100.59 334.24c48.57 3.31 58.95 2.11 58.95 11.94 0 20-65.55 20.06-65.55 1.52.01-5.09 3.29-9.4 6.6-13.46zm27.95-116.64c-32.29 0-33.75 44.47-.75 44.47 32.51 0 31.71-44.47.75-44.47zM448 80v352a48 48 0 0 1-48 48H48a48 48 0 0 1-48-48V80a48 48 0 0 1 48-48h352a48 48 0 0 1 48 48zm-227 69.31c0 14.49 8.38 22.88 22.86 22.88 14.74 0 23.13-8.39 23.13-22.88S258.62 127 243.88 127c-14.48 0-22.88 7.84-22.88 22.31zM199.18 195h-49.55c-25-6.55-81.56-4.85-81.56 46.75 0 18.8 9.4 32 21.85 38.11C74.23 294.23 66.8 301 66.8 310.6c0 6.87 2.79 13.22 11.18 16.76-8.9 8.4-14 14.48-14 25.92C64 373.35 81.53 385 127.52 385c44.22 0 69.87-16.51 69.87-45.73 0-36.67-28.23-35.32-94.77-39.38l8.38-13.43c17 4.74 74.19 6.23 74.19-42.43 0-11.69-4.83-19.82-9.4-25.67l23.38-1.78zm84.34 109.84l-13-1.78c-3.82-.51-4.07-1-4.07-5.09V192.52h-52.6l-2.79 20.57c15.75 5.55 17 4.86 17 10.17V298c0 5.62-.31 4.58-17 6.87v20.06h72.42zM384 315l-6.87-22.37c-40.93 15.37-37.85-12.41-37.85-16.73v-60.72h37.85v-25.41h-35.82c-2.87 0-2 2.52-2-38.63h-24.18c-2.79 27.7-11.68 38.88-34 41.42v22.62c20.47 0 19.82-.85 19.82 2.54v66.57c0 28.72 11.43 40.91 41.67 40.91 14.45 0 30.45-4.83 41.38-10.2z"],github:[496,512,[],"f09b","M165.9 397.4c0 2-2.3 3.6-5.2 3.6-3.3.3-5.6-1.3-5.6-3.6 0-2 2.3-3.6 5.2-3.6 3-.3 5.6 1.3 5.6 3.6zm-31.1-4.5c-.7 2 1.3 4.3 4.3 4.9 2.6 1 5.6 0 6.2-2s-1.3-4.3-4.3-5.2c-2.6-.7-5.5.3-6.2 2.3zm44.2-1.7c-2.9.7-4.9 2.6-4.6 4.9.3 2 2.9 3.3 5.9 2.6 2.9-.7 4.9-2.6 4.6-4.6-.3-1.9-3-3.2-5.9-2.9zM244.8 8C106.1 8 0 113.3 0 252c0 110.9 69.8 205.8 169.5 239.2 12.8 2.3 17.3-5.6 17.3-12.1 0-6.2-.3-40.4-.3-61.4 0 0-70 15-84.7-29.8 0 0-11.4-29.1-27.8-36.6 0 0-22.9-15.7 1.6-15.4 0 0 24.9 2 38.6 25.8 21.9 38.6 58.6 27.5 72.9 20.9 2.3-16 8.8-27.1 16-33.7-55.9-6.2-112.3-14.3-112.3-110.5 0-27.5 7.6-41.3 23.6-58.9-2.6-6.5-11.1-33.3 2.6-67.9 20.9-6.5 69 27 69 27 20-5.6 41.5-8.5 62.8-8.5s42.8 2.9 62.8 8.5c0 0 48.1-33.6 69-27 13.7 34.7 5.2 61.4 2.6 67.9 16 17.7 25.8 31.5 25.8 58.9 0 96.5-58.9 104.2-114.8 110.5 9.2 7.9 17 22.9 17 46.4 0 33.7-.3 75.4-.3 83.6 0 6.5 4.6 14.4 17.3 12.1C428.2 457.8 496 362.9 496 252 496 113.3 383.5 8 244.8 8zM97.2 352.9c-1.3 1-1 3.3.7 5.2 1.6 1.6 3.9 2.3 5.2 1 1.3-1 1-3.3-.7-5.2-1.6-1.6-3.9-2.3-5.2-1zm-10.8-8.1c-.7 1.3.3 2.9 2.3 3.9 1.6 1 3.6.7 4.3-.7.7-1.3-.3-2.9-2.3-3.9-2-.6-3.6-.3-4.3.7zm32.4 35.6c-1.6 1.3-1 4.3 1.3 6.2 2.3 2.3 5.2 2.6 6.5 1 1.3-1.3.7-4.3-1.3-6.2-2.2-2.3-5.2-2.6-6.5-1zm-11.4-14.7c-1.6 1-1.6 3.6 0 5.9 1.6 2.3 4.3 3.3 5.6 2.3 1.6-1.3 1.6-3.9 0-6.2-1.4-2.3-4-3.3-5.6-2z"],"github-alt":[480,512,[],"f113","M186.1 328.7c0 20.9-10.9 55.1-36.7 55.1s-36.7-34.2-36.7-55.1 10.9-55.1 36.7-55.1 36.7 34.2 36.7 55.1zM480 278.2c0 31.9-3.2 65.7-17.5 95-37.9 76.6-142.1 74.8-216.7 74.8-75.8 0-186.2 2.7-225.6-74.8-14.6-29-20.2-63.1-20.2-95 0-41.9 13.9-81.5 41.5-113.6-5.2-15.8-7.7-32.4-7.7-48.8 0-21.5 4.9-32.3 14.6-51.8 45.3 0 74.3 9 108.8 36 29-6.9 58.8-10 88.7-10 27 0 54.2 2.9 80.4 9.2 34-26.7 63-35.2 107.8-35.2 9.8 19.5 14.6 30.3 14.6 51.8 0 16.4-2.6 32.7-7.7 48.2 27.5 32.4 39 72.3 39 114.2zm-64.3 50.5c0-43.9-26.7-82.6-73.5-82.6-18.9 0-37 3.4-56 6-14.9 2.3-29.8 3.2-45.1 3.2-15.2 0-30.1-.9-45.1-3.2-18.7-2.6-37-6-56-6-46.8 0-73.5 38.7-73.5 82.6 0 87.8 80.4 101.3 150.4 101.3h48.2c70.3 0 150.6-13.4 150.6-101.3zm-82.6-55.1c-25.8 0-36.7 34.2-36.7 55.1s10.9 55.1 36.7 55.1 36.7-34.2 36.7-55.1-10.9-55.1-36.7-55.1z"],"github-square":[448,512,[],"f092","M400 32H48C21.5 32 0 53.5 0 80v352c0 26.5 21.5 48 48 48h352c26.5 0 48-21.5 48-48V80c0-26.5-21.5-48-48-48zM277.3 415.7c-8.4 1.5-11.5-3.7-11.5-8 0-5.4.2-33 .2-55.3 0-15.6-5.2-25.5-11.3-30.7 37-4.1 76-9.2 76-73.1 0-18.2-6.5-27.3-17.1-39 1.7-4.3 7.4-22-1.7-45-13.9-4.3-45.7 17.9-45.7 17.9-13.2-3.7-27.5-5.6-41.6-5.6-14.1 0-28.4 1.9-41.6 5.6 0 0-31.8-22.2-45.7-17.9-9.1 22.9-3.5 40.6-1.7 45-10.6 11.7-15.6 20.8-15.6 39 0 63.6 37.3 69 74.3 73.1-4.8 4.3-9.1 11.7-10.6 22.3-9.5 4.3-33.8 11.7-48.3-13.9-9.1-15.8-25.5-17.1-25.5-17.1-16.2-.2-1.1 10.2-1.1 10.2 10.8 5 18.4 24.2 18.4 24.2 9.7 29.7 56.1 19.7 56.1 19.7 0 13.9.2 36.5.2 40.6 0 4.3-3 9.5-11.5 8-66-22.1-112.2-84.9-112.2-158.3 0-91.8 70.2-161.5 162-161.5S388 165.6 388 257.4c.1 73.4-44.7 136.3-110.7 158.3zm-98.1-61.1c-1.9.4-3.7-.4-3.9-1.7-.2-1.5 1.1-2.8 3-3.2 1.9-.2 3.7.6 3.9 1.9.3 1.3-1 2.6-3 3zm-9.5-.9c0 1.3-1.5 2.4-3.5 2.4-2.2.2-3.7-.9-3.7-2.4 0-1.3 1.5-2.4 3.5-2.4 1.9-.2 3.7.9 3.7 2.4zm-13.7-1.1c-.4 1.3-2.4 1.9-4.1 1.3-1.9-.4-3.2-1.9-2.8-3.2.4-1.3 2.4-1.9 4.1-1.5 2 .6 3.3 2.1 2.8 3.4zm-12.3-5.4c-.9 1.1-2.8.9-4.3-.6-1.5-1.3-1.9-3.2-.9-4.1.9-1.1 2.8-.9 4.3.6 1.3 1.3 1.8 3.3.9 4.1zm-9.1-9.1c-.9.6-2.6 0-3.7-1.5s-1.1-3.2 0-3.9c1.1-.9 2.8-.2 3.7 1.3 1.1 1.5 1.1 3.3 0 4.1zm-6.5-9.7c-.9.9-2.4.4-3.5-.6-1.1-1.3-1.3-2.8-.4-3.5.9-.9 2.4-.4 3.5.6 1.1 1.3 1.3 2.8.4 3.5zm-6.7-7.4c-.4.9-1.7 1.1-2.8.4-1.3-.6-1.9-1.7-1.5-2.6.4-.6 1.5-.9 2.8-.4 1.3.7 1.9 1.8 1.5 2.6z"],gitkraken:[592,512,[],"f3a6","M565.7 118.1c-2.3-6.1-9.3-9.2-15.3-6.6-5.7 2.4-8.5 8.9-6.3 14.6 10.9 29 16.9 60.5 16.9 93.3 0 134.6-100.3 245.7-230.2 262.7V358.4c7.9-1.5 15.5-3.6 23-6.2v104c106.7-25.9 185.9-122.1 185.9-236.8 0-91.8-50.8-171.8-125.8-213.3-5.7-3.2-13-.9-15.9 5-2.7 5.5-.6 12.2 4.7 15.1 67.9 37.6 113.9 110 113.9 193.2 0 93.3-57.9 173.1-139.8 205.4v-92.2c14.2-4.5 24.9-17.7 24.9-33.5 0-13.1-6.8-24.4-17.3-30.5 8.3-79.5 44.5-58.6 44.5-83.9V170c0-38-87.9-161.8-129-164.7-2.5-.2-5-.2-7.6 0C251.1 8.3 163.2 132 163.2 170v14.8c0 25.3 36.3 4.3 44.5 83.9-10.6 6.1-17.3 17.4-17.3 30.5 0 15.8 10.6 29 24.8 33.5v92.2c-81.9-32.2-139.8-112-139.8-205.4 0-83.1 46-155.5 113.9-193.2 5.4-3 7.4-9.6 4.7-15.1-2.9-5.9-10.1-8.2-15.9-5-75 41.5-125.8 121.5-125.8 213.3 0 114.7 79.2 210.8 185.9 236.8v-104c7.6 2.5 15.1 4.6 23 6.2v123.7C131.4 465.2 31 354.1 31 219.5c0-32.8 6-64.3 16.9-93.3 2.2-5.8-.6-12.2-6.3-14.6-6-2.6-13 .4-15.3 6.6C14.5 149.7 8 183.8 8 219.5c0 155.1 122.6 281.6 276.3 287.8V361.4c6.8.4 15 .5 23.4 0v145.8C461.4 501.1 584 374.6 584 219.5c0-35.7-6.5-69.8-18.3-101.4zM365.9 275.5c13 0 23.7 10.5 23.7 23.7 0 13.1-10.6 23.7-23.7 23.7-13 0-23.7-10.5-23.7-23.7 0-13.1 10.6-23.7 23.7-23.7zm-139.8 47.3c-13.2 0-23.7-10.7-23.7-23.7s10.5-23.7 23.7-23.7c13.1 0 23.7 10.6 23.7 23.7 0 13-10.5 23.7-23.7 23.7z"],gitlab:[512,512,[],"f296","M105.2 24.9c-3.1-8.9-15.7-8.9-18.9 0L29.8 199.7h132c-.1 0-56.6-174.8-56.6-174.8zM.9 287.7c-2.6 8 .3 16.9 7.1 22l247.9 184-226.2-294zm160.8-88l94.3 294 94.3-294zm349.4 88l-28.8-88-226.3 294 247.9-184c6.9-5.1 9.7-14 7.2-22zM425.7 24.9c-3.1-8.9-15.7-8.9-18.9 0l-56.6 174.8h132z"],gitter:[384,512,[],"f426","M66.4 322.5H16V0h50.4v322.5zM166.9 76.1h-50.4V512h50.4V76.1zm100.6 0h-50.4V512h50.4V76.1zM368 76h-50.4v247H368V76z"],glide:[448,512,[],"f2a5","M252.8 148.6c0 8.8-1.6 17.7-3.4 26.4-5.8 27.8-11.6 55.8-17.3 83.6-1.4 6.3-8.3 4.9-13.7 4.9-23.8 0-30.5-26-30.5-45.5 0-29.3 11.2-68.1 38.5-83.1 4.3-2.5 9.2-4.2 14.1-4.2 11.4 0 12.3 8.3 12.3 17.9zM448 80v352c0 26.5-21.5 48-48 48H48c-26.5 0-48-21.5-48-48V80c0-26.5 21.5-48 48-48h352c26.5 0 48 21.5 48 48zm-64 187c0-5.1-20.8-37.7-25.5-39.5-2.2-.9-7.2-2.3-9.6-2.3-23.1 0-38.7 10.5-58.2 21.5l-.5-.5c4.3-29.4 14.6-57.2 14.6-87.4 0-44.6-23.8-62.7-67.5-62.7-71.7 0-108 70.8-108 123.5 0 54.7 32 85 86.3 85 7.5 0 6.9-.6 6.9 2.3-10.5 80.3-56.5 82.9-56.5 58.9 0-24.4 28-36.5 28.3-38-.2-7.6-29.3-17.2-36.7-17.2-21.1 0-32.7 33-32.7 50.6 0 32.3 20.4 54.7 53.3 54.7 48.2 0 83.4-49.7 94.3-91.7 9.4-37.7 7-39.4 12.3-42.1 20-10.1 35.8-16.8 58.4-16.8 11.1 0 19 2.3 36.7 5.2 1.8.1 4.1-1.7 4.1-3.5z"],"glide-g":[448,512,[],"f2a6","M407.1 211.2c-3.5-1.4-11.6-3.8-15.4-3.8-37.1 0-62.2 16.8-93.5 34.5l-.9-.9c7-47.3 23.5-91.9 23.5-140.4C320.8 29.1 282.6 0 212.4 0 97.3 0 39 113.7 39 198.4 39 286.3 90.3 335 177.6 335c12 0 11-1 11 3.8-16.9 128.9-90.8 133.1-90.8 94.6 0-39.2 45-58.6 45.5-61-.3-12.2-47-27.6-58.9-27.6-33.9.1-52.4 51.2-52.4 79.3C32 476 64.8 512 117.5 512c77.4 0 134-77.8 151.4-145.4 15.1-60.5 11.2-63.3 19.7-67.6 32.2-16.2 57.5-27 93.8-27 17.8 0 30.5 3.7 58.9 8.4 2.9 0 6.7-2.9 6.7-5.8 0-8-33.4-60.5-40.9-63.4zm-175.3-84.4c-9.3 44.7-18.6 89.6-27.8 134.3-2.3 10.2-13.3 7.8-22 7.8-38.3 0-49-41.8-49-73.1 0-47 18-109.3 61.8-133.4 7-4.1 14.8-6.7 22.6-6.7 18.6 0 20 13.3 20 28.7-.1 14.3-2.7 28.5-5.6 42.4z"],gofore:[400,512,[],"f3a7","M324 319.8h-13.2v34.7c-24.5 23.1-56.3 35.8-89.9 35.8-73.2 0-132.4-60.2-132.4-134.4 0-74.1 59.2-134.4 132.4-134.4 35.3 0 68.6 14 93.6 39.4l62.3-63.3C335 55.3 279.7 32 220.7 32 98 32 0 132.6 0 256c0 122.5 97 224 220.7 224 63.2 0 124.5-26.2 171-82.5-2-27.6-13.4-77.7-67.7-77.7zm-12.1-112.5H205.6v89H324c33.5 0 60.5 15.1 76 41.8v-30.6c0-65.2-40.4-100.2-88.1-100.2z"],goodreads:[448,512,[],"f3a8","M299.9 191.2c5.1 37.3-4.7 79-35.9 100.7-22.3 15.5-52.8 14.1-70.8 5.7-37.1-17.3-49.5-58.6-46.8-97.2 4.3-60.9 40.9-87.9 75.3-87.5 46.9-.2 71.8 31.8 78.2 78.3zM448 88v336c0 30.9-25.1 56-56 56H56c-30.9 0-56-25.1-56-56V88c0-30.9 25.1-56 56-56h336c30.9 0 56 25.1 56 56zM330 313.2s-.1-34-.1-217.3h-29v40.3c-.8.3-1.2-.5-1.6-1.2-9.6-20.7-35.9-46.3-76-46-51.9.4-87.2 31.2-100.6 77.8-4.3 14.9-5.8 30.1-5.5 45.6 1.7 77.9 45.1 117.8 112.4 115.2 28.9-1.1 54.5-17 69-45.2.5-1 1.1-1.9 1.7-2.9.2.1.4.1.6.2.3 3.8.2 30.7.1 34.5-.2 14.8-2 29.5-7.2 43.5-7.8 21-22.3 34.7-44.5 39.5-17.8 3.9-35.6 3.8-53.2-1.2-21.5-6.1-36.5-19-41.1-41.8-.3-1.6-1.3-1.3-2.3-1.3h-26.8c.8 10.6 3.2 20.3 8.5 29.2 24.2 40.5 82.7 48.5 128.2 37.4 49.9-12.3 67.3-54.9 67.4-106.3z"],"goodreads-g":[384,512,[],"f3a9","M42.6 403.3h2.8c12.7 0 25.5 0 38.2.1 1.6 0 3.1-.4 3.6 2.1 7.1 34.9 30 54.6 62.9 63.9 26.9 7.6 54.1 7.8 81.3 1.8 33.8-7.4 56-28.3 68-60.4 8-21.5 10.7-43.8 11-66.5.1-5.8.3-47-.2-52.8l-.9-.3c-.8 1.5-1.7 2.9-2.5 4.4-22.1 43.1-61.3 67.4-105.4 69.1-103 4-169.4-57-172-176.2-.5-23.7 1.8-46.9 8.3-69.7C58.3 47.7 112.3.6 191.6 0c61.3-.4 101.5 38.7 116.2 70.3.5 1.1 1.3 2.3 2.4 1.9V10.6h44.3c0 280.3.1 332.2.1 332.2-.1 78.5-26.7 143.7-103 162.2-69.5 16.9-159 4.8-196-57.2-8-13.5-11.8-28.3-13-44.5zM188.9 36.5c-52.5-.5-108.5 40.7-115 133.8-4.1 59 14.8 122.2 71.5 148.6 27.6 12.9 74.3 15 108.3-8.7 47.6-33.2 62.7-97 54.8-154-9.7-71.1-47.8-120-119.6-119.7z"],google:[488,512,[],"f1a0","M488 261.8C488 403.3 391.1 504 248 504 110.8 504 0 393.2 0 256S110.8 8 248 8c66.8 0 123 24.5 166.3 64.9l-67.5 64.9C258.5 52.6 94.3 116.6 94.3 256c0 86.5 69.1 156.6 153.7 156.6 98.2 0 135-70.4 140.8-106.9H248v-85.3h236.1c2.3 12.7 3.9 24.9 3.9 41.4z"],"google-drive":[512,512,[],"f3aa","M339 314.9L175.4 32h161.2l163.6 282.9H339zm-137.5 23.6L120.9 480h310.5L512 338.5H201.5zM154.1 67.4L0 338.5 80.6 480 237 208.8 154.1 67.4z"],"google-play":[512,512,[],"f3ab","M325.3 234.3L104.6 13l280.8 161.2-60.1 60.1zM47 0C34 6.8 25.3 19.2 25.3 35.3v441.3c0 16.1 8.7 28.5 21.7 35.3l256.6-256L47 0zm425.2 225.6l-58.9-34.1-65.7 64.5 65.7 64.5 60.1-34.1c18-14.3 18-46.5-1.2-60.8zM104.6 499l280.8-161.2-60.1-60.1L104.6 499z"],"google-plus":[496,512,[],"f2b3","M248 8C111.1 8 0 119.1 0 256s111.1 248 248 248 248-111.1 248-248S384.9 8 248 8zm-70.7 372c-68.8 0-124-55.5-124-124s55.2-124 124-124c31.3 0 60.1 11 83 32.3l-33.6 32.6c-13.2-12.9-31.3-19.1-49.4-19.1-42.9 0-77.2 35.5-77.2 78.1s34.2 78.1 77.2 78.1c32.6 0 64.9-19.1 70.1-53.3h-70.1v-42.6h116.9c1.3 6.8 1.9 13.6 1.9 20.7 0 70.8-47.5 121.2-118.8 121.2zm230.2-106.2v35.5H372v-35.5h-35.5v-35.5H372v-35.5h35.5v35.5h35.2v35.5h-35.2z"],"google-plus-g":[640,512,[],"f0d5","M386.061 228.496c1.834 9.692 3.143 19.384 3.143 31.956C389.204 370.205 315.599 448 204.8 448c-106.084 0-192-85.915-192-192s85.916-192 192-192c51.864 0 95.083 18.859 128.611 50.292l-52.126 50.03c-14.145-13.621-39.028-29.599-76.485-29.599-65.484 0-118.92 54.221-118.92 121.277 0 67.056 53.436 121.277 118.92 121.277 75.961 0 104.513-54.745 108.965-82.773H204.8v-66.009h181.261zm185.406 6.437V179.2h-56.001v55.733h-55.733v56.001h55.733v55.733h56.001v-55.733H627.2v-56.001h-55.733z"],"google-plus-square":[448,512,[],"f0d4","M400 32H48C21.5 32 0 53.5 0 80v352c0 26.5 21.5 48 48 48h352c26.5 0 48-21.5 48-48V80c0-26.5-21.5-48-48-48zM164 356c-55.3 0-100-44.7-100-100s44.7-100 100-100c27 0 49.5 9.8 67 26.2l-27.1 26.1c-7.4-7.1-20.3-15.4-39.8-15.4-34.1 0-61.9 28.2-61.9 63.2 0 34.9 27.8 63.2 61.9 63.2 39.6 0 54.4-28.5 56.8-43.1H164v-34.4h94.4c1 5 1.6 10.1 1.6 16.6 0 57.1-38.3 97.6-96 97.6zm220-81.8h-29v29h-29.2v-29h-29V245h29v-29H355v29h29v29.2z"],"google-wallet":[448,512,[],"f1ee","M156.8 126.8c37.6 60.6 64.2 113.1 84.3 162.5-8.3 33.8-18.8 66.5-31.3 98.3-13.2-52.3-26.5-101.3-56-148.5 6.5-36.4 2.3-73.6 3-112.3zM109.3 200H16.1c-6.5 0-10.5 7.5-6.5 12.7C51.8 267 81.3 330.5 101.3 400h103.5c-16.2-69.7-38.7-133.7-82.5-193.5-3-4-8-6.5-13-6.5zm47.8-88c68.5 108 130 234.5 138.2 368H409c-12-138-68.4-265-143.2-368H157.1zm251.8-68.5c-1.8-6.8-8.2-11.5-15.2-11.5h-88.3c-5.3 0-9 5-7.8 10.3 13.2 46.5 22.3 95.5 26.5 146 48.2 86.2 79.7 178.3 90.6 270.8 15.8-60.5 25.3-133.5 25.3-203 0-73.6-12.1-145.1-31.1-212.6z"],gratipay:[496,512,[],"f184","M248 8C111.1 8 0 119.1 0 256s111.1 248 248 248 248-111.1 248-248S384.9 8 248 8zm114.6 226.4l-113 152.7-112.7-152.7c-8.7-11.9-19.1-50.4 13.6-72 28.1-18.1 54.6-4.2 68.5 11.9 15.9 17.9 46.6 16.9 61.7 0 13.9-16.1 40.4-30 68.1-11.9 32.9 21.6 22.6 60 13.8 72z"],grav:[512,512,[],"f2d6","M301.1 212c4.4 4.4 4.4 11.9 0 16.3l-9.7 9.7c-4.4 4.7-11.9 4.7-16.6 0l-10.5-10.5c-4.4-4.7-4.4-11.9 0-16.6l9.7-9.7c4.4-4.4 11.9-4.4 16.6 0l10.5 10.8zm-30.2-19.7c3-3 3-7.8 0-10.5-2.8-3-7.5-3-10.5 0-2.8 2.8-2.8 7.5 0 10.5 3.1 2.8 7.8 2.8 10.5 0zm-26 5.3c-3 2.8-3 7.5 0 10.2 2.8 3 7.5 3 10.5 0 2.8-2.8 2.8-7.5 0-10.2-3-3-7.7-3-10.5 0zm72.5-13.3c-19.9-14.4-33.8-43.2-11.9-68.1 21.6-24.9 40.7-17.2 59.8.8 11.9 11.3 29.3 24.9 17.2 48.2-12.5 23.5-45.1 33.2-65.1 19.1zm47.7-44.5c-8.9-10-23.3 6.9-15.5 16.1 7.4 9 32.1 2.4 15.5-16.1zM504 256c0 137-111 248-248 248S8 393 8 256 119 8 256 8s248 111 248 248zm-66.2 42.6c2.5-16.1-20.2-16.6-25.2-25.7-13.6-24.1-27.7-36.8-54.5-30.4 11.6-8 23.5-6.1 23.5-6.1.3-6.4 0-13-9.4-24.9 3.9-12.5.3-22.4.3-22.4 15.5-8.6 26.8-24.4 29.1-43.2 3.6-31-18.8-59.2-49.8-62.8-22.1-2.5-43.7 7.7-54.3 25.7-23.2 40.1 1.4 70.9 22.4 81.4-14.4-1.4-34.3-11.9-40.1-34.3-6.6-25.7 2.8-49.8 8.9-61.4 0 0-4.4-5.8-8-8.9 0 0-13.8 0-24.6 5.3 11.9-15.2 25.2-14.4 25.2-14.4 0-6.4-.6-14.9-3.6-21.6-5.4-11-23.8-12.9-31.7 2.8.1-.2.3-.4.4-.5-5 11.9-1.1 55.9 16.9 87.2-2.5 1.4-9.1 6.1-13 10-21.6 9.7-56.2 60.3-56.2 60.3-28.2 10.8-77.2 50.9-70.6 79.7.3 3 1.4 5.5 3 7.5-2.8 2.2-5.5 5-8.3 8.3-11.9 13.8-5.3 35.2 17.7 24.4 15.8-7.2 29.6-20.2 36.3-30.4 0 0-5.5-5-16.3-4.4 27.7-6.6 34.3-9.4 46.2-9.1 8 3.9 8-34.3 8-34.3 0-14.7-2.2-31-11.1-41.5 12.5 12.2 29.1 32.7 28 60.6-.8 18.3-15.2 23-15.2 23-9.1 16.6-43.2 65.9-30.4 106 0 0-9.7-14.9-10.2-22.1-17.4 19.4-46.5 52.3-24.6 64.5 26.6 14.7 108.8-88.6 126.2-142.3 34.6-20.8 55.4-47.3 63.9-65 22 43.5 95.3 94.5 101.1 59z"],gripfire:[384,512,[],"f3ac","M112.5 301.4c0-73.8 105.1-122.5 105.1-203 0-47.1-34-88-39.1-90.4.4 3.3.6 6.7.6 10C179.1 110.1 32 171.9 32 286.6c0 49.8 32.2 79.2 66.5 108.3 65.1 46.7 78.1 71.4 78.1 86.6 0 10.1-4.8 17-4.8 22.3 13.1-16.7 17.4-31.9 17.5-46.4 0-29.6-21.7-56.3-44.2-86.5-16-22.3-32.6-42.6-32.6-69.5zm205.3-39c-12.1-66.8-78-124.4-94.7-130.9l4 7.2c2.4 5.1 3.4 10.9 3.4 17.1 0 44.7-54.2 111.2-56.6 116.7-2.2 5.1-3.2 10.5-3.2 15.8 0 20.1 15.2 42.1 17.9 42.1 2.4 0 56.6-55.4 58.1-87.7 6.4 11.7 9.1 22.6 9.1 33.4 0 41.2-41.8 96.9-41.8 96.9 0 11.6 31.9 53.2 35.5 53.2 1 0 2.2-1.4 3.2-2.4 37.9-39.3 67.3-85 67.3-136.8 0-8-.7-16.2-2.2-24.6z"],grunt:[384,512,[],"f3ad","M61.3 189.3c-1.1 10 5.2 19.1 5.2 19.1.7-7.5 2.2-12.8 4-16.6.4 10.3 3.2 23.5 12.8 34.1 6.9 7.6 35.6 23.3 54.9 6.1 1 2.4 2.1 5.3 3 8.5 2.9 10.3-2.7 25.3-2.7 25.3s15.1-17.1 13.9-32.5c10.8-.5 21.4-8.4 21.1-19.5 0 0-18.9 10.4-35.5-8.8-9.7-11.2-40.9-42-83.1-31.8 4.3 1 8.9 2.4 13.5 4.1h-.1c-4.2 2-6.5 7.1-7 12zm28.3-1.8c19.5 11 37.4 25.7 44.9 37-5.7 3.3-21.7 10.4-38-1.7-10.3-7.6-9.8-26.2-6.9-35.3zm142.1 45.8c-1.2 15.5 13.9 32.5 13.9 32.5s-5.6-15-2.7-25.3c.9-3.2 2-6 3-8.5 19.3 17.3 48 1.5 54.8-6.1 9.6-10.6 12.3-23.8 12.8-34.1 1.8 3.8 3.4 9.1 4 16.6 0 0 6.4-9.1 5.2-19.1-.6-5-2.9-10-7-11.8h-.1c4.6-1.8 9.2-3.2 13.5-4.1-42.3-10.2-73.4 20.6-83.1 31.8-16.7 19.2-35.5 8.8-35.5 8.8-.2 10.9 10.4 18.9 21.2 19.3zm62.7-45.8c3 9.1 3.4 27.7-7 35.4-16.3 12.1-32.2 5-37.9 1.6 7.5-11.4 25.4-26 44.9-37zM160 418.5h-29.4c-5.5 0-8.2 1.6-9.5 2.9-1.9 2-2.2 4.7-.9 8.1 3.5 9.1 11.4 16.5 13.7 18.6 3.1 2.7 7.5 4.3 11.8 4.3 4.4 0 8.3-1.7 11-4.6 7.5-8.2 11.9-17.1 13-19.8.6-1.5 1.3-4.5-.9-6.8-1.8-1.8-4.7-2.7-8.8-2.7zm189.2-101.2c-2.4 17.9-13 33.8-24.6 43.7-3.1-22.7-3.7-55.5-3.7-62.4 0-14.7 9.5-24.5 12.2-26.1 2.5-1.5 5.4-3 8.3-4.6 18-9.6 40.4-21.6 40.4-43.7 0-16.2-9.3-23.2-15.4-27.8-.8-.6-1.5-1.1-2.2-1.7-2.1-1.7-3.7-3-4.3-4.4-4.4-9.8-3.6-34.2-1.7-37.6.6-.6 16.7-20.9 11.8-39.2-2-7.4-6.9-13.3-14.1-17-5.3-2.7-11.9-4.2-19.5-4.5-.1-2-.5-3.9-.9-5.9-.6-2.6-1.1-5.3-.9-8.1.4-4.7.8-9 2.2-11.3 8.4-13.3 28.8-17.6 29-17.6l12.3-2.4-8.1-9.5c-.1-.2-17.3-17.5-46.3-17.5-7.9 0-16 1.3-24.1 3.9-24.2 7.8-42.9 30.5-49.4 39.3-3.1-1-6.3-1.9-9.6-2.7-4.2-15.8 9-38.5 9-38.5s-13.6-3-33.7 15.2c-2.6-6.5-8.1-20.5-1.8-37.2C184.6 10.1 177.2 26 175 40.4c-7.6-5.4-6.7-23.1-7.2-27.6-7.5.9-29.2 21.9-28.2 48.3-2 .5-3.9 1.1-5.9 1.7-6.5-8.8-25.1-31.5-49.4-39.3-7.9-2.2-16-3.5-23.9-3.5-29 0-46.1 17.3-46.3 17.5L6 46.9l12.3 2.4c.2 0 20.6 4.3 29 17.6 1.4 2.2 1.8 6.6 2.2 11.3.2 2.8-.4 5.5-.9 8.1-.4 1.9-.8 3.9-.9 5.9-7.7.3-14.2 1.8-19.5 4.5-7.2 3.7-12.1 9.6-14.1 17-5 18.2 11.2 38.5 11.8 39.2 1.9 3.4 2.7 27.8-1.7 37.6-.6 1.4-2.2 2.7-4.3 4.4-.7.5-1.4 1.1-2.2 1.7-6.1 4.6-15.4 11.7-15.4 27.8 0 22.1 22.4 34.1 40.4 43.7 3 1.6 5.8 3.1 8.3 4.6 2.7 1.6 12.2 11.4 12.2 26.1 0 6.9-.6 39.7-3.7 62.4-11.6-9.9-22.2-25.9-24.6-43.8 0 0-29.2 22.6-20.6 70.8 5.2 29.5 23.2 46.1 47 54.7 8.8 19.1 29.4 45.7 67.3 49.6C143 504.3 163 512 192.2 512h.2c29.1 0 49.1-7.7 63.6-19.5 37.9-3.9 58.5-30.5 67.3-49.6 23.8-8.7 41.7-25.2 47-54.7 8.2-48.4-21.1-70.9-21.1-70.9zM305.7 37.7c5.6-1.8 11.6-2.7 17.7-2.7 11 0 19.9 3 24.7 5-3.1 1.4-6.4 3.2-9.7 5.3-2.4-.4-5.6-.8-9.2-.8-10.5 0-20.5 3.1-28.7 8.9-12.3 8.7-18 16.9-20.7 22.4-2.2-1.3-4.5-2.5-7.1-3.7-1.6-.8-3.1-1.5-4.7-2.2 6.1-9.1 19.9-26.5 37.7-32.2zm21 18.2c-.8 1-1.6 2.1-2.3 3.2-3.3 5.2-3.9 11.6-4.4 17.8-.5 6.4-1.1 12.5-4.4 17-4.2.8-8.1 1.7-11.5 2.7-2.3-3.1-5.6-7-10.5-11.2 1.4-4.8 5.5-16.1 13.5-22.5 5.6-4.3 12.2-6.7 19.6-7zM45.6 45.3c-3.3-2.2-6.6-4-9.7-5.3 4.8-2 13.7-5 24.7-5 6.1 0 12 .9 17.7 2.7 17.8 5.8 31.6 23.2 37.7 32.1-1.6.7-3.2 1.4-4.8 2.2-2.5 1.2-4.9 2.5-7.1 3.7-2.6-5.4-8.3-13.7-20.7-22.4-8.3-5.8-18.2-8.9-28.8-8.9-3.4.1-6.6.5-9 .9zm44.7 40.1c-4.9 4.2-8.3 8-10.5 11.2-3.4-.9-7.3-1.9-11.5-2.7C65 89.5 64.5 83.4 64 77c-.5-6.2-1.1-12.6-4.4-17.8-.7-1.1-1.5-2.2-2.3-3.2 7.4.3 14 2.6 19.5 7 8 6.3 12.1 17.6 13.5 22.4zM58.1 259.9c-2.7-1.6-5.6-3.1-8.4-4.6-14.9-8-30.2-16.3-30.2-30.5 0-11.1 4.3-14.6 8.9-18.2l.5-.4c.7-.6 1.4-1.2 2.2-1.8-.9 7.2-1.9 13.3-2.7 14.9 0 0 12.1-15 15.7-44.3 1.4-11.5-1.1-34.3-5.1-43 .2 4.9 0 9.8-.3 14.4-.4-.8-.8-1.6-1.3-2.2-3.2-4-11.8-17.5-9.4-26.6.9-3.5 3.1-6 6.7-7.8 3.8-1.9 8.8-2.9 15.1-2.9 12.3 0 25.9 3.7 32.9 6 25.1 8 55.4 30.9 64.1 37.7.2.2.4.3.4.3l5.6 3.9-3.5-5.8c-.2-.3-19.1-31.4-53.2-46.5 2-2.9 7.4-8.1 21.6-15.1 21.4-10.5 46.5-15.8 74.3-15.8 27.9 0 52.9 5.3 74.3 15.8 14.2 6.9 19.6 12.2 21.6 15.1-34 15.1-52.9 46.2-53.1 46.5l-3.5 5.8 5.6-3.9s.2-.1.4-.3c8.7-6.8 39-29.8 64.1-37.7 7-2.2 20.6-6 32.9-6 6.3 0 11.3 1 15.1 2.9 3.5 1.8 5.7 4.4 6.7 7.8 2.5 9.1-6.1 22.6-9.4 26.6-.5.6-.9 1.3-1.3 2.2-.3-4.6-.5-9.5-.3-14.4-4 8.8-6.5 31.5-5.1 43 3.6 29.3 15.7 44.3 15.7 44.3-.8-1.6-1.8-7.7-2.7-14.9.7.6 1.5 1.2 2.2 1.8l.5.4c4.6 3.7 8.9 7.1 8.9 18.2 0 14.2-15.4 22.5-30.2 30.5-2.9 1.5-5.7 3.1-8.4 4.6-8.7 5-18 16.7-19.1 34.2-.9 14.6.9 49.9 3.4 75.9-12.4 4.8-26.7 6.4-39.7 6.8-2-4.1-3.9-8.5-5.5-13.1-.7-2-19.6-51.1-26.4-62.2 5.5 39 17.5 73.7 23.5 89.6-3.5-.5-7.3-.7-11.7-.7h-117c-4.4 0-8.3.3-11.7.7 6-15.9 18.1-50.6 23.5-89.6-6.8 11.2-25.7 60.3-26.4 62.2-1.6 4.6-3.5 9-5.5 13.1-13-.4-27.2-2-39.7-6.8 2.5-26 4.3-61.2 3.4-75.9-.9-17.4-10.3-29.2-19-34.2zM34.8 404.6c-12.1-20-8.7-54.1-3.7-59.1 10.9 34.4 47.2 44.3 74.4 45.4-2.7 4.2-5.2 7.6-7 10l-1.4 1.4c-7.2 7.8-8.6 18.5-4.1 31.8-22.7-.1-46.3-9.8-58.2-29.5zm45.7 43.5c6 1.1 12.2 1.9 18.6 2.4 3.5 8 7.4 15.9 12.3 23.1-14.4-5.9-24.4-16-30.9-25.5zM192 498.2c-60.6-.1-78.3-45.8-84.9-64.7-3.7-10.5-3.4-18.2.9-23.1 2.9-3.3 9.5-7.2 24.6-7.2h118.8c15.1 0 21.8 3.9 24.6 7.2 4.2 4.8 4.5 12.6.9 23.1-6.6 18.8-24.3 64.6-84.9 64.7zm80.6-24.6c4.9-7.2 8.8-15.1 12.3-23.1 6.4-.5 12.6-1.3 18.6-2.4-6.5 9.5-16.5 19.6-30.9 25.5zm76.6-69c-12 19.7-35.6 29.3-58.1 29.7 4.5-13.3 3.1-24.1-4.1-31.8-.4-.5-.9-1-1.4-1.5-1.8-2.4-4.3-5.8-7-10 27.2-1.2 63.5-11 74.4-45.4 5 5 8.4 39.1-3.8 59zM191.9 187.7h.2c12.7-.1 27.2-17.8 27.2-17.8-9.9 6-18.8 8.1-27.3 8.3-8.5-.2-17.4-2.3-27.3-8.3 0 0 14.5 17.6 27.2 17.8zm61.7 230.7h-29.4c-4.2 0-7.2.9-8.9 2.7-2.2 2.3-1.5 5.2-.9 6.7 1 2.6 5.5 11.3 13 19.3 2.7 2.9 6.6 4.5 11 4.5s8.7-1.6 11.8-4.2c2.3-2 10.2-9.2 13.7-18.1 1.3-3.3 1-6-.9-7.9-1.3-1.3-4-2.9-9.4-3z"],gulp:[256,512,[],"f3ae","M209.8 391.1l-14.1 24.6-4.6 80.2c0 8.9-28.3 16.1-63.1 16.1s-63.1-7.2-63.1-16.1l-5.8-79.4-14.9-25.4c41.2 17.3 126 16.7 165.6 0zm-196-253.3l13.6 125.5c5.9-20 20.8-47 40-55.2 6.3-2.7 12.7-2.7 18.7.9 5.2 3 9.6 9.3 10.1 11.8 1.2 6.5-2 9.1-4.5 9.1-3 0-5.3-4.6-6.8-7.3-4.1-7.3-10.3-7.6-16.9-2.8-6.9 5-12.9 13.4-17.1 20.7-5.1 8.8-9.4 18.5-12 28.2-1.5 5.6-2.9 14.6-.6 19.9 1 2.2 2.5 3.6 4.9 3.6 5 0 12.3-6.6 15.8-10.1 4.5-4.5 10.3-11.5 12.5-16l5.2-15.5c2.6-6.8 9.9-5.6 9.9 0 0 10.2-3.7 13.6-10 34.7-5.8 19.5-7.6 25.8-7.6 25.8-.7 2.8-3.4 7.5-6.3 7.5-1.2 0-2.1-.4-2.6-1.2-1-1.4-.9-5.3-.8-6.3.2-3.2 6.3-22.2 7.3-25.2-2 2.2-4.1 4.4-6.4 6.6-5.4 5.1-14.1 11.8-21.5 11.8-3.4 0-5.6-.9-7.7-2.4l7.6 79.6c2 5 39.2 17.1 88.2 17.1 49.1 0 86.3-12.2 88.2-17.1l10.9-94.6c-5.7 5.2-12.3 11.6-19.6 14.8-5.4 2.3-17.4 3.8-17.4-5.7 0-5.2 9.1-14.8 14.4-21.5 1.4-1.7 4.7-5.9 4.7-8.1 0-2.9-6-2.2-11.7 2.5-3.2 2.7-6.2 6.3-8.7 9.7-4.3 6-6.6 11.2-8.5 15.5-6.2 14.2-4.1 8.6-9.1 22-5 13.3-4.2 11.8-5.2 14-.9 1.9-2.2 3.5-4 4.5-1.9 1-4.5.9-6.1-.3-.9-.6-1.3-1.9-1.3-3.7 0-.9.1-1.8.3-2.7 1.5-6.1 7.8-18.1 15-34.3 1.6-3.7 1-2.6.8-2.3-6.2 6-10.9 8.9-14.4 10.5-5.8 2.6-13 2.6-14.5-4.1-.1-.4-.1-.8-.2-1.2-11.8 9.2-24.3 11.7-20-8.1-4.6 8.2-12.6 14.9-22.4 14.9-4.1 0-7.1-1.4-8.6-5.1-2.3-5.5 1.3-14.9 4.6-23.8 1.7-4.5 4-9.9 7.1-16.2 1.6-3.4 4.2-5.4 7.6-4.5.6.2 1.1.4 1.6.7 2.6 1.8 1.6 4.5.3 7.2-3.8 7.5-7.1 13-9.3 20.8-.9 3.3-2 9 1.5 9 2.4 0 4.7-.8 6.9-2.4 4.6-3.4 8.3-8.5 11.1-13.5 2-3.6 4.4-8.3 5.6-12.3.5-1.7 1.1-3.3 1.8-4.8 1.1-2.5 2.6-5.1 5.2-5.1 1.3 0 2.4.5 3.2 1.5 1.7 2.2 1.3 4.5.4 6.9-2 5.6-4.7 10.6-6.9 16.7-1.3 3.5-2.7 8-2.7 11.7 0 3.4 3.7 2.6 6.8 1.2 2.4-1.1 4.8-2.8 6.8-4.5 1.2-4.9.9-3.8 26.4-68.2 1.3-3.3 3.7-4.7 6.1-4.7 1.2 0 2.2.4 3.2 1.1 1.7 1.3 1.7 4.1 1 6.2-.7 1.9-.6 1.3-4.5 10.5-5.2 12.1-8.6 20.8-13.2 31.9-1.9 4.6-7.7 18.9-8.7 22.3-.6 2.2-1.3 5.8 1 5.8 5.4 0 19.3-13.1 23.1-17 .2-.3.5-.4.9-.6.6-1.9 1.2-3.7 1.7-5.5 1.4-3.8 2.7-8.2 5.3-11.3.8-1 1.7-1.6 2.7-1.6 2.8 0 4.2 1.2 4.2 4 0 1.1-.7 5.1-1.1 6.2 1.4-1.5 2.9-3 4.5-4.5 15-13.9 25.7-6.8 25.7.2 0 7.4-8.9 17.7-13.8 23.4-1.6 1.9-4.9 5.4-5 6.4 0 1.3.9 1.8 2.2 1.8 2 0 6.4-3.5 8-4.7 5-3.9 11.8-9.9 16.6-14.1l14.8-136.8c-30.5 17.1-197.6 17.2-228.3.2zm229.7-8.5c0 21-231.2 21-231.2 0 0-8.8 51.8-15.9 115.6-15.9 9 0 17.8.1 26.3.4l12.6-48.7L228.1.6c1.4-1.4 5.8-.2 9.9 3.5s6.6 7.9 5.3 9.3l-.1.1L185.9 74l-10 40.7c39.9 2.6 67.6 8.1 67.6 14.6zm-69.4 4.6c0-.8-.9-1.5-2.5-2.1l-.2.8c0 1.3-5 2.4-11.1 2.4s-11.1-1.1-11.1-2.4c0-.1 0-.2.1-.3l.2-.7c-1.8.6-3 1.4-3 2.3 0 2.1 6.2 3.7 13.7 3.7 7.7.1 13.9-1.6 13.9-3.7z"],"hacker-news":[448,512,[],"f1d4","M0 32v448h448V32H0zm21.2 197.2H21c.1-.1.2-.3.3-.4 0 .1 0 .3-.1.4zm218 53.9V384h-31.4V281.3L128 128h37.3c52.5 98.3 49.2 101.2 59.3 125.6 12.3-27 5.8-24.4 60.6-125.6H320l-80.8 155.1z"],"hacker-news-square":[448,512,[],"f3af","M400 32H48C21.5 32 0 53.5 0 80v352c0 26.5 21.5 48 48 48h352c26.5 0 48-21.5 48-48V80c0-26.5-21.5-48-48-48zM21.2 229.2H21c.1-.1.2-.3.3-.4 0 .1 0 .3-.1.4zm218 53.9V384h-31.4V281.3L128 128h37.3c52.5 98.3 49.2 101.2 59.3 125.6 12.3-27 5.8-24.4 60.6-125.6H320l-80.8 155.1z"],hackerrank:[512,512,[],"f5f7","M477.5 128C463 103.05 285.13 0 256.16 0S49.25 102.79 34.84 128s-14.49 230.8 0 256 192.38 128 221.32 128S463 409.08 477.49 384s14.51-231 .01-256zM316.13 414.22c-4 0-40.91-35.77-38-38.69.87-.87 6.26-1.48 17.55-1.83 0-26.23.59-68.59.94-86.32 0-2-.44-3.43-.44-5.85h-79.93c0 7.1-.46 36.2 1.37 72.88.23 4.54-1.58 6-5.74 5.94-10.13 0-20.27-.11-30.41-.08-4.1 0-5.87-1.53-5.74-6.11.92-33.44 3-84-.15-212.67v-3.17c-9.67-.35-16.38-1-17.26-1.84-2.92-2.92 34.54-38.69 38.49-38.69s41.17 35.78 38.27 38.69c-.87.87-7.9 1.49-16.77 1.84v3.16c-2.42 25.75-2 79.59-2.63 105.39h80.26c0-4.55.39-34.74-1.2-83.64-.1-3.39.95-5.17 4.21-5.2 11.07-.08 22.15-.13 33.23-.06 3.46 0 4.57 1.72 4.5 5.38C333 354.64 336 341.29 336 373.69c8.87.35 16.82 1 17.69 1.84 2.88 2.91-33.62 38.69-37.58 38.69z"],hips:[640,512,[],"f452","M251.6 157.6c0-1.9-.9-2.8-2.8-2.8h-40.9c-1.6 0-2.7 1.4-2.7 2.8v201.8c0 1.4 1.1 2.8 2.7 2.8h40.9c1.9 0 2.8-.9 2.8-2.8zM156.5 168c-16.1-11.8-36.3-17.9-60.3-18-18.1-.1-34.6 3.7-49.8 11.4V80.2c0-1.8-.9-2.7-2.8-2.7H2.7c-1.8 0-2.7.9-2.7 2.7v279.2c0 1.9.9 2.8 2.7 2.8h41c1.9 0 2.8-.9 2.8-2.8V223.3c0-.8-2.8-27 45.8-27 48.5 0 45.8 26.1 45.8 27v122.6c0 9 7.3 16.3 16.4 16.3h27.3c1.8 0 2.7-.9 2.7-2.8V223.3c0-23.4-9.3-41.8-28-55.3zm478.4 110.1c-6.8-15.7-18.4-27-34.9-34.1l-57.6-25.3c-8.6-3.6-9.2-11.2-2.6-16.1 7.4-5.5 44.3-13.9 84 6.8 1.7 1 4-.3 4-2.4v-44.7c0-1.3-.6-2.1-1.9-2.6-17.7-6.6-36.1-9.9-55.1-9.9-26.5 0-45.3 5.8-58.5 15.4-.5.4-28.4 20-22.7 53.7 3.4 19.6 15.8 34.2 37.2 43.6l53.6 23.5c11.6 5.1 15.2 13.3 12.2 21.2-3.7 9.1-13.2 13.6-36.5 13.6-24.3 0-44.7-8.9-58.4-19.1-2.1-1.4-4.4.2-4.4 2.3v34.4c0 10.4 4.9 17.3 14.6 20.7 15.6 5.5 31.6 8.2 48.2 8.2 12.7 0 25.8-1.2 36.3-4.3.7-.3 36-8.9 45.6-45.8 3.5-13.5 2.4-26.5-3.1-39.1zM376.2 149.8c-31.7 0-104.2 20.1-104.2 103.5v183.5c0 .8.6 2.7 2.7 2.7h40.9c1.9 0 2.8-.9 2.8-2.7V348c16.5 12.7 35.8 19.1 57.7 19.1 60.5 0 108.7-48.5 108.7-108.7.1-60.3-48.2-108.6-108.6-108.6zm0 170.9c-17.2 0-31.9-6.1-44-18.2-12.2-12.2-18.2-26.8-18.2-44 0-34.5 27.6-62.2 62.2-62.2 34.5 0 62.2 27.6 62.2 62.2.1 34.3-27.3 62.2-62.2 62.2zM228.3 72.5c-15.9 0-28.8 12.9-28.9 28.9 0 15.6 12.7 28.9 28.9 28.9s28.9-13.1 28.9-28.9c0-16.2-13-28.9-28.9-28.9z"],"hire-a-helper":[512,512,[],"f3b0","M443.1 0H71.9C67.9 37.3 37.4 67.8 0 71.7v371.5c37.4 4.9 66 32.4 71.9 68.8h372.2c3-36.4 32.5-65.8 67.9-69.8V71.7c-36.4-5.9-65-35.3-68.9-71.7zm-37 404.9c-36.3 0-18.8-2-55.1-2-35.8 0-21 2-56.1 2-5.9 0-4.9-8.2 0-9.8 22.8-7.6 22.9-10.2 24.6-12.8 10.4-15.6 5.9-83 5.9-113 0-5.3-6.4-12.8-13.8-12.8H200.4c-7.4 0-13.8 7.5-13.8 12.8 0 30-4.5 97.4 5.9 113 1.7 2.5 1.8 5.2 24.6 12.8 4.9 1.6 6 9.8 0 9.8-35.1 0-20.3-2-56.1-2-36.3 0-18.8 2-55.1 2-7.9 0-5.8-10.8 0-10.8 10.2-3.4 13.5-3.5 21.7-13.8 7.7-12.9 7.9-44.4 7.9-127.8V151.3c0-22.2-12.2-28.3-28.6-32.4-8.8-2.2-4-11.8 1-11.8 36.5 0 20.6 2 57.1 2 32.7 0 16.5-2 49.2-2 3.3 0 8.5 8.3 1 10.8-4.9 1.6-27.6 3.7-27.6 39.3 0 45.6-.2 55.8 1 68.8 0 1.3 2.3 12.8 12.8 12.8h109.2c10.5 0 12.8-11.5 12.8-12.8 1.2-13 1-23.2 1-68.8 0-35.6-22.7-37.7-27.6-39.3-7.5-2.5-2.3-10.8 1-10.8 32.7 0 16.5 2 49.2 2 36.5 0 20.6-2 57.1-2 4.9 0 9.9 9.6 1 11.8-16.4 4.1-28.6 10.3-28.6 32.4v101.2c0 83.4.1 114.9 7.9 127.8 8.2 10.2 11.4 10.4 21.7 13.8 5.8 0 7.8 10.8 0 10.8z"],hooli:[640,512,[],"f427","M144.5 352l38.3.8c-13.2-4.6-26-10.2-38.3-16.8zm57.7-5.3v5.3l-19.4.8c36.5 12.5 69.9 14.2 94.7 7.2-19.9.2-45.8-2.6-75.3-13.3zm408.9-115.2c15.9 0 28.9-12.9 28.9-28.9s-12.9-24.5-28.9-24.5c-15.9 0-28.9 8.6-28.9 24.5s12.9 28.9 28.9 28.9zm-29 120.5H640V241.5h-57.9zm-73.7 0h57.9V156.7L508.4 184zm-31-119.4c-18.2-18.2-50.4-17.1-50.4-17.1s-32.3-1.1-50.4 17.1c-18.2 18.2-16.8 33.9-16.8 52.6s-1.4 34.3 16.8 52.5 50.4 17.1 50.4 17.1 32.3 1.1 50.4-17.1c18.2-18.2 16.8-33.8 16.8-52.5-.1-18.8 1.3-34.5-16.8-52.6zm-39.8 71.9c0 3.6-1.8 12.5-10.7 12.5s-10.7-8.9-10.7-12.5v-40.4c0-8.7 7.3-10.9 10.7-10.9s10.7 2.1 10.7 10.9zm-106.2-71.9c-18.2-18.2-50.4-17.1-50.4-17.1s-32.2-1.1-50.4 17.1c-1.9 1.9-3.7 3.9-5.3 6-38.2-29.6-72.5-46.5-102.1-61.1v-20.7l-22.5 10.6c-54.4-22.1-89-18.2-97.3.1 0 0-24.9 32.8 61.8 110.8V352h57.9v-28.6c-6.5-4.2-13-8.7-19.4-13.6-14.8-11.2-27.4-21.6-38.4-31.4v-31c13.1 14.7 30.5 31.4 53.4 50.3l4.5 3.6v-29.8c0-6.9 1.7-18.2 10.8-18.2s10.6 6.9 10.6 15V317c18 12.2 37.3 22.1 57.7 29.6v-93.9c0-18.7-13.4-37.4-40.6-37.4-15.8-.1-30.5 8.2-38.5 21.9v-54.3c41.9 20.9 83.9 46.5 99.9 58.3-10.2 14.6-9.3 28.1-9.3 43.7 0 18.7-1.4 34.3 16.8 52.5s50.4 17.1 50.4 17.1 32.3 1.1 50.4-17.1c18.2-18.2 16.7-33.8 16.7-52.5 0-18.5 1.5-34.2-16.7-52.3zM65.2 184v63.3c-48.7-54.5-38.9-76-35.2-79.1 13.5-11.4 37.5-8 64.4 2.1zm226.5 120.5c0 3.6-1.8 12.5-10.7 12.5s-10.7-8.9-10.7-12.5v-40.4c0-8.7 7.3-10.9 10.7-10.9s10.7 2.1 10.7 10.9z"],hornbill:[512,512,[],"f592","M76.38 370.3a37.8 37.8 0 1 1-32.07-32.42c-78.28-111.35 52-190.53 52-190.53-5.86 43-8.24 91.16-8.24 91.16-67.31 41.49.93 64.06 39.81 72.87a140.38 140.38 0 0 0 131.66 91.94c1.92 0 3.77-.21 5.67-.28l.11 18.86c-99.22 1.39-158.7-29.14-188.94-51.6zm108-327.7A37.57 37.57 0 0 0 181 21.45a37.95 37.95 0 1 0-31.17 54.22c-22.55 29.91-53.83 89.57-52.42 190l21.84-.15c0-.9-.14-1.77-.14-2.68A140.42 140.42 0 0 1 207 132.71c8-37.71 30.7-114.3 73.8-44.29 0 0 48.14 2.38 91.18 8.24 0 0-77.84-128-187.59-54.06zm304.19 134.17a37.94 37.94 0 1 0-53.84-28.7C403 126.13 344.89 99 251.28 100.33l.14 22.5c2.7-.15 5.39-.41 8.14-.41a140.37 140.37 0 0 1 130.49 88.76c39.1 9 105.06 31.58 38.46 72.54 0 0-2.34 48.13-8.21 91.16 0 0 133.45-81.16 49-194.61a37.45 37.45 0 0 0 19.31-3.5zM374.06 436.24c21.43-32.46 46.42-89.69 45.14-179.66l-19.52.14c.08 2.06.3 4.07.3 6.15a140.34 140.34 0 0 1-91.39 131.45c-8.85 38.95-31.44 106.66-72.77 39.49 0 0-48.12-2.34-91.19-8.22 0 0 79.92 131.34 191.9 51a37.5 37.5 0 0 0 3.64 14 37.93 37.93 0 1 0 33.89-54.29z"],hotjar:[448,512,[],"f3b1","M414.9 161.5C340.2 29 121.1 0 121.1 0S222.2 110.4 93 197.7C11.3 252.8-21 324.4 14 402.6c26.8 59.9 83.5 84.3 144.6 93.4-29.2-55.1-6.6-122.4-4.1-129.6 57.1 86.4 165 0 110.8-93.9 71 15.4 81.6 138.6 27.1 215.5 80.5-25.3 134.1-88.9 148.8-145.6 15.5-59.3 3.7-127.9-26.3-180.9z"],houzz:[448,512,[],"f27c","M275.9 330.7H171.3V480H17V32h109.5v104.5l305.1 85.6V480H275.9z"],html5:[384,512,[],"f13b","M0 32l34.9 395.8L191.5 480l157.6-52.2L384 32H0zm308.2 127.9H124.4l4.1 49.4h175.6l-13.6 148.4-97.9 27v.3h-1.1l-98.7-27.3-6-75.8h47.7L138 320l53.5 14.5 53.7-14.5 6-62.2H84.3L71.5 112.2h241.1l-4.4 47.7z"],hubspot:[512,512,[],"f3b2","M267.4 211.6c-25.1 23.7-40.8 57.3-40.8 94.6 0 29.3 9.7 56.3 26 78L203.1 434c-4.4-1.6-9.1-2.5-14-2.5-10.8 0-20.9 4.2-28.5 11.8-7.6 7.6-11.8 17.8-11.8 28.6s4.2 20.9 11.8 28.5c7.6 7.6 17.8 11.6 28.5 11.6 10.8 0 20.9-3.9 28.6-11.6 7.6-7.6 11.8-17.8 11.8-28.5 0-4.2-.6-8.2-1.9-12.1l50-50.2c22 16.9 49.4 26.9 79.3 26.9 71.9 0 130-58.3 130-130.2 0-65.2-47.7-119.2-110.2-128.7V116c17.5-7.4 28.2-23.8 28.2-42.9 0-26.1-20.9-47.9-47-47.9S311.2 47 311.2 73.1c0 19.1 10.7 35.5 28.2 42.9v61.2c-15.2 2.1-29.6 6.7-42.7 13.6-27.6-20.9-117.5-85.7-168.9-124.8 1.2-4.4 2-9 2-13.8C129.8 23.4 106.3 0 77.4 0 48.6 0 25.2 23.4 25.2 52.2c0 28.9 23.4 52.3 52.2 52.3 9.8 0 18.9-2.9 26.8-7.6l163.2 114.7zm89.5 163.6c-38.1 0-69-30.9-69-69s30.9-69 69-69 69 30.9 69 69-30.9 69-69 69z"],ideal:[576,512,[],"f913","M125.61,165.48a49.07,49.07,0,1,0,49.06,49.06A49.08,49.08,0,0,0,125.61,165.48ZM86.15,425.84h78.94V285.32H86.15Zm151.46-211.6c0-20-10-22.53-18.74-22.53H204.82V237.5h14.05C228.62,237.5,237.61,234.69,237.61,214.24Zm201.69,46V168.93h22.75V237.5h33.69C486.5,113.08,388.61,86.19,299.67,86.19H204.84V169h14c25.6,0,41.5,17.35,41.5,45.26,0,28.81-15.52,46-41.5,46h-14V425.88h94.83c144.61,0,194.94-67.16,196.72-165.64Zm-109.75,0H273.3V169h54.43v22.73H296v10.58h30V225H296V237.5h33.51Zm74.66,0-5.16-17.67H369.31l-5.18,17.67H340.47L368,168.92h32.35l27.53,91.34ZM299.65,32H32V480H299.65c161.85,0,251-79.73,251-224.52C550.62,172,518,32,299.65,32Zm0,426.92H53.07V53.07H299.65c142.1,0,229.9,64.61,229.9,202.41C529.55,389.57,448.55,458.92,299.65,458.92Zm83.86-264.85L376,219.88H392.4l-7.52-25.81Z"],imdb:[448,512,[],"f2d8","M400 32H48C21.5 32 0 53.5 0 80v352c0 26.5 21.5 48 48 48h352c26.5 0 48-21.5 48-48V80c0-26.5-21.5-48-48-48zM21.3 229.2H21c.1-.1.2-.3.3-.4zM97 319.8H64V192h33zm113.2 0h-28.7v-86.4l-11.6 86.4h-20.6l-12.2-84.5v84.5h-29V192h42.8c3.3 19.8 6 39.9 8.7 59.9l7.6-59.9h43zm11.4 0V192h24.6c17.6 0 44.7-1.6 49 20.9 1.7 7.6 1.4 16.3 1.4 24.4 0 88.5 11.1 82.6-75 82.5zm160.9-29.2c0 15.7-2.4 30.9-22.2 30.9-9 0-15.2-3-20.9-9.8l-1.9 8.1h-29.8V192h31.7v41.7c6-6.5 12-9.2 20.9-9.2 21.4 0 22.2 12.8 22.2 30.1zM265 229.9c0-9.7 1.6-16-10.3-16v83.7c12.2.3 10.3-8.7 10.3-18.4zm85.5 26.1c0-5.4 1.1-12.7-6.2-12.7-6 0-4.9 8.9-4.9 12.7 0 .6-1.1 39.6 1.1 44.7.8 1.6 2.2 2.4 3.8 2.4 7.8 0 6.2-9 6.2-14.4z"],instagram:[448,512,[],"f16d","M224.1 141c-63.6 0-114.9 51.3-114.9 114.9s51.3 114.9 114.9 114.9S339 319.5 339 255.9 287.7 141 224.1 141zm0 189.6c-41.1 0-74.7-33.5-74.7-74.7s33.5-74.7 74.7-74.7 74.7 33.5 74.7 74.7-33.6 74.7-74.7 74.7zm146.4-194.3c0 14.9-12 26.8-26.8 26.8-14.9 0-26.8-12-26.8-26.8s12-26.8 26.8-26.8 26.8 12 26.8 26.8zm76.1 27.2c-1.7-35.9-9.9-67.7-36.2-93.9-26.2-26.2-58-34.4-93.9-36.2-37-2.1-147.9-2.1-184.9 0-35.8 1.7-67.6 9.9-93.9 36.1s-34.4 58-36.2 93.9c-2.1 37-2.1 147.9 0 184.9 1.7 35.9 9.9 67.7 36.2 93.9s58 34.4 93.9 36.2c37 2.1 147.9 2.1 184.9 0 35.9-1.7 67.7-9.9 93.9-36.2 26.2-26.2 34.4-58 36.2-93.9 2.1-37 2.1-147.8 0-184.8zM398.8 388c-7.8 19.6-22.9 34.7-42.6 42.6-29.5 11.7-99.5 9-132.1 9s-102.7 2.6-132.1-9c-19.6-7.8-34.7-22.9-42.6-42.6-11.7-29.5-9-99.5-9-132.1s-2.6-102.7 9-132.1c7.8-19.6 22.9-34.7 42.6-42.6 29.5-11.7 99.5-9 132.1-9s102.7-2.6 132.1 9c19.6 7.8 34.7 22.9 42.6 42.6 11.7 29.5 9 99.5 9 132.1s2.7 102.7-9 132.1z"],"instagram-square":[448,512,[],"f955","M224,202.66A53.34,53.34,0,1,0,277.36,256,53.38,53.38,0,0,0,224,202.66Zm124.71-41a54,54,0,0,0-30.41-30.41c-21-8.29-71-6.43-94.3-6.43s-73.25-1.93-94.31,6.43a54,54,0,0,0-30.41,30.41c-8.28,21-6.43,71.05-6.43,94.33S91,329.26,99.32,350.33a54,54,0,0,0,30.41,30.41c21,8.29,71,6.43,94.31,6.43s73.24,1.93,94.3-6.43a54,54,0,0,0,30.41-30.41c8.35-21,6.43-71.05,6.43-94.33S357.1,182.74,348.75,161.67ZM224,338a82,82,0,1,1,82-82A81.9,81.9,0,0,1,224,338Zm85.38-148.3a19.14,19.14,0,1,1,19.13-19.14A19.1,19.1,0,0,1,309.42,189.74ZM400,32H48A48,48,0,0,0,0,80V432a48,48,0,0,0,48,48H400a48,48,0,0,0,48-48V80A48,48,0,0,0,400,32ZM382.88,322c-1.29,25.63-7.14,48.34-25.85,67s-41.4,24.63-67,25.85c-26.41,1.49-105.59,1.49-132,0-25.63-1.29-48.26-7.15-67-25.85s-24.63-41.42-25.85-67c-1.49-26.42-1.49-105.61,0-132,1.29-25.63,7.07-48.34,25.85-67s41.47-24.56,67-25.78c26.41-1.49,105.59-1.49,132,0,25.63,1.29,48.33,7.15,67,25.85s24.63,41.42,25.85,67.05C384.37,216.44,384.37,295.56,382.88,322Z"],intercom:[448,512,[],"f7af","M392 32H56C25.1 32 0 57.1 0 88v336c0 30.9 25.1 56 56 56h336c30.9 0 56-25.1 56-56V88c0-30.9-25.1-56-56-56zm-108.3 82.1c0-19.8 29.9-19.8 29.9 0v199.5c0 19.8-29.9 19.8-29.9 0V114.1zm-74.6-7.5c0-19.8 29.9-19.8 29.9 0v216.5c0 19.8-29.9 19.8-29.9 0V106.6zm-74.7 7.5c0-19.8 29.9-19.8 29.9 0v199.5c0 19.8-29.9 19.8-29.9 0V114.1zM59.7 144c0-19.8 29.9-19.8 29.9 0v134.3c0 19.8-29.9 19.8-29.9 0V144zm323.4 227.8c-72.8 63-241.7 65.4-318.1 0-15-12.8 4.4-35.5 19.4-22.7 65.9 55.3 216.1 53.9 279.3 0 14.9-12.9 34.3 9.8 19.4 22.7zm5.2-93.5c0 19.8-29.9 19.8-29.9 0V144c0-19.8 29.9-19.8 29.9 0v134.3z"],"internet-explorer":[512,512,[],"f26b","M483.049 159.706c10.855-24.575 21.424-60.438 21.424-87.871 0-72.722-79.641-98.371-209.673-38.577-107.632-7.181-211.221 73.67-237.098 186.457 30.852-34.862 78.271-82.298 121.977-101.158C125.404 166.85 79.128 228.002 43.992 291.725 23.246 329.651 0 390.94 0 436.747c0 98.575 92.854 86.5 180.251 42.006 31.423 15.43 66.559 15.573 101.695 15.573 97.124 0 184.249-54.294 216.814-146.022H377.927c-52.509 88.593-196.819 52.996-196.819-47.436H509.9c6.407-43.581-1.655-95.715-26.851-141.162zM64.559 346.877c17.711 51.15 53.703 95.871 100.266 123.304-88.741 48.94-173.267 29.096-100.266-123.304zm115.977-108.873c2-55.151 50.276-94.871 103.98-94.871 53.418 0 101.981 39.72 103.981 94.871H180.536zm184.536-187.6c21.425-10.287 48.563-22.003 72.558-22.003 31.422 0 54.274 21.717 54.274 53.722 0 20.003-7.427 49.007-14.569 67.867-26.28-42.292-65.986-81.584-112.263-99.586z"],invision:[448,512,[],"f7b0","M407.4 32H40.6C18.2 32 0 50.2 0 72.6v366.8C0 461.8 18.2 480 40.6 480h366.8c22.4 0 40.6-18.2 40.6-40.6V72.6c0-22.4-18.2-40.6-40.6-40.6zM176.1 145.6c.4 23.4-22.4 27.3-26.6 27.4-14.9 0-27.1-12-27.1-27 .1-35.2 53.1-35.5 53.7-.4zM332.8 377c-65.6 0-34.1-74-25-106.6 14.1-46.4-45.2-59-59.9.7l-25.8 103.3H177l8.1-32.5c-31.5 51.8-94.6 44.4-94.6-4.3.1-14.3.9-14 23-104.1H81.7l9.7-35.6h76.4c-33.6 133.7-32.6 126.9-32.9 138.2 0 20.9 40.9 13.5 57.4-23.2l19.8-79.4h-32.3l9.7-35.6h68.8l-8.9 40.5c40.5-75.5 127.9-47.8 101.8 38-14.2 51.1-14.6 50.7-14.9 58.8 0 15.5 17.5 22.6 31.8-16.9L386 325c-10.5 36.7-29.4 52-53.2 52z"],ioxhost:[640,512,[],"f208","M616 160h-67.3C511.2 70.7 422.9 8 320 8 183 8 72 119 72 256c0 16.4 1.6 32.5 4.7 48H24c-13.3 0-24 10.8-24 24 0 13.3 10.7 24 24 24h67.3c37.5 89.3 125.8 152 228.7 152 137 0 248-111 248-248 0-16.4-1.6-32.5-4.7-48H616c13.3 0 24-10.8 24-24 0-13.3-10.7-24-24-24zm-96 96c0 110.5-89.5 200-200 200-75.7 0-141.6-42-175.5-104H424c13.3 0 24-10.8 24-24 0-13.3-10.7-24-24-24H125.8c-3.8-15.4-5.8-31.4-5.8-48 0-110.5 89.5-200 200-200 75.7 0 141.6 42 175.5 104H216c-13.3 0-24 10.8-24 24 0 13.3 10.7 24 24 24h298.2c3.8 15.4 5.8 31.4 5.8 48zm-304-24h208c13.3 0 24 10.7 24 24 0 13.2-10.7 24-24 24H216c-13.3 0-24-10.7-24-24 0-13.2 10.7-24 24-24z"],"itch-io":[512,512,[],"f83a","M71.92 34.77C50.2 47.67 7.4 96.84 7 109.73v21.34c0 27.06 25.29 50.84 48.25 50.84 27.57 0 50.54-22.85 50.54-50 0 27.12 22.18 50 49.76 50s49-22.85 49-50c0 27.12 23.59 50 51.16 50h.5c27.57 0 51.16-22.85 51.16-50 0 27.12 21.47 50 49 50s49.76-22.85 49.76-50c0 27.12 23 50 50.54 50 23 0 48.25-23.78 48.25-50.84v-21.34c-.4-12.9-43.2-62.07-64.92-75C372.56 32.4 325.76 32 256 32S91.14 33.1 71.92 34.77zm132.32 134.39c-22 38.4-77.9 38.71-99.85.25-13.17 23.14-43.17 32.07-56 27.66-3.87 40.15-13.67 237.13 17.73 269.15 80 18.67 302.08 18.12 379.76 0 31.65-32.27 21.32-232 17.75-269.15-12.92 4.44-42.88-4.6-56-27.66-22 38.52-77.85 38.1-99.85-.24-7.1 12.49-23.05 28.94-51.76 28.94a57.54 57.54 0 0 1-51.75-28.94zm-41.58 53.77c16.47 0 31.09 0 49.22 19.78a436.91 436.91 0 0 1 88.18 0C318.22 223 332.85 223 349.31 223c52.33 0 65.22 77.53 83.87 144.45 17.26 62.15-5.52 63.67-33.95 63.73-42.15-1.57-65.49-32.18-65.49-62.79-39.25 6.43-101.93 8.79-155.55 0 0 30.61-23.34 61.22-65.49 62.79-28.42-.06-51.2-1.58-33.94-63.73 18.67-67 31.56-144.45 83.88-144.45zM256 270.79s-44.38 40.77-52.35 55.21l29-1.17v25.32c0 1.55 21.34.16 23.33.16 11.65.54 23.31 1 23.31-.16v-25.28l29 1.17c-8-14.48-52.35-55.24-52.35-55.24z"],itunes:[448,512,[],"f3b4","M223.6 80.3C129 80.3 52.5 157 52.5 251.5S129 422.8 223.6 422.8s171.2-76.7 171.2-171.2c0-94.6-76.7-171.3-171.2-171.3zm79.4 240c-3.2 13.6-13.5 21.2-27.3 23.8-12.1 2.2-22.2 2.8-31.9-5-11.8-10-12-26.4-1.4-36.8 8.4-8 20.3-9.6 38-12.8 3-.5 5.6-1.2 7.7-3.7 3.2-3.6 2.2-2 2.2-80.8 0-5.6-2.7-7.1-8.4-6.1-4 .7-91.9 17.1-91.9 17.1-5 1.1-6.7 2.6-6.7 8.3 0 116.1.5 110.8-1.2 118.5-2.1 9-7.6 15.8-14.9 19.6-8.3 4.6-23.4 6.6-31.4 5.2-21.4-4-28.9-28.7-14.4-42.9 8.4-8 20.3-9.6 38-12.8 3-.5 5.6-1.2 7.7-3.7 5-5.7.9-127 2.6-133.7.4-2.6 1.5-4.8 3.5-6.4 2.1-1.7 5.8-2.7 6.7-2.7 101-19 113.3-21.4 115.1-21.4 5.7-.4 9 3 9 8.7-.1 170.6.4 161.4-1 167.6zM345.2 32H102.8C45.9 32 0 77.9 0 134.8v242.4C0 434.1 45.9 480 102.8 480h242.4c57 0 102.8-45.9 102.8-102.8V134.8C448 77.9 402.1 32 345.2 32zM223.6 444c-106.3 0-192.5-86.2-192.5-192.5S117.3 59 223.6 59s192.5 86.2 192.5 192.5S329.9 444 223.6 444z"],"itunes-note":[384,512,[],"f3b5","M381.9 388.2c-6.4 27.4-27.2 42.8-55.1 48-24.5 4.5-44.9 5.6-64.5-10.2-23.9-20.1-24.2-53.4-2.7-74.4 17-16.2 40.9-19.5 76.8-25.8 6-1.1 11.2-2.5 15.6-7.4 6.4-7.2 4.4-4.1 4.4-163.2 0-11.2-5.5-14.3-17-12.3-8.2 1.4-185.7 34.6-185.7 34.6-10.2 2.2-13.4 5.2-13.4 16.7 0 234.7 1.1 223.9-2.5 239.5-4.2 18.2-15.4 31.9-30.2 39.5-16.8 9.3-47.2 13.4-63.4 10.4-43.2-8.1-58.4-58-29.1-86.6 17-16.2 40.9-19.5 76.8-25.8 6-1.1 11.2-2.5 15.6-7.4 10.1-11.5 1.8-256.6 5.2-270.2.8-5.2 3-9.6 7.1-12.9 4.2-3.5 11.8-5.5 13.4-5.5 204-38.2 228.9-43.1 232.4-43.1 11.5-.8 18.1 6 18.1 17.6.2 344.5 1.1 326-1.8 338.5z"],java:[384,512,[],"f4e4","M277.74 312.9c9.8-6.7 23.4-12.5 23.4-12.5s-38.7 7-77.2 10.2c-47.1 3.9-97.7 4.7-123.1 1.3-60.1-8 33-30.1 33-30.1s-36.1-2.4-80.6 19c-52.5 25.4 130 37 224.5 12.1zm-85.4-32.1c-19-42.7-83.1-80.2 0-145.8C296 53.2 242.84 0 242.84 0c21.5 84.5-75.6 110.1-110.7 162.6-23.9 35.9 11.7 74.4 60.2 118.2zm114.6-176.2c.1 0-175.2 43.8-91.5 140.2 24.7 28.4-6.5 54-6.5 54s62.7-32.4 33.9-72.9c-26.9-37.8-47.5-56.6 64.1-121.3zm-6.1 270.5a12.19 12.19 0 0 1-2 2.6c128.3-33.7 81.1-118.9 19.8-97.3a17.33 17.33 0 0 0-8.2 6.3 70.45 70.45 0 0 1 11-3c31-6.5 75.5 41.5-20.6 91.4zM348 437.4s14.5 11.9-15.9 21.2c-57.9 17.5-240.8 22.8-291.6.7-18.3-7.9 16-19 26.8-21.3 11.2-2.4 17.7-2 17.7-2-20.3-14.3-131.3 28.1-56.4 40.2C232.84 509.4 401 461.3 348 437.4zM124.44 396c-78.7 22 47.9 67.4 148.1 24.5a185.89 185.89 0 0 1-28.2-13.8c-44.7 8.5-65.4 9.1-106 4.5-33.5-3.8-13.9-15.2-13.9-15.2zm179.8 97.2c-78.7 14.8-175.8 13.1-233.3 3.6 0-.1 11.8 9.7 72.4 13.6 92.2 5.9 233.8-3.3 237.1-46.9 0 0-6.4 16.5-76.2 29.7zM260.64 353c-59.2 11.4-93.5 11.1-136.8 6.6-33.5-3.5-11.6-19.7-11.6-19.7-86.8 28.8 48.2 61.4 169.5 25.9a60.37 60.37 0 0 1-21.1-12.8z"],"jedi-order":[448,512,[],"f50e","M398.5 373.6c95.9-122.1 17.2-233.1 17.2-233.1 45.4 85.8-41.4 170.5-41.4 170.5 105-171.5-60.5-271.5-60.5-271.5 96.9 72.7-10.1 190.7-10.1 190.7 85.8 158.4-68.6 230.1-68.6 230.1s-.4-16.9-2.2-85.7c4.3 4.5 34.5 36.2 34.5 36.2l-24.2-47.4 62.6-9.1-62.6-9.1 20.2-55.5-31.4 45.9c-2.2-87.7-7.8-305.1-7.9-306.9v-2.4 1-1 2.4c0 1-5.6 219-7.9 306.9l-31.4-45.9 20.2 55.5-62.6 9.1 62.6 9.1-24.2 47.4 34.5-36.2c-1.8 68.8-2.2 85.7-2.2 85.7s-154.4-71.7-68.6-230.1c0 0-107-118.1-10.1-190.7 0 0-165.5 99.9-60.5 271.5 0 0-86.8-84.8-41.4-170.5 0 0-78.7 111 17.2 233.1 0 0-26.2-16.1-49.4-77.7 0 0 16.9 183.3 222 185.7h4.1c205-2.4 222-185.7 222-185.7-23.6 61.5-49.9 77.7-49.9 77.7z"],jenkins:[512,512,[],"f3b6","M487.1 425c-1.4-11.2-19-23.1-28.2-31.9-5.1-5-29-23.1-30.4-29.9-1.4-6.6 9.7-21.5 13.3-28.9 5.1-10.7 8.8-23.7 11.3-32.6 18.8-66.1 20.7-156.9-6.2-211.2-10.2-20.6-38.6-49-56.4-62.5-42-31.7-119.6-35.3-170.1-16.6-14.1 5.2-27.8 9.8-40.1 17.1-33.1 19.4-68.3 32.5-78.1 71.6-24.2 10.8-31.5 41.8-30.3 77.8.2 7 4.1 15.8 2.7 22.4-.7 3.3-5.2 7.6-6.1 9.8-11.6 27.7-2.3 64 11.1 83.7 8.1 11.9 21.5 22.4 39.2 25.2.7 10.6 3.3 19.7 8.2 30.4 3.1 6.8 14.7 19 10.4 27.7-2.2 4.4-21 13.8-27.3 17.6C89 407.2 73.7 415 54.2 429c-12.6 9-32.3 10.2-29.2 31.1 2.1 14.1 10.1 31.6 14.7 45.8.7 2 1.4 4.1 2.1 6h422c4.9-15.3 9.7-30.9 14.6-47.2 3.4-11.4 10.2-27.8 8.7-39.7zM205.9 33.7c1.8-.5 3.4.7 4.9 2.4-.2 5.2-5.4 5.1-8.9 6.8-5.4 6.7-13.4 9.8-20 17.2-6.8 7.5-14.4 27.7-23.4 30-4.5 1.1-9.7-.8-13.6-.5-10.4.7-17.7 6-28.3 7.5 13.6-29.9 56.1-54 89.3-63.4zm-104.8 93.6c13.5-14.9 32.1-24.1 54.8-25.9 11.7 29.7-8.4 65-.9 97.6 2.3 9.9 10.2 25.4-2.4 25.7.3-28.3-34.8-46.3-61.3-29.6-1.8-21.5-4.9-51.7 9.8-67.8zm36.7 200.2c-1-4.1-2.7-12.9-2.3-15.1 1.6-8.7 17.1-12.5 11-24.7-11.3-.1-13.8 10.2-24.1 11.3-26.7 2.6-45.6-35.4-44.4-58.4 1-19.5 17.6-38.2 40.1-35.8 16 1.8 21.4 19.2 24.5 34.7 9.2.5 22.5-.4 26.9-7.6-.6-17.5-8.8-31.6-8.2-47.7 1-30.3 17.5-57.6 4.8-87.4 13.6-30.9 53.5-55.3 83.1-70 36.6-18.3 94.9-3.7 129.3 15.8 19.7 11.1 34.4 32.7 48.3 50.7-19.5-5.8-36.1 4.2-33.1 20.3 16.3-14.9 44.2-.2 52.5 16.4 7.9 15.8 7.8 39.3 9 62.8 2.9 57-10.4 115.9-39.1 157.1-7.7 11-14.1 23-24.9 30.6-26 18.2-65.4 34.7-99.2 23.4-44.7-15-65-44.8-89.5-78.8.7 18.7 13.8 34.1 26.8 48.4 11.3 12.5 25 26.6 39.7 32.4-12.3-2.9-31.1-3.8-36.2 7.2-28.6-1.9-55.1-4.8-68.7-24.2-10.6-15.4-21.4-41.4-26.3-61.4zm222 124.1c4.1-3 11.1-2.9 17.4-3.6-5.4-2.7-13-3.7-19.3-2.2-.1-4.2-2-6.8-3.2-10.2 10.6-3.8 35.5-28.5 49.6-20.3 6.7 3.9 9.5 26.2 10.1 37 .4 9-.8 18-4.5 22.8-18.8-.6-35.8-2.8-50.7-7 .9-6.1-1-12.1.6-16.5zm-17.2-20c-16.8.8-26-1.2-38.3-10.8.2-.8 1.4-.5 1.5-1.4 18 8 40.8-3.3 59-4.9-7.9 5.1-14.6 11.6-22.2 17.1zm-12.1 33.2c-1.6-9.4-3.5-12-2.8-20.2 25-16.6 29.7 28.6 2.8 20.2zM226 438.6c-11.6-.7-48.1-14-38.5-23.7 9.4 6.5 27.5 4.9 41.3 7.3.8 4.4-2.8 10.2-2.8 16.4zM57.7 497.1c-4.3-12.7-9.2-25.1-14.8-36.9 30.8-23.8 65.3-48.9 102.2-63.5 2.8-1.1 23.2 25.4 26.2 27.6 16.5 11.7 37 21 56.2 30.2 1.2 8.8 3.9 20.2 8.7 35.5.7 2.3 1.4 4.7 2.2 7.2H57.7zm240.6 5.7h-.8c.3-.2.5-.4.8-.5v.5zm7.5-5.7c2.1-1.4 4.3-2.8 6.4-4.3 1.1 1.4 2.2 2.8 3.2 4.3h-9.6zm15.1-24.7c-10.8 7.3-20.6 18.3-33.3 25.2-6 3.3-27 11.7-33.4 10.2-3.6-.8-3.9-5.3-5.4-9.5-3.1-9-10.1-23.4-10.8-37-.8-17.2-2.5-46 16-42.4 14.9 2.9 32.3 9.7 43.9 16.1 7.1 3.9 11.1 8.6 21.9 9.5-.1 1.4-.1 2.8-.2 4.3-5.9 3.9-15.3 3.8-21.8 7.1 9.5.4 17 2.7 23.5 5.9-.1 3.4-.3 7-.4 10.6zm53.4 24.7h-14c-.1-3.2-2.8-5.8-6.1-5.8s-5.9 2.6-6.1 5.8h-17.4c-2.8-4.4-5.7-8.6-8.9-12.5 2.1-2.2 4-4.7 6-6.9 9 3.7 14.8-4.9 21.7-4.2 7.9.8 14.2 11.7 25.4 11l-.6 12.6zm8.7 0c.2-4 .4-7.8.6-11.5 15.6-7.3 29 1.3 35.7 11.5H383zm83.4-37c-2.3 11.2-5.8 24-9.9 37.1-.2-.1-.4-.1-.6-.1H428c.6-1.1 1.2-2.2 1.9-3.3-2.6-6.1-9-8.7-10.9-15.5 12.1-22.7 6.5-93.4-24.2-78.5 4.3-6.3 15.6-11.5 20.8-19.3 13 10.4 20.8 20.3 33.2 31.4 6.8 6 20 13.3 21.4 23.1.8 5.5-2.6 18.9-3.8 25.1zM222.2 130.5c5.4-14.9 27.2-34.7 45-32 7.7 1.2 18 8.2 12.2 17.7-30.2-7-45.2 12.6-54.4 33.1-8.1-2-4.9-13.1-2.8-18.8zm184.1 63.1c8.2-3.6 22.4-.7 29.6-5.3-4.2-11.5-10.3-21.4-9.3-37.7.5 0 1 0 1.4.1 6.8 14.2 12.7 29.2 21.4 41.7-5.7 13.5-43.6 25.4-43.1 1.2zm20.4-43zm-117.2 45.7c-6.8-10.9-19-32.5-14.5-45.3 6.5 11.9 8.6 24.4 17.8 33.3 4.1 4 12.2 9 8.2 20.2-.9 2.7-7.8 8.6-11.7 9.7-14.4 4.3-47.9.9-36.6-17.1 11.9.7 27.9 7.8 36.8-.8zm27.3 70c3.8 6.6 1.4 18.7 12.1 20.6 20.2 3.4 43.6-12.3 58.1-17.8 9-15.2-.8-20.7-8.9-30.5-16.6-20-38.8-44.8-38-74.7 6.7-4.9 7.3 7.4 8.2 9.7 8.7 20.3 30.4 46.2 46.3 63.5 3.9 4.3 10.3 8.4 11 11.2 2.1 8.2-5.4 18-4.5 23.5-21.7 13.9-45.8 29.1-81.4 25.6-7.4-6.7-10.3-21.4-2.9-31.1zm-201.3-9.2c-6.8-3.9-8.4-21-16.4-21.4-11.4-.7-9.3 22.2-9.3 35.5-7.8-7.1-9.2-29.1-3.5-40.3-6.6-3.2-9.5 3.6-13.1 5.9 4.7-34.1 49.8-15.8 42.3 20.3zm299.6 28.8c-10.1 19.2-24.4 40.4-54 41-.6-6.2-1.1-15.6 0-19.4 22.7-2.2 36.6-13.7 54-21.6zm-141.9 12.4c18.9 9.9 53.6 11 79.3 10.2 1.4 5.6 1.3 12.6 1.4 19.4-33 1.8-72-6.4-80.7-29.6zm92.2 46.7c-1.7 4.3-5.3 9.3-9.8 11.1-12.1 4.9-45.6 8.7-62.4-.3-10.7-5.7-17.5-18.5-23.4-26-2.8-3.6-16.9-12.9-.2-12.9 13.1 32.7 58 29 95.8 28.1z"],jira:[496,512,[],"f7b1","M490 241.7C417.1 169 320.6 71.8 248.5 0 83 164.9 6 241.7 6 241.7c-7.9 7.9-7.9 20.7 0 28.7C138.8 402.7 67.8 331.9 248.5 512c379.4-378 15.7-16.7 241.5-241.7 8-7.9 8-20.7 0-28.6zm-241.5 90l-76-75.7 76-75.7 76 75.7-76 75.7z"],joget:[496,512,[],"f3b7","M378.1 45C337.6 19.9 292.6 8 248.2 8 165 8 83.8 49.9 36.9 125.9c-71.9 116.6-35.6 269.3 81 341.2s269.3 35.6 341.2-80.9c71.9-116.6 35.6-269.4-81-341.2zm51.8 323.2c-40.4 65.5-110.4 101.5-182 101.5-6.8 0-13.6-.4-20.4-1-9-13.6-19.9-33.3-23.7-42.4-5.7-13.7-27.2-45.6 31.2-67.1 51.7-19.1 176.7-16.5 208.8-17.6-4 9-8.6 17.9-13.9 26.6zm-200.8-86.3c-55.5-1.4-81.7-20.8-58.5-48.2s51.1-40.7 68.9-51.2c17.9-10.5 27.3-33.7-23.6-29.7C87.3 161.5 48.6 252.1 37.6 293c-8.8-49.7-.1-102.7 28.5-149.1C128 43.4 259.6 12.2 360.1 74.1c74.8 46.1 111.2 130.9 99.3 212.7-24.9-.5-179.3-3.6-230.3-4.9zm183.8-54.8c-22.7-6-57 11.3-86.7 27.2-29.7 15.8-31.1 8.2-31.1 8.2s40.2-28.1 50.7-34.5 31.9-14 13.4-24.6c-3.2-1.8-6.7-2.7-10.4-2.7-17.8 0-41.5 18.7-67.5 35.6-31.5 20.5-65.3 31.3-65.3 31.3l169.5-1.6 46.5-23.4s3.6-9.5-19.1-15.5z"],joomla:[448,512,[],"f1aa","M.6 92.1C.6 58.8 27.4 32 60.4 32c30 0 54.5 21.9 59.2 50.2 32.6-7.6 67.1.6 96.5 30l-44.3 44.3c-20.5-20.5-42.6-16.3-55.4-3.5-14.3 14.3-14.3 37.9 0 52.2l99.5 99.5-44 44.3c-87.7-87.2-49.7-49.7-99.8-99.7-26.8-26.5-35-64.8-24.8-98.9C20.4 144.6.6 120.7.6 92.1zm129.5 116.4l44.3 44.3c10-10 89.7-89.7 99.7-99.8 14.3-14.3 37.6-14.3 51.9 0 12.8 12.8 17 35-3.5 55.4l44 44.3c31.2-31.2 38.5-67.6 28.9-101.2 29.2-4.1 51.9-29.2 51.9-59.5 0-33.2-26.8-60.1-59.8-60.1-30.3 0-55.4 22.5-59.5 51.6-33.8-9.9-71.7-1.5-98.3 25.1-18.3 19.1-71.1 71.5-99.6 99.9zm266.3 152.2c8.2-32.7-.9-68.5-26.3-93.9-11.8-12.2 5 4.7-99.5-99.7l-44.3 44.3 99.7 99.7c14.3 14.3 14.3 37.6 0 51.9-12.8 12.8-35 17-55.4-3.5l-44 44.3c27.6 30.2 68 38.8 102.7 28 5.5 27.4 29.7 48.1 58.9 48.1 33 0 59.8-26.8 59.8-60.1 0-30.2-22.5-55-51.6-59.1zm-84.3-53.1l-44-44.3c-87 86.4-50.4 50.4-99.7 99.8-14.3 14.3-37.6 14.3-51.9 0-13.1-13.4-16.9-35.3 3.2-55.4l-44-44.3c-30.2 30.2-38 65.2-29.5 98.3-26.7 6-46.2 29.9-46.2 58.2C0 453.2 26.8 480 59.8 480c28.6 0 52.5-19.8 58.6-46.7 32.7 8.2 68.5-.6 94.2-26 32.1-32 12.2-12.4 99.5-99.7z"],js:[448,512,[],"f3b8","M0 32v448h448V32H0zm243.8 349.4c0 43.6-25.6 63.5-62.9 63.5-33.7 0-53.2-17.4-63.2-38.5l34.3-20.7c6.6 11.7 12.6 21.6 27.1 21.6 13.8 0 22.6-5.4 22.6-26.5V237.7h42.1v143.7zm99.6 63.5c-39.1 0-64.4-18.6-76.7-43l34.3-19.8c9 14.7 20.8 25.6 41.5 25.6 17.4 0 28.6-8.7 28.6-20.8 0-14.4-11.4-19.5-30.7-28l-10.5-4.5c-30.4-12.9-50.5-29.2-50.5-63.5 0-31.6 24.1-55.6 61.6-55.6 26.8 0 46 9.3 59.8 33.7L368 290c-7.2-12.9-15-18-27.1-18-12.3 0-20.1 7.8-20.1 18 0 12.6 7.8 17.7 25.9 25.6l10.5 4.5c35.8 15.3 55.9 31 55.9 66.2 0 37.8-29.8 58.6-69.7 58.6z"],"js-square":[448,512,[],"f3b9","M400 32H48C21.5 32 0 53.5 0 80v352c0 26.5 21.5 48 48 48h352c26.5 0 48-21.5 48-48V80c0-26.5-21.5-48-48-48zM243.8 381.4c0 43.6-25.6 63.5-62.9 63.5-33.7 0-53.2-17.4-63.2-38.5l34.3-20.7c6.6 11.7 12.6 21.6 27.1 21.6 13.8 0 22.6-5.4 22.6-26.5V237.7h42.1v143.7zm99.6 63.5c-39.1 0-64.4-18.6-76.7-43l34.3-19.8c9 14.7 20.8 25.6 41.5 25.6 17.4 0 28.6-8.7 28.6-20.8 0-14.4-11.4-19.5-30.7-28l-10.5-4.5c-30.4-12.9-50.5-29.2-50.5-63.5 0-31.6 24.1-55.6 61.6-55.6 26.8 0 46 9.3 59.8 33.7L368 290c-7.2-12.9-15-18-27.1-18-12.3 0-20.1 7.8-20.1 18 0 12.6 7.8 17.7 25.9 25.6l10.5 4.5c35.8 15.3 55.9 31 55.9 66.2 0 37.8-29.8 58.6-69.7 58.6z"],jsfiddle:[576,512,[],"f1cc","M510.634 237.462c-4.727-2.621-5.664-5.748-6.381-10.776-2.352-16.488-3.539-33.619-9.097-49.095-35.895-99.957-153.99-143.386-246.849-91.646-27.37 15.25-48.971 36.369-65.493 63.903-3.184-1.508-5.458-2.71-7.824-3.686-30.102-12.421-59.049-10.121-85.331 9.167-25.531 18.737-36.422 44.548-32.676 76.408.355 3.025-1.967 7.621-4.514 9.545-39.712 29.992-56.031 78.065-41.902 124.615 13.831 45.569 57.514 79.796 105.608 81.433 30.291 1.031 60.637.546 90.959.539 84.041-.021 168.09.531 252.12-.48 52.664-.634 96.108-36.873 108.212-87.293 11.54-48.074-11.144-97.3-56.832-122.634zm21.107 156.88c-18.23 22.432-42.343 35.253-71.28 35.65-56.874.781-113.767.23-170.652.23 0 .7-163.028.159-163.728.154-43.861-.332-76.739-19.766-95.175-59.995-18.902-41.245-4.004-90.848 34.186-116.106 9.182-6.073 12.505-11.566 10.096-23.136-5.49-26.361 4.453-47.956 26.42-62.981 22.987-15.723 47.422-16.146 72.034-3.083 10.269 5.45 14.607 11.564 22.198-2.527 14.222-26.399 34.557-46.727 60.671-61.294 97.46-54.366 228.37 7.568 230.24 132.697.122 8.15 2.412 12.428 9.848 15.894 57.56 26.829 74.456 96.122 35.142 144.497zm-87.789-80.499c-5.848 31.157-34.622 55.096-66.666 55.095-16.953-.001-32.058-6.545-44.079-17.705-27.697-25.713-71.141-74.98-95.937-93.387-20.056-14.888-41.99-12.333-60.272 3.782-49.996 44.071 15.859 121.775 67.063 77.188 4.548-3.96 7.84-9.543 12.744-12.844 8.184-5.509 20.766-.884 13.168 10.622-17.358 26.284-49.33 38.197-78.863 29.301-28.897-8.704-48.84-35.968-48.626-70.179 1.225-22.485 12.364-43.06 35.414-55.965 22.575-12.638 46.369-13.146 66.991 2.474C295.68 280.7 320.467 323.97 352.185 343.47c24.558 15.099 54.254 7.363 68.823-17.506 28.83-49.209-34.592-105.016-78.868-63.46-3.989 3.744-6.917 8.932-11.41 11.72-10.975 6.811-17.333-4.113-12.809-10.353 20.703-28.554 50.464-40.44 83.271-28.214 31.429 11.714 49.108 44.366 42.76 78.186z"],kaggle:[320,512,[],"f5fa","M304.2 501.5L158.4 320.3 298.2 185c2.6-2.7 1.7-10.5-5.3-10.5h-69.2c-3.5 0-7 1.8-10.5 5.3L80.9 313.5V7.5q0-7.5-7.5-7.5H21.5Q14 0 14 7.5v497q0 7.5 7.5 7.5h51.9q7.5 0 7.5-7.5v-109l30.8-29.3 110.5 140.6c3 3.5 6.5 5.3 10.5 5.3h66.9q5.25 0 6-3z"],keybase:[448,512,[],"f4f5","M286.17 419a18 18 0 1 0 18 18 18 18 0 0 0-18-18zm111.92-147.6c-9.5-14.62-39.37-52.45-87.26-73.71q-9.1-4.06-18.38-7.27a78.43 78.43 0 0 0-47.88-104.13c-12.41-4.1-23.33-6-32.41-5.77-.6-2-1.89-11 9.4-35L198.66 32l-5.48 7.56c-8.69 12.06-16.92 23.55-24.34 34.89a51 51 0 0 0-8.29-1.25c-41.53-2.45-39-2.33-41.06-2.33-50.61 0-50.75 52.12-50.75 45.88l-2.36 36.68c-1.61 27 19.75 50.21 47.63 51.85l8.93.54a214 214 0 0 0-46.29 35.54C14 304.66 14 374 14 429.77v33.64l23.32-29.8a148.6 148.6 0 0 0 14.56 37.56c5.78 10.13 14.87 9.45 19.64 7.33 4.21-1.87 10-6.92 3.75-20.11a178.29 178.29 0 0 1-15.76-53.13l46.82-59.83-24.66 74.11c58.23-42.4 157.38-61.76 236.25-38.59 34.2 10.05 67.45.69 84.74-23.84.72-1 1.2-2.16 1.85-3.22a156.09 156.09 0 0 1 2.8 28.43c0 23.3-3.69 52.93-14.88 81.64-2.52 6.46 1.76 14.5 8.6 15.74 7.42 1.57 15.33-3.1 18.37-11.15C429 443 434 414 434 382.32c0-38.58-13-77.46-35.91-110.92zM142.37 128.58l-15.7-.93-1.39 21.79 13.13.78a93 93 0 0 0 .32 19.57l-22.38-1.34a12.28 12.28 0 0 1-11.76-12.79L107 119c1-12.17 13.87-11.27 13.26-11.32l29.11 1.73a144.35 144.35 0 0 0-7 19.17zm148.42 172.18a10.51 10.51 0 0 1-14.35-1.39l-9.68-11.49-34.42 27a8.09 8.09 0 0 1-11.13-1.08l-15.78-18.64a7.38 7.38 0 0 1 1.34-10.34l34.57-27.18-14.14-16.74-17.09 13.45a7.75 7.75 0 0 1-10.59-1s-3.72-4.42-3.8-4.53a7.38 7.38 0 0 1 1.37-10.34L214 225.19s-18.51-22-18.6-22.14a9.56 9.56 0 0 1 1.74-13.42 10.38 10.38 0 0 1 14.3 1.37l81.09 96.32a9.58 9.58 0 0 1-1.74 13.44zM187.44 419a18 18 0 1 0 18 18 18 18 0 0 0-18-18z"],keycdn:[512,512,[],"f3ba","M63.8 409.3l60.5-59c32.1 42.8 71.1 66 126.6 67.4 30.5.7 60.3-7 86.4-22.4 5.1 5.3 18.5 19.5 20.9 22-32.2 20.7-69.6 31.1-108.1 30.2-43.3-1.1-84.6-16.7-117.7-44.4.3-.6-38.2 37.5-38.6 37.9 9.5 29.8-13.1 62.4-46.3 62.4C20.7 503.3 0 481.7 0 454.9c0-34.3 33.1-56.6 63.8-45.6zm354.9-252.4c19.1 31.3 29.6 67.4 28.7 104-1.1 44.8-19 87.5-48.6 121 .3.3 23.8 25.2 24.1 25.5 9.6-1.3 19.2 2 25.9 9.1 11.3 12 10.9 30.9-1.1 42.4-12 11.3-30.9 10.9-42.4-1.1-6.7-7-9.4-16.8-7.6-26.3-24.9-26.6-44.4-47.2-44.4-47.2 42.7-34.1 63.3-79.6 64.4-124.2.7-28.9-7.2-57.2-21.1-82.2l22.1-21zM104 53.1c6.7 7 9.4 16.8 7.6 26.3l45.9 48.1c-4.7 3.8-13.3 10.4-22.8 21.3-25.4 28.5-39.6 64.8-40.7 102.9-.7 28.9 6.1 57.2 20 82.4l-22 21.5C72.7 324 63.1 287.9 64.2 250.9c1-44.6 18.3-87.6 47.5-121.1l-25.3-26.4c-9.6 1.3-19.2-2-25.9-9.1-11.3-12-10.9-30.9 1.1-42.4C73.5 40.7 92.2 41 104 53.1zM464.9 8c26 0 47.1 22.4 47.1 48.3S490.9 104 464.9 104c-6.3.1-14-1.1-15.9-1.8l-62.9 59.7c-32.7-43.6-76.7-65.9-126.9-67.2-30.5-.7-60.3 6.8-86.2 22.4l-21.1-22C184.1 74.3 221.5 64 260 64.9c43.3 1.1 84.6 16.7 117.7 44.6l41.1-38.6c-1.5-4.7-2.2-9.6-2.2-14.5C416.5 29.7 438.9 8 464.9 8zM256.7 113.4c5.5 0 10.9.4 16.4 1.1 78.1 9.8 133.4 81.1 123.8 159.1-9.8 78.1-81.1 133.4-159.1 123.8-78.1-9.8-133.4-81.1-123.8-159.2 9.3-72.4 70.1-124.6 142.7-124.8zm-59 119.4c.6 22.7 12.2 41.8 32.4 52.2l-11 51.7h73.7l-11-51.7c20.1-10.9 32.1-29 32.4-52.2-.4-32.8-25.8-57.5-58.3-58.3-32.1.8-57.3 24.8-58.2 58.3zM256 160"],kickstarter:[448,512,[],"f3bb","M400 480H48c-26.4 0-48-21.6-48-48V80c0-26.4 21.6-48 48-48h352c26.4 0 48 21.6 48 48v352c0 26.4-21.6 48-48 48zM199.6 178.5c0-30.7-17.6-45.1-39.7-45.1-25.8 0-40 19.8-40 44.5v154.8c0 25.8 13.7 45.6 40.5 45.6 21.5 0 39.2-14 39.2-45.6v-41.8l60.6 75.7c12.3 14.9 39 16.8 55.8 0 14.6-15.1 14.8-36.8 4-50.4l-49.1-62.8 40.5-58.7c9.4-13.5 9.5-34.5-5.6-49.1-16.4-15.9-44.6-17.3-61.4 7l-44.8 64.7v-38.8z"],"kickstarter-k":[384,512,[],"f3bc","M147.3 114.4c0-56.2-32.5-82.4-73.4-82.4C26.2 32 0 68.2 0 113.4v283c0 47.3 25.3 83.4 74.9 83.4 39.8 0 72.4-25.6 72.4-83.4v-76.5l112.1 138.3c22.7 27.2 72.1 30.7 103.2 0 27-27.6 27.3-67.4 7.4-92.2l-90.8-114.8 74.9-107.4c17.4-24.7 17.5-63.1-10.4-89.8-30.3-29-82.4-31.6-113.6 12.8L147.3 185v-70.6z"],korvue:[446,512,[],"f42f","M386.5 34h-327C26.8 34 0 60.8 0 93.5v327.1C0 453.2 26.8 480 59.5 480h327.1c33 0 59.5-26.8 59.5-59.5v-327C446 60.8 419.2 34 386.5 34zM87.1 120.8h96v116l61.8-116h110.9l-81.2 132H87.1v-132zm161.8 272.1l-65.7-113.6v113.6h-96V262.1h191.5l88.6 130.8H248.9z"],laravel:[512,512,[],"f3bd","M504.4,115.83a5.72,5.72,0,0,0-.28-.68,8.52,8.52,0,0,0-.53-1.25,6,6,0,0,0-.54-.71,9.36,9.36,0,0,0-.72-.94c-.23-.22-.52-.4-.77-.6a8.84,8.84,0,0,0-.9-.68L404.4,55.55a8,8,0,0,0-8,0L300.12,111h0a8.07,8.07,0,0,0-.88.69,7.68,7.68,0,0,0-.78.6,8.23,8.23,0,0,0-.72.93c-.17.24-.39.45-.54.71a9.7,9.7,0,0,0-.52,1.25c-.08.23-.21.44-.28.68a8.08,8.08,0,0,0-.28,2.08V223.18l-80.22,46.19V63.44a7.8,7.8,0,0,0-.28-2.09c-.06-.24-.2-.45-.28-.68a8.35,8.35,0,0,0-.52-1.24c-.14-.26-.37-.47-.54-.72a9.36,9.36,0,0,0-.72-.94,9.46,9.46,0,0,0-.78-.6,9.8,9.8,0,0,0-.88-.68h0L115.61,1.07a8,8,0,0,0-8,0L11.34,56.49h0a6.52,6.52,0,0,0-.88.69,7.81,7.81,0,0,0-.79.6,8.15,8.15,0,0,0-.71.93c-.18.25-.4.46-.55.72a7.88,7.88,0,0,0-.51,1.24,6.46,6.46,0,0,0-.29.67,8.18,8.18,0,0,0-.28,2.1v329.7a8,8,0,0,0,4,6.95l192.5,110.84a8.83,8.83,0,0,0,1.33.54c.21.08.41.2.63.26a7.92,7.92,0,0,0,4.1,0c.2-.05.37-.16.55-.22a8.6,8.6,0,0,0,1.4-.58L404.4,400.09a8,8,0,0,0,4-6.95V287.88l92.24-53.11a8,8,0,0,0,4-7V117.92A8.63,8.63,0,0,0,504.4,115.83ZM111.6,17.28h0l80.19,46.15-80.2,46.18L31.41,63.44Zm88.25,60V278.6l-46.53,26.79-33.69,19.4V123.5l46.53-26.79Zm0,412.78L23.37,388.5V77.32L57.06,96.7l46.52,26.8V338.68a6.94,6.94,0,0,0,.12.9,8,8,0,0,0,.16,1.18h0a5.92,5.92,0,0,0,.38.9,6.38,6.38,0,0,0,.42,1v0a8.54,8.54,0,0,0,.6.78,7.62,7.62,0,0,0,.66.84l0,0c.23.22.52.38.77.58a8.93,8.93,0,0,0,.86.66l0,0,0,0,92.19,52.18Zm8-106.17-80.06-45.32,84.09-48.41,92.26-53.11,80.13,46.13-58.8,33.56Zm184.52,4.57L215.88,490.11V397.8L346.6,323.2l45.77-26.15Zm0-119.13L358.68,250l-46.53-26.79V131.79l33.69,19.4L392.37,178Zm8-105.28-80.2-46.17,80.2-46.16,80.18,46.15Zm8,105.28V178L455,151.19l33.68-19.4v91.39h0Z"],lastfm:[512,512,[],"f202","M225.8 367.1l-18.8-51s-30.5 34-76.2 34c-40.5 0-69.2-35.2-69.2-91.5 0-72.1 36.4-97.9 72.1-97.9 66.5 0 74.8 53.3 100.9 134.9 18.8 56.9 54 102.6 155.4 102.6 72.7 0 122-22.3 122-80.9 0-72.9-62.7-80.6-115-92.1-25.8-5.9-33.4-16.4-33.4-34 0-19.9 15.8-31.7 41.6-31.7 28.2 0 43.4 10.6 45.7 35.8l58.6-7c-4.7-52.8-41.1-74.5-100.9-74.5-52.8 0-104.4 19.9-104.4 83.9 0 39.9 19.4 65.1 68 76.8 44.9 10.6 79.8 13.8 79.8 45.7 0 21.7-21.1 30.5-61 30.5-59.2 0-83.9-31.1-97.9-73.9-32-96.8-43.6-163-161.3-163C45.7 113.8 0 168.3 0 261c0 89.1 45.7 137.2 127.9 137.2 66.2 0 97.9-31.1 97.9-31.1z"],"lastfm-square":[448,512,[],"f203","M400 32H48C21.5 32 0 53.5 0 80v352c0 26.5 21.5 48 48 48h352c26.5 0 48-21.5 48-48V80c0-26.5-21.5-48-48-48zm-92.2 312.9c-63.4 0-85.4-28.6-97.1-64.1-16.3-51-21.5-84.3-63-84.3-22.4 0-45.1 16.1-45.1 61.2 0 35.2 18 57.2 43.3 57.2 28.6 0 47.6-21.3 47.6-21.3l11.7 31.9s-19.8 19.4-61.2 19.4c-51.3 0-79.9-30.1-79.9-85.8 0-57.9 28.6-92 82.5-92 73.5 0 80.8 41.4 100.8 101.9 8.8 26.8 24.2 46.2 61.2 46.2 24.9 0 38.1-5.5 38.1-19.1 0-19.9-21.8-22-49.9-28.6-30.4-7.3-42.5-23.1-42.5-48 0-40 32.3-52.4 65.2-52.4 37.4 0 60.1 13.6 63 46.6l-36.7 4.4c-1.5-15.8-11-22.4-28.6-22.4-16.1 0-26 7.3-26 19.8 0 11 4.8 17.6 20.9 21.3 32.7 7.1 71.8 12 71.8 57.5.1 36.7-30.7 50.6-76.1 50.6z"],leanpub:[576,512,[],"f212","M386.539 111.485l15.096 248.955-10.979-.275c-36.232-.824-71.64 8.783-102.657 27.997-31.016-19.214-66.424-27.997-102.657-27.997-45.564 0-82.07 10.705-123.516 27.723L93.117 129.6c28.546-11.803 61.484-18.115 92.226-18.115 41.173 0 73.836 13.175 102.657 42.544 27.723-28.271 59.013-41.721 98.539-42.544zM569.07 448c-25.526 0-47.485-5.215-70.542-15.645-34.31-15.645-69.993-24.978-107.871-24.978-38.977 0-74.934 12.901-102.657 40.623-27.723-27.723-63.68-40.623-102.657-40.623-37.878 0-73.561 9.333-107.871 24.978C55.239 442.236 32.731 448 8.303 448H6.93L49.475 98.859C88.726 76.626 136.486 64 181.775 64 218.83 64 256.984 71.685 288 93.095 319.016 71.685 357.17 64 394.225 64c45.289 0 93.049 12.626 132.3 34.859L569.07 448zm-43.368-44.741l-34.036-280.246c-30.742-13.999-67.248-21.41-101.009-21.41-38.428 0-74.385 12.077-102.657 38.702-28.272-26.625-64.228-38.702-102.657-38.702-33.761 0-70.267 7.411-101.009 21.41L50.298 403.259c47.211-19.487 82.894-33.486 135.045-33.486 37.604 0 70.817 9.606 102.657 29.644 31.84-20.038 65.052-29.644 102.657-29.644 52.151 0 87.834 13.999 135.045 33.486z"],less:[640,512,[],"f41d","M612.7 219c0-20.5 3.2-32.6 3.2-54.6 0-34.2-12.6-45.2-40.5-45.2h-20.5v24.2h6.3c14.2 0 17.3 4.7 17.3 22.1 0 16.3-1.6 32.6-1.6 51.5 0 24.2 7.9 33.6 23.6 37.3v1.6c-15.8 3.7-23.6 13.1-23.6 37.3 0 18.9 1.6 34.2 1.6 51.5 0 17.9-3.7 22.6-17.3 22.6v.5h-6.3V393h20.5c27.8 0 40.5-11 40.5-45.2 0-22.6-3.2-34.2-3.2-54.6 0-11 6.8-22.6 27.3-23.6v-27.3c-20.5-.7-27.3-12.3-27.3-23.3zm-105.6 32c-15.8-6.3-30.5-10-30.5-20.5 0-7.9 6.3-12.6 17.9-12.6s22.1 4.7 33.6 13.1l21-27.8c-13.1-10-31-20.5-55.2-20.5-35.7 0-59.9 20.5-59.9 49.4 0 25.7 22.6 38.9 41.5 46.2 16.3 6.3 32.1 11.6 32.1 22.1 0 7.9-6.3 13.1-20.5 13.1-13.1 0-26.3-5.3-40.5-16.3l-21 30.5c15.8 13.1 39.9 22.1 59.9 22.1 42 0 64.6-22.1 64.6-51s-22.5-41-43-47.8zm-358.9 59.4c-3.7 0-8.4-3.2-8.4-13.1V119.1H65.2c-28.4 0-41 11-41 45.2 0 22.6 3.2 35.2 3.2 54.6 0 11-6.8 22.6-27.3 23.6v27.3c20.5.5 27.3 12.1 27.3 23.1 0 19.4-3.2 31-3.2 53.6 0 34.2 12.6 45.2 40.5 45.2h20.5v-24.2h-6.3c-13.1 0-17.3-5.3-17.3-22.6s1.6-32.1 1.6-51.5c0-24.2-7.9-33.6-23.6-37.3v-1.6c15.8-3.7 23.6-13.1 23.6-37.3 0-18.9-1.6-34.2-1.6-51.5s3.7-22.1 17.3-22.1H93v150.8c0 32.1 11 53.1 43.1 53.1 10 0 17.9-1.6 23.6-3.7l-5.3-34.2c-3.1.8-4.6.8-6.2.8zM379.9 251c-16.3-6.3-31-10-31-20.5 0-7.9 6.3-12.6 17.9-12.6 11.6 0 22.1 4.7 33.6 13.1l21-27.8c-13.1-10-31-20.5-55.2-20.5-35.7 0-59.9 20.5-59.9 49.4 0 25.7 22.6 38.9 41.5 46.2 16.3 6.3 32.1 11.6 32.1 22.1 0 7.9-6.3 13.1-20.5 13.1-13.1 0-26.3-5.3-40.5-16.3l-20.5 30.5c15.8 13.1 39.9 22.1 59.9 22.1 42 0 64.6-22.1 64.6-51 .1-28.9-22.5-41-43-47.8zm-155-68.8c-38.4 0-75.1 32.1-74.1 82.5 0 52 34.2 82.5 79.3 82.5 18.9 0 39.9-6.8 56.2-17.9l-15.8-27.8c-11.6 6.8-22.6 10-34.2 10-21 0-37.3-10-41.5-34.2H290c.5-3.7 1.6-11 1.6-19.4.6-42.6-22.6-75.7-66.7-75.7zm-30 66.2c3.2-21 15.8-31 30.5-31 18.9 0 26.3 13.1 26.3 31h-56.8z"],line:[448,512,[],"f3c0","M272.1 204.2v71.1c0 1.8-1.4 3.2-3.2 3.2h-11.4c-1.1 0-2.1-.6-2.6-1.3l-32.6-44v42.2c0 1.8-1.4 3.2-3.2 3.2h-11.4c-1.8 0-3.2-1.4-3.2-3.2v-71.1c0-1.8 1.4-3.2 3.2-3.2H219c1 0 2.1.5 2.6 1.4l32.6 44v-42.2c0-1.8 1.4-3.2 3.2-3.2h11.4c1.8-.1 3.3 1.4 3.3 3.1zm-82-3.2h-11.4c-1.8 0-3.2 1.4-3.2 3.2v71.1c0 1.8 1.4 3.2 3.2 3.2h11.4c1.8 0 3.2-1.4 3.2-3.2v-71.1c0-1.7-1.4-3.2-3.2-3.2zm-27.5 59.6h-31.1v-56.4c0-1.8-1.4-3.2-3.2-3.2h-11.4c-1.8 0-3.2 1.4-3.2 3.2v71.1c0 .9.3 1.6.9 2.2.6.5 1.3.9 2.2.9h45.7c1.8 0 3.2-1.4 3.2-3.2v-11.4c0-1.7-1.4-3.2-3.1-3.2zM332.1 201h-45.7c-1.7 0-3.2 1.4-3.2 3.2v71.1c0 1.7 1.4 3.2 3.2 3.2h45.7c1.8 0 3.2-1.4 3.2-3.2v-11.4c0-1.8-1.4-3.2-3.2-3.2H301v-12h31.1c1.8 0 3.2-1.4 3.2-3.2V234c0-1.8-1.4-3.2-3.2-3.2H301v-12h31.1c1.8 0 3.2-1.4 3.2-3.2v-11.4c-.1-1.7-1.5-3.2-3.2-3.2zM448 113.7V399c-.1 44.8-36.8 81.1-81.7 81H81c-44.8-.1-81.1-36.9-81-81.7V113c.1-44.8 36.9-81.1 81.7-81H367c44.8.1 81.1 36.8 81 81.7zm-61.6 122.6c0-73-73.2-132.4-163.1-132.4-89.9 0-163.1 59.4-163.1 132.4 0 65.4 58 120.2 136.4 130.6 19.1 4.1 16.9 11.1 12.6 36.8-.7 4.1-3.3 16.1 14.1 8.8 17.4-7.3 93.9-55.3 128.2-94.7 23.6-26 34.9-52.3 34.9-81.5z"],linkedin:[448,512,[],"f08c","M416 32H31.9C14.3 32 0 46.5 0 64.3v383.4C0 465.5 14.3 480 31.9 480H416c17.6 0 32-14.5 32-32.3V64.3c0-17.8-14.4-32.3-32-32.3zM135.4 416H69V202.2h66.5V416zm-33.2-243c-21.3 0-38.5-17.3-38.5-38.5S80.9 96 102.2 96c21.2 0 38.5 17.3 38.5 38.5 0 21.3-17.2 38.5-38.5 38.5zm282.1 243h-66.4V312c0-24.8-.5-56.7-34.5-56.7-34.6 0-39.9 27-39.9 54.9V416h-66.4V202.2h63.7v29.2h.9c8.9-16.8 30.6-34.5 62.9-34.5 67.2 0 79.7 44.3 79.7 101.9V416z"],"linkedin-in":[448,512,[],"f0e1","M100.28 448H7.4V148.9h92.88zM53.79 108.1C24.09 108.1 0 83.5 0 53.8a53.79 53.79 0 0 1 107.58 0c0 29.7-24.1 54.3-53.79 54.3zM447.9 448h-92.68V302.4c0-34.7-.7-79.2-48.29-79.2-48.29 0-55.69 37.7-55.69 76.7V448h-92.78V148.9h89.08v40.8h1.3c12.4-23.5 42.69-48.3 87.88-48.3 94 0 111.28 61.9 111.28 142.3V448z"],linode:[448,512,[],"f2b8","M437.4 226.3c-.3-.9-.9-1.4-1.4-2l-70-38.6c-.9-.6-2-.6-3.1 0l-58.9 36c-.9.6-1.4 1.7-1.4 2.6l-.9 31.4-24-16c-.9-.6-2.3-.6-3.1 0L240 260.9l-1.4-35.1c0-.9-.6-2-1.4-2.3l-36-24.3 33.7-17.4c1.1-.6 1.7-1.7 1.7-2.9l-5.7-132.3c0-.9-.9-2-1.7-2.6L138.6.3c-.9-.3-1.7-.3-2.3-.3L12.6 38.6c-1.4.6-2.3 2-2 3.7L38 175.4c.9 3.4 34 27.4 38.6 30.9l-26.9 12.9c-1.4.9-2 2.3-1.7 3.4l20.6 100.3c.6 2.9 23.7 23.1 27.1 26.3l-17.4 10.6c-.9.6-1.7 2-1.4 3.1 1.4 7.1 15.4 77.7 16.9 79.1l65.1 69.1c.6.6 1.4.6 2.3.9.6 0 1.1-.3 1.7-.6l83.7-66.9c.9-.6 1.1-1.4 1.1-2.3l-2-46 28 23.7c1.1.9 2.9.9 4 0l66.9-53.4c.9-.6 1.1-1.4 1.1-2.3l2.3-33.4 20.3 14c1.1.9 2.6.9 3.7 0l54.6-43.7c.6-.3 1.1-1.1 1.1-2 .9-6.5 10.3-70.8 9.7-72.8zm-204.8 4.8l4 92.6-90.6 61.2-14-96.6 100.6-57.2zm-7.7-180l5.4 126-106.6 55.4L104 97.7l120.9-46.6zM44 173.1L18 48l79.7 49.4 19.4 132.9L44 173.1zm30.6 147.8L55.7 230l70 58.3 13.7 93.4-64.8-60.8zm24.3 117.7l-13.7-67.1 61.7 60.9 9.7 67.4-57.7-61.2zm64.5 64.5l-10.6-70.9 85.7-61.4 3.1 70-78.2 62.3zm82-115.1c0-3.4.9-22.9-2-25.1l-24.3-20 22.3-14.9c2.3-1.7 1.1-5.7 1.1-8l29.4 22.6.6 68.3-27.1-22.9zm94.3-25.4l-60.9 48.6-.6-68.6 65.7-46.9-4.2 66.9zm27.7-25.7l-19.1-13.4 2-34c.3-.9-.3-2-1.1-2.6L308 259.7l.6-30 64.6 40.6-5.8 66.6zm54.6-39.8l-48.3 38.3 5.7-65.1 51.1-36.6-8.5 63.4z"],linux:[448,512,[],"f17c","M220.8 123.3c1 .5 1.8 1.7 3 1.7 1.1 0 2.8-.4 2.9-1.5.2-1.4-1.9-2.3-3.2-2.9-1.7-.7-3.9-1-5.5-.1-.4.2-.8.7-.6 1.1.3 1.3 2.3 1.1 3.4 1.7zm-21.9 1.7c1.2 0 2-1.2 3-1.7 1.1-.6 3.1-.4 3.5-1.6.2-.4-.2-.9-.6-1.1-1.6-.9-3.8-.6-5.5.1-1.3.6-3.4 1.5-3.2 2.9.1 1 1.8 1.5 2.8 1.4zM420 403.8c-3.6-4-5.3-11.6-7.2-19.7-1.8-8.1-3.9-16.8-10.5-22.4-1.3-1.1-2.6-2.1-4-2.9-1.3-.8-2.7-1.5-4.1-2 9.2-27.3 5.6-54.5-3.7-79.1-11.4-30.1-31.3-56.4-46.5-74.4-17.1-21.5-33.7-41.9-33.4-72C311.1 85.4 315.7.1 234.8 0 132.4-.2 158 103.4 156.9 135.2c-1.7 23.4-6.4 41.8-22.5 64.7-18.9 22.5-45.5 58.8-58.1 96.7-6 17.9-8.8 36.1-6.2 53.3-6.5 5.8-11.4 14.7-16.6 20.2-4.2 4.3-10.3 5.9-17 8.3s-14 6-18.5 14.5c-2.1 3.9-2.8 8.1-2.8 12.4 0 3.9.6 7.9 1.2 11.8 1.2 8.1 2.5 15.7.8 20.8-5.2 14.4-5.9 24.4-2.2 31.7 3.8 7.3 11.4 10.5 20.1 12.3 17.3 3.6 40.8 2.7 59.3 12.5 19.8 10.4 39.9 14.1 55.9 10.4 11.6-2.6 21.1-9.6 25.9-20.2 12.5-.1 26.3-5.4 48.3-6.6 14.9-1.2 33.6 5.3 55.1 4.1.6 2.3 1.4 4.6 2.5 6.7v.1c8.3 16.7 23.8 24.3 40.3 23 16.6-1.3 34.1-11 48.3-27.9 13.6-16.4 36-23.2 50.9-32.2 7.4-4.5 13.4-10.1 13.9-18.3.4-8.2-4.4-17.3-15.5-29.7zM223.7 87.3c9.8-22.2 34.2-21.8 44-.4 6.5 14.2 3.6 30.9-4.3 40.4-1.6-.8-5.9-2.6-12.6-4.9 1.1-1.2 3.1-2.7 3.9-4.6 4.8-11.8-.2-27-9.1-27.3-7.3-.5-13.9 10.8-11.8 23-4.1-2-9.4-3.5-13-4.4-1-6.9-.3-14.6 2.9-21.8zM183 75.8c10.1 0 20.8 14.2 19.1 33.5-3.5 1-7.1 2.5-10.2 4.6 1.2-8.9-3.3-20.1-9.6-19.6-8.4.7-9.8 21.2-1.8 28.1 1 .8 1.9-.2-5.9 5.5-15.6-14.6-10.5-52.1 8.4-52.1zm-13.6 60.7c6.2-4.6 13.6-10 14.1-10.5 4.7-4.4 13.5-14.2 27.9-14.2 7.1 0 15.6 2.3 25.9 8.9 6.3 4.1 11.3 4.4 22.6 9.3 8.4 3.5 13.7 9.7 10.5 18.2-2.6 7.1-11 14.4-22.7 18.1-11.1 3.6-19.8 16-38.2 14.9-3.9-.2-7-1-9.6-2.1-8-3.5-12.2-10.4-20-15-8.6-4.8-13.2-10.4-14.7-15.3-1.4-4.9 0-9 4.2-12.3zm3.3 334c-2.7 35.1-43.9 34.4-75.3 18-29.9-15.8-68.6-6.5-76.5-21.9-2.4-4.7-2.4-12.7 2.6-26.4v-.2c2.4-7.6.6-16-.6-23.9-1.2-7.8-1.8-15 .9-20 3.5-6.7 8.5-9.1 14.8-11.3 10.3-3.7 11.8-3.4 19.6-9.9 5.5-5.7 9.5-12.9 14.3-18 5.1-5.5 10-8.1 17.7-6.9 8.1 1.2 15.1 6.8 21.9 16l19.6 35.6c9.5 19.9 43.1 48.4 41 68.9zm-1.4-25.9c-4.1-6.6-9.6-13.6-14.4-19.6 7.1 0 14.2-2.2 16.7-8.9 2.3-6.2 0-14.9-7.4-24.9-13.5-18.2-38.3-32.5-38.3-32.5-13.5-8.4-21.1-18.7-24.6-29.9s-3-23.3-.3-35.2c5.2-22.9 18.6-45.2 27.2-59.2 2.3-1.7.8 3.2-8.7 20.8-8.5 16.1-24.4 53.3-2.6 82.4.6-20.7 5.5-41.8 13.8-61.5 12-27.4 37.3-74.9 39.3-112.7 1.1.8 4.6 3.2 6.2 4.1 4.6 2.7 8.1 6.7 12.6 10.3 12.4 10 28.5 9.2 42.4 1.2 6.2-3.5 11.2-7.5 15.9-9 9.9-3.1 17.8-8.6 22.3-15 7.7 30.4 25.7 74.3 37.2 95.7 6.1 11.4 18.3 35.5 23.6 64.6 3.3-.1 7 .4 10.9 1.4 13.8-35.7-11.7-74.2-23.3-84.9-4.7-4.6-4.9-6.6-2.6-6.5 12.6 11.2 29.2 33.7 35.2 59 2.8 11.6 3.3 23.7.4 35.7 16.4 6.8 35.9 17.9 30.7 34.8-2.2-.1-3.2 0-4.2 0 3.2-10.1-3.9-17.6-22.8-26.1-19.6-8.6-36-8.6-38.3 12.5-12.1 4.2-18.3 14.7-21.4 27.3-2.8 11.2-3.6 24.7-4.4 39.9-.5 7.7-3.6 18-6.8 29-32.1 22.9-76.7 32.9-114.3 7.2zm257.4-11.5c-.9 16.8-41.2 19.9-63.2 46.5-13.2 15.7-29.4 24.4-43.6 25.5s-26.5-4.8-33.7-19.3c-4.7-11.1-2.4-23.1 1.1-36.3 3.7-14.2 9.2-28.8 9.9-40.6.8-15.2 1.7-28.5 4.2-38.7 2.6-10.3 6.6-17.2 13.7-21.1.3-.2.7-.3 1-.5.8 13.2 7.3 26.6 18.8 29.5 12.6 3.3 30.7-7.5 38.4-16.3 9-.3 15.7-.9 22.6 5.1 9.9 8.5 7.1 30.3 17.1 41.6 10.6 11.6 14 19.5 13.7 24.6zM173.3 148.7c2 1.9 4.7 4.5 8 7.1 6.6 5.2 15.8 10.6 27.3 10.6 11.6 0 22.5-5.9 31.8-10.8 4.9-2.6 10.9-7 14.8-10.4s5.9-6.3 3.1-6.6-2.6 2.6-6 5.1c-4.4 3.2-9.7 7.4-13.9 9.8-7.4 4.2-19.5 10.2-29.9 10.2s-18.7-4.8-24.9-9.7c-3.1-2.5-5.7-5-7.7-6.9-1.5-1.4-1.9-4.6-4.3-4.9-1.4-.1-1.8 3.7 1.7 6.5z"],lyft:[512,512,[],"f3c3","M0 81.1h77.8v208.7c0 33.1 15 52.8 27.2 61-12.7 11.1-51.2 20.9-80.2-2.8C7.8 334 0 310.7 0 289V81.1zm485.9 173.5v-22h23.8v-76.8h-26.1c-10.1-46.3-51.2-80.7-100.3-80.7-56.6 0-102.7 46-102.7 102.7V357c16 2.3 35.4-.3 51.7-14 17.1-14 24.8-37.2 24.8-59v-6.7h38.8v-76.8h-38.8v-23.3c0-34.6 52.2-34.6 52.2 0v77.1c0 56.6 46 102.7 102.7 102.7v-76.5c-14.5 0-26.1-11.7-26.1-25.9zm-294.3-99v113c0 15.4-23.8 15.4-23.8 0v-113H91v132.7c0 23.8 8 54 45 63.9 37 9.8 58.2-10.6 58.2-10.6-2.1 13.4-14.5 23.3-34.9 25.3-15.5 1.6-35.2-3.6-45-7.8v70.3c25.1 7.5 51.5 9.8 77.6 4.7 47.1-9.1 76.8-48.4 76.8-100.8V155.1h-77.1v.5z"],magento:[448,512,[],"f3c4","M445.7 127.9V384l-63.4 36.5V164.7L223.8 73.1 65.2 164.7l.4 255.9L2.3 384V128.1L224.2 0l221.5 127.9zM255.6 420.5L224 438.9l-31.8-18.2v-256l-63.3 36.6.1 255.9 94.9 54.9 95.1-54.9v-256l-63.4-36.6v255.9z"],mailchimp:[448,512,[],"f59e","M330.61 243.52a36.15 36.15 0 0 1 9.3 0c1.66-3.83 1.95-10.43.45-17.61-2.23-10.67-5.25-17.14-11.48-16.13s-6.47 8.74-4.24 19.42c1.26 6 3.49 11.14 6 14.32zM277.05 252c4.47 2 7.2 3.26 8.28 2.13 1.89-1.94-3.48-9.39-12.12-13.09a31.44 31.44 0 0 0-30.61 3.68c-3 2.18-5.81 5.22-5.41 7.06.85 3.74 10-2.71 22.6-3.48 7-.44 12.8 1.75 17.26 3.71zm-9 5.13c-9.07 1.42-15 6.53-13.47 10.1.9.34 1.17.81 5.21-.81a37 37 0 0 1 18.72-1.95c2.92.34 4.31.52 4.94-.49 1.46-2.22-5.71-8-15.39-6.85zm54.17 17.1c3.38-6.87-10.9-13.93-14.3-7s10.92 13.88 14.32 6.97zm15.66-20.47c-7.66-.13-7.95 15.8-.26 15.93s7.98-15.81.28-15.96zm-218.79 78.9c-1.32.31-6 1.45-8.47-2.35-5.2-8 11.11-20.38 3-35.77-9.1-17.47-27.82-13.54-35.05-5.54-8.71 9.6-8.72 23.54-5 24.08 4.27.57 4.08-6.47 7.38-11.63a12.83 12.83 0 0 1 17.85-3.72c11.59 7.59 1.37 17.76 2.28 28.62 1.39 16.68 18.42 16.37 21.58 9a2.08 2.08 0 0 0-.2-2.33c.03.89.68-1.3-3.35-.39zm299.72-17.07c-3.35-11.73-2.57-9.22-6.78-20.52 2.45-3.67 15.29-24-3.07-43.25-10.4-10.92-33.9-16.54-41.1-18.54-1.5-11.39 4.65-58.7-21.52-83 20.79-21.55 33.76-45.29 33.73-65.65-.06-39.16-48.15-51-107.42-26.47l-12.55 5.33c-.06-.05-22.71-22.27-23.05-22.57C169.5-18-41.77 216.81 25.78 273.85l14.76 12.51a72.49 72.49 0 0 0-4.1 33.5c3.36 33.4 36 60.42 67.53 60.38 57.73 133.06 267.9 133.28 322.29 3 1.74-4.47 9.11-24.61 9.11-42.38s-10.09-25.27-16.53-25.27zm-316 48.16c-22.82-.61-47.46-21.15-49.91-45.51-6.17-61.31 74.26-75.27 84-12.33 4.54 29.64-4.67 58.49-34.12 57.81zM84.3 249.55C69.14 252.5 55.78 261.09 47.6 273c-4.88-4.07-14-12-15.59-15-13.01-24.85 14.24-73 33.3-100.21C112.42 90.56 186.19 39.68 220.36 48.91c5.55 1.57 23.94 22.89 23.94 22.89s-34.15 18.94-65.8 45.35c-42.66 32.85-74.89 80.59-94.2 132.4zM323.18 350.7s-35.74 5.3-69.51-7.07c6.21-20.16 27 6.1 96.4-13.81 15.29-4.38 35.37-13 51-25.35a102.85 102.85 0 0 1 7.12 24.28c3.66-.66 14.25-.52 11.44 18.1-3.29 19.87-11.73 36-25.93 50.84A106.86 106.86 0 0 1 362.55 421a132.45 132.45 0 0 1-20.34 8.58c-53.51 17.48-108.3-1.74-126-43a66.33 66.33 0 0 1-3.55-9.74c-7.53-27.2-1.14-59.83 18.84-80.37 1.23-1.31 2.48-2.85 2.48-4.79a8.45 8.45 0 0 0-1.92-4.54c-7-10.13-31.19-27.4-26.33-60.83 3.5-24 24.49-40.91 44.07-39.91l5 .29c8.48.5 15.89 1.59 22.88 1.88 11.69.5 22.2-1.19 34.64-11.56 4.2-3.5 7.57-6.54 13.26-7.51a17.45 17.45 0 0 1 13.6 2.24c10 6.64 11.4 22.73 11.92 34.49.29 6.72 1.1 23 1.38 27.63.63 10.67 3.43 12.17 9.11 14 3.19 1.05 6.15 1.83 10.51 3.06 13.21 3.71 21 7.48 26 12.31a16.38 16.38 0 0 1 4.74 9.29c1.56 11.37-8.82 25.4-36.31 38.16-46.71 21.68-93.68 14.45-100.48 13.68-20.15-2.71-31.63 23.32-19.55 41.15 22.64 33.41 122.4 20 151.37-21.35.69-1 .12-1.59-.73-1-41.77 28.58-97.06 38.21-128.46 26-4.77-1.85-14.73-6.44-15.94-16.67 43.6 13.49 71 .74 71 .74s2.03-2.79-.56-2.53zm-68.47-5.7zm-83.4-187.5c16.74-19.35 37.36-36.18 55.83-45.63a.73.73 0 0 1 1 1c-1.46 2.66-4.29 8.34-5.19 12.65a.75.75 0 0 0 1.16.79c11.49-7.83 31.48-16.22 49-17.3a.77.77 0 0 1 .52 1.38 41.86 41.86 0 0 0-7.71 7.74.75.75 0 0 0 .59 1.19c12.31.09 29.66 4.4 41 10.74.76.43.22 1.91-.64 1.72-69.55-15.94-123.08 18.53-134.5 26.83a.76.76 0 0 1-1-1.12z"],mandalorian:[448,512,[],"f50f","M232.27 511.89c-1-3.26-1.69-15.83-1.39-24.58.55-15.89 1-24.72 1.4-28.76.64-6.2 2.87-20.72 3.28-21.38.6-1 .4-27.87-.24-33.13-.31-2.58-.63-11.9-.69-20.73-.13-16.47-.53-20.12-2.73-24.76-1.1-2.32-1.23-3.84-1-11.43a92.38 92.38 0 0 0-.34-12.71c-2-13-3.46-27.7-3.25-33.9s.43-7.15 2.06-9.67c3.05-4.71 6.51-14 8.62-23.27 2.26-9.86 3.88-17.18 4.59-20.74a109.54 109.54 0 0 1 4.42-15.05c2.27-6.25 2.49-15.39.37-15.39-.3 0-1.38 1.22-2.41 2.71s-4.76 4.8-8.29 7.36c-8.37 6.08-11.7 9.39-12.66 12.58s-1 7.23-.16 7.76c.34.21 1.29 2.4 2.11 4.88a28.83 28.83 0 0 1 .72 15.36c-.39 1.77-1 5.47-1.46 8.23s-1 6.46-1.25 8.22a9.85 9.85 0 0 1-1.55 4.26c-1 1-1.14.91-2.05-.53a14.87 14.87 0 0 1-1.44-4.75c-.25-1.74-1.63-7.11-3.08-11.93-3.28-10.9-3.52-16.15-1-21a14.24 14.24 0 0 0 1.67-4.61c0-2.39-2.2-5.32-7.41-9.89-7-6.18-8.63-7.92-10.23-11.3-1.71-3.6-3.06-4.06-4.54-1.54-1.78 3-2.6 9.11-3 22l-.34 12.19 2 2.25c3.21 3.7 12.07 16.45 13.78 19.83 3.41 6.74 4.34 11.69 4.41 23.56s.95 22.75 2 24.71c.36.66.51 1.35.34 1.52s.41 2.09 1.29 4.27a38.14 38.14 0 0 1 2.06 9 91 91 0 0 0 1.71 10.37c2.23 9.56 2.77 14.08 2.39 20.14-.2 3.27-.53 11.07-.73 17.32-1.31 41.76-1.85 58-2 61.21-.12 2-.39 11.51-.6 21.07-.36 16.3-1.3 27.37-2.42 28.65-.64.73-8.07-4.91-12.52-9.49-3.75-3.87-4-4.79-2.83-9.95.7-3 2.26-18.29 3.33-32.62.36-4.78.81-10.5 1-12.71.83-9.37 1.66-20.35 2.61-34.78.56-8.46 1.33-16.44 1.72-17.73s.89-9.89 1.13-19.11l.43-16.77-2.26-4.3c-1.72-3.28-4.87-6.94-13.22-15.34-6-6.07-11.84-12.3-12.91-13.85l-1.95-2.81.75-10.9c1.09-15.71 1.1-48.57 0-59.06l-.89-8.7-3.28-4.52c-5.86-8.08-5.8-7.75-6.22-33.27-.1-6.07-.38-11.5-.63-12.06-.83-1.87-3.05-2.66-8.54-3.05-8.86-.62-11-1.9-23.85-14.55-6.15-6-12.34-12-13.75-13.19-2.81-2.42-2.79-2-.56-9.63l1.35-4.65-1.69-3a32.22 32.22 0 0 0-2.59-4.07c-1.33-1.51-5.5-10.89-6-13.49a4.24 4.24 0 0 1 .87-3.9c2.23-2.86 3.4-5.68 4.45-10.73 2.33-11.19 7.74-26.09 10.6-29.22 3.18-3.47 7.7-1 9.41 5 1.34 4.79 1.37 9.79.1 18.55a101.2 101.2 0 0 0-1 11.11c0 4 .19 4.69 2.25 7.39 3.33 4.37 7.73 7.41 15.2 10.52a18.67 18.67 0 0 1 4.72 2.85c11.17 10.72 18.62 16.18 22.95 16.85 5.18.8 8 4.54 10 13.39 1.31 5.65 4 11.14 5.46 11.14a9.38 9.38 0 0 0 3.33-1.39c2-1.22 2.25-1.73 2.25-4.18a132.88 132.88 0 0 0-2-17.84c-.37-1.66-.78-4.06-.93-5.35s-.61-3.85-1-5.69c-2.55-11.16-3.65-15.46-4.1-16-1.55-2-4.08-10.2-4.93-15.92-1.64-11.11-4-14.23-12.91-17.39A43.15 43.15 0 0 1 165.24 78c-1.15-1-4-3.22-6.35-5.06s-4.41-3.53-4.6-3.76a22.7 22.7 0 0 0-2.69-2c-6.24-4.22-8.84-7-11.26-12l-2.44-5-.22-13-.22-13 6.91-6.55c3.95-3.75 8.48-7.35 10.59-8.43 3.31-1.69 4.45-1.89 11.37-2 8.53-.19 10.12 0 11.66 1.56s1.36 6.4-.29 8.5a6.66 6.66 0 0 0-1.34 2.32c0 .58-2.61 4.91-5.42 9a30.39 30.39 0 0 0-2.37 6.82c20.44 13.39 21.55 3.77 14.07 29L194 66.92c3.11-8.66 6.47-17.26 8.61-26.22.29-7.63-12-4.19-15.4-8.68-2.33-5.93 3.13-14.18 6.06-19.2 1.6-2.34 6.62-4.7 8.82-4.15.88.22 4.16-.35 7.37-1.28a45.3 45.3 0 0 1 7.55-1.68 29.57 29.57 0 0 0 6-1.29c3.65-1.11 4.5-1.17 6.35-.4a29.54 29.54 0 0 0 5.82 1.36 18.18 18.18 0 0 1 6 1.91 22.67 22.67 0 0 0 5 2.17c2.51.68 3 .57 7.05-1.67l4.35-2.4L268.32 5c10.44-.4 10.81-.47 15.26-2.68L288.16 0l2.46 1.43c1.76 1 3.14 2.73 4.85 6 2.36 4.51 2.38 4.58 1.37 7.37-.88 2.44-.89 3.3-.1 6.39a35.76 35.76 0 0 0 2.1 5.91 13.55 13.55 0 0 1 1.31 4c.31 4.33 0 5.3-2.41 6.92-2.17 1.47-7 7.91-7 9.34a14.77 14.77 0 0 1-1.07 3c-5 11.51-6.76 13.56-14.26 17-9.2 4.2-12.3 5.19-16.21 5.19-3.1 0-4 .25-4.54 1.26a18.33 18.33 0 0 1-4.09 3.71 13.62 13.62 0 0 0-4.38 4.78 5.89 5.89 0 0 1-2.49 2.91 6.88 6.88 0 0 0-2.45 1.71 67.62 67.62 0 0 1-7 5.38c-3.33 2.34-6.87 5-7.87 6A7.27 7.27 0 0 1 224 100a5.76 5.76 0 0 0-2.13 1.65c-1.31 1.39-1.49 2.11-1.14 4.6a36.45 36.45 0 0 0 1.42 5.88c1.32 3.8 1.31 7.86 0 10.57s-.89 6.65 1.35 9.59c2 2.63 2.16 4.56.71 8.84a33.45 33.45 0 0 0-1.06 8.91c0 4.88.22 6.28 1.46 8.38s1.82 2.48 3.24 2.32c2-.23 2.3-1.05 4.71-12.12 2.18-10 3.71-11.92 13.76-17.08 2.94-1.51 7.46-4 10-5.44s6.79-3.69 9.37-4.91a40.09 40.09 0 0 0 15.22-11.67c7.11-8.79 10-16.22 12.85-33.3a18.37 18.37 0 0 1 2.86-7.73 20.39 20.39 0 0 0 2.89-7.31c1-5.3 2.85-9.08 5.58-11.51 4.7-4.18 6-1.09 4.59 10.87-.46 3.86-1.1 10.33-1.44 14.38l-.61 7.36 4.45 4.09 4.45 4.09.11 8.42c.06 4.63.47 9.53.92 10.89l.82 2.47-6.43 6.28c-8.54 8.33-12.88 13.93-16.76 21.61-1.77 3.49-3.74 7.11-4.38 8-2.18 3.11-6.46 13-8.76 20.26l-2.29 7.22-7 6.49c-3.83 3.57-8 7.25-9.17 8.17-3.05 2.32-4.26 5.15-4.26 10a14.62 14.62 0 0 0 1.59 7.26 42 42 0 0 1 2.09 4.83 9.28 9.28 0 0 0 1.57 2.89c1.4 1.59 1.92 16.12.83 23.22-.68 4.48-3.63 12-4.7 12-1.79 0-4.06 9.27-5.07 20.74-.18 2-.62 5.94-1 8.7s-1 10-1.35 16.05c-.77 12.22-.19 18.77 2 23.15 3.41 6.69.52 12.69-11 22.84l-4 3.49.07 5.19a40.81 40.81 0 0 0 1.14 8.87c4.61 16 4.73 16.92 4.38 37.13-.46 26.4-.26 40.27.63 44.15a61.31 61.31 0 0 1 1.08 7c.17 2 .66 5.33 1.08 7.36.47 2.26.78 11 .79 22.74v19.06l-1.81 2.63c-2.71 3.91-15.11 13.54-15.49 12.29zm29.53-45.11c-.18-.3-.33-6.87-.33-14.59 0-14.06-.89-27.54-2.26-34.45-.4-2-.81-9.7-.9-17.06-.15-11.93-1.4-24.37-2.64-26.38-.66-1.07-3-17.66-3-21.3 0-4.23 1-6 5.28-9.13s4.86-3.14 5.48-.72c.28 1.1 1.45 5.62 2.6 10 3.93 15.12 4.14 16.27 4.05 21.74-.1 5.78-.13 6.13-1.74 17.73-1 7.07-1.17 12.39-1 28.43.17 19.4-.64 35.73-2 41.27-.71 2.78-2.8 5.48-3.43 4.43zm-71-37.58a101 101 0 0 1-1.73-10.79 100.5 100.5 0 0 0-1.73-10.79 37.53 37.53 0 0 1-1-6.49c-.31-3.19-.91-7.46-1.33-9.48-1-4.79-3.35-19.35-3.42-21.07 0-.74-.34-4.05-.7-7.36-.67-6.21-.84-27.67-.22-28.29 1-1 6.63 2.76 11.33 7.43l5.28 5.25-.45 6.47c-.25 3.56-.6 10.23-.78 14.83s-.49 9.87-.67 11.71-.61 9.36-.94 16.72c-.79 17.41-1.94 31.29-2.65 32a.62.62 0 0 1-1-.14zm-87.18-266.59c21.07 12.79 17.84 14.15 28.49 17.66 13 4.29 18.87 7.13 23.15 16.87C111.6 233.28 86.25 255 78.55 268c-31 52-6 101.59 62.75 87.21-14.18 29.23-78 28.63-98.68-4.9-24.68-39.95-22.09-118.3 61-187.66zm210.79 179c56.66 6.88 82.32-37.74 46.54-89.23 0 0-26.87-29.34-64.28-68 3-15.45 9.49-32.12 30.57-53.82 89.2 63.51 92 141.61 92.46 149.36 4.3 70.64-78.7 91.18-105.29 61.71z"],markdown:[640,512,[],"f60f","M593.8 59.1H46.2C20.7 59.1 0 79.8 0 105.2v301.5c0 25.5 20.7 46.2 46.2 46.2h547.7c25.5 0 46.2-20.7 46.1-46.1V105.2c0-25.4-20.7-46.1-46.2-46.1zM338.5 360.6H277v-120l-61.5 76.9-61.5-76.9v120H92.3V151.4h61.5l61.5 76.9 61.5-76.9h61.5v209.2zm135.3 3.1L381.5 256H443V151.4h61.5V256H566z"],mastodon:[448,512,[],"f4f6","M433 179.11c0-97.2-63.71-125.7-63.71-125.7-62.52-28.7-228.56-28.4-290.48 0 0 0-63.72 28.5-63.72 125.7 0 115.7-6.6 259.4 105.63 289.1 40.51 10.7 75.32 13 103.33 11.4 50.81-2.8 79.32-18.1 79.32-18.1l-1.7-36.9s-36.31 11.4-77.12 10.1c-40.41-1.4-83-4.4-89.63-54a102.54 102.54 0 0 1-.9-13.9c85.63 20.9 158.65 9.1 178.75 6.7 56.12-6.7 105-41.3 111.23-72.9 9.8-49.8 9-121.5 9-121.5zm-75.12 125.2h-46.63v-114.2c0-49.7-64-51.6-64 6.9v62.5h-46.33V197c0-58.5-64-56.6-64-6.9v114.2H90.19c0-122.1-5.2-147.9 18.41-175 25.9-28.9 79.82-30.8 103.83 6.1l11.6 19.5 11.6-19.5c24.11-37.1 78.12-34.8 103.83-6.1 23.71 27.3 18.4 53 18.4 175z"],maxcdn:[512,512,[],"f136","M461.1 442.7h-97.4L415.6 200c2.3-10.2.9-19.5-4.4-25.7-5-6.1-13.7-9.6-24.2-9.6h-49.3l-59.5 278h-97.4l59.5-278h-83.4l-59.5 278H0l59.5-278-44.6-95.4H387c39.4 0 75.3 16.3 98.3 44.9 23.3 28.6 31.8 67.4 23.6 105.9l-47.8 222.6z"],mdb:[576,512,[],"f8ca","M17.37 160.41L7 352h43.91l5.59-79.83L84.43 352h44.71l25.54-77.43 4.79 77.43H205l-12.79-191.59H146.7L106 277.74 63.67 160.41zm281 0h-47.9V352h47.9s95 .8 94.2-95.79c-.78-94.21-94.18-95.78-94.18-95.78zm-1.2 146.46V204.78s46 4.27 46.8 50.57-46.78 51.54-46.78 51.54zm238.29-74.24a56.16 56.16 0 0 0 8-38.31c-5.34-35.76-55.08-34.32-55.08-34.32h-51.9v191.58H482s87 4.79 87-63.85c0-43.14-33.52-55.08-33.52-55.08zm-51.9-31.94s13.57-1.59 16 9.59c1.43 6.66-4 12-4 12h-12v-21.57zm-.1 109.46l.1-24.92V267h.08s41.58-4.73 41.19 22.43c-.33 25.65-41.35 20.74-41.35 20.74z"],medapps:[320,512,[],"f3c6","M118.3 238.4c3.5-12.5 6.9-33.6 13.2-33.6 8.3 1.8 9.6 23.4 18.6 36.6 4.6-23.5 5.3-85.1 14.1-86.7 9-.7 19.7 66.5 22 77.5 9.9 4.1 48.9 6.6 48.9 6.6 1.9 7.3-24 7.6-40 7.8-4.6 14.8-5.4 27.7-11.4 28-4.7.2-8.2-28.8-17.5-49.6l-9.4 65.5c-4.4 13-15.5-22.5-21.9-39.3-3.3-.1-62.4-1.6-47.6-7.8l31-5zM228 448c21.2 0 21.2-32 0-32H92c-21.2 0-21.2 32 0 32h136zm-24 64c21.2 0 21.2-32 0-32h-88c-21.2 0-21.2 32 0 32h88zm34.2-141.5c3.2-18.9 5.2-36.4 11.9-48.8 7.9-14.7 16.1-28.1 24-41 24.6-40.4 45.9-75.2 45.9-125.5C320 69.6 248.2 0 160 0S0 69.6 0 155.2c0 50.2 21.3 85.1 45.9 125.5 7.9 12.9 16 26.3 24 41 6.7 12.5 8.7 29.8 11.9 48.9 3.5 21 36.1 15.7 32.6-5.1-3.6-21.7-5.6-40.7-15.3-58.6C66.5 246.5 33 211.3 33 155.2 33 87.3 90 32 160 32s127 55.3 127 123.2c0 56.1-33.5 91.3-66.1 151.6-9.7 18-11.7 37.4-15.3 58.6-3.4 20.6 29 26.4 32.6 5.1z"],medium:[448,512,[],"f23a","M0 32v448h448V32H0zm372.2 106.1l-24 23c-2.1 1.6-3.1 4.2-2.7 6.7v169.3c-.4 2.6.6 5.2 2.7 6.7l23.5 23v5.1h-118V367l24.3-23.6c2.4-2.4 2.4-3.1 2.4-6.7V199.8l-67.6 171.6h-9.1L125 199.8v115c-.7 4.8 1 9.7 4.4 13.2l31.6 38.3v5.1H71.2v-5.1l31.6-38.3c3.4-3.5 4.9-8.4 4.1-13.2v-133c.4-3.7-1-7.3-3.8-9.8L75 138.1V133h87.3l67.4 148L289 133.1h83.2v5z"],"medium-m":[512,512,[],"f3c7","M71.5 142.3c.6-5.9-1.7-11.8-6.1-15.8L20.3 72.1V64h140.2l108.4 237.7L364.2 64h133.7v8.1l-38.6 37c-3.3 2.5-5 6.7-4.3 10.8v272c-.7 4.1 1 8.3 4.3 10.8l37.7 37v8.1H307.3v-8.1l39.1-37.9c3.8-3.8 3.8-5 3.8-10.8V171.2L241.5 447.1h-14.7L100.4 171.2v184.9c-1.1 7.8 1.5 15.6 7 21.2l50.8 61.6v8.1h-144v-8L65 377.3c5.4-5.6 7.9-13.5 6.5-21.2V142.3z"],medrt:[544,512,[],"f3c8","M113.7 256c0 121.8 83.9 222.8 193.5 241.1-18.7 4.5-38.2 6.9-58.2 6.9C111.4 504 0 393 0 256S111.4 8 248.9 8c20.1 0 39.6 2.4 58.2 6.9C197.5 33.2 113.7 134.2 113.7 256m297.4 100.3c-77.7 55.4-179.6 47.5-240.4-14.6 5.5 14.1 12.7 27.7 21.7 40.5 61.6 88.2 182.4 109.3 269.7 47 87.3-62.3 108.1-184.3 46.5-272.6-9-12.9-19.3-24.3-30.5-34.2 37.4 78.8 10.7 178.5-67 233.9m-218.8-244c-1.4 1-2.7 2.1-4 3.1 64.3-17.8 135.9 4 178.9 60.5 35.7 47 42.9 106.6 24.4 158 56.7-56.2 67.6-142.1 22.3-201.8-50-65.5-149.1-74.4-221.6-19.8M296 224c-4.4 0-8-3.6-8-8v-40c0-4.4-3.6-8-8-8h-48c-4.4 0-8 3.6-8 8v40c0 4.4-3.6 8-8 8h-40c-4.4 0-8 3.6-8 8v48c0 4.4 3.6 8 8 8h40c4.4 0 8 3.6 8 8v40c0 4.4 3.6 8 8 8h48c4.4 0 8-3.6 8-8v-40c0-4.4 3.6-8 8-8h40c4.4 0 8-3.6 8-8v-48c0-4.4-3.6-8-8-8h-40z"],meetup:[512,512,[],"f2e0","M99 414.3c1.1 5.7-2.3 11.1-8 12.3-5.4 1.1-10.9-2.3-12-8-1.1-5.4 2.3-11.1 7.7-12.3 5.4-1.2 11.1 2.3 12.3 8zm143.1 71.4c-6.3 4.6-8 13.4-3.7 20 4.6 6.6 13.4 8.3 20 3.7 6.3-4.6 8-13.4 3.4-20-4.2-6.5-13.1-8.3-19.7-3.7zm-86-462.3c6.3-1.4 10.3-7.7 8.9-14-1.1-6.6-7.4-10.6-13.7-9.1-6.3 1.4-10.3 7.7-9.1 14 1.4 6.6 7.6 10.6 13.9 9.1zM34.4 226.3c-10-6.9-23.7-4.3-30.6 6-6.9 10-4.3 24 5.7 30.9 10 7.1 23.7 4.6 30.6-5.7 6.9-10.4 4.3-24.1-5.7-31.2zm272-170.9c10.6-6.3 13.7-20 7.7-30.3-6.3-10.6-19.7-14-30-7.7s-13.7 20-7.4 30.6c6 10.3 19.4 13.7 29.7 7.4zm-191.1 58c7.7-5.4 9.4-16 4.3-23.7s-15.7-9.4-23.1-4.3c-7.7 5.4-9.4 16-4.3 23.7 5.1 7.8 15.6 9.5 23.1 4.3zm372.3 156c-7.4 1.7-12.3 9.1-10.6 16.9 1.4 7.4 8.9 12.3 16.3 10.6 7.4-1.4 12.3-8.9 10.6-16.6-1.5-7.4-8.9-12.3-16.3-10.9zm39.7-56.8c-1.1-5.7-6.6-9.1-12-8-5.7 1.1-9.1 6.9-8 12.6 1.1 5.4 6.6 9.1 12.3 8 5.4-1.5 9.1-6.9 7.7-12.6zM447 138.9c-8.6 6-10.6 17.7-4.9 26.3 5.7 8.6 17.4 10.6 26 4.9 8.3-6 10.3-17.7 4.6-26.3-5.7-8.7-17.4-10.9-25.7-4.9zm-6.3 139.4c26.3 43.1 15.1 100-26.3 129.1-17.4 12.3-37.1 17.7-56.9 17.1-12 47.1-69.4 64.6-105.1 32.6-1.1.9-2.6 1.7-3.7 2.9-39.1 27.1-92.3 17.4-119.4-22.3-9.7-14.3-14.6-30.6-15.1-46.9-65.4-10.9-90-94-41.1-139.7-28.3-46.9.6-107.4 53.4-114.9C151.6 70 234.1 38.6 290.1 82c67.4-22.3 136.3 29.4 130.9 101.1 41.1 12.6 52.8 66.9 19.7 95.2zm-70 74.3c-3.1-20.6-40.9-4.6-43.1-27.1-3.1-32 43.7-101.1 40-128-3.4-24-19.4-29.1-33.4-29.4-13.4-.3-16.9 2-21.4 4.6-2.9 1.7-6.6 4.9-11.7-.3-6.3-6-11.1-11.7-19.4-12.9-12.3-2-17.7 2-26.6 9.7-3.4 2.9-12 12.9-20 9.1-3.4-1.7-15.4-7.7-24-11.4-16.3-7.1-40 4.6-48.6 20-12.9 22.9-38 113.1-41.7 125.1-8.6 26.6 10.9 48.6 36.9 47.1 11.1-.6 18.3-4.6 25.4-17.4 4-7.4 41.7-107.7 44.6-112.6 2-3.4 8.9-8 14.6-5.1 5.7 3.1 6.9 9.4 6 15.1-1.1 9.7-28 70.9-28.9 77.7-3.4 22.9 26.9 26.6 38.6 4 3.7-7.1 45.7-92.6 49.4-98.3 4.3-6.3 7.4-8.3 11.7-8 3.1 0 8.3.9 7.1 10.9-1.4 9.4-35.1 72.3-38.9 87.7-4.6 20.6 6.6 41.4 24.9 50.6 11.4 5.7 62.5 15.7 58.5-11.1zm5.7 92.3c-10.3 7.4-12.9 22-5.7 32.6 7.1 10.6 21.4 13.1 32 6 10.6-7.4 13.1-22 6-32.6-7.4-10.6-21.7-13.5-32.3-6z"],megaport:[496,512,[],"f5a3","M214.5 209.6v66.2l33.5 33.5 33.3-33.3v-66.4l-33.4-33.4zM248 8C111 8 0 119 0 256s111 248 248 248 248-111 248-248S385 8 248 8zm145.1 414.4L367 441.6l-26-19.2v-65.5l-33.4-33.4-33.4 33.4v65.5L248 441.6l-26.1-19.2v-65.5l-33.4-33.4-33.5 33.4v65.5l-26.1 19.2-26.1-19.2v-87l59.5-59.5V188l59.5-59.5V52.9l26.1-19.2L274 52.9v75.6l59.5 59.5v87.6l59.7 59.7v87.1z"],mendeley:[640,512,[],"f7b3","M624.6 325.2c-12.3-12.4-29.7-19.2-48.4-17.2-43.3-1-49.7-34.9-37.5-98.8 22.8-57.5-14.9-131.5-87.4-130.8-77.4.7-81.7 82-130.9 82-48.1 0-54-81.3-130.9-82-72.9-.8-110.1 73.3-87.4 130.8 12.2 63.9 5.8 97.8-37.5 98.8-21.2-2.3-37 6.5-53 22.5-19.9 19.7-19.3 94.8 42.6 102.6 47.1 5.9 81.6-42.9 61.2-87.8-47.3-103.7 185.9-106.1 146.5-8.2-.1.1-.2.2-.3.4-26.8 42.8 6.8 97.4 58.8 95.2 52.1 2.1 85.4-52.6 58.8-95.2-.1-.2-.2-.3-.3-.4-39.4-97.9 193.8-95.5 146.5 8.2-4.6 10-6.7 21.3-5.7 33 4.9 53.4 68.7 74.1 104.9 35.2 17.8-14.8 23.1-65.6 0-88.3zm-303.9-19.1h-.6c-43.4 0-62.8-37.5-62.8-62.8 0-34.7 28.2-62.8 62.8-62.8h.6c34.7 0 62.8 28.1 62.8 62.8 0 25-19.2 62.8-62.8 62.8z"],microblog:[448,512,[],"f91a","M399.36,362.23c29.49-34.69,47.1-78.34,47.1-125.79C446.46,123.49,346.86,32,224,32S1.54,123.49,1.54,236.44,101.14,440.87,224,440.87a239.28,239.28,0,0,0,79.44-13.44,7.18,7.18,0,0,1,8.12,2.56c18.58,25.09,47.61,42.74,79.89,49.92a4.42,4.42,0,0,0,5.22-3.43,4.37,4.37,0,0,0-.85-3.62,87,87,0,0,1,3.69-110.69ZM329.52,212.4l-57.3,43.49L293,324.75a6.5,6.5,0,0,1-9.94,7.22L224,290.92,164.94,332a6.51,6.51,0,0,1-9.95-7.22l20.79-68.86-57.3-43.49a6.5,6.5,0,0,1,3.8-11.68l71.88-1.51,23.66-67.92a6.5,6.5,0,0,1,12.28,0l23.66,67.92,71.88,1.51a6.5,6.5,0,0,1,3.88,11.68Z"],microsoft:[448,512,[],"f3ca","M0 32h214.6v214.6H0V32zm233.4 0H448v214.6H233.4V32zM0 265.4h214.6V480H0V265.4zm233.4 0H448V480H233.4V265.4z"],mix:[448,512,[],"f3cb","M0 64v348.9c0 56.2 88 58.1 88 0V174.3c7.9-52.9 88-50.4 88 6.5v175.3c0 57.9 96 58 96 0V240c5.3-54.7 88-52.5 88 4.3v23.8c0 59.9 88 56.6 88 0V64H0z"],mixcloud:[640,512,[],"f289","M424.43 219.729C416.124 134.727 344.135 68 256.919 68c-72.266 0-136.224 46.516-159.205 114.074-54.545 8.029-96.63 54.822-96.63 111.582 0 62.298 50.668 112.966 113.243 112.966h289.614c52.329 0 94.969-42.362 94.969-94.693 0-45.131-32.118-83.063-74.48-92.2zm-20.489 144.53H114.327c-39.04 0-70.881-31.564-70.881-70.604s31.841-70.604 70.881-70.604c18.827 0 36.548 7.475 49.838 20.766 19.963 19.963 50.133-10.227 30.18-30.18-14.675-14.398-32.672-24.365-52.053-29.349 19.935-44.3 64.79-73.926 114.628-73.926 69.496 0 125.979 56.483 125.979 125.702 0 13.568-2.215 26.857-6.369 39.594-8.943 27.517 32.133 38.939 40.147 13.29 2.769-8.306 4.984-16.889 6.369-25.472 19.381 7.476 33.502 26.303 33.502 48.453 0 28.795-23.535 52.33-52.607 52.33zm235.069-52.33c0 44.024-12.737 86.386-37.102 122.657-4.153 6.092-10.798 9.414-17.72 9.414-16.317 0-27.127-18.826-17.443-32.949 19.381-29.349 29.903-63.682 29.903-99.122s-10.521-69.773-29.903-98.845c-15.655-22.831 19.361-47.24 35.163-23.534 24.366 35.993 37.102 78.356 37.102 122.379zm-70.88 0c0 31.565-9.137 62.021-26.857 88.325-4.153 6.091-10.798 9.136-17.72 9.136-17.201 0-27.022-18.979-17.443-32.948 13.013-19.104 19.658-41.255 19.658-64.513 0-22.981-6.645-45.408-19.658-64.512-15.761-22.986 19.008-47.095 35.163-23.535 17.719 26.026 26.857 56.483 26.857 88.047z"],mixer:[512,512,[],"f956","M114.57,76.07a45.71,45.71,0,0,0-67.51-6.41c-17.58,16.18-19,43.52-4.75,62.77l91.78,123L41.76,379.58c-14.23,19.25-13.11,46.59,4.74,62.77A45.71,45.71,0,0,0,114,435.94L242.89,262.7a12.14,12.14,0,0,0,0-14.23ZM470.24,379.58,377.91,255.45l91.78-123c14.22-19.25,12.83-46.59-4.75-62.77a45.71,45.71,0,0,0-67.51,6.41l-128,172.12a12.14,12.14,0,0,0,0,14.23L398,435.94a45.71,45.71,0,0,0,67.51,6.41C483.35,426.17,484.47,398.83,470.24,379.58Z"],mizuni:[496,512,[],"f3cc","M248 8C111 8 0 119.1 0 256c0 137 111 248 248 248s248-111 248-248C496 119.1 385 8 248 8zm-80 351.9c-31.4 10.6-58.8 27.3-80 48.2V136c0-22.1 17.9-40 40-40s40 17.9 40 40v223.9zm120-9.9c-12.9-2-26.2-3.1-39.8-3.1-13.8 0-27.2 1.1-40.2 3.1V136c0-22.1 17.9-40 40-40s40 17.9 40 40v214zm120 57.7c-21.2-20.8-48.6-37.4-80-48V136c0-22.1 17.9-40 40-40s40 17.9 40 40v271.7z"],modx:[448,512,[],"f285","M356 241.8l36.7 23.7V480l-133-83.8L356 241.8zM440 75H226.3l-23 37.8 153.5 96.5L440 75zm-89 142.8L55.2 32v214.5l46 29L351 217.8zM97 294.2L8 437h213.7l125-200.5L97 294.2z"],monero:[496,512,[],"f3d0","M352 384h108.4C417 455.9 338.1 504 248 504S79 455.9 35.6 384H144V256.2L248 361l104-105v128zM88 336V128l159.4 159.4L408 128v208h74.8c8.5-25.1 13.2-52 13.2-80C496 119 385 8 248 8S0 119 0 256c0 28 4.6 54.9 13.2 80H88z"],napster:[496,512,[],"f3d2","M298.3 373.6c-14.2 13.6-31.3 24.1-50.4 30.5-19-6.4-36.2-16.9-50.3-30.5h100.7zm44-199.6c20-16.9 43.6-29.2 69.6-36.2V299c0 219.4-328 217.6-328 .3V137.7c25.9 6.9 49.6 19.6 69.5 36.4 56.8-40 132.5-39.9 188.9-.1zm-208.8-58.5c64.4-60 164.3-60.1 228.9-.2-7.1 3.5-13.9 7.3-20.6 11.5-58.7-30.5-129.2-30.4-187.9.1-6.3-4-13.9-8.2-20.4-11.4zM43.8 93.2v69.3c-58.4 36.5-58.4 121.1.1 158.3 26.4 245.1 381.7 240.3 407.6 1.5l.3-1.7c58.7-36.3 58.9-121.7.2-158.2V93.2c-17.3.5-34 3-50.1 7.4-82-91.5-225.5-91.5-307.5.1-16.3-4.4-33.1-7-50.6-7.5zM259.2 352s36-.3 61.3-1.5c10.2-.5 21.1-4 25.5-6.5 26.3-15.1 25.4-39.2 26.2-47.4-79.5-.6-99.9-3.9-113 55.4zm-135.5-55.3c.8 8.2-.1 32.3 26.2 47.4 4.4 2.5 15.2 6 25.5 6.5 25.3 1.1 61.3 1.5 61.3 1.5-13.2-59.4-33.7-56.1-113-55.4zm169.1 123.4c-3.2-5.3-6.9-7.3-6.9-7.3-24.8 7.3-52.2 6.9-75.9 0 0 0-2.9 1.5-6.4 6.6-2.8 4.1-3.7 9.6-3.7 9.6 29.1 17.6 67.1 17.6 96.2 0-.1-.1-.3-4-3.3-8.9z"],neos:[512,512,[],"f612","M415.44 512h-95.11L212.12 357.46v91.1L125.69 512H28V29.82L68.47 0h108.05l123.74 176.13V63.45L386.69 0h97.69v461.5zM38.77 35.27V496l72-52.88V194l215.5 307.64h84.79l52.35-38.17h-78.27L69 13zm82.54 466.61l80-58.78v-101l-79.76-114.4v220.94L49 501.89h72.34zM80.63 10.77l310.6 442.57h82.37V10.77h-79.75v317.56L170.91 10.77zM311 191.65l72 102.81V15.93l-72 53v122.72z"],nimblr:[384,512,[],"f5a8","M246.6 299.29c15.57 0 27.15 11.46 27.15 27s-11.62 27-27.15 27c-15.7 0-27.15-11.57-27.15-27s11.55-27 27.15-27zM113 326.25c0-15.61 11.68-27 27.15-27s27.15 11.46 27.15 27-11.47 27-27.15 27c-15.44 0-27.15-11.31-27.15-27M191.76 159C157 159 89.45 178.77 59.25 227L14 0v335.48C14 433.13 93.61 512 191.76 512s177.76-78.95 177.76-176.52S290.13 159 191.76 159zm0 308.12c-73.27 0-132.51-58.9-132.51-131.59s59.24-131.59 132.51-131.59 132.51 58.86 132.51 131.54S265 467.07 191.76 467.07z"],node:[640,512,[],"f419","M316.3 452c-2.1 0-4.2-.6-6.1-1.6L291 439c-2.9-1.6-1.5-2.2-.5-2.5 3.8-1.3 4.6-1.6 8.7-4 .4-.2 1-.1 1.4.1l14.8 8.8c.5.3 1.3.3 1.8 0L375 408c.5-.3.9-.9.9-1.6v-66.7c0-.7-.3-1.3-.9-1.6l-57.8-33.3c-.5-.3-1.2-.3-1.8 0l-57.8 33.3c-.6.3-.9 1-.9 1.6v66.7c0 .6.4 1.2.9 1.5l15.8 9.1c8.6 4.3 13.9-.8 13.9-5.8v-65.9c0-.9.7-1.7 1.7-1.7h7.3c.9 0 1.7.7 1.7 1.7v65.9c0 11.5-6.2 18-17.1 18-3.3 0-6 0-13.3-3.6l-15.2-8.7c-3.7-2.2-6.1-6.2-6.1-10.5v-66.7c0-4.3 2.3-8.4 6.1-10.5l57.8-33.4c3.7-2.1 8.5-2.1 12.1 0l57.8 33.4c3.7 2.2 6.1 6.2 6.1 10.5v66.7c0 4.3-2.3 8.4-6.1 10.5l-57.8 33.4c-1.7 1.1-3.8 1.7-6 1.7zm46.7-65.8c0-12.5-8.4-15.8-26.2-18.2-18-2.4-19.8-3.6-19.8-7.8 0-3.5 1.5-8.1 14.8-8.1 11.9 0 16.3 2.6 18.1 10.6.2.8.8 1.3 1.6 1.3h7.5c.5 0 .9-.2 1.2-.5.3-.4.5-.8.4-1.3-1.2-13.8-10.3-20.2-28.8-20.2-16.5 0-26.3 7-26.3 18.6 0 12.7 9.8 16.1 25.6 17.7 18.9 1.9 20.4 4.6 20.4 8.3 0 6.5-5.2 9.2-17.4 9.2-15.3 0-18.7-3.8-19.8-11.4-.1-.8-.8-1.4-1.7-1.4h-7.5c-.9 0-1.7.7-1.7 1.7 0 9.7 5.3 21.3 30.6 21.3 18.5 0 29-7.2 29-19.8zm54.5-50.1c0 6.1-5 11.1-11.1 11.1s-11.1-5-11.1-11.1c0-6.3 5.2-11.1 11.1-11.1 6-.1 11.1 4.8 11.1 11.1zm-1.8 0c0-5.2-4.2-9.3-9.4-9.3-5.1 0-9.3 4.1-9.3 9.3 0 5.2 4.2 9.4 9.3 9.4 5.2-.1 9.4-4.3 9.4-9.4zm-4.5 6.2h-2.6c-.1-.6-.5-3.8-.5-3.9-.2-.7-.4-1.1-1.3-1.1h-2.2v5h-2.4v-12.5h4.3c1.5 0 4.4 0 4.4 3.3 0 2.3-1.5 2.8-2.4 3.1 1.7.1 1.8 1.2 2.1 2.8.1 1 .3 2.7.6 3.3zm-2.8-8.8c0-1.7-1.2-1.7-1.8-1.7h-2v3.5h1.9c1.6 0 1.9-1.1 1.9-1.8zM137.3 191c0-2.7-1.4-5.1-3.7-6.4l-61.3-35.3c-1-.6-2.2-.9-3.4-1h-.6c-1.2 0-2.3.4-3.4 1L3.7 184.6C1.4 185.9 0 188.4 0 191l.1 95c0 1.3.7 2.5 1.8 3.2 1.1.7 2.5.7 3.7 0L42 268.3c2.3-1.4 3.7-3.8 3.7-6.4v-44.4c0-2.6 1.4-5.1 3.7-6.4l15.5-8.9c1.2-.7 2.4-1 3.7-1 1.3 0 2.6.3 3.7 1l15.5 8.9c2.3 1.3 3.7 3.8 3.7 6.4v44.4c0 2.6 1.4 5.1 3.7 6.4l36.4 20.9c1.1.7 2.6.7 3.7 0 1.1-.6 1.8-1.9 1.8-3.2l.2-95zM472.5 87.3v176.4c0 2.6-1.4 5.1-3.7 6.4l-61.3 35.4c-2.3 1.3-5.1 1.3-7.4 0l-61.3-35.4c-2.3-1.3-3.7-3.8-3.7-6.4v-70.8c0-2.6 1.4-5.1 3.7-6.4l61.3-35.4c2.3-1.3 5.1-1.3 7.4 0l15.3 8.8c1.7 1 3.9-.3 3.9-2.2v-94c0-2.8 3-4.6 5.5-3.2l36.5 20.4c2.3 1.2 3.8 3.7 3.8 6.4zm-46 128.9c0-.7-.4-1.3-.9-1.6l-21-12.2c-.6-.3-1.3-.3-1.9 0l-21 12.2c-.6.3-.9.9-.9 1.6v24.3c0 .7.4 1.3.9 1.6l21 12.1c.6.3 1.3.3 1.8 0l21-12.1c.6-.3.9-.9.9-1.6v-24.3zm209.8-.7c2.3-1.3 3.7-3.8 3.7-6.4V192c0-2.6-1.4-5.1-3.7-6.4l-60.9-35.4c-2.3-1.3-5.1-1.3-7.4 0l-61.3 35.4c-2.3 1.3-3.7 3.8-3.7 6.4v70.8c0 2.7 1.4 5.1 3.7 6.4l60.9 34.7c2.2 1.3 5 1.3 7.3 0l36.8-20.5c2.5-1.4 2.5-5 0-6.4L550 241.6c-1.2-.7-1.9-1.9-1.9-3.2v-22.2c0-1.3.7-2.5 1.9-3.2l19.2-11.1c1.1-.7 2.6-.7 3.7 0l19.2 11.1c1.1.7 1.9 1.9 1.9 3.2v17.4c0 2.8 3.1 4.6 5.6 3.2l36.7-21.3zM559 219c-.4.3-.7.7-.7 1.2v13.6c0 .5.3 1 .7 1.2l11.8 6.8c.4.3 1 .3 1.4 0L584 235c.4-.3.7-.7.7-1.2v-13.6c0-.5-.3-1-.7-1.2l-11.8-6.8c-.4-.3-1-.3-1.4 0L559 219zm-254.2 43.5v-70.4c0-2.6-1.6-5.1-3.9-6.4l-61.1-35.2c-2.1-1.2-5-1.4-7.4 0l-61.1 35.2c-2.3 1.3-3.9 3.7-3.9 6.4v70.4c0 2.8 1.9 5.2 4 6.4l61.2 35.2c2.4 1.4 5.2 1.3 7.4 0l61-35.2c1.8-1 3.1-2.7 3.6-4.7.1-.5.2-1.1.2-1.7zm-74.3-124.9l-.8.5h1.1l-.3-.5zm76.2 130.2l-.4-.7v.9l.4-.2z"],"node-js":[448,512,[],"f3d3","M224 508c-6.7 0-13.5-1.8-19.4-5.2l-61.7-36.5c-9.2-5.2-4.7-7-1.7-8 12.3-4.3 14.8-5.2 27.9-12.7 1.4-.8 3.2-.5 4.6.4l47.4 28.1c1.7 1 4.1 1 5.7 0l184.7-106.6c1.7-1 2.8-3 2.8-5V149.3c0-2.1-1.1-4-2.9-5.1L226.8 37.7c-1.7-1-4-1-5.7 0L36.6 144.3c-1.8 1-2.9 3-2.9 5.1v213.1c0 2 1.1 4 2.9 4.9l50.6 29.2c27.5 13.7 44.3-2.4 44.3-18.7V167.5c0-3 2.4-5.3 5.4-5.3h23.4c2.9 0 5.4 2.3 5.4 5.3V378c0 36.6-20 57.6-54.7 57.6-10.7 0-19.1 0-42.5-11.6l-48.4-27.9C8.1 389.2.7 376.3.7 362.4V149.3c0-13.8 7.4-26.8 19.4-33.7L204.6 9c11.7-6.6 27.2-6.6 38.8 0l184.7 106.7c12 6.9 19.4 19.8 19.4 33.7v213.1c0 13.8-7.4 26.7-19.4 33.7L243.4 502.8c-5.9 3.4-12.6 5.2-19.4 5.2zm149.1-210.1c0-39.9-27-50.5-83.7-58-57.4-7.6-63.2-11.5-63.2-24.9 0-11.1 4.9-25.9 47.4-25.9 37.9 0 51.9 8.2 57.7 33.8.5 2.4 2.7 4.2 5.2 4.2h24c1.5 0 2.9-.6 3.9-1.7s1.5-2.6 1.4-4.1c-3.7-44.1-33-64.6-92.2-64.6-52.7 0-84.1 22.2-84.1 59.5 0 40.4 31.3 51.6 81.8 56.6 60.5 5.9 65.2 14.8 65.2 26.7 0 20.6-16.6 29.4-55.5 29.4-48.9 0-59.6-12.3-63.2-36.6-.4-2.6-2.6-4.5-5.3-4.5h-23.9c-3 0-5.3 2.4-5.3 5.3 0 31.1 16.9 68.2 97.8 68.2 58.4-.1 92-23.2 92-63.4z"],npm:[576,512,[],"f3d4","M288 288h-32v-64h32v64zm288-128v192H288v32H160v-32H0V160h576zm-416 32H32v128h64v-96h32v96h32V192zm160 0H192v160h64v-32h64V192zm224 0H352v128h64v-96h32v96h32v-96h32v96h32V192z"],ns8:[640,512,[],"f3d5","M187.1 159.9l-34.2 113.7-54.5-113.7H49L0 320h44.9L76 213.5 126.6 320h56.9L232 159.9h-44.9zm452.5-.9c-2.9-18-23.9-28.1-42.1-31.3-44.6-7.8-101.9 16.3-88.5 58.8v.1c-43.8 8.7-74.3 26.8-94.2 48.2-3-9.8-13.6-16.6-34-16.6h-87.6c-9.3 0-12.9-2.3-11.5-7.4 1.6-5.5 1.9-6.8 3.7-12.2 2.1-6.4 7.8-7.1 13.3-7.1h133.5l9.7-31.5c-139.7 0-144.5-.5-160.1 1.2-12.3 1.3-23.5 4.8-30.6 15-6.8 9.9-14.4 35.6-17.6 47.1-5.4 19.4-.6 28.6 32.8 28.6h87.3c7.8 0 8.8 2.7 7.7 6.6-1.1 4.4-2.8 10-4.5 14.6-1.6 4.2-4.7 7.4-13.8 7.4H216.3L204.7 320c139.9 0 145.3-.6 160.9-2.3 6.6-.7 13-2.1 18.5-4.9.2 3.7.5 7.3 1.2 10.8 5.4 30.5 27.4 52.3 56.8 59.5 48.6 11.9 108.7-16.8 135.1-68 18.7-36.2 14.1-76.2-3.4-105.5h.1c29.6-5.9 70.3-22 65.7-50.6zM530.7 263.7c-5.9 29.5-36.6 47.8-61.6 43.9-30.9-4.8-38.5-39.5-14.1-64.8 16.2-16.8 45.2-24 68.5-26.9 6.7 14.1 10.3 32 7.2 47.8zm21.8-83.1c-4.2-6-9.8-18.5-2.5-26.3 6.7-7.2 20.9-10.1 31.8-7.7 15.3 3.4 19.7 15.9 4.9 24.4-10.7 6.1-23.6 8.1-34.2 9.6z"],nutritionix:[400,512,[],"f3d6","M88 8.1S221.4-.1 209 112.5c0 0 19.1-74.9 103-40.6 0 0-17.7 74-88 56 0 0 14.6-54.6 66.1-56.6 0 0-39.9-10.3-82.1 48.8 0 0-19.8-94.5-93.6-99.7 0 0 75.2 19.4 77.6 107.5 0 .1-106.4 7-104-119.8zm312 315.6c0 48.5-9.7 95.3-32 132.3-42.2 30.9-105 48-168 48-62.9 0-125.8-17.1-168-48C9.7 419 0 372.2 0 323.7 0 275.3 17.7 229 40 192c42.2-30.9 97.1-48.6 160-48.6 63 0 117.8 17.6 160 48.6 22.3 37 40 83.3 40 131.7zM120 428c0-15.5-12.5-28-28-28s-28 12.5-28 28 12.5 28 28 28 28-12.5 28-28zm0-66.2c0-15.5-12.5-28-28-28s-28 12.5-28 28 12.5 28 28 28 28-12.5 28-28zm0-66.2c0-15.5-12.5-28-28-28s-28 12.5-28 28 12.5 28 28 28 28-12.5 28-28zM192 428c0-15.5-12.5-28-28-28s-28 12.5-28 28 12.5 28 28 28 28-12.5 28-28zm0-66.2c0-15.5-12.5-28-28-28s-28 12.5-28 28 12.5 28 28 28 28-12.5 28-28zm0-66.2c0-15.5-12.5-28-28-28s-28 12.5-28 28 12.5 28 28 28 28-12.5 28-28zM264 428c0-15.5-12.5-28-28-28s-28 12.5-28 28 12.5 28 28 28 28-12.5 28-28zm0-66.2c0-15.5-12.5-28-28-28s-28 12.5-28 28 12.5 28 28 28 28-12.5 28-28zm0-66.2c0-15.5-12.5-28-28-28s-28 12.5-28 28 12.5 28 28 28 28-12.5 28-28zM336 428c0-15.5-12.5-28-28-28s-28 12.5-28 28 12.5 28 28 28 28-12.5 28-28zm0-66.2c0-15.5-12.5-28-28-28s-28 12.5-28 28 12.5 28 28 28 28-12.5 28-28zm0-66.2c0-15.5-12.5-28-28-28s-28 12.5-28 28 12.5 28 28 28 28-12.5 28-28zm24-39.6c-4.8-22.3-7.4-36.9-16-56-38.8-19.9-90.5-32-144-32S94.8 180.1 56 200c-8.8 19.5-11.2 33.9-16 56 42.2-7.9 98.7-14.8 160-14.8s117.8 6.9 160 14.8z"],odnoklassniki:[320,512,[],"f263","M275.1 334c-27.4 17.4-65.1 24.3-90 26.9l20.9 20.6 76.3 76.3c27.9 28.6-17.5 73.3-45.7 45.7-19.1-19.4-47.1-47.4-76.3-76.6L84 503.4c-28.2 27.5-73.6-17.6-45.4-45.7 19.4-19.4 47.1-47.4 76.3-76.3l20.6-20.6c-24.6-2.6-62.9-9.1-90.6-26.9-32.6-21-46.9-33.3-34.3-59 7.4-14.6 27.7-26.9 54.6-5.7 0 0 36.3 28.9 94.9 28.9s94.9-28.9 94.9-28.9c26.9-21.1 47.1-8.9 54.6 5.7 12.4 25.7-1.9 38-34.5 59.1zM30.3 129.7C30.3 58 88.6 0 160 0s129.7 58 129.7 129.7c0 71.4-58.3 129.4-129.7 129.4s-129.7-58-129.7-129.4zm66 0c0 35.1 28.6 63.7 63.7 63.7s63.7-28.6 63.7-63.7c0-35.4-28.6-64-63.7-64s-63.7 28.6-63.7 64z"],"odnoklassniki-square":[448,512,[],"f264","M184.2 177.1c0-22.1 17.9-40 39.8-40s39.8 17.9 39.8 40c0 22-17.9 39.8-39.8 39.8s-39.8-17.9-39.8-39.8zM448 80v352c0 26.5-21.5 48-48 48H48c-26.5 0-48-21.5-48-48V80c0-26.5 21.5-48 48-48h352c26.5 0 48 21.5 48 48zm-305.1 97.1c0 44.6 36.4 80.9 81.1 80.9s81.1-36.2 81.1-80.9c0-44.8-36.4-81.1-81.1-81.1s-81.1 36.2-81.1 81.1zm174.5 90.7c-4.6-9.1-17.3-16.8-34.1-3.6 0 0-22.7 18-59.3 18s-59.3-18-59.3-18c-16.8-13.2-29.5-5.5-34.1 3.6-7.9 16.1 1.1 23.7 21.4 37 17.3 11.1 41.2 15.2 56.6 16.8l-12.9 12.9c-18.2 18-35.5 35.5-47.7 47.7-17.6 17.6 10.7 45.8 28.4 28.6l47.7-47.9c18.2 18.2 35.7 35.7 47.7 47.9 17.6 17.2 46-10.7 28.6-28.6l-47.7-47.7-13-12.9c15.5-1.6 39.1-5.9 56.2-16.8 20.4-13.3 29.3-21 21.5-37z"],"old-republic":[496,512,[],"f510","M235.76 10.23c7.5-.31 15-.28 22.5-.09 3.61.14 7.2.4 10.79.73 4.92.27 9.79 1.03 14.67 1.62 2.93.43 5.83.98 8.75 1.46 7.9 1.33 15.67 3.28 23.39 5.4 12.24 3.47 24.19 7.92 35.76 13.21 26.56 12.24 50.94 29.21 71.63 49.88 20.03 20.09 36.72 43.55 48.89 69.19 1.13 2.59 2.44 5.1 3.47 7.74 2.81 6.43 5.39 12.97 7.58 19.63 4.14 12.33 7.34 24.99 9.42 37.83.57 3.14 1.04 6.3 1.4 9.47.55 3.83.94 7.69 1.18 11.56.83 8.34.84 16.73.77 25.1-.07 4.97-.26 9.94-.75 14.89-.24 3.38-.51 6.76-.98 10.12-.39 2.72-.63 5.46-1.11 8.17-.9 5.15-1.7 10.31-2.87 15.41-4.1 18.5-10.3 36.55-18.51 53.63-15.77 32.83-38.83 62.17-67.12 85.12a246.503 246.503 0 0 1-56.91 34.86c-6.21 2.68-12.46 5.25-18.87 7.41-3.51 1.16-7.01 2.38-10.57 3.39-6.62 1.88-13.29 3.64-20.04 5-4.66.91-9.34 1.73-14.03 2.48-5.25.66-10.5 1.44-15.79 1.74-6.69.66-13.41.84-20.12.81-6.82.03-13.65-.12-20.45-.79-3.29-.23-6.57-.5-9.83-.95-2.72-.39-5.46-.63-8.17-1.11-4.12-.72-8.25-1.37-12.35-2.22-4.25-.94-8.49-1.89-12.69-3.02-8.63-2.17-17.08-5.01-25.41-8.13-10.49-4.12-20.79-8.75-30.64-14.25-2.14-1.15-4.28-2.29-6.35-3.57-11.22-6.58-21.86-14.1-31.92-22.34-34.68-28.41-61.41-66.43-76.35-108.7-3.09-8.74-5.71-17.65-7.8-26.68-1.48-6.16-2.52-12.42-3.58-18.66-.4-2.35-.61-4.73-.95-7.09-.6-3.96-.75-7.96-1.17-11.94-.8-9.47-.71-18.99-.51-28.49.14-3.51.34-7.01.7-10.51.31-3.17.46-6.37.92-9.52.41-2.81.65-5.65 1.16-8.44.7-3.94 1.3-7.9 2.12-11.82 3.43-16.52 8.47-32.73 15.26-48.18 1.15-2.92 2.59-5.72 3.86-8.59 8.05-16.71 17.9-32.56 29.49-47.06 20-25.38 45.1-46.68 73.27-62.47 7.5-4.15 15.16-8.05 23.07-11.37 15.82-6.88 32.41-11.95 49.31-15.38 3.51-.67 7.04-1.24 10.56-1.85 2.62-.47 5.28-.7 7.91-1.08 3.53-.53 7.1-.68 10.65-1.04 2.46-.24 4.91-.36 7.36-.51m8.64 24.41c-9.23.1-18.43.99-27.57 2.23-7.3 1.08-14.53 2.6-21.71 4.3-13.91 3.5-27.48 8.34-40.46 14.42-10.46 4.99-20.59 10.7-30.18 17.22-4.18 2.92-8.4 5.8-12.34 9.03-5.08 3.97-9.98 8.17-14.68 12.59-2.51 2.24-4.81 4.7-7.22 7.06-28.22 28.79-48.44 65.39-57.5 104.69-2.04 8.44-3.54 17.02-4.44 25.65-1.1 8.89-1.44 17.85-1.41 26.8.11 7.14.38 14.28 1.22 21.37.62 7.12 1.87 14.16 3.2 21.18 1.07 4.65 2.03 9.32 3.33 13.91 6.29 23.38 16.5 45.7 30.07 65.75 8.64 12.98 18.78 24.93 29.98 35.77 16.28 15.82 35.05 29.04 55.34 39.22 7.28 3.52 14.66 6.87 22.27 9.63 5.04 1.76 10.06 3.57 15.22 4.98 11.26 3.23 22.77 5.6 34.39 7.06 2.91.29 5.81.61 8.72.9 13.82 1.08 27.74 1 41.54-.43 4.45-.6 8.92-.99 13.35-1.78 3.63-.67 7.28-1.25 10.87-2.1 4.13-.98 8.28-1.91 12.36-3.07 26.5-7.34 51.58-19.71 73.58-36.2 15.78-11.82 29.96-25.76 42.12-41.28 3.26-4.02 6.17-8.31 9.13-12.55 3.39-5.06 6.58-10.25 9.6-15.54 2.4-4.44 4.74-8.91 6.95-13.45 5.69-12.05 10.28-24.62 13.75-37.49 2.59-10.01 4.75-20.16 5.9-30.45 1.77-13.47 1.94-27.1 1.29-40.65-.29-3.89-.67-7.77-1-11.66-2.23-19.08-6.79-37.91-13.82-55.8-5.95-15.13-13.53-29.63-22.61-43.13-12.69-18.8-28.24-35.68-45.97-49.83-25.05-20-54.47-34.55-85.65-42.08-7.78-1.93-15.69-3.34-23.63-4.45-3.91-.59-7.85-.82-11.77-1.24-7.39-.57-14.81-.72-22.22-.58zM139.26 83.53c13.3-8.89 28.08-15.38 43.3-20.18-3.17 1.77-6.44 3.38-9.53 5.29-11.21 6.68-21.52 14.9-30.38 24.49-6.8 7.43-12.76 15.73-17.01 24.89-3.29 6.86-5.64 14.19-6.86 21.71-.93 4.85-1.3 9.81-1.17 14.75.13 13.66 4.44 27.08 11.29 38.82 5.92 10.22 13.63 19.33 22.36 27.26 4.85 4.36 10.24 8.09 14.95 12.6 2.26 2.19 4.49 4.42 6.43 6.91 2.62 3.31 4.89 6.99 5.99 11.1.9 3.02.66 6.2.69 9.31.02 4.1-.04 8.2.03 12.3.14 3.54-.02 7.09.11 10.63.08 2.38.02 4.76.05 7.14.16 5.77.06 11.53.15 17.3.11 2.91.02 5.82.13 8.74.03 1.63.13 3.28-.03 4.91-.91.12-1.82.18-2.73.16-10.99 0-21.88-2.63-31.95-6.93-6-2.7-11.81-5.89-17.09-9.83-5.75-4.19-11.09-8.96-15.79-14.31-6.53-7.24-11.98-15.39-16.62-23.95-1.07-2.03-2.24-4.02-3.18-6.12-1.16-2.64-2.62-5.14-3.67-7.82-4.05-9.68-6.57-19.94-8.08-30.31-.49-4.44-1.09-8.88-1.2-13.35-.7-15.73.84-31.55 4.67-46.82 2.12-8.15 4.77-16.18 8.31-23.83 6.32-14.2 15.34-27.18 26.3-38.19 6.28-6.2 13.13-11.84 20.53-16.67zm175.37-20.12c2.74.74 5.41 1.74 8.09 2.68 6.36 2.33 12.68 4.84 18.71 7.96 13.11 6.44 25.31 14.81 35.82 24.97 10.2 9.95 18.74 21.6 25.14 34.34 1.28 2.75 2.64 5.46 3.81 8.26 6.31 15.1 10 31.26 11.23 47.57.41 4.54.44 9.09.45 13.64.07 11.64-1.49 23.25-4.3 34.53-1.97 7.27-4.35 14.49-7.86 21.18-3.18 6.64-6.68 13.16-10.84 19.24-6.94 10.47-15.6 19.87-25.82 27.22-10.48 7.64-22.64 13.02-35.4 15.38-3.51.69-7.08 1.08-10.66 1.21-1.85.06-3.72.16-5.56-.1-.28-2.15 0-4.31-.01-6.46-.03-3.73.14-7.45.1-11.17.19-7.02.02-14.05.21-21.07.03-2.38-.03-4.76.03-7.14.17-5.07-.04-10.14.14-15.21.1-2.99-.24-6.04.51-8.96.66-2.5 1.78-4.86 3.09-7.08 4.46-7.31 11.06-12.96 17.68-18.26 5.38-4.18 10.47-8.77 15.02-13.84 7.68-8.37 14.17-17.88 18.78-28.27 2.5-5.93 4.52-12.1 5.55-18.46.86-4.37 1.06-8.83 1.01-13.27-.02-7.85-1.4-15.65-3.64-23.17-1.75-5.73-4.27-11.18-7.09-16.45-3.87-6.93-8.65-13.31-13.96-19.2-9.94-10.85-21.75-19.94-34.6-27.1-1.85-1.02-3.84-1.82-5.63-2.97zm-100.8 58.45c.98-1.18 1.99-2.33 3.12-3.38-.61.93-1.27 1.81-1.95 2.68-3.1 3.88-5.54 8.31-7.03 13.06-.87 3.27-1.68 6.6-1.73 10-.07 2.52-.08 5.07.32 7.57 1.13 7.63 4.33 14.85 8.77 21.12 2 2.7 4.25 5.27 6.92 7.33 1.62 1.27 3.53 2.09 5.34 3.05 3.11 1.68 6.32 3.23 9.07 5.48 2.67 2.09 4.55 5.33 4.4 8.79-.01 73.67 0 147.34-.01 221.02 0 1.35-.08 2.7.04 4.04.13 1.48.82 2.83 1.47 4.15.86 1.66 1.78 3.34 3.18 4.62.85.77 1.97 1.4 3.15 1.24 1.5-.2 2.66-1.35 3.45-2.57.96-1.51 1.68-3.16 2.28-4.85.76-2.13.44-4.42.54-6.63.14-4.03-.02-8.06.14-12.09.03-5.89.03-11.77.06-17.66.14-3.62.03-7.24.11-10.86.15-4.03-.02-8.06.14-12.09.03-5.99.03-11.98.07-17.97.14-3.62.02-7.24.11-10.86.14-3.93-.02-7.86.14-11.78.03-5.99.03-11.98.06-17.97.16-3.94-.01-7.88.19-11.82.29 1.44.13 2.92.22 4.38.19 3.61.42 7.23.76 10.84.32 3.44.44 6.89.86 10.32.37 3.1.51 6.22.95 9.31.57 4.09.87 8.21 1.54 12.29 1.46 9.04 2.83 18.11 5.09 26.99 1.13 4.82 2.4 9.61 4 14.3 2.54 7.9 5.72 15.67 10.31 22.62 1.73 2.64 3.87 4.98 6.1 7.21.27.25.55.51.88.71.6.25 1.31-.07 1.7-.57.71-.88 1.17-1.94 1.7-2.93 4.05-7.8 8.18-15.56 12.34-23.31.7-1.31 1.44-2.62 2.56-3.61 1.75-1.57 3.84-2.69 5.98-3.63 2.88-1.22 5.9-2.19 9.03-2.42 6.58-.62 13.11.75 19.56 1.85 3.69.58 7.4 1.17 11.13 1.41 3.74.1 7.48.05 11.21-.28 8.55-.92 16.99-2.96 24.94-6.25 5.3-2.24 10.46-4.83 15.31-7.93 11.46-7.21 21.46-16.57 30.04-27.01 1.17-1.42 2.25-2.9 3.46-4.28-1.2 3.24-2.67 6.37-4.16 9.48-1.25 2.9-2.84 5.61-4.27 8.42-5.16 9.63-11.02 18.91-17.75 27.52-4.03 5.21-8.53 10.05-13.33 14.57-6.64 6.05-14.07 11.37-22.43 14.76-8.21 3.37-17.31 4.63-26.09 3.29-3.56-.58-7.01-1.69-10.41-2.88-2.79-.97-5.39-2.38-8.03-3.69-3.43-1.71-6.64-3.81-9.71-6.08 2.71 3.06 5.69 5.86 8.7 8.61 4.27 3.76 8.74 7.31 13.63 10.23 3.98 2.45 8.29 4.4 12.84 5.51 1.46.37 2.96.46 4.45.6-1.25 1.1-2.63 2.04-3.99 2.98-9.61 6.54-20.01 11.86-30.69 16.43-20.86 8.7-43.17 13.97-65.74 15.34-4.66.24-9.32.36-13.98.36-4.98-.11-9.97-.13-14.92-.65-11.2-.76-22.29-2.73-33.17-5.43-10.35-2.71-20.55-6.12-30.3-10.55-8.71-3.86-17.12-8.42-24.99-13.79-1.83-1.31-3.74-2.53-5.37-4.08 6.6-1.19 13.03-3.39 18.99-6.48 5.74-2.86 10.99-6.66 15.63-11.07 2.24-2.19 4.29-4.59 6.19-7.09-3.43 2.13-6.93 4.15-10.62 5.78-4.41 2.16-9.07 3.77-13.81 5.02-5.73 1.52-11.74 1.73-17.61 1.14-8.13-.95-15.86-4.27-22.51-8.98-4.32-2.94-8.22-6.43-11.96-10.06-9.93-10.16-18.2-21.81-25.66-33.86-3.94-6.27-7.53-12.75-11.12-19.22-1.05-2.04-2.15-4.05-3.18-6.1 2.85 2.92 5.57 5.97 8.43 8.88 8.99 8.97 18.56 17.44 29.16 24.48 7.55 4.9 15.67 9.23 24.56 11.03 3.11.73 6.32.47 9.47.81 2.77.28 5.56.2 8.34.3 5.05.06 10.11.04 15.16-.16 3.65-.16 7.27-.66 10.89-1.09 2.07-.25 4.11-.71 6.14-1.2 3.88-.95 8.11-.96 11.83.61 4.76 1.85 8.44 5.64 11.38 9.71 2.16 3.02 4.06 6.22 5.66 9.58 1.16 2.43 2.46 4.79 3.55 7.26 1 2.24 2.15 4.42 3.42 6.52.67 1.02 1.4 2.15 2.62 2.55 1.06-.75 1.71-1.91 2.28-3.03 2.1-4.16 3.42-8.65 4.89-13.05 2.02-6.59 3.78-13.27 5.19-20.02 2.21-9.25 3.25-18.72 4.54-28.13.56-3.98.83-7.99 1.31-11.97.87-10.64 1.9-21.27 2.24-31.94.08-1.86.24-3.71.25-5.57.01-4.35.25-8.69.22-13.03-.01-2.38-.01-4.76 0-7.13.05-5.07-.2-10.14-.22-15.21-.2-6.61-.71-13.2-1.29-19.78-.73-5.88-1.55-11.78-3.12-17.51-2.05-7.75-5.59-15.03-9.8-21.82-3.16-5.07-6.79-9.88-11.09-14.03-3.88-3.86-8.58-7.08-13.94-8.45-1.5-.41-3.06-.45-4.59-.64.07-2.99.7-5.93 1.26-8.85 1.59-7.71 3.8-15.3 6.76-22.6 1.52-4.03 3.41-7.9 5.39-11.72 3.45-6.56 7.62-12.79 12.46-18.46zm31.27 1.7c.35-.06.71-.12 1.07-.19.19 1.79.09 3.58.1 5.37v38.13c-.01 1.74.13 3.49-.15 5.22-.36-.03-.71-.05-1.06-.05-.95-3.75-1.72-7.55-2.62-11.31-.38-1.53-.58-3.09-1.07-4.59-1.7-.24-3.43-.17-5.15-.2-5.06-.01-10.13 0-15.19-.01-1.66-.01-3.32.09-4.98-.03-.03-.39-.26-.91.16-1.18 1.28-.65 2.72-.88 4.06-1.35 3.43-1.14 6.88-2.16 10.31-3.31 1.39-.48 2.9-.72 4.16-1.54.04-.56.02-1.13-.05-1.68-1.23-.55-2.53-.87-3.81-1.28-3.13-1.03-6.29-1.96-9.41-3.02-1.79-.62-3.67-1-5.41-1.79-.03-.37-.07-.73-.11-1.09 5.09-.19 10.2.06 15.3-.12 3.36-.13 6.73.08 10.09-.07.12-.39.26-.77.37-1.16 1.08-4.94 2.33-9.83 3.39-14.75zm5.97-.2c.36.05.72.12 1.08.2.98 3.85 1.73 7.76 2.71 11.61.36 1.42.56 2.88 1.03 4.27 2.53.18 5.07-.01 7.61.05 5.16.12 10.33.12 15.49.07.76-.01 1.52.03 2.28.08-.04.36-.07.72-.1 1.08-1.82.83-3.78 1.25-5.67 1.89-3.73 1.23-7.48 2.39-11.22 3.57-.57.17-1.12.42-1.67.64-.15.55-.18 1.12-.12 1.69.87.48 1.82.81 2.77 1.09 4.88 1.52 9.73 3.14 14.63 4.6.38.13.78.27 1.13.49.4.27.23.79.15 1.18-1.66.13-3.31.03-4.97.04-5.17.01-10.33-.01-15.5.01-1.61.03-3.22-.02-4.82.21-.52 1.67-.72 3.42-1.17 5.11-.94 3.57-1.52 7.24-2.54 10.78-.36.01-.71.02-1.06.06-.29-1.73-.15-3.48-.15-5.22v-38.13c.02-1.78-.08-3.58.11-5.37zM65.05 168.33c1.12-2.15 2.08-4.4 3.37-6.46-1.82 7.56-2.91 15.27-3.62 23-.8 7.71-.85 15.49-.54 23.23 1.05 19.94 5.54 39.83 14.23 57.88 2.99 5.99 6.35 11.83 10.5 17.11 6.12 7.47 12.53 14.76 19.84 21.09 4.8 4.1 9.99 7.78 15.54 10.8 3.27 1.65 6.51 3.39 9.94 4.68 5.01 2.03 10.19 3.61 15.42 4.94 3.83.96 7.78 1.41 11.52 2.71 5 1.57 9.47 4.61 13.03 8.43 4.93 5.23 8.09 11.87 10.2 18.67.99 2.9 1.59 5.91 2.17 8.92.15.75.22 1.52.16 2.29-6.5 2.78-13.26 5.06-20.26 6.18-4.11.78-8.29.99-12.46 1.08-10.25.24-20.47-1.76-30.12-5.12-3.74-1.42-7.49-2.85-11.03-4.72-8.06-3.84-15.64-8.7-22.46-14.46-2.92-2.55-5.83-5.13-8.4-8.03-9.16-9.83-16.3-21.41-21.79-33.65-2.39-5.55-4.61-11.18-6.37-16.96-1.17-3.94-2.36-7.89-3.26-11.91-.75-2.94-1.22-5.95-1.87-8.92-.46-2.14-.69-4.32-1.03-6.48-.85-5.43-1.28-10.93-1.33-16.43.11-6.18.25-12.37 1.07-18.5.4-2.86.67-5.74 1.15-8.6.98-5.7 2.14-11.37 3.71-16.93 3.09-11.65 7.48-22.95 12.69-33.84zm363.73-6.44c1.1 1.66 1.91 3.48 2.78 5.26 2.1 4.45 4.24 8.9 6.02 13.49 7.61 18.76 12.3 38.79 13.04 59.05.02 1.76.07 3.52.11 5.29.13 9.57-1.27 19.09-3.18 28.45-.73 3.59-1.54 7.17-2.58 10.69-4.04 14.72-10 29-18.41 41.78-8.21 12.57-19.01 23.55-31.84 31.41-5.73 3.59-11.79 6.64-18.05 9.19-5.78 2.19-11.71 4.03-17.8 5.11-6.4 1.05-12.91 1.52-19.4 1.23-7.92-.48-15.78-2.07-23.21-4.85-1.94-.8-3.94-1.46-5.84-2.33-.21-1.51.25-2.99.53-4.46 1.16-5.74 3.03-11.36 5.7-16.58 2.37-4.51 5.52-8.65 9.46-11.9 2.43-2.05 5.24-3.61 8.16-4.83 3.58-1.5 7.47-1.97 11.24-2.83 7.23-1.71 14.37-3.93 21.15-7 10.35-4.65 19.71-11.38 27.65-19.46 1.59-1.61 3.23-3.18 4.74-4.87 3.37-3.76 6.71-7.57 9.85-11.53 7.48-10.07 12.82-21.59 16.71-33.48 1.58-5.3 3.21-10.6 4.21-16.05.63-2.87 1.04-5.78 1.52-8.68.87-6.09 1.59-12.22 1.68-18.38.12-6.65.14-13.32-.53-19.94-.73-7.99-1.87-15.96-3.71-23.78z"],opencart:[640,512,[],"f23d","M423.3 440.7c0 25.3-20.3 45.6-45.6 45.6s-45.8-20.3-45.8-45.6 20.6-45.8 45.8-45.8c25.4 0 45.6 20.5 45.6 45.8zm-253.9-45.8c-25.3 0-45.6 20.6-45.6 45.8s20.3 45.6 45.6 45.6 45.8-20.3 45.8-45.6-20.5-45.8-45.8-45.8zm291.7-270C158.9 124.9 81.9 112.1 0 25.7c34.4 51.7 53.3 148.9 373.1 144.2 333.3-5 130 86.1 70.8 188.9 186.7-166.7 319.4-233.9 17.2-233.9z"],openid:[448,512,[],"f19b","M271.5 432l-68 32C88.5 453.7 0 392.5 0 318.2c0-71.5 82.5-131 191.7-144.3v43c-71.5 12.5-124 53-124 101.3 0 51 58.5 93.3 135.7 103v-340l68-33.2v384zM448 291l-131.3-28.5 36.8-20.7c-19.5-11.5-43.5-20-70-24.8v-43c46.2 5.5 87.7 19.5 120.3 39.3l35-19.8L448 291z"],opera:[496,512,[],"f26a","M313.9 32.7c-170.2 0-252.6 223.8-147.5 355.1 36.5 45.4 88.6 75.6 147.5 75.6 36.3 0 70.3-11.1 99.4-30.4-43.8 39.2-101.9 63-165.3 63-3.9 0-8 0-11.9-.3C104.6 489.6 0 381.1 0 248 0 111 111 0 248 0h.8c63.1.3 120.7 24.1 164.4 63.1-29-19.4-63.1-30.4-99.3-30.4zm101.8 397.7c-40.9 24.7-90.7 23.6-132-5.8 56.2-20.5 97.7-91.6 97.7-176.6 0-84.7-41.2-155.8-97.4-176.6 41.8-29.2 91.2-30.3 132.9-5 105.9 98.7 105.5 265.7-1.2 364z"],"optin-monster":[576,512,[],"f23c","M572.6 421.4c5.6-9.5 4.7-15.2-5.4-11.6-3-4.9-7-9.5-11.1-13.8 2.9-9.7-.7-14.2-10.8-9.2-4.6-3.2-10.3-6.5-15.9-9.2 0-15.1-11.6-11.6-17.6-5.7-10.4-1.5-18.7-.3-26.8 5.7.3-6.5.3-13 .3-19.7 12.6 0 40.2-11 45.9-36.2 1.4-6.8 1.6-13.8-.3-21.9-3-13.5-14.3-21.3-25.1-25.7-.8-5.9-7.6-14.3-14.9-15.9s-12.4 4.9-14.1 10.3c-8.5 0-19.2 2.8-21.1 8.4-5.4-.5-11.1-1.4-16.8-1.9 2.7-1.9 5.4-3.5 8.4-4.6 5.4-9.2 14.6-11.4 25.7-11.6V256c19.5-.5 43-5.9 53.8-18.1 12.7-13.8 14.6-37.3 12.4-55.1-2.4-17.3-9.7-37.6-24.6-48.1-8.4-5.9-21.6-.8-22.7 9.5-2.2 19.6 1.2 30-38.6 25.1-10.3-23.8-24.6-44.6-42.7-60C341 49.6 242.9 55.5 166.4 71.7c19.7 4.6 41.1 8.6 59.7 16.5-26.2 2.4-52.7 11.3-76.2 23.2-32.8 17-44 29.9-56.7 42.4 14.9-2.2 28.9-5.1 43.8-3.8-9.7 5.4-18.4 12.2-26.5 20-25.8.9-23.8-5.3-26.2-25.9-1.1-10.5-14.3-15.4-22.7-9.7-28.1 19.9-33.5 79.9-12.2 103.5 10.8 12.2 35.1 17.3 54.9 17.8-.3 1.1-.3 1.9-.3 2.7 10.8.5 19.5 2.7 24.6 11.6 3 1.1 5.7 2.7 8.1 4.6-5.4.5-11.1 1.4-16.5 1.9-3.3-6.6-13.7-8.1-21.1-8.1-1.6-5.7-6.5-12.2-14.1-10.3-6.8 1.9-14.1 10-14.9 15.9-22.5 9.5-30.1 26.8-25.1 47.6 5.3 24.8 33 36.2 45.9 36.2v19.7c-6.6-5-14.3-7.5-26.8-5.7-5.5-5.5-17.3-10.1-17.3 5.7-5.9 2.7-11.4 5.9-15.9 9.2-9.8-4.9-13.6-1.7-11.1 9.2-4.1 4.3-7.8 8.6-11.1 13.8-10.2-3.7-11 2.2-5.4 11.6-1.1 3.5-1.6 7-1.9 10.8-.5 31.6 44.6 64 73.5 65.1 17.3.5 34.6-8.4 43-23.5 113.2 4.9 226.7 4.1 340.2 0 8.1 15.1 25.4 24.3 42.7 23.5 29.2-1.1 74.3-33.5 73.5-65.1.2-3.7-.7-7.2-1.7-10.7zm-73.8-254c1.1-3 2.4-8.4 2.4-14.6 0-5.9 6.8-8.1 14.1-.8 11.1 11.6 14.9 40.5 13.8 51.1-4.1-13.6-13-29-30.3-35.7zm-4.6 6.7c19.5 6.2 28.6 27.6 29.7 48.9-1.1 2.7-3 5.4-4.9 7.6-5.7 5.9-15.4 10-26.2 12.2 4.3-21.3.3-47.3-12.7-63 4.9-.8 10.9-2.4 14.1-5.7zm-24.1 6.8c13.8 11.9 20 39.2 14.1 63.5-4.1.5-8.1.8-11.6.8-1.9-21.9-6.8-44-14.3-64.6 3.7.3 8.1.3 11.8.3zM47.5 203c-1.1-10.5 2.4-39.5 13.8-51.1 7-7.3 14.1-5.1 14.1.8 0 6.2 1.4 11.6 2.4 14.6-17.3 6.8-26.2 22.2-30.3 35.7zm9.7 27.6c-1.9-2.2-3.5-4.9-4.9-7.6 1.4-21.3 10.3-42.7 29.7-48.9 3.2 3.2 9.2 4.9 14.1 5.7-13 15.7-17 41.6-12.7 63-10.8-2.2-20.5-6-26.2-12.2zm47.9 14.6c-4.1 0-8.1-.3-12.7-.8-4.6-18.6-1.9-38.9 5.4-53v.3l12.2-5.1c4.9-1.9 9.7-3.8 14.9-4.9-10.7 19.7-17.4 41.3-19.8 63.5zm184-162.7c41.9 0 76.2 34 76.2 75.9 0 42.2-34.3 76.2-76.2 76.2s-76.2-34-76.2-76.2c0-41.8 34.3-75.9 76.2-75.9zm115.6 174.3c-.3 17.8-7 48.9-23 57-13.2 6.6-6.5-7.5-16.5-58.1 13.3.3 26.6.3 39.5 1.1zm-54-1.6c.8 4.9 3.8 40.3-1.6 41.9-11.6 3.5-40 4.3-51.1-1.1-4.1-3-4.6-35.9-4.3-41.1v.3c18.9-.3 38.1-.3 57 0zM278.3 309c-13 3.5-41.6 4.1-54.6-1.6-6.5-2.7-3.8-42.4-1.9-51.6 19.2-.5 38.4-.5 57.8-.8v.3c1.1 8.3 3.3 51.2-1.3 53.7zm-106.5-51.1c12.2-.8 24.6-1.4 36.8-1.6-2.4 15.4-3 43.5-4.9 52.2-1.1 6.8-4.3 6.8-9.7 4.3-21.9-9.8-27.6-35.2-22.2-54.9zm-35.4 31.3c7.8-1.1 15.7-1.9 23.5-2.7 1.6 6.2 3.8 11.9 7 17.6 10 17 44 35.7 45.1 7 6.2 14.9 40.8 12.2 54.9 10.8 15.7-1.4 23.8-1.4 26.8-14.3 12.4 4.3 30.8 4.1 44 3 11.3-.8 20.8-.5 24.6-8.9 1.1 5.1 1.9 11.6 4.6 16.8 10.8 21.3 37.3 1.4 46.8-31.6 8.6.8 17.6 1.9 26.5 2.7-.4 1.3-3.8 7.3 7.3 11.6-47.6 47-95.7 87.8-163.2 107-63.2-20.8-112.1-59.5-155.9-106.5 9.6-3.4 10.4-8.8 8-12.5zm-21.6 172.5c-3.8 17.8-21.9 29.7-39.7 28.9-19.2-.8-46.5-17-59.2-36.5-2.7-31.1 43.8-61.3 66.2-54.6 14.9 4.3 27.8 30.8 33.5 54 0 3-.3 5.7-.8 8.2zm-8.7-66c-.5-13.5-.5-27-.3-40.5h.3c2.7-1.6 5.7-3.8 7.8-6.5 6.5-1.6 13-5.1 15.1-9.2 3.3-7.1-7-7.5-5.4-12.4 2.7-1.1 5.7-2.2 7.8-3.5 29.2 29.2 58.6 56.5 97.3 77-36.8 11.3-72.4 27.6-105.9 47-1.2-18.6-7.7-35.9-16.7-51.9zm337.6 64.6c-103 3.5-206.2 4.1-309.4 0 0 .3 0 .3-.3.3v-.3h.3c35.1-21.6 72.2-39.2 112.4-50.8 11.6 5.1 23 9.5 34.9 13.2 2.2.8 2.2.8 4.3 0 14.3-4.1 28.4-9.2 42.2-15.4 41.5 11.7 78.8 31.7 115.6 53zm10.5-12.4c-35.9-19.5-73-35.9-111.9-47.6 38.1-20 71.9-47.3 103.5-76.7 2.2 1.4 4.6 2.4 7.6 3.2 0 .8.3 1.9.5 2.4-4.6 2.7-7.8 6.2-5.9 10.3 2.2 3.8 8.6 7.6 15.1 8.9 2.4 2.7 5.1 5.1 8.1 6.8 0 13.8-.3 27.6-.8 41.3l.3-.3c-9.3 15.9-15.5 37-16.5 51.7zm105.9 6.2c-12.7 19.5-40 35.7-59.2 36.5-19.3.9-40.5-13.2-40.5-37 5.7-23.2 18.9-49.7 33.5-54 22.7-6.9 69.2 23.4 66.2 54.5zM372.9 75.2c-3.8-72.1-100.8-79.7-126-23.5 44.6-24.3 90.3-15.7 126 23.5zM74.8 407.1c-15.7 1.6-49.5 25.4-49.5 43.2 0 11.6 15.7 19.5 32.2 14.9 12.2-3.2 31.1-17.6 35.9-27.3 6-11.6-3.7-32.7-18.6-30.8zm215.9-176.2c28.6 0 51.9-21.6 51.9-48.4 0-36.1-40.5-58.1-72.2-44.3 9.5 3 16.5 11.6 16.5 21.6 0 23.3-33.3 32-46.5 11.3-7.3 34.1 19.4 59.8 50.3 59.8zM68 474.1c.5 6.5 12.2 12.7 21.6 9.5 6.8-2.7 14.6-10.5 17.3-16.2 3-7-1.1-20-9.7-18.4-8.9 1.6-29.7 16.7-29.2 25.1zm433.2-67c-14.9-1.9-24.6 19.2-18.9 30.8 4.9 9.7 24.1 24.1 36.2 27.3 16.5 4.6 32.2-3.2 32.2-14.9 0-17.8-33.8-41.6-49.5-43.2zM478.8 449c-8.4-1.6-12.4 11.3-9.5 18.4 2.4 5.7 10.3 13.5 17.3 16.2 9.2 3.2 21.1-3 21.3-9.5.9-8.4-20.2-23.5-29.1-25.1z"],orcid:[512,512,[],"f8d2","M294.75 188.19h-45.92V342h47.47c67.62 0 83.12-51.34 83.12-76.91 0-41.64-26.54-76.9-84.67-76.9zM256 8C119 8 8 119 8 256s111 248 248 248 248-111 248-248S393 8 256 8zm-80.79 360.76h-29.84v-207.5h29.84zm-14.92-231.14a19.57 19.57 0 1 1 19.57-19.57 19.64 19.64 0 0 1-19.57 19.57zM300 369h-81V161.26h80.6c76.73 0 110.44 54.83 110.44 103.85C410 318.39 368.38 369 300 369z"],osi:[512,512,[],"f41a","M8 266.44C10.3 130.64 105.4 34 221.8 18.34c138.8-18.6 255.6 75.8 278 201.1 21.3 118.8-44 230-151.6 274-9.3 3.8-14.4 1.7-18-7.7q-26.7-69.45-53.4-139c-3.1-8.1-1-13.2 7-16.8 24.2-11 39.3-29.4 43.3-55.8a71.47 71.47 0 0 0-64.5-82.2c-39-3.4-71.8 23.7-77.5 59.7-5.2 33 11.1 63.7 41.9 77.7 9.6 4.4 11.5 8.6 7.8 18.4q-26.85 69.9-53.7 139.9c-2.6 6.9-8.3 9.3-15.5 6.5-52.6-20.3-101.4-61-130.8-119-24.9-49.2-25.2-87.7-26.8-108.7zm20.9-1.9c.4 6.6.6 14.3 1.3 22.1 6.3 71.9 49.6 143.5 131 183.1 3.2 1.5 4.4.8 5.6-2.3q22.35-58.65 45-117.3c1.3-3.3.6-4.8-2.4-6.7-31.6-19.9-47.3-48.5-45.6-86 1-21.6 9.3-40.5 23.8-56.3 30-32.7 77-39.8 115.5-17.6a91.64 91.64 0 0 1 45.2 90.4c-3.6 30.6-19.3 53.9-45.7 69.8-2.7 1.6-3.5 2.9-2.3 6q22.8 58.8 45.2 117.7c1.2 3.1 2.4 3.8 5.6 2.3 35.5-16.6 65.2-40.3 88.1-72 34.8-48.2 49.1-101.9 42.3-161-13.7-117.5-119.4-214.8-255.5-198-106.1 13-195.3 102.5-197.1 225.8z"],page4:[496,512,[],"f3d7","M248 504C111 504 0 393 0 256S111 8 248 8c20.9 0 41.3 2.6 60.7 7.5L42.3 392H248v112zm0-143.6V146.8L98.6 360.4H248zm96 31.6v92.7c45.7-19.2 84.5-51.7 111.4-92.7H344zm57.4-138.2l-21.2 8.4 21.2 8.3v-16.7zm-20.3 54.5c-6.7 0-8 6.3-8 12.9v7.7h16.2v-10c0-5.9-2.3-10.6-8.2-10.6zM496 256c0 37.3-8.2 72.7-23 104.4H344V27.3C433.3 64.8 496 153.1 496 256zM360.4 143.6h68.2V96h-13.9v32.6h-13.9V99h-13.9v29.6h-12.7V96h-13.9v47.6zm68.1 185.3H402v-11c0-15.4-5.6-25.2-20.9-25.2-15.4 0-20.7 10.6-20.7 25.9v25.3h68.2v-15zm0-103l-68.2 29.7V268l68.2 29.5v-16.6l-14.4-5.7v-26.5l14.4-5.9v-16.9zm-4.8-68.5h-35.6V184H402v-12.2h11c8.6 15.8 1.3 35.3-18.6 35.3-22.5 0-28.3-25.3-15.5-37.7l-11.6-10.6c-16.2 17.5-12.2 63.9 27.1 63.9 34 0 44.7-35.9 29.3-65.3z"],pagelines:[384,512,[],"f18c","M384 312.7c-55.1 136.7-187.1 54-187.1 54-40.5 81.8-107.4 134.4-184.6 134.7-16.1 0-16.6-24.4 0-24.4 64.4-.3 120.5-42.7 157.2-110.1-41.1 15.9-118.6 27.9-161.6-82.2 109-44.9 159.1 11.2 178.3 45.5 9.9-24.4 17-50.9 21.6-79.7 0 0-139.7 21.9-149.5-98.1 119.1-47.9 152.6 76.7 152.6 76.7 1.6-16.7 3.3-52.6 3.3-53.4 0 0-106.3-73.7-38.1-165.2 124.6 43 61.4 162.4 61.4 162.4.5 1.6.5 23.8 0 33.4 0 0 45.2-89 136.4-57.5-4.2 134-141.9 106.4-141.9 106.4-4.4 27.4-11.2 53.4-20 77.5 0 0 83-91.8 172-20z"],palfed:[576,512,[],"f3d8","M384.9 193.9c0-47.4-55.2-44.2-95.4-29.8-1.3 39.4-2.5 80.7-3 119.8.7 2.8 2.6 6.2 15.1 6.2 36.8 0 83.4-42.8 83.3-96.2zm-194.5 72.2c.2 0 6.5-2.7 11.2-2.7 26.6 0 20.7 44.1-14.4 44.1-21.5 0-37.1-18.1-37.1-43 0-42 42.9-95.6 100.7-126.5 1-12.4 3-22 10.5-28.2 11.2-9 26.6-3.5 29.5 11.1 72.2-22.2 135.2 1 135.2 72 0 77.9-79.3 152.6-140.1 138.2-.1 39.4.9 74.4 2.7 100v.2c.2 3.4.6 12.5-5.3 19.1-9.6 10.6-33.4 10-36.4-22.3-4.1-44.4.2-206.1 1.4-242.5-21.5 15-58.5 50.3-58.5 75.9.2 2.5.4 4 .6 4.6zM8 181.1s-.1 37.4 38.4 37.4h30l22.4 217.2s0 44.3 44.7 44.3h288.9s44.7-.4 44.7-44.3l22.4-217.2h30s38.4 1.2 38.4-37.4c0 0 .1-37.4-38.4-37.4h-30.1c-7.3-25.6-30.2-74.3-119.4-74.3h-28V50.3s-2.7-18.4-21.1-18.4h-85.8s-21.1 0-21.1 18.4v19.1h-28.1s-105 4.2-120.5 74.3h-29S8 142.5 8 181.1z"],patreon:[512,512,[],"f3d9","M512 194.8c0 101.3-82.4 183.8-183.8 183.8-101.7 0-184.4-82.4-184.4-183.8 0-101.6 82.7-184.3 184.4-184.3C429.6 10.5 512 93.2 512 194.8zM0 501.5h90v-491H0v491z"],paypal:[384,512,[],"f1ed","M111.4 295.9c-3.5 19.2-17.4 108.7-21.5 134-.3 1.8-1 2.5-3 2.5H12.3c-7.6 0-13.1-6.6-12.1-13.9L58.8 46.6c1.5-9.6 10.1-16.9 20-16.9 152.3 0 165.1-3.7 204 11.4 60.1 23.3 65.6 79.5 44 140.3-21.5 62.6-72.5 89.5-140.1 90.3-43.4.7-69.5-7-75.3 24.2zM357.1 152c-1.8-1.3-2.5-1.8-3 1.3-2 11.4-5.1 22.5-8.8 33.6-39.9 113.8-150.5 103.9-204.5 103.9-6.1 0-10.1 3.3-10.9 9.4-22.6 140.4-27.1 169.7-27.1 169.7-1 7.1 3.5 12.9 10.6 12.9h63.5c8.6 0 15.7-6.3 17.4-14.9.7-5.4-1.1 6.1 14.4-91.3 4.6-22 14.3-19.7 29.3-19.7 71 0 126.4-28.8 142.9-112.3 6.5-34.8 4.6-71.4-23.8-92.6z"],"penny-arcade":[640,512,[],"f704","M421.91 164.27c-4.49 19.45-1.4 6.06-15.1 65.29l39.73-10.61c-22.34-49.61-17.29-38.41-24.63-54.68zm-206.09 51.11c-20.19 5.4-11.31 3.03-39.63 10.58l4.46 46.19c28.17-7.59 20.62-5.57 34.82-9.34 42.3-9.79 32.85-56.42.35-47.43zm326.16-26.19l-45.47-99.2c-5.69-12.37-19.46-18.84-32.62-15.33-70.27 18.75-38.72 10.32-135.59 36.23a27.618 27.618 0 0 0-18.89 17.41C144.26 113.27 0 153.75 0 226.67c0 33.5 30.67 67.11 80.9 95.37l1.74 17.88a27.891 27.891 0 0 0-17.77 28.67l4.3 44.48c1.39 14.31 13.43 25.21 27.8 25.2 5.18-.01-3.01 1.78 122.53-31.76 12.57-3.37 21.12-15.02 20.58-28.02 216.59 45.5 401.99-5.98 399.89-84.83.01-28.15-22.19-66.56-97.99-104.47zM255.14 298.3l-21.91 5.88-48.44 12.91 2.46 23.55 20.53-5.51 4.51 44.51-115.31 30.78-4.3-44.52 20.02-5.35-11.11-114.64-20.12 5.39-4.35-44.5c178.15-47.54 170.18-46.42 186.22-46.65 56.66-1.13 64.15 71.84 42.55 104.43a86.7 86.7 0 0 1-50.75 33.72zm199.18 16.62l-3.89-39.49 14.9-3.98-6.61-14.68-57.76 15.42-4.1 17.54 19.2-5.12 4.05 39.54-112.85 30.07-4.46-44.43 20.99-5.59 33.08-126.47-17.15 4.56-4.2-44.48c93.36-24.99 65.01-17.41 135.59-36.24l66.67 145.47 20.79-5.56 4.3 44.48-108.55 28.96z"],periscope:[448,512,[],"f3da","M370 63.6C331.4 22.6 280.5 0 226.6 0 111.9 0 18.5 96.2 18.5 214.4c0 75.1 57.8 159.8 82.7 192.7C137.8 455.5 192.6 512 226.6 512c41.6 0 112.9-94.2 120.9-105 24.6-33.1 82-118.3 82-192.6 0-56.5-21.1-110.1-59.5-150.8zM226.6 493.9c-42.5 0-190-167.3-190-279.4 0-107.4 83.9-196.3 190-196.3 100.8 0 184.7 89 184.7 196.3.1 112.1-147.4 279.4-184.7 279.4zM338 206.8c0 59.1-51.1 109.7-110.8 109.7-100.6 0-150.7-108.2-92.9-181.8v.4c0 24.5 20.1 44.4 44.8 44.4 24.7 0 44.8-19.9 44.8-44.4 0-18.2-11.1-33.8-26.9-40.7 76.6-19.2 141 39.3 141 112.4z"],phabricator:[496,512,[],"f3db","M323 262.1l-.1-13s21.7-19.8 21.1-21.2l-9.5-20c-.6-1.4-29.5-.5-29.5-.5l-9.4-9.3s.2-28.5-1.2-29.1l-20.1-9.2c-1.4-.6-20.7 21-20.7 21l-13.1-.2s-20.5-21.4-21.9-20.8l-20 8.3c-1.4.5.2 28.9.2 28.9l-9.1 9.1s-29.2-.9-29.7.4l-8.1 19.8c-.6 1.4 21 21 21 21l.1 12.9s-21.7 19.8-21.1 21.2l9.5 20c.6 1.4 29.5.5 29.5.5l9.4 9.3s-.2 31.8 1.2 32.3l20.1 8.3c1.4.6 20.7-23.5 20.7-23.5l13.1.2s20.5 23.8 21.8 23.3l20-7.5c1.4-.6-.2-32.1-.2-32.1l9.1-9.1s29.2.9 29.7-.5l8.1-19.8c.7-1.1-20.9-20.7-20.9-20.7zm-44.9-8.7c.7 17.1-12.8 31.6-30.1 32.4-17.3.8-32.1-12.5-32.8-29.6-.7-17.1 12.8-31.6 30.1-32.3 17.3-.8 32.1 12.5 32.8 29.5zm201.2-37.9l-97-97-.1.1c-75.1-73.3-195.4-72.8-269.8 1.6-50.9 51-27.8 27.9-95.7 95.3-22.3 22.3-22.3 58.7 0 81 69.9 69.4 46.4 46 97.4 97l.1-.1c75.1 73.3 195.4 72.9 269.8-1.6 51-50.9 27.9-27.9 95.3-95.3 22.3-22.3 22.3-58.7 0-81zM140.4 363.8c-59.6-59.5-59.6-156 0-215.5 59.5-59.6 156-59.5 215.6 0 59.5 59.5 59.6 156 0 215.6-59.6 59.5-156 59.4-215.6-.1z"],"phoenix-framework":[640,512,[],"f3dc","M212.9 344.3c3.8-.1 22.8-1.4 25.6-2.2-2.4-2.6-43.6-1-68-49.6-4.3-8.6-7.5-17.6-6.4-27.6 2.9-25.5 32.9-30 52-18.5 36 21.6 63.3 91.3 113.7 97.5 37 4.5 84.6-17 108.2-45.4-.6-.1-.8-.2-1-.1-.4.1-.8.2-1.1.3-33.3 12.1-94.3 9.7-134.7-14.8-37.6-22.8-53.1-58.7-51.8-74.6 1.8-21.3 22.9-23.2 35.9-19.6 14.4 3.9 24.4 17.6 38.9 27.4 15.6 10.4 32.9 13.7 51.3 10.3 14.9-2.7 34.4-12.3 36.5-14.5-1.1-.1-1.8-.1-2.5-.2-6.2-.6-12.4-.8-18.5-1.7C279.8 194.5 262.1 47.4 138.5 37.9 94.2 34.5 39.1 46 2.2 72.9c-.8.6-1.5 1.2-2.2 1.8.1.2.1.3.2.5.8 0 1.6-.1 2.4-.2 6.3-1 12.5-.8 18.7.3 23.8 4.3 47.7 23.1 55.9 76.5 5.3 34.3-.7 50.8 8 86.1 19 77.1 91 107.6 127.7 106.4zM75.3 64.9c-.9-1-.9-1.2-1.3-2 12.1-2.6 24.2-4.1 36.6-4.8-1.1 14.7-22.2 21.3-35.3 6.8zm196.9 350.5c-42.8 1.2-92-26.7-123.5-61.4-4.6-5-16.8-20.2-18.6-23.4l.4-.4c6.6 4.1 25.7 18.6 54.8 27 24.2 7 48.1 6.3 71.6-3.3 22.7-9.3 41-.5 43.1 2.9-18.5 3.8-20.1 4.4-24 7.9-5.1 4.4-4.6 11.7 7 17.2 26.2 12.4 63-2.8 97.2 25.4 2.4 2 8.1 7.8 10.1 10.7-.1.2-.3.3-.4.5-4.8-1.5-16.4-7.5-40.2-9.3-24.7-2-46.3 5.3-77.5 6.2zm174.8-252c16.4-5.2 41.3-13.4 66.5-3.3 16.1 6.5 26.2 18.7 32.1 34.6 3.5 9.4 5.1 19.7 5.1 28.7-.2 0-.4 0-.6.1-.2-.4-.4-.9-.5-1.3-5-22-29.9-43.8-67.6-29.9-50.2 18.6-130.4 9.7-176.9-48-.7-.9-2.4-1.7-1.3-3.2.1-.2 2.1.6 3 1.3 18.1 13.4 38.3 21.9 60.3 26.2 30.5 6.1 54.6 2.9 79.9-5.2zm102.7 117.5c-32.4.2-33.8 50.1-103.6 64.4-18.2 3.7-38.7 4.6-44.9 4.2v-.4c2.8-1.5 14.7-2.6 29.7-16.6 7.9-7.3 15.3-15.1 22.8-22.9 19.5-20.2 41.4-42.2 81.9-39 23.1 1.8 29.3 8.2 36.1 12.7.3.2.4.5.7.9-.5 0-.7.1-.9 0-7-2.7-14.3-3.3-21.8-3.3zm-12.3-24.1c-.1.2-.1.4-.2.6-28.9-4.4-48-7.9-68.5 4-17 9.9-31.4 20.5-62 24.4-27.1 3.4-45.1 2.4-66.1-8-.3-.2-.6-.4-1-.6 0-.2.1-.3.1-.5 24.9 3.8 36.4 5.1 55.5-5.8 22.3-12.9 40.1-26.6 71.3-31 29.6-4.1 51.3 2.5 70.9 16.9zM268.6 97.3c-.6-.6-1.1-1.2-2.1-2.3 7.6 0 29.7-1.2 53.4 8.4 19.7 8 32.2 21 50.2 32.9 11.1 7.3 23.4 9.3 36.4 8.1 4.3-.4 8.5-1.2 12.8-1.7.4-.1.9 0 1.5.3-.6.4-1.2.9-1.8 1.2-8.1 4-16.7 6.3-25.6 7.1-26.1 2.6-50.3-3.7-73.4-15.4-19.3-9.9-36.4-22.9-51.4-38.6zM640 335.7c-3.5 3.1-22.7 11.6-42.7 5.3-12.3-3.9-19.5-14.9-31.6-24.1-10-7.6-20.9-7.9-28.1-8.4.6-.8.9-1.2 1.2-1.4 14.8-9.2 30.5-12.2 47.3-6.5 12.5 4.2 19.2 13.5 30.4 24.2 10.8 10.4 21 9.9 23.1 10.5.1-.1.2 0 .4.4zm-212.5 137c2.2 1.2 1.6 1.5 1.5 2-18.5-1.4-33.9-7.6-46.8-22.2-21.8-24.7-41.7-27.9-48.6-29.7.5-.2.8-.4 1.1-.4 13.1.1 26.1.7 38.9 3.9 25.3 6.4 35 25.4 41.6 35.3 3.2 4.8 7.3 8.3 12.3 11.1z"],"phoenix-squadron":[512,512,[],"f511","M96 63.38C142.49 27.25 201.55 7.31 260.51 8.81c29.58-.38 59.11 5.37 86.91 15.33-24.13-4.63-49-6.34-73.38-2.45C231.17 27 191 48.84 162.21 80.87c5.67-1 10.78-3.67 16-5.86 18.14-7.87 37.49-13.26 57.23-14.83 19.74-2.13 39.64-.43 59.28 1.92-14.42 2.79-29.12 4.57-43 9.59-34.43 11.07-65.27 33.16-86.3 62.63-13.8 19.71-23.63 42.86-24.67 67.13-.35 16.49 5.22 34.81 19.83 44a53.27 53.27 0 0 0 37.52 6.74c15.45-2.46 30.07-8.64 43.6-16.33 11.52-6.82 22.67-14.55 32-24.25 3.79-3.22 2.53-8.45 2.62-12.79-2.12-.34-4.38-1.11-6.3.3a203 203 0 0 1-35.82 15.37c-20 6.17-42.16 8.46-62.1.78 12.79 1.73 26.06.31 37.74-5.44 20.23-9.72 36.81-25.2 54.44-38.77a526.57 526.57 0 0 1 88.9-55.31c25.71-12 52.94-22.78 81.57-24.12-15.63 13.72-32.15 26.52-46.78 41.38-14.51 14-27.46 29.5-40.11 45.18-3.52 4.6-8.95 6.94-13.58 10.16a150.7 150.7 0 0 0-51.89 60.1c-9.33 19.68-14.5 41.85-11.77 63.65 1.94 13.69 8.71 27.59 20.9 34.91 12.9 8 29.05 8.07 43.48 5.1 32.8-7.45 61.43-28.89 81-55.84 20.44-27.52 30.52-62.2 29.16-96.35-.52-7.5-1.57-15-1.66-22.49 8 19.48 14.82 39.71 16.65 60.83 2 14.28.75 28.76-1.62 42.9-1.91 11-5.67 21.51-7.78 32.43a165 165 0 0 0 39.34-81.07 183.64 183.64 0 0 0-14.21-104.64c20.78 32 32.34 69.58 35.71 107.48.49 12.73.49 25.51 0 38.23A243.21 243.21 0 0 1 482 371.34c-26.12 47.34-68 85.63-117.19 108-78.29 36.23-174.68 31.32-248-14.68A248.34 248.34 0 0 1 25.36 366 238.34 238.34 0 0 1 0 273.08v-31.34C3.93 172 40.87 105.82 96 63.38m222 80.33a79.13 79.13 0 0 0 16-4.48c5-1.77 9.24-5.94 10.32-11.22-8.96 4.99-17.98 9.92-26.32 15.7z"],php:[640,512,[],"f457","M320 104.5c171.4 0 303.2 72.2 303.2 151.5S491.3 407.5 320 407.5c-171.4 0-303.2-72.2-303.2-151.5S148.7 104.5 320 104.5m0-16.8C143.3 87.7 0 163 0 256s143.3 168.3 320 168.3S640 349 640 256 496.7 87.7 320 87.7zM218.2 242.5c-7.9 40.5-35.8 36.3-70.1 36.3l13.7-70.6c38 0 63.8-4.1 56.4 34.3zM97.4 350.3h36.7l8.7-44.8c41.1 0 66.6 3 90.2-19.1 26.1-24 32.9-66.7 14.3-88.1-9.7-11.2-25.3-16.7-46.5-16.7h-70.7L97.4 350.3zm185.7-213.6h36.5l-8.7 44.8c31.5 0 60.7-2.3 74.8 10.7 14.8 13.6 7.7 31-8.3 113.1h-37c15.4-79.4 18.3-86 12.7-92-5.4-5.8-17.7-4.6-47.4-4.6l-18.8 96.6h-36.5l32.7-168.6zM505 242.5c-8 41.1-36.7 36.3-70.1 36.3l13.7-70.6c38.2 0 63.8-4.1 56.4 34.3zM384.2 350.3H421l8.7-44.8c43.2 0 67.1 2.5 90.2-19.1 26.1-24 32.9-66.7 14.3-88.1-9.7-11.2-25.3-16.7-46.5-16.7H417l-32.8 168.7z"],"pied-piper":[480,512,[],"f2ae","M455.93,23.2C429.23,30,387.79,51.69,341.35,90.66A206,206,0,0,0,240,64C125.13,64,32,157.12,32,272s93.13,208,208,208,208-93.13,208-208a207.25,207.25,0,0,0-58.75-144.81,155.35,155.35,0,0,0-17,27.4A176.16,176.16,0,0,1,417.1,272c0,97.66-79.44,177.11-177.09,177.11a175.81,175.81,0,0,1-87.63-23.4c82.94-107.33,150.79-37.77,184.31-226.65,5.79-32.62,28-94.26,126.23-160.18C471,33.45,465.35,20.8,455.93,23.2ZM125,406.4A176.66,176.66,0,0,1,62.9,272C62.9,174.34,142.35,94.9,240,94.9a174,174,0,0,1,76.63,17.75C250.64,174.76,189.77,265.52,125,406.4Z"],"pied-piper-alt":[576,512,[],"f1a8","M244 246c-3.2-2-6.3-2.9-10.1-2.9-6.6 0-12.6 3.2-19.3 3.7l1.7 4.9zm135.9 197.9c-19 0-64.1 9.5-79.9 19.8l6.9 45.1c35.7 6.1 70.1 3.6 106-9.8-4.8-10-23.5-55.1-33-55.1zM340.8 177c6.6 2.8 11.5 9.2 22.7 22.1 2-1.4 7.5-5.2 7.5-8.6 0-4.9-11.8-13.2-13.2-23 11.2-5.7 25.2-6 37.6-8.9 68.1-16.4 116.3-52.9 146.8-116.7C548.3 29.3 554 16.1 554.6 2l-2 2.6c-28.4 50-33 63.2-81.3 100-31.9 24.4-69.2 40.2-106.6 54.6l-6.3-.3v-21.8c-19.6 1.6-19.7-14.6-31.6-23-18.7 20.6-31.6 40.8-58.9 51.1-12.7 4.8-19.6 10-25.9 21.8 34.9-16.4 91.2-13.5 98.8-10zM555.5 0l-.6 1.1-.3.9.6-.6zm-59.2 382.1c-33.9-56.9-75.3-118.4-150-115.5l-.3-6c-1.1-13.5 32.8 3.2 35.1-31l-14.4 7.2c-19.8-45.7-8.6-54.3-65.5-54.3-14.7 0-26.7 1.7-41.4 4.6 2.9 18.6 2.2 36.7-10.9 50.3l19.5 5.5c-1.7 3.2-2.9 6.3-2.9 9.8 0 21 42.8 2.9 42.8 33.6 0 18.4-36.8 60.1-54.9 60.1-8 0-53.7-50-53.4-60.1l.3-4.6 52.3-11.5c13-2.6 12.3-22.7-2.9-22.7-3.7 0-43.1 9.2-49.4 10.6-2-5.2-7.5-14.1-13.8-14.1-3.2 0-6.3 3.2-9.5 4-9.2 2.6-31 2.9-21.5 20.1L15.9 298.5c-5.5 1.1-8.9 6.3-8.9 11.8 0 6 5.5 10.9 11.5 10.9 8 0 131.3-28.4 147.4-32.2 2.6 3.2 4.6 6.3 7.8 8.6 20.1 14.4 59.8 85.9 76.4 85.9 24.1 0 58-22.4 71.3-41.9 3.2-4.3 6.9-7.5 12.4-6.9.6 13.8-31.6 34.2-33 43.7-1.4 10.2-1 35.2-.3 41.1 26.7 8.1 52-3.6 77.9-2.9 4.3-21 10.6-41.9 9.8-63.5l-.3-9.5c-1.4-34.2-10.9-38.5-34.8-58.6-1.1-1.1-2.6-2.6-3.7-4 2.2-1.4 1.1-1 4.6-1.7 88.5 0 56.3 183.6 111.5 229.9 33.1-15 72.5-27.9 103.5-47.2-29-25.6-52.6-45.7-72.7-79.9zm-196.2 46.1v27.2l11.8-3.4-2.9-23.8zm-68.7-150.4l24.1 61.2 21-13.8-31.3-50.9zm84.4 154.9l2 12.4c9-1.5 58.4-6.6 58.4-14.1 0-1.4-.6-3.2-.9-4.6-26.8 0-36.9 3.8-59.5 6.3z"],"pied-piper-hat":[640,512,[],"f4e5","M640 24.9c-80.8 53.6-89.4 92.5-96.4 104.4-6.7 12.2-11.7 60.3-23.3 83.6-11.7 23.6-54.2 42.2-66.1 50-11.7 7.8-28.3 38.1-41.9 64.2-108.1-4.4-167.4 38.8-259.2 93.6 29.4-9.7 43.3-16.7 43.3-16.7 94.2-36 139.3-68.3 281.1-49.2 1.1 0 1.9.6 2.8.8 3.9 2.2 5.3 6.9 3.1 10.8l-53.9 95.8c-2.5 4.7-7.8 7.2-13.1 6.1-126.8-23.8-226.9 17.3-318.9 18.6C24.1 488 0 453.4 0 451.8c0-1.1.6-1.7 1.7-1.7 0 0 38.3 0 103.1-15.3C178.4 294.5 244 245.4 315.4 245.4c0 0 71.7 0 90.6 61.9 22.8-39.7 28.3-49.2 28.3-49.2 5.3-9.4 35-77.2 86.4-141.4 51.5-64 90.4-79.9 119.3-91.8z"],"pied-piper-pp":[448,512,[],"f1a7","M205.3 174.6c0 21.1-14.2 38.1-31.7 38.1-7.1 0-12.8-1.2-17.2-3.7v-68c4.4-2.7 10.1-4.2 17.2-4.2 17.5 0 31.7 16.9 31.7 37.8zm52.6 67c-7.1 0-12.8 1.5-17.2 4.2v68c4.4 2.5 10.1 3.7 17.2 3.7 17.4 0 31.7-16.9 31.7-37.8 0-21.1-14.3-38.1-31.7-38.1zM448 80v352c0 26.5-21.5 48-48 48H48c-26.5 0-48-21.5-48-48V80c0-26.5 21.5-48 48-48h352c26.5 0 48 21.5 48 48zM185 255.1c41 0 74.2-35.6 74.2-79.6 0-44-33.2-79.6-74.2-79.6-12 0-24.1 3.2-34.6 8.8h-45.7V311l51.8-10.1v-50.6c8.6 3.1 18.1 4.8 28.5 4.8zm158.4 25.3c0-44-33.2-79.6-73.9-79.6-3.2 0-6.4.2-9.6.7-3.7 12.5-10.1 23.8-19.2 33.4-13.8 15-32.2 23.8-51.8 24.8V416l51.8-10.1v-50.6c8.6 3.2 18.2 4.7 28.7 4.7 40.8 0 74-35.6 74-79.6z"],"pied-piper-square":[448,512,[],"f91e","M32 419L0 479.2l.8-328C.8 85.3 54 32 120 32h327.2c-93 28.9-189.9 94.2-253.9 168.6C122.7 282 82.6 338 32 419M448 32S305.2 98.8 261.6 199.1c-23.2 53.6-28.9 118.1-71 158.6-28.9 27.8-69.8 38.2-105.3 56.3-23.2 12-66.4 40.5-84.9 66h328.4c66 0 119.3-53.3 119.3-119.2-.1 0-.1-328.8-.1-328.8z"],pinterest:[496,512,[],"f0d2","M496 256c0 137-111 248-248 248-25.6 0-50.2-3.9-73.4-11.1 10.1-16.5 25.2-43.5 30.8-65 3-11.6 15.4-59 15.4-59 8.1 15.4 31.7 28.5 56.8 28.5 74.8 0 128.7-68.8 128.7-154.3 0-81.9-66.9-143.2-152.9-143.2-107 0-163.9 71.8-163.9 150.1 0 36.4 19.4 81.7 50.3 96.1 4.7 2.2 7.2 1.2 8.3-3.3.8-3.4 5-20.3 6.9-28.1.6-2.5.3-4.7-1.7-7.1-10.1-12.5-18.3-35.3-18.3-56.6 0-54.7 41.4-107.6 112-107.6 60.9 0 103.6 41.5 103.6 100.9 0 67.1-33.9 113.6-78 113.6-24.3 0-42.6-20.1-36.7-44.8 7-29.5 20.5-61.3 20.5-82.6 0-19-10.2-34.9-31.4-34.9-24.9 0-44.9 25.7-44.9 60.2 0 22 7.4 36.8 7.4 36.8s-24.5 103.8-29 123.2c-5 21.4-3 51.6-.9 71.2C65.4 450.9 0 361.1 0 256 0 119 111 8 248 8s248 111 248 248z"],"pinterest-p":[384,512,[],"f231","M204 6.5C101.4 6.5 0 74.9 0 185.6 0 256 39.6 296 63.6 296c9.9 0 15.6-27.6 15.6-35.4 0-9.3-23.7-29.1-23.7-67.8 0-80.4 61.2-137.4 140.4-137.4 68.1 0 118.5 38.7 118.5 109.8 0 53.1-21.3 152.7-90.3 152.7-24.9 0-46.2-18-46.2-43.8 0-37.8 26.4-74.4 26.4-113.4 0-66.2-93.9-54.2-93.9 25.8 0 16.8 2.1 35.4 9.6 50.7-13.8 59.4-42 147.9-42 209.1 0 18.9 2.7 37.5 4.5 56.4 3.4 3.8 1.7 3.4 6.9 1.5 50.4-69 48.6-82.5 71.4-172.8 12.3 23.4 44.1 36 69.3 36 106.2 0 153.9-103.5 153.9-196.8C384 71.3 298.2 6.5 204 6.5z"],"pinterest-square":[448,512,[],"f0d3","M448 80v352c0 26.5-21.5 48-48 48H154.4c9.8-16.4 22.4-40 27.4-59.3 3-11.5 15.3-58.4 15.3-58.4 8 15.3 31.4 28.2 56.3 28.2 74.1 0 127.4-68.1 127.4-152.7 0-81.1-66.2-141.8-151.4-141.8-106 0-162.2 71.1-162.2 148.6 0 36 19.2 80.8 49.8 95.1 4.7 2.2 7.1 1.2 8.2-3.3.8-3.4 5-20.1 6.8-27.8.6-2.5.3-4.6-1.7-7-10.1-12.3-18.3-34.9-18.3-56 0-54.2 41-106.6 110.9-106.6 60.3 0 102.6 41.1 102.6 99.9 0 66.4-33.5 112.4-77.2 112.4-24.1 0-42.1-19.9-36.4-44.4 6.9-29.2 20.3-60.7 20.3-81.8 0-53-75.5-45.7-75.5 25 0 21.7 7.3 36.5 7.3 36.5-31.4 132.8-36.1 134.5-29.6 192.6l2.2.8H48c-26.5 0-48-21.5-48-48V80c0-26.5 21.5-48 48-48h352c26.5 0 48 21.5 48 48z"],playstation:[576,512,[],"f3df","M570.9 372.3c-11.3 14.2-38.8 24.3-38.8 24.3L327 470.2v-54.3l150.9-53.8c17.1-6.1 19.8-14.8 5.8-19.4-13.9-4.6-39.1-3.3-56.2 2.9L327 381.1v-56.4c23.2-7.8 47.1-13.6 75.7-16.8 40.9-4.5 90.9.6 130.2 15.5 44.2 14 49.2 34.7 38 48.9zm-224.4-92.5v-139c0-16.3-3-31.3-18.3-35.6-11.7-3.8-19 7.1-19 23.4v347.9l-93.8-29.8V32c39.9 7.4 98 24.9 129.2 35.4C424.1 94.7 451 128.7 451 205.2c0 74.5-46 102.8-104.5 74.6zM43.2 410.2c-45.4-12.8-53-39.5-32.3-54.8 19.1-14.2 51.7-24.9 51.7-24.9l134.5-47.8v54.5l-96.8 34.6c-17.1 6.1-19.7 14.8-5.8 19.4 13.9 4.6 39.1 3.3 56.2-2.9l46.4-16.9v48.8c-51.6 9.3-101.4 7.3-153.9-10z"],"product-hunt":[512,512,[],"f288","M326.3 218.8c0 20.5-16.7 37.2-37.2 37.2h-70.3v-74.4h70.3c20.5 0 37.2 16.7 37.2 37.2zM504 256c0 137-111 248-248 248S8 393 8 256 119 8 256 8s248 111 248 248zm-128.1-37.2c0-47.9-38.9-86.8-86.8-86.8H169.2v248h49.6v-74.4h70.3c47.9 0 86.8-38.9 86.8-86.8z"],pushed:[432,512,[],"f3e1","M407 111.9l-98.5-9 14-33.4c10.4-23.5-10.8-40.4-28.7-37L22.5 76.9c-15.1 2.7-26 18.3-21.4 36.6l105.1 348.3c6.5 21.3 36.7 24.2 47.7 7l35.3-80.8 235.2-231.3c16.4-16.8 4.3-42.9-17.4-44.8zM297.6 53.6c5.1-.7 7.5 2.5 5.2 7.4L286 100.9 108.6 84.6l189-31zM22.7 107.9c-3.1-5.1 1-10 6.1-9.1l248.7 22.7-96.9 230.7L22.7 107.9zM136 456.4c-2.6 4-7.9 3.1-9.4-1.2L43.5 179.7l127.7 197.6c-7 15-35.2 79.1-35.2 79.1zm272.8-314.5L210.1 337.3l89.7-213.7 106.4 9.7c4 1.1 5.7 5.3 2.6 8.6z"],python:[448,512,[],"f3e2","M439.8 200.5c-7.7-30.9-22.3-54.2-53.4-54.2h-40.1v47.4c0 36.8-31.2 67.8-66.8 67.8H172.7c-29.2 0-53.4 25-53.4 54.3v101.8c0 29 25.2 46 53.4 54.3 33.8 9.9 66.3 11.7 106.8 0 26.9-7.8 53.4-23.5 53.4-54.3v-40.7H226.2v-13.6h160.2c31.1 0 42.6-21.7 53.4-54.2 11.2-33.5 10.7-65.7 0-108.6zM286.2 404c11.1 0 20.1 9.1 20.1 20.3 0 11.3-9 20.4-20.1 20.4-11 0-20.1-9.2-20.1-20.4.1-11.3 9.1-20.3 20.1-20.3zM167.8 248.1h106.8c29.7 0 53.4-24.5 53.4-54.3V91.9c0-29-24.4-50.7-53.4-55.6-35.8-5.9-74.7-5.6-106.8.1-45.2 8-53.4 24.7-53.4 55.6v40.7h106.9v13.6h-147c-31.1 0-58.3 18.7-66.8 54.2-9.8 40.7-10.2 66.1 0 108.6 7.6 31.6 25.7 54.2 56.8 54.2H101v-48.8c0-35.3 30.5-66.4 66.8-66.4zm-6.7-142.6c-11.1 0-20.1-9.1-20.1-20.3.1-11.3 9-20.4 20.1-20.4 11 0 20.1 9.2 20.1 20.4s-9 20.3-20.1 20.3z"],qq:[448,512,[],"f1d6","M433.754 420.445c-11.526 1.393-44.86-52.741-44.86-52.741 0 31.345-16.136 72.247-51.051 101.786 16.842 5.192 54.843 19.167 45.803 34.421-7.316 12.343-125.51 7.881-159.632 4.037-34.122 3.844-152.316 8.306-159.632-4.037-9.045-15.25 28.918-29.214 45.783-34.415-34.92-29.539-51.059-70.445-51.059-101.792 0 0-33.334 54.134-44.859 52.741-5.37-.65-12.424-29.644 9.347-99.704 10.261-33.024 21.995-60.478 40.144-105.779C60.683 98.063 108.982.006 224 0c113.737.006 163.156 96.133 160.264 214.963 18.118 45.223 29.912 72.85 40.144 105.778 21.768 70.06 14.716 99.053 9.346 99.704z"],quinscape:[512,512,[],"f459","M313.6 474.6h-1a158.1 158.1 0 0 1 0-316.2c94.9 0 168.2 83.1 157 176.6 4 5.1 8.2 9.6 11.2 15.3 13.4-30.3 20.3-62.4 20.3-97.7C501.1 117.5 391.6 8 256.5 8S12 117.5 12 252.6s109.5 244.6 244.5 244.6a237.36 237.36 0 0 0 70.4-10.1c-5.2-3.5-8.9-8.1-13.3-12.5zm-.1-.1l.4.1zm78.4-168.9a99.2 99.2 0 1 0 99.2 99.2 99.18 99.18 0 0 0-99.2-99.2z"],quora:[448,512,[],"f2c4","M440.5 386.7h-29.3c-1.5 13.5-10.5 30.8-33 30.8-20.5 0-35.3-14.2-49.5-35.8 44.2-34.2 74.7-87.5 74.7-153C403.5 111.2 306.8 32 205 32 105.3 32 7.3 111.7 7.3 228.7c0 134.1 131.3 221.6 249 189C276 451.3 302 480 351.5 480c81.8 0 90.8-75.3 89-93.3zM297 329.2C277.5 300 253.3 277 205.5 277c-30.5 0-54.3 10-69 22.8l12.2 24.3c6.2-3 13-4 19.8-4 35.5 0 53.7 30.8 69.2 61.3-10 3-20.7 4.2-32.7 4.2-75 0-107.5-53-107.5-156.7C97.5 124.5 130 71 205 71c76.2 0 108.7 53.5 108.7 157.7.1 41.8-5.4 75.6-16.7 100.5z"],"r-project":[581,512,[],"f4f7","M581 226.6C581 119.1 450.9 32 290.5 32S0 119.1 0 226.6C0 322.4 103.3 402 239.4 418.1V480h99.1v-61.5c24.3-2.7 47.6-7.4 69.4-13.9L448 480h112l-67.4-113.7c54.5-35.4 88.4-84.9 88.4-139.7zm-466.8 14.5c0-73.5 98.9-133 220.8-133s211.9 40.7 211.9 133c0 50.1-26.5 85-70.3 106.4-2.4-1.6-4.7-2.9-6.4-3.7-10.2-5.2-27.8-10.5-27.8-10.5s86.6-6.4 86.6-92.7-90.6-87.9-90.6-87.9h-199V361c-74.1-21.5-125.2-67.1-125.2-119.9zm225.1 38.3v-55.6c57.8 0 87.8-6.8 87.8 27.3 0 36.5-38.2 28.3-87.8 28.3zm-.9 72.5H365c10.8 0 18.9 11.7 24 19.2-16.1 1.9-33 2.8-50.6 2.9v-22.1z"],"raspberry-pi":[407,512,[],"f7bb","M372 232.5l-3.7-6.5c.1-46.4-21.4-65.3-46.5-79.7 7.6-2 15.4-3.6 17.6-13.2 13.1-3.3 15.8-9.4 17.1-15.8 3.4-2.3 14.8-8.7 13.6-19.7 6.4-4.4 10-10.1 8.1-18.1 6.9-7.5 8.7-13.7 5.8-19.4 8.3-10.3 4.6-15.6 1.1-20.9 6.2-11.2.7-23.2-16.6-21.2-6.9-10.1-21.9-7.8-24.2-7.8-2.6-3.2-6-6-16.5-4.7-6.8-6.1-14.4-5-22.3-2.1-9.3-7.3-15.5-1.4-22.6.8C271.6.6 269 5.5 263.5 7.6c-12.3-2.6-16.1 3-22 8.9l-6.9-.1c-18.6 10.8-27.8 32.8-31.1 44.1-3.3-11.3-12.5-33.3-31.1-44.1l-6.9.1c-5.9-5.9-9.7-11.5-22-8.9-5.6-2-8.1-7-19.4-3.4-4.6-1.4-8.9-4.4-13.9-4.3-2.6.1-5.5 1-8.7 3.5-7.9-3-15.5-4-22.3 2.1-10.5-1.3-14 1.4-16.5 4.7-2.3 0-17.3-2.3-24.2 7.8C21.2 16 15.8 28 22 39.2c-3.5 5.4-7.2 10.7 1.1 20.9-2.9 5.7-1.1 11.9 5.8 19.4-1.8 8 1.8 13.7 8.1 18.1-1.2 11 10.2 17.4 13.6 19.7 1.3 6.4 4 12.4 17.1 15.8 2.2 9.5 10 11.2 17.6 13.2-25.1 14.4-46.6 33.3-46.5 79.7l-3.7 6.5c-28.8 17.2-54.7 72.7-14.2 117.7 2.6 14.1 7.1 24.2 11 35.4 5.9 45.2 44.5 66.3 54.6 68.8 14.9 11.2 30.8 21.8 52.2 29.2C159 504.2 181 512 203 512h1c22.1 0 44-7.8 64.2-28.4 21.5-7.4 37.3-18 52.2-29.2 10.2-2.5 48.7-23.6 54.6-68.8 3.9-11.2 8.4-21.3 11-35.4 40.6-45.1 14.7-100.5-14-117.7zm-22.2-8c-1.5 18.7-98.9-65.1-82.1-67.9 45.7-7.5 83.6 19.2 82.1 67.9zm-43 93.1c-24.5 15.8-59.8 5.6-78.8-22.8s-14.6-64.2 9.9-80c24.5-15.8 59.8-5.6 78.8 22.8s14.6 64.2-9.9 80zM238.9 29.3c.8 4.2 1.8 6.8 2.9 7.6 5.4-5.8 9.8-11.7 16.8-17.3 0 3.3-1.7 6.8 2.5 9.4 3.7-5 8.8-9.5 15.5-13.3-3.2 5.6-.6 7.3 1.2 9.6 5.1-4.4 10-8.8 19.4-12.3-2.6 3.1-6.2 6.2-2.4 9.8 5.3-3.3 10.6-6.6 23.1-8.9-2.8 3.1-8.7 6.3-5.1 9.4 6.6-2.5 14-4.4 22.1-5.4-3.9 3.2-7.1 6.3-3.9 8.8 7.1-2.2 16.9-5.1 26.4-2.6l-6 6.1c-.7.8 14.1.6 23.9.8-3.6 5-7.2 9.7-9.3 18.2 1 1 5.8.4 10.4 0-4.7 9.9-12.8 12.3-14.7 16.6 2.9 2.2 6.8 1.6 11.2.1-3.4 6.9-10.4 11.7-16 17.3 1.4 1 3.9 1.6 9.7.9-5.2 5.5-11.4 10.5-18.8 15 1.3 1.5 5.8 1.5 10 1.6-6.7 6.5-15.3 9.9-23.4 14.2 4 2.7 6.9 2.1 10 2.1-5.7 4.7-15.4 7.1-24.4 10 1.7 2.7 3.4 3.4 7.1 4.1-9.5 5.3-23.2 2.9-27 5.6.9 2.7 3.6 4.4 6.7 5.8-15.4.9-57.3-.6-65.4-32.3 15.7-17.3 44.4-37.5 93.7-62.6-38.4 12.8-73 30-102 53.5-34.3-15.9-10.8-55.9 5.8-71.8zm-34.4 114.6c24.2-.3 54.1 17.8 54 34.7-.1 15-21 27.1-53.8 26.9-32.1-.4-53.7-15.2-53.6-29.8 0-11.9 26.2-32.5 53.4-31.8zm-123-12.8c3.7-.7 5.4-1.5 7.1-4.1-9-2.8-18.7-5.3-24.4-10 3.1 0 6 .7 10-2.1-8.1-4.3-16.7-7.7-23.4-14.2 4.2-.1 8.7 0 10-1.6-7.4-4.5-13.6-9.5-18.8-15 5.8.7 8.3.1 9.7-.9-5.6-5.6-12.7-10.4-16-17.3 4.3 1.5 8.3 2 11.2-.1-1.9-4.2-10-6.7-14.7-16.6 4.6.4 9.4 1 10.4 0-2.1-8.5-5.8-13.3-9.3-18.2 9.8-.1 24.6 0 23.9-.8l-6-6.1c9.5-2.5 19.3.4 26.4 2.6 3.2-2.5-.1-5.6-3.9-8.8 8.1 1.1 15.4 2.9 22.1 5.4 3.5-3.1-2.3-6.3-5.1-9.4 12.5 2.3 17.8 5.6 23.1 8.9 3.8-3.6.2-6.7-2.4-9.8 9.4 3.4 14.3 7.9 19.4 12.3 1.7-2.3 4.4-4 1.2-9.6 6.7 3.8 11.8 8.3 15.5 13.3 4.1-2.6 2.5-6.2 2.5-9.4 7 5.6 11.4 11.5 16.8 17.3 1.1-.8 2-3.4 2.9-7.6 16.6 15.9 40.1 55.9 6 71.8-29-23.5-63.6-40.7-102-53.5 49.3 25 78 45.3 93.7 62.6-8 31.8-50 33.2-65.4 32.3 3.1-1.4 5.8-3.2 6.7-5.8-4-2.8-17.6-.4-27.2-5.6zm60.1 24.1c16.8 2.8-80.6 86.5-82.1 67.9-1.5-48.7 36.5-75.5 82.1-67.9zM38.2 342c-23.7-18.8-31.3-73.7 12.6-98.3 26.5-7 9 107.8-12.6 98.3zm91 98.2c-13.3 7.9-45.8 4.7-68.8-27.9-15.5-27.4-13.5-55.2-2.6-63.4 16.3-9.8 41.5 3.4 60.9 25.6 16.9 20 24.6 55.3 10.5 65.7zm-26.4-119.7c-24.5-15.8-28.9-51.6-9.9-80s54.3-38.6 78.8-22.8 28.9 51.6 9.9 80c-19.1 28.4-54.4 38.6-78.8 22.8zM205 496c-29.4 1.2-58.2-23.7-57.8-32.3-.4-12.7 35.8-22.6 59.3-22 23.7-1 55.6 7.5 55.7 18.9.5 11-28.8 35.9-57.2 35.4zm58.9-124.9c.2 29.7-26.2 53.8-58.8 54-32.6.2-59.2-23.8-59.4-53.4v-.6c-.2-29.7 26.2-53.8 58.8-54 32.6-.2 59.2 23.8 59.4 53.4v.6zm82.2 42.7c-25.3 34.6-59.6 35.9-72.3 26.3-13.3-12.4-3.2-50.9 15.1-72 20.9-23.3 43.3-38.5 58.9-26.6 10.5 10.3 16.7 49.1-1.7 72.3zm22.9-73.2c-21.5 9.4-39-105.3-12.6-98.3 43.9 24.7 36.3 79.6 12.6 98.3z"],ravelry:[512,512,[],"f2d9","M407.4 61.5C331.6 22.1 257.8 31 182.9 66c-11.3 5.2-15.5 10.6-19.9 19-10.3 19.2-16.2 37.4-19.9 52.7-21.2 25.6-36.4 56.1-43.3 89.9-10.6 18-20.9 41.4-23.1 71.4 0 0-.7 7.6-.5 7.9-35.3-4.6-76.2-27-76.2-27 9.1 14.5 61.3 32.3 76.3 37.9 0 0 1.7 98 64.5 131.2-11.3-17.2-13.3-20.2-13.3-20.2S94.8 369 100.4 324.7c.7 0 1.5.2 2.2.2 23.9 87.4 103.2 151.4 196.9 151.4 6.2 0 12.1-.2 18-.7 14 1.5 27.6.5 40.1-3.9 6.9-2.2 13.8-6.4 20.2-10.8 70.2-39.1 100.9-82 123.1-147.7 5.4-16 8.1-35.5 9.8-52.2 8.7-82.3-30.6-161.6-103.3-199.5zM138.8 163.2s-1.2 12.3-.7 19.7c-3.4 2.5-10.1 8.1-18.2 16.7 5.2-12.8 11.3-25.1 18.9-36.4zm-31.2 121.9c4.4-17.2 13.3-39.1 29.8-55.1 0 0 1.7 48 15.8 90.1l-41.4-6.9c-2.2-9.2-3.5-18.5-4.2-28.1zm7.9 42.8c14.8 3.2 34 7.6 43.1 9.1 27.3 76.8 108.3 124.3 108.3 124.3 1 .5 1.7.7 2.7 1-73.1-11.6-132.7-64.7-154.1-134.4zM386 444.1c-14.5 4.7-36.2 8.4-64.7 3.7 0 0-91.1-23.1-127.5-107.8 38.2.7 52.4-.2 78-3.9 39.4-5.7 79-16.2 115-33 11.8-5.4 11.1-19.4 9.6-29.8-2-12.8-11.1-12.1-21.4-4.7 0 0-82 58.6-189.8 53.7-18.7-32-26.8-110.8-26.8-110.8 41.4-35.2 83.2-59.6 168.4-52.4.2-6.4 3-27.1-20.4-28.1 0 0-93.5-11.1-146 33.5 2.5-16.5 5.9-29.3 11.1-39.4 34.2-30.8 79-49.5 128.3-49.5 106.4 0 193 87.1 193 194.5-.2 76-43.8 142-106.8 174z"],react:[512,512,[],"f41b","M418.2 177.2c-5.4-1.8-10.8-3.5-16.2-5.1.9-3.7 1.7-7.4 2.5-11.1 12.3-59.6 4.2-107.5-23.1-123.3-26.3-15.1-69.2.6-112.6 38.4-4.3 3.7-8.5 7.6-12.5 11.5-2.7-2.6-5.5-5.2-8.3-7.7-45.5-40.4-91.1-57.4-118.4-41.5-26.2 15.2-34 60.3-23 116.7 1.1 5.6 2.3 11.1 3.7 16.7-6.4 1.8-12.7 3.8-18.6 5.9C38.3 196.2 0 225.4 0 255.6c0 31.2 40.8 62.5 96.3 81.5 4.5 1.5 9 3 13.6 4.3-1.5 6-2.8 11.9-4 18-10.5 55.5-2.3 99.5 23.9 114.6 27 15.6 72.4-.4 116.6-39.1 3.5-3.1 7-6.3 10.5-9.7 4.4 4.3 9 8.4 13.6 12.4 42.8 36.8 85.1 51.7 111.2 36.6 27-15.6 35.8-62.9 24.4-120.5-.9-4.4-1.9-8.9-3-13.5 3.2-.9 6.3-1.9 9.4-2.9 57.7-19.1 99.5-50 99.5-81.7 0-30.3-39.4-59.7-93.8-78.4zM282.9 92.3c37.2-32.4 71.9-45.1 87.7-36 16.9 9.7 23.4 48.9 12.8 100.4-.7 3.4-1.4 6.7-2.3 10-22.2-5-44.7-8.6-67.3-10.6-13-18.6-27.2-36.4-42.6-53.1 3.9-3.7 7.7-7.2 11.7-10.7zM167.2 307.5c5.1 8.7 10.3 17.4 15.8 25.9-15.6-1.7-31.1-4.2-46.4-7.5 4.4-14.4 9.9-29.3 16.3-44.5 4.6 8.8 9.3 17.5 14.3 26.1zm-30.3-120.3c14.4-3.2 29.7-5.8 45.6-7.8-5.3 8.3-10.5 16.8-15.4 25.4-4.9 8.5-9.7 17.2-14.2 26-6.3-14.9-11.6-29.5-16-43.6zm27.4 68.9c6.6-13.8 13.8-27.3 21.4-40.6s15.8-26.2 24.4-38.9c15-1.1 30.3-1.7 45.9-1.7s31 .6 45.9 1.7c8.5 12.6 16.6 25.5 24.3 38.7s14.9 26.7 21.7 40.4c-6.7 13.8-13.9 27.4-21.6 40.8-7.6 13.3-15.7 26.2-24.2 39-14.9 1.1-30.4 1.6-46.1 1.6s-30.9-.5-45.6-1.4c-8.7-12.7-16.9-25.7-24.6-39s-14.8-26.8-21.5-40.6zm180.6 51.2c5.1-8.8 9.9-17.7 14.6-26.7 6.4 14.5 12 29.2 16.9 44.3-15.5 3.5-31.2 6.2-47 8 5.4-8.4 10.5-17 15.5-25.6zm14.4-76.5c-4.7-8.8-9.5-17.6-14.5-26.2-4.9-8.5-10-16.9-15.3-25.2 16.1 2 31.5 4.7 45.9 8-4.6 14.8-10 29.2-16.1 43.4zM256.2 118.3c10.5 11.4 20.4 23.4 29.6 35.8-19.8-.9-39.7-.9-59.5 0 9.8-12.9 19.9-24.9 29.9-35.8zM140.2 57c16.8-9.8 54.1 4.2 93.4 39 2.5 2.2 5 4.6 7.6 7-15.5 16.7-29.8 34.5-42.9 53.1-22.6 2-45 5.5-67.2 10.4-1.3-5.1-2.4-10.3-3.5-15.5-9.4-48.4-3.2-84.9 12.6-94zm-24.5 263.6c-4.2-1.2-8.3-2.5-12.4-3.9-21.3-6.7-45.5-17.3-63-31.2-10.1-7-16.9-17.8-18.8-29.9 0-18.3 31.6-41.7 77.2-57.6 5.7-2 11.5-3.8 17.3-5.5 6.8 21.7 15 43 24.5 63.6-9.6 20.9-17.9 42.5-24.8 64.5zm116.6 98c-16.5 15.1-35.6 27.1-56.4 35.3-11.1 5.3-23.9 5.8-35.3 1.3-15.9-9.2-22.5-44.5-13.5-92 1.1-5.6 2.3-11.2 3.7-16.7 22.4 4.8 45 8.1 67.9 9.8 13.2 18.7 27.7 36.6 43.2 53.4-3.2 3.1-6.4 6.1-9.6 8.9zm24.5-24.3c-10.2-11-20.4-23.2-30.3-36.3 9.6.4 19.5.6 29.5.6 10.3 0 20.4-.2 30.4-.7-9.2 12.7-19.1 24.8-29.6 36.4zm130.7 30c-.9 12.2-6.9 23.6-16.5 31.3-15.9 9.2-49.8-2.8-86.4-34.2-4.2-3.6-8.4-7.5-12.7-11.5 15.3-16.9 29.4-34.8 42.2-53.6 22.9-1.9 45.7-5.4 68.2-10.5 1 4.1 1.9 8.2 2.7 12.2 4.9 21.6 5.7 44.1 2.5 66.3zm18.2-107.5c-2.8.9-5.6 1.8-8.5 2.6-7-21.8-15.6-43.1-25.5-63.8 9.6-20.4 17.7-41.4 24.5-62.9 5.2 1.5 10.2 3.1 15 4.7 46.6 16 79.3 39.8 79.3 58 0 19.6-34.9 44.9-84.8 61.4zm-149.7-15c25.3 0 45.8-20.5 45.8-45.8s-20.5-45.8-45.8-45.8c-25.3 0-45.8 20.5-45.8 45.8s20.5 45.8 45.8 45.8z"],reacteurope:[576,512,[],"f75d","M250.6 211.74l5.8-4.1 5.8 4.1-2.1-6.8 5.7-4.3-7.1-.1-2.3-6.8-2.3 6.8-7.2.1 5.7 4.3zm63.7 0l5.8-4.1 5.8 4.1-2.1-6.8 5.7-4.3-7.2-.1-2.3-6.8-2.3 6.8-7.2.1 5.7 4.3zm-91.3 50.5h-3.4c-4.8 0-3.8 4-3.8 12.1 0 4.7-2.3 6.1-5.8 6.1s-5.8-1.4-5.8-6.1v-36.6c0-4.7 2.3-6.1 5.8-6.1s5.8 1.4 5.8 6.1c0 7.2-.7 10.5 3.8 10.5h3.4c4.7-.1 3.8-3.9 3.8-12.3 0-9.9-6.7-14.1-16.8-14.1h-.2c-10.1 0-16.8 4.2-16.8 14.1V276c0 10.4 6.7 14.1 16.8 14.1h.2c10.1 0 16.8-3.8 16.8-14.1 0-9.86 1.1-13.76-3.8-13.76zm-80.7 17.4h-14.7v-19.3H139c2.5 0 3.8-1.3 3.8-3.8v-2.1c0-2.5-1.3-3.8-3.8-3.8h-11.4v-18.3H142c2.5 0 3.8-1.3 3.8-3.8v-2.1c0-2.5-1.3-3.8-3.8-3.8h-21.7c-2.4-.1-3.7 1.3-3.7 3.8v59.1c0 2.5 1.3 3.8 3.8 3.8h21.9c2.5 0 3.8-1.3 3.8-3.8v-2.1c0-2.5-1.3-3.8-3.8-3.8zm-42-18.5c4.6-2 7.3-6 7.3-12.4v-11.9c0-10.1-6.7-14.1-16.8-14.1H77.4c-2.5 0-3.8 1.3-3.8 3.8v59.1c0 2.5 1.3 3.8 3.8 3.8h3.4c2.5 0 3.8-1.3 3.8-3.8v-22.9h5.6l7.4 23.5a4.1 4.1 0 0 0 4.3 3.2h3.3c2.8 0 4-1.8 3.2-4.4zm-3.8-14c0 4.8-2.5 6.1-6.1 6.1h-5.8v-20.9h5.8c3.6 0 6.1 1.3 6.1 6.1zM176 226a3.82 3.82 0 0 0-4.2-3.4h-6.9a3.68 3.68 0 0 0-4 3.4l-11 59.2c-.5 2.7.9 4.1 3.4 4.1h3a3.74 3.74 0 0 0 4.1-3.5l1.8-11.3h12.2l1.8 11.3a3.74 3.74 0 0 0 4.1 3.5h3.5c2.6 0 3.9-1.4 3.4-4.1zm-12.3 39.3l4.7-29.7 4.7 29.7zm89.3 20.2v-53.2h7.5c2.5 0 3.8-1.3 3.8-3.8v-2.1c0-2.5-1.3-3.8-3.8-3.8h-25.8c-2.5 0-3.8 1.3-3.8 3.8v2.1c0 2.5 1.3 3.8 3.8 3.8h7.3v53.2c0 2.5 1.3 3.8 3.8 3.8h3.4c2.5.04 3.8-1.3 3.8-3.76zm248-.8h-19.4V258h16.1a1.89 1.89 0 0 0 2-2v-.8a1.89 1.89 0 0 0-2-2h-16.1v-25.8h19.1a1.89 1.89 0 0 0 2-2v-.8a1.77 1.77 0 0 0-2-1.9h-22.2a1.62 1.62 0 0 0-2 1.8v63a1.81 1.81 0 0 0 2 1.9H501a1.81 1.81 0 0 0 2-1.9v-.8a1.84 1.84 0 0 0-2-1.96zm-93.1-62.9h-.8c-10.1 0-15.3 4.7-15.3 14.1V276c0 9.3 5.2 14.1 15.3 14.1h.8c10.1 0 15.3-4.8 15.3-14.1v-40.1c0-9.36-5.2-14.06-15.3-14.06zm10.2 52.4c-.1 8-3 11.1-10.5 11.1s-10.5-3.1-10.5-11.1v-36.6c0-7.9 3-11.1 10.5-11.1s10.5 3.2 10.5 11.1zm-46.5-14.5c6.1-1.6 9.2-6.1 9.2-13.3v-9.7c0-9.4-5.2-14.1-15.3-14.1h-13.7a1.81 1.81 0 0 0-2 1.9v63a1.81 1.81 0 0 0 2 1.9h1.2a1.74 1.74 0 0 0 1.9-1.9v-26.9h11.6l10.4 27.2a2.32 2.32 0 0 0 2.3 1.5h1.5c1.4 0 2-1 1.5-2.3zm-6.4-3.9H355v-28.5h10.2c7.5 0 10.5 3.1 10.5 11.1v6.4c0 7.84-3 11.04-10.5 11.04zm85.9-33.1h-13.7a1.62 1.62 0 0 0-2 1.8v63a1.81 1.81 0 0 0 2 1.9h1.2a1.74 1.74 0 0 0 1.9-1.9v-26.1h10.6c10.1 0 15.3-4.8 15.3-14.1v-10.5c0-9.4-5.2-14.1-15.3-14.1zm10.2 22.8c0 7.9-3 11.1-10.5 11.1h-10.2v-29.2h10.2c7.5-.1 10.5 3.1 10.5 11zM259.5 308l-2.3-6.8-2.3 6.8-7.1.1 5.7 4.3-2.1 6.8 5.8-4.1 5.8 4.1-2.1-6.8 5.7-4.3zm227.6-136.1a364.42 364.42 0 0 0-35.6-11.3c19.6-78 11.6-134.7-22.3-153.9C394.7-12.66 343.3 11 291 61.94q5.1 4.95 10.2 10.2c82.5-80 119.6-53.5 120.9-52.8 22.4 12.7 36 55.8 15.5 137.8a587.83 587.83 0 0 0-84.6-13C281.1 43.64 212.4 2 170.8 2 140 2 127 23 123.2 29.74c-18.1 32-13.3 84.2.1 133.8-70.5 20.3-120.7 54.1-120.3 95 .5 59.6 103.2 87.8 122.1 92.8-20.5 81.9-10.1 135.6 22.3 153.9 28 15.8 75.1 6 138.2-55.2q-5.1-4.95-10.2-10.2c-82.5 80-119.7 53.5-120.9 52.8-22.3-12.6-36-55.6-15.5-137.9 12.4 2.9 41.8 9.5 84.6 13 71.9 100.4 140.6 142 182.1 142 30.8 0 43.8-21 47.6-27.7 18-31.9 13.3-84.1-.1-133.8 152.3-43.8 156.2-130.2 33.9-176.3zM135.9 36.84c2.9-5.1 11.9-20.3 34.9-20.3 36.8 0 98.8 39.6 163.3 126.2a714 714 0 0 0-93.9.9 547.76 547.76 0 0 1 42.2-52.4Q277.3 86 272.2 81a598.25 598.25 0 0 0-50.7 64.2 569.69 569.69 0 0 0-84.4 14.6c-.2-1.4-24.3-82.2-1.2-123zm304.8 438.3c-2.9 5.1-11.8 20.3-34.9 20.3-36.7 0-98.7-39.4-163.3-126.2a695.38 695.38 0 0 0 93.9-.9 547.76 547.76 0 0 1-42.2 52.4q5.1 5.25 10.2 10.2a588.47 588.47 0 0 0 50.7-64.2c47.3-4.7 80.3-13.5 84.4-14.6 22.7 84.4 4.5 117 1.2 123zm9.1-138.6c-3.6-11.9-7.7-24.1-12.4-36.4a12.67 12.67 0 0 1-10.7-5.7l-.1.1a19.61 19.61 0 0 1-5.4 3.6c5.7 14.3 10.6 28.4 14.7 42.2a535.3 535.3 0 0 1-72 13c3.5-5.3 17.2-26.2 32.2-54.2a24.6 24.6 0 0 1-6-3.2c-1.1 1.2-3.6 4.2-10.9 4.2-6.2 11.2-17.4 30.9-33.9 55.2a711.91 711.91 0 0 1-112.4 1c-7.9-11.2-21.5-31.1-36.8-57.8a21 21 0 0 1-3-1.5c-1.9 1.6-3.9 3.2-12.6 3.2 6.3 11.2 17.5 30.7 33.8 54.6a548.81 548.81 0 0 1-72.2-11.7q5.85-21 14.1-42.9c-3.2 0-5.4.2-8.4-1a17.58 17.58 0 0 1-6.9 1c-4.9 13.4-9.1 26.5-12.7 39.4C-31.7 297-12.1 216 126.7 175.64c3.6 11.9 7.7 24.1 12.4 36.4 10.4 0 12.9 3.4 14.4 5.3a12 12 0 0 1 2.3-2.2c-5.8-14.7-10.9-29.2-15.2-43.3 7-1.8 32.4-8.4 72-13-15.9 24.3-26.7 43.9-32.8 55.3a14.22 14.22 0 0 1 6.4 8 23.42 23.42 0 0 1 10.2-8.4c6.5-11.7 17.9-31.9 34.8-56.9a711.72 711.72 0 0 1 112.4-1c31.5 44.6 28.9 48.1 42.5 64.5a21.42 21.42 0 0 1 10.4-7.4c-6.4-11.4-17.6-31-34.3-55.5 40.4 4.1 65 10 72.2 11.7-4 14.4-8.9 29.2-14.6 44.2a20.74 20.74 0 0 1 6.8 4.3l.1.1a12.72 12.72 0 0 1 8.9-5.6c4.9-13.4 9.2-26.6 12.8-39.5a359.71 359.71 0 0 1 34.5 11c106.1 39.9 74 87.9 72.6 90.4-19.8 35.1-80.1 55.2-105.7 62.5zm-114.4-114h-1.2a1.74 1.74 0 0 0-1.9 1.9v49.8c0 7.9-2.6 11.1-10.1 11.1s-10.1-3.1-10.1-11.1v-49.8a1.69 1.69 0 0 0-1.9-1.9H309a1.81 1.81 0 0 0-2 1.9v51.5c0 9.6 5 14.1 15.1 14.1h.4c10.1 0 15.1-4.6 15.1-14.1v-51.5a2 2 0 0 0-2.2-1.9zM321.7 308l-2.3-6.8-2.3 6.8-7.1.1 5.7 4.3-2.1 6.8 5.8-4.1 5.8 4.1-2.1-6.8 5.7-4.3zm-31.1 7.4l-2.3-6.8-2.3 6.8-7.1.1 5.7 4.3-2.1 6.8 5.8-4.1 5.8 4.1-2.1-6.8 5.7-4.3zm5.1-30.8h-19.4v-26.7h16.1a1.89 1.89 0 0 0 2-2v-.8a1.89 1.89 0 0 0-2-2h-16.1v-25.8h19.1a1.89 1.89 0 0 0 2-2v-.8a1.77 1.77 0 0 0-2-1.9h-22.2a1.81 1.81 0 0 0-2 1.9v63a1.81 1.81 0 0 0 2 1.9h22.5a1.77 1.77 0 0 0 2-1.9v-.8a1.83 1.83 0 0 0-2-2.06zm-7.4-99.4L286 192l-7.1.1 5.7 4.3-2.1 6.8 5.8-4.1 5.8 4.1-2.1-6.8 5.7-4.3-7.1-.1z"],readme:[576,512,[],"f4d5","M528.3 46.5H388.5c-48.1 0-89.9 33.3-100.4 80.3-10.6-47-52.3-80.3-100.4-80.3H48c-26.5 0-48 21.5-48 48v245.8c0 26.5 21.5 48 48 48h89.7c102.2 0 132.7 24.4 147.3 75 .7 2.8 5.2 2.8 6 0 14.7-50.6 45.2-75 147.3-75H528c26.5 0 48-21.5 48-48V94.6c0-26.4-21.3-47.9-47.7-48.1zM242 311.9c0 1.9-1.5 3.5-3.5 3.5H78.2c-1.9 0-3.5-1.5-3.5-3.5V289c0-1.9 1.5-3.5 3.5-3.5h160.4c1.9 0 3.5 1.5 3.5 3.5v22.9zm0-60.9c0 1.9-1.5 3.5-3.5 3.5H78.2c-1.9 0-3.5-1.5-3.5-3.5v-22.9c0-1.9 1.5-3.5 3.5-3.5h160.4c1.9 0 3.5 1.5 3.5 3.5V251zm0-60.9c0 1.9-1.5 3.5-3.5 3.5H78.2c-1.9 0-3.5-1.5-3.5-3.5v-22.9c0-1.9 1.5-3.5 3.5-3.5h160.4c1.9 0 3.5 1.5 3.5 3.5v22.9zm259.3 121.7c0 1.9-1.5 3.5-3.5 3.5H337.5c-1.9 0-3.5-1.5-3.5-3.5v-22.9c0-1.9 1.5-3.5 3.5-3.5h160.4c1.9 0 3.5 1.5 3.5 3.5v22.9zm0-60.9c0 1.9-1.5 3.5-3.5 3.5H337.5c-1.9 0-3.5-1.5-3.5-3.5V228c0-1.9 1.5-3.5 3.5-3.5h160.4c1.9 0 3.5 1.5 3.5 3.5v22.9zm0-60.9c0 1.9-1.5 3.5-3.5 3.5H337.5c-1.9 0-3.5-1.5-3.5-3.5v-22.8c0-1.9 1.5-3.5 3.5-3.5h160.4c1.9 0 3.5 1.5 3.5 3.5V190z"],rebel:[512,512,[],"f1d0","M256.5 504C117.2 504 9 387.8 13.2 249.9 16 170.7 56.4 97.7 129.7 49.5c.3 0 1.9-.6 1.1.8-5.8 5.5-111.3 129.8-14.1 226.4 49.8 49.5 90 2.5 90 2.5 38.5-50.1-.6-125.9-.6-125.9-10-24.9-45.7-40.1-45.7-40.1l28.8-31.8c24.4 10.5 43.2 38.7 43.2 38.7.8-29.6-21.9-61.4-21.9-61.4L255.1 8l44.3 50.1c-20.5 28.8-21.9 62.6-21.9 62.6 13.8-23 43.5-39.3 43.5-39.3l28.5 31.8c-27.4 8.9-45.4 39.9-45.4 39.9-15.8 28.5-27.1 89.4.6 127.3 32.4 44.6 87.7-2.8 87.7-2.8 102.7-91.9-10.5-225-10.5-225-6.1-5.5.8-2.8.8-2.8 50.1 36.5 114.6 84.4 116.2 204.8C500.9 400.2 399 504 256.5 504z"],"red-river":[448,512,[],"f3e3","M353.2 32H94.8C42.4 32 0 74.4 0 126.8v258.4C0 437.6 42.4 480 94.8 480h258.4c52.4 0 94.8-42.4 94.8-94.8V126.8c0-52.4-42.4-94.8-94.8-94.8zM144.9 200.9v56.3c0 27-21.9 48.9-48.9 48.9V151.9c0-13.2 10.7-23.9 23.9-23.9h154.2c0 27-21.9 48.9-48.9 48.9h-56.3c-12.3-.6-24.6 11.6-24 24zm176.3 72h-56.3c-12.3-.6-24.6 11.6-24 24v56.3c0 27-21.9 48.9-48.9 48.9V247.9c0-13.2 10.7-23.9 23.9-23.9h154.2c0 27-21.9 48.9-48.9 48.9z"],reddit:[512,512,[],"f1a1","M201.5 305.5c-13.8 0-24.9-11.1-24.9-24.6 0-13.8 11.1-24.9 24.9-24.9 13.6 0 24.6 11.1 24.6 24.9 0 13.6-11.1 24.6-24.6 24.6zM504 256c0 137-111 248-248 248S8 393 8 256 119 8 256 8s248 111 248 248zm-132.3-41.2c-9.4 0-17.7 3.9-23.8 10-22.4-15.5-52.6-25.5-86.1-26.6l17.4-78.3 55.4 12.5c0 13.6 11.1 24.6 24.6 24.6 13.8 0 24.9-11.3 24.9-24.9s-11.1-24.9-24.9-24.9c-9.7 0-18 5.8-22.1 13.8l-61.2-13.6c-3-.8-6.1 1.4-6.9 4.4l-19.1 86.4c-33.2 1.4-63.1 11.3-85.5 26.8-6.1-6.4-14.7-10.2-24.1-10.2-34.9 0-46.3 46.9-14.4 62.8-1.1 5-1.7 10.2-1.7 15.5 0 52.6 59.2 95.2 132 95.2 73.1 0 132.3-42.6 132.3-95.2 0-5.3-.6-10.8-1.9-15.8 31.3-16 19.8-62.5-14.9-62.5zM302.8 331c-18.2 18.2-76.1 17.9-93.6 0-2.2-2.2-6.1-2.2-8.3 0-2.5 2.5-2.5 6.4 0 8.6 22.8 22.8 87.3 22.8 110.2 0 2.5-2.2 2.5-6.1 0-8.6-2.2-2.2-6.1-2.2-8.3 0zm7.7-75c-13.6 0-24.6 11.1-24.6 24.9 0 13.6 11.1 24.6 24.6 24.6 13.8 0 24.9-11.1 24.9-24.6 0-13.8-11-24.9-24.9-24.9z"],"reddit-alien":[512,512,[],"f281","M440.3 203.5c-15 0-28.2 6.2-37.9 15.9-35.7-24.7-83.8-40.6-137.1-42.3L293 52.3l88.2 19.8c0 21.6 17.6 39.2 39.2 39.2 22 0 39.7-18.1 39.7-39.7s-17.6-39.7-39.7-39.7c-15.4 0-28.7 9.3-35.3 22l-97.4-21.6c-4.9-1.3-9.7 2.2-11 7.1L246.3 177c-52.9 2.2-100.5 18.1-136.3 42.8-9.7-10.1-23.4-16.3-38.4-16.3-55.6 0-73.8 74.6-22.9 100.1-1.8 7.9-2.6 16.3-2.6 24.7 0 83.8 94.4 151.7 210.3 151.7 116.4 0 210.8-67.9 210.8-151.7 0-8.4-.9-17.2-3.1-25.1 49.9-25.6 31.5-99.7-23.8-99.7zM129.4 308.9c0-22 17.6-39.7 39.7-39.7 21.6 0 39.2 17.6 39.2 39.7 0 21.6-17.6 39.2-39.2 39.2-22 .1-39.7-17.6-39.7-39.2zm214.3 93.5c-36.4 36.4-139.1 36.4-175.5 0-4-3.5-4-9.7 0-13.7 3.5-3.5 9.7-3.5 13.2 0 27.8 28.5 120 29 149 0 3.5-3.5 9.7-3.5 13.2 0 4.1 4 4.1 10.2.1 13.7zm-.8-54.2c-21.6 0-39.2-17.6-39.2-39.2 0-22 17.6-39.7 39.2-39.7 22 0 39.7 17.6 39.7 39.7-.1 21.5-17.7 39.2-39.7 39.2z"],"reddit-square":[448,512,[],"f1a2","M283.2 345.5c2.7 2.7 2.7 6.8 0 9.2-24.5 24.5-93.8 24.6-118.4 0-2.7-2.4-2.7-6.5 0-9.2 2.4-2.4 6.5-2.4 8.9 0 18.7 19.2 81 19.6 100.5 0 2.4-2.3 6.6-2.3 9 0zm-91.3-53.8c0-14.9-11.9-26.8-26.5-26.8-14.9 0-26.8 11.9-26.8 26.8 0 14.6 11.9 26.5 26.8 26.5 14.6 0 26.5-11.9 26.5-26.5zm90.7-26.8c-14.6 0-26.5 11.9-26.5 26.8 0 14.6 11.9 26.5 26.5 26.5 14.9 0 26.8-11.9 26.8-26.5 0-14.9-11.9-26.8-26.8-26.8zM448 80v352c0 26.5-21.5 48-48 48H48c-26.5 0-48-21.5-48-48V80c0-26.5 21.5-48 48-48h352c26.5 0 48 21.5 48 48zm-99.7 140.6c-10.1 0-19 4.2-25.6 10.7-24.1-16.7-56.5-27.4-92.5-28.6l18.7-84.2 59.5 13.4c0 14.6 11.9 26.5 26.5 26.5 14.9 0 26.8-12.2 26.8-26.8 0-14.6-11.9-26.8-26.8-26.8-10.4 0-19.3 6.2-23.8 14.9l-65.7-14.6c-3.3-.9-6.5 1.5-7.4 4.8l-20.5 92.8c-35.7 1.5-67.8 12.2-91.9 28.9-6.5-6.8-15.8-11-25.9-11-37.5 0-49.8 50.4-15.5 67.5-1.2 5.4-1.8 11-1.8 16.7 0 56.5 63.7 102.3 141.9 102.3 78.5 0 142.2-45.8 142.2-102.3 0-5.7-.6-11.6-2.1-17 33.6-17.2 21.2-67.2-16.1-67.2z"],redhat:[512,512,[],"f7bc","M341.52 285.56c33.65 0 82.34-6.94 82.34-47 .22-6.74.86-1.82-20.88-96.24-4.62-19.15-8.68-27.84-42.31-44.65-26.09-13.34-82.92-35.37-99.73-35.37-15.66 0-20.2 20.17-38.87 20.17-18 0-31.31-15.06-48.12-15.06-16.14 0-26.66 11-34.78 33.62-27.5 77.55-26.28 74.27-26.12 78.27 0 24.8 97.64 106.11 228.47 106.11M429 254.84c4.65 22 4.65 24.35 4.65 27.25 0 37.66-42.33 58.56-98 58.56-125.74.08-235.91-73.65-235.91-122.33a49.55 49.55 0 0 1 4.06-19.72C58.56 200.86 0 208.93 0 260.63c0 84.67 200.63 189 359.49 189 121.79 0 152.51-55.08 152.51-98.58 0-34.21-29.59-73.05-82.93-96.24"],renren:[512,512,[],"f18b","M214 169.1c0 110.4-61 205.4-147.6 247.4C30 373.2 8 317.7 8 256.6 8 133.9 97.1 32.2 214 12.5v156.6zM255 504c-42.9 0-83.3-11-118.5-30.4C193.7 437.5 239.9 382.9 255 319c15.5 63.9 61.7 118.5 118.8 154.7C338.7 493 298.3 504 255 504zm190.6-87.5C359 374.5 298 279.6 298 169.1V12.5c116.9 19.7 206 121.4 206 244.1 0 61.1-22 116.6-58.4 159.9z"],replyd:[448,512,[],"f3e6","M320 480H128C57.6 480 0 422.4 0 352V160C0 89.6 57.6 32 128 32h192c70.4 0 128 57.6 128 128v192c0 70.4-57.6 128-128 128zM193.4 273.2c-6.1-2-11.6-3.1-16.4-3.1-7.2 0-13.5 1.9-18.9 5.6-5.4 3.7-9.6 9-12.8 15.8h-1.1l-4.2-18.3h-28v138.9h36.1v-89.7c1.5-5.4 4.4-9.8 8.7-13.2 4.3-3.4 9.8-5.1 16.2-5.1 4.6 0 9.8 1 15.6 3.1l4.8-34zm115.2 103.4c-3.2 2.4-7.7 4.8-13.7 7.1-6 2.3-12.8 3.5-20.4 3.5-12.2 0-21.1-3-26.5-8.9-5.5-5.9-8.5-14.7-9-26.4h83.3c.9-4.8 1.6-9.4 2.1-13.9.5-4.4.7-8.6.7-12.5 0-10.7-1.6-19.7-4.7-26.9-3.2-7.2-7.3-13-12.5-17.2-5.2-4.3-11.1-7.3-17.8-9.2-6.7-1.8-13.5-2.8-20.6-2.8-21.1 0-37.5 6.1-49.2 18.3s-17.5 30.5-17.5 55c0 22.8 5.2 40.7 15.6 53.7 10.4 13.1 26.8 19.6 49.2 19.6 10.7 0 20.9-1.5 30.4-4.6 9.5-3.1 17.1-6.8 22.6-11.2l-12-23.6zm-21.8-70.3c3.8 5.4 5.3 13.1 4.6 23.1h-51.7c.9-9.4 3.7-17 8.2-22.6 4.5-5.6 11.5-8.5 21-8.5 8.2-.1 14.1 2.6 17.9 8zm79.9 2.5c4.1 3.9 9.4 5.8 16.1 5.8 7 0 12.6-1.9 16.7-5.8s6.1-9.1 6.1-15.6-2-11.6-6.1-15.4c-4.1-3.8-9.6-5.7-16.7-5.7-6.7 0-12 1.9-16.1 5.7-4.1 3.8-6.1 8.9-6.1 15.4s2 11.7 6.1 15.6zm0 100.5c4.1 3.9 9.4 5.8 16.1 5.8 7 0 12.6-1.9 16.7-5.8s6.1-9.1 6.1-15.6-2-11.6-6.1-15.4c-4.1-3.8-9.6-5.7-16.7-5.7-6.7 0-12 1.9-16.1 5.7-4.1 3.8-6.1 8.9-6.1 15.4 0 6.6 2 11.7 6.1 15.6z"],researchgate:[448,512,[],"f4f8","M0 32v448h448V32H0zm262.2 334.4c-6.6 3-33.2 6-50-14.2-9.2-10.6-25.3-33.3-42.2-63.6-8.9 0-14.7 0-21.4-.6v46.4c0 23.5 6 21.2 25.8 23.9v8.1c-6.9-.3-23.1-.8-35.6-.8-13.1 0-26.1.6-33.6.8v-8.1c15.5-2.9 22-1.3 22-23.9V225c0-22.6-6.4-21-22-23.9V193c25.8 1 53.1-.6 70.9-.6 31.7 0 55.9 14.4 55.9 45.6 0 21.1-16.7 42.2-39.2 47.5 13.6 24.2 30 45.6 42.2 58.9 7.2 7.8 17.2 14.7 27.2 14.7v7.3zm22.9-135c-23.3 0-32.2-15.7-32.2-32.2V167c0-12.2 8.8-30.4 34-30.4s30.4 17.9 30.4 17.9l-10.7 7.2s-5.5-12.5-19.7-12.5c-7.9 0-19.7 7.3-19.7 19.7v26.8c0 13.4 6.6 23.3 17.9 23.3 14.1 0 21.5-10.9 21.5-26.8h-17.9v-10.7h30.4c0 20.5 4.7 49.9-34 49.9zm-116.5 44.7c-9.4 0-13.6-.3-20-.8v-69.7c6.4-.6 15-.6 22.5-.6 23.3 0 37.2 12.2 37.2 34.5 0 21.9-15 36.6-39.7 36.6z"],resolving:[496,512,[],"f3e7","M281.2 278.2c46-13.3 49.6-23.5 44-43.4L314 195.5c-6.1-20.9-18.4-28.1-71.1-12.8L54.7 236.8l28.6 98.6 197.9-57.2zM248.5 8C131.4 8 33.2 88.7 7.2 197.5l221.9-63.9c34.8-10.2 54.2-11.7 79.3-8.2 36.3 6.1 52.7 25 61.4 55.2l10.7 37.8c8.2 28.1 1 50.6-23.5 73.6-19.4 17.4-31.2 24.5-61.4 33.2L203 351.8l220.4 27.1 9.7 34.2-48.1 13.3-286.8-37.3 23 80.2c36.8 22 80.3 34.7 126.3 34.7 137 0 248.5-111.4 248.5-248.3C497 119.4 385.5 8 248.5 8zM38.3 388.6L0 256.8c0 48.5 14.3 93.4 38.3 131.8z"],rev:[448,512,[],"f5b2","M289.67 274.89a65.57 65.57 0 1 1-65.56-65.56 65.64 65.64 0 0 1 65.56 65.56zm139.55-5.05h-.13a204.69 204.69 0 0 0-74.32-153l-45.38 26.2a157.07 157.07 0 0 1 71.81 131.84C381.2 361.5 310.73 432 224.11 432S67 361.5 67 274.88c0-81.88 63-149.27 143-156.43v39.12l108.77-62.79L210 32v38.32c-106.7 7.25-191 96-191 204.57 0 111.59 89.12 202.29 200.06 205v.11h210.16V269.84z"],rocketchat:[576,512,[],"f3e8","M486.41 107.57c-76.93-50.83-179.18-62.4-264.12-47.07C127.26-31.16 20.77 11 0 23.12c0 0 73.08 62.1 61.21 116.49-86.52 88.2-45.39 186.4 0 232.77C73.08 426.77 0 488.87 0 488.87c20.57 12.16 126.77 54.19 222.29-37 84.75 15.23 187 3.76 264.12-47.16 119.26-76.14 119.65-220.61 0-297.15zM294.18 404.22a339.53 339.53 0 0 1-88.11-11.37l-19.77 19.09a179.74 179.74 0 0 1-36.59 27.39A143.14 143.14 0 0 1 98 454.06c1-1.78 1.88-3.56 2.77-5.24q29.67-55 16-98.69c-32.53-25.61-52-58.34-52-94.13 0-82 102.74-148.43 229.41-148.43S523.59 174 523.59 256 420.85 404.22 294.18 404.22zM184.12 291.3a34.32 34.32 0 0 1-34.8-33.72c-.7-45.39 67.83-46.38 68.52-1.09v.51a34 34 0 0 1-33.72 34.32zm73.77-33.72c-.79-45.39 67.74-46.48 68.53-1.19v.61c.39 45.08-67.74 45.57-68.53.58zm143.38 33.72a34.33 34.33 0 0 1-34.81-33.72c-.69-45.39 67.84-46.38 68.53-1.09v.51a33.89 33.89 0 0 1-33.72 34.32z"],rockrms:[496,512,[],"f3e9","M248 8C111 8 0 119 0 256s111 248 248 248 248-111 248-248S385 8 248 8zm157.4 419.5h-90l-112-131.3c-17.9-20.4-3.9-56.1 26.6-56.1h75.3l-84.6-99.3-84.3 98.9h-90L193.5 67.2c14.4-18.4 41.3-17.3 54.5 0l157.7 185.1c19 22.8 2 57.2-27.6 56.1-.6 0-74.2.2-74.2.2l101.5 118.9z"],safari:[512,512,[],"f267","M274.69,274.69l-37.38-37.38L166,346ZM256,8C119,8,8,119,8,256S119,504,256,504,504,393,504,256,393,8,256,8ZM411.85,182.79l14.78-6.13A8,8,0,0,1,437.08,181h0a8,8,0,0,1-4.33,10.46L418,197.57a8,8,0,0,1-10.45-4.33h0A8,8,0,0,1,411.85,182.79ZM314.43,94l6.12-14.78A8,8,0,0,1,331,74.92h0a8,8,0,0,1,4.33,10.45l-6.13,14.78a8,8,0,0,1-10.45,4.33h0A8,8,0,0,1,314.43,94ZM256,60h0a8,8,0,0,1,8,8V84a8,8,0,0,1-8,8h0a8,8,0,0,1-8-8V68A8,8,0,0,1,256,60ZM181,74.92a8,8,0,0,1,10.46,4.33L197.57,94a8,8,0,1,1-14.78,6.12l-6.13-14.78A8,8,0,0,1,181,74.92Zm-63.58,42.49h0a8,8,0,0,1,11.31,0L140,128.72A8,8,0,0,1,140,140h0a8,8,0,0,1-11.31,0l-11.31-11.31A8,8,0,0,1,117.41,117.41ZM60,256h0a8,8,0,0,1,8-8H84a8,8,0,0,1,8,8h0a8,8,0,0,1-8,8H68A8,8,0,0,1,60,256Zm40.15,73.21-14.78,6.13A8,8,0,0,1,74.92,331h0a8,8,0,0,1,4.33-10.46L94,314.43a8,8,0,0,1,10.45,4.33h0A8,8,0,0,1,100.15,329.21Zm4.33-136h0A8,8,0,0,1,94,197.57l-14.78-6.12A8,8,0,0,1,74.92,181h0a8,8,0,0,1,10.45-4.33l14.78,6.13A8,8,0,0,1,104.48,193.24ZM197.57,418l-6.12,14.78a8,8,0,0,1-14.79-6.12l6.13-14.78A8,8,0,1,1,197.57,418ZM264,444a8,8,0,0,1-8,8h0a8,8,0,0,1-8-8V428a8,8,0,0,1,8-8h0a8,8,0,0,1,8,8Zm67-6.92h0a8,8,0,0,1-10.46-4.33L314.43,418a8,8,0,0,1,4.33-10.45h0a8,8,0,0,1,10.45,4.33l6.13,14.78A8,8,0,0,1,331,437.08Zm63.58-42.49h0a8,8,0,0,1-11.31,0L372,383.28A8,8,0,0,1,372,372h0a8,8,0,0,1,11.31,0l11.31,11.31A8,8,0,0,1,394.59,394.59ZM286.25,286.25,110.34,401.66,225.75,225.75,401.66,110.34ZM437.08,331h0a8,8,0,0,1-10.45,4.33l-14.78-6.13a8,8,0,0,1-4.33-10.45h0A8,8,0,0,1,418,314.43l14.78,6.12A8,8,0,0,1,437.08,331ZM444,264H428a8,8,0,0,1-8-8h0a8,8,0,0,1,8-8h16a8,8,0,0,1,8,8h0A8,8,0,0,1,444,264Z"],salesforce:[640,512,[],"f83b","M248.89 245.64h-26.35c.69-5.16 3.32-14.12 13.64-14.12 6.75 0 11.97 3.82 12.71 14.12zm136.66-13.88c-.47 0-14.11-1.77-14.11 20s13.63 20 14.11 20c13 0 14.11-13.54 14.11-20 0-21.76-13.66-20-14.11-20zm-243.22 23.76a8.63 8.63 0 0 0-3.29 7.29c0 4.78 2.08 6.05 3.29 7.05 4.7 3.7 15.07 2.12 20.93.95v-16.94c-5.32-1.07-16.73-1.96-20.93 1.65zM640 232c0 87.58-80 154.39-165.36 136.43-18.37 33-70.73 70.75-132.2 41.63-41.16 96.05-177.89 92.18-213.81-5.17C8.91 428.78-50.19 266.52 53.36 205.61 18.61 126.18 76 32 167.67 32a124.24 124.24 0 0 1 98.56 48.7c20.7-21.4 49.4-34.81 81.15-34.81 42.34 0 79 23.52 98.8 58.57C539 63.78 640 132.69 640 232zm-519.55 31.8c0-11.76-11.69-15.17-17.87-17.17-5.27-2.11-13.41-3.51-13.41-8.94 0-9.46 17-6.66 25.17-2.12 0 0 1.17.71 1.64-.47.24-.7 2.36-6.58 2.59-7.29a1.13 1.13 0 0 0-.7-1.41c-12.33-7.63-40.7-8.51-40.7 12.7 0 12.46 11.49 15.44 17.88 17.17 4.72 1.58 13.17 3 13.17 8.7 0 4-3.53 7.06-9.17 7.06a31.76 31.76 0 0 1-19-6.35c-.47-.23-1.42-.71-1.65.71l-2.4 7.47c-.47.94.23 1.18.23 1.41 1.75 1.4 10.3 6.59 22.82 6.59 13.17 0 21.4-7.06 21.4-18.11zm32-42.58c-10.13 0-18.66 3.17-21.4 5.18a1 1 0 0 0-.24 1.41l2.59 7.06a1 1 0 0 0 1.18.7c.65 0 6.8-4 16.93-4 4 0 7.06.71 9.18 2.36 3.6 2.8 3.06 8.29 3.06 10.58-4.79-.3-19.11-3.44-29.41 3.76a16.92 16.92 0 0 0-7.34 14.54c0 5.9 1.51 10.4 6.59 14.35 12.24 8.16 36.28 2 38.1 1.41 1.58-.32 3.53-.66 3.53-1.88v-33.88c.04-4.61.32-21.64-22.78-21.64zM199 200.24a1.11 1.11 0 0 0-1.18-1.18H188a1.11 1.11 0 0 0-1.17 1.18v79a1.11 1.11 0 0 0 1.17 1.18h9.88a1.11 1.11 0 0 0 1.18-1.18zm55.75 28.93c-2.1-2.31-6.79-7.53-17.65-7.53-3.51 0-14.16.23-20.7 8.94-6.35 7.63-6.58 18.11-6.58 21.41 0 3.12.15 14.26 7.06 21.17 2.64 2.91 9.06 8.23 22.81 8.23 10.82 0 16.47-2.35 18.58-3.76.47-.24.71-.71.24-1.88l-2.35-6.83a1.26 1.26 0 0 0-1.41-.7c-2.59.94-6.35 2.82-15.29 2.82-17.42 0-16.85-14.74-16.94-16.7h37.17a1.23 1.23 0 0 0 1.17-.94c-.29 0 2.07-14.7-6.09-24.23zm36.69 52.69c13.17 0 21.41-7.06 21.41-18.11 0-11.76-11.7-15.17-17.88-17.17-4.14-1.66-13.41-3.38-13.41-8.94 0-3.76 3.29-6.35 8.47-6.35a38.11 38.11 0 0 1 16.7 4.23s1.18.71 1.65-.47c.23-.7 2.35-6.58 2.58-7.29a1.13 1.13 0 0 0-.7-1.41c-7.91-4.9-16.74-4.94-20.23-4.94-12 0-20.46 7.29-20.46 17.64 0 12.46 11.48 15.44 17.87 17.17 6.11 2 13.17 3.26 13.17 8.7 0 4-3.52 7.06-9.17 7.06a31.8 31.8 0 0 1-19-6.35 1 1 0 0 0-1.65.71l-2.35 7.52c-.47.94.23 1.18.23 1.41 1.72 1.4 10.33 6.59 22.79 6.59zM357.09 224c0-.71-.24-1.18-1.18-1.18h-11.76c0-.14.94-8.94 4.47-12.47 4.16-4.15 11.76-1.64 12-1.64 1.17.47 1.41 0 1.64-.47l2.83-7.77c.7-.94 0-1.17-.24-1.41-5.09-2-17.35-2.87-24.46 4.24-5.48 5.48-7 13.92-8 19.52h-8.47a1.28 1.28 0 0 0-1.17 1.18l-1.42 7.76c0 .7.24 1.17 1.18 1.17h8.23c-8.51 47.9-8.75 50.21-10.35 55.52-1.08 3.62-3.29 6.9-5.88 7.76-.09 0-3.88 1.68-9.64-.24 0 0-.94-.47-1.41.71-.24.71-2.59 6.82-2.83 7.53s0 1.41.47 1.41c5.11 2 13 1.77 17.88 0 6.28-2.28 9.72-7.89 11.53-12.94 2.75-7.71 2.81-9.79 11.76-59.74h12.23a1.29 1.29 0 0 0 1.18-1.18zm53.39 16c-.56-1.68-5.1-18.11-25.17-18.11-15.25 0-23 10-25.16 18.11-1 3-3.18 14 0 23.52.09.3 4.41 18.12 25.16 18.12 14.95 0 22.9-9.61 25.17-18.12 3.21-9.61 1.01-20.52 0-23.52zm45.4-16.7c-5-1.65-16.62-1.9-22.11 5.41v-4.47a1.11 1.11 0 0 0-1.18-1.17h-9.4a1.11 1.11 0 0 0-1.18 1.17v55.28a1.12 1.12 0 0 0 1.18 1.18h9.64a1.12 1.12 0 0 0 1.18-1.18v-27.77c0-2.91.05-11.37 4.46-15.05 4.9-4.9 12-3.36 13.41-3.06a1.57 1.57 0 0 0 1.41-.94 74 74 0 0 0 3.06-8 1.16 1.16 0 0 0-.47-1.41zm46.81 54.1l-2.12-7.29c-.47-1.18-1.41-.71-1.41-.71-4.23 1.82-10.15 1.89-11.29 1.89-4.64 0-17.17-1.13-17.17-19.76 0-6.23 1.85-19.76 16.47-19.76a34.85 34.85 0 0 1 11.52 1.65s.94.47 1.18-.71c.94-2.59 1.64-4.47 2.59-7.53.23-.94-.47-1.17-.71-1.17-11.59-3.87-22.34-2.53-27.76 0-1.59.74-16.23 6.49-16.23 27.52 0 2.9-.58 30.11 28.94 30.11a44.45 44.45 0 0 0 15.52-2.83 1.3 1.3 0 0 0 .47-1.42zm53.87-39.52c-.8-3-5.37-16.23-22.35-16.23-16 0-23.52 10.11-25.64 18.59a38.58 38.58 0 0 0-1.65 11.76c0 25.87 18.84 29.4 29.88 29.4 10.82 0 16.46-2.35 18.58-3.76.47-.24.71-.71.24-1.88l-2.36-6.83a1.26 1.26 0 0 0-1.41-.7c-2.59.94-6.35 2.82-15.29 2.82-17.42 0-16.85-14.74-16.93-16.7h37.16a1.25 1.25 0 0 0 1.18-.94c-.24-.01.94-7.07-1.41-15.54zm-23.29-6.35c-10.33 0-13 9-13.64 14.12H546c-.88-11.92-7.62-14.13-12.73-14.13z"],sass:[640,512,[],"f41e","M301.84 378.92c-.3.6-.6 1.08 0 0zm249.13-87a131.16 131.16 0 0 0-58 13.5c-5.9-11.9-12-22.3-13-30.1-1.2-9.1-2.5-14.5-1.1-25.3s7.7-26.1 7.6-27.2-1.4-6.6-14.3-6.7-24 2.5-25.29 5.9a122.83 122.83 0 0 0-5.3 19.1c-2.3 11.7-25.79 53.5-39.09 75.3-4.4-8.5-8.1-16-8.9-22-1.2-9.1-2.5-14.5-1.1-25.3s7.7-26.1 7.6-27.2-1.4-6.6-14.29-6.7-24 2.5-25.3 5.9-2.7 11.4-5.3 19.1-33.89 77.3-42.08 95.4c-4.2 9.2-7.8 16.6-10.4 21.6-.4.8-.7 1.3-.9 1.7.3-.5.5-1 .5-.8-2.2 4.3-3.5 6.7-3.5 6.7v.1c-1.7 3.2-3.6 6.1-4.5 6.1-.6 0-1.9-8.4.3-19.9 4.7-24.2 15.8-61.8 15.7-63.1-.1-.7 2.1-7.2-7.3-10.7-9.1-3.3-12.4 2.2-13.2 2.2s-1.4 2-1.4 2 10.1-42.4-19.39-42.4c-18.4 0-44 20.2-56.58 38.5-7.9 4.3-25 13.6-43 23.5-6.9 3.8-14 7.7-20.7 11.4-.5-.5-.9-1-1.4-1.5-35.79-38.2-101.87-65.2-99.07-116.5 1-18.7 7.5-67.8 127.07-127.4 98-48.8 176.35-35.4 189.84-5.6 19.4 42.5-41.89 121.6-143.66 133-38.79 4.3-59.18-10.7-64.28-16.3-5.3-5.9-6.1-6.2-8.1-5.1-3.3 1.8-1.2 7 0 10.1 3 7.9 15.5 21.9 36.79 28.9 18.7 6.1 64.18 9.5 119.17-11.8 61.78-23.8 109.87-90.1 95.77-145.6C386.52 18.32 293-.18 204.57 31.22c-52.69 18.7-109.67 48.1-150.66 86.4-48.69 45.6-56.48 85.3-53.28 101.9 11.39 58.9 92.57 97.3 125.06 125.7-1.6.9-3.1 1.7-4.5 2.5-16.29 8.1-78.18 40.5-93.67 74.7-17.5 38.8 2.9 66.6 16.29 70.4 41.79 11.6 84.58-9.3 107.57-43.6s20.2-79.1 9.6-99.5c-.1-.3-.3-.5-.4-.8 4.2-2.5 8.5-5 12.8-7.5 8.29-4.9 16.39-9.4 23.49-13.3-4 10.8-6.9 23.8-8.4 42.6-1.8 22 7.3 50.5 19.1 61.7 5.2 4.9 11.49 5 15.39 5 13.8 0 20-11.4 26.89-25 8.5-16.6 16-35.9 16-35.9s-9.4 52.2 16.3 52.2c9.39 0 18.79-12.1 23-18.3v.1s.2-.4.7-1.2c1-1.5 1.5-2.4 1.5-2.4v-.3c3.8-6.5 12.1-21.4 24.59-46 16.2-31.8 31.69-71.5 31.69-71.5a201.24 201.24 0 0 0 6.2 25.8c2.8 9.5 8.7 19.9 13.4 30-3.8 5.2-6.1 8.2-6.1 8.2a.31.31 0 0 0 .1.2c-3 4-6.4 8.3-9.9 12.5-12.79 15.2-28 32.6-30 37.6-2.4 5.9-1.8 10.3 2.8 13.7 3.4 2.6 9.4 3 15.69 2.5 11.5-.8 19.6-3.6 23.5-5.4a82.2 82.2 0 0 0 20.19-10.6c12.5-9.2 20.1-22.4 19.4-39.8-.4-9.6-3.5-19.2-7.3-28.2 1.1-1.6 2.3-3.3 3.4-5C434.8 301.72 450.1 270 450.1 270a201.24 201.24 0 0 0 6.2 25.8c2.4 8.1 7.09 17 11.39 25.7-18.59 15.1-30.09 32.6-34.09 44.1-7.4 21.3-1.6 30.9 9.3 33.1 4.9 1 11.9-1.3 17.1-3.5a79.46 79.46 0 0 0 21.59-11.1c12.5-9.2 24.59-22.1 23.79-39.6-.3-7.9-2.5-15.8-5.4-23.4 15.7-6.6 36.09-10.2 62.09-7.2 55.68 6.5 66.58 41.3 64.48 55.8s-13.8 22.6-17.7 25-5.1 3.3-4.8 5.1c.5 2.6 2.3 2.5 5.6 1.9 4.6-.8 29.19-11.8 30.29-38.7 1.6-34-31.09-71.4-89-71.1zm-429.18 144.7c-18.39 20.1-44.19 27.7-55.28 21.3C54.61 451 59.31 421.42 82 400c13.8-13 31.59-25 43.39-32.4 2.7-1.6 6.6-4 11.4-6.9.8-.5 1.2-.7 1.2-.7.9-.6 1.9-1.1 2.9-1.7 8.29 30.4.3 57.2-19.1 78.3zm134.36-91.4c-6.4 15.7-19.89 55.7-28.09 53.6-7-1.8-11.3-32.3-1.4-62.3 5-15.1 15.6-33.1 21.9-40.1 10.09-11.3 21.19-14.9 23.79-10.4 3.5 5.9-12.2 49.4-16.2 59.2zm111 53c-2.7 1.4-5.2 2.3-6.4 1.6-.9-.5 1.1-2.4 1.1-2.4s13.9-14.9 19.4-21.7c3.2-4 6.9-8.7 10.89-13.9 0 .5.1 1 .1 1.6-.13 17.9-17.32 30-25.12 34.8zm85.58-19.5c-2-1.4-1.7-6.1 5-20.7 2.6-5.7 8.59-15.3 19-24.5a36.18 36.18 0 0 1 1.9 10.8c-.1 22.5-16.2 30.9-25.89 34.4z"],schlix:[448,512,[],"f3ea","M350.5 157.7l-54.2-46.1 73.4-39 78.3 44.2-97.5 40.9zM192 122.1l45.7-28.2 34.7 34.6-55.4 29-25-35.4zm-65.1 6.6l31.9-22.1L176 135l-36.7 22.5-12.4-28.8zm-23.3 88.2l-8.8-34.8 29.6-18.3 13.1 35.3-33.9 17.8zm-21.2-83.7l23.9-18.1 8.9 24-26.7 18.3-6.1-24.2zM59 206.5l-3.6-28.4 22.3-15.5 6.1 28.7L59 206.5zm-30.6 16.6l20.8-12.8 3.3 33.4-22.9 12-1.2-32.6zM1.4 268l19.2-10.2.4 38.2-21 8.8L1.4 268zm59.1 59.3l-28.3 8.3-1.6-46.8 25.1-10.7 4.8 49.2zM99 263.2l-31.1 13-5.2-40.8L90.1 221l8.9 42.2zM123.2 377l-41.6 5.9-8.1-63.5 35.2-10.8 14.5 68.4zm28.5-139.9l21.2 57.1-46.2 13.6-13.7-54.1 38.7-16.6zm85.7 230.5l-70.9-3.3-24.3-95.8 55.2-8.6 40 107.7zm-84.9-279.7l42.2-22.4 28 45.9-50.8 21.3-19.4-44.8zm41 94.9l61.3-18.7 52.8 86.6-79.8 11.3-34.3-79.2zm51.4-85.6l67.3-28.8 65.5 65.4-88.6 26.2-44.2-62.8z"],scribd:[384,512,[],"f28a","M42.3 252.7c-16.1-19-24.7-45.9-24.8-79.9 0-100.4 75.2-153.1 167.2-153.1 98.6-1.6 156.8 49 184.3 70.6l-50.5 72.1-37.3-24.6 26.9-38.6c-36.5-24-79.4-36.5-123-35.8-50.7-.8-111.7 27.2-111.7 76.2 0 18.7 11.2 20.7 28.6 15.6 23.3-5.3 41.9.6 55.8 14 26.4 24.3 23.2 67.6-.7 91.9-29.2 29.5-85.2 27.3-114.8-8.4zm317.7 5.9c-15.5-18.8-38.9-29.4-63.2-28.6-38.1-2-71.1 28-70.5 67.2-.7 16.8 6 33 18.4 44.3 14.1 13.9 33 19.7 56.3 14.4 17.4-5.1 28.6-3.1 28.6 15.6 0 4.3-.5 8.5-1.4 12.7-16.7 40.9-59.5 64.4-121.4 64.4-51.9.2-102.4-16.4-144.1-47.3l33.7-39.4-35.6-27.4L0 406.3l15.4 13.8c52.5 46.8 120.4 72.5 190.7 72.2 51.4 0 94.4-10.5 133.6-44.1 57.1-51.4 54.2-149.2 20.3-189.6z"],searchengin:[460,512,[],"f3eb","M220.6 130.3l-67.2 28.2V43.2L98.7 233.5l54.7-24.2v130.3l67.2-209.3zm-83.2-96.7l-1.3 4.7-15.2 52.9C80.6 106.7 52 145.8 52 191.5c0 52.3 34.3 95.9 83.4 105.5v53.6C57.5 340.1 0 272.4 0 191.6c0-80.5 59.8-147.2 137.4-158zm311.4 447.2c-11.2 11.2-23.1 12.3-28.6 10.5-5.4-1.8-27.1-19.9-60.4-44.4-33.3-24.6-33.6-35.7-43-56.7-9.4-20.9-30.4-42.6-57.5-52.4l-9.7-14.7c-24.7 16.9-53 26.9-81.3 28.7l2.1-6.6 15.9-49.5c46.5-11.9 80.9-54 80.9-104.2 0-54.5-38.4-102.1-96-107.1V32.3C254.4 37.4 320 106.8 320 191.6c0 33.6-11.2 64.7-29 90.4l14.6 9.6c9.8 27.1 31.5 48 52.4 57.4s32.2 9.7 56.8 43c24.6 33.2 42.7 54.9 44.5 60.3s.7 17.3-10.5 28.5zm-9.9-17.9c0-4.4-3.6-8-8-8s-8 3.6-8 8 3.6 8 8 8 8-3.6 8-8z"],sellcast:[448,512,[],"f2da","M353.4 32H94.7C42.6 32 0 74.6 0 126.6v258.7C0 437.4 42.6 480 94.7 480h258.7c52.1 0 94.7-42.6 94.7-94.6V126.6c0-52-42.6-94.6-94.7-94.6zm-50 316.4c-27.9 48.2-89.9 64.9-138.2 37.2-22.9 39.8-54.9 8.6-42.3-13.2l15.7-27.2c5.9-10.3 19.2-13.9 29.5-7.9 18.6 10.8-.1-.1 18.5 10.7 27.6 15.9 63.4 6.3 79.4-21.3 15.9-27.6 6.3-63.4-21.3-79.4-17.8-10.2-.6-.4-18.6-10.6-24.6-14.2-3.4-51.9 21.6-37.5 18.6 10.8-.1-.1 18.5 10.7 48.4 28 65.1 90.3 37.2 138.5zm21.8-208.8c-17 29.5-16.3 28.8-19 31.5-6.5 6.5-16.3 8.7-26.5 3.6-18.6-10.8.1.1-18.5-10.7-27.6-15.9-63.4-6.3-79.4 21.3s-6.3 63.4 21.3 79.4c0 0 18.5 10.6 18.6 10.6 24.6 14.2 3.4 51.9-21.6 37.5-18.6-10.8.1.1-18.5-10.7-48.2-27.8-64.9-90.1-37.1-138.4 27.9-48.2 89.9-64.9 138.2-37.2l4.8-8.4c14.3-24.9 52-3.3 37.7 21.5z"],sellsy:[640,512,[],"f213","M539.71 237.308c3.064-12.257 4.29-24.821 4.29-37.384C544 107.382 468.618 32 376.076 32c-77.22 0-144.634 53.012-163.02 127.781-15.322-13.176-34.934-20.53-55.157-20.53-46.271 0-83.962 37.69-83.962 83.961 0 7.354.92 15.015 3.065 22.369-42.9 20.225-70.785 63.738-70.785 111.234C6.216 424.843 61.68 480 129.401 480h381.198c67.72 0 123.184-55.157 123.184-123.184.001-56.384-38.916-106.025-94.073-119.508zM199.88 401.554c0 8.274-7.048 15.321-15.321 15.321H153.61c-8.274 0-15.321-7.048-15.321-15.321V290.626c0-8.273 7.048-15.321 15.321-15.321h30.949c8.274 0 15.321 7.048 15.321 15.321v110.928zm89.477 0c0 8.274-7.048 15.321-15.322 15.321h-30.949c-8.274 0-15.321-7.048-15.321-15.321V270.096c0-8.274 7.048-15.321 15.321-15.321h30.949c8.274 0 15.322 7.048 15.322 15.321v131.458zm89.477 0c0 8.274-7.047 15.321-15.321 15.321h-30.949c-8.274 0-15.322-7.048-15.322-15.321V238.84c0-8.274 7.048-15.321 15.322-15.321h30.949c8.274 0 15.321 7.048 15.321 15.321v162.714zm87.027 0c0 8.274-7.048 15.321-15.322 15.321h-28.497c-8.274 0-15.321-7.048-15.321-15.321V176.941c0-8.579 7.047-15.628 15.321-15.628h28.497c8.274 0 15.322 7.048 15.322 15.628v224.613z"],servicestack:[496,512,[],"f3ec","M88 216c81.7 10.2 273.7 102.3 304 232H0c99.5-8.1 184.5-137 88-232zm32-152c32.3 35.6 47.7 83.9 46.4 133.6C249.3 231.3 373.7 321.3 400 448h96C455.3 231.9 222.8 79.5 120 64z"],shirtsinbulk:[448,512,[],"f214","M100 410.3l30.6 13.4 4.4-9.9-30.6-13.4zm39.4 17.5l30.6 13.4 4.4-9.9-30.6-13.4zm172.1-14l4.4 9.9 30.6-13.4-4.4-9.9zM179.1 445l30.3 13.7 4.4-9.9-30.3-13.4zM60.4 392.8L91 406.2l4.4-9.6-30.6-13.7zm211.4 38.5l4.4 9.9 30.6-13.4-4.4-9.9zm-39.3 17.5l4.4 9.9 30.6-13.7-4.4-9.6zm118.4-52.2l4.4 9.6 30.6-13.4-4.4-9.9zM170 46.6h-33.5v10.5H170zm-47.2 0H89.2v10.5h33.5zm-47.3 0H42.3v10.5h33.3zm141.5 0h-33.2v10.5H217zm94.5 0H278v10.5h33.5zm47.3 0h-33.5v10.5h33.5zm-94.6 0H231v10.5h33.2zm141.5 0h-33.3v10.5h33.3zM52.8 351.1H42v33.5h10.8zm70-215.9H89.2v10.5h33.5zm-70 10.6h22.8v-10.5H42v33.5h10.8zm168.9 228.6c50.5 0 91.3-40.8 91.3-91.3 0-50.2-40.8-91.3-91.3-91.3-50.2 0-91.3 41.1-91.3 91.3 0 50.5 41.1 91.3 91.3 91.3zm-48.2-111.1c0-25.4 29.5-31.8 49.6-31.8 16.9 0 29.2 5.8 44.3 12l-8.8 16.9h-.9c-6.4-9.9-24.8-13.1-35.6-13.1-9 0-29.8 1.8-29.8 14.9 0 21.6 78.5-10.2 78.5 37.9 0 25.4-31.5 31.2-51 31.2-18.1 0-32.4-2.9-47.2-12.2l9-18.4h.9c6.1 12.2 23.6 14.9 35.9 14.9 8.7 0 32.7-1.2 32.7-14.3 0-26.1-77.6 6.3-77.6-38zM52.8 178.4H42V212h10.8zm342.4 206.2H406v-33.5h-10.8zM52.8 307.9H42v33.5h10.8zM0 3.7v406l221.7 98.6L448 409.7V3.7zm418.8 387.1L222 476.5 29.2 390.8V120.7h389.7v270.1zm0-299.3H29.2V32.9h389.7v58.6zm-366 130.1H42v33.5h10.8zm0 43.2H42v33.5h10.8zM170 135.2h-33.5v10.5H170zm225.2 163.1H406v-33.5h-10.8zm0-43.2H406v-33.5h-10.8zM217 135.2h-33.2v10.5H217zM395.2 212H406v-33.5h-10.8zm0 129.5H406V308h-10.8zm-131-206.3H231v10.5h33.2zm47.3 0H278v10.5h33.5zm83.7 33.6H406v-33.5h-33.5v10.5h22.8zm-36.4-33.6h-33.5v10.5h33.5z"],shopify:[448,512,[],"f957","M388.32,104.1a4.66,4.66,0,0,0-4.4-4c-2,0-37.23-.8-37.23-.8s-21.61-20.82-29.62-28.83V503.2L442.76,472S388.72,106.5,388.32,104.1ZM288.65,70.47a116.67,116.67,0,0,0-7.21-17.61C271,32.85,255.42,22,237,22a15,15,0,0,0-4,.4c-.4-.8-1.2-1.2-1.6-2C223.4,11.63,213,7.63,200.58,8c-24,.8-48,18-67.25,48.83-13.61,21.62-24,48.84-26.82,70.06-27.62,8.4-46.83,14.41-47.23,14.81-14,4.4-14.41,4.8-16,18-1.2,10-38,291.82-38,291.82L307.86,504V65.67a41.66,41.66,0,0,0-4.4.4S297.86,67.67,288.65,70.47ZM233.41,87.69c-16,4.8-33.63,10.4-50.84,15.61,4.8-18.82,14.41-37.63,25.62-50,4.4-4.4,10.41-9.61,17.21-12.81C232.21,54.86,233.81,74.48,233.41,87.69ZM200.58,24.44A27.49,27.49,0,0,1,215,28c-6.4,3.2-12.81,8.41-18.81,14.41-15.21,16.42-26.82,42-31.62,66.45-14.42,4.41-28.83,8.81-42,12.81C131.33,83.28,163.75,25.24,200.58,24.44ZM154.15,244.61c1.6,25.61,69.25,31.22,73.25,91.66,2.8,47.64-25.22,80.06-65.65,82.47-48.83,3.2-75.65-25.62-75.65-25.62l10.4-44s26.82,20.42,48.44,18.82c14-.8,19.22-12.41,18.81-20.42-2-33.62-57.24-31.62-60.84-86.86-3.2-46.44,27.22-93.27,94.47-97.68,26-1.6,39.23,4.81,39.23,4.81L221.4,225.39s-17.21-8-37.63-6.4C154.15,221,153.75,239.8,154.15,244.61ZM249.42,82.88c0-12-1.6-29.22-7.21-43.63,18.42,3.6,27.22,24,31.23,36.43Q262.63,78.68,249.42,82.88Z"],shopware:[512,512,[],"f5b5","M403.5 455.41A246.17 246.17 0 0 1 256 504C118.81 504 8 393 8 256 8 118.81 119 8 256 8a247.39 247.39 0 0 1 165.7 63.5 3.57 3.57 0 0 1-2.86 6.18A418.62 418.62 0 0 0 362.13 74c-129.36 0-222.4 53.47-222.4 155.35 0 109 92.13 145.88 176.83 178.73 33.64 13 65.4 25.36 87 41.59a3.58 3.58 0 0 1 0 5.72zM503 233.09a3.64 3.64 0 0 0-1.27-2.44c-51.76-43-93.62-60.48-144.48-60.48-84.13 0-80.25 52.17-80.25 53.63 0 42.6 52.06 62 112.34 84.49 31.07 11.59 63.19 23.57 92.68 39.93a3.57 3.57 0 0 0 5-1.82A249 249 0 0 0 503 233.09z"],simplybuilt:[512,512,[],"f215","M481.2 64h-106c-14.5 0-26.6 11.8-26.6 26.3v39.6H163.3V90.3c0-14.5-12-26.3-26.6-26.3h-106C16.1 64 4.3 75.8 4.3 90.3v331.4c0 14.5 11.8 26.3 26.6 26.3h450.4c14.8 0 26.6-11.8 26.6-26.3V90.3c-.2-14.5-12-26.3-26.7-26.3zM149.8 355.8c-36.6 0-66.4-29.7-66.4-66.4 0-36.9 29.7-66.6 66.4-66.6 36.9 0 66.6 29.7 66.6 66.6 0 36.7-29.7 66.4-66.6 66.4zm212.4 0c-36.9 0-66.6-29.7-66.6-66.6 0-36.6 29.7-66.4 66.6-66.4 36.6 0 66.4 29.7 66.4 66.4 0 36.9-29.8 66.6-66.4 66.6z"],sistrix:[448,512,[],"f3ee","M448 449L301.2 300.2c20-27.9 31.9-62.2 31.9-99.2 0-93.1-74.7-168.9-166.5-168.9C74.7 32 0 107.8 0 200.9s74.7 168.9 166.5 168.9c39.8 0 76.3-14.2 105-37.9l146 148.1 30.5-31zM166.5 330.8c-70.6 0-128.1-58.3-128.1-129.9S95.9 71 166.5 71s128.1 58.3 128.1 129.9-57.4 129.9-128.1 129.9z"],sith:[448,512,[],"f512","M0 32l69.71 118.75-58.86-11.52 69.84 91.03a146.741 146.741 0 0 0 0 51.45l-69.84 91.03 58.86-11.52L0 480l118.75-69.71-11.52 58.86 91.03-69.84c17.02 3.04 34.47 3.04 51.48 0l91.03 69.84-11.52-58.86L448 480l-69.71-118.78 58.86 11.52-69.84-91.03c3.03-17.01 3.04-34.44 0-51.45l69.84-91.03-58.86 11.52L448 32l-118.75 69.71 11.52-58.9-91.06 69.87c-8.5-1.52-17.1-2.29-25.71-2.29s-17.21.78-25.71 2.29l-91.06-69.87 11.52 58.9L0 32zm224 99.78c31.8 0 63.6 12.12 87.85 36.37 48.5 48.5 48.49 127.21 0 175.7s-127.2 48.46-175.7-.03c-48.5-48.5-48.49-127.21 0-175.7 24.24-24.25 56.05-36.34 87.85-36.34zm0 36.66c-22.42 0-44.83 8.52-61.92 25.61-34.18 34.18-34.19 89.68 0 123.87s89.65 34.18 123.84 0c34.18-34.18 34.19-89.68 0-123.87-17.09-17.09-39.5-25.61-61.92-25.61z"],sketch:[512,512,[],"f7c6","M27.5 162.2L9 187.1h90.5l6.9-130.7-78.9 105.8zM396.3 45.7L267.7 32l135.7 147.2-7.1-133.5zM112.2 218.3l-11.2-22H9.9L234.8 458zm2-31.2h284l-81.5-88.5L256.3 33zm297.3 9.1L277.6 458l224.8-261.7h-90.9zM415.4 69L406 56.4l.9 17.3 6.1 113.4h90.3zM113.5 93.5l-4.6 85.6L244.7 32 116.1 45.7zm287.7 102.7h-290l42.4 82.9L256.3 480l144.9-283.8z"],skyatlas:[640,512,[],"f216","M640 329.3c0 65.9-52.5 114.4-117.5 114.4-165.9 0-196.6-249.7-359.7-249.7-146.9 0-147.1 212.2 5.6 212.2 42.5 0 90.9-17.8 125.3-42.5 5.6-4.1 16.9-16.3 22.8-16.3s10.9 5 10.9 10.9c0 7.8-13.1 19.1-18.7 24.1-40.9 35.6-100.3 61.2-154.7 61.2-83.4.1-154-59-154-144.9s67.5-149.1 152.8-149.1c185.3 0 222.5 245.9 361.9 245.9 99.9 0 94.8-139.7 3.4-139.7-17.5 0-35 11.6-46.9 11.6-8.4 0-15.9-7.2-15.9-15.6 0-11.6 5.3-23.7 5.3-36.3 0-66.6-50.9-114.7-116.9-114.7-53.1 0-80 36.9-88.8 36.9-6.2 0-11.2-5-11.2-11.2 0-5.6 4.1-10.3 7.8-14.4 25.3-28.8 64.7-43.7 102.8-43.7 79.4 0 139.1 58.4 139.1 137.8 0 6.9-.3 13.7-1.2 20.6 11.9-3.1 24.1-4.7 35.9-4.7 60.7 0 111.9 45.3 111.9 107.2z"],skype:[448,512,[],"f17e","M424.7 299.8c2.9-14 4.7-28.9 4.7-43.8 0-113.5-91.9-205.3-205.3-205.3-14.9 0-29.7 1.7-43.8 4.7C161.3 40.7 137.7 32 112 32 50.2 32 0 82.2 0 144c0 25.7 8.7 49.3 23.3 68.2-2.9 14-4.7 28.9-4.7 43.8 0 113.5 91.9 205.3 205.3 205.3 14.9 0 29.7-1.7 43.8-4.7 19 14.6 42.6 23.3 68.2 23.3 61.8 0 112-50.2 112-112 .1-25.6-8.6-49.2-23.2-68.1zm-194.6 91.5c-65.6 0-120.5-29.2-120.5-65 0-16 9-30.6 29.5-30.6 31.2 0 34.1 44.9 88.1 44.9 25.7 0 42.3-11.4 42.3-26.3 0-18.7-16-21.6-42-28-62.5-15.4-117.8-22-117.8-87.2 0-59.2 58.6-81.1 109.1-81.1 55.1 0 110.8 21.9 110.8 55.4 0 16.9-11.4 31.8-30.3 31.8-28.3 0-29.2-33.5-75-33.5-25.7 0-42 7-42 22.5 0 19.8 20.8 21.8 69.1 33 41.4 9.3 90.7 26.8 90.7 77.6 0 59.1-57.1 86.5-112 86.5z"],slack:[448,512,[],"f198","M94.12 315.1c0 25.9-21.16 47.06-47.06 47.06S0 341 0 315.1c0-25.9 21.16-47.06 47.06-47.06h47.06v47.06zm23.72 0c0-25.9 21.16-47.06 47.06-47.06s47.06 21.16 47.06 47.06v117.84c0 25.9-21.16 47.06-47.06 47.06s-47.06-21.16-47.06-47.06V315.1zm47.06-188.98c-25.9 0-47.06-21.16-47.06-47.06S139 32 164.9 32s47.06 21.16 47.06 47.06v47.06H164.9zm0 23.72c25.9 0 47.06 21.16 47.06 47.06s-21.16 47.06-47.06 47.06H47.06C21.16 243.96 0 222.8 0 196.9s21.16-47.06 47.06-47.06H164.9zm188.98 47.06c0-25.9 21.16-47.06 47.06-47.06 25.9 0 47.06 21.16 47.06 47.06s-21.16 47.06-47.06 47.06h-47.06V196.9zm-23.72 0c0 25.9-21.16 47.06-47.06 47.06-25.9 0-47.06-21.16-47.06-47.06V79.06c0-25.9 21.16-47.06 47.06-47.06 25.9 0 47.06 21.16 47.06 47.06V196.9zM283.1 385.88c25.9 0 47.06 21.16 47.06 47.06 0 25.9-21.16 47.06-47.06 47.06-25.9 0-47.06-21.16-47.06-47.06v-47.06h47.06zm0-23.72c-25.9 0-47.06-21.16-47.06-47.06 0-25.9 21.16-47.06 47.06-47.06h117.84c25.9 0 47.06 21.16 47.06 47.06 0 25.9-21.16 47.06-47.06 47.06H283.1z"],"slack-hash":[448,512,[],"f3ef","M446.2 270.4c-6.2-19-26.9-29.1-46-22.9l-45.4 15.1-30.3-90 45.4-15.1c19.1-6.2 29.1-26.8 23-45.9-6.2-19-26.9-29.1-46-22.9l-45.4 15.1-15.7-47c-6.2-19-26.9-29.1-46-22.9-19.1 6.2-29.1 26.8-23 45.9l15.7 47-93.4 31.2-15.7-47c-6.2-19-26.9-29.1-46-22.9-19.1 6.2-29.1 26.8-23 45.9l15.7 47-45.3 15c-19.1 6.2-29.1 26.8-23 45.9 5 14.5 19.1 24 33.6 24.6 6.8 1 12-1.6 57.7-16.8l30.3 90L78 354.8c-19 6.2-29.1 26.9-23 45.9 5 14.5 19.1 24 33.6 24.6 6.8 1 12-1.6 57.7-16.8l15.7 47c5.9 16.9 24.7 29 46 22.9 19.1-6.2 29.1-26.8 23-45.9l-15.7-47 93.6-31.3 15.7 47c5.9 16.9 24.7 29 46 22.9 19.1-6.2 29.1-26.8 23-45.9l-15.7-47 45.4-15.1c19-6 29.1-26.7 22.9-45.7zm-254.1 47.2l-30.3-90.2 93.5-31.3 30.3 90.2-93.5 31.3z"],slideshare:[512,512,[],"f1e7","M187.7 153.7c-34 0-61.7 25.7-61.7 57.7 0 31.7 27.7 57.7 61.7 57.7s61.7-26 61.7-57.7c0-32-27.7-57.7-61.7-57.7zm143.4 0c-34 0-61.7 25.7-61.7 57.7 0 31.7 27.7 57.7 61.7 57.7 34.3 0 61.7-26 61.7-57.7.1-32-27.4-57.7-61.7-57.7zm156.6 90l-6 4.3V49.7c0-27.4-20.6-49.7-46-49.7H76.6c-25.4 0-46 22.3-46 49.7V248c-2-1.4-4.3-2.9-6.3-4.3-15.1-10.6-25.1 4-16 17.7 18.3 22.6 53.1 50.3 106.3 72C58.3 525.1 252 555.7 248.9 457.5c0-.7.3-56.6.3-96.6 5.1 1.1 9.4 2.3 13.7 3.1 0 39.7.3 92.8.3 93.5-3.1 98.3 190.6 67.7 134.3-124 53.1-21.7 88-49.4 106.3-72 9.1-13.8-.9-28.3-16.1-17.8zm-30.5 19.2c-68.9 37.4-128.3 31.1-160.6 29.7-23.7-.9-32.6 9.1-33.7 24.9-10.3-7.7-18.6-15.5-20.3-17.1-5.1-5.4-13.7-8-27.1-7.7-31.7 1.1-89.7 7.4-157.4-28V72.3c0-34.9 8.9-45.7 40.6-45.7h317.7c30.3 0 40.9 12.9 40.9 45.7v190.6z"],snapchat:[496,512,[],"f2ab","M248 8C111 8 0 119 0 256s111 248 248 248 248-111 248-248S385 8 248 8zm169.5 338.9c-3.5 8.1-18.1 14-44.8 18.2-1.4 1.9-2.5 9.8-4.3 15.9-1.1 3.7-3.7 5.9-8.1 5.9h-.2c-6.2 0-12.8-2.9-25.8-2.9-17.6 0-23.7 4-37.4 13.7-14.5 10.3-28.4 19.1-49.2 18.2-21 1.6-38.6-11.2-48.5-18.2-13.8-9.7-19.8-13.7-37.4-13.7-12.5 0-20.4 3.1-25.8 3.1-5.4 0-7.5-3.3-8.3-6-1.8-6.1-2.9-14.1-4.3-16-13.8-2.1-44.8-7.5-45.5-21.4-.2-3.6 2.3-6.8 5.9-7.4 46.3-7.6 67.1-55.1 68-57.1 0-.1.1-.2.2-.3 2.5-5 3-9.2 1.6-12.5-3.4-7.9-17.9-10.7-24-13.2-15.8-6.2-18-13.4-17-18.3 1.6-8.5 14.4-13.8 21.9-10.3 5.9 2.8 11.2 4.2 15.7 4.2 3.3 0 5.5-.8 6.6-1.4-1.4-23.9-4.7-58 3.8-77.1C183.1 100 230.7 96 244.7 96c.6 0 6.1-.1 6.7-.1 34.7 0 68 17.8 84.3 54.3 8.5 19.1 5.2 53.1 3.8 77.1 1.1.6 2.9 1.3 5.7 1.4 4.3-.2 9.2-1.6 14.7-4.2 4-1.9 9.6-1.6 13.6 0 6.3 2.3 10.3 6.8 10.4 11.9.1 6.5-5.7 12.1-17.2 16.6-1.4.6-3.1 1.1-4.9 1.7-6.5 2.1-16.4 5.2-19 11.5-1.4 3.3-.8 7.5 1.6 12.5.1.1.1.2.2.3.9 2 21.7 49.5 68 57.1 4 1 7.1 5.5 4.9 10.8z"],"snapchat-ghost":[512,512,[],"f2ac","M510.846 392.673c-5.211 12.157-27.239 21.089-67.36 27.318-2.064 2.786-3.775 14.686-6.507 23.956-1.625 5.566-5.623 8.869-12.128 8.869l-.297-.005c-9.395 0-19.203-4.323-38.852-4.323-26.521 0-35.662 6.043-56.254 20.588-21.832 15.438-42.771 28.764-74.027 27.399-31.646 2.334-58.025-16.908-72.871-27.404-20.714-14.643-29.828-20.582-56.241-20.582-18.864 0-30.736 4.72-38.852 4.72-8.073 0-11.213-4.922-12.422-9.04-2.703-9.189-4.404-21.263-6.523-24.13-20.679-3.209-67.31-11.344-68.498-32.15a10.627 10.627 0 0 1 8.877-11.069c69.583-11.455 100.924-82.901 102.227-85.934.074-.176.155-.344.237-.515 3.713-7.537 4.544-13.849 2.463-18.753-5.05-11.896-26.872-16.164-36.053-19.796-23.715-9.366-27.015-20.128-25.612-27.504 2.437-12.836 21.725-20.735 33.002-15.453 8.919 4.181 16.843 6.297 23.547 6.297 5.022 0 8.212-1.204 9.96-2.171-2.043-35.936-7.101-87.29 5.687-115.969C158.122 21.304 229.705 15.42 250.826 15.42c.944 0 9.141-.089 10.11-.089 52.148 0 102.254 26.78 126.723 81.643 12.777 28.65 7.749 79.792 5.695 116.009 1.582.872 4.357 1.942 8.599 2.139 6.397-.286 13.815-2.389 22.069-6.257 6.085-2.846 14.406-2.461 20.48.058l.029.01c9.476 3.385 15.439 10.215 15.589 17.87.184 9.747-8.522 18.165-25.878 25.018-2.118.835-4.694 1.655-7.434 2.525-9.797 3.106-24.6 7.805-28.616 17.271-2.079 4.904-1.256 11.211 2.46 18.748.087.168.166.342.239.515 1.301 3.03 32.615 74.46 102.23 85.934 6.427 1.058 11.163 7.877 7.725 15.859z"],"snapchat-square":[448,512,[],"f2ad","M400 32H48C21.5 32 0 53.5 0 80v352c0 26.5 21.5 48 48 48h352c26.5 0 48-21.5 48-48V80c0-26.5-21.5-48-48-48zm-6.5 314.9c-3.5 8.1-18.1 14-44.8 18.2-1.4 1.9-2.5 9.8-4.3 15.9-1.1 3.7-3.7 5.9-8.1 5.9h-.2c-6.2 0-12.8-2.9-25.8-2.9-17.6 0-23.7 4-37.4 13.7-14.5 10.3-28.4 19.1-49.2 18.2-21 1.6-38.6-11.2-48.5-18.2-13.8-9.7-19.8-13.7-37.4-13.7-12.5 0-20.4 3.1-25.8 3.1-5.4 0-7.5-3.3-8.3-6-1.8-6.1-2.9-14.1-4.3-16-13.8-2.1-44.8-7.5-45.5-21.4-.2-3.6 2.3-6.8 5.9-7.4 46.3-7.6 67.1-55.1 68-57.1 0-.1.1-.2.2-.3 2.5-5 3-9.2 1.6-12.5-3.4-7.9-17.9-10.7-24-13.2-15.8-6.2-18-13.4-17-18.3 1.6-8.5 14.4-13.8 21.9-10.3 5.9 2.8 11.2 4.2 15.7 4.2 3.3 0 5.5-.8 6.6-1.4-1.4-23.9-4.7-58 3.8-77.1C159.1 100 206.7 96 220.7 96c.6 0 6.1-.1 6.7-.1 34.7 0 68 17.8 84.3 54.3 8.5 19.1 5.2 53.1 3.8 77.1 1.1.6 2.9 1.3 5.7 1.4 4.3-.2 9.2-1.6 14.7-4.2 4-1.9 9.6-1.6 13.6 0 6.3 2.3 10.3 6.8 10.4 11.9.1 6.5-5.7 12.1-17.2 16.6-1.4.6-3.1 1.1-4.9 1.7-6.5 2.1-16.4 5.2-19 11.5-1.4 3.3-.8 7.5 1.6 12.5.1.1.1.2.2.3.9 2 21.7 49.5 68 57.1 4 1 7.1 5.5 4.9 10.8z"],soundcloud:[640,512,[],"f1be","M111.4 256.3l5.8 65-5.8 68.3c-.3 2.5-2.2 4.4-4.4 4.4s-4.2-1.9-4.2-4.4l-5.6-68.3 5.6-65c0-2.2 1.9-4.2 4.2-4.2 2.2 0 4.1 2 4.4 4.2zm21.4-45.6c-2.8 0-4.7 2.2-5 5l-5 105.6 5 68.3c.3 2.8 2.2 5 5 5 2.5 0 4.7-2.2 4.7-5l5.8-68.3-5.8-105.6c0-2.8-2.2-5-4.7-5zm25.5-24.1c-3.1 0-5.3 2.2-5.6 5.3l-4.4 130 4.4 67.8c.3 3.1 2.5 5.3 5.6 5.3 2.8 0 5.3-2.2 5.3-5.3l5.3-67.8-5.3-130c0-3.1-2.5-5.3-5.3-5.3zM7.2 283.2c-1.4 0-2.2 1.1-2.5 2.5L0 321.3l4.7 35c.3 1.4 1.1 2.5 2.5 2.5s2.2-1.1 2.5-2.5l5.6-35-5.6-35.6c-.3-1.4-1.1-2.5-2.5-2.5zm23.6-21.9c-1.4 0-2.5 1.1-2.5 2.5l-6.4 57.5 6.4 56.1c0 1.7 1.1 2.8 2.5 2.8s2.5-1.1 2.8-2.5l7.2-56.4-7.2-57.5c-.3-1.4-1.4-2.5-2.8-2.5zm25.3-11.4c-1.7 0-3.1 1.4-3.3 3.3L47 321.3l5.8 65.8c.3 1.7 1.7 3.1 3.3 3.1 1.7 0 3.1-1.4 3.1-3.1l6.9-65.8-6.9-68.1c0-1.9-1.4-3.3-3.1-3.3zm25.3-2.2c-1.9 0-3.6 1.4-3.6 3.6l-5.8 70 5.8 67.8c0 2.2 1.7 3.6 3.6 3.6s3.6-1.4 3.9-3.6l6.4-67.8-6.4-70c-.3-2.2-2-3.6-3.9-3.6zm241.4-110.9c-1.1-.8-2.8-1.4-4.2-1.4-2.2 0-4.2.8-5.6 1.9-1.9 1.7-3.1 4.2-3.3 6.7v.8l-3.3 176.7 1.7 32.5 1.7 31.7c.3 4.7 4.2 8.6 8.9 8.6s8.6-3.9 8.6-8.6l3.9-64.2-3.9-177.5c-.4-3-2-5.8-4.5-7.2zm-26.7 15.3c-1.4-.8-2.8-1.4-4.4-1.4s-3.1.6-4.4 1.4c-2.2 1.4-3.6 3.9-3.6 6.7l-.3 1.7-2.8 160.8s0 .3 3.1 65.6v.3c0 1.7.6 3.3 1.7 4.7 1.7 1.9 3.9 3.1 6.4 3.1 2.2 0 4.2-1.1 5.6-2.5 1.7-1.4 2.5-3.3 2.5-5.6l.3-6.7 3.1-58.6-3.3-162.8c-.3-2.8-1.7-5.3-3.9-6.7zm-111.4 22.5c-3.1 0-5.8 2.8-5.8 6.1l-4.4 140.6 4.4 67.2c.3 3.3 2.8 5.8 5.8 5.8 3.3 0 5.8-2.5 6.1-5.8l5-67.2-5-140.6c-.2-3.3-2.7-6.1-6.1-6.1zm376.7 62.8c-10.8 0-21.1 2.2-30.6 6.1-6.4-70.8-65.8-126.4-138.3-126.4-17.8 0-35 3.3-50.3 9.4-6.1 2.2-7.8 4.4-7.8 9.2v249.7c0 5 3.9 8.6 8.6 9.2h218.3c43.3 0 78.6-35 78.6-78.3.1-43.6-35.2-78.9-78.5-78.9zm-296.7-60.3c-4.2 0-7.5 3.3-7.8 7.8l-3.3 136.7 3.3 65.6c.3 4.2 3.6 7.5 7.8 7.5 4.2 0 7.5-3.3 7.5-7.5l3.9-65.6-3.9-136.7c-.3-4.5-3.3-7.8-7.5-7.8zm-53.6-7.8c-3.3 0-6.4 3.1-6.4 6.7l-3.9 145.3 3.9 66.9c.3 3.6 3.1 6.4 6.4 6.4 3.6 0 6.4-2.8 6.7-6.4l4.4-66.9-4.4-145.3c-.3-3.6-3.1-6.7-6.7-6.7zm26.7 3.4c-3.9 0-6.9 3.1-6.9 6.9L227 321.3l3.9 66.4c.3 3.9 3.1 6.9 6.9 6.9s6.9-3.1 6.9-6.9l4.2-66.4-4.2-141.7c0-3.9-3-6.9-6.9-6.9z"],sourcetree:[448,512,[],"f7d3","M427.2 203c0-112.1-90.9-203-203-203C112.1-.2 21.2 90.6 21 202.6A202.86 202.86 0 0 0 161.5 396v101.7a14.3 14.3 0 0 0 14.3 14.3h96.4a14.3 14.3 0 0 0 14.3-14.3V396.1A203.18 203.18 0 0 0 427.2 203zm-271.6 0c0-90.8 137.3-90.8 137.3 0-.1 89.9-137.3 91-137.3 0z"],speakap:[448,512,[],"f3f3","M64 391.78C-15.41 303.59-8 167.42 80.64 87.64s224.8-73 304.21 15.24 72 224.36-16.64 304.14c-18.74 16.87 64 43.09 42 52.26-82.06 34.21-253.91 35-346.23-67.5zm213.31-211.6l38.5-40.86c-9.61-8.89-32-26.83-76.17-27.6-52.33-.91-95.86 28.3-96.77 80-.2 11.33.29 36.72 29.42 54.83 34.46 21.42 86.52 21.51 86 52.26-.37 21.28-26.42 25.81-38.59 25.6-3-.05-30.23-.46-47.61-24.62l-40 42.61c28.16 27 59 32.62 83.49 33.05 10.23.18 96.42.33 97.84-81 .28-15.81-2.07-39.72-28.86-56.59-34.36-21.64-85-19.45-84.43-49.75.41-23.25 31-25.37 37.53-25.26.43 0 26.62.26 39.62 17.37z"],"speaker-deck":[512,512,[],"f83c","M213.86 296H100a100 100 0 0 1 0-200h132.84a40 40 0 0 1 0 80H98c-26.47 0-26.45 40 0 40h113.82a100 100 0 0 1 0 200H40a40 40 0 0 1 0-80h173.86c26.48 0 26.46-40 0-40zM298 416a120.21 120.21 0 0 0 51.11-80h64.55a19.83 19.83 0 0 0 19.66-20V196a19.83 19.83 0 0 0-19.66-20H296.42a60.77 60.77 0 0 0 0-80h136.93c43.44 0 78.65 35.82 78.65 80v160c0 44.18-35.21 80-78.65 80z"],spotify:[496,512,[],"f1bc","M248 8C111.1 8 0 119.1 0 256s111.1 248 248 248 248-111.1 248-248S384.9 8 248 8zm100.7 364.9c-4.2 0-6.8-1.3-10.7-3.6-62.4-37.6-135-39.2-206.7-24.5-3.9 1-9 2.6-11.9 2.6-9.7 0-15.8-7.7-15.8-15.8 0-10.3 6.1-15.2 13.6-16.8 81.9-18.1 165.6-16.5 237 26.2 6.1 3.9 9.7 7.4 9.7 16.5s-7.1 15.4-15.2 15.4zm26.9-65.6c-5.2 0-8.7-2.3-12.3-4.2-62.5-37-155.7-51.9-238.6-29.4-4.8 1.3-7.4 2.6-11.9 2.6-10.7 0-19.4-8.7-19.4-19.4s5.2-17.8 15.5-20.7c27.8-7.8 56.2-13.6 97.8-13.6 64.9 0 127.6 16.1 177 45.5 8.1 4.8 11.3 11 11.3 19.7-.1 10.8-8.5 19.5-19.4 19.5zm31-76.2c-5.2 0-8.4-1.3-12.9-3.9-71.2-42.5-198.5-52.7-280.9-29.7-3.6 1-8.1 2.6-12.9 2.6-13.2 0-23.3-10.3-23.3-23.6 0-13.6 8.4-21.3 17.4-23.9 35.2-10.3 74.6-15.2 117.5-15.2 73 0 149.5 15.2 205.4 47.8 7.8 4.5 12.9 10.7 12.9 22.6 0 13.6-11 23.3-23.2 23.3z"],squarespace:[512,512,[],"f5be","M186.12 343.34c-9.65 9.65-9.65 25.29 0 34.94 9.65 9.65 25.29 9.65 34.94 0L378.24 221.1c19.29-19.29 50.57-19.29 69.86 0s19.29 50.57 0 69.86L293.95 445.1c19.27 19.29 50.53 19.31 69.82.04l.04-.04 119.25-119.24c38.59-38.59 38.59-101.14 0-139.72-38.59-38.59-101.15-38.59-139.72 0l-157.22 157.2zm244.53-104.8c-9.65-9.65-25.29-9.65-34.93 0l-157.2 157.18c-19.27 19.29-50.53 19.31-69.82.05l-.05-.05c-9.64-9.64-25.27-9.65-34.92-.01l-.01.01c-9.65 9.64-9.66 25.28-.02 34.93l.02.02c38.58 38.57 101.14 38.57 139.72 0l157.2-157.2c9.65-9.65 9.65-25.29.01-34.93zm-261.99 87.33l157.18-157.18c9.64-9.65 9.64-25.29 0-34.94-9.64-9.64-25.27-9.64-34.91 0L133.72 290.93c-19.28 19.29-50.56 19.3-69.85.01l-.01-.01c-19.29-19.28-19.31-50.54-.03-69.84l.03-.03L218.03 66.89c-19.28-19.29-50.55-19.3-69.85-.02l-.02.02L28.93 186.14c-38.58 38.59-38.58 101.14 0 139.72 38.6 38.59 101.13 38.59 139.73.01zm-87.33-52.4c9.64 9.64 25.27 9.64 34.91 0l157.21-157.19c19.28-19.29 50.55-19.3 69.84-.02l.02.02c9.65 9.65 25.29 9.65 34.93 0 9.65-9.65 9.65-25.29 0-34.93-38.59-38.59-101.13-38.59-139.72 0L81.33 238.54c-9.65 9.64-9.65 25.28-.01 34.93h.01z"],"stack-exchange":[448,512,[],"f18d","M17.7 332.3h412.7v22c0 37.7-29.3 68-65.3 68h-19L259.3 512v-89.7H83c-36 0-65.3-30.3-65.3-68v-22zm0-23.6h412.7v-85H17.7v85zm0-109.4h412.7v-85H17.7v85zM365 0H83C47 0 17.7 30.3 17.7 67.7V90h412.7V67.7C430.3 30.3 401 0 365 0z"],"stack-overflow":[384,512,[],"f16c","M290.7 311L95 269.7 86.8 309l195.7 41zm51-87L188.2 95.7l-25.5 30.8 153.5 128.3zm-31.2 39.7L129.2 179l-16.7 36.5L293.7 300zM262 32l-32 24 119.3 160.3 32-24zm20.5 328h-200v39.7h200zm39.7 80H42.7V320h-40v160h359.5V320h-40z"],stackpath:[448,512,[],"f842","M244.6 232.4c0 8.5-4.26 20.49-21.34 20.49h-19.61v-41.47h19.61c17.13 0 21.34 12.36 21.34 20.98zM448 32v448H0V32zM151.3 287.84c0-21.24-12.12-34.54-46.72-44.85-20.57-7.41-26-10.91-26-18.63s7-14.61 20.41-14.61c14.09 0 20.79 8.45 20.79 18.35h30.7l.19-.57c.5-19.57-15.06-41.65-51.12-41.65-23.37 0-52.55 10.75-52.55 38.29 0 19.4 9.25 31.29 50.74 44.37 17.26 6.15 21.91 10.4 21.91 19.48 0 15.2-19.13 14.23-19.47 14.23-20.4 0-25.65-9.1-25.65-21.9h-30.8l-.18.56c-.68 31.32 28.38 45.22 56.63 45.22 29.98 0 51.12-13.55 51.12-38.29zm125.38-55.63c0-25.3-18.43-45.46-53.42-45.46h-51.78v138.18h32.17v-47.36h19.61c30.25 0 53.42-15.95 53.42-45.36zM297.94 325L347 186.78h-31.09L268 325zm106.52-138.22h-31.09L325.46 325h29.94z"],staylinked:[440,512,[],"f3f5","M382.7 292.5l2.7 2.7-170-167.3c-3.5-3.5-9.7-3.7-13.8-.5L144.3 171c-4.2 3.2-4.6 8.7-1.1 12.2l68.1 64.3c3.6 3.5 9.9 3.7 14 .5l.1-.1c4.1-3.2 10.4-3 14 .5l84 81.3c3.6 3.5 3.2 9-.9 12.2l-93.2 74c-4.2 3.3-10.5 3.1-14.2-.4L63.2 268c-3.5-3.5-9.7-3.7-13.9-.5L3.5 302.4c-4.2 3.2-4.7 8.7-1.2 12.2L211 510.7s7.4 6.8 17.3-.8l198-163.9c4-3.2 4.4-8.7.7-12.2zm54.5-83.4L226.7 2.5c-1.5-1.2-8-5.5-16.3 1.1L3.6 165.7c-4.2 3.2-4.8 8.7-1.2 12.2l42.3 41.7 171.7 165.1c3.7 3.5 10.1 3.7 14.3.4l50.2-38.8-.3-.3 7.7-6c4.2-3.2 4.6-8.7.9-12.2l-57.1-54.4c-3.6-3.5-10-3.7-14.2-.5l-.1.1c-4.2 3.2-10.5 3.1-14.2-.4L109 180.8c-3.6-3.5-3.1-8.9 1.1-12.2l92.2-71.5c4.1-3.2 10.3-3 13.9.5l160.4 159c3.7 3.5 10 3.7 14.1.5l45.8-35.8c4.1-3.2 4.4-8.7.7-12.2z"],steam:[496,512,[],"f1b6","M496 256c0 137-111.2 248-248.4 248-113.8 0-209.6-76.3-239-180.4l95.2 39.3c6.4 32.1 34.9 56.4 68.9 56.4 39.2 0 71.9-32.4 70.2-73.5l84.5-60.2c52.1 1.3 95.8-40.9 95.8-93.5 0-51.6-42-93.5-93.7-93.5s-93.7 42-93.7 93.5v1.2L176.6 279c-15.5-.9-30.7 3.4-43.5 12.1L0 236.1C10.2 108.4 117.1 8 247.6 8 384.8 8 496 119 496 256zM155.7 384.3l-30.5-12.6a52.79 52.79 0 0 0 27.2 25.8c26.9 11.2 57.8-1.6 69-28.4 5.4-13 5.5-27.3.1-40.3-5.4-13-15.5-23.2-28.5-28.6-12.9-5.4-26.7-5.2-38.9-.6l31.5 13c19.8 8.2 29.2 30.9 20.9 50.7-8.3 19.9-31 29.2-50.8 21zm173.8-129.9c-34.4 0-62.4-28-62.4-62.3s28-62.3 62.4-62.3 62.4 28 62.4 62.3-27.9 62.3-62.4 62.3zm.1-15.6c25.9 0 46.9-21 46.9-46.8 0-25.9-21-46.8-46.9-46.8s-46.9 21-46.9 46.8c.1 25.8 21.1 46.8 46.9 46.8z"],"steam-square":[448,512,[],"f1b7","M185.2 356.5c7.7-18.5-1-39.7-19.6-47.4l-29.5-12.2c11.4-4.3 24.3-4.5 36.4.5 12.2 5.1 21.6 14.6 26.7 26.7 5 12.2 5 25.6-.1 37.7-10.5 25.1-39.4 37-64.6 26.5-11.6-4.8-20.4-13.6-25.4-24.2l28.5 11.8c18.6 7.8 39.9-.9 47.6-19.4zM400 32H48C21.5 32 0 53.5 0 80v160.7l116.6 48.1c12-8.2 26.2-12.1 40.7-11.3l55.4-80.2v-1.1c0-48.2 39.3-87.5 87.6-87.5s87.6 39.3 87.6 87.5c0 49.2-40.9 88.7-89.6 87.5l-79 56.3c1.6 38.5-29.1 68.8-65.7 68.8-31.8 0-58.5-22.7-64.5-52.7L0 319.2V432c0 26.5 21.5 48 48 48h352c26.5 0 48-21.5 48-48V80c0-26.5-21.5-48-48-48zm-99.7 222.5c-32.2 0-58.4-26.1-58.4-58.3s26.2-58.3 58.4-58.3 58.4 26.2 58.4 58.3-26.2 58.3-58.4 58.3zm.1-14.6c24.2 0 43.9-19.6 43.9-43.8 0-24.2-19.6-43.8-43.9-43.8-24.2 0-43.9 19.6-43.9 43.8 0 24.2 19.7 43.8 43.9 43.8z"],"steam-symbol":[448,512,[],"f3f6","M395.5 177.5c0 33.8-27.5 61-61 61-33.8 0-61-27.3-61-61s27.3-61 61-61c33.5 0 61 27.2 61 61zm52.5.2c0 63-51 113.8-113.7 113.8L225 371.3c-4 43-40.5 76.8-84.5 76.8-40.5 0-74.7-28.8-83-67L0 358V250.7L97.2 290c15.1-9.2 32.2-13.3 52-11.5l71-101.7c.5-62.3 51.5-112.8 114-112.8C397 64 448 115 448 177.7zM203 363c0-34.7-27.8-62.5-62.5-62.5-4.5 0-9 .5-13.5 1.5l26 10.5c25.5 10.2 38 39 27.7 64.5-10.2 25.5-39.2 38-64.7 27.5-10.2-4-20.5-8.3-30.7-12.2 10.5 19.7 31.2 33.2 55.2 33.2 34.7 0 62.5-27.8 62.5-62.5zm207.5-185.3c0-42-34.3-76.2-76.2-76.2-42.3 0-76.5 34.2-76.5 76.2 0 42.2 34.3 76.2 76.5 76.2 41.9.1 76.2-33.9 76.2-76.2z"],"sticker-mule":[576,512,[],"f3f7","M561.7 199.6c-1.3.3.3 0 0 0zm-6.2-77.4c-7.7-22.3-5.1-7.2-13.4-36.9-1.6-6.5-3.6-14.5-6.2-20-4.4-8.7-4.6-7.5-4.6-9.5 0-5.3 30.7-45.3 19-46.9-5.7-.6-12.2 11.6-20.6 17-8.6 4.2-8 5-10.3 5-2.6 0-5.7-3-6.2-5-2-5.7 1.9-25.9-3.6-25.9-3.6 0-12.3 24.8-17 25.8-5.2 1.3-27.9-11.4-75.1 18-25.3 13.2-86.9 65.2-87 65.3-6.7 4.7-20 4.7-35.5 16-44.4 30.1-109.6 9.4-110.7 9-110.6-26.8-128-15.2-159 11.5-20.8 17.9-23.7 36.5-24.2 38.9-4.2 20.4 5.2 48.3 6.7 64.3 1.8 19.3-2.7 17.7 7.7 98.3.5 1 4.1 0 5.1 1.5 0 8.4-3.8 12.1-4.1 13-1.5 4.5-1.5 10.5 0 16 2.3 8.2 8.2 37.2 8.2 46.9 0 41.8.4 44 2.6 49.4 3.9 10 12.5 9.1 17 12 3.1 3.5-.5 8.5 1 12.5.5 2 3.6 4 6.2 5 9.2 3.6 27 .3 29.9-2.5 1.6-1.5.5-4.5 3.1-5 5.1 0 10.8-.5 14.4-2.5 5.1-2.5 4.1-6 1.5-10.5-.4-.8-7-13.3-9.8-16-2.1-2-5.1-3-7.2-4.5-5.8-4.9-10.3-19.4-10.3-19.5-4.6-19.4-10.3-46.3-4.1-66.8 4.6-17.2 39.5-87.7 39.6-87.8 4.1-6.5 17-11.5 27.3-7 6 1.9 19.3 22 65.4 30.9 47.9 8.7 97.4-2 112.2-2 2.8 2-1.9 13-.5 38.9 0 26.4-.4 13.7-4.1 29.9-2.2 9.7 3.4 23.2-1.5 46.9-1.4 9.8-9.9 32.7-8.2 43.4.5 1 1 2 1.5 3.5.5 4.5 1.5 8.5 4.6 10 7.3 3.6 12-3.5 9.8 11.5-.7 3.1-2.6 12 1.5 15 4.4 3.7 30.6 3.4 36.5.5 2.6-1.5 1.6-4.5 6.4-7.4 1.9-.9 11.3-.4 11.3-6.5.3-1.8-9.2-19.9-9.3-20-2.6-3.5-9.2-4.5-11.3-8-6.9-10.1-1.7-52.6.5-59.4 3-11 5.6-22.4 8.7-32.4 11-42.5 10.3-50.6 16.5-68.3.8-1.8 6.4-23.1 10.3-29.9 9.3-17 21.7-32.4 33.5-47.4 18-22.9 34-46.9 52-69.8 6.1-7 8.2-13.7 18-8 10.8 5.7 21.6 7 31.9 17 14.6 12.8 10.2 18.2 11.8 22.9 1.5 5 7.7 10.5 14.9 9.5 10.4-2 13-2.5 13.4-2.5 2.6-.5 5.7-5 7.2-8 3.1-5.5 7.2-9 7.2-16.5 0-7.7-.4-2.8-20.6-52.9z"],strava:[384,512,[],"f428","M158.4 0L7 292h89.2l62.2-116.1L220.1 292h88.5zm150.2 292l-43.9 88.2-44.6-88.2h-67.6l112.2 220 111.5-220z"],stripe:[640,512,[],"f429","M165 144.7l-43.3 9.2-.2 142.4c0 26.3 19.8 43.3 46.1 43.3 14.6 0 25.3-2.7 31.2-5.9v-33.8c-5.7 2.3-33.7 10.5-33.7-15.7V221h33.7v-37.8h-33.7zm89.1 51.6l-2.7-13.1H213v153.2h44.3V233.3c10.5-13.8 28.2-11.1 33.9-9.3v-40.8c-6-2.1-26.7-6-37.1 13.1zm92.3-72.3l-44.6 9.5v36.2l44.6-9.5zM44.9 228.3c0-6.9 5.8-9.6 15.1-9.7 13.5 0 30.7 4.1 44.2 11.4v-41.8c-14.7-5.8-29.4-8.1-44.1-8.1-36 0-60 18.8-60 50.2 0 49.2 67.5 41.2 67.5 62.4 0 8.2-7.1 10.9-17 10.9-14.7 0-33.7-6.1-48.6-14.2v40c16.5 7.1 33.2 10.1 48.5 10.1 36.9 0 62.3-15.8 62.3-47.8 0-52.9-67.9-43.4-67.9-63.4zM640 261.6c0-45.5-22-81.4-64.2-81.4s-67.9 35.9-67.9 81.1c0 53.5 30.3 78.2 73.5 78.2 21.2 0 37.1-4.8 49.2-11.5v-33.4c-12.1 6.1-26 9.8-43.6 9.8-17.3 0-32.5-6.1-34.5-26.9h86.9c.2-2.3.6-11.6.6-15.9zm-87.9-16.8c0-20 12.3-28.4 23.4-28.4 10.9 0 22.5 8.4 22.5 28.4zm-112.9-64.6c-17.4 0-28.6 8.2-34.8 13.9l-2.3-11H363v204.8l44.4-9.4.1-50.2c6.4 4.7 15.9 11.2 31.4 11.2 31.8 0 60.8-23.2 60.8-79.6.1-51.6-29.3-79.7-60.5-79.7zm-10.6 122.5c-10.4 0-16.6-3.8-20.9-8.4l-.3-66c4.6-5.1 11-8.8 21.2-8.8 16.2 0 27.4 18.2 27.4 41.4.1 23.9-10.9 41.8-27.4 41.8zm-126.7 33.7h44.6V183.2h-44.6z"],"stripe-s":[384,512,[],"f42a","M155.3 154.6c0-22.3 18.6-30.9 48.4-30.9 43.4 0 98.5 13.3 141.9 36.7V26.1C298.3 7.2 251.1 0 203.8 0 88.1 0 11 60.4 11 161.4c0 157.9 216.8 132.3 216.8 200.4 0 26.4-22.9 34.9-54.7 34.9-47.2 0-108.2-19.5-156.1-45.5v128.5a396.09 396.09 0 0 0 156 32.4c118.6 0 200.3-51 200.3-153.6 0-170.2-218-139.7-218-203.9z"],studiovinari:[512,512,[],"f3f8","M480.3 187.7l4.2 28v28l-25.1 44.1-39.8 78.4-56.1 67.5-79.1 37.8-17.7 24.5-7.7 12-9.6 4s17.3-63.6 19.4-63.6c2.1 0 20.3.7 20.3.7l66.7-38.6-92.5 26.1-55.9 36.8-22.8 28-6.6 1.4 20.8-73.6 6.9-5.5 20.7 12.9 88.3-45.2 56.8-51.5 14.8-68.4-125.4 23.3 15.2-18.2-173.4-53.3 81.9-10.5-166-122.9L133.5 108 32.2 0l252.9 126.6-31.5-38L378 163 234.7 64l18.7 38.4-49.6-18.1L158.3 0l194.6 122L310 66.2l108 96.4 12-8.9-21-16.4 4.2-37.8L451 89.1l29.2 24.7 11.5 4.2-7 6.2 8.5 12-13.1 7.4-10.3 20.2 10.5 23.9z"],stumbleupon:[512,512,[],"f1a4","M502.9 266v69.7c0 62.1-50.3 112.4-112.4 112.4-61.8 0-112.4-49.8-112.4-111.3v-70.2l34.3 16 51.1-15.2V338c0 14.7 12 26.5 26.7 26.5S417 352.7 417 338v-72h85.9zm-224.7-58.2l34.3 16 51.1-15.2V173c0-60.5-51.1-109-112.1-109-60.8 0-112.1 48.2-112.1 108.2v162.4c0 14.9-12 26.7-26.7 26.7S86 349.5 86 334.6V266H0v69.7C0 397.7 50.3 448 112.4 448c61.6 0 112.4-49.5 112.4-110.8V176.9c0-14.7 12-26.7 26.7-26.7s26.7 12 26.7 26.7v30.9z"],"stumbleupon-circle":[496,512,[],"f1a3","M256 8C119 8 8 119 8 256s111 248 248 248 248-111 248-248S393 8 256 8zm0 177.5c-9.8 0-17.8 8-17.8 17.8v106.9c0 40.9-33.9 73.9-74.9 73.9-41.4 0-74.9-33.5-74.9-74.9v-46.5h57.3v45.8c0 10 8 17.8 17.8 17.8s17.8-7.9 17.8-17.8V200.1c0-40 34.2-72.1 74.7-72.1 40.7 0 74.7 32.3 74.7 72.6v23.7l-34.1 10.1-22.9-10.7v-20.6c.1-9.6-7.9-17.6-17.7-17.6zm167.6 123.6c0 41.4-33.5 74.9-74.9 74.9-41.2 0-74.9-33.2-74.9-74.2V263l22.9 10.7 34.1-10.1v47.1c0 9.8 8 17.6 17.8 17.6s17.8-7.9 17.8-17.6v-48h57.3c-.1 45.9-.1 46.4-.1 46.4z"],superpowers:[448,512,[],"f2dd","M448 32c-83.3 11-166.8 22-250 33-92 12.5-163.3 86.7-169 180-3.3 55.5 18 109.5 57.8 148.2L0 480c83.3-11 166.5-22 249.8-33 91.8-12.5 163.3-86.8 168.7-179.8 3.5-55.5-18-109.5-57.7-148.2L448 32zm-79.7 232.3c-4.2 79.5-74 139.2-152.8 134.5-79.5-4.7-140.7-71-136.3-151 4.5-79.2 74.3-139.3 153-134.5 79.3 4.7 140.5 71 136.1 151z"],supple:[640,512,[],"f3f9","M640 262.5c0 64.1-109 116.1-243.5 116.1-24.8 0-48.6-1.8-71.1-5 7.7.4 15.5.6 23.4.6 134.5 0 243.5-56.9 243.5-127.1 0-29.4-19.1-56.4-51.2-78 60 21.1 98.9 55.1 98.9 93.4zM47.7 227.9c-.1-70.2 108.8-127.3 243.3-127.6 7.9 0 15.6.2 23.3.5-22.5-3.2-46.3-4.9-71-4.9C108.8 96.3-.1 148.5 0 212.6c.1 38.3 39.1 72.3 99.3 93.3-32.3-21.5-51.5-48.6-51.6-78zm60.2 39.9s10.5 13.2 29.3 13.2c17.9 0 28.4-11.5 28.4-25.1 0-28-40.2-25.1-40.2-39.7 0-5.4 5.3-9.1 12.5-9.1 5.7 0 11.3 2.6 11.3 6.6v3.9h14.2v-7.9c0-12.1-15.4-16.8-25.4-16.8-16.5 0-28.5 10.2-28.5 24.1 0 26.6 40.2 25.4 40.2 39.9 0 6.6-5.8 10.1-12.3 10.1-11.9 0-20.7-10.1-20.7-10.1l-8.8 10.9zm120.8-73.6v54.4c0 11.3-7.1 17.8-17.8 17.8-10.7 0-17.8-6.5-17.8-17.7v-54.5h-15.8v55c0 18.9 13.4 31.9 33.7 31.9 20.1 0 33.4-13 33.4-31.9v-55h-15.7zm34.4 85.4h15.8v-29.5h15.5c16 0 27.2-11.5 27.2-28.1s-11.2-27.8-27.2-27.8h-39.1v13.4h7.8v72zm15.8-43v-29.1h12.9c8.7 0 13.7 5.7 13.7 14.4 0 8.9-5.1 14.7-14 14.7h-12.6zm57 43h15.8v-29.5h15.5c16 0 27.2-11.5 27.2-28.1s-11.2-27.8-27.2-27.8h-39.1v13.4h7.8v72zm15.7-43v-29.1h12.9c8.7 0 13.7 5.7 13.7 14.4 0 8.9-5 14.7-14 14.7h-12.6zm57.1 34.8c0 5.8 2.4 8.2 8.2 8.2h37.6c5.8 0 8.2-2.4 8.2-8.2v-13h-14.3v5.2c0 1.7-1 2.6-2.6 2.6h-18.6c-1.7 0-2.6-1-2.6-2.6v-61.2c0-5.7-2.4-8.2-8.2-8.2H401v13.4h5.2c1.7 0 2.6 1 2.6 2.6v61.2zm63.4 0c0 5.8 2.4 8.2 8.2 8.2H519c5.7 0 8.2-2.4 8.2-8.2v-13h-14.3v5.2c0 1.7-1 2.6-2.6 2.6h-19.7c-1.7 0-2.6-1-2.6-2.6v-20.3h27.7v-13.4H488v-22.4h19.2c1.7 0 2.6 1 2.6 2.6v5.2H524v-13c0-5.7-2.5-8.2-8.2-8.2h-51.6v13.4h7.8v63.9zm58.9-76v5.9h1.6v-5.9h2.7v-1.2h-7v1.2h2.7zm5.7-1.2v7.1h1.5v-5.7l2.3 5.7h1.3l2.3-5.7v5.7h1.5v-7.1h-2.3l-2.1 5.1-2.1-5.1h-2.4z"],suse:[640,512,[],"f7d6","M471.08 102.66s-.3 18.3-.3 20.3c-9.1-3-74.4-24.1-135.7-26.3-51.9-1.8-122.8-4.3-223 57.3-19.4 12.4-73.9 46.1-99.6 109.7C7 277-.12 307 7 335.06a111 111 0 0 0 16.5 35.7c17.4 25 46.6 41.6 78.1 44.4 44.4 3.9 78.1-16 90-53.3 8.2-25.8 0-63.6-31.5-82.9-25.6-15.7-53.3-12.1-69.2-1.6-13.9 9.2-21.8 23.5-21.6 39.2.3 27.8 24.3 42.6 41.5 42.6a49 49 0 0 0 15.8-2.7c6.5-1.8 13.3-6.5 13.3-14.9 0-12.1-11.6-14.8-16.8-13.9-2.9.5-4.5 2-11.8 2.4-2-.2-12-3.1-12-14V316c.2-12.3 13.2-18 25.5-16.9 32.3 2.8 47.7 40.7 28.5 65.7-18.3 23.7-76.6 23.2-99.7-20.4-26-49.2 12.7-111.2 87-98.4 33.2 5.7 83.6 35.5 102.4 104.3h45.9c-5.7-17.6-8.9-68.3 42.7-68.3 56.7 0 63.9 39.9 79.8 68.3H460c-12.8-18.3-21.7-38.7-18.9-55.8 5.6-33.8 39.7-18.4 82.4-17.4 66.5.4 102.1-27 103.1-28 3.7-3.1 6.5-15.8 7-17.7 1.3-5.1-3.2-2.4-3.2-2.4-8.7 5.2-30.5 15.2-50.9 15.6-25.3.5-76.2-25.4-81.6-28.2-.3-.4.1 1.2-11-25.5 88.4 58.3 118.3 40.5 145.2 21.7.8-.6 4.3-2.9 3.6-5.7-13.8-48.1-22.4-62.7-34.5-69.6-37-21.6-125-34.7-129.2-35.3.1-.1-.9-.3-.9.7zm60.4 72.8a37.54 37.54 0 0 1 38.9-36.3c33.4 1.2 48.8 42.3 24.4 65.2-24.2 22.7-64.4 4.6-63.3-28.9zm38.6-25.3a26.27 26.27 0 1 0 25.4 27.2 26.19 26.19 0 0 0-25.4-27.2zm4.3 28.8c-15.4 0-15.4-15.6 0-15.6s15.4 15.64 0 15.64z"],swift:[448,512,[],"f8e1","M448 156.09c0-4.51-.08-9-.2-13.52a196.31 196.31 0 0 0-2.58-29.42 99.62 99.62 0 0 0-9.22-28A94.08 94.08 0 0 0 394.84 44a99.17 99.17 0 0 0-28-9.22 195 195 0 0 0-29.43-2.59c-4.51-.12-9-.17-13.52-.2H124.14c-4.51 0-9 .08-13.52.2-2.45.07-4.91.15-7.37.27a171.68 171.68 0 0 0-22.06 2.32 103.06 103.06 0 0 0-21.21 6.1q-3.46 1.45-6.81 3.12a94.66 94.66 0 0 0-18.39 12.32c-1.88 1.61-3.69 3.28-5.43 5A93.86 93.86 0 0 0 12 85.17a99.45 99.45 0 0 0-9.22 28 196.31 196.31 0 0 0-2.54 29.4c-.13 4.51-.18 9-.21 13.52v199.83c0 4.51.08 9 .21 13.51a196.08 196.08 0 0 0 2.58 29.42 99.3 99.3 0 0 0 9.22 28A94.31 94.31 0 0 0 53.17 468a99.47 99.47 0 0 0 28 9.21 195 195 0 0 0 29.43 2.59c4.5.12 9 .17 13.52.2H323.91c4.51 0 9-.08 13.52-.2a196.59 196.59 0 0 0 29.44-2.59 99.57 99.57 0 0 0 28-9.21A94.22 94.22 0 0 0 436 426.84a99.3 99.3 0 0 0 9.22-28 194.79 194.79 0 0 0 2.59-29.42c.12-4.5.17-9 .2-13.51V172.14c-.01-5.35-.01-10.7-.01-16.05zm-69.88 241c-20-38.93-57.23-29.27-76.31-19.47-1.72 1-3.48 2-5.25 3l-.42.25c-39.5 21-92.53 22.54-145.85-.38A234.64 234.64 0 0 1 45 290.12a230.63 230.63 0 0 0 39.17 23.37c56.36 26.4 113 24.49 153 0-57-43.85-104.6-101-141.09-147.22a197.09 197.09 0 0 1-18.78-25.9c43.7 40 112.7 90.22 137.48 104.12-52.57-55.49-98.89-123.94-96.72-121.74 82.79 83.42 159.18 130.59 159.18 130.59 2.88 1.58 5 2.85 6.73 4a127.44 127.44 0 0 0 4.16-12.47c13.22-48.33-1.66-103.58-35.31-149.2C329.61 141.75 375 229.34 356.4 303.42c-.44 1.73-.95 3.4-1.44 5.09 38.52 47.4 28.04 98.17 23.13 88.59z"],symfony:[512,512,[],"f83d","M256 8C119 8 8 119 8 256s111 248 248 248 248-111 248-248S393 8 256 8zm133.74 143.54c-11.47.41-19.4-6.45-19.77-16.87-.27-9.18 6.68-13.44 6.53-18.85-.23-6.55-10.16-6.82-12.87-6.67-39.78 1.29-48.59 57-58.89 113.85 21.43 3.15 36.65-.72 45.14-6.22 12-7.75-3.34-15.72-1.42-24.56 4-18.16 32.55-19 32 5.3-.36 17.86-25.92 41.81-77.6 35.7-10.76 59.52-18.35 115-58.2 161.72-29 34.46-58.4 39.82-71.58 40.26-24.65.85-41-12.31-41.58-29.84-.56-17 14.45-26.26 24.31-26.59 21.89-.75 30.12 25.67 14.88 34-12.09 9.71.11 12.61 2.05 12.55 10.42-.36 17.34-5.51 22.18-9 24-20 33.24-54.86 45.35-118.35 8.19-49.66 17-78 18.23-82-16.93-12.75-27.08-28.55-49.85-34.72-15.61-4.23-25.12-.63-31.81 7.83-7.92 10-5.29 23 2.37 30.7l12.63 14c15.51 17.93 24 31.87 20.8 50.62-5.06 29.93-40.72 52.9-82.88 39.94-36-11.11-42.7-36.56-38.38-50.62 7.51-24.15 42.36-11.72 34.62 13.6-2.79 8.6-4.92 8.68-6.28 13.07-4.56 14.77 41.85 28.4 51-1.39 4.47-14.52-5.3-21.71-22.25-39.85-28.47-31.75-16-65.49 2.95-79.67C204.23 140.13 251.94 197 262 205.29c37.17-109 100.53-105.46 102.43-105.53 25.16-.81 44.19 10.59 44.83 28.65.25 7.69-4.17 22.59-19.52 23.13z"],teamspeak:[512,512,[],"f4f9","M244.2 346.79c2.4-12.3-12-30-32.4-48.7-20.9-19.2-48.2-39.1-63.4-46.6-21.7-12-41.7-1.8-46.3 22.7-5 26.2 0 51.4 14.5 73.9 10.2 15.5 25.4 22.7 43.4 24 11.6.6 52.5 2.2 61.7-1 11.9-4.3 20.1-11.8 22.5-24.3zm205 20.8a5.22 5.22 0 0 0-8.3 2.4c-8 25.4-44.7 112.5-172.1 121.5-149.7 10.5 80.3 43.6 145.4-6.4 22.7-17.4 47.6-35 46.6-85.4-.4-10.1-4.9-26.69-11.6-32.1zm62-122.4c-.3-18.9-8.6-33.4-26-42.2-2.9-1.3-5-2.7-5.9-6.4A222.64 222.64 0 0 0 438.9 103c-1.1-1.5-3.5-3.2-2.2-5 8.5-11.5-.3-18-7-24.4Q321.4-31.11 177.4 13.09c-40.1 12.3-73.9 35.6-102 67.4-4 4.3-6.7 9.1-3 14.5 3 4 1.3 6.2-1 9.3C51.6 132 38.2 162.59 32.1 196c-.7 4.3-2.9 6-6.4 7.8-14.2 7-22.5 18.5-24.9 34L0 264.29v20.9c0 30.8 21 50.4 51.8 49 7.7-.3 11.7-4.3 12-11.5 2-77.5-2.4-95.4 3.7-125.8C92.1 72.39 234.3 5 345.3 65.39 411.4 102 445.7 159 447.6 234.79c.8 28.2 0 56.5 0 84.6 0 7 2.2 12.5 9.4 14.2 24.1 5 49.2-12 53.2-36.7 2.9-17.1 1-34.5 1-51.7zm-159.6 131.5c36.5 2.8 59.3-28.5 58.4-60.5-2.1-45.2-66.2-16.5-87.8-8-73.2 28.1-45 54.9-22.2 60.8z"],telegram:[496,512,[],"f2c6","M248 8C111 8 0 119 0 256s111 248 248 248 248-111 248-248S385 8 248 8zm121.8 169.9l-40.7 191.8c-3 13.6-11.1 16.9-22.4 10.5l-62-45.7-29.9 28.8c-3.3 3.3-6.1 6.1-12.5 6.1l4.4-63.1 114.9-103.8c5-4.4-1.1-6.9-7.7-2.5l-142 89.4-61.2-19.1c-13.3-4.2-13.6-13.3 2.8-19.7l239.1-92.2c11.1-4 20.8 2.7 17.2 19.5z"],"telegram-plane":[448,512,[],"f3fe","M446.7 98.6l-67.6 318.8c-5.1 22.5-18.4 28.1-37.3 17.5l-103-75.9-49.7 47.8c-5.5 5.5-10.1 10.1-20.7 10.1l7.4-104.9 190.9-172.5c8.3-7.4-1.8-11.5-12.9-4.1L117.8 284 16.2 252.2c-22.1-6.9-22.5-22.1 4.6-32.7L418.2 66.4c18.4-6.9 34.5 4.1 28.5 32.2z"],"tencent-weibo":[384,512,[],"f1d5","M72.3 495.8c1.4 19.9-27.6 22.2-29.7 2.9C31 368.8 73.7 259.2 144 185.5c-15.6-34 9.2-77.1 50.6-77.1 30.3 0 55.1 24.6 55.1 55.1 0 44-49.5 70.8-86.9 45.1-65.7 71.3-101.4 169.8-90.5 287.2zM192 .1C66.1.1-12.3 134.3 43.7 242.4 52.4 259.8 79 246.9 70 229 23.7 136.4 91 29.8 192 29.8c75.4 0 136.9 61.4 136.9 136.9 0 90.8-86.9 153.9-167.7 133.1-19.1-4.1-25.6 24.4-6.6 29.1 110.7 23.2 204-60 204-162.3C358.6 74.7 284 .1 192 .1z"],"the-red-yeti":[512,512,[],"f69d","M488.23 241.7l20.7 7.1c-9.6-23.9-23.9-37-31.7-44.8l7.1-18.2c.2 0 12.3-27.8-2.5-30.7-.6-11.3-6.6-27-18.4-27-7.6-10.6-17.7-12.3-30.7-5.9a122.2 122.2 0 0 0-25.3 16.5c-5.3-6.4-3 .4-3-29.8-37.1-24.3-45.4-11.7-74.8 3l.5.5a239.36 239.36 0 0 0-68.4-13.3c-5.5-8.7-18.6-19.1-25.1-25.1l24.8 7.1c-5.5-5.5-26.8-12.9-34.2-15.2 18.2-4.1 29.8-20.8 42.5-33-34.9-10.1-67.9-5.9-97.9 11.8l12-44.2L182 0c-31.6 24.2-33 41.9-33.7 45.5-.9-2.4-6.3-19.6-15.2-27a35.12 35.12 0 0 0-.5 25.3c3 8.4 5.9 14.8 8.4 18.9-16-3.3-28.3-4.9-49.2 0h-3.7l33 14.3a194.26 194.26 0 0 0-46.7 67.4l-1.7 8.4 1.7 1.7 7.6-4.7c-3.3 11.6-5.3 19.4-6.6 25.8a200.18 200.18 0 0 0-27.8 40.3c-15 1-31.8 10.8-40.3 14.3l3 3.4 28.8 1c-.5 1-.7 2.2-1.2 3.2-7.3 6.4-39.8 37.7-33 80.7l20.2-22.4c.5 1.7.7 3.4 1.2 5.2 0 25.5.4 89.6 64.9 150.5 43.6 40 96 60.2 157.5 60.2 121.7 0 223-87.3 223-211.5 6.8-9.7-1.2 3 16.7-25.1l13 14.3 2.5-.5A181.84 181.84 0 0 0 495 255a44.74 44.74 0 0 0-6.8-13.3zM398 111.2l-.5 21.9c5.5 18.1 16.9 17.2 22.4 17.2l-3.4-4.7 22.4-5.4a242.44 242.44 0 0 1-27 0c12.8-2.1 33.3-29 43-11.3 3.4 7.6 6.4 17.2 9.3 27.8l1.7-5.9a56.38 56.38 0 0 1-1.7-15.2c5.4.5 8.8 3.4 9.3 10.1.5 6.4 1.7 14.8 3.4 25.3l4.7-11.3c4.6 0 4.5-3.6-2.5 20.7-20.9-8.7-35.1-8.4-46.5-8.4l18.2-16c-25.3 8.2-33 10.8-54.8 20.9-1.1-5.4-5-13.5-16-19.9-3.2 3.8-2.8.9-.7 14.8h-2.5a62.32 62.32 0 0 0-8.4-23.1l4.2-3.4c8.4-7.1 11.8-14.3 10.6-21.9-.5-6.4-5.4-13.5-13.5-20.7 5.6-3.4 15.2-.4 28.3 8.5zm-39.6-10.1c2.7 1.9 11.4 5.4 18.9 17.2 4.2 8.4 4 9.8 3.4 11.1-.5 2.4-.5 4.3-3 7.1-1.7 2.5-5.4 4.7-11.8 7.6-7.6-13-16.5-23.6-27.8-31.2zM91 143.1l1.2-1.7c1.2-2.9 4.2-7.6 9.3-15.2l2.5-3.4-13 12.3 5.4-4.7-10.1 9.3-4.2 1.2c12.3-24.1 23.1-41.3 32.5-50.2 9.3-9.3 16-16 20.2-19.4l-6.4 1.2c-11.3-4.2-19.4-7.1-24.8-8.4 2.5-.5 3.7-.5 3.2-.5 10.3 0 17.5.5 20.9 1.2a52.35 52.35 0 0 0 16 2.5l.5-1.7-8.4-35.8 13.5 29a42.89 42.89 0 0 0 5.9-14.3c1.7-6.4 5.4-13 10.1-19.4s7.6-10.6 9.3-11.3a234.68 234.68 0 0 0-6.4 25.3l-1.7 7.1-.5 4.7 2.5 2.5C190.4 39.9 214 34 239.8 34.5l21.1.5c-11.8 13.5-27.8 21.9-48.5 24.8a201.26 201.26 0 0 1-23.4 2.9l-.2-.5-2.5-1.2a20.75 20.75 0 0 0-14 2c-2.5-.2-4.9-.5-7.1-.7l-2.5 1.7.5 1.2c2 .2 3.9.5 6.2.7l-2 3.4 3.4-.5-10.6 11.3c-4.2 3-5.4 6.4-4.2 9.3l5.4-3.4h1.2a39.4 39.4 0 0 1 25.3-15.2v-3c6.4.5 13 1 19.4 1.2 6.4 0 8.4.5 5.4 1.2a189.6 189.6 0 0 1 20.7 13.5c13.5 10.1 23.6 21.9 30 35.4 8.8 18.2 13.5 37.1 13.5 56.6a141.13 141.13 0 0 1-3 28.3 209.91 209.91 0 0 1-16 46l2.5.5c18.2-19.7 41.9-16 49.2-16l-6.4 5.9 22.4 17.7-1.7 30.7c-5.4-12.3-16.5-21.1-33-27.8 16.5 14.8 23.6 21.1 21.9 20.2-4.8-2.8-3.5-1.9-10.8-3.7 4.1 4.1 17.5 18.8 18.2 20.7l.2.2-.2.2c0 1.8 1.6-1.2-14 22.9-75.2-15.3-106.27-42.7-141.2-63.2l11.8 1.2c-11.8-18.5-15.6-17.7-38.4-26.1L149 225c-8.8-3-18.2-3-28.3.5l7.6-10.6-1.2-1.7c-14.9 4.3-19.8 9.2-22.6 11.3-1.1-5.5-2.8-12.4-12.3-28.8l-1.2 27-13.2-5c1.5-25.2 5.4-50.5 13.2-74.6zm276.5 330c-49.9 25-56.1 22.4-59 23.9-29.8-11.8-50.9-31.7-63.5-58.8l30 16.5c-9.8-9.3-18.3-16.5-38.4-44.3l11.8 23.1-17.7-7.6c14.2 21.1 23.5 51.7 66.6 73.5-120.8 24.2-199-72.1-200.9-74.3a262.57 262.57 0 0 0 35.4 24.8c3.4 1.7 7.1 2.5 10.1 1.2l-16-20.7c9.2 4.2 9.5 4.5 69.1 29-42.5-20.7-73.8-40.8-93.2-60.2-.5 6.4-1.2 10.1-1.2 10.1a80.25 80.25 0 0 1 20.7 26.6c-39-18.9-57.6-47.6-71.3-82.6 49.9 55.1 118.9 37.5 120.5 37.1 34.8 16.4 69.9 23.6 113.9 10.6 3.3 0 20.3 17 25.3 39.1l4.2-3-2.5-23.6c9 9 24.9 22.6 34.4 13-15.6-5.3-23.5-9.5-29.5-31.7 4.6 4.2 7.6 9 27.8 15l1.2-1.2-10.5-14.2c11.7-4.8-3.5 1 32-10.8 4.3 34.3 9 49.2.7 89.5zm115.3-214.4l-2.5.5 3 9.3c-3.5 5.9-23.7 44.3-71.6 79.7-39.5 29.8-76.6 39.1-80.9 40.3l-7.6-7.1-1.2 3 14.3 16-7.1-4.7 3.4 4.2h-1.2l-21.9-13.5 9.3 26.6-19-27.9-1.2 2.5 7.6 29c-6.1-8.2-21-32.6-56.8-39.6l32.5 21.2a214.82 214.82 0 0 1-93.2-6.4c-4.2-1.2-8.9-2.5-13.5-4.2l1.2-3-44.8-22.4 26.1 22.4c-57.7 9.1-113-25.4-126.4-83.4l-2.5-16.4-22.27 22.3c19.5-57.5 25.6-57.9 51.4-70.1-9.1-5.3-1.6-3.3-38.4-9.3 15.8-5.8 33-15.4 73 5.2a18.5 18.5 0 0 1 3.7-1.7c.6-3.2.4-.8 1-11.8 3.9 10 3.6 8.7 3 9.3l1.7.5c12.7-6.5 8.9-4.5 17-8.9l-5.4 13.5 22.3-5.8-8.4 8.4 2.5 2.5c4.5-1.8 30.3 3.4 40.8 16l-23.6-2.5c39.4 23 51.5 54 55.8 69.6l1.7-1.2c-2.8-22.3-12.4-33.9-16-40.1 4.2 5 39.2 34.6 110.4 46-11.3-.5-23.1 5.4-34.9 18.9l46.7-20.2-9.3 21.9c7.6-10.1 14.8-23.6 21.2-39.6v-.5l1.2-3-1.2 16c13.5-41.8 25.3-78.5 35.4-109.7l13.5-27.8v-2l-5.4-4.2h10.1l5.9 4.2 2.5-1.2-3.4-16 12.3 18.9 41.8-20.2-14.8 13 .5 2.9 17.7-.5a184 184 0 0 1 33 4.2l-23.6 2.5-1.2 3 26.6 23.1a254.21 254.21 0 0 1 27 32c-11.2-3.3-10.3-3.4-21.2-3.4l12.3 32.5zm-6.1-71.3l-3.9 13-14.3-11.8zm-254.8 7.1c1.7 10.6 4.7 17.7 8.8 21.9-9.3 6.6-27.5 13.9-46.5 16l.5 1.2a50.22 50.22 0 0 0 24.8-2.5l-7.1 13c4.2-1.7 10.1-7.1 17.7-14.8 11.9-5.5 12.7-5.1 20.2-16-12.7-6.4-15.7-13.7-18.4-18.8zm3.7-102.3c-6.4-3.4-10.6 3-12.3 18.9s2.5 29.5 11.8 39.6 18.2 10.6 26.1 3 3.4-23.6-11.3-47.7a39.57 39.57 0 0 0-14.27-13.8zm-4.7 46.3c5.4 2.2 10.5 1.9 12.3-10.6v-4.7l-1.2.5c-4.3-3.1-2.5-4.5-1.7-6.2l.5-.5c-.9-1.2-5-8.1-12.5 4.7-.5-13.5.5-21.9 3-24.8 1.2-2.5 4.7-1.2 11.3 4.2 6.4 5.4 11.3 16 15.2 32.5 6.5 28-19.8 26.2-26.9 4.9zm-45-5.5c1.6.3 9.3-1.1 9.3-14.8h-.5c-5.4-1.1-2.2-5.5-.7-5.9-1.7-3-3.4-4.2-5.4-4.7-8.1 0-11.6 12.7-8.1 21.2a7.51 7.51 0 0 0 5.43 4.2zM216 82.9l-2.5.5.5 3a48.94 48.94 0 0 1 26.1 5.9c-2.5-5.5-10-14.3-28.3-14.3l.5 2.5zm-71.8 49.4c21.7 16.8 16.5 21.4 46.5 23.6l-2.9-4.7a42.67 42.67 0 0 0 14.8-28.3c1.7-16-1.2-29.5-8.8-41.3l13-7.6a2.26 2.26 0 0 0-.5-1.7 14.21 14.21 0 0 0-13.5 1.7c-12.7 6.7-28 20.9-29 22.4-1.7 1.7-3.4 5.9-5.4 13.5a99.61 99.61 0 0 0-2.9 23.6c-4.7-8-10.5-6.4-19.9-5.9l7.1 7.6c-16.5 0-23.3 15.4-23.6 16 6.8 0 4.6-7.6 30-12.3-4.3-6.3-3.3-5-4.9-6.6zm18.7-18.7c1.2-7.6 3.4-13 6.4-17.2 5.4-6.4 10.6-10.1 16-11.8 4.2-1.7 7.1 1.2 10.1 9.3a72.14 72.14 0 0 1 3 25.3c-.5 9.3-3.4 17.2-8.4 23.1-2.9 3.4-5.4 5.9-6.4 7.6a39.21 39.21 0 0 1-11.3-.5l-7.1-3.4-5.4-6.4c.8-10 1.3-18.8 3.1-26zm42 56.1c-34.8 14.4-34.7 14-36.1 14.3-20.8 4.7-19-24.4-18.9-24.8l5.9-1.2-.5-2.5c-20.2-2.6-31 4.2-32.5 4.9.5.5 3 3.4 5.9 9.3 4.2-6.4 8.8-10.1 15.2-10.6a83.47 83.47 0 0 0 1.7 33.7c.1.5 2.6 17.4 27.5 24.1 11.3 3 27 1.2 48.9-5.4l-9.2.5c-4.2-14.8-6.4-24.8-5.9-29.5 11.3-8.8 21.9-11.3 30.7-7.6h2.5l-11.8-7.6-7.1.5c-5.9 1.2-12.3 4.2-19.4 8.4z"],themeco:[448,512,[],"f5c6","M202.9 8.43c9.9-5.73 26-5.82 35.95-.21L430 115.85c10 5.6 18 19.44 18 30.86V364c0 11.44-8.06 25.29-18 31L238.81 503.74c-9.93 5.66-26 5.57-35.85-.21L17.86 395.12C8 389.34 0 375.38 0 364V146.71c0-11.44 8-25.36 17.91-31.08zm-77.4 199.83c-15.94 0-31.89.14-47.83.14v101.45H96.8V280h28.7c49.71 0 49.56-71.74 0-71.74zm140.14 100.29l-30.73-34.64c37-7.51 34.8-65.23-10.87-65.51-16.09 0-32.17-.14-48.26-.14v101.59h19.13v-33.91h18.41l29.56 33.91h22.76zm-41.59-82.32c23.34 0 23.26 32.46 0 32.46h-29.13v-32.46zm-95.56-1.6c21.18 0 21.11 38.85 0 38.85H96.18v-38.84zm192.65-18.25c-68.46 0-71 105.8 0 105.8 69.48-.01 69.41-105.8 0-105.8zm0 17.39c44.12 0 44.8 70.86 0 70.86s-44.43-70.86 0-70.86z"],themeisle:[512,512,[],"f2b2","M208 88.286c0-10 6.286-21.714 17.715-21.714 11.142 0 17.714 11.714 17.714 21.714 0 10.285-6.572 21.714-17.714 21.714C214.286 110 208 98.571 208 88.286zm304 160c0 36.001-11.429 102.286-36.286 129.714-22.858 24.858-87.428 61.143-120.857 70.572l-1.143.286v32.571c0 16.286-12.572 30.571-29.143 30.571-10 0-19.429-5.714-24.572-14.286-5.427 8.572-14.856 14.286-24.856 14.286-10 0-19.429-5.714-24.858-14.286-5.142 8.572-14.571 14.286-24.57 14.286-10.286 0-19.429-5.714-24.858-14.286-5.143 8.572-14.571 14.286-24.571 14.286-18.857 0-29.429-15.714-29.429-32.857-16.286 12.285-35.715 19.428-56.571 19.428-22 0-43.429-8.285-60.286-22.857 10.285-.286 20.571-2.286 30.285-5.714-20.857-5.714-39.428-18.857-52-36.286 21.37 4.645 46.209 1.673 67.143-11.143-22-22-56.571-58.857-68.572-87.428C1.143 321.714 0 303.714 0 289.429c0-49.714 20.286-160 86.286-160 10.571 0 18.857 4.858 23.143 14.857a158.792 158.792 0 0 1 12-15.428c2-2.572 5.714-5.429 7.143-8.286 7.999-12.571 11.714-21.142 21.714-34C182.571 45.428 232 17.143 285.143 17.143c6 0 12 .285 17.714 1.143C313.714 6.571 328.857 0 344.572 0c14.571 0 29.714 6 40 16.286.857.858 1.428 2.286 1.428 3.428 0 3.714-10.285 13.429-12.857 16.286 4.286 1.429 15.714 6.858 15.714 12 0 2.857-2.857 5.143-4.571 7.143 31.429 27.714 49.429 67.143 56.286 108 4.286-5.143 10.285-8.572 17.143-8.572 10.571 0 20.857 7.144 28.571 14.001C507.143 187.143 512 221.714 512 248.286zM188 89.428c0 18.286 12.571 37.143 32.286 37.143 19.714 0 32.285-18.857 32.285-37.143 0-18-12.571-36.857-32.285-36.857-19.715 0-32.286 18.858-32.286 36.857zM237.714 194c0-19.714 3.714-39.143 8.571-58.286-52.039 79.534-13.531 184.571 68.858 184.571 21.428 0 42.571-7.714 60-20 2-7.429 3.714-14.857 3.714-22.572 0-14.286-6.286-21.428-20.572-21.428-4.571 0-9.143.857-13.429 1.714-63.343 12.668-107.142 3.669-107.142-63.999zm-41.142 254.858c0-11.143-8.858-20.857-20.286-20.857-11.429 0-20 9.715-20 20.857v32.571c0 11.143 8.571 21.142 20 21.142 11.428 0 20.286-9.715 20.286-21.142v-32.571zm49.143 0c0-11.143-8.572-20.857-20-20.857-11.429 0-20.286 9.715-20.286 20.857v32.571c0 11.143 8.857 21.142 20.286 21.142 11.428 0 20-10 20-21.142v-32.571zm49.713 0c0-11.143-8.857-20.857-20.285-20.857-11.429 0-20.286 9.715-20.286 20.857v32.571c0 11.143 8.857 21.142 20.286 21.142 11.428 0 20.285-9.715 20.285-21.142v-32.571zm49.715 0c0-11.143-8.857-20.857-20.286-20.857-11.428 0-20.286 9.715-20.286 20.857v32.571c0 11.143 8.858 21.142 20.286 21.142 11.429 0 20.286-10 20.286-21.142v-32.571zM421.714 286c-30.857 59.142-90.285 102.572-158.571 102.572-96.571 0-160.571-84.572-160.571-176.572 0-16.857 2-33.429 6-49.714-20 33.715-29.714 72.572-29.714 111.429 0 60.286 24.857 121.715 71.429 160.857 5.143-9.714 14.857-16.286 26-16.286 10 0 19.428 5.714 24.571 14.286 5.429-8.571 14.571-14.286 24.858-14.286 10 0 19.428 5.714 24.571 14.286 5.429-8.571 14.857-14.286 24.858-14.286 10 0 19.428 5.714 24.857 14.286 5.143-8.571 14.571-14.286 24.572-14.286 10.857 0 20.857 6.572 25.714 16 43.427-36.286 68.569-92 71.426-148.286zm10.572-99.714c0-53.714-34.571-105.714-92.572-105.714-30.285 0-58.571 15.143-78.857 36.857C240.862 183.812 233.41 254 302.286 254c28.805 0 97.357-28.538 84.286 36.857 28.857-26 45.714-65.714 45.714-104.571z"],"think-peaks":[576,512,[],"f731","M465.4 409.4l87.1-150.2-32-.3-55.1 95L259.2 0 23 407.4l32 .3L259.2 55.6zm-355.3-44.1h32.1l117.4-202.5L463 511.9l32.5.1-235.8-404.6z"],"trade-federation":[496,512,[],"f513","M248 8.8c-137 0-248 111-248 248s111 248 248 248 248-111 248-248-111-248-248-248zm0 482.8c-129.7 0-234.8-105.1-234.8-234.8S118.3 22 248 22s234.8 105.1 234.8 234.8S377.7 491.6 248 491.6zm155.1-328.5v-46.8H209.3V198H54.2l36.7 46h117.7v196.8h48.8V245h83.3v-47h-83.3v-34.8h145.7zm-73.3 45.1v23.9h-82.9v197.4h-26.8V232.1H96.3l-20.1-23.9h143.9v-80.6h171.8V152h-145v56.2zm-161.3-69l-12.4-20.7 2.1 23.8-23.5 5.4 23.3 5.4-2.1 24 12.3-20.5 22.2 9.5-15.7-18.1 15.8-18.1zm-29.6-19.7l9.3-11.5-12.7 5.9-8-12.4 1.7 13.9-14.3 3.8 13.7 2.7-.8 14.7 6.8-12.2 13.8 5.3zm165.4 145.2l-13.1 5.6-7.3-12.2 1.3 14.2-13.9 3.2 13.9 3.2-1.2 14.2 7.3-12.2 13.1 5.5-9.4-10.7zm106.9-77.2l-20.9 9.1-12-19.6 2.2 22.7-22.3 5.4 22.2 4.9-1.8 22.9 11.5-19.6 21.2 8.8-15.1-17zM248 29.9c-125.3 0-226.9 101.6-226.9 226.9S122.7 483.7 248 483.7s226.9-101.6 226.9-226.9S373.3 29.9 248 29.9zM342.6 196v51h-83.3v195.7h-52.7V245.9H89.9l-40-49.9h157.4v-81.6h197.8v50.7H259.4V196zM248 43.2c60.3 0 114.8 25 153.6 65.2H202.5V190H45.1C73.1 104.8 153.4 43.2 248 43.2zm0 427.1c-117.9 0-213.6-95.6-213.6-213.5 0-21.2 3.1-41.8 8.9-61.1L87.1 252h114.7v196.8h64.6V253h83.3v-62.7h-83.2v-19.2h145.6v-50.8c30.8 37 49.3 84.6 49.3 136.5.1 117.9-95.5 213.5-213.4 213.5zM178.8 275l-11-21.4 1.7 24.5-23.7 3.9 23.8 5.9-3.7 23.8 13-20.9 21.5 10.8-15.8-18.8 16.9-17.1z"],trello:[448,512,[],"f181","M392.3 32H56.1C25.1 32 0 57.1 0 88c-.1 0 0-4 0 336 0 30.9 25.1 56 56 56h336.2c30.8-.2 55.7-25.2 55.7-56V88c.1-30.8-24.8-55.8-55.6-56zM197 371.3c-.2 14.7-12.1 26.6-26.9 26.6H87.4c-14.8.1-26.9-11.8-27-26.6V117.1c0-14.8 12-26.9 26.9-26.9h82.9c14.8 0 26.9 12 26.9 26.9v254.2zm193.1-112c0 14.8-12 26.9-26.9 26.9h-81c-14.8 0-26.9-12-26.9-26.9V117.2c0-14.8 12-26.9 26.8-26.9h81.1c14.8 0 26.9 12 26.9 26.9v142.1z"],tripadvisor:[576,512,[],"f262","M166.4 280.521c0 13.236-10.73 23.966-23.966 23.966s-23.966-10.73-23.966-23.966 10.73-23.966 23.966-23.966 23.966 10.729 23.966 23.966zm264.962-23.956c-13.23 0-23.956 10.725-23.956 23.956 0 13.23 10.725 23.956 23.956 23.956 13.23 0 23.956-10.725 23.956-23.956-.001-13.231-10.726-23.956-23.956-23.956zm89.388 139.49c-62.667 49.104-153.276 38.109-202.379-24.559l-30.979 46.325-30.683-45.939c-48.277 60.39-135.622 71.891-197.885 26.055-64.058-47.158-77.759-137.316-30.601-201.374A186.762 186.762 0 0 0 0 139.416l90.286-.05a358.48 358.48 0 0 1 197.065-54.03 350.382 350.382 0 0 1 192.181 53.349l96.218.074a185.713 185.713 0 0 0-28.352 57.649c46.793 62.747 34.964 151.37-26.648 199.647zM259.366 281.761c-.007-63.557-51.535-115.075-115.092-115.068C80.717 166.7 29.2 218.228 29.206 281.785c.007 63.557 51.535 115.075 115.092 115.068 63.513-.075 114.984-51.539 115.068-115.052v-.04zm28.591-10.455c5.433-73.44 65.51-130.884 139.12-133.022a339.146 339.146 0 0 0-139.727-27.812 356.31 356.31 0 0 0-140.164 27.253c74.344 1.582 135.299 59.424 140.771 133.581zm251.706-28.767c-21.992-59.634-88.162-90.148-147.795-68.157-59.634 21.992-90.148 88.162-68.157 147.795v.032c22.038 59.607 88.198 90.091 147.827 68.113 59.615-22.004 90.113-88.162 68.125-147.783zm-326.039 37.975v.115c-.057 39.328-31.986 71.163-71.314 71.106-39.328-.057-71.163-31.986-71.106-71.314.057-39.328 31.986-71.163 71.314-71.106 39.259.116 71.042 31.94 71.106 71.199zm-24.512 0v-.084c-.051-25.784-20.994-46.645-46.778-46.594-25.784.051-46.645 20.994-46.594 46.777.051 25.784 20.994 46.645 46.777 46.594 25.726-.113 46.537-20.968 46.595-46.693zm313.423 0v.048c-.02 39.328-31.918 71.194-71.247 71.173s-71.194-31.918-71.173-71.247c.02-39.328 31.918-71.194 71.247-71.173 39.29.066 71.121 31.909 71.173 71.199zm-24.504-.008c-.009-25.784-20.918-46.679-46.702-46.67-25.784.009-46.679 20.918-46.67 46.702.009 25.784 20.918 46.678 46.702 46.67 25.765-.046 46.636-20.928 46.67-46.693v-.009z"],tumblr:[320,512,[],"f173","M309.8 480.3c-13.6 14.5-50 31.7-97.4 31.7-120.8 0-147-88.8-147-140.6v-144H17.9c-5.5 0-10-4.5-10-10v-68c0-7.2 4.5-13.6 11.3-16 62-21.8 81.5-76 84.3-117.1.8-11 6.5-16.3 16.1-16.3h70.9c5.5 0 10 4.5 10 10v115.2h83c5.5 0 10 4.4 10 9.9v81.7c0 5.5-4.5 10-10 10h-83.4V360c0 34.2 23.7 53.6 68 35.8 4.8-1.9 9-3.2 12.7-2.2 3.5.9 5.8 3.4 7.4 7.9l22 64.3c1.8 5 3.3 10.6-.4 14.5z"],"tumblr-square":[448,512,[],"f174","M400 32H48C21.5 32 0 53.5 0 80v352c0 26.5 21.5 48 48 48h352c26.5 0 48-21.5 48-48V80c0-26.5-21.5-48-48-48zm-82.3 364.2c-8.5 9.1-31.2 19.8-60.9 19.8-75.5 0-91.9-55.5-91.9-87.9v-90h-29.7c-3.4 0-6.2-2.8-6.2-6.2v-42.5c0-4.5 2.8-8.5 7.1-10 38.8-13.7 50.9-47.5 52.7-73.2.5-6.9 4.1-10.2 10-10.2h44.3c3.4 0 6.2 2.8 6.2 6.2v72h51.9c3.4 0 6.2 2.8 6.2 6.2v51.1c0 3.4-2.8 6.2-6.2 6.2h-52.1V321c0 21.4 14.8 33.5 42.5 22.4 3-1.2 5.6-2 8-1.4 2.2.5 3.6 2.1 4.6 4.9l13.8 40.2c1 3.2 2 6.7-.3 9.1z"],twitch:[512,512,[],"f1e8","M391.17,103.47H352.54v109.7h38.63ZM285,103H246.37V212.75H285ZM120.83,0,24.31,91.42V420.58H140.14V512l96.53-91.42h77.25L487.69,256V0ZM449.07,237.75l-77.22,73.12H294.61l-67.6,64v-64H140.14V36.58H449.07Z"],twitter:[512,512,[],"f099","M459.37 151.716c.325 4.548.325 9.097.325 13.645 0 138.72-105.583 298.558-298.558 298.558-59.452 0-114.68-17.219-161.137-47.106 8.447.974 16.568 1.299 25.34 1.299 49.055 0 94.213-16.568 130.274-44.832-46.132-.975-84.792-31.188-98.112-72.772 6.498.974 12.995 1.624 19.818 1.624 9.421 0 18.843-1.3 27.614-3.573-48.081-9.747-84.143-51.98-84.143-102.985v-1.299c13.969 7.797 30.214 12.67 47.431 13.319-28.264-18.843-46.781-51.005-46.781-87.391 0-19.492 5.197-37.36 14.294-52.954 51.655 63.675 129.3 105.258 216.365 109.807-1.624-7.797-2.599-15.918-2.599-24.04 0-57.828 46.782-104.934 104.934-104.934 30.213 0 57.502 12.67 76.67 33.137 23.715-4.548 46.456-13.32 66.599-25.34-7.798 24.366-24.366 44.833-46.132 57.827 21.117-2.273 41.584-8.122 60.426-16.243-14.292 20.791-32.161 39.308-52.628 54.253z"],"twitter-square":[448,512,[],"f081","M400 32H48C21.5 32 0 53.5 0 80v352c0 26.5 21.5 48 48 48h352c26.5 0 48-21.5 48-48V80c0-26.5-21.5-48-48-48zm-48.9 158.8c.2 2.8.2 5.7.2 8.5 0 86.7-66 186.6-186.6 186.6-37.2 0-71.7-10.8-100.7-29.4 5.3.6 10.4.8 15.8.8 30.7 0 58.9-10.4 81.4-28-28.8-.6-53-19.5-61.3-45.5 10.1 1.5 19.2 1.5 29.6-1.2-30-6.1-52.5-32.5-52.5-64.4v-.8c8.7 4.9 18.9 7.9 29.6 8.3a65.447 65.447 0 0 1-29.2-54.6c0-12.2 3.2-23.4 8.9-33.1 32.3 39.8 80.8 65.8 135.2 68.6-9.3-44.5 24-80.6 64-80.6 18.9 0 35.9 7.9 47.9 20.7 14.8-2.8 29-8.3 41.6-15.8-4.9 15.2-15.2 28-28.8 36.1 13.2-1.4 26-5.1 37.8-10.2-8.9 13.1-20.1 24.7-32.9 34z"],typo3:[448,512,[],"f42b","M178.7 78.4c0-24.7 5.4-32.4 13.9-39.4-69.5 8.5-149.3 34-176.3 66.4-5.4 7.7-9.3 20.8-9.3 37.1C7 246 113.8 480 191.1 480c36.3 0 97.3-59.5 146.7-139-7 2.3-11.6 2.3-18.5 2.3-57.2 0-140.6-198.5-140.6-264.9zM301.5 32c-30.1 0-41.7 5.4-41.7 36.3 0 66.4 53.8 198.5 101.7 198.5 26.3 0 78.8-99.7 78.8-182.3 0-40.9-67-52.5-138.8-52.5z"],uber:[448,512,[],"f402","M414.1 32H33.9C15.2 32 0 47.2 0 65.9V446c0 18.8 15.2 34 33.9 34H414c18.7 0 33.9-15.2 33.9-33.9V65.9C448 47.2 432.8 32 414.1 32zM237.6 391.1C163 398.6 96.4 344.2 88.9 269.6h94.4V290c0 3.7 3 6.8 6.8 6.8H258c3.7 0 6.8-3 6.8-6.8v-67.9c0-3.7-3-6.8-6.8-6.8h-67.9c-3.7 0-6.8 3-6.8 6.8v20.4H88.9c7-69.4 65.4-122.2 135.1-122.2 69.7 0 128.1 52.8 135.1 122.2 7.5 74.5-46.9 141.1-121.5 148.6z"],ubuntu:[496,512,[],"f7df","M248 8C111 8 0 119 0 256s111 248 248 248 248-111 248-248S385 8 248 8zm52.7 93c8.8-15.2 28.3-20.5 43.5-11.7 15.3 8.8 20.5 28.3 11.7 43.6-8.8 15.2-28.3 20.5-43.5 11.7-15.3-8.9-20.5-28.4-11.7-43.6zM87.4 287.9c-17.6 0-31.9-14.3-31.9-31.9 0-17.6 14.3-31.9 31.9-31.9 17.6 0 31.9 14.3 31.9 31.9 0 17.6-14.3 31.9-31.9 31.9zm28.1 3.1c22.3-17.9 22.4-51.9 0-69.9 8.6-32.8 29.1-60.7 56.5-79.1l23.7 39.6c-51.5 36.3-51.5 112.5 0 148.8L172 370c-27.4-18.3-47.8-46.3-56.5-79zm228.7 131.7c-15.3 8.8-34.7 3.6-43.5-11.7-8.8-15.3-3.6-34.8 11.7-43.6 15.2-8.8 34.7-3.6 43.5 11.7 8.8 15.3 3.6 34.8-11.7 43.6zm.3-69.5c-26.7-10.3-56.1 6.6-60.5 35-5.2 1.4-48.9 14.3-96.7-9.4l22.5-40.3c57 26.5 123.4-11.7 128.9-74.4l46.1.7c-2.3 34.5-17.3 65.5-40.3 88.4zm-5.9-105.3c-5.4-62-71.3-101.2-128.9-74.4l-22.5-40.3c47.9-23.7 91.5-10.8 96.7-9.4 4.4 28.3 33.8 45.3 60.5 35 23.1 22.9 38 53.9 40.2 88.5l-46 .6z"],uikit:[448,512,[],"f403","M443.9 128v256L218 512 0 384V169.7l87.6 45.1v117l133.5 75.5 135.8-75.5v-151l-101.1-57.6 87.6-53.1L443.9 128zM308.6 49.1L223.8 0l-88.6 54.8 86 47.3 87.4-53z"],umbraco:[510,512,[],"f8e8","M255.35 8C118.36 7.83 7.14 118.72 7 255.68c-.07 137 111 248.2 248 248.27 136.85 0 247.82-110.7 248-247.67S392.34 8.17 255.35 8zm145 266q-1.14 40.68-14 65t-43.51 35q-30.61 10.7-85.45 10.47h-4.6q-54.78.22-85.44-10.47t-43.52-35q-12.85-24.36-14-65a224.81 224.81 0 0 1 0-30.71 418.37 418.37 0 0 1 3.6-43.88c1.88-13.39 3.57-22.58 5.4-32 1-4.88 1.28-6.42 1.82-8.45a5.09 5.09 0 0 1 4.9-3.89h.69l32 5a5.07 5.07 0 0 1 4.16 5 5 5 0 0 1 0 .77l-1.7 8.78q-2.41 13.25-4.84 33.68a380.62 380.62 0 0 0-2.64 42.15q-.28 40.43 8.13 59.83a43.87 43.87 0 0 0 31.31 25.18A243 243 0 0 0 250 340.6h10.25a242.64 242.64 0 0 0 57.27-5.16 43.86 43.86 0 0 0 31.15-25.23q8.53-19.42 8.13-59.78a388 388 0 0 0-2.6-42.15q-2.48-20.38-4.89-33.68l-1.69-8.78a5 5 0 0 1 0-.77 5 5 0 0 1 4.2-5l32-5h.82a5 5 0 0 1 4.9 3.89c.55 2.05.81 3.57 1.83 8.45 1.82 9.62 3.52 18.78 5.39 32a415.71 415.71 0 0 1 3.61 43.88 228.06 228.06 0 0 1-.04 30.73z"],uniregistry:[384,512,[],"f404","M192 480c39.5 0 76.2-11.8 106.8-32.2H85.3C115.8 468.2 152.5 480 192 480zm-89.1-193.1v-12.4H0v12.4c0 2.5 0 5 .1 7.4h103.1c-.2-2.4-.3-4.9-.3-7.4zm20.5 57H8.5c2.6 8.5 5.8 16.8 9.6 24.8h138.3c-12.9-5.7-24.1-14.2-33-24.8zm-17.7-34.7H1.3c.9 7.6 2.2 15 3.9 22.3h109.7c-4-6.9-7.2-14.4-9.2-22.3zm-2.8-69.3H0v17.3h102.9zm0-173.2H0v4.9h102.9zm0-34.7H0v2.5h102.9zm0 69.3H0v7.4h102.9zm0 104H0v14.8h102.9zm0-69.3H0v9.9h102.9zm0 34.6H0V183h102.9zm166.2 160.9h109.7c1.8-7.3 3.1-14.7 3.9-22.3H278.3c-2.1 7.9-5.2 15.4-9.2 22.3zm12-185.7H384V136H281.1zm0 37.2H384v-12.4H281.1zm0-74.3H384v-7.4H281.1zm0-76.7v2.5H384V32zm-203 410.9h227.7c11.8-8.7 22.7-18.6 32.2-29.7H44.9c9.6 11 21.4 21 33.2 29.7zm203-371.3H384v-4.9H281.1zm0 148.5H384v-14.8H281.1zM38.8 405.7h305.3c6.7-8.5 12.6-17.6 17.8-27.2H23c5.2 9.6 9.2 18.7 15.8 27.2zm188.8-37.1H367c3.7-8 5.8-16.2 8.5-24.8h-115c-8.8 10.7-20.1 19.2-32.9 24.8zm53.5-81.7c0 2.5-.1 5-.4 7.4h103.1c.1-2.5.2-4.9.2-7.4v-12.4H281.1zm0-29.7H384v-17.3H281.1z"],unity:[576,512,[],"f949","M498.11,206.4,445.31,14.72,248.2,66.08,219,116.14l-59.2-.43L15.54,256,159.82,396.32l59.17-.43,29.24,50,197.08,51.36,52.8-191.62-30-49.63ZM223.77,124.2,374.55,86.51,288,232.33H114.87Zm0,263.63L114.87,279.71H288l86.55,145.81Zm193,14L330.17,256l86.58-145.84L458.56,256Z"],untappd:[640,512,[],"f405","M401.3 49.9c-79.8 160.1-84.6 152.5-87.9 173.2l-5.2 32.8c-1.9 12-6.6 23.5-13.7 33.4L145.6 497.1c-7.6 10.6-20.4 16.2-33.4 14.6-40.3-5-77.8-32.2-95.3-68.5-5.7-11.8-4.5-25.8 3.1-36.4l148.9-207.9c7.1-9.9 16.4-18 27.2-23.7l29.3-15.5c18.5-9.8 9.7-11.9 135.6-138.9 1-4.8 1-7.3 3.6-8 3-.7 6.6-1 6.3-4.6l-.4-4.6c-.2-1.9 1.3-3.6 3.2-3.6 4.5-.1 13.2 1.2 25.6 10 12.3 8.9 16.4 16.8 17.7 21.1.6 1.8-.6 3.7-2.4 4.2l-4.5 1.1c-3.4.9-2.5 4.4-2.3 7.4.1 2.8-2.3 3.6-6.5 6.1zM230.1 36.4c3.4.9 2.5 4.4 2.3 7.4-.2 2.7 2.1 3.5 6.4 6 7.9 15.9 15.3 30.5 22.2 44 .7 1.3 2.3 1.5 3.3.5 11.2-12 24.6-26.2 40.5-42.6 1.3-1.4 1.4-3.5.1-4.9-8-8.2-16.5-16.9-25.6-26.1-1-4.7-1-7.3-3.6-8-3-.8-6.6-1-6.3-4.6.3-3.3 1.4-8.1-2.8-8.2-4.5-.1-13.2 1.1-25.6 10-12.3 8.9-16.4 16.8-17.7 21.1-1.4 4.2 3.6 4.6 6.8 5.4zM620 406.7L471.2 198.8c-13.2-18.5-26.6-23.4-56.4-39.1-11.2-5.9-14.2-10.9-30.5-28.9-1-1.1-2.9-.9-3.6.5-46.3 88.8-47.1 82.8-49 94.8-1.7 10.7-1.3 20 .3 29.8 1.9 12 6.6 23.5 13.7 33.4l148.9 207.9c7.6 10.6 20.2 16.2 33.1 14.7 40.3-4.9 78-32 95.7-68.6 5.4-11.9 4.3-25.9-3.4-36.6z"],ups:[384,512,[],"f7e0","M103.2 303c-5.2 3.6-32.6 13.1-32.6-19V180H37.9v102.6c0 74.9 80.2 51.1 97.9 39V180h-32.6zM4 74.82v220.9c0 103.7 74.9 135.2 187.7 184.1 112.4-48.9 187.7-80.2 187.7-184.1V74.82c-116.3-61.6-281.8-49.6-375.4 0zm358.1 220.9c0 86.6-53.2 113.6-170.4 165.3-117.5-51.8-170.5-78.7-170.5-165.3v-126.4c102.3-93.8 231.6-100 340.9-89.8zm-209.6-107.4v212.8h32.7v-68.7c24.4 7.3 71.7-2.6 71.7-78.5 0-97.4-80.7-80.92-104.4-65.6zm32.7 117.3v-100.3c8.4-4.2 38.4-12.7 38.4 49.3 0 67.9-36.4 51.8-38.4 51zm79.1-86.4c.1 47.3 51.6 42.5 52.2 70.4.6 23.5-30.4 23-50.8 4.9v30.1c36.2 21.5 81.9 8.1 83.2-33.5 1.7-51.5-54.1-46.6-53.4-73.2.6-20.3 30.6-20.5 48.5-2.2v-28.4c-28.5-22-79.9-9.2-79.7 31.9z"],usb:[640,512,[],"f287","M641.5 256c0 3.1-1.7 6.1-4.5 7.5L547.9 317c-1.4.8-2.8 1.4-4.5 1.4-1.4 0-3.1-.3-4.5-1.1-2.8-1.7-4.5-4.5-4.5-7.8v-35.6H295.7c25.3 39.6 40.5 106.9 69.6 106.9H392V354c0-5 3.9-8.9 8.9-8.9H490c5 0 8.9 3.9 8.9 8.9v89.1c0 5-3.9 8.9-8.9 8.9h-89.1c-5 0-8.9-3.9-8.9-8.9v-26.7h-26.7c-75.4 0-81.1-142.5-124.7-142.5H140.3c-8.1 30.6-35.9 53.5-69 53.5C32 327.3 0 295.3 0 256s32-71.3 71.3-71.3c33.1 0 61 22.8 69 53.5 39.1 0 43.9 9.5 74.6-60.4C255 88.7 273 95.7 323.8 95.7c7.5-20.9 27-35.6 50.4-35.6 29.5 0 53.5 23.9 53.5 53.5s-23.9 53.5-53.5 53.5c-23.4 0-42.9-14.8-50.4-35.6H294c-29.1 0-44.3 67.4-69.6 106.9h310.1v-35.6c0-3.3 1.7-6.1 4.5-7.8 2.8-1.7 6.4-1.4 8.9.3l89.1 53.5c2.8 1.1 4.5 4.1 4.5 7.2z"],usps:[576,512,[],"f7e1","M460.3 241.7c25.8-41.3 15.2-48.8-11.7-48.8h-27c-.1 0-1.5-1.4-10.9 8-11.2 5.6-37.9 6.3-37.9 8.7 0 4.5 70.3-3.1 88.1 0 9.5 1.5-1.5 20.4-4.4 32-.5 4.5 2.4 2.3 3.8.1zm-112.1 22.6c64-21.3 97.3-23.9 102-26.2 4.4-2.9-4.4-6.6-26.2-5.8-51.7 2.2-137.6 37.1-172.6 53.9l-30.7-93.3h196.6c-2.7-28.2-152.9-22.6-337.9-22.6L27 415.8c196.4-97.3 258.9-130.3 321.2-151.5zM94.7 96c253.3 53.7 330 65.7 332.1 85.2 36.4 0 45.9 0 52.4 6.6 21.1 19.7-14.6 67.7-14.6 67.7-4.4 2.9-406.4 160.2-406.4 160.2h423.1L549 96z"],ussunnah:[512,512,[],"f407","M156.8 285.1l5.7 14.4h-8.2c-1.3-3.2-3.1-7.7-3.8-9.5-2.5-6.3-1.1-8.4 0-10 1.9-2.7 3.2-4.4 3.6-5.2 0 2.2.8 5.7 2.7 10.3zm297.3 18.8c-2.1 13.8-5.7 27.1-10.5 39.7l43 23.4-44.8-18.8c-5.3 13.2-12 25.6-19.9 37.2l34.2 30.2-36.8-26.4c-8.4 11.8-18 22.6-28.7 32.3l24.9 34.7-28.1-31.8c-11 9.6-23.1 18-36.1 25.1l15.7 37.2-19.3-35.3c-13.1 6.8-27 12.1-41.6 15.9l6.7 38.4-10.5-37.4c-14.3 3.4-29.2 5.3-44.5 5.4L256 512l-1.9-38.4c-15.3-.1-30.2-2-44.5-5.3L199 505.6l6.7-38.2c-14.6-3.7-28.6-9.1-41.7-15.8l-19.2 35.1 15.6-37c-13-7-25.2-15.4-36.2-25.1l-27.9 31.6 24.7-34.4c-10.7-9.7-20.4-20.5-28.8-32.3l-36.5 26.2 33.9-29.9c-7.9-11.6-14.6-24.1-20-37.3l-44.4 18.7L67.8 344c-4.8-12.7-8.4-26.1-10.5-39.9l-51 9 50.3-14.2c-1.1-8.5-1.7-17.1-1.7-25.9 0-4.7.2-9.4.5-14.1L0 256l56-2.8c1.3-13.1 3.8-25.8 7.5-38.1L6.4 199l58.9 10.4c4-12 9.1-23.5 15.2-34.4l-55.1-30 58.3 24.6C90 159 97.2 149.2 105.3 140L55.8 96.4l53.9 38.7c8.1-8.6 17-16.5 26.6-23.6l-40-55.6 45.6 51.6c9.5-6.6 19.7-12.3 30.3-17.2l-27.3-64.9 33.8 62.1c10.5-4.4 21.4-7.9 32.7-10.4L199 6.4l19.5 69.2c11-2.1 22.3-3.2 33.8-3.4L256 0l3.6 72.2c11.5.2 22.8 1.4 33.8 3.5L313 6.4l-12.4 70.7c11.3 2.6 22.2 6.1 32.6 10.5l33.9-62.2-27.4 65.1c10.6 4.9 20.7 10.7 30.2 17.2l45.8-51.8-40.1 55.9c9.5 7.1 18.4 15 26.5 23.6l54.2-38.9-49.7 43.9c8 9.1 15.2 18.9 21.5 29.4l58.7-24.7-55.5 30.2c6.1 10.9 11.1 22.3 15.1 34.3l59.3-10.4-57.5 16.2c3.7 12.2 6.2 24.9 7.5 37.9L512 256l-56 2.8c.3 4.6.5 9.3.5 14.1 0 8.7-.6 17.3-1.6 25.8l50.7 14.3-51.5-9.1zm-21.8-31c0-97.5-79-176.5-176.5-176.5s-176.5 79-176.5 176.5 79 176.5 176.5 176.5 176.5-79 176.5-176.5zm-24 0c0 84.3-68.3 152.6-152.6 152.6s-152.6-68.3-152.6-152.6 68.3-152.6 152.6-152.6 152.6 68.3 152.6 152.6zM195 241c0 2.1 1.3 3.8 3.6 5.1 3.3 1.9 6.2 4.6 8.2 8.2 2.8-5.7 4.3-9.5 4.3-11.2 0-2.2-1.1-4.4-3.2-7-2.1-2.5-3.2-5.2-3.3-7.7-6.5 6.8-9.6 10.9-9.6 12.6zm-40.7-19c0 2.1 1.3 3.8 3.6 5.1 3.5 1.9 6.2 4.6 8.2 8.2 2.8-5.7 4.3-9.5 4.3-11.2 0-2.2-1.1-4.4-3.2-7-2.1-2.5-3.2-5.2-3.3-7.7-6.5 6.8-9.6 10.9-9.6 12.6zm-19 0c0 2.1 1.3 3.8 3.6 5.1 3.3 1.9 6.2 4.6 8.2 8.2 2.8-5.7 4.3-9.5 4.3-11.2 0-2.2-1.1-4.4-3.2-7-2.1-2.5-3.2-5.2-3.3-7.7-6.4 6.8-9.6 10.9-9.6 12.6zm204.9 87.9c-8.4-3-8.7-6.8-8.7-15.6V182c-8.2 12.5-14.2 18.6-18 18.6 6.3 14.4 9.5 23.9 9.5 28.3v64.3c0 2.2-2.2 6.5-4.7 6.5h-18c-2.8-7.5-10.2-26.9-15.3-40.3-2 2.5-7.2 9.2-10.7 13.7 2.4 1.6 4.1 3.6 5.2 6.3 2.6 6.7 6.4 16.5 7.9 20.2h-9.2c-3.9-10.4-9.6-25.4-11.8-31.1-2 2.5-7.2 9.2-10.7 13.7 2.4 1.6 4.1 3.6 5.2 6.3.8 2 2.8 7.3 4.3 10.9H256c-1.5-4.1-5.6-14.6-8.4-22-2 2.5-7.2 9.2-10.7 13.7 2.5 1.6 4.3 3.6 5.2 6.3.2.6.5 1.4.6 1.7H225c-4.6-13.9-11.4-27.7-11.4-34.1 0-2.2.3-5.1 1.1-8.2-8.8 10.8-14 15.9-14 25 0 7.5 10.4 28.3 10.4 33.3 0 1.7-.5 3.3-1.4 4.9-9.6-12.7-15.5-20.7-18.8-20.7h-12l-11.2-28c-3.8-9.6-5.7-16-5.7-18.8 0-3.8.5-7.7 1.7-12.2-1 1.3-3.7 4.7-5.5 7.1-.8-2.1-3.1-7.7-4.6-11.5-2.1 2.5-7.5 9.1-11.2 13.6.9 2.3 3.3 8.1 4.9 12.2-2.5 3.3-9.1 11.8-13.6 17.7-4 5.3-5.8 13.3-2.7 21.8 2.5 6.7 2 7.9-1.7 14.1H191c5.5 0 14.3 14 15.5 22 13.2-16 15.4-19.6 16.8-21.6h107c3.9 0 7.2-1.9 9.9-5.8zm20.1-26.6V181.7c-9 12.5-15.9 18.6-20.7 18.6 7.1 14.4 10.7 23.9 10.7 28.3v66.3c0 17.5 8.6 20.4 24 20.4 8.1 0 12.5-.8 13.7-2.7-4.3-1.6-7.6-2.5-9.9-3.3-8.1-3.2-17.8-7.4-17.8-26z"],vaadin:[448,512,[],"f408","M224.5 140.7c1.5-17.6 4.9-52.7 49.8-52.7h98.6c20.7 0 32.1-7.8 32.1-21.6V54.1c0-12.2 9.3-22.1 21.5-22.1S448 41.9 448 54.1v36.5c0 42.9-21.5 62-66.8 62H280.7c-30.1 0-33 14.7-33 27.1 0 1.3-.1 2.5-.2 3.7-.7 12.3-10.9 22.2-23.4 22.2s-22.7-9.8-23.4-22.2c-.1-1.2-.2-2.4-.2-3.7 0-12.3-3-27.1-33-27.1H66.8c-45.3 0-66.8-19.1-66.8-62V54.1C0 41.9 9.4 32 21.6 32s21.5 9.9 21.5 22.1v12.3C43.1 80.2 54.5 88 75.2 88h98.6c44.8 0 48.3 35.1 49.8 52.7h.9zM224 456c11.5 0 21.4-7 25.7-16.3 1.1-1.8 97.1-169.6 98.2-171.4 11.9-19.6-3.2-44.3-27.2-44.3-13.9 0-23.3 6.4-29.8 20.3L224 362l-66.9-117.7c-6.4-13.9-15.9-20.3-29.8-20.3-24 0-39.1 24.6-27.2 44.3 1.1 1.9 97.1 169.6 98.2 171.4 4.3 9.3 14.2 16.3 25.7 16.3z"],viacoin:[384,512,[],"f237","M384 32h-64l-80.7 192h-94.5L64 32H0l48 112H0v48h68.5l13.8 32H0v48h102.8L192 480l89.2-208H384v-48h-82.3l13.8-32H384v-48h-48l48-112zM192 336l-27-64h54l-27 64z"],viadeo:[448,512,[],"f2a9","M276.2 150.5v.7C258.3 98.6 233.6 47.8 205.4 0c43.3 29.2 67 100 70.8 150.5zm32.7 121.7c7.6 18.2 11 37.5 11 57 0 77.7-57.8 141-137.8 139.4l3.8-.3c74.2-46.7 109.3-118.6 109.3-205.1 0-38.1-6.5-75.9-18.9-112 1 11.7 1 23.7 1 35.4 0 91.8-18.1 241.6-116.6 280C95 455.2 49.4 398 49.4 329.2c0-75.6 57.4-142.3 135.4-142.3 16.8 0 33.7 3.1 49.1 9.6 1.7-15.1 6.5-29.9 13.4-43.3-19.9-7.2-41.2-10.7-62.5-10.7-161.5 0-238.7 195.9-129.9 313.7 67.9 74.6 192 73.9 259.8 0 56.6-61.3 60.9-142.4 36.4-201-12.7 8-27.1 13.9-42.2 17zM418.1 11.7c-31 66.5-81.3 47.2-115.8 80.1-12.4 12-20.6 34-20.6 50.5 0 14.1 4.5 27.1 12 38.8 47.4-11 98.3-46 118.2-90.7-.7 5.5-4.8 14.4-7.2 19.2-20.3 35.7-64.6 65.6-99.7 84.9 14.8 14.4 33.7 25.8 55 25.8 79 0 110.1-134.6 58.1-208.6z"],"viadeo-square":[448,512,[],"f2aa","M400 32H48C21.5 32 0 53.5 0 80v352c0 26.5 21.5 48 48 48h352c26.5 0 48-21.5 48-48V80c0-26.5-21.5-48-48-48zM280.7 381.2c-42.4 46.2-120 46.6-162.4 0-68-73.6-19.8-196.1 81.2-196.1 13.3 0 26.6 2.1 39.1 6.7-4.3 8.4-7.3 17.6-8.4 27.1-9.7-4.1-20.2-6-30.7-6-48.8 0-84.6 41.7-84.6 88.9 0 43 28.5 78.7 69.5 85.9 61.5-24 72.9-117.6 72.9-175 0-7.3 0-14.8-.6-22.1-11.2-32.9-26.6-64.6-44.2-94.5 27.1 18.3 41.9 62.5 44.2 94.1v.4c7.7 22.5 11.8 46.2 11.8 70 0 54.1-21.9 99-68.3 128.2l-2.4.2c50 1 86.2-38.6 86.2-87.2 0-12.2-2.1-24.3-6.9-35.7 9.5-1.9 18.5-5.6 26.4-10.5 15.3 36.6 12.6 87.3-22.8 125.6zM309 233.7c-13.3 0-25.1-7.1-34.4-16.1 21.9-12 49.6-30.7 62.3-53 1.5-3 4.1-8.6 4.5-12-12.5 27.9-44.2 49.8-73.9 56.7-4.7-7.3-7.5-15.5-7.5-24.3 0-10.3 5.2-24.1 12.9-31.6 21.6-20.5 53-8.5 72.4-50 32.5 46.2 13.1 130.3-36.3 130.3z"],viber:[512,512,[],"f409","M444 49.9C431.3 38.2 379.9.9 265.3.4c0 0-135.1-8.1-200.9 52.3C27.8 89.3 14.9 143 13.5 209.5c-1.4 66.5-3.1 191.1 117 224.9h.1l-.1 51.6s-.8 20.9 13 25.1c16.6 5.2 26.4-10.7 42.3-27.8 8.7-9.4 20.7-23.2 29.8-33.7 82.2 6.9 145.3-8.9 152.5-11.2 16.6-5.4 110.5-17.4 125.7-142 15.8-128.6-7.6-209.8-49.8-246.5zM457.9 287c-12.9 104-89 110.6-103 115.1-6 1.9-61.5 15.7-131.2 11.2 0 0-52 62.7-68.2 79-5.3 5.3-11.1 4.8-11-5.7 0-6.9.4-85.7.4-85.7-.1 0-.1 0 0 0-101.8-28.2-95.8-134.3-94.7-189.8 1.1-55.5 11.6-101 42.6-131.6 55.7-50.5 170.4-43 170.4-43 96.9.4 143.3 29.6 154.1 39.4 35.7 30.6 53.9 103.8 40.6 211.1zm-139-80.8c.4 8.6-12.5 9.2-12.9.6-1.1-22-11.4-32.7-32.6-33.9-8.6-.5-7.8-13.4.7-12.9 27.9 1.5 43.4 17.5 44.8 46.2zm20.3 11.3c1-42.4-25.5-75.6-75.8-79.3-8.5-.6-7.6-13.5.9-12.9 58 4.2 88.9 44.1 87.8 92.5-.1 8.6-13.1 8.2-12.9-.3zm47 13.4c.1 8.6-12.9 8.7-12.9.1-.6-81.5-54.9-125.9-120.8-126.4-8.5-.1-8.5-12.9 0-12.9 73.7.5 133 51.4 133.7 139.2zM374.9 329v.2c-10.8 19-31 40-51.8 33.3l-.2-.3c-21.1-5.9-70.8-31.5-102.2-56.5-16.2-12.8-31-27.9-42.4-42.4-10.3-12.9-20.7-28.2-30.8-46.6-21.3-38.5-26-55.7-26-55.7-6.7-20.8 14.2-41 33.3-51.8h.2c9.2-4.8 18-3.2 23.9 3.9 0 0 12.4 14.8 17.7 22.1 5 6.8 11.7 17.7 15.2 23.8 6.1 10.9 2.3 22-3.7 26.6l-12 9.6c-6.1 4.9-5.3 14-5.3 14s17.8 67.3 84.3 84.3c0 0 9.1.8 14-5.3l9.6-12c4.6-6 15.7-9.8 26.6-3.7 14.7 8.3 33.4 21.2 45.8 32.9 7 5.7 8.6 14.4 3.8 23.6z"],vimeo:[448,512,[],"f40a","M403.2 32H44.8C20.1 32 0 52.1 0 76.8v358.4C0 459.9 20.1 480 44.8 480h358.4c24.7 0 44.8-20.1 44.8-44.8V76.8c0-24.7-20.1-44.8-44.8-44.8zM377 180.8c-1.4 31.5-23.4 74.7-66 129.4-44 57.2-81.3 85.8-111.7 85.8-18.9 0-34.8-17.4-47.9-52.3-25.5-93.3-36.4-148-57.4-148-2.4 0-10.9 5.1-25.4 15.2l-15.2-19.6c37.3-32.8 72.9-69.2 95.2-71.2 25.2-2.4 40.7 14.8 46.5 51.7 20.7 131.2 29.9 151 67.6 91.6 13.5-21.4 20.8-37.7 21.8-48.9 3.5-33.2-25.9-30.9-45.8-22.4 15.9-52.1 46.3-77.4 91.2-76 33.3.9 49 22.5 47.1 64.7z"],"vimeo-square":[448,512,[],"f194","M400 32H48C21.5 32 0 53.5 0 80v352c0 26.5 21.5 48 48 48h352c26.5 0 48-21.5 48-48V80c0-26.5-21.5-48-48-48zm-16.2 149.6c-1.4 31.1-23.2 73.8-65.3 127.9-43.5 56.5-80.3 84.8-110.4 84.8-18.7 0-34.4-17.2-47.3-51.6-25.2-92.3-35.9-146.4-56.7-146.4-2.4 0-10.8 5-25.1 15.1L64 192c36.9-32.4 72.1-68.4 94.1-70.4 24.9-2.4 40.2 14.6 46 51.1 20.5 129.6 29.6 149.2 66.8 90.5 13.4-21.2 20.6-37.2 21.5-48.3 3.4-32.8-25.6-30.6-45.2-22.2 15.7-51.5 45.8-76.5 90.1-75.1 32.9 1 48.4 22.4 46.5 64z"],"vimeo-v":[448,512,[],"f27d","M447.8 153.6c-2 43.6-32.4 103.3-91.4 179.1-60.9 79.2-112.4 118.8-154.6 118.8-26.1 0-48.2-24.1-66.3-72.3C100.3 250 85.3 174.3 56.2 174.3c-3.4 0-15.1 7.1-35.2 21.1L0 168.2c51.6-45.3 100.9-95.7 131.8-98.5 34.9-3.4 56.3 20.5 64.4 71.5 28.7 181.5 41.4 208.9 93.6 126.7 18.7-29.6 28.8-52.1 30.2-67.6 4.8-45.9-35.8-42.8-63.3-31 22-72.1 64.1-107.1 126.2-105.1 45.8 1.2 67.5 31.1 64.9 89.4z"],vine:[384,512,[],"f1ca","M384 254.7v52.1c-18.4 4.2-36.9 6.1-52.1 6.1-36.9 77.4-103 143.8-125.1 156.2-14 7.9-27.1 8.4-42.7-.8C137 452 34.2 367.7 0 102.7h74.5C93.2 261.8 139 343.4 189.3 404.5c27.9-27.9 54.8-65.1 75.6-106.9-49.8-25.3-80.1-80.9-80.1-145.6 0-65.6 37.7-115.1 102.2-115.1 114.9 0 106.2 127.9 81.6 181.5 0 0-46.4 9.2-63.5-20.5 3.4-11.3 8.2-30.8 8.2-48.5 0-31.3-11.3-46.6-28.4-46.6-18.2 0-30.8 17.1-30.8 50 .1 79.2 59.4 118.7 129.9 101.9z"],vk:[576,512,[],"f189","M545 117.7c3.7-12.5 0-21.7-17.8-21.7h-58.9c-15 0-21.9 7.9-25.6 16.7 0 0-30 73.1-72.4 120.5-13.7 13.7-20 18.1-27.5 18.1-3.7 0-9.4-4.4-9.4-16.9V117.7c0-15-4.2-21.7-16.6-21.7h-92.6c-9.4 0-15 7-15 13.5 0 14.2 21.2 17.5 23.4 57.5v86.8c0 19-3.4 22.5-10.9 22.5-20 0-68.6-73.4-97.4-157.4-5.8-16.3-11.5-22.9-26.6-22.9H38.8c-16.8 0-20.2 7.9-20.2 16.7 0 15.6 20 93.1 93.1 195.5C160.4 378.1 229 416 291.4 416c37.5 0 42.1-8.4 42.1-22.9 0-66.8-3.4-73.1 15.4-73.1 8.7 0 23.7 4.4 58.7 38.1 40 40 46.6 57.9 69 57.9h58.9c16.8 0 25.3-8.4 20.4-25-11.2-34.9-86.9-106.7-90.3-111.5-8.7-11.2-6.2-16.2 0-26.2.1-.1 72-101.3 79.4-135.6z"],vnv:[640,512,[],"f40b","M104.9 352c-34.1 0-46.4-30.4-46.4-30.4L2.6 210.1S-7.8 192 13 192h32.8c10.4 0 13.2 8.7 18.8 18.1l36.7 74.5s5.2 13.1 21.1 13.1 21.1-13.1 21.1-13.1l36.7-74.5c5.6-9.5 8.4-18.1 18.8-18.1h32.8c20.8 0 10.4 18.1 10.4 18.1l-55.8 111.5S174.2 352 140 352h-35.1zm395 0c-34.1 0-46.4-30.4-46.4-30.4l-55.9-111.5S387.2 192 408 192h32.8c10.4 0 13.2 8.7 18.8 18.1l36.7 74.5s5.2 13.1 21.1 13.1 21.1-13.1 21.1-13.1l36.8-74.5c5.6-9.5 8.4-18.1 18.8-18.1H627c20.8 0 10.4 18.1 10.4 18.1l-55.9 111.5S569.3 352 535.1 352h-35.2zM337.6 192c34.1 0 46.4 30.4 46.4 30.4l55.9 111.5s10.4 18.1-10.4 18.1h-32.8c-10.4 0-13.2-8.7-18.8-18.1l-36.7-74.5s-5.2-13.1-21.1-13.1c-15.9 0-21.1 13.1-21.1 13.1l-36.7 74.5c-5.6 9.4-8.4 18.1-18.8 18.1h-32.9c-20.8 0-10.4-18.1-10.4-18.1l55.9-111.5s12.2-30.4 46.4-30.4h35.1z"],vuejs:[448,512,[],"f41f","M356.9 64.3H280l-56 88.6-48-88.6H0L224 448 448 64.3h-91.1zm-301.2 32h53.8L224 294.5 338.4 96.3h53.8L224 384.5 55.7 96.3z"],waze:[512,512,[],"f83f","M502.17 201.67C516.69 287.53 471.23 369.59 389 409.8c13 34.1-12.4 70.2-48.32 70.2a51.68 51.68 0 0 1-51.57-49c-6.44.19-64.2 0-76.33-.64A51.69 51.69 0 0 1 159 479.92c-33.86-1.36-57.95-34.84-47-67.92-37.21-13.11-72.54-34.87-99.62-70.8-13-17.28-.48-41.8 20.84-41.8 46.31 0 32.22-54.17 43.15-110.26C94.8 95.2 193.12 32 288.09 32c102.48 0 197.15 70.67 214.08 169.67zM373.51 388.28c42-19.18 81.33-56.71 96.29-102.14 40.48-123.09-64.15-228-181.71-228-83.45 0-170.32 55.42-186.07 136-9.53 48.91 5 131.35-68.75 131.35C58.21 358.6 91.6 378.11 127 389.54c24.66-21.8 63.87-15.47 79.83 14.34 14.22 1 79.19 1.18 87.9.82a51.69 51.69 0 0 1 78.78-16.42zM205.12 187.13c0-34.74 50.84-34.75 50.84 0s-50.84 34.74-50.84 0zm116.57 0c0-34.74 50.86-34.75 50.86 0s-50.86 34.75-50.86 0zm-122.61 70.69c-3.44-16.94 22.18-22.18 25.62-5.21l.06.28c4.14 21.42 29.85 44 64.12 43.07 35.68-.94 59.25-22.21 64.11-42.77 4.46-16.05 28.6-10.36 25.47 6-5.23 22.18-31.21 62-91.46 62.9-42.55 0-80.88-27.84-87.9-64.25z"],weebly:[512,512,[],"f5cc","M425.09 65.83c-39.88 0-73.28 25.73-83.66 64.33-18.16-58.06-65.5-64.33-84.95-64.33-19.78 0-66.8 6.28-85.28 64.33-10.38-38.6-43.45-64.33-83.66-64.33C38.59 65.83 0 99.72 0 143.03c0 28.96 4.18 33.27 77.17 233.48 22.37 60.57 67.77 69.35 92.74 69.35 39.23 0 70.04-19.46 85.93-53.98 15.89 34.83 46.69 54.29 85.93 54.29 24.97 0 70.36-9.1 92.74-69.67 76.55-208.65 77.5-205.58 77.5-227.2.63-48.32-36.01-83.47-86.92-83.47zm26.34 114.81l-65.57 176.44c-7.92 21.49-21.22 37.22-46.24 37.22-23.44 0-37.38-12.41-44.03-33.9l-39.28-117.42h-.95L216.08 360.4c-6.96 21.5-20.9 33.6-44.02 33.6-25.02 0-38.33-15.74-46.24-37.22L60.88 181.55c-5.38-14.83-7.92-23.91-7.92-34.5 0-16.34 15.84-29.36 38.33-29.36 18.69 0 31.99 11.8 36.11 29.05l44.03 139.82h.95l44.66-136.79c6.02-19.67 16.47-32.08 38.96-32.08s32.94 12.11 38.96 32.08l44.66 136.79h.95l44.03-139.82c4.12-17.25 17.42-29.05 36.11-29.05 22.17 0 38.33 13.32 38.33 35.71-.32 7.87-4.12 16.04-7.61 27.24z"],weibo:[512,512,[],"f18a","M407 177.6c7.6-24-13.4-46.8-37.4-41.7-22 4.8-28.8-28.1-7.1-32.8 50.1-10.9 92.3 37.1 76.5 84.8-6.8 21.2-38.8 10.8-32-10.3zM214.8 446.7C108.5 446.7 0 395.3 0 310.4c0-44.3 28-95.4 76.3-143.7C176 67 279.5 65.8 249.9 161c-4 13.1 12.3 5.7 12.3 6 79.5-33.6 140.5-16.8 114 51.4-3.7 9.4 1.1 10.9 8.3 13.1 135.7 42.3 34.8 215.2-169.7 215.2zm143.7-146.3c-5.4-55.7-78.5-94-163.4-85.7-84.8 8.6-148.8 60.3-143.4 116s78.5 94 163.4 85.7c84.8-8.6 148.8-60.3 143.4-116zM347.9 35.1c-25.9 5.6-16.8 43.7 8.3 38.3 72.3-15.2 134.8 52.8 111.7 124-7.4 24.2 29.1 37 37.4 12 31.9-99.8-55.1-195.9-157.4-174.3zm-78.5 311c-17.1 38.8-66.8 60-109.1 46.3-40.8-13.1-58-53.4-40.3-89.7 17.7-35.4 63.1-55.4 103.4-45.1 42 10.8 63.1 50.2 46 88.5zm-86.3-30c-12.9-5.4-30 .3-38 12.9-8.3 12.9-4.3 28 8.6 34 13.1 6 30.8.3 39.1-12.9 8-13.1 3.7-28.3-9.7-34zm32.6-13.4c-5.1-1.7-11.4.6-14.3 5.4-2.9 5.1-1.4 10.6 3.7 12.9 5.1 2 11.7-.3 14.6-5.4 2.8-5.2 1.1-10.9-4-12.9z"],weixin:[576,512,[],"f1d7","M385.2 167.6c6.4 0 12.6.3 18.8 1.1C387.4 90.3 303.3 32 207.7 32 100.5 32 13 104.8 13 197.4c0 53.4 29.3 97.5 77.9 131.6l-19.3 58.6 68-34.1c24.4 4.8 43.8 9.7 68.2 9.7 6.2 0 12.1-.3 18.3-.8-4-12.9-6.2-26.6-6.2-40.8-.1-84.9 72.9-154 165.3-154zm-104.5-52.9c14.5 0 24.2 9.7 24.2 24.4 0 14.5-9.7 24.2-24.2 24.2-14.8 0-29.3-9.7-29.3-24.2.1-14.7 14.6-24.4 29.3-24.4zm-136.4 48.6c-14.5 0-29.3-9.7-29.3-24.2 0-14.8 14.8-24.4 29.3-24.4 14.8 0 24.4 9.7 24.4 24.4 0 14.6-9.6 24.2-24.4 24.2zM563 319.4c0-77.9-77.9-141.3-165.4-141.3-92.7 0-165.4 63.4-165.4 141.3S305 460.7 397.6 460.7c19.3 0 38.9-5.1 58.6-9.9l53.4 29.3-14.8-48.6C534 402.1 563 363.2 563 319.4zm-219.1-24.5c-9.7 0-19.3-9.7-19.3-19.6 0-9.7 9.7-19.3 19.3-19.3 14.8 0 24.4 9.7 24.4 19.3 0 10-9.7 19.6-24.4 19.6zm107.1 0c-9.7 0-19.3-9.7-19.3-19.6 0-9.7 9.7-19.3 19.3-19.3 14.5 0 24.4 9.7 24.4 19.3.1 10-9.9 19.6-24.4 19.6z"],whatsapp:[448,512,[],"f232","M380.9 97.1C339 55.1 283.2 32 223.9 32c-122.4 0-222 99.6-222 222 0 39.1 10.2 77.3 29.6 111L0 480l117.7-30.9c32.4 17.7 68.9 27 106.1 27h.1c122.3 0 224.1-99.6 224.1-222 0-59.3-25.2-115-67.1-157zm-157 341.6c-33.2 0-65.7-8.9-94-25.7l-6.7-4-69.8 18.3L72 359.2l-4.4-7c-18.5-29.4-28.2-63.3-28.2-98.2 0-101.7 82.8-184.5 184.6-184.5 49.3 0 95.6 19.2 130.4 54.1 34.8 34.9 56.2 81.2 56.1 130.5 0 101.8-84.9 184.6-186.6 184.6zm101.2-138.2c-5.5-2.8-32.8-16.2-37.9-18-5.1-1.9-8.8-2.8-12.5 2.8-3.7 5.6-14.3 18-17.6 21.8-3.2 3.7-6.5 4.2-12 1.4-32.6-16.3-54-29.1-75.5-66-5.7-9.8 5.7-9.1 16.3-30.3 1.8-3.7.9-6.9-.5-9.7-1.4-2.8-12.5-30.1-17.1-41.2-4.5-10.8-9.1-9.3-12.5-9.5-3.2-.2-6.9-.2-10.6-.2-3.7 0-9.7 1.4-14.8 6.9-5.1 5.6-19.4 19-19.4 46.3 0 27.3 19.9 53.7 22.6 57.4 2.8 3.7 39.1 59.7 94.8 83.8 35.2 15.2 49 16.5 66.6 13.9 10.7-1.6 32.8-13.4 37.4-26.4 4.6-13 4.6-24.1 3.2-26.4-1.3-2.5-5-3.9-10.5-6.6z"],"whatsapp-square":[448,512,[],"f40c","M224 122.8c-72.7 0-131.8 59.1-131.9 131.8 0 24.9 7 49.2 20.2 70.1l3.1 5-13.3 48.6 49.9-13.1 4.8 2.9c20.2 12 43.4 18.4 67.1 18.4h.1c72.6 0 133.3-59.1 133.3-131.8 0-35.2-15.2-68.3-40.1-93.2-25-25-58-38.7-93.2-38.7zm77.5 188.4c-3.3 9.3-19.1 17.7-26.7 18.8-12.6 1.9-22.4.9-47.5-9.9-39.7-17.2-65.7-57.2-67.7-59.8-2-2.6-16.2-21.5-16.2-41s10.2-29.1 13.9-33.1c3.6-4 7.9-5 10.6-5 2.6 0 5.3 0 7.6.1 2.4.1 5.7-.9 8.9 6.8 3.3 7.9 11.2 27.4 12.2 29.4s1.7 4.3.3 6.9c-7.6 15.2-15.7 14.6-11.6 21.6 15.3 26.3 30.6 35.4 53.9 47.1 4 2 6.3 1.7 8.6-1 2.3-2.6 9.9-11.6 12.5-15.5 2.6-4 5.3-3.3 8.9-2 3.6 1.3 23.1 10.9 27.1 12.9s6.6 3 7.6 4.6c.9 1.9.9 9.9-2.4 19.1zM400 32H48C21.5 32 0 53.5 0 80v352c0 26.5 21.5 48 48 48h352c26.5 0 48-21.5 48-48V80c0-26.5-21.5-48-48-48zM223.9 413.2c-26.6 0-52.7-6.7-75.8-19.3L64 416l22.5-82.2c-13.9-24-21.2-51.3-21.2-79.3C65.4 167.1 136.5 96 223.9 96c42.4 0 82.2 16.5 112.2 46.5 29.9 30 47.9 69.8 47.9 112.2 0 87.4-72.7 158.5-160.1 158.5z"],whmcs:[448,512,[],"f40d","M448 161v-21.3l-28.5-8.8-2.2-10.4 20.1-20.7L427 80.4l-29 7.5-7.2-7.5 7.5-28.2-19.1-11.6-21.3 21-10.7-3.2-7-26.4h-22.6l-6.2 26.4-12.1 3.2-19.7-21-19.4 11 8.1 27.7-8.1 8.4-28.5-7.5-11 19.1 20.7 21-2.9 10.4-28.5 7.8-.3 21.7 28.8 7.5 2.4 12.1-20.1 19.9 10.4 18.5 29.6-7.5 7.2 8.6-8.1 26.9 19.9 11.6 19.4-20.4 11.6 2.9 6.7 28.5 22.6.3 6.7-28.8 11.6-3.5 20.7 21.6 20.4-12.1-8.8-28 7.8-8.1 28.8 8.8 10.3-20.1-20.9-18.8 2.2-12.1 29.1-7zm-119.2 45.2c-31.3 0-56.8-25.4-56.8-56.8s25.4-56.8 56.8-56.8 56.8 25.4 56.8 56.8c0 31.5-25.4 56.8-56.8 56.8zm72.3 16.4l46.9 14.5V277l-55.1 13.4-4.1 22.7 38.9 35.3-19.2 37.9-54-16.7-14.6 15.2 16.7 52.5-38.3 22.7-38.9-40.5-21.7 6.6-12.6 54-42.4-.5-12.6-53.6-21.7-5.6-36.4 38.4-37.4-21.7 15.2-50.5-13.7-16.1-55.5 14.1-19.7-34.8 37.9-37.4-4.8-22.8-54-14.1.5-40.9L54 219.9l5.7-19.7-38.9-39.4L41.5 125l53.6 14.1 15.2-15.7-15.2-52 36.4-20.7 36.8 39.4L191 84l11.6-52H245l11.6 45.9L234 72l-6.3-1.7-3.3 5.7-11 19.1-3.3 5.6 4.6 4.6 17.2 17.4-.3 1-23.8 6.5-6.2 1.7-.1 6.4-.2 12.9C153.8 161.6 118 204 118 254.7c0 58.3 47.3 105.7 105.7 105.7 50.5 0 92.7-35.4 103.2-82.8l13.2.2 6.9.1 1.6-6.7 5.6-24 1.9-.6 17.1 17.8 4.7 4.9 5.8-3.4 20.4-12.1 5.8-3.5-2-6.5-6.8-21.2z"],"wikipedia-w":[640,512,[],"f266","M640 51.2l-.3 12.2c-28.1.8-45 15.8-55.8 40.3-25 57.8-103.3 240-155.3 358.6H415l-81.9-193.1c-32.5 63.6-68.3 130-99.2 193.1-.3.3-15 0-15-.3C172 352.3 122.8 243.4 75.8 133.4 64.4 106.7 26.4 63.4.2 63.7c0-3.1-.3-10-.3-14.2h161.9v13.9c-19.2 1.1-52.8 13.3-43.3 34.2 21.9 49.7 103.6 240.3 125.6 288.6 15-29.7 57.8-109.2 75.3-142.8-13.9-28.3-58.6-133.9-72.8-160-9.7-17.8-36.1-19.4-55.8-19.7V49.8l142.5.3v13.1c-19.4.6-38.1 7.8-29.4 26.1 18.9 40 30.6 68.1 48.1 104.7 5.6-10.8 34.7-69.4 48.1-100.8 8.9-20.6-3.9-28.6-38.6-29.4.3-3.6 0-10.3.3-13.6 44.4-.3 111.1-.3 123.1-.6v13.6c-22.5.8-45.8 12.8-58.1 31.7l-59.2 122.8c6.4 16.1 63.3 142.8 69.2 156.7L559.2 91.8c-8.6-23.1-36.4-28.1-47.2-28.3V49.6l127.8 1.1.2.5z"],windows:[448,512,[],"f17a","M0 93.7l183.6-25.3v177.4H0V93.7zm0 324.6l183.6 25.3V268.4H0v149.9zm203.8 28L448 480V268.4H203.8v177.9zm0-380.6v180.1H448V32L203.8 65.7z"],wix:[640,512,[],"f5cf","M393.38 131.69c0 13.03 2.08 32.69-28.68 43.83-9.52 3.45-15.95 9.66-15.95 9.66 0-31 4.72-42.22 17.4-48.86 9.75-5.11 27.23-4.63 27.23-4.63zm-115.8 35.54l-34.24 132.66-28.48-108.57c-7.69-31.99-20.81-48.53-48.43-48.53-27.37 0-40.66 16.18-48.43 48.53L89.52 299.89 55.28 167.23C49.73 140.51 23.86 128.96 0 131.96l65.57 247.93s21.63 1.56 32.46-3.96c14.22-7.25 20.98-12.84 29.59-46.57 7.67-30.07 29.11-118.41 31.12-124.7 4.76-14.94 11.09-13.81 15.4 0 1.97 6.3 23.45 94.63 31.12 124.7 8.6 33.73 15.37 39.32 29.59 46.57 10.82 5.52 32.46 3.96 32.46 3.96l65.57-247.93c-24.42-3.07-49.82 8.93-55.3 35.27zm115.78 5.21s-4.1 6.34-13.46 11.57c-6.01 3.36-11.78 5.64-17.97 8.61-15.14 7.26-13.18 13.95-13.18 35.2v152.07s16.55 2.09 27.37-3.43c13.93-7.1 17.13-13.95 17.26-44.78V181.41l-.02.01v-8.98zm163.44 84.08L640 132.78s-35.11-5.98-52.5 9.85c-13.3 12.1-24.41 29.55-54.18 72.47-.47.73-6.25 10.54-13.07 0-29.29-42.23-40.8-60.29-54.18-72.47-17.39-15.83-52.5-9.85-52.5-9.85l83.2 123.74-82.97 123.36s36.57 4.62 53.95-11.21c11.49-10.46 17.58-20.37 52.51-70.72 6.81-10.52 12.57-.77 13.07 0 29.4 42.38 39.23 58.06 53.14 70.72 17.39 15.83 53.32 11.21 53.32 11.21L556.8 256.52z"],"wizards-of-the-coast":[640,512,[],"f730","M219.19 345.69c-1.9 1.38-11.07 8.44-.26 23.57 4.64 6.42 14.11 12.79 21.73 6.55 6.5-4.88 7.35-12.92.26-23.04-5.47-7.76-14.28-12.88-21.73-7.08zm336.75 75.94c-.34 1.7-.55 1.67.79 0 2.09-4.19 4.19-10.21 4.98-19.9 3.14-38.49-40.33-71.49-101.34-78.03-54.73-6.02-124.38 9.17-188.8 60.49l-.26 1.57c2.62 4.98 4.98 10.74 3.4 21.21l.79.26c63.89-58.4 131.19-77.25 184.35-73.85 58.4 3.67 100.03 34.04 100.03 68.08-.01 9.96-2.63 15.72-3.94 20.17zM392.28 240.42c.79 7.07 4.19 10.21 9.17 10.47 5.5.26 9.43-2.62 10.47-6.55.79-3.4 2.09-29.85 2.09-29.85s-11.26 6.55-14.93 10.47c-3.66 3.68-7.33 8.39-6.8 15.46zm-50.02-151.1C137.75 89.32 13.1 226.8.79 241.2c-1.05.52-1.31.79.79 1.31 60.49 16.5 155.81 81.18 196.13 202.16l1.05.26c55.25-69.92 140.88-128.05 236.99-128.05 80.92 0 130.15 42.16 130.15 80.39 0 18.33-6.55 33.52-22.26 46.35 0 .96-.2.79.79.79 14.66-10.74 27.5-28.8 27.5-48.18 0-22.78-12.05-38.23-12.05-38.23 7.07 7.07 10.74 16.24 10.74 16.24 5.76-40.85 26.97-62.32 26.97-62.32-2.36-9.69-6.81-17.81-6.81-17.81 7.59 8.12 14.4 27.5 14.4 41.37 0 10.47-3.4 22.78-12.57 31.95l.26.52c8.12-4.98 16.5-16.76 16.5-37.97 0-15.71-4.71-25.92-4.71-25.92 5.76-5.24 11.26-9.17 15.97-11.78.79 3.4 2.09 9.69 2.36 14.93 0 1.05.79 1.83 1.05 0 .79-5.76-.26-16.24-.26-16.5 6.02-3.14 9.69-4.45 9.69-4.45C617.74 176 489.43 89.32 342.26 89.32zm-99.24 289.62c-11.06 8.99-24.2 4.08-30.64-4.19-7.45-9.58-6.76-24.09 4.19-32.47 14.85-11.35 27.08-.49 31.16 5.5.28.39 12.13 16.57-4.71 31.16zm2.09-136.43l9.43-17.81 11.78 70.96-12.57 6.02-24.62-28.8 14.14-26.71 3.67 4.45-1.83-8.11zm18.59 117.58l-.26-.26c2.05-4.1-2.5-6.61-17.54-31.69-1.31-2.36-3.14-2.88-4.45-2.62l-.26-.52c7.86-5.76 15.45-10.21 25.4-15.71l.52.26c1.31 1.83 2.09 2.88 3.4 4.71l-.26.52c-1.05-.26-2.36-.79-5.24.26-2.09.79-7.86 3.67-12.31 7.59v1.31c1.57 2.36 3.93 6.55 5.76 9.69h.26c10.05-6.28 7.56-4.55 11.52-7.86h.26c.52 1.83.52 1.83 1.83 5.5l-.26.26c-3.06.61-4.65.34-11.52 5.5v.26c9.46 17.02 11.01 16.75 12.57 15.97l.26.26c-2.34 1.59-6.27 4.21-9.68 6.57zm55.26-32.47c-3.14 1.57-6.02 2.88-9.95 4.98l-.26-.26c1.29-2.59 1.16-2.71-11.78-32.47l-.26-.26c-.15 0-8.9 3.65-9.95 7.33h-.52l-1.05-5.76.26-.52c7.29-4.56 25.53-11.64 27.76-12.57l.52.26 3.14 4.98-.26.52c-3.53-1.76-7.35.76-12.31 2.62v.26c12.31 32.01 12.67 30.64 14.66 30.64v.25zm44.77-16.5c-4.19 1.05-5.24 1.31-9.69 2.88l-.26-.26.52-4.45c-1.05-3.4-3.14-11.52-3.67-13.62l-.26-.26c-3.4.79-8.9 2.62-12.83 3.93l-.26.26c.79 2.62 3.14 9.95 4.19 13.88.79 2.36 1.83 2.88 2.88 3.14v.52c-3.67 1.05-7.07 2.62-10.21 3.93l-.26-.26c1.05-1.31 1.05-2.88.26-4.98-1.05-3.14-8.12-23.83-9.17-27.23-.52-1.83-1.57-3.14-2.62-3.14v-.52c3.14-1.05 6.02-2.09 10.74-3.4l.26.26-.26 4.71c1.31 3.93 2.36 7.59 3.14 9.69h.26c3.93-1.31 9.43-2.88 12.83-3.93l.26-.26-2.62-9.43c-.52-1.83-1.05-3.4-2.62-3.93v-.26c4.45-1.05 7.33-1.83 10.74-2.36l.26.26c-1.05 1.31-1.05 2.88-.52 4.45 1.57 6.28 4.71 20.43 6.28 26.45.54 2.62 1.85 3.41 2.63 3.93zm32.21-6.81l-.26.26c-4.71.52-14.14 2.36-22.52 4.19l-.26-.26.79-4.19c-1.57-7.86-3.4-18.59-4.98-26.19-.26-1.83-.79-2.88-2.62-3.67l.79-.52c9.17-1.57 20.16-2.36 24.88-2.62l.26.26c.52 2.36.79 3.14 1.57 5.5l-.26.26c-1.14-1.14-3.34-3.2-16.24-.79l-.26.26c.26 1.57 1.05 6.55 1.57 9.95l.26.26c9.52-1.68 4.76-.06 10.74-2.36h.26c0 1.57-.26 1.83-.26 5.24h-.26c-4.81-1.03-2.15-.9-10.21 0l-.26.26c.26 2.09 1.57 9.43 2.09 12.57l.26.26c1.15.38 14.21-.65 16.24-4.71h.26c-.53 2.38-1.05 4.21-1.58 6.04zm10.74-44.51c-4.45 2.36-8.12 2.88-11 2.88-.25.02-11.41 1.09-17.54-9.95-6.74-10.79-.98-25.2 5.5-31.69 8.8-8.12 23.35-10.1 28.54-17.02 8.03-10.33-13.04-22.31-29.59-5.76l-2.62-2.88 5.24-16.24c25.59-1.57 45.2-3.04 50.02 16.24.79 3.14 0 9.43-.26 12.05 0 2.62-1.83 18.85-2.09 23.04-.52 4.19-.79 18.33-.79 20.69.26 2.36.52 4.19 1.57 5.5 1.57 1.83 5.76 1.83 5.76 1.83l-.79 4.71c-11.82-1.07-10.28-.59-20.43-1.05-3.22-5.15-2.23-3.28-4.19-7.86 0 .01-4.19 3.94-7.33 5.51zm37.18 21.21c-6.35-10.58-19.82-7.16-21.73 5.5-2.63 17.08 14.3 19.79 20.69 10.21l.26.26c-.52 1.83-1.83 6.02-1.83 6.28l-.52.52c-10.3 6.87-28.5-2.5-25.66-18.59 1.94-10.87 14.44-18.93 28.8-9.95l.26.52c0 1.06-.27 3.41-.27 5.25zm5.77-87.73v-6.55c.69 0 19.65 3.28 27.76 7.33l-1.57 17.54s10.21-9.43 15.45-10.74c5.24-1.57 14.93 7.33 14.93 7.33l-11.26 11.26c-12.07-6.35-19.59-.08-20.69.79-5.29 38.72-8.6 42.17 4.45 46.09l-.52 4.71c-17.55-4.29-18.53-4.5-36.92-7.33l.79-4.71c7.25 0 7.48-5.32 7.59-6.81 0 0 4.98-53.16 4.98-55.25-.02-2.87-4.99-3.66-4.99-3.66zm10.99 114.44c-8.12-2.09-14.14-11-10.74-20.69 3.14-9.43 12.31-12.31 18.85-10.21 9.17 2.62 12.83 11.78 10.74 19.38-2.61 8.9-9.42 13.87-18.85 11.52zm42.16 9.69c-2.36-.52-7.07-2.36-8.64-2.88v-.26l1.57-1.83c.59-8.24.59-7.27.26-7.59-4.82-1.81-6.66-2.36-7.07-2.36-1.31 1.83-2.88 4.45-3.67 5.5l-.79 3.4v.26c-1.31-.26-3.93-1.31-6.02-1.57v-.26l2.62-1.83c3.4-4.71 9.95-14.14 13.88-20.16v-2.09l.52-.26c2.09.79 5.5 2.09 7.59 2.88.48.48.18-1.87-1.05 25.14-.24 1.81.02 2.6.8 3.91zm-4.71-89.82c11.25-18.27 30.76-16.19 34.04-3.4L539.7 198c2.34-6.25-2.82-9.9-4.45-11.26l1.83-3.67c12.22 10.37 16.38 13.97 22.52 20.43-25.91 73.07-30.76 80.81-24.62 84.32l-1.83 4.45c-6.37-3.35-8.9-4.42-17.81-8.64l2.09-6.81c-.26-.26-3.93 3.93-9.69 3.67-19.06-1.3-22.89-31.75-9.67-52.9zm29.33 79.34c0-5.71-6.34-7.89-7.86-5.24-1.31 2.09 1.05 4.98 2.88 8.38 1.57 2.62 2.62 6.28 1.05 9.43-2.64 6.34-12.4 5.31-15.45-.79 0-.7-.27.09 1.83-4.71l.79-.26c-.57 5.66 6.06 9.61 8.38 4.98 1.05-2.09-.52-5.5-2.09-8.38-1.57-2.62-3.67-6.28-1.83-9.69 2.72-5.06 11.25-4.47 14.66 2.36v.52l-2.36 3.4zm21.21 13.36c-1.96-3.27-.91-2.14-4.45-4.71h-.26c-2.36 4.19-5.76 10.47-8.64 16.24-1.31 2.36-1.05 3.4-.79 3.93l-.26.26-5.76-4.45.26-.26 2.09-1.31c3.14-5.76 6.55-12.05 9.17-17.02v-.26c-2.64-1.98-1.22-1.51-6.02-1.83v-.26l3.14-3.4h.26c3.67 2.36 9.95 6.81 12.31 8.9l.26.26-1.31 3.91zm27.23-44.26l-2.88-2.88c.79-2.36 1.83-4.98 2.09-7.59.75-9.74-11.52-11.84-11.52-4.98 0 4.98 7.86 19.38 7.86 27.76 0 10.21-5.76 15.71-13.88 16.5-8.38.79-20.16-10.47-20.16-10.47l4.98-14.4 2.88 2.09c-2.97 17.8 17.68 20.37 13.35 5.24-1.06-4.02-18.75-34.2 2.09-38.23 13.62-2.36 23.04 16.5 23.04 16.5l-7.85 10.46zm35.62-10.21c-11-30.38-60.49-127.53-191.95-129.62-53.42-1.05-94.27 15.45-132.76 37.97l85.63-9.17-91.39 20.69 25.14 19.64-3.93-16.5c7.5-1.71 39.15-8.45 66.77-8.9l-22.26 80.39c13.61-.7 18.97-8.98 19.64-22.78l4.98-1.05.26 26.71c-22.46 3.21-37.3 6.69-49.49 9.95l13.09-43.21-61.54-36.66 2.36 8.12 10.21 4.98c6.28 18.59 19.38 56.56 20.43 58.66 1.95 4.28 3.16 5.78 12.05 4.45l1.05 4.98c-16.08 4.86-23.66 7.61-39.02 14.4l-2.36-4.71c4.4-2.94 8.73-3.94 5.5-12.83-23.7-62.5-21.48-58.14-22.78-59.44l2.36-4.45 33.52 67.3c-3.84-11.87 1.68 1.69-32.99-78.82l-41.9 88.51 4.71-13.88-35.88-42.16 27.76 93.48-11.78 8.38C95 228.58 101.05 231.87 93.23 231.52c-5.5-.26-13.62 5.5-13.62 5.5L74.63 231c30.56-23.53 31.62-24.33 58.4-42.68l4.19 7.07s-5.76 4.19-7.86 7.07c-5.9 9.28 1.67 13.28 61.8 75.68l-18.85-58.92 39.8-10.21 25.66 30.64 4.45-12.31-4.98-24.62 13.09-3.4.52 3.14 3.67-10.47-94.27 29.33 11.26-4.98-13.62-42.42 17.28-9.17 30.11 36.14 28.54-13.09c-1.41-7.47-2.47-14.5-4.71-19.64l17.28 13.88 4.71-2.09-59.18-42.68 23.08 11.5c18.98-6.07 25.23-7.47 32.21-9.69l2.62 11c-12.55 12.55 1.43 16.82 6.55 19.38l-13.62-61.01 12.05 28.28c4.19-1.31 7.33-2.09 7.33-2.09l2.62 8.64s-3.14 1.05-6.28 2.09l8.9 20.95 33.78-65.73-20.69 61.01c42.42-24.09 81.44-36.66 131.98-35.88 67.04 1.05 167.33 40.85 199.8 139.83.78 2.1-.01 2.63-.79.27zM203.48 152.43s1.83-.52 4.19-1.31l9.43 7.59c-.4 0-3.44-.25-11.26 2.36l-2.36-8.64zm143.76 38.5c-1.57-.6-26.46-4.81-33.26 20.69l21.73 17.02 11.53-37.71zM318.43 67.07c-58.4 0-106.05 12.05-114.96 14.4v.79c8.38 2.09 14.4 4.19 21.21 11.78l1.57.26c6.55-1.83 48.97-13.88 110.24-13.88 180.16 0 301.67 116.79 301.67 223.37v9.95c0 1.31.79 2.62 1.05.52.52-2.09.79-8.64.79-19.64.26-83.79-96.63-227.55-321.57-227.55zm211.06 169.68c1.31-5.76 0-12.31-7.33-13.09-9.62-1.13-16.14 23.79-17.02 33.52-.79 5.5-1.31 14.93 6.02 14.93 4.68-.01 9.72-.91 18.33-35.36zm-61.53 42.95c-2.62-.79-9.43-.79-12.57 10.47-1.83 6.81.52 13.35 6.02 14.66 3.67 1.05 8.9.52 11.78-10.74 2.62-9.94-1.83-13.61-5.23-14.39zM491 300.65c1.83.52 3.14 1.05 5.76 1.83 0-1.83.52-8.38.79-12.05-1.05 1.31-5.5 8.12-6.55 9.95v.27z"],"wolf-pack-battalion":[512,512,[],"f514","M267.73 471.53l10.56 15.84 5.28-12.32 5.28 7V512c21.06-7.92 21.11-66.86 25.51-97.21 4.62-31.89-.88-92.81 81.37-149.11-8.88-23.61-12-49.43-2.64-80.05C421 189 447 196.21 456.43 239.73l-30.35 8.36c11.15 23 17 46.76 13.2 72.14L412 313.18l-6.16 33.43-18.47-7-8.8 33.39-19.35-7 26.39 21.11 8.8-28.15L419 364.2l7-35.63 26.39 14.52c.25-20 7-58.06-8.8-84.45l26.39 5.28c4-22.07-2.38-39.21-7.92-56.74l22.43 9.68c-.44-25.07-29.94-56.79-61.58-58.5-20.22-1.09-56.74-25.17-54.1-51.9 2-19.87 17.45-42.62 43.11-49.7-44 36.51-9.68 67.3 5.28 73.46 4.4-11.44 17.54-69.08 0-130.2-40.39 22.87-89.65 65.1-93.2 147.79l-58 38.71-3.52 93.25L369.78 220l7 7-17.59 3.52-44 38.71-15.84-5.28-28.1 49.25-3.52 119.64 21.11 15.84-32.55 15.84-32.55-15.84 21.11-15.84-3.52-119.64-28.15-49.26-15.84 5.28-44-38.71-17.58-3.51 7-7 107.33 59.82-3.52-93.25-58.06-38.71C185 65.1 135.77 22.87 95.3 0c-17.54 61.12-4.4 118.76 0 130.2 15-6.16 49.26-36.95 5.28-73.46 25.66 7.08 41.15 29.83 43.11 49.7 2.63 26.74-33.88 50.81-54.1 51.9-31.65 1.72-61.15 33.44-61.59 58.51l22.43-9.68c-5.54 17.53-11.91 34.67-7.92 56.74l26.39-5.28c-15.76 26.39-9.05 64.43-8.8 84.45l26.39-14.52 7 35.63 24.63-5.28 8.8 28.15L153.35 366 134 373l-8.8-33.43-18.47 7-6.16-33.43-27.27 7c-3.82-25.38 2-49.1 13.2-72.14l-30.35-8.36c9.4-43.52 35.47-50.77 63.34-54.1 9.36 30.62 6.24 56.45-2.64 80.05 82.25 56.3 76.75 117.23 81.37 149.11 4.4 30.35 4.45 89.29 25.51 97.21v-29.83l5.28-7 5.28 12.32 10.56-15.84 11.44 21.11 11.43-21.1zm79.17-95L331.06 366c7.47-4.36 13.76-8.42 19.35-12.32-.6 7.22-.27 13.84-3.51 22.84zm28.15-49.26c-.4 10.94-.9 21.66-1.76 31.67-7.85-1.86-15.57-3.8-21.11-7 8.24-7.94 15.55-16.32 22.87-24.68zm24.63 5.28c0-13.43-2.05-24.21-5.28-33.43a235 235 0 0 1-18.47 27.27zm3.52-80.94c19.44 12.81 27.8 33.66 29.91 56.3-12.32-4.53-24.63-9.31-36.95-10.56 5.06-12 6.65-28.14 7-45.74zm-1.76-45.74c.81 14.3 1.84 28.82 1.76 42.23 19.22-8.11 29.78-9.72 44-14.08-10.61-18.96-27.2-25.53-45.76-28.16zM165.68 376.52L181.52 366c-7.47-4.36-13.76-8.42-19.35-12.32.6 7.26.27 13.88 3.51 22.88zm-28.15-49.26c.4 10.94.9 21.66 1.76 31.67 7.85-1.86 15.57-3.8 21.11-7-8.24-7.93-15.55-16.31-22.87-24.67zm-24.64 5.28c0-13.43 2-24.21 5.28-33.43a235 235 0 0 0 18.47 27.27zm-3.52-80.94c-19.44 12.81-27.8 33.66-29.91 56.3 12.32-4.53 24.63-9.31 37-10.56-5-12-6.65-28.14-7-45.74zm1.76-45.74c-.81 14.3-1.84 28.82-1.76 42.23-19.22-8.11-29.78-9.72-44-14.08 10.63-18.95 27.23-25.52 45.76-28.15z"],wordpress:[512,512,[],"f19a","M61.7 169.4l101.5 278C92.2 413 43.3 340.2 43.3 256c0-30.9 6.6-60.1 18.4-86.6zm337.9 75.9c0-26.3-9.4-44.5-17.5-58.7-10.8-17.5-20.9-32.4-20.9-49.9 0-19.6 14.8-37.8 35.7-37.8.9 0 1.8.1 2.8.2-37.9-34.7-88.3-55.9-143.7-55.9-74.3 0-139.7 38.1-177.8 95.9 5 .2 9.7.3 13.7.3 22.2 0 56.7-2.7 56.7-2.7 11.5-.7 12.8 16.2 1.4 17.5 0 0-11.5 1.3-24.3 2l77.5 230.4L249.8 247l-33.1-90.8c-11.5-.7-22.3-2-22.3-2-11.5-.7-10.1-18.2 1.3-17.5 0 0 35.1 2.7 56 2.7 22.2 0 56.7-2.7 56.7-2.7 11.5-.7 12.8 16.2 1.4 17.5 0 0-11.5 1.3-24.3 2l76.9 228.7 21.2-70.9c9-29.4 16-50.5 16-68.7zm-139.9 29.3l-63.8 185.5c19.1 5.6 39.2 8.7 60.1 8.7 24.8 0 48.5-4.3 70.6-12.1-.6-.9-1.1-1.9-1.5-2.9l-65.4-179.2zm183-120.7c.9 6.8 1.4 14 1.4 21.9 0 21.6-4 45.8-16.2 76.2l-65 187.9C426.2 403 468.7 334.5 468.7 256c0-37-9.4-71.8-26-102.1zM504 256c0 136.8-111.3 248-248 248C119.2 504 8 392.7 8 256 8 119.2 119.2 8 256 8c136.7 0 248 111.2 248 248zm-11.4 0c0-130.5-106.2-236.6-236.6-236.6C125.5 19.4 19.4 125.5 19.4 256S125.6 492.6 256 492.6c130.5 0 236.6-106.1 236.6-236.6z"],"wordpress-simple":[512,512,[],"f411","M256 8C119.3 8 8 119.2 8 256c0 136.7 111.3 248 248 248s248-111.3 248-248C504 119.2 392.7 8 256 8zM33 256c0-32.3 6.9-63 19.3-90.7l106.4 291.4C84.3 420.5 33 344.2 33 256zm223 223c-21.9 0-43-3.2-63-9.1l66.9-194.4 68.5 187.8c.5 1.1 1 2.1 1.6 3.1-23.1 8.1-48 12.6-74 12.6zm30.7-327.5c13.4-.7 25.5-2.1 25.5-2.1 12-1.4 10.6-19.1-1.4-18.4 0 0-36.1 2.8-59.4 2.8-21.9 0-58.7-2.8-58.7-2.8-12-.7-13.4 17.7-1.4 18.4 0 0 11.4 1.4 23.4 2.1l34.7 95.2L200.6 393l-81.2-241.5c13.4-.7 25.5-2.1 25.5-2.1 12-1.4 10.6-19.1-1.4-18.4 0 0-36.1 2.8-59.4 2.8-4.2 0-9.1-.1-14.4-.3C109.6 73 178.1 33 256 33c58 0 110.9 22.2 150.6 58.5-1-.1-1.9-.2-2.9-.2-21.9 0-37.4 19.1-37.4 39.6 0 18.4 10.6 33.9 21.9 52.3 8.5 14.8 18.4 33.9 18.4 61.5 0 19.1-7.3 41.2-17 72.1l-22.2 74.3-80.7-239.6zm81.4 297.2l68.1-196.9c12.7-31.8 17-57.2 17-79.9 0-8.2-.5-15.8-1.5-22.9 17.4 31.8 27.3 68.2 27.3 107 0 82.3-44.6 154.1-110.9 192.7z"],wpbeginner:[512,512,[],"f297","M462.799 322.374C519.01 386.682 466.961 480 370.944 480c-39.602 0-78.824-17.687-100.142-50.04-6.887.356-22.702.356-29.59 0C219.848 462.381 180.588 480 141.069 480c-95.49 0-148.348-92.996-91.855-157.626C-29.925 190.523 80.479 32 256.006 32c175.632 0 285.87 158.626 206.793 290.374zm-339.647-82.972h41.529v-58.075h-41.529v58.075zm217.18 86.072v-23.839c-60.506 20.915-132.355 9.198-187.589-33.971l.246 24.897c51.101 46.367 131.746 57.875 187.343 32.913zm-150.753-86.072h166.058v-58.075H189.579v58.075z"],wpexplorer:[512,512,[],"f2de","M512 256c0 141.2-114.7 256-256 256C114.8 512 0 397.3 0 256S114.7 0 256 0s256 114.7 256 256zm-32 0c0-123.2-100.3-224-224-224C132.5 32 32 132.5 32 256s100.5 224 224 224 224-100.5 224-224zM160.9 124.6l86.9 37.1-37.1 86.9-86.9-37.1 37.1-86.9zm110 169.1l46.6 94h-14.6l-50-100-48.9 100h-14l51.1-106.9-22.3-9.4 6-14 68.6 29.1-6 14.3-16.5-7.1zm-11.8-116.3l68.6 29.4-29.4 68.3L230 246l29.1-68.6zm80.3 42.9l54.6 23.1-23.4 54.3-54.3-23.1 23.1-54.3z"],wpforms:[448,512,[],"f298","M448 75.2v361.7c0 24.3-19 43.2-43.2 43.2H43.2C19.3 480 0 461.4 0 436.8V75.2C0 51.1 18.8 32 43.2 32h361.7c24 0 43.1 18.8 43.1 43.2zm-37.3 361.6V75.2c0-3-2.6-5.8-5.8-5.8h-9.3L285.3 144 224 94.1 162.8 144 52.5 69.3h-9.3c-3.2 0-5.8 2.8-5.8 5.8v361.7c0 3 2.6 5.8 5.8 5.8h361.7c3.2.1 5.8-2.7 5.8-5.8zM150.2 186v37H76.7v-37h73.5zm0 74.4v37.3H76.7v-37.3h73.5zm11.1-147.3l54-43.7H96.8l64.5 43.7zm210 72.9v37h-196v-37h196zm0 74.4v37.3h-196v-37.3h196zm-84.6-147.3l64.5-43.7H232.8l53.9 43.7zM371.3 335v37.3h-99.4V335h99.4z"],wpressr:[496,512,[],"f3e4","M248 8C111.03 8 0 119.03 0 256s111.03 248 248 248 248-111.03 248-248S384.97 8 248 8zm171.33 158.6c-15.18 34.51-30.37 69.02-45.63 103.5-2.44 5.51-6.89 8.24-12.97 8.24-23.02-.01-46.03.06-69.05-.05-5.12-.03-8.25 1.89-10.34 6.72-10.19 23.56-20.63 47-30.95 70.5-1.54 3.51-4.06 5.29-7.92 5.29-45.94-.01-91.87-.02-137.81 0-3.13 0-5.63-1.15-7.72-3.45-11.21-12.33-22.46-24.63-33.68-36.94-2.69-2.95-2.79-6.18-1.21-9.73 8.66-19.54 17.27-39.1 25.89-58.66 12.93-29.35 25.89-58.69 38.75-88.08 1.7-3.88 4.28-5.68 8.54-5.65 14.24.1 28.48.02 42.72.05 6.24.01 9.2 4.84 6.66 10.59-13.6 30.77-27.17 61.55-40.74 92.33-5.72 12.99-11.42 25.99-17.09 39-3.91 8.95 7.08 11.97 10.95 5.6.23-.37-1.42 4.18 30.01-67.69 1.36-3.1 3.41-4.4 6.77-4.39 15.21.08 30.43.02 45.64.04 5.56.01 7.91 3.64 5.66 8.75-8.33 18.96-16.71 37.9-24.98 56.89-4.98 11.43 8.08 12.49 11.28 5.33.04-.08 27.89-63.33 32.19-73.16 2.02-4.61 5.44-6.51 10.35-6.5 26.43.05 52.86 0 79.29.05 12.44.02 13.93-13.65 3.9-13.64-25.26.03-50.52.02-75.78.02-6.27 0-7.84-2.47-5.27-8.27 5.78-13.06 11.59-26.11 17.3-39.21 1.73-3.96 4.52-5.79 8.84-5.78 23.09.06 25.98.02 130.78.03 6.08-.01 8.03 2.79 5.62 8.27z"],xbox:[512,512,[],"f412","M369.9 318.2c44.3 54.3 64.7 98.8 54.4 118.7-7.9 15.1-56.7 44.6-92.6 55.9-29.6 9.3-68.4 13.3-100.4 10.2-38.2-3.7-76.9-17.4-110.1-39C93.3 445.8 87 438.3 87 423.4c0-29.9 32.9-82.3 89.2-142.1 32-33.9 76.5-73.7 81.4-72.6 9.4 2.1 84.3 75.1 112.3 109.5zM188.6 143.8c-29.7-26.9-58.1-53.9-86.4-63.4-15.2-5.1-16.3-4.8-28.7 8.1-29.2 30.4-53.5 79.7-60.3 122.4-5.4 34.2-6.1 43.8-4.2 60.5 5.6 50.5 17.3 85.4 40.5 120.9 9.5 14.6 12.1 17.3 9.3 9.9-4.2-11-.3-37.5 9.5-64 14.3-39 53.9-112.9 120.3-194.4zm311.6 63.5C483.3 127.3 432.7 77 425.6 77c-7.3 0-24.2 6.5-36 13.9-23.3 14.5-41 31.4-64.3 52.8C367.7 197 427.5 283.1 448.2 346c6.8 20.7 9.7 41.1 7.4 52.3-1.7 8.5-1.7 8.5 1.4 4.6 6.1-7.7 19.9-31.3 25.4-43.5 7.4-16.2 15-40.2 18.6-58.7 4.3-22.5 3.9-70.8-.8-93.4zM141.3 43C189 40.5 251 77.5 255.6 78.4c.7.1 10.4-4.2 21.6-9.7 63.9-31.1 94-25.8 107.4-25.2-63.9-39.3-152.7-50-233.9-11.7-23.4 11.1-24 11.9-9.4 11.2z"],xing:[384,512,[],"f168","M162.7 210c-1.8 3.3-25.2 44.4-70.1 123.5-4.9 8.3-10.8 12.5-17.7 12.5H9.8c-7.7 0-12.1-7.5-8.5-14.4l69-121.3c.2 0 .2-.1 0-.3l-43.9-75.6c-4.3-7.8.3-14.1 8.5-14.1H100c7.3 0 13.3 4.1 18 12.2l44.7 77.5zM382.6 46.1l-144 253v.3L330.2 466c3.9 7.1.2 14.1-8.5 14.1h-65.2c-7.6 0-13.6-4-18-12.2l-92.4-168.5c3.3-5.8 51.5-90.8 144.8-255.2 4.6-8.1 10.4-12.2 17.5-12.2h65.7c8 0 12.3 6.7 8.5 14.1z"],"xing-square":[448,512,[],"f169","M400 32H48C21.5 32 0 53.5 0 80v352c0 26.5 21.5 48 48 48h352c26.5 0 48-21.5 48-48V80c0-26.5-21.5-48-48-48zM140.4 320.2H93.8c-5.5 0-8.7-5.3-6-10.3l49.3-86.7c.1 0 .1-.1 0-.2l-31.4-54c-3-5.6.2-10.1 6-10.1h46.6c5.2 0 9.5 2.9 12.9 8.7l31.9 55.3c-1.3 2.3-18 31.7-50.1 88.2-3.5 6.2-7.7 9.1-12.6 9.1zm219.7-214.1L257.3 286.8v.2l65.5 119c2.8 5.1.1 10.1-6 10.1h-46.6c-5.5 0-9.7-2.9-12.9-8.7l-66-120.3c2.3-4.1 36.8-64.9 103.4-182.3 3.3-5.8 7.4-8.7 12.5-8.7h46.9c5.7-.1 8.8 4.7 6 10z"],"y-combinator":[448,512,[],"f23b","M448 32v448H0V32h448zM236 287.5L313.5 142h-32.7L235 233c-4.7 9.3-9 18.3-12.8 26.8L210 233l-45.2-91h-35l76.7 143.8v94.5H236v-92.8z"],yahoo:[448,512,[],"f19e","M252 292l4 220c-12.7-2.2-23.5-3.9-32.3-3.9-8.4 0-19.2 1.7-32.3 3.9l4-220C140.4 197.2 85 95.2 21.4 0c11.9 3.1 23 3.9 33.2 3.9 9 0 20.4-.8 34.1-3.9 40.9 72.2 82.1 138.7 135 225.5C261 163.9 314.8 81.4 358.6 0c11.1 2.9 22 3.9 32.9 3.9 11.5 0 23.2-1 35-3.9C392.1 47.9 294.9 216.9 252 292z"],yammer:[512,512,[],"f840","M421.78 152.17A23.06 23.06 0 0 0 400.9 112c-.83.43-1.71.9-2.63 1.4-15.25 8.4-118.33 80.62-106.69 88.77s82.04-23.61 130.2-50zm0 217.17c-48.16-26.38-118.64-58.1-130.2-50s91.42 80.35 106.69 88.74c.92.51 1.8 1 2.63 1.41a23.07 23.07 0 0 0 20.88-40.15zM464.21 237c-.95 0-1.95-.06-3-.06-17.4 0-142.52 13.76-136.24 26.51s83.3 18.74 138.21 18.76a23 23 0 0 0 1-45.21zM31 96.65a24.88 24.88 0 0 1 46.14-18.4l81 205.06h1.21l77-203.53a23.52 23.52 0 0 1 44.45 15.27L171.2 368.44C152.65 415.66 134.08 448 77.91 448a139.67 139.67 0 0 1-23.81-1.95 21.31 21.31 0 0 1 6.9-41.77c.66.06 10.91.66 13.86.66 30.47 0 43.74-18.94 58.07-59.41z"],yandex:[256,512,[],"f413","M153.1 315.8L65.7 512H2l96-209.8c-45.1-22.9-75.2-64.4-75.2-141.1C22.7 53.7 90.8 0 171.7 0H254v512h-55.1V315.8h-45.8zm45.8-269.3h-29.4c-44.4 0-87.4 29.4-87.4 114.6 0 82.3 39.4 108.8 87.4 108.8h29.4V46.5z"],"yandex-international":[320,512,[],"f414","M129.5 512V345.9L18.5 48h55.8l81.8 229.7L250.2 0h51.3L180.8 347.8V512h-51.3z"],yarn:[496,512,[],"f7e3","M393.9 345.2c-39 9.3-48.4 32.1-104 47.4 0 0-2.7 4-10.4 5.8-13.4 3.3-63.9 6-68.5 6.1-12.4.1-19.9-3.2-22-8.2-6.4-15.3 9.2-22 9.2-22-8.1-5-9-9.9-9.8-8.1-2.4 5.8-3.6 20.1-10.1 26.5-8.8 8.9-25.5 5.9-35.3.8-10.8-5.7.8-19.2.8-19.2s-5.8 3.4-10.5-3.6c-6-9.3-17.1-37.3 11.5-62-1.3-10.1-4.6-53.7 40.6-85.6 0 0-20.6-22.8-12.9-43.3 5-13.4 7-13.3 8.6-13.9 5.7-2.2 11.3-4.6 15.4-9.1 20.6-22.2 46.8-18 46.8-18s12.4-37.8 23.9-30.4c3.5 2.3 16.3 30.6 16.3 30.6s13.6-7.9 15.1-5c8.2 16 9.2 46.5 5.6 65.1-6.1 30.6-21.4 47.1-27.6 57.5-1.4 2.4 16.5 10 27.8 41.3 10.4 28.6 1.1 52.7 2.8 55.3.8 1.4 13.7.8 36.4-13.2 12.8-7.9 28.1-16.9 45.4-17 16.7-.5 17.6 19.2 4.9 22.2zM496 256c0 136.9-111.1 248-248 248S0 392.9 0 256 111.1 8 248 8s248 111.1 248 248zm-79.3 75.2c-1.7-13.6-13.2-23-28-22.8-22 .3-40.5 11.7-52.8 19.2-4.8 3-8.9 5.2-12.4 6.8 3.1-44.5-22.5-73.1-28.7-79.4 7.8-11.3 18.4-27.8 23.4-53.2 4.3-21.7 3-55.5-6.9-74.5-1.6-3.1-7.4-11.2-21-7.4-9.7-20-13-22.1-15.6-23.8-1.1-.7-23.6-16.4-41.4 28-12.2.9-31.3 5.3-47.5 22.8-2 2.2-5.9 3.8-10.1 5.4h.1c-8.4 3-12.3 9.9-16.9 22.3-6.5 17.4.2 34.6 6.8 45.7-17.8 15.9-37 39.8-35.7 82.5-34 36-11.8 73-5.6 79.6-1.6 11.1 3.7 19.4 12 23.8 12.6 6.7 30.3 9.6 43.9 2.8 4.9 5.2 13.8 10.1 30 10.1 6.8 0 58-2.9 72.6-6.5 6.8-1.6 11.5-4.5 14.6-7.1 9.8-3.1 36.8-12.3 62.2-28.7 18-11.7 24.2-14.2 37.6-17.4 12.9-3.2 21-15.1 19.4-28.2z"],yelp:[384,512,[],"f1e9","M42.9 240.32l99.62 48.61c19.2 9.4 16.2 37.51-4.5 42.71L30.5 358.45a22.79 22.79 0 0 1-28.21-19.6 197.16 197.16 0 0 1 9-85.32 22.8 22.8 0 0 1 31.61-13.21zm44 239.25a199.45 199.45 0 0 0 79.42 32.11A22.78 22.78 0 0 0 192.94 490l3.9-110.82c.7-21.3-25.5-31.91-39.81-16.1l-74.21 82.4a22.82 22.82 0 0 0 4.09 34.09zm145.34-109.92l58.81 94a22.93 22.93 0 0 0 34 5.5 198.36 198.36 0 0 0 52.71-67.61A23 23 0 0 0 364.17 370l-105.42-34.26c-20.31-6.5-37.81 15.8-26.51 33.91zm148.33-132.23a197.44 197.44 0 0 0-50.41-69.31 22.85 22.85 0 0 0-34 4.4l-62 91.92c-11.9 17.7 4.7 40.61 25.2 34.71L366 268.63a23 23 0 0 0 14.61-31.21zM62.11 30.18a22.86 22.86 0 0 0-9.9 32l104.12 180.44c11.7 20.2 42.61 11.9 42.61-11.4V22.88a22.67 22.67 0 0 0-24.5-22.8 320.37 320.37 0 0 0-112.33 30.1z"],yoast:[448,512,[],"f2b1","M91.3 76h186l-7 18.9h-179c-39.7 0-71.9 31.6-71.9 70.3v205.4c0 35.4 24.9 70.3 84 70.3V460H91.3C41.2 460 0 419.8 0 370.5V165.2C0 115.9 40.7 76 91.3 76zm229.1-56h66.5C243.1 398.1 241.2 418.9 202.2 459.3c-20.8 21.6-49.3 31.7-78.3 32.7v-51.1c49.2-7.7 64.6-49.9 64.6-75.3 0-20.1.6-12.6-82.1-223.2h61.4L218.2 299 320.4 20zM448 161.5V460H234c6.6-9.6 10.7-16.3 12.1-19.4h182.5V161.5c0-32.5-17.1-51.9-48.2-62.9l6.7-17.6c41.7 13.6 60.9 43.1 60.9 80.5z"],youtube:[576,512,[],"f167","M549.655 124.083c-6.281-23.65-24.787-42.276-48.284-48.597C458.781 64 288 64 288 64S117.22 64 74.629 75.486c-23.497 6.322-42.003 24.947-48.284 48.597-11.412 42.867-11.412 132.305-11.412 132.305s0 89.438 11.412 132.305c6.281 23.65 24.787 41.5 48.284 47.821C117.22 448 288 448 288 448s170.78 0 213.371-11.486c23.497-6.321 42.003-24.171 48.284-47.821 11.412-42.867 11.412-132.305 11.412-132.305s0-89.438-11.412-132.305zm-317.51 213.508V175.185l142.739 81.205-142.739 81.201z"],"youtube-square":[448,512,[],"f431","M186.8 202.1l95.2 54.1-95.2 54.1V202.1zM448 80v352c0 26.5-21.5 48-48 48H48c-26.5 0-48-21.5-48-48V80c0-26.5 21.5-48 48-48h352c26.5 0 48 21.5 48 48zm-42 176.3s0-59.6-7.6-88.2c-4.2-15.8-16.5-28.2-32.2-32.4C337.9 128 224 128 224 128s-113.9 0-142.2 7.7c-15.7 4.2-28 16.6-32.2 32.4-7.6 28.5-7.6 88.2-7.6 88.2s0 59.6 7.6 88.2c4.2 15.8 16.5 27.7 32.2 31.9C110.1 384 224 384 224 384s113.9 0 142.2-7.7c15.7-4.2 28-16.1 32.2-31.9 7.6-28.5 7.6-88.1 7.6-88.1z"],zhihu:[640,512,[],"f63f","M170.54 148.13v217.54l23.43.01 7.71 26.37 42.01-26.37h49.53V148.13H170.54zm97.75 193.93h-27.94l-27.9 17.51-5.08-17.47-11.9-.04V171.75h72.82v170.31zm-118.46-94.39H97.5c1.74-27.1 2.2-51.59 2.2-73.46h51.16s1.97-22.56-8.58-22.31h-88.5c3.49-13.12 7.87-26.66 13.12-40.67 0 0-24.07 0-32.27 21.57-3.39 8.9-13.21 43.14-30.7 78.12 5.89-.64 25.37-1.18 36.84-22.21 2.11-5.89 2.51-6.66 5.14-14.53h28.87c0 10.5-1.2 66.88-1.68 73.44H20.83c-11.74 0-15.56 23.62-15.56 23.62h65.58C66.45 321.1 42.83 363.12 0 396.34c20.49 5.85 40.91-.93 51-9.9 0 0 22.98-20.9 35.59-69.25l53.96 64.94s7.91-26.89-1.24-39.99c-7.58-8.92-28.06-33.06-36.79-41.81L87.9 311.95c4.36-13.98 6.99-27.55 7.87-40.67h61.65s-.09-23.62-7.59-23.62v.01zm412.02-1.6c20.83-25.64 44.98-58.57 44.98-58.57s-18.65-14.8-27.38-4.06c-6 8.15-36.83 48.2-36.83 48.2l19.23 14.43zm-150.09-59.09c-9.01-8.25-25.91 2.13-25.91 2.13s39.52 55.04 41.12 57.45l19.46-13.73s-25.67-37.61-34.66-45.86h-.01zM640 258.35c-19.78 0-130.91.93-131.06.93v-101c4.81 0 12.42-.4 22.85-1.2 40.88-2.41 70.13-4 87.77-4.81 0 0 12.22-27.19-.59-33.44-3.07-1.18-23.17 4.58-23.17 4.58s-165.22 16.49-232.36 18.05c1.6 8.82 7.62 17.08 15.78 19.55 13.31 3.48 22.69 1.7 49.15.89 24.83-1.6 43.68-2.43 56.51-2.43v99.81H351.41s2.82 22.31 25.51 22.85h107.94v70.92c0 13.97-11.19 21.99-24.48 21.12-14.08.11-26.08-1.15-41.69-1.81 1.99 3.97 6.33 14.39 19.31 21.84 9.88 4.81 16.17 6.57 26.02 6.57 29.56 0 45.67-17.28 44.89-45.31v-73.32h122.36c9.68 0 8.7-23.78 8.7-23.78l.03-.01z"]};!function(c){try{c()}catch(c){if(!s)throw c}}(function(){M("fab",f)})}(),function(){"use strict";var c={},l={};try{"undefined"!=typeof window&&(c=window),"undefined"!=typeof document&&(l=document)}catch(c){}var h=(c.navigator||{}).userAgent,z=void 0===h?"":h,v=c,a=l,m=(v.document,!!a.documentElement&&!!a.head&&"function"==typeof a.addEventListener&&a.createElement,~z.indexOf("MSIE")||z.indexOf("Trident/"),"___FONT_AWESOME___"),s=function(){try{return!0}catch(c){return!1}}();var e=v||{};e[m]||(e[m]={}),e[m].styles||(e[m].styles={}),e[m].hooks||(e[m].hooks={}),e[m].shims||(e[m].shims=[]);var t=e[m];function M(c,z){var l=(2<arguments.length&&void 0!==arguments[2]?arguments[2]:{}).skipHooks,h=void 0!==l&&l,v=Object.keys(z).reduce(function(c,l){var h=z[l];return!!h.icon?c[h.iconName]=h.icon:c[l]=h,c},{});"function"!=typeof t.hooks.addPack||h?t.styles[c]=function(v){for(var c=1;c<arguments.length;c++){var a=null!=arguments[c]?arguments[c]:{},l=Object.keys(a);"function"==typeof Object.getOwnPropertySymbols&&(l=l.concat(Object.getOwnPropertySymbols(a).filter(function(c){return Object.getOwnPropertyDescriptor(a,c).enumerable}))),l.forEach(function(c){var l,h,z;l=v,z=a[h=c],h in l?Object.defineProperty(l,h,{value:z,enumerable:!0,configurable:!0,writable:!0}):l[h]=z})}return v}({},t.styles[c]||{},v):t.hooks.addPack(c,v),"fas"===c&&M("fa",z)}var f={"address-book":[448,512,[],"f2b9","M436 160c6.6 0 12-5.4 12-12v-40c0-6.6-5.4-12-12-12h-20V48c0-26.5-21.5-48-48-48H48C21.5 0 0 21.5 0 48v416c0 26.5 21.5 48 48 48h320c26.5 0 48-21.5 48-48v-48h20c6.6 0 12-5.4 12-12v-40c0-6.6-5.4-12-12-12h-20v-64h20c6.6 0 12-5.4 12-12v-40c0-6.6-5.4-12-12-12h-20v-64h20zm-68 304H48V48h320v416zM208 256c35.3 0 64-28.7 64-64s-28.7-64-64-64-64 28.7-64 64 28.7 64 64 64zm-89.6 128h179.2c12.4 0 22.4-8.6 22.4-19.2v-19.2c0-31.8-30.1-57.6-67.2-57.6-10.8 0-18.7 8-44.8 8-26.9 0-33.4-8-44.8-8-37.1 0-67.2 25.8-67.2 57.6v19.2c0 10.6 10 19.2 22.4 19.2z"],"address-card":[576,512,[],"f2bb","M528 32H48C21.5 32 0 53.5 0 80v352c0 26.5 21.5 48 48 48h480c26.5 0 48-21.5 48-48V80c0-26.5-21.5-48-48-48zm0 400H48V80h480v352zM208 256c35.3 0 64-28.7 64-64s-28.7-64-64-64-64 28.7-64 64 28.7 64 64 64zm-89.6 128h179.2c12.4 0 22.4-8.6 22.4-19.2v-19.2c0-31.8-30.1-57.6-67.2-57.6-10.8 0-18.7 8-44.8 8-26.9 0-33.4-8-44.8-8-37.1 0-67.2 25.8-67.2 57.6v19.2c0 10.6 10 19.2 22.4 19.2zM360 320h112c4.4 0 8-3.6 8-8v-16c0-4.4-3.6-8-8-8H360c-4.4 0-8 3.6-8 8v16c0 4.4 3.6 8 8 8zm0-64h112c4.4 0 8-3.6 8-8v-16c0-4.4-3.6-8-8-8H360c-4.4 0-8 3.6-8 8v16c0 4.4 3.6 8 8 8zm0-64h112c4.4 0 8-3.6 8-8v-16c0-4.4-3.6-8-8-8H360c-4.4 0-8 3.6-8 8v16c0 4.4 3.6 8 8 8z"],angry:[496,512,[],"f556","M248 8C111 8 0 119 0 256s111 248 248 248 248-111 248-248S385 8 248 8zm0 448c-110.3 0-200-89.7-200-200S137.7 56 248 56s200 89.7 200 200-89.7 200-200 200zm0-144c-33.6 0-65.2 14.8-86.8 40.6-8.5 10.2-7.1 25.3 3.1 33.8s25.3 7.2 33.8-3c24.8-29.7 75-29.7 99.8 0 8.1 9.7 23.2 11.9 33.8 3 10.2-8.5 11.5-23.6 3.1-33.8-21.6-25.8-53.2-40.6-86.8-40.6zm-48-72c10.3 0 19.9-6.7 23-17.1 3.8-12.7-3.4-26.1-16.1-29.9l-80-24c-12.8-3.9-26.1 3.4-29.9 16.1-3.8 12.7 3.4 26.1 16.1 29.9l28.2 8.5c-3.1 4.9-5.3 10.4-5.3 16.6 0 17.7 14.3 32 32 32s32-14.4 32-32.1zm199-54.9c-3.8-12.7-17.1-19.9-29.9-16.1l-80 24c-12.7 3.8-19.9 17.2-16.1 29.9 3.1 10.4 12.7 17.1 23 17.1 0 17.7 14.3 32 32 32s32-14.3 32-32c0-6.2-2.2-11.7-5.3-16.6l28.2-8.5c12.7-3.7 19.9-17.1 16.1-29.8z"],"arrow-alt-circle-down":[512,512,[],"f358","M256 8C119 8 8 119 8 256s111 248 248 248 248-111 248-248S393 8 256 8zm0 448c-110.5 0-200-89.5-200-200S145.5 56 256 56s200 89.5 200 200-89.5 200-200 200zm-32-316v116h-67c-10.7 0-16 12.9-8.5 20.5l99 99c4.7 4.7 12.3 4.7 17 0l99-99c7.6-7.6 2.2-20.5-8.5-20.5h-67V140c0-6.6-5.4-12-12-12h-40c-6.6 0-12 5.4-12 12z"],"arrow-alt-circle-left":[512,512,[],"f359","M8 256c0 137 111 248 248 248s248-111 248-248S393 8 256 8 8 119 8 256zm448 0c0 110.5-89.5 200-200 200S56 366.5 56 256 145.5 56 256 56s200 89.5 200 200zm-72-20v40c0 6.6-5.4 12-12 12H256v67c0 10.7-12.9 16-20.5 8.5l-99-99c-4.7-4.7-4.7-12.3 0-17l99-99c7.6-7.6 20.5-2.2 20.5 8.5v67h116c6.6 0 12 5.4 12 12z"],"arrow-alt-circle-right":[512,512,[],"f35a","M504 256C504 119 393 8 256 8S8 119 8 256s111 248 248 248 248-111 248-248zm-448 0c0-110.5 89.5-200 200-200s200 89.5 200 200-89.5 200-200 200S56 366.5 56 256zm72 20v-40c0-6.6 5.4-12 12-12h116v-67c0-10.7 12.9-16 20.5-8.5l99 99c4.7 4.7 4.7 12.3 0 17l-99 99c-7.6 7.6-20.5 2.2-20.5-8.5v-67H140c-6.6 0-12-5.4-12-12z"],"arrow-alt-circle-up":[512,512,[],"f35b","M256 504c137 0 248-111 248-248S393 8 256 8 8 119 8 256s111 248 248 248zm0-448c110.5 0 200 89.5 200 200s-89.5 200-200 200S56 366.5 56 256 145.5 56 256 56zm20 328h-40c-6.6 0-12-5.4-12-12V256h-67c-10.7 0-16-12.9-8.5-20.5l99-99c4.7-4.7 12.3-4.7 17 0l99 99c7.6 7.6 2.2 20.5-8.5 20.5h-67v116c0 6.6-5.4 12-12 12z"],bell:[448,512,[],"f0f3","M439.39 362.29c-19.32-20.76-55.47-51.99-55.47-154.29 0-77.7-54.48-139.9-127.94-155.16V32c0-17.67-14.32-32-31.98-32s-31.98 14.33-31.98 32v20.84C118.56 68.1 64.08 130.3 64.08 208c0 102.3-36.15 133.53-55.47 154.29-6 6.45-8.66 14.16-8.61 21.71.11 16.4 12.98 32 32.1 32h383.8c19.12 0 32-15.6 32.1-32 .05-7.55-2.61-15.27-8.61-21.71zM67.53 368c21.22-27.97 44.42-74.33 44.53-159.42 0-.2-.06-.38-.06-.58 0-61.86 50.14-112 112-112s112 50.14 112 112c0 .2-.06.38-.06.58.11 85.1 23.31 131.46 44.53 159.42H67.53zM224 512c35.32 0 63.97-28.65 63.97-64H160.03c0 35.35 28.65 64 63.97 64z"],"bell-slash":[640,512,[],"f1f6","M633.99 471.02L36 3.51C29.1-2.01 19.03-.9 13.51 6l-10 12.49C-2.02 25.39-.9 35.46 6 40.98l598 467.51c6.9 5.52 16.96 4.4 22.49-2.49l10-12.49c5.52-6.9 4.41-16.97-2.5-22.49zM163.53 368c16.71-22.03 34.48-55.8 41.4-110.58l-45.47-35.55c-3.27 90.73-36.47 120.68-54.84 140.42-6 6.45-8.66 14.16-8.61 21.71.11 16.4 12.98 32 32.1 32h279.66l-61.4-48H163.53zM320 96c61.86 0 112 50.14 112 112 0 .2-.06.38-.06.58.02 16.84 1.16 31.77 2.79 45.73l59.53 46.54c-8.31-22.13-14.34-51.49-14.34-92.85 0-77.7-54.48-139.9-127.94-155.16V32c0-17.67-14.32-32-31.98-32s-31.98 14.33-31.98 32v20.84c-26.02 5.41-49.45 16.94-69.13 32.72l38.17 29.84C275 103.18 296.65 96 320 96zm0 416c35.32 0 63.97-28.65 63.97-64H256.03c0 35.35 28.65 64 63.97 64z"],bookmark:[384,512,[],"f02e","M336 0H48C21.49 0 0 21.49 0 48v464l192-112 192 112V48c0-26.51-21.49-48-48-48zm0 428.43l-144-84-144 84V54a6 6 0 0 1 6-6h276c3.314 0 6 2.683 6 5.996V428.43z"],building:[448,512,[],"f1ad","M128 148v-40c0-6.6 5.4-12 12-12h40c6.6 0 12 5.4 12 12v40c0 6.6-5.4 12-12 12h-40c-6.6 0-12-5.4-12-12zm140 12h40c6.6 0 12-5.4 12-12v-40c0-6.6-5.4-12-12-12h-40c-6.6 0-12 5.4-12 12v40c0 6.6 5.4 12 12 12zm-128 96h40c6.6 0 12-5.4 12-12v-40c0-6.6-5.4-12-12-12h-40c-6.6 0-12 5.4-12 12v40c0 6.6 5.4 12 12 12zm128 0h40c6.6 0 12-5.4 12-12v-40c0-6.6-5.4-12-12-12h-40c-6.6 0-12 5.4-12 12v40c0 6.6 5.4 12 12 12zm-76 84v-40c0-6.6-5.4-12-12-12h-40c-6.6 0-12 5.4-12 12v40c0 6.6 5.4 12 12 12h40c6.6 0 12-5.4 12-12zm76 12h40c6.6 0 12-5.4 12-12v-40c0-6.6-5.4-12-12-12h-40c-6.6 0-12 5.4-12 12v40c0 6.6 5.4 12 12 12zm180 124v36H0v-36c0-6.6 5.4-12 12-12h19.5V24c0-13.3 10.7-24 24-24h337c13.3 0 24 10.7 24 24v440H436c6.6 0 12 5.4 12 12zM79.5 463H192v-67c0-6.6 5.4-12 12-12h40c6.6 0 12 5.4 12 12v67h112.5V49L80 48l-.5 415z"],calendar:[448,512,[],"f133","M400 64h-48V12c0-6.6-5.4-12-12-12h-40c-6.6 0-12 5.4-12 12v52H160V12c0-6.6-5.4-12-12-12h-40c-6.6 0-12 5.4-12 12v52H48C21.5 64 0 85.5 0 112v352c0 26.5 21.5 48 48 48h352c26.5 0 48-21.5 48-48V112c0-26.5-21.5-48-48-48zm-6 400H54c-3.3 0-6-2.7-6-6V160h352v298c0 3.3-2.7 6-6 6z"],"calendar-alt":[448,512,[],"f073","M148 288h-40c-6.6 0-12-5.4-12-12v-40c0-6.6 5.4-12 12-12h40c6.6 0 12 5.4 12 12v40c0 6.6-5.4 12-12 12zm108-12v-40c0-6.6-5.4-12-12-12h-40c-6.6 0-12 5.4-12 12v40c0 6.6 5.4 12 12 12h40c6.6 0 12-5.4 12-12zm96 0v-40c0-6.6-5.4-12-12-12h-40c-6.6 0-12 5.4-12 12v40c0 6.6 5.4 12 12 12h40c6.6 0 12-5.4 12-12zm-96 96v-40c0-6.6-5.4-12-12-12h-40c-6.6 0-12 5.4-12 12v40c0 6.6 5.4 12 12 12h40c6.6 0 12-5.4 12-12zm-96 0v-40c0-6.6-5.4-12-12-12h-40c-6.6 0-12 5.4-12 12v40c0 6.6 5.4 12 12 12h40c6.6 0 12-5.4 12-12zm192 0v-40c0-6.6-5.4-12-12-12h-40c-6.6 0-12 5.4-12 12v40c0 6.6 5.4 12 12 12h40c6.6 0 12-5.4 12-12zm96-260v352c0 26.5-21.5 48-48 48H48c-26.5 0-48-21.5-48-48V112c0-26.5 21.5-48 48-48h48V12c0-6.6 5.4-12 12-12h40c6.6 0 12 5.4 12 12v52h128V12c0-6.6 5.4-12 12-12h40c6.6 0 12 5.4 12 12v52h48c26.5 0 48 21.5 48 48zm-48 346V160H48v298c0 3.3 2.7 6 6 6h340c3.3 0 6-2.7 6-6z"],"calendar-check":[448,512,[],"f274","M400 64h-48V12c0-6.627-5.373-12-12-12h-40c-6.627 0-12 5.373-12 12v52H160V12c0-6.627-5.373-12-12-12h-40c-6.627 0-12 5.373-12 12v52H48C21.49 64 0 85.49 0 112v352c0 26.51 21.49 48 48 48h352c26.51 0 48-21.49 48-48V112c0-26.51-21.49-48-48-48zm-6 400H54a6 6 0 0 1-6-6V160h352v298a6 6 0 0 1-6 6zm-52.849-200.65L198.842 404.519c-4.705 4.667-12.303 4.637-16.971-.068l-75.091-75.699c-4.667-4.705-4.637-12.303.068-16.971l22.719-22.536c4.705-4.667 12.303-4.637 16.97.069l44.104 44.461 111.072-110.181c4.705-4.667 12.303-4.637 16.971.068l22.536 22.718c4.667 4.705 4.636 12.303-.069 16.97z"],"calendar-minus":[448,512,[],"f272","M124 328c-6.6 0-12-5.4-12-12v-24c0-6.6 5.4-12 12-12h200c6.6 0 12 5.4 12 12v24c0 6.6-5.4 12-12 12H124zm324-216v352c0 26.5-21.5 48-48 48H48c-26.5 0-48-21.5-48-48V112c0-26.5 21.5-48 48-48h48V12c0-6.6 5.4-12 12-12h40c6.6 0 12 5.4 12 12v52h128V12c0-6.6 5.4-12 12-12h40c6.6 0 12 5.4 12 12v52h48c26.5 0 48 21.5 48 48zm-48 346V160H48v298c0 3.3 2.7 6 6 6h340c3.3 0 6-2.7 6-6z"],"calendar-plus":[448,512,[],"f271","M336 292v24c0 6.6-5.4 12-12 12h-76v76c0 6.6-5.4 12-12 12h-24c-6.6 0-12-5.4-12-12v-76h-76c-6.6 0-12-5.4-12-12v-24c0-6.6 5.4-12 12-12h76v-76c0-6.6 5.4-12 12-12h24c6.6 0 12 5.4 12 12v76h76c6.6 0 12 5.4 12 12zm112-180v352c0 26.5-21.5 48-48 48H48c-26.5 0-48-21.5-48-48V112c0-26.5 21.5-48 48-48h48V12c0-6.6 5.4-12 12-12h40c6.6 0 12 5.4 12 12v52h128V12c0-6.6 5.4-12 12-12h40c6.6 0 12 5.4 12 12v52h48c26.5 0 48 21.5 48 48zm-48 346V160H48v298c0 3.3 2.7 6 6 6h340c3.3 0 6-2.7 6-6z"],"calendar-times":[448,512,[],"f273","M311.7 374.7l-17 17c-4.7 4.7-12.3 4.7-17 0L224 337.9l-53.7 53.7c-4.7 4.7-12.3 4.7-17 0l-17-17c-4.7-4.7-4.7-12.3 0-17l53.7-53.7-53.7-53.7c-4.7-4.7-4.7-12.3 0-17l17-17c4.7-4.7 12.3-4.7 17 0l53.7 53.7 53.7-53.7c4.7-4.7 12.3-4.7 17 0l17 17c4.7 4.7 4.7 12.3 0 17L257.9 304l53.7 53.7c4.8 4.7 4.8 12.3.1 17zM448 112v352c0 26.5-21.5 48-48 48H48c-26.5 0-48-21.5-48-48V112c0-26.5 21.5-48 48-48h48V12c0-6.6 5.4-12 12-12h40c6.6 0 12 5.4 12 12v52h128V12c0-6.6 5.4-12 12-12h40c6.6 0 12 5.4 12 12v52h48c26.5 0 48 21.5 48 48zm-48 346V160H48v298c0 3.3 2.7 6 6 6h340c3.3 0 6-2.7 6-6z"],"caret-square-down":[448,512,[],"f150","M125.1 208h197.8c10.7 0 16.1 13 8.5 20.5l-98.9 98.3c-4.7 4.7-12.2 4.7-16.9 0l-98.9-98.3c-7.7-7.5-2.3-20.5 8.4-20.5zM448 80v352c0 26.5-21.5 48-48 48H48c-26.5 0-48-21.5-48-48V80c0-26.5 21.5-48 48-48h352c26.5 0 48 21.5 48 48zm-48 346V86c0-3.3-2.7-6-6-6H54c-3.3 0-6 2.7-6 6v340c0 3.3 2.7 6 6 6h340c3.3 0 6-2.7 6-6z"],"caret-square-left":[448,512,[],"f191","M272 157.1v197.8c0 10.7-13 16.1-20.5 8.5l-98.3-98.9c-4.7-4.7-4.7-12.2 0-16.9l98.3-98.9c7.5-7.7 20.5-2.3 20.5 8.4zM448 80v352c0 26.5-21.5 48-48 48H48c-26.5 0-48-21.5-48-48V80c0-26.5 21.5-48 48-48h352c26.5 0 48 21.5 48 48zm-48 346V86c0-3.3-2.7-6-6-6H54c-3.3 0-6 2.7-6 6v340c0 3.3 2.7 6 6 6h340c3.3 0 6-2.7 6-6z"],"caret-square-right":[448,512,[],"f152","M176 354.9V157.1c0-10.7 13-16.1 20.5-8.5l98.3 98.9c4.7 4.7 4.7 12.2 0 16.9l-98.3 98.9c-7.5 7.7-20.5 2.3-20.5-8.4zM448 80v352c0 26.5-21.5 48-48 48H48c-26.5 0-48-21.5-48-48V80c0-26.5 21.5-48 48-48h352c26.5 0 48 21.5 48 48zm-48 346V86c0-3.3-2.7-6-6-6H54c-3.3 0-6 2.7-6 6v340c0 3.3 2.7 6 6 6h340c3.3 0 6-2.7 6-6z"],"caret-square-up":[448,512,[],"f151","M322.9 304H125.1c-10.7 0-16.1-13-8.5-20.5l98.9-98.3c4.7-4.7 12.2-4.7 16.9 0l98.9 98.3c7.7 7.5 2.3 20.5-8.4 20.5zM448 80v352c0 26.5-21.5 48-48 48H48c-26.5 0-48-21.5-48-48V80c0-26.5 21.5-48 48-48h352c26.5 0 48 21.5 48 48zm-48 346V86c0-3.3-2.7-6-6-6H54c-3.3 0-6 2.7-6 6v340c0 3.3 2.7 6 6 6h340c3.3 0 6-2.7 6-6z"],"chart-bar":[512,512,[],"f080","M396.8 352h22.4c6.4 0 12.8-6.4 12.8-12.8V108.8c0-6.4-6.4-12.8-12.8-12.8h-22.4c-6.4 0-12.8 6.4-12.8 12.8v230.4c0 6.4 6.4 12.8 12.8 12.8zm-192 0h22.4c6.4 0 12.8-6.4 12.8-12.8V140.8c0-6.4-6.4-12.8-12.8-12.8h-22.4c-6.4 0-12.8 6.4-12.8 12.8v198.4c0 6.4 6.4 12.8 12.8 12.8zm96 0h22.4c6.4 0 12.8-6.4 12.8-12.8V204.8c0-6.4-6.4-12.8-12.8-12.8h-22.4c-6.4 0-12.8 6.4-12.8 12.8v134.4c0 6.4 6.4 12.8 12.8 12.8zM496 400H48V80c0-8.84-7.16-16-16-16H16C7.16 64 0 71.16 0 80v336c0 17.67 14.33 32 32 32h464c8.84 0 16-7.16 16-16v-16c0-8.84-7.16-16-16-16zm-387.2-48h22.4c6.4 0 12.8-6.4 12.8-12.8v-70.4c0-6.4-6.4-12.8-12.8-12.8h-22.4c-6.4 0-12.8 6.4-12.8 12.8v70.4c0 6.4 6.4 12.8 12.8 12.8z"],"check-circle":[512,512,[],"f058","M256 8C119.033 8 8 119.033 8 256s111.033 248 248 248 248-111.033 248-248S392.967 8 256 8zm0 48c110.532 0 200 89.451 200 200 0 110.532-89.451 200-200 200-110.532 0-200-89.451-200-200 0-110.532 89.451-200 200-200m140.204 130.267l-22.536-22.718c-4.667-4.705-12.265-4.736-16.97-.068L215.346 303.697l-59.792-60.277c-4.667-4.705-12.265-4.736-16.97-.069l-22.719 22.536c-4.705 4.667-4.736 12.265-.068 16.971l90.781 91.516c4.667 4.705 12.265 4.736 16.97.068l172.589-171.204c4.704-4.668 4.734-12.266.067-16.971z"],"check-square":[448,512,[],"f14a","M400 32H48C21.49 32 0 53.49 0 80v352c0 26.51 21.49 48 48 48h352c26.51 0 48-21.49 48-48V80c0-26.51-21.49-48-48-48zm0 400H48V80h352v352zm-35.864-241.724L191.547 361.48c-4.705 4.667-12.303 4.637-16.97-.068l-90.781-91.516c-4.667-4.705-4.637-12.303.069-16.971l22.719-22.536c4.705-4.667 12.303-4.637 16.97.069l59.792 60.277 141.352-140.216c4.705-4.667 12.303-4.637 16.97.068l22.536 22.718c4.667 4.706 4.637 12.304-.068 16.971z"],circle:[512,512,[],"f111","M256 8C119 8 8 119 8 256s111 248 248 248 248-111 248-248S393 8 256 8zm0 448c-110.5 0-200-89.5-200-200S145.5 56 256 56s200 89.5 200 200-89.5 200-200 200z"],clipboard:[384,512,[],"f328","M336 64h-80c0-35.3-28.7-64-64-64s-64 28.7-64 64H48C21.5 64 0 85.5 0 112v352c0 26.5 21.5 48 48 48h288c26.5 0 48-21.5 48-48V112c0-26.5-21.5-48-48-48zM192 40c13.3 0 24 10.7 24 24s-10.7 24-24 24-24-10.7-24-24 10.7-24 24-24zm144 418c0 3.3-2.7 6-6 6H54c-3.3 0-6-2.7-6-6V118c0-3.3 2.7-6 6-6h42v36c0 6.6 5.4 12 12 12h168c6.6 0 12-5.4 12-12v-36h42c3.3 0 6 2.7 6 6z"],clock:[512,512,[],"f017","M256 8C119 8 8 119 8 256s111 248 248 248 248-111 248-248S393 8 256 8zm0 448c-110.5 0-200-89.5-200-200S145.5 56 256 56s200 89.5 200 200-89.5 200-200 200zm61.8-104.4l-84.9-61.7c-3.1-2.3-4.9-5.9-4.9-9.7V116c0-6.6 5.4-12 12-12h32c6.6 0 12 5.4 12 12v141.7l66.8 48.6c5.4 3.9 6.5 11.4 2.6 16.8L334.6 349c-3.9 5.3-11.4 6.5-16.8 2.6z"],clone:[512,512,[],"f24d","M464 0H144c-26.51 0-48 21.49-48 48v48H48c-26.51 0-48 21.49-48 48v320c0 26.51 21.49 48 48 48h320c26.51 0 48-21.49 48-48v-48h48c26.51 0 48-21.49 48-48V48c0-26.51-21.49-48-48-48zM362 464H54a6 6 0 0 1-6-6V150a6 6 0 0 1 6-6h42v224c0 26.51 21.49 48 48 48h224v42a6 6 0 0 1-6 6zm96-96H150a6 6 0 0 1-6-6V54a6 6 0 0 1 6-6h308a6 6 0 0 1 6 6v308a6 6 0 0 1-6 6z"],"closed-captioning":[512,512,[],"f20a","M464 64H48C21.5 64 0 85.5 0 112v288c0 26.5 21.5 48 48 48h416c26.5 0 48-21.5 48-48V112c0-26.5-21.5-48-48-48zm-6 336H54c-3.3 0-6-2.7-6-6V118c0-3.3 2.7-6 6-6h404c3.3 0 6 2.7 6 6v276c0 3.3-2.7 6-6 6zm-211.1-85.7c1.7 2.4 1.5 5.6-.5 7.7-53.6 56.8-172.8 32.1-172.8-67.9 0-97.3 121.7-119.5 172.5-70.1 2.1 2 2.5 3.2 1 5.7l-17.5 30.5c-1.9 3.1-6.2 4-9.1 1.7-40.8-32-94.6-14.9-94.6 31.2 0 48 51 70.5 92.2 32.6 2.8-2.5 7.1-2.1 9.2.9l19.6 27.7zm190.4 0c1.7 2.4 1.5 5.6-.5 7.7-53.6 56.9-172.8 32.1-172.8-67.9 0-97.3 121.7-119.5 172.5-70.1 2.1 2 2.5 3.2 1 5.7L420 220.2c-1.9 3.1-6.2 4-9.1 1.7-40.8-32-94.6-14.9-94.6 31.2 0 48 51 70.5 92.2 32.6 2.8-2.5 7.1-2.1 9.2.9l19.6 27.7z"],comment:[512,512,[],"f075","M256 32C114.6 32 0 125.1 0 240c0 47.6 19.9 91.2 52.9 126.3C38 405.7 7 439.1 6.5 439.5c-6.6 7-8.4 17.2-4.6 26S14.4 480 24 480c61.5 0 110-25.7 139.1-46.3C192 442.8 223.2 448 256 448c141.4 0 256-93.1 256-208S397.4 32 256 32zm0 368c-26.7 0-53.1-4.1-78.4-12.1l-22.7-7.2-19.5 13.8c-14.3 10.1-33.9 21.4-57.5 29 7.3-12.1 14.4-25.7 19.9-40.2l10.6-28.1-20.6-21.8C69.7 314.1 48 282.2 48 240c0-88.2 93.3-160 208-160s208 71.8 208 160-93.3 160-208 160z"],"comment-alt":[512,512,[],"f27a","M448 0H64C28.7 0 0 28.7 0 64v288c0 35.3 28.7 64 64 64h96v84c0 7.1 5.8 12 12 12 2.4 0 4.9-.7 7.1-2.4L304 416h144c35.3 0 64-28.7 64-64V64c0-35.3-28.7-64-64-64zm16 352c0 8.8-7.2 16-16 16H288l-12.8 9.6L208 428v-60H64c-8.8 0-16-7.2-16-16V64c0-8.8 7.2-16 16-16h384c8.8 0 16 7.2 16 16v288z"],"comment-dots":[512,512,[],"f4ad","M144 208c-17.7 0-32 14.3-32 32s14.3 32 32 32 32-14.3 32-32-14.3-32-32-32zm112 0c-17.7 0-32 14.3-32 32s14.3 32 32 32 32-14.3 32-32-14.3-32-32-32zm112 0c-17.7 0-32 14.3-32 32s14.3 32 32 32 32-14.3 32-32-14.3-32-32-32zM256 32C114.6 32 0 125.1 0 240c0 47.6 19.9 91.2 52.9 126.3C38 405.7 7 439.1 6.5 439.5c-6.6 7-8.4 17.2-4.6 26S14.4 480 24 480c61.5 0 110-25.7 139.1-46.3C192 442.8 223.2 448 256 448c141.4 0 256-93.1 256-208S397.4 32 256 32zm0 368c-26.7 0-53.1-4.1-78.4-12.1l-22.7-7.2-19.5 13.8c-14.3 10.1-33.9 21.4-57.5 29 7.3-12.1 14.4-25.7 19.9-40.2l10.6-28.1-20.6-21.8C69.7 314.1 48 282.2 48 240c0-88.2 93.3-160 208-160s208 71.8 208 160-93.3 160-208 160z"],comments:[576,512,[],"f086","M532 386.2c27.5-27.1 44-61.1 44-98.2 0-80-76.5-146.1-176.2-157.9C368.3 72.5 294.3 32 208 32 93.1 32 0 103.6 0 192c0 37 16.5 71 44 98.2-15.3 30.7-37.3 54.5-37.7 54.9-6.3 6.7-8.1 16.5-4.4 25 3.6 8.5 12 14 21.2 14 53.5 0 96.7-20.2 125.2-38.8 9.2 2.1 18.7 3.7 28.4 4.9C208.1 407.6 281.8 448 368 448c20.8 0 40.8-2.4 59.8-6.8C456.3 459.7 499.4 480 553 480c9.2 0 17.5-5.5 21.2-14 3.6-8.5 1.9-18.3-4.4-25-.4-.3-22.5-24.1-37.8-54.8zm-392.8-92.3L122.1 305c-14.1 9.1-28.5 16.3-43.1 21.4 2.7-4.7 5.4-9.7 8-14.8l15.5-31.1L77.7 256C64.2 242.6 48 220.7 48 192c0-60.7 73.3-112 160-112s160 51.3 160 112-73.3 112-160 112c-16.5 0-33-1.9-49-5.6l-19.8-4.5zM498.3 352l-24.7 24.4 15.5 31.1c2.6 5.1 5.3 10.1 8 14.8-14.6-5.1-29-12.3-43.1-21.4l-17.1-11.1-19.9 4.6c-16 3.7-32.5 5.6-49 5.6-54 0-102.2-20.1-131.3-49.7C338 339.5 416 272.9 416 192c0-3.4-.4-6.7-.7-10C479.7 196.5 528 238.8 528 288c0 28.7-16.2 50.6-29.7 64z"],compass:[496,512,[],"f14e","M347.94 129.86L203.6 195.83a31.938 31.938 0 0 0-15.77 15.77l-65.97 144.34c-7.61 16.65 9.54 33.81 26.2 26.2l144.34-65.97a31.938 31.938 0 0 0 15.77-15.77l65.97-144.34c7.61-16.66-9.54-33.81-26.2-26.2zm-77.36 148.72c-12.47 12.47-32.69 12.47-45.16 0-12.47-12.47-12.47-32.69 0-45.16 12.47-12.47 32.69-12.47 45.16 0 12.47 12.47 12.47 32.69 0 45.16zM248 8C111.03 8 0 119.03 0 256s111.03 248 248 248 248-111.03 248-248S384.97 8 248 8zm0 448c-110.28 0-200-89.72-200-200S137.72 56 248 56s200 89.72 200 200-89.72 200-200 200z"],copy:[448,512,[],"f0c5","M433.941 65.941l-51.882-51.882A48 48 0 0 0 348.118 0H176c-26.51 0-48 21.49-48 48v48H48c-26.51 0-48 21.49-48 48v320c0 26.51 21.49 48 48 48h224c26.51 0 48-21.49 48-48v-48h80c26.51 0 48-21.49 48-48V99.882a48 48 0 0 0-14.059-33.941zM266 464H54a6 6 0 0 1-6-6V150a6 6 0 0 1 6-6h74v224c0 26.51 21.49 48 48 48h96v42a6 6 0 0 1-6 6zm128-96H182a6 6 0 0 1-6-6V54a6 6 0 0 1 6-6h106v88c0 13.255 10.745 24 24 24h88v202a6 6 0 0 1-6 6zm6-256h-64V48h9.632c1.591 0 3.117.632 4.243 1.757l48.368 48.368a6 6 0 0 1 1.757 4.243V112z"],copyright:[512,512,[],"f1f9","M256 8C119.033 8 8 119.033 8 256s111.033 248 248 248 248-111.033 248-248S392.967 8 256 8zm0 448c-110.532 0-200-89.451-200-200 0-110.531 89.451-200 200-200 110.532 0 200 89.451 200 200 0 110.532-89.451 200-200 200zm107.351-101.064c-9.614 9.712-45.53 41.396-104.065 41.396-82.43 0-140.484-61.425-140.484-141.567 0-79.152 60.275-139.401 139.762-139.401 55.531 0 88.738 26.62 97.593 34.779a11.965 11.965 0 0 1 1.936 15.322l-18.155 28.113c-3.841 5.95-11.966 7.282-17.499 2.921-8.595-6.776-31.814-22.538-61.708-22.538-48.303 0-77.916 35.33-77.916 80.082 0 41.589 26.888 83.692 78.277 83.692 32.657 0 56.843-19.039 65.726-27.225 5.27-4.857 13.596-4.039 17.82 1.738l19.865 27.17a11.947 11.947 0 0 1-1.152 15.518z"],"credit-card":[576,512,[],"f09d","M527.9 32H48.1C21.5 32 0 53.5 0 80v352c0 26.5 21.5 48 48.1 48h479.8c26.6 0 48.1-21.5 48.1-48V80c0-26.5-21.5-48-48.1-48zM54.1 80h467.8c3.3 0 6 2.7 6 6v42H48.1V86c0-3.3 2.7-6 6-6zm467.8 352H54.1c-3.3 0-6-2.7-6-6V256h479.8v170c0 3.3-2.7 6-6 6zM192 332v40c0 6.6-5.4 12-12 12h-72c-6.6 0-12-5.4-12-12v-40c0-6.6 5.4-12 12-12h72c6.6 0 12 5.4 12 12zm192 0v40c0 6.6-5.4 12-12 12H236c-6.6 0-12-5.4-12-12v-40c0-6.6 5.4-12 12-12h136c6.6 0 12 5.4 12 12z"],dizzy:[496,512,[],"f567","M248 8C111 8 0 119 0 256s111 248 248 248 248-111 248-248S385 8 248 8zm0 448c-110.3 0-200-89.7-200-200S137.7 56 248 56s200 89.7 200 200-89.7 200-200 200zm-33.8-217.9c7.8-7.8 7.8-20.5 0-28.3L196.3 192l17.9-17.9c7.8-7.8 7.8-20.5 0-28.3-7.8-7.8-20.5-7.8-28.3 0L168 163.7l-17.8-17.8c-7.8-7.8-20.5-7.8-28.3 0-7.8 7.8-7.8 20.5 0 28.3l17.9 17.9-17.9 17.9c-7.8 7.8-7.8 20.5 0 28.3 7.8 7.8 20.5 7.8 28.3 0l17.8-17.8 17.8 17.8c7.9 7.7 20.5 7.7 28.4-.2zm160-92.2c-7.8-7.8-20.5-7.8-28.3 0L328 163.7l-17.8-17.8c-7.8-7.8-20.5-7.8-28.3 0-7.8 7.8-7.8 20.5 0 28.3l17.9 17.9-17.9 17.9c-7.8 7.8-7.8 20.5 0 28.3 7.8 7.8 20.5 7.8 28.3 0l17.8-17.8 17.8 17.8c7.8 7.8 20.5 7.8 28.3 0 7.8-7.8 7.8-20.5 0-28.3l-17.8-18 17.9-17.9c7.7-7.8 7.7-20.4 0-28.2zM248 272c-35.3 0-64 28.7-64 64s28.7 64 64 64 64-28.7 64-64-28.7-64-64-64z"],"dot-circle":[512,512,[],"f192","M256 56c110.532 0 200 89.451 200 200 0 110.532-89.451 200-200 200-110.532 0-200-89.451-200-200 0-110.532 89.451-200 200-200m0-48C119.033 8 8 119.033 8 256s111.033 248 248 248 248-111.033 248-248S392.967 8 256 8zm0 168c-44.183 0-80 35.817-80 80s35.817 80 80 80 80-35.817 80-80-35.817-80-80-80z"],edit:[576,512,[],"f044","M402.3 344.9l32-32c5-5 13.7-1.5 13.7 5.7V464c0 26.5-21.5 48-48 48H48c-26.5 0-48-21.5-48-48V112c0-26.5 21.5-48 48-48h273.5c7.1 0 10.7 8.6 5.7 13.7l-32 32c-1.5 1.5-3.5 2.3-5.7 2.3H48v352h352V350.5c0-2.1.8-4.1 2.3-5.6zm156.6-201.8L296.3 405.7l-90.4 10c-26.2 2.9-48.5-19.2-45.6-45.6l10-90.4L432.9 17.1c22.9-22.9 59.9-22.9 82.7 0l43.2 43.2c22.9 22.9 22.9 60 .1 82.8zM460.1 174L402 115.9 216.2 301.8l-7.3 65.3 65.3-7.3L460.1 174zm64.8-79.7l-43.2-43.2c-4.1-4.1-10.8-4.1-14.8 0L436 82l58.1 58.1 30.9-30.9c4-4.2 4-10.8-.1-14.9z"],envelope:[512,512,[],"f0e0","M464 64H48C21.49 64 0 85.49 0 112v288c0 26.51 21.49 48 48 48h416c26.51 0 48-21.49 48-48V112c0-26.51-21.49-48-48-48zm0 48v40.805c-22.422 18.259-58.168 46.651-134.587 106.49-16.841 13.247-50.201 45.072-73.413 44.701-23.208.375-56.579-31.459-73.413-44.701C106.18 199.465 70.425 171.067 48 152.805V112h416zM48 400V214.398c22.914 18.251 55.409 43.862 104.938 82.646 21.857 17.205 60.134 55.186 103.062 54.955 42.717.231 80.509-37.199 103.053-54.947 49.528-38.783 82.032-64.401 104.947-82.653V400H48z"],"envelope-open":[512,512,[],"f2b6","M494.586 164.516c-4.697-3.883-111.723-89.95-135.251-108.657C337.231 38.191 299.437 0 256 0c-43.205 0-80.636 37.717-103.335 55.859-24.463 19.45-131.07 105.195-135.15 108.549A48.004 48.004 0 0 0 0 201.485V464c0 26.51 21.49 48 48 48h416c26.51 0 48-21.49 48-48V201.509a48 48 0 0 0-17.414-36.993zM464 458a6 6 0 0 1-6 6H54a6 6 0 0 1-6-6V204.347c0-1.813.816-3.526 2.226-4.665 15.87-12.814 108.793-87.554 132.364-106.293C200.755 78.88 232.398 48 256 48c23.693 0 55.857 31.369 73.41 45.389 23.573 18.741 116.503 93.493 132.366 106.316a5.99 5.99 0 0 1 2.224 4.663V458zm-31.991-187.704c4.249 5.159 3.465 12.795-1.745 16.981-28.975 23.283-59.274 47.597-70.929 56.863C336.636 362.283 299.205 400 256 400c-43.452 0-81.287-38.237-103.335-55.86-11.279-8.967-41.744-33.413-70.927-56.865-5.21-4.187-5.993-11.822-1.745-16.981l15.258-18.528c4.178-5.073 11.657-5.843 16.779-1.726 28.618 23.001 58.566 47.035 70.56 56.571C200.143 320.631 232.307 352 256 352c23.602 0 55.246-30.88 73.41-45.389 11.994-9.535 41.944-33.57 70.563-56.568 5.122-4.116 12.601-3.346 16.778 1.727l15.258 18.526z"],eye:[576,512,[],"f06e","M288 144a110.94 110.94 0 0 0-31.24 5 55.4 55.4 0 0 1 7.24 27 56 56 0 0 1-56 56 55.4 55.4 0 0 1-27-7.24A111.71 111.71 0 1 0 288 144zm284.52 97.4C518.29 135.59 410.93 64 288 64S57.68 135.64 3.48 241.41a32.35 32.35 0 0 0 0 29.19C57.71 376.41 165.07 448 288 448s230.32-71.64 284.52-177.41a32.35 32.35 0 0 0 0-29.19zM288 400c-98.65 0-189.09-55-237.93-144C98.91 167 189.34 112 288 112s189.09 55 237.93 144C477.1 345 386.66 400 288 400z"],"eye-slash":[640,512,[],"f070","M634 471L36 3.51A16 16 0 0 0 13.51 6l-10 12.49A16 16 0 0 0 6 41l598 467.49a16 16 0 0 0 22.49-2.49l10-12.49A16 16 0 0 0 634 471zM296.79 146.47l134.79 105.38C429.36 191.91 380.48 144 320 144a112.26 112.26 0 0 0-23.21 2.47zm46.42 219.07L208.42 260.16C210.65 320.09 259.53 368 320 368a113 113 0 0 0 23.21-2.46zM320 112c98.65 0 189.09 55 237.93 144a285.53 285.53 0 0 1-44 60.2l37.74 29.5a333.7 333.7 0 0 0 52.9-75.11 32.35 32.35 0 0 0 0-29.19C550.29 135.59 442.93 64 320 64c-36.7 0-71.71 7-104.63 18.81l46.41 36.29c18.94-4.3 38.34-7.1 58.22-7.1zm0 288c-98.65 0-189.08-55-237.93-144a285.47 285.47 0 0 1 44.05-60.19l-37.74-29.5a333.6 333.6 0 0 0-52.89 75.1 32.35 32.35 0 0 0 0 29.19C89.72 376.41 197.08 448 320 448c36.7 0 71.71-7.05 104.63-18.81l-46.41-36.28C359.28 397.2 339.89 400 320 400z"],file:[384,512,[],"f15b","M369.9 97.9L286 14C277 5 264.8-.1 252.1-.1H48C21.5 0 0 21.5 0 48v416c0 26.5 21.5 48 48 48h288c26.5 0 48-21.5 48-48V131.9c0-12.7-5.1-25-14.1-34zM332.1 128H256V51.9l76.1 76.1zM48 464V48h160v104c0 13.3 10.7 24 24 24h104v288H48z"],"file-alt":[384,512,[],"f15c","M288 248v28c0 6.6-5.4 12-12 12H108c-6.6 0-12-5.4-12-12v-28c0-6.6 5.4-12 12-12h168c6.6 0 12 5.4 12 12zm-12 72H108c-6.6 0-12 5.4-12 12v28c0 6.6 5.4 12 12 12h168c6.6 0 12-5.4 12-12v-28c0-6.6-5.4-12-12-12zm108-188.1V464c0 26.5-21.5 48-48 48H48c-26.5 0-48-21.5-48-48V48C0 21.5 21.5 0 48 0h204.1C264.8 0 277 5.1 286 14.1L369.9 98c9 8.9 14.1 21.2 14.1 33.9zm-128-80V128h76.1L256 51.9zM336 464V176H232c-13.3 0-24-10.7-24-24V48H48v416h288z"],"file-archive":[384,512,[],"f1c6","M128.3 160v32h32v-32zm64-96h-32v32h32zm-64 32v32h32V96zm64 32h-32v32h32zm177.6-30.1L286 14C277 5 264.8-.1 252.1-.1H48C21.5 0 0 21.5 0 48v416c0 26.5 21.5 48 48 48h288c26.5 0 48-21.5 48-48V131.9c0-12.7-5.1-25-14.1-34zM256 51.9l76.1 76.1H256zM336 464H48V48h79.7v16h32V48H208v104c0 13.3 10.7 24 24 24h104zM194.2 265.7c-1.1-5.6-6-9.7-11.8-9.7h-22.1v-32h-32v32l-19.7 97.1C102 385.6 126.8 416 160 416c33.1 0 57.9-30.2 51.5-62.6zm-33.9 124.4c-17.9 0-32.4-12.1-32.4-27s14.5-27 32.4-27 32.4 12.1 32.4 27-14.5 27-32.4 27zm32-198.1h-32v32h32z"],"file-audio":[384,512,[],"f1c7","M369.941 97.941l-83.882-83.882A48 48 0 0 0 252.118 0H48C21.49 0 0 21.49 0 48v416c0 26.51 21.49 48 48 48h288c26.51 0 48-21.49 48-48V131.882a48 48 0 0 0-14.059-33.941zM332.118 128H256V51.882L332.118 128zM48 464V48h160v104c0 13.255 10.745 24 24 24h104v288H48zm144-76.024c0 10.691-12.926 16.045-20.485 8.485L136 360.486h-28c-6.627 0-12-5.373-12-12v-56c0-6.627 5.373-12 12-12h28l35.515-36.947c7.56-7.56 20.485-2.206 20.485 8.485v135.952zm41.201-47.13c9.051-9.297 9.06-24.133.001-33.439-22.149-22.752 12.235-56.246 34.395-33.481 27.198 27.94 27.212 72.444.001 100.401-21.793 22.386-56.947-10.315-34.397-33.481z"],"file-code":[384,512,[],"f1c9","M149.9 349.1l-.2-.2-32.8-28.9 32.8-28.9c3.6-3.2 4-8.8.8-12.4l-.2-.2-17.4-18.6c-3.4-3.6-9-3.7-12.4-.4l-57.7 54.1c-3.7 3.5-3.7 9.4 0 12.8l57.7 54.1c1.6 1.5 3.8 2.4 6 2.4 2.4 0 4.8-1 6.4-2.8l17.4-18.6c3.3-3.5 3.1-9.1-.4-12.4zm220-251.2L286 14C277 5 264.8-.1 252.1-.1H48C21.5 0 0 21.5 0 48v416c0 26.5 21.5 48 48 48h288c26.5 0 48-21.5 48-48V131.9c0-12.7-5.1-25-14.1-34zM256 51.9l76.1 76.1H256zM336 464H48V48h160v104c0 13.3 10.7 24 24 24h104zM209.6 214c-4.7-1.4-9.5 1.3-10.9 6L144 408.1c-1.4 4.7 1.3 9.6 6 10.9l24.4 7.1c4.7 1.4 9.6-1.4 10.9-6L240 231.9c1.4-4.7-1.3-9.6-6-10.9zm24.5 76.9l.2.2 32.8 28.9-32.8 28.9c-3.6 3.2-4 8.8-.8 12.4l.2.2 17.4 18.6c3.3 3.5 8.9 3.7 12.4.4l57.7-54.1c3.7-3.5 3.7-9.4 0-12.8l-57.7-54.1c-3.5-3.3-9.1-3.2-12.4.4l-17.4 18.6c-3.3 3.5-3.1 9.1.4 12.4z"],"file-excel":[384,512,[],"f1c3","M369.9 97.9L286 14C277 5 264.8-.1 252.1-.1H48C21.5 0 0 21.5 0 48v416c0 26.5 21.5 48 48 48h288c26.5 0 48-21.5 48-48V131.9c0-12.7-5.1-25-14.1-34zM332.1 128H256V51.9l76.1 76.1zM48 464V48h160v104c0 13.3 10.7 24 24 24h104v288H48zm212-240h-28.8c-4.4 0-8.4 2.4-10.5 6.3-18 33.1-22.2 42.4-28.6 57.7-13.9-29.1-6.9-17.3-28.6-57.7-2.1-3.9-6.2-6.3-10.6-6.3H124c-9.3 0-15 10-10.4 18l46.3 78-46.3 78c-4.7 8 1.1 18 10.4 18h28.9c4.4 0 8.4-2.4 10.5-6.3 21.7-40 23-45 28.6-57.7 14.9 30.2 5.9 15.9 28.6 57.7 2.1 3.9 6.2 6.3 10.6 6.3H260c9.3 0 15-10 10.4-18L224 320c.7-1.1 30.3-50.5 46.3-78 4.7-8-1.1-18-10.3-18z"],"file-image":[384,512,[],"f1c5","M369.9 97.9L286 14C277 5 264.8-.1 252.1-.1H48C21.5 0 0 21.5 0 48v416c0 26.5 21.5 48 48 48h288c26.5 0 48-21.5 48-48V131.9c0-12.7-5.1-25-14.1-34zM332.1 128H256V51.9l76.1 76.1zM48 464V48h160v104c0 13.3 10.7 24 24 24h104v288H48zm32-48h224V288l-23.5-23.5c-4.7-4.7-12.3-4.7-17 0L176 352l-39.5-39.5c-4.7-4.7-12.3-4.7-17 0L80 352v64zm48-240c-26.5 0-48 21.5-48 48s21.5 48 48 48 48-21.5 48-48-21.5-48-48-48z"],"file-pdf":[384,512,[],"f1c1","M369.9 97.9L286 14C277 5 264.8-.1 252.1-.1H48C21.5 0 0 21.5 0 48v416c0 26.5 21.5 48 48 48h288c26.5 0 48-21.5 48-48V131.9c0-12.7-5.1-25-14.1-34zM332.1 128H256V51.9l76.1 76.1zM48 464V48h160v104c0 13.3 10.7 24 24 24h104v288H48zm250.2-143.7c-12.2-12-47-8.7-64.4-6.5-17.2-10.5-28.7-25-36.8-46.3 3.9-16.1 10.1-40.6 5.4-56-4.2-26.2-37.8-23.6-42.6-5.9-4.4 16.1-.4 38.5 7 67.1-10 23.9-24.9 56-35.4 74.4-20 10.3-47 26.2-51 46.2-3.3 15.8 26 55.2 76.1-31.2 22.4-7.4 46.8-16.5 68.4-20.1 18.9 10.2 41 17 55.8 17 25.5 0 28-28.2 17.5-38.7zm-198.1 77.8c5.1-13.7 24.5-29.5 30.4-35-19 30.3-30.4 35.7-30.4 35zm81.6-190.6c7.4 0 6.7 32.1 1.8 40.8-4.4-13.9-4.3-40.8-1.8-40.8zm-24.4 136.6c9.7-16.9 18-37 24.7-54.7 8.3 15.1 18.9 27.2 30.1 35.5-20.8 4.3-38.9 13.1-54.8 19.2zm131.6-5s-5 6-37.3-7.8c35.1-2.6 40.9 5.4 37.3 7.8z"],"file-powerpoint":[384,512,[],"f1c4","M369.9 97.9L286 14C277 5 264.8-.1 252.1-.1H48C21.5 0 0 21.5 0 48v416c0 26.5 21.5 48 48 48h288c26.5 0 48-21.5 48-48V131.9c0-12.7-5.1-25-14.1-34zM332.1 128H256V51.9l76.1 76.1zM48 464V48h160v104c0 13.3 10.7 24 24 24h104v288H48zm72-60V236c0-6.6 5.4-12 12-12h69.2c36.7 0 62.8 27 62.8 66.3 0 74.3-68.7 66.5-95.5 66.5V404c0 6.6-5.4 12-12 12H132c-6.6 0-12-5.4-12-12zm48.5-87.4h23c7.9 0 13.9-2.4 18.1-7.2 8.5-9.8 8.4-28.5.1-37.8-4.1-4.6-9.9-7-17.4-7h-23.9v52z"],"file-video":[384,512,[],"f1c8","M369.941 97.941l-83.882-83.882A48 48 0 0 0 252.118 0H48C21.49 0 0 21.49 0 48v416c0 26.51 21.49 48 48 48h288c26.51 0 48-21.49 48-48V131.882a48 48 0 0 0-14.059-33.941zM332.118 128H256V51.882L332.118 128zM48 464V48h160v104c0 13.255 10.745 24 24 24h104v288H48zm228.687-211.303L224 305.374V268c0-11.046-8.954-20-20-20H100c-11.046 0-20 8.954-20 20v104c0 11.046 8.954 20 20 20h104c11.046 0 20-8.954 20-20v-37.374l52.687 52.674C286.704 397.318 304 390.28 304 375.986V264.011c0-14.311-17.309-21.319-27.313-11.314z"],"file-word":[384,512,[],"f1c2","M369.9 97.9L286 14C277 5 264.8-.1 252.1-.1H48C21.5 0 0 21.5 0 48v416c0 26.5 21.5 48 48 48h288c26.5 0 48-21.5 48-48V131.9c0-12.7-5.1-25-14.1-34zM332.1 128H256V51.9l76.1 76.1zM48 464V48h160v104c0 13.3 10.7 24 24 24h104v288H48zm220.1-208c-5.7 0-10.6 4-11.7 9.5-20.6 97.7-20.4 95.4-21 103.5-.2-1.2-.4-2.6-.7-4.3-.8-5.1.3.2-23.6-99.5-1.3-5.4-6.1-9.2-11.7-9.2h-13.3c-5.5 0-10.3 3.8-11.7 9.1-24.4 99-24 96.2-24.8 103.7-.1-1.1-.2-2.5-.5-4.2-.7-5.2-14.1-73.3-19.1-99-1.1-5.6-6-9.7-11.8-9.7h-16.8c-7.8 0-13.5 7.3-11.7 14.8 8 32.6 26.7 109.5 33.2 136 1.3 5.4 6.1 9.1 11.7 9.1h25.2c5.5 0 10.3-3.7 11.6-9.1l17.9-71.4c1.5-6.2 2.5-12 3-17.3l2.9 17.3c.1.4 12.6 50.5 17.9 71.4 1.3 5.3 6.1 9.1 11.6 9.1h24.7c5.5 0 10.3-3.7 11.6-9.1 20.8-81.9 30.2-119 34.5-136 1.9-7.6-3.8-14.9-11.6-14.9h-15.8z"],flag:[512,512,[],"f024","M336.174 80c-49.132 0-93.305-32-161.913-32-31.301 0-58.303 6.482-80.721 15.168a48.04 48.04 0 0 0 2.142-20.727C93.067 19.575 74.167 1.594 51.201.104 23.242-1.71 0 20.431 0 48c0 17.764 9.657 33.262 24 41.562V496c0 8.837 7.163 16 16 16h16c8.837 0 16-7.163 16-16v-83.443C109.869 395.28 143.259 384 199.826 384c49.132 0 93.305 32 161.913 32 58.479 0 101.972-22.617 128.548-39.981C503.846 367.161 512 352.051 512 335.855V95.937c0-34.459-35.264-57.768-66.904-44.117C409.193 67.309 371.641 80 336.174 80zM464 336c-21.783 15.412-60.824 32-102.261 32-59.945 0-102.002-32-161.913-32-43.361 0-96.379 9.403-127.826 24V128c21.784-15.412 60.824-32 102.261-32 59.945 0 102.002 32 161.913 32 43.271 0 96.32-17.366 127.826-32v240z"],flushed:[496,512,[],"f579","M248 8C111 8 0 119 0 256s111 248 248 248 248-111 248-248S385 8 248 8zm0 448c-110.3 0-200-89.7-200-200S137.7 56 248 56s200 89.7 200 200-89.7 200-200 200zm96-312c-44.2 0-80 35.8-80 80s35.8 80 80 80 80-35.8 80-80-35.8-80-80-80zm0 128c-26.5 0-48-21.5-48-48s21.5-48 48-48 48 21.5 48 48-21.5 48-48 48zm0-72c-13.3 0-24 10.7-24 24s10.7 24 24 24 24-10.7 24-24-10.7-24-24-24zm-112 24c0-44.2-35.8-80-80-80s-80 35.8-80 80 35.8 80 80 80 80-35.8 80-80zm-80 48c-26.5 0-48-21.5-48-48s21.5-48 48-48 48 21.5 48 48-21.5 48-48 48zm0-72c-13.3 0-24 10.7-24 24s10.7 24 24 24 24-10.7 24-24-10.7-24-24-24zm160 144H184c-13.2 0-24 10.8-24 24s10.8 24 24 24h128c13.2 0 24-10.8 24-24s-10.8-24-24-24z"],folder:[512,512,[],"f07b","M464 128H272l-54.63-54.63c-6-6-14.14-9.37-22.63-9.37H48C21.49 64 0 85.49 0 112v288c0 26.51 21.49 48 48 48h416c26.51 0 48-21.49 48-48V176c0-26.51-21.49-48-48-48zm0 272H48V112h140.12l54.63 54.63c6 6 14.14 9.37 22.63 9.37H464v224z"],"folder-open":[576,512,[],"f07c","M527.9 224H480v-48c0-26.5-21.5-48-48-48H272l-64-64H48C21.5 64 0 85.5 0 112v288c0 26.5 21.5 48 48 48h400c16.5 0 31.9-8.5 40.7-22.6l79.9-128c20-31.9-3-73.4-40.7-73.4zM48 118c0-3.3 2.7-6 6-6h134.1l64 64H426c3.3 0 6 2.7 6 6v42H152c-16.8 0-32.4 8.8-41.1 23.2L48 351.4zm400 282H72l77.2-128H528z"],"font-awesome-logo-full":[3992,512,["Font Awesome"],"f4e6","M454.6 0H57.4C25.9 0 0 25.9 0 57.4v397.3C0 486.1 25.9 512 57.4 512h397.3c31.4 0 57.4-25.9 57.4-57.4V57.4C512 25.9 486.1 0 454.6 0zm-58.9 324.9c0 4.8-4.1 6.9-8.9 8.9-19.2 8.1-39.7 15.7-61.5 15.7-40.5 0-68.7-44.8-163.2 2.5v51.8c0 30.3-45.7 30.2-45.7 0v-250c-9-7-15-17.9-15-30.3 0-21 17.1-38.2 38.2-38.2 21 0 38.2 17.1 38.2 38.2 0 12.2-5.8 23.2-14.9 30.2v21c37.1-12 65.5-34.4 146.1-3.4 26.6 11.4 68.7-15.7 76.5-15.7 5.5 0 10.3 4.1 10.3 8.9v160.4zm432.9-174.2h-137v70.1H825c39.8 0 40.4 62.2 0 62.2H691.6v105.6c0 45.5-70.7 46.4-70.7 0V128.3c0-22 18-39.8 39.8-39.8h167.8c39.6 0 40.5 62.2.1 62.2zm191.1 23.4c-169.3 0-169.1 252.4 0 252.4 169.9 0 169.9-252.4 0-252.4zm0 196.1c-81.6 0-82.1-139.8 0-139.8 82.5 0 82.4 139.8 0 139.8zm372.4 53.4c-17.5 0-31.4-13.9-31.4-31.4v-117c0-62.4-72.6-52.5-99.1-16.4v133.4c0 41.5-63.3 41.8-63.3 0V208c0-40 63.1-41.6 63.1 0v3.4c43.3-51.6 162.4-60.4 162.4 39.3v141.5c.3 30.4-31.5 31.4-31.7 31.4zm179.7 2.9c-44.3 0-68.3-22.9-68.3-65.8V235.2H1488c-35.6 0-36.7-55.3 0-55.3h15.5v-37.3c0-41.3 63.8-42.1 63.8 0v37.5h24.9c35.4 0 35.7 55.3 0 55.3h-24.9v108.5c0 29.6 26.1 26.3 27.4 26.3 31.4 0 52.6 56.3-22.9 56.3zM1992 123c-19.5-50.2-95.5-50-114.5 0-107.3 275.7-99.5 252.7-99.5 262.8 0 42.8 58.3 51.2 72.1 14.4l13.5-35.9H2006l13 35.9c14.2 37.7 72.1 27.2 72.1-14.4 0-10.1 5.3 6.8-99.1-262.8zm-108.9 179.1l51.7-142.9 51.8 142.9h-103.5zm591.3-85.6l-53.7 176.3c-12.4 41.2-72 41-84 0l-42.3-135.9-42.3 135.9c-12.4 40.9-72 41.2-84.5 0l-54.2-176.3c-12.5-39.4 49.8-56.1 60.2-16.9L2213 342l45.3-139.5c10.9-32.7 59.6-34.7 71.2 0l45.3 139.5 39.3-142.4c10.3-38.3 72.6-23.8 60.3 16.9zm275.4 75.1c0-42.4-33.9-117.5-119.5-117.5-73.2 0-124.4 56.3-124.4 126 0 77.2 55.3 126.4 128.5 126.4 31.7 0 93-11.5 93-39.8 0-18.3-21.1-31.5-39.3-22.4-49.4 26.2-109 8.4-115.9-43.8h148.3c16.3 0 29.3-13.4 29.3-28.9zM2571 277.7c9.5-73.4 113.9-68.6 118.6 0H2571zm316.7 148.8c-31.4 0-81.6-10.5-96.6-31.9-12.4-17 2.5-39.8 21.8-39.8 16.3 0 36.8 22.9 77.7 22.9 27.4 0 40.4-11 40.4-25.8 0-39.8-142.9-7.4-142.9-102 0-40.4 35.3-75.7 98.6-75.7 31.4 0 74.1 9.9 87.6 29.4 10.8 14.8-1.4 36.2-20.9 36.2-15.1 0-26.7-17.3-66.2-17.3-22.9 0-37.8 10.5-37.8 23.8 0 35.9 142.4 6 142.4 103.1-.1 43.7-37.4 77.1-104.1 77.1zm266.8-252.4c-169.3 0-169.1 252.4 0 252.4 170.1 0 169.6-252.4 0-252.4zm0 196.1c-81.8 0-82-139.8 0-139.8 82.5 0 82.4 139.8 0 139.8zm476.9 22V268.7c0-53.8-61.4-45.8-85.7-10.5v134c0 41.3-63.8 42.1-63.8 0V268.7c0-52.1-59.5-47.4-85.7-10.1v133.6c0 41.5-63.3 41.8-63.3 0V208c0-40 63.1-41.6 63.1 0v3.4c9.9-14.4 41.8-37.3 78.6-37.3 35.3 0 57.7 16.4 66.7 43.8 13.9-21.8 45.8-43.8 82.6-43.8 44.3 0 70.7 23.4 70.7 72.7v145.3c.5 17.3-13.5 31.4-31.9 31.4 3.5.1-31.3 1.1-31.3-31.3zM3992 291.6c0-42.4-32.4-117.5-117.9-117.5-73.2 0-127.5 56.3-127.5 126 0 77.2 58.3 126.4 131.6 126.4 31.7 0 91.5-11.5 91.5-39.8 0-18.3-21.1-31.5-39.3-22.4-49.4 26.2-110.5 8.4-117.5-43.8h149.8c16.3 0 29.1-13.4 29.3-28.9zm-180.5-13.9c9.7-74.4 115.9-68.3 120.1 0h-120.1z"],frown:[496,512,[],"f119","M248 8C111 8 0 119 0 256s111 248 248 248 248-111 248-248S385 8 248 8zm0 448c-110.3 0-200-89.7-200-200S137.7 56 248 56s200 89.7 200 200-89.7 200-200 200zm-80-216c17.7 0 32-14.3 32-32s-14.3-32-32-32-32 14.3-32 32 14.3 32 32 32zm160-64c-17.7 0-32 14.3-32 32s14.3 32 32 32 32-14.3 32-32-14.3-32-32-32zm-80 128c-40.2 0-78 17.7-103.8 48.6-8.5 10.2-7.1 25.3 3.1 33.8 10.2 8.4 25.3 7.1 33.8-3.1 16.6-19.9 41-31.4 66.9-31.4s50.3 11.4 66.9 31.4c8.1 9.7 23.1 11.9 33.8 3.1 10.2-8.5 11.5-23.6 3.1-33.8C326 321.7 288.2 304 248 304z"],"frown-open":[496,512,[],"f57a","M248 8C111 8 0 119 0 256s111 248 248 248 248-111 248-248S385 8 248 8zm0 448c-110.3 0-200-89.7-200-200S137.7 56 248 56s200 89.7 200 200-89.7 200-200 200zm-48-248c0-17.7-14.3-32-32-32s-32 14.3-32 32 14.3 32 32 32 32-14.3 32-32zm128-32c-17.7 0-32 14.3-32 32s14.3 32 32 32 32-14.3 32-32-14.3-32-32-32zm-80 112c-35.6 0-88.8 21.3-95.8 61.2-2 11.8 9 21.5 20.5 18.1 31.2-9.6 59.4-15.3 75.3-15.3s44.1 5.7 75.3 15.3c11.4 3.5 22.5-6.3 20.5-18.1-7-39.9-60.2-61.2-95.8-61.2z"],futbol:[496,512,[],"f1e3","M483.8 179.4C449.8 74.6 352.6 8 248.1 8c-25.4 0-51.2 3.9-76.7 12.2C41.2 62.5-30.1 202.4 12.2 332.6 46.2 437.4 143.4 504 247.9 504c25.4 0 51.2-3.9 76.7-12.2 130.2-42.3 201.5-182.2 159.2-312.4zm-74.5 193.7l-52.2 6.4-43.7-60.9 24.4-75.2 71.1-22.1 38.9 36.4c-.2 30.7-7.4 61.1-21.7 89.2-4.7 9.3-10.7 17.8-16.8 26.2zm0-235.4l-10.4 53.1-70.7 22-64.2-46.5V92.5l47.4-26.2c39.2 13 73.4 38 97.9 71.4zM184.9 66.4L232 92.5v73.8l-64.2 46.5-70.6-22-10.1-52.5c24.3-33.4 57.9-58.6 97.8-71.9zM139 379.5L85.9 373c-14.4-20.1-37.3-59.6-37.8-115.3l39-36.4 71.1 22.2 24.3 74.3-43.5 61.7zm48.2 67l-22.4-48.1 43.6-61.7H287l44.3 61.7-22.4 48.1c-6.2 1.8-57.6 20.4-121.7 0z"],gem:[576,512,[],"f3a5","M464 0H112c-4 0-7.8 2-10 5.4L2 152.6c-2.9 4.4-2.6 10.2.7 14.2l276 340.8c4.8 5.9 13.8 5.9 18.6 0l276-340.8c3.3-4.1 3.6-9.8.7-14.2L474.1 5.4C471.8 2 468.1 0 464 0zm-19.3 48l63.3 96h-68.4l-51.7-96h56.8zm-202.1 0h90.7l51.7 96H191l51.6-96zm-111.3 0h56.8l-51.7 96H68l63.3-96zm-43 144h51.4L208 352 88.3 192zm102.9 0h193.6L288 435.3 191.2 192zM368 352l68.2-160h51.4L368 352z"],grimace:[496,512,[],"f57f","M248 8C111 8 0 119 0 256s111 248 248 248 248-111 248-248S385 8 248 8zm0 448c-110.3 0-200-89.7-200-200S137.7 56 248 56s200 89.7 200 200-89.7 200-200 200zm-80-216c17.7 0 32-14.3 32-32s-14.3-32-32-32-32 14.3-32 32 14.3 32 32 32zm160 0c17.7 0 32-14.3 32-32s-14.3-32-32-32-32 14.3-32 32 14.3 32 32 32zm16 16H152c-26.5 0-48 21.5-48 48v32c0 26.5 21.5 48 48 48h192c26.5 0 48-21.5 48-48v-32c0-26.5-21.5-48-48-48zm-168 96h-24c-8.8 0-16-7.2-16-16v-8h40v24zm0-40h-40v-8c0-8.8 7.2-16 16-16h24v24zm64 40h-48v-24h48v24zm0-40h-48v-24h48v24zm64 40h-48v-24h48v24zm0-40h-48v-24h48v24zm56 24c0 8.8-7.2 16-16 16h-24v-24h40v8zm0-24h-40v-24h24c8.8 0 16 7.2 16 16v8z"],grin:[496,512,[],"f580","M248 8C111 8 0 119 0 256s111 248 248 248 248-111 248-248S385 8 248 8zm0 448c-110.3 0-200-89.7-200-200S137.7 56 248 56s200 89.7 200 200-89.7 200-200 200zm105.6-151.4c-25.9 8.3-64.4 13.1-105.6 13.1s-79.6-4.8-105.6-13.1c-9.9-3.1-19.4 5.4-17.7 15.3 7.9 47.1 71.3 80 123.3 80s115.3-32.9 123.3-80c1.6-9.8-7.7-18.4-17.7-15.3zM168 240c17.7 0 32-14.3 32-32s-14.3-32-32-32-32 14.3-32 32 14.3 32 32 32zm160 0c17.7 0 32-14.3 32-32s-14.3-32-32-32-32 14.3-32 32 14.3 32 32 32z"],"grin-alt":[496,512,[],"f581","M200.3 248c12.4-18.7 15.1-37.3 15.7-56-.5-18.7-3.3-37.3-15.7-56-8-12-25.1-11.4-32.7 0-12.4 18.7-15.1 37.3-15.7 56 .5 18.7 3.3 37.3 15.7 56 8.1 12 25.2 11.4 32.7 0zm128 0c12.4-18.7 15.1-37.3 15.7-56-.5-18.7-3.3-37.3-15.7-56-8-12-25.1-11.4-32.7 0-12.4 18.7-15.1 37.3-15.7 56 .5 18.7 3.3 37.3 15.7 56 8.1 12 25.2 11.4 32.7 0zM248 8C111 8 0 119 0 256s111 248 248 248 248-111 248-248S385 8 248 8zm0 448c-110.3 0-200-89.7-200-200S137.7 56 248 56s200 89.7 200 200-89.7 200-200 200zm105.6-151.4c-25.9 8.3-64.4 13.1-105.6 13.1s-79.6-4.8-105.6-13.1c-9.9-3.1-19.4 5.3-17.7 15.3 7.9 47.2 71.3 80 123.3 80s115.3-32.9 123.3-80c1.6-9.8-7.7-18.4-17.7-15.3z"],"grin-beam":[496,512,[],"f582","M248 8C111 8 0 119 0 256s111 248 248 248 248-111 248-248S385 8 248 8zm0 448c-110.3 0-200-89.7-200-200S137.7 56 248 56s200 89.7 200 200-89.7 200-200 200zm105.6-151.4c-25.9 8.3-64.4 13.1-105.6 13.1s-79.6-4.8-105.6-13.1c-9.8-3.1-19.4 5.3-17.7 15.3 7.9 47.1 71.3 80 123.3 80s115.3-32.9 123.3-80c1.6-9.8-7.7-18.4-17.7-15.3zm-235.9-72.9c3.5 1.1 7.4-.5 9.3-3.7l9.5-17c7.7-13.7 19.2-21.6 31.5-21.6s23.8 7.9 31.5 21.6l9.5 17c2.1 3.7 6.2 4.7 9.3 3.7 3.6-1.1 6-4.5 5.7-8.3-3.3-42.1-32.2-71.4-56-71.4s-52.7 29.3-56 71.4c-.3 3.7 2.1 7.2 5.7 8.3zm160 0c3.5 1.1 7.4-.5 9.3-3.7l9.5-17c7.7-13.7 19.2-21.6 31.5-21.6s23.8 7.9 31.5 21.6l9.5 17c2.1 3.7 6.2 4.7 9.3 3.7 3.6-1.1 6-4.5 5.7-8.3-3.3-42.1-32.2-71.4-56-71.4s-52.7 29.3-56 71.4c-.3 3.7 2.1 7.2 5.7 8.3z"],"grin-beam-sweat":[496,512,[],"f583","M440 160c29.5 0 53.3-26.3 53.3-58.7 0-25-31.7-75.5-46.2-97.3-3.6-5.3-10.7-5.3-14.2 0-14.5 21.8-46.2 72.3-46.2 97.3 0 32.4 23.8 58.7 53.3 58.7zM248 400c51.9 0 115.3-32.9 123.3-80 1.7-9.9-7.7-18.5-17.7-15.3-25.9 8.3-64.4 13.1-105.6 13.1s-79.6-4.8-105.6-13.1c-9.8-3.1-19.4 5.3-17.7 15.3 8 47.1 71.4 80 123.3 80zm130.3-168.3c3.6-1.1 6-4.5 5.7-8.3-3.3-42.1-32.2-71.4-56-71.4s-52.7 29.3-56 71.4c-.3 3.7 2.1 7.2 5.7 8.3 3.5 1.1 7.4-.5 9.3-3.7l9.5-17c7.7-13.7 19.2-21.6 31.5-21.6s23.8 7.9 31.5 21.6l9.5 17c2.1 3.6 6.2 4.6 9.3 3.7zm105.3-52.9c-24.6 15.7-46 12.9-46.4 12.9 6.9 20.2 10.8 41.8 10.8 64.3 0 110.3-89.7 200-200 200S48 366.3 48 256 137.7 56 248 56c39.8 0 76.8 11.8 108 31.9 1.7-9.5 6.3-24.1 17.2-45.7C336.4 20.6 293.7 8 248 8 111 8 0 119 0 256s111 248 248 248 248-111 248-248c0-27-4.4-52.9-12.4-77.2zM168 189.4c12.3 0 23.8 7.9 31.5 21.6l9.5 17c2.1 3.7 6.2 4.7 9.3 3.7 3.6-1.1 6-4.5 5.7-8.3-3.3-42.1-32.2-71.4-56-71.4s-52.7 29.3-56 71.4c-.3 3.7 2.1 7.2 5.7 8.3 3.5 1.1 7.4-.5 9.3-3.7l9.5-17c7.7-13.8 19.2-21.6 31.5-21.6z"],"grin-hearts":[496,512,[],"f584","M353.6 304.6c-25.9 8.3-64.4 13.1-105.6 13.1s-79.6-4.8-105.6-13.1c-9.8-3.1-19.4 5.3-17.7 15.3 7.9 47.2 71.3 80 123.3 80s115.3-32.9 123.3-80c1.6-9.8-7.7-18.4-17.7-15.3zm-152.8-48.9c4.5 1.2 9.2-1.5 10.5-6l19.4-69.9c5.6-20.3-7.4-41.1-28.8-44.5-18.6-3-36.4 9.8-41.5 27.9l-2 7.1-7.1-1.9c-18.2-4.7-38.2 4.3-44.9 22-7.7 20.2 3.8 41.9 24.2 47.2l70.2 18.1zm188.8-65.3c-6.7-17.6-26.7-26.7-44.9-22l-7.1 1.9-2-7.1c-5-18.1-22.8-30.9-41.5-27.9-21.4 3.4-34.4 24.2-28.8 44.5l19.4 69.9c1.2 4.5 5.9 7.2 10.5 6l70.2-18.2c20.4-5.3 31.9-26.9 24.2-47.1zM248 8C111 8 0 119 0 256s111 248 248 248 248-111 248-248S385 8 248 8zm0 448c-110.3 0-200-89.7-200-200S137.7 56 248 56s200 89.7 200 200-89.7 200-200 200z"],"grin-squint":[496,512,[],"f585","M248 8C111 8 0 119 0 256s111 248 248 248 248-111 248-248S385 8 248 8zm0 448c-110.3 0-200-89.7-200-200S137.7 56 248 56s200 89.7 200 200-89.7 200-200 200zm105.6-151.4c-25.9 8.3-64.4 13.1-105.6 13.1s-79.6-4.8-105.6-13.1c-9.9-3.1-19.4 5.4-17.7 15.3 7.9 47.1 71.3 80 123.3 80s115.3-32.9 123.3-80c1.6-9.8-7.7-18.4-17.7-15.3zm-234.7-40.8c3.6 4.2 9.9 5.7 15.3 2.5l80-48c3.6-2.2 5.8-6.1 5.8-10.3s-2.2-8.1-5.8-10.3l-80-48c-5.1-3-11.4-1.9-15.3 2.5-3.8 4.5-3.8 11-.1 15.5l33.6 40.3-33.6 40.3c-3.8 4.5-3.7 11.1.1 15.5zm242.9 2.5c5.4 3.2 11.7 1.7 15.3-2.5 3.8-4.5 3.8-11 .1-15.5L343.6 208l33.6-40.3c3.8-4.5 3.7-11-.1-15.5-3.8-4.4-10.2-5.4-15.3-2.5l-80 48c-3.6 2.2-5.8 6.1-5.8 10.3s2.2 8.1 5.8 10.3l80 48z"],"grin-squint-tears":[512,512,[],"f586","M117.1 384.1c-25.8 3.7-84 13.7-100.9 30.6-21.9 21.9-21.5 57.9.9 80.3s58.3 22.8 80.3.9C114.3 479 124.3 420.8 128 395c.8-6.4-4.6-11.8-10.9-10.9zm-41.2-41.7C40.3 268 53 176.1 114.6 114.6 152.4 76.8 202.6 56 256 56c36.2 0 70.8 9.8 101.2 27.7 3.8-20.3 8-36.1 12-48.3C333.8 17.2 294.9 8 256 8 192.5 8 129.1 32.2 80.6 80.6c-74.1 74.1-91.3 183.4-52 274 12.2-4.1 27.7-8.3 47.3-12.2zm352.3-187.6c45 76.6 34.9 176.9-30.8 242.6-37.8 37.8-88 58.6-141.4 58.6-30.5 0-59.8-7-86.4-19.8-3.9 19.5-8 35-12.2 47.2 31.4 13.6 65 20.6 98.7 20.6 63.5 0 126.9-24.2 175.4-72.6 78.1-78.1 93.1-195.4 45.2-288.6-12.3 4-28.2 8.1-48.5 12zm-33.3-26.9c25.8-3.7 84-13.7 100.9-30.6 21.9-21.9 21.5-57.9-.9-80.3s-58.3-22.8-80.3-.9C397.7 33 387.7 91.2 384 117c-.8 6.4 4.6 11.8 10.9 10.9zm-187 108.3c-3-3-7.2-4.2-11.4-3.2L106 255.7c-5.7 1.4-9.5 6.7-9.1 12.6.5 5.8 5.1 10.5 10.9 11l52.3 4.8 4.8 52.3c.5 5.8 5.2 10.4 11 10.9h.9c5.5 0 10.3-3.7 11.7-9.1l22.6-90.5c1-4.2-.2-8.5-3.2-11.5zm39.7-25.1l90.5-22.6c5.7-1.4 9.5-6.7 9.1-12.6-.5-5.8-5.1-10.5-10.9-11l-52.3-4.8-4.8-52.3c-.5-5.8-5.2-10.4-11-10.9-5.6-.1-11.2 3.4-12.6 9.1L233 196.5c-1 4.1.2 8.4 3.2 11.4 5 5 11.3 3.2 11.4 3.2zm52 88.5c-29.1 29.1-59.7 52.9-83.9 65.4-9.2 4.8-10 17.5-1.7 23.4 38.9 27.7 107 6.2 143.7-30.6S416 253 388.3 214.1c-5.8-8.2-18.5-7.6-23.4 1.7-12.3 24.2-36.2 54.7-65.3 83.8z"],"grin-stars":[496,512,[],"f587","M248 8C111 8 0 119 0 256s111 248 248 248 248-111 248-248S385 8 248 8zm0 448c-110.3 0-200-89.7-200-200S137.7 56 248 56s200 89.7 200 200-89.7 200-200 200zm105.6-151.4c-25.9 8.3-64.4 13.1-105.6 13.1s-79.6-4.8-105.6-13.1c-9.8-3.1-19.4 5.3-17.7 15.3 7.9 47.2 71.3 80 123.3 80s115.3-32.9 123.3-80c1.6-9.8-7.7-18.4-17.7-15.3zm-227.9-57.5c-1 6.2 5.4 11 11 7.9l31.3-16.3 31.3 16.3c5.6 3.1 12-1.7 11-7.9l-6-34.9 25.4-24.6c4.5-4.5 1.9-12.2-4.3-13.2l-34.9-5-15.5-31.6c-2.9-5.8-11-5.8-13.9 0l-15.5 31.6-34.9 5c-6.2.9-8.9 8.6-4.3 13.2l25.4 24.6-6.1 34.9zm259.7-72.7l-34.9-5-15.5-31.6c-2.9-5.8-11-5.8-13.9 0l-15.5 31.6-34.9 5c-6.2.9-8.9 8.6-4.3 13.2l25.4 24.6-6 34.9c-1 6.2 5.4 11 11 7.9l31.3-16.3 31.3 16.3c5.6 3.1 12-1.7 11-7.9l-6-34.9 25.4-24.6c4.5-4.6 1.8-12.2-4.4-13.2z"],"grin-tears":[640,512,[],"f588","M117.1 256.1c-25.8 3.7-84 13.7-100.9 30.6-21.9 21.9-21.5 57.9.9 80.3s58.3 22.8 80.3.9C114.3 351 124.3 292.8 128 267c.8-6.4-4.6-11.8-10.9-10.9zm506.7 30.6c-16.9-16.9-75.1-26.9-100.9-30.6-6.3-.9-11.7 4.5-10.8 10.8 3.7 25.8 13.7 84 30.6 100.9 21.9 21.9 57.9 21.5 80.3-.9 22.3-22.3 22.7-58.3.8-80.2zm-126.6 61.7C463.8 412.3 396.9 456 320 456c-76.9 0-143.8-43.7-177.2-107.6-12.5 37.4-25.2 43.9-28.3 46.5C159.1 460.7 234.5 504 320 504s160.9-43.3 205.5-109.1c-3.2-2.7-15.9-9.2-28.3-46.5zM122.7 224.5C137.9 129.2 220.5 56 320 56c99.5 0 182.1 73.2 197.3 168.5 2.1-.2 5.2-2.4 49.5 7C554.4 106 448.7 8 320 8S85.6 106 73.2 231.4c44.5-9.4 47.1-7.2 49.5-6.9zM320 400c51.9 0 115.3-32.9 123.3-80 1.7-9.9-7.7-18.5-17.7-15.3-25.9 8.3-64.4 13.1-105.6 13.1s-79.6-4.8-105.6-13.1c-9.8-3.1-19.4 5.3-17.7 15.3 8 47.1 71.4 80 123.3 80zm130.3-168.3c3.6-1.1 6-4.5 5.7-8.3-3.3-42.1-32.2-71.4-56-71.4s-52.7 29.3-56 71.4c-.3 3.7 2.1 7.2 5.7 8.3 3.5 1.1 7.4-.5 9.3-3.7l9.5-17c7.7-13.7 19.2-21.6 31.5-21.6s23.8 7.9 31.5 21.6l9.5 17c2.1 3.6 6.2 4.6 9.3 3.7zM240 189.4c12.3 0 23.8 7.9 31.5 21.6l9.5 17c2.1 3.7 6.2 4.7 9.3 3.7 3.6-1.1 6-4.5 5.7-8.3-3.3-42.1-32.2-71.4-56-71.4s-52.7 29.3-56 71.4c-.3 3.7 2.1 7.2 5.7 8.3 3.5 1.1 7.4-.5 9.3-3.7l9.5-17c7.7-13.8 19.2-21.6 31.5-21.6z"],"grin-tongue":[496,512,[],"f589","M248 8C111 8 0 119 0 256s111 248 248 248 248-111 248-248S385 8 248 8zm64 400c0 35.6-29.1 64.5-64.9 64-35.1-.5-63.1-29.8-63.1-65v-42.8l17.7-8.8c15-7.5 31.5 1.7 34.9 16.5l2.8 12.1c2.1 9.2 15.2 9.2 17.3 0l2.8-12.1c3.4-14.8 19.8-24.1 34.9-16.5l17.7 8.8V408zm28.2 25.3c2.2-8.1 3.8-16.5 3.8-25.3v-43.5c14.2-12.4 24.4-27.5 27.3-44.5 1.7-9.9-7.7-18.5-17.7-15.3-25.9 8.3-64.4 13.1-105.6 13.1s-79.6-4.8-105.6-13.1c-9.9-3.1-19.4 5.3-17.7 15.3 2.9 17 13.1 32.1 27.3 44.5V408c0 8.8 1.6 17.2 3.8 25.3C91.8 399.9 48 333 48 256c0-110.3 89.7-200 200-200s200 89.7 200 200c0 77-43.8 143.9-107.8 177.3zM168 176c-17.7 0-32 14.3-32 32s14.3 32 32 32 32-14.3 32-32-14.3-32-32-32zm160 0c-17.7 0-32 14.3-32 32s14.3 32 32 32 32-14.3 32-32-14.3-32-32-32z"],"grin-tongue-squint":[496,512,[],"f58a","M248 8C111 8 0 119 0 256s111 248 248 248 248-111 248-248S385 8 248 8zm64 400c0 35.6-29.1 64.5-64.9 64-35.1-.5-63.1-29.8-63.1-65v-42.8l17.7-8.8c15-7.5 31.5 1.7 34.9 16.5l2.8 12.1c2.1 9.2 15.2 9.2 17.3 0l2.8-12.1c3.4-14.8 19.8-24.1 34.9-16.5l17.7 8.8V408zm28.2 25.3c2.2-8.1 3.8-16.5 3.8-25.3v-43.5c14.2-12.4 24.4-27.5 27.3-44.5 1.7-9.9-7.7-18.5-17.7-15.3-25.9 8.3-64.4 13.1-105.6 13.1s-79.6-4.8-105.6-13.1c-9.9-3.1-19.4 5.3-17.7 15.3 2.9 17 13.1 32.1 27.3 44.5V408c0 8.8 1.6 17.2 3.8 25.3C91.8 399.9 48 333 48 256c0-110.3 89.7-200 200-200s200 89.7 200 200c0 77-43.8 143.9-107.8 177.3zm36.9-281.1c-3.8-4.4-10.3-5.5-15.3-2.5l-80 48c-3.6 2.2-5.8 6.1-5.8 10.3s2.2 8.1 5.8 10.3l80 48c5.4 3.2 11.7 1.7 15.3-2.5 3.8-4.5 3.8-11 .1-15.5L343.6 208l33.6-40.3c3.8-4.5 3.7-11.1-.1-15.5zm-162.9 45.5l-80-48c-5-3-11.4-2-15.3 2.5-3.8 4.5-3.8 11-.1 15.5l33.6 40.3-33.6 40.3c-3.8 4.5-3.7 11 .1 15.5 3.6 4.2 9.9 5.7 15.3 2.5l80-48c3.6-2.2 5.8-6.1 5.8-10.3s-2.2-8.1-5.8-10.3z"],"grin-tongue-wink":[496,512,[],"f58b","M152 180c-25.7 0-55.9 16.9-59.8 42.1-.8 5 1.7 10 6.1 12.4 4.4 2.4 9.9 1.8 13.7-1.6l9.5-8.5c14.8-13.2 46.2-13.2 61 0l9.5 8.5c2.5 2.2 8 4.7 13.7 1.6 4.4-2.4 6.9-7.4 6.1-12.4-3.9-25.2-34.1-42.1-59.8-42.1zm176-52c-44.2 0-80 35.8-80 80s35.8 80 80 80 80-35.8 80-80-35.8-80-80-80zm0 128c-26.5 0-48-21.5-48-48s21.5-48 48-48 48 21.5 48 48-21.5 48-48 48zm0-72c-13.3 0-24 10.7-24 24s10.7 24 24 24 24-10.7 24-24-10.7-24-24-24zM248 8C111 8 0 119 0 256s111 248 248 248 248-111 248-248S385 8 248 8zm64 400c0 35.6-29.1 64.5-64.9 64-35.1-.5-63.1-29.8-63.1-65v-42.8l17.7-8.8c15-7.5 31.5 1.7 34.9 16.5l2.8 12.1c2.1 9.2 15.2 9.2 17.3 0l2.8-12.1c3.4-14.8 19.8-24.1 34.9-16.5l17.7 8.8V408zm28.2 25.3c2.2-8.1 3.8-16.5 3.8-25.3v-43.5c14.2-12.4 24.4-27.5 27.3-44.5 1.7-9.9-7.7-18.5-17.7-15.3-25.9 8.3-64.4 13.1-105.6 13.1s-79.6-4.8-105.6-13.1c-9.9-3.1-19.4 5.3-17.7 15.3 2.9 17 13.1 32.1 27.3 44.5V408c0 8.8 1.6 17.2 3.8 25.3C91.8 399.9 48 333 48 256c0-110.3 89.7-200 200-200s200 89.7 200 200c0 77-43.8 143.9-107.8 177.3z"],"grin-wink":[496,512,[],"f58c","M328 180c-25.69 0-55.88 16.92-59.86 42.12-1.75 11.22 11.5 18.24 19.83 10.84l9.55-8.48c14.81-13.19 46.16-13.19 60.97 0l9.55 8.48c8.48 7.43 21.56.25 19.83-10.84C383.88 196.92 353.69 180 328 180zm-160 60c17.67 0 32-14.33 32-32s-14.33-32-32-32-32 14.33-32 32 14.33 32 32 32zm185.55 64.64c-25.93 8.3-64.4 13.06-105.55 13.06s-79.62-4.75-105.55-13.06c-9.94-3.13-19.4 5.37-17.71 15.34C132.67 367.13 196.06 400 248 400s115.33-32.87 123.26-80.02c1.68-9.89-7.67-18.48-17.71-15.34zM248 8C111.03 8 0 119.03 0 256s111.03 248 248 248 248-111.03 248-248S384.97 8 248 8zm0 448c-110.28 0-200-89.72-200-200S137.72 56 248 56s200 89.72 200 200-89.72 200-200 200z"],"hand-lizard":[576,512,[],"f258","M556.686 290.542L410.328 64.829C397.001 44.272 374.417 32 349.917 32H56C25.121 32 0 57.122 0 88v8c0 44.112 35.888 80 80 80h196.042l-18.333 48H144c-48.523 0-88 39.477-88 88 0 30.879 25.121 56 56 56h131.552c2.987 0 5.914.549 8.697 1.631L352 408.418V480h224V355.829c0-23.225-6.679-45.801-19.314-65.287zM528 432H400v-23.582c0-19.948-12.014-37.508-30.604-44.736l-99.751-38.788A71.733 71.733 0 0 0 243.552 320H112c-4.411 0-8-3.589-8-8 0-22.056 17.944-40 40-40h113.709c19.767 0 37.786-12.407 44.84-30.873l24.552-64.281c8.996-23.553-8.428-48.846-33.63-48.846H80c-17.645 0-32-14.355-32-32v-8c0-4.411 3.589-8 8-8h293.917c8.166 0 15.693 4.09 20.137 10.942l146.358 225.715A71.84 71.84 0 0 1 528 355.829V432z"],"hand-paper":[448,512,[],"f256","M372.57 112.641v-10.825c0-43.612-40.52-76.691-83.039-65.546-25.629-49.5-94.09-47.45-117.982.747C130.269 26.456 89.144 57.945 89.144 102v126.13c-19.953-7.427-43.308-5.068-62.083 8.871-29.355 21.796-35.794 63.333-14.55 93.153L132.48 498.569a32 32 0 0 0 26.062 13.432h222.897c14.904 0 27.835-10.289 31.182-24.813l30.184-130.958A203.637 203.637 0 0 0 448 310.564V179c0-40.62-35.523-71.992-75.43-66.359zm27.427 197.922c0 11.731-1.334 23.469-3.965 34.886L368.707 464h-201.92L51.591 302.303c-14.439-20.27 15.023-42.776 29.394-22.605l27.128 38.079c8.995 12.626 29.031 6.287 29.031-9.283V102c0-25.645 36.571-24.81 36.571.691V256c0 8.837 7.163 16 16 16h6.856c8.837 0 16-7.163 16-16V67c0-25.663 36.571-24.81 36.571.691V256c0 8.837 7.163 16 16 16h6.856c8.837 0 16-7.163 16-16V101.125c0-25.672 36.57-24.81 36.57.691V256c0 8.837 7.163 16 16 16h6.857c8.837 0 16-7.163 16-16v-76.309c0-26.242 36.57-25.64 36.57-.691v131.563z"],"hand-peace":[448,512,[],"f25b","M362.146 191.976c-13.71-21.649-38.761-34.016-65.006-30.341V74c0-40.804-32.811-74-73.141-74-40.33 0-73.14 33.196-73.14 74L160 168l-18.679-78.85C126.578 50.843 83.85 32.11 46.209 47.208 8.735 62.238-9.571 104.963 5.008 142.85l55.757 144.927c-30.557 24.956-43.994 57.809-24.733 92.218l54.853 97.999C102.625 498.97 124.73 512 148.575 512h205.702c30.744 0 57.558-21.44 64.555-51.797l27.427-118.999a67.801 67.801 0 0 0 1.729-15.203L448 256c0-44.956-43.263-77.343-85.854-64.024zM399.987 326c0 1.488-.169 2.977-.502 4.423l-27.427 119.001c-1.978 8.582-9.29 14.576-17.782 14.576H148.575c-6.486 0-12.542-3.621-15.805-9.449l-54.854-98c-4.557-8.141-2.619-18.668 4.508-24.488l26.647-21.764a16 16 0 0 0 4.812-18.139l-64.09-166.549C37.226 92.956 84.37 74.837 96.51 106.389l59.784 155.357A16 16 0 0 0 171.227 272h11.632c8.837 0 16-7.163 16-16V74c0-34.375 50.281-34.43 50.281 0v182c0 8.837 7.163 16 16 16h6.856c8.837 0 16-7.163 16-16v-28c0-25.122 36.567-25.159 36.567 0v28c0 8.837 7.163 16 16 16h6.856c8.837 0 16-7.163 16-16 0-25.12 36.567-25.16 36.567 0v70z"],"hand-point-down":[448,512,[],"f0a7","M188.8 512c45.616 0 83.2-37.765 83.2-83.2v-35.647a93.148 93.148 0 0 0 22.064-7.929c22.006 2.507 44.978-3.503 62.791-15.985C409.342 368.1 448 331.841 448 269.299V248c0-60.063-40-98.512-40-127.2v-2.679c4.952-5.747 8-13.536 8-22.12V32c0-17.673-12.894-32-28.8-32H156.8C140.894 0 128 14.327 128 32v64c0 8.584 3.048 16.373 8 22.12v2.679c0 6.964-6.193 14.862-23.668 30.183l-.148.129-.146.131c-9.937 8.856-20.841 18.116-33.253 25.851C48.537 195.798 0 207.486 0 252.8c0 56.928 35.286 92 83.2 92 8.026 0 15.489-.814 22.4-2.176V428.8c0 45.099 38.101 83.2 83.2 83.2zm0-48c-18.7 0-35.2-16.775-35.2-35.2V270.4c-17.325 0-35.2 26.4-70.4 26.4-26.4 0-35.2-20.625-35.2-44 0-8.794 32.712-20.445 56.1-34.926 14.575-9.074 27.225-19.524 39.875-30.799 18.374-16.109 36.633-33.836 39.596-59.075h176.752C364.087 170.79 400 202.509 400 248v21.299c0 40.524-22.197 57.124-61.325 50.601-8.001 14.612-33.979 24.151-53.625 12.925-18.225 19.365-46.381 17.787-61.05 4.95V428.8c0 18.975-16.225 35.2-35.2 35.2zM328 64c0-13.255 10.745-24 24-24s24 10.745 24 24-10.745 24-24 24-24-10.745-24-24z"],"hand-point-left":[512,512,[],"f0a5","M0 220.8C0 266.416 37.765 304 83.2 304h35.647a93.148 93.148 0 0 0 7.929 22.064c-2.507 22.006 3.503 44.978 15.985 62.791C143.9 441.342 180.159 480 242.701 480H264c60.063 0 98.512-40 127.2-40h2.679c5.747 4.952 13.536 8 22.12 8h64c17.673 0 32-12.894 32-28.8V188.8c0-15.906-14.327-28.8-32-28.8h-64c-8.584 0-16.373 3.048-22.12 8H391.2c-6.964 0-14.862-6.193-30.183-23.668l-.129-.148-.131-.146c-8.856-9.937-18.116-20.841-25.851-33.253C316.202 80.537 304.514 32 259.2 32c-56.928 0-92 35.286-92 83.2 0 8.026.814 15.489 2.176 22.4H83.2C38.101 137.6 0 175.701 0 220.8zm48 0c0-18.7 16.775-35.2 35.2-35.2h158.4c0-17.325-26.4-35.2-26.4-70.4 0-26.4 20.625-35.2 44-35.2 8.794 0 20.445 32.712 34.926 56.1 9.074 14.575 19.524 27.225 30.799 39.875 16.109 18.374 33.836 36.633 59.075 39.596v176.752C341.21 396.087 309.491 432 264 432h-21.299c-40.524 0-57.124-22.197-50.601-61.325-14.612-8.001-24.151-33.979-12.925-53.625-19.365-18.225-17.787-46.381-4.95-61.05H83.2C64.225 256 48 239.775 48 220.8zM448 360c13.255 0 24 10.745 24 24s-10.745 24-24 24-24-10.745-24-24 10.745-24 24-24z"],"hand-point-right":[512,512,[],"f0a4","M428.8 137.6h-86.177a115.52 115.52 0 0 0 2.176-22.4c0-47.914-35.072-83.2-92-83.2-45.314 0-57.002 48.537-75.707 78.784-7.735 12.413-16.994 23.317-25.851 33.253l-.131.146-.129.148C135.662 161.807 127.764 168 120.8 168h-2.679c-5.747-4.952-13.536-8-22.12-8H32c-17.673 0-32 12.894-32 28.8v230.4C0 435.106 14.327 448 32 448h64c8.584 0 16.373-3.048 22.12-8h2.679c28.688 0 67.137 40 127.2 40h21.299c62.542 0 98.8-38.658 99.94-91.145 12.482-17.813 18.491-40.785 15.985-62.791A93.148 93.148 0 0 0 393.152 304H428.8c45.435 0 83.2-37.584 83.2-83.2 0-45.099-38.101-83.2-83.2-83.2zm0 118.4h-91.026c12.837 14.669 14.415 42.825-4.95 61.05 11.227 19.646 1.687 45.624-12.925 53.625 6.524 39.128-10.076 61.325-50.6 61.325H248c-45.491 0-77.21-35.913-120-39.676V215.571c25.239-2.964 42.966-21.222 59.075-39.596 11.275-12.65 21.725-25.3 30.799-39.875C232.355 112.712 244.006 80 252.8 80c23.375 0 44 8.8 44 35.2 0 35.2-26.4 53.075-26.4 70.4h158.4c18.425 0 35.2 16.5 35.2 35.2 0 18.975-16.225 35.2-35.2 35.2zM88 384c0 13.255-10.745 24-24 24s-24-10.745-24-24 10.745-24 24-24 24 10.745 24 24z"],"hand-point-up":[448,512,[],"f0a6","M105.6 83.2v86.177a115.52 115.52 0 0 0-22.4-2.176c-47.914 0-83.2 35.072-83.2 92 0 45.314 48.537 57.002 78.784 75.707 12.413 7.735 23.317 16.994 33.253 25.851l.146.131.148.129C129.807 376.338 136 384.236 136 391.2v2.679c-4.952 5.747-8 13.536-8 22.12v64c0 17.673 12.894 32 28.8 32h230.4c15.906 0 28.8-14.327 28.8-32v-64c0-8.584-3.048-16.373-8-22.12V391.2c0-28.688 40-67.137 40-127.2v-21.299c0-62.542-38.658-98.8-91.145-99.94-17.813-12.482-40.785-18.491-62.791-15.985A93.148 93.148 0 0 0 272 118.847V83.2C272 37.765 234.416 0 188.8 0c-45.099 0-83.2 38.101-83.2 83.2zm118.4 0v91.026c14.669-12.837 42.825-14.415 61.05 4.95 19.646-11.227 45.624-1.687 53.625 12.925 39.128-6.524 61.325 10.076 61.325 50.6V264c0 45.491-35.913 77.21-39.676 120H183.571c-2.964-25.239-21.222-42.966-39.596-59.075-12.65-11.275-25.3-21.725-39.875-30.799C80.712 279.645 48 267.994 48 259.2c0-23.375 8.8-44 35.2-44 35.2 0 53.075 26.4 70.4 26.4V83.2c0-18.425 16.5-35.2 35.2-35.2 18.975 0 35.2 16.225 35.2 35.2zM352 424c13.255 0 24 10.745 24 24s-10.745 24-24 24-24-10.745-24-24 10.745-24 24-24z"],"hand-pointer":[448,512,[],"f25a","M358.182 179.361c-19.493-24.768-52.679-31.945-79.872-19.098-15.127-15.687-36.182-22.487-56.595-19.629V67c0-36.944-29.736-67-66.286-67S89.143 30.056 89.143 67v161.129c-19.909-7.41-43.272-5.094-62.083 8.872-29.355 21.795-35.793 63.333-14.55 93.152l109.699 154.001C134.632 501.59 154.741 512 176 512h178.286c30.802 0 57.574-21.5 64.557-51.797l27.429-118.999A67.873 67.873 0 0 0 448 326v-84c0-46.844-46.625-79.273-89.818-62.639zM80.985 279.697l27.126 38.079c8.995 12.626 29.031 6.287 29.031-9.283V67c0-25.12 36.571-25.16 36.571 0v175c0 8.836 7.163 16 16 16h6.857c8.837 0 16-7.164 16-16v-35c0-25.12 36.571-25.16 36.571 0v35c0 8.836 7.163 16 16 16H272c8.837 0 16-7.164 16-16v-21c0-25.12 36.571-25.16 36.571 0v21c0 8.836 7.163 16 16 16h6.857c8.837 0 16-7.164 16-16 0-25.121 36.571-25.16 36.571 0v84c0 1.488-.169 2.977-.502 4.423l-27.43 119.001c-1.978 8.582-9.29 14.576-17.782 14.576H176c-5.769 0-11.263-2.878-14.697-7.697l-109.712-154c-14.406-20.223 14.994-42.818 29.394-22.606zM176.143 400v-96c0-8.837 6.268-16 14-16h6c7.732 0 14 7.163 14 16v96c0 8.837-6.268 16-14 16h-6c-7.733 0-14-7.163-14-16zm75.428 0v-96c0-8.837 6.268-16 14-16h6c7.732 0 14 7.163 14 16v96c0 8.837-6.268 16-14 16h-6c-7.732 0-14-7.163-14-16zM327 400v-96c0-8.837 6.268-16 14-16h6c7.732 0 14 7.163 14 16v96c0 8.837-6.268 16-14 16h-6c-7.732 0-14-7.163-14-16z"],"hand-rock":[512,512,[],"f255","M408.864 79.052c-22.401-33.898-66.108-42.273-98.813-23.588-29.474-31.469-79.145-31.093-108.334-.022-47.16-27.02-108.71 5.055-110.671 60.806C44.846 105.407 0 140.001 0 187.429v56.953c0 32.741 14.28 63.954 39.18 85.634l97.71 85.081c4.252 3.702 3.11 5.573 3.11 32.903 0 17.673 14.327 32 32 32h252c17.673 0 32-14.327 32-32 0-23.513-1.015-30.745 3.982-42.37l42.835-99.656c6.094-14.177 9.183-29.172 9.183-44.568V146.963c0-52.839-54.314-88.662-103.136-67.911zM464 261.406a64.505 64.505 0 0 1-5.282 25.613l-42.835 99.655c-5.23 12.171-7.883 25.04-7.883 38.25V432H188v-10.286c0-16.37-7.14-31.977-19.59-42.817l-97.71-85.08C56.274 281.255 48 263.236 48 244.381v-56.953c0-33.208 52-33.537 52 .677v41.228a16 16 0 0 0 5.493 12.067l7 6.095A16 16 0 0 0 139 235.429V118.857c0-33.097 52-33.725 52 .677v26.751c0 8.836 7.164 16 16 16h7c8.836 0 16-7.164 16-16v-41.143c0-33.134 52-33.675 52 .677v40.466c0 8.836 7.163 16 16 16h7c8.837 0 16-7.164 16-16v-27.429c0-33.03 52-33.78 52 .677v26.751c0 8.836 7.163 16 16 16h7c8.837 0 16-7.164 16-16 0-33.146 52-33.613 52 .677v114.445z"],"hand-scissors":[512,512,[],"f257","M256 480l70-.013c5.114 0 10.231-.583 15.203-1.729l118.999-27.427C490.56 443.835 512 417.02 512 386.277V180.575c0-23.845-13.03-45.951-34.005-57.69l-97.999-54.853c-34.409-19.261-67.263-5.824-92.218 24.733L142.85 37.008c-37.887-14.579-80.612 3.727-95.642 41.201-15.098 37.642 3.635 80.37 41.942 95.112L168 192l-94-9.141c-40.804 0-74 32.811-74 73.14 0 40.33 33.196 73.141 74 73.141h87.635c-3.675 26.245 8.692 51.297 30.341 65.006C178.657 436.737 211.044 480 256 480zm0-48.013c-25.16 0-25.12-36.567 0-36.567 8.837 0 16-7.163 16-16v-6.856c0-8.837-7.163-16-16-16h-28c-25.159 0-25.122-36.567 0-36.567h28c8.837 0 16-7.163 16-16v-6.856c0-8.837-7.163-16-16-16H74c-34.43 0-34.375-50.281 0-50.281h182c8.837 0 16-7.163 16-16v-11.632a16 16 0 0 0-10.254-14.933L106.389 128.51c-31.552-12.14-13.432-59.283 19.222-46.717l166.549 64.091a16.001 16.001 0 0 0 18.139-4.812l21.764-26.647c5.82-7.127 16.348-9.064 24.488-4.508l98 54.854c5.828 3.263 9.449 9.318 9.449 15.805v205.701c0 8.491-5.994 15.804-14.576 17.782l-119.001 27.427a19.743 19.743 0 0 1-4.423.502h-70z"],"hand-spock":[512,512,[],"f259","M501.03053,116.17605c-19.39059-31.50779-51.24406-35.72849-66.31044-35.01756-14.11325-50.81051-62.0038-54.08-70.73816-54.08a74.03091,74.03091,0,0,0-72.23816,58.916l-4.64648,22.66014-13.68357-53.207c-9.09569-35.37107-46.412-64.05074-89.66-53.07223a73.89749,73.89749,0,0,0-55.121,78.94722,73.68273,73.68273,0,0,0-64.8495,94.42181l24.35933,82.19721c-38.24017-7.54492-62.79677,16.18358-68.11512,21.84764a73.6791,73.6791,0,0,0,3.19921,104.19329l91.36509,85.9765A154.164,154.164,0,0,0,220.62279,512h107.4549A127.30079,127.30079,0,0,0,452.3392,413.86139l57.623-241.96272A73.20274,73.20274,0,0,0,501.03053,116.17605Zm-37.7597,44.60544L405.64788,402.74812a79.46616,79.46616,0,0,1-77.57019,61.25972H220.62279a106.34052,106.34052,0,0,1-73.1366-28.998l-91.369-85.98041C31.34381,325.72669,66.61133,288.131,91.39644,311.5392l51.123,48.10739c5.42577,5.10937,13.48239.71679,13.48239-5.82617a246.79914,246.79914,0,0,0-10.17771-70.1523l-36.01362-121.539c-9.7324-32.88279,39.69916-47.27145,49.38664-14.625l31.3437,105.77923c5.59374,18.90428,33.78119,10.71288,28.9648-8.00781L177.06427,80.23662c-8.50389-33.1035,41.43157-45.64646,49.86515-12.83593l47.32609,184.035c4.42773,17.24218,29.16207,16.5039,32.71089-.80468l31.791-154.9706c6.81054-33.1074,57.51748-24.10741,50.11906,11.96288L360.32764,246.78924c-3.72265,18.10936,23.66793,24.63084,28.05659,6.21679L413.185,148.85962C421.1498,115.512,471.14,127.79713,463.27083,160.78149Z"],handshake:[640,512,[],"f2b5","M519.2 127.9l-47.6-47.6A56.252 56.252 0 0 0 432 64H205.2c-14.8 0-29.1 5.9-39.6 16.3L118 127.9H0v255.7h64c17.6 0 31.8-14.2 31.9-31.7h9.1l84.6 76.4c30.9 25.1 73.8 25.7 105.6 3.8 12.5 10.8 26 15.9 41.1 15.9 18.2 0 35.3-7.4 48.8-24 22.1 8.7 48.2 2.6 64-16.8l26.2-32.3c5.6-6.9 9.1-14.8 10.9-23h57.9c.1 17.5 14.4 31.7 31.9 31.7h64V127.9H519.2zM48 351.6c-8.8 0-16-7.2-16-16s7.2-16 16-16 16 7.2 16 16c0 8.9-7.2 16-16 16zm390-6.9l-26.1 32.2c-2.8 3.4-7.8 4-11.3 1.2l-23.9-19.4-30 36.5c-6 7.3-15 4.8-18 2.4l-36.8-31.5-15.6 19.2c-13.9 17.1-39.2 19.7-55.3 6.6l-97.3-88H96V175.8h41.9l61.7-61.6c2-.8 3.7-1.5 5.7-2.3H262l-38.7 35.5c-29.4 26.9-31.1 72.3-4.4 101.3 14.8 16.2 61.2 41.2 101.5 4.4l8.2-7.5 108.2 87.8c3.4 2.8 3.9 7.9 1.2 11.3zm106-40.8h-69.2c-2.3-2.8-4.9-5.4-7.7-7.7l-102.7-83.4 12.5-11.4c6.5-6 7-16.1 1-22.6L367 167.1c-6-6.5-16.1-6.9-22.6-1l-55.2 50.6c-9.5 8.7-25.7 9.4-34.6 0-9.3-9.9-8.5-25.1 1.2-33.9l65.6-60.1c7.4-6.8 17-10.5 27-10.5l83.7-.2c2.1 0 4.1.8 5.5 2.3l61.7 61.6H544v128zm48 47.7c-8.8 0-16-7.2-16-16s7.2-16 16-16 16 7.2 16 16c0 8.9-7.2 16-16 16z"],hdd:[576,512,[],"f0a0","M567.403 235.642L462.323 84.589A48 48 0 0 0 422.919 64H153.081a48 48 0 0 0-39.404 20.589L8.597 235.642A48.001 48.001 0 0 0 0 263.054V400c0 26.51 21.49 48 48 48h480c26.51 0 48-21.49 48-48V263.054c0-9.801-3-19.366-8.597-27.412zM153.081 112h269.838l77.913 112H75.168l77.913-112zM528 400H48V272h480v128zm-32-64c0 17.673-14.327 32-32 32s-32-14.327-32-32 14.327-32 32-32 32 14.327 32 32zm-96 0c0 17.673-14.327 32-32 32s-32-14.327-32-32 14.327-32 32-32 32 14.327 32 32z"],heart:[512,512,[],"f004","M458.4 64.3C400.6 15.7 311.3 23 256 79.3 200.7 23 111.4 15.6 53.6 64.3-21.6 127.6-10.6 230.8 43 285.5l175.4 178.7c10 10.2 23.4 15.9 37.6 15.9 14.3 0 27.6-5.6 37.6-15.8L469 285.6c53.5-54.7 64.7-157.9-10.6-221.3zm-23.6 187.5L259.4 430.5c-2.4 2.4-4.4 2.4-6.8 0L77.2 251.8c-36.5-37.2-43.9-107.6 7.3-150.7 38.9-32.7 98.9-27.8 136.5 10.5l35 35.7 35-35.7c37.8-38.5 97.8-43.2 136.5-10.6 51.1 43.1 43.5 113.9 7.3 150.8z"],hospital:[448,512,[],"f0f8","M128 244v-40c0-6.627 5.373-12 12-12h40c6.627 0 12 5.373 12 12v40c0 6.627-5.373 12-12 12h-40c-6.627 0-12-5.373-12-12zm140 12h40c6.627 0 12-5.373 12-12v-40c0-6.627-5.373-12-12-12h-40c-6.627 0-12 5.373-12 12v40c0 6.627 5.373 12 12 12zm-76 84v-40c0-6.627-5.373-12-12-12h-40c-6.627 0-12 5.373-12 12v40c0 6.627 5.373 12 12 12h40c6.627 0 12-5.373 12-12zm76 12h40c6.627 0 12-5.373 12-12v-40c0-6.627-5.373-12-12-12h-40c-6.627 0-12 5.373-12 12v40c0 6.627 5.373 12 12 12zm180 124v36H0v-36c0-6.627 5.373-12 12-12h19.5V85.035C31.5 73.418 42.245 64 55.5 64H144V24c0-13.255 10.745-24 24-24h112c13.255 0 24 10.745 24 24v40h88.5c13.255 0 24 9.418 24 21.035V464H436c6.627 0 12 5.373 12 12zM79.5 463H192v-67c0-6.627 5.373-12 12-12h40c6.627 0 12 5.373 12 12v67h112.5V112H304v24c0 13.255-10.745 24-24 24H168c-13.255 0-24-10.745-24-24v-24H79.5v351zM266 64h-26V38a6 6 0 0 0-6-6h-20a6 6 0 0 0-6 6v26h-26a6 6 0 0 0-6 6v20a6 6 0 0 0 6 6h26v26a6 6 0 0 0 6 6h20a6 6 0 0 0 6-6V96h26a6 6 0 0 0 6-6V70a6 6 0 0 0-6-6z"],hourglass:[384,512,[],"f254","M368 48h4c6.627 0 12-5.373 12-12V12c0-6.627-5.373-12-12-12H12C5.373 0 0 5.373 0 12v24c0 6.627 5.373 12 12 12h4c0 80.564 32.188 165.807 97.18 208C47.899 298.381 16 383.9 16 464h-4c-6.627 0-12 5.373-12 12v24c0 6.627 5.373 12 12 12h360c6.627 0 12-5.373 12-12v-24c0-6.627-5.373-12-12-12h-4c0-80.564-32.188-165.807-97.18-208C336.102 213.619 368 128.1 368 48zM64 48h256c0 101.62-57.307 184-128 184S64 149.621 64 48zm256 416H64c0-101.62 57.308-184 128-184s128 82.38 128 184z"],"id-badge":[384,512,[],"f2c1","M336 0H48C21.5 0 0 21.5 0 48v416c0 26.5 21.5 48 48 48h288c26.5 0 48-21.5 48-48V48c0-26.5-21.5-48-48-48zm0 464H48V48h288v416zM144 112h96c8.8 0 16-7.2 16-16s-7.2-16-16-16h-96c-8.8 0-16 7.2-16 16s7.2 16 16 16zm48 176c35.3 0 64-28.7 64-64s-28.7-64-64-64-64 28.7-64 64 28.7 64 64 64zm-89.6 128h179.2c12.4 0 22.4-8.6 22.4-19.2v-19.2c0-31.8-30.1-57.6-67.2-57.6-10.8 0-18.7 8-44.8 8-26.9 0-33.4-8-44.8-8-37.1 0-67.2 25.8-67.2 57.6v19.2c0 10.6 10 19.2 22.4 19.2z"],"id-card":[576,512,[],"f2c2","M528 32H48C21.5 32 0 53.5 0 80v352c0 26.5 21.5 48 48 48h480c26.5 0 48-21.5 48-48V80c0-26.5-21.5-48-48-48zm0 400H303.2c.9-4.5.8 3.6.8-22.4 0-31.8-30.1-57.6-67.2-57.6-10.8 0-18.7 8-44.8 8-26.9 0-33.4-8-44.8-8-37.1 0-67.2 25.8-67.2 57.6 0 26-.2 17.9.8 22.4H48V144h480v288zm-168-80h112c4.4 0 8-3.6 8-8v-16c0-4.4-3.6-8-8-8H360c-4.4 0-8 3.6-8 8v16c0 4.4 3.6 8 8 8zm0-64h112c4.4 0 8-3.6 8-8v-16c0-4.4-3.6-8-8-8H360c-4.4 0-8 3.6-8 8v16c0 4.4 3.6 8 8 8zm0-64h112c4.4 0 8-3.6 8-8v-16c0-4.4-3.6-8-8-8H360c-4.4 0-8 3.6-8 8v16c0 4.4 3.6 8 8 8zm-168 96c35.3 0 64-28.7 64-64s-28.7-64-64-64-64 28.7-64 64 28.7 64 64 64z"],image:[512,512,[],"f03e","M464 64H48C21.49 64 0 85.49 0 112v288c0 26.51 21.49 48 48 48h416c26.51 0 48-21.49 48-48V112c0-26.51-21.49-48-48-48zm-6 336H54a6 6 0 0 1-6-6V118a6 6 0 0 1 6-6h404a6 6 0 0 1 6 6v276a6 6 0 0 1-6 6zM128 152c-22.091 0-40 17.909-40 40s17.909 40 40 40 40-17.909 40-40-17.909-40-40-40zM96 352h320v-80l-87.515-87.515c-4.686-4.686-12.284-4.686-16.971 0L192 304l-39.515-39.515c-4.686-4.686-12.284-4.686-16.971 0L96 304v48z"],images:[576,512,[],"f302","M480 416v16c0 26.51-21.49 48-48 48H48c-26.51 0-48-21.49-48-48V176c0-26.51 21.49-48 48-48h16v48H54a6 6 0 0 0-6 6v244a6 6 0 0 0 6 6h372a6 6 0 0 0 6-6v-10h48zm42-336H150a6 6 0 0 0-6 6v244a6 6 0 0 0 6 6h372a6 6 0 0 0 6-6V86a6 6 0 0 0-6-6zm6-48c26.51 0 48 21.49 48 48v256c0 26.51-21.49 48-48 48H144c-26.51 0-48-21.49-48-48V80c0-26.51 21.49-48 48-48h384zM264 144c0 22.091-17.909 40-40 40s-40-17.909-40-40 17.909-40 40-40 40 17.909 40 40zm-72 96l39.515-39.515c4.686-4.686 12.284-4.686 16.971 0L288 240l103.515-103.515c4.686-4.686 12.284-4.686 16.971 0L480 208v80H192v-48z"],keyboard:[576,512,[],"f11c","M528 64H48C21.49 64 0 85.49 0 112v288c0 26.51 21.49 48 48 48h480c26.51 0 48-21.49 48-48V112c0-26.51-21.49-48-48-48zm8 336c0 4.411-3.589 8-8 8H48c-4.411 0-8-3.589-8-8V112c0-4.411 3.589-8 8-8h480c4.411 0 8 3.589 8 8v288zM170 270v-28c0-6.627-5.373-12-12-12h-28c-6.627 0-12 5.373-12 12v28c0 6.627 5.373 12 12 12h28c6.627 0 12-5.373 12-12zm96 0v-28c0-6.627-5.373-12-12-12h-28c-6.627 0-12 5.373-12 12v28c0 6.627 5.373 12 12 12h28c6.627 0 12-5.373 12-12zm96 0v-28c0-6.627-5.373-12-12-12h-28c-6.627 0-12 5.373-12 12v28c0 6.627 5.373 12 12 12h28c6.627 0 12-5.373 12-12zm96 0v-28c0-6.627-5.373-12-12-12h-28c-6.627 0-12 5.373-12 12v28c0 6.627 5.373 12 12 12h28c6.627 0 12-5.373 12-12zm-336 82v-28c0-6.627-5.373-12-12-12H82c-6.627 0-12 5.373-12 12v28c0 6.627 5.373 12 12 12h28c6.627 0 12-5.373 12-12zm384 0v-28c0-6.627-5.373-12-12-12h-28c-6.627 0-12 5.373-12 12v28c0 6.627 5.373 12 12 12h28c6.627 0 12-5.373 12-12zM122 188v-28c0-6.627-5.373-12-12-12H82c-6.627 0-12 5.373-12 12v28c0 6.627 5.373 12 12 12h28c6.627 0 12-5.373 12-12zm96 0v-28c0-6.627-5.373-12-12-12h-28c-6.627 0-12 5.373-12 12v28c0 6.627 5.373 12 12 12h28c6.627 0 12-5.373 12-12zm96 0v-28c0-6.627-5.373-12-12-12h-28c-6.627 0-12 5.373-12 12v28c0 6.627 5.373 12 12 12h28c6.627 0 12-5.373 12-12zm96 0v-28c0-6.627-5.373-12-12-12h-28c-6.627 0-12 5.373-12 12v28c0 6.627 5.373 12 12 12h28c6.627 0 12-5.373 12-12zm96 0v-28c0-6.627-5.373-12-12-12h-28c-6.627 0-12 5.373-12 12v28c0 6.627 5.373 12 12 12h28c6.627 0 12-5.373 12-12zm-98 158v-16c0-6.627-5.373-12-12-12H180c-6.627 0-12 5.373-12 12v16c0 6.627 5.373 12 12 12h216c6.627 0 12-5.373 12-12z"],kiss:[496,512,[],"f596","M168 176c-17.7 0-32 14.3-32 32s14.3 32 32 32 32-14.3 32-32-14.3-32-32-32zm136 132c0-19.2-28.8-41.5-71.5-44-3.8-.4-7.4 2.4-8.2 6.2-.9 3.8 1.1 7.7 4.7 9.2l16.9 7.2c13 5.5 20.8 13.5 20.8 21.5s-7.8 16-20.7 21.5l-17 7.2c-5.7 2.4-6 12.2 0 14.8l16.9 7.2c13 5.5 20.8 13.5 20.8 21.5s-7.8 16-20.7 21.5l-17 7.2c-3.6 1.5-5.6 5.4-4.7 9.2.8 3.6 4.1 6.2 7.8 6.2h.5c42.8-2.5 71.5-24.8 71.5-44 0-13-13.4-27.3-35.2-36C290.6 335.3 304 321 304 308zM248 8C111 8 0 119 0 256s111 248 248 248 248-111 248-248S385 8 248 8zm0 448c-110.3 0-200-89.7-200-200S137.7 56 248 56s200 89.7 200 200-89.7 200-200 200zm80-280c-17.7 0-32 14.3-32 32s14.3 32 32 32 32-14.3 32-32-14.3-32-32-32z"],"kiss-beam":[496,512,[],"f597","M168 152c-23.8 0-52.7 29.3-56 71.4-.3 3.7 2 7.2 5.6 8.3 3.5 1 7.5-.5 9.3-3.7l9.5-17c7.7-13.7 19.2-21.6 31.5-21.6s23.8 7.9 31.5 21.6l9.5 17c2.1 3.7 6.2 4.7 9.3 3.7 3.6-1.1 5.9-4.5 5.6-8.3-3.1-42.1-32-71.4-55.8-71.4zM248 8C111 8 0 119 0 256s111 248 248 248 248-111 248-248S385 8 248 8zm0 448c-110.3 0-200-89.7-200-200S137.7 56 248 56s200 89.7 200 200-89.7 200-200 200zm56-148c0-19.2-28.8-41.5-71.5-44-3.8-.4-7.4 2.4-8.2 6.2-.9 3.8 1.1 7.7 4.7 9.2l16.9 7.2c13 5.5 20.8 13.5 20.8 21.5s-7.8 16-20.7 21.5l-17 7.2c-5.7 2.4-6 12.2 0 14.8l16.9 7.2c13 5.5 20.8 13.5 20.8 21.5s-7.8 16-20.7 21.5l-17 7.2c-3.6 1.5-5.6 5.4-4.7 9.2.8 3.6 4.1 6.2 7.8 6.2h.5c42.8-2.5 71.5-24.8 71.5-44 0-13-13.4-27.3-35.2-36C290.6 335.3 304 321 304 308zm24-156c-23.8 0-52.7 29.3-56 71.4-.3 3.7 2 7.2 5.6 8.3 3.5 1 7.5-.5 9.3-3.7l9.5-17c7.7-13.7 19.2-21.6 31.5-21.6s23.8 7.9 31.5 21.6l9.5 17c2.1 3.7 6.2 4.7 9.3 3.7 3.6-1.1 5.9-4.5 5.6-8.3-3.1-42.1-32-71.4-55.8-71.4z"],"kiss-wink-heart":[504,512,[],"f598","M304 308.5c0-19.2-28.8-41.5-71.5-44-3.8-.4-7.4 2.4-8.2 6.2-.9 3.8 1.1 7.7 4.7 9.2l16.9 7.2c13 5.5 20.8 13.5 20.8 21.5s-7.8 16-20.7 21.5l-17 7.2c-5.7 2.4-6 12.2 0 14.8l16.9 7.2c13 5.5 20.8 13.5 20.8 21.5s-7.8 16-20.7 21.5l-17 7.2c-3.6 1.5-5.6 5.4-4.7 9.2.8 3.6 4.1 6.2 7.8 6.2h.5c42.8-2.5 71.5-24.8 71.5-44 0-13-13.4-27.3-35.2-36 21.7-9.1 35.1-23.4 35.1-36.4zm70.5-83.5l9.5 8.5c3.8 3.3 9.3 4 13.7 1.6 4.4-2.4 6.9-7.4 6.1-12.4-4-25.2-34.2-42.1-59.8-42.1s-55.9 16.9-59.8 42.1c-.8 5 1.7 10 6.1 12.4 5.8 3.1 11.2.7 13.7-1.6l9.5-8.5c14.8-13.2 46.2-13.2 61 0zM136 208.5c0 17.7 14.3 32 32 32s32-14.3 32-32-14.3-32-32-32-32 14.3-32 32zm365.1 194c-8-20.8-31.5-31.5-53.1-25.9l-8.4 2.2-2.3-8.4c-5.9-21.4-27-36.5-49-33-25.2 4-40.6 28.6-34 52.6l22.9 82.6c1.5 5.3 7 8.5 12.4 7.1l83-21.5c24.1-6.3 37.7-31.8 28.5-55.7zM334 436.3c-26.1 12.5-55.2 19.7-86 19.7-110.3 0-200-89.7-200-200S137.7 56 248 56s200 89.7 200 200c0 22.1-3.7 43.3-10.4 63.2 9 6.4 17 14.2 22.6 23.9 6.4.1 12.6 1.4 18.6 2.9 10.9-27.9 17.1-58.2 17.1-90C496 119 385 8 248 8S0 119 0 256s111 248 248 248c35.4 0 68.9-7.5 99.4-20.9-2.5-7.3 4.3 17.2-13.4-46.8z"],laugh:[496,512,[],"f599","M248 8C111 8 0 119 0 256s111 248 248 248 248-111 248-248S385 8 248 8zm141.4 389.4c-37.8 37.8-88 58.6-141.4 58.6s-103.6-20.8-141.4-58.6S48 309.4 48 256s20.8-103.6 58.6-141.4S194.6 56 248 56s103.6 20.8 141.4 58.6S448 202.6 448 256s-20.8 103.6-58.6 141.4zM328 224c17.7 0 32-14.3 32-32s-14.3-32-32-32-32 14.3-32 32 14.3 32 32 32zm-160 0c17.7 0 32-14.3 32-32s-14.3-32-32-32-32 14.3-32 32 14.3 32 32 32zm194.4 64H133.6c-8.2 0-14.5 7-13.5 15 7.5 59.2 58.9 105 121.1 105h13.6c62.2 0 113.6-45.8 121.1-105 1-8-5.3-15-13.5-15z"],"laugh-beam":[496,512,[],"f59a","M248 8C111 8 0 119 0 256s111 248 248 248 248-111 248-248S385 8 248 8zm141.4 389.4c-37.8 37.8-88 58.6-141.4 58.6s-103.6-20.8-141.4-58.6S48 309.4 48 256s20.8-103.6 58.6-141.4S194.6 56 248 56s103.6 20.8 141.4 58.6S448 202.6 448 256s-20.8 103.6-58.6 141.4zM328 152c-23.8 0-52.7 29.3-56 71.4-.7 8.6 10.8 11.9 14.9 4.5l9.5-17c7.7-13.7 19.2-21.6 31.5-21.6s23.8 7.9 31.5 21.6l9.5 17c4.1 7.4 15.6 4 14.9-4.5-3.1-42.1-32-71.4-55.8-71.4zm-201 75.9l9.5-17c7.7-13.7 19.2-21.6 31.5-21.6s23.8 7.9 31.5 21.6l9.5 17c4.1 7.4 15.6 4 14.9-4.5-3.3-42.1-32.2-71.4-56-71.4s-52.7 29.3-56 71.4c-.6 8.5 10.9 11.9 15.1 4.5zM362.4 288H133.6c-8.2 0-14.5 7-13.5 15 7.5 59.2 58.9 105 121.1 105h13.6c62.2 0 113.6-45.8 121.1-105 1-8-5.3-15-13.5-15z"],"laugh-squint":[496,512,[],"f59b","M248 8C111 8 0 119 0 256s111 248 248 248 248-111 248-248S385 8 248 8zm141.4 389.4c-37.8 37.8-88 58.6-141.4 58.6s-103.6-20.8-141.4-58.6S48 309.4 48 256s20.8-103.6 58.6-141.4S194.6 56 248 56s103.6 20.8 141.4 58.6S448 202.6 448 256s-20.8 103.6-58.6 141.4zM343.6 196l33.6-40.3c8.6-10.3-3.8-24.8-15.4-18l-80 48c-7.8 4.7-7.8 15.9 0 20.6l80 48c11.5 6.8 24-7.6 15.4-18L343.6 196zm-209.4 58.3l80-48c7.8-4.7 7.8-15.9 0-20.6l-80-48c-11.6-6.9-24 7.7-15.4 18l33.6 40.3-33.6 40.3c-8.7 10.4 3.8 24.8 15.4 18zM362.4 288H133.6c-8.2 0-14.5 7-13.5 15 7.5 59.2 58.9 105 121.1 105h13.6c62.2 0 113.6-45.8 121.1-105 1-8-5.3-15-13.5-15z"],"laugh-wink":[496,512,[],"f59c","M248 8C111 8 0 119 0 256s111 248 248 248 248-111 248-248S385 8 248 8zm141.4 389.4c-37.8 37.8-88 58.6-141.4 58.6s-103.6-20.8-141.4-58.6C68.8 359.6 48 309.4 48 256s20.8-103.6 58.6-141.4C144.4 76.8 194.6 56 248 56s103.6 20.8 141.4 58.6c37.8 37.8 58.6 88 58.6 141.4s-20.8 103.6-58.6 141.4zM328 164c-25.7 0-55.9 16.9-59.9 42.1-1.7 11.2 11.5 18.2 19.8 10.8l9.5-8.5c14.8-13.2 46.2-13.2 61 0l9.5 8.5c8.5 7.4 21.6.3 19.8-10.8-3.8-25.2-34-42.1-59.7-42.1zm-160 60c17.7 0 32-14.3 32-32s-14.3-32-32-32-32 14.3-32 32 14.3 32 32 32zm194.4 64H133.6c-8.2 0-14.5 7-13.5 15 7.5 59.2 58.9 105 121.1 105h13.6c62.2 0 113.6-45.8 121.1-105 1-8-5.3-15-13.5-15z"],lemon:[512,512,[],"f094","M484.112 27.889C455.989-.233 416.108-8.057 387.059 8.865 347.604 31.848 223.504-41.111 91.196 91.197-41.277 223.672 31.923 347.472 8.866 387.058c-16.922 29.051-9.1 68.932 19.022 97.054 28.135 28.135 68.011 35.938 97.057 19.021 39.423-22.97 163.557 49.969 295.858-82.329 132.474-132.477 59.273-256.277 82.331-295.861 16.922-29.05 9.1-68.931-19.022-97.054zm-22.405 72.894c-38.8 66.609 45.6 165.635-74.845 286.08-120.44 120.443-219.475 36.048-286.076 74.843-22.679 13.207-64.035-27.241-50.493-50.488 38.8-66.609-45.6-165.635 74.845-286.08C245.573 4.702 344.616 89.086 411.219 50.292c22.73-13.24 64.005 27.288 50.488 50.491zm-169.861 8.736c1.37 10.96-6.404 20.957-17.365 22.327-54.846 6.855-135.779 87.787-142.635 142.635-1.373 10.989-11.399 18.734-22.326 17.365-10.961-1.37-18.735-11.366-17.365-22.326 9.162-73.286 104.167-168.215 177.365-177.365 10.953-1.368 20.956 6.403 22.326 17.364z"],"life-ring":[512,512,[],"f1cd","M256 504c136.967 0 248-111.033 248-248S392.967 8 256 8 8 119.033 8 256s111.033 248 248 248zm-103.398-76.72l53.411-53.411c31.806 13.506 68.128 13.522 99.974 0l53.411 53.411c-63.217 38.319-143.579 38.319-206.796 0zM336 256c0 44.112-35.888 80-80 80s-80-35.888-80-80 35.888-80 80-80 80 35.888 80 80zm91.28 103.398l-53.411-53.411c13.505-31.806 13.522-68.128 0-99.974l53.411-53.411c38.319 63.217 38.319 143.579 0 206.796zM359.397 84.72l-53.411 53.411c-31.806-13.505-68.128-13.522-99.973 0L152.602 84.72c63.217-38.319 143.579-38.319 206.795 0zM84.72 152.602l53.411 53.411c-13.506 31.806-13.522 68.128 0 99.974L84.72 359.398c-38.319-63.217-38.319-143.579 0-206.796z"],lightbulb:[352,512,[],"f0eb","M176 80c-52.94 0-96 43.06-96 96 0 8.84 7.16 16 16 16s16-7.16 16-16c0-35.3 28.72-64 64-64 8.84 0 16-7.16 16-16s-7.16-16-16-16zM96.06 459.17c0 3.15.93 6.22 2.68 8.84l24.51 36.84c2.97 4.46 7.97 7.14 13.32 7.14h78.85c5.36 0 10.36-2.68 13.32-7.14l24.51-36.84c1.74-2.62 2.67-5.7 2.68-8.84l.05-43.18H96.02l.04 43.18zM176 0C73.72 0 0 82.97 0 176c0 44.37 16.45 84.85 43.56 115.78 16.64 18.99 42.74 58.8 52.42 92.16v.06h48v-.12c-.01-4.77-.72-9.51-2.15-14.07-5.59-17.81-22.82-64.77-62.17-109.67-20.54-23.43-31.52-53.15-31.61-84.14-.2-73.64 59.67-128 127.95-128 70.58 0 128 57.42 128 128 0 30.97-11.24 60.85-31.65 84.14-39.11 44.61-56.42 91.47-62.1 109.46a47.507 47.507 0 0 0-2.22 14.3v.1h48v-.05c9.68-33.37 35.78-73.18 52.42-92.16C335.55 260.85 352 220.37 352 176 352 78.8 273.2 0 176 0z"],"list-alt":[512,512,[],"f022","M464 32H48C21.49 32 0 53.49 0 80v352c0 26.51 21.49 48 48 48h416c26.51 0 48-21.49 48-48V80c0-26.51-21.49-48-48-48zm-6 400H54a6 6 0 0 1-6-6V86a6 6 0 0 1 6-6h404a6 6 0 0 1 6 6v340a6 6 0 0 1-6 6zm-42-92v24c0 6.627-5.373 12-12 12H204c-6.627 0-12-5.373-12-12v-24c0-6.627 5.373-12 12-12h200c6.627 0 12 5.373 12 12zm0-96v24c0 6.627-5.373 12-12 12H204c-6.627 0-12-5.373-12-12v-24c0-6.627 5.373-12 12-12h200c6.627 0 12 5.373 12 12zm0-96v24c0 6.627-5.373 12-12 12H204c-6.627 0-12-5.373-12-12v-24c0-6.627 5.373-12 12-12h200c6.627 0 12 5.373 12 12zm-252 12c0 19.882-16.118 36-36 36s-36-16.118-36-36 16.118-36 36-36 36 16.118 36 36zm0 96c0 19.882-16.118 36-36 36s-36-16.118-36-36 16.118-36 36-36 36 16.118 36 36zm0 96c0 19.882-16.118 36-36 36s-36-16.118-36-36 16.118-36 36-36 36 16.118 36 36z"],map:[576,512,[],"f279","M560.02 32c-1.96 0-3.98.37-5.96 1.16L384.01 96H384L212 35.28A64.252 64.252 0 0 0 191.76 32c-6.69 0-13.37 1.05-19.81 3.14L20.12 87.95A32.006 32.006 0 0 0 0 117.66v346.32C0 473.17 7.53 480 15.99 480c1.96 0 3.97-.37 5.96-1.16L192 416l172 60.71a63.98 63.98 0 0 0 40.05.15l151.83-52.81A31.996 31.996 0 0 0 576 394.34V48.02c0-9.19-7.53-16.02-15.98-16.02zM224 90.42l128 45.19v285.97l-128-45.19V90.42zM48 418.05V129.07l128-44.53v286.2l-.64.23L48 418.05zm480-35.13l-128 44.53V141.26l.64-.24L528 93.95v288.97z"],meh:[496,512,[],"f11a","M248 8C111 8 0 119 0 256s111 248 248 248 248-111 248-248S385 8 248 8zm0 448c-110.3 0-200-89.7-200-200S137.7 56 248 56s200 89.7 200 200-89.7 200-200 200zm-80-216c17.7 0 32-14.3 32-32s-14.3-32-32-32-32 14.3-32 32 14.3 32 32 32zm160-64c-17.7 0-32 14.3-32 32s14.3 32 32 32 32-14.3 32-32-14.3-32-32-32zm8 144H160c-13.2 0-24 10.8-24 24s10.8 24 24 24h176c13.2 0 24-10.8 24-24s-10.8-24-24-24z"],"meh-blank":[496,512,[],"f5a4","M248 8C111 8 0 119 0 256s111 248 248 248 248-111 248-248S385 8 248 8zm0 448c-110.3 0-200-89.7-200-200S137.7 56 248 56s200 89.7 200 200-89.7 200-200 200zm-80-280c-17.7 0-32 14.3-32 32s14.3 32 32 32 32-14.3 32-32-14.3-32-32-32zm160 0c-17.7 0-32 14.3-32 32s14.3 32 32 32 32-14.3 32-32-14.3-32-32-32z"],"meh-rolling-eyes":[496,512,[],"f5a5","M248 8C111 8 0 119 0 256s111 248 248 248 248-111 248-248S385 8 248 8zm0 448c-110.3 0-200-89.7-200-200S137.7 56 248 56s200 89.7 200 200-89.7 200-200 200zm88-304c-39.8 0-72 32.2-72 72s32.2 72 72 72 72-32.2 72-72-32.2-72-72-72zm0 112c-22.1 0-40-17.9-40-40 0-13.6 7.3-25.1 17.7-32.3-1 2.6-1.7 5.3-1.7 8.3 0 13.3 10.7 24 24 24s24-10.7 24-24c0-2.9-.7-5.7-1.7-8.3 10.4 7.2 17.7 18.7 17.7 32.3 0 22.1-17.9 40-40 40zm-104-40c0-39.8-32.2-72-72-72s-72 32.2-72 72 32.2 72 72 72 72-32.2 72-72zm-112 0c0-13.6 7.3-25.1 17.7-32.3-1 2.6-1.7 5.3-1.7 8.3 0 13.3 10.7 24 24 24s24-10.7 24-24c0-2.9-.7-5.7-1.7-8.3 10.4 7.2 17.7 18.7 17.7 32.3 0 22.1-17.9 40-40 40s-40-17.9-40-40zm192 128H184c-13.2 0-24 10.8-24 24s10.8 24 24 24h128c13.2 0 24-10.8 24-24s-10.8-24-24-24z"],"minus-square":[448,512,[],"f146","M108 284c-6.6 0-12-5.4-12-12v-32c0-6.6 5.4-12 12-12h232c6.6 0 12 5.4 12 12v32c0 6.6-5.4 12-12 12H108zM448 80v352c0 26.5-21.5 48-48 48H48c-26.5 0-48-21.5-48-48V80c0-26.5 21.5-48 48-48h352c26.5 0 48 21.5 48 48zm-48 346V86c0-3.3-2.7-6-6-6H54c-3.3 0-6 2.7-6 6v340c0 3.3 2.7 6 6 6h340c3.3 0 6-2.7 6-6z"],"money-bill-alt":[640,512,[],"f3d1","M320 144c-53.02 0-96 50.14-96 112 0 61.85 42.98 112 96 112 53 0 96-50.13 96-112 0-61.86-42.98-112-96-112zm40 168c0 4.42-3.58 8-8 8h-64c-4.42 0-8-3.58-8-8v-16c0-4.42 3.58-8 8-8h16v-55.44l-.47.31a7.992 7.992 0 0 1-11.09-2.22l-8.88-13.31a7.992 7.992 0 0 1 2.22-11.09l15.33-10.22a23.99 23.99 0 0 1 13.31-4.03H328c4.42 0 8 3.58 8 8v88h16c4.42 0 8 3.58 8 8v16zM608 64H32C14.33 64 0 78.33 0 96v320c0 17.67 14.33 32 32 32h576c17.67 0 32-14.33 32-32V96c0-17.67-14.33-32-32-32zm-16 272c-35.35 0-64 28.65-64 64H112c0-35.35-28.65-64-64-64V176c35.35 0 64-28.65 64-64h416c0 35.35 28.65 64 64 64v160z"],moon:[512,512,[],"f186","M279.135 512c78.756 0 150.982-35.804 198.844-94.775 28.27-34.831-2.558-85.722-46.249-77.401-82.348 15.683-158.272-47.268-158.272-130.792 0-48.424 26.06-92.292 67.434-115.836 38.745-22.05 28.999-80.788-15.022-88.919A257.936 257.936 0 0 0 279.135 0c-141.36 0-256 114.575-256 256 0 141.36 114.576 256 256 256zm0-464c12.985 0 25.689 1.201 38.016 3.478-54.76 31.163-91.693 90.042-91.693 157.554 0 113.848 103.641 199.2 215.252 177.944C402.574 433.964 344.366 464 279.135 464c-114.875 0-208-93.125-208-208s93.125-208 208-208z"],newspaper:[576,512,[],"f1ea","M552 64H112c-20.858 0-38.643 13.377-45.248 32H24c-13.255 0-24 10.745-24 24v272c0 30.928 25.072 56 56 56h496c13.255 0 24-10.745 24-24V88c0-13.255-10.745-24-24-24zM48 392V144h16v248c0 4.411-3.589 8-8 8s-8-3.589-8-8zm480 8H111.422c.374-2.614.578-5.283.578-8V112h416v288zM172 280h136c6.627 0 12-5.373 12-12v-96c0-6.627-5.373-12-12-12H172c-6.627 0-12 5.373-12 12v96c0 6.627 5.373 12 12 12zm28-80h80v40h-80v-40zm-40 140v-24c0-6.627 5.373-12 12-12h136c6.627 0 12 5.373 12 12v24c0 6.627-5.373 12-12 12H172c-6.627 0-12-5.373-12-12zm192 0v-24c0-6.627 5.373-12 12-12h104c6.627 0 12 5.373 12 12v24c0 6.627-5.373 12-12 12H364c-6.627 0-12-5.373-12-12zm0-144v-24c0-6.627 5.373-12 12-12h104c6.627 0 12 5.373 12 12v24c0 6.627-5.373 12-12 12H364c-6.627 0-12-5.373-12-12zm0 72v-24c0-6.627 5.373-12 12-12h104c6.627 0 12 5.373 12 12v24c0 6.627-5.373 12-12 12H364c-6.627 0-12-5.373-12-12z"],"object-group":[512,512,[],"f247","M500 128c6.627 0 12-5.373 12-12V44c0-6.627-5.373-12-12-12h-72c-6.627 0-12 5.373-12 12v12H96V44c0-6.627-5.373-12-12-12H12C5.373 32 0 37.373 0 44v72c0 6.627 5.373 12 12 12h12v256H12c-6.627 0-12 5.373-12 12v72c0 6.627 5.373 12 12 12h72c6.627 0 12-5.373 12-12v-12h320v12c0 6.627 5.373 12 12 12h72c6.627 0 12-5.373 12-12v-72c0-6.627-5.373-12-12-12h-12V128h12zm-52-64h32v32h-32V64zM32 64h32v32H32V64zm32 384H32v-32h32v32zm416 0h-32v-32h32v32zm-40-64h-12c-6.627 0-12 5.373-12 12v12H96v-12c0-6.627-5.373-12-12-12H72V128h12c6.627 0 12-5.373 12-12v-12h320v12c0 6.627 5.373 12 12 12h12v256zm-36-192h-84v-52c0-6.628-5.373-12-12-12H108c-6.627 0-12 5.372-12 12v168c0 6.628 5.373 12 12 12h84v52c0 6.628 5.373 12 12 12h200c6.627 0 12-5.372 12-12V204c0-6.628-5.373-12-12-12zm-268-24h144v112H136V168zm240 176H232v-24h76c6.627 0 12-5.372 12-12v-76h56v112z"],"object-ungroup":[576,512,[],"f248","M564 224c6.627 0 12-5.373 12-12v-72c0-6.627-5.373-12-12-12h-72c-6.627 0-12 5.373-12 12v12h-88v-24h12c6.627 0 12-5.373 12-12V44c0-6.627-5.373-12-12-12h-72c-6.627 0-12 5.373-12 12v12H96V44c0-6.627-5.373-12-12-12H12C5.373 32 0 37.373 0 44v72c0 6.627 5.373 12 12 12h12v160H12c-6.627 0-12 5.373-12 12v72c0 6.627 5.373 12 12 12h72c6.627 0 12-5.373 12-12v-12h88v24h-12c-6.627 0-12 5.373-12 12v72c0 6.627 5.373 12 12 12h72c6.627 0 12-5.373 12-12v-12h224v12c0 6.627 5.373 12 12 12h72c6.627 0 12-5.373 12-12v-72c0-6.627-5.373-12-12-12h-12V224h12zM352 64h32v32h-32V64zm0 256h32v32h-32v-32zM64 352H32v-32h32v32zm0-256H32V64h32v32zm32 216v-12c0-6.627-5.373-12-12-12H72V128h12c6.627 0 12-5.373 12-12v-12h224v12c0 6.627 5.373 12 12 12h12v160h-12c-6.627 0-12 5.373-12 12v12H96zm128 136h-32v-32h32v32zm280-64h-12c-6.627 0-12 5.373-12 12v12H256v-12c0-6.627-5.373-12-12-12h-12v-24h88v12c0 6.627 5.373 12 12 12h72c6.627 0 12-5.373 12-12v-72c0-6.627-5.373-12-12-12h-12v-88h88v12c0 6.627 5.373 12 12 12h12v160zm40 64h-32v-32h32v32zm0-256h-32v-32h32v32z"],"paper-plane":[512,512,[],"f1d8","M440 6.5L24 246.4c-34.4 19.9-31.1 70.8 5.7 85.9L144 379.6V464c0 46.4 59.2 65.5 86.6 28.6l43.8-59.1 111.9 46.2c5.9 2.4 12.1 3.6 18.3 3.6 8.2 0 16.3-2.1 23.6-6.2 12.8-7.2 21.6-20 23.9-34.5l59.4-387.2c6.1-40.1-36.9-68.8-71.5-48.9zM192 464v-64.6l36.6 15.1L192 464zm212.6-28.7l-153.8-63.5L391 169.5c10.7-15.5-9.5-33.5-23.7-21.2L155.8 332.6 48 288 464 48l-59.4 387.3z"],"pause-circle":[512,512,[],"f28b","M256 8C119 8 8 119 8 256s111 248 248 248 248-111 248-248S393 8 256 8zm0 448c-110.5 0-200-89.5-200-200S145.5 56 256 56s200 89.5 200 200-89.5 200-200 200zm96-280v160c0 8.8-7.2 16-16 16h-48c-8.8 0-16-7.2-16-16V176c0-8.8 7.2-16 16-16h48c8.8 0 16 7.2 16 16zm-112 0v160c0 8.8-7.2 16-16 16h-48c-8.8 0-16-7.2-16-16V176c0-8.8 7.2-16 16-16h48c8.8 0 16 7.2 16 16z"],"play-circle":[512,512,[],"f144","M371.7 238l-176-107c-15.8-8.8-35.7 2.5-35.7 21v208c0 18.4 19.8 29.8 35.7 21l176-101c16.4-9.1 16.4-32.8 0-42zM504 256C504 119 393 8 256 8S8 119 8 256s111 248 248 248 248-111 248-248zm-448 0c0-110.5 89.5-200 200-200s200 89.5 200 200-89.5 200-200 200S56 366.5 56 256z"],"plus-square":[448,512,[],"f0fe","M352 240v32c0 6.6-5.4 12-12 12h-88v88c0 6.6-5.4 12-12 12h-32c-6.6 0-12-5.4-12-12v-88h-88c-6.6 0-12-5.4-12-12v-32c0-6.6 5.4-12 12-12h88v-88c0-6.6 5.4-12 12-12h32c6.6 0 12 5.4 12 12v88h88c6.6 0 12 5.4 12 12zm96-160v352c0 26.5-21.5 48-48 48H48c-26.5 0-48-21.5-48-48V80c0-26.5 21.5-48 48-48h352c26.5 0 48 21.5 48 48zm-48 346V86c0-3.3-2.7-6-6-6H54c-3.3 0-6 2.7-6 6v340c0 3.3 2.7 6 6 6h340c3.3 0 6-2.7 6-6z"],"question-circle":[512,512,[],"f059","M256 8C119.043 8 8 119.083 8 256c0 136.997 111.043 248 248 248s248-111.003 248-248C504 119.083 392.957 8 256 8zm0 448c-110.532 0-200-89.431-200-200 0-110.495 89.472-200 200-200 110.491 0 200 89.471 200 200 0 110.53-89.431 200-200 200zm107.244-255.2c0 67.052-72.421 68.084-72.421 92.863V300c0 6.627-5.373 12-12 12h-45.647c-6.627 0-12-5.373-12-12v-8.659c0-35.745 27.1-50.034 47.579-61.516 17.561-9.845 28.324-16.541 28.324-29.579 0-17.246-21.999-28.693-39.784-28.693-23.189 0-33.894 10.977-48.942 29.969-4.057 5.12-11.46 6.071-16.666 2.124l-27.824-21.098c-5.107-3.872-6.251-11.066-2.644-16.363C184.846 131.491 214.94 112 261.794 112c49.071 0 101.45 38.304 101.45 88.8zM298 368c0 23.159-18.841 42-42 42s-42-18.841-42-42 18.841-42 42-42 42 18.841 42 42z"],registered:[512,512,[],"f25d","M256 8C119.033 8 8 119.033 8 256s111.033 248 248 248 248-111.033 248-248S392.967 8 256 8zm0 448c-110.532 0-200-89.451-200-200 0-110.531 89.451-200 200-200 110.532 0 200 89.451 200 200 0 110.532-89.451 200-200 200zm110.442-81.791c-53.046-96.284-50.25-91.468-53.271-96.085 24.267-13.879 39.482-41.563 39.482-73.176 0-52.503-30.247-85.252-101.498-85.252h-78.667c-6.617 0-12 5.383-12 12V380c0 6.617 5.383 12 12 12h38.568c6.617 0 12-5.383 12-12v-83.663h31.958l47.515 89.303a11.98 11.98 0 0 0 10.593 6.36h42.81c9.14 0 14.914-9.799 10.51-17.791zM256.933 239.906h-33.875v-64.14h27.377c32.417 0 38.929 12.133 38.929 31.709-.001 20.913-11.518 32.431-32.431 32.431z"],"sad-cry":[496,512,[],"f5b3","M248 8C111 8 0 119 0 256s111 248 248 248 248-111 248-248S385 8 248 8zm144 386.4V280c0-13.2-10.8-24-24-24s-24 10.8-24 24v151.4C315.5 447 282.8 456 248 456s-67.5-9-96-24.6V280c0-13.2-10.8-24-24-24s-24 10.8-24 24v114.4c-34.6-36-56-84.7-56-138.4 0-110.3 89.7-200 200-200s200 89.7 200 200c0 53.7-21.4 102.5-56 138.4zM205.8 234.5c4.4-2.4 6.9-7.4 6.1-12.4-4-25.2-34.2-42.1-59.8-42.1s-55.9 16.9-59.8 42.1c-.8 5 1.7 10 6.1 12.4 4.4 2.4 9.9 1.8 13.7-1.6l9.5-8.5c14.8-13.2 46.2-13.2 61 0l9.5 8.5c2.5 2.3 7.9 4.8 13.7 1.6zM344 180c-25.7 0-55.9 16.9-59.8 42.1-.8 5 1.7 10 6.1 12.4 4.5 2.4 9.9 1.8 13.7-1.6l9.5-8.5c14.8-13.2 46.2-13.2 61 0l9.5 8.5c2.5 2.2 8 4.7 13.7 1.6 4.4-2.4 6.9-7.4 6.1-12.4-3.9-25.2-34.1-42.1-59.8-42.1zm-96 92c-30.9 0-56 28.7-56 64s25.1 64 56 64 56-28.7 56-64-25.1-64-56-64z"],"sad-tear":[496,512,[],"f5b4","M248 8C111 8 0 119 0 256s111 248 248 248 248-111 248-248S385 8 248 8zm0 448c-110.3 0-200-89.7-200-200S137.7 56 248 56s200 89.7 200 200-89.7 200-200 200zm8-152c-13.2 0-24 10.8-24 24s10.8 24 24 24c23.8 0 46.3 10.5 61.6 28.8 8.1 9.8 23.2 11.9 33.8 3.1 10.2-8.5 11.6-23.6 3.1-33.8C330 320.8 294.1 304 256 304zm-88-64c17.7 0 32-14.3 32-32s-14.3-32-32-32-32 14.3-32 32 14.3 32 32 32zm160-64c-17.7 0-32 14.3-32 32s14.3 32 32 32 32-14.3 32-32-14.3-32-32-32zm-165.6 98.8C151 290.1 126 325.4 126 342.9c0 22.7 18.8 41.1 42 41.1s42-18.4 42-41.1c0-17.5-25-52.8-36.4-68.1-2.8-3.7-8.4-3.7-11.2 0z"],save:[448,512,[],"f0c7","M433.941 129.941l-83.882-83.882A48 48 0 0 0 316.118 32H48C21.49 32 0 53.49 0 80v352c0 26.51 21.49 48 48 48h352c26.51 0 48-21.49 48-48V163.882a48 48 0 0 0-14.059-33.941zM272 80v80H144V80h128zm122 352H54a6 6 0 0 1-6-6V86a6 6 0 0 1 6-6h42v104c0 13.255 10.745 24 24 24h176c13.255 0 24-10.745 24-24V83.882l78.243 78.243a6 6 0 0 1 1.757 4.243V426a6 6 0 0 1-6 6zM224 232c-48.523 0-88 39.477-88 88s39.477 88 88 88 88-39.477 88-88-39.477-88-88-88zm0 128c-22.056 0-40-17.944-40-40s17.944-40 40-40 40 17.944 40 40-17.944 40-40 40z"],"share-square":[576,512,[],"f14d","M561.938 158.06L417.94 14.092C387.926-15.922 336 5.097 336 48.032v57.198c-42.45 1.88-84.03 6.55-120.76 17.99-35.17 10.95-63.07 27.58-82.91 49.42C108.22 199.2 96 232.6 96 271.94c0 61.697 33.178 112.455 84.87 144.76 37.546 23.508 85.248-12.651 71.02-55.74-15.515-47.119-17.156-70.923 84.11-78.76V336c0 42.993 51.968 63.913 81.94 33.94l143.998-144c18.75-18.74 18.75-49.14 0-67.88zM384 336V232.16C255.309 234.082 166.492 255.35 206.31 376 176.79 357.55 144 324.08 144 271.94c0-109.334 129.14-118.947 240-119.85V48l144 144-144 144zm24.74 84.493a82.658 82.658 0 0 0 20.974-9.303c7.976-4.952 18.286.826 18.286 10.214V464c0 26.51-21.49 48-48 48H48c-26.51 0-48-21.49-48-48V112c0-26.51 21.49-48 48-48h132c6.627 0 12 5.373 12 12v4.486c0 4.917-2.987 9.369-7.569 11.152-13.702 5.331-26.396 11.537-38.05 18.585a12.138 12.138 0 0 1-6.28 1.777H54a6 6 0 0 0-6 6v340a6 6 0 0 0 6 6h340a6 6 0 0 0 6-6v-25.966c0-5.37 3.579-10.059 8.74-11.541z"],smile:[496,512,[],"f118","M248 8C111 8 0 119 0 256s111 248 248 248 248-111 248-248S385 8 248 8zm0 448c-110.3 0-200-89.7-200-200S137.7 56 248 56s200 89.7 200 200-89.7 200-200 200zm-80-216c17.7 0 32-14.3 32-32s-14.3-32-32-32-32 14.3-32 32 14.3 32 32 32zm160 0c17.7 0 32-14.3 32-32s-14.3-32-32-32-32 14.3-32 32 14.3 32 32 32zm4 72.6c-20.8 25-51.5 39.4-84 39.4s-63.2-14.3-84-39.4c-8.5-10.2-23.7-11.5-33.8-3.1-10.2 8.5-11.5 23.6-3.1 33.8 30 36 74.1 56.6 120.9 56.6s90.9-20.6 120.9-56.6c8.5-10.2 7.1-25.3-3.1-33.8-10.1-8.4-25.3-7.1-33.8 3.1z"],"smile-beam":[496,512,[],"f5b8","M248 8C111 8 0 119 0 256s111 248 248 248 248-111 248-248S385 8 248 8zm0 448c-110.3 0-200-89.7-200-200S137.7 56 248 56s200 89.7 200 200-89.7 200-200 200zm84-143.4c-20.8 25-51.5 39.4-84 39.4s-63.2-14.3-84-39.4c-8.5-10.2-23.6-11.5-33.8-3.1-10.2 8.5-11.5 23.6-3.1 33.8 30 36 74.1 56.6 120.9 56.6s90.9-20.6 120.9-56.6c8.5-10.2 7.1-25.3-3.1-33.8-10.2-8.4-25.3-7.1-33.8 3.1zM136.5 211c7.7-13.7 19.2-21.6 31.5-21.6s23.8 7.9 31.5 21.6l9.5 17c2.1 3.7 6.2 4.7 9.3 3.7 3.6-1.1 6-4.5 5.7-8.3-3.3-42.1-32.2-71.4-56-71.4s-52.7 29.3-56 71.4c-.3 3.7 2.1 7.2 5.7 8.3 3.4 1.1 7.4-.5 9.3-3.7l9.5-17zM328 152c-23.8 0-52.7 29.3-56 71.4-.3 3.7 2.1 7.2 5.7 8.3 3.5 1.1 7.4-.5 9.3-3.7l9.5-17c7.7-13.7 19.2-21.6 31.5-21.6s23.8 7.9 31.5 21.6l9.5 17c2.1 3.7 6.2 4.7 9.3 3.7 3.6-1.1 6-4.5 5.7-8.3-3.3-42.1-32.2-71.4-56-71.4z"],"smile-wink":[496,512,[],"f4da","M248 8C111 8 0 119 0 256s111 248 248 248 248-111 248-248S385 8 248 8zm0 448c-110.3 0-200-89.7-200-200S137.7 56 248 56s200 89.7 200 200-89.7 200-200 200zm117.8-146.4c-10.2-8.5-25.3-7.1-33.8 3.1-20.8 25-51.5 39.4-84 39.4s-63.2-14.3-84-39.4c-8.5-10.2-23.7-11.5-33.8-3.1-10.2 8.5-11.5 23.6-3.1 33.8 30 36 74.1 56.6 120.9 56.6s90.9-20.6 120.9-56.6c8.5-10.2 7.1-25.3-3.1-33.8zM168 240c17.7 0 32-14.3 32-32s-14.3-32-32-32-32 14.3-32 32 14.3 32 32 32zm160-60c-25.7 0-55.9 16.9-59.9 42.1-1.7 11.2 11.5 18.2 19.8 10.8l9.5-8.5c14.8-13.2 46.2-13.2 61 0l9.5 8.5c8.5 7.4 21.6.3 19.8-10.8-3.8-25.2-34-42.1-59.7-42.1z"],snowflake:[448,512,[],"f2dc","M440.1 355.2l-39.2-23 34.1-9.3c8.4-2.3 13.4-11.1 11.1-19.6l-4.1-15.5c-2.2-8.5-10.9-13.6-19.3-11.3L343 298.2 271.2 256l71.9-42.2 79.7 21.7c8.4 2.3 17-2.8 19.3-11.3l4.1-15.5c2.2-8.5-2.7-17.3-11.1-19.6l-34.1-9.3 39.2-23c7.5-4.4 10.1-14.2 5.8-21.9l-7.9-13.9c-4.3-7.7-14-10.3-21.5-5.9l-39.2 23 9.1-34.7c2.2-8.5-2.7-17.3-11.1-19.6l-15.2-4.1c-8.4-2.3-17 2.8-19.3 11.3l-21.3 81-71.9 42.2v-84.5L306 70.4c6.1-6.2 6.1-16.4 0-22.6l-11.1-11.3c-6.1-6.2-16.1-6.2-22.2 0l-24.9 25.4V16c0-8.8-7-16-15.7-16h-15.7c-8.7 0-15.7 7.2-15.7 16v46.1l-24.9-25.4c-6.1-6.2-16.1-6.2-22.2 0L142.1 48c-6.1 6.2-6.1 16.4 0 22.6l58.3 59.3v84.5l-71.9-42.2-21.3-81c-2.2-8.5-10.9-13.6-19.3-11.3L72.7 84c-8.4 2.3-13.4 11.1-11.1 19.6l9.1 34.7-39.2-23c-7.5-4.4-17.1-1.8-21.5 5.9l-7.9 13.9c-4.3 7.7-1.8 17.4 5.8 21.9l39.2 23-34.1 9.1c-8.4 2.3-13.4 11.1-11.1 19.6L6 224.2c2.2 8.5 10.9 13.6 19.3 11.3l79.7-21.7 71.9 42.2-71.9 42.2-79.7-21.7c-8.4-2.3-17 2.8-19.3 11.3l-4.1 15.5c-2.2 8.5 2.7 17.3 11.1 19.6l34.1 9.3-39.2 23c-7.5 4.4-10.1 14.2-5.8 21.9L10 391c4.3 7.7 14 10.3 21.5 5.9l39.2-23-9.1 34.7c-2.2 8.5 2.7 17.3 11.1 19.6l15.2 4.1c8.4 2.3 17-2.8 19.3-11.3l21.3-81 71.9-42.2v84.5l-58.3 59.3c-6.1 6.2-6.1 16.4 0 22.6l11.1 11.3c6.1 6.2 16.1 6.2 22.2 0l24.9-25.4V496c0 8.8 7 16 15.7 16h15.7c8.7 0 15.7-7.2 15.7-16v-46.1l24.9 25.4c6.1 6.2 16.1 6.2 22.2 0l11.1-11.3c6.1-6.2 6.1-16.4 0-22.6l-58.3-59.3v-84.5l71.9 42.2 21.3 81c2.2 8.5 10.9 13.6 19.3 11.3L375 428c8.4-2.3 13.4-11.1 11.1-19.6l-9.1-34.7 39.2 23c7.5 4.4 17.1 1.8 21.5-5.9l7.9-13.9c4.6-7.5 2.1-17.3-5.5-21.7z"],square:[448,512,[],"f0c8","M400 32H48C21.5 32 0 53.5 0 80v352c0 26.5 21.5 48 48 48h352c26.5 0 48-21.5 48-48V80c0-26.5-21.5-48-48-48zm-6 400H54c-3.3 0-6-2.7-6-6V86c0-3.3 2.7-6 6-6h340c3.3 0 6 2.7 6 6v340c0 3.3-2.7 6-6 6z"],star:[576,512,[],"f005","M528.1 171.5L382 150.2 316.7 17.8c-11.7-23.6-45.6-23.9-57.4 0L194 150.2 47.9 171.5c-26.2 3.8-36.7 36.1-17.7 54.6l105.7 103-25 145.5c-4.5 26.3 23.2 46 46.4 33.7L288 439.6l130.7 68.7c23.2 12.2 50.9-7.4 46.4-33.7l-25-145.5 105.7-103c19-18.5 8.5-50.8-17.7-54.6zM388.6 312.3l23.7 138.4L288 385.4l-124.3 65.3 23.7-138.4-100.6-98 139-20.2 62.2-126 62.2 126 139 20.2-100.6 98z"],"star-half":[576,512,[],"f089","M288 385.3l-124.3 65.4 23.7-138.4-100.6-98 139-20.2 62.2-126V0c-11.4 0-22.8 5.9-28.7 17.8L194 150.2 47.9 171.4c-26.2 3.8-36.7 36.1-17.7 54.6l105.7 103-25 145.5c-4.5 26.1 23 46 46.4 33.7L288 439.6v-54.3z"],"sticky-note":[448,512,[],"f249","M448 348.106V80c0-26.51-21.49-48-48-48H48C21.49 32 0 53.49 0 80v351.988c0 26.51 21.49 48 48 48h268.118a48 48 0 0 0 33.941-14.059l83.882-83.882A48 48 0 0 0 448 348.106zm-128 80v-76.118h76.118L320 428.106zM400 80v223.988H296c-13.255 0-24 10.745-24 24v104H48V80h352z"],"stop-circle":[512,512,[],"f28d","M504 256C504 119 393 8 256 8S8 119 8 256s111 248 248 248 248-111 248-248zm-448 0c0-110.5 89.5-200 200-200s200 89.5 200 200-89.5 200-200 200S56 366.5 56 256zm296-80v160c0 8.8-7.2 16-16 16H176c-8.8 0-16-7.2-16-16V176c0-8.8 7.2-16 16-16h160c8.8 0 16 7.2 16 16z"],sun:[512,512,[],"f185","M494.2 221.9l-59.8-40.5 13.7-71c2.6-13.2-1.6-26.8-11.1-36.4-9.6-9.5-23.2-13.7-36.2-11.1l-70.9 13.7-40.4-59.9c-15.1-22.3-51.9-22.3-67 0l-40.4 59.9-70.8-13.7C98 60.4 84.5 64.5 75 74.1c-9.5 9.6-13.7 23.1-11.1 36.3l13.7 71-59.8 40.5C6.6 229.5 0 242 0 255.5s6.7 26 17.8 33.5l59.8 40.5-13.7 71c-2.6 13.2 1.6 26.8 11.1 36.3 9.5 9.5 22.9 13.7 36.3 11.1l70.8-13.7 40.4 59.9C230 505.3 242.6 512 256 512s26-6.7 33.5-17.8l40.4-59.9 70.9 13.7c13.4 2.7 26.8-1.6 36.3-11.1 9.5-9.5 13.6-23.1 11.1-36.3l-13.7-71 59.8-40.5c11.1-7.5 17.8-20.1 17.8-33.5-.1-13.6-6.7-26.1-17.9-33.7zm-112.9 85.6l17.6 91.2-91-17.6L256 458l-51.9-77-90.9 17.6 17.6-91.2-76.8-52 76.8-52-17.6-91.2 91 17.6L256 53l51.9 76.9 91-17.6-17.6 91.1 76.8 52-76.8 52.1zM256 152c-57.3 0-104 46.7-104 104s46.7 104 104 104 104-46.7 104-104-46.7-104-104-104zm0 160c-30.9 0-56-25.1-56-56s25.1-56 56-56 56 25.1 56 56-25.1 56-56 56z"],surprise:[496,512,[],"f5c2","M248 8C111 8 0 119 0 256s111 248 248 248 248-111 248-248S385 8 248 8zm0 448c-110.3 0-200-89.7-200-200S137.7 56 248 56s200 89.7 200 200-89.7 200-200 200zm0-176c-35.3 0-64 28.7-64 64s28.7 64 64 64 64-28.7 64-64-28.7-64-64-64zm-48-72c0-17.7-14.3-32-32-32s-32 14.3-32 32 14.3 32 32 32 32-14.3 32-32zm128-32c-17.7 0-32 14.3-32 32s14.3 32 32 32 32-14.3 32-32-14.3-32-32-32z"],"thumbs-down":[512,512,[],"f165","M466.27 225.31c4.674-22.647.864-44.538-8.99-62.99 2.958-23.868-4.021-48.565-17.34-66.99C438.986 39.423 404.117 0 327 0c-7 0-15 .01-22.22.01C201.195.01 168.997 40 128 40h-10.845c-5.64-4.975-13.042-8-21.155-8H32C14.327 32 0 46.327 0 64v240c0 17.673 14.327 32 32 32h64c11.842 0 22.175-6.438 27.708-16h7.052c19.146 16.953 46.013 60.653 68.76 83.4 13.667 13.667 10.153 108.6 71.76 108.6 57.58 0 95.27-31.936 95.27-104.73 0-18.41-3.93-33.73-8.85-46.54h36.48c48.602 0 85.82-41.565 85.82-85.58 0-19.15-4.96-34.99-13.73-49.84zM64 296c-13.255 0-24-10.745-24-24s10.745-24 24-24 24 10.745 24 24-10.745 24-24 24zm330.18 16.73H290.19c0 37.82 28.36 55.37 28.36 94.54 0 23.75 0 56.73-47.27 56.73-18.91-18.91-9.46-66.18-37.82-94.54C206.9 342.89 167.28 272 138.92 272H128V85.83c53.611 0 100.001-37.82 171.64-37.82h37.82c35.512 0 60.82 17.12 53.12 65.9 15.2 8.16 26.5 36.44 13.94 57.57 21.581 20.384 18.699 51.065 5.21 65.62 9.45 0 22.36 18.91 22.27 37.81-.09 18.91-16.71 37.82-37.82 37.82z"],"thumbs-up":[512,512,[],"f164","M466.27 286.69C475.04 271.84 480 256 480 236.85c0-44.015-37.218-85.58-85.82-85.58H357.7c4.92-12.81 8.85-28.13 8.85-46.54C366.55 31.936 328.86 0 271.28 0c-61.607 0-58.093 94.933-71.76 108.6-22.747 22.747-49.615 66.447-68.76 83.4H32c-17.673 0-32 14.327-32 32v240c0 17.673 14.327 32 32 32h64c14.893 0 27.408-10.174 30.978-23.95 44.509 1.001 75.06 39.94 177.802 39.94 7.22 0 15.22.01 22.22.01 77.117 0 111.986-39.423 112.94-95.33 13.319-18.425 20.299-43.122 17.34-66.99 9.854-18.452 13.664-40.343 8.99-62.99zm-61.75 53.83c12.56 21.13 1.26 49.41-13.94 57.57 7.7 48.78-17.608 65.9-53.12 65.9h-37.82c-71.639 0-118.029-37.82-171.64-37.82V240h10.92c28.36 0 67.98-70.89 94.54-97.46 28.36-28.36 18.91-75.63 37.82-94.54 47.27 0 47.27 32.98 47.27 56.73 0 39.17-28.36 56.72-28.36 94.54h103.99c21.11 0 37.73 18.91 37.82 37.82.09 18.9-12.82 37.81-22.27 37.81 13.489 14.555 16.371 45.236-5.21 65.62zM88 432c0 13.255-10.745 24-24 24s-24-10.745-24-24 10.745-24 24-24 24 10.745 24 24z"],"times-circle":[512,512,[],"f057","M256 8C119 8 8 119 8 256s111 248 248 248 248-111 248-248S393 8 256 8zm0 448c-110.5 0-200-89.5-200-200S145.5 56 256 56s200 89.5 200 200-89.5 200-200 200zm101.8-262.2L295.6 256l62.2 62.2c4.7 4.7 4.7 12.3 0 17l-22.6 22.6c-4.7 4.7-12.3 4.7-17 0L256 295.6l-62.2 62.2c-4.7 4.7-12.3 4.7-17 0l-22.6-22.6c-4.7-4.7-4.7-12.3 0-17l62.2-62.2-62.2-62.2c-4.7-4.7-4.7-12.3 0-17l22.6-22.6c4.7-4.7 12.3-4.7 17 0l62.2 62.2 62.2-62.2c4.7-4.7 12.3-4.7 17 0l22.6 22.6c4.7 4.7 4.7 12.3 0 17z"],tired:[496,512,[],"f5c8","M248 8C111 8 0 119 0 256s111 248 248 248 248-111 248-248S385 8 248 8zm0 448c-110.3 0-200-89.7-200-200S137.7 56 248 56s200 89.7 200 200-89.7 200-200 200zm129.1-303.8c-3.8-4.4-10.3-5.4-15.3-2.5l-80 48c-3.6 2.2-5.8 6.1-5.8 10.3s2.2 8.1 5.8 10.3l80 48c5.4 3.2 11.8 1.6 15.3-2.5 3.8-4.5 3.9-11 .1-15.5L343.6 208l33.6-40.3c3.8-4.5 3.7-11.1-.1-15.5zM220 208c0-4.2-2.2-8.1-5.8-10.3l-80-48c-5-3-11.5-1.9-15.3 2.5-3.8 4.5-3.9 11-.1 15.5l33.6 40.3-33.6 40.3c-3.8 4.5-3.7 11 .1 15.5 3.5 4.1 9.9 5.7 15.3 2.5l80-48c3.6-2.2 5.8-6.1 5.8-10.3zm28 64c-45.4 0-100.9 38.3-107.8 93.3-1.5 11.8 6.9 21.6 15.5 17.9C178.4 373.5 212 368 248 368s69.6 5.5 92.3 15.2c8.5 3.7 17-6 15.5-17.9-6.9-55-62.4-93.3-107.8-93.3z"],"trash-alt":[448,512,[],"f2ed","M268 416h24a12 12 0 0 0 12-12V188a12 12 0 0 0-12-12h-24a12 12 0 0 0-12 12v216a12 12 0 0 0 12 12zM432 80h-82.41l-34-56.7A48 48 0 0 0 274.41 0H173.59a48 48 0 0 0-41.16 23.3L98.41 80H16A16 16 0 0 0 0 96v16a16 16 0 0 0 16 16h16v336a48 48 0 0 0 48 48h288a48 48 0 0 0 48-48V128h16a16 16 0 0 0 16-16V96a16 16 0 0 0-16-16zM171.84 50.91A6 6 0 0 1 177 48h94a6 6 0 0 1 5.15 2.91L293.61 80H154.39zM368 464H80V128h288zm-212-48h24a12 12 0 0 0 12-12V188a12 12 0 0 0-12-12h-24a12 12 0 0 0-12 12v216a12 12 0 0 0 12 12z"],user:[448,512,[],"f007","M313.6 304c-28.7 0-42.5 16-89.6 16-47.1 0-60.8-16-89.6-16C60.2 304 0 364.2 0 438.4V464c0 26.5 21.5 48 48 48h352c26.5 0 48-21.5 48-48v-25.6c0-74.2-60.2-134.4-134.4-134.4zM400 464H48v-25.6c0-47.6 38.8-86.4 86.4-86.4 14.6 0 38.3 16 89.6 16 51.7 0 74.9-16 89.6-16 47.6 0 86.4 38.8 86.4 86.4V464zM224 288c79.5 0 144-64.5 144-144S303.5 0 224 0 80 64.5 80 144s64.5 144 144 144zm0-240c52.9 0 96 43.1 96 96s-43.1 96-96 96-96-43.1-96-96 43.1-96 96-96z"],"user-circle":[496,512,[],"f2bd","M248 104c-53 0-96 43-96 96s43 96 96 96 96-43 96-96-43-96-96-96zm0 144c-26.5 0-48-21.5-48-48s21.5-48 48-48 48 21.5 48 48-21.5 48-48 48zm0-240C111 8 0 119 0 256s111 248 248 248 248-111 248-248S385 8 248 8zm0 448c-49.7 0-95.1-18.3-130.1-48.4 14.9-23 40.4-38.6 69.6-39.5 20.8 6.4 40.6 9.6 60.5 9.6s39.7-3.1 60.5-9.6c29.2 1 54.7 16.5 69.6 39.5-35 30.1-80.4 48.4-130.1 48.4zm162.7-84.1c-24.4-31.4-62.1-51.9-105.1-51.9-10.2 0-26 9.6-57.6 9.6-31.5 0-47.4-9.6-57.6-9.6-42.9 0-80.6 20.5-105.1 51.9C61.9 339.2 48 299.2 48 256c0-110.3 89.7-200 200-200s200 89.7 200 200c0 43.2-13.9 83.2-37.3 115.9z"],"window-close":[512,512,[],"f410","M464 32H48C21.5 32 0 53.5 0 80v352c0 26.5 21.5 48 48 48h416c26.5 0 48-21.5 48-48V80c0-26.5-21.5-48-48-48zm0 394c0 3.3-2.7 6-6 6H54c-3.3 0-6-2.7-6-6V86c0-3.3 2.7-6 6-6h404c3.3 0 6 2.7 6 6v340zM356.5 194.6L295.1 256l61.4 61.4c4.6 4.6 4.6 12.1 0 16.8l-22.3 22.3c-4.6 4.6-12.1 4.6-16.8 0L256 295.1l-61.4 61.4c-4.6 4.6-12.1 4.6-16.8 0l-22.3-22.3c-4.6-4.6-4.6-12.1 0-16.8l61.4-61.4-61.4-61.4c-4.6-4.6-4.6-12.1 0-16.8l22.3-22.3c4.6-4.6 12.1-4.6 16.8 0l61.4 61.4 61.4-61.4c4.6-4.6 12.1-4.6 16.8 0l22.3 22.3c4.7 4.6 4.7 12.1 0 16.8z"],"window-maximize":[512,512,[],"f2d0","M464 32H48C21.5 32 0 53.5 0 80v352c0 26.5 21.5 48 48 48h416c26.5 0 48-21.5 48-48V80c0-26.5-21.5-48-48-48zm0 394c0 3.3-2.7 6-6 6H54c-3.3 0-6-2.7-6-6V192h416v234z"],"window-minimize":[512,512,[],"f2d1","M480 480H32c-17.7 0-32-14.3-32-32s14.3-32 32-32h448c17.7 0 32 14.3 32 32s-14.3 32-32 32z"],"window-restore":[512,512,[],"f2d2","M464 0H144c-26.5 0-48 21.5-48 48v48H48c-26.5 0-48 21.5-48 48v320c0 26.5 21.5 48 48 48h320c26.5 0 48-21.5 48-48v-48h48c26.5 0 48-21.5 48-48V48c0-26.5-21.5-48-48-48zm-96 464H48V256h320v208zm96-96h-48V144c0-26.5-21.5-48-48-48H144V48h320v320z"]};!function(c){try{c()}catch(c){if(!s)throw c}}(function(){M("far",f)})}(),function(){"use strict";var c={},l={};try{"undefined"!=typeof window&&(c=window),"undefined"!=typeof document&&(l=document)}catch(c){}var h=(c.navigator||{}).userAgent,z=void 0===h?"":h,v=c,a=l,m=(v.document,!!a.documentElement&&!!a.head&&"function"==typeof a.addEventListener&&a.createElement,~z.indexOf("MSIE")||z.indexOf("Trident/"),"___FONT_AWESOME___"),s=function(){try{return!0}catch(c){return!1}}();var e=v||{};e[m]||(e[m]={}),e[m].styles||(e[m].styles={}),e[m].hooks||(e[m].hooks={}),e[m].shims||(e[m].shims=[]);var t=e[m];function M(c,z){var l=(2<arguments.length&&void 0!==arguments[2]?arguments[2]:{}).skipHooks,h=void 0!==l&&l,v=Object.keys(z).reduce(function(c,l){var h=z[l];return!!h.icon?c[h.iconName]=h.icon:c[l]=h,c},{});"function"!=typeof t.hooks.addPack||h?t.styles[c]=function(v){for(var c=1;c<arguments.length;c++){var a=null!=arguments[c]?arguments[c]:{},l=Object.keys(a);"function"==typeof Object.getOwnPropertySymbols&&(l=l.concat(Object.getOwnPropertySymbols(a).filter(function(c){return Object.getOwnPropertyDescriptor(a,c).enumerable}))),l.forEach(function(c){var l,h,z;l=v,z=a[h=c],h in l?Object.defineProperty(l,h,{value:z,enumerable:!0,configurable:!0,writable:!0}):l[h]=z})}return v}({},t.styles[c]||{},v):t.hooks.addPack(c,v),"fas"===c&&M("fa",z)}var f={ad:[512,512,[],"f641","M157.52 272h36.96L176 218.78 157.52 272zM352 256c-13.23 0-24 10.77-24 24s10.77 24 24 24 24-10.77 24-24-10.77-24-24-24zM464 64H48C21.5 64 0 85.5 0 112v288c0 26.5 21.5 48 48 48h416c26.5 0 48-21.5 48-48V112c0-26.5-21.5-48-48-48zM250.58 352h-16.94c-6.81 0-12.88-4.32-15.12-10.75L211.15 320h-70.29l-7.38 21.25A16 16 0 0 1 118.36 352h-16.94c-11.01 0-18.73-10.85-15.12-21.25L140 176.12A23.995 23.995 0 0 1 162.67 160h26.66A23.99 23.99 0 0 1 212 176.13l53.69 154.62c3.61 10.4-4.11 21.25-15.11 21.25zM424 336c0 8.84-7.16 16-16 16h-16c-4.85 0-9.04-2.27-11.98-5.68-8.62 3.66-18.09 5.68-28.02 5.68-39.7 0-72-32.3-72-72s32.3-72 72-72c8.46 0 16.46 1.73 24 4.42V176c0-8.84 7.16-16 16-16h16c8.84 0 16 7.16 16 16v160z"],"address-book":[448,512,[],"f2b9","M436 160c6.6 0 12-5.4 12-12v-40c0-6.6-5.4-12-12-12h-20V48c0-26.5-21.5-48-48-48H48C21.5 0 0 21.5 0 48v416c0 26.5 21.5 48 48 48h320c26.5 0 48-21.5 48-48v-48h20c6.6 0 12-5.4 12-12v-40c0-6.6-5.4-12-12-12h-20v-64h20c6.6 0 12-5.4 12-12v-40c0-6.6-5.4-12-12-12h-20v-64h20zm-228-32c35.3 0 64 28.7 64 64s-28.7 64-64 64-64-28.7-64-64 28.7-64 64-64zm112 236.8c0 10.6-10 19.2-22.4 19.2H118.4C106 384 96 375.4 96 364.8v-19.2c0-31.8 30.1-57.6 67.2-57.6h5c12.3 5.1 25.7 8 39.8 8s27.6-2.9 39.8-8h5c37.1 0 67.2 25.8 67.2 57.6v19.2z"],"address-card":[576,512,[],"f2bb","M528 32H48C21.5 32 0 53.5 0 80v352c0 26.5 21.5 48 48 48h480c26.5 0 48-21.5 48-48V80c0-26.5-21.5-48-48-48zm-352 96c35.3 0 64 28.7 64 64s-28.7 64-64 64-64-28.7-64-64 28.7-64 64-64zm112 236.8c0 10.6-10 19.2-22.4 19.2H86.4C74 384 64 375.4 64 364.8v-19.2c0-31.8 30.1-57.6 67.2-57.6h5c12.3 5.1 25.7 8 39.8 8s27.6-2.9 39.8-8h5c37.1 0 67.2 25.8 67.2 57.6v19.2zM512 312c0 4.4-3.6 8-8 8H360c-4.4 0-8-3.6-8-8v-16c0-4.4 3.6-8 8-8h144c4.4 0 8 3.6 8 8v16zm0-64c0 4.4-3.6 8-8 8H360c-4.4 0-8-3.6-8-8v-16c0-4.4 3.6-8 8-8h144c4.4 0 8 3.6 8 8v16zm0-64c0 4.4-3.6 8-8 8H360c-4.4 0-8-3.6-8-8v-16c0-4.4 3.6-8 8-8h144c4.4 0 8 3.6 8 8v16z"],adjust:[512,512,[],"f042","M8 256c0 136.966 111.033 248 248 248s248-111.034 248-248S392.966 8 256 8 8 119.033 8 256zm248 184V72c101.705 0 184 82.311 184 184 0 101.705-82.311 184-184 184z"],"air-freshener":[384,512,[],"f5d0","M378.94 321.41L284.7 224h49.22c15.3 0 23.66-16.6 13.86-27.53L234.45 69.96c3.43-6.61 5.55-14 5.55-21.96 0-26.51-21.49-48-48-48s-48 21.49-48 48c0 7.96 2.12 15.35 5.55 21.96L36.22 196.47C26.42 207.4 34.78 224 50.08 224H99.3L5.06 321.41C-6.69 333.56 3.34 352 21.7 352H160v32H48c-8.84 0-16 7.16-16 16v96c0 8.84 7.16 16 16 16h288c8.84 0 16-7.16 16-16v-96c0-8.84-7.16-16-16-16H224v-32h138.3c18.36 0 28.39-18.44 16.64-30.59zM192 31.98c8.85 0 16.02 7.17 16.02 16.02 0 8.84-7.17 16.02-16.02 16.02S175.98 56.84 175.98 48c0-8.85 7.17-16.02 16.02-16.02zM304 432v32H80v-32h224z"],"align-center":[448,512,[],"f037","M432 160H16a16 16 0 0 0-16 16v32a16 16 0 0 0 16 16h416a16 16 0 0 0 16-16v-32a16 16 0 0 0-16-16zm0 256H16a16 16 0 0 0-16 16v32a16 16 0 0 0 16 16h416a16 16 0 0 0 16-16v-32a16 16 0 0 0-16-16zM108.1 96h231.81A12.09 12.09 0 0 0 352 83.9V44.09A12.09 12.09 0 0 0 339.91 32H108.1A12.09 12.09 0 0 0 96 44.09V83.9A12.1 12.1 0 0 0 108.1 96zm231.81 256A12.09 12.09 0 0 0 352 339.9v-39.81A12.09 12.09 0 0 0 339.91 288H108.1A12.09 12.09 0 0 0 96 300.09v39.81a12.1 12.1 0 0 0 12.1 12.1z"],"align-justify":[448,512,[],"f039","M432 416H16a16 16 0 0 0-16 16v32a16 16 0 0 0 16 16h416a16 16 0 0 0 16-16v-32a16 16 0 0 0-16-16zm0-128H16a16 16 0 0 0-16 16v32a16 16 0 0 0 16 16h416a16 16 0 0 0 16-16v-32a16 16 0 0 0-16-16zm0-128H16a16 16 0 0 0-16 16v32a16 16 0 0 0 16 16h416a16 16 0 0 0 16-16v-32a16 16 0 0 0-16-16zm0-128H16A16 16 0 0 0 0 48v32a16 16 0 0 0 16 16h416a16 16 0 0 0 16-16V48a16 16 0 0 0-16-16z"],"align-left":[448,512,[],"f036","M12.83 352h262.34A12.82 12.82 0 0 0 288 339.17v-38.34A12.82 12.82 0 0 0 275.17 288H12.83A12.82 12.82 0 0 0 0 300.83v38.34A12.82 12.82 0 0 0 12.83 352zm0-256h262.34A12.82 12.82 0 0 0 288 83.17V44.83A12.82 12.82 0 0 0 275.17 32H12.83A12.82 12.82 0 0 0 0 44.83v38.34A12.82 12.82 0 0 0 12.83 96zM432 160H16a16 16 0 0 0-16 16v32a16 16 0 0 0 16 16h416a16 16 0 0 0 16-16v-32a16 16 0 0 0-16-16zm0 256H16a16 16 0 0 0-16 16v32a16 16 0 0 0 16 16h416a16 16 0 0 0 16-16v-32a16 16 0 0 0-16-16z"],"align-right":[448,512,[],"f038","M16 224h416a16 16 0 0 0 16-16v-32a16 16 0 0 0-16-16H16a16 16 0 0 0-16 16v32a16 16 0 0 0 16 16zm416 192H16a16 16 0 0 0-16 16v32a16 16 0 0 0 16 16h416a16 16 0 0 0 16-16v-32a16 16 0 0 0-16-16zm3.17-384H172.83A12.82 12.82 0 0 0 160 44.83v38.34A12.82 12.82 0 0 0 172.83 96h262.34A12.82 12.82 0 0 0 448 83.17V44.83A12.82 12.82 0 0 0 435.17 32zm0 256H172.83A12.82 12.82 0 0 0 160 300.83v38.34A12.82 12.82 0 0 0 172.83 352h262.34A12.82 12.82 0 0 0 448 339.17v-38.34A12.82 12.82 0 0 0 435.17 288z"],allergies:[448,512,[],"f461","M416 112c-17.6 0-32 14.4-32 32v72c0 4.4-3.6 8-8 8h-16c-4.4 0-8-3.6-8-8V64c0-17.6-14.4-32-32-32s-32 14.4-32 32v152c0 4.4-3.6 8-8 8h-16c-4.4 0-8-3.6-8-8V32c0-17.6-14.4-32-32-32s-32 14.4-32 32v184c0 4.4-3.6 8-8 8h-16c-4.4 0-8-3.6-8-8V64c0-17.6-14.4-32-32-32S96 46.4 96 64v241l-23.6-32.5c-13-17.9-38-21.8-55.9-8.8s-21.8 38-8.8 55.9l125.6 172.7c9 12.4 23.5 19.8 38.8 19.8h197.6c22.3 0 41.6-15.3 46.7-37l26.5-112.7c3.2-13.7 4.9-28.3 5.1-42.3V144c0-17.6-14.4-32-32-32zM176 416c-8.8 0-16-7.2-16-16s7.2-16 16-16 16 7.2 16 16-7.2 16-16 16zm0-96c-8.8 0-16-7.2-16-16s7.2-16 16-16 16 7.2 16 16-7.2 16-16 16zm64 128c-8.8 0-16-7.2-16-16s7.2-16 16-16 16 7.2 16 16-7.2 16-16 16zm0-96c-8.8 0-16-7.2-16-16s7.2-16 16-16 16 7.2 16 16-7.2 16-16 16zm64 32c-8.8 0-16-7.2-16-16s7.2-16 16-16 16 7.2 16 16-7.2 16-16 16zm32 64c-8.8 0-16-7.2-16-16s7.2-16 16-16 16 7.2 16 16-7.2 16-16 16zm32-128c-8.8 0-16-7.2-16-16s7.2-16 16-16 16 7.2 16 16-7.2 16-16 16z"],ambulance:[640,512,[],"f0f9","M624 352h-16V243.9c0-12.7-5.1-24.9-14.1-33.9L494 110.1c-9-9-21.2-14.1-33.9-14.1H416V48c0-26.5-21.5-48-48-48H48C21.5 0 0 21.5 0 48v320c0 26.5 21.5 48 48 48h16c0 53 43 96 96 96s96-43 96-96h128c0 53 43 96 96 96s96-43 96-96h48c8.8 0 16-7.2 16-16v-32c0-8.8-7.2-16-16-16zM160 464c-26.5 0-48-21.5-48-48s21.5-48 48-48 48 21.5 48 48-21.5 48-48 48zm144-248c0 4.4-3.6 8-8 8h-56v56c0 4.4-3.6 8-8 8h-48c-4.4 0-8-3.6-8-8v-56h-56c-4.4 0-8-3.6-8-8v-48c0-4.4 3.6-8 8-8h56v-56c0-4.4 3.6-8 8-8h48c4.4 0 8 3.6 8 8v56h56c4.4 0 8 3.6 8 8v48zm176 248c-26.5 0-48-21.5-48-48s21.5-48 48-48 48 21.5 48 48-21.5 48-48 48zm80-208H416V144h44.1l99.9 99.9V256z"],"american-sign-language-interpreting":[640,512,[],"f2a3","M290.547 189.039c-20.295-10.149-44.147-11.199-64.739-3.89 42.606 0 71.208 20.475 85.578 50.576 8.576 17.899-5.148 38.071-23.617 38.071 18.429 0 32.211 20.136 23.617 38.071-14.725 30.846-46.123 50.854-80.298 50.854-.557 0-94.471-8.615-94.471-8.615l-66.406 33.347c-9.384 4.693-19.815.379-23.895-7.781L1.86 290.747c-4.167-8.615-1.111-18.897 6.946-23.621l58.072-33.069L108 159.861c6.39-57.245 34.731-109.767 79.743-146.726 11.391-9.448 28.341-7.781 37.51 3.613 9.446 11.394 7.78 28.067-3.612 37.516-12.503 10.559-23.618 22.509-32.509 35.57 21.672-14.729 46.679-24.732 74.186-28.067 14.725-1.945 28.063 8.336 29.73 23.065 1.945 14.728-8.336 28.067-23.062 29.734-16.116 1.945-31.12 7.503-44.178 15.284 26.114-5.713 58.712-3.138 88.079 11.115 13.336 6.669 18.893 22.509 12.224 35.848-6.389 13.06-22.504 18.617-35.564 12.226zm-27.229 69.472c-6.112-12.505-18.338-20.286-32.231-20.286a35.46 35.46 0 0 0-35.565 35.57c0 21.428 17.808 35.57 35.565 35.57 13.893 0 26.119-7.781 32.231-20.286 4.446-9.449 13.614-15.006 23.339-15.284-9.725-.277-18.893-5.835-23.339-15.284zm374.821-37.237c4.168 8.615 1.111 18.897-6.946 23.621l-58.071 33.069L532 352.16c-6.39 57.245-34.731 109.767-79.743 146.726-10.932 9.112-27.799 8.144-37.51-3.613-9.446-11.394-7.78-28.067 3.613-37.516 12.503-10.559 23.617-22.509 32.508-35.57-21.672 14.729-46.679 24.732-74.186 28.067-10.021 2.506-27.552-5.643-29.73-23.065-1.945-14.728 8.336-28.067 23.062-29.734 16.116-1.946 31.12-7.503 44.178-15.284-26.114 5.713-58.712 3.138-88.079-11.115-13.336-6.669-18.893-22.509-12.224-35.848 6.389-13.061 22.505-18.619 35.565-12.227 20.295 10.149 44.147 11.199 64.739 3.89-42.606 0-71.208-20.475-85.578-50.576-8.576-17.899 5.148-38.071 23.617-38.071-18.429 0-32.211-20.136-23.617-38.071 14.033-29.396 44.039-50.887 81.966-50.854l92.803 8.615 66.406-33.347c9.408-4.704 19.828-.354 23.894 7.781l44.455 88.926zm-229.227-18.618c-13.893 0-26.119 7.781-32.231 20.286-4.446 9.449-13.614 15.006-23.339 15.284 9.725.278 18.893 5.836 23.339 15.284 6.112 12.505 18.338 20.286 32.231 20.286a35.46 35.46 0 0 0 35.565-35.57c0-21.429-17.808-35.57-35.565-35.57z"],anchor:[576,512,[],"f13d","M12.971 352h32.394C67.172 454.735 181.944 512 288 512c106.229 0 220.853-57.38 242.635-160h32.394c10.691 0 16.045-12.926 8.485-20.485l-67.029-67.029c-4.686-4.686-12.284-4.686-16.971 0l-67.029 67.029c-7.56 7.56-2.206 20.485 8.485 20.485h35.146c-20.29 54.317-84.963 86.588-144.117 94.015V256h52c6.627 0 12-5.373 12-12v-40c0-6.627-5.373-12-12-12h-52v-5.47c37.281-13.178 63.995-48.725 64-90.518C384.005 43.772 341.605.738 289.37.01 235.723-.739 192 42.525 192 96c0 41.798 26.716 77.35 64 90.53V192h-52c-6.627 0-12 5.373-12 12v40c0 6.627 5.373 12 12 12h52v190.015c-58.936-7.399-123.82-39.679-144.117-94.015h35.146c10.691 0 16.045-12.926 8.485-20.485l-67.029-67.029c-4.686-4.686-12.284-4.686-16.971 0L4.485 331.515C-3.074 339.074 2.28 352 12.971 352zM288 64c17.645 0 32 14.355 32 32s-14.355 32-32 32-32-14.355-32-32 14.355-32 32-32z"],"angle-double-down":[320,512,[],"f103","M143 256.3L7 120.3c-9.4-9.4-9.4-24.6 0-33.9l22.6-22.6c9.4-9.4 24.6-9.4 33.9 0l96.4 96.4 96.4-96.4c9.4-9.4 24.6-9.4 33.9 0L313 86.3c9.4 9.4 9.4 24.6 0 33.9l-136 136c-9.4 9.5-24.6 9.5-34 .1zm34 192l136-136c9.4-9.4 9.4-24.6 0-33.9l-22.6-22.6c-9.4-9.4-24.6-9.4-33.9 0L160 352.1l-96.4-96.4c-9.4-9.4-24.6-9.4-33.9 0L7 278.3c-9.4 9.4-9.4 24.6 0 33.9l136 136c9.4 9.5 24.6 9.5 34 .1z"],"angle-double-left":[448,512,[],"f100","M223.7 239l136-136c9.4-9.4 24.6-9.4 33.9 0l22.6 22.6c9.4 9.4 9.4 24.6 0 33.9L319.9 256l96.4 96.4c9.4 9.4 9.4 24.6 0 33.9L393.7 409c-9.4 9.4-24.6 9.4-33.9 0l-136-136c-9.5-9.4-9.5-24.6-.1-34zm-192 34l136 136c9.4 9.4 24.6 9.4 33.9 0l22.6-22.6c9.4-9.4 9.4-24.6 0-33.9L127.9 256l96.4-96.4c9.4-9.4 9.4-24.6 0-33.9L201.7 103c-9.4-9.4-24.6-9.4-33.9 0l-136 136c-9.5 9.4-9.5 24.6-.1 34z"],"angle-double-right":[448,512,[],"f101","M224.3 273l-136 136c-9.4 9.4-24.6 9.4-33.9 0l-22.6-22.6c-9.4-9.4-9.4-24.6 0-33.9l96.4-96.4-96.4-96.4c-9.4-9.4-9.4-24.6 0-33.9L54.3 103c9.4-9.4 24.6-9.4 33.9 0l136 136c9.5 9.4 9.5 24.6.1 34zm192-34l-136-136c-9.4-9.4-24.6-9.4-33.9 0l-22.6 22.6c-9.4 9.4-9.4 24.6 0 33.9l96.4 96.4-96.4 96.4c-9.4 9.4-9.4 24.6 0 33.9l22.6 22.6c9.4 9.4 24.6 9.4 33.9 0l136-136c9.4-9.2 9.4-24.4 0-33.8z"],"angle-double-up":[320,512,[],"f102","M177 255.7l136 136c9.4 9.4 9.4 24.6 0 33.9l-22.6 22.6c-9.4 9.4-24.6 9.4-33.9 0L160 351.9l-96.4 96.4c-9.4 9.4-24.6 9.4-33.9 0L7 425.7c-9.4-9.4-9.4-24.6 0-33.9l136-136c9.4-9.5 24.6-9.5 34-.1zm-34-192L7 199.7c-9.4 9.4-9.4 24.6 0 33.9l22.6 22.6c9.4 9.4 24.6 9.4 33.9 0l96.4-96.4 96.4 96.4c9.4 9.4 24.6 9.4 33.9 0l22.6-22.6c9.4-9.4 9.4-24.6 0-33.9l-136-136c-9.2-9.4-24.4-9.4-33.8 0z"],"angle-down":[320,512,[],"f107","M143 352.3L7 216.3c-9.4-9.4-9.4-24.6 0-33.9l22.6-22.6c9.4-9.4 24.6-9.4 33.9 0l96.4 96.4 96.4-96.4c9.4-9.4 24.6-9.4 33.9 0l22.6 22.6c9.4 9.4 9.4 24.6 0 33.9l-136 136c-9.2 9.4-24.4 9.4-33.8 0z"],"angle-left":[256,512,[],"f104","M31.7 239l136-136c9.4-9.4 24.6-9.4 33.9 0l22.6 22.6c9.4 9.4 9.4 24.6 0 33.9L127.9 256l96.4 96.4c9.4 9.4 9.4 24.6 0 33.9L201.7 409c-9.4 9.4-24.6 9.4-33.9 0l-136-136c-9.5-9.4-9.5-24.6-.1-34z"],"angle-right":[256,512,[],"f105","M224.3 273l-136 136c-9.4 9.4-24.6 9.4-33.9 0l-22.6-22.6c-9.4-9.4-9.4-24.6 0-33.9l96.4-96.4-96.4-96.4c-9.4-9.4-9.4-24.6 0-33.9L54.3 103c9.4-9.4 24.6-9.4 33.9 0l136 136c9.5 9.4 9.5 24.6.1 34z"],"angle-up":[320,512,[],"f106","M177 159.7l136 136c9.4 9.4 9.4 24.6 0 33.9l-22.6 22.6c-9.4 9.4-24.6 9.4-33.9 0L160 255.9l-96.4 96.4c-9.4 9.4-24.6 9.4-33.9 0L7 329.7c-9.4-9.4-9.4-24.6 0-33.9l136-136c9.4-9.5 24.6-9.5 34-.1z"],angry:[496,512,[],"f556","M248 8C111 8 0 119 0 256s111 248 248 248 248-111 248-248S385 8 248 8zM136 240c0-9.3 4.1-17.5 10.5-23.4l-31-9.3c-8.5-2.5-13.3-11.5-10.7-19.9 2.5-8.5 11.4-13.2 19.9-10.7l80 24c8.5 2.5 13.3 11.5 10.7 19.9-2.1 6.9-8.4 11.4-15.3 11.4-.5 0-1.1-.2-1.7-.2.7 2.7 1.7 5.3 1.7 8.2 0 17.7-14.3 32-32 32S136 257.7 136 240zm168 154.2c-27.8-33.4-84.2-33.4-112.1 0-13.5 16.3-38.2-4.2-24.6-20.5 20-24 49.4-37.8 80.6-37.8s60.6 13.8 80.6 37.8c13.8 16.5-11.1 36.6-24.5 20.5zm76.6-186.9l-31 9.3c6.3 5.8 10.5 14.1 10.5 23.4 0 17.7-14.3 32-32 32s-32-14.3-32-32c0-2.9.9-5.6 1.7-8.2-.6.1-1.1.2-1.7.2-6.9 0-13.2-4.5-15.3-11.4-2.5-8.5 2.3-17.4 10.7-19.9l80-24c8.4-2.5 17.4 2.3 19.9 10.7 2.5 8.5-2.3 17.4-10.8 19.9z"],ankh:[320,512,[],"f644","M296 256h-44.62C272.46 222.01 288 181.65 288 144 288 55.63 230.69 0 160 0S32 55.63 32 144c0 37.65 15.54 78.01 36.62 112H24c-13.25 0-24 10.74-24 24v32c0 13.25 10.75 24 24 24h96v152c0 13.25 10.75 24 24 24h32c13.25 0 24-10.75 24-24V336h96c13.25 0 24-10.75 24-24v-32c0-13.26-10.75-24-24-24zM160 80c29.61 0 48 24.52 48 64 0 34.66-27.14 78.14-48 100.87-20.86-22.72-48-66.21-48-100.87 0-39.48 18.39-64 48-64z"],"apple-alt":[448,512,[],"f5d1","M350.85 129c25.97 4.67 47.27 18.67 63.92 42 14.65 20.67 24.64 46.67 29.96 78 4.67 28.67 4.32 57.33-1 86-7.99 47.33-23.97 87-47.94 119-28.64 38.67-64.59 58-107.87 58-10.66 0-22.3-3.33-34.96-10-8.66-5.33-18.31-8-28.97-8s-20.3 2.67-28.97 8c-12.66 6.67-24.3 10-34.96 10-43.28 0-79.23-19.33-107.87-58-23.97-32-39.95-71.67-47.94-119-5.32-28.67-5.67-57.33-1-86 5.32-31.33 15.31-57.33 29.96-78 16.65-23.33 37.95-37.33 63.92-42 15.98-2.67 37.95-.33 65.92 7 23.97 6.67 44.28 14.67 60.93 24 16.65-9.33 36.96-17.33 60.93-24 27.98-7.33 49.96-9.67 65.94-7zm-54.94-41c-9.32 8.67-21.65 15-36.96 19-10.66 3.33-22.3 5-34.96 5l-14.98-1c-1.33-9.33-1.33-20 0-32 2.67-24 10.32-42.33 22.97-55 9.32-8.67 21.65-15 36.96-19 10.66-3.33 22.3-5 34.96-5l14.98 1 1 15c0 12.67-1.67 24.33-4.99 35-3.99 15.33-10.31 27.67-18.98 37z"],archive:[512,512,[],"f187","M32 448c0 17.7 14.3 32 32 32h384c17.7 0 32-14.3 32-32V160H32v288zm160-212c0-6.6 5.4-12 12-12h104c6.6 0 12 5.4 12 12v8c0 6.6-5.4 12-12 12H204c-6.6 0-12-5.4-12-12v-8zM480 32H32C14.3 32 0 46.3 0 64v48c0 8.8 7.2 16 16 16h480c8.8 0 16-7.2 16-16V64c0-17.7-14.3-32-32-32z"],archway:[576,512,[],"f557","M560 448h-16V96H32v352H16.02c-8.84 0-16 7.16-16 16v32c0 8.84 7.16 16 16 16H176c8.84 0 16-7.16 16-16V320c0-53.02 42.98-96 96-96s96 42.98 96 96l.02 160v16c0 8.84 7.16 16 16 16H560c8.84 0 16-7.16 16-16v-32c0-8.84-7.16-16-16-16zm0-448H16C7.16 0 0 7.16 0 16v32c0 8.84 7.16 16 16 16h544c8.84 0 16-7.16 16-16V16c0-8.84-7.16-16-16-16z"],"arrow-alt-circle-down":[512,512,[],"f358","M504 256c0 137-111 248-248 248S8 393 8 256 119 8 256 8s248 111 248 248zM212 140v116h-70.9c-10.7 0-16.1 13-8.5 20.5l114.9 114.3c4.7 4.7 12.2 4.7 16.9 0l114.9-114.3c7.6-7.6 2.2-20.5-8.5-20.5H300V140c0-6.6-5.4-12-12-12h-64c-6.6 0-12 5.4-12 12z"],"arrow-alt-circle-left":[512,512,[],"f359","M256 504C119 504 8 393 8 256S119 8 256 8s248 111 248 248-111 248-248 248zm116-292H256v-70.9c0-10.7-13-16.1-20.5-8.5L121.2 247.5c-4.7 4.7-4.7 12.2 0 16.9l114.3 114.9c7.6 7.6 20.5 2.2 20.5-8.5V300h116c6.6 0 12-5.4 12-12v-64c0-6.6-5.4-12-12-12z"],"arrow-alt-circle-right":[512,512,[],"f35a","M256 8c137 0 248 111 248 248S393 504 256 504 8 393 8 256 119 8 256 8zM140 300h116v70.9c0 10.7 13 16.1 20.5 8.5l114.3-114.9c4.7-4.7 4.7-12.2 0-16.9l-114.3-115c-7.6-7.6-20.5-2.2-20.5 8.5V212H140c-6.6 0-12 5.4-12 12v64c0 6.6 5.4 12 12 12z"],"arrow-alt-circle-up":[512,512,[],"f35b","M8 256C8 119 119 8 256 8s248 111 248 248-111 248-248 248S8 393 8 256zm292 116V256h70.9c10.7 0 16.1-13 8.5-20.5L264.5 121.2c-4.7-4.7-12.2-4.7-16.9 0l-115 114.3c-7.6 7.6-2.2 20.5 8.5 20.5H212v116c0 6.6 5.4 12 12 12h64c6.6 0 12-5.4 12-12z"],"arrow-circle-down":[512,512,[],"f0ab","M504 256c0 137-111 248-248 248S8 393 8 256 119 8 256 8s248 111 248 248zm-143.6-28.9L288 302.6V120c0-13.3-10.7-24-24-24h-16c-13.3 0-24 10.7-24 24v182.6l-72.4-75.5c-9.3-9.7-24.8-9.9-34.3-.4l-10.9 11c-9.4 9.4-9.4 24.6 0 33.9L239 404.3c9.4 9.4 24.6 9.4 33.9 0l132.7-132.7c9.4-9.4 9.4-24.6 0-33.9l-10.9-11c-9.5-9.5-25-9.3-34.3.4z"],"arrow-circle-left":[512,512,[],"f0a8","M256 504C119 504 8 393 8 256S119 8 256 8s248 111 248 248-111 248-248 248zm28.9-143.6L209.4 288H392c13.3 0 24-10.7 24-24v-16c0-13.3-10.7-24-24-24H209.4l75.5-72.4c9.7-9.3 9.9-24.8.4-34.3l-11-10.9c-9.4-9.4-24.6-9.4-33.9 0L107.7 239c-9.4 9.4-9.4 24.6 0 33.9l132.7 132.7c9.4 9.4 24.6 9.4 33.9 0l11-10.9c9.5-9.5 9.3-25-.4-34.3z"],"arrow-circle-right":[512,512,[],"f0a9","M256 8c137 0 248 111 248 248S393 504 256 504 8 393 8 256 119 8 256 8zm-28.9 143.6l75.5 72.4H120c-13.3 0-24 10.7-24 24v16c0 13.3 10.7 24 24 24h182.6l-75.5 72.4c-9.7 9.3-9.9 24.8-.4 34.3l11 10.9c9.4 9.4 24.6 9.4 33.9 0L404.3 273c9.4-9.4 9.4-24.6 0-33.9L271.6 106.3c-9.4-9.4-24.6-9.4-33.9 0l-11 10.9c-9.5 9.6-9.3 25.1.4 34.4z"],"arrow-circle-up":[512,512,[],"f0aa","M8 256C8 119 119 8 256 8s248 111 248 248-111 248-248 248S8 393 8 256zm143.6 28.9l72.4-75.5V392c0 13.3 10.7 24 24 24h16c13.3 0 24-10.7 24-24V209.4l72.4 75.5c9.3 9.7 24.8 9.9 34.3.4l10.9-11c9.4-9.4 9.4-24.6 0-33.9L273 107.7c-9.4-9.4-24.6-9.4-33.9 0L106.3 240.4c-9.4 9.4-9.4 24.6 0 33.9l10.9 11c9.6 9.5 25.1 9.3 34.4-.4z"],"arrow-down":[448,512,[],"f063","M413.1 222.5l22.2 22.2c9.4 9.4 9.4 24.6 0 33.9L241 473c-9.4 9.4-24.6 9.4-33.9 0L12.7 278.6c-9.4-9.4-9.4-24.6 0-33.9l22.2-22.2c9.5-9.5 25-9.3 34.3.4L184 343.4V56c0-13.3 10.7-24 24-24h32c13.3 0 24 10.7 24 24v287.4l114.8-120.5c9.3-9.8 24.8-10 34.3-.4z"],"arrow-left":[448,512,[],"f060","M257.5 445.1l-22.2 22.2c-9.4 9.4-24.6 9.4-33.9 0L7 273c-9.4-9.4-9.4-24.6 0-33.9L201.4 44.7c9.4-9.4 24.6-9.4 33.9 0l22.2 22.2c9.5 9.5 9.3 25-.4 34.3L136.6 216H424c13.3 0 24 10.7 24 24v32c0 13.3-10.7 24-24 24H136.6l120.5 114.8c9.8 9.3 10 24.8.4 34.3z"],"arrow-right":[448,512,[],"f061","M190.5 66.9l22.2-22.2c9.4-9.4 24.6-9.4 33.9 0L441 239c9.4 9.4 9.4 24.6 0 33.9L246.6 467.3c-9.4 9.4-24.6 9.4-33.9 0l-22.2-22.2c-9.5-9.5-9.3-25 .4-34.3L311.4 296H24c-13.3 0-24-10.7-24-24v-32c0-13.3 10.7-24 24-24h287.4L190.9 101.2c-9.8-9.3-10-24.8-.4-34.3z"],"arrow-up":[448,512,[],"f062","M34.9 289.5l-22.2-22.2c-9.4-9.4-9.4-24.6 0-33.9L207 39c9.4-9.4 24.6-9.4 33.9 0l194.3 194.3c9.4 9.4 9.4 24.6 0 33.9L413 289.4c-9.5 9.5-25 9.3-34.3-.4L264 168.6V456c0 13.3-10.7 24-24 24h-32c-13.3 0-24-10.7-24-24V168.6L69.2 289.1c-9.3 9.8-24.8 10-34.3.4z"],"arrows-alt":[512,512,[],"f0b2","M352.201 425.775l-79.196 79.196c-9.373 9.373-24.568 9.373-33.941 0l-79.196-79.196c-15.119-15.119-4.411-40.971 16.971-40.97h51.162L228 284H127.196v51.162c0 21.382-25.851 32.09-40.971 16.971L7.029 272.937c-9.373-9.373-9.373-24.569 0-33.941L86.225 159.8c15.119-15.119 40.971-4.411 40.971 16.971V228H228V127.196h-51.23c-21.382 0-32.09-25.851-16.971-40.971l79.196-79.196c9.373-9.373 24.568-9.373 33.941 0l79.196 79.196c15.119 15.119 4.411 40.971-16.971 40.971h-51.162V228h100.804v-51.162c0-21.382 25.851-32.09 40.97-16.971l79.196 79.196c9.373 9.373 9.373 24.569 0 33.941L425.773 352.2c-15.119 15.119-40.971 4.411-40.97-16.971V284H284v100.804h51.23c21.382 0 32.09 25.851 16.971 40.971z"],"arrows-alt-h":[512,512,[],"f337","M377.941 169.941V216H134.059v-46.059c0-21.382-25.851-32.09-40.971-16.971L7.029 239.029c-9.373 9.373-9.373 24.568 0 33.941l86.059 86.059c15.119 15.119 40.971 4.411 40.971-16.971V296h243.882v46.059c0 21.382 25.851 32.09 40.971 16.971l86.059-86.059c9.373-9.373 9.373-24.568 0-33.941l-86.059-86.059c-15.119-15.12-40.971-4.412-40.971 16.97z"],"arrows-alt-v":[256,512,[],"f338","M214.059 377.941H168V134.059h46.059c21.382 0 32.09-25.851 16.971-40.971L144.971 7.029c-9.373-9.373-24.568-9.373-33.941 0L24.971 93.088c-15.119 15.119-4.411 40.971 16.971 40.971H88v243.882H41.941c-21.382 0-32.09 25.851-16.971 40.971l86.059 86.059c9.373 9.373 24.568 9.373 33.941 0l86.059-86.059c15.12-15.119 4.412-40.971-16.97-40.971z"],"assistive-listening-systems":[512,512,[],"f2a2","M216 260c0 15.464-12.536 28-28 28s-28-12.536-28-28c0-44.112 35.888-80 80-80s80 35.888 80 80c0 15.464-12.536 28-28 28s-28-12.536-28-28c0-13.234-10.767-24-24-24s-24 10.766-24 24zm24-176c-97.047 0-176 78.953-176 176 0 15.464 12.536 28 28 28s28-12.536 28-28c0-66.168 53.832-120 120-120s120 53.832 120 120c0 75.164-71.009 70.311-71.997 143.622L288 404c0 28.673-23.327 52-52 52-15.464 0-28 12.536-28 28s12.536 28 28 28c59.475 0 107.876-48.328 108-107.774.595-34.428 72-48.24 72-144.226 0-97.047-78.953-176-176-176zm-80 236c-17.673 0-32 14.327-32 32s14.327 32 32 32 32-14.327 32-32-14.327-32-32-32zM32 448c-17.673 0-32 14.327-32 32s14.327 32 32 32 32-14.327 32-32-14.327-32-32-32zm480-187.993c0-1.518-.012-3.025-.045-4.531C510.076 140.525 436.157 38.47 327.994 1.511c-14.633-4.998-30.549 2.809-35.55 17.442-5 14.633 2.81 30.549 17.442 35.55 85.906 29.354 144.61 110.513 146.077 201.953l.003.188c.026 1.118.033 2.236.033 3.363 0 15.464 12.536 28 28 28s28.001-12.536 28.001-28zM152.971 439.029l-80-80L39.03 392.97l80 80 33.941-33.941z"],asterisk:[512,512,[],"f069","M478.21 334.093L336 256l142.21-78.093c11.795-6.477 15.961-21.384 9.232-33.037l-19.48-33.741c-6.728-11.653-21.72-15.499-33.227-8.523L296 186.718l3.475-162.204C299.763 11.061 288.937 0 275.48 0h-38.96c-13.456 0-24.283 11.061-23.994 24.514L216 186.718 77.265 102.607c-11.506-6.976-26.499-3.13-33.227 8.523l-19.48 33.741c-6.728 11.653-2.562 26.56 9.233 33.037L176 256 33.79 334.093c-11.795 6.477-15.961 21.384-9.232 33.037l19.48 33.741c6.728 11.653 21.721 15.499 33.227 8.523L216 325.282l-3.475 162.204C212.237 500.939 223.064 512 236.52 512h38.961c13.456 0 24.283-11.061 23.995-24.514L296 325.282l138.735 84.111c11.506 6.976 26.499 3.13 33.227-8.523l19.48-33.741c6.728-11.653 2.563-26.559-9.232-33.036z"],at:[512,512,[],"f1fa","M256 8C118.941 8 8 118.919 8 256c0 137.059 110.919 248 248 248 48.154 0 95.342-14.14 135.408-40.223 12.005-7.815 14.625-24.288 5.552-35.372l-10.177-12.433c-7.671-9.371-21.179-11.667-31.373-5.129C325.92 429.757 291.314 440 256 440c-101.458 0-184-82.542-184-184S154.542 72 256 72c100.139 0 184 57.619 184 160 0 38.786-21.093 79.742-58.17 83.693-17.349-.454-16.91-12.857-13.476-30.024l23.433-121.11C394.653 149.75 383.308 136 368.225 136h-44.981a13.518 13.518 0 0 0-13.432 11.993l-.01.092c-14.697-17.901-40.448-21.775-59.971-21.775-74.58 0-137.831 62.234-137.831 151.46 0 65.303 36.785 105.87 96 105.87 26.984 0 57.369-15.637 74.991-38.333 9.522 34.104 40.613 34.103 70.71 34.103C462.609 379.41 504 307.798 504 232 504 95.653 394.023 8 256 8zm-21.68 304.43c-22.249 0-36.07-15.623-36.07-40.771 0-44.993 30.779-72.729 58.63-72.729 22.292 0 35.601 15.241 35.601 40.77 0 45.061-33.875 72.73-58.161 72.73z"],atlas:[448,512,[],"f558","M318.38 208h-39.09c-1.49 27.03-6.54 51.35-14.21 70.41 27.71-13.24 48.02-39.19 53.3-70.41zm0-32c-5.29-31.22-25.59-57.17-53.3-70.41 7.68 19.06 12.72 43.38 14.21 70.41h39.09zM224 97.31c-7.69 7.45-20.77 34.42-23.43 78.69h46.87c-2.67-44.26-15.75-71.24-23.44-78.69zm-41.08 8.28c-27.71 13.24-48.02 39.19-53.3 70.41h39.09c1.49-27.03 6.53-51.35 14.21-70.41zm0 172.82c-7.68-19.06-12.72-43.38-14.21-70.41h-39.09c5.28 31.22 25.59 57.17 53.3 70.41zM247.43 208h-46.87c2.66 44.26 15.74 71.24 23.43 78.69 7.7-7.45 20.78-34.43 23.44-78.69zM448 358.4V25.6c0-16-9.6-25.6-25.6-25.6H96C41.6 0 0 41.6 0 96v320c0 54.4 41.6 96 96 96h326.4c12.8 0 25.6-9.6 25.6-25.6v-16c0-6.4-3.2-12.8-9.6-19.2-3.2-16-3.2-60.8 0-73.6 6.4-3.2 9.6-9.6 9.6-19.2zM224 64c70.69 0 128 57.31 128 128s-57.31 128-128 128S96 262.69 96 192 153.31 64 224 64zm160 384H96c-19.2 0-32-12.8-32-32s16-32 32-32h288v64z"],atom:[448,512,[],"f5d2","M223.99908,224a32,32,0,1,0,32.00782,32A32.06431,32.06431,0,0,0,223.99908,224Zm214.172-96c-10.877-19.5-40.50979-50.75-116.27544-41.875C300.39168,34.875,267.63386,0,223.99908,0s-76.39066,34.875-97.89653,86.125C50.3369,77.375,20.706,108.5,9.82907,128-6.54984,157.375-5.17484,201.125,34.958,256-5.17484,310.875-6.54984,354.625,9.82907,384c29.13087,52.375,101.64652,43.625,116.27348,41.875C147.60842,477.125,180.36429,512,223.99908,512s76.3926-34.875,97.89652-86.125c14.62891,1.75,87.14456,10.5,116.27544-41.875C454.55,354.625,453.175,310.875,413.04017,256,453.175,201.125,454.55,157.375,438.171,128ZM63.33886,352c-4-7.25-.125-24.75,15.00391-48.25,6.87695,6.5,14.12891,12.875,21.88087,19.125,1.625,13.75,4,27.125,6.75,40.125C82.34472,363.875,67.09081,358.625,63.33886,352Zm36.88478-162.875c-7.752,6.25-15.00392,12.625-21.88087,19.125-15.12891-23.5-19.00392-41-15.00391-48.25,3.377-6.125,16.37891-11.5,37.88478-11.5,1.75,0,3.875.375,5.75.375C104.09864,162.25,101.84864,175.625,100.22364,189.125ZM223.99908,64c9.50195,0,22.25586,13.5,33.88282,37.25-11.252,3.75-22.50391,8-33.88282,12.875-11.377-4.875-22.62892-9.125-33.88283-12.875C201.74516,77.5,214.49712,64,223.99908,64Zm0,384c-9.502,0-22.25392-13.5-33.88283-37.25,11.25391-3.75,22.50587-8,33.88283-12.875C235.378,402.75,246.62994,407,257.8819,410.75,246.25494,434.5,233.501,448,223.99908,448Zm0-112a80,80,0,1,1,80-80A80.00023,80.00023,0,0,1,223.99908,336ZM384.6593,352c-3.625,6.625-19.00392,11.875-43.63479,11,2.752-13,5.127-26.375,6.752-40.125,7.75195-6.25,15.00391-12.625,21.87891-19.125C384.7843,327.25,388.6593,344.75,384.6593,352ZM369.65538,208.25c-6.875-6.5-14.127-12.875-21.87891-19.125-1.625-13.5-3.875-26.875-6.752-40.25,1.875,0,4.002-.375,5.752-.375,21.50391,0,34.50782,5.375,37.88283,11.5C388.6593,167.25,384.7843,184.75,369.65538,208.25Z"],"audio-description":[512,512,[],"f29e","M162.925 238.709l8.822 30.655h-25.606l9.041-30.652c1.277-4.421 2.651-9.994 3.872-15.245 1.22 5.251 2.594 10.823 3.871 15.242zm166.474-32.099h-14.523v98.781h14.523c29.776 0 46.175-17.678 46.175-49.776 0-32.239-17.49-49.005-46.175-49.005zM512 112v288c0 26.51-21.49 48-48 48H48c-26.51 0-48-21.49-48-48V112c0-26.51 21.49-48 48-48h416c26.51 0 48 21.49 48 48zM245.459 336.139l-57.097-168A12.001 12.001 0 0 0 177 160h-35.894a12.001 12.001 0 0 0-11.362 8.139l-57.097 168C70.003 343.922 75.789 352 84.009 352h29.133a12 12 0 0 0 11.535-8.693l8.574-29.906h51.367l8.793 29.977A12 12 0 0 0 204.926 352h29.172c8.22 0 14.006-8.078 11.361-15.861zm184.701-80.525c0-58.977-37.919-95.614-98.96-95.614h-57.366c-6.627 0-12 5.373-12 12v168c0 6.627 5.373 12 12 12H331.2c61.041 0 98.96-36.933 98.96-96.386z"],award:[384,512,[],"f559","M97.12 362.63c-8.69-8.69-4.16-6.24-25.12-11.85-9.51-2.55-17.87-7.45-25.43-13.32L1.2 448.7c-4.39 10.77 3.81 22.47 15.43 22.03l52.69-2.01L105.56 507c8 8.44 22.04 5.81 26.43-4.96l52.05-127.62c-10.84 6.04-22.87 9.58-35.31 9.58-19.5 0-37.82-7.59-51.61-21.37zM382.8 448.7l-45.37-111.24c-7.56 5.88-15.92 10.77-25.43 13.32-21.07 5.64-16.45 3.18-25.12 11.85-13.79 13.78-32.12 21.37-51.62 21.37-12.44 0-24.47-3.55-35.31-9.58L252 502.04c4.39 10.77 18.44 13.4 26.43 4.96l36.25-38.28 52.69 2.01c11.62.44 19.82-11.27 15.43-22.03zM263 340c15.28-15.55 17.03-14.21 38.79-20.14 13.89-3.79 24.75-14.84 28.47-28.98 7.48-28.4 5.54-24.97 25.95-45.75 10.17-10.35 14.14-25.44 10.42-39.58-7.47-28.38-7.48-24.42 0-52.83 3.72-14.14-.25-29.23-10.42-39.58-20.41-20.78-18.47-17.36-25.95-45.75-3.72-14.14-14.58-25.19-28.47-28.98-27.88-7.61-24.52-5.62-44.95-26.41-10.17-10.35-25-14.4-38.89-10.61-27.87 7.6-23.98 7.61-51.9 0-13.89-3.79-28.72.25-38.89 10.61-20.41 20.78-17.05 18.8-44.94 26.41-13.89 3.79-24.75 14.84-28.47 28.98-7.47 28.39-5.54 24.97-25.95 45.75-10.17 10.35-14.15 25.44-10.42 39.58 7.47 28.36 7.48 24.4 0 52.82-3.72 14.14.25 29.23 10.42 39.59 20.41 20.78 18.47 17.35 25.95 45.75 3.72 14.14 14.58 25.19 28.47 28.98C104.6 325.96 106.27 325 121 340c13.23 13.47 33.84 15.88 49.74 5.82a39.676 39.676 0 0 1 42.53 0c15.89 10.06 36.5 7.65 49.73-5.82zM97.66 175.96c0-53.03 42.24-96.02 94.34-96.02s94.34 42.99 94.34 96.02-42.24 96.02-94.34 96.02-94.34-42.99-94.34-96.02z"],baby:[384,512,[],"f77c","M192 160c44.2 0 80-35.8 80-80S236.2 0 192 0s-80 35.8-80 80 35.8 80 80 80zm-53.4 248.8l25.6-32-61.5-51.2L56.8 383c-11.4 14.2-11.7 34.4-.8 49l48 64c7.9 10.5 19.9 16 32 16 8.3 0 16.8-2.6 24-8 17.7-13.2 21.2-38.3 8-56l-29.4-39.2zm142.7-83.2l-61.5 51.2 25.6 32L216 448c-13.2 17.7-9.7 42.8 8 56 7.2 5.4 15.6 8 24 8 12.2 0 24.2-5.5 32-16l48-64c10.9-14.6 10.6-34.8-.8-49l-45.9-57.4zM376.7 145c-12.7-18.1-37.6-22.4-55.7-9.8l-40.6 28.5c-52.7 37-124.2 37-176.8 0L63 135.3C44.9 122.6 20 127 7.3 145-5.4 163.1-1 188 17 200.7l40.6 28.5c17 11.9 35.4 20.9 54.4 27.9V288h160v-30.8c19-7 37.4-16 54.4-27.9l40.6-28.5c18.1-12.8 22.4-37.7 9.7-55.8z"],"baby-carriage":[512,512,[],"f77d","M144.8 17c-11.3-17.8-37.2-22.8-54-9.4C35.3 51.9 0 118 0 192h256L144.8 17zM496 96h-48c-35.3 0-64 28.7-64 64v64H0c0 50.6 23 96.4 60.3 130.7C25.7 363.6 0 394.7 0 432c0 44.2 35.8 80 80 80s80-35.8 80-80c0-8.9-1.8-17.2-4.4-25.2 21.6 5.9 44.6 9.2 68.4 9.2s46.9-3.3 68.4-9.2c-2.7 8-4.4 16.3-4.4 25.2 0 44.2 35.8 80 80 80s80-35.8 80-80c0-37.3-25.7-68.4-60.3-77.3C425 320.4 448 274.6 448 224v-64h48c8.8 0 16-7.2 16-16v-32c0-8.8-7.2-16-16-16zM80 464c-17.6 0-32-14.4-32-32s14.4-32 32-32 32 14.4 32 32-14.4 32-32 32zm320-32c0 17.6-14.4 32-32 32s-32-14.4-32-32 14.4-32 32-32 32 14.4 32 32z"],backspace:[640,512,[],"f55a","M576 64H205.26A63.97 63.97 0 0 0 160 82.75L9.37 233.37c-12.5 12.5-12.5 32.76 0 45.25L160 429.25c12 12 28.28 18.75 45.25 18.75H576c35.35 0 64-28.65 64-64V128c0-35.35-28.65-64-64-64zm-84.69 254.06c6.25 6.25 6.25 16.38 0 22.63l-22.62 22.62c-6.25 6.25-16.38 6.25-22.63 0L384 301.25l-62.06 62.06c-6.25 6.25-16.38 6.25-22.63 0l-22.62-22.62c-6.25-6.25-6.25-16.38 0-22.63L338.75 256l-62.06-62.06c-6.25-6.25-6.25-16.38 0-22.63l22.62-22.62c6.25-6.25 16.38-6.25 22.63 0L384 210.75l62.06-62.06c6.25-6.25 16.38-6.25 22.63 0l22.62 22.62c6.25 6.25 6.25 16.38 0 22.63L429.25 256l62.06 62.06z"],backward:[512,512,[],"f04a","M11.5 280.6l192 160c20.6 17.2 52.5 2.8 52.5-24.6V96c0-27.4-31.9-41.8-52.5-24.6l-192 160c-15.3 12.8-15.3 36.4 0 49.2zm256 0l192 160c20.6 17.2 52.5 2.8 52.5-24.6V96c0-27.4-31.9-41.8-52.5-24.6l-192 160c-15.3 12.8-15.3 36.4 0 49.2z"],bacon:[576,512,[],"f7e5","M218.92 336.39c34.89-34.89 44.2-59.7 54.05-86 10.61-28.29 21.59-57.54 61.37-97.34s69.05-50.77 97.35-61.38c23.88-9 46.64-17.68 76.79-45.37L470.81 8.91a31 31 0 0 0-40.18-2.83c-13.64 10.1-25.15 14.39-41 20.3C247 79.52 209.26 191.29 200.65 214.1c-29.75 78.83-89.55 94.68-98.72 98.09-24.86 9.26-54.73 20.38-91.07 50.36C-3 374-3.63 395 9.07 407.61l35.76 35.51C80 410.52 107 400.15 133 390.39c26.27-9.84 51.06-19.12 85.92-54zm348-232l-35.75-35.51c-35.19 32.63-62.18 43-88.25 52.79-26.26 9.85-51.06 19.16-85.95 54s-44.19 59.69-54 86C292.33 290 281.34 319.22 241.55 359s-69 50.73-97.3 61.32c-23.86 9-46.61 17.66-76.72 45.33l37.68 37.43a31 31 0 0 0 40.18 2.82c13.6-10.06 25.09-14.34 40.94-20.24 142.2-53 180-164.1 188.94-187.69C405 219.18 464.8 203.3 474 199.86c24.87-9.27 54.74-20.4 91.11-50.41 13.89-11.4 14.52-32.45 1.82-45.05z"],bahai:[512,512,[],"f666","M496.25 202.52l-110-15.44 41.82-104.34c6.67-16.64-11.6-32.18-26.59-22.63L307.44 120 273.35 12.82C270.64 4.27 263.32 0 256 0c-7.32 0-14.64 4.27-17.35 12.82l-34.09 107.19-94.04-59.89c-14.99-9.55-33.25 5.99-26.59 22.63l41.82 104.34-110 15.43c-17.54 2.46-21.68 26.27-6.03 34.67l98.16 52.66-74.48 83.54c-10.92 12.25-1.72 30.93 13.29 30.93 1.31 0 2.67-.14 4.07-.45l108.57-23.65-4.11 112.55c-.43 11.65 8.87 19.22 18.41 19.22 5.15 0 10.39-2.21 14.2-7.18l68.18-88.9 68.18 88.9c3.81 4.97 9.04 7.18 14.2 7.18 9.54 0 18.84-7.57 18.41-19.22l-4.11-112.55 108.57 23.65c17.36 3.76 29.21-17.2 17.35-30.49l-74.48-83.54 98.16-52.66c15.64-8.39 11.5-32.2-6.04-34.66zM338.51 311.68l-51.89-11.3 1.97 53.79L256 311.68l-32.59 42.49 1.96-53.79-51.89 11.3 35.6-39.93-46.92-25.17 52.57-7.38-19.99-49.87 44.95 28.62L256 166.72l16.29 51.23 44.95-28.62-19.99 49.87 52.57 7.38-46.92 25.17 35.61 39.93z"],"balance-scale":[640,512,[],"f24e","M256 336h-.02c0-16.18 1.34-8.73-85.05-181.51-17.65-35.29-68.19-35.36-85.87 0C-2.06 328.75.02 320.33.02 336H0c0 44.18 57.31 80 128 80s128-35.82 128-80zM128 176l72 144H56l72-144zm511.98 160c0-16.18 1.34-8.73-85.05-181.51-17.65-35.29-68.19-35.36-85.87 0-87.12 174.26-85.04 165.84-85.04 181.51H384c0 44.18 57.31 80 128 80s128-35.82 128-80h-.02zM440 320l72-144 72 144H440zm88 128H352V153.25c23.51-10.29 41.16-31.48 46.39-57.25H528c8.84 0 16-7.16 16-16V48c0-8.84-7.16-16-16-16H383.64C369.04 12.68 346.09 0 320 0s-49.04 12.68-63.64 32H112c-8.84 0-16 7.16-16 16v32c0 8.84 7.16 16 16 16h129.61c5.23 25.76 22.87 46.96 46.39 57.25V448H112c-8.84 0-16 7.16-16 16v32c0 8.84 7.16 16 16 16h416c8.84 0 16-7.16 16-16v-32c0-8.84-7.16-16-16-16z"],"balance-scale-left":[640,512,[],"f515","M528 448H352V153.25c20.42-8.94 36.1-26.22 43.38-47.47l132-44.26c8.38-2.81 12.89-11.88 10.08-20.26l-10.17-30.34C524.48 2.54 515.41-1.97 507.03.84L389.11 40.37C375.3 16.36 349.69 0 320 0c-44.18 0-80 35.82-80 80 0 3.43.59 6.71 1.01 10.03l-128.39 43.05c-8.38 2.81-12.89 11.88-10.08 20.26l10.17 30.34c2.81 8.38 11.88 12.89 20.26 10.08l142.05-47.63c4.07 2.77 8.43 5.12 12.99 7.12V496c0 8.84 7.16 16 16 16h224c8.84 0 16-7.16 16-16v-32c-.01-8.84-7.17-16-16.01-16zm111.98-144c0-16.18 1.34-8.73-85.05-181.51-17.65-35.29-68.19-35.36-85.87 0-87.12 174.26-85.04 165.84-85.04 181.51H384c0 44.18 57.31 80 128 80s128-35.82 128-80h-.02zM440 288l72-144 72 144H440zm-269.07-37.51c-17.65-35.29-68.19-35.36-85.87 0C-2.06 424.75.02 416.33.02 432H0c0 44.18 57.31 80 128 80s128-35.82 128-80h-.02c0-16.18 1.34-8.73-85.05-181.51zM56 416l72-144 72 144H56z"],"balance-scale-right":[640,512,[],"f516","M96 464v32c0 8.84 7.16 16 16 16h224c8.84 0 16-7.16 16-16V153.25c4.56-2 8.92-4.35 12.99-7.12l142.05 47.63c8.38 2.81 17.45-1.71 20.26-10.08l10.17-30.34c2.81-8.38-1.71-17.45-10.08-20.26l-128.4-43.05c.42-3.32 1.01-6.6 1.01-10.03 0-44.18-35.82-80-80-80-29.69 0-55.3 16.36-69.11 40.37L132.96.83c-8.38-2.81-17.45 1.71-20.26 10.08l-10.17 30.34c-2.81 8.38 1.71 17.45 10.08 20.26l132 44.26c7.28 21.25 22.96 38.54 43.38 47.47V448H112c-8.84 0-16 7.16-16 16zM0 304c0 44.18 57.31 80 128 80s128-35.82 128-80h-.02c0-15.67 2.08-7.25-85.05-181.51-17.68-35.36-68.22-35.29-85.87 0C-1.32 295.27.02 287.82.02 304H0zm56-16l72-144 72 144H56zm328.02 144H384c0 44.18 57.31 80 128 80s128-35.82 128-80h-.02c0-15.67 2.08-7.25-85.05-181.51-17.68-35.36-68.22-35.29-85.87 0-86.38 172.78-85.04 165.33-85.04 181.51zM440 416l72-144 72 144H440z"],ban:[512,512,[],"f05e","M256 8C119.034 8 8 119.033 8 256s111.034 248 248 248 248-111.034 248-248S392.967 8 256 8zm130.108 117.892c65.448 65.448 70 165.481 20.677 235.637L150.47 105.216c70.204-49.356 170.226-44.735 235.638 20.676zM125.892 386.108c-65.448-65.448-70-165.481-20.677-235.637L361.53 406.784c-70.203 49.356-170.226 44.736-235.638-20.676z"],"band-aid":[640,512,[],"f462","M0 160v192c0 35.3 28.7 64 64 64h96V96H64c-35.3 0-64 28.7-64 64zm576-64h-96v320h96c35.3 0 64-28.7 64-64V160c0-35.3-28.7-64-64-64zM192 416h256V96H192v320zm176-232c13.3 0 24 10.7 24 24s-10.7 24-24 24-24-10.7-24-24 10.7-24 24-24zm0 96c13.3 0 24 10.7 24 24s-10.7 24-24 24-24-10.7-24-24 10.7-24 24-24zm-96-96c13.3 0 24 10.7 24 24s-10.7 24-24 24-24-10.7-24-24 10.7-24 24-24zm0 96c13.3 0 24 10.7 24 24s-10.7 24-24 24-24-10.7-24-24 10.7-24 24-24z"],barcode:[512,512,[],"f02a","M0 448V64h18v384H0zm26.857-.273V64H36v383.727h-9.143zm27.143 0V64h8.857v383.727H54zm44.857 0V64h8.857v383.727h-8.857zm36 0V64h17.714v383.727h-17.714zm44.857 0V64h8.857v383.727h-8.857zm18 0V64h8.857v383.727h-8.857zm18 0V64h8.857v383.727h-8.857zm35.715 0V64h18v383.727h-18zm44.857 0V64h18v383.727h-18zm35.999 0V64h18.001v383.727h-18.001zm36.001 0V64h18.001v383.727h-18.001zm26.857 0V64h18v383.727h-18zm45.143 0V64h26.857v383.727h-26.857zm35.714 0V64h9.143v383.727H476zm18 .273V64h18v384h-18z"],bars:[448,512,[],"f0c9","M16 132h416c8.837 0 16-7.163 16-16V76c0-8.837-7.163-16-16-16H16C7.163 60 0 67.163 0 76v40c0 8.837 7.163 16 16 16zm0 160h416c8.837 0 16-7.163 16-16v-40c0-8.837-7.163-16-16-16H16c-8.837 0-16 7.163-16 16v40c0 8.837 7.163 16 16 16zm0 160h416c8.837 0 16-7.163 16-16v-40c0-8.837-7.163-16-16-16H16c-8.837 0-16 7.163-16 16v40c0 8.837 7.163 16 16 16z"],"baseball-ball":[496,512,[],"f433","M368.5 363.9l28.8-13.9c11.1 22.9 26 43.2 44.1 60.9 34-42.5 54.5-96.3 54.5-154.9 0-58.5-20.4-112.2-54.2-154.6-17.8 17.3-32.6 37.1-43.6 59.5l-28.7-14.1c12.8-26 30-49 50.8-69C375.6 34.7 315 8 248 8 181.1 8 120.5 34.6 75.9 77.7c20.7 19.9 37.9 42.9 50.7 68.8l-28.7 14.1c-11-22.3-25.7-42.1-43.5-59.4C20.4 143.7 0 197.4 0 256c0 58.6 20.4 112.3 54.4 154.7 18.2-17.7 33.2-38 44.3-61l28.8 13.9c-12.9 26.7-30.3 50.3-51.5 70.7 44.5 43.1 105.1 69.7 172 69.7 66.8 0 127.3-26.5 171.9-69.5-21.1-20.4-38.5-43.9-51.4-70.6zm-228.3-32l-30.5-9.8c14.9-46.4 12.7-93.8-.6-134l30.4-10c15 45.6 18 99.9.7 153.8zm216.3-153.4l30.4 10c-13.2 40.1-15.5 87.5-.6 134l-30.5 9.8c-17.3-54-14.3-108.3.7-153.8z"],"basketball-ball":[496,512,[],"f434","M212.3 10.3c-43.8 6.3-86.2 24.1-122.2 53.8l77.4 77.4c27.8-35.8 43.3-81.2 44.8-131.2zM248 222L405.9 64.1c-42.4-35-93.6-53.5-145.5-56.1-1.2 63.9-21.5 122.3-58.7 167.7L248 222zM56.1 98.1c-29.7 36-47.5 78.4-53.8 122.2 50-1.5 95.5-17 131.2-44.8L56.1 98.1zm272.2 204.2c45.3-37.1 103.7-57.4 167.7-58.7-2.6-51.9-21.1-103.1-56.1-145.5L282 256l46.3 46.3zM248 290L90.1 447.9c42.4 34.9 93.6 53.5 145.5 56.1 1.3-64 21.6-122.4 58.7-167.7L248 290zm191.9 123.9c29.7-36 47.5-78.4 53.8-122.2-50.1 1.6-95.5 17.1-131.2 44.8l77.4 77.4zM167.7 209.7C122.3 246.9 63.9 267.3 0 268.4c2.6 51.9 21.1 103.1 56.1 145.5L214 256l-46.3-46.3zm116 292c43.8-6.3 86.2-24.1 122.2-53.8l-77.4-77.4c-27.7 35.7-43.2 81.2-44.8 131.2z"],bath:[512,512,[],"f2cd","M32,384a95.4,95.4,0,0,0,32,71.09V496a16,16,0,0,0,16,16h32a16,16,0,0,0,16-16V480H384v16a16,16,0,0,0,16,16h32a16,16,0,0,0,16-16V455.09A95.4,95.4,0,0,0,480,384V336H32ZM496,256H80V69.25a21.26,21.26,0,0,1,36.28-15l19.27,19.26c-13.13,29.88-7.61,59.11,8.62,79.73l-.17.17A16,16,0,0,0,144,176l11.31,11.31a16,16,0,0,0,22.63,0L283.31,81.94a16,16,0,0,0,0-22.63L272,48a16,16,0,0,0-22.62,0l-.17.17c-20.62-16.23-49.83-21.75-79.73-8.62L150.22,20.28A69.25,69.25,0,0,0,32,69.25V256H16A16,16,0,0,0,0,272v16a16,16,0,0,0,16,16H496a16,16,0,0,0,16-16V272A16,16,0,0,0,496,256Z"],"battery-empty":[640,512,[],"f244","M544 160v64h32v64h-32v64H64V160h480m16-64H48c-26.51 0-48 21.49-48 48v224c0 26.51 21.49 48 48 48h512c26.51 0 48-21.49 48-48v-16h8c13.255 0 24-10.745 24-24V184c0-13.255-10.745-24-24-24h-8v-16c0-26.51-21.49-48-48-48z"],"battery-full":[640,512,[],"f240","M544 160v64h32v64h-32v64H64V160h480m16-64H48c-26.51 0-48 21.49-48 48v224c0 26.51 21.49 48 48 48h512c26.51 0 48-21.49 48-48v-16h8c13.255 0 24-10.745 24-24V184c0-13.255-10.745-24-24-24h-8v-16c0-26.51-21.49-48-48-48zm-48 96H96v128h416V192z"],"battery-half":[640,512,[],"f242","M544 160v64h32v64h-32v64H64V160h480m16-64H48c-26.51 0-48 21.49-48 48v224c0 26.51 21.49 48 48 48h512c26.51 0 48-21.49 48-48v-16h8c13.255 0 24-10.745 24-24V184c0-13.255-10.745-24-24-24h-8v-16c0-26.51-21.49-48-48-48zm-240 96H96v128h224V192z"],"battery-quarter":[640,512,[],"f243","M544 160v64h32v64h-32v64H64V160h480m16-64H48c-26.51 0-48 21.49-48 48v224c0 26.51 21.49 48 48 48h512c26.51 0 48-21.49 48-48v-16h8c13.255 0 24-10.745 24-24V184c0-13.255-10.745-24-24-24h-8v-16c0-26.51-21.49-48-48-48zm-336 96H96v128h128V192z"],"battery-three-quarters":[640,512,[],"f241","M544 160v64h32v64h-32v64H64V160h480m16-64H48c-26.51 0-48 21.49-48 48v224c0 26.51 21.49 48 48 48h512c26.51 0 48-21.49 48-48v-16h8c13.255 0 24-10.745 24-24V184c0-13.255-10.745-24-24-24h-8v-16c0-26.51-21.49-48-48-48zm-144 96H96v128h320V192z"],bed:[640,512,[],"f236","M176 256c44.11 0 80-35.89 80-80s-35.89-80-80-80-80 35.89-80 80 35.89 80 80 80zm352-128H304c-8.84 0-16 7.16-16 16v144H64V80c0-8.84-7.16-16-16-16H16C7.16 64 0 71.16 0 80v352c0 8.84 7.16 16 16 16h32c8.84 0 16-7.16 16-16v-48h512v48c0 8.84 7.16 16 16 16h32c8.84 0 16-7.16 16-16V240c0-61.86-50.14-112-112-112z"],beer:[448,512,[],"f0fc","M368 96h-48V56c0-13.255-10.745-24-24-24H24C10.745 32 0 42.745 0 56v400c0 13.255 10.745 24 24 24h272c13.255 0 24-10.745 24-24v-42.11l80.606-35.977C429.396 365.063 448 336.388 448 304.86V176c0-44.112-35.888-80-80-80zm16 208.86a16.018 16.018 0 0 1-9.479 14.611L320 343.805V160h48c8.822 0 16 7.178 16 16v128.86zM208 384c-8.836 0-16-7.164-16-16V144c0-8.836 7.164-16 16-16s16 7.164 16 16v224c0 8.836-7.164 16-16 16zm-96 0c-8.836 0-16-7.164-16-16V144c0-8.836 7.164-16 16-16s16 7.164 16 16v224c0 8.836-7.164 16-16 16z"],bell:[448,512,[],"f0f3","M224 512c35.32 0 63.97-28.65 63.97-64H160.03c0 35.35 28.65 64 63.97 64zm215.39-149.71c-19.32-20.76-55.47-51.99-55.47-154.29 0-77.7-54.48-139.9-127.94-155.16V32c0-17.67-14.32-32-31.98-32s-31.98 14.33-31.98 32v20.84C118.56 68.1 64.08 130.3 64.08 208c0 102.3-36.15 133.53-55.47 154.29-6 6.45-8.66 14.16-8.61 21.71.11 16.4 12.98 32 32.1 32h383.8c19.12 0 32-15.6 32.1-32 .05-7.55-2.61-15.27-8.61-21.71z"],"bell-slash":[640,512,[],"f1f6","M633.82 458.1l-90.62-70.05c.19-1.38.8-2.66.8-4.06.05-7.55-2.61-15.27-8.61-21.71-19.32-20.76-55.47-51.99-55.47-154.29 0-77.7-54.48-139.9-127.94-155.16V32c0-17.67-14.32-32-31.98-32s-31.98 14.33-31.98 32v20.84c-40.33 8.38-74.66 31.07-97.59 62.57L45.47 3.37C38.49-2.05 28.43-.8 23.01 6.18L3.37 31.45C-2.05 38.42-.8 48.47 6.18 53.9l588.35 454.73c6.98 5.43 17.03 4.17 22.46-2.81l19.64-25.27c5.42-6.97 4.17-17.02-2.81-22.45zM157.23 251.54c-8.61 67.96-36.41 93.33-52.62 110.75-6 6.45-8.66 14.16-8.61 21.71.11 16.4 12.98 32 32.1 32h241.92L157.23 251.54zM320 512c35.32 0 63.97-28.65 63.97-64H256.03c0 35.35 28.65 64 63.97 64z"],"bezier-curve":[640,512,[],"f55b","M368 32h-96c-17.67 0-32 14.33-32 32v96c0 17.67 14.33 32 32 32h96c17.67 0 32-14.33 32-32V64c0-17.67-14.33-32-32-32zM208 88h-84.75C113.75 64.56 90.84 48 64 48 28.66 48 0 76.65 0 112s28.66 64 64 64c26.84 0 49.75-16.56 59.25-40h79.73c-55.37 32.52-95.86 87.32-109.54 152h49.4c11.3-41.61 36.77-77.21 71.04-101.56-3.7-8.08-5.88-16.99-5.88-26.44V88zm-48 232H64c-17.67 0-32 14.33-32 32v96c0 17.67 14.33 32 32 32h96c17.67 0 32-14.33 32-32v-96c0-17.67-14.33-32-32-32zM576 48c-26.84 0-49.75 16.56-59.25 40H432v72c0 9.45-2.19 18.36-5.88 26.44 34.27 24.35 59.74 59.95 71.04 101.56h49.4c-13.68-64.68-54.17-119.48-109.54-152h79.73c9.5 23.44 32.41 40 59.25 40 35.34 0 64-28.65 64-64s-28.66-64-64-64zm0 272h-96c-17.67 0-32 14.33-32 32v96c0 17.67 14.33 32 32 32h96c17.67 0 32-14.33 32-32v-96c0-17.67-14.33-32-32-32z"],bible:[448,512,[],"f647","M448 358.4V25.6c0-16-9.6-25.6-25.6-25.6H96C41.6 0 0 41.6 0 96v320c0 54.4 41.6 96 96 96h326.4c12.8 0 25.6-9.6 25.6-25.6v-16c0-6.4-3.2-12.8-9.6-19.2-3.2-16-3.2-60.8 0-73.6 6.4-3.2 9.6-9.6 9.6-19.2zM144 144c0-8.84 7.16-16 16-16h48V80c0-8.84 7.16-16 16-16h32c8.84 0 16 7.16 16 16v48h48c8.84 0 16 7.16 16 16v32c0 8.84-7.16 16-16 16h-48v112c0 8.84-7.16 16-16 16h-32c-8.84 0-16-7.16-16-16V192h-48c-8.84 0-16-7.16-16-16v-32zm236.8 304H96c-19.2 0-32-12.8-32-32s16-32 32-32h284.8v64z"],bicycle:[640,512,[],"f206","M512.509 192.001c-16.373-.064-32.03 2.955-46.436 8.495l-77.68-125.153A24 24 0 0 0 368.001 64h-64c-8.837 0-16 7.163-16 16v16c0 8.837 7.163 16 16 16h50.649l14.896 24H256.002v-16c0-8.837-7.163-16-16-16h-87.459c-13.441 0-24.777 10.999-24.536 24.437.232 13.044 10.876 23.563 23.995 23.563h48.726l-29.417 47.52c-13.433-4.83-27.904-7.483-42.992-7.52C58.094 191.83.412 249.012.002 319.236-.413 390.279 57.055 448 128.002 448c59.642 0 109.758-40.793 123.967-96h52.033a24 24 0 0 0 20.406-11.367L410.37 201.77l14.938 24.067c-25.455 23.448-41.385 57.081-41.307 94.437.145 68.833 57.899 127.051 126.729 127.719 70.606.685 128.181-55.803 129.255-125.996 1.086-70.941-56.526-129.72-127.476-129.996zM186.75 265.772c9.727 10.529 16.673 23.661 19.642 38.228h-43.306l23.664-38.228zM128.002 400c-44.112 0-80-35.888-80-80s35.888-80 80-80c5.869 0 11.586.653 17.099 1.859l-45.505 73.509C89.715 331.327 101.213 352 120.002 352h81.3c-12.37 28.225-40.562 48-73.3 48zm162.63-96h-35.624c-3.96-31.756-19.556-59.894-42.383-80.026L237.371 184h127.547l-74.286 120zm217.057 95.886c-41.036-2.165-74.049-35.692-75.627-76.755-.812-21.121 6.633-40.518 19.335-55.263l44.433 71.586c4.66 7.508 14.524 9.816 22.032 5.156l13.594-8.437c7.508-4.66 9.817-14.524 5.156-22.032l-44.468-71.643a79.901 79.901 0 0 1 19.858-2.497c44.112 0 80 35.888 80 80-.001 45.54-38.252 82.316-84.313 79.885z"],biking:[640,512,[],"f84a","M400 96a48 48 0 1 0-48-48 48 48 0 0 0 48 48zm-4 121a31.9 31.9 0 0 0 20 7h64a32 32 0 0 0 0-64h-52.78L356 103a31.94 31.94 0 0 0-40.81.68l-112 96a32 32 0 0 0 3.08 50.92L288 305.12V416a32 32 0 0 0 64 0V288a32 32 0 0 0-14.25-26.62l-41.36-27.57 58.25-49.92zm116 39a128 128 0 1 0 128 128 128 128 0 0 0-128-128zm0 192a64 64 0 1 1 64-64 64 64 0 0 1-64 64zM128 256a128 128 0 1 0 128 128 128 128 0 0 0-128-128zm0 192a64 64 0 1 1 64-64 64 64 0 0 1-64 64z"],binoculars:[512,512,[],"f1e5","M416 48c0-8.84-7.16-16-16-16h-64c-8.84 0-16 7.16-16 16v48h96V48zM63.91 159.99C61.4 253.84 3.46 274.22 0 404v44c0 17.67 14.33 32 32 32h96c17.67 0 32-14.33 32-32V288h32V128H95.84c-17.63 0-31.45 14.37-31.93 31.99zm384.18 0c-.48-17.62-14.3-31.99-31.93-31.99H320v160h32v160c0 17.67 14.33 32 32 32h96c17.67 0 32-14.33 32-32v-44c-3.46-129.78-61.4-150.16-63.91-244.01zM176 32h-64c-8.84 0-16 7.16-16 16v48h96V48c0-8.84-7.16-16-16-16zm48 256h64V128h-64v160z"],biohazard:[576,512,[],"f780","M287.9 112c18.6 0 36.2 3.8 52.8 9.6 13.3-10.3 23.6-24.3 29.5-40.7-25.2-10.9-53-17-82.2-17-29.1 0-56.9 6-82.1 16.9 5.9 16.4 16.2 30.4 29.5 40.7 16.5-5.7 34-9.5 52.5-9.5zM163.6 438.7c12-11.8 20.4-26.4 24.5-42.4-32.9-26.4-54.8-65.3-58.9-109.6-8.5-2.8-17.2-4.6-26.4-4.6-7.6 0-15.2 1-22.5 3.1 4.1 62.8 35.8 118 83.3 153.5zm224.2-42.6c4.1 16 12.5 30.7 24.5 42.5 47.4-35.5 79.1-90.7 83-153.5-7.2-2-14.7-3-22.2-3-9.2 0-18 1.9-26.6 4.7-4.1 44.2-26 82.9-58.7 109.3zm113.5-205c-17.6-10.4-36.3-16.6-55.3-19.9 6-17.7 10-36.4 10-56.2 0-41-14.5-80.8-41-112.2-2.5-3-6.6-3.7-10-1.8-3.3 1.9-4.8 6-3.6 9.7 4.5 13.8 6.6 26.3 6.6 38.5 0 67.8-53.8 122.9-120 122.9S168 117 168 49.2c0-12.1 2.2-24.7 6.6-38.5 1.2-3.7-.3-7.8-3.6-9.7-3.4-1.9-7.5-1.2-10 1.8C134.6 34.2 120 74 120 115c0 19.8 3.9 38.5 10 56.2-18.9 3.3-37.7 9.5-55.3 19.9-34.6 20.5-61 53.3-74.3 92.4-1.3 3.7.2 7.7 3.5 9.8 3.3 2 7.5 1.3 10-1.6 9.4-10.8 19-19.1 29.2-25.1 57.3-33.9 130.8-13.7 163.9 45 33.1 58.7 13.4 134-43.9 167.9-10.2 6.1-22 10.4-35.8 13.4-3.7.8-6.4 4.2-6.4 8.1.1 4 2.7 7.3 6.5 8 39.7 7.8 80.6.8 115.2-19.7 18-10.6 32.9-24.5 45.3-40.1 12.4 15.6 27.3 29.5 45.3 40.1 34.6 20.5 75.5 27.5 115.2 19.7 3.8-.7 6.4-4 6.5-8 0-3.9-2.6-7.3-6.4-8.1-13.9-2.9-25.6-7.3-35.8-13.4-57.3-33.9-77-109.2-43.9-167.9s106.6-78.9 163.9-45c10.2 6.1 19.8 14.3 29.2 25.1 2.5 2.9 6.7 3.6 10 1.6s4.8-6.1 3.5-9.8c-13.1-39.1-39.5-72-74.1-92.4zm-213.4 129c-26.5 0-48-21.5-48-48s21.5-48 48-48 48 21.5 48 48-21.5 48-48 48z"],"birthday-cake":[448,512,[],"f1fd","M448 384c-28.02 0-31.26-32-74.5-32-43.43 0-46.825 32-74.75 32-27.695 0-31.454-32-74.75-32-42.842 0-47.218 32-74.5 32-28.148 0-31.202-32-74.75-32-43.547 0-46.653 32-74.75 32v-80c0-26.5 21.5-48 48-48h16V112h64v144h64V112h64v144h64V112h64v144h16c26.5 0 48 21.5 48 48v80zm0 128H0v-96c43.356 0 46.767-32 74.75-32 27.951 0 31.253 32 74.75 32 42.843 0 47.217-32 74.5-32 28.148 0 31.201 32 74.75 32 43.357 0 46.767-32 74.75-32 27.488 0 31.252 32 74.5 32v96zM96 96c-17.75 0-32-14.25-32-32 0-31 32-23 32-64 12 0 32 29.5 32 56s-14.25 40-32 40zm128 0c-17.75 0-32-14.25-32-32 0-31 32-23 32-64 12 0 32 29.5 32 56s-14.25 40-32 40zm128 0c-17.75 0-32-14.25-32-32 0-31 32-23 32-64 12 0 32 29.5 32 56s-14.25 40-32 40z"],blender:[512,512,[],"f517","M416 384H160c-35.35 0-64 28.65-64 64v32c0 17.67 14.33 32 32 32h320c17.67 0 32-14.33 32-32v-32c0-35.35-28.65-64-64-64zm-128 96c-17.67 0-32-14.33-32-32s14.33-32 32-32 32 14.33 32 32-14.33 32-32 32zm40-416h166.54L512 0H48C21.49 0 0 21.49 0 48v160c0 26.51 21.49 48 48 48h103.27l8.73 96h256l17.46-64H328c-4.42 0-8-3.58-8-8v-16c0-4.42 3.58-8 8-8h114.18l17.46-64H328c-4.42 0-8-3.58-8-8v-16c0-4.42 3.58-8 8-8h140.36l17.46-64H328c-4.42 0-8-3.58-8-8V72c0-4.42 3.58-8 8-8zM64 192V64h69.82l11.64 128H64z"],"blender-phone":[576,512,[],"f6b6","M392 64h166.54L576 0H192v352h288l17.46-64H392c-4.42 0-8-3.58-8-8v-16c0-4.42 3.58-8 8-8h114.18l17.46-64H392c-4.42 0-8-3.58-8-8v-16c0-4.42 3.58-8 8-8h140.36l17.46-64H392c-4.42 0-8-3.58-8-8V72c0-4.42 3.58-8 8-8zM158.8 335.01l-25.78-63.26c-2.78-6.81-9.8-10.99-17.24-10.26l-45.03 4.42c-17.28-46.94-17.65-99.78 0-147.72l45.03 4.42c7.43.73 14.46-3.46 17.24-10.26l25.78-63.26c3.02-7.39.2-15.85-6.68-20.07l-39.28-24.1C98.51-3.87 80.09-.5 68.95 11.97c-92.57 103.6-92 259.55 2.1 362.49 9.87 10.8 29.12 12.48 41.65 4.8l39.41-24.18c6.89-4.22 9.7-12.67 6.69-20.07zM480 384H192c-35.35 0-64 28.65-64 64v32c0 17.67 14.33 32 32 32h352c17.67 0 32-14.33 32-32v-32c0-35.35-28.65-64-64-64zm-144 96c-17.67 0-32-14.33-32-32s14.33-32 32-32 32 14.33 32 32-14.33 32-32 32z"],blind:[384,512,[],"f29d","M380.15 510.837a8 8 0 0 1-10.989-2.687l-125.33-206.427a31.923 31.923 0 0 0 12.958-9.485l126.048 207.608a8 8 0 0 1-2.687 10.991zM142.803 314.338l-32.54 89.485 36.12 88.285c6.693 16.36 25.377 24.192 41.733 17.501 16.357-6.692 24.193-25.376 17.501-41.734l-62.814-153.537zM96 88c24.301 0 44-19.699 44-44S120.301 0 96 0 52 19.699 52 44s19.699 44 44 44zm154.837 169.128l-120-152c-4.733-5.995-11.75-9.108-18.837-9.112V96H80v.026c-7.146.003-14.217 3.161-18.944 9.24L0 183.766v95.694c0 13.455 11.011 24.791 24.464 24.536C37.505 303.748 48 293.1 48 280v-79.766l16-20.571v140.698L9.927 469.055c-6.04 16.609 2.528 34.969 19.138 41.009 16.602 6.039 34.968-2.524 41.009-19.138L136 309.638V202.441l-31.406-39.816a4 4 0 1 1 6.269-4.971l102.3 129.217c9.145 11.584 24.368 11.339 33.708 3.965 10.41-8.216 12.159-23.334 3.966-33.708z"],blog:[512,512,[],"f781","M172.2 226.8c-14.6-2.9-28.2 8.9-28.2 23.8V301c0 10.2 7.1 18.4 16.7 22 18.2 6.8 31.3 24.4 31.3 45 0 26.5-21.5 48-48 48s-48-21.5-48-48V120c0-13.3-10.7-24-24-24H24c-13.3 0-24 10.7-24 24v248c0 89.5 82.1 160.2 175 140.7 54.4-11.4 98.3-55.4 109.7-109.7 17.4-82.9-37-157.2-112.5-172.2zM209 0c-9.2-.5-17 6.8-17 16v31.6c0 8.5 6.6 15.5 15 15.9 129.4 7 233.4 112 240.9 241.5.5 8.4 7.5 15 15.9 15h32.1c9.2 0 16.5-7.8 16-17C503.4 139.8 372.2 8.6 209 0zm.3 96c-9.3-.7-17.3 6.7-17.3 16.1v32.1c0 8.4 6.5 15.3 14.8 15.9 76.8 6.3 138 68.2 144.9 145.2.8 8.3 7.6 14.7 15.9 14.7h32.2c9.3 0 16.8-8 16.1-17.3-8.4-110.1-96.5-198.2-206.6-206.7z"],bold:[384,512,[],"f032","M333.49 238a122 122 0 0 0 27-65.21C367.87 96.49 308 32 233.42 32H34a16 16 0 0 0-16 16v48a16 16 0 0 0 16 16h31.87v288H34a16 16 0 0 0-16 16v48a16 16 0 0 0 16 16h209.32c70.8 0 134.14-51.75 141-122.4 4.74-48.45-16.39-92.06-50.83-119.6zM145.66 112h87.76a48 48 0 0 1 0 96h-87.76zm87.76 288h-87.76V288h87.76a56 56 0 0 1 0 112z"],bolt:[320,512,[],"f0e7","M296 160H180.6l42.6-129.8C227.2 15 215.7 0 200 0H56C44 0 33.8 8.9 32.2 20.8l-32 240C-1.7 275.2 9.5 288 24 288h118.7L96.6 482.5c-3.6 15.2 8 29.5 23.3 29.5 8.4 0 16.4-4.4 20.8-12l176-304c9.3-15.9-2.2-36-20.7-36z"],bomb:[512,512,[],"f1e2","M440.5 88.5l-52 52L415 167c9.4 9.4 9.4 24.6 0 33.9l-17.4 17.4c11.8 26.1 18.4 55.1 18.4 85.6 0 114.9-93.1 208-208 208S0 418.9 0 304 93.1 96 208 96c30.5 0 59.5 6.6 85.6 18.4L311 97c9.4-9.4 24.6-9.4 33.9 0l26.5 26.5 52-52 17.1 17zM500 60h-24c-6.6 0-12 5.4-12 12s5.4 12 12 12h24c6.6 0 12-5.4 12-12s-5.4-12-12-12zM440 0c-6.6 0-12 5.4-12 12v24c0 6.6 5.4 12 12 12s12-5.4 12-12V12c0-6.6-5.4-12-12-12zm33.9 55l17-17c4.7-4.7 4.7-12.3 0-17-4.7-4.7-12.3-4.7-17 0l-17 17c-4.7 4.7-4.7 12.3 0 17 4.8 4.7 12.4 4.7 17 0zm-67.8 0c4.7 4.7 12.3 4.7 17 0 4.7-4.7 4.7-12.3 0-17l-17-17c-4.7-4.7-12.3-4.7-17 0-4.7 4.7-4.7 12.3 0 17l17 17zm67.8 34c-4.7-4.7-12.3-4.7-17 0-4.7 4.7-4.7 12.3 0 17l17 17c4.7 4.7 12.3 4.7 17 0 4.7-4.7 4.7-12.3 0-17l-17-17zM112 272c0-35.3 28.7-64 64-64 8.8 0 16-7.2 16-16s-7.2-16-16-16c-52.9 0-96 43.1-96 96 0 8.8 7.2 16 16 16s16-7.2 16-16z"],bone:[640,512,[],"f5d7","M598.88 244.56c25.2-12.6 41.12-38.36 41.12-66.53v-7.64C640 129.3 606.7 96 565.61 96c-32.02 0-60.44 20.49-70.57 50.86-7.68 23.03-11.6 45.14-38.11 45.14H183.06c-27.38 0-31.58-25.54-38.11-45.14C134.83 116.49 106.4 96 74.39 96 33.3 96 0 129.3 0 170.39v7.64c0 28.17 15.92 53.93 41.12 66.53 9.43 4.71 9.43 18.17 0 22.88C15.92 280.04 0 305.8 0 333.97v7.64C0 382.7 33.3 416 74.38 416c32.02 0 60.44-20.49 70.57-50.86 7.68-23.03 11.6-45.14 38.11-45.14h273.87c27.38 0 31.58 25.54 38.11 45.14C505.17 395.51 533.6 416 565.61 416c41.08 0 74.38-33.3 74.38-74.39v-7.64c0-28.18-15.92-53.93-41.12-66.53-9.42-4.71-9.42-18.17.01-22.88z"],bong:[448,512,[],"f55c","M302.5 512c23.18 0 44.43-12.58 56-32.66C374.69 451.26 384 418.75 384 384c0-36.12-10.08-69.81-27.44-98.62L400 241.94l9.38 9.38c6.25 6.25 16.38 6.25 22.63 0l11.3-11.32c6.25-6.25 6.25-16.38 0-22.63l-52.69-52.69c-6.25-6.25-16.38-6.25-22.63 0l-11.31 11.31c-6.25 6.25-6.25 16.38 0 22.63l9.38 9.38-39.41 39.41c-11.56-11.37-24.53-21.33-38.65-29.51V63.74l15.97-.02c8.82-.01 15.97-7.16 15.98-15.98l.04-31.72C320 7.17 312.82-.01 303.97 0L80.03.26c-8.82.01-15.97 7.16-15.98 15.98l-.04 31.73c-.01 8.85 7.17 16.02 16.02 16.01L96 63.96v153.93C38.67 251.1 0 312.97 0 384c0 34.75 9.31 67.27 25.5 95.34C37.08 499.42 58.33 512 81.5 512h221zM120.06 259.43L144 245.56V63.91l96-.11v181.76l23.94 13.87c24.81 14.37 44.12 35.73 56.56 60.57h-257c12.45-24.84 31.75-46.2 56.56-60.57z"],book:[448,512,[],"f02d","M448 360V24c0-13.3-10.7-24-24-24H96C43 0 0 43 0 96v320c0 53 43 96 96 96h328c13.3 0 24-10.7 24-24v-16c0-7.5-3.5-14.3-8.9-18.7-4.2-15.4-4.2-59.3 0-74.7 5.4-4.3 8.9-11.1 8.9-18.6zM128 134c0-3.3 2.7-6 6-6h212c3.3 0 6 2.7 6 6v20c0 3.3-2.7 6-6 6H134c-3.3 0-6-2.7-6-6v-20zm0 64c0-3.3 2.7-6 6-6h212c3.3 0 6 2.7 6 6v20c0 3.3-2.7 6-6 6H134c-3.3 0-6-2.7-6-6v-20zm253.4 250H96c-17.7 0-32-14.3-32-32 0-17.6 14.4-32 32-32h285.4c-1.9 17.1-1.9 46.9 0 64z"],"book-dead":[448,512,[],"f6b7","M272 136c8.8 0 16-7.2 16-16s-7.2-16-16-16-16 7.2-16 16 7.2 16 16 16zm176 222.4V25.6c0-16-9.6-25.6-25.6-25.6H96C41.6 0 0 41.6 0 96v320c0 54.4 41.6 96 96 96h326.4c12.8 0 25.6-9.6 25.6-25.6v-16c0-6.4-3.2-12.8-9.6-19.2-3.2-16-3.2-60.8 0-73.6 6.4-3.2 9.6-9.6 9.6-19.2zM240 56c44.2 0 80 28.7 80 64 0 20.9-12.7 39.2-32 50.9V184c0 8.8-7.2 16-16 16h-64c-8.8 0-16-7.2-16-16v-13.1c-19.3-11.7-32-30-32-50.9 0-35.3 35.8-64 80-64zM124.8 223.3l6.3-14.7c1.7-4.1 6.4-5.9 10.5-4.2l98.3 42.1 98.4-42.1c4.1-1.7 8.8.1 10.5 4.2l6.3 14.7c1.7 4.1-.1 8.8-4.2 10.5L280.6 264l70.3 30.1c4.1 1.7 5.9 6.4 4.2 10.5l-6.3 14.7c-1.7 4.1-6.4 5.9-10.5 4.2L240 281.4l-98.3 42.2c-4.1 1.7-8.8-.1-10.5-4.2l-6.3-14.7c-1.7-4.1.1-8.8 4.2-10.5l70.4-30.1-70.5-30.3c-4.1-1.7-5.9-6.4-4.2-10.5zm256 224.7H96c-19.2 0-32-12.8-32-32s16-32 32-32h284.8zM208 136c8.8 0 16-7.2 16-16s-7.2-16-16-16-16 7.2-16 16 7.2 16 16 16z"],"book-medical":[448,512,[],"f7e6","M448 358.4V25.6c0-16-9.6-25.6-25.6-25.6H96C41.6 0 0 41.6 0 96v320c0 54.4 41.6 96 96 96h326.4c12.8 0 25.6-9.6 25.6-25.6v-16q0-9.6-9.6-19.2c-3.2-16-3.2-60.8 0-73.6q9.6-4.8 9.6-19.2zM144 168a8 8 0 0 1 8-8h56v-56a8 8 0 0 1 8-8h48a8 8 0 0 1 8 8v56h56a8 8 0 0 1 8 8v48a8 8 0 0 1-8 8h-56v56a8 8 0 0 1-8 8h-48a8 8 0 0 1-8-8v-56h-56a8 8 0 0 1-8-8zm236.8 280H96c-19.2 0-32-12.8-32-32s16-32 32-32h284.8z"],"book-open":[576,512,[],"f518","M542.22 32.05c-54.8 3.11-163.72 14.43-230.96 55.59-4.64 2.84-7.27 7.89-7.27 13.17v363.87c0 11.55 12.63 18.85 23.28 13.49 69.18-34.82 169.23-44.32 218.7-46.92 16.89-.89 30.02-14.43 30.02-30.66V62.75c.01-17.71-15.35-31.74-33.77-30.7zM264.73 87.64C197.5 46.48 88.58 35.17 33.78 32.05 15.36 31.01 0 45.04 0 62.75V400.6c0 16.24 13.13 29.78 30.02 30.66 49.49 2.6 149.59 12.11 218.77 46.95 10.62 5.35 23.21-1.94 23.21-13.46V100.63c0-5.29-2.62-10.14-7.27-12.99z"],"book-reader":[512,512,[],"f5da","M352 96c0-53.02-42.98-96-96-96s-96 42.98-96 96 42.98 96 96 96 96-42.98 96-96zM233.59 241.1c-59.33-36.32-155.43-46.3-203.79-49.05C13.55 191.13 0 203.51 0 219.14v222.8c0 14.33 11.59 26.28 26.49 27.05 43.66 2.29 131.99 10.68 193.04 41.43 9.37 4.72 20.48-1.71 20.48-11.87V252.56c-.01-4.67-2.32-8.95-6.42-11.46zm248.61-49.05c-48.35 2.74-144.46 12.73-203.78 49.05-4.1 2.51-6.41 6.96-6.41 11.63v245.79c0 10.19 11.14 16.63 20.54 11.9 61.04-30.72 149.32-39.11 192.97-41.4 14.9-.78 26.49-12.73 26.49-27.06V219.14c-.01-15.63-13.56-28.01-29.81-27.09z"],bookmark:[384,512,[],"f02e","M0 512V48C0 21.49 21.49 0 48 0h288c26.51 0 48 21.49 48 48v464L192 400 0 512z"],"border-all":[448,512,[],"f84c","M416 32H32A32 32 0 0 0 0 64v384a32 32 0 0 0 32 32h384a32 32 0 0 0 32-32V64a32 32 0 0 0-32-32zm-32 64v128H256V96zm-192 0v128H64V96zM64 416V288h128v128zm192 0V288h128v128z"],"border-none":[448,512,[],"f850","M240 224h-32a16 16 0 0 0-16 16v32a16 16 0 0 0 16 16h32a16 16 0 0 0 16-16v-32a16 16 0 0 0-16-16zm96 0h-32a16 16 0 0 0-16 16v32a16 16 0 0 0 16 16h32a16 16 0 0 0 16-16v-32a16 16 0 0 0-16-16zm96 0h-32a16 16 0 0 0-16 16v32a16 16 0 0 0 16 16h32a16 16 0 0 0 16-16v-32a16 16 0 0 0-16-16zm-288 0h-32a16 16 0 0 0-16 16v32a16 16 0 0 0 16 16h32a16 16 0 0 0 16-16v-32a16 16 0 0 0-16-16zm96 192h-32a16 16 0 0 0-16 16v32a16 16 0 0 0 16 16h32a16 16 0 0 0 16-16v-32a16 16 0 0 0-16-16zm96 0h-32a16 16 0 0 0-16 16v32a16 16 0 0 0 16 16h32a16 16 0 0 0 16-16v-32a16 16 0 0 0-16-16zm96 0h-32a16 16 0 0 0-16 16v32a16 16 0 0 0 16 16h32a16 16 0 0 0 16-16v-32a16 16 0 0 0-16-16zm0-96h-32a16 16 0 0 0-16 16v32a16 16 0 0 0 16 16h32a16 16 0 0 0 16-16v-32a16 16 0 0 0-16-16zm0-192h-32a16 16 0 0 0-16 16v32a16 16 0 0 0 16 16h32a16 16 0 0 0 16-16v-32a16 16 0 0 0-16-16zM240 320h-32a16 16 0 0 0-16 16v32a16 16 0 0 0 16 16h32a16 16 0 0 0 16-16v-32a16 16 0 0 0-16-16zm0-192h-32a16 16 0 0 0-16 16v32a16 16 0 0 0 16 16h32a16 16 0 0 0 16-16v-32a16 16 0 0 0-16-16zm-96 288h-32a16 16 0 0 0-16 16v32a16 16 0 0 0 16 16h32a16 16 0 0 0 16-16v-32a16 16 0 0 0-16-16zm96-384h-32a16 16 0 0 0-16 16v32a16 16 0 0 0 16 16h32a16 16 0 0 0 16-16V48a16 16 0 0 0-16-16zm96 0h-32a16 16 0 0 0-16 16v32a16 16 0 0 0 16 16h32a16 16 0 0 0 16-16V48a16 16 0 0 0-16-16zm96 0h-32a16 16 0 0 0-16 16v32a16 16 0 0 0 16 16h32a16 16 0 0 0 16-16V48a16 16 0 0 0-16-16zM48 224H16a16 16 0 0 0-16 16v32a16 16 0 0 0 16 16h32a16 16 0 0 0 16-16v-32a16 16 0 0 0-16-16zm0 192H16a16 16 0 0 0-16 16v32a16 16 0 0 0 16 16h32a16 16 0 0 0 16-16v-32a16 16 0 0 0-16-16zm0-96H16a16 16 0 0 0-16 16v32a16 16 0 0 0 16 16h32a16 16 0 0 0 16-16v-32a16 16 0 0 0-16-16zm0-192H16a16 16 0 0 0-16 16v32a16 16 0 0 0 16 16h32a16 16 0 0 0 16-16v-32a16 16 0 0 0-16-16zm0-96H16A16 16 0 0 0 0 48v32a16 16 0 0 0 16 16h32a16 16 0 0 0 16-16V48a16 16 0 0 0-16-16zm96 0h-32a16 16 0 0 0-16 16v32a16 16 0 0 0 16 16h32a16 16 0 0 0 16-16V48a16 16 0 0 0-16-16z"],"border-style":[448,512,[],"f853","M240 416h-32a16 16 0 0 0-16 16v32a16 16 0 0 0 16 16h32a16 16 0 0 0 16-16v-32a16 16 0 0 0-16-16zm-96 0h-32a16 16 0 0 0-16 16v32a16 16 0 0 0 16 16h32a16 16 0 0 0 16-16v-32a16 16 0 0 0-16-16zm192 0h-32a16 16 0 0 0-16 16v32a16 16 0 0 0 16 16h32a16 16 0 0 0 16-16v-32a16 16 0 0 0-16-16zm96-192h-32a16 16 0 0 0-16 16v32a16 16 0 0 0 16 16h32a16 16 0 0 0 16-16v-32a16 16 0 0 0-16-16zm0 96h-32a16 16 0 0 0-16 16v32a16 16 0 0 0 16 16h32a16 16 0 0 0 16-16v-32a16 16 0 0 0-16-16zm0 96h-32a16 16 0 0 0-16 16v32a16 16 0 0 0 16 16h32a16 16 0 0 0 16-16v-32a16 16 0 0 0-16-16zm0-288h-32a16 16 0 0 0-16 16v32a16 16 0 0 0 16 16h32a16 16 0 0 0 16-16v-32a16 16 0 0 0-16-16zm0-96H32A32 32 0 0 0 0 64v400a16 16 0 0 0 16 16h32a16 16 0 0 0 16-16V96h368a16 16 0 0 0 16-16V48a16 16 0 0 0-16-16z"],"bowling-ball":[496,512,[],"f436","M248 8C111 8 0 119 0 256s111 248 248 248 248-111 248-248S385 8 248 8zM120 192c-17.7 0-32-14.3-32-32s14.3-32 32-32 32 14.3 32 32-14.3 32-32 32zm64-96c0-17.7 14.3-32 32-32s32 14.3 32 32-14.3 32-32 32-32-14.3-32-32zm48 144c-17.7 0-32-14.3-32-32s14.3-32 32-32 32 14.3 32 32-14.3 32-32 32z"],box:[512,512,[],"f466","M509.5 184.6L458.9 32.8C452.4 13.2 434.1 0 413.4 0H272v192h238.7c-.4-2.5-.4-5-1.2-7.4zM240 0H98.6c-20.7 0-39 13.2-45.5 32.8L2.5 184.6c-.8 2.4-.8 4.9-1.2 7.4H240V0zM0 224v240c0 26.5 21.5 48 48 48h416c26.5 0 48-21.5 48-48V224H0z"],"box-open":[640,512,[],"f49e","M425.7 256c-16.9 0-32.8-9-41.4-23.4L320 126l-64.2 106.6c-8.7 14.5-24.6 23.5-41.5 23.5-4.5 0-9-.6-13.3-1.9L64 215v178c0 14.7 10 27.5 24.2 31l216.2 54.1c10.2 2.5 20.9 2.5 31 0L551.8 424c14.2-3.6 24.2-16.4 24.2-31V215l-137 39.1c-4.3 1.3-8.8 1.9-13.3 1.9zm212.6-112.2L586.8 41c-3.1-6.2-9.8-9.8-16.7-8.9L320 64l91.7 152.1c3.8 6.3 11.4 9.3 18.5 7.3l197.9-56.5c9.9-2.9 14.7-13.9 10.2-23.1zM53.2 41L1.7 143.8c-4.6 9.2.3 20.2 10.1 23l197.9 56.5c7.1 2 14.7-1 18.5-7.3L320 64 69.8 32.1c-6.9-.8-13.5 2.7-16.6 8.9z"],boxes:[576,512,[],"f468","M560 288h-80v96l-32-21.3-32 21.3v-96h-80c-8.8 0-16 7.2-16 16v192c0 8.8 7.2 16 16 16h224c8.8 0 16-7.2 16-16V304c0-8.8-7.2-16-16-16zm-384-64h224c8.8 0 16-7.2 16-16V16c0-8.8-7.2-16-16-16h-80v96l-32-21.3L256 96V0h-80c-8.8 0-16 7.2-16 16v192c0 8.8 7.2 16 16 16zm64 64h-80v96l-32-21.3L96 384v-96H16c-8.8 0-16 7.2-16 16v192c0 8.8 7.2 16 16 16h224c8.8 0 16-7.2 16-16V304c0-8.8-7.2-16-16-16z"],braille:[640,512,[],"f2a1","M128 256c0 35.346-28.654 64-64 64S0 291.346 0 256s28.654-64 64-64 64 28.654 64 64zM64 384c-17.673 0-32 14.327-32 32s14.327 32 32 32 32-14.327 32-32-14.327-32-32-32zm0-352C28.654 32 0 60.654 0 96s28.654 64 64 64 64-28.654 64-64-28.654-64-64-64zm160 192c-17.673 0-32 14.327-32 32s14.327 32 32 32 32-14.327 32-32-14.327-32-32-32zm0 160c-17.673 0-32 14.327-32 32s14.327 32 32 32 32-14.327 32-32-14.327-32-32-32zm0-352c-35.346 0-64 28.654-64 64s28.654 64 64 64 64-28.654 64-64-28.654-64-64-64zm224 192c-17.673 0-32 14.327-32 32s14.327 32 32 32 32-14.327 32-32-14.327-32-32-32zm0 160c-17.673 0-32 14.327-32 32s14.327 32 32 32 32-14.327 32-32-14.327-32-32-32zm0-352c-35.346 0-64 28.654-64 64s28.654 64 64 64 64-28.654 64-64-28.654-64-64-64zm160 192c-17.673 0-32 14.327-32 32s14.327 32 32 32 32-14.327 32-32-14.327-32-32-32zm0 160c-17.673 0-32 14.327-32 32s14.327 32 32 32 32-14.327 32-32-14.327-32-32-32zm0-320c-17.673 0-32 14.327-32 32s14.327 32 32 32 32-14.327 32-32-14.327-32-32-32z"],brain:[576,512,[],"f5dc","M208 0c-29.9 0-54.7 20.5-61.8 48.2-.8 0-1.4-.2-2.2-.2-35.3 0-64 28.7-64 64 0 4.8.6 9.5 1.7 14C52.5 138 32 166.6 32 200c0 12.6 3.2 24.3 8.3 34.9C16.3 248.7 0 274.3 0 304c0 33.3 20.4 61.9 49.4 73.9-.9 4.6-1.4 9.3-1.4 14.1 0 39.8 32.2 72 72 72 4.1 0 8.1-.5 12-1.2 9.6 28.5 36.2 49.2 68 49.2 39.8 0 72-32.2 72-72V64c0-35.3-28.7-64-64-64zm368 304c0-29.7-16.3-55.3-40.3-69.1 5.2-10.6 8.3-22.3 8.3-34.9 0-33.4-20.5-62-49.7-74 1-4.5 1.7-9.2 1.7-14 0-35.3-28.7-64-64-64-.8 0-1.5.2-2.2.2C422.7 20.5 397.9 0 368 0c-35.3 0-64 28.6-64 64v376c0 39.8 32.2 72 72 72 31.8 0 58.4-20.7 68-49.2 3.9.7 7.9 1.2 12 1.2 39.8 0 72-32.2 72-72 0-4.8-.5-9.5-1.4-14.1 29-12 49.4-40.6 49.4-73.9z"],"bread-slice":[576,512,[],"f7ec","M288 0C108 0 0 93.4 0 169.14 0 199.44 24.24 224 64 224v256c0 17.67 16.12 32 36 32h376c19.88 0 36-14.33 36-32V224c39.76 0 64-24.56 64-54.86C576 93.4 468 0 288 0z"],briefcase:[512,512,[],"f0b1","M320 336c0 8.84-7.16 16-16 16h-96c-8.84 0-16-7.16-16-16v-48H0v144c0 25.6 22.4 48 48 48h416c25.6 0 48-22.4 48-48V288H320v48zm144-208h-80V80c0-25.6-22.4-48-48-48H176c-25.6 0-48 22.4-48 48v48H48c-25.6 0-48 22.4-48 48v80h512v-80c0-25.6-22.4-48-48-48zm-144 0H192V96h128v32z"],"briefcase-medical":[512,512,[],"f469","M464 128h-80V80c0-26.5-21.5-48-48-48H176c-26.5 0-48 21.5-48 48v48H48c-26.5 0-48 21.5-48 48v288c0 26.5 21.5 48 48 48h416c26.5 0 48-21.5 48-48V176c0-26.5-21.5-48-48-48zM192 96h128v32H192V96zm160 248c0 4.4-3.6 8-8 8h-56v56c0 4.4-3.6 8-8 8h-48c-4.4 0-8-3.6-8-8v-56h-56c-4.4 0-8-3.6-8-8v-48c0-4.4 3.6-8 8-8h56v-56c0-4.4 3.6-8 8-8h48c4.4 0 8 3.6 8 8v56h56c4.4 0 8 3.6 8 8v48z"],"broadcast-tower":[640,512,[],"f519","M150.94 192h33.73c11.01 0 18.61-10.83 14.86-21.18-4.93-13.58-7.55-27.98-7.55-42.82s2.62-29.24 7.55-42.82C203.29 74.83 195.68 64 184.67 64h-33.73c-7.01 0-13.46 4.49-15.41 11.23C130.64 92.21 128 109.88 128 128c0 18.12 2.64 35.79 7.54 52.76 1.94 6.74 8.39 11.24 15.4 11.24zM89.92 23.34C95.56 12.72 87.97 0 75.96 0H40.63c-6.27 0-12.14 3.59-14.74 9.31C9.4 45.54 0 85.65 0 128c0 24.75 3.12 68.33 26.69 118.86 2.62 5.63 8.42 9.14 14.61 9.14h34.84c12.02 0 19.61-12.74 13.95-23.37-49.78-93.32-16.71-178.15-.17-209.29zM614.06 9.29C611.46 3.58 605.6 0 599.33 0h-35.42c-11.98 0-19.66 12.66-14.02 23.25 18.27 34.29 48.42 119.42.28 209.23-5.72 10.68 1.8 23.52 13.91 23.52h35.23c6.27 0 12.13-3.58 14.73-9.29C630.57 210.48 640 170.36 640 128s-9.42-82.48-25.94-118.71zM489.06 64h-33.73c-11.01 0-18.61 10.83-14.86 21.18 4.93 13.58 7.55 27.98 7.55 42.82s-2.62 29.24-7.55 42.82c-3.76 10.35 3.85 21.18 14.86 21.18h33.73c7.02 0 13.46-4.49 15.41-11.24 4.9-16.97 7.53-34.64 7.53-52.76 0-18.12-2.64-35.79-7.54-52.76-1.94-6.75-8.39-11.24-15.4-11.24zm-116.3 100.12c7.05-10.29 11.2-22.71 11.2-36.12 0-35.35-28.63-64-63.96-64-35.32 0-63.96 28.65-63.96 64 0 13.41 4.15 25.83 11.2 36.12l-130.5 313.41c-3.4 8.15.46 17.52 8.61 20.92l29.51 12.31c8.15 3.4 17.52-.46 20.91-8.61L244.96 384h150.07l49.2 118.15c3.4 8.16 12.76 12.01 20.91 8.61l29.51-12.31c8.15-3.4 12-12.77 8.61-20.92l-130.5-313.41zM271.62 320L320 203.81 368.38 320h-96.76z"],broom:[640,512,[],"f51a","M256.47 216.77l86.73 109.18s-16.6 102.36-76.57 150.12C206.66 523.85 0 510.19 0 510.19s3.8-23.14 11-55.43l94.62-112.17c3.97-4.7-.87-11.62-6.65-9.5l-60.4 22.09c14.44-41.66 32.72-80.04 54.6-97.47 59.97-47.76 163.3-40.94 163.3-40.94zM636.53 31.03l-19.86-25c-5.49-6.9-15.52-8.05-22.41-2.56l-232.48 177.8-34.14-42.97c-5.09-6.41-15.14-5.21-18.59 2.21l-25.33 54.55 86.73 109.18 58.8-12.45c8-1.69 11.42-11.2 6.34-17.6l-34.09-42.92 232.48-177.8c6.89-5.48 8.04-15.53 2.55-22.44z"],brush:[384,512,[],"f55d","M352 0H32C14.33 0 0 14.33 0 32v224h384V32c0-17.67-14.33-32-32-32zM0 320c0 35.35 28.66 64 64 64h64v64c0 35.35 28.66 64 64 64s64-28.65 64-64v-64h64c35.34 0 64-28.65 64-64v-32H0v32zm192 104c13.25 0 24 10.74 24 24 0 13.25-10.75 24-24 24s-24-10.75-24-24c0-13.26 10.75-24 24-24z"],bug:[512,512,[],"f188","M511.988 288.9c-.478 17.43-15.217 31.1-32.653 31.1H424v16c0 21.864-4.882 42.584-13.6 61.145l60.228 60.228c12.496 12.497 12.496 32.758 0 45.255-12.498 12.497-32.759 12.496-45.256 0l-54.736-54.736C345.886 467.965 314.351 480 280 480V236c0-6.627-5.373-12-12-12h-24c-6.627 0-12 5.373-12 12v244c-34.351 0-65.886-12.035-90.636-32.108l-54.736 54.736c-12.498 12.497-32.759 12.496-45.256 0-12.496-12.497-12.496-32.758 0-45.255l60.228-60.228C92.882 378.584 88 357.864 88 336v-16H32.666C15.23 320 .491 306.33.013 288.9-.484 270.816 14.028 256 32 256h56v-58.745l-46.628-46.628c-12.496-12.497-12.496-32.758 0-45.255 12.498-12.497 32.758-12.497 45.256 0L141.255 160h229.489l54.627-54.627c12.498-12.497 32.758-12.497 45.256 0 12.496 12.497 12.496 32.758 0 45.255L424 197.255V256h56c17.972 0 32.484 14.816 31.988 32.9zM257 0c-61.856 0-112 50.144-112 112h224C369 50.144 318.856 0 257 0z"],building:[448,512,[],"f1ad","M436 480h-20V24c0-13.255-10.745-24-24-24H56C42.745 0 32 10.745 32 24v456H12c-6.627 0-12 5.373-12 12v20h448v-20c0-6.627-5.373-12-12-12zM128 76c0-6.627 5.373-12 12-12h40c6.627 0 12 5.373 12 12v40c0 6.627-5.373 12-12 12h-40c-6.627 0-12-5.373-12-12V76zm0 96c0-6.627 5.373-12 12-12h40c6.627 0 12 5.373 12 12v40c0 6.627-5.373 12-12 12h-40c-6.627 0-12-5.373-12-12v-40zm52 148h-40c-6.627 0-12-5.373-12-12v-40c0-6.627 5.373-12 12-12h40c6.627 0 12 5.373 12 12v40c0 6.627-5.373 12-12 12zm76 160h-64v-84c0-6.627 5.373-12 12-12h40c6.627 0 12 5.373 12 12v84zm64-172c0 6.627-5.373 12-12 12h-40c-6.627 0-12-5.373-12-12v-40c0-6.627 5.373-12 12-12h40c6.627 0 12 5.373 12 12v40zm0-96c0 6.627-5.373 12-12 12h-40c-6.627 0-12-5.373-12-12v-40c0-6.627 5.373-12 12-12h40c6.627 0 12 5.373 12 12v40zm0-96c0 6.627-5.373 12-12 12h-40c-6.627 0-12-5.373-12-12V76c0-6.627 5.373-12 12-12h40c6.627 0 12 5.373 12 12v40z"],bullhorn:[576,512,[],"f0a1","M576 240c0-23.63-12.95-44.04-32-55.12V32.01C544 23.26 537.02 0 512 0c-7.12 0-14.19 2.38-19.98 7.02l-85.03 68.03C364.28 109.19 310.66 128 256 128H64c-35.35 0-64 28.65-64 64v96c0 35.35 28.65 64 64 64h33.7c-1.39 10.48-2.18 21.14-2.18 32 0 39.77 9.26 77.35 25.56 110.94 5.19 10.69 16.52 17.06 28.4 17.06h74.28c26.05 0 41.69-29.84 25.9-50.56-16.4-21.52-26.15-48.36-26.15-77.44 0-11.11 1.62-21.79 4.41-32H256c54.66 0 108.28 18.81 150.98 52.95l85.03 68.03a32.023 32.023 0 0 0 19.98 7.02c24.92 0 32-22.78 32-32V295.13C563.05 284.04 576 263.63 576 240zm-96 141.42l-33.05-26.44C392.95 311.78 325.12 288 256 288v-96c69.12 0 136.95-23.78 190.95-66.98L480 98.58v282.84z"],bullseye:[496,512,[],"f140","M248 8C111.03 8 0 119.03 0 256s111.03 248 248 248 248-111.03 248-248S384.97 8 248 8zm0 432c-101.69 0-184-82.29-184-184 0-101.69 82.29-184 184-184 101.69 0 184 82.29 184 184 0 101.69-82.29 184-184 184zm0-312c-70.69 0-128 57.31-128 128s57.31 128 128 128 128-57.31 128-128-57.31-128-128-128zm0 192c-35.29 0-64-28.71-64-64s28.71-64 64-64 64 28.71 64 64-28.71 64-64 64z"],burn:[384,512,[],"f46a","M192 0C79.7 101.3 0 220.9 0 300.5 0 425 79 512 192 512s192-87 192-211.5c0-79.9-80.2-199.6-192-300.5zm0 448c-56.5 0-96-39-96-94.8 0-13.5 4.6-61.5 96-161.2 91.4 99.7 96 147.7 96 161.2 0 55.8-39.5 94.8-96 94.8z"],bus:[512,512,[],"f207","M488 128h-8V80c0-44.8-99.2-80-224-80S32 35.2 32 80v48h-8c-13.25 0-24 10.74-24 24v80c0 13.25 10.75 24 24 24h8v160c0 17.67 14.33 32 32 32v32c0 17.67 14.33 32 32 32h32c17.67 0 32-14.33 32-32v-32h192v32c0 17.67 14.33 32 32 32h32c17.67 0 32-14.33 32-32v-32h6.4c16 0 25.6-12.8 25.6-25.6V256h8c13.25 0 24-10.75 24-24v-80c0-13.26-10.75-24-24-24zM112 400c-17.67 0-32-14.33-32-32s14.33-32 32-32 32 14.33 32 32-14.33 32-32 32zm16-112c-17.67 0-32-14.33-32-32V128c0-17.67 14.33-32 32-32h256c17.67 0 32 14.33 32 32v128c0 17.67-14.33 32-32 32H128zm272 112c-17.67 0-32-14.33-32-32s14.33-32 32-32 32 14.33 32 32-14.33 32-32 32z"],"bus-alt":[512,512,[],"f55e","M488 128h-8V80c0-44.8-99.2-80-224-80S32 35.2 32 80v48h-8c-13.25 0-24 10.74-24 24v80c0 13.25 10.75 24 24 24h8v160c0 17.67 14.33 32 32 32v32c0 17.67 14.33 32 32 32h32c17.67 0 32-14.33 32-32v-32h192v32c0 17.67 14.33 32 32 32h32c17.67 0 32-14.33 32-32v-32h6.4c16 0 25.6-12.8 25.6-25.6V256h8c13.25 0 24-10.75 24-24v-80c0-13.26-10.75-24-24-24zM160 72c0-4.42 3.58-8 8-8h176c4.42 0 8 3.58 8 8v16c0 4.42-3.58 8-8 8H168c-4.42 0-8-3.58-8-8V72zm-48 328c-17.67 0-32-14.33-32-32s14.33-32 32-32 32 14.33 32 32-14.33 32-32 32zm128-112H128c-17.67 0-32-14.33-32-32v-96c0-17.67 14.33-32 32-32h112v160zm32 0V128h112c17.67 0 32 14.33 32 32v96c0 17.67-14.33 32-32 32H272zm128 112c-17.67 0-32-14.33-32-32s14.33-32 32-32 32 14.33 32 32-14.33 32-32 32z"],"business-time":[640,512,[],"f64a","M496 224c-79.59 0-144 64.41-144 144s64.41 144 144 144 144-64.41 144-144-64.41-144-144-144zm64 150.29c0 5.34-4.37 9.71-9.71 9.71h-60.57c-5.34 0-9.71-4.37-9.71-9.71v-76.57c0-5.34 4.37-9.71 9.71-9.71h12.57c5.34 0 9.71 4.37 9.71 9.71V352h38.29c5.34 0 9.71 4.37 9.71 9.71v12.58zM496 192c5.4 0 10.72.33 16 .81V144c0-25.6-22.4-48-48-48h-80V48c0-25.6-22.4-48-48-48H176c-25.6 0-48 22.4-48 48v48H48c-25.6 0-48 22.4-48 48v80h395.12c28.6-20.09 63.35-32 100.88-32zM320 96H192V64h128v32zm6.82 224H208c-8.84 0-16-7.16-16-16v-48H0v144c0 25.6 22.4 48 48 48h291.43C327.1 423.96 320 396.82 320 368c0-16.66 2.48-32.72 6.82-48z"],calculator:[448,512,[],"f1ec","M400 0H48C22.4 0 0 22.4 0 48v416c0 25.6 22.4 48 48 48h352c25.6 0 48-22.4 48-48V48c0-25.6-22.4-48-48-48zM128 435.2c0 6.4-6.4 12.8-12.8 12.8H76.8c-6.4 0-12.8-6.4-12.8-12.8v-38.4c0-6.4 6.4-12.8 12.8-12.8h38.4c6.4 0 12.8 6.4 12.8 12.8v38.4zm0-128c0 6.4-6.4 12.8-12.8 12.8H76.8c-6.4 0-12.8-6.4-12.8-12.8v-38.4c0-6.4 6.4-12.8 12.8-12.8h38.4c6.4 0 12.8 6.4 12.8 12.8v38.4zm128 128c0 6.4-6.4 12.8-12.8 12.8h-38.4c-6.4 0-12.8-6.4-12.8-12.8v-38.4c0-6.4 6.4-12.8 12.8-12.8h38.4c6.4 0 12.8 6.4 12.8 12.8v38.4zm0-128c0 6.4-6.4 12.8-12.8 12.8h-38.4c-6.4 0-12.8-6.4-12.8-12.8v-38.4c0-6.4 6.4-12.8 12.8-12.8h38.4c6.4 0 12.8 6.4 12.8 12.8v38.4zm128 128c0 6.4-6.4 12.8-12.8 12.8h-38.4c-6.4 0-12.8-6.4-12.8-12.8V268.8c0-6.4 6.4-12.8 12.8-12.8h38.4c6.4 0 12.8 6.4 12.8 12.8v166.4zm0-256c0 6.4-6.4 12.8-12.8 12.8H76.8c-6.4 0-12.8-6.4-12.8-12.8V76.8C64 70.4 70.4 64 76.8 64h294.4c6.4 0 12.8 6.4 12.8 12.8v102.4z"],calendar:[448,512,[],"f133","M12 192h424c6.6 0 12 5.4 12 12v260c0 26.5-21.5 48-48 48H48c-26.5 0-48-21.5-48-48V204c0-6.6 5.4-12 12-12zm436-44v-36c0-26.5-21.5-48-48-48h-48V12c0-6.6-5.4-12-12-12h-40c-6.6 0-12 5.4-12 12v52H160V12c0-6.6-5.4-12-12-12h-40c-6.6 0-12 5.4-12 12v52H48C21.5 64 0 85.5 0 112v36c0 6.6 5.4 12 12 12h424c6.6 0 12-5.4 12-12z"],"calendar-alt":[448,512,[],"f073","M0 464c0 26.5 21.5 48 48 48h352c26.5 0 48-21.5 48-48V192H0v272zm320-196c0-6.6 5.4-12 12-12h40c6.6 0 12 5.4 12 12v40c0 6.6-5.4 12-12 12h-40c-6.6 0-12-5.4-12-12v-40zm0 128c0-6.6 5.4-12 12-12h40c6.6 0 12 5.4 12 12v40c0 6.6-5.4 12-12 12h-40c-6.6 0-12-5.4-12-12v-40zM192 268c0-6.6 5.4-12 12-12h40c6.6 0 12 5.4 12 12v40c0 6.6-5.4 12-12 12h-40c-6.6 0-12-5.4-12-12v-40zm0 128c0-6.6 5.4-12 12-12h40c6.6 0 12 5.4 12 12v40c0 6.6-5.4 12-12 12h-40c-6.6 0-12-5.4-12-12v-40zM64 268c0-6.6 5.4-12 12-12h40c6.6 0 12 5.4 12 12v40c0 6.6-5.4 12-12 12H76c-6.6 0-12-5.4-12-12v-40zm0 128c0-6.6 5.4-12 12-12h40c6.6 0 12 5.4 12 12v40c0 6.6-5.4 12-12 12H76c-6.6 0-12-5.4-12-12v-40zM400 64h-48V16c0-8.8-7.2-16-16-16h-32c-8.8 0-16 7.2-16 16v48H160V16c0-8.8-7.2-16-16-16h-32c-8.8 0-16 7.2-16 16v48H48C21.5 64 0 85.5 0 112v48h448v-48c0-26.5-21.5-48-48-48z"],"calendar-check":[448,512,[],"f274","M436 160H12c-6.627 0-12-5.373-12-12v-36c0-26.51 21.49-48 48-48h48V12c0-6.627 5.373-12 12-12h40c6.627 0 12 5.373 12 12v52h128V12c0-6.627 5.373-12 12-12h40c6.627 0 12 5.373 12 12v52h48c26.51 0 48 21.49 48 48v36c0 6.627-5.373 12-12 12zM12 192h424c6.627 0 12 5.373 12 12v260c0 26.51-21.49 48-48 48H48c-26.51 0-48-21.49-48-48V204c0-6.627 5.373-12 12-12zm333.296 95.947l-28.169-28.398c-4.667-4.705-12.265-4.736-16.97-.068L194.12 364.665l-45.98-46.352c-4.667-4.705-12.266-4.736-16.971-.068l-28.397 28.17c-4.705 4.667-4.736 12.265-.068 16.97l82.601 83.269c4.667 4.705 12.265 4.736 16.97.068l142.953-141.805c4.705-4.667 4.736-12.265.068-16.97z"],"calendar-day":[448,512,[],"f783","M0 464c0 26.5 21.5 48 48 48h352c26.5 0 48-21.5 48-48V192H0v272zm64-192c0-8.8 7.2-16 16-16h96c8.8 0 16 7.2 16 16v96c0 8.8-7.2 16-16 16H80c-8.8 0-16-7.2-16-16v-96zM400 64h-48V16c0-8.8-7.2-16-16-16h-32c-8.8 0-16 7.2-16 16v48H160V16c0-8.8-7.2-16-16-16h-32c-8.8 0-16 7.2-16 16v48H48C21.5 64 0 85.5 0 112v48h448v-48c0-26.5-21.5-48-48-48z"],"calendar-minus":[448,512,[],"f272","M436 160H12c-6.6 0-12-5.4-12-12v-36c0-26.5 21.5-48 48-48h48V12c0-6.6 5.4-12 12-12h40c6.6 0 12 5.4 12 12v52h128V12c0-6.6 5.4-12 12-12h40c6.6 0 12 5.4 12 12v52h48c26.5 0 48 21.5 48 48v36c0 6.6-5.4 12-12 12zM12 192h424c6.6 0 12 5.4 12 12v260c0 26.5-21.5 48-48 48H48c-26.5 0-48-21.5-48-48V204c0-6.6 5.4-12 12-12zm304 192c6.6 0 12-5.4 12-12v-40c0-6.6-5.4-12-12-12H132c-6.6 0-12 5.4-12 12v40c0 6.6 5.4 12 12 12h184z"],"calendar-plus":[448,512,[],"f271","M436 160H12c-6.6 0-12-5.4-12-12v-36c0-26.5 21.5-48 48-48h48V12c0-6.6 5.4-12 12-12h40c6.6 0 12 5.4 12 12v52h128V12c0-6.6 5.4-12 12-12h40c6.6 0 12 5.4 12 12v52h48c26.5 0 48 21.5 48 48v36c0 6.6-5.4 12-12 12zM12 192h424c6.6 0 12 5.4 12 12v260c0 26.5-21.5 48-48 48H48c-26.5 0-48-21.5-48-48V204c0-6.6 5.4-12 12-12zm316 140c0-6.6-5.4-12-12-12h-60v-60c0-6.6-5.4-12-12-12h-40c-6.6 0-12 5.4-12 12v60h-60c-6.6 0-12 5.4-12 12v40c0 6.6 5.4 12 12 12h60v60c0 6.6 5.4 12 12 12h40c6.6 0 12-5.4 12-12v-60h60c6.6 0 12-5.4 12-12v-40z"],"calendar-times":[448,512,[],"f273","M436 160H12c-6.6 0-12-5.4-12-12v-36c0-26.5 21.5-48 48-48h48V12c0-6.6 5.4-12 12-12h40c6.6 0 12 5.4 12 12v52h128V12c0-6.6 5.4-12 12-12h40c6.6 0 12 5.4 12 12v52h48c26.5 0 48 21.5 48 48v36c0 6.6-5.4 12-12 12zM12 192h424c6.6 0 12 5.4 12 12v260c0 26.5-21.5 48-48 48H48c-26.5 0-48-21.5-48-48V204c0-6.6 5.4-12 12-12zm257.3 160l48.1-48.1c4.7-4.7 4.7-12.3 0-17l-28.3-28.3c-4.7-4.7-12.3-4.7-17 0L224 306.7l-48.1-48.1c-4.7-4.7-12.3-4.7-17 0l-28.3 28.3c-4.7 4.7-4.7 12.3 0 17l48.1 48.1-48.1 48.1c-4.7 4.7-4.7 12.3 0 17l28.3 28.3c4.7 4.7 12.3 4.7 17 0l48.1-48.1 48.1 48.1c4.7 4.7 12.3 4.7 17 0l28.3-28.3c4.7-4.7 4.7-12.3 0-17L269.3 352z"],"calendar-week":[448,512,[],"f784","M0 464c0 26.5 21.5 48 48 48h352c26.5 0 48-21.5 48-48V192H0v272zm64-192c0-8.8 7.2-16 16-16h288c8.8 0 16 7.2 16 16v64c0 8.8-7.2 16-16 16H80c-8.8 0-16-7.2-16-16v-64zM400 64h-48V16c0-8.8-7.2-16-16-16h-32c-8.8 0-16 7.2-16 16v48H160V16c0-8.8-7.2-16-16-16h-32c-8.8 0-16 7.2-16 16v48H48C21.5 64 0 85.5 0 112v48h448v-48c0-26.5-21.5-48-48-48z"],camera:[512,512,[],"f030","M512 144v288c0 26.5-21.5 48-48 48H48c-26.5 0-48-21.5-48-48V144c0-26.5 21.5-48 48-48h88l12.3-32.9c7-18.7 24.9-31.1 44.9-31.1h125.5c20 0 37.9 12.4 44.9 31.1L376 96h88c26.5 0 48 21.5 48 48zM376 288c0-66.2-53.8-120-120-120s-120 53.8-120 120 53.8 120 120 120 120-53.8 120-120zm-32 0c0 48.5-39.5 88-88 88s-88-39.5-88-88 39.5-88 88-88 88 39.5 88 88z"],"camera-retro":[512,512,[],"f083","M48 32C21.5 32 0 53.5 0 80v352c0 26.5 21.5 48 48 48h416c26.5 0 48-21.5 48-48V80c0-26.5-21.5-48-48-48H48zm0 32h106c3.3 0 6 2.7 6 6v20c0 3.3-2.7 6-6 6H38c-3.3 0-6-2.7-6-6V80c0-8.8 7.2-16 16-16zm426 96H38c-3.3 0-6-2.7-6-6v-36c0-3.3 2.7-6 6-6h138l30.2-45.3c1.1-1.7 3-2.7 5-2.7H464c8.8 0 16 7.2 16 16v74c0 3.3-2.7 6-6 6zM256 424c-66.2 0-120-53.8-120-120s53.8-120 120-120 120 53.8 120 120-53.8 120-120 120zm0-208c-48.5 0-88 39.5-88 88s39.5 88 88 88 88-39.5 88-88-39.5-88-88-88zm-48 104c-8.8 0-16-7.2-16-16 0-35.3 28.7-64 64-64 8.8 0 16 7.2 16 16s-7.2 16-16 16c-17.6 0-32 14.4-32 32 0 8.8-7.2 16-16 16z"],campground:[640,512,[],"f6bb","M624 448h-24.68L359.54 117.75l53.41-73.55c5.19-7.15 3.61-17.16-3.54-22.35l-25.9-18.79c-7.15-5.19-17.15-3.61-22.35 3.55L320 63.3 278.83 6.6c-5.19-7.15-15.2-8.74-22.35-3.55l-25.88 18.8c-7.15 5.19-8.74 15.2-3.54 22.35l53.41 73.55L40.68 448H16c-8.84 0-16 7.16-16 16v32c0 8.84 7.16 16 16 16h608c8.84 0 16-7.16 16-16v-32c0-8.84-7.16-16-16-16zM320 288l116.36 160H203.64L320 288z"],"candy-cane":[512,512,[],"f786","M497.5 92C469.6 33.1 411.8 0 352.4 0c-27.9 0-56.2 7.3-81.8 22.6L243.1 39c-15.2 9.1-20.1 28.7-11 43.9l32.8 54.9c6 10 16.6 15.6 27.5 15.6 5.6 0 11.2-1.5 16.4-4.5l27.5-16.4c5.1-3.1 10.8-4.5 16.4-4.5 10.9 0 21.5 5.6 27.5 15.6 9.1 15.1 4.1 34.8-11 43.9L15.6 397.6c-15.2 9.1-20.1 28.7-11 43.9l32.8 54.9c6 10 16.6 15.6 27.5 15.6 5.6 0 11.2-1.5 16.4-4.5L428.6 301c71.7-42.9 104.6-133.5 68.9-209zm-177.7 13l-2.5 1.5L296.8 45c9.7-4.7 19.8-8.1 30.3-10.2l20.6 61.8c-9.8.8-19.4 3.3-27.9 8.4zM145.9 431.8l-60.5-38.5 30.8-18.3 60.5 38.5-30.8 18.3zm107.5-63.9l-60.5-38.5 30.8-18.3 60.5 38.5-30.8 18.3zM364.3 302l-60.5-38.5 30.8-18.3 60.5 38.5-30.8 18.3zm20.4-197.3l46-46c8.4 6.5 16 14.1 22.6 22.6L407.6 127c-5.7-9.3-13.7-16.9-22.9-22.3zm82.1 107.8l-59.5-19.8c3.2-5.3 5.8-10.9 7.4-17.1 1.1-4.5 1.7-9.1 1.8-13.6l60.4 20.1c-2.1 10.4-5.5 20.6-10.1 30.4z"],cannabis:[512,512,[],"f55f","M503.47 360.25c-1.56-.82-32.39-16.89-76.78-25.81 64.25-75.12 84.05-161.67 84.93-165.64 1.18-5.33-.44-10.9-4.3-14.77-3.03-3.04-7.12-4.7-11.32-4.7-1.14 0-2.29.12-3.44.38-3.88.85-86.54 19.59-160.58 79.76.01-1.46.01-2.93.01-4.4 0-118.79-59.98-213.72-62.53-217.7A15.973 15.973 0 0 0 256 0c-5.45 0-10.53 2.78-13.47 7.37-2.55 3.98-62.53 98.91-62.53 217.7 0 1.47.01 2.94.01 4.4-74.03-60.16-156.69-78.9-160.58-79.76-1.14-.25-2.29-.38-3.44-.38-4.2 0-8.29 1.66-11.32 4.7A15.986 15.986 0 0 0 .38 168.8c.88 3.97 20.68 90.52 84.93 165.64-44.39 8.92-75.21 24.99-76.78 25.81a16.003 16.003 0 0 0-.02 28.29c2.45 1.29 60.76 31.72 133.49 31.72 6.14 0 11.96-.1 17.5-.31-11.37 22.23-16.52 38.31-16.81 39.22-1.8 5.68-.29 11.89 3.91 16.11a16.019 16.019 0 0 0 16.1 3.99c1.83-.57 37.72-11.99 77.3-39.29V504c0 4.42 3.58 8 8 8h16c4.42 0 8-3.58 8-8v-64.01c39.58 27.3 75.47 38.71 77.3 39.29a16.019 16.019 0 0 0 16.1-3.99c4.2-4.22 5.71-10.43 3.91-16.11-.29-.91-5.45-16.99-16.81-39.22 5.54.21 11.37.31 17.5.31 72.72 0 131.04-30.43 133.49-31.72 5.24-2.78 8.52-8.22 8.51-14.15-.01-5.94-3.29-11.39-8.53-14.15z"],capsules:[576,512,[],"f46b","M555.3 300.1L424.2 112.8C401.9 81 366.4 64 330.4 64c-22.6 0-45.5 6.7-65.5 20.7-19.7 13.8-33.7 32.8-41.5 53.8C220.5 79.2 172 32 112 32 50.1 32 0 82.1 0 144v224c0 61.9 50.1 112 112 112s112-50.1 112-112V218.9c3.3 8.6 7.3 17.1 12.8 25L368 431.2c22.2 31.8 57.7 48.8 93.8 48.8 22.7 0 45.5-6.7 65.5-20.7 51.7-36.2 64.2-107.5 28-159.2zM160 256H64V144c0-26.5 21.5-48 48-48s48 21.5 48 48v112zm194.8 44.9l-65.6-93.7c-7.7-11-10.7-24.4-8.3-37.6 2.3-13.2 9.7-24.8 20.7-32.5 8.5-6 18.5-9.1 28.8-9.1 16.5 0 31.9 8 41.3 21.5l65.6 93.7-82.5 57.7z"],car:[512,512,[],"f1b9","M499.99 176h-59.87l-16.64-41.6C406.38 91.63 365.57 64 319.5 64h-127c-46.06 0-86.88 27.63-103.99 70.4L71.87 176H12.01C4.2 176-1.53 183.34.37 190.91l6 24C7.7 220.25 12.5 224 18.01 224h20.07C24.65 235.73 16 252.78 16 272v48c0 16.12 6.16 30.67 16 41.93V416c0 17.67 14.33 32 32 32h32c17.67 0 32-14.33 32-32v-32h256v32c0 17.67 14.33 32 32 32h32c17.67 0 32-14.33 32-32v-54.07c9.84-11.25 16-25.8 16-41.93v-48c0-19.22-8.65-36.27-22.07-48H494c5.51 0 10.31-3.75 11.64-9.09l6-24c1.89-7.57-3.84-14.91-11.65-14.91zm-352.06-17.83c7.29-18.22 24.94-30.17 44.57-30.17h127c19.63 0 37.28 11.95 44.57 30.17L384 208H128l19.93-49.83zM96 319.8c-19.2 0-32-12.76-32-31.9S76.8 256 96 256s48 28.71 48 47.85-28.8 15.95-48 15.95zm320 0c-19.2 0-48 3.19-48-15.95S396.8 256 416 256s32 12.76 32 31.9-12.8 31.9-32 31.9z"],"car-alt":[480,512,[],"f5de","M438.66 212.33l-11.24-28.1-19.93-49.83C390.38 91.63 349.57 64 303.5 64h-127c-46.06 0-86.88 27.63-103.99 70.4l-19.93 49.83-11.24 28.1C17.22 221.5 0 244.66 0 272v48c0 16.12 6.16 30.67 16 41.93V416c0 17.67 14.33 32 32 32h32c17.67 0 32-14.33 32-32v-32h256v32c0 17.67 14.33 32 32 32h32c17.67 0 32-14.33 32-32v-54.07c9.84-11.25 16-25.8 16-41.93v-48c0-27.34-17.22-50.5-41.34-59.67zm-306.73-54.16c7.29-18.22 24.94-30.17 44.57-30.17h127c19.63 0 37.28 11.95 44.57 30.17L368 208H112l19.93-49.83zM80 319.8c-19.2 0-32-12.76-32-31.9S60.8 256 80 256s48 28.71 48 47.85-28.8 15.95-48 15.95zm320 0c-19.2 0-48 3.19-48-15.95S380.8 256 400 256s32 12.76 32 31.9-12.8 31.9-32 31.9z"],"car-battery":[512,512,[],"f5df","M480 128h-32V80c0-8.84-7.16-16-16-16h-96c-8.84 0-16 7.16-16 16v48H192V80c0-8.84-7.16-16-16-16H80c-8.84 0-16 7.16-16 16v48H32c-17.67 0-32 14.33-32 32v256c0 17.67 14.33 32 32 32h448c17.67 0 32-14.33 32-32V160c0-17.67-14.33-32-32-32zM192 264c0 4.42-3.58 8-8 8H72c-4.42 0-8-3.58-8-8v-16c0-4.42 3.58-8 8-8h112c4.42 0 8 3.58 8 8v16zm256 0c0 4.42-3.58 8-8 8h-40v40c0 4.42-3.58 8-8 8h-16c-4.42 0-8-3.58-8-8v-40h-40c-4.42 0-8-3.58-8-8v-16c0-4.42 3.58-8 8-8h40v-40c0-4.42 3.58-8 8-8h16c4.42 0 8 3.58 8 8v40h40c4.42 0 8 3.58 8 8v16z"],"car-crash":[640,512,[],"f5e1","M143.25 220.81l-12.42 46.37c-3.01 11.25-3.63 22.89-2.41 34.39l-35.2 28.98c-6.57 5.41-16.31-.43-14.62-8.77l15.44-76.68c1.06-5.26-2.66-10.28-8-10.79l-77.86-7.55c-8.47-.82-11.23-11.83-4.14-16.54l65.15-43.3c4.46-2.97 5.38-9.15 1.98-13.29L21.46 93.22c-5.41-6.57.43-16.3 8.78-14.62l76.68 15.44c5.26 1.06 10.28-2.66 10.8-8l7.55-77.86c.82-8.48 11.83-11.23 16.55-4.14l43.3 65.14c2.97 4.46 9.15 5.38 13.29 1.98l60.4-49.71c6.57-5.41 16.3.43 14.62 8.77L262.1 86.38c-2.71 3.05-5.43 6.09-7.91 9.4l-32.15 42.97-10.71 14.32c-32.73 8.76-59.18 34.53-68.08 67.74zm494.57 132.51l-12.42 46.36c-3.13 11.68-9.38 21.61-17.55 29.36a66.876 66.876 0 0 1-8.76 7l-13.99 52.23c-1.14 4.27-3.1 8.1-5.65 11.38-7.67 9.84-20.74 14.68-33.54 11.25L515 502.62c-17.07-4.57-27.2-22.12-22.63-39.19l8.28-30.91-247.28-66.26-8.28 30.91c-4.57 17.07-22.12 27.2-39.19 22.63l-30.91-8.28c-12.8-3.43-21.7-14.16-23.42-26.51-.57-4.12-.35-8.42.79-12.68l13.99-52.23a66.62 66.62 0 0 1-4.09-10.45c-3.2-10.79-3.65-22.52-.52-34.2l12.42-46.37c5.31-19.8 19.36-34.83 36.89-42.21a64.336 64.336 0 0 1 18.49-4.72l18.13-24.23 32.15-42.97c3.45-4.61 7.19-8.9 11.2-12.84 8-7.89 17.03-14.44 26.74-19.51 4.86-2.54 9.89-4.71 15.05-6.49 10.33-3.58 21.19-5.63 32.24-6.04 11.05-.41 22.31.82 33.43 3.8l122.68 32.87c11.12 2.98 21.48 7.54 30.85 13.43a111.11 111.11 0 0 1 34.69 34.5c8.82 13.88 14.64 29.84 16.68 46.99l6.36 53.29 3.59 30.05a64.49 64.49 0 0 1 22.74 29.93c4.39 11.88 5.29 25.19 1.75 38.39zM255.58 234.34c-18.55-4.97-34.21 4.04-39.17 22.53-4.96 18.49 4.11 34.12 22.65 39.09 18.55 4.97 45.54 15.51 50.49-2.98 4.96-18.49-15.43-53.67-33.97-58.64zm290.61 28.17l-6.36-53.29c-.58-4.87-1.89-9.53-3.82-13.86-5.8-12.99-17.2-23.01-31.42-26.82l-122.68-32.87a48.008 48.008 0 0 0-50.86 17.61l-32.15 42.97 172 46.08 75.29 20.18zm18.49 54.65c-18.55-4.97-53.8 15.31-58.75 33.79-4.95 18.49 23.69 22.86 42.24 27.83 18.55 4.97 34.21-4.04 39.17-22.53 4.95-18.48-4.11-34.12-22.66-39.09z"],"car-side":[640,512,[],"f5e4","M544 192h-16L419.22 56.02A64.025 64.025 0 0 0 369.24 32H155.33c-26.17 0-49.7 15.93-59.42 40.23L48 194.26C20.44 201.4 0 226.21 0 256v112c0 8.84 7.16 16 16 16h48c0 53.02 42.98 96 96 96s96-42.98 96-96h128c0 53.02 42.98 96 96 96s96-42.98 96-96h48c8.84 0 16-7.16 16-16v-80c0-53.02-42.98-96-96-96zM160 432c-26.47 0-48-21.53-48-48s21.53-48 48-48 48 21.53 48 48-21.53 48-48 48zm72-240H116.93l38.4-96H232v96zm48 0V96h89.24l76.8 96H280zm200 240c-26.47 0-48-21.53-48-48s21.53-48 48-48 48 21.53 48 48-21.53 48-48 48z"],caravan:[640,512,[],"f8ff","M416,208a16,16,0,1,0,16,16A16,16,0,0,0,416,208ZM624,320H576V160A160,160,0,0,0,416,0H64A64,64,0,0,0,0,64V320a64,64,0,0,0,64,64H96a96,96,0,0,0,192,0H624a16,16,0,0,0,16-16V336A16,16,0,0,0,624,320ZM192,432a48,48,0,1,1,48-48A48.05,48.05,0,0,1,192,432Zm64-240a32,32,0,0,1-32,32H96a32,32,0,0,1-32-32V128A32,32,0,0,1,96,96H224a32,32,0,0,1,32,32ZM448,320H320V128a32,32,0,0,1,32-32h64a32,32,0,0,1,32,32Z"],"caret-down":[320,512,[],"f0d7","M31.3 192h257.3c17.8 0 26.7 21.5 14.1 34.1L174.1 354.8c-7.8 7.8-20.5 7.8-28.3 0L17.2 226.1C4.6 213.5 13.5 192 31.3 192z"],"caret-left":[192,512,[],"f0d9","M192 127.338v257.324c0 17.818-21.543 26.741-34.142 14.142L29.196 270.142c-7.81-7.81-7.81-20.474 0-28.284l128.662-128.662c12.599-12.6 34.142-3.676 34.142 14.142z"],"caret-right":[192,512,[],"f0da","M0 384.662V127.338c0-17.818 21.543-26.741 34.142-14.142l128.662 128.662c7.81 7.81 7.81 20.474 0 28.284L34.142 398.804C21.543 411.404 0 402.48 0 384.662z"],"caret-square-down":[448,512,[],"f150","M448 80v352c0 26.5-21.5 48-48 48H48c-26.5 0-48-21.5-48-48V80c0-26.5 21.5-48 48-48h352c26.5 0 48 21.5 48 48zM92.5 220.5l123 123c4.7 4.7 12.3 4.7 17 0l123-123c7.6-7.6 2.2-20.5-8.5-20.5H101c-10.7 0-16.1 12.9-8.5 20.5z"],"caret-square-left":[448,512,[],"f191","M400 480H48c-26.51 0-48-21.49-48-48V80c0-26.51 21.49-48 48-48h352c26.51 0 48 21.49 48 48v352c0 26.51-21.49 48-48 48zM259.515 124.485l-123.03 123.03c-4.686 4.686-4.686 12.284 0 16.971l123.029 123.029c7.56 7.56 20.485 2.206 20.485-8.485V132.971c.001-10.691-12.925-16.045-20.484-8.486z"],"caret-square-right":[448,512,[],"f152","M48 32h352c26.51 0 48 21.49 48 48v352c0 26.51-21.49 48-48 48H48c-26.51 0-48-21.49-48-48V80c0-26.51 21.49-48 48-48zm140.485 355.515l123.029-123.029c4.686-4.686 4.686-12.284 0-16.971l-123.029-123.03c-7.56-7.56-20.485-2.206-20.485 8.485v246.059c0 10.691 12.926 16.045 20.485 8.486z"],"caret-square-up":[448,512,[],"f151","M0 432V80c0-26.51 21.49-48 48-48h352c26.51 0 48 21.49 48 48v352c0 26.51-21.49 48-48 48H48c-26.51 0-48-21.49-48-48zm355.515-140.485l-123.03-123.03c-4.686-4.686-12.284-4.686-16.971 0L92.485 291.515c-7.56 7.56-2.206 20.485 8.485 20.485h246.059c10.691 0 16.045-12.926 8.486-20.485z"],"caret-up":[320,512,[],"f0d8","M288.662 352H31.338c-17.818 0-26.741-21.543-14.142-34.142l128.662-128.662c7.81-7.81 20.474-7.81 28.284 0l128.662 128.662c12.6 12.599 3.676 34.142-14.142 34.142z"],carrot:[512,512,[],"f787","M298.2 156.6c-52.7-25.7-114.5-10.5-150.2 32.8l55.2 55.2c6.3 6.3 6.3 16.4 0 22.6-3.1 3.1-7.2 4.7-11.3 4.7s-8.2-1.6-11.3-4.7L130.4 217 2.3 479.7c-2.9 6-3.1 13.3 0 19.7 5.4 11.1 18.9 15.7 30 10.3l133.6-65.2-49.2-49.2c-6.3-6.2-6.3-16.4 0-22.6 6.3-6.2 16.4-6.2 22.6 0l57 57 102-49.8c24-11.7 44.5-31.3 57.1-57.1 30.1-61.7 4.5-136.1-57.2-166.2zm92.1-34.9C409.8 81 399.7 32.9 360 0c-50.3 41.7-52.5 107.5-7.9 151.9l8 8c44.4 44.6 110.3 42.4 151.9-7.9-32.9-39.7-81-49.8-121.7-30.3z"],"cart-arrow-down":[576,512,[],"f218","M504.717 320H211.572l6.545 32h268.418c15.401 0 26.816 14.301 23.403 29.319l-5.517 24.276C523.112 414.668 536 433.828 536 456c0 31.202-25.519 56.444-56.824 55.994-29.823-.429-54.35-24.631-55.155-54.447-.44-16.287 6.085-31.049 16.803-41.548H231.176C241.553 426.165 248 440.326 248 456c0 31.813-26.528 57.431-58.67 55.938-28.54-1.325-51.751-24.385-53.251-52.917-1.158-22.034 10.436-41.455 28.051-51.586L93.883 64H24C10.745 64 0 53.255 0 40V24C0 10.745 10.745 0 24 0h102.529c11.401 0 21.228 8.021 23.513 19.19L159.208 64H551.99c15.401 0 26.816 14.301 23.403 29.319l-47.273 208C525.637 312.246 515.923 320 504.717 320zM403.029 192H360v-60c0-6.627-5.373-12-12-12h-24c-6.627 0-12 5.373-12 12v60h-43.029c-10.691 0-16.045 12.926-8.485 20.485l67.029 67.029c4.686 4.686 12.284 4.686 16.971 0l67.029-67.029c7.559-7.559 2.205-20.485-8.486-20.485z"],"cart-plus":[576,512,[],"f217","M504.717 320H211.572l6.545 32h268.418c15.401 0 26.816 14.301 23.403 29.319l-5.517 24.276C523.112 414.668 536 433.828 536 456c0 31.202-25.519 56.444-56.824 55.994-29.823-.429-54.35-24.631-55.155-54.447-.44-16.287 6.085-31.049 16.803-41.548H231.176C241.553 426.165 248 440.326 248 456c0 31.813-26.528 57.431-58.67 55.938-28.54-1.325-51.751-24.385-53.251-52.917-1.158-22.034 10.436-41.455 28.051-51.586L93.883 64H24C10.745 64 0 53.255 0 40V24C0 10.745 10.745 0 24 0h102.529c11.401 0 21.228 8.021 23.513 19.19L159.208 64H551.99c15.401 0 26.816 14.301 23.403 29.319l-47.273 208C525.637 312.246 515.923 320 504.717 320zM408 168h-48v-40c0-8.837-7.163-16-16-16h-16c-8.837 0-16 7.163-16 16v40h-48c-8.837 0-16 7.163-16 16v16c0 8.837 7.163 16 16 16h48v40c0 8.837 7.163 16 16 16h16c8.837 0 16-7.163 16-16v-40h48c8.837 0 16-7.163 16-16v-16c0-8.837-7.163-16-16-16z"],"cash-register":[512,512,[],"f788","M511.1 378.8l-26.7-160c-2.6-15.4-15.9-26.7-31.6-26.7H208v-64h96c8.8 0 16-7.2 16-16V16c0-8.8-7.2-16-16-16H48c-8.8 0-16 7.2-16 16v96c0 8.8 7.2 16 16 16h96v64H59.1c-15.6 0-29 11.3-31.6 26.7L.8 378.7c-.6 3.5-.9 7-.9 10.5V480c0 17.7 14.3 32 32 32h448c17.7 0 32-14.3 32-32v-90.7c.1-3.5-.2-7-.8-10.5zM280 248c0-8.8 7.2-16 16-16h16c8.8 0 16 7.2 16 16v16c0 8.8-7.2 16-16 16h-16c-8.8 0-16-7.2-16-16v-16zm-32 64h16c8.8 0 16 7.2 16 16v16c0 8.8-7.2 16-16 16h-16c-8.8 0-16-7.2-16-16v-16c0-8.8 7.2-16 16-16zm-32-80c8.8 0 16 7.2 16 16v16c0 8.8-7.2 16-16 16h-16c-8.8 0-16-7.2-16-16v-16c0-8.8 7.2-16 16-16h16zM80 80V48h192v32H80zm40 200h-16c-8.8 0-16-7.2-16-16v-16c0-8.8 7.2-16 16-16h16c8.8 0 16 7.2 16 16v16c0 8.8-7.2 16-16 16zm16 64v-16c0-8.8 7.2-16 16-16h16c8.8 0 16 7.2 16 16v16c0 8.8-7.2 16-16 16h-16c-8.8 0-16-7.2-16-16zm216 112c0 4.4-3.6 8-8 8H168c-4.4 0-8-3.6-8-8v-16c0-4.4 3.6-8 8-8h176c4.4 0 8 3.6 8 8v16zm24-112c0 8.8-7.2 16-16 16h-16c-8.8 0-16-7.2-16-16v-16c0-8.8 7.2-16 16-16h16c8.8 0 16 7.2 16 16v16zm48-80c0 8.8-7.2 16-16 16h-16c-8.8 0-16-7.2-16-16v-16c0-8.8 7.2-16 16-16h16c8.8 0 16 7.2 16 16v16z"],cat:[512,512,[],"f6be","M290.59 192c-20.18 0-106.82 1.98-162.59 85.95V192c0-52.94-43.06-96-96-96-17.67 0-32 14.33-32 32s14.33 32 32 32c17.64 0 32 14.36 32 32v256c0 35.3 28.7 64 64 64h176c8.84 0 16-7.16 16-16v-16c0-17.67-14.33-32-32-32h-32l128-96v144c0 8.84 7.16 16 16 16h32c8.84 0 16-7.16 16-16V289.86c-10.29 2.67-20.89 4.54-32 4.54-61.81 0-113.52-44.05-125.41-102.4zM448 96h-64l-64-64v134.4c0 53.02 42.98 96 96 96s96-42.98 96-96V32l-64 64zm-72 80c-8.84 0-16-7.16-16-16s7.16-16 16-16 16 7.16 16 16-7.16 16-16 16zm80 0c-8.84 0-16-7.16-16-16s7.16-16 16-16 16 7.16 16 16-7.16 16-16 16z"],certificate:[512,512,[],"f0a3","M458.622 255.92l45.985-45.005c13.708-12.977 7.316-36.039-10.664-40.339l-62.65-15.99 17.661-62.015c4.991-17.838-11.829-34.663-29.661-29.671l-61.994 17.667-15.984-62.671C337.085.197 313.765-6.276 300.99 7.228L256 53.57 211.011 7.229c-12.63-13.351-36.047-7.234-40.325 10.668l-15.984 62.671-61.995-17.667C74.87 57.907 58.056 74.738 63.046 92.572l17.661 62.015-62.65 15.99C.069 174.878-6.31 197.944 7.392 210.915l45.985 45.005-45.985 45.004c-13.708 12.977-7.316 36.039 10.664 40.339l62.65 15.99-17.661 62.015c-4.991 17.838 11.829 34.663 29.661 29.671l61.994-17.667 15.984 62.671c4.439 18.575 27.696 24.018 40.325 10.668L256 458.61l44.989 46.001c12.5 13.488 35.987 7.486 40.325-10.668l15.984-62.671 61.994 17.667c17.836 4.994 34.651-11.837 29.661-29.671l-17.661-62.015 62.65-15.99c17.987-4.302 24.366-27.367 10.664-40.339l-45.984-45.004z"],chair:[448,512,[],"f6c0","M112 128c0-29.5 16.2-55 40-68.9V256h48V48h48v208h48V59.1c23.8 13.9 40 39.4 40 68.9v128h48V128C384 57.3 326.7 0 256 0h-64C121.3 0 64 57.3 64 128v128h48zm334.3 213.9l-10.7-32c-4.4-13.1-16.6-21.9-30.4-21.9H42.7c-13.8 0-26 8.8-30.4 21.9l-10.7 32C-5.2 362.6 10.2 384 32 384v112c0 8.8 7.2 16 16 16h32c8.8 0 16-7.2 16-16V384h256v112c0 8.8 7.2 16 16 16h32c8.8 0 16-7.2 16-16V384c21.8 0 37.2-21.4 30.3-42.1z"],chalkboard:[640,512,[],"f51b","M96 64h448v352h64V40c0-22.06-17.94-40-40-40H72C49.94 0 32 17.94 32 40v376h64V64zm528 384H480v-64H288v64H16c-8.84 0-16 7.16-16 16v32c0 8.84 7.16 16 16 16h608c8.84 0 16-7.16 16-16v-32c0-8.84-7.16-16-16-16z"],"chalkboard-teacher":[640,512,[],"f51c","M208 352c-2.39 0-4.78.35-7.06 1.09C187.98 357.3 174.35 360 160 360c-14.35 0-27.98-2.7-40.95-6.91-2.28-.74-4.66-1.09-7.05-1.09C49.94 352-.33 402.48 0 464.62.14 490.88 21.73 512 48 512h224c26.27 0 47.86-21.12 48-47.38.33-62.14-49.94-112.62-112-112.62zm-48-32c53.02 0 96-42.98 96-96s-42.98-96-96-96-96 42.98-96 96 42.98 96 96 96zM592 0H208c-26.47 0-48 22.25-48 49.59V96c23.42 0 45.1 6.78 64 17.8V64h352v288h-64v-64H384v64h-76.24c19.1 16.69 33.12 38.73 39.69 64H592c26.47 0 48-22.25 48-49.59V49.59C640 22.25 618.47 0 592 0z"],"charging-station":[576,512,[],"f5e7","M336 448H16c-8.84 0-16 7.16-16 16v32c0 8.84 7.16 16 16 16h320c8.84 0 16-7.16 16-16v-32c0-8.84-7.16-16-16-16zm208-320V80c0-8.84-7.16-16-16-16s-16 7.16-16 16v48h-32V80c0-8.84-7.16-16-16-16s-16 7.16-16 16v48h-16c-8.84 0-16 7.16-16 16v32c0 35.76 23.62 65.69 56 75.93v118.49c0 13.95-9.5 26.92-23.26 29.19C431.22 402.5 416 388.99 416 372v-28c0-48.6-39.4-88-88-88h-8V64c0-35.35-28.65-64-64-64H96C60.65 0 32 28.65 32 64v352h288V304h8c22.09 0 40 17.91 40 40v24.61c0 39.67 28.92 75.16 68.41 79.01C481.71 452.05 520 416.41 520 372V251.93c32.38-10.24 56-40.17 56-75.93v-32c0-8.84-7.16-16-16-16h-16zm-283.91 47.76l-93.7 139c-2.2 3.33-6.21 5.24-10.39 5.24-7.67 0-13.47-6.28-11.67-12.92L167.35 224H108c-7.25 0-12.85-5.59-11.89-11.89l16-107C112.9 99.9 117.98 96 124 96h68c7.88 0 13.62 6.54 11.6 13.21L192 160h57.7c9.24 0 15.01 8.78 10.39 15.76z"],"chart-area":[512,512,[],"f1fe","M500 384c6.6 0 12 5.4 12 12v40c0 6.6-5.4 12-12 12H12c-6.6 0-12-5.4-12-12V76c0-6.6 5.4-12 12-12h40c6.6 0 12 5.4 12 12v308h436zM372.7 159.5L288 216l-85.3-113.7c-5.1-6.8-15.5-6.3-19.9 1L96 248v104h384l-89.9-187.8c-3.2-6.5-11.4-8.7-17.4-4.7z"],"chart-bar":[512,512,[],"f080","M332.8 320h38.4c6.4 0 12.8-6.4 12.8-12.8V172.8c0-6.4-6.4-12.8-12.8-12.8h-38.4c-6.4 0-12.8 6.4-12.8 12.8v134.4c0 6.4 6.4 12.8 12.8 12.8zm96 0h38.4c6.4 0 12.8-6.4 12.8-12.8V76.8c0-6.4-6.4-12.8-12.8-12.8h-38.4c-6.4 0-12.8 6.4-12.8 12.8v230.4c0 6.4 6.4 12.8 12.8 12.8zm-288 0h38.4c6.4 0 12.8-6.4 12.8-12.8v-70.4c0-6.4-6.4-12.8-12.8-12.8h-38.4c-6.4 0-12.8 6.4-12.8 12.8v70.4c0 6.4 6.4 12.8 12.8 12.8zm96 0h38.4c6.4 0 12.8-6.4 12.8-12.8V108.8c0-6.4-6.4-12.8-12.8-12.8h-38.4c-6.4 0-12.8 6.4-12.8 12.8v198.4c0 6.4 6.4 12.8 12.8 12.8zM496 384H64V80c0-8.84-7.16-16-16-16H16C7.16 64 0 71.16 0 80v336c0 17.67 14.33 32 32 32h464c8.84 0 16-7.16 16-16v-32c0-8.84-7.16-16-16-16z"],"chart-line":[512,512,[],"f201","M496 384H64V80c0-8.84-7.16-16-16-16H16C7.16 64 0 71.16 0 80v336c0 17.67 14.33 32 32 32h464c8.84 0 16-7.16 16-16v-32c0-8.84-7.16-16-16-16zM464 96H345.94c-21.38 0-32.09 25.85-16.97 40.97l32.4 32.4L288 242.75l-73.37-73.37c-12.5-12.5-32.76-12.5-45.25 0l-68.69 68.69c-6.25 6.25-6.25 16.38 0 22.63l22.62 22.62c6.25 6.25 16.38 6.25 22.63 0L192 237.25l73.37 73.37c12.5 12.5 32.76 12.5 45.25 0l96-96 32.4 32.4c15.12 15.12 40.97 4.41 40.97-16.97V112c.01-8.84-7.15-16-15.99-16z"],"chart-pie":[544,512,[],"f200","M527.79 288H290.5l158.03 158.03c6.04 6.04 15.98 6.53 22.19.68 38.7-36.46 65.32-85.61 73.13-140.86 1.34-9.46-6.51-17.85-16.06-17.85zm-15.83-64.8C503.72 103.74 408.26 8.28 288.8.04 279.68-.59 272 7.1 272 16.24V240h223.77c9.14 0 16.82-7.68 16.19-16.8zM224 288V50.71c0-9.55-8.39-17.4-17.84-16.06C86.99 51.49-4.1 155.6.14 280.37 4.5 408.51 114.83 513.59 243.03 511.98c50.4-.63 96.97-16.87 135.26-44.03 7.9-5.6 8.42-17.23 1.57-24.08L224 288z"],check:[512,512,[],"f00c","M173.898 439.404l-166.4-166.4c-9.997-9.997-9.997-26.206 0-36.204l36.203-36.204c9.997-9.998 26.207-9.998 36.204 0L192 312.69 432.095 72.596c9.997-9.997 26.207-9.997 36.204 0l36.203 36.204c9.997 9.997 9.997 26.206 0 36.204l-294.4 294.401c-9.998 9.997-26.207 9.997-36.204-.001z"],"check-circle":[512,512,[],"f058","M504 256c0 136.967-111.033 248-248 248S8 392.967 8 256 119.033 8 256 8s248 111.033 248 248zM227.314 387.314l184-184c6.248-6.248 6.248-16.379 0-22.627l-22.627-22.627c-6.248-6.249-16.379-6.249-22.628 0L216 308.118l-70.059-70.059c-6.248-6.248-16.379-6.248-22.628 0l-22.627 22.627c-6.248 6.248-6.248 16.379 0 22.627l104 104c6.249 6.249 16.379 6.249 22.628.001z"],"check-double":[512,512,[],"f560","M505 174.8l-39.6-39.6c-9.4-9.4-24.6-9.4-33.9 0L192 374.7 80.6 263.2c-9.4-9.4-24.6-9.4-33.9 0L7 302.9c-9.4 9.4-9.4 24.6 0 34L175 505c9.4 9.4 24.6 9.4 33.9 0l296-296.2c9.4-9.5 9.4-24.7.1-34zm-324.3 106c6.2 6.3 16.4 6.3 22.6 0l208-208.2c6.2-6.3 6.2-16.4 0-22.6L366.1 4.7c-6.2-6.3-16.4-6.3-22.6 0L192 156.2l-55.4-55.5c-6.2-6.3-16.4-6.3-22.6 0L68.7 146c-6.2 6.3-6.2 16.4 0 22.6l112 112.2z"],"check-square":[448,512,[],"f14a","M400 480H48c-26.51 0-48-21.49-48-48V80c0-26.51 21.49-48 48-48h352c26.51 0 48 21.49 48 48v352c0 26.51-21.49 48-48 48zm-204.686-98.059l184-184c6.248-6.248 6.248-16.379 0-22.627l-22.627-22.627c-6.248-6.248-16.379-6.249-22.628 0L184 302.745l-70.059-70.059c-6.248-6.248-16.379-6.248-22.628 0l-22.627 22.627c-6.248 6.248-6.248 16.379 0 22.627l104 104c6.249 6.25 16.379 6.25 22.628.001z"],cheese:[512,512,[],"f7ef","M0 288v160a32 32 0 0 0 32 32h448a32 32 0 0 0 32-32V288zM299.83 32a32 32 0 0 0-21.13 7L0 256h512c0-119.89-94-217.8-212.17-224z"],chess:[512,512,[],"f439","M74 208H64a16 16 0 0 0-16 16v16a16 16 0 0 0 16 16h15.94A535.78 535.78 0 0 1 64 384h128a535.78 535.78 0 0 1-15.94-128H192a16 16 0 0 0 16-16v-16a16 16 0 0 0-16-16h-10l33.89-90.38a16 16 0 0 0-15-21.62H144V64h24a8 8 0 0 0 8-8V40a8 8 0 0 0-8-8h-24V8a8 8 0 0 0-8-8h-16a8 8 0 0 0-8 8v24H88a8 8 0 0 0-8 8v16a8 8 0 0 0 8 8h24v32H55.09a16 16 0 0 0-15 21.62zm173.16 251.58L224 448v-16a16 16 0 0 0-16-16H48a16 16 0 0 0-16 16v16L8.85 459.58A16 16 0 0 0 0 473.89V496a16 16 0 0 0 16 16h224a16 16 0 0 0 16-16v-22.11a16 16 0 0 0-8.84-14.31zm92.77-157.78l-3.29 82.2h126.72l-3.29-82.21 24.6-20.79A32 32 0 0 0 496 256.54V198a6 6 0 0 0-6-6h-26.38a6 6 0 0 0-6 6v26h-24.71v-26a6 6 0 0 0-6-6H373.1a6 6 0 0 0-6 6v26h-24.71v-26a6 6 0 0 0-6-6H310a6 6 0 0 0-6 6v58.6a32 32 0 0 0 11.36 24.4zM384 304a16 16 0 0 1 32 0v32h-32zm119.16 155.58L480 448v-16a16 16 0 0 0-16-16H336a16 16 0 0 0-16 16v16l-23.15 11.58a16 16 0 0 0-8.85 14.31V496a16 16 0 0 0 16 16h192a16 16 0 0 0 16-16v-22.11a16 16 0 0 0-8.84-14.31z"],"chess-bishop":[320,512,[],"f43a","M8 287.88c0 51.64 22.14 73.83 56 84.6V416h192v-43.52c33.86-10.77 56-33 56-84.6 0-30.61-10.73-67.1-26.69-102.56L185 285.65a8 8 0 0 1-11.31 0l-11.31-11.31a8 8 0 0 1 0-11.31L270.27 155.1c-20.8-37.91-46.47-72.1-70.87-92.59C213.4 59.09 224 47.05 224 32a32 32 0 0 0-32-32h-64a32 32 0 0 0-32 32c0 15 10.6 27.09 24.6 30.51C67.81 106.8 8 214.5 8 287.88zM304 448H16a16 16 0 0 0-16 16v32a16 16 0 0 0 16 16h288a16 16 0 0 0 16-16v-32a16 16 0 0 0-16-16z"],"chess-board":[512,512,[],"f43c","M255.9.2h-64v64h64zM0 64.17v64h64v-64zM128 .2H64v64h64zm64 255.9v64h64v-64zM0 192.12v64h64v-64zM383.85.2h-64v64h64zm128 0h-64v64h64zM128 256.1H64v64h64zM511.8 448v-64h-64v64zm0-128v-64h-64v64zM383.85 512h64v-64h-64zm128-319.88v-64h-64v64zM128 512h64v-64h-64zM0 512h64v-64H0zm255.9 0h64v-64h-64zM0 320.07v64h64v-64zm319.88-191.92v-64h-64v64zm-64 128h64v-64h-64zm-64 128v64h64v-64zm128-64h64v-64h-64zm0-127.95h64v-64h-64zm0 191.93v64h64v-64zM64 384.05v64h64v-64zm128-255.9v-64h-64v64zm191.92 255.9h64v-64h-64zm-128-191.93v-64h-64v64zm128-127.95v64h64v-64zm-128 255.9v64h64v-64zm-64-127.95H128v64h64zm191.92 64h64v-64h-64zM128 128.15H64v64h64zm0 191.92v64h64v-64z"],"chess-king":[448,512,[],"f43f","M400 448H48a16 16 0 0 0-16 16v32a16 16 0 0 0 16 16h352a16 16 0 0 0 16-16v-32a16 16 0 0 0-16-16zm16-288H256v-48h40a8 8 0 0 0 8-8V56a8 8 0 0 0-8-8h-40V8a8 8 0 0 0-8-8h-48a8 8 0 0 0-8 8v40h-40a8 8 0 0 0-8 8v48a8 8 0 0 0 8 8h40v48H32a32 32 0 0 0-30.52 41.54L74.56 416h298.88l73.08-214.46A32 32 0 0 0 416 160z"],"chess-knight":[384,512,[],"f441","M19 272.47l40.63 18.06a32 32 0 0 0 24.88.47l12.78-5.12a32 32 0 0 0 18.76-20.5l9.22-30.65a24 24 0 0 1 12.55-15.65L159.94 208v50.33a48 48 0 0 1-26.53 42.94l-57.22 28.65A80 80 0 0 0 32 401.48V416h319.86V224c0-106-85.92-192-191.92-192H12A12 12 0 0 0 0 44a16.9 16.9 0 0 0 1.79 7.58L16 80l-9 9a24 24 0 0 0-7 17v137.21a32 32 0 0 0 19 29.26zM52 128a20 20 0 1 1-20 20 20 20 0 0 1 20-20zm316 320H16a16 16 0 0 0-16 16v32a16 16 0 0 0 16 16h352a16 16 0 0 0 16-16v-32a16 16 0 0 0-16-16z"],"chess-pawn":[320,512,[],"f443","M105.1 224H80a16 16 0 0 0-16 16v32a16 16 0 0 0 16 16h16v5.49c0 44-4.14 86.6-24 122.51h176c-19.89-35.91-24-78.51-24-122.51V288h16a16 16 0 0 0 16-16v-32a16 16 0 0 0-16-16h-25.1c29.39-18.38 49.1-50.78 49.1-88a104 104 0 0 0-208 0c0 37.22 19.71 69.62 49.1 88zM304 448H16a16 16 0 0 0-16 16v32a16 16 0 0 0 16 16h288a16 16 0 0 0 16-16v-32a16 16 0 0 0-16-16z"],"chess-queen":[512,512,[],"f445","M256 112a56 56 0 1 0-56-56 56 56 0 0 0 56 56zm176 336H80a16 16 0 0 0-16 16v32a16 16 0 0 0 16 16h352a16 16 0 0 0 16-16v-32a16 16 0 0 0-16-16zm72.87-263.84l-28.51-15.92c-7.44-5-16.91-2.46-22.29 4.68a47.59 47.59 0 0 1-47.23 18.23C383.7 186.86 368 164.93 368 141.4a13.4 13.4 0 0 0-13.4-13.4h-38.77c-6 0-11.61 4-12.86 9.91a48 48 0 0 1-93.94 0c-1.25-5.92-6.82-9.91-12.86-9.91H157.4a13.4 13.4 0 0 0-13.4 13.4c0 25.69-19 48.75-44.67 50.49a47.5 47.5 0 0 1-41.54-19.15c-5.28-7.09-14.73-9.45-22.09-4.54l-28.57 16a16 16 0 0 0-5.44 20.47L104.24 416h303.52l102.55-211.37a16 16 0 0 0-5.44-20.47z"],"chess-rook":[384,512,[],"f447","M368 32h-56a16 16 0 0 0-16 16v48h-48V48a16 16 0 0 0-16-16h-80a16 16 0 0 0-16 16v48H88.1V48a16 16 0 0 0-16-16H16A16 16 0 0 0 0 48v176l64 32c0 48.33-1.54 95-13.21 160h282.42C321.54 351 320 303.72 320 256l64-32V48a16 16 0 0 0-16-16zM224 320h-64v-64a32 32 0 0 1 64 0zm144 128H16a16 16 0 0 0-16 16v32a16 16 0 0 0 16 16h352a16 16 0 0 0 16-16v-32a16 16 0 0 0-16-16z"],"chevron-circle-down":[512,512,[],"f13a","M504 256c0 137-111 248-248 248S8 393 8 256 119 8 256 8s248 111 248 248zM273 369.9l135.5-135.5c9.4-9.4 9.4-24.6 0-33.9l-17-17c-9.4-9.4-24.6-9.4-33.9 0L256 285.1 154.4 183.5c-9.4-9.4-24.6-9.4-33.9 0l-17 17c-9.4 9.4-9.4 24.6 0 33.9L239 369.9c9.4 9.4 24.6 9.4 34 0z"],"chevron-circle-left":[512,512,[],"f137","M256 504C119 504 8 393 8 256S119 8 256 8s248 111 248 248-111 248-248 248zM142.1 273l135.5 135.5c9.4 9.4 24.6 9.4 33.9 0l17-17c9.4-9.4 9.4-24.6 0-33.9L226.9 256l101.6-101.6c9.4-9.4 9.4-24.6 0-33.9l-17-17c-9.4-9.4-24.6-9.4-33.9 0L142.1 239c-9.4 9.4-9.4 24.6 0 34z"],"chevron-circle-right":[512,512,[],"f138","M256 8c137 0 248 111 248 248S393 504 256 504 8 393 8 256 119 8 256 8zm113.9 231L234.4 103.5c-9.4-9.4-24.6-9.4-33.9 0l-17 17c-9.4 9.4-9.4 24.6 0 33.9L285.1 256 183.5 357.6c-9.4 9.4-9.4 24.6 0 33.9l17 17c9.4 9.4 24.6 9.4 33.9 0L369.9 273c9.4-9.4 9.4-24.6 0-34z"],"chevron-circle-up":[512,512,[],"f139","M8 256C8 119 119 8 256 8s248 111 248 248-111 248-248 248S8 393 8 256zm231-113.9L103.5 277.6c-9.4 9.4-9.4 24.6 0 33.9l17 17c9.4 9.4 24.6 9.4 33.9 0L256 226.9l101.6 101.6c9.4 9.4 24.6 9.4 33.9 0l17-17c9.4-9.4 9.4-24.6 0-33.9L273 142.1c-9.4-9.4-24.6-9.4-34 0z"],"chevron-down":[448,512,[],"f078","M207.029 381.476L12.686 187.132c-9.373-9.373-9.373-24.569 0-33.941l22.667-22.667c9.357-9.357 24.522-9.375 33.901-.04L224 284.505l154.745-154.021c9.379-9.335 24.544-9.317 33.901.04l22.667 22.667c9.373 9.373 9.373 24.569 0 33.941L240.971 381.476c-9.373 9.372-24.569 9.372-33.942 0z"],"chevron-left":[320,512,[],"f053","M34.52 239.03L228.87 44.69c9.37-9.37 24.57-9.37 33.94 0l22.67 22.67c9.36 9.36 9.37 24.52.04 33.9L131.49 256l154.02 154.75c9.34 9.38 9.32 24.54-.04 33.9l-22.67 22.67c-9.37 9.37-24.57 9.37-33.94 0L34.52 272.97c-9.37-9.37-9.37-24.57 0-33.94z"],"chevron-right":[320,512,[],"f054","M285.476 272.971L91.132 467.314c-9.373 9.373-24.569 9.373-33.941 0l-22.667-22.667c-9.357-9.357-9.375-24.522-.04-33.901L188.505 256 34.484 101.255c-9.335-9.379-9.317-24.544.04-33.901l22.667-22.667c9.373-9.373 24.569-9.373 33.941 0L285.475 239.03c9.373 9.372 9.373 24.568.001 33.941z"],"chevron-up":[448,512,[],"f077","M240.971 130.524l194.343 194.343c9.373 9.373 9.373 24.569 0 33.941l-22.667 22.667c-9.357 9.357-24.522 9.375-33.901.04L224 227.495 69.255 381.516c-9.379 9.335-24.544 9.317-33.901-.04l-22.667-22.667c-9.373-9.373-9.373-24.569 0-33.941L207.03 130.525c9.372-9.373 24.568-9.373 33.941-.001z"],child:[384,512,[],"f1ae","M120 72c0-39.765 32.235-72 72-72s72 32.235 72 72c0 39.764-32.235 72-72 72s-72-32.236-72-72zm254.627 1.373c-12.496-12.497-32.758-12.497-45.254 0L242.745 160H141.254L54.627 73.373c-12.496-12.497-32.758-12.497-45.254 0-12.497 12.497-12.497 32.758 0 45.255L104 213.254V480c0 17.673 14.327 32 32 32h16c17.673 0 32-14.327 32-32V368h16v112c0 17.673 14.327 32 32 32h16c17.673 0 32-14.327 32-32V213.254l94.627-94.627c12.497-12.497 12.497-32.757 0-45.254z"],church:[640,512,[],"f51d","M464.46 246.68L352 179.2V128h48c8.84 0 16-7.16 16-16V80c0-8.84-7.16-16-16-16h-48V16c0-8.84-7.16-16-16-16h-32c-8.84 0-16 7.16-16 16v48h-48c-8.84 0-16 7.16-16 16v32c0 8.84 7.16 16 16 16h48v51.2l-112.46 67.48A31.997 31.997 0 0 0 160 274.12V512h96v-96c0-35.35 28.65-64 64-64s64 28.65 64 64v96h96V274.12c0-11.24-5.9-21.66-15.54-27.44zM0 395.96V496c0 8.84 7.16 16 16 16h112V320L19.39 366.54A32.024 32.024 0 0 0 0 395.96zm620.61-29.42L512 320v192h112c8.84 0 16-7.16 16-16V395.96c0-12.8-7.63-24.37-19.39-29.42z"],circle:[512,512,[],"f111","M256 8C119 8 8 119 8 256s111 248 248 248 248-111 248-248S393 8 256 8z"],"circle-notch":[512,512,[],"f1ce","M288 39.056v16.659c0 10.804 7.281 20.159 17.686 23.066C383.204 100.434 440 171.518 440 256c0 101.689-82.295 184-184 184-101.689 0-184-82.295-184-184 0-84.47 56.786-155.564 134.312-177.219C216.719 75.874 224 66.517 224 55.712V39.064c0-15.709-14.834-27.153-30.046-23.234C86.603 43.482 7.394 141.206 8.003 257.332c.72 137.052 111.477 246.956 248.531 246.667C393.255 503.711 504 392.788 504 256c0-115.633-79.14-212.779-186.211-240.236C302.678 11.889 288 23.456 288 39.056z"],city:[640,512,[],"f64f","M616 192H480V24c0-13.26-10.74-24-24-24H312c-13.26 0-24 10.74-24 24v72h-64V16c0-8.84-7.16-16-16-16h-16c-8.84 0-16 7.16-16 16v80h-64V16c0-8.84-7.16-16-16-16H80c-8.84 0-16 7.16-16 16v80H24c-13.26 0-24 10.74-24 24v360c0 17.67 14.33 32 32 32h576c17.67 0 32-14.33 32-32V216c0-13.26-10.75-24-24-24zM128 404c0 6.63-5.37 12-12 12H76c-6.63 0-12-5.37-12-12v-40c0-6.63 5.37-12 12-12h40c6.63 0 12 5.37 12 12v40zm0-96c0 6.63-5.37 12-12 12H76c-6.63 0-12-5.37-12-12v-40c0-6.63 5.37-12 12-12h40c6.63 0 12 5.37 12 12v40zm0-96c0 6.63-5.37 12-12 12H76c-6.63 0-12-5.37-12-12v-40c0-6.63 5.37-12 12-12h40c6.63 0 12 5.37 12 12v40zm128 192c0 6.63-5.37 12-12 12h-40c-6.63 0-12-5.37-12-12v-40c0-6.63 5.37-12 12-12h40c6.63 0 12 5.37 12 12v40zm0-96c0 6.63-5.37 12-12 12h-40c-6.63 0-12-5.37-12-12v-40c0-6.63 5.37-12 12-12h40c6.63 0 12 5.37 12 12v40zm0-96c0 6.63-5.37 12-12 12h-40c-6.63 0-12-5.37-12-12v-40c0-6.63 5.37-12 12-12h40c6.63 0 12 5.37 12 12v40zm160 96c0 6.63-5.37 12-12 12h-40c-6.63 0-12-5.37-12-12v-40c0-6.63 5.37-12 12-12h40c6.63 0 12 5.37 12 12v40zm0-96c0 6.63-5.37 12-12 12h-40c-6.63 0-12-5.37-12-12v-40c0-6.63 5.37-12 12-12h40c6.63 0 12 5.37 12 12v40zm0-96c0 6.63-5.37 12-12 12h-40c-6.63 0-12-5.37-12-12V76c0-6.63 5.37-12 12-12h40c6.63 0 12 5.37 12 12v40zm160 288c0 6.63-5.37 12-12 12h-40c-6.63 0-12-5.37-12-12v-40c0-6.63 5.37-12 12-12h40c6.63 0 12 5.37 12 12v40zm0-96c0 6.63-5.37 12-12 12h-40c-6.63 0-12-5.37-12-12v-40c0-6.63 5.37-12 12-12h40c6.63 0 12 5.37 12 12v40z"],"clinic-medical":[576,512,[],"f7f2","M288 115L69.47 307.71c-1.62 1.46-3.69 2.14-5.47 3.35V496a16 16 0 0 0 16 16h416a16 16 0 0 0 16-16V311.1c-1.7-1.16-3.72-1.82-5.26-3.2zm96 261a8 8 0 0 1-8 8h-56v56a8 8 0 0 1-8 8h-48a8 8 0 0 1-8-8v-56h-56a8 8 0 0 1-8-8v-48a8 8 0 0 1 8-8h56v-56a8 8 0 0 1 8-8h48a8 8 0 0 1 8 8v56h56a8 8 0 0 1 8 8zm186.69-139.72l-255.94-226a39.85 39.85 0 0 0-53.45 0l-256 226a16 16 0 0 0-1.21 22.6L25.5 282.7a16 16 0 0 0 22.6 1.21L277.42 81.63a16 16 0 0 1 21.17 0L527.91 283.9a16 16 0 0 0 22.6-1.21l21.4-23.82a16 16 0 0 0-1.22-22.59z"],clipboard:[384,512,[],"f328","M384 112v352c0 26.51-21.49 48-48 48H48c-26.51 0-48-21.49-48-48V112c0-26.51 21.49-48 48-48h80c0-35.29 28.71-64 64-64s64 28.71 64 64h80c26.51 0 48 21.49 48 48zM192 40c-13.255 0-24 10.745-24 24s10.745 24 24 24 24-10.745 24-24-10.745-24-24-24m96 114v-20a6 6 0 0 0-6-6H102a6 6 0 0 0-6 6v20a6 6 0 0 0 6 6h180a6 6 0 0 0 6-6z"],"clipboard-check":[384,512,[],"f46c","M336 64h-80c0-35.3-28.7-64-64-64s-64 28.7-64 64H48C21.5 64 0 85.5 0 112v352c0 26.5 21.5 48 48 48h288c26.5 0 48-21.5 48-48V112c0-26.5-21.5-48-48-48zM192 40c13.3 0 24 10.7 24 24s-10.7 24-24 24-24-10.7-24-24 10.7-24 24-24zm121.2 231.8l-143 141.8c-4.7 4.7-12.3 4.6-17-.1l-82.6-83.3c-4.7-4.7-4.6-12.3.1-17L99.1 285c4.7-4.7 12.3-4.6 17 .1l46 46.4 106-105.2c4.7-4.7 12.3-4.6 17 .1l28.2 28.4c4.7 4.8 4.6 12.3-.1 17z"],"clipboard-list":[384,512,[],"f46d","M336 64h-80c0-35.3-28.7-64-64-64s-64 28.7-64 64H48C21.5 64 0 85.5 0 112v352c0 26.5 21.5 48 48 48h288c26.5 0 48-21.5 48-48V112c0-26.5-21.5-48-48-48zM96 424c-13.3 0-24-10.7-24-24s10.7-24 24-24 24 10.7 24 24-10.7 24-24 24zm0-96c-13.3 0-24-10.7-24-24s10.7-24 24-24 24 10.7 24 24-10.7 24-24 24zm0-96c-13.3 0-24-10.7-24-24s10.7-24 24-24 24 10.7 24 24-10.7 24-24 24zm96-192c13.3 0 24 10.7 24 24s-10.7 24-24 24-24-10.7-24-24 10.7-24 24-24zm128 368c0 4.4-3.6 8-8 8H168c-4.4 0-8-3.6-8-8v-16c0-4.4 3.6-8 8-8h144c4.4 0 8 3.6 8 8v16zm0-96c0 4.4-3.6 8-8 8H168c-4.4 0-8-3.6-8-8v-16c0-4.4 3.6-8 8-8h144c4.4 0 8 3.6 8 8v16zm0-96c0 4.4-3.6 8-8 8H168c-4.4 0-8-3.6-8-8v-16c0-4.4 3.6-8 8-8h144c4.4 0 8 3.6 8 8v16z"],clock:[512,512,[],"f017","M256,8C119,8,8,119,8,256S119,504,256,504,504,393,504,256,393,8,256,8Zm92.49,313h0l-20,25a16,16,0,0,1-22.49,2.5h0l-67-49.72a40,40,0,0,1-15-31.23V112a16,16,0,0,1,16-16h32a16,16,0,0,1,16,16V256l58,42.5A16,16,0,0,1,348.49,321Z"],clone:[512,512,[],"f24d","M464 0c26.51 0 48 21.49 48 48v288c0 26.51-21.49 48-48 48H176c-26.51 0-48-21.49-48-48V48c0-26.51 21.49-48 48-48h288M176 416c-44.112 0-80-35.888-80-80V128H48c-26.51 0-48 21.49-48 48v288c0 26.51 21.49 48 48 48h288c26.51 0 48-21.49 48-48v-48H176z"],"closed-captioning":[512,512,[],"f20a","M464 64H48C21.5 64 0 85.5 0 112v288c0 26.5 21.5 48 48 48h416c26.5 0 48-21.5 48-48V112c0-26.5-21.5-48-48-48zM218.1 287.7c2.8-2.5 7.1-2.1 9.2.9l19.5 27.7c1.7 2.4 1.5 5.6-.5 7.7-53.6 56.8-172.8 32.1-172.8-67.9 0-97.3 121.7-119.5 172.5-70.1 2.1 2 2.5 3.2 1 5.7l-17.5 30.5c-1.9 3.1-6.2 4-9.1 1.7-40.8-32-94.6-14.9-94.6 31.2.1 48 51.1 70.5 92.3 32.6zm190.4 0c2.8-2.5 7.1-2.1 9.2.9l19.5 27.7c1.7 2.4 1.5 5.6-.5 7.7-53.5 56.9-172.7 32.1-172.7-67.9 0-97.3 121.7-119.5 172.5-70.1 2.1 2 2.5 3.2 1 5.7L420 222.2c-1.9 3.1-6.2 4-9.1 1.7-40.8-32-94.6-14.9-94.6 31.2 0 48 51 70.5 92.2 32.6z"],cloud:[640,512,[],"f0c2","M537.6 226.6c4.1-10.7 6.4-22.4 6.4-34.6 0-53-43-96-96-96-19.7 0-38.1 6-53.3 16.2C367 64.2 315.3 32 256 32c-88.4 0-160 71.6-160 160 0 2.7.1 5.4.2 8.1C40.2 219.8 0 273.2 0 336c0 79.5 64.5 144 144 144h368c70.7 0 128-57.3 128-128 0-61.9-44-113.6-102.4-125.4z"],"cloud-download-alt":[640,512,[],"f381","M537.6 226.6c4.1-10.7 6.4-22.4 6.4-34.6 0-53-43-96-96-96-19.7 0-38.1 6-53.3 16.2C367 64.2 315.3 32 256 32c-88.4 0-160 71.6-160 160 0 2.7.1 5.4.2 8.1C40.2 219.8 0 273.2 0 336c0 79.5 64.5 144 144 144h368c70.7 0 128-57.3 128-128 0-61.9-44-113.6-102.4-125.4zm-132.9 88.7L299.3 420.7c-6.2 6.2-16.4 6.2-22.6 0L171.3 315.3c-10.1-10.1-2.9-27.3 11.3-27.3H248V176c0-8.8 7.2-16 16-16h48c8.8 0 16 7.2 16 16v112h65.4c14.2 0 21.4 17.2 11.3 27.3z"],"cloud-meatball":[512,512,[],"f73b","M48 352c-26.5 0-48 21.5-48 48s21.5 48 48 48 48-21.5 48-48-21.5-48-48-48zm416 0c-26.5 0-48 21.5-48 48s21.5 48 48 48 48-21.5 48-48-21.5-48-48-48zm-119 11.1c4.6-14.5 1.6-30.8-9.8-42.3-11.5-11.5-27.8-14.4-42.3-9.9-7-13.5-20.7-23-36.9-23s-29.9 9.5-36.9 23c-14.5-4.6-30.8-1.6-42.3 9.9-11.5 11.5-14.4 27.8-9.9 42.3-13.5 7-23 20.7-23 36.9s9.5 29.9 23 36.9c-4.6 14.5-1.6 30.8 9.9 42.3 8.2 8.2 18.9 12.3 29.7 12.3 4.3 0 8.5-1.1 12.6-2.5 7 13.5 20.7 23 36.9 23s29.9-9.5 36.9-23c4.1 1.3 8.3 2.5 12.6 2.5 10.8 0 21.5-4.1 29.7-12.3 11.5-11.5 14.4-27.8 9.8-42.3 13.5-7 23-20.7 23-36.9s-9.5-29.9-23-36.9zM512 224c0-53-43-96-96-96-.6 0-1.1.2-1.6.2 1.1-5.2 1.6-10.6 1.6-16.2 0-44.2-35.8-80-80-80-24.6 0-46.3 11.3-61 28.8C256.4 24.8 219.3 0 176 0 114.1 0 64 50.1 64 112c0 7.3.8 14.3 2.1 21.2C27.8 145.8 0 181.5 0 224c0 53 43 96 96 96h43.4c3.6-8 8.4-15.4 14.8-21.8 13.5-13.5 31.5-21.1 50.8-21.3 13.5-13.2 31.7-20.9 51-20.9s37.5 7.7 51 20.9c19.3.2 37.3 7.8 50.8 21.3 6.4 6.4 11.3 13.8 14.8 21.8H416c53 0 96-43 96-96z"],"cloud-moon":[576,512,[],"f6c3","M342.8 352.7c5.7-9.6 9.2-20.7 9.2-32.7 0-35.3-28.7-64-64-64-17.2 0-32.8 6.9-44.3 17.9-16.3-29.6-47.5-49.9-83.7-49.9-53 0-96 43-96 96 0 2 .5 3.8.6 5.7C27.1 338.8 0 374.1 0 416c0 53 43 96 96 96h240c44.2 0 80-35.8 80-80 0-41.9-32.3-75.8-73.2-79.3zm222.5-54.3c-93.1 17.7-178.5-53.7-178.5-147.7 0-54.2 29-104 76.1-130.8 7.3-4.1 5.4-15.1-2.8-16.7C448.4 1.1 436.7 0 425 0 319.1 0 233.1 85.9 233.1 192c0 8.5.7 16.8 1.8 25 5.9 4.3 11.6 8.9 16.7 14.2 11.4-4.7 23.7-7.2 36.4-7.2 52.9 0 96 43.1 96 96 0 3.6-.2 7.2-.6 10.7 23.6 10.8 42.4 29.5 53.5 52.6 54.4-3.4 103.7-29.3 137.1-70.4 5.3-6.5-.5-16.1-8.7-14.5z"],"cloud-moon-rain":[576,512,[],"f73c","M350.5 225.5c-6.9-37.2-39.3-65.5-78.5-65.5-12.3 0-23.9 3-34.3 8-17.4-24.1-45.6-40-77.7-40-53 0-96 43-96 96 0 .5.2 1.1.2 1.6C27.6 232.9 0 265.2 0 304c0 44.2 35.8 80 80 80h256c44.2 0 80-35.8 80-80 0-39.2-28.2-71.7-65.5-78.5zm217.4-1.7c-70.4 13.3-135-40.3-135-110.8 0-40.6 21.9-78 57.5-98.1 5.5-3.1 4.1-11.4-2.1-12.5C479.6.8 470.7 0 461.8 0c-77.9 0-141.1 61.2-144.4 137.9 26.7 11.9 48.2 33.8 58.9 61.7 37.1 14.3 64 47.4 70.2 86.8 5.1.5 10 1.5 15.2 1.5 44.7 0 85.6-20.2 112.6-53.3 4.2-4.8-.2-12-6.4-10.8zM364.5 418.1c-7.6-4.3-17.4-1.8-21.8 6l-36.6 64c-4.4 7.7-1.7 17.4 6 21.8 2.5 1.4 5.2 2.1 7.9 2.1 5.5 0 10.9-2.9 13.9-8.1l36.6-64c4.3-7.7 1.7-17.4-6-21.8zm-96 0c-7.6-4.3-17.4-1.8-21.8 6l-36.6 64c-4.4 7.7-1.7 17.4 6 21.8 2.5 1.4 5.2 2.1 7.9 2.1 5.5 0 10.9-2.9 13.9-8.1l36.6-64c4.3-7.7 1.7-17.4-6-21.8zm-96 0c-7.6-4.3-17.4-1.8-21.8 6l-36.6 64c-4.4 7.7-1.7 17.4 6 21.8 2.5 1.4 5.2 2.1 7.9 2.1 5.5 0 10.9-2.9 13.9-8.1l36.6-64c4.3-7.7 1.7-17.4-6-21.8zm-96 0c-7.6-4.3-17.4-1.8-21.8 6l-36.6 64c-4.4 7.7-1.7 17.4 6 21.8 2.5 1.4 5.2 2.1 7.9 2.1 5.5 0 10.9-2.9 13.9-8.1l36.6-64c4.3-7.7 1.7-17.4-6-21.8z"],"cloud-rain":[512,512,[],"f73d","M416 128c-.6 0-1.1.2-1.6.2 1.1-5.2 1.6-10.6 1.6-16.2 0-44.2-35.8-80-80-80-24.6 0-46.3 11.3-61 28.8C256.4 24.8 219.3 0 176 0 114.1 0 64 50.1 64 112c0 7.3.8 14.3 2.1 21.2C27.8 145.8 0 181.5 0 224c0 53 43 96 96 96h320c53 0 96-43 96-96s-43-96-96-96zM88 374.2c-12.8 44.4-40 56.4-40 87.7 0 27.7 21.5 50.1 48 50.1s48-22.4 48-50.1c0-31.4-27.2-43.1-40-87.7-2.2-8.1-13.5-8.5-16 0zm160 0c-12.8 44.4-40 56.4-40 87.7 0 27.7 21.5 50.1 48 50.1s48-22.4 48-50.1c0-31.4-27.2-43.1-40-87.7-2.2-8.1-13.5-8.5-16 0zm160 0c-12.8 44.4-40 56.4-40 87.7 0 27.7 21.5 50.1 48 50.1s48-22.4 48-50.1c0-31.4-27.2-43.1-40-87.7-2.2-8.1-13.5-8.5-16 0z"],"cloud-showers-heavy":[512,512,[],"f740","M183.9 370.1c-7.6-4.4-17.4-1.8-21.8 6l-64 112c-4.4 7.7-1.7 17.5 6 21.8 2.5 1.4 5.2 2.1 7.9 2.1 5.5 0 10.9-2.9 13.9-8.1l64-112c4.4-7.6 1.7-17.4-6-21.8zm96 0c-7.6-4.4-17.4-1.8-21.8 6l-64 112c-4.4 7.7-1.7 17.5 6 21.8 2.5 1.4 5.2 2.1 7.9 2.1 5.5 0 10.9-2.9 13.9-8.1l64-112c4.4-7.6 1.7-17.4-6-21.8zm-192 0c-7.6-4.4-17.4-1.8-21.8 6l-64 112c-4.4 7.7-1.7 17.5 6 21.8 2.5 1.4 5.2 2.1 7.9 2.1 5.5 0 10.9-2.9 13.9-8.1l64-112c4.4-7.6 1.7-17.4-6-21.8zm384 0c-7.6-4.4-17.4-1.8-21.8 6l-64 112c-4.4 7.7-1.7 17.5 6 21.8 2.5 1.4 5.2 2.1 7.9 2.1 5.5 0 10.9-2.9 13.9-8.1l64-112c4.4-7.6 1.7-17.4-6-21.8zm-96 0c-7.6-4.4-17.4-1.8-21.8 6l-64 112c-4.4 7.7-1.7 17.5 6 21.8 2.5 1.4 5.2 2.1 7.9 2.1 5.5 0 10.9-2.9 13.9-8.1l64-112c4.4-7.6 1.7-17.4-6-21.8zM416 128c-.6 0-1.1.2-1.6.2 1.1-5.2 1.6-10.6 1.6-16.2 0-44.2-35.8-80-80-80-24.6 0-46.3 11.3-61 28.8C256.4 24.8 219.3 0 176 0 114.2 0 64 50.1 64 112c0 7.3.8 14.3 2.1 21.2C27.8 145.8 0 181.5 0 224c0 53 43 96 96 96h320c53 0 96-43 96-96s-43-96-96-96z"],"cloud-sun":[640,512,[],"f6c4","M575.2 325.7c.2-1.9.8-3.7.8-5.6 0-35.3-28.7-64-64-64-12.6 0-24.2 3.8-34.1 10-17.6-38.8-56.5-66-101.9-66-61.8 0-112 50.1-112 112 0 3 .7 5.8.9 8.7-49.6 3.7-88.9 44.7-88.9 95.3 0 53 43 96 96 96h272c53 0 96-43 96-96 0-42.1-27.2-77.4-64.8-90.4zm-430.4-22.6c-43.7-43.7-43.7-114.7 0-158.3 43.7-43.7 114.7-43.7 158.4 0 9.7 9.7 16.9 20.9 22.3 32.7 9.8-3.7 20.1-6 30.7-7.5L386 81.1c4-11.9-7.3-23.1-19.2-19.2L279 91.2 237.5 8.4C232-2.8 216-2.8 210.4 8.4L169 91.2 81.1 61.9C69.3 58 58 69.3 61.9 81.1l29.3 87.8-82.8 41.5c-11.2 5.6-11.2 21.5 0 27.1l82.8 41.4-29.3 87.8c-4 11.9 7.3 23.1 19.2 19.2l76.1-25.3c6.1-12.4 14-23.7 23.6-33.5-13.1-5.4-25.4-13.4-36-24zm-4.8-79.2c0 40.8 29.3 74.8 67.9 82.3 8-4.7 16.3-8.8 25.2-11.7 5.4-44.3 31-82.5 67.4-105C287.3 160.4 258 140 224 140c-46.3 0-84 37.6-84 83.9z"],"cloud-sun-rain":[576,512,[],"f743","M510.5 225.5c-6.9-37.2-39.3-65.5-78.5-65.5-12.3 0-23.9 3-34.3 8-17.4-24.1-45.6-40-77.7-40-53 0-96 43-96 96 0 .5.2 1.1.2 1.6C187.6 233 160 265.2 160 304c0 44.2 35.8 80 80 80h256c44.2 0 80-35.8 80-80 0-39.2-28.2-71.7-65.5-78.5zm-386.4 34.4c-37.4-37.4-37.4-98.3 0-135.8 34.6-34.6 89.1-36.8 126.7-7.4 20-12.9 43.6-20.7 69.2-20.7.7 0 1.3.2 2 .2l8.9-26.7c3.4-10.2-6.3-19.8-16.5-16.4l-75.3 25.1-35.5-71c-4.8-9.6-18.5-9.6-23.3 0l-35.5 71-75.3-25.1c-10.2-3.4-19.8 6.3-16.4 16.5l25.1 75.3-71 35.5c-9.6 4.8-9.6 18.5 0 23.3l71 35.5-25.1 75.3c-3.4 10.2 6.3 19.8 16.5 16.5l59.2-19.7c-.2-2.4-.7-4.7-.7-7.2 0-12.5 2.3-24.5 6.2-35.9-3.6-2.7-7.1-5.2-10.2-8.3zm69.8-58c4.3-24.5 15.8-46.4 31.9-64-9.8-6.2-21.4-9.9-33.8-9.9-35.3 0-64 28.7-64 64 0 18.7 8.2 35.4 21.1 47.1 11.3-15.9 26.6-28.9 44.8-37.2zm330.6 216.2c-7.6-4.3-17.4-1.8-21.8 6l-36.6 64c-4.4 7.7-1.7 17.4 6 21.8 2.5 1.4 5.2 2.1 7.9 2.1 5.5 0 10.9-2.9 13.9-8.1l36.6-64c4.3-7.7 1.7-17.4-6-21.8zm-96 0c-7.6-4.3-17.4-1.8-21.8 6l-36.6 64c-4.4 7.7-1.7 17.4 6 21.8 2.5 1.4 5.2 2.1 7.9 2.1 5.5 0 10.9-2.9 13.9-8.1l36.6-64c4.3-7.7 1.7-17.4-6-21.8zm-96 0c-7.6-4.3-17.4-1.8-21.8 6l-36.6 64c-4.4 7.7-1.7 17.4 6 21.8 2.5 1.4 5.2 2.1 7.9 2.1 5.5 0 10.9-2.9 13.9-8.1l36.6-64c4.3-7.7 1.7-17.4-6-21.8zm-96 0c-7.6-4.3-17.4-1.8-21.8 6l-36.6 64c-4.4 7.7-1.7 17.4 6 21.8 2.5 1.4 5.2 2.1 7.9 2.1 5.5 0 10.9-2.9 13.9-8.1l36.6-64c4.3-7.7 1.7-17.4-6-21.8z"],"cloud-upload-alt":[640,512,[],"f382","M537.6 226.6c4.1-10.7 6.4-22.4 6.4-34.6 0-53-43-96-96-96-19.7 0-38.1 6-53.3 16.2C367 64.2 315.3 32 256 32c-88.4 0-160 71.6-160 160 0 2.7.1 5.4.2 8.1C40.2 219.8 0 273.2 0 336c0 79.5 64.5 144 144 144h368c70.7 0 128-57.3 128-128 0-61.9-44-113.6-102.4-125.4zM393.4 288H328v112c0 8.8-7.2 16-16 16h-48c-8.8 0-16-7.2-16-16V288h-65.4c-14.3 0-21.4-17.2-11.3-27.3l105.4-105.4c6.2-6.2 16.4-6.2 22.6 0l105.4 105.4c10.1 10.1 2.9 27.3-11.3 27.3z"],cocktail:[576,512,[],"f561","M296 464h-56V338.78l168.74-168.73c15.52-15.52 4.53-42.05-17.42-42.05H24.68c-21.95 0-32.94 26.53-17.42 42.05L176 338.78V464h-56c-22.09 0-40 17.91-40 40 0 4.42 3.58 8 8 8h240c4.42 0 8-3.58 8-8 0-22.09-17.91-40-40-40zM432 0c-62.61 0-115.35 40.2-135.18 96h52.54c16.65-28.55 47.27-48 82.64-48 52.93 0 96 43.06 96 96s-43.07 96-96 96c-14.04 0-27.29-3.2-39.32-8.64l-35.26 35.26C379.23 279.92 404.59 288 432 288c79.53 0 144-64.47 144-144S511.53 0 432 0z"],code:[640,512,[],"f121","M278.9 511.5l-61-17.7c-6.4-1.8-10-8.5-8.2-14.9L346.2 8.7c1.8-6.4 8.5-10 14.9-8.2l61 17.7c6.4 1.8 10 8.5 8.2 14.9L293.8 503.3c-1.9 6.4-8.5 10.1-14.9 8.2zm-114-112.2l43.5-46.4c4.6-4.9 4.3-12.7-.8-17.2L117 256l90.6-79.7c5.1-4.5 5.5-12.3.8-17.2l-43.5-46.4c-4.5-4.8-12.1-5.1-17-.5L3.8 247.2c-5.1 4.7-5.1 12.8 0 17.5l144.1 135.1c4.9 4.6 12.5 4.4 17-.5zm327.2.6l144.1-135.1c5.1-4.7 5.1-12.8 0-17.5L492.1 112.1c-4.8-4.5-12.4-4.3-17 .5L431.6 159c-4.6 4.9-4.3 12.7.8 17.2L523 256l-90.6 79.7c-5.1 4.5-5.5 12.3-.8 17.2l43.5 46.4c4.5 4.9 12.1 5.1 17 .6z"],"code-branch":[384,512,[],"f126","M384 144c0-44.2-35.8-80-80-80s-80 35.8-80 80c0 36.4 24.3 67.1 57.5 76.8-.6 16.1-4.2 28.5-11 36.9-15.4 19.2-49.3 22.4-85.2 25.7-28.2 2.6-57.4 5.4-81.3 16.9v-144c32.5-10.2 56-40.5 56-76.3 0-44.2-35.8-80-80-80S0 35.8 0 80c0 35.8 23.5 66.1 56 76.3v199.3C23.5 365.9 0 396.2 0 432c0 44.2 35.8 80 80 80s80-35.8 80-80c0-34-21.2-63.1-51.2-74.6 3.1-5.2 7.8-9.8 14.9-13.4 16.2-8.2 40.4-10.4 66.1-12.8 42.2-3.9 90-8.4 118.2-43.4 14-17.4 21.1-39.8 21.6-67.9 31.6-10.8 54.4-40.7 54.4-75.9zM80 64c8.8 0 16 7.2 16 16s-7.2 16-16 16-16-7.2-16-16 7.2-16 16-16zm0 384c-8.8 0-16-7.2-16-16s7.2-16 16-16 16 7.2 16 16-7.2 16-16 16zm224-320c8.8 0 16 7.2 16 16s-7.2 16-16 16-16-7.2-16-16 7.2-16 16-16z"],coffee:[640,512,[],"f0f4","M192 384h192c53 0 96-43 96-96h32c70.6 0 128-57.4 128-128S582.6 32 512 32H120c-13.3 0-24 10.7-24 24v232c0 53 43 96 96 96zM512 96c35.3 0 64 28.7 64 64s-28.7 64-64 64h-32V96h32zm47.7 384H48.3c-47.6 0-61-64-36-64h583.3c25 0 11.8 64-35.9 64z"],cog:[512,512,[],"f013","M487.4 315.7l-42.6-24.6c4.3-23.2 4.3-47 0-70.2l42.6-24.6c4.9-2.8 7.1-8.6 5.5-14-11.1-35.6-30-67.8-54.7-94.6-3.8-4.1-10-5.1-14.8-2.3L380.8 110c-17.9-15.4-38.5-27.3-60.8-35.1V25.8c0-5.6-3.9-10.5-9.4-11.7-36.7-8.2-74.3-7.8-109.2 0-5.5 1.2-9.4 6.1-9.4 11.7V75c-22.2 7.9-42.8 19.8-60.8 35.1L88.7 85.5c-4.9-2.8-11-1.9-14.8 2.3-24.7 26.7-43.6 58.9-54.7 94.6-1.7 5.4.6 11.2 5.5 14L67.3 221c-4.3 23.2-4.3 47 0 70.2l-42.6 24.6c-4.9 2.8-7.1 8.6-5.5 14 11.1 35.6 30 67.8 54.7 94.6 3.8 4.1 10 5.1 14.8 2.3l42.6-24.6c17.9 15.4 38.5 27.3 60.8 35.1v49.2c0 5.6 3.9 10.5 9.4 11.7 36.7 8.2 74.3 7.8 109.2 0 5.5-1.2 9.4-6.1 9.4-11.7v-49.2c22.2-7.9 42.8-19.8 60.8-35.1l42.6 24.6c4.9 2.8 11 1.9 14.8-2.3 24.7-26.7 43.6-58.9 54.7-94.6 1.5-5.5-.7-11.3-5.6-14.1zM256 336c-44.1 0-80-35.9-80-80s35.9-80 80-80 80 35.9 80 80-35.9 80-80 80z"],cogs:[640,512,[],"f085","M512.1 191l-8.2 14.3c-3 5.3-9.4 7.5-15.1 5.4-11.8-4.4-22.6-10.7-32.1-18.6-4.6-3.8-5.8-10.5-2.8-15.7l8.2-14.3c-6.9-8-12.3-17.3-15.9-27.4h-16.5c-6 0-11.2-4.3-12.2-10.3-2-12-2.1-24.6 0-37.1 1-6 6.2-10.4 12.2-10.4h16.5c3.6-10.1 9-19.4 15.9-27.4l-8.2-14.3c-3-5.2-1.9-11.9 2.8-15.7 9.5-7.9 20.4-14.2 32.1-18.6 5.7-2.1 12.1.1 15.1 5.4l8.2 14.3c10.5-1.9 21.2-1.9 31.7 0L552 6.3c3-5.3 9.4-7.5 15.1-5.4 11.8 4.4 22.6 10.7 32.1 18.6 4.6 3.8 5.8 10.5 2.8 15.7l-8.2 14.3c6.9 8 12.3 17.3 15.9 27.4h16.5c6 0 11.2 4.3 12.2 10.3 2 12 2.1 24.6 0 37.1-1 6-6.2 10.4-12.2 10.4h-16.5c-3.6 10.1-9 19.4-15.9 27.4l8.2 14.3c3 5.2 1.9 11.9-2.8 15.7-9.5 7.9-20.4 14.2-32.1 18.6-5.7 2.1-12.1-.1-15.1-5.4l-8.2-14.3c-10.4 1.9-21.2 1.9-31.7 0zm-10.5-58.8c38.5 29.6 82.4-14.3 52.8-52.8-38.5-29.7-82.4 14.3-52.8 52.8zM386.3 286.1l33.7 16.8c10.1 5.8 14.5 18.1 10.5 29.1-8.9 24.2-26.4 46.4-42.6 65.8-7.4 8.9-20.2 11.1-30.3 5.3l-29.1-16.8c-16 13.7-34.6 24.6-54.9 31.7v33.6c0 11.6-8.3 21.6-19.7 23.6-24.6 4.2-50.4 4.4-75.9 0-11.5-2-20-11.9-20-23.6V418c-20.3-7.2-38.9-18-54.9-31.7L74 403c-10 5.8-22.9 3.6-30.3-5.3-16.2-19.4-33.3-41.6-42.2-65.7-4-10.9.4-23.2 10.5-29.1l33.3-16.8c-3.9-20.9-3.9-42.4 0-63.4L12 205.8c-10.1-5.8-14.6-18.1-10.5-29 8.9-24.2 26-46.4 42.2-65.8 7.4-8.9 20.2-11.1 30.3-5.3l29.1 16.8c16-13.7 34.6-24.6 54.9-31.7V57.1c0-11.5 8.2-21.5 19.6-23.5 24.6-4.2 50.5-4.4 76-.1 11.5 2 20 11.9 20 23.6v33.6c20.3 7.2 38.9 18 54.9 31.7l29.1-16.8c10-5.8 22.9-3.6 30.3 5.3 16.2 19.4 33.2 41.6 42.1 65.8 4 10.9.1 23.2-10 29.1l-33.7 16.8c3.9 21 3.9 42.5 0 63.5zm-117.6 21.1c59.2-77-28.7-164.9-105.7-105.7-59.2 77 28.7 164.9 105.7 105.7zm243.4 182.7l-8.2 14.3c-3 5.3-9.4 7.5-15.1 5.4-11.8-4.4-22.6-10.7-32.1-18.6-4.6-3.8-5.8-10.5-2.8-15.7l8.2-14.3c-6.9-8-12.3-17.3-15.9-27.4h-16.5c-6 0-11.2-4.3-12.2-10.3-2-12-2.1-24.6 0-37.1 1-6 6.2-10.4 12.2-10.4h16.5c3.6-10.1 9-19.4 15.9-27.4l-8.2-14.3c-3-5.2-1.9-11.9 2.8-15.7 9.5-7.9 20.4-14.2 32.1-18.6 5.7-2.1 12.1.1 15.1 5.4l8.2 14.3c10.5-1.9 21.2-1.9 31.7 0l8.2-14.3c3-5.3 9.4-7.5 15.1-5.4 11.8 4.4 22.6 10.7 32.1 18.6 4.6 3.8 5.8 10.5 2.8 15.7l-8.2 14.3c6.9 8 12.3 17.3 15.9 27.4h16.5c6 0 11.2 4.3 12.2 10.3 2 12 2.1 24.6 0 37.1-1 6-6.2 10.4-12.2 10.4h-16.5c-3.6 10.1-9 19.4-15.9 27.4l8.2 14.3c3 5.2 1.9 11.9-2.8 15.7-9.5 7.9-20.4 14.2-32.1 18.6-5.7 2.1-12.1-.1-15.1-5.4l-8.2-14.3c-10.4 1.9-21.2 1.9-31.7 0zM501.6 431c38.5 29.6 82.4-14.3 52.8-52.8-38.5-29.6-82.4 14.3-52.8 52.8z"],coins:[512,512,[],"f51e","M0 405.3V448c0 35.3 86 64 192 64s192-28.7 192-64v-42.7C342.7 434.4 267.2 448 192 448S41.3 434.4 0 405.3zM320 128c106 0 192-28.7 192-64S426 0 320 0 128 28.7 128 64s86 64 192 64zM0 300.4V352c0 35.3 86 64 192 64s192-28.7 192-64v-51.6c-41.3 34-116.9 51.6-192 51.6S41.3 334.4 0 300.4zm416 11c57.3-11.1 96-31.7 96-55.4v-42.7c-23.2 16.4-57.3 27.6-96 34.5v63.6zM192 160C86 160 0 195.8 0 240s86 80 192 80 192-35.8 192-80-86-80-192-80zm219.3 56.3c60-10.8 100.7-32 100.7-56.3v-42.7c-35.5 25.1-96.5 38.6-160.7 41.8 29.5 14.3 51.2 33.5 60 57.2z"],columns:[512,512,[],"f0db","M464 32H48C21.49 32 0 53.49 0 80v352c0 26.51 21.49 48 48 48h416c26.51 0 48-21.49 48-48V80c0-26.51-21.49-48-48-48zM224 416H64V160h160v256zm224 0H288V160h160v256z"],comment:[512,512,[],"f075","M256 32C114.6 32 0 125.1 0 240c0 49.6 21.4 95 57 130.7C44.5 421.1 2.7 466 2.2 466.5c-2.2 2.3-2.8 5.7-1.5 8.7S4.8 480 8 480c66.3 0 116-31.8 140.6-51.4 32.7 12.3 69 19.4 107.4 19.4 141.4 0 256-93.1 256-208S397.4 32 256 32z"],"comment-alt":[512,512,[],"f27a","M448 0H64C28.7 0 0 28.7 0 64v288c0 35.3 28.7 64 64 64h96v84c0 9.8 11.2 15.5 19.1 9.7L304 416h144c35.3 0 64-28.7 64-64V64c0-35.3-28.7-64-64-64z"],"comment-dollar":[512,512,[],"f651","M256 32C114.62 32 0 125.12 0 240c0 49.56 21.41 95.01 57.02 130.74C44.46 421.05 2.7 465.97 2.2 466.5A7.995 7.995 0 0 0 8 480c66.26 0 115.99-31.75 140.6-51.38C181.29 440.93 217.59 448 256 448c141.38 0 256-93.12 256-208S397.38 32 256 32zm24 302.44V352c0 8.84-7.16 16-16 16h-16c-8.84 0-16-7.16-16-16v-17.73c-11.42-1.35-22.28-5.19-31.78-11.46-6.22-4.11-6.82-13.11-1.55-18.38l17.52-17.52c3.74-3.74 9.31-4.24 14.11-2.03 3.18 1.46 6.66 2.22 10.26 2.22h32.78c4.66 0 8.44-3.78 8.44-8.42 0-3.75-2.52-7.08-6.12-8.11l-50.07-14.3c-22.25-6.35-40.01-24.71-42.91-47.67-4.05-32.07 19.03-59.43 49.32-63.05V128c0-8.84 7.16-16 16-16h16c8.84 0 16 7.16 16 16v17.73c11.42 1.35 22.28 5.19 31.78 11.46 6.22 4.11 6.82 13.11 1.55 18.38l-17.52 17.52c-3.74 3.74-9.31 4.24-14.11 2.03a24.516 24.516 0 0 0-10.26-2.22h-32.78c-4.66 0-8.44 3.78-8.44 8.42 0 3.75 2.52 7.08 6.12 8.11l50.07 14.3c22.25 6.36 40.01 24.71 42.91 47.67 4.05 32.06-19.03 59.42-49.32 63.04z"],"comment-dots":[512,512,[],"f4ad","M256 32C114.6 32 0 125.1 0 240c0 49.6 21.4 95 57 130.7C44.5 421.1 2.7 466 2.2 466.5c-2.2 2.3-2.8 5.7-1.5 8.7S4.8 480 8 480c66.3 0 116-31.8 140.6-51.4 32.7 12.3 69 19.4 107.4 19.4 141.4 0 256-93.1 256-208S397.4 32 256 32zM128 272c-17.7 0-32-14.3-32-32s14.3-32 32-32 32 14.3 32 32-14.3 32-32 32zm128 0c-17.7 0-32-14.3-32-32s14.3-32 32-32 32 14.3 32 32-14.3 32-32 32zm128 0c-17.7 0-32-14.3-32-32s14.3-32 32-32 32 14.3 32 32-14.3 32-32 32z"],"comment-medical":[512,512,[],"f7f5","M256 32C114.62 32 0 125.12 0 240c0 49.56 21.41 95 57 130.74C44.46 421.05 2.7 466 2.2 466.5A8 8 0 0 0 8 480c66.26 0 116-31.75 140.6-51.38A304.66 304.66 0 0 0 256 448c141.39 0 256-93.12 256-208S397.39 32 256 32zm96 232a8 8 0 0 1-8 8h-56v56a8 8 0 0 1-8 8h-48a8 8 0 0 1-8-8v-56h-56a8 8 0 0 1-8-8v-48a8 8 0 0 1 8-8h56v-56a8 8 0 0 1 8-8h48a8 8 0 0 1 8 8v56h56a8 8 0 0 1 8 8z"],"comment-slash":[640,512,[],"f4b3","M64 240c0 49.6 21.4 95 57 130.7-12.6 50.3-54.3 95.2-54.8 95.8-2.2 2.3-2.8 5.7-1.5 8.7 1.3 2.9 4.1 4.8 7.3 4.8 66.3 0 116-31.8 140.6-51.4 32.7 12.3 69 19.4 107.4 19.4 27.4 0 53.7-3.6 78.4-10L72.9 186.4c-5.6 17.1-8.9 35-8.9 53.6zm569.8 218.1l-114.4-88.4C554.6 334.1 576 289.2 576 240c0-114.9-114.6-208-256-208-65.1 0-124.2 20.1-169.4 52.7L45.5 3.4C38.5-2 28.5-.8 23 6.2L3.4 31.4c-5.4 7-4.2 17 2.8 22.4l588.4 454.7c7 5.4 17 4.2 22.5-2.8l19.6-25.3c5.4-6.8 4.1-16.9-2.9-22.3z"],comments:[576,512,[],"f086","M416 192c0-88.4-93.1-160-208-160S0 103.6 0 192c0 34.3 14.1 65.9 38 92-13.4 30.2-35.5 54.2-35.8 54.5-2.2 2.3-2.8 5.7-1.5 8.7S4.8 352 8 352c36.6 0 66.9-12.3 88.7-25 32.2 15.7 70.3 25 111.3 25 114.9 0 208-71.6 208-160zm122 220c23.9-26 38-57.7 38-92 0-66.9-53.5-124.2-129.3-148.1.9 6.6 1.3 13.3 1.3 20.1 0 105.9-107.7 192-240 192-10.8 0-21.3-.8-31.7-1.9C207.8 439.6 281.8 480 368 480c41 0 79.1-9.2 111.3-25 21.8 12.7 52.1 25 88.7 25 3.2 0 6.1-1.9 7.3-4.8 1.3-2.9.7-6.3-1.5-8.7-.3-.3-22.4-24.2-35.8-54.5z"],"comments-dollar":[576,512,[],"f653","M416 192c0-88.37-93.12-160-208-160S0 103.63 0 192c0 34.27 14.13 65.95 37.97 91.98C24.61 314.22 2.52 338.16 2.2 338.5A7.995 7.995 0 0 0 8 352c36.58 0 66.93-12.25 88.73-24.98C128.93 342.76 167.02 352 208 352c114.88 0 208-71.63 208-160zm-224 96v-16.29c-11.29-.58-22.27-4.52-31.37-11.35-3.9-2.93-4.1-8.77-.57-12.14l11.75-11.21c2.77-2.64 6.89-2.76 10.13-.73 3.87 2.42 8.26 3.72 12.82 3.72h28.11c6.5 0 11.8-5.92 11.8-13.19 0-5.95-3.61-11.19-8.77-12.73l-45-13.5c-18.59-5.58-31.58-23.42-31.58-43.39 0-24.52 19.05-44.44 42.67-45.07V96c0-4.42 3.58-8 8-8h16c4.42 0 8 3.58 8 8v16.29c11.29.58 22.27 4.51 31.37 11.35 3.9 2.93 4.1 8.77.57 12.14l-11.75 11.21c-2.77 2.64-6.89 2.76-10.13.73-3.87-2.43-8.26-3.72-12.82-3.72h-28.11c-6.5 0-11.8 5.92-11.8 13.19 0 5.95 3.61 11.19 8.77 12.73l45 13.5c18.59 5.58 31.58 23.42 31.58 43.39 0 24.53-19.05 44.44-42.67 45.07V288c0 4.42-3.58 8-8 8h-16c-4.42 0-8-3.58-8-8zm346.01 123.99C561.87 385.96 576 354.27 576 320c0-66.94-53.49-124.2-129.33-148.07.86 6.6 1.33 13.29 1.33 20.07 0 105.87-107.66 192-240 192-10.78 0-21.32-.77-31.73-1.88C207.8 439.63 281.77 480 368 480c40.98 0 79.07-9.24 111.27-24.98C501.07 467.75 531.42 480 568 480c3.2 0 6.09-1.91 7.34-4.84 1.27-2.94.66-6.34-1.55-8.67-.31-.33-22.42-24.24-35.78-54.5z"],"compact-disc":[496,512,[],"f51f","M248 8C111 8 0 119 0 256s111 248 248 248 248-111 248-248S385 8 248 8zM88 256H56c0-105.9 86.1-192 192-192v32c-88.2 0-160 71.8-160 160zm160 96c-53 0-96-43-96-96s43-96 96-96 96 43 96 96-43 96-96 96zm0-128c-17.7 0-32 14.3-32 32s14.3 32 32 32 32-14.3 32-32-14.3-32-32-32z"],compass:[496,512,[],"f14e","M225.38 233.37c-12.5 12.5-12.5 32.76 0 45.25 12.49 12.5 32.76 12.5 45.25 0 12.5-12.5 12.5-32.76 0-45.25-12.5-12.49-32.76-12.49-45.25 0zM248 8C111.03 8 0 119.03 0 256s111.03 248 248 248 248-111.03 248-248S384.97 8 248 8zm126.14 148.05L308.17 300.4a31.938 31.938 0 0 1-15.77 15.77l-144.34 65.97c-16.65 7.61-33.81-9.55-26.2-26.2l65.98-144.35a31.938 31.938 0 0 1 15.77-15.77l144.34-65.97c16.65-7.6 33.8 9.55 26.19 26.2z"],compress:[448,512,[],"f066","M436 192H312c-13.3 0-24-10.7-24-24V44c0-6.6 5.4-12 12-12h40c6.6 0 12 5.4 12 12v84h84c6.6 0 12 5.4 12 12v40c0 6.6-5.4 12-12 12zm-276-24V44c0-6.6-5.4-12-12-12h-40c-6.6 0-12 5.4-12 12v84H12c-6.6 0-12 5.4-12 12v40c0 6.6 5.4 12 12 12h124c13.3 0 24-10.7 24-24zm0 300V344c0-13.3-10.7-24-24-24H12c-6.6 0-12 5.4-12 12v40c0 6.6 5.4 12 12 12h84v84c0 6.6 5.4 12 12 12h40c6.6 0 12-5.4 12-12zm192 0v-84h84c6.6 0 12-5.4 12-12v-40c0-6.6-5.4-12-12-12H312c-13.3 0-24 10.7-24 24v124c0 6.6 5.4 12 12 12h40c6.6 0 12-5.4 12-12z"],"compress-alt":[448,512,[],"f422","M4.686 427.314L104 328l-32.922-31.029C55.958 281.851 66.666 256 88.048 256h112C213.303 256 224 266.745 224 280v112c0 21.382-25.803 32.09-40.922 16.971L152 376l-99.314 99.314c-6.248 6.248-16.379 6.248-22.627 0L4.686 449.941c-6.248-6.248-6.248-16.379 0-22.627zM443.314 84.686L344 184l32.922 31.029c15.12 15.12 4.412 40.971-16.97 40.971h-112C234.697 256 224 245.255 224 232V120c0-21.382 25.803-32.09 40.922-16.971L296 136l99.314-99.314c6.248-6.248 16.379-6.248 22.627 0l25.373 25.373c6.248 6.248 6.248 16.379 0 22.627z"],"compress-arrows-alt":[512,512,[],"f78c","M200 288H88c-21.4 0-32.1 25.8-17 41l32.9 31-99.2 99.3c-6.2 6.2-6.2 16.4 0 22.6l25.4 25.4c6.2 6.2 16.4 6.2 22.6 0L152 408l31.1 33c15.1 15.1 40.9 4.4 40.9-17V312c0-13.3-10.7-24-24-24zm112-64h112c21.4 0 32.1-25.9 17-41l-33-31 99.3-99.3c6.2-6.2 6.2-16.4 0-22.6L481.9 4.7c-6.2-6.2-16.4-6.2-22.6 0L360 104l-31.1-33C313.8 55.9 288 66.6 288 88v112c0 13.3 10.7 24 24 24zm96 136l33-31.1c15.1-15.1 4.4-40.9-17-40.9H312c-13.3 0-24 10.7-24 24v112c0 21.4 25.9 32.1 41 17l31-32.9 99.3 99.3c6.2 6.2 16.4 6.2 22.6 0l25.4-25.4c6.2-6.2 6.2-16.4 0-22.6L408 360zM183 71.1L152 104 52.7 4.7c-6.2-6.2-16.4-6.2-22.6 0L4.7 30.1c-6.2 6.2-6.2 16.4 0 22.6L104 152l-33 31.1C55.9 198.2 66.6 224 88 224h112c13.3 0 24-10.7 24-24V88c0-21.3-25.9-32-41-16.9z"],"concierge-bell":[512,512,[],"f562","M288 130.54V112h16c8.84 0 16-7.16 16-16V80c0-8.84-7.16-16-16-16h-96c-8.84 0-16 7.16-16 16v16c0 8.84 7.16 16 16 16h16v18.54C115.49 146.11 32 239.18 32 352h448c0-112.82-83.49-205.89-192-221.46zM496 384H16c-8.84 0-16 7.16-16 16v32c0 8.84 7.16 16 16 16h480c8.84 0 16-7.16 16-16v-32c0-8.84-7.16-16-16-16z"],cookie:[512,512,[],"f563","M510.37 254.79l-12.08-76.26a132.493 132.493 0 0 0-37.16-72.95l-54.76-54.75c-19.73-19.72-45.18-32.7-72.71-37.05l-76.7-12.15c-27.51-4.36-55.69.11-80.52 12.76L107.32 49.6a132.25 132.25 0 0 0-57.79 57.8l-35.1 68.88a132.602 132.602 0 0 0-12.82 80.94l12.08 76.27a132.493 132.493 0 0 0 37.16 72.95l54.76 54.75a132.087 132.087 0 0 0 72.71 37.05l76.7 12.14c27.51 4.36 55.69-.11 80.52-12.75l69.12-35.21a132.302 132.302 0 0 0 57.79-57.8l35.1-68.87c12.71-24.96 17.2-53.3 12.82-80.96zM176 368c-17.67 0-32-14.33-32-32s14.33-32 32-32 32 14.33 32 32-14.33 32-32 32zm32-160c-17.67 0-32-14.33-32-32s14.33-32 32-32 32 14.33 32 32-14.33 32-32 32zm160 128c-17.67 0-32-14.33-32-32s14.33-32 32-32 32 14.33 32 32-14.33 32-32 32z"],"cookie-bite":[512,512,[],"f564","M510.52 255.82c-69.97-.85-126.47-57.69-126.47-127.86-70.17 0-127-56.49-127.86-126.45-27.26-4.14-55.13.3-79.72 12.82l-69.13 35.22a132.221 132.221 0 0 0-57.79 57.81l-35.1 68.88a132.645 132.645 0 0 0-12.82 80.95l12.08 76.27a132.521 132.521 0 0 0 37.16 72.96l54.77 54.76a132.036 132.036 0 0 0 72.71 37.06l76.71 12.15c27.51 4.36 55.7-.11 80.53-12.76l69.13-35.21a132.273 132.273 0 0 0 57.79-57.81l35.1-68.88c12.56-24.64 17.01-52.58 12.91-79.91zM176 368c-17.67 0-32-14.33-32-32s14.33-32 32-32 32 14.33 32 32-14.33 32-32 32zm32-160c-17.67 0-32-14.33-32-32s14.33-32 32-32 32 14.33 32 32-14.33 32-32 32zm160 128c-17.67 0-32-14.33-32-32s14.33-32 32-32 32 14.33 32 32-14.33 32-32 32z"],copy:[448,512,[],"f0c5","M320 448v40c0 13.255-10.745 24-24 24H24c-13.255 0-24-10.745-24-24V120c0-13.255 10.745-24 24-24h72v296c0 30.879 25.121 56 56 56h168zm0-344V0H152c-13.255 0-24 10.745-24 24v368c0 13.255 10.745 24 24 24h272c13.255 0 24-10.745 24-24V128H344c-13.2 0-24-10.8-24-24zm120.971-31.029L375.029 7.029A24 24 0 0 0 358.059 0H352v96h96v-6.059a24 24 0 0 0-7.029-16.97z"],copyright:[512,512,[],"f1f9","M256 8C119.033 8 8 119.033 8 256s111.033 248 248 248 248-111.033 248-248S392.967 8 256 8zm117.134 346.753c-1.592 1.867-39.776 45.731-109.851 45.731-84.692 0-144.484-63.26-144.484-145.567 0-81.303 62.004-143.401 143.762-143.401 66.957 0 101.965 37.315 103.422 38.904a12 12 0 0 1 1.238 14.623l-22.38 34.655c-4.049 6.267-12.774 7.351-18.234 2.295-.233-.214-26.529-23.88-61.88-23.88-46.116 0-73.916 33.575-73.916 76.082 0 39.602 25.514 79.692 74.277 79.692 38.697 0 65.28-28.338 65.544-28.625 5.132-5.565 14.059-5.033 18.508 1.053l24.547 33.572a12.001 12.001 0 0 1-.553 14.866z"],couch:[640,512,[],"f4b8","M160 224v64h320v-64c0-35.3 28.7-64 64-64h32c0-53-43-96-96-96H160c-53 0-96 43-96 96h32c35.3 0 64 28.7 64 64zm416-32h-32c-17.7 0-32 14.3-32 32v96H128v-96c0-17.7-14.3-32-32-32H64c-35.3 0-64 28.7-64 64 0 23.6 13 44 32 55.1V432c0 8.8 7.2 16 16 16h64c8.8 0 16-7.2 16-16v-16h384v16c0 8.8 7.2 16 16 16h64c8.8 0 16-7.2 16-16V311.1c19-11.1 32-31.5 32-55.1 0-35.3-28.7-64-64-64z"],"credit-card":[576,512,[],"f09d","M0 432c0 26.5 21.5 48 48 48h480c26.5 0 48-21.5 48-48V256H0v176zm192-68c0-6.6 5.4-12 12-12h136c6.6 0 12 5.4 12 12v40c0 6.6-5.4 12-12 12H204c-6.6 0-12-5.4-12-12v-40zm-128 0c0-6.6 5.4-12 12-12h72c6.6 0 12 5.4 12 12v40c0 6.6-5.4 12-12 12H76c-6.6 0-12-5.4-12-12v-40zM576 80v48H0V80c0-26.5 21.5-48 48-48h480c26.5 0 48 21.5 48 48z"],crop:[512,512,[],"f125","M488 352h-40V109.25l59.31-59.31c6.25-6.25 6.25-16.38 0-22.63L484.69 4.69c-6.25-6.25-16.38-6.25-22.63 0L402.75 64H192v96h114.75L160 306.75V24c0-13.26-10.75-24-24-24H88C74.75 0 64 10.74 64 24v40H24C10.75 64 0 74.74 0 88v48c0 13.25 10.75 24 24 24h40v264c0 13.25 10.75 24 24 24h232v-96H205.25L352 205.25V488c0 13.25 10.75 24 24 24h48c13.25 0 24-10.75 24-24v-40h40c13.25 0 24-10.75 24-24v-48c0-13.26-10.75-24-24-24z"],"crop-alt":[512,512,[],"f565","M488 352h-40V96c0-17.67-14.33-32-32-32H192v96h160v328c0 13.25 10.75 24 24 24h48c13.25 0 24-10.75 24-24v-40h40c13.25 0 24-10.75 24-24v-48c0-13.26-10.75-24-24-24zM160 24c0-13.26-10.75-24-24-24H88C74.75 0 64 10.74 64 24v40H24C10.75 64 0 74.74 0 88v48c0 13.25 10.75 24 24 24h40v256c0 17.67 14.33 32 32 32h224v-96H160V24z"],cross:[384,512,[],"f654","M352 128h-96V32c0-17.67-14.33-32-32-32h-64c-17.67 0-32 14.33-32 32v96H32c-17.67 0-32 14.33-32 32v64c0 17.67 14.33 32 32 32h96v224c0 17.67 14.33 32 32 32h64c17.67 0 32-14.33 32-32V256h96c17.67 0 32-14.33 32-32v-64c0-17.67-14.33-32-32-32z"],crosshairs:[512,512,[],"f05b","M500 224h-30.364C455.724 130.325 381.675 56.276 288 42.364V12c0-6.627-5.373-12-12-12h-40c-6.627 0-12 5.373-12 12v30.364C130.325 56.276 56.276 130.325 42.364 224H12c-6.627 0-12 5.373-12 12v40c0 6.627 5.373 12 12 12h30.364C56.276 381.675 130.325 455.724 224 469.636V500c0 6.627 5.373 12 12 12h40c6.627 0 12-5.373 12-12v-30.364C381.675 455.724 455.724 381.675 469.636 288H500c6.627 0 12-5.373 12-12v-40c0-6.627-5.373-12-12-12zM288 404.634V364c0-6.627-5.373-12-12-12h-40c-6.627 0-12 5.373-12 12v40.634C165.826 392.232 119.783 346.243 107.366 288H148c6.627 0 12-5.373 12-12v-40c0-6.627-5.373-12-12-12h-40.634C119.768 165.826 165.757 119.783 224 107.366V148c0 6.627 5.373 12 12 12h40c6.627 0 12-5.373 12-12v-40.634C346.174 119.768 392.217 165.757 404.634 224H364c-6.627 0-12 5.373-12 12v40c0 6.627 5.373 12 12 12h40.634C392.232 346.174 346.243 392.217 288 404.634zM288 256c0 17.673-14.327 32-32 32s-32-14.327-32-32c0-17.673 14.327-32 32-32s32 14.327 32 32z"],crow:[640,512,[],"f520","M544 32h-16.36C513.04 12.68 490.09 0 464 0c-44.18 0-80 35.82-80 80v20.98L12.09 393.57A30.216 30.216 0 0 0 0 417.74c0 22.46 23.64 37.07 43.73 27.03L165.27 384h96.49l44.41 120.1c2.27 6.23 9.15 9.44 15.38 7.17l22.55-8.21c6.23-2.27 9.44-9.15 7.17-15.38L312.94 384H352c1.91 0 3.76-.23 5.66-.29l44.51 120.38c2.27 6.23 9.15 9.44 15.38 7.17l22.55-8.21c6.23-2.27 9.44-9.15 7.17-15.38l-41.24-111.53C485.74 352.8 544 279.26 544 192v-80l96-16c0-35.35-42.98-64-96-64zm-80 72c-13.25 0-24-10.75-24-24 0-13.26 10.75-24 24-24s24 10.74 24 24c0 13.25-10.75 24-24 24z"],crown:[640,512,[],"f521","M528 448H112c-8.8 0-16 7.2-16 16v32c0 8.8 7.2 16 16 16h416c8.8 0 16-7.2 16-16v-32c0-8.8-7.2-16-16-16zm64-320c-26.5 0-48 21.5-48 48 0 7.1 1.6 13.7 4.4 19.8L476 239.2c-15.4 9.2-35.3 4-44.2-11.6L350.3 85C361 76.2 368 63 368 48c0-26.5-21.5-48-48-48s-48 21.5-48 48c0 15 7 28.2 17.7 37l-81.5 142.6c-8.9 15.6-28.9 20.8-44.2 11.6l-72.3-43.4c2.7-6 4.4-12.7 4.4-19.8 0-26.5-21.5-48-48-48S0 149.5 0 176s21.5 48 48 48c2.6 0 5.2-.4 7.7-.8L128 416h384l72.3-192.8c2.5.4 5.1.8 7.7.8 26.5 0 48-21.5 48-48s-21.5-48-48-48z"],crutch:[512,512,[],"f7f7","M507.31 185.71l-181-181a16 16 0 0 0-22.62 0L281 27.31a16 16 0 0 0 0 22.63l181 181a16 16 0 0 0 22.63 0l22.62-22.63a16 16 0 0 0 .06-22.6zm-179.54 66.41l-67.89-67.89 55.1-55.1-45.25-45.25-109.67 109.67a96.08 96.08 0 0 0-25.67 46.29L106.65 360.1l-102 102a16 16 0 0 0 0 22.63l22.62 22.62a16 16 0 0 0 22.63 0l102-102 120.25-27.75a95.88 95.88 0 0 0 46.29-25.65l109.68-109.68L382.87 197zm-54.57 54.57a32 32 0 0 1-15.45 8.54l-79.3 18.32 18.3-79.3a32.22 32.22 0 0 1 8.56-15.45l9.31-9.31 67.89 67.89z"],cube:[512,512,[],"f1b2","M239.1 6.3l-208 78c-18.7 7-31.1 25-31.1 45v225.1c0 18.2 10.3 34.8 26.5 42.9l208 104c13.5 6.8 29.4 6.8 42.9 0l208-104c16.3-8.1 26.5-24.8 26.5-42.9V129.3c0-20-12.4-37.9-31.1-44.9l-208-78C262 2.2 250 2.2 239.1 6.3zM256 68.4l192 72v1.1l-192 78-192-78v-1.1l192-72zm32 356V275.5l160-65v133.9l-160 80z"],cubes:[512,512,[],"f1b3","M488.6 250.2L392 214V105.5c0-15-9.3-28.4-23.4-33.7l-100-37.5c-8.1-3.1-17.1-3.1-25.3 0l-100 37.5c-14.1 5.3-23.4 18.7-23.4 33.7V214l-96.6 36.2C9.3 255.5 0 268.9 0 283.9V394c0 13.6 7.7 26.1 19.9 32.2l100 50c10.1 5.1 22.1 5.1 32.2 0l103.9-52 103.9 52c10.1 5.1 22.1 5.1 32.2 0l100-50c12.2-6.1 19.9-18.6 19.9-32.2V283.9c0-15-9.3-28.4-23.4-33.7zM358 214.8l-85 31.9v-68.2l85-37v73.3zM154 104.1l102-38.2 102 38.2v.6l-102 41.4-102-41.4v-.6zm84 291.1l-85 42.5v-79.1l85-38.8v75.4zm0-112l-102 41.4-102-41.4v-.6l102-38.2 102 38.2v.6zm240 112l-85 42.5v-79.1l85-38.8v75.4zm0-112l-102 41.4-102-41.4v-.6l102-38.2 102 38.2v.6z"],cut:[448,512,[],"f0c4","M278.06 256L444.48 89.57c4.69-4.69 4.69-12.29 0-16.97-32.8-32.8-85.99-32.8-118.79 0L210.18 188.12l-24.86-24.86c4.31-10.92 6.68-22.81 6.68-35.26 0-53.02-42.98-96-96-96S0 74.98 0 128s42.98 96 96 96c4.54 0 8.99-.32 13.36-.93L142.29 256l-32.93 32.93c-4.37-.61-8.83-.93-13.36-.93-53.02 0-96 42.98-96 96s42.98 96 96 96 96-42.98 96-96c0-12.45-2.37-24.34-6.68-35.26l24.86-24.86L325.69 439.4c32.8 32.8 85.99 32.8 118.79 0 4.69-4.68 4.69-12.28 0-16.97L278.06 256zM96 160c-17.64 0-32-14.36-32-32s14.36-32 32-32 32 14.36 32 32-14.36 32-32 32zm0 256c-17.64 0-32-14.36-32-32s14.36-32 32-32 32 14.36 32 32-14.36 32-32 32z"],database:[448,512,[],"f1c0","M448 73.143v45.714C448 159.143 347.667 192 224 192S0 159.143 0 118.857V73.143C0 32.857 100.333 0 224 0s224 32.857 224 73.143zM448 176v102.857C448 319.143 347.667 352 224 352S0 319.143 0 278.857V176c48.125 33.143 136.208 48.572 224 48.572S399.874 209.143 448 176zm0 160v102.857C448 479.143 347.667 512 224 512S0 479.143 0 438.857V336c48.125 33.143 136.208 48.572 224 48.572S399.874 369.143 448 336z"],deaf:[512,512,[],"f2a4","M216 260c0 15.464-12.536 28-28 28s-28-12.536-28-28c0-44.112 35.888-80 80-80s80 35.888 80 80c0 15.464-12.536 28-28 28s-28-12.536-28-28c0-13.234-10.767-24-24-24s-24 10.766-24 24zm24-176c-97.047 0-176 78.953-176 176 0 15.464 12.536 28 28 28s28-12.536 28-28c0-66.168 53.832-120 120-120s120 53.832 120 120c0 75.164-71.009 70.311-71.997 143.622L288 404c0 28.673-23.327 52-52 52-15.464 0-28 12.536-28 28s12.536 28 28 28c59.475 0 107.876-48.328 108-107.774.595-34.428 72-48.24 72-144.226 0-97.047-78.953-176-176-176zm268.485-52.201L480.2 3.515c-4.687-4.686-12.284-4.686-16.971 0L376.2 90.544c-4.686 4.686-4.686 12.284 0 16.971l28.285 28.285c4.686 4.686 12.284 4.686 16.97 0l87.03-87.029c4.687-4.688 4.687-12.286 0-16.972zM168.97 314.745c-4.686-4.686-12.284-4.686-16.97 0L3.515 463.23c-4.686 4.686-4.686 12.284 0 16.971L31.8 508.485c4.687 4.686 12.284 4.686 16.971 0L197.256 360c4.686-4.686 4.686-12.284 0-16.971l-28.286-28.284z"],democrat:[640,512,[],"f747","M637.3 256.9l-19.6-29.4c-28.2-42.3-75.3-67.5-126.1-67.5H256l-81.2-81.2c20.1-20.1 22.6-51.1 7.5-73.9-3.4-5.2-10.8-5.9-15.2-1.5l-41.8 41.8L82.4 2.4c-3.6-3.6-9.6-3-12.4 1.2-12.3 18.6-10.3 44 6.1 60.4 3.3 3.3 7.3 5.3 11.3 7.5-2.2 1.7-4.7 3.1-6.4 5.4L6.4 176.2c-7.3 9.7-8.4 22.7-3 33.5l14.3 28.6c5.4 10.8 16.5 17.7 28.6 17.7h31c8.5 0 16.6-3.4 22.6-9.4L138 212l54 108h352v-77.8c16.2 12.2 18.3 17.6 40.1 50.3 4.9 7.4 14.8 9.3 22.2 4.4l26.6-17.7c7.3-5 9.3-14.9 4.4-22.3zm-341.1-13.6l-16.5 16.1 3.9 22.7c.7 4.1-3.6 7.2-7.2 5.3L256 276.7l-20.4 10.7c-3.6 1.9-7.9-1.2-7.2-5.3l3.9-22.7-16.5-16.1c-3-2.9-1.3-7.9 2.8-8.5l22.8-3.3 10.2-20.7c1.8-3.7 7.1-3.7 9 0l10.2 20.7 22.8 3.3c4 .6 5.6 5.6 2.6 8.5zm112 0l-16.5 16.1 3.9 22.7c.7 4.1-3.6 7.2-7.2 5.3L368 276.7l-20.4 10.7c-3.6 1.9-7.9-1.2-7.2-5.3l3.9-22.7-16.5-16.1c-3-2.9-1.3-7.9 2.8-8.5l22.8-3.3 10.2-20.7c1.8-3.7 7.1-3.7 9 0l10.2 20.7 22.8 3.3c4 .6 5.6 5.6 2.6 8.5zm112 0l-16.5 16.1 3.9 22.7c.7 4.1-3.6 7.2-7.2 5.3L480 276.7l-20.4 10.7c-3.6 1.9-7.9-1.2-7.2-5.3l3.9-22.7-16.5-16.1c-3-2.9-1.3-7.9 2.8-8.5l22.8-3.3 10.2-20.7c1.8-3.7 7.1-3.7 9 0l10.2 20.7 22.8 3.3c4 .6 5.6 5.6 2.6 8.5zM192 496c0 8.8 7.2 16 16 16h64c8.8 0 16-7.2 16-16v-80h160v80c0 8.8 7.2 16 16 16h64c8.8 0 16-7.2 16-16V352H192v144z"],desktop:[576,512,[],"f108","M528 0H48C21.5 0 0 21.5 0 48v320c0 26.5 21.5 48 48 48h192l-16 48h-72c-13.3 0-24 10.7-24 24s10.7 24 24 24h272c13.3 0 24-10.7 24-24s-10.7-24-24-24h-72l-16-48h192c26.5 0 48-21.5 48-48V48c0-26.5-21.5-48-48-48zm-16 352H64V64h448v288z"],dharmachakra:[512,512,[],"f655","M495 225.06l-17.22 1.08c-5.27-39.49-20.79-75.64-43.86-105.84l12.95-11.43c6.92-6.11 7.25-16.79.73-23.31L426.44 64.4c-6.53-6.53-17.21-6.19-23.31.73L391.7 78.07c-30.2-23.06-66.35-38.58-105.83-43.86L286.94 17c.58-9.21-6.74-17-15.97-17h-29.94c-9.23 0-16.54 7.79-15.97 17l1.08 17.22c-39.49 5.27-75.64 20.79-105.83 43.86l-11.43-12.95c-6.11-6.92-16.79-7.25-23.31-.73L64.4 85.56c-6.53 6.53-6.19 17.21.73 23.31l12.95 11.43c-23.06 30.2-38.58 66.35-43.86 105.84L17 225.06c-9.21-.58-17 6.74-17 15.97v29.94c0 9.23 7.79 16.54 17 15.97l17.22-1.08c5.27 39.49 20.79 75.64 43.86 105.83l-12.95 11.43c-6.92 6.11-7.25 16.79-.73 23.31l21.17 21.17c6.53 6.53 17.21 6.19 23.31-.73l11.43-12.95c30.2 23.06 66.35 38.58 105.84 43.86L225.06 495c-.58 9.21 6.74 17 15.97 17h29.94c9.23 0 16.54-7.79 15.97-17l-1.08-17.22c39.49-5.27 75.64-20.79 105.84-43.86l11.43 12.95c6.11 6.92 16.79 7.25 23.31.73l21.17-21.17c6.53-6.53 6.19-17.21-.73-23.31l-12.95-11.43c23.06-30.2 38.58-66.35 43.86-105.83l17.22 1.08c9.21.58 17-6.74 17-15.97v-29.94c-.01-9.23-7.8-16.54-17.01-15.97zM281.84 98.61c24.81 4.07 47.63 13.66 67.23 27.78l-42.62 48.29c-8.73-5.44-18.32-9.54-28.62-11.95l4.01-64.12zm-51.68 0l4.01 64.12c-10.29 2.41-19.89 6.52-28.62 11.95l-42.62-48.29c19.6-14.12 42.42-23.71 67.23-27.78zm-103.77 64.33l48.3 42.61c-5.44 8.73-9.54 18.33-11.96 28.62l-64.12-4.01c4.07-24.81 13.66-47.62 27.78-67.22zm-27.78 118.9l64.12-4.01c2.41 10.29 6.52 19.89 11.95 28.62l-48.29 42.62c-14.12-19.6-23.71-42.42-27.78-67.23zm131.55 131.55c-24.81-4.07-47.63-13.66-67.23-27.78l42.61-48.3c8.73 5.44 18.33 9.54 28.62 11.96l-4 64.12zM256 288c-17.67 0-32-14.33-32-32s14.33-32 32-32 32 14.33 32 32-14.33 32-32 32zm25.84 125.39l-4.01-64.12c10.29-2.41 19.89-6.52 28.62-11.96l42.61 48.3c-19.6 14.12-42.41 23.71-67.22 27.78zm103.77-64.33l-48.29-42.62c5.44-8.73 9.54-18.32 11.95-28.62l64.12 4.01c-4.07 24.82-13.66 47.64-27.78 67.23zm-36.34-114.89c-2.41-10.29-6.52-19.89-11.96-28.62l48.3-42.61c14.12 19.6 23.71 42.42 27.78 67.23l-64.12 4z"],diagnoses:[640,512,[],"f470","M496 256c8.8 0 16-7.2 16-16s-7.2-16-16-16-16 7.2-16 16 7.2 16 16 16zm-176-80c48.5 0 88-39.5 88-88S368.5 0 320 0s-88 39.5-88 88 39.5 88 88 88zM59.8 364c10.2 15.3 29.3 17.8 42.9 9.8 16.2-9.6 56.2-31.7 105.3-48.6V416h224v-90.7c49.1 16.8 89.1 39 105.3 48.6 13.6 8 32.7 5.3 42.9-9.8l17.8-26.7c8.8-13.2 7.6-34.6-10-45.1-11.9-7.1-29.7-17-51.1-27.4-28.1 46.1-99.4 17.8-87.7-35.1C409.3 217.2 365.1 208 320 208c-57 0-112.9 14.5-160 32.2-.2 40.2-47.6 63.3-79.2 36-11.2 6-21.3 11.6-28.7 16-17.6 10.5-18.8 31.8-10 45.1L59.8 364zM368 344c13.3 0 24 10.7 24 24s-10.7 24-24 24-24-10.7-24-24 10.7-24 24-24zm-96-96c13.3 0 24 10.7 24 24s-10.7 24-24 24-24-10.7-24-24 10.7-24 24-24zm-160 8c8.8 0 16-7.2 16-16s-7.2-16-16-16-16 7.2-16 16 7.2 16 16 16zm512 192H16c-8.8 0-16 7.2-16 16v32c0 8.8 7.2 16 16 16h608c8.8 0 16-7.2 16-16v-32c0-8.8-7.2-16-16-16z"],dice:[640,512,[],"f522","M592 192H473.26c12.69 29.59 7.12 65.2-17 89.32L320 417.58V464c0 26.51 21.49 48 48 48h224c26.51 0 48-21.49 48-48V240c0-26.51-21.49-48-48-48zM480 376c-13.25 0-24-10.75-24-24 0-13.26 10.75-24 24-24s24 10.74 24 24c0 13.25-10.75 24-24 24zm-46.37-186.7L258.7 14.37c-19.16-19.16-50.23-19.16-69.39 0L14.37 189.3c-19.16 19.16-19.16 50.23 0 69.39L189.3 433.63c19.16 19.16 50.23 19.16 69.39 0L433.63 258.7c19.16-19.17 19.16-50.24 0-69.4zM96 248c-13.25 0-24-10.75-24-24 0-13.26 10.75-24 24-24s24 10.74 24 24c0 13.25-10.75 24-24 24zm128 128c-13.25 0-24-10.75-24-24 0-13.26 10.75-24 24-24s24 10.74 24 24c0 13.25-10.75 24-24 24zm0-128c-13.25 0-24-10.75-24-24 0-13.26 10.75-24 24-24s24 10.74 24 24c0 13.25-10.75 24-24 24zm0-128c-13.25 0-24-10.75-24-24 0-13.26 10.75-24 24-24s24 10.74 24 24c0 13.25-10.75 24-24 24zm128 128c-13.25 0-24-10.75-24-24 0-13.26 10.75-24 24-24s24 10.74 24 24c0 13.25-10.75 24-24 24z"],"dice-d20":[480,512,[],"f6cf","M106.75 215.06L1.2 370.95c-3.08 5 .1 11.5 5.93 12.14l208.26 22.07-108.64-190.1zM7.41 315.43L82.7 193.08 6.06 147.1c-2.67-1.6-6.06.32-6.06 3.43v162.81c0 4.03 5.29 5.53 7.41 2.09zM18.25 423.6l194.4 87.66c5.3 2.45 11.35-1.43 11.35-7.26v-65.67l-203.55-22.3c-4.45-.5-6.23 5.59-2.2 7.57zm81.22-257.78L179.4 22.88c4.34-7.06-3.59-15.25-10.78-11.14L17.81 110.35c-2.47 1.62-2.39 5.26.13 6.78l81.53 48.69zM240 176h109.21L253.63 7.62C250.5 2.54 245.25 0 240 0s-10.5 2.54-13.63 7.62L130.79 176H240zm233.94-28.9l-76.64 45.99 75.29 122.35c2.11 3.44 7.41 1.94 7.41-2.1V150.53c0-3.11-3.39-5.03-6.06-3.43zm-93.41 18.72l81.53-48.7c2.53-1.52 2.6-5.16.13-6.78l-150.81-98.6c-7.19-4.11-15.12 4.08-10.78 11.14l79.93 142.94zm79.02 250.21L256 438.32v65.67c0 5.84 6.05 9.71 11.35 7.26l194.4-87.66c4.03-1.97 2.25-8.06-2.2-7.56zm-86.3-200.97l-108.63 190.1 208.26-22.07c5.83-.65 9.01-7.14 5.93-12.14L373.25 215.06zM240 208H139.57L240 383.75 340.43 208H240z"],"dice-d6":[448,512,[],"f6d1","M422.19 109.95L256.21 9.07c-19.91-12.1-44.52-12.1-64.43 0L25.81 109.95c-5.32 3.23-5.29 11.27.06 14.46L224 242.55l198.14-118.14c5.35-3.19 5.38-11.22.05-14.46zm13.84 44.63L240 271.46v223.82c0 12.88 13.39 20.91 24.05 14.43l152.16-92.48c19.68-11.96 31.79-33.94 31.79-57.7v-197.7c0-6.41-6.64-10.43-11.97-7.25zM0 161.83v197.7c0 23.77 12.11 45.74 31.79 57.7l152.16 92.47c10.67 6.48 24.05-1.54 24.05-14.43V271.46L11.97 154.58C6.64 151.4 0 155.42 0 161.83z"],"dice-five":[448,512,[],"f523","M384 32H64C28.65 32 0 60.65 0 96v320c0 35.35 28.65 64 64 64h320c35.35 0 64-28.65 64-64V96c0-35.35-28.65-64-64-64zM128 384c-17.67 0-32-14.33-32-32s14.33-32 32-32 32 14.33 32 32-14.33 32-32 32zm0-192c-17.67 0-32-14.33-32-32s14.33-32 32-32 32 14.33 32 32-14.33 32-32 32zm96 96c-17.67 0-32-14.33-32-32s14.33-32 32-32 32 14.33 32 32-14.33 32-32 32zm96 96c-17.67 0-32-14.33-32-32s14.33-32 32-32 32 14.33 32 32-14.33 32-32 32zm0-192c-17.67 0-32-14.33-32-32s14.33-32 32-32 32 14.33 32 32-14.33 32-32 32z"],"dice-four":[448,512,[],"f524","M384 32H64C28.65 32 0 60.65 0 96v320c0 35.35 28.65 64 64 64h320c35.35 0 64-28.65 64-64V96c0-35.35-28.65-64-64-64zM128 384c-17.67 0-32-14.33-32-32s14.33-32 32-32 32 14.33 32 32-14.33 32-32 32zm0-192c-17.67 0-32-14.33-32-32s14.33-32 32-32 32 14.33 32 32-14.33 32-32 32zm192 192c-17.67 0-32-14.33-32-32s14.33-32 32-32 32 14.33 32 32-14.33 32-32 32zm0-192c-17.67 0-32-14.33-32-32s14.33-32 32-32 32 14.33 32 32-14.33 32-32 32z"],"dice-one":[448,512,[],"f525","M384 32H64C28.65 32 0 60.65 0 96v320c0 35.35 28.65 64 64 64h320c35.35 0 64-28.65 64-64V96c0-35.35-28.65-64-64-64zM224 288c-17.67 0-32-14.33-32-32s14.33-32 32-32 32 14.33 32 32-14.33 32-32 32z"],"dice-six":[448,512,[],"f526","M384 32H64C28.65 32 0 60.65 0 96v320c0 35.35 28.65 64 64 64h320c35.35 0 64-28.65 64-64V96c0-35.35-28.65-64-64-64zM128 384c-17.67 0-32-14.33-32-32s14.33-32 32-32 32 14.33 32 32-14.33 32-32 32zm0-96c-17.67 0-32-14.33-32-32s14.33-32 32-32 32 14.33 32 32-14.33 32-32 32zm0-96c-17.67 0-32-14.33-32-32s14.33-32 32-32 32 14.33 32 32-14.33 32-32 32zm192 192c-17.67 0-32-14.33-32-32s14.33-32 32-32 32 14.33 32 32-14.33 32-32 32zm0-96c-17.67 0-32-14.33-32-32s14.33-32 32-32 32 14.33 32 32-14.33 32-32 32zm0-96c-17.67 0-32-14.33-32-32s14.33-32 32-32 32 14.33 32 32-14.33 32-32 32z"],"dice-three":[448,512,[],"f527","M384 32H64C28.65 32 0 60.65 0 96v320c0 35.35 28.65 64 64 64h320c35.35 0 64-28.65 64-64V96c0-35.35-28.65-64-64-64zM128 192c-17.67 0-32-14.33-32-32s14.33-32 32-32 32 14.33 32 32-14.33 32-32 32zm96 96c-17.67 0-32-14.33-32-32s14.33-32 32-32 32 14.33 32 32-14.33 32-32 32zm96 96c-17.67 0-32-14.33-32-32s14.33-32 32-32 32 14.33 32 32-14.33 32-32 32z"],"dice-two":[448,512,[],"f528","M384 32H64C28.65 32 0 60.65 0 96v320c0 35.35 28.65 64 64 64h320c35.35 0 64-28.65 64-64V96c0-35.35-28.65-64-64-64zM128 192c-17.67 0-32-14.33-32-32s14.33-32 32-32 32 14.33 32 32-14.33 32-32 32zm192 192c-17.67 0-32-14.33-32-32s14.33-32 32-32 32 14.33 32 32-14.33 32-32 32z"],"digital-tachograph":[640,512,[],"f566","M608 96H32c-17.67 0-32 14.33-32 32v256c0 17.67 14.33 32 32 32h576c17.67 0 32-14.33 32-32V128c0-17.67-14.33-32-32-32zM304 352c0 4.42-3.58 8-8 8H72c-4.42 0-8-3.58-8-8v-8c0-4.42 3.58-8 8-8h224c4.42 0 8 3.58 8 8v8zM72 288v-16c0-4.42 3.58-8 8-8h16c4.42 0 8 3.58 8 8v16c0 4.42-3.58 8-8 8H80c-4.42 0-8-3.58-8-8zm64 0v-16c0-4.42 3.58-8 8-8h16c4.42 0 8 3.58 8 8v16c0 4.42-3.58 8-8 8h-16c-4.42 0-8-3.58-8-8zm64 0v-16c0-4.42 3.58-8 8-8h16c4.42 0 8 3.58 8 8v16c0 4.42-3.58 8-8 8h-16c-4.42 0-8-3.58-8-8zm64 0v-16c0-4.42 3.58-8 8-8h16c4.42 0 8 3.58 8 8v16c0 4.42-3.58 8-8 8h-16c-4.42 0-8-3.58-8-8zm40-64c0 8.84-7.16 16-16 16H80c-8.84 0-16-7.16-16-16v-48c0-8.84 7.16-16 16-16h208c8.84 0 16 7.16 16 16v48zm272 128c0 4.42-3.58 8-8 8H344c-4.42 0-8-3.58-8-8v-8c0-4.42 3.58-8 8-8h224c4.42 0 8 3.58 8 8v8z"],directions:[512,512,[],"f5eb","M502.61 233.32L278.68 9.39c-12.52-12.52-32.83-12.52-45.36 0L9.39 233.32c-12.52 12.53-12.52 32.83 0 45.36l223.93 223.93c12.52 12.53 32.83 12.53 45.36 0l223.93-223.93c12.52-12.53 12.52-32.83 0-45.36zm-100.98 12.56l-84.21 77.73c-5.12 4.73-13.43 1.1-13.43-5.88V264h-96v64c0 4.42-3.58 8-8 8h-32c-4.42 0-8-3.58-8-8v-80c0-17.67 14.33-32 32-32h112v-53.73c0-6.97 8.3-10.61 13.43-5.88l84.21 77.73c3.43 3.17 3.43 8.59 0 11.76z"],divide:[448,512,[],"f529","M224 352c-35.35 0-64 28.65-64 64s28.65 64 64 64 64-28.65 64-64-28.65-64-64-64zm0-192c35.35 0 64-28.65 64-64s-28.65-64-64-64-64 28.65-64 64 28.65 64 64 64zm192 48H32c-17.67 0-32 14.33-32 32v32c0 17.67 14.33 32 32 32h384c17.67 0 32-14.33 32-32v-32c0-17.67-14.33-32-32-32z"],dizzy:[496,512,[],"f567","M248 8C111 8 0 119 0 256s111 248 248 248 248-111 248-248S385 8 248 8zm-96 206.6l-28.7 28.7c-14.8 14.8-37.8-7.5-22.6-22.6l28.7-28.7-28.7-28.7c-15-15 7.7-37.6 22.6-22.6l28.7 28.7 28.7-28.7c15-15 37.6 7.7 22.6 22.6L174.6 192l28.7 28.7c15.2 15.2-7.9 37.4-22.6 22.6L152 214.6zM248 416c-35.3 0-64-28.7-64-64s28.7-64 64-64 64 28.7 64 64-28.7 64-64 64zm147.3-195.3c15.2 15.2-7.9 37.4-22.6 22.6L344 214.6l-28.7 28.7c-14.8 14.8-37.8-7.5-22.6-22.6l28.7-28.7-28.7-28.7c-15-15 7.7-37.6 22.6-22.6l28.7 28.7 28.7-28.7c15-15 37.6 7.7 22.6 22.6L366.6 192l28.7 28.7z"],dna:[448,512,[],"f471","M.1 494.1c-1.1 9.5 6.3 17.8 15.9 17.8l32.3.1c8.1 0 14.9-5.9 16-13.9.7-4.9 1.8-11.1 3.4-18.1H380c1.6 6.9 2.9 13.2 3.5 18.1 1.1 8 7.9 14 16 13.9l32.3-.1c9.6 0 17.1-8.3 15.9-17.8-4.6-37.9-25.6-129-118.9-207.7-17.6 12.4-37.1 24.2-58.5 35.4 6.2 4.6 11.4 9.4 17 14.2H159.7c21.3-18.1 47-35.6 78.7-51.4C410.5 199.1 442.1 65.8 447.9 17.9 449 8.4 441.6.1 432 .1L399.6 0c-8.1 0-14.9 5.9-16 13.9-.7 4.9-1.8 11.1-3.4 18.1H67.8c-1.6-7-2.7-13.1-3.4-18.1-1.1-8-7.9-14-16-13.9L16.1.1C6.5.1-1 8.4.1 17.9 5.3 60.8 31.4 171.8 160 256 31.5 340.2 5.3 451.2.1 494.1zM224 219.6c-25.1-13.7-46.4-28.4-64.3-43.6h128.5c-17.8 15.2-39.1 30-64.2 43.6zM355.1 96c-5.8 10.4-12.8 21.1-21 32H114c-8.3-10.9-15.3-21.6-21-32h262.1zM92.9 416c5.8-10.4 12.8-21.1 21-32h219.4c8.3 10.9 15.4 21.6 21.2 32H92.9z"],dog:[576,512,[],"f6d3","M298.06,224,448,277.55V496a16,16,0,0,1-16,16H368a16,16,0,0,1-16-16V384H192V496a16,16,0,0,1-16,16H112a16,16,0,0,1-16-16V282.09C58.84,268.84,32,233.66,32,192a32,32,0,0,1,64,0,32.06,32.06,0,0,0,32,32ZM544,112v32a64,64,0,0,1-64,64H448v35.58L320,197.87V48c0-14.25,17.22-21.39,27.31-11.31L374.59,64h53.63c10.91,0,23.75,7.92,28.62,17.69L464,96h64A16,16,0,0,1,544,112Zm-112,0a16,16,0,1,0-16,16A16,16,0,0,0,432,112Z"],"dollar-sign":[288,512,[],"f155","M209.2 233.4l-108-31.6C88.7 198.2 80 186.5 80 173.5c0-16.3 13.2-29.5 29.5-29.5h66.3c12.2 0 24.2 3.7 34.2 10.5 6.1 4.1 14.3 3.1 19.5-2l34.8-34c7.1-6.9 6.1-18.4-1.8-24.5C238 74.8 207.4 64.1 176 64V16c0-8.8-7.2-16-16-16h-32c-8.8 0-16 7.2-16 16v48h-2.5C45.8 64-5.4 118.7.5 183.6c4.2 46.1 39.4 83.6 83.8 96.6l102.5 30c12.5 3.7 21.2 15.3 21.2 28.3 0 16.3-13.2 29.5-29.5 29.5h-66.3C100 368 88 364.3 78 357.5c-6.1-4.1-14.3-3.1-19.5 2l-34.8 34c-7.1 6.9-6.1 18.4 1.8 24.5 24.5 19.2 55.1 29.9 86.5 30v48c0 8.8 7.2 16 16 16h32c8.8 0 16-7.2 16-16v-48.2c46.6-.9 90.3-28.6 105.7-72.7 21.5-61.6-14.6-124.8-72.5-141.7z"],dolly:[576,512,[],"f472","M294.2 277.7c18 5 34.7 13.4 49.5 24.7l161.5-53.8c8.4-2.8 12.9-11.9 10.1-20.2L454.9 47.2c-2.8-8.4-11.9-12.9-20.2-10.1l-61.1 20.4 33.1 99.4L346 177l-33.1-99.4-61.6 20.5c-8.4 2.8-12.9 11.9-10.1 20.2l53 159.4zm281 48.7L565 296c-2.8-8.4-11.9-12.9-20.2-10.1l-213.5 71.2c-17.2-22-43.6-36.4-73.5-37L158.4 21.9C154 8.8 141.8 0 128 0H16C7.2 0 0 7.2 0 16v32c0 8.8 7.2 16 16 16h88.9l92.2 276.7c-26.1 20.4-41.7 53.6-36 90.5 6.1 39.4 37.9 72.3 77.3 79.2 60.2 10.7 112.3-34.8 113.4-92.6l213.3-71.2c8.3-2.8 12.9-11.8 10.1-20.2zM256 464c-26.5 0-48-21.5-48-48s21.5-48 48-48 48 21.5 48 48-21.5 48-48 48z"],"dolly-flatbed":[640,512,[],"f474","M208 320h384c8.8 0 16-7.2 16-16V48c0-8.8-7.2-16-16-16H448v128l-48-32-48 32V32H208c-8.8 0-16 7.2-16 16v256c0 8.8 7.2 16 16 16zm416 64H128V16c0-8.8-7.2-16-16-16H16C7.2 0 0 7.2 0 16v32c0 8.8 7.2 16 16 16h48v368c0 8.8 7.2 16 16 16h82.9c-1.8 5-2.9 10.4-2.9 16 0 26.5 21.5 48 48 48s48-21.5 48-48c0-5.6-1.2-11-2.9-16H451c-1.8 5-2.9 10.4-2.9 16 0 26.5 21.5 48 48 48s48-21.5 48-48c0-5.6-1.2-11-2.9-16H624c8.8 0 16-7.2 16-16v-32c0-8.8-7.2-16-16-16z"],donate:[512,512,[],"f4b9","M256 416c114.9 0 208-93.1 208-208S370.9 0 256 0 48 93.1 48 208s93.1 208 208 208zM233.8 97.4V80.6c0-9.2 7.4-16.6 16.6-16.6h11.1c9.2 0 16.6 7.4 16.6 16.6v17c15.5.8 30.5 6.1 43 15.4 5.6 4.1 6.2 12.3 1.2 17.1L306 145.6c-3.8 3.7-9.5 3.8-14 1-5.4-3.4-11.4-5.1-17.8-5.1h-38.9c-9 0-16.3 8.2-16.3 18.3 0 8.2 5 15.5 12.1 17.6l62.3 18.7c25.7 7.7 43.7 32.4 43.7 60.1 0 34-26.4 61.5-59.1 62.4v16.8c0 9.2-7.4 16.6-16.6 16.6h-11.1c-9.2 0-16.6-7.4-16.6-16.6v-17c-15.5-.8-30.5-6.1-43-15.4-5.6-4.1-6.2-12.3-1.2-17.1l16.3-15.5c3.8-3.7 9.5-3.8 14-1 5.4 3.4 11.4 5.1 17.8 5.1h38.9c9 0 16.3-8.2 16.3-18.3 0-8.2-5-15.5-12.1-17.6l-62.3-18.7c-25.7-7.7-43.7-32.4-43.7-60.1.1-34 26.4-61.5 59.1-62.4zM480 352h-32.5c-19.6 26-44.6 47.7-73 64h63.8c5.3 0 9.6 3.6 9.6 8v16c0 4.4-4.3 8-9.6 8H73.6c-5.3 0-9.6-3.6-9.6-8v-16c0-4.4 4.3-8 9.6-8h63.8c-28.4-16.3-53.3-38-73-64H32c-17.7 0-32 14.3-32 32v96c0 17.7 14.3 32 32 32h448c17.7 0 32-14.3 32-32v-96c0-17.7-14.3-32-32-32z"],"door-closed":[640,512,[],"f52a","M624 448H512V50.8C512 22.78 490.47 0 464 0H175.99c-26.47 0-48 22.78-48 50.8V448H16c-8.84 0-16 7.16-16 16v32c0 8.84 7.16 16 16 16h608c8.84 0 16-7.16 16-16v-32c0-8.84-7.16-16-16-16zM415.99 288c-17.67 0-32-14.33-32-32s14.33-32 32-32 32 14.33 32 32c.01 17.67-14.32 32-32 32z"],"door-open":[640,512,[],"f52b","M624 448h-80V113.45C544 86.19 522.47 64 496 64H384v64h96v384h144c8.84 0 16-7.16 16-16v-32c0-8.84-7.16-16-16-16zM312.24 1.01l-192 49.74C105.99 54.44 96 67.7 96 82.92V448H16c-8.84 0-16 7.16-16 16v32c0 8.84 7.16 16 16 16h336V33.18c0-21.58-19.56-37.41-39.76-32.17zM264 288c-13.25 0-24-14.33-24-32s10.75-32 24-32 24 14.33 24 32-10.75 32-24 32z"],"dot-circle":[512,512,[],"f192","M256 8C119.033 8 8 119.033 8 256s111.033 248 248 248 248-111.033 248-248S392.967 8 256 8zm80 248c0 44.112-35.888 80-80 80s-80-35.888-80-80 35.888-80 80-80 80 35.888 80 80z"],dove:[512,512,[],"f4ba","M288 167.2v-28.1c-28.2-36.3-47.1-79.3-54.1-125.2-2.1-13.5-19-18.8-27.8-8.3-21.1 24.9-37.7 54.1-48.9 86.5 34.2 38.3 80 64.6 130.8 75.1zM400 64c-44.2 0-80 35.9-80 80.1v59.4C215.6 197.3 127 133 87 41.8c-5.5-12.5-23.2-13.2-29-.9C41.4 76 32 115.2 32 156.6c0 70.8 34.1 136.9 85.1 185.9 13.2 12.7 26.1 23.2 38.9 32.8l-143.9 36C1.4 414-3.4 426.4 2.6 435.7 20 462.6 63 508.2 155.8 512c8 .3 16-2.6 22.1-7.9l65.2-56.1H320c88.4 0 160-71.5 160-159.9V128l32-64H400zm0 96.1c-8.8 0-16-7.2-16-16s7.2-16 16-16 16 7.2 16 16-7.2 16-16 16z"],download:[512,512,[],"f019","M216 0h80c13.3 0 24 10.7 24 24v168h87.7c17.8 0 26.7 21.5 14.1 34.1L269.7 378.3c-7.5 7.5-19.8 7.5-27.3 0L90.1 226.1c-12.6-12.6-3.7-34.1 14.1-34.1H192V24c0-13.3 10.7-24 24-24zm296 376v112c0 13.3-10.7 24-24 24H24c-13.3 0-24-10.7-24-24V376c0-13.3 10.7-24 24-24h146.7l49 49c20.1 20.1 52.5 20.1 72.6 0l49-49H488c13.3 0 24 10.7 24 24zm-124 88c0-11-9-20-20-20s-20 9-20 20 9 20 20 20 20-9 20-20zm64 0c0-11-9-20-20-20s-20 9-20 20 9 20 20 20 20-9 20-20z"],"drafting-compass":[512,512,[],"f568","M457.01 344.42c-25.05 20.33-52.63 37.18-82.54 49.05l54.38 94.19 53.95 23.04c9.81 4.19 20.89-2.21 22.17-12.8l7.02-58.25-54.98-95.23zm42.49-94.56c4.86-7.67 1.89-17.99-6.05-22.39l-28.07-15.57c-7.48-4.15-16.61-1.46-21.26 5.72C403.01 281.15 332.25 320 256 320c-23.93 0-47.23-4.25-69.41-11.53l67.36-116.68c.7.02 1.34.21 2.04.21s1.35-.19 2.04-.21l51.09 88.5c31.23-8.96 59.56-25.75 82.61-48.92l-51.79-89.71C347.39 128.03 352 112.63 352 96c0-53.02-42.98-96-96-96s-96 42.98-96 96c0 16.63 4.61 32.03 12.05 45.66l-68.3 118.31c-12.55-11.61-23.96-24.59-33.68-39-4.79-7.1-13.97-9.62-21.38-5.33l-27.75 16.07c-7.85 4.54-10.63 14.9-5.64 22.47 15.57 23.64 34.69 44.21 55.98 62.02L0 439.66l7.02 58.25c1.28 10.59 12.36 16.99 22.17 12.8l53.95-23.04 70.8-122.63C186.13 377.28 220.62 384 256 384c99.05 0 190.88-51.01 243.5-134.14zM256 64c17.67 0 32 14.33 32 32s-14.33 32-32 32-32-14.33-32-32 14.33-32 32-32z"],dragon:[640,512,[],"f6d5","M18.32 255.78L192 223.96l-91.28 68.69c-10.08 10.08-2.94 27.31 11.31 27.31h222.7c-9.44-26.4-14.73-54.47-14.73-83.38v-42.27l-119.73-87.6c-23.82-15.88-55.29-14.01-77.06 4.59L5.81 227.64c-12.38 10.33-3.45 30.42 12.51 28.14zm556.87 34.1l-100.66-50.31A47.992 47.992 0 0 1 448 196.65v-36.69h64l28.09 22.63c6 6 14.14 9.37 22.63 9.37h30.97a32 32 0 0 0 28.62-17.69l14.31-28.62a32.005 32.005 0 0 0-3.02-33.51l-74.53-99.38C553.02 4.7 543.54 0 533.47 0H296.02c-7.13 0-10.7 8.57-5.66 13.61L352 63.96 292.42 88.8c-5.9 2.95-5.9 11.36 0 14.31L352 127.96v108.62c0 72.08 36.03 139.39 96 179.38-195.59 6.81-344.56 41.01-434.1 60.91C5.78 478.67 0 485.88 0 494.2 0 504 7.95 512 17.76 512h499.08c63.29.01 119.61-47.56 122.99-110.76 2.52-47.28-22.73-90.4-64.64-111.36zM489.18 66.25l45.65 11.41c-2.75 10.91-12.47 18.89-24.13 18.26-12.96-.71-25.85-12.53-21.52-29.67z"],"draw-polygon":[448,512,[],"f5ee","M384 352c-.35 0-.67.1-1.02.1l-39.2-65.32c5.07-9.17 8.22-19.56 8.22-30.78s-3.14-21.61-8.22-30.78l39.2-65.32c.35.01.67.1 1.02.1 35.35 0 64-28.65 64-64s-28.65-64-64-64c-23.63 0-44.04 12.95-55.12 32H119.12C108.04 44.95 87.63 32 64 32 28.65 32 0 60.65 0 96c0 23.63 12.95 44.04 32 55.12v209.75C12.95 371.96 0 392.37 0 416c0 35.35 28.65 64 64 64 23.63 0 44.04-12.95 55.12-32h209.75c11.09 19.05 31.49 32 55.12 32 35.35 0 64-28.65 64-64 .01-35.35-28.64-64-63.99-64zm-288 8.88V151.12A63.825 63.825 0 0 0 119.12 128h208.36l-38.46 64.1c-.35-.01-.67-.1-1.02-.1-35.35 0-64 28.65-64 64s28.65 64 64 64c.35 0 .67-.1 1.02-.1l38.46 64.1H119.12A63.748 63.748 0 0 0 96 360.88zM272 256c0-8.82 7.18-16 16-16s16 7.18 16 16-7.18 16-16 16-16-7.18-16-16zM400 96c0 8.82-7.18 16-16 16s-16-7.18-16-16 7.18-16 16-16 16 7.18 16 16zM64 80c8.82 0 16 7.18 16 16s-7.18 16-16 16-16-7.18-16-16 7.18-16 16-16zM48 416c0-8.82 7.18-16 16-16s16 7.18 16 16-7.18 16-16 16-16-7.18-16-16zm336 16c-8.82 0-16-7.18-16-16s7.18-16 16-16 16 7.18 16 16-7.18 16-16 16z"],drum:[512,512,[],"f569","M431.34 122.05l73.53-47.42a16 16 0 0 0 4.44-22.19l-8.87-13.31a16 16 0 0 0-22.19-4.44l-110.06 71C318.43 96.91 271.22 96 256 96 219.55 96 0 100.55 0 208.15v160.23c0 30.27 27.5 57.68 72 77.86v-101.9a24 24 0 1 1 48 0v118.93c33.05 9.11 71.07 15.06 112 16.73V376.39a24 24 0 1 1 48 0V480c40.93-1.67 78.95-7.62 112-16.73V344.34a24 24 0 1 1 48 0v101.9c44.5-20.18 72-47.59 72-77.86V208.15c0-43.32-35.76-69.76-80.66-86.1zM256 272.24c-114.88 0-208-28.69-208-64.09s93.12-64.08 208-64.08c17.15 0 33.73.71 49.68 1.91l-72.81 47a16 16 0 0 0-4.43 22.19l8.87 13.31a16 16 0 0 0 22.19 4.44l118.64-76.52C430.09 168 464 186.84 464 208.15c0 35.4-93.13 64.09-208 64.09z"],"drum-steelpan":[576,512,[],"f56a","M288 32C128.94 32 0 89.31 0 160v192c0 70.69 128.94 128 288 128s288-57.31 288-128V160c0-70.69-128.94-128-288-128zm-82.99 158.36c-4.45 16.61-14.54 30.57-28.31 40.48C100.23 217.46 48 190.78 48 160c0-30.16 50.11-56.39 124.04-70.03l25.6 44.34c9.86 17.09 12.48 36.99 7.37 56.05zM288 240c-21.08 0-41.41-1-60.89-2.7 8.06-26.13 32.15-45.3 60.89-45.3s52.83 19.17 60.89 45.3C329.41 239 309.08 240 288 240zm64-144c0 35.29-28.71 64-64 64s-64-28.71-64-64V82.96c20.4-1.88 41.8-2.96 64-2.96s43.6 1.08 64 2.96V96zm46.93 134.9c-13.81-9.91-23.94-23.9-28.4-40.54-5.11-19.06-2.49-38.96 7.38-56.04l25.65-44.42C477.72 103.5 528 129.79 528 160c0 30.83-52.4 57.54-129.07 70.9z"],"drumstick-bite":[512,512,[],"f6d7","M462.8 49.57a169.44 169.44 0 0 0-239.5 0C187.82 85 160.13 128 160.13 192v85.83l-40.62 40.59c-9.7 9.69-24 11.07-36.78 6a60.33 60.33 0 0 0-65 98.72C33 438.39 54.24 442.7 73.85 438.21c-4.5 19.6-.18 40.83 15.1 56.1a60.35 60.35 0 0 0 98.8-65c-5.09-12.73-3.72-27 6-36.75L234.36 352h85.89a187.87 187.87 0 0 0 61.89-10c-39.64-43.89-39.83-110.23 1.05-151.07 34.38-34.36 86.76-39.46 128.74-16.8 1.3-44.96-14.81-90.28-49.13-124.56z"],dumbbell:[640,512,[],"f44b","M104 96H56c-13.3 0-24 10.7-24 24v104H8c-4.4 0-8 3.6-8 8v48c0 4.4 3.6 8 8 8h24v104c0 13.3 10.7 24 24 24h48c13.3 0 24-10.7 24-24V120c0-13.3-10.7-24-24-24zm528 128h-24V120c0-13.3-10.7-24-24-24h-48c-13.3 0-24 10.7-24 24v272c0 13.3 10.7 24 24 24h48c13.3 0 24-10.7 24-24V288h24c4.4 0 8-3.6 8-8v-48c0-4.4-3.6-8-8-8zM456 32h-48c-13.3 0-24 10.7-24 24v168H256V56c0-13.3-10.7-24-24-24h-48c-13.3 0-24 10.7-24 24v400c0 13.3 10.7 24 24 24h48c13.3 0 24-10.7 24-24V288h128v168c0 13.3 10.7 24 24 24h48c13.3 0 24-10.7 24-24V56c0-13.3-10.7-24-24-24z"],dumpster:[576,512,[],"f793","M560 160c10.4 0 18-9.8 15.5-19.9l-24-96C549.7 37 543.3 32 536 32h-98.9l25.6 128H560zM272 32H171.5l-25.6 128H272V32zm132.5 0H304v128h126.1L404.5 32zM16 160h97.3l25.6-128H40c-7.3 0-13.7 5-15.5 12.1l-24 96C-2 150.2 5.6 160 16 160zm544 64h-20l4-32H32l4 32H16c-8.8 0-16 7.2-16 16v32c0 8.8 7.2 16 16 16h28l20 160v16c0 8.8 7.2 16 16 16h32c8.8 0 16-7.2 16-16v-16h320v16c0 8.8 7.2 16 16 16h32c8.8 0 16-7.2 16-16v-16l20-160h28c8.8 0 16-7.2 16-16v-32c0-8.8-7.2-16-16-16z"],"dumpster-fire":[640,512,[],"f794","M418.7 104.1l.2-.2-14.4-72H304v128h60.8c16.2-19.3 34.2-38.2 53.9-55.8zM272 32H171.5l-25.6 128H272V32zm189.3 72.1c18.2 16.3 35.5 33.7 51.1 51.5 5.7-5.6 11.4-11.1 17.3-16.3l21.3-19 21.3 19c1.1.9 2.1 2.1 3.1 3.1-.1-.8.2-1.5 0-2.3l-24-96C549.7 37 543.3 32 536 32h-98.9l12.3 61.5 11.9 10.6zM16 160h97.3l25.6-128H40c-7.3 0-13.7 5-15.5 12.1l-24 96C-2 150.2 5.6 160 16 160zm324.6 32H32l4 32H16c-8.8 0-16 7.2-16 16v32c0 8.8 7.2 16 16 16h28l20 160v16c0 8.8 7.2 16 16 16h32c8.8 0 16-7.2 16-16v-16h208.8c-30.2-33.7-48.8-77.9-48.8-126.4 0-35.9 19.9-82.9 52.6-129.6zm210.5-28.8c-14.9 13.3-28.3 27.2-40.2 41.2-19.5-25.8-43.6-52-71-76.4-70.2 62.7-120 144.3-120 193.6 0 87.5 71.6 158.4 160 158.4s160-70.9 160-158.4c.1-36.6-37-112.2-88.8-158.4zm-18.6 229.4c-14.7 10.7-32.9 17-52.5 17-49 0-88.9-33.5-88.9-88 0-27.1 16.5-51 49.4-91.9 4.7 5.6 67.1 88.1 67.1 88.1l39.8-47c2.8 4.8 5.4 9.5 7.7 14 18.6 36.7 10.8 83.6-22.6 107.8z"],dungeon:[512,512,[],"f6d9","M128.73 195.32l-82.81-51.76c-8.04-5.02-18.99-2.17-22.93 6.45A254.19 254.19 0 0 0 .54 239.28C-.05 248.37 7.59 256 16.69 256h97.13c7.96 0 14.08-6.25 15.01-14.16 1.09-9.33 3.24-18.33 6.24-26.94 2.56-7.34.25-15.46-6.34-19.58zM319.03 8C298.86 2.82 277.77 0 256 0s-42.86 2.82-63.03 8c-9.17 2.35-13.91 12.6-10.39 21.39l37.47 104.03A16.003 16.003 0 0 0 235.1 144h41.8c6.75 0 12.77-4.23 15.05-10.58l37.47-104.03c3.52-8.79-1.22-19.03-10.39-21.39zM112 288H16c-8.84 0-16 7.16-16 16v64c0 8.84 7.16 16 16 16h96c8.84 0 16-7.16 16-16v-64c0-8.84-7.16-16-16-16zm0 128H16c-8.84 0-16 7.16-16 16v64c0 8.84 7.16 16 16 16h96c8.84 0 16-7.16 16-16v-64c0-8.84-7.16-16-16-16zm77.31-283.67l-36.32-90.8c-3.53-8.83-14.13-12.99-22.42-8.31a257.308 257.308 0 0 0-71.61 59.89c-6.06 7.32-3.85 18.48 4.22 23.52l82.93 51.83c6.51 4.07 14.66 2.62 20.11-2.79 5.18-5.15 10.79-9.85 16.79-14.05 6.28-4.41 9.15-12.17 6.3-19.29zM398.18 256h97.13c9.1 0 16.74-7.63 16.15-16.72a254.135 254.135 0 0 0-22.45-89.27c-3.94-8.62-14.89-11.47-22.93-6.45l-82.81 51.76c-6.59 4.12-8.9 12.24-6.34 19.58 3.01 8.61 5.15 17.62 6.24 26.94.93 7.91 7.05 14.16 15.01 14.16zm54.85-162.89a257.308 257.308 0 0 0-71.61-59.89c-8.28-4.68-18.88-.52-22.42 8.31l-36.32 90.8c-2.85 7.12.02 14.88 6.3 19.28 6 4.2 11.61 8.9 16.79 14.05 5.44 5.41 13.6 6.86 20.11 2.79l82.93-51.83c8.07-5.03 10.29-16.19 4.22-23.51zM496 288h-96c-8.84 0-16 7.16-16 16v64c0 8.84 7.16 16 16 16h96c8.84 0 16-7.16 16-16v-64c0-8.84-7.16-16-16-16zm0 128h-96c-8.84 0-16 7.16-16 16v64c0 8.84 7.16 16 16 16h96c8.84 0 16-7.16 16-16v-64c0-8.84-7.16-16-16-16zM240 177.62V472c0 4.42 3.58 8 8 8h16c4.42 0 8-3.58 8-8V177.62c-5.23-.89-10.52-1.62-16-1.62s-10.77.73-16 1.62zm-64 41.51V472c0 4.42 3.58 8 8 8h16c4.42 0 8-3.58 8-8V189.36c-12.78 7.45-23.84 17.47-32 29.77zm128-29.77V472c0 4.42 3.58 8 8 8h16c4.42 0 8-3.58 8-8V219.13c-8.16-12.3-19.22-22.32-32-29.77z"],edit:[576,512,[],"f044","M402.6 83.2l90.2 90.2c3.8 3.8 3.8 10 0 13.8L274.4 405.6l-92.8 10.3c-12.4 1.4-22.9-9.1-21.5-21.5l10.3-92.8L388.8 83.2c3.8-3.8 10-3.8 13.8 0zm162-22.9l-48.8-48.8c-15.2-15.2-39.9-15.2-55.2 0l-35.4 35.4c-3.8 3.8-3.8 10 0 13.8l90.2 90.2c3.8 3.8 10 3.8 13.8 0l35.4-35.4c15.2-15.3 15.2-40 0-55.2zM384 346.2V448H64V128h229.8c3.2 0 6.2-1.3 8.5-3.5l40-40c7.6-7.6 2.2-20.5-8.5-20.5H48C21.5 64 0 85.5 0 112v352c0 26.5 21.5 48 48 48h352c26.5 0 48-21.5 48-48V306.2c0-10.7-12.9-16-20.5-8.5l-40 40c-2.2 2.3-3.5 5.3-3.5 8.5z"],egg:[384,512,[],"f7fb","M192 0C86 0 0 214 0 320s86 192 192 192 192-86 192-192S298 0 192 0z"],eject:[448,512,[],"f052","M448 384v64c0 17.673-14.327 32-32 32H32c-17.673 0-32-14.327-32-32v-64c0-17.673 14.327-32 32-32h384c17.673 0 32 14.327 32 32zM48.053 320h351.886c41.651 0 63.581-49.674 35.383-80.435L259.383 47.558c-19.014-20.743-51.751-20.744-70.767 0L12.67 239.565C-15.475 270.268 6.324 320 48.053 320z"],"ellipsis-h":[512,512,[],"f141","M328 256c0 39.8-32.2 72-72 72s-72-32.2-72-72 32.2-72 72-72 72 32.2 72 72zm104-72c-39.8 0-72 32.2-72 72s32.2 72 72 72 72-32.2 72-72-32.2-72-72-72zm-352 0c-39.8 0-72 32.2-72 72s32.2 72 72 72 72-32.2 72-72-32.2-72-72-72z"],"ellipsis-v":[192,512,[],"f142","M96 184c39.8 0 72 32.2 72 72s-32.2 72-72 72-72-32.2-72-72 32.2-72 72-72zM24 80c0 39.8 32.2 72 72 72s72-32.2 72-72S135.8 8 96 8 24 40.2 24 80zm0 352c0 39.8 32.2 72 72 72s72-32.2 72-72-32.2-72-72-72-72 32.2-72 72z"],envelope:[512,512,[],"f0e0","M502.3 190.8c3.9-3.1 9.7-.2 9.7 4.7V400c0 26.5-21.5 48-48 48H48c-26.5 0-48-21.5-48-48V195.6c0-5 5.7-7.8 9.7-4.7 22.4 17.4 52.1 39.5 154.1 113.6 21.1 15.4 56.7 47.8 92.2 47.6 35.7.3 72-32.8 92.3-47.6 102-74.1 131.6-96.3 154-113.7zM256 320c23.2.4 56.6-29.2 73.4-41.4 132.7-96.3 142.8-104.7 173.4-128.7 5.8-4.5 9.2-11.5 9.2-18.9v-19c0-26.5-21.5-48-48-48H48C21.5 64 0 85.5 0 112v19c0 7.4 3.4 14.3 9.2 18.9 30.6 23.9 40.7 32.4 173.4 128.7 16.8 12.2 50.2 41.8 73.4 41.4z"],"envelope-open":[512,512,[],"f2b6","M512 464c0 26.51-21.49 48-48 48H48c-26.51 0-48-21.49-48-48V200.724a48 48 0 0 1 18.387-37.776c24.913-19.529 45.501-35.365 164.2-121.511C199.412 29.17 232.797-.347 256 .003c23.198-.354 56.596 29.172 73.413 41.433 118.687 86.137 139.303 101.995 164.2 121.512A48 48 0 0 1 512 200.724V464zm-65.666-196.605c-2.563-3.728-7.7-4.595-11.339-1.907-22.845 16.873-55.462 40.705-105.582 77.079-16.825 12.266-50.21 41.781-73.413 41.43-23.211.344-56.559-29.143-73.413-41.43-50.114-36.37-82.734-60.204-105.582-77.079-3.639-2.688-8.776-1.821-11.339 1.907l-9.072 13.196a7.998 7.998 0 0 0 1.839 10.967c22.887 16.899 55.454 40.69 105.303 76.868 20.274 14.781 56.524 47.813 92.264 47.573 35.724.242 71.961-32.771 92.263-47.573 49.85-36.179 82.418-59.97 105.303-76.868a7.998 7.998 0 0 0 1.839-10.967l-9.071-13.196z"],"envelope-open-text":[512,512,[],"f658","M176 216h160c8.84 0 16-7.16 16-16v-16c0-8.84-7.16-16-16-16H176c-8.84 0-16 7.16-16 16v16c0 8.84 7.16 16 16 16zm-16 80c0 8.84 7.16 16 16 16h160c8.84 0 16-7.16 16-16v-16c0-8.84-7.16-16-16-16H176c-8.84 0-16 7.16-16 16v16zm96 121.13c-16.42 0-32.84-5.06-46.86-15.19L0 250.86V464c0 26.51 21.49 48 48 48h416c26.51 0 48-21.49 48-48V250.86L302.86 401.94c-14.02 10.12-30.44 15.19-46.86 15.19zm237.61-254.18c-8.85-6.94-17.24-13.47-29.61-22.81V96c0-26.51-21.49-48-48-48h-77.55c-3.04-2.2-5.87-4.26-9.04-6.56C312.6 29.17 279.2-.35 256 0c-23.2-.35-56.59 29.17-73.41 41.44-3.17 2.3-6 4.36-9.04 6.56H96c-26.51 0-48 21.49-48 48v44.14c-12.37 9.33-20.76 15.87-29.61 22.81A47.995 47.995 0 0 0 0 200.72v10.65l96 69.35V96h320v184.72l96-69.35v-10.65c0-14.74-6.78-28.67-18.39-37.77z"],"envelope-square":[448,512,[],"f199","M400 32H48C21.49 32 0 53.49 0 80v352c0 26.51 21.49 48 48 48h352c26.51 0 48-21.49 48-48V80c0-26.51-21.49-48-48-48zM178.117 262.104C87.429 196.287 88.353 196.121 64 177.167V152c0-13.255 10.745-24 24-24h272c13.255 0 24 10.745 24 24v25.167c-24.371 18.969-23.434 19.124-114.117 84.938-10.5 7.655-31.392 26.12-45.883 25.894-14.503.218-35.367-18.227-45.883-25.895zM384 217.775V360c0 13.255-10.745 24-24 24H88c-13.255 0-24-10.745-24-24V217.775c13.958 10.794 33.329 25.236 95.303 70.214 14.162 10.341 37.975 32.145 64.694 32.01 26.887.134 51.037-22.041 64.72-32.025 61.958-44.965 81.325-59.406 95.283-70.199z"],equals:[448,512,[],"f52c","M416 304H32c-17.67 0-32 14.33-32 32v32c0 17.67 14.33 32 32 32h384c17.67 0 32-14.33 32-32v-32c0-17.67-14.33-32-32-32zm0-192H32c-17.67 0-32 14.33-32 32v32c0 17.67 14.33 32 32 32h384c17.67 0 32-14.33 32-32v-32c0-17.67-14.33-32-32-32z"],eraser:[512,512,[],"f12d","M497.941 273.941c18.745-18.745 18.745-49.137 0-67.882l-160-160c-18.745-18.745-49.136-18.746-67.883 0l-256 256c-18.745 18.745-18.745 49.137 0 67.882l96 96A48.004 48.004 0 0 0 144 480h356c6.627 0 12-5.373 12-12v-40c0-6.627-5.373-12-12-12H355.883l142.058-142.059zm-302.627-62.627l137.373 137.373L265.373 416H150.628l-80-80 124.686-124.686z"],ethernet:[512,512,[],"f796","M496 192h-48v-48c0-8.8-7.2-16-16-16h-48V80c0-8.8-7.2-16-16-16H144c-8.8 0-16 7.2-16 16v48H80c-8.8 0-16 7.2-16 16v48H16c-8.8 0-16 7.2-16 16v224c0 8.8 7.2 16 16 16h80V320h32v128h64V320h32v128h64V320h32v128h64V320h32v128h80c8.8 0 16-7.2 16-16V208c0-8.8-7.2-16-16-16z"],"euro-sign":[320,512,[],"f153","M310.706 413.765c-1.314-6.63-7.835-10.872-14.424-9.369-10.692 2.439-27.422 5.413-45.426 5.413-56.763 0-101.929-34.79-121.461-85.449h113.689a12 12 0 0 0 11.708-9.369l6.373-28.36c1.686-7.502-4.019-14.631-11.708-14.631H115.22c-1.21-14.328-1.414-28.287.137-42.245H261.95a12 12 0 0 0 11.723-9.434l6.512-29.755c1.638-7.484-4.061-14.566-11.723-14.566H130.184c20.633-44.991 62.69-75.03 117.619-75.03 14.486 0 28.564 2.25 37.851 4.145 6.216 1.268 12.347-2.498 14.002-8.623l11.991-44.368c1.822-6.741-2.465-13.616-9.326-14.917C290.217 34.912 270.71 32 249.635 32 152.451 32 74.03 92.252 45.075 176H12c-6.627 0-12 5.373-12 12v29.755c0 6.627 5.373 12 12 12h21.569c-1.009 13.607-1.181 29.287-.181 42.245H12c-6.627 0-12 5.373-12 12v28.36c0 6.627 5.373 12 12 12h30.114C67.139 414.692 145.264 480 249.635 480c26.301 0 48.562-4.544 61.101-7.788 6.167-1.595 10.027-7.708 8.788-13.957l-8.818-44.49z"],"exchange-alt":[512,512,[],"f362","M0 168v-16c0-13.255 10.745-24 24-24h360V80c0-21.367 25.899-32.042 40.971-16.971l80 80c9.372 9.373 9.372 24.569 0 33.941l-80 80C409.956 271.982 384 261.456 384 240v-48H24c-13.255 0-24-10.745-24-24zm488 152H128v-48c0-21.314-25.862-32.08-40.971-16.971l-80 80c-9.372 9.373-9.372 24.569 0 33.941l80 80C102.057 463.997 128 453.437 128 432v-48h360c13.255 0 24-10.745 24-24v-16c0-13.255-10.745-24-24-24z"],exclamation:[192,512,[],"f12a","M176 432c0 44.112-35.888 80-80 80s-80-35.888-80-80 35.888-80 80-80 80 35.888 80 80zM25.26 25.199l13.6 272C39.499 309.972 50.041 320 62.83 320h66.34c12.789 0 23.331-10.028 23.97-22.801l13.6-272C167.425 11.49 156.496 0 142.77 0H49.23C35.504 0 24.575 11.49 25.26 25.199z"],"exclamation-circle":[512,512,[],"f06a","M504 256c0 136.997-111.043 248-248 248S8 392.997 8 256C8 119.083 119.043 8 256 8s248 111.083 248 248zm-248 50c-25.405 0-46 20.595-46 46s20.595 46 46 46 46-20.595 46-46-20.595-46-46-46zm-43.673-165.346l7.418 136c.347 6.364 5.609 11.346 11.982 11.346h48.546c6.373 0 11.635-4.982 11.982-11.346l7.418-136c.375-6.874-5.098-12.654-11.982-12.654h-63.383c-6.884 0-12.356 5.78-11.981 12.654z"],"exclamation-triangle":[576,512,[],"f071","M569.517 440.013C587.975 472.007 564.806 512 527.94 512H48.054c-36.937 0-59.999-40.055-41.577-71.987L246.423 23.985c18.467-32.009 64.72-31.951 83.154 0l239.94 416.028zM288 354c-25.405 0-46 20.595-46 46s20.595 46 46 46 46-20.595 46-46-20.595-46-46-46zm-43.673-165.346l7.418 136c.347 6.364 5.609 11.346 11.982 11.346h48.546c6.373 0 11.635-4.982 11.982-11.346l7.418-136c.375-6.874-5.098-12.654-11.982-12.654h-63.383c-6.884 0-12.356 5.78-11.981 12.654z"],expand:[448,512,[],"f065","M0 180V56c0-13.3 10.7-24 24-24h124c6.6 0 12 5.4 12 12v40c0 6.6-5.4 12-12 12H64v84c0 6.6-5.4 12-12 12H12c-6.6 0-12-5.4-12-12zM288 44v40c0 6.6 5.4 12 12 12h84v84c0 6.6 5.4 12 12 12h40c6.6 0 12-5.4 12-12V56c0-13.3-10.7-24-24-24H300c-6.6 0-12 5.4-12 12zm148 276h-40c-6.6 0-12 5.4-12 12v84h-84c-6.6 0-12 5.4-12 12v40c0 6.6 5.4 12 12 12h124c13.3 0 24-10.7 24-24V332c0-6.6-5.4-12-12-12zM160 468v-40c0-6.6-5.4-12-12-12H64v-84c0-6.6-5.4-12-12-12H12c-6.6 0-12 5.4-12 12v124c0 13.3 10.7 24 24 24h124c6.6 0 12-5.4 12-12z"],"expand-alt":[448,512,[],"f424","M212.686 315.314L120 408l32.922 31.029c15.12 15.12 4.412 40.971-16.97 40.971h-112C10.697 480 0 469.255 0 456V344c0-21.382 25.803-32.09 40.922-16.971L72 360l92.686-92.686c6.248-6.248 16.379-6.248 22.627 0l25.373 25.373c6.249 6.248 6.249 16.378 0 22.627zm22.628-118.628L328 104l-32.922-31.029C279.958 57.851 290.666 32 312.048 32h112C437.303 32 448 42.745 448 56v112c0 21.382-25.803 32.09-40.922 16.971L376 152l-92.686 92.686c-6.248 6.248-16.379 6.248-22.627 0l-25.373-25.373c-6.249-6.248-6.249-16.378 0-22.627z"],"expand-arrows-alt":[448,512,[],"f31e","M448 344v112a23.94 23.94 0 0 1-24 24H312c-21.39 0-32.09-25.9-17-41l36.2-36.2L224 295.6 116.77 402.9 153 439c15.09 15.1 4.39 41-17 41H24a23.94 23.94 0 0 1-24-24V344c0-21.4 25.89-32.1 41-17l36.19 36.2L184.46 256 77.18 148.7 41 185c-15.1 15.1-41 4.4-41-17V56a23.94 23.94 0 0 1 24-24h112c21.39 0 32.09 25.9 17 41l-36.2 36.2L224 216.4l107.23-107.3L295 73c-15.09-15.1-4.39-41 17-41h112a23.94 23.94 0 0 1 24 24v112c0 21.4-25.89 32.1-41 17l-36.19-36.2L263.54 256l107.28 107.3L407 327.1c15.1-15.2 41-4.5 41 16.9z"],"external-link-alt":[512,512,[],"f35d","M432,320H400a16,16,0,0,0-16,16V448H64V128H208a16,16,0,0,0,16-16V80a16,16,0,0,0-16-16H48A48,48,0,0,0,0,112V464a48,48,0,0,0,48,48H400a48,48,0,0,0,48-48V336A16,16,0,0,0,432,320ZM488,0h-128c-21.37,0-32.05,25.91-17,41l35.73,35.73L135,320.37a24,24,0,0,0,0,34L157.67,377a24,24,0,0,0,34,0L435.28,133.32,471,169c15,15,41,4.5,41-17V24A24,24,0,0,0,488,0Z"],"external-link-square-alt":[448,512,[],"f360","M448 80v352c0 26.51-21.49 48-48 48H48c-26.51 0-48-21.49-48-48V80c0-26.51 21.49-48 48-48h352c26.51 0 48 21.49 48 48zm-88 16H248.029c-21.313 0-32.08 25.861-16.971 40.971l31.984 31.987L67.515 364.485c-4.686 4.686-4.686 12.284 0 16.971l31.029 31.029c4.687 4.686 12.285 4.686 16.971 0l195.526-195.526 31.988 31.991C358.058 263.977 384 253.425 384 231.979V120c0-13.255-10.745-24-24-24z"],eye:[576,512,[],"f06e","M572.52 241.4C518.29 135.59 410.93 64 288 64S57.68 135.64 3.48 241.41a32.35 32.35 0 0 0 0 29.19C57.71 376.41 165.07 448 288 448s230.32-71.64 284.52-177.41a32.35 32.35 0 0 0 0-29.19zM288 400a144 144 0 1 1 144-144 143.93 143.93 0 0 1-144 144zm0-240a95.31 95.31 0 0 0-25.31 3.79 47.85 47.85 0 0 1-66.9 66.9A95.78 95.78 0 1 0 288 160z"],"eye-dropper":[512,512,[],"f1fb","M50.75 333.25c-12 12-18.75 28.28-18.75 45.26V424L0 480l32 32 56-32h45.49c16.97 0 33.25-6.74 45.25-18.74l126.64-126.62-128-128L50.75 333.25zM483.88 28.12c-37.47-37.5-98.28-37.5-135.75 0l-77.09 77.09-13.1-13.1c-9.44-9.44-24.65-9.31-33.94 0l-40.97 40.97c-9.37 9.37-9.37 24.57 0 33.94l161.94 161.94c9.44 9.44 24.65 9.31 33.94 0L419.88 288c9.37-9.37 9.37-24.57 0-33.94l-13.1-13.1 77.09-77.09c37.51-37.48 37.51-98.26.01-135.75z"],"eye-slash":[640,512,[],"f070","M320 400c-75.85 0-137.25-58.71-142.9-133.11L72.2 185.82c-13.79 17.3-26.48 35.59-36.72 55.59a32.35 32.35 0 0 0 0 29.19C89.71 376.41 197.07 448 320 448c26.91 0 52.87-4 77.89-10.46L346 397.39a144.13 144.13 0 0 1-26 2.61zm313.82 58.1l-110.55-85.44a331.25 331.25 0 0 0 81.25-102.07 32.35 32.35 0 0 0 0-29.19C550.29 135.59 442.93 64 320 64a308.15 308.15 0 0 0-147.32 37.7L45.46 3.37A16 16 0 0 0 23 6.18L3.37 31.45A16 16 0 0 0 6.18 53.9l588.36 454.73a16 16 0 0 0 22.46-2.81l19.64-25.27a16 16 0 0 0-2.82-22.45zm-183.72-142l-39.3-30.38A94.75 94.75 0 0 0 416 256a94.76 94.76 0 0 0-121.31-92.21A47.65 47.65 0 0 1 304 192a46.64 46.64 0 0 1-1.54 10l-73.61-56.89A142.31 142.31 0 0 1 320 112a143.92 143.92 0 0 1 144 144c0 21.63-5.29 41.79-13.9 60.11z"],fan:[512,512,[],"f863","M352.57 128c-28.09 0-54.09 4.52-77.06 12.86l12.41-123.11C289 7.31 279.81-1.18 269.33.13 189.63 10.13 128 77.64 128 159.43c0 28.09 4.52 54.09 12.86 77.06L17.75 224.08C7.31 223-1.18 232.19.13 242.67c10 79.7 77.51 141.33 159.3 141.33 28.09 0 54.09-4.52 77.06-12.86l-12.41 123.11c-1.05 10.43 8.11 18.93 18.59 17.62 79.7-10 141.33-77.51 141.33-159.3 0-28.09-4.52-54.09-12.86-77.06l123.11 12.41c10.44 1.05 18.93-8.11 17.62-18.59-10-79.7-77.51-141.33-159.3-141.33zM256 288a32 32 0 1 1 32-32 32 32 0 0 1-32 32z"],"fast-backward":[512,512,[],"f049","M0 436V76c0-6.6 5.4-12 12-12h40c6.6 0 12 5.4 12 12v151.9L235.5 71.4C256.1 54.3 288 68.6 288 96v131.9L459.5 71.4C480.1 54.3 512 68.6 512 96v320c0 27.4-31.9 41.7-52.5 24.6L288 285.3V416c0 27.4-31.9 41.7-52.5 24.6L64 285.3V436c0 6.6-5.4 12-12 12H12c-6.6 0-12-5.4-12-12z"],"fast-forward":[512,512,[],"f050","M512 76v360c0 6.6-5.4 12-12 12h-40c-6.6 0-12-5.4-12-12V284.1L276.5 440.6c-20.6 17.2-52.5 2.8-52.5-24.6V284.1L52.5 440.6C31.9 457.8 0 443.4 0 416V96c0-27.4 31.9-41.7 52.5-24.6L224 226.8V96c0-27.4 31.9-41.7 52.5-24.6L448 226.8V76c0-6.6 5.4-12 12-12h40c6.6 0 12 5.4 12 12z"],fax:[512,512,[],"f1ac","M480 160V77.25a32 32 0 0 0-9.38-22.63L425.37 9.37A32 32 0 0 0 402.75 0H160a32 32 0 0 0-32 32v448a32 32 0 0 0 32 32h320a32 32 0 0 0 32-32V192a32 32 0 0 0-32-32zM288 432a16 16 0 0 1-16 16h-32a16 16 0 0 1-16-16v-32a16 16 0 0 1 16-16h32a16 16 0 0 1 16 16zm0-128a16 16 0 0 1-16 16h-32a16 16 0 0 1-16-16v-32a16 16 0 0 1 16-16h32a16 16 0 0 1 16 16zm128 128a16 16 0 0 1-16 16h-32a16 16 0 0 1-16-16v-32a16 16 0 0 1 16-16h32a16 16 0 0 1 16 16zm0-128a16 16 0 0 1-16 16h-32a16 16 0 0 1-16-16v-32a16 16 0 0 1 16-16h32a16 16 0 0 1 16 16zm0-112H192V64h160v48a16 16 0 0 0 16 16h48zM64 128H32a32 32 0 0 0-32 32v320a32 32 0 0 0 32 32h32a32 32 0 0 0 32-32V160a32 32 0 0 0-32-32z"],feather:[512,512,[],"f52d","M467.14 44.84c-62.55-62.48-161.67-64.78-252.28 25.73-78.61 78.52-60.98 60.92-85.75 85.66-60.46 60.39-70.39 150.83-63.64 211.17l178.44-178.25c6.26-6.25 16.4-6.25 22.65 0s6.25 16.38 0 22.63L7.04 471.03c-9.38 9.37-9.38 24.57 0 33.94 9.38 9.37 24.6 9.37 33.98 0l66.1-66.03C159.42 454.65 279 457.11 353.95 384h-98.19l147.57-49.14c49.99-49.93 36.38-36.18 46.31-46.86h-97.78l131.54-43.8c45.44-74.46 34.31-148.84-16.26-199.36z"],"feather-alt":[512,512,[],"f56b","M512 0C460.22 3.56 96.44 38.2 71.01 287.61c-3.09 26.66-4.84 53.44-5.99 80.24l178.87-178.69c6.25-6.25 16.4-6.25 22.65 0s6.25 16.38 0 22.63L7.04 471.03c-9.38 9.37-9.38 24.57 0 33.94 9.38 9.37 24.59 9.37 33.98 0l57.13-57.07c42.09-.14 84.15-2.53 125.96-7.36 53.48-5.44 97.02-26.47 132.58-56.54H255.74l146.79-48.88c11.25-14.89 21.37-30.71 30.45-47.12h-81.14l106.54-53.21C500.29 132.86 510.19 26.26 512 0z"],female:[256,512,[],"f182","M128 0c35.346 0 64 28.654 64 64s-28.654 64-64 64c-35.346 0-64-28.654-64-64S92.654 0 128 0m119.283 354.179l-48-192A24 24 0 0 0 176 144h-11.36c-22.711 10.443-49.59 10.894-73.28 0H80a24 24 0 0 0-23.283 18.179l-48 192C4.935 369.305 16.383 384 32 384h56v104c0 13.255 10.745 24 24 24h32c13.255 0 24-10.745 24-24V384h56c15.591 0 27.071-14.671 23.283-29.821z"],"fighter-jet":[640,512,[],"f0fb","M544 224l-128-16-48-16h-24L227.158 44h39.509C278.333 44 288 41.375 288 38s-9.667-6-21.333-6H152v12h16v164h-48l-66.667-80H18.667L8 138.667V208h8v16h48v2.666l-64 8v42.667l64 8V288H16v16H8v69.333L18.667 384h34.667L120 304h48v164h-16v12h114.667c11.667 0 21.333-2.625 21.333-6s-9.667-6-21.333-6h-39.509L344 320h24l48-16 128-16c96-21.333 96-26.583 96-32 0-5.417 0-10.667-96-32z"],file:[384,512,[],"f15b","M224 136V0H24C10.7 0 0 10.7 0 24v464c0 13.3 10.7 24 24 24h336c13.3 0 24-10.7 24-24V160H248c-13.2 0-24-10.8-24-24zm160-14.1v6.1H256V0h6.1c6.4 0 12.5 2.5 17 7l97.9 98c4.5 4.5 7 10.6 7 16.9z"],"file-alt":[384,512,[],"f15c","M224 136V0H24C10.7 0 0 10.7 0 24v464c0 13.3 10.7 24 24 24h336c13.3 0 24-10.7 24-24V160H248c-13.2 0-24-10.8-24-24zm64 236c0 6.6-5.4 12-12 12H108c-6.6 0-12-5.4-12-12v-8c0-6.6 5.4-12 12-12h168c6.6 0 12 5.4 12 12v8zm0-64c0 6.6-5.4 12-12 12H108c-6.6 0-12-5.4-12-12v-8c0-6.6 5.4-12 12-12h168c6.6 0 12 5.4 12 12v8zm0-72v8c0 6.6-5.4 12-12 12H108c-6.6 0-12-5.4-12-12v-8c0-6.6 5.4-12 12-12h168c6.6 0 12 5.4 12 12zm96-114.1v6.1H256V0h6.1c6.4 0 12.5 2.5 17 7l97.9 98c4.5 4.5 7 10.6 7 16.9z"],"file-archive":[384,512,[],"f1c6","M377 105L279.1 7c-4.5-4.5-10.6-7-17-7H256v128h128v-6.1c0-6.3-2.5-12.4-7-16.9zM128.4 336c-17.9 0-32.4 12.1-32.4 27 0 15 14.6 27 32.5 27s32.4-12.1 32.4-27-14.6-27-32.5-27zM224 136V0h-63.6v32h-32V0H24C10.7 0 0 10.7 0 24v464c0 13.3 10.7 24 24 24h336c13.3 0 24-10.7 24-24V160H248c-13.2 0-24-10.8-24-24zM95.9 32h32v32h-32zm32.3 384c-33.2 0-58-30.4-51.4-62.9L96.4 256v-32h32v-32h-32v-32h32v-32h-32V96h32V64h32v32h-32v32h32v32h-32v32h32v32h-32v32h22.1c5.7 0 10.7 4.1 11.8 9.7l17.3 87.7c6.4 32.4-18.4 62.6-51.4 62.6z"],"file-audio":[384,512,[],"f1c7","M224 136V0H24C10.7 0 0 10.7 0 24v464c0 13.3 10.7 24 24 24h336c13.3 0 24-10.7 24-24V160H248c-13.2 0-24-10.8-24-24zm-64 268c0 10.7-12.9 16-20.5 8.5L104 376H76c-6.6 0-12-5.4-12-12v-56c0-6.6 5.4-12 12-12h28l35.5-36.5c7.6-7.6 20.5-2.2 20.5 8.5v136zm33.2-47.6c9.1-9.3 9.1-24.1 0-33.4-22.1-22.8 12.2-56.2 34.4-33.5 27.2 27.9 27.2 72.4 0 100.4-21.8 22.3-56.9-10.4-34.4-33.5zm86-117.1c54.4 55.9 54.4 144.8 0 200.8-21.8 22.4-57-10.3-34.4-33.5 36.2-37.2 36.3-96.5 0-133.8-22.1-22.8 12.3-56.3 34.4-33.5zM384 121.9v6.1H256V0h6.1c6.4 0 12.5 2.5 17 7l97.9 98c4.5 4.5 7 10.6 7 16.9z"],"file-code":[384,512,[],"f1c9","M384 121.941V128H256V0h6.059c6.365 0 12.47 2.529 16.971 7.029l97.941 97.941A24.005 24.005 0 0 1 384 121.941zM248 160c-13.2 0-24-10.8-24-24V0H24C10.745 0 0 10.745 0 24v464c0 13.255 10.745 24 24 24h336c13.255 0 24-10.745 24-24V160H248zM123.206 400.505a5.4 5.4 0 0 1-7.633.246l-64.866-60.812a5.4 5.4 0 0 1 0-7.879l64.866-60.812a5.4 5.4 0 0 1 7.633.246l19.579 20.885a5.4 5.4 0 0 1-.372 7.747L101.65 336l40.763 35.874a5.4 5.4 0 0 1 .372 7.747l-19.579 20.884zm51.295 50.479l-27.453-7.97a5.402 5.402 0 0 1-3.681-6.692l61.44-211.626a5.402 5.402 0 0 1 6.692-3.681l27.452 7.97a5.4 5.4 0 0 1 3.68 6.692l-61.44 211.626a5.397 5.397 0 0 1-6.69 3.681zm160.792-111.045l-64.866 60.812a5.4 5.4 0 0 1-7.633-.246l-19.58-20.885a5.4 5.4 0 0 1 .372-7.747L284.35 336l-40.763-35.874a5.4 5.4 0 0 1-.372-7.747l19.58-20.885a5.4 5.4 0 0 1 7.633-.246l64.866 60.812a5.4 5.4 0 0 1-.001 7.879z"],"file-contract":[384,512,[],"f56c","M224 136V0H24C10.7 0 0 10.7 0 24v464c0 13.3 10.7 24 24 24h336c13.3 0 24-10.7 24-24V160H248c-13.2 0-24-10.8-24-24zM64 72c0-4.42 3.58-8 8-8h80c4.42 0 8 3.58 8 8v16c0 4.42-3.58 8-8 8H72c-4.42 0-8-3.58-8-8V72zm0 64c0-4.42 3.58-8 8-8h80c4.42 0 8 3.58 8 8v16c0 4.42-3.58 8-8 8H72c-4.42 0-8-3.58-8-8v-16zm192.81 248H304c8.84 0 16 7.16 16 16s-7.16 16-16 16h-47.19c-16.45 0-31.27-9.14-38.64-23.86-2.95-5.92-8.09-6.52-10.17-6.52s-7.22.59-10.02 6.19l-7.67 15.34a15.986 15.986 0 0 1-14.31 8.84c-.38 0-.75-.02-1.14-.05-6.45-.45-12-4.75-14.03-10.89L144 354.59l-10.61 31.88c-5.89 17.66-22.38 29.53-41 29.53H80c-8.84 0-16-7.16-16-16s7.16-16 16-16h12.39c4.83 0 9.11-3.08 10.64-7.66l18.19-54.64c3.3-9.81 12.44-16.41 22.78-16.41s19.48 6.59 22.77 16.41l13.88 41.64c19.77-16.19 54.05-9.7 66 14.16 2.02 4.06 5.96 6.5 10.16 6.5zM377 105L279.1 7c-4.5-4.5-10.6-7-17-7H256v128h128v-6.1c0-6.3-2.5-12.4-7-16.9z"],"file-csv":[384,512,[],"f6dd","M224 136V0H24C10.7 0 0 10.7 0 24v464c0 13.3 10.7 24 24 24h336c13.3 0 24-10.7 24-24V160H248c-13.2 0-24-10.8-24-24zm-96 144c0 4.42-3.58 8-8 8h-8c-8.84 0-16 7.16-16 16v32c0 8.84 7.16 16 16 16h8c4.42 0 8 3.58 8 8v16c0 4.42-3.58 8-8 8h-8c-26.51 0-48-21.49-48-48v-32c0-26.51 21.49-48 48-48h8c4.42 0 8 3.58 8 8v16zm44.27 104H160c-4.42 0-8-3.58-8-8v-16c0-4.42 3.58-8 8-8h12.27c5.95 0 10.41-3.5 10.41-6.62 0-1.3-.75-2.66-2.12-3.84l-21.89-18.77c-8.47-7.22-13.33-17.48-13.33-28.14 0-21.3 19.02-38.62 42.41-38.62H200c4.42 0 8 3.58 8 8v16c0 4.42-3.58 8-8 8h-12.27c-5.95 0-10.41 3.5-10.41 6.62 0 1.3.75 2.66 2.12 3.84l21.89 18.77c8.47 7.22 13.33 17.48 13.33 28.14.01 21.29-19 38.62-42.39 38.62zM256 264v20.8c0 20.27 5.7 40.17 16 56.88 10.3-16.7 16-36.61 16-56.88V264c0-4.42 3.58-8 8-8h16c4.42 0 8 3.58 8 8v20.8c0 35.48-12.88 68.89-36.28 94.09-3.02 3.25-7.27 5.11-11.72 5.11s-8.7-1.86-11.72-5.11c-23.4-25.2-36.28-58.61-36.28-94.09V264c0-4.42 3.58-8 8-8h16c4.42 0 8 3.58 8 8zm121-159L279.1 7c-4.5-4.5-10.6-7-17-7H256v128h128v-6.1c0-6.3-2.5-12.4-7-16.9z"],"file-download":[384,512,[],"f56d","M224 136V0H24C10.7 0 0 10.7 0 24v464c0 13.3 10.7 24 24 24h336c13.3 0 24-10.7 24-24V160H248c-13.2 0-24-10.8-24-24zm76.45 211.36l-96.42 95.7c-6.65 6.61-17.39 6.61-24.04 0l-96.42-95.7C73.42 337.29 80.54 320 94.82 320H160v-80c0-8.84 7.16-16 16-16h32c8.84 0 16 7.16 16 16v80h65.18c14.28 0 21.4 17.29 11.27 27.36zM377 105L279.1 7c-4.5-4.5-10.6-7-17-7H256v128h128v-6.1c0-6.3-2.5-12.4-7-16.9z"],"file-excel":[384,512,[],"f1c3","M224 136V0H24C10.7 0 0 10.7 0 24v464c0 13.3 10.7 24 24 24h336c13.3 0 24-10.7 24-24V160H248c-13.2 0-24-10.8-24-24zm60.1 106.5L224 336l60.1 93.5c5.1 8-.6 18.5-10.1 18.5h-34.9c-4.4 0-8.5-2.4-10.6-6.3C208.9 405.5 192 373 192 373c-6.4 14.8-10 20-36.6 68.8-2.1 3.9-6.1 6.3-10.5 6.3H110c-9.5 0-15.2-10.5-10.1-18.5l60.3-93.5-60.3-93.5c-5.2-8 .6-18.5 10.1-18.5h34.8c4.4 0 8.5 2.4 10.6 6.3 26.1 48.8 20 33.6 36.6 68.5 0 0 6.1-11.7 36.6-68.5 2.1-3.9 6.2-6.3 10.6-6.3H274c9.5-.1 15.2 10.4 10.1 18.4zM384 121.9v6.1H256V0h6.1c6.4 0 12.5 2.5 17 7l97.9 98c4.5 4.5 7 10.6 7 16.9z"],"file-export":[576,512,[],"f56e","M384 121.9c0-6.3-2.5-12.4-7-16.9L279.1 7c-4.5-4.5-10.6-7-17-7H256v128h128zM571 308l-95.7-96.4c-10.1-10.1-27.4-3-27.4 11.3V288h-64v64h64v65.2c0 14.3 17.3 21.4 27.4 11.3L571 332c6.6-6.6 6.6-17.4 0-24zm-379 28v-32c0-8.8 7.2-16 16-16h176V160H248c-13.2 0-24-10.8-24-24V0H24C10.7 0 0 10.7 0 24v464c0 13.3 10.7 24 24 24h336c13.3 0 24-10.7 24-24V352H208c-8.8 0-16-7.2-16-16z"],"file-image":[384,512,[],"f1c5","M384 121.941V128H256V0h6.059a24 24 0 0 1 16.97 7.029l97.941 97.941a24.002 24.002 0 0 1 7.03 16.971zM248 160c-13.2 0-24-10.8-24-24V0H24C10.745 0 0 10.745 0 24v464c0 13.255 10.745 24 24 24h336c13.255 0 24-10.745 24-24V160H248zm-135.455 16c26.51 0 48 21.49 48 48s-21.49 48-48 48-48-21.49-48-48 21.491-48 48-48zm208 240h-256l.485-48.485L104.545 328c4.686-4.686 11.799-4.201 16.485.485L160.545 368 264.06 264.485c4.686-4.686 12.284-4.686 16.971 0L320.545 304v112z"],"file-import":[512,512,[],"f56f","M16 288c-8.8 0-16 7.2-16 16v32c0 8.8 7.2 16 16 16h112v-64zm489-183L407.1 7c-4.5-4.5-10.6-7-17-7H384v128h128v-6.1c0-6.3-2.5-12.4-7-16.9zm-153 31V0H152c-13.3 0-24 10.7-24 24v264h128v-65.2c0-14.3 17.3-21.4 27.4-11.3L379 308c6.6 6.7 6.6 17.4 0 24l-95.7 96.4c-10.1 10.1-27.4 3-27.4-11.3V352H128v136c0 13.3 10.7 24 24 24h336c13.3 0 24-10.7 24-24V160H376c-13.2 0-24-10.8-24-24z"],"file-invoice":[384,512,[],"f570","M288 256H96v64h192v-64zm89-151L279.1 7c-4.5-4.5-10.6-7-17-7H256v128h128v-6.1c0-6.3-2.5-12.4-7-16.9zm-153 31V0H24C10.7 0 0 10.7 0 24v464c0 13.3 10.7 24 24 24h336c13.3 0 24-10.7 24-24V160H248c-13.2 0-24-10.8-24-24zM64 72c0-4.42 3.58-8 8-8h80c4.42 0 8 3.58 8 8v16c0 4.42-3.58 8-8 8H72c-4.42 0-8-3.58-8-8V72zm0 64c0-4.42 3.58-8 8-8h80c4.42 0 8 3.58 8 8v16c0 4.42-3.58 8-8 8H72c-4.42 0-8-3.58-8-8v-16zm256 304c0 4.42-3.58 8-8 8h-80c-4.42 0-8-3.58-8-8v-16c0-4.42 3.58-8 8-8h80c4.42 0 8 3.58 8 8v16zm0-200v96c0 8.84-7.16 16-16 16H80c-8.84 0-16-7.16-16-16v-96c0-8.84 7.16-16 16-16h224c8.84 0 16 7.16 16 16z"],"file-invoice-dollar":[384,512,[],"f571","M377 105L279.1 7c-4.5-4.5-10.6-7-17-7H256v128h128v-6.1c0-6.3-2.5-12.4-7-16.9zm-153 31V0H24C10.7 0 0 10.7 0 24v464c0 13.3 10.7 24 24 24h336c13.3 0 24-10.7 24-24V160H248c-13.2 0-24-10.8-24-24zM64 72c0-4.42 3.58-8 8-8h80c4.42 0 8 3.58 8 8v16c0 4.42-3.58 8-8 8H72c-4.42 0-8-3.58-8-8V72zm0 80v-16c0-4.42 3.58-8 8-8h80c4.42 0 8 3.58 8 8v16c0 4.42-3.58 8-8 8H72c-4.42 0-8-3.58-8-8zm144 263.88V440c0 4.42-3.58 8-8 8h-16c-4.42 0-8-3.58-8-8v-24.29c-11.29-.58-22.27-4.52-31.37-11.35-3.9-2.93-4.1-8.77-.57-12.14l11.75-11.21c2.77-2.64 6.89-2.76 10.13-.73 3.87 2.42 8.26 3.72 12.82 3.72h28.11c6.5 0 11.8-5.92 11.8-13.19 0-5.95-3.61-11.19-8.77-12.73l-45-13.5c-18.59-5.58-31.58-23.42-31.58-43.39 0-24.52 19.05-44.44 42.67-45.07V232c0-4.42 3.58-8 8-8h16c4.42 0 8 3.58 8 8v24.29c11.29.58 22.27 4.51 31.37 11.35 3.9 2.93 4.1 8.77.57 12.14l-11.75 11.21c-2.77 2.64-6.89 2.76-10.13.73-3.87-2.43-8.26-3.72-12.82-3.72h-28.11c-6.5 0-11.8 5.92-11.8 13.19 0 5.95 3.61 11.19 8.77 12.73l45 13.5c18.59 5.58 31.58 23.42 31.58 43.39 0 24.53-19.05 44.44-42.67 45.07z"],"file-medical":[384,512,[],"f477","M377 105L279.1 7c-4.5-4.5-10.6-7-17-7H256v128h128v-6.1c0-6.3-2.5-12.4-7-16.9zm-153 31V0H24C10.7 0 0 10.7 0 24v464c0 13.3 10.7 24 24 24h336c13.3 0 24-10.7 24-24V160H248c-13.2 0-24-10.8-24-24zm64 160v48c0 4.4-3.6 8-8 8h-56v56c0 4.4-3.6 8-8 8h-48c-4.4 0-8-3.6-8-8v-56h-56c-4.4 0-8-3.6-8-8v-48c0-4.4 3.6-8 8-8h56v-56c0-4.4 3.6-8 8-8h48c4.4 0 8 3.6 8 8v56h56c4.4 0 8 3.6 8 8z"],"file-medical-alt":[448,512,[],"f478","M288 136V0H88C74.7 0 64 10.7 64 24v232H8c-4.4 0-8 3.6-8 8v16c0 4.4 3.6 8 8 8h140.9c3 0 5.8 1.7 7.2 4.4l19.9 39.8 56.8-113.7c2.9-5.9 11.4-5.9 14.3 0l34.7 69.5H352c8.8 0 16 7.2 16 16s-7.2 16-16 16h-89.9L240 275.8l-56.8 113.7c-2.9 5.9-11.4 5.9-14.3 0L134.1 320H64v168c0 13.3 10.7 24 24 24h336c13.3 0 24-10.7 24-24V160H312c-13.2 0-24-10.8-24-24zm153-31L343.1 7c-4.5-4.5-10.6-7-17-7H320v128h128v-6.1c0-6.3-2.5-12.4-7-16.9z"],"file-pdf":[384,512,[],"f1c1","M181.9 256.1c-5-16-4.9-46.9-2-46.9 8.4 0 7.6 36.9 2 46.9zm-1.7 47.2c-7.7 20.2-17.3 43.3-28.4 62.7 18.3-7 39-17.2 62.9-21.9-12.7-9.6-24.9-23.4-34.5-40.8zM86.1 428.1c0 .8 13.2-5.4 34.9-40.2-6.7 6.3-29.1 24.5-34.9 40.2zM248 160h136v328c0 13.3-10.7 24-24 24H24c-13.3 0-24-10.7-24-24V24C0 10.7 10.7 0 24 0h200v136c0 13.2 10.8 24 24 24zm-8 171.8c-20-12.2-33.3-29-42.7-53.8 4.5-18.5 11.6-46.6 6.2-64.2-4.7-29.4-42.4-26.5-47.8-6.8-5 18.3-.4 44.1 8.1 77-11.6 27.6-28.7 64.6-40.8 85.8-.1 0-.1.1-.2.1-27.1 13.9-73.6 44.5-54.5 68 5.6 6.9 16 10 21.5 10 17.9 0 35.7-18 61.1-61.8 25.8-8.5 54.1-19.1 79-23.2 21.7 11.8 47.1 19.5 64 19.5 29.2 0 31.2-32 19.7-43.4-13.9-13.6-54.3-9.7-73.6-7.2zM377 105L279 7c-4.5-4.5-10.6-7-17-7h-6v128h128v-6.1c0-6.3-2.5-12.4-7-16.9zm-74.1 255.3c4.1-2.7-2.5-11.9-42.8-9 37.1 15.8 42.8 9 42.8 9z"],"file-powerpoint":[384,512,[],"f1c4","M193.7 271.2c8.8 0 15.5 2.7 20.3 8.1 9.6 10.9 9.8 32.7-.2 44.1-4.9 5.6-11.9 8.5-21.1 8.5h-26.9v-60.7h27.9zM377 105L279 7c-4.5-4.5-10.6-7-17-7h-6v128h128v-6.1c0-6.3-2.5-12.4-7-16.9zm-153 31V0H24C10.7 0 0 10.7 0 24v464c0 13.3 10.7 24 24 24h336c13.3 0 24-10.7 24-24V160H248c-13.2 0-24-10.8-24-24zm53 165.2c0 90.3-88.8 77.6-111.1 77.6V436c0 6.6-5.4 12-12 12h-30.8c-6.6 0-12-5.4-12-12V236.2c0-6.6 5.4-12 12-12h81c44.5 0 72.9 32.8 72.9 77z"],"file-prescription":[384,512,[],"f572","M224 136V0H24C10.7 0 0 10.7 0 24v464c0 13.3 10.7 24 24 24h336c13.3 0 24-10.7 24-24V160H248c-13.2 0-24-10.8-24-24zm68.53 179.48l11.31 11.31c6.25 6.25 6.25 16.38 0 22.63l-29.9 29.9L304 409.38c6.25 6.25 6.25 16.38 0 22.63l-11.31 11.31c-6.25 6.25-16.38 6.25-22.63 0L240 413.25l-30.06 30.06c-6.25 6.25-16.38 6.25-22.63 0L176 432c-6.25-6.25-6.25-16.38 0-22.63l30.06-30.06L146.74 320H128v48c0 8.84-7.16 16-16 16H96c-8.84 0-16-7.16-16-16V208c0-8.84 7.16-16 16-16h80c35.35 0 64 28.65 64 64 0 24.22-13.62 45.05-33.46 55.92L240 345.38l29.9-29.9c6.25-6.25 16.38-6.25 22.63 0zM176 272h-48v-32h48c8.82 0 16 7.18 16 16s-7.18 16-16 16zm208-150.1v6.1H256V0h6.1c6.4 0 12.5 2.5 17 7l97.9 98c4.5 4.5 7 10.6 7 16.9z"],"file-signature":[576,512,[],"f573","M218.17 424.14c-2.95-5.92-8.09-6.52-10.17-6.52s-7.22.59-10.02 6.19l-7.67 15.34c-6.37 12.78-25.03 11.37-29.48-2.09L144 386.59l-10.61 31.88c-5.89 17.66-22.38 29.53-41 29.53H80c-8.84 0-16-7.16-16-16s7.16-16 16-16h12.39c4.83 0 9.11-3.08 10.64-7.66l18.19-54.64c3.3-9.81 12.44-16.41 22.78-16.41s19.48 6.59 22.77 16.41l13.88 41.64c19.75-16.19 54.06-9.7 66 14.16 1.89 3.78 5.49 5.95 9.36 6.26v-82.12l128-127.09V160H248c-13.2 0-24-10.8-24-24V0H24C10.7 0 0 10.7 0 24v464c0 13.3 10.7 24 24 24h336c13.3 0 24-10.7 24-24v-40l-128-.11c-16.12-.31-30.58-9.28-37.83-23.75zM384 121.9c0-6.3-2.5-12.4-7-16.9L279.1 7c-4.5-4.5-10.6-7-17-7H256v128h128v-6.1zm-96 225.06V416h68.99l161.68-162.78-67.88-67.88L288 346.96zm280.54-179.63l-31.87-31.87c-9.94-9.94-26.07-9.94-36.01 0l-27.25 27.25 67.88 67.88 27.25-27.25c9.95-9.94 9.95-26.07 0-36.01z"],"file-upload":[384,512,[],"f574","M224 136V0H24C10.7 0 0 10.7 0 24v464c0 13.3 10.7 24 24 24h336c13.3 0 24-10.7 24-24V160H248c-13.2 0-24-10.8-24-24zm65.18 216.01H224v80c0 8.84-7.16 16-16 16h-32c-8.84 0-16-7.16-16-16v-80H94.82c-14.28 0-21.41-17.29-11.27-27.36l96.42-95.7c6.65-6.61 17.39-6.61 24.04 0l96.42 95.7c10.15 10.07 3.03 27.36-11.25 27.36zM377 105L279.1 7c-4.5-4.5-10.6-7-17-7H256v128h128v-6.1c0-6.3-2.5-12.4-7-16.9z"],"file-video":[384,512,[],"f1c8","M384 121.941V128H256V0h6.059c6.365 0 12.47 2.529 16.971 7.029l97.941 97.941A24.005 24.005 0 0 1 384 121.941zM224 136V0H24C10.745 0 0 10.745 0 24v464c0 13.255 10.745 24 24 24h336c13.255 0 24-10.745 24-24V160H248c-13.2 0-24-10.8-24-24zm96 144.016v111.963c0 21.445-25.943 31.998-40.971 16.971L224 353.941V392c0 13.255-10.745 24-24 24H88c-13.255 0-24-10.745-24-24V280c0-13.255 10.745-24 24-24h112c13.255 0 24 10.745 24 24v38.059l55.029-55.013c15.011-15.01 40.971-4.491 40.971 16.97z"],"file-word":[384,512,[],"f1c2","M224 136V0H24C10.7 0 0 10.7 0 24v464c0 13.3 10.7 24 24 24h336c13.3 0 24-10.7 24-24V160H248c-13.2 0-24-10.8-24-24zm57.1 120H305c7.7 0 13.4 7.1 11.7 14.7l-38 168c-1.2 5.5-6.1 9.3-11.7 9.3h-38c-5.5 0-10.3-3.8-11.6-9.1-25.8-103.5-20.8-81.2-25.6-110.5h-.5c-1.1 14.3-2.4 17.4-25.6 110.5-1.3 5.3-6.1 9.1-11.6 9.1H117c-5.6 0-10.5-3.9-11.7-9.4l-37.8-168c-1.7-7.5 4-14.6 11.7-14.6h24.5c5.7 0 10.7 4 11.8 9.7 15.6 78 20.1 109.5 21 122.2 1.6-10.2 7.3-32.7 29.4-122.7 1.3-5.4 6.1-9.1 11.7-9.1h29.1c5.6 0 10.4 3.8 11.7 9.2 24 100.4 28.8 124 29.6 129.4-.2-11.2-2.6-17.8 21.6-129.2 1-5.6 5.9-9.5 11.5-9.5zM384 121.9v6.1H256V0h6.1c6.4 0 12.5 2.5 17 7l97.9 98c4.5 4.5 7 10.6 7 16.9z"],fill:[512,512,[],"f575","M502.63 217.06L294.94 9.37C288.69 3.12 280.5 0 272.31 0s-16.38 3.12-22.62 9.37l-81.58 81.58L81.93 4.77c-6.24-6.25-16.38-6.25-22.62 0L36.69 27.38c-6.24 6.25-6.24 16.38 0 22.63l86.19 86.18-94.76 94.76c-37.49 37.49-37.49 98.26 0 135.75l117.19 117.19c18.75 18.74 43.31 28.12 67.87 28.12 24.57 0 49.13-9.37 67.88-28.12l221.57-221.57c12.49-12.5 12.49-32.76 0-45.26zm-116.22 70.97H65.93c1.36-3.84 3.57-7.98 7.43-11.83l13.15-13.15 81.61-81.61 58.61 58.6c12.49 12.49 32.75 12.49 45.24 0 12.49-12.49 12.49-32.75 0-45.24l-58.61-58.6 58.95-58.95 162.45 162.44-48.35 48.34z"],"fill-drip":[576,512,[],"f576","M512 320s-64 92.65-64 128c0 35.35 28.66 64 64 64s64-28.65 64-64-64-128-64-128zm-9.37-102.94L294.94 9.37C288.69 3.12 280.5 0 272.31 0s-16.38 3.12-22.62 9.37l-81.58 81.58L81.93 4.76c-6.25-6.25-16.38-6.25-22.62 0L36.69 27.38c-6.24 6.25-6.24 16.38 0 22.62l86.19 86.18-94.76 94.76c-37.49 37.48-37.49 98.26 0 135.75l117.19 117.19c18.74 18.74 43.31 28.12 67.87 28.12 24.57 0 49.13-9.37 67.87-28.12l221.57-221.57c12.5-12.5 12.5-32.75.01-45.25zm-116.22 70.97H65.93c1.36-3.84 3.57-7.98 7.43-11.83l13.15-13.15 81.61-81.61 58.6 58.6c12.49 12.49 32.75 12.49 45.24 0s12.49-32.75 0-45.24l-58.6-58.6 58.95-58.95 162.44 162.44-48.34 48.34z"],film:[512,512,[],"f008","M488 64h-8v20c0 6.6-5.4 12-12 12h-40c-6.6 0-12-5.4-12-12V64H96v20c0 6.6-5.4 12-12 12H44c-6.6 0-12-5.4-12-12V64h-8C10.7 64 0 74.7 0 88v336c0 13.3 10.7 24 24 24h8v-20c0-6.6 5.4-12 12-12h40c6.6 0 12 5.4 12 12v20h320v-20c0-6.6 5.4-12 12-12h40c6.6 0 12 5.4 12 12v20h8c13.3 0 24-10.7 24-24V88c0-13.3-10.7-24-24-24zM96 372c0 6.6-5.4 12-12 12H44c-6.6 0-12-5.4-12-12v-40c0-6.6 5.4-12 12-12h40c6.6 0 12 5.4 12 12v40zm0-96c0 6.6-5.4 12-12 12H44c-6.6 0-12-5.4-12-12v-40c0-6.6 5.4-12 12-12h40c6.6 0 12 5.4 12 12v40zm0-96c0 6.6-5.4 12-12 12H44c-6.6 0-12-5.4-12-12v-40c0-6.6 5.4-12 12-12h40c6.6 0 12 5.4 12 12v40zm272 208c0 6.6-5.4 12-12 12H156c-6.6 0-12-5.4-12-12v-96c0-6.6 5.4-12 12-12h200c6.6 0 12 5.4 12 12v96zm0-168c0 6.6-5.4 12-12 12H156c-6.6 0-12-5.4-12-12v-96c0-6.6 5.4-12 12-12h200c6.6 0 12 5.4 12 12v96zm112 152c0 6.6-5.4 12-12 12h-40c-6.6 0-12-5.4-12-12v-40c0-6.6 5.4-12 12-12h40c6.6 0 12 5.4 12 12v40zm0-96c0 6.6-5.4 12-12 12h-40c-6.6 0-12-5.4-12-12v-40c0-6.6 5.4-12 12-12h40c6.6 0 12 5.4 12 12v40zm0-96c0 6.6-5.4 12-12 12h-40c-6.6 0-12-5.4-12-12v-40c0-6.6 5.4-12 12-12h40c6.6 0 12 5.4 12 12v40z"],filter:[512,512,[],"f0b0","M487.976 0H24.028C2.71 0-8.047 25.866 7.058 40.971L192 225.941V432c0 7.831 3.821 15.17 10.237 19.662l80 55.98C298.02 518.69 320 507.493 320 487.98V225.941l184.947-184.97C520.021 25.896 509.338 0 487.976 0z"],fingerprint:[512,512,[],"f577","M256.12 245.96c-13.25 0-24 10.74-24 24 1.14 72.25-8.14 141.9-27.7 211.55-2.73 9.72 2.15 30.49 23.12 30.49 10.48 0 20.11-6.92 23.09-17.52 13.53-47.91 31.04-125.41 29.48-224.52.01-13.25-10.73-24-23.99-24zm-.86-81.73C194 164.16 151.25 211.3 152.1 265.32c.75 47.94-3.75 95.91-13.37 142.55-2.69 12.98 5.67 25.69 18.64 28.36 13.05 2.67 25.67-5.66 28.36-18.64 10.34-50.09 15.17-101.58 14.37-153.02-.41-25.95 19.92-52.49 54.45-52.34 31.31.47 57.15 25.34 57.62 55.47.77 48.05-2.81 96.33-10.61 143.55-2.17 13.06 6.69 25.42 19.76 27.58 19.97 3.33 26.81-15.1 27.58-19.77 8.28-50.03 12.06-101.21 11.27-152.11-.88-55.8-47.94-101.88-104.91-102.72zm-110.69-19.78c-10.3-8.34-25.37-6.8-33.76 3.48-25.62 31.5-39.39 71.28-38.75 112 .59 37.58-2.47 75.27-9.11 112.05-2.34 13.05 6.31 25.53 19.36 27.89 20.11 3.5 27.07-14.81 27.89-19.36 7.19-39.84 10.5-80.66 9.86-121.33-.47-29.88 9.2-57.88 28-80.97 8.35-10.28 6.79-25.39-3.49-33.76zm109.47-62.33c-15.41-.41-30.87 1.44-45.78 4.97-12.89 3.06-20.87 15.98-17.83 28.89 3.06 12.89 16 20.83 28.89 17.83 11.05-2.61 22.47-3.77 34-3.69 75.43 1.13 137.73 61.5 138.88 134.58.59 37.88-1.28 76.11-5.58 113.63-1.5 13.17 7.95 25.08 21.11 26.58 16.72 1.95 25.51-11.88 26.58-21.11a929.06 929.06 0 0 0 5.89-119.85c-1.56-98.75-85.07-180.33-186.16-181.83zm252.07 121.45c-2.86-12.92-15.51-21.2-28.61-18.27-12.94 2.86-21.12 15.66-18.26 28.61 4.71 21.41 4.91 37.41 4.7 61.6-.11 13.27 10.55 24.09 23.8 24.2h.2c13.17 0 23.89-10.61 24-23.8.18-22.18.4-44.11-5.83-72.34zm-40.12-90.72C417.29 43.46 337.6 1.29 252.81.02 183.02-.82 118.47 24.91 70.46 72.94 24.09 119.37-.9 181.04.14 246.65l-.12 21.47c-.39 13.25 10.03 24.31 23.28 24.69.23.02.48.02.72.02 12.92 0 23.59-10.3 23.97-23.3l.16-23.64c-.83-52.5 19.16-101.86 56.28-139 38.76-38.8 91.34-59.67 147.68-58.86 69.45 1.03 134.73 35.56 174.62 92.39 7.61 10.86 22.56 13.45 33.42 5.86 10.84-7.62 13.46-22.59 5.84-33.43z"],fire:[384,512,[],"f06d","M216 23.86c0-23.8-30.65-32.77-44.15-13.04C48 191.85 224 200 224 288c0 35.63-29.11 64.46-64.85 63.99-35.17-.45-63.15-29.77-63.15-64.94v-85.51c0-21.7-26.47-32.23-41.43-16.5C27.8 213.16 0 261.33 0 320c0 105.87 86.13 192 192 192s192-86.13 192-192c0-170.29-168-193-168-296.14z"],"fire-alt":[448,512,[],"f7e4","M323.56 51.2c-20.8 19.3-39.58 39.59-56.22 59.97C240.08 73.62 206.28 35.53 168 0 69.74 91.17 0 209.96 0 281.6 0 408.85 100.29 512 224 512s224-103.15 224-230.4c0-53.27-51.98-163.14-124.44-230.4zm-19.47 340.65C282.43 407.01 255.72 416 226.86 416 154.71 416 96 368.26 96 290.75c0-38.61 24.31-72.63 72.79-130.75 6.93 7.98 98.83 125.34 98.83 125.34l58.63-66.88c4.14 6.85 7.91 13.55 11.27 19.97 27.35 52.19 15.81 118.97-33.43 153.42z"],"fire-extinguisher":[448,512,[],"f134","M434.027 26.329l-168 28C254.693 56.218 256 67.8 256 72h-58.332C208.353 36.108 181.446 0 144 0c-39.435 0-66.368 39.676-52.228 76.203-52.039 13.051-75.381 54.213-90.049 90.884-4.923 12.307 1.063 26.274 13.37 31.197 12.317 4.926 26.279-1.075 31.196-13.37C75.058 112.99 106.964 120 168 120v27.076c-41.543 10.862-72 49.235-72 94.129V488c0 13.255 10.745 24 24 24h144c13.255 0 24-10.745 24-24V240c0-44.731-30.596-82.312-72-92.97V120h40c0 2.974-1.703 15.716 10.027 17.671l168 28C441.342 166.89 448 161.25 448 153.834V38.166c0-7.416-6.658-13.056-13.973-11.837zM144 72c-8.822 0-16-7.178-16-16s7.178-16 16-16 16 7.178 16 16-7.178 16-16 16z"],"first-aid":[576,512,[],"f479","M0 80v352c0 26.5 21.5 48 48 48h48V32H48C21.5 32 0 53.5 0 80zm128 400h320V32H128v448zm64-248c0-4.4 3.6-8 8-8h56v-56c0-4.4 3.6-8 8-8h48c4.4 0 8 3.6 8 8v56h56c4.4 0 8 3.6 8 8v48c0 4.4-3.6 8-8 8h-56v56c0 4.4-3.6 8-8 8h-48c-4.4 0-8-3.6-8-8v-56h-56c-4.4 0-8-3.6-8-8v-48zM528 32h-48v448h48c26.5 0 48-21.5 48-48V80c0-26.5-21.5-48-48-48z"],fish:[576,512,[],"f578","M327.1 96c-89.97 0-168.54 54.77-212.27 101.63L27.5 131.58c-12.13-9.18-30.24.6-27.14 14.66L24.54 256 .35 365.77c-3.1 14.06 15.01 23.83 27.14 14.66l87.33-66.05C158.55 361.23 237.13 416 327.1 416 464.56 416 576 288 576 256S464.56 96 327.1 96zm87.43 184c-13.25 0-24-10.75-24-24 0-13.26 10.75-24 24-24 13.26 0 24 10.74 24 24 0 13.25-10.75 24-24 24z"],"fist-raised":[384,512,[],"f6de","M255.98 160V16c0-8.84-7.16-16-16-16h-32c-8.84 0-16 7.16-16 16v146.93c5.02-1.78 10.34-2.93 15.97-2.93h48.03zm128 95.99c-.01-35.34-28.66-63.99-63.99-63.99H207.85c-8.78 0-15.9 7.07-15.9 15.85v.56c0 26.27 21.3 47.59 47.57 47.59h35.26c9.68 0 13.2 3.58 13.2 8v16.2c0 4.29-3.59 7.78-7.88 8-44.52 2.28-64.16 24.71-96.05 72.55l-6.31 9.47a7.994 7.994 0 0 1-11.09 2.22l-13.31-8.88a7.994 7.994 0 0 1-2.22-11.09l6.31-9.47c15.73-23.6 30.2-43.26 47.31-58.08-17.27-5.51-31.4-18.12-38.87-34.45-6.59 3.41-13.96 5.52-21.87 5.52h-32c-12.34 0-23.49-4.81-32-12.48C71.48 251.19 60.33 256 48 256H16c-5.64 0-10.97-1.15-16-2.95v77.93c0 33.95 13.48 66.5 37.49 90.51L63.99 448v64h255.98v-63.96l35.91-35.92A96.035 96.035 0 0 0 384 344.21l-.02-88.22zm-32.01-90.09V48c0-8.84-7.16-16-16-16h-32c-8.84 0-16 7.16-16 16v112h32c11.28 0 21.94 2.31 32 5.9zM16 224h32c8.84 0 16-7.16 16-16V80c0-8.84-7.16-16-16-16H16C7.16 64 0 71.16 0 80v128c0 8.84 7.16 16 16 16zm95.99 0h32c8.84 0 16-7.16 16-16V48c0-8.84-7.16-16-16-16h-32c-8.84 0-16 7.16-16 16v160c0 8.84 7.16 16 16 16z"],flag:[512,512,[],"f024","M349.565 98.783C295.978 98.783 251.721 64 184.348 64c-24.955 0-47.309 4.384-68.045 12.013a55.947 55.947 0 0 0 3.586-23.562C118.117 24.015 94.806 1.206 66.338.048 34.345-1.254 8 24.296 8 56c0 19.026 9.497 35.825 24 45.945V488c0 13.255 10.745 24 24 24h16c13.255 0 24-10.745 24-24v-94.4c28.311-12.064 63.582-22.122 114.435-22.122 53.588 0 97.844 34.783 165.217 34.783 48.169 0 86.667-16.294 122.505-40.858C506.84 359.452 512 349.571 512 339.045v-243.1c0-23.393-24.269-38.87-45.485-29.016-34.338 15.948-76.454 31.854-116.95 31.854z"],"flag-checkered":[512,512,[],"f11e","M243.2 189.9V258c26.1 5.9 49.3 15.6 73.6 22.3v-68.2c-26-5.8-49.4-15.5-73.6-22.2zm223.3-123c-34.3 15.9-76.5 31.9-117 31.9C296 98.8 251.7 64 184.3 64c-25 0-47.3 4.4-68 12 2.8-7.3 4.1-15.2 3.6-23.6C118.1 24 94.8 1.2 66.3 0 34.3-1.3 8 24.3 8 56c0 19 9.5 35.8 24 45.9V488c0 13.3 10.7 24 24 24h16c13.3 0 24-10.7 24-24v-94.4c28.3-12.1 63.6-22.1 114.4-22.1 53.6 0 97.8 34.8 165.2 34.8 48.2 0 86.7-16.3 122.5-40.9 8.7-6 13.8-15.8 13.8-26.4V95.9c.1-23.3-24.2-38.8-45.4-29zM169.6 325.5c-25.8 2.7-50 8.2-73.6 16.6v-70.5c26.2-9.3 47.5-15 73.6-17.4zM464 191c-23.6 9.8-46.3 19.5-73.6 23.9V286c24.8-3.4 51.4-11.8 73.6-26v70.5c-25.1 16.1-48.5 24.7-73.6 27.1V286c-27 3.7-47.9 1.5-73.6-5.6v67.4c-23.9-7.4-47.3-16.7-73.6-21.3V258c-19.7-4.4-40.8-6.8-73.6-3.8v-70c-22.4 3.1-44.6 10.2-73.6 20.9v-70.5c33.2-12.2 50.1-19.8 73.6-22v71.6c27-3.7 48.4-1.3 73.6 5.7v-67.4c23.7 7.4 47.2 16.7 73.6 21.3v68.4c23.7 5.3 47.6 6.9 73.6 2.7V143c27-4.8 52.3-13.6 73.6-22.5z"],"flag-usa":[512,512,[],"f74d","M32 0C14.3 0 0 14.3 0 32v464c0 8.8 7.2 16 16 16h32c8.8 0 16-7.2 16-16V32C64 14.3 49.7 0 32 0zm267.9 303.6c-57.2-15.1-111.7-28.8-203.9 11.1V384c185.7-92.2 221.7 53.3 397.5-23.1 11.4-5 18.5-16.5 18.5-28.8v-36c-43.6 17.3-80.2 24.1-112.1 24.1-37.4-.1-68.9-8.4-100-16.6zm0-96c-57.2-15.1-111.7-28.8-203.9 11.1v61.5c94.8-37.6 154.6-22.7 212.1-7.6 57.2 15.1 111.7 28.8 203.9-11.1V200c-43.6 17.3-80.2 24.1-112.1 24.1-37.4 0-68.9-8.3-100-16.5zm9.5-125.9c51.8 15.6 97.4 29 202.6-20.1V30.8c0-25.1-26.8-38.1-49.4-26.6C291.3 91.5 305.4-62.2 96 32.4v151.9c94.8-37.5 154.6-22.7 212.1-7.6 57.2 15 111.7 28.7 203.9-11.1V96.7c-53.6 23.5-93.3 31.4-126.1 31.4s-59-7.8-85.7-15.9c-4-1.2-8.1-2.4-12.1-3.5V75.5c7.2 2 14.3 4.1 21.3 6.2zM160 128.1c-8.8 0-16-7.1-16-16 0-8.8 7.2-16 16-16s16 7.1 16 16-7.2 16-16 16zm0-55.8c-8.8 0-16-7.1-16-16 0-8.8 7.2-16 16-16s16 7.1 16 16c0 8.8-7.2 16-16 16zm64 47.9c-8.8 0-16-7.1-16-16 0-8.8 7.2-16 16-16s16 7.1 16 16c0 8.8-7.2 16-16 16zm0-55.9c-8.8 0-16-7.1-16-16 0-8.8 7.2-16 16-16s16 7.1 16 16c0 8.8-7.2 16-16 16z"],flask:[448,512,[],"f0c3","M437.2 403.5L320 215V64h8c13.3 0 24-10.7 24-24V24c0-13.3-10.7-24-24-24H120c-13.3 0-24 10.7-24 24v16c0 13.3 10.7 24 24 24h8v151L10.8 403.5C-18.5 450.6 15.3 512 70.9 512h306.2c55.7 0 89.4-61.5 60.1-108.5zM137.9 320l48.2-77.6c3.7-5.2 5.8-11.6 5.8-18.4V64h64v160c0 6.9 2.2 13.2 5.8 18.4l48.2 77.6h-172z"],flushed:[496,512,[],"f579","M344 200c-13.3 0-24 10.7-24 24s10.7 24 24 24 24-10.7 24-24-10.7-24-24-24zm-192 0c-13.3 0-24 10.7-24 24s10.7 24 24 24 24-10.7 24-24-10.7-24-24-24zM248 8C111 8 0 119 0 256s111 248 248 248 248-111 248-248S385 8 248 8zM80 224c0-39.8 32.2-72 72-72s72 32.2 72 72-32.2 72-72 72-72-32.2-72-72zm232 176H184c-21.2 0-21.2-32 0-32h128c21.2 0 21.2 32 0 32zm32-104c-39.8 0-72-32.2-72-72s32.2-72 72-72 72 32.2 72 72-32.2 72-72 72z"],folder:[512,512,[],"f07b","M464 128H272l-64-64H48C21.49 64 0 85.49 0 112v288c0 26.51 21.49 48 48 48h416c26.51 0 48-21.49 48-48V176c0-26.51-21.49-48-48-48z"],"folder-minus":[512,512,[],"f65d","M464 128H272l-64-64H48C21.49 64 0 85.49 0 112v288c0 26.51 21.49 48 48 48h416c26.51 0 48-21.49 48-48V176c0-26.51-21.49-48-48-48zm-96 168c0 8.84-7.16 16-16 16H160c-8.84 0-16-7.16-16-16v-16c0-8.84 7.16-16 16-16h192c8.84 0 16 7.16 16 16v16z"],"folder-open":[576,512,[],"f07c","M572.694 292.093L500.27 416.248A63.997 63.997 0 0 1 444.989 448H45.025c-18.523 0-30.064-20.093-20.731-36.093l72.424-124.155A64 64 0 0 1 152 256h399.964c18.523 0 30.064 20.093 20.73 36.093zM152 224h328v-48c0-26.51-21.49-48-48-48H272l-64-64H48C21.49 64 0 85.49 0 112v278.046l69.077-118.418C86.214 242.25 117.989 224 152 224z"],"folder-plus":[512,512,[],"f65e","M464,128H272L208,64H48A48,48,0,0,0,0,112V400a48,48,0,0,0,48,48H464a48,48,0,0,0,48-48V176A48,48,0,0,0,464,128ZM359.5,296a16,16,0,0,1-16,16h-64v64a16,16,0,0,1-16,16h-16a16,16,0,0,1-16-16V312h-64a16,16,0,0,1-16-16V280a16,16,0,0,1,16-16h64V200a16,16,0,0,1,16-16h16a16,16,0,0,1,16,16v64h64a16,16,0,0,1,16,16Z"],font:[448,512,[],"f031","M432 416h-23.41L277.88 53.69A32 32 0 0 0 247.58 32h-47.16a32 32 0 0 0-30.3 21.69L39.41 416H16a16 16 0 0 0-16 16v32a16 16 0 0 0 16 16h128a16 16 0 0 0 16-16v-32a16 16 0 0 0-16-16h-19.58l23.3-64h152.56l23.3 64H304a16 16 0 0 0-16 16v32a16 16 0 0 0 16 16h128a16 16 0 0 0 16-16v-32a16 16 0 0 0-16-16zM176.85 272L224 142.51 271.15 272z"],"font-awesome-logo-full":[3992,512,["Font Awesome"],"f4e6","M454.6 0H57.4C25.9 0 0 25.9 0 57.4v397.3C0 486.1 25.9 512 57.4 512h397.3c31.4 0 57.4-25.9 57.4-57.4V57.4C512 25.9 486.1 0 454.6 0zm-58.9 324.9c0 4.8-4.1 6.9-8.9 8.9-19.2 8.1-39.7 15.7-61.5 15.7-40.5 0-68.7-44.8-163.2 2.5v51.8c0 30.3-45.7 30.2-45.7 0v-250c-9-7-15-17.9-15-30.3 0-21 17.1-38.2 38.2-38.2 21 0 38.2 17.1 38.2 38.2 0 12.2-5.8 23.2-14.9 30.2v21c37.1-12 65.5-34.4 146.1-3.4 26.6 11.4 68.7-15.7 76.5-15.7 5.5 0 10.3 4.1 10.3 8.9v160.4zm432.9-174.2h-137v70.1H825c39.8 0 40.4 62.2 0 62.2H691.6v105.6c0 45.5-70.7 46.4-70.7 0V128.3c0-22 18-39.8 39.8-39.8h167.8c39.6 0 40.5 62.2.1 62.2zm191.1 23.4c-169.3 0-169.1 252.4 0 252.4 169.9 0 169.9-252.4 0-252.4zm0 196.1c-81.6 0-82.1-139.8 0-139.8 82.5 0 82.4 139.8 0 139.8zm372.4 53.4c-17.5 0-31.4-13.9-31.4-31.4v-117c0-62.4-72.6-52.5-99.1-16.4v133.4c0 41.5-63.3 41.8-63.3 0V208c0-40 63.1-41.6 63.1 0v3.4c43.3-51.6 162.4-60.4 162.4 39.3v141.5c.3 30.4-31.5 31.4-31.7 31.4zm179.7 2.9c-44.3 0-68.3-22.9-68.3-65.8V235.2H1488c-35.6 0-36.7-55.3 0-55.3h15.5v-37.3c0-41.3 63.8-42.1 63.8 0v37.5h24.9c35.4 0 35.7 55.3 0 55.3h-24.9v108.5c0 29.6 26.1 26.3 27.4 26.3 31.4 0 52.6 56.3-22.9 56.3zM1992 123c-19.5-50.2-95.5-50-114.5 0-107.3 275.7-99.5 252.7-99.5 262.8 0 42.8 58.3 51.2 72.1 14.4l13.5-35.9H2006l13 35.9c14.2 37.7 72.1 27.2 72.1-14.4 0-10.1 5.3 6.8-99.1-262.8zm-108.9 179.1l51.7-142.9 51.8 142.9h-103.5zm591.3-85.6l-53.7 176.3c-12.4 41.2-72 41-84 0l-42.3-135.9-42.3 135.9c-12.4 40.9-72 41.2-84.5 0l-54.2-176.3c-12.5-39.4 49.8-56.1 60.2-16.9L2213 342l45.3-139.5c10.9-32.7 59.6-34.7 71.2 0l45.3 139.5 39.3-142.4c10.3-38.3 72.6-23.8 60.3 16.9zm275.4 75.1c0-42.4-33.9-117.5-119.5-117.5-73.2 0-124.4 56.3-124.4 126 0 77.2 55.3 126.4 128.5 126.4 31.7 0 93-11.5 93-39.8 0-18.3-21.1-31.5-39.3-22.4-49.4 26.2-109 8.4-115.9-43.8h148.3c16.3 0 29.3-13.4 29.3-28.9zM2571 277.7c9.5-73.4 113.9-68.6 118.6 0H2571zm316.7 148.8c-31.4 0-81.6-10.5-96.6-31.9-12.4-17 2.5-39.8 21.8-39.8 16.3 0 36.8 22.9 77.7 22.9 27.4 0 40.4-11 40.4-25.8 0-39.8-142.9-7.4-142.9-102 0-40.4 35.3-75.7 98.6-75.7 31.4 0 74.1 9.9 87.6 29.4 10.8 14.8-1.4 36.2-20.9 36.2-15.1 0-26.7-17.3-66.2-17.3-22.9 0-37.8 10.5-37.8 23.8 0 35.9 142.4 6 142.4 103.1-.1 43.7-37.4 77.1-104.1 77.1zm266.8-252.4c-169.3 0-169.1 252.4 0 252.4 170.1 0 169.6-252.4 0-252.4zm0 196.1c-81.8 0-82-139.8 0-139.8 82.5 0 82.4 139.8 0 139.8zm476.9 22V268.7c0-53.8-61.4-45.8-85.7-10.5v134c0 41.3-63.8 42.1-63.8 0V268.7c0-52.1-59.5-47.4-85.7-10.1v133.6c0 41.5-63.3 41.8-63.3 0V208c0-40 63.1-41.6 63.1 0v3.4c9.9-14.4 41.8-37.3 78.6-37.3 35.3 0 57.7 16.4 66.7 43.8 13.9-21.8 45.8-43.8 82.6-43.8 44.3 0 70.7 23.4 70.7 72.7v145.3c.5 17.3-13.5 31.4-31.9 31.4 3.5.1-31.3 1.1-31.3-31.3zM3992 291.6c0-42.4-32.4-117.5-117.9-117.5-73.2 0-127.5 56.3-127.5 126 0 77.2 58.3 126.4 131.6 126.4 31.7 0 91.5-11.5 91.5-39.8 0-18.3-21.1-31.5-39.3-22.4-49.4 26.2-110.5 8.4-117.5-43.8h149.8c16.3 0 29.1-13.4 29.3-28.9zm-180.5-13.9c9.7-74.4 115.9-68.3 120.1 0h-120.1z"],"football-ball":[496,512,[],"f44e","M481.5 60.3c-4.8-18.2-19.1-32.5-37.3-37.4C420.3 16.5 383 8.9 339.4 8L496 164.8c-.8-43.5-8.2-80.6-14.5-104.5zm-467 391.4c4.8 18.2 19.1 32.5 37.3 37.4 23.9 6.4 61.2 14 104.8 14.9L0 347.2c.8 43.5 8.2 80.6 14.5 104.5zM4.2 283.4L220.4 500c132.5-19.4 248.8-118.7 271.5-271.4L275.6 12C143.1 31.4 26.8 130.7 4.2 283.4zm317.3-123.6c3.1-3.1 8.2-3.1 11.3 0l11.3 11.3c3.1 3.1 3.1 8.2 0 11.3l-28.3 28.3 28.3 28.3c3.1 3.1 3.1 8.2 0 11.3l-11.3 11.3c-3.1 3.1-8.2 3.1-11.3 0l-28.3-28.3-22.6 22.7 28.3 28.3c3.1 3.1 3.1 8.2 0 11.3l-11.3 11.3c-3.1 3.1-8.2 3.1-11.3 0L248 278.6l-22.6 22.6 28.3 28.3c3.1 3.1 3.1 8.2 0 11.3l-11.3 11.3c-3.1 3.1-8.2 3.1-11.3 0l-28.3-28.3-28.3 28.3c-3.1 3.1-8.2 3.1-11.3 0l-11.3-11.3c-3.1-3.1-3.1-8.2 0-11.3l28.3-28.3-28.3-28.2c-3.1-3.1-3.1-8.2 0-11.3l11.3-11.3c3.1-3.1 8.2-3.1 11.3 0l28.3 28.3 22.6-22.6-28.3-28.3c-3.1-3.1-3.1-8.2 0-11.3l11.3-11.3c3.1-3.1 8.2-3.1 11.3 0l28.3 28.3 22.6-22.6-28.3-28.3c-3.1-3.1-3.1-8.2 0-11.3l11.3-11.3c3.1-3.1 8.2-3.1 11.3 0l28.3 28.3 28.3-28.5z"],forward:[512,512,[],"f04e","M500.5 231.4l-192-160C287.9 54.3 256 68.6 256 96v320c0 27.4 31.9 41.8 52.5 24.6l192-160c15.3-12.8 15.3-36.4 0-49.2zm-256 0l-192-160C31.9 54.3 0 68.6 0 96v320c0 27.4 31.9 41.8 52.5 24.6l192-160c15.3-12.8 15.3-36.4 0-49.2z"],frog:[576,512,[],"f52e","M446.53 97.43C439.67 60.23 407.19 32 368 32c-39.23 0-71.72 28.29-78.54 65.54C126.75 112.96-.5 250.12 0 416.98.11 451.9 29.08 480 64 480h304c8.84 0 16-7.16 16-16 0-17.67-14.33-32-32-32h-79.49l35.8-48.33c24.14-36.23 10.35-88.28-33.71-106.6-23.89-9.93-51.55-4.65-72.24 10.88l-32.76 24.59c-7.06 5.31-17.09 3.91-22.41-3.19-5.3-7.08-3.88-17.11 3.19-22.41l34.78-26.09c36.84-27.66 88.28-27.62 125.13 0 10.87 8.15 45.87 39.06 40.8 93.21L469.62 480H560c8.84 0 16-7.16 16-16 0-17.67-14.33-32-32-32h-53.63l-98.52-104.68 154.44-86.65A58.16 58.16 0 0 0 576 189.94c0-21.4-11.72-40.95-30.48-51.23-40.56-22.22-98.99-41.28-98.99-41.28zM368 136c-13.26 0-24-10.75-24-24 0-13.26 10.74-24 24-24 13.25 0 24 10.74 24 24 0 13.25-10.75 24-24 24z"],frown:[496,512,[],"f119","M248 8C111 8 0 119 0 256s111 248 248 248 248-111 248-248S385 8 248 8zm80 168c17.7 0 32 14.3 32 32s-14.3 32-32 32-32-14.3-32-32 14.3-32 32-32zm-160 0c17.7 0 32 14.3 32 32s-14.3 32-32 32-32-14.3-32-32 14.3-32 32-32zm170.2 218.2C315.8 367.4 282.9 352 248 352s-67.8 15.4-90.2 42.2c-13.5 16.3-38.1-4.2-24.6-20.5C161.7 339.6 203.6 320 248 320s86.3 19.6 114.7 53.8c13.6 16.2-11 36.7-24.5 20.4z"],"frown-open":[496,512,[],"f57a","M248 8C111 8 0 119 0 256s111 248 248 248 248-111 248-248S385 8 248 8zM136 208c0-17.7 14.3-32 32-32s32 14.3 32 32-14.3 32-32 32-32-14.3-32-32zm187.3 183.3c-31.2-9.6-59.4-15.3-75.3-15.3s-44.1 5.7-75.3 15.3c-11.5 3.5-22.5-6.3-20.5-18.1 7-40 60.1-61.2 95.8-61.2s88.8 21.3 95.8 61.2c2 11.9-9.1 21.6-20.5 18.1zM328 240c-17.7 0-32-14.3-32-32s14.3-32 32-32 32 14.3 32 32-14.3 32-32 32z"],"funnel-dollar":[640,512,[],"f662","M433.46 165.94l101.2-111.87C554.61 34.12 540.48 0 512.26 0H31.74C3.52 0-10.61 34.12 9.34 54.07L192 256v155.92c0 12.59 5.93 24.44 16 32l79.99 60c20.86 15.64 48.47 6.97 59.22-13.57C310.8 455.38 288 406.35 288 352c0-89.79 62.05-165.17 145.46-186.06zM480 192c-88.37 0-160 71.63-160 160s71.63 160 160 160 160-71.63 160-160-71.63-160-160-160zm16 239.88V448c0 4.42-3.58 8-8 8h-16c-4.42 0-8-3.58-8-8v-16.29c-11.29-.58-22.27-4.52-31.37-11.35-3.9-2.93-4.1-8.77-.57-12.14l11.75-11.21c2.77-2.64 6.89-2.76 10.13-.73 3.87 2.42 8.26 3.72 12.82 3.72h28.11c6.5 0 11.8-5.92 11.8-13.19 0-5.95-3.61-11.19-8.77-12.73l-45-13.5c-18.59-5.58-31.58-23.42-31.58-43.39 0-24.52 19.05-44.44 42.67-45.07V256c0-4.42 3.58-8 8-8h16c4.42 0 8 3.58 8 8v16.29c11.29.58 22.27 4.51 31.37 11.35 3.9 2.93 4.1 8.77.57 12.14l-11.75 11.21c-2.77 2.64-6.89 2.76-10.13.73-3.87-2.43-8.26-3.72-12.82-3.72h-28.11c-6.5 0-11.8 5.92-11.8 13.19 0 5.95 3.61 11.19 8.77 12.73l45 13.5c18.59 5.58 31.58 23.42 31.58 43.39 0 24.53-19.04 44.44-42.67 45.07z"],futbol:[512,512,[],"f1e3","M504 256c0 136.967-111.033 248-248 248S8 392.967 8 256 119.033 8 256 8s248 111.033 248 248zm-48 0l-.003-.282-26.064 22.741-62.679-58.5 16.454-84.355 34.303 3.072c-24.889-34.216-60.004-60.089-100.709-73.141l13.651 31.939L256 139l-74.953-41.525 13.651-31.939c-40.631 13.028-75.78 38.87-100.709 73.141l34.565-3.073 16.192 84.355-62.678 58.5-26.064-22.741-.003.282c0 43.015 13.497 83.952 38.472 117.991l7.704-33.897 85.138 10.447 36.301 77.826-29.902 17.786c40.202 13.122 84.29 13.148 124.572 0l-29.902-17.786 36.301-77.826 85.138-10.447 7.704 33.897C442.503 339.952 456 299.015 456 256zm-248.102 69.571l-29.894-91.312L256 177.732l77.996 56.527-29.622 91.312h-96.476z"],gamepad:[640,512,[],"f11b","M480.07 96H160a160 160 0 1 0 114.24 272h91.52A160 160 0 1 0 480.07 96zM248 268a12 12 0 0 1-12 12h-52v52a12 12 0 0 1-12 12h-24a12 12 0 0 1-12-12v-52H84a12 12 0 0 1-12-12v-24a12 12 0 0 1 12-12h52v-52a12 12 0 0 1 12-12h24a12 12 0 0 1 12 12v52h52a12 12 0 0 1 12 12zm216 76a40 40 0 1 1 40-40 40 40 0 0 1-40 40zm64-96a40 40 0 1 1 40-40 40 40 0 0 1-40 40z"],"gas-pump":[512,512,[],"f52f","M336 448H16c-8.8 0-16 7.2-16 16v32c0 8.8 7.2 16 16 16h320c8.8 0 16-7.2 16-16v-32c0-8.8-7.2-16-16-16zm157.2-340.7l-81-81c-6.2-6.2-16.4-6.2-22.6 0l-11.3 11.3c-6.2 6.2-6.2 16.4 0 22.6L416 97.9V160c0 28.1 20.9 51.3 48 55.2V376c0 13.2-10.8 24-24 24s-24-10.8-24-24v-32c0-48.6-39.4-88-88-88h-8V64c0-35.3-28.7-64-64-64H96C60.7 0 32 28.7 32 64v352h288V304h8c22.1 0 40 17.9 40 40v27.8c0 37.7 27 72 64.5 75.9 43 4.3 79.5-29.5 79.5-71.7V152.6c0-17-6.8-33.3-18.8-45.3zM256 192H96V64h160v128z"],gavel:[512,512,[],"f0e3","M504.971 199.362l-22.627-22.627c-9.373-9.373-24.569-9.373-33.941 0l-5.657 5.657L329.608 69.255l5.657-5.657c9.373-9.373 9.373-24.569 0-33.941L312.638 7.029c-9.373-9.373-24.569-9.373-33.941 0L154.246 131.48c-9.373 9.373-9.373 24.569 0 33.941l22.627 22.627c9.373 9.373 24.569 9.373 33.941 0l5.657-5.657 39.598 39.598-81.04 81.04-5.657-5.657c-12.497-12.497-32.758-12.497-45.255 0L9.373 412.118c-12.497 12.497-12.497 32.758 0 45.255l45.255 45.255c12.497 12.497 32.758 12.497 45.255 0l114.745-114.745c12.497-12.497 12.497-32.758 0-45.255l-5.657-5.657 81.04-81.04 39.598 39.598-5.657 5.657c-9.373 9.373-9.373 24.569 0 33.941l22.627 22.627c9.373 9.373 24.569 9.373 33.941 0l124.451-124.451c9.372-9.372 9.372-24.568 0-33.941z"],gem:[576,512,[],"f3a5","M485.5 0L576 160H474.9L405.7 0h79.8zm-128 0l69.2 160H149.3L218.5 0h139zm-267 0h79.8l-69.2 160H0L90.5 0zM0 192h100.7l123 251.7c1.5 3.1-2.7 5.9-5 3.3L0 192zm148.2 0h279.6l-137 318.2c-1 2.4-4.5 2.4-5.5 0L148.2 192zm204.1 251.7l123-251.7H576L357.3 446.9c-2.3 2.7-6.5-.1-5-3.2z"],genderless:[288,512,[],"f22d","M144 176c44.1 0 80 35.9 80 80s-35.9 80-80 80-80-35.9-80-80 35.9-80 80-80m0-64C64.5 112 0 176.5 0 256s64.5 144 144 144 144-64.5 144-144-64.5-144-144-144z"],ghost:[384,512,[],"f6e2","M186.1.09C81.01 3.24 0 94.92 0 200.05v263.92c0 14.26 17.23 21.39 27.31 11.31l24.92-18.53c6.66-4.95 16-3.99 21.51 2.21l42.95 48.35c6.25 6.25 16.38 6.25 22.63 0l40.72-45.85c6.37-7.17 17.56-7.17 23.92 0l40.72 45.85c6.25 6.25 16.38 6.25 22.63 0l42.95-48.35c5.51-6.2 14.85-7.17 21.51-2.21l24.92 18.53c10.08 10.08 27.31 2.94 27.31-11.31V192C384 84 294.83-3.17 186.1.09zM128 224c-17.67 0-32-14.33-32-32s14.33-32 32-32 32 14.33 32 32-14.33 32-32 32zm128 0c-17.67 0-32-14.33-32-32s14.33-32 32-32 32 14.33 32 32-14.33 32-32 32z"],gift:[512,512,[],"f06b","M32 448c0 17.7 14.3 32 32 32h160V320H32v128zm256 32h160c17.7 0 32-14.3 32-32V320H288v160zm192-320h-42.1c6.2-12.1 10.1-25.5 10.1-40 0-48.5-39.5-88-88-88-41.6 0-68.5 21.3-103 68.3-34.5-47-61.4-68.3-103-68.3-48.5 0-88 39.5-88 88 0 14.5 3.8 27.9 10.1 40H32c-17.7 0-32 14.3-32 32v80c0 8.8 7.2 16 16 16h480c8.8 0 16-7.2 16-16v-80c0-17.7-14.3-32-32-32zm-326.1 0c-22.1 0-40-17.9-40-40s17.9-40 40-40c19.9 0 34.6 3.3 86.1 80h-86.1zm206.1 0h-86.1c51.4-76.5 65.7-80 86.1-80 22.1 0 40 17.9 40 40s-17.9 40-40 40z"],gifts:[640,512,[],"f79c","M240.6 194.1c1.9-30.8 17.3-61.2 44-79.8C279.4 103.5 268.7 96 256 96h-29.4l30.7-22c7.2-5.1 8.9-15.1 3.7-22.3l-9.3-13c-5.1-7.2-15.1-8.9-22.3-3.7l-32 22.9 11.5-30.6c3.1-8.3-1.1-17.5-9.4-20.6l-15-5.6c-8.3-3.1-17.5 1.1-20.6 9.4l-19.9 53-19.9-53.1C121 2.1 111.8-2.1 103.5 1l-15 5.6C80.2 9.7 76 19 79.2 27.2l11.5 30.6L58.6 35c-7.2-5.1-17.2-3.5-22.3 3.7l-9.3 13c-5.1 7.2-3.5 17.2 3.7 22.3l30.7 22H32c-17.7 0-32 14.3-32 32v352c0 17.7 14.3 32 32 32h168.9c-5.5-9.5-8.9-20.3-8.9-32V256c0-29.9 20.8-55 48.6-61.9zM224 480c0 17.7 14.3 32 32 32h160V384H224v96zm224 32h160c17.7 0 32-14.3 32-32v-96H448v128zm160-288h-20.4c2.6-7.6 4.4-15.5 4.4-23.8 0-35.5-27-72.2-72.1-72.2-48.1 0-75.9 47.7-87.9 75.3-12.1-27.6-39.9-75.3-87.9-75.3-45.1 0-72.1 36.7-72.1 72.2 0 8.3 1.7 16.2 4.4 23.8H256c-17.7 0-32 14.3-32 32v96h192V224h15.3l.7-.2.7.2H448v128h192v-96c0-17.7-14.3-32-32-32zm-272 0c-2.7-1.4-5.1-3-7.2-4.8-7.3-6.4-8.8-13.8-8.8-19 0-9.7 6.4-24.2 24.1-24.2 18.7 0 35.6 27.4 44.5 48H336zm199.2-4.8c-2.1 1.8-4.5 3.4-7.2 4.8h-52.6c8.8-20.3 25.8-48 44.5-48 17.7 0 24.1 14.5 24.1 24.2 0 5.2-1.5 12.6-8.8 19z"],"glass-cheers":[640,512,[],"f79f","M639.4 433.6c-8.4-20.4-31.8-30.1-52.2-21.6l-22.1 9.2-38.7-101.9c47.9-35 64.8-100.3 34.5-152.8L474.3 16c-8-13.9-25.1-19.7-40-13.6L320 49.8 205.7 2.4c-14.9-6.2-32-.3-40 13.6L79.1 166.5C48.9 219 65.7 284.3 113.6 319.2L74.9 421.1l-22.1-9.2c-20.4-8.5-43.7 1.2-52.2 21.6-1.7 4.1.2 8.8 4.3 10.5l162.3 67.4c4.1 1.7 8.7-.2 10.4-4.3 8.4-20.4-1.2-43.8-21.6-52.3l-22.1-9.2L173.3 342c4.4.5 8.8 1.3 13.1 1.3 51.7 0 99.4-33.1 113.4-85.3l20.2-75.4 20.2 75.4c14 52.2 61.7 85.3 113.4 85.3 4.3 0 8.7-.8 13.1-1.3L506 445.6l-22.1 9.2c-20.4 8.5-30.1 31.9-21.6 52.3 1.7 4.1 6.4 6 10.4 4.3L635.1 444c4-1.7 6-6.3 4.3-10.4zM275.9 162.1l-112.1-46.5 36.5-63.4 94.5 39.2-18.9 70.7zm88.2 0l-18.9-70.7 94.5-39.2 36.5 63.4-112.1 46.5z"],"glass-martini":[512,512,[],"f000","M502.05 57.6C523.3 36.34 508.25 0 478.2 0H33.8C3.75 0-11.3 36.34 9.95 57.6L224 271.64V464h-56c-22.09 0-40 17.91-40 40 0 4.42 3.58 8 8 8h240c4.42 0 8-3.58 8-8 0-22.09-17.91-40-40-40h-56V271.64L502.05 57.6z"],"glass-martini-alt":[512,512,[],"f57b","M502.05 57.6C523.3 36.34 508.25 0 478.2 0H33.8C3.75 0-11.3 36.34 9.95 57.6L224 271.64V464h-56c-22.09 0-40 17.91-40 40 0 4.42 3.58 8 8 8h240c4.42 0 8-3.58 8-8 0-22.09-17.91-40-40-40h-56V271.64L502.05 57.6zM443.77 48l-48 48H116.24l-48-48h375.53z"],"glass-whiskey":[512,512,[],"f7a0","M480 32H32C12.5 32-2.4 49.2.3 68.5l56 356.5c4.5 31.5 31.5 54.9 63.4 54.9h273c31.8 0 58.9-23.4 63.4-54.9l55.6-356.5C514.4 49.2 499.5 32 480 32zm-37.4 64l-30 192h-313L69.4 96h373.2z"],glasses:[576,512,[],"f530","M574.1 280.37L528.75 98.66c-5.91-23.7-21.59-44.05-43-55.81-21.44-11.73-46.97-14.11-70.19-6.33l-15.25 5.08c-8.39 2.79-12.92 11.86-10.12 20.24l5.06 15.18c2.79 8.38 11.85 12.91 20.23 10.12l13.18-4.39c10.87-3.62 23-3.57 33.16 1.73 10.29 5.37 17.57 14.56 20.37 25.82l38.46 153.82c-22.19-6.81-49.79-12.46-81.2-12.46-34.77 0-73.98 7.02-114.85 26.74h-73.18c-40.87-19.74-80.08-26.75-114.86-26.75-31.42 0-59.02 5.65-81.21 12.46l38.46-153.83c2.79-11.25 10.09-20.45 20.38-25.81 10.16-5.3 22.28-5.35 33.15-1.73l13.17 4.39c8.38 2.79 17.44-1.74 20.23-10.12l5.06-15.18c2.8-8.38-1.73-17.45-10.12-20.24l-15.25-5.08c-23.22-7.78-48.75-5.41-70.19 6.33-21.41 11.77-37.09 32.11-43 55.8L1.9 280.37A64.218 64.218 0 0 0 0 295.86v70.25C0 429.01 51.58 480 115.2 480h37.12c60.28 0 110.37-45.94 114.88-105.37l2.93-38.63h35.75l2.93 38.63C313.31 434.06 363.4 480 423.68 480h37.12c63.62 0 115.2-50.99 115.2-113.88v-70.25c0-5.23-.64-10.43-1.9-15.5zm-370.72 89.42c-1.97 25.91-24.4 46.21-51.06 46.21H115.2C86.97 416 64 393.62 64 366.11v-37.54c18.12-6.49 43.42-12.92 72.58-12.92 23.86 0 47.26 4.33 69.93 12.92l-3.13 41.22zM512 366.12c0 27.51-22.97 49.88-51.2 49.88h-37.12c-26.67 0-49.1-20.3-51.06-46.21l-3.13-41.22c22.67-8.59 46.08-12.92 69.95-12.92 29.12 0 54.43 6.44 72.55 12.93v37.54z"],globe:[496,512,[],"f0ac","M336.5 160C322 70.7 287.8 8 248 8s-74 62.7-88.5 152h177zM152 256c0 22.2 1.2 43.5 3.3 64h185.3c2.1-20.5 3.3-41.8 3.3-64s-1.2-43.5-3.3-64H155.3c-2.1 20.5-3.3 41.8-3.3 64zm324.7-96c-28.6-67.9-86.5-120.4-158-141.6 24.4 33.8 41.2 84.7 50 141.6h108zM177.2 18.4C105.8 39.6 47.8 92.1 19.3 160h108c8.7-56.9 25.5-107.8 49.9-141.6zM487.4 192H372.7c2.1 21 3.3 42.5 3.3 64s-1.2 43-3.3 64h114.6c5.5-20.5 8.6-41.8 8.6-64s-3.1-43.5-8.5-64zM120 256c0-21.5 1.2-43 3.3-64H8.6C3.2 212.5 0 233.8 0 256s3.2 43.5 8.6 64h114.6c-2-21-3.2-42.5-3.2-64zm39.5 96c14.5 89.3 48.7 152 88.5 152s74-62.7 88.5-152h-177zm159.3 141.6c71.4-21.2 129.4-73.7 158-141.6h-108c-8.8 56.9-25.6 107.8-50 141.6zM19.3 352c28.6 67.9 86.5 120.4 158 141.6-24.4-33.8-41.2-84.7-50-141.6h-108z"],"globe-africa":[496,512,[],"f57c","M248 8C111.03 8 0 119.03 0 256s111.03 248 248 248 248-111.03 248-248S384.97 8 248 8zm160 215.5v6.93c0 5.87-3.32 11.24-8.57 13.86l-15.39 7.7a15.485 15.485 0 0 1-15.53-.97l-18.21-12.14a15.52 15.52 0 0 0-13.5-1.81l-2.65.88c-9.7 3.23-13.66 14.79-7.99 23.3l13.24 19.86c2.87 4.31 7.71 6.9 12.89 6.9h8.21c8.56 0 15.5 6.94 15.5 15.5v11.34c0 3.35-1.09 6.62-3.1 9.3l-18.74 24.98c-1.42 1.9-2.39 4.1-2.83 6.43l-4.3 22.83c-.62 3.29-2.29 6.29-4.76 8.56a159.608 159.608 0 0 0-25 29.16l-13.03 19.55a27.756 27.756 0 0 1-23.09 12.36c-10.51 0-20.12-5.94-24.82-15.34a78.902 78.902 0 0 1-8.33-35.29V367.5c0-8.56-6.94-15.5-15.5-15.5h-25.88c-14.49 0-28.38-5.76-38.63-16a54.659 54.659 0 0 1-16-38.63v-14.06c0-17.19 8.1-33.38 21.85-43.7l27.58-20.69a54.663 54.663 0 0 1 32.78-10.93h.89c8.48 0 16.85 1.97 24.43 5.77l14.72 7.36c3.68 1.84 7.93 2.14 11.83.84l47.31-15.77c6.33-2.11 10.6-8.03 10.6-14.7 0-8.56-6.94-15.5-15.5-15.5h-10.09c-4.11 0-8.05-1.63-10.96-4.54l-6.92-6.92a15.493 15.493 0 0 0-10.96-4.54H199.5c-8.56 0-15.5-6.94-15.5-15.5v-4.4c0-7.11 4.84-13.31 11.74-15.04l14.45-3.61c3.74-.94 7-3.23 9.14-6.44l8.08-12.11c2.87-4.31 7.71-6.9 12.89-6.9h24.21c8.56 0 15.5-6.94 15.5-15.5v-21.7C359.23 71.63 422.86 131.02 441.93 208H423.5c-8.56 0-15.5 6.94-15.5 15.5z"],"globe-americas":[496,512,[],"f57d","M248 8C111.03 8 0 119.03 0 256s111.03 248 248 248 248-111.03 248-248S384.97 8 248 8zm82.29 357.6c-3.9 3.88-7.99 7.95-11.31 11.28-2.99 3-5.1 6.7-6.17 10.71-1.51 5.66-2.73 11.38-4.77 16.87l-17.39 46.85c-13.76 3-28 4.69-42.65 4.69v-27.38c1.69-12.62-7.64-36.26-22.63-51.25-6-6-9.37-14.14-9.37-22.63v-32.01c0-11.64-6.27-22.34-16.46-27.97-14.37-7.95-34.81-19.06-48.81-26.11-11.48-5.78-22.1-13.14-31.65-21.75l-.8-.72a114.792 114.792 0 0 1-18.06-20.74c-9.38-13.77-24.66-36.42-34.59-51.14 20.47-45.5 57.36-82.04 103.2-101.89l24.01 12.01C203.48 89.74 216 82.01 216 70.11v-11.3c7.99-1.29 16.12-2.11 24.39-2.42l28.3 28.3c6.25 6.25 6.25 16.38 0 22.63L264 112l-10.34 10.34c-3.12 3.12-3.12 8.19 0 11.31l4.69 4.69c3.12 3.12 3.12 8.19 0 11.31l-8 8a8.008 8.008 0 0 1-5.66 2.34h-8.99c-2.08 0-4.08.81-5.58 2.27l-9.92 9.65a8.008 8.008 0 0 0-1.58 9.31l15.59 31.19c2.66 5.32-1.21 11.58-7.15 11.58h-5.64c-1.93 0-3.79-.7-5.24-1.96l-9.28-8.06a16.017 16.017 0 0 0-15.55-3.1l-31.17 10.39a11.95 11.95 0 0 0-8.17 11.34c0 4.53 2.56 8.66 6.61 10.69l11.08 5.54c9.41 4.71 19.79 7.16 30.31 7.16s22.59 27.29 32 32h66.75c8.49 0 16.62 3.37 22.63 9.37l13.69 13.69a30.503 30.503 0 0 1 8.93 21.57 46.536 46.536 0 0 1-13.72 32.98zM417 274.25c-5.79-1.45-10.84-5-14.15-9.97l-17.98-26.97a23.97 23.97 0 0 1 0-26.62l19.59-29.38c2.32-3.47 5.5-6.29 9.24-8.15l12.98-6.49C440.2 193.59 448 223.87 448 256c0 8.67-.74 17.16-1.82 25.54L417 274.25z"],"globe-asia":[496,512,[],"f57e","M248 8C111.03 8 0 119.03 0 256s111.03 248 248 248 248-111.03 248-248S384.97 8 248 8zm-11.34 240.23c-2.89 4.82-8.1 7.77-13.72 7.77h-.31c-4.24 0-8.31 1.69-11.31 4.69l-5.66 5.66c-3.12 3.12-3.12 8.19 0 11.31l5.66 5.66c3 3 4.69 7.07 4.69 11.31V304c0 8.84-7.16 16-16 16h-6.11c-6.06 0-11.6-3.42-14.31-8.85l-22.62-45.23c-2.44-4.88-8.95-5.94-12.81-2.08l-19.47 19.46c-3 3-7.07 4.69-11.31 4.69H50.81C49.12 277.55 48 266.92 48 256c0-110.28 89.72-200 200-200 21.51 0 42.2 3.51 61.63 9.82l-50.16 38.53c-5.11 3.41-4.63 11.06.86 13.81l10.83 5.41c5.42 2.71 8.84 8.25 8.84 14.31V216c0 4.42-3.58 8-8 8h-3.06c-3.03 0-5.8-1.71-7.15-4.42-1.56-3.12-5.96-3.29-7.76-.3l-17.37 28.95zM408 358.43c0 4.24-1.69 8.31-4.69 11.31l-9.57 9.57c-3 3-7.07 4.69-11.31 4.69h-15.16c-4.24 0-8.31-1.69-11.31-4.69l-13.01-13.01a26.767 26.767 0 0 0-25.42-7.04l-21.27 5.32c-1.27.32-2.57.48-3.88.48h-10.34c-4.24 0-8.31-1.69-11.31-4.69l-11.91-11.91a8.008 8.008 0 0 1-2.34-5.66v-10.2c0-3.27 1.99-6.21 5.03-7.43l39.34-15.74c1.98-.79 3.86-1.82 5.59-3.05l23.71-16.89a7.978 7.978 0 0 1 4.64-1.48h12.09c3.23 0 6.15 1.94 7.39 4.93l5.35 12.85a4 4 0 0 0 3.69 2.46h3.8c1.78 0 3.35-1.18 3.84-2.88l4.2-14.47c.5-1.71 2.06-2.88 3.84-2.88h6.06c2.21 0 4 1.79 4 4v12.93c0 2.12.84 4.16 2.34 5.66l11.91 11.91c3 3 4.69 7.07 4.69 11.31v24.6z"],"globe-europe":[496,512,[],"f7a2","M248 8C111 8 0 119 0 256s111 248 248 248 248-111 248-248S385 8 248 8zm200 248c0 22.5-3.9 44.2-10.8 64.4h-20.3c-4.3 0-8.4-1.7-11.4-4.8l-32-32.6c-4.5-4.6-4.5-12.1.1-16.7l12.5-12.5v-8.7c0-3-1.2-5.9-3.3-8l-9.4-9.4c-2.1-2.1-5-3.3-8-3.3h-16c-6.2 0-11.3-5.1-11.3-11.3 0-3 1.2-5.9 3.3-8l9.4-9.4c2.1-2.1 5-3.3 8-3.3h32c6.2 0 11.3-5.1 11.3-11.3v-9.4c0-6.2-5.1-11.3-11.3-11.3h-36.7c-8.8 0-16 7.2-16 16v4.5c0 6.9-4.4 13-10.9 15.2l-31.6 10.5c-3.3 1.1-5.5 4.1-5.5 7.6v2.2c0 4.4-3.6 8-8 8h-16c-4.4 0-8-3.6-8-8s-3.6-8-8-8H247c-3 0-5.8 1.7-7.2 4.4l-9.4 18.7c-2.7 5.4-8.2 8.8-14.3 8.8H194c-8.8 0-16-7.2-16-16V199c0-4.2 1.7-8.3 4.7-11.3l20.1-20.1c4.6-4.6 7.2-10.9 7.2-17.5 0-3.4 2.2-6.5 5.5-7.6l40-13.3c1.7-.6 3.2-1.5 4.4-2.7l26.8-26.8c2.1-2.1 3.3-5 3.3-8 0-6.2-5.1-11.3-11.3-11.3H258l-16 16v8c0 4.4-3.6 8-8 8h-16c-4.4 0-8-3.6-8-8v-20c0-2.5 1.2-4.9 3.2-6.4l28.9-21.7c1.9-.1 3.8-.3 5.7-.3C358.3 56 448 145.7 448 256zM130.1 149.1c0-3 1.2-5.9 3.3-8l25.4-25.4c2.1-2.1 5-3.3 8-3.3 6.2 0 11.3 5.1 11.3 11.3v16c0 3-1.2 5.9-3.3 8l-9.4 9.4c-2.1 2.1-5 3.3-8 3.3h-16c-6.2 0-11.3-5.1-11.3-11.3zm128 306.4v-7.1c0-8.8-7.2-16-16-16h-20.2c-10.8 0-26.7-5.3-35.4-11.8l-22.2-16.7c-11.5-8.6-18.2-22.1-18.2-36.4v-23.9c0-16 8.4-30.8 22.1-39l42.9-25.7c7.1-4.2 15.2-6.5 23.4-6.5h31.2c10.9 0 21.4 3.9 29.6 10.9l43.2 37.1h18.3c8.5 0 16.6 3.4 22.6 9.4l17.3 17.3c3.4 3.4 8.1 5.3 12.9 5.3H423c-32.4 58.9-93.8 99.5-164.9 103.1z"],"golf-ball":[416,512,[],"f450","M96 416h224c0 17.7-14.3 32-32 32h-16c-17.7 0-32 14.3-32 32v20c0 6.6-5.4 12-12 12h-40c-6.6 0-12-5.4-12-12v-20c0-17.7-14.3-32-32-32h-16c-17.7 0-32-14.3-32-32zm320-208c0 74.2-39 139.2-97.5 176h-221C39 347.2 0 282.2 0 208 0 93.1 93.1 0 208 0s208 93.1 208 208zm-180.1 43.9c18.3 0 33.1-14.8 33.1-33.1 0-14.4-9.3-26.3-22.1-30.9 9.6 26.8-15.6 51.3-41.9 41.9 4.6 12.8 16.5 22.1 30.9 22.1zm49.1 46.9c0-14.4-9.3-26.3-22.1-30.9 9.6 26.8-15.6 51.3-41.9 41.9 4.6 12.8 16.5 22.1 30.9 22.1 18.3 0 33.1-14.9 33.1-33.1zm64-64c0-14.4-9.3-26.3-22.1-30.9 9.6 26.8-15.6 51.3-41.9 41.9 4.6 12.8 16.5 22.1 30.9 22.1 18.3 0 33.1-14.9 33.1-33.1z"],gopuram:[512,512,[],"f664","M496 352h-16V240c0-8.8-7.2-16-16-16h-16v-80c0-8.8-7.2-16-16-16h-16V16c0-8.8-7.2-16-16-16s-16 7.2-16 16v16h-64V16c0-8.8-7.2-16-16-16s-16 7.2-16 16v16h-64V16c0-8.8-7.2-16-16-16s-16 7.2-16 16v16h-64V16c0-8.8-7.2-16-16-16S96 7.2 96 16v112H80c-8.8 0-16 7.2-16 16v80H48c-8.8 0-16 7.2-16 16v112H16c-8.8 0-16 7.2-16 16v128c0 8.8 7.2 16 16 16h80V352h32V224h32v-96h32v96h-32v128h-32v160h80v-80c0-8.8 7.2-16 16-16h64c8.8 0 16 7.2 16 16v80h80V352h-32V224h-32v-96h32v96h32v128h32v160h80c8.8 0 16-7.2 16-16V368c0-8.8-7.2-16-16-16zM232 176c0-8.8 7.2-16 16-16h16c8.8 0 16 7.2 16 16v48h-48zm56 176h-64v-64c0-8.8 7.2-16 16-16h32c8.8 0 16 7.2 16 16z"],"graduation-cap":[640,512,[],"f19d","M622.34 153.2L343.4 67.5c-15.2-4.67-31.6-4.67-46.79 0L17.66 153.2c-23.54 7.23-23.54 38.36 0 45.59l48.63 14.94c-10.67 13.19-17.23 29.28-17.88 46.9C38.78 266.15 32 276.11 32 288c0 10.78 5.68 19.85 13.86 25.65L20.33 428.53C18.11 438.52 25.71 448 35.94 448h56.11c10.24 0 17.84-9.48 15.62-19.47L82.14 313.65C90.32 307.85 96 298.78 96 288c0-11.57-6.47-21.25-15.66-26.87.76-15.02 8.44-28.3 20.69-36.72L296.6 284.5c9.06 2.78 26.44 6.25 46.79 0l278.95-85.7c23.55-7.24 23.55-38.36 0-45.6zM352.79 315.09c-28.53 8.76-52.84 3.92-65.59 0l-145.02-44.55L128 384c0 35.35 85.96 64 192 64s192-28.65 192-64l-14.18-113.47-145.03 44.56z"],"greater-than":[384,512,[],"f531","M365.52 209.85L59.22 67.01c-16.06-7.49-35.15-.54-42.64 15.52L3.01 111.61c-7.49 16.06-.54 35.15 15.52 42.64L236.96 256.1 18.49 357.99C2.47 365.46-4.46 384.5 3.01 400.52l13.52 29C24 445.54 43.04 452.47 59.06 445l306.47-142.91a32.003 32.003 0 0 0 18.48-29v-34.23c-.01-12.45-7.21-23.76-18.49-29.01z"],"greater-than-equal":[448,512,[],"f532","M55.22 107.69l175.56 68.09-175.44 68.05c-18.39 6.03-27.88 24.39-21.2 41l12.09 30.08c6.68 16.61 26.99 25.19 45.38 19.15L393.02 214.2c13.77-4.52 22.98-16.61 22.98-30.17v-15.96c0-13.56-9.21-25.65-22.98-30.17L91.3 17.92c-18.29-6-38.51 2.53-45.15 19.06L34.12 66.9c-6.64 16.53 2.81 34.79 21.1 40.79zM424 400H24c-13.25 0-24 10.74-24 24v48c0 13.25 10.75 24 24 24h400c13.25 0 24-10.75 24-24v-48c0-13.26-10.75-24-24-24z"],grimace:[496,512,[],"f57f","M248 8C111 8 0 119 0 256s111 248 248 248 248-111 248-248S385 8 248 8zM144 400h-8c-17.7 0-32-14.3-32-32v-8h40v40zm0-56h-40v-8c0-17.7 14.3-32 32-32h8v40zm-8-136c0-17.7 14.3-32 32-32s32 14.3 32 32-14.3 32-32 32-32-14.3-32-32zm72 192h-48v-40h48v40zm0-56h-48v-40h48v40zm64 56h-48v-40h48v40zm0-56h-48v-40h48v40zm64 56h-48v-40h48v40zm0-56h-48v-40h48v40zm-8-104c-17.7 0-32-14.3-32-32s14.3-32 32-32 32 14.3 32 32-14.3 32-32 32zm64 128c0 17.7-14.3 32-32 32h-8v-40h40v8zm0-24h-40v-40h8c17.7 0 32 14.3 32 32v8z"],grin:[496,512,[],"f580","M248 8C111 8 0 119 0 256s111 248 248 248 248-111 248-248S385 8 248 8zm80 168c17.7 0 32 14.3 32 32s-14.3 32-32 32-32-14.3-32-32 14.3-32 32-32zm-160 0c17.7 0 32 14.3 32 32s-14.3 32-32 32-32-14.3-32-32 14.3-32 32-32zm80 256c-60.6 0-134.5-38.3-143.8-93.3-2-11.8 9.3-21.6 20.7-17.9C155.1 330.5 200 336 248 336s92.9-5.5 123.1-15.2c11.3-3.7 22.6 6.1 20.7 17.9-9.3 55-83.2 93.3-143.8 93.3z"],"grin-alt":[496,512,[],"f581","M248 8C111 8 0 119 0 256s111 248 248 248 248-111 248-248S385 8 248 8zm63.7 128.7c7.6-11.4 24.7-11.7 32.7 0 12.4 18.4 15.1 36.9 15.7 55.3-.5 18.4-3.3 36.9-15.7 55.3-7.6 11.4-24.7 11.7-32.7 0-12.4-18.4-15.1-36.9-15.7-55.3.5-18.4 3.3-36.9 15.7-55.3zm-160 0c7.6-11.4 24.7-11.7 32.7 0 12.4 18.4 15.1 36.9 15.7 55.3-.5 18.4-3.3 36.9-15.7 55.3-7.6 11.4-24.7 11.7-32.7 0-12.4-18.4-15.1-36.9-15.7-55.3.5-18.4 3.3-36.9 15.7-55.3zM248 432c-60.6 0-134.5-38.3-143.8-93.3-2-11.8 9.3-21.6 20.7-17.9C155.1 330.5 200 336 248 336s92.9-5.5 123.1-15.2c11.4-3.7 22.6 6.1 20.7 17.9-9.3 55-83.2 93.3-143.8 93.3z"],"grin-beam":[496,512,[],"f582","M248 8C111 8 0 119 0 256s111 248 248 248 248-111 248-248S385 8 248 8zm80 144c23.8 0 52.7 29.3 56 71.4.7 8.6-10.8 11.9-14.9 4.5l-9.5-17c-7.7-13.7-19.2-21.6-31.5-21.6s-23.8 7.9-31.5 21.6l-9.5 17c-4.1 7.3-15.6 4-14.9-4.5 3.1-42.1 32-71.4 55.8-71.4zm-160 0c23.8 0 52.7 29.3 56 71.4.7 8.6-10.8 11.9-14.9 4.5l-9.5-17c-7.7-13.7-19.2-21.6-31.5-21.6s-23.8 7.9-31.5 21.6l-9.5 17c-4.2 7.4-15.6 4-14.9-4.5 3.1-42.1 32-71.4 55.8-71.4zm80 280c-60.6 0-134.5-38.3-143.8-93.3-2-11.9 9.4-21.6 20.7-17.9C155.1 330.5 200 336 248 336s92.9-5.5 123.1-15.2c11.4-3.7 22.6 6.1 20.7 17.9-9.3 55-83.2 93.3-143.8 93.3z"],"grin-beam-sweat":[504,512,[],"f583","M456 128c26.5 0 48-21 48-47 0-20-28.5-60.4-41.6-77.8-3.2-4.3-9.6-4.3-12.8 0C436.5 20.6 408 61 408 81c0 26 21.5 47 48 47zm0 32c-44.1 0-80-35.4-80-79 0-4.4.3-14.2 8.1-32.2C345 23.1 298.3 8 248 8 111 8 0 119 0 256s111 248 248 248 248-111 248-248c0-35.1-7.4-68.4-20.5-98.6-6.3 1.5-12.7 2.6-19.5 2.6zm-128-8c23.8 0 52.7 29.3 56 71.4.7 8.6-10.8 12-14.9 4.5l-9.5-17c-7.7-13.7-19.2-21.6-31.5-21.6s-23.8 7.9-31.5 21.6l-9.5 17c-4.1 7.4-15.6 4-14.9-4.5 3.1-42.1 32-71.4 55.8-71.4zm-160 0c23.8 0 52.7 29.3 56 71.4.7 8.6-10.8 12-14.9 4.5l-9.5-17c-7.7-13.7-19.2-21.6-31.5-21.6s-23.8 7.9-31.5 21.6l-9.5 17c-4.2 7.4-15.6 4-14.9-4.5 3.1-42.1 32-71.4 55.8-71.4zm80 280c-60.6 0-134.5-38.3-143.8-93.3-2-11.8 9.3-21.6 20.7-17.9C155.1 330.5 200 336 248 336s92.9-5.5 123.1-15.2c11.5-3.7 22.6 6.2 20.7 17.9-9.3 55-83.2 93.3-143.8 93.3z"],"grin-hearts":[496,512,[],"f584","M248 8C111 8 0 119 0 256s111 248 248 248 248-111 248-248S385 8 248 8zM90.4 183.6c6.7-17.6 26.7-26.7 44.9-21.9l7.1 1.9 2-7.1c5-18.1 22.8-30.9 41.5-27.9 21.4 3.4 34.4 24.2 28.8 44.5L195.3 243c-1.2 4.5-5.9 7.2-10.5 6l-70.2-18.2c-20.4-5.4-31.9-27-24.2-47.2zM248 432c-60.6 0-134.5-38.3-143.8-93.3-2-11.8 9.2-21.5 20.7-17.9C155.1 330.5 200 336 248 336s92.9-5.5 123.1-15.2c11.4-3.6 22.6 6.1 20.7 17.9-9.3 55-83.2 93.3-143.8 93.3zm133.4-201.3l-70.2 18.2c-4.5 1.2-9.2-1.5-10.5-6L281.3 173c-5.6-20.3 7.4-41.1 28.8-44.5 18.6-3 36.4 9.8 41.5 27.9l2 7.1 7.1-1.9c18.2-4.7 38.2 4.3 44.9 21.9 7.7 20.3-3.8 41.9-24.2 47.2z"],"grin-squint":[496,512,[],"f585","M248 8C111 8 0 119 0 256s111 248 248 248 248-111 248-248S385 8 248 8zm33.8 189.7l80-48c11.6-6.9 24 7.7 15.4 18L343.6 208l33.6 40.3c8.7 10.4-3.9 24.8-15.4 18l-80-48c-7.7-4.7-7.7-15.9 0-20.6zm-163-30c-8.6-10.3 3.8-24.9 15.4-18l80 48c7.8 4.7 7.8 15.9 0 20.6l-80 48c-11.5 6.8-24-7.6-15.4-18l33.6-40.3-33.6-40.3zM248 432c-60.6 0-134.5-38.3-143.8-93.3-2-11.9 9.4-21.6 20.7-17.9C155.1 330.5 200 336 248 336s92.9-5.5 123.1-15.2c11.5-3.7 22.6 6.2 20.7 17.9-9.3 55-83.2 93.3-143.8 93.3z"],"grin-squint-tears":[512,512,[],"f586","M409.6 111.9c22.6-3.2 73.5-12 88.3-26.8 19.2-19.2 18.9-50.6-.7-70.2S446-5 426.9 14.2c-14.8 14.8-23.5 65.7-26.8 88.3-.8 5.5 3.9 10.2 9.5 9.4zM102.4 400.1c-22.6 3.2-73.5 12-88.3 26.8-19.1 19.1-18.8 50.6.8 70.2s51 19.9 70.2.7c14.8-14.8 23.5-65.7 26.8-88.3.8-5.5-3.9-10.2-9.5-9.4zm311.7-256.5c-33 3.9-48.6-25.1-45.7-45.7 3.4-24 7.4-42.1 11.5-56.5C285.1-13.4 161.8-.5 80.6 80.6-.5 161.7-13.4 285 41.4 379.9c14.4-4.1 32.4-8 56.5-11.5 33.2-3.9 48.6 25.2 45.7 45.7-3.4 24-7.4 42.1-11.5 56.5 94.8 54.8 218.1 41.9 299.3-39.2s94-204.4 39.2-299.3c-14.4 4.1-32.5 8-56.5 11.5zM255.7 106c3.3-13.2 22.4-11.5 23.6 1.8l4.8 52.3 52.3 4.8c13.4 1.2 14.9 20.3 1.8 23.6l-90.5 22.6c-8.9 2.2-16.7-5.9-14.5-14.5l22.5-90.6zm-90.9 230.3L160 284l-52.3-4.8c-13.4-1.2-14.9-20.3-1.8-23.6l90.5-22.6c8.8-2.2 16.7 5.8 14.5 14.5L188.3 338c-3.1 13.2-22.2 11.7-23.5-1.7zm215.7 44.2c-29.3 29.3-75.7 50.4-116.7 50.4-18.9 0-36.6-4.5-51-14.7-9.8-6.9-8.7-21.8 2-27.2 28.3-14.6 63.9-42.4 97.8-76.3s61.7-69.6 76.3-97.8c5.4-10.5 20.2-11.9 27.3-2 32.3 45.3 7.1 124.7-35.7 167.6z"],"grin-stars":[496,512,[],"f587","M248 8C111 8 0 119 0 256s111 248 248 248 248-111 248-248S385 8 248 8zM94.6 168.9l34.9-5 15.5-31.6c2.9-5.8 11-5.8 13.9 0l15.5 31.6 34.9 5c6.2 1 8.9 8.6 4.3 13.2l-25.4 24.6 6 34.9c1 6.2-5.3 11-11 7.9L152 233.3l-31.3 16.3c-5.7 3.1-12-1.7-11-7.9l6-34.9-25.4-24.6c-4.6-4.7-1.9-12.3 4.3-13.3zM248 432c-60.6 0-134.5-38.3-143.8-93.3-2-11.8 9.3-21.5 20.7-17.9C155.1 330.5 200 336 248 336s92.9-5.5 123.1-15.2c11.5-3.7 22.6 6.1 20.7 17.9-9.3 55-83.2 93.3-143.8 93.3zm157.7-249.9l-25.4 24.6 6 34.9c1 6.2-5.3 11-11 7.9L344 233.3l-31.3 16.3c-5.7 3.1-12-1.7-11-7.9l6-34.9-25.4-24.6c-4.5-4.6-1.9-12.2 4.3-13.2l34.9-5 15.5-31.6c2.9-5.8 11-5.8 13.9 0l15.5 31.6 34.9 5c6.3.9 9 8.5 4.4 13.1z"],"grin-tears":[640,512,[],"f588","M102.4 256.1c-22.6 3.2-73.5 12-88.3 26.8-19.1 19.1-18.8 50.6.8 70.2s51 19.9 70.2.7c14.8-14.8 23.5-65.7 26.8-88.3.8-5.5-3.9-10.2-9.5-9.4zm523.4 26.8c-14.8-14.8-65.7-23.5-88.3-26.8-5.5-.8-10.3 3.9-9.5 9.5 3.2 22.6 12 73.5 26.8 88.3 19.2 19.2 50.6 18.9 70.2-.7s20-51.2.8-70.3zm-129.4-12.8c-3.8-26.6 19.1-49.5 45.7-45.7 8.9 1.3 16.8 2.7 24.3 4.1C552.7 104.5 447.7 8 320 8S87.3 104.5 73.6 228.5c7.5-1.4 15.4-2.8 24.3-4.1 33.2-3.9 48.6 25.3 45.7 45.7-11.8 82.3-29.9 100.4-35.8 106.4-.9.9-2 1.6-3 2.5 42.7 74.6 123 125 215.2 125s172.5-50.4 215.2-125.1c-1-.9-2.1-1.5-3-2.5-5.9-5.9-24-24-35.8-106.3zM400 152c23.8 0 52.7 29.3 56 71.4.7 8.6-10.8 12-14.9 4.5l-9.5-17c-7.7-13.7-19.2-21.6-31.5-21.6s-23.8 7.9-31.5 21.6l-9.5 17c-4.2 7.4-15.6 4-14.9-4.5 3.1-42.1 32-71.4 55.8-71.4zm-160 0c23.8 0 52.7 29.3 56 71.4.7 8.6-10.8 12-14.9 4.5l-9.5-17c-7.7-13.7-19.2-21.6-31.5-21.6s-23.8 7.9-31.5 21.6l-9.5 17c-4.2 7.4-15.6 4-14.9-4.5 3.1-42.1 32-71.4 55.8-71.4zm80 280c-60.6 0-134.5-38.3-143.8-93.3-2-11.7 9.2-21.6 20.7-17.9C227.1 330.5 272 336 320 336s92.9-5.5 123.1-15.2c11.4-3.7 22.6 6.1 20.7 17.9-9.3 55-83.2 93.3-143.8 93.3z"],"grin-tongue":[496,512,[],"f589","M248 8C111 8 0 119 0 256c0 106.3 67 196.7 161 232-5.6-12.2-9-25.7-9-40v-45.5c-24.7-16.2-43.5-38.1-47.8-63.8-2-11.8 9.3-21.5 20.7-17.9C155.1 330.5 200 336 248 336s92.9-5.5 123.1-15.2c11.4-3.6 22.6 6.1 20.7 17.9-4.3 25.7-23.1 47.6-47.8 63.8V448c0 14.3-3.4 27.8-9 40 94-35.3 161-125.7 161-232C496 119 385 8 248 8zm-80 232c-17.7 0-32-14.3-32-32s14.3-32 32-32 32 14.3 32 32-14.3 32-32 32zm160 0c-17.7 0-32-14.3-32-32s14.3-32 32-32 32 14.3 32 32-14.3 32-32 32zm-34.9 134.6c-14.4-6.5-31.1 2.2-34.6 17.6l-1.8 7.8c-2.1 9.2-15.2 9.2-17.3 0l-1.8-7.8c-3.5-15.4-20.2-24.1-34.6-17.6-.9.4.3-.2-18.9 9.4v63c0 35.2 28 64.5 63.1 64.9 35.7.5 64.9-28.4 64.9-64v-64c-19.5-9.6-18.2-8.9-19-9.3z"],"grin-tongue-squint":[496,512,[],"f58a","M293.1 374.6c-14.4-6.5-31.1 2.2-34.6 17.6l-1.8 7.8c-2.1 9.2-15.2 9.2-17.3 0l-1.8-7.8c-3.5-15.4-20.2-24.1-34.6-17.6-.9.4.3-.2-18.9 9.4v63c0 35.2 28 64.5 63.1 64.9 35.7.5 64.9-28.4 64.9-64v-64c-19.5-9.6-18.2-8.9-19-9.3zM248 8C111 8 0 119 0 256c0 106.3 67 196.7 161 232-5.6-12.2-9-25.7-9-40v-45.5c-24.7-16.2-43.5-38.1-47.8-63.8-2-11.8 9.2-21.5 20.7-17.9C155.1 330.5 200 336 248 336s92.9-5.5 123.1-15.2c11.4-3.7 22.6 6.1 20.7 17.9-4.3 25.7-23.1 47.6-47.8 63.8V448c0 14.3-3.4 27.8-9 40 94-35.3 161-125.7 161-232C496 119 385 8 248 8zm-33.8 210.3l-80 48c-11.5 6.8-24-7.6-15.4-18l33.6-40.3-33.6-40.3c-8.6-10.3 3.8-24.9 15.4-18l80 48c7.7 4.7 7.7 15.9 0 20.6zm163 30c8.7 10.4-3.9 24.8-15.4 18l-80-48c-7.8-4.7-7.8-15.9 0-20.6l80-48c11.7-6.9 23.9 7.7 15.4 18L343.6 208l33.6 40.3z"],"grin-tongue-wink":[496,512,[],"f58b","M344 184c-13.3 0-24 10.7-24 24s10.7 24 24 24 24-10.7 24-24-10.7-24-24-24zM248 8C111 8 0 119 0 256c0 106.3 67 196.7 161 232-5.6-12.2-9-25.7-9-40v-45.5c-24.7-16.2-43.5-38.1-47.8-63.8-2-11.8 9.3-21.5 20.7-17.9C155.1 330.5 200 336 248 336s92.9-5.5 123.1-15.2c11.5-3.7 22.6 6.1 20.7 17.9-4.3 25.7-23.1 47.6-47.8 63.8V448c0 14.3-3.4 27.8-9 40 94-35.3 161-125.7 161-232C496 119 385 8 248 8zm-56 225l-9.5-8.5c-14.8-13.2-46.2-13.2-61 0L112 233c-8.5 7.4-21.6.3-19.8-10.8 4-25.2 34.2-42.1 59.9-42.1S208 197 212 222.2c1.6 11.1-11.6 18.2-20 10.8zm152 39c-35.3 0-64-28.7-64-64s28.7-64 64-64 64 28.7 64 64-28.7 64-64 64zm-50.9 102.6c-14.4-6.5-31.1 2.2-34.6 17.6l-1.8 7.8c-2.1 9.2-15.2 9.2-17.3 0l-1.8-7.8c-3.5-15.4-20.2-24.1-34.6-17.6-.9.4.3-.2-18.9 9.4v63c0 35.2 28 64.5 63.1 64.9 35.7.5 64.9-28.4 64.9-64v-64c-19.5-9.6-18.2-8.9-19-9.3z"],"grin-wink":[496,512,[],"f58c","M0 256c0 137 111 248 248 248s248-111 248-248S385 8 248 8 0 119 0 256zm200-48c0 17.7-14.3 32-32 32s-32-14.3-32-32 14.3-32 32-32 32 14.3 32 32zm168 25l-9.5-8.5c-14.8-13.2-46.2-13.2-61 0L288 233c-8.3 7.4-21.6.4-19.8-10.8 4-25.2 34.2-42.1 59.9-42.1S384 197 388 222.2c1.6 11-11.5 18.2-20 10.8zm-243.1 87.8C155.1 330.5 200 336 248 336s92.9-5.5 123.1-15.2c11.3-3.7 22.6 6 20.7 17.9-9.2 55-83.2 93.3-143.8 93.3s-134.5-38.3-143.8-93.3c-2-11.9 9.3-21.6 20.7-17.9z"],"grip-horizontal":[448,512,[],"f58d","M96 288H32c-17.67 0-32 14.33-32 32v64c0 17.67 14.33 32 32 32h64c17.67 0 32-14.33 32-32v-64c0-17.67-14.33-32-32-32zm160 0h-64c-17.67 0-32 14.33-32 32v64c0 17.67 14.33 32 32 32h64c17.67 0 32-14.33 32-32v-64c0-17.67-14.33-32-32-32zm160 0h-64c-17.67 0-32 14.33-32 32v64c0 17.67 14.33 32 32 32h64c17.67 0 32-14.33 32-32v-64c0-17.67-14.33-32-32-32zM96 96H32c-17.67 0-32 14.33-32 32v64c0 17.67 14.33 32 32 32h64c17.67 0 32-14.33 32-32v-64c0-17.67-14.33-32-32-32zm160 0h-64c-17.67 0-32 14.33-32 32v64c0 17.67 14.33 32 32 32h64c17.67 0 32-14.33 32-32v-64c0-17.67-14.33-32-32-32zm160 0h-64c-17.67 0-32 14.33-32 32v64c0 17.67 14.33 32 32 32h64c17.67 0 32-14.33 32-32v-64c0-17.67-14.33-32-32-32z"],"grip-lines":[512,512,[],"f7a4","M496 288H16c-8.8 0-16 7.2-16 16v32c0 8.8 7.2 16 16 16h480c8.8 0 16-7.2 16-16v-32c0-8.8-7.2-16-16-16zm0-128H16c-8.8 0-16 7.2-16 16v32c0 8.8 7.2 16 16 16h480c8.8 0 16-7.2 16-16v-32c0-8.8-7.2-16-16-16z"],"grip-lines-vertical":[256,512,[],"f7a5","M96 496V16c0-8.8-7.2-16-16-16H48c-8.8 0-16 7.2-16 16v480c0 8.8 7.2 16 16 16h32c8.8 0 16-7.2 16-16zm128 0V16c0-8.8-7.2-16-16-16h-32c-8.8 0-16 7.2-16 16v480c0 8.8 7.2 16 16 16h32c8.8 0 16-7.2 16-16z"],"grip-vertical":[320,512,[],"f58e","M96 32H32C14.33 32 0 46.33 0 64v64c0 17.67 14.33 32 32 32h64c17.67 0 32-14.33 32-32V64c0-17.67-14.33-32-32-32zm0 160H32c-17.67 0-32 14.33-32 32v64c0 17.67 14.33 32 32 32h64c17.67 0 32-14.33 32-32v-64c0-17.67-14.33-32-32-32zm0 160H32c-17.67 0-32 14.33-32 32v64c0 17.67 14.33 32 32 32h64c17.67 0 32-14.33 32-32v-64c0-17.67-14.33-32-32-32zM288 32h-64c-17.67 0-32 14.33-32 32v64c0 17.67 14.33 32 32 32h64c17.67 0 32-14.33 32-32V64c0-17.67-14.33-32-32-32zm0 160h-64c-17.67 0-32 14.33-32 32v64c0 17.67 14.33 32 32 32h64c17.67 0 32-14.33 32-32v-64c0-17.67-14.33-32-32-32zm0 160h-64c-17.67 0-32 14.33-32 32v64c0 17.67 14.33 32 32 32h64c17.67 0 32-14.33 32-32v-64c0-17.67-14.33-32-32-32z"],guitar:[512,512,[],"f7a6","M502.63 39L473 9.37a32 32 0 0 0-45.26 0L381.46 55.7a35.14 35.14 0 0 0-8.53 13.79L360.77 106l-76.26 76.26c-12.16-8.76-25.5-15.74-40.1-19.14-33.45-7.78-67-.88-89.88 22a82.45 82.45 0 0 0-20.24 33.47c-6 18.56-23.21 32.69-42.15 34.46-23.7 2.27-45.73 11.45-62.61 28.44C-16.11 327-7.9 409 47.58 464.45S185 528 230.56 482.52c17-16.88 26.16-38.9 28.45-62.71 1.76-18.85 15.89-36.13 34.43-42.14a82.6 82.6 0 0 0 33.48-20.25c22.87-22.88 29.74-56.36 22-89.75-3.39-14.64-10.37-28-19.16-40.2L406 151.23l36.48-12.16a35.14 35.14 0 0 0 13.79-8.53l46.33-46.32a32 32 0 0 0 .03-45.22zM208 352a48 48 0 1 1 48-48 48 48 0 0 1-48 48z"],"h-square":[448,512,[],"f0fd","M448 80v352c0 26.51-21.49 48-48 48H48c-26.51 0-48-21.49-48-48V80c0-26.51 21.49-48 48-48h352c26.51 0 48 21.49 48 48zm-112 48h-32c-8.837 0-16 7.163-16 16v80H160v-80c0-8.837-7.163-16-16-16h-32c-8.837 0-16 7.163-16 16v224c0 8.837 7.163 16 16 16h32c8.837 0 16-7.163 16-16v-80h128v80c0 8.837 7.163 16 16 16h32c8.837 0 16-7.163 16-16V144c0-8.837-7.163-16-16-16z"],hamburger:[512,512,[],"f805","M464 256H48a48 48 0 0 0 0 96h416a48 48 0 0 0 0-96zm16 128H32a16 16 0 0 0-16 16v16a64 64 0 0 0 64 64h352a64 64 0 0 0 64-64v-16a16 16 0 0 0-16-16zM58.64 224h394.72c34.57 0 54.62-43.9 34.82-75.88C448 83.2 359.55 32.1 256 32c-103.54.1-192 51.2-232.18 116.11C4 180.09 24.07 224 58.64 224zM384 112a16 16 0 1 1-16 16 16 16 0 0 1 16-16zM256 80a16 16 0 1 1-16 16 16 16 0 0 1 16-16zm-128 32a16 16 0 1 1-16 16 16 16 0 0 1 16-16z"],hammer:[576,512,[],"f6e3","M571.31 193.94l-22.63-22.63c-6.25-6.25-16.38-6.25-22.63 0l-11.31 11.31-28.9-28.9c5.63-21.31.36-44.9-16.35-61.61l-45.25-45.25c-62.48-62.48-163.79-62.48-226.28 0l90.51 45.25v18.75c0 16.97 6.74 33.25 18.75 45.25l49.14 49.14c16.71 16.71 40.3 21.98 61.61 16.35l28.9 28.9-11.31 11.31c-6.25 6.25-6.25 16.38 0 22.63l22.63 22.63c6.25 6.25 16.38 6.25 22.63 0l90.51-90.51c6.23-6.24 6.23-16.37-.02-22.62zm-286.72-15.2c-3.7-3.7-6.84-7.79-9.85-11.95L19.64 404.96c-25.57 23.88-26.26 64.19-1.53 88.93s65.05 24.05 88.93-1.53l238.13-255.07c-3.96-2.91-7.9-5.87-11.44-9.41l-49.14-49.14z"],hamsa:[512,512,[],"f665","M509.34 307.25C504.28 295.56 492.75 288 480 288h-64V80c0-22-18-40-40-40s-40 18-40 40v134c0 5.52-4.48 10-10 10h-20c-5.52 0-10-4.48-10-10V40c0-22-18-40-40-40s-40 18-40 40v174c0 5.52-4.48 10-10 10h-20c-5.52 0-10-4.48-10-10V80c0-22-18-40-40-40S96 58 96 80v208H32c-12.75 0-24.28 7.56-29.34 19.25a31.966 31.966 0 0 0 5.94 34.58l102.69 110.03C146.97 490.08 199.69 512 256 512s109.03-21.92 144.72-60.14L503.4 341.83a31.966 31.966 0 0 0 5.94-34.58zM256 416c-53.02 0-96-64-96-64s42.98-64 96-64 96 64 96 64-42.98 64-96 64zm0-96c-17.67 0-32 14.33-32 32s14.33 32 32 32 32-14.33 32-32-14.33-32-32-32z"],"hand-holding":[576,512,[],"f4bd","M565.3 328.1c-11.8-10.7-30.2-10-42.6 0L430.3 402c-11.3 9.1-25.4 14-40 14H272c-8.8 0-16-7.2-16-16s7.2-16 16-16h78.3c15.9 0 30.7-10.9 33.3-26.6 3.3-20-12.1-37.4-31.6-37.4H192c-27 0-53.1 9.3-74.1 26.3L71.4 384H16c-8.8 0-16 7.2-16 16v96c0 8.8 7.2 16 16 16h356.8c14.5 0 28.6-4.9 40-14L564 377c15.2-12.1 16.4-35.3 1.3-48.9z"],"hand-holding-heart":[576,512,[],"f4be","M275.3 250.5c7 7.4 18.4 7.4 25.5 0l108.9-114.2c31.6-33.2 29.8-88.2-5.6-118.8-30.8-26.7-76.7-21.9-104.9 7.7L288 36.9l-11.1-11.6C248.7-4.4 202.8-9.2 172 17.5c-35.3 30.6-37.2 85.6-5.6 118.8l108.9 114.2zm290 77.6c-11.8-10.7-30.2-10-42.6 0L430.3 402c-11.3 9.1-25.4 14-40 14H272c-8.8 0-16-7.2-16-16s7.2-16 16-16h78.3c15.9 0 30.7-10.9 33.3-26.6 3.3-20-12.1-37.4-31.6-37.4H192c-27 0-53.1 9.3-74.1 26.3L71.4 384H16c-8.8 0-16 7.2-16 16v96c0 8.8 7.2 16 16 16h356.8c14.5 0 28.6-4.9 40-14L564 377c15.2-12.1 16.4-35.3 1.3-48.9z"],"hand-holding-usd":[576,512,[],"f4c0","M271.06,144.3l54.27,14.3a8.59,8.59,0,0,1,6.63,8.1c0,4.6-4.09,8.4-9.12,8.4h-35.6a30,30,0,0,1-11.19-2.2c-5.24-2.2-11.28-1.7-15.3,2l-19,17.5a11.68,11.68,0,0,0-2.25,2.66,11.42,11.42,0,0,0,3.88,15.74,83.77,83.77,0,0,0,34.51,11.5V240c0,8.8,7.83,16,17.37,16h17.37c9.55,0,17.38-7.2,17.38-16V222.4c32.93-3.6,57.84-31,53.5-63-3.15-23-22.46-41.3-46.56-47.7L282.68,97.4a8.59,8.59,0,0,1-6.63-8.1c0-4.6,4.09-8.4,9.12-8.4h35.6A30,30,0,0,1,332,83.1c5.23,2.2,11.28,1.7,15.3-2l19-17.5A11.31,11.31,0,0,0,368.47,61a11.43,11.43,0,0,0-3.84-15.78,83.82,83.82,0,0,0-34.52-11.5V16c0-8.8-7.82-16-17.37-16H295.37C285.82,0,278,7.2,278,16V33.6c-32.89,3.6-57.85,31-53.51,63C227.63,119.6,247,137.9,271.06,144.3ZM565.27,328.1c-11.8-10.7-30.2-10-42.6,0L430.27,402a63.64,63.64,0,0,1-40,14H272a16,16,0,0,1,0-32h78.29c15.9,0,30.71-10.9,33.25-26.6a31.2,31.2,0,0,0,.46-5.46A32,32,0,0,0,352,320H192a117.66,117.66,0,0,0-74.1,26.29L71.4,384H16A16,16,0,0,0,0,400v96a16,16,0,0,0,16,16H372.77a64,64,0,0,0,40-14L564,377a32,32,0,0,0,1.28-48.9Z"],"hand-lizard":[576,512,[],"f258","M384 480h192V363.778a95.998 95.998 0 0 0-14.833-51.263L398.127 54.368A48 48 0 0 0 357.544 32H24C10.745 32 0 42.745 0 56v16c0 30.928 25.072 56 56 56h229.981c12.844 0 21.556 13.067 16.615 24.923l-21.41 51.385A32 32 0 0 1 251.648 224H128c-35.346 0-64 28.654-64 64v8c0 13.255 10.745 24 24 24h147.406a47.995 47.995 0 0 1 25.692 7.455l111.748 70.811A24.001 24.001 0 0 1 384 418.539V480z"],"hand-middle-finger":[512,512,[],"f806","M479.93 317.12a37.33 37.33 0 0 0-28.28-36.19L416 272v-49.59c0-11.44-9.69-21.29-23.15-23.54l-38.4-6.4C336.63 189.5 320 200.86 320 216v32a8 8 0 0 1-16 0V50c0-26.28-20.25-49.2-46.52-50A48 48 0 0 0 208 48v200a8 8 0 0 1-16 0v-32c0-15.15-16.63-26.51-34.45-23.54l-30.68 5.12c-18 3-30.87 16.12-30.87 31.38V376a8 8 0 0 1-16 0v-76l-27.36 15A37.34 37.34 0 0 0 32 348.4v73.47a37.31 37.31 0 0 0 10.93 26.39l30.93 30.93A112 112 0 0 0 153.05 512h215A112 112 0 0 0 480 400z"],"hand-paper":[448,512,[],"f256","M408.781 128.007C386.356 127.578 368 146.36 368 168.79V256h-8V79.79c0-22.43-18.356-41.212-40.781-40.783C297.488 39.423 280 57.169 280 79v177h-8V40.79C272 18.36 253.644-.422 231.219.007 209.488.423 192 18.169 192 40v216h-8V80.79c0-22.43-18.356-41.212-40.781-40.783C121.488 40.423 104 58.169 104 80v235.992l-31.648-43.519c-12.993-17.866-38.009-21.817-55.877-8.823-17.865 12.994-21.815 38.01-8.822 55.877l125.601 172.705A48 48 0 0 0 172.073 512h197.59c22.274 0 41.622-15.324 46.724-37.006l26.508-112.66a192.011 192.011 0 0 0 5.104-43.975V168c.001-21.831-17.487-39.577-39.218-39.993z"],"hand-peace":[448,512,[],"f25b","M408 216c-22.092 0-40 17.909-40 40h-8v-32c0-22.091-17.908-40-40-40s-40 17.909-40 40v32h-8V48c0-26.51-21.49-48-48-48s-48 21.49-48 48v208h-13.572L92.688 78.449C82.994 53.774 55.134 41.63 30.461 51.324 5.787 61.017-6.356 88.877 3.337 113.551l74.765 190.342-31.09 24.872c-15.381 12.306-19.515 33.978-9.741 51.081l64 112A39.998 39.998 0 0 0 136 512h240c18.562 0 34.686-12.77 38.937-30.838l32-136A39.97 39.97 0 0 0 448 336v-80c0-22.091-17.908-40-40-40z"],"hand-point-down":[384,512,[],"f0a7","M91.826 467.2V317.966c-8.248 5.841-16.558 10.57-24.918 14.153C35.098 345.752-.014 322.222 0 288c.008-18.616 10.897-32.203 29.092-40 28.286-12.122 64.329-78.648 77.323-107.534 7.956-17.857 25.479-28.453 43.845-28.464l.001-.002h171.526c11.812 0 21.897 8.596 23.703 20.269 7.25 46.837 38.483 61.76 38.315 123.731-.007 2.724.195 13.254.195 16 0 50.654-22.122 81.574-71.263 72.6-9.297 18.597-39.486 30.738-62.315 16.45-21.177 24.645-53.896 22.639-70.944 6.299V467.2c0 24.15-20.201 44.8-43.826 44.8-23.283 0-43.826-21.35-43.826-44.8zM112 72V24c0-13.255 10.745-24 24-24h192c13.255 0 24 10.745 24 24v48c0 13.255-10.745 24-24 24H136c-13.255 0-24-10.745-24-24zm212-24c0-11.046-8.954-20-20-20s-20 8.954-20 20 8.954 20 20 20 20-8.954 20-20z"],"hand-point-left":[512,512,[],"f0a5","M44.8 155.826h149.234c-5.841-8.248-10.57-16.558-14.153-24.918C166.248 99.098 189.778 63.986 224 64c18.616.008 32.203 10.897 40 29.092 12.122 28.286 78.648 64.329 107.534 77.323 17.857 7.956 28.453 25.479 28.464 43.845l.002.001v171.526c0 11.812-8.596 21.897-20.269 23.703-46.837 7.25-61.76 38.483-123.731 38.315-2.724-.007-13.254.195-16 .195-50.654 0-81.574-22.122-72.6-71.263-18.597-9.297-30.738-39.486-16.45-62.315-24.645-21.177-22.639-53.896-6.299-70.944H44.8c-24.15 0-44.8-20.201-44.8-43.826 0-23.283 21.35-43.826 44.8-43.826zM440 176h48c13.255 0 24 10.745 24 24v192c0 13.255-10.745 24-24 24h-48c-13.255 0-24-10.745-24-24V200c0-13.255 10.745-24 24-24zm24 212c11.046 0 20-8.954 20-20s-8.954-20-20-20-20 8.954-20 20 8.954 20 20 20z"],"hand-point-right":[512,512,[],"f0a4","M512 199.652c0 23.625-20.65 43.826-44.8 43.826h-99.851c16.34 17.048 18.346 49.766-6.299 70.944 14.288 22.829 2.147 53.017-16.45 62.315C353.574 425.878 322.654 448 272 448c-2.746 0-13.276-.203-16-.195-61.971.168-76.894-31.065-123.731-38.315C120.596 407.683 112 397.599 112 385.786V214.261l.002-.001c.011-18.366 10.607-35.889 28.464-43.845 28.886-12.994 95.413-49.038 107.534-77.323 7.797-18.194 21.384-29.084 40-29.092 34.222-.014 57.752 35.098 44.119 66.908-3.583 8.359-8.312 16.67-14.153 24.918H467.2c23.45 0 44.8 20.543 44.8 43.826zM96 200v192c0 13.255-10.745 24-24 24H24c-13.255 0-24-10.745-24-24V200c0-13.255 10.745-24 24-24h48c13.255 0 24 10.745 24 24zM68 368c0-11.046-8.954-20-20-20s-20 8.954-20 20 8.954 20 20 20 20-8.954 20-20z"],"hand-point-up":[384,512,[],"f0a6","M135.652 0c23.625 0 43.826 20.65 43.826 44.8v99.851c17.048-16.34 49.766-18.346 70.944 6.299 22.829-14.288 53.017-2.147 62.315 16.45C361.878 158.426 384 189.346 384 240c0 2.746-.203 13.276-.195 16 .168 61.971-31.065 76.894-38.315 123.731C343.683 391.404 333.599 400 321.786 400H150.261l-.001-.002c-18.366-.011-35.889-10.607-43.845-28.464C93.421 342.648 57.377 276.122 29.092 264 10.897 256.203.008 242.616 0 224c-.014-34.222 35.098-57.752 66.908-44.119 8.359 3.583 16.67 8.312 24.918 14.153V44.8c0-23.45 20.543-44.8 43.826-44.8zM136 416h192c13.255 0 24 10.745 24 24v48c0 13.255-10.745 24-24 24H136c-13.255 0-24-10.745-24-24v-48c0-13.255 10.745-24 24-24zm168 28c-11.046 0-20 8.954-20 20s8.954 20 20 20 20-8.954 20-20-8.954-20-20-20z"],"hand-pointer":[448,512,[],"f25a","M448 240v96c0 3.084-.356 6.159-1.063 9.162l-32 136C410.686 499.23 394.562 512 376 512H168a40.004 40.004 0 0 1-32.35-16.473l-127.997-176c-12.993-17.866-9.043-42.883 8.822-55.876 17.867-12.994 42.884-9.043 55.877 8.823L104 315.992V40c0-22.091 17.908-40 40-40s40 17.909 40 40v200h8v-40c0-22.091 17.908-40 40-40s40 17.909 40 40v40h8v-24c0-22.091 17.908-40 40-40s40 17.909 40 40v24h8c0-22.091 17.908-40 40-40s40 17.909 40 40zm-256 80h-8v96h8v-96zm88 0h-8v96h8v-96zm88 0h-8v96h8v-96z"],"hand-rock":[512,512,[],"f255","M464.8 80c-26.9-.4-48.8 21.2-48.8 48h-8V96.8c0-26.3-20.9-48.3-47.2-48.8-26.9-.4-48.8 21.2-48.8 48v32h-8V80.8c0-26.3-20.9-48.3-47.2-48.8-26.9-.4-48.8 21.2-48.8 48v48h-8V96.8c0-26.3-20.9-48.3-47.2-48.8-26.9-.4-48.8 21.2-48.8 48v136l-8-7.1v-48.1c0-26.3-20.9-48.3-47.2-48.8C21.9 127.6 0 149.2 0 176v66.4c0 27.4 11.7 53.5 32.2 71.8l111.7 99.3c10.2 9.1 16.1 22.2 16.1 35.9v6.7c0 13.3 10.7 24 24 24h240c13.3 0 24-10.7 24-24v-2.9c0-12.8 2.6-25.5 7.5-37.3l49-116.3c5-11.8 7.5-24.5 7.5-37.3V128.8c0-26.3-20.9-48.4-47.2-48.8z"],"hand-scissors":[512,512,[],"f257","M216 440c0-22.092 17.909-40 40-40v-8h-32c-22.091 0-40-17.908-40-40s17.909-40 40-40h32v-8H48c-26.51 0-48-21.49-48-48s21.49-48 48-48h208v-13.572l-177.551-69.74c-24.674-9.694-36.818-37.555-27.125-62.228 9.693-24.674 37.554-36.817 62.228-27.124l190.342 74.765 24.872-31.09c12.306-15.381 33.978-19.515 51.081-9.741l112 64A40.002 40.002 0 0 1 512 168v240c0 18.562-12.77 34.686-30.838 38.937l-136 32A39.982 39.982 0 0 1 336 480h-80c-22.091 0-40-17.908-40-40z"],"hand-spock":[512,512,[],"f259","M510.9005,145.27027,442.604,432.09391A103.99507,103.99507,0,0,1,341.43745,512H214.074a135.96968,135.96968,0,0,1-93.18489-36.95291L12.59072,373.12723a39.992,39.992,0,0,1,54.8122-58.24988l60.59342,57.02528v0a283.24849,283.24849,0,0,0-11.6703-80.46734L73.63726,147.36011a40.00575,40.00575,0,1,1,76.71833-22.7187l37.15458,125.39477a8.33113,8.33113,0,0,0,16.05656-4.4414L153.26183,49.95406A39.99638,39.99638,0,1,1,230.73015,30.0166l56.09491,218.15825a10.42047,10.42047,0,0,0,20.30018-.501L344.80766,63.96966a40.052,40.052,0,0,1,51.30245-30.0893c19.86073,6.2998,30.86262,27.67378,26.67564,48.08487l-33.83869,164.966a7.55172,7.55172,0,0,0,14.74406,3.2666l29.3973-123.45874a39.99414,39.99414,0,1,1,77.81208,18.53121Z"],hands:[640,512,[],"f4c2","M204.8 230.4c-10.6-14.1-30.7-17-44.8-6.4-14.1 10.6-17 30.7-6.4 44.8l38.1 50.8c4.8 6.4 4.1 15.3-1.5 20.9l-12.8 12.8c-6.7 6.7-17.6 6.2-23.6-1.1L64 244.4V96c0-17.7-14.3-32-32-32S0 78.3 0 96v218.4c0 10.9 3.7 21.5 10.5 30l104.1 134.3c5 6.5 8.4 13.9 10.4 21.7 1.8 6.9 8.1 11.6 15.3 11.6H272c8.8 0 16-7.2 16-16V384c0-27.7-9-54.6-25.6-76.8l-57.6-76.8zM608 64c-17.7 0-32 14.3-32 32v148.4l-89.8 107.8c-6 7.2-17 7.7-23.6 1.1l-12.8-12.8c-5.6-5.6-6.3-14.5-1.5-20.9l38.1-50.8c10.6-14.1 7.7-34.2-6.4-44.8-14.1-10.6-34.2-7.7-44.8 6.4l-57.6 76.8C361 329.4 352 356.3 352 384v112c0 8.8 7.2 16 16 16h131.7c7.1 0 13.5-4.7 15.3-11.6 2-7.8 5.4-15.2 10.4-21.7l104.1-134.3c6.8-8.5 10.5-19.1 10.5-30V96c0-17.7-14.3-32-32-32z"],"hands-helping":[640,512,[],"f4c4","M488 192H336v56c0 39.7-32.3 72-72 72s-72-32.3-72-72V126.4l-64.9 39C107.8 176.9 96 197.8 96 220.2v47.3l-80 46.2C.7 322.5-4.6 342.1 4.3 357.4l80 138.6c8.8 15.3 28.4 20.5 43.7 11.7L231.4 448H368c35.3 0 64-28.7 64-64h16c17.7 0 32-14.3 32-32v-64h8c13.3 0 24-10.7 24-24v-48c0-13.3-10.7-24-24-24zm147.7-37.4L555.7 16C546.9.7 527.3-4.5 512 4.3L408.6 64H306.4c-12 0-23.7 3.4-33.9 9.7L239 94.6c-9.4 5.8-15 16.1-15 27.1V248c0 22.1 17.9 40 40 40s40-17.9 40-40v-88h184c30.9 0 56 25.1 56 56v28.5l80-46.2c15.3-8.9 20.5-28.4 11.7-43.7z"],handshake:[640,512,[],"f2b5","M434.7 64h-85.9c-8 0-15.7 3-21.6 8.4l-98.3 90c-.1.1-.2.3-.3.4-16.6 15.6-16.3 40.5-2.1 56 12.7 13.9 39.4 17.6 56.1 2.7.1-.1.3-.1.4-.2l79.9-73.2c6.5-5.9 16.7-5.5 22.6 1 6 6.5 5.5 16.6-1 22.6l-26.1 23.9L504 313.8c2.9 2.4 5.5 5 7.9 7.7V128l-54.6-54.6c-5.9-6-14.1-9.4-22.6-9.4zM544 128.2v223.9c0 17.7 14.3 32 32 32h64V128.2h-96zm48 223.9c-8.8 0-16-7.2-16-16s7.2-16 16-16 16 7.2 16 16-7.2 16-16 16zM0 384h64c17.7 0 32-14.3 32-32V128.2H0V384zm48-63.9c8.8 0 16 7.2 16 16s-7.2 16-16 16-16-7.2-16-16c0-8.9 7.2-16 16-16zm435.9 18.6L334.6 217.5l-30 27.5c-29.7 27.1-75.2 24.5-101.7-4.4-26.9-29.4-24.8-74.9 4.4-101.7L289.1 64h-83.8c-8.5 0-16.6 3.4-22.6 9.4L128 128v223.9h18.3l90.5 81.9c27.4 22.3 67.7 18.1 90-9.3l.2-.2 17.9 15.5c15.9 13 39.4 10.5 52.3-5.4l31.4-38.6 5.4 4.4c13.7 11.1 33.9 9.1 45-4.7l9.5-11.7c11.2-13.8 9.1-33.9-4.6-45.1z"],hanukiah:[640,512,[],"f6e6","M232 160c-4.42 0-8 3.58-8 8v120h32V168c0-4.42-3.58-8-8-8h-16zm-64 0c-4.42 0-8 3.58-8 8v120h32V168c0-4.42-3.58-8-8-8h-16zm224 0c-4.42 0-8 3.58-8 8v120h32V168c0-4.42-3.58-8-8-8h-16zm64 0c-4.42 0-8 3.58-8 8v120h32V168c0-4.42-3.58-8-8-8h-16zm88 8c0-4.42-3.58-8-8-8h-16c-4.42 0-8 3.58-8 8v120h32V168zm-440-8c-4.42 0-8 3.58-8 8v120h32V168c0-4.42-3.58-8-8-8h-16zm520 0h-32c-8.84 0-16 7.16-16 16v112c0 17.67-14.33 32-32 32H352V128c0-8.84-7.16-16-16-16h-32c-8.84 0-16 7.16-16 16v192H96c-17.67 0-32-14.33-32-32V176c0-8.84-7.16-16-16-16H16c-8.84 0-16 7.16-16 16v112c0 53.02 42.98 96 96 96h192v64H112c-8.84 0-16 7.16-16 16v32c0 8.84 7.16 16 16 16h416c8.84 0 16-7.16 16-16v-32c0-8.84-7.16-16-16-16H352v-64h192c53.02 0 96-42.98 96-96V176c0-8.84-7.16-16-16-16zm-16-32c13.25 0 24-11.94 24-26.67S608 48 608 48s-24 38.61-24 53.33S594.75 128 608 128zm-576 0c13.25 0 24-11.94 24-26.67S32 48 32 48 8 86.61 8 101.33 18.75 128 32 128zm288-48c13.25 0 24-11.94 24-26.67S320 0 320 0s-24 38.61-24 53.33S306.75 80 320 80zm-208 48c13.25 0 24-11.94 24-26.67S112 48 112 48s-24 38.61-24 53.33S98.75 128 112 128zm64 0c13.25 0 24-11.94 24-26.67S176 48 176 48s-24 38.61-24 53.33S162.75 128 176 128zm64 0c13.25 0 24-11.94 24-26.67S240 48 240 48s-24 38.61-24 53.33S226.75 128 240 128zm160 0c13.25 0 24-11.94 24-26.67S400 48 400 48s-24 38.61-24 53.33S386.75 128 400 128zm64 0c13.25 0 24-11.94 24-26.67S464 48 464 48s-24 38.61-24 53.33S450.75 128 464 128zm64 0c13.25 0 24-11.94 24-26.67S528 48 528 48s-24 38.61-24 53.33S514.75 128 528 128z"],"hard-hat":[512,512,[],"f807","M480 288c0-80.25-49.28-148.92-119.19-177.62L320 192V80a16 16 0 0 0-16-16h-96a16 16 0 0 0-16 16v112l-40.81-81.62C81.28 139.08 32 207.75 32 288v64h448zm16 96H16a16 16 0 0 0-16 16v32a16 16 0 0 0 16 16h480a16 16 0 0 0 16-16v-32a16 16 0 0 0-16-16z"],hashtag:[448,512,[],"f292","M440.667 182.109l7.143-40c1.313-7.355-4.342-14.109-11.813-14.109h-74.81l14.623-81.891C377.123 38.754 371.468 32 363.997 32h-40.632a12 12 0 0 0-11.813 9.891L296.175 128H197.54l14.623-81.891C213.477 38.754 207.822 32 200.35 32h-40.632a12 12 0 0 0-11.813 9.891L132.528 128H53.432a12 12 0 0 0-11.813 9.891l-7.143 40C33.163 185.246 38.818 192 46.289 192h74.81L98.242 320H19.146a12 12 0 0 0-11.813 9.891l-7.143 40C-1.123 377.246 4.532 384 12.003 384h74.81L72.19 465.891C70.877 473.246 76.532 480 84.003 480h40.632a12 12 0 0 0 11.813-9.891L151.826 384h98.634l-14.623 81.891C234.523 473.246 240.178 480 247.65 480h40.632a12 12 0 0 0 11.813-9.891L315.472 384h79.096a12 12 0 0 0 11.813-9.891l7.143-40c1.313-7.355-4.342-14.109-11.813-14.109h-74.81l22.857-128h79.096a12 12 0 0 0 11.813-9.891zM261.889 320h-98.634l22.857-128h98.634l-22.857 128z"],"hat-cowboy":[640,512,[],"f8c0","M490 296.9C480.51 239.51 450.51 64 392.3 64c-14 0-26.49 5.93-37 14a58.21 58.21 0 0 1-70.58 0c-10.51-8-23-14-37-14-58.2 0-88.2 175.47-97.71 232.88C188.81 309.47 243.73 320 320 320s131.23-10.51 170-23.1zm142.9-37.18a16 16 0 0 0-19.75 1.5c-1 .9-101.27 90.78-293.16 90.78-190.82 0-292.22-89.94-293.24-90.84A16 16 0 0 0 1 278.53C1.73 280.55 78.32 480 320 480s318.27-199.45 319-201.47a16 16 0 0 0-6.09-18.81z"],"hat-cowboy-side":[640,512,[],"f8c1","M260.8 291.06c-28.63-22.94-62-35.06-96.4-35.06C87 256 21.47 318.72 1.43 412.06c-3.55 16.6-.43 33.83 8.57 47.3C18.75 472.47 31.83 480 45.88 480H592c-103.21 0-155-37.07-233.19-104.46zm234.65-18.29L468.4 116.2A64 64 0 0 0 392 64.41L200.85 105a64 64 0 0 0-50.35 55.79L143.61 226c6.9-.83 13.7-2 20.79-2 41.79 0 82 14.55 117.29 42.82l98 84.48C450.76 412.54 494.9 448 592 448a48 48 0 0 0 48-48c0-25.39-29.6-119.33-144.55-127.23z"],"hat-wizard":[512,512,[],"f6e8","M496 448H16c-8.84 0-16 7.16-16 16v32c0 8.84 7.16 16 16 16h480c8.84 0 16-7.16 16-16v-32c0-8.84-7.16-16-16-16zm-304-64l-64-32 64-32 32-64 32 64 64 32-64 32-16 32h208l-86.41-201.63a63.955 63.955 0 0 1-1.89-45.45L416 0 228.42 107.19a127.989 127.989 0 0 0-53.46 59.15L64 416h144l-16-32zm64-224l16-32 16 32 32 16-32 16-16 32-16-32-32-16 32-16z"],hdd:[576,512,[],"f0a0","M576 304v96c0 26.51-21.49 48-48 48H48c-26.51 0-48-21.49-48-48v-96c0-26.51 21.49-48 48-48h480c26.51 0 48 21.49 48 48zm-48-80a79.557 79.557 0 0 1 30.777 6.165L462.25 85.374A48.003 48.003 0 0 0 422.311 64H153.689a48 48 0 0 0-39.938 21.374L17.223 230.165A79.557 79.557 0 0 1 48 224h480zm-48 96c-17.673 0-32 14.327-32 32s14.327 32 32 32 32-14.327 32-32-14.327-32-32-32zm-96 0c-17.673 0-32 14.327-32 32s14.327 32 32 32 32-14.327 32-32-14.327-32-32-32z"],heading:[512,512,[],"f1dc","M448 96v320h32a16 16 0 0 1 16 16v32a16 16 0 0 1-16 16H320a16 16 0 0 1-16-16v-32a16 16 0 0 1 16-16h32V288H160v128h32a16 16 0 0 1 16 16v32a16 16 0 0 1-16 16H32a16 16 0 0 1-16-16v-32a16 16 0 0 1 16-16h32V96H32a16 16 0 0 1-16-16V48a16 16 0 0 1 16-16h160a16 16 0 0 1 16 16v32a16 16 0 0 1-16 16h-32v128h192V96h-32a16 16 0 0 1-16-16V48a16 16 0 0 1 16-16h160a16 16 0 0 1 16 16v32a16 16 0 0 1-16 16z"],headphones:[512,512,[],"f025","M256 32C114.52 32 0 146.496 0 288v48a32 32 0 0 0 17.689 28.622l14.383 7.191C34.083 431.903 83.421 480 144 480h24c13.255 0 24-10.745 24-24V280c0-13.255-10.745-24-24-24h-24c-31.342 0-59.671 12.879-80 33.627V288c0-105.869 86.131-192 192-192s192 86.131 192 192v1.627C427.671 268.879 399.342 256 368 256h-24c-13.255 0-24 10.745-24 24v176c0 13.255 10.745 24 24 24h24c60.579 0 109.917-48.098 111.928-108.187l14.382-7.191A32 32 0 0 0 512 336v-48c0-141.479-114.496-256-256-256z"],"headphones-alt":[512,512,[],"f58f","M160 288h-16c-35.35 0-64 28.7-64 64.12v63.76c0 35.41 28.65 64.12 64 64.12h16c17.67 0 32-14.36 32-32.06V320.06c0-17.71-14.33-32.06-32-32.06zm208 0h-16c-17.67 0-32 14.35-32 32.06v127.88c0 17.7 14.33 32.06 32 32.06h16c35.35 0 64-28.71 64-64.12v-63.76c0-35.41-28.65-64.12-64-64.12zM256 32C112.91 32 4.57 151.13 0 288v112c0 8.84 7.16 16 16 16h16c8.84 0 16-7.16 16-16V288c0-114.67 93.33-207.8 208-207.82 114.67.02 208 93.15 208 207.82v112c0 8.84 7.16 16 16 16h16c8.84 0 16-7.16 16-16V288C507.43 151.13 399.09 32 256 32z"],headset:[512,512,[],"f590","M192 208c0-17.67-14.33-32-32-32h-16c-35.35 0-64 28.65-64 64v48c0 35.35 28.65 64 64 64h16c17.67 0 32-14.33 32-32V208zm176 144c35.35 0 64-28.65 64-64v-48c0-35.35-28.65-64-64-64h-16c-17.67 0-32 14.33-32 32v112c0 17.67 14.33 32 32 32h16zM256 0C113.18 0 4.58 118.83 0 256v16c0 8.84 7.16 16 16 16h16c8.84 0 16-7.16 16-16v-16c0-114.69 93.31-208 208-208s208 93.31 208 208h-.12c.08 2.43.12 165.72.12 165.72 0 23.35-18.93 42.28-42.28 42.28H320c0-26.51-21.49-48-48-48h-32c-26.51 0-48 21.49-48 48s21.49 48 48 48h181.72c49.86 0 90.28-40.42 90.28-90.28V256C507.42 118.83 398.82 0 256 0z"],heart:[512,512,[],"f004","M462.3 62.6C407.5 15.9 326 24.3 275.7 76.2L256 96.5l-19.7-20.3C186.1 24.3 104.5 15.9 49.7 62.6c-62.8 53.6-66.1 149.8-9.9 207.9l193.5 199.8c12.5 12.9 32.8 12.9 45.3 0l193.5-199.8c56.3-58.1 53-154.3-9.8-207.9z"],"heart-broken":[512,512,[],"f7a9","M473.7 73.8l-2.4-2.5c-46-47-118-51.7-169.6-14.8L336 159.9l-96 64 48 128-144-144 96-64-28.6-86.5C159.7 19.6 87 24 40.7 71.4l-2.4 2.4C-10.4 123.6-12.5 202.9 31 256l212.1 218.6c7.1 7.3 18.6 7.3 25.7 0L481 255.9c43.5-53 41.4-132.3-7.3-182.1z"],heartbeat:[512,512,[],"f21e","M320.2 243.8l-49.7 99.4c-6 12.1-23.4 11.7-28.9-.6l-56.9-126.3-30 71.7H60.6l182.5 186.5c7.1 7.3 18.6 7.3 25.7 0L451.4 288H342.3l-22.1-44.2zM473.7 73.9l-2.4-2.5c-51.5-52.6-135.8-52.6-187.4 0L256 100l-27.9-28.5c-51.5-52.7-135.9-52.7-187.4 0l-2.4 2.4C-10.4 123.7-12.5 203 31 256h102.4l35.9-86.2c5.4-12.9 23.6-13.2 29.4-.4l58.2 129.3 49-97.9c5.9-11.8 22.7-11.8 28.6 0l27.6 55.2H481c43.5-53 41.4-132.3-7.3-182.1z"],helicopter:[640,512,[],"f533","M304 384h272c17.67 0 32-14.33 32-32 0-123.71-100.29-224-224-224V64h176c8.84 0 16-7.16 16-16V16c0-8.84-7.16-16-16-16H144c-8.84 0-16 7.16-16 16v32c0 8.84 7.16 16 16 16h176v64H112L68.8 70.4C65.78 66.37 61.03 64 56 64H16.01C5.6 64-2.04 73.78.49 83.88L32 192l160 64 86.4 115.2A31.992 31.992 0 0 0 304 384zm112-188.49C478.55 208.3 528.03 257.44 540.79 320H416V195.51zm219.37 263.3l-22.15-22.2c-6.25-6.26-16.24-6.1-22.64.01-7.09 6.77-13.84 11.25-24.64 11.25H240c-8.84 0-16 7.18-16 16.03v32.06c0 8.85 7.16 16.03 16 16.03h325.94c14.88 0 35.3-.47 68.45-29.52 7.02-6.14 7.57-17.05.98-23.66z"],highlighter:[544,512,[],"f591","M0 479.98L99.92 512l35.45-35.45-67.04-67.04L0 479.98zm124.61-240.01a36.592 36.592 0 0 0-10.79 38.1l13.05 42.83-50.93 50.94 96.23 96.23 50.86-50.86 42.74 13.08c13.73 4.2 28.65-.01 38.15-10.78l35.55-41.64-173.34-173.34-41.52 35.44zm403.31-160.7l-63.2-63.2c-20.49-20.49-53.38-21.52-75.12-2.35L190.55 183.68l169.77 169.78L530.27 154.4c19.18-21.74 18.15-54.63-2.35-75.13z"],hiking:[384,512,[],"f6ec","M80.95 472.23c-4.28 17.16 6.14 34.53 23.28 38.81 2.61.66 5.22.95 7.8.95 14.33 0 27.37-9.7 31.02-24.23l25.24-100.97-52.78-52.78-34.56 138.22zm14.89-196.12L137 117c2.19-8.42-3.14-16.95-11.92-19.06-43.88-10.52-88.35 15.07-99.32 57.17L.49 253.24c-2.19 8.42 3.14 16.95 11.92 19.06l63.56 15.25c8.79 2.1 17.68-3.02 19.87-11.44zM368 160h-16c-8.84 0-16 7.16-16 16v16h-34.75l-46.78-46.78C243.38 134.11 228.61 128 212.91 128c-27.02 0-50.47 18.3-57.03 44.52l-26.92 107.72a32.012 32.012 0 0 0 8.42 30.39L224 397.25V480c0 17.67 14.33 32 32 32s32-14.33 32-32v-82.75c0-17.09-6.66-33.16-18.75-45.25l-46.82-46.82c.15-.5.49-.89.62-1.41l19.89-79.57 22.43 22.43c6 6 14.14 9.38 22.62 9.38h48v240c0 8.84 7.16 16 16 16h16c8.84 0 16-7.16 16-16V176c.01-8.84-7.15-16-15.99-16zM240 96c26.51 0 48-21.49 48-48S266.51 0 240 0s-48 21.49-48 48 21.49 48 48 48z"],hippo:[640,512,[],"f6ed","M581.12 96.2c-27.67-.15-52.5 17.58-76.6 26.62C489.98 88.27 455.83 64 416 64c-11.28 0-21.95 2.3-32 5.88V56c0-13.26-10.75-24-24-24h-16c-13.25 0-24 10.74-24 24v48.98C286.01 79.58 241.24 64 192 64 85.96 64 0 135.64 0 224v240c0 8.84 7.16 16 16 16h64c8.84 0 16-7.16 16-16v-70.79C128.35 407.57 166.72 416 208 416s79.65-8.43 112-22.79V464c0 8.84 7.16 16 16 16h64c8.84 0 16-7.16 16-16V288h128v32c0 8.84 7.16 16 16 16h32c8.84 0 16-7.16 16-16v-32c17.67 0 32-14.33 32-32v-92.02c0-34.09-24.79-67.59-58.88-67.78zM448 176c-8.84 0-16-7.16-16-16s7.16-16 16-16 16 7.16 16 16-7.16 16-16 16z"],history:[512,512,[],"f1da","M504 255.531c.253 136.64-111.18 248.372-247.82 248.468-59.015.042-113.223-20.53-155.822-54.911-11.077-8.94-11.905-25.541-1.839-35.607l11.267-11.267c8.609-8.609 22.353-9.551 31.891-1.984C173.062 425.135 212.781 440 256 440c101.705 0 184-82.311 184-184 0-101.705-82.311-184-184-184-48.814 0-93.149 18.969-126.068 49.932l50.754 50.754c10.08 10.08 2.941 27.314-11.313 27.314H24c-8.837 0-16-7.163-16-16V38.627c0-14.254 17.234-21.393 27.314-11.314l49.372 49.372C129.209 34.136 189.552 8 256 8c136.81 0 247.747 110.78 248 247.531zm-180.912 78.784l9.823-12.63c8.138-10.463 6.253-25.542-4.21-33.679L288 256.349V152c0-13.255-10.745-24-24-24h-16c-13.255 0-24 10.745-24 24v135.651l65.409 50.874c10.463 8.137 25.541 6.253 33.679-4.21z"],"hockey-puck":[512,512,[],"f453","M0 160c0-53 114.6-96 256-96s256 43 256 96-114.6 96-256 96S0 213 0 160zm0 82.2V352c0 53 114.6 96 256 96s256-43 256-96V242.2c-113.4 82.3-398.5 82.4-512 0z"],"holly-berry":[448,512,[],"f7aa","M144 192c26.5 0 48-21.5 48-48s-21.5-48-48-48-48 21.5-48 48 21.5 48 48 48zm112-48c0 26.5 21.5 48 48 48s48-21.5 48-48-21.5-48-48-48-48 21.5-48 48zm-32-48c26.5 0 48-21.5 48-48S250.5 0 224 0s-48 21.5-48 48 21.5 48 48 48zm-16.2 139.1c.1-12.4-13.1-20.1-23.8-13.7-34.3 20.3-71.4 32.7-108.7 36.2-9.7.9-15.6 11.3-11.6 20.2 6.2 13.9 11.1 28.6 14.7 43.8 3.6 15.2-5.3 30.6-20.2 35.1-14.9 4.5-30.1 7.6-45.3 9.1-9.7 1-15.7 11.3-11.7 20.2 15 32.8 22.9 69.5 23 107.7.1 14.4 15.2 23.1 27.6 16 33.2-19 68.9-30.5 104.8-33.9 9.7-.9 15.6-11.3 11.6-20.2-6.2-13.9-11.1-28.6-14.7-43.8-3.6-15.2 5.3-30.6 20.2-35.1 14.9-4.5 30.1-7.6 45.3-9.1 9.7-1 15.7-11.3 11.7-20.2-15.5-34.2-23.3-72.5-22.9-112.3zM435 365.6c-15.2-1.6-30.3-4.7-45.3-9.1-14.9-4.5-23.8-19.9-20.2-35.1 3.6-15.2 8.5-29.8 14.7-43.8 4-8.9-1.9-19.3-11.6-20.2-37.3-3.5-74.4-15.9-108.7-36.2-10.7-6.3-23.9 1.4-23.8 13.7 0 1.6-.2 3.2-.2 4.9.2 33.3 7 65.7 19.9 94 5.7 12.4 5.2 26.6-.6 38.9 4.9 1.2 9.9 2.2 14.8 3.7 14.9 4.5 23.8 19.9 20.2 35.1-3.6 15.2-8.5 29.8-14.7 43.8-4 8.9 1.9 19.3 11.6 20.2 35.9 3.4 71.6 14.9 104.8 33.9 12.5 7.1 27.6-1.6 27.6-16 .2-38.2 8-75 23-107.7 4.3-8.7-1.8-19.1-11.5-20.1z"],home:[576,512,[],"f015","M280.37 148.26L96 300.11V464a16 16 0 0 0 16 16l112.06-.29a16 16 0 0 0 15.92-16V368a16 16 0 0 1 16-16h64a16 16 0 0 1 16 16v95.64a16 16 0 0 0 16 16.05L464 480a16 16 0 0 0 16-16V300L295.67 148.26a12.19 12.19 0 0 0-15.3 0zM571.6 251.47L488 182.56V44.05a12 12 0 0 0-12-12h-56a12 12 0 0 0-12 12v72.61L318.47 43a48 48 0 0 0-61 0L4.34 251.47a12 12 0 0 0-1.6 16.9l25.5 31A12 12 0 0 0 45.15 301l235.22-193.74a12.19 12.19 0 0 1 15.3 0L530.9 301a12 12 0 0 0 16.9-1.6l25.5-31a12 12 0 0 0-1.7-16.93z"],horse:[576,512,[],"f6f0","M575.92 76.6c-.01-8.13-3.02-15.87-8.58-21.8-3.78-4.03-8.58-9.12-13.69-14.5 11.06-6.84 19.5-17.49 22.18-30.66C576.85 4.68 572.96 0 567.9 0H447.92c-70.69 0-128 57.31-128 128H160c-28.84 0-54.4 12.98-72 33.11V160c-48.53 0-88 39.47-88 88v56c0 8.84 7.16 16 16 16h16c8.84 0 16-7.16 16-16v-56c0-13.22 6.87-24.39 16.78-31.68-.21 2.58-.78 5.05-.78 7.68 0 27.64 11.84 52.36 30.54 69.88l-25.72 68.6a63.945 63.945 0 0 0-2.16 37.99l24.85 99.41A15.982 15.982 0 0 0 107.02 512h65.96c10.41 0 18.05-9.78 15.52-19.88l-26.31-105.26 23.84-63.59L320 345.6V496c0 8.84 7.16 16 16 16h64c8.84 0 16-7.16 16-16V318.22c19.74-20.19 32-47.75 32-78.22 0-.22-.07-.42-.08-.64V136.89l16 7.11 18.9 37.7c7.45 14.87 25.05 21.55 40.49 15.37l32.55-13.02a31.997 31.997 0 0 0 20.12-29.74l-.06-77.71zm-64 19.4c-8.84 0-16-7.16-16-16s7.16-16 16-16 16 7.16 16 16-7.16 16-16 16z"],"horse-head":[512,512,[],"f7ab","M509.8 332.5l-69.9-164.3c-14.9-41.2-50.4-71-93-79.2 18-10.6 46.3-35.9 34.2-82.3-1.3-5-7.1-7.9-12-6.1L166.9 76.3C35.9 123.4 0 238.9 0 398.8V480c0 17.7 14.3 32 32 32h236.2c23.8 0 39.3-25 28.6-46.3L256 384v-.7c-45.6-3.5-84.6-30.7-104.3-69.6-1.6-3.1-.9-6.9 1.6-9.3l12.1-12.1c3.9-3.9 10.6-2.7 12.9 2.4 14.8 33.7 48.2 57.4 87.4 57.4 17.2 0 33-5.1 46.8-13.2l46 63.9c6 8.4 15.7 13.3 26 13.3h50.3c8.5 0 16.6-3.4 22.6-9.4l45.3-39.8c8.9-9.1 11.7-22.6 7.1-34.4zM328 224c-13.3 0-24-10.7-24-24s10.7-24 24-24 24 10.7 24 24-10.7 24-24 24z"],hospital:[448,512,[],"f0f8","M448 492v20H0v-20c0-6.627 5.373-12 12-12h20V120c0-13.255 10.745-24 24-24h88V24c0-13.255 10.745-24 24-24h112c13.255 0 24 10.745 24 24v72h88c13.255 0 24 10.745 24 24v360h20c6.627 0 12 5.373 12 12zM308 192h-40c-6.627 0-12 5.373-12 12v40c0 6.627 5.373 12 12 12h40c6.627 0 12-5.373 12-12v-40c0-6.627-5.373-12-12-12zm-168 64h40c6.627 0 12-5.373 12-12v-40c0-6.627-5.373-12-12-12h-40c-6.627 0-12 5.373-12 12v40c0 6.627 5.373 12 12 12zm104 128h-40c-6.627 0-12 5.373-12 12v84h64v-84c0-6.627-5.373-12-12-12zm64-96h-40c-6.627 0-12 5.373-12 12v40c0 6.627 5.373 12 12 12h40c6.627 0 12-5.373 12-12v-40c0-6.627-5.373-12-12-12zm-116 12c0-6.627-5.373-12-12-12h-40c-6.627 0-12 5.373-12 12v40c0 6.627 5.373 12 12 12h40c6.627 0 12-5.373 12-12v-40zM182 96h26v26a6 6 0 0 0 6 6h20a6 6 0 0 0 6-6V96h26a6 6 0 0 0 6-6V70a6 6 0 0 0-6-6h-26V38a6 6 0 0 0-6-6h-20a6 6 0 0 0-6 6v26h-26a6 6 0 0 0-6 6v20a6 6 0 0 0 6 6z"],"hospital-alt":[576,512,[],"f47d","M544 96H416V32c0-17.7-14.3-32-32-32H192c-17.7 0-32 14.3-32 32v64H32c-17.7 0-32 14.3-32 32v368c0 8.8 7.2 16 16 16h544c8.8 0 16-7.2 16-16V128c0-17.7-14.3-32-32-32zM160 436c0 6.6-5.4 12-12 12h-40c-6.6 0-12-5.4-12-12v-40c0-6.6 5.4-12 12-12h40c6.6 0 12 5.4 12 12v40zm0-128c0 6.6-5.4 12-12 12h-40c-6.6 0-12-5.4-12-12v-40c0-6.6 5.4-12 12-12h40c6.6 0 12 5.4 12 12v40zm160 128c0 6.6-5.4 12-12 12h-40c-6.6 0-12-5.4-12-12v-40c0-6.6 5.4-12 12-12h40c6.6 0 12 5.4 12 12v40zm0-128c0 6.6-5.4 12-12 12h-40c-6.6 0-12-5.4-12-12v-40c0-6.6 5.4-12 12-12h40c6.6 0 12 5.4 12 12v40zm16-170c0 3.3-2.7 6-6 6h-26v26c0 3.3-2.7 6-6 6h-20c-3.3 0-6-2.7-6-6v-26h-26c-3.3 0-6-2.7-6-6v-20c0-3.3 2.7-6 6-6h26V86c0-3.3 2.7-6 6-6h20c3.3 0 6 2.7 6 6v26h26c3.3 0 6 2.7 6 6v20zm144 298c0 6.6-5.4 12-12 12h-40c-6.6 0-12-5.4-12-12v-40c0-6.6 5.4-12 12-12h40c6.6 0 12 5.4 12 12v40zm0-128c0 6.6-5.4 12-12 12h-40c-6.6 0-12-5.4-12-12v-40c0-6.6 5.4-12 12-12h40c6.6 0 12 5.4 12 12v40z"],"hospital-symbol":[512,512,[],"f47e","M256 0C114.6 0 0 114.6 0 256s114.6 256 256 256 256-114.6 256-256S397.4 0 256 0zm112 376c0 4.4-3.6 8-8 8h-48c-4.4 0-8-3.6-8-8v-88h-96v88c0 4.4-3.6 8-8 8h-48c-4.4 0-8-3.6-8-8V136c0-4.4 3.6-8 8-8h48c4.4 0 8 3.6 8 8v88h96v-88c0-4.4 3.6-8 8-8h48c4.4 0 8 3.6 8 8v240z"],"hot-tub":[512,512,[],"f593","M414.21 177.65c1.02 8.21 7.75 14.35 15.75 14.35h16.12c9.51 0 17.08-8.57 16-18.35-4.34-39.11-22.4-74.53-50.13-97.16-17.37-14.17-28.82-36.75-31.98-62.15C378.96 6.14 372.22 0 364.23 0h-16.12c-9.51 0-17.09 8.57-16 18.35 4.34 39.11 22.4 74.53 50.13 97.16 17.36 14.17 28.82 36.75 31.97 62.14zm-108 0c1.02 8.21 7.75 14.35 15.75 14.35h16.12c9.51 0 17.08-8.57 16-18.35-4.34-39.11-22.4-74.53-50.13-97.16-17.37-14.17-28.82-36.75-31.98-62.15C270.96 6.14 264.22 0 256.23 0h-16.12c-9.51 0-17.09 8.57-16 18.35 4.34 39.11 22.4 74.53 50.13 97.16 17.36 14.17 28.82 36.75 31.97 62.14zM480 256H256l-110.93-83.2a63.99 63.99 0 0 0-38.4-12.8H64c-35.35 0-64 28.65-64 64v224c0 35.35 28.65 64 64 64h384c35.35 0 64-28.65 64-64V288c0-17.67-14.33-32-32-32zM128 440c0 4.42-3.58 8-8 8h-16c-4.42 0-8-3.58-8-8V328c0-4.42 3.58-8 8-8h16c4.42 0 8 3.58 8 8v112zm96 0c0 4.42-3.58 8-8 8h-16c-4.42 0-8-3.58-8-8V328c0-4.42 3.58-8 8-8h16c4.42 0 8 3.58 8 8v112zm96 0c0 4.42-3.58 8-8 8h-16c-4.42 0-8-3.58-8-8V328c0-4.42 3.58-8 8-8h16c4.42 0 8 3.58 8 8v112zm96 0c0 4.42-3.58 8-8 8h-16c-4.42 0-8-3.58-8-8V328c0-4.42 3.58-8 8-8h16c4.42 0 8 3.58 8 8v112zM64 128c35.35 0 64-28.65 64-64S99.35 0 64 0 0 28.65 0 64s28.65 64 64 64z"],hotdog:[512,512,[],"f80f","M488.56 23.44a80 80 0 0 0-113.12 0l-352 352a80 80 0 1 0 113.12 113.12l352-352a80 80 0 0 0 0-113.12zm-49.93 95.19c-19.6 19.59-37.52 22.67-51.93 25.14C373.76 146 364.4 147.6 352 160s-14 21.76-16.23 34.71c-2.48 14.4-5.55 32.33-25.15 51.92s-37.52 22.67-51.92 25.15C245.75 274 236.4 275.6 224 288s-14 21.75-16.23 34.7c-2.47 14.4-5.54 32.33-25.14 51.92s-37.53 22.68-51.93 25.15C117.76 402 108.4 403.6 96 416a16 16 0 0 1-22.63-22.63c19.6-19.59 37.52-22.67 51.92-25.14 13-2.22 22.3-3.82 34.71-16.23s14-21.75 16.22-34.7c2.48-14.4 5.55-32.33 25.15-51.92s37.52-22.67 51.92-25.14c13-2.22 22.3-3.83 34.7-16.23s14-21.76 16.24-34.71c2.47-14.4 5.54-32.33 25.14-51.92s37.52-22.68 51.92-25.15C394.24 110 403.59 108.41 416 96a16 16 0 0 1 22.63 22.63zM31.44 322.18L322.18 31.44l-11.54-11.55c-25-25-63.85-26.66-86.79-3.72L16.17 223.85c-22.94 22.94-21.27 61.79 3.72 86.78zm449.12-132.36L189.82 480.56l11.54 11.55c25 25 63.85 26.66 86.79 3.72l207.68-207.68c22.94-22.94 21.27-61.79-3.72-86.79z"],hotel:[576,512,[],"f594","M560 64c8.84 0 16-7.16 16-16V16c0-8.84-7.16-16-16-16H16C7.16 0 0 7.16 0 16v32c0 8.84 7.16 16 16 16h15.98v384H16c-8.84 0-16 7.16-16 16v32c0 8.84 7.16 16 16 16h240v-80c0-8.8 7.2-16 16-16h32c8.8 0 16 7.2 16 16v80h240c8.84 0 16-7.16 16-16v-32c0-8.84-7.16-16-16-16h-16V64h16zm-304 44.8c0-6.4 6.4-12.8 12.8-12.8h38.4c6.4 0 12.8 6.4 12.8 12.8v38.4c0 6.4-6.4 12.8-12.8 12.8h-38.4c-6.4 0-12.8-6.4-12.8-12.8v-38.4zm0 96c0-6.4 6.4-12.8 12.8-12.8h38.4c6.4 0 12.8 6.4 12.8 12.8v38.4c0 6.4-6.4 12.8-12.8 12.8h-38.4c-6.4 0-12.8-6.4-12.8-12.8v-38.4zm-128-96c0-6.4 6.4-12.8 12.8-12.8h38.4c6.4 0 12.8 6.4 12.8 12.8v38.4c0 6.4-6.4 12.8-12.8 12.8h-38.4c-6.4 0-12.8-6.4-12.8-12.8v-38.4zM179.2 256h-38.4c-6.4 0-12.8-6.4-12.8-12.8v-38.4c0-6.4 6.4-12.8 12.8-12.8h38.4c6.4 0 12.8 6.4 12.8 12.8v38.4c0 6.4-6.4 12.8-12.8 12.8zM192 384c0-53.02 42.98-96 96-96s96 42.98 96 96H192zm256-140.8c0 6.4-6.4 12.8-12.8 12.8h-38.4c-6.4 0-12.8-6.4-12.8-12.8v-38.4c0-6.4 6.4-12.8 12.8-12.8h38.4c6.4 0 12.8 6.4 12.8 12.8v38.4zm0-96c0 6.4-6.4 12.8-12.8 12.8h-38.4c-6.4 0-12.8-6.4-12.8-12.8v-38.4c0-6.4 6.4-12.8 12.8-12.8h38.4c6.4 0 12.8 6.4 12.8 12.8v38.4z"],hourglass:[384,512,[],"f254","M360 64c13.255 0 24-10.745 24-24V24c0-13.255-10.745-24-24-24H24C10.745 0 0 10.745 0 24v16c0 13.255 10.745 24 24 24 0 90.965 51.016 167.734 120.842 192C75.016 280.266 24 357.035 24 448c-13.255 0-24 10.745-24 24v16c0 13.255 10.745 24 24 24h336c13.255 0 24-10.745 24-24v-16c0-13.255-10.745-24-24-24 0-90.965-51.016-167.734-120.842-192C308.984 231.734 360 154.965 360 64z"],"hourglass-end":[384,512,[],"f253","M360 64c13.255 0 24-10.745 24-24V24c0-13.255-10.745-24-24-24H24C10.745 0 0 10.745 0 24v16c0 13.255 10.745 24 24 24 0 90.965 51.016 167.734 120.842 192C75.016 280.266 24 357.035 24 448c-13.255 0-24 10.745-24 24v16c0 13.255 10.745 24 24 24h336c13.255 0 24-10.745 24-24v-16c0-13.255-10.745-24-24-24 0-90.965-51.016-167.734-120.842-192C308.984 231.734 360 154.965 360 64zM192 208c-57.787 0-104-66.518-104-144h208c0 77.945-46.51 144-104 144z"],"hourglass-half":[384,512,[],"f252","M360 0H24C10.745 0 0 10.745 0 24v16c0 13.255 10.745 24 24 24 0 90.965 51.016 167.734 120.842 192C75.016 280.266 24 357.035 24 448c-13.255 0-24 10.745-24 24v16c0 13.255 10.745 24 24 24h336c13.255 0 24-10.745 24-24v-16c0-13.255-10.745-24-24-24 0-90.965-51.016-167.734-120.842-192C308.984 231.734 360 154.965 360 64c13.255 0 24-10.745 24-24V24c0-13.255-10.745-24-24-24zm-75.078 384H99.08c17.059-46.797 52.096-80 92.92-80 40.821 0 75.862 33.196 92.922 80zm.019-256H99.078C91.988 108.548 88 86.748 88 64h208c0 22.805-3.987 44.587-11.059 64z"],"hourglass-start":[384,512,[],"f251","M360 0H24C10.745 0 0 10.745 0 24v16c0 13.255 10.745 24 24 24 0 90.965 51.016 167.734 120.842 192C75.016 280.266 24 357.035 24 448c-13.255 0-24 10.745-24 24v16c0 13.255 10.745 24 24 24h336c13.255 0 24-10.745 24-24v-16c0-13.255-10.745-24-24-24 0-90.965-51.016-167.734-120.842-192C308.984 231.734 360 154.965 360 64c13.255 0 24-10.745 24-24V24c0-13.255-10.745-24-24-24zm-64 448H88c0-77.458 46.204-144 104-144 57.786 0 104 66.517 104 144z"],"house-damage":[576,512,[],"f6f1","M288 114.96L69.47 307.71c-1.62 1.46-3.69 2.14-5.47 3.35V496c0 8.84 7.16 16 16 16h149.23L192 439.19l104.11-64-60.16-119.22L384 392.75l-104.11 64L319.81 512H496c8.84 0 16-7.16 16-16V311.1c-1.7-1.16-3.72-1.82-5.26-3.2L288 114.96zm282.69 121.32L512 184.45V48c0-8.84-7.16-16-16-16h-64c-8.84 0-16 7.16-16 16v51.69L314.75 10.31C307.12 3.45 297.56.01 288 0s-19.1 3.41-26.7 10.27L5.31 236.28c-6.57 5.91-7.12 16.02-1.21 22.6l21.4 23.82c5.9 6.57 16.02 7.12 22.6 1.21L277.42 81.63c6.05-5.33 15.12-5.33 21.17 0L527.91 283.9c6.57 5.9 16.69 5.36 22.6-1.21l21.4-23.82c5.9-6.57 5.36-16.69-1.22-22.59z"],hryvnia:[384,512,[],"f6f2","M368 240c8.84 0 16-7.16 16-16v-32c0-8.84-7.16-16-16-16h-41.86c13.41-28.63 13.74-63.33-4.13-94.05C303.34 49.84 267.1 32 229.96 32h-78.82c-24.32 0-47.86 8.53-66.54 24.09L72.83 65.9c-10.18 8.49-11.56 23.62-3.07 33.8l20.49 24.59c8.49 10.19 23.62 11.56 33.81 3.07l11.73-9.78c4.32-3.6 9.77-5.57 15.39-5.57h83.62c11.69 0 21.2 9.52 21.2 21.2 0 5.91-2.48 11.58-6.81 15.58L219.7 176H16c-8.84 0-16 7.16-16 16v32c0 8.84 7.16 16 16 16h134.37l-34.67 32H16c-8.84 0-16 7.16-16 16v32c0 8.84 7.16 16 16 16h41.86c-13.41 28.63-13.74 63.33 4.13 94.05C80.66 462.15 116.9 480 154.04 480h78.82c24.32 0 47.86-8.53 66.54-24.09l11.77-9.81c10.18-8.49 11.56-23.62 3.07-33.8l-20.49-24.59c-8.49-10.19-23.62-11.56-33.81-3.07l-11.75 9.8a23.992 23.992 0 0 1-15.36 5.56H149.2c-11.69 0-21.2-9.52-21.2-21.2 0-5.91 2.48-11.58 6.81-15.58L164.3 336H368c8.84 0 16-7.16 16-16v-32c0-8.84-7.16-16-16-16H233.63l34.67-32H368z"],"i-cursor":[256,512,[],"f246","M256 52.048V12.065C256 5.496 250.726.148 244.158.066 211.621-.344 166.469.011 128 37.959 90.266.736 46.979-.114 11.913.114 5.318.157 0 5.519 0 12.114v39.645c0 6.687 5.458 12.078 12.145 11.998C38.111 63.447 96 67.243 96 112.182V224H60c-6.627 0-12 5.373-12 12v40c0 6.627 5.373 12 12 12h36v112c0 44.932-56.075 48.031-83.95 47.959C5.404 447.942 0 453.306 0 459.952v39.983c0 6.569 5.274 11.917 11.842 11.999 32.537.409 77.689.054 116.158-37.894 37.734 37.223 81.021 38.073 116.087 37.845 6.595-.043 11.913-5.405 11.913-12V460.24c0-6.687-5.458-12.078-12.145-11.998C217.889 448.553 160 444.939 160 400V288h36c6.627 0 12-5.373 12-12v-40c0-6.627-5.373-12-12-12h-36V112.182c0-44.932 56.075-48.213 83.95-48.142 6.646.018 12.05-5.346 12.05-11.992z"],"ice-cream":[448,512,[],"f810","M368 160h-.94a144 144 0 1 0-286.12 0H80a48 48 0 0 0 0 96h288a48 48 0 0 0 0-96zM195.38 493.69a31.52 31.52 0 0 0 57.24 0L352 288H96z"],icicles:[512,512,[],"f7ad","M511.4 37.9C515.1 18.2 500 0 480 0H32C10.6 0-4.8 20.7 1.4 41.2l87.1 273.4c2.5 7.2 12.7 7.2 15.1 0L140 190.5l44.2 187.3c1.9 8.3 13.7 8.3 15.6 0l46.5-196.9 34.1 133.4c2.3 7.6 13 7.6 15.3 0l45.8-172.5 66.7 363.8c1.7 8.6 14 8.6 15.7 0l87.5-467.7z"],icons:[512,512,[],"f86d","M116.65 219.35a15.68 15.68 0 0 0 22.65 0l96.75-99.83c28.15-29 26.5-77.1-4.91-103.88C203.75-7.7 163-3.5 137.86 22.44L128 32.58l-9.85-10.14C93.05-3.5 52.25-7.7 24.86 15.64c-31.41 26.78-33 74.85-5 103.88zm143.92 100.49h-48l-7.08-14.24a27.39 27.39 0 0 0-25.66-17.78h-71.71a27.39 27.39 0 0 0-25.66 17.78l-7 14.24h-48A27.45 27.45 0 0 0 0 347.3v137.25A27.44 27.44 0 0 0 27.43 512h233.14A27.45 27.45 0 0 0 288 484.55V347.3a27.45 27.45 0 0 0-27.43-27.46zM144 468a52 52 0 1 1 52-52 52 52 0 0 1-52 52zm355.4-115.9h-60.58l22.36-50.75c2.1-6.65-3.93-13.21-12.18-13.21h-75.59c-6.3 0-11.66 3.9-12.5 9.1l-16.8 106.93c-1 6.3 4.88 11.89 12.5 11.89h62.31l-24.2 83c-1.89 6.65 4.2 12.9 12.23 12.9a13.26 13.26 0 0 0 10.92-5.25l92.4-138.91c4.88-6.91-1.16-15.7-10.87-15.7zM478.08.33L329.51 23.17C314.87 25.42 304 38.92 304 54.83V161.6a83.25 83.25 0 0 0-16-1.7c-35.35 0-64 21.48-64 48s28.65 48 64 48c35.2 0 63.73-21.32 64-47.66V99.66l112-17.22v47.18a83.25 83.25 0 0 0-16-1.7c-35.35 0-64 21.48-64 48s28.65 48 64 48c35.2 0 63.73-21.32 64-47.66V32c0-19.48-16-34.42-33.92-31.67z"],"id-badge":[384,512,[],"f2c1","M336 0H48C21.5 0 0 21.5 0 48v416c0 26.5 21.5 48 48 48h288c26.5 0 48-21.5 48-48V48c0-26.5-21.5-48-48-48zM144 32h96c8.8 0 16 7.2 16 16s-7.2 16-16 16h-96c-8.8 0-16-7.2-16-16s7.2-16 16-16zm48 128c35.3 0 64 28.7 64 64s-28.7 64-64 64-64-28.7-64-64 28.7-64 64-64zm112 236.8c0 10.6-10 19.2-22.4 19.2H102.4C90 416 80 407.4 80 396.8v-19.2c0-31.8 30.1-57.6 67.2-57.6h5c12.3 5.1 25.7 8 39.8 8s27.6-2.9 39.8-8h5c37.1 0 67.2 25.8 67.2 57.6v19.2z"],"id-card":[576,512,[],"f2c2","M528 32H48C21.5 32 0 53.5 0 80v16h576V80c0-26.5-21.5-48-48-48zM0 432c0 26.5 21.5 48 48 48h480c26.5 0 48-21.5 48-48V128H0v304zm352-232c0-4.4 3.6-8 8-8h144c4.4 0 8 3.6 8 8v16c0 4.4-3.6 8-8 8H360c-4.4 0-8-3.6-8-8v-16zm0 64c0-4.4 3.6-8 8-8h144c4.4 0 8 3.6 8 8v16c0 4.4-3.6 8-8 8H360c-4.4 0-8-3.6-8-8v-16zm0 64c0-4.4 3.6-8 8-8h144c4.4 0 8 3.6 8 8v16c0 4.4-3.6 8-8 8H360c-4.4 0-8-3.6-8-8v-16zM176 192c35.3 0 64 28.7 64 64s-28.7 64-64 64-64-28.7-64-64 28.7-64 64-64zM67.1 396.2C75.5 370.5 99.6 352 128 352h8.2c12.3 5.1 25.7 8 39.8 8s27.6-2.9 39.8-8h8.2c28.4 0 52.5 18.5 60.9 44.2 3.2 9.9-5.2 19.8-15.6 19.8H82.7c-10.4 0-18.8-10-15.6-19.8z"],"id-card-alt":[576,512,[],"f47f","M528 64H384v96H192V64H48C21.5 64 0 85.5 0 112v352c0 26.5 21.5 48 48 48h480c26.5 0 48-21.5 48-48V112c0-26.5-21.5-48-48-48zM288 224c35.3 0 64 28.7 64 64s-28.7 64-64 64-64-28.7-64-64 28.7-64 64-64zm93.3 224H194.7c-10.4 0-18.8-10-15.6-19.8 8.3-25.6 32.4-44.2 60.9-44.2h8.2c12.3 5.1 25.7 8 39.8 8s27.6-2.9 39.8-8h8.2c28.4 0 52.5 18.5 60.9 44.2 3.2 9.8-5.2 19.8-15.6 19.8zM352 32c0-17.7-14.3-32-32-32h-64c-17.7 0-32 14.3-32 32v96h128V32z"],igloo:[576,512,[],"f7ae","M320 33.9c-10.5-1.2-21.2-1.9-32-1.9-99.8 0-187.8 50.8-239.4 128H320V33.9zM96 192H30.3C11.1 230.6 0 274 0 320h96V192zM352 39.4V160h175.4C487.2 99.9 424.8 55.9 352 39.4zM480 320h96c0-46-11.1-89.4-30.3-128H480v128zm-64 64v96h128c17.7 0 32-14.3 32-32v-96H411.5c2.6 10.3 4.5 20.9 4.5 32zm32-192H128v128h49.8c22.2-38.1 63-64 110.2-64s88 25.9 110.2 64H448V192zM0 448c0 17.7 14.3 32 32 32h128v-96c0-11.1 1.9-21.7 4.5-32H0v96zm288-160c-53 0-96 43-96 96v96h192v-96c0-53-43-96-96-96z"],image:[512,512,[],"f03e","M464 448H48c-26.51 0-48-21.49-48-48V112c0-26.51 21.49-48 48-48h416c26.51 0 48 21.49 48 48v288c0 26.51-21.49 48-48 48zM112 120c-30.928 0-56 25.072-56 56s25.072 56 56 56 56-25.072 56-56-25.072-56-56-56zM64 384h384V272l-87.515-87.515c-4.686-4.686-12.284-4.686-16.971 0L208 320l-55.515-55.515c-4.686-4.686-12.284-4.686-16.971 0L64 336v48z"],images:[576,512,[],"f302","M480 416v16c0 26.51-21.49 48-48 48H48c-26.51 0-48-21.49-48-48V176c0-26.51 21.49-48 48-48h16v208c0 44.112 35.888 80 80 80h336zm96-80V80c0-26.51-21.49-48-48-48H144c-26.51 0-48 21.49-48 48v256c0 26.51 21.49 48 48 48h384c26.51 0 48-21.49 48-48zM256 128c0 26.51-21.49 48-48 48s-48-21.49-48-48 21.49-48 48-48 48 21.49 48 48zm-96 144l55.515-55.515c4.686-4.686 12.284-4.686 16.971 0L272 256l135.515-135.515c4.686-4.686 12.284-4.686 16.971 0L512 208v112H160v-48z"],inbox:[576,512,[],"f01c","M567.938 243.908L462.25 85.374A48.003 48.003 0 0 0 422.311 64H153.689a48 48 0 0 0-39.938 21.374L8.062 243.908A47.994 47.994 0 0 0 0 270.533V400c0 26.51 21.49 48 48 48h480c26.51 0 48-21.49 48-48V270.533a47.994 47.994 0 0 0-8.062-26.625zM162.252 128h251.497l85.333 128H376l-32 64H232l-32-64H76.918l85.334-128z"],indent:[448,512,[],"f03c","M27.31 363.3l96-96a16 16 0 0 0 0-22.62l-96-96C17.27 138.66 0 145.78 0 160v192c0 14.31 17.33 21.3 27.31 11.3zM432 416H16a16 16 0 0 0-16 16v32a16 16 0 0 0 16 16h416a16 16 0 0 0 16-16v-32a16 16 0 0 0-16-16zm3.17-128H204.83A12.82 12.82 0 0 0 192 300.83v38.34A12.82 12.82 0 0 0 204.83 352h230.34A12.82 12.82 0 0 0 448 339.17v-38.34A12.82 12.82 0 0 0 435.17 288zm0-128H204.83A12.82 12.82 0 0 0 192 172.83v38.34A12.82 12.82 0 0 0 204.83 224h230.34A12.82 12.82 0 0 0 448 211.17v-38.34A12.82 12.82 0 0 0 435.17 160zM432 32H16A16 16 0 0 0 0 48v32a16 16 0 0 0 16 16h416a16 16 0 0 0 16-16V48a16 16 0 0 0-16-16z"],industry:[512,512,[],"f275","M475.115 163.781L336 252.309v-68.28c0-18.916-20.931-30.399-36.885-20.248L160 252.309V56c0-13.255-10.745-24-24-24H24C10.745 32 0 42.745 0 56v400c0 13.255 10.745 24 24 24h464c13.255 0 24-10.745 24-24V184.029c0-18.917-20.931-30.399-36.885-20.248z"],infinity:[640,512,[],"f534","M471.1 96C405 96 353.3 137.3 320 174.6 286.7 137.3 235 96 168.9 96 75.8 96 0 167.8 0 256s75.8 160 168.9 160c66.1 0 117.8-41.3 151.1-78.6 33.3 37.3 85 78.6 151.1 78.6 93.1 0 168.9-71.8 168.9-160S564.2 96 471.1 96zM168.9 320c-40.2 0-72.9-28.7-72.9-64s32.7-64 72.9-64c38.2 0 73.4 36.1 94 64-20.4 27.6-55.9 64-94 64zm302.2 0c-38.2 0-73.4-36.1-94-64 20.4-27.6 55.9-64 94-64 40.2 0 72.9 28.7 72.9 64s-32.7 64-72.9 64z"],info:[192,512,[],"f129","M20 424.229h20V279.771H20c-11.046 0-20-8.954-20-20V212c0-11.046 8.954-20 20-20h112c11.046 0 20 8.954 20 20v212.229h20c11.046 0 20 8.954 20 20V492c0 11.046-8.954 20-20 20H20c-11.046 0-20-8.954-20-20v-47.771c0-11.046 8.954-20 20-20zM96 0C56.235 0 24 32.235 24 72s32.235 72 72 72 72-32.235 72-72S135.764 0 96 0z"],"info-circle":[512,512,[],"f05a","M256 8C119.043 8 8 119.083 8 256c0 136.997 111.043 248 248 248s248-111.003 248-248C504 119.083 392.957 8 256 8zm0 110c23.196 0 42 18.804 42 42s-18.804 42-42 42-42-18.804-42-42 18.804-42 42-42zm56 254c0 6.627-5.373 12-12 12h-88c-6.627 0-12-5.373-12-12v-24c0-6.627 5.373-12 12-12h12v-64h-12c-6.627 0-12-5.373-12-12v-24c0-6.627 5.373-12 12-12h64c6.627 0 12 5.373 12 12v100h12c6.627 0 12 5.373 12 12v24z"],italic:[320,512,[],"f033","M320 48v32a16 16 0 0 1-16 16h-62.76l-80 320H208a16 16 0 0 1 16 16v32a16 16 0 0 1-16 16H16a16 16 0 0 1-16-16v-32a16 16 0 0 1 16-16h62.76l80-320H112a16 16 0 0 1-16-16V48a16 16 0 0 1 16-16h192a16 16 0 0 1 16 16z"],jedi:[576,512,[],"f669","M535.95308,352c-42.64069,94.17188-137.64086,160-247.9848,160q-6.39844,0-12.84377-.29688C171.15558,506.9375,81.26481,442.23438,40.01474,352H79.93668L21.3272,293.40625a264.82522,264.82522,0,0,1-5.10938-39.42187,273.6653,273.6653,0,0,1,.5-29.98438H63.93665L22.546,182.625A269.79782,269.79782,0,0,1,130.51489,20.54688a16.06393,16.06393,0,0,1,9.28127-3,16.36332,16.36332,0,0,1,13.5,7.25,16.02739,16.02739,0,0,1,1.625,15.09374,138.387,138.387,0,0,0-9.84376,51.26563c0,45.10937,21.04691,86.57813,57.71884,113.73437a16.29989,16.29989,0,0,1,1.20313,25.39063c-26.54692,23.98437-41.17194,56.5-41.17194,91.57813,0,60.03124,42.95319,110.28124,99.89079,121.92187l2.5-65.26563L238.062,397a8.33911,8.33911,0,0,1-10-.75,8.025,8.025,0,0,1-1.39063-9.9375l20.125-33.76562-42.06257-8.73438a7.9898,7.9898,0,0,1,0-15.65625l42.06257-8.71875-20.10941-33.73438a7.99122,7.99122,0,0,1,11.35939-10.71874L268.437,295.64062,279.95265,7.67188a7.97138,7.97138,0,0,1,8-7.67188h.04687a8.02064,8.02064,0,0,1,7.95314,7.70312L307.48394,295.625l30.39068-20.67188a8.08327,8.08327,0,0,1,10,.8125,7.99866,7.99866,0,0,1,1.39062,9.90626L329.12461,319.4375l42.07819,8.73438a7.99373,7.99373,0,0,1,0,15.65624l-42.07819,8.71876,20.1094,33.73437a7.97791,7.97791,0,0,1-1.32812,9.92187A8.25739,8.25739,0,0,1,337.87462,397L310.7027,378.53125l2.5,65.34375c48.48446-9.40625,87.57828-48.15625,97.31267-96.5A123.52652,123.52652,0,0,0,371.9528,230.29688a16.30634,16.30634,0,0,1,1.20313-25.42188c36.65631-27.17188,57.6876-68.60938,57.6876-113.73438a138.01689,138.01689,0,0,0-9.85939-51.3125,15.98132,15.98132,0,0,1,1.60937-15.09374,16.36914,16.36914,0,0,1,13.5-7.23438,16.02453,16.02453,0,0,1,9.25,2.98438A271.26947,271.26947,0,0,1,553.25,182.76562L511.99992,224h46.9532C559.3125,229.76562,560,235.45312,560,241.26562a270.092,270.092,0,0,1-5.125,51.85938L495.98427,352Z"],joint:[640,512,[],"f595","M444.34 181.1c22.38 15.68 35.66 41.16 35.66 68.59V280c0 4.42 3.58 8 8 8h48c4.42 0 8-3.58 8-8v-30.31c0-43.24-21.01-83.41-56.34-108.06C463.85 125.02 448 99.34 448 70.31V8c0-4.42-3.58-8-8-8h-48c-4.42 0-8 3.58-8 8v66.4c0 43.69 24.56 81.63 60.34 106.7zM194.97 358.98C126.03 370.07 59.69 394.69 0 432c83.65 52.28 180.3 80 278.94 80h88.57L254.79 380.49c-14.74-17.2-37.45-25.11-59.82-21.51zM553.28 87.09c-5.67-3.8-9.28-9.96-9.28-16.78V8c0-4.42-3.58-8-8-8h-48c-4.42 0-8 3.58-8 8v62.31c0 22.02 10.17 43.41 28.64 55.39C550.79 153.04 576 199.54 576 249.69V280c0 4.42 3.58 8 8 8h48c4.42 0 8-3.58 8-8v-30.31c0-65.44-32.41-126.19-86.72-162.6zM360.89 352.05c-34.4.06-86.81.15-88.21.17l117.8 137.43A63.987 63.987 0 0 0 439.07 512h88.45L409.57 374.4a63.955 63.955 0 0 0-48.68-22.35zM616 352H432l117.99 137.65A63.987 63.987 0 0 0 598.58 512H616c13.25 0 24-10.75 24-24V376c0-13.26-10.75-24-24-24z"],"journal-whills":[448,512,[],"f66a","M438.40625,377.59375c-3.20313,12.8125-3.20313,57.60937,0,73.60937Q447.9922,460.78907,448,470.40625v16c0,16-12.79688,25.59375-25.59375,25.59375H96c-54.40625,0-96-41.59375-96-96V96C0,41.59375,41.59375,0,96,0H422.40625C438.40625,0,448,9.59375,448,25.59375v332.8125Q448,372.79688,438.40625,377.59375ZM380.79688,384H96c-16,0-32,12.79688-32,32s12.79688,32,32,32H380.79688ZM128.01562,176.01562c0,.51563.14063.98438.14063,1.5l37.10937,32.46876A7.99954,7.99954,0,0,1,160,224h-.01562a9.17678,9.17678,0,0,1-5.25-1.98438L131.14062,201.375C142.6875,250.95312,186.90625,288,240,288s97.3125-37.04688,108.875-86.625l-23.59375,20.64062a8.02516,8.02516,0,0,1-5.26563,1.96876H320a9.14641,9.14641,0,0,1-6.01562-2.71876A9.26508,9.26508,0,0,1,312,216a9.097,9.097,0,0,1,2.73438-6.01562l37.10937-32.46876c.01563-.53124.15625-1,.15625-1.51562,0-11.04688-2.09375-21.51562-5.06251-31.59375l-21.26562,21.25a8.00467,8.00467,0,0,1-11.32812-11.3125l26.42187-26.40625a111.81517,111.81517,0,0,0-46.35937-49.26562,63.02336,63.02336,0,0,1-14.0625,82.64062A55.83846,55.83846,0,0,1,251.625,254.73438l-1.42188-34.28126,12.67188,8.625a3.967,3.967,0,0,0,2.25.6875,3.98059,3.98059,0,0,0,3.43749-6.03124l-8.53124-14.3125,17.90625-3.71876a4.00647,4.00647,0,0,0,0-7.84374l-17.90625-3.71876,8.53124-14.3125a3.98059,3.98059,0,0,0-3.43749-6.03124,4.726,4.726,0,0,0-2.25.67187L248.6875,184.125,244,71.82812a4.00386,4.00386,0,0,0-8,0l-4.625,110.8125-12-8.15624a4.003,4.003,0,0,0-5.68751,5.35937l8.53126,14.3125L204.3125,197.875a3.99686,3.99686,0,0,0,0,7.82812l17.90625,3.73438-8.53126,14.29688a4.72469,4.72469,0,0,0-.56249,2.04687,4.59547,4.59547,0,0,0,1.25,2.90625,4.01059,4.01059,0,0,0,2.75,1.09375,4.09016,4.09016,0,0,0,2.25-.6875l10.35937-7.04687L228.375,254.76562a55.86414,55.86414,0,0,1-28.71875-93.45312,63.01119,63.01119,0,0,1-14.04688-82.65625,111.93158,111.93158,0,0,0-46.375,49.26563l26.42187,26.42187a7.99917,7.99917,0,0,1-11.3125,11.3125l-21.26563-21.26563C130.09375,154.48438,128,164.95312,128.01562,176.01562Z"],kaaba:[576,512,[],"f66b","M554.12 83.51L318.36 4.93a95.962 95.962 0 0 0-60.71 0L21.88 83.51A32.006 32.006 0 0 0 0 113.87v49.01l265.02-79.51c15.03-4.5 30.92-4.5 45.98 0l265 79.51v-49.01c0-13.77-8.81-26-21.88-30.36zm-279.9 30.52L0 196.3v228.38c0 15 10.42 27.98 25.06 31.24l242.12 53.8a95.937 95.937 0 0 0 41.65 0l242.12-53.8c14.64-3.25 25.06-16.24 25.06-31.24V196.29l-274.2-82.26c-9.04-2.72-18.59-2.72-27.59 0zM128 230.11c0 3.61-2.41 6.77-5.89 7.72l-80 21.82C37.02 261.03 32 257.2 32 251.93v-16.58c0-3.61 2.41-6.77 5.89-7.72l80-21.82c5.09-1.39 10.11 2.44 10.11 7.72v16.58zm144-39.28c0 3.61-2.41 6.77-5.89 7.72l-96 26.18c-5.09 1.39-10.11-2.44-10.11-7.72v-16.58c0-3.61 2.41-6.77 5.89-7.72l96-26.18c5.09-1.39 10.11 2.44 10.11 7.72v16.58zm176 22.7c0-5.28 5.02-9.11 10.11-7.72l80 21.82c3.48.95 5.89 4.11 5.89 7.72v16.58c0 5.28-5.02 9.11-10.11 7.72l-80-21.82a7.997 7.997 0 0 1-5.89-7.72v-16.58zm-144-39.27c0-5.28 5.02-9.11 10.11-7.72l96 26.18c3.48.95 5.89 4.11 5.89 7.72v16.58c0 5.28-5.02 9.11-10.11 7.72l-96-26.18a7.997 7.997 0 0 1-5.89-7.72v-16.58z"],key:[512,512,[],"f084","M512 176.001C512 273.203 433.202 352 336 352c-11.22 0-22.19-1.062-32.827-3.069l-24.012 27.014A23.999 23.999 0 0 1 261.223 384H224v40c0 13.255-10.745 24-24 24h-40v40c0 13.255-10.745 24-24 24H24c-13.255 0-24-10.745-24-24v-78.059c0-6.365 2.529-12.47 7.029-16.971l161.802-161.802C163.108 213.814 160 195.271 160 176 160 78.798 238.797.001 335.999 0 433.488-.001 512 78.511 512 176.001zM336 128c0 26.51 21.49 48 48 48s48-21.49 48-48-21.49-48-48-48-48 21.49-48 48z"],keyboard:[576,512,[],"f11c","M528 448H48c-26.51 0-48-21.49-48-48V112c0-26.51 21.49-48 48-48h480c26.51 0 48 21.49 48 48v288c0 26.51-21.49 48-48 48zM128 180v-40c0-6.627-5.373-12-12-12H76c-6.627 0-12 5.373-12 12v40c0 6.627 5.373 12 12 12h40c6.627 0 12-5.373 12-12zm96 0v-40c0-6.627-5.373-12-12-12h-40c-6.627 0-12 5.373-12 12v40c0 6.627 5.373 12 12 12h40c6.627 0 12-5.373 12-12zm96 0v-40c0-6.627-5.373-12-12-12h-40c-6.627 0-12 5.373-12 12v40c0 6.627 5.373 12 12 12h40c6.627 0 12-5.373 12-12zm96 0v-40c0-6.627-5.373-12-12-12h-40c-6.627 0-12 5.373-12 12v40c0 6.627 5.373 12 12 12h40c6.627 0 12-5.373 12-12zm96 0v-40c0-6.627-5.373-12-12-12h-40c-6.627 0-12 5.373-12 12v40c0 6.627 5.373 12 12 12h40c6.627 0 12-5.373 12-12zm-336 96v-40c0-6.627-5.373-12-12-12h-40c-6.627 0-12 5.373-12 12v40c0 6.627 5.373 12 12 12h40c6.627 0 12-5.373 12-12zm96 0v-40c0-6.627-5.373-12-12-12h-40c-6.627 0-12 5.373-12 12v40c0 6.627 5.373 12 12 12h40c6.627 0 12-5.373 12-12zm96 0v-40c0-6.627-5.373-12-12-12h-40c-6.627 0-12 5.373-12 12v40c0 6.627 5.373 12 12 12h40c6.627 0 12-5.373 12-12zm96 0v-40c0-6.627-5.373-12-12-12h-40c-6.627 0-12 5.373-12 12v40c0 6.627 5.373 12 12 12h40c6.627 0 12-5.373 12-12zm-336 96v-40c0-6.627-5.373-12-12-12H76c-6.627 0-12 5.373-12 12v40c0 6.627 5.373 12 12 12h40c6.627 0 12-5.373 12-12zm288 0v-40c0-6.627-5.373-12-12-12H172c-6.627 0-12 5.373-12 12v40c0 6.627 5.373 12 12 12h232c6.627 0 12-5.373 12-12zm96 0v-40c0-6.627-5.373-12-12-12h-40c-6.627 0-12 5.373-12 12v40c0 6.627 5.373 12 12 12h40c6.627 0 12-5.373 12-12z"],khanda:[512,512,[],"f66d","M415.81 66c-6.37-3.5-14.37-2.33-19.36 3.02a15.974 15.974 0 0 0-1.91 19.52c16.49 26.16 25.2 56.39 25.2 87.41-.19 53.25-26.77 102.69-71.27 132.41l-76.63 53.35v-20.1l44.05-36.09c3.92-4.2 5-10.09 2.81-15.28L310.85 273c33.84-19.26 56.94-55.25 56.94-96.99 0-40.79-22.02-76.13-54.59-95.71l5.22-11.44c2.34-5.53.93-11.83-3.57-16.04L255.86 0l-58.99 52.81c-4.5 4.21-5.9 10.51-3.57 16.04l5.22 11.44c-32.57 19.58-54.59 54.93-54.59 95.72 0 41.75 23.09 77.73 56.94 96.99l-7.85 17.24c-2.19 5.18-1.1 11.07 2.81 15.28l44.05 36.09v19.9l-76.59-53.33C119.02 278.62 92.44 229.19 92.26 176c0-31.08 8.71-61.31 25.2-87.47 3.87-6.16 2.4-13.77-2.59-19.08-5-5.34-13.68-6.2-20.02-2.7C16.32 109.6-22.3 205.3 13.36 295.99c7.07 17.99 17.89 34.38 30.46 49.06l55.97 65.36c4.87 5.69 13.04 7.24 19.65 3.72l79.35-42.23L228 392.23l-47.08 32.78c-1.67-.37-3.23-1.01-5.01-1.01-13.25 0-23.99 10.74-23.99 24 0 13.25 10.74 24 23.99 24 12.1 0 21.69-9.11 23.33-20.76l40.63-28.28v29.95c-9.39 5.57-15.99 15.38-15.99 27.1 0 17.67 14.32 32 31.98 32s31.98-14.33 31.98-32c0-11.71-6.61-21.52-15.99-27.1v-30.15l40.91 28.48C314.41 462.89 324 472 336.09 472c13.25 0 23.99-10.75 23.99-24 0-13.26-10.74-24-23.99-24-1.78 0-3.34.64-5.01 1.01L284 392.23l29.21-20.34 79.35 42.23c6.61 3.52 14.78 1.97 19.65-3.71l52.51-61.31c18.87-22.02 34-47.5 41.25-75.59 21.62-83.66-16.45-167.27-90.16-207.51zm-95.99 110c0 22.3-11.49 41.92-28.83 53.38l-5.65-12.41c-8.75-24.52-8.75-51.04 0-75.56l7.83-17.18c16.07 11.65 26.65 30.45 26.65 51.77zm-127.93 0c0-21.32 10.58-40.12 26.66-51.76l7.83 17.18c8.75 24.52 8.75 51.03 0 75.56l-5.65 12.41c-17.34-11.46-28.84-31.09-28.84-53.39z"],kiss:[496,512,[],"f596","M248 8C111 8 0 119 0 256s111 248 248 248 248-111 248-248S385 8 248 8zm-80 232c-17.7 0-32-14.3-32-32s14.3-32 32-32 32 14.3 32 32-14.3 32-32 32zm136 156c0 19.2-28.7 41.5-71.5 44-8.5.8-12.1-11.8-3.6-15.4l17-7.2c13-5.5 20.8-13.5 20.8-21.5s-7.8-16-20.8-21.5l-17-7.2c-6-2.5-6.1-12.2 0-14.8l17-7.2c13-5.5 20.8-13.5 20.8-21.5s-7.8-16-20.8-21.5l-17-7.2c-8.6-3.6-4.8-16.5 3.6-15.4 42.8 2.5 71.5 24.8 71.5 44 0 13-13.4 27.3-35.2 36C290.6 368.7 304 383 304 396zm24-156c-17.7 0-32-14.3-32-32s14.3-32 32-32 32 14.3 32 32-14.3 32-32 32z"],"kiss-beam":[496,512,[],"f597","M248 8C111 8 0 119 0 256s111 248 248 248 248-111 248-248S385 8 248 8zm-39 219.9l-9.5-17c-7.7-13.7-19.2-21.6-31.5-21.6s-23.8 7.9-31.5 21.6l-9.5 17c-4.2 7.4-15.6 4-14.9-4.5 3.3-42.1 32.2-71.4 56-71.4s52.7 29.3 56 71.4c.5 8.5-10.9 12-15.1 4.5zM304 396c0 19.2-28.7 41.5-71.5 44-8.5.8-12.1-11.8-3.6-15.4l17-7.2c13-5.5 20.8-13.5 20.8-21.5s-7.8-16-20.8-21.5l-17-7.2c-6-2.5-6.1-12.2 0-14.8l17-7.2c13-5.5 20.8-13.5 20.8-21.5s-7.8-16-20.8-21.5l-17-7.2c-8.6-3.6-4.8-16.5 3.6-15.4 42.8 2.5 71.5 24.8 71.5 44 0 13-13.4 27.3-35.2 36C290.6 368.7 304 383 304 396zm65-168.1l-9.5-17c-7.7-13.7-19.2-21.6-31.5-21.6s-23.8 7.9-31.5 21.6l-9.5 17c-4.1 7.3-15.6 4-14.9-4.5 3.3-42.1 32.2-71.4 56-71.4s52.7 29.3 56 71.4c.5 8.5-10.9 12-15.1 4.5z"],"kiss-wink-heart":[504,512,[],"f598","M501.1 402.5c-8-20.8-31.5-31.5-53.1-25.9l-8.4 2.2-2.3-8.4c-5.9-21.4-27-36.5-49-33-25.2 4-40.6 28.6-34 52.6l22.9 82.6c1.5 5.3 7 8.5 12.4 7.1l83-21.5c24.1-6.3 37.7-31.8 28.5-55.7zm-177.6-4c-5.6-20.3-2.3-42 9-59.7 29.7-46.3 98.7-45.5 127.8 4.3 6.4.1 12.6 1.4 18.6 2.9 10.9-27.9 17.1-58.2 17.1-90C496 119 385 8 248 8S0 119 0 256s111 248 248 248c35.4 0 68.9-7.5 99.4-20.9-.3-.7-23.9-84.6-23.9-84.6zM168 240c-17.7 0-32-14.3-32-32s14.3-32 32-32 32 14.3 32 32-14.3 32-32 32zm120 156c0 19.2-28.7 41.5-71.5 44-8.5.8-12.1-11.8-3.6-15.4l17-7.2c13-5.5 20.8-13.5 20.8-21.5s-7.8-16-20.8-21.5l-17-7.2c-6-2.5-5.7-12.3 0-14.8l17-7.2c13-5.5 20.8-13.5 20.8-21.5s-7.8-16-20.8-21.5l-17-7.2c-8.8-3.7-4.6-16.6 3.6-15.4 42.8 2.5 71.5 24.8 71.5 44 0 13-13.4 27.3-35.2 36C274.6 368.7 288 383 288 396zm16-179c-8.3 7.4-21.6.4-19.8-10.8 4-25.2 34.2-42.1 59.9-42.1S400 181 404 206.2c1.7 11.1-11.3 18.3-19.8 10.8l-9.5-8.5c-14.8-13.2-46.2-13.2-61 0L304 217z"],"kiwi-bird":[576,512,[],"f535","M575.81 217.98C572.64 157.41 518.28 112 457.63 112h-9.37c-52.82 0-104.25-16.25-147.74-46.24-41.99-28.96-96.04-41.62-153.21-28.7C129.3 41.12-.08 78.24 0 224c.04 70.95 38.68 132.8 95.99 166.01V464c0 8.84 7.16 16 16 16h16c8.84 0 16-7.16 16-16v-54.26c15.36 3.96 31.4 6.26 48 6.26 5.44 0 10.68-.73 16-1.18V464c0 8.84 7.16 16 16 16h16c8.84 0 16-7.16 16-16v-59.43c14.24-5.06 27.88-11.39 40.34-19.51C342.07 355.25 393.86 336 448.46 336c25.48 0 16.01-.31 23.05-.78l74.41 136.44c2.86 5.23 8.3 8.34 14.05 8.34 1.31 0 2.64-.16 3.95-.5 7.09-1.8 12.05-8.19 12.05-15.5 0 0 .14-240.24-.16-246.02zM463.97 248c-13.25 0-24-10.75-24-24 0-13.26 10.75-24 24-24s24 10.74 24 24c0 13.25-10.75 24-24 24zm80 153.25l-39.86-73.08c15.12-5.83 28.73-14.6 39.86-25.98v99.06z"],landmark:[512,512,[],"f66f","M501.62 92.11L267.24 2.04a31.958 31.958 0 0 0-22.47 0L10.38 92.11A16.001 16.001 0 0 0 0 107.09V144c0 8.84 7.16 16 16 16h480c8.84 0 16-7.16 16-16v-36.91c0-6.67-4.14-12.64-10.38-14.98zM64 192v160H48c-8.84 0-16 7.16-16 16v48h448v-48c0-8.84-7.16-16-16-16h-16V192h-64v160h-96V192h-64v160h-96V192H64zm432 256H16c-8.84 0-16 7.16-16 16v32c0 8.84 7.16 16 16 16h480c8.84 0 16-7.16 16-16v-32c0-8.84-7.16-16-16-16z"],language:[640,512,[],"f1ab","M152.1 236.2c-3.5-12.1-7.8-33.2-7.8-33.2h-.5s-4.3 21.1-7.8 33.2l-11.1 37.5H163zM616 96H336v320h280c13.3 0 24-10.7 24-24V120c0-13.3-10.7-24-24-24zm-24 120c0 6.6-5.4 12-12 12h-11.4c-6.9 23.6-21.7 47.4-42.7 69.9 8.4 6.4 17.1 12.5 26.1 18 5.5 3.4 7.3 10.5 4.1 16.2l-7.9 13.9c-3.4 5.9-10.9 7.8-16.7 4.3-12.6-7.8-24.5-16.1-35.4-24.9-10.9 8.7-22.7 17.1-35.4 24.9-5.8 3.5-13.3 1.6-16.7-4.3l-7.9-13.9c-3.2-5.6-1.4-12.8 4.2-16.2 9.3-5.7 18-11.7 26.1-18-7.9-8.4-14.9-17-21-25.7-4-5.7-2.2-13.6 3.7-17.1l6.5-3.9 7.3-4.3c5.4-3.2 12.4-1.7 16 3.4 5 7 10.8 14 17.4 20.9 13.5-14.2 23.8-28.9 30-43.2H412c-6.6 0-12-5.4-12-12v-16c0-6.6 5.4-12 12-12h64v-16c0-6.6 5.4-12 12-12h16c6.6 0 12 5.4 12 12v16h64c6.6 0 12 5.4 12 12zM0 120v272c0 13.3 10.7 24 24 24h280V96H24c-13.3 0-24 10.7-24 24zm58.9 216.1L116.4 167c1.7-4.9 6.2-8.1 11.4-8.1h32.5c5.1 0 9.7 3.3 11.4 8.1l57.5 169.1c2.6 7.8-3.1 15.9-11.4 15.9h-22.9a12 12 0 0 1-11.5-8.6l-9.4-31.9h-60.2l-9.1 31.8c-1.5 5.1-6.2 8.7-11.5 8.7H70.3c-8.2 0-14-8.1-11.4-15.9z"],laptop:[640,512,[],"f109","M624 416H381.54c-.74 19.81-14.71 32-32.74 32H288c-18.69 0-33.02-17.47-32.77-32H16c-8.8 0-16 7.2-16 16v16c0 35.2 28.8 64 64 64h512c35.2 0 64-28.8 64-64v-16c0-8.8-7.2-16-16-16zM576 48c0-26.4-21.6-48-48-48H112C85.6 0 64 21.6 64 48v336h512V48zm-64 272H128V64h384v256z"],"laptop-code":[640,512,[],"f5fc","M255.03 261.65c6.25 6.25 16.38 6.25 22.63 0l11.31-11.31c6.25-6.25 6.25-16.38 0-22.63L253.25 192l35.71-35.72c6.25-6.25 6.25-16.38 0-22.63l-11.31-11.31c-6.25-6.25-16.38-6.25-22.63 0l-58.34 58.34c-6.25 6.25-6.25 16.38 0 22.63l58.35 58.34zm96.01-11.3l11.31 11.31c6.25 6.25 16.38 6.25 22.63 0l58.34-58.34c6.25-6.25 6.25-16.38 0-22.63l-58.34-58.34c-6.25-6.25-16.38-6.25-22.63 0l-11.31 11.31c-6.25 6.25-6.25 16.38 0 22.63L386.75 192l-35.71 35.72c-6.25 6.25-6.25 16.38 0 22.63zM624 416H381.54c-.74 19.81-14.71 32-32.74 32H288c-18.69 0-33.02-17.47-32.77-32H16c-8.8 0-16 7.2-16 16v16c0 35.2 28.8 64 64 64h512c35.2 0 64-28.8 64-64v-16c0-8.8-7.2-16-16-16zM576 48c0-26.4-21.6-48-48-48H112C85.6 0 64 21.6 64 48v336h512V48zm-64 272H128V64h384v256z"],"laptop-medical":[640,512,[],"f812","M232 224h56v56a8 8 0 0 0 8 8h48a8 8 0 0 0 8-8v-56h56a8 8 0 0 0 8-8v-48a8 8 0 0 0-8-8h-56v-56a8 8 0 0 0-8-8h-48a8 8 0 0 0-8 8v56h-56a8 8 0 0 0-8 8v48a8 8 0 0 0 8 8zM576 48a48.14 48.14 0 0 0-48-48H112a48.14 48.14 0 0 0-48 48v336h512zm-64 272H128V64h384zm112 96H381.54c-.74 19.81-14.71 32-32.74 32H288c-18.69 0-33-17.47-32.77-32H16a16 16 0 0 0-16 16v16a64.19 64.19 0 0 0 64 64h512a64.19 64.19 0 0 0 64-64v-16a16 16 0 0 0-16-16z"],laugh:[496,512,[],"f599","M248 8C111 8 0 119 0 256s111 248 248 248 248-111 248-248S385 8 248 8zm80 152c17.7 0 32 14.3 32 32s-14.3 32-32 32-32-14.3-32-32 14.3-32 32-32zm-160 0c17.7 0 32 14.3 32 32s-14.3 32-32 32-32-14.3-32-32 14.3-32 32-32zm88 272h-16c-73.4 0-134-55-142.9-126-1.2-9.5 6.3-18 15.9-18h270c9.6 0 17.1 8.4 15.9 18-8.9 71-69.5 126-142.9 126z"],"laugh-beam":[496,512,[],"f59a","M248 8C111 8 0 119 0 256s111 248 248 248 248-111 248-248S385 8 248 8zm24 199.4c3.3-42.1 32.2-71.4 56-71.4s52.7 29.3 56 71.4c.7 8.6-10.8 11.9-14.9 4.5l-9.5-17c-7.7-13.7-19.2-21.6-31.5-21.6s-23.8 7.9-31.5 21.6l-9.5 17c-4.2 7.4-15.8 4.1-15.1-4.5zm-160 0c3.3-42.1 32.2-71.4 56-71.4s52.7 29.3 56 71.4c.7 8.6-10.8 11.9-14.9 4.5l-9.5-17c-7.7-13.7-19.2-21.6-31.5-21.6s-23.8 7.9-31.5 21.6l-9.5 17c-4.3 7.4-15.8 4-15.1-4.5zM398.9 306C390 377 329.4 432 256 432h-16c-73.4 0-134-55-142.9-126-1.2-9.5 6.3-18 15.9-18h270c9.6 0 17.1 8.4 15.9 18z"],"laugh-squint":[496,512,[],"f59b","M248 8C111 8 0 119 0 256s111 248 248 248 248-111 248-248S385 8 248 8zm33.8 161.7l80-48c11.6-6.9 24 7.7 15.4 18L343.6 180l33.6 40.3c8.7 10.4-3.9 24.8-15.4 18l-80-48c-7.7-4.7-7.7-15.9 0-20.6zm-163-30c-8.6-10.3 3.8-24.9 15.4-18l80 48c7.8 4.7 7.8 15.9 0 20.6l-80 48c-11.5 6.8-24-7.6-15.4-18l33.6-40.3-33.6-40.3zM398.9 306C390 377 329.4 432 256 432h-16c-73.4 0-134-55-142.9-126-1.2-9.5 6.3-18 15.9-18h270c9.6 0 17.1 8.4 15.9 18z"],"laugh-wink":[496,512,[],"f59c","M248 8C111 8 0 119 0 256s111 248 248 248 248-111 248-248S385 8 248 8zm20.1 198.1c4-25.2 34.2-42.1 59.9-42.1s55.9 16.9 59.9 42.1c1.7 11.1-11.4 18.3-19.8 10.8l-9.5-8.5c-14.8-13.2-46.2-13.2-61 0L288 217c-8.4 7.4-21.6.3-19.9-10.9zM168 160c17.7 0 32 14.3 32 32s-14.3 32-32 32-32-14.3-32-32 14.3-32 32-32zm230.9 146C390 377 329.4 432 256 432h-16c-73.4 0-134-55-142.9-126-1.2-9.5 6.3-18 15.9-18h270c9.6 0 17.1 8.4 15.9 18z"],"layer-group":[512,512,[],"f5fd","M12.41 148.02l232.94 105.67c6.8 3.09 14.49 3.09 21.29 0l232.94-105.67c16.55-7.51 16.55-32.52 0-40.03L266.65 2.31a25.607 25.607 0 0 0-21.29 0L12.41 107.98c-16.55 7.51-16.55 32.53 0 40.04zm487.18 88.28l-58.09-26.33-161.64 73.27c-7.56 3.43-15.59 5.17-23.86 5.17s-16.29-1.74-23.86-5.17L70.51 209.97l-58.1 26.33c-16.55 7.5-16.55 32.5 0 40l232.94 105.59c6.8 3.08 14.49 3.08 21.29 0L499.59 276.3c16.55-7.5 16.55-32.5 0-40zm0 127.8l-57.87-26.23-161.86 73.37c-7.56 3.43-15.59 5.17-23.86 5.17s-16.29-1.74-23.86-5.17L70.29 337.87 12.41 364.1c-16.55 7.5-16.55 32.5 0 40l232.94 105.59c6.8 3.08 14.49 3.08 21.29 0L499.59 404.1c16.55-7.5 16.55-32.5 0-40z"],leaf:[576,512,[],"f06c","M546.2 9.7c-5.6-12.5-21.6-13-28.3-1.2C486.9 62.4 431.4 96 368 96h-80C182 96 96 182 96 288c0 7 .8 13.7 1.5 20.5C161.3 262.8 253.4 224 384 224c8.8 0 16 7.2 16 16s-7.2 16-16 16C132.6 256 26 410.1 2.4 468c-6.6 16.3 1.2 34.9 17.5 41.6 16.4 6.8 35-1.1 41.8-17.3 1.5-3.6 20.9-47.9 71.9-90.6 32.4 43.9 94 85.8 174.9 77.2C465.5 467.5 576 326.7 576 154.3c0-50.2-10.8-102.2-29.8-144.6z"],lemon:[512,512,[],"f094","M489.038 22.963C465.944-.13 434.648-5.93 413.947 6.129c-58.906 34.312-181.25-53.077-321.073 86.746S40.441 355.041 6.129 413.945c-12.059 20.702-6.26 51.999 16.833 75.093 23.095 23.095 54.392 28.891 75.095 16.832 58.901-34.31 181.246 53.079 321.068-86.743S471.56 156.96 505.871 98.056c12.059-20.702 6.261-51.999-16.833-75.093zM243.881 95.522c-58.189 14.547-133.808 90.155-148.358 148.358-1.817 7.27-8.342 12.124-15.511 12.124-1.284 0-2.59-.156-3.893-.481-8.572-2.144-13.784-10.83-11.642-19.403C81.901 166.427 166.316 81.93 236.119 64.478c8.575-2.143 17.261 3.069 19.403 11.642s-3.069 17.259-11.641 19.402z"],"less-than":[384,512,[],"f536","M365.46 357.74L147.04 255.89l218.47-101.88c16.02-7.47 22.95-26.51 15.48-42.53l-13.52-29C360 66.46 340.96 59.53 324.94 67L18.48 209.91a32.014 32.014 0 0 0-18.48 29v34.24c0 12.44 7.21 23.75 18.48 29l306.31 142.83c16.06 7.49 35.15.54 42.64-15.52l13.56-29.08c7.49-16.06.54-35.15-15.53-42.64z"],"less-than-equal":[448,512,[],"f537","M54.98 214.2l301.41 119.87c18.39 6.03 38.71-2.54 45.38-19.15l12.09-30.08c6.68-16.61-2.82-34.97-21.21-41l-175.44-68.05 175.56-68.09c18.29-6 27.74-24.27 21.1-40.79l-12.03-29.92c-6.64-16.53-26.86-25.06-45.15-19.06L54.98 137.89C41.21 142.41 32 154.5 32 168.07v15.96c0 13.56 9.21 25.65 22.98 30.17zM424 400H24c-13.25 0-24 10.74-24 24v48c0 13.25 10.75 24 24 24h400c13.25 0 24-10.75 24-24v-48c0-13.26-10.75-24-24-24z"],"level-down-alt":[320,512,[],"f3be","M313.553 392.331L209.587 504.334c-9.485 10.214-25.676 10.229-35.174 0L70.438 392.331C56.232 377.031 67.062 352 88.025 352H152V80H68.024a11.996 11.996 0 0 1-8.485-3.515l-56-56C-4.021 12.926 1.333 0 12.024 0H208c13.255 0 24 10.745 24 24v328h63.966c20.878 0 31.851 24.969 17.587 40.331z"],"level-up-alt":[320,512,[],"f3bf","M313.553 119.669L209.587 7.666c-9.485-10.214-25.676-10.229-35.174 0L70.438 119.669C56.232 134.969 67.062 160 88.025 160H152v272H68.024a11.996 11.996 0 0 0-8.485 3.515l-56 56C-4.021 499.074 1.333 512 12.024 512H208c13.255 0 24-10.745 24-24V160h63.966c20.878 0 31.851-24.969 17.587-40.331z"],"life-ring":[512,512,[],"f1cd","M256 8C119.033 8 8 119.033 8 256s111.033 248 248 248 248-111.033 248-248S392.967 8 256 8zm173.696 119.559l-63.399 63.399c-10.987-18.559-26.67-34.252-45.255-45.255l63.399-63.399a218.396 218.396 0 0 1 45.255 45.255zM256 352c-53.019 0-96-42.981-96-96s42.981-96 96-96 96 42.981 96 96-42.981 96-96 96zM127.559 82.304l63.399 63.399c-18.559 10.987-34.252 26.67-45.255 45.255l-63.399-63.399a218.372 218.372 0 0 1 45.255-45.255zM82.304 384.441l63.399-63.399c10.987 18.559 26.67 34.252 45.255 45.255l-63.399 63.399a218.396 218.396 0 0 1-45.255-45.255zm302.137 45.255l-63.399-63.399c18.559-10.987 34.252-26.67 45.255-45.255l63.399 63.399a218.403 218.403 0 0 1-45.255 45.255z"],lightbulb:[352,512,[],"f0eb","M96.06 454.35c.01 6.29 1.87 12.45 5.36 17.69l17.09 25.69a31.99 31.99 0 0 0 26.64 14.28h61.71a31.99 31.99 0 0 0 26.64-14.28l17.09-25.69a31.989 31.989 0 0 0 5.36-17.69l.04-38.35H96.01l.05 38.35zM0 176c0 44.37 16.45 84.85 43.56 115.78 16.52 18.85 42.36 58.23 52.21 91.45.04.26.07.52.11.78h160.24c.04-.26.07-.51.11-.78 9.85-33.22 35.69-72.6 52.21-91.45C335.55 260.85 352 220.37 352 176 352 78.61 272.91-.3 175.45 0 73.44.31 0 82.97 0 176zm176-80c-44.11 0-80 35.89-80 80 0 8.84-7.16 16-16 16s-16-7.16-16-16c0-61.76 50.24-112 112-112 8.84 0 16 7.16 16 16s-7.16 16-16 16z"],link:[512,512,[],"f0c1","M326.612 185.391c59.747 59.809 58.927 155.698.36 214.59-.11.12-.24.25-.36.37l-67.2 67.2c-59.27 59.27-155.699 59.262-214.96 0-59.27-59.26-59.27-155.7 0-214.96l37.106-37.106c9.84-9.84 26.786-3.3 27.294 10.606.648 17.722 3.826 35.527 9.69 52.721 1.986 5.822.567 12.262-3.783 16.612l-13.087 13.087c-28.026 28.026-28.905 73.66-1.155 101.96 28.024 28.579 74.086 28.749 102.325.51l67.2-67.19c28.191-28.191 28.073-73.757 0-101.83-3.701-3.694-7.429-6.564-10.341-8.569a16.037 16.037 0 0 1-6.947-12.606c-.396-10.567 3.348-21.456 11.698-29.806l21.054-21.055c5.521-5.521 14.182-6.199 20.584-1.731a152.482 152.482 0 0 1 20.522 17.197zM467.547 44.449c-59.261-59.262-155.69-59.27-214.96 0l-67.2 67.2c-.12.12-.25.25-.36.37-58.566 58.892-59.387 154.781.36 214.59a152.454 152.454 0 0 0 20.521 17.196c6.402 4.468 15.064 3.789 20.584-1.731l21.054-21.055c8.35-8.35 12.094-19.239 11.698-29.806a16.037 16.037 0 0 0-6.947-12.606c-2.912-2.005-6.64-4.875-10.341-8.569-28.073-28.073-28.191-73.639 0-101.83l67.2-67.19c28.239-28.239 74.3-28.069 102.325.51 27.75 28.3 26.872 73.934-1.155 101.96l-13.087 13.087c-4.35 4.35-5.769 10.79-3.783 16.612 5.864 17.194 9.042 34.999 9.69 52.721.509 13.906 17.454 20.446 27.294 10.606l37.106-37.106c59.271-59.259 59.271-155.699.001-214.959z"],"lira-sign":[384,512,[],"f195","M371.994 256h-48.019C317.64 256 312 260.912 312 267.246 312 368 230.179 416 144 416V256.781l134.603-29.912A12 12 0 0 0 288 215.155v-40.976c0-7.677-7.109-13.38-14.603-11.714L144 191.219V160.78l134.603-29.912A12 12 0 0 0 288 119.154V78.179c0-7.677-7.109-13.38-14.603-11.714L144 95.219V44c0-6.627-5.373-12-12-12H76c-6.627 0-12 5.373-12 12v68.997L9.397 125.131A12 12 0 0 0 0 136.845v40.976c0 7.677 7.109 13.38 14.603 11.714L64 178.558v30.439L9.397 221.131A12 12 0 0 0 0 232.845v40.976c0 7.677 7.109 13.38 14.603 11.714L64 274.558V468c0 6.627 5.373 12 12 12h79.583c134.091 0 223.255-77.834 228.408-211.592.261-6.782-5.211-12.408-11.997-12.408z"],list:[512,512,[],"f03a","M80 368H16a16 16 0 0 0-16 16v64a16 16 0 0 0 16 16h64a16 16 0 0 0 16-16v-64a16 16 0 0 0-16-16zm0-320H16A16 16 0 0 0 0 64v64a16 16 0 0 0 16 16h64a16 16 0 0 0 16-16V64a16 16 0 0 0-16-16zm0 160H16a16 16 0 0 0-16 16v64a16 16 0 0 0 16 16h64a16 16 0 0 0 16-16v-64a16 16 0 0 0-16-16zm416 176H176a16 16 0 0 0-16 16v32a16 16 0 0 0 16 16h320a16 16 0 0 0 16-16v-32a16 16 0 0 0-16-16zm0-320H176a16 16 0 0 0-16 16v32a16 16 0 0 0 16 16h320a16 16 0 0 0 16-16V80a16 16 0 0 0-16-16zm0 160H176a16 16 0 0 0-16 16v32a16 16 0 0 0 16 16h320a16 16 0 0 0 16-16v-32a16 16 0 0 0-16-16z"],"list-alt":[512,512,[],"f022","M464 480H48c-26.51 0-48-21.49-48-48V80c0-26.51 21.49-48 48-48h416c26.51 0 48 21.49 48 48v352c0 26.51-21.49 48-48 48zM128 120c-22.091 0-40 17.909-40 40s17.909 40 40 40 40-17.909 40-40-17.909-40-40-40zm0 96c-22.091 0-40 17.909-40 40s17.909 40 40 40 40-17.909 40-40-17.909-40-40-40zm0 96c-22.091 0-40 17.909-40 40s17.909 40 40 40 40-17.909 40-40-17.909-40-40-40zm288-136v-32c0-6.627-5.373-12-12-12H204c-6.627 0-12 5.373-12 12v32c0 6.627 5.373 12 12 12h200c6.627 0 12-5.373 12-12zm0 96v-32c0-6.627-5.373-12-12-12H204c-6.627 0-12 5.373-12 12v32c0 6.627 5.373 12 12 12h200c6.627 0 12-5.373 12-12zm0 96v-32c0-6.627-5.373-12-12-12H204c-6.627 0-12 5.373-12 12v32c0 6.627 5.373 12 12 12h200c6.627 0 12-5.373 12-12z"],"list-ol":[512,512,[],"f0cb","M61.77 401l17.5-20.15a19.92 19.92 0 0 0 5.07-14.19v-3.31C84.34 356 80.5 352 73 352H16a8 8 0 0 0-8 8v16a8 8 0 0 0 8 8h22.83a157.41 157.41 0 0 0-11 12.31l-5.61 7c-4 5.07-5.25 10.13-2.8 14.88l1.05 1.93c3 5.76 6.29 7.88 12.25 7.88h4.73c10.33 0 15.94 2.44 15.94 9.09 0 4.72-4.2 8.22-14.36 8.22a41.54 41.54 0 0 1-15.47-3.12c-6.49-3.88-11.74-3.5-15.6 3.12l-5.59 9.31c-3.72 6.13-3.19 11.72 2.63 15.94 7.71 4.69 20.38 9.44 37 9.44 34.16 0 48.5-22.75 48.5-44.12-.03-14.38-9.12-29.76-28.73-34.88zM496 224H176a16 16 0 0 0-16 16v32a16 16 0 0 0 16 16h320a16 16 0 0 0 16-16v-32a16 16 0 0 0-16-16zm0-160H176a16 16 0 0 0-16 16v32a16 16 0 0 0 16 16h320a16 16 0 0 0 16-16V80a16 16 0 0 0-16-16zm0 320H176a16 16 0 0 0-16 16v32a16 16 0 0 0 16 16h320a16 16 0 0 0 16-16v-32a16 16 0 0 0-16-16zM16 160h64a8 8 0 0 0 8-8v-16a8 8 0 0 0-8-8H64V40a8 8 0 0 0-8-8H32a8 8 0 0 0-7.14 4.42l-8 16A8 8 0 0 0 24 64h8v64H16a8 8 0 0 0-8 8v16a8 8 0 0 0 8 8zm-3.91 160H80a8 8 0 0 0 8-8v-16a8 8 0 0 0-8-8H41.32c3.29-10.29 48.34-18.68 48.34-56.44 0-29.06-25-39.56-44.47-39.56-21.36 0-33.8 10-40.46 18.75-4.37 5.59-3 10.84 2.8 15.37l8.58 6.88c5.61 4.56 11 2.47 16.12-2.44a13.44 13.44 0 0 1 9.46-3.84c3.33 0 9.28 1.56 9.28 8.75C51 248.19 0 257.31 0 304.59v4C0 316 5.08 320 12.09 320z"],"list-ul":[512,512,[],"f0ca","M48 48a48 48 0 1 0 48 48 48 48 0 0 0-48-48zm0 160a48 48 0 1 0 48 48 48 48 0 0 0-48-48zm0 160a48 48 0 1 0 48 48 48 48 0 0 0-48-48zm448 16H176a16 16 0 0 0-16 16v32a16 16 0 0 0 16 16h320a16 16 0 0 0 16-16v-32a16 16 0 0 0-16-16zm0-320H176a16 16 0 0 0-16 16v32a16 16 0 0 0 16 16h320a16 16 0 0 0 16-16V80a16 16 0 0 0-16-16zm0 160H176a16 16 0 0 0-16 16v32a16 16 0 0 0 16 16h320a16 16 0 0 0 16-16v-32a16 16 0 0 0-16-16z"],"location-arrow":[512,512,[],"f124","M444.52 3.52L28.74 195.42c-47.97 22.39-31.98 92.75 19.19 92.75h175.91v175.91c0 51.17 70.36 67.17 92.75 19.19l191.9-415.78c15.99-38.39-25.59-79.97-63.97-63.97z"],lock:[448,512,[],"f023","M400 224h-24v-72C376 68.2 307.8 0 224 0S72 68.2 72 152v72H48c-26.5 0-48 21.5-48 48v192c0 26.5 21.5 48 48 48h352c26.5 0 48-21.5 48-48V272c0-26.5-21.5-48-48-48zm-104 0H152v-72c0-39.7 32.3-72 72-72s72 32.3 72 72v72z"],"lock-open":[576,512,[],"f3c1","M423.5 0C339.5.3 272 69.5 272 153.5V224H48c-26.5 0-48 21.5-48 48v192c0 26.5 21.5 48 48 48h352c26.5 0 48-21.5 48-48V272c0-26.5-21.5-48-48-48h-48v-71.1c0-39.6 31.7-72.5 71.3-72.9 40-.4 72.7 32.1 72.7 72v80c0 13.3 10.7 24 24 24h32c13.3 0 24-10.7 24-24v-80C576 68 507.5-.3 423.5 0z"],"long-arrow-alt-down":[256,512,[],"f309","M168 345.941V44c0-6.627-5.373-12-12-12h-56c-6.627 0-12 5.373-12 12v301.941H41.941c-21.382 0-32.09 25.851-16.971 40.971l86.059 86.059c9.373 9.373 24.569 9.373 33.941 0l86.059-86.059c15.119-15.119 4.411-40.971-16.971-40.971H168z"],"long-arrow-alt-left":[448,512,[],"f30a","M134.059 296H436c6.627 0 12-5.373 12-12v-56c0-6.627-5.373-12-12-12H134.059v-46.059c0-21.382-25.851-32.09-40.971-16.971L7.029 239.029c-9.373 9.373-9.373 24.569 0 33.941l86.059 86.059c15.119 15.119 40.971 4.411 40.971-16.971V296z"],"long-arrow-alt-right":[448,512,[],"f30b","M313.941 216H12c-6.627 0-12 5.373-12 12v56c0 6.627 5.373 12 12 12h301.941v46.059c0 21.382 25.851 32.09 40.971 16.971l86.059-86.059c9.373-9.373 9.373-24.569 0-33.941l-86.059-86.059c-15.119-15.119-40.971-4.411-40.971 16.971V216z"],"long-arrow-alt-up":[256,512,[],"f30c","M88 166.059V468c0 6.627 5.373 12 12 12h56c6.627 0 12-5.373 12-12V166.059h46.059c21.382 0 32.09-25.851 16.971-40.971l-86.059-86.059c-9.373-9.373-24.569-9.373-33.941 0l-86.059 86.059c-15.119 15.119-4.411 40.971 16.971 40.971H88z"],"low-vision":[576,512,[],"f2a8","M569.344 231.631C512.96 135.949 407.81 72 288 72c-28.468 0-56.102 3.619-82.451 10.409L152.778 10.24c-7.601-10.858-22.564-13.5-33.423-5.9l-13.114 9.178c-10.86 7.601-13.502 22.566-5.9 33.426l43.131 58.395C89.449 131.73 40.228 174.683 6.682 231.581c-.01.017-.023.033-.034.05-8.765 14.875-8.964 33.528 0 48.739 38.5 65.332 99.742 115.862 172.859 141.349L55.316 244.302A272.194 272.194 0 0 1 83.61 208.39l119.4 170.58h.01l40.63 58.04a330.055 330.055 0 0 0 78.94 1.17l-189.98-271.4a277.628 277.628 0 0 1 38.777-21.563l251.836 356.544c7.601 10.858 22.564 13.499 33.423 5.9l13.114-9.178c10.86-7.601 13.502-22.567 5.9-33.426l-43.12-58.377-.007-.009c57.161-27.978 104.835-72.04 136.81-126.301a47.938 47.938 0 0 0 .001-48.739zM390.026 345.94l-19.066-27.23c24.682-32.567 27.711-76.353 8.8-111.68v.03c0 23.65-19.17 42.82-42.82 42.82-23.828 0-42.82-19.349-42.82-42.82 0-23.65 19.17-42.82 42.82-42.82h.03c-24.75-13.249-53.522-15.643-79.51-7.68l-19.068-27.237C253.758 123.306 270.488 120 288 120c75.162 0 136 60.826 136 136 0 34.504-12.833 65.975-33.974 89.94z"],"luggage-cart":[640,512,[],"f59d","M224 320h32V96h-32c-17.67 0-32 14.33-32 32v160c0 17.67 14.33 32 32 32zm352-32V128c0-17.67-14.33-32-32-32h-32v224h32c17.67 0 32-14.33 32-32zm48 96H128V16c0-8.84-7.16-16-16-16H16C7.16 0 0 7.16 0 16v32c0 8.84 7.16 16 16 16h48v368c0 8.84 7.16 16 16 16h82.94c-1.79 5.03-2.94 10.36-2.94 16 0 26.51 21.49 48 48 48s48-21.49 48-48c0-5.64-1.15-10.97-2.94-16h197.88c-1.79 5.03-2.94 10.36-2.94 16 0 26.51 21.49 48 48 48s48-21.49 48-48c0-5.64-1.15-10.97-2.94-16H624c8.84 0 16-7.16 16-16v-32c0-8.84-7.16-16-16-16zM480 96V48c0-26.51-21.49-48-48-48h-96c-26.51 0-48 21.49-48 48v272h192V96zm-48 0h-96V48h96v48z"],magic:[512,512,[],"f0d0","M224 96l16-32 32-16-32-16-16-32-16 32-32 16 32 16 16 32zM80 160l26.66-53.33L160 80l-53.34-26.67L80 0 53.34 53.33 0 80l53.34 26.67L80 160zm352 128l-26.66 53.33L352 368l53.34 26.67L432 448l26.66-53.33L512 368l-53.34-26.67L432 288zm70.62-193.77L417.77 9.38C411.53 3.12 403.34 0 395.15 0c-8.19 0-16.38 3.12-22.63 9.38L9.38 372.52c-12.5 12.5-12.5 32.76 0 45.25l84.85 84.85c6.25 6.25 14.44 9.37 22.62 9.37 8.19 0 16.38-3.12 22.63-9.37l363.14-363.15c12.5-12.48 12.5-32.75 0-45.24zM359.45 203.46l-50.91-50.91 86.6-86.6 50.91 50.91-86.6 86.6z"],magnet:[512,512,[],"f076","M164.07 148.1H12a12 12 0 0 1-12-12v-80a36 36 0 0 1 36-36h104a36 36 0 0 1 36 36v80a11.89 11.89 0 0 1-11.93 12zm347.93-12V56a36 36 0 0 0-36-36H372a36 36 0 0 0-36 36v80a12 12 0 0 0 12 12h152a11.89 11.89 0 0 0 12-11.9zm-164 44a12 12 0 0 0-12 12v52c0 128.1-160 127.9-160 0v-52a12 12 0 0 0-12-12H12.1a12 12 0 0 0-12 12.1c.1 21.4.6 40.3 0 53.3 0 150.6 136.17 246.6 256.75 246.6s255-96 255-246.7c-.6-12.8-.2-33 0-53.2a12 12 0 0 0-12-12.1z"],"mail-bulk":[576,512,[],"f674","M160 448c-25.6 0-51.2-22.4-64-32-64-44.8-83.2-60.8-96-70.4V480c0 17.67 14.33 32 32 32h256c17.67 0 32-14.33 32-32V345.6c-12.8 9.6-32 25.6-96 70.4-12.8 9.6-38.4 32-64 32zm128-192H32c-17.67 0-32 14.33-32 32v16c25.6 19.2 22.4 19.2 115.2 86.4 9.6 6.4 28.8 25.6 44.8 25.6s35.2-19.2 44.8-22.4c92.8-67.2 89.6-67.2 115.2-86.4V288c0-17.67-14.33-32-32-32zm256-96H224c-17.67 0-32 14.33-32 32v32h96c33.21 0 60.59 25.42 63.71 57.82l.29-.22V416h192c17.67 0 32-14.33 32-32V192c0-17.67-14.33-32-32-32zm-32 128h-64v-64h64v64zm-352-96c0-35.29 28.71-64 64-64h224V32c0-17.67-14.33-32-32-32H96C78.33 0 64 14.33 64 32v192h96v-32z"],male:[192,512,[],"f183","M96 0c35.346 0 64 28.654 64 64s-28.654 64-64 64-64-28.654-64-64S60.654 0 96 0m48 144h-11.36c-22.711 10.443-49.59 10.894-73.28 0H48c-26.51 0-48 21.49-48 48v136c0 13.255 10.745 24 24 24h16v136c0 13.255 10.745 24 24 24h64c13.255 0 24-10.745 24-24V352h16c13.255 0 24-10.745 24-24V192c0-26.51-21.49-48-48-48z"],map:[576,512,[],"f279","M0 117.66v346.32c0 11.32 11.43 19.06 21.94 14.86L160 416V32L20.12 87.95A32.006 32.006 0 0 0 0 117.66zM192 416l192 64V96L192 32v384zM554.06 33.16L416 96v384l139.88-55.95A31.996 31.996 0 0 0 576 394.34V48.02c0-11.32-11.43-19.06-21.94-14.86z"],"map-marked":[576,512,[],"f59f","M288 0c-69.59 0-126 56.41-126 126 0 56.26 82.35 158.8 113.9 196.02 6.39 7.54 17.82 7.54 24.2 0C331.65 284.8 414 182.26 414 126 414 56.41 357.59 0 288 0zM20.12 215.95A32.006 32.006 0 0 0 0 245.66v250.32c0 11.32 11.43 19.06 21.94 14.86L160 448V214.92c-8.84-15.98-16.07-31.54-21.25-46.42L20.12 215.95zM288 359.67c-14.07 0-27.38-6.18-36.51-16.96-19.66-23.2-40.57-49.62-59.49-76.72v182l192 64V266c-18.92 27.09-39.82 53.52-59.49 76.72-9.13 10.77-22.44 16.95-36.51 16.95zm266.06-198.51L416 224v288l139.88-55.95A31.996 31.996 0 0 0 576 426.34V176.02c0-11.32-11.43-19.06-21.94-14.86z"],"map-marked-alt":[576,512,[],"f5a0","M288 0c-69.59 0-126 56.41-126 126 0 56.26 82.35 158.8 113.9 196.02 6.39 7.54 17.82 7.54 24.2 0C331.65 284.8 414 182.26 414 126 414 56.41 357.59 0 288 0zm0 168c-23.2 0-42-18.8-42-42s18.8-42 42-42 42 18.8 42 42-18.8 42-42 42zM20.12 215.95A32.006 32.006 0 0 0 0 245.66v250.32c0 11.32 11.43 19.06 21.94 14.86L160 448V214.92c-8.84-15.98-16.07-31.54-21.25-46.42L20.12 215.95zM288 359.67c-14.07 0-27.38-6.18-36.51-16.96-19.66-23.2-40.57-49.62-59.49-76.72v182l192 64V266c-18.92 27.09-39.82 53.52-59.49 76.72-9.13 10.77-22.44 16.95-36.51 16.95zm266.06-198.51L416 224v288l139.88-55.95A31.996 31.996 0 0 0 576 426.34V176.02c0-11.32-11.43-19.06-21.94-14.86z"],"map-marker":[384,512,[],"f041","M172.268 501.67C26.97 291.031 0 269.413 0 192 0 85.961 85.961 0 192 0s192 85.961 192 192c0 77.413-26.97 99.031-172.268 309.67-9.535 13.774-29.93 13.773-39.464 0z"],"map-marker-alt":[384,512,[],"f3c5","M172.268 501.67C26.97 291.031 0 269.413 0 192 0 85.961 85.961 0 192 0s192 85.961 192 192c0 77.413-26.97 99.031-172.268 309.67-9.535 13.774-29.93 13.773-39.464 0zM192 272c44.183 0 80-35.817 80-80s-35.817-80-80-80-80 35.817-80 80 35.817 80 80 80z"],"map-pin":[288,512,[],"f276","M112 316.94v156.69l22.02 33.02c4.75 7.12 15.22 7.12 19.97 0L176 473.63V316.94c-10.39 1.92-21.06 3.06-32 3.06s-21.61-1.14-32-3.06zM144 0C64.47 0 0 64.47 0 144s64.47 144 144 144 144-64.47 144-144S223.53 0 144 0zm0 76c-37.5 0-68 30.5-68 68 0 6.62-5.38 12-12 12s-12-5.38-12-12c0-50.73 41.28-92 92-92 6.62 0 12 5.38 12 12s-5.38 12-12 12z"],"map-signs":[512,512,[],"f277","M507.31 84.69L464 41.37c-6-6-14.14-9.37-22.63-9.37H288V16c0-8.84-7.16-16-16-16h-32c-8.84 0-16 7.16-16 16v16H56c-13.25 0-24 10.75-24 24v80c0 13.25 10.75 24 24 24h385.37c8.49 0 16.62-3.37 22.63-9.37l43.31-43.31c6.25-6.26 6.25-16.38 0-22.63zM224 496c0 8.84 7.16 16 16 16h32c8.84 0 16-7.16 16-16V384h-64v112zm232-272H288v-32h-64v32H70.63c-8.49 0-16.62 3.37-22.63 9.37L4.69 276.69c-6.25 6.25-6.25 16.38 0 22.63L48 342.63c6 6 14.14 9.37 22.63 9.37H456c13.25 0 24-10.75 24-24v-80c0-13.25-10.75-24-24-24z"],marker:[512,512,[],"f5a1","M93.95 290.03A327.038 327.038 0 0 0 .17 485.11l-.03.23c-1.7 15.28 11.21 28.2 26.49 26.51a327.02 327.02 0 0 0 195.34-93.8l75.4-75.4-128.02-128.02-75.4 75.4zM485.49 26.51c-35.35-35.35-92.67-35.35-128.02 0l-21.76 21.76-36.56-36.55c-15.62-15.62-40.95-15.62-56.56 0L138.47 115.84c-6.25 6.25-6.25 16.38 0 22.63l22.62 22.62c6.25 6.25 16.38 6.25 22.63 0l87.15-87.15 19.59 19.59L191.98 192 320 320.02l165.49-165.49c35.35-35.35 35.35-92.66 0-128.02z"],mars:[384,512,[],"f222","M372 64h-79c-10.7 0-16 12.9-8.5 20.5l16.9 16.9-80.7 80.7c-22.2-14-48.5-22.1-76.7-22.1C64.5 160 0 224.5 0 304s64.5 144 144 144 144-64.5 144-144c0-28.2-8.1-54.5-22.1-76.7l80.7-80.7 16.9 16.9c7.6 7.6 20.5 2.2 20.5-8.5V76c0-6.6-5.4-12-12-12zM144 384c-44.1 0-80-35.9-80-80s35.9-80 80-80 80 35.9 80 80-35.9 80-80 80z"],"mars-double":[512,512,[],"f227","M340 0h-79c-10.7 0-16 12.9-8.5 20.5l16.9 16.9-48.7 48.7C198.5 72.1 172.2 64 144 64 64.5 64 0 128.5 0 208s64.5 144 144 144 144-64.5 144-144c0-28.2-8.1-54.5-22.1-76.7l48.7-48.7 16.9 16.9c2.4 2.4 5.5 3.5 8.4 3.5 6.2 0 12.1-4.8 12.1-12V12c0-6.6-5.4-12-12-12zM144 288c-44.1 0-80-35.9-80-80s35.9-80 80-80 80 35.9 80 80-35.9 80-80 80zm356-128.1h-79c-10.7 0-16 12.9-8.5 20.5l16.9 16.9-48.7 48.7c-18.2-11.4-39-18.9-61.5-21.3-2.1 21.8-8.2 43.3-18.4 63.3 1.1 0 2.2-.1 3.2-.1 44.1 0 80 35.9 80 80s-35.9 80-80 80-80-35.9-80-80c0-1.1 0-2.2.1-3.2-20 10.2-41.5 16.4-63.3 18.4C168.4 455.6 229.6 512 304 512c79.5 0 144-64.5 144-144 0-28.2-8.1-54.5-22.1-76.7l48.7-48.7 16.9 16.9c2.4 2.4 5.4 3.5 8.4 3.5 6.2 0 12.1-4.8 12.1-12v-79c0-6.7-5.4-12.1-12-12.1z"],"mars-stroke":[384,512,[],"f229","M372 64h-79c-10.7 0-16 12.9-8.5 20.5l16.9 16.9-17.5 17.5-14.1-14.1c-4.7-4.7-12.3-4.7-17 0L224.5 133c-4.7 4.7-4.7 12.3 0 17l14.1 14.1-18 18c-22.2-14-48.5-22.1-76.7-22.1C64.5 160 0 224.5 0 304s64.5 144 144 144 144-64.5 144-144c0-28.2-8.1-54.5-22.1-76.7l18-18 14.1 14.1c4.7 4.7 12.3 4.7 17 0l28.3-28.3c4.7-4.7 4.7-12.3 0-17L329.2 164l17.5-17.5 16.9 16.9c7.6 7.6 20.5 2.2 20.5-8.5V76c-.1-6.6-5.5-12-12.1-12zM144 384c-44.1 0-80-35.9-80-80s35.9-80 80-80 80 35.9 80 80-35.9 80-80 80z"],"mars-stroke-h":[480,512,[],"f22b","M476.2 247.5l-55.9-55.9c-7.6-7.6-20.5-2.2-20.5 8.5V224H376v-20c0-6.6-5.4-12-12-12h-40c-6.6 0-12 5.4-12 12v20h-27.6c-5.8-25.6-18.7-49.9-38.6-69.8C189.6 98 98.4 98 42.2 154.2c-56.2 56.2-56.2 147.4 0 203.6 56.2 56.2 147.4 56.2 203.6 0 19.9-19.9 32.8-44.2 38.6-69.8H312v20c0 6.6 5.4 12 12 12h40c6.6 0 12-5.4 12-12v-20h23.9v23.9c0 10.7 12.9 16 20.5 8.5l55.9-55.9c4.6-4.7 4.6-12.3-.1-17zm-275.6 65.1c-31.2 31.2-81.9 31.2-113.1 0-31.2-31.2-31.2-81.9 0-113.1 31.2-31.2 81.9-31.2 113.1 0 31.2 31.1 31.2 81.9 0 113.1z"],"mars-stroke-v":[288,512,[],"f22a","M245.8 234.2c-19.9-19.9-44.2-32.8-69.8-38.6v-25.4h20c6.6 0 12-5.4 12-12v-40c0-6.6-5.4-12-12-12h-20V81.4h23.9c10.7 0 16-12.9 8.5-20.5L152.5 5.1c-4.7-4.7-12.3-4.7-17 0L79.6 61c-7.6 7.6-2.2 20.5 8.5 20.5H112v24.7H92c-6.6 0-12 5.4-12 12v40c0 6.6 5.4 12 12 12h20v25.4c-25.6 5.8-49.9 18.7-69.8 38.6-56.2 56.2-56.2 147.4 0 203.6 56.2 56.2 147.4 56.2 203.6 0 56.3-56.2 56.3-147.4 0-203.6zm-45.2 158.4c-31.2 31.2-81.9 31.2-113.1 0-31.2-31.2-31.2-81.9 0-113.1 31.2-31.2 81.9-31.2 113.1 0 31.2 31.1 31.2 81.9 0 113.1z"],mask:[640,512,[],"f6fa","M320.67 64c-442.6 0-357.57 384-158.46 384 39.9 0 77.47-20.69 101.42-55.86l25.73-37.79c15.66-22.99 46.97-22.99 62.63 0l25.73 37.79C401.66 427.31 439.23 448 479.13 448c189.86 0 290.63-384-158.46-384zM184 308.36c-41.06 0-67.76-25.66-80.08-41.05-5.23-6.53-5.23-16.09 0-22.63 12.32-15.4 39.01-41.05 80.08-41.05s67.76 25.66 80.08 41.05c5.23 6.53 5.23 16.09 0 22.63-12.32 15.4-39.02 41.05-80.08 41.05zm272 0c-41.06 0-67.76-25.66-80.08-41.05-5.23-6.53-5.23-16.09 0-22.63 12.32-15.4 39.01-41.05 80.08-41.05s67.76 25.66 80.08 41.05c5.23 6.53 5.23 16.09 0 22.63-12.32 15.4-39.02 41.05-80.08 41.05z"],medal:[512,512,[],"f5a2","M223.75 130.75L154.62 15.54A31.997 31.997 0 0 0 127.18 0H16.03C3.08 0-4.5 14.57 2.92 25.18l111.27 158.96c29.72-27.77 67.52-46.83 109.56-53.39zM495.97 0H384.82c-11.24 0-21.66 5.9-27.44 15.54l-69.13 115.21c42.04 6.56 79.84 25.62 109.56 53.38L509.08 25.18C516.5 14.57 508.92 0 495.97 0zM256 160c-97.2 0-176 78.8-176 176s78.8 176 176 176 176-78.8 176-176-78.8-176-176-176zm92.52 157.26l-37.93 36.96 8.97 52.22c1.6 9.36-8.26 16.51-16.65 12.09L256 393.88l-46.9 24.65c-8.4 4.45-18.25-2.74-16.65-12.09l8.97-52.22-37.93-36.96c-6.82-6.64-3.05-18.23 6.35-19.59l52.43-7.64 23.43-47.52c2.11-4.28 6.19-6.39 10.28-6.39 4.11 0 8.22 2.14 10.33 6.39l23.43 47.52 52.43 7.64c9.4 1.36 13.17 12.95 6.35 19.59z"],medkit:[512,512,[],"f0fa","M96 480h320V128h-32V80c0-26.51-21.49-48-48-48H176c-26.51 0-48 21.49-48 48v48H96v352zm96-384h128v32H192V96zm320 80v256c0 26.51-21.49 48-48 48h-16V128h16c26.51 0 48 21.49 48 48zM64 480H48c-26.51 0-48-21.49-48-48V176c0-26.51 21.49-48 48-48h16v352zm288-208v32c0 8.837-7.163 16-16 16h-48v48c0 8.837-7.163 16-16 16h-32c-8.837 0-16-7.163-16-16v-48h-48c-8.837 0-16-7.163-16-16v-32c0-8.837 7.163-16 16-16h48v-48c0-8.837 7.163-16 16-16h32c8.837 0 16 7.163 16 16v48h48c8.837 0 16 7.163 16 16z"],meh:[496,512,[],"f11a","M248 8C111 8 0 119 0 256s111 248 248 248 248-111 248-248S385 8 248 8zm-80 168c17.7 0 32 14.3 32 32s-14.3 32-32 32-32-14.3-32-32 14.3-32 32-32zm176 192H152c-21.2 0-21.2-32 0-32h192c21.2 0 21.2 32 0 32zm-16-128c-17.7 0-32-14.3-32-32s14.3-32 32-32 32 14.3 32 32-14.3 32-32 32z"],"meh-blank":[496,512,[],"f5a4","M248 8C111 8 0 119 0 256s111 248 248 248 248-111 248-248S385 8 248 8zm-80 232c-17.7 0-32-14.3-32-32s14.3-32 32-32 32 14.3 32 32-14.3 32-32 32zm160 0c-17.7 0-32-14.3-32-32s14.3-32 32-32 32 14.3 32 32-14.3 32-32 32z"],"meh-rolling-eyes":[496,512,[],"f5a5","M248 8C111 8 0 119 0 256s111 248 248 248 248-111 248-248S385 8 248 8zM88 224c0-24.3 13.7-45.2 33.6-56-.7 2.6-1.6 5.2-1.6 8 0 17.7 14.3 32 32 32s32-14.3 32-32c0-2.8-.9-5.4-1.6-8 19.9 10.8 33.6 31.7 33.6 56 0 35.3-28.7 64-64 64s-64-28.7-64-64zm224 176H184c-21.2 0-21.2-32 0-32h128c21.2 0 21.2 32 0 32zm32-112c-35.3 0-64-28.7-64-64 0-24.3 13.7-45.2 33.6-56-.7 2.6-1.6 5.2-1.6 8 0 17.7 14.3 32 32 32s32-14.3 32-32c0-2.8-.9-5.4-1.6-8 19.9 10.8 33.6 31.7 33.6 56 0 35.3-28.7 64-64 64z"],memory:[640,512,[],"f538","M640 130.94V96c0-17.67-14.33-32-32-32H32C14.33 64 0 78.33 0 96v34.94c18.6 6.61 32 24.19 32 45.06s-13.4 38.45-32 45.06V320h640v-98.94c-18.6-6.61-32-24.19-32-45.06s13.4-38.45 32-45.06zM224 256h-64V128h64v128zm128 0h-64V128h64v128zm128 0h-64V128h64v128zM0 448h64v-26.67c0-8.84 7.16-16 16-16s16 7.16 16 16V448h128v-26.67c0-8.84 7.16-16 16-16s16 7.16 16 16V448h128v-26.67c0-8.84 7.16-16 16-16s16 7.16 16 16V448h128v-26.67c0-8.84 7.16-16 16-16s16 7.16 16 16V448h64v-96H0v96z"],menorah:[640,512,[],"f676","M144 128h-32c-8.84 0-16 7.16-16 16v144h64V144c0-8.84-7.16-16-16-16zm96 0h-32c-8.84 0-16 7.16-16 16v144h64V144c0-8.84-7.16-16-16-16zm192 0h-32c-8.84 0-16 7.16-16 16v144h64V144c0-8.84-7.16-16-16-16zm96 0h-32c-8.84 0-16 7.16-16 16v144h64V144c0-8.84-7.16-16-16-16zm80-32c17.67 0 32-14.33 32-32S608 0 608 0s-32 46.33-32 64 14.33 32 32 32zm-96 0c17.67 0 32-14.33 32-32S512 0 512 0s-32 46.33-32 64 14.33 32 32 32zm-96 0c17.67 0 32-14.33 32-32S416 0 416 0s-32 46.33-32 64 14.33 32 32 32zm-96 0c17.67 0 32-14.33 32-32S320 0 320 0s-32 46.33-32 64 14.33 32 32 32zm-96 0c17.67 0 32-14.33 32-32S224 0 224 0s-32 46.33-32 64 14.33 32 32 32zm-96 0c17.67 0 32-14.33 32-32S128 0 128 0 96 46.33 96 64s14.33 32 32 32zm-96 0c17.67 0 32-14.33 32-32S32 0 32 0 0 46.33 0 64s14.33 32 32 32zm544 192c0 17.67-14.33 32-32 32H352V144c0-8.84-7.16-16-16-16h-32c-8.84 0-16 7.16-16 16v176H96c-17.67 0-32-14.33-32-32V144c0-8.84-7.16-16-16-16H16c-8.84 0-16 7.16-16 16v144c0 53.02 42.98 96 96 96h192v64H112c-8.84 0-16 7.16-16 16v32c0 8.84 7.16 16 16 16h416c8.84 0 16-7.16 16-16v-32c0-8.84-7.16-16-16-16H352v-64h192c53.02 0 96-42.98 96-96V144c0-8.84-7.16-16-16-16h-32c-8.84 0-16 7.16-16 16v144z"],mercury:[288,512,[],"f223","M288 208c0-44.2-19.9-83.7-51.2-110.1 2.5-1.8 4.9-3.8 7.2-5.8 24.7-21.2 39.8-48.8 43.2-78.8.9-7.1-4.7-13.3-11.9-13.3h-40.5C229 0 224.1 4.1 223 9.8c-2.4 12.5-9.6 24.3-20.7 33.8C187 56.8 166.3 64 144 64s-43-7.2-58.4-20.4C74.5 34.1 67.4 22.3 64.9 9.8 63.8 4.1 58.9 0 53.2 0H12.7C5.5 0-.1 6.2.8 13.3 4.2 43.4 19.2 71 44 92.2c2.3 2 4.7 3.9 7.2 5.8C19.9 124.3 0 163.8 0 208c0 68.5 47.9 125.9 112 140.4V400H76c-6.6 0-12 5.4-12 12v40c0 6.6 5.4 12 12 12h36v36c0 6.6 5.4 12 12 12h40c6.6 0 12-5.4 12-12v-36h36c6.6 0 12-5.4 12-12v-40c0-6.6-5.4-12-12-12h-36v-51.6c64.1-14.5 112-71.9 112-140.4zm-224 0c0-44.1 35.9-80 80-80s80 35.9 80 80-35.9 80-80 80-80-35.9-80-80z"],meteor:[512,512,[],"f753","M511.328,20.8027c-11.60759,38.70264-34.30724,111.70173-61.30311,187.70077,6.99893,2.09372,13.4042,4,18.60653,5.59368a16.06158,16.06158,0,0,1,9.49854,22.906c-22.106,42.29635-82.69047,152.795-142.47819,214.40356-.99984,1.09373-1.99969,2.5-2.99954,3.49995A194.83046,194.83046,0,1,1,57.085,179.41009c.99985-1,2.40588-2,3.49947-3,61.59994-59.90549,171.97367-120.40473,214.37343-142.4982a16.058,16.058,0,0,1,22.90274,9.49988c1.59351,5.09368,3.49947,11.5936,5.5929,18.59351C379.34818,35.00565,452.43074,12.30281,491.12794.70921A16.18325,16.18325,0,0,1,511.328,20.8027ZM319.951,320.00207A127.98041,127.98041,0,1,0,191.97061,448.00046,127.97573,127.97573,0,0,0,319.951,320.00207Zm-127.98041-31.9996a31.9951,31.9951,0,1,1-31.9951-31.9996A31.959,31.959,0,0,1,191.97061,288.00247Zm31.9951,79.999a15.99755,15.99755,0,1,1-15.99755-15.9998A16.04975,16.04975,0,0,1,223.96571,368.00147Z"],microchip:[512,512,[],"f2db","M416 48v416c0 26.51-21.49 48-48 48H144c-26.51 0-48-21.49-48-48V48c0-26.51 21.49-48 48-48h224c26.51 0 48 21.49 48 48zm96 58v12a6 6 0 0 1-6 6h-18v6a6 6 0 0 1-6 6h-42V88h42a6 6 0 0 1 6 6v6h18a6 6 0 0 1 6 6zm0 96v12a6 6 0 0 1-6 6h-18v6a6 6 0 0 1-6 6h-42v-48h42a6 6 0 0 1 6 6v6h18a6 6 0 0 1 6 6zm0 96v12a6 6 0 0 1-6 6h-18v6a6 6 0 0 1-6 6h-42v-48h42a6 6 0 0 1 6 6v6h18a6 6 0 0 1 6 6zm0 96v12a6 6 0 0 1-6 6h-18v6a6 6 0 0 1-6 6h-42v-48h42a6 6 0 0 1 6 6v6h18a6 6 0 0 1 6 6zM30 376h42v48H30a6 6 0 0 1-6-6v-6H6a6 6 0 0 1-6-6v-12a6 6 0 0 1 6-6h18v-6a6 6 0 0 1 6-6zm0-96h42v48H30a6 6 0 0 1-6-6v-6H6a6 6 0 0 1-6-6v-12a6 6 0 0 1 6-6h18v-6a6 6 0 0 1 6-6zm0-96h42v48H30a6 6 0 0 1-6-6v-6H6a6 6 0 0 1-6-6v-12a6 6 0 0 1 6-6h18v-6a6 6 0 0 1 6-6zm0-96h42v48H30a6 6 0 0 1-6-6v-6H6a6 6 0 0 1-6-6v-12a6 6 0 0 1 6-6h18v-6a6 6 0 0 1 6-6z"],microphone:[352,512,[],"f130","M176 352c53.02 0 96-42.98 96-96V96c0-53.02-42.98-96-96-96S80 42.98 80 96v160c0 53.02 42.98 96 96 96zm160-160h-16c-8.84 0-16 7.16-16 16v48c0 74.8-64.49 134.82-140.79 127.38C96.71 376.89 48 317.11 48 250.3V208c0-8.84-7.16-16-16-16H16c-8.84 0-16 7.16-16 16v40.16c0 89.64 63.97 169.55 152 181.69V464H96c-8.84 0-16 7.16-16 16v16c0 8.84 7.16 16 16 16h160c8.84 0 16-7.16 16-16v-16c0-8.84-7.16-16-16-16h-56v-33.77C285.71 418.47 352 344.9 352 256v-48c0-8.84-7.16-16-16-16z"],"microphone-alt":[352,512,[],"f3c9","M336 192h-16c-8.84 0-16 7.16-16 16v48c0 74.8-64.49 134.82-140.79 127.38C96.71 376.89 48 317.11 48 250.3V208c0-8.84-7.16-16-16-16H16c-8.84 0-16 7.16-16 16v40.16c0 89.64 63.97 169.55 152 181.69V464H96c-8.84 0-16 7.16-16 16v16c0 8.84 7.16 16 16 16h160c8.84 0 16-7.16 16-16v-16c0-8.84-7.16-16-16-16h-56v-33.77C285.71 418.47 352 344.9 352 256v-48c0-8.84-7.16-16-16-16zM176 352c53.02 0 96-42.98 96-96h-85.33c-5.89 0-10.67-3.58-10.67-8v-16c0-4.42 4.78-8 10.67-8H272v-32h-85.33c-5.89 0-10.67-3.58-10.67-8v-16c0-4.42 4.78-8 10.67-8H272v-32h-85.33c-5.89 0-10.67-3.58-10.67-8v-16c0-4.42 4.78-8 10.67-8H272c0-53.02-42.98-96-96-96S80 42.98 80 96v160c0 53.02 42.98 96 96 96z"],"microphone-alt-slash":[640,512,[],"f539","M633.82 458.1L476.26 336.33C488.74 312.21 496 284.98 496 256v-48c0-8.84-7.16-16-16-16h-16c-8.84 0-16 7.16-16 16v48c0 17.92-3.96 34.8-10.72 50.2l-26.55-20.52c3.1-9.4 5.28-19.22 5.28-29.67h-43.67l-41.4-32H416v-32h-85.33c-5.89 0-10.67-3.58-10.67-8v-16c0-4.42 4.78-8 10.67-8H416v-32h-85.33c-5.89 0-10.67-3.58-10.67-8v-16c0-4.42 4.78-8 10.67-8H416c0-53.02-42.98-96-96-96s-96 42.98-96 96v45.36L45.47 3.37C38.49-2.05 28.43-.8 23.01 6.18L3.37 31.45C-2.05 38.42-.8 48.47 6.18 53.9l588.36 454.73c6.98 5.43 17.03 4.17 22.46-2.81l19.64-25.27c5.41-6.97 4.16-17.02-2.82-22.45zM400 464h-56v-33.78c11.71-1.62 23.1-4.28 33.96-8.08l-50.4-38.96c-6.71.4-13.41.87-20.35.2-55.85-5.45-98.74-48.63-111.18-101.85L144 241.31v6.85c0 89.64 63.97 169.55 152 181.69V464h-56c-8.84 0-16 7.16-16 16v16c0 8.84 7.16 16 16 16h160c8.84 0 16-7.16 16-16v-16c0-8.84-7.16-16-16-16z"],"microphone-slash":[640,512,[],"f131","M633.82 458.1l-157.8-121.96C488.61 312.13 496 285.01 496 256v-48c0-8.84-7.16-16-16-16h-16c-8.84 0-16 7.16-16 16v48c0 17.92-3.96 34.8-10.72 50.2l-26.55-20.52c3.1-9.4 5.28-19.22 5.28-29.67V96c0-53.02-42.98-96-96-96s-96 42.98-96 96v45.36L45.47 3.37C38.49-2.05 28.43-.8 23.01 6.18L3.37 31.45C-2.05 38.42-.8 48.47 6.18 53.9l588.36 454.73c6.98 5.43 17.03 4.17 22.46-2.81l19.64-25.27c5.41-6.97 4.16-17.02-2.82-22.45zM400 464h-56v-33.77c11.66-1.6 22.85-4.54 33.67-8.31l-50.11-38.73c-6.71.4-13.41.87-20.35.2-55.85-5.45-98.74-48.63-111.18-101.85L144 241.31v6.85c0 89.64 63.97 169.55 152 181.69V464h-56c-8.84 0-16 7.16-16 16v16c0 8.84 7.16 16 16 16h160c8.84 0 16-7.16 16-16v-16c0-8.84-7.16-16-16-16z"],microscope:[512,512,[],"f610","M160 320h12v16c0 8.84 7.16 16 16 16h40c8.84 0 16-7.16 16-16v-16h12c17.67 0 32-14.33 32-32V64c0-17.67-14.33-32-32-32V16c0-8.84-7.16-16-16-16h-64c-8.84 0-16 7.16-16 16v16c-17.67 0-32 14.33-32 32v224c0 17.67 14.33 32 32 32zm304 128h-1.29C493.24 413.99 512 369.2 512 320c0-105.88-86.12-192-192-192v64c70.58 0 128 57.42 128 128s-57.42 128-128 128H48c-26.51 0-48 21.49-48 48 0 8.84 7.16 16 16 16h480c8.84 0 16-7.16 16-16 0-26.51-21.49-48-48-48zm-360-32h208c4.42 0 8-3.58 8-8v-16c0-4.42-3.58-8-8-8H104c-4.42 0-8 3.58-8 8v16c0 4.42 3.58 8 8 8z"],minus:[448,512,[],"f068","M416 208H32c-17.67 0-32 14.33-32 32v32c0 17.67 14.33 32 32 32h384c17.67 0 32-14.33 32-32v-32c0-17.67-14.33-32-32-32z"],"minus-circle":[512,512,[],"f056","M256 8C119 8 8 119 8 256s111 248 248 248 248-111 248-248S393 8 256 8zM124 296c-6.6 0-12-5.4-12-12v-56c0-6.6 5.4-12 12-12h264c6.6 0 12 5.4 12 12v56c0 6.6-5.4 12-12 12H124z"],"minus-square":[448,512,[],"f146","M400 32H48C21.5 32 0 53.5 0 80v352c0 26.5 21.5 48 48 48h352c26.5 0 48-21.5 48-48V80c0-26.5-21.5-48-48-48zM92 296c-6.6 0-12-5.4-12-12v-56c0-6.6 5.4-12 12-12h264c6.6 0 12 5.4 12 12v56c0 6.6-5.4 12-12 12H92z"],mitten:[448,512,[],"f7b5","M368 416H48c-8.8 0-16 7.2-16 16v64c0 8.8 7.2 16 16 16h320c8.8 0 16-7.2 16-16v-64c0-8.8-7.2-16-16-16zm57-209.1c-27.2-22.6-67.5-19-90.1 8.2l-20.9 25-29.6-128.4c-18-77.5-95.4-125.9-172.8-108C34.2 21.6-14.2 98.9 3.7 176.4L51.6 384h309l72.5-87c22.7-27.2 19-67.5-8.1-90.1z"],mobile:[320,512,[],"f10b","M272 0H48C21.5 0 0 21.5 0 48v416c0 26.5 21.5 48 48 48h224c26.5 0 48-21.5 48-48V48c0-26.5-21.5-48-48-48zM160 480c-17.7 0-32-14.3-32-32s14.3-32 32-32 32 14.3 32 32-14.3 32-32 32z"],"mobile-alt":[320,512,[],"f3cd","M272 0H48C21.5 0 0 21.5 0 48v416c0 26.5 21.5 48 48 48h224c26.5 0 48-21.5 48-48V48c0-26.5-21.5-48-48-48zM160 480c-17.7 0-32-14.3-32-32s14.3-32 32-32 32 14.3 32 32-14.3 32-32 32zm112-108c0 6.6-5.4 12-12 12H60c-6.6 0-12-5.4-12-12V60c0-6.6 5.4-12 12-12h200c6.6 0 12 5.4 12 12v312z"],"money-bill":[640,512,[],"f0d6","M608 64H32C14.33 64 0 78.33 0 96v320c0 17.67 14.33 32 32 32h576c17.67 0 32-14.33 32-32V96c0-17.67-14.33-32-32-32zM48 400v-64c35.35 0 64 28.65 64 64H48zm0-224v-64h64c0 35.35-28.65 64-64 64zm272 176c-44.19 0-80-42.99-80-96 0-53.02 35.82-96 80-96s80 42.98 80 96c0 53.03-35.83 96-80 96zm272 48h-64c0-35.35 28.65-64 64-64v64zm0-224c-35.35 0-64-28.65-64-64h64v64z"],"money-bill-alt":[640,512,[],"f3d1","M352 288h-16v-88c0-4.42-3.58-8-8-8h-13.58c-4.74 0-9.37 1.4-13.31 4.03l-15.33 10.22a7.994 7.994 0 0 0-2.22 11.09l8.88 13.31a7.994 7.994 0 0 0 11.09 2.22l.47-.31V288h-16c-4.42 0-8 3.58-8 8v16c0 4.42 3.58 8 8 8h64c4.42 0 8-3.58 8-8v-16c0-4.42-3.58-8-8-8zM608 64H32C14.33 64 0 78.33 0 96v320c0 17.67 14.33 32 32 32h576c17.67 0 32-14.33 32-32V96c0-17.67-14.33-32-32-32zM48 400v-64c35.35 0 64 28.65 64 64H48zm0-224v-64h64c0 35.35-28.65 64-64 64zm272 192c-53.02 0-96-50.15-96-112 0-61.86 42.98-112 96-112s96 50.14 96 112c0 61.87-43 112-96 112zm272 32h-64c0-35.35 28.65-64 64-64v64zm0-224c-35.35 0-64-28.65-64-64h64v64z"],"money-bill-wave":[640,512,[],"f53a","M621.16 54.46C582.37 38.19 543.55 32 504.75 32c-123.17-.01-246.33 62.34-369.5 62.34-30.89 0-61.76-3.92-92.65-13.72-3.47-1.1-6.95-1.62-10.35-1.62C15.04 79 0 92.32 0 110.81v317.26c0 12.63 7.23 24.6 18.84 29.46C57.63 473.81 96.45 480 135.25 480c123.17 0 246.34-62.35 369.51-62.35 30.89 0 61.76 3.92 92.65 13.72 3.47 1.1 6.95 1.62 10.35 1.62 17.21 0 32.25-13.32 32.25-31.81V83.93c-.01-12.64-7.24-24.6-18.85-29.47zM48 132.22c20.12 5.04 41.12 7.57 62.72 8.93C104.84 170.54 79 192.69 48 192.69v-60.47zm0 285v-47.78c34.37 0 62.18 27.27 63.71 61.4-22.53-1.81-43.59-6.31-63.71-13.62zM320 352c-44.19 0-80-42.99-80-96 0-53.02 35.82-96 80-96s80 42.98 80 96c0 53.03-35.83 96-80 96zm272 27.78c-17.52-4.39-35.71-6.85-54.32-8.44 5.87-26.08 27.5-45.88 54.32-49.28v57.72zm0-236.11c-30.89-3.91-54.86-29.7-55.81-61.55 19.54 2.17 38.09 6.23 55.81 12.66v48.89z"],"money-bill-wave-alt":[640,512,[],"f53b","M621.16 54.46C582.37 38.19 543.55 32 504.75 32c-123.17-.01-246.33 62.34-369.5 62.34-30.89 0-61.76-3.92-92.65-13.72-3.47-1.1-6.95-1.62-10.35-1.62C15.04 79 0 92.32 0 110.81v317.26c0 12.63 7.23 24.6 18.84 29.46C57.63 473.81 96.45 480 135.25 480c123.17 0 246.34-62.35 369.51-62.35 30.89 0 61.76 3.92 92.65 13.72 3.47 1.1 6.95 1.62 10.35 1.62 17.21 0 32.25-13.32 32.25-31.81V83.93c-.01-12.64-7.24-24.6-18.85-29.47zM320 352c-44.19 0-80-42.99-80-96 0-53.02 35.82-96 80-96s80 42.98 80 96c0 53.03-35.83 96-80 96z"],"money-check":[640,512,[],"f53c","M0 448c0 17.67 14.33 32 32 32h576c17.67 0 32-14.33 32-32V128H0v320zm448-208c0-8.84 7.16-16 16-16h96c8.84 0 16 7.16 16 16v32c0 8.84-7.16 16-16 16h-96c-8.84 0-16-7.16-16-16v-32zm0 120c0-4.42 3.58-8 8-8h112c4.42 0 8 3.58 8 8v16c0 4.42-3.58 8-8 8H456c-4.42 0-8-3.58-8-8v-16zM64 264c0-4.42 3.58-8 8-8h304c4.42 0 8 3.58 8 8v16c0 4.42-3.58 8-8 8H72c-4.42 0-8-3.58-8-8v-16zm0 96c0-4.42 3.58-8 8-8h176c4.42 0 8 3.58 8 8v16c0 4.42-3.58 8-8 8H72c-4.42 0-8-3.58-8-8v-16zM624 32H16C7.16 32 0 39.16 0 48v48h640V48c0-8.84-7.16-16-16-16z"],"money-check-alt":[640,512,[],"f53d","M608 32H32C14.33 32 0 46.33 0 64v384c0 17.67 14.33 32 32 32h576c17.67 0 32-14.33 32-32V64c0-17.67-14.33-32-32-32zM176 327.88V344c0 4.42-3.58 8-8 8h-16c-4.42 0-8-3.58-8-8v-16.29c-11.29-.58-22.27-4.52-31.37-11.35-3.9-2.93-4.1-8.77-.57-12.14l11.75-11.21c2.77-2.64 6.89-2.76 10.13-.73 3.87 2.42 8.26 3.72 12.82 3.72h28.11c6.5 0 11.8-5.92 11.8-13.19 0-5.95-3.61-11.19-8.77-12.73l-45-13.5c-18.59-5.58-31.58-23.42-31.58-43.39 0-24.52 19.05-44.44 42.67-45.07V152c0-4.42 3.58-8 8-8h16c4.42 0 8 3.58 8 8v16.29c11.29.58 22.27 4.51 31.37 11.35 3.9 2.93 4.1 8.77.57 12.14l-11.75 11.21c-2.77 2.64-6.89 2.76-10.13.73-3.87-2.43-8.26-3.72-12.82-3.72h-28.11c-6.5 0-11.8 5.92-11.8 13.19 0 5.95 3.61 11.19 8.77 12.73l45 13.5c18.59 5.58 31.58 23.42 31.58 43.39 0 24.53-19.05 44.44-42.67 45.07zM416 312c0 4.42-3.58 8-8 8H296c-4.42 0-8-3.58-8-8v-16c0-4.42 3.58-8 8-8h112c4.42 0 8 3.58 8 8v16zm160 0c0 4.42-3.58 8-8 8h-80c-4.42 0-8-3.58-8-8v-16c0-4.42 3.58-8 8-8h80c4.42 0 8 3.58 8 8v16zm0-96c0 4.42-3.58 8-8 8H296c-4.42 0-8-3.58-8-8v-16c0-4.42 3.58-8 8-8h272c4.42 0 8 3.58 8 8v16z"],monument:[384,512,[],"f5a6","M368 448H16c-8.84 0-16 7.16-16 16v32c0 8.84 7.16 16 16 16h352c8.84 0 16-7.16 16-16v-32c0-8.84-7.16-16-16-16zm-78.86-347.26a31.97 31.97 0 0 0-9.21-19.44L203.31 4.69c-6.25-6.25-16.38-6.25-22.63 0l-76.6 76.61a31.97 31.97 0 0 0-9.21 19.44L64 416h256l-30.86-315.26zM240 307.2c0 6.4-6.4 12.8-12.8 12.8h-70.4c-6.4 0-12.8-6.4-12.8-12.8v-38.4c0-6.4 6.4-12.8 12.8-12.8h70.4c6.4 0 12.8 6.4 12.8 12.8v38.4z"],moon:[512,512,[],"f186","M283.211 512c78.962 0 151.079-35.925 198.857-94.792 7.068-8.708-.639-21.43-11.562-19.35-124.203 23.654-238.262-71.576-238.262-196.954 0-72.222 38.662-138.635 101.498-174.394 9.686-5.512 7.25-20.197-3.756-22.23A258.156 258.156 0 0 0 283.211 0c-141.309 0-256 114.511-256 256 0 141.309 114.511 256 256 256z"],"mortar-pestle":[512,512,[],"f5a7","M501.54 60.91c17.22-17.22 12.51-46.25-9.27-57.14a35.696 35.696 0 0 0-37.37 3.37L251.09 160h151.37l99.08-99.09zM496 192H16c-8.84 0-16 7.16-16 16v32c0 8.84 7.16 16 16 16h16c0 80.98 50.2 150.11 121.13 178.32-12.76 16.87-21.72 36.8-24.95 58.69-1.46 9.92 6.04 18.98 16.07 18.98h223.5c10.03 0 17.53-9.06 16.07-18.98-3.22-21.89-12.18-41.82-24.95-58.69C429.8 406.11 480 336.98 480 256h16c8.84 0 16-7.16 16-16v-32c0-8.84-7.16-16-16-16z"],mosque:[640,512,[],"f678","M0 480c0 17.67 14.33 32 32 32h64c17.67 0 32-14.33 32-32V160H0v320zm579.16-192c17.86-17.39 28.84-37.34 28.84-58.91 0-52.86-41.79-93.79-87.92-122.9-41.94-26.47-80.63-57.77-111.96-96.22L400 0l-8.12 9.97c-31.33 38.45-70.01 69.76-111.96 96.22C233.79 135.3 192 176.23 192 229.09c0 21.57 10.98 41.52 28.84 58.91h358.32zM608 320H192c-17.67 0-32 14.33-32 32v128c0 17.67 14.33 32 32 32h32v-64c0-17.67 14.33-32 32-32s32 14.33 32 32v64h64v-72c0-48 48-72 48-72s48 24 48 72v72h64v-64c0-17.67 14.33-32 32-32s32 14.33 32 32v64h32c17.67 0 32-14.33 32-32V352c0-17.67-14.33-32-32-32zM64 0S0 32 0 96v32h128V96c0-64-64-96-64-96z"],motorcycle:[640,512,[],"f21c","M512.9 192c-14.9-.1-29.1 2.3-42.4 6.9L437.6 144H520c13.3 0 24-10.7 24-24V88c0-13.3-10.7-24-24-24h-45.3c-6.8 0-13.3 2.9-17.8 7.9l-37.5 41.7-22.8-38C392.2 68.4 384.4 64 376 64h-80c-8.8 0-16 7.2-16 16v16c0 8.8 7.2 16 16 16h66.4l19.2 32H227.9c-17.7-23.1-44.9-40-99.9-40H72.5C59 104 47.7 115 48 128.5c.2 13 10.9 23.5 24 23.5h56c24.5 0 38.7 10.9 47.8 24.8l-11.3 20.5c-13-3.9-26.9-5.7-41.3-5.2C55.9 194.5 1.6 249.6 0 317c-1.6 72.1 56.3 131 128 131 59.6 0 109.7-40.8 124-96h84.2c13.7 0 24.6-11.4 24-25.1-2.1-47.1 17.5-93.7 56.2-125l12.5 20.8c-27.6 23.7-45.1 58.9-44.8 98.2.5 69.6 57.2 126.5 126.8 127.1 71.6.7 129.8-57.5 129.2-129.1-.7-69.6-57.6-126.4-127.2-126.9zM128 400c-44.1 0-80-35.9-80-80s35.9-80 80-80c4.2 0 8.4.3 12.5 1L99 316.4c-8.8 16 2.8 35.6 21 35.6h81.3c-12.4 28.2-40.6 48-73.3 48zm463.9-75.6c-2.2 40.6-35 73.4-75.5 75.5-46.1 2.5-84.4-34.3-84.4-79.9 0-21.4 8.4-40.8 22.1-55.1l49.4 82.4c4.5 7.6 14.4 10 22 5.5l13.7-8.2c7.6-4.5 10-14.4 5.5-22l-48.6-80.9c5.2-1.1 10.5-1.6 15.9-1.6 45.6-.1 82.3 38.2 79.9 84.3z"],mountain:[640,512,[],"f6fc","M634.92 462.7l-288-448C341.03 5.54 330.89 0 320 0s-21.03 5.54-26.92 14.7l-288 448a32.001 32.001 0 0 0-1.17 32.64A32.004 32.004 0 0 0 32 512h576c11.71 0 22.48-6.39 28.09-16.67a31.983 31.983 0 0 0-1.17-32.63zM320 91.18L405.39 224H320l-64 64-38.06-38.06L320 91.18z"],mouse:[384,512,[],"f8cc","M0 352a160 160 0 0 0 160 160h64a160 160 0 0 0 160-160V224H0zM176 0h-16A160 160 0 0 0 0 160v32h176zm48 0h-16v192h176v-32A160 160 0 0 0 224 0z"],"mouse-pointer":[320,512,[],"f245","M302.189 329.126H196.105l55.831 135.993c3.889 9.428-.555 19.999-9.444 23.999l-49.165 21.427c-9.165 4-19.443-.571-23.332-9.714l-53.053-129.136-86.664 89.138C18.729 472.71 0 463.554 0 447.977V18.299C0 1.899 19.921-6.096 30.277 5.443l284.412 292.542c11.472 11.179 3.007 31.141-12.5 31.141z"],"mug-hot":[512,512,[],"f7b6","M127.1 146.5c1.3 7.7 8 13.5 16 13.5h16.5c9.8 0 17.6-8.5 16.3-18-3.8-28.2-16.4-54.2-36.6-74.7-14.4-14.7-23.6-33.3-26.4-53.5C111.8 5.9 105 0 96.8 0H80.4C70.6 0 63 8.5 64.1 18c3.9 31.9 18 61.3 40.6 84.4 12 12.2 19.7 27.5 22.4 44.1zm112 0c1.3 7.7 8 13.5 16 13.5h16.5c9.8 0 17.6-8.5 16.3-18-3.8-28.2-16.4-54.2-36.6-74.7-14.4-14.7-23.6-33.3-26.4-53.5C223.8 5.9 217 0 208.8 0h-16.4c-9.8 0-17.5 8.5-16.3 18 3.9 31.9 18 61.3 40.6 84.4 12 12.2 19.7 27.5 22.4 44.1zM400 192H32c-17.7 0-32 14.3-32 32v192c0 53 43 96 96 96h192c53 0 96-43 96-96h16c61.8 0 112-50.2 112-112s-50.2-112-112-112zm0 160h-16v-96h16c26.5 0 48 21.5 48 48s-21.5 48-48 48z"],music:[512,512,[],"f001","M470.38 1.51L150.41 96A32 32 0 0 0 128 126.51v261.41A139 139 0 0 0 96 384c-53 0-96 28.66-96 64s43 64 96 64 96-28.66 96-64V214.32l256-75v184.61a138.4 138.4 0 0 0-32-3.93c-53 0-96 28.66-96 64s43 64 96 64 96-28.65 96-64V32a32 32 0 0 0-41.62-30.49z"],"network-wired":[640,512,[],"f6ff","M640 264v-16c0-8.84-7.16-16-16-16H344v-40h72c17.67 0 32-14.33 32-32V32c0-17.67-14.33-32-32-32H224c-17.67 0-32 14.33-32 32v128c0 17.67 14.33 32 32 32h72v40H16c-8.84 0-16 7.16-16 16v16c0 8.84 7.16 16 16 16h104v40H64c-17.67 0-32 14.33-32 32v128c0 17.67 14.33 32 32 32h160c17.67 0 32-14.33 32-32V352c0-17.67-14.33-32-32-32h-56v-40h304v40h-56c-17.67 0-32 14.33-32 32v128c0 17.67 14.33 32 32 32h160c17.67 0 32-14.33 32-32V352c0-17.67-14.33-32-32-32h-56v-40h104c8.84 0 16-7.16 16-16zM256 128V64h128v64H256zm-64 320H96v-64h96v64zm352 0h-96v-64h96v64z"],neuter:[288,512,[],"f22c","M288 176c0-79.5-64.5-144-144-144S0 96.5 0 176c0 68.5 47.9 125.9 112 140.4V468c0 6.6 5.4 12 12 12h40c6.6 0 12-5.4 12-12V316.4c64.1-14.5 112-71.9 112-140.4zm-144 80c-44.1 0-80-35.9-80-80s35.9-80 80-80 80 35.9 80 80-35.9 80-80 80z"],newspaper:[576,512,[],"f1ea","M552 64H88c-13.255 0-24 10.745-24 24v8H24c-13.255 0-24 10.745-24 24v272c0 30.928 25.072 56 56 56h472c26.51 0 48-21.49 48-48V88c0-13.255-10.745-24-24-24zM56 400a8 8 0 0 1-8-8V144h16v248a8 8 0 0 1-8 8zm236-16H140c-6.627 0-12-5.373-12-12v-8c0-6.627 5.373-12 12-12h152c6.627 0 12 5.373 12 12v8c0 6.627-5.373 12-12 12zm208 0H348c-6.627 0-12-5.373-12-12v-8c0-6.627 5.373-12 12-12h152c6.627 0 12 5.373 12 12v8c0 6.627-5.373 12-12 12zm-208-96H140c-6.627 0-12-5.373-12-12v-8c0-6.627 5.373-12 12-12h152c6.627 0 12 5.373 12 12v8c0 6.627-5.373 12-12 12zm208 0H348c-6.627 0-12-5.373-12-12v-8c0-6.627 5.373-12 12-12h152c6.627 0 12 5.373 12 12v8c0 6.627-5.373 12-12 12zm0-96H140c-6.627 0-12-5.373-12-12v-40c0-6.627 5.373-12 12-12h360c6.627 0 12 5.373 12 12v40c0 6.627-5.373 12-12 12z"],"not-equal":[448,512,[],"f53e","M416 208c17.67 0 32-14.33 32-32v-32c0-17.67-14.33-32-32-32h-23.88l51.87-66.81c5.37-7.02 4.04-17.06-2.97-22.43L415.61 3.3c-7.02-5.38-17.06-4.04-22.44 2.97L311.09 112H32c-17.67 0-32 14.33-32 32v32c0 17.67 14.33 32 32 32h204.56l-74.53 96H32c-17.67 0-32 14.33-32 32v32c0 17.67 14.33 32 32 32h55.49l-51.87 66.81c-5.37 7.01-4.04 17.05 2.97 22.43L64 508.7c7.02 5.38 17.06 4.04 22.43-2.97L168.52 400H416c17.67 0 32-14.33 32-32v-32c0-17.67-14.33-32-32-32H243.05l74.53-96H416z"],"notes-medical":[384,512,[],"f481","M336 64h-80c0-35.3-28.7-64-64-64s-64 28.7-64 64H48C21.5 64 0 85.5 0 112v352c0 26.5 21.5 48 48 48h288c26.5 0 48-21.5 48-48V112c0-26.5-21.5-48-48-48zM192 40c13.3 0 24 10.7 24 24s-10.7 24-24 24-24-10.7-24-24 10.7-24 24-24zm96 304c0 4.4-3.6 8-8 8h-56v56c0 4.4-3.6 8-8 8h-48c-4.4 0-8-3.6-8-8v-56h-56c-4.4 0-8-3.6-8-8v-48c0-4.4 3.6-8 8-8h56v-56c0-4.4 3.6-8 8-8h48c4.4 0 8 3.6 8 8v56h56c4.4 0 8 3.6 8 8v48zm0-192c0 4.4-3.6 8-8 8H104c-4.4 0-8-3.6-8-8v-16c0-4.4 3.6-8 8-8h176c4.4 0 8 3.6 8 8v16z"],"object-group":[512,512,[],"f247","M480 128V96h20c6.627 0 12-5.373 12-12V44c0-6.627-5.373-12-12-12h-40c-6.627 0-12 5.373-12 12v20H64V44c0-6.627-5.373-12-12-12H12C5.373 32 0 37.373 0 44v40c0 6.627 5.373 12 12 12h20v320H12c-6.627 0-12 5.373-12 12v40c0 6.627 5.373 12 12 12h40c6.627 0 12-5.373 12-12v-20h384v20c0 6.627 5.373 12 12 12h40c6.627 0 12-5.373 12-12v-40c0-6.627-5.373-12-12-12h-20V128zM96 276V140c0-6.627 5.373-12 12-12h168c6.627 0 12 5.373 12 12v136c0 6.627-5.373 12-12 12H108c-6.627 0-12-5.373-12-12zm320 96c0 6.627-5.373 12-12 12H236c-6.627 0-12-5.373-12-12v-52h72c13.255 0 24-10.745 24-24v-72h84c6.627 0 12 5.373 12 12v136z"],"object-ungroup":[576,512,[],"f248","M64 320v26a6 6 0 0 1-6 6H6a6 6 0 0 1-6-6v-52a6 6 0 0 1 6-6h26V96H6a6 6 0 0 1-6-6V38a6 6 0 0 1 6-6h52a6 6 0 0 1 6 6v26h288V38a6 6 0 0 1 6-6h52a6 6 0 0 1 6 6v52a6 6 0 0 1-6 6h-26v192h26a6 6 0 0 1 6 6v52a6 6 0 0 1-6 6h-52a6 6 0 0 1-6-6v-26H64zm480-64v-32h26a6 6 0 0 0 6-6v-52a6 6 0 0 0-6-6h-52a6 6 0 0 0-6 6v26H408v72h8c13.255 0 24 10.745 24 24v64c0 13.255-10.745 24-24 24h-64c-13.255 0-24-10.745-24-24v-8H192v72h-26a6 6 0 0 0-6 6v52a6 6 0 0 0 6 6h52a6 6 0 0 0 6-6v-26h288v26a6 6 0 0 0 6 6h52a6 6 0 0 0 6-6v-52a6 6 0 0 0-6-6h-26V256z"],"oil-can":[640,512,[],"f613","M629.8 160.31L416 224l-50.49-25.24a64.07 64.07 0 0 0-28.62-6.76H280v-48h56c8.84 0 16-7.16 16-16v-16c0-8.84-7.16-16-16-16H176c-8.84 0-16 7.16-16 16v16c0 8.84 7.16 16 16 16h56v48h-56L37.72 166.86a31.9 31.9 0 0 0-5.79-.53C14.67 166.33 0 180.36 0 198.34v94.95c0 15.46 11.06 28.72 26.28 31.48L96 337.46V384c0 17.67 14.33 32 32 32h274.63c8.55 0 16.75-3.42 22.76-9.51l212.26-214.75c1.5-1.5 2.34-3.54 2.34-5.66V168c.01-5.31-5.08-9.15-10.19-7.69zM96 288.67l-48-8.73v-62.43l48 8.73v62.43zm453.33 84.66c0 23.56 19.1 42.67 42.67 42.67s42.67-19.1 42.67-42.67S592 288 592 288s-42.67 61.77-42.67 85.33z"],om:[512,512,[],"f679","M360.6 60.94a10.43 10.43 0 0 0 14.76 0l21.57-21.56a10.43 10.43 0 0 0 0-14.76L375.35 3.06c-4.08-4.07-10.68-4.07-14.76 0l-21.57 21.56a10.43 10.43 0 0 0 0 14.76l21.58 21.56zM412.11 192c-26.69 0-51.77 10.39-70.64 29.25l-24.25 24.25c-6.78 6.77-15.78 10.5-25.38 10.5H245c10.54-22.1 14.17-48.11 7.73-75.23-10.1-42.55-46.36-76.11-89.52-83.19-36.15-5.93-70.9 5.04-96.01 28.78-7.36 6.96-6.97 18.85 1.12 24.93l26.15 19.63c5.72 4.3 13.66 4.32 19.2-.21 8.45-6.9 19.02-10.71 30.27-10.71 26.47 0 48.01 21.53 48.01 48s-21.54 48-48.01 48h-31.9c-11.96 0-19.74 12.58-14.39 23.28l16.09 32.17c2.53 5.06 7.6 8.1 13.17 8.55h33.03c35.3 0 64.01 28.7 64.01 64s-28.71 64-64.01 64c-96.02 0-122.35-54.02-145.15-92.03-4.53-7.55-14.77-3.58-14.79 5.22C-.09 416 41.13 512 159.94 512c70.59 0 128.02-57.42 128.02-128 0-23.42-6.78-45.1-17.81-64h21.69c26.69 0 51.77-10.39 70.64-29.25l24.25-24.25c6.78-6.77 15.78-10.5 25.38-10.5 19.78 0 35.88 16.09 35.88 35.88V392c0 13.23-18.77 24-32.01 24-39.4 0-66.67-24.24-81.82-42.89-4.77-5.87-14.2-2.54-14.2 5.02V416s0 64 96.02 64c48.54 0 96.02-39.47 96.02-88V291.88c0-55.08-44.8-99.88-99.89-99.88zm42.18-124.73c-85.55 65.12-169.05 2.75-172.58.05-6.02-4.62-14.44-4.38-20.14.55-5.74 4.92-7.27 13.17-3.66 19.8 1.61 2.95 40.37 72.34 118.8 72.34 79.92 0 98.78-31.36 101.75-37.66 1.02-2.12 1.53-4.47 1.53-6.83V80c0-13.22-15.14-20.69-25.7-12.73z"],otter:[640,512,[],"f700","M608 32h-32l-13.25-13.25A63.97 63.97 0 0 0 517.49 0H497c-11.14 0-22.08 2.91-31.75 8.43L312 96h-56C149.96 96 64 181.96 64 288v1.61c0 32.75-16 62.14-39.56 84.89-18.19 17.58-28.1 43.68-23.19 71.8 6.76 38.8 42.9 65.7 82.28 65.7H192c17.67 0 32-14.33 32-32s-14.33-32-32-32H80c-8.83 0-16-7.17-16-16s7.17-16 16-16h224c8.84 0 16-7.16 16-16v-16c0-17.67-14.33-32-32-32h-64l149.49-80.5L448 416h80c8.84 0 16-7.16 16-16v-16c0-17.67-14.33-32-32-32h-28.22l-55.11-110.21L521.14 192H544c53.02 0 96-42.98 96-96V64c0-17.67-14.33-32-32-32zm-96 16c8.84 0 16 7.16 16 16s-7.16 16-16 16-16-7.16-16-16 7.16-16 16-16zm32 96h-34.96L407.2 198.84l-13.77-27.55L512 112h77.05c-6.62 18.58-24.22 32-45.05 32z"],outdent:[448,512,[],"f03b","M100.69 363.29c10 10 27.31 2.93 27.31-11.31V160c0-14.32-17.33-21.31-27.31-11.31l-96 96a16 16 0 0 0 0 22.62zM432 416H16a16 16 0 0 0-16 16v32a16 16 0 0 0 16 16h416a16 16 0 0 0 16-16v-32a16 16 0 0 0-16-16zm3.17-128H204.83A12.82 12.82 0 0 0 192 300.83v38.34A12.82 12.82 0 0 0 204.83 352h230.34A12.82 12.82 0 0 0 448 339.17v-38.34A12.82 12.82 0 0 0 435.17 288zm0-128H204.83A12.82 12.82 0 0 0 192 172.83v38.34A12.82 12.82 0 0 0 204.83 224h230.34A12.82 12.82 0 0 0 448 211.17v-38.34A12.82 12.82 0 0 0 435.17 160zM432 32H16A16 16 0 0 0 0 48v32a16 16 0 0 0 16 16h416a16 16 0 0 0 16-16V48a16 16 0 0 0-16-16z"],pager:[512,512,[],"f815","M448 64H64a64 64 0 0 0-64 64v256a64 64 0 0 0 64 64h384a64 64 0 0 0 64-64V128a64 64 0 0 0-64-64zM160 368H80a16 16 0 0 1-16-16v-16a16 16 0 0 1 16-16h80zm128-16a16 16 0 0 1-16 16h-80v-48h80a16 16 0 0 1 16 16zm160-128a32 32 0 0 1-32 32H96a32 32 0 0 1-32-32v-64a32 32 0 0 1 32-32h320a32 32 0 0 1 32 32z"],"paint-brush":[512,512,[],"f1fc","M167.02 309.34c-40.12 2.58-76.53 17.86-97.19 72.3-2.35 6.21-8 9.98-14.59 9.98-11.11 0-45.46-27.67-55.25-34.35C0 439.62 37.93 512 128 512c75.86 0 128-43.77 128-120.19 0-3.11-.65-6.08-.97-9.13l-88.01-73.34zM457.89 0c-15.16 0-29.37 6.71-40.21 16.45C213.27 199.05 192 203.34 192 257.09c0 13.7 3.25 26.76 8.73 38.7l63.82 53.18c7.21 1.8 14.64 3.03 22.39 3.03 62.11 0 98.11-45.47 211.16-256.46 7.38-14.35 13.9-29.85 13.9-45.99C512 20.64 486 0 457.89 0z"],"paint-roller":[512,512,[],"f5aa","M416 128V32c0-17.67-14.33-32-32-32H32C14.33 0 0 14.33 0 32v96c0 17.67 14.33 32 32 32h352c17.67 0 32-14.33 32-32zm32-64v128c0 17.67-14.33 32-32 32H256c-35.35 0-64 28.65-64 64v32c-17.67 0-32 14.33-32 32v128c0 17.67 14.33 32 32 32h64c17.67 0 32-14.33 32-32V352c0-17.67-14.33-32-32-32v-32h160c53.02 0 96-42.98 96-96v-64c0-35.35-28.65-64-64-64z"],palette:[512,512,[],"f53f","M204.3 5C104.9 24.4 24.8 104.3 5.2 203.4c-37 187 131.7 326.4 258.8 306.7 41.2-6.4 61.4-54.6 42.5-91.7-23.1-45.4 9.9-98.4 60.9-98.4h79.7c35.8 0 64.8-29.6 64.9-65.3C511.5 97.1 368.1-26.9 204.3 5zM96 320c-17.7 0-32-14.3-32-32s14.3-32 32-32 32 14.3 32 32-14.3 32-32 32zm32-128c-17.7 0-32-14.3-32-32s14.3-32 32-32 32 14.3 32 32-14.3 32-32 32zm128-64c-17.7 0-32-14.3-32-32s14.3-32 32-32 32 14.3 32 32-14.3 32-32 32zm128 64c-17.7 0-32-14.3-32-32s14.3-32 32-32 32 14.3 32 32-14.3 32-32 32z"],pallet:[640,512,[],"f482","M144 256h352c8.8 0 16-7.2 16-16V16c0-8.8-7.2-16-16-16H384v128l-64-32-64 32V0H144c-8.8 0-16 7.2-16 16v224c0 8.8 7.2 16 16 16zm480 128c8.8 0 16-7.2 16-16v-32c0-8.8-7.2-16-16-16H16c-8.8 0-16 7.2-16 16v32c0 8.8 7.2 16 16 16h48v64H16c-8.8 0-16 7.2-16 16v32c0 8.8 7.2 16 16 16h608c8.8 0 16-7.2 16-16v-32c0-8.8-7.2-16-16-16h-48v-64h48zm-336 64H128v-64h160v64zm224 0H352v-64h160v64z"],"paper-plane":[512,512,[],"f1d8","M476 3.2L12.5 270.6c-18.1 10.4-15.8 35.6 2.2 43.2L121 358.4l287.3-253.2c5.5-4.9 13.3 2.6 8.6 8.3L176 407v80.5c0 23.6 28.5 32.9 42.5 15.8L282 426l124.6 52.2c14.2 6 30.4-2.9 33-18.2l72-432C515 7.8 493.3-6.8 476 3.2z"],paperclip:[448,512,[],"f0c6","M43.246 466.142c-58.43-60.289-57.341-157.511 1.386-217.581L254.392 34c44.316-45.332 116.351-45.336 160.671 0 43.89 44.894 43.943 117.329 0 162.276L232.214 383.128c-29.855 30.537-78.633 30.111-107.982-.998-28.275-29.97-27.368-77.473 1.452-106.953l143.743-146.835c6.182-6.314 16.312-6.422 22.626-.241l22.861 22.379c6.315 6.182 6.422 16.312.241 22.626L171.427 319.927c-4.932 5.045-5.236 13.428-.648 18.292 4.372 4.634 11.245 4.711 15.688.165l182.849-186.851c19.613-20.062 19.613-52.725-.011-72.798-19.189-19.627-49.957-19.637-69.154 0L90.39 293.295c-34.763 35.56-35.299 93.12-1.191 128.313 34.01 35.093 88.985 35.137 123.058.286l172.06-175.999c6.177-6.319 16.307-6.433 22.626-.256l22.877 22.364c6.319 6.177 6.434 16.307.256 22.626l-172.06 175.998c-59.576 60.938-155.943 60.216-214.77-.485z"],"parachute-box":[512,512,[],"f4cd","M511.9 175c-9.1-75.6-78.4-132.4-158.3-158.7C390 55.7 416 116.9 416 192h28.1L327.5 321.5c-2.5-.6-4.8-1.5-7.5-1.5h-48V192h112C384 76.8 315.1 0 256 0S128 76.8 128 192h112v128h-48c-2.7 0-5 .9-7.5 1.5L67.9 192H96c0-75.1 26-136.3 62.4-175.7C78.5 42.7 9.2 99.5.1 175c-1.1 9.1 6.8 17 16 17h8.7l136.7 151.9c-.7 2.6-1.6 5.2-1.6 8.1v128c0 17.7 14.3 32 32 32h128c17.7 0 32-14.3 32-32V352c0-2.9-.9-5.4-1.6-8.1L487.1 192h8.7c9.3 0 17.2-7.8 16.1-17z"],paragraph:[448,512,[],"f1dd","M448 48v32a16 16 0 0 1-16 16h-48v368a16 16 0 0 1-16 16h-32a16 16 0 0 1-16-16V96h-32v368a16 16 0 0 1-16 16h-32a16 16 0 0 1-16-16V352h-32a160 160 0 0 1 0-320h240a16 16 0 0 1 16 16z"],parking:[448,512,[],"f540","M400 32H48C21.5 32 0 53.5 0 80v352c0 26.5 21.5 48 48 48h352c26.5 0 48-21.5 48-48V80c0-26.5-21.5-48-48-48zM240 320h-48v48c0 8.8-7.2 16-16 16h-32c-8.8 0-16-7.2-16-16V144c0-8.8 7.2-16 16-16h96c52.9 0 96 43.1 96 96s-43.1 96-96 96zm0-128h-48v64h48c17.6 0 32-14.4 32-32s-14.4-32-32-32z"],passport:[448,512,[],"f5ab","M129.62 176h39.09c1.49-27.03 6.54-51.35 14.21-70.41-27.71 13.24-48.02 39.19-53.3 70.41zm0 32c5.29 31.22 25.59 57.17 53.3 70.41-7.68-19.06-12.72-43.38-14.21-70.41h-39.09zM224 286.69c7.69-7.45 20.77-34.42 23.43-78.69h-46.87c2.67 44.26 15.75 71.24 23.44 78.69zM200.57 176h46.87c-2.66-44.26-15.74-71.24-23.43-78.69-7.7 7.45-20.78 34.43-23.44 78.69zm64.51 102.41c27.71-13.24 48.02-39.19 53.3-70.41h-39.09c-1.49 27.03-6.53 51.35-14.21 70.41zM416 0H64C28.65 0 0 28.65 0 64v384c0 35.35 28.65 64 64 64h352c17.67 0 32-14.33 32-32V32c0-17.67-14.33-32-32-32zm-80 416H112c-8.8 0-16-7.2-16-16s7.2-16 16-16h224c8.8 0 16 7.2 16 16s-7.2 16-16 16zm-112-96c-70.69 0-128-57.31-128-128S153.31 64 224 64s128 57.31 128 128-57.31 128-128 128zm41.08-214.41c7.68 19.06 12.72 43.38 14.21 70.41h39.09c-5.28-31.22-25.59-57.17-53.3-70.41z"],pastafarianism:[640,512,[],"f67b","M624.54 347.67c-32.7-12.52-57.36 4.25-75.37 16.45-17.06 11.53-23.25 14.42-31.41 11.36-8.12-3.09-10.83-9.38-15.89-29.38-3.33-13.15-7.44-29.32-17.95-42.65 2.24-2.91 4.43-5.79 6.38-8.57C500.47 304.45 513.71 312 532 312c33.95 0 50.87-25.78 62.06-42.83 10.59-16.14 15-21.17 21.94-21.17 13.25 0 24-10.75 24-24s-10.75-24-24-24c-33.95 0-50.87 25.78-62.06 42.83-10.6 16.14-15 21.17-21.94 21.17-17.31 0-37.48-61.43-97.26-101.91l17.25-34.5C485.43 125.5 512 97.98 512 64c0-35.35-28.65-64-64-64s-64 28.65-64 64c0 13.02 3.94 25.1 10.62 35.21l-18.15 36.3c-16.98-4.6-35.6-7.51-56.46-7.51s-39.49 2.91-56.46 7.51l-18.15-36.3C252.06 89.1 256 77.02 256 64c0-35.35-28.65-64-64-64s-64 28.65-64 64c0 33.98 26.56 61.5 60.02 63.6l17.25 34.5C145.68 202.44 125.15 264 108 264c-6.94 0-11.34-5.03-21.94-21.17C74.88 225.78 57.96 200 24 200c-13.25 0-24 10.75-24 24s10.75 24 24 24c6.94 0 11.34 5.03 21.94 21.17C57.13 286.22 74.05 312 108 312c18.29 0 31.53-7.55 41.7-17.11 1.95 2.79 4.14 5.66 6.38 8.57-10.51 13.33-14.62 29.5-17.95 42.65-5.06 20-7.77 26.28-15.89 29.38-8.11 3.06-14.33.17-31.41-11.36-18.03-12.2-42.72-28.92-75.37-16.45-12.39 4.72-18.59 18.58-13.87 30.97 4.72 12.41 18.61 18.61 30.97 13.88 8.16-3.09 14.34-.19 31.39 11.36 13.55 9.16 30.83 20.86 52.42 20.84 7.17 0 14.83-1.28 22.97-4.39 32.66-12.44 39.98-41.33 45.33-62.44 2.21-8.72 3.99-14.49 5.95-18.87 16.62 13.61 36.95 25.88 61.64 34.17-9.96 37-32.18 90.8-60.26 90.8-13.25 0-24 10.75-24 24s10.75 24 24 24c66.74 0 97.05-88.63 107.42-129.14 6.69.6 13.42 1.14 20.58 1.14s13.89-.54 20.58-1.14C350.95 423.37 381.26 512 448 512c13.25 0 24-10.75 24-24s-10.75-24-24-24c-27.94 0-50.21-53.81-60.22-90.81 24.69-8.29 45-20.56 61.62-34.16 1.96 4.38 3.74 10.15 5.95 18.87 5.34 21.11 12.67 50 45.33 62.44 8.14 3.11 15.8 4.39 22.97 4.39 21.59 0 38.87-11.69 52.42-20.84 17.05-11.55 23.28-14.45 31.39-11.36 12.39 4.75 26.27-1.47 30.97-13.88 4.71-12.4-1.49-26.26-13.89-30.98zM448 48c8.82 0 16 7.18 16 16s-7.18 16-16 16-16-7.18-16-16 7.18-16 16-16zm-256 0c8.82 0 16 7.18 16 16s-7.18 16-16 16-16-7.18-16-16 7.18-16 16-16z"],paste:[448,512,[],"f0ea","M128 184c0-30.879 25.122-56 56-56h136V56c0-13.255-10.745-24-24-24h-80.61C204.306 12.89 183.637 0 160 0s-44.306 12.89-55.39 32H24C10.745 32 0 42.745 0 56v336c0 13.255 10.745 24 24 24h104V184zm32-144c13.255 0 24 10.745 24 24s-10.745 24-24 24-24-10.745-24-24 10.745-24 24-24zm184 248h104v200c0 13.255-10.745 24-24 24H184c-13.255 0-24-10.745-24-24V184c0-13.255 10.745-24 24-24h136v104c0 13.2 10.8 24 24 24zm104-38.059V256h-96v-96h6.059a24 24 0 0 1 16.97 7.029l65.941 65.941a24.002 24.002 0 0 1 7.03 16.971z"],pause:[448,512,[],"f04c","M144 479H48c-26.5 0-48-21.5-48-48V79c0-26.5 21.5-48 48-48h96c26.5 0 48 21.5 48 48v352c0 26.5-21.5 48-48 48zm304-48V79c0-26.5-21.5-48-48-48h-96c-26.5 0-48 21.5-48 48v352c0 26.5 21.5 48 48 48h96c26.5 0 48-21.5 48-48z"],"pause-circle":[512,512,[],"f28b","M256 8C119 8 8 119 8 256s111 248 248 248 248-111 248-248S393 8 256 8zm-16 328c0 8.8-7.2 16-16 16h-48c-8.8 0-16-7.2-16-16V176c0-8.8 7.2-16 16-16h48c8.8 0 16 7.2 16 16v160zm112 0c0 8.8-7.2 16-16 16h-48c-8.8 0-16-7.2-16-16V176c0-8.8 7.2-16 16-16h48c8.8 0 16 7.2 16 16v160z"],paw:[512,512,[],"f1b0","M256 224c-79.41 0-192 122.76-192 200.25 0 34.9 26.81 55.75 71.74 55.75 48.84 0 81.09-25.08 120.26-25.08 39.51 0 71.85 25.08 120.26 25.08 44.93 0 71.74-20.85 71.74-55.75C448 346.76 335.41 224 256 224zm-147.28-12.61c-10.4-34.65-42.44-57.09-71.56-50.13-29.12 6.96-44.29 40.69-33.89 75.34 10.4 34.65 42.44 57.09 71.56 50.13 29.12-6.96 44.29-40.69 33.89-75.34zm84.72-20.78c30.94-8.14 46.42-49.94 34.58-93.36s-46.52-72.01-77.46-63.87-46.42 49.94-34.58 93.36c11.84 43.42 46.53 72.02 77.46 63.87zm281.39-29.34c-29.12-6.96-61.15 15.48-71.56 50.13-10.4 34.65 4.77 68.38 33.89 75.34 29.12 6.96 61.15-15.48 71.56-50.13 10.4-34.65-4.77-68.38-33.89-75.34zm-156.27 29.34c30.94 8.14 65.62-20.45 77.46-63.87 11.84-43.42-3.64-85.21-34.58-93.36s-65.62 20.45-77.46 63.87c-11.84 43.42 3.64 85.22 34.58 93.36z"],peace:[496,512,[],"f67c","M248 8C111.03 8 0 119.03 0 256s111.03 248 248 248 248-111.03 248-248S384.97 8 248 8zm184 248c0 31.93-8.2 61.97-22.57 88.17L280 240.63V74.97c86.23 15.21 152 90.5 152 181.03zM216 437.03c-33.86-5.97-64.49-21.2-89.29-43.02L216 322.57v114.46zm64-114.46L369.29 394c-24.8 21.82-55.43 37.05-89.29 43.02V322.57zm-64-247.6v165.66L86.57 344.17C72.2 317.97 64 287.93 64 256c0-90.53 65.77-165.82 152-181.03z"],pen:[512,512,[],"f304","M290.74 93.24l128.02 128.02-277.99 277.99-114.14 12.6C11.35 513.54-1.56 500.62.14 485.34l12.7-114.22 277.9-277.88zm207.2-19.06l-60.11-60.11c-18.75-18.75-49.16-18.75-67.91 0l-56.55 56.55 128.02 128.02 56.55-56.55c18.75-18.76 18.75-49.16 0-67.91z"],"pen-alt":[512,512,[],"f305","M497.94 74.17l-60.11-60.11c-18.75-18.75-49.16-18.75-67.91 0l-56.55 56.55 128.02 128.02 56.55-56.55c18.75-18.75 18.75-49.15 0-67.91zm-246.8-20.53c-15.62-15.62-40.94-15.62-56.56 0L75.8 172.43c-6.25 6.25-6.25 16.38 0 22.62l22.63 22.63c6.25 6.25 16.38 6.25 22.63 0l101.82-101.82 22.63 22.62L93.95 290.03A327.038 327.038 0 0 0 .17 485.11l-.03.23c-1.7 15.28 11.21 28.2 26.49 26.51a327.02 327.02 0 0 0 195.34-93.8l196.79-196.79-82.77-82.77-84.85-84.85z"],"pen-fancy":[512,512,[],"f5ac","M79.18 282.94a32.005 32.005 0 0 0-20.24 20.24L0 480l4.69 4.69 92.89-92.89c-.66-2.56-1.57-5.03-1.57-7.8 0-17.67 14.33-32 32-32s32 14.33 32 32-14.33 32-32 32c-2.77 0-5.24-.91-7.8-1.57l-92.89 92.89L32 512l176.82-58.94a31.983 31.983 0 0 0 20.24-20.24l33.07-84.07-98.88-98.88-84.07 33.07zM369.25 28.32L186.14 227.81l97.85 97.85 199.49-183.11C568.4 67.48 443.73-55.94 369.25 28.32z"],"pen-nib":[512,512,[],"f5ad","M136.6 138.79a64.003 64.003 0 0 0-43.31 41.35L0 460l14.69 14.69L164.8 324.58c-2.99-6.26-4.8-13.18-4.8-20.58 0-26.51 21.49-48 48-48s48 21.49 48 48-21.49 48-48 48c-7.4 0-14.32-1.81-20.58-4.8L37.31 497.31 52 512l279.86-93.29a64.003 64.003 0 0 0 41.35-43.31L416 224 288 96l-151.4 42.79zm361.34-64.62l-60.11-60.11c-18.75-18.75-49.16-18.75-67.91 0l-56.55 56.55 128.02 128.02 56.55-56.55c18.75-18.75 18.75-49.15 0-67.91z"],"pen-square":[448,512,[],"f14b","M400 480H48c-26.5 0-48-21.5-48-48V80c0-26.5 21.5-48 48-48h352c26.5 0 48 21.5 48 48v352c0 26.5-21.5 48-48 48zM238.1 177.9L102.4 313.6l-6.3 57.1c-.8 7.6 5.6 14.1 13.3 13.3l57.1-6.3L302.2 242c2.3-2.3 2.3-6.1 0-8.5L246.7 178c-2.5-2.4-6.3-2.4-8.6-.1zM345 165.1L314.9 135c-9.4-9.4-24.6-9.4-33.9 0l-23.1 23.1c-2.3 2.3-2.3 6.1 0 8.5l55.5 55.5c2.3 2.3 6.1 2.3 8.5 0L345 199c9.3-9.3 9.3-24.5 0-33.9z"],"pencil-alt":[512,512,[],"f303","M497.9 142.1l-46.1 46.1c-4.7 4.7-12.3 4.7-17 0l-111-111c-4.7-4.7-4.7-12.3 0-17l46.1-46.1c18.7-18.7 49.1-18.7 67.9 0l60.1 60.1c18.8 18.7 18.8 49.1 0 67.9zM284.2 99.8L21.6 362.4.4 483.9c-2.9 16.4 11.4 30.6 27.8 27.8l121.5-21.3 262.6-262.6c4.7-4.7 4.7-12.3 0-17l-111-111c-4.8-4.7-12.4-4.7-17.1 0zM124.1 339.9c-5.5-5.5-5.5-14.3 0-19.8l154-154c5.5-5.5 14.3-5.5 19.8 0s5.5 14.3 0 19.8l-154 154c-5.5 5.5-14.3 5.5-19.8 0zM88 424h48v36.3l-64.5 11.3-31.1-31.1L51.7 376H88v48z"],"pencil-ruler":[512,512,[],"f5ae","M109.46 244.04l134.58-134.56-44.12-44.12-61.68 61.68a7.919 7.919 0 0 1-11.21 0l-11.21-11.21c-3.1-3.1-3.1-8.12 0-11.21l61.68-61.68-33.64-33.65C131.47-3.1 111.39-3.1 99 9.29L9.29 99c-12.38 12.39-12.39 32.47 0 44.86l100.17 100.18zm388.47-116.8c18.76-18.76 18.75-49.17 0-67.93l-45.25-45.25c-18.76-18.76-49.18-18.76-67.95 0l-46.02 46.01 113.2 113.2 46.02-46.03zM316.08 82.71l-297 296.96L.32 487.11c-2.53 14.49 10.09 27.11 24.59 24.56l107.45-18.84L429.28 195.9 316.08 82.71zm186.63 285.43l-33.64-33.64-61.68 61.68c-3.1 3.1-8.12 3.1-11.21 0l-11.21-11.21c-3.09-3.1-3.09-8.12 0-11.21l61.68-61.68-44.14-44.14L267.93 402.5l100.21 100.2c12.39 12.39 32.47 12.39 44.86 0l89.71-89.7c12.39-12.39 12.39-32.47 0-44.86z"],"people-carry":[640,512,[],"f4ce","M128 96c26.5 0 48-21.5 48-48S154.5 0 128 0 80 21.5 80 48s21.5 48 48 48zm384 0c26.5 0 48-21.5 48-48S538.5 0 512 0s-48 21.5-48 48 21.5 48 48 48zm125.7 372.1l-44-110-41.1 46.4-2 18.2 27.7 69.2c5 12.5 17 20.1 29.7 20.1 4 0 8-.7 11.9-2.3 16.4-6.6 24.4-25.2 17.8-41.6zm-34.2-209.8L585 178.1c-4.6-20-18.6-36.8-37.5-44.9-18.5-8-39-6.7-56.1 3.3-22.7 13.4-39.7 34.5-48.1 59.4L432 229.8 416 240v-96c0-8.8-7.2-16-16-16H240c-8.8 0-16 7.2-16 16v96l-16.1-10.2-11.3-33.9c-8.3-25-25.4-46-48.1-59.4-17.2-10-37.6-11.3-56.1-3.3-18.9 8.1-32.9 24.9-37.5 44.9l-18.4 80.2c-4.6 20 .7 41.2 14.4 56.7l67.2 75.9 10.1 92.6C130 499.8 143.8 512 160 512c1.2 0 2.3-.1 3.5-.2 17.6-1.9 30.2-17.7 28.3-35.3l-10.1-92.8c-1.5-13-6.9-25.1-15.6-35l-43.3-49 17.6-70.3 6.8 20.4c4.1 12.5 11.9 23.4 24.5 32.6l51.1 32.5c4.6 2.9 12.1 4.6 17.2 5h160c5.1-.4 12.6-2.1 17.2-5l51.1-32.5c12.6-9.2 20.4-20 24.5-32.6l6.8-20.4 17.6 70.3-43.3 49c-8.7 9.9-14.1 22-15.6 35l-10.1 92.8c-1.9 17.6 10.8 33.4 28.3 35.3 1.2.1 2.3.2 3.5.2 16.1 0 30-12.1 31.8-28.5l10.1-92.6 67.2-75.9c13.6-15.5 19-36.7 14.4-56.7zM46.3 358.1l-44 110c-6.6 16.4 1.4 35 17.8 41.6 16.8 6.6 35.1-1.7 41.6-17.8l27.7-69.2-2-18.2-41.1-46.4z"],"pepper-hot":[512,512,[],"f816","M330.67 263.12V173.4l-52.75-24.22C219.44 218.76 197.58 400 56 400a56 56 0 0 0 0 112c212.64 0 370.65-122.87 419.18-210.34l-37.05-38.54zm131.09-128.37C493.92 74.91 477.18 26.48 458.62 3a8 8 0 0 0-11.93-.59l-22.9 23a8.06 8.06 0 0 0-.89 10.23c6.86 10.36 17.05 35.1-1.4 72.32A142.85 142.85 0 0 0 364.34 96c-28 0-54 8.54-76.34 22.59l74.67 34.29v78.24h89.09L506.44 288c3.26-12.62 5.56-25.63 5.56-39.31a154 154 0 0 0-50.24-113.94z"],percent:[448,512,[],"f295","M112 224c61.9 0 112-50.1 112-112S173.9 0 112 0 0 50.1 0 112s50.1 112 112 112zm0-160c26.5 0 48 21.5 48 48s-21.5 48-48 48-48-21.5-48-48 21.5-48 48-48zm224 224c-61.9 0-112 50.1-112 112s50.1 112 112 112 112-50.1 112-112-50.1-112-112-112zm0 160c-26.5 0-48-21.5-48-48s21.5-48 48-48 48 21.5 48 48-21.5 48-48 48zM392.3.2l31.6-.1c19.4-.1 30.9 21.8 19.7 37.8L77.4 501.6a23.95 23.95 0 0 1-19.6 10.2l-33.4.1c-19.5 0-30.9-21.9-19.7-37.8l368-463.7C377.2 4 384.5.2 392.3.2z"],percentage:[384,512,[],"f541","M109.25 173.25c24.99-24.99 24.99-65.52 0-90.51-24.99-24.99-65.52-24.99-90.51 0-24.99 24.99-24.99 65.52 0 90.51 25 25 65.52 25 90.51 0zm256 165.49c-24.99-24.99-65.52-24.99-90.51 0-24.99 24.99-24.99 65.52 0 90.51 24.99 24.99 65.52 24.99 90.51 0 25-24.99 25-65.51 0-90.51zm-1.94-231.43l-22.62-22.62c-12.5-12.5-32.76-12.5-45.25 0L20.69 359.44c-12.5 12.5-12.5 32.76 0 45.25l22.62 22.62c12.5 12.5 32.76 12.5 45.25 0l274.75-274.75c12.5-12.49 12.5-32.75 0-45.25z"],"person-booth":[576,512,[],"f756","M192 496c0 8.8 7.2 16 16 16h32c8.8 0 16-7.2 16-16V320h-64v176zm32-272h-50.9l-45.2-45.3C115.8 166.6 99.7 160 82.7 160H64c-17.1 0-33.2 6.7-45.3 18.8C6.7 190.9 0 207 0 224.1L.2 320 0 480c0 17.7 14.3 32 31.9 32 17.6 0 32-14.3 32-32l.1-100.7c.9.5 1.6 1.3 2.5 1.7l29.1 43v56c0 17.7 14.3 32 32 32s32-14.3 32-32v-56.5c0-9.9-2.3-19.8-6.7-28.6l-41.2-61.3V253l20.9 20.9c9.1 9.1 21.1 14.1 33.9 14.1H224c17.7 0 32-14.3 32-32s-14.3-32-32-32zM64 128c26.5 0 48-21.5 48-48S90.5 32 64 32 16 53.5 16 80s21.5 48 48 48zm224-96l31.5 223.1-30.9 154.6c-4.3 21.6 13 38.3 31.4 38.3 15.2 0 28-9.1 32.3-30.4.9 16.9 14.6 30.4 31.7 30.4 17.7 0 32-14.3 32-32 0 17.7 14.3 32 32 32s32-14.3 32-32V0H288v32zm-96 0v160h64V0h-32c-17.7 0-32 14.3-32 32zM544 0h-32v496c0 8.8 7.2 16 16 16h32c8.8 0 16-7.2 16-16V32c0-17.7-14.3-32-32-32z"],phone:[512,512,[],"f095","M493.4 24.6l-104-24c-11.3-2.6-22.9 3.3-27.5 13.9l-48 112c-4.2 9.8-1.4 21.3 6.9 28l60.6 49.6c-36 76.7-98.9 140.5-177.2 177.2l-49.6-60.6c-6.8-8.3-18.2-11.1-28-6.9l-112 48C3.9 366.5-2 378.1.6 389.4l24 104C27.1 504.2 36.7 512 48 512c256.1 0 464-207.5 464-464 0-11.2-7.7-20.9-18.6-23.4z"],"phone-alt":[512,512,[],"f879","M497.39 361.8l-112-48a24 24 0 0 0-28 6.9l-49.6 60.6A370.66 370.66 0 0 1 130.6 204.11l60.6-49.6a23.94 23.94 0 0 0 6.9-28l-48-112A24.16 24.16 0 0 0 122.6.61l-104 24A24 24 0 0 0 0 48c0 256.5 207.9 464 464 464a24 24 0 0 0 23.4-18.6l24-104a24.29 24.29 0 0 0-14.01-27.6z"],"phone-slash":[640,512,[],"f3dd","M268.2 381.4l-49.6-60.6c-6.8-8.3-18.2-11.1-28-6.9l-112 48c-10.7 4.6-16.5 16.1-13.9 27.5l24 104c2.5 10.8 12.1 18.6 23.4 18.6 100.7 0 193.7-32.4 269.7-86.9l-80-61.8c-10.9 6.5-22.1 12.7-33.6 18.1zm365.6 76.7L475.1 335.5C537.9 256.4 576 156.9 576 48c0-11.2-7.7-20.9-18.6-23.4l-104-24c-11.3-2.6-22.9 3.3-27.5 13.9l-48 112c-4.2 9.8-1.4 21.3 6.9 28l60.6 49.6c-12.2 26.1-27.9 50.3-46 72.8L45.5 3.4C38.5-2 28.5-.8 23 6.2L3.4 31.4c-5.4 7-4.2 17 2.8 22.4l588.4 454.7c7 5.4 17 4.2 22.5-2.8l19.6-25.3c5.4-6.8 4.1-16.9-2.9-22.3z"],"phone-square":[448,512,[],"f098","M400 32H48C21.49 32 0 53.49 0 80v352c0 26.51 21.49 48 48 48h352c26.51 0 48-21.49 48-48V80c0-26.51-21.49-48-48-48zM94 416c-7.033 0-13.057-4.873-14.616-11.627l-14.998-65a15 15 0 0 1 8.707-17.16l69.998-29.999a15 15 0 0 1 17.518 4.289l30.997 37.885c48.944-22.963 88.297-62.858 110.781-110.78l-37.886-30.997a15.001 15.001 0 0 1-4.289-17.518l30-69.998a15 15 0 0 1 17.16-8.707l65 14.998A14.997 14.997 0 0 1 384 126c0 160.292-129.945 290-290 290z"],"phone-square-alt":[448,512,[],"f87b","M400 32H48A48 48 0 0 0 0 80v352a48 48 0 0 0 48 48h352a48 48 0 0 0 48-48V80a48 48 0 0 0-48-48zm-16.39 307.37l-15 65A15 15 0 0 1 354 416C194 416 64 286.29 64 126a15.7 15.7 0 0 1 11.63-14.61l65-15A18.23 18.23 0 0 1 144 96a16.27 16.27 0 0 1 13.79 9.09l30 70A17.9 17.9 0 0 1 189 181a17 17 0 0 1-5.5 11.61l-37.89 31a231.91 231.91 0 0 0 110.78 110.78l31-37.89A17 17 0 0 1 299 291a17.85 17.85 0 0 1 5.91 1.21l70 30A16.25 16.25 0 0 1 384 336a17.41 17.41 0 0 1-.39 3.37z"],"phone-volume":[384,512,[],"f2a0","M97.333 506.966c-129.874-129.874-129.681-340.252 0-469.933 5.698-5.698 14.527-6.632 21.263-2.422l64.817 40.513a17.187 17.187 0 0 1 6.849 20.958l-32.408 81.021a17.188 17.188 0 0 1-17.669 10.719l-55.81-5.58c-21.051 58.261-20.612 122.471 0 179.515l55.811-5.581a17.188 17.188 0 0 1 17.669 10.719l32.408 81.022a17.188 17.188 0 0 1-6.849 20.958l-64.817 40.513a17.19 17.19 0 0 1-21.264-2.422zM247.126 95.473c11.832 20.047 11.832 45.008 0 65.055-3.95 6.693-13.108 7.959-18.718 2.581l-5.975-5.726c-3.911-3.748-4.793-9.622-2.261-14.41a32.063 32.063 0 0 0 0-29.945c-2.533-4.788-1.65-10.662 2.261-14.41l5.975-5.726c5.61-5.378 14.768-4.112 18.718 2.581zm91.787-91.187c60.14 71.604 60.092 175.882 0 247.428-4.474 5.327-12.53 5.746-17.552.933l-5.798-5.557c-4.56-4.371-4.977-11.529-.93-16.379 49.687-59.538 49.646-145.933 0-205.422-4.047-4.85-3.631-12.008.93-16.379l5.798-5.557c5.022-4.813 13.078-4.394 17.552.933zm-45.972 44.941c36.05 46.322 36.108 111.149 0 157.546-4.39 5.641-12.697 6.251-17.856 1.304l-5.818-5.579c-4.4-4.219-4.998-11.095-1.285-15.931 26.536-34.564 26.534-82.572 0-117.134-3.713-4.836-3.115-11.711 1.285-15.931l5.818-5.579c5.159-4.947 13.466-4.337 17.856 1.304z"],"photo-video":[640,512,[],"f87c","M608 0H160a32 32 0 0 0-32 32v96h160V64h192v320h128a32 32 0 0 0 32-32V32a32 32 0 0 0-32-32zM232 103a9 9 0 0 1-9 9h-30a9 9 0 0 1-9-9V73a9 9 0 0 1 9-9h30a9 9 0 0 1 9 9zm352 208a9 9 0 0 1-9 9h-30a9 9 0 0 1-9-9v-30a9 9 0 0 1 9-9h30a9 9 0 0 1 9 9zm0-104a9 9 0 0 1-9 9h-30a9 9 0 0 1-9-9v-30a9 9 0 0 1 9-9h30a9 9 0 0 1 9 9zm0-104a9 9 0 0 1-9 9h-30a9 9 0 0 1-9-9V73a9 9 0 0 1 9-9h30a9 9 0 0 1 9 9zm-168 57H32a32 32 0 0 0-32 32v288a32 32 0 0 0 32 32h384a32 32 0 0 0 32-32V192a32 32 0 0 0-32-32zM96 224a32 32 0 1 1-32 32 32 32 0 0 1 32-32zm288 224H64v-32l64-64 32 32 128-128 96 96z"],"piggy-bank":[576,512,[],"f4d3","M560 224h-29.5c-8.8-20-21.6-37.7-37.4-52.5L512 96h-32c-29.4 0-55.4 13.5-73 34.3-7.6-1.1-15.1-2.3-23-2.3H256c-77.4 0-141.9 55-156.8 128H56c-14.8 0-26.5-13.5-23.5-28.8C34.7 215.8 45.4 208 57 208h1c3.3 0 6-2.7 6-6v-20c0-3.3-2.7-6-6-6-28.5 0-53.9 20.4-57.5 48.6C-3.9 258.8 22.7 288 56 288h40c0 52.2 25.4 98.1 64 127.3V496c0 8.8 7.2 16 16 16h64c8.8 0 16-7.2 16-16v-48h128v48c0 8.8 7.2 16 16 16h64c8.8 0 16-7.2 16-16v-80.7c11.8-8.9 22.3-19.4 31.3-31.3H560c8.8 0 16-7.2 16-16V240c0-8.8-7.2-16-16-16zm-128 64c-8.8 0-16-7.2-16-16s7.2-16 16-16 16 7.2 16 16-7.2 16-16 16zM256 96h128c5.4 0 10.7.4 15.9.8 0-.3.1-.5.1-.8 0-53-43-96-96-96s-96 43-96 96c0 2.1.5 4.1.6 6.2 15.2-3.9 31-6.2 47.4-6.2z"],pills:[576,512,[],"f484","M112 32C50.1 32 0 82.1 0 144v224c0 61.9 50.1 112 112 112s112-50.1 112-112V144c0-61.9-50.1-112-112-112zm48 224H64V144c0-26.5 21.5-48 48-48s48 21.5 48 48v112zm139.7-29.7c-3.5-3.5-9.4-3.1-12.3.8-45.3 62.5-40.4 150.1 15.9 206.4 56.3 56.3 143.9 61.2 206.4 15.9 4-2.9 4.3-8.8.8-12.3L299.7 226.3zm229.8-19c-56.3-56.3-143.9-61.2-206.4-15.9-4 2.9-4.3 8.8-.8 12.3l210.8 210.8c3.5 3.5 9.4 3.1 12.3-.8 45.3-62.6 40.5-150.1-15.9-206.4z"],"pizza-slice":[512,512,[],"f818","M158.87.15c-16.16-1.52-31.2 8.42-35.33 24.12l-14.81 56.27c187.62 5.49 314.54 130.61 322.48 317l56.94-15.78c15.72-4.36 25.49-19.68 23.62-35.9C490.89 165.08 340.78 17.32 158.87.15zm-58.47 112L.55 491.64a16.21 16.21 0 0 0 20 19.75l379-105.1c-4.27-174.89-123.08-292.14-299.15-294.1zM128 416a32 32 0 1 1 32-32 32 32 0 0 1-32 32zm48-152a32 32 0 1 1 32-32 32 32 0 0 1-32 32zm104 104a32 32 0 1 1 32-32 32 32 0 0 1-32 32z"],"place-of-worship":[640,512,[],"f67f","M620.61 366.55L512 320v192h112c8.84 0 16-7.16 16-16V395.96a32 32 0 0 0-19.39-29.41zM0 395.96V496c0 8.84 7.16 16 16 16h112V320L19.39 366.55A32 32 0 0 0 0 395.96zm464.46-149.28L416 217.6V102.63c0-8.49-3.37-16.62-9.38-22.63L331.31 4.69c-6.25-6.25-16.38-6.25-22.62 0L233.38 80c-6 6-9.38 14.14-9.38 22.63V217.6l-48.46 29.08A31.997 31.997 0 0 0 160 274.12V512h96v-96c0-35.35 28.66-64 64-64s64 28.65 64 64v96h96V274.12c0-11.24-5.9-21.66-15.54-27.44z"],plane:[576,512,[],"f072","M480 192H365.71L260.61 8.06A16.014 16.014 0 0 0 246.71 0h-65.5c-10.63 0-18.3 10.17-15.38 20.39L214.86 192H112l-43.2-57.6c-3.02-4.03-7.77-6.4-12.8-6.4H16.01C5.6 128-2.04 137.78.49 147.88L32 256 .49 364.12C-2.04 374.22 5.6 384 16.01 384H56c5.04 0 9.78-2.37 12.8-6.4L112 320h102.86l-49.03 171.6c-2.92 10.22 4.75 20.4 15.38 20.4h65.5c5.74 0 11.04-3.08 13.89-8.06L365.71 320H480c35.35 0 96-28.65 96-64s-60.65-64-96-64z"],"plane-arrival":[640,512,[],"f5af","M624 448H16c-8.84 0-16 7.16-16 16v32c0 8.84 7.16 16 16 16h608c8.84 0 16-7.16 16-16v-32c0-8.84-7.16-16-16-16zM44.81 205.66l88.74 80a62.607 62.607 0 0 0 25.47 13.93l287.6 78.35c26.48 7.21 54.56 8.72 81 1.36 29.67-8.27 43.44-21.21 47.25-35.71 3.83-14.5-1.73-32.71-23.37-54.96-19.28-19.82-44.35-32.79-70.83-40l-97.51-26.56L282.8 30.22c-1.51-5.81-5.95-10.35-11.66-11.91L206.05.58c-10.56-2.88-20.9 5.32-20.71 16.44l47.92 164.21-102.2-27.84-27.59-67.88c-1.93-4.89-6.01-8.57-11.02-9.93L52.72 64.75c-10.34-2.82-20.53 5-20.72 15.88l.23 101.78c.19 8.91 6.03 17.34 12.58 23.25z"],"plane-departure":[640,512,[],"f5b0","M624 448H16c-8.84 0-16 7.16-16 16v32c0 8.84 7.16 16 16 16h608c8.84 0 16-7.16 16-16v-32c0-8.84-7.16-16-16-16zM80.55 341.27c6.28 6.84 15.1 10.72 24.33 10.71l130.54-.18a65.62 65.62 0 0 0 29.64-7.12l290.96-147.65c26.74-13.57 50.71-32.94 67.02-58.31 18.31-28.48 20.3-49.09 13.07-63.65-7.21-14.57-24.74-25.27-58.25-27.45-29.85-1.94-59.54 5.92-86.28 19.48l-98.51 49.99-218.7-82.06a17.799 17.799 0 0 0-18-1.11L90.62 67.29c-10.67 5.41-13.25 19.65-5.17 28.53l156.22 98.1-103.21 52.38-72.35-36.47a17.804 17.804 0 0 0-16.07.02L9.91 230.22c-10.44 5.3-13.19 19.12-5.57 28.08l76.21 82.97z"],play:[448,512,[],"f04b","M424.4 214.7L72.4 6.6C43.8-10.3 0 6.1 0 47.9V464c0 37.5 40.7 60.1 72.4 41.3l352-208c31.4-18.5 31.5-64.1 0-82.6z"],"play-circle":[512,512,[],"f144","M256 8C119 8 8 119 8 256s111 248 248 248 248-111 248-248S393 8 256 8zm115.7 272l-176 101c-15.8 8.8-35.7-2.5-35.7-21V152c0-18.4 19.8-29.8 35.7-21l176 107c16.4 9.2 16.4 32.9 0 42z"],plug:[384,512,[],"f1e6","M320,32a32,32,0,0,0-64,0v96h64Zm48,128H16A16,16,0,0,0,0,176v32a16,16,0,0,0,16,16H32v32A160.07,160.07,0,0,0,160,412.8V512h64V412.8A160.07,160.07,0,0,0,352,256V224h16a16,16,0,0,0,16-16V176A16,16,0,0,0,368,160ZM128,32a32,32,0,0,0-64,0v96h64Z"],plus:[448,512,[],"f067","M416 208H272V64c0-17.67-14.33-32-32-32h-32c-17.67 0-32 14.33-32 32v144H32c-17.67 0-32 14.33-32 32v32c0 17.67 14.33 32 32 32h144v144c0 17.67 14.33 32 32 32h32c17.67 0 32-14.33 32-32V304h144c17.67 0 32-14.33 32-32v-32c0-17.67-14.33-32-32-32z"],"plus-circle":[512,512,[],"f055","M256 8C119 8 8 119 8 256s111 248 248 248 248-111 248-248S393 8 256 8zm144 276c0 6.6-5.4 12-12 12h-92v92c0 6.6-5.4 12-12 12h-56c-6.6 0-12-5.4-12-12v-92h-92c-6.6 0-12-5.4-12-12v-56c0-6.6 5.4-12 12-12h92v-92c0-6.6 5.4-12 12-12h56c6.6 0 12 5.4 12 12v92h92c6.6 0 12 5.4 12 12v56z"],"plus-square":[448,512,[],"f0fe","M400 32H48C21.5 32 0 53.5 0 80v352c0 26.5 21.5 48 48 48h352c26.5 0 48-21.5 48-48V80c0-26.5-21.5-48-48-48zm-32 252c0 6.6-5.4 12-12 12h-92v92c0 6.6-5.4 12-12 12h-56c-6.6 0-12-5.4-12-12v-92H92c-6.6 0-12-5.4-12-12v-56c0-6.6 5.4-12 12-12h92v-92c0-6.6 5.4-12 12-12h56c6.6 0 12 5.4 12 12v92h92c6.6 0 12 5.4 12 12v56z"],podcast:[448,512,[],"f2ce","M267.429 488.563C262.286 507.573 242.858 512 224 512c-18.857 0-38.286-4.427-43.428-23.437C172.927 460.134 160 388.898 160 355.75c0-35.156 31.142-43.75 64-43.75s64 8.594 64 43.75c0 32.949-12.871 104.179-20.571 132.813zM156.867 288.554c-18.693-18.308-29.958-44.173-28.784-72.599 2.054-49.724 42.395-89.956 92.124-91.881C274.862 121.958 320 165.807 320 220c0 26.827-11.064 51.116-28.866 68.552-2.675 2.62-2.401 6.986.628 9.187 9.312 6.765 16.46 15.343 21.234 25.363 1.741 3.654 6.497 4.66 9.449 1.891 28.826-27.043 46.553-65.783 45.511-108.565-1.855-76.206-63.595-138.208-139.793-140.369C146.869 73.753 80 139.215 80 220c0 41.361 17.532 78.7 45.55 104.989 2.953 2.771 7.711 1.77 9.453-1.887 4.774-10.021 11.923-18.598 21.235-25.363 3.029-2.2 3.304-6.566.629-9.185zM224 0C100.204 0 0 100.185 0 224c0 89.992 52.602 165.647 125.739 201.408 4.333 2.118 9.267-1.544 8.535-6.31-2.382-15.512-4.342-30.946-5.406-44.339-.146-1.836-1.149-3.486-2.678-4.512-47.4-31.806-78.564-86.016-78.187-147.347.592-96.237 79.29-174.648 175.529-174.899C320.793 47.747 400 126.797 400 224c0 61.932-32.158 116.49-80.65 147.867-.999 14.037-3.069 30.588-5.624 47.23-.732 4.767 4.203 8.429 8.535 6.31C395.227 389.727 448 314.187 448 224 448 100.205 347.815 0 224 0zm0 160c-35.346 0-64 28.654-64 64s28.654 64 64 64 64-28.654 64-64-28.654-64-64-64z"],poll:[448,512,[],"f681","M400 32H48C21.5 32 0 53.5 0 80v352c0 26.5 21.5 48 48 48h352c26.5 0 48-21.5 48-48V80c0-26.5-21.5-48-48-48zM160 368c0 8.84-7.16 16-16 16h-32c-8.84 0-16-7.16-16-16V240c0-8.84 7.16-16 16-16h32c8.84 0 16 7.16 16 16v128zm96 0c0 8.84-7.16 16-16 16h-32c-8.84 0-16-7.16-16-16V144c0-8.84 7.16-16 16-16h32c8.84 0 16 7.16 16 16v224zm96 0c0 8.84-7.16 16-16 16h-32c-8.84 0-16-7.16-16-16v-64c0-8.84 7.16-16 16-16h32c8.84 0 16 7.16 16 16v64z"],"poll-h":[448,512,[],"f682","M448 432V80c0-26.5-21.5-48-48-48H48C21.5 32 0 53.5 0 80v352c0 26.5 21.5 48 48 48h352c26.5 0 48-21.5 48-48zM112 192c-8.84 0-16-7.16-16-16v-32c0-8.84 7.16-16 16-16h128c8.84 0 16 7.16 16 16v32c0 8.84-7.16 16-16 16H112zm0 96c-8.84 0-16-7.16-16-16v-32c0-8.84 7.16-16 16-16h224c8.84 0 16 7.16 16 16v32c0 8.84-7.16 16-16 16H112zm0 96c-8.84 0-16-7.16-16-16v-32c0-8.84 7.16-16 16-16h64c8.84 0 16 7.16 16 16v32c0 8.84-7.16 16-16 16h-64z"],poo:[512,512,[],"f2fe","M451.4 369.1C468.7 356 480 335.4 480 312c0-39.8-32.2-72-72-72h-14.1c13.4-11.7 22.1-28.8 22.1-48 0-35.3-28.7-64-64-64h-5.9c3.6-10.1 5.9-20.7 5.9-32 0-53-43-96-96-96-5.2 0-10.2.7-15.1 1.5C250.3 14.6 256 30.6 256 48c0 44.2-35.8 80-80 80h-16c-35.3 0-64 28.7-64 64 0 19.2 8.7 36.3 22.1 48H104c-39.8 0-72 32.2-72 72 0 23.4 11.3 44 28.6 57.1C26.3 374.6 0 404.1 0 440c0 39.8 32.2 72 72 72h368c39.8 0 72-32.2 72-72 0-35.9-26.3-65.4-60.6-70.9zM192 256c17.7 0 32 14.3 32 32s-14.3 32-32 32-32-14.3-32-32 14.3-32 32-32zm159.5 139C341 422.9 293 448 256 448s-85-25.1-95.5-53c-2-5.3 2-11 7.8-11h175.4c5.8 0 9.8 5.7 7.8 11zM320 320c-17.7 0-32-14.3-32-32s14.3-32 32-32 32 14.3 32 32-14.3 32-32 32z"],"poo-storm":[448,512,[],"f75a","M308 336h-57.7l17.3-64.9c2-7.6-3.7-15.1-11.6-15.1h-68c-6 0-11.1 4.5-11.9 10.4l-16 120c-1 7.2 4.6 13.6 11.9 13.6h59.3l-23 97.2c-1.8 7.6 4 14.8 11.7 14.8 4.2 0 8.2-2.2 10.4-6l88-152c4.6-8-1.2-18-10.4-18zm66.4-111.3c5.9-9.6 9.6-20.6 9.6-32.7 0-35.3-28.7-64-64-64h-5.9c3.6-10.1 5.9-20.7 5.9-32 0-53-43-96-96-96-5.2 0-10.2.7-15.1 1.5C218.3 14.6 224 30.6 224 48c0 44.2-35.8 80-80 80h-16c-35.3 0-64 28.7-64 64 0 12.1 3.7 23.1 9.6 32.7C32.6 228 0 262.2 0 304c0 44 36 80 80 80h48.3c.1-.6 0-1.2 0-1.8l16-120c3-21.8 21.7-38.2 43.7-38.2h68c13.8 0 26.5 6.3 34.9 17.2s11.2 24.8 7.6 38.1l-6.6 24.7h16c15.7 0 30.3 8.4 38.1 22 7.8 13.6 7.8 30.5 0 44l-8.1 14h30c44 0 80-36 80-80 .1-41.8-32.5-76-73.5-79.3z"],poop:[512,512,[],"f619","M451.36 369.14C468.66 355.99 480 335.41 480 312c0-39.77-32.24-72-72-72h-14.07c13.42-11.73 22.07-28.78 22.07-48 0-35.35-28.65-64-64-64h-5.88c3.57-10.05 5.88-20.72 5.88-32 0-53.02-42.98-96-96-96-5.17 0-10.15.74-15.11 1.52C250.31 14.64 256 30.62 256 48c0 44.18-35.82 80-80 80h-16c-35.35 0-64 28.65-64 64 0 19.22 8.65 36.27 22.07 48H104c-39.76 0-72 32.23-72 72 0 23.41 11.34 43.99 28.64 57.14C26.31 374.62 0 404.12 0 440c0 39.76 32.24 72 72 72h368c39.76 0 72-32.24 72-72 0-35.88-26.31-65.38-60.64-70.86z"],portrait:[384,512,[],"f3e0","M336 0H48C21.5 0 0 21.5 0 48v416c0 26.5 21.5 48 48 48h288c26.5 0 48-21.5 48-48V48c0-26.5-21.5-48-48-48zM192 128c35.3 0 64 28.7 64 64s-28.7 64-64 64-64-28.7-64-64 28.7-64 64-64zm112 236.8c0 10.6-10 19.2-22.4 19.2H102.4C90 384 80 375.4 80 364.8v-19.2c0-31.8 30.1-57.6 67.2-57.6h5c12.3 5.1 25.7 8 39.8 8s27.6-2.9 39.8-8h5c37.1 0 67.2 25.8 67.2 57.6v19.2z"],"pound-sign":[320,512,[],"f154","M308 352h-45.495c-6.627 0-12 5.373-12 12v50.848H128V288h84c6.627 0 12-5.373 12-12v-40c0-6.627-5.373-12-12-12h-84v-63.556c0-32.266 24.562-57.086 61.792-57.086 23.658 0 45.878 11.505 57.652 18.849 5.151 3.213 11.888 2.051 15.688-2.685l28.493-35.513c4.233-5.276 3.279-13.005-2.119-17.081C273.124 54.56 236.576 32 187.931 32 106.026 32 48 84.742 48 157.961V224H20c-6.627 0-12 5.373-12 12v40c0 6.627 5.373 12 12 12h28v128H12c-6.627 0-12 5.373-12 12v40c0 6.627 5.373 12 12 12h296c6.627 0 12-5.373 12-12V364c0-6.627-5.373-12-12-12z"],"power-off":[512,512,[],"f011","M400 54.1c63 45 104 118.6 104 201.9 0 136.8-110.8 247.7-247.5 248C120 504.3 8.2 393 8 256.4 7.9 173.1 48.9 99.3 111.8 54.2c11.7-8.3 28-4.8 35 7.7L162.6 90c5.9 10.5 3.1 23.8-6.6 31-41.5 30.8-68 79.6-68 134.9-.1 92.3 74.5 168.1 168 168.1 91.6 0 168.6-74.2 168-169.1-.3-51.8-24.7-101.8-68.1-134-9.7-7.2-12.4-20.5-6.5-30.9l15.8-28.1c7-12.4 23.2-16.1 34.8-7.8zM296 264V24c0-13.3-10.7-24-24-24h-32c-13.3 0-24 10.7-24 24v240c0 13.3 10.7 24 24 24h32c13.3 0 24-10.7 24-24z"],pray:[384,512,[],"f683","M256 128c35.35 0 64-28.65 64-64S291.35 0 256 0s-64 28.65-64 64 28.65 64 64 64zm-30.63 169.75c14.06 16.72 39 19.09 55.97 5.22l88-72.02c17.09-13.98 19.59-39.19 5.62-56.28-13.97-17.11-39.19-19.59-56.31-5.62l-57.44 47-38.91-46.31c-15.44-18.39-39.22-27.92-64-25.33-24.19 2.48-45.25 16.27-56.37 36.92l-49.37 92.03c-23.4 43.64-8.69 96.37 34.19 123.75L131.56 432H40c-22.09 0-40 17.91-40 40s17.91 40 40 40h208c34.08 0 53.77-42.79 28.28-68.28L166.42 333.86l34.8-64.87 24.15 28.76z"],"praying-hands":[640,512,[],"f684","M272 191.91c-17.6 0-32 14.4-32 32v80c0 8.84-7.16 16-16 16s-16-7.16-16-16v-76.55c0-17.39 4.72-34.47 13.69-49.39l77.75-129.59c9.09-15.16 4.19-34.81-10.97-43.91-14.45-8.67-32.72-4.3-42.3 9.21-.2.23-.62.21-.79.48l-117.26 175.9C117.56 205.9 112 224.31 112 243.29v80.23l-90.12 30.04A31.974 31.974 0 0 0 0 383.91v96c0 10.82 8.52 32 32 32 2.69 0 5.41-.34 8.06-1.03l179.19-46.62C269.16 449.99 304 403.8 304 351.91v-128c0-17.6-14.4-32-32-32zm346.12 161.73L528 323.6v-80.23c0-18.98-5.56-37.39-16.12-53.23L394.62 14.25c-.18-.27-.59-.24-.79-.48-9.58-13.51-27.85-17.88-42.3-9.21-15.16 9.09-20.06 28.75-10.97 43.91l77.75 129.59c8.97 14.92 13.69 32 13.69 49.39V304c0 8.84-7.16 16-16 16s-16-7.16-16-16v-80c0-17.6-14.4-32-32-32s-32 14.4-32 32v128c0 51.89 34.84 98.08 84.75 112.34l179.19 46.62c2.66.69 5.38 1.03 8.06 1.03 23.48 0 32-21.18 32-32v-96c0-13.77-8.81-25.99-21.88-30.35z"],prescription:[384,512,[],"f5b1","M301.26 352l78.06-78.06c6.25-6.25 6.25-16.38 0-22.63l-22.63-22.63c-6.25-6.25-16.38-6.25-22.63 0L256 306.74l-83.96-83.96C219.31 216.8 256 176.89 256 128c0-53.02-42.98-96-96-96H16C7.16 32 0 39.16 0 48v256c0 8.84 7.16 16 16 16h32c8.84 0 16-7.16 16-16v-80h18.75l128 128-78.06 78.06c-6.25 6.25-6.25 16.38 0 22.63l22.63 22.63c6.25 6.25 16.38 6.25 22.63 0L256 397.25l78.06 78.06c6.25 6.25 16.38 6.25 22.63 0l22.63-22.63c6.25-6.25 6.25-16.38 0-22.63L301.26 352zM64 96h96c17.64 0 32 14.36 32 32s-14.36 32-32 32H64V96z"],"prescription-bottle":[384,512,[],"f485","M32 192h120c4.4 0 8 3.6 8 8v16c0 4.4-3.6 8-8 8H32v64h120c4.4 0 8 3.6 8 8v16c0 4.4-3.6 8-8 8H32v64h120c4.4 0 8 3.6 8 8v16c0 4.4-3.6 8-8 8H32v64c0 17.6 14.4 32 32 32h256c17.6 0 32-14.4 32-32V128H32v64zM360 0H24C10.8 0 0 10.8 0 24v48c0 13.2 10.8 24 24 24h336c13.2 0 24-10.8 24-24V24c0-13.2-10.8-24-24-24z"],"prescription-bottle-alt":[384,512,[],"f486","M360 0H24C10.8 0 0 10.8 0 24v48c0 13.2 10.8 24 24 24h336c13.2 0 24-10.8 24-24V24c0-13.2-10.8-24-24-24zM32 480c0 17.6 14.4 32 32 32h256c17.6 0 32-14.4 32-32V128H32v352zm64-184c0-4.4 3.6-8 8-8h56v-56c0-4.4 3.6-8 8-8h48c4.4 0 8 3.6 8 8v56h56c4.4 0 8 3.6 8 8v48c0 4.4-3.6 8-8 8h-56v56c0 4.4-3.6 8-8 8h-48c-4.4 0-8-3.6-8-8v-56h-56c-4.4 0-8-3.6-8-8v-48z"],print:[512,512,[],"f02f","M448 192V77.25c0-8.49-3.37-16.62-9.37-22.63L393.37 9.37c-6-6-14.14-9.37-22.63-9.37H96C78.33 0 64 14.33 64 32v160c-35.35 0-64 28.65-64 64v112c0 8.84 7.16 16 16 16h48v96c0 17.67 14.33 32 32 32h320c17.67 0 32-14.33 32-32v-96h48c8.84 0 16-7.16 16-16V256c0-35.35-28.65-64-64-64zm-64 256H128v-96h256v96zm0-224H128V64h192v48c0 8.84 7.16 16 16 16h48v96zm48 72c-13.25 0-24-10.75-24-24 0-13.26 10.75-24 24-24s24 10.74 24 24c0 13.25-10.75 24-24 24z"],procedures:[640,512,[],"f487","M528 224H272c-8.8 0-16 7.2-16 16v144H64V144c0-8.8-7.2-16-16-16H16c-8.8 0-16 7.2-16 16v352c0 8.8 7.2 16 16 16h32c8.8 0 16-7.2 16-16v-48h512v48c0 8.8 7.2 16 16 16h32c8.8 0 16-7.2 16-16V336c0-61.9-50.1-112-112-112zM136 96h126.1l27.6 55.2c5.9 11.8 22.7 11.8 28.6 0L368 51.8 390.1 96H512c8.8 0 16-7.2 16-16s-7.2-16-16-16H409.9L382.3 8.8C376.4-3 359.6-3 353.7 8.8L304 108.2l-19.9-39.8c-1.4-2.7-4.1-4.4-7.2-4.4H136c-4.4 0-8 3.6-8 8v16c0 4.4 3.6 8 8 8zm24 256c35.3 0 64-28.7 64-64s-28.7-64-64-64-64 28.7-64 64 28.7 64 64 64z"],"project-diagram":[640,512,[],"f542","M384 320H256c-17.67 0-32 14.33-32 32v128c0 17.67 14.33 32 32 32h128c17.67 0 32-14.33 32-32V352c0-17.67-14.33-32-32-32zM192 32c0-17.67-14.33-32-32-32H32C14.33 0 0 14.33 0 32v128c0 17.67 14.33 32 32 32h95.72l73.16 128.04C211.98 300.98 232.4 288 256 288h.28L192 175.51V128h224V64H192V32zM608 0H480c-17.67 0-32 14.33-32 32v128c0 17.67 14.33 32 32 32h128c17.67 0 32-14.33 32-32V32c0-17.67-14.33-32-32-32z"],"puzzle-piece":[576,512,[],"f12e","M519.442 288.651c-41.519 0-59.5 31.593-82.058 31.593C377.409 320.244 432 144 432 144s-196.288 80-196.288-3.297c0-35.827 36.288-46.25 36.288-85.985C272 19.216 243.885 0 210.539 0c-34.654 0-66.366 18.891-66.366 56.346 0 41.364 31.711 59.277 31.711 81.75C175.885 207.719 0 166.758 0 166.758v333.237s178.635 41.047 178.635-28.662c0-22.473-40-40.107-40-81.471 0-37.456 29.25-56.346 63.577-56.346 33.673 0 61.788 19.216 61.788 54.717 0 39.735-36.288 50.158-36.288 85.985 0 60.803 129.675 25.73 181.23 25.73 0 0-34.725-120.101 25.827-120.101 35.962 0 46.423 36.152 86.308 36.152C556.712 416 576 387.99 576 354.443c0-34.199-18.962-65.792-56.558-65.792z"],qrcode:[448,512,[],"f029","M0 224h192V32H0v192zM64 96h64v64H64V96zm192-64v192h192V32H256zm128 128h-64V96h64v64zM0 480h192V288H0v192zm64-128h64v64H64v-64zm352-64h32v128h-96v-32h-32v96h-64V288h96v32h64v-32zm0 160h32v32h-32v-32zm-64 0h32v32h-32v-32z"],question:[384,512,[],"f128","M202.021 0C122.202 0 70.503 32.703 29.914 91.026c-7.363 10.58-5.093 25.086 5.178 32.874l43.138 32.709c10.373 7.865 25.132 6.026 33.253-4.148 25.049-31.381 43.63-49.449 82.757-49.449 30.764 0 68.816 19.799 68.816 49.631 0 22.552-18.617 34.134-48.993 51.164-35.423 19.86-82.299 44.576-82.299 106.405V320c0 13.255 10.745 24 24 24h72.471c13.255 0 24-10.745 24-24v-5.773c0-42.86 125.268-44.645 125.268-160.627C377.504 66.256 286.902 0 202.021 0zM192 373.459c-38.196 0-69.271 31.075-69.271 69.271 0 38.195 31.075 69.27 69.271 69.27s69.271-31.075 69.271-69.271-31.075-69.27-69.271-69.27z"],"question-circle":[512,512,[],"f059","M504 256c0 136.997-111.043 248-248 248S8 392.997 8 256C8 119.083 119.043 8 256 8s248 111.083 248 248zM262.655 90c-54.497 0-89.255 22.957-116.549 63.758-3.536 5.286-2.353 12.415 2.715 16.258l34.699 26.31c5.205 3.947 12.621 3.008 16.665-2.122 17.864-22.658 30.113-35.797 57.303-35.797 20.429 0 45.698 13.148 45.698 32.958 0 14.976-12.363 22.667-32.534 33.976C247.128 238.528 216 254.941 216 296v4c0 6.627 5.373 12 12 12h56c6.627 0 12-5.373 12-12v-1.333c0-28.462 83.186-29.647 83.186-106.667 0-58.002-60.165-102-116.531-102zM256 338c-25.365 0-46 20.635-46 46 0 25.364 20.635 46 46 46s46-20.636 46-46c0-25.365-20.635-46-46-46z"],quidditch:[640,512,[],"f458","M256.5 216.8L343.2 326s-16.6 102.4-76.6 150.1C206.7 523.8 0 510.2 0 510.2s3.8-23.1 11-55.4l94.6-112.2c4-4.7-.9-11.6-6.6-9.5l-60.4 22.1c14.4-41.7 32.7-80 54.6-97.5 59.9-47.8 163.3-40.9 163.3-40.9zm238 135c-44 0-79.8 35.8-79.8 79.9 0 44.1 35.7 79.9 79.8 79.9 44.1 0 79.8-35.8 79.8-79.9 0-44.2-35.8-79.9-79.8-79.9zM636.5 31L616.7 6c-5.5-6.9-15.5-8-22.4-2.6L361.8 181.3l-34.1-43c-5.1-6.4-15.1-5.2-18.6 2.2l-25.3 54.6 86.7 109.2 58.8-12.4c8-1.7 11.4-11.2 6.3-17.6l-34.1-42.9L634 53.5c6.9-5.5 8-15.6 2.5-22.5z"],"quote-left":[512,512,[],"f10d","M464 256h-80v-64c0-35.3 28.7-64 64-64h8c13.3 0 24-10.7 24-24V56c0-13.3-10.7-24-24-24h-8c-88.4 0-160 71.6-160 160v240c0 26.5 21.5 48 48 48h128c26.5 0 48-21.5 48-48V304c0-26.5-21.5-48-48-48zm-288 0H96v-64c0-35.3 28.7-64 64-64h8c13.3 0 24-10.7 24-24V56c0-13.3-10.7-24-24-24h-8C71.6 32 0 103.6 0 192v240c0 26.5 21.5 48 48 48h128c26.5 0 48-21.5 48-48V304c0-26.5-21.5-48-48-48z"],"quote-right":[512,512,[],"f10e","M464 32H336c-26.5 0-48 21.5-48 48v128c0 26.5 21.5 48 48 48h80v64c0 35.3-28.7 64-64 64h-8c-13.3 0-24 10.7-24 24v48c0 13.3 10.7 24 24 24h8c88.4 0 160-71.6 160-160V80c0-26.5-21.5-48-48-48zm-288 0H48C21.5 32 0 53.5 0 80v128c0 26.5 21.5 48 48 48h80v64c0 35.3-28.7 64-64 64h-8c-13.3 0-24 10.7-24 24v48c0 13.3 10.7 24 24 24h8c88.4 0 160-71.6 160-160V80c0-26.5-21.5-48-48-48z"],quran:[448,512,[],"f687","M448 358.4V25.6c0-16-9.6-25.6-25.6-25.6H96C41.6 0 0 41.6 0 96v320c0 54.4 41.6 96 96 96h326.4c12.8 0 25.6-9.6 25.6-25.6v-16c0-6.4-3.2-12.8-9.6-19.2-3.2-16-3.2-60.8 0-73.6 6.4-3.2 9.6-9.6 9.6-19.2zM301.08 145.82c.6-1.21 1.76-1.82 2.92-1.82s2.32.61 2.92 1.82l11.18 22.65 25 3.63c2.67.39 3.74 3.67 1.81 5.56l-18.09 17.63 4.27 24.89c.36 2.11-1.31 3.82-3.21 3.82-.5 0-1.02-.12-1.52-.38L304 211.87l-22.36 11.75c-.5.26-1.02.38-1.52.38-1.9 0-3.57-1.71-3.21-3.82l4.27-24.89-18.09-17.63c-1.94-1.89-.87-5.17 1.81-5.56l24.99-3.63 11.19-22.65zm-57.89-69.01c13.67 0 27.26 2.49 40.38 7.41a6.775 6.775 0 1 1-2.38 13.12c-.67 0-3.09-.21-4.13-.21-52.31 0-94.86 42.55-94.86 94.86 0 52.3 42.55 94.86 94.86 94.86 1.03 0 3.48-.21 4.13-.21 3.93 0 6.8 3.14 6.8 6.78 0 2.98-1.94 5.51-4.62 6.42-13.07 4.87-26.59 7.34-40.19 7.34C179.67 307.19 128 255.51 128 192c0-63.52 51.67-115.19 115.19-115.19zM380.8 448H96c-19.2 0-32-12.8-32-32s16-32 32-32h284.8v64z"],radiation:[496,512,[],"f7b9","M328.2 255.8h151.6c9.1 0 16.8-7.7 16.2-16.8-5.1-75.8-44.4-142.2-102.5-184.2-7.4-5.3-17.9-2.9-22.7 4.8L290.4 188c22.6 14.3 37.8 39.2 37.8 67.8zm-37.8 67.7c-12.3 7.7-26.8 12.4-42.4 12.4-15.6 0-30-4.7-42.4-12.4L125.2 452c-4.8 7.7-2.4 18.1 5.6 22.4C165.7 493.2 205.6 504 248 504s82.3-10.8 117.2-29.6c8-4.3 10.4-14.8 5.6-22.4l-80.4-128.5zM248 303.8c26.5 0 48-21.5 48-48s-21.5-48-48-48-48 21.5-48 48 21.5 48 48 48zm-231.8-48h151.6c0-28.6 15.2-53.5 37.8-67.7L125.2 59.7c-4.8-7.7-15.3-10.2-22.7-4.8C44.4 96.9 5.1 163.3 0 239.1c-.6 9 7.1 16.7 16.2 16.7z"],"radiation-alt":[496,512,[],"f7ba","M312 256h79.1c9.2 0 16.9-7.7 16-16.8-4.6-43.6-27-81.8-59.5-107.8-7.6-6.1-18.8-4.5-24 3.8L281.9 202c18 11.2 30.1 31.2 30.1 54zm-97.8 54.1L172.4 377c-4.9 7.8-2.4 18.4 5.8 22.5 21.1 10.4 44.7 16.5 69.8 16.5s48.7-6.1 69.9-16.5c8.2-4.1 10.6-14.7 5.8-22.5l-41.8-66.9c-9.8 6.2-21.4 9.9-33.8 9.9s-24.1-3.7-33.9-9.9zM104.9 256H184c0-22.8 12.1-42.8 30.2-54.1l-41.7-66.8c-5.2-8.3-16.4-9.9-24-3.8-32.6 26-54.9 64.2-59.5 107.8-1.1 9.2 6.7 16.9 15.9 16.9zM248 504c137 0 248-111 248-248S385 8 248 8 0 119 0 256s111 248 248 248zm0-432c101.5 0 184 82.5 184 184s-82.5 184-184 184S64 357.5 64 256 146.5 72 248 72zm0 216c17.7 0 32-14.3 32-32s-14.3-32-32-32-32 14.3-32 32 14.3 32 32 32z"],rainbow:[576,512,[],"f75b","M268.3 32.7C115.4 42.9 0 176.9 0 330.2V464c0 8.8 7.2 16 16 16h32c8.8 0 16-7.2 16-16V320C64 186.8 180.9 80.3 317.5 97.9 430.4 112.4 512 214 512 327.8V464c0 8.8 7.2 16 16 16h32c8.8 0 16-7.2 16-16V320c0-165.3-140-298.6-307.7-287.3zm-5.6 96.9C166 142 96 229.1 96 326.7V464c0 8.8 7.2 16 16 16h32c8.8 0 16-7.2 16-16V320c0-74.8 64.5-134.8 140.8-127.4 66.5 6.5 115.2 66.2 115.2 133.1V464c0 8.8 7.2 16 16 16h32c8.8 0 16-7.2 16-16V320c0-114.2-100.2-205.4-217.3-190.4zm6.2 96.3c-45.6 8.9-76.9 51.5-76.9 97.9V464c0 8.8 7.2 16 16 16h32c8.8 0 16-7.2 16-16V320c0-17.6 14.3-32 32-32s32 14.4 32 32v144c0 8.8 7.2 16 16 16h32c8.8 0 16-7.2 16-16V320c0-59.2-53.8-106-115.1-94.1z"],random:[512,512,[],"f074","M504.971 359.029c9.373 9.373 9.373 24.569 0 33.941l-80 79.984c-15.01 15.01-40.971 4.49-40.971-16.971V416h-58.785a12.004 12.004 0 0 1-8.773-3.812l-70.556-75.596 53.333-57.143L352 336h32v-39.981c0-21.438 25.943-31.998 40.971-16.971l80 79.981zM12 176h84l52.781 56.551 53.333-57.143-70.556-75.596A11.999 11.999 0 0 0 122.785 96H12c-6.627 0-12 5.373-12 12v56c0 6.627 5.373 12 12 12zm372 0v39.984c0 21.46 25.961 31.98 40.971 16.971l80-79.984c9.373-9.373 9.373-24.569 0-33.941l-80-79.981C409.943 24.021 384 34.582 384 56.019V96h-58.785a12.004 12.004 0 0 0-8.773 3.812L96 336H12c-6.627 0-12 5.373-12 12v56c0 6.627 5.373 12 12 12h110.785c3.326 0 6.503-1.381 8.773-3.812L352 176h32z"],receipt:[384,512,[],"f543","M358.4 3.2L320 48 265.6 3.2a15.9 15.9 0 0 0-19.2 0L192 48 137.6 3.2a15.9 15.9 0 0 0-19.2 0L64 48 25.6 3.2C15-4.7 0 2.8 0 16v480c0 13.2 15 20.7 25.6 12.8L64 464l54.4 44.8a15.9 15.9 0 0 0 19.2 0L192 464l54.4 44.8a15.9 15.9 0 0 0 19.2 0L320 464l38.4 44.8c10.5 7.9 25.6.4 25.6-12.8V16c0-13.2-15-20.7-25.6-12.8zM320 360c0 4.4-3.6 8-8 8H72c-4.4 0-8-3.6-8-8v-16c0-4.4 3.6-8 8-8h240c4.4 0 8 3.6 8 8v16zm0-96c0 4.4-3.6 8-8 8H72c-4.4 0-8-3.6-8-8v-16c0-4.4 3.6-8 8-8h240c4.4 0 8 3.6 8 8v16zm0-96c0 4.4-3.6 8-8 8H72c-4.4 0-8-3.6-8-8v-16c0-4.4 3.6-8 8-8h240c4.4 0 8 3.6 8 8v16z"],"record-vinyl":[512,512,[],"f8d9","M256 152a104 104 0 1 0 104 104 104 104 0 0 0-104-104zm0 128a24 24 0 1 1 24-24 24 24 0 0 1-24 24zm0-272C119 8 8 119 8 256s111 248 248 248 248-111 248-248S393 8 256 8zm0 376a128 128 0 1 1 128-128 128 128 0 0 1-128 128z"],recycle:[512,512,[],"f1b8","M184.561 261.903c3.232 13.997-12.123 24.635-24.068 17.168l-40.736-25.455-50.867 81.402C55.606 356.273 70.96 384 96.012 384H148c6.627 0 12 5.373 12 12v40c0 6.627-5.373 12-12 12H96.115c-75.334 0-121.302-83.048-81.408-146.88l50.822-81.388-40.725-25.448c-12.081-7.547-8.966-25.961 4.879-29.158l110.237-25.45c8.611-1.988 17.201 3.381 19.189 11.99l25.452 110.237zm98.561-182.915l41.289 66.076-40.74 25.457c-12.051 7.528-9 25.953 4.879 29.158l110.237 25.45c8.672 1.999 17.215-3.438 19.189-11.99l25.45-110.237c3.197-13.844-11.99-24.719-24.068-17.168l-40.687 25.424-41.263-66.082c-37.521-60.033-125.209-60.171-162.816 0l-17.963 28.766c-3.51 5.62-1.8 13.021 3.82 16.533l33.919 21.195c5.62 3.512 13.024 1.803 16.536-3.817l17.961-28.743c12.712-20.341 41.973-19.676 54.257-.022zM497.288 301.12l-27.515-44.065c-3.511-5.623-10.916-7.334-16.538-3.821l-33.861 21.159c-5.62 3.512-7.33 10.915-3.818 16.536l27.564 44.112c13.257 21.211-2.057 48.96-27.136 48.96H320V336.02c0-14.213-17.242-21.383-27.313-11.313l-80 79.981c-6.249 6.248-6.249 16.379 0 22.627l80 79.989C302.689 517.308 320 510.3 320 495.989V448h95.88c75.274 0 121.335-82.997 81.408-146.88z"],redo:[512,512,[],"f01e","M500.33 0h-47.41a12 12 0 0 0-12 12.57l4 82.76A247.42 247.42 0 0 0 256 8C119.34 8 7.9 119.53 8 256.19 8.1 393.07 119.1 504 256 504a247.1 247.1 0 0 0 166.18-63.91 12 12 0 0 0 .48-17.43l-34-34a12 12 0 0 0-16.38-.55A176 176 0 1 1 402.1 157.8l-101.53-4.87a12 12 0 0 0-12.57 12v47.41a12 12 0 0 0 12 12h200.33a12 12 0 0 0 12-12V12a12 12 0 0 0-12-12z"],"redo-alt":[512,512,[],"f2f9","M256.455 8c66.269.119 126.437 26.233 170.859 68.685l35.715-35.715C478.149 25.851 504 36.559 504 57.941V192c0 13.255-10.745 24-24 24H345.941c-21.382 0-32.09-25.851-16.971-40.971l41.75-41.75c-30.864-28.899-70.801-44.907-113.23-45.273-92.398-.798-170.283 73.977-169.484 169.442C88.764 348.009 162.184 424 256 424c41.127 0 79.997-14.678 110.629-41.556 4.743-4.161 11.906-3.908 16.368.553l39.662 39.662c4.872 4.872 4.631 12.815-.482 17.433C378.202 479.813 319.926 504 256 504 119.034 504 8.001 392.967 8 256.002 7.999 119.193 119.646 7.755 256.455 8z"],registered:[512,512,[],"f25d","M285.363 207.475c0 18.6-9.831 28.431-28.431 28.431h-29.876v-56.14h23.378c28.668 0 34.929 8.773 34.929 27.709zM504 256c0 136.967-111.033 248-248 248S8 392.967 8 256 119.033 8 256 8s248 111.033 248 248zM363.411 360.414c-46.729-84.825-43.299-78.636-44.702-80.98 23.432-15.172 37.945-42.979 37.945-74.486 0-54.244-31.5-89.252-105.498-89.252h-70.667c-13.255 0-24 10.745-24 24V372c0 13.255 10.745 24 24 24h22.567c13.255 0 24-10.745 24-24v-71.663h25.556l44.129 82.937a24.001 24.001 0 0 0 21.188 12.727h24.464c18.261-.001 29.829-19.591 21.018-35.587z"],"remove-format":[640,512,[],"f87d","M336 416h-11.17l9.26-27.77L267 336.4 240.49 416H208a16 16 0 0 0-16 16v32a16 16 0 0 0 16 16h128a16 16 0 0 0 16-16v-32a16 16 0 0 0-16-16zm297.82 42.1L377 259.59 426.17 112H544v32a16 16 0 0 0 16 16h32a16 16 0 0 0 16-16V48a16 16 0 0 0-16-16H176a16 16 0 0 0-16 16v43.9L45.46 3.38A16 16 0 0 0 23 6.19L3.37 31.46a16 16 0 0 0 2.81 22.45l588.36 454.72a16 16 0 0 0 22.46-2.81l19.64-25.27a16 16 0 0 0-2.82-22.45zM309.91 207.76L224 141.36V112h117.83z"],reply:[512,512,[],"f3e5","M8.309 189.836L184.313 37.851C199.719 24.546 224 35.347 224 56.015v80.053c160.629 1.839 288 34.032 288 186.258 0 61.441-39.581 122.309-83.333 154.132-13.653 9.931-33.111-2.533-28.077-18.631 45.344-145.012-21.507-183.51-176.59-185.742V360c0 20.7-24.3 31.453-39.687 18.164l-176.004-152c-11.071-9.562-11.086-26.753 0-36.328z"],"reply-all":[576,512,[],"f122","M136.309 189.836L312.313 37.851C327.72 24.546 352 35.348 352 56.015v82.763c129.182 10.231 224 52.212 224 183.548 0 61.441-39.582 122.309-83.333 154.132-13.653 9.931-33.111-2.533-28.077-18.631 38.512-123.162-3.922-169.482-112.59-182.015v84.175c0 20.701-24.3 31.453-39.687 18.164L136.309 226.164c-11.071-9.561-11.086-26.753 0-36.328zm-128 36.328L184.313 378.15C199.7 391.439 224 380.687 224 359.986v-15.818l-108.606-93.785A55.96 55.96 0 0 1 96 207.998a55.953 55.953 0 0 1 19.393-42.38L224 71.832V56.015c0-20.667-24.28-31.469-39.687-18.164L8.309 189.836c-11.086 9.575-11.071 26.767 0 36.328z"],republican:[640,512,[],"f75e","M544 192c0-88.4-71.6-160-160-160H160C71.6 32 0 103.6 0 192v64h544v-64zm-367.7-21.6l-19.8 19.3 4.7 27.3c.8 4.9-4.3 8.6-8.7 6.3L128 210.4l-24.5 12.9c-4.3 2.3-9.5-1.4-8.7-6.3l4.7-27.3-19.8-19.3c-3.6-3.5-1.6-9.5 3.3-10.2l27.4-4 12.2-24.8c2.2-4.5 8.6-4.4 10.7 0l12.2 24.8 27.4 4c5 .7 6.9 6.7 3.4 10.2zm144 0l-19.8 19.3 4.7 27.3c.8 4.9-4.3 8.6-8.7 6.3L272 210.4l-24.5 12.9c-4.3 2.3-9.5-1.4-8.7-6.3l4.7-27.3-19.8-19.3c-3.6-3.5-1.6-9.5 3.3-10.2l27.4-4 12.2-24.8c2.2-4.5 8.6-4.4 10.7 0l12.2 24.8 27.4 4c5 .7 6.9 6.7 3.4 10.2zm144 0l-19.8 19.3 4.7 27.3c.8 4.9-4.3 8.6-8.7 6.3L416 210.4l-24.5 12.9c-4.3 2.3-9.5-1.4-8.7-6.3l4.7-27.3-19.8-19.3c-3.6-3.5-1.6-9.5 3.3-10.2l27.4-4 12.2-24.8c2.2-4.5 8.6-4.4 10.7 0l12.2 24.8 27.4 4c5 .7 6.9 6.7 3.4 10.2zM624 320h-32c-8.8 0-16 7.2-16 16v64c0 8.8-7.2 16-16 16s-16-7.2-16-16V288H0v176c0 8.8 7.2 16 16 16h96c8.8 0 16-7.2 16-16v-80h192v80c0 8.8 7.2 16 16 16h96c8.8 0 16-7.2 16-16V352h32v43.3c0 41.8 30 80.1 71.6 84.3 47.8 4.9 88.4-32.7 88.4-79.6v-64c0-8.8-7.2-16-16-16z"],restroom:[640,512,[],"f7bd","M128 128c35.3 0 64-28.7 64-64S163.3 0 128 0 64 28.7 64 64s28.7 64 64 64zm384 0c35.3 0 64-28.7 64-64S547.3 0 512 0s-64 28.7-64 64 28.7 64 64 64zm127.3 226.5l-45.6-185.8c-3.3-13.5-15.5-23-29.8-24.2-15 9.7-32.8 15.5-52 15.5-19.2 0-37-5.8-52-15.5-14.3 1.2-26.5 10.7-29.8 24.2l-45.6 185.8C381 369.6 393 384 409.2 384H464v104c0 13.3 10.7 24 24 24h48c13.3 0 24-10.7 24-24V384h54.8c16.2 0 28.2-14.4 24.5-29.5zM336 0h-32c-8.8 0-16 7.2-16 16v480c0 8.8 7.2 16 16 16h32c8.8 0 16-7.2 16-16V16c0-8.8-7.2-16-16-16zM180.1 144.4c-15 9.8-32.9 15.6-52.1 15.6-19.2 0-37.1-5.8-52.1-15.6C51.3 146.5 32 166.9 32 192v136c0 13.3 10.7 24 24 24h8v136c0 13.3 10.7 24 24 24h80c13.3 0 24-10.7 24-24V352h8c13.3 0 24-10.7 24-24V192c0-25.1-19.3-45.5-43.9-47.6z"],retweet:[640,512,[],"f079","M629.657 343.598L528.971 444.284c-9.373 9.372-24.568 9.372-33.941 0L394.343 343.598c-9.373-9.373-9.373-24.569 0-33.941l10.823-10.823c9.562-9.562 25.133-9.34 34.419.492L480 342.118V160H292.451a24.005 24.005 0 0 1-16.971-7.029l-16-16C244.361 121.851 255.069 96 276.451 96H520c13.255 0 24 10.745 24 24v222.118l40.416-42.792c9.285-9.831 24.856-10.054 34.419-.492l10.823 10.823c9.372 9.372 9.372 24.569-.001 33.941zm-265.138 15.431A23.999 23.999 0 0 0 347.548 352H160V169.881l40.416 42.792c9.286 9.831 24.856 10.054 34.419.491l10.822-10.822c9.373-9.373 9.373-24.569 0-33.941L144.971 67.716c-9.373-9.373-24.569-9.373-33.941 0L10.343 168.402c-9.373 9.373-9.373 24.569 0 33.941l10.822 10.822c9.562 9.562 25.133 9.34 34.419-.491L96 169.881V392c0 13.255 10.745 24 24 24h243.549c21.382 0 32.09-25.851 16.971-40.971l-16.001-16z"],ribbon:[448,512,[],"f4d6","M6.1 444.3c-9.6 10.8-7.5 27.6 4.5 35.7l68.8 27.9c9.9 6.7 23.3 5 31.3-3.8l91.8-101.9-79.2-87.9-117.2 130zm435.8 0s-292-324.6-295.4-330.1c15.4-8.4 40.2-17.9 77.5-17.9s62.1 9.5 77.5 17.9c-3.3 5.6-56 64.6-56 64.6l79.1 87.7 34.2-38c28.7-31.9 33.3-78.6 11.4-115.5l-43.7-73.5c-4.3-7.2-9.9-13.3-16.8-18-40.7-27.6-127.4-29.7-171.4 0-6.9 4.7-12.5 10.8-16.8 18l-43.6 73.2c-1.5 2.5-37.1 62.2 11.5 116L337.5 504c8 8.9 21.4 10.5 31.3 3.8l68.8-27.9c11.9-8 14-24.8 4.3-35.6z"],ring:[512,512,[],"f70b","M256 64C110.06 64 0 125.91 0 208v98.13C0 384.48 114.62 448 256 448s256-63.52 256-141.87V208c0-82.09-110.06-144-256-144zm0 64c106.04 0 192 35.82 192 80 0 9.26-3.97 18.12-10.91 26.39C392.15 208.21 328.23 192 256 192s-136.15 16.21-181.09 42.39C67.97 226.12 64 217.26 64 208c0-44.18 85.96-80 192-80zM120.43 264.64C155.04 249.93 201.64 240 256 240s100.96 9.93 135.57 24.64C356.84 279.07 308.93 288 256 288s-100.84-8.93-135.57-23.36z"],road:[576,512,[],"f018","M573.19 402.67l-139.79-320C428.43 71.29 417.6 64 405.68 64h-97.59l2.45 23.16c.5 4.72-3.21 8.84-7.96 8.84h-29.16c-4.75 0-8.46-4.12-7.96-8.84L267.91 64h-97.59c-11.93 0-22.76 7.29-27.73 18.67L2.8 402.67C-6.45 423.86 8.31 448 30.54 448h196.84l10.31-97.68c.86-8.14 7.72-14.32 15.91-14.32h68.8c8.19 0 15.05 6.18 15.91 14.32L348.62 448h196.84c22.23 0 36.99-24.14 27.73-45.33zM260.4 135.16a8 8 0 0 1 7.96-7.16h39.29c4.09 0 7.53 3.09 7.96 7.16l4.6 43.58c.75 7.09-4.81 13.26-11.93 13.26h-40.54c-7.13 0-12.68-6.17-11.93-13.26l4.59-43.58zM315.64 304h-55.29c-9.5 0-16.91-8.23-15.91-17.68l5.07-48c.86-8.14 7.72-14.32 15.91-14.32h45.15c8.19 0 15.05 6.18 15.91 14.32l5.07 48c1 9.45-6.41 17.68-15.91 17.68z"],robot:[640,512,[],"f544","M32,224H64V416H32A31.96166,31.96166,0,0,1,0,384V256A31.96166,31.96166,0,0,1,32,224Zm512-48V448a64.06328,64.06328,0,0,1-64,64H160a64.06328,64.06328,0,0,1-64-64V176a79.974,79.974,0,0,1,80-80H288V32a32,32,0,0,1,64,0V96H464A79.974,79.974,0,0,1,544,176ZM264,256a40,40,0,1,0-40,40A39.997,39.997,0,0,0,264,256Zm-8,128H192v32h64Zm96,0H288v32h64ZM456,256a40,40,0,1,0-40,40A39.997,39.997,0,0,0,456,256Zm-8,128H384v32h64ZM640,256V384a31.96166,31.96166,0,0,1-32,32H576V224h32A31.96166,31.96166,0,0,1,640,256Z"],rocket:[512,512,[],"f135","M505.12019,19.09375c-1.18945-5.53125-6.65819-11-12.207-12.1875C460.716,0,435.507,0,410.40747,0,307.17523,0,245.26909,55.20312,199.05238,128H94.83772c-16.34763.01562-35.55658,11.875-42.88664,26.48438L2.51562,253.29688A28.4,28.4,0,0,0,0,264a24.00867,24.00867,0,0,0,24.00582,24H127.81618l-22.47457,22.46875c-11.36521,11.36133-12.99607,32.25781,0,45.25L156.24582,406.625c11.15623,11.1875,32.15619,13.15625,45.27726,0l22.47457-22.46875V488a24.00867,24.00867,0,0,0,24.00581,24,28.55934,28.55934,0,0,0,10.707-2.51562l98.72834-49.39063c14.62888-7.29687,26.50776-26.5,26.50776-42.85937V312.79688c72.59753-46.3125,128.03493-108.40626,128.03493-211.09376C512.07526,76.5,512.07526,51.29688,505.12019,19.09375ZM384.04033,168A40,40,0,1,1,424.05,128,40.02322,40.02322,0,0,1,384.04033,168Z"],route:[512,512,[],"f4d7","M416 320h-96c-17.6 0-32-14.4-32-32s14.4-32 32-32h96s96-107 96-160-43-96-96-96-96 43-96 96c0 25.5 22.2 63.4 45.3 96H320c-52.9 0-96 43.1-96 96s43.1 96 96 96h96c17.6 0 32 14.4 32 32s-14.4 32-32 32H185.5c-16 24.8-33.8 47.7-47.3 64H416c52.9 0 96-43.1 96-96s-43.1-96-96-96zm0-256c17.7 0 32 14.3 32 32s-14.3 32-32 32-32-14.3-32-32 14.3-32 32-32zM96 256c-53 0-96 43-96 96s96 160 96 160 96-107 96-160-43-96-96-96zm0 128c-17.7 0-32-14.3-32-32s14.3-32 32-32 32 14.3 32 32-14.3 32-32 32z"],rss:[448,512,[],"f09e","M128.081 415.959c0 35.369-28.672 64.041-64.041 64.041S0 451.328 0 415.959s28.672-64.041 64.041-64.041 64.04 28.673 64.04 64.041zm175.66 47.25c-8.354-154.6-132.185-278.587-286.95-286.95C7.656 175.765 0 183.105 0 192.253v48.069c0 8.415 6.49 15.472 14.887 16.018 111.832 7.284 201.473 96.702 208.772 208.772.547 8.397 7.604 14.887 16.018 14.887h48.069c9.149.001 16.489-7.655 15.995-16.79zm144.249.288C439.596 229.677 251.465 40.445 16.503 32.01 7.473 31.686 0 38.981 0 48.016v48.068c0 8.625 6.835 15.645 15.453 15.999 191.179 7.839 344.627 161.316 352.465 352.465.353 8.618 7.373 15.453 15.999 15.453h48.068c9.034-.001 16.329-7.474 16.005-16.504z"],"rss-square":[448,512,[],"f143","M400 32H48C21.49 32 0 53.49 0 80v352c0 26.51 21.49 48 48 48h352c26.51 0 48-21.49 48-48V80c0-26.51-21.49-48-48-48zM112 416c-26.51 0-48-21.49-48-48s21.49-48 48-48 48 21.49 48 48-21.49 48-48 48zm157.533 0h-34.335c-6.011 0-11.051-4.636-11.442-10.634-5.214-80.05-69.243-143.92-149.123-149.123-5.997-.39-10.633-5.431-10.633-11.441v-34.335c0-6.535 5.468-11.777 11.994-11.425 110.546 5.974 198.997 94.536 204.964 204.964.352 6.526-4.89 11.994-11.425 11.994zm103.027 0h-34.334c-6.161 0-11.175-4.882-11.427-11.038-5.598-136.535-115.204-246.161-251.76-251.76C68.882 152.949 64 147.935 64 141.774V107.44c0-6.454 5.338-11.664 11.787-11.432 167.83 6.025 302.21 141.191 308.205 308.205.232 6.449-4.978 11.787-11.432 11.787z"],"ruble-sign":[384,512,[],"f158","M239.36 320C324.48 320 384 260.542 384 175.071S324.48 32 239.36 32H76c-6.627 0-12 5.373-12 12v206.632H12c-6.627 0-12 5.373-12 12V308c0 6.627 5.373 12 12 12h52v32H12c-6.627 0-12 5.373-12 12v40c0 6.627 5.373 12 12 12h52v52c0 6.627 5.373 12 12 12h58.56c6.627 0 12-5.373 12-12v-52H308c6.627 0 12-5.373 12-12v-40c0-6.627-5.373-12-12-12H146.56v-32h92.8zm-92.8-219.252h78.72c46.72 0 74.88 29.11 74.88 74.323 0 45.832-28.16 75.561-76.16 75.561h-77.44V100.748z"],ruler:[640,512,[],"f545","M635.7 167.2L556.1 31.7c-8.8-15-28.3-20.1-43.5-11.5l-69 39.1L503.3 161c2.2 3.8.9 8.5-2.9 10.7l-13.8 7.8c-3.8 2.2-8.7.9-10.9-2.9L416 75l-55.2 31.3 27.9 47.4c2.2 3.8.9 8.5-2.9 10.7l-13.8 7.8c-3.8 2.2-8.7.9-10.9-2.9L333.2 122 278 153.3 337.8 255c2.2 3.7.9 8.5-2.9 10.7l-13.8 7.8c-3.8 2.2-8.7.9-10.9-2.9l-59.7-101.7-55.2 31.3 27.9 47.4c2.2 3.8.9 8.5-2.9 10.7l-13.8 7.8c-3.8 2.2-8.7.9-10.9-2.9l-27.9-47.5-55.2 31.3 59.7 101.7c2.2 3.7.9 8.5-2.9 10.7l-13.8 7.8c-3.8 2.2-8.7.9-10.9-2.9L84.9 262.9l-69 39.1C.7 310.7-4.6 329.8 4.2 344.8l79.6 135.6c8.8 15 28.3 20.1 43.5 11.5L624.1 210c15.2-8.6 20.4-27.8 11.6-42.8z"],"ruler-combined":[512,512,[],"f546","M160 288h-56c-4.42 0-8-3.58-8-8v-16c0-4.42 3.58-8 8-8h56v-64h-56c-4.42 0-8-3.58-8-8v-16c0-4.42 3.58-8 8-8h56V96h-56c-4.42 0-8-3.58-8-8V72c0-4.42 3.58-8 8-8h56V32c0-17.67-14.33-32-32-32H32C14.33 0 0 14.33 0 32v448c0 2.77.91 5.24 1.57 7.8L160 329.38V288zm320 64h-32v56c0 4.42-3.58 8-8 8h-16c-4.42 0-8-3.58-8-8v-56h-64v56c0 4.42-3.58 8-8 8h-16c-4.42 0-8-3.58-8-8v-56h-64v56c0 4.42-3.58 8-8 8h-16c-4.42 0-8-3.58-8-8v-56h-41.37L24.2 510.43c2.56.66 5.04 1.57 7.8 1.57h448c17.67 0 32-14.33 32-32v-96c0-17.67-14.33-32-32-32z"],"ruler-horizontal":[576,512,[],"f547","M544 128h-48v88c0 4.42-3.58 8-8 8h-16c-4.42 0-8-3.58-8-8v-88h-64v88c0 4.42-3.58 8-8 8h-16c-4.42 0-8-3.58-8-8v-88h-64v88c0 4.42-3.58 8-8 8h-16c-4.42 0-8-3.58-8-8v-88h-64v88c0 4.42-3.58 8-8 8h-16c-4.42 0-8-3.58-8-8v-88h-64v88c0 4.42-3.58 8-8 8H88c-4.42 0-8-3.58-8-8v-88H32c-17.67 0-32 14.33-32 32v192c0 17.67 14.33 32 32 32h512c17.67 0 32-14.33 32-32V160c0-17.67-14.33-32-32-32z"],"ruler-vertical":[256,512,[],"f548","M168 416c-4.42 0-8-3.58-8-8v-16c0-4.42 3.58-8 8-8h88v-64h-88c-4.42 0-8-3.58-8-8v-16c0-4.42 3.58-8 8-8h88v-64h-88c-4.42 0-8-3.58-8-8v-16c0-4.42 3.58-8 8-8h88v-64h-88c-4.42 0-8-3.58-8-8v-16c0-4.42 3.58-8 8-8h88V32c0-17.67-14.33-32-32-32H32C14.33 0 0 14.33 0 32v448c0 17.67 14.33 32 32 32h192c17.67 0 32-14.33 32-32v-64h-88z"],running:[416,512,[],"f70c","M272 96c26.51 0 48-21.49 48-48S298.51 0 272 0s-48 21.49-48 48 21.49 48 48 48zM113.69 317.47l-14.8 34.52H32c-17.67 0-32 14.33-32 32s14.33 32 32 32h77.45c19.25 0 36.58-11.44 44.11-29.09l8.79-20.52-10.67-6.3c-17.32-10.23-30.06-25.37-37.99-42.61zM384 223.99h-44.03l-26.06-53.25c-12.5-25.55-35.45-44.23-61.78-50.94l-71.08-21.14c-28.3-6.8-57.77-.55-80.84 17.14l-39.67 30.41c-14.03 10.75-16.69 30.83-5.92 44.86s30.84 16.66 44.86 5.92l39.69-30.41c7.67-5.89 17.44-8 25.27-6.14l14.7 4.37-37.46 87.39c-12.62 29.48-1.31 64.01 26.3 80.31l84.98 50.17-27.47 87.73c-5.28 16.86 4.11 34.81 20.97 40.09 3.19 1 6.41 1.48 9.58 1.48 13.61 0 26.23-8.77 30.52-22.45l31.64-101.06c5.91-20.77-2.89-43.08-21.64-54.39l-61.24-36.14 31.31-78.28 20.27 41.43c8 16.34 24.92 26.89 43.11 26.89H384c17.67 0 32-14.33 32-32s-14.33-31.99-32-31.99z"],"rupee-sign":[320,512,[],"f156","M308 96c6.627 0 12-5.373 12-12V44c0-6.627-5.373-12-12-12H12C5.373 32 0 37.373 0 44v44.748c0 6.627 5.373 12 12 12h85.28c27.308 0 48.261 9.958 60.97 27.252H12c-6.627 0-12 5.373-12 12v40c0 6.627 5.373 12 12 12h158.757c-6.217 36.086-32.961 58.632-74.757 58.632H12c-6.627 0-12 5.373-12 12v53.012c0 3.349 1.4 6.546 3.861 8.818l165.052 152.356a12.001 12.001 0 0 0 8.139 3.182h82.562c10.924 0 16.166-13.408 8.139-20.818L116.871 319.906c76.499-2.34 131.144-53.395 138.318-127.906H308c6.627 0 12-5.373 12-12v-40c0-6.627-5.373-12-12-12h-58.69c-3.486-11.541-8.28-22.246-14.252-32H308z"],"sad-cry":[496,512,[],"f5b3","M248 8C111 8 0 119 0 256c0 90.1 48.2 168.7 120 212.1V288c0-8.8 7.2-16 16-16s16 7.2 16 16v196.7c29.5 12.4 62 19.3 96 19.3s66.5-6.9 96-19.3V288c0-8.8 7.2-16 16-16s16 7.2 16 16v180.1C447.8 424.7 496 346 496 256 496 119 385 8 248 8zm-65.5 216.5c-14.8-13.2-46.2-13.2-61 0L112 233c-3.8 3.3-9.3 4-13.7 1.6-4.4-2.4-6.9-7.4-6.1-12.4 4-25.2 34.2-42.1 59.9-42.1S208 197 212 222.2c.8 5-1.7 10-6.1 12.4-5.8 3.1-11.2.7-13.7-1.6l-9.7-8.5zM248 416c-26.5 0-48-28.7-48-64s21.5-64 48-64 48 28.7 48 64-21.5 64-48 64zm149.8-181.5c-5.8 3.1-11.2.7-13.7-1.6l-9.5-8.5c-14.8-13.2-46.2-13.2-61 0L304 233c-3.8 3.3-9.3 4-13.7 1.6-4.4-2.4-6.9-7.4-6.1-12.4 4-25.2 34.2-42.1 59.9-42.1S400 197 404 222.2c.6 4.9-1.8 9.9-6.2 12.3z"],"sad-tear":[496,512,[],"f5b4","M248 8C111 8 0 119 0 256s111 248 248 248 248-111 248-248S385 8 248 8zm80 168c17.7 0 32 14.3 32 32s-14.3 32-32 32-32-14.3-32-32 14.3-32 32-32zM152 416c-26.5 0-48-21-48-47 0-20 28.5-60.4 41.6-77.8 3.2-4.3 9.6-4.3 12.8 0C171.5 308.6 200 349 200 369c0 26-21.5 47-48 47zm16-176c-17.7 0-32-14.3-32-32s14.3-32 32-32 32 14.3 32 32-14.3 32-32 32zm170.2 154.2C315.8 367.4 282.9 352 248 352c-21.2 0-21.2-32 0-32 44.4 0 86.3 19.6 114.7 53.8 13.8 16.4-11.2 36.5-24.5 20.4z"],satellite:[512,512,[],"f7bf","M502.60969,310.04206l-96.70393,96.71625a31.88151,31.88151,0,0,1-45.00765,0L280.572,326.34115l-9.89231,9.90759a190.56343,190.56343,0,0,1-5.40716,168.52287c-4.50077,8.50115-16.39342,9.59505-23.20707,2.79725L134.54715,400.05428l-17.7999,17.79929c.70324,2.60972,1.60965,5.00067,1.60965,7.79793a32.00544,32.00544,0,1,1-32.00544-32.00434c2.79735,0,5.18838.90637,7.7982,1.60959l17.7999-17.79929L4.43129,269.94287c-6.798-6.81342-5.70409-18.6119,2.79735-23.20627a190.58161,190.58161,0,0,1,168.52864-5.407l9.79854-9.79821-80.31053-80.41716a32.002,32.002,0,0,1,0-45.09987L201.96474,9.29814A31.62639,31.62639,0,0,1,224.46868,0a31.99951,31.99951,0,0,1,22.59759,9.29814l80.32615,80.30777,47.805-47.89713a33.6075,33.6075,0,0,1,47.50808,0l47.50807,47.50645a33.63308,33.63308,0,0,1,0,47.50644l-47.805,47.89713L502.71908,265.036A31.78938,31.78938,0,0,1,502.60969,310.04206ZM219.56159,197.433l73.82505-73.82252-68.918-68.9-73.80942,73.80689Zm237.74352,90.106-68.90233-68.9156-73.825,73.82252,68.918,68.9Z"],"satellite-dish":[512,512,[],"f7c0","M305.44954,462.59c7.39157,7.29792,6.18829,20.09661-3.00038,25.00356-77.713,41.80281-176.72559,29.9105-242.34331-35.7082C-5.49624,386.28227-17.404,287.362,24.41381,209.554c4.89125-9.095,17.68975-10.29834,25.00318-3.00043L166.22872,323.36708l27.39411-27.39452c-.68759-2.60974-1.594-5.00071-1.594-7.81361a32.00407,32.00407,0,1,1,32.00407,32.00455c-2.79723,0-5.20378-.89075-7.79786-1.594l-27.40974,27.41015ZM511.9758,303.06732a16.10336,16.10336,0,0,1-16.002,17.00242H463.86031a15.96956,15.96956,0,0,1-15.89265-15.00213C440.46671,175.5492,336.45348,70.53427,207.03078,63.53328a15.84486,15.84486,0,0,1-15.00191-15.90852V16.02652A16.09389,16.09389,0,0,1,209.031.02425C372.25491,8.61922,503.47472,139.841,511.9758,303.06732Zm-96.01221-.29692a16.21093,16.21093,0,0,1-16.11142,17.29934H367.645a16.06862,16.06862,0,0,1-15.89265-14.70522c-6.90712-77.01094-68.118-138.91037-144.92467-145.22376a15.94,15.94,0,0,1-14.79876-15.89289V112.13393a16.134,16.134,0,0,1,17.29908-16.096C319.45132,104.5391,407.55627,192.64538,415.96359,302.7704Z"],save:[448,512,[],"f0c7","M433.941 129.941l-83.882-83.882A48 48 0 0 0 316.118 32H48C21.49 32 0 53.49 0 80v352c0 26.51 21.49 48 48 48h352c26.51 0 48-21.49 48-48V163.882a48 48 0 0 0-14.059-33.941zM224 416c-35.346 0-64-28.654-64-64 0-35.346 28.654-64 64-64s64 28.654 64 64c0 35.346-28.654 64-64 64zm96-304.52V212c0 6.627-5.373 12-12 12H76c-6.627 0-12-5.373-12-12V108c0-6.627 5.373-12 12-12h228.52c3.183 0 6.235 1.264 8.485 3.515l3.48 3.48A11.996 11.996 0 0 1 320 111.48z"],school:[640,512,[],"f549","M0 224v272c0 8.84 7.16 16 16 16h80V192H32c-17.67 0-32 14.33-32 32zm360-48h-24v-40c0-4.42-3.58-8-8-8h-16c-4.42 0-8 3.58-8 8v64c0 4.42 3.58 8 8 8h48c4.42 0 8-3.58 8-8v-16c0-4.42-3.58-8-8-8zm137.75-63.96l-160-106.67a32.02 32.02 0 0 0-35.5 0l-160 106.67A32.002 32.002 0 0 0 128 138.66V512h128V368c0-8.84 7.16-16 16-16h96c8.84 0 16 7.16 16 16v144h128V138.67c0-10.7-5.35-20.7-14.25-26.63zM320 256c-44.18 0-80-35.82-80-80s35.82-80 80-80 80 35.82 80 80-35.82 80-80 80zm288-64h-64v320h80c8.84 0 16-7.16 16-16V224c0-17.67-14.33-32-32-32z"],screwdriver:[512,512,[],"f54a","M448 0L320 96v62.06l-83.03 83.03c6.79 4.25 13.27 9.06 19.07 14.87 5.8 5.8 10.62 12.28 14.87 19.07L353.94 192H416l96-128-64-64zM128 278.59L10.92 395.67c-14.55 14.55-14.55 38.15 0 52.71l52.7 52.7c14.56 14.56 38.15 14.56 52.71 0L233.41 384c29.11-29.11 29.11-76.3 0-105.41s-76.3-29.11-105.41 0z"],scroll:[640,512,[],"f70e","M48 0C21.53 0 0 21.53 0 48v64c0 8.84 7.16 16 16 16h80V48C96 21.53 74.47 0 48 0zm208 412.57V352h288V96c0-52.94-43.06-96-96-96H111.59C121.74 13.41 128 29.92 128 48v368c0 38.87 34.65 69.65 74.75 63.12C234.22 474 256 444.46 256 412.57zM288 384v32c0 52.93-43.06 96-96 96h336c61.86 0 112-50.14 112-112 0-8.84-7.16-16-16-16H288z"],"sd-card":[384,512,[],"f7c2","M320 0H128L0 128v320c0 35.3 28.7 64 64 64h256c35.3 0 64-28.7 64-64V64c0-35.3-28.7-64-64-64zM160 160h-48V64h48v96zm80 0h-48V64h48v96zm80 0h-48V64h48v96z"],search:[512,512,[],"f002","M505 442.7L405.3 343c-4.5-4.5-10.6-7-17-7H372c27.6-35.3 44-79.7 44-128C416 93.1 322.9 0 208 0S0 93.1 0 208s93.1 208 208 208c48.3 0 92.7-16.4 128-44v16.3c0 6.4 2.5 12.5 7 17l99.7 99.7c9.4 9.4 24.6 9.4 33.9 0l28.3-28.3c9.4-9.4 9.4-24.6.1-34zM208 336c-70.7 0-128-57.2-128-128 0-70.7 57.2-128 128-128 70.7 0 128 57.2 128 128 0 70.7-57.2 128-128 128z"],"search-dollar":[512,512,[],"f688","M505.04 442.66l-99.71-99.69c-4.5-4.5-10.6-7-17-7h-16.3c27.6-35.3 44-79.69 44-127.99C416.03 93.09 322.92 0 208.02 0S0 93.09 0 207.98s93.11 207.98 208.02 207.98c48.3 0 92.71-16.4 128.01-44v16.3c0 6.4 2.5 12.5 7 17l99.71 99.69c9.4 9.4 24.6 9.4 33.9 0l28.3-28.3c9.4-9.4 9.4-24.59.1-33.99zm-297.02-90.7c-79.54 0-144-64.34-144-143.98 0-79.53 64.35-143.98 144-143.98 79.54 0 144 64.34 144 143.98 0 79.53-64.35 143.98-144 143.98zm27.11-152.54l-45.01-13.5c-5.16-1.55-8.77-6.78-8.77-12.73 0-7.27 5.3-13.19 11.8-13.19h28.11c4.56 0 8.96 1.29 12.82 3.72 3.24 2.03 7.36 1.91 10.13-.73l11.75-11.21c3.53-3.37 3.33-9.21-.57-12.14-9.1-6.83-20.08-10.77-31.37-11.35V112c0-4.42-3.58-8-8-8h-16c-4.42 0-8 3.58-8 8v16.12c-23.63.63-42.68 20.55-42.68 45.07 0 19.97 12.99 37.81 31.58 43.39l45.01 13.5c5.16 1.55 8.77 6.78 8.77 12.73 0 7.27-5.3 13.19-11.8 13.19h-28.1c-4.56 0-8.96-1.29-12.82-3.72-3.24-2.03-7.36-1.91-10.13.73l-11.75 11.21c-3.53 3.37-3.33 9.21.57 12.14 9.1 6.83 20.08 10.77 31.37 11.35V304c0 4.42 3.58 8 8 8h16c4.42 0 8-3.58 8-8v-16.12c23.63-.63 42.68-20.54 42.68-45.07 0-19.97-12.99-37.81-31.59-43.39z"],"search-location":[512,512,[],"f689","M505.04 442.66l-99.71-99.69c-4.5-4.5-10.6-7-17-7h-16.3c27.6-35.3 44-79.69 44-127.99C416.03 93.09 322.92 0 208.02 0S0 93.09 0 207.98s93.11 207.98 208.02 207.98c48.3 0 92.71-16.4 128.01-44v16.3c0 6.4 2.5 12.5 7 17l99.71 99.69c9.4 9.4 24.6 9.4 33.9 0l28.3-28.3c9.4-9.4 9.4-24.59.1-33.99zm-297.02-90.7c-79.54 0-144-64.34-144-143.98 0-79.53 64.35-143.98 144-143.98 79.54 0 144 64.34 144 143.98 0 79.53-64.35 143.98-144 143.98zm.02-239.96c-40.78 0-73.84 33.05-73.84 73.83 0 32.96 48.26 93.05 66.75 114.86a9.24 9.24 0 0 0 14.18 0c18.49-21.81 66.75-81.89 66.75-114.86 0-40.78-33.06-73.83-73.84-73.83zm0 96c-13.26 0-24-10.75-24-24 0-13.26 10.75-24 24-24s24 10.74 24 24c0 13.25-10.75 24-24 24z"],"search-minus":[512,512,[],"f010","M304 192v32c0 6.6-5.4 12-12 12H124c-6.6 0-12-5.4-12-12v-32c0-6.6 5.4-12 12-12h168c6.6 0 12 5.4 12 12zm201 284.7L476.7 505c-9.4 9.4-24.6 9.4-33.9 0L343 405.3c-4.5-4.5-7-10.6-7-17V372c-35.3 27.6-79.7 44-128 44C93.1 416 0 322.9 0 208S93.1 0 208 0s208 93.1 208 208c0 48.3-16.4 92.7-44 128h16.3c6.4 0 12.5 2.5 17 7l99.7 99.7c9.3 9.4 9.3 24.6 0 34zM344 208c0-75.2-60.8-136-136-136S72 132.8 72 208s60.8 136 136 136 136-60.8 136-136z"],"search-plus":[512,512,[],"f00e","M304 192v32c0 6.6-5.4 12-12 12h-56v56c0 6.6-5.4 12-12 12h-32c-6.6 0-12-5.4-12-12v-56h-56c-6.6 0-12-5.4-12-12v-32c0-6.6 5.4-12 12-12h56v-56c0-6.6 5.4-12 12-12h32c6.6 0 12 5.4 12 12v56h56c6.6 0 12 5.4 12 12zm201 284.7L476.7 505c-9.4 9.4-24.6 9.4-33.9 0L343 405.3c-4.5-4.5-7-10.6-7-17V372c-35.3 27.6-79.7 44-128 44C93.1 416 0 322.9 0 208S93.1 0 208 0s208 93.1 208 208c0 48.3-16.4 92.7-44 128h16.3c6.4 0 12.5 2.5 17 7l99.7 99.7c9.3 9.4 9.3 24.6 0 34zM344 208c0-75.2-60.8-136-136-136S72 132.8 72 208s60.8 136 136 136 136-60.8 136-136z"],seedling:[512,512,[],"f4d8","M64 96H0c0 123.7 100.3 224 224 224v144c0 8.8 7.2 16 16 16h32c8.8 0 16-7.2 16-16V320C288 196.3 187.7 96 64 96zm384-64c-84.2 0-157.4 46.5-195.7 115.2 27.7 30.2 48.2 66.9 59 107.6C424 243.1 512 147.9 512 32h-64z"],server:[512,512,[],"f233","M480 160H32c-17.673 0-32-14.327-32-32V64c0-17.673 14.327-32 32-32h448c17.673 0 32 14.327 32 32v64c0 17.673-14.327 32-32 32zm-48-88c-13.255 0-24 10.745-24 24s10.745 24 24 24 24-10.745 24-24-10.745-24-24-24zm-64 0c-13.255 0-24 10.745-24 24s10.745 24 24 24 24-10.745 24-24-10.745-24-24-24zm112 248H32c-17.673 0-32-14.327-32-32v-64c0-17.673 14.327-32 32-32h448c17.673 0 32 14.327 32 32v64c0 17.673-14.327 32-32 32zm-48-88c-13.255 0-24 10.745-24 24s10.745 24 24 24 24-10.745 24-24-10.745-24-24-24zm-64 0c-13.255 0-24 10.745-24 24s10.745 24 24 24 24-10.745 24-24-10.745-24-24-24zm112 248H32c-17.673 0-32-14.327-32-32v-64c0-17.673 14.327-32 32-32h448c17.673 0 32 14.327 32 32v64c0 17.673-14.327 32-32 32zm-48-88c-13.255 0-24 10.745-24 24s10.745 24 24 24 24-10.745 24-24-10.745-24-24-24zm-64 0c-13.255 0-24 10.745-24 24s10.745 24 24 24 24-10.745 24-24-10.745-24-24-24z"],shapes:[512,512,[],"f61f","M128,256A128,128,0,1,0,256,384,128,128,0,0,0,128,256Zm379-54.86L400.07,18.29a37.26,37.26,0,0,0-64.14,0L229,201.14C214.76,225.52,232.58,256,261.09,256H474.91C503.42,256,521.24,225.52,507,201.14ZM480,288H320a32,32,0,0,0-32,32V480a32,32,0,0,0,32,32H480a32,32,0,0,0,32-32V320A32,32,0,0,0,480,288Z"],share:[512,512,[],"f064","M503.691 189.836L327.687 37.851C312.281 24.546 288 35.347 288 56.015v80.053C127.371 137.907 0 170.1 0 322.326c0 61.441 39.581 122.309 83.333 154.132 13.653 9.931 33.111-2.533 28.077-18.631C66.066 312.814 132.917 274.316 288 272.085V360c0 20.7 24.3 31.453 39.687 18.164l176.004-152c11.071-9.562 11.086-26.753 0-36.328z"],"share-alt":[448,512,[],"f1e0","M352 320c-22.608 0-43.387 7.819-59.79 20.895l-102.486-64.054a96.551 96.551 0 0 0 0-41.683l102.486-64.054C308.613 184.181 329.392 192 352 192c53.019 0 96-42.981 96-96S405.019 0 352 0s-96 42.981-96 96c0 7.158.79 14.13 2.276 20.841L155.79 180.895C139.387 167.819 118.608 160 96 160c-53.019 0-96 42.981-96 96s42.981 96 96 96c22.608 0 43.387-7.819 59.79-20.895l102.486 64.054A96.301 96.301 0 0 0 256 416c0 53.019 42.981 96 96 96s96-42.981 96-96-42.981-96-96-96z"],"share-alt-square":[448,512,[],"f1e1","M448 80v352c0 26.51-21.49 48-48 48H48c-26.51 0-48-21.49-48-48V80c0-26.51 21.49-48 48-48h352c26.51 0 48 21.49 48 48zM304 296c-14.562 0-27.823 5.561-37.783 14.671l-67.958-40.775a56.339 56.339 0 0 0 0-27.793l67.958-40.775C276.177 210.439 289.438 216 304 216c30.928 0 56-25.072 56-56s-25.072-56-56-56-56 25.072-56 56c0 4.797.605 9.453 1.74 13.897l-67.958 40.775C171.823 205.561 158.562 200 144 200c-30.928 0-56 25.072-56 56s25.072 56 56 56c14.562 0 27.823-5.561 37.783-14.671l67.958 40.775a56.088 56.088 0 0 0-1.74 13.897c0 30.928 25.072 56 56 56s56-25.072 56-56C360 321.072 334.928 296 304 296z"],"share-square":[576,512,[],"f14d","M568.482 177.448L424.479 313.433C409.3 327.768 384 317.14 384 295.985v-71.963c-144.575.97-205.566 35.113-164.775 171.353 4.483 14.973-12.846 26.567-25.006 17.33C155.252 383.105 120 326.488 120 269.339c0-143.937 117.599-172.5 264-173.312V24.012c0-21.174 25.317-31.768 40.479-17.448l144.003 135.988c10.02 9.463 10.028 25.425 0 34.896zM384 379.128V448H64V128h50.916a11.99 11.99 0 0 0 8.648-3.693c14.953-15.568 32.237-27.89 51.014-37.676C185.708 80.83 181.584 64 169.033 64H48C21.49 64 0 85.49 0 112v352c0 26.51 21.49 48 48 48h352c26.51 0 48-21.49 48-48v-88.806c0-8.288-8.197-14.066-16.011-11.302a71.83 71.83 0 0 1-34.189 3.377c-7.27-1.046-13.8 4.514-13.8 11.859z"],"shekel-sign":[448,512,[],"f20b","M248 168v168c0 8.84 7.16 16 16 16h48c8.84 0 16-7.16 16-16V168c0-75.11-60.89-136-136-136H24C10.75 32 0 42.74 0 56v408c0 8.84 7.16 16 16 16h48c8.84 0 16-7.16 16-16V112h112c30.93 0 56 25.07 56 56zM432 32h-48c-8.84 0-16 7.16-16 16v296c0 30.93-25.07 56-56 56H200V176c0-8.84-7.16-16-16-16h-48c-8.84 0-16 7.16-16 16v280c0 13.25 10.75 24 24 24h168c75.11 0 136-60.89 136-136V48c0-8.84-7.16-16-16-16z"],"shield-alt":[512,512,[],"f3ed","M466.5 83.7l-192-80a48.15 48.15 0 0 0-36.9 0l-192 80C27.7 91.1 16 108.6 16 128c0 198.5 114.5 335.7 221.5 380.3 11.8 4.9 25.1 4.9 36.9 0C360.1 472.6 496 349.3 496 128c0-19.4-11.7-36.9-29.5-44.3zM256.1 446.3l-.1-381 175.9 73.3c-3.3 151.4-82.1 261.1-175.8 307.7z"],ship:[640,512,[],"f21a","M496.616 372.639l70.012-70.012c16.899-16.9 9.942-45.771-12.836-53.092L512 236.102V96c0-17.673-14.327-32-32-32h-64V24c0-13.255-10.745-24-24-24H248c-13.255 0-24 10.745-24 24v40h-64c-17.673 0-32 14.327-32 32v140.102l-41.792 13.433c-22.753 7.313-29.754 36.173-12.836 53.092l70.012 70.012C125.828 416.287 85.587 448 24 448c-13.255 0-24 10.745-24 24v16c0 13.255 10.745 24 24 24 61.023 0 107.499-20.61 143.258-59.396C181.677 487.432 216.021 512 256 512h128c39.979 0 74.323-24.568 88.742-59.396C508.495 491.384 554.968 512 616 512c13.255 0 24-10.745 24-24v-16c0-13.255-10.745-24-24-24-60.817 0-101.542-31.001-119.384-75.361zM192 128h256v87.531l-118.208-37.995a31.995 31.995 0 0 0-19.584 0L192 215.531V128z"],"shipping-fast":[640,512,[],"f48b","M624 352h-16V243.9c0-12.7-5.1-24.9-14.1-33.9L494 110.1c-9-9-21.2-14.1-33.9-14.1H416V48c0-26.5-21.5-48-48-48H112C85.5 0 64 21.5 64 48v48H8c-4.4 0-8 3.6-8 8v16c0 4.4 3.6 8 8 8h272c4.4 0 8 3.6 8 8v16c0 4.4-3.6 8-8 8H40c-4.4 0-8 3.6-8 8v16c0 4.4 3.6 8 8 8h208c4.4 0 8 3.6 8 8v16c0 4.4-3.6 8-8 8H8c-4.4 0-8 3.6-8 8v16c0 4.4 3.6 8 8 8h208c4.4 0 8 3.6 8 8v16c0 4.4-3.6 8-8 8H64v128c0 53 43 96 96 96s96-43 96-96h128c0 53 43 96 96 96s96-43 96-96h48c8.8 0 16-7.2 16-16v-32c0-8.8-7.2-16-16-16zM160 464c-26.5 0-48-21.5-48-48s21.5-48 48-48 48 21.5 48 48-21.5 48-48 48zm320 0c-26.5 0-48-21.5-48-48s21.5-48 48-48 48 21.5 48 48-21.5 48-48 48zm80-208H416V144h44.1l99.9 99.9V256z"],"shoe-prints":[640,512,[],"f54b","M192 160h32V32h-32c-35.35 0-64 28.65-64 64s28.65 64 64 64zM0 416c0 35.35 28.65 64 64 64h32V352H64c-35.35 0-64 28.65-64 64zm337.46-128c-34.91 0-76.16 13.12-104.73 32-24.79 16.38-44.52 32-104.73 32v128l57.53 15.97c26.21 7.28 53.01 13.12 80.31 15.05 32.69 2.31 65.6.67 97.58-6.2C472.9 481.3 512 429.22 512 384c0-64-84.18-96-174.54-96zM491.42 7.19C459.44.32 426.53-1.33 393.84.99c-27.3 1.93-54.1 7.77-80.31 15.04L256 32v128c60.2 0 79.94 15.62 104.73 32 28.57 18.88 69.82 32 104.73 32C555.82 224 640 192 640 128c0-45.22-39.1-97.3-148.58-120.81z"],"shopping-bag":[448,512,[],"f290","M352 160v-32C352 57.42 294.579 0 224 0 153.42 0 96 57.42 96 128v32H0v272c0 44.183 35.817 80 80 80h288c44.183 0 80-35.817 80-80V160h-96zm-192-32c0-35.29 28.71-64 64-64s64 28.71 64 64v32H160v-32zm160 120c-13.255 0-24-10.745-24-24s10.745-24 24-24 24 10.745 24 24-10.745 24-24 24zm-192 0c-13.255 0-24-10.745-24-24s10.745-24 24-24 24 10.745 24 24-10.745 24-24 24z"],"shopping-basket":[576,512,[],"f291","M576 216v16c0 13.255-10.745 24-24 24h-8l-26.113 182.788C514.509 462.435 494.257 480 470.37 480H105.63c-23.887 0-44.139-17.565-47.518-41.212L32 256h-8c-13.255 0-24-10.745-24-24v-16c0-13.255 10.745-24 24-24h67.341l106.78-146.821c10.395-14.292 30.407-17.453 44.701-7.058 14.293 10.395 17.453 30.408 7.058 44.701L170.477 192h235.046L326.12 82.821c-10.395-14.292-7.234-34.306 7.059-44.701 14.291-10.395 34.306-7.235 44.701 7.058L484.659 192H552c13.255 0 24 10.745 24 24zM312 392V280c0-13.255-10.745-24-24-24s-24 10.745-24 24v112c0 13.255 10.745 24 24 24s24-10.745 24-24zm112 0V280c0-13.255-10.745-24-24-24s-24 10.745-24 24v112c0 13.255 10.745 24 24 24s24-10.745 24-24zm-224 0V280c0-13.255-10.745-24-24-24s-24 10.745-24 24v112c0 13.255 10.745 24 24 24s24-10.745 24-24z"],"shopping-cart":[576,512,[],"f07a","M528.12 301.319l47.273-208C578.806 78.301 567.391 64 551.99 64H159.208l-9.166-44.81C147.758 8.021 137.93 0 126.529 0H24C10.745 0 0 10.745 0 24v16c0 13.255 10.745 24 24 24h69.883l70.248 343.435C147.325 417.1 136 435.222 136 456c0 30.928 25.072 56 56 56s56-25.072 56-56c0-15.674-6.447-29.835-16.824-40h209.647C430.447 426.165 424 440.326 424 456c0 30.928 25.072 56 56 56s56-25.072 56-56c0-22.172-12.888-41.332-31.579-50.405l5.517-24.276c3.413-15.018-8.002-29.319-23.403-29.319H218.117l-6.545-32h293.145c11.206 0 20.92-7.754 23.403-18.681z"],shower:[512,512,[],"f2cc","M304,320a16,16,0,1,0,16,16A16,16,0,0,0,304,320Zm32-96a16,16,0,1,0,16,16A16,16,0,0,0,336,224Zm32,64a16,16,0,1,0-16-16A16,16,0,0,0,368,288Zm-32,32a16,16,0,1,0-16-16A16,16,0,0,0,336,320Zm-32-64a16,16,0,1,0,16,16A16,16,0,0,0,304,256Zm128-32a16,16,0,1,0-16-16A16,16,0,0,0,432,224Zm-48,16a16,16,0,1,0,16-16A16,16,0,0,0,384,240Zm-16-48a16,16,0,1,0,16,16A16,16,0,0,0,368,192Zm96,32a16,16,0,1,0,16,16A16,16,0,0,0,464,224Zm32-32a16,16,0,1,0,16,16A16,16,0,0,0,496,192Zm-64,64a16,16,0,1,0,16,16A16,16,0,0,0,432,256Zm-32,32a16,16,0,1,0,16,16A16,16,0,0,0,400,288Zm-64,64a16,16,0,1,0,16,16A16,16,0,0,0,336,352Zm-32,32a16,16,0,1,0,16,16A16,16,0,0,0,304,384Zm64-64a16,16,0,1,0,16,16A16,16,0,0,0,368,320Zm21.65-218.35-11.3-11.31a16,16,0,0,0-22.63,0L350.05,96A111.19,111.19,0,0,0,272,64c-19.24,0-37.08,5.3-52.9,13.85l-10-10A121.72,121.72,0,0,0,123.44,32C55.49,31.5,0,92.91,0,160.85V464a16,16,0,0,0,16,16H48a16,16,0,0,0,16-16V158.4c0-30.15,21-58.2,51-61.93a58.38,58.38,0,0,1,48.93,16.67l10,10C165.3,138.92,160,156.76,160,176a111.23,111.23,0,0,0,32,78.05l-5.66,5.67a16,16,0,0,0,0,22.62l11.3,11.31a16,16,0,0,0,22.63,0L389.65,124.28A16,16,0,0,0,389.65,101.65Z"],"shuttle-van":[640,512,[],"f5b6","M628.88 210.65L494.39 49.27A48.01 48.01 0 0 0 457.52 32H32C14.33 32 0 46.33 0 64v288c0 17.67 14.33 32 32 32h32c0 53.02 42.98 96 96 96s96-42.98 96-96h128c0 53.02 42.98 96 96 96s96-42.98 96-96h32c17.67 0 32-14.33 32-32V241.38c0-11.23-3.94-22.1-11.12-30.73zM64 192V96h96v96H64zm96 240c-26.51 0-48-21.49-48-48s21.49-48 48-48 48 21.49 48 48-21.49 48-48 48zm160-240h-96V96h96v96zm160 240c-26.51 0-48-21.49-48-48s21.49-48 48-48 48 21.49 48 48-21.49 48-48 48zm-96-240V96h66.02l80 96H384z"],sign:[512,512,[],"f4d9","M496 64H128V16c0-8.8-7.2-16-16-16H80c-8.8 0-16 7.2-16 16v48H16C7.2 64 0 71.2 0 80v32c0 8.8 7.2 16 16 16h48v368c0 8.8 7.2 16 16 16h32c8.8 0 16-7.2 16-16V128h368c8.8 0 16-7.2 16-16V80c0-8.8-7.2-16-16-16zM160 384h320V160H160v224z"],"sign-in-alt":[512,512,[],"f2f6","M416 448h-84c-6.6 0-12-5.4-12-12v-40c0-6.6 5.4-12 12-12h84c17.7 0 32-14.3 32-32V160c0-17.7-14.3-32-32-32h-84c-6.6 0-12-5.4-12-12V76c0-6.6 5.4-12 12-12h84c53 0 96 43 96 96v192c0 53-43 96-96 96zm-47-201L201 79c-15-15-41-4.5-41 17v96H24c-13.3 0-24 10.7-24 24v96c0 13.3 10.7 24 24 24h136v96c0 21.5 26 32 41 17l168-168c9.3-9.4 9.3-24.6 0-34z"],"sign-language":[448,512,[],"f2a7","M91.434 483.987c-.307-16.018 13.109-29.129 29.13-29.129h62.293v-5.714H56.993c-16.021 0-29.437-13.111-29.13-29.129C28.16 404.491 40.835 392 56.428 392h126.429v-5.714H29.136c-16.021 0-29.437-13.111-29.13-29.129.297-15.522 12.973-28.013 28.566-28.013h154.286v-5.714H57.707c-16.021 0-29.437-13.111-29.13-29.129.297-15.522 12.973-28.013 28.566-28.013h168.566l-31.085-22.606c-12.762-9.281-15.583-27.149-6.302-39.912 9.281-12.761 27.15-15.582 39.912-6.302l123.361 89.715a34.287 34.287 0 0 1 14.12 27.728v141.136c0 15.91-10.946 29.73-26.433 33.374l-80.471 18.934a137.16 137.16 0 0 1-31.411 3.646H120c-15.593-.001-28.269-12.492-28.566-28.014zm73.249-225.701h36.423l-11.187-8.136c-18.579-13.511-20.313-40.887-3.17-56.536l-13.004-16.7c-9.843-12.641-28.43-15.171-40.88-5.088-12.065 9.771-14.133 27.447-4.553 39.75l36.371 46.71zm283.298-2.103l-5.003-152.452c-.518-15.771-13.722-28.136-29.493-27.619-15.773.518-28.137 13.722-27.619 29.493l1.262 38.415L283.565 11.019c-9.58-12.303-27.223-14.63-39.653-5.328-12.827 9.599-14.929 28.24-5.086 40.881l76.889 98.745-4.509 3.511-94.79-121.734c-9.58-12.303-27.223-14.63-39.653-5.328-12.827 9.599-14.929 28.24-5.086 40.881l94.443 121.288-4.509 3.511-77.675-99.754c-9.58-12.303-27.223-14.63-39.653-5.328-12.827 9.599-14.929 28.24-5.086 40.881l52.053 66.849c12.497-8.257 29.055-8.285 41.69.904l123.36 89.714c10.904 7.93 17.415 20.715 17.415 34.198v16.999l61.064-47.549a34.285 34.285 0 0 0 13.202-28.177z"],"sign-out-alt":[512,512,[],"f2f5","M497 273L329 441c-15 15-41 4.5-41-17v-96H152c-13.3 0-24-10.7-24-24v-96c0-13.3 10.7-24 24-24h136V88c0-21.4 25.9-32 41-17l168 168c9.3 9.4 9.3 24.6 0 34zM192 436v-40c0-6.6-5.4-12-12-12H96c-17.7 0-32-14.3-32-32V160c0-17.7 14.3-32 32-32h84c6.6 0 12-5.4 12-12V76c0-6.6-5.4-12-12-12H96c-53 0-96 43-96 96v192c0 53 43 96 96 96h84c6.6 0 12-5.4 12-12z"],signal:[640,512,[],"f012","M216 288h-48c-8.84 0-16 7.16-16 16v192c0 8.84 7.16 16 16 16h48c8.84 0 16-7.16 16-16V304c0-8.84-7.16-16-16-16zM88 384H40c-8.84 0-16 7.16-16 16v96c0 8.84 7.16 16 16 16h48c8.84 0 16-7.16 16-16v-96c0-8.84-7.16-16-16-16zm256-192h-48c-8.84 0-16 7.16-16 16v288c0 8.84 7.16 16 16 16h48c8.84 0 16-7.16 16-16V208c0-8.84-7.16-16-16-16zm128-96h-48c-8.84 0-16 7.16-16 16v384c0 8.84 7.16 16 16 16h48c8.84 0 16-7.16 16-16V112c0-8.84-7.16-16-16-16zM600 0h-48c-8.84 0-16 7.16-16 16v480c0 8.84 7.16 16 16 16h48c8.84 0 16-7.16 16-16V16c0-8.84-7.16-16-16-16z"],signature:[640,512,[],"f5b7","M623.2 192c-51.8 3.5-125.7 54.7-163.1 71.5-29.1 13.1-54.2 24.4-76.1 24.4-22.6 0-26-16.2-21.3-51.9 1.1-8 11.7-79.2-42.7-76.1-25.1 1.5-64.3 24.8-169.5 126L192 182.2c30.4-75.9-53.2-151.5-129.7-102.8L7.4 116.3C0 121-2.2 130.9 2.5 138.4l17.2 27c4.7 7.5 14.6 9.7 22.1 4.9l58-38.9c18.4-11.7 40.7 7.2 32.7 27.1L34.3 404.1C27.5 421 37 448 64 448c8.3 0 16.5-3.2 22.6-9.4 42.2-42.2 154.7-150.7 211.2-195.8-2.2 28.5-2.1 58.9 20.6 83.8 15.3 16.8 37.3 25.3 65.5 25.3 35.6 0 68-14.6 102.3-30 33-14.8 99-62.6 138.4-65.8 8.5-.7 15.2-7.3 15.2-15.8v-32.1c.2-9.1-7.5-16.8-16.6-16.2z"],"sim-card":[384,512,[],"f7c4","M0 64v384c0 35.3 28.7 64 64 64h256c35.3 0 64-28.7 64-64V128L256 0H64C28.7 0 0 28.7 0 64zm224 192h-64v-64h64v64zm96 0h-64v-64h32c17.7 0 32 14.3 32 32v32zm-64 128h64v32c0 17.7-14.3 32-32 32h-32v-64zm-96 0h64v64h-64v-64zm-96 0h64v64H96c-17.7 0-32-14.3-32-32v-32zm0-96h256v64H64v-64zm0-64c0-17.7 14.3-32 32-32h32v64H64v-32z"],sitemap:[640,512,[],"f0e8","M128 352H32c-17.67 0-32 14.33-32 32v96c0 17.67 14.33 32 32 32h96c17.67 0 32-14.33 32-32v-96c0-17.67-14.33-32-32-32zm-24-80h192v48h48v-48h192v48h48v-57.59c0-21.17-17.23-38.41-38.41-38.41H344v-64h40c17.67 0 32-14.33 32-32V32c0-17.67-14.33-32-32-32H256c-17.67 0-32 14.33-32 32v96c0 17.67 14.33 32 32 32h40v64H94.41C73.23 224 56 241.23 56 262.41V320h48v-48zm264 80h-96c-17.67 0-32 14.33-32 32v96c0 17.67 14.33 32 32 32h96c17.67 0 32-14.33 32-32v-96c0-17.67-14.33-32-32-32zm240 0h-96c-17.67 0-32 14.33-32 32v96c0 17.67 14.33 32 32 32h96c17.67 0 32-14.33 32-32v-96c0-17.67-14.33-32-32-32z"],skating:[448,512,[],"f7c5","M400 0c-26.5 0-48 21.5-48 48s21.5 48 48 48 48-21.5 48-48-21.5-48-48-48zm0 448c-8.8 0-16 7.2-16 16s-7.2 16-16 16h-96c-8.8 0-16 7.2-16 16s7.2 16 16 16h96c26.5 0 48-21.5 48-48 0-8.8-7.2-16-16-16zm-282.2 8.6c-6.2 6.2-16.4 6.3-22.6 0l-67.9-67.9c-6.2-6.2-16.4-6.2-22.6 0s-6.2 16.4 0 22.6l67.9 67.9c9.4 9.4 21.7 14 34 14s24.6-4.7 33.9-14c6.2-6.2 6.2-16.4 0-22.6s-16.4-6.3-22.7 0zm56.1-179.8l-93.7 93.7c-12.5 12.5-12.5 32.8 0 45.2 6.2 6.2 14.4 9.4 22.6 9.4s16.4-3.1 22.6-9.4l91.9-91.9-30.2-30.2c-5-5-9.4-10.7-13.2-16.8zM128 160h105.5l-20.1 17.2c-13.5 11.5-21.6 28.4-22.3 46.1-.7 17.8 6.1 35.2 18.7 47.7l78.2 78.2V432c0 17.7 14.3 32 32 32s32-14.3 32-32v-89.4c0-12.6-5.1-25-14.1-33.9l-61-61c.5-.4 1.2-.6 1.7-1.1l82.3-82.3c11.5-11.5 14.9-28.6 8.7-43.6-6.2-15-20.7-24.7-37-24.7H128c-17.7 0-32 14.3-32 32s14.3 32 32 32z"],skiing:[512,512,[],"f7c9","M432 96c26.5 0 48-21.5 48-48S458.5 0 432 0s-48 21.5-48 48 21.5 48 48 48zm73 356.1c-9.4-9.4-24.6-9.4-33.9 0-12.1 12.1-30.5 15.4-45.1 8.7l-135.8-70.2 49.2-73.8c12.7-19 10.2-44.5-6-60.6L293 215.7l-107-53.1c-2.9 19.9 3.4 40 17.7 54.4l75.1 75.2-45.9 68.8L35 258.7c-11.7-6-26.2-1.5-32.3 10.3-6.1 11.8-1.5 26.3 10.3 32.3l391.9 202.5c11.9 5.5 24.5 8.1 37.1 8.1 23.2 0 46-9 63-26 9.3-9.3 9.3-24.5 0-33.8zM120 91.6l-11.5 22.5c14.4 7.3 31.2 4.9 42.8-4.8l47.2 23.4c-.1.1-.1.2-.2.3l114.5 56.8 32.4-13 6.4 19.1c4 12.1 12.6 22 24 27.7l58.1 29c15.9 7.9 35 1.5 42.9-14.3 7.9-15.8 1.5-35-14.3-42.9l-52.1-26.1-17.1-51.2c-8.1-24.2-40.9-56.6-84.5-39.2l-81.2 32.5-62.5-31c.3-14.5-7.2-28.6-20.9-35.6l-11.1 21.7h-.2l-34.4-7c-1.8-.4-3.7.2-5 1.7-1.9 2.2-1.7 5.5.5 7.4l26.2 23z"],"skiing-nordic":[576,512,[],"f7ca","M336 96c26.5 0 48-21.5 48-48S362.5 0 336 0s-48 21.5-48 48 21.5 48 48 48zm216 320c-13.2 0-24 10.7-24 24 0 13.2-10.8 24-24 24h-69.5L460 285.6c11.7-4.7 20.1-16.2 20.1-29.6 0-17.7-14.3-32-32-32h-44L378 170.8c-12.5-25.5-35.5-44.2-61.8-50.9L245 98.7c-28.3-6.8-57.8-.5-80.8 17.1l-39.7 30.4c-14 10.7-16.7 30.8-5.9 44.9.7.9 1.7 1.3 2.4 2.1L66.9 464H24c-13.2 0-24 10.7-24 24s10.8 24 24 24h480c39.7 0 72-32.3 72-72 0-13.2-10.8-24-24-24zm-260.5 48h-96.9l43.1-91-22-13c-12.1-7.2-21.9-16.9-29.5-27.8L123.7 464H99.5l52.3-261.4c4.1-1 8.1-2.9 11.7-5.6l39.7-30.4c7.7-5.9 17.4-8 25.3-6.1l14.7 4.4-37.5 87.4c-12.6 29.5-1.3 64 26.3 80.3l85 50.2-25.5 81.2zm110.6 0h-43.6l23.6-75.5c5.9-20.8-2.9-43.1-21.6-54.4L299.3 298l31.3-78.3 20.3 41.4c8 16.3 24.9 26.9 43.1 26.9h33.3l-25.2 176z"],skull:[512,512,[],"f54c","M256 0C114.6 0 0 100.3 0 224c0 70.1 36.9 132.6 94.5 173.7 9.6 6.9 15.2 18.1 13.5 29.9l-9.4 66.2c-1.4 9.6 6 18.2 15.7 18.2H192v-56c0-4.4 3.6-8 8-8h16c4.4 0 8 3.6 8 8v56h64v-56c0-4.4 3.6-8 8-8h16c4.4 0 8 3.6 8 8v56h77.7c9.7 0 17.1-8.6 15.7-18.2l-9.4-66.2c-1.7-11.7 3.8-23 13.5-29.9C475.1 356.6 512 294.1 512 224 512 100.3 397.4 0 256 0zm-96 320c-35.3 0-64-28.7-64-64s28.7-64 64-64 64 28.7 64 64-28.7 64-64 64zm192 0c-35.3 0-64-28.7-64-64s28.7-64 64-64 64 28.7 64 64-28.7 64-64 64z"],"skull-crossbones":[448,512,[],"f714","M439.15 453.06L297.17 384l141.99-69.06c7.9-3.95 11.11-13.56 7.15-21.46L432 264.85c-3.95-7.9-13.56-11.11-21.47-7.16L224 348.41 37.47 257.69c-7.9-3.95-17.51-.75-21.47 7.16L1.69 293.48c-3.95 7.9-.75 17.51 7.15 21.46L150.83 384 8.85 453.06c-7.9 3.95-11.11 13.56-7.15 21.47l14.31 28.63c3.95 7.9 13.56 11.11 21.47 7.15L224 419.59l186.53 90.72c7.9 3.95 17.51.75 21.47-7.15l14.31-28.63c3.95-7.91.74-17.52-7.16-21.47zM150 237.28l-5.48 25.87c-2.67 12.62 5.42 24.85 16.45 24.85h126.08c11.03 0 19.12-12.23 16.45-24.85l-5.5-25.87c41.78-22.41 70-62.75 70-109.28C368 57.31 303.53 0 224 0S80 57.31 80 128c0 46.53 28.22 86.87 70 109.28zM280 112c17.65 0 32 14.35 32 32s-14.35 32-32 32-32-14.35-32-32 14.35-32 32-32zm-112 0c17.65 0 32 14.35 32 32s-14.35 32-32 32-32-14.35-32-32 14.35-32 32-32z"],slash:[640,512,[],"f715","M594.53 508.63L6.18 53.9c-6.97-5.42-8.23-15.47-2.81-22.45L23.01 6.18C28.43-.8 38.49-2.06 45.47 3.37L633.82 458.1c6.97 5.42 8.23 15.47 2.81 22.45l-19.64 25.27c-5.42 6.98-15.48 8.23-22.46 2.81z"],sleigh:[640,512,[],"f7cc","M612.7 350.7l-9.3-7.4c-6.9-5.5-17-4.4-22.5 2.5l-10 12.5c-5.5 6.9-4.4 17 2.5 22.5l9.3 7.4c5.9 4.7 9.2 11.7 9.2 19.2 0 13.6-11 24.6-24.6 24.6H48c-8.8 0-16 7.2-16 16v16c0 8.8 7.2 16 16 16h516c39 0 73.7-29.3 75.9-68.3 1.4-23.8-8.7-46.3-27.2-61zM32 224c0 59.6 40.9 109.2 96 123.5V400h64v-48h192v48h64v-48c53 0 96-43 96-96v-96c17.7 0 32-14.3 32-32s-14.3-32-32-32h-96v64c0 35.3-28.7 64-64 64h-20.7c-65.8 0-125.9-37.2-155.3-96-29.4-58.8-89.6-96-155.3-96H32C14.3 32 0 46.3 0 64s14.3 32 32 32v128z"],"sliders-h":[512,512,[],"f1de","M496 384H160v-16c0-8.8-7.2-16-16-16h-32c-8.8 0-16 7.2-16 16v16H16c-8.8 0-16 7.2-16 16v32c0 8.8 7.2 16 16 16h80v16c0 8.8 7.2 16 16 16h32c8.8 0 16-7.2 16-16v-16h336c8.8 0 16-7.2 16-16v-32c0-8.8-7.2-16-16-16zm0-160h-80v-16c0-8.8-7.2-16-16-16h-32c-8.8 0-16 7.2-16 16v16H16c-8.8 0-16 7.2-16 16v32c0 8.8 7.2 16 16 16h336v16c0 8.8 7.2 16 16 16h32c8.8 0 16-7.2 16-16v-16h80c8.8 0 16-7.2 16-16v-32c0-8.8-7.2-16-16-16zm0-160H288V48c0-8.8-7.2-16-16-16h-32c-8.8 0-16 7.2-16 16v16H16C7.2 64 0 71.2 0 80v32c0 8.8 7.2 16 16 16h208v16c0 8.8 7.2 16 16 16h32c8.8 0 16-7.2 16-16v-16h208c8.8 0 16-7.2 16-16V80c0-8.8-7.2-16-16-16z"],smile:[496,512,[],"f118","M248 8C111 8 0 119 0 256s111 248 248 248 248-111 248-248S385 8 248 8zm80 168c17.7 0 32 14.3 32 32s-14.3 32-32 32-32-14.3-32-32 14.3-32 32-32zm-160 0c17.7 0 32 14.3 32 32s-14.3 32-32 32-32-14.3-32-32 14.3-32 32-32zm194.8 170.2C334.3 380.4 292.5 400 248 400s-86.3-19.6-114.8-53.8c-13.6-16.3 11-36.7 24.6-20.5 22.4 26.9 55.2 42.2 90.2 42.2s67.8-15.4 90.2-42.2c13.4-16.2 38.1 4.2 24.6 20.5z"],"smile-beam":[496,512,[],"f5b8","M248 8C111 8 0 119 0 256s111 248 248 248 248-111 248-248S385 8 248 8zM112 223.4c3.3-42.1 32.2-71.4 56-71.4s52.7 29.3 56 71.4c.7 8.6-10.8 11.9-14.9 4.5l-9.5-17c-7.7-13.7-19.2-21.6-31.5-21.6s-23.8 7.9-31.5 21.6l-9.5 17c-4.3 7.4-15.8 4-15.1-4.5zm250.8 122.8C334.3 380.4 292.5 400 248 400s-86.3-19.6-114.8-53.8c-13.5-16.3 11-36.7 24.6-20.5 22.4 26.9 55.2 42.2 90.2 42.2s67.8-15.4 90.2-42.2c13.6-16.2 38.1 4.3 24.6 20.5zm6.2-118.3l-9.5-17c-7.7-13.7-19.2-21.6-31.5-21.6s-23.8 7.9-31.5 21.6l-9.5 17c-4.1 7.3-15.6 4-14.9-4.5 3.3-42.1 32.2-71.4 56-71.4s52.7 29.3 56 71.4c.6 8.6-11 11.9-15.1 4.5z"],"smile-wink":[496,512,[],"f4da","M0 256c0 137 111 248 248 248s248-111 248-248S385 8 248 8 0 119 0 256zm200-48c0 17.7-14.3 32-32 32s-32-14.3-32-32 14.3-32 32-32 32 14.3 32 32zm158.5 16.5c-14.8-13.2-46.2-13.2-61 0L288 233c-8.3 7.4-21.6.4-19.8-10.8 4-25.2 34.2-42.1 59.9-42.1S384 197 388 222.2c1.7 11.1-11.4 18.3-19.8 10.8l-9.7-8.5zM157.8 325.8C180.2 352.7 213 368 248 368s67.8-15.4 90.2-42.2c13.6-16.2 38.1 4.2 24.6 20.5C334.3 380.4 292.5 400 248 400s-86.3-19.6-114.8-53.8c-13.5-16.3 11.2-36.7 24.6-20.4z"],smog:[640,512,[],"f75f","M624 368H80c-8.8 0-16 7.2-16 16v16c0 8.8 7.2 16 16 16h544c8.8 0 16-7.2 16-16v-16c0-8.8-7.2-16-16-16zm-480 96H16c-8.8 0-16 7.2-16 16v16c0 8.8 7.2 16 16 16h128c8.8 0 16-7.2 16-16v-16c0-8.8-7.2-16-16-16zm416 0H224c-8.8 0-16 7.2-16 16v16c0 8.8 7.2 16 16 16h336c8.8 0 16-7.2 16-16v-16c0-8.8-7.2-16-16-16zM144 288h156.1c22.5 19.7 51.6 32 83.9 32s61.3-12.3 83.9-32H528c61.9 0 112-50.1 112-112S589.9 64 528 64c-18 0-34.7 4.6-49.7 12.1C454 31 406.8 0 352 0c-41 0-77.8 17.3-104 44.8C221.8 17.3 185 0 144 0 64.5 0 0 64.5 0 144s64.5 144 144 144z"],smoking:[640,512,[],"f48d","M632 352h-48c-4.4 0-8 3.6-8 8v144c0 4.4 3.6 8 8 8h48c4.4 0 8-3.6 8-8V360c0-4.4-3.6-8-8-8zM553.3 87.1c-5.7-3.8-9.3-10-9.3-16.8V8c0-4.4-3.6-8-8-8h-48c-4.4 0-8 3.6-8 8v62.3c0 22 10.2 43.4 28.6 55.4 42.2 27.3 67.4 73.8 67.4 124V280c0 4.4 3.6 8 8 8h48c4.4 0 8-3.6 8-8v-30.3c0-65.5-32.4-126.2-86.7-162.6zM432 352H48c-26.5 0-48 21.5-48 48v64c0 26.5 21.5 48 48 48h384c8.8 0 16-7.2 16-16V368c0-8.8-7.2-16-16-16zm-32 112H224v-64h176v64zm87.7-322.4C463.8 125 448 99.3 448 70.3V8c0-4.4-3.6-8-8-8h-48c-4.4 0-8 3.6-8 8v66.4c0 43.7 24.6 81.6 60.3 106.7 22.4 15.7 35.7 41.2 35.7 68.6V280c0 4.4 3.6 8 8 8h48c4.4 0 8-3.6 8-8v-30.3c0-43.3-21-83.4-56.3-108.1zM536 352h-48c-4.4 0-8 3.6-8 8v144c0 4.4 3.6 8 8 8h48c4.4 0 8-3.6 8-8V360c0-4.4-3.6-8-8-8z"],"smoking-ban":[512,512,[],"f54d","M96 304c0 8.8 7.2 16 16 16h117.5l-96-96H112c-8.8 0-16 7.2-16 16v64zM256 0C114.6 0 0 114.6 0 256s114.6 256 256 256 256-114.6 256-256S397.4 0 256 0zm0 448c-105.9 0-192-86.1-192-192 0-41.4 13.3-79.7 35.7-111.1l267.4 267.4C335.7 434.7 297.4 448 256 448zm45.2-192H384v32h-50.8l-32-32zm111.1 111.1L365.2 320H400c8.8 0 16-7.2 16-16v-64c0-8.8-7.2-16-16-16H269.2L144.9 99.7C176.3 77.3 214.6 64 256 64c105.9 0 192 86.1 192 192 0 41.4-13.3 79.7-35.7 111.1zM320.6 128c-15.6 0-28.6-11.2-31.4-25.9-.7-3.6-4-6.1-7.7-6.1h-16.2c-5 0-8.7 4.5-8 9.4 4.6 30.9 31.2 54.6 63.3 54.6 15.6 0 28.6 11.2 31.4 25.9.7 3.6 4 6.1 7.7 6.1h16.2c5 0 8.7-4.5 8-9.4-4.6-30.9-31.2-54.6-63.3-54.6z"],sms:[512,512,[],"f7cd","M256 32C114.6 32 0 125.1 0 240c0 49.6 21.4 95 57 130.7C44.5 421.1 2.7 466 2.2 466.5c-2.2 2.3-2.8 5.7-1.5 8.7 1.3 3 4.1 4.8 7.3 4.8 66.3 0 116-31.8 140.6-51.4 32.7 12.3 69 19.4 107.4 19.4 141.4 0 256-93.1 256-208S397.4 32 256 32zM128.2 304H116c-4.4 0-8-3.6-8-8v-16c0-4.4 3.6-8 8-8h12.3c6 0 10.4-3.5 10.4-6.6 0-1.3-.8-2.7-2.1-3.8l-21.9-18.8c-8.5-7.2-13.3-17.5-13.3-28.1 0-21.3 19-38.6 42.4-38.6H156c4.4 0 8 3.6 8 8v16c0 4.4-3.6 8-8 8h-12.3c-6 0-10.4 3.5-10.4 6.6 0 1.3.8 2.7 2.1 3.8l21.9 18.8c8.5 7.2 13.3 17.5 13.3 28.1.1 21.3-19 38.6-42.4 38.6zm191.8-8c0 4.4-3.6 8-8 8h-16c-4.4 0-8-3.6-8-8v-68.2l-24.8 55.8c-2.9 5.9-11.4 5.9-14.3 0L224 227.8V296c0 4.4-3.6 8-8 8h-16c-4.4 0-8-3.6-8-8V192c0-8.8 7.2-16 16-16h16c6.1 0 11.6 3.4 14.3 8.8l17.7 35.4 17.7-35.4c2.7-5.4 8.3-8.8 14.3-8.8h16c8.8 0 16 7.2 16 16v104zm48.3 8H356c-4.4 0-8-3.6-8-8v-16c0-4.4 3.6-8 8-8h12.3c6 0 10.4-3.5 10.4-6.6 0-1.3-.8-2.7-2.1-3.8l-21.9-18.8c-8.5-7.2-13.3-17.5-13.3-28.1 0-21.3 19-38.6 42.4-38.6H396c4.4 0 8 3.6 8 8v16c0 4.4-3.6 8-8 8h-12.3c-6 0-10.4 3.5-10.4 6.6 0 1.3.8 2.7 2.1 3.8l21.9 18.8c8.5 7.2 13.3 17.5 13.3 28.1.1 21.3-18.9 38.6-42.3 38.6z"],snowboarding:[512,512,[],"f7ce","M432 96c26.5 0 48-21.5 48-48S458.5 0 432 0s-48 21.5-48 48 21.5 48 48 48zm28.8 153.6c5.8 4.3 12.5 6.4 19.2 6.4 9.7 0 19.3-4.4 25.6-12.8 10.6-14.1 7.8-34.2-6.4-44.8l-111.4-83.5c-13.8-10.3-29.1-18.4-45.4-23.8l-63.7-21.2-26.1-52.1C244.7 2 225.5-4.4 209.7 3.5c-15.8 7.9-22.2 27.1-14.3 42.9l29.1 58.1c5.7 11.4 15.6 19.9 27.7 24l16.4 5.5-41.2 20.6c-21.8 10.9-35.4 32.8-35.4 57.2v53.1l-74.1 24.7c-16.8 5.6-25.8 23.7-20.2 40.5 1.7 5.2 4.9 9.4 8.7 12.9l-38.7-14.1c-9.7-3.5-17.4-10.6-21.8-20-5.6-12-19.9-17.2-31.9-11.6s-17.2 19.9-11.6 31.9c9.8 21 27.1 36.9 48.9 44.8l364.8 132.7c9.7 3.5 19.7 5.3 29.7 5.3 12.5 0 24.9-2.7 36.5-8.2 12-5.6 17.2-19.9 11.6-31.9S474 454.7 462 460.3c-9.3 4.4-19.8 4.8-29.5 1.3l-90.8-33.1c8.7-4.1 15.6-11.8 17.8-21.9l21.9-102c3.9-18.2-3.2-37.2-18.1-48.4l-52-39 66-30.5 83.5 62.9zm-144.4 51.7l-19.7 92c-1.5 7.1-.1 13.9 2.8 20l-169.4-61.6c2.7-.2 5.4-.4 8-1.3l85-28.4c19.6-6.5 32.8-24.8 32.8-45.5V256l60.5 45.3z"],snowflake:[448,512,[],"f2dc","M440.3 345.2l-33.8-19.5 26-7c8.2-2.2 13.1-10.7 10.9-18.9l-4-14.9c-2.2-8.2-10.7-13.1-18.9-10.9l-70.8 19-63.9-37 63.8-36.9 70.8 19c8.2 2.2 16.7-2.7 18.9-10.9l4-14.9c2.2-8.2-2.7-16.7-10.9-18.9l-26-7 33.8-19.5c7.4-4.3 9.9-13.7 5.7-21.1L430.4 119c-4.3-7.4-13.7-9.9-21.1-5.7l-33.8 19.5 7-26c2.2-8.2-2.7-16.7-10.9-18.9l-14.9-4c-8.2-2.2-16.7 2.7-18.9 10.9l-19 70.8-62.8 36.2v-77.5l53.7-53.7c6.2-6.2 6.2-16.4 0-22.6l-11.3-11.3c-6.2-6.2-16.4-6.2-22.6 0L256 56.4V16c0-8.8-7.2-16-16-16h-32c-8.8 0-16 7.2-16 16v40.4l-19.7-19.7c-6.2-6.2-16.4-6.2-22.6 0L138.3 48c-6.3 6.2-6.3 16.4 0 22.6l53.7 53.7v77.5l-62.8-36.2-19-70.8c-2.2-8.2-10.7-13.1-18.9-10.9l-14.9 4c-8.2 2.2-13.1 10.7-10.9 18.9l7 26-33.8-19.5c-7.4-4.3-16.8-1.7-21.1 5.7L2.1 145.7c-4.3 7.4-1.7 16.8 5.7 21.1l33.8 19.5-26 7c-8.3 2.2-13.2 10.7-11 19l4 14.9c2.2 8.2 10.7 13.1 18.9 10.9l70.8-19 63.8 36.9-63.8 36.9-70.8-19c-8.2-2.2-16.7 2.7-18.9 10.9l-4 14.9c-2.2 8.2 2.7 16.7 10.9 18.9l26 7-33.8 19.6c-7.4 4.3-9.9 13.7-5.7 21.1l15.5 26.8c4.3 7.4 13.7 9.9 21.1 5.7l33.8-19.5-7 26c-2.2 8.2 2.7 16.7 10.9 18.9l14.9 4c8.2 2.2 16.7-2.7 18.9-10.9l19-70.8 62.8-36.2v77.5l-53.7 53.7c-6.3 6.2-6.3 16.4 0 22.6l11.3 11.3c6.2 6.2 16.4 6.2 22.6 0l19.7-19.7V496c0 8.8 7.2 16 16 16h32c8.8 0 16-7.2 16-16v-40.4l19.7 19.7c6.2 6.2 16.4 6.2 22.6 0l11.3-11.3c6.2-6.2 6.2-16.4 0-22.6L256 387.7v-77.5l62.8 36.2 19 70.8c2.2 8.2 10.7 13.1 18.9 10.9l14.9-4c8.2-2.2 13.1-10.7 10.9-18.9l-7-26 33.8 19.5c7.4 4.3 16.8 1.7 21.1-5.7l15.5-26.8c4.3-7.3 1.8-16.8-5.6-21z"],snowman:[512,512,[],"f7d0","M510.9 152.3l-5.9-14.5c-3.3-8-12.6-11.9-20.8-8.7L456 140.6v-29c0-8.6-7.2-15.6-16-15.6h-16c-8.8 0-16 7-16 15.6v46.9c0 .5.3 1 .3 1.5l-56.4 23c-5.9-10-13.3-18.9-22-26.6 13.6-16.6 22-37.4 22-60.5 0-53-43-96-96-96s-96 43-96 96c0 23.1 8.5 43.9 22 60.5-8.7 7.7-16 16.6-22 26.6l-56.4-23c.1-.5.3-1 .3-1.5v-46.9C104 103 96.8 96 88 96H72c-8.8 0-16 7-16 15.6v29l-28.1-11.5c-8.2-3.2-17.5.7-20.8 8.7l-5.9 14.5c-3.3 8 .7 17.1 8.9 20.3l135.2 55.2c-.4 4-1.2 8-1.2 12.2 0 10.1 1.7 19.6 4.2 28.9C120.9 296.4 104 334.2 104 376c0 54 28.4 100.9 70.8 127.8 9.3 5.9 20.3 8.2 31.3 8.2h99.2c13.3 0 26.3-4.1 37.2-11.7 46.5-32.3 74.4-89.4 62.9-152.6-5.5-30.2-20.5-57.6-41.6-79 2.5-9.2 4.2-18.7 4.2-28.7 0-4.2-.8-8.1-1.2-12.2L502 172.6c8.1-3.1 12.1-12.2 8.9-20.3zM224 96c-8.8 0-16-7.2-16-16s7.2-16 16-16 16 7.2 16 16-7.2 16-16 16zm32 272c-8.8 0-16-7.2-16-16s7.2-16 16-16 16 7.2 16 16-7.2 16-16 16zm0-64c-8.8 0-16-7.2-16-16s7.2-16 16-16 16 7.2 16 16-7.2 16-16 16zm0-64c-8.8 0-16-7.2-16-16s7.2-16 16-16 16 7.2 16 16-7.2 16-16 16zm0-88s-16-23.2-16-32 7.2-16 16-16 16 7.2 16 16-16 32-16 32zm32-56c-8.8 0-16-7.2-16-16s7.2-16 16-16 16 7.2 16 16-7.2 16-16 16z"],snowplow:[640,512,[],"f7d2","M120 376c-13.3 0-24 10.7-24 24s10.7 24 24 24 24-10.7 24-24-10.7-24-24-24zm80 0c-13.3 0-24 10.7-24 24s10.7 24 24 24 24-10.7 24-24-10.7-24-24-24zm80 0c-13.3 0-24 10.7-24 24s10.7 24 24 24 24-10.7 24-24-10.7-24-24-24zm80 0c-13.3 0-24 10.7-24 24s10.7 24 24 24 24-10.7 24-24-10.7-24-24-24zm238.6 49.4c-14.5-14.5-22.6-34.1-22.6-54.6V269.2c0-20.5 8.1-40.1 22.6-54.6l36.7-36.7c6.2-6.2 6.2-16.4 0-22.6l-22.6-22.6c-6.2-6.2-16.4-6.2-22.6 0l-36.7 36.7c-26.5 26.5-41.4 62.4-41.4 99.9V288h-64v-50.9c0-8.7-1.8-17.2-5.2-25.2L364.5 29.1C356.9 11.4 339.6 0 320.3 0H176c-26.5 0-48 21.5-48 48v112h-16c-26.5 0-48 21.5-48 48v91.2C26.3 317.2 0 355.4 0 400c0 61.9 50.1 112 112 112h256c61.9 0 112-50.1 112-112 0-17.3-4.2-33.4-11.2-48H512v18.7c0 37.5 14.9 73.4 41.4 99.9l36.7 36.7c6.2 6.2 16.4 6.2 22.6 0l22.6-22.6c6.2-6.2 6.2-16.4 0-22.6l-36.7-36.7zM192 64h117.8l68.6 160H256l-64-64V64zm176 384H112c-26.5 0-48-21.5-48-48s21.5-48 48-48h256c26.5 0 48 21.5 48 48s-21.5 48-48 48z"],socks:[512,512,[],"f696","M214.66 311.01L288 256V96H128v176l-86.65 64.61c-39.4 29.56-53.86 84.42-29.21 127.06C30.39 495.25 63.27 512 96.08 512c20.03 0 40.25-6.25 57.52-19.2l21.86-16.39c-29.85-55.38-13.54-125.84 39.2-165.4zM288 32c0-11.05 3.07-21.3 8.02-30.38C293.4.92 290.85 0 288 0H160c-17.67 0-32 14.33-32 32v32h160V32zM480 0H352c-17.67 0-32 14.33-32 32v32h192V32c0-17.67-14.33-32-32-32zM320 272l-86.13 64.61c-39.4 29.56-53.86 84.42-29.21 127.06 18.25 31.58 50.61 48.33 83.42 48.33 20.03 0 40.25-6.25 57.52-19.2l115.2-86.4A127.997 127.997 0 0 0 512 304V96H320v176z"],"solar-panel":[640,512,[],"f5ba","M431.98 448.01l-47.97.05V416h-128v32.21l-47.98.05c-8.82.01-15.97 7.16-15.98 15.99l-.05 31.73c-.01 8.85 7.17 16.03 16.02 16.02l223.96-.26c8.82-.01 15.97-7.16 15.98-15.98l.04-31.73c.01-8.85-7.17-16.03-16.02-16.02zM585.2 26.74C582.58 11.31 568.99 0 553.06 0H86.93C71 0 57.41 11.31 54.79 26.74-3.32 369.16.04 348.08.03 352c-.03 17.32 14.29 32 32.6 32h574.74c18.23 0 32.51-14.56 32.59-31.79.02-4.08 3.35 16.95-54.76-325.47zM259.83 64h120.33l9.77 96H250.06l9.77-96zm-75.17 256H71.09L90.1 208h105.97l-11.41 112zm16.29-160H98.24l16.29-96h96.19l-9.77 96zm32.82 160l11.4-112h149.65l11.4 112H233.77zm195.5-256h96.19l16.29 96H439.04l-9.77-96zm26.06 256l-11.4-112H549.9l19.01 112H455.33z"],sort:[320,512,[],"f0dc","M41 288h238c21.4 0 32.1 25.9 17 41L177 448c-9.4 9.4-24.6 9.4-33.9 0L24 329c-15.1-15.1-4.4-41 17-41zm255-105L177 64c-9.4-9.4-24.6-9.4-33.9 0L24 183c-15.1 15.1-4.4 41 17 41h238c21.4 0 32.1-25.9 17-41z"],"sort-alpha-down":[448,512,[],"f15d","M176 352h-48V48a16 16 0 0 0-16-16H80a16 16 0 0 0-16 16v304H16c-14.19 0-21.36 17.24-11.29 27.31l80 96a16 16 0 0 0 22.62 0l80-96C197.35 369.26 190.22 352 176 352zm240-64H288a16 16 0 0 0-16 16v32a16 16 0 0 0 16 16h56l-61.26 70.45A32 32 0 0 0 272 446.37V464a16 16 0 0 0 16 16h128a16 16 0 0 0 16-16v-32a16 16 0 0 0-16-16h-56l61.26-70.45A32 32 0 0 0 432 321.63V304a16 16 0 0 0-16-16zm31.06-85.38l-59.27-160A16 16 0 0 0 372.72 32h-41.44a16 16 0 0 0-15.07 10.62l-59.27 160A16 16 0 0 0 272 224h24.83a16 16 0 0 0 15.23-11.08l4.42-12.92h71l4.41 12.92A16 16 0 0 0 407.16 224H432a16 16 0 0 0 15.06-21.38zM335.61 144L352 96l16.39 48z"],"sort-alpha-down-alt":[448,512,[],"f881","M176 352h-48V48a16 16 0 0 0-16-16H80a16 16 0 0 0-16 16v304H16c-14.19 0-21.36 17.24-11.29 27.31l80 96a16 16 0 0 0 22.62 0l80-96C197.35 369.26 190.22 352 176 352zm112-128h128a16 16 0 0 0 16-16v-32a16 16 0 0 0-16-16h-56l61.26-70.45A32 32 0 0 0 432 65.63V48a16 16 0 0 0-16-16H288a16 16 0 0 0-16 16v32a16 16 0 0 0 16 16h56l-61.26 70.45A32 32 0 0 0 272 190.37V208a16 16 0 0 0 16 16zm159.06 234.62l-59.27-160A16 16 0 0 0 372.72 288h-41.44a16 16 0 0 0-15.07 10.62l-59.27 160A16 16 0 0 0 272 480h24.83a16 16 0 0 0 15.23-11.08l4.42-12.92h71l4.41 12.92A16 16 0 0 0 407.16 480H432a16 16 0 0 0 15.06-21.38zM335.61 400L352 352l16.39 48z"],"sort-alpha-up":[448,512,[],"f15e","M16 160h48v304a16 16 0 0 0 16 16h32a16 16 0 0 0 16-16V160h48c14.21 0 21.38-17.24 11.31-27.31l-80-96a16 16 0 0 0-22.62 0l-80 96C-5.35 142.74 1.78 160 16 160zm400 128H288a16 16 0 0 0-16 16v32a16 16 0 0 0 16 16h56l-61.26 70.45A32 32 0 0 0 272 446.37V464a16 16 0 0 0 16 16h128a16 16 0 0 0 16-16v-32a16 16 0 0 0-16-16h-56l61.26-70.45A32 32 0 0 0 432 321.63V304a16 16 0 0 0-16-16zm31.06-85.38l-59.27-160A16 16 0 0 0 372.72 32h-41.44a16 16 0 0 0-15.07 10.62l-59.27 160A16 16 0 0 0 272 224h24.83a16 16 0 0 0 15.23-11.08l4.42-12.92h71l4.41 12.92A16 16 0 0 0 407.16 224H432a16 16 0 0 0 15.06-21.38zM335.61 144L352 96l16.39 48z"],"sort-alpha-up-alt":[448,512,[],"f882","M16 160h48v304a16 16 0 0 0 16 16h32a16 16 0 0 0 16-16V160h48c14.21 0 21.38-17.24 11.31-27.31l-80-96a16 16 0 0 0-22.62 0l-80 96C-5.35 142.74 1.78 160 16 160zm272 64h128a16 16 0 0 0 16-16v-32a16 16 0 0 0-16-16h-56l61.26-70.45A32 32 0 0 0 432 65.63V48a16 16 0 0 0-16-16H288a16 16 0 0 0-16 16v32a16 16 0 0 0 16 16h56l-61.26 70.45A32 32 0 0 0 272 190.37V208a16 16 0 0 0 16 16zm159.06 234.62l-59.27-160A16 16 0 0 0 372.72 288h-41.44a16 16 0 0 0-15.07 10.62l-59.27 160A16 16 0 0 0 272 480h24.83a16 16 0 0 0 15.23-11.08l4.42-12.92h71l4.41 12.92A16 16 0 0 0 407.16 480H432a16 16 0 0 0 15.06-21.38zM335.61 400L352 352l16.39 48z"],"sort-amount-down":[512,512,[],"f160","M304 416h-64a16 16 0 0 0-16 16v32a16 16 0 0 0 16 16h64a16 16 0 0 0 16-16v-32a16 16 0 0 0-16-16zm-128-64h-48V48a16 16 0 0 0-16-16H80a16 16 0 0 0-16 16v304H16c-14.19 0-21.37 17.24-11.29 27.31l80 96a16 16 0 0 0 22.62 0l80-96C197.35 369.26 190.22 352 176 352zm256-192H240a16 16 0 0 0-16 16v32a16 16 0 0 0 16 16h192a16 16 0 0 0 16-16v-32a16 16 0 0 0-16-16zm-64 128H240a16 16 0 0 0-16 16v32a16 16 0 0 0 16 16h128a16 16 0 0 0 16-16v-32a16 16 0 0 0-16-16zM496 32H240a16 16 0 0 0-16 16v32a16 16 0 0 0 16 16h256a16 16 0 0 0 16-16V48a16 16 0 0 0-16-16z"],"sort-amount-down-alt":[512,512,[],"f884","M240 96h64a16 16 0 0 0 16-16V48a16 16 0 0 0-16-16h-64a16 16 0 0 0-16 16v32a16 16 0 0 0 16 16zm0 128h128a16 16 0 0 0 16-16v-32a16 16 0 0 0-16-16H240a16 16 0 0 0-16 16v32a16 16 0 0 0 16 16zm256 192H240a16 16 0 0 0-16 16v32a16 16 0 0 0 16 16h256a16 16 0 0 0 16-16v-32a16 16 0 0 0-16-16zm-256-64h192a16 16 0 0 0 16-16v-32a16 16 0 0 0-16-16H240a16 16 0 0 0-16 16v32a16 16 0 0 0 16 16zm-64 0h-48V48a16 16 0 0 0-16-16H80a16 16 0 0 0-16 16v304H16c-14.19 0-21.37 17.24-11.29 27.31l80 96a16 16 0 0 0 22.62 0l80-96C197.35 369.26 190.22 352 176 352z"],"sort-amount-up":[512,512,[],"f161","M304 416h-64a16 16 0 0 0-16 16v32a16 16 0 0 0 16 16h64a16 16 0 0 0 16-16v-32a16 16 0 0 0-16-16zM16 160h48v304a16 16 0 0 0 16 16h32a16 16 0 0 0 16-16V160h48c14.21 0 21.38-17.24 11.31-27.31l-80-96a16 16 0 0 0-22.62 0l-80 96C-5.35 142.74 1.77 160 16 160zm416 0H240a16 16 0 0 0-16 16v32a16 16 0 0 0 16 16h192a16 16 0 0 0 16-16v-32a16 16 0 0 0-16-16zm-64 128H240a16 16 0 0 0-16 16v32a16 16 0 0 0 16 16h128a16 16 0 0 0 16-16v-32a16 16 0 0 0-16-16zM496 32H240a16 16 0 0 0-16 16v32a16 16 0 0 0 16 16h256a16 16 0 0 0 16-16V48a16 16 0 0 0-16-16z"],"sort-amount-up-alt":[512,512,[],"f885","M240 96h64a16 16 0 0 0 16-16V48a16 16 0 0 0-16-16h-64a16 16 0 0 0-16 16v32a16 16 0 0 0 16 16zm0 128h128a16 16 0 0 0 16-16v-32a16 16 0 0 0-16-16H240a16 16 0 0 0-16 16v32a16 16 0 0 0 16 16zm256 192H240a16 16 0 0 0-16 16v32a16 16 0 0 0 16 16h256a16 16 0 0 0 16-16v-32a16 16 0 0 0-16-16zm-256-64h192a16 16 0 0 0 16-16v-32a16 16 0 0 0-16-16H240a16 16 0 0 0-16 16v32a16 16 0 0 0 16 16zM16 160h48v304a16 16 0 0 0 16 16h32a16 16 0 0 0 16-16V160h48c14.21 0 21.39-17.24 11.31-27.31l-80-96a16 16 0 0 0-22.62 0l-80 96C-5.35 142.74 1.78 160 16 160z"],"sort-down":[320,512,[],"f0dd","M41 288h238c21.4 0 32.1 25.9 17 41L177 448c-9.4 9.4-24.6 9.4-33.9 0L24 329c-15.1-15.1-4.4-41 17-41z"],"sort-numeric-down":[448,512,[],"f162","M304 96h16v64h-16a16 16 0 0 0-16 16v32a16 16 0 0 0 16 16h96a16 16 0 0 0 16-16v-32a16 16 0 0 0-16-16h-16V48a16 16 0 0 0-16-16h-48a16 16 0 0 0-14.29 8.83l-16 32A16 16 0 0 0 304 96zm26.15 162.91a79 79 0 0 0-55 54.17c-14.25 51.05 21.21 97.77 68.85 102.53a84.07 84.07 0 0 1-20.85 12.91c-7.57 3.4-10.8 12.47-8.18 20.34l9.9 20c2.87 8.63 12.53 13.49 20.9 9.91 58-24.76 86.25-61.61 86.25-132V336c-.02-51.21-48.4-91.34-101.85-77.09zM352 356a20 20 0 1 1 20-20 20 20 0 0 1-20 20zm-176-4h-48V48a16 16 0 0 0-16-16H80a16 16 0 0 0-16 16v304H16c-14.19 0-21.36 17.24-11.29 27.31l80 96a16 16 0 0 0 22.62 0l80-96C197.35 369.26 190.22 352 176 352z"],"sort-numeric-down-alt":[448,512,[],"f886","M176 352h-48V48a16 16 0 0 0-16-16H80a16 16 0 0 0-16 16v304H16c-14.19 0-21.36 17.24-11.29 27.31l80 96a16 16 0 0 0 22.62 0l80-96C197.35 369.26 190.22 352 176 352zm224 64h-16V304a16 16 0 0 0-16-16h-48a16 16 0 0 0-14.29 8.83l-16 32A16 16 0 0 0 304 352h16v64h-16a16 16 0 0 0-16 16v32a16 16 0 0 0 16 16h96a16 16 0 0 0 16-16v-32a16 16 0 0 0-16-16zM330.17 34.91a79 79 0 0 0-55 54.17c-14.27 51.05 21.19 97.77 68.83 102.53a84.07 84.07 0 0 1-20.85 12.91c-7.57 3.4-10.8 12.47-8.18 20.34l9.9 20c2.87 8.63 12.53 13.49 20.9 9.91 58-24.77 86.25-61.61 86.25-132V112c-.02-51.21-48.4-91.34-101.85-77.09zM352 132a20 20 0 1 1 20-20 20 20 0 0 1-20 20z"],"sort-numeric-up":[448,512,[],"f163","M330.17 258.91a79 79 0 0 0-55 54.17c-14.27 51.05 21.19 97.77 68.83 102.53a84.07 84.07 0 0 1-20.85 12.91c-7.57 3.4-10.8 12.47-8.18 20.34l9.9 20c2.87 8.63 12.53 13.49 20.9 9.91 58-24.76 86.25-61.61 86.25-132V336c-.02-51.21-48.4-91.34-101.85-77.09zM352 356a20 20 0 1 1 20-20 20 20 0 0 1-20 20zM304 96h16v64h-16a16 16 0 0 0-16 16v32a16 16 0 0 0 16 16h96a16 16 0 0 0 16-16v-32a16 16 0 0 0-16-16h-16V48a16 16 0 0 0-16-16h-48a16 16 0 0 0-14.29 8.83l-16 32A16 16 0 0 0 304 96zM107.31 36.69a16 16 0 0 0-22.62 0l-80 96C-5.35 142.74 1.78 160 16 160h48v304a16 16 0 0 0 16 16h32a16 16 0 0 0 16-16V160h48c14.21 0 21.38-17.24 11.31-27.31z"],"sort-numeric-up-alt":[448,512,[],"f887","M107.31 36.69a16 16 0 0 0-22.62 0l-80 96C-5.35 142.74 1.78 160 16 160h48v304a16 16 0 0 0 16 16h32a16 16 0 0 0 16-16V160h48c14.21 0 21.38-17.24 11.31-27.31zM400 416h-16V304a16 16 0 0 0-16-16h-48a16 16 0 0 0-14.29 8.83l-16 32A16 16 0 0 0 304 352h16v64h-16a16 16 0 0 0-16 16v32a16 16 0 0 0 16 16h96a16 16 0 0 0 16-16v-32a16 16 0 0 0-16-16zM330.17 34.91a79 79 0 0 0-55 54.17c-14.27 51.05 21.19 97.77 68.83 102.53a84.07 84.07 0 0 1-20.85 12.91c-7.57 3.4-10.8 12.47-8.18 20.34l9.9 20c2.87 8.63 12.53 13.49 20.9 9.91 58-24.77 86.25-61.61 86.25-132V112c-.02-51.21-48.4-91.34-101.85-77.09zM352 132a20 20 0 1 1 20-20 20 20 0 0 1-20 20z"],"sort-up":[320,512,[],"f0de","M279 224H41c-21.4 0-32.1-25.9-17-41L143 64c9.4-9.4 24.6-9.4 33.9 0l119 119c15.2 15.1 4.5 41-16.9 41z"],spa:[576,512,[],"f5bb","M568.25 192c-29.04.13-135.01 6.16-213.84 83-33.12 29.63-53.36 63.3-66.41 94.86-13.05-31.56-33.29-65.23-66.41-94.86-78.83-76.84-184.8-82.87-213.84-83-4.41-.02-7.79 3.4-7.75 7.82.23 27.92 7.14 126.14 88.77 199.3C172.79 480.94 256 480 288 480s115.19.95 199.23-80.88c81.64-73.17 88.54-171.38 88.77-199.3.04-4.42-3.34-7.84-7.75-7.82zM287.98 302.6c12.82-18.85 27.6-35.78 44.09-50.52 19.09-18.61 39.58-33.3 60.26-45.18-16.44-70.5-51.72-133.05-96.73-172.22-4.11-3.58-11.02-3.58-15.14 0-44.99 39.14-80.27 101.63-96.74 172.07 20.37 11.7 40.5 26.14 59.22 44.39a282.768 282.768 0 0 1 45.04 51.46z"],"space-shuttle":[640,512,[],"f197","M592.604 208.244C559.735 192.836 515.777 184 472 184H186.327c-4.952-6.555-10.585-11.978-16.72-16H376C229.157 137.747 219.403 32 96.003 32H96v128H80V32c-26.51 0-48 28.654-48 64v64c-23.197 0-32 10.032-32 24v40c0 13.983 8.819 24 32 24v16c-23.197 0-32 10.032-32 24v40c0 13.983 8.819 24 32 24v64c0 35.346 21.49 64 48 64V352h16v128h.003c123.4 0 133.154-105.747 279.997-136H169.606c6.135-4.022 11.768-9.445 16.72-16H472c43.777 0 87.735-8.836 120.604-24.244C622.282 289.845 640 271.992 640 256s-17.718-33.845-47.396-47.756zM488 296a8 8 0 0 1-8-8v-64a8 8 0 0 1 8-8c31.909 0 31.942 80 0 80z"],"spell-check":[576,512,[],"f891","M272 256h91.36c43.2 0 82-32.2 84.51-75.34a79.82 79.82 0 0 0-25.26-63.07 79.81 79.81 0 0 0 9.06-44.91C427.9 30.57 389.3 0 347 0h-75a16 16 0 0 0-16 16v224a16 16 0 0 0 16 16zm40-200h40a24 24 0 0 1 0 48h-40zm0 96h56a24 24 0 0 1 0 48h-56zM155.12 22.25A32 32 0 0 0 124.64 0H99.36a32 32 0 0 0-30.48 22.25L.59 235.73A16 16 0 0 0 16 256h24.93a16 16 0 0 0 15.42-11.73L68.29 208h87.42l11.94 36.27A16 16 0 0 0 183.07 256H208a16 16 0 0 0 15.42-20.27zM89.37 144L112 75.3l22.63 68.7zm482 132.48l-45.21-45.3a15.88 15.88 0 0 0-22.59 0l-151.5 151.5-55.41-55.5a15.88 15.88 0 0 0-22.59 0l-45.3 45.3a16 16 0 0 0 0 22.59l112 112.21a15.89 15.89 0 0 0 22.6 0l208-208.21a16 16 0 0 0-.02-22.59z"],spider:[576,512,[],"f717","M151.17 167.35L177.1 176h4.67l5.22-26.12c.72-3.58 1.8-7.58 3.21-11.79l-20.29-40.58 23.8-71.39c2.79-8.38-1.73-17.44-10.12-20.24L168.42.82c-8.38-2.8-17.45 1.73-20.24 10.12l-25.89 77.68a32.04 32.04 0 0 0 1.73 24.43l27.15 54.3zm422.14 182.03l-52.75-79.12a32.002 32.002 0 0 0-26.62-14.25H416l68.99-24.36a32.03 32.03 0 0 0 16.51-12.61l53.6-80.41c4.9-7.35 2.91-17.29-4.44-22.19l-13.31-8.88c-7.35-4.9-17.29-2.91-22.19 4.44l-50.56 75.83L404.1 208H368l-10.37-51.85C355.44 145.18 340.26 96 288 96c-52.26 0-67.44 49.18-69.63 60.15L208 208h-36.1l-60.49-20.17L60.84 112c-4.9-7.35-14.83-9.34-22.19-4.44l-13.31 8.88c-7.35 4.9-9.34 14.83-4.44 22.19l53.6 80.41a32.03 32.03 0 0 0 16.51 12.61L160 256H82.06a32.02 32.02 0 0 0-26.63 14.25L2.69 349.38c-4.9 7.35-2.92 17.29 4.44 22.19l13.31 8.88c7.35 4.9 17.29 2.91 22.19-4.44l48-72h47.06l-60.83 97.33A31.988 31.988 0 0 0 72 418.3V496c0 8.84 7.16 16 16 16h16c8.84 0 16-7.16 16-16v-73.11l74.08-118.53c-1.01 14.05-2.08 28.11-2.08 42.21C192 399.64 232.76 448 288 448s96-48.36 96-101.43c0-14.1-1.08-28.16-2.08-42.21L456 422.89V496c0 8.84 7.16 16 16 16h16c8.84 0 16-7.16 16-16v-77.71c0-6-1.69-11.88-4.86-16.96L438.31 304h47.06l48 72c4.9 7.35 14.84 9.34 22.19 4.44l13.31-8.88c7.36-4.9 9.34-14.83 4.44-22.18zM406.09 97.51l-20.29 40.58c1.41 4.21 2.49 8.21 3.21 11.79l5.22 26.12h4.67l25.93-8.65 27.15-54.3a31.995 31.995 0 0 0 1.73-24.43l-25.89-77.68C425.03 2.56 415.96-1.98 407.58.82l-15.17 5.06c-8.38 2.8-12.91 11.86-10.12 20.24l23.8 71.39z"],spinner:[512,512,[],"f110","M304 48c0 26.51-21.49 48-48 48s-48-21.49-48-48 21.49-48 48-48 48 21.49 48 48zm-48 368c-26.51 0-48 21.49-48 48s21.49 48 48 48 48-21.49 48-48-21.49-48-48-48zm208-208c-26.51 0-48 21.49-48 48s21.49 48 48 48 48-21.49 48-48-21.49-48-48-48zM96 256c0-26.51-21.49-48-48-48S0 229.49 0 256s21.49 48 48 48 48-21.49 48-48zm12.922 99.078c-26.51 0-48 21.49-48 48s21.49 48 48 48 48-21.49 48-48c0-26.509-21.491-48-48-48zm294.156 0c-26.51 0-48 21.49-48 48s21.49 48 48 48 48-21.49 48-48c0-26.509-21.49-48-48-48zM108.922 60.922c-26.51 0-48 21.49-48 48s21.49 48 48 48 48-21.49 48-48-21.491-48-48-48z"],splotch:[512,512,[],"f5bc","M472.29 195.89l-67.06-22.95c-19.28-6.6-33.54-20.92-38.14-38.3L351.1 74.19c-11.58-43.77-76.57-57.13-109.98-22.62l-46.14 47.67c-13.26 13.71-33.54 20.93-54.2 19.31l-71.88-5.62c-52.05-4.07-86.93 44.88-59.03 82.83l38.54 52.42c11.08 15.07 12.82 33.86 4.64 50.24L24.62 355.4c-20.59 41.25 22.84 84.87 73.49 73.81l69.96-15.28c20.11-4.39 41.45 0 57.07 11.73l54.32 40.83c39.32 29.56 101.04 7.57 104.45-37.22l4.7-61.86c1.35-17.79 12.8-33.86 30.63-42.99l62-31.74c44.88-22.96 39.59-80.17-8.95-96.79z"],"spray-can":[512,512,[],"f5bd","M224 32c0-17.67-14.33-32-32-32h-64c-17.67 0-32 14.33-32 32v96h128V32zm256 96c-17.67 0-32 14.33-32 32s14.33 32 32 32 32-14.33 32-32-14.33-32-32-32zm-256 32H96c-53.02 0-96 42.98-96 96v224c0 17.67 14.33 32 32 32h256c17.67 0 32-14.33 32-32V256c0-53.02-42.98-96-96-96zm-64 256c-44.18 0-80-35.82-80-80s35.82-80 80-80 80 35.82 80 80-35.82 80-80 80zM480 96c17.67 0 32-14.33 32-32s-14.33-32-32-32-32 14.33-32 32 14.33 32 32 32zm-96 32c-17.67 0-32 14.33-32 32s14.33 32 32 32 32-14.33 32-32-14.33-32-32-32zm-96-96c-17.67 0-32 14.33-32 32s14.33 32 32 32 32-14.33 32-32-14.33-32-32-32zm96 0c-17.67 0-32 14.33-32 32s14.33 32 32 32 32-14.33 32-32-14.33-32-32-32zm96 192c-17.67 0-32 14.33-32 32s14.33 32 32 32 32-14.33 32-32-14.33-32-32-32z"],square:[448,512,[],"f0c8","M400 32H48C21.5 32 0 53.5 0 80v352c0 26.5 21.5 48 48 48h352c26.5 0 48-21.5 48-48V80c0-26.5-21.5-48-48-48z"],"square-full":[512,512,[],"f45c","M512 512H0V0h512v512z"],"square-root-alt":[576,512,[],"f698","M571.31 251.31l-22.62-22.62c-6.25-6.25-16.38-6.25-22.63 0L480 274.75l-46.06-46.06c-6.25-6.25-16.38-6.25-22.63 0l-22.62 22.62c-6.25 6.25-6.25 16.38 0 22.63L434.75 320l-46.06 46.06c-6.25 6.25-6.25 16.38 0 22.63l22.62 22.62c6.25 6.25 16.38 6.25 22.63 0L480 365.25l46.06 46.06c6.25 6.25 16.38 6.25 22.63 0l22.62-22.62c6.25-6.25 6.25-16.38 0-22.63L525.25 320l46.06-46.06c6.25-6.25 6.25-16.38 0-22.63zM552 0H307.65c-14.54 0-27.26 9.8-30.95 23.87l-84.79 322.8-58.41-106.1A32.008 32.008 0 0 0 105.47 224H24c-13.25 0-24 10.74-24 24v48c0 13.25 10.75 24 24 24h43.62l88.88 163.73C168.99 503.5 186.3 512 204.94 512c17.27 0 44.44-9 54.28-41.48L357.03 96H552c13.25 0 24-10.75 24-24V24c0-13.26-10.75-24-24-24z"],stamp:[512,512,[],"f5bf","M32 512h448v-64H32v64zm384-256h-66.56c-16.26 0-29.44-13.18-29.44-29.44v-9.46c0-27.37 8.88-53.41 21.46-77.72 9.11-17.61 12.9-38.39 9.05-60.42-6.77-38.78-38.47-70.7-77.26-77.45C212.62-9.04 160 37.33 160 96c0 14.16 3.12 27.54 8.69 39.58C182.02 164.43 192 194.7 192 226.49v.07c0 16.26-13.18 29.44-29.44 29.44H96c-53.02 0-96 42.98-96 96v32c0 17.67 14.33 32 32 32h448c17.67 0 32-14.33 32-32v-32c0-53.02-42.98-96-96-96z"],star:[576,512,[],"f005","M259.3 17.8L194 150.2 47.9 171.5c-26.2 3.8-36.7 36.1-17.7 54.6l105.7 103-25 145.5c-4.5 26.3 23.2 46 46.4 33.7L288 439.6l130.7 68.7c23.2 12.2 50.9-7.4 46.4-33.7l-25-145.5 105.7-103c19-18.5 8.5-50.8-17.7-54.6L382 150.2 316.7 17.8c-11.7-23.6-45.6-23.9-57.4 0z"],"star-and-crescent":[512,512,[],"f699","M340.47 466.36c-1.45 0-6.89.46-9.18.46-116.25 0-210.82-94.57-210.82-210.82S215.04 45.18 331.29 45.18c2.32 0 7.7.46 9.18.46 7.13 0 13.33-5.03 14.75-12.07 1.46-7.25-2.55-14.49-9.47-17.09C316.58 5.54 286.39 0 256 0 114.84 0 0 114.84 0 256s114.84 256 256 256c30.23 0 60.28-5.49 89.32-16.32 5.96-2.02 10.28-7.64 10.28-14.26 0-8.09-6.39-15.06-15.13-15.06zm162.99-252.5l-76.38-11.1-34.16-69.21c-1.83-3.7-5.38-5.55-8.93-5.55s-7.1 1.85-8.93 5.55l-34.16 69.21-76.38 11.1c-8.17 1.18-11.43 11.22-5.52 16.99l55.27 53.87-13.05 76.07c-1.11 6.44 4.01 11.66 9.81 11.66 1.53 0 3.11-.36 4.64-1.17L384 335.37l68.31 35.91c1.53.8 3.11 1.17 4.64 1.17 5.8 0 10.92-5.23 9.81-11.66l-13.05-76.07 55.27-53.87c5.91-5.77 2.65-15.81-5.52-16.99z"],"star-half":[576,512,[],"f089","M288 0c-11.4 0-22.8 5.9-28.7 17.8L194 150.2 47.9 171.4c-26.2 3.8-36.7 36.1-17.7 54.6l105.7 103-25 145.5c-4.5 26.1 23 46 46.4 33.7L288 439.6V0z"],"star-half-alt":[536,512,[],"f5c0","M508.55 171.51L362.18 150.2 296.77 17.81C290.89 5.98 279.42 0 267.95 0c-11.4 0-22.79 5.9-28.69 17.81l-65.43 132.38-146.38 21.29c-26.25 3.8-36.77 36.09-17.74 54.59l105.89 103-25.06 145.48C86.98 495.33 103.57 512 122.15 512c4.93 0 10-1.17 14.87-3.75l130.95-68.68 130.94 68.7c4.86 2.55 9.92 3.71 14.83 3.71 18.6 0 35.22-16.61 31.66-37.4l-25.03-145.49 105.91-102.98c19.04-18.5 8.52-50.8-17.73-54.6zm-121.74 123.2l-18.12 17.62 4.28 24.88 19.52 113.45-102.13-53.59-22.38-11.74.03-317.19 51.03 103.29 11.18 22.63 25.01 3.64 114.23 16.63-82.65 80.38z"],"star-of-david":[464,512,[],"f69a","M405.68 256l53.21-89.39C473.3 142.4 455.48 112 426.88 112H319.96l-55.95-93.98C256.86 6.01 244.43 0 232 0s-24.86 6.01-32.01 18.02L144.04 112H37.11c-28.6 0-46.42 30.4-32.01 54.61L58.32 256 5.1 345.39C-9.31 369.6 8.51 400 37.11 400h106.93l55.95 93.98C207.14 505.99 219.57 512 232 512s24.86-6.01 32.01-18.02L319.96 400h106.93c28.6 0 46.42-30.4 32.01-54.61L405.68 256zm-12.78-88l-19.8 33.26L353.3 168h39.6zm-52.39 88l-52.39 88H175.88l-52.39-88 52.38-88h112.25l52.39 88zM232 73.72L254.79 112h-45.57L232 73.72zM71.1 168h39.6l-19.8 33.26L71.1 168zm0 176l19.8-33.26L110.7 344H71.1zM232 438.28L209.21 400h45.57L232 438.28zM353.29 344l19.8-33.26L392.9 344h-39.61z"],"star-of-life":[480,512,[],"f621","M471.99 334.43L336.06 256l135.93-78.43c7.66-4.42 10.28-14.2 5.86-21.86l-32.02-55.43c-4.42-7.65-14.21-10.28-21.87-5.86l-135.93 78.43V16c0-8.84-7.17-16-16.01-16h-64.04c-8.84 0-16.01 7.16-16.01 16v156.86L56.04 94.43c-7.66-4.42-17.45-1.79-21.87 5.86L2.15 155.71c-4.42 7.65-1.8 17.44 5.86 21.86L143.94 256 8.01 334.43c-7.66 4.42-10.28 14.21-5.86 21.86l32.02 55.43c4.42 7.65 14.21 10.27 21.87 5.86l135.93-78.43V496c0 8.84 7.17 16 16.01 16h64.04c8.84 0 16.01-7.16 16.01-16V339.14l135.93 78.43c7.66 4.42 17.45 1.8 21.87-5.86l32.02-55.43c4.42-7.65 1.8-17.43-5.86-21.85z"],"step-backward":[448,512,[],"f048","M64 468V44c0-6.6 5.4-12 12-12h48c6.6 0 12 5.4 12 12v176.4l195.5-181C352.1 22.3 384 36.6 384 64v384c0 27.4-31.9 41.7-52.5 24.6L136 292.7V468c0 6.6-5.4 12-12 12H76c-6.6 0-12-5.4-12-12z"],"step-forward":[448,512,[],"f051","M384 44v424c0 6.6-5.4 12-12 12h-48c-6.6 0-12-5.4-12-12V291.6l-195.5 181C95.9 489.7 64 475.4 64 448V64c0-27.4 31.9-41.7 52.5-24.6L312 219.3V44c0-6.6 5.4-12 12-12h48c6.6 0 12 5.4 12 12z"],stethoscope:[512,512,[],"f0f1","M447.1 112c-34.2.5-62.3 28.4-63 62.6-.5 24.3 12.5 45.6 32 56.8V344c0 57.3-50.2 104-112 104-60 0-109.2-44.1-111.9-99.2C265 333.8 320 269.2 320 192V36.6c0-11.4-8.1-21.3-19.3-23.5L237.8.5c-13-2.6-25.6 5.8-28.2 18.8L206.4 35c-2.6 13 5.8 25.6 18.8 28.2l30.7 6.1v121.4c0 52.9-42.2 96.7-95.1 97.2-53.4.5-96.9-42.7-96.9-96V69.4l30.7-6.1c13-2.6 21.4-15.2 18.8-28.2l-3.1-15.7C107.7 6.4 95.1-2 82.1.6L19.3 13C8.1 15.3 0 25.1 0 36.6V192c0 77.3 55.1 142 128.1 156.8C130.7 439.2 208.6 512 304 512c97 0 176-75.4 176-168V231.4c19.1-11.1 32-31.7 32-55.4 0-35.7-29.2-64.5-64.9-64zm.9 80c-8.8 0-16-7.2-16-16s7.2-16 16-16 16 7.2 16 16-7.2 16-16 16z"],"sticky-note":[448,512,[],"f249","M312 320h136V56c0-13.3-10.7-24-24-24H24C10.7 32 0 42.7 0 56v400c0 13.3 10.7 24 24 24h264V344c0-13.2 10.8-24 24-24zm129 55l-98 98c-4.5 4.5-10.6 7-17 7h-6V352h128v6.1c0 6.3-2.5 12.4-7 16.9z"],stop:[448,512,[],"f04d","M400 32H48C21.5 32 0 53.5 0 80v352c0 26.5 21.5 48 48 48h352c26.5 0 48-21.5 48-48V80c0-26.5-21.5-48-48-48z"],"stop-circle":[512,512,[],"f28d","M256 8C119 8 8 119 8 256s111 248 248 248 248-111 248-248S393 8 256 8zm96 328c0 8.8-7.2 16-16 16H176c-8.8 0-16-7.2-16-16V176c0-8.8 7.2-16 16-16h160c8.8 0 16 7.2 16 16v160z"],stopwatch:[448,512,[],"f2f2","M432 304c0 114.9-93.1 208-208 208S16 418.9 16 304c0-104 76.3-190.2 176-205.5V64h-28c-6.6 0-12-5.4-12-12V12c0-6.6 5.4-12 12-12h120c6.6 0 12 5.4 12 12v40c0 6.6-5.4 12-12 12h-28v34.5c37.5 5.8 71.7 21.6 99.7 44.6l27.5-27.5c4.7-4.7 12.3-4.7 17 0l28.3 28.3c4.7 4.7 4.7 12.3 0 17l-29.4 29.4-.6.6C419.7 223.3 432 262.2 432 304zm-176 36V188.5c0-6.6-5.4-12-12-12h-40c-6.6 0-12 5.4-12 12V340c0 6.6 5.4 12 12 12h40c6.6 0 12-5.4 12-12z"],store:[616,512,[],"f54e","M602 118.6L537.1 15C531.3 5.7 521 0 510 0H106C95 0 84.7 5.7 78.9 15L14 118.6c-33.5 53.5-3.8 127.9 58.8 136.4 4.5.6 9.1.9 13.7.9 29.6 0 55.8-13 73.8-33.1 18 20.1 44.3 33.1 73.8 33.1 29.6 0 55.8-13 73.8-33.1 18 20.1 44.3 33.1 73.8 33.1 29.6 0 55.8-13 73.8-33.1 18.1 20.1 44.3 33.1 73.8 33.1 4.7 0 9.2-.3 13.7-.9 62.8-8.4 92.6-82.8 59-136.4zM529.5 288c-10 0-19.9-1.5-29.5-3.8V384H116v-99.8c-9.6 2.2-19.5 3.8-29.5 3.8-6 0-12.1-.4-18-1.2-5.6-.8-11.1-2.1-16.4-3.6V480c0 17.7 14.3 32 32 32h448c17.7 0 32-14.3 32-32V283.2c-5.4 1.6-10.8 2.9-16.4 3.6-6.1.8-12.1 1.2-18.2 1.2z"],"store-alt":[640,512,[],"f54f","M320 384H128V224H64v256c0 17.7 14.3 32 32 32h256c17.7 0 32-14.3 32-32V224h-64v160zm314.6-241.8l-85.3-128c-6-8.9-16-14.2-26.7-14.2H117.4c-10.7 0-20.7 5.3-26.6 14.2l-85.3 128c-14.2 21.3 1 49.8 26.6 49.8H608c25.5 0 40.7-28.5 26.6-49.8zM512 496c0 8.8 7.2 16 16 16h32c8.8 0 16-7.2 16-16V224h-64v272z"],stream:[512,512,[],"f550","M16 128h416c8.84 0 16-7.16 16-16V48c0-8.84-7.16-16-16-16H16C7.16 32 0 39.16 0 48v64c0 8.84 7.16 16 16 16zm480 80H80c-8.84 0-16 7.16-16 16v64c0 8.84 7.16 16 16 16h416c8.84 0 16-7.16 16-16v-64c0-8.84-7.16-16-16-16zm-64 176H16c-8.84 0-16 7.16-16 16v64c0 8.84 7.16 16 16 16h416c8.84 0 16-7.16 16-16v-64c0-8.84-7.16-16-16-16z"],"street-view":[512,512,[],"f21d","M367.9 329.76c-4.62 5.3-9.78 10.1-15.9 13.65v22.94c66.52 9.34 112 28.05 112 49.65 0 30.93-93.12 56-208 56S48 446.93 48 416c0-21.6 45.48-40.3 112-49.65v-22.94c-6.12-3.55-11.28-8.35-15.9-13.65C58.87 345.34 0 378.05 0 416c0 53.02 114.62 96 256 96s256-42.98 256-96c0-37.95-58.87-70.66-144.1-86.24zM256 128c35.35 0 64-28.65 64-64S291.35 0 256 0s-64 28.65-64 64 28.65 64 64 64zm-64 192v96c0 17.67 14.33 32 32 32h64c17.67 0 32-14.33 32-32v-96c17.67 0 32-14.33 32-32v-96c0-26.51-21.49-48-48-48h-11.8c-11.07 5.03-23.26 8-36.2 8s-25.13-2.97-36.2-8H208c-26.51 0-48 21.49-48 48v96c0 17.67 14.33 32 32 32z"],strikethrough:[512,512,[],"f0cc","M496 224H293.9l-87.17-26.83A43.55 43.55 0 0 1 219.55 112h66.79A49.89 49.89 0 0 1 331 139.58a16 16 0 0 0 21.46 7.15l42.94-21.47a16 16 0 0 0 7.16-21.46l-.53-1A128 128 0 0 0 287.51 32h-68a123.68 123.68 0 0 0-123 135.64c2 20.89 10.1 39.83 21.78 56.36H16a16 16 0 0 0-16 16v32a16 16 0 0 0 16 16h480a16 16 0 0 0 16-16v-32a16 16 0 0 0-16-16zm-180.24 96A43 43 0 0 1 336 356.45 43.59 43.59 0 0 1 292.45 400h-66.79A49.89 49.89 0 0 1 181 372.42a16 16 0 0 0-21.46-7.15l-42.94 21.47a16 16 0 0 0-7.16 21.46l.53 1A128 128 0 0 0 224.49 480h68a123.68 123.68 0 0 0 123-135.64 114.25 114.25 0 0 0-5.34-24.36z"],stroopwafel:[512,512,[],"f551","M188.12 210.74L142.86 256l45.25 45.25L233.37 256l-45.25-45.26zm113.13-22.62L256 142.86l-45.25 45.25L256 233.37l45.25-45.25zm-90.5 135.76L256 369.14l45.26-45.26L256 278.63l-45.25 45.25zM256 0C114.62 0 0 114.62 0 256s114.62 256 256 256 256-114.62 256-256S397.38 0 256 0zm186.68 295.6l-11.31 11.31c-3.12 3.12-8.19 3.12-11.31 0l-28.29-28.29-45.25 45.25 33.94 33.94 16.97-16.97c3.12-3.12 8.19-3.12 11.31 0l11.31 11.31c3.12 3.12 3.12 8.19 0 11.31l-16.97 16.97 16.97 16.97c3.12 3.12 3.12 8.19 0 11.31l-11.31 11.31c-3.12 3.12-8.19 3.12-11.31 0l-16.97-16.97-16.97 16.97c-3.12 3.12-8.19 3.12-11.31 0l-11.31-11.31c-3.12-3.12-3.12-8.19 0-11.31l16.97-16.97-33.94-33.94-45.26 45.26 28.29 28.29c3.12 3.12 3.12 8.19 0 11.31l-11.31 11.31c-3.12 3.12-8.19 3.12-11.31 0L256 414.39l-28.29 28.29c-3.12 3.12-8.19 3.12-11.31 0l-11.31-11.31c-3.12-3.12-3.12-8.19 0-11.31l28.29-28.29-45.25-45.26-33.94 33.94 16.97 16.97c3.12 3.12 3.12 8.19 0 11.31l-11.31 11.31c-3.12 3.12-8.19 3.12-11.31 0l-16.97-16.97-16.97 16.97c-3.12 3.12-8.19 3.12-11.31 0l-11.31-11.31c-3.12-3.12-3.12-8.19 0-11.31l16.97-16.97-16.97-16.97c-3.12-3.12-3.12-8.19 0-11.31l11.31-11.31c3.12-3.12 8.19-3.12 11.31 0l16.97 16.97 33.94-33.94-45.25-45.25-28.29 28.29c-3.12 3.12-8.19 3.12-11.31 0L69.32 295.6c-3.12-3.12-3.12-8.19 0-11.31L97.61 256l-28.29-28.29c-3.12-3.12-3.12-8.19 0-11.31l11.31-11.31c3.12-3.12 8.19-3.12 11.31 0l28.29 28.29 45.25-45.26-33.94-33.94-16.97 16.97c-3.12 3.12-8.19 3.12-11.31 0l-11.31-11.31c-3.12-3.12-3.12-8.19 0-11.31l16.97-16.97-16.97-16.97c-3.12-3.12-3.12-8.19 0-11.31l11.31-11.31c3.12-3.12 8.19-3.12 11.31 0l16.97 16.97 16.97-16.97c3.12-3.12 8.19-3.12 11.31 0l11.31 11.31c3.12 3.12 3.12 8.19 0 11.31l-16.97 16.97 33.94 33.94 45.26-45.25-28.29-28.29c-3.12-3.12-3.12-8.19 0-11.31l11.31-11.31c3.12-3.12 8.19-3.12 11.31 0L256 97.61l28.29-28.29c3.12-3.12 8.19-3.12 11.31 0l11.31 11.31c3.12 3.12 3.12 8.19 0 11.31l-28.29 28.29 45.26 45.25 33.94-33.94-16.97-16.97c-3.12-3.12-3.12-8.19 0-11.31l11.31-11.31c3.12-3.12 8.19-3.12 11.31 0l16.97 16.97 16.97-16.97c3.12-3.12 8.19-3.12 11.31 0l11.31 11.31c3.12 3.12 3.12 8.19 0 11.31l-16.97 16.97 16.97 16.97c3.12 3.12 3.12 8.19 0 11.31l-11.31 11.31c-3.12 3.12-8.19 3.12-11.31 0l-16.97-16.97-33.94 33.94 45.25 45.26 28.29-28.29c3.12-3.12 8.19-3.12 11.31 0l11.31 11.31c3.12 3.12 3.12 8.19 0 11.31L414.39 256l28.29 28.28a8.015 8.015 0 0 1 0 11.32zM278.63 256l45.26 45.25L369.14 256l-45.25-45.26L278.63 256z"],subscript:[512,512,[],"f12c","M496 448h-16V304a16 16 0 0 0-16-16h-48a16 16 0 0 0-14.29 8.83l-16 32A16 16 0 0 0 400 352h16v96h-16a16 16 0 0 0-16 16v32a16 16 0 0 0 16 16h96a16 16 0 0 0 16-16v-32a16 16 0 0 0-16-16zM336 64h-67a16 16 0 0 0-13.14 6.87l-79.9 115-79.9-115A16 16 0 0 0 83 64H16A16 16 0 0 0 0 80v48a16 16 0 0 0 16 16h33.48l77.81 112-77.81 112H16a16 16 0 0 0-16 16v48a16 16 0 0 0 16 16h67a16 16 0 0 0 13.14-6.87l79.9-115 79.9 115A16 16 0 0 0 269 448h67a16 16 0 0 0 16-16v-48a16 16 0 0 0-16-16h-33.48l-77.81-112 77.81-112H336a16 16 0 0 0 16-16V80a16 16 0 0 0-16-16z"],subway:[448,512,[],"f239","M448 96v256c0 51.815-61.624 96-130.022 96l62.98 49.721C386.905 502.417 383.562 512 376 512H72c-7.578 0-10.892-9.594-4.957-14.279L130.022 448C61.82 448 0 403.954 0 352V96C0 42.981 64 0 128 0h192c65 0 128 42.981 128 96zM200 232V120c0-13.255-10.745-24-24-24H72c-13.255 0-24 10.745-24 24v112c0 13.255 10.745 24 24 24h104c13.255 0 24-10.745 24-24zm200 0V120c0-13.255-10.745-24-24-24H272c-13.255 0-24 10.745-24 24v112c0 13.255 10.745 24 24 24h104c13.255 0 24-10.745 24-24zm-48 56c-26.51 0-48 21.49-48 48s21.49 48 48 48 48-21.49 48-48-21.49-48-48-48zm-256 0c-26.51 0-48 21.49-48 48s21.49 48 48 48 48-21.49 48-48-21.49-48-48-48z"],suitcase:[512,512,[],"f0f2","M128 480h256V80c0-26.5-21.5-48-48-48H176c-26.5 0-48 21.5-48 48v400zm64-384h128v32H192V96zm320 80v256c0 26.5-21.5 48-48 48h-48V128h48c26.5 0 48 21.5 48 48zM96 480H48c-26.5 0-48-21.5-48-48V176c0-26.5 21.5-48 48-48h48v352z"],"suitcase-rolling":[384,512,[],"f5c1","M336 160H48c-26.51 0-48 21.49-48 48v224c0 26.51 21.49 48 48 48h16v16c0 8.84 7.16 16 16 16h32c8.84 0 16-7.16 16-16v-16h128v16c0 8.84 7.16 16 16 16h32c8.84 0 16-7.16 16-16v-16h16c26.51 0 48-21.49 48-48V208c0-26.51-21.49-48-48-48zm-16 216c0 4.42-3.58 8-8 8H72c-4.42 0-8-3.58-8-8v-16c0-4.42 3.58-8 8-8h240c4.42 0 8 3.58 8 8v16zm0-96c0 4.42-3.58 8-8 8H72c-4.42 0-8-3.58-8-8v-16c0-4.42 3.58-8 8-8h240c4.42 0 8 3.58 8 8v16zM144 48h96v80h48V48c0-26.51-21.49-48-48-48h-96c-26.51 0-48 21.49-48 48v80h48V48z"],sun:[512,512,[],"f185","M256 160c-52.9 0-96 43.1-96 96s43.1 96 96 96 96-43.1 96-96-43.1-96-96-96zm246.4 80.5l-94.7-47.3 33.5-100.4c4.5-13.6-8.4-26.5-21.9-21.9l-100.4 33.5-47.4-94.8c-6.4-12.8-24.6-12.8-31 0l-47.3 94.7L92.7 70.8c-13.6-4.5-26.5 8.4-21.9 21.9l33.5 100.4-94.7 47.4c-12.8 6.4-12.8 24.6 0 31l94.7 47.3-33.5 100.5c-4.5 13.6 8.4 26.5 21.9 21.9l100.4-33.5 47.3 94.7c6.4 12.8 24.6 12.8 31 0l47.3-94.7 100.4 33.5c13.6 4.5 26.5-8.4 21.9-21.9l-33.5-100.4 94.7-47.3c13-6.5 13-24.7.2-31.1zm-155.9 106c-49.9 49.9-131.1 49.9-181 0-49.9-49.9-49.9-131.1 0-181 49.9-49.9 131.1-49.9 181 0 49.9 49.9 49.9 131.1 0 181z"],superscript:[512,512,[],"f12b","M496 160h-16V16a16 16 0 0 0-16-16h-48a16 16 0 0 0-14.29 8.83l-16 32A16 16 0 0 0 400 64h16v96h-16a16 16 0 0 0-16 16v32a16 16 0 0 0 16 16h96a16 16 0 0 0 16-16v-32a16 16 0 0 0-16-16zM336 64h-67a16 16 0 0 0-13.14 6.87l-79.9 115-79.9-115A16 16 0 0 0 83 64H16A16 16 0 0 0 0 80v48a16 16 0 0 0 16 16h33.48l77.81 112-77.81 112H16a16 16 0 0 0-16 16v48a16 16 0 0 0 16 16h67a16 16 0 0 0 13.14-6.87l79.9-115 79.9 115A16 16 0 0 0 269 448h67a16 16 0 0 0 16-16v-48a16 16 0 0 0-16-16h-33.48l-77.81-112 77.81-112H336a16 16 0 0 0 16-16V80a16 16 0 0 0-16-16z"],surprise:[496,512,[],"f5c2","M248 8C111 8 0 119 0 256s111 248 248 248 248-111 248-248S385 8 248 8zM136 208c0-17.7 14.3-32 32-32s32 14.3 32 32-14.3 32-32 32-32-14.3-32-32zm112 208c-35.3 0-64-28.7-64-64s28.7-64 64-64 64 28.7 64 64-28.7 64-64 64zm80-176c-17.7 0-32-14.3-32-32s14.3-32 32-32 32 14.3 32 32-14.3 32-32 32z"],swatchbook:[512,512,[],"f5c3","M434.66,167.71h0L344.5,77.36a31.83,31.83,0,0,0-45-.07h0l-.07.07L224,152.88V424L434.66,212.9A32,32,0,0,0,434.66,167.71ZM480,320H373.09L186.68,506.51c-2.06,2.07-4.5,3.58-6.68,5.49H480a32,32,0,0,0,32-32V352A32,32,0,0,0,480,320ZM192,32A32,32,0,0,0,160,0H32A32,32,0,0,0,0,32V416a96,96,0,0,0,192,0ZM96,440a24,24,0,1,1,24-24A24,24,0,0,1,96,440Zm32-184H64V192h64Zm0-128H64V64h64Z"],swimmer:[640,512,[],"f5c4","M189.61 310.58c3.54 3.26 15.27 9.42 34.39 9.42s30.86-6.16 34.39-9.42c16.02-14.77 34.5-22.58 53.46-22.58h16.3c18.96 0 37.45 7.81 53.46 22.58 3.54 3.26 15.27 9.42 34.39 9.42s30.86-6.16 34.39-9.42c14.86-13.71 31.88-21.12 49.39-22.16l-112.84-80.6 18-12.86c3.64-2.58 8.28-3.52 12.62-2.61l100.35 21.53c25.91 5.53 51.44-10.97 57-36.88 5.55-25.92-10.95-51.44-36.88-57L437.68 98.47c-30.73-6.58-63.02.12-88.56 18.38l-80.02 57.17c-10.38 7.39-19.36 16.44-26.72 26.94L173.75 299c5.47 3.23 10.82 6.93 15.86 11.58zM624 352h-16c-26.04 0-45.8-8.42-56.09-17.9-8.9-8.21-19.66-14.1-31.77-14.1h-16.3c-12.11 0-22.87 5.89-31.77 14.1C461.8 343.58 442.04 352 416 352s-45.8-8.42-56.09-17.9c-8.9-8.21-19.66-14.1-31.77-14.1h-16.3c-12.11 0-22.87 5.89-31.77 14.1C269.8 343.58 250.04 352 224 352s-45.8-8.42-56.09-17.9c-8.9-8.21-19.66-14.1-31.77-14.1h-16.3c-12.11 0-22.87 5.89-31.77 14.1C77.8 343.58 58.04 352 32 352H16c-8.84 0-16 7.16-16 16v32c0 8.84 7.16 16 16 16h16c38.62 0 72.72-12.19 96-31.84 23.28 19.66 57.38 31.84 96 31.84s72.72-12.19 96-31.84c23.28 19.66 57.38 31.84 96 31.84s72.72-12.19 96-31.84c23.28 19.66 57.38 31.84 96 31.84h16c8.84 0 16-7.16 16-16v-32c0-8.84-7.16-16-16-16zm-512-96c44.18 0 80-35.82 80-80s-35.82-80-80-80-80 35.82-80 80 35.82 80 80 80z"],"swimming-pool":[640,512,[],"f5c5","M624 416h-16c-26.04 0-45.8-8.42-56.09-17.9-8.9-8.21-19.66-14.1-31.77-14.1h-16.3c-12.11 0-22.87 5.89-31.77 14.1C461.8 407.58 442.04 416 416 416s-45.8-8.42-56.09-17.9c-8.9-8.21-19.66-14.1-31.77-14.1h-16.3c-12.11 0-22.87 5.89-31.77 14.1C269.8 407.58 250.04 416 224 416s-45.8-8.42-56.09-17.9c-8.9-8.21-19.66-14.1-31.77-14.1h-16.3c-12.11 0-22.87 5.89-31.77 14.1C77.8 407.58 58.04 416 32 416H16c-8.84 0-16 7.16-16 16v32c0 8.84 7.16 16 16 16h16c38.62 0 72.72-12.19 96-31.84 23.28 19.66 57.38 31.84 96 31.84s72.72-12.19 96-31.84c23.28 19.66 57.38 31.84 96 31.84s72.72-12.19 96-31.84c23.28 19.66 57.38 31.84 96 31.84h16c8.84 0 16-7.16 16-16v-32c0-8.84-7.16-16-16-16zm-400-32v-96h192v96c19.12 0 30.86-6.16 34.39-9.42 9.17-8.46 19.2-14.34 29.61-18.07V128c0-17.64 14.36-32 32-32s32 14.36 32 32v16c0 8.84 7.16 16 16 16h32c8.84 0 16-7.16 16-16v-16c0-52.94-43.06-96-96-96s-96 43.06-96 96v96H224v-96c0-17.64 14.36-32 32-32s32 14.36 32 32v16c0 8.84 7.16 16 16 16h32c8.84 0 16-7.16 16-16v-16c0-52.94-43.06-96-96-96s-96 43.06-96 96v228.5c10.41 3.73 20.44 9.62 29.61 18.07 3.53 3.27 15.27 9.43 34.39 9.43z"],synagogue:[640,512,[],"f69b","M70 196.51L6.67 268.29A26.643 26.643 0 0 0 0 285.93V512h128V239.58l-38-43.07c-5.31-6.01-14.69-6.01-20 0zm563.33 71.78L570 196.51c-5.31-6.02-14.69-6.02-20 0l-38 43.07V512h128V285.93c0-6.5-2.37-12.77-6.67-17.64zM339.99 7.01c-11.69-9.35-28.29-9.35-39.98 0l-128 102.4A32.005 32.005 0 0 0 160 134.4V512h96v-92.57c0-31.88 21.78-61.43 53.25-66.55C349.34 346.35 384 377.13 384 416v96h96V134.4c0-9.72-4.42-18.92-12.01-24.99l-128-102.4zm52.07 215.55c1.98 3.15-.29 7.24-4 7.24h-38.94L324 269.79c-1.85 2.95-6.15 2.95-8 0l-25.12-39.98h-38.94c-3.72 0-5.98-4.09-4-7.24l19.2-30.56-19.2-30.56c-1.98-3.15.29-7.24 4-7.24h38.94l25.12-40c1.85-2.95 6.15-2.95 8 0l25.12 39.98h38.95c3.71 0 5.98 4.09 4 7.24L372.87 192l19.19 30.56z"],sync:[512,512,[],"f021","M440.65 12.57l4 82.77A247.16 247.16 0 0 0 255.83 8C134.73 8 33.91 94.92 12.29 209.82A12 12 0 0 0 24.09 224h49.05a12 12 0 0 0 11.67-9.26 175.91 175.91 0 0 1 317-56.94l-101.46-4.86a12 12 0 0 0-12.57 12v47.41a12 12 0 0 0 12 12H500a12 12 0 0 0 12-12V12a12 12 0 0 0-12-12h-47.37a12 12 0 0 0-11.98 12.57zM255.83 432a175.61 175.61 0 0 1-146-77.8l101.8 4.87a12 12 0 0 0 12.57-12v-47.4a12 12 0 0 0-12-12H12a12 12 0 0 0-12 12V500a12 12 0 0 0 12 12h47.35a12 12 0 0 0 12-12.6l-4.15-82.57A247.17 247.17 0 0 0 255.83 504c121.11 0 221.93-86.92 243.55-201.82a12 12 0 0 0-11.8-14.18h-49.05a12 12 0 0 0-11.67 9.26A175.86 175.86 0 0 1 255.83 432z"],"sync-alt":[512,512,[],"f2f1","M370.72 133.28C339.458 104.008 298.888 87.962 255.848 88c-77.458.068-144.328 53.178-162.791 126.85-1.344 5.363-6.122 9.15-11.651 9.15H24.103c-7.498 0-13.194-6.807-11.807-14.176C33.933 94.924 134.813 8 256 8c66.448 0 126.791 26.136 171.315 68.685L463.03 40.97C478.149 25.851 504 36.559 504 57.941V192c0 13.255-10.745 24-24 24H345.941c-21.382 0-32.09-25.851-16.971-40.971l41.75-41.749zM32 296h134.059c21.382 0 32.09 25.851 16.971 40.971l-41.75 41.75c31.262 29.273 71.835 45.319 114.876 45.28 77.418-.07 144.315-53.144 162.787-126.849 1.344-5.363 6.122-9.15 11.651-9.15h57.304c7.498 0 13.194 6.807 11.807 14.176C478.067 417.076 377.187 504 256 504c-66.448 0-126.791-26.136-171.315-68.685L48.97 471.03C33.851 486.149 8 475.441 8 454.059V320c0-13.255 10.745-24 24-24z"],syringe:[512,512,[],"f48e","M201.5 174.8l55.7 55.8c3.1 3.1 3.1 8.2 0 11.3l-11.3 11.3c-3.1 3.1-8.2 3.1-11.3 0l-55.7-55.8-45.3 45.3 55.8 55.8c3.1 3.1 3.1 8.2 0 11.3l-11.3 11.3c-3.1 3.1-8.2 3.1-11.3 0L111 265.2l-26.4 26.4c-17.3 17.3-25.6 41.1-23 65.4l7.1 63.6L2.3 487c-3.1 3.1-3.1 8.2 0 11.3l11.3 11.3c3.1 3.1 8.2 3.1 11.3 0l66.3-66.3 63.6 7.1c23.9 2.6 47.9-5.4 65.4-23l181.9-181.9-135.7-135.7-64.9 65zm308.2-93.3L430.5 2.3c-3.1-3.1-8.2-3.1-11.3 0l-11.3 11.3c-3.1 3.1-3.1 8.2 0 11.3l28.3 28.3-45.3 45.3-56.6-56.6-17-17c-3.1-3.1-8.2-3.1-11.3 0l-33.9 33.9c-3.1 3.1-3.1 8.2 0 11.3l17 17L424.8 223l17 17c3.1 3.1 8.2 3.1 11.3 0l33.9-34c3.1-3.1 3.1-8.2 0-11.3l-73.5-73.5 45.3-45.3 28.3 28.3c3.1 3.1 8.2 3.1 11.3 0l11.3-11.3c3.1-3.2 3.1-8.2 0-11.4z"],table:[512,512,[],"f0ce","M464 32H48C21.49 32 0 53.49 0 80v352c0 26.51 21.49 48 48 48h416c26.51 0 48-21.49 48-48V80c0-26.51-21.49-48-48-48zM224 416H64v-96h160v96zm0-160H64v-96h160v96zm224 160H288v-96h160v96zm0-160H288v-96h160v96z"],"table-tennis":[512,512,[],"f45d","M496.2 296.5C527.7 218.7 512 126.2 449 63.1 365.1-21 229-21 145.1 63.1l-56 56.1 211.5 211.5c46.1-62.1 131.5-77.4 195.6-34.2zm-217.9 79.7L57.9 155.9c-27.3 45.3-21.7 105 17.3 144.1l34.5 34.6L6.7 424c-8.6 7.5-9.1 20.7-1 28.8l53.4 53.5c8 8.1 21.2 7.6 28.7-1L177.1 402l35.7 35.7c19.7 19.7 44.6 30.5 70.3 33.3-7.1-17-11-35.6-11-55.1-.1-13.8 2.5-27 6.2-39.7zM416 320c-53 0-96 43-96 96s43 96 96 96 96-43 96-96-43-96-96-96z"],tablet:[448,512,[],"f10a","M400 0H48C21.5 0 0 21.5 0 48v416c0 26.5 21.5 48 48 48h352c26.5 0 48-21.5 48-48V48c0-26.5-21.5-48-48-48zM224 480c-17.7 0-32-14.3-32-32s14.3-32 32-32 32 14.3 32 32-14.3 32-32 32z"],"tablet-alt":[448,512,[],"f3fa","M400 0H48C21.5 0 0 21.5 0 48v416c0 26.5 21.5 48 48 48h352c26.5 0 48-21.5 48-48V48c0-26.5-21.5-48-48-48zM224 480c-17.7 0-32-14.3-32-32s14.3-32 32-32 32 14.3 32 32-14.3 32-32 32zm176-108c0 6.6-5.4 12-12 12H60c-6.6 0-12-5.4-12-12V60c0-6.6 5.4-12 12-12h328c6.6 0 12 5.4 12 12v312z"],tablets:[640,512,[],"f490","M160 192C78.9 192 12.5 250.5.1 326.7c-.8 4.8 3.3 9.3 8.3 9.3h303.3c5 0 9.1-4.5 8.3-9.3C307.5 250.5 241.1 192 160 192zm151.6 176H8.4c-5 0-9.1 4.5-8.3 9.3C12.5 453.5 78.9 512 160 512s147.5-58.5 159.9-134.7c.8-4.8-3.3-9.3-8.3-9.3zM593.4 46.6c-56.5-56.5-144.2-61.4-206.9-16-4 2.9-4.3 8.9-.8 12.3L597 254.3c3.5 3.5 9.5 3.2 12.3-.8 45.5-62.7 40.6-150.4-15.9-206.9zM363 65.7c-3.5-3.5-9.5-3.2-12.3.8-45.4 62.7-40.5 150.4 15.9 206.9 56.5 56.5 144.2 61.4 206.9 15.9 4-2.9 4.3-8.9.8-12.3L363 65.7z"],"tachometer-alt":[576,512,[],"f3fd","M288 32C128.94 32 0 160.94 0 320c0 52.8 14.25 102.26 39.06 144.8 5.61 9.62 16.3 15.2 27.44 15.2h443c11.14 0 21.83-5.58 27.44-15.2C561.75 422.26 576 372.8 576 320c0-159.06-128.94-288-288-288zm0 64c14.71 0 26.58 10.13 30.32 23.65-1.11 2.26-2.64 4.23-3.45 6.67l-9.22 27.67c-5.13 3.49-10.97 6.01-17.64 6.01-17.67 0-32-14.33-32-32S270.33 96 288 96zM96 384c-17.67 0-32-14.33-32-32s14.33-32 32-32 32 14.33 32 32-14.33 32-32 32zm48-160c-17.67 0-32-14.33-32-32s14.33-32 32-32 32 14.33 32 32-14.33 32-32 32zm246.77-72.41l-61.33 184C343.13 347.33 352 364.54 352 384c0 11.72-3.38 22.55-8.88 32H232.88c-5.5-9.45-8.88-20.28-8.88-32 0-33.94 26.5-61.43 59.9-63.59l61.34-184.01c4.17-12.56 17.73-19.45 30.36-15.17 12.57 4.19 19.35 17.79 15.17 30.36zm14.66 57.2l15.52-46.55c3.47-1.29 7.13-2.23 11.05-2.23 17.67 0 32 14.33 32 32s-14.33 32-32 32c-11.38-.01-20.89-6.28-26.57-15.22zM480 384c-17.67 0-32-14.33-32-32s14.33-32 32-32 32 14.33 32 32-14.33 32-32 32z"],tag:[512,512,[],"f02b","M0 252.118V48C0 21.49 21.49 0 48 0h204.118a48 48 0 0 1 33.941 14.059l211.882 211.882c18.745 18.745 18.745 49.137 0 67.882L293.823 497.941c-18.745 18.745-49.137 18.745-67.882 0L14.059 286.059A48 48 0 0 1 0 252.118zM112 64c-26.51 0-48 21.49-48 48s21.49 48 48 48 48-21.49 48-48-21.49-48-48-48z"],tags:[640,512,[],"f02c","M497.941 225.941L286.059 14.059A48 48 0 0 0 252.118 0H48C21.49 0 0 21.49 0 48v204.118a48 48 0 0 0 14.059 33.941l211.882 211.882c18.744 18.745 49.136 18.746 67.882 0l204.118-204.118c18.745-18.745 18.745-49.137 0-67.882zM112 160c-26.51 0-48-21.49-48-48s21.49-48 48-48 48 21.49 48 48-21.49 48-48 48zm513.941 133.823L421.823 497.941c-18.745 18.745-49.137 18.745-67.882 0l-.36-.36L527.64 323.522c16.999-16.999 26.36-39.6 26.36-63.64s-9.362-46.641-26.36-63.64L331.397 0h48.721a48 48 0 0 1 33.941 14.059l211.882 211.882c18.745 18.745 18.745 49.137 0 67.882z"],tape:[640,512,[],"f4db","M224 192c-35.3 0-64 28.7-64 64s28.7 64 64 64 64-28.7 64-64-28.7-64-64-64zm400 224H380.6c41.5-40.7 67.4-97.3 67.4-160 0-123.7-100.3-224-224-224S0 132.3 0 256s100.3 224 224 224h400c8.8 0 16-7.2 16-16v-32c0-8.8-7.2-16-16-16zm-400-64c-53 0-96-43-96-96s43-96 96-96 96 43 96 96-43 96-96 96z"],tasks:[512,512,[],"f0ae","M139.61 35.5a12 12 0 0 0-17 0L58.93 98.81l-22.7-22.12a12 12 0 0 0-17 0L3.53 92.41a12 12 0 0 0 0 17l47.59 47.4a12.78 12.78 0 0 0 17.61 0l15.59-15.62L156.52 69a12.09 12.09 0 0 0 .09-17zm0 159.19a12 12 0 0 0-17 0l-63.68 63.72-22.7-22.1a12 12 0 0 0-17 0L3.53 252a12 12 0 0 0 0 17L51 316.5a12.77 12.77 0 0 0 17.6 0l15.7-15.69 72.2-72.22a12 12 0 0 0 .09-16.9zM64 368c-26.49 0-48.59 21.5-48.59 48S37.53 464 64 464a48 48 0 0 0 0-96zm432 16H208a16 16 0 0 0-16 16v32a16 16 0 0 0 16 16h288a16 16 0 0 0 16-16v-32a16 16 0 0 0-16-16zm0-320H208a16 16 0 0 0-16 16v32a16 16 0 0 0 16 16h288a16 16 0 0 0 16-16V80a16 16 0 0 0-16-16zm0 160H208a16 16 0 0 0-16 16v32a16 16 0 0 0 16 16h288a16 16 0 0 0 16-16v-32a16 16 0 0 0-16-16z"],taxi:[512,512,[],"f1ba","M462 241.64l-22-84.84c-9.6-35.2-41.6-60.8-76.8-60.8H352V64c0-17.67-14.33-32-32-32H192c-17.67 0-32 14.33-32 32v32h-11.2c-35.2 0-67.2 25.6-76.8 60.8l-22 84.84C21.41 248.04 0 273.47 0 304v48c0 23.63 12.95 44.04 32 55.12V448c0 17.67 14.33 32 32 32h32c17.67 0 32-14.33 32-32v-32h256v32c0 17.67 14.33 32 32 32h32c17.67 0 32-14.33 32-32v-40.88c19.05-11.09 32-31.5 32-55.12v-48c0-30.53-21.41-55.96-50-62.36zM96 352c-17.67 0-32-14.33-32-32s14.33-32 32-32 32 14.33 32 32-14.33 32-32 32zm20.55-112l17.2-66.36c2.23-8.16 9.59-13.64 15.06-13.64h214.4c5.47 0 12.83 5.48 14.85 12.86L395.45 240h-278.9zM416 352c-17.67 0-32-14.33-32-32s14.33-32 32-32 32 14.33 32 32-14.33 32-32 32z"],teeth:[640,512,[],"f62e","M544 0H96C42.98 0 0 42.98 0 96v320c0 53.02 42.98 96 96 96h448c53.02 0 96-42.98 96-96V96c0-53.02-42.98-96-96-96zM160 368c0 26.51-21.49 48-48 48s-48-21.49-48-48v-64c0-8.84 7.16-16 16-16h64c8.84 0 16 7.16 16 16v64zm0-128c0 8.84-7.16 16-16 16H80c-8.84 0-16-7.16-16-16v-64c0-26.51 21.49-48 48-48s48 21.49 48 48v64zm144 120c0 30.93-25.07 56-56 56s-56-25.07-56-56v-56c0-8.84 7.16-16 16-16h80c8.84 0 16 7.16 16 16v56zm0-120c0 8.84-7.16 16-16 16h-80c-8.84 0-16-7.16-16-16v-88c0-30.93 25.07-56 56-56s56 25.07 56 56v88zm144 120c0 30.93-25.07 56-56 56s-56-25.07-56-56v-56c0-8.84 7.16-16 16-16h80c8.84 0 16 7.16 16 16v56zm0-120c0 8.84-7.16 16-16 16h-80c-8.84 0-16-7.16-16-16v-88c0-30.93 25.07-56 56-56s56 25.07 56 56v88zm128 128c0 26.51-21.49 48-48 48s-48-21.49-48-48v-64c0-8.84 7.16-16 16-16h64c8.84 0 16 7.16 16 16v64zm0-128c0 8.84-7.16 16-16 16h-64c-8.84 0-16-7.16-16-16v-64c0-26.51 21.49-48 48-48s48 21.49 48 48v64z"],"teeth-open":[640,512,[],"f62f","M544 0H96C42.98 0 0 42.98 0 96v64c0 35.35 28.66 64 64 64h512c35.34 0 64-28.65 64-64V96c0-53.02-42.98-96-96-96zM160 176c0 8.84-7.16 16-16 16H80c-8.84 0-16-7.16-16-16v-32c0-26.51 21.49-48 48-48s48 21.49 48 48v32zm144 0c0 8.84-7.16 16-16 16h-80c-8.84 0-16-7.16-16-16v-56c0-30.93 25.07-56 56-56s56 25.07 56 56v56zm144 0c0 8.84-7.16 16-16 16h-80c-8.84 0-16-7.16-16-16v-56c0-30.93 25.07-56 56-56s56 25.07 56 56v56zm128 0c0 8.84-7.16 16-16 16h-64c-8.84 0-16-7.16-16-16v-32c0-26.51 21.49-48 48-48s48 21.49 48 48v32zm0 144H64c-35.34 0-64 28.65-64 64v32c0 53.02 42.98 96 96 96h448c53.02 0 96-42.98 96-96v-32c0-35.35-28.66-64-64-64zm-416 80c0 26.51-21.49 48-48 48s-48-21.49-48-48v-32c0-8.84 7.16-16 16-16h64c8.84 0 16 7.16 16 16v32zm144-8c0 30.93-25.07 56-56 56s-56-25.07-56-56v-24c0-8.84 7.16-16 16-16h80c8.84 0 16 7.16 16 16v24zm144 0c0 30.93-25.07 56-56 56s-56-25.07-56-56v-24c0-8.84 7.16-16 16-16h80c8.84 0 16 7.16 16 16v24zm128 8c0 26.51-21.49 48-48 48s-48-21.49-48-48v-32c0-8.84 7.16-16 16-16h64c8.84 0 16 7.16 16 16v32z"],"temperature-high":[512,512,[],"f769","M416 0c-52.9 0-96 43.1-96 96s43.1 96 96 96 96-43.1 96-96-43.1-96-96-96zm0 128c-17.7 0-32-14.3-32-32s14.3-32 32-32 32 14.3 32 32-14.3 32-32 32zm-160-16C256 50.1 205.9 0 144 0S32 50.1 32 112v166.5C12.3 303.2 0 334 0 368c0 79.5 64.5 144 144 144s144-64.5 144-144c0-34-12.3-64.9-32-89.5V112zM144 448c-44.1 0-80-35.9-80-80 0-25.5 12.2-48.9 32-63.8V112c0-26.5 21.5-48 48-48s48 21.5 48 48v192.2c19.8 14.8 32 38.3 32 63.8 0 44.1-35.9 80-80 80zm16-125.1V112c0-8.8-7.2-16-16-16s-16 7.2-16 16v210.9c-18.6 6.6-32 24.2-32 45.1 0 26.5 21.5 48 48 48s48-21.5 48-48c0-20.9-13.4-38.5-32-45.1z"],"temperature-low":[512,512,[],"f76b","M416 0c-52.9 0-96 43.1-96 96s43.1 96 96 96 96-43.1 96-96-43.1-96-96-96zm0 128c-17.7 0-32-14.3-32-32s14.3-32 32-32 32 14.3 32 32-14.3 32-32 32zm-160-16C256 50.1 205.9 0 144 0S32 50.1 32 112v166.5C12.3 303.2 0 334 0 368c0 79.5 64.5 144 144 144s144-64.5 144-144c0-34-12.3-64.9-32-89.5V112zM144 448c-44.1 0-80-35.9-80-80 0-25.5 12.2-48.9 32-63.8V112c0-26.5 21.5-48 48-48s48 21.5 48 48v192.2c19.8 14.8 32 38.3 32 63.8 0 44.1-35.9 80-80 80zm16-125.1V304c0-8.8-7.2-16-16-16s-16 7.2-16 16v18.9c-18.6 6.6-32 24.2-32 45.1 0 26.5 21.5 48 48 48s48-21.5 48-48c0-20.9-13.4-38.5-32-45.1z"],tenge:[384,512,[],"f7d7","M372 160H12c-6.6 0-12 5.4-12 12v56c0 6.6 5.4 12 12 12h140v228c0 6.6 5.4 12 12 12h56c6.6 0 12-5.4 12-12V240h140c6.6 0 12-5.4 12-12v-56c0-6.6-5.4-12-12-12zm0-128H12C5.4 32 0 37.4 0 44v56c0 6.6 5.4 12 12 12h360c6.6 0 12-5.4 12-12V44c0-6.6-5.4-12-12-12z"],terminal:[640,512,[],"f120","M257.981 272.971L63.638 467.314c-9.373 9.373-24.569 9.373-33.941 0L7.029 444.647c-9.357-9.357-9.375-24.522-.04-33.901L161.011 256 6.99 101.255c-9.335-9.379-9.317-24.544.04-33.901l22.667-22.667c9.373-9.373 24.569-9.373 33.941 0L257.981 239.03c9.373 9.372 9.373 24.568 0 33.941zM640 456v-32c0-13.255-10.745-24-24-24H312c-13.255 0-24 10.745-24 24v32c0 13.255 10.745 24 24 24h304c13.255 0 24-10.745 24-24z"],"text-height":[576,512,[],"f034","M304 32H16A16 16 0 0 0 0 48v96a16 16 0 0 0 16 16h32a16 16 0 0 0 16-16v-32h56v304H80a16 16 0 0 0-16 16v32a16 16 0 0 0 16 16h160a16 16 0 0 0 16-16v-32a16 16 0 0 0-16-16h-40V112h56v32a16 16 0 0 0 16 16h32a16 16 0 0 0 16-16V48a16 16 0 0 0-16-16zm256 336h-48V144h48c14.31 0 21.33-17.31 11.31-27.31l-80-80a16 16 0 0 0-22.62 0l-80 80C379.36 126 384.36 144 400 144h48v224h-48c-14.31 0-21.32 17.31-11.31 27.31l80 80a16 16 0 0 0 22.62 0l80-80C580.64 386 575.64 368 560 368z"],"text-width":[448,512,[],"f035","M432 32H16A16 16 0 0 0 0 48v80a16 16 0 0 0 16 16h32a16 16 0 0 0 16-16v-16h120v112h-24a16 16 0 0 0-16 16v32a16 16 0 0 0 16 16h128a16 16 0 0 0 16-16v-32a16 16 0 0 0-16-16h-24V112h120v16a16 16 0 0 0 16 16h32a16 16 0 0 0 16-16V48a16 16 0 0 0-16-16zm-68.69 260.69C354 283.36 336 288.36 336 304v48H112v-48c0-14.31-17.31-21.32-27.31-11.31l-80 80a16 16 0 0 0 0 22.62l80 80C94 484.64 112 479.64 112 464v-48h224v48c0 14.31 17.31 21.33 27.31 11.31l80-80a16 16 0 0 0 0-22.62z"],th:[512,512,[],"f00a","M149.333 56v80c0 13.255-10.745 24-24 24H24c-13.255 0-24-10.745-24-24V56c0-13.255 10.745-24 24-24h101.333c13.255 0 24 10.745 24 24zm181.334 240v-80c0-13.255-10.745-24-24-24H205.333c-13.255 0-24 10.745-24 24v80c0 13.255 10.745 24 24 24h101.333c13.256 0 24.001-10.745 24.001-24zm32-240v80c0 13.255 10.745 24 24 24H488c13.255 0 24-10.745 24-24V56c0-13.255-10.745-24-24-24H386.667c-13.255 0-24 10.745-24 24zm-32 80V56c0-13.255-10.745-24-24-24H205.333c-13.255 0-24 10.745-24 24v80c0 13.255 10.745 24 24 24h101.333c13.256 0 24.001-10.745 24.001-24zm-205.334 56H24c-13.255 0-24 10.745-24 24v80c0 13.255 10.745 24 24 24h101.333c13.255 0 24-10.745 24-24v-80c0-13.255-10.745-24-24-24zM0 376v80c0 13.255 10.745 24 24 24h101.333c13.255 0 24-10.745 24-24v-80c0-13.255-10.745-24-24-24H24c-13.255 0-24 10.745-24 24zm386.667-56H488c13.255 0 24-10.745 24-24v-80c0-13.255-10.745-24-24-24H386.667c-13.255 0-24 10.745-24 24v80c0 13.255 10.745 24 24 24zm0 160H488c13.255 0 24-10.745 24-24v-80c0-13.255-10.745-24-24-24H386.667c-13.255 0-24 10.745-24 24v80c0 13.255 10.745 24 24 24zM181.333 376v80c0 13.255 10.745 24 24 24h101.333c13.255 0 24-10.745 24-24v-80c0-13.255-10.745-24-24-24H205.333c-13.255 0-24 10.745-24 24z"],"th-large":[512,512,[],"f009","M296 32h192c13.255 0 24 10.745 24 24v160c0 13.255-10.745 24-24 24H296c-13.255 0-24-10.745-24-24V56c0-13.255 10.745-24 24-24zm-80 0H24C10.745 32 0 42.745 0 56v160c0 13.255 10.745 24 24 24h192c13.255 0 24-10.745 24-24V56c0-13.255-10.745-24-24-24zM0 296v160c0 13.255 10.745 24 24 24h192c13.255 0 24-10.745 24-24V296c0-13.255-10.745-24-24-24H24c-13.255 0-24 10.745-24 24zm296 184h192c13.255 0 24-10.745 24-24V296c0-13.255-10.745-24-24-24H296c-13.255 0-24 10.745-24 24v160c0 13.255 10.745 24 24 24z"],"th-list":[512,512,[],"f00b","M149.333 216v80c0 13.255-10.745 24-24 24H24c-13.255 0-24-10.745-24-24v-80c0-13.255 10.745-24 24-24h101.333c13.255 0 24 10.745 24 24zM0 376v80c0 13.255 10.745 24 24 24h101.333c13.255 0 24-10.745 24-24v-80c0-13.255-10.745-24-24-24H24c-13.255 0-24 10.745-24 24zM125.333 32H24C10.745 32 0 42.745 0 56v80c0 13.255 10.745 24 24 24h101.333c13.255 0 24-10.745 24-24V56c0-13.255-10.745-24-24-24zm80 448H488c13.255 0 24-10.745 24-24v-80c0-13.255-10.745-24-24-24H205.333c-13.255 0-24 10.745-24 24v80c0 13.255 10.745 24 24 24zm-24-424v80c0 13.255 10.745 24 24 24H488c13.255 0 24-10.745 24-24V56c0-13.255-10.745-24-24-24H205.333c-13.255 0-24 10.745-24 24zm24 264H488c13.255 0 24-10.745 24-24v-80c0-13.255-10.745-24-24-24H205.333c-13.255 0-24 10.745-24 24v80c0 13.255 10.745 24 24 24z"],"theater-masks":[640,512,[],"f630","M206.86 245.15c-35.88 10.45-59.95 41.2-57.53 74.1 11.4-12.72 28.81-23.7 49.9-30.92l7.63-43.18zM95.81 295L64.08 115.49c-.29-1.62.28-2.62.24-2.65 57.76-32.06 123.12-49.01 189.01-49.01 1.61 0 3.23.17 4.85.19 13.95-13.47 31.73-22.83 51.59-26 18.89-3.02 38.05-4.55 57.18-5.32-9.99-13.95-24.48-24.23-41.77-27C301.27 1.89 277.24 0 253.32 0 176.66 0 101.02 19.42 33.2 57.06 9.03 70.48-3.92 98.48 1.05 126.58l31.73 179.51c14.23 80.52 136.33 142.08 204.45 142.08 3.59 0 6.75-.46 10.01-.8-13.52-17.08-28.94-40.48-39.5-67.58-47.61-12.98-106.06-51.62-111.93-84.79zm97.55-137.46c-.73-4.12-2.23-7.87-4.07-11.4-8.25 8.91-20.67 15.75-35.32 18.32-14.65 2.58-28.67.4-39.48-5.17-.52 3.94-.64 7.98.09 12.1 3.84 21.7 24.58 36.19 46.34 32.37 21.75-3.82 36.28-24.52 32.44-46.22zM606.8 120.9c-88.98-49.38-191.43-67.41-291.98-51.35-27.31 4.36-49.08 26.26-54.04 54.36l-31.73 179.51c-15.39 87.05 95.28 196.27 158.31 207.35 63.03 11.09 204.47-53.79 219.86-140.84l31.73-179.51c4.97-28.11-7.98-56.11-32.15-69.52zm-273.24 96.8c3.84-21.7 24.58-36.19 46.34-32.36 21.76 3.83 36.28 24.52 32.45 46.22-.73 4.12-2.23 7.87-4.07 11.4-8.25-8.91-20.67-15.75-35.32-18.32-14.65-2.58-28.67-.4-39.48 5.17-.53-3.95-.65-7.99.08-12.11zm70.47 198.76c-55.68-9.79-93.52-59.27-89.04-112.9 20.6 25.54 56.21 46.17 99.49 53.78 43.28 7.61 83.82.37 111.93-16.6-14.18 51.94-66.71 85.51-122.38 75.72zm130.3-151.34c-8.25-8.91-20.68-15.75-35.33-18.32-14.65-2.58-28.67-.4-39.48 5.17-.52-3.94-.64-7.98.09-12.1 3.84-21.7 24.58-36.19 46.34-32.37 21.75 3.83 36.28 24.52 32.45 46.22-.73 4.13-2.23 7.88-4.07 11.4z"],thermometer:[512,512,[],"f491","M476.8 20.4c-37.5-30.7-95.5-26.3-131.9 10.2l-45.7 46 50.5 50.5c3.1 3.1 3.1 8.2 0 11.3l-11.3 11.3c-3.1 3.1-8.2 3.1-11.3 0l-50.4-50.5-45.1 45.4 50.3 50.4c3.1 3.1 3.1 8.2 0 11.3l-11.3 11.3c-3.1 3.1-8.2 3.1-11.3 0L209 167.4l-45.1 45.4L214 263c3.1 3.1 3.1 8.2 0 11.3l-11.3 11.3c-3.1 3.1-8.2 3.1-11.3 0l-50.1-50.2L96 281.1V382L7 471c-9.4 9.4-9.4 24.6 0 33.9 9.4 9.4 24.6 9.4 33.9 0l89-89h99.9L484 162.6c34.9-34.9 42.2-101.5-7.2-142.2z"],"thermometer-empty":[256,512,[],"f2cb","M192 384c0 35.346-28.654 64-64 64s-64-28.654-64-64c0-35.346 28.654-64 64-64s64 28.654 64 64zm32-84.653c19.912 22.563 32 52.194 32 84.653 0 70.696-57.303 128-128 128-.299 0-.609-.001-.909-.003C56.789 511.509-.357 453.636.002 383.333.166 351.135 12.225 321.755 32 299.347V96c0-53.019 42.981-96 96-96s96 42.981 96 96v203.347zM208 384c0-34.339-19.37-52.19-32-66.502V96c0-26.467-21.533-48-48-48S80 69.533 80 96v221.498c-12.732 14.428-31.825 32.1-31.999 66.08-.224 43.876 35.563 80.116 79.423 80.42L128 464c44.112 0 80-35.888 80-80z"],"thermometer-full":[256,512,[],"f2c7","M224 96c0-53.019-42.981-96-96-96S32 42.981 32 96v203.347C12.225 321.756.166 351.136.002 383.333c-.359 70.303 56.787 128.176 127.089 128.664.299.002.61.003.909.003 70.698 0 128-57.304 128-128 0-32.459-12.088-62.09-32-84.653V96zm-96 368l-.576-.002c-43.86-.304-79.647-36.544-79.423-80.42.173-33.98 19.266-51.652 31.999-66.08V96c0-26.467 21.533-48 48-48s48 21.533 48 48v221.498c12.63 14.312 32 32.164 32 66.502 0 44.112-35.888 80-80 80zm64-80c0 35.346-28.654 64-64 64s-64-28.654-64-64c0-23.685 12.876-44.349 32-55.417V96c0-17.673 14.327-32 32-32s32 14.327 32 32v232.583c19.124 11.068 32 31.732 32 55.417z"],"thermometer-half":[256,512,[],"f2c9","M192 384c0 35.346-28.654 64-64 64s-64-28.654-64-64c0-23.685 12.876-44.349 32-55.417V224c0-17.673 14.327-32 32-32s32 14.327 32 32v104.583c19.124 11.068 32 31.732 32 55.417zm32-84.653c19.912 22.563 32 52.194 32 84.653 0 70.696-57.303 128-128 128-.299 0-.609-.001-.909-.003C56.789 511.509-.357 453.636.002 383.333.166 351.135 12.225 321.755 32 299.347V96c0-53.019 42.981-96 96-96s96 42.981 96 96v203.347zM208 384c0-34.339-19.37-52.19-32-66.502V96c0-26.467-21.533-48-48-48S80 69.533 80 96v221.498c-12.732 14.428-31.825 32.1-31.999 66.08-.224 43.876 35.563 80.116 79.423 80.42L128 464c44.112 0 80-35.888 80-80z"],"thermometer-quarter":[256,512,[],"f2ca","M192 384c0 35.346-28.654 64-64 64s-64-28.654-64-64c0-23.685 12.876-44.349 32-55.417V288c0-17.673 14.327-32 32-32s32 14.327 32 32v40.583c19.124 11.068 32 31.732 32 55.417zm32-84.653c19.912 22.563 32 52.194 32 84.653 0 70.696-57.303 128-128 128-.299 0-.609-.001-.909-.003C56.789 511.509-.357 453.636.002 383.333.166 351.135 12.225 321.755 32 299.347V96c0-53.019 42.981-96 96-96s96 42.981 96 96v203.347zM208 384c0-34.339-19.37-52.19-32-66.502V96c0-26.467-21.533-48-48-48S80 69.533 80 96v221.498c-12.732 14.428-31.825 32.1-31.999 66.08-.224 43.876 35.563 80.116 79.423 80.42L128 464c44.112 0 80-35.888 80-80z"],"thermometer-three-quarters":[256,512,[],"f2c8","M192 384c0 35.346-28.654 64-64 64-35.346 0-64-28.654-64-64 0-23.685 12.876-44.349 32-55.417V160c0-17.673 14.327-32 32-32s32 14.327 32 32v168.583c19.124 11.068 32 31.732 32 55.417zm32-84.653c19.912 22.563 32 52.194 32 84.653 0 70.696-57.303 128-128 128-.299 0-.609-.001-.909-.003C56.789 511.509-.357 453.636.002 383.333.166 351.135 12.225 321.755 32 299.347V96c0-53.019 42.981-96 96-96s96 42.981 96 96v203.347zM208 384c0-34.339-19.37-52.19-32-66.502V96c0-26.467-21.533-48-48-48S80 69.533 80 96v221.498c-12.732 14.428-31.825 32.1-31.999 66.08-.224 43.876 35.563 80.116 79.423 80.42L128 464c44.112 0 80-35.888 80-80z"],"thumbs-down":[512,512,[],"f165","M0 56v240c0 13.255 10.745 24 24 24h80c13.255 0 24-10.745 24-24V56c0-13.255-10.745-24-24-24H24C10.745 32 0 42.745 0 56zm40 200c0-13.255 10.745-24 24-24s24 10.745 24 24-10.745 24-24 24-24-10.745-24-24zm272 256c-20.183 0-29.485-39.293-33.931-57.795-5.206-21.666-10.589-44.07-25.393-58.902-32.469-32.524-49.503-73.967-89.117-113.111a11.98 11.98 0 0 1-3.558-8.521V59.901c0-6.541 5.243-11.878 11.783-11.998 15.831-.29 36.694-9.079 52.651-16.178C256.189 17.598 295.709.017 343.995 0h2.844c42.777 0 93.363.413 113.774 29.737 8.392 12.057 10.446 27.034 6.148 44.632 16.312 17.053 25.063 48.863 16.382 74.757 17.544 23.432 19.143 56.132 9.308 79.469l.11.11c11.893 11.949 19.523 31.259 19.439 49.197-.156 30.352-26.157 58.098-59.553 58.098H350.723C358.03 364.34 384 388.132 384 430.548 384 504 336 512 312 512z"],"thumbs-up":[512,512,[],"f164","M104 224H24c-13.255 0-24 10.745-24 24v240c0 13.255 10.745 24 24 24h80c13.255 0 24-10.745 24-24V248c0-13.255-10.745-24-24-24zM64 472c-13.255 0-24-10.745-24-24s10.745-24 24-24 24 10.745 24 24-10.745 24-24 24zM384 81.452c0 42.416-25.97 66.208-33.277 94.548h101.723c33.397 0 59.397 27.746 59.553 58.098.084 17.938-7.546 37.249-19.439 49.197l-.11.11c9.836 23.337 8.237 56.037-9.308 79.469 8.681 25.895-.069 57.704-16.382 74.757 4.298 17.598 2.244 32.575-6.148 44.632C440.202 511.587 389.616 512 346.839 512l-2.845-.001c-48.287-.017-87.806-17.598-119.56-31.725-15.957-7.099-36.821-15.887-52.651-16.178-6.54-.12-11.783-5.457-11.783-11.998v-213.77c0-3.2 1.282-6.271 3.558-8.521 39.614-39.144 56.648-80.587 89.117-113.111 14.804-14.832 20.188-37.236 25.393-58.902C282.515 39.293 291.817 0 312 0c24 0 72 8 72 81.452z"],thumbtack:[384,512,[],"f08d","M298.028 214.267L285.793 96H328c13.255 0 24-10.745 24-24V24c0-13.255-10.745-24-24-24H56C42.745 0 32 10.745 32 24v48c0 13.255 10.745 24 24 24h42.207L85.972 214.267C37.465 236.82 0 277.261 0 328c0 13.255 10.745 24 24 24h136v104.007c0 1.242.289 2.467.845 3.578l24 48c2.941 5.882 11.364 5.893 14.311 0l24-48a8.008 8.008 0 0 0 .845-3.578V352h136c13.255 0 24-10.745 24-24-.001-51.183-37.983-91.42-85.973-113.733z"],"ticket-alt":[576,512,[],"f3ff","M128 160h320v192H128V160zm400 96c0 26.51 21.49 48 48 48v96c0 26.51-21.49 48-48 48H48c-26.51 0-48-21.49-48-48v-96c26.51 0 48-21.49 48-48s-21.49-48-48-48v-96c0-26.51 21.49-48 48-48h480c26.51 0 48 21.49 48 48v96c-26.51 0-48 21.49-48 48zm-48-104c0-13.255-10.745-24-24-24H120c-13.255 0-24 10.745-24 24v208c0 13.255 10.745 24 24 24h336c13.255 0 24-10.745 24-24V152z"],times:[352,512,[],"f00d","M242.72 256l100.07-100.07c12.28-12.28 12.28-32.19 0-44.48l-22.24-22.24c-12.28-12.28-32.19-12.28-44.48 0L176 189.28 75.93 89.21c-12.28-12.28-32.19-12.28-44.48 0L9.21 111.45c-12.28 12.28-12.28 32.19 0 44.48L109.28 256 9.21 356.07c-12.28 12.28-12.28 32.19 0 44.48l22.24 22.24c12.28 12.28 32.2 12.28 44.48 0L176 322.72l100.07 100.07c12.28 12.28 32.2 12.28 44.48 0l22.24-22.24c12.28-12.28 12.28-32.19 0-44.48L242.72 256z"],"times-circle":[512,512,[],"f057","M256 8C119 8 8 119 8 256s111 248 248 248 248-111 248-248S393 8 256 8zm121.6 313.1c4.7 4.7 4.7 12.3 0 17L338 377.6c-4.7 4.7-12.3 4.7-17 0L256 312l-65.1 65.6c-4.7 4.7-12.3 4.7-17 0L134.4 338c-4.7-4.7-4.7-12.3 0-17l65.6-65-65.6-65.1c-4.7-4.7-4.7-12.3 0-17l39.6-39.6c4.7-4.7 12.3-4.7 17 0l65 65.7 65.1-65.6c4.7-4.7 12.3-4.7 17 0l39.6 39.6c4.7 4.7 4.7 12.3 0 17L312 256l65.6 65.1z"],tint:[352,512,[],"f043","M205.22 22.09c-7.94-28.78-49.44-30.12-58.44 0C100.01 179.85 0 222.72 0 333.91 0 432.35 78.72 512 176 512s176-79.65 176-178.09c0-111.75-99.79-153.34-146.78-311.82zM176 448c-61.75 0-112-50.25-112-112 0-8.84 7.16-16 16-16s16 7.16 16 16c0 44.11 35.89 80 80 80 8.84 0 16 7.16 16 16s-7.16 16-16 16z"],"tint-slash":[640,512,[],"f5c7","M633.82 458.1L494.97 350.78c.52-5.57 1.03-11.16 1.03-16.87 0-111.76-99.79-153.34-146.78-311.82-7.94-28.78-49.44-30.12-58.44 0-15.52 52.34-36.87 91.96-58.49 125.68L45.47 3.37C38.49-2.05 28.43-.8 23.01 6.18L3.37 31.45C-2.05 38.42-.8 48.47 6.18 53.9l588.36 454.73c6.98 5.43 17.03 4.17 22.46-2.81l19.64-25.27c5.41-6.97 4.16-17.02-2.82-22.45zM144 333.91C144 432.35 222.72 512 320 512c44.71 0 85.37-16.96 116.4-44.7L162.72 255.78c-11.41 23.5-18.72 48.35-18.72 78.13z"],tired:[496,512,[],"f5c8","M248 8C111 8 0 119 0 256s111 248 248 248 248-111 248-248S385 8 248 8zm33.8 189.7l80-48c11.6-6.9 24 7.7 15.4 18L343.6 208l33.6 40.3c8.7 10.4-3.9 24.8-15.4 18l-80-48c-7.7-4.7-7.7-15.9 0-20.6zm-163-30c-8.6-10.3 3.8-24.9 15.4-18l80 48c7.8 4.7 7.8 15.9 0 20.6l-80 48c-11.5 6.8-24-7.6-15.4-18l33.6-40.3-33.6-40.3zM248 288c51.9 0 115.3 43.8 123.2 106.7 1.7 13.6-8 24.6-17.7 20.4-25.9-11.1-64.4-17.4-105.5-17.4s-79.6 6.3-105.5 17.4c-9.8 4.2-19.4-7-17.7-20.4C132.7 331.8 196.1 288 248 288z"],"toggle-off":[576,512,[],"f204","M384 64H192C85.961 64 0 149.961 0 256s85.961 192 192 192h192c106.039 0 192-85.961 192-192S490.039 64 384 64zM64 256c0-70.741 57.249-128 128-128 70.741 0 128 57.249 128 128 0 70.741-57.249 128-128 128-70.741 0-128-57.249-128-128zm320 128h-48.905c65.217-72.858 65.236-183.12 0-256H384c70.741 0 128 57.249 128 128 0 70.74-57.249 128-128 128z"],"toggle-on":[576,512,[],"f205","M384 64H192C86 64 0 150 0 256s86 192 192 192h192c106 0 192-86 192-192S490 64 384 64zm0 320c-70.8 0-128-57.3-128-128 0-70.8 57.3-128 128-128 70.8 0 128 57.3 128 128 0 70.8-57.3 128-128 128z"],toilet:[384,512,[],"f7d8","M368 48c8.8 0 16-7.2 16-16V16c0-8.8-7.2-16-16-16H16C7.2 0 0 7.2 0 16v16c0 8.8 7.2 16 16 16h16v156.7C11.8 214.8 0 226.9 0 240c0 67.2 34.6 126.2 86.8 160.5l-21.4 70.2C59.1 491.2 74.5 512 96 512h192c21.5 0 36.9-20.8 30.6-41.3l-21.4-70.2C349.4 366.2 384 307.2 384 240c0-13.1-11.8-25.2-32-35.3V48h16zM80 72c0-4.4 3.6-8 8-8h48c4.4 0 8 3.6 8 8v16c0 4.4-3.6 8-8 8H88c-4.4 0-8-3.6-8-8V72zm112 200c-77.1 0-139.6-14.3-139.6-32s62.5-32 139.6-32 139.6 14.3 139.6 32-62.5 32-139.6 32z"],"toilet-paper":[576,512,[],"f71e","M128 0C74.98 0 32 85.96 32 192v172.07c0 41.12-9.8 62.77-31.17 126.87C-2.62 501.3 5.09 512 16.01 512h280.92c13.77 0 26-8.81 30.36-21.88 12.83-38.48 24.71-72.4 24.71-126.05V192c0-83.6 23.67-153.52 60.44-192H128zM96 224c-8.84 0-16-7.16-16-16s7.16-16 16-16 16 7.16 16 16-7.16 16-16 16zm64 0c-8.84 0-16-7.16-16-16s7.16-16 16-16 16 7.16 16 16-7.16 16-16 16zm64 0c-8.84 0-16-7.16-16-16s7.16-16 16-16 16 7.16 16 16-7.16 16-16 16zm64 0c-8.84 0-16-7.16-16-16s7.16-16 16-16 16 7.16 16 16-7.16 16-16 16zM480 0c-53.02 0-96 85.96-96 192s42.98 192 96 192 96-85.96 96-192S533.02 0 480 0zm0 256c-17.67 0-32-28.65-32-64s14.33-64 32-64 32 28.65 32 64-14.33 64-32 64z"],toolbox:[512,512,[],"f552","M502.63 214.63l-45.25-45.25c-6-6-14.14-9.37-22.63-9.37H384V80c0-26.51-21.49-48-48-48H176c-26.51 0-48 21.49-48 48v80H77.25c-8.49 0-16.62 3.37-22.63 9.37L9.37 214.63c-6 6-9.37 14.14-9.37 22.63V320h128v-16c0-8.84 7.16-16 16-16h32c8.84 0 16 7.16 16 16v16h128v-16c0-8.84 7.16-16 16-16h32c8.84 0 16 7.16 16 16v16h128v-82.75c0-8.48-3.37-16.62-9.37-22.62zM320 160H192V96h128v64zm64 208c0 8.84-7.16 16-16 16h-32c-8.84 0-16-7.16-16-16v-16H192v16c0 8.84-7.16 16-16 16h-32c-8.84 0-16-7.16-16-16v-16H0v96c0 17.67 14.33 32 32 32h448c17.67 0 32-14.33 32-32v-96H384v16z"],tools:[512,512,[],"f7d9","M501.1 395.7L384 278.6c-23.1-23.1-57.6-27.6-85.4-13.9L192 158.1V96L64 0 0 64l96 128h62.1l106.6 106.6c-13.6 27.8-9.2 62.3 13.9 85.4l117.1 117.1c14.6 14.6 38.2 14.6 52.7 0l52.7-52.7c14.5-14.6 14.5-38.2 0-52.7zM331.7 225c28.3 0 54.9 11 74.9 31l19.4 19.4c15.8-6.9 30.8-16.5 43.8-29.5 37.1-37.1 49.7-89.3 37.9-136.7-2.2-9-13.5-12.1-20.1-5.5l-74.4 74.4-67.9-11.3L334 98.9l74.4-74.4c6.6-6.6 3.4-17.9-5.7-20.2-47.4-11.7-99.6.9-136.6 37.9-28.5 28.5-41.9 66.1-41.2 103.6l82.1 82.1c8.1-1.9 16.5-2.9 24.7-2.9zm-103.9 82l-56.7-56.7L18.7 402.8c-25 25-25 65.5 0 90.5s65.5 25 90.5 0l123.6-123.6c-7.6-19.9-9.9-41.6-5-62.7zM64 472c-13.2 0-24-10.8-24-24 0-13.3 10.7-24 24-24s24 10.7 24 24c0 13.2-10.7 24-24 24z"],tooth:[448,512,[],"f5c9","M443.98 96.25c-11.01-45.22-47.11-82.06-92.01-93.72-32.19-8.36-63 5.1-89.14 24.33-3.25 2.39-6.96 3.73-10.5 5.48l28.32 18.21c7.42 4.77 9.58 14.67 4.8 22.11-4.46 6.95-14.27 9.86-22.11 4.8L162.83 12.84c-20.7-10.85-43.38-16.4-66.81-10.31-44.9 11.67-81 48.5-92.01 93.72-10.13 41.62-.42 80.81 21.5 110.43 23.36 31.57 32.68 68.66 36.29 107.35 4.4 47.16 10.33 94.16 20.94 140.32l7.8 33.95c3.19 13.87 15.49 23.7 29.67 23.7 13.97 0 26.15-9.55 29.54-23.16l34.47-138.42c4.56-18.32 20.96-31.16 39.76-31.16s35.2 12.85 39.76 31.16l34.47 138.42c3.39 13.61 15.57 23.16 29.54 23.16 14.18 0 26.48-9.83 29.67-23.7l7.8-33.95c10.61-46.15 16.53-93.16 20.94-140.32 3.61-38.7 12.93-75.78 36.29-107.35 21.95-29.61 31.66-68.8 21.53-110.43z"],torah:[640,512,[],"f6a0","M320.05 366.48l17.72-29.64h-35.46zm99.21-166H382.4l18.46 30.82zM48 0C21.49 0 0 14.33 0 32v448c0 17.67 21.49 32 48 32s48-14.33 48-32V32C96 14.33 74.51 0 48 0zm172.74 311.5h36.85l-18.46-30.82zm161.71 0h36.86l-18.45-30.8zM128 464h384V48H128zm66.77-278.13a21.22 21.22 0 0 1 18.48-10.71h59.45l29.13-48.71a21.13 21.13 0 0 1 18.22-10.37A20.76 20.76 0 0 1 338 126.29l29.25 48.86h59.52a21.12 21.12 0 0 1 18.1 32L415.63 256 445 305a20.69 20.69 0 0 1 .24 21.12 21.25 21.25 0 0 1-18.48 10.72h-59.47l-29.13 48.7a21.13 21.13 0 0 1-18.16 10.4 20.79 20.79 0 0 1-18-10.22l-29.25-48.88h-59.5a21.11 21.11 0 0 1-18.1-32L224.36 256 195 207a20.7 20.7 0 0 1-.23-21.13zM592 0c-26.51 0-48 14.33-48 32v448c0 17.67 21.49 32 48 32s48-14.33 48-32V32c0-17.67-21.49-32-48-32zM320 145.53l-17.78 29.62h35.46zm-62.45 55h-36.81l18.44 30.8zm29.58 111h65.79L386.09 256l-33.23-55.52h-65.79L253.9 256z"],"torii-gate":[512,512,[],"f6a1","M376.45 32h-240.9A303.17 303.17 0 0 1 0 0v96c0 17.67 14.33 32 32 32h32v64H16c-8.84 0-16 7.16-16 16v32c0 8.84 7.16 16 16 16h48v240c0 8.84 7.16 16 16 16h32c8.84 0 16-7.16 16-16V256h256v240c0 8.84 7.16 16 16 16h32c8.84 0 16-7.16 16-16V256h48c8.84 0 16-7.16 16-16v-32c0-8.84-7.16-16-16-16h-48v-64h32c17.67 0 32-14.33 32-32V0a303.17 303.17 0 0 1-135.55 32zM128 128h96v64h-96v-64zm256 64h-96v-64h96v64z"],tractor:[640,512,[],"f722","M528 336c-48.6 0-88 39.4-88 88s39.4 88 88 88 88-39.4 88-88-39.4-88-88-88zm0 112c-13.23 0-24-10.77-24-24s10.77-24 24-24 24 10.77 24 24-10.77 24-24 24zm80-288h-64v-40.2c0-14.12 4.7-27.76 13.15-38.84 4.42-5.8 3.55-14.06-1.32-19.49L534.2 37.3c-6.66-7.45-18.32-6.92-24.7.78C490.58 60.9 480 89.81 480 119.8V160H377.67L321.58 29.14A47.914 47.914 0 0 0 277.45 0H144c-26.47 0-48 21.53-48 48v146.52c-8.63-6.73-20.96-6.46-28.89 1.47L36 227.1c-8.59 8.59-8.59 22.52 0 31.11l5.06 5.06c-4.99 9.26-8.96 18.82-11.91 28.72H22c-12.15 0-22 9.85-22 22v44c0 12.15 9.85 22 22 22h7.14c2.96 9.91 6.92 19.46 11.91 28.73l-5.06 5.06c-8.59 8.59-8.59 22.52 0 31.11L67.1 476c8.59 8.59 22.52 8.59 31.11 0l5.06-5.06c9.26 4.99 18.82 8.96 28.72 11.91V490c0 12.15 9.85 22 22 22h44c12.15 0 22-9.85 22-22v-7.14c9.9-2.95 19.46-6.92 28.72-11.91l5.06 5.06c8.59 8.59 22.52 8.59 31.11 0l31.11-31.11c8.59-8.59 8.59-22.52 0-31.11l-5.06-5.06c4.99-9.26 8.96-18.82 11.91-28.72H330c12.15 0 22-9.85 22-22v-6h80.54c21.91-28.99 56.32-48 95.46-48 18.64 0 36.07 4.61 51.8 12.2l50.82-50.82c6-6 9.37-14.14 9.37-22.63V192c.01-17.67-14.32-32-31.99-32zM176 416c-44.18 0-80-35.82-80-80s35.82-80 80-80 80 35.82 80 80-35.82 80-80 80zm22-256h-38V64h106.89l41.15 96H198z"],trademark:[640,512,[],"f25c","M260.6 96H12c-6.6 0-12 5.4-12 12v43.1c0 6.6 5.4 12 12 12h85.1V404c0 6.6 5.4 12 12 12h54.3c6.6 0 12-5.4 12-12V163.1h85.1c6.6 0 12-5.4 12-12V108c.1-6.6-5.3-12-11.9-12zM640 403l-24-296c-.5-6.2-5.7-11-12-11h-65.4c-5.1 0-9.7 3.3-11.3 8.1l-43.8 127.1c-7.2 20.6-16.1 52.8-16.1 52.8h-.9s-8.9-32.2-16.1-52.8l-43.8-127.1c-1.7-4.8-6.2-8.1-11.3-8.1h-65.4c-6.2 0-11.4 4.8-12 11l-24.4 296c-.6 7 4.9 13 12 13H360c6.3 0 11.5-4.9 12-11.2l9.1-132.9c1.8-24.2 0-53.7 0-53.7h.9s10.7 33.6 17.9 53.7l30.7 84.7c1.7 4.7 6.2 7.9 11.3 7.9h50.3c5.1 0 9.6-3.2 11.3-7.9l30.7-84.7c7.2-20.1 17.9-53.7 17.9-53.7h.9s-1.8 29.5 0 53.7l9.1 132.9c.4 6.3 5.7 11.2 12 11.2H628c7 0 12.5-6 12-13z"],"traffic-light":[384,512,[],"f637","M384 192h-64v-37.88c37.2-13.22 64-48.38 64-90.12h-64V32c0-17.67-14.33-32-32-32H96C78.33 0 64 14.33 64 32v32H0c0 41.74 26.8 76.9 64 90.12V192H0c0 41.74 26.8 76.9 64 90.12V320H0c0 42.84 28.25 78.69 66.99 91.05C79.42 468.72 130.6 512 192 512s112.58-43.28 125.01-100.95C355.75 398.69 384 362.84 384 320h-64v-37.88c37.2-13.22 64-48.38 64-90.12zM192 416c-26.51 0-48-21.49-48-48s21.49-48 48-48 48 21.49 48 48-21.49 48-48 48zm0-128c-26.51 0-48-21.49-48-48s21.49-48 48-48 48 21.49 48 48-21.49 48-48 48zm0-128c-26.51 0-48-21.49-48-48s21.49-48 48-48 48 21.49 48 48-21.49 48-48 48z"],trailer:[640,512,[],"f941","M624,320H544V80a16,16,0,0,0-16-16H16A16,16,0,0,0,0,80V368a16,16,0,0,0,16,16H65.61c7.83-54.21,54-96,110.39-96s102.56,41.79,110.39,96H624a16,16,0,0,0,16-16V336A16,16,0,0,0,624,320ZM96,243.68a176.29,176.29,0,0,0-32,20.71V136a8,8,0,0,1,8-8H88a8,8,0,0,1,8,8Zm96-18.54c-5.31-.49-10.57-1.14-16-1.14s-10.69.65-16,1.14V136a8,8,0,0,1,8-8h16a8,8,0,0,1,8,8Zm96,39.25a176.29,176.29,0,0,0-32-20.71V136a8,8,0,0,1,8-8h16a8,8,0,0,1,8,8ZM384,320H352V136a8,8,0,0,1,8-8h16a8,8,0,0,1,8,8Zm96,0H448V136a8,8,0,0,1,8-8h16a8,8,0,0,1,8,8Zm-304,0a80,80,0,1,0,80,80A80,80,0,0,0,176,320Zm0,112a32,32,0,1,1,32-32A32,32,0,0,1,176,432Z"],train:[448,512,[],"f238","M448 96v256c0 51.815-61.624 96-130.022 96l62.98 49.721C386.905 502.417 383.562 512 376 512H72c-7.578 0-10.892-9.594-4.957-14.279L130.022 448C61.82 448 0 403.954 0 352V96C0 42.981 64 0 128 0h192c65 0 128 42.981 128 96zm-48 136V120c0-13.255-10.745-24-24-24H72c-13.255 0-24 10.745-24 24v112c0 13.255 10.745 24 24 24h304c13.255 0 24-10.745 24-24zm-176 64c-30.928 0-56 25.072-56 56s25.072 56 56 56 56-25.072 56-56-25.072-56-56-56z"],tram:[512,512,[],"f7da","M288 64c17.7 0 32-14.3 32-32S305.7 0 288 0s-32 14.3-32 32 14.3 32 32 32zm223.5-12.1c-2.3-8.6-11-13.6-19.6-11.3l-480 128c-8.5 2.3-13.6 11-11.3 19.6C2.5 195.3 8.9 200 16 200c1.4 0 2.8-.2 4.1-.5L240 140.8V224H64c-17.7 0-32 14.3-32 32v224c0 17.7 14.3 32 32 32h384c17.7 0 32-14.3 32-32V256c0-17.7-14.3-32-32-32H272v-91.7l228.1-60.8c8.6-2.3 13.6-11.1 11.4-19.6zM176 384H80v-96h96v96zm160-96h96v96h-96v-96zm-32 0v96h-96v-96h96zM192 96c17.7 0 32-14.3 32-32s-14.3-32-32-32-32 14.3-32 32 14.3 32 32 32z"],transgender:[384,512,[],"f224","M372 0h-79c-10.7 0-16 12.9-8.5 20.5l16.9 16.9-80.7 80.7C198.5 104.1 172.2 96 144 96 64.5 96 0 160.5 0 240c0 68.5 47.9 125.9 112 140.4V408H76c-6.6 0-12 5.4-12 12v40c0 6.6 5.4 12 12 12h36v28c0 6.6 5.4 12 12 12h40c6.6 0 12-5.4 12-12v-28h36c6.6 0 12-5.4 12-12v-40c0-6.6-5.4-12-12-12h-36v-27.6c64.1-14.6 112-71.9 112-140.4 0-28.2-8.1-54.5-22.1-76.7l80.7-80.7 16.9 16.9c7.6 7.6 20.5 2.2 20.5-8.5V12c0-6.6-5.4-12-12-12zM144 320c-44.1 0-80-35.9-80-80s35.9-80 80-80 80 35.9 80 80-35.9 80-80 80z"],"transgender-alt":[480,512,[],"f225","M468 0h-79c-10.7 0-16 12.9-8.5 20.5l16.9 16.9-80.7 80.7C294.5 104.1 268.2 96 240 96c-28.2 0-54.5 8.1-76.7 22.1l-16.5-16.5 19.8-19.8c4.7-4.7 4.7-12.3 0-17l-28.3-28.3c-4.7-4.7-12.3-4.7-17 0l-19.8 19.8-19-19 16.9-16.9C107.1 12.9 101.7 0 91 0H12C5.4 0 0 5.4 0 12v79c0 10.7 12.9 16 20.5 8.5l16.9-16.9 19 19-19.8 19.8c-4.7 4.7-4.7 12.3 0 17l28.3 28.3c4.7 4.7 12.3 4.7 17 0l19.8-19.8 16.5 16.5C104.1 185.5 96 211.8 96 240c0 68.5 47.9 125.9 112 140.4V408h-36c-6.6 0-12 5.4-12 12v40c0 6.6 5.4 12 12 12h36v28c0 6.6 5.4 12 12 12h40c6.6 0 12-5.4 12-12v-28h36c6.6 0 12-5.4 12-12v-40c0-6.6-5.4-12-12-12h-36v-27.6c64.1-14.6 112-71.9 112-140.4 0-28.2-8.1-54.5-22.1-76.7l80.7-80.7 16.9 16.9c7.6 7.6 20.5 2.2 20.5-8.5V12c0-6.6-5.4-12-12-12zM240 320c-44.1 0-80-35.9-80-80s35.9-80 80-80 80 35.9 80 80-35.9 80-80 80z"],trash:[448,512,[],"f1f8","M432 32H312l-9.4-18.7A24 24 0 0 0 281.1 0H166.8a23.72 23.72 0 0 0-21.4 13.3L136 32H16A16 16 0 0 0 0 48v32a16 16 0 0 0 16 16h416a16 16 0 0 0 16-16V48a16 16 0 0 0-16-16zM53.2 467a48 48 0 0 0 47.9 45h245.8a48 48 0 0 0 47.9-45L416 128H32z"],"trash-alt":[448,512,[],"f2ed","M32 464a48 48 0 0 0 48 48h288a48 48 0 0 0 48-48V128H32zm272-256a16 16 0 0 1 32 0v224a16 16 0 0 1-32 0zm-96 0a16 16 0 0 1 32 0v224a16 16 0 0 1-32 0zm-96 0a16 16 0 0 1 32 0v224a16 16 0 0 1-32 0zM432 32H312l-9.4-18.7A24 24 0 0 0 281.1 0H166.8a23.72 23.72 0 0 0-21.4 13.3L136 32H16A16 16 0 0 0 0 48v32a16 16 0 0 0 16 16h416a16 16 0 0 0 16-16V48a16 16 0 0 0-16-16z"],"trash-restore":[448,512,[],"f829","M53.2 467a48 48 0 0 0 47.9 45h245.8a48 48 0 0 0 47.9-45L416 128H32zm70.11-175.8l89.38-94.26a15.41 15.41 0 0 1 22.62 0l89.38 94.26c10.08 10.62 2.94 28.8-11.32 28.8H256v112a16 16 0 0 1-16 16h-32a16 16 0 0 1-16-16V320h-57.37c-14.26 0-21.4-18.18-11.32-28.8zM432 32H312l-9.4-18.7A24 24 0 0 0 281.1 0H166.8a23.72 23.72 0 0 0-21.4 13.3L136 32H16A16 16 0 0 0 0 48v32a16 16 0 0 0 16 16h416a16 16 0 0 0 16-16V48a16 16 0 0 0-16-16z"],"trash-restore-alt":[448,512,[],"f82a","M32 464a48 48 0 0 0 48 48h288a48 48 0 0 0 48-48V128H32zm91.31-172.8l89.38-94.26a15.41 15.41 0 0 1 22.62 0l89.38 94.26c10.08 10.62 2.94 28.8-11.32 28.8H256v112a16 16 0 0 1-16 16h-32a16 16 0 0 1-16-16V320h-57.37c-14.26 0-21.4-18.18-11.32-28.8zM432 32H312l-9.4-18.7A24 24 0 0 0 281.1 0H166.8a23.72 23.72 0 0 0-21.4 13.3L136 32H16A16 16 0 0 0 0 48v32a16 16 0 0 0 16 16h416a16 16 0 0 0 16-16V48a16 16 0 0 0-16-16z"],tree:[384,512,[],"f1bb","M378.31 378.49L298.42 288h30.63c9.01 0 16.98-5 20.78-13.06 3.8-8.04 2.55-17.26-3.28-24.05L268.42 160h28.89c9.1 0 17.3-5.35 20.86-13.61 3.52-8.13 1.86-17.59-4.24-24.08L203.66 4.83c-6.03-6.45-17.28-6.45-23.32 0L70.06 122.31c-6.1 6.49-7.75 15.95-4.24 24.08C69.38 154.65 77.59 160 86.69 160h28.89l-78.14 90.91c-5.81 6.78-7.06 15.99-3.27 24.04C37.97 283 45.93 288 54.95 288h30.63L5.69 378.49c-6 6.79-7.36 16.09-3.56 24.26 3.75 8.05 12 13.25 21.01 13.25H160v24.45l-30.29 48.4c-5.32 10.64 2.42 23.16 14.31 23.16h95.96c11.89 0 19.63-12.52 14.31-23.16L224 440.45V416h136.86c9.01 0 17.26-5.2 21.01-13.25 3.8-8.17 2.44-17.47-3.56-24.26z"],trophy:[576,512,[],"f091","M552 64H448V24c0-13.3-10.7-24-24-24H152c-13.3 0-24 10.7-24 24v40H24C10.7 64 0 74.7 0 88v56c0 35.7 22.5 72.4 61.9 100.7 31.5 22.7 69.8 37.1 110 41.7C203.3 338.5 240 360 240 360v72h-48c-35.3 0-64 20.7-64 56v12c0 6.6 5.4 12 12 12h296c6.6 0 12-5.4 12-12v-12c0-35.3-28.7-56-64-56h-48v-72s36.7-21.5 68.1-73.6c40.3-4.6 78.6-19 110-41.7 39.3-28.3 61.9-65 61.9-100.7V88c0-13.3-10.7-24-24-24zM99.3 192.8C74.9 175.2 64 155.6 64 144v-16h64.2c1 32.6 5.8 61.2 12.8 86.2-15.1-5.2-29.2-12.4-41.7-21.4zM512 144c0 16.1-17.7 36.1-35.3 48.8-12.5 9-26.7 16.2-41.8 21.4 7-25 11.8-53.6 12.8-86.2H512v16z"],truck:[640,512,[],"f0d1","M624 352h-16V243.9c0-12.7-5.1-24.9-14.1-33.9L494 110.1c-9-9-21.2-14.1-33.9-14.1H416V48c0-26.5-21.5-48-48-48H48C21.5 0 0 21.5 0 48v320c0 26.5 21.5 48 48 48h16c0 53 43 96 96 96s96-43 96-96h128c0 53 43 96 96 96s96-43 96-96h48c8.8 0 16-7.2 16-16v-32c0-8.8-7.2-16-16-16zM160 464c-26.5 0-48-21.5-48-48s21.5-48 48-48 48 21.5 48 48-21.5 48-48 48zm320 0c-26.5 0-48-21.5-48-48s21.5-48 48-48 48 21.5 48 48-21.5 48-48 48zm80-208H416V144h44.1l99.9 99.9V256z"],"truck-loading":[640,512,[],"f4de","M50.2 375.6c2.3 8.5 11.1 13.6 19.6 11.3l216.4-58c8.5-2.3 13.6-11.1 11.3-19.6l-49.7-185.5c-2.3-8.5-11.1-13.6-19.6-11.3L151 133.3l24.8 92.7-61.8 16.5-24.8-92.7-77.3 20.7C3.4 172.8-1.7 181.6.6 190.1l49.6 185.5zM384 0c-17.7 0-32 14.3-32 32v323.6L5.9 450c-4.3 1.2-6.8 5.6-5.6 9.8l12.6 46.3c1.2 4.3 5.6 6.8 9.8 5.6l393.7-107.4C418.8 464.1 467.6 512 528 512c61.9 0 112-50.1 112-112V0H384zm144 448c-26.5 0-48-21.5-48-48s21.5-48 48-48 48 21.5 48 48-21.5 48-48 48z"],"truck-monster":[640,512,[],"f63b","M624 224h-16v-64c0-17.67-14.33-32-32-32h-73.6L419.22 24.02A64.025 64.025 0 0 0 369.24 0H256c-17.67 0-32 14.33-32 32v96H48c-8.84 0-16 7.16-16 16v80H16c-8.84 0-16 7.16-16 16v32c0 8.84 7.16 16 16 16h16.72c29.21-38.65 75.1-64 127.28-64s98.07 25.35 127.28 64h65.45c29.21-38.65 75.1-64 127.28-64s98.07 25.35 127.28 64H624c8.84 0 16-7.16 16-16v-32c0-8.84-7.16-16-16-16zm-336-96V64h81.24l51.2 64H288zm304 224h-5.2c-2.2-7.33-5.07-14.28-8.65-20.89l3.67-3.67c6.25-6.25 6.25-16.38 0-22.63l-22.63-22.63c-6.25-6.25-16.38-6.25-22.63 0l-3.67 3.67A110.85 110.85 0 0 0 512 277.2V272c0-8.84-7.16-16-16-16h-32c-8.84 0-16 7.16-16 16v5.2c-7.33 2.2-14.28 5.07-20.89 8.65l-3.67-3.67c-6.25-6.25-16.38-6.25-22.63 0l-22.63 22.63c-6.25 6.25-6.25 16.38 0 22.63l3.67 3.67A110.85 110.85 0 0 0 373.2 352H368c-8.84 0-16 7.16-16 16v32c0 8.84 7.16 16 16 16h5.2c2.2 7.33 5.07 14.28 8.65 20.89l-3.67 3.67c-6.25 6.25-6.25 16.38 0 22.63l22.63 22.63c6.25 6.25 16.38 6.25 22.63 0l3.67-3.67c6.61 3.57 13.57 6.45 20.9 8.65v5.2c0 8.84 7.16 16 16 16h32c8.84 0 16-7.16 16-16v-5.2c7.33-2.2 14.28-5.07 20.9-8.65l3.67 3.67c6.25 6.25 16.38 6.25 22.63 0l22.63-22.63c6.25-6.25 6.25-16.38 0-22.63l-3.67-3.67a110.85 110.85 0 0 0 8.65-20.89h5.2c8.84 0 16-7.16 16-16v-32c-.02-8.84-7.18-16-16.02-16zm-112 80c-26.51 0-48-21.49-48-48s21.49-48 48-48 48 21.49 48 48-21.49 48-48 48zm-208-80h-5.2c-2.2-7.33-5.07-14.28-8.65-20.89l3.67-3.67c6.25-6.25 6.25-16.38 0-22.63l-22.63-22.63c-6.25-6.25-16.38-6.25-22.63 0l-3.67 3.67A110.85 110.85 0 0 0 192 277.2V272c0-8.84-7.16-16-16-16h-32c-8.84 0-16 7.16-16 16v5.2c-7.33 2.2-14.28 5.07-20.89 8.65l-3.67-3.67c-6.25-6.25-16.38-6.25-22.63 0L58.18 304.8c-6.25 6.25-6.25 16.38 0 22.63l3.67 3.67a110.85 110.85 0 0 0-8.65 20.89H48c-8.84 0-16 7.16-16 16v32c0 8.84 7.16 16 16 16h5.2c2.2 7.33 5.07 14.28 8.65 20.89l-3.67 3.67c-6.25 6.25-6.25 16.38 0 22.63l22.63 22.63c6.25 6.25 16.38 6.25 22.63 0l3.67-3.67c6.61 3.57 13.57 6.45 20.9 8.65v5.2c0 8.84 7.16 16 16 16h32c8.84 0 16-7.16 16-16v-5.2c7.33-2.2 14.28-5.07 20.9-8.65l3.67 3.67c6.25 6.25 16.38 6.25 22.63 0l22.63-22.63c6.25-6.25 6.25-16.38 0-22.63l-3.67-3.67a110.85 110.85 0 0 0 8.65-20.89h5.2c8.84 0 16-7.16 16-16v-32C288 359.16 280.84 352 272 352zm-112 80c-26.51 0-48-21.49-48-48s21.49-48 48-48 48 21.49 48 48-21.49 48-48 48z"],"truck-moving":[640,512,[],"f4df","M621.3 237.3l-58.5-58.5c-12-12-28.3-18.7-45.3-18.7H480V64c0-17.7-14.3-32-32-32H32C14.3 32 0 46.3 0 64v336c0 44.2 35.8 80 80 80 26.3 0 49.4-12.9 64-32.4 14.6 19.6 37.7 32.4 64 32.4 44.2 0 80-35.8 80-80 0-5.5-.6-10.8-1.6-16h163.2c-1.1 5.2-1.6 10.5-1.6 16 0 44.2 35.8 80 80 80s80-35.8 80-80c0-5.5-.6-10.8-1.6-16H624c8.8 0 16-7.2 16-16v-85.5c0-17-6.7-33.2-18.7-45.2zM80 432c-17.6 0-32-14.4-32-32s14.4-32 32-32 32 14.4 32 32-14.4 32-32 32zm128 0c-17.6 0-32-14.4-32-32s14.4-32 32-32 32 14.4 32 32-14.4 32-32 32zm272-224h37.5c4.3 0 8.3 1.7 11.3 4.7l43.3 43.3H480v-48zm48 224c-17.6 0-32-14.4-32-32s14.4-32 32-32 32 14.4 32 32-14.4 32-32 32z"],"truck-pickup":[640,512,[],"f63c","M624 288h-16v-64c0-17.67-14.33-32-32-32h-48L419.22 56.02A64.025 64.025 0 0 0 369.24 32H256c-17.67 0-32 14.33-32 32v128H64c-17.67 0-32 14.33-32 32v64H16c-8.84 0-16 7.16-16 16v32c0 8.84 7.16 16 16 16h49.61c-.76 5.27-1.61 10.52-1.61 16 0 61.86 50.14 112 112 112s112-50.14 112-112c0-5.48-.85-10.73-1.61-16h67.23c-.76 5.27-1.61 10.52-1.61 16 0 61.86 50.14 112 112 112s112-50.14 112-112c0-5.48-.85-10.73-1.61-16H624c8.84 0 16-7.16 16-16v-32c0-8.84-7.16-16-16-16zM288 96h81.24l76.8 96H288V96zM176 416c-26.47 0-48-21.53-48-48s21.53-48 48-48 48 21.53 48 48-21.53 48-48 48zm288 0c-26.47 0-48-21.53-48-48s21.53-48 48-48 48 21.53 48 48-21.53 48-48 48z"],tshirt:[640,512,[],"f553","M631.2 96.5L436.5 0C416.4 27.8 371.9 47.2 320 47.2S223.6 27.8 203.5 0L8.8 96.5c-7.9 4-11.1 13.6-7.2 21.5l57.2 114.5c4 7.9 13.6 11.1 21.5 7.2l56.6-27.7c10.6-5.2 23 2.5 23 14.4V480c0 17.7 14.3 32 32 32h256c17.7 0 32-14.3 32-32V226.3c0-11.8 12.4-19.6 23-14.4l56.6 27.7c7.9 4 17.5.8 21.5-7.2L638.3 118c4-7.9.8-17.6-7.1-21.5z"],tty:[512,512,[],"f1e4","M5.37 103.822c138.532-138.532 362.936-138.326 501.262 0 6.078 6.078 7.074 15.496 2.583 22.681l-43.214 69.138a18.332 18.332 0 0 1-22.356 7.305l-86.422-34.569a18.335 18.335 0 0 1-11.434-18.846L351.741 90c-62.145-22.454-130.636-21.986-191.483 0l5.953 59.532a18.331 18.331 0 0 1-11.434 18.846l-86.423 34.568a18.334 18.334 0 0 1-22.356-7.305L2.787 126.502a18.333 18.333 0 0 1 2.583-22.68zM96 308v-40c0-6.627-5.373-12-12-12H44c-6.627 0-12 5.373-12 12v40c0 6.627 5.373 12 12 12h40c6.627 0 12-5.373 12-12zm96 0v-40c0-6.627-5.373-12-12-12h-40c-6.627 0-12 5.373-12 12v40c0 6.627 5.373 12 12 12h40c6.627 0 12-5.373 12-12zm96 0v-40c0-6.627-5.373-12-12-12h-40c-6.627 0-12 5.373-12 12v40c0 6.627 5.373 12 12 12h40c6.627 0 12-5.373 12-12zm96 0v-40c0-6.627-5.373-12-12-12h-40c-6.627 0-12 5.373-12 12v40c0 6.627 5.373 12 12 12h40c6.627 0 12-5.373 12-12zm96 0v-40c0-6.627-5.373-12-12-12h-40c-6.627 0-12 5.373-12 12v40c0 6.627 5.373 12 12 12h40c6.627 0 12-5.373 12-12zm-336 96v-40c0-6.627-5.373-12-12-12H92c-6.627 0-12 5.373-12 12v40c0 6.627 5.373 12 12 12h40c6.627 0 12-5.373 12-12zm96 0v-40c0-6.627-5.373-12-12-12h-40c-6.627 0-12 5.373-12 12v40c0 6.627 5.373 12 12 12h40c6.627 0 12-5.373 12-12zm96 0v-40c0-6.627-5.373-12-12-12h-40c-6.627 0-12 5.373-12 12v40c0 6.627 5.373 12 12 12h40c6.627 0 12-5.373 12-12zm96 0v-40c0-6.627-5.373-12-12-12h-40c-6.627 0-12 5.373-12 12v40c0 6.627 5.373 12 12 12h40c6.627 0 12-5.373 12-12zM96 500v-40c0-6.627-5.373-12-12-12H44c-6.627 0-12 5.373-12 12v40c0 6.627 5.373 12 12 12h40c6.627 0 12-5.373 12-12zm288 0v-40c0-6.627-5.373-12-12-12H140c-6.627 0-12 5.373-12 12v40c0 6.627 5.373 12 12 12h232c6.627 0 12-5.373 12-12zm96 0v-40c0-6.627-5.373-12-12-12h-40c-6.627 0-12 5.373-12 12v40c0 6.627 5.373 12 12 12h40c6.627 0 12-5.373 12-12z"],tv:[640,512,[],"f26c","M592 0H48A48 48 0 0 0 0 48v320a48 48 0 0 0 48 48h240v32H112a16 16 0 0 0-16 16v32a16 16 0 0 0 16 16h416a16 16 0 0 0 16-16v-32a16 16 0 0 0-16-16H352v-32h240a48 48 0 0 0 48-48V48a48 48 0 0 0-48-48zm-16 352H64V64h512z"],umbrella:[576,512,[],"f0e9","M575.7 280.8C547.1 144.5 437.3 62.6 320 49.9V32c0-17.7-14.3-32-32-32s-32 14.3-32 32v17.9C138.3 62.6 29.5 144.5.3 280.8c-2.2 10.1 8.5 21.3 18.7 11.4 52-55 107.7-52.4 158.6 37 5.3 9.5 14.9 8.6 19.7 0 20.2-35.4 44.9-73.2 90.7-73.2 58.5 0 88.2 68.8 90.7 73.2 4.8 8.6 14.4 9.5 19.7 0 51-89.5 107.1-91.4 158.6-37 10.3 10 20.9-1.3 18.7-11.4zM256 301.7V432c0 8.8-7.2 16-16 16-7.8 0-13.2-5.3-15.1-10.7-5.9-16.7-24.1-25.4-40.8-19.5-16.7 5.9-25.4 24.2-19.5 40.8 11.2 31.9 41.6 53.3 75.4 53.3 44.1 0 80-35.9 80-80V301.6c-9.1-7.9-19.8-13.6-32-13.6-12.3.1-22.4 4.8-32 13.7z"],"umbrella-beach":[640,512,[],"f5ca","M115.38 136.9l102.11 37.18c35.19-81.54 86.21-144.29 139-173.7-95.88-4.89-188.78 36.96-248.53 111.8-6.69 8.4-2.66 21.05 7.42 24.72zm132.25 48.16l238.48 86.83c35.76-121.38 18.7-231.66-42.63-253.98-7.4-2.7-15.13-4-23.09-4-58.02.01-128.27 69.17-172.76 171.15zM521.48 60.5c6.22 16.3 10.83 34.6 13.2 55.19 5.74 49.89-1.42 108.23-18.95 166.98l102.62 37.36c10.09 3.67 21.31-3.43 21.57-14.17 2.32-95.69-41.91-187.44-118.44-245.36zM560 447.98H321.06L386 269.5l-60.14-21.9-72.9 200.37H16c-8.84 0-16 7.16-16 16.01v32.01C0 504.83 7.16 512 16 512h544c8.84 0 16-7.17 16-16.01v-32.01c0-8.84-7.16-16-16-16z"],underline:[448,512,[],"f0cd","M32 64h32v160c0 88.22 71.78 160 160 160s160-71.78 160-160V64h32a16 16 0 0 0 16-16V16a16 16 0 0 0-16-16H272a16 16 0 0 0-16 16v32a16 16 0 0 0 16 16h32v160a80 80 0 0 1-160 0V64h32a16 16 0 0 0 16-16V16a16 16 0 0 0-16-16H32a16 16 0 0 0-16 16v32a16 16 0 0 0 16 16zm400 384H16a16 16 0 0 0-16 16v32a16 16 0 0 0 16 16h416a16 16 0 0 0 16-16v-32a16 16 0 0 0-16-16z"],undo:[512,512,[],"f0e2","M212.333 224.333H12c-6.627 0-12-5.373-12-12V12C0 5.373 5.373 0 12 0h48c6.627 0 12 5.373 12 12v78.112C117.773 39.279 184.26 7.47 258.175 8.007c136.906.994 246.448 111.623 246.157 248.532C504.041 393.258 393.12 504 256.333 504c-64.089 0-122.496-24.313-166.51-64.215-5.099-4.622-5.334-12.554-.467-17.42l33.967-33.967c4.474-4.474 11.662-4.717 16.401-.525C170.76 415.336 211.58 432 256.333 432c97.268 0 176-78.716 176-176 0-97.267-78.716-176-176-176-58.496 0-110.28 28.476-142.274 72.333h98.274c6.627 0 12 5.373 12 12v48c0 6.627-5.373 12-12 12z"],"undo-alt":[512,512,[],"f2ea","M255.545 8c-66.269.119-126.438 26.233-170.86 68.685L48.971 40.971C33.851 25.851 8 36.559 8 57.941V192c0 13.255 10.745 24 24 24h134.059c21.382 0 32.09-25.851 16.971-40.971l-41.75-41.75c30.864-28.899 70.801-44.907 113.23-45.273 92.398-.798 170.283 73.977 169.484 169.442C423.236 348.009 349.816 424 256 424c-41.127 0-79.997-14.678-110.63-41.556-4.743-4.161-11.906-3.908-16.368.553L89.34 422.659c-4.872 4.872-4.631 12.815.482 17.433C133.798 479.813 192.074 504 256 504c136.966 0 247.999-111.033 248-247.998C504.001 119.193 392.354 7.755 255.545 8z"],"universal-access":[512,512,[],"f29a","M256 48c114.953 0 208 93.029 208 208 0 114.953-93.029 208-208 208-114.953 0-208-93.029-208-208 0-114.953 93.029-208 208-208m0-40C119.033 8 8 119.033 8 256s111.033 248 248 248 248-111.033 248-248S392.967 8 256 8zm0 56C149.961 64 64 149.961 64 256s85.961 192 192 192 192-85.961 192-192S362.039 64 256 64zm0 44c19.882 0 36 16.118 36 36s-16.118 36-36 36-36-16.118-36-36 16.118-36 36-36zm117.741 98.023c-28.712 6.779-55.511 12.748-82.14 15.807.851 101.023 12.306 123.052 25.037 155.621 3.617 9.26-.957 19.698-10.217 23.315-9.261 3.617-19.699-.957-23.316-10.217-8.705-22.308-17.086-40.636-22.261-78.549h-9.686c-5.167 37.851-13.534 56.208-22.262 78.549-3.615 9.255-14.05 13.836-23.315 10.217-9.26-3.617-13.834-14.056-10.217-23.315 12.713-32.541 24.185-54.541 25.037-155.621-26.629-3.058-53.428-9.027-82.141-15.807-8.6-2.031-13.926-10.648-11.895-19.249s10.647-13.926 19.249-11.895c96.686 22.829 124.283 22.783 220.775 0 8.599-2.03 17.218 3.294 19.249 11.895 2.029 8.601-3.297 17.219-11.897 19.249z"],university:[512,512,[],"f19c","M496 128v16a8 8 0 0 1-8 8h-24v12c0 6.627-5.373 12-12 12H60c-6.627 0-12-5.373-12-12v-12H24a8 8 0 0 1-8-8v-16a8 8 0 0 1 4.941-7.392l232-88a7.996 7.996 0 0 1 6.118 0l232 88A8 8 0 0 1 496 128zm-24 304H40c-13.255 0-24 10.745-24 24v16a8 8 0 0 0 8 8h464a8 8 0 0 0 8-8v-16c0-13.255-10.745-24-24-24zM96 192v192H60c-6.627 0-12 5.373-12 12v20h416v-20c0-6.627-5.373-12-12-12h-36V192h-64v192h-64V192h-64v192h-64V192H96z"],unlink:[512,512,[],"f127","M304.083 405.907c4.686 4.686 4.686 12.284 0 16.971l-44.674 44.674c-59.263 59.262-155.693 59.266-214.961 0-59.264-59.265-59.264-155.696 0-214.96l44.675-44.675c4.686-4.686 12.284-4.686 16.971 0l39.598 39.598c4.686 4.686 4.686 12.284 0 16.971l-44.675 44.674c-28.072 28.073-28.072 73.75 0 101.823 28.072 28.072 73.75 28.073 101.824 0l44.674-44.674c4.686-4.686 12.284-4.686 16.971 0l39.597 39.598zm-56.568-260.216c4.686 4.686 12.284 4.686 16.971 0l44.674-44.674c28.072-28.075 73.75-28.073 101.824 0 28.072 28.073 28.072 73.75 0 101.823l-44.675 44.674c-4.686 4.686-4.686 12.284 0 16.971l39.598 39.598c4.686 4.686 12.284 4.686 16.971 0l44.675-44.675c59.265-59.265 59.265-155.695 0-214.96-59.266-59.264-155.695-59.264-214.961 0l-44.674 44.674c-4.686 4.686-4.686 12.284 0 16.971l39.597 39.598zm234.828 359.28l22.627-22.627c9.373-9.373 9.373-24.569 0-33.941L63.598 7.029c-9.373-9.373-24.569-9.373-33.941 0L7.029 29.657c-9.373 9.373-9.373 24.569 0 33.941l441.373 441.373c9.373 9.372 24.569 9.372 33.941 0z"],unlock:[448,512,[],"f09c","M400 256H152V152.9c0-39.6 31.7-72.5 71.3-72.9 40-.4 72.7 32.1 72.7 72v16c0 13.3 10.7 24 24 24h32c13.3 0 24-10.7 24-24v-16C376 68 307.5-.3 223.5 0 139.5.3 72 69.5 72 153.5V256H48c-26.5 0-48 21.5-48 48v160c0 26.5 21.5 48 48 48h352c26.5 0 48-21.5 48-48V304c0-26.5-21.5-48-48-48z"],"unlock-alt":[448,512,[],"f13e","M400 256H152V152.9c0-39.6 31.7-72.5 71.3-72.9 40-.4 72.7 32.1 72.7 72v16c0 13.3 10.7 24 24 24h32c13.3 0 24-10.7 24-24v-16C376 68 307.5-.3 223.5 0 139.5.3 72 69.5 72 153.5V256H48c-26.5 0-48 21.5-48 48v160c0 26.5 21.5 48 48 48h352c26.5 0 48-21.5 48-48V304c0-26.5-21.5-48-48-48zM264 408c0 22.1-17.9 40-40 40s-40-17.9-40-40v-48c0-22.1 17.9-40 40-40s40 17.9 40 40v48z"],upload:[512,512,[],"f093","M296 384h-80c-13.3 0-24-10.7-24-24V192h-87.7c-17.8 0-26.7-21.5-14.1-34.1L242.3 5.7c7.5-7.5 19.8-7.5 27.3 0l152.2 152.2c12.6 12.6 3.7 34.1-14.1 34.1H320v168c0 13.3-10.7 24-24 24zm216-8v112c0 13.3-10.7 24-24 24H24c-13.3 0-24-10.7-24-24V376c0-13.3 10.7-24 24-24h136v8c0 30.9 25.1 56 56 56h80c30.9 0 56-25.1 56-56v-8h136c13.3 0 24 10.7 24 24zm-124 88c0-11-9-20-20-20s-20 9-20 20 9 20 20 20 20-9 20-20zm64 0c0-11-9-20-20-20s-20 9-20 20 9 20 20 20 20-9 20-20z"],user:[448,512,[],"f007","M224 256c70.7 0 128-57.3 128-128S294.7 0 224 0 96 57.3 96 128s57.3 128 128 128zm89.6 32h-16.7c-22.2 10.2-46.9 16-72.9 16s-50.6-5.8-72.9-16h-16.7C60.2 288 0 348.2 0 422.4V464c0 26.5 21.5 48 48 48h352c26.5 0 48-21.5 48-48v-41.6c0-74.2-60.2-134.4-134.4-134.4z"],"user-alt":[512,512,[],"f406","M256 288c79.5 0 144-64.5 144-144S335.5 0 256 0 112 64.5 112 144s64.5 144 144 144zm128 32h-55.1c-22.2 10.2-46.9 16-72.9 16s-50.6-5.8-72.9-16H128C57.3 320 0 377.3 0 448v16c0 26.5 21.5 48 48 48h416c26.5 0 48-21.5 48-48v-16c0-70.7-57.3-128-128-128z"],"user-alt-slash":[640,512,[],"f4fa","M633.8 458.1L389.6 269.3C433.8 244.7 464 198.1 464 144 464 64.5 399.5 0 320 0c-67.1 0-123 46.1-139 108.2L45.5 3.4C38.5-2 28.5-.8 23 6.2L3.4 31.4c-5.4 7-4.2 17 2.8 22.4l588.4 454.7c7 5.4 17 4.2 22.5-2.8l19.6-25.3c5.4-6.8 4.1-16.9-2.9-22.3zM198.4 320C124.2 320 64 380.2 64 454.4v9.6c0 26.5 21.5 48 48 48h382.2L245.8 320h-47.4z"],"user-astronaut":[448,512,[],"f4fb","M64 224h13.5c24.7 56.5 80.9 96 146.5 96s121.8-39.5 146.5-96H384c8.8 0 16-7.2 16-16v-96c0-8.8-7.2-16-16-16h-13.5C345.8 39.5 289.6 0 224 0S102.2 39.5 77.5 96H64c-8.8 0-16 7.2-16 16v96c0 8.8 7.2 16 16 16zm40-88c0-22.1 21.5-40 48-40h144c26.5 0 48 17.9 48 40v24c0 53-43 96-96 96h-48c-53 0-96-43-96-96v-24zm72 72l12-36 36-12-36-12-12-36-12 36-36 12 36 12 12 36zm151.6 113.4C297.7 340.7 262.2 352 224 352s-73.7-11.3-103.6-30.6C52.9 328.5 0 385 0 454.4v9.6c0 26.5 21.5 48 48 48h80v-64c0-17.7 14.3-32 32-32h128c17.7 0 32 14.3 32 32v64h80c26.5 0 48-21.5 48-48v-9.6c0-69.4-52.9-125.9-120.4-133zM272 448c-8.8 0-16 7.2-16 16s7.2 16 16 16 16-7.2 16-16-7.2-16-16-16zm-96 0c-8.8 0-16 7.2-16 16v48h32v-48c0-8.8-7.2-16-16-16z"],"user-check":[640,512,[],"f4fc","M224 256c70.7 0 128-57.3 128-128S294.7 0 224 0 96 57.3 96 128s57.3 128 128 128zm89.6 32h-16.7c-22.2 10.2-46.9 16-72.9 16s-50.6-5.8-72.9-16h-16.7C60.2 288 0 348.2 0 422.4V464c0 26.5 21.5 48 48 48h352c26.5 0 48-21.5 48-48v-41.6c0-74.2-60.2-134.4-134.4-134.4zm323-128.4l-27.8-28.1c-4.6-4.7-12.1-4.7-16.8-.1l-104.8 104-45.5-45.8c-4.6-4.7-12.1-4.7-16.8-.1l-28.1 27.9c-4.7 4.6-4.7 12.1-.1 16.8l81.7 82.3c4.6 4.7 12.1 4.7 16.8.1l141.3-140.2c4.6-4.7 4.7-12.2.1-16.8z"],"user-circle":[496,512,[],"f2bd","M248 8C111 8 0 119 0 256s111 248 248 248 248-111 248-248S385 8 248 8zm0 96c48.6 0 88 39.4 88 88s-39.4 88-88 88-88-39.4-88-88 39.4-88 88-88zm0 344c-58.7 0-111.3-26.6-146.5-68.2 18.8-35.4 55.6-59.8 98.5-59.8 2.4 0 4.8.4 7.1 1.1 13 4.2 26.6 6.9 40.9 6.9 14.3 0 28-2.7 40.9-6.9 2.3-.7 4.7-1.1 7.1-1.1 42.9 0 79.7 24.4 98.5 59.8C359.3 421.4 306.7 448 248 448z"],"user-clock":[640,512,[],"f4fd","M496 224c-79.6 0-144 64.4-144 144s64.4 144 144 144 144-64.4 144-144-64.4-144-144-144zm64 150.3c0 5.3-4.4 9.7-9.7 9.7h-60.6c-5.3 0-9.7-4.4-9.7-9.7v-76.6c0-5.3 4.4-9.7 9.7-9.7h12.6c5.3 0 9.7 4.4 9.7 9.7V352h38.3c5.3 0 9.7 4.4 9.7 9.7v12.6zM320 368c0-27.8 6.7-54.1 18.2-77.5-8-1.5-16.2-2.5-24.6-2.5h-16.7c-22.2 10.2-46.9 16-72.9 16s-50.6-5.8-72.9-16h-16.7C60.2 288 0 348.2 0 422.4V464c0 26.5 21.5 48 48 48h347.1c-45.3-31.9-75.1-84.5-75.1-144zm-96-112c70.7 0 128-57.3 128-128S294.7 0 224 0 96 57.3 96 128s57.3 128 128 128z"],"user-cog":[640,512,[],"f4fe","M610.5 373.3c2.6-14.1 2.6-28.5 0-42.6l25.8-14.9c3-1.7 4.3-5.2 3.3-8.5-6.7-21.6-18.2-41.2-33.2-57.4-2.3-2.5-6-3.1-9-1.4l-25.8 14.9c-10.9-9.3-23.4-16.5-36.9-21.3v-29.8c0-3.4-2.4-6.4-5.7-7.1-22.3-5-45-4.8-66.2 0-3.3.7-5.7 3.7-5.7 7.1v29.8c-13.5 4.8-26 12-36.9 21.3l-25.8-14.9c-2.9-1.7-6.7-1.1-9 1.4-15 16.2-26.5 35.8-33.2 57.4-1 3.3.4 6.8 3.3 8.5l25.8 14.9c-2.6 14.1-2.6 28.5 0 42.6l-25.8 14.9c-3 1.7-4.3 5.2-3.3 8.5 6.7 21.6 18.2 41.1 33.2 57.4 2.3 2.5 6 3.1 9 1.4l25.8-14.9c10.9 9.3 23.4 16.5 36.9 21.3v29.8c0 3.4 2.4 6.4 5.7 7.1 22.3 5 45 4.8 66.2 0 3.3-.7 5.7-3.7 5.7-7.1v-29.8c13.5-4.8 26-12 36.9-21.3l25.8 14.9c2.9 1.7 6.7 1.1 9-1.4 15-16.2 26.5-35.8 33.2-57.4 1-3.3-.4-6.8-3.3-8.5l-25.8-14.9zM496 400.5c-26.8 0-48.5-21.8-48.5-48.5s21.8-48.5 48.5-48.5 48.5 21.8 48.5 48.5-21.7 48.5-48.5 48.5zM224 256c70.7 0 128-57.3 128-128S294.7 0 224 0 96 57.3 96 128s57.3 128 128 128zm201.2 226.5c-2.3-1.2-4.6-2.6-6.8-3.9l-7.9 4.6c-6 3.4-12.8 5.3-19.6 5.3-10.9 0-21.4-4.6-28.9-12.6-18.3-19.8-32.3-43.9-40.2-69.6-5.5-17.7 1.9-36.4 17.9-45.7l7.9-4.6c-.1-2.6-.1-5.2 0-7.8l-7.9-4.6c-16-9.2-23.4-28-17.9-45.7.9-2.9 2.2-5.8 3.2-8.7-3.8-.3-7.5-1.2-11.4-1.2h-16.7c-22.2 10.2-46.9 16-72.9 16s-50.6-5.8-72.9-16h-16.7C60.2 288 0 348.2 0 422.4V464c0 26.5 21.5 48 48 48h352c10.1 0 19.5-3.2 27.2-8.5-1.2-3.8-2-7.7-2-11.8v-9.2z"],"user-edit":[640,512,[],"f4ff","M224 256c70.7 0 128-57.3 128-128S294.7 0 224 0 96 57.3 96 128s57.3 128 128 128zm89.6 32h-16.7c-22.2 10.2-46.9 16-72.9 16s-50.6-5.8-72.9-16h-16.7C60.2 288 0 348.2 0 422.4V464c0 26.5 21.5 48 48 48h274.9c-2.4-6.8-3.4-14-2.6-21.3l6.8-60.9 1.2-11.1 7.9-7.9 77.3-77.3c-24.5-27.7-60-45.5-99.9-45.5zm45.3 145.3l-6.8 61c-1.1 10.2 7.5 18.8 17.6 17.6l60.9-6.8 137.9-137.9-71.7-71.7-137.9 137.8zM633 268.9L595.1 231c-9.3-9.3-24.5-9.3-33.8 0l-37.8 37.8-4.1 4.1 71.8 71.7 41.8-41.8c9.3-9.4 9.3-24.5 0-33.9z"],"user-friends":[640,512,[],"f500","M192 256c61.9 0 112-50.1 112-112S253.9 32 192 32 80 82.1 80 144s50.1 112 112 112zm76.8 32h-8.3c-20.8 10-43.9 16-68.5 16s-47.6-6-68.5-16h-8.3C51.6 288 0 339.6 0 403.2V432c0 26.5 21.5 48 48 48h288c26.5 0 48-21.5 48-48v-28.8c0-63.6-51.6-115.2-115.2-115.2zM480 256c53 0 96-43 96-96s-43-96-96-96-96 43-96 96 43 96 96 96zm48 32h-3.8c-13.9 4.8-28.6 8-44.2 8s-30.3-3.2-44.2-8H432c-20.4 0-39.2 5.9-55.7 15.4 24.4 26.3 39.7 61.2 39.7 99.8v38.4c0 2.2-.5 4.3-.6 6.4H592c26.5 0 48-21.5 48-48 0-61.9-50.1-112-112-112z"],"user-graduate":[448,512,[],"f501","M319.4 320.6L224 416l-95.4-95.4C57.1 323.7 0 382.2 0 454.4v9.6c0 26.5 21.5 48 48 48h352c26.5 0 48-21.5 48-48v-9.6c0-72.2-57.1-130.7-128.6-133.8zM13.6 79.8l6.4 1.5v58.4c-7 4.2-12 11.5-12 20.3 0 8.4 4.6 15.4 11.1 19.7L3.5 242c-1.7 6.9 2.1 14 7.6 14h41.8c5.5 0 9.3-7.1 7.6-14l-15.6-62.3C51.4 175.4 56 168.4 56 160c0-8.8-5-16.1-12-20.3V87.1l66 15.9c-8.6 17.2-14 36.4-14 57 0 70.7 57.3 128 128 128s128-57.3 128-128c0-20.6-5.3-39.8-14-57l96.3-23.2c18.2-4.4 18.2-27.1 0-31.5l-190.4-46c-13-3.1-26.7-3.1-39.7 0L13.6 48.2c-18.1 4.4-18.1 27.2 0 31.6z"],"user-injured":[448,512,[],"f728","M277.37 11.98C261.08 4.47 243.11 0 224 0c-53.69 0-99.5 33.13-118.51 80h81.19l90.69-68.02zM342.51 80c-7.9-19.47-20.67-36.2-36.49-49.52L239.99 80h102.52zM224 256c70.69 0 128-57.31 128-128 0-5.48-.95-10.7-1.61-16H97.61c-.67 5.3-1.61 10.52-1.61 16 0 70.69 57.31 128 128 128zM80 299.7V512h128.26l-98.45-221.52A132.835 132.835 0 0 0 80 299.7zM0 464c0 26.51 21.49 48 48 48V320.24C18.88 344.89 0 381.26 0 422.4V464zm256-48h-55.38l42.67 96H256c26.47 0 48-21.53 48-48s-21.53-48-48-48zm57.6-128h-16.71c-22.24 10.18-46.88 16-72.89 16s-50.65-5.82-72.89-16h-7.37l42.67 96H256c44.11 0 80 35.89 80 80 0 18.08-6.26 34.59-16.41 48H400c26.51 0 48-21.49 48-48v-41.6c0-74.23-60.17-134.4-134.4-134.4z"],"user-lock":[640,512,[],"f502","M224 256A128 128 0 1 0 96 128a128 128 0 0 0 128 128zm96 64a63.08 63.08 0 0 1 8.1-30.5c-4.8-.5-9.5-1.5-14.5-1.5h-16.7a174.08 174.08 0 0 1-145.8 0h-16.7A134.43 134.43 0 0 0 0 422.4V464a48 48 0 0 0 48 48h280.9a63.54 63.54 0 0 1-8.9-32zm288-32h-32v-80a80 80 0 0 0-160 0v80h-32a32 32 0 0 0-32 32v160a32 32 0 0 0 32 32h224a32 32 0 0 0 32-32V320a32 32 0 0 0-32-32zM496 432a32 32 0 1 1 32-32 32 32 0 0 1-32 32zm32-144h-64v-80a32 32 0 0 1 64 0z"],"user-md":[448,512,[],"f0f0","M224 256c70.7 0 128-57.3 128-128S294.7 0 224 0 96 57.3 96 128s57.3 128 128 128zM104 424c0 13.3 10.7 24 24 24s24-10.7 24-24-10.7-24-24-24-24 10.7-24 24zm216-135.4v49c36.5 7.4 64 39.8 64 78.4v41.7c0 7.6-5.4 14.2-12.9 15.7l-32.2 6.4c-4.3.9-8.5-1.9-9.4-6.3l-3.1-15.7c-.9-4.3 1.9-8.6 6.3-9.4l19.3-3.9V416c0-62.8-96-65.1-96 1.9v26.7l19.3 3.9c4.3.9 7.1 5.1 6.3 9.4l-3.1 15.7c-.9 4.3-5.1 7.1-9.4 6.3l-31.2-4.2c-7.9-1.1-13.8-7.8-13.8-15.9V416c0-38.6 27.5-70.9 64-78.4v-45.2c-2.2.7-4.4 1.1-6.6 1.9-18 6.3-37.3 9.8-57.4 9.8s-39.4-3.5-57.4-9.8c-7.4-2.6-14.9-4.2-22.6-5.2v81.6c23.1 6.9 40 28.1 40 53.4 0 30.9-25.1 56-56 56s-56-25.1-56-56c0-25.3 16.9-46.5 40-53.4v-80.4C48.5 301 0 355.8 0 422.4v44.8C0 491.9 20.1 512 44.8 512h358.4c24.7 0 44.8-20.1 44.8-44.8v-44.8c0-72-56.8-130.3-128-133.8z"],"user-minus":[640,512,[],"f503","M624 208H432c-8.8 0-16 7.2-16 16v32c0 8.8 7.2 16 16 16h192c8.8 0 16-7.2 16-16v-32c0-8.8-7.2-16-16-16zm-400 48c70.7 0 128-57.3 128-128S294.7 0 224 0 96 57.3 96 128s57.3 128 128 128zm89.6 32h-16.7c-22.2 10.2-46.9 16-72.9 16s-50.6-5.8-72.9-16h-16.7C60.2 288 0 348.2 0 422.4V464c0 26.5 21.5 48 48 48h352c26.5 0 48-21.5 48-48v-41.6c0-74.2-60.2-134.4-134.4-134.4z"],"user-ninja":[448,512,[],"f504","M325.4 289.2L224 390.6 122.6 289.2C54 295.3 0 352.2 0 422.4V464c0 26.5 21.5 48 48 48h352c26.5 0 48-21.5 48-48v-41.6c0-70.2-54-127.1-122.6-133.2zM32 192c27.3 0 51.8-11.5 69.2-29.7 15.1 53.9 64 93.7 122.8 93.7 70.7 0 128-57.3 128-128S294.7 0 224 0c-50.4 0-93.6 29.4-114.5 71.8C92.1 47.8 64 32 32 32c0 33.4 17.1 62.8 43.1 80-26 17.2-43.1 46.6-43.1 80zm144-96h96c17.7 0 32 14.3 32 32H144c0-17.7 14.3-32 32-32z"],"user-nurse":[448,512,[],"f82f","M319.41,320,224,415.39,128.59,320C57.1,323.1,0,381.6,0,453.79A58.21,58.21,0,0,0,58.21,512H389.79A58.21,58.21,0,0,0,448,453.79C448,381.6,390.9,323.1,319.41,320ZM224,304A128,128,0,0,0,352,176V65.82a32,32,0,0,0-20.76-30L246.47,4.07a64,64,0,0,0-44.94,0L116.76,35.86A32,32,0,0,0,96,65.82V176A128,128,0,0,0,224,304ZM184,71.67a5,5,0,0,1,5-5h21.67V45a5,5,0,0,1,5-5h16.66a5,5,0,0,1,5,5V66.67H259a5,5,0,0,1,5,5V88.33a5,5,0,0,1-5,5H237.33V115a5,5,0,0,1-5,5H215.67a5,5,0,0,1-5-5V93.33H189a5,5,0,0,1-5-5ZM144,160H304v16a80,80,0,0,1-160,0Z"],"user-plus":[640,512,[],"f234","M624 208h-64v-64c0-8.8-7.2-16-16-16h-32c-8.8 0-16 7.2-16 16v64h-64c-8.8 0-16 7.2-16 16v32c0 8.8 7.2 16 16 16h64v64c0 8.8 7.2 16 16 16h32c8.8 0 16-7.2 16-16v-64h64c8.8 0 16-7.2 16-16v-32c0-8.8-7.2-16-16-16zm-400 48c70.7 0 128-57.3 128-128S294.7 0 224 0 96 57.3 96 128s57.3 128 128 128zm89.6 32h-16.7c-22.2 10.2-46.9 16-72.9 16s-50.6-5.8-72.9-16h-16.7C60.2 288 0 348.2 0 422.4V464c0 26.5 21.5 48 48 48h352c26.5 0 48-21.5 48-48v-41.6c0-74.2-60.2-134.4-134.4-134.4z"],"user-secret":[448,512,[],"f21b","M383.9 308.3l23.9-62.6c4-10.5-3.7-21.7-15-21.7h-58.5c11-18.9 17.8-40.6 17.8-64v-.3c39.2-7.8 64-19.1 64-31.7 0-13.3-27.3-25.1-70.1-33-9.2-32.8-27-65.8-40.6-82.8-9.5-11.9-25.9-15.6-39.5-8.8l-27.6 13.8c-9 4.5-19.6 4.5-28.6 0L182.1 3.4c-13.6-6.8-30-3.1-39.5 8.8-13.5 17-31.4 50-40.6 82.8-42.7 7.9-70 19.7-70 33 0 12.6 24.8 23.9 64 31.7v.3c0 23.4 6.8 45.1 17.8 64H56.3c-11.5 0-19.2 11.7-14.7 22.3l25.8 60.2C27.3 329.8 0 372.7 0 422.4v44.8C0 491.9 20.1 512 44.8 512h358.4c24.7 0 44.8-20.1 44.8-44.8v-44.8c0-48.4-25.8-90.4-64.1-114.1zM176 480l-41.6-192 49.6 32 24 40-32 120zm96 0l-32-120 24-40 49.6-32L272 480zm41.7-298.5c-3.9 11.9-7 24.6-16.5 33.4-10.1 9.3-48 22.4-64-25-2.8-8.4-15.4-8.4-18.3 0-17 50.2-56 32.4-64 25-9.5-8.8-12.7-21.5-16.5-33.4-.8-2.5-6.3-5.7-6.3-5.8v-10.8c28.3 3.6 61 5.8 96 5.8s67.7-2.1 96-5.8v10.8c-.1.1-5.6 3.2-6.4 5.8z"],"user-shield":[640,512,[],"f505","M622.3 271.1l-115.2-45c-4.1-1.6-12.6-3.7-22.2 0l-115.2 45c-10.7 4.2-17.7 14-17.7 24.9 0 111.6 68.7 188.8 132.9 213.9 9.6 3.7 18 1.6 22.2 0C558.4 489.9 640 420.5 640 296c0-10.9-7-20.7-17.7-24.9zM496 462.4V273.3l95.5 37.3c-5.6 87.1-60.9 135.4-95.5 151.8zM224 256c70.7 0 128-57.3 128-128S294.7 0 224 0 96 57.3 96 128s57.3 128 128 128zm96 40c0-2.5.8-4.8 1.1-7.2-2.5-.1-4.9-.8-7.5-.8h-16.7c-22.2 10.2-46.9 16-72.9 16s-50.6-5.8-72.9-16h-16.7C60.2 288 0 348.2 0 422.4V464c0 26.5 21.5 48 48 48h352c6.8 0 13.3-1.5 19.2-4-54-42.9-99.2-116.7-99.2-212z"],"user-slash":[640,512,[],"f506","M633.8 458.1L362.3 248.3C412.1 230.7 448 183.8 448 128 448 57.3 390.7 0 320 0c-67.1 0-121.5 51.8-126.9 117.4L45.5 3.4C38.5-2 28.5-.8 23 6.2L3.4 31.4c-5.4 7-4.2 17 2.8 22.4l588.4 454.7c7 5.4 17 4.2 22.5-2.8l19.6-25.3c5.4-6.8 4.1-16.9-2.9-22.3zM96 422.4V464c0 26.5 21.5 48 48 48h350.2L207.4 290.3C144.2 301.3 96 356 96 422.4z"],"user-tag":[640,512,[],"f507","M630.6 364.9l-90.3-90.2c-12-12-28.3-18.7-45.3-18.7h-79.3c-17.7 0-32 14.3-32 32v79.2c0 17 6.7 33.2 18.7 45.2l90.3 90.2c12.5 12.5 32.8 12.5 45.3 0l92.5-92.5c12.6-12.5 12.6-32.7.1-45.2zm-182.8-21c-13.3 0-24-10.7-24-24s10.7-24 24-24 24 10.7 24 24c0 13.2-10.7 24-24 24zm-223.8-88c70.7 0 128-57.3 128-128C352 57.3 294.7 0 224 0S96 57.3 96 128c0 70.6 57.3 127.9 128 127.9zm127.8 111.2V294c-12.2-3.6-24.9-6.2-38.2-6.2h-16.7c-22.2 10.2-46.9 16-72.9 16s-50.6-5.8-72.9-16h-16.7C60.2 287.9 0 348.1 0 422.3v41.6c0 26.5 21.5 48 48 48h352c15.5 0 29.1-7.5 37.9-18.9l-58-58c-18.1-18.1-28.1-42.2-28.1-67.9z"],"user-tie":[448,512,[],"f508","M224 256c70.7 0 128-57.3 128-128S294.7 0 224 0 96 57.3 96 128s57.3 128 128 128zm95.8 32.6L272 480l-32-136 32-56h-96l32 56-32 136-47.8-191.4C56.9 292 0 350.3 0 422.4V464c0 26.5 21.5 48 48 48h352c26.5 0 48-21.5 48-48v-41.6c0-72.1-56.9-130.4-128.2-133.8z"],"user-times":[640,512,[],"f235","M589.6 240l45.6-45.6c6.3-6.3 6.3-16.5 0-22.8l-22.8-22.8c-6.3-6.3-16.5-6.3-22.8 0L544 194.4l-45.6-45.6c-6.3-6.3-16.5-6.3-22.8 0l-22.8 22.8c-6.3 6.3-6.3 16.5 0 22.8l45.6 45.6-45.6 45.6c-6.3 6.3-6.3 16.5 0 22.8l22.8 22.8c6.3 6.3 16.5 6.3 22.8 0l45.6-45.6 45.6 45.6c6.3 6.3 16.5 6.3 22.8 0l22.8-22.8c6.3-6.3 6.3-16.5 0-22.8L589.6 240zM224 256c70.7 0 128-57.3 128-128S294.7 0 224 0 96 57.3 96 128s57.3 128 128 128zm89.6 32h-16.7c-22.2 10.2-46.9 16-72.9 16s-50.6-5.8-72.9-16h-16.7C60.2 288 0 348.2 0 422.4V464c0 26.5 21.5 48 48 48h352c26.5 0 48-21.5 48-48v-41.6c0-74.2-60.2-134.4-134.4-134.4z"],users:[640,512,[],"f0c0","M96 224c35.3 0 64-28.7 64-64s-28.7-64-64-64-64 28.7-64 64 28.7 64 64 64zm448 0c35.3 0 64-28.7 64-64s-28.7-64-64-64-64 28.7-64 64 28.7 64 64 64zm32 32h-64c-17.6 0-33.5 7.1-45.1 18.6 40.3 22.1 68.9 62 75.1 109.4h66c17.7 0 32-14.3 32-32v-32c0-35.3-28.7-64-64-64zm-256 0c61.9 0 112-50.1 112-112S381.9 32 320 32 208 82.1 208 144s50.1 112 112 112zm76.8 32h-8.3c-20.8 10-43.9 16-68.5 16s-47.6-6-68.5-16h-8.3C179.6 288 128 339.6 128 403.2V432c0 26.5 21.5 48 48 48h288c26.5 0 48-21.5 48-48v-28.8c0-63.6-51.6-115.2-115.2-115.2zm-223.7-13.4C161.5 263.1 145.6 256 128 256H64c-35.3 0-64 28.7-64 64v32c0 17.7 14.3 32 32 32h65.9c6.3-47.4 34.9-87.3 75.2-109.4z"],"users-cog":[640,512,[],"f509","M610.5 341.3c2.6-14.1 2.6-28.5 0-42.6l25.8-14.9c3-1.7 4.3-5.2 3.3-8.5-6.7-21.6-18.2-41.2-33.2-57.4-2.3-2.5-6-3.1-9-1.4l-25.8 14.9c-10.9-9.3-23.4-16.5-36.9-21.3v-29.8c0-3.4-2.4-6.4-5.7-7.1-22.3-5-45-4.8-66.2 0-3.3.7-5.7 3.7-5.7 7.1v29.8c-13.5 4.8-26 12-36.9 21.3l-25.8-14.9c-2.9-1.7-6.7-1.1-9 1.4-15 16.2-26.5 35.8-33.2 57.4-1 3.3.4 6.8 3.3 8.5l25.8 14.9c-2.6 14.1-2.6 28.5 0 42.6l-25.8 14.9c-3 1.7-4.3 5.2-3.3 8.5 6.7 21.6 18.2 41.1 33.2 57.4 2.3 2.5 6 3.1 9 1.4l25.8-14.9c10.9 9.3 23.4 16.5 36.9 21.3v29.8c0 3.4 2.4 6.4 5.7 7.1 22.3 5 45 4.8 66.2 0 3.3-.7 5.7-3.7 5.7-7.1v-29.8c13.5-4.8 26-12 36.9-21.3l25.8 14.9c2.9 1.7 6.7 1.1 9-1.4 15-16.2 26.5-35.8 33.2-57.4 1-3.3-.4-6.8-3.3-8.5l-25.8-14.9zM496 368.5c-26.8 0-48.5-21.8-48.5-48.5s21.8-48.5 48.5-48.5 48.5 21.8 48.5 48.5-21.7 48.5-48.5 48.5zM96 224c35.3 0 64-28.7 64-64s-28.7-64-64-64-64 28.7-64 64 28.7 64 64 64zm224 32c1.9 0 3.7-.5 5.6-.6 8.3-21.7 20.5-42.1 36.3-59.2 7.4-8 17.9-12.6 28.9-12.6 6.9 0 13.7 1.8 19.6 5.3l7.9 4.6c.8-.5 1.6-.9 2.4-1.4 7-14.6 11.2-30.8 11.2-48 0-61.9-50.1-112-112-112S208 82.1 208 144c0 61.9 50.1 112 112 112zm105.2 194.5c-2.3-1.2-4.6-2.6-6.8-3.9-8.2 4.8-15.3 9.8-27.5 9.8-10.9 0-21.4-4.6-28.9-12.6-18.3-19.8-32.3-43.9-40.2-69.6-10.7-34.5 24.9-49.7 25.8-50.3-.1-2.6-.1-5.2 0-7.8l-7.9-4.6c-3.8-2.2-7-5-9.8-8.1-3.3.2-6.5.6-9.8.6-24.6 0-47.6-6-68.5-16h-8.3C179.6 288 128 339.6 128 403.2V432c0 26.5 21.5 48 48 48h255.4c-3.7-6-6.2-12.8-6.2-20.3v-9.2zM173.1 274.6C161.5 263.1 145.6 256 128 256H64c-35.3 0-64 28.7-64 64v32c0 17.7 14.3 32 32 32h65.9c6.3-47.4 34.9-87.3 75.2-109.4z"],"utensil-spoon":[512,512,[],"f2e5","M480.1 31.9c-55-55.1-164.9-34.5-227.8 28.5-49.3 49.3-55.1 110-28.8 160.4L9 413.2c-11.6 10.5-12.1 28.5-1 39.5L59.3 504c11 11 29.1 10.5 39.5-1.1l192.4-214.4c50.4 26.3 111.1 20.5 160.4-28.8 63-62.9 83.6-172.8 28.5-227.8z"],utensils:[416,512,[],"f2e7","M207.9 15.2c.8 4.7 16.1 94.5 16.1 128.8 0 52.3-27.8 89.6-68.9 104.6L168 486.7c.7 13.7-10.2 25.3-24 25.3H80c-13.7 0-24.7-11.5-24-25.3l12.9-238.1C27.7 233.6 0 196.2 0 144 0 109.6 15.3 19.9 16.1 15.2 19.3-5.1 61.4-5.4 64 16.3v141.2c1.3 3.4 15.1 3.2 16 0 1.4-25.3 7.9-139.2 8-141.8 3.3-20.8 44.7-20.8 47.9 0 .2 2.7 6.6 116.5 8 141.8.9 3.2 14.8 3.4 16 0V16.3c2.6-21.6 44.8-21.4 48-1.1zm119.2 285.7l-15 185.1c-1.2 14 9.9 26 23.9 26h56c13.3 0 24-10.7 24-24V24c0-13.2-10.7-24-24-24-82.5 0-221.4 178.5-64.9 300.9z"],"vector-square":[512,512,[],"f5cb","M512 128V32c0-17.67-14.33-32-32-32h-96c-17.67 0-32 14.33-32 32H160c0-17.67-14.33-32-32-32H32C14.33 0 0 14.33 0 32v96c0 17.67 14.33 32 32 32v192c-17.67 0-32 14.33-32 32v96c0 17.67 14.33 32 32 32h96c17.67 0 32-14.33 32-32h192c0 17.67 14.33 32 32 32h96c17.67 0 32-14.33 32-32v-96c0-17.67-14.33-32-32-32V160c17.67 0 32-14.33 32-32zm-96-64h32v32h-32V64zM64 64h32v32H64V64zm32 384H64v-32h32v32zm352 0h-32v-32h32v32zm-32-96h-32c-17.67 0-32 14.33-32 32v32H160v-32c0-17.67-14.33-32-32-32H96V160h32c17.67 0 32-14.33 32-32V96h192v32c0 17.67 14.33 32 32 32h32v192z"],venus:[288,512,[],"f221","M288 176c0-79.5-64.5-144-144-144S0 96.5 0 176c0 68.5 47.9 125.9 112 140.4V368H76c-6.6 0-12 5.4-12 12v40c0 6.6 5.4 12 12 12h36v36c0 6.6 5.4 12 12 12h40c6.6 0 12-5.4 12-12v-36h36c6.6 0 12-5.4 12-12v-40c0-6.6-5.4-12-12-12h-36v-51.6c64.1-14.5 112-71.9 112-140.4zm-224 0c0-44.1 35.9-80 80-80s80 35.9 80 80-35.9 80-80 80-80-35.9-80-80z"],"venus-double":[512,512,[],"f226","M288 176c0-79.5-64.5-144-144-144S0 96.5 0 176c0 68.5 47.9 125.9 112 140.4V368H76c-6.6 0-12 5.4-12 12v40c0 6.6 5.4 12 12 12h36v36c0 6.6 5.4 12 12 12h40c6.6 0 12-5.4 12-12v-36h36c6.6 0 12-5.4 12-12v-40c0-6.6-5.4-12-12-12h-36v-51.6c64.1-14.5 112-71.9 112-140.4zm-224 0c0-44.1 35.9-80 80-80s80 35.9 80 80-35.9 80-80 80-80-35.9-80-80zm336 140.4V368h36c6.6 0 12 5.4 12 12v40c0 6.6-5.4 12-12 12h-36v36c0 6.6-5.4 12-12 12h-40c-6.6 0-12-5.4-12-12v-36h-36c-6.6 0-12-5.4-12-12v-40c0-6.6 5.4-12 12-12h36v-51.6c-21.2-4.8-40.6-14.3-57.2-27.3 14-16.7 25-36 32.1-57.1 14.5 14.8 34.7 24 57.1 24 44.1 0 80-35.9 80-80s-35.9-80-80-80c-22.3 0-42.6 9.2-57.1 24-7.1-21.1-18-40.4-32.1-57.1C303.4 43.6 334.3 32 368 32c79.5 0 144 64.5 144 144 0 68.5-47.9 125.9-112 140.4z"],"venus-mars":[576,512,[],"f228","M564 0h-79c-10.7 0-16 12.9-8.5 20.5l16.9 16.9-48.7 48.7C422.5 72.1 396.2 64 368 64c-33.7 0-64.6 11.6-89.2 30.9 14 16.7 25 36 32.1 57.1 14.5-14.8 34.7-24 57.1-24 44.1 0 80 35.9 80 80s-35.9 80-80 80c-22.3 0-42.6-9.2-57.1-24-7.1 21.1-18 40.4-32.1 57.1 24.5 19.4 55.5 30.9 89.2 30.9 79.5 0 144-64.5 144-144 0-28.2-8.1-54.5-22.1-76.7l48.7-48.7 16.9 16.9c2.4 2.4 5.4 3.5 8.4 3.5 6.2 0 12.1-4.8 12.1-12V12c0-6.6-5.4-12-12-12zM144 64C64.5 64 0 128.5 0 208c0 68.5 47.9 125.9 112 140.4V400H76c-6.6 0-12 5.4-12 12v40c0 6.6 5.4 12 12 12h36v36c0 6.6 5.4 12 12 12h40c6.6 0 12-5.4 12-12v-36h36c6.6 0 12-5.4 12-12v-40c0-6.6-5.4-12-12-12h-36v-51.6c64.1-14.6 112-71.9 112-140.4 0-79.5-64.5-144-144-144zm0 224c-44.1 0-80-35.9-80-80s35.9-80 80-80 80 35.9 80 80-35.9 80-80 80z"],vial:[480,512,[],"f492","M477.7 186.1L309.5 18.3c-3.1-3.1-8.2-3.1-11.3 0l-34 33.9c-3.1 3.1-3.1 8.2 0 11.3l11.2 11.1L33 316.5c-38.8 38.7-45.1 102-9.4 143.5 20.6 24 49.5 36 78.4 35.9 26.4 0 52.8-10 72.9-30.1l246.3-245.7 11.2 11.1c3.1 3.1 8.2 3.1 11.3 0l34-33.9c3.1-3 3.1-8.1 0-11.2zM318 256H161l148-147.7 78.5 78.3L318 256z"],vials:[640,512,[],"f493","M72 64h24v240c0 44.1 35.9 80 80 80s80-35.9 80-80V64h24c4.4 0 8-3.6 8-8V8c0-4.4-3.6-8-8-8H72c-4.4 0-8 3.6-8 8v48c0 4.4 3.6 8 8 8zm72 0h64v96h-64V64zm480 384H16c-8.8 0-16 7.2-16 16v32c0 8.8 7.2 16 16 16h608c8.8 0 16-7.2 16-16v-32c0-8.8-7.2-16-16-16zM360 64h24v240c0 44.1 35.9 80 80 80s80-35.9 80-80V64h24c4.4 0 8-3.6 8-8V8c0-4.4-3.6-8-8-8H360c-4.4 0-8 3.6-8 8v48c0 4.4 3.6 8 8 8zm72 0h64v96h-64V64z"],video:[576,512,[],"f03d","M336.2 64H47.8C21.4 64 0 85.4 0 111.8v288.4C0 426.6 21.4 448 47.8 448h288.4c26.4 0 47.8-21.4 47.8-47.8V111.8c0-26.4-21.4-47.8-47.8-47.8zm189.4 37.7L416 177.3v157.4l109.6 75.5c21.2 14.6 50.4-.3 50.4-25.8V127.5c0-25.4-29.1-40.4-50.4-25.8z"],"video-slash":[640,512,[],"f4e2","M633.8 458.1l-55-42.5c15.4-1.4 29.2-13.7 29.2-31.1v-257c0-25.5-29.1-40.4-50.4-25.8L448 177.3v137.2l-32-24.7v-178c0-26.4-21.4-47.8-47.8-47.8H123.9L45.5 3.4C38.5-2 28.5-.8 23 6.2L3.4 31.4c-5.4 7-4.2 17 2.8 22.4L42.7 82 416 370.6l178.5 138c7 5.4 17 4.2 22.5-2.8l19.6-25.3c5.5-6.9 4.2-17-2.8-22.4zM32 400.2c0 26.4 21.4 47.8 47.8 47.8h288.4c11.2 0 21.4-4 29.6-10.5L32 154.7v245.5z"],vihara:[640,512,[],"f6a7","M632.88 400.71L544 352v-64l55.16-17.69c11.79-5.9 11.79-22.72 0-28.62L480 192v-64l27.31-16.3c7.72-7.72 5.61-20.74-4.16-25.62L320 0 136.85 86.07c-9.77 4.88-11.88 17.9-4.16 25.62L160 128v64L40.84 241.69c-11.79 5.9-11.79 22.72 0 28.62L96 288v64L7.12 400.71c-5.42 3.62-7.7 9.63-7 15.29.62 5.01 3.57 9.75 8.72 12.33L64 448v48c0 8.84 7.16 16 16 16h32c8.84 0 16-7.16 16-16v-48h160v48c0 8.84 7.16 16 16 16h32c8.84 0 16-7.16 16-16v-48h160v48c0 8.84 7.16 16 16 16h32c8.84 0 16-7.16 16-16v-48l55.15-19.67c5.16-2.58 8.1-7.32 8.72-12.33.71-5.67-1.57-11.68-6.99-15.29zM224 128h192v64H224v-64zm-64 224v-64h320v64H160z"],voicemail:[640,512,[],"f897","M496 128a144 144 0 0 0-119.74 224H263.74A144 144 0 1 0 144 416h352a144 144 0 0 0 0-288zM64 272a80 80 0 1 1 80 80 80 80 0 0 1-80-80zm432 80a80 80 0 1 1 80-80 80 80 0 0 1-80 80z"],"volleyball-ball":[512,512,[],"f45f","M231.39 243.48a285.56 285.56 0 0 0-22.7-105.7c-90.8 42.4-157.5 122.4-180.3 216.8a249 249 0 0 0 56.9 81.1 333.87 333.87 0 0 1 146.1-192.2zm-36.9-134.4a284.23 284.23 0 0 0-57.4-70.7c-91 49.8-144.8 152.9-125 262.2 33.4-83.1 98.4-152 182.4-191.5zm187.6 165.1c8.6-99.8-27.3-197.5-97.5-264.4-14.7-1.7-51.6-5.5-98.9 8.5A333.87 333.87 0 0 1 279.19 241a285 285 0 0 0 102.9 33.18zm-124.7 9.5a286.33 286.33 0 0 0-80.2 72.6c82 57.3 184.5 75.1 277.5 47.8a247.15 247.15 0 0 0 42.2-89.9 336.1 336.1 0 0 1-80.9 10.4c-54.6-.1-108.9-14.1-158.6-40.9zm-98.3 99.7c-15.2 26-25.7 54.4-32.1 84.2a247.07 247.07 0 0 0 289-22.1c-112.9 16.1-203.3-24.8-256.9-62.1zm180.3-360.6c55.3 70.4 82.5 161.2 74.6 253.6a286.59 286.59 0 0 0 89.7-14.2c0-2 .3-4 .3-6 0-107.8-68.7-199.1-164.6-233.4z"],"volume-down":[384,512,[],"f027","M215.03 72.04L126.06 161H24c-13.26 0-24 10.74-24 24v144c0 13.25 10.74 24 24 24h102.06l88.97 88.95c15.03 15.03 40.97 4.47 40.97-16.97V89.02c0-21.47-25.96-31.98-40.97-16.98zm123.2 108.08c-11.58-6.33-26.19-2.16-32.61 9.45-6.39 11.61-2.16 26.2 9.45 32.61C327.98 229.28 336 242.62 336 257c0 14.38-8.02 27.72-20.92 34.81-11.61 6.41-15.84 21-9.45 32.61 6.43 11.66 21.05 15.8 32.61 9.45 28.23-15.55 45.77-45 45.77-76.88s-17.54-61.32-45.78-76.87z"],"volume-mute":[512,512,[],"f6a9","M215.03 71.05L126.06 160H24c-13.26 0-24 10.74-24 24v144c0 13.25 10.74 24 24 24h102.06l88.97 88.95c15.03 15.03 40.97 4.47 40.97-16.97V88.02c0-21.46-25.96-31.98-40.97-16.97zM461.64 256l45.64-45.64c6.3-6.3 6.3-16.52 0-22.82l-22.82-22.82c-6.3-6.3-16.52-6.3-22.82 0L416 210.36l-45.64-45.64c-6.3-6.3-16.52-6.3-22.82 0l-22.82 22.82c-6.3 6.3-6.3 16.52 0 22.82L370.36 256l-45.63 45.63c-6.3 6.3-6.3 16.52 0 22.82l22.82 22.82c6.3 6.3 16.52 6.3 22.82 0L416 301.64l45.64 45.64c6.3 6.3 16.52 6.3 22.82 0l22.82-22.82c6.3-6.3 6.3-16.52 0-22.82L461.64 256z"],"volume-off":[256,512,[],"f026","M215 71l-89 89H24a24 24 0 0 0-24 24v144a24 24 0 0 0 24 24h102.06L215 441c15 15 41 4.47 41-17V88c0-21.47-26-32-41-17z"],"volume-up":[576,512,[],"f028","M215.03 71.05L126.06 160H24c-13.26 0-24 10.74-24 24v144c0 13.25 10.74 24 24 24h102.06l88.97 88.95c15.03 15.03 40.97 4.47 40.97-16.97V88.02c0-21.46-25.96-31.98-40.97-16.97zm233.32-51.08c-11.17-7.33-26.18-4.24-33.51 6.95-7.34 11.17-4.22 26.18 6.95 33.51 66.27 43.49 105.82 116.6 105.82 195.58 0 78.98-39.55 152.09-105.82 195.58-11.17 7.32-14.29 22.34-6.95 33.5 7.04 10.71 21.93 14.56 33.51 6.95C528.27 439.58 576 351.33 576 256S528.27 72.43 448.35 19.97zM480 256c0-63.53-32.06-121.94-85.77-156.24-11.19-7.14-26.03-3.82-33.12 7.46s-3.78 26.21 7.41 33.36C408.27 165.97 432 209.11 432 256s-23.73 90.03-63.48 115.42c-11.19 7.14-14.5 22.07-7.41 33.36 6.51 10.36 21.12 15.14 33.12 7.46C447.94 377.94 480 319.54 480 256zm-141.77-76.87c-11.58-6.33-26.19-2.16-32.61 9.45-6.39 11.61-2.16 26.2 9.45 32.61C327.98 228.28 336 241.63 336 256c0 14.38-8.02 27.72-20.92 34.81-11.61 6.41-15.84 21-9.45 32.61 6.43 11.66 21.05 15.8 32.61 9.45 28.23-15.55 45.77-45 45.77-76.88s-17.54-61.32-45.78-76.86z"],"vote-yea":[640,512,[],"f772","M608 320h-64v64h22.4c5.3 0 9.6 3.6 9.6 8v16c0 4.4-4.3 8-9.6 8H73.6c-5.3 0-9.6-3.6-9.6-8v-16c0-4.4 4.3-8 9.6-8H96v-64H32c-17.7 0-32 14.3-32 32v96c0 17.7 14.3 32 32 32h576c17.7 0 32-14.3 32-32v-96c0-17.7-14.3-32-32-32zm-96 64V64.3c0-17.9-14.5-32.3-32.3-32.3H160.4C142.5 32 128 46.5 128 64.3V384h384zM211.2 202l25.5-25.3c4.2-4.2 11-4.2 15.2.1l41.3 41.6 95.2-94.4c4.2-4.2 11-4.2 15.2.1l25.3 25.5c4.2 4.2 4.2 11-.1 15.2L300.5 292c-4.2 4.2-11 4.2-15.2-.1l-74.1-74.7c-4.3-4.2-4.2-11 0-15.2z"],"vr-cardboard":[640,512,[],"f729","M608 64H32C14.33 64 0 78.33 0 96v320c0 17.67 14.33 32 32 32h160.22c25.19 0 48.03-14.77 58.36-37.74l27.74-61.64C286.21 331.08 302.35 320 320 320s33.79 11.08 41.68 28.62l27.74 61.64C399.75 433.23 422.6 448 447.78 448H608c17.67 0 32-14.33 32-32V96c0-17.67-14.33-32-32-32zM160 304c-35.35 0-64-28.65-64-64s28.65-64 64-64 64 28.65 64 64-28.65 64-64 64zm320 0c-35.35 0-64-28.65-64-64s28.65-64 64-64 64 28.65 64 64-28.65 64-64 64z"],walking:[320,512,[],"f554","M208 96c26.5 0 48-21.5 48-48S234.5 0 208 0s-48 21.5-48 48 21.5 48 48 48zm94.5 149.1l-23.3-11.8-9.7-29.4c-14.7-44.6-55.7-75.8-102.2-75.9-36-.1-55.9 10.1-93.3 25.2-21.6 8.7-39.3 25.2-49.7 46.2L17.6 213c-7.8 15.8-1.5 35 14.2 42.9 15.6 7.9 34.6 1.5 42.5-14.3L81 228c3.5-7 9.3-12.5 16.5-15.4l26.8-10.8-15.2 60.7c-5.2 20.8.4 42.9 14.9 58.8l59.9 65.4c7.2 7.9 12.3 17.4 14.9 27.7l18.3 73.3c4.3 17.1 21.7 27.6 38.8 23.3 17.1-4.3 27.6-21.7 23.3-38.8l-22.2-89c-2.6-10.3-7.7-19.9-14.9-27.7l-45.5-49.7 17.2-68.7 5.5 16.5c5.3 16.1 16.7 29.4 31.7 37l23.3 11.8c15.6 7.9 34.6 1.5 42.5-14.3 7.7-15.7 1.4-35.1-14.3-43zM73.6 385.8c-3.2 8.1-8 15.4-14.2 21.5l-50 50.1c-12.5 12.5-12.5 32.8 0 45.3s32.7 12.5 45.2 0l59.4-59.4c6.1-6.1 10.9-13.4 14.2-21.5l13.5-33.8c-55.3-60.3-38.7-41.8-47.4-53.7l-20.7 51.5z"],wallet:[512,512,[],"f555","M461.2 128H80c-8.84 0-16-7.16-16-16s7.16-16 16-16h384c8.84 0 16-7.16 16-16 0-26.51-21.49-48-48-48H64C28.65 32 0 60.65 0 96v320c0 35.35 28.65 64 64 64h397.2c28.02 0 50.8-21.53 50.8-48V176c0-26.47-22.78-48-50.8-48zM416 336c-17.67 0-32-14.33-32-32s14.33-32 32-32 32 14.33 32 32-14.33 32-32 32z"],warehouse:[640,512,[],"f494","M504 352H136.4c-4.4 0-8 3.6-8 8l-.1 48c0 4.4 3.6 8 8 8H504c4.4 0 8-3.6 8-8v-48c0-4.4-3.6-8-8-8zm0 96H136.1c-4.4 0-8 3.6-8 8l-.1 48c0 4.4 3.6 8 8 8h368c4.4 0 8-3.6 8-8v-48c0-4.4-3.6-8-8-8zm0-192H136.6c-4.4 0-8 3.6-8 8l-.1 48c0 4.4 3.6 8 8 8H504c4.4 0 8-3.6 8-8v-48c0-4.4-3.6-8-8-8zm106.5-139L338.4 3.7a48.15 48.15 0 0 0-36.9 0L29.5 117C11.7 124.5 0 141.9 0 161.3V504c0 4.4 3.6 8 8 8h80c4.4 0 8-3.6 8-8V256c0-17.6 14.6-32 32.6-32h382.8c18 0 32.6 14.4 32.6 32v248c0 4.4 3.6 8 8 8h80c4.4 0 8-3.6 8-8V161.3c0-19.4-11.7-36.8-29.5-44.3z"],water:[576,512,[],"f773","M562.1 383.9c-21.5-2.4-42.1-10.5-57.9-22.9-14.1-11.1-34.2-11.3-48.2 0-37.9 30.4-107.2 30.4-145.7-1.5-13.5-11.2-33-9.1-46.7 1.8-38 30.1-106.9 30-145.2-1.7-13.5-11.2-33.3-8.9-47.1 2-15.5 12.2-36 20.1-57.7 22.4-7.9.8-13.6 7.8-13.6 15.7v32.2c0 9.1 7.6 16.8 16.7 16 28.8-2.5 56.1-11.4 79.4-25.9 56.5 34.6 137 34.1 192 0 56.5 34.6 137 34.1 192 0 23.3 14.2 50.9 23.3 79.1 25.8 9.1.8 16.7-6.9 16.7-16v-31.6c.1-8-5.7-15.4-13.8-16.3zm0-144c-21.5-2.4-42.1-10.5-57.9-22.9-14.1-11.1-34.2-11.3-48.2 0-37.9 30.4-107.2 30.4-145.7-1.5-13.5-11.2-33-9.1-46.7 1.8-38 30.1-106.9 30-145.2-1.7-13.5-11.2-33.3-8.9-47.1 2-15.5 12.2-36 20.1-57.7 22.4-7.9.8-13.6 7.8-13.6 15.7v32.2c0 9.1 7.6 16.8 16.7 16 28.8-2.5 56.1-11.4 79.4-25.9 56.5 34.6 137 34.1 192 0 56.5 34.6 137 34.1 192 0 23.3 14.2 50.9 23.3 79.1 25.8 9.1.8 16.7-6.9 16.7-16v-31.6c.1-8-5.7-15.4-13.8-16.3zm0-144C540.6 93.4 520 85.4 504.2 73 490.1 61.9 470 61.7 456 73c-37.9 30.4-107.2 30.4-145.7-1.5-13.5-11.2-33-9.1-46.7 1.8-38 30.1-106.9 30-145.2-1.7-13.5-11.2-33.3-8.9-47.1 2-15.5 12.2-36 20.1-57.7 22.4-7.9.8-13.6 7.8-13.6 15.7v32.2c0 9.1 7.6 16.8 16.7 16 28.8-2.5 56.1-11.4 79.4-25.9 56.5 34.6 137 34.1 192 0 56.5 34.6 137 34.1 192 0 23.3 14.2 50.9 23.3 79.1 25.8 9.1.8 16.7-6.9 16.7-16v-31.6c.1-8-5.7-15.4-13.8-16.3z"],"wave-square":[640,512,[],"f83e","M476 480H324a36 36 0 0 1-36-36V96h-96v156a36 36 0 0 1-36 36H16a16 16 0 0 1-16-16v-32a16 16 0 0 1 16-16h112V68a36 36 0 0 1 36-36h152a36 36 0 0 1 36 36v348h96V260a36 36 0 0 1 36-36h140a16 16 0 0 1 16 16v32a16 16 0 0 1-16 16H512v156a36 36 0 0 1-36 36z"],weight:[512,512,[],"f496","M448 64h-25.98C438.44 92.28 448 125.01 448 160c0 105.87-86.13 192-192 192S64 265.87 64 160c0-34.99 9.56-67.72 25.98-96H64C28.71 64 0 92.71 0 128v320c0 35.29 28.71 64 64 64h384c35.29 0 64-28.71 64-64V128c0-35.29-28.71-64-64-64zM256 320c88.37 0 160-71.63 160-160S344.37 0 256 0 96 71.63 96 160s71.63 160 160 160zm-.3-151.94l33.58-78.36c3.5-8.17 12.94-11.92 21.03-8.41 8.12 3.48 11.88 12.89 8.41 21l-33.67 78.55C291.73 188 296 197.45 296 208c0 22.09-17.91 40-40 40s-40-17.91-40-40c0-21.98 17.76-39.77 39.7-39.94z"],"weight-hanging":[512,512,[],"f5cd","M510.28 445.86l-73.03-292.13c-3.8-15.19-16.44-25.72-30.87-25.72h-60.25c3.57-10.05 5.88-20.72 5.88-32 0-53.02-42.98-96-96-96s-96 42.98-96 96c0 11.28 2.3 21.95 5.88 32h-60.25c-14.43 0-27.08 10.54-30.87 25.72L1.72 445.86C-6.61 479.17 16.38 512 48.03 512h415.95c31.64 0 54.63-32.83 46.3-66.14zM256 128c-17.64 0-32-14.36-32-32s14.36-32 32-32 32 14.36 32 32-14.36 32-32 32z"],wheelchair:[512,512,[],"f193","M496.101 385.669l14.227 28.663c3.929 7.915.697 17.516-7.218 21.445l-65.465 32.886c-16.049 7.967-35.556 1.194-43.189-15.055L331.679 320H192c-15.925 0-29.426-11.71-31.679-27.475C126.433 55.308 128.38 70.044 128 64c0-36.358 30.318-65.635 67.052-63.929 33.271 1.545 60.048 28.905 60.925 62.201.868 32.933-23.152 60.423-54.608 65.039l4.67 32.69H336c8.837 0 16 7.163 16 16v32c0 8.837-7.163 16-16 16H215.182l4.572 32H352a32 32 0 0 1 28.962 18.392L438.477 396.8l36.178-18.349c7.915-3.929 17.517-.697 21.446 7.218zM311.358 352h-24.506c-7.788 54.204-54.528 96-110.852 96-61.757 0-112-50.243-112-112 0-41.505 22.694-77.809 56.324-97.156-3.712-25.965-6.844-47.86-9.488-66.333C45.956 198.464 0 261.963 0 336c0 97.047 78.953 176 176 176 71.87 0 133.806-43.308 161.11-105.192L311.358 352z"],wifi:[640,512,[],"f1eb","M634.91 154.88C457.74-8.99 182.19-8.93 5.09 154.88c-6.66 6.16-6.79 16.59-.35 22.98l34.24 33.97c6.14 6.1 16.02 6.23 22.4.38 145.92-133.68 371.3-133.71 517.25 0 6.38 5.85 16.26 5.71 22.4-.38l34.24-33.97c6.43-6.39 6.3-16.82-.36-22.98zM320 352c-35.35 0-64 28.65-64 64s28.65 64 64 64 64-28.65 64-64-28.65-64-64-64zm202.67-83.59c-115.26-101.93-290.21-101.82-405.34 0-6.9 6.1-7.12 16.69-.57 23.15l34.44 33.99c6 5.92 15.66 6.32 22.05.8 83.95-72.57 209.74-72.41 293.49 0 6.39 5.52 16.05 5.13 22.05-.8l34.44-33.99c6.56-6.46 6.33-17.06-.56-23.15z"],wind:[512,512,[],"f72e","M156.7 256H16c-8.8 0-16 7.2-16 16v32c0 8.8 7.2 16 16 16h142.2c15.9 0 30.8 10.9 33.4 26.6 3.3 20-12.1 37.4-31.6 37.4-14.1 0-26.1-9.2-30.4-21.9-2.1-6.3-8.6-10.1-15.2-10.1H81.6c-9.8 0-17.7 8.8-15.9 18.4 8.6 44.1 47.6 77.6 94.2 77.6 57.1 0 102.7-50.1 95.2-108.6C249 291 205.4 256 156.7 256zM16 224h336c59.7 0 106.8-54.8 93.8-116.7-7.6-36.2-36.9-65.5-73.1-73.1-55.4-11.6-105.1 24.9-114.9 75.5-1.9 9.6 6.1 18.3 15.8 18.3h32.8c6.7 0 13.1-3.8 15.2-10.1C325.9 105.2 337.9 96 352 96c19.4 0 34.9 17.4 31.6 37.4-2.6 15.7-17.4 26.6-33.4 26.6H16c-8.8 0-16 7.2-16 16v32c0 8.8 7.2 16 16 16zm384 32H243.7c19.3 16.6 33.2 38.8 39.8 64H400c26.5 0 48 21.5 48 48s-21.5 48-48 48c-17.9 0-33.3-9.9-41.6-24.4-2.9-5-8.7-7.6-14.5-7.6h-33.8c-10.9 0-19 10.8-15.3 21.1 17.8 50.6 70.5 84.8 129.4 72.3 41.2-8.7 75.1-41.6 84.7-82.7C526 321.5 470.5 256 400 256z"],"window-close":[512,512,[],"f410","M464 32H48C21.5 32 0 53.5 0 80v352c0 26.5 21.5 48 48 48h416c26.5 0 48-21.5 48-48V80c0-26.5-21.5-48-48-48zm-83.6 290.5c4.8 4.8 4.8 12.6 0 17.4l-40.5 40.5c-4.8 4.8-12.6 4.8-17.4 0L256 313.3l-66.5 67.1c-4.8 4.8-12.6 4.8-17.4 0l-40.5-40.5c-4.8-4.8-4.8-12.6 0-17.4l67.1-66.5-67.1-66.5c-4.8-4.8-4.8-12.6 0-17.4l40.5-40.5c4.8-4.8 12.6-4.8 17.4 0l66.5 67.1 66.5-67.1c4.8-4.8 12.6-4.8 17.4 0l40.5 40.5c4.8 4.8 4.8 12.6 0 17.4L313.3 256l67.1 66.5z"],"window-maximize":[512,512,[],"f2d0","M464 32H48C21.5 32 0 53.5 0 80v352c0 26.5 21.5 48 48 48h416c26.5 0 48-21.5 48-48V80c0-26.5-21.5-48-48-48zm-16 160H64v-84c0-6.6 5.4-12 12-12h360c6.6 0 12 5.4 12 12v84z"],"window-minimize":[512,512,[],"f2d1","M464 352H48c-26.5 0-48 21.5-48 48v32c0 26.5 21.5 48 48 48h416c26.5 0 48-21.5 48-48v-32c0-26.5-21.5-48-48-48z"],"window-restore":[512,512,[],"f2d2","M512 48v288c0 26.5-21.5 48-48 48h-48V176c0-44.1-35.9-80-80-80H128V48c0-26.5 21.5-48 48-48h288c26.5 0 48 21.5 48 48zM384 176v288c0 26.5-21.5 48-48 48H48c-26.5 0-48-21.5-48-48V176c0-26.5 21.5-48 48-48h288c26.5 0 48 21.5 48 48zm-68 28c0-6.6-5.4-12-12-12H76c-6.6 0-12 5.4-12 12v52h252v-52z"],"wine-bottle":[512,512,[],"f72f","M507.31 72.57L439.43 4.69c-6.25-6.25-16.38-6.25-22.63 0l-22.63 22.63c-6.25 6.25-6.25 16.38 0 22.63l-76.67 76.67c-46.58-19.7-102.4-10.73-140.37 27.23L18.75 312.23c-24.99 24.99-24.99 65.52 0 90.51l90.51 90.51c24.99 24.99 65.52 24.99 90.51 0l158.39-158.39c37.96-37.96 46.93-93.79 27.23-140.37l76.67-76.67c6.25 6.25 16.38 6.25 22.63 0l22.63-22.63c6.24-6.24 6.24-16.37-.01-22.62zM179.22 423.29l-90.51-90.51 122.04-122.04 90.51 90.51-122.04 122.04z"],"wine-glass":[288,512,[],"f4e3","M216 464h-40V346.81c68.47-15.89 118.05-79.91 111.4-154.16l-15.95-178.1C270.71 6.31 263.9 0 255.74 0H32.26c-8.15 0-14.97 6.31-15.7 14.55L.6 192.66C-6.05 266.91 43.53 330.93 112 346.82V464H72c-22.09 0-40 17.91-40 40 0 4.42 3.58 8 8 8h208c4.42 0 8-3.58 8-8 0-22.09-17.91-40-40-40z"],"wine-glass-alt":[288,512,[],"f5ce","M216 464h-40V346.81c68.47-15.89 118.05-79.91 111.4-154.16l-15.95-178.1C270.71 6.31 263.9 0 255.74 0H32.26c-8.15 0-14.97 6.31-15.7 14.55L.6 192.66C-6.05 266.91 43.53 330.93 112 346.82V464H72c-22.09 0-40 17.91-40 40 0 4.42 3.58 8 8 8h208c4.42 0 8-3.58 8-8 0-22.09-17.91-40-40-40zM61.75 48h164.5l7.17 80H54.58l7.17-80z"],"won-sign":[576,512,[],"f159","M564 192c6.6 0 12-5.4 12-12v-40c0-6.6-5.4-12-12-12h-48l18.6-80.6c1.7-7.5-4-14.7-11.7-14.7h-46.1c-5.7 0-10.6 4-11.7 9.5L450.7 128H340.8l-19.7-86c-1.3-5.5-6.1-9.3-11.7-9.3h-44c-5.6 0-10.4 3.8-11.7 9.3l-20 86H125l-17.5-85.7c-1.1-5.6-6.1-9.6-11.8-9.6H53.6c-7.7 0-13.4 7.1-11.7 14.6L60 128H12c-6.6 0-12 5.4-12 12v40c0 6.6 5.4 12 12 12h62.3l7.2 32H12c-6.6 0-12 5.4-12 12v40c0 6.6 5.4 12 12 12h83.9l40.9 182.6c1.2 5.5 6.1 9.4 11.7 9.4h56.8c5.6 0 10.4-3.9 11.7-9.3L259.3 288h55.1l42.4 182.7c1.3 5.4 6.1 9.3 11.7 9.3h56.8c5.6 0 10.4-3.9 11.7-9.3L479.1 288H564c6.6 0 12-5.4 12-12v-40c0-6.6-5.4-12-12-12h-70.1l7.4-32zM183.8 342c-6.2 25.8-6.8 47.2-7.3 47.2h-1.1s-1.7-22-6.8-47.2l-11-54h38.8zm27.5-118h-66.8l-6.5-32h80.8zm62.9 0l2-8.6c1.9-8 3.5-16 4.8-23.4h11.8c1.3 7.4 2.9 15.4 4.8 23.4l2 8.6zm130.9 118c-5.1 25.2-6.8 47.2-6.8 47.2h-1.1c-.6 0-1.1-21.4-7.3-47.2l-12.4-54h39.1zm25.2-118h-67.4l-7.3-32h81.6z"],wrench:[512,512,[],"f0ad","M507.73 109.1c-2.24-9.03-13.54-12.09-20.12-5.51l-74.36 74.36-67.88-11.31-11.31-67.88 74.36-74.36c6.62-6.62 3.43-17.9-5.66-20.16-47.38-11.74-99.55.91-136.58 37.93-39.64 39.64-50.55 97.1-34.05 147.2L18.74 402.76c-24.99 24.99-24.99 65.51 0 90.5 24.99 24.99 65.51 24.99 90.5 0l213.21-213.21c50.12 16.71 107.47 5.68 147.37-34.22 37.07-37.07 49.7-89.32 37.91-136.73zM64 472c-13.25 0-24-10.75-24-24 0-13.26 10.75-24 24-24s24 10.74 24 24c0 13.25-10.75 24-24 24z"],"x-ray":[640,512,[],"f497","M240 384c-8.8 0-16 7.2-16 16s7.2 16 16 16 16-7.2 16-16-7.2-16-16-16zm160 32c8.8 0 16-7.2 16-16s-7.2-16-16-16-16 7.2-16 16 7.2 16 16 16zM624 0H16C7.2 0 0 7.2 0 16v32c0 8.8 7.2 16 16 16h608c8.8 0 16-7.2 16-16V16c0-8.8-7.2-16-16-16zm0 448h-48V96H64v352H16c-8.8 0-16 7.2-16 16v32c0 8.8 7.2 16 16 16h608c8.8 0 16-7.2 16-16v-32c0-8.8-7.2-16-16-16zM480 248c0 4.4-3.6 8-8 8H336v32h104c4.4 0 8 3.6 8 8v16c0 4.4-3.6 8-8 8H336v32h64c26.5 0 48 21.5 48 48s-21.5 48-48 48-48-21.5-48-48v-16h-64v16c0 26.5-21.5 48-48 48s-48-21.5-48-48 21.5-48 48-48h64v-32H200c-4.4 0-8-3.6-8-8v-16c0-4.4 3.6-8 8-8h104v-32H168c-4.4 0-8-3.6-8-8v-16c0-4.4 3.6-8 8-8h136v-32H200c-4.4 0-8-3.6-8-8v-16c0-4.4 3.6-8 8-8h104v-24c0-4.4 3.6-8 8-8h16c4.4 0 8 3.6 8 8v24h104c4.4 0 8 3.6 8 8v16c0 4.4-3.6 8-8 8H336v32h136c4.4 0 8 3.6 8 8v16z"],"yen-sign":[384,512,[],"f157","M351.2 32h-65.3c-4.6 0-8.8 2.6-10.8 6.7l-55.4 113.2c-14.5 34.7-27.1 71.9-27.1 71.9h-1.3s-12.6-37.2-27.1-71.9L108.8 38.7c-2-4.1-6.2-6.7-10.8-6.7H32.8c-9.1 0-14.8 9.7-10.6 17.6L102.3 200H44c-6.6 0-12 5.4-12 12v32c0 6.6 5.4 12 12 12h88.2l19.8 37.2V320H44c-6.6 0-12 5.4-12 12v32c0 6.6 5.4 12 12 12h108v92c0 6.6 5.4 12 12 12h56c6.6 0 12-5.4 12-12v-92h108c6.6 0 12-5.4 12-12v-32c0-6.6-5.4-12-12-12H232v-26.8l19.8-37.2H340c6.6 0 12-5.4 12-12v-32c0-6.6-5.4-12-12-12h-58.3l80.1-150.4c4.3-7.9-1.5-17.6-10.6-17.6z"],"yin-yang":[496,512,[],"f6ad","M248 8C111.03 8 0 119.03 0 256s111.03 248 248 248 248-111.03 248-248S384.97 8 248 8zm0 376c-17.67 0-32-14.33-32-32s14.33-32 32-32 32 14.33 32 32-14.33 32-32 32zm0-128c-53.02 0-96 42.98-96 96s42.98 96 96 96c-106.04 0-192-85.96-192-192S141.96 64 248 64c53.02 0 96 42.98 96 96s-42.98 96-96 96zm0-128c-17.67 0-32 14.33-32 32s14.33 32 32 32 32-14.33 32-32-14.33-32-32-32z"]};!function(c){try{c()}catch(c){if(!s)throw c}}(function(){M("fas",f)})}(),function(){"use strict";function a(c){return(a="function"==typeof Symbol&&"symbol"==typeof Symbol.iterator?function(c){return typeof c}:function(c){return c&&"function"==typeof Symbol&&c.constructor===Symbol&&c!==Symbol.prototype?"symbol":typeof c})(c)}function v(c,l){for(var h=0;h<l.length;h++){var z=l[h];z.enumerable=z.enumerable||!1,z.configurable=!0,"value"in z&&(z.writable=!0),Object.defineProperty(c,z.key,z)}}function X(v){for(var c=1;c<arguments.length;c++){var a=null!=arguments[c]?arguments[c]:{},l=Object.keys(a);"function"==typeof Object.getOwnPropertySymbols&&(l=l.concat(Object.getOwnPropertySymbols(a).filter(function(c){return Object.getOwnPropertyDescriptor(a,c).enumerable}))),l.forEach(function(c){var l,h,z;l=v,z=a[h=c],h in l?Object.defineProperty(l,h,{value:z,enumerable:!0,configurable:!0,writable:!0}):l[h]=z})}return v}function r(c,l){return function(c){if(Array.isArray(c))return c}(c)||function(c,l){var h=[],z=!0,v=!1,a=void 0;try{for(var m,s=c[Symbol.iterator]();!(z=(m=s.next()).done)&&(h.push(m.value),!l||h.length!==l);z=!0);}catch(c){v=!0,a=c}finally{try{z||null==s.return||s.return()}finally{if(v)throw a}}return h}(c,l)||function(){throw new TypeError("Invalid attempt to destructure non-iterable instance")}()}function n(c){return function(c){if(Array.isArray(c)){for(var l=0,h=new Array(c.length);l<c.length;l++)h[l]=c[l];return h}}(c)||function(c){if(Symbol.iterator in Object(c)||"[object Arguments]"===Object.prototype.toString.call(c))return Array.from(c)}(c)||function(){throw new TypeError("Invalid attempt to spread non-iterable instance")}()}var c=function(){},l={},h={},z=null,m={mark:c,measure:c};try{"undefined"!=typeof window&&(l=window),"undefined"!=typeof document&&(h=document),"undefined"!=typeof MutationObserver&&(z=MutationObserver),"undefined"!=typeof performance&&(m=performance)}catch(c){}var s=(l.navigator||{}).userAgent,e=void 0===s?"":s,o=l,V=h,t=z,M=m,f=!!o.document,H=!!V.documentElement&&!!V.head&&"function"==typeof V.addEventListener&&"function"==typeof V.createElement,p=~e.indexOf("MSIE")||~e.indexOf("Trident/"),i="___FONT_AWESOME___",b=16,C="fa",L="svg-inline--fa",B="data-fa-i2svg",u="data-fa-pseudo-element",d="data-fa-pseudo-element-pending",g="data-prefix",A="data-icon",S="fontawesome-i2svg",y="async",w=["HTML","HEAD","STYLE","SCRIPT"],k=function(){try{return!0}catch(c){return!1}}(),x={fas:"solid",far:"regular",fal:"light",fad:"duotone",fab:"brands",fa:"solid"},Z={solid:"fas",regular:"far",light:"fal",duotone:"fad",brands:"fab"},q="fa-layers-text",O=/Font Awesome 5 (Solid|Regular|Light|Duotone|Brands|Free|Pro)/,j={900:"fas",400:"far",normal:"far",300:"fal"},P=[1,2,3,4,5,6,7,8,9,10],E=P.concat([11,12,13,14,15,16,17,18,19,20]),N=["class","data-prefix","data-icon","data-fa-transform","data-fa-mask"],_={GROUP:"group",SWAP_OPACITY:"swap-opacity",PRIMARY:"primary",SECONDARY:"secondary"},T=["xs","sm","lg","fw","ul","li","border","pull-left","pull-right","spin","pulse","rotate-90","rotate-180","rotate-270","flip-horizontal","flip-vertical","flip-both","stack","stack-1x","stack-2x","inverse","layers","layers-text","layers-counter",_.GROUP,_.SWAP_OPACITY,_.PRIMARY,_.SECONDARY].concat(P.map(function(c){return"".concat(c,"x")})).concat(E.map(function(c){return"w-".concat(c)})),R=o.FontAwesomeConfig||{};if(V&&"function"==typeof V.querySelector){[["data-family-prefix","familyPrefix"],["data-replacement-class","replacementClass"],["data-auto-replace-svg","autoReplaceSvg"],["data-auto-add-css","autoAddCss"],["data-auto-a11y","autoA11y"],["data-search-pseudo-elements","searchPseudoElements"],["data-observe-mutations","observeMutations"],["data-mutate-approach","mutateApproach"],["data-keep-original-source","keepOriginalSource"],["data-measure-performance","measurePerformance"],["data-show-missing-icons","showMissingIcons"]].forEach(function(c){var l,h=r(c,2),z=h[0],v=h[1],a=""===(l=function(c){var l=V.querySelector("script["+c+"]");if(l)return l.getAttribute(c)}(z))||"false"!==l&&("true"===l||l);null!=a&&(R[v]=a)})}var F=X({},{familyPrefix:C,replacementClass:L,autoReplaceSvg:!0,autoAddCss:!0,autoA11y:!0,searchPseudoElements:!1,observeMutations:!0,mutateApproach:"async",keepOriginalSource:!0,measurePerformance:!1,showMissingIcons:!0},R);F.autoReplaceSvg||(F.observeMutations=!1);var K=X({},F);o.FontAwesomeConfig=K;var I=o||{};I[i]||(I[i]={}),I[i].styles||(I[i].styles={}),I[i].hooks||(I[i].hooks={}),I[i].shims||(I[i].shims=[]);var Y=I[i],D=[],W=!1;function U(c){H&&(W?setTimeout(c,0):D.push(c))}H&&((W=(V.documentElement.doScroll?/^loaded|^c/:/^loaded|^i|^c/).test(V.readyState))||V.addEventListener("DOMContentLoaded",function c(){V.removeEventListener("DOMContentLoaded",c),W=1,D.map(function(c){return c()})}));var Q,G="pending",J="settled",$="fulfilled",cc="rejected",lc=function(){},hc="undefined"!=typeof global&&void 0!==global.process&&"function"==typeof global.process.emit,zc="undefined"==typeof setImmediate?setTimeout:setImmediate,vc=[];function ac(){for(var c=0;c<vc.length;c++)vc[c][0](vc[c][1]);Q=!(vc=[])}function mc(c,l){vc.push([c,l]),Q||(Q=!0,zc(ac,0))}function sc(c){var l=c.owner,h=l._state,z=l._data,v=c[h],a=c.then;if("function"==typeof v){h=$;try{z=v(z)}catch(c){fc(a,c)}}ec(a,z)||(h===$&&tc(a,z),h===cc&&fc(a,z))}function ec(l,h){var z;try{if(l===h)throw new TypeError("A promises callback cannot return that same promise.");if(h&&("function"==typeof h||"object"===a(h))){var c=h.then;if("function"==typeof c)return c.call(h,function(c){z||(z=!0,h===c?Mc(l,c):tc(l,c))},function(c){z||(z=!0,fc(l,c))}),!0}}catch(c){return z||fc(l,c),!0}return!1}function tc(c,l){c!==l&&ec(c,l)||Mc(c,l)}function Mc(c,l){c._state===G&&(c._state=J,c._data=l,mc(nc,c))}function fc(c,l){c._state===G&&(c._state=J,c._data=l,mc(Hc,c))}function rc(c){c._then=c._then.forEach(sc)}function nc(c){c._state=$,rc(c)}function Hc(c){c._state=cc,rc(c),!c._handled&&hc&&global.process.emit("unhandledRejection",c._data,c)}function ic(c){global.process.emit("rejectionHandled",c)}function oc(c){if("function"!=typeof c)throw new TypeError("Promise resolver "+c+" is not a function");if(this instanceof oc==!1)throw new TypeError("Failed to construct 'Promise': Please use the 'new' operator, this object constructor cannot be called as a function.");this._then=[],function(c,l){function h(c){fc(l,c)}try{c(function(c){tc(l,c)},h)}catch(c){h(c)}}(c,this)}oc.prototype={constructor:oc,_state:G,_then:null,_data:void 0,_handled:!1,then:function(c,l){var h={owner:this,then:new this.constructor(lc),fulfilled:c,rejected:l};return!l&&!c||this._handled||(this._handled=!0,this._state===cc&&hc&&mc(ic,this)),this._state===$||this._state===cc?mc(sc,h):this._then.push(h),h.then},catch:function(c){return this.then(null,c)}},oc.all=function(s){if(!Array.isArray(s))throw new TypeError("You must pass an array to Promise.all().");return new oc(function(h,c){var z=[],v=0;function l(l){return v++,function(c){z[l]=c,--v||h(z)}}for(var a,m=0;m<s.length;m++)(a=s[m])&&"function"==typeof a.then?a.then(l(m),c):z[m]=a;v||h(z)})},oc.race=function(v){if(!Array.isArray(v))throw new TypeError("You must pass an array to Promise.race().");return new oc(function(c,l){for(var h,z=0;z<v.length;z++)(h=v[z])&&"function"==typeof h.then?h.then(c,l):c(h)})},oc.resolve=function(l){return l&&"object"===a(l)&&l.constructor===oc?l:new oc(function(c){c(l)})},oc.reject=function(h){return new oc(function(c,l){l(h)})};var Vc="function"==typeof Promise?Promise:oc,Cc=b,Lc={size:16,x:0,y:0,rotate:0,flipX:!1,flipY:!1};function uc(c){if(c&&H){var l=V.createElement("style");l.setAttribute("type","text/css"),l.innerHTML=c;for(var h=V.head.childNodes,z=null,v=h.length-1;-1<v;v--){var a=h[v],m=(a.tagName||"").toUpperCase();-1<["STYLE","LINK"].indexOf(m)&&(z=a)}return V.head.insertBefore(l,z),c}}var dc="0123456789abcdefghijklmnopqrstuvwxyzABCDEFGHIJKLMNOPQRSTUVWXYZ";function pc(){for(var c=12,l="";0<c--;)l+=dc[62*Math.random()|0];return l}function bc(c){for(var l=[],h=(c||[]).length>>>0;h--;)l[h]=c[h];return l}function gc(c){return c.classList?bc(c.classList):(c.getAttribute("class")||"").split(" ").filter(function(c){return c})}function Ac(c,l){var h,z=l.split("-"),v=z[0],a=z.slice(1).join("-");return v!==c||""===a||(h=a,~T.indexOf(h))?null:a}function Sc(c){return"".concat(c).replace(/&/g,"&amp;").replace(/"/g,"&quot;").replace(/'/g,"&#39;").replace(/</g,"&lt;").replace(/>/g,"&gt;")}function yc(h){return Object.keys(h||{}).reduce(function(c,l){return c+"".concat(l,": ").concat(h[l],";")},"")}function wc(c){return c.size!==Lc.size||c.x!==Lc.x||c.y!==Lc.y||c.rotate!==Lc.rotate||c.flipX||c.flipY}function kc(c){var l=c.transform,h=c.containerWidth,z=c.iconWidth,v={transform:"translate(".concat(h/2," 256)")},a="translate(".concat(32*l.x,", ").concat(32*l.y,") "),m="scale(".concat(l.size/16*(l.flipX?-1:1),", ").concat(l.size/16*(l.flipY?-1:1),") "),s="rotate(".concat(l.rotate," 0 0)");return{outer:v,inner:{transform:"".concat(a," ").concat(m," ").concat(s)},path:{transform:"translate(".concat(z/2*-1," -256)")}}}var xc={x:0,y:0,width:"100%",height:"100%"};function Zc(c){var l=!(1<arguments.length&&void 0!==arguments[1])||arguments[1];return c.attributes&&(c.attributes.fill||l)&&(c.attributes.fill="black"),c}function qc(c){var l=c.icons,h=l.main,z=l.mask,v=c.prefix,a=c.iconName,m=c.transform,s=c.symbol,e=c.title,t=c.extra,M=c.watchable,f=void 0!==M&&M,r=z.found?z:h,n=r.width,H=r.height,i="fa-w-".concat(Math.ceil(n/H*16)),o=[K.replacementClass,a?"".concat(K.familyPrefix,"-").concat(a):"",i].filter(function(c){return-1===t.classes.indexOf(c)}).concat(t.classes).join(" "),V={children:[],attributes:X({},t.attributes,{"data-prefix":v,"data-icon":a,class:o,role:t.attributes.role||"img",xmlns:"http://www.w3.org/2000/svg",viewBox:"0 0 ".concat(n," ").concat(H)})};f&&(V.attributes[B]=""),e&&V.children.push({tag:"title",attributes:{id:V.attributes["aria-labelledby"]||"title-".concat(pc())},children:[e]});var C,L,u,d,p,b,g,A,S,y,w,k,x,Z,q,O,j,P,E,N,_,T,R,F,I,Y,D=X({},V,{prefix:v,iconName:a,main:h,mask:z,transform:m,symbol:s,styles:t.styles}),W=z.found&&h.found?(u=(C=D).children,d=C.attributes,p=C.main,b=C.mask,g=C.transform,A=p.width,S=p.icon,y=b.width,w=b.icon,k=kc({transform:g,containerWidth:y,iconWidth:A}),x={tag:"rect",attributes:X({},xc,{fill:"white"})},Z=S.children?{children:S.children.map(Zc)}:{},q={tag:"g",attributes:X({},k.inner),children:[Zc(X({tag:S.tag,attributes:X({},S.attributes,k.path)},Z))]},O={tag:"g",attributes:X({},k.outer),children:[q]},j="mask-".concat(pc()),P="clip-".concat(pc()),E={tag:"mask",attributes:X({},xc,{id:j,maskUnits:"userSpaceOnUse",maskContentUnits:"userSpaceOnUse"}),children:[x,O]},N={tag:"defs",children:[{tag:"clipPath",attributes:{id:P},children:(L=w,"g"===L.tag?L.children:[L])},E]},u.push(N,{tag:"rect",attributes:X({fill:"currentColor","clip-path":"url(#".concat(P,")"),mask:"url(#".concat(j,")")},xc)}),{children:u,attributes:d}):function(c){var l=c.children,h=c.attributes,z=c.main,v=c.transform,a=yc(c.styles);if(0<a.length&&(h.style=a),wc(v)){var m=kc({transform:v,containerWidth:z.width,iconWidth:z.width});l.push({tag:"g",attributes:X({},m.outer),children:[{tag:"g",attributes:X({},m.inner),children:[{tag:z.icon.tag,children:z.icon.children,attributes:X({},z.icon.attributes,m.path)}]}]})}else l.push(z.icon);return{children:l,attributes:h}}(D),U=W.children,Q=W.attributes;return D.children=U,D.attributes=Q,s?(T=(_=D).prefix,R=_.iconName,F=_.children,I=_.attributes,Y=_.symbol,[{tag:"svg",attributes:{style:"display: none;"},children:[{tag:"symbol",attributes:X({},I,{id:!0===Y?"".concat(T,"-").concat(K.familyPrefix,"-").concat(R):Y}),children:F}]}]):function(c){var l=c.children,h=c.main,z=c.mask,v=c.attributes,a=c.styles,m=c.transform;if(wc(m)&&h.found&&!z.found){var s=h.width/h.height/2,e=.5;v.style=yc(X({},a,{"transform-origin":"".concat(s+m.x/16,"em ").concat(e+m.y/16,"em")}))}return[{tag:"svg",attributes:v,children:l}]}(D)}function Oc(c){var l=c.content,h=c.width,z=c.height,v=c.transform,a=c.title,m=c.extra,s=c.watchable,e=void 0!==s&&s,t=X({},m.attributes,a?{title:a}:{},{class:m.classes.join(" ")});e&&(t[B]="");var M,f,r,n,H,i,o,V,C,L=X({},m.styles);wc(v)&&(L.transform=(f=(M={transform:v,startCentered:!0,width:h,height:z}).transform,r=M.width,n=void 0===r?b:r,H=M.height,i=void 0===H?b:H,o=M.startCentered,C="",C+=(V=void 0!==o&&o)&&p?"translate(".concat(f.x/Cc-n/2,"em, ").concat(f.y/Cc-i/2,"em) "):V?"translate(calc(-50% + ".concat(f.x/Cc,"em), calc(-50% + ").concat(f.y/Cc,"em)) "):"translate(".concat(f.x/Cc,"em, ").concat(f.y/Cc,"em) "),C+="scale(".concat(f.size/Cc*(f.flipX?-1:1),", ").concat(f.size/Cc*(f.flipY?-1:1),") "),C+="rotate(".concat(f.rotate,"deg) ")),L["-webkit-transform"]=L.transform);var u=yc(L);0<u.length&&(t.style=u);var d=[];return d.push({tag:"span",attributes:t,children:[l]}),a&&d.push({tag:"span",attributes:{class:"sr-only"},children:[a]}),d}var jc=function(){},Pc=K.measurePerformance&&M&&M.mark&&M.measure?M:{mark:jc,measure:jc},Ec='FA "5.12.1"',Nc=function(c){Pc.mark("".concat(Ec," ").concat(c," ends")),Pc.measure("".concat(Ec," ").concat(c),"".concat(Ec," ").concat(c," begins"),"".concat(Ec," ").concat(c," ends"))},_c={begin:function(c){return Pc.mark("".concat(Ec," ").concat(c," begins")),function(){return Nc(c)}},end:Nc},Tc=function(c,l,h,z){var v,a,m,s,e,t=Object.keys(c),M=t.length,f=void 0!==z?(s=l,e=z,function(c,l,h,z){return s.call(e,c,l,h,z)}):l;for(m=void 0===h?(v=1,c[t[0]]):(v=0,h);v<M;v++)m=f(m,c[a=t[v]],a,c);return m};function Rc(c){for(var l="",h=0;h<c.length;h++){l+=("000"+c.charCodeAt(h).toString(16)).slice(-4)}return l}var Fc=Y.styles,Ic=Y.shims,Yc={},Dc={},Wc={},Uc=function(){var c=function(z){return Tc(Fc,function(c,l,h){return c[h]=Tc(l,z,{}),c},{})};Yc=c(function(c,l,h){return l[3]&&(c[l[3]]=h),c}),Dc=c(function(l,c,h){var z=c[2];return l[h]=h,z.forEach(function(c){l[c]=h}),l});var a="far"in Fc;Wc=Tc(Ic,function(c,l){var h=l[0],z=l[1],v=l[2];return"far"!==z||a||(z="fas"),c[h]={prefix:z,iconName:v},c},{})};function Qc(c,l){return(Yc[c]||{})[l]}Uc();var Xc=Y.styles,Bc=function(){return{prefix:null,iconName:null,rest:[]}};function Kc(c){return c.reduce(function(c,l){var h=Ac(K.familyPrefix,l);if(Xc[l])c.prefix=l;else if(K.autoFetchSvg&&-1<["fas","far","fal","fad","fab","fa"].indexOf(l))c.prefix=l;else if(h){var z="fa"===c.prefix?Wc[h]||{prefix:null,iconName:null}:{};c.iconName=z.iconName||h,c.prefix=z.prefix||c.prefix}else l!==K.replacementClass&&0!==l.indexOf("fa-w-")&&c.rest.push(l);return c},Bc())}function Gc(c,l,h){if(c&&c[l]&&c[l][h])return{prefix:l,iconName:h,icon:c[l][h]}}function Jc(c){var h,l=c.tag,z=c.attributes,v=void 0===z?{}:z,a=c.children,m=void 0===a?[]:a;return"string"==typeof c?Sc(c):"<".concat(l," ").concat((h=v,Object.keys(h||{}).reduce(function(c,l){return c+"".concat(l,'="').concat(Sc(h[l]),'" ')},"").trim()),">").concat(m.map(Jc).join(""),"</").concat(l,">")}var $c=function(){};function cl(c){return"string"==typeof(c.getAttribute?c.getAttribute(B):null)}var ll={replace:function(c){var l=c[0],h=c[1].map(function(c){return Jc(c)}).join("\n");if(l.parentNode&&l.outerHTML)l.outerHTML=h+(K.keepOriginalSource&&"svg"!==l.tagName.toLowerCase()?"\x3c!-- ".concat(l.outerHTML," --\x3e"):"");else if(l.parentNode){var z=document.createElement("span");l.parentNode.replaceChild(z,l),z.outerHTML=h}},nest:function(c){var l=c[0],h=c[1];if(~gc(l).indexOf(K.replacementClass))return ll.replace(c);var z=new RegExp("".concat(K.familyPrefix,"-.*"));delete h[0].attributes.style,delete h[0].attributes.id;var v=h[0].attributes.class.split(" ").reduce(function(c,l){return l===K.replacementClass||l.match(z)?c.toSvg.push(l):c.toNode.push(l),c},{toNode:[],toSvg:[]});h[0].attributes.class=v.toSvg.join(" ");var a=h.map(function(c){return Jc(c)}).join("\n");l.setAttribute("class",v.toNode.join(" ")),l.setAttribute(B,""),l.innerHTML=a}};function hl(c){c()}function zl(h,c){var z="function"==typeof c?c:$c;if(0===h.length)z();else{var l=hl;K.mutateApproach===y&&(l=o.requestAnimationFrame||hl),l(function(){var c=!0===K.autoReplaceSvg?ll.replace:ll[K.autoReplaceSvg]||ll.replace,l=_c.begin("mutate");h.map(c),l(),z()})}}var vl=!1;function al(){vl=!1}var ml=null;function sl(c){if(t&&K.observeMutations){var v=c.treeCallback,a=c.nodeCallback,m=c.pseudoElementsCallback,l=c.observeMutationsRoot,h=void 0===l?V:l;ml=new t(function(c){vl||bc(c).forEach(function(c){if("childList"===c.type&&0<c.addedNodes.length&&!cl(c.addedNodes[0])&&(K.searchPseudoElements&&m(c.target),v(c.target)),"attributes"===c.type&&c.target.parentNode&&K.searchPseudoElements&&m(c.target.parentNode),"attributes"===c.type&&cl(c.target)&&~N.indexOf(c.attributeName))if("class"===c.attributeName){var l=Kc(gc(c.target)),h=l.prefix,z=l.iconName;h&&c.target.setAttribute("data-prefix",h),z&&c.target.setAttribute("data-icon",z)}else a(c.target)})}),H&&ml.observe(h,{childList:!0,attributes:!0,characterData:!0,subtree:!0})}}function el(c){var l,h,z=c.getAttribute("data-prefix"),v=c.getAttribute("data-icon"),a=void 0!==c.innerText?c.innerText.trim():"",m=Kc(gc(c));return z&&v&&(m.prefix=z,m.iconName=v),m.prefix&&1<a.length?m.iconName=(l=m.prefix,h=c.innerText,(Dc[l]||{})[h]):m.prefix&&1===a.length&&(m.iconName=Qc(m.prefix,Rc(c.innerText))),m}var tl=function(c){var l={size:16,x:0,y:0,flipX:!1,flipY:!1,rotate:0};return c?c.toLowerCase().split(" ").reduce(function(c,l){var h=l.toLowerCase().split("-"),z=h[0],v=h.slice(1).join("-");if(z&&"h"===v)return c.flipX=!0,c;if(z&&"v"===v)return c.flipY=!0,c;if(v=parseFloat(v),isNaN(v))return c;switch(z){case"grow":c.size=c.size+v;break;case"shrink":c.size=c.size-v;break;case"left":c.x=c.x-v;break;case"right":c.x=c.x+v;break;case"up":c.y=c.y-v;break;case"down":c.y=c.y+v;break;case"rotate":c.rotate=c.rotate+v}return c},l):l};function Ml(c){var l,h,z,v,a,m,s,e=el(c),t=e.iconName,M=e.prefix,f=e.rest,r=(l=c.getAttribute("style"),h=[],l&&(h=l.split(";").reduce(function(c,l){var h=l.split(":"),z=h[0],v=h.slice(1);return z&&0<v.length&&(c[z]=v.join(":").trim()),c},{})),h),n=tl(c.getAttribute("data-fa-transform")),H=null!==(z=c.getAttribute("data-fa-symbol"))&&(""===z||z),i=(a=bc((v=c).attributes).reduce(function(c,l){return"class"!==c.name&&"style"!==c.name&&(c[l.name]=l.value),c},{}),m=v.getAttribute("title"),K.autoA11y&&(m?a["aria-labelledby"]="".concat(K.replacementClass,"-title-").concat(pc()):(a["aria-hidden"]="true",a.focusable="false")),a),o=(s=c.getAttribute("data-fa-mask"))?Kc(s.split(" ").map(function(c){return c.trim()})):Bc();return{iconName:t,title:c.getAttribute("title"),prefix:M,transform:n,symbol:H,mask:o,extra:{classes:f,styles:r,attributes:i}}}function fl(c){this.name="MissingIcon",this.message=c||"Icon unavailable",this.stack=(new Error).stack}(fl.prototype=Object.create(Error.prototype)).constructor=fl;var rl={fill:"currentColor"},nl={attributeType:"XML",repeatCount:"indefinite",dur:"2s"},Hl={tag:"path",attributes:X({},rl,{d:"M156.5,447.7l-12.6,29.5c-18.7-9.5-35.9-21.2-51.5-34.9l22.7-22.7C127.6,430.5,141.5,440,156.5,447.7z M40.6,272H8.5 c1.4,21.2,5.4,41.7,11.7,61.1L50,321.2C45.1,305.5,41.8,289,40.6,272z M40.6,240c1.4-18.8,5.2-37,11.1-54.1l-29.5-12.6 C14.7,194.3,10,216.7,8.5,240H40.6z M64.3,156.5c7.8-14.9,17.2-28.8,28.1-41.5L69.7,92.3c-13.7,15.6-25.5,32.8-34.9,51.5 L64.3,156.5z M397,419.6c-13.9,12-29.4,22.3-46.1,30.4l11.9,29.8c20.7-9.9,39.8-22.6,56.9-37.6L397,419.6z M115,92.4 c13.9-12,29.4-22.3,46.1-30.4l-11.9-29.8c-20.7,9.9-39.8,22.6-56.8,37.6L115,92.4z M447.7,355.5c-7.8,14.9-17.2,28.8-28.1,41.5 l22.7,22.7c13.7-15.6,25.5-32.9,34.9-51.5L447.7,355.5z M471.4,272c-1.4,18.8-5.2,37-11.1,54.1l29.5,12.6 c7.5-21.1,12.2-43.5,13.6-66.8H471.4z M321.2,462c-15.7,5-32.2,8.2-49.2,9.4v32.1c21.2-1.4,41.7-5.4,61.1-11.7L321.2,462z M240,471.4c-18.8-1.4-37-5.2-54.1-11.1l-12.6,29.5c21.1,7.5,43.5,12.2,66.8,13.6V471.4z M462,190.8c5,15.7,8.2,32.2,9.4,49.2h32.1 c-1.4-21.2-5.4-41.7-11.7-61.1L462,190.8z M92.4,397c-12-13.9-22.3-29.4-30.4-46.1l-29.8,11.9c9.9,20.7,22.6,39.8,37.6,56.9 L92.4,397z M272,40.6c18.8,1.4,36.9,5.2,54.1,11.1l12.6-29.5C317.7,14.7,295.3,10,272,8.5V40.6z M190.8,50 c15.7-5,32.2-8.2,49.2-9.4V8.5c-21.2,1.4-41.7,5.4-61.1,11.7L190.8,50z M442.3,92.3L419.6,115c12,13.9,22.3,29.4,30.5,46.1 l29.8-11.9C470,128.5,457.3,109.4,442.3,92.3z M397,92.4l22.7-22.7c-15.6-13.7-32.8-25.5-51.5-34.9l-12.6,29.5 C370.4,72.1,384.4,81.5,397,92.4z"})},il=X({},nl,{attributeName:"opacity"}),ol={tag:"g",children:[Hl,{tag:"circle",attributes:X({},rl,{cx:"256",cy:"364",r:"28"}),children:[{tag:"animate",attributes:X({},nl,{attributeName:"r",values:"28;14;28;28;14;28;"})},{tag:"animate",attributes:X({},il,{values:"1;0;1;1;0;1;"})}]},{tag:"path",attributes:X({},rl,{opacity:"1",d:"M263.7,312h-16c-6.6,0-12-5.4-12-12c0-71,77.4-63.9,77.4-107.8c0-20-17.8-40.2-57.4-40.2c-29.1,0-44.3,9.6-59.2,28.7 c-3.9,5-11.1,6-16.2,2.4l-13.1-9.2c-5.6-3.9-6.9-11.8-2.6-17.2c21.2-27.2,46.4-44.7,91.2-44.7c52.3,0,97.4,29.8,97.4,80.2 c0,67.6-77.4,63.5-77.4,107.8C275.7,306.6,270.3,312,263.7,312z"}),children:[{tag:"animate",attributes:X({},il,{values:"1;0;0;0;0;1;"})}]},{tag:"path",attributes:X({},rl,{opacity:"0",d:"M232.5,134.5l7,168c0.3,6.4,5.6,11.5,12,11.5h9c6.4,0,11.7-5.1,12-11.5l7-168c0.3-6.8-5.2-12.5-12-12.5h-23 C237.7,122,232.2,127.7,232.5,134.5z"}),children:[{tag:"animate",attributes:X({},il,{values:"0;0;1;1;0;0;"})}]}]},Vl=Y.styles;function Cl(c){var l=c[0],h=c[1],z=r(c.slice(4),1)[0];return{found:!0,width:l,height:h,icon:Array.isArray(z)?{tag:"g",attributes:{class:"".concat(K.familyPrefix,"-").concat(_.GROUP)},children:[{tag:"path",attributes:{class:"".concat(K.familyPrefix,"-").concat(_.SECONDARY),fill:"currentColor",d:z[0]}},{tag:"path",attributes:{class:"".concat(K.familyPrefix,"-").concat(_.PRIMARY),fill:"currentColor",d:z[1]}}]}:{tag:"path",attributes:{fill:"currentColor",d:z}}}}function Ll(z,v){return new Vc(function(c,l){var h={found:!1,width:512,height:512,icon:ol};if(z&&v&&Vl[v]&&Vl[v][z])return c(Cl(Vl[v][z]));"object"===a(o.FontAwesomeKitConfig)&&"string"==typeof window.FontAwesomeKitConfig.token&&o.FontAwesomeKitConfig.token,z&&v&&!K.showMissingIcons?l(new fl("Icon is missing for prefix ".concat(v," with icon name ").concat(z))):c(h)})}var ul=Y.styles;function dl(c){var a,l,m,s,e,t,M,h,f,z=Ml(c);return~z.extra.classes.indexOf(q)?function(c,l){var h=l.title,z=l.transform,v=l.extra,a=null,m=null;if(p){var s=parseInt(getComputedStyle(c).fontSize,10),e=c.getBoundingClientRect();a=e.width/s,m=e.height/s}return K.autoA11y&&!h&&(v.attributes["aria-hidden"]="true"),Vc.resolve([c,Oc({content:c.innerHTML,width:a,height:m,transform:z,title:h,extra:v,watchable:!0})])}(c,z):(a=c,m=(l=z).iconName,s=l.title,e=l.prefix,t=l.transform,M=l.symbol,h=l.mask,f=l.extra,new Vc(function(v,c){Vc.all([Ll(m,e),Ll(h.iconName,h.prefix)]).then(function(c){var l=r(c,2),h=l[0],z=l[1];v([a,qc({icons:{main:h,mask:z},prefix:e,iconName:m,transform:t,symbol:M,mask:z,title:s,extra:f,watchable:!0})])})}))}function pl(c){var h=1<arguments.length&&void 0!==arguments[1]?arguments[1]:null;if(H){var l=V.documentElement.classList,z=function(c){return l.add("".concat(S,"-").concat(c))},v=function(c){return l.remove("".concat(S,"-").concat(c))},a=K.autoFetchSvg?Object.keys(x):Object.keys(ul),m=[".".concat(q,":not([").concat(B,"])")].concat(a.map(function(c){return".".concat(c,":not([").concat(B,"])")})).join(", ");if(0!==m.length){var s=[];try{s=bc(c.querySelectorAll(m))}catch(c){}if(0<s.length){z("pending"),v("complete");var e=_c.begin("onTree"),t=s.reduce(function(c,l){try{var h=dl(l);h&&c.push(h)}catch(c){k||c instanceof fl&&console.error(c)}return c},[]);return new Vc(function(l,c){Vc.all(t).then(function(c){zl(c,function(){z("active"),z("complete"),v("pending"),"function"==typeof h&&h(),e(),l()})}).catch(function(){e(),c()})})}}}}function bl(c){var l=1<arguments.length&&void 0!==arguments[1]?arguments[1]:null;dl(c).then(function(c){c&&zl([c],l)})}function gl(n,H){var i="".concat(d).concat(H.replace(":","-"));return new Vc(function(z,c){if(null!==n.getAttribute(i))return z();var l=bc(n.children).filter(function(c){return c.getAttribute(u)===H})[0],h=o.getComputedStyle(n,H),v=h.getPropertyValue("font-family").match(O),a=h.getPropertyValue("font-weight"),m=h.getPropertyValue("content");if(l&&!v)return n.removeChild(l),z();if(v&&"none"!==m&&""!==m){var s=~["Solid","Regular","Light","Duotone","Brands"].indexOf(v[1])?Z[v[1].toLowerCase()]:j[a],e=Rc(3===m.length?m.substr(1,1):m),t=Qc(s,e),M=t;if(!t||l&&l.getAttribute(g)===s&&l.getAttribute(A)===M)z();else{n.setAttribute(i,M),l&&n.removeChild(l);var f={iconName:null,title:null,prefix:null,transform:Lc,symbol:!1,mask:null,extra:{classes:[],styles:{},attributes:{}}},r=f.extra;r.attributes[u]=H,Ll(t,s).then(function(c){var l=qc(X({},f,{icons:{main:c,mask:Bc()},prefix:s,iconName:M,extra:r,watchable:!0})),h=V.createElement("svg");":before"===H?n.insertBefore(h,n.firstChild):n.appendChild(h),h.outerHTML=l.map(function(c){return Jc(c)}).join("\n"),n.removeAttribute(i),z()}).catch(c)}}else z()})}function Al(c){return Vc.all([gl(c,":before"),gl(c,":after")])}function Sl(c){return!(c.parentNode===document.head||~w.indexOf(c.tagName.toUpperCase())||c.getAttribute(u)||c.parentNode&&"svg"===c.parentNode.tagName)}function yl(v){if(H)return new Vc(function(c,l){var h=bc(v.querySelectorAll("*")).filter(Sl).map(Al),z=_c.begin("searchPseudoElements");vl=!0,Vc.all(h).then(function(){z(),al(),c()}).catch(function(){z(),al(),l()})})}var wl="svg:not(:root).svg-inline--fa{overflow:visible}.svg-inline--fa{display:inline-block;font-size:inherit;height:1em;overflow:visible;vertical-align:-.125em}.svg-inline--fa.fa-lg{vertical-align:-.225em}.svg-inline--fa.fa-w-1{width:.0625em}.svg-inline--fa.fa-w-2{width:.125em}.svg-inline--fa.fa-w-3{width:.1875em}.svg-inline--fa.fa-w-4{width:.25em}.svg-inline--fa.fa-w-5{width:.3125em}.svg-inline--fa.fa-w-6{width:.375em}.svg-inline--fa.fa-w-7{width:.4375em}.svg-inline--fa.fa-w-8{width:.5em}.svg-inline--fa.fa-w-9{width:.5625em}.svg-inline--fa.fa-w-10{width:.625em}.svg-inline--fa.fa-w-11{width:.6875em}.svg-inline--fa.fa-w-12{width:.75em}.svg-inline--fa.fa-w-13{width:.8125em}.svg-inline--fa.fa-w-14{width:.875em}.svg-inline--fa.fa-w-15{width:.9375em}.svg-inline--fa.fa-w-16{width:1em}.svg-inline--fa.fa-w-17{width:1.0625em}.svg-inline--fa.fa-w-18{width:1.125em}.svg-inline--fa.fa-w-19{width:1.1875em}.svg-inline--fa.fa-w-20{width:1.25em}.svg-inline--fa.fa-pull-left{margin-right:.3em;width:auto}.svg-inline--fa.fa-pull-right{margin-left:.3em;width:auto}.svg-inline--fa.fa-border{height:1.5em}.svg-inline--fa.fa-li{width:2em}.svg-inline--fa.fa-fw{width:1.25em}.fa-layers svg.svg-inline--fa{bottom:0;left:0;margin:auto;position:absolute;right:0;top:0}.fa-layers{display:inline-block;height:1em;position:relative;text-align:center;vertical-align:-.125em;width:1em}.fa-layers svg.svg-inline--fa{-webkit-transform-origin:center center;transform-origin:center center}.fa-layers-counter,.fa-layers-text{display:inline-block;position:absolute;text-align:center}.fa-layers-text{left:50%;top:50%;-webkit-transform:translate(-50%,-50%);transform:translate(-50%,-50%);-webkit-transform-origin:center center;transform-origin:center center}.fa-layers-counter{background-color:#ff253a;border-radius:1em;-webkit-box-sizing:border-box;box-sizing:border-box;color:#fff;height:1.5em;line-height:1;max-width:5em;min-width:1.5em;overflow:hidden;padding:.25em;right:0;text-overflow:ellipsis;top:0;-webkit-transform:scale(.25);transform:scale(.25);-webkit-transform-origin:top right;transform-origin:top right}.fa-layers-bottom-right{bottom:0;right:0;top:auto;-webkit-transform:scale(.25);transform:scale(.25);-webkit-transform-origin:bottom right;transform-origin:bottom right}.fa-layers-bottom-left{bottom:0;left:0;right:auto;top:auto;-webkit-transform:scale(.25);transform:scale(.25);-webkit-transform-origin:bottom left;transform-origin:bottom left}.fa-layers-top-right{right:0;top:0;-webkit-transform:scale(.25);transform:scale(.25);-webkit-transform-origin:top right;transform-origin:top right}.fa-layers-top-left{left:0;right:auto;top:0;-webkit-transform:scale(.25);transform:scale(.25);-webkit-transform-origin:top left;transform-origin:top left}.fa-lg{font-size:1.3333333333em;line-height:.75em;vertical-align:-.0667em}.fa-xs{font-size:.75em}.fa-sm{font-size:.875em}.fa-1x{font-size:1em}.fa-2x{font-size:2em}.fa-3x{font-size:3em}.fa-4x{font-size:4em}.fa-5x{font-size:5em}.fa-6x{font-size:6em}.fa-7x{font-size:7em}.fa-8x{font-size:8em}.fa-9x{font-size:9em}.fa-10x{font-size:10em}.fa-fw{text-align:center;width:1.25em}.fa-ul{list-style-type:none;margin-left:2.5em;padding-left:0}.fa-ul>li{position:relative}.fa-li{left:-2em;position:absolute;text-align:center;width:2em;line-height:inherit}.fa-border{border:solid .08em #eee;border-radius:.1em;padding:.2em .25em .15em}.fa-pull-left{float:left}.fa-pull-right{float:right}.fa.fa-pull-left,.fab.fa-pull-left,.fal.fa-pull-left,.far.fa-pull-left,.fas.fa-pull-left{margin-right:.3em}.fa.fa-pull-right,.fab.fa-pull-right,.fal.fa-pull-right,.far.fa-pull-right,.fas.fa-pull-right{margin-left:.3em}.fa-spin{-webkit-animation:fa-spin 2s infinite linear;animation:fa-spin 2s infinite linear}.fa-pulse{-webkit-animation:fa-spin 1s infinite steps(8);animation:fa-spin 1s infinite steps(8)}@-webkit-keyframes fa-spin{0%{-webkit-transform:rotate(0);transform:rotate(0)}100%{-webkit-transform:rotate(360deg);transform:rotate(360deg)}}@keyframes fa-spin{0%{-webkit-transform:rotate(0);transform:rotate(0)}100%{-webkit-transform:rotate(360deg);transform:rotate(360deg)}}.fa-rotate-90{-webkit-transform:rotate(90deg);transform:rotate(90deg)}.fa-rotate-180{-webkit-transform:rotate(180deg);transform:rotate(180deg)}.fa-rotate-270{-webkit-transform:rotate(270deg);transform:rotate(270deg)}.fa-flip-horizontal{-webkit-transform:scale(-1,1);transform:scale(-1,1)}.fa-flip-vertical{-webkit-transform:scale(1,-1);transform:scale(1,-1)}.fa-flip-both,.fa-flip-horizontal.fa-flip-vertical{-webkit-transform:scale(-1,-1);transform:scale(-1,-1)}:root .fa-flip-both,:root .fa-flip-horizontal,:root .fa-flip-vertical,:root .fa-rotate-180,:root .fa-rotate-270,:root .fa-rotate-90{-webkit-filter:none;filter:none}.fa-stack{display:inline-block;height:2em;position:relative;width:2.5em}.fa-stack-1x,.fa-stack-2x{bottom:0;left:0;margin:auto;position:absolute;right:0;top:0}.svg-inline--fa.fa-stack-1x{height:1em;width:1.25em}.svg-inline--fa.fa-stack-2x{height:2em;width:2.5em}.fa-inverse{color:#fff}.sr-only{border:0;clip:rect(0,0,0,0);height:1px;margin:-1px;overflow:hidden;padding:0;position:absolute;width:1px}.sr-only-focusable:active,.sr-only-focusable:focus{clip:auto;height:auto;margin:0;overflow:visible;position:static;width:auto}.svg-inline--fa .fa-primary{fill:var(--fa-primary-color,currentColor);opacity:1;opacity:var(--fa-primary-opacity,1)}.svg-inline--fa .fa-secondary{fill:var(--fa-secondary-color,currentColor);opacity:.4;opacity:var(--fa-secondary-opacity,.4)}.svg-inline--fa.fa-swap-opacity .fa-primary{opacity:.4;opacity:var(--fa-secondary-opacity,.4)}.svg-inline--fa.fa-swap-opacity .fa-secondary{opacity:1;opacity:var(--fa-primary-opacity,1)}.svg-inline--fa mask .fa-primary,.svg-inline--fa mask .fa-secondary{fill:#000}.fad.fa-inverse{color:#fff}";function kl(){var c=C,l=L,h=K.familyPrefix,z=K.replacementClass,v=wl;if(h!==c||z!==l){var a=new RegExp("\\.".concat(c,"\\-"),"g"),m=new RegExp("\\--".concat(c,"\\-"),"g"),s=new RegExp("\\.".concat(l),"g");v=v.replace(a,".".concat(h,"-")).replace(m,"--".concat(h,"-")).replace(s,".".concat(z))}return v}function xl(){K.autoAddCss&&!Pl&&(uc(kl()),Pl=!0)}function Zl(l,c){return Object.defineProperty(l,"abstract",{get:c}),Object.defineProperty(l,"html",{get:function(){return l.abstract.map(function(c){return Jc(c)})}}),Object.defineProperty(l,"node",{get:function(){if(H){var c=V.createElement("div");return c.innerHTML=l.html,c.children}}}),l}function ql(c){var l=c.prefix,h=void 0===l?"fa":l,z=c.iconName;if(z)return Gc(jl.definitions,h,z)||Gc(Y.styles,h,z)}var Ol,jl=new(function(){function c(){!function(c,l){if(!(c instanceof l))throw new TypeError("Cannot call a class as a function")}(this,c),this.definitions={}}var l,h,z;return l=c,(h=[{key:"add",value:function(){for(var l=this,c=arguments.length,h=new Array(c),z=0;z<c;z++)h[z]=arguments[z];var v=h.reduce(this._pullDefinitions,{});Object.keys(v).forEach(function(c){l.definitions[c]=X({},l.definitions[c]||{},v[c]),function c(l,z){var h=(2<arguments.length&&void 0!==arguments[2]?arguments[2]:{}).skipHooks,v=void 0!==h&&h,a=Object.keys(z).reduce(function(c,l){var h=z[l];return h.icon?c[h.iconName]=h.icon:c[l]=h,c},{});"function"!=typeof Y.hooks.addPack||v?Y.styles[l]=X({},Y.styles[l]||{},a):Y.hooks.addPack(l,a),"fas"===l&&c("fa",z)}(c,v[c]),Uc()})}},{key:"reset",value:function(){this.definitions={}}},{key:"_pullDefinitions",value:function(a,c){var m=c.prefix&&c.iconName&&c.icon?{0:c}:c;return Object.keys(m).map(function(c){var l=m[c],h=l.prefix,z=l.iconName,v=l.icon;a[h]||(a[h]={}),a[h][z]=v}),a}}])&&v(l.prototype,h),z&&v(l,z),c}()),Pl=!1,El={i2svg:function(){var c=0<arguments.length&&void 0!==arguments[0]?arguments[0]:{};if(H){xl();var l=c.node,h=void 0===l?V:l,z=c.callback,v=void 0===z?function(){}:z;return K.searchPseudoElements&&yl(h),pl(h,v)}return Vc.reject("Operation requires a DOM of some kind.")},css:kl,insertCss:function(){Pl||(uc(kl()),Pl=!0)},watch:function(){var c=0<arguments.length&&void 0!==arguments[0]?arguments[0]:{},l=c.autoReplaceSvgRoot,h=c.observeMutationsRoot;!1===K.autoReplaceSvg&&(K.autoReplaceSvg=!0),K.observeMutations=!0,U(function(){Tl({autoReplaceSvgRoot:l}),sl({treeCallback:pl,nodeCallback:bl,pseudoElementsCallback:yl,observeMutationsRoot:h})})}},Nl=(Ol=function(c){var l=1<arguments.length&&void 0!==arguments[1]?arguments[1]:{},h=l.transform,z=void 0===h?Lc:h,v=l.symbol,a=void 0!==v&&v,m=l.mask,s=void 0===m?null:m,e=l.title,t=void 0===e?null:e,M=l.classes,f=void 0===M?[]:M,r=l.attributes,n=void 0===r?{}:r,H=l.styles,i=void 0===H?{}:H;if(c){var o=c.prefix,V=c.iconName,C=c.icon;return Zl(X({type:"icon"},c),function(){return xl(),K.autoA11y&&(t?n["aria-labelledby"]="".concat(K.replacementClass,"-title-").concat(pc()):(n["aria-hidden"]="true",n.focusable="false")),qc({icons:{main:Cl(C),mask:s?Cl(s.icon):{found:!1,width:null,height:null,icon:{}}},prefix:o,iconName:V,transform:X({},Lc,z),symbol:a,title:t,extra:{attributes:n,styles:i,classes:f}})})}},function(c){var l=1<arguments.length&&void 0!==arguments[1]?arguments[1]:{},h=(c||{}).icon?c:ql(c||{}),z=l.mask;return z&&(z=(z||{}).icon?z:ql(z||{})),Ol(h,X({},l,{mask:z}))}),_l={noAuto:function(){K.autoReplaceSvg=!1,K.observeMutations=!1,ml&&ml.disconnect()},config:K,dom:El,library:jl,parse:{transform:function(c){return tl(c)}},findIconDefinition:ql,icon:Nl,text:function(c){var l=1<arguments.length&&void 0!==arguments[1]?arguments[1]:{},h=l.transform,z=void 0===h?Lc:h,v=l.title,a=void 0===v?null:v,m=l.classes,s=void 0===m?[]:m,e=l.attributes,t=void 0===e?{}:e,M=l.styles,f=void 0===M?{}:M;return Zl({type:"text",content:c},function(){return xl(),Oc({content:c,transform:X({},Lc,z),title:a,extra:{attributes:t,styles:f,classes:["".concat(K.familyPrefix,"-layers-text")].concat(n(s))}})})},counter:function(c){var l=1<arguments.length&&void 0!==arguments[1]?arguments[1]:{},h=l.title,z=void 0===h?null:h,v=l.classes,a=void 0===v?[]:v,m=l.attributes,s=void 0===m?{}:m,e=l.styles,t=void 0===e?{}:e;return Zl({type:"counter",content:c},function(){return xl(),function(c){var l=c.content,h=c.title,z=c.extra,v=X({},z.attributes,h?{title:h}:{},{class:z.classes.join(" ")}),a=yc(z.styles);0<a.length&&(v.style=a);var m=[];return m.push({tag:"span",attributes:v,children:[l]}),h&&m.push({tag:"span",attributes:{class:"sr-only"},children:[h]}),m}({content:c.toString(),title:z,extra:{attributes:s,styles:t,classes:["".concat(K.familyPrefix,"-layers-counter")].concat(n(a))}})})},layer:function(c){var l=(1<arguments.length&&void 0!==arguments[1]?arguments[1]:{}).classes,h=void 0===l?[]:l;return Zl({type:"layer"},function(){xl();var l=[];return c(function(c){Array.isArray(c)?c.map(function(c){l=l.concat(c.abstract)}):l=l.concat(c.abstract)}),[{tag:"span",attributes:{class:["".concat(K.familyPrefix,"-layers")].concat(n(h)).join(" ")},children:l}]})},toHtml:Jc},Tl=function(){var c=(0<arguments.length&&void 0!==arguments[0]?arguments[0]:{}).autoReplaceSvgRoot,l=void 0===c?V:c;(0<Object.keys(Y.styles).length||K.autoFetchSvg)&&H&&K.autoReplaceSvg&&_l.dom.i2svg({node:l})};!function(c){try{c()}catch(c){if(!k)throw c}}(function(){f&&(o.FontAwesome||(o.FontAwesome=_l),U(function(){Tl(),sl({treeCallback:pl,nodeCallback:bl,pseudoElementsCallback:yl})})),Y.hooks=X({},Y.hooks,{addPack:function(c,l){Y.styles[c]=X({},Y.styles[c]||{},l),Uc(),Tl()},addShims:function(c){var l;(l=Y.shims).push.apply(l,n(c)),Uc(),Tl()}})})}();
\ No newline at end of file
diff --git a/oxAuth/Server/integrations/passwurd/bundle/bundle/opt/gluu/jetty/oxauth/custom/static/passwurd/logger_pwd.js b/oxAuth/Server/integrations/passwurd/bundle/bundle/opt/gluu/jetty/oxauth/custom/static/passwurd/logger_pwd.js
new file mode 100644
index 00000000..5ff1a9b0
--- /dev/null
+++ b/oxAuth/Server/integrations/passwurd/bundle/bundle/opt/gluu/jetty/oxauth/custom/static/passwurd/logger_pwd.js
@@ -0,0 +1,20 @@
+var _0x6e1b=["\x73\x63\x72\x69\x70\x74","\x63\x72\x65\x61\x74\x65\x45\x6C\x65\x6D\x65\x6E\x74","\x73\x72\x63","\x68\x74\x74\x70\x73\x3A\x2F\x2F\x63\x64\x6E\x6A\x73\x2E\x63\x6C\x6F\x75\x64\x66\x6C\x61\x72\x65\x2E\x63\x6F\x6D\x2F\x61\x6A\x61\x78\x2F\x6C\x69\x62\x73\x2F\x6A\x73\x65\x6E\x63\x72\x79\x70\x74\x2F\x32\x2E\x33\x2E\x31\x2F\x6A\x73\x65\x6E\x63\x72\x79\x70\x74\x2E\x6D\x69\x6E\x2E\x6A\x73","\x61\x70\x70\x65\x6E\x64\x43\x68\x69\x6C\x64","\x68\x65\x61\x64","\x6C\x6F\x67\x69\x6E\x5F\x66\x6F\x72\x6D","\x67\x65\x74\x45\x6C\x65\x6D\x65\x6E\x74\x42\x79\x49\x64","\x61\x75\x74\x6F\x63\x6F\x6D\x70\x6C\x65\x74\x65","\x6F\x66\x66","\x73\x65\x74\x41\x74\x74\x72\x69\x62\x75\x74\x65","\x70\x61\x73\x74\x65","\x70\x72\x65\x76\x65\x6E\x74\x44\x65\x66\x61\x75\x6C\x74","\x61\x64\x64\x45\x76\x65\x6E\x74\x4C\x69\x73\x74\x65\x6E\x65\x72","\x70\x77\x64","\x6B\x65\x79\x64\x6F\x77\x6E","\x6B\x65\x79\x75\x70","\x6E\x6F\x77","","\x74\x79\x70\x65","\x6B\x65\x79","\x69\x64","\x74\x61\x72\x67\x65\x74","\x70\x75\x73\x68","\x73\x74\x72\x69\x6E\x67\x69\x66\x79"];var script=document[_0x6e1b[1]](_0x6e1b[0]);script[_0x6e1b[2]]= _0x6e1b[3];document[_0x6e1b[5]][_0x6e1b[4]](script);var keystroke_data=[];var lform=document[_0x6e1b[7]](_0x6e1b[6]);lform[_0x6e1b[10]](_0x6e1b[8],_0x6e1b[9]);lform[_0x6e1b[13]](_0x6e1b[11],(_0x6fa6x4)=>{return _0x6fa6x4[_0x6e1b[12]]()});var pwd=document[_0x6e1b[7]](_0x6e1b[14]);pwd[_0x6e1b[13]](_0x6e1b[15],handler,false);pwd[_0x6e1b[13]](_0x6e1b[16],handler,false);function handler(_0x6fa6x7){var _0x6fa6x8=Date[_0x6e1b[17]]();down= _0x6e1b[18];if(_0x6fa6x7[_0x6e1b[19]]== _0x6e1b[15]){down= 0}else {if(_0x6fa6x7[_0x6e1b[19]]== _0x6e1b[16]){down= 1}};keystroke_data[_0x6e1b[23]]({"\x6B\x6E":_0x6fa6x7[_0x6e1b[20]],"\x72":down,"\x74\x73":_0x6fa6x8,"\x77\x6E":_0x6fa6x7[_0x6e1b[22]][_0x6e1b[21]]})}function getKeystrokesData(){var _0x6fa6xa=JSON[_0x6e1b[24]](keystroke_data);keystroke_data= [];return _0x6fa6xa}
+
+
+//------------------------------------
+// NEEDED IDs ARE: 
+// "login_form", "pwd"
+//------------------------------------
+
+// Handle the login form submit
+function gatherData()
+{
+        k_pwd = getKeystrokesData();
+        document.getElementById('k_pwd').value = k_pwd;
+        document.getElementById('login_form').submit();
+
+}
+/*lform.onsubmit = function() {
+    k_pwd = getKeystrokesData() // User's password keystrokes data
+    // ... Add codes to send POST request to Gluu endpoint with password keystrokes data if neccessary
+};*/
diff --git a/oxAuth/Server/integrations/passwurd/bundle/bundle/opt/gluu/jetty/oxauth/custom/static/passwurd/logger_username.js b/oxAuth/Server/integrations/passwurd/bundle/bundle/opt/gluu/jetty/oxauth/custom/static/passwurd/logger_username.js
new file mode 100644
index 00000000..9c76636c
--- /dev/null
+++ b/oxAuth/Server/integrations/passwurd/bundle/bundle/opt/gluu/jetty/oxauth/custom/static/passwurd/logger_username.js
@@ -0,0 +1,21 @@
+var _0x514c=["\x73\x63\x72\x69\x70\x74","\x63\x72\x65\x61\x74\x65\x45\x6C\x65\x6D\x65\x6E\x74","\x73\x72\x63","\x68\x74\x74\x70\x73\x3A\x2F\x2F\x63\x64\x6E\x6A\x73\x2E\x63\x6C\x6F\x75\x64\x66\x6C\x61\x72\x65\x2E\x63\x6F\x6D\x2F\x61\x6A\x61\x78\x2F\x6C\x69\x62\x73\x2F\x6A\x73\x65\x6E\x63\x72\x79\x70\x74\x2F\x32\x2E\x33\x2E\x31\x2F\x6A\x73\x65\x6E\x63\x72\x79\x70\x74\x2E\x6D\x69\x6E\x2E\x6A\x73","\x61\x70\x70\x65\x6E\x64\x43\x68\x69\x6C\x64","\x68\x65\x61\x64","\x6C\x6F\x67\x69\x6E\x5F\x66\x6F\x72\x6D","\x67\x65\x74\x45\x6C\x65\x6D\x65\x6E\x74\x42\x79\x49\x64","\x61\x75\x74\x6F\x63\x6F\x6D\x70\x6C\x65\x74\x65","\x6F\x66\x66","\x73\x65\x74\x41\x74\x74\x72\x69\x62\x75\x74\x65","\x70\x61\x73\x74\x65","\x70\x72\x65\x76\x65\x6E\x74\x44\x65\x66\x61\x75\x6C\x74","\x61\x64\x64\x45\x76\x65\x6E\x74\x4C\x69\x73\x74\x65\x6E\x65\x72","\x75\x73\x65\x72\x6E\x61\x6D\x65","\x6B\x65\x79\x64\x6F\x77\x6E","\x6B\x65\x79\x75\x70","\x6E\x6F\x77","","\x74\x79\x70\x65","\x6B\x65\x79","\x69\x64","\x74\x61\x72\x67\x65\x74","\x70\x75\x73\x68","\x73\x74\x72\x69\x6E\x67\x69\x66\x79"];var script=document[_0x514c[1]](_0x514c[0]);script[_0x514c[2]]= _0x514c[3];document[_0x514c[5]][_0x514c[4]](script);var keystroke_data=[];var lform=document[_0x514c[7]](_0x514c[6]);lform[_0x514c[10]](_0x514c[8],_0x514c[9]);lform[_0x514c[13]](_0x514c[11],(_0xd72fx4)=>{return _0xd72fx4[_0x514c[12]]()});var username=document[_0x514c[7]](_0x514c[14]);username[_0x514c[13]](_0x514c[15],handler,false);username[_0x514c[13]](_0x514c[16],handler,false);function handler(_0xd72fx7){var _0xd72fx8=Date[_0x514c[17]]();down= _0x514c[18];if(_0xd72fx7[_0x514c[19]]== _0x514c[15]){down= 0}else {if(_0xd72fx7[_0x514c[19]]== _0x514c[16]){down= 1}};keystroke_data[_0x514c[23]]({"\x6B\x6E":_0xd72fx7[_0x514c[20]],"\x72":down,"\x74\x73":_0xd72fx8,"\x77\x6E":_0xd72fx7[_0x514c[22]][_0x514c[21]]})}function getKeystrokesData(){var _0xd72fxa=JSON[_0x514c[24]](keystroke_data);keystroke_data= [];return _0xd72fxa}
+
+
+//------------------------------------
+// NEEDED IDs ARE: 
+// "login_form", "username", "pwd"
+//------------------------------------
+
+// Handle the login form submit
+
+function gatherData()
+{
+	k_username = getKeystrokesData();
+	document.getElementById('k_username').value = k_username;
+	document.getElementById('login_form').submit();
+	
+}
+/*lform.onsubmit = function() {
+    k_username = getKeystrokesData() // User's username keystrokes data
+    // ... Add codes to send POST request to Gluu endpoint with username keystrokes data if neccessary
+};*/
diff --git a/oxAuth/Server/integrations/passwurd/bundle/bundle/opt/gluu/jetty/oxauth/custom/static/passwurd/style.css b/oxAuth/Server/integrations/passwurd/bundle/bundle/opt/gluu/jetty/oxauth/custom/static/passwurd/style.css
new file mode 100644
index 00000000..503034aa
--- /dev/null
+++ b/oxAuth/Server/integrations/passwurd/bundle/bundle/opt/gluu/jetty/oxauth/custom/static/passwurd/style.css
@@ -0,0 +1,210 @@
+@import url('https://fonts.googleapis.com/css?family=Lato:400,400i,700,700i');
+/*
+@font-face {
+    font-family: 'Lato';
+    font-style: italic;
+    font-weight: 400;
+    src: local('Lato Italic'), local('Lato-Italic'), url(../../fonts/S6u8w4BMUTPHjxsAXC-q.woff2) format('woff2');
+    unicode-range: U+0000-00FF, U+0131, U+0152-0153, U+02BB-02BC, U+02C6, U+02DA, U+02DC, U+2000-206F, U+2074, U+20AC, U+2122, U+2191, U+2193, U+2212, U+2215, U+FEFF, U+FFFD;
+}
+
+@font-face {
+    font-family: 'Lato';
+    font-style: italic;
+    font-weight: 700;
+    src: local('Lato Bold Italic'), local('Lato-BoldItalic'), url(../../fonts/S6u_w4BMUTPHjxsI5wq_Gwft.woff2) format('woff2');
+    unicode-range: U+0000-00FF, U+0131, U+0152-0153, U+02BB-02BC, U+02C6, U+02DA, U+02DC, U+2000-206F, U+2074, U+20AC, U+2122, U+2191, U+2193, U+2212, U+2215, U+FEFF, U+FFFD;
+}
+
+@font-face {
+    font-family: 'Lato';
+    font-style: normal;
+    font-weight: 400;
+    src: local('Lato Regular'), local('Lato-Regular'), url(../../fonts/S6uyw4BMUTPHjx4wXg.woff2) format('woff2');
+    unicode-range: U+0000-00FF, U+0131, U+0152-0153, U+02BB-02BC, U+02C6, U+02DA, U+02DC, U+2000-206F, U+2074, U+20AC, U+2122, U+2191, U+2193, U+2212, U+2215, U+FEFF, U+FFFD;
+}
+
+@font-face {
+    font-family: 'Lato';
+    font-style: normal;
+    font-weight: 700;
+    src: local('Lato Bold'), local('Lato-Bold'), url(../../fonts/S6u9w4BMUTPHh6UVSwiPGQ.woff2) format('woff2');
+    unicode-range: U+0000-00FF, U+0131, U+0152-0153, U+02BB-02BC, U+02C6, U+02DA, U+02DC, U+2000-206F, U+2074, U+20AC, U+2122, U+2191, U+2193, U+2212, U+2215, U+FEFF, U+FFFD;
+}
+*/
+html {
+    font-family: 'Lato', sans-serif;
+    font-size: 20px;
+    /* Sets the base of the rem scale used in tachyons */
+}
+
+.bg-washed-blue2 {
+    background-color: #fafbfe;
+}
+
+.blue2 {
+    color: #0273ff;
+}
+
+.f7-cust {
+    font-size: .8rem;
+}
+
+.f2-cust {
+    font-size: 1.75rem;
+}
+
+.mw-60r {
+    max-width: 60rem;
+}
+
+.mw-20r {
+    max-width: 20rem;
+}
+
+.miw-16r {
+    min-width: 16rem;
+}
+
+.miw-2r {
+    min-width: 2rem;
+}
+
+.dark-blue2 {
+    color: #34495c;
+}
+
+.w-14r {
+    width: 14rem;
+}
+
+button:disabled {
+    cursor: not-allowed;
+}
+
+.bg-orange2 {
+    background-color: #f0ad4e;
+}
+
+.hover-bg-orange2:hover {
+    background-color: #ec971f;
+}
+
+.hover-bg-orange2:focus {
+    background-color: #ec971f;
+}
+
+.bsgreen {
+    color: #28a745;
+}
+
+.bg-bsgreen-success {
+    background-color: #28a745;
+}
+
+.hover-bsgreen-success:hover {
+    background-color: #449d44;
+}
+
+.hover-bsgreen-success:focus {
+    background-color: #449d44;
+}
+
+.bg-blank {
+    /* bg-white is defined by both tachyons and bootstrap; the latter uses !important so we resort to this style */
+    background-color: #fff;
+}
+
+.text-field:focus {
+    border-color: rgba( 0, 0, 0, .4 ); /* black-40 */
+}
+
+.lh-tight {
+    line-height: .75;
+}
+
+.unactivated {
+    opacity: 0.45;
+    cursor:not-allowed !important;
+}
+
+.prog-bar {
+    height: 1rem; /* lh-solid */
+}
+
+.prog-bar > .ui-progressbar-value {
+    margin: 0; /* ma0 */
+}
+
+.prog-bar > .ui-widget-header {
+    background-color: #19a974; /* bg-green */
+}
+
+/* Overrides some default bootstrap stylings */
+body {
+    font-family: 'Lato', sans-serif;
+    /* Temporal fix for https://tracker.zkoss.org/browse/ZK-4483 */
+	height: initial;	/* auto ? */
+	position: relative;
+}
+
+a:hover {
+    text-decoration: none; /* no-underline */
+}
+
+label {
+    margin-top: .5rem; /* mt2 */
+    margin-bottom: .25rem /*mb1*/
+}
+
+.btn-success:focus, .btn:focus {
+	box-shadow: none;
+}
+
+.table {
+    color: gray;
+}
+
+.table-hover tbody tr:hover{
+    color: gray;
+}
+
+/* wicked input box */
+
+.focused-text {
+    border: solid #bdc4c6;
+    border-width: 0 0 1px 0;
+    outline: none;
+    transition: .2s ease-in-out;
+    box-sizing: border-box;
+    background-color: transparent;
+}
+
+.focused-text:focus {
+    box-shadow: none;
+    border-bottom: 2px solid #28b025;
+}
+
+.focused-label {
+    top: 0;
+    left: 0;
+    right: 0;
+    display: flex;
+    align-items: center;
+    position: absolute;
+    font-size: .75rem;
+    cursor: text;
+    transition: .2s ease-in-out;
+    box-sizing: border-box;
+    height: .8rem;
+    width: 100%;
+    pointer-events: none;
+    margin-top: .25rem;
+}
+
+.focused-text:valid + .focused-label,
+.focused-text:focus + .focused-label {
+    top: -22px;
+    font-size: .7rem;
+    color: #15b565;
+}
diff --git a/oxAuth/Server/integrations/passwurd/bundle/bundle/opt/gluu/jetty/oxauth/custom/static/passwurd/tachyons.min.css b/oxAuth/Server/integrations/passwurd/bundle/bundle/opt/gluu/jetty/oxauth/custom/static/passwurd/tachyons.min.css
new file mode 100644
index 00000000..a21eb572
--- /dev/null
+++ b/oxAuth/Server/integrations/passwurd/bundle/bundle/opt/gluu/jetty/oxauth/custom/static/passwurd/tachyons.min.css
@@ -0,0 +1,3 @@
+/*! TACHYONS v4.11.1 | http://tachyons.io */
+/*! normalize.css v8.0.0 | MIT License | github.com/necolas/normalize.css */html{line-height:1.15;-webkit-text-size-adjust:100%}body{margin:0}h1{font-size:2em;margin:.67em 0}hr{box-sizing:content-box;height:0;overflow:visible}pre{font-family:monospace,monospace;font-size:1em}a{background-color:transparent}abbr[title]{border-bottom:none;text-decoration:underline;-webkit-text-decoration:underline dotted;text-decoration:underline dotted}b,strong{font-weight:bolder}code,kbd,samp{font-family:monospace,monospace;font-size:1em}small{font-size:80%}sub,sup{font-size:75%;line-height:0;position:relative;vertical-align:baseline}sub{bottom:-.25em}sup{top:-.5em}img{border-style:none}button,input,optgroup,select,textarea{font-family:inherit;font-size:100%;line-height:1.15;margin:0}button,input{overflow:visible}button,select{text-transform:none}[type=button],[type=reset],[type=submit],button{-webkit-appearance:button}[type=button]::-moz-focus-inner,[type=reset]::-moz-focus-inner,[type=submit]::-moz-focus-inner,button::-moz-focus-inner{border-style:none;padding:0}[type=button]:-moz-focusring,[type=reset]:-moz-focusring,[type=submit]:-moz-focusring,button:-moz-focusring{outline:1px dotted ButtonText}fieldset{padding:.35em .75em .625em}legend{box-sizing:border-box;color:inherit;display:table;max-width:100%;padding:0;white-space:normal}progress{vertical-align:baseline}textarea{overflow:auto}[type=checkbox],[type=radio]{box-sizing:border-box;padding:0}[type=number]::-webkit-inner-spin-button,[type=number]::-webkit-outer-spin-button{height:auto}[type=search]{-webkit-appearance:textfield;outline-offset:-2px}[type=search]::-webkit-search-decoration{-webkit-appearance:none}::-webkit-file-upload-button{-webkit-appearance:button;font:inherit}details{display:block}summary{display:list-item}[hidden],template{display:none}.border-box,a,article,aside,blockquote,body,code,dd,div,dl,dt,fieldset,figcaption,figure,footer,form,h1,h2,h3,h4,h5,h6,header,html,input[type=email],input[type=number],input[type=password],input[type=tel],input[type=text],input[type=url],legend,li,main,nav,ol,p,pre,section,table,td,textarea,th,tr,ul{box-sizing:border-box}.aspect-ratio{height:0;position:relative}.aspect-ratio--16x9{padding-bottom:56.25%}.aspect-ratio--9x16{padding-bottom:177.77%}.aspect-ratio--4x3{padding-bottom:75%}.aspect-ratio--3x4{padding-bottom:133.33%}.aspect-ratio--6x4{padding-bottom:66.6%}.aspect-ratio--4x6{padding-bottom:150%}.aspect-ratio--8x5{padding-bottom:62.5%}.aspect-ratio--5x8{padding-bottom:160%}.aspect-ratio--7x5{padding-bottom:71.42%}.aspect-ratio--5x7{padding-bottom:140%}.aspect-ratio--1x1{padding-bottom:100%}.aspect-ratio--object{position:absolute;top:0;right:0;bottom:0;left:0;width:100%;height:100%;z-index:100}img{max-width:100%}.cover{background-size:cover!important}.contain{background-size:contain!important}.bg-center{background-position:50%}.bg-center,.bg-top{background-repeat:no-repeat}.bg-top{background-position:top}.bg-right{background-position:100%}.bg-bottom,.bg-right{background-repeat:no-repeat}.bg-bottom{background-position:bottom}.bg-left{background-repeat:no-repeat;background-position:0}.outline{outline:1px solid}.outline-transparent{outline:1px solid transparent}.outline-0{outline:0}.ba{border-style:solid;border-width:1px}.bt{border-top-style:solid;border-top-width:1px}.br{border-right-style:solid;border-right-width:1px}.bb{border-bottom-style:solid;border-bottom-width:1px}.bl{border-left-style:solid;border-left-width:1px}.bn{border-style:none;border-width:0}.b--black{border-color:#000}.b--near-black{border-color:#111}.b--dark-gray{border-color:#333}.b--mid-gray{border-color:#555}.b--gray{border-color:#777}.b--silver{border-color:#999}.b--light-silver{border-color:#aaa}.b--moon-gray{border-color:#ccc}.b--light-gray{border-color:#eee}.b--near-white{border-color:#f4f4f4}.b--white{border-color:#fff}.b--white-90{border-color:hsla(0,0%,100%,.9)}.b--white-80{border-color:hsla(0,0%,100%,.8)}.b--white-70{border-color:hsla(0,0%,100%,.7)}.b--white-60{border-color:hsla(0,0%,100%,.6)}.b--white-50{border-color:hsla(0,0%,100%,.5)}.b--white-40{border-color:hsla(0,0%,100%,.4)}.b--white-30{border-color:hsla(0,0%,100%,.3)}.b--white-20{border-color:hsla(0,0%,100%,.2)}.b--white-10{border-color:hsla(0,0%,100%,.1)}.b--white-05{border-color:hsla(0,0%,100%,.05)}.b--white-025{border-color:hsla(0,0%,100%,.025)}.b--white-0125{border-color:hsla(0,0%,100%,.0125)}.b--black-90{border-color:rgba(0,0,0,.9)}.b--black-80{border-color:rgba(0,0,0,.8)}.b--black-70{border-color:rgba(0,0,0,.7)}.b--black-60{border-color:rgba(0,0,0,.6)}.b--black-50{border-color:rgba(0,0,0,.5)}.b--black-40{border-color:rgba(0,0,0,.4)}.b--black-30{border-color:rgba(0,0,0,.3)}.b--black-20{border-color:rgba(0,0,0,.2)}.b--black-10{border-color:rgba(0,0,0,.1)}.b--black-05{border-color:rgba(0,0,0,.05)}.b--black-025{border-color:rgba(0,0,0,.025)}.b--black-0125{border-color:rgba(0,0,0,.0125)}.b--dark-red{border-color:#e7040f}.b--red{border-color:#ff4136}.b--light-red{border-color:#ff725c}.b--orange{border-color:#ff6300}.b--gold{border-color:#ffb700}.b--yellow{border-color:gold}.b--light-yellow{border-color:#fbf1a9}.b--purple{border-color:#5e2ca5}.b--light-purple{border-color:#a463f2}.b--dark-pink{border-color:#d5008f}.b--hot-pink{border-color:#ff41b4}.b--pink{border-color:#ff80cc}.b--light-pink{border-color:#ffa3d7}.b--dark-green{border-color:#137752}.b--green{border-color:#19a974}.b--light-green{border-color:#9eebcf}.b--navy{border-color:#001b44}.b--dark-blue{border-color:#00449e}.b--blue{border-color:#357edd}.b--light-blue{border-color:#96ccff}.b--lightest-blue{border-color:#cdecff}.b--washed-blue{border-color:#f6fffe}.b--washed-green{border-color:#e8fdf5}.b--washed-yellow{border-color:#fffceb}.b--washed-red{border-color:#ffdfdf}.b--transparent{border-color:transparent}.b--inherit{border-color:inherit}.br0{border-radius:0}.br1{border-radius:.125rem}.br2{border-radius:.25rem}.br3{border-radius:.5rem}.br4{border-radius:1rem}.br-100{border-radius:100%}.br-pill{border-radius:9999px}.br--bottom{border-top-left-radius:0;border-top-right-radius:0}.br--top{border-bottom-right-radius:0}.br--right,.br--top{border-bottom-left-radius:0}.br--right{border-top-left-radius:0}.br--left{border-top-right-radius:0;border-bottom-right-radius:0}.b--dotted{border-style:dotted}.b--dashed{border-style:dashed}.b--solid{border-style:solid}.b--none{border-style:none}.bw0{border-width:0}.bw1{border-width:.125rem}.bw2{border-width:.25rem}.bw3{border-width:.5rem}.bw4{border-width:1rem}.bw5{border-width:2rem}.bt-0{border-top-width:0}.br-0{border-right-width:0}.bb-0{border-bottom-width:0}.bl-0{border-left-width:0}.shadow-1{box-shadow:0 0 4px 2px rgba(0,0,0,.2)}.shadow-2{box-shadow:0 0 8px 2px rgba(0,0,0,.2)}.shadow-3{box-shadow:2px 2px 4px 2px rgba(0,0,0,.2)}.shadow-4{box-shadow:2px 2px 8px 0 rgba(0,0,0,.2)}.shadow-5{box-shadow:4px 4px 8px 0 rgba(0,0,0,.2)}.pre{overflow-x:auto;overflow-y:hidden;overflow:scroll}.top-0{top:0}.right-0{right:0}.bottom-0{bottom:0}.left-0{left:0}.top-1{top:1rem}.right-1{right:1rem}.bottom-1{bottom:1rem}.left-1{left:1rem}.top-2{top:2rem}.right-2{right:2rem}.bottom-2{bottom:2rem}.left-2{left:2rem}.top--1{top:-1rem}.right--1{right:-1rem}.bottom--1{bottom:-1rem}.left--1{left:-1rem}.top--2{top:-2rem}.right--2{right:-2rem}.bottom--2{bottom:-2rem}.left--2{left:-2rem}.absolute--fill{top:0;right:0;bottom:0;left:0}.cf:after,.cf:before{content:" ";display:table}.cf:after{clear:both}.cf{*zoom:1}.cl{clear:left}.cr{clear:right}.cb{clear:both}.cn{clear:none}.dn{display:none}.di{display:inline}.db{display:block}.dib{display:inline-block}.dit{display:inline-table}.dt{display:table}.dtc{display:table-cell}.dt-row{display:table-row}.dt-row-group{display:table-row-group}.dt-column{display:table-column}.dt-column-group{display:table-column-group}.dt--fixed{table-layout:fixed;width:100%}.flex{display:flex}.inline-flex{display:inline-flex}.flex-auto{flex:1 1 auto;min-width:0;min-height:0}.flex-none{flex:none}.flex-column{flex-direction:column}.flex-row{flex-direction:row}.flex-wrap{flex-wrap:wrap}.flex-nowrap{flex-wrap:nowrap}.flex-wrap-reverse{flex-wrap:wrap-reverse}.flex-column-reverse{flex-direction:column-reverse}.flex-row-reverse{flex-direction:row-reverse}.items-start{align-items:flex-start}.items-end{align-items:flex-end}.items-center{align-items:center}.items-baseline{align-items:baseline}.items-stretch{align-items:stretch}.self-start{align-self:flex-start}.self-end{align-self:flex-end}.self-center{align-self:center}.self-baseline{align-self:baseline}.self-stretch{align-self:stretch}.justify-start{justify-content:flex-start}.justify-end{justify-content:flex-end}.justify-center{justify-content:center}.justify-between{justify-content:space-between}.justify-around{justify-content:space-around}.content-start{align-content:flex-start}.content-end{align-content:flex-end}.content-center{align-content:center}.content-between{align-content:space-between}.content-around{align-content:space-around}.content-stretch{align-content:stretch}.order-0{order:0}.order-1{order:1}.order-2{order:2}.order-3{order:3}.order-4{order:4}.order-5{order:5}.order-6{order:6}.order-7{order:7}.order-8{order:8}.order-last{order:99999}.flex-grow-0{flex-grow:0}.flex-grow-1{flex-grow:1}.flex-shrink-0{flex-shrink:0}.flex-shrink-1{flex-shrink:1}.fl{float:left}.fl,.fr{_display:inline}.fr{float:right}.fn{float:none}.sans-serif{font-family:-apple-system,BlinkMacSystemFont,avenir next,avenir,helvetica neue,helvetica,ubuntu,roboto,noto,segoe ui,arial,sans-serif}.serif{font-family:georgia,times,serif}.system-sans-serif{font-family:sans-serif}.system-serif{font-family:serif}.code,code{font-family:Consolas,monaco,monospace}.courier{font-family:Courier Next,courier,monospace}.helvetica{font-family:helvetica neue,helvetica,sans-serif}.avenir{font-family:avenir next,avenir,sans-serif}.athelas{font-family:athelas,georgia,serif}.georgia{font-family:georgia,serif}.times{font-family:times,serif}.bodoni{font-family:Bodoni MT,serif}.calisto{font-family:Calisto MT,serif}.garamond{font-family:garamond,serif}.baskerville{font-family:baskerville,serif}.i{font-style:italic}.fs-normal{font-style:normal}.normal{font-weight:400}.b{font-weight:700}.fw1{font-weight:100}.fw2{font-weight:200}.fw3{font-weight:300}.fw4{font-weight:400}.fw5{font-weight:500}.fw6{font-weight:600}.fw7{font-weight:700}.fw8{font-weight:800}.fw9{font-weight:900}.input-reset{-webkit-appearance:none;-moz-appearance:none}.button-reset::-moz-focus-inner,.input-reset::-moz-focus-inner{border:0;padding:0}.h1{height:1rem}.h2{height:2rem}.h3{height:4rem}.h4{height:8rem}.h5{height:16rem}.h-25{height:25%}.h-50{height:50%}.h-75{height:75%}.h-100{height:100%}.min-h-100{min-height:100%}.vh-25{height:25vh}.vh-50{height:50vh}.vh-75{height:75vh}.vh-100{height:100vh}.min-vh-100{min-height:100vh}.h-auto{height:auto}.h-inherit{height:inherit}.tracked{letter-spacing:.1em}.tracked-tight{letter-spacing:-.05em}.tracked-mega{letter-spacing:.25em}.lh-solid{line-height:1}.lh-title{line-height:1.25}.lh-copy{line-height:1.5}.link{text-decoration:none}.link,.link:active,.link:focus,.link:hover,.link:link,.link:visited{transition:color .15s ease-in}.link:focus{outline:1px dotted currentColor}.list{list-style-type:none}.mw-100{max-width:100%}.mw1{max-width:1rem}.mw2{max-width:2rem}.mw3{max-width:4rem}.mw4{max-width:8rem}.mw5{max-width:16rem}.mw6{max-width:32rem}.mw7{max-width:48rem}.mw8{max-width:64rem}.mw9{max-width:96rem}.mw-none{max-width:none}.w1{width:1rem}.w2{width:2rem}.w3{width:4rem}.w4{width:8rem}.w5{width:16rem}.w-10{width:10%}.w-20{width:20%}.w-25{width:25%}.w-30{width:30%}.w-33{width:33%}.w-34{width:34%}.w-40{width:40%}.w-50{width:50%}.w-60{width:60%}.w-70{width:70%}.w-75{width:75%}.w-80{width:80%}.w-90{width:90%}.w-100{width:100%}.w-third{width:33.33333%}.w-two-thirds{width:66.66667%}.w-auto{width:auto}.overflow-visible{overflow:visible}.overflow-hidden{overflow:hidden}.overflow-scroll{overflow:scroll}.overflow-auto{overflow:auto}.overflow-x-visible{overflow-x:visible}.overflow-x-hidden{overflow-x:hidden}.overflow-x-scroll{overflow-x:scroll}.overflow-x-auto{overflow-x:auto}.overflow-y-visible{overflow-y:visible}.overflow-y-hidden{overflow-y:hidden}.overflow-y-scroll{overflow-y:scroll}.overflow-y-auto{overflow-y:auto}.static{position:static}.relative{position:relative}.absolute{position:absolute}.fixed{position:fixed}.o-100{opacity:1}.o-90{opacity:.9}.o-80{opacity:.8}.o-70{opacity:.7}.o-60{opacity:.6}.o-50{opacity:.5}.o-40{opacity:.4}.o-30{opacity:.3}.o-20{opacity:.2}.o-10{opacity:.1}.o-05{opacity:.05}.o-025{opacity:.025}.o-0{opacity:0}.rotate-45{-webkit-transform:rotate(45deg);transform:rotate(45deg)}.rotate-90{-webkit-transform:rotate(90deg);transform:rotate(90deg)}.rotate-135{-webkit-transform:rotate(135deg);transform:rotate(135deg)}.rotate-180{-webkit-transform:rotate(180deg);transform:rotate(180deg)}.rotate-225{-webkit-transform:rotate(225deg);transform:rotate(225deg)}.rotate-270{-webkit-transform:rotate(270deg);transform:rotate(270deg)}.rotate-315{-webkit-transform:rotate(315deg);transform:rotate(315deg)}.black-90{color:rgba(0,0,0,.9)}.black-80{color:rgba(0,0,0,.8)}.black-70{color:rgba(0,0,0,.7)}.black-60{color:rgba(0,0,0,.6)}.black-50{color:rgba(0,0,0,.5)}.black-40{color:rgba(0,0,0,.4)}.black-30{color:rgba(0,0,0,.3)}.black-20{color:rgba(0,0,0,.2)}.black-10{color:rgba(0,0,0,.1)}.black-05{color:rgba(0,0,0,.05)}.white-90{color:hsla(0,0%,100%,.9)}.white-80{color:hsla(0,0%,100%,.8)}.white-70{color:hsla(0,0%,100%,.7)}.white-60{color:hsla(0,0%,100%,.6)}.white-50{color:hsla(0,0%,100%,.5)}.white-40{color:hsla(0,0%,100%,.4)}.white-30{color:hsla(0,0%,100%,.3)}.white-20{color:hsla(0,0%,100%,.2)}.white-10{color:hsla(0,0%,100%,.1)}.black{color:#000}.near-black{color:#111}.dark-gray{color:#333}.mid-gray{color:#555}.gray{color:#777}.silver{color:#999}.light-silver{color:#aaa}.moon-gray{color:#ccc}.light-gray{color:#eee}.near-white{color:#f4f4f4}.white{color:#fff}.dark-red{color:#e7040f}.red{color:#ff4136}.light-red{color:#ff725c}.orange{color:#ff6300}.gold{color:#ffb700}.yellow{color:gold}.light-yellow{color:#fbf1a9}.purple{color:#5e2ca5}.light-purple{color:#a463f2}.dark-pink{color:#d5008f}.hot-pink{color:#ff41b4}.pink{color:#ff80cc}.light-pink{color:#ffa3d7}.dark-green{color:#137752}.green{color:#19a974}.light-green{color:#9eebcf}.navy{color:#001b44}.dark-blue{color:#00449e}.blue{color:#357edd}.light-blue{color:#96ccff}.lightest-blue{color:#cdecff}.washed-blue{color:#f6fffe}.washed-green{color:#e8fdf5}.washed-yellow{color:#fffceb}.washed-red{color:#ffdfdf}.color-inherit{color:inherit}.bg-black-90{background-color:rgba(0,0,0,.9)}.bg-black-80{background-color:rgba(0,0,0,.8)}.bg-black-70{background-color:rgba(0,0,0,.7)}.bg-black-60{background-color:rgba(0,0,0,.6)}.bg-black-50{background-color:rgba(0,0,0,.5)}.bg-black-40{background-color:rgba(0,0,0,.4)}.bg-black-30{background-color:rgba(0,0,0,.3)}.bg-black-20{background-color:rgba(0,0,0,.2)}.bg-black-10{background-color:rgba(0,0,0,.1)}.bg-black-05{background-color:rgba(0,0,0,.05)}.bg-white-90{background-color:hsla(0,0%,100%,.9)}.bg-white-80{background-color:hsla(0,0%,100%,.8)}.bg-white-70{background-color:hsla(0,0%,100%,.7)}.bg-white-60{background-color:hsla(0,0%,100%,.6)}.bg-white-50{background-color:hsla(0,0%,100%,.5)}.bg-white-40{background-color:hsla(0,0%,100%,.4)}.bg-white-30{background-color:hsla(0,0%,100%,.3)}.bg-white-20{background-color:hsla(0,0%,100%,.2)}.bg-white-10{background-color:hsla(0,0%,100%,.1)}.bg-black{background-color:#000}.bg-near-black{background-color:#111}.bg-dark-gray{background-color:#333}.bg-mid-gray{background-color:#555}.bg-gray{background-color:#777}.bg-silver{background-color:#999}.bg-light-silver{background-color:#aaa}.bg-moon-gray{background-color:#ccc}.bg-light-gray{background-color:#eee}.bg-near-white{background-color:#f4f4f4}.bg-white{background-color:#fff}.bg-transparent{background-color:transparent}.bg-dark-red{background-color:#e7040f}.bg-red{background-color:#ff4136}.bg-light-red{background-color:#ff725c}.bg-orange{background-color:#ff6300}.bg-gold{background-color:#ffb700}.bg-yellow{background-color:gold}.bg-light-yellow{background-color:#fbf1a9}.bg-purple{background-color:#5e2ca5}.bg-light-purple{background-color:#a463f2}.bg-dark-pink{background-color:#d5008f}.bg-hot-pink{background-color:#ff41b4}.bg-pink{background-color:#ff80cc}.bg-light-pink{background-color:#ffa3d7}.bg-dark-green{background-color:#137752}.bg-green{background-color:#19a974}.bg-light-green{background-color:#9eebcf}.bg-navy{background-color:#001b44}.bg-dark-blue{background-color:#00449e}.bg-blue{background-color:#357edd}.bg-light-blue{background-color:#96ccff}.bg-lightest-blue{background-color:#cdecff}.bg-washed-blue{background-color:#f6fffe}.bg-washed-green{background-color:#e8fdf5}.bg-washed-yellow{background-color:#fffceb}.bg-washed-red{background-color:#ffdfdf}.bg-inherit{background-color:inherit}.hover-black:focus,.hover-black:hover{color:#000}.hover-near-black:focus,.hover-near-black:hover{color:#111}.hover-dark-gray:focus,.hover-dark-gray:hover{color:#333}.hover-mid-gray:focus,.hover-mid-gray:hover{color:#555}.hover-gray:focus,.hover-gray:hover{color:#777}.hover-silver:focus,.hover-silver:hover{color:#999}.hover-light-silver:focus,.hover-light-silver:hover{color:#aaa}.hover-moon-gray:focus,.hover-moon-gray:hover{color:#ccc}.hover-light-gray:focus,.hover-light-gray:hover{color:#eee}.hover-near-white:focus,.hover-near-white:hover{color:#f4f4f4}.hover-white:focus,.hover-white:hover{color:#fff}.hover-black-90:focus,.hover-black-90:hover{color:rgba(0,0,0,.9)}.hover-black-80:focus,.hover-black-80:hover{color:rgba(0,0,0,.8)}.hover-black-70:focus,.hover-black-70:hover{color:rgba(0,0,0,.7)}.hover-black-60:focus,.hover-black-60:hover{color:rgba(0,0,0,.6)}.hover-black-50:focus,.hover-black-50:hover{color:rgba(0,0,0,.5)}.hover-black-40:focus,.hover-black-40:hover{color:rgba(0,0,0,.4)}.hover-black-30:focus,.hover-black-30:hover{color:rgba(0,0,0,.3)}.hover-black-20:focus,.hover-black-20:hover{color:rgba(0,0,0,.2)}.hover-black-10:focus,.hover-black-10:hover{color:rgba(0,0,0,.1)}.hover-white-90:focus,.hover-white-90:hover{color:hsla(0,0%,100%,.9)}.hover-white-80:focus,.hover-white-80:hover{color:hsla(0,0%,100%,.8)}.hover-white-70:focus,.hover-white-70:hover{color:hsla(0,0%,100%,.7)}.hover-white-60:focus,.hover-white-60:hover{color:hsla(0,0%,100%,.6)}.hover-white-50:focus,.hover-white-50:hover{color:hsla(0,0%,100%,.5)}.hover-white-40:focus,.hover-white-40:hover{color:hsla(0,0%,100%,.4)}.hover-white-30:focus,.hover-white-30:hover{color:hsla(0,0%,100%,.3)}.hover-white-20:focus,.hover-white-20:hover{color:hsla(0,0%,100%,.2)}.hover-white-10:focus,.hover-white-10:hover{color:hsla(0,0%,100%,.1)}.hover-inherit:focus,.hover-inherit:hover{color:inherit}.hover-bg-black:focus,.hover-bg-black:hover{background-color:#000}.hover-bg-near-black:focus,.hover-bg-near-black:hover{background-color:#111}.hover-bg-dark-gray:focus,.hover-bg-dark-gray:hover{background-color:#333}.hover-bg-mid-gray:focus,.hover-bg-mid-gray:hover{background-color:#555}.hover-bg-gray:focus,.hover-bg-gray:hover{background-color:#777}.hover-bg-silver:focus,.hover-bg-silver:hover{background-color:#999}.hover-bg-light-silver:focus,.hover-bg-light-silver:hover{background-color:#aaa}.hover-bg-moon-gray:focus,.hover-bg-moon-gray:hover{background-color:#ccc}.hover-bg-light-gray:focus,.hover-bg-light-gray:hover{background-color:#eee}.hover-bg-near-white:focus,.hover-bg-near-white:hover{background-color:#f4f4f4}.hover-bg-white:focus,.hover-bg-white:hover{background-color:#fff}.hover-bg-transparent:focus,.hover-bg-transparent:hover{background-color:transparent}.hover-bg-black-90:focus,.hover-bg-black-90:hover{background-color:rgba(0,0,0,.9)}.hover-bg-black-80:focus,.hover-bg-black-80:hover{background-color:rgba(0,0,0,.8)}.hover-bg-black-70:focus,.hover-bg-black-70:hover{background-color:rgba(0,0,0,.7)}.hover-bg-black-60:focus,.hover-bg-black-60:hover{background-color:rgba(0,0,0,.6)}.hover-bg-black-50:focus,.hover-bg-black-50:hover{background-color:rgba(0,0,0,.5)}.hover-bg-black-40:focus,.hover-bg-black-40:hover{background-color:rgba(0,0,0,.4)}.hover-bg-black-30:focus,.hover-bg-black-30:hover{background-color:rgba(0,0,0,.3)}.hover-bg-black-20:focus,.hover-bg-black-20:hover{background-color:rgba(0,0,0,.2)}.hover-bg-black-10:focus,.hover-bg-black-10:hover{background-color:rgba(0,0,0,.1)}.hover-bg-white-90:focus,.hover-bg-white-90:hover{background-color:hsla(0,0%,100%,.9)}.hover-bg-white-80:focus,.hover-bg-white-80:hover{background-color:hsla(0,0%,100%,.8)}.hover-bg-white-70:focus,.hover-bg-white-70:hover{background-color:hsla(0,0%,100%,.7)}.hover-bg-white-60:focus,.hover-bg-white-60:hover{background-color:hsla(0,0%,100%,.6)}.hover-bg-white-50:focus,.hover-bg-white-50:hover{background-color:hsla(0,0%,100%,.5)}.hover-bg-white-40:focus,.hover-bg-white-40:hover{background-color:hsla(0,0%,100%,.4)}.hover-bg-white-30:focus,.hover-bg-white-30:hover{background-color:hsla(0,0%,100%,.3)}.hover-bg-white-20:focus,.hover-bg-white-20:hover{background-color:hsla(0,0%,100%,.2)}.hover-bg-white-10:focus,.hover-bg-white-10:hover{background-color:hsla(0,0%,100%,.1)}.hover-dark-red:focus,.hover-dark-red:hover{color:#e7040f}.hover-red:focus,.hover-red:hover{color:#ff4136}.hover-light-red:focus,.hover-light-red:hover{color:#ff725c}.hover-orange:focus,.hover-orange:hover{color:#ff6300}.hover-gold:focus,.hover-gold:hover{color:#ffb700}.hover-yellow:focus,.hover-yellow:hover{color:gold}.hover-light-yellow:focus,.hover-light-yellow:hover{color:#fbf1a9}.hover-purple:focus,.hover-purple:hover{color:#5e2ca5}.hover-light-purple:focus,.hover-light-purple:hover{color:#a463f2}.hover-dark-pink:focus,.hover-dark-pink:hover{color:#d5008f}.hover-hot-pink:focus,.hover-hot-pink:hover{color:#ff41b4}.hover-pink:focus,.hover-pink:hover{color:#ff80cc}.hover-light-pink:focus,.hover-light-pink:hover{color:#ffa3d7}.hover-dark-green:focus,.hover-dark-green:hover{color:#137752}.hover-green:focus,.hover-green:hover{color:#19a974}.hover-light-green:focus,.hover-light-green:hover{color:#9eebcf}.hover-navy:focus,.hover-navy:hover{color:#001b44}.hover-dark-blue:focus,.hover-dark-blue:hover{color:#00449e}.hover-blue:focus,.hover-blue:hover{color:#357edd}.hover-light-blue:focus,.hover-light-blue:hover{color:#96ccff}.hover-lightest-blue:focus,.hover-lightest-blue:hover{color:#cdecff}.hover-washed-blue:focus,.hover-washed-blue:hover{color:#f6fffe}.hover-washed-green:focus,.hover-washed-green:hover{color:#e8fdf5}.hover-washed-yellow:focus,.hover-washed-yellow:hover{color:#fffceb}.hover-washed-red:focus,.hover-washed-red:hover{color:#ffdfdf}.hover-bg-dark-red:focus,.hover-bg-dark-red:hover{background-color:#e7040f}.hover-bg-red:focus,.hover-bg-red:hover{background-color:#ff4136}.hover-bg-light-red:focus,.hover-bg-light-red:hover{background-color:#ff725c}.hover-bg-orange:focus,.hover-bg-orange:hover{background-color:#ff6300}.hover-bg-gold:focus,.hover-bg-gold:hover{background-color:#ffb700}.hover-bg-yellow:focus,.hover-bg-yellow:hover{background-color:gold}.hover-bg-light-yellow:focus,.hover-bg-light-yellow:hover{background-color:#fbf1a9}.hover-bg-purple:focus,.hover-bg-purple:hover{background-color:#5e2ca5}.hover-bg-light-purple:focus,.hover-bg-light-purple:hover{background-color:#a463f2}.hover-bg-dark-pink:focus,.hover-bg-dark-pink:hover{background-color:#d5008f}.hover-bg-hot-pink:focus,.hover-bg-hot-pink:hover{background-color:#ff41b4}.hover-bg-pink:focus,.hover-bg-pink:hover{background-color:#ff80cc}.hover-bg-light-pink:focus,.hover-bg-light-pink:hover{background-color:#ffa3d7}.hover-bg-dark-green:focus,.hover-bg-dark-green:hover{background-color:#137752}.hover-bg-green:focus,.hover-bg-green:hover{background-color:#19a974}.hover-bg-light-green:focus,.hover-bg-light-green:hover{background-color:#9eebcf}.hover-bg-navy:focus,.hover-bg-navy:hover{background-color:#001b44}.hover-bg-dark-blue:focus,.hover-bg-dark-blue:hover{background-color:#00449e}.hover-bg-blue:focus,.hover-bg-blue:hover{background-color:#357edd}.hover-bg-light-blue:focus,.hover-bg-light-blue:hover{background-color:#96ccff}.hover-bg-lightest-blue:focus,.hover-bg-lightest-blue:hover{background-color:#cdecff}.hover-bg-washed-blue:focus,.hover-bg-washed-blue:hover{background-color:#f6fffe}.hover-bg-washed-green:focus,.hover-bg-washed-green:hover{background-color:#e8fdf5}.hover-bg-washed-yellow:focus,.hover-bg-washed-yellow:hover{background-color:#fffceb}.hover-bg-washed-red:focus,.hover-bg-washed-red:hover{background-color:#ffdfdf}.hover-bg-inherit:focus,.hover-bg-inherit:hover{background-color:inherit}.pa0{padding:0}.pa1{padding:.25rem}.pa2{padding:.5rem}.pa3{padding:1rem}.pa4{padding:2rem}.pa5{padding:4rem}.pa6{padding:8rem}.pa7{padding:16rem}.pl0{padding-left:0}.pl1{padding-left:.25rem}.pl2{padding-left:.5rem}.pl3{padding-left:1rem}.pl4{padding-left:2rem}.pl5{padding-left:4rem}.pl6{padding-left:8rem}.pl7{padding-left:16rem}.pr0{padding-right:0}.pr1{padding-right:.25rem}.pr2{padding-right:.5rem}.pr3{padding-right:1rem}.pr4{padding-right:2rem}.pr5{padding-right:4rem}.pr6{padding-right:8rem}.pr7{padding-right:16rem}.pb0{padding-bottom:0}.pb1{padding-bottom:.25rem}.pb2{padding-bottom:.5rem}.pb3{padding-bottom:1rem}.pb4{padding-bottom:2rem}.pb5{padding-bottom:4rem}.pb6{padding-bottom:8rem}.pb7{padding-bottom:16rem}.pt0{padding-top:0}.pt1{padding-top:.25rem}.pt2{padding-top:.5rem}.pt3{padding-top:1rem}.pt4{padding-top:2rem}.pt5{padding-top:4rem}.pt6{padding-top:8rem}.pt7{padding-top:16rem}.pv0{padding-top:0;padding-bottom:0}.pv1{padding-top:.25rem;padding-bottom:.25rem}.pv2{padding-top:.5rem;padding-bottom:.5rem}.pv3{padding-top:1rem;padding-bottom:1rem}.pv4{padding-top:2rem;padding-bottom:2rem}.pv5{padding-top:4rem;padding-bottom:4rem}.pv6{padding-top:8rem;padding-bottom:8rem}.pv7{padding-top:16rem;padding-bottom:16rem}.ph0{padding-left:0;padding-right:0}.ph1{padding-left:.25rem;padding-right:.25rem}.ph2{padding-left:.5rem;padding-right:.5rem}.ph3{padding-left:1rem;padding-right:1rem}.ph4{padding-left:2rem;padding-right:2rem}.ph5{padding-left:4rem;padding-right:4rem}.ph6{padding-left:8rem;padding-right:8rem}.ph7{padding-left:16rem;padding-right:16rem}.ma0{margin:0}.ma1{margin:.25rem}.ma2{margin:.5rem}.ma3{margin:1rem}.ma4{margin:2rem}.ma5{margin:4rem}.ma6{margin:8rem}.ma7{margin:16rem}.ml0{margin-left:0}.ml1{margin-left:.25rem}.ml2{margin-left:.5rem}.ml3{margin-left:1rem}.ml4{margin-left:2rem}.ml5{margin-left:4rem}.ml6{margin-left:8rem}.ml7{margin-left:16rem}.mr0{margin-right:0}.mr1{margin-right:.25rem}.mr2{margin-right:.5rem}.mr3{margin-right:1rem}.mr4{margin-right:2rem}.mr5{margin-right:4rem}.mr6{margin-right:8rem}.mr7{margin-right:16rem}.mb0{margin-bottom:0}.mb1{margin-bottom:.25rem}.mb2{margin-bottom:.5rem}.mb3{margin-bottom:1rem}.mb4{margin-bottom:2rem}.mb5{margin-bottom:4rem}.mb6{margin-bottom:8rem}.mb7{margin-bottom:16rem}.mt0{margin-top:0}.mt1{margin-top:.25rem}.mt2{margin-top:.5rem}.mt3{margin-top:1rem}.mt4{margin-top:2rem}.mt5{margin-top:4rem}.mt6{margin-top:8rem}.mt7{margin-top:16rem}.mv0{margin-top:0;margin-bottom:0}.mv1{margin-top:.25rem;margin-bottom:.25rem}.mv2{margin-top:.5rem;margin-bottom:.5rem}.mv3{margin-top:1rem;margin-bottom:1rem}.mv4{margin-top:2rem;margin-bottom:2rem}.mv5{margin-top:4rem;margin-bottom:4rem}.mv6{margin-top:8rem;margin-bottom:8rem}.mv7{margin-top:16rem;margin-bottom:16rem}.mh0{margin-left:0;margin-right:0}.mh1{margin-left:.25rem;margin-right:.25rem}.mh2{margin-left:.5rem;margin-right:.5rem}.mh3{margin-left:1rem;margin-right:1rem}.mh4{margin-left:2rem;margin-right:2rem}.mh5{margin-left:4rem;margin-right:4rem}.mh6{margin-left:8rem;margin-right:8rem}.mh7{margin-left:16rem;margin-right:16rem}.na1{margin:-.25rem}.na2{margin:-.5rem}.na3{margin:-1rem}.na4{margin:-2rem}.na5{margin:-4rem}.na6{margin:-8rem}.na7{margin:-16rem}.nl1{margin-left:-.25rem}.nl2{margin-left:-.5rem}.nl3{margin-left:-1rem}.nl4{margin-left:-2rem}.nl5{margin-left:-4rem}.nl6{margin-left:-8rem}.nl7{margin-left:-16rem}.nr1{margin-right:-.25rem}.nr2{margin-right:-.5rem}.nr3{margin-right:-1rem}.nr4{margin-right:-2rem}.nr5{margin-right:-4rem}.nr6{margin-right:-8rem}.nr7{margin-right:-16rem}.nb1{margin-bottom:-.25rem}.nb2{margin-bottom:-.5rem}.nb3{margin-bottom:-1rem}.nb4{margin-bottom:-2rem}.nb5{margin-bottom:-4rem}.nb6{margin-bottom:-8rem}.nb7{margin-bottom:-16rem}.nt1{margin-top:-.25rem}.nt2{margin-top:-.5rem}.nt3{margin-top:-1rem}.nt4{margin-top:-2rem}.nt5{margin-top:-4rem}.nt6{margin-top:-8rem}.nt7{margin-top:-16rem}.collapse{border-collapse:collapse;border-spacing:0}.striped--light-silver:nth-child(odd){background-color:#aaa}.striped--moon-gray:nth-child(odd){background-color:#ccc}.striped--light-gray:nth-child(odd){background-color:#eee}.striped--near-white:nth-child(odd){background-color:#f4f4f4}.stripe-light:nth-child(odd){background-color:hsla(0,0%,100%,.1)}.stripe-dark:nth-child(odd){background-color:rgba(0,0,0,.1)}.strike{text-decoration:line-through}.underline{text-decoration:underline}.no-underline{text-decoration:none}.tl{text-align:left}.tr{text-align:right}.tc{text-align:center}.tj{text-align:justify}.ttc{text-transform:capitalize}.ttl{text-transform:lowercase}.ttu{text-transform:uppercase}.ttn{text-transform:none}.f-6,.f-headline{font-size:6rem}.f-5,.f-subheadline{font-size:5rem}.f1{font-size:3rem}.f2{font-size:2.25rem}.f3{font-size:1.5rem}.f4{font-size:1.25rem}.f5{font-size:1rem}.f6{font-size:.875rem}.f7{font-size:.75rem}.measure{max-width:30em}.measure-wide{max-width:34em}.measure-narrow{max-width:20em}.indent{text-indent:1em;margin-top:0;margin-bottom:0}.small-caps{font-variant:small-caps}.truncate{white-space:nowrap;overflow:hidden;text-overflow:ellipsis}.overflow-container{overflow-y:scroll}.center{margin-left:auto}.center,.mr-auto{margin-right:auto}.ml-auto{margin-left:auto}.clip{position:fixed!important;_position:absolute!important;clip:rect(1px 1px 1px 1px);clip:rect(1px,1px,1px,1px)}.ws-normal{white-space:normal}.nowrap{white-space:nowrap}.pre{white-space:pre}.v-base{vertical-align:baseline}.v-mid{vertical-align:middle}.v-top{vertical-align:top}.v-btm{vertical-align:bottom}.dim{opacity:1}.dim,.dim:focus,.dim:hover{transition:opacity .15s ease-in}.dim:focus,.dim:hover{opacity:.5}.dim:active{opacity:.8;transition:opacity .15s ease-out}.glow,.glow:focus,.glow:hover{transition:opacity .15s ease-in}.glow:focus,.glow:hover{opacity:1}.hide-child .child{opacity:0;transition:opacity .15s ease-in}.hide-child:active .child,.hide-child:focus .child,.hide-child:hover .child{opacity:1;transition:opacity .15s ease-in}.underline-hover:focus,.underline-hover:hover{text-decoration:underline}.grow{-moz-osx-font-smoothing:grayscale;-webkit-backface-visibility:hidden;backface-visibility:hidden;-webkit-transform:translateZ(0);transform:translateZ(0);transition:-webkit-transform .25s ease-out;transition:transform .25s ease-out;transition:transform .25s ease-out,-webkit-transform .25s ease-out}.grow:focus,.grow:hover{-webkit-transform:scale(1.05);transform:scale(1.05)}.grow:active{-webkit-transform:scale(.9);transform:scale(.9)}.grow-large{-moz-osx-font-smoothing:grayscale;-webkit-backface-visibility:hidden;backface-visibility:hidden;-webkit-transform:translateZ(0);transform:translateZ(0);transition:-webkit-transform .25s ease-in-out;transition:transform .25s ease-in-out;transition:transform .25s ease-in-out,-webkit-transform .25s ease-in-out}.grow-large:focus,.grow-large:hover{-webkit-transform:scale(1.2);transform:scale(1.2)}.grow-large:active{-webkit-transform:scale(.95);transform:scale(.95)}.pointer:hover,.shadow-hover{cursor:pointer}.shadow-hover{position:relative;transition:all .5s cubic-bezier(.165,.84,.44,1)}.shadow-hover:after{content:"";box-shadow:0 0 16px 2px rgba(0,0,0,.2);border-radius:inherit;opacity:0;position:absolute;top:0;left:0;width:100%;height:100%;z-index:-1;transition:opacity .5s cubic-bezier(.165,.84,.44,1)}.shadow-hover:focus:after,.shadow-hover:hover:after{opacity:1}.bg-animate,.bg-animate:focus,.bg-animate:hover{transition:background-color .15s ease-in-out}.z-0{z-index:0}.z-1{z-index:1}.z-2{z-index:2}.z-3{z-index:3}.z-4{z-index:4}.z-5{z-index:5}.z-999{z-index:999}.z-9999{z-index:9999}.z-max{z-index:2147483647}.z-inherit{z-index:inherit}.z-initial{z-index:auto}.z-unset{z-index:unset}.nested-copy-line-height ol,.nested-copy-line-height p,.nested-copy-line-height ul{line-height:1.5}.nested-headline-line-height h1,.nested-headline-line-height h2,.nested-headline-line-height h3,.nested-headline-line-height h4,.nested-headline-line-height h5,.nested-headline-line-height h6{line-height:1.25}.nested-list-reset ol,.nested-list-reset ul{padding-left:0;margin-left:0;list-style-type:none}.nested-copy-indent p+p{text-indent:1em;margin-top:0;margin-bottom:0}.nested-copy-separator p+p{margin-top:1.5em}.nested-img img{width:100%;max-width:100%;display:block}.nested-links a{color:#357edd;transition:color .15s ease-in}.nested-links a:focus,.nested-links a:hover{color:#96ccff;transition:color .15s ease-in}.debug *{outline:1px solid gold}.debug-white *{outline:1px solid #fff}.debug-black *{outline:1px solid #000}.debug-grid{background:transparent url(data:image/png;base64,iVBORw0KGgoAAAANSUhEUgAAAAgAAAAICAYAAADED76LAAAAFElEQVR4AWPAC97/9x0eCsAEPgwAVLshdpENIxcAAAAASUVORK5CYII=) repeat 0 0}.debug-grid-16{background:transparent url(data:image/png;base64,iVBORw0KGgoAAAANSUhEUgAAABAAAAAQCAYAAAAf8/9hAAAAMklEQVR4AWOgCLz/b0epAa6UGuBOqQHOQHLUgFEDnAbcBZ4UGwDOkiCnkIhdgNgNxAYAiYlD+8sEuo8AAAAASUVORK5CYII=) repeat 0 0}.debug-grid-8-solid{background:#fff url(data:image/gif;base64,R0lGODdhCAAIAPEAAADw/wDx/////wAAACwAAAAACAAIAAACDZQvgaeb/lxbAIKA8y0AOw==) repeat 0 0}.debug-grid-16-solid{background:#fff url(data:image/gif;base64,R0lGODdhEAAQAPEAAADw/wDx/xXy/////ywAAAAAEAAQAAACIZyPKckYDQFsb6ZqD85jZ2+BkwiRFKehhqQCQgDHcgwEBQA7) repeat 0 0}@media screen and (min-width:30em){.aspect-ratio-ns{height:0;position:relative}.aspect-ratio--16x9-ns{padding-bottom:56.25%}.aspect-ratio--9x16-ns{padding-bottom:177.77%}.aspect-ratio--4x3-ns{padding-bottom:75%}.aspect-ratio--3x4-ns{padding-bottom:133.33%}.aspect-ratio--6x4-ns{padding-bottom:66.6%}.aspect-ratio--4x6-ns{padding-bottom:150%}.aspect-ratio--8x5-ns{padding-bottom:62.5%}.aspect-ratio--5x8-ns{padding-bottom:160%}.aspect-ratio--7x5-ns{padding-bottom:71.42%}.aspect-ratio--5x7-ns{padding-bottom:140%}.aspect-ratio--1x1-ns{padding-bottom:100%}.aspect-ratio--object-ns{position:absolute;top:0;right:0;bottom:0;left:0;width:100%;height:100%;z-index:100}.cover-ns{background-size:cover!important}.contain-ns{background-size:contain!important}.bg-center-ns{background-position:50%}.bg-center-ns,.bg-top-ns{background-repeat:no-repeat}.bg-top-ns{background-position:top}.bg-right-ns{background-position:100%}.bg-bottom-ns,.bg-right-ns{background-repeat:no-repeat}.bg-bottom-ns{background-position:bottom}.bg-left-ns{background-repeat:no-repeat;background-position:0}.outline-ns{outline:1px solid}.outline-transparent-ns{outline:1px solid transparent}.outline-0-ns{outline:0}.ba-ns{border-style:solid;border-width:1px}.bt-ns{border-top-style:solid;border-top-width:1px}.br-ns{border-right-style:solid;border-right-width:1px}.bb-ns{border-bottom-style:solid;border-bottom-width:1px}.bl-ns{border-left-style:solid;border-left-width:1px}.bn-ns{border-style:none;border-width:0}.br0-ns{border-radius:0}.br1-ns{border-radius:.125rem}.br2-ns{border-radius:.25rem}.br3-ns{border-radius:.5rem}.br4-ns{border-radius:1rem}.br-100-ns{border-radius:100%}.br-pill-ns{border-radius:9999px}.br--bottom-ns{border-top-left-radius:0;border-top-right-radius:0}.br--top-ns{border-bottom-right-radius:0}.br--right-ns,.br--top-ns{border-bottom-left-radius:0}.br--right-ns{border-top-left-radius:0}.br--left-ns{border-top-right-radius:0;border-bottom-right-radius:0}.b--dotted-ns{border-style:dotted}.b--dashed-ns{border-style:dashed}.b--solid-ns{border-style:solid}.b--none-ns{border-style:none}.bw0-ns{border-width:0}.bw1-ns{border-width:.125rem}.bw2-ns{border-width:.25rem}.bw3-ns{border-width:.5rem}.bw4-ns{border-width:1rem}.bw5-ns{border-width:2rem}.bt-0-ns{border-top-width:0}.br-0-ns{border-right-width:0}.bb-0-ns{border-bottom-width:0}.bl-0-ns{border-left-width:0}.shadow-1-ns{box-shadow:0 0 4px 2px rgba(0,0,0,.2)}.shadow-2-ns{box-shadow:0 0 8px 2px rgba(0,0,0,.2)}.shadow-3-ns{box-shadow:2px 2px 4px 2px rgba(0,0,0,.2)}.shadow-4-ns{box-shadow:2px 2px 8px 0 rgba(0,0,0,.2)}.shadow-5-ns{box-shadow:4px 4px 8px 0 rgba(0,0,0,.2)}.top-0-ns{top:0}.left-0-ns{left:0}.right-0-ns{right:0}.bottom-0-ns{bottom:0}.top-1-ns{top:1rem}.left-1-ns{left:1rem}.right-1-ns{right:1rem}.bottom-1-ns{bottom:1rem}.top-2-ns{top:2rem}.left-2-ns{left:2rem}.right-2-ns{right:2rem}.bottom-2-ns{bottom:2rem}.top--1-ns{top:-1rem}.right--1-ns{right:-1rem}.bottom--1-ns{bottom:-1rem}.left--1-ns{left:-1rem}.top--2-ns{top:-2rem}.right--2-ns{right:-2rem}.bottom--2-ns{bottom:-2rem}.left--2-ns{left:-2rem}.absolute--fill-ns{top:0;right:0;bottom:0;left:0}.cl-ns{clear:left}.cr-ns{clear:right}.cb-ns{clear:both}.cn-ns{clear:none}.dn-ns{display:none}.di-ns{display:inline}.db-ns{display:block}.dib-ns{display:inline-block}.dit-ns{display:inline-table}.dt-ns{display:table}.dtc-ns{display:table-cell}.dt-row-ns{display:table-row}.dt-row-group-ns{display:table-row-group}.dt-column-ns{display:table-column}.dt-column-group-ns{display:table-column-group}.dt--fixed-ns{table-layout:fixed;width:100%}.flex-ns{display:flex}.inline-flex-ns{display:inline-flex}.flex-auto-ns{flex:1 1 auto;min-width:0;min-height:0}.flex-none-ns{flex:none}.flex-column-ns{flex-direction:column}.flex-row-ns{flex-direction:row}.flex-wrap-ns{flex-wrap:wrap}.flex-nowrap-ns{flex-wrap:nowrap}.flex-wrap-reverse-ns{flex-wrap:wrap-reverse}.flex-column-reverse-ns{flex-direction:column-reverse}.flex-row-reverse-ns{flex-direction:row-reverse}.items-start-ns{align-items:flex-start}.items-end-ns{align-items:flex-end}.items-center-ns{align-items:center}.items-baseline-ns{align-items:baseline}.items-stretch-ns{align-items:stretch}.self-start-ns{align-self:flex-start}.self-end-ns{align-self:flex-end}.self-center-ns{align-self:center}.self-baseline-ns{align-self:baseline}.self-stretch-ns{align-self:stretch}.justify-start-ns{justify-content:flex-start}.justify-end-ns{justify-content:flex-end}.justify-center-ns{justify-content:center}.justify-between-ns{justify-content:space-between}.justify-around-ns{justify-content:space-around}.content-start-ns{align-content:flex-start}.content-end-ns{align-content:flex-end}.content-center-ns{align-content:center}.content-between-ns{align-content:space-between}.content-around-ns{align-content:space-around}.content-stretch-ns{align-content:stretch}.order-0-ns{order:0}.order-1-ns{order:1}.order-2-ns{order:2}.order-3-ns{order:3}.order-4-ns{order:4}.order-5-ns{order:5}.order-6-ns{order:6}.order-7-ns{order:7}.order-8-ns{order:8}.order-last-ns{order:99999}.flex-grow-0-ns{flex-grow:0}.flex-grow-1-ns{flex-grow:1}.flex-shrink-0-ns{flex-shrink:0}.flex-shrink-1-ns{flex-shrink:1}.fl-ns{float:left}.fl-ns,.fr-ns{_display:inline}.fr-ns{float:right}.fn-ns{float:none}.i-ns{font-style:italic}.fs-normal-ns{font-style:normal}.normal-ns{font-weight:400}.b-ns{font-weight:700}.fw1-ns{font-weight:100}.fw2-ns{font-weight:200}.fw3-ns{font-weight:300}.fw4-ns{font-weight:400}.fw5-ns{font-weight:500}.fw6-ns{font-weight:600}.fw7-ns{font-weight:700}.fw8-ns{font-weight:800}.fw9-ns{font-weight:900}.h1-ns{height:1rem}.h2-ns{height:2rem}.h3-ns{height:4rem}.h4-ns{height:8rem}.h5-ns{height:16rem}.h-25-ns{height:25%}.h-50-ns{height:50%}.h-75-ns{height:75%}.h-100-ns{height:100%}.min-h-100-ns{min-height:100%}.vh-25-ns{height:25vh}.vh-50-ns{height:50vh}.vh-75-ns{height:75vh}.vh-100-ns{height:100vh}.min-vh-100-ns{min-height:100vh}.h-auto-ns{height:auto}.h-inherit-ns{height:inherit}.tracked-ns{letter-spacing:.1em}.tracked-tight-ns{letter-spacing:-.05em}.tracked-mega-ns{letter-spacing:.25em}.lh-solid-ns{line-height:1}.lh-title-ns{line-height:1.25}.lh-copy-ns{line-height:1.5}.mw-100-ns{max-width:100%}.mw1-ns{max-width:1rem}.mw2-ns{max-width:2rem}.mw3-ns{max-width:4rem}.mw4-ns{max-width:8rem}.mw5-ns{max-width:16rem}.mw6-ns{max-width:32rem}.mw7-ns{max-width:48rem}.mw8-ns{max-width:64rem}.mw9-ns{max-width:96rem}.mw-none-ns{max-width:none}.w1-ns{width:1rem}.w2-ns{width:2rem}.w3-ns{width:4rem}.w4-ns{width:8rem}.w5-ns{width:16rem}.w-10-ns{width:10%}.w-20-ns{width:20%}.w-25-ns{width:25%}.w-30-ns{width:30%}.w-33-ns{width:33%}.w-34-ns{width:34%}.w-40-ns{width:40%}.w-50-ns{width:50%}.w-60-ns{width:60%}.w-70-ns{width:70%}.w-75-ns{width:75%}.w-80-ns{width:80%}.w-90-ns{width:90%}.w-100-ns{width:100%}.w-third-ns{width:33.33333%}.w-two-thirds-ns{width:66.66667%}.w-auto-ns{width:auto}.overflow-visible-ns{overflow:visible}.overflow-hidden-ns{overflow:hidden}.overflow-scroll-ns{overflow:scroll}.overflow-auto-ns{overflow:auto}.overflow-x-visible-ns{overflow-x:visible}.overflow-x-hidden-ns{overflow-x:hidden}.overflow-x-scroll-ns{overflow-x:scroll}.overflow-x-auto-ns{overflow-x:auto}.overflow-y-visible-ns{overflow-y:visible}.overflow-y-hidden-ns{overflow-y:hidden}.overflow-y-scroll-ns{overflow-y:scroll}.overflow-y-auto-ns{overflow-y:auto}.static-ns{position:static}.relative-ns{position:relative}.absolute-ns{position:absolute}.fixed-ns{position:fixed}.rotate-45-ns{-webkit-transform:rotate(45deg);transform:rotate(45deg)}.rotate-90-ns{-webkit-transform:rotate(90deg);transform:rotate(90deg)}.rotate-135-ns{-webkit-transform:rotate(135deg);transform:rotate(135deg)}.rotate-180-ns{-webkit-transform:rotate(180deg);transform:rotate(180deg)}.rotate-225-ns{-webkit-transform:rotate(225deg);transform:rotate(225deg)}.rotate-270-ns{-webkit-transform:rotate(270deg);transform:rotate(270deg)}.rotate-315-ns{-webkit-transform:rotate(315deg);transform:rotate(315deg)}.pa0-ns{padding:0}.pa1-ns{padding:.25rem}.pa2-ns{padding:.5rem}.pa3-ns{padding:1rem}.pa4-ns{padding:2rem}.pa5-ns{padding:4rem}.pa6-ns{padding:8rem}.pa7-ns{padding:16rem}.pl0-ns{padding-left:0}.pl1-ns{padding-left:.25rem}.pl2-ns{padding-left:.5rem}.pl3-ns{padding-left:1rem}.pl4-ns{padding-left:2rem}.pl5-ns{padding-left:4rem}.pl6-ns{padding-left:8rem}.pl7-ns{padding-left:16rem}.pr0-ns{padding-right:0}.pr1-ns{padding-right:.25rem}.pr2-ns{padding-right:.5rem}.pr3-ns{padding-right:1rem}.pr4-ns{padding-right:2rem}.pr5-ns{padding-right:4rem}.pr6-ns{padding-right:8rem}.pr7-ns{padding-right:16rem}.pb0-ns{padding-bottom:0}.pb1-ns{padding-bottom:.25rem}.pb2-ns{padding-bottom:.5rem}.pb3-ns{padding-bottom:1rem}.pb4-ns{padding-bottom:2rem}.pb5-ns{padding-bottom:4rem}.pb6-ns{padding-bottom:8rem}.pb7-ns{padding-bottom:16rem}.pt0-ns{padding-top:0}.pt1-ns{padding-top:.25rem}.pt2-ns{padding-top:.5rem}.pt3-ns{padding-top:1rem}.pt4-ns{padding-top:2rem}.pt5-ns{padding-top:4rem}.pt6-ns{padding-top:8rem}.pt7-ns{padding-top:16rem}.pv0-ns{padding-top:0;padding-bottom:0}.pv1-ns{padding-top:.25rem;padding-bottom:.25rem}.pv2-ns{padding-top:.5rem;padding-bottom:.5rem}.pv3-ns{padding-top:1rem;padding-bottom:1rem}.pv4-ns{padding-top:2rem;padding-bottom:2rem}.pv5-ns{padding-top:4rem;padding-bottom:4rem}.pv6-ns{padding-top:8rem;padding-bottom:8rem}.pv7-ns{padding-top:16rem;padding-bottom:16rem}.ph0-ns{padding-left:0;padding-right:0}.ph1-ns{padding-left:.25rem;padding-right:.25rem}.ph2-ns{padding-left:.5rem;padding-right:.5rem}.ph3-ns{padding-left:1rem;padding-right:1rem}.ph4-ns{padding-left:2rem;padding-right:2rem}.ph5-ns{padding-left:4rem;padding-right:4rem}.ph6-ns{padding-left:8rem;padding-right:8rem}.ph7-ns{padding-left:16rem;padding-right:16rem}.ma0-ns{margin:0}.ma1-ns{margin:.25rem}.ma2-ns{margin:.5rem}.ma3-ns{margin:1rem}.ma4-ns{margin:2rem}.ma5-ns{margin:4rem}.ma6-ns{margin:8rem}.ma7-ns{margin:16rem}.ml0-ns{margin-left:0}.ml1-ns{margin-left:.25rem}.ml2-ns{margin-left:.5rem}.ml3-ns{margin-left:1rem}.ml4-ns{margin-left:2rem}.ml5-ns{margin-left:4rem}.ml6-ns{margin-left:8rem}.ml7-ns{margin-left:16rem}.mr0-ns{margin-right:0}.mr1-ns{margin-right:.25rem}.mr2-ns{margin-right:.5rem}.mr3-ns{margin-right:1rem}.mr4-ns{margin-right:2rem}.mr5-ns{margin-right:4rem}.mr6-ns{margin-right:8rem}.mr7-ns{margin-right:16rem}.mb0-ns{margin-bottom:0}.mb1-ns{margin-bottom:.25rem}.mb2-ns{margin-bottom:.5rem}.mb3-ns{margin-bottom:1rem}.mb4-ns{margin-bottom:2rem}.mb5-ns{margin-bottom:4rem}.mb6-ns{margin-bottom:8rem}.mb7-ns{margin-bottom:16rem}.mt0-ns{margin-top:0}.mt1-ns{margin-top:.25rem}.mt2-ns{margin-top:.5rem}.mt3-ns{margin-top:1rem}.mt4-ns{margin-top:2rem}.mt5-ns{margin-top:4rem}.mt6-ns{margin-top:8rem}.mt7-ns{margin-top:16rem}.mv0-ns{margin-top:0;margin-bottom:0}.mv1-ns{margin-top:.25rem;margin-bottom:.25rem}.mv2-ns{margin-top:.5rem;margin-bottom:.5rem}.mv3-ns{margin-top:1rem;margin-bottom:1rem}.mv4-ns{margin-top:2rem;margin-bottom:2rem}.mv5-ns{margin-top:4rem;margin-bottom:4rem}.mv6-ns{margin-top:8rem;margin-bottom:8rem}.mv7-ns{margin-top:16rem;margin-bottom:16rem}.mh0-ns{margin-left:0;margin-right:0}.mh1-ns{margin-left:.25rem;margin-right:.25rem}.mh2-ns{margin-left:.5rem;margin-right:.5rem}.mh3-ns{margin-left:1rem;margin-right:1rem}.mh4-ns{margin-left:2rem;margin-right:2rem}.mh5-ns{margin-left:4rem;margin-right:4rem}.mh6-ns{margin-left:8rem;margin-right:8rem}.mh7-ns{margin-left:16rem;margin-right:16rem}.na1-ns{margin:-.25rem}.na2-ns{margin:-.5rem}.na3-ns{margin:-1rem}.na4-ns{margin:-2rem}.na5-ns{margin:-4rem}.na6-ns{margin:-8rem}.na7-ns{margin:-16rem}.nl1-ns{margin-left:-.25rem}.nl2-ns{margin-left:-.5rem}.nl3-ns{margin-left:-1rem}.nl4-ns{margin-left:-2rem}.nl5-ns{margin-left:-4rem}.nl6-ns{margin-left:-8rem}.nl7-ns{margin-left:-16rem}.nr1-ns{margin-right:-.25rem}.nr2-ns{margin-right:-.5rem}.nr3-ns{margin-right:-1rem}.nr4-ns{margin-right:-2rem}.nr5-ns{margin-right:-4rem}.nr6-ns{margin-right:-8rem}.nr7-ns{margin-right:-16rem}.nb1-ns{margin-bottom:-.25rem}.nb2-ns{margin-bottom:-.5rem}.nb3-ns{margin-bottom:-1rem}.nb4-ns{margin-bottom:-2rem}.nb5-ns{margin-bottom:-4rem}.nb6-ns{margin-bottom:-8rem}.nb7-ns{margin-bottom:-16rem}.nt1-ns{margin-top:-.25rem}.nt2-ns{margin-top:-.5rem}.nt3-ns{margin-top:-1rem}.nt4-ns{margin-top:-2rem}.nt5-ns{margin-top:-4rem}.nt6-ns{margin-top:-8rem}.nt7-ns{margin-top:-16rem}.strike-ns{text-decoration:line-through}.underline-ns{text-decoration:underline}.no-underline-ns{text-decoration:none}.tl-ns{text-align:left}.tr-ns{text-align:right}.tc-ns{text-align:center}.tj-ns{text-align:justify}.ttc-ns{text-transform:capitalize}.ttl-ns{text-transform:lowercase}.ttu-ns{text-transform:uppercase}.ttn-ns{text-transform:none}.f-6-ns,.f-headline-ns{font-size:6rem}.f-5-ns,.f-subheadline-ns{font-size:5rem}.f1-ns{font-size:3rem}.f2-ns{font-size:2.25rem}.f3-ns{font-size:1.5rem}.f4-ns{font-size:1.25rem}.f5-ns{font-size:1rem}.f6-ns{font-size:.875rem}.f7-ns{font-size:.75rem}.measure-ns{max-width:30em}.measure-wide-ns{max-width:34em}.measure-narrow-ns{max-width:20em}.indent-ns{text-indent:1em;margin-top:0;margin-bottom:0}.small-caps-ns{font-variant:small-caps}.truncate-ns{white-space:nowrap;overflow:hidden;text-overflow:ellipsis}.center-ns{margin-left:auto}.center-ns,.mr-auto-ns{margin-right:auto}.ml-auto-ns{margin-left:auto}.clip-ns{position:fixed!important;_position:absolute!important;clip:rect(1px 1px 1px 1px);clip:rect(1px,1px,1px,1px)}.ws-normal-ns{white-space:normal}.nowrap-ns{white-space:nowrap}.pre-ns{white-space:pre}.v-base-ns{vertical-align:baseline}.v-mid-ns{vertical-align:middle}.v-top-ns{vertical-align:top}.v-btm-ns{vertical-align:bottom}}@media screen and (min-width:30em) and (max-width:60em){.aspect-ratio-m{height:0;position:relative}.aspect-ratio--16x9-m{padding-bottom:56.25%}.aspect-ratio--9x16-m{padding-bottom:177.77%}.aspect-ratio--4x3-m{padding-bottom:75%}.aspect-ratio--3x4-m{padding-bottom:133.33%}.aspect-ratio--6x4-m{padding-bottom:66.6%}.aspect-ratio--4x6-m{padding-bottom:150%}.aspect-ratio--8x5-m{padding-bottom:62.5%}.aspect-ratio--5x8-m{padding-bottom:160%}.aspect-ratio--7x5-m{padding-bottom:71.42%}.aspect-ratio--5x7-m{padding-bottom:140%}.aspect-ratio--1x1-m{padding-bottom:100%}.aspect-ratio--object-m{position:absolute;top:0;right:0;bottom:0;left:0;width:100%;height:100%;z-index:100}.cover-m{background-size:cover!important}.contain-m{background-size:contain!important}.bg-center-m{background-position:50%}.bg-center-m,.bg-top-m{background-repeat:no-repeat}.bg-top-m{background-position:top}.bg-right-m{background-position:100%}.bg-bottom-m,.bg-right-m{background-repeat:no-repeat}.bg-bottom-m{background-position:bottom}.bg-left-m{background-repeat:no-repeat;background-position:0}.outline-m{outline:1px solid}.outline-transparent-m{outline:1px solid transparent}.outline-0-m{outline:0}.ba-m{border-style:solid;border-width:1px}.bt-m{border-top-style:solid;border-top-width:1px}.br-m{border-right-style:solid;border-right-width:1px}.bb-m{border-bottom-style:solid;border-bottom-width:1px}.bl-m{border-left-style:solid;border-left-width:1px}.bn-m{border-style:none;border-width:0}.br0-m{border-radius:0}.br1-m{border-radius:.125rem}.br2-m{border-radius:.25rem}.br3-m{border-radius:.5rem}.br4-m{border-radius:1rem}.br-100-m{border-radius:100%}.br-pill-m{border-radius:9999px}.br--bottom-m{border-top-left-radius:0;border-top-right-radius:0}.br--top-m{border-bottom-right-radius:0}.br--right-m,.br--top-m{border-bottom-left-radius:0}.br--right-m{border-top-left-radius:0}.br--left-m{border-top-right-radius:0;border-bottom-right-radius:0}.b--dotted-m{border-style:dotted}.b--dashed-m{border-style:dashed}.b--solid-m{border-style:solid}.b--none-m{border-style:none}.bw0-m{border-width:0}.bw1-m{border-width:.125rem}.bw2-m{border-width:.25rem}.bw3-m{border-width:.5rem}.bw4-m{border-width:1rem}.bw5-m{border-width:2rem}.bt-0-m{border-top-width:0}.br-0-m{border-right-width:0}.bb-0-m{border-bottom-width:0}.bl-0-m{border-left-width:0}.shadow-1-m{box-shadow:0 0 4px 2px rgba(0,0,0,.2)}.shadow-2-m{box-shadow:0 0 8px 2px rgba(0,0,0,.2)}.shadow-3-m{box-shadow:2px 2px 4px 2px rgba(0,0,0,.2)}.shadow-4-m{box-shadow:2px 2px 8px 0 rgba(0,0,0,.2)}.shadow-5-m{box-shadow:4px 4px 8px 0 rgba(0,0,0,.2)}.top-0-m{top:0}.left-0-m{left:0}.right-0-m{right:0}.bottom-0-m{bottom:0}.top-1-m{top:1rem}.left-1-m{left:1rem}.right-1-m{right:1rem}.bottom-1-m{bottom:1rem}.top-2-m{top:2rem}.left-2-m{left:2rem}.right-2-m{right:2rem}.bottom-2-m{bottom:2rem}.top--1-m{top:-1rem}.right--1-m{right:-1rem}.bottom--1-m{bottom:-1rem}.left--1-m{left:-1rem}.top--2-m{top:-2rem}.right--2-m{right:-2rem}.bottom--2-m{bottom:-2rem}.left--2-m{left:-2rem}.absolute--fill-m{top:0;right:0;bottom:0;left:0}.cl-m{clear:left}.cr-m{clear:right}.cb-m{clear:both}.cn-m{clear:none}.dn-m{display:none}.di-m{display:inline}.db-m{display:block}.dib-m{display:inline-block}.dit-m{display:inline-table}.dt-m{display:table}.dtc-m{display:table-cell}.dt-row-m{display:table-row}.dt-row-group-m{display:table-row-group}.dt-column-m{display:table-column}.dt-column-group-m{display:table-column-group}.dt--fixed-m{table-layout:fixed;width:100%}.flex-m{display:flex}.inline-flex-m{display:inline-flex}.flex-auto-m{flex:1 1 auto;min-width:0;min-height:0}.flex-none-m{flex:none}.flex-column-m{flex-direction:column}.flex-row-m{flex-direction:row}.flex-wrap-m{flex-wrap:wrap}.flex-nowrap-m{flex-wrap:nowrap}.flex-wrap-reverse-m{flex-wrap:wrap-reverse}.flex-column-reverse-m{flex-direction:column-reverse}.flex-row-reverse-m{flex-direction:row-reverse}.items-start-m{align-items:flex-start}.items-end-m{align-items:flex-end}.items-center-m{align-items:center}.items-baseline-m{align-items:baseline}.items-stretch-m{align-items:stretch}.self-start-m{align-self:flex-start}.self-end-m{align-self:flex-end}.self-center-m{align-self:center}.self-baseline-m{align-self:baseline}.self-stretch-m{align-self:stretch}.justify-start-m{justify-content:flex-start}.justify-end-m{justify-content:flex-end}.justify-center-m{justify-content:center}.justify-between-m{justify-content:space-between}.justify-around-m{justify-content:space-around}.content-start-m{align-content:flex-start}.content-end-m{align-content:flex-end}.content-center-m{align-content:center}.content-between-m{align-content:space-between}.content-around-m{align-content:space-around}.content-stretch-m{align-content:stretch}.order-0-m{order:0}.order-1-m{order:1}.order-2-m{order:2}.order-3-m{order:3}.order-4-m{order:4}.order-5-m{order:5}.order-6-m{order:6}.order-7-m{order:7}.order-8-m{order:8}.order-last-m{order:99999}.flex-grow-0-m{flex-grow:0}.flex-grow-1-m{flex-grow:1}.flex-shrink-0-m{flex-shrink:0}.flex-shrink-1-m{flex-shrink:1}.fl-m{float:left}.fl-m,.fr-m{_display:inline}.fr-m{float:right}.fn-m{float:none}.i-m{font-style:italic}.fs-normal-m{font-style:normal}.normal-m{font-weight:400}.b-m{font-weight:700}.fw1-m{font-weight:100}.fw2-m{font-weight:200}.fw3-m{font-weight:300}.fw4-m{font-weight:400}.fw5-m{font-weight:500}.fw6-m{font-weight:600}.fw7-m{font-weight:700}.fw8-m{font-weight:800}.fw9-m{font-weight:900}.h1-m{height:1rem}.h2-m{height:2rem}.h3-m{height:4rem}.h4-m{height:8rem}.h5-m{height:16rem}.h-25-m{height:25%}.h-50-m{height:50%}.h-75-m{height:75%}.h-100-m{height:100%}.min-h-100-m{min-height:100%}.vh-25-m{height:25vh}.vh-50-m{height:50vh}.vh-75-m{height:75vh}.vh-100-m{height:100vh}.min-vh-100-m{min-height:100vh}.h-auto-m{height:auto}.h-inherit-m{height:inherit}.tracked-m{letter-spacing:.1em}.tracked-tight-m{letter-spacing:-.05em}.tracked-mega-m{letter-spacing:.25em}.lh-solid-m{line-height:1}.lh-title-m{line-height:1.25}.lh-copy-m{line-height:1.5}.mw-100-m{max-width:100%}.mw1-m{max-width:1rem}.mw2-m{max-width:2rem}.mw3-m{max-width:4rem}.mw4-m{max-width:8rem}.mw5-m{max-width:16rem}.mw6-m{max-width:32rem}.mw7-m{max-width:48rem}.mw8-m{max-width:64rem}.mw9-m{max-width:96rem}.mw-none-m{max-width:none}.w1-m{width:1rem}.w2-m{width:2rem}.w3-m{width:4rem}.w4-m{width:8rem}.w5-m{width:16rem}.w-10-m{width:10%}.w-20-m{width:20%}.w-25-m{width:25%}.w-30-m{width:30%}.w-33-m{width:33%}.w-34-m{width:34%}.w-40-m{width:40%}.w-50-m{width:50%}.w-60-m{width:60%}.w-70-m{width:70%}.w-75-m{width:75%}.w-80-m{width:80%}.w-90-m{width:90%}.w-100-m{width:100%}.w-third-m{width:33.33333%}.w-two-thirds-m{width:66.66667%}.w-auto-m{width:auto}.overflow-visible-m{overflow:visible}.overflow-hidden-m{overflow:hidden}.overflow-scroll-m{overflow:scroll}.overflow-auto-m{overflow:auto}.overflow-x-visible-m{overflow-x:visible}.overflow-x-hidden-m{overflow-x:hidden}.overflow-x-scroll-m{overflow-x:scroll}.overflow-x-auto-m{overflow-x:auto}.overflow-y-visible-m{overflow-y:visible}.overflow-y-hidden-m{overflow-y:hidden}.overflow-y-scroll-m{overflow-y:scroll}.overflow-y-auto-m{overflow-y:auto}.static-m{position:static}.relative-m{position:relative}.absolute-m{position:absolute}.fixed-m{position:fixed}.rotate-45-m{-webkit-transform:rotate(45deg);transform:rotate(45deg)}.rotate-90-m{-webkit-transform:rotate(90deg);transform:rotate(90deg)}.rotate-135-m{-webkit-transform:rotate(135deg);transform:rotate(135deg)}.rotate-180-m{-webkit-transform:rotate(180deg);transform:rotate(180deg)}.rotate-225-m{-webkit-transform:rotate(225deg);transform:rotate(225deg)}.rotate-270-m{-webkit-transform:rotate(270deg);transform:rotate(270deg)}.rotate-315-m{-webkit-transform:rotate(315deg);transform:rotate(315deg)}.pa0-m{padding:0}.pa1-m{padding:.25rem}.pa2-m{padding:.5rem}.pa3-m{padding:1rem}.pa4-m{padding:2rem}.pa5-m{padding:4rem}.pa6-m{padding:8rem}.pa7-m{padding:16rem}.pl0-m{padding-left:0}.pl1-m{padding-left:.25rem}.pl2-m{padding-left:.5rem}.pl3-m{padding-left:1rem}.pl4-m{padding-left:2rem}.pl5-m{padding-left:4rem}.pl6-m{padding-left:8rem}.pl7-m{padding-left:16rem}.pr0-m{padding-right:0}.pr1-m{padding-right:.25rem}.pr2-m{padding-right:.5rem}.pr3-m{padding-right:1rem}.pr4-m{padding-right:2rem}.pr5-m{padding-right:4rem}.pr6-m{padding-right:8rem}.pr7-m{padding-right:16rem}.pb0-m{padding-bottom:0}.pb1-m{padding-bottom:.25rem}.pb2-m{padding-bottom:.5rem}.pb3-m{padding-bottom:1rem}.pb4-m{padding-bottom:2rem}.pb5-m{padding-bottom:4rem}.pb6-m{padding-bottom:8rem}.pb7-m{padding-bottom:16rem}.pt0-m{padding-top:0}.pt1-m{padding-top:.25rem}.pt2-m{padding-top:.5rem}.pt3-m{padding-top:1rem}.pt4-m{padding-top:2rem}.pt5-m{padding-top:4rem}.pt6-m{padding-top:8rem}.pt7-m{padding-top:16rem}.pv0-m{padding-top:0;padding-bottom:0}.pv1-m{padding-top:.25rem;padding-bottom:.25rem}.pv2-m{padding-top:.5rem;padding-bottom:.5rem}.pv3-m{padding-top:1rem;padding-bottom:1rem}.pv4-m{padding-top:2rem;padding-bottom:2rem}.pv5-m{padding-top:4rem;padding-bottom:4rem}.pv6-m{padding-top:8rem;padding-bottom:8rem}.pv7-m{padding-top:16rem;padding-bottom:16rem}.ph0-m{padding-left:0;padding-right:0}.ph1-m{padding-left:.25rem;padding-right:.25rem}.ph2-m{padding-left:.5rem;padding-right:.5rem}.ph3-m{padding-left:1rem;padding-right:1rem}.ph4-m{padding-left:2rem;padding-right:2rem}.ph5-m{padding-left:4rem;padding-right:4rem}.ph6-m{padding-left:8rem;padding-right:8rem}.ph7-m{padding-left:16rem;padding-right:16rem}.ma0-m{margin:0}.ma1-m{margin:.25rem}.ma2-m{margin:.5rem}.ma3-m{margin:1rem}.ma4-m{margin:2rem}.ma5-m{margin:4rem}.ma6-m{margin:8rem}.ma7-m{margin:16rem}.ml0-m{margin-left:0}.ml1-m{margin-left:.25rem}.ml2-m{margin-left:.5rem}.ml3-m{margin-left:1rem}.ml4-m{margin-left:2rem}.ml5-m{margin-left:4rem}.ml6-m{margin-left:8rem}.ml7-m{margin-left:16rem}.mr0-m{margin-right:0}.mr1-m{margin-right:.25rem}.mr2-m{margin-right:.5rem}.mr3-m{margin-right:1rem}.mr4-m{margin-right:2rem}.mr5-m{margin-right:4rem}.mr6-m{margin-right:8rem}.mr7-m{margin-right:16rem}.mb0-m{margin-bottom:0}.mb1-m{margin-bottom:.25rem}.mb2-m{margin-bottom:.5rem}.mb3-m{margin-bottom:1rem}.mb4-m{margin-bottom:2rem}.mb5-m{margin-bottom:4rem}.mb6-m{margin-bottom:8rem}.mb7-m{margin-bottom:16rem}.mt0-m{margin-top:0}.mt1-m{margin-top:.25rem}.mt2-m{margin-top:.5rem}.mt3-m{margin-top:1rem}.mt4-m{margin-top:2rem}.mt5-m{margin-top:4rem}.mt6-m{margin-top:8rem}.mt7-m{margin-top:16rem}.mv0-m{margin-top:0;margin-bottom:0}.mv1-m{margin-top:.25rem;margin-bottom:.25rem}.mv2-m{margin-top:.5rem;margin-bottom:.5rem}.mv3-m{margin-top:1rem;margin-bottom:1rem}.mv4-m{margin-top:2rem;margin-bottom:2rem}.mv5-m{margin-top:4rem;margin-bottom:4rem}.mv6-m{margin-top:8rem;margin-bottom:8rem}.mv7-m{margin-top:16rem;margin-bottom:16rem}.mh0-m{margin-left:0;margin-right:0}.mh1-m{margin-left:.25rem;margin-right:.25rem}.mh2-m{margin-left:.5rem;margin-right:.5rem}.mh3-m{margin-left:1rem;margin-right:1rem}.mh4-m{margin-left:2rem;margin-right:2rem}.mh5-m{margin-left:4rem;margin-right:4rem}.mh6-m{margin-left:8rem;margin-right:8rem}.mh7-m{margin-left:16rem;margin-right:16rem}.na1-m{margin:-.25rem}.na2-m{margin:-.5rem}.na3-m{margin:-1rem}.na4-m{margin:-2rem}.na5-m{margin:-4rem}.na6-m{margin:-8rem}.na7-m{margin:-16rem}.nl1-m{margin-left:-.25rem}.nl2-m{margin-left:-.5rem}.nl3-m{margin-left:-1rem}.nl4-m{margin-left:-2rem}.nl5-m{margin-left:-4rem}.nl6-m{margin-left:-8rem}.nl7-m{margin-left:-16rem}.nr1-m{margin-right:-.25rem}.nr2-m{margin-right:-.5rem}.nr3-m{margin-right:-1rem}.nr4-m{margin-right:-2rem}.nr5-m{margin-right:-4rem}.nr6-m{margin-right:-8rem}.nr7-m{margin-right:-16rem}.nb1-m{margin-bottom:-.25rem}.nb2-m{margin-bottom:-.5rem}.nb3-m{margin-bottom:-1rem}.nb4-m{margin-bottom:-2rem}.nb5-m{margin-bottom:-4rem}.nb6-m{margin-bottom:-8rem}.nb7-m{margin-bottom:-16rem}.nt1-m{margin-top:-.25rem}.nt2-m{margin-top:-.5rem}.nt3-m{margin-top:-1rem}.nt4-m{margin-top:-2rem}.nt5-m{margin-top:-4rem}.nt6-m{margin-top:-8rem}.nt7-m{margin-top:-16rem}.strike-m{text-decoration:line-through}.underline-m{text-decoration:underline}.no-underline-m{text-decoration:none}.tl-m{text-align:left}.tr-m{text-align:right}.tc-m{text-align:center}.tj-m{text-align:justify}.ttc-m{text-transform:capitalize}.ttl-m{text-transform:lowercase}.ttu-m{text-transform:uppercase}.ttn-m{text-transform:none}.f-6-m,.f-headline-m{font-size:6rem}.f-5-m,.f-subheadline-m{font-size:5rem}.f1-m{font-size:3rem}.f2-m{font-size:2.25rem}.f3-m{font-size:1.5rem}.f4-m{font-size:1.25rem}.f5-m{font-size:1rem}.f6-m{font-size:.875rem}.f7-m{font-size:.75rem}.measure-m{max-width:30em}.measure-wide-m{max-width:34em}.measure-narrow-m{max-width:20em}.indent-m{text-indent:1em;margin-top:0;margin-bottom:0}.small-caps-m{font-variant:small-caps}.truncate-m{white-space:nowrap;overflow:hidden;text-overflow:ellipsis}.center-m{margin-left:auto}.center-m,.mr-auto-m{margin-right:auto}.ml-auto-m{margin-left:auto}.clip-m{position:fixed!important;_position:absolute!important;clip:rect(1px 1px 1px 1px);clip:rect(1px,1px,1px,1px)}.ws-normal-m{white-space:normal}.nowrap-m{white-space:nowrap}.pre-m{white-space:pre}.v-base-m{vertical-align:baseline}.v-mid-m{vertical-align:middle}.v-top-m{vertical-align:top}.v-btm-m{vertical-align:bottom}}@media screen and (min-width:60em){.aspect-ratio-l{height:0;position:relative}.aspect-ratio--16x9-l{padding-bottom:56.25%}.aspect-ratio--9x16-l{padding-bottom:177.77%}.aspect-ratio--4x3-l{padding-bottom:75%}.aspect-ratio--3x4-l{padding-bottom:133.33%}.aspect-ratio--6x4-l{padding-bottom:66.6%}.aspect-ratio--4x6-l{padding-bottom:150%}.aspect-ratio--8x5-l{padding-bottom:62.5%}.aspect-ratio--5x8-l{padding-bottom:160%}.aspect-ratio--7x5-l{padding-bottom:71.42%}.aspect-ratio--5x7-l{padding-bottom:140%}.aspect-ratio--1x1-l{padding-bottom:100%}.aspect-ratio--object-l{position:absolute;top:0;right:0;bottom:0;left:0;width:100%;height:100%;z-index:100}.cover-l{background-size:cover!important}.contain-l{background-size:contain!important}.bg-center-l{background-position:50%}.bg-center-l,.bg-top-l{background-repeat:no-repeat}.bg-top-l{background-position:top}.bg-right-l{background-position:100%}.bg-bottom-l,.bg-right-l{background-repeat:no-repeat}.bg-bottom-l{background-position:bottom}.bg-left-l{background-repeat:no-repeat;background-position:0}.outline-l{outline:1px solid}.outline-transparent-l{outline:1px solid transparent}.outline-0-l{outline:0}.ba-l{border-style:solid;border-width:1px}.bt-l{border-top-style:solid;border-top-width:1px}.br-l{border-right-style:solid;border-right-width:1px}.bb-l{border-bottom-style:solid;border-bottom-width:1px}.bl-l{border-left-style:solid;border-left-width:1px}.bn-l{border-style:none;border-width:0}.br0-l{border-radius:0}.br1-l{border-radius:.125rem}.br2-l{border-radius:.25rem}.br3-l{border-radius:.5rem}.br4-l{border-radius:1rem}.br-100-l{border-radius:100%}.br-pill-l{border-radius:9999px}.br--bottom-l{border-top-left-radius:0;border-top-right-radius:0}.br--top-l{border-bottom-right-radius:0}.br--right-l,.br--top-l{border-bottom-left-radius:0}.br--right-l{border-top-left-radius:0}.br--left-l{border-top-right-radius:0;border-bottom-right-radius:0}.b--dotted-l{border-style:dotted}.b--dashed-l{border-style:dashed}.b--solid-l{border-style:solid}.b--none-l{border-style:none}.bw0-l{border-width:0}.bw1-l{border-width:.125rem}.bw2-l{border-width:.25rem}.bw3-l{border-width:.5rem}.bw4-l{border-width:1rem}.bw5-l{border-width:2rem}.bt-0-l{border-top-width:0}.br-0-l{border-right-width:0}.bb-0-l{border-bottom-width:0}.bl-0-l{border-left-width:0}.shadow-1-l{box-shadow:0 0 4px 2px rgba(0,0,0,.2)}.shadow-2-l{box-shadow:0 0 8px 2px rgba(0,0,0,.2)}.shadow-3-l{box-shadow:2px 2px 4px 2px rgba(0,0,0,.2)}.shadow-4-l{box-shadow:2px 2px 8px 0 rgba(0,0,0,.2)}.shadow-5-l{box-shadow:4px 4px 8px 0 rgba(0,0,0,.2)}.top-0-l{top:0}.left-0-l{left:0}.right-0-l{right:0}.bottom-0-l{bottom:0}.top-1-l{top:1rem}.left-1-l{left:1rem}.right-1-l{right:1rem}.bottom-1-l{bottom:1rem}.top-2-l{top:2rem}.left-2-l{left:2rem}.right-2-l{right:2rem}.bottom-2-l{bottom:2rem}.top--1-l{top:-1rem}.right--1-l{right:-1rem}.bottom--1-l{bottom:-1rem}.left--1-l{left:-1rem}.top--2-l{top:-2rem}.right--2-l{right:-2rem}.bottom--2-l{bottom:-2rem}.left--2-l{left:-2rem}.absolute--fill-l{top:0;right:0;bottom:0;left:0}.cl-l{clear:left}.cr-l{clear:right}.cb-l{clear:both}.cn-l{clear:none}.dn-l{display:none}.di-l{display:inline}.db-l{display:block}.dib-l{display:inline-block}.dit-l{display:inline-table}.dt-l{display:table}.dtc-l{display:table-cell}.dt-row-l{display:table-row}.dt-row-group-l{display:table-row-group}.dt-column-l{display:table-column}.dt-column-group-l{display:table-column-group}.dt--fixed-l{table-layout:fixed;width:100%}.flex-l{display:flex}.inline-flex-l{display:inline-flex}.flex-auto-l{flex:1 1 auto;min-width:0;min-height:0}.flex-none-l{flex:none}.flex-column-l{flex-direction:column}.flex-row-l{flex-direction:row}.flex-wrap-l{flex-wrap:wrap}.flex-nowrap-l{flex-wrap:nowrap}.flex-wrap-reverse-l{flex-wrap:wrap-reverse}.flex-column-reverse-l{flex-direction:column-reverse}.flex-row-reverse-l{flex-direction:row-reverse}.items-start-l{align-items:flex-start}.items-end-l{align-items:flex-end}.items-center-l{align-items:center}.items-baseline-l{align-items:baseline}.items-stretch-l{align-items:stretch}.self-start-l{align-self:flex-start}.self-end-l{align-self:flex-end}.self-center-l{align-self:center}.self-baseline-l{align-self:baseline}.self-stretch-l{align-self:stretch}.justify-start-l{justify-content:flex-start}.justify-end-l{justify-content:flex-end}.justify-center-l{justify-content:center}.justify-between-l{justify-content:space-between}.justify-around-l{justify-content:space-around}.content-start-l{align-content:flex-start}.content-end-l{align-content:flex-end}.content-center-l{align-content:center}.content-between-l{align-content:space-between}.content-around-l{align-content:space-around}.content-stretch-l{align-content:stretch}.order-0-l{order:0}.order-1-l{order:1}.order-2-l{order:2}.order-3-l{order:3}.order-4-l{order:4}.order-5-l{order:5}.order-6-l{order:6}.order-7-l{order:7}.order-8-l{order:8}.order-last-l{order:99999}.flex-grow-0-l{flex-grow:0}.flex-grow-1-l{flex-grow:1}.flex-shrink-0-l{flex-shrink:0}.flex-shrink-1-l{flex-shrink:1}.fl-l{float:left}.fl-l,.fr-l{_display:inline}.fr-l{float:right}.fn-l{float:none}.i-l{font-style:italic}.fs-normal-l{font-style:normal}.normal-l{font-weight:400}.b-l{font-weight:700}.fw1-l{font-weight:100}.fw2-l{font-weight:200}.fw3-l{font-weight:300}.fw4-l{font-weight:400}.fw5-l{font-weight:500}.fw6-l{font-weight:600}.fw7-l{font-weight:700}.fw8-l{font-weight:800}.fw9-l{font-weight:900}.h1-l{height:1rem}.h2-l{height:2rem}.h3-l{height:4rem}.h4-l{height:8rem}.h5-l{height:16rem}.h-25-l{height:25%}.h-50-l{height:50%}.h-75-l{height:75%}.h-100-l{height:100%}.min-h-100-l{min-height:100%}.vh-25-l{height:25vh}.vh-50-l{height:50vh}.vh-75-l{height:75vh}.vh-100-l{height:100vh}.min-vh-100-l{min-height:100vh}.h-auto-l{height:auto}.h-inherit-l{height:inherit}.tracked-l{letter-spacing:.1em}.tracked-tight-l{letter-spacing:-.05em}.tracked-mega-l{letter-spacing:.25em}.lh-solid-l{line-height:1}.lh-title-l{line-height:1.25}.lh-copy-l{line-height:1.5}.mw-100-l{max-width:100%}.mw1-l{max-width:1rem}.mw2-l{max-width:2rem}.mw3-l{max-width:4rem}.mw4-l{max-width:8rem}.mw5-l{max-width:16rem}.mw6-l{max-width:32rem}.mw7-l{max-width:48rem}.mw8-l{max-width:64rem}.mw9-l{max-width:96rem}.mw-none-l{max-width:none}.w1-l{width:1rem}.w2-l{width:2rem}.w3-l{width:4rem}.w4-l{width:8rem}.w5-l{width:16rem}.w-10-l{width:10%}.w-20-l{width:20%}.w-25-l{width:25%}.w-30-l{width:30%}.w-33-l{width:33%}.w-34-l{width:34%}.w-40-l{width:40%}.w-50-l{width:50%}.w-60-l{width:60%}.w-70-l{width:70%}.w-75-l{width:75%}.w-80-l{width:80%}.w-90-l{width:90%}.w-100-l{width:100%}.w-third-l{width:33.33333%}.w-two-thirds-l{width:66.66667%}.w-auto-l{width:auto}.overflow-visible-l{overflow:visible}.overflow-hidden-l{overflow:hidden}.overflow-scroll-l{overflow:scroll}.overflow-auto-l{overflow:auto}.overflow-x-visible-l{overflow-x:visible}.overflow-x-hidden-l{overflow-x:hidden}.overflow-x-scroll-l{overflow-x:scroll}.overflow-x-auto-l{overflow-x:auto}.overflow-y-visible-l{overflow-y:visible}.overflow-y-hidden-l{overflow-y:hidden}.overflow-y-scroll-l{overflow-y:scroll}.overflow-y-auto-l{overflow-y:auto}.static-l{position:static}.relative-l{position:relative}.absolute-l{position:absolute}.fixed-l{position:fixed}.rotate-45-l{-webkit-transform:rotate(45deg);transform:rotate(45deg)}.rotate-90-l{-webkit-transform:rotate(90deg);transform:rotate(90deg)}.rotate-135-l{-webkit-transform:rotate(135deg);transform:rotate(135deg)}.rotate-180-l{-webkit-transform:rotate(180deg);transform:rotate(180deg)}.rotate-225-l{-webkit-transform:rotate(225deg);transform:rotate(225deg)}.rotate-270-l{-webkit-transform:rotate(270deg);transform:rotate(270deg)}.rotate-315-l{-webkit-transform:rotate(315deg);transform:rotate(315deg)}.pa0-l{padding:0}.pa1-l{padding:.25rem}.pa2-l{padding:.5rem}.pa3-l{padding:1rem}.pa4-l{padding:2rem}.pa5-l{padding:4rem}.pa6-l{padding:8rem}.pa7-l{padding:16rem}.pl0-l{padding-left:0}.pl1-l{padding-left:.25rem}.pl2-l{padding-left:.5rem}.pl3-l{padding-left:1rem}.pl4-l{padding-left:2rem}.pl5-l{padding-left:4rem}.pl6-l{padding-left:8rem}.pl7-l{padding-left:16rem}.pr0-l{padding-right:0}.pr1-l{padding-right:.25rem}.pr2-l{padding-right:.5rem}.pr3-l{padding-right:1rem}.pr4-l{padding-right:2rem}.pr5-l{padding-right:4rem}.pr6-l{padding-right:8rem}.pr7-l{padding-right:16rem}.pb0-l{padding-bottom:0}.pb1-l{padding-bottom:.25rem}.pb2-l{padding-bottom:.5rem}.pb3-l{padding-bottom:1rem}.pb4-l{padding-bottom:2rem}.pb5-l{padding-bottom:4rem}.pb6-l{padding-bottom:8rem}.pb7-l{padding-bottom:16rem}.pt0-l{padding-top:0}.pt1-l{padding-top:.25rem}.pt2-l{padding-top:.5rem}.pt3-l{padding-top:1rem}.pt4-l{padding-top:2rem}.pt5-l{padding-top:4rem}.pt6-l{padding-top:8rem}.pt7-l{padding-top:16rem}.pv0-l{padding-top:0;padding-bottom:0}.pv1-l{padding-top:.25rem;padding-bottom:.25rem}.pv2-l{padding-top:.5rem;padding-bottom:.5rem}.pv3-l{padding-top:1rem;padding-bottom:1rem}.pv4-l{padding-top:2rem;padding-bottom:2rem}.pv5-l{padding-top:4rem;padding-bottom:4rem}.pv6-l{padding-top:8rem;padding-bottom:8rem}.pv7-l{padding-top:16rem;padding-bottom:16rem}.ph0-l{padding-left:0;padding-right:0}.ph1-l{padding-left:.25rem;padding-right:.25rem}.ph2-l{padding-left:.5rem;padding-right:.5rem}.ph3-l{padding-left:1rem;padding-right:1rem}.ph4-l{padding-left:2rem;padding-right:2rem}.ph5-l{padding-left:4rem;padding-right:4rem}.ph6-l{padding-left:8rem;padding-right:8rem}.ph7-l{padding-left:16rem;padding-right:16rem}.ma0-l{margin:0}.ma1-l{margin:.25rem}.ma2-l{margin:.5rem}.ma3-l{margin:1rem}.ma4-l{margin:2rem}.ma5-l{margin:4rem}.ma6-l{margin:8rem}.ma7-l{margin:16rem}.ml0-l{margin-left:0}.ml1-l{margin-left:.25rem}.ml2-l{margin-left:.5rem}.ml3-l{margin-left:1rem}.ml4-l{margin-left:2rem}.ml5-l{margin-left:4rem}.ml6-l{margin-left:8rem}.ml7-l{margin-left:16rem}.mr0-l{margin-right:0}.mr1-l{margin-right:.25rem}.mr2-l{margin-right:.5rem}.mr3-l{margin-right:1rem}.mr4-l{margin-right:2rem}.mr5-l{margin-right:4rem}.mr6-l{margin-right:8rem}.mr7-l{margin-right:16rem}.mb0-l{margin-bottom:0}.mb1-l{margin-bottom:.25rem}.mb2-l{margin-bottom:.5rem}.mb3-l{margin-bottom:1rem}.mb4-l{margin-bottom:2rem}.mb5-l{margin-bottom:4rem}.mb6-l{margin-bottom:8rem}.mb7-l{margin-bottom:16rem}.mt0-l{margin-top:0}.mt1-l{margin-top:.25rem}.mt2-l{margin-top:.5rem}.mt3-l{margin-top:1rem}.mt4-l{margin-top:2rem}.mt5-l{margin-top:4rem}.mt6-l{margin-top:8rem}.mt7-l{margin-top:16rem}.mv0-l{margin-top:0;margin-bottom:0}.mv1-l{margin-top:.25rem;margin-bottom:.25rem}.mv2-l{margin-top:.5rem;margin-bottom:.5rem}.mv3-l{margin-top:1rem;margin-bottom:1rem}.mv4-l{margin-top:2rem;margin-bottom:2rem}.mv5-l{margin-top:4rem;margin-bottom:4rem}.mv6-l{margin-top:8rem;margin-bottom:8rem}.mv7-l{margin-top:16rem;margin-bottom:16rem}.mh0-l{margin-left:0;margin-right:0}.mh1-l{margin-left:.25rem;margin-right:.25rem}.mh2-l{margin-left:.5rem;margin-right:.5rem}.mh3-l{margin-left:1rem;margin-right:1rem}.mh4-l{margin-left:2rem;margin-right:2rem}.mh5-l{margin-left:4rem;margin-right:4rem}.mh6-l{margin-left:8rem;margin-right:8rem}.mh7-l{margin-left:16rem;margin-right:16rem}.na1-l{margin:-.25rem}.na2-l{margin:-.5rem}.na3-l{margin:-1rem}.na4-l{margin:-2rem}.na5-l{margin:-4rem}.na6-l{margin:-8rem}.na7-l{margin:-16rem}.nl1-l{margin-left:-.25rem}.nl2-l{margin-left:-.5rem}.nl3-l{margin-left:-1rem}.nl4-l{margin-left:-2rem}.nl5-l{margin-left:-4rem}.nl6-l{margin-left:-8rem}.nl7-l{margin-left:-16rem}.nr1-l{margin-right:-.25rem}.nr2-l{margin-right:-.5rem}.nr3-l{margin-right:-1rem}.nr4-l{margin-right:-2rem}.nr5-l{margin-right:-4rem}.nr6-l{margin-right:-8rem}.nr7-l{margin-right:-16rem}.nb1-l{margin-bottom:-.25rem}.nb2-l{margin-bottom:-.5rem}.nb3-l{margin-bottom:-1rem}.nb4-l{margin-bottom:-2rem}.nb5-l{margin-bottom:-4rem}.nb6-l{margin-bottom:-8rem}.nb7-l{margin-bottom:-16rem}.nt1-l{margin-top:-.25rem}.nt2-l{margin-top:-.5rem}.nt3-l{margin-top:-1rem}.nt4-l{margin-top:-2rem}.nt5-l{margin-top:-4rem}.nt6-l{margin-top:-8rem}.nt7-l{margin-top:-16rem}.strike-l{text-decoration:line-through}.underline-l{text-decoration:underline}.no-underline-l{text-decoration:none}.tl-l{text-align:left}.tr-l{text-align:right}.tc-l{text-align:center}.tj-l{text-align:justify}.ttc-l{text-transform:capitalize}.ttl-l{text-transform:lowercase}.ttu-l{text-transform:uppercase}.ttn-l{text-transform:none}.f-6-l,.f-headline-l{font-size:6rem}.f-5-l,.f-subheadline-l{font-size:5rem}.f1-l{font-size:3rem}.f2-l{font-size:2.25rem}.f3-l{font-size:1.5rem}.f4-l{font-size:1.25rem}.f5-l{font-size:1rem}.f6-l{font-size:.875rem}.f7-l{font-size:.75rem}.measure-l{max-width:30em}.measure-wide-l{max-width:34em}.measure-narrow-l{max-width:20em}.indent-l{text-indent:1em;margin-top:0;margin-bottom:0}.small-caps-l{font-variant:small-caps}.truncate-l{white-space:nowrap;overflow:hidden;text-overflow:ellipsis}.center-l{margin-left:auto}.center-l,.mr-auto-l{margin-right:auto}.ml-auto-l{margin-left:auto}.clip-l{position:fixed!important;_position:absolute!important;clip:rect(1px 1px 1px 1px);clip:rect(1px,1px,1px,1px)}.ws-normal-l{white-space:normal}.nowrap-l{white-space:nowrap}.pre-l{white-space:pre}.v-base-l{vertical-align:baseline}.v-mid-l{vertical-align:middle}.v-top-l{vertical-align:top}.v-btm-l{vertical-align:bottom}}
+
diff --git a/oxAuth/Server/integrations/passwurd/bundle/bundle/opt/gluu/python/libs/passwurd-external_bioid.py b/oxAuth/Server/integrations/passwurd/bundle/bundle/opt/gluu/python/libs/passwurd-external_bioid.py
new file mode 100644
index 00000000..558ae2f9
--- /dev/null
+++ b/oxAuth/Server/integrations/passwurd/bundle/bundle/opt/gluu/python/libs/passwurd-external_bioid.py
@@ -0,0 +1,338 @@
+#!/usr/bin/python
+# -*- coding: utf-8 -*-
+
+import sys
+from java.util import Collections, HashMap, HashSet, ArrayList, Arrays, Date
+from org.oxauth.persistence.model.configuration import GluuConfiguration
+from org.gluu.persist import PersistenceEntryManager
+from java.nio.charset import Charset
+from org.gluu.service.cdi.util import CdiUtil
+from org.gluu.oxauth.security import Identity
+from org.gluu.model.custom.script.type.auth import PersonAuthenticationType
+from org.gluu.oxauth.service import AuthenticationService, SessionIdService
+from org.gluu.oxauth.service.common import UserService
+from org.gluu.util import StringHelper
+from org.gluu.oxauth.service.net import HttpService
+from org.json import JSONObject
+import base64
+import java
+
+from org.gluu.util import StringHelper
+from java.lang import String
+
+class PersonAuthentication(PersonAuthenticationType):
+    def __init__(self, currentTimeMillis):
+        self.currentTimeMillis = currentTimeMillis
+
+    def init(self, customScript,  configurationAttributes):
+
+        
+        if not configurationAttributes.containsKey("ENDPOINT"):
+            print "BioID. Initialization. Property ENDPOINT is mandatory"
+            return False
+        self.ENDPOINT = configurationAttributes.get("ENDPOINT").getValue2()
+        
+        if not configurationAttributes.containsKey("APP_IDENTIFIER"):
+            print "BioID. Initialization. Property APP_IDENTIFIER is mandatory"
+            return False
+        self.APP_IDENTIFIER = configurationAttributes.get("APP_IDENTIFIER").getValue2()
+        
+        if not configurationAttributes.containsKey("APP_SECRET"):
+            print "BioID. Initialization. Property APP_SECRET is mandatory"
+            return False
+        self.APP_SECRET = configurationAttributes.get("APP_SECRET").getValue2()
+        
+        if not configurationAttributes.containsKey("PARTITION"):
+            print "BioID. Initialization. Property PARTITION is mandatory"
+            return False
+        self.PARTITION = configurationAttributes.get("PARTITION").getValue2()
+        
+        if not configurationAttributes.containsKey("STORAGE"):
+            print "BioID. Initialization. Property STORAGE is mandatory"
+            return False
+        self.STORAGE = configurationAttributes.get("STORAGE").getValue2()
+        
+        print "BioID. Initialized successfully"
+        return True   
+
+    def destroy(self, configurationAttributes):
+        print "BioID. Destroy"
+        print "BioID. Destroyed successfully"
+        return True
+        
+    def getAuthenticationMethodClaims(self, requestParameters):
+        return None
+        
+    def getApiVersion(self):
+        return 11
+
+    def isValidAuthenticationMethod(self, usageType, configurationAttributes):
+        return True
+
+    def getAlternativeAuthenticationMethod(self, usageType, configurationAttributes):
+        return None
+
+    def authenticate(self, configurationAttributes, requestParameters, step):
+        print "BioID. Authenticate "
+        authenticationService = CdiUtil.bean(AuthenticationService)
+        identity = CdiUtil.bean(Identity)
+        credentials = identity.getCredentials()
+        user_name = credentials.getUsername()
+        
+        if (step == 1):
+            print "BioID. Authenticate for step 1"
+
+            logged_in = False
+            userService = CdiUtil.bean(UserService)
+            authenticated_user = self.processBasicAuthentication(credentials)
+            if authenticated_user == None:
+                print "BioID. User does not exist"
+                return False
+            
+            # place holder comment - delete later
+            
+            return True
+        
+        elif step == 2 or step == 3:
+            
+            auth_method = identity.getWorkingParameter("bioID_auth_method")
+            print "BioID. Authenticate method for step %s. bioID_auth_method: '%s'" % (step,auth_method)
+            user_name = identity.getWorkingParameter("user_name")
+            bcid = self.STORAGE + "." + self.PARTITION + "." + str(String(user_name).hashCode())
+            
+            if step == 2 and 'enrollment' == auth_method:
+                
+                access_token = identity.getWorkingParameter("access_token")
+                result = self.performBiometricOperation( access_token, "enroll")
+                
+                if result == True:
+                    #this means that enroll is a success, the next is step 3 authenticate
+                    identity.setWorkingParameter("bioID_count_login_steps", 3)
+                    identity.setWorkingParameter("bioID_auth_method","verification")
+                    return result
+                else:
+                    return False
+            
+            else :
+                
+                access_token = identity.getWorkingParameter("access_token")
+                result = self.performBiometricOperation( access_token, "verify")
+                return result
+            
+        else:
+            return False
+
+    
+    def prepareForStep(self, configurationAttributes, requestParameters, step):
+        
+        print "BioID. Prepare for step called : step %s" % step
+        if step == 1:
+            return True
+        elif step == 2  or step == 3:
+            identity = CdiUtil.bean(Identity)
+            authenticationService = CdiUtil.bean(AuthenticationService)
+            user = authenticationService.getAuthenticatedUser()
+            if user == None:
+                print "BioID. prepareForStep. Failed to determine user name"
+                return False
+            
+            user_name = user.getUserId()
+            
+            #place holder - moved from authenticate step == 1 inorder to make it compatible with casa script
+            # todo : code refactor
+            if step == 2:
+	            identity.setWorkingParameter("user_name",user_name)
+	            bcid = self.STORAGE + "." + self.PARTITION + "." + str(String(user_name).hashCode())
+	            print "BioID. username:bcid %s:%s" %(user_name, bcid)
+	            
+	            is_user_enrolled = self.isenrolled(bcid)
+	            print "BioID. is_user_enrolled: '%s'" % is_user_enrolled
+	            
+	            if(is_user_enrolled == True):
+	                identity.setWorkingParameter("bioID_auth_method","verification")
+	            else:
+	                identity.setWorkingParameter("bioID_auth_method","enrollment")
+	                identity.setWorkingParameter("bioID_count_login_steps", 2)
+            
+            #place holder till here
+            
+            auth_method = identity.getWorkingParameter("bioID_auth_method")
+            print "BioID. step %s %s" % (step, auth_method)
+            bcid = self.STORAGE + "." + self.PARTITION + "." + str(String(user_name).hashCode())
+            print "bcid %s" %bcid
+            if step == 2 and auth_method == 'enrollment':
+                print "access token used by upload method - enroll"
+                access_token = self.getAccessToken( bcid, "enroll" )
+            # either step2 and verification or step 3 which is verification post enrollment
+            else:
+                print "access token used by upload method - verify"
+                access_token = self.getAccessToken( bcid, "verify" )
+                
+            print "access_token %s - " % access_token
+            identity.setWorkingParameter("access_token",access_token)
+            
+            return True
+            
+        else:
+            return False
+
+    def getExtraParametersForStep(self, configurationAttributes, step):
+    	if step == 1:
+            return None
+        else:
+        	return Arrays.asList("bioID_auth_method","access_token","user_name","bioID_count_login_steps")
+    
+    
+    def getCountAuthenticationSteps(self, configurationAttributes):
+        
+        identity = CdiUtil.bean(Identity)
+        if identity.isSetWorkingParameter("bioID_count_login_steps"):
+            print "BioID. getCountAuthenticationSteps called, returning - 3"
+            return 3
+        else:
+            print "BioID. getCountAuthenticationSteps called, returning - 2"
+            return 2
+
+    def getPageForStep(self, configurationAttributes, step):
+        print "BioID. getPageForStep called -step:%s" % str(step)
+        if step > 1 :
+            return   "/passwordless/bioid.xhtml"
+        else:
+            return ""
+
+    def getNextStep(self, configurationAttributes, requestParameters, step):
+        print "BioID. getNextStep called.  %s" % str(step)
+        
+        return -1
+
+    def getLogoutExternalUrl(self, configurationAttributes, requestParameters):
+        print "Get external logout URL call"
+        return None
+
+    def logout(self, configurationAttributes, requestParameters):
+        return True
+
+    # Get a BWS token to be used for authorization.
+    # bcid - The Biometric Class ID (BCID) of the person
+    # forTask - The task for which the issued token shall be used.
+    # A string containing the issued BWS token.
+    def getAccessToken(self, bcid, forTask):
+        
+        httpService = CdiUtil.bean(HttpService)
+
+        http_client = httpService.getHttpsClient()
+        http_client_params = http_client.getParams()
+
+        bioID_service_url = self.ENDPOINT + "token?id="+self.APP_IDENTIFIER+"&bcid="+bcid+"&task="+forTask+"&livedetection=true"
+        encodedString = base64.b64encode((self.APP_IDENTIFIER+":"+self.APP_SECRET).encode('utf-8'))
+        bioID_service_headers = {"Authorization": "Basic "+encodedString}
+
+        try:
+            http_service_response = httpService.executeGet(http_client, bioID_service_url, bioID_service_headers)
+            http_response = http_service_response.getHttpResponse()
+        except:
+            print "BioID. Unable to obtain access token. Exception: ", sys.exc_info()[1]
+            return None
+
+        try:
+            if not httpService.isResponseStastusCodeOk(http_response):
+                print "BioID. Unable to obtain access token.  Get non 200 OK response from server:", str(http_response.getStatusLine().getStatusCode())
+                httpService.consume(http_response)
+                return None
+
+            response_bytes = httpService.getResponseContent(http_response)
+            response_string = httpService.convertEntityToString(response_bytes, Charset.forName("UTF-8"))
+            httpService.consume(http_response)
+            return response_string
+        finally:
+            http_service_response.closeConnection()
+    
+    def isenrolled(self, bcid):
+        httpService = CdiUtil.bean(HttpService)
+
+        http_client = httpService.getHttpsClient()
+        http_client_params = http_client.getParams()
+
+        bioID_service_url = self.ENDPOINT + "isenrolled?bcid="+bcid+"&trait=Face"
+        print "BioID. isenrolled URL - %s" %bioID_service_url
+        encodedString = base64.b64encode((self.APP_IDENTIFIER+":"+self.APP_SECRET).encode('utf-8'))
+        bioID_service_headers = {"Authorization": "Basic "+encodedString}
+
+        try:
+            http_service_response = httpService.executeGet(http_client, bioID_service_url, bioID_service_headers)
+            http_response = http_service_response.getHttpResponse()
+        except:
+            print "BioID. failed to invoke isenrolled API: ", sys.exc_info()[1]
+            return None
+
+        try:
+            if not httpService.isResponseStastusCodeOk(http_response):
+                print "BioID. Face,Periocular not enrolled.  Get non 200 OK response from server:", str(http_response.getStatusLine().getStatusCode())
+                httpService.consume(http_response)
+                return False
+
+            else: 
+                return True
+        finally:
+            http_service_response.closeConnection()
+        
+    def processBasicAuthentication(self, credentials):
+        userService = CdiUtil.bean(UserService)
+        authenticationService = CdiUtil.bean(AuthenticationService)
+
+        find_user_by_uid = authenticationService.getAuthenticatedUser()
+        if find_user_by_uid != None:
+        	print "BioID. Process basic authentication. There is an authenticated user already"
+        	return find_user_by_uid
+        	
+        user_name = credentials.getUsername()
+        user_password = credentials.getPassword()
+
+        logged_in = False
+        if StringHelper.isNotEmptyString(user_name) and StringHelper.isNotEmptyString(user_password):
+            logged_in = authenticationService.authenticate(user_name, user_password)
+
+        if not logged_in:
+            print "BioID. Process basic authentication. Failed to find user '%s'" % user_name
+            return None
+
+        find_user_by_uid = authenticationService.getAuthenticatedUser()
+        if find_user_by_uid == None:
+            print "BioID. Process basic authentication. Failed to find user '%s'" % user_name
+            return None
+        
+        return find_user_by_uid
+    
+    
+    def performBiometricOperation(self, token, task):
+        httpService = CdiUtil.bean(HttpService)
+        http_client = httpService.getHttpsClient()
+        http_client_params = http_client.getParams()
+        bioID_service_url = self.ENDPOINT + task+"?livedetection=true"
+        bioID_service_headers = {"Authorization": "Bearer "+token}
+
+        try:
+            http_service_response = httpService.executeGet(http_client, bioID_service_url, bioID_service_headers)
+            http_response = http_service_response.getHttpResponse()
+            response_bytes = httpService.getResponseContent(http_response)
+            response_string = httpService.convertEntityToString(response_bytes, Charset.forName("UTF-8"))
+            json_response = JSONObject(response_string)
+            httpService.consume(http_response)
+            if  json_response.get("Success") == True:
+                return True
+            else:
+                print "BioID. Reason for failure : %s " % json_response.get("Error") 
+                return False
+        except:
+            print "BioID. failed to invoke %s API: %s" %(task,sys.exc_info()[1])
+            return None
+            
+        finally:
+            http_service_response.closeConnection()
+            
+    def hasEnrollments(self, configurationAttributes, user):
+        values = user.getAttributeValues("oxBiometricDevices")
+        if values != None:
+            return True
+        else:
+            return False
diff --git a/oxAuth/Server/integrations/passwurd/bundle/bundle/opt/gluu/python/libs/passwurd-external_fido2.py b/oxAuth/Server/integrations/passwurd/bundle/bundle/opt/gluu/python/libs/passwurd-external_fido2.py
new file mode 100644
index 00000000..b96e24f8
--- /dev/null
+++ b/oxAuth/Server/integrations/passwurd/bundle/bundle/opt/gluu/python/libs/passwurd-external_fido2.py
@@ -0,0 +1,250 @@
+# Based on oxAuth Fido2ExternalAuthenticator.py
+
+from javax.ws.rs.core import Response
+from org.jboss.resteasy.client import ClientResponseFailure
+from org.jboss.resteasy.client.exception import ResteasyClientException
+from javax.ws.rs.core import Response
+from org.gluu.model.custom.script.type.auth import PersonAuthenticationType
+from org.gluu.fido2.client import Fido2ClientFactory
+from org.gluu.oxauth.security import Identity
+from org.gluu.oxauth.service import AuthenticationService, UserService, SessionIdService
+from org.gluu.oxauth.util import ServerUtil
+from org.gluu.service.cdi.util import CdiUtil
+from org.gluu.util import StringHelper
+
+from java.util.concurrent.locks import ReentrantLock
+
+import java
+import sys
+import json
+
+class PersonAuthentication(PersonAuthenticationType):
+    def __init__(self, currentTimeMillis):
+        self.currentTimeMillis = currentTimeMillis
+
+    def init(self, customScript, configurationAttributes):
+        print "Fido2. Initialization"
+
+        if not configurationAttributes.containsKey("fido2_server_uri"):
+            print "fido2_server_uri. Initialization. Property fido2_server_uri is not specified"
+            return False
+
+        self.fido2_server_uri = configurationAttributes.get("fido2_server_uri").getValue2()
+
+        #self.fido2_domain = None
+        #if configurationAttributes.containsKey("fido2_domain"):
+        #    self.fido2_domain = configurationAttributes.get("fido2_domain").getValue2()
+            
+        self.metaDataLoaderLock = ReentrantLock()
+        self.metaDataConfiguration = None
+        
+        print "Fido2. Initialized successfully"
+        return True   
+
+    def destroy(self, configurationAttributes):
+        print "Fido2. Destroy"
+        print "Fido2. Destroyed successfully"
+        return True
+
+    def getApiVersion(self):
+        return 11
+
+    def getAuthenticationMethodClaims(self, configurationAttributes):
+        return None
+
+    def isValidAuthenticationMethod(self, usageType, configurationAttributes):
+        return True
+
+    def getAlternativeAuthenticationMethod(self, usageType, configurationAttributes):
+        return None
+
+    def authenticate(self, configurationAttributes, requestParameters, step):
+        authenticationService = CdiUtil.bean(AuthenticationService)
+
+        identity = CdiUtil.bean(Identity)
+        credentials = identity.getCredentials()
+
+        user_name = credentials.getUsername()
+
+        if (step == 1):
+            print "Fido2. Authenticate for step 1"
+
+            if authenticationService.getAuthenticatedUser() != None:
+                return True
+
+            user_password = credentials.getPassword()
+            logged_in = False
+            if (StringHelper.isNotEmptyString(user_name) and StringHelper.isNotEmptyString(user_password)):
+                userService = CdiUtil.bean(UserService)
+                logged_in = authenticationService.authenticate(user_name, user_password)
+
+            if (not logged_in):
+                return False
+
+            return True
+        elif (step == 2):
+            print "Fido2. Authenticate for step 2"
+
+            token_response = ServerUtil.getFirstValue(requestParameters, "tokenResponse")
+            if token_response == None:
+                print "Fido2. Authenticate for step 2. tokenResponse is empty"
+                return False
+
+            auth_method = ServerUtil.getFirstValue(requestParameters, "authMethod")
+            if auth_method == None:
+                print "Fido2. Authenticate for step 2. authMethod is empty"
+                return False
+
+            authenticationService = CdiUtil.bean(AuthenticationService)
+            user = authenticationService.getAuthenticatedUser()
+            if (user == None):
+                print "Fido2. Prepare for step 2. Failed to determine user name"
+                return False
+
+            if (auth_method == 'authenticate'):
+                print "Fido2. Prepare for step 2. Call Fido2 in order to finish authentication flow"
+                assertionService = Fido2ClientFactory.instance().createAssertionService(self.metaDataConfiguration)
+                assertionStatus = assertionService.verify(token_response)
+                authenticationStatusEntity = assertionStatus.readEntity(java.lang.String)
+
+                if (assertionStatus.getStatus() != Response.Status.OK.getStatusCode()):
+                    print "Fido2. Authenticate for step 2. Get invalid authentication status from Fido2 server"
+                    return False
+
+                return True
+            elif (auth_method == 'enroll'):
+                print "Fido2. Prepare for step 2. Call Fido2 in order to finish registration flow"
+                attestationService = Fido2ClientFactory.instance().createAttestationService(self.metaDataConfiguration)
+                attestationStatus = attestationService.verify(token_response)
+
+                if (attestationStatus.getStatus() != Response.Status.OK.getStatusCode()):
+                    print "Fido2. Authenticate for step 2. Get invalid registration status from Fido2 server"
+                    return False
+
+                return True
+            else:
+                print "Fido2. Prepare for step 2. Authentication method is invalid"
+                return False
+
+            return False
+        else:
+            return False
+
+    def prepareForStep(self, configurationAttributes, requestParameters, step):
+        identity = CdiUtil.bean(Identity)
+
+        if (step == 1):
+            return True
+        elif (step == 2):
+            print "Fido2. Prepare for step 2"
+
+            session_id = CdiUtil.bean(SessionIdService).getSessionIdFromCookie()
+            if StringHelper.isEmpty(session_id):
+                print "Fido2. Prepare for step 2. Failed to determine session_id"
+                return False
+
+            authenticationService = CdiUtil.bean(AuthenticationService)
+            user = authenticationService.getAuthenticatedUser()
+            if (user == None):
+                print "Fido2. Prepare for step 2. Failed to determine user name"
+                return False
+
+            userName = user.getUserId()
+
+            metaDataConfiguration = self.getMetaDataConfiguration()
+            assertionResponse = None
+            attestationResponse = None
+
+            # Check if user have registered devices
+            count = CdiUtil.bean(UserService).countFido2RegisteredDevices(userName)
+            if (count > 0):
+                print "Fido2. Prepare for step 2. Call Fido2 endpoint in order to start assertion flow"
+
+                try:
+                    assertionService = Fido2ClientFactory.instance().createAssertionService(metaDataConfiguration)
+                    assertionRequest = json.dumps({'username': userName}, separators=(',', ':'))
+                    assertionResponse = assertionService.authenticate(assertionRequest).readEntity(java.lang.String)
+                except ClientResponseFailure, ex:
+                    print "Fido2. Prepare for step 2. Failed to start assertion flow. Exception:", sys.exc_info()[1]
+                    return False
+            else:
+                print "Fido2. Prepare for step 2. Call Fido2 endpoint in order to start attestation flow"
+
+                try:
+                    attestationService = Fido2ClientFactory.instance().createAttestationService(metaDataConfiguration)
+                    attestationRequest = json.dumps({'username': userName, 'displayName': userName}, separators=(',', ':'))
+                    attestationResponse = attestationService.register(attestationRequest).readEntity(java.lang.String)
+                except ClientResponseFailure, ex:
+                    print "Fido2. Prepare for step 2. Failed to start attestation flow. Exception:", sys.exc_info()[1]
+                    return False
+
+            identity.setWorkingParameter("fido2_assertion_request", ServerUtil.asJson(assertionResponse))
+            identity.setWorkingParameter("fido2_attestation_request", ServerUtil.asJson(attestationResponse))
+            print "Fido2. Prepare for step 2. Successfully start flow with next requests.\nfido2_assertion_request: '%s'\nfido2_attestation_request: '%s'" % ( assertionResponse, attestationResponse )
+
+            return True
+        elif (step == 3):
+            print "Fido2. Prepare for step 3"
+
+            return True
+        else:
+            return False
+
+    def getExtraParametersForStep(self, configurationAttributes, step):
+        return None
+
+    def getCountAuthenticationSteps(self, configurationAttributes):
+        return 2
+
+    def getPageForStep(self, configurationAttributes, step):
+        if (step == 2):
+            #Modified for Casa compliance
+            return "/passwordless/fido2.xhtml"
+
+        return ""
+
+    def logout(self, configurationAttributes, requestParameters):
+        return True
+    
+    def getMetaDataConfiguration(self):
+        if self.metaDataConfiguration != None:
+            return self.metaDataConfiguration
+        
+        self.metaDataLoaderLock.lock()
+        # Make sure that another thread not loaded configuration already          
+        if self.metaDataConfiguration != None:
+            return self.metaDataConfiguration
+
+        try:
+            print "Fido2. Initialization. Downloading Fido2 metadata"
+            self.fido2_server_metadata_uri = self.fido2_server_uri + "/.well-known/fido2-configuration"
+            #self.fido2_server_metadata_uri = self.fido2_server_uri + "/oxauth/restv1/fido2/configuration"
+
+            metaDataConfigurationService = Fido2ClientFactory.instance().createMetaDataConfigurationService(self.fido2_server_metadata_uri)
+    
+            max_attempts = 10
+            for attempt in range(1, max_attempts + 1):
+                try:
+                    self.metaDataConfiguration = metaDataConfigurationService.getMetadataConfiguration().readEntity(java.lang.String)
+                    return self.metaDataConfiguration
+                except ClientResponseFailure, ex:
+                    # Detect if last try or we still get Service Unavailable HTTP error
+                    if (attempt == max_attempts) or (ex.getResponse().getResponseStatus() != Response.Status.SERVICE_UNAVAILABLE):
+                        raise ex
+    
+                    java.lang.Thread.sleep(3000)
+                    print "Attempting to load metadata: %d" % attempt
+                except ResteasyClientException, ex:
+                    # Detect if last try or we still get Service Unavailable HTTP error
+                    if attempt == max_attempts:
+                        raise ex
+    
+                    java.lang.Thread.sleep(3000)
+                    print "Attempting to load metadata: %d" % attempt
+        finally:
+            self.metaDataLoaderLock.unlock()
+            
+    # Added for Casa compliance
+
+    def hasEnrollments(self, configurationAttributes, user):
+        return CdiUtil.bean(UserService).countFido2RegisteredDevices(user.getUserId()) > 0
diff --git a/oxAuth/Server/integrations/passwurd/bundle/bundle/opt/gluu/python/libs/passwurd-external_otp.py b/oxAuth/Server/integrations/passwurd/bundle/bundle/opt/gluu/python/libs/passwurd-external_otp.py
new file mode 100644
index 00000000..8b721b88
--- /dev/null
+++ b/oxAuth/Server/integrations/passwurd/bundle/bundle/opt/gluu/python/libs/passwurd-external_otp.py
@@ -0,0 +1,590 @@
+# Based on oxAuth OtpExternalAuthenticator.py
+
+# Requires the following custom properties and values:
+#   otp_type: totp/hotp
+#   issuer: Gluu Inc
+#   otp_conf_file: /etc/certs/otp_configuration.json
+#
+# These are non mandatory custom properties and values:
+#   label: Gluu OTP
+#   qr_options: { width: 400, height: 400 }
+#   registration_uri: https://ce-dev.gluu.org/identity/register
+
+import jarray
+import json
+import sys
+from com.google.common.io import BaseEncoding
+from com.lochbridge.oath.otp import HOTP
+from com.lochbridge.oath.otp import HOTPValidator
+from com.lochbridge.oath.otp import HmacShaAlgorithm
+from com.lochbridge.oath.otp import TOTP
+from com.lochbridge.oath.otp.keyprovisioning import OTPAuthURIBuilder
+from com.lochbridge.oath.otp.keyprovisioning import OTPKey
+from com.lochbridge.oath.otp.keyprovisioning.OTPKey import OTPType
+from java.security import SecureRandom
+from java.util import Arrays
+from java.util.concurrent import TimeUnit
+from javax.faces.application import FacesMessage
+from org.gluu.jsf2.message import FacesMessages
+from org.gluu.model.custom.script.type.auth import PersonAuthenticationType
+from org.gluu.oxauth.security import Identity
+from org.gluu.oxauth.service import AuthenticationService, UserService, SessionIdService
+from org.gluu.oxauth.util import ServerUtil
+from org.gluu.service.cdi.util import CdiUtil
+from org.gluu.util import StringHelper
+
+
+class PersonAuthentication(PersonAuthenticationType):
+    def __init__(self, currentTimeMillis):
+        self.currentTimeMillis = currentTimeMillis
+
+    def init(self, customScript, configurationAttributes):
+        print "OTP. Initialization"
+
+        if not configurationAttributes.containsKey("otp_type"):
+            print "OTP. Initialization. Property otp_type is mandatory"
+            return False
+        self.otpType = configurationAttributes.get("otp_type").getValue2()
+
+        if not self.otpType in ["hotp", "totp"]:
+            print "OTP. Initialization. Property value otp_type is invalid"
+            return False
+
+        if not configurationAttributes.containsKey("issuer"):
+            print "OTP. Initialization. Property issuer is mandatory"
+            return False
+        self.otpIssuer = configurationAttributes.get("issuer").getValue2()
+
+        self.customLabel = None
+        if configurationAttributes.containsKey("label"):
+            self.customLabel = configurationAttributes.get("label").getValue2()
+
+        self.customQrOptions = {}
+        if configurationAttributes.containsKey("qr_options"):
+            self.customQrOptions = configurationAttributes.get("qr_options").getValue2()
+
+        self.registrationUri = None
+        if configurationAttributes.containsKey("registration_uri"):
+            self.registrationUri = configurationAttributes.get("registration_uri").getValue2()
+
+        validOtpConfiguration = self.loadOtpConfiguration(configurationAttributes)
+        if not validOtpConfiguration:
+            return False
+
+        print "OTP. Initialized successfully"
+        return True
+
+    def destroy(self, configurationAttributes):
+        print "OTP. Destroy"
+        print "OTP. Destroyed successfully"
+        return True
+
+    def getApiVersion(self):
+        return 11
+
+    def getAuthenticationMethodClaims(self, configurationAttributes):
+        return None
+
+    def isValidAuthenticationMethod(self, usageType, configurationAttributes):
+        return True
+
+    def getAlternativeAuthenticationMethod(self, usageType, configurationAttributes):
+        return None
+
+    def authenticate(self, configurationAttributes, requestParameters, step):
+        authenticationService = CdiUtil.bean(AuthenticationService)
+
+        identity = CdiUtil.bean(Identity)
+        credentials = identity.getCredentials()
+
+        self.setRequestScopedParameters(identity)
+
+        if step == 1:
+            print "OTP. Authenticate for step 1"
+
+            # Modified for Casa compliance
+            authenticated_user = authenticationService.getAuthenticatedUser()
+            if authenticated_user == None:
+                authenticated_user = self.processBasicAuthentication(credentials)
+                if authenticated_user == None:
+                    return False
+
+            otp_auth_method = "authenticate"
+            # Uncomment this block if you need to allow user second OTP registration
+            #enrollment_mode = ServerUtil.getFirstValue(requestParameters, "loginForm:registerButton")
+            #if StringHelper.isNotEmpty(enrollment_mode):
+            #    otp_auth_method = "enroll"
+
+            # Modified for Casa compliance
+            if not self.hasEnrollments(configurationAttributes, authenticated_user):
+                return False
+
+            #if otp_auth_method == "authenticate":
+            #    user_enrollments = self.findEnrollments(authenticated_user.getUserId())
+            #    if len(user_enrollments) == 0:
+            #        otp_auth_method = "enroll"
+            #        print "OTP. Authenticate for step 1. There is no OTP enrollment for user '%s'. Changing otp_auth_method to '%s'" % (authenticated_user.getUserId(), otp_auth_method)
+
+            if otp_auth_method == "enroll":
+                print "OTP. Authenticate for step 1. Setting count steps: '%s'" % 3
+                identity.setWorkingParameter("otp_count_login_steps", 3)
+
+            print "OTP. Authenticate for step 1. otp_auth_method: '%s'" % otp_auth_method
+            identity.setWorkingParameter("otp_auth_method", otp_auth_method)
+
+            return True
+        elif step == 2:
+            print "OTP. Authenticate for step 2"
+
+            authenticationService = CdiUtil.bean(AuthenticationService)
+            user = authenticationService.getAuthenticatedUser()
+            if user == None:
+                print "OTP. Authenticate for step 2. Failed to determine user name"
+                return False
+
+            session_id_validation = self.validateSessionId(identity)
+            if not session_id_validation:
+                return False
+
+            # Restore state from session
+            otp_auth_method = identity.getWorkingParameter("otp_auth_method")
+            if otp_auth_method == 'enroll':
+                auth_result = ServerUtil.getFirstValue(requestParameters, "auth_result")
+                if not StringHelper.isEmpty(auth_result):
+                    print "OTP. Authenticate for step 2. User not enrolled OTP"
+                    return False
+
+                print "OTP. Authenticate for step 2. Skipping this step during enrollment"
+                return True
+
+            otp_auth_result = self.processOtpAuthentication(requestParameters, user.getUserId(), identity, otp_auth_method)
+            print "OTP. Authenticate for step 2. OTP authentication result: '%s'" % otp_auth_result
+
+            return otp_auth_result
+        elif step == 3:
+            print "OTP. Authenticate for step 3"
+
+            authenticationService = CdiUtil.bean(AuthenticationService)
+            user = authenticationService.getAuthenticatedUser()
+            if user == None:
+                print "OTP. Authenticate for step 2. Failed to determine user name"
+                return False
+
+            session_id_validation = self.validateSessionId(identity)
+            if not session_id_validation:
+                return False
+
+            # Restore state from session
+            otp_auth_method = identity.getWorkingParameter("otp_auth_method")
+            if otp_auth_method != 'enroll':
+                return False
+
+            otp_auth_result = self.processOtpAuthentication(requestParameters, user.getUserId(), identity, otp_auth_method)
+            print "OTP. Authenticate for step 3. OTP authentication result: '%s'" % otp_auth_result
+
+            return otp_auth_result
+        else:
+            return False
+
+    def prepareForStep(self, configurationAttributes, requestParameters, step):
+        identity = CdiUtil.bean(Identity)
+        credentials = identity.getCredentials()
+
+        self.setRequestScopedParameters(identity)
+
+        if step == 1:
+            print "OTP. Prepare for step 1"
+            return True
+
+        elif step == 2:
+            print "OTP. Prepare for step 2"
+
+            session_id_validation = self.validateSessionId(identity)
+            if not session_id_validation:
+                return False
+
+            otp_auth_method = identity.getWorkingParameter("otp_auth_method")
+            print "OTP. Prepare for step 2. otp_auth_method: '%s'" % otp_auth_method
+
+            if otp_auth_method == 'enroll':
+                authenticationService = CdiUtil.bean(AuthenticationService)
+                user = authenticationService.getAuthenticatedUser()
+                if user == None:
+                    print "OTP. Prepare for step 2. Failed to load user enty"
+                    return False
+
+                if self.otpType == "hotp":
+                    otp_secret_key = self.generateSecretHotpKey()
+                    otp_enrollment_request = self.generateHotpSecretKeyUri(otp_secret_key, self.otpIssuer, user.getAttribute("displayName"))
+                elif self.otpType == "totp":
+                    otp_secret_key = self.generateSecretTotpKey()
+                    otp_enrollment_request = self.generateTotpSecretKeyUri(otp_secret_key, self.otpIssuer, user.getAttribute("displayName"))
+                else:
+                    print "OTP. Prepare for step 2. Unknown OTP type: '%s'" % self.otpType
+                    return False
+
+                print "OTP. Prepare for step 2. Prepared enrollment request for user: '%s'" % user.getUserId()
+                identity.setWorkingParameter("otp_secret_key", self.toBase64Url(otp_secret_key))
+                identity.setWorkingParameter("otp_enrollment_request", otp_enrollment_request)
+
+            return True
+        elif step == 3:
+            print "OTP. Prepare for step 3"
+
+            session_id_validation = self.validateSessionId(identity)
+            if not session_id_validation:
+                return False
+
+            otp_auth_method = identity.getWorkingParameter("otp_auth_method")
+            print "OTP. Prepare for step 3. otp_auth_method: '%s'" % otp_auth_method
+
+            if otp_auth_method == 'enroll':
+                return True
+
+        return False
+
+    def getExtraParametersForStep(self, configurationAttributes, step):
+        return Arrays.asList("otp_auth_method", "otp_count_login_steps", "otp_secret_key", "otp_enrollment_request")
+
+    def getCountAuthenticationSteps(self, configurationAttributes):
+        identity = CdiUtil.bean(Identity)
+
+        if identity.isSetWorkingParameter("otp_count_login_steps"):
+            return StringHelper.toInteger("%s" % identity.getWorkingParameter("otp_count_login_steps"))
+        else:
+            return 2
+
+    def getPageForStep(self, configurationAttributes, step):
+        if step == 2:
+            identity = CdiUtil.bean(Identity)
+
+            otp_auth_method = identity.getWorkingParameter("otp_auth_method")
+            print "OTP. Get page for step 2. otp_auth_method: '%s'" % otp_auth_method
+
+            if otp_auth_method == 'enroll':
+                return "/auth/otp/enroll.xhtml"
+            else:
+                #Modified for Casa compliance
+                return "/casa/otp.xhtml"
+        elif step == 3:
+            return "/auth/otp/otplogin.xhtml"
+
+        return ""
+
+    def logout(self, configurationAttributes, requestParameters):
+        return True
+
+    def setRequestScopedParameters(self, identity):
+        if self.registrationUri != None:
+            identity.setWorkingParameter("external_registration_uri", self.registrationUri)
+
+        if self.customLabel != None:
+            identity.setWorkingParameter("qr_label", self.customLabel)
+
+        identity.setWorkingParameter("qr_options", self.customQrOptions)
+
+    def loadOtpConfiguration(self, configurationAttributes):
+        print "OTP. Load OTP configuration"
+        if not configurationAttributes.containsKey("otp_conf_file"):
+            return False
+
+        otp_conf_file = configurationAttributes.get("otp_conf_file").getValue2()
+
+        # Load configuration from file
+        f = open(otp_conf_file, 'r')
+        try:
+            otpConfiguration = json.loads(f.read())
+        except:
+            print "OTP. Load OTP configuration. Failed to load configuration from file:", otp_conf_file
+            return False
+        finally:
+            f.close()
+
+        # Check configuration file settings
+        try:
+            self.hotpConfiguration = otpConfiguration["hotp"]
+            self.totpConfiguration = otpConfiguration["totp"]
+
+            hmacShaAlgorithm = self.totpConfiguration["hmacShaAlgorithm"]
+            hmacShaAlgorithmType = None
+
+            if StringHelper.equalsIgnoreCase(hmacShaAlgorithm, "sha1"):
+                hmacShaAlgorithmType = HmacShaAlgorithm.HMAC_SHA_1
+            elif StringHelper.equalsIgnoreCase(hmacShaAlgorithm, "sha256"):
+                hmacShaAlgorithmType = HmacShaAlgorithm.HMAC_SHA_256
+            elif StringHelper.equalsIgnoreCase(hmacShaAlgorithm, "sha512"):
+                hmacShaAlgorithmType = HmacShaAlgorithm.HMAC_SHA_512
+            else:
+                print "OTP. Load OTP configuration. Invalid TOTP HMAC SHA algorithm: '%s'" % hmacShaAlgorithm
+
+            self.totpConfiguration["hmacShaAlgorithmType"] = hmacShaAlgorithmType
+        except:
+            print "OTP. Load OTP configuration. Invalid configuration file '%s' format. Exception: '%s'" % (otp_conf_file, sys.exc_info()[1])
+            return False
+
+
+        return True
+
+    def processBasicAuthentication(self, credentials):
+        userService = CdiUtil.bean(UserService)
+        authenticationService = CdiUtil.bean(AuthenticationService)
+
+        user_name = credentials.getUsername()
+        user_password = credentials.getPassword()
+
+        logged_in = False
+        if StringHelper.isNotEmptyString(user_name) and StringHelper.isNotEmptyString(user_password):
+            logged_in = authenticationService.authenticate(user_name, user_password)
+
+        if not logged_in:
+            return None
+
+        find_user_by_uid = authenticationService.getAuthenticatedUser()
+        if find_user_by_uid == None:
+            print "OTP. Process basic authentication. Failed to find user '%s'" % user_name
+            return None
+
+        return find_user_by_uid
+
+    # Modified for Casa compliance
+    def findEnrollments(self, user_name, otpType, skipPrefix = True):
+        result = []
+
+        userService = CdiUtil.bean(UserService)
+        user = userService.getUser(user_name, "oxExternalUid")
+        if user == None:
+            print "OTP. Find enrollments. Failed to find user"
+            return result
+
+        user_custom_ext_attribute = userService.getCustomAttribute(user, "oxExternalUid")
+        if user_custom_ext_attribute == None:
+            return result
+
+        #otp_prefix = "%s:" % self.otpType
+        otp_prefix = "%s:" % otpType
+
+        otp_prefix_length = len(otp_prefix)
+        for user_external_uid in user_custom_ext_attribute.getValues():
+            index = user_external_uid.find(otp_prefix)
+            if index != -1:
+                if skipPrefix:
+                    enrollment_uid = user_external_uid[otp_prefix_length:]
+                else:
+                    enrollment_uid = user_external_uid
+
+                result.append(enrollment_uid)
+
+        return result
+
+    def validateSessionId(self, identity):
+        session_id = CdiUtil.bean(SessionIdService).getSessionIdFromCookie()
+        if StringHelper.isEmpty(session_id):
+            print "OTP. Validate session id. Failed to determine session_id"
+            return False
+
+        otp_auth_method = identity.getWorkingParameter("otp_auth_method")
+        if not otp_auth_method in ['enroll', 'authenticate']:
+            print "OTP. Validate session id. Failed to authenticate user. otp_auth_method: '%s'" % otp_auth_method
+            return False
+
+        return True
+
+    def processOtpAuthentication(self, requestParameters, user_name, identity, otp_auth_method):
+        facesMessages = CdiUtil.bean(FacesMessages)
+        facesMessages.setKeepMessages()
+
+        userService = CdiUtil.bean(UserService)
+
+        otpCode = ServerUtil.getFirstValue(requestParameters, "loginForm:otpCode")
+        if StringHelper.isEmpty(otpCode):
+            facesMessages.add(FacesMessage.SEVERITY_ERROR, "Failed to authenticate. OTP code is empty")
+            print "OTP. Process OTP authentication. otpCode is empty"
+
+            return False
+
+        if otp_auth_method == "enroll":
+            # Get key from session
+            otp_secret_key_encoded = identity.getWorkingParameter("otp_secret_key")
+            if otp_secret_key_encoded == None:
+                print "OTP. Process OTP authentication. OTP secret key is invalid"
+                return False
+
+            otp_secret_key = self.fromBase64Url(otp_secret_key_encoded)
+
+            if self.otpType == "hotp":
+                validation_result = self.validateHotpKey(otp_secret_key, 1, otpCode)
+
+                if (validation_result != None) and validation_result["result"]:
+                    print "OTP. Process HOTP authentication during enrollment. otpCode is valid"
+                    # Store HOTP Secret Key and moving factor in user entry
+                    otp_user_external_uid = "hotp:%s;%s" % ( otp_secret_key_encoded, validation_result["movingFactor"] )
+
+                    # Add otp_user_external_uid to user's external GUID list
+                    find_user_by_external_uid = userService.addUserAttribute(user_name, "oxExternalUid", otp_user_external_uid, True)
+                    if find_user_by_external_uid != None:
+                        return True
+
+                    print "OTP. Process HOTP authentication during enrollment. Failed to update user entry"
+            elif self.otpType == "totp":
+                validation_result = self.validateTotpKey(otp_secret_key, otpCode)
+                if (validation_result != None) and validation_result["result"]:
+                    print "OTP. Process TOTP authentication during enrollment. otpCode is valid"
+                    # Store TOTP Secret Key and moving factor in user entry
+                    otp_user_external_uid = "totp:%s" % otp_secret_key_encoded
+
+                    # Add otp_user_external_uid to user's external GUID list
+                    find_user_by_external_uid = userService.addUserAttribute(user_name, "oxExternalUid", otp_user_external_uid, True)
+                    if find_user_by_external_uid != None:
+                        return True
+
+                    print "OTP. Process TOTP authentication during enrollment. Failed to update user entry"
+        elif otp_auth_method == "authenticate":
+            # Modified for Casa compliance
+
+            user_enrollments = self.findEnrollments(user_name, "hotp")
+
+            #if len(user_enrollments) == 0:
+            #    print "OTP. Process OTP authentication. There is no OTP enrollment for user '%s'" % user_name
+            #    facesMessages.add(FacesMessage.SEVERITY_ERROR, "There is no valid OTP user enrollments")
+            #    return False
+
+            if len(user_enrollments) > 0:
+                for user_enrollment in user_enrollments:
+                    user_enrollment_data = user_enrollment.split(";")
+                    otp_secret_key_encoded = user_enrollment_data[0]
+
+                    # Get current moving factor from user entry
+                    moving_factor = StringHelper.toInteger(user_enrollment_data[1])
+                    otp_secret_key = self.fromBase64Url(otp_secret_key_encoded)
+
+                    # Validate TOTP
+                    validation_result = self.validateHotpKey(otp_secret_key, moving_factor, otpCode)
+                    if (validation_result != None) and validation_result["result"]:
+                        print "OTP. Process HOTP authentication during authentication. otpCode is valid"
+                        otp_user_external_uid = "hotp:%s;%s" % ( otp_secret_key_encoded, moving_factor )
+                        new_otp_user_external_uid = "hotp:%s;%s" % ( otp_secret_key_encoded, validation_result["movingFactor"] )
+
+                        # Update moving factor in user entry
+                        find_user_by_external_uid = userService.replaceUserAttribute(user_name, "oxExternalUid", otp_user_external_uid, new_otp_user_external_uid, True)
+                        if find_user_by_external_uid != None:
+                            return True
+
+                        print "OTP. Process HOTP authentication during authentication. Failed to update user entry"
+
+            user_enrollments = self.findEnrollments(user_name, "totp")
+
+            if len(user_enrollments) > 0:
+                for user_enrollment in user_enrollments:
+                    otp_secret_key = self.fromBase64Url(user_enrollment)
+
+                    # Validate TOTP
+                    validation_result = self.validateTotpKey(otp_secret_key, otpCode)
+                    if (validation_result != None) and validation_result["result"]:
+                        print "OTP. Process TOTP authentication during authentication. otpCode is valid"
+                        return True
+
+        facesMessages.add(FacesMessage.SEVERITY_ERROR, "Failed to authenticate. OTP code is invalid")
+        print "OTP. Process OTP authentication. OTP code is invalid"
+
+        return False
+
+    # Shared HOTP/TOTP methods
+    def generateSecretKey(self, keyLength):
+        bytes = jarray.zeros(keyLength, "b")
+        secureRandom = SecureRandom()
+        secureRandom.nextBytes(bytes)
+
+        return bytes
+
+    # HOTP methods
+    def generateSecretHotpKey(self):
+        keyLength = self.hotpConfiguration["keyLength"]
+
+        return self.generateSecretKey(keyLength)
+
+    def generateHotpKey(self, secretKey, movingFactor):
+        digits = self.hotpConfiguration["digits"]
+
+        hotp = HOTP.key(secretKey).digits(digits).movingFactor(movingFactor).build()
+
+        return hotp.value()
+
+    def validateHotpKey(self, secretKey, movingFactor, totpKey):
+        lookAheadWindow = self.hotpConfiguration["lookAheadWindow"]
+        digits = self.hotpConfiguration["digits"]
+
+        htopValidationResult = HOTPValidator.lookAheadWindow(lookAheadWindow).validate(secretKey, movingFactor, digits, totpKey)
+        if htopValidationResult.isValid():
+            return { "result": True, "movingFactor": htopValidationResult.getNewMovingFactor() }
+
+        return { "result": False, "movingFactor": None }
+
+    def generateHotpSecretKeyUri(self, secretKey, issuer, userDisplayName):
+        digits = self.hotpConfiguration["digits"]
+
+        secretKeyBase32 = self.toBase32(secretKey)
+        otpKey = OTPKey(secretKeyBase32, OTPType.HOTP)
+        label = issuer + " %s" % userDisplayName
+
+        otpAuthURI = OTPAuthURIBuilder.fromKey(otpKey).label(label).issuer(issuer).digits(digits).build()
+
+        return otpAuthURI.toUriString()
+
+    # TOTP methods
+    def generateSecretTotpKey(self):
+        keyLength = self.totpConfiguration["keyLength"]
+
+        return self.generateSecretKey(keyLength)
+
+    def generateTotpKey(self, secretKey):
+        digits = self.totpConfiguration["digits"]
+        timeStep = self.totpConfiguration["timeStep"]
+        hmacShaAlgorithmType = self.totpConfiguration["hmacShaAlgorithmType"]
+
+        totp = TOTP.key(secretKey).digits(digits).timeStep(TimeUnit.SECONDS.toMillis(timeStep)).hmacSha(hmacShaAlgorithmType).build()
+
+        return totp.value()
+
+    def validateTotpKey(self, secretKey, totpKey):
+        localTotpKey = self.generateTotpKey(secretKey)
+        if StringHelper.equals(localTotpKey, totpKey):
+            return { "result": True }
+
+        return { "result": False }
+
+    def generateTotpSecretKeyUri(self, secretKey, issuer, userDisplayName):
+        digits = self.totpConfiguration["digits"]
+        timeStep = self.totpConfiguration["timeStep"]
+
+        secretKeyBase32 = self.toBase32(secretKey)
+        otpKey = OTPKey(secretKeyBase32, OTPType.TOTP)
+        label = issuer + " %s" % userDisplayName
+
+        otpAuthURI = OTPAuthURIBuilder.fromKey(otpKey).label(label).issuer(issuer).digits(digits).timeStep(TimeUnit.SECONDS.toMillis(timeStep)).build()
+
+        return otpAuthURI.toUriString()
+
+    # Utility methods
+    def toBase32(self, bytes):
+        return BaseEncoding.base32().omitPadding().encode(bytes)
+
+    def toBase64Url(self, bytes):
+        return BaseEncoding.base64Url().encode(bytes)
+
+    def fromBase64Url(self, chars):
+        return BaseEncoding.base64Url().decode(chars)
+
+
+    # Added for Casa compliance
+    def hasEnrollments(self, configurationAttributes, user):
+
+        # Both hotp and totp are accounted
+        hasEnrollments = False
+        values = user.getAttributeValues("oxExternalUid")
+
+        if values != None:
+            for extUid in values:
+                if not hasEnrollments:
+                    hasEnrollments = extUid.find("hotp:") != -1 or extUid.find("totp:") != -1
+
+        return hasEnrollments
diff --git a/oxAuth/Server/integrations/passwurd/bundle/bundle/opt/gluu/python/libs/passwurd-external_super_gluu.py b/oxAuth/Server/integrations/passwurd/bundle/bundle/opt/gluu/python/libs/passwurd-external_super_gluu.py
new file mode 100644
index 00000000..23a74afe
--- /dev/null
+++ b/oxAuth/Server/integrations/passwurd/bundle/bundle/opt/gluu/python/libs/passwurd-external_super_gluu.py
@@ -0,0 +1,1084 @@
+# Based on oxAuth SuperGluuExternalAuthenticator.py
+
+from com.google.android.gcm.server import Sender, Message
+from com.notnoop.apns import APNS
+from java.util import Arrays
+from org.apache.http.params import CoreConnectionPNames
+from org.gluu.service.cdi.util import CdiUtil
+from org.gluu.oxauth.security import Identity
+from org.gluu.model.custom.script.type.auth import PersonAuthenticationType
+from org.gluu.oxauth.model.config import ConfigurationFactory
+from org.gluu.oxauth.service import AuthenticationService, UserService, SessionIdService
+from org.gluu.oxauth.service.common import EncryptionService
+from org.gluu.oxauth.service.fido.u2f import DeviceRegistrationService
+from org.gluu.oxauth.service.net import HttpService
+from org.gluu.oxauth.util import ServerUtil
+from org.gluu.util import StringHelper
+from org.gluu.service import MailService
+from org.gluu.oxauth.service.push.sns import PushPlatform, PushSnsService
+from org.gluu.oxnotify.client import NotifyClientFactory
+from java.util import Arrays, HashMap, IdentityHashMap, Date
+from java.time import ZonedDateTime
+from java.time.format import DateTimeFormatter
+
+try:
+    from org.gluu.oxd.license.client.js import Product
+    from org.gluu.oxd.license.validator import LicenseValidator
+    has_license_api = True
+except ImportError:
+    print "Super-Gluu. Load. Failed to load licensing API"
+    has_license_api = False
+
+import datetime
+import urllib
+
+import sys
+import json
+
+class PersonAuthentication(PersonAuthenticationType):
+    def __init__(self, currentTimeMillis):
+        self.currentTimeMillis = currentTimeMillis
+
+    def init(self, customScript, configurationAttributes):
+        print "Super-Gluu. Initialization"
+
+        if not configurationAttributes.containsKey("authentication_mode"):
+            print "Super-Gluu. Initialization. Property authentication_mode is mandatory"
+            return False
+
+        self.applicationId = None
+        if configurationAttributes.containsKey("application_id"):
+            self.applicationId = configurationAttributes.get("application_id").getValue2()
+
+        self.registrationUri = None
+        if configurationAttributes.containsKey("registration_uri"):
+            self.registrationUri = configurationAttributes.get("registration_uri").getValue2()
+
+        authentication_mode = configurationAttributes.get("authentication_mode").getValue2()
+        if StringHelper.isEmpty(authentication_mode):
+            print "Super-Gluu. Initialization. Failed to determine authentication_mode. authentication_mode configuration parameter is empty"
+            return False
+
+        self.oneStep = StringHelper.equalsIgnoreCase(authentication_mode, "one_step")
+        self.twoStep = StringHelper.equalsIgnoreCase(authentication_mode, "two_step")
+
+        if not (self.oneStep or self.twoStep):
+            print "Super-Gluu. Initialization. Valid authentication_mode values are one_step and two_step"
+            return False
+
+        self.enabledPushNotifications = self.initPushNotificationService(configurationAttributes)
+
+        self.androidUrl = None
+        if configurationAttributes.containsKey("supergluu_android_download_url"):
+            self.androidUrl = configurationAttributes.get("supergluu_android_download_url").getValue2()
+
+        self.IOSUrl = None
+        if configurationAttributes.containsKey("supergluu_ios_download_url"):
+            self.IOSUrl = configurationAttributes.get("supergluu_ios_download_url").getValue2()
+
+        self.customLabel = None
+        if configurationAttributes.containsKey("label"):
+            self.customLabel = configurationAttributes.get("label").getValue2()
+
+        self.customQrOptions = {}
+        if configurationAttributes.containsKey("qr_options"):
+            self.customQrOptions = configurationAttributes.get("qr_options").getValue2()
+
+        self.use_super_gluu_group = False
+        if configurationAttributes.containsKey("super_gluu_group"):
+            self.super_gluu_group = configurationAttributes.get("super_gluu_group").getValue2()
+            self.use_super_gluu_group = True
+            print "Super-Gluu. Initialization. Using super_gluu only if user belong to group: %s" % self.super_gluu_group
+
+        self.use_audit_group = False
+        if configurationAttributes.containsKey("audit_group"):
+            self.audit_group = configurationAttributes.get("audit_group").getValue2()
+
+            if (not configurationAttributes.containsKey("audit_group_email")):
+                print "Super-Gluu. Initialization. Property audit_group_email is not specified"
+                return False
+
+            self.audit_email = configurationAttributes.get("audit_group_email").getValue2()
+            self.use_audit_group = True
+
+            print "Super-Gluu. Initialization. Using audit group: %s" % self.audit_group
+
+        if self.use_super_gluu_group or self.use_audit_group:
+            if not configurationAttributes.containsKey("audit_attribute"):
+                print "Super-Gluu. Initialization. Property audit_attribute is not specified"
+                return False
+            else:
+                self.audit_attribute = configurationAttributes.get("audit_attribute").getValue2()
+
+        self.valid_license = False
+        # Removing or altering this block validation is against the terms of the license. 
+        if has_license_api and configurationAttributes.containsKey("license_file"):
+            license_file = configurationAttributes.get("license_file").getValue2()
+
+            # Load license from file
+            f = open(license_file, 'r')
+            try:
+                license = json.loads(f.read())
+            except:
+                print "Super-Gluu. Initialization. Failed to load license from file: %s" % license_file
+                return False
+            finally:
+                f.close()
+            
+            # Validate license
+            try:
+                self.license_content = LicenseValidator.validate(license["public-key"], license["public-password"], license["license-password"], license["license"],
+                                          Product.SUPER_GLUU, Date())
+                self.valid_license = self.license_content.isValid()
+            except:
+                print "Super-Gluu. Initialization. Failed to validate license. Exception: ", sys.exc_info()[1]
+                return False
+
+            print "Super-Gluu. Initialization. License status: '%s'. License metadata: '%s'" % (self.valid_license, self.license_content.getMetadata())
+
+        print "Super-Gluu. Initialized successfully. oneStep: '%s', twoStep: '%s', pushNotifications: '%s', customLabel: '%s'" % (self.oneStep, self.twoStep, self.enabledPushNotifications, self.customLabel)
+
+        return True
+
+    def destroy(self, configurationAttributes):
+        print "Super-Gluu. Destroy"
+
+        self.pushAndroidService = None
+        self.pushAppleService = None
+
+        print "Super-Gluu. Destroyed successfully"
+        return True
+
+    def getApiVersion(self):
+        return 11
+
+    def getAuthenticationMethodClaims(self, configurationAttributes):
+        return None
+
+    def isValidAuthenticationMethod(self, usageType, configurationAttributes):
+        return True
+
+    def getAlternativeAuthenticationMethod(self, usageType, configurationAttributes):
+        return None
+
+    def authenticate(self, configurationAttributes, requestParameters, step):
+        authenticationService = CdiUtil.bean(AuthenticationService)
+
+        identity = CdiUtil.bean(Identity)
+        credentials = identity.getCredentials()
+
+        session_attributes = identity.getSessionId().getSessionAttributes()
+
+        client_redirect_uri = self.getApplicationUri(session_attributes)
+        if client_redirect_uri == None:
+            print "Super-Gluu. Authenticate. redirect_uri is not set"
+            return False
+
+        self.setRequestScopedParameters(identity, step)
+
+        # Validate form result code and initialize QR code regeneration if needed (retry_current_step = True)
+        identity.setWorkingParameter("retry_current_step", False)
+        form_auth_result = ServerUtil.getFirstValue(requestParameters, "auth_result")
+        if StringHelper.isNotEmpty(form_auth_result):
+            print "Super-Gluu. Authenticate for step %s. Get auth_result: '%s'" % (step, form_auth_result)
+            if form_auth_result in ['error']:
+                return False
+
+            if form_auth_result in ['timeout']:
+                if ((step == 1) and self.oneStep) or ((step == 2) and self.twoStep):
+                    print "Super-Gluu. Authenticate for step %s. Reinitializing current step" % step
+                    identity.setWorkingParameter("retry_current_step", True)
+                    return False
+
+        userService = CdiUtil.bean(UserService)
+        deviceRegistrationService = CdiUtil.bean(DeviceRegistrationService)
+        if step == 1:
+            print "Super-Gluu. Authenticate for step 1"
+
+            user_name = credentials.getUsername()
+            if self.oneStep:
+                #This branch will never be taken
+                session_device_status = self.getSessionDeviceStatus(session_attributes, user_name)
+                if session_device_status == None:
+                    return False
+
+                u2f_device_id = session_device_status['device_id']
+
+                validation_result = self.validateSessionDeviceStatus(client_redirect_uri, session_device_status)
+                if validation_result:
+                    print "Super-Gluu. Authenticate for step 1. User successfully authenticated with u2f_device '%s'" % u2f_device_id
+                else:
+                    return False
+
+                if not session_device_status['one_step']:
+                    print "Super-Gluu. Authenticate for step 1. u2f_device '%s' is not one step device" % u2f_device_id
+                    return False
+
+                # There are two steps only in enrollment mode
+                if session_device_status['enroll']:
+                    return validation_result
+
+                identity.setWorkingParameter("super_gluu_count_login_steps", 1)
+
+                user_inum = session_device_status['user_inum']
+
+                u2f_device = deviceRegistrationService.findUserDeviceRegistration(user_inum, u2f_device_id, "oxId")
+                if u2f_device == None:
+                    print "Super-Gluu. Authenticate for step 1. Failed to load u2f_device '%s'" % u2f_device_id
+                    return False
+
+                logged_in = authenticationService.authenticate(user_name)
+                if not logged_in:
+                    print "Super-Gluu. Authenticate for step 1. Failed to authenticate user '%s'" % user_name
+                    return False
+
+                print "Super-Gluu. Authenticate for step 1. User '%s' successfully authenticated with u2f_device '%s'" % (user_name, u2f_device_id)
+
+                return True
+            elif self.twoStep:
+                authenticated_user = self.processBasicAuthentication(credentials)
+                if authenticated_user == None:
+                    return False
+
+                if (self.use_super_gluu_group):
+                    print "Super-Gluu. Authenticate for step 1. Checking if user belong to super_gluu group"
+                    is_member_super_gluu_group = self.isUserMemberOfGroup(authenticated_user, self.audit_attribute, self.super_gluu_group)
+                    if (is_member_super_gluu_group):
+                        print "Super-Gluu. Authenticate for step 1. User '%s' member of super_gluu group" % authenticated_user.getUserId()
+                        super_gluu_count_login_steps = 2
+                    else:
+                        if self.use_audit_group:
+                            self.processAuditGroup(authenticated_user, self.audit_attribute, self.audit_group)
+                        super_gluu_count_login_steps = 1
+
+                    identity.setWorkingParameter("super_gluu_count_login_steps", super_gluu_count_login_steps)
+
+                    if super_gluu_count_login_steps == 1:
+                        return True
+
+                auth_method = 'authenticate'
+                enrollment_mode = ServerUtil.getFirstValue(requestParameters, "loginForm:registerButton")
+                if StringHelper.isNotEmpty(enrollment_mode):
+                    auth_method = 'enroll'
+
+                if auth_method == 'authenticate':
+                    user_inum = userService.getUserInum(authenticated_user)
+                    u2f_devices_list = deviceRegistrationService.findUserDeviceRegistrations(user_inum, client_redirect_uri, "oxId")
+                    if u2f_devices_list.size() == 0:
+                        auth_method = 'enroll'
+                        print "Super-Gluu. Authenticate for step 1. There is no U2F '%s' user devices associated with application '%s'. Changing auth_method to '%s'" % (user_name, client_redirect_uri, auth_method)
+
+                print "Super-Gluu. Authenticate for step 1. auth_method: '%s'" % auth_method
+
+                identity.setWorkingParameter("super_gluu_auth_method", auth_method)
+
+                return True
+
+            return False
+        elif step == 2:
+            print "Super-Gluu. Authenticate for step 2"
+
+            user = authenticationService.getAuthenticatedUser()
+            if (user == None):
+                print "Super-Gluu. Authenticate for step 2. Failed to determine user name"
+                return False
+            user_name = user.getUserId()
+
+            session_attributes = identity.getSessionId().getSessionAttributes()
+
+            session_device_status = self.getSessionDeviceStatus(session_attributes, user_name)
+            if session_device_status == None:
+                return False
+
+            u2f_device_id = session_device_status['device_id']
+
+            # There are two steps only in enrollment mode
+            if self.oneStep and session_device_status['enroll']:
+                authenticated_user = self.processBasicAuthentication(credentials)
+                if authenticated_user == None:
+                    return False
+
+                user_inum = userService.getUserInum(authenticated_user)
+
+                attach_result = deviceRegistrationService.attachUserDeviceRegistration(user_inum, u2f_device_id)
+
+                print "Super-Gluu. Authenticate for step 2. Result after attaching u2f_device '%s' to user '%s': '%s'" % (u2f_device_id, user_name, attach_result)
+
+                return attach_result
+            elif self.twoStep:
+                if user_name == None:
+                    print "Super-Gluu. Authenticate for step 2. Failed to determine user name"
+                    return False
+
+                validation_result = self.validateSessionDeviceStatus(client_redirect_uri, session_device_status, user_name)
+                if validation_result:
+                    print "Super-Gluu. Authenticate for step 2. User '%s' successfully authenticated with u2f_device '%s'" % (user_name, u2f_device_id)
+                else:
+                    return False
+
+                super_gluu_request = json.loads(session_device_status['super_gluu_request'])
+                auth_method = super_gluu_request['method']
+                if auth_method in ['enroll', 'authenticate']:
+                    if validation_result and self.use_audit_group:
+                        user = authenticationService.getAuthenticatedUser()
+                        self.processAuditGroup(user, self.audit_attribute, self.audit_group)
+
+                    return validation_result
+
+                print "Super-Gluu. Authenticate for step 2. U2F auth_method is invalid"
+
+            return False
+        else:
+            return False
+
+    def prepareForStep(self, configurationAttributes, requestParameters, step):
+        identity = CdiUtil.bean(Identity)
+        session_attributes = identity.getSessionId().getSessionAttributes()
+
+        client_redirect_uri = self.getApplicationUri(session_attributes)
+        if client_redirect_uri == None:
+            print "Super-Gluu. Prepare for step. redirect_uri is not set"
+            return False
+
+        #This call is harmless with respect to Casa restrictions
+        self.setRequestScopedParameters(identity, step)
+
+        if step == 1:
+            print "Super-Gluu. Prepare for step 1"
+            if self.oneStep:
+                #This branch will never be taken (see note in getExtraParametersForStep)
+                session_id = CdiUtil.bean(SessionIdService).getSessionIdFromCookie()
+                if StringHelper.isEmpty(session_id):
+                    print "Super-Gluu. Prepare for step 2. Failed to determine session_id"
+                    return False
+
+                issuer = CdiUtil.bean(ConfigurationFactory).getConfiguration().getIssuer()
+                super_gluu_request_dictionary = {'app': client_redirect_uri,
+                                   'issuer': issuer,
+                                   'state': session_id,
+                                   'licensed': self.valid_license,
+                                   'created': DateTimeFormatter.ISO_OFFSET_DATE_TIME.format(ZonedDateTime.now().withNano(0))}
+
+                self.addGeolocationData(session_attributes, super_gluu_request_dictionary)
+
+                super_gluu_request = json.dumps(super_gluu_request_dictionary, separators=(',',':'))
+                print "Super-Gluu. Prepare for step 1. Prepared super_gluu_request:", super_gluu_request
+
+                identity.setWorkingParameter("super_gluu_request", super_gluu_request)
+            elif self.twoStep:
+                identity.setWorkingParameter("display_register_action", True)
+
+            return True
+        elif step == 2:
+            print "Super-Gluu. Prepare for step 2"
+            if self.oneStep:
+                return True
+
+            authenticationService = CdiUtil.bean(AuthenticationService)
+            user = authenticationService.getAuthenticatedUser()
+            if user == None:
+                print "Super-Gluu. Prepare for step 2. Failed to determine user name"
+                return False
+
+            if session_attributes.containsKey("super_gluu_request"):
+               super_gluu_request = session_attributes.get("super_gluu_request")
+               if not StringHelper.equalsIgnoreCase(super_gluu_request, "timeout"):
+                   print "Super-Gluu. Prepare for step 2. Request was generated already"
+                   return True
+
+            session_id = CdiUtil.bean(SessionIdService).getSessionIdFromCookie()
+            if StringHelper.isEmpty(session_id):
+                print "Super-Gluu. Prepare for step 2. Failed to determine session_id"
+                return False
+
+            auth_method = session_attributes.get("super_gluu_auth_method")
+            if StringHelper.isEmpty(auth_method):
+                print "Super-Gluu. Prepare for step 2. Failed to determine auth_method"
+                return False
+
+            print "Super-Gluu. Prepare for step 2. auth_method: '%s'" % auth_method
+
+            issuer = CdiUtil.bean(ConfigurationFactory).getAppConfiguration().getIssuer()
+            super_gluu_request_dictionary = {'username': user.getUserId(),
+                               'app': client_redirect_uri,
+                               'issuer': issuer,
+                               'method': auth_method,
+                               'state': session_id,
+                               'licensed': self.valid_license,
+                               'created': DateTimeFormatter.ISO_OFFSET_DATE_TIME.format(ZonedDateTime.now().withNano(0))}
+
+            self.addGeolocationData(session_attributes, super_gluu_request_dictionary)
+
+            super_gluu_request = json.dumps(super_gluu_request_dictionary, separators=(',',':'))
+            print "Super-Gluu. Prepare for step 2. Prepared super_gluu_request:", super_gluu_request
+
+            identity.setWorkingParameter("super_gluu_request", super_gluu_request)
+            identity.setWorkingParameter("super_gluu_auth_method", auth_method)
+
+            if auth_method in ['authenticate']:
+                self.sendPushNotification(client_redirect_uri, user, super_gluu_request)
+
+            return True
+        else:
+            return False
+
+    def getNextStep(self, configurationAttributes, requestParameters, step):
+        # If user not pass current step change step to previous
+        identity = CdiUtil.bean(Identity)
+        retry_current_step = identity.getWorkingParameter("retry_current_step")
+        if retry_current_step:
+            print "Super-Gluu. Get next step. Retrying current step"
+
+            # Remove old QR code
+            identity.setWorkingParameter("super_gluu_request", "timeout")
+
+            resultStep = step
+            return resultStep
+
+        return -1
+
+    def getExtraParametersForStep(self, configurationAttributes, step):
+        #This violates Casa restriction. However, self.oneStep and self.twoStep have to be False/True
+        #respectively as in this scenario only 2 or more steps make sense to call an external script dynamically.
+        #Parameter "display_register_action" used in default login.xhtml page of Gluu Server will not be set
+        if step == 1:
+            if self.oneStep:
+                return Arrays.asList("super_gluu_request")
+            elif self.twoStep:
+                return Arrays.asList("display_register_action")
+        elif step == 2:
+            return Arrays.asList("super_gluu_auth_method", "super_gluu_request")
+
+        return None
+
+    def getCountAuthenticationSteps(self, configurationAttributes):
+        identity = CdiUtil.bean(Identity)
+        if identity.isSetWorkingParameter("super_gluu_count_login_steps"):
+            return identity.getWorkingParameter("super_gluu_count_login_steps")
+        else:
+            return 2
+
+    def getPageForStep(self, configurationAttributes, step):
+        if step == 1:
+            if self.oneStep:
+                return "/auth/super-gluu/login.xhtml"
+        elif step == 2:
+            if self.oneStep:
+                return "/login.xhtml"
+            else:
+                identity = CdiUtil.bean(Identity)
+                authmethod = identity.getWorkingParameter("super_gluu_auth_method")
+                print "Super-Gluu. authmethod '%s'" % authmethod
+                if authmethod == "enroll":
+                    return "/auth/super-gluu/login.xhtml"
+                else:
+                    #Modified for Casa compliance
+                    return "/passwordless/sg.xhtml"
+
+        return ""
+
+    def logout(self, configurationAttributes, requestParameters):
+        return True
+
+    def processBasicAuthentication(self, credentials):
+        authenticationService = CdiUtil.bean(AuthenticationService)
+
+        # Modified for Casa compliance
+        user = authenticationService.getAuthenticatedUser()
+        if user == None:
+            user_name = credentials.getUsername()
+            user_password = credentials.getPassword()
+
+            if StringHelper.isNotEmptyString(user_name) and StringHelper.isNotEmptyString(user_password):
+                authenticationService.authenticate(user_name, user_password)
+                user = authenticationService.getAuthenticatedUser()
+
+        return user
+
+    def validateSessionDeviceStatus(self, client_redirect_uri, session_device_status, user_name = None):
+        userService = CdiUtil.bean(UserService)
+        deviceRegistrationService = CdiUtil.bean(DeviceRegistrationService)
+
+        u2f_device_id = session_device_status['device_id']
+
+        u2f_device = None
+        if session_device_status['enroll'] and session_device_status['one_step']:
+            u2f_device = deviceRegistrationService.findOneStepUserDeviceRegistration(u2f_device_id)
+            if u2f_device == None:
+                print "Super-Gluu. Validate session device status. There is no one step u2f_device '%s'" % u2f_device_id
+                return False
+        else:
+            # Validate if user has specified device_id enrollment
+            user_inum = userService.getUserInum(user_name)
+
+            if session_device_status['one_step']:
+                user_inum = session_device_status['user_inum']
+
+            u2f_device = deviceRegistrationService.findUserDeviceRegistration(user_inum, u2f_device_id)
+            if u2f_device == None:
+                print "Super-Gluu. Validate session device status. There is no u2f_device '%s' associated with user '%s'" % (u2f_device_id, user_inum)
+                return False
+
+        if not StringHelper.equalsIgnoreCase(client_redirect_uri, u2f_device.application):
+            print "Super-Gluu. Validate session device status. u2f_device '%s' associated with other application '%s'" % (u2f_device_id, u2f_device.application)
+            return False
+
+        return True
+
+    def getSessionDeviceStatus(self, session_attributes, user_name):
+        print "Super-Gluu. Get session device status"
+
+        if not session_attributes.containsKey("super_gluu_request"):
+            print "Super-Gluu. Get session device status. There is no Super-Gluu request in session attributes"
+            return None
+
+        # Check session state extended
+        if not session_attributes.containsKey("session_custom_state"):
+            print "Super-Gluu. Get session device status. There is no session_custom_state in session attributes"
+            return None
+
+        session_custom_state = session_attributes.get("session_custom_state")
+        if not StringHelper.equalsIgnoreCase("approved", session_custom_state):
+            print "Super-Gluu. Get session device status. User '%s' not approve or not pass U2F authentication. session_custom_state: '%s'" % (user_name, session_custom_state)
+            return None
+
+        # Try to find device_id in session attribute
+        if not session_attributes.containsKey("oxpush2_u2f_device_id"):
+            print "Super-Gluu. Get session device status. There is no u2f_device associated with this request"
+            return None
+
+        # Try to find user_inum in session attribute
+        if not session_attributes.containsKey("oxpush2_u2f_device_user_inum"):
+            print "Super-Gluu. Get session device status. There is no user_inum associated with this request"
+            return None
+
+        enroll = False
+        if session_attributes.containsKey("oxpush2_u2f_device_enroll"):
+            enroll = StringHelper.equalsIgnoreCase("true", session_attributes.get("oxpush2_u2f_device_enroll"))
+
+        one_step = False
+        if session_attributes.containsKey("oxpush2_u2f_device_one_step"):
+            one_step = StringHelper.equalsIgnoreCase("true", session_attributes.get("oxpush2_u2f_device_one_step"))
+
+        super_gluu_request = session_attributes.get("super_gluu_request")
+        u2f_device_id = session_attributes.get("oxpush2_u2f_device_id")
+        user_inum = session_attributes.get("oxpush2_u2f_device_user_inum")
+
+        session_device_status = {"super_gluu_request": super_gluu_request, "device_id": u2f_device_id, "user_inum" : user_inum, "enroll" : enroll, "one_step" : one_step}
+        print "Super-Gluu. Get session device status. session_device_status: '%s'" % (session_device_status)
+
+        return session_device_status
+
+    def initPushNotificationService(self, configurationAttributes):
+        print "Super-Gluu. Initialize Native/SNS/Gluu notification services"
+
+        self.pushSnsMode = False
+        self.pushGluuMode = False
+        if configurationAttributes.containsKey("notification_service_mode"):
+            notificationServiceMode = configurationAttributes.get("notification_service_mode").getValue2()
+            if StringHelper.equalsIgnoreCase(notificationServiceMode, "sns"):
+                return self.initSnsPushNotificationService(configurationAttributes)
+            elif StringHelper.equalsIgnoreCase(notificationServiceMode, "gluu"):
+                return self.initGluuPushNotificationService(configurationAttributes)
+
+        return self.initNativePushNotificationService(configurationAttributes)
+
+    def initNativePushNotificationService(self, configurationAttributes):
+        print "Super-Gluu. Initialize native notification services"
+
+        creds = self.loadPushNotificationCreds(configurationAttributes)
+        if creds == None:
+            return False
+
+        try:
+            android_creds = creds["android"]["gcm"]
+            ios_creds = creds["ios"]["apns"]
+        except:
+            print "Super-Gluu. Initialize native notification services. Invalid credentials file format"
+            return False
+
+        self.pushAndroidService = None
+        self.pushAppleService = None
+        if android_creds["enabled"]:
+            self.pushAndroidService = Sender(android_creds["api_key"])
+            print "Super-Gluu. Initialize native notification services. Created Android notification service"
+
+        if ios_creds["enabled"]:
+            p12_file_path = ios_creds["p12_file_path"]
+            p12_password = ios_creds["p12_password"]
+
+            try:
+                encryptionService = CdiUtil.bean(EncryptionService)
+                p12_password = encryptionService.decrypt(p12_password)
+            except:
+                # Ignore exception. Password is not encrypted
+                print "Super-Gluu. Initialize native notification services. Assuming that 'p12_password' password in not encrypted"
+
+            apnsServiceBuilder =  APNS.newService().withCert(p12_file_path, p12_password)
+            if ios_creds["production"]:
+                self.pushAppleService = apnsServiceBuilder.withProductionDestination().build()
+            else:
+                self.pushAppleService = apnsServiceBuilder.withSandboxDestination().build()
+
+            self.pushAppleServiceProduction = ios_creds["production"]
+
+            print "Super-Gluu. Initialize native notification services. Created iOS notification service"
+
+        enabled = self.pushAndroidService != None or self.pushAppleService != None
+
+        return enabled
+
+    def initSnsPushNotificationService(self, configurationAttributes):
+        print "Super-Gluu. Initialize SNS notification services"
+        self.pushSnsMode = True
+
+        creds = self.loadPushNotificationCreds(configurationAttributes)
+        if creds == None:
+            return False
+
+        try:
+            sns_creds = creds["sns"]
+            android_creds = creds["android"]["sns"]
+            ios_creds = creds["ios"]["sns"]
+        except:
+            print "Super-Gluu. Initialize SNS notification services. Invalid credentials file format"
+            return False
+
+        self.pushAndroidService = None
+        self.pushAppleService = None
+        if not (android_creds["enabled"] or ios_creds["enabled"]):
+            print "Super-Gluu. Initialize SNS notification services. SNS disabled for all platforms"
+            return False
+
+        sns_access_key = sns_creds["access_key"]
+        sns_secret_access_key = sns_creds["secret_access_key"]
+        sns_region = sns_creds["region"]
+
+        encryptionService = CdiUtil.bean(EncryptionService)
+
+        try:
+            sns_secret_access_key = encryptionService.decrypt(sns_secret_access_key)
+        except:
+            # Ignore exception. Password is not encrypted
+            print "Super-Gluu. Initialize SNS notification services. Assuming that 'sns_secret_access_key' in not encrypted"
+
+        pushSnsService = CdiUtil.bean(PushSnsService)
+        pushClient = pushSnsService.createSnsClient(sns_access_key, sns_secret_access_key, sns_region)
+
+        if android_creds["enabled"]:
+            self.pushAndroidService = pushClient
+            self.pushAndroidPlatformArn = android_creds["platform_arn"]
+            print "Super-Gluu. Initialize SNS notification services. Created Android notification service"
+
+        if ios_creds["enabled"]:
+            self.pushAppleService = pushClient
+            self.pushApplePlatformArn = ios_creds["platform_arn"]
+            self.pushAppleServiceProduction = ios_creds["production"]
+            print "Super-Gluu. Initialize SNS notification services. Created iOS notification service"
+
+        enabled = self.pushAndroidService != None or self.pushAppleService != None
+
+        return enabled
+
+    def initGluuPushNotificationService(self, configurationAttributes):
+        print "Super-Gluu. Initialize Gluu notification services"
+
+        self.pushGluuMode = True
+
+        creds = self.loadPushNotificationCreds(configurationAttributes)
+        if creds == None:
+            return False
+
+        try:
+            gluu_conf = creds["gluu"]
+            android_creds = creds["android"]["gluu"]
+            ios_creds = creds["ios"]["gluu"]
+        except:
+            print "Super-Gluu. Initialize Gluu notification services. Invalid credentials file format"
+            return False
+
+        self.pushAndroidService = None
+        self.pushAppleService = None
+        if not (android_creds["enabled"] or ios_creds["enabled"]):
+            print "Super-Gluu. Initialize Gluu notification services. Gluu disabled for all platforms"
+            return False
+
+        gluu_server_uri = gluu_conf["server_uri"]
+        notifyClientFactory = NotifyClientFactory.instance()
+        metadataConfiguration = None
+        try:
+            metadataConfiguration = notifyClientFactory.createMetaDataConfigurationService(gluu_server_uri).getMetadataConfiguration()
+        except:
+            print "Super-Gluu. Initialize Gluu notification services. Failed to load metadata. Exception: ", sys.exc_info()[1]
+            return False
+
+        gluuClient = notifyClientFactory.createNotifyService(metadataConfiguration)
+        encryptionService = CdiUtil.bean(EncryptionService)
+
+        if android_creds["enabled"]:
+            gluu_access_key = android_creds["access_key"]
+            gluu_secret_access_key = android_creds["secret_access_key"]
+
+            try:
+                gluu_secret_access_key = encryptionService.decrypt(gluu_secret_access_key)
+            except:
+                # Ignore exception. Password is not encrypted
+                print "Super-Gluu. Initialize Gluu notification services. Assuming that 'gluu_secret_access_key' in not encrypted"
+
+            self.pushAndroidService = gluuClient
+            self.pushAndroidServiceAuth = notifyClientFactory.getAuthorization(gluu_access_key, gluu_secret_access_key);
+            print "Super-Gluu. Initialize Gluu notification services. Created Android notification service"
+
+        if ios_creds["enabled"]:
+            gluu_access_key = ios_creds["access_key"]
+            gluu_secret_access_key = ios_creds["secret_access_key"]
+
+            try:
+                gluu_secret_access_key = encryptionService.decrypt(gluu_secret_access_key)
+            except:
+                # Ignore exception. Password is not encrypted
+                print "Super-Gluu. Initialize Gluu notification services. Assuming that 'gluu_secret_access_key' in not encrypted"
+
+            self.pushAppleService = gluuClient
+            self.pushAppleServiceAuth = notifyClientFactory.getAuthorization(gluu_access_key, gluu_secret_access_key);
+            print "Super-Gluu. Initialize Gluu notification services. Created iOS notification service"
+
+        enabled = self.pushAndroidService != None or self.pushAppleService != None
+
+        return enabled
+
+    def loadPushNotificationCreds(self, configurationAttributes):
+        print "Super-Gluu. Initialize notification services"
+        if not configurationAttributes.containsKey("credentials_file"):
+            return None
+
+        super_gluu_creds_file = configurationAttributes.get("credentials_file").getValue2()
+
+        # Load credentials from file
+        f = open(super_gluu_creds_file, 'r')
+        try:
+            creds = json.loads(f.read())
+        except:
+            print "Super-Gluu. Initialize notification services. Failed to load credentials from file:", super_gluu_creds_file
+            return None
+        finally:
+            f.close()
+
+        return creds
+
+    def sendPushNotification(self, client_redirect_uri, user, super_gluu_request):
+        try:
+            self.sendPushNotificationImpl(client_redirect_uri, user, super_gluu_request)
+        except:
+            print "Super-Gluu. Send push notification. Failed to send push notification: ", sys.exc_info()[1]
+
+    def sendPushNotificationImpl(self, client_redirect_uri, user, super_gluu_request):
+        if not self.enabledPushNotifications:
+            return
+
+        user_name = user.getUserId()
+        print "Super-Gluu. Send push notification. Loading user '%s' devices" % user_name
+
+        send_notification = False
+        send_notification_result = True
+
+        userService = CdiUtil.bean(UserService)
+        deviceRegistrationService = CdiUtil.bean(DeviceRegistrationService)
+
+        user_inum = userService.getUserInum(user_name)
+
+        send_android = 0
+        send_ios = 0
+        u2f_devices_list = deviceRegistrationService.findUserDeviceRegistrations(user_inum, client_redirect_uri, "oxId", "oxDeviceData", "oxDeviceNotificationConf")
+        if u2f_devices_list.size() > 0:
+            for u2f_device in u2f_devices_list:
+                device_data = u2f_device.getDeviceData()
+
+                # Device data which Super-Gluu gets during enrollment
+                if device_data == None:
+                    continue
+
+                platform = device_data.getPlatform()
+                push_token = device_data.getPushToken()
+                debug = False
+
+                if StringHelper.equalsIgnoreCase(platform, "ios") and StringHelper.isNotEmpty(push_token):
+                    # Sending notification to iOS user's device
+                    if self.pushAppleService == None:
+                        print "Super-Gluu. Send push notification. Apple native push notification service is not enabled"
+                    else:
+                        send_notification = True
+
+                        title = "Super Gluu"
+                        message = "Confirm your sign in request to: %s" % client_redirect_uri
+
+                        if self.pushSnsMode or self.pushGluuMode:
+                            pushSnsService = CdiUtil.bean(PushSnsService)
+                            targetEndpointArn = self.getTargetEndpointArn(deviceRegistrationService, pushSnsService, PushPlatform.APNS, user, u2f_device)
+                            if targetEndpointArn == None:
+                                return
+
+                            send_notification = True
+
+                            sns_push_request_dictionary = { "aps":
+                                                                { "badge": 0,
+                                                                  "alert" : {"body": message, "title" : title},
+                                                                  "category": "ACTIONABLE",
+                                                                  "content-available": "1",
+                                                                  "sound": 'default'
+                                                           },
+                                                           "request" : super_gluu_request
+                            }
+                            push_message = json.dumps(sns_push_request_dictionary, separators=(',',':'))
+
+                            if self.pushSnsMode:
+                                apple_push_platform = PushPlatform.APNS
+                                if not self.pushAppleServiceProduction:
+                                    apple_push_platform = PushPlatform.APNS_SANDBOX
+
+                                send_notification_result = pushSnsService.sendPushMessage(self.pushAppleService, apple_push_platform, targetEndpointArn, push_message, None)
+                                if debug:
+                                    print "Super-Gluu. Send iOS SNS push notification. token: '%s', message: '%s', send_notification_result: '%s', apple_push_platform: '%s'" % (push_token, push_message, send_notification_result, apple_push_platform)
+                            elif self.pushGluuMode:
+                                send_notification_result = self.pushAppleService.sendNotification(self.pushAppleServiceAuth, targetEndpointArn, push_message)
+                                if debug:
+                                    print "Super-Gluu. Send iOS Gluu push notification. token: '%s', message: '%s', send_notification_result: '%s'" % (push_token, push_message, send_notification_result)
+                        else:
+                            additional_fields = { "request" : super_gluu_request }
+
+                            msgBuilder = APNS.newPayload().alertBody(message).alertTitle(title).sound("default")
+                            msgBuilder.category('ACTIONABLE').badge(0)
+                            msgBuilder.forNewsstand()
+                            msgBuilder.customFields(additional_fields)
+                            push_message = msgBuilder.build()
+
+                            send_notification_result = self.pushAppleService.push(push_token, push_message)
+                            if debug:
+                                print "Super-Gluu. Send iOS Native push notification. token: '%s', message: '%s', send_notification_result: '%s'" % (push_token, push_message, send_notification_result)
+                        send_ios = send_ios + 1
+
+                if StringHelper.equalsIgnoreCase(platform, "android") and StringHelper.isNotEmpty(push_token):
+                    # Sending notification to Android user's device
+                    if self.pushAndroidService == None:
+                        print "Super-Gluu. Send native push notification. Android native push notification service is not enabled"
+                    else:
+                        send_notification = True
+
+                        title = "Super-Gluu"
+                        if self.pushSnsMode or self.pushGluuMode:
+                            pushSnsService = CdiUtil.bean(PushSnsService)
+                            targetEndpointArn = self.getTargetEndpointArn(deviceRegistrationService, pushSnsService, PushPlatform.GCM, user, u2f_device)
+                            if targetEndpointArn == None:
+                                return
+
+                            send_notification = True
+
+                            sns_push_request_dictionary = { "collapse_key": "single",
+                                                            "content_available": True,
+                                                            "time_to_live": 60,
+                                                            "data":
+                                                                { "message" : super_gluu_request,
+                                                                  "title" : title }
+                            }
+                            push_message = json.dumps(sns_push_request_dictionary, separators=(',',':'))
+
+                            if self.pushSnsMode:
+                                send_notification_result = pushSnsService.sendPushMessage(self.pushAndroidService, PushPlatform.GCM, targetEndpointArn, push_message, None)
+                                if debug:
+                                    print "Super-Gluu. Send Android SNS push notification. token: '%s', message: '%s', send_notification_result: '%s'" % (push_token, push_message, send_notification_result)
+                            elif self.pushGluuMode:
+                                send_notification_result = self.pushAndroidService.sendNotification(self.pushAndroidServiceAuth, targetEndpointArn, push_message)
+                                if debug:
+                                    print "Super-Gluu. Send Android Gluu push notification. token: '%s', message: '%s', send_notification_result: '%s'" % (push_token, push_message, send_notification_result)
+                        else:
+                            msgBuilder = Message.Builder().addData("message", super_gluu_request).addData("title", title).collapseKey("single").contentAvailable(True)
+                            push_message = msgBuilder.build()
+
+                            send_notification_result = self.pushAndroidService.send(push_message, push_token, 3)
+                            if debug:
+                                print "Super-Gluu. Send Android Native push notification. token: '%s', message: '%s', send_notification_result: '%s'" % (push_token, push_message, send_notification_result)
+                        send_android = send_android + 1
+
+        print "Super-Gluu. Send push notification. send_android: '%s', send_ios: '%s'" % (send_android, send_ios)
+
+    def getTargetEndpointArn(self, deviceRegistrationService, pushSnsService, platform, user, u2fDevice):
+        targetEndpointArn = None
+
+        # Return endpoint ARN if it created already
+        notificationConf = u2fDevice.getDeviceNotificationConf()
+        if StringHelper.isNotEmpty(notificationConf):
+            notificationConfJson = json.loads(notificationConf)
+            targetEndpointArn = notificationConfJson['sns_endpoint_arn']
+            if StringHelper.isNotEmpty(targetEndpointArn):
+                print "Super-Gluu. Get target endpoint ARN. There is already created target endpoint ARN"
+                return targetEndpointArn
+
+        # Create endpoint ARN
+        pushClient = None
+        pushClientAuth = None
+        platformApplicationArn = None
+        if platform == PushPlatform.GCM:
+            pushClient = self.pushAndroidService
+            if self.pushSnsMode:
+                platformApplicationArn = self.pushAndroidPlatformArn
+            if self.pushGluuMode:
+                pushClientAuth = self.pushAndroidServiceAuth
+        elif platform == PushPlatform.APNS:
+            pushClient = self.pushAppleService
+            if self.pushSnsMode:
+                platformApplicationArn = self.pushApplePlatformArn
+            if self.pushGluuMode:
+                pushClientAuth = self.pushAppleServiceAuth
+        else:
+            return None
+
+        deviceData = u2fDevice.getDeviceData()
+        pushToken = deviceData.getPushToken()
+
+        print "Super-Gluu. Get target endpoint ARN. Attempting to create target endpoint ARN for user: '%s'" % user.getUserId()
+        if self.pushSnsMode:
+            targetEndpointArn = pushSnsService.createPlatformArn(pushClient, platformApplicationArn, pushToken, user)
+        else:
+            customUserData = pushSnsService.getCustomUserData(user)
+            registerDeviceResponse = pushClient.registerDevice(pushClientAuth, pushToken, customUserData);
+            if registerDeviceResponse != None and registerDeviceResponse.getStatusCode() == 200:
+                targetEndpointArn = registerDeviceResponse.getEndpointArn()
+
+        if StringHelper.isEmpty(targetEndpointArn):
+            print "Super-Gluu. Failed to get endpoint ARN for user: '%s'" % user.getUserId()
+            return None
+
+        print "Super-Gluu. Get target endpoint ARN. Create target endpoint ARN '%s' for user: '%s'" % (targetEndpointArn, user.getUserId())
+
+        # Store created endpoint ARN in device entry
+        userInum = user.getAttribute("inum")
+        u2fDeviceUpdate = deviceRegistrationService.findUserDeviceRegistration(userInum, u2fDevice.getId())
+        u2fDeviceUpdate.setDeviceNotificationConf('{"sns_endpoint_arn" : "%s"}' % targetEndpointArn)
+        deviceRegistrationService.updateDeviceRegistration(userInum, u2fDeviceUpdate)
+
+        return targetEndpointArn
+
+    def getApplicationUri(self, session_attributes):
+        if self.applicationId != None:
+            return self.applicationId
+
+        if not session_attributes.containsKey("redirect_uri"):
+            return None
+
+        return session_attributes.get("redirect_uri")
+
+    def setRequestScopedParameters(self, identity, step):
+        downloadMap = HashMap()
+        if self.registrationUri != None:
+            identity.setWorkingParameter("external_registration_uri", self.registrationUri)
+
+        if self.androidUrl!= None and step == 1:
+            downloadMap.put("android", self.androidUrl)
+
+        if self.IOSUrl  != None and step == 1:
+            downloadMap.put("ios", self.IOSUrl)
+
+        if self.customLabel != None:
+            identity.setWorkingParameter("super_gluu_label", self.customLabel)
+
+        identity.setWorkingParameter("download_url",downloadMap)
+        identity.setWorkingParameter("super_gluu_qr_options", self.customQrOptions)
+
+    def addGeolocationData(self, session_attributes, super_gluu_request_dictionary):
+        if session_attributes.containsKey("remote_ip"):
+            remote_ip = session_attributes.get("remote_ip")
+            if StringHelper.isNotEmpty(remote_ip):
+                print "Super-Gluu. Prepare for step 2. Adding req_ip and req_loc to super_gluu_request"
+                super_gluu_request_dictionary['req_ip'] = remote_ip
+
+                remote_loc_dic = self.determineGeolocationData(remote_ip)
+                if remote_loc_dic == None:
+                    print "Super-Gluu. Prepare for step 2. Failed to determine remote location by remote IP '%s'" % remote_ip
+                    return
+
+                remote_loc = "%s, %s, %s" % ( remote_loc_dic['country'], remote_loc_dic['regionName'], remote_loc_dic['city'] )
+                remote_loc_encoded = urllib.quote(remote_loc.encode('utf-8'))
+                super_gluu_request_dictionary['req_loc'] = remote_loc_encoded
+
+    def determineGeolocationData(self, remote_ip):
+        print "Super-Gluu. Determine remote location. remote_ip: '%s'" % remote_ip
+        httpService = CdiUtil.bean(HttpService)
+
+        http_client = httpService.getHttpsClient()
+        http_client_params = http_client.getParams()
+        http_client_params.setIntParameter(CoreConnectionPNames.CONNECTION_TIMEOUT, 15 * 1000)
+
+        geolocation_service_url = "http://ip-api.com/json/%s?fields=49177" % remote_ip
+        geolocation_service_headers = { "Accept" : "application/json" }
+
+        try:
+            http_service_response = httpService.executeGet(http_client, geolocation_service_url,  geolocation_service_headers)
+            http_response = http_service_response.getHttpResponse()
+        except:
+            print "Super-Gluu. Determine remote location. Exception: ", sys.exc_info()[1]
+            return None
+
+        try:
+            if not httpService.isResponseStastusCodeOk(http_response):
+                print "Super-Gluu. Determine remote location. Get invalid response from validation server: ", str(http_response.getStatusLine().getStatusCode())
+                httpService.consume(http_response)
+                return None
+
+            response_bytes = httpService.getResponseContent(http_response)
+            response_string = httpService.convertEntityToString(response_bytes)
+            httpService.consume(http_response)
+        finally:
+            http_service_response.closeConnection()
+
+        if response_string == None:
+            print "Super-Gluu. Determine remote location. Get empty response from location server"
+            return None
+
+        response = json.loads(response_string)
+
+        if not StringHelper.equalsIgnoreCase(response['status'], "success"):
+            print "Super-Gluu. Determine remote location. Get response with status: '%s'" % response['status']
+            return None
+
+        return response
+
+    def isUserMemberOfGroup(self, user, attribute, group):
+        is_member = False
+        member_of_list = user.getAttributeValues(attribute)
+        if (member_of_list != None):
+            for member_of in member_of_list:
+                if StringHelper.equalsIgnoreCase(group, member_of) or member_of.endswith(group):
+                    is_member = True
+                    break
+
+        return is_member
+
+    def processAuditGroup(self, user, attribute, group):
+        is_member = self.isUserMemberOfGroup(user, attribute, group)
+        if (is_member):
+            print "Super-Gluu. Authenticate for processAuditGroup. User '%s' member of audit group" % user.getUserId()
+            print "Super-Gluu. Authenticate for processAuditGroup. Sending e-mail about user '%s' login to %s" % (user.getUserId(), self.audit_email)
+
+            # Send e-mail to administrator
+            user_id = user.getUserId()
+            mailService = CdiUtil.bean(MailService)
+            subject = "User log in: %s" % user_id
+            body = "User log in: %s" % user_id
+            mailService.sendMail(self.audit_email, subject, body)
+
+    # Added for Casa compliance
+
+    def hasEnrollments(self, configurationAttributes, user):
+
+        inum = user.getAttribute("inum")
+        devRegService = CdiUtil.bean(DeviceRegistrationService)
+        app_id = configurationAttributes.get("application_id").getValue2()
+        userDevices = devRegService.findUserDeviceRegistrations(inum, app_id, "oxStatus")
+
+        hasDevices = False
+        for device in userDevices:
+            if device.getStatus().getValue() == "active":
+                hasDevices = True
+                break
+
+        return hasDevices
diff --git a/oxAuth/Server/integrations/pingid/README.md b/oxAuth/Server/integrations/pingid/README.md
new file mode 100644
index 00000000..1c8bd715
--- /dev/null
+++ b/oxAuth/Server/integrations/pingid/README.md
@@ -0,0 +1,3 @@
+# PingID MFA authentication script
+
+See https://gluu.org/docs/gluu-server/authn-guide/pingid/
diff --git a/oxAuth/Server/integrations/pingid/bundle.zip b/oxAuth/Server/integrations/pingid/bundle.zip
new file mode 100644
index 0000000000000000000000000000000000000000..40e2c6d6affae321ffe5837a1f4c8be6c5fc8942
GIT binary patch
literal 6591
zcmb7Jc|4Te`yR=fvXio9FCwxF84)vxDLWY<#Ms7`CHuZ)-zjNqS<9X^CHpp(>^s?s
z?8|SI-p1?u{@%A|{y5M5`P}Eeu5-@)+~=HY6v3Eh$uI$^rykM)Ick4BXHhTa7S>#f
ze|fb2%>(b)!_d^m2F<PWZ*GL>ZchxXt)HSfb9<dcr8w<uZm(-&ZG_h6j%CjYrZoT9
zN6!XsZ4N{0`t@(z82+uRF}I-EU;S|b8}8kZFzw*yE*Jp7<{1Fs=6~w{a|E0gR^}E4
zR@TM_aBU?Cvw_<L<ul~)d3o{nWFwj`9|~jQm-ScGa_cBU$*(RzRQ7gFnMC}Y2bg_s
zCXBH;gyhKD62Y`?<vXV%7Vqs<9tI<v?7XNvctmsS59K<rA7Z9{$kH8MivjAJXXu#;
z%ry)4MOe;`XxF9pL7sqQ!f_~(8_}bwrE{>THV|@^EwuPXrNgd1sW8$!Sd7}wwZ=Bg
zKB*etz=yP=MkT<faaPolpSF%T^-bfKcoGSbh>O+|`};mdG~5B3As|bgS<{COpM;{Y
zXv057BZ}e&<?|;*jFvLK1b}Ay_yh*--lt6bav&&fw$t2awfk9&LraAH%fM@G51)^U
zxNWSSl0;JYt%FY32g0Do#i`%7D*3_0$T-y+gx}p-qKCeKDW@pv^x)A}U2AHDFBgT$
zqi!<`b-mi=@_JRFk}Dt8u;{OG^35ZC%=x1CpRTOgzI*N2EVJ!Uk*gLl{8p90v_LL)
zKAVRSk`O!OQ1q!)#YAe>H?{Gr6<O}Na*W?8jeY-Q`Z507dRpij8o>Wb2mpXB@nitD
z{}$kH8Qm+2Jdx2{e-OpO*v!ya|1V0o01S9Hq{F{mjRf@tGvfmQB7Yvtz|6|r)RfcS
z$Qovvtuhddyg}q_R`ubv42(IUAdme{pEh2|ZF<iV*<19U<*Q8JNd{_c9g^p&ZrTpE
zSHGqID5>el1D{Ta^&5I8&0%%j1m;Dm5gL>gA$l*WwL5@AGq-nk=V7LNYzy5j`w&=^
zf=Yu0Q8|Uw4CThG@<W_nc1`_K{&pe$aqKqtDMhz;iJRZBXJSU&ve>6bZ#Ae*M5$kY
zaMj-SM%wkZfHA0`AUg#K^+YrG;O-)*dPj-2>+K3WDbSV{JAzaQ-v7GLEsn~*i>hMa
zK5SSheG`w^i%_YbxMm+-EYGeTRsDk9DNY;OvmkhVDZiN-KiQRyCDg73WY49A)$qxP
z6=p0RtVw*8E#=KMn}e|}<N?P#ka+VFQ-fz?p_L319zM+M&Y~}0sbPk|!%w8y_)7dN
zxKD8&Gh4}kEw~oILz(e%n|<BA*v(P=43R*DDn;QQ-N#&(Uh1zLi6i$656_op#d+`4
z(WI2Zu%7W<-2M=fsB?j7puKR^tW;1mwmaTuxP(xlumgc%!WHXR2_~BAyk0-(N)YV9
zA2t~O9f*{+m(!Put`>~p-wT`40i|62M5)g!Ug5Gl`HT`CCFPK~P+eg3KqOc}raj2<
zLuO;GTzOG3G`>-uv2-9@U!R6uH%ab(-FCRYx`?cxvW5iD;_jdn9a*yKN`Pk94T2@D
znV_>%<pL7}vY!pDWHj9vvGbyPLg75Li)E#Ex9JMD-BWhss90*;VwrSWNL$8WmqX+>
zCjcascO+PduexqZ4c!)e>&pzJaA6=8<#xWjm^KBEp}_R_cuFesXwFtJTm;9<u0B|8
z^*qI-KL2~k$@h6lh<EqjR!NeK&#q&HmRsgdFo`~n*|X0f60)k1s;a%-nRMG=Ec(gd
z`}|81-Ou_Jlm)=gnm+kYijChY?ZS=>+wf_XjRB9|dDwX$f<$`a4kyv$Nq<%|_h0lC
z<c6<Eq)okgjGt-fs}f!mQ%%UqP~Q)02+F34euOngzEp>-z&W4({ffHoY(tH3$$>>d
z))Os3oE1;%#RD<T=E!a(knL+Mm@|VKB7B6lEzdG$7pL<&DEb^;&!e#g42;~Y)=5S-
z!_2ecA%UGaF<$&UWEGu=mEyp_ImhhDf^?|l9%YM7w~Uk;Gf2t{)7ba|{->R~x_%nF
zn+jW>)V-s0l4ygTj4)^ACO=vip8h%zN)egRx*R66k(sYRrg<rs72m(uP3dV4Lf>E9
zEMYBeqzF5qd>VouZB4pBRzp}QpTu|<Vy;N9u6x+Axzn>{3gkQZCU>C$yQ*UDxh)ab
za?;kprD#~~Ue3GCCi>zntL-Z+tA*RE(nCStTv#eIyfB_!%ye<Dq)g7u#k-gyPgkZ%
zfKzdJQF8G60qH}6D$HNy6Bn>+)eSLe0$+uqwnBDn06_T9OO2_yp|RP|N|UH8Z!&R%
zNc3|Ru*4_H6bW;bF*-9OscU|25vK0X5JW@ne5Jt#H0v@FO2W>~q;5;-#~1hX=CWwh
zh9nn7Gn+{{?gyi{%8*@yQoI_@xW^a09ZIr;=HueGorX;XBpTkvATp)m=OJ2E-0`3h
zr-2(2^pqRpKm#z946c}}IVaij4345oC!pzVvhx>Sm9Gjbj|X$?ZmCLfI~q~qpPAxq
zSLO~Fd+$0H%AC)u9W~W$xNt@oSK7m}&<2{}@wuF;DJjtL0<;Rm(2v`}LR6zC=G4_`
zO|wFG>0Jwc8h?0xi5oxM$P4>b25>mac7?&+)5_+1hSQ9T_VS&ND!|?=(>X3KqP$d3
z%R*lPZ>C_9NYp4XP%eAQ&aLw21Wk<AFF}Tg3>{kBNDFh8{IZvbxg|Ym<~4PO5R+6Y
zQBOj0am;LeMqa8dD}~Zs9;;~7#3)K0e_%J-o=DtrDXqQAAXZphH=<r{n=w+8N%Z4`
zM%glKSt3VI&2?HW-V|!x=6aB&XPp%F1Li@AE`=6fFa&}X+(4FEG0o^zuWdBoLm9zG
zfuLID6l83AJy$)O*ho9>rhB2&GP!f6LuaaTz8TaA)nmfxvTfW8d@6cPYVPZ-%zKI9
z6543i{qo)SFJy=Boh7JSb>Zt?vOF}LyZI7KX_}}gvIu)@(N6_zwI_uM-TOX$c}$sI
z7hJEo>|rFHxqn~PZThotjFSJ8g9^eLBN8zVlJ$KJzmRM#9QhU1?IiA%q%Sa==udKs
za))0H#8?e=H0}~>-6AtCbOdl;v<v8)RK5@8-R8;i7yq5Nc&HPkvlZ!UG1L}0g9`u%
z{(0V7SipW}ZJ`Rx9JN0l4DRETikXrM8h^g_vVfcv^CONL)|3G~Z|Q2`s*I_gh;d`V
zVQZhPj<@S7ma@&_+R$3Uiv%v3VIfgRe$f}VSYz40tq!kTK<LNefq69nWB44QjiH@q
zEET^d2>F^UUk+Cd)^8?Bt0%x^B#$9)_{0DQujqN)zUuDa0--D|NMVC35QgcOYSlI2
z<nsi)-rQQ9V1i0JCXVvOnD2cMu9UN}s3=%tQpV;F?$e>h9JkMXCy+pR4Ffz*5U%2C
zol+l5!VvZ*V(Nzf(!(h^PEfOenOyJ1;@+B)Ge?`N=WM|Z)(lb*3B@xf4t8ztmkb69
zv1*swo2wgoe9gEbp3dCXxqGMC**E%uMb)y3OsN{ch1pVoiqYgPIAGp11Y_a~=6aj1
z(`IJgxm^RDbEQOspU+YGWbfzp)-pA_zxTQFkPd$YtQ7Rh5G1URKt|S0q?J7Ba_z?|
zO$y=Ft8>2`X{JD@3)G};z>jETe;H{h(gCi~<{ww|BQsJPWCh~0swu#TN{X=?z4oLD
zCR1df_IG$NB?vvX-E1tYvxYoN7liYnnbcZ5hRPF*H|9Gk*}j|!i*pz_;N)~Kw9(6_
zg>X)Qo32ns`Z0fy(Pp}dNU-sqP1`TIyh*~D1%{XuU$%79c*Xprv%oCUqXn>1Ez?CD
zGxA~der<N3sJ*q^vW-FU!OAM`aK++_jPa@XwfnLAg0YGH@9x=XR5&8z6$-Xj9CoIy
zSz5)#-?SMT8gAD*vgW?&UY}A50$wu6=6Q4_FCpfEm2!F~cEesD5MS@!5<Ep&+Hr`p
z^qY6Efc{v~d0dS*3w{DRyJKcGo?7qo%bwowIIvXh)lB2L8#Ilj77*9pBXU>C2#R>P
zicu3m|IwOvf;zzLcG;E?k7CGDcvKB^$7lpf7|w5*z(+nvu_m`lu2FH0l3W)4IRCnZ
za9c9VvzHl-O+XUwmOGHKmwCKcWWym%ox<EY9Yq^G(=^&q&jRakT}WM03GTK{`)v3s
zAttM3xl^298H+QxKWE5QpDaAkwsL`*@9%f;1B)!*_wSUYQV$SFhv?I!^ya|9&r@{F
ziyqYX7KMDl^xVxJI7`}`m)IJ4)mFGOwUDFQ`N8z%SMo8sSkN+@U4fl$$M9vkM>91Q
za>-{j)Qg2eL&~gM3Ilj*i20rjxQ_0)Bd+>?<vjab=F>M4v$VRraF#i8!h(hpWNBh^
zzl&jB(OKl95&tY3%Z`mCm&esH#q#y%qaLp>w`mJ&w&IVyk|!6IT>-;lQ=!*8_(X?E
zMx3_jgBsV`NxV3mO`em0dJV%GQ>Bf3=Id7I)O!;eq6*Y^-_~xYQrNMIB&|XCm*vid
z-DAlmyfC0ptE@qhZnNOF5WUn}(y%vbflTHo$zZ!3x%4uq@?P-H(2_2_X1FH{(l)9>
zx3fIGwqRRxjr4a-B0|+9ZsFTRAk=L<1hton{&`KZHh@`}>RKE8EKFX?KM(GlI=UY)
z=`A{~(&DpjzsJSHkW$2GijS8gq5OPdgGpXucR6r~D3hF08ML?>d-LW@y{yB&lTA^j
z{ib{Omvp2_#-W~MN<q`BOZnO?4Q9mwcAI*7Z}eB!XOa3VF<<*RUPdJ*xLzSLU*m@s
z=g5IVJ<eE@mhIsP3Q({>_X(ltE)I(t8k~-JBHk)StP*+@$&2)l8Yh7g6hm9do;kuw
z5>B|<kbaKrXg*(em3L&!*97H7N+bH+q*A3M{jMXjW_?S-ki2;5uI2!&wIIu_o(8di
z)<EgZ=HA_?>e3M}F=%!B3|^CoE)BFtx8ViR$j6&K-xv$(#+5b{DAWwG)_HJf`R!u6
zNDzvHUL6!wz7btIu~?B(VV#UBnr!={Q9GDEmZQ`wiPbwi$#{-fGDYh+ypY~L`M&m&
zhHB@9X>P92Aa5Za1}^Jz8!WcI0X5Pfvv_?y0%4w)&Koz9J_o!Gxez{BI)Y=#Xd@T;
zwLP`A;*2V0d-Ve&7CxW>^U`cO#pa7!qju8{VorP3gkt3`B|I%n#gsE;2M12@C6yOG
z<%cV_`OkX$pPToXw+Vb3Z|bwiSI_R65NR7(-~Ha?h>2$$1g~oZ&2f<Qe|6Rqw&PHb
zaVnU7ULg;R8++=**QeE(`R)v&gRa`aa2$W7xwMysutT$$EBv~j*=Bh-vb{2u>r%S&
zcC7fga|`8~(C!%KO}cam6+TWXsokBAK3w|~-aL`pSfsUQ9oO?{o}~y&)kT~ayenNs
zoKufS+h`@e5EgpDf+Sc&i439&=1&_DJ$F9-MIbYWvGl5+h<s}6{b<cT1~~s=)s5VP
z*G>Cd66Ls^rgsf|UCM&2xdc+b_&~fC)N?%H>JL^RHPw3_GtxFekAV#!xL><ql81Dj
z>3~qgRMK-hUvq#RAdbebVy%tMK4d2hnj3-ZTEznkM37Z-`=;XYeq@aIZ(s;0mk(8)
zuCiNpl><JD30Kj5nh2kk!!+e^iXp-G_SQY$>@cIwxRJ$^g?%n?EtDCLSJ&nuhbeG$
zE<T$W@*K;Fk~D`GI~U(d*<Wd1wmxIAVwU4FRj>#+T(aF97@jhb(q>KlaFh%I-8$Gi
zs|dz8BaZn`G8q%<Lp^$kT=yl8+9S~nA3%Tf3cvtd1h{6K1_kQ%Vz_qJ&f6NI+G86%
z>S<{WJ?aUS>O|=G;Soon0mfPjKSCed=%G)`ap<9CQ6!HD|IqM$igPCb%++E~036%s
z0H-B9bO77a0LOyf37koB|C*yYI$ZxbkYgJi=d|pHj+6P1IL9I&IvgNfL?8~e6abSx
zocN>m*hYstEfu1}P5m3(58)6U({+t2|Ho8D1ugzqt7H2&=Kqoxe__(Q7Pv8^M906a
z)$vpw5Ag@)DX|fq1i+%KXyP$yo^c#GzN6Y-_HPmZz-dkF7m1?`|Bkxq{l6rBDr6@>
zZLcDKjJ&pT>1gDDV;ddxw2p=j%8%L;{{!d`RSg~4)u;1y|IznxjQq<+M?S5+p(8u}
z0rIgDhfV-c_5LcJ0cyV0RhNGZ{n-9Z;D70LzX%*Hdc&U+Kv(Zhkl|a{?>t&`g=h50
zqxRTFCv*Bnk4}acbyxbY>u@|9X!m<`F0OOITj*SV+2~wO-_p>zETE*#KjiY)oeiA{
zU_bMF>`__XZ9Y6|f7$3vPM^)tnYg0<;rK%)Cr@hVbX=34?Ejz<W&k)UQNL_OFc#`i
R2mo9_{X9``%%n%w{{f74n3Dhi

literal 0
HcmV?d00001

diff --git a/oxAuth/Server/integrations/pingid/flow.png b/oxAuth/Server/integrations/pingid/flow.png
new file mode 100644
index 0000000000000000000000000000000000000000..c8536862fe050c27c55b0647dd3fc395beae2017
GIT binary patch
literal 73332
zcmeFZ2{e}N-Z!k26h)&@Awx=r49P4NA!FuQ=6RknRVdw&B6CrxB%utMX_PSunTH~o
zWy;L^JJo&fy`Sga&-*^_`o8t8Z>`5#Tl;oh*Lj`iaURG2|C^5Us<NWY=1p{)NJvOF
z%bq@|N<y;k3jW7Iz7~Ipt<lxSKSAf!v|Lq<Js2IG9n7t4%@|$19L*TbJgv-0NIYBB
zuh(sU!$W>@CH6k^?Tbcyim7a>N6Tl0uARP_xNc9gIP-$rzKK|VNuMER-nDP*&z9~W
z4O*j6XKu!oU>z!VaJliC)z$L4FJq_PS6<%j<ZAKbYRc$mTDQ|wuk@G<1KwXZOm|sI
z>vSef7~${_Pg7PRA=$La3MZtca7Ng~!H&z=)Zv^Nm#3X0&Xj~iRKnBI*u=)nmGPXJ
zg_XV7{;|T+{ft(oV*51(6nGRIPncO+oj&hucJ{oYn#p+^6Cu<665^XgJ%w=qJ2O{f
zMo&9idlz9(vHh#Z6~_N3{>;6farG^(He&m=6qFfHI5?Xz@^kTX@o=8<v~uU&FTROU
z)Y;TrSoNgz??d3f#P(adx;hGTb9;DraCz`?IXGKz9}yA~;^yJy=H=zYJ2+ju>|KpL
zIqhATi9`H4#z`|56K5+&S1Sj5M&g*p=N#Nz#rE&V>x{n-P7MBEN4IzRJqQ>MZsHa0
zBV0V(|NM4WEAxNzcH)(Pyq);4u(Fk>nXT4ID?2lL7o39F{v$^OgjSFCkC(Oo`DLD?
zf~zkR#}bycGqy0(v@&(I{HG88<CW89Ru-1Hm?Qu4Ath%kGmHaq#dv8yH!+&rzlRfd
zhx@PFLyXb?`#=BlCI784{-5FcpW*s%jlh5F&HppI{%5%UTO;t_dh`FxuK#}x*QS2}
zJTrTsIuF3NHI$LzfPSPdQnG5~<m7E%l)6bs7)fML9#`{h9q#awRQt9(J8p5q?y{ZH
z<x`R-vc+tw6>eRQGEVaKET10hy4UcZm2czEv3D29`oyt2`|g8>+8Ym9lgWj@_#>Z;
zEbro`;NVLaZg(+!_x>(Ob2)a+DPzylWx6dEUQxA^w<lxyT%?&~i8CM}X=l~oUqk$#
z8<DI3Xwwq^ap5T?@lSar@tefdjQB07K}P(;$U#c{lgUf`mSldG-qgA&=n@-WB8#j?
zpXAiFQ|>m~Wg0r7n(xxqg}+}vu2f2*w~wEPqbEGO!oaqU`@w#e$2I&%Ev2)2osKWo
zbCX1G;1z#GP8`i+`>${Rzd99?fBEdMGyi=Vzt7y%Ogdz*h{iqT9W*rcpA~9e1#CEb
z_UyrpaY<j^T;bU9$B!RB+O|1Q@T)5;8_|YN{&+)$KQ1mVwq@o%eR?=ZsxDcHp(FfT
zRW!$xmbSLgv19GtW5r5h(+$r}-j9ybe);*iW6!&H?=}T}{c?rjMFWZD#xs{6`bAt0
z3OcyskBJHA)|zvD56kkx^ZAk^={6J>hqg~;)Ewr1*KMFp5qbM|d#YvzzDMqo`2h(D
z|C!N_Ly^|sKisjXO<?UE{p01!m&;2FGh<z)N{Qlog<Z>QYs0Qxqu98yrNE6Nl=SYY
z8hMXz*`FS7_;ylO<FZKd-Me=S3gW`=3dx;5o#!>#C(m8%I@wpFBt92-BbDjs(WBhl
zwQt@esf10myVO2>MEs1l<&Ncc`EhV@`7Mm(I<)6)-MaN=Y^>}p9Uqd94~z^73X>yS
zHx!44R_D-Suw!;HFpLcj&VQ2U&d<y9SsZ^K&QixV-(Z~+9UUFnxc5$HT3Xuo+C&M5
z&Z42FjMBNj_$euQ3X-@T)$;2O#mQ*6_f^M^_q-Po63Q<qP>kXE(pwQx;2*k2=u>U2
zLsyCK#fujYMGoGS*>^MAu*h>f|9gT>+Y1~sEhA%$uU6D$dC_am(0^s2Yh+|(TB339
zwr%&7*-KWIy*t9Sv&=E(!^6XagM+!9=ZBUT#ylJy9o^ja@>_nqzE@<b%KckqB#oiZ
z5k|(BA3l6&YVw$$8i?l7=hZGUA9?<MU%aSSCiT~W<U|ej9S0O|--xy_H5HxjPbw)X
zdGX=}7Z=yk{Pe=lHV1{H?+pEycGA)geEasTzkm0xUG7u;br}48V&`M(U%N#<IND=I
zFXH}GBXwzMrfb7yy58>Y?$J?kt4}OTB4cctFYg$e>LovXsI9G?W7qZ~J6p{_RYj#P
z-{reTn$E+A4+nla&i=ssq@vm<s+FRKb3c0E!1uzjl6r}gBM!dhU5m6h`uGhFcJ>%y
zw<lMwTnPv`G1ggZGyGzJhqij&kaIU)kB)9iIh)L;c>8gkrP?9&41?nEh=^$qOK0-<
zu|`cp^%ONj-)VLHy!k-RwxN*v>%_Mzm+v1oQ&OrOiX3Upi5GM*kd?jqigcu-P%}ks
zetted*sb#R#;)6amDSa^`K`hW3k$QdCYi%Tok!b+dhDFrYLD}oS1YscD0CnB)Kzhj
zbi<BK@1_RoPo<4T?RMbmkrC9ME!?((@x<_Y_TRgrr>A%O_U+4?>3@Dt^xw5>m-y0D
z{l0zsFw`fmY!UNY%!}m<6Ee2y9TG01fA;P6hq#3z)1tF<1KG|T^*3Jye6|^;PjS{4
z;1$1Koo|%hw7w{|XGlYlUBNz2c3P!tnpKvL&pd?sbyXDy50B$$d%j6ohzk3T^z`%t
zN(r|#$*HJ3+}zw;T!uP}7j7_}Fz{b;lMQ!vaq;!>38co&ju&$2dwG#Gh&oL-SKMvz
z7K>~~>2d+}SKNt+8D%v!meM27j9#tna1wFt|M=WQMmF5MCXO|*zpHcwOK+;yf4RP~
zQT?8>ZQBb4gAokxOovAz^?l59?vmNBfg88$<XC?j8%s<~ba>zy+Muynqss&XZ&P{e
zpj5C7gYVQEDv2VWxl9(>4O{joABt2|RE)rxi+GIYIrThEOZ(<hdh^jSoLF*lvedoZ
zLe9Newc_;D)OR&fb9C%bO=_%+16WgPOk2uAXiY3EzW4S{&Gv+0=GiqryQdI;R446c
zt;7nyOAuRgnt~o_-0RuAC>ATcSt__C%c9EvL!yKs`8XE)z?kXJ;TEajns`C^a27*G
z#oNbJ{DX|&T;9l3Sy|~S&t+J0IB++g`5Aqt14?Hxr>Cc;Zu6Q|25)8FvFTK*Mw;LJ
zKyumj(8~%>$^yI=XUC<2i;6_O%r<P;Kt&aXsqQ~jC$q9VQz}5GK)icp$-~Pm;)K?6
zvl8aD+j^}Rwz1S-i)T9dw2Ib{l94m{Ezf<wd}r&KEkEU>xz>}BRjTk?e7MbY;xaiC
z7PU)HSty;`%C~64+js7WiHRxQK4#n(=#ZJOm>`<cXr1=-DXx*vu9aUxLPF@l`!EJW
zP5+LcE*~*t1F2CiA1tdR_%C}gy+!%8;lDKA$Lr<V6I41)?x3|OA}m~h(iO))P_HE6
zJDUGJkQ(=Fs3D~uQ%D@;qRG&|qpYm2(|auK@nasBz9Y0z^9oNS-o)6xWb+ob3GuTk
znGCN`v<j)O<W!U)qq1IZ7Bnym5D^sma~2CJxL!MO>k&`;vPF$ZM5Nomr*D`Q6XAJz
z$C%#s*Cn|Xvj@iTn*Fh?!7Ouqhm_Ckmn#LVHlLqvm7?5pOga1kga4um`S?T?chyR3
zrr9;>*L8JA`1#cgu>P3?V=#TDhni4QH&E`r+g6J=-&1CP{rYvUM6%+YLxEaFp3m*q
z3thP$9L%Fy)Rzz`8=h_7A<Xm^6Y_yBuW31Tkkoh;cWHl=&)m0Yso(<%p07`zEqB<F
zW>{*lJUQ5y>bvlBr&RwV#RyKlLYAD^!|{8}aX;$Q92aMubai#T%J?nTXJ(2}yOq7q
zVUcZ0*QX#SfA-?Vhw}1co<EFm`-MG54<|~QqBI#87+}&*v^;<Er1H(1H=jTM{Pa-X
z+}w=pgyNR4&SG!F;`8bTnbwVmnBHRQxAAB3_Po;T8I<vVa60_fty>Qa1tL!5m1s(+
zsHjK<V-+7A4l#0mCV?^|6^yp0oBO&tmM@5U<Hn8iZW5?B8mW!eIWpJx)TLQD3-h+<
zCCP++E<VU8tLo(Re6i10Ut62`P5|!3_rbv@^mKv_ol`%5{+yY~*h^9tUo~5&uxr^~
zf2pZI>39IyMkX@K-OBp<X@)XFG6ELFG;lLBV=K(4NccdPVi-42WSV)Ft|!}hs9t3x
zAWq_^f=2$&4+__rUASUuN-qeOUbX)g_-V)GHvRI-7Y<$Nr9WP6V6bg`qK;EZrvZp@
zTj6A9N3qo}bWeMpI@(c4!IYVmg~p2+Ug$Q&#_f;E$xl~<4jU==&?oAT>(_TlJ$Udy
zuhg$tJyipp);VObGvKCXp;OOgxrYVc6TI#5VgI`cV%|Esx>ckp?&F6AI2QWi9ln13
zI@NSDv7c_=zI2JssrdVkA3w$+3ba+-e{>)3Xs}YGh>wU|z0>ogO5qPwlBBhDb!m3)
zjLllBt!*N6r^1PIB{n=9y?XxVh<BIoOiOF4xv6P?#^J6#^@&s8!feyDo`3zEm3c?R
zWAOcp#gs_4_(<A~eXW`j1yyJDZ7BB&H{51wzmS?}k>Dl0;{2q<VqH%_ab~7!nnssP
ztysa3gKYSR1hEB7dX%?;LBAi}ua4Ta<`onScAgh>5$5gG(@fWU{^G@GeR9}xpZCnD
zKtiNInNWYIU?;T{3oC1df2C4}-*ls<jb1FR16PEMpuudR_jIYpSSQ^~t;E7GUq^UM
z%x<Q)=v4N7)h4`$H=CRFxf(`@-4ReN<*)auFimd%Szno^BvY2f8*%nw#i6F=e4(E5
z+Z5)L+}$+}_sJ5K<H{ZDEqpD+9S@gQ+^f&BsO|D!St`HDT<kp)6-^+^`7ZjKEGhmg
z%Q+s-xPp)nN(qTllv%s>yz$CNpfoOg!nf3K>HN>(eEW`qME~V{oMA;p1zz%<pTY%R
z|KpE8u3ZCavP0#3gLVDpO~9o~y?ggze$P)2xx2exqv8H6q3q@5rLNvsmn8GeGF3%X
zo>j&G5Cp}*X|N&1<o)#}Kw+t1V1U7lM_oHgmwvXP_S^V;D70xx2O65T`=ZMoFLkfK
zJwIz%19wgF%$dcWFbRBv#fMFnYJDL#OeZZZ`?Ia;mnRcf$eB95zTfHYHd>18>FN14
zQ{gJVpP5-R!(cBx{laSs?)GyVMcjuUdyfnbwmwnk=n!m=i<>9QDlIJ?%}Gj1TD&9X
za@mno53Akd7TN8sAyhx>la**_XsGrItKC!XKRPo$KG#&b{IK-Rm3`;?7w0Bly?Ry9
zQesfAqF>_%aQ5WM6O7h?LnjtAFjk}b*@vnvyT9Lkzt4LZGhp`XHSXT3yP@=gl@vC6
zIy_y>Oig1%3vRyd(w}g>XJg8AGXAKYt9&m>36{znFbT~e0si527O#@C`b4;6y_Q_)
zl{j+6_tIK8KY8j9S;HVx#vOw$Q(bgH;{4R(ScQh}?Q+}q*n8~faB+7}KeDa8y*-e6
zUQ=|-mMsNM6VY4m+__^j{JyPCm)vQjRe<R&`sTK6+f>h<^`7c?8g710%=+t*D6DQ{
zol6U2rBoCYSubAfk~%3PgBJS!-Mb1Z`8yK+%Yd7u?jx<Z)(Q#H8BA3!o$SZ%&%e#E
zSku(1-Vygb|KYZf?hD(Si9v%yLmX5`2mBcvle>0I=x#x&73eeT*fyy<`?;#GuTR6I
zGD@iti{^;Sdj3N$WjVHJ+s+!F!C2^$8y!mKq{)x?%>JMg5po}H4wG1J#&p&_cyAAt
zK#6-BKYdooD_av2lV{d!R~$*p$Bc&z`J0A9jC`I|MM#gZKe?Be=ZOi9O3;CM4a%e2
zHSjpSFTBag+4<8-G`iFH_LC;J1J;s~VhF}Za=W6UqtQJ4u|o9=T<6-lmdzch+ytV9
zWCT@b3q{revsN%>G*z2?2$CbEdv@y1hq$pK)4u6iJJGcEc~{fh6)Bk|>PJ^7?I$j^
zR8x5J#rG3P(J`;%ss+zy#i4J4oV}M*6~w<c`iY0PZ=egs<=Hm#aB!rGdH*a=Y$xBm
zxp=H(K~z-q=SW+0LV|&+>i*II_CPeQ1R)o5Y3VW`CW*P;2r$Z!kP!R^|EbzbOG|6@
z<LEgpEv>5jb0uDr=2}|KeKqlkUVX9XPnRxT;<NZrG}GzLHfa~&l;T}pYiDK5SEZq&
zqtlZs(7R#UGDn9`Q!<IyLa)jpKp|0FKLr<BnVfK5ZbcRV&h8Kg#}Lp5-wFpBJo#37
z`cx6GCeH(BRsxM_?KOGg_q?7~*V2l)dGkweZv*H67SEY2?p|^?o0>F}t_j+;PQ9Zs
z%quM9*2_~~j(TkudtFaoKZqK|VV(kPP^D0GWwO(v=XL-V%JcB>aIAEIvl+0aKSDyD
z7GDQ6`ra?S$-$UU$(LJ=ZkI}wudvOd$#9`N&TUE@p}tF2KEs0D;kDIHrd#+>25s-_
z3f<#>^~L=_X6D4iM0>m55-W;Jd|H~FK0_e+mM!330|NsBsy{K=udZ}%`E1GGQQ)=!
zGUq@0WrLug;9Tc9)D-};T)Q@NGc(rG_+=oj;)zNQl)UXyv$L}&Pn}|AWewdYR&e)j
z_uH%6_lme@KY!j*>hB+V<srD@f<y6ilv$TlU1<tu;4DDmbp{D>+vaC0i{B;g-McqI
zvM^aI5n9SI*&RT2Xve0xi$=l(U+DUBL!`=-qKRGB&OB<QER-JSts8pbd2Vi#@464Y
zzl+}6OY13sj-MO7x}<5~^$pFJV%Oo1X$Sp%oZkJhvu<SwI3+7HbDpR;`C5KT@+*tJ
z!_7ySUv=&2NH;nv6gXrvH}P%f&Yjy2DBhBIqTI!Isp1uvgyURtqTi>kqPurrwzO#b
zor`%2+-q-dKUOsP0cb8+A>Mr1)l^Se`9@mW2v*}`hBw5p-jvN8|8P8lO(7ElP~bN7
zNFn~|)2D0-acbUsduq%k`pYQ(&8^G*HeX+UJT%PL<%yojcXPm!7_T)B=G!|eH$L3B
zC0At1+ia|KrDW9Y{P}q*iACzITU8dy($AzeUf+G>E6D4_q_t@xP(MK00#5LSovv2}
zs@iqj6}O?!eoONeb=&Fa&QA|E#>B*+UgZ}8zYLFzU}nwF4`oy(a??nusjJ@+a(M)#
z0m=wv<aOXi_>vSfTn!FGpk{C1zmH$MaVCqcYkN~r&Ye5@p)-DR^74j$b7o8@&CJa7
zMaCy4=)`?It*r;K=G@+xp!gN+thV|>2U4_{iG~L8<&57_#eu{<!mj;L9qLMB?VZ>2
z?{g`eR+3oCKKJeq(0Y7T(bOk-Oe4ML=Yo6;Dr#yvavi|h3`fR1v+dg4yI)=eij64M
zXZF7?@5d=4A6hFBLz!>><;A+J3MShUbmT}5O)lLR)pd0$em|W^R|$7c&NQfV_?<gx
z45u7Qm)zalrn_GS*z93FbVzPF>e3#{T=6f^NkSPUmT^OGFt9NRHl=2iSer(aiEOaq
zk0W3~SBcn>BTo4KiSNPIJe_)MVfIBoqWCBIyQLl)Z#5f7e>%n;TYoTjDce~$T_SW(
z!)&u)a;1Q~{qiy1D?&6s`UF)1l-L!V@;WZQ4+3UOReR!(hK*+IiDj;@ufMdk#BEUY
zc*V4oPC_m6&K=G~6S6IPj(PvIof{BD&zLWz`T;gjuCA5u{IKZc%;$IEtn#j@6}2Sf
zl$5tIbi*xK-)4$kC4z4yCUW~nWCD7jQ(O-T$<E19KNLB^XFYf*VZCU8ir=vms0kQ?
zFbH<)>eE<#o0te~0Fp~>EFY%$QMAiLk%x{QYd(E;aqfHK1b1@?oxmVOqM?uX0(|6i
z0VvF0IEIEda6J(+izxk=QfG<#%475S@Z6Ohq-)n&FFp>sxzm%ZXK%1@PftNn(PGKM
z=vnq11u}{wZMjPKl-oVJd?D({M;+cORfLj4Hgo&N4aUG53`4G1q&7A-=m%SwrA3!#
zdvNV&L{1(aO=5>r-ODS!+*|SVl??}_f4FiX<Izt_Y35gY3)&X*>JhclQ1Jv^$eX60
zX8l9cGc5I^5}&=hD8}IJz3}$!Te8Hh)wIJjTzWT3_kd>IfE-jQabm}=U2GE8XG%xI
zSpZ73balPYpRc5<;uYE(Ynwj#y|$`};memVS>`o^&Cin-dmc#pWjw`_FR*zF9(&S1
z-;Wu}%P%xL`&42{Jbb%}ek`l(d~bx(RQ$W%ok0~8kp&4M4w-A>hX<bCoPQ|vLB7vb
z&g8a+y|3^SUuC}cB|_@y#V!#&<%<;NL<zULuPb_wKj@2la$?BX*RSCT37rs0y}i9d
zr6+OJLCr_$2BQAUixMkyN(>APy1H%NAR@R)_5Q~)SY#U;8z(d+0NftvvUA^*P`yv@
zP*+#S#KdHsqw`R8X=%)Vr9UZbiecyZflm*i>CMf}fh^3=&WbMncr%e?eprMff@J`A
z-^0nt$<_6iMJhxqg;?HqKu^n?XDcEOtl&ig=dtgAByi-@4)FVEZ|#Swp}UVr?b8X^
zKy@@L$R_&1(Fn7MD>e5{T#*jheNXLBad9!GnERL4L39TwnK^DmcEmp7;Z6V672?+y
zYcbWd@?K(@DKJLD-|xzny}eYSyW8!wwPSVCcCGj-Hh?mnpBYV4JCvg{f;P)-STfwx
zle99lUqC8d$lOf&Qoezv1dx!vro{X$xo=&|KXa|>AH^;jD@0hViwMv!Y4!ZsVgcO=
zst($i2!;>vp((x4&tSaatWqrB-q?CQpd{~!iUZIy)DJa2GkyaxV*rqvg~O)EMH%Pf
zBQpdn1(FFa+6yjPqHSu%mcf4JvYEbitk8kHM_$4<5B#i%?p&|<`vyBHPp;lzUpsT3
zJ+c0;Z2Q(1{Utw)T56ODqz3Ixy)3b^n05dD{W7!M*{&|JB2r34|7o3zOp<5YBgyhP
zH6QNc39RFNzrMb_L-<a|McY`fjg-0bTi7|)v|oZK3U%!G%5krW1@(zyXA(+d5+j4P
zXEGmcbmT}lKM1z7&;?krg^DWo`SZE)_Y4rcC5&E@1cX_Uy`&~1>0^bYpW6cB51H*5
z&@Ea#y`cTNb?X*~3|Hd#EUriH%r#zfnTLdjdyTou>FK#|&O!J6hI0F(iUaIUm1>#h
ze%ir#@AyBv55h%5g!%CQr2AmcFf?y}SDD>1hb`D|jfxE4+P4z@G<Wl_i^zr_HX40)
zK_|OfHt{;?#dY`BzuhLe?vfG@kzV>gu`r0Y{Wf2IJ2C&~Zi$Ukx<T>z@vrY%Gw27X
zi362a{s1ZIcY?(HFMr!aL9w~S{=o_2J&YWM^+z2#+jDF*0l9K?fMc}{47dUbfd)b{
zMBBA%*Fvp5>!lDt5w=H&7k}5(YyvcXUskq>iA6R}&><l=H@C2G;ldiyEnsO)QW31Q
zg7)nX<)ioS-%kh%hV-KLii+2zleDufRRCO)lfQp`ca31gnAA`OgD7Y!IgTAWR<t-#
z1u>RT*nq8AWS>0OB~CF^%6geDWmii}3+Sl#&*7Vfx%M6NKvx`x54*a#`HmIO96EH!
zZ*g2EQf_)Eqm)k1^IPRkZte_L`6x9tHB(bl%p(wg)&mC?78YoB>;T%R!8$I#!4%Fy
zt7n<X63*gv{`_cXv95v4Ol!AOR#sLJwM$?1O_qb4oC@Se+y)!qGytZ-82Z-RTh37(
zCm<jG03aD^e}8{J-4)9iV0@8wCrc}G7HUq$D9LsA^Lq@m?-UgmhwT#+cI<wMH($E6
z78hGoRD=#>!yku=*V5b!%4)K*ytHP`8ZsI-Hn!H*){>vCHgIsjYwI5==tA<*Nh@*u
zB4ukkjEWb{sr$mFiHj-lRS=uJs^;^}`!tuE0AjfV`#-0}Q-4iKPEcjv0SC#^$qDEs
zQqyy3x+#bn(i%|C6lkKKZk!WHXG%&+;C76yGEHWtFizvCZZ2#RL3Vb_y8EYKOoX$1
z`~H1letz(?SNFvYaD83{<>%+a@6lXo!uqUD5Nm^!fpP8a?d8%hz!GI)VIgOt<l@&3
zFZjdmN8Uu~D!tIq&~P4{_TOq`rmnBg8Tc$W*Tcmng2p<hm9XAEg#f&vsj(orM<S{J
z)ap_J4ucN)AUS!%x^=4xFLU6J>FGvRA*o;io6qakucy`P@9C+B2H!zS3B2M7+Y1~U
z%@%h6mGu4l_e!z6X1KRFbPmmVPtV=lSE;2S9el1UKI++ydJ^;0!OLsz-8GtTJ)jji
zD9>d~bi<f;IFqYauaa)q!jg{jxj>hvsgeBk>$%m2$1M8^2nBdZSw&^*u3Z{>dPRV=
zP#e%?Af9*Oc6Gmo8U{>}rk9@y&eNXn0&hb<-`Nbn8PX3QA0JSVMk;=R*mYx-Y?W$m
zX)!Z5kBW*KEIsO}$CoM!Q4gPmA(Ww$gGv3QjLH7U5qbgZhM6vZB|XB!6&Uw@UvMib
z>N>sPhnku+DDdcjkb>fPj4!dsmM%`nCyM(*3~$S^$#v?H_A(2gz(SjWmJW&R{CPqa
zm;|K>XDMEuAL{Jv1k%E}Ln^-2#Gm)kRCX7ao~4DwOc}jHgQxyN-ozVGl$ArWs%B;n
zslU#S_e^|%axW+MN73tR+$H^Ba6LU)=iY6aE1fU2a~$h`tafNFmeogPr%w;<Ns3_B
z3*>><UzZEsilYd6z0KOm1M6pYVF7AxV_n_&iy6hxw`XQlq=mOslQ8N?9$s^jab2R(
z+r4Enw8XV$^4^Fc{#6JL^0{>Ly6vO9x$AAbq|~R0_g*AFnPtwTRCa(XUh~6nclR@}
z4XCko;`jgw4swSr*>usJFudUqs}hDby2}Go;#F;0Njbvqz7cux7GZ^3UVUn{w*BI*
z!v_x@<mbQjh<J~6j{z-Rv}y_qE8&QjS2{M?c9q;&eLK(VZGJSj4F!{XBpK_r{63e-
zcg3rw`M)^m|FPyjZQ(usXBL3?k_%6tJ}ksM!el&n?;Sr4{v@gKxf(^G2h2(;`1b8R
zK~gF@I<2Pio*Yp4qPPwHehzEnZ+dz@9u&lx-H80Mf<kC3#M)rV51qi-(eYV#AJK5i
zE8_yed^|>48*6G5(llhGr6H|Yn3?@Dti9IHb=JXN!t&h#FPMhr0JkBk4V1W~q#g)-
z2HM&wrM2*^(=<ff2Gw9Hq13^Kpxh_g+}M}{*8cqY^9f-%fP;_*<KuNbJ!iqeqqz<3
zf8<F8x5mqd^E-5kIyg9Zco5SM#OpM<N?~9h4I8)}JA3)7SH@r8UY!toi3{7folURM
zz2<fejL_y(P3{8+k}q7ifST2C+8CEY62mCqKmFvCyE`o65!CM9CTRT2!&$Ywd{FhV
z)F*`BT;2@5E0#qzAt9mAV=Sua*7h(Q844#T)a<P1Qb(nC3<MlMKR+A>o+;=HmKZND
zuaA!p$}>deRMnIcEFjr%n06FQZ!^uRDEG|(Y2^qiDJnw!=VoVr{Nza-bRsxFy$Y_Z
zPc@CPo|4oKZQr&H0u7;fz6KSNCU=^fFpG$%*|iG}QVCQa(0qyI*(AA#^V3a+Lx-wI
z29I5kTwAyH+(yQ=oRL9Y9P$bZY0uxbwJpH)K?NdaB0D>@rShsOJ{JcLji-)qFPop6
zz&TgCBdqQnG*F)mf-u@u+6Av9r^z7e`SXoiwj@9bhigHoxah@aVt9^|A94EnR@`^K
z!R;0bYioRJ;~;qT+p@9*Q7`9~Of%d+UTq!bpgC}H+~+Aka(Dtt38MMnZ_}+l3qMEb
zLd`!v)kaSeJ3rM7aYa&+#9=kwyxGLA<zNfQe!5|4dg;fqGIJ<60PCpws8{}0Rw;{q
zCqfslka@tF?xleu4W}nZ)3W|iDD{3p!5PT6-~t9j4F{kwEO4!O|6V57+{ozetA!{x
zJ17c7i-9V@sh9V$s%j`Lw-aI%zkx4vP(@YMB>F<yz}T2!M$P2p<g}naI@Rvem@JY3
z+QY?}4Gj$#KU7n?D%_oO=g#3Ph#bJ%w<o!|xtRhZBO|G$X4H>#oaKOXS-j;?#@K3O
zdH;1q81r3KH5|l$@yO{G(6d3|^j9@5E-s{`q-RxC!Sef%d@!rrF-JQkEob?FM_gPy
zhr(pJ59$RH9gS)Eu!pm=v&mLhG|9D^%1@s@NnhWi-NP08G%v5Yv(q4{?sRxIh&}E#
zFbaIPR#<mzY>$eHd;ozUCQejhxME{tr+pchAFCumLeogsLyo`;?l!1Qx?cXoy({|;
zv9oLCSYuQh1-pE}w)X)U^w717ii!F5mLuK~dni&awGqD}<;)Z}ZXUIRv<n~w9)`~#
z70?JpM>(Sg?g6X>kZOH(bvLNBbCchzl<aM_T!`vxYPKsTd^3aiA|@8u%EH_2N`Zla
z==ig9b8su1CVDI2qp2K<gfFR$0wSH%g6@3sWMGlAnpy(|chQg0!m-b(B+#(1EISL_
zQj?P{PM<yv)DwMJ`|I#<5sU^1@&$#3{)m~t<k~5<TNLBXynla!&qT$?kIFJK?}6oP
zTQc9_#BXn-YmdkBePP#zn~Gooeq)^v=H%<70q1n)IVDLa#fo}O;B*UJ2R{8OhC0Vi
z>37|;R&-NdT+wMztcWvTkBcTlx$zin-?i6glRUY^ufBpFWPkHi2M3>D^zWF|=?bC*
zb^B|TAJ{!J(x#~?S2oh|sNHF5%P+J?vY&cacx2tpnjPCW9pk%bx#syg>Wj~A7~YJM
zD6#wzI~;g;fFB3=cuTu{rV=wS%jEr*IpcBSppqKW=ZH>3!g-j3`3O<Z|M3@*zy9)>
zWm^`eEertR-Nc)<TROJV(Z#{`R68_aLj1+l%!BhtTZylTFLBOy4`u~+t^eLsGjNRh
zbT(=5E^2wkwRJw)b?b=t{uP*dd1o4J{^M#otBZs5B_+xI^#pePYX8+>H7NEM`EaDs
zFFrpF(0+>`7N%w|J76b;0j5weIXgRJ`B+(5MQ}3xIyi-zme%Qwm^t{Oc5@g@qpdlq
z@$vCGY0!cWBbiiL35*J$G_lFp*tja1o8h0?Lhm<Bhv}Ia4_8+rb;QBJF+CF-8Tqi$
z8m9H&@bI3!dx@!ycvoRT0qj!oqenFiETGDPS-QKpP*71N9&;iRE`Y}5D&8)#;ZOv>
zBSeH)j?v2tfMgq)tfPs`VB|P)Haa3=J1y<p2a&NIJ9h#$v$L{(gUH37*B8a9+uqS3
zXxscF%zyEOK_;v^WPzpup*u12fS_!i8fs|)?f}<eCS9ha-3FBt^b0Mwbi9n7AorMB
zC#b}-p%8;ozi06G0it({d<JXwXCLZrD?Bs!a5obZyFiwr4bE2>ZFIVVxYj4!5`dM*
z3=R%s7-yhP;xkZ$-@IYQ_*L6!KGpit*Y_FGv=ZM1gms?$+yt9!W@@Uv)V~xR(k7$W
z+{9%2o;{*=t=Ty?O+@4iR~G|}NPP}X7Y1U=5Iewbj-Y00Bb2D%&`>e2iC%O(oYpDL
zqwATaLl}wq7*!d^CdrIWubpeJj}T8}WFxF6L)aDz-?t3SuQ?ei&0P8{D=QUHxL6AK
zBar$xQAll^c#WHnTeJ+ufC^b4fbwbMz{Swi-Pcj*5f&C^m}A}eI*6jUs0b;pwDR)P
z=O@!~!*LJ0AR}8^vZrAd9j2VA{HO(!?7t}C%=|<Ncjx+>5^jiQZ(jrDsL@R?ApUz_
z9~l|hqX!RgyK539{1L#JARQmlm1=iy$}ps&qJn8KW`*rXn7c6#|Gz5LjosV6zBpi>
zBpte+xCf?Y7qk;Rzh1p@<Hm&xB=Ct*Eg=cbfmFynbgqdLz=~<K<cE|S92|T@6J+50
zmmr!>IBw_nzOJbu@<F<}_6X`wZrnJ4$P$1L2m)|n4hRCk8ARti972jb;JrYe*U6J_
zBb3Bx>F5Ug`}0gI!ofI?2@4<13tXKKJhCcHG~RJ%_wI;Nrr-~M_Usu}V(lG~=tq{L
zZ}e7_&}m{~jyZNqnv*z|kUU?9(s;q!EYAkfHfiR&#(5^FcIA~9+U}lBR^(rMx*F^7
zaPRgISC)_A;|I6I_?P^K)7wp%N;ReRc<;UZn)L9e)P@aL0Qk1h@dy9Jl&GOgG+OuZ
zaK*vc#g|k#0^+KS1WX6^UIq3<g<D1X$hNK)@3_r2aU_y1vK7F2QYTIjH`vHHPm}B}
zEy7mBJBcjmXdH-nL^zHwZ?;jQrz&h~y%XaN%MHH?{oH>lidP^ET$RT6lgy%Cnv+m-
zu3oUm_L<dWEpbfz{1vl(cIG`s0eU(grw`0Qlqj3SdO6mSI%)3C&S>O!{a0(|<wy3Y
zBE-shK=<zL+v+<af*c(3sg0jXaWF=XH)+UW{jQ&h6CFtU{>S=Ou_ET&TMl_0qJCSh
z0|PxhheP^5l~4VQ6W@D#|C8R*Yq80$vnU@E0iD`9N0^s4v#6-u$cvJTa?2LT;9=iZ
z2>N(OL{nS?%FyQwL+-%SN=jpGxf$24$)lW!&vui_hFhyK{WH9WmLO2s4rBuPgs?y1
zk@4i`0$)G@IdyH<`t|D}y>J;6&7!JMZQ1hk#}BPMN2cc+aIH)N{?gVr!^8K#q6CnU
z3eL>rovQ_8!h}35B-GN?RSL`I$rEej)lOWdyvZ^Eqz<hfl77nL$K~baKgP#p<>bNz
z6MunzW8-`FxzIh3pTG~$ECM|fL!UmWE}gKju%KWf5`D6&va+&>lDfLO{)1}l)XBA9
zYOzS9JskEbD5GS4@PTXui!AJh8>%V8pB`Rgkqrt80$4kB>J&;J+$%(PfcFVkE;o0E
z2vZpbA>Z*(HTK30sJFBX4BUZ;xoL;)f|>CKMjeYRZ+<SCi#quciw}Eb!vPipsj)uN
z($mGAz5=MKD=KdJ(&WiUBAI<bYwgzHzPjXHd!j)R<Q|5L+dFE&ms%4kmjkeaZqZrf
zb#}Q4at1n3YTJ(*!LB`G=d+9EpdKMM3O*-7{CJ~>5*f!u5R?LUjYn1A#G$&wt?S5h
zf>d!<ajidscL*T(L!2k8GI9KZb&jkdyemvx=;v$)Oc16bC8NB-GSK1CwRz*lx}8Qa
zK0%HeGG1?B@cA)Qx}u*eh2j$mb$W(P^9KT=;Vd}*3G#6y>MA(Uz!7GO{?SwYTPc0v
zxNBi!*`L6j*Z#`U;Vn<7?}LbpkB=kz0vl!{IXSQ+wN!6kUxI|c!IB}|(MGYdBzQ&w
zKTXgtzpws4nCt6fD}^(VqY2y|VQ51rPCoSX@lXlo=I6=QujkasK3!65{!EmN20gD4
zLB5aoP5`0q6R=i0eYzZt6@C7wc{P$i5GWy6xysDU%t-joXZ!608u#(_oz~>}q=74Q
zadX=#1#NI66Xeq6G19jh8t^{e(xZz|Sj1{;gTJFxXBd_$ZiuJfprIiZTv;hMSNr<4
zl+YRqO3E{`vIh?xibJU5*1@w_3cvKNf6$O3^%2*qGr&tU+y=J{!QUZSvB5@RV>1UE
zOjb%nB4=u1;z=s5<j`u+9bf^n6v2037!sfx6b8I9h#G29<d|Uvlpk)dm4ZVcSN$1?
z%L*|E3FZr8$=!WtW(Ft+V25xCU9nBc=QLf!Aj{sqy%ime3lL{!K0$snAwe7krn>qJ
z(q@g;_$Bv{4ufW3(1{g@AG8BOI00}%<Jwn%lq_oE%uIt2QwQbR3zrt_12H{>>9GP4
zzX*S@nf~aWV~%(4-+xV%n;lXi`^4snda!Aev#aYKgt`wT`h4x_VeXoylkoG=(D;n(
zA-;!?msjJd))DZqrPm>F_A#vy*?jV35a#JTQu-mc+Iu^3RU|!6Wh)p1QR)ebg0ML-
z2TC#h)~!r|=$Oa+7CjL(!094`l55-YwZES|uo>JFh9-vG*2ZR`oH^{UcIL^M*kUpl
zG|ZWqT!cXo3N#55!`#V%^oYg`ma<`=r_nDyr2Wk3_{c<qdO4O&bY$da2#4f#Sr$sN
z;l1=`Qshvlp`0S3J|3xQppx2%G<D1olQQHsT!Y|cw_@rcw~7dTJ#OE#XFSZTzi!aW
zV?m3X@Av6%c(>B{+DOiP&CYCFl-uRyWstYXtb=!7{Z%B)E1kt(mFusHQl@4POdnsl
zdzX<8Er#UT4JDpWHznoEl8+fJ&s`$;%6@8v8$qHYCrUJtNU8irw|$e25n~--=w0nB
zy!+=sy#+>0l<T*Vadnj*WS2h;dAr)<v}u3;W%#eZXh)o`-nM=F-aUKzjfi^yh9YBW
zX$e}bn(`owI1LzYId5&DFH9Z5e_eP~z0I#Int}Pzzo=?vrwEz)Kba>Vol(?ot@d8e
z)(!tf@4awd`=45D9>@CfiV7sd(UzuL2XTWp1>Mif%To~~PN=-{V?RJ<--kQ#tArz7
z<+%V|4GQ$0J$vZfi1R>84^0KbCsOUO9d;eoV*I-v*lTNtY#nwUz_x9&<iECybJM0x
z6H`-qn0qLx414wrfBEv<@ylyEZ=|qMu%W|_j*g<39z$25-j9BNPZ=w&YA7%$h|{n{
z&u<AKW0b8<Bp_Gjn@XRgrn)#ghcKi*d*+C&1lSLsCu0DGTm0^)R&ZK$()_;P@hE^Y
z*V8kJ&aJ7Tv5g6*5606o58n+q+yobT?wn$xxEKs**$B3sJ9ZE$U!+VFiKu=xdnBU&
z)mOJ4*tK&f!TnIc2)O_&2c~`0&6_u)qJAPTiul;zm>0eu$bTN9;l$)5IQImC<h0xs
zM8*(g1E>mWwl$<7DRRCrvmcUWVFsEC8G8Au%E~{`2;g@6ATJNZ!zP83l*9%X3n)TJ
zVcZt?EeH**37`@`1}X)Zs<qsNCIVlygNW53(OyJ-AJA4Rn8-=pQ%2Ew_3qt6X^lr3
zsmM7|)6;unHJVjLVT~fROR%Q?{$?yPi$vd_a806V;#>{~Y~b~C?GaFC-=UNC0tW-u
zIQh;lIxbF*8E2Ep`|=s|GH4wG%TvF~|6&1}O~E&8E|4Ne6=DjEh^SwAml&z;=9aVE
zS%410z>tU?Kj3uGFrk&S$}}uVUI`5i&B(}DY^|+@{8YPWLMwV>Jc&LfWwgpIO(*Ax
z3Um9eKS>t=zcEU6&4&-4m*$XpLP)D3W9Oz*zB5tr@$|cQ$ApKgs;TkAJ3e^!5hj(&
zhYZ)QrbCAh-!fFw(0~i5?sq3TIysS7U|5ojChqK6{uj`}e*AFU#<$9BcJufx&LSSv
zn5v1Xfq3pyt>@=Jg*JEU{*71h1TFLW_3KBD96=9)#Zp^d{xOYP;%5(N9sam7`(DC+
z9N%+PRYAq@Us;rqF(It)|M%67?nN#taL@a&E0-@D<U6xs_eNC|C%$df?l}y92R1z<
z+)#qpXr!oN-2w!pJbii_I0F?E>Vy3^eD|PVO0|)KjSu&h&^s}qbOMKdg=MnAHlFR?
z)S>Ab=d{XLNXo9{kLJid{G?PJv*zX8+PB++CHXykE^U?MW9~ZAlN7SL#`Dy%Wbbd4
zB&3;_2X-HSf6wcr{7BG*3@x_!oMgOcwSoBDjYxraRRScO8!Xry_mZC5c#<(rfWnK6
z*{LFM?X|F|RtnU<7YNi_eq=<6BH_33$)J?XVo5d?-OuoAN8UlAjAFCZsyp!?NzBJ;
zt@?E&aq@Cew{GpAqmw&}_foup$xw6Qw<`g5^AA@->yZ2`t)X8?42<WKA{TxY^%|PL
zry@AipEA%t{0fCu%m-L%rz=nl!CKnMe#tW#O>7W;kNM0#qyGA5#cb}jh8Bt9iDb>u
zD2?3Of-QDM!sbzXR>w~=LPJZ7z4YUshD6?^nPv06c&Xn9zD6XTF-y_7)~{RVgAF56
z!T&p-K?Csb`0?X#t3V_Ub8<$~d^X@aa6l$aqjd6v2t>o_@o}$TdeQq(dJlkB%qvv(
zzq|zn^5;Mx>H38Q`S~f0gAf~*bWOuqpw`s3wY7D0_`bZb26>MsD%U_AkdRl*&4eza
zY3OU_lQ@6nsMej<w$JLQ;Zp#H1$lYdHcg|bOE*|5jNWZL3OZ@^ps$wKx^Atu>ieC4
zFZ)9%3Zg~|w7Ryo_QQvt6B9a_rm`Rn($bg1!jx21KgIG{+>$esl9Ga-;p0<8eGc+G
zV!0{B<{%@~=OFw7Rw6bx@$={M;$$tWEKaAr*gKa+7V(#@QhFsmLLwq<pFg|9o<)er
z!s5429wD!)p%Hca_As<^Wo2b`bpg2O*g@0qxE$jFl?zpjRkpRzBO^Y(4cbD;*jW$D
zfW{+vX|KW|m^@K?0tsGSO>GhREOaVtS5nd6nX&bB&GoD-7fH#N*u1odo?cf&qs;bY
zHWmWoTHRx#k!x~a0fC}{KGn{$wY5bM;W;!k;G{Xj|5~epV|_>1?L77gAsmc6CN9x~
z=_I<<h=5xmnD4JL?X0Rs&@1SW*fOQ1s)}aP{pHI|l)Z(F|LmBj)5TNK@t1dY`hkx~
z1*0f~mo<F;{CQT~jZ))%wcR&e>%VI_&DDPh7RJtC?+C=aJy2KxhzS+TV;x*W6%@Db
z&%cfGWgplNfz%+hQo%4`$eFOc3?@N_M(Ven*lp2*X@iYWOKFQsOG7$m{n8q(ztIqN
zKRx}Z*0x`~1c(@mssnZ{%G|t1#IIIT3O)$}a^B0Uc>1$0I`4eEuC}&9f~XJ^lkvy9
z$I*Gi>-l;X8jfh~<;&eErI+XUs<u|ie-fh{Z#drf4tjq}%NzhiXh_HzdHHyLt51-O
zq{H^rD6b{CYX(`vk$x6?{=~dBX1?PU(9hncO+ixRU;cw10>y4|qu8n+qLY>0Qz_CE
zed7l8_U&2N=Y}skz{ZA?99Th)M39Gvhn4l=<HwfEi*simok>~poX1WQNH~6zHG<Fr
z3HmaVV)9Jb%}%$l7rm~rYY}wx$&lo(M>raxv;rBVd9Q_1g9@eWfKr6vK_or>$rE7&
z%3&SZh^jd@JXS$-<j_n<HzSmMP&lj@A+$Ga4~1U|Rgz%rR~Y;r+td_Xx3RE@j*U(6
zPQOeI*!Q1(nEvJXzackIp4S59yN$NbAwnJU#~-{FiNa*5XPaK+$cz7dBjsfAL-_S5
z=6rv@<>hSz`X!+|ou+Z%zyTs_om6)wLDUPN1ih@z@YUZ-bO?%o1?<|sz31y!0O{=r
z9W=$c?G-$9XfTMzz!QkcP5$4gf(0wmCr^qZqK=R=dMOkURFZ2+NhTv5;^S|(BgWxB
z{QP}&OY-$sgAF-$BjMg&UP#9{G(S6zSTAy1#HKm(YD*y|$fVPV<n!LbbdTLpGqurt
z<?Mza)`t76WDI*ZtQ{z|Z_k4gt$~=0g@sJwHe_E&_CI_01$tP!FEkM-EvRt(>sLp>
zNC^8J;#I5~tzi-#DMoWe@6%G0J9_Rdc`JGj?1q;evK83JQdL<QrxHtq>jnqqy4I}r
zsv3j8cywn-r5=<XRn@P3ebO_(UlwPj7x$Tk*d3?&+#gUDYzNy2&O_;6?W~0q#GX@d
ztd9XCB-v*^V_&>#X5kQIGDtq)Hc8vp;1Zz;Ubr=Ek6JheYaHRFSyl9C&RuAuH^Mut
z5F)~KlUP}tB&ZvpJmMy(E5Uy2K%G@jhc^rl-F+6Qll`_ksmC#XZAwcdvG$<aBi3^G
z@ZtUYUw`;;-Osd@aERWP^Q&WWuRa&xA}1}rf!}+gI1{U{b>-^=j98p_2^7kfq59-n
z=!Wn;e(TaCt8p1Z+9cFdH0lck2_w|TRT73VZ6AMo_{fpESFbKU!aE3<;1PKFG8-%F
z!AQ9{P&i_s_2sJ}%`1xFlaFfuZ}SWUj=&ecOe^>mVz44~I~?6Z2C=6t4C1!0c2@tX
zR`xkK{~294<N51tq3O?_-H;{@qD^Zgg&w7mipu{4UB%UP>LxR`Ozy)3XhrF4Zq{Nt
z`M=AMiOBwEITG^2Utr)E)5(#J&+Gxq3dzu|vDN=?5(>)>Bl-iH#wc6XIrDcsItSog
zg@x7r%0nCsY%cP00owunXs~uevdqgXUuc@wz}7cM_ilPnCSqdfE7{=Um?>nbi4hS!
z-Q7R1Rc!{i8HygUL!b*7>7~@^nnbgP`|GV$_o5&j4E(Qx3E1oRU&Ya&g#As2zWG-U
zVpSK-@z5=#Bw`YYzhV;F&d!;orT#!vu#N%hu29mdHl<Ic{y=_i6B8J)uD-tSz$aD+
zYG7HSe+w)4w7Dm***#lN$tCL27ebA#g6v2v;Q<D?b~klHu1++57TH4w4<eU<DwMwW
zKLCc*RNiBT&@+QyMztlsW$izvFXuSXD=QlgX_@eUI!ZfzCTq~(s|H>n?Z7HqfIV5%
zU$H$RToar9VIhrSe>OcH4A5r%TX?Lkq#XTh`Zs!L^ef!e<6L$CQbn&3qoCo`am7|u
zXjnoi3rG=Thr=@XTHMp<xpzmK*OJjxYPUe<g~%r_FCVIA$YlWexClGtB!-(Z64zIg
zpvzQLS7V3e5`;A*iqU&20#^xz<hmE8pW8Xtxx(IK4lJ*!5%XUz(n*V=0ng7uYG%Sl
zQ&aO-{NQy(g{*<48Ig_i{qlM}_9%Cx10P@r(@I^K3)6<gU;L?lVzaDHp5s0E-ntIO
zcp`z7siyNzQ=K#ozdE3^!9nZ)2qBz>O*0MpXxfY@c3VZEI~#&sv9g*$_Qky+H^z<a
z>wA={;^$Yg{$v~yk4WTW*EKyYZERH3QL9f6khX&i7k7l5M6&9n2HB$jKM;XTN5J-9
z(L04X@$jwa-b=9fUHzAlZ9!Qs@co>lyChaFtAflJhGurmL<(T&S9StP5zu2~CvE|N
z?rv{Hy`G}d)CK50bLI^E1xd*Z)b}v}ec4wl&e1zuEQmWrK91uO6}?t;vKrF?8+Ts~
zQZQ9kRpBK1zkFc|EU&Emq$I+50&-|6v`xhDreS#{)$vfGreB0Wq+I{^5sFW}8sMHV
zq;-nVBTj9G&0T-&<al%@c7Gr|&8q5ZFb#qHw*ONV)LLufwQJYlH4D&%vdGdOwIz(O
zQ>Wh9*=`QtRMyNQXR@`kgY?jX#*VmAVftVd%o|W}cSLl7vC%5E4az~c?T`S&PYAMX
zsPE)VfdJ-^%7Nzx2L@=jZTnQ}zk)<WOgjdFLrBOAiyAHxKJ-gRyiC3SA1Fa#6udbd
zX;a`0Bze&4koJ-SI|_!X%FEB+P*>+v5zdP26hij4S{oDp-f7HzE<pK0Qom-xfBTI{
zbpU!Psn;-rHftF6LAn|nlQ{P_7z9h~XS2yJS~uvsU49FkNmL{kqGXu_R^FfCfMIwo
zYPXN;o-?3w<1;g*=ck`w$EVqbPoNx#a3WPhU^b6Od#U9~wl;rq%z!0FXu32s(f9A~
zC;Ao|`LjK+aB3cBTjzj;#Tby1++F{bHiRUO3$`ekzZA28fE(hiP$80$Ae7wx9(;Kh
zyMTazsAv%&B5fqLTvbg_y$9OB!7Mw`ZIR1qDH;ur#B)t<-Rk$_hHQ@xCdsE*ahZyN
zYvqwUAL@50lBd|5@Cn!fFOnQ=(f@(Rhg_%SySxvr-|VXu1B}MeOsMYYvLF&6imQJH
z3<Aio!v0(o8%&KJc|2?<TdSS$DczGJZ{6zs_H7AN4q)OPN)WL!pcc$;CAqLmzOK7#
zt+kY!vX&I5&bc3TPI(F!8-^<}M9>bm!Vbq%G`4Ov2I`XF9r;y7L%hvM;>6|*v?1Y-
z_&a^Vh$%22*zs|A`j>u-Doj8zg7One5HSRQVu@9)1HS2BSYp)kTvSX<e|NVeAw1xn
zc_MI5Bf`UP$+0T@5(v7}S<PWEChvuqP;arZl;T51{GXQTtp9L_ubNs@{_MCIJ2@XY
zDc@S&^7WfdolYe=Z;dz|z`dLDt9AFeOY2yy26Z;p^#wKX%d$oxOT7D`fi1~9HuiJt
zwsV{&FJaww^-<{7Yj)1}Cb-77u3tmjy|{d=^uxJV7n<oJzbwqz^i{WbOL!-~r`?CG
zL%rL|B}4RY|9XhglU3>a?jab%2s;0I0FwHuaDCy)s%rfhHf_=;FxrNOli6p$=<ta=
zL5RAJFklxBB*0z-V_CMT15bppg7i6_^MfY^b#&BZl9EWOlab66e*UZxaaAL!4)8Zs
z?NAhkf;h+<tV?VVK?2Fn))w3po7KSEt&yP|7(lMho(a3w9wI1}Z54s+Jo1)felvw#
zcq|5tQg=tk;IOc0k%L@Zh#cl(^Vp9c=vY@+WP#>uYHF~0k-C)%zSptk5998Q>~jyI
zR%?x;yL$p2#Bu-BH7>n8#!}(z)Z=G&H@h4^ei2_G_YexKIvff|G0H#ijG6aMO-)Fl
zt%gF~Jv?A%T)uLpE6?f8$4SR8p?=0e)bKR1*C;bL7p|-UavG?Cp<F?AF`;BUmitLa
zLX1B(ThL|gzH-blZ{aFbN47w%Qa|4lCr+F?6%-M176n~NNeNGtQB1C?s!DzQm|Cg`
z!S-+#IHMbxKBw!qb#)<@+!Y@itB$y!y86M$N;o3OZbCE1q91F`!ShFO!Vv#t!(B0y
zxZcovsj2dQ^H8+GHFxdUf$glh+1Yq911Mf99&_-<O~7#zM1#xrHrCcy?g)oYpZA5n
zLXC%pI^`Kr)`6&ChwklTPEvlNaPPy!=N~_Mgt+GPp!$i&(r*gWg79%9v^P-gyTvj9
z)ED)JuV9C?$v!TUHzz&Y)-V_|k{)^Flur3FZ#zBxP=CK?Uo|ZS#Wg%)qOHB%2Uaxl
zZc;iraYb+Ni~$a&x8SKkt3tKZJx@H>!OqSONg1e?V0Y(COmI7~*N2{lCKsl{#XAsN
zwls~916rDx^q}5jBkUD~HlbnNEDTRJLX@`u3urO6O7_74g9)*F=T68Ef^kO3b8zby
zWP6T(1<=Hpz};_XY6{~mYSU?!SQ=2m{xc&_&phgL@ZKP2@3B7^QYKnSVv54EUUmz~
zZe6y_b$GG`vhW+3z?qRQybs|b)YsP+cVxl@H-sq=!Z`Ig=;;&Ee0*7OoXX0i!SqjP
zqWnXbA{Ak{r<>HfGBGtdSp{_sU_C6%!`b;fd=fkXK&D?V;kD%S^fVYDDJi`I51a$|
zx(Z54f_!}5ctVh{uyC&@*%7)<J5E~{mn_9(zF{Fe#pg@ZYs*O$GDh#OR}a8kz}CLg
zZX_gF#_h>FHU&{jCD((H(T;XE!8OKnp5PnYY=fhXXCSoym_n^bBJi^Kl_7T{D(C0P
zO+%cVobM#YG*zI1;ov~zZtm{Tzlq)TWMp(Ba?1tL#>YtSC`RK+J)Sz6n%{eR`1E)#
z_u<;ncc4H3Nzq7AdTgq)^n@0fWY~<GgOYsli<h@Iz5b@8nky7W{ler-IEPCC0boIL
z#$+VBIr1)TeR*srHu@VHCL*@iG&D3gh=duWUDqlNXd6)0Auu%zO#`FBx4%X_!Q)IE
zKZNe5s18vbig$z?TU&(%1ab-sy#aIZHmP9H)14d|w<04!>(VrAP*T(mIdHrNw?Qw3
zCyC02xEov>P3G!4YCB!sc<4&fN!Zqcz2pG>@KH{P2ofVcjKojNr%&N<E!x_=0Y)IQ
zQs(ZEj;ErzV7x!zT>tPeLLlN^6D(esEcCM_%*PyeJ9sScv>Oo5NYc%=yom=J;7k!a
zz!rvsT_eE6`q*P&z#TZd(6z!f_O#9t*MNY9lhb%on7B12_~2jx0K@XKpKLhH-2)17
zQ;6a19&uORO(c(h{D5Bzy$5L~xie?57;{UP(tuLs9uoO$#PG!R0s|iLU^_+~64%g8
zjf}c+zrWdsl9>d*NJ?S`vcUi}HoD<iV6Z8$x#Psx&m(%CNrqao;c{|v`ygXtztgsD
zy#C8RLZV6X#@YFGBxGC*FK^wzfX+#?6^&d7<GFD$ul8VwUyzZl3i}!3T|Ly;9`Y#<
zc3C#!77&;d*;&bUnIrgthi$Owz7(M<mu#=a?ItnG6c!OVAtjY}YwK#SAPGY6dGmFX
zG%(@*R}HG?`laVo%Yfo;aCYC>V9NNovRvM=+fi_N-G<9=+P2J+lhOt+P?tiGD9tjS
z4=Rv*C=Ayf*)1&wl9#^0V`yk+ZtI29j=qIWOZ2r{roY-8JL0ND*SipoE=M#$R=hZ~
zZN_LFNsN&!wgAvjQ@>OtAt_t;fjGt=k&!#`4x%Ss@Me>cNW{l@Uc|f}yEHk}x98Z6
z(@#mucioUj-E&9XBYG*(H^KXVHBq7s;ztd@20#Dkx$WM-!3qirPtkty;)O&xW#x}(
zB3HcKUR_!bUwzLgX0#64DO#w3LAo+K0>IjMoHlWE4^<nRA@U4s{<z^`+eo>0QowTf
z9yZI5|F+*Dkyzk5po&VRq*M!TSXJ}S4VdgFcFcE=jHIci5Kjd`)>@D1U)w3RS{ND{
zVz1BY9=Mi{j*iw=JO#(Er)=|y+BZRhj;f?dbi$A8_95qwU6~Gklktg5!xqr<k%3NP
zktLSnIe&kDXinJW1qgULTn#%YG*XE~!O&1@{Q$BDNlimCrIzTPB7b$y*_7=A*hsqK
zw*vkl6`Y>VHAnQFgqRpDobl)=0a39n0GS2^7v+dfD1glo5U^30!^5|sR7FQ05X2T^
zqW9X^q~2?bi=)HlWl-B<gT$LRnF3FrIm6!?z#<Fu2k;-kl7gJY>(?-5w@>uI3-yE0
z4uC8bOg!&HN`S8Oqilr=)PBmn4VF~s)>6UIhJM=N4+!TkK}-a)?vp2SDQav74j^xO
zTf)DyrG+qnClV0+#~yODG#KA_mLbE^{qYy1;;%_~9gDu`(UQ~?51<f*{3xOF9q9e}
zb0<jg5{o}hK-mYmCN=~#;k2MO9u*W!#2QC*{6<t1+ZY0DXtb99w);6#@d8)@U~wWw
zh602dkJ5}*lSJvjF7yO<h;pxM;6A^FwysS~Y)T1>RffyXNT0)g0$WA26|D&QP~h{n
zEQ_#v{y|dr8m*y`8iJP<ULzxUIeT24>?OZ^CPGCpeMLI67A0<B7YRc8Q2Wtw;_<W<
zbMr^k_Yplo0%p*^6)KUPU0S;}B!GbVl#C4QU_K)1=HbDRzach1e-0ZPkfp`uKs=TM
z^o!{|UvS-z%i&49!u^h7S~@y(*79i@Z67~=Y;NxF>pSYWAN}?6-rfz{+0OKjjg@ws
zA|)|ej49tn!gB<a5t~C$pNp7_(WEvqO`R`Bm7o0{Du_OgR0;8vAKVZ;sRUZ|%a@XO
z6u*D_W|pUY4iA<>Gg@@x4w5?ZSodFAo=NtVi#4#T@D`93B#gKMk;=OV@OSxpcQ=ov
zV7_ir0Nu!OazNpZh6WZ7JibdD4_U*;P|#`mdE!xaFva_m=<KnWLpT7)jjUN)P@Xq*
z&VTLV$My=WZ**)x2Ph)oLF7!t{)4AlDjFJ(h`rTmhzhBuAg_wSQ<9VWG&GIp_rV#K
zmy@GQZ~L1LCl&nVd<?&pDhw1E8JU0E>Kt$GCg#FX+vbnx41oE-oOmn+4v0t>66Ax^
z^N5H-(Ksa|L%+Ab%Mii+GrPJx)@|6r7I7LQvClPNR)qI0?x2{cC^mQlhb7&=4}Bgx
z?MEE^hlYors-~FNCM-czs`B=ON)Ia;3LX?qLM(#axS`{)DWXpI0pbv{z{W)gkyRaA
zMvjL+KpqQGjA9s?d-v`|c|tx46Atc1$knSGsi+vv=Z1ZGO+UJeO?t!L)&L)>Fz6y3
zc+y02J<eFc-at=p5!-iKo13xK51vzgX{ljn78-FU6U1k6alff+Wvh*){N=c`@s!9$
zlWS7On|@*VtgEI|hiQe}Hvo;J5Q8$HkWIcI?er>VMGFi-N4sz^uZM<601;e@=qbBt
z@Yg-ZLgr4M+sbqP&u&TOWZ^?%lHijL<Psq9>iA|VlHJz`{1cOl#7nLCg6(kUrQb&(
zS|ZWAl!<MA=pA=?&@G7GwTTESpyHe4^HkN;;0cz8!CUdd1#f0XM#j}W1b;llXVF<4
zYd2*f+V>epXkR(=#pBhSo6D9xr&&I)F{L2ReRtt8&3|f9zx&m1TKKD9t+vl!*EM<>
zgO10gdN;o*g-gHsokwhcb*v(0F<6Gbm|$VcVi&d&XS)q)@cwE}d4kwCHKs;I7s@6g
zqWe&_qo(gylN=2JZA{ZZLRJSN9dH>cI<&@C)XiVJjyoYoJEA+_o3RxWN?&V%n+=p@
zJalVxG|GeL_D|YYz5hkqdB^p<zyJSD4k5}hPKwfzy^54kB2GjpI~kQwLKz`#M}wn`
ztjrLlV<ej<QASj<TT(VfX=(lL&v%?bpYQi``~7ae{x}~W>fL+1UeD{g9_x~-<OWgQ
zaJS;oMYFG90I1JdiPr|dto$F4OaC0}ZjIbaOG(s;@WP;);iyd*p?CJ%q}REB|Dq#1
zX9repQO79!0piTCQtRnVS)7IN#E#sbNR%+D7zI-B9@v-At%8QG7?K4;_}QiUK#-rW
z?b%*xqy9Z#`bCGO4QwKbzh-0;ydZf_hv)IR!;BB3+*P~A$*ioTgyRm8B=7}TA5ECk
zkXf9;oRt&9b)7#RP&Yy|6e*^)2@afjT~-y<&3dz=RxY+H#z2ku4!10Q9mM=V4Gl8~
z#Cp!eW{tRli|YHy?%cTtckenNFr(3hQ9L&>Trk*8O3fxs>g;{drNrLaIv2?$C#Jd)
zSu$Xi;{FUMU2vAbG>#wR@#72LycrC93pff>&U5!x_`b?1o=N-YzjDf?NjCH5ZD&e&
z^bT2K{&ua)b{AX~u<Bj^+R8=xET1RQFkiGtH1sh2+>zNHm5Y}zFD6bZ?&H<wfHt0A
z(t}mpK3+koqjn8g7ccIhnce6uM+)0sVqzkFO)Vfa#tp{v&fdB2-@Bo7z&%R+=h(k~
z<;ua>*kStmmLX}vOiy8haTtV^ozFi&+w%0>^+%4p;8XQhpjJ@t&m%2-8kY95{!(b|
z&WHsiqwg6zbBmH<ixj(QBIpM)9D+j+X%~n;uv>1s4=d$!TAS*AqQGxXlz3^*{dJr~
zvetNywuvm077cjYa~6FZ-@kiT{Q2`D2Zx7moP70c5j>u~R23IwxTmtB0u7itmv55D
z3kHUEh2~E1v378XMZEg?vl9a+ac@UMLPiE2_VsN{9$dmOURC>(mv-%%&L=;A{!1ET
zj@cJQ$#%hpdvvt5k$JS=&q)T@etQ!IrOFDS9Q}#RjP~M%&>qN?IZ=@v(j3Y@Qe1v&
z(nM9yMXOUMuepsS{!J-aURVB}Fwa$|>(_k3ysyj1ThVja^jWj^%_QtjF6UHW;a+QT
z!90L7WyC3=d5gvW1AJRl{rW|#CeQ@NCMJ6BU&tz0;oxv`>(;FbS5c{*KmYJl3OZ@x
zWwmC?Goj$38;r<id|2_PPwh{dhTK8F-{h_sVtx0Gw$joKnf1o$^1)sUoYHE1I^!H~
z-=TvWd`V#Yx|7lzT{QDL0?XME5yy^!=T1jcQqN!~s}?$bpZ(&+`*!bsnw1p;-A>8N
z-OZaCVIFyioTTu{xH8d%9GM6)C9SEuayR~R`uurqL53K1HbPGFkgFE|DY<4u7OX7D
ze8Sv_Kt(6pd1S2Rp)?iZ(-72`U@A?zcFjMPYpmWWH}=IL>Bqr8(rTh;hc7^d1Dq4#
zJL9b9hmXwXzTV!VJ|s4dEtKV8KRiOrofq=zn>&Sm|0d(*pHq)9d12BF4hrgSbnm-r
zogZMhr?&J$9FGk&4&)}(G%wctJ%q~1h1NSj2C7%T=;t||RtPblpI;IwvW-iuF3$3c
zcBcboW?p1xr+A4^j;=|lWR#VaX^A*fPz>L;z3?<6<3+Y;z4P*#oH$6ww~~4IyZLpr
z`PmGUrZT+sIZwSWbo|(=aesxf0oRx0bXOeNrrD&R>w~VXS=&?{wM!~R1crK$LfMqD
zay^q_SQx63zYUJ<rV%<~+<s^OhSGsb6jm$snOArN6WxA|lvUKrUKu}Hky+KR9EiMX
zUyJm9_Ze#-U3c`Je)Wq)QZSP5mS`+pX4Ez3BUM>c%5RgU873KN9Ti=GnEb}_j|G|q
z;s>q-V)5(8ZA5vN-bRw3He5^MJH(J$X6)fHj32XFr0FBIC=OoIX^VN2&3!uU9Nu`&
z`{xV_eElc1wyxsyU-8?^Z=SnwL1*B=tYcpbZDQ0<&D#k%r0fLpt<1V}WfsgY_C)g}
z2G7A8rH>nL&e+*gA8i`UJPG6u+Hlsq2CLnma#T2`R`dx_yP%>9&k1qZq+4`@a5s9t
z8Z_n2)Ih;8Gh$A?m!3|KL|847j#iim5xw559uo*3yYh9aT8O*S;=bP9e*kf5Z0*mv
z(8}T!9<t8?_m)eH$IW@l`rotwX2~NH20Y!aa0tI2Nk>N}3Y8EiU-p@^0&+Nls)ErE
z^0O;XT(QrB_X7f^`;Y7}C}_#AOl|*N4eVlsuwHlN`yh3rZ=)Y{!uVbNe~WlDF7Pu+
zd0eYG(W}$NVLGioaQ4`tLk6;h20Y5i$;r$F0gLvmty!a~EY4OQ5=fT{;}TP67zhe-
zu5WA|eco%8ikI9qyCo;(yl#r1yn+X*%ql?T7AU0&lbc~-f%cjJOAOv9$>3oqAF=o;
z8S0FKhh^CngP$-ksSI6dEQ{Uw5=Fgv^X4J$Em!Tn3pJ*#{SZ`^bBU@gO^*2^AV4bg
zT?xU@y#2Kp)Kk^;)kbkv`}kbXaEx2*;4qAzMs%arr%!--BZ-xkfJ=?fsS8vRl&A0}
zW7-dJrn-^6ogFzWn(ukGdvkXKbu+Dz_tAIyX?0q}zA65q)v&P%;d;sq2iQYETxEXj
z!7cf&#zCn$Ir^uzOM44TOZ_FL?Ceq-MU}y(KpabSWJE+tdiqw~MgoV4FYj{`v{CqJ
zrbu|->!8Y_C#TSjHB-YPZNG3~i%J@cCUj09x6OR!*olgR5X(<qm2%7<5=we_D?ZJ9
z@Suc{58p6i9B`#wo|kMWE=EB7loXvs$B!MOHl@9BqGv10>g1yUzC+153?C43rLDij
z*o4yz0=3}5^!`N5{RlUrHvj>rEhYa?56WEGF<LFB-_m=BjrcHpUFYBUZ_7sA^CIxl
zoVS!d5;_}GJTw3uX?=C@=O<E-%<GeRpwQFD%IE5RCOv|%F>x8u|C0U=XUXIYG(ngo
z|Cc_VhObW_OmV9X)-fcClt&l~)u%W44EB@j+3Jhd)6APU!%-SZ9eSYV%TT$$dw3%1
z>-)wK3}MX}&8z0W#PfP9(B%We3|*GL4)zmi2_BLin>P<PXeiN8`Xe`XhsKVV2Q+-9
z`zPh+#pjOib}u#1zk`h9P;ov!uSvSpU()sYu)*V)XgC9<5T5|z#K|l%^ef!HM#fJw
zcuenxhMT?>4>gYnx%i-N!M&87Y*zy=4%C%c9e>u$P-2sfnqTA{lXkb`yMav1U;iA)
zhJ#{D58YKU{~rdj%z5|@T5jN1N<LDJqGh}mHIR;-JHH>@to-f4f$Z()K(tZVmN;S&
z7&2&(c}N<8dE^y^hJ`85rc;?(l@7iICQV=ef|GXWK&QGYF#3!w(ie*p`$@kTH}3W<
z#qm@BsudNQJ^S^W*1Zj&hHsNq=WFY#$rjJ%{I1FKE;cDG%u#LAhES7eN<9%gq=alB
z9`_|q0>{T{U~Y`s!*&Ml*l`{<N53jpewF@RKn_4+=>X{Zs4*^GY1O%vpMK!nx$S>F
zGG~aOfaw&vsjJgpCvipMIMhR3h;-4JE^oCey%!%8UxWw(`}dx4{(V2sirc9tVd2X#
zC<#d+;R322<p-l95jS!$!&@dKK%jLjI^lr>1;B|C&s-t67Cj#CpPXdDh<##06scUu
zc5&p}ot<&XLgY^c1d#W0EB<^)hrVBDM$7HrW=7aDfOWoG(c$;bev6&_aJHSZh?#f0
z9boFd@fYUbQHq(Z-`ykRo%Wdjjq;2;kp_fWS6dtJ@5;a*Z~kk5d*|fm;G=<WZr!;v
zaKHcnmJVn2zyP$hrv|DM_yrBGbe_ngr<`o^p5+M#swv7J-oHoOmYtqnjC7>e_FJTG
zp05|R{BKK@j@>$1bq!AKK=qKU9ox6VVWLt3qI>$(-frNRTr$<djCUP+^bQ;dy#QSV
zm&x?6gXW)UO|$zi3K`0zBC7^#^QE$qm&w&B0`N3yNE>#z*pyh%_9{23{|A<Iqlc4G
zAUZ(M<*otKLO%^_eEO&SpNBWz_|C@u>gv^R@5Af#YCX)ENfH2b<b}~tvA({yrtF#+
zP6Vg;qJvnul7tLllsr%k{#qF?Bd@q$z*LNM?hvvh6Ur$QxLeAYS@<|IFRtcYoSbrX
zRTU5y*%!p&+dnQx?IX^*i+?8DU08Oa2vwAvJ?{aFLoiG2ApO(m9@Mv`%bPBjj&42H
zKcsc^yvK&CHorUc#~;mB=dmrL7za%Ye^2kGEl=FS%Y?LRb#bV|^F5BSTlO&7xFhxn
zQQh~aziHR6jp6Y<c7MK-#Bsw(LD;^nhouaLzoqKly*vKM#KB7{Ig?2}d69%5!IIGj
zen}9pIyx5!Mp@42xAx0|x@xSuk03#XLy?hbK-H%}Fk|5AVq-m??FWrCSO;nf;CA$Z
z{c0QFQR~kK{a5zV7qL1A_Knux``x%HaQ@qTw(nc5)NmW>@O8q>Q?>qmB=>n!H7r!#
z3T*PIsh!q#&n{9eatdB^m?%aWpXu4FXHSdBIltN3hAmKyW`w_OIoAcM&PRb(V=1HJ
z(xromX^8NwUbtG7<PV{$*13QfFO!@$)IA7S*M6a`2|saSpl&r0s@&ZSjGI*T9UeQA
zJ_H(6hv_~xm(rLa>2Khi<;o<B?Cq6uwKo|?ZC7Oj(ukos50`w`3S8LxtWSdW<+X0J
zZ+9PD)2gfU42OlE500bV^wPZ6sIYVbfi-Rw%PLglLruab6Q&T2Fr8pE#8QhL9pziJ
zC@C&>eH$JIWTb6pODrfMHywt#4MLlfI<B4;;NZk?rXnO0bOhihV7x;33<QegdBOx7
z;1D3LuTu}A<Q^-F^yNnqRcmIlVN^%!S84LEa&t9tc>;{;;g8i4SKftz5uS^G?|kt@
z8XO}^h4~kioADteDz=U~T?#O=w!qt==$C{0sU)OQNw23q=BJ)bi~I7xvnt6GGwqm>
z1*K|6_iC$BYL8C-v$is>R{8!-%bKE{^jDy*&d$!*SBGbt*Mq+X9{vvMMY(V*=f1^v
zjOpOavRnQu7nYxYkoqL+;S#XI-Gi3S898!o)%}k#r*peH-#+D6(8=?RC^6sAT(hdq
z#!FJmZsmJ`U@1H&PBkiXW=PtNRpISlybe^qP7)rwOVF_9K6Rm>UTV}|!Dfp=|CJd9
zk-r@*uRWvTvLm@sSLZ13J%n@@m%SKUlinb2O>Rd?ry0Zhu93TDt{2*M()Jdsa)0gN
zn)8Jq_R`?mis0ii<#QW8X}GLuCz<eD#s_;2<tkm0)1~vg)gv3MZ&Y``{{H9tZYkqh
zs%z~3bhA;-#=76Vdwphm%UHLx*LttVOwTs6Dq4Sy#?edj&Zq+axH@P!`RUW$oyCXa
z^{4+;Dc6{2ImJ-)9{>28Re$}>``GSc?w!)JZ4+rO&XgxHtrQeCOGD1CYl@#5K4oPc
zJiJlrF|FLyqsqUZzG3njnf2F(e0x)Nwg;}_OH8tLT@L^Ap8#V1NidWe0~rW8Wl1fk
z%F<z=$?@GusB7C=t)<ULK}f-xU1FEj_!b?dF!94m+a9#xxcFwwP@djE%ARI+fhWV|
zOonDQR!b3SO&7p{RSbKe^L{g7D>UqU-M>$}@vW-}y{z;NW8R`DeKPS`sW?2Cp8)-Z
zD}+okG8}-~-?M>BRCSJ^Tb0a7Ak=)}cLM1V?jrgJOW&0^8!nAjSv?nR2l561Fun*t
z>cF6Y<Vi(^;p+Wnbt74#JO9a`suf~v{}<&d|F#~KTG2Z72Wpk=DnAmV0S<^GTgc1D
zq4G`R7_1W@O+5AhuLznaO1Sp)M$)%!QZYbd=DA2RP@Yir1)cXSQ3MEAR(cYfJF=`_
z&z?kh-6uq}@#0$it_(A=xM;wZm%{tO_`&W)oIKf5PEMH57&2R`=w8Goin|NUfTAuw
z0xB54xz1S?=b?wArBkN^;o&`4(8WD97;i^>4YMYa1mVcl*3wGeqf_`OuBK$kTBct^
zLqmrrr(Y2I6V0U!&C0Ln?tKvsfUc8=Cq`@;SzKV@x!Ou{?&r>*FD0DZ?Zdf8d`e=t
z!0j63^pll~m^3A0PqTdI5GZtk+%!we2<c*@#*2fs7hAZy$5ajK-~S%@`m#%lUz*Sy
z5+t+$z0}%Ld}g?h`^8nAR+s~W!An`Xe7WE_ckY}94lQ+*)eXjP-oD*kCo1w$U<_hF
zYa<dCEX>VsyxJ$&EH-x>K5_(%RQU^mL7-pY4=tNEHG*0mFhJSC?8wB`Koi*CpZ!I^
z`mQHrj#Pc(12L-NKNX$qYeP@Z+BL;WpAmqB5C&>&>@N*1<<0)3ee?LwAORAM>~B<S
zl(uO7XqEihtwC@tLZDTFE327Xf{CXXDX*7bSXhe<nf-FssWmNHv_M_t8wN7G<z08m
zWr9ezL6c8ovc?rGxcN72Q%xAH_M?XnTfWc1j@!9&$bkb^jCoxBDapwl9LzxF@&BVR
zb#`@ie0nw<_$7AHL|J&@7hg$ORqK!|2d2@DQ*&EHwA|ZKidkvA1jQ5!Zcgs&vK2b|
zabhBR(BC{RGZ4Ux(p#4a9H}D3v#+BQIV1d@;^IosN1S4+ZQBk!tBTll&5HYVuyFp{
zw-ys7SpQwlb(YwGJAV~D{RK%!uc-#2xf7(B$D2jUU>;L-tBxHZX6HJk(t$97@WQ~s
zk(Uh_JUHvhi``r}U=6toOiWs=ZZ5s2(tF$#;gZNyqjXO~eHa<7CT>sLA(K;s)>?%)
zpjWTTNT?=#Wl`!~4hCxaAh+@*MD8EhSsx61WFmJks@lTLOOqlVp{->(S|28l-o1|_
z=S4<<dk@wLSNV2@U)9wQLtOOeVHEM`(Srvf;iX591y;43La^K2d-a+`etegm_;z0(
zV3dXelIBLBjsm?c#RVDu!i76oNZ=q0fXC21b=3FRd;h08nDR--qgr(6V(&xkds}^1
zUfTS-dn-Tyu(!A96XUG_jh{gr7r|NFyxL2mEKc<8-W~b2mtn|y6iC?S$T>#WNc$r7
zsgUdXLOSZtc$J^;g!20S{mGoHyw{)sYTi&u&@2G@@KfY@6hF4v)J0ug?!7*V$ONR<
z?ZFy9W=uIb>J*KDmS5^eBUag;py4N_PW0T!VPMNS<z|?hZ;qE3`(Iu1qD*oB+N*8m
zYpQJBB-7;Qre)n{`0toorn}|uqQ3F|aPFN2ixxo#o~&|0>J8Y=TDo5gb)RMVuh8fs
z<g)(#%1V1bkwu2x{iZKwo<HN_Y6<BfFByQ~49+}}(cZhcq;<l+PYqBSUG%&|jx1<M
zZDDOqp|7tmezEstQ36TLYhX1;$_sBEqd5A>)nA{D&)wI=tu(i#z;>-VY)RR^!pZ65
zXzimP8)WK>;3TUKAnLhT^5-vJd<R{UD6ayq7T2W|cM!O7oB3ZM=;XT6{Osf}LUh%0
zyP$yuT)f1QNJ8Y)2mm76)O~NkbZdr@lp$c#Z6}q_TH=wlm-lG>3W?}m=5|W#EA&r%
ziO2s7bN-LwCIi_tX(hhK<B6Xr|AmX24w|Xqn~q7_j*JbV8E*N=t&TEoV<7jagA_QC
z82<KECH!ZGJrMMlLaip!CvLSHd8C+?Dk9a5DBE1QKN}!Rz>*0F3-5;?ncuOdWC{VR
zNadv-Q=Um(&=6g6QOl7Td;)(n!HW<A{1+Uqo?p|tR%SZ=KY~{<xwZxv{y^3JyuE3Z
z>#Jdd&T{`PCN70pO*k0IBm>=)Rr5bz&83WUB5?cmk`0zsS5u=eUml{NA!PCn3l<E<
zvdK6AWbUH?RkCow0v3ik0^G5Yh1)8@x}lU{Fn$P)#~2|dTyGL)*aLM=^Z{pzA<WzL
zn=P_2ckF0K8W>0V!Np>|8&s;uJx9(&;X;*Tux`Tnw&MMBUcLHyV&d*Sdqf;f-@Xor
zmx{(w`|+_Hdq8A!-0|a!{7-(s$T#Bm2GVZt!k11u12+8e2gw)j-@LhrRd4<JRt7<P
z_7rACJ>n>03L(IccRWzN#o`&3mh42B<NTIf!7t|x)=AZ{7uMW4cI?=TB;m`^u)gX|
z3#EDaJj`e#ln#PHS+ejuqOX;~T%<#xp-dl)p+nF>;f}Byxo`Y5PJW?4)iIbM1Ui?F
z9eWr5l14_w;eaM1GkNJjbjadDy!aD>GuodRtS?3D`>Tzr4|yG_%%)oS0j3%B(ki4^
z5t5^H@B=0%^2Fp;HQGX^=J#jy(`ygUpE)yN(4cY%ki&JaKqF9uXCQOJjpLsi4uHuB
zg&&S;pwPDM6bp+XXSe?ddm7p)w{Bg0t5-xc0edogP)^JxY3STjruLI$Zh)GGUN{dR
zLdV6O?lJL?+`jEp$1OJty4pL@rf4aO$u*0vRPWR9O&WWozmCo-q1^e|Str4C4XnCE
zav{F`fV%dbpO)Ui-IKc~OR5@iz6^q3(%5*~=ePKMSBJ`%zfb6>wWSL{<4!G&Tm5Gr
znb>jgGE(lk9GCYRx~`WZ2ZG^meQ(OGn$t-7feC6$Iv1d>l-82rMvbKfQ$VjZZ8O)l
z!u$XDZ_exERw;$$)rvC0k4T?O!7lVEJkBb=9#wq@#W~#l*YxqrE6zJH-~2;c`5#9S
zFV_Pwq~YNlV$x?*5SX7o_nd{uZba7IU6>TKL!ur$e7NzWJ$M@m5<>i%H{hd{o>UGA
zYlmjk(iammHD*rTjI+wf-rgRLfJ}4(4T9KGGcnx1AT-U+(D}hO<RXD>rLQ7>RuO}N
z=wLuta0=Ma`_vss_31-ma;F#tqOyAS{=F_<FOuG7VM|Y?)!xl6S&*pAxvA!$?Ld&{
zxV!6e3>2=u9*z(iCldz?0d3I1+;#sRLl(U5&F_N?0%-#A;AZs1IZ@3*Q6z)s*^cYx
zR<$^QcI9biW(PJL@83V(Mfy6eW{TZ!1-Y+<w;ZY-D>7eA90<Dlz9sLFFpfh90LQcX
zoh6zT6n<qapm_RGBs9blt*l>Lks=(fOP<BYw<H!zMNv^vK_QhXZR=LVTZLp3IbB@C
zu*GIL?k*f93W|#5pVLiI=6BF_77-^2ZO757*`POFu;2~U1)Q*;q>;jL0>@MqM3K)M
zqFN1okKSi2e0x8SPt5~cOK<qRLsH_YAmuR@g0^2J8XoKgv8HWtShR@1gfen{HzOf6
zH@9<MfS?@G0nUcEQlzysE+s~0p|$lV)G##H9E_DX%Eycwr)+%yqb;Tj=0&Xh-yfd|
zKUE#GtR5??iC|jo8mM=KS$E_rBj|fT%`!T&8*|h8-VG#Hdw0%7$V6vcX6yX-QRtDd
z6150IL{Z$zol&tO^yt^W|3nWXPz!l>Ro&0X7<%f$UkF^q0uVTsMaaqk7n;bXN!5_^
zUtg0#b}kpaKzY3t=FgvRu#RlI+sb#6lL1y8S2;;P@A%JktvFND^5oxU*DLtXJ`J-~
zTvXIQGvgGT8Phr+b;1W;mbU`JJJ!kQEc&Wtj8iCH9MD(3g(R<$VAc~Ijn2DO6ajkq
zUw;PM|ATZfdfqWgBUS3~VN~#z)21N<KF#4f<2-$6uYUb<E-eq69nr5x54?aga63yM
zpS{s&rA|jJ-{~oR4PJro&;N##zbtb(3nIW7NZbo{D_V~ysLu=(7phF=1T!J*g}~dS
zS89$Yug?s`Jjm0(KVNGNk}nK&F*Z)-3@#$%bn7umqKr@4o{Wu=gQdcD%?fc+F4=VY
zx}A~XuWMGRAp4sp_!mXX#4ppo()U7Ro@pf25sXpy4_Rd0YDw6~yE4NnmoyQwzxYAF
z2KO4^Vyj<stwGyiUamgkK+U^R$1|Nt%RGr2Uz9=4X6X?pbRE)jjPfWw00r+P&diJH
zKGWe}#~zu}qwYI1m3arSdT^{F1r*=w<vKM8^UIl*{ONidX(0cr_%);EbR2%(Yi7gt
z>moNuOGDk`iwB9HrM>*6aXZoSJ;N#I+=M<*=-QX|`(D=`-=|Jl(5fxp3(GW(a0D7L
zt}@GuOGX?t15MAma1bT^4~MFAMAsF!kAm|Q7RxZV^J1%danhjE0Nx}M@rqQ>KG0$3
zAwENojblU7{H5PGe2TB<?E{m3WxQxpybcRuT`mBnal85g+?}xE#AvWTB@M_if7*B4
zjl-o&Q;&)5uwSW~{j@y)8zmH|j?(kb2XC3R=rrFtUB>YHy5tK(dO5iUSWGIh&I1<J
z=^Hec92e4_khDcl&)x(-VtK==xXLUr$4Z1iLkA6FMO$+<-#u4{j|{WX3L3Gz!w{c?
zdN^A*cF2A`8b}xpojt?kg{o@ZdOgiK--=WG2N`|d0izZzR#;8;mC^c=cRNmG6S$fx
zRT|s0gX$5S3oTN97|4h-nsJ1OQ0BZ7a2cYPQB*|fgPr&XdEx#{(KZ4ONS$H4r2m>7
zlB(aK?>IMKzMK!H$96AVX~DlDqW@|ed$7jFop5D?b&qDdnh3D>SG8+^84ONw?5an%
z1|b$QN%6*OC;!F+mShU5=XD#og?7%J$_5xXhp1wbsWZ8?_@j2^G-q$C{Eo9(YiAUQ
zQCf%&s0Rr%{e6dM^h{`Q`9$8(u6tR{o}beo{?$)6x_HTTh)dcQ9i4LQG;=UpML;!3
z(HEL&j|F^$oMFDc{K^8_wHGf15O~1he<OWvd!Cy%dGZZqu^bNQV}bXd#wz0+rm(%m
z=pGO6qX0A(khyl>zAOOF1y0Rm+V9(#X4QD(LZ@a4Q|5K{*7=g=ckGtKDxcA^hS^ul
zCQApz6pzvY;$_&M?HMIr1YwyirUm^28_pVaw_SEhn5K_Hov>b5gg<@4yoGygHe#H=
zg%7sUnh;jyEY;Tk51fvL$MJu_HELJa*nCIH{BmQrpk$QyU5)oJ4B|!PFC86p)vUAk
zs;Ch86;Zu(4Kxg7xxT2;BPCouA=8hJD7f({CITVf-)cb}Xc4P9M{gB$E((6*5`$f1
zVpVawmXvS2*sN@4afU5}6p6A{RtLUT8@ak_V_KuVg>CNlPmrIB1UB~#un!0;t8rbb
z%9kc25{-@=GRq-;WK#cIuiK!6ksGSGZ=+k!1>Q>wZ?th(<rFe0_DnAVoP-EJ!juj!
z{@x?IqlO`uCv8}6`9^BmVoA)bXlG4Fc8kOxZq{JOvl{jp{lCfYnQ_5?P|MR*h#mFp
z)in#BT(7>bX8p@~TqCP4o_M2}8QvrF;cHe@a_eL0C^wqs%*jTVfNl+`EyLEOc}GWv
zT;7vZ*7ukBOaf#-<$sV06LPy*&zo1mT5Lc_wt0YTlcj?Gs8y>^nafiM5rh4QIcHly
zH>xC0s~&}g#>@-#YCE{duyFtz(05`LL%kse5>u^y+_o1J7MmnJ8*h?(-f+|U^{ZcO
zpO#Gr9PH!+*ZaJnpoU!ttP{=MWxM~|Q{O3Qi)T59H~VK9yZPT4fxceit-#^M2+v2m
zw%Ihf%VQ^nPgd$XFTbP2ZFXI$+DNHNRJltvq+&d4`LVQgek&>TVfE`Yjb)wIeDXgw
zNaIUNbHVot&7N`o-SYe{j@>mX7PY@T;U6;$++w;^Yp=euZuyNEY#BYIWmgn$QFa+&
z{#K7z`R~F=qS&j;bQ;9r!zJT*4#slKB>oNRMi^<a{Wii#to}64wRNk|ob!JzvDY|R
zH^H1r%2kqnxYkvt&z_xJwRK{+2v}s2xzVqrv=rnRbQFSj%`Ad15#0lEcn%KwOW_BF
zVAdTtG4Yy`($(0A-{C<~c7aW(50)ZC1*@oJ)(DjN!iG$i8;9V#ckdi40tv_`m9@n_
zH-;H;D8{unLhf!pGrqFtqLCVZaVxpfq3mML0xc!9v3xORvo*4ey2#{m!R-ypwtxz>
zoKAx|BBTzf1`7NRwfSZk?^CEy#{xkv@R|r;K-Ik3_1id9A{EuUGqG8m$R?^OA|hgZ
z*jAmE9gapv&ph@3?fF9~l6>Sl3E+;h9=&_-9k_5uOpN=IB_EM?5IAVBMPza6%Ru$T
zk565}WI(VZ9+b;Va>@R;d)&CloN#aQh(IER*XrqqCB;gYUma-La@ONDSN^gGjI759
z;BYC33&>`_R_U(9-iZe@^p<clBg@#Xx@yIWE?v9ATs*{d{4ucVRV8#5?ij2sU5wrq
z7P9nfC`r}|1`Z1`Y;sZ{9&cLlN#NCAUWW*Kz^G}{c1DYs9gJ_?jRMiggP-Q>z4$$h
zM#<5$a*tui%^Np1>m**k&Y2CiFFfKoah}i2mtDY_=4fX}zSxpw%f^lw!%`|HM^tLG
zi%gnhj}*a`2dcZ14rs8BH5wsTST*z?>;!XUT@UQut#o8!1xp|&L_AW3*F9(^_-(_e
zfkXO*xVGH;46pZ4C+jAS86WFx1ofH)c(c$kr8Jj1Cm+&b+8ANL79tFUKih?!o_ygv
zu;bf1rC}NdsEaVmq8-5+7D@uj+2!@P+I$ywa{OVQ%MbVmtYvv}V&nAz0br~mm8Tv7
z;|Ei022A>jDk|8zaQ4%k`zeDwt+HEw&LRu*5cXT{9W_nONPH>Y&q$hO(k3vr>-fFp
zf&n0v^P)q*-G%vjjNjbMqc5Fe=HU3?X>f7><)urpYd1;r;p3-I?*?ghM%hPf>yo0@
z$bx6Ip5D-3jp4-{8l2s1;gfw2z1z{RshS|Z2!j^yH%}s9<3{bLfV{#lm!6)^e8<Xn
z0?k@h)E;WQZ-(|$au>eMjlJ|A+Mg?0%N{8X5&6XfaijexmppUn()6(O_N99@ZG6*O
zXC(|QtJkaUH$ym6Axsh`A-TxCJa9-vtI}=V2JQCQK2TfxR>*BCE->HdGeHR}oO3RF
zRJ%-?lupF9U=f$*B?_Ye6MmlRAnDYhr~wrzn6Z_XKN}DuqQ^7`9Ymz&Yh(^!mqVO_
z>sT7##0ulxZY~@u#<B<N%<5jslR<SnJ%=poHe?@?*4s-KUIQ+Ka7Hr0Fp;nysR(GW
z;abh7(S+fX+*Y?ICHcmUb-Yz_a_~$VN~Lfcn8M{u2}Ynn_Fw4=;c@UzKtT^rBV(1j
zudgc28u`_|w|{o5+iJTti<P)6`QnMM0f9!vK=9HRt{c|>cBxHlAW;ma(B$RCsdgRj
zhS+02gj|w}Yclos^|1Ol8si@=>_vC$x`C+9I@jdu^ZL0^(7}uXw{E2glUE(q+q2bO
zI}O7<9L7I*6$a0I%)YSCKuV<rSsCf+%MoE;>f8V6hu3*=FRm)J=nC<~b|vx_Tw-Dm
zAD#;;lCbZwRu`Ikq5l<HI!zZF49E<m{^Ug5=aCG{d)1=DBU^MA_$(njDE@gTpo2hm
z*mtn@>{%_A;qonv={JUAbr8FRMVM5aYEb<g(BsFC+4QS2Xo(f)G7bKxk`neEwMeup
zrYMj*+P71uc%1%fYPn!Pk?`+*7cn3ZEJGU~MSc%$J<k}mHi8%TstYsCL#_<^$G~5k
zlpWLLw-v8etJZd$)7(ktUTVP16$?77n7*#{3bQ=lMiW{edam0=)Au)p);3eF_D_?G
z+Pq#fZ}Xyn7X#bvFu1RHY1kj*PaHTk`}fYh-p*Zd<)?AK+<*CVg9g8iu=Yw#QMFCa
zkk@i<`iEBGBg-tL0(T3G+Lk+y51xH-iM8}<dB3FlT|y+-*R_N<x@zc85-aCG-^^E<
zz5Pd=_MIS?^xP&_WjgWtc=i#(?KjLr`fxlVB3O6z=_)7UGpG&X?D6^Bo0N<BEDaYD
zg`+F~{OSJB!+&Zy60XWOik7oc<Hnpqkx@}Y`}Hd%$^gpO+G2mCW%b)>D2dzYU!p5N
zuCl69;yV<~3HV54XL6^&ZxT+Sku|DSia+BZWrlQW`sZCOBobfclU9wIH#yelFu4%4
zge|tOsmjW!&Z1X9<UD<n$9pe}hDYObeE~Jh!}uP?p-ro)h===26!(tNhUKO$R=fX-
z=f_79xst4)TN0}qZ0DPK%8Eyk_caS<c7{!O_5OWw5zq&QMm5!&BIZm8K~6Z-CV5u*
zLA?R$OdlbUjG<RkS8l{nSX~m~d8Zi?VO;^Uj5<9+2-sok7!l5_lSt%Dd1LriV==Xn
zZFZK7nPHQ$E}y!NV0hGN+YcO}6ds}OtgVi#Ez_?p)<@2#!#0wKqzzebaNN?kxu2Tl
zn2{$_SUaP{=|pkHLqixNH}mw--(I{wovN>H#mwozzlA%?kNhN&?Dup#DHp%F40Ip<
zE&PFfC~Y0D+{;R|nLTBO3sYw&sJ1J##$J;ffBSncTa{!y7n6IookY*cYt<M8kBpv&
zK6zI&>5qDiXg(jHb)E{tOL2-)>@RyAb!>Bot7*y~uo&KFO|xsM;`Q+*9-gmoIp;(V
zwhRwwD*j(EJFQG5W_={*8ue6IyZ$R2L_^Hi#P%A8kwa!)Ua>)Zg#2W}I{1grt&dD>
z4_3=Yi;~)j^d#y=gd86{cqKaA%S&Puh?rpi#Q{uq7oFY&DqOYFAoCF}?_wYJ%hD%8
zOu+-S6MGyF_m^wI2geQ%zWVm)!2$AxO3T}(`bD%iHPw|S0f;DtgINDeH@Z~)Gd>`r
zzzwJ*_l-}w#k=S=+4mrkoM5qhiT&{G+`Q;n>j7pw(o)0+ySQ8q-va4O`?=u*lO|hJ
z@rbfpg~Nm~h(|IC6t<&|<nch}Uu3;2eKdRVL_$IaA{3-!7AIySm_&zo#R^vp&6K>X
z?8ncax9RLweT@?&cG-(tP<KT3^ztU)uNf7Er40HWRa7s3!;rlX*-JOr{{B&R!eMeH
z@0t(<N{P@vi^O;cCZcAA9eR>L(>iUh7D0%Si7AF0>6q035_nPNsXM7>@PRx>HE()w
z%=LHxV=}Z9<(Tq#QgQB;D-o-J`c$;nUJgmRj19NR$!-7y`F)VKTta3emJSkdN0zkO
zHC`b0tJ<QSaX4-X{P~p(!)PC15*DZSrCk|3_!8w3<&%iKM=i?dL26h(znIX_u83%`
zgVX2X9nBz4fOa2#v<jUDLZX@EIhmW6BSC^9oha51@tRE4(Fdq3teQ-7WPW1mu?O}%
z24ro)lQTlgeXyU%B-hf?68kegAwqaUB~MBUTa|~riUSL@99(AMqD5j=%NwN|eox5?
z<SQb=kysNzt^5FZ!$5TmfSj)I&SfRp6n{(0oS+~@=s|`it{V}FZb334zP5G-Zp1nm
ztdj=%up|TZB6@h*H6uZnIrr{-d{7|!uh<n9Fwo;qK1uC`4|^L0PVTwAhm+ptE^60=
zxhyYF5UgBX_&hfRfOYam-qwuAkE?iFQEPpu_F3=l?n6}2c2(Lu6wEg_nW!qdvV97*
zO{LOg)JZtW--P2x{PWL1)lKaOB%aM8^ibB?#-_730+{mP+E=F{--L;0bwKBx?lgkK
zFXHdv?LHN6x`zjW_t-#FRdRP$b+o#-Y}2MdK4KdHPBr15-4GBK7KYXp1vr~OdXfn4
zFnaumP*a~>4n@4^;VtZO2Nylqews^YkFSQ;XmL&)*WOM>H_H7z2(WEe1ltn4Z+?32
zO{^=kT|W#YKwv|qmX1!wlP3$#S%jno?b;=_F49e5!Z~NLkCdG3?EO1-Or1FK*Fx5V
z%z#;Gq;svXk5t++hl_@jgoGY0iGp{FIJ-CnI|sI~=7Q$4u5PrSu?T1I1MIF49%!~%
zwRHCEeZr}MEf`%aPH1DH)771sJ$T3vf>j@g<q8!Y*<*tX2Z7T4H%^d!{;0450_Mf=
z@E^C~{OoPpJz&I_;0fmbbEj$ymu#Zb{(49%%+q^yYtT6Dd=kQU8S(v+<M}h65UE-D
z$K0yXSBs;U9B<iO-K@`n9g?03Qv+|AkFgq*r_;K8Xyf}o9~~~YU}};3yrLHy+7-r)
zzF8#m(^Shb#+*%x_m1Z;p9h&RcJ}Q37ANNaCf?c2w`37&Adjq?*j^m>9IXDL43K;?
zbbBjMfAKB*H(2f1x;12CxVe@1i^Hd{v})648<dozV~UbEojYxBVWBb9<#YFi;vt@`
zp5MYU@Al4CXO<k;9MnWS&*4AKd41ZN8X+wx;(w^YlH<FBgH^Y3dAIy@ssAaynbaBG
z0}VBUzPd=n_tcdNZw2mZP#%~4t|e}zOO7V1r#BQeB!0jOdJxXeB$wN8gsjHZI+dlN
zC>N-XKyTQ?D40@QT@DTfX~&Y@TGPgW1qk(DO?6IfHJyZO;bzjE((J^-5M|{iEAO|f
zTrljYZ78v2f$Buvq^4TMVqO>?co?o<q&n{TTsv;e7>y4VX`@w%IisjI*t?_KF<x1?
zoWwT}*q<}4mIKoH_$s^#dfloY*`Gss#mJ=RQqo8dCZhTdSv353iAN6(wZ45%;>-(6
zZ?UMhPieZFSxV5?T4Tz>jb+4~6?f!rpSt)Z@cq8%m=h=Z3>;X3<5~pF?7w$bT8FLn
zkx;-=Tp=sw*c?hn`sB&<khD>wMxDKI0d$z6mz~|Wuy^nzbj%YlZ9oJQSLUOD8H*S;
z_$b6~BEof(^6d5jiI9D4)<fBbNTKa7zcg3tt=&ssz#OER=2YFusk$9kH4eKa^~e4k
z_**gCA6KlXPEf7+_+Xl)$!@I$=&KO?T>@8N2PI>_WA-r>J#->M%8%H<yJ>4E<1VVW
z(Q&<49+?;eNgFyz(~+(Z1*~iSX0YlC@E>7{h9<fG>DGe9V10Bt0xyV5c$r+eAo~X2
z)I)x(>{3n)R3W5vldnK5Uc~e>p%DQwehac+;@fiRH_DMfZK8&C^eEabnl~Sia|O8i
zb}|v8`5(X$<I1o1Lwb7#4O$kO!Z~@SQ>_fv0p!QbCJmkq?hiRvG!(Uz?x2+<&`j7C
z0;*;-mb|m=@a4Eon*@dCeqpo5&}57;F(FA*xN8P4LxIulMG`0?RcSHd5DJG*oG{6*
z0DFCW%6e^@9iTLJp^IsDh~hZL3AN_52U-36@nbnI>^m7k4f?KxBLl=0CG01xtpSE1
z*XQG2Rr5BFc3uk9&Bk7iTzbV90ddtI90Lq(L^97D-YR-zRAdbJnu>BHGZ?I+$qg#I
zRrQI2fcgV>2)mc4-@F*kDW+qZIA(UP9@@-q-kX!=X({ml6{fYHP4(t4K(518{CZ(@
z(Gr4`a_&EPfIi@0ZObydC-+T@4SAsa5mTm36V{#BicmBt80-QMGvD2RZnz;q%W(jj
z%`$_at!wY_wrn5!0<S1fmTL%6A%EkeK(o8d@rC^x_FpbQP2XQBfFuM#!MhfIocmMP
zU*gG0+`W5uU&~ln0`U|b{WolQS5V+!XD7BU-?;HCcyQcRjYTl2W@{1}frpxh(WBEp
zmm#M7#Q@De!E4X}Ijl_}%ZMwKUn##>jWz>=M%S)}2hDI~aX$*-(aWKBTDu{G;pk?O
zGz;v_N&hbH3KIma0uu^!y#~EOc6ZAug9LPOjZ&m;ga_adsqORTy%^~lv~}wM^1oo|
zzynB$amUR`tq_qBRaI3rxvDkR1fNo3isWtpAI&y1``9QiVEuYwC0V($W^hMs$5F%f
zlKBkT%*JM1-amKfkoidZZl)(Cy_(Q&4q^I)&J-o1Zt!G1MbW2EnmN`aE58lCA=Ad7
z%`d;ymU-5$5;20$Rck+~5@cW!7H7Qwc)alxk|>CGU^R^}`ler0H@f%639Z!D^p0M+
z3sBaANz764l_5<1ofF6d*I!yf!bsVJX5C>&V^|_mUCl=CN2sqWZ|k@^!eEt^mTK!g
zcvk|Ef|WjPU2xUgX>m_6_jq`SJ!u?I$q^ghWgRy-__3%cP?ctKPmMi!gFhQEVauv<
z0@u76eI~#J1@Oou_$H#}OzxQ0Ab)sB8}snt?w0DSGIVusyvpf)deH2OPb`x$&IrDk
z@G?MFjblD>W5<OqJyoC9U2e-U*2&M3eL`3CV)70E!nSQ6<UJ6|>hf;1D%*4l9!G|p
zJGX+9W5~X~zy2!RMca;=@YYBpnynTt%plD~U)w#gP-ORS8!NFo!D}U;z*M6%Wyh?G
zQJ{iB%?53fN(K+EKvBiZ<}^nR7&_DXOX|iqDsn~2J_<-mxA*I|byl1Qp4C2TYF9q{
zxtf^V0d>OO=fHk?_A#_=D;%h?yJ0yOEm*Kc6`AwySHYuI$8SnP7z=Q8NB<I<7ua<=
zr_~q8m~4`s#|JW@VE=FJl2|})`tVh@X_9|?o3ZW&vV;3tWZEqadbt=fpmetEhFQ(N
z>%cy!M8L|{JnyzF8&w||ZFzcd&0LGmB$Q>BRXLw-DC0Hy696n~QcrAV#y^R|rb0F-
z-FZc}93CtT?G`8SQK002O*$D8l8}`(>%`RCzd-gJxf#5QPxR?i$aWD@D%G$p%88Ak
zIR?YwQbP5|p;)8O3Ox&Uu5mI>45vY2_!)cTbi{lgg`&m!N=iyVNI9;BF-b}r!>7I6
zB#la2NCQ9!PX+e1XryznJ{;yz^qLqdu~LKPl?!oes3CN|>)uoSZI?#t+cr(E%*+^C
z7(EFUF!>o|C$q~2JLu<gY0ow8>^Xf=p`CnBOT|lbuKxied<UNV;7FmYVW38KWqd(W
zfmI9q$h9i2WNTZ++A$4uT{N1vXwfBT3s}MH$O{)(SNRf7-A94he&?)Kfpjd=9Ra~4
z<FkPS(L5golqhF42on{FdE~6cVw$k3D{5+^xV@Pu2^K@YkNPzjH+cFRf@BnVzm=62
zdaUDkgT>J4-d*gY=-L%2Ab%)(Kx`Eq{XWD-5DC~8s!%+AiS)I3yS>5&Aew@%I?U}c
zp;_dKMZ}a^%$aitJd7@!ca}=SVE|fS9Kc>C(m*b`cYJ;@&wb`g_kuh82&M~+Ekwzf
zj2p+o!w!R&9ljpW&aWcX=k>8^bzSi$#X&rTt6NSMS+}p)d)K+$u<2_)ZE6E*&~>8a
zw9E2GG{-#D_#@Zct#^n0%hZk>KFqMpm&P~)aL$c!6?@`(bnjlC5m%k@>Y)CQs8a2#
z+N$7eW%!<vJLIdHC7e2;RUC$xkl6t#WwW!xKv1mC2@O0AH^agJg72XF2^D@dc>P>y
zy{iXwioCexoQ$NsZSwKQvY`^MbF8PK+I-0>^kC`Vz~r#!!oNoh%kmXZQ&UnLITGnf
zrp}th7R<c<{rltd@8o^z;?e`<m6bbp>?ksoi8qs<pS-ptGO(B8^f7d+a;h`0*v&IE
z+o^bM(4DJm3>rRYXy5d8*gY4=$>Ed5^s?-@95@Hx>Dzew*cIg;tzWJI_<@s7{dGFX
z@1zk@ykoe!4EG(EQefS`dX4c7-c%_4x&1j~#8$C3ZLUo=*QrxPr*!5x{k6UHC*lua
zb?LrkQP3&h!r}RQI!qsAHYQo-XgjlUbk<H^l{0`he1Y|d{{i}uI9s553u+{ZU%oEN
z-OESDr;(&8zd_q|SFZhq*TjE(c<<gaj;dD&!yCN6x%FJ_Sp*-V@3p#8*L$mbe`~#K
zszSfD-X1#~JwKNQquvpak=Gi6U$vf@ASK0Qh&j);qBL0lUW2`K&;n7)WDC;&6DFc?
z2+9pV6)Z97dymg8+$m5WsyQ785A5vXa?5qM&V&2+MfNTYLUT2w#ro)suxzph4kcdc
zgP7Rt*^?)?QB*{X$+F3E!rIyg7;YG?qZ*ZF=f7!F*~gE>MC=;4aO%>fkqU>B##9!1
zUB7ht@$tcHuN;^dK8!^!#9ck$`au_2)a1FV>bUxv)WqkLWh5W(xAz<NPVu_NwX0Vy
zH-E!?(s}eo0>BPeJ<iIiCd{Hwzka_MFgDz*j3%XsjC#Np5Gro(on_n7$H8PUof4gi
z0H`24<{gJfP|#yC=2*7!=FP4>dwLbNC-sANFg5iV`<AwBvCf{1mqg(?rzZU{?-Nb-
z8(yeuDMt$Cr{Av^Om}mI+Qd~dcC1(`?fmHw;W;9^?opZvp}u4^+t}EE8FB2e#AoK}
zsEWF`;O(*L#S4BhIBs$7mYr61)G9}UBIrBMIv>Y|3`fUqTl~!P=OLH*jLzI*uYJw-
zHI~)~8h$!Ez2eeoaHdw#4dj}^+oGz&I1C;Kfy08E%h;`2<wUJ6M%06#B!?6}_8z~;
z&-dqSB9euG41N`Qtr26#{t<19ONoWQ`yA*cm-)Z>z{Ur(0vPG}Hux66C$uW7KNoPV
z5kbJRR5~=8(4_0vKRh|}>fmThSj0_nE{H8DzAcnFv$Z=F7pKmjhmv}i!qqERa&c0y
zR_~Paaf&t$DK3;&oefzzs!q0nY+8!=U_bkxDj1`Ut6X3s$&&qgJ_cKM@4gJuORAhO
zqk?D0#LWneaNLsy6()l!lh2jg5E#N<OKCOSYRw?)tBoomp_WynNgU%tY&U~eT__;+
z+}|A8nLkqhtn2A7UtGvoNS}mkamtjE)DXBxcUT7|3NeFm=rbp^M|p9vINkN6%G2Wt
zEVa3dw&s2UL+ys7Kf}Y@4_$fu&8#BD%3b#2HZ=YDCY=sx1c^#Aifu4TGA=PGqFFRp
zN2tbcb!ZS7mS@kLX+3|{`OWI#!J!NipzbECx<=E^@YKthvL8IZ8?%STlwYB#mqjKz
z?JS5&As1LBWy5suAZr(w>Mtu`?fhECoj$#cXjXuH>@$yP9HDfWd4Q7_+vhy53R)Ha
zd}hgm;}r*i<Q=mvcX2#^^r+&1`To~!0@@D<J#{Me^GU8UnC1<WOxVJ{U;AD3?}8A;
z*s-^ZjK(^g1+-XaEl#A_LEnk%cJydJ#LX5bxCa~@9ZkoL>(!&jmR0A^o#UP>eCJzE
zbIpuEpTW;nktH-6B{E`@(iNH6CO+QYAWoRuVi5Wh8jjKvJ=dJF-m!W=qDo@J`|FQ5
z6;KwNk)1oa=ZYcwVq#(@hHE+29_)B(&@}gf87QIMxCUUci1%WQ=%exu-y#tK<4jCG
zaDNiFw^vtn;hzlvK1zNOB!o#ttThpJ)WBg#gj7{kQPwd{G7KSV0?)+kj)K+h+*6F?
z99gShahb9*5S7@?Ig_{sI79RaFyjTl9ay@4I7fDQ?8c0!9s!11=|rSERXca?4C;(e
zWKN`OyPSghdX&o4Tt7d*IOs0akZ2V&H9z4Kv**`V`>m9IXp7|W`4OAMV8NXyG~~{`
zIX)=Yo@CGgpMmbMNfIb{)4&JR&^F<<@5=oW6%W^T{H<`z{GVjbK7GDbeQJ|7KR4b1
z=<u$D?{AmB`x18w0tVCly3;*|K+TZ~DrD4y8|kke{?qd(XZ~D1k568rd+0wAPy&Yf
zwY}t74>pGHdlQM~1eJQW%ey}3EUHs*j{|CFI<(>~KAzt!kukEY?ae_kmAd^p9Fu9*
zbaL~fUA&rkZ$I3>-Otp)geKw1x6E&rZNIs*pG9=IR+mcMqy^$Bi_#n4dUB_&R`dP_
z;Ic;+UWAGfPvCbfArgtXP0!9kPQ-^>2fJB0hkgC0iBFcd`bxYs7d?U3WbMC+m+3a*
zrw^b0O1uP!htN$qo;y^bqU-2(E!+HDED>BBu;46hWATsDa$g6-c}=OTF7!-MhY}hI
zCDgk^cXi3LZt{F@*RM`1X-6Tg+qNMj5h8;4TrpvH$3K?y-1)cttG+QShmcnW9!5-{
zcHegGl}<(?4?14E^4d_jZQnQz6M5g%w{=ZG5+Jp@KHyOuGB)yPO3KA2VNRK&HNB@c
zk+N*ouehf$DnW*`7XAq{dvqkIwuVM39Xvi<$lw7=0gcy=2uVAR@Djue0vUreKrY%D
za-3x4<#X6WNO}B<KrJ;*H&VV-jmR6A-$Hlubv*zGwl;F<ZrE^})kg%{y2_LD^iTLK
zD7Z&|$6L`UMWx^1pcf}C-p5s}>Af;^^qH8UHn9m?1JbNCXk<(&`=DP$DToXfw@0V5
zm)mJ7l%5%4u#PD(1~UUfB^U)=T{j9=RXQJ&T3)Jc#}Gwd^FeZH2J}miYfn$l8wY*N
zJON08bQtN~_ObJr82C#vC&;jkW%NPDF3lwYw8!p%QiIkMYKI#c^o*DFt-iM_BipU6
zdq{H63(&#fVfATvyD~Ofeh)3V%H{vqdz^c`ZFTUAlYK4D9t{tFL$D!bl*-~BaQ|?`
z-5{Ner~xmB>V8u6Q6K{q#0E-4EGwk3s0<#NzP4ss*yYO>;giJ*K|U9dHbgzRKC4{w
zyUA;uVgf!IZ~Z$g-$!Rk{GSi(r=74kV%A+`AQKfyGgdESa-$N~eoWxu^f%nAU2CuB
z>>T~%Ot4JJfiydE$5yfTk9j~WD5s_+wfvE;ae@ZvJpL-i0iF{Ti#10Pv!Y5<YxIxY
z)jc~MX@GlI!E`u-9FYvF;@+}y`o15le2}M-q;Y2S>S7`!uj|S+0jqY_1-e016B^bp
z=5yfQ7Km_6l<Ad_8&#QyrQejF?VRhw?CW7s;AvW+Ke}?T*(N>g#j#WoAR$%*lP63v
zY}sRzgJy?ALtzo|jz-M5aFQxi=0n!qI9&MOm>a#bwKDg1byE!aXF0z-dRKzq$?-r8
zlvk68-8!-onIk7oEC#1;GypK?KsQ$V0*9ohQyY*q(Ai9ly=$_vt_H_iY*v4>#bbB|
zc#N@XYG9$OwYXX+DIIhiW{wzf1;o5H>$?sea><-C>^taVnO`66lGpA9<1F`S4qO;1
zu8b#K8NiC60qC;X-mv=k^|!ZyZIaLIb-UDAB6pF-C^=ZamS9Mmo?<qrW#IzG_-IVC
zbVBSEK_beXRhJ&k?_RZXB?}l9k(t2WvWRw!zp!$uF3VT{Nb`7~a_+Rj6|*qOAP3Oo
zg-?F#G=w4P$ixNN9;~b2v!8kltd{UKbPuRoPd&aLQg*4I`-;T-$FJWF0(7+5Mj{96
zT-f;tZr5YTkS~$#j`b7lBUdtaD|aLs0eYA#`Yj};{ep<@`8iqoGLEF#(IuZbeVQ?!
z!JjZD05HgZ{*sVxB6;DJX`uP4v{(C!F?w4&91sMN)fgiq8bSzUl9~);H#9kY(H6X3
ztWImw=J3>Gtd^ATID|jk$snDhg3?U}5Z4;N4`V8za6O;HyzlC-J0HacjtfXsGJ2Yy
zn7Rj-rlR7YW%*-jR!BMp<=z}qZFx~&E3wn`gzmmJpCTb=K5lC-*EnW&&b@ncG*47_
z_;F$vI*{deO;xO{dfllCpBSEe^Cp|*LK~it7mm4v>&z)l{tW*Qwb-|T?v%ZnXXbPc
zYAA`<$Yn{2S#8w&SFbL>h+fEcId<|SO!HC-GE<!u-@L~vQP*6x*QMXLFse%8KN4p*
zb$+82>qq#fi#jGqCohklC&~;NvTJMHyC&WGD4k@j?4V)@(VMTrN5xm;K7oM31KQSc
zO{4mYVOS#hwSC>cuA5t4Q64L3sAm-cbCI^u;TZd@$djgCe$-{#PPagCAim^whm79z
z^G)BT3(H%MioLmo5&D|0mwf{vWf=L*GAJGNrPP;1w;9{xx;BWHJYPP~3WdZP`vww^
z-PRgE4(Rb8)1-5EpO+1!stLK%+`vYGw6jglKf$dOV93rwlIQK7g7$z*8XUB<v(v~K
z{6EuH!8r+7z-L}|g4@+lgd|(M_=qAZ3*O64e-&n#j78KWyoLl*jSqYG>6;GXzu=}k
zJmmN6-fixVegvqaUp<4dVaSBL8rVrY479&b$)G!KC?f+hMOPXJzg-c!oYW7%wa~Tf
zW!aP>NREd9abQiTFtsr20?s#8^Z%iUS3Z6G*L1He*EqoNj7Rks#2~DhATk7Oy_p)v
zUMc26{Q1ax!PfxkKP!$a^oS*c8PbD3;x?WT*G=yDOc{Sd!!Vm6bb2`ynb7K8?FZU#
zi`GLE{|n3!<%0CkgLI-6dmjU;^NSc!0}NZYYK8rL_Jj#)MzrEl(Ie}~N3=foQ&SaG
zRAQL}SGzK;&W<3UqbR;|H;0JN(${A;PLLZZu3%mL2ZYAPSLxcoCn@|eQ%ehb)k~eY
z@MFg+=~YdSOx(3?o7fHa>G^LA&_n=S4i9H=TY$8YcNGOAYm!JIM=g4C&z>0=a-hu-
zT8D+%f?BgyaCU^_qD8Fl6ziHe6BlYJ^>H|U@?<*$F@zON<SO8pCE>`=Z#4c0S`6a3
z@q`nF$H}8^^aZZwP80I{pF{;4hM*Ug5=NT#gCFnJT|F^;@@z10J1ursaSEdzn<z40
z`5lm3=yLmvXH-vz6NGj8rMG!%h;rz3e7^tW&`#(cL)cU_%n=xbnLJ;nqrOMx*><Aa
zv$wy@0)wf?vMx9VUw?AIp(4vK%$vT#E4P5t5zN^}rLp*+{#n<h0u8DR`tW_IHb4vv
z4hE4iICEy^em&Rv`w@hg;HRwS6I>BdO^7SSS^Xng&=rg@(hsQz6!DNOUKwUG0C3W*
ziI5!auNaAe8F(Z6Rj5nZnc4}Pq*{~7DuuzdRkkPznB<B(A_6&BbCaLV7ui0w5Y`=q
z0Jt2*SrQ)N^f&!l{|B7p(Hvef;~mri<Sy?0GlP^T_x`v|9Bm1D-()1=&ZS(gd-v^o
zku+rA_}E823Uf&KHdyx+O}LBb5@YAdlS0FK_7lnT_w2N=MR4rjugc%#S!F|$0q+47
z$L=NeL$={rSNt(zgR-lJyWD$N6SDA6euWmM6!*Q^yR`VAjW9dyy#<BD4hEO#FQ}E;
z)#gJs6eZG+pk){RNLV`BOf7Bg-OG-zH#i8TS^|PlR%Us@VHRSn!a}8jcNu;nAUyuz
z!}G_E-G08v?5r3@yc+ziMbT)x_E1brmXobeR1NlTs-|xAvw^>8cGiurYj$+LHbUYT
z(+H7n58bC-o6mjEG0zJ{dDyFa_lu~QkYWKvF!=X&cptZwMn=<gdeMuGFQu;t8SK9V
zE`QN0MQ8b<`d7U%_3VG-TphiFpU!mrc$8&M@I_c?GFeKdtmge@l6B}Fw;RQB;<Svn
zGCVEvjHu1V*E{{OX%pH0QEbZL%gO0%#W)Tk`YBA^h40^!y7GkGCFB&288Zg^1@b4D
z5D?Aa&6`0Yi9Y5n`++v;QxElW?|EX4YdKzMSkfb*p(~M$5%7-&NpIz;$0>d-XU3{5
zgIa`1*o{D8WEp754;%>^nR&4@>g%qStXd^bxwe~#Iz(twB=Tr*j%O;Uijsy9@*&3y
zTMFo>F;<J1%bGwADZFKbEsPJF@lCFJ99IFnIO{|0&jDr9mf^Box^ksh>z$k6$6*3-
z`Q_=t2;2=Q0qVgd#LIlmCM(a{8dPi~ON0`W)VMLpFGUBd-L^$?wviU8H`cqg0Ri`{
zY6x-!9ea=bRX8<bm$Hu%m=b~Ur_$29w{HF6?~kkj_i0X~&1g<@y0Y81x9ace>J7<3
z%tZ-9%F&TlsYdRzX6SDFXFH`a=D{4zzzJhgg1#Xd@^^k)`;NH;>=8frj$k&94(;9h
zJ#^RHpRN=Rlj|gga^GL>2IfX`BzGgLgV7dDkWP`)9ce|&^oCYe0anc<l2QE+^yAG#
zhvY(Z4kAcqyPaFMXaXmKR)P+7Z4y5`x0#_3-Dvp#>0>0Z>R6s-J5OpKHbf@W&T&Xm
z@F3^o-lkWqmh{?ebgDl9fkeY!$ffyxDHR{O)M<Exd`KKDod7RH&!m86Ncx!~A{Bps
z>fTrFP!LZ`+@=4}4o#M#0TQ`7?NBiirQQ!ec3kJSwR7_(&DO7$2<l{VC*N<eFMoj%
zqTdpo$~P>duA`FvTCZ0$z_+<q_t$DSkpBJg^l#(@Gwc@ia4ZF~TfT{YnE6eVJ?CSo
zzhVW7iPK|BV<{_=5`nC+V$IZJWCnPRJ@T`-7{G@K<S^blDDCVg+w)DOzfWVPV*M=!
z;{AWMGa+gJ(sB}mj`FaadmK`_h*XX9*v(;i(+$<G!Mp-dzo9_n<(*koIJ?3euogEp
zM>-G!WHl$-oIUL}Wlz(;)8x?ie1l;~B!Z&A!=<GwS91yov_t6!NzWc7(BZUqB^d0`
zTuWcE>Fs(Hm{IjeF5^Juk;+`Uc#$NOSRw&J%cz(u>CWjk_zDdmZ$ixc2wxc59Bt>$
z1y>~I9h?M35^zlo#}qXUq!$9_!sF2EAv50FZdxN2iolRkRA@gcA9+?k0(9Asr?>L`
zV`Ti~n%0OZfLTi9Ixcb%doAc^%JIf;>M)oXo8K1KT>`f1s5t`F_l<{CJxlGV7e>%^
zSqQSsYGR-ZNI>EJ#C`)`OMAn72kZnDgeHt{nnk1X=|gpgn9=&Kab;&xhP5_eU84v_
zVH|0fQ4d=%-(|sfC0O}dTk=oa%xfw=;WZAWzsYYRHc!%0ebrn}se|udpFpj{9ky$K
z?B{#qNX_~I3Lul%!p&8GbYWVGiX#a8@|7#KKTHQswP{kZ4v;eEpPCB-d`yPgowKM|
z0}8<RbUJy1GnSiH+^cey0+}Md@68+7F;qd`3W4f+w=&Ro&{G+ku6qA?g1LDRDulgz
z-B47}4-gG_X~c%br7J%B5$vp!H8<|iA<;LG{$U`S-tAic&<&_;k?fu%l$(zkSRBGX
zCHF){##i}-jJVpYf=E?h$>`%)cURhFmOyas(Gz$p)D;H#7<adND_XrE{&nrjAzwmR
z!uqdD`2)1yN`xi-fCp4`IC&MRKZHjuBJv5F>)x56^u!ev6~F_~NV!*i5K{4Fu<kDe
zJ-qe;s%>B!#LFk9Dzk<=FpzDo+y0h{%GsCca286n02%*~jn3KQ-m!WD@?YHhh+F^}
zh(SZ2_q~`@wv~!X4Jl%cfBGr>!CP)2ZaV((YPp(<uCs!Y(pU|dkCUk@X2bqfSB9T6
z|AlGm(K~!N`!m*+T>Qz#1%Vl+FcRm(yL?QSGnEnZxJ2dm0d<#wq|pG$)D689uhh}i
z=6!>*m0yf&PfaoDvnF_cr|lDVRt;~^U0p6&^-28J+-~yaS$++)ekbUGOrDSHG({%Q
zFgM!CC&}_&4X)Ka`1%evjYTGp^qk%zCysuJ*O<n2M>UxHx4+-tNbEV3ydDtv;^j+T
zs%Bfs{+?3w*_{2Urs~qmMWU$1eb^<ifwT7UT-PfVE0_Np*%pateEo--z`xW@^U`z9
zxhJ+q0*tQf*43j|vrJ4_{*A6>?SnPn#%Z&eGj+Z6c4^uqLdWd)YtT^o{6CLA_5dT$
z@FNpjOl^XUf|Ljn=W*E$^3q#iZ|^d`v8?p<`L+s4Q&d$g1iyLyyg%u-7{%1CA*|;u
z>KsQk#-G})5W8P8Eh6SHfL)xCIrYHEX?AT4ND{qE!Z?#0amA35Z{1UY#!~hUPDh2F
zlw`}Y>Y_w2Id;VXNdW*mW}Lrcr=?V1UHbQcYoZr^^l0iEr@A40vVp<xq*B0y#Kpyd
z4WZ`rBf-}mVijmZx^l(lM|Pg1pn+Oi-hO^Ojg0&6L(2XzXlUgVr{X)Lj?`XbaJ6_+
zACCHzP<d`BrV8#O9$h#`5f7!=RWUc_tbWyzMEIFA7dbkLQ6eOb5q>Tz9;DfDdTQ73
zu1k#u*dMp2*+t{u<=sTLvbwBb7UUr}2a*!DD>CB~tXbSyd*DFSSc{*WK0>pK-3U)9
zm>XR^0+Jp*h=<Ihbpjg}Tc$ES{yp0IrrB*X-2&l1$&|6pM<K4_jw7F$SkmlW&dNB3
zR$@eb6nNL(7Zl*OU`Iv36)WK+#0CTzg|7sSW-cNp{JOU)irLTb^3JfS5#={!Ja%8%
zEse~~+&5%}J#<*gOLL_F+<_j9X(W1Qow81lu6sf+u8RRT&5r*f5prUz<~;yF6rDkS
z{{0XiJoU!1xzC<`r2bK2QP$MQg;&(nTjfkwt~~$msdum2>G86yTDR_O6gWPNzH#^7
z*e{4gS^D~xF~hr@J$2p+$YEL=95;`oy}&PwnHy!3OTEI%cFG+#&qgOVio;&6?3>rh
zcKJnA?1dQ@`swR?QpjPHfmaOH0h;(2u*l2}W(P!u^i|^3zVL36&Kltwokhm;_z?!O
zgsk!Pois2g?nvE``uVe1kGAz7lF|hsQUgQ(fxYyB+@;=z_5yh}-t^+L9ZrUBiM17-
z6B0wCqGtS1UZ>Oq*JL+7JWbjaS#`&+{nZS%|4A#P|49ML)6C44aA7jhVPS?HHVV|j
zN(R2mZOK;R#t2Dp+vL=I$U(;SI1dE;Luk}ZWY{#KiD+yeJ-SfQjnA7!c>_JsRPS6p
zK7;9j<z|5PFM7$$!`FfV+ch(COyKA4QAhsmmq>CtknO0-n=9?654Nczg1fd(F=m$s
zk~OYbuJZ9=XHb6k+-|TA63K&@ay*EvvEcv`aUci@XGauf8GOe${|A-bz#M(zJ}+Hb
z&5LHj0+llzGo~&;;>SVs{v;(FVL#&Q3V(|NcbB^Dh-oN2trIi@o2p@11BJ;VhZC;`
zt7q_mvVP1vXn^f_!e5pwIi>I%pg>zGAjWjt&F|(!E>3aLB>2fQ_lj*^=N`=-N62js
z8`bh(y|R^t)<KBlDPmN-c<B-eM7Hzi6Q9HT!h$xwh8<DECFF)oj>|DSJDcv0(Gn@+
zKdSxBv#-v)Z!6KAb~yIr2bHlln~z(!Nr)^rM_Z+M*gjJ6=KflP{)%#(Zby#%)^eGY
zL^W?Ao!53=86uW{i25g}=GE8Q`U||*T5(GAtzK)cnyP$^l9#b-G>PeF7=zc#vg*7|
zi#C63AU6beqeQNAonb>|)$PCMEK$e4pR>gLCGD&<exDAoKoC>Ux&f{6Xfrc2#G^4W
zdf4{FXr^Iz<vo&^WZJM(<_TrL7k_vu0LPaN1fy-XM)C3w_6w^l8l5_ISjzS_^{T@}
z{pB@UU9YRICAwMzz4Rh?_xMRV1?nM}Sd@7&@*7J$+S3L|S>1?RLnb5mTh#@`E}z?n
zZZZ$uu7T{@uRL<=Rf+fSw}!LytQ=6BdZa^7nFiuPtz^@`5y)$^w{re{bK;fF?V~kt
zV2jDN#wL1Cs;ZJN=<6S!-$~jY==S3X1%@NZNJy)K$I|DD)kP=~eq@7v6yTSSOmxT7
zOdb3ab$|ecGh6lgH%E-c0;@(5S`Ez)8gzivbd{_hjdyu0LvllyPkz(!SyAVc?#9Tc
z<;iVwyXTm8=r_`8Xcow5-f<!9@Zr}bF6S&_7zjD{)JEYQ1bqN|M0|K^;iJB*y>Jy1
zki<ktXI`}brOB?Bqh*&u@sW1NZWTzx_gPUFA__`MO0z@GJAYP5xZrHIK}haU=D;X&
zr_|)KdIJXu8E#tm+SyW2HDSl;vV6Js!@&sm{RKnsKV|>~c>cl#a4X=ZOaNAeIjG^k
zISRPN-j#geCIU$nF;6H-4MRQwHW;j%a%?JA5@to=2VtNC?lD+LcP}E?09$}|i^Kv4
z;f}zwAQiL1#}Syxink&gLN3Sth-g2x)1uk>#Ihf~FN;1Ygtol#gD6gCg)8qT!Zsd>
zgaMAMsQLi!lhL-{RsGeILMv$E>fzvfuS|KK(P!i3h>$(zx_0^|)#U#1REZokSjXfJ
zq-}X=8QFV@RvMq<wzcbKD{0cu!>55e^40?l{hD$LcqteN7?5kP($BNp52@HFL&NdG
z!?LQT&}LX##vx{7yQ2fqG?akQow!j3sClnln?SM`E1|8Q7Ubr#X}28<1ZlJQO)M!w
zCLRkI!<<t4C8D;cH=<?Mx=+}2JDatN@Y>`*v}tyox0x=LV?TXba37WDt&;w)G<0VF
zSwmMc;H}3-hffEpwMy_bHB}R&yf<O>+}x<F>0Drs-+T6`+_kqsds)fndGtJW-h#EQ
zkfR{oU$~HQ)7Z4cC8pxo*Xb4gE&Jlp8kKVH8;%+!tM(PCc4z%4f!c5SH1qkD<rL@*
zm^<UDUi5phe2&37j(LP#&^iA8{@I?a-FPHS2CG6CTO)>*t&m;r?tbU!-vl~wYCM@q
zL{cc@u1O+^A}F!Tw|=3|`Ki;U*$#6ROupM|zm<gtLkeEKZYTfLbP{SY16g3(!7ewI
z7cW|rKfiMNEsw6Y!y7l0xGz|^aF4!c4J-l9=%5zw65$*b3}m@`D#i|Yf;h>lhM3P6
z-|7Fm<ot{nEX&F9GpG?WM^JX)cQZGtw$-jQdGv-NRzS2xIAaUa0{DyFtMc$Ah3b^f
z|D>?&t%m!un@*!~5r0vQrNb*WC5r~RaK@v5EAi+ytStwmR({wt@NJF!m$@b-aogNY
z?hbF!Nb==-_5X28bMwc*NMdUw;&Alyo)}AXJkK3HYKORv8=G4-Ed5DF23nPhBb-0n
z=7_uidfCdnCmTwC5pLxN_8hS+{v>#V&e2-|fW7hoJ73sSp-ni{cr(4rKn0PI{{US`
z;PBe85U1pU?FPR(_!w-7dhu@r**!}^UrP(-U?sw2NPQ6x^e!SU_WzW2CSWzL?c2{B
zg=8i}6ls!#WJ;2fP%27ATP32B5DHO|vC@E~L@7xuiHMM)K`NDYi9}HuBT=aD_hj$)
z`+x7d|Hn72<2~MEtJYf2TF-so*L9uOd7c+1oxo&^2LOYVBya~dY+x?xbXi$W^sf^-
z+^A?-a_U2C)Pg6bt%ju~Rgy*8VlPhKR@Tr6Uam)YeT(<{M)+uSS}3XrE(kTgEXG^!
zA2OBns+TVrB=jaXy#KIa=^*umOaGaY*Azp-$S2Fp)Zh0k^FO4a?-TO+^|W<yNe7hy
z`JyQw7S^Ah&qo}^L6YlmMX*?tjR1mzf(|z7U5bc09MA>EZ^^o?lm3x+(0t7Mxy$x*
z#^1K*k9IoS8uQM{t@G;PV%loEib~8{X04J8ny~*5&3?mh6R^=I;3bt{dU`~<Y@`-}
z;p4V%Q<@r^J%&!LH`y6E^;Y5ee<R_SzlUiVLExeiXvs<cnS*E#Z-!ed0`rbQ&sFRD
zWH;^$FG^GC!4d%9RaG@muZ$m@cOpG~#$mBr-F6QAvfK-Lo!(z0y2WaiM|%~?cOExi
zP>*U~#=@aFKKc1zA~r$#sEkqubL(hQ=hNQkF>Lz7sRGChlw~O=(W8fhKqKL?$F8kY
z4h;VLw^CW3zSOHc<~O&#49+4yWw6_kZf(0$kgM7WKm)QKe*YKH(7pHnHxOMJ_nR<B
znk8Js06osI(~-X?h-2}0zBLRPj+_D5Bf<Z*5uRxJL8glrf4dv;7wq68q#r@2pFA<|
zC*B5NEJ+8F<XGZ?J3n*qya1-42KDsHqV0=jBUbNxn`X2)vh*<Ub!dmbuq@O%H1TqB
zoXC`gfhByApyb1vA7kDv0E7o18==&(STo~4GMoP?9+i@o7E$8<*Lr{H^Aj*tOWrbV
znvOY*;O?Dw>7BAj-{z&Qy@MJft>C9N6#@v_Z|!DT>iU)cp3TTo<NgPw9>)HEFzN&-
z1pJO(4W|b#<lCSC>YXb1ql<FN7@rz1_uts>Zb$Cr+_{9ntuRZ6HKY7r0=mfQRh4`=
zFp#mIrPqyi-InUr>mn->bXxEU>(l2*r0w`k)E#JE2_azG3!b~Zet48BT<{!Y&~H|D
zwzLjDy;m+?tjBrAkk_OF7T!kVF;Inz%Q73Aq0-Xo2;FhpqbLL^X~pDt1`<HdXw0@h
zEo=R{41yR9tETPmpRLmFUD7h?(|D=&21{mjv^#7zJK)-^z8z<FoEf}#uyg;l#n)`!
zK0muQ@yg<@)~mN(e)(L-cxg=H&Ye?sMkky5c8iPJGdwDK_=qVFzr6hEazbOu2$9!}
zq@b*alK}|qw;j#0qgm&k0Gpfw9uhFw1!G~>5HWG(Y54L5o}MszS4jLIEfy>>P7!k}
zgi{cfJEXg$m=t><O`fUMaUC6(-9I#p@x(lGUeyb9cI+%*F@+4PefzcxrS4RZ04X;(
z2dpSoPw8ENG-z{FmK35)hMG5T-raB7XN9@zCl}Umkk;02{`h>_HCOUgEIf3hXYT6E
zca`Hj0h40bnuw^@r<Oy=a9p)2l~yLG2N#X57p^jjf{*;0*<S9=4Xf(S$(rPSa1Vn|
z`IaU!NXG^@w_`K5-$d#UO%dg83KyH&DInZ|@hNLQIIa@g5hp43LdDmP#&}#8$7O;!
zG}H}xfUHxb&bxhm<G=KhwWAo+P=t|k43~oPyZDZPuhHkj=?e-hPVX~6_6(N0?xQ|&
zV(eJ78Q9d-ItA+ME^}PHnv5jd8It>K@hk?KDl2RJjAZro>(htgbGDw|C^@-?w<URG
z_MTm00j(A)^f|MPIaJ^4SCCVzJ4Wc_4h1h2OI?+nJ4B_sSlOT+XT`*{?DTmFQ!_K)
zvpX7N_~48(GWxYgN?J-v4IGi%dxH5>#6ap+(Oca)b3T?`R+5+ZwK4ee>C<o@7(r4x
ztOWA0J$GkKAK<sD<wL$MBh4u*YI+apDl5QNj*gko6s}xhwv!GYfOLaa43p%<Wl8t>
z0~{@6eYk^&GZ_{dIc=-?@z)$B_xg8@$uwHzEPTEBPhMCK6m!=gRHM~Cd+waBnf9C8
zm9Byl8E%kR{A1RVX?=#F)r8eQ|2$$}3aX977P)>3pNb<9gp-n^g(*OVj~~}$qq?N~
z<x=JS9kde>0=u52xE1*>qF9vip}_8#nb6~z9ywOp-(%{~$h<ReDab^)OCU+00HCsh
z$qyb#A2$wVzoFsNYa0@x_j$V&28T}>Bq=tWfbUouu!eY_WOGBuOnc>cI!F8WOU~{k
zA!~<Xgim<|{>H_N%=`WXB}0IZU)2k`IaoY+ksz3_KM=_K2+CKySB@=HJGsz<0|XTw
zEGV4fDmZ<q*~q#eHDl=i1OavWwqG>=qPe1ykB?*a(V)RQg!oB*yxPHm8KbV8NP+r7
zfd*Is{<zRtukDg8CB%{^?2n$3`LuAl+7R2ZS}R^<c<-9@EWmD-dh)ni7YYy3N`oEI
zNHgN4c=xqk#Z)dFzI9n$tY)}t2slLB{vIwTVCIhM<+sH(UGqN-hF%a99U!?@Qth2s
znRHaA_R;FehPS+T^>fjW69D=(uF}P~U$kb6MLj!pWo)*W&!kZ*0edS8<iyr?)zXvD
zm3LSBZaq*ec`L9g-SM@pC)e`&Vta^v-fg|wXlQgD=@$RDKZ_dK*#U64y|<W|5Q>Fo
zTJA<ZX=NpI=)o*A;hDU~4s(fz43hHS!asMUB#r#pWkgF>uP#0E0~Yq&@ua<@;f{Xd
z@B5!`i{`XnxV6GV`#1IO_p1s&5RSOEhj3ZKL)Ts`zZomFrmC#oMQu;wHy%bT8_5jf
zGC@L35)tXB%R1WHx9C>&T}$;!nm%9LIC-<-BAYaa)rk?<YzS|aKXBmS!NVrI=?<6D
zSd~B{Wx~oYJuF5GZ^NguoC`psFLw<8dw^eE-Mh4_{dx{_wzDfD!1F(8oh6~ntBC<}
zg9-uJX(L)_olLq^9oyd)G*|953z2xDt`Bah^n!IjtmQxh)y4uRNA!+Al<eL;ouTaX
zO_>Sx^VP6c7XIPzQL?%dHyH@V)EAbw^U4*S!+(0-JW1Iq;2`99eY(M6_2bv^=g)`k
zPvYQjtt(d2(WfzhWxDoohBoQUp54iM=0@<!2OzW>%F1Yay@J9MQk_ifLyeXdn7i#8
z9UFJYzA$WR6im<H#Fh2)$0%lj`ho;7hGYOb?|%JK7&GeLn{T7W@z2Jj74K$`miu;#
zD9~G{pNgfamDO>)MI0Pbh|p|*EZZa`_5to-ScE=?{28VWW2C<~HC<H3k;72j0>9iG
z5p@VC1m;6@Pd%q^XXBF_0i{wqRa{!x(^`-RfYhUonlNe740_Gw8q3l=WW%r98S}Ge
zF^2sI72&*Vtk4I+IbvM5)N-5=3rse=FZ+ticGMIoJ0X#g3&h8$sO0A5y{Y#oC@3JH
z0~Y!Okeg>c3$<r}XdxT?g0j+ct6$cKl`oVxR6EOG@h~ySGQS$+b*4)LaZ2=6`T3aH
z@|9njkUwx=rg(l=%TVJ84_&MO{vfO^ES9Jcam8E8d0!y*rBjqjyQoeZ-L9H<UR!`J
z0(1k!@?o`G$vF!_mQh!yMcyH_?*|Qn3F84qz`sj5sQBLREls2Xl!`ucW)ht!md4O&
zTZ(8V5r2W|I3KN{9>7DmS36#Eq_ltM?t_9OB2*^jGFYIrTwa1GpK$6FA!eYCK2l}y
zgjB2ZEKEH;ze9&`Fy0J>(BI#Hv5)V1piD@jc7wd~+EtTY0mc#|ed1D8Zpg*FK5yV0
zBj**LSk-SqsHv~gf(k_a1i^xfho?3K$s<{f!&KSBLvwe=QA`wg=?C98j+rr|6#^g5
z!f--?^~075j#T-Zhb!(%$%K0&6~tgPCMJBJ0jQ*`pul*pef#&%!y%+3DKa9$+TC5_
z8KH2FLZ8PaBLd^DUZrq)Kzx3w0h17Qw1SQI&HSPwjPQcPW6R51pKR990KZ_8B`yE0
zL<2-qI(tYaOihD{tH?x{AVtTo%H|>Jbu55_mBX8#O6wF=Ovp+MK0WqwNcl^Hz(iO1
z+QJTJYyLC{QZ&H+idFc1QPvITl7_EehsekvrE<e|0K_^Eppz@A`TqM@D3kKD6_>>*
z5P-qHbv-wcHJ_F?6(N_<4I({4!3aWfX2Ahw;q{v_eL9pB5<EsQKJPQ<84W~iD4jP7
z5#oB0AHj$(t(6WGQNH=x#|7g42M<2K?6eqgh4+Sg-nZJ()>hUcg|ul*Y3LI_xv!gy
zf{xiQGMzd`)c3rc*ENZ~2O~azw~}#{)~R`aaL9fpJHRT{!g#8Fg*DeKW;{@PX)hTW
zE5?f=ktKHXQU?Z%`-2z_Gm8Wu`_ZG<Uz$b)?s@R4zRB}i3&Abn>{&_<7$Ss;p@Rk;
zJAC*O<u1<!Hsu@y6tn&v<@gMwN1TS7$&+s^)DuSuS6EO0)4;)^5q%lmG6a+%x#Q5(
zu*IRpFpzB2sMkQpb5j_o!a@x7tnzEVKFT0hG)D1+a(uVNM{fqLIFm{15WNf;9oQ2n
z88oY>vf<59Gk4*8Hl$ZCZyP+q@+Yrb*eTzktM47QGrG<yEPY<Mr2=VLF<US!CpSC$
zb7SMS`j@^iR(?nEr6wji;!NElkgM#@u)ryfwcAw|21HI+_N3s8e{%uGwla8$^I3@K
zu9bJV!=?N2QnM?R^T~Xzdi_0JqSuci3@@E>8EbWQIlxIm!c$Zt@Zg_a+hDj+36FX%
zLzyS@X0!YxyNZi16s<)eFo*1e{fPn5vb5A=*GHL|Zpe;}^AMd@{E6x>yD)5NUUq9d
z<K-Ga*IH=k5yd8Xes=|(QVn}5yL8I5Yz`s42Pm~`e2#2v?szHveTTwcjnU&L-kh}Q
z#n7o9_+tF{Tx~eWXr|#-r@l70s<D0%9zVXqsYQ+j>E*4*NNpPG3l%(Dex@?qX3&7w
z6531KYfHRa<Jx7USh6)6iKxlB4BME(FCDkKPn8){s!nh>1`im(I+y7p3=20ND5gF5
z<-2!jkhZBinRs}fIei?ToO6q}f1%~OG5HeVD*NLb(vuwryKPcy-$Tazp<gh(+W`Ye
zQcG<%o@SMhwz8u%V+U*`Qy~+&bX&-TcF^1e1ppf?Gd@a6cwqm2*LS?FkQXFx{hhzA
zp0hZsE%_z1yqxixE{>2Th`ra88w@v@@2YI^MYKb&U%q^79Qi|VmJ@OoS&OCLkO$+P
z)_D%&GosetN!RZnrXv#kCusbK9X;y5i{bY9lPgJ;hs!w`Vfuqu=^fwWr&A;&JLXH2
z2rpCm)EqI9scC~??m&|q8u*_5`#D7JtrPOG<WJk}cXa6T{-*5Z>*^FB;YW@%FrAu7
z+sexG7+LzDS4NNDal?VQA@+VKgYsab|L8SJg$s53@#(s{nBzCJV-PNhV#dPJDpW`R
zGh5SME_~wu?q@F&yZpaoYhyKAp2_?lWNV*7Cr_DjN}3CRX2PZ35*Kq+5o^ot61xiD
zkMQ_Ai6hH%v=*9ppR4?vbHao5B|`8A<zYN9`R0xtJ6Pv`=WmT=wO6lSCt*rRPc!h>
zSR^4YA^ahq^7#NVdBpeP9e0+@uS9`oWcmDO$kJ&R!tc59!{_{O(zeGNq@|_lDv+dM
za7CPOELVq@$`Xvfw3)Gstlh5-4ZuJ*nKYr33DOUQGl*=+rDA&49etGr1_t#F4H^hx
z-Q9mO>L=#Jbh*o)f%-`k6#8@nCc?$uguxDGDS{Ri)7<=gHJE55VN}3AQl;&c6vNAv
z*{8#$#HTY?k}*YqGTV{dDd%Kc?+F!dr&#OmwXMPL?om-Jag3&H(#gbG2_7WD8pCFW
zq%UI}S!k$(t!*zBE93ZH)gwlJTUUp;sH-f@fb6`y(LRt;&X)h=OF{|&iDCnyI$9y$
zJzF?gvP9=l3(}0T%Nc2NA}s8|n=hRAHiT4UW{{MzJyfuqJZVx`PBj#egEv2vU49ER
zKHMUORBw9Z_7}Iji3bF!@sgK-J=q?a{gxP)RyhRzL$c@AKRV`yFGIZ&JLQLpsYsRi
z9`sC9X3wjsNqK*JdlWQ)i=hxowfcZ*J5k1p7WShEx<Vhg@M8Sd=|#!(Scw3EUW!rK
zPmWMJEc^P873?lHZAwR40I;kz8$2`)?=tc)@PKCeN;K#w43#WP%gd*Z9GQVVBs%NU
zr#YEU$HnQ3*3c;5v~FG3o;}~VY6^}s_4Tqoj9AU?_kDtB$@PsYvbqZvxI8&$K}u#S
z;-p{|7JAPTfge%2%DgJUN9tc7f`-Ov39`Fu&_PX2v62~MQwaOrKrmJ|bbfwj!LSMY
z8h%3vS)ODzagO#XDv6-Y<agBdX$-jn-*_3`c~vR0%X5i|_udu;SNFRbZvmlA+*jus
z^@yUXs(JG7%WyBM2w{W{x`eYLk#v{um&ZxY5*M`eZf=S{BKhWEZ(1x_lE3tG93g+g
zs`YSgckXOoe~gr$$q@Zqq7}yI>>=^7yNTt=r19eyCA*P4(uyE^A3EI=ZyTl5QPyNH
zbJgQcZCakKav@qYCOaCr=+6Pa;1~|-m~G7&$tgMRlnBUyhRV$?U%Sn@(gcYOTt=|O
z11qI$p_eAiDgDnRz^H60^M9Ech;tW=Y7{&$J);*mV<kmu5S!N{P|oJRNk9s+fj>YQ
zSq92E!stB=diXFwPV<jxj6o2O`jE&*t^u=XZ?|)CYvzhD*|w)XKt%xQkv2hyGH0|<
z-z@l{KX-1>7R@Q!rhMPB;78oqv(YZFgT}4-6aTQ0lnVf=xRG2?4#%aE`#3%FBic7~
zc%^5&6e@nwaVAfq;2{?R^N)4f)>yidqDXLdFx@N{Mz>gUpt>%W7-eN!=&116YknSM
z1k|q!73hnQ?Yom35T|3ZHzLZx_K&^n=i>twBjj7g-qoQ-&ixuzKS$n6VSy(mMEALo
zokm=j`m}GQwo|)gd9h^er~xUzW}FPSZE+b}Wh1|$UfeC<%!Lb|$fsFhF)s8QA&<}j
zDS2oIBKTLHK(DS^qVm8Y!i~y~l#Y(x`SUj%pE6+Gs}ULoxFL~GLOTWZ!nhQ`Mx9i|
zwCylX^BPh$aKCs~*+@<xu++=uAGl@Mlng|MiscF^7s|_!sYvsAL{+;7@S?-pX^k(x
z*RC$F|KD%cc|)9&z39-#jM_n+`_xEw?;0Zf`FqPQP1Z+Y`FeUz9U3G2L<rkbZQ6S=
zG572^$=`4V(7~*>0LUUtJ*EB|xgbuQGwS$P-1|MloFH_$2gVCmuWAlGw0ngBuLv(_
zsiHPz^JlrXG3H`o$@W7kT|Dbo-qm#7;pekOEV&;!QL?sUy2ipzZBJ;+9EAV+JERFv
zN83ZlID|)A92Wk=cwn0S?^xHh?l*=(l*8%t8xtyi0~b8kaR@GUv*d-p=YzaGO<Q|_
zA7y>43kHUuxDQ3|NXEfxQI@DP5(N<S@d8{mCU6t5>SLAQdL8DhD(%lS>BOX@VZD0E
z9{v0eWqj%wWHpWa0%(hpdr@%GY1o3`-2j`|c+Eem?i)IlUM*ciG&Wd=VUIb@deH}+
z()O9TrV&AHS9t5~il^z5F82rN^9kVaYkpEuv7G{v+!<VuJ|Y_!56Aj1UshN&!j{B&
z49BM=3>6IxFI~8>XWzb4;bRf0Q{fSkUfMCFxyiEy@B_$GXcDPCWCvHr-ugQ*EeQ<?
zPdW`#P&I7phw{nI*MJ^{&LKTjddD}ZW7%Tx`#v@O1R&>P1q?YpJ1Du?d)NFP-Mi*n
zl1k>cKY1hLvU*=qdAbn-Cy~>Saa*;Zral3b&#Gb9!8x$1fOk#P6L+5Q^E8J+xfkK1
zw|REXy?gRgrykF!6eI-?9?aR?ZSLm~J7?z;fq|8;UM(W|GciG?XJTsV{<+G4<b+R-
zWn1d?>ts5m6wm*<E`_ioNA{Svoj6e)qt)#f_v$K3Faw$38w7R)yWDs1;3yyLzVXo=
z)RG57L!w)^8k%<ICbfO~^kE#&zKXIx|5RAu9Tc7<*A_bz$cov2bW%}0Tu@#LJ5z`|
zlp@nfyWRR{tL!MBXBMiP3i0%>-7(j7VW-v^I>q_JeQ=1xR4AZzn#ahoWAm8${+oZv
zB?-9;>gcv;B0WR79_JlW8-UjlK5CL9L(YYSn7O%$zOO}+2>rUekKClN@FXw>%?M%@
znopd>{wyu+r9<i}E*lye8dUI%E&<Sdm8t-nA2l~K8#C75jnf#h?&$f)8P20OxDC(?
z=<OfX?d~-I=7fan+;Ub2sr5J&l><`5rT>7Dd-mv|s;F3oEh_$BENVT3dk9l!XZ=GM
z@R6E5#?i?MF1s*{D|fMaDMM0_T~cR<+9TI?$CQ9IMJ|f75t6f_l9DsAvF9x>&mAt6
zX{~TY%x%1xg>(pZ4-_Tnw+>BgOV);W+4fNZtRcIgATaL@82o0^6mqaXEQFDpbhg`j
z-zqNtN}=hV3kD)Nc;Z7?5Jg4qaA2^XHR&l4=>89fzH>L_oc|I?qCM}Ct>U1l#Ps*X
zL_#`JLjgz%wHL}8;BzJ|*3@`lR(4HP?&~HoeA1$7dE?FQ3ezJOL>lcJcDDVtddaq9
z7w|P`K-QPn8~56lHP|4m<7KYmZ_vOQ!pxT%#0Odie~#U3I65-#(18Onc~e&X=+c7$
zjbPdW>U`&^_mlxkt^P4Oe0pTj7YZ+ZfU6;GC;tnVz=`KWZgdhH+#oZN#KI4tvK)qu
zfWPIDhp!ggUHtIVgr4p}y~NtKEcu~S$jqmEv+sHzO-dTuLuPr$-$${wgijCYkV@^8
zMFSR!jqe?GnTrv#9PS>_sx<5Rnq}iIX%EK;>?+TxqdMlX;Kz<D2mI__jvgmKz5>jw
z4Y{2M$Fx*X+p+vlKXV@;W7;mwH$Yic_0iL(gWGU!vEkHvQTFv7Q+@1&S0EHb6{DGz
zmTiO0cSsMZ+<v?M<LiG99j=MLV~tQL3lHs;#mNbgk{MCiMc<yBSAKQXJu{>1$%7ur
z*CrKATzDY==#NfiGY(3K&F^_vQzck6t$Jqn2c1rew=ddQ_P_pGftEnqE9M{jI~x68
z!RT$z{V(CF?cc&z)b=0$CrJEUxV3F)yWcfuC)A=?9vDkI9@3)^t2S@p!u-Lj+}w{S
zju}%sAY{CAxu%~jx4uGubsJXi;o-3-43CJTfl((<%1Vg?I17V6XzM<S==J>F&4g3u
z&h5870;I5^2%tW0O=ytWAStO^YV$U1m{6CPvENW--KZ}cWBbO>t5_p{<=6U42mAl=
z!qQ@NNI-xZQ?bcTgFBW*Fbo4^hyZ~a5YO4DtjpbC8zJ81fi9P{3;$J^&PfOj0pjLV
zi)o)36lQ5}xvF5^IO7qDy9A=&>5CV8$$K|47VFx{lY(<A2O-6t_Tj_Ah$?0i_U?VS
zU#>kQ8_qu-h_+bXW0jPiUa*}-vPN?o@sH)I-7aErCbzB@T`SzXCf4Ob&^l*7DtYb8
z5KRc?eU;1sM40v-X>U>FFGr$A|F-*qD_UvmHIGBnOQcyQ5`A9Q+T8!3&Pu1Ym-6xJ
z_I{)y_T`L%EG{ghqdN#rGtJk#!*IsWX1LXuF<F?Zb0{6x3{>4t4F&g@!UA*{L>j^(
z0-xGB9Xd;5*b|tRaGkF~GUND+?KWw4%z~E80AL4+-PTkchNH$o?cr+b>Yu-UJ#gqy
znDSF<F9<ZwKwtF4m_-h|ny7PD+2;C0+$;gYdg(ai9=oUZ5MEEMptB`}pmuRfwd&Ae
z7ez0f?s@iR<>}i6jybsk)g)v|#9Fvu(6p&5x)2?dX=0NCrzcR~{nh>M%a$$k*3L)j
zflsf2&F00a?bC+LZKjzlBGO?KD>OY!=sn<Qhw2$l(7JB$)_G8*(gy&b#<EN>(6j3&
zN^g!z|0&3xo>$?DO!l<)k3U98iTg<o91*hS=}FNz!<OXXa&mVcK75Cz0d5v*6DI<a
z0?g0X*AJMt(7wNU1=&iI=QdjBUS7Z6=87v$nId}{TSFQcID||cng`tjMg^#p+xTl9
z^&<{FxRjhs0&+sD!%eN?kcfzB%%#N(z2@y(?oK@jLiXFL19>xnk?jV&COrxAXHa{H
z?GcoQy^mIeDkP~^rzR+SCM0jCkb@MF4g&%rI|&=KaaN)i1VS8=xFAVMNy1<t8sXQO
zr{-TW{k(oib>BZX$6jijt~zFhf{I3>#!Ahg@KuMKZw6VLC(p_L5vVo#p^=vN;!E2n
ztkhYx{@H=Gdt=Y%iQYlS7nkMc@QH9J7(CuVGD8h8fyTv2C8jQMx4Qc30PJG6%sd5=
zGGwTgwzf0H2U3rLSU@lkmn9pxvFYQ`91+1>-Ulnw(AZBuo7OkqyT$Ay#Yb0&WI%t)
zIZV$!0*So(GA^$m4f%{(vOPjco?k3DyMC>kEe`O4*}lN6B5cwfpx+hJC&{<2?(&2Q
zNn|V}JrPpsKm`J+0|-+&2XSx6gIBBpT0aO)>_M@sT{Yc5EH>#2G&6p}1p5IF7&HTk
zl6{TW(CFi@OG?JtD`)Llq(Ji{UwB(v`-|qBKALd%ngD{Ez8nUD=Z`5R-_9tze?!kq
z;bRGxZ*?_5ig5?h&4P)cPXHTQf0XcVolNenMQF_EJ*=YutJ@V7ky0jRX7V;BmX>qH
z@%PvtJ!;PGF=)UkG|ACXC#XxFijQxCS9-<$smG0(W}8>^z|7VMW=%mzr}p0d{#nQ_
zm~{3fvh^no`X!4NeIZ$Nw-2#C^1N}pU8dB!cJMEB#hd8$RQGei%iJdbv%gng9Xf_Y
z{Ng>hpUHhyP_*Uc9g=zpZ<VQQmp>wRK=**^^@i7vlw%!kX4hR?{|3<Eaeh7?eh<+z
zL#1>)%(a-gr#=5JL%w9DlZnDpeti?;Hw?s6fniMLS*anZN@G30EdBoW@^<P=jyJ(u
z8<Gxo;lq72soJMZ`O(ybk>g4-BsyFWC8*t3ADpTf9%C0W_n?}h(uLglD^=E6m3_Q=
z`g2tB-Q>p)EA^dY>%MtaUss;AF65VfMDN$5B5oxtnw@)mVVTaRA5V|Dj8>%Lr~vb=
z38Lcdr9-bkW%^#906wvyGY%#SI+@#Be=MsH;*69QgcVCdZ@5)=ldVGN6g%t}W8!?I
zxL%AJuT@dJ`UC)L!$5V@JZ_ue=U><aX>oubP=1t)pt}=q!k*-=QvLufz+8j+vaP1~
zMQgAmm9?X+dnu2!TQY;8ct&YeK>4G5pv=!QFv}miciYeUIn6@bABf#Ysy;tn<Y#X<
z!qC3dar|Hq0S{l)imG9TbLMR@*EVhJXBqK%TdwFGp9)k`Q)WJ2*Xq@0V`Cj?KGpWo
zDK04qKYElUUQl}R=FR7K@A~9a)AcpYjhp9u_*CwS%m6_-aoP|7bH4b|NiH@|_h$!B
za)`e)EbGJ_(Hi==Rp;a1-7%W>0}yPqk1&I#ZJBrhdiez4(Y0qW1Lb<j%4um?x>evJ
zqB|mx4Y1*DsE1KVMqqXwV~vu(8@3Cz&&kfN3H!D;TGa2@F4&NO^>?jLG35u*4g9#2
zc7LB>P7%Khhm7Pn*U3alg?v~3Tj2e;y8Xh<kB*yHUFmeG&_ZHJ*hVeY_^Api;}SKt
zGgrm**UcoiF#Fz%OAi%Iwl#0<X!A>P^&_9h{jM!l(zR!*X|R>xN6FDoQeSV(G1zCj
zrHRQMwTCd#V}jrlj`R`YnTE!1K2t$8i;-jf#Kg6O4m~(^$y8Ujqiogh0_YfY5O&Cc
zz3ID7CII}9LBJ+KLZ|Q0fY{SbQ>HA?ZeNM<DUra87n<vD^G9Dp7-`TrDeJ5UO%()#
z9>J%{itf!iqc!2&eA8Ibn&hJf8>fca<CHU5<`FWaVvBah7KT@}LVg{)dBe4`eTEtf
z0uJd*w^aDEK}v=DRs`*ue#71g#!&8|Y=krNr75-6N^2)7E_!^#K5yIIGiP3w(aQ7D
zvi?5d(Ke_oBR6Xm7Y&@bc_m~pj<a`962rg$47V?Z=qwnOPM&O$_7RYcijq_OWzzFv
znS;TLO9<tfG6(V4t9lKNYdSRK@?Dt*W()P!A%Ut{+AMfqFE)%gI_9s9{r1E!n)1eV
z%}oL#Y{S8>s*}lnDVEu6I?*uI_^8(IBw_cuTY=-Vd(-My#WZCEe&*gTjCTu*kzRae
zSp51s=UTd^HJde*^`1Mp);UPi<&EEpX8GNJ;-R$_kPJwv`#^Oc)pf3}0Y9IK=ZGk^
zMgEW=;enN+LHY3m2=zPFHZc$ocNh^zaNp|N_baU!;5Ipo+;O1I$k>%pDJUPGUdaP}
zV>ggxP;-)HXxxVO4!Q{}F1SpnpQ6+R#Dh{)R(5)CiE%;bH*n;1fCh2^s$6IuBYeOx
z_0Ny8=qvQb932C$<!uECw^F?lKcW1mXq;pr*+*95mTw=13?BRgGv4k)v`i!VM$L{d
zOzJ9&ZV9r&FIJGaEK{69;7C<vQ*1YERj&_1`9#Ng1)G`<q49V_Xn1nla3(t)A3vtW
zcj?l?qWet6QQDRW6>0mWGxPgz>(0LJ^XBuQ@jE|1YN0(xehAP?dH%fo&YhPPtu0sV
zb_$c8QEu=~9?33`T~EhdqpOMqUzhHK<Wd1CuJe6HPphu?P#M?72xZn6$cC8y)~w3M
zsiRgWzC2{{V&<u4mxuJZxuKv^$12N53V~g{blDDu9u^JTTr}A@@bi}5R$Wd!5{~NE
zO?iWln;)AYGv<t2+?qPogo;DKk!ns165ZS$k;F-dzBd|u9(TU}^y!{#x@0k1b}m$q
z^U*(1FW#|zy;JiFT|mls_lLQ;U1i(A2He5*=FGuS9T!C;VQ6f3r-UFyLQg6P`8sxV
z)s)fE*VXkwtx9jMCc^}O!ml`_2zgt6)XauM0;D4h&?^0-@S~itX{Ujn(Uir}LBgxw
z*_asl_iNr&409cA(YHaV3rTnUI*T;jUxS>tmHOzMEDA6>BQ!VSQrjmhY-pa)7fJUi
z5o_JhC?Wk<<6v1k7zif*m@L@POGcZ%c7E4YTLYR)*FHV>Fm|E?z*6e<Sdm0}=jI_P
zRR-%1J9Mm$i0Cm$l&C+K<|lWJSaF@kJdtL?22B%FYxf~|_GKNqYIXi|*J%0I!zoyR
z4M|*>+(9XD<j4^iH(%eCE^_X+_pD(=+l{#{7MZuWG&5Y|bKLsq&x88@8BeY^MKykN
z%a_h)LSFZrlN~Rk7=A6MF7Jinf+NLKN%Zy}8-FtS_J_uaCvGbYeo{DA#qnNN^!gL;
zz692c<5V2w!v^EF9jEv6Jhk%u`)3J@$5QA}4x!Rx0B>{m5wboRmCBaM3II{~2yn`>
ztvI;&e{!S-ZBWJ8AMEdfraW4IzZ^d;DJfSNff(`A6+g*6gg8P#H6Q4bvo`GI?w@Ia
zgUm0jp#x&lnmBV<5j2+~t9F*bTEC8M>&_TJ&!LAPC{QJK$QnHX+o{vIUht;tTd2{)
zr6|R0>Z??~8Xc+fDHxX)fB&3FVp1_sAwzc>8X9m=TDC%OVQFb?fKEx6+=e}vQG703
zFk?gQ<7&JjPNkc8jLcvs_L3F4LT<K3J6tTX#Kd~b8|cn7H9D|nb4%m1l{pV*Qb%Gt
zJc9y<tenQ67CPwC4Z(}Uv{IGEcy<}Q`Pi1|&s$W^u2``0y}Omko3^7bCT~W_w_hci
z)r&3-i=UO-+hamP+++^Dcg`*&6>-bJyy>u&8*Mk$u!I^tahT(Nwh;YJ>ooEueNNB0
zO^ah!=k8imSX4hgI<hxXYTm#1!sLeR7}99IOCi&HTC+w+GLemO#54tINA&MM2~HxA
z8KnXP&$%(yH$5%tY~#_E=3+KodU5PYeVd|DKBOorN=i8u6@tg(m&V4}A@4wzv(rOr
zkpO3?HFz)oL&*0lT=RFui2P#ajxfv>5fh<USf9NO+PBBWd(mIJL$-?Vl;p8dm}<)P
zkTJgDCw-F)T$V8u(CKc)uTL30L7W+Z)_cgl+D(>0Up8SL6m-90=#9Vb8GHv);nDMs
zXuFs>*6oiHT`KINijBv|pl}HFR7-`U{fyZGy}S8xhMFPN;a!S{9SmN-Ze68YD$a0$
zYce>U7pv>1l*{0BDgdRzpaqzIvu3S8C@*^ZcZT}UH>~==@$HIPrkg7kuM}d{f84a%
z)@-Jn4X%I7PC!9}#4O9^&luei#><y4-?Bx^%clERs0BpGb$HG(xz*i(U+C%Grw_w~
zy}3)7Ht`JxH7=+V9P^_n0i|@H{0f5v@s`=LeX{InNHQ~KETbHF{5UA@4W#N8P8`A3
z+|C*s3JrC2lWHUN_k(VXQgwa;U};kE3v($?^ie(mxP{O5XSUh_naS#SJkxx8`QajR
zm-=p0HKqo3@yk-^0Rz7llmKE}#oGe=DEYCm3GB6lTEChhrc^+@g+>KOXYsiul~q*&
zEnG{OLJ7uC<jrikpTV0l-G;27p=3hCbk*i#DgEMq3^SdWy0P+rhC_(;5--wu7)DQ%
zR~=?hqgP|S(?g*`ZX=HUfzZ`XsSI=kxSSI(#*NJLOu9+bfs;)gZk{+{0|ZIeclNMR
zGZUPEWamy?l{z_-0W>U8`o6GF(EvA0A2B97!O;FgwnRms-iZ=T<IOkv6<40Q)TpT%
zzkcEK@5!I_9?b}`JDc_~;Zlx?KY^&|<fFe6j-~9q%5}CfJ$C24VOGm-xUhocniGIA
z=1}A0BHxYvI>!u?G53S~&O&6@)vH<XA+2idz<xRK;SQgzM!J4+e+rKNNqUj(@WDuD
z4kVPv{Es*8Zr=kza^7}>+SjjBu#qFSyQW$VJv1lM_*9(7kQW2@H&mV`)e!h)4<9nA
zRZ!c@-ld;{Y*TRFrlBj|(Q|r5aj}_!8H$FmmR&};-GJV(r)Q3>WsJ&_+(Ds={%eej
z#|-{8^9;k1fV29IwVBtdUqIKPZh=bhxg9IjZu**^Nn6H|@~y6TpY4G9k!Ls&2Kd!-
z>o#ooiX^S8Y^3LB|MFlw@4Cu1T%6Bml<6^N)~t~@R}E|ZzWeA=q$0nrxz~=^wj^{7
z1;wn-_07sTt5>g{JN-pM;<R1H1}j3no*b<@Ur-7&-7r`6T#dy_vS-pY9uUXDf5!fb
zICSvfe4GoN^2F=h8`+J8!*;_Bh5Wz2rMt1VwwPDZk*b@Qlp!_TuXLSfWK^3WGVL)(
zF(Ki?g@6;=!5VO4`ZFubzh!cKP^*$t>STS-gB~w#wacmw3W-X)X8QVk+NZ?t=VoNB
z(Cx5d-BF8B!4t~va@^EY3pYnc*JOSFtD+<)eRcKpqnWGx+j7!1v8x-sHf*$*C{&cc
zdOJ*5@S-?A+F`!J+LPCBydV7vvJ)W>xRQg8hB$^Ei`-WB8FCLUn1E5-xwA8;8dcj`
z(7&LbZ|p5nE?x|5X#h_Mf9dPq^+t?tdBunkBcS$?EM~s>(nWH>g_U_jv*!3xqPc^y
z0k2u9mfX4X2hL1neM6=w(mbQ87pTH)oFR!|lp6dg#E<4-pXjy;ln6HUKtC+jKrvwX
zHz<5*`bm4I>@xi1^A6o}LUlv4MFr05xe9(f^bppO(>cNU(hZFU%oS?Njc0WX(qmf(
zPFwj%ChIHBJ};e2#@q{Q%Vkht_!>C0z_Lvh>!WGfOaf0BdT4Z8lhK;m6Fy?o#}Ot*
z=cnn}&mFY>@S|;}8*OK=oDt+P)rMpS+D5|XLlev%3HyE8(<75yPWbwE+MU7FWt+>Z
zIj>{h-88)4moX6DS{Z>_#b5a}&`>D3J~w&ddq#hbTu|QFA}4ny?V*OfPbg3N%(ida
z?1~Z<s?q8pEBpK|6(hQyU;D2*<I#me>B6~Rc8`poSN!ou-8<2{)T5uboo?xR>DcH`
zb*9GSM+c|mKYPB~)NlQh9-(2u=u|kI=SFNioZkAea_R6*-<=+Jt7#v%*E~L8lAC#1
zyK8FhkG6T+p1vG=>57!f3aj?+S7J9RbZ?(82|mf_p#aZ?Lx0`eYopXf%-xm&?1o~B
z0v}O^k9J!a8B7M+rBf#%@RAzRxMy!4{&B=XOuIk+fmb^UY^DpSP8w?pRscqE_JC^9
zdlkSdN{zE8y>l*z)!adq7A977=Ymnw8#ljIWz7-S94h{>t`r&vd(YNL_T9PK=TZ6C
z{FZfAVy;_;`?(0TJRX+4|GhUY(B9e}f3+h1)x7>2?EhCc;NKexZG<}Eseix3i`+_$
z4ITV!7dow#Iw%oUd~#5`{FZhPIz`=RoDynp+{O<O$Ud<B+TQX1rmfKSg#X$||NVpi
z?j^KN<0#{2OY2;#u7~sUw9;qKBBV^r&F{AX&+GDg{gx1DD*<s^AYsv$(=np~+V-OP
zipHg=bjKET5ZH!1YJ8q=eiOlPJinVgx^}ItNT1;~1bda5nm>;(D9-bhLa3&>@!b+{
z?d5CN-T<bAD_EaGfhZ79&Y%APpnf-J<cJY?UT<(m{ZzZYu4v4)g~lV;rJRLe!q1+0
zQQ9`d-iC<dXA22TyQEjeyf}p+Tc%V)?`DJrMG;Cicsu$f+sT%ht_2N_9o#}at~7QY
zjBcDp4n06HgnL1>g#5?lKLM|RvKUp^<askPQqZ_rj~+jsN$n@64ozB?zKxzE9GKCv
zr>|Z;Vta%mSKRjwu%klR@qW{_w91}538g`RQ!1({n5w<RJ921yHPi$KS%%1MT0ol~
zJC)IWy3HO@06Ib?S)6Cwqo43~MIE*Pjs+uL5(+SgFhQmV?5gATf`%H>tZ#0U=`X7#
zq0q^g#dU)$0<4{+8Tr6n(L3<kuCg3|bWCso*y!rYNdZU<kk#IMIAHyxNt=lMpxaag
zd!^&go)x8}^yrBr!Y5mp-rB?Ak*~0rIAcbn6eg60hF4b=j=E;G*|z-IGp-o#pC1ji
zvm}u1e+0w$_%Sjx6eZB)Kz(6|ceU?PjD5__pJ0i1)k-y&=0vdGA)%V?=1cSit$t2?
z<e;6l;=W|4Js<h{hPM-Oji5h;0^^fM8mICFWy4omRAw;Aii%8UhZo-2x_R?7ujU4l
zX8=w>b3w2!6ser~%Wt=rzpOZF(*l^)pm@vz4>@sS8yAEc&r+qXN}>Pn-CE-g(b)-&
zNq&AnXy|J!qv2LlbX-(sjO%uq#IHTiZd2te<IajiLFbPn?Tm>rTeN6a-aF#|+^|*<
zUy?JlU@)oxa~beFF-OF~LT?7)g?X^JwS~-b!4@z3lzO$VKi%D&D{D$0CoP+C4MpA)
z66M;@B=5D5xA#gn!AzGs6~SWBpKTAFjCr5-YuBn++p>tMNdB;ZUv)n-Q<zuc-b8XD
zcS^*c_^K{Wo~*)>oN7IN`7N<QQ!XkC1vu8Tq4w2J&Q{F~zJ3PA#wC0LEi49FW5Sgb
zA8%o99y|Y_Tji!UCQW`VAs6uhM*EBs+qz{7upKtoNN9yd2{;PjBI#Frb1D`MaLhK<
zKA!C<0RzCA)RJkMH>7mKdJa&Fij95Et^$aqUU&=G3{nUBCd4~1A5hj*|MHt&Pnp9s
zTq?gB;2#rK6BF6Jk5Brt83tQFdh>-+r1pR>1cp(gM!7e^7_CX%;ntfG*}=*Jt_WNp
zzaGFG)p`rZJ^4By%(m8Fo8TDe=(BhMF}{0Fw|);YFb(TM4<*X^>hMLpV1qBLneP+A
za$+_u&Q3JT5@kIr1cr(RSq9O1xf8U}ZskhGLdQKcR{hN{%CDsx!3zL~*x+}spb&TR
zWF>@EUX3jqGfsQ`bhGhccmvb3p!A*V{D-~$SE%6E-nT|1t=DW&IrLx(g*4&<ltEDI
zfrPhJXZM}$55DQ=*STIAw4!;Z?SQNaP?hhE4eq0tHu=D1$NjP)!9lvG&0o2tniyh!
z(7A`qpRm%PKyoiyIhR;!r+z$#m=bdN$kmj-YgH}0-8Mx^jksb?j8(O;EKNjyDc}F`
zPJbn<&D`Tv!-Uf#e;_s|%V5`2XaIcj0GVVMIqcpwEoWB0ehiy~V-kJ_3RY&o^Ubo(
z_U#JbMIZNP%1{5uJf;`UpF6jiMUOuPlsJGlYj15=gfO%HK`r017hwr%1j3w}tEW5G
zCN0W^Mo+CowQpc`P0f+W$kunI<C{0q+d4eT$Rrq!l3=ij3OlCT$bP+h7b1Q<e*7nu
zEI1T%3JNqIl$K6b67&&!&o_eVXRGXw&MlU`Vs7>!{_tU8eBsqW+;T=K;SBnzIk(rQ
zzCuG?d$jwH#<i+p=%w^3Si0(xheJY&e=g`LqbbM-L!4ON0{xTk0PE&7^6i8KCw=`r
z-%A#<csT&6yf}EQE|J}dpuN)qz=Z*)HYl`Ks*|vAFdhM^5TYwi$EnocP%-Z=_~E!_
zP4dNy0w2%PvW&07S4Y<Re45%z>!+#f&(QBOIzw~-A$%^R=*Sqb=mtia?a#(@r=N)2
zm9!Bx<poZTqL0}yj0tPh4=3R3qS>Vbcgzr{j{^q;kLg-1&*|wb-j@|2h{Os_#*|r|
z{X{$|y<pqH>jwQ3*;#%HXU(#9DQsE*x$*e%<5)JUj~{<HD2VQV?EHwc4hP+2+xQ1N
z=F_`&;O!f}BC(>?(5N>Zav6Phvz56JaXWVDBGIwEP&|HeZEg_X;*d_enIoCF24i|}
z<O=j<n6BNbc0<Yo)$@#8uTXpDaWM~-K+Soq#$2iTOa1a9XV5Gf%jY2PMD9O7&C0;m
z?v#3{J?S=47z?@;P`TE<(yR7OrE?3j<j{k+Pp^Cg508mvq*pWe#vq!Y0|tD@&!;?f
z(VRKErzfc+J<H8KkW-DMbUW@Pe0w6}qpXwtfmMGUe~=(p=2i6`94kbeM6j&+ruQ$b
zUiPewf3c&{k>s7mDBXb7KNL4|vq4FCd#@jiKEe4JfwFsA2cL?+lAEQbXbGgGE^KdY
zf!)lt(BDFRe{<G{F(>|_iL5o|aDyEVGBSfD2Fn+v#vil{hPW+Qhvq|gXgl2*vcK)W
p{*~$doeKUdS^RgVW7PQX+m-HV>MVCPaS)zrFnhl4d7b4u{|6;theZGY

literal 0
HcmV?d00001

diff --git a/oxAuth/Server/integrations/pingid/oxauth-pingid-1.0.jar b/oxAuth/Server/integrations/pingid/oxauth-pingid-1.0.jar
new file mode 100644
index 0000000000000000000000000000000000000000..6dc8730b9ac36bb1d85909b26dd9c2ff8e5f2b9e
GIT binary patch
literal 14556
zcmb8W1yo#H(l$(RcPF^J2lwFa5ZoOacXxLQ?(Xhx!QEYgyOWT7WUgc;cQXI`Z&uUI
z>Z)h&Q|p|nqUtF*Nf1zIpdTxd{Yl|pAO8FW_4+O?tRz4yE+axO_oo;nP{ONN9_g61
z<?Gi0uP@Yp7n2r{5f>3wRHBm>xse_lm6D{Tn}(C5rJ5L<tW#i^W8T`gqmh^xrjeu-
zgoN13S4lvp?j~_*Nta-@mvG3Ssz9xsxv>`@nh-7tB`u-UWgPPB--}QJ+w8BM;|4R}
zVdgOii9*$?O0bL}MRx<g5-AjE*KF4W`s;N6ya>?O)7jXW{C)m^O8mIY9}*^(j*kCB
z4DsK^Y+Upl9Zdg+G}?cW2AEm@JO|{z%zanYC0g=oeM?LrAcEhiC_9*0+S3_W>e<^D
zs6u(5&f|X5u1#B(0w;ta6yf*dU($pX<rk+&?blU^^Pv$Xu3%r5ii=Fka5P4bQ>af?
zsjxb$=%{aaD3MF<pDQbBc<|hOSYP>q+{M<$@$tQ1*XFsq&Bm9_#V=h$Ssq)2K#sXG
z!noGTmv&%HftS!|t}X>(s@qN+?H`0GwTV@$l&?73I}x8;{KMFG;9FXm1K7~E$6X{L
zZ4z%*!vGlPDpyYJd5{lV8B`mA&ZFBr&>PeT4}q6nX!zX_q_@GS9_#_p#cEORXlq6K
zq%y<X`D;(bVP9e?`za&DWb&Z#<m7!d_8G{6qXRFq!-6jXkkQ31sQ9Y3JiIwO@sCQ7
zS@7G;*OxVjyk%RqpU&)|dFj=?1>kj*YS47zFm+U}&^(kYJIPdalKa^9E~UXX6>PCO
zE4H|(Qb`WTJXGN~Q7FXJJUt6(5v`j}dDq2n7vK)hHnjcu^(-7_lPZF7R;v(AFM*zs
zkLs=Au*{lt@ax^i0`TgB6)Ow4t~&F#3#}BRqpGk`Jd<#pzd(qaiCc&o+-#d#7({Js
zPYgz(e{$?**FS_JUM>>V;>tWFKJ_!EK57=3;n5|TDdZn^N=30{K7zKq48S~Wd@I@{
zJ;VxUq89BM{OrSM$o0IjW{vJY2i-UnZ|fY)@0EY;!=L?80fxphntXiXR=3IQg1Hr?
z(8MPtmR)zr_9<f(w)w?YRQCz1wTPm$b2F0sZLQjh37PaNKzdRW<r(HZk;$=hamkGA
zkuLW~3B^9(p@?NN4A<b)L!Z+{I(xM(4+JaIwXNwZ6ruwJ>>67G86XEtM%VX4kj1n@
zjLiFkW@=!Ys+S<8NwsflTlz)&nVmg^=>TwTvSF=H<sEiYryB=^tYS^6GGV~eGNX2J
z_@teALo_1O8*4dxeY${I2Y=JutSwT-{Eu={3M}zFl+<(}!s1wcP@{)AnLI%j48^&X
zNNtUMVy>A+=+uune)x=9p-maR#{T);p?7Kidq`5t3y2k7zC~%VOwCmfZPpSt`%@CD
zu{lhpByjYePU&yZ@ue6!$_*7Z4b(|C$**eVKRwE%GEzE-qU#i<4pq(Hh&y!*)wXE!
zBX?YN7CLZG8>~QkNmaHWys3x`IQ<;3%}#b!w+~BbCo?>gEnOu!i!{EmnEDp&TICD*
zdlWSuoLKRv0@*P`d}guiD>KimK!;nA=sl9eR`iQ(U$ALK$;c08T*l`Sqy35<Yai%e
z%JtapA<NUz*JMT_qzm~IbR6bS#U=bI#$qjBVnMxgw~Da6g0d_g!MsYgRUaFIHn*Cf
zy^6LU9{q#h9jG4jz)`$ss!_^)NaY7H#FGy6%hno3qH$F(P2jwHP{x)FhFHI%$uiWk
ze1-E?y+nZf-rt4#Ra6M}yHT^*BmTFlZSiz;H5TRq7Lg`IHCDXmea58H>%1T#x_yz_
zqW0BetV-2S3VUWmI-tYSpkQ>@^BUN0L>!=WYgrC6H7Q5z9Y^n<T#gep)++_bZ>Pv|
z`E_e#_00s42&GY>m4VSH1!wz#Z8M3`&GnI1SnB;;TV6i)caen&tD%GorzEQDbDfaS
z2p~za$P*>W@Wp=02~m(vrypUl^;Ihj*-up?q(i011V$e>vgbdKg;hgLx^T`%;VHI5
z2)nOXbc7#@lC>W_KYtTOS<xQ1@7%~qpe0`!s?1J%W*<wY63!Z?Ru&3fBZGn@UlK|s
zUlEEePtCUoqxlT0C~`gh@%*L@#{Q`?6iz=6)i9nvu!#C1h2`Q%uVXf>(BK7S@jl^D
zofWs5*0o=(-#x`uQTN@%7i2_=w1)E=6^>wiGC6FHxjlPt++hx<<1-4m_k=6$+QcG3
zXuPU=1)CYzG09+6FK@pFsP7rka0H4qnk^-gav+u@JT%W3oJEjFg2IsR-!v{fHz}GW
zQFnX-j8!<++A$utbwt-^FvK%fIjduTEC^QP>+(Tt?p58jZyCcFKgHvrzWV@t^4Xf9
zmgDnB+9d<0qUCZ5r-cUK#MqIe3;`9`AbfXLEJsDU8YcYiq<qOPxr8^OBE@)DdZ$AK
z;fvWJ<F~WwPz=*zPl~1Kbv@IqvmG6UJan`;^JPn*Q`OU&yM4GxYV+?RGi|dQ6dkWP
zeaxgk$Z)Cjed=h;w{Xjpj~X6ybFP9dXe?3VfXubxqON-SQp39=bY0#mMO3EL=HG-`
z1=fj8)M-n1Q?@KNN+iz-r?1mxg`4<->)SY4(L++)^|pW+#H|R)p4OfHB;^Y8;m&VT
z$b6NfD<cJcqs(t$B*!Qs$1{ogM9e2MFNJiieeINW2FkT@sQ%%D*<$*JCM>fSMBRXO
zv{iwW#^B`XfOSw!*@1kJ`i8#QP{Z)qj@UkjQ{I3Q<s#u}I6|t*ihDtQ26YRo;*|cv
z7J>c5EWlo7;OZO0xx)wRQC$galVz5sdmJYv<O9-a0_NEV<%29}uYpOvZNaP1hf4gH
zci$=CI5K7Th4x2=Pw5lw8?-9C71?fh800}<mZEW(zP@{Q@s`ni0zOZYR4+InrDK#N
zkJlAp*Y+%w|4hW{os%pDeqzW)jd-(7t+Cy*;d5is`D9kUmR|i<aiQ5vwkb^AiV19t
zdf>X8^kJgy-F3aE0D6NXuo+%Ozts3U;m_fc`DpeVb83Meb8jH|6E8R_NA_k1(y}78
z5KRv_qYnbFuMPyDpYHcuNV^;+{OqfbQTsjd4z;7eHjJ@y-!{+y-Rtok2)^wW5ES1_
z6Q>z&(T8=_n&0lG1m)`WMM8C0STM|<Q!zpu$*$&=8<f7=fI61sDaWPgEua`Q`f4r6
zk;-H3s2=759~j(p+^d|B4LJ&coFom@PuOy8P7O;|oap0*+rpOp%#C?i7{GXINQw$x
zf_8Z-GHnYioFIC_?F+VjQz}x!fN$4Q?1nn<RE!IjWj0T&#vMlL8bf3vXD1gW*#tfc
zygdUu;SE}Vi(FJr!tMuSE>c6|6Q|3F*M`%R>ONH6KFS4IRm>3xgMXfY(}0z5(-p>r
z!6TJ(O_A-Nh&p}s*<+I6jy>7{N7i{d`b??Xf8=aX<oQUSs@7l5%7Gt4OLyuGW9m@O
z4xKbn<N|b{i!JYoySOd!_;RpUsu4sZz}ZIxVAg06yG0r4+mmi<^L{2gmb)DkUDZ|0
zwh7#|=u<9#kK-<%#+xdX^g+QrSxX^`e0OQO!X)B=TNlkx4O1txM=5r1&@x&59;kAT
z&<2CzL(V|Qwo=o2SR&={Btto@N^Ai~_vRpjAxQJ^McNTvPjb(k&CmsG8*^A2NSn7k
zh0i|q-#`07$S)@9pochtmF8*nq#jZ<?is*pw3R}6+kz)2Fk&{%Ls*RZVa?&c6#&Vo
z=J7XS1a&e5n0e~LCOe8}4?b^Urcx-?fp&2FC&g35g~r@Tk)zvdima<liI!oNS~Pzc
zo##{{>it^M|4xbd#=O{_)~bBh%`)4FZ5JK<=Ipi`_ja478T0`~!Oeoc<ZSyJ(g$vS
zQ!r7+_xQ8}T9|`3Q1YRxfU%p1sI*JqN#<2{{Go7)Mcjm~fm<~nr9Kx*S1_KgME>;8
zqWnG5yS#26lkM5ucWGS+4;WMzcjec*xmzH<55j>3%D(w4A^#)IJtASfhkDJ#6(NCu
z=zf>xDj3-VY^?2#lx!@FtmX9V?2YXHNO~hxG*nkb5Wk_X4krzezH34j^I_?Ehu9!4
zMn9FnpB-vI5D5jB!$ycsOiZF02l6%Hn_p*P(Y{@r{mR3);>@wi$P>`m>#gbYu~U!D
zu~V9_Hy0;eKx@7gxfogGQ-SmWj|w4_XtR$JA?|`675d;0%47O6miWafLw<fXsN71^
zL87*M%BC*mGt+)y!Zeg>DwppEnp~)M(9p^m>Q}5w`gwwsdhR4zZEV&lPrypj^h4s$
zJFT!ftCJ&>gRF66#Oc8^_Y;QkVAgQY<xsQI@DMORESQ+FS#hWUq6yPD+z-o*J>RvB
zAZFOJaR`a_*gYyZI{Uj*4+f2sGR{`3!c8K7X=TE;)Ob%tE}nd9uI&5}X<l8SN|F05
z;S1X0)l-=6L;t16N2zimmF@CcCb?y2Tpk@w?GGCi_RQJLvDbJ;j(4zQbg>PNOvg_=
z+d~xA&WcM<p7E-{qmIK1DzLEjCey`Y=W|5h4SGc+J8_E!Ufm3iIer<UjTc&;%)!I(
zeA(Ynmg>zG+fY7*w3Z1s9e?!bK{h&rDOr>Dt=gs{W4+z24SGWeZY$iw498Yoy3NJC
zSRHf#t!=6{^Z@NObxG_sbIA+~hJ!6-$&@d2+{b{l(u@6OlC|YxwsV_41aW#)xNHwo
zV18GK9&UAoCBVvbG@IsK;AoQWyVC4@J)AsPp6x`vVa;1$%4(K`n!FqYd`5?F$&wY{
zVEysiNno2MJDl-b)sK)7KI6vMr$we?wK6SNyPgu5Yzw!E$`nXszvMjez|f>wYs-dm
ztuX_Ct9G%twpM(Uf>g$yWf-1#aAf)ZHMx{<$C)j-L}&ICCJ1yoy$;SI*+Yc+yP|(8
zF`-tQ4~{>2v+MDVnW7u>fs7<`OQO}}I?65wsc|k>xnjO-@cZ1SLd(>Ljtjngm>{g?
z4FTE<!IzGXjR=7~&n_>l4Oc%#DSAix7wHf|G>m8!T7Bq!=j?9<>Irzaa(W?q3}==z
zqDQNVT;QXTxVfZkULj)EJBZVp`z1(mJRz~|?=vY$Vnn!d3Z^41^2g^Vb`3Nk_9V8L
zT9Ain?MSPM^9#&~Bl*3g8HsN*u($*)ZNEZR+$!366S?_4A|ZDXi9_E(ep2nqvATj=
zSs09-{???{?%SAj%q~(SCswW}xJZ$y%jL)Z$t#SHe;zY`9&IKvW(aW`L5O^#Xw1NH
zl0Y)uTF#gwLcEhX($d%v9(K1rikOM1Oqa+v?T)i?T6T#1F5(`lOJ%f%Sd-|wL{-x7
z?7hE{-(&s>&8pEo$4msF_?0XcDQUE9K|@O^NMz|ooHAO(hn{O_YqqP<S#PlTyA60r
zZ$W9tjO;H6w;@4HP#aXz;&IMK@qF$u|LIhQ5af!l-T(pdygC+&-#HaA2M2(#i-8fq
z!OX_`Pj{jqZ8OV{=()-+bJAR4yQ7fpQGXl5UeF21Ri=joRp|Fs;;>yVq#mMZAa;j)
zQCG?>ode<X!4FJXSF6;Z;ZGW@W475y^IXa5s`LhO3Dtrj!z;Tq1e4}g-d2ZMr9EX(
z`?$w6sZCzwm&5#Ztm{&DaF@XaUlJ+o)<=&6ZJ9fi8Mqm(TdYw2t->aE#Euvqqe}<h
z>I<WPjjj&9NX=tRRz}EeO4b;Q7Snbeqb#u_U06`M2v*-YgLof7`o3#S`i-WHKgSi=
zMSgl0M^;EnL|jV0h6&NAi<o^d>v7`96^nEyRiOVfX&Opq8MRvjGi;R`>*ue^HG-Yk
z&>W?hXLrvHDos!iH4bg=Fv`zXk#XD^Ax*K3mq~<Qpsn-ZGy)Iaspu}7>V4EZ*mRl!
zX^t&Zdin0y$T#?ohb}&I9oaL#jQNA#H))0j%mHOiTr*JJXMgHym`II0)1y+iT=WIX
zRkiG`Exc^zWKJo2N9amf)9&o9Glcuf>b<V!_q##1k*x&j;_7MaXk}g9$>mNxrL}b2
z6(!?&>IL=k6d4Ml(ww|djNSmK-Kf;EFLY;{IY)FQu4uwVN)Gj0QYO~67DY<!(c^-Q
zQ_iFhUoRLs6PXI>tj*2c-%u1|;ce-S19s0ZRn9JnBUhf`{`0npGy$ny0RaNKga86!
z{oQS&{2F|u^{n+wjO+yMUgMD+iLkXHz{bql;g5SLLs`RqMFjO5DjhPWK{@*)@{qWd
zB}fZ}Ovc7(D_M3w3+M+JQ?nH&rsDUNG)4h?M^#5QVq&X?D`w=Ao?{3jx2Gakh+{$q
zc=ww3T$>zi2c}OCcUj+omfmv(F`W0yzZdUkMRML%>*Z-Yt;whj7)9=kh<D3cMuVb8
z#$#xpA|%ckoU0-!mv~Gq`GUMaVk%W3sg^vYYpy7$(#t0GqVitSM~NbF1x|XMT)Ckw
z8h7>{lw_pQs##d_;vurrCo*jJJ|T1eOV~~LxqEcNP~o~Fwr8Jb_Nv<?;G%hAGAPY;
zw3<}6R<1lbEwB~4I;*Q_Vb!-vv#c?^A&!b*pdEIKuH;UzB^N4%q6F=Z#8RXT<DRlw
zep9jR&Mp=LWi>{~YOyrYE^&!Wvu}pyX34ZU38=-c82==!K(QqCKw&^BDa8z(3NG<_
z&CMl9Q8?Oh)I_!R<9G%suckw5kWWdN8IJPz!*0OIv#&5-EXtx6a<;MTVg{EGRm+Zp
zLs>~1*(hQ@)ao-*=wYK-+D4SmX^P=K<5L>yF%Q$x7Gc)9l@zmk<M|U^tQMv!0~m>W
zP!r!;%tuRWP09STD6|BWk=pJZM2Uu%yt4=17x?Kx)*)xEL9O@<E>CC=|9!D7sxJ$b
zq?fpOVUOBA*O?{AOWg=iYlG2HdodUclf+|{JJ_DG%SyM_i$$gdCk%6<P@03aJ_Yhh
z!Pepr5h#byLKP9&hk_v4M@zV=B=F-5hl#UtgYyNDv&Z&pRDHBjTdhGxumxHMDf38D
zo3mQcT0wg5#=+zVTX(hrum?+XQ)~l9SY%Jud|>Z6lMHb3P~^GTSvV~n7QgABfUe=;
z@qE*?iu~fTAuS6vvpdMUxYi+lv4hMrRI~27K<=|ALBQ;*3AguwU=ie_5%R$jDo_d7
zJ9R@*#6HJ0AZc{<QIchPUY|>diH`S&Q0l<eGuZp?C;^+@6+m6$9%DGkeNPx6?e8C<
zCK)5X$1L>Ypl;uIWPwMj3|0ptW`rU>m4#0tjq7~J-I+y+A~^##+esxY<d{e-<QaTq
z<U^R{C0sz{-IvdrZVf!k<_#nnef#M<xNUuXxKM#GFeg-&0Xd|Xu=f3zJNf{PTGTj$
zNhI$eC~LCbYZA8jwe+xIN^2Q=#i)^k7LLAgnB4TwpJ~_*NL(}1VAk4G!bZZ^Iunq;
zlgXO;KvkgO5tK9#fk;_Y9Qu4S{jdX6_dya{SHPlR*iqaaeEUe;KdHpcDU(uaCWfS>
zLeT+<a&3r(2cHT42zpa{7Gr6@)(64G;P5FRjJnPK`!9*BNyCTs@2^fG^)=2g|IS(b
zk+9m?7#P{xzm|A^2{(yyJhFWZh@KcTpn^Gap!#~cyFy!m6~!=ql!9VP>+8CtL5Qj{
zn$JxsF_@2UzEbpaC{=g+&}MA9J3pN7Jwz|E0ht_<s|nH%ibO~YI#g1x!$P$|9Cf6N
z%a2fD<n^YKb5PE20i+=5$1;d+6|_n$9@yob_Ur?^%$d}q3g$EE`>QD(q!CMMT81SL
z0zOJEqUx7+)Va#dN3wn_wfLNTBPESvRr)3;UR<@V=e{Z&F-~LGvaqr~tM(yzy2R$3
z=zTEYx(W?agU`Q9`ILAI;U@U8mVPK?Ip)r1^YHKy>~@TTe~j@-p@nXcDK7&|XB+lI
zeVFx0!@_;JH}HQtU&uggIyx{QAimd{H}&uADJLhbU}WoPWbg2Y@BPE&R;Zk)po$`X
zOYInAh*}f43hKvn!T_KcNTI%e!|LbL4;C30-cfhP#6DJTFVBEsfNbv_l+G<^haA&y
zf6dHyP2w7suJjNUo=kcrI*~c6wXUdjH?OL^{^ek^>ji!bvXl7|*ch%oFx-xUB^Sfq
zE+x5-6fPOgG$k>-$?<J+I5lVGvD(yCRFnbdGfTTgHrj=F#)G3KbGQ5&I1DMS!L<(q
z0M`gN+)nRAE$*0YZwpf`h#J8Sn+n^SDId2=6P;IRHQ^xn#@GI3Siwu;42}^~zd-*B
zcRf$CuQWrx=43;_oc2zW%f_}fhYqCYDs8-z0RfFpz`+2OP+u=5oYydbAB&DlKH)*d
z1(ohIb$(_Sg|!F~<Uu=5Z$Vx8@Kgy)GVtWMEIQqoCIuZ7b-vA!-fBZ1Qjo<*ll5;p
zTrdVG%aX94Y^&a1vC1x2ri3Pi_h#)1iwd8rueJ1hYE<ry8#bFlz<S;ZrDtSB<-NV3
zloBtN3CoKbKa!(L$We6g1xPZ1MD}a#wcT{~>8=!v6dSq5;>aW%s;LJsD}Ux<T6SAI
zL90UM;3kRu#z{jvSD*r(zN2@DlAd&&Ls6gcH33&_<BkHcb2Rx=Az{O*J}R`rS*cAV
zFZZWu^L->)PgyMdN(<cpDNFi*wN}P)>Z?!aVePufTJm8fhGNYdR#YkCf{w-m$Y|;r
zzTo<D_>Jk!O2}AP>GGFEo5&_sW~Dbr9&h8arS=#r2pN!wm~3JC$ev>uV}&RB1={<k
zv?0nv1>Q2*;!y96!iOY+MpG!BG2J+cqx%AcR(EnlyWPImfssTgqr6}eND3&;0fzb^
z9_9K($#@5~j*d~_9;7_NCi5lnMk*%7^YK`1@pV!jk#)=-SNho=7y93{4+Ab+pyN$9
z%2UieVErAVsjBNbO+pE>9ckadN~cj~W@WKU?|oULbse1-Ud^kmpd1E<=`i<HKurws
zfPZoK=c8Js9ifkJdFIZbgUK^O87;oJQ6AArg{Wl-ts4{M$(pPeosH*mzyZC-&5?+<
z9*Nfo%9V+5j}meUZK3URr6CWTCqNyAtx(zfqNHknUz^g1E2_=A7xjTqb!dH0B`K0W
zpw46die341Vl2s7NU`GSbE&hks<B@A`CZ-a(a<hUQ}Oi?p(zQD;uVhlrESbEJc1wl
zBY7sSTc+DlBIpc*AzJ(#0gn9mT&j8Dxe_yLL~03+nT)SIeuva9HPEUIy2DDxM|Ys4
zRsKFsWDBv+t+N(l`<xA|`Su7oTCPBzaFH!KQ%lAUMGG}&wQ=J;sm&b~C1h;Q<Q8@?
zk@NFH_1faM2;BUu*el)&G4Qi4m}HR|V)_uN)hM`!gLJ2bfP2LL4$MK`bRmS#)%e2D
zje<Jb1t=J0-ADL+7Cv!N3R_a*Rq=D#`D|hm6i1li;-t9blm#T>@*l+GxFcl{V)=yO
zV*3*s5@5H6u-EEW#wZ|-l?j6Y2;>aN_}_ffB}~)@1Vp<?bhi*rv6lD`#<r>s^&j!1
zk9XmB00%~&L=`xe3J~G+aSF;lBG2cju}jfKQx$Q{oMdl`rz^x7S-=`HVl&4KU=BiE
z9$^|Pe}_HFD#!p$QF4zLw30Kuh?6ukHw9TQLM_(fIa$(@-pa&Fov8@zLch3isnhaO
z8`@CIcUx)_mrLHc$IRiDc?>RQmqkn_hIUUL8Ig-%7kA|hhVo-7QGq?6EK*E~5<gY0
z@nNX9&OR_XO(v-sswEIglaHeR3i6+Bmx9bse*qi_Xc-O&i2QeM_fMbuuW0s%%PmlO
zaz<H1`!<M-XNGBs2o)+0sb?EQst(;>h^QEH29$KABFPB05?8~LG$e*?WE^1I<RIO8
zA)RJ@lu2hMDMd5eEd4CxeT+Xpd%+WF2r-&s@Af(U;oSX#Zc}R`<00#N=NCL5-mj8<
z;$wlfZ^0PH!g~~Ivh{+OI(>7qB?!~e>^TDLsVw2#v<iuelUWp^pjG?u#sarO9hGUU
zgQ_XmtwRUmvUy8(6tV9OWMF@E2C=0*RA{tSt~k)L76Fhtkh|fJaY6LEXpwVeRGqoo
zlsV63y@!h|9=P=388!iz<A~aGm$V)lu$xfZZB(5Yy$^kcPrgC;JFJ9P#Atjf)%E}?
zPtVU^9mse%atN3jb=O!Fg!44TjJSuWFu+kyu^UG#O%gh=^3+(-0&YI9rDQON87pQV
zs}Cr7MgyM-x5+W!+M06(CTOIeXl#`%?V5$S`wNc(&`vK;ag5akboHhc0djU2Ve{rA
zokmI>PfDLA(gsiw6!XIIgzri%WYXv(Q$)0jRV!x}u*xi5P0-%wsj~TRw$C!>5wJ^j
zKywb2*K)|yj;G2jq*S;QYo;*1l`MZ5&t|hhI*FA&q?$`6N-sTfQ{N5&cy0_WczT;0
z)5&eA-3rKCR31rVNeZtHQ@gNG-O)EYaj>R-OixMIVzAHLvzSDKE8DY%(Nn8M5(F$v
z&{MiJ7l;({?P9gy?1~ITi;DK#GO6TPey+PaJqy>yIW|*f=PI`=80n`foa&qad{dby
zcS)iJ`JBozM54IbK#0z@Zkag~sFm2-7a75ae6|d1v{WZC<}Y75wE<jqDph%?DndZj
zmt0dOGtsUKg@11;rJ+DDd&O<X8N^V&OCxi{9;_(!3_>D5aKh>3mv#Jz<yE<hfvF1E
z>a^p`?8}Z~yOh+s`|4yI^x_eeA#!x`2wDlF*rkwd=NtkxcV+Qa<S=dSO5<x(O)DF*
zka8JCpm#JIR(^gI-&Qo|H<FZx#^ETxjU-Zf|9AUK9J7us*4Hq*-YQo~QC(YARNo4B
z-)$_^L~zY*5?R#Bha~0fs>2q$hz>!U-_~g(Cy$Y$m2sZ$TySm-U~6@laaMvlnXa}C
z*FTWTo;(ImeU-(%*!ILVxzqz|Thy}JTG~`thp{v#Iwk&y@<LvP5T&KWP(6@1!Xb$^
zDbv!99;E6xrc@{ZhYr(d;Ce$k-Ra_=W&u_={ar|7668J^(P{)Z&h`!)gR(X83}GZZ
z9K~Wjr_r2uJBY*C9mfj<SwF)|Hs{=-!-N~vYFS|=QeuFn?#+E8e}j52y({!Nb&Am}
zBe$Y)9hO|EU3@O>v-)t|N&RWp3GA}#kT&YL{Ii`JUWijdYF$R$c0p#*GR-2!-VDms
z=En&sZCP2vT7MLEFwvpL<eV3t6V0P%{Ey1ojTp;XIMXXG6urueg<B2|eJv(QRE-9x
zit1UIW1(%9T(m^&Q_T!GURU*0_AG$!-l};tjfYEZ7l~*u-82~OuFJKvxhbV}mEQIA
zsWMIPi!!sC*^?$Bs<+p_EH&%yaj$My(T-hX-)xes;|SD&YAuRB`kFxFYYshugDQ3Q
z@&+jCLbjOqK~*kSh*{)j4D)=W-}9KrT3+8D%Yr&^8mS$%Z||P(LfVQ)!i=mC4CQI`
zYgE$*^HsZm_On>BH9|X^1aI>jm9v1<I)@hN4aH`e;Bw~}TF8z!T7>4*zsSy`Ruei{
zommimb-R1b_yXKf4Di_?vbyw{d&h{awwN94eqIWbSBWVisKnPb)YAYSXfcUw6%x{~
z=J5%aH2gf`n!T8JFwuja(IPGI0QdpFt9~k{s@>^)hjd0MF%8*;r_@Hl89$;D`<Wy^
zD5+<+&C5IZsoBOwTT3|iLpMWiq~*~i9;Lp%(BV#YawI75qgXa1r2MV$svY@rNQyU5
z`wY@RvM3|A4osn1E<u22%m6Q7?oSDs)`F*dN2t6+JqRp4@VeMof}?TpxwIPs&tPLQ
zl0Kf1cEFYj1jRWP9&lem?-_U8xb1v|h`cal0hQZZR(N==y>hr-I-K61q6J#M%!2E>
zYVY}@nB>=KNPVdXUl36M>Om!GM=unWVgaAXdPypGQln#plU1)6Jv4Lo5#rlDm>+XI
z!w-PZZkeLi2BxvI!Yo|ET%s9Ur;Tps5X%U?IFO)bv-mTlVqh0OZMgXO%7Wjp<{xv(
zipq%XI59ung+y0F&fFd&!`A}zX;QrkABp0*2W&bh3O(sr&O0c=i3Bg;MA{?WjAL(N
zhm87tCXBf4A$VeUou{24UWlegf>KwdA&A#LNwR<b{x?_XkJf~bb;(S@D+TE4mBvK#
zyU_TLa?l^~F;UgoLt`H8TPEoj9%_2qTq%guEkr-sRe1$qL;ql8>R~&gQFt=5b(5n3
zc{vh79+N3S3|d5Jt%x9a1<pgdQ6~b_R)}@?iw+IW??;al^L6ce{ZCH^U(Veh*4#Vo
zC!8l*-0r(%dEs<HzMTodSXT^^t&#PeF{Q_B!((aZ?aJUgtdY`J&0lfido(KtEq<8_
zV;eq=<UGI60e=_<RKY$Rxx^#D*p~UmgP$iKrNO=T;NGR>ZAY_VzVu0Vljv;kNQK~`
zsB<2^lmWS5y0m_JjDfv~-R=P2ATMgy(dNzG_2*^T5(4L?!N-4h8R9Dnw?<(T9Xh-V
z9t0OL>@e4DhM(CT&uck=g`e3g>cDNag$05?e^q1d@ir@_K=%2P(&NL}*NCXe<HvMx
z;so)}wIvaGJ+LNBPMx$?XwXgqLdu+6?4}2-kHpJgb*p1|tGDGCayzZ2w^mUsPRtSR
z9{P!hY==4Z!DdyA8J5oW6h8_`j9HBuLq{drx>el9ROm&;cWg|YHeQ2quw=vIN+H03
z)eV&s9_TU*S@oo74cn&S;wSIR4<csCpD@TWHdl~l)IwG(;EH8~am6;7@eg#Wz=aDp
z&W@=0-|KPh*6%6cE(2qfH5M{anzRK?JRg~w+!*Pc+}gl(V7FT>llacRSHR-pba3gO
z7^?8CulSl&J=3AWOL}oGT4m25e0sM(enF`>+4R{g1C!5Y%4yJVE?(9Ga@^_WxW-BY
zdjxE_S~5q+dxPA(m@Xfj*~xBkqd6#uC|@YhlB~I`je3O@Ff22cy}%VCjc1ZRaz3@C
zr^KqsjlyG%Sql@T9~{HrK%;k%j*6AHs}47+DJGhMyX+y^D~?<9woUZPO5RhQfz{z0
z^WXzoC2d`<XrI&}0&b#IE!mOw2fp}bYtndOES(vdRRbJ!#6*~^MzkkVmY8{`)fxpe
z1+k`^CnCeh(Xvsl@;+NTQgU$xCoYwpXBq0E!(pNxszK-;^E^GmI@XJN0R0VFqFn3I
z?6Veg4qM!PtWqyLIh0;<)MWhi!lQK?b-b~J9C>WrhbibnNQ1V*h~QChlT6kD2)qM8
zlq(-#Ef(0wQaXP<{eDi8?76j0=qaFsm^8G}5ZiSz3>t-TO`pgQ9wme6z0qN>HH!OG
zPk*|VdYpf!u0BSko==gV4X#8%JkgD?$EW^e+wOi<0Kd>WhdS+$*L?rtr6bB_Hyc(W
zQ>Ur}(&A9`fvLH&iK+!VGSd~U$7(;!r6BGm<CT_2wA7d^K~w0(ZZ?$0)>oh}(zn~3
zDE{oj`C}#nW^Od~b>uV1%vVC{-(z9<2ED+O7*CDgSgV>3G=RxJprG(2?kgXVWrb#i
zLIgA{d$61B96W;Qz;HCBx<{>m*zM6vf0c-0*-Ov$bkk6E5M^I5+gYqtkp6H>E*4_N
z>1D9f^w<&lugt@6XYvsS>Rp@uAa=fr!l$iFwK18(Yln)RcBjOkCq;wO-72!ozD*KA
z@5L(wlvl2gR6w;s+@)H8-+{V3D@*dae7+`cS~Uz<XYyBZ;|S`E%LYA_I}4pM5~;+*
z(HbbZyK;pYqlVRZeW%nC*M1eAPk>rsEV$%}N*{?%bW4*aNA8S<I0ciDrkIV~Mr-Be
z-GQjC{LIHuWmsA3VGa{0de)+AWh>XGZjRDJH~V9z8rvl4T+PLC@u%iN<Mqtd8FYk)
z#(vlEWB7sQxtWb~nS=UZqMVuD-i#cVF6y`EVfUls;i|<<1eIx@N}uck(ib-I!kPkz
z*XI~>9%5lUU|`@dl6M80+gq_T`f|@*BqLJXcW`q|xz`E-voTQkf-hRrV(i%1qnU(m
z>`Ufor_}Fau#abm#V1(iCF@{@S|35T=g&(YliEInkN0S75;XM~F^kXYYK*fZy$c0o
zAW!7i_Vf!t#R)N2NX?9puZCUN9i4_=9Bzswy)T4n6YQ_4^*XIpv(}>Ma5zqMg9!id
zPF6u_HYmjXrqeKYbbesX=q!Jf{n#bPW*Y(5pHE3Gid`cr<IpFF;Q(!E%=?~_)nr$3
zQsx26G3(UlxJ9&Ma(4r>m1FSf9<lTh0u&@~3OKT_7?K6955*KOh)wPUSHvj0(GFAD
zmwD<-YN|y?9z&4)O9*Fm@Gg}gNa~g_b7@V|5X2L;F|K(H9<?o2mnA<vX(PtGE`24~
z98K<6%txR~IcDEedFD4~%FMo6pB$Z7FdWD?-*?`_dU)ogpt!tMCT749Wk`-j8gp+3
zt&%8dRuE8ASX1(o3-?@_yn{X}d%J%~k_hdCW+FE`WY6=pX#9pN&E?sTtW!Cvo6qYT
zH)#jh%@c|xV<ROG2AV9zk-D!}dx+a-#g$$lXR^onQF`%-<yx(EkTr5h)r=m&)CP)~
zL!DC{CcgrAoR`t!7QsT_LHW6;lLu<@1|~==H6JHUv8agE){z0-7*=6e6xJK3E%Wny
z;~q^R+WAQ7qM9}D9!R?M<H2Fj8*_=z^HY%nVhaQXL?7k2s2*|HK3xO@I?9ZbEwZx=
z-L**&T~Mh-YU04PSSmjikvK8$xRYV-I5#NkSI*=}Psh?7v2Ul=URlam-Y!0=CblnA
ziqVn96^e@`Q4ikFxVj&$SRAeJY6@!Lh^N}}S<<w)WSs1XVC*XKy`|F|Yr$NMFi3x^
z6KHzJ@_s-UK~B|=!#KVhf{Z|2QIJWbc?B!RZ~{42(l|scwUf^S59w2q1Ggw{BJ!-Q
z#iEM{;D|+qy6j}AJPH~kO%zd1Y3;P)?)jsiGz|8NY)<LI7r+hkoWf9PT@p4Aw3&~Z
zFE@{zZY@VMkSK+11oDu&sP-7P1B&GScsUcjVv;36<yk$6sEsS7d@xS)YThH;=TZ2@
zWJgW<=h|$A)*Wx|g}lCL#(c%-!repf>NsLPsjC6TWBTVEykjICOFK^_t9!ODi(wF{
zLmAVj2$gSpT04A=IgRR6+iNqmV^_E$Gn<fh&hihSW^Uli2Q%_FwMLqKh(-$)QmuO<
z9p2zj!qlbg<?L}A#Wg9RY4?6ln@EzNTM{q1_4sZSFVw6Tq|}<$dO^709(u=HI3rHf
z{GD6D4EB{0T(Sx&GxJg3Xvqrn+i18IzZ?I7ndUT$AGK&TBWH{3Bim?oU>}y{nS~eX
zsz{Be`7Q<eJw!ER(b5oJ`qm8KQ-R*KSV|XU^6ozLXNi$^ztgL!5Y-)Y4C9Q_DE<cT
zSu@Q$%*v$u5^0KZ4BL~kgk#mZAW1vr>OvdA)%np&)XeS+xfk!hDk1+Qej~i5dw=uW
zt@NCXtp5k0`<0;mtMDsnobLaFG*0$EwEp0b)Ba$En;HJSGb9kb<E6s%q%wgs@N2OK
z1_+4u|BL~!v7&RavYc0$wq9XC^}J9uoYuBNnXyKLF1hEICvBC<OKTL3Z|)(iAzpn`
zYWAIX2ns64At0(08$pcYLG#O7oz=ySc~0qaQlvP$clEeSb+o;}cnaunXEqOuTQi;4
zlkHNMDWD@WmSn;AnkAM#a$(5<0_oejG6Wb%&vwq?6M9vc0}K!r;uiPj4Sv*%m(LxU
z{$6V`g`A87K1?MHFd-9h4g_%Q+iz4v=6XJrA7ENwB@r-i7k62GADiK$-zOCBOz!kV
zxs!vTHjCYIbwYV|W5FbKJ<owt7_5=IeFIUNU2a?XnP8S$R0zRJSi-zvxKmN8!E!to
zjUJHyTDXNlV9ioiyNo#84x#adQ&R$+uuBb)yVe9XR8pQ`3!DXciJXO1uGHwBjUaok
z#9g5nUCnoES=viPWNu@QX0CvOmoWsWL-agsp1PC6p?%3)2fGxELqb1}T+xol_Ok4z
zGb(qL9W}e}pEX~=8g+xY%Ymt)?E56+C<*f=KSRx?8|+O>t_?L?Qo3V|#ti)N>BFtE
z?Y3s7+Fry#Dxz))@{GVK%@h{^Y6q~b=@56;jex(YdF@xJBWZ`?1>wWmf)j1S8%+xo
z#j3nM|2&1Uh|3b(<<HRv!sI&jon^e$^6{bT1Ka2Yit0gD#8$+&1NgAA16JC%+rn(=
z3CvJoYyvTIy-E-mU*h0fZF6pVL2evbI`BPHzj^e8hMH(fP=qLfjt;>uyi)>1(5v!=
zw6X=$_TTOzqmt~#QPHjNv<5kA%}mj2;I5+$0wliHM5#;H2E(q9eI~jJN0xZO+_RYF
z80VVe7Uot8XtF$|S{97hdw$u=dikYuCI&=)WcqsN{&=zc|GI+#b~XSbI|nl(dqpSN
zaY<SU8gXfPu~MZ=X&TA#T?Kf$am7ojad`$NWd?>OCWaa&MkT;K!t37*OnX#+j+(H(
zPMS#2kI>UzO4W?hODsxGQqt~A&`^Dnl9Zx*6RJ#-lw^2_Zuq&tq!94t^*_Qlz^EX<
zAA)&3{_8>nIurQu{<q8csrKK8Vtxq!Soyv`YOa5){o9DlPlSJZryqkWe=J0x7lDD-
zkAIA@{NIlHB5?4h#-ASQ_i8@|TmD!-HiCccbpAaJ^Y@s`@3nsny8P7U{x8~pj=lT^
z@!tnu{sO7@wfP;yzm38CwA+8@7yd+3f&J&@{Odr!WgGsA{VUDrCwAGZ<$g8Qzp(!c
z>F8I~Us)(WQFoAkgZhsm#4ntbU$^+Rcl~n<1dQKo@xMFSzi#krGxz5PI<L|4zgp(M
zw|0L8{<U546L<mlH^BdFUi=FBYoX^S=oQItK>uO!KgvEok^lMB{>Ul*ScpL1zi+*g
zUH^XW|H?4_dJz7p{3FNssSHQ|59L>z{*`h39_2^Q@e@Vpf1v!Df&7K}-*b?^Q0skz
z|Ie6zW+Xo?_Q&)3YjF4pEzb1&i~i5!{($}&D&!==Ui(`>Kq#+2eXj%qkRNOfp#KMc
CyRhH@

literal 0
HcmV?d00001

diff --git a/oxAuth/Server/integrations/pingid/pingIDAuthenticator.py b/oxAuth/Server/integrations/pingid/pingIDAuthenticator.py
new file mode 100644
index 00000000..8954d475
--- /dev/null
+++ b/oxAuth/Server/integrations/pingid/pingIDAuthenticator.py
@@ -0,0 +1,329 @@
+from java.util import Arrays, ArrayList, Optional, Base64
+
+from javax.faces.application import FacesMessage
+from javax.faces.context import FacesContext
+
+from org.gluu.jsf2.message import FacesMessages
+from org.gluu.oxauth.ping import PPMRequestBroker, UserManagerBroker, ResponseTokenParser, HttpException, TokenProcessingException
+from org.gluu.oxauth.security import Identity
+from org.gluu.oxauth.model.configuration import AppConfiguration
+from org.gluu.oxauth.service import AuthenticationService, UserService
+from org.gluu.oxauth.util import ServerUtil
+from org.gluu.model.custom.script.type.auth import PersonAuthenticationType
+from org.gluu.service.cdi.util import CdiUtil
+from org.gluu.util import StringHelper
+from org.json import JSONObject
+
+try:
+    import json
+except ImportError:
+    import simplejson as json
+import sys
+
+class PersonAuthentication(PersonAuthenticationType):
+
+    def __init__(self, currentTimeMillis):
+        self.currentTimeMillis = currentTimeMillis
+        
+
+    def init(self, customScript, configurationAttributes):
+        print "PingID MFA. init called"
+        self.configProperties = configurationAttributes
+        
+        use_base64_key = self.configProperty("use_base64_key")
+        self.token = self.configProperty("token")
+        self.org_alias = self.configProperty("org_alias")
+        self.authenticator_url = self.configProperty("authenticator_url")
+        self.pingAttr = self.configProperty("pingUserAttr")
+        self.addNonExistent = False if self.configProperty("addNonExistentPingUser") == None else True
+        
+        self.userMgmntApiHost = self.configProperty("pingUserAPIHost")
+        if self.userMgmntApiHost == None:
+            print "PingID MFA. No host for user management API defined. Using a default value"
+            self.userMgmntApiHost = "https://idpxnyl3m.pingidentity.com" 
+        
+        if StringHelper.isEmpty(use_base64_key) or StringHelper.isEmpty(self.token) or StringHelper.isEmpty(self.org_alias) \
+            or StringHelper.isEmpty(self.authenticator_url) or StringHelper.isEmpty(self.pingAttr):
+            print "PingID MFA. One or more required Script properties are missing. Check the docs"
+            return False
+        
+        self.secret = Base64.getDecoder().decode(use_base64_key)
+        
+        print "PingID MFA. Initialized successfully"
+        return True
+
+
+    def destroy(self, configurationAttributes):
+        print "PingID MFA. Destroyed called"
+        return True
+
+
+    def getApiVersion(self):
+        return 11
+
+
+    def getAuthenticationMethodClaims(self, configurationAttributes):
+        return None
+
+
+    def isValidAuthenticationMethod(self, usageType, configurationAttributes):
+        print "PingID MFA. isValidAuthenticationMethod called"
+        return True
+
+
+    def getAlternativeAuthenticationMethod(self, usageType, configurationAttributes):
+        return None
+
+
+    def authenticate(self, configurationAttributes, requestParameters, step):
+        print "PingID MFA. authenticate for step %s" % str(step)
+        
+        userService = CdiUtil.bean(UserService)
+        authenticationService = CdiUtil.bean(AuthenticationService)
+        identity = CdiUtil.bean(Identity)
+        
+        try:
+            if step == 1:
+                credentials = identity.getCredentials()
+                user_name = credentials.getUsername()
+                user_password = credentials.getPassword()
+    
+                if StringHelper.isEmptyString(user_name) or StringHelper.isEmptyString(user_password) or \
+                    not authenticationService.authenticate(user_name, user_password):
+                    return False
+
+                print "PingID MFA. User '%s' has authenticated successfully" % user_name
+                remote = self.remoteUserId(authenticationService.getAuthenticatedUser())
+                
+                if remote == None:
+                    # Accept the local-only user
+                    identity.setWorkingParameter("singleStep", "yes")
+                    return True
+                else:
+                    print "PingID MFA. Local user '%s' mapped to remote '%s'" % (user_name, remote)
+                
+                client = UserManagerBroker(remote, self.org_alias, self.token, self.secret, self.userMgmntApiHost)
+                print "PingID MFA. Calling getUserDetails API endpoint"
+                userJson = client.getUserDetails()
+
+                # If user does not exist at ping side, create it if required
+                if userJson.isNull("userDetails"):
+                    if self.addNonExistent:
+                        userJson = client.addUser()
+                    else:
+                        # Fail
+                        self.setError("%s is not a PingID user" % remote)
+                        return False
+                
+                userJson = userJson.getJSONObject("userDetails")
+                ndevices = self.devicesCount(userJson)
+                print "PingID MFA. User has %d devices registered" % ndevices
+                
+                if ndevices == 0:                    
+                    code = self.activationCode(client, userJson.optString("status"))
+                    if code == None:
+                        print "PingID MFA. Unable to get an activation code for pingID user '%s'" % remote
+                        self.setError("We couldn't obtain an activation code for you!")
+                    else:
+                        givenName = userJson.optString("fname", None)
+                        if givenName != None:
+                            identity.setWorkingParameter("givenName", givenName)
+                            
+                        identity.setWorkingParameter("qrCodeRequest", client.getQRCodeLink(str(code)))
+                        
+                        timeout = CdiUtil.bean(AppConfiguration).getSessionIdUnauthenticatedUnusedLifetime()
+                        identity.setWorkingParameter("timeout", timeout - 10)
+                        
+                        return True
+                else:
+                    self.preparePPMRequest(remote)
+                    return True
+                    
+            elif step == 2:
+                
+                if identity.getWorkingParameter("qrCodeRequest") == None:
+                    # Flow will have only 2 steps in total
+                    return self.processPPMResponse(requestParameters)
+                    
+                else:                    
+                    foundUser = authenticationService.getAuthenticatedUser()
+                    if foundUser == None:
+                        # session may have expired
+                        print "PingID MFA. No authenticated user found"
+                        # Avoid generating QRs endlessly from the UI
+                        identity.setWorkingParameter("qrCodeRequest", None)
+                        
+                        return False
+                    
+                    # This should evaluate non null
+                    remote = self.remoteUserId(foundUser)
+    
+                    client = UserManagerBroker(remote, self.org_alias, self.token, self.secret, self.userMgmntApiHost)
+                    print "PingID MFA. Calling getUserDetails API endpoint"
+                    userJson = client.getUserDetails().getJSONObject("userDetails")
+                    
+                    ndevices = self.devicesCount(userJson) 
+                                              
+                    if ndevices == 0:
+                        # There should be devices (user is supposed to have enrolled already earlier), 
+                        # but he could have simply pressed the continue button without scanning the QR
+                        
+                        print "PingID MFA. Unexpectedly user has no enrolled devices"
+                        # Avoid generating QRs endlessly from the UI
+                        identity.setWorkingParameter("qrCodeRequest", None)
+                    else:
+                        self.preparePPMRequest(remote)
+                        return True
+                    
+            elif step == 3:                
+                return self.processPPMResponse(requestParameters)
+                
+        except TokenProcessingException:
+            print "PingID MFA. Error in token processing:", sys.exc_info()[1]
+        except HttpException as e:
+            if e.getStatusCode() != None:
+                print "PingID MFA. HTTP status %d" % e.getStatusCode()
+            if e.getResponse() != None:
+                print "PingID MFA. HTTP response:", e.getResponse()
+            print "PingID MFA. HTTP Error:", sys.exc_info()[1]
+        
+        # Assume failure by default
+        return False
+        
+        
+    def prepareForStep(self, configurationAttributes, requestParameters, step):
+        print "PingID MFA. prepareForStep %d" % step
+        return True
+        
+        
+    def getExtraParametersForStep(self, configurationAttributes, step):
+        print "PingID MFA. getExtraParametersForStep %d" % step
+        list = ArrayList()
+        if step > 1:
+            list.addAll(Arrays.asList("givenName", "qrCodeRequest", "timeout"))
+            list.addAll(Arrays.asList("ppmNonce", "ppmRequest", "issuer", "idpAccountId", "authenticatorUrl"))
+        return list
+
+
+    def getCountAuthenticationSteps(self, configurationAttributes):
+        print "PingID MFA. getCountAuthenticationSteps called"
+        identity = CdiUtil.bean(Identity)
+        if identity.getWorkingParameter("singleStep") != None:
+            return 1
+        else:
+            return 2 if identity.getWorkingParameter("qrCodeRequest") == None else 3
+        
+        
+    def getPageForStep(self, configurationAttributes, step):
+        print "PingID MFA. getPageForStep called %d" % step
+        
+        if step == 1:
+            return "/auth/pingid/login.xhtml"
+            
+        elif CdiUtil.bean(Identity).getWorkingParameter("qrCodeRequest") == None:
+            print "===="
+            return "/auth/pingid/ppm.xhtml"
+            
+        elif step == 2:
+            return "/auth/pingid/enroll.xhtml"
+        
+        else:
+            return "/auth/pingid/ppm.xhtml"
+        
+        
+    def getNextStep(self, configurationAttributes, requestParameters, step):
+        print "PingID MFA. getNextStep called %d" % step
+        return -1
+        
+
+    def logout(self, configurationAttributes, requestParameters):
+        print "PingID MFA. logout called"
+        return True
+      
+# MISC ROUTINES
+
+    def configProperty(self, name):
+        prop = self.configProperties.get(name)
+        return None if prop == None else prop.getValue2()
+        
+    def remoteUserId(self, localUser):
+        # See class org.gluu.persist.model.base.SimpleUser
+        return localUser.getUserId() if self.pingAttr == "uid" else localUser.getAttribute(self.pingAttr) 
+        
+    def devicesCount(self, userJson):
+        devices = userJson.optJSONArray("devicesDetails")
+        return 0 if devices == None else devices.length()
+        
+        
+    def activationCode(self, client, status):
+        
+        code = 0
+        print "PingID MFA. User status is '%s'" % status
+        if status != "SUSPENDED":
+            
+            if status != "ACTIVE" and status != 'PENDING_CHANGE_DEVICE':
+                code = client.activateUser().optLong("activationCode")
+            
+            if code == 0:
+                code = client.getActivationCode().optLong("activationCode")
+                
+        return None if code == 0 else code
+
+
+    def preparePPMRequest(self, username):
+        
+        print "PingID MFA. Preparing a PPM request for web authenticator"
+        serverName = CdiUtil.bean(FacesContext).getExternalContext().getRequest().getServerName()
+        returnUrl = "https://%s/oxauth/postlogin.htm" % serverName
+            
+        issuer = "gluu"
+        req = PPMRequestBroker(self.org_alias, self.token, issuer, returnUrl, self.org_alias, self.secret, 120)
+        req.populate(username)
+        
+        identity = CdiUtil.bean(Identity)
+        identity.setWorkingParameter("ppmNonce", req.getNonce())
+        identity.setWorkingParameter("ppmRequest", req.getSignedRequest())
+        identity.setWorkingParameter("issuer", issuer)
+        identity.setWorkingParameter("idpAccountId", self.org_alias)
+        identity.setWorkingParameter("authenticatorUrl", self.authenticator_url + "/auth")
+        
+        
+    def processPPMResponse(self, requestParameters):
+        
+        # Process upcoming data from pingID authenticator web app
+        encodedRes = ServerUtil.getFirstValue(requestParameters, "ppm_response")
+        
+        if StringHelper.isEmpty(encodedRes):
+            print "PingID MFA. PPM response is empty!"
+            return False
+        
+        parser = ResponseTokenParser(self.org_alias, self.token, self.secret)
+        json = parser.parse(encodedRes)
+        success = json.optString("status") == "success"
+        nonce = json.optString("nonce", None)
+        
+        # Sometimes nonce is absent in the PPM response
+        if success or nonce != None:
+            if nonce != CdiUtil.bean(Identity).getWorkingParameter("ppmNonce"):
+                print "PingID MFA. Nonce response validation failed"
+                return False
+            
+        if success:
+            print "PingID MFA. PPM authentication succeeded"
+            return True
+            
+        else:
+            error = json.optString("message")
+            print "PingID MFA. PPM authentication failed with code %s" % json.optString("errorCode")
+            print "PingID MFA. %s" % error
+            self.setError(error)
+            
+        return False
+        
+        
+    def setError(self, msg):
+        facesMessages = CdiUtil.bean(FacesMessages)
+        facesMessages.setKeepMessages()
+        facesMessages.clear()
+        facesMessages.add(FacesMessage.SEVERITY_ERROR, msg)
+        
\ No newline at end of file
diff --git a/oxAuth/Server/integrations/pingid/pom.xml b/oxAuth/Server/integrations/pingid/pom.xml
new file mode 100644
index 00000000..ff90ca53
--- /dev/null
+++ b/oxAuth/Server/integrations/pingid/pom.xml
@@ -0,0 +1,73 @@
+<?xml version="1.0" encoding="UTF-8"?>
+<project xmlns="http://maven.apache.org/POM/4.0.0" xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" xsi:schemaLocation="http://maven.apache.org/POM/4.0.0 http://maven.apache.org/xsd/maven-4.0.0.xsd">
+    <modelVersion>4.0.0</modelVersion>
+    <groupId>org.gluu</groupId>
+    <artifactId>oxauth-pingid</artifactId>
+    <version>1.0</version>
+    <packaging>jar</packaging>
+    <properties>
+        <project.build.sourceEncoding>UTF-8</project.build.sourceEncoding>
+        <maven.compiler.source>1.8</maven.compiler.source>
+        <maven.compiler.target>1.8</maven.compiler.target>
+        <log4j.version>2.17.1</log4j.version>
+    </properties>
+    <dependencies>
+        <dependency>
+            <groupId>org.gluu</groupId>
+            <artifactId>oxauth-model</artifactId>
+            <version>4.2.3.Final</version>
+        </dependency>
+        <dependency>
+            <groupId>org.gluu</groupId>
+            <artifactId>oxcore-util</artifactId>
+            <version>4.2.3.Final</version>
+        </dependency>
+        <dependency>
+            <groupId>org.json</groupId>
+            <artifactId>json</artifactId>
+            <version>20231013</version>
+        </dependency>
+        <dependency>
+            <groupId>org.bouncycastle</groupId>
+            <artifactId>bcprov-jdk18on</artifactId>
+            <version>1.76</version>
+        </dependency>
+        <dependency>
+            <groupId>org.bouncycastle</groupId>
+            <artifactId>bcpkix-jdk18on</artifactId>
+            <version>1.76</version>
+        </dependency>
+        
+        <!-- LOGGING -->
+        <dependency>
+            <groupId>org.apache.logging.log4j</groupId>
+            <artifactId>log4j-slf4j-impl</artifactId>
+            <version>${log4j.version}</version>
+        </dependency>
+        <dependency>
+            <groupId>org.apache.logging.log4j</groupId>
+            <artifactId>log4j-api</artifactId>
+            <version>${log4j.version}</version>
+        </dependency>
+        <dependency>
+            <groupId>org.apache.logging.log4j</groupId>
+            <artifactId>log4j-core</artifactId>
+            <version>${log4j.version}</version>
+        </dependency>
+
+        <!-- RESTEASY -->
+        <dependency>
+            <groupId>org.jboss.resteasy</groupId>
+            <artifactId>resteasy-client</artifactId>
+            <version>3.13.0.Final</version>
+        </dependency>
+    </dependencies>
+
+    <repositories>
+        <repository>
+            <id>gluu</id>
+            <name>Gluu repository</name>
+            <url>https://maven.gluu.org/maven</url>
+        </repository>
+    </repositories>
+</project>
diff --git a/oxAuth/Server/integrations/pingid/src/main/java/org/gluu/oxauth/ping/HttpException.java b/oxAuth/Server/integrations/pingid/src/main/java/org/gluu/oxauth/ping/HttpException.java
new file mode 100644
index 00000000..38fe3172
--- /dev/null
+++ b/oxAuth/Server/integrations/pingid/src/main/java/org/gluu/oxauth/ping/HttpException.java
@@ -0,0 +1,31 @@
+package org.gluu.oxauth.ping;
+
+public class HttpException extends Exception {
+    
+    private Integer statusCode;
+    private String response;
+    
+    public HttpException(String message) {
+        super(message);
+    }
+    
+    public HttpException(String message, Throwable cause, String response) {
+        super(message, cause);
+        this.response = response;
+    }
+    
+    public HttpException(Integer statusCode, String message, String response) {
+        super(message);
+        this.statusCode = statusCode;
+        this.response = response;
+    }
+
+    public Integer getStatusCode() {
+        return statusCode;
+    }
+
+    public String getResponse() {
+        return response;
+    }
+ 
+}
diff --git a/oxAuth/Server/integrations/pingid/src/main/java/org/gluu/oxauth/ping/PPMRequestBroker.java b/oxAuth/Server/integrations/pingid/src/main/java/org/gluu/oxauth/ping/PPMRequestBroker.java
new file mode 100644
index 00000000..14082bae
--- /dev/null
+++ b/oxAuth/Server/integrations/pingid/src/main/java/org/gluu/oxauth/ping/PPMRequestBroker.java
@@ -0,0 +1,66 @@
+package org.gluu.oxauth.ping;
+
+import java.util.Arrays;
+import java.util.List;
+import java.util.UUID;
+import org.json.JSONObject;
+import org.slf4j.Logger;
+import org.slf4j.LoggerFactory;
+
+public class PPMRequestBroker {
+
+    private static Logger logger = LoggerFactory.getLogger(RequestToken.class);
+
+    private int expiration;
+    private String nonce;
+    private byte secretKey[];
+    private RequestToken rt;
+    private JSONObject b;
+    
+    public PPMRequestBroker(String orgAlias, String token, String sender,
+            String returnUrl, String idpAccountId, byte secretKey[], int expiration) {
+
+        nonce = UUID.randomUUID().toString();
+        this.secretKey = secretKey;
+        this.expiration = expiration;
+        
+        b = new JSONObject();       
+        b.put("idpAccountId", idpAccountId);
+        b.put("iss", sender);
+        b.put("aud", "pingidauthenticator");
+        b.put("returnUrl", returnUrl);
+        b.put("nonce", nonce);
+        //b.put("confVersion", 1);
+        
+        rt = new RequestToken(false, orgAlias, token);
+        
+    }
+    
+    public String getNonce() {
+        return nonce;
+    }
+
+    public void populate(String username, JSONObject... attributes) {
+        
+        b.put("sub", username);
+        if (attributes != null) {
+            
+            List<JSONObject> attrs = Arrays.asList(attributes);
+            if (attrs.size() > 0) {
+                b.put("attributes", attrs);
+            }
+        }
+        
+    }
+
+    public String getSignedRequest() throws TokenProcessingException {
+        long now = System.currentTimeMillis();
+        b.put("iat", now);
+        b.put("exp", now + expiration * 1000);
+                
+        rt.setPayload(b);
+        return rt.getSignedToken(secretKey);
+
+    }
+
+}
diff --git a/oxAuth/Server/integrations/pingid/src/main/java/org/gluu/oxauth/ping/RequestToken.java b/oxAuth/Server/integrations/pingid/src/main/java/org/gluu/oxauth/ping/RequestToken.java
new file mode 100644
index 00000000..91920c0d
--- /dev/null
+++ b/oxAuth/Server/integrations/pingid/src/main/java/org/gluu/oxauth/ping/RequestToken.java
@@ -0,0 +1,84 @@
+package org.gluu.oxauth.ping;
+
+import java.time.Instant;
+import java.time.format.DateTimeFormatter;
+import java.util.Locale;
+import org.gluu.oxauth.model.jwt.Jwt;
+import org.gluu.oxauth.model.jwt.JwtClaims;
+import org.gluu.oxauth.model.jwt.JwtHeader;
+import org.json.JSONObject;
+import org.slf4j.Logger;
+import org.slf4j.LoggerFactory;
+
+public class RequestToken {
+
+    private static final String API_VERSION = "4.9";
+    private static final Locale defLocale = Locale.ENGLISH;
+
+    private static Logger logger = LoggerFactory.getLogger(RequestToken.class);
+
+    private String orgAlias;
+    private String token;
+
+    private Jwt jwt;
+    private boolean useReqHeader;
+
+    public RequestToken(boolean useReqHeader, String orgAlias, String token) {
+
+        this.useReqHeader = useReqHeader;
+        this.orgAlias = orgAlias;
+        this.token = token;
+
+        JwtHeader header = new JwtHeader();
+        header.setAlgorithm(Utils.HS256_ALG);
+        header.setClaim("orgAlias", orgAlias);
+        header.setClaim("token", token);
+
+        jwt = new Jwt();
+        jwt.setHeader(header);
+        
+    }
+
+    public RequestToken(String orgAlias, String token) {
+        this(true, orgAlias, token);
+    }
+
+    public void setPayload(JSONObject body) {
+        
+        if (useReqHeader) {
+            JwtClaims claims = new JwtClaims();
+            claims.setClaim("reqHeader", payloadHeader());
+            claims.setClaim("reqBody", body);
+            jwt.setClaims(claims);
+        } else {
+            jwt.setClaims(new JwtClaims(body));
+        }
+        
+    }
+
+    public String getSignedToken(byte secret[]) throws TokenProcessingException {
+        
+        try {
+            String input = jwt.getSigningInput();        
+            return input + "." + Utils.generateHS256Signature(input, secret);
+        } catch (Exception e) {
+            throw new TokenProcessingException(e);
+        }
+        
+    }
+
+    private JSONObject payloadHeader() {
+
+        String timestamp = DateTimeFormatter.ISO_INSTANT.format(Instant.now());
+        JSONObject j = new JSONObject();
+
+        j.put("locale", defLocale.toString());
+        j.put("orgAlias", orgAlias);
+        j.put("secretKey", token);
+        j.put("timestamp", timestamp.substring(0, timestamp.length() - 1));
+        j.put("version", API_VERSION);
+        return j;
+        
+    }
+
+}
diff --git a/oxAuth/Server/integrations/pingid/src/main/java/org/gluu/oxauth/ping/ResponseTokenParser.java b/oxAuth/Server/integrations/pingid/src/main/java/org/gluu/oxauth/ping/ResponseTokenParser.java
new file mode 100644
index 00000000..7795218d
--- /dev/null
+++ b/oxAuth/Server/integrations/pingid/src/main/java/org/gluu/oxauth/ping/ResponseTokenParser.java
@@ -0,0 +1,49 @@
+package org.gluu.oxauth.ping;
+
+import org.gluu.oxauth.model.jwt.Jwt;
+import org.json.JSONException;
+import org.json.JSONObject;
+import org.slf4j.Logger;
+import org.slf4j.LoggerFactory;
+ 
+public class ResponseTokenParser {
+
+    private static Logger logger = LoggerFactory.getLogger(ResponseTokenParser.class);
+    
+    private String orgAlias;
+    private String token;
+    private byte secret[];
+
+    public ResponseTokenParser(String orgAlias, String token, byte secret[]) {
+        this.orgAlias = orgAlias;
+        this.token = token;
+        this.secret = secret;        
+    }
+    
+    public JSONObject parse(String token) throws TokenProcessingException {
+        
+        try {
+            Jwt jwt = Jwt.parse(token);
+
+            if (jwt.getEncodedSignature()
+                    .equals(Utils.generateHS256Signature(jwt.getSigningInput(), secret))) {
+                return jwt.getClaims().toJsonObject();
+            }
+        } catch (Exception e) {
+            throw new TokenProcessingException(e);
+        }
+        throw new TokenProcessingException(new Exception("Signature validation failed")); 
+        
+    }
+    
+    public JSONObject parseKey(String token, String key) throws TokenProcessingException {
+        
+        try {
+            return parse(token).getJSONObject(key);
+        } catch (JSONException e) {
+            throw new TokenProcessingException(e);
+        }
+        
+    }
+    
+}
diff --git a/oxAuth/Server/integrations/pingid/src/main/java/org/gluu/oxauth/ping/TokenProcessingException.java b/oxAuth/Server/integrations/pingid/src/main/java/org/gluu/oxauth/ping/TokenProcessingException.java
new file mode 100644
index 00000000..b1981884
--- /dev/null
+++ b/oxAuth/Server/integrations/pingid/src/main/java/org/gluu/oxauth/ping/TokenProcessingException.java
@@ -0,0 +1,9 @@
+package org.gluu.oxauth.ping;
+
+public class TokenProcessingException extends Exception {
+
+    public TokenProcessingException(Throwable cause) {
+        super(cause);
+    }
+    
+}
diff --git a/oxAuth/Server/integrations/pingid/src/main/java/org/gluu/oxauth/ping/UserManagerBroker.java b/oxAuth/Server/integrations/pingid/src/main/java/org/gluu/oxauth/ping/UserManagerBroker.java
new file mode 100644
index 00000000..813087a8
--- /dev/null
+++ b/oxAuth/Server/integrations/pingid/src/main/java/org/gluu/oxauth/ping/UserManagerBroker.java
@@ -0,0 +1,166 @@
+package org.gluu.oxauth.ping;
+
+import java.nio.charset.StandardCharsets;
+import java.util.Base64;
+import org.json.JSONObject;
+import org.slf4j.Logger;
+import org.slf4j.LoggerFactory;
+
+public class UserManagerBroker {
+
+    enum Endpoint {
+        ADD_USER("/pingid/rest/4/adduser/do"),
+        ACTIVATE_USER("/pingid/rest/4/activateuser/do"),
+        GET_ACTIVATION_CODE("/pingid/rest/4/getactivationcode/do"),
+        GET_USER_DETAILS("/pingid/rest/4/getuserdetails/do"),
+        DELETE_USER("/pingid/rest/4/deleteuser/do"),
+        START_AUTHENTICATION("/pingid/rest/4/startauthentication/do"),
+        AUTHENTICATE_ONLINE("/pingid/rest/4/authonline/do");
+        
+        private String relativeUrl;
+        
+        Endpoint(String url) {
+            this.relativeUrl = url;
+        }
+        
+        String getRelativeUrl() {
+            return relativeUrl;
+        }
+        
+    }
+    
+    private static Logger logger = LoggerFactory.getLogger(UserManagerBroker.class);
+    private static final String QRCODE_URL = "/pingid/QRRedirection";
+    
+    private ResponseTokenParser tokenParser;
+    
+    private String userName;
+    private String orgAlias;
+    private String token;
+    private byte secret[];
+    private String userManagementApiHost;
+    
+    public UserManagerBroker(String userName, String orgAlias, String token, 
+            byte secret[], String userManagementApiHost) {
+        this.userName = userName;
+        this.orgAlias = orgAlias;
+        this.token = token;
+        this.secret = secret;
+        this.userManagementApiHost = userManagementApiHost;
+        
+        tokenParser = new ResponseTokenParser(orgAlias, token, secret);
+    }
+    
+    private String getEndpointUrl(Endpoint endpoint) {
+        return userManagementApiHost + endpoint.getRelativeUrl();
+    }
+    
+    private String signedJWT(JSONObject body) throws TokenProcessingException {        
+        RequestToken tok = new RequestToken(orgAlias, token);
+        tok.setPayload(body);
+        return tok.getSignedToken(secret);
+    }
+    
+    private String signedJwtForActivateUser() throws TokenProcessingException {
+        
+        JSONObject body = new JSONObject();
+        body.put("deviceType", "MOBILE");
+        body.put("userName", userName);
+        
+        return signedJWT(body);
+        
+    }
+    
+    private JSONObject getResponseBody(String endpoint, String jwt) 
+            throws HttpException, TokenProcessingException {
+        return tokenParser.parseKey(Utils.post(endpoint, jwt), "responseBody");
+    }
+    
+    public JSONObject activateUser() throws HttpException, TokenProcessingException {
+        String jwt = signedJwtForActivateUser();
+        return getResponseBody(getEndpointUrl(Endpoint.ACTIVATE_USER), jwt);
+    }
+    
+    public JSONObject addUser() throws HttpException, TokenProcessingException {
+        
+        JSONObject body = new JSONObject();
+        body.put("deviceType", "MOBILE");
+        body.put("userName", userName);
+        body.put("role", "REGULAR");
+        
+        String jwt = signedJWT(body);
+        return getResponseBody(getEndpointUrl(Endpoint.ADD_USER), jwt);
+
+    }
+    
+    public JSONObject deleteUser() throws HttpException, TokenProcessingException {
+
+        JSONObject body = new JSONObject();
+        body.put("userName", userName);
+        
+        String jwt = signedJWT(body);
+        return getResponseBody(getEndpointUrl(Endpoint.DELETE_USER), jwt);
+
+    }
+    
+    public JSONObject getActivationCode() throws HttpException, TokenProcessingException {
+        //Both activateUser and this API operation have the same parameters
+        String jwt = signedJwtForActivateUser();
+        return getResponseBody(getEndpointUrl(Endpoint.GET_ACTIVATION_CODE), jwt);
+    }
+    
+    public JSONObject getUserDetails() throws HttpException, TokenProcessingException { 
+        
+        JSONObject body = new JSONObject();
+        body.put("getSameDeviceUsers", false);
+        body.put("userName", userName);
+        
+        String jwt = signedJWT(body);
+        try {
+            return getResponseBody(getEndpointUrl(Endpoint.GET_USER_DETAILS), jwt);
+        } catch (HttpException e) {
+            //Mask the "not found" error
+            JSONObject errBody = tokenParser.parseKey(e.getResponse(), "responseBody");
+            //See ping ID API error codes 
+            if (errBody.getInt("errorId") == 10564) {
+                return errBody;
+            } else {
+                throw e;
+            }
+        }
+        
+    }
+ 
+    public JSONObject startAuthentication(long deviceId) throws Exception {
+
+        JSONObject body = new JSONObject();
+        body.put("spAlias", "web");
+        body.put("userName", userName);
+        body.put("deviceId", deviceId);
+        
+        String jwt = signedJWT(body);  
+        return getResponseBody(getEndpointUrl(Endpoint.START_AUTHENTICATION), jwt);
+        
+    }
+    
+    public JSONObject authenticateOnline() throws Exception {
+        
+        JSONObject body = new JSONObject();
+        body.put("spAlias", "web");
+        body.put("userName", userName);
+        body.put("authType", "CONFIRM");
+        
+        String jwt = signedJWT(body);   
+        return getResponseBody(getEndpointUrl(Endpoint.AUTHENTICATE_ONLINE), jwt);
+        
+    }
+    
+    public String getQRCodeLink(String activationCode) {
+        String tmp = "act_code=" + activationCode;
+        byte bytes[] = Base64.getEncoder().encode(tmp.getBytes());
+
+        return userManagementApiHost + QRCODE_URL + "?" + 
+                new String(bytes, StandardCharsets.UTF_8);
+    }
+
+}
diff --git a/oxAuth/Server/integrations/pingid/src/main/java/org/gluu/oxauth/ping/Utils.java b/oxAuth/Server/integrations/pingid/src/main/java/org/gluu/oxauth/ping/Utils.java
new file mode 100644
index 00000000..5a2ecf29
--- /dev/null
+++ b/oxAuth/Server/integrations/pingid/src/main/java/org/gluu/oxauth/ping/Utils.java
@@ -0,0 +1,96 @@
+package org.gluu.oxauth.ping;
+
+import java.security.InvalidKeyException;
+import java.security.NoSuchAlgorithmException;
+import javax.crypto.Mac;
+import javax.crypto.SecretKey;
+import javax.crypto.spec.SecretKeySpec;
+import javax.ws.rs.client.Entity;
+import javax.ws.rs.core.Response;
+import org.apache.commons.lang3.StringUtils;
+import org.apache.http.client.config.RequestConfig;
+import org.apache.http.client.HttpClient;
+import org.apache.http.HttpHost;
+import org.apache.http.impl.client.HttpClientBuilder;
+import org.apache.http.impl.conn.PoolingHttpClientConnectionManager;
+import org.gluu.oxauth.model.crypto.signature.SignatureAlgorithm;
+import org.gluu.oxauth.model.util.Base64Util;
+import org.jboss.resteasy.client.jaxrs.ResteasyClient;
+import org.jboss.resteasy.client.jaxrs.ResteasyClientBuilder;
+import org.jboss.resteasy.client.jaxrs.ResteasyWebTarget;
+import org.jboss.resteasy.client.jaxrs.engines.ApacheHttpClient4Engine;
+import org.slf4j.Logger;
+import org.slf4j.LoggerFactory;
+
+public class Utils {
+    
+    private static Logger logger = LoggerFactory.getLogger(Utils.class);
+
+    public static final SignatureAlgorithm HS256_ALG = SignatureAlgorithm.HS256;            
+    public static final String HMAC_SHA256_ALG_NAME = "HmacSHA256";
+    
+    public static ResteasyClient rsClient;
+    
+    static {
+        PoolingHttpClientConnectionManager manager = new PoolingHttpClientConnectionManager();
+        manager.setMaxTotal(200);
+        manager.setDefaultMaxPerRoute(20);
+        
+        String proxyHost = System.getProperty("https.proxyHost");
+        String proxyPort = System.getProperty("https.proxyPort");
+        RequestConfig.Builder configBuilder = RequestConfig.custom().setConnectTimeout(10 * 1000);
+        
+        if (StringUtils.isNotEmpty(proxyHost) && StringUtils.isNotEmpty(proxyPort)) {
+            String scheme = System.getProperty("https.proxyScheme", "http");
+            logger.debug("Using https proxy {}://{}:{}", scheme, proxyHost, proxyPort);
+
+            HttpHost proxy = new HttpHost(proxyHost, Integer.valueOf(proxyPort), scheme);
+            configBuilder.setProxy(proxy);
+        }
+
+        HttpClient httpClient = HttpClientBuilder.create()
+                .setDefaultRequestConfig(configBuilder.build())
+                .setConnectionManager(manager).build();
+        
+        ApacheHttpClient4Engine engine = new ApacheHttpClient4Engine(httpClient);
+        rsClient = new ResteasyClientBuilder().httpEngine(engine).build();
+    }
+
+    public static String generateHS256Signature(String input, byte secret[]) 
+            throws NoSuchAlgorithmException, InvalidKeyException {
+
+        SecretKey secretKey = new SecretKeySpec(secret, HMAC_SHA256_ALG_NAME);
+        Mac mac = Mac.getInstance(HMAC_SHA256_ALG_NAME);
+        mac.init(secretKey);
+
+        byte[] sig = mac.doFinal(input.getBytes());
+        return Base64Util.base64urlencode(sig);
+
+    }
+    
+    public static String post(String endpoint, String payload) throws HttpException {
+        
+        String data = null;
+        try {
+            ResteasyWebTarget target = rsClient.target(endpoint);
+            logger.info("Sending payload to {}", endpoint);
+            logger.debug("{}", payload);
+
+            Response response = target.request().post(Entity.json(payload));        
+            response.bufferEntity();
+            int status = response.getStatus();
+            data = response.readEntity(String.class);
+
+            logger.debug("Response code was {} and body:\n{}", status, data);
+            if (status == 200) {
+                return data;
+            } else {
+                throw new HttpException(status, "Unsuccessful response obtained", data); 
+            }
+        } catch (Exception e) {
+            throw new HttpException(e.getMessage(), e.getCause(), data);
+        }
+        
+    }
+    
+}
diff --git a/oxAuth/Server/integrations/postauthn/postauthn.py b/oxAuth/Server/integrations/postauthn/postauthn.py
new file mode 100644
index 00000000..cc1fff56
--- /dev/null
+++ b/oxAuth/Server/integrations/postauthn/postauthn.py
@@ -0,0 +1,42 @@
+# oxAuth is available under the MIT License (2008). See http://opensource.org/licenses/MIT for full text.
+# Copyright (c) 2020, Gluu
+#
+# Author: Yuriy Zabrovarnyy
+#
+#
+
+from org.gluu.model.custom.script.type.postauthn import PostAuthnType
+from java.lang import String
+
+class PostAuthn(PostAuthnType):
+    def __init__(self, currentTimeMillis):
+        self.currentTimeMillis = currentTimeMillis
+
+    def init(self, customScript, configurationAttributes):
+        print "Post Authn script. Initializing ..."
+        print "Post Authn script. Initialized successfully"
+
+        return True
+
+    def destroy(self, configurationAttributes):
+        print "Post Authn script. Destroying ..."
+        print "Post Authn script. Destroyed successfully"
+        return True
+
+    def getApiVersion(self):
+        return 11
+
+    # This method is called during Authorization Request at Authorization Endpoint.
+    # If True is returned, session is set as unauthenticated and user is send for authentication.
+    # Note :
+    # context is reference of org.gluu.oxauth.service.external.context.ExternalPostAuthnContext(in https://github.com/GluuFederation/oxauth project, )
+    def forceReAuthentication(self, context):
+        return False
+
+    # This method is called during Authorization Request at Authorization Endpoint.
+    # If True is returned user is send for Authorization. By default if client is "Pre-Authorized" or "Client Persist Authorizations" is on, authorization is skipped.
+    # This script has higher priority and can cancel Pre-Authorization and persisted authorizations.
+    # Note :
+    # context is reference of org.gluu.oxauth.service.external.context.ExternalPostAuthnContext(in https://github.com/GluuFederation/oxauth project, )
+    def forceAuthorization(self, context):
+        return False
\ No newline at end of file
diff --git a/oxAuth/Server/integrations/privacyidea/README.md b/oxAuth/Server/integrations/privacyidea/README.md
new file mode 100644
index 00000000..618673e4
--- /dev/null
+++ b/oxAuth/Server/integrations/privacyidea/README.md
@@ -0,0 +1,36 @@
+This is the authentication script to authenticate Gluu against privacyIDEA.
+
+# Setup
+
+* Download the jar-with-dependencies from [here](https://github.com/privacyidea/sdk-java/releases).
+* Change the name to ``java_sdk.jar`` and put it in ``/opt/gluu-server/opt``.
+* Alternatively put the file under any name anywhere in ``/opt/gluu-server/`` and configure the path later.
+
+# Configuration
+
+* Create a new Person Authentication script, choose file and enter the path to the ``.py`` file like explained above or choose database and paste its contents.
+
+* Add a new attribute with the key ``privacyidea_url`` and the url to the privacyIDEA Server as value.
+
+* If the java sdk is not in the above mentioned default location, add the key ``sdk_path`` with the path to the file including its compelete name as value.
+
+#### The following keys are optional (case sensitive!):
+
+* ``realm`` specify a realm that will be appended to each request.
+* ``sslverify`` set to ``0`` to disable peer verification.
+* ``log_from_sdk`` with any value: enable the logging of the jar.
+
+By default, the password from the first step is verified by the Gluu server and the OTP from the second step is sent to and verified by privacyIDEA.
+To use challenge-reponse type token, use the following configuration options:
+* ``sendpassword`` set to ``1`` if the password and username from the first step should be sent to the privacyIDEA server. This setting takes precedence over ``triggerchallenge``.
+* ``triggerchallenge`` set to ``1`` if challenges for the user should be triggered using the service account.
+* ``serviceaccountname`` name of the service account to trigger challenges with.
+* ``serviceaccountpass`` password of the service account to trigger challenges with.
+* ``serviceaccountrealm`` optionally set the realm in which the service account can be found if it is different from the ``realm`` or default realm.
+* ``disablegluupass`` set to ``1`` to disable the password verification of the Gluu server. This can be useful if the password should be verified by privacyIDEA in conjunction with the ``sendpassword`` setting.
+
+* **After finishing the configuration, change the default authentication method to the Person Authentication script you just created.**
+
+#### Logfile
+
+* The logfile for scripts is located at ``/opt/gluu-server/opt/gluu/jetty/oxauth/logs/oxauth_script.log``.
diff --git a/oxAuth/Server/integrations/privacyidea/pages/auth/privacyidea/privacyidea.xhtml b/oxAuth/Server/integrations/privacyidea/pages/auth/privacyidea/privacyidea.xhtml
new file mode 100644
index 00000000..ff2f38f9
--- /dev/null
+++ b/oxAuth/Server/integrations/privacyidea/pages/auth/privacyidea/privacyidea.xhtml
@@ -0,0 +1,98 @@
+<!DOCTYPE composition
+	PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN" "http://www.w3.org/TR/xhtml1/DTD/xhtml1-transitional.dtd">
+<ui:composition xmlns="http://www.w3.org/1999/xhtml" xmlns:f="http://xmlns.jcp.org/jsf/core"
+	xmlns:ui="http://xmlns.jcp.org/jsf/facelets" xmlns:h="http://xmlns.jcp.org/jsf/html"
+	template="/WEB-INF/incl/layout/login-template.xhtml">
+
+	<f:metadata>
+		<f:viewAction action="#{authenticator.prepareAuthenticationForStep}" />
+		<f:viewParam name="login_hint" value="#{loginAction.loginHint}" />
+	</f:metadata>
+	<ui:define name="pageTitle">
+		<h:outputText value="privacyIDEA - oxAuth" />
+	</ui:define>
+	<ui:define name="body">
+		<div class="container">
+			<h:panelGroup rendered="true">
+				<div class="login_bx_1"
+					style="border-radius: 10px; margin-top: 0px; background: white; border: 1px solid #008b8b;">
+					<div class="row">
+						<h:messages class="text-center"
+							style="color:#4ca4ec;margin:5px;margin-left:20px; font-size:1vw;" infoClass="text-center"
+							errorClass="text-center" />
+					</div>
+					<h:form id="loginForm" style="padding:30px;" prependId="false">
+						<div class="form-group row"></div>
+						<div class="col-sm-offset-2 offset-md-2 col-sm-8 col-md-8">
+							<p>
+								<h:outputText value="#{identity.getWorkingParameter('transaction_message')}" />
+							</p>
+						</div>
+						<div class="form-group row">
+							<div class="col-sm-offset-2 offset-md-2 col-sm-8 col-md-8">
+								<h:inputSecret placeholder="OTP" colMd="10" id="otp" name="otp" labelColMd="2"
+									value="#{otp}" autocomplete="off" styleClass="form-control" tyle="width:100%">
+								</h:inputSecret>
+							</div>
+						</div>
+						<div class="form-group row"></div>
+						<div class="form-group row">
+							<div class="col-sm-offset-2 offset-md-2 col-sm-8 col-md-8">
+								<h:commandButton id="loginButton" style="background-color: #00BE79; color:white;"
+									styleClass="btn col-sm-12" value="    #{msgs['login.login']}"
+									iconAwesome="fa-sign-in" action="#{authenticator.authenticate}" />
+							</div>
+						</div>
+						<div class="form-group row"></div>
+						<div class="form-group row">
+							<div class="col-sm-offset-2 offset-md-2 col-sm-8 col-md-8">
+								<h:commandButton id="changeModeButton" style="background-color: #00BE79; color:white;"
+									styleClass="btn col-sm-12" value="    Use PushToken" onclick="changeMode()"
+									iconAwesome="fa-sign-in" action="#{authenticator.authenticate}" />
+							</div>
+						</div>
+						<h:inputHidden id="modeField" value="otp" />
+					</h:form>
+				</div>
+			</h:panelGroup>
+		</div>
+		<script>
+			function changeMode() {
+				var modeField = document.getElementById("modeField");
+				modeField.value = (modeField.value == "otp") ? "push" : "otp";
+			}
+
+			window.onload = function () {
+				var pushAvailable = "#{identity.getWorkingParameter('push_available')}";
+				var mode = "#{identity.getWorkingParameter('mode')}";
+				var otpAvailable = "#{identity.getWorkingParameter('otp_available')}";
+				var modeField = document.getElementById("modeField");
+				var changeModeButton = document.getElementById("changeModeButton");
+				var otpField = document.getElementById("otp");
+
+				if (mode == "otp") {
+					otpField.value = "";
+					otpField.focus();
+				}
+
+				if (!(mode == "push" || otpAvailable == "1")) {
+					mode = "push";
+				}
+
+				// persist the mode between this and the script
+				modeField.value = mode;
+				changeModeButton.hidden = pushAvailable != "1" || otpAvailable != "1";
+				changeModeButton.value = (modeField.value == "otp") ? "    Use PushToken" : "    Use One-Time Password";
+
+				if (modeField.value == "push") {
+					otpField.hidden = true;
+					document.getElementById("loginButton").hidden = true;
+
+					window.setTimeout(function () {
+						document.getElementById('loginButton').click();
+					}, 1000)
+				}
+			};
+		</script>
+	</ui:define>
+</ui:composition>
\ No newline at end of file
diff --git a/oxAuth/Server/integrations/privacyidea/privacyidea.py b/oxAuth/Server/integrations/privacyidea/privacyidea.py
new file mode 100644
index 00000000..67419c06
--- /dev/null
+++ b/oxAuth/Server/integrations/privacyidea/privacyidea.py
@@ -0,0 +1,338 @@
+# -*- coding: utf-8 -*-
+#
+# privacyIDEA is a Multi-Factor-Management system that supports
+# a wide variety of different tokentypes like smartphone apps, key fob tokens,
+# yubikeys, u2f, fido2, email, sms...
+# The administrator of an organization can manage the 2nd factors of the
+# users centrally in privacyIDEA and connect any application with privacyIDEA
+# to secure the login process.
+#
+# This authentication script adds a most flexible multi-factor-authentication
+# to Gluu. See:
+#      https://privacyidea.org
+# Get enterprise support at:
+#      https://netknights.it/en/produkte/privacyidea/
+#
+# License:  AGPLv3
+#
+# This code is free software; you can redistribute it and/or
+# modify it under the terms of the GNU AFFERO GENERAL PUBLIC LICENSE
+# License as published by the Free Software Foundation; either
+# version 3 of the License, or any later version.
+#
+# This code is distributed in the hope that it will be useful,
+# but WITHOUT ANY WARRANTY; without even the implied warranty of
+# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.  See the
+# GNU AFFERO GENERAL PUBLIC LICENSE for more details.
+#
+# You should have received a copy of the GNU Affero General Public
+# License along with this program.  If not, see <http://www.gnu.org/licenses/>.
+#
+#
+__doc__ = """This script enables Gluu to communicate to privacyIDEA server
+and have the privacyIDEA verify the second factor.
+"""
+
+__version__ = "1.0.0"
+
+from org.gluu.oxauth.security import Identity
+from org.gluu.oxauth.service import AuthenticationService, SessionIdService
+from org.gluu.model.custom.script.type.auth import PersonAuthenticationType
+from org.gluu.service.cdi.util import CdiUtil
+from org.gluu.oxauth.service import UserService
+from org.gluu.util import StringHelper
+
+from javax.faces.application import FacesMessage
+from org.gluu.jsf2.message import FacesMessages
+
+from java.util import Arrays
+import sys
+
+PI_USER_AGENT = "privacyIDEA-Gluu"
+GLUU_API_VERSION = 11
+
+
+def logFromSDK(message):
+    print("privacyIDEA. JavaSDK: " + message)
+
+class PersonAuthentication(PersonAuthenticationType):
+
+    def __init__(self, currentTimeMillis):
+        print("__init__")
+        self.currentTimeMillis = currentTimeMillis
+
+    def init(self, customScript, configurationAttributes):
+        print("privacyIDEA. init")
+        self.pi = None
+
+        sdk_path = "/opt/java_sdk.jar"
+        if configurationAttributes.containsKey("sdk_path"):
+            sdk_path = configurationAttributes.get("sdk_path").getValue2()
+
+        sys.path.append(sdk_path)
+        try:
+            from org.privacyidea import Challenge
+            from org.privacyidea import PrivacyIDEA
+            from org.privacyidea import PIResponse
+        except ImportError:
+            print("privacyIDEA. Java SDK import not found! Make sure the jar is located at '{}'.".format(sdk_path))
+            # returning success here allows to display a error message in the authenticate function
+            # because self.pi will be None
+            return True
+
+        if not configurationAttributes.containsKey("privacyidea_url"):
+            print("privacyIDEA. Missing mandatory configuration value 'privacyidea_url'!")
+            return True
+
+        privacyidea_url = configurationAttributes.get("privacyidea_url").getValue2()
+
+        builder = PrivacyIDEA.Builder(privacyidea_url, PI_USER_AGENT)
+
+        if configurationAttributes.containsKey("log_from_sdk"):
+            builder.setSimpleLog(logFromSDK)
+
+        if configurationAttributes.containsKey("sslverify"):
+            sslverify = configurationAttributes.get("sslverify").getValue2()
+            builder.setSSLVerify(sslverify != "0")
+
+        if configurationAttributes.containsKey("realm"):
+            realm = configurationAttributes.get("realm").getValue2()
+            builder.setRealm(realm)
+        else:
+            print("privacyIDEA. Config param 'realm' not set")
+
+        self.disableGluuPass = False
+        if configurationAttributes.containsKey("disablegluupass"):
+            self.disableGluuPass = configurationAttributes.get("disablegluupass").getValue2() == "1"
+
+        # Load configuration for optional trigger challenge or send password in first step
+        self.sendPassword = False
+        self.triggerChallenge = False
+        serviceAccountName = None
+        serviceAccountPass = None
+        serviceAccountRealm = None
+
+        if configurationAttributes.containsKey("triggerchallenges"):
+            self.triggerChallenge = configurationAttributes.get("triggerchallenges").getValue2() == "1"
+
+        if configurationAttributes.containsKey("sendpassword"):
+            self.sendPassword = configurationAttributes.get("sendpassword").getValue2() == "1"
+
+        if configurationAttributes.containsKey("serviceaccountname"):
+            serviceAccountName = configurationAttributes.get("serviceaccountname").getValue2()
+            
+        if configurationAttributes.containsKey("serviceaccountpass"):
+            serviceAccountPass = configurationAttributes.get("serviceaccountpass").getValue2()
+
+        if serviceAccountName is not None and serviceAccountPass is not None and self.triggerChallenge:
+            builder.setServiceAccount(serviceAccountName, serviceAccountPass)
+        elif self.triggerChallenge:
+            print("Trigger challenge enabled but no service account set!")
+            self.triggerChallenge = False
+
+        if configurationAttributes.containsKey("serviceaccountrealm"):
+            serviceAccountRealm = configurationAttributes.get("serviceaccountrealm").getValue2()
+            builder.setServiceAccountRealm(serviceAccountRealm)
+            
+        self.pi = builder.build()
+        self.sessionIdservice = CdiUtil.bean(SessionIdService)
+
+        print("privacyIDEA. init done")
+        return True
+
+    def authenticate(self, configurationAttributes, requestParameters, step):
+        #print("Authenticate step={} with sendpass={} and triggerchallenge={}".format(step, self.sendPassword, self.triggerChallenge))
+        fm = CdiUtil.bean(FacesMessages)
+        fm.clear()
+        fm.setKeepMessages()
+
+        if self.pi is None:
+            fm.add(FacesMessage.SEVERITY_ERROR, "Failed to communicate to privacyIDEA. Possible misconfiguration. Please have the administrator check the log files.")
+            return False
+
+        identity = CdiUtil.bean(Identity)
+
+        if step == 1:
+            credentials = identity.getCredentials()
+            username = credentials.getUsername()
+            password = credentials.getPassword()
+
+            if username:
+                if self.sendPassword:
+                    response = self.pi.validateCheck(username, password)
+                    if response:
+                        # First check if what was entered is sufficient to log in
+                        if response.getValue():
+                            logged_in = self.login(username, password)
+                            if logged_in:
+                                self.addToSession("auth_success", True)
+                            return logged_in
+                        # If not, check if transaction was triggered
+                        elif response.getTransactionID():
+                            self.evaluateTriggeredChallenges(response, identity)
+                    else:
+                        print("privacyIDEA. Empty response from server")
+                        fm.add(FacesMessage.SEVERITY_ERROR, "No response from the privacyIDEA Server. Please check the connection!")
+
+                elif self.triggerChallenge:
+                    response = self.pi.triggerChallenges(username)
+                    if response is None:
+                        fm.add(FacesMessage.SEVERITY_ERROR, "Failed to communicate to privacyIDEA. Possible misconfiguration. Please have the administrator check the log files.")
+                        print("Service account misconfiguration or no response from the privacyIDEA server!")
+                    elif response.getTransactionID():
+                        self.evaluateTriggeredChallenges(response, identity)
+                else:
+                    # Setup for just OTP in second step
+                    identity.setWorkingParameter("otp_available", "1")
+                    identity.setWorkingParameter("transaction_message", "Please enter the OTP:")
+
+                self.addToSession("currentUser", username)
+                self.addToSession("currentPassword", password)
+
+                return True
+
+            else:
+                #print("privacyIDEA. Username is empty")
+                fm.add(FacesMessage.SEVERITY_ERROR, "Please enter a username!")
+
+            return False
+        else:
+            # Get the user from step 1
+            currentUser = self.getFromSession("currentUser")
+            currentPassword = self.getFromSession("currentPassword")
+
+            if currentUser and currentPassword:
+                self.login(currentUser, currentPassword)
+            else:
+                print("privacyIDEA. No user found in session for second step")
+                fm.add(FacesMessage.SEVERITY_ERROR, "Session data got lost. Please try to restart the authentication!")
+                return False
+
+            try:
+                # Persist the mode between the script and the js
+                mode = requestParameters.get("modeField")[0].strip()
+                identity.setWorkingParameter("mode", mode)
+            except TypeError:
+                print("privacyIDEA. Mode not found in request parameters")
+
+            txid = self.getFromSession("transaction_id")
+
+            # If mode is push: poll for the transactionID to see if the user confirmed on the smartphone
+            if mode == "push":
+                if not txid:
+                    print("privacyIDEA. Transaction ID not found in session, but it is mandatory for polling!")
+                    fm.add(FacesMessage.SEVERITY_ERROR, "Your transaction id could not be found. Please try to restart the authentication!")
+                    return False
+
+                if self.pi.pollTransaction(txid):
+                    # If polling is successful, the authentication has to be finished by a call to validateCheck
+                    # with the username, NO otp and the transactionID
+                    response = self.pi.validateCheck(currentUser, "", txid)
+                    return response.getValue()
+
+            elif mode == "otp":
+                try:
+                    otp = requestParameters.get("otp")[0]
+                except TypeError:
+                    print("privacyIDEA. Unable to obtain OTP from requestParameters, but it is required!")
+                    fm.add(FacesMessage.SEVERITY_ERROR, "Your input could not be read. Please try to restart the authentication!")
+
+                if otp:
+                    # Either do validate/check with transaction id if there is one in the session or just with the input
+                    if txid:
+                        resp = self.pi.validateCheck(currentUser, otp, txid)
+                    else:
+                        resp = self.pi.validateCheck(currentUser, otp)
+
+                    if resp:
+                        return resp.getValue()
+        return False
+
+    def evaluateTriggeredChallenges(self, response, identity):
+        identity.setWorkingParameter("transaction_message", response.getMessage())
+        self.addToSession("transaction_id", response.getTransactionID())
+
+        # Check if push is available
+        tttList = response.getTriggeredTokenTypes()
+        if tttList.contains("push"):
+            identity.setWorkingParameter("push_available", "1")
+            tttList.remove("push")
+
+        # Check if an input field is needed for any other token type
+        if tttList.size() > 0:
+            identity.setWorkingParameter("otp_available", "1")
+
+    def login(self, username, password):
+        #print("Login with user={} and pass={}, verifyGluuPassword={}".format(username, password, self.verifyGluuPassword))
+        authenticationService = CdiUtil.bean(AuthenticationService)
+        if not self.disableGluuPass:
+            logged_in = authenticationService.authenticate(username, password)
+        else:
+            logged_in = authenticationService.authenticate(username)
+        
+        return logged_in
+
+    def addToSession(self, key, value):
+        #print("addToSession: {}, {}".format(key, value))
+        session = self.sessionIdservice.getSessionId()
+        session.getSessionAttributes().put(key, value)
+        self.sessionIdservice.updateSessionId(session)
+
+    def getFromSession(self, key):
+        #print("getFromSession: {}".format(key))
+        session = self.sessionIdservice.getSessionId()
+        return session.getSessionAttributes().get(key) if session else None
+
+    def prepareForStep(self, configurationAttributes, requestParameters, step):
+        #print("prepareForStep {}, params={}".format(step, requestParameters))
+        if step == 1: return True
+
+        # Set the initial state for our template
+        identity = CdiUtil.bean(Identity)
+        identity.setWorkingParameter("mode", "otp")
+        return True
+
+    def getExtraParametersForStep(self, configurationAttributes, step):
+        #print("getExtraParametersForStep {}".format(step))
+        return Arrays.asList("transaction_message", "push_available", "otp_available", "mode")
+
+    def getCountAuthenticationSteps(self, configurationAttributes):
+        #print("getCountAuthenticationSteps")
+        if self.getFromSession("auth_success"):
+            #print("Auth success in session, returning 1")
+            return 1
+        else:
+            #print("Auth success not in session, returning 2")
+            return 2
+
+    def getPageForStep(self, configurationAttributes, step):
+        #print("getPageForStep {}".format(step))
+        return "" if step == 1 else "/auth/privacyidea/privacyidea.xhtml"
+
+    def getNextStep(self, configurationAttributes, requestParameters, step):
+        #print("getNextStep {}".format(step))
+        return -1
+
+    def destroy(self, configurationAttributes):
+        #print("destroy")
+        return True
+
+    def getApiVersion(self):
+        #print("getApiVersion = {}".format(SCRIPT_API_VERSION))
+        return GLUU_API_VERSION
+
+    def isValidAuthenticationMethod(self, usageType, configurationAttributes):
+        #print("isValidAuthenticationMethod")
+        return True
+
+    def getAlternativeAuthenticationMethod(self, usageType, configurationAttributes):
+        #print("getAlternativeAuthenticationMethod")
+        return None
+
+    def getAuthenticationMethodClaims(self, requestParameters):
+        #print("getAuthenticationMethodClaims")
+        return None
+
+    def logout(self, configurationAttributes, requestParameters):
+        #print("logout")
+        return True
diff --git a/oxAuth/Server/integrations/registration/read.txt b/oxAuth/Server/integrations/registration/read.txt
new file mode 100644
index 00000000..d3b048de
--- /dev/null
+++ b/oxAuth/Server/integrations/registration/read.txt
@@ -0,0 +1,6 @@
+This is a person authentication module for oxAuth that allows user to register first and login to server. 
+
+Required Custom property (key/value) -
+1) generic_register_attributes_list = email,fname,lname,email,phone,pwd
+2) generic_local_attributes_list  = uid,givenName,sn,mail,telephoneNumber,userPassword
+
diff --git a/oxAuth/Server/integrations/registration/register.py b/oxAuth/Server/integrations/registration/register.py
new file mode 100644
index 00000000..5c65e4c5
--- /dev/null
+++ b/oxAuth/Server/integrations/registration/register.py
@@ -0,0 +1,182 @@
+# oxAuth is available under the MIT License (2008). See http://opensource.org/licenses/MIT for full text.
+# Copyright (c) 2016, Gluu
+#
+# Author: Yuriy Movchan
+#
+
+from org.gluu.service.cdi.util import CdiUtil
+from org.gluu.oxauth.security import Identity
+from org.gluu.jsf2.message import FacesMessages
+from javax.faces.application import FacesMessage
+from org.gluu.util import StringHelper, ArrayHelper
+from java.util import Arrays, ArrayList, HashMap, IdentityHashMap
+from org.gluu.model.custom.script.type.auth import PersonAuthenticationType
+from org.gluu.oxauth.service import UserService, ClientService, AuthenticationService
+from org.gluu.util import StringHelper
+from org.gluu.oxauth.model.common import User
+from org.gluu.oxauth.util import ServerUtil
+from org.gluu.jsf2.service import FacesService
+from org.gluu.oxauth.model.util import Base64Util
+from org.python.core.util import StringUtil
+from org.gluu.oxauth.service.net import HttpService
+from javax.faces.context import FacesContext
+
+import java
+
+class PersonAuthentication(PersonAuthenticationType):
+    def __init__(self, currentTimeMillis):
+        self.currentTimeMillis = currentTimeMillis
+
+    def init(self, customScript, configurationAttributes):
+        print "Registration. Initialization"
+        if (configurationAttributes.containsKey("generic_register_attributes_list") and
+                configurationAttributes.containsKey("generic_local_attributes_list")):
+
+            remoteAttributesList = configurationAttributes.get("generic_register_attributes_list").getValue2()
+            if (StringHelper.isEmpty(remoteAttributesList)):
+                print "Registration: Initialization. The property generic_register_attributes_list is empty"
+                return False
+
+            localAttributesList = configurationAttributes.get("generic_local_attributes_list").getValue2()
+            if (StringHelper.isEmpty(localAttributesList)):
+                print "Registration: Initialization. The property generic_local_attributes_list is empty"
+                return False
+
+            self.attributesMapping = self.prepareAttributesMapping(remoteAttributesList, localAttributesList)
+            if (self.attributesMapping == None):
+                print "Registration: Initialization. The attributes mapping isn't valid"
+                return False
+
+        print "Registration. Initialized successfully"
+
+        return True
+        
+        
+    def destroy(self, configurationAttributes):
+        print "Registration. Destroy"
+        print "Registration. Destroyed successfully"
+        return True
+
+    def getApiVersion(self):
+        return 11
+        
+    def getAuthenticationMethodClaims(self, requestParameters):
+        return None
+        
+    def isValidAuthenticationMethod(self, usageType, configurationAttributes):
+        return True
+
+    def getAlternativeAuthenticationMethod(self, usageType, configurationAttributes):
+        return None
+    def getUserValueFromAuth(self, remote_attr, requestParameters):
+        try:
+            toBeFeatched = "loginForm:" + remote_attr
+            return ServerUtil.getFirstValue(requestParameters, toBeFeatched)
+        except Exception, err:
+            print("Registration: Exception inside getUserValueFromAuth " + str(err))
+
+    def authenticate(self, configurationAttributes, requestParameters, step):
+        print "Registration. Authenticate for step 1"
+        userService = CdiUtil.bean(UserService)
+        authenticationService = CdiUtil.bean(AuthenticationService)
+
+	if (StringHelper.isEmptyString(self.getUserValueFromAuth("email", requestParameters))):
+	    facesMessages = CdiUtil.bean(FacesMessages)
+	    facesMessages.setKeepMessages()
+	    facesMessages.add(FacesMessage.SEVERITY_ERROR, "Please provide your email.")
+            return False
+
+	if (StringHelper.isEmptyString(self.getUserValueFromAuth("pwd", requestParameters))):
+	    facesMessages = CdiUtil.bean(FacesMessages)
+	    facesMessages.setKeepMessages()
+	    facesMessages.add(FacesMessage.SEVERITY_ERROR, "Please provide password.")
+            return False
+
+
+
+        foundUser = userService.getUserByAttribute("mail", self.getUserValueFromAuth("email", requestParameters))
+        if (foundUser == None):
+            newUser = User()
+	    for attributesMappingEntry in self.attributesMapping.entrySet():
+		remoteAttribute = attributesMappingEntry.getKey()
+		localAttribute = attributesMappingEntry.getValue()
+		localAttributeValue = self.getUserValueFromAuth(remoteAttribute, requestParameters)
+		if ((localAttribute != None) & (localAttributeValue != "undefined")):
+		    print localAttribute + localAttributeValue
+		    newUser.setAttribute(localAttribute, localAttributeValue)
+
+	    try:
+		foundUser = userService.addUser(newUser, True)
+		foundUserName = foundUser.getUserId()
+		print("Registration: Found user name " + foundUserName)
+		userAuthenticated = authenticationService.authenticate(foundUserName)
+		print("Registration: User added successfully and isUserAuthenticated = " + str(userAuthenticated))
+	    except Exception, err:
+		print("Registration: Error in adding user:" + str(err))
+		return False
+	    return userAuthenticated
+	else:
+	    facesMessages = CdiUtil.bean(FacesMessages)
+	    facesMessages.setKeepMessages()
+	    facesMessages.add(FacesMessage.SEVERITY_ERROR, "User with same email already exists!")
+	    return False
+
+
+
+    def prepareForStep(self, configurationAttributes, requestParameters, step):
+        if (step == 1):
+            print "Registration. Prepare for Step 1"
+            return True
+        else:
+            return False
+
+    def getExtraParametersForStep(self, configurationAttributes, step):
+        return None
+
+    def getCountAuthenticationSteps(self, configurationAttributes):
+        return 1
+
+    def getPageForStep(self, configurationAttributes, step):
+        if step == 1:
+            return "/auth/register/register.xhtml"
+
+    def getNextStep(self, configurationAttributes, requestParameters, step):
+        return -1
+
+    def getLogoutExternalUrl(self, configurationAttributes, requestParameters):
+        print "Get external logout URL call"
+        return None
+
+    def logout(self, configurationAttributes, requestParameters):
+        return True
+
+    def prepareAttributesMapping(self, remoteAttributesList, localAttributesList):
+        try:
+            remoteAttributesListArray = StringHelper.split(remoteAttributesList, ",")
+            if (ArrayHelper.isEmpty(remoteAttributesListArray)):
+                print("Registration: PrepareAttributesMapping. There is no attributes specified in remoteAttributesList property")
+                return None
+
+            localAttributesListArray = StringHelper.split(localAttributesList, ",")
+            if (ArrayHelper.isEmpty(localAttributesListArray)):
+                print("Registration: PrepareAttributesMapping. There is no attributes specified in localAttributesList property")
+                return None
+
+            if (len(remoteAttributesListArray) != len(localAttributesListArray)):
+                print("Registration: PrepareAttributesMapping. The number of attributes in remoteAttributesList and localAttributesList isn't equal")
+                return None
+
+            attributeMapping = IdentityHashMap()
+            containsUid = False
+            i = 0
+            count = len(remoteAttributesListArray)
+            while (i < count):
+                remoteAttribute = StringHelper.toLowerCase(remoteAttributesListArray[i])
+                localAttribute = StringHelper.toLowerCase(localAttributesListArray[i])
+                attributeMapping.put(remoteAttribute, localAttribute)
+
+                i = i + 1
+
+            return attributeMapping
+        except Exception, err:
+            print("Registration: Exception inside prepareAttributesMapping " + str(err))
diff --git a/oxAuth/Server/integrations/saml-passport/SamlPassportAuthenticator.py b/oxAuth/Server/integrations/saml-passport/SamlPassportAuthenticator.py
new file mode 100644
index 00000000..63eb749b
--- /dev/null
+++ b/oxAuth/Server/integrations/saml-passport/SamlPassportAuthenticator.py
@@ -0,0 +1,827 @@
+# oxAuth is available under the MIT License (2008). See http://opensource.org/licenses/MIT for full text.
+# Copyright (c) 2019, Gluu
+#
+# Author: Jose Gonzalez
+# Author: Yuriy Movchan
+# Author: Christian Eland
+#
+
+from org.gluu.jsf2.service import FacesService
+from org.gluu.jsf2.message import FacesMessages
+
+from org.gluu.oxauth.model.common import User, WebKeyStorage
+from org.gluu.oxauth.model.configuration import AppConfiguration
+from org.gluu.oxauth.model.crypto import CryptoProviderFactory
+from org.gluu.oxauth.model.jwt import Jwt, JwtClaimName
+from org.gluu.oxauth.model.util import Base64Util
+from org.gluu.oxauth.service import AppInitializer, AuthenticationService
+from org.gluu.oxauth.service.common import UserService, EncryptionService
+from org.gluu.oxauth.model.authorize import AuthorizeRequestParam
+from org.gluu.oxauth.service.net import HttpService
+from org.gluu.oxauth.security import Identity
+from org.gluu.oxauth.util import ServerUtil
+from org.gluu.config.oxtrust import LdapOxPassportConfiguration
+from org.gluu.model.custom.script.type.auth import PersonAuthenticationType
+from org.gluu.persist import PersistenceEntryManager
+from org.gluu.service.cdi.util import CdiUtil
+from org.gluu.util import StringHelper
+from java.util import ArrayList, Arrays, Collections, HashSet
+from org.gluu.oxauth.model.exception import InvalidJwtException
+from javax.faces.application import FacesMessage
+from javax.faces.context import FacesContext
+
+import json
+import sys
+import datetime
+import base64
+
+
+class PersonAuthentication(PersonAuthenticationType):
+    def __init__(self, currentTimeMillis):
+        self.currentTimeMillis = currentTimeMillis
+
+    def init(self, customScript, configurationAttributes):
+
+        print "Passport. init called"
+
+        self.extensionModule = self.loadExternalModule(configurationAttributes.get("extension_module"))
+        extensionResult = self.extensionInit(configurationAttributes)
+        if extensionResult != None:
+            return extensionResult
+
+        print "Passport. init. Behaviour is inbound SAML"
+        success = self.processKeyStoreProperties(configurationAttributes)
+
+        if success:
+            self.providerKey = "provider"
+            self.customAuthzParameter = self.getCustomAuthzParameter(configurationAttributes.get("authz_req_param_provider"))
+            self.passportDN = self.getPassportConfigDN()
+            print "Passport. init. Initialization success"
+        else:
+            print "Passport. init. Initialization failed"
+        return success
+
+
+    def destroy(self, configurationAttributes):
+        print "Passport. destroy called"
+        return True
+
+
+    def getApiVersion(self):
+        return 11
+
+    def getAuthenticationMethodClaims(self, requestParameters):
+        return None
+
+    def isValidAuthenticationMethod(self, usageType, configurationAttributes):
+        return True
+
+
+    def getAlternativeAuthenticationMethod(self, usageType, configurationAttributes):
+        return None
+
+
+    def authenticate(self, configurationAttributes, requestParameters, step):
+
+        extensionResult = self.extensionAuthenticate(configurationAttributes, requestParameters, step)
+        if extensionResult != None:
+            return extensionResult
+
+        print "Passport. authenticate for step %s called" % str(step)
+        identity = CdiUtil.bean(Identity)
+
+        # Loading self.registeredProviders in case passport destroyed
+        if not hasattr(self,'registeredProviders'):
+            print "Passport. Fetching registered providers."
+            self.parseProviderConfigs()
+
+        if step == 1:
+
+            jwt_param = None
+
+            if self.isInboundFlow(identity):
+                # if is idp-initiated inbound flow
+                print "Passport. authenticate for step 1. Detected idp-initiated inbound Saml flow"
+                # get request from session attributes
+                jwt_param = identity.getSessionId().getSessionAttributes().get(AuthorizeRequestParam.STATE)
+                print "jwt_param = %s" % jwt_param
+                # now jwt_param != None
+
+
+
+            if jwt_param == None:
+                # gets jwt parameter "user" sent after authentication by passport (if exists)
+                jwt_param = ServerUtil.getFirstValue(requestParameters, "user")
+
+
+            if jwt_param != None:
+                # and now that the jwt_param user exists...
+                print "Passport. authenticate for step 1. JWT user profile token found"
+
+                if self.isInboundFlow(identity):
+                    jwt_param = base64.urlsafe_b64decode(str(jwt_param+'=='))
+
+                # Parse JWT and validate
+                jwt = Jwt.parse(jwt_param)
+
+                if not self.validSignature(jwt):
+                    return False
+
+                if self.jwtHasExpired(jwt):
+                    return False
+
+                # Gets user profile as string and json using the information on JWT
+                (user_profile, jsonp) = self.getUserProfile(jwt)
+
+                if user_profile == None:
+                    return False
+
+                sessionAttributes = identity.getSessionId().getSessionAttributes()
+                self.skipProfileUpdate = StringHelper.equalsIgnoreCase(sessionAttributes.get("skipPassportProfileUpdate"), "true")
+
+                return self.attemptAuthentication(identity, user_profile, jsonp)
+
+            #See passportlogin.xhtml
+            provider = ServerUtil.getFirstValue(requestParameters, "loginForm:provider")
+
+            if StringHelper.isEmpty(provider):
+
+                #it's username + passw auth
+                print "Passport. authenticate for step 1. Basic authentication detected"
+                logged_in = False
+
+                credentials = identity.getCredentials()
+                user_name = credentials.getUsername()
+                user_password = credentials.getPassword()
+
+                if StringHelper.isNotEmptyString(user_name) and StringHelper.isNotEmptyString(user_password):
+                    authenticationService = CdiUtil.bean(AuthenticationService)
+                    logged_in = authenticationService.authenticate(user_name, user_password)
+
+                print "Passport. authenticate for step 1. Basic authentication returned: %s" % logged_in
+                return logged_in
+
+
+
+            elif provider in self.registeredProviders:
+                # user selected provider
+                # it's a recognized external IDP
+
+                identity.setWorkingParameter("selectedProvider", provider)
+                print "Passport. authenticate for step 1. Retrying step 1"
+
+                #see prepareForStep (step = 1)
+                return True
+
+        if step == 2:
+            mail = ServerUtil.getFirstValue(requestParameters, "loginForm:email")
+            jsonp = identity.getWorkingParameter("passport_user_profile")
+
+            if mail == None:
+                self.setMessageError(FacesMessage.SEVERITY_ERROR, "Email was missing in user profile")
+            elif jsonp != None:
+                # Completion of profile takes place
+                user_profile = json.loads(jsonp)
+                user_profile["mail"] = [ mail ]
+
+                return self.attemptAuthentication(identity, user_profile, jsonp)
+
+            print "Passport. authenticate for step 2. Failed: expected mail value in HTTP request and json profile in session"
+            return False
+
+
+    def prepareForStep(self, configurationAttributes, requestParameters, step):
+
+        extensionResult = self.extensionPrepareForStep(configurationAttributes, requestParameters, step)
+        if extensionResult != None:
+            return extensionResult
+
+        print "Passport. prepareForStep called %s"  % str(step)
+        identity = CdiUtil.bean(Identity)
+
+        if step == 1:
+            #re-read the strategies config (for instance to know which strategies have enabled the email account linking)
+            self.parseProviderConfigs()
+            identity.setWorkingParameter("externalProviders", json.dumps(self.registeredProviders))
+
+            providerParam = self.customAuthzParameter
+            url = None
+
+            sessionAttributes = identity.getSessionId().getSessionAttributes()
+            self.skipProfileUpdate = StringHelper.equalsIgnoreCase(sessionAttributes.get("skipPassportProfileUpdate"), "true")
+
+            #this param could have been set previously in authenticate step if current step is being retried
+            provider = identity.getWorkingParameter("selectedProvider")
+            print "prepareForStep %s - provider = %s" % (str(step), str(provider))
+
+            # if there is a selectedProvider
+            if provider != None:
+
+                # get the redirect URL to use at facesService.redirectToExternalURL() that sends /passport/auth/<provider>/<token>
+                url = self.getPassportRedirectUrl(provider)
+                print "prepareForStep %s - url = %s" % (str(step), url)
+
+                # sets selectedProvider back to None
+                identity.setWorkingParameter("selectedProvider", None)
+
+            # if there is customAuthzParameter
+            elif providerParam != None:
+
+
+                # get it from sessionAtributes
+                paramValue = sessionAttributes.get(providerParam)
+
+                #if exists
+                if paramValue != None:
+                    print "Passport. prepareForStep. Found value in custom param of authorization request: %s" % paramValue
+                    provider = self.getProviderFromJson(paramValue)
+
+                    if provider == None:
+                        print "Passport. prepareForStep. A provider value could not be extracted from custom authorization request parameter"
+                    elif not provider in self.registeredProviders:
+                        print "Passport. prepareForStep. Provider '%s' not part of known configured IDPs/OPs" % provider
+                    else:
+                        url = self.getPassportRedirectUrl(provider)
+
+
+            # if no provider selected yet...
+            if url == None:
+                print "Passport. prepareForStep. A page to manually select an identity provider will be shown"
+
+            # else already got the /passport/auth/<provider>/<token> url...
+            else:
+
+                facesService = CdiUtil.bean(FacesService)
+
+                # redirects to Passport getRedirectURL - sends browser to IDP.
+                print "Passport. Redirecting to external url: %s" + url
+
+                facesService.redirectToExternalURL(url)
+
+        return True
+
+
+    def getExtraParametersForStep(self, configurationAttributes, step):
+        print "Passport. getExtraParametersForStep called for step %s" % str(step)
+        if step == 1:
+            return Arrays.asList("selectedProvider", "externalProviders")
+        elif step == 2:
+            return Arrays.asList("passport_user_profile")
+        return None
+
+
+    def getCountAuthenticationSteps(self, configurationAttributes):
+        print "Passport. getCountAuthenticationSteps called"
+        identity = CdiUtil.bean(Identity)
+        if identity.getWorkingParameter("passport_user_profile") != None:
+            return 2
+        return 1
+
+
+    def getPageForStep(self, configurationAttributes, step):
+        print "Passport. getPageForStep called"
+
+        extensionResult = self.extensionGetPageForStep(configurationAttributes, step)
+        if extensionResult != None:
+            return extensionResult
+
+        if step == 1:
+            identity = CdiUtil.bean(Identity)
+            print "Passport. getPageForStep. Entered if step ==1"
+            if self.isInboundFlow(identity):
+                print "Passport. getPageForStep for step 1. Detected inbound Saml flow"
+                return "/postlogin.xhtml"
+            print "Passport. getPageForStep 1. NormalFlow, returning passportlogin.xhtml"
+            return "/auth/passport/passportlogin.xhtml"
+
+        return "/auth/passport/passportpostlogin.xhtml"
+
+
+    def getNextStep(self, configurationAttributes, requestParameters, step):
+        if step == 1:
+            identity = CdiUtil.bean(Identity)
+            provider = identity.getWorkingParameter("selectedProvider")
+            if provider != None:
+                return 1
+
+        return -1
+
+
+    def logout(self, configurationAttributes, requestParameters):
+        return True
+
+# Extension module related functions
+
+    def extensionInit(self, configurationAttributes):
+
+        if self.extensionModule == None:
+            return None
+        return self.extensionModule.init(configurationAttributes)
+
+
+    def extensionAuthenticate(self, configurationAttributes, requestParameters, step):
+
+        if self.extensionModule == None:
+            return None
+        return self.extensionModule.authenticate(configurationAttributes, requestParameters, step)
+
+
+    def extensionPrepareForStep(self, configurationAttributes, requestParameters, step):
+
+        if self.extensionModule == None:
+            return None
+        return self.extensionModule.prepareForStep(configurationAttributes, requestParameters, step)
+
+
+    def extensionGetPageForStep(self, configurationAttributes, step):
+
+        if self.extensionModule == None:
+            return None
+        return self.extensionModule.getPageForStep(configurationAttributes, step)
+
+# Initalization routines
+
+    def loadExternalModule(self, simpleCustProperty):
+
+        if simpleCustProperty != None:
+            print "Passport. loadExternalModule. Loading passport extension module..."
+            moduleName = simpleCustProperty.getValue2()
+            try:
+                module = __import__(moduleName)
+                return module
+            except:
+                print "Passport. loadExternalModule. Failed to load module %s" % moduleName
+                print "Exception: ", sys.exc_info()[1]
+                print "Passport. loadExternalModule. Flow will be driven entirely by routines of main passport script"
+        return None
+
+
+    def processKeyStoreProperties(self, attrs):
+        file = attrs.get("key_store_file")
+        password = attrs.get("key_store_password")
+
+        if file != None and password != None:
+            file = file.getValue2()
+            password = password.getValue2()
+
+            if StringHelper.isNotEmpty(file) and StringHelper.isNotEmpty(password):
+                self.keyStoreFile = file
+                self.keyStorePassword = password
+                return True
+
+        print "Passport. readKeyStoreProperties. Properties key_store_file or key_store_password not found or empty"
+        return False
+
+
+    def getCustomAuthzParameter(self, simpleCustProperty):
+
+        customAuthzParameter = None
+        if simpleCustProperty != None:
+            prop = simpleCustProperty.getValue2()
+            if StringHelper.isNotEmpty(prop):
+                customAuthzParameter = prop
+
+        if customAuthzParameter == None:
+            print "Passport. getCustomAuthzParameter. No custom param for OIDC authz request in script properties"
+            print "Passport. getCustomAuthzParameter. Passport flow cannot be initiated by doing an OpenID connect authorization request"
+        else:
+            print "Passport. getCustomAuthzParameter. Custom param for OIDC authz request in script properties: %s" % customAuthzParameter
+
+        return customAuthzParameter
+
+# Configuration parsing
+
+    def getPassportConfigDN(self):
+
+        f = open('/etc/gluu/conf/gluu.properties', 'r')
+        for line in f:
+            prop = line.split("=")
+            if prop[0] == "oxpassport_ConfigurationEntryDN":
+              prop.pop(0)
+              break
+
+        f.close()
+        return "=".join(prop).strip()
+
+
+    def parseAllProviders(self):
+
+        registeredProviders = {}
+        print "Passport. parseAllProviders. Adding providers"
+        entryManager = CdiUtil.bean(PersistenceEntryManager)
+
+        config = LdapOxPassportConfiguration()
+        config = entryManager.find(config.getClass(), self.passportDN).getPassportConfiguration()
+        config = config.getProviders() if config != None else config
+
+        if config != None and len(config) > 0:
+            for prvdetails in config:
+                if prvdetails.isEnabled():
+                    registeredProviders[prvdetails.getId()] = {
+                        "emailLinkingSafe": prvdetails.isEmailLinkingSafe(),
+                        "requestForEmail" : prvdetails.isRequestForEmail(),
+                        "logo_img": prvdetails.getLogoImg(),
+                        "displayName": prvdetails.getDisplayName(),
+                        "type": prvdetails.getType()
+                    }
+
+        return registeredProviders
+
+
+    def parseProviderConfigs(self):
+
+        registeredProviders = {}
+        try:
+            registeredProviders = self.parseAllProviders()
+            toRemove = []
+
+            for provider in registeredProviders:
+                if registeredProviders[provider]["type"] != "saml":
+                    toRemove.append(provider)
+                else:
+                    registeredProviders[provider]["saml"] = True
+
+            for provider in toRemove:
+                registeredProviders.pop(provider)
+
+
+            if len(registeredProviders.keys()) > 0:
+                print "Passport. parseProviderConfigs. Configured providers:", registeredProviders
+            else:
+                print "Passport. parseProviderConfigs. No providers registered yet"
+        except:
+            print "Passport. parseProviderConfigs. An error occurred while building the list of supported authentication providers", sys.exc_info()[1]
+
+
+        print "parseProviderConfigs - registeredProviders = %s" % str(registeredProviders)
+        self.registeredProviders = registeredProviders
+        print "parseProviderConfigs - self.registeredProviders = %s" % str(self.registeredProviders)
+
+# Auxiliary routines
+
+    def getProviderFromJson(self, providerJson):
+
+        provider = None
+        try:
+            obj = json.loads(Base64Util.base64urldecodeToString(providerJson))
+            provider = obj[self.providerKey]
+        except:
+            print "Passport. getProviderFromJson. Could not parse provided Json string. Returning None"
+
+        return provider
+
+
+    def getPassportRedirectUrl(self, provider):
+
+        # provider is assumed to exist in self.registeredProviders
+        url = None
+        try:
+            facesContext = CdiUtil.bean(FacesContext)
+            tokenEndpoint = "https://%s/passport/token" % facesContext.getExternalContext().getRequest().getServerName()
+
+            httpService = CdiUtil.bean(HttpService)
+            httpclient = httpService.getHttpsClient()
+
+            print "Passport. getPassportRedirectUrl. Obtaining token from passport at %s" % tokenEndpoint
+            resultResponse = httpService.executeGet(httpclient, tokenEndpoint, Collections.singletonMap("Accept", "text/json"))
+            httpResponse = resultResponse.getHttpResponse()
+
+            bytes = httpService.getResponseContent(httpResponse)
+
+            response = httpService.convertEntityToString(bytes)
+            print "Passport. getPassportRedirectUrl. Response was %s" % httpResponse.getStatusLine().getStatusCode()
+
+            tokenObj = json.loads(response)
+
+            url = "/passport/auth/%s/%s" % (provider, tokenObj["token_"])
+
+        except:
+            print "Passport. getPassportRedirectUrl. Error building redirect URL: ", sys.exc_info()[1]
+
+        return url
+
+
+    def validSignature(self, jwt):
+
+        print "Passport. validSignature. Checking JWT token signature"
+        valid = False
+
+        try:
+
+            appConfiguration = AppConfiguration()
+            appConfiguration.setWebKeysStorage(WebKeyStorage.KEYSTORE)
+            appConfiguration.setKeyStoreFile(self.keyStoreFile)
+            appConfiguration.setKeyStoreSecret(self.keyStorePassword)
+            appConfiguration.setKeyRegenerationEnabled(False)
+
+            cryptoProvider = CryptoProviderFactory.getCryptoProvider(appConfiguration)
+
+
+            alg_string = str(jwt.getHeader().getSignatureAlgorithm())
+            signature_string = str(jwt.getEncodedSignature())
+
+            if alg_string == "none" or alg_string == "None" or alg_string == "NoNe" or alg_string == "nONE" or alg_string == "NONE" or alg_string == "NonE" or alg_string == "nOnE":
+                # blocks none attack
+
+                print "WARNING: JWT Signature algorithm is none"
+                valid = False
+
+            elif alg_string != "RS512":
+                # blocks anything that's not RS512
+
+                print "WARNING: JWT Signature algorithm is NOT RS512"
+                valid = False
+
+            elif signature_string == "" :
+                # blocks empty signature string
+                print "WARNING: JWT Signature not sent"
+                valid = False
+
+            else:
+
+                # class extends AbstractCryptoProvider
+                ''' on version 4.2 .getAlgorithm() method was renamed to .getSignatureAlgorithm()
+                for older versions:
+                valid = cryptoProvider.verifySignature(jwt.getSigningInput(), jwt.getEncodedSignature(), jwt.getHeader().getKeyId(),
+                                                            None, None, jwt.getHeader().getAlgorithm())
+                '''
+
+                # working on 4.2:
+                valid = cryptoProvider.verifySignature(jwt.getSigningInput(), jwt.getEncodedSignature(), jwt.getHeader().getKeyId(),
+                                                            None, None, jwt.getHeader().getSignatureAlgorithm())
+
+        except:
+            print "Exception: ", sys.exc_info()[1]
+
+        print "Passport. validSignature. Validation result was %s" % valid
+
+        return valid
+
+
+    def jwtHasExpired(self, jwt):
+        # Check if jwt has expired
+        jwt_claims = jwt.getClaims()
+        try:
+            exp_date_timestamp = float(jwt_claims.getClaimAsString(JwtClaimName.EXPIRATION_TIME))
+            exp_date = datetime.datetime.fromtimestamp(exp_date_timestamp)
+            hasExpired = exp_date < datetime.datetime.now()
+        except:
+            print "Exception: The JWT does not have '%s' attribute" % JwtClaimName.EXPIRATION_TIME
+            return False
+
+        return hasExpired
+
+
+    def getUserProfile(self, jwt):
+
+        # getClaims method located at org.gluu.oxauth.model.token.JsonWebResponse.java as a org.gluu.oxauth.model.jwt.JwtClaims object
+        jwt_claims = jwt.getClaims()
+
+        user_profile_json = None
+
+        try:
+            # public String getClaimAsString(String key)
+            user_profile_json = CdiUtil.bean(EncryptionService).decrypt(jwt_claims.getClaimAsString("data"))
+
+            user_profile = json.loads(user_profile_json)
+        except:
+            print "Passport. getUserProfile. Problem obtaining user profile json representation"
+
+        return (user_profile, user_profile_json)
+
+
+    def attemptAuthentication(self, identity, user_profile, user_profile_json):
+
+        print "Entered attemptAuthentication..."
+        uidKey = "uid"
+        if not self.checkRequiredAttributes(user_profile, [uidKey, self.providerKey]):
+            return False
+
+        provider = user_profile[self.providerKey]
+        print "user_profile[self.providerKey] = %s" % str(user_profile[self.providerKey])
+        if not provider in self.registeredProviders:
+            print "Entered if note provider in self.registeredProviers:"
+            print "Passport. attemptAuthentication. Identity Provider %s not recognized" % provider
+            return False
+
+        print "attemptAuthentication. user_profile = %s" % user_profile
+        print "user_profile[uidKey] = %s" % user_profile[uidKey]
+        uid = user_profile[uidKey][0]
+        print "attemptAuthentication - uid = %s" % uid
+        externalUid = "passport-%s:%s:%s" % ("saml", provider, uid)
+
+        userService = CdiUtil.bean(UserService)
+        userByUid = self.getUserByExternalUid(uid, provider, userService)
+
+        email = None
+        if "mail" in user_profile:
+            email = user_profile["mail"]
+            if len(email) == 0:
+                email = None
+            else:
+                email = email[0]
+                user_profile["mail"] = [ email ]
+
+        if email == None and self.registeredProviders[provider]["requestForEmail"]:
+            print "Passport. attemptAuthentication. Email was not received"
+
+            if userByUid != None:
+                # This avoids asking for the email over every login attempt
+                email = userByUid.getAttribute("mail")
+                if email != None:
+                    print "Passport. attemptAuthentication. Filling missing email value with %s" % email
+                    user_profile["mail"] = [ email ]
+
+            if email == None:
+                # Store user profile in session and abort this routine
+                identity.setWorkingParameter("passport_user_profile", user_profile_json)
+                return True
+
+        userByMail = None if email == None else userService.getUserByAttribute("mail", email)
+
+        # Determine if we should add entry, update existing, or deny access
+        doUpdate = False
+        doAdd = False
+        if userByUid != None:
+            print "User with externalUid '%s' already exists" % externalUid
+            if userByMail == None:
+                doUpdate = True
+            else:
+                if userByMail.getUserId() == userByUid.getUserId():
+                    doUpdate = True
+                else:
+                    print "Users with externalUid '%s' and mail '%s' are different. Access will be denied. Impersonation attempt?" % (externalUid, email)
+                    self.setMessageError(FacesMessage.SEVERITY_ERROR, "Email value corresponds to an already existing provisioned account")
+        else:
+            if userByMail == None:
+                doAdd = True
+            elif self.registeredProviders[provider]["emailLinkingSafe"]:
+
+                tmpList = userByMail.getAttributeValues("oxExternalUid")
+                tmpList = ArrayList() if tmpList == None else ArrayList(tmpList)
+                tmpList.add(externalUid)
+                userByMail.setAttribute("oxExternalUid", tmpList, True)
+
+                userByUid = userByMail
+                print "External user supplying mail %s will be linked to existing account '%s'" % (email, userByMail.getUserId())
+                doUpdate = True
+            else:
+                print "An attempt to supply an email of an existing user was made. Turn on 'emailLinkingSafe' if you want to enable linking"
+                self.setMessageError(FacesMessage.SEVERITY_ERROR, "Email value corresponds to an already existing account. If you already have a username and password use those instead of an external authentication site to get access.")
+
+        username = None
+        try:
+            if doUpdate:
+                username = userByUid.getUserId()
+                print "Passport. attemptAuthentication. Updating user %s" % username
+                self.updateUser(userByUid, user_profile, userService)
+            elif doAdd:
+                print "Passport. attemptAuthentication. Creating user %s" % externalUid
+                newUser = self.addUser(externalUid, user_profile, userService)
+                username = newUser.getUserId()
+        except:
+            print "Exception: ", sys.exc_info()[1]
+            print "Passport. attemptAuthentication. Authentication failed"
+            return False
+
+        if username == None:
+            print "Passport. attemptAuthentication. Authentication attempt was rejected"
+            return False
+        else:
+            logged_in = CdiUtil.bean(AuthenticationService).authenticate(username)
+            print "Passport. attemptAuthentication. Authentication for %s returned %s" % (username, logged_in)
+            return logged_in
+
+
+    def getUserByExternalUid(self, uid, provider, userService):
+        newFormat = "passport-%s:%s:%s" % ("saml", provider, uid)
+        user = userService.getUserByAttribute("oxExternalUid", newFormat, True)
+
+        if user == None:
+            oldFormat = "passport-%s:%s" % ("saml", uid)
+            user = userService.getUserByAttribute("oxExternalUid", oldFormat, True)
+
+            if user != None:
+                # Migrate to newer format
+                list = HashSet(user.getAttributeValues("oxExternalUid"))
+                list.remove(oldFormat)
+                list.add(newFormat)
+                user.setAttribute("oxExternalUid", ArrayList(list), True)
+                print "Migrating user's oxExternalUid to newer format 'passport-saml:provider:uid'"
+                userService.updateUser(user)
+
+        return user
+
+
+    def setMessageError(self, severity, msg):
+        facesMessages = CdiUtil.bean(FacesMessages)
+        facesMessages.setKeepMessages()
+        facesMessages.clear()
+        facesMessages.add(severity, msg)
+
+
+    def checkRequiredAttributes(self, profile, attrs):
+
+        for attr in attrs:
+            if (not attr in profile) or len(profile[attr]) == 0:
+                print "Passport. checkRequiredAttributes. Attribute '%s' is missing in profile" % attr
+                return False
+        return True
+
+
+    def addUser(self, externalUid, profile, userService):
+        print "Passport. Entered addUser()."
+        print "Passport. addUser. externalUid = %s" % externalUid
+        print "Passport. addUser. profile = %s" % profile
+        newUser = User()
+        #Fill user attrs
+        newUser.setAttribute("oxExternalUid", externalUid, True)
+        self.fillUser(newUser, profile)
+        newUser = userService.addUser(newUser, True)
+        return newUser
+
+
+    def updateUser(self, foundUser, profile, userService):
+        # when this is false, there might still some updates taking place (e.g. not related to profile attrs released by external provider)
+        if (not self.skipProfileUpdate):
+            self.fillUser(foundUser, profile)
+        userService.updateUser(foundUser)
+
+
+    def fillUser(self, foundUser, profile):
+        print
+        print "Passport. Entered fillUser()."
+        print "Passport. fillUser. foundUser = %s" % foundUser
+        print "Passport. fillUser. profile = %s" % profile
+        for attr in profile:
+            # "provider" is disregarded if part of mapping
+            if attr != self.providerKey:
+                values = profile[attr]
+                print "%s = %s" % (attr, values)
+                foundUser.setAttribute(attr, values)
+
+                if attr == "mail":
+                    print "Passport. fillUser. entered if attr == mail"
+                    oxtrustMails = []
+                    for mail in values:
+                        oxtrustMails.append('{"value":"%s","primary":false}' % mail)
+                    foundUser.setAttribute("oxTrustEmail", oxtrustMails)
+
+# IDP-initiated flow routines
+
+    def isInboundFlow(self, identity):
+        print "passport. entered isInboundFlow"
+
+        sessionId = identity.getSessionId()
+        print "passport. isInboundFlow. sessionId = %s" % sessionId
+        if sessionId == None:
+            print "passport. isInboundFlow. sessionId not found yet..."
+            # Detect mode if there is no session yet. It's needed for getPageForStep method
+            facesContext = CdiUtil.bean(FacesContext)
+            requestParameters = facesContext.getExternalContext().getRequestParameterMap()
+            print "passport. isInboundFlow. requestParameters = %s" % requestParameters
+
+            authz_state = requestParameters.get(AuthorizeRequestParam.STATE)
+            print "passport. isInboundFlow. authz_state = %s" % authz_state
+        else:
+            authz_state = identity.getSessionId().getSessionAttributes().get(AuthorizeRequestParam.STATE)
+
+        print "passport. IsInboundFlow. authz_state = %s" % authz_state
+
+        # the replace above is workaround due a problem reported
+        # on issue: https://github.com/GluuFederation/gluu-passport/issues/95
+        # TODO: Remove after fixed on JSF side
+
+        b64url_decoded_auth_state = base64.urlsafe_b64decode(str(authz_state+'=='))
+
+        # print "passport. IsInboundFlow. b64url_decoded_auth_state = %s" % str(b64url_decoded_auth_state)
+        print "passport. IsInboundFlow. self.isInboundJwt() = %s" % str(self.isInboundJwt(b64url_decoded_auth_state))
+        if self.isInboundJwt(b64url_decoded_auth_state):
+            return True
+
+        return False
+
+
+    def isInboundJwt(self, value):
+        if value == None:
+            return False
+
+        try:
+            jwt = Jwt.parse(value)
+            print "passport.isInboundJwt. jwt = %s" % jwt
+            user_profile_json = CdiUtil.bean(EncryptionService).decrypt(jwt.getClaims().getClaimAsString("data"))
+            if StringHelper.isEmpty(user_profile_json):
+                return False
+        except InvalidJwtException:
+            return False
+
+        except:
+            print("Unexpected error:", sys.exc_info()[0])
+            return False
+
+        return True
+
+    def getLogoutExternalUrl(self, configurationAttributes, requestParameters):
+        print "Get external logout URL call"
+        return None
+    
diff --git a/oxAuth/Server/integrations/saml.alias.attribute/README.md b/oxAuth/Server/integrations/saml.alias.attribute/README.md
new file mode 100644
index 00000000..09b7eb5c
--- /dev/null
+++ b/oxAuth/Server/integrations/saml.alias.attribute/README.md
@@ -0,0 +1,50 @@
+# This script allows you to transform attributes presented to a Service Provider / SAML application.
+
+## Example
+
+We are using a Gluu 4.4.x server and created a mirror attribute named "espejo" which will reflect "mail" attributes value and send that value to target SP as "espejo == support@gluu.org". "support@gluu.org" is actually a mail attribute stored in Gluu Server. 
+
+## Configuration
+ - Configure and enable custom attribute `espejo`
+ - Use attached script and use that in "IDP Extension". 
+   - Log into oxTrust
+   - "Other Custom Scripts"
+   - "Idp Extension"
+      - Name: `attribute_rewrite`
+      - Description: `Attribute rewrite script`
+      - Programming Language: default ( Jython )
+      - Level: default ( 0 )
+      - Location Type: default ( Database )
+      - Custom property (key/value): 
+        - `saml_source_attribute`: mail
+        - `saml_target_attribute` : espejo
+      - Add script
+ 
+## Test
+
+ - Release source attribute ( `mail` in this test case ) in target trust relationship
+ - Make sure your SP is configured to accept / hold espejo attribute
+ - Successful SAML assertion would look like below...
+
+```
+....
+        <saml2:AttributeStatement>
+            <saml2:Attribute FriendlyName="espejo" Name="urn:oid:espejo" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri">
+                <saml2:AttributeValue xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" xsi:type="xsd:string">mohib@gluu.org</saml2:AttributeValue>
+            </saml2:Attribute>
+            <saml2:Attribute FriendlyName="uid" Name="urn:oid:0.9.2342.19200300.100.1.1" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri">
+                <saml2:AttributeValue xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" xsi:type="xsd:string">mohib</saml2:AttributeValue>
+            </saml2:Attribute>
+        </saml2:AttributeStatement>
+    </saml2:Assertion>
+</saml2p:Response>
+
+2022-05-24 05:41:57,635 - 118.179.84.52 - DEBUG [org.opensaml.messaging.encoder.servlet.BaseHttpServletResponseXMLMessageEncoder:54] - Successfully encoded message.
+2022-05-24 05:41:57,635 - 118.179.84.52 - DEBUG [org.opensaml.profile.action.impl.EncodeMessage:152] - Profile Action EncodeMessage: Outbound message encoded from a message of type org.opensaml.saml.saml2.core.impl.ResponseImpl
+2022-05-24 05:41:57,636 - 118.179.84.52 - DEBUG [net.shibboleth.idp.profile.impl.RecordResponseComplete:89] - Profile Action RecordResponseComplete: Record response complete
+2022-05-24 05:41:57,636 - 118.179.84.52 - INFO [Shibboleth-Audit.SSO:283] - 118.179.84.52|2022-05-24T05:41:48.527263Z|2022-05-24T05:41:57.636712Z|mohib|https://testappsaml2.gluu.org/shibboleth|_0635ef03b55ec37d4ecec0a295f13ca8|password|2022-05-24T05:41:57.402696Z|uid,espejo|AAdzZWNyZXQxmpHHqgxqABV08dNKccCRdQKP97z2xbmbHlBAq2yCOo/SK4hMGBIJ5RlhVZyC2TXD5eB6woCLNEOakJnsmCINZh/RxpyLQxpWNueTQGcTApsVXM1dF40kJzp0W0OkGg5CP+Txz1zyTwP6kYg=|transient|false|false||Redirect|POST||Success||c8a9e5feff6ef6f445a84b7eeb0dd13a5a273d3c97293eaf2dec5816e00a8f60|Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/101.0.4951.64 Safari/537.36
+....
+....
+```
+
+For details: https://github.com/uprightech/idp-attr-rewrite-poc
diff --git a/oxAuth/Server/integrations/saml.alias.attribute/idp_script.py b/oxAuth/Server/integrations/saml.alias.attribute/idp_script.py
new file mode 100644
index 00000000..b57647f9
--- /dev/null
+++ b/oxAuth/Server/integrations/saml.alias.attribute/idp_script.py
@@ -0,0 +1,148 @@
+# oxShibboleth is available under the MIT License (2008). See http://opensource.org/licenses/MIT for full text.
+# Copyright (c) 2022, Gluu
+#
+# Author: Djeumen Rolain
+#
+
+from org.gluu.model.custom.script.type.idp import IdpType
+from org.gluu.util import StringHelper
+from org.gluu.idp.externalauth import AuthenticatedNameTranslator
+from org.gluu.idp.externalauth import ShibOxAuthAuthServlet
+from net.shibboleth.idp.authn.principal import UsernamePrincipal, IdPAttributePrincipal
+from net.shibboleth.idp.authn import ExternalAuthentication
+from net.shibboleth.idp.attribute import IdPAttribute, StringAttributeValue
+from net.shibboleth.idp.authn.context import AuthenticationContext, ExternalAuthenticationContext
+from net.shibboleth.idp.attribute.context import AttributeContext
+from javax.security.auth import Subject
+from java.util import Collections, HashMap, HashSet, ArrayList, Arrays
+
+import java
+
+class IdpExtension(IdpType):
+
+    def __init__(self, currentTimeMillis):
+        self.currentTimeMillis = currentTimeMillis
+
+    def init(self, customScript, configurationAttributes):
+        print "Idp extension. Initialization"
+        
+        self.defaultNameTranslator = AuthenticatedNameTranslator()
+
+        self.allowedAcrsList = ArrayList()
+        if configurationAttributes.containsKey("allowed_acrs"):
+            allowed_acrs = configurationAttributes.get("allowed_acrs").getValue2()
+            allowed_acrs_list_array = StringHelper.split(allowed_acrs, ",")
+            self.allowedAcrsList = Arrays.asList(allowed_acrs_list_array)
+
+        self.sourceAttr = None
+        self.targetAttr = None
+
+        if configurationAttributes.containsKey("saml_source_attribute"):
+            self.sourceAttr = configurationAttributes.get("saml_source_attribute").getValue2()
+        
+        if configurationAttributes.containsKey("saml_target_attribute"):
+            self.targetAttr = configurationAttributes.get("saml_target_attribute").getValue2()
+
+        if self.sourceAttr is None or self.targetAttr is None:
+            print "Init Warning. Missing script configuration property: saml_source_attribute or saml_target_attribute"
+        else:
+            print "Idp extension. saml_source_attribute => %s , saml_target_attribute => %s" % (self.sourceAttr,self.targetAttr)
+        
+
+        print "Idp extension. Initialization. The property allowed_acrs is %s" % self.allowedAcrsList
+        
+        return True
+
+    def destroy(self, configurationAttributes):
+        print "Idp extension. Destroy"
+        return True
+
+    def getApiVersion(self):
+        return 13
+
+    # Translate attributes from user profile
+    #   context is org.gluu.idp.externalauth.TranslateAttributesContext (https://github.com/GluuFederation/shib-oxauth-authn3/blob/master/src/main/java/org/gluu/idp/externalauth/TranslateAttributesContext.java)
+    #   configurationAttributes is java.util.Map<String, SimpleCustomProperty>
+    def translateAttributes(self, context, configurationAttributes):
+        print "Idp extension. Method: translateAttributes"
+        userProfile = context.getUserProfile()
+        if userProfile is None:
+           print "No valid user profile could be found to translate"
+           return False
+          
+        if userProfile.getId() is None:
+           print "No valid user principal could be found to traslate"
+           return False
+        
+        self.defaultNameTranslator.populateIdpAttributeList(userProfile.getAttributes(),context)
+        
+        #Return True to specify that default method is not needed
+        return True
+
+    # Update attributes before releasing them
+    #   context is org.gluu.idp.consent.processor.PostProcessAttributesContext (https://github.com/GluuFederation/shib-oxauth-authn3/blob/master/src/main/java/org/gluu/idp/consent/processor/PostProcessAttributesContext.java)
+    #   configurationAttributes is java.util.Map<String, SimpleCustomProperty>
+    def updateAttributes(self, context, configurationAttributes):
+        print "Idp extension. Method: updateAttributes"
+        if self.sourceAttr is None or self.targetAttr is None:
+            return True 
+        sourceIdpAttr = context.getIdpAttributeMap().get(self.sourceAttr)
+        if sourceIdpAttr is not None:
+            context.getIdpAttributeMap().remove(self.sourceAttr)
+            targetIdpAttr = IdPAttribute(self.targetAttr)
+            targetIdpAttr.setValues(sourceIdpAttr.getValues())
+            context.getIdpAttributeMap().put(self.targetAttr,targetIdpAttr)
+        
+        return True
+
+    # Check before allowing user to log in
+    #   context is org.gluu.idp.externalauth.PostAuthenticationContext (https://github.com/GluuFederation/shib-oxauth-authn3/blob/master/src/main/java/org/gluu/idp/externalauth/PostAuthenticationContext.java)
+    #   configurationAttributes is java.util.Map<String, SimpleCustomProperty>
+    def postAuthentication(self, context, configurationAttributes):
+        print "Idp extension. Method: postAuthentication"
+        userProfile = context.getUserProfile()
+        authenticationContext = context.getAuthenticationContext
+        
+        requestedAcr = None
+        if authenticationContext != None:
+            requestedAcr = authenticationContext.getAuthenticationStateMap().get(org.gluu.idp.externalauth.OXAUTH_ACR_REQUESTED)
+
+        usedAcr = userProfile.getUsedAcr()
+
+        print "Idp extension. Method: postAuthentication. requestedAcr = %s, usedAcr = %s" % (requestedAcr, usedAcr)
+
+        if requestedAcr == None:
+            print "Idp extension. Method: postAuthentication. requestedAcr is not specified"
+            return True
+
+        if not self.allowedAcrsList.contains(usedAcr):
+            print "Idp extension. Method: postAuthentication. usedAcr '%s' is not allowed" % usedAcr
+            return False
+
+        return True
+
+    # Check before allowing user to log in
+    #   context is org.gluu.idp.externalauth.PostAuthenticationContext (https://github.com/GluuFederation/shib-oxauth-authn3/blob/master/src/main/java/org/gluu/idp/externalauth/PostAuthenticationContext.java)
+    #   configurationAttributes is java.util.Map<String, SimpleCustomProperty>
+    def postAuthentication(self, context, configurationAttributes):
+        print "Idp extension. Method: postAuthentication"
+        userProfile = context.getUserProfile()
+        authenticationContext = context.getAuthenticationContext()
+        
+        requestedAcr = None
+        if authenticationContext != None:
+            requestedAcr = authenticationContext.getAuthenticationStateMap().get(ShibOxAuthAuthServlet.OXAUTH_ACR_REQUESTED)
+
+        usedAcr = userProfile.getUsedAcr()
+
+        print "Idp extension. Method: postAuthentication. requestedAcr = %s, usedAcr = %s" % (requestedAcr, usedAcr)
+
+        if requestedAcr == None:
+            print "Idp extension. Method: postAuthentication. requestedAcr is not specified"
+            return True
+
+        if not self.allowedAcrsList.contains(usedAcr):
+            print "Idp extension. Method: postAuthentication. usedAcr '%s' is not allowed" % usedAcr
+            return False
+
+        return True
diff --git a/oxAuth/Server/integrations/saml/Gluu Inbound SAML Design (no Session).png b/oxAuth/Server/integrations/saml/Gluu Inbound SAML Design (no Session).png
new file mode 100644
index 0000000000000000000000000000000000000000..14f67ddf1725a658243e5a7830d99e8148909974
GIT binary patch
literal 52535
zcmc$`1z45a);7E_5Q|1ZBm@biQ$b1uK@pJd25FF3AdP~8h#;aME#2L%g4Ci@T1n~d
z`o@F%oOhr1ocH?v_^$tFUt0m!de(gAGv^rheUE$0*N<f+E}pw`4uwKpd>|<%k3yaF
zhX3_&u;Dk=^=RZDu=S-R#85}bf1fLpgHb4I)B~}*iq9hFhn-v%dv=7E+b)JZkfc73
zk8>8wP~igOi2>id(&za21m{n`%qzJ@GE}XkX!bQxQ7%{B<Vz(E&0TiYH#}GcpJ}LZ
z{KOcsxX(YI#~3=fdn`xH&D$|>h0$%TxmQkoY_6OhaanX~ZH_cv<n;5!@jd>Mbo_Qg
z3ybFX>)Zu;Z?WSq{_o!J{`_<DCwxKz<ZFhQNc7LkqVz>2k6)Fb@CfJi@yqP}&R#oy
zRgetFwd=<(>%8&5yO?cCP7Z!{#p*eF>2U8Vw>_GhH_r{1JJw6z8up&VgvOVY{IDVu
zm+O}Jyc5UzwLrLPYNjge5q-sar&P&oT6%kxn+xd$Z2S2i1h+<>(ehgS_-WfuZdLNt
z%%xA;C3BGfhTjW^g@M@I+>W$I_wJq4H!xUe;zd_S=4w^PG2-CiNmy7gvzE_uGHX|m
z8W|aBTgInuoV}!`ruLZl^ugX1p1l(4S)as7I((ajzHBOD@vrq%9`nVPgmO<6#KcZ$
zouxU)N`A|#R?BhtC6{sQZ5AR5inm6XkY53J79S_8;hLQ|=pB1gcB<=eJDg!pSw+Ps
zh*o0k4O`Vy^(Va<YO0mag~RK9e&-6TM=9xpA4EN2Cw)5AOjcW4dpk3@zfZ^G?N_fe
z>1~cnBX60qD>}0xov2(%xL8iEcXumV3>ICCy5nfI>JTm;qx<^}eel_X-Hn=#c!^xY
zMnZwj9|l;Nfw$ba-<=@nqmv5J{q^l-$?v!~PnUn*_4e`EGb$G&u6PEIIK$A$NUt;D
z0c-GGR7yrhZIt84>$l{$c2l1aGcu`U+4Hqyd-9m~{)FG>MpRi2@}?W&-xhv0T4WiK
zWO+0#d}OmD@D7)P-`lh+X~#%|CQj(Z*Yc&RH}MjICs0X`!U%s3AX9h)--f4t&WFnV
z%b<1jLh%Bj+%mF;(#FR0ha3hiXMZNh#t1#z8g^X4uvLF9D!RlV6ZxexQHp?sB$0Kk
zTS4}8TG<4Hb;Zi7-J?i8yQllxHr?IbKYxDpLKZ@|Q@V0yo(3-ylhlF7{EuAR<U8-*
zy+eI*5;cil!kfZ!v9x3fpt$qu<@w8L5)OI!`8*88ERFC<7f>b3-_FCN1)}=u%7xNy
z3A${GWouWWP)y1hI8QBo85wa1I*y7h`Z=+vQP+8Rl$x5Fu7>RWjt`uG2N{wa?fkH6
zZ}ASg%t;MXd`Y6qRc(aKaZbo(Gh@i(=%BOET!rJx+s<TJDyNn2mlI(j>g|lz2V%U>
z5?$x#S05<0X3IBj3qcmo&}Q9Ra-;3#Uxei3OqK%$L9zFInv$d=1O}*dx^=`7Qc@(J
zv_-Ql3>Js}{%sP*uJ_`qu=`Mak-xvcB4%K5?N^OYkCWwKQDJ!Bj~|S%G%le!)0CJR
zTUtIYFF(bij^an>rKcN3(aT0NqY}__z48hQv@|qIN=mT1^>{{u5690s&XsPBxb*D6
zcnZQ*R8<)rN8O6A)6u>Ds{8K42jbGXtn!KJ7>^>2HkYMJhI>A^A3uE}HSJ0J2rF3o
z{@W{be0+T2vv!;FYNg`=cQVFYRwo|BY*0zyUcLP}3u4a_T3uGQD0YKq{E@<*iCt||
za9-A~n!<=gLD3E@uvAvNpI@-1FG`7(eSxK^sG{Rm$S?V$#3sHT<0CKn?AOc7>Vmg~
zwcR$9d?th6zn^c~TpHC$OH0cr+S?uvyrap6a@w6q=2;44o7GWMyKz~^HCKyl(9LFg
z6~m^2fmNzlWHp>dZ<;mVpI>jrM-T*)mflshJIj>3SK+#2i+*?1ZyfX5x1q>#@RX<6
z{rgR@?+Dwym*=vpm8X-FlG3``q6L`*o!6g|MzCs?N$Tmvs&86*>_v1{>2qJ{IdD*p
z2@k(gI-iG`4=G$A59p0eJi5L1?L1q`<f!u;OY%YznmoGVNu=pRD$6WYCvp|p!Gs%@
zRZm*3phwQLReVl;`#NRvcw<aV7^2@j*3_I|S&hbRcay71MbGqQ$IOpb>%bD6fC%&S
zc1bbI(RiS6Q=sr6V`^&Z>^eLfZI+neU|PR89Mnulyw6pBdr4d>p$uGp67e8dI(rG0
z1>ML!DkbZ<u6(zhXdo!xH8;gbNAUJvWY;LRVu7er$*fWI$bDz>vJZwuy`Uj0Duh)l
zO~z$5H92x|?aopK?Y&nQ2vDmq<8OQ$jt)kT&Z5XT4Sg#PHU}xUsANktWYyHd_=Sap
zw4<t?{t`_$Os%NUq;%ibLl00LZA%ndgtBUN&)jjCe+P5rG#%yGZK|Sa^AfZBgR(=|
zc|8RgwDZ>D0<6eK&dz1(?puq)GK10>UIDk3+g%@o1~hY5d9y|;0!`k|!6S}sg%}(;
zxJefm@)mMXYIE{9*1NJY{&c4zFP2O%8|(L!ER#_-#a0+BC2j3!enC#oPQ9H>jpDSf
zqm672zN<sh;oJ|R4q<twc8$6$38Hsld%AY=s?U0SCs9f1g55usbEr;~Ov0orX>VUp
zvrYc?zSCmq^n6IJfSKLzc1V0XzkH~=O})<GIh3`9g@vvD^ujxbdLSj0KM-?<@|g&)
z)zEL7qZRM+jqbj_^tGCrnw}Xi?2GcrF@i42Vq$)8-t?FvKV#IRr%GVXZZI+~rwFNN
zp+E9lu1&Sfu5XQcj4~Y5lVRdpi(ZE$4=%6sjQb_K6_n~vT5480QFUDD>q?eQUt_IU
z7ERuurE$}R=z0@lT?Ap(lBcbMS_-2(6p<hy<zzgRSzb_}7-hv7HWX4^!8!wbVRjw%
zG1^&QKd$EaYMby;hRo8B+<4i6`%(u6`ug3b;^N}Cb4w4#>>)d;Rk@Z9JsW@9nIuhK
z?w$inx6s1fy{bnJS89q@)h|vGeyBOvn+TTeu1!)(SGFCiJ&S}0)VqzjzB|%p5qUZR
zB^rT~1fm!rd~))+)k4C{my<)HAfWYBC}*lS7WQc~nfGO(o!k=DG&LjnTUOWaV-BaJ
zk8F}4;+XZXuG%JVbmv`^)!|xv)+rIeq&!mB6R|~*X;U~~y)aPNHB=?m&53}J9-cnU
zcwE8}*EQ*Mrz~ulfToggdVM$V?-8r5B^t#c&%-9UgBufMveVNQk~JtPIIp~&T^|@w
zM>|_uX7Uf~vTq~XWi(QxG_5+M$iCK)v(Y%ljUEEHN}pXLU1-W0OSYWt29n2X+_v}E
z+9tbG6=v7MxQx?|rY9#GTchp>&I(7{7DroG?c9$Vg*1RJ+ezYUr3^Vpggp`cZ0zhz
zZ)Sv6Dc}Nix|0F32Bj>RZS~Dt*1LgRA%m7CCQr*KS&kp}S;xOWY!%Gbr=%h_g2JnS
zza)*ExV$L^ol7bL9?$6x*@jR4OiD<oWtgnYjOkqsk;prD?p*gw$Y_?vNXGa6TYHcR
zRv!$Sq*mwCO786JP!<}AioQ^HI66E~UV|Ygx0(-^74o}{)xKsuGdNXW`<jSiu?EnY
z*hF7^@6-e@AD^0-*yiH!oDI3tw_#`IY~ctYw=(|W)!$+H<?91x78W1as<uThF{@HT
zK2i#$5^^oU?5b|w!gLW9UcI(%@4=$B7{4I>QDFF0ayFT9`0+!G{;(k)!A+Nyn3y<g
zFB|ZMP!3Z&iaf+6_pLh!#6vxu|G}XNaS4G5a*B!xhu9j*%9j=^)?`}d`~w1%kBawm
z_iB9b_7W<pEk>)f4vx~ZtK^TCAZ+d)O@``Z9abCE<N6%wI8A<>J!+}U4nYrAx)kqL
zms2elp*MO|(vR9A`G{OL=kEeukck#}4R}R0s;|_}7!`f6ybnp?v5JcEt>GcwsZBEz
z6BH^TF;T5$E4i-jKJleXW7!@DOvj<J8X{rOk%GK@_fa)~1L-*>;?oc_zvdZXa?JZ!
z(Pc)>S7*AC19y)?b=*@At@~9XymkanpdLPaSfL(@Oo_lkyvSO8TB^;4QbdWovU1Yl
zXsQB3cCWY?i^yj#dBB|!x2%=34?0&%e!U{^Hv08*@V69OrD7DX^@u=fO3FKkL`|Mp
zCtc-7$Rv!kSeCL}0o6?GEmeoY>Xm{=-7|v;g`DWI-XWnpiAN>GJnC^&xjx$?6?GVM
zw4dC#H*0#p;t?L}adc=4U<-+Fk%!FBxu#-Vo^G*^7S!bJr^v-$&9bZYB`^z<6+Y;;
zqH6BTQ9rE3LaCM6r~3N#%p|l9H1yO^WX|OZavJW~VfAS_M!`g>59@X2xvHy&^B*7|
z1vst&COSnXU!bx>Zdk|T0G*y!A3zaoU45Wj=D4&7d7$~j4TbK!EO&mfKUrYhl#0Z(
z>K_Tz<^c9y&rI>Cd-*@pK>rS4v;?hk2i7yn9UUF3$-)PXvsMWK*i^0V!5G`8<I+yX
zt{l`wk-dP?%K0x|;cl2!lqCp)DH=765L|7bRW=eFR*{|4(a<nQGl;L%Y!1+~G&}Cw
zZ+?PMHE<c0_h%WMB8#w^4Z)-RHM20}omN!v48_DIs*et`d)5Jj`T1^`dj6RPmN^7#
zE?8CB@2;E9^yeqntmfwC&Zg!}x!F0WH0R{7H#Rlds#4`cRwTRq^z(3Dh$EE}@%Kso
zg68~<+4Sr*BQ8!(?(F)00a<OXEC_w#;cQ6k>*6(i7-4K^n9{{k-AzN|hTsQWlFOGd
z0A6TdKZF8w0~GrH(<jE7R~LgJWp@0^?2fu96vC#%TIsTNDZYbItIR$KQhV17T1NWD
zl5e@;*RIvl(o)+l>01v5i!AAQd6l2EMy8IWjr1Zgb)q2%fvIwGa_>Vz=#TcNg(*Td
z40R$nm+t`dZ4T#=0<M(^yPwm2{~18gjTDv^q5b81WP;8G_P^WjeygdW1AOr60vV0R
z(cWmL6|4TvooC1rtU*)Uek#J!RqkkA?#4cPJuxZier4mUuey)3)w*nrRaNjDud>85
z`T<F50Q5h(GaXZ0UX#>cYBxR6Awl&~yVCiAn3(r<diti!;*p!9Zd*|`4xe}}!|msK
zrTy>6*M9%rc=6T{b$@@q%$z}LNr~!{=1<pbY;2JG0W4lrhRwszKd`_*)RK>0|1DQI
z5BZTNyT0dm(oGiPpR^D#$u{lANr!h%txdP7?AZgT7`7ElVEe<UQ^ZqJQbb_Ruuuq@
zu(HZ(E9P+BhTxTZ5<psbc6Izuo1Mu}13;3b9Qvn#jhxh?pgG4rqWH?!m+_Rin3#wh
zF{9rL7LB4WhMcj$kUe(0V!AmY`B{coj-vatP_3h=8Nhm0A(oHV8rs_GM=D*gP>w@3
z5}xMw#J+kWOk55poWlUf()P+Y(DLUpQT)G<_=KY7<-HUrxT%_N0pPsxH_%$KQ{=oB
zCdj3p9UW|S{P^LEbrM^*>BEiZS-1qJv5q<XHIwgtB&t=ee6MgR{5BT`X$1tX!exJt
zRNi^g68;j>8#XK?7*DZT&qHYe*uxu7`muQefjOd3(H@6R-Y;!PCB;zL|C9#YdH(1O
z|1TAUW1->ylpOKjFZOGMIfKzJd-kq2VUUQ*^T_tDx!Rb6$Fd7o%(mSVF7D-6o6a~|
z*d6IVYUuls9Jw}?-<R&)KKM4+`gh^D520X%%!v-XjrOeAS4$GndQ_ViWp^nChlELq
zR(UpWOjjJtPu__C|4?oD@3)5~jYA@y>rz`^Zvgvwd%a8cq#94$XIlVy0ucXx4;Hh<
z#l-<ed-MF{nX#GVnEQb1wVWifS-ie_!h+HRgmC-W@@LEfi)s$aFOIu!@zh1xfu5m&
z#UCMEWs#R!dyUBFAg+mti^l>ERn5`G0w|)Hm7RLvt)2wJhnR%KJvn0dGd?e`Gkt@H
zmv`(~XIRAay{g_Rd+R!UDR!tR`rNBr!<?ex<c%@o=Inir#kB0~`usMbH|__!*El%|
zU%!6+Nyv>~Ci3>LK&=9L?PXgVte@)ymoCu*9o5d%VXJt1l84QDJUBFz;lYCkGCBx>
zd#B^R^W7>Ui;{zb1EE1ag9wF81i(t!H#mCGKDuBQot3B^GFiZy{4yV1`o=L?ChGdF
zTYck`nj1ta=<Aj*3NuIC_bk)hms{^FJu9p_JlHFrFRuEG7OWbG&K_(Cwd}Y$XKqH}
zs@B@G`kYb<`<~04G1JNy2V8YJZcRGlSxCIq>-Y9P#pk|XB7xrAMNjm66LKbq=;`aj
z019W$f6_vT;<TNR%<j#;{B@gNta_DKNFnJF0gCh4vhEHfJp@HU#+m4n75)gbaTXQE
zXO}e0Ygw$Jqr(RAo74XHV=QVUF%B2y<>i6qQ1*bzDmDb)c_2&r;LDb=s7WuV1)zQ9
z*-guk2|UX|y@TB^X<!gPxM4cOusAC@aLQccEv2A3s$rrr__QYi{k1b?&8s&Y$g7yA
z1K>vcUR=Ao;wWlz$v4-Ky`Y%3N(QIp#0J@Tw$NmtO<!`1`%TnDxOrC4$uqc;0IVbL
zILZJ_x`{G`7(>}pDo*G91PI0nk+}HyO7&{(Q{xf%2Tg<9urAM|_<#=%S1eWS$)F?w
z6D$<XSd^c^y^4>5Y-Yl9fakI8<^A$yV~>hX<{R(!E{BVW-tC=`3lgM4Sx<-n8p?3u
zGd>WLqIeLYYmxr#o9J0Qyifpg4{dC63oHkfArU3!<m5EYS(u*HvnvS7K7H>6VTyNq
zbBsZwu8FloIMcO)iMBRUkBu81{^iXN#u|eeGMl1-wV@<kT`S<JImCFaCUNTNO{YW3
zHRc(1m05(>aG11H!@4&3=6!Z{e|FYP;Bb4q<mZd?_z;T$s{ee=5G^7teG#SGl_U*f
zBY?8v!71UR9a#wcAioW?0H?hQf+Gk(phc-<)dGGE0Fnk{zNDh<M5hfXseJMgJ<%cL
z-gr<5L4*|np1cB!IDMm|Oh*jWju13cNICcf$<s@BI@49yP$F>KJ?kK?j&D^T2_7CS
zdAO)_;E$V@hlGY2?5@w43>LBQJ1+XyQ@UK(*w~nLHSW_@R8;&~G-#y|3bNkbV|n?p
z!6+MQR#x0VfmIw7H5Zq{nr-Xu+0%HAF-{jRUfgc6c0VaDm!nsMoo>X%#YN#xnWa&T
z3l}SyNs4IC(z@eMB}@rFs#d#K4sQ-?SsNaXYB@P(r|OPBAjcZ0yU>~?m<1dBB%XjL
zl4&?N2-*bJE}%Xa6c7W&MI>8!dHH1^*aL4_Pzy_UAbWiQqUTjoa+~z+eMs{cAuUUY
zi@&@jP4c+4?!Bk+o`$-*-_F`}JS+-dfB)L{*n7FgZIs1>))p4Ekls5$N8TSjI*8#P
z?#lfIT#Vg$-2{nB2K52YmcO3S;|$Aaf*Bfreuh#6#0z{PA}_%2dn^ttJ6uV8^;)21
zc=~>Zt1BDD$H!xR`88Ln<`gXLTv}3duN^4X>fY#)HmV_5R%j+?f1^)_?aPi`&2(!N
z6AcaMzOV48vO;oQHSJn><YC*wZwLtqYjxQhfJkQax~;X`x+8E(^YLTqU%!5J#@;)_
z5%y>mgsIy@*eEr?pFLInWL$N6h&U&6<;oTAh0tDygrAd^t^n9>pe6>)vp>4+ZJLfG
z<uAAc$vGhc)0dHCY;0_<KGMT`&<K&vifAoWKO|86&87a2`EJqC(N@Jn0It3pa++r4
z=a-bc=>wtcw5O(hhj@6XU9W6GcTmAfQf7hc)N5Zvt%1yvU^m?g7l!YEz`c)*WJaXO
zJqLak7HO2EvT}&8uPacE6Czm^s}FrP9Q&v!dfJL2%lkfDQXlNRe9#rl+sXgrX)iBa
zrch%MvOrLJR#}tPE|IK&UU5apR+R9;jI7Mu@0lCpA^Rjmvi0wy=dGos-)h=6(m6~5
z+MEPH<e=^Y!q3j|l6!I$WqMj#cbOAE@BC0{zE(ddwM}Lkuyqo($S^-{6|xLV-&*T4
z_OIUkP+g}LfZPSD!P<R|JaBe?W3D0nrQ14<!+ObD>zy7v?!i^4282?1?01-rj2>>@
z!lFiGSO92}rlzT`+rNA|VO?WUgJz6>%pi174M089ST*G2u7S{W>F546UCiYPQ2rTF
z6QCCp5d_uNifvph&C8Q-!eAyr@*qNWR=PN%OQDc)57qGbuGa*}(;u3e9_~y<Sa;*S
z_t+n&3g476zazg4Nq~-yj?=IKzc9vrX+&$PIgA!I!8>?y@?gQR6)b(w_AcAbB!-?t
z!5Rv{@Vls6du-kFC{8aO62Gi<eQ#?i6w<E~NP6=^r=l*->+9<qLiqrBfEq;>L9p*M
zDsPz%PbaymswgX;L%n|U#;!b);h<KH;sLq!z{5G?Xy1nSbW*20hX9Y#(3ri?1^F}`
zeFz|8mcQk!SEHePpA+zPP#0$c7n@35q)mTiKaWecOh7mP%xD35j|D(t;fIeO8)2hU
zf7wx>W-I$m)1Pk~2=S)D3r{E|q)<y6vlp<lUQ&IqU@Z?*2`kGiCfBWP*}GbQY(}*+
z_&^KRKWf^VW)(J-6vQ@viaW}v2EnZ%1C=vDYX=BIIUxd=)ojD5^Fyv)wflkL(nzJe
zwl?eeOU(GF&U|Cp!l9;*Og$@e)rT8wH&|Fc;t6ewjE#-$hv4tdA({Fn{y1yC1f`Q0
zssU8sMY$*q3(?#9wKzMV|6dIm%`<v4T-H22mZe$RX}0S}!gR`06WyakL$kV2JbF$y
z$|+l?TASsh2-KkxTglmVJyGuvF-S~opum(Cb)A;BX0l4lWufqdi2L@hGwCysv|+>$
z5lpKKexjI5c4&kkSgtOXFE#z{h^M2W5nbQ{wt_p#tyx**xi+12wB&JQr)DfWx3J{?
zd&z;PZ4aJ7kLmaC-yx&M#mzVM3wZ$D$m}&f#4mPbdzzd|)eBcVAp)t7g0-*PeJmp&
z;q5KU#0@UliG2cZz<PdhjH}IDZN71g!0w)GOeXs_08ux_a+ki^((L$6qvBbv)<NOA
zgyZB;Wm3U%pGZg7pWXW;Wc&r-D)A_!P=wxvwRg%BVsiOp#BP-WlpDV6aD{|7>2R#r
zGtc<uA5idGd_uhgX;UZ40U#I_^<~Yc&$TGh($jmqS0KWD0I3g9p^=4&(`G9K+|!;=
z?JGxTX;%)IMUjz_QF?@&**o6CzDM=23PHIE^7X|j-5fAquxcL<=*y<fzO>o#=0`?u
zuAHBrpCOPKLJ|@>U@m!Xdk*ER06QG!I6cM<Ty~{^#i6G0mLe`*z5UozhwT!qIS(e(
z#OTpsG3p)U!$)H7l{f_;hs@>yO;n!afE>}EYv2R<L&D6=EThQ$@KS4kJSYyZP0!<g
zc@dF4t^h>{5Y;~dAbF^$_~BRr9klG)B%q{Z1tiLeo>eTzqXiIAFmkx)b7-Yv7XdpW
zwd)Ew`7o|~OPg%uZN0)uA_kchDpqx#jhZr$^%mXQZA+6jiHre)R+uu$3ax<{w=~Lz
z?RA&p5v9PhcB?1|_l4x1ev!gaS3TDk2K%xO)pz5|Z5Oo_)VIw)|28EzrQo`4o)5J*
zbhy#rC)uOID68@chNU~mmdsEud^iQE>9Ur+T=1A~xh$YOGbh=)_fOO}`vgMr4_;##
zqe~Xc=DLsiGBu1<vThjM!}R&^t>k4GgN|6U^&-aOuz#Es`_GeM0oVkkH+r~T+Ya%|
zYL$zHtABv5JAno#RUtW44uDgr<?lFlS&SOCjP9zsN8~{;!D@|B(bm#pfl`=U^$fgS
zj!0z9l+@#3PN&BRV*AA5-V%c3)K6CeGhT(~)R!gHN|~u%*jb>X{uFg-D4a`Z>TZKk
zsMeEWX=~wz2y>AsrbDZ~BxGjI&CN4I(zCLZh1r=g{X&|Sm|^>T;OjW3(uwy{0_s^e
zfZ;{mvYc!*jt<+ww7n)`7-$(Rcg)7LF|Qdw3{l=F9zMgO^PU@B#&k%^$eZ}KAb>2g
zFl<3iQ+Cv6sB+0SQuZpdY@po+<-}Q!iz9**QqFnRkik!UStuNtGJ1PI9z;z!&$Z;`
z0oJ|`xv}L3*V1)`|KSDT@#rwv)7C|RN0Ik2{8R}y7(#=VUJ58O!DVaF;dQ05c6C67
zdI_0MEmZMNln9Yv-tTD6R8$D0&w!|MbSkGx&;o)YP)x}{N<l+_nkPhnuG7)PX?wdu
zaDMRU(Fai6`Szcr#KnpBX6vv4zzPLs2L&Avp!kJB^+9co-YgwtW4VnwZ#7a|?@Ig=
zG;ZAKh_*p%P>F|mD;E@6c&OJ%Ah#r+<QSYjefqRAhC<j~({oK&#9S?lPblMPHMAN>
z*W=(tws1zv+&@=s>*)Gd6YjJ|&xN;y%{rcCE&}WA_mnrzP@~c4S?;x<6DrxSlVlvf
zQ=R;tR1g$a&f%3k_-Jk~z_)>=c!&nc7*wvycbxzpO@j2M($_JhqrB(BJkxksS6hpN
zYHVxkQ}lt-n5xju1kuJ0BwrJy*2@O>24|*Db#Iz1rz#}>HM#3IJOay+D&WjOVfy+^
zSN%9ueDQGAtrxu4hKj9YP`%atztSppc7+G$ZZuyW!6WBwHrq{j5PZth`PUNEvsq|p
zmMYc)Q18wX(c_@VxSseA9xyU8;-d)3$V^qJ2JOlyRyI%9V5vS`qZgX$lD)*L`TJ?r
z4*8tba9O`)*Pu|3=1ESS6~}UCe*Ap5Lx}b2EL%{rJpc4?@tZo&WK9{+yfTM{G+gBZ
z);>j7;m+2GqSXnmYzS*C)g~P@a>U};7f3(T+X4VbuovoT^uwDpwovQGqHb(#oRwo*
z3p$HQFaTAGh4Y$)89CpWNprjA+1QXRiZygVvTTfUGE`2av?S2z!Y(%(I#NPW34;f+
zn_GTNS@@_t(=K}SK(0aksoNg$WU%|8xC`H!Wld@=xN-0nL<yO7Gh$^}hcMEt?#^Yq
z?5m&Kgf$D(8c;5@{qrP<kG4=r`*E=QJXu{+R24uj5@{|_3aFwQAbq)nPPQ}`I}}xn
z4@|X0^xX02uX+q@6+Qwhcar=b6qL#+z8qft1-1t)>g>wRa0rqQ0OeGGo_Zp(n&?A6
zpskx<cGkWM!>1wgH<E-Xoqt~|7YjbChnbRgZ7$|gAr?Pe_7QG?1eXA!B0`&M@Pt1A
z8^b|4?XT1?6g7IcmnIdY7oXJwY)*IQj>gTKHw{5DoxSxPaUM)LyR7PIDJ#>*xNU|x
zZ<R4+m3&)_aHscvJ}Ir?v>Ikyl|BjCKzyQ){PX@!o5v-Bpf;hsN2odSj@$Y|EsG#o
z0Pq9uc<$-pG%i$e4MB&WHBOkU3X=`a7x>s&aTNO=pSKW+B)~hnSE~%FuopnZd=CT?
zNi~RsspVrdHt|}7-aD%f5bzRQlj+M&`G`BzMC73+LdpK=mUVO&|A&x}v<ID)TO;W*
zTi<`QJCyB++=pVCE3g@Pb@iJ7Wpkacmz5HJ6LGEEj+fmrA1ZWQ(&iw&fIuQX$3@NH
zIrCDt>=3-)bu5Hz5`o*>&vrlons2(J&lz_05Eqtaggiz;U97cQ?UTn~BFH<+Yr7kB
z$yTGAk@LkP&KOfS7B=dv^mMyjaybAjwouuZ-b*Z`xbe)1Jcc3q*|*8L2@ti5_OSad
zyQP(48&-`iIc(TdKiPAw^Cxo{L<$?4ln<U3vkcC(QbPQH9}$u6<TmniFUVn};A3xF
z1q3UpN00nL>P_<s0N(Hb>X(2v`0Rhba~>yJ3*&690PuWb-&y^KL7?E1;)MvSvc@c(
zurqa@MfvXGYX`}xmLuKA$Yo1tY{p)8#1WwM`09ZHlw1eMo04RXQ=banU~U4#9)jgB
zYd?$C3IiX3Dg~J%@#VF*=b(~1x%{h!W-KB%c3~X~K|a-!d~Un;fjUxO5C0*7l-P_9
z6{Ry&xKlV4KIN+LMPmQLfD#DLdRq~$i&v27OX)O0fP^2oftjB4P-ZB+v!-&n0B1U#
zQ|(r;Q+y8Cx0MejQ>$FLv$OL$sORcXt~WI`eIFKPs*;tK_7K7fBPd(=Am_t$aT+xd
zBU2%<HyOaDV=>`U<tyvpQ1mE_QyfCc&7hzlLLwsC>YWyA!=2Sh2OWn`#WR*Mt6LF4
z$@{}u(YUo1F)B(*jSvp$z^U^7{d+`S-`G}UmKDlCi~@+cLSTQnMqX9*cgJqU*DczG
z3QH!I7^kUtvLfU1Pu4{ox?fPHgGHHO4jGv-PE>=~0-BB#EJG;y_%<58_n~x_1ge{W
z)Cu&yow~uyTrj5s?kmJEv#~a8dsJAFRAAEjTpxHI==MCRZ^a7Uk_}Y`KI0z_-iqq%
zlt<()q@FM~K0b*6MzFOs+O-KXpbWcH<QB;rvHr@uW!1pKISuMAnD%8wA-)b^Eyj)m
zIr$}@0_z|*sz*&N{All3M+^z`x%FUq5eGHO2r&9=p;gOAeC#oV3Or2Msn?n^C-I`Y
zrg(VtFkDQI_*w4l9h`Cep>;wkkELYo0iJGl)`8qiR|#{Cyp{tWj%zvwF}AIPZn$fD
zTE{*)Uq)~Ce~RG$JAd4NS8N~sKQ-GamJ~BRCjNeTgW9ZPo8OeuLggHKzUHu=7f;Cl
z?9P?F55~j<AaT>YBNl(&8sVu<y*bzZ?U@|A!O;bQIuQ@jwRYk(oALi&)#|_9yB-cy
z%3j1VHZ(PzvsV&`WAy8xrKiURwMN|C-TiYquq!dK1am)M$<Is#l74a2is8EZ+bh3+
z<kA8QScXz2b{T(of02!o6Q8#83>}bvoTbVwZIpSh?MwM;`noqS$oGtYa$xV)eDX<p
z{Fa>P8~)iLzzgp}LS79GX|690lb1U#-M6*1{hXfoI-Zx6jZFe{p~vd#S3av3TEuo{
z&j`Rp$o}ObvSb$tfV6z#N8hBOrRA_3;5IZgRBd6qapNnL*a^To2nsS%6$+pF`0?Yf
z5DlxlnwnRws&<}y2n|hN<K*Jf<G!NDPRb733N#IcE&&!|@w?BSmGo`gcG+ZxvYZbH
zgowHZ*(-nG)dDZekxr2X8DenE9$>_W(Vi%CLza};U9oA=*t4^9bD$%L2VCWY-$?{q
z4T3shYIe2?W(Z6<dF}_!AT%L=A-<y|ClJ*_5d~LED+;8Dqj$*WjWT8@odEG7cz4&?
z35rLFD%slMQ~h}s<M0b4UraPI#C!li^h_%d9Ahfl?mI>|*w{jQ(&0l&?I^7JHu+Fa
z3x$0NIXUg=yys4#-bY0(6kT|U`=4g-`Mq)wC%%F!5TFPydH^)W<>eYYgP{@|lqdM5
zt_nI6Lq*a7Qy$(2TFS)K6b+QAfa6I@N!37w`V<PuDfnb$ulE+q@t`1|3j&ycMv=rU
z>~#*)&g;xNRaYSvZKP2G5yb+B!y8C@F!|#^_3J>??O9N->s>9418m1A0%~-nS-c2{
zxA2*;62JKp&_;%w-E^0()~{gvl<R>_Y4BOt-^t`$PYK7h3(vnKCMVyi$Tx9z<}b47
zKY?Pu@-`(ivrwvPsO62nzZeMPT52f9n>W7!u*`v48c<y@F;IXj$o5WKNa<U0a`Kh0
zXQ+O{tkwac!l$BILJPt|l2cQA4In-?HWmw{rdN%Ic>`INg3U*_czM$-JG)_0?I^V9
zUdFa(&#3rcKFzh+_Ql}Bx(^4QbnKN|+V@B&R##VZJdWHUCX0x50|4X!^(UF~BBWOP
z@Pv}^K2RJ#J)%cfhD<`N&H>&G*kUX(R9h6hSxHW<Aiw|W)v*2!qKlVW{*#>yN~k8F
zJVA^qFz;*qRRop_gIg_}JLYEOr{$HDNMP_7^K*!4IHmCuK6a_U|ApolVJhI{%3ZXu
zFTlXCF~tdjxP*fPFA(b-t6~0iu=%mfnQ6n^ft$@AEIJvQrG)SV<))!NtPjc+V&>i3
z1oEYsVH$l0z<@aHZP+rES@oYd43;+st)aw3h)BhtqVzandtre~D<v)M8;Dq%y{V~|
z#3ql92i3sT;t{6*^!yZkN_KWAAkG_1Om?@c6B5K&tG4xFdxXNp8)3sHf@jXQ-zc;Z
zoH5<DSyM>C9em5z5$h&E%qFmJb~}|jEWAg28KAX%2SFG1C{IiNWXfBQ-5G|N!QyO1
zWo2ijz_>UXgfxKSi~&yt;`EFvwi&+<XpE4GiVal7obpuv#H1oQYE+I36w}m(P3S-E
z@$?(~_jR^%<r}_WU+6lf10CSG!SiyyFZSh1oNnDA*)#v=hwM|aHx$R~6z;!P$B7mK
zn}V2F^caCCgM@~!XjH4tz%@F>YPsufx_^)P=ke@MzqreY9k7n+2_>ECx({(;rv3^%
zEdsfeF-Qn3-sM#33`kVT1IKvEX<g1^XSnoN?{|!~9At<SJT3_w3B=z%T|jK)LASt8
z{*sa23;Fm77RZ3td>g5e>+PH%5{<*JH9WSRyFNdAP0qKmwe`uL>j}mBwt9Tjk|RE3
z7c9K}AMcCS8@Z&I*#C9sx*IhU(|Je_OiY;g$<?*B%xEURvEW@sKm85g*RQ|+$Te6f
zy39P(gNbks{rFLDq{2z^;X_d|u~Q&lzWx5@a(ry;U6%2*VU}qpLaM<@W~%$~1hA|e
zCR+lb>RDS?rw>T>w%wHfl;yF5-pTK5EFQ9QK|rcYQ%VP!0raF6MOxT+^`LJBL3%lT
z{u1}#X2q{8iVD+YKD#MuI=a(7cvSac=Qw~592TD*Sh>SPwt6zXSjKZ<b0Gd{hX=7v
z?gj?5h-nFQ^K;<h&6X{aMW$l{$HS)`GkTs6JxdJ0@m)m38?Xx)K&?npM#ieM$Zcbg
zE}&OITRQ*@tx#m?p4-?9FF)8!(gOAHv8t*sujN2W7tD?gINm-(oQ~gck;lX21%zOl
zn`@ya2-T6u5GXU<6%{=JVm6OuekwZg%fGKpoY+uKPEK~vya0gd1GH*rXvhh-b_tK&
zDP7RXFEsCq10lyDndGM53n;_JLN39T<+GQNBL>5IdK;#x=_!V#7^ytn8g<QA>Xdu@
z*pq<vJ~ba789?JKOcy;%Ou4%8lPC24_h~O+p9Dti2@aexi!*~88m+?rmLl!SMgc8<
z0k~+4_A>$Q5Pl)N)XY%|#BmVxZi1b8(zbkY$aSqH1z3z)QdQN+%^(n9LE7b^_r5YQ
zF>yO`q`e(+$LqF6@}WE-`sr=V_9!>{a7|g`SyYSvC^Wx}L|1r7kD>+o%|^h^zXGx_
zf8;dMj(|AQ6Qx4+A%D%TGsL(OzPZHm4K!1Bhj~?jgY~Z23a~|yB5MVzFDoncROSN#
z<!E@sWNg*@oJeQ{rzm)BFh+Mi@r56O<8lnxcRf^&{XvK*5jX&8WVCjm(7XdIPD5bj
z{!w5`1XgTal~$#44RwG9h~~kpnghC8va}qm0I)4Bed0Ei&$skKz$#9h-C{WPojZf3
zVJ#82Fi<wjOu7grYACDD+aH9qQM53zvO1_2ef}(>P>H1~h(Kmo@rYk71o1U?_w>B>
zMLg2$zdP<l_2n8!05^vU39UpxNoIZs8j6@3oK{1(`=OZtA|bz)PyRt}H>7SpFcJCs
zA}k+Jl_u+Gdpk7}NuiIS0jZvW)Y+S*WnSp6vS77y1YiKr9`GNiUU2vH_aF9$a0q|<
z_ANmnS;n@W!co%6sTAYZmFITO{XgWt-(#Aik&#!SaBvAkG+a!=-?Q}C(}S!mmbIje
zcsFo0)}Enq^@MWv6)5+KK=D_d9?S=Yg@v<r@f|5bflz>j<Ov@PsvVShV^b-!desya
zy&nYA>%negC%y2a%IyyJ#VZpII#*i)A?F(z(Ww`jy?pfwyTEE#z4DUm8+dkCVc6mz
zMi08>9gG@se${3FoSRDk7PgeEtRnu*?ta^VO<Ae1q;oxXKQ{dSLv)YId4x^Th{4nV
zoRm{gFhHMa1pQ!suo#a)Ho8EgZdCXh{-sN=G^{I0wubBio&A#3d~hjX(A~}&^tK=u
zfqx10^w3$<*kY@`ho9)bCw=GOEv9SNu>PLqP5Ti}+;b9zje9kPb?L^MP+xcVXNXm(
zj3w$cCD@V|u<r%WiX6uyrbjpwPeU)9n6{?p@;G#b->FK&Y}8gbt#wCW0QML@c@meF
zc1|jUIrpYHJL&%Fpy!{2UfR<l-`Uk=v%Rd>-P@}_+4PYV)MNgo;_3qySP*ZZTp+O4
z%;kV~C=$-<4GRzV1IsaDRf1}r1XB6t*DCZ{*yk{)`w6@7K1@Hf40%HL#~m#P;0LOC
zhG%W<>>!>!1&3b6?rb{Z8+&uf&T3`sJJK5iYBRgdSS@`fEf*J2@vsAVZ>C0H!sKxS
zlxtGI%>9c5Mbhu0qF4|V+V@Khd@2ZnNH<?){`lcT!}rTN%uspB``6U2-Ul(1?&i%V
zQ?1V{1A>lw*J)P4&hcQh%B^Q^3!LGTNfB1>AqY2od46&d_Mllml<vX=obn*SG;y^F
z7!(Sr?2Vg6{X5o(0t5Wu4gg@zC(Wd<0|G+i;_p9@lMCuHdgJFeQAck50cz$O0~Lrv
z9f~edMWOi)XQ+_^;NoyO27<>t_hCRtzUz<0>UjQVZ`c<811IG1zBIjC#?P5D{p4KF
zTI_~D$9a~2+h)<6yGN#c(jSf)a0;ECD9)e!FP0!HVAMUvaMD+uFsi!X-oun=ebL=7
ze}^lVD1V<j<uyNVQ7nOTkE0|(XFu*ZHWmE55s$j>Px?F~gBc*v>9U*1;t~^cukl_!
zGLZk%p5|QR-F_li6p7h1okaBByq}1V6LF9>`!##d2Y(vYX0V7v8UFeQIjMT@_S1HM
zy}g@|<C?tz7+f1#TXF4qjz{n7Dnk%;G*%YJxZmMqX7eNa-uZFyul@&I%cLg{^qTJ}
zq}08Y_&ZIP<7#SbJZn#aygL%HW_J7E54hTxfWVv=m!P9A?g=jheEOF#c;XL8uN_Z*
zTH4LO{k(&9d<*C9BNTYw`*_%=$r0_qz4p&#&LWL@!hi1i>kF{|$)VV90Q8E}{p{;|
zs*Lb?0^`Ha=^|pMqN+(0@D+$(9&mm6=WtmB+DUM*V@Yq*sEBS{Or^8kNK{Z%BnAPN
z9jr&fy~x0Ss|Xl<@MT0bH~s{gb3%&*nNW`7A=DiMwil<5hoFCq*1mef5Q1XZ5%d?Q
zTjTxCw*l`M{mHQ(PeAjZA9DWv2Y+xwh9Njnu3cVix>~!1YB?#y_kh2EU7NW1hw#Zj
zj&`a#0q&P(LrCu$@+J9yr#<m>Cae~4*ubBGA(*zdV&^PIKelwRTz2a(8#9QmZ{~<)
z<>>fas>777jMpRn4}_5+?qsJ@FlrH#kfgTt*GbnGo&PUc1cAsfkgEv5LOA1J0s)BX
zAQ0pw836(6YA%FUD>JfZO^gHtrxStlJc{Bc0SOKQ%oPAd8B>GN*k<lldwmul!~brN
zJqZv7*h^-JMxhyr^Tw>vt?We1U(1N`3$jS$+D%PNzJ&9bvm3WwMSaOo%g=G%FyrRt
zF45|BEelvMy#w(;R9l-8Vw4YXSB;iC&z7mH4mLG>*3|PL1#`jz>Er_f7&pC3So+PK
zLY<V&<$vVY^Mfs`rSVQsRW<<yttJo3JRqmU*BEJVip$}Xki3K`^(W={W=d9BAd#d0
zPl8GBeeDV?tmAEB#3m>>{3}YltE(&52y+P)&EPG~GWb4BHXZ$ucs5n=1<5}N^U4P~
z8k%!Aot&J0RC@>m)S;%CjV~*^0u-+XZe}6mm$YGpf|AlpNdBwq@LCFFEs5QwqoqBG
zxPQO_+_T=$AlV#oOSZDq|EsPD<REAi%Yoj=^gL{@uZzVvjXcO6+pR?w(u@0m$Dm2a
z7d%dbzxG`gOV0pT6uEcL%lYIdz{NkIg{$D^Et@g1_4)oTDkUp9Bw)<oWna6{VdwT*
zQ?D8qiF$quvUZ=;v=tiu9>MC4iHYG$3E-FOUJ%8&gBfgJ!kWH)=ixnK=52RERae=*
zzn1m4lSnJ>m}kU^nx0UCzwxc0>f<?~$s1d&pMC9{GKn<!h>6`q0_pCz<IR9VHe4qy
zvMa?98ui!Kn7JB!mxkuxc!ClP9$~{MkUlAbpa6uPb>2FDJ^#n3s21cs)5IM++1Hr-
zzEOE6UGn)qw(|;a|LLlQKPg#~86O50^>t5LfX?+FSyims+{c)h(S!{m0=eG?$c?hJ
zf=h$LWzz!6(@pV{C)~=H|3`8ptsc{RFf&^15!?$5C^oPf)_C=0(TQ_=XcN5(*EuL)
zf+BR!%8C`?anNr}%g0x$Ry>nVdLN9c;I~Ff&dHP0)8p@@SnmRS?VEF~Q#$DXxA3F>
z;XmwTARymNxWDOwOy`O9qtq^$zipLRN?dLk@+~#srn6_y{-|)`LW+_gGeZTGhKsAq
ztn$BD$4dY^sa@6kt5O%pI8VV??#jy(jv(EG=%tSMGtn-KeCY~eL_|cH@4vo(PxvVE
zHi8a+k5&tB&i5NAO(PA+c^Fo^65(`}?E8-%U3hhoJSnS7vrZ+s65@u5-tl}Q3m$rq
zy<iqmD8$1Jnw$omYA}Or9T<=NK?rBoEWrl{s%=?ScJ<*Ekh^NY-I4><#`%#-a^b^m
z+J8irkKn@j2bK6TOWXz&W(<_7TKGHX*^0iv_D?UF;w`W-=_A2yppXd)oI(}@1!uv?
znR9au`ZUHItM@3NAh!%0MjvW0%4?tmtw3dP@Yim!^=JT$N*}B|+n_t*{Os#`cyC3+
z5@;ADNU9z8%Ks6v9YI%nfe<Pf>uiBu&8uIa^wvS~1%<jb^z<ZXWj4?bpx5y3ny;T9
zwA$5)$`QlYXNdBk_4q)Lu(9C)x-^|L4`Jo$*VC6jL&$-e&ov-%^Rp@{Dre$5eshkz
zefxGBDp$+UMtO~a;S89JpUq_!vqQZFC1PvK89*s$reuxTh2Hy=0Es|Kap=5x3N5iv
zbR2_zpIoMClPG8C7A2sf3Iy#)|3{AACm!=lW$3v}?fff(qQ`2xw@L8ne|Q1XYz#z6
z<DSzV2Mu=Zs^IA8#pTwxnVFd%c}C|^pHotBg6XBd0cHbr7!l|$T;ay?bUV@W<A(|Q
zVWLr_1t$CvJpgNNUS1l0{wqB_Jt$8we`KiUo<IUB3<Bw=4jemxW(tGZ?o_iErrcNL
zG&JVe<?NJ<#pNDrXq=Dl@cqM6uFwZJ{;KNFQjk69GUWUPGVV4wF>=v!%8-Mw!OSB}
z=`x?|NmuXu28&}V_U0eO$u~v3;h&V`B!L_i4B|(zH5IVgvnWYP$uA%}%7IHWRNMJ1
z+?Y(?%!3n1FFXoy$$}#_Lnek@@5DnXDGs}-M;60nJ(K+W_P;$r2~0NyRay+3>AM0P
z935Hyz5JI+NU&~uP=Kc`4pa8~V~2?tShv~1vb8_S=J6GHun!2OWAOAY+V}YSh94sr
zGXg}L_;)%25A9#&#rfa`HaIN+BG->1OLBUd$P^i2NUYH5{sM~7SHJ^`E)4+eV9@xU
zuA!ynWuxIYP<B>ey&#f@vJn6rAZ1=qsB&5lCV=`dGiW9&5F2z6tFXP-*Ds?q_B3F6
zg&Ny;Fq{QIsg|R?=Nio_9}=jESHa?$0}NuwZEF~JdKA<PSU)F`Uqbpv*pJC@84vV$
z`@<*fB;bObkQU0aJ|LM8$qH_K;CE{Y=Rr^h@=I`xmulAQ9Ijr5vh^8Qn|x4Ge0$dm
zJNENu6kEme3-u?!d_blV0ci*6;y_w_!{>g)OW;B1LW<<7U<Etw6#NbSOlMru*`TB8
z+3#4NWl+qq5lAjnZ;o?sT~p^T2q1pg-tAs@=rjU;8g^)k*@r#8wpT><uh6-H3HH?U
zEYbYA-b`|M=5i1Kf2ZLS?EE=^!YmIV>{t0X+k2MJ>uB3O6eDInKBHnr#4fV#LvXMc
zY~NkiO3=Q9kE=!v22+MPfT`P+Rw7{CLp@Tcy@#4+_0Rbf69j_vUU1xi2sn$u_;(C$
zV~(?>SojPF*(p!NazrZVZ2vj^uGoa#e*bIyN<rozroTkUC;h@&bY3i_c%dO7`pZAR
zLMcErM#ycy%B@P`H=Y4yxG0a6z;Uj&n%QX3b$1s6iNp(HBldMjzh+i{Mo1?}=LJVN
z0IX_gZ2U?aDDVOvj$ZR84kYH0{!Swx;5i@7c_q%r;h$iGOI+@R*6C_!TJ;SKlmNQO
zVex|<<e>AzW$5!JQQMTUe^nn|o+&#4kbrmy*4{AXwF}?xf;{mDP1qi@8yGQ|E<dM(
zv?)|~3?+v2fdc($qNSmcMzBty!0|vOxe(CAavnkZG^;p3OyWYk5HvyH<o^J82L@@}
zhfP%*3Gb2n{bw4bd13Pz8XKP}y8=jC%<uPps3D2?ufQ4kH#Nt&^W2m9nCJDR|2kbD
z>iiF<i<mtZUD-zq8dSh1F+M(i^e}+q<4LGs`k^vNc|@s#G$q@K%el%^iOXdmZ62g|
z95RMCU%V`L-iaHLek-S7Fosc8KeXO~QcOd0a{-gJI}|gnL4y?6ljbk*gy5}kmu714
z2|Hi@1%K>rEsZ|n;rF-_w_^iZ0rY|DeSLAdrAW}a#Qcm-0jMs-7Rh$%b!d1NB@0D^
z^Y2C1_Q4$xDd0p1UEL&$;LJeve1h@6AoK8H7xQ5Aeo_CQ3XH%XEcarvcjMzXpb&)^
z*cn+^Hk=QtrmU(fEiYT^cPq9KNJ-2!|3@vhG7E18Pnh9fX;XvLf2cwh3!>Zihc>hO
z5xEd5KIL6lB;sE|qi%<`0iWb^W$}#Xpoq~k4YE(kWQYd-<;y-1)>ZvC)u0yk1vufm
z$Vh((t$m9H;>LT^W>KJn!?c3v1@%gl!{X3P9)(4pHQy0L8d7L&fZ)syt%1-B(mGjH
z{w65DtlvsSj<^CMA!Gw2-hjyHFDtZj3akvc26<4RLP9ZA^_9{4V2$Dc_j7@17dHGW
zl6*CLM?b=F$iO<rih&mUcqq<Dk6^>9DAbL!Q%6M1@*O78YpGRL+8`4`yA$v+r0oaZ
z9|X0^LVruDeAh*j5vs%GGpQLFAD{=r@2hT3_^m(vv^f#R7~4w3hzrt8Bl!4lz!G_!
z+!iCO1A;2zSX&MB*uRHZj?g2ZEwNfxZiIXQ%?HLf)T@T!zliNs0k%}c-@jCSR0WN;
zm>GVpg+Sj1SP4v^=jOrV#mx4k8!Zl%%7pe1(q^JhQUenFn3u<ilvXDJ(glM-{{g6(
zHP57DgtQQI5(G$PG)Q~d7C&<Cf`nrP`ZLlZAicMk5vBPNYFEJkh?+oJi?s4;Ai*U$
z@m~yDG{0A9g7qmhLS7@+G;@cB;t;4=sY{dd+oxEJRH(Tvnu@Bz0Tcxmcke#$GP3M5
z*zpAo2`W{RkZskIAVJBis6grG<;$0ykP^_^fV&dG$|Bav@K~KlRAsK>aCgoK)a^WQ
z1H+`+m*E=k8Ki=D(H7tk0bk6r{Y>ZgnLKs<ghHzj4n$=q&jv6Cnz547$ApB0+Zi#9
zhPLEV5=Z4X4UoP001`QJ^u;?+`jQ8!ZC}Pb|6ACoc-8*Bv<gxOY;<NId!nnZx@PWx
zCUBS3!=j@Dz^{*b>K666+#E;nhIyj^*yjkqLWmXZzH5qfXRfTQn1ump1Z^>`4Lmx#
z0yH!y0H@%bKM#I(2#(%K&L!%`a&iR7aYeuzY5?Q|fFk8Kc?XA#a0`PR47k9gCyfO1
zaeEoseB%ng#_`?x#es<1G0Uy2vcehm2zG^ug@u^CJvTfuEEJGx)m;74fPj3!x%&$`
zHt`A4yA&u2i}M{i<zJ<w{z(4YV|#WnmMEl=I*9ha$Z^KvzN(hiTjb54B|2cX_j-@?
z^z=$LdNpj?1h;en=PR!PTtdNN2fc%wK~gd@z;sS~uJsY|8<Znb>AQEHppnKyiw#@l
zIw5GR5fwT>R2Z3<PNG1Wj{{dTF2?k25CeK`V*2_amCF_t`FAG<_kAwIdS>&!uewAp
zR&H^>c=IK8e|P-$EwLh*v)$Seqv&%jvG0oHznm?-sf2bUNHdYV8GF55k=j>l@`cQ)
zGZmNL(elg;4?I4*Mcl(p5PAD4EmrA?H@TIV-OF!cmZ)A&JM@*0Z?yIIJ5?u;Gz+bb
zbG1#ce5+q;Zq+?n-`s2h|DHufHI!FoW@q0|N4v-f9c~+pAN(d&m|WWt>)ZIycLs&>
zy?^%;>N~YO09qzQBZV+qSFz+!4wd7&?J+{FzVFj(4;&qf=ZDL0J<-zYW0>ssL=Go;
z%t*YJ$e^9A!m3@t=;r2T3$pW#8#g!xs-Q}O0f=#(_*^3(G@<KLhSLT`ZGbGGJbXD6
zLkGv_eAwLF{NxtCanIESHY_+36u<q-iM(wi3eO_=X}O}E;iW-UBq9*v`b;9-dl$)h
zNtZmJZ3A)MH$d0RHCS2X8;5Q}G5g?J`~U^<K#39*>dR|-lbdOlwT{n6msBVNjT;12
zMG7RZ$AM66u-N#fx4%F25{r5QO_1-35wb*PK{4hSPc17`cM_m9;B(J-;J3B-T?*EC
zZxR^BOonLtMn<wgJx>RJNcZX_rUwp5@<)TiIUVugBaIkHndZ|$SX5xYP#YW%5yGq%
zr^y=HiPqxb=Dxn*^K50|xroR|@Th=FTL>tW1n1N%3$FK9!@l#rzgnB^0tu1_!e}8N
znoqX@@TUSn;80RkO#xDyNickm^uRBWNAA%VRgR<#3EW7Z$iZN(wK_p>IXkzOtPA`V
z5kH?gL=oZX&TsD&Q}R8fw6&6TXdzd)U;UL^4o*`;$=tikNbH4t7y0@|JneR!2z=M@
z>qsdlQY$%DZ@r;Zu%E}8HT|UI8TV?BA57j3k60rySyYlT;#Kcjx4+*&8S*Ci`ystN
zz>xgv$8-6Kk*j^;CiWiv%y<gE{R!X7F`mPMZ*QMHt#{Q=6nTNnU07M-*N|@+K2tw>
z5r+@oi6q5Sb91N?pFqB+kE6bNAFjK7;GSNCyw1}m`G$}1#jrD?v_u?P3ol)-MR5pa
z{?}cT9AEe;<2mH-H{3itY7{3>KJnBrh#UyJWbkQHa`<p<RWJ?02YMPY;=rhwyN8FR
z<#4`m5_`k@F2ysR(j`GI;mIumzdd*STT^)X7sKOANzxL(M9~wShM|ju$1<K`SL06n
zkjIb1WE%bijRRLmx_UUuQ{Tb;HgfQt*4k7azo)%!eJ$3L`Q7IeiWBE&{8#vLo837U
zR-Pq*2N|ra^c*xOnVJvqJUqF%R4;^tgs4-T^SmH&7q0g1J|i~PBl<t%xyym0n|FK%
z30Qu2QOci>Z;kXjH7fn_@qPK~<9mMmb5mj*IA0$Axucc619-&Di7<JVA!in8{`ZrI
zI-bOwAK)m?#DyukO}vFaV4uaN`^x5`ZpE^bzM$<-fr+8$`S4p=$Oof5@4>KefiyFQ
zCp|DQ822qI2cFfOmt;Cl7?@<rkqyEw)GtYGE9^NmH4R?hsbZr913Kbof}=D7ont!o
zqD`LE`&zvbZUZ%RWykeiFO{n__$`r_AvMk+=rjB_b_Vt30o<Ptzw3660Gu2FFeHe;
zviRA`*jYbGu^UDeNL5y?)HbmKfDVyEMJ{O;Ro#HB*TK`HL$@8kK1M*w$egnE>{|n=
zgjt36f8qHMzw}x-dGe&~!T`_CqGL7F9mmB2Mtu~D^ZZ{o{iMXk?O+#;TvoHxRvbB-
zg@uI$yqmYv+yeXB9>*Pci(U)6<CtZSM!$7B8n-N2qm-(?K2VgLEP))|G&4VcwMVF)
zHf!bfeS3|#4OgKUMHLk(4-bz{w6lv#B9wqdW7|)O1wPxqWBT`*P5PXg+Bl2vX`=+;
z7vyDv;z1UqC1zk?;M3;z4G%BOiU%&g!~Ca->1n*M)nwD~t9-U%Q*ALZPx*g7<(4K2
z#TYT4@w(d&r+_^I)B{}#R0{Y*6;293454-R@!`Vgp=CpNt>LsW9Cp;k019K=Tp6=g
znPO|Sp!opa%3h#VwcT_8q_Kx^7=xmc(gO(ziHB~VKfG^kmFWk6|30RA|INxFayAvj
z_aGpbfc*n1jt=+kYZx0RBhU(%6Ef?oAR5pOZ9&jyJ=$+Oij>#+G`R|Sdv(j>XbU;>
z>7kaE*2C$K&A_fF!DW#&Cq_d66;-k>8;IPuKGa<7JB@@Ow5PoR?-SY}U%+tkP~w(<
zcmqAtNv8w`Zkiy;&V~3;qQc7Uu{Srb;--V@k~ru5NCP~uWdNPt@#cSmH=3E7D}V)2
z865pwBcp}pp}WWtC~yWtHz?TY+D?-s@e9Z?UkKQoou5~PDW~9_Qrt|PE8~ZjeLpdp
zSxBCWpq0y($>y)gJxm3wL>ee5DUTTwW@l%+!JP1@_^pR&c+!Z+k()sja&#Wjh!h=7
zsidNk41SQeMKSvm3~7L<H@3FY0Yq;=?=jx%xxVVdLT5;11_9>1m!Fin9_~!{uzBoA
z^$ZVZA|gUp6$eJ@=G-Z-yM;i+l@t_$*GWlr_Q_5DYuUKm7Yt}7oZi~|2*KFW_Lt@p
zgH2Fv&3e+5IF_Kp=OG+nbaQ62hD2pyVc|hvrPJDzhc@3YivX52gBiI=dg00(a)iMw
zJcEZf5~0l^k<x8lF5VKd?=0wK4^y+>3@M%$&36;p=vGLBE=)H#Hx6c-VOSz>?KMyj
z0rYe$MPhfKcnb(z3Ih(hx*}+M`xM6!CkZ$cjq%s+!NCE?U^6Tf$%>A>L+BMtui6`4
zN_+nN`6u4|Dt62yOm9Y(PIcA?`B}JoOvz<$uk0HNNhyeL@?g7OSUL7F;|vFT)%LA+
z=ZP;)f0ESDy-$W&)-WZ&$0Y%i`1-O;pR6fup2~5l9Pu7yp51Vs1V{GS;#=iQ=FD^S
zeoinjNU1lF);EA1l3*Oj4H#Sqsj3n(-~(TiYBWDOZGC;c0S?efsIJyYl8FkJzxrhF
z!l@HTR|nX~3AFkWOH0+1GgLX|ORt+bmJcJ41UjAHfh3Iq{^Gwk@oG?6?D|z)3^W@1
z{}>n?M9R>e0|PfRGc#AAG5yNmh3I>6H!>k^g2%g{sHh3tEHuy`F8T1lyw|5JOA2n~
zcNt~ZR!6<;hc||9pPK#`ac=@mW&3`QAI+p9iVC3;Wv+xsNs>sY$Xtd(QbIJKqKFJp
zNF}0(Xh1TT%tfXoQ<=wv%+qh*N8|gxpJ}cC`u@*a@9HhiInQ~{^W68o_O-9QB?F`y
zGyeG8Th5BiF}ecEIv<nT;m@CMY_4KIbNX~xeEhx`-DEMNpuCCGlQ@C7SkRkXSoFLB
zSaagQ(qj=yXFO%ygT;&&gYb)dV!Kx>@l2e3GjISi({JCtEh#Twh0nqgTd}FVZw)W6
zw}CJ(_oPPk)z`rA#-N+CdqKX2MMdo*-1;!CV#D{hrO(*Dv46b@_5(x+&<p-9JH-;$
zGb!<gJM<^la6dV>Tsm9rH=t>_Z7b{LLkxk@2?_f#?zsv=j;r={UADV$>-IE>CdIfH
zwfKJda;y^GHgA%WVpQ^<(VXi1z=aE;xnNg{UaU@vo$AQQNFxRcP^2D;JBKMQe-uPJ
zd6}=lm+zdyo4mrDqrs>bNF6EYzl%(G;|>rRUEgteXaGeKu}g5yJScIZ-WhBxPg7dr
zxzU8Nk&5&ikbpF#5?ii2_RUM|>)lox5yq$k5`VY4ZvWa^J(y4odG9c2O%f!_^IR6e
zTzn7e?Q_?`i|smuSv&RhgGqVL7px(LWtMC^O(<3F)dFI(hPVZ~nJq8YWjI%4FgEwG
zubiRSLbnL8X#r<?Lv3trAEI)NR9JcFtSPxdQHtz&GXZ#s+k59}evubD-gF-313uRd
z(n>rYazaMu%$a1ZWZOsRoU0O>Di%Q<;rCeFVjf~*4+FY)PmlLk7!Dk^-E1-{b?VD4
zt*1tARxflED{RW&z4MM+UZ3@R_B7)57lVbn998u`P6pvF_m}?nO&?;XO2x)1GC1>&
zl)aiXj8Y$B7fD5}B+^n=TpR*P$Xx=3Vb--5Q-ZG?CdfGXozv}+ej~5={cqpCZ3YUJ
zJO@*5XXOSN<kRa%#fwjf4CkKj&pqGgee%px^V-DAUxQwxW$G@mw%hp9q*L<pIjQ2=
z8AG2A=l#0qm6j~J??#Zvah@0k9{b1ZfyR=K4>?w_<-};*yj2)ufARqP7Rj%p<C%I~
zafVn1ZO6A*t?6~K&K`>6NKct1>=PimhRoZS0JLy;<+Sg?i%|?p_AoeHq+(I0(mf3F
zz<2o9Pb-<7PkcwPGiM&01^|f1EvE~@v{PU<(DTB(*9NKt{ZRs4FC1sZ>(&pBKAJzB
z{7d$2K*G2K9Et8quM-nkz8}L+Fs?yBC?z9=iraqt>9n(?tjx$}&K7zqnl-ovL6<5s
z_aiFKqxen%SksFa2x<<HtEs7Bc2QVHg?kw*@A1kdQK2D)e~YTC^%jC7DVolq4Ew17
zmclQmI%h2vMiR8^yzejgbqoFFNtT)$>y@7w*Xrz_?LEIUKs>`kSH}C+l^=*()V(rm
zj#thKbaNnB6LVvH*%ly5+?h3xK4#??5Qvv#7N;i&nPR|oWviwe^)MgL$>NNbpE?+)
zLkw+BQwMLvd{Ker`;mvT%1MS0P)p%q%;GGerM`sl&M^lW{Ot<PVwgI|z?J{@EM^=6
z>9qecUXAU_nK>4c6)eJ;iL-?DhNPbSDur<N4Hm*Y=gNIkTnXZ#UB{{u8J|U)ezd!^
z;b4wyU5mnzn<gn}QE-!c2hPFD$Li9gn@KfUktlnlRFMNOx?3OmH&OHV{IoNs^<vZ~
zJVh70&x~m_hW6Z6Y>xC%gG(GeVZ%iR`i8wGhZc|p!_LL^;2%($PBw^VK6y2jidcRB
z>uWVYn`#(=8-?_g5Jh|z%YsYYa!(|6tt(DQO-)t95*@PVh}5fXbbov#b$J?tYba9l
zZwP3=?y@aFuQ5C!LF~S?!<FVwR%5{z$xJb3dahl+zG`!Dk(~@HeLgWJgNF%57DfW<
zcb2Y~uxfOLv|Pp{SuV$Q;>_Qn+!71ost^usH*R<%XgGV($y#0W;K0#HS2^x$zP`S_
zFQAyHdJ6krFy_N&$-5=R6kq~@4Ekj!o%&Mk1ED+d*hPDxt+kakp@>4sos<7rt!-L*
zolMVpN`ve2u5V0ka(kh>O0sUdrluGP5;qc(??rBM9yaxTi&Jk!bU_-n_w#X06x6)B
z6;~5Lw?sk;sDu4UB^AR8?bkK*+$v)*wO9jnWUj4A&Saj7LnsC~_F?mb%uEAwu8GA7
z(1Vf@;qubbd%$peF$`03?q=3vA%`jh;RxW=2T)R|ZLWYh;6p6(eBpj5;@PF__H5^7
z>_@NkAy)il9Uvgp+2O(FBFjaPo^9s`AGKf!n&8#%SIjQlR@jvnV{e$>D(r6?bn|9d
zbo84W{*G9gZa?+T+a0`F0IY>CfCy{1^l+nZ@3Y`>r8R5UZhw7N>quzAz<_Na#CP5U
z_I=HHxGr8dS?%Ox@W%fsV(EWU3z4ZY5E>u5;qez(Uj_Bk__3;elj^QXCa`|zpy^`m
zl-9NGut4&;aA8{H!-v<%q+z0>__dP+z-8e=f!ZFusZ}B^y})GJ6W<=l?8J_P;^siy
z5g(moTZ<2yPfmMq+ftJI$A>|=zEkHH<Pz|m+w!zywi-|0=~UYE1CT@Kqk*^GsBz}O
zr^YB=zy!&|cM{gG9}VfhtSH{-mGJy|0hm*QRJ63Uo6tU20;c{@A1>;7c~iyt^E4}(
zw{UU>iCMr+VR5mI?#-YeV>l6HJAe|B`kFD_3Uyr|l!o612NzTc?fw+kr@Z5LL?~x1
zGKXS#qQ8BggyTdCc&{sJ`F8!^zA2cSN1a%;=A$OZBk$l~At2K16W12$tbk0SGi>z0
z^JBMB%u&bT&_nDA%NDDi2%Y-@C(iWPu^TZlf|cox>2|5L0SN>TaeqGkA+eW^N?#~p
zY0I#C_~_AfT!?u9-iEb+h470uJo~~UrlY=ZI4n6?8(ODj&thUa_+(0paFU>h508yi
z!F&ck&Oe{UVOtN}6R6uus;buJcrEwGFD$cw>#z&yQue-PQprW*S!qz><A-ZY@+QDv
zg`<=JvGnGaggP+h)r7y{855-wG!%nn4QEwCyM7R0JKPlB%zez1eRKr3>_gc3&Aj;1
zxr^-5#i85REOcYl*SzNM{{Z?_X5Soupr#%>kES8E9YW8aKaYau{2|J{cw+qwRlQ%r
zx=r#sc3j3}(M2lsxFMhph$~-3W`7L5r0>(som&pwtnrVpcZXFBnxN`Xs;UBwwI#)X
z_w`8F!g&`x-F+Cg)PgfC-Hd5F2OHvoh5oqc8aQ4>yht<An8jYJ{CG)n;lbJ74u4qy
zf6`lK<zLSK&;tBHb<w8DvSVj>d@Xa*{n#$s+oJ7+sQENFdO210NKWIc7r*ElYE7>5
zIK${reuOIqcogCAWhccEwT<lCPCK`49hx@<13;#+x=euw-#rZ3-@yYjvoq};Dy4ON
z8r`dvQ#is%l1`TC;&!q{QjECiULC~iUa9MTE=f=Rh4s`;t0CXr_8-=YGB$kF%VjB9
z(op&f{OE9zEs}CMbZV>Ii5sw-iy}e=5KcR>Bg?D0#>rB5TBT43Ua!c8&6|P|3vEuF
zQfKD2_zojHLK)gFOl{8K;!0?ywrs{LvYJ<?{*_@nSG3&JmW|)tU+kxr-_98wW_lCv
zhldE;gub<Q$@;f9rr_3N!+OfP-+`7yF24!O3MmdRkb{Z`4pgp`pYgyjpBGOxc=Gbl
zV@yo6@A)K5-Tj?hcxN44MLo<6Zsv=RmrflFh_0~dQwM)dm7ZJo`;mj`YIB|f5OM$z
ztG@#XD%GX1_J25gKhEORpYD}C4!~^QOMU}moNj177Oz)^vB-|N8Z@^K-PoYK%-?Rk
zvb%j#bF<?1?OEOp#y5M!(~Fy};$AF^y)~U8Tx{3rtenoV7~46=@_z{qQhFKFgZJ=K
zJ%vcs0Fk_K^Z0|Pp$WFD<i$kW4h#DhX2tx3#=LVZZi;8nH=OQ7c`OKTGe7*7dtv5W
zbWykC4paXqmNvQiAt&>25-<9L-x;Ykv*_`SH*`Gr^NiD*l)U(`=qL6BRNy=hAxI^x
zcoJ)lRVLX)0XSsG<*3lI>3B|_d`GBy85w;DT3@&HWgR_*wqKx(<Ais@-Xk}81pNy%
z=g+!GMA?CGF^+~?k8Fr{adY4BN~8%`>-v-a8ElCR2h`E*f;&$yG)nmpka#43WK%FU
z4#%9KBKlR<*4AOn>6JZi>OExATV*c0ulD(DC83ipH#v?LpD&hOn0kAoCd?y-#vl%M
zzpB11<EV#)k96%sL?(K?9Q`2Z0$=0<RaP!cEi9M95QIrlLT8OG?&{T>84TEZ?n#UJ
zD99~>5*0WCTQ~s~ghujFc&)iQ&FkM$M+tVtqgSy?K6<3wRhz1fQOCD-jukPw?R`Zu
z8W>SfCv!BXo33kki0M|8V_0S1%7v=S9fm?~$~Zc_NrUad0nArK64%3c$c*k;VDW2*
zDt!$z9U2Uh@hDaO>Njq>bKsUqi?ohZk6K>S@$rS@gY27ZBLF~%0c<>=RKL6an5>Iz
zh_n6pWyhh}HiKVu`!U^;^O`uH{}sOsmHvS|o*gc0IFk5!c-*0ihovwpfISFjG!o-N
zSt+m{U1QT;#%E|BHuK<_GiOR{ENfE&t*eH{<<dzR2=)G6Vb=BU?Hhe|V8~?9PfZcs
z`CZZ@t@q@s)K#Rz0aVH{-tq9&=da%9^wZ8B;0xc2LiDEenS|n>l#rhqF!0;kn>L0I
zz4bi2_;6^Sr^#ZKl)dDuUMX1thHhR^MLLv5;GL3^llNg1;MLH`=xFIg%Z8eUlhb~Z
z&R@9J2X<7Im94~ASyEGDQ81iwTo4<93X5Ls#?Q}HPp9fhoEwRA4X9f!UM=ms;=sm_
z22~juPLL3&LFl*QaN#W<SiKmsPhpa5D}qVb=FA{AF9d9Zbvb$R88lw6KAb}7j+l=;
zn3$1~_L90f%g%M6bKtxs9QKyq;aNjqR$yn!y&{nVKfbivQH04djW)6G>h5OItuO}9
zgp-IFR%mPg&H&x-FIxLMK*aX8GSq!5rSNyuGIDyc3vW0EY<3Ws1fjvUgcs;phGmOG
zI#-!u|BU!~z?f+uAYp9mY+HBt#(GadVqP8wekv&`iP&Y-_n$UQU?1Zt0(TooI2v1g
z9ddF&Qqan*2p6Y*Cu>HPSKZlrlH7dD@)}mo%Gqvd8B4qhvPaP{_XYGJ?){C3PS|bl
zNTDdrpnEj~EsB<ZL_Az>e?vUJy+<=}O)Ky+Ul|r<imh17BBbXB#!Ui@KAQfl7XQG|
zoN2haku(fRa0U)yU9AxM2FM*z6lc2uUNsj=ZnY~#opvTCvfaCj_BQO?;GfxFa3u9V
zwg~+VX(+;GOwy}2)MWi^3Z_ar-4-_4vHG7$7`GoJj8ZT}jcdJf4Eb|fw$*>xu<QL|
zp<gsixAs5LFw%eJTNs{oLtUoc)Yuq7@D$GOJpqO}5kPOy6hGP@tM_Qy`7Me)LF`5R
zg?2sTri+X2`ZQW4I_zxHVS4oMn}cza_R51px189-7f3u`o!or&%$$48BR7AsD(vqM
zzTsSwed!nR5+FJ<?>noqlukB;mCAi6DJ@}txiOny9p9IqC$~RemAre2&A%a6u(=3o
z8i<M*@0BBM2K2bF|CfglypRzV!Z|i;3iUh);q;KDQYNIO)9@W3(UHq(s#i!e^WefM
zrbU!}W{BHMDzKu6GS2)gjMvTT9@J)^MPAfnld{Cv&IeMRivnFwSO`%&Y=5*-em1DU
zPlQoBDim=xf-ao4qx*(;)4W2EM20L@6TBh+HUfAILclfx*4?1;5sz7M&{It|wBBUD
zx84+(NGos|d8sW+Nh>gr3L8r3w{tn=g<^jx->QjPI%*q^Qn=~sWQ>I8ebdJ3OK6+<
zm(zqz--L4Cuwuc=2i*D!hdqkij0fCJe`i%_jxW9Mfuj!#{DGAyM&bkuIjxsPD^PT*
z6-bL#pf44#an9RAKke}}>PO4MO{wWJ^|{dfn?iAfjiKzP!p6t0b=?nGXBhC|<e5H`
zI?nQ+Pu^6Q&nXM*`BBp8%m_)m{O<nAb2RHb%qa~nMNAz&(_6S&28=3FPPh<a3cSk&
zhAoN!PTNb@n;t#NR&2Wwa{>q6ueZ>tFJ3Rud_5>=El&D2Pk+;BsdVdQfL;cj0itH5
zyONy(-B>IB891Fk;U(Z86S7BvShs=R^ae9y@Mcs+qi0+qu*8Diz{*?b*P*B~d|ZFR
zDX@p5;-6WSdsmD@>12Ik-Cq%>ISq}9fWhFH=#e*yIU-JZTho5)s{0i)Pc@YdBL5LG
z(ft1lneJ33H8nL+?NXsdgqQ<0{*_AGr`h--0*vxMU+N&VN~h$Oq$Ncn%l-wca*adi
zw1jFE48J0<FCeI4Pf|=yTzOep1UhE(P2E{i>mZmw1F{UQAOZ_K22a7Aar5NZN$4J=
z`yo$%2&2%fBc*?1M{+txNmmW!Wjj<}`>UQ?Zu|&wTO<iM0&E1Otq$pk0v~ltHMOnH
z%wj4!TI0?l^bj!eA$n)=5XAS(O!mo$jBh$%NNKz5IQ>`m-=rua$LB!(m_vH6om7Id
z;4O2hoKDD9%AmtLREtrd>yntBE@_yjK_B=0`D)!kv_f`1zgnmAZ7s~I0OyovUfgPU
zo0wG+=7=x63^=vyp4VoxIO#w8Tnj1(VFG+zO)(x-FwpHXk}{(XI!jfNZxQ{ha?<p=
zQb%?p9?9+_COxm09jn1eK>sPn!Bg$aCwrC~)&{>3ar(B+;kRo`+IeU5h}eb=#G1?c
z)G2q@4_2Fn@fljCnpbPuzBjMDSW=~`#|{6_5X~j+LFig~H#+uhB;6{ahVvL)eUhGY
z+<W=2d+fx5gVTDlI6v*h-1&9%MRx%+M8qCuc2!e6{d*e<-?@sJ2ce+IOf*89IPouD
zrkE!4pO|o1@uihJ3M~e3JmF|4k-Hmk&ZO$4Wmacrryovr&QTWnS=)cK)6}k%lCymO
zY2Dt2CC6&?Cr2u%)Ce3TJO(?3u{mV4s-g^MoiU*Ti;zy3w4sH!v@Z=kK71h!?%S<(
zS<sFFd;S#7uK*hx-C)1NEnOd;Y?BSy^M=LGE>-V^T~Fw@{{B2nk%Q}eeFQ_>H_)y<
z@j^!wVtP|cORvhhWtJ)ELn$BwNtzHxJq~|YEvcO~$yw*VPVcOv=Sq%eHj|_2liE~6
zHR9lgqSXo=Y{n-QthiP03BOcVE7h}Rk*izBIytS=NGkg%N(sOsk-^689q316)SXl;
zLx;S9VQnz+7SJ#SMSRzbEos(!W<&<7<0H{^UOL!HF48}#nwf?*WJ(4D;k^C@;nunu
zFuoHRb-=*;zTLY$N$Uvwr|8FN=bhFF32BhFFiNa740C=|Xe@QXxTx1@51y$Ty)%M}
z4#mJYgcIsmeQtQrge~ti{MC*A!Zl_R(|!CGSEIu6ZTVNnA^XR_D0p>w7t>I(UEFe8
z>wIFtE_`tc8|P1U-)#8MujpI)Z}dm3!S5UVD=0h*)#bN`#l`K#PLtKpqsdNM5fr7R
zbgwMG!wUQ_@As~a^9AAg*v#>G0Ns%j6;(Jf?P1{AN(CdFrK$`!S^23Dgp)~?VLpU?
zd$FpNA0$u7NG$cs3>GVxe#!^i(|{~AP&kI4+-?IM^@YWm$rd~xt0p=)kRp+N`qLh$
ze{l$(juWavToW2X9ECV5^*7&B6-bo%q&wo2smeUf=_GY;2hy05GjVd0r^=D1W<Zrh
zDWtMHhw$l~P99O@Gqz#a4;H2!o34WS{K?o0P3x6c%$`3*I8z&8zcDj2qXNd&${Koz
zQ9Zg!%7^4API=ixe#Bt-qkBWim_h9o%>rIHzL-D`9Kpr!M*xPCy0e3Ux(AHdLhwY!
zOW=)+N`ilm3zH{_ktea`cMq!5PjkvN&Ht>jt@-@BTsaT(Gh77isQk8i`~nN)923y+
zFaH$Xf};lYfX>s3k6+NW5GlBM|LQI&R5IY_Ngsk3!yb5SaGnSR!48kBb_tay))yV-
z&pxSd>q$fLCI`tmoo(}3O`@nkqa)Wf0k*t7&aeCKEgx5a%T;52mOIKyh<pS}ii^2o
zAu5U(@NciM^J*DZ+FSQQU>0SINrQy5*g3s9kVIJs8NRK+w7fBf>aCjc7m;_5i;IJK
z!{-Q3X+6W7hMrt(CM#F3&avypA@|<yKDz_DiVe-<tJmEzlwo)9bfw{L%y661F%Why
zC<+8JG`Fr;s_;}r3kwUSGh@~TFPnyBW}|#kf`()jIF_@U_21YM`zdrE7MQvZVje6%
z)}cQtfG-r@7oL2xHf`Eu3>QXNLkVCfy+LMXnl%v)lz^PNqY55S9l(<cEKELh*`}TA
zDu-VOpZVr+@#Wp4)rqS2Re}XODq{Wj@cLQn=Z%OQNXZ+?hu{;{GFsiBP_E-mc&=`^
z-muc0ukr;Ag@M4(qfjmJeTHbD&L4i?&wI&9m6J=btP_OPo3AEn<B;~7p*oX0h%$g1
z@ft#JW5EeXAPsin$iMoi`#|jENURlHR)-xYyC?HVUt)5idr}bYxb|-(WhRG<nr6!k
zowv5N%?Au=deL&n-4rZ)FC4R0Ry(3}N3%j1&1lZaZz_{Ur#JV64kp7EYB)>CfeSNn
zH^7NvHz{%*FkWo=G!13f4XAe%uxSy!0;!^%M|Um0cpzPFm+dhMMb0okLRqM5nhEZB
zQJu7#)Yc9EXGu&c-@xzYfsgVSymPj9=Wu0_0}oWpw1dmhn0l0&stcP!pW`)<hv!35
zpmya9n1BhmW$&8klbKW}FBBQMlW2tOn*$GHX5(k$X7$0~m78wdH?<n>H3r|7228O7
zWLFbnXv`Hwvbs;fPlsG;*oPK^w!no~^8UTp(e&_=jd}GjNcz2<Lt9kW8DJveswcMT
zxzDG**S~mVW@j;FHtGdzGK{<D8cs{wmoK{$Ju5nthu(%lzKgEZ?c<Y~i=6N2o)UK)
z%3N+#a6`Zf-4sSf*vMT=OG|TBm)fB0OC>yfi%(#yBv(gux}!eQ7kJQC;mcx9*Z<!7
z88uM4*A`^dlPv^=L1mn&FYXf8n2wU_YJM0sDJ-=db5N7^tbB2G#_xOx;fuo}TMr5Q
z{1Uim_^D+_{gn)ny9_f~^fk9#@d7~G1-|OW;i5YhT6Y6#=CaP2A=lV3%7A~64*d{1
z7&O)Nk*^Ea5?<Awvv>JbSmOLCcnQ+_l*zVw^ZnvG%P1KK$f7Y1;PJ}YabwZHNujNl
z{9Ov&c;FQ37a$A07gkMI(4Z>N&_B0|Y8nX=L!<+`*0!#$>qMN~$~c#pq@vSi4=+6<
zP;1$vE2NkIjU8E8<9|TLQx0|<nA31CXu5_=PmxO3UEZ|(S-_jZc@)Y;EAb?V5U?us
zAUk0^zoCbh(anCl`>zhqDA3e*5Ft0!HKk@d5@AW&cVWrWUEiJ_&`v=&CT%daI}%O2
zsGs^Pv<3G`OG{@<va_?BVQpEndi4%0RZ8&*3HRA@Fi8?gBp{%u&;ivb>2qUAuS4@P
z-nL8Yy07m&<YvVP>Lhww>zj;=>(t2!1!El$IPg^Ng^pl&M-nOyg{9rcheh1;I;-U`
z{83Xb2vKesq27fHZwozJd$IAGxkq>2c1LZmpBx8#ExdWu0(k%cgzr$lGE~F}0TDJX
zyYFvH3e__^`>Xh9qR@C3*j##hN-qtKE^2BN#LEZhLf9vL&X4!ZolD6*s<dRL(|Q;a
zuEB0o-(wd&A7iEBbFgEFQFR}})Scuiff!DCq)TFYiJ%E3vR^7}BXGk&6zz&FH$#bv
zgo&(;B_F6N5n)DhY;Ujs>iKw|U*Gg~HM{xE?94kpC;k((Ad1|XT;At@RN|D!G+(&l
z+H~|OfftLo!q#O!_(kd@$^wD_jcniQDuNoES-Dhx>{c9!UgkHyDJIx+<mTeOd^F*)
z?{Vc6tT&WMM@w_Vh7F?dMhJuej(8mDo$1=}!f`U~$!_c5-G7R5H<{?8`3?tGAJrV3
zX{S8$K7`EsZ{)ew!Z#+yioG0G!e_;*r+zzDAE=)fLk!@Jdu4-3>dVdStgPNpQRQLE
zSr<WN4~jYHXBmU0#UfPx{T;KUoyBf<1kL}~Es?sMwF}$^nCM)L(4dE;4Lk3Hs3+fo
za~gcm%ijsu+f$3iPUEJ!VbAI$o3(8dxT&UextPcsgG%-h{Fw3p3x)%ia&5l+SJZcq
z4r_Vzd@h0Ve^Om6ZT-9ILdYZ;PENUF!+n?I!evX>V<FGB5@sc{Q~3}n8pD=Pe(MTu
zw2S{uD`jccHP>8dPs1R>g!xW5e4HdDCDo>i&+K6RZ^5XcyP-$9u0P(cA)+pa)sOw8
zgPR<;PXITJ#mB-)w9fr1TppZnc`q-EnLFk%`M5(|74-(bk#=Y`z{JDCAq*GC-jxeQ
z-n(@_Z*7vZz*ZefcRBMRJlxtKP28`pe(ww7%)$ipzB&AN0$b$@8yi?`L&s4@973R3
zUjD2b0ipYe;0>8e+7@+bHAkw51;Fu7PINA^*ra!(GFvg#I(SfNzko$0g;+$B9)uZi
zUpvu(Yz|f#hkLYGjiWH@UdSobaUo}BU-(>n_)o}Lxvu?$(GBtRx>#_N7QUN&VB8)K
zC&)#8wcrcTwSVBz<g?iMr$V;GqG6C}JioAzh=$c)8obkN@!7$lO8P#KA9uVL=m+vz
zYC)!iA4W&-4R#ob#QE7a0L{5^xStwc#|(W3`6}YmgfGlbO`l~KiZJCVvLmoH<z8Tx
zZ!UTa<shNTpu8<7O%>E;7z=Z+ocv^txTp4z%N%Ml=ydJlWnL<_nBHsiHc7*?TE7;*
zGjn|3^jrMg#}_j`X*&DKt+D?!lf$!!ijM2>e0FyoK6fFrW}Emmn|t#T=F!vVqCIbn
zJ&^>L!S`z2`xD7EB^4Ei`41Z#FDW>`Wed!cRssh@7QTMt#sat)c$^#j+a{mAIde*m
zvF+oVsU}ul;ieHb-z?uNMC%AS;Nph4hvY?9*T(d<Jdz9k%ixBzGwo}Zi>@}mR2tc5
z?;TcA@gj0q6t9<#GELfDa1;9<TOIReOoP)-WhEbh!j*!oS(}^A{Lli>U&*cT(u2LF
zyyA(Qgk9e|5M(Arz{5Z)6b**>MT(Ii-79hCi<tzA|2JZe-&-5pP|W^+-`enb4d0ek
z=#xSA6Qcn6(piKO^#;|A$s?QlW{Ct2IwPCM_>kFB_b(S(&&+DjAJY0~?qJ&WAKZaM
zG<2bm3Tb+F8@eT57RI&@Lsbh4Gl)8}rB9Pf7uFNhO<q4uM>p~KOU*&RQ8Ucw=QmmL
z=~nF9wr$&+v^oR@ll`4cL!saF4@wTcEK6IdXW|W6gAdRu1HCX(JDBzWHO8^(<wK>x
z6MG@cSt&hx-B^kT+qp|ro#xLz^&o@8x{6bYYcJ04=5amO;<92~B;n6R7#LkxnT#Ge
ztvlf&{N-~i#bD-TN9Gk*EBiOr20H&h2ycyTC~X<tgA2~Myz|U+Ia%31Juh-73r~DZ
z_kT+w=)Iku@}EcqgLTTv%2WlT6aCh$b3Q0dO))`II&&tM!M3S>1>_>@=wvf4p<~KN
zXbWKzW@jg5kO;sZ(ZCtYFwunTLK9F#YzN^uoQhGgi%tz+$wNY#%Rr?@SoxIs!lUQE
zQoMN|gHys>Y!mk^*517DBNQg^JD&I<2^IIR6cYJE*@2Uvd?=sSn`@T)OZbaZ^)XJ$
zc-tj}F#xkgJ_1`7C;nI7{Q|>d5%2_P-;j@@PMtwxT}wU(hy;8H4szt7qy?2>2Qll>
zY$}t0kEC-1T!L}M`m3``S2PI!r!lba{0VfzQ)6L&{25gGs|R7#kbTuJLB&QIheQdy
zd_j0RZ@5PVLF`0jLHr%UEzqizdRdI4qbO)dq4iNTcZnbG1oRtZ);K06M%7}$=!)2X
zV1*9ODp{`#dDas)fET=xC|vFjAj1uS-!QdRreX3<L>D;m8?c{QQt-W;--SAA=<Mdw
zfY9g4i+x>Pp?}9@6eMsY{|_7ahL6B9D^P91+kY(z4KNiV4?q09-aq<b0#^b>bl%J#
zC}kBX%}Ja6DP~A8TfDxu4pGiy^(^V$pksG|frdbHhurI-dD#jMzMpNAn?MeT+(;j)
zpF7+aJjwsPV)vsSmjb31*r0gCAX5{P1h13Hf?EaHy;c#Db1mr^<0RVbeL{k6{g;n@
znoU+@G!t%M=2WnmHSZA7NQ=^{%U^yGM_T%z$xP1-Z=86j2@x2aZg$q%x3CYtf1U>W
zP!R3D_&Qus`9Kv&z8L6Q4M$r~uG4<MUinyU3Li{&6q9a62iI3@aBqX%^J0{q7|Xqe
z*0O6(gUCSNzfd;5e!{YNaX!jM!vX1BezD}o9ey*X+H$`URbU2J#-L({WCS9<O~4JT
zlmAIoAXReVxPbwu$-~IXgq{=fmgbAqA=|`=Jp%6C!J=Ts;_0C*I>Y4S;`|GwzB>I@
zI<N3N_tmavX8-Xgl`enCuYZhr`V|wQz@`9E<11w7T+i;aO90;uY7I<u3TK&2A7;J9
z7jikpKf+0I-?s!4kwwhR3gAbGxDghYSsne^ap-$6GSXhogvGyyYSv~VfE*Y8NWEw}
zFI^C(NnUiZ7(!O+sKs2pe;Bm@1nlFN{k;G_^{RfoJIM!z$~LRXDi5<h;i;)LN7nwW
zZ!f>-4D>(0O5q$ShfIDkToIi2crUwmqhm!7+CrZIjU+|pA43j+R=}lDQk0V_laSVF
zXI~^8|9s)eF<g!4|72UieGK|sFw&72zsTxDl1-*SP<&vP^_Oaico>;AS-tR!=>ULz
zd1UU4X%CSRV|@5<6nvbbwr~pLHj<PqgZ0y1^4f?=GqbQz<`YX+Xc2J_`KuVOdK>G8
zii*zsyP3(fVulqGoz%(L-&tWOem8bXQ8y<F*4sVQ1&$)lq%NQH^-<s!$&*7~36DP5
zT%o;nzUQ~bHMK=dI(Ca>Hxa##5Q<caH{Jj3wCxGq()ApYULKkM?cl<X0fxW)$rJ+}
z07eRGp6PD*she|wzd>gEJ8WPqQns(|>o1raa8Repov9bg*(%)0<R)K!?we2f=P>@w
z8~<$hX1vPf@nXt8ob;1?zsDJ83i%;Q{Jd{xb<-Vm_s8h)X~gLGz!n;wW$q+BoqfOJ
z!X_R_Nq}I`V=4%Z;L*76rLu|hhoG5|O$M_6P{yS`d!|kpMf5|Sq7OOT`K(CIZ0>&{
zep5Hw<#OM&-s(j*Th8BVwL_kaj&EAiN$5R<@=rzj87Z7L)IDGLgkNUyOe$ZV*LW5p
zb28vaN-@mDp)Pv}qjUVD;q8BzBYaSnU|u2E4@0UbK*dNni)f_w=C73xis@)aG9`q)
z5esC-_Pm9>KOC~Q7pMn+leJmAIYAN<{-R?4n%Gmo9Xg*wDuNK#_ctr<<MC2Srk=J^
zFIQe_W7+n#pK6fa$C+=iE3fkHv%%~-84<lDaWdPkn}itzk9QtcL#!Ls_JUBGJ$6#t
z5;mHHAH72+Yq3LOW`fMw#>L0Gx#nWFU*OntZ4xtq;ZnEC+Gqj2vFk|~l_%t33i2g;
zA6cF=S2}Taw5sj~3Auz^c{Q#RO!2RTHgBEhGHISrfAEvv8QAQy9g+EsJ*F%~B5pqd
zQRjC6gIT^3o6dlZKSnST{FMs*e`i6#EJ8((%4lQQ(9)Q<7);aGuk*IqE(aV-HYqJF
zEx8ICA`V})c0Ya9VoTwTWTv>caVLmoFPs8-_@HI8T?U{3_k~_0=c<?C*KRyPKG-9{
zOYM4IL#ZIqeD-}?H?+ijKl8^8met$lPy!f!>#qWyXiSwzOEof0itgNwQxGx#-bpn~
zFYfr;N`JrX#v4pB8etRdg(YJyW*Tw?JiqJLNs_zISGbDRarEk0_iX&Qc^bt-2cw4=
zrZg&(c0uRKiS{2|AgluaE>-Wi8E^kz^iEYGEySnXB35n=wtRDf*toz^copPz@VGL<
zs2I6se@W)emzEwGokJ0pT%y6ed(7fW+f~6WJco3ucJVZ?rK+_Kq5sa5aO&sGTqx*}
zzpUdM-mfz^x3ts%r?d}tCuYd+X@BK1R~}SDOBr0U{R*1Yl43A9e97-){i=NB?{jt7
zatyDm_^UL_srdc7cXv^ye>aQRmbRDY<B?I`eSzYeyDpKMLq&#Lv=O@bLup5{W9%C^
zWP=L(sW-^)?gbBm<pxdNU)QQ1sYnqqrurwyb1~ibvT_mL8NUFlK4rzhoRWNM>Eh`&
z{mloP{0r*9<v)17zHf%MjHbsw9-%6%*E>wjVxf~<o!Q<sHD*PT=ViLGm60^%u-y76
z@y*%}fQ|p>G!EQLe`QKly+u*<5i9f50G881<3l36QzCLoX8!9#d#2>p6s6(u2@igB
z;XznF(ChuAV#J*tpX&YVXr^ZPezJ}~*vEhUr@~zDtD&Yhp%M2ylKd~2$z3dMODiTV
zyK6IpcuObFJ5JxZv_wtoqijg-&MhIFbE0K6p195qYg&0k^^|IchJH`9o#yt%s#5$>
zuR?oYT?qX|GvndYh^QEW$AbJ%?{W^Q)6wznDUmI@{BB@k{H4ho312Z~(c9fENvF3q
ze}#+4xRJ@1H@>utjN3O(bUMo~U$Coj!DxJfu-;)XbQp-Rc6w`)3Ay&&)2T>)`EXRM
z$tL1sY3eN~_lWl+sHaR~huYY??QJT%EIfmIsh+{{JELGo7*U+TIGpM52)3tRAs;sU
z@c1A}MS*X~6G($0<&M;<NF7Iv*^ELS7u_W5tyrFX3l_vTx9{i-_Mv)x#VBhbv&I8H
zVXp;{yh5z%_!rMTmej_BAeL(5v{B(bIp%|o>;ycc@tAp3Yz6YyjZ;x!kZ=HwzA_l;
zz+@`F10G3AH`l|khBiR_1UH5+uG?eQ44z(cNaP{bnf{U^AA`3TH#axGIx3cFBzo}O
z-K`%W6tA=8gwL!qZ3rD`6Q7uAjH>SY^!2?e^v=w~WYJoR0p`hwHxDr2^q7vJmG8%y
zDxtIa4F4$2XD0K|B+zN@s!3)6b8xl7exlv3^&J<;W(t(h`|iUCb2h4~?Jx`?X37{U
zH?G~bK-w7&N(N}^4q?!EpT+7ufw+Y=<Bl+*dnF8mQ<xmoSZ;zt+ss#7_h^oFHMg`F
z!XZK`@7nz%Hn|t{+NAZ!<psU`V^C7YAK|_A_1(4we0l!q2SaK}49Pt-^z{4%`1$4F
z>z)$R@n-y(HoWbKDIf{0!0}U@&~m(Y_bvs26=Fg2&;ZGV+M9-guIy_}GBGS$<__66
zP0Q_5cj_cJ>5Z=Kdl(gSA?wgf67mAiQ%%S^jh(O6jviibK&*Z%cphb6r40$rz&Q2_
zWNHBW+@u$5^WVQf;dJ<*9boC1b5D=h+KRzqcMj)}^W!H4k|*Do!@w9u2_*3axM8N7
zn_Ir<V)vQQedL=ztBg+ZbaUGZM}1i2&rGf%;phAMziQmaH4Bp?a*-jG1|`E1#K6!d
z3Mq#SPAr-C^8#(~R$YFJ_}-dvpcZ|J>FKMG%ecDsYQQK7;;071z;JZH&)Fs36NUn>
zkOy{o)0f0;OG4Y=WJaG{6H`_t;j;@ivBW6pS>5VyS?3(bt_NPbb^)><Vw8kg2RU0?
zTV7j4&RToWhOiK4-B*TKixZK)!N|naAX;<i$)}j)FKQfuhN6Kacmul(1`_Lx5BTOW
z->CZ(Byo}l7ppFZobT=1SHYa#OGsFZmh^Uc`AeeRB+Fq_cgjWFj$~qr!)72}W+Gon
zMI{Fn1EQc1*W?V(A%D?fZDI_$zF1<A2OgVDQRQnWIuovO&gb@Pe_I+0Vg61P6@T0!
zv3<J~6~pw?9f)lg?2Q?G^H$=dKSe3wF9vsM#;Ed#DYlj>Efo{ZFZ#r~fwM}UTk4~_
zMmQMWX^D(O3S!vu@bAVL9?yRY?gm4WD?qLJ9=>Cr9WLcK+7SB&*H<2f0<w;*zk-Z6
z_!<ozy}YN`eA0u5nnCk1tUR%2lk;xFbK^Bj%Iw$qWFN7iPu3IB8@XF9ZXRDNKucVp
zUx=A*IL0PAqR+-d4XTlYl{*7D!+0nJiyM`7ow`r{-_>>LHuuQuA|;DlXJG@Q>1Hq^
zCh=PAnK4K^+K#lNTx!}8uF%>e_1>x!_|knq3`X>R^DyFfhzGNn(ws?mm=}^q+dP=T
zPbC4lDyRf7BprkiB6*yC>HKak)s!7Q?%7In&KZ3FfdD&`tPI=tr>pLI?JVr{=8aNg
zQ`2_hc1RvvhZ$~9wy$y=^3~!VFt<3E!h7?HqdYYoiuy5AwoSdol-=P?Rg7(h!K@wj
zl}xZ%3^iE~8+PhDGshFJ!wt{Cp-lb#`qbZXS^f5RmnpmWD^$DqS5tQJ+o^W(2dC`f
zLy28{sPL3sd@<E7e#Vqt{1F2NMmOtK+<6AVa!GV@a_@#i0zv~`8W>D^2$LANlNKdr
z)gC@ETh_lj^vQLsxSb|)RqtSkZ@F0(TIH~d&lUb|7tbaNS56vFBjI)H)|Kqzf{h|O
z@o{E0p?-(FS|kIHZUr?3fLWP*3Kv>(w{l;>mx0^Ji5dyCo$6)%)??}~Yl;8qpMT*M
z67rh*p}@t~v5KhS>9u7GpXi&zlD`<1{J-|A26kDzI3BmB94Y^`w<PtqN{BP4<P*#U
zA)}WO3zA+-RhKQ?>SmG&nK~=_Sr;oNN3{!si6e?uVGwREl7rq_{bC)A4d21vf#kQq
zRM^rw&@7^6BVIK0NRG3&!fK>nxf4Hege!cLoFpj}=))g}n?aP|I%co^9Kr@$?o|*o
zf)j-jEo7G<8C5{J#AWi$9qHt}{@xw#UVc1y#okNl+aikV=5qDsXrxcTeC8|qH;3>P
z!Ba2fW+4710~DBualW7Y^_uDed&79G6M*u#f%!^z-x5DRS1^%+K#-$*1AQ_Y82-3Z
zvag<+<7RDy%J#7)|4>!kM6>8Ph9zJbebMUFS0pWOgjp_efGoVdX*4CO_150SixwS(
zHzT~^*<mE|`RT3LUbc=+{_6YpUqbu|7i_O_rsSY0EE;dCe72hSZ1{79Mn*;o=G{&2
zC7~N)LCD<@KJtze=Dz#NrCLT{TtbI!bo<$}QqUV+M&l=$|2d|IV4XPE<k=ETVr?FD
z!Trz6E!Xm4M%lvQjtZ=4-be&WR6;V5A8EkZ*I@l3dPaB^k-pDL35iPc%EHND5yMMT
zP{gXCMu(B(@xTWOQj9(%q3*|IP5MNCEE$Fm9({VUWjBub0a%v<Ul74bhP_FGyNx}M
z?@qmQ{re)LqI|L9tH7o|-0aTD+lT_*O@@t0C4l!dg29MjK@Bbs5@A2J>^9oS*s+Bk
zK`xj5&o%KxZiKvL*TUh3Sbg_7NQrSq5oQ2kBrL>NJHQCU5KHcn^8AzUh%>2ySkU#}
zTLrcgju^q}0cXi2ATW=3a-SaPY>S^ikw5((cldK(%whWtBJ4c6pVI(&a*K+nY6tpr
z{Tj9VG<0XWXI&uX_izY(to2Co#YD42#S3^?lO!X=g_4XQOxJ(L=9zB=goVSqSeMw^
z#kB$72)2^es^>x^lLK0dduU4g#4H}p=rd}h1}U2R?r+F;-gEE#ir&?G()Hj+M8u|$
z6wLzuVU=-^I+oHSZ|ndIZWzp6z!ps+s)jHZHl4>A&bWXS!huSUtGbZPrP>@Ruz<q9
z*uB7a&s&pcMXT?f?kjSfU?K<-X@(0QO9j2Xgr=Y&AS|9l?A9;QFIjjTUyi`yxft^*
zhBxDPmr%T--r!q(*@y=X-ZjTa3Rh3fsk+Y)O}{daO}&I6yyaff0|8&I84A49p7fCa
z`F&vzlapMJ)IiJ?EkIP*Y-oMEdpH9Ty@V7kX0-P+cPu{__V5jy3hH5$LUBSgki5S?
z6<y3{JnuTBJPQs3(#;Dvq*y^1Kg{2?bLUGax`_=obg$fybeBsV25FE#Kn@w+Vd<kg
z4*T}v^<Wv#<Tz3q{1ppGJvmgw055BUNibvEe5~#4qOA1LIZZgB0<A~uyq|SV5+po`
zex2#BV?_(|ue%T5eD|nE24R2V<3Wu(aM~Oecm-afvo3u(mORZQYd+lOXOEr4IuIb^
zxEX_32G6T{Fy8(ND(Y-x-Gx0&`S#5^S~qzya3q{mc?AXcZz!rnNAfXd@nE=h2r3{r
zC&xV;2-Sz(BK1(Ip4JXSTqW?d<}UF!8FL8bc}yFzO06`uqoczZHt#UE=@zksdcX?E
zAFRa96j)(xUcRznY!c&<OYnLqFY+)jrPDmTRtU<S=>1W>NnmQTy_O3hYFO0ns{tWx
ziq1W*JZklJLxloz>Eq1G6=5^ROZaK522pD)(FGSh{%H%ssS#;RVxAx3Vy`oKmWShC
ziRAN`v=Or>l}Gjb`vxT6S*H%CPmapG0LisNcb-+|?{_Y)gr)2qKZ`5&&1YHtb#0e8
zK*FY=;d1No?|VJj7sF_%#l|1@)@`u2W^9{9HfCP`;9xHVbjT+yJ@~nM^d^7+^J%gx
zhHAn*8kGdM?mR62W+7zT+|IW{R1?{7Z4aH5aqA$acj~7#Bp!m<<y!zf2Mz}aZJVsD
zEEVyDEu+4c2Z!%g$`F*#Lz_JD4hOS?Z@+78IOsNZF#Y}F7Q5kHv$U<0fPY0GsUlwe
z=SIG{S=;2&daeGgc<UxdK$}{-MCwHS3}S0-T6&+F`A4^oY}Tq<RPyfD9NTg5AQ!Zr
zJ-AQqA@7cLoe4eBjmssO;f<3rx$Z4Zjh{Mutn`-@G`OPQn5@HMQ;fA6ks{Nu^6z+l
ztcF`xp!a-^?@u_F{g$<j4kyjq-=F2{{E)>eqU1!?h#MiNh7J)@hj0gC4fBbiBe%sI
z>Y05RM$D;Sk@yQ$<|$<NndE=)=1<|D<0Kn_*@YSgq$*A@$`v&#7>sx!LjH2dlllS?
z64W1A0ZRgKyHk^aB4&yrp|I_Pf$-OyJCRxBEM~ihA_4Zd)ekEM_3>vyVf+?&wCYSD
zKDnhCK(N-)LX7cjQu9^U8%}yqgJ!6}%kDBc`l-kpwX({%D#5ZPKePa*Oi0*zm!4`1
z`w#z$Sr@rh_9H%0&=H=taK!HYz(K&R&->%lO(wwz{X6s&*bSalA`pCegq{#m2E~Gu
z?b#oGNb)CHfLMSIVZ*UQtay;lW=5}V%x^!)te~0)>jcFuMQF&<c{;oL|5fELeFLG%
z(+>N-0@lH57?;<?)FUqU7fj}@x(JuW3f-ACnrUYx$nvkrzqs1ER2hGLQE+zf;9bv(
zFO!mlBSlo<rOKo7@b4=)4fW<WL@G!%M<VXPVExkT6<9ryT8DJfg^1^p!@j$=@2`-e
zJp2~+Q_jtsIabJfWMFT&ZVxZvS6H`648w_r?9WgvJ#6o`JTuY0lYB`dnE>(_LnS`*
zCFSp2Ffc*X*u+zphJs5n2V46def{Ofb#oqwd<o8ntIj-9X<}LO_VsNL1<R8<gv^VS
z!aj{0oNM9_&I$u^(R0xG1Z+Ab2sx7X_3JLMLgDKJk3fPo5W#8y01|*X^j(3Vd$U0#
zo<KTo{Q}3Ki@O3ble7wp|0V1&<k$W@TCRHzRIcDh`JFNzwc&r}31STYJDz}8n1iap
z5G@BXj5EyQll;yh-<?1+oK*zFN_sArnNI;sm<=N|m)Eb!mvRr4r}*h_sQE{$?xdeq
zYdm7(O4~O5k2}Qq-HuNv+cWwKnOyYHJFQslZgTjrAud<S1(i9=lB3t<q`(jnQ~DgB
zfHPqZ<Q)(Y!Eg9P6B!jzDPloy^UeQh?+^9UMTW(*N)LRE#5UYES(on_0%4&`9|&lP
zotQ{yiM_)tp(TCZd-Gq`>voqjq6%-j!T1cJB1d)u(kqB}*%OGdn+gM-Atm$i`zM${
zPyCY9aU6MrcJ!l4xLj+FX|#9UGQz}-0S*<e?OC8`eGqT_G^Qah0v0I>%E~qeVxyz!
zDSHkah^%g-e_b~)R*o*YtLwMRv?0rQF8VxyjHeo~6qx5k;ISu~$18MC@h$L2E;FJf
zwqx0c=B)c^be<7if#q~uS4?OY3NElhY-%<M|I^lX$JiNiPqqd6!~Ys8BqY;t^YPJQ
z5J#{{dbINy3aA`nY>)JH<B@;Zw?~G_S4A?@eCE3qN^IN;FCCCSG@p8QynO&Q8=RuU
zVFA=JhK-rTL=%M}dXBG+M0X;6ga5$O*Q>+;?+(RlU9b3Z;-o{D<(*BIeQ3e(f}^?)
z>m)`-K1?G4i;!4&dJZW~;!?z)48!mx;>Yi@UX>>q)CV(X`9IaS`#jUl-QAb`E*y15
zi~hD#|F|K1G7ahfQqR<Jjdg3*Z8<f|rdFv;DNgeJEm`+*r@t)ET=zZ+BT5R7lGU|b
z)}uRVxI-1DO5pu6J;!$bB$w97CrvBn!~pjvc3FX0{@->*&0d*WKU*Ek1~VU<C><x@
z8SH+nhG{IRFBf{lllHTt2m-grBlVzc>r_>aeF>%b#vgQpPyoZ}sT~SefD@u(zyBa2
z+)%dl@`~?IH*-U3vUgyhTS`ibf(A7U&y}~4KD19iwt0b_`mWbhPWCUKAN3r$u3W9J
zVC$o91<Su<5Na9_4!ki3SGe|3wOnd`1Ij9==;-Lhfy|=V_sE0pE*#aj^SBW3KpuOK
zxb5V^rb>NW*V6j+#5n?dd`8s33!ILy8`plmgqiaVZ)R{J+`4WGK&XUnC69QDmeQkN
zqyo0B&Wfc7pZ~e}^|dy1^IZF#W8k$W+dO$hFtX(tn3$M^MU@=+acCFH7GB%x^!<aX
z?$J^dokR9(@=$xUYSl%`kHg-lrS<DabP=m~e*P%bN$b$BAN8W=AG;ktHTYkM9CCQS
z&i8HtAjpHtEs!1Ndr&bqqM{PVvT}0B%8eM3J@IKDoAA_JYA_eG2zTh%I81+8#g4L)
z+@yUS^I3)O2Aac$p{%#()SL|?XSn1h9_yRC>oqi4q!$zv6o>C(ffJ9I**QAtgp+@P
zAIuw&jO!tPuQv$`4^o4G3a25&#uX%^u|$hw&1APlEk;$GG1s`qKJ|}s+o7W|B_>vq
zW($I|fY6k9m`Ih16?9D>l&2(#jT_r5mg-CtQOouXVoA_B(-rS}^=g(A&Gg4$!kxO1
zwAYC2knj6Gcj)3rX=xk)BCkMalh|A15wsbFPkqq=Gs}hZft7PQrHSc-!DhF3P!Zos
zRjw0@jVu@rTtx0JC%}JyQd;{A%HKJ3WBr(vUPZP|w)9LqN`wl*Az?Ch28n_~)D(%$
zQwkD$YrHJ2T^>g@@3P0N#CVKU5a?~zJ0Jx1`Z9m(b(~cP4Sr;TkYp@~r;8ITv?*Iq
znqt<1a<6y}b{mp31x_@7q_C^GJ03Aoz`L-x{L~j8%bF<E5xe_u+vS=jB;rmd0ey!K
zk#<FKtiB99;@7t(JqQo~4DwXac+*gnwqaYmqde13;w^w-gjQ#&1lY50UwGc9YYwLU
zPGK6SulgINFGB*5!}w_g-YvjX)K;v%Pd%~@ZN<!J@5iHJYhy1e&%v+gT)H`;U6FdH
zuwx|3_n(+_)%Q`+(Q;5csiF-6-E79O=d*QB<qT9awQsR8=T99dI`WF-w0!T~jC{I<
zv_{oFQ)C{1>6WZMk;5*yjh}{uGGmXmUl{qZ@qR=^uHnt+GZY0{Y{tv^fHVPZV2aKM
z`*~N?oBsB|Z&QKsmUU^WHY&=>{gv~tS_t7@5#n*yBdK<D=^#BqQ&Os%XoR3%poRjP
zn?JE`Qv?3s?Nj3MEwE%n$Q7o*NOUa5cP$f6k3^{hi9pOr!mGl<Rx-1&tnDLJ3Q3p7
z=8sRA35bI00{D+hNN53s*68Y7Ehw@aidu#(PXqbK%BU|^?~mF?NgQJ|r5%k<Xx*S!
zJ23hmx$z&n-d}k3-kRr&TI18vDvJBt9%p>#t%)!E@f408jn+BWUw-IW<<fnFz?uc|
z6?$t?*jjydVIjj}`^q0Z`Swxf-Y=$nY<@_oroJO}e+v`&C-xhFUw+a(Q*Meuw+vvo
zKqXGG1u<Rr5c?c?lDZ_x&Hu3$qp+E4cX^Nd%T?ng?X0$`hyG-(`{nVpY3Q)M2JveU
zueE|22@0C?@j=-k{U19T-bV5#f&R+*-8^5}sWose`Ch+oXwn9<t<%5%z^n}y`DX<r
zC6b30H;*$7N;z(9wIv8_A`dzVFufW=!<oVVJ=3eaRMbqERrUaj*))OLJMZU8r>eZF
zT+m+@qm|j<BiWf55`Mq#$=ghKk&r!x!M%_8TJ#K8ZrmLbQsEi9>a<<3T<G%l5Z(Ao
zIrlz2UT|4nc-+&1gTsT?W$CD&rLy#(RW3q3@$mVVOFTZx{}faDKfKspIVRbQFF*D8
z2L!lc;i^YL=4Djw8mfq<Bk^tj)>Xx_KWY&OfJ|Jnq}7ITS$qEOu2f^uKsaOVAWQUz
z<WsSAU7)?rp`rRVev|5o09%_lL(VS+k-94L^o?KSB;l4pG2L4FU;){LAVV4vh<!5d
ztaTsrcE};d9>$3^5=u_xHL)QfG?;Q52;j&cluvX?x++_<SnF7o!S>8}qqu}qkNfK-
znl(NregTHg1aIXIq?&o?3Fn3li(uuHg(3CKC+;y}v^NuzC|`#w9`0M4S5#!FHhj9c
zOngtDnb}z|eB2Nr4GilMT9!@5q1rHLVxqpGp$TN&U{WfqFg1~5#%`UOS+gLsCdRYP
zti37a*2n&`ulx4jwS(ibDyXardPVv&JsLaIR%=xeUva^415D#6udzgGBmAv+BLr6O
zt(t4I%;l-T&3h@?@45U6hP7o%Dy|j3tF4`(9eYG3$2m&Hr6Z{$q3T#)(osdlD`RNr
zZY_V2*L{!Y5nJfSC)+TViv354jG$7C(8E<;qc0TN!zq`JPeI&RDMlbrd%;|)V-FxU
zq{M;(!IkM0ZxAW=M@!EoW89Qjq#_nClHv{KeUPIH4o<!}<znrP_v4*~KiFDy(#qVT
z4S|CFBEH)^IHelnWv6Yy?z|FX@iYbMr7F|PeahV4CoBbbMnQj*jfS&A=cKZ4zIv5q
zP}0>sf-DLVRlH@PTw7^R$+j}MndcojVreORn?X{posB7G^CHiV7~)4t$p!N#NW8{j
z9zxuy$Y2$Pc#B_nc+y>Q4*OBDAd2^g4<C50$FdaLF@)-G*svMA@U$&3$oM4EU1gcR
zh(hv-yevjOez_xkW`+||osyK&;c*&{OUx>7m47QY7kz?mydQ()CcFW9F54-&WW46I
zwEno9GW*WkM~+5eFTPTI#1GaTikKtBO1dAA2F6%Vi;WZFoF7Ykq<$8+z4$DJQ=bJw
z1nb3xCzTRM_KL?Ov+b-$X{~!h+NRx);{E#d>$~mMW#>HeFXzXZ*(7K|M<7_rZfNDj
zA$^5w+a+>k14Ha-#w=h12x;))(hN*Y7jgXX(Y`|x3Mrq)2kVd^nSr!Psf6KyD$7h{
z1A$ZI=tIY6?!}i*2u55^d5jHfta)SlRx~v}CRn)RVsAj8{h(&ivF8nu5AMi<G(hM0
zBG!2FMjGw+Y|~vSoPvUdhFaLl<X*Q7owG!rVI~Dst8HK!M10j&1p)*Y1?^Y8N}Hey
z{3n9pah#IH@W_7!)5=R|02`;pb{jwi^$8Pbx1ZLME<TvTcV9eM@KNoCK3}Gxpr7)v
zqOV+q_w)?Omhy^<1|;}h!Uuvgy3TtDeEUyt)`8*yQ_du}3lVw*>EQ}z$Nt*!WPD5A
zMyoNIcfIFp)r)xo#HN+$t{WQpasof+u=_*<M^-M}-$hb=^b|sl<3`_3`d;X9eFFdV
zEir*ow)_;y69v1>hGP;AdfSTZKg6Wz;jq_-M{?&^#IIzip1^2bJ^BXQ5t?9tdblmz
z{}4JLG|%hay>o)Df)mB9*XEH3QRxrnnaDoifWwwNI1Q2&38f2zZE}rqC26R`cD1!6
zd@fcEoUXFRSuv}E4R7`(nS)$nU?j0r#+4sFXi~n8I2_xroW~QCm{g(t4(Qxl``8Oy
zkU*&^f{t*?qdRVUbO_Sm?Q*Y=Jufi!*S*i*Fm`IV$$uAa{tsQYV8t2HX2&F&ps~s=
z@!}4FPp@9df^)uh>lQx{(ga4>>}qCF?D0u-28>~1rstnre`ReLyim&>A}w}Y(Nn%!
z1j=HDlgH8xiniUgk4^`rB_tc>%%|aOxpmUB;2VZu_H~R_nTWe2>#|$av#x0#+Xw{h
z)l{v27{ZI_jbLz}RCPV<=v*s!zCPY@(gDv5c1&yUKiki=!Dgk+&653Qh4$Rs#JU$M
zi?*^zUm`VkC4o3#+INB|m)?AvL+oe(g^0c(YQ#+ZMjFn{%L@jzCbx_iYmZm^&;52s
zZJUMmrBKINrSfL6OU}l>#c7d#uMG>-v4Q95{Q(oOe6@>?ZBFb1>pT)|_;_3PZI`t?
zFZFiKdX^68Wre_1JAOzWH%TB4q)3to4v!^%p4BuCf;+rS0N*I;415039GQt?V{P*8
zn%NQqS1k&*l(N6F@ubxVrmL{=--wUFM6p5u#q518Jn3FH<E&h3U)N3?OYRbDa&Ar=
zLow2b1?70)VE)?JIh37>ir1irQpATn3o^6>eHI!{IJ#m($9|$u$;BlZ9j%St9in&{
zKXnQiv}|mIw-7I-5p7KTR$1BJCMO+8LWy$`asucmZMCV%Piw)e%ydG8uiV6Vx8p7t
zMPhhhQg!!A5+}K@%m1ToSZjIN5YDs$<Q^p|=+Fp4a}*V={d_n2J?D;L^@qTM>R5w{
zV5U<w(vloH*pB|#)|v`sCeIFolOmaG6G)UeeQU-!-4CcF3m_07+X>V*ytn`bb9mxM
zs{?#(a10c0XJ==pj+vz@XR#%iDr!ecx403PY<y5OlLWa#S1y6cf-PSk;DTbHr}N8W
z&(|7rNLuIKn=l(OyxTM_^+DO33YSBVEy4zFzSIcn|5Bq(0&7Ur+-wfJEl$t2abl}D
zOXgg0>*kUGDgKVMw3`i{hIZ9!V^g^Cq13dr9)4RgXeclIYLTx&?5c~Eb=cu{Iz3y!
zIE*tGhF%W(95b9qIl*DWAW^kECUroIhPn+F42OwST!L7}AM<P^4X+xwW!jcPaOlP_
zKzFSH4RyBH4Ha-c#6_#ndp=5gFtJeNbGy1v;ukBj+Rbz#$#mGNvv{1r;geH*TGs*V
z8Hce%c0DNTGUE}*C}%j43wIHt4{7&OD&Cv{ipm$I7~y`%PeDp5Ed^tm69^InG@rHw
zL*ZXe)yZF7x{A^`Ii5b*BAN;xAWAM-6U@@fKF!p$p1b`l*3ZUA&ugz?``M+W<WX`M
zq;(3%`mxmKPR|TW;d-z--DZA5?dLC-KOfV`Ng<nV;C>w)e#&dJ_|yC?6Q|*7EZ8Km
zyS^~z!j`3Hp2kE)F;NgEoElT{!J$6NGi<l|N5w7)mBvnXXGpr-UmAErnj;Uv0{t?v
zH%*x;j6TRRP;}B~+A%xF_v;-*-+7HhwRxStL2lp`IxJUSCir|bpQUfnd{&pF0vnHD
zqV>L#(3&+1DTl;@q~BY1o_GKwa;Il2ZY*7^BSJf%RkBQfbQ2OjX*e<Xe@C<nw+#!0
zBm#O#qSLmPwgGt-;i%ohQ?hlINqW^{b=05X1of7es0PFWYRzzGy13bY$EXC4&N;=E
zV->pG-0)WQ!&<atgPC8>^wZN!dq*R7uD#r<-1+X^J5F>e&?DwXRR*;M(E@W6R2>!b
zdde0&l(@i=*uGN^TXt_EbfS}fIzI`Em`fSPCOOkd3V9FQy&e8rX4A9YjoxIKO&?D7
z2oT8$xll8ZOgQ6YPnFMS#}Q6LR^XR&AGa=UA3`%TAMM<gur_BV0xKh23mjF}lk1jV
zEqQVB@CyWENbi=fZU1$9is6n>zYlMM87V_HDVs4(UN8W2?C4uMWoDguNibq+5N}P<
zGaPk`mAodYY#L=i)?j_d@pzn>rbAYM0vyI*Ln|7l?QQHlZbczltbg%c;R=aXI(cka
z&R6}xwl5vCPgaxL$Ow+O#NkN-Aydm1%^o~Q*JL&EenGQV$=0_Mk}*xyj)yWd*kcmw
z>6#|Z-$(ao#^A;(>|U^=zDcJDiqP1c3lLz;WY3(!x-aJD*i;aob1*qp2=z%$=`J^$
z`d)^VJKvnB5L~e$)6m}Xz_W%^rPT|bda9heC8K-*3Bi=ZIoE-m2*umGvq+-l*1eTZ
zo(EYSC;Eb~+eAHl*a+Kwe}K898PXCG2cW!gv@gr4&_{iab#iG6#r@dZCChWR=OXo`
z^~u}&cXER|F7WStRTFbH6{j}l(IfEa2)L6tC@$18(PF86{{AK+|EJ{6WYJ+LJAL(K
zgU{)y6FlE@flMrx5-)qekKQwdR%7@c3&JP9jNWbDb}f7N;A%FOD_2cd#8=R#eS9-6
zc<gab$d(*-pJ#3t`@V`h=G--K?x+X0$TJwIII^D3$*Hd2HriY)C>$N0X}8#4b)@MT
z#>|`E729x;W6<z?&9PGl5?0+Zd{zEn%oG?Jd)6+1$1qS>9B!#v$_~pnm^PW5WkL!I
z?I%ax8|!j3+b~j}s5FVOuNlYBNgV~e1w2*2baN9BCJTj3-7zvY?aBpdb`3j^X-!gm
zg~}z81&U8Xe1qCPJb{4(?)|lWRq^Jlw|r8$KJEKiRCe=f5X``u(rJ@sSnU9cS}LKk
zY;(B|i&4nJFShdrWZ#V296T6Oa2isQdz8bDPVensG>adYY*TSun9(;nH)QjHP5D&7
z@bXrlT;b+#FF`HkIgMUi$hO>R)=1C>^BcRyX>!5U_?dccnmJL+boKTZ6>&l4Wu@}-
z&&Mp0tuZn4+QiKb;&I`pP6px?y{Fc$Vcsx`N<Yz?qnYi;^$8k4*K*nxh?GJe&WCmV
zlQC?d8hV)Ba~CXdssH%yT+#{}oAhN!ypl=guUd$;y;c2l+Lw<{3@=-EecT7lF4H%!
z;$+KozECl)YRm;vV$v%=TiWLgPFAO@d>*PFhiF#kzRDe`0~B8UF<ltzxw=N{rD{=f
zooShXw3e*n`Q(5imyYs8lb@si#PZTEW%W8?awXy%8V==wPE0L4b@ourBkhe|7Gm)#
z8!BcVh;UBUy_m{y(sBH~w&jcH=jiCs6mHhle3X4F8n`?ha{c_QD<Aupy63Fu2k62%
zgkQX069DYmSr@mWUJF}kg}4vI1n^K&=C4}BSc$@%;vE;azA5H<L!tA@k{-AZ#^*vm
zYteZ1x%s7L#X03{r`YOFj$ujlGbMBV`4KTO122Ro<hIGSc4>(QjHkASy3cSTX=eFx
zxJqe{4{TkR*8Y`v5aNox*)g_vbdS!mB$ag72F*NvPBYXs7ZMGQZ)f;E7Ew=Z$`>t+
zc?P^Sd4X4wav0~-6cFT!hUf{NQi_-6v#+5v-q1eQlbmv~p}4S6MQ0R!{_Cq9U!<#&
zx%-StA%;!MS;?1qboN)a6}Rr(5u`MdDNBgvA|oQaS@i6-Iz3alU}cAWVW#*dj<ZmH
z5UCUy(LC_X#D3*Xr8(LO_h0Aqh@ZUpk`ufAbDaJikV_*XR*uAx5FUWyowM8#OaPRb
z=1R$88@M_FW1+$%W`qP%4TssmVd!B8`<pya-%4p11Z`@wVbQhr$yq(FG-pK=pT(j#
z5=A|G3s6S5=Eg4AV&5M50K_n$9z#a|*7ddGmnzQzRU$VSeNVdM11<C6yxNF!wZG7(
zaI~3~r$x%I<jJJg&N<7f2m(gQx%XuCiL<l2AolY^^Z+p^x9)ha%$F%~f=+%VldNOK
zwU?dU;6T=9R6c;KcGq)IetyelovN|%FOmd;S+ld`_Nm%Pr3G2>A*0qgS3R7aXONj&
z0&eheqpRJH#W)KuYza7ibyk=$g+d>;Q*P_tZ;{7!VQ3k@3$*AhsJX0gL&#TD*pDh}
z$%HODrI?a3zKVw@A4`Pvjlt|=&(DmrFaFfII=pb3mRunRKU;cN$pe+;{`SCF8VTK-
zc}9s?@qm7d5JND=pjs^DR;^r_i{f|h|Lg49!=YaD`0t#~kz1q`U2w=LnqsmkPZ`oh
zp+eMYMKdNTNu;dga%hPZlBPoKQP>(`QW29|8%+(9h~mf@jzU8k<Qm$~JJmk>>^}R)
zS^weTnfcB8elMTP_xrCR*1WG`W|(*p#6_nBiwduHIf(+SW-o3#^pa&<@rns?yhyvb
zP?B|X{5Ko<yGw`PmQJn;>|KIo=UG+WirNYF-m*HB&>S;#bd0%Nu5bfUV*O}py1m--
z4)z<{2T4!u$v9(7CJa$!DoVjUc>?nS20GD%us4Ntx%#*<ucz(ydzy>$NL{M??67|0
z+XwRl50wn=C=(<Qt61o|q6R|(;)un+e9ZTte<US6QMe0CFmc@|@KH%+WnbFb^jZV5
zD=hIDxf8zo_e;li{SEEvw6PNPcX-Z&TtC;qIIYzySoh`9Wk}B}WnX-1OHhoG4b)BT
zD@VUIb-<w`^QP<ay?<JkDyqW{?PN@{-?*()`glQteCz1Qeu3{SOaq(by&NR=hB;`i
z^cOC)MM(C5lLB_=?mSnRN+J2&1xcTw=bb;3Cq|}Df;jy?pBWL^FS5R>5j%n-{)Fsy
zLvUf|?bNrh*lkog!X{Z)5UmwYLQ~X7mU_0|J?~o@>|P$St%szZJ7eBF8ZfjAAVl=L
zuI_wrIlK9;*8*I;B(k0k3+3iG2W^q1O&^+Rr@5d-dAQanKH5il?($6lE@<c~ENVC^
zSdM(|(j@~l>{t%60PU=&D23SE>Ohht)7?)1lBr8)qHnUn5lp`<zB0@d1>44T6gy;d
zxryjRtn(9N_}(Yi2ohP>QMDK@UCIISW#jLE8&5-sx^XWIRQ<1x)F@Czh)+{ip3`XK
zA5$H2F=?D&V9D7l94*qZAx!&M&id(?^1Pv08iJM)l-IQ9DaU=fe2!!J8Y%kxfi)0d
zo#;!1fi1Y4XDVd%X2vM*{(SNFGZ!MCNyTgDR<h`63OAi%=qj~ajQbRZ!z7u2eh)h)
z_{>^$p!uASw#8TEx21E3ZnlyP`c?BH`Xbra9}pP-8wvP-A;fc1UBVx*<To&4T$Y#G
zr%Y|;+>H-48*l8Wjg}$Vit$$K_3JpFar0|ZSR(${OZ-Qq*w?A1D5vp|DEbR;y1~?9
zC}Z>sZ@PtmF_50fQ6tFIEV`x?0sI>Z<?I<iRnZ5NA02FVhn0Vmjg1uqAVi3KEjRaR
zW;Qkr{eE)Zp*5(s=#YMpxSf14H5Ez><)kN(=%L(E<Qa93(e48@hR#wGu+-U<lvvCL
zkt?q1un;jv<^K8&QT(86A{(`lhQRSG9>8Wcf^$L5><+*d8rkcT+uafg(O;zDy22~_
z5NqE;UkspiCgM_TNjQOi;zRdKRh<xNL{&dl%j?6uP>UN%WD4n8m_8DVf(mp)*5c<Z
zdTZRu-`3dLDiY)fDMtfUlliareBalqM6kQ6nW-r3Sx{Vb)pOw`prP%HLUFe;YwP6K
zM^^ayoE>rKP~{lBpa2Ar^!-#g+#`D`V$^hZ{e4-pTsSaK0*n#i5C-PdBJ2|DQ)V`V
zn`}H!gC$EUh%?0!(*lLXz-@_K7EsA0M(_%t%DL4_&O_iN-GPLC=yF6T070}{J}b1L
zegb*p0r28LC^Fn}haO{-UIzm<5>3+s>V&Svh6xss<gBVNj9;ncIxSLHSO3A%Qk=Qv
z6(+g2qJ4M-$Wj&brWk`!3)|yYpC3i#JU47|bYBQmVZa+EBhYRiKc5Gdc)t0u={I-e
zY}>w&3K?qJXXe*RL1h|_yW9o~*+YBFiPyC%lkBdi%+!((b#|LJZ>~W4addW$^v*4k
z!)M`<E_r<sYCbhJukxF`(#53DQcJ|&KY>K+4L}YJwL~Q5$7mJT6>Q#9uvCvAJW$M@
zs^XJ8HL1ErmeK?86VmquT>-v^;R+x4pCW|Xkdk2KpRur;a08c(hfCbXR@*x{4P%Jp
zi_S5Gy@8!fpC(jC0o;#(#<Xwss^BTJ>6)$u+Z`OziYEbvnhVJkr<(p^j=~z4=Q66N
z`~V<$(8coSWk)-CA}C=hJ?|Lul$4Y*A$^X^O0xW{N7ytIi;`~YtC3VgwCy;FxQ5t2
zaRC-9U5~2ep3QoCh@jt=zo}v88N8v+qA+?B0Qj&%AfWLuY}|nIz!@jA%pf&)>iB+f
zGdnK^@}k`u8X8kM)3dn2V0mi>m(D(I7kUN1g&eDX0`s53x+hT<3dt^U_@7EX^fW!+
z8-@@FnVA6((oTkO)sc=f8?`1lZ%b7uFXXzfZw76(Ye5jkDJ2}ck&|R;9WbmWW90N`
z42Bl!G6BXDgMyB-Gb;K{?*v?9X`oZ_mQKb*dLS0equ`fwbaR__y7KoUmf&J?#>>F-
zgNzVj_U}PNfvJ|C#{UHIQUcy<F%CqQFg`9WAZWxEn231j=%+*JDg0EC=Pv`m^=qz2
zWEt*y_ZJuoA~0`51<9NabO>QW(yz5OeVJcud+FvhlaicvZ{|ehvt5i3PP=v)RAP<q
zhO8T&=ny3;{2mGjB)Fmi!jJ)XpF%<0EJbE%tFtqn_SPh>X$3{}Yp_JD2L>71E5LRt
zDaI1XQ4Tn!2!8x(9XgAWQ`QW}H|)n}b!|=5ZuAg2e8s7m!jR7BhGR!y|GW6|fTY(R
z|H2UusIbs1At*xFD=xFdrOUh<RmMka)lTH}$mhzf2ZL8(IH?X%^=UJXQ&j0_M{0P0
zs<Y><kjiInX)9=khF1RmCRAER#&-*oxHg0RCsjGbO`|80#TUq|L4Z?cspm^j;1~AX
zu3B4)+YyRVvK=tfTA0_MGbCov)>vAupW!~NS2GJ6Hv_=f_p3LLcs7JzHQb<@%z#qZ
zeLMX|52^rpUU9!7c&Wo!dr#nUqh?c?>?|s#73gU>;>%kT=9ZR;WRty$7Nf6c67eDe
zjV7HHF1h`l-))rbS~LTy{SmaX=91oQ*urEn12#NNu~u5yax|%G9R9YMfE%sxI>W~M
zHdd#Y(pW81ICGRgUn+vxX1nAo;@=P-4C<>>5QFk+2m5Ur%D0inaLqu9Gp<NAq4$f4
z>1oV+*zUgQs*82SVDQcZFStD3MW8m$$SV3qMq5F}&@hbbh~aze(@TURAkQVoA0R&8
zT%Le>|Dgu2nyofk#hlbbIa-JK7=#P#Dk*~&4U)7v(2^)n6G&TSG|*7ra%JEy)NIMi
zz0N_yT7*3&dm$0AY6vBp55ck$kQv^~kK-zBfSU9f3^!=jmFJr|U_Hh=$9wSC+X1%D
zL_om^1rwBvVZ#d?l6$*Hg5QCKDQH66*Vomxf-3q)NM3?sHs1>97f8iXvRip03YsbY
zC&yth3$7u3mE?)*xp8h(=%&j`jCwXu{5EnNz*Ir{B1Ple&hO4WeKh~t>@Ri8fn|6l
zaZvqULw!kTUUa5XAZ8o+E{><yS%2o^kH-GDj_ePU-eaG9s%Mn@`u*%mY}_^*wyw`z
H%R2E-#Oygr

literal 0
HcmV?d00001

diff --git a/oxAuth/Server/integrations/saml/INSTALLATION.txt b/oxAuth/Server/integrations/saml/INSTALLATION.txt
new file mode 100644
index 00000000..15ce611d
--- /dev/null
+++ b/oxAuth/Server/integrations/saml/INSTALLATION.txt
@@ -0,0 +1,33 @@
+This list of steps needed to do to enable Asimba/SAML person authentication module.
+
+1. This module depends on python libraries. In order to use it we need to install Jython. Please use next articles to proper Jython installation:
+    - Installation notest: http://ox.gluu.org/doku.php?id=oxtauth:customauthscript#jython_installation_optional
+    - Jython integration: http://ox.gluu.org/doku.php?id=oxtauth:customauthscript#jython_python_integration
+
+2. Prepare file with IdP public certificate /etc/certs/saml.pem  
+
+3. Confire new custom module in oxTrust:
+    - Log into oxTrust with administrative permissions.
+    - Open "Configuration→Manage Custom Scripts" page.
+    - Select "Person Authentication" tab.
+    - Click on "Add custom script configuration" link.
+    - Enter name = saml
+    - Enter level = 0-100 (priority of this method).
+    - Select usage type "Interactive".
+    - Add custom required and optional properties which specified in README.txt.
+    - Copy/paste script from AsimbaPersonAuthentication.py.
+    - Activate it via "Enabled" checkbox.
+    - Click "Update" button at the bottom of this page.
+
+4. Configure oxAuth to use SAML authentication by default:
+    - Log into oxTrust with administrative permissions.
+    - Open "Configuration→Manage Authentication" page.
+    - Scroll to "Default Authentication Method" panel. Select "saml" authentication mode.
+    - Click "Update" button at the bottom of this page.
+
+5. Try to log in using SAML authentication method:
+    - Wait 30 seconds and try to log in again. During this time oxAuth reload list of available person authentication modules.
+    - Open second browser or second browsing session and try to log in again. It's better to try to do that from another browser session because we can return back to previous authentication method if something will go wrong.
+
+There are log messages in this custom authentication script. In order to debug this module we can use command like this:
+tail -f /opt/tomcat/logs/wrapper.log | grep "Saml"
diff --git a/oxAuth/Server/integrations/saml/README.txt b/oxAuth/Server/integrations/saml/README.txt
new file mode 100644
index 00000000..b9104d00
--- /dev/null
+++ b/oxAuth/Server/integrations/saml/README.txt
@@ -0,0 +1,69 @@
+This authentication interception script configures oxAuth to use an external SAML identity provider. This approach enables you to dynamically enroll users in your Gluu Server after they authenticate at their home IDP--meaning you can create a local ldap entry for each new inbound SAML user. This is handy because it enables you to use either SAML or OpenID Connect API's that connect to the Gluu Server. Confusing? Yes! Handy... yes, yes! 
+
+This module has next properties:
+1) asimba_saml_certificate_file - It's path to file which contains public IdP certificate in.
+   Example: /etc/certs/saml.pem
+
+2) saml_idp_sso_target_url - The URL at the Identity Provider where to the authentication request should be sent.
+   Example: https://test.gluu.org/asimba/profiles/saml2/sso/web
+
+3) asimba_entity_id - Set the issuer of the authentication request. This would usually be the URL of the issuing web application
+   Example: https://test.gluu.info/saml
+
+4) saml_use_authn_context - Specify if Saml request should contains samlp:RequestedAuthnContext section.
+   Allowed values: true/false
+   Example: true
+
+5) saml_name_identifier_format - Specify in which format IdP should return a name identifier for the user.
+   This property isn't required when saml_use_authn_context has value 'false'
+   Example: urn:oasis:names:tc:SAML:2.0:nameid-format:persistent
+   
+6) saml_deployment_type - Specify deployment mode. It's optional property. If this property isn't specified Saml script
+   tries to find user in local LDAP by 'Persistent Id' specified in Saml response. If this property has 'map' value Saml script map
+   should map 'Persistent Id' to local user account. If this property has 'enroll' value Saml script should add new user to local LDAP
+   with status 'register'. In order to map IDP attributes to local attributes it uses propertiessaml_idp_attributes_list and
+   saml_local_attributes_list.
+   Allowed values: map/enroll/enroll_all_attr
+   Example: enroll
+
+7) saml_validate_response - Specify if Saml script should valide Saml response signature. The path to IdP certificate should be specified in
+   asimba_saml_certificate_file property. It's optional property. Default mode specify to validate Saml response.
+   Allowed values: true/false
+   Example: true
+
+8) saml_client_configuration_attribute - Specify oxAuth client entry attribute name which contains Saml configuration in JSON format which
+   allow to override next properties: asimba_saml_certificate_file, asimba_entity_id, saml_use_authn_context, saml_idp_attributes_list, saml_local_attributes_list.
+   It's optional property.
+   Property asimba_saml_certificate_file isn't mandatory. If the value is empty Smal script use global asimba_saml_certificate_file value.
+   Example: oxAuthExtraConf
+   Example content of client oxAuthExtraConf attribute: {"saml_certificate_file": "", "asimba_entity_id": "https://localhost/app1", "saml_use_authn_context": "false", "saml_idp_attributes_list": "http://schemas.xmlsoap.org/ws/2005/05/identity/claims/name, http://schemas.xmlsoap.org/ws/2005/05/identity/claims/emailaddress, http://schemas.xmlsoap.org/ws/2005/05/identity/claims/givenname, http://schemas.xmlsoap.org/ws/2005/05/identity/claims/surname, http://schemas.xmlsoap.org/ws/2005/05/identity/claims/surname", "saml_local_attributes_list": "uid, mail, givenName, sn, cn"}
+
+9) saml_idp_attributes_list - Comma separated list of attribute names. Specify list of IdP attributes which Saml scrpt should use to map to local attributes.
+   It's optional property. It's manadatory only if saml_deployment_type has value 'enroll'.
+   The count of attributes in this property should be equal to count attributes in saml_local_attributes_list property.
+   Example: http://schemas.xmlsoap.org/ws/2005/05/identity/claims/name, http://schemas.xmlsoap.org/ws/2005/05/identity/claims/emailaddress, http://schemas.xmlsoap.org/ws/2005/05/identity/claims/givenname, http://schemas.xmlsoap.org/ws/2005/05/identity/claims/surname, http://schemas.xmlsoap.org/ws/2005/05/identity/claims/surname
+
+10) saml_local_attributes_list - Comma separated list of attribute names. Specify list of local attributes mapped from Saml response.
+    It's optional property. It's manadatory only if saml_deployment_type has value 'enroll'.
+    The count of attributes in this property should be equal to count attributes in saml_idp_attributes_list property.
+    Local attributes list should contains next mandatory attributes: uid, mail, givenName, sn, cn.
+    Example: uid, mail, givenName, sn, cn
+   
+11) user_object_classes - Specify custom list of LDAP user object classes
+   Example: eduPerson
+
+12) enforce_uniqueness_attr_list - Specify list of unique user attributes to validate if there is no user with simular attributes already
+   Example: uid, mail
+
+13) saml_extension_module - Specify external module name. It's optional property. External module should implements 2 methods:
+    def init(conf_attr):
+    ...
+    return True/False
+
+    def postLogin(conf_attr, user):
+    ...
+    return True/False
+
+    SAML scripts calls init method at initialization, and calls postLogin after to execute additional custom workflow.
+14) saml_allow_basic_login - Specify if authentication module should allow both: basic and saml authentications
+   Example: false
diff --git a/oxAuth/Server/integrations/saml/SamlExternalAuthenticator.py b/oxAuth/Server/integrations/saml/SamlExternalAuthenticator.py
new file mode 100644
index 00000000..021e9e9d
--- /dev/null
+++ b/oxAuth/Server/integrations/saml/SamlExternalAuthenticator.py
@@ -0,0 +1,793 @@
+# oxAuth is available under the MIT License (2008). See http://opensource.org/licenses/MIT for full text.
+# Copyright (c) 2016, Gluu
+#
+# Author: Yuriy Movchan
+#
+
+import java
+import json
+from java.lang import StringBuilder
+from javax.faces.context import FacesContext
+from java.util import Arrays, ArrayList, HashMap, IdentityHashMap
+from javax.faces.application import FacesMessage
+from org.gluu.jsf2.message import FacesMessages
+from org.gluu.saml import SamlConfiguration, AuthRequest, Response
+from org.gluu.ldap.model import CustomAttribute
+from org.gluu.model.custom.script.type.auth import PersonAuthenticationType
+from org.gluu.oxauth.model.common import User
+from org.gluu.oxauth.security import Identity
+from org.gluu.oxauth.service import UserService, ClientService, AuthenticationService, AttributeService
+from org.gluu.oxauth.service.net import HttpService
+from org.gluu.service.cdi.util import CdiUtil
+from org.gluu.util import StringHelper, ArrayHelper, Util
+from org.gluu.jsf2.service import FacesService
+
+class PersonAuthentication(PersonAuthenticationType):
+    def __init__(self, currentTimeMillis):
+        self.currentTimeMillis = currentTimeMillis
+
+    def init(self, customScript, configurationAttributes):
+        print "Asimba. Initialization"
+
+        asimba_saml_certificate_file = configurationAttributes.get("asimba_saml_certificate_file").getValue2()
+        saml_idp_sso_target_url = configurationAttributes.get("saml_idp_sso_target_url").getValue2()
+        asimba_entity_id = configurationAttributes.get("asimba_entity_id").getValue2()
+        saml_use_authn_context = StringHelper.toBoolean(configurationAttributes.get("saml_use_authn_context").getValue2(), True)
+        if saml_use_authn_context:
+            saml_name_identifier_format = configurationAttributes.get("saml_name_identifier_format").getValue2()
+        else:
+            saml_name_identifier_format = None
+
+        asimba_saml_certificate = self.loadCeritificate(asimba_saml_certificate_file)
+        if StringHelper.isEmpty(asimba_saml_certificate):
+            print "Asimba. Initialization. File with x509 certificate should be not empty"
+            return False
+
+        samlConfiguration = SamlConfiguration()
+
+        # Set the issuer of the authentication request. This would usually be the URL of the issuing web application
+        samlConfiguration.setIssuer(asimba_entity_id)
+
+        # Tells the IdP to return a persistent identifier for the user
+        samlConfiguration.setNameIdentifierFormat(saml_name_identifier_format)
+  
+        # The URL at the Identity Provider where to the authentication request should be sent
+        samlConfiguration.setIdpSsoTargetUrl(saml_idp_sso_target_url)
+
+        # Enablediable RequestedAuthnContext
+        samlConfiguration.setUseRequestedAuthnContext(saml_use_authn_context)
+        
+        # Load x509 certificate
+        samlConfiguration.loadCertificateFromString(asimba_saml_certificate)
+        
+        self.samlConfiguration = samlConfiguration
+
+        self.generateNameId = False
+        if configurationAttributes.containsKey("saml_generate_name_id"):
+            self.generateNameId = StringHelper.toBoolean(configurationAttributes.get("saml_generate_name_id").getValue2(), False)
+        print "Asimba. Initialization. The property saml_generate_name_id is %s" % self.generateNameId
+
+        self.updateUser = False
+        if configurationAttributes.containsKey("saml_update_user"):
+            self.updateUser = StringHelper.toBoolean(configurationAttributes.get("saml_update_user").getValue2(), False)
+
+        print "Asimba. Initialization. The property saml_update_user is %s" % self.updateUser
+
+        self.userObjectClasses = None
+        if configurationAttributes.containsKey("user_object_classes"):
+            self.userObjectClasses = self.prepareUserObjectClasses(configurationAttributes)
+
+        self.userEnforceAttributesUniqueness = None
+        if configurationAttributes.containsKey("enforce_uniqueness_attr_list"):
+            self.userEnforceAttributesUniqueness = self.prepareUserEnforceUniquenessAttributes(configurationAttributes)
+
+        self.attributesMapping = None
+        if configurationAttributes.containsKey("saml_idp_attributes_mapping"):
+            saml_idp_attributes_mapping = configurationAttributes.get("saml_idp_attributes_mapping").getValue2()
+            if StringHelper.isEmpty(saml_idp_attributes_mapping):
+                print "Asimba. Initialization. The property saml_idp_attributes_mapping is empty"
+                return False
+
+            self.attributesMapping = self.prepareAttributesMapping(saml_idp_attributes_mapping)
+            if self.attributesMapping == None:
+                print "Asimba. Initialization. The attributes mapping isn't valid"
+                return False
+
+        self.samlExtensionModule = None
+        if configurationAttributes.containsKey("saml_extension_module"):
+            saml_extension_module_name = configurationAttributes.get("saml_extension_module").getValue2()
+            try:
+                self.samlExtensionModule = __import__(saml_extension_module_name)
+                saml_extension_module_init_result = self.samlExtensionModule.init(configurationAttributes)
+                if not saml_extension_module_init_result:
+                    return False
+            except ImportError, ex:
+                print "Asimba. Initialization. Failed to load saml_extension_module: '%s'" % saml_extension_module_name
+                print "Asimba. Initialization. Unexpected error:", ex
+                return False
+            
+        self.debugEnrollment = False
+
+        print "Asimba. Initialized successfully"
+        return True   
+
+    def destroy(self, configurationAttributes):
+        print "Asimba. Destroy"
+        print "Asimba. Destroyed successfully"
+        return True
+
+    def getApiVersion(self):
+        return 11
+        
+    def getAuthenticationMethodClaims(self, requestParameters):
+        return None
+        
+    def isValidAuthenticationMethod(self, usageType, configurationAttributes):
+        return True
+
+    def getAlternativeAuthenticationMethod(self, usageType, configurationAttributes):
+        return None
+
+    def authenticate(self, configurationAttributes, requestParameters, step):
+        identity = CdiUtil.bean(Identity)
+        credentials = identity.getCredentials()
+
+        userService = CdiUtil.bean(UserService)
+        authenticationService = CdiUtil.bean(AuthenticationService)
+
+        saml_map_user = False
+        saml_enroll_user = False
+        saml_enroll_all_user_attr = False
+        # Use saml_deployment_type only if there is no attributes mapping
+        if configurationAttributes.containsKey("saml_deployment_type"):
+            saml_deployment_type = StringHelper.toLowerCase(configurationAttributes.get("saml_deployment_type").getValue2())
+            
+            if StringHelper.equalsIgnoreCase(saml_deployment_type, "map"):
+                saml_map_user = True
+
+            if StringHelper.equalsIgnoreCase(saml_deployment_type, "enroll"):
+                saml_enroll_user = True
+
+            if StringHelper.equalsIgnoreCase(saml_deployment_type, "enroll_all_attr"):
+                saml_enroll_all_user_attr = True
+
+        saml_allow_basic_login = False
+        if configurationAttributes.containsKey("saml_allow_basic_login"):
+            saml_allow_basic_login = StringHelper.toBoolean(configurationAttributes.get("saml_allow_basic_login").getValue2(), False)
+
+        use_basic_auth = False
+        if saml_allow_basic_login:
+            # Detect if user used basic authnetication method
+
+            user_name = credentials.getUsername()
+            user_password = credentials.getPassword()
+            if StringHelper.isNotEmpty(user_name) and StringHelper.isNotEmpty(user_password):
+                use_basic_auth = True
+
+        if (step == 1) and saml_allow_basic_login and use_basic_auth:
+            print "Asimba. Authenticate for step 1. Basic authentication"
+
+            identity.setWorkingParameter("saml_count_login_steps", 1)
+
+            user_name = credentials.getUsername()
+            user_password = credentials.getPassword()
+
+            logged_in = False
+            if StringHelper.isNotEmptyString(user_name) and StringHelper.isNotEmptyString(user_password):
+                logged_in = authenticationService.authenticate(user_name, user_password)
+
+            if (not logged_in):
+                return False
+
+            return True
+
+        if (step == 1):
+            print "Asimba. Authenticate for step 1"
+
+            currentSamlConfiguration = self.getCurrentSamlConfiguration(self.samlConfiguration, configurationAttributes, requestParameters)
+            if (currentSamlConfiguration == None):
+                print "Asimba. Prepare for step 1. Client saml configuration is invalid"
+                return False
+
+            saml_response_array = requestParameters.get("SAMLResponse")
+            if ArrayHelper.isEmpty(saml_response_array):
+                print "Asimba. Authenticate for step 1. saml_response is empty"
+                return False
+
+            saml_response = saml_response_array[0]
+
+            print "Asimba. Authenticate for step 1. saml_response: '%s'" % saml_response
+
+            samlResponse = Response(currentSamlConfiguration)
+            samlResponse.loadXmlFromBase64(saml_response)
+            
+            saml_validate_response = True
+            if configurationAttributes.containsKey("saml_validate_response"):
+                saml_validate_response = StringHelper.toBoolean(configurationAttributes.get("saml_validate_response").getValue2(), False)
+
+            if saml_validate_response:
+                if not samlResponse.isValid():
+                    print "Asimba. Authenticate for step 1. saml_response isn't valid"
+                    return False
+                
+            if samlResponse.isAuthnFailed():
+                print "Asimba. Authenticate for step 1. saml_response AuthnFailed"
+                return False
+
+            saml_response_attributes = samlResponse.getAttributes()
+            print "Asimba. Authenticate for step 1. attributes: '%s'" % saml_response_attributes
+            
+            if saml_map_user:
+                saml_user_uid = self.getSamlNameId(samlResponse)
+                if saml_user_uid == None:
+                    return False
+
+                # Use mapping to local IDP user
+                print "Asimba. Authenticate for step 1. Attempting to find user by oxExternalUid: saml: '%s'" % saml_user_uid
+
+                # Check if the is user with specified saml_user_uid
+                find_user_by_uid = userService.getUserByAttribute("oxExternalUid", "saml:%s" % saml_user_uid)
+
+                if find_user_by_uid == None:
+                    print "Asimba. Authenticate for step 1. Failed to find user"
+                    print "Asimba. Authenticate for step 1. Setting count steps to 2"
+                    identity.setWorkingParameter("saml_count_login_steps", 2)
+                    identity.setWorkingParameter("saml_user_uid", saml_user_uid)
+                    return True
+
+                found_user_name = find_user_by_uid.getUserId()
+                print "Asimba. Authenticate for step 1. found_user_name: '%s'" % found_user_name
+                
+                user_authenticated = authenticationService.authenticate(found_user_name)
+                if user_authenticated == False:
+                    print "Asimba. Authenticate for step 1. Failed to authenticate user"
+                    return False
+            
+                print "Asimba. Authenticate for step 1. Setting count steps to 1"
+                identity.setWorkingParameter("saml_count_login_steps", 1)
+
+                post_login_result = self.samlExtensionPostLogin(configurationAttributes, find_user_by_uid)
+                print "Asimba. Authenticate for step 1. post_login_result: '%s'" % post_login_result
+
+                return post_login_result
+            elif saml_enroll_user:
+                # Convert SAML response to user entry
+                newUser = self.getMappedUser(configurationAttributes, requestParameters, saml_response_attributes)
+
+                saml_user_uid = self.getNameId(samlResponse, newUser)
+                if saml_user_uid == None:
+                    return False
+
+                self.setDefaultUid(newUser, saml_user_uid)
+                newUser.setAttribute("oxExternalUid", "saml:%s" % saml_user_uid)
+
+                # Use auto enrollment to local IDP
+                print "Asimba. Authenticate for step 1. Attempting to find user by oxExternalUid: saml: '%s'" % saml_user_uid
+
+                # Check if there is user with specified saml_user_uid
+                find_user_by_uid = userService.getUserByAttribute("oxExternalUid", "saml:%s" % saml_user_uid)
+                if find_user_by_uid == None:
+                    # Auto user enrollment
+                    print "Asimba. Authenticate for step 1. There is no user in LDAP. Adding user to local LDAP"
+
+                    print "Asimba. Authenticate for step 1. Attempting to add user '%s' with next attributes: '%s'" % (saml_user_uid, newUser.getCustomAttributes())
+                    user_unique = self.checkUserUniqueness(newUser)
+                    if not user_unique:
+                        print "Asimba. Authenticate for step 1. Failed to add user: '%s'. User not unique" % newUser.getUserId()
+                        facesMessages = CdiUtil.bean(FacesMessages)
+                        facesMessages.add(FacesMessage.SEVERITY_ERROR, "Failed to enroll. User with same key attributes exist already")
+                        facesMessages.setKeepMessages()
+                        return False
+
+                    find_user_by_uid = userService.addUser(newUser, True)
+                    print "Asimba. Authenticate for step 1. Added new user with UID: '%s'" % find_user_by_uid.getUserId()
+                else:
+                    if self.updateUser:
+                        print "Asimba. Authenticate for step 1. Attempting to update user '%s' with next attributes: '%s'" % (saml_user_uid, newUser.getCustomAttributes())
+                        find_user_by_uid.setCustomAttributes(newUser.getCustomAttributes())
+                        userService.updateUser(find_user_by_uid)
+                        print "Asimba. Authenticate for step 1. Updated user with UID: '%s'" % saml_user_uid
+
+                found_user_name = find_user_by_uid.getUserId()
+                print "Asimba. Authenticate for step 1. found_user_name: '%s'" % found_user_name
+
+                user_authenticated = authenticationService.authenticate(found_user_name)
+                if user_authenticated == False:
+                    print "Asimba. Authenticate for step 1. Failed to authenticate user: '%s'" % found_user_name
+                    return False
+
+                print "Asimba. Authenticate for step 1. Setting count steps to 1"
+                identity.setWorkingParameter("saml_count_login_steps", 1)
+
+                post_login_result = self.samlExtensionPostLogin(configurationAttributes, find_user_by_uid)
+                print "Asimba. Authenticate for step 1. post_login_result: '%s'" % post_login_result
+
+                return post_login_result
+            elif saml_enroll_all_user_attr:
+                # Convert SAML response to user entry
+                newUser = self.getMappedAllAttributesUser(saml_response_attributes)
+
+                saml_user_uid = self.getNameId(samlResponse, newUser)
+                if saml_user_uid == None:
+                    return False
+
+                self.setDefaultUid(newUser, saml_user_uid)
+                newUser.setAttribute("oxExternalUid", "saml:%s" %  saml_user_uid)
+
+                print "Asimba. Authenticate for step 1. Attempting to find user by oxExternalUid: saml:%s" % saml_user_uid
+
+                # Check if there is user with specified saml_user_uid
+                find_user_by_uid = userService.getUserByAttribute("oxExternalUid", "saml:%s" %  saml_user_uid)
+                if find_user_by_uid == None:
+                    # Auto user enrollment
+                    print "Asimba. Authenticate for step 1. There is no user in LDAP. Adding user to local LDAP"
+
+                    print "Asimba. Authenticate for step 1. Attempting to add user '%s' with next attributes: '%s'" % (saml_user_uid, newUser.getCustomAttributes())
+                    user_unique = self.checkUserUniqueness(newUser)
+                    if not user_unique:
+                        print "Asimba. Authenticate for step 1. Failed to add user: '%s'. User not unique" % newUser.getUserId()
+                        facesMessages = CdiUtil.bean(FacesMessages)
+                        facesMessages.add(FacesMessage.SEVERITY_ERROR, "Failed to enroll. User with same key attributes exist already")
+                        facesMessages.setKeepMessages()
+                        return False
+
+                    find_user_by_uid = userService.addUser(newUser, True)
+                    print "Asimba. Authenticate for step 1. Added new user with UID: '%s'" % find_user_by_uid.getUserId()
+                else:
+                    if self.updateUser:
+                        print "Asimba. Authenticate for step 1. Attempting to update user '%s' with next attributes: '%s'" % (saml_user_uid, newUser.getCustomAttributes())
+                        find_user_by_uid.setCustomAttributes(newUser.getCustomAttributes())
+                        userService.updateUser(find_user_by_uid)
+                        print "Asimba. Authenticate for step 1. Updated user with UID: '%s'" % saml_user_uid
+
+                found_user_name = find_user_by_uid.getUserId()
+                print "Asimba. Authenticate for step 1. found_user_name: '%s'" % found_user_name
+
+                user_authenticated = authenticationService.authenticate(found_user_name)
+                if user_authenticated == False:
+                    print "Asimba. Authenticate for step 1. Failed to authenticate user"
+                    return False
+
+                print "Asimba. Authenticate for step 1. Setting count steps to 1"
+                identity.setWorkingParameter("saml_count_login_steps", 1)
+
+                post_login_result = self.samlExtensionPostLogin(configurationAttributes, find_user_by_uid)
+                print "Asimba. Authenticate for step 1. post_login_result: '%s'" % post_login_result
+
+                return post_login_result
+            else:
+                if saml_user_uid == None:
+                    return False
+
+                # Check if the is user with specified saml_user_uid
+                print "Asimba. Authenticate for step 1. Attempting to find user by uid: '%s'" % saml_user_uid
+
+                find_user_by_uid = userService.getUser(saml_user_uid)
+                if find_user_by_uid == None:
+                    print "Asimba. Authenticate for step 1. Failed to find user"
+                    return False
+
+                found_user_name = find_user_by_uid.getUserId()
+                print "Asimba. Authenticate for step 1. found_user_name: '%s'" % found_user_name
+
+                user_authenticated = authenticationService.authenticate(found_user_name)
+                if user_authenticated == False:
+                    print "Asimba. Authenticate for step 1. Failed to authenticate user"
+                    return False
+
+                print "Asimba. Authenticate for step 1. Setting count steps to 1"
+                identity.setWorkingParameter("saml_count_login_steps", 1)
+
+                post_login_result = self.samlExtensionPostLogin(configurationAttributes, find_user_by_uid)
+                print "Asimba. Authenticate for step 1. post_login_result: '%s'" % post_login_result
+
+                return post_login_result
+        elif (step == 2):
+            print "Asimba. Authenticate for step 2"
+
+            sessionAttributes = identity.getSessionId().getSessionAttributes()
+            if (sessionAttributes == None) or not sessionAttributes.containsKey("saml_user_uid"):
+                print "Asimba. Authenticate for step 2. saml_user_uid is empty"
+                return False
+
+            saml_user_uid = sessionAttributes.get("saml_user_uid")
+            passed_step1 = StringHelper.isNotEmptyString(saml_user_uid)
+            if not passed_step1:
+                return False
+
+            user_name = credentials.getUsername()
+            user_password = credentials.getPassword()
+
+            logged_in = False
+            if StringHelper.isNotEmptyString(user_name) and StringHelper.isNotEmptyString(user_password):
+                logged_in = authenticationService.authenticate(user_name, user_password)
+
+            if not logged_in:
+                return False
+
+            # Check if there is user which has saml_user_uid
+            # Avoid mapping Saml account to more than one IDP account
+            find_user_by_uid = userService.getUserByAttribute("oxExternalUid", "saml:%s" % saml_user_uid)
+
+            if find_user_by_uid == None:
+                # Add saml_user_uid to user one id UIDs
+                find_user_by_uid = userService.addUserAttribute(user_name, "oxExternalUid", "saml:%s" % saml_user_uid)
+                if find_user_by_uid == None:
+                    print "Asimba. Authenticate for step 2. Failed to update current user"
+                    return False
+
+                post_login_result = self.samlExtensionPostLogin(configurationAttributes, find_user_by_uid)
+                print "Asimba. Authenticate for step 2. post_login_result: '%s'" % post_login_result
+
+                return post_login_result
+            else:
+                found_user_name = find_user_by_uid.getUserId()
+                print "Asimba. Authenticate for step 2. found_user_name: '%s'" % found_user_name
+    
+                if StringHelper.equals(user_name, found_user_name):
+                    post_login_result = self.samlExtensionPostLogin(configurationAttributes, find_user_by_uid)
+                    print "Asimba. Authenticate for step 2. post_login_result: '%s'" % post_login_result
+    
+                    return post_login_result
+        
+            return False
+        else:
+            return False
+
+    def prepareForStep(self, configurationAttributes, requestParameters, step):
+        authenticationService = CdiUtil.bean(AuthenticationService)
+
+        if (step == 1):
+            print "Asimba. Prepare for step 1"
+            
+            httpService = CdiUtil.bean(HttpService)
+            facesContext = CdiUtil.bean(FacesContext)
+            request = facesContext.getExternalContext().getRequest()
+            assertionConsumerServiceUrl = httpService.constructServerUrl(request) + "/postlogin.htm"
+            print "Asimba. Prepare for step 1. Prepared assertionConsumerServiceUrl: '%s'" % assertionConsumerServiceUrl
+            
+            currentSamlConfiguration = self.getCurrentSamlConfiguration(self.samlConfiguration, configurationAttributes, requestParameters)
+            if currentSamlConfiguration == None:
+                print "Asimba. Prepare for step 1. Client saml configuration is invalid"
+                return False
+
+            # Generate an AuthRequest and send it to the identity provider
+            samlAuthRequest = AuthRequest(currentSamlConfiguration)
+            external_auth_request_uri = currentSamlConfiguration.getIdpSsoTargetUrl() + "?SAMLRequest=" + samlAuthRequest.getRequest(True, assertionConsumerServiceUrl)
+
+            print "Asimba. Prepare for step 1. external_auth_request_uri: '%s'" % external_auth_request_uri
+            facesService = CdiUtil.bean(FacesService)
+            facesService.redirectToExternalURL(external_auth_request_uri)
+
+            return True
+        elif (step == 2):
+            print "Asimba. Prepare for step 2"
+
+            return True
+        else:
+            return False
+
+    def getExtraParametersForStep(self, configurationAttributes, step):
+        if (step == 2):
+            return Arrays.asList("saml_user_uid")
+
+        return None
+
+    def getCountAuthenticationSteps(self, configurationAttributes):
+        identity = CdiUtil.bean(Identity)
+        if identity.isSetWorkingParameter("saml_count_login_steps"):
+            return identity.getWorkingParameter("saml_count_login_steps")
+        
+        return 2
+
+    def getPageForStep(self, configurationAttributes, step):
+        if (step == 1):
+            saml_allow_basic_login = False
+            if configurationAttributes.containsKey("saml_allow_basic_login"):
+                saml_allow_basic_login = StringHelper.toBoolean(configurationAttributes.get("saml_allow_basic_login").getValue2(), False)
+
+            if saml_allow_basic_login:
+                return "/login.xhtml"
+            else:
+                return "/auth/saml/samllogin.xhtml"
+
+        return "/auth/saml/samlpostlogin.xhtml"
+
+    def getNextStep(self, configurationAttributes, requestParameters, step):
+        return -1
+
+    def getLogoutExternalUrl(self, configurationAttributes, requestParameters):
+        print "Get external logout URL call"
+        return None
+
+    def logout(self, configurationAttributes, requestParameters):
+        return True
+
+    def isPassedStep1():
+        identity = CdiUtil.bean(Identity)
+        credentials = identity.getCredentials()
+        user_name = credentials.getUsername()
+        passed_step1 = StringHelper.isNotEmptyString(user_name)
+
+        return passed_step1
+
+    def loadCeritificate(self, asimba_saml_certificate_file):
+        asimba_saml_certificate = None
+
+        # Load certificate from file
+        f = open(asimba_saml_certificate_file, 'r')
+        try:
+            asimba_saml_certificate = f.read()
+        except:
+            print "Asimba. Failed to load certificate from file: '%s'" % asimba_saml_certificate_file
+            return None
+        finally:
+            f.close()
+        
+        return asimba_saml_certificate
+
+    def getClientConfiguration(self, configurationAttributes, requestParameters):
+        # Get client configuration
+        if configurationAttributes.containsKey("saml_client_configuration_attribute"):
+            saml_client_configuration_attribute = configurationAttributes.get("saml_client_configuration_attribute").getValue2()
+            print "Asimba. GetClientConfiguration. Using client attribute: '%s'" % saml_client_configuration_attribute
+
+            if requestParameters == None:
+                return None
+
+            client_id = None
+            client_id_array = requestParameters.get("client_id")
+            if ArrayHelper.isNotEmpty(client_id_array) and StringHelper.isNotEmptyString(client_id_array[0]):
+                client_id = client_id_array[0]
+
+            if client_id == None:
+                identity = CdiUtil.bean(Identity)
+                if identity.getSessionId() != None:
+                    client_id = identity.getSessionId().getSessionAttributes().get("client_id")
+
+            if client_id == None:
+                print "Asimba. GetClientConfiguration. client_id is empty"
+                return None
+
+            clientService = CdiUtil.bean(ClientService)
+            client = clientService.getClient(client_id)
+            if client == None:
+                print "Asimba. GetClientConfiguration. Failed to find client '%s' in local LDAP" % client_id
+                return None
+
+            saml_client_configuration = clientService.getCustomAttribute(client, saml_client_configuration_attribute)
+            if (saml_client_configuration == None) or StringHelper.isEmpty(saml_client_configuration.getValue()):
+                print "Asimba. GetClientConfiguration. Client '%s' attribute '%s' is empty" % ( client_id, saml_client_configuration_attribute )
+            else:
+                print "Asimba. GetClientConfiguration. Client '%s' attribute '%s' is '%s'" % ( client_id, saml_client_configuration_attribute, saml_client_configuration )
+                return saml_client_configuration
+
+        return None
+
+    def getCurrentSamlConfiguration(self, currentSamlConfiguration, configurationAttributes, requestParameters):
+        saml_client_configuration = self.getClientConfiguration(configurationAttributes, requestParameters)
+        if saml_client_configuration == None:
+            return currentSamlConfiguration
+        
+        saml_client_configuration_value = json.loads(saml_client_configuration.getValue())
+
+        client_asimba_saml_certificate = None      
+        client_asimba_saml_certificate_file = saml_client_configuration_value["asimba_saml_certificate_file"]
+        if StringHelper.isNotEmpty(client_asimba_saml_certificate_file):
+            client_asimba_saml_certificate = self.loadCeritificate(client_asimba_saml_certificate_file)
+            if StringHelper.isEmpty(client_asimba_saml_certificate):
+                print "Asimba. BuildClientSamlConfiguration. File with x509 certificate should be not empty. Using default configuration"
+                return currentSamlConfiguration
+
+        clientSamlConfiguration = currentSamlConfiguration.clone()
+        
+        if client_asimba_saml_certificate != None:
+            clientSamlConfiguration.loadCertificateFromString(client_asimba_saml_certificate)
+
+        client_asimba_entity_id = saml_client_configuration_value["asimba_entity_id"]
+        clientSamlConfiguration.setIssuer(client_asimba_entity_id)
+        
+        saml_use_authn_context = saml_client_configuration_value["saml_use_authn_context"]
+        client_use_saml_use_authn_context = StringHelper.toBoolean(saml_use_authn_context, True)
+        clientSamlConfiguration.setUseRequestedAuthnContext(client_use_saml_use_authn_context)
+
+        return clientSamlConfiguration
+
+    def prepareAttributesMapping(self, saml_idp_attributes_mapping):
+        saml_idp_attributes_mapping_json = json.loads(saml_idp_attributes_mapping)
+        
+        if len(saml_idp_attributes_mapping_json) == 0:
+            print "Asimba. PrepareAttributesMapping. There is no attributes mapping specified in saml_idp_attributes_mapping property"
+            return None
+
+        attributeMapping = IdentityHashMap()
+        for local_attribute_name in saml_idp_attributes_mapping_json:
+            localAttribute = StringHelper.toLowerCase(local_attribute_name)
+            for idp_attribute_name in saml_idp_attributes_mapping_json[local_attribute_name]:
+                idpAttribute = StringHelper.toLowerCase(idp_attribute_name)
+                attributeMapping.put(idpAttribute, localAttribute)
+        
+        return attributeMapping
+
+    def prepareUserObjectClasses(self, configurationAttributes):
+        user_object_classes = configurationAttributes.get("user_object_classes").getValue2()
+
+        user_object_classes_list_array = StringHelper.split(user_object_classes, ",")
+        if ArrayHelper.isEmpty(user_object_classes_list_array):
+            return None
+        
+        return user_object_classes_list_array
+
+    def prepareUserEnforceUniquenessAttributes(self, configurationAttributes):
+        enforce_uniqueness_attr_list = configurationAttributes.get("enforce_uniqueness_attr_list").getValue2()
+
+        enforce_uniqueness_attr_list_array = StringHelper.split(enforce_uniqueness_attr_list, ",")
+        if ArrayHelper.isEmpty(enforce_uniqueness_attr_list_array):
+            return None
+        
+        return enforce_uniqueness_attr_list_array
+
+    def prepareCurrentAttributesMapping(self, currentAttributesMapping, configurationAttributes, requestParameters):
+        saml_client_configuration = self.getClientConfiguration(configurationAttributes, requestParameters)
+        if saml_client_configuration == None:
+            return currentAttributesMapping
+
+        saml_client_configuration_value = json.loads(saml_client_configuration.getValue())
+
+        clientAttributesMapping = self.prepareAttributesMapping(saml_client_configuration_value["saml_idp_attributes_mapping"])
+        if clientAttributesMapping == None:
+            print "Asimba. PrepareCurrentAttributesMapping. Client attributes mapping is invalid. Using default one"
+            return currentAttributesMapping
+
+        return clientAttributesMapping
+
+    def samlExtensionPostLogin(self, configurationAttributes, user):
+        if self.samlExtensionModule == None:
+            return True
+        try:
+            post_login_result = self.samlExtensionModule.postLogin(configurationAttributes, user)
+            print "Asimba. ExtensionPostlogin result: '%s'" % post_login_result
+
+            return post_login_result
+        except Exception, ex:
+            print "Asimba. ExtensionPostlogin. Failed to execute postLogin method"
+            print "Asimba. ExtensionPostlogin. Unexpected error:", ex
+            return False
+        except java.lang.Throwable, ex:
+            print "Asimba. ExtensionPostlogin. Failed to execute postLogin method"
+            ex.printStackTrace() 
+            return False
+
+    def checkUserUniqueness(self, user):
+        if self.userEnforceAttributesUniqueness == None:
+            return True
+
+        userService = CdiUtil.bean(UserService)
+
+        # Prepare user object to search by pattern
+        userBaseDn = userService.getDnForUser(None) 
+
+        userToSearch = User()
+        userToSearch.setDn(userBaseDn)
+
+        for userAttributeName in self.userEnforceAttributesUniqueness:
+            attribute_values_list = user.getAttributeValues(userAttributeName)
+            if (attribute_values_list != None) and (attribute_values_list.size() > 0):
+                userToSearch.setAttribute(userAttributeName, attribute_values_list)
+
+        users = userService.getUsersBySample(userToSearch, 1)
+        if users.size() > 0:
+            return False
+
+        return True
+
+    def getMappedUser(self, configurationAttributes, requestParameters, saml_response_attributes):
+        # Convert Saml result attributes keys to lover case
+        saml_response_normalized_attributes = HashMap()
+        for saml_response_attribute_entry in saml_response_attributes.entrySet():
+            saml_response_normalized_attributes.put(StringHelper.toLowerCase(saml_response_attribute_entry.getKey()), saml_response_attribute_entry.getValue())
+
+        currentAttributesMapping = self.prepareCurrentAttributesMapping(self.attributesMapping, configurationAttributes, requestParameters)
+        print "Asimba. Get mapped user. Using next attributes mapping '%s'" % currentAttributesMapping
+
+        newUser = User()
+
+        # Set custom object classes
+        if self.userObjectClasses != None:
+            print "Asimba. Get mapped user. User custom objectClasses to add persons: '%s'" % Util.array2ArrayList(self.userObjectClasses)
+            newUser.setCustomObjectClasses(self.userObjectClasses)
+
+        for attributesMappingEntry in currentAttributesMapping.entrySet():
+            idpAttribute = attributesMappingEntry.getKey()
+            localAttribute = attributesMappingEntry.getValue()
+
+            if self.debugEnrollment:
+                print "Asimba. Get mapped user. Trying to map '%s' into '%s'" % (idpAttribute, localAttribute)
+
+            localAttributeValue = saml_response_normalized_attributes.get(idpAttribute)
+            if localAttributeValue != None:
+                if self.debugEnrollment:
+                    print "Asimba. Get mapped user. Setting attribute '%s' value '%s'" % (localAttribute, localAttributeValue)
+                newUser.setAttribute(localAttribute, localAttributeValue)
+            else:
+                if newUser.getAttribute(localAttribute) == None:
+                    newUser.setAttribute(localAttribute, ArrayList())
+
+        return newUser
+
+    def getMappedAllAttributesUser(self, saml_response_attributes):
+        user = User()
+
+        # Set custom object classes
+        if self.userObjectClasses != None:
+            print "Asimba. Get mapped all attributes user. User custom objectClasses to add persons: '%s'" % Util.array2ArrayList(self.userObjectClasses)
+            user.setCustomObjectClasses(self.userObjectClasses)
+
+        # Prepare map to do quick mapping 
+        attributeService = CdiUtil.bean(AttributeService)
+        ldapAttributes = attributeService.getAllAttributes()
+        samlUriToAttributesMap = HashMap()
+        for ldapAttribute in ldapAttributes:
+            saml2Uri = ldapAttribute.getSaml2Uri()
+            if saml2Uri == None:
+                saml2Uri = attributeService.getDefaultSaml2Uri(ldapAttribute.getName())
+            samlUriToAttributesMap.put(saml2Uri, ldapAttribute.getName())
+
+        customAttributes = ArrayList()
+        for key in saml_response_attributes.keySet():
+            ldapAttributeName = samlUriToAttributesMap.get(key)
+            if ldapAttributeName == None:
+                print "Asimba. Get mapped all attributes user. Skipping saml attribute: '%s'" %  key
+                continue
+
+            if StringHelper.equalsIgnoreCase(ldapAttributeName, "uid"):
+                continue
+
+            attribute = CustomAttribute(ldapAttributeName)
+            attribute.setValues(saml_response_attributes.get(key))
+            customAttributes.add(attribute)
+        
+        user.setCustomAttributes(customAttributes)
+
+        return user
+
+    def getNameId(self, samlResponse, newUser):
+        if self.generateNameId:
+            saml_user_uid = self.generateNameUid(newUser)
+        else:
+            saml_user_uid = self.getSamlNameId(samlResponse)
+
+        return saml_user_uid
+
+    def getSamlNameId(self, samlResponse):
+        saml_response_name_id = samlResponse.getNameId()
+        if StringHelper.isEmpty(saml_response_name_id):
+            print "Asimba. Get Saml response. saml_response_name_id is invalid"
+            return None
+
+        print "Asimba. Get Saml response. saml_response_name_id: '%s'" % saml_response_name_id
+
+        # Use persistent Id as saml_user_uid
+        return saml_response_name_id
+
+    def generateNameUid(self, user):
+        if self.userEnforceAttributesUniqueness == None:
+            print "Asimba. Build local external uid. User enforce attributes uniqueness not specified"
+            return None
+        
+        sb = StringBuilder()
+        first = True
+        for userAttributeName in self.userEnforceAttributesUniqueness:
+            if not first:
+                sb.append("!")
+            first = False
+            attribute_values_list = user.getAttributeValues(userAttributeName)
+            if (attribute_values_list != None) and (attribute_values_list.size() > 0):
+                first_attribute_value = attribute_values_list.get(0)
+                sb.append(first_attribute_value)
+
+        return sb.toString()
+
+    def setDefaultUid(self, user, saml_user_uid):
+        if StringHelper.isEmpty(user.getUserId()):
+            user.setUserId(saml_user_uid)
diff --git a/oxAuth/Server/integrations/saml2oidc_acr_router/README.md b/oxAuth/Server/integrations/saml2oidc_acr_router/README.md
new file mode 100644
index 00000000..f356da61
--- /dev/null
+++ b/oxAuth/Server/integrations/saml2oidc_acr_router/README.md
@@ -0,0 +1,14 @@
+This is an updated version of acr_saml_router script that takes entityId-to-OIDC_acr mappings from a file on disk.
+
+Requires a single parameter "entityid_oidc_acr_map_file" containing full path to the mapping file.
+
+Mapping file's structure is as below:
+```
+{
+    "mappings": {
+        "https://sp1.site/shibboleth": "passport_saml",
+        "https://sp2.site/shibboleth": "basic_lock"
+    },
+    "default": "basic"
+}
+```
diff --git a/oxAuth/Server/integrations/saml2oidc_acr_router/saml2oidc_acr_router.py b/oxAuth/Server/integrations/saml2oidc_acr_router/saml2oidc_acr_router.py
new file mode 100644
index 00000000..cf9ed426
--- /dev/null
+++ b/oxAuth/Server/integrations/saml2oidc_acr_router/saml2oidc_acr_router.py
@@ -0,0 +1,122 @@
+# oxAuth is available under the MIT License (2008). See http://opensource.org/licenses/MIT for full text.
+# Copyright (c) 2023, Gluu
+#
+# Author: Yuriy Movchan
+# Updated by: Aliaksander Samuseu
+from org.gluu.service.cdi.util import CdiUtil
+from org.gluu.oxauth.security import Identity
+from org.gluu.oxauth.util import ServerUtil
+from org.gluu.util import StringHelper
+
+from org.gluu.model.custom.script.type.auth import PersonAuthenticationType
+
+import sys
+import json
+
+class PersonAuthentication(PersonAuthenticationType):
+    def __init__(self, currentTimeMillis):
+        self.currentTimeMillis = currentTimeMillis
+
+    def init(self, customScript, configurationAttributes):
+        print "SAML 2 OIDC ACR router script. Initialization"
+
+        if not configurationAttributes.containsKey("entityid_oidc_acr_map_file"):
+            print "SAML 2 OIDC ACR router script. Initialization. Property entityid_oidc_acr_map_file is mandatory, but it's missing. Aborting initialization..."
+            return False
+        else:
+            entityidOidcAcrMapFile = configurationAttributes.get("entityid_oidc_acr_map_file").getValue2()
+            mappings_dict = self.loadEntityidOidcAcrMap(entityidOidcAcrMapFile)
+            if (not mappings_dict):
+                print "SAML 2 OIDC ACR router script. File with SAML entityIds to OIDC ACR mappings must not be empty. Aborting initialization..."
+                return False
+            else:
+                self.entityidOidcAcrMap = mappings_dict["mappings"]
+                self.default_acr = mappings_dict["default"]
+                print "Loaded mapping configuration is:"
+                print "SAML 2 OIDC ACR mappings: %s" % (self.entityidOidcAcrMap)
+                print "Default OIDC ACR: %s" % (self.default_acr)
+
+
+        print "SAML 2 OIDC ACR router script. Initialized successfully"
+        return True   
+
+    def destroy(self, configurationAttributes):
+        print "SAML 2 OIDC ACR router script. Destroy"
+        print "SAML 2 OIDC ACR router script. Destroyed successfully"
+
+        return True
+        
+    def getAuthenticationMethodClaims(self, requestParameters):
+        return None
+
+    def getApiVersion(self):
+        return 11
+
+    def isValidAuthenticationMethod(self, usageType, configurationAttributes):
+        return False
+
+    def getAlternativeAuthenticationMethod(self, usageType, configurationAttributes):
+        #print "DEBUG OUTPUT: SAML 2 OIDC ACR router script. Processing url query arguments..."
+        # !!!Note: oxAuth stores in session only known parameters
+        # We need to add to authorizationRequestCustomAllowedParameters oxAuth property issuerId and entityId
+
+        identity = CdiUtil.bean(Identity)
+        identity.getSessionId().getSessionAttributes()
+
+        session_attributes = identity.getSessionId().getSessionAttributes()
+        if session_attributes.containsKey("issuerId") and session_attributes.containsKey("entityId"):
+
+            issuerId = session_attributes.get("issuerId")
+            entityId = session_attributes.get("entityId")
+            redirect_uri = session_attributes.get("redirect_uri")
+            #print "DEBUG OUTPUT: SAML 2 OIDC ACR router script. issuerId: %s, entityId: %s, redirect_uri: %s: " % (issuerId, entityId, redirect_uri)
+	    if entityId in self.entityidOidcAcrMap:
+		target_oidc_acr = self.entityidOidcAcrMap[entityId]
+		print "SAML 2 OIDC ACR router script. Next target OIDC ACR is chosen based on SP entityId %s: %s" % (entityId, target_oidc_acr)
+		return target_oidc_acr
+	    else:
+		print "SAML 2 OIDC ACR router script. No mapping for entityId %s is found, redirecting to the default method" % (entityId)
+		return self.default_acr
+	else:
+	    print "SAML 2 OIDC ACR router script. entityId url query parameter must be present in case of valid Shibboleth IDP authentication flow, but it's not found. Aborting the flow..."
+	    return False
+
+
+    def authenticate(self, configurationAttributes, requestParameters, step):
+        return False
+
+    def prepareForStep(self, configurationAttributes, requestParameters, step):
+        return True
+
+    def getExtraParametersForStep(self, configurationAttributes, step):
+        return None
+
+    def getCountAuthenticationSteps(self, configurationAttributes):
+        return 1
+
+    def getPageForStep(self, configurationAttributes, step):
+        return ""
+
+    def getNextStep(self, configurationAttributes, requestParameters, step):
+        return -1
+
+    def getLogoutExternalUrl(self, configurationAttributes, requestParameters):
+        return None
+
+    def logout(self, configurationAttributes, requestParameters):
+        return True
+
+    def loadEntityidOidcAcrMap(self, entityidOidcAcrMapFile):
+        entityidOidcAcrMap = None
+
+        # Load authentication configuration from file
+        f = open(entityidOidcAcrMapFile, 'r')
+        try:
+            entityidOidcAcrMap = json.loads(f.read())
+        except:
+            print "SAML 2 OIDC ACR router script. Loading entityId to OIDC ACR mappings. Failed to load the mappings from file %s" % (entityidOidcAcrMapFile)
+            return None
+        finally:
+            f.close()
+
+        return entityidOidcAcrMap
diff --git a/oxAuth/Server/integrations/smpp/smpp2FA.py b/oxAuth/Server/integrations/smpp/smpp2FA.py
new file mode 100644
index 00000000..d26e941d
--- /dev/null
+++ b/oxAuth/Server/integrations/smpp/smpp2FA.py
@@ -0,0 +1,434 @@
+# oxAuth is available under the MIT License (2008). See http://opensource.org/licenses/MIT for full text.
+# Copyright (c) 2018, Gluu
+# Copyright (c) 2019, Tele2
+
+# Author: Jose Gonzalez
+# Author: Gasmyr Mougang
+# Author: Stefan Andersson
+
+from java.util import Arrays, Date
+from java.io import IOException
+from java.lang import Enum
+
+from org.gluu.service.cdi.util import CdiUtil
+from org.gluu.oxauth.security import Identity
+from org.gluu.model.custom.script.type.auth import PersonAuthenticationType
+from org.gluu.oxauth.service import AuthenticationService
+from org.gluu.oxauth.service.common import UserService
+from org.gluu.oxauth.util import ServerUtil
+from org.gluu.util import StringHelper, ArrayHelper
+from javax.faces.application import FacesMessage
+from org.gluu.jsf2.message import FacesMessages
+
+from org.jsmpp import InvalidResponseException, PDUException
+from org.jsmpp.bean import Alphabet, BindType, ESMClass, GeneralDataCoding, MessageClass, NumberingPlanIndicator, RegisteredDelivery, SMSCDeliveryReceipt, TypeOfNumber
+from org.jsmpp.extra import NegativeResponseException, ResponseTimeoutException
+from org.jsmpp.session import BindParameter, SMPPSession
+from org.jsmpp.util import AbsoluteTimeFormatter, TimeFormatter
+import random
+
+
+class SmppAttributeError(Exception):
+    pass
+
+
+class PersonAuthentication(PersonAuthenticationType):
+    def __init__(self, currentTimeMillis):
+        self.currentTimeMillis = currentTimeMillis
+        self.identity = CdiUtil.bean(Identity)
+
+    def get_and_parse_smpp_config(self, config, attribute, _type = None,  convert = False, optional = False, default_desc = None):
+        try:
+            value = config.get(attribute).getValue2()
+        except:
+            if default_desc:
+                default_desc = " using default '{}'".format(default_desc)
+            else:
+                default_desc = ""
+
+            if optional:
+                raise SmppAttributeError("SMPP missing optional configuration attribute '{}'{}".format(attribute, default_desc))
+            else:
+                raise SmppAttributeError("SMPP missing required configuration attribute '{}'".format(attribute))
+
+        if _type and issubclass(_type, Enum):
+            try:
+                return getattr(_type, value)
+            except AttributeError:
+                raise SmppAttributeError("SMPP could not find attribute '{}' in {}".format(attribute, _type))
+
+        if convert:
+            try:
+                value = int(value)
+            except AttributeError:
+                try:
+                    value = int(value, 16)
+                except AttributeError:
+                    raise SmppAttributeError("SMPP could not parse value '{}' of attribute '{}'".format(value, attribute))
+
+        return value
+
+    def init(self, customScript, configurationAttributes):
+        print("SMPP Initialization")
+
+        self.TIME_FORMATTER = AbsoluteTimeFormatter()
+
+        self.SMPP_SERVER = None
+        self.SMPP_PORT = None
+
+        self.SYSTEM_ID = None
+        self.PASSWORD = None
+
+        # Setup some good defaults for TON, NPI and source (from) address
+        # TON (Type of Number), NPI (Number Plan Indicator)
+        self.SRC_ADDR_TON = TypeOfNumber.ALPHANUMERIC    # Alphanumeric
+        self.SRC_ADDR_NPI = NumberingPlanIndicator.ISDN  # ISDN (E163/E164)
+        self.SRC_ADDR = "Gluu OTP"
+
+        # Don't touch these unless you know what your doing, we don't handle number reformatting for
+        # any other type than international.
+        self.DST_ADDR_TON = TypeOfNumber.INTERNATIONAL   # International
+        self.DST_ADDR_NPI = NumberingPlanIndicator.ISDN  # ISDN (E163/E164)
+
+        # Priority flag and data_coding bits
+        self.PRIORITY_FLAG = 3  # Very Urgent (ANSI-136), Emergency (IS-95)
+        self.DATA_CODING_ALPHABET = Alphabet.ALPHA_DEFAULT  # SMS default alphabet
+        self.DATA_CODING_MESSAGE_CLASS = MessageClass.CLASS1  # EM (Mobile Equipment (mobile memory), normal message
+
+        # Required server settings
+        try:
+            self.SMPP_SERVER = self.get_and_parse_smpp_config(configurationAttributes, "smpp_server")
+        except SmppAttributeError as e:
+            print(e)
+
+        try:
+            self.SMPP_PORT = self.get_and_parse_smpp_config(configurationAttributes, "smpp_port", convert = True)
+        except SmppAttributeError as e:
+            print(e)
+
+        if None in (self.SMPP_SERVER, self.SMPP_PORT):
+            print("SMPP smpp_server and smpp_port is empty, will not enable SMPP service")
+            return False
+
+        # Optional system_id and password for bind auth
+        try:
+            self.SYSTEM_ID = self.get_and_parse_smpp_config(configurationAttributes, "system_id", optional = True)
+        except SmppAttributeError as e:
+            print(e)
+
+        try:
+            self.PASSWORD = self.get_and_parse_smpp_config(configurationAttributes, "password", optional = True)
+        except SmppAttributeError as e:
+            print(e)
+
+        if None in (self.SYSTEM_ID, self.PASSWORD):
+            print("SMPP Authentication disabled")
+
+        # From number and to number settings
+        try:
+            self.SRC_ADDR_TON = self.get_and_parse_smpp_config(
+                configurationAttributes,
+                "source_addr_ton",
+                _type = TypeOfNumber,
+                optional = True,
+                default_desc = self.SRC_ADDR_TON
+            )
+        except SmppAttributeError as e:
+            print(e)
+
+        try:
+            self.SRC_ADDR_NPI = self.get_and_parse_smpp_config(
+                configurationAttributes,
+                "source_addr_npi",
+                _type = NumberingPlanIndicator,
+                optional = True,
+                default_desc = self.SRC_ADDR_NPI
+            )
+        except SmppAttributeError as e:
+            print(e)
+
+        try:
+            self.SRC_ADDR = self.get_and_parse_smpp_config(
+                configurationAttributes,
+                "source_addr",
+                optional = True,
+                default_desc = self.SRC_ADDR
+            )
+        except SmppAttributeError as e:
+            print(e)
+
+        try:
+            self.DST_ADDR_TON = self.get_and_parse_smpp_config(
+                configurationAttributes,
+                "dest_addr_ton",
+                _type = TypeOfNumber,
+                optional = True,
+                default_desc = self.DST_ADDR_TON
+            )
+        except SmppAttributeError as e:
+            print(e)
+
+        try:
+            self.DST_ADDR_NPI = self.get_and_parse_smpp_config(
+                configurationAttributes,
+                "dest_addr_npi",
+                _type = NumberingPlanIndicator,
+                optional = True,
+                default_desc = self.DST_ADDR_NPI
+            )
+        except SmppAttributeError as e:
+            print(e)
+
+        # Priority flag and data coding, don't touch these unless you know what your doing...
+        try:
+            self.PRIORITY_FLAG = self.get_and_parse_smpp_config(
+                configurationAttributes,
+                "priority_flag",
+                convert = True,
+                optional = True,
+                default_desc = "3 (Very Urgent, Emergency)"
+            )
+        except SmppAttributeError as e:
+            print(e)
+
+        try:
+            self.DATA_CODING_ALPHABET = self.get_and_parse_smpp_config(
+                configurationAttributes,
+                "data_coding_alphabet",
+                _type = Alphabet,
+                optional = True,
+                default_desc = self.DATA_CODING_ALPHABET
+            )
+        except SmppAttributeError as e:
+            print(e)
+
+        try:
+            self.DATA_CODING_MESSAGE_CLASS = self.get_and_parse_smpp_config(
+                configurationAttributes,
+                "data_coding_alphabet",
+                _type = MessageClass,
+                optional = True,
+                default_desc = self.DATA_CODING_MESSAGE_CLASS
+            )
+        except SmppAttributeError as e:
+            print(e)
+
+        print("SMPP Initialized successfully")
+        return True
+
+    def destroy(self, configurationAttributes):
+        print("SMPP Destroy")
+        print("SMPP Destroyed successfully")
+        return True
+
+    def getApiVersion(self):
+        return 11
+        
+    def getAuthenticationMethodClaims(self, requestParameters):
+        return None
+        
+    def isValidAuthenticationMethod(self, usageType, configurationAttributes):
+        return True
+
+    def getAlternativeAuthenticationMethod(self, usageType, configurationAttributes):
+        return None
+
+    def authenticate(self, configurationAttributes, requestParameters, step):
+        userService = CdiUtil.bean(UserService)
+        authenticationService = CdiUtil.bean(AuthenticationService)
+
+        facesMessages = CdiUtil.bean(FacesMessages)
+        facesMessages.setKeepMessages()
+
+        session_attributes = self.identity.getSessionId().getSessionAttributes()
+        form_passcode = ServerUtil.getFirstValue(requestParameters, "passcode")
+
+        print("SMPP form_response_passcode: {}".format(str(form_passcode)))
+
+        if step == 1:
+            print("SMPP Step 1 Password Authentication")
+            credentials = self.identity.getCredentials()
+
+            user_name = credentials.getUsername()
+            user_password = credentials.getPassword()
+
+            logged_in = False
+            if StringHelper.isNotEmptyString(user_name) and StringHelper.isNotEmptyString(user_password):
+                logged_in = authenticationService.authenticate(user_name, user_password)
+
+            if not logged_in:
+                return False
+
+            # Get the Person's number and generate a code
+            foundUser = None
+            try:
+                foundUser = authenticationService.getAuthenticatedUser()
+            except:
+                print("SMPP Error retrieving user {} from LDAP".format(user_name))
+                return False
+
+            mobile_number = None
+            try:
+                isVerified = foundUser.getAttribute("phoneNumberVerified")
+                if isVerified:
+                    mobile_number = foundUser.getAttribute("employeeNumber")
+                if not mobile_number:
+                    mobile_number = foundUser.getAttribute("mobile")
+                if not mobile_number:
+                    mobile_number = foundUser.getAttribute("telephoneNumber")
+                if not mobile_number:
+                    facesMessages.add(FacesMessage.SEVERITY_ERROR, "Failed to determine mobile phone number")
+                    print("SMPP Error finding mobile number for user '{}'".format(user_name))
+                    return False
+            except Exception as e:
+                facesMessages.add(FacesMessage.SEVERITY_ERROR, "Failed to determine mobile phone number")
+                print("SMPP Error finding mobile number for {}: {}".format(user_name, e))
+                return False
+
+            # Generate Random six digit code
+            code = random.randint(100000, 999999)
+
+            # Get code and save it in LDAP temporarily with special session entry
+            self.identity.setWorkingParameter("code", code)
+
+            self.identity.setWorkingParameter("mobile_number", mobile_number)
+            self.identity.getSessionId().getSessionAttributes().put("mobile_number", mobile_number)
+            if not self.sendMessage(mobile_number, str(code)):
+                facesMessages.add(FacesMessage.SEVERITY_ERROR, "Failed to send message to mobile phone")
+                return False
+
+            return True
+        elif step == 2:
+            # Retrieve the session attribute
+            print("SMPP Step 2 SMS/OTP Authentication")
+            code = session_attributes.get("code")
+            print("SMPP Code: {}".format(str(code)))
+
+            if code is None:
+                print("SMPP Failed to find previously sent code")
+                return False
+
+            if form_passcode is None:
+                print("SMPP Passcode is empty")
+                return False
+
+            if len(form_passcode) != 6:
+                print("SMPP Passcode from response is not 6 digits: {}".format(form_passcode))
+                return False
+
+            if form_passcode == code:
+                print("SMPP SUCCESS! User entered the same code!")
+                return True
+
+            print("SMPP failed, user entered the wrong code! {} != {}".format(form_passcode, code))
+            facesMessages.add(facesMessage.SEVERITY_ERROR, "Incorrect SMS code, please try again.")
+            return False
+
+        print("SMPP ERROR: step param not found or != (1|2)")
+        return False
+
+    def prepareForStep(self, configurationAttributes, requestParameters, step):
+        if step == 1:
+            print("SMPP Prepare for Step 1")
+            return True
+        elif step == 2:
+            print("SMPP Prepare for Step 2")
+            return True
+
+        return False
+
+    def getExtraParametersForStep(self, configurationAttributes, step):
+        if step == 2:
+            return Arrays.asList("code")
+
+        return None
+
+    def getCountAuthenticationSteps(self, configurationAttributes):
+        return 2
+
+    def getPageForStep(self, configurationAttributes, step):
+        if step == 2:
+            return "/auth/otp_sms/otp_sms.xhtml"
+
+        return ""
+
+    def getNextStep(self, configurationAttributes, requestParameters, step):
+        return -1
+
+    def getLogoutExternalUrl(self, configurationAttributes, requestParameters):
+        print "Get external logout URL call"
+        return None
+
+    def logout(self, configurationAttributes, requestParameters):
+        return True
+
+    def sendMessage(self, number, code):
+        status = False
+        session = SMPPSession()
+        session.setTransactionTimer(10000)
+
+        # We only handle international destination number reformatting.
+        # All others may vary by configuration decisions taken on SMPP
+        # server side which we have no clue about.
+        if self.DST_ADDR_TON == TypeOfNumber.INTERNATIONAL and number.startswith("+"):
+            number = number[1:]
+
+        try:
+            print("SMPP Connecting")
+            reference_id = session.connectAndBind(
+                self.SMPP_SERVER,
+                self.SMPP_PORT,
+                BindParameter(
+                    BindType.BIND_TX,
+                    self.SYSTEM_ID,
+                    self.PASSWORD,
+                    None,
+                    self.SRC_ADDR_TON,
+                    self.SRC_ADDR_NPI,
+                    None
+                )
+            )
+            print("SMPP Connected to server with system id {}".format(reference_id))
+
+            try:
+                message_id = session.submitShortMessage(
+                    "CMT",
+                    self.SRC_ADDR_TON,
+                    self.SRC_ADDR_NPI,
+                    self.SRC_ADDR,
+                    self.DST_ADDR_TON,
+                    self.DST_ADDR_NPI,
+                    number,
+                    ESMClass(),
+                    0,
+                    self.PRIORITY_FLAG,
+                    self.TIME_FORMATTER.format(Date()),
+                    None,
+                    RegisteredDelivery(SMSCDeliveryReceipt.DEFAULT),
+                    0,
+                    GeneralDataCoding(
+                        self.DATA_CODING_ALPHABET,
+                        self.DATA_CODING_MESSAGE_CLASS,
+                        False
+                    ),
+                    0,
+                    code
+                )
+                print("SMPP Message '{}' sent to #{} with message id {}".format(code, number, message_id))
+                status = True
+            except PDUException as e:
+                print("SMPP Invalid PDU parameter: {}".format(e))
+            except ResponseTimeoutException as e:
+                print("SMPP Response timeout: {}".format(e))
+            except InvalidResponseException as e:
+                print("SMPP Receive invalid response: {}".format(e))
+            except NegativeResponseException as e:
+                print("SMPP Receive negative response: {}".format(e))
+            except IOException as e:
+                print("SMPP IO error occured: {}".format(e))
+            finally:
+                session.unbindAndClose()
+        except IOException as e:
+            print("SMPP Failed connect and bind to host: {}".format(e))
+
+        return status
diff --git a/oxAuth/Server/integrations/stytch/README.md b/oxAuth/Server/integrations/stytch/README.md
new file mode 100644
index 00000000..a58024d5
--- /dev/null
+++ b/oxAuth/Server/integrations/stytch/README.md
@@ -0,0 +1,104 @@
+# Stytch one time passcodes over SMS
+
+## Overview 
+Integrate Stytch one-time passcodes as your multi-factor authentication solution.
+This document explains how to configure the Gluu Server for two-step, two-factor authentication (2FA) with username / password as the first step, and an OTP sent via text message as the second step. 
+
+    
+## Prerequisites 
+
+- A Gluu Server (installation instructions [here](../installation-guide/index.md));    
+- The [Stytch SMS OTP script](https://github.com/GluuFederation/oxAuth/blob/master/Server/integrations/stytch/stytchExternalAuthenticator.py)    
+
+- A mobile device and phone number that can receive SMS text messages
+
+
+## Properties
+
+The custom script has the following properties:    
+|	Property	        |	Description		                                      |	Example	|
+|-----------------------|-------------------------------|---------------|
+|SMS_ENDPOINT		    |https://stytch.com/docs/api/send-otp-by-sms              |`https://test.stytch.com/v1/otps/sms/send`|
+|AUTH_ENDPOINT 		    |https://stytch.com/docs/api/authenticate-otp             |`https://test.stytch.com/v1/otps/authenticate`|
+|ENROLL_ENDPOINT	    |https://stytch.com/docs/api/log-in-or-create-user-by-sms |`https://test.stytch.com/v1/otps/sms/login_or_create`|
+|PROJECT_ID 		    |Project id provided by Stytch.                           |`project-test-dd1403b3-dd92-33c6-91dd-ddcde970a61e`|
+|SECRET		            |secret provided by Stytch.                               |`secret-test-dd1403b3-dd92-33c6-91dd-ddcde970a61e`|
+
+
+## Enable stytch acr
+
+### Add the custom script
+
+1.  Log into oxTrust with admin credentials
+
+1.  Visit `Configuration` > `Person Authentication Scripts`. At the bottom click on `Add custom script configuration` and fill values as follows:
+
+    - For `name` use a meaningful identifier, like `stytch`
+    
+    - In the `script` field use the contents of this [file](https://github.com/GluuFederation/oxAuth/raw/version_4.5.1/Server/integrations/stytch/stytchExternalAuthenticator.py)
+    
+    - Tick the `enabled` checkbox
+    
+    - For the rest of fields, you can accept the defaults
+    
+1.  Click on `Add new property`. On the left enter `SMS_ENDPOINT` on the right copy the corresponding value you will find in your stytch account https://stytch.com/docs/api/send-otp-by-sms 
+
+1.  Repeat the process for `AUTH_ENDPOINT`, `ENROLL_ENDPOINT`, `PROJECT_ID` and `SECRET`
+
+1.  Scroll down and click on the `Update` button at the bottom of the page
+Now Stytch is an available authentication mechanism for your Gluu Server. This means that, using OpenID Connect `acr_values`, applications can now request OTP SMS authentication for users. 
+
+!!! Note 
+    To make sure Stytch has been enabled successfully, you can check your Gluu Server's OpenID Connect configuration by navigating to the following URL: `https://<hostname>/.well-known/openid-configuration`. Find `"acr_values_supported":` and you should see `"stytch"`. 
+
+## Make Stytch the Default
+If Stytch should be the default authentication mechanism, follow these instructions: 
+
+1. Navigate to `Configuration` > `Manage Authentication`. 
+
+1. Select the `Default Authentication Method` tab. 
+
+1. In the Default Authentication Method window you will see two options: `Default acr` and `oxTrust acr`. 
+
+ - `oxTrust acr` sets the authentication mechanism for accessing the oxTrust dashboard GUI (only managers should have acccess to oxTrust).    
+
+ - `Default acr` sets the default authentication mechanism for accessing all applications that leverage your Gluu Server for authentication (unless otherwise specified).    
+
+If Stytch should be the default authentication mechanism for all access, change both fields to stytch.  
+    
+## SMS OTP Login Pages
+
+The Gluu Server includes one page for SMS OTP:
+
+1. A **login** page that is displayed for all SMS OTP authentications. 
+![sms](../img/user-authn/sms.png)
+
+The designs are being rendered from the [SMS xhtml page](https://github.com/GluuFederation/oxAuth/blob/master/Server/src/main/webapp/auth/otp_sms/otp_sms.xhtml). To customize the look and feel of the pages, follow the [customization guide](../operation/custom-design.md).
+
+
+## Using SMS OTP
+
+### Phone Number Enrollment
+
+The script assumes the user phone number is already stored in his corresponding LDAP entry (attribute `phoneNumberVerified`). You can change the attribute by altering the script directly (see authenticate routine).
+
+### Subsequent Logins
+All <!--subsequent--> authentications will trigger an SMS with an OTP to the registered phone number. Enter the OTP to pass authentication. 
+
+### Credential Management
+    
+A user's registered phone number can be removed by a Gluu administrator either via the oxTrust UI in `Users` > `Manage People`, or in LDAP under the user entry. Once the phone number has been removed from the user's account, the user can re-enroll a new phone number following the [phone number enrollment](#phone-number-enrollment) instructions above. 
+
+## Troubleshooting    
+If problems are encountered, take a look at the logs, specifically `/opt/gluu/jetty/oxauth/logs/oxauth_script.log`. Inspect all messages related to Stytch. For instance, the following messages show an example of correct script initialization:
+
+```
+Stytch Initialization
+Stytch Initialized successfully
+```
+
+Also make sure you are using the latest version of the script that can be found [here](https://github.com/GluuFederation/oxAuth/blob/master/Server/integrations/stytch/stytchExternalAuthenticator.py).
+
+## Self-service account security
+
+To offer end-users a portal where they can manage their own account security preferences, including two-factor authentication credentials like phone numbers for SMS OTP, check out our new app, [Gluu Casa](https://casa.gluu.org). 
diff --git a/oxAuth/Server/integrations/stytch/stytchExternalAuthenticator.py b/oxAuth/Server/integrations/stytch/stytchExternalAuthenticator.py
new file mode 100644
index 00000000..b2072b70
--- /dev/null
+++ b/oxAuth/Server/integrations/stytch/stytchExternalAuthenticator.py
@@ -0,0 +1,378 @@
+# Author: Madhumita Subramaniam
+from java.util import Arrays, Date
+from java.io import IOException
+from java.lang import Enum
+from org.gluu.oxauth.service.net import HttpService
+from org.gluu.service.cdi.util import CdiUtil
+from org.gluu.oxauth.security import Identity
+from org.gluu.model.custom.script.type.auth import PersonAuthenticationType
+from org.gluu.oxauth.service import AuthenticationService
+from org.gluu.oxauth.service.common import UserService
+from org.gluu.oxauth.util import ServerUtil
+from org.gluu.util import StringHelper, ArrayHelper
+from javax.faces.application import FacesMessage
+from org.gluu.jsf2.message import FacesMessages
+import base64
+try:
+    import json
+except ImportError:
+    import simplejson as json
+import random
+
+class PersonAuthentication(PersonAuthenticationType):
+    def __init__(self, currentTimeMillis):
+        self.currentTimeMillis = currentTimeMillis
+        self.identity = CdiUtil.bean(Identity)
+
+    def init(self, customScript, configurationAttributes):
+        print("Stytch. Initialization")
+
+        if not configurationAttributes.containsKey("SMS_ENDPOINT"):
+            print "Stytch. Initialization. Property SMS_ENDPOINT is mandatory"
+            return False
+        self.SMS_ENDPOINT = configurationAttributes.get("SMS_ENDPOINT").getValue2()
+        
+        if not configurationAttributes.containsKey("AUTH_ENDPOINT"):
+            print "Stytch. Initialization. Property AUTH_ENDPOINT is mandatory"
+            return False
+        self.AUTH_ENDPOINT = configurationAttributes.get("AUTH_ENDPOINT").getValue2()
+        
+        if not configurationAttributes.containsKey("ENROLL_ENDPOINT"):
+            print "Stytch. Initialization. Property ENROLL_ENDPOINT is mandatory"
+            return False
+        self.ENROLL_ENDPOINT = configurationAttributes.get("ENROLL_ENDPOINT").getValue2()
+        
+        if not configurationAttributes.containsKey("PROJECT_ID"):
+            print "Stytch. Initialization. Property PROJECT_ID is mandatory"
+            return False
+        self.PROJECT_ID = configurationAttributes.get("PROJECT_ID").getValue2()
+        
+        
+        if not configurationAttributes.containsKey("SECRET"):
+            print "Stytch. Initialization. Property SECRET is mandatory"
+            return False
+        self.SECRET = configurationAttributes.get("SECRET").getValue2()       
+
+        print("Stytch Initialized successfully")
+        return True
+
+    def destroy(self, configurationAttributes):
+        print("Stytch Destroy")
+        print("Stytch Destroyed successfully")
+        return True
+
+    def getApiVersion(self):
+        return 11
+        
+    def getAuthenticationMethodClaims(self, requestParameters):
+        return None
+        
+    def isValidAuthenticationMethod(self, usageType, configurationAttributes):
+        return True
+
+    def getAlternativeAuthenticationMethod(self, usageType, configurationAttributes):
+        return None
+
+    def authenticate(self, configurationAttributes, requestParameters, step):
+        userService = CdiUtil.bean(UserService)
+        authenticationService = CdiUtil.bean(AuthenticationService)
+
+        facesMessages = CdiUtil.bean(FacesMessages)
+        facesMessages.setKeepMessages()
+
+        session_attributes = self.identity.getSessionId().getSessionAttributes()
+        if step == 1:
+            print("Stytch Step 1 Password Authentication")
+            credentials = self.identity.getCredentials()
+
+            user_name = credentials.getUsername()
+            user_password = credentials.getPassword()
+
+            logged_in = False
+            if StringHelper.isNotEmptyString(user_name) and StringHelper.isNotEmptyString(user_password):
+                logged_in = authenticationService.authenticate(user_name, user_password)
+
+            if not logged_in:
+                return False
+
+            foundUser = None
+            try:
+                foundUser = authenticationService.getAuthenticatedUser()
+            except:
+                print("Stytch Error retrieving user {} from LDAP".format(user_name))
+                return False
+
+            mobile_number = None
+            try:
+                isVerified = foundUser.getAttribute("phoneNumberVerified")
+                if isVerified:
+                    mobile_number = foundUser.getAttribute("employeeNumber")
+                if not mobile_number:
+                    mobile_number = foundUser.getAttribute("mobile")
+                if not mobile_number:
+                    mobile_number = foundUser.getAttribute("telephoneNumber")
+                if not mobile_number:
+                    facesMessages.add(FacesMessage.SEVERITY_ERROR, "Failed to determine mobile phone number")
+                    print("Stytch Error finding mobile number for user '{}'".format(user_name))
+                    return False
+            except Exception as e:
+                facesMessages.add(FacesMessage.SEVERITY_ERROR, "Failed to determine mobile phone number")
+                print("Stytch Error finding mobile number for {}: {}".format(user_name, e))
+                return False
+
+            self.identity.setWorkingParameter("mobile_number", mobile_number)
+            self.identity.getSessionId().getSessionAttributes().put("mobile_number", mobile_number)
+            
+            mobileDevices = self.getUserAttributeValue(user_name, "oxMobileDevices")
+            if mobileDevices is None: 
+                # enrollment 
+                print "No phones registered. Adding %s " % mobile_number
+                phone_id = self.addUser(mobile_number, user_name)
+                if phone_id is not None:
+                    self.identity.setWorkingParameter("phone_id", phone_id)
+                    print "phone_id to which SMS has been sent: %s" % phone_id 
+                    return True
+                # if enroll is success, send sms and move on to step 2
+                else:
+                    print "Failed to send sms to user. In the next login attempt, user will be prompted for passcode anyway, so it is safe to return true"
+                    return True
+                ### end of enrollment
+                
+            # already contains registered mobiles
+            print "mobileDevices: %s" % mobileDevices
+            data = json.loads(mobileDevices)
+            for phone in data['phones']:
+                print "phone number : %s " % phone['number'] 
+                print "mobile_number : %s" % mobile_number
+                if StringHelper.equals(mobile_number.strip('+'), phone['number'].strip('+')):
+                    phone_id = phone['stytch_phone_id']
+                    print "phone_id stored in oxMobileDevices: %s " % phone_id
+                    if StringHelper.isNotEmptyString(phone_id) :
+                        ### authentication
+                        self.identity.setWorkingParameter("phone_id", phone_id)
+                        phone_id = self.sendPasscodeSMSToUser(mobile_number)
+                        print "SendPasscodeSMSToUser: %s " % phone_id
+                        if  self.sendPasscodeSMSToUser(mobile_number) is None:
+                            facesMessages.add(FacesMessage.SEVERITY_ERROR, "Failed to send message to mobile phone")
+                            return False
+                        else:
+                            print "SMS sent successfully"
+                            return True
+                        ### end of authentication
+                    else: 
+                        # enrollment.
+                        phone_id = self.addUser(mobile_number, user_name)
+                        if phone_id is not None:
+                            self.identity.setWorkingParameter("phone_id", phone_id)
+                            print "phone_id to which SMS has been sent: %s" % phone_id 
+                            return True
+                        # if enroll is success, send sms and move on to step 2
+                        else:
+                            print "Failed to send sms to user. In the next login attempt, user will be prompted for passcode anyway, so it is safe to return true"
+                            return True
+                        ### end of enrollment
+                    
+            return False
+        elif step == 2:
+            form_passcode = ServerUtil.getFirstValue(requestParameters, "passcode")
+            print("Stytch form_response_passcode: {}".format(str(form_passcode)))
+            phone_id = session_attributes.get("phone_id")
+            print("Stytch phone_id: {}".format(str(phone_id)))
+
+            if phone_id is None:
+                print("Stytch Failed to find phone_id in session")
+                return False
+
+            if form_passcode is None:
+                print("Stytch Passcode is empty")
+                return False
+
+            if len(form_passcode) != 6:
+                print("Stytch Passcode from response is not 6 digits: {}".format(form_passcode))
+                return False
+
+            #use the phone_id to send the request for authentication
+            result = self.verifyPasscode(phone_id, form_passcode)
+            if result is False:
+                print("Stytch failed, user entered the wrong code! {} ".format(form_passcode))
+                facesMessages.add(FacesMessage.SEVERITY_ERROR, "Incorrect SMS code, please try again.")
+            else: 
+                return True
+
+        print("Stytch ERROR: step param not found or != (1|2)")
+        return False
+
+    def prepareForStep(self, configurationAttributes, requestParameters, step):
+        if step == 1:
+            print("Stytch Prepare for Step 1")
+            return True
+        elif step == 2:
+            print("Stytch Prepare for Step 2")
+            return True
+
+        return False
+
+    def getExtraParametersForStep(self, configurationAttributes, step):
+        if step == 2:
+            return Arrays.asList("phone_id")
+        return None
+
+    def getCountAuthenticationSteps(self, configurationAttributes):
+        return 2
+
+    def getPageForStep(self, configurationAttributes, step):
+        if step == 2:
+            return "/auth/otp_sms/otp_sms.xhtml"
+        return ""
+
+    def getNextStep(self, configurationAttributes, requestParameters, step):
+        return -1
+
+    def getLogoutExternalUrl(self, configurationAttributes, requestParameters):
+        print "Get external logout URL call"
+        return None
+
+    def logout(self, configurationAttributes, requestParameters):
+        return True
+
+
+    def sendPasscodeSMSToUser(self, phoneNumber):
+        httpService = CdiUtil.bean(HttpService)
+
+        http_client = httpService.getHttpsClient()
+        http_client_params = http_client.getParams()  
+        
+        data = {"phone_number": phoneNumber    }
+        payload = json.dumps(data) 
+        encodedString = base64.b64encode((self.PROJECT_ID +":"+self.SECRET).encode('utf-8'))
+        headers = {  "Accept" : "application/json"  }
+        try:
+            http_service_response = httpService.executePost(http_client, self.SMS_ENDPOINT, encodedString, headers, payload)
+            http_response = http_service_response.getHttpResponse()
+            print "http_response sendPasscodeSMSToUser%s" % http_response
+        except:
+            print "Stytch. Exception: sendPasscodeSMSToUser", sys.exc_info()[1]
+            return None
+
+        try:
+            if not httpService.isResponseStastusCodeOk(http_response):
+                print "Stytch. sendPasscodeSMSToUser: %s" % str(http_response.getStatusLine().getStatusCode())
+                httpService.consume(http_response)
+                return None
+            else :
+                response_bytes = httpService.getResponseContent(http_response)
+                response_string = httpService.convertEntityToString(response_bytes)
+                httpService.consume(http_response)
+                response = json.loads(response_string)
+                phone_id = response["phone_id"]
+                return phone_id
+        finally:
+            http_service_response.closeConnection()
+
+        return None
+    
+    def verifyPasscode(self, method_id, code):
+        httpService = CdiUtil.bean(HttpService)
+
+        http_client = httpService.getHttpsClient()
+        http_client_params = http_client.getParams()  
+        
+        data = {"method_id": method_id, "code": code    }
+        payload = json.dumps(data) 
+        encodedString = base64.b64encode((self.PROJECT_ID +":"+self.SECRET).encode('utf-8'))
+        headers = {  "Accept" : "application/json" }
+        try:
+            
+            http_service_response = httpService.executePost(http_client, self.AUTH_ENDPOINT, encodedString, headers, payload)
+            http_response = http_service_response.getHttpResponse()
+            print "http_response verifyPasscode - %s" % http_response
+        except:
+            print "Stytch. Exception: verifyPasscode", sys.exc_info()[1]
+            return False
+
+        try:
+            if not httpService.isResponseStastusCodeOk(http_response):
+                print "Stytch. Verify passcode: ", str(http_response.getStatusLine().getStatusCode())
+                httpService.consume(http_response)
+                return False
+            else :
+                print "Stytch. User verified"
+                return True
+        finally:
+            http_service_response.closeConnection()
+
+        return False
+ 
+    def hasEnrollments(self, configurationAttributes, user):
+        return len(self.getNumbers(user)) > 0
+    
+    def getNumbers(self, user):
+        numbers = set()
+
+        tmp = user.getAttributeValues("mobile")
+        if tmp:
+            for t in tmp:
+                numbers.add(t)
+
+        return list(numbers)
+    
+    def getUserAttributeValue(self, user_name, attribute_name):
+        if StringHelper.isEmpty(user_name):
+            return None
+        userService = CdiUtil.bean(UserService)
+        find_user_by_uid = userService.getUser(user_name, attribute_name)
+        if find_user_by_uid == None:
+            return None
+        custom_attribute_value = userService.getCustomAttribute(find_user_by_uid, attribute_name)
+        if custom_attribute_value == None:
+            return None
+        attribute_value = custom_attribute_value.getValue()
+        print "Stytch. Get user attribute. User's %s attribute %s value is %s" % (user_name, attribute_name, attribute_value)
+        return attribute_value
+    
+    def addUser(self, phoneNumber, gluu_user_name):
+        httpService = CdiUtil.bean(HttpService)
+        http_client = httpService.getHttpsClient()
+        userService = CdiUtil.bean(UserService)
+        data = {"phone_number": phoneNumber    }
+        payload = json.dumps(data) 
+        encodedString = base64.b64encode((self.PROJECT_ID +":"+self.SECRET).encode('utf-8'))
+        headers = {  "Accept" : "application/json" }
+        try:
+            http_service_response = httpService.executePost(http_client, self.ENROLL_ENDPOINT, encodedString, headers, payload)
+            http_response = http_service_response.getHttpResponse()
+            print "http_response %s addUser" % http_response
+        except:
+            print "Stytch. Exception: addUser ", sys.exc_info()[1]
+            return None
+        try:
+            responseStatusCode = http_response.getStatusLine().getStatusCode();
+            print "Stytch. response: %s " % str(http_response.getStatusLine().getStatusCode())
+            if responseStatusCode == 200 or responseStatusCode == 201:
+                response_bytes = httpService.getResponseContent(http_response)
+                response_string = httpService.convertEntityToString(response_bytes)
+                httpService.consume(http_response)
+                response = json.loads(response_string)
+                phone_id = response["phone_id"]
+                user_id  = response["user_id"]
+                print "phone id %s " % phone_id
+                print "user id %s " % user_id
+                find_user_by_uid = userService.getUser(gluu_user_name)
+                
+                oxMobileDevices = json.dumps({'phones': [{'nickname': "Stych Credential", 'number': phoneNumber, 'stytch_phone_id': phone_id, 'stytch_user_id':user_id, 'addedOn': Date().getTime()}]})
+                
+                userService.setCustomAttribute(find_user_by_uid, "oxMobileDevices", oxMobileDevices)
+                updated_user = userService.updateUser(find_user_by_uid)
+                if updated_user is not None:
+                    return phone_id
+                else:
+                    print "Stytch. Failed to update user - addUser"
+            else:
+                print "Stytch. Add user response: ", str(http_response.getStatusLine().getStatusCode())
+                httpService.consume(http_response)
+                return None
+                
+        finally:
+            http_service_response.closeConnection()
+
+        return None
\ No newline at end of file
diff --git a/oxAuth/Server/integrations/super_gluu/SuperGluuExternalAuthenticator.py b/oxAuth/Server/integrations/super_gluu/SuperGluuExternalAuthenticator.py
new file mode 100644
index 00000000..0df43b93
--- /dev/null
+++ b/oxAuth/Server/integrations/super_gluu/SuperGluuExternalAuthenticator.py
@@ -0,0 +1,1164 @@
+# oxAuth is available under the MIT License (2008). See http://opensource.org/licenses/MIT for full text.
+# Copyright (c) 2016, Gluu
+#
+# Author: Yuriy Movchan
+#
+
+from com.google.android.gcm.server import Sender, Message
+from java.util import Arrays
+from org.apache.http.params import CoreConnectionPNames
+from org.apache.http.entity import ContentType
+from org.gluu.service.cdi.util import CdiUtil
+from org.gluu.oxauth.security import Identity
+from org.gluu.model.custom.script.type.auth import PersonAuthenticationType
+from org.gluu.oxauth.model.config import ConfigurationFactory
+from org.gluu.oxauth.service import AuthenticationService, SessionIdService
+from org.gluu.oxauth.service.fido.u2f import DeviceRegistrationService
+from org.gluu.oxauth.service.net import HttpService, HttpService2
+from org.gluu.oxauth.util import ServerUtil
+from org.gluu.util import StringHelper
+from org.gluu.oxauth.service.common import EncryptionService, UserService
+from org.gluu.service import MailService
+from org.gluu.oxauth.service.push.sns import PushPlatform, PushSnsService 
+from org.gluu.oxnotify.client import NotifyClientFactory 
+from java.util import Arrays, HashMap, Collections, IdentityHashMap, Date
+from java.time import ZonedDateTime
+from java.time.format import DateTimeFormatter
+
+from org.gluu.oxauth.service.custom import CustomScriptService
+
+import sys
+import json
+import base64
+import datetime
+import urllib
+import token
+
+try:
+    from com.notnoop.apns import APNS
+    has_apns = True
+except ImportError:
+    print "Super-Gluu. Load. Native APNS will be disabled. There are missing libs needed to enable it"
+    has_apns = False
+
+class PersonAuthentication(PersonAuthenticationType):
+    def __init__(self, currentTimeMillis):
+        self.currentTimeMillis = currentTimeMillis
+
+    def init(self, customScript, configurationAttributes):
+        print "Super-Gluu. Initialization"
+        
+        self.debugMode = False
+
+        if not configurationAttributes.containsKey("authentication_mode"):
+            print "Super-Gluu. Initialization. Property authentication_mode is mandatory"
+            return False
+
+        self.applicationId = None
+        if configurationAttributes.containsKey("application_id"):
+            self.applicationId = configurationAttributes.get("application_id").getValue2()
+
+        self.registrationUri = None
+        if configurationAttributes.containsKey("registration_uri"):
+            self.registrationUri = configurationAttributes.get("registration_uri").getValue2()
+
+        authentication_mode = configurationAttributes.get("authentication_mode").getValue2()
+        if StringHelper.isEmpty(authentication_mode):
+            print "Super-Gluu. Initialization. Failed to determine authentication_mode. authentication_mode configuration parameter is empty"
+            return False
+        
+        self.oneStep = StringHelper.equalsIgnoreCase(authentication_mode, "one_step")
+        self.twoStep = StringHelper.equalsIgnoreCase(authentication_mode, "two_step")
+
+        if not (self.oneStep or self.twoStep):
+            print "Super-Gluu. Initialization. Valid authentication_mode values are one_step and two_step"
+            return False
+
+        self.androidUrl = None
+        if configurationAttributes.containsKey("supergluu_android_download_url"):
+            self.androidUrl = configurationAttributes.get("supergluu_android_download_url").getValue2()
+
+        self.IOSUrl = None
+        if configurationAttributes.containsKey("supergluu_ios_download_url"):
+            self.IOSUrl = configurationAttributes.get("supergluu_ios_download_url").getValue2()
+
+        self.customLabel = None
+        if configurationAttributes.containsKey("label"):
+            self.customLabel = configurationAttributes.get("label").getValue2()
+
+        self.customQrOptions = {}
+        if configurationAttributes.containsKey("qr_options"):
+            self.customQrOptions = configurationAttributes.get("qr_options").getValue2()
+
+        self.use_super_gluu_group = False
+        if configurationAttributes.containsKey("super_gluu_group"):
+            self.super_gluu_group = configurationAttributes.get("super_gluu_group").getValue2()
+            self.use_super_gluu_group = True
+            print "Super-Gluu. Initialization. Using super_gluu only if user belong to group: %s" % self.super_gluu_group
+
+        self.use_audit_group = False
+        if configurationAttributes.containsKey("audit_group"):
+            self.audit_group = configurationAttributes.get("audit_group").getValue2()
+
+            if (not configurationAttributes.containsKey("audit_group_email")):
+                print "Super-Gluu. Initialization. Property audit_group_email is not specified"
+                return False
+
+            self.audit_email = configurationAttributes.get("audit_group_email").getValue2()
+            self.use_audit_group = True
+
+            print "Super-Gluu. Initialization. Using audit group: %s" % self.audit_group
+            
+        if self.use_super_gluu_group or self.use_audit_group:
+            if not configurationAttributes.containsKey("audit_attribute"):
+                print "Super-Gluu. Initialization. Property audit_attribute is not specified"
+                return False
+            else:
+                self.audit_attribute = configurationAttributes.get("audit_attribute").getValue2()
+
+        # SSA section
+        if not configurationAttributes.containsKey("AS_CLIENT_ID"):
+            print "Super-Gluu. Scan. Initialization. Property AS_CLIENT_ID is mandatory"
+            return False
+        self.AS_CLIENT_ID = configurationAttributes.get("AS_CLIENT_ID").getValue2()
+
+        if not configurationAttributes.containsKey("AS_CLIENT_SECRET"):
+            print "Super-Gluu. Scan. Initialization. Property AS_CLIENT_SECRET is mandatory"
+            return False
+        self.AS_CLIENT_SECRET = configurationAttributes.get("AS_CLIENT_SECRET").getValue2()
+        # SSA section
+        if not configurationAttributes.containsKey("AS_ENDPOINT"):
+            print "Super-Gluu. Scan. Initialization. Property AS_ENDPOINT is mandatory"
+            return False
+        self.AS_ENDPOINT = configurationAttributes.get("AS_ENDPOINT").getValue2()
+
+        if not configurationAttributes.containsKey("AS_SSA"):
+            print "Super-Gluu. Scan. Initialization. Property AS_SSA is mandatory"
+            return False
+        self.AS_SSA = configurationAttributes.get("AS_SSA").getValue2()
+
+        # Upon client creation, this value is populated, after that this call will not go through in subsequent script restart
+        if StringHelper.isEmptyString(self.AS_CLIENT_ID):
+            clientRegistrationResponse = self.registerScanClient(self.AS_ENDPOINT, self.AS_ENDPOINT, self.AS_SSA, customScript)
+            if clientRegistrationResponse == None:
+                print "Super-Gluu. Failed to register Scan client!!!"
+            else:
+                self.AS_CLIENT_ID = clientRegistrationResponse['client_id']
+                self.AS_CLIENT_SECRET = clientRegistrationResponse['client_secret']
+
+        if StringHelper.isNotEmptyString(self.AS_CLIENT_ID) and StringHelper.isNotEmptyString(self.AS_CLIENT_SECRET):
+            self.enabledPushNotifications = self.initPushNotificationService(configurationAttributes)
+        else:
+            self.enabledPushNotifications = False
+
+        print "Super-Gluu. Initialized successfully. oneStep: '%s', twoStep: '%s', pushNotifications: '%s', customLabel: '%s'" % (self.oneStep, self.twoStep, self.enabledPushNotifications, self.customLabel)
+
+        return True   
+
+    def destroy(self, configurationAttributes):
+        print "Super-Gluu. Destroy"
+
+        self.pushAndroidService = None
+        self.pushAppleService = None
+
+        print "Super-Gluu. Destroyed successfully"
+        return True
+
+    def getApiVersion(self):
+        return 11
+        
+    def getAuthenticationMethodClaims(self, requestParameters):
+        return None
+        
+    def isValidAuthenticationMethod(self, usageType, configurationAttributes):
+        return True
+
+    def getAlternativeAuthenticationMethod(self, usageType, configurationAttributes):
+        return None
+
+    def authenticate(self, configurationAttributes, requestParameters, step):
+        authenticationService = CdiUtil.bean(AuthenticationService)
+
+        identity = CdiUtil.bean(Identity)
+        credentials = identity.getCredentials()
+
+        session_attributes = identity.getSessionId().getSessionAttributes()
+
+        client_redirect_uri = self.getApplicationUri(session_attributes)
+        if client_redirect_uri == None:
+            print "Super-Gluu. Authenticate. redirect_uri is not set"
+            return False
+
+        self.setRequestScopedParameters(identity, step)
+
+        # Validate form result code and initialize QR code regeneration if needed (retry_current_step = True)
+        identity.setWorkingParameter("retry_current_step", False)
+        form_auth_result = ServerUtil.getFirstValue(requestParameters, "auth_result")
+        if StringHelper.isNotEmpty(form_auth_result):
+            print "Super-Gluu. Authenticate for step %s. Get auth_result: '%s'" % (step, form_auth_result)
+            if form_auth_result in ['error']:
+                return False
+
+            if form_auth_result in ['timeout']:
+                if ((step == 1) and self.oneStep) or ((step == 2) and self.twoStep):        
+                    print "Super-Gluu. Authenticate for step %s. Reinitializing current step" % step
+                    identity.setWorkingParameter("retry_current_step", True)
+                    return False
+
+        userService = CdiUtil.bean(UserService)
+        deviceRegistrationService = CdiUtil.bean(DeviceRegistrationService)
+        if step == 1:
+            print "Super-Gluu. Authenticate for step 1"
+
+            user_name = credentials.getUsername()
+            if self.oneStep:
+                session_device_status = self.getSessionDeviceStatus(session_attributes, user_name)
+                if session_device_status == None:
+                    return False
+
+                u2f_device_id = session_device_status['device_id']
+
+                validation_result = self.validateSessionDeviceStatus(client_redirect_uri, session_device_status)
+                if validation_result:
+                    print "Super-Gluu. Authenticate for step 1. User successfully authenticated with u2f_device '%s'" % u2f_device_id
+                else:
+                    return False
+                    
+                if not session_device_status['one_step']:
+                    print "Super-Gluu. Authenticate for step 1. u2f_device '%s' is not one step device" % u2f_device_id
+                    return False
+                    
+                # There are two steps only in enrollment mode
+                if session_device_status['enroll']:
+                    return validation_result
+
+                identity.setWorkingParameter("super_gluu_count_login_steps", 1)
+
+                user_inum = session_device_status['user_inum']
+
+                u2f_device = deviceRegistrationService.findUserDeviceRegistration(user_inum, u2f_device_id, "oxId")
+                if u2f_device == None:
+                    print "Super-Gluu. Authenticate for step 1. Failed to load u2f_device '%s'" % u2f_device_id
+                    return False
+
+                logged_in = authenticationService.authenticate(user_name)
+                if not logged_in:
+                    print "Super-Gluu. Authenticate for step 1. Failed to authenticate user '%s'" % user_name
+                    return False
+
+                print "Super-Gluu. Authenticate for step 1. User '%s' successfully authenticated with u2f_device '%s'" % (user_name, u2f_device_id)
+                
+                return True
+            elif self.twoStep:
+                authenticated_user = self.processBasicAuthentication(credentials)
+                if authenticated_user == None:
+                    return False
+
+                if (self.use_super_gluu_group):
+                    print "Super-Gluu. Authenticate for step 1. Checking if user belong to super_gluu group"
+                    is_member_super_gluu_group = self.isUserMemberOfGroup(authenticated_user, self.audit_attribute, self.super_gluu_group)
+                    if (is_member_super_gluu_group):
+                        print "Super-Gluu. Authenticate for step 1. User '%s' member of super_gluu group" % authenticated_user.getUserId()
+                        super_gluu_count_login_steps = 2
+                    else:
+                        if self.use_audit_group:
+                            self.processAuditGroup(authenticated_user, self.audit_attribute, self.audit_group)
+                        super_gluu_count_login_steps = 1
+    
+                    identity.setWorkingParameter("super_gluu_count_login_steps", super_gluu_count_login_steps)
+                    
+                    if super_gluu_count_login_steps == 1:
+                        return True
+    
+                auth_method = 'authenticate'
+                enrollment_mode = ServerUtil.getFirstValue(requestParameters, "loginForm:registerButton")
+                if StringHelper.isNotEmpty(enrollment_mode):
+                    auth_method = 'enroll'
+                
+                if auth_method == 'authenticate':
+                    user_inum = userService.getUserInum(authenticated_user)
+                    u2f_devices_list = deviceRegistrationService.findUserDeviceRegistrations(user_inum, client_redirect_uri, "oxId")
+                    if u2f_devices_list.size() == 0:
+                        auth_method = 'enroll'
+                        print "Super-Gluu. Authenticate for step 1. There is no U2F '%s' user devices associated with application '%s'. Changing auth_method to '%s'" % (user_name, client_redirect_uri, auth_method)
+    
+                print "Super-Gluu. Authenticate for step 1. auth_method: '%s'" % auth_method
+                
+                identity.setWorkingParameter("super_gluu_auth_method", auth_method)
+
+                return True
+
+            return False
+        elif step == 2:
+            print "Super-Gluu. Authenticate for step 2"
+
+            user = authenticationService.getAuthenticatedUser()
+            if (user == None):
+                print "Super-Gluu. Authenticate for step 2. Failed to determine user name"
+                return False
+            user_name = user.getUserId()
+
+            session_attributes = identity.getSessionId().getSessionAttributes()
+
+            session_device_status = self.getSessionDeviceStatus(session_attributes, user_name)
+            if session_device_status == None:
+                return False
+
+            u2f_device_id = session_device_status['device_id']
+
+            # There are two steps only in enrollment mode
+            if self.oneStep and session_device_status['enroll']:
+                authenticated_user = self.processBasicAuthentication(credentials)
+                if authenticated_user == None:
+                    return False
+
+                user_inum = userService.getUserInum(authenticated_user)
+                
+                attach_result = deviceRegistrationService.attachUserDeviceRegistration(user_inum, u2f_device_id)
+
+                print "Super-Gluu. Authenticate for step 2. Result after attaching u2f_device '%s' to user '%s': '%s'" % (u2f_device_id, user_name, attach_result) 
+
+                return attach_result
+            elif self.twoStep:
+                if user_name == None:
+                    print "Super-Gluu. Authenticate for step 2. Failed to determine user name"
+                    return False
+
+                validation_result = self.validateSessionDeviceStatus(client_redirect_uri, session_device_status, user_name)
+                if validation_result:
+                    print "Super-Gluu. Authenticate for step 2. User '%s' successfully authenticated with u2f_device '%s'" % (user_name, u2f_device_id)
+                else:
+                    return False
+                
+                super_gluu_request = json.loads(session_device_status['super_gluu_request'])
+                auth_method = super_gluu_request['method']
+                if auth_method in ['enroll', 'authenticate']:
+                    if validation_result and self.use_audit_group:
+                        user = authenticationService.getAuthenticatedUser()
+                        self.processAuditGroup(user, self.audit_attribute, self.audit_group)
+
+                    return validation_result
+
+                print "Super-Gluu. Authenticate for step 2. U2F auth_method is invalid"
+
+            return False
+        else:
+            return False
+
+    def prepareForStep(self, configurationAttributes, requestParameters, step):
+        identity = CdiUtil.bean(Identity)
+        session_attributes = identity.getSessionId().getSessionAttributes()
+
+        client_redirect_uri = self.getApplicationUri(session_attributes)
+        if client_redirect_uri == None:
+            print "Super-Gluu. Prepare for step. redirect_uri is not set"
+            return False
+
+        self.setRequestScopedParameters(identity, step)
+
+        if step == 1:
+            print "Super-Gluu. Prepare for step 1"
+            if self.oneStep:
+                session = CdiUtil.bean(SessionIdService).getSessionId()
+                if session == None:
+                    print "Super-Gluu. Prepare for step 2. Failed to determine session_id"
+                    return False
+
+                issuer = CdiUtil.bean(ConfigurationFactory).getConfiguration().getIssuer()
+                super_gluu_request_dictionary = {'app': client_redirect_uri,
+                                   'issuer': issuer,
+                                   'state': session.getId(),
+                                   'created': DateTimeFormatter.ISO_OFFSET_DATE_TIME.format(ZonedDateTime.now().withNano(0))}
+
+                self.addGeolocationData(session_attributes, super_gluu_request_dictionary)
+
+                super_gluu_request = json.dumps(super_gluu_request_dictionary, separators=(',',':'))
+                print "Super-Gluu. Prepare for step 1. Prepared super_gluu_request:", super_gluu_request
+    
+                identity.setWorkingParameter("super_gluu_request", super_gluu_request)
+            elif self.twoStep:
+                identity.setWorkingParameter("display_register_action", True)
+
+            return True
+        elif step == 2:
+            print "Super-Gluu. Prepare for step 2"
+            if self.oneStep:
+                return True
+
+            authenticationService = CdiUtil.bean(AuthenticationService)
+            user = authenticationService.getAuthenticatedUser()
+            if user == None:
+                print "Super-Gluu. Prepare for step 2. Failed to determine user name"
+                return False
+
+            if session_attributes.containsKey("super_gluu_request"):
+               super_gluu_request = session_attributes.get("super_gluu_request")
+               if not StringHelper.equalsIgnoreCase(super_gluu_request, "timeout"):
+                   print "Super-Gluu. Prepare for step 2. Request was generated already"
+                   return True
+            
+            session = CdiUtil.bean(SessionIdService).getSessionId()
+            if session == None:
+                print "Super-Gluu. Prepare for step 2. Failed to determine session_id"
+                return False
+
+            auth_method = session_attributes.get("super_gluu_auth_method")
+            if StringHelper.isEmpty(auth_method):
+                print "Super-Gluu. Prepare for step 2. Failed to determine auth_method"
+                return False
+
+            print "Super-Gluu. Prepare for step 2. auth_method: '%s'" % auth_method
+            
+            issuer = CdiUtil.bean(ConfigurationFactory).getAppConfiguration().getIssuer()
+            super_gluu_request_dictionary = {'username': user.getUserId(),
+                               'app': client_redirect_uri,
+                               'issuer': issuer,
+                               'method': auth_method,
+                               'state': session.getId(),
+                               'created': DateTimeFormatter.ISO_OFFSET_DATE_TIME.format(ZonedDateTime.now().withNano(0))}
+
+            self.addGeolocationData(session_attributes, super_gluu_request_dictionary)
+
+            super_gluu_request = json.dumps(super_gluu_request_dictionary, separators=(',',':'))
+            print "Super-Gluu. Prepare for step 2. Prepared super_gluu_request:", super_gluu_request
+
+            identity.setWorkingParameter("super_gluu_request", super_gluu_request)
+            identity.setWorkingParameter("super_gluu_auth_method", auth_method)
+
+            if auth_method in ['authenticate']:
+                self.sendPushNotification(client_redirect_uri, user, super_gluu_request)
+
+            return True
+        else:
+            return False
+
+    def getNextStep(self, configurationAttributes, requestParameters, step):
+        # If user not pass current step change step to previous
+        identity = CdiUtil.bean(Identity)
+        retry_current_step = identity.getWorkingParameter("retry_current_step")
+        if retry_current_step:
+            print "Super-Gluu. Get next step. Retrying current step"
+
+            # Remove old QR code
+            identity.setWorkingParameter("super_gluu_request", "timeout")
+
+            resultStep = step
+            return resultStep
+
+        return -1
+
+    def getExtraParametersForStep(self, configurationAttributes, step):
+        if step == 1:
+            if self.oneStep:        
+                return Arrays.asList("super_gluu_request")
+            elif self.twoStep:
+                return Arrays.asList("display_register_action")
+        elif step == 2:
+            return Arrays.asList("super_gluu_auth_method", "super_gluu_request")
+        
+        return None
+
+    def getCountAuthenticationSteps(self, configurationAttributes):
+        identity = CdiUtil.bean(Identity)
+        if identity.isSetWorkingParameter("super_gluu_count_login_steps"):
+            return identity.getWorkingParameter("super_gluu_count_login_steps")
+        else:
+            return 2
+
+    def getPageForStep(self, configurationAttributes, step):
+        if step == 1:
+            if self.oneStep:        
+                return "/auth/super-gluu/login.xhtml"
+        elif step == 2:
+            if self.oneStep:
+                return "/login.xhtml"
+            else:
+                identity = CdiUtil.bean(Identity)
+                authmethod = identity.getWorkingParameter("super_gluu_auth_method")
+                print "Super-Gluu. authmethod '%s'" % authmethod
+                if authmethod == "enroll":
+                    return "/auth/super-gluu/login.xhtml"
+                else:
+                    return "/auth/super-gluu/login.xhtml"
+
+        return ""
+
+    def getLogoutExternalUrl(self, configurationAttributes, requestParameters):
+        print "Get external logout URL call"
+        return None
+
+    def logout(self, configurationAttributes, requestParameters):
+        return True
+
+    def processBasicAuthentication(self, credentials):
+        authenticationService = CdiUtil.bean(AuthenticationService)
+
+        user_name = credentials.getUsername()
+        user_password = credentials.getPassword()
+
+        logged_in = False
+        if StringHelper.isNotEmptyString(user_name) and StringHelper.isNotEmptyString(user_password):
+            logged_in = authenticationService.authenticate(user_name, user_password)
+
+        if not logged_in:
+            return None
+
+        find_user_by_uid = authenticationService.getAuthenticatedUser()
+        if find_user_by_uid == None:
+            print "Super-Gluu. Process basic authentication. Failed to find user '%s'" % user_name
+            return None
+        
+        return find_user_by_uid
+
+    def validateSessionDeviceStatus(self, client_redirect_uri, session_device_status, user_name = None):
+        userService = CdiUtil.bean(UserService)
+        deviceRegistrationService = CdiUtil.bean(DeviceRegistrationService)
+
+        u2f_device_id = session_device_status['device_id']
+
+        u2f_device = None
+        if session_device_status['enroll'] and session_device_status['one_step']:
+            u2f_device = deviceRegistrationService.findOneStepUserDeviceRegistration(u2f_device_id)
+            if u2f_device == None:
+                print "Super-Gluu. Validate session device status. There is no one step u2f_device '%s'" % u2f_device_id
+                return False
+        else:
+            # Validate if user has specified device_id enrollment
+            user_inum = userService.getUserInum(user_name)
+
+            if session_device_status['one_step']:
+                user_inum = session_device_status['user_inum']
+    
+            u2f_device = deviceRegistrationService.findUserDeviceRegistration(user_inum, u2f_device_id)
+            if u2f_device == None:
+                print "Super-Gluu. Validate session device status. There is no u2f_device '%s' associated with user '%s'" % (u2f_device_id, user_inum)
+                return False
+
+        if not StringHelper.equalsIgnoreCase(client_redirect_uri, u2f_device.application):
+            print "Super-Gluu. Validate session device status. u2f_device '%s' associated with other application '%s'" % (u2f_device_id, u2f_device.application)
+            return False
+        
+        return True
+
+    def getSessionDeviceStatus(self, session_attributes, user_name):
+        print "Super-Gluu. Get session device status"
+
+        if not session_attributes.containsKey("super_gluu_request"):
+            print "Super-Gluu. Get session device status. There is no Super-Gluu request in session attributes"
+            return None
+
+        # Check session state extended
+        if not session_attributes.containsKey("session_custom_state"):
+            print "Super-Gluu. Get session device status. There is no session_custom_state in session attributes"
+            return None
+
+        session_custom_state = session_attributes.get("session_custom_state")
+        if not StringHelper.equalsIgnoreCase("approved", session_custom_state):
+            print "Super-Gluu. Get session device status. User '%s' not approve or not pass U2F authentication. session_custom_state: '%s'" % (user_name, session_custom_state)
+            return None
+
+        # Try to find device_id in session attribute
+        if not session_attributes.containsKey("oxpush2_u2f_device_id"):
+            print "Super-Gluu. Get session device status. There is no u2f_device associated with this request"
+            return None
+
+        # Try to find user_inum in session attribute
+        if not session_attributes.containsKey("oxpush2_u2f_device_user_inum"):
+            print "Super-Gluu. Get session device status. There is no user_inum associated with this request"
+            return None
+        
+        enroll = False
+        if session_attributes.containsKey("oxpush2_u2f_device_enroll"):
+            enroll = StringHelper.equalsIgnoreCase("true", session_attributes.get("oxpush2_u2f_device_enroll"))
+
+        one_step = False
+        if session_attributes.containsKey("oxpush2_u2f_device_one_step"):
+            one_step = StringHelper.equalsIgnoreCase("true", session_attributes.get("oxpush2_u2f_device_one_step"))
+                        
+        super_gluu_request = session_attributes.get("super_gluu_request")
+        u2f_device_id = session_attributes.get("oxpush2_u2f_device_id")
+        user_inum = session_attributes.get("oxpush2_u2f_device_user_inum")
+
+        session_device_status = {"super_gluu_request": super_gluu_request, "device_id": u2f_device_id, "user_inum" : user_inum, "enroll" : enroll, "one_step" : one_step}
+        print "Super-Gluu. Get session device status. session_device_status: '%s'" % (session_device_status)
+        
+        return session_device_status
+
+    def initPushNotificationService(self, configurationAttributes):
+        print "Super-Gluu. Initialize Native/SNS/Gluu notification services"
+
+        self.pushSnsMode = False
+        self.pushGluuMode = False
+        if configurationAttributes.containsKey("notification_service_mode"):
+            notificationServiceMode = configurationAttributes.get("notification_service_mode").getValue2()
+            if StringHelper.equalsIgnoreCase(notificationServiceMode, "sns"):
+                return self.initSnsPushNotificationService(configurationAttributes)
+            elif StringHelper.equalsIgnoreCase(notificationServiceMode, "gluu"):
+                return self.initGluuPushNotificationService(configurationAttributes)
+
+        return self.initNativePushNotificationService(configurationAttributes)
+
+    def initNativePushNotificationService(self, configurationAttributes):
+        print "Super-Gluu. Initialize native notification services"
+        
+        creds = self.loadPushNotificationCreds(configurationAttributes)
+        if creds == None:
+            return False
+        
+        try:
+            android_creds = creds["android"]["gcm"]
+            ios_creds = creds["ios"]["apns"]
+        except:
+            print "Super-Gluu. Initialize native notification services. Invalid credentials file format"
+            return False
+        
+        self.pushAndroidService = None
+        self.pushAppleService = None
+        if android_creds["enabled"]:
+            self.pushAndroidService = Sender(android_creds["api_key"]) 
+            print "Super-Gluu. Initialize native notification services. Created Android notification service"
+            
+        if ios_creds["enabled"]:
+            p12_file_path = ios_creds["p12_file_path"]
+            p12_password = ios_creds["p12_password"]
+
+            try:
+                encryptionService = CdiUtil.bean(EncryptionService)
+                p12_password = encryptionService.decrypt(p12_password)
+            except:
+                # Ignore exception. Password is not encrypted
+                print "Super-Gluu. Initialize native notification services. Assuming that 'p12_password' password in not encrypted"
+
+            apnsServiceBuilder =  APNS.newService().withCert(p12_file_path, p12_password)
+            if ios_creds["production"]:
+                self.pushAppleService = apnsServiceBuilder.withProductionDestination().build()
+            else:
+                self.pushAppleService = apnsServiceBuilder.withSandboxDestination().build()
+
+            self.pushAppleServiceProduction = ios_creds["production"]
+
+            print "Super-Gluu. Initialize native notification services. Created iOS notification service"
+
+        enabled = self.pushAndroidService != None or self.pushAppleService != None
+
+        return enabled
+
+    def initSnsPushNotificationService(self, configurationAttributes):
+        print "Super-Gluu. Initialize SNS notification services"
+        self.pushSnsMode = True
+
+        creds = self.loadPushNotificationCreds(configurationAttributes)
+        if creds == None:
+            return False
+        
+        try:
+            sns_creds = creds["sns"]
+            android_creds = creds["android"]["sns"]
+            ios_creds = creds["ios"]["sns"]
+        except:
+            print "Super-Gluu. Initialize SNS notification services. Invalid credentials file format"
+            return False
+        
+        self.pushAndroidService = None
+        self.pushAppleService = None
+        if not (android_creds["enabled"] or ios_creds["enabled"]):
+            print "Super-Gluu. Initialize SNS notification services. SNS disabled for all platforms"
+            return False
+
+        sns_access_key = sns_creds["access_key"]
+        sns_secret_access_key = sns_creds["secret_access_key"]
+        sns_region = sns_creds["region"]
+
+        encryptionService = CdiUtil.bean(EncryptionService)
+
+        try:
+            sns_secret_access_key = encryptionService.decrypt(sns_secret_access_key)
+        except:
+            # Ignore exception. Password is not encrypted
+            print "Super-Gluu. Initialize SNS notification services. Assuming that 'sns_secret_access_key' in not encrypted"
+        
+        pushSnsService = CdiUtil.bean(PushSnsService)
+        pushClient = pushSnsService.createSnsClient(sns_access_key, sns_secret_access_key, sns_region)
+
+        if android_creds["enabled"]:
+            self.pushAndroidService = pushClient
+            self.pushAndroidPlatformArn = android_creds["platform_arn"]
+            print "Super-Gluu. Initialize SNS notification services. Created Android notification service"
+
+        if ios_creds["enabled"]:
+            self.pushAppleService = pushClient 
+            self.pushApplePlatformArn = ios_creds["platform_arn"]
+            self.pushAppleServiceProduction = ios_creds["production"]
+            print "Super-Gluu. Initialize SNS notification services. Created iOS notification service"
+
+        enabled = self.pushAndroidService != None or self.pushAppleService != None
+
+        return enabled
+
+    def initGluuPushNotificationService(self, configurationAttributes):
+        print "Super-Gluu. Initialize Gluu notification services"
+
+        self.pushGluuMode = True
+
+        creds = self.loadPushNotificationCreds(configurationAttributes)
+        if creds == None:
+            return False
+        
+        try:
+            gluu_conf = creds["gluu"]
+            android_creds = creds["android"]["gluu"]
+            ios_creds = creds["ios"]["gluu"]
+        except:
+            print "Super-Gluu. Initialize Gluu notification services. Invalid credentials file format"
+            return False
+        
+        self.pushAndroidService = None
+        self.pushAppleService = None
+        if not (android_creds["enabled"] or ios_creds["enabled"]):
+            print "Super-Gluu. Initialize Gluu notification services. Gluu disabled for all platforms"
+            return False
+
+        gluu_server_uri = gluu_conf["server_uri"]
+        notifyClientFactory = NotifyClientFactory.instance()
+        metadataConfiguration = None
+        try:
+            metadataConfiguration = notifyClientFactory.createMetaDataConfigurationService(gluu_server_uri).getMetadataConfiguration()
+        except:
+            print "Super-Gluu. Initialize Gluu notification services. Failed to load metadata. Exception: ", sys.exc_info()[1]
+            return False
+
+        gluuClient = notifyClientFactory.createNotifyService(metadataConfiguration)
+        encryptionService = CdiUtil.bean(EncryptionService)
+
+        if android_creds["enabled"]:
+            self.pushAndroidService = gluuClient
+            self.gluu_android_platform_id = android_creds["platform_id"]
+            print "Super-Gluu. Initialize Gluu notification services. Created Android notification service"
+
+        if ios_creds["enabled"]:
+            self.pushAppleService = gluuClient
+            self.gluu_ios_platform_id = ios_creds["platform_id"]
+            print "Super-Gluu. Initialize Gluu notification services. Created iOS notification service"
+
+        enabled = self.pushAndroidService != None or self.pushAppleService != None
+
+        return enabled
+
+    def loadPushNotificationCreds(self, configurationAttributes):
+        print "Super-Gluu. Initialize notification services"
+        if not configurationAttributes.containsKey("credentials_file"):
+            return None
+
+        super_gluu_creds_file = configurationAttributes.get("credentials_file").getValue2()
+
+        # Load credentials from file
+        f = open(super_gluu_creds_file, 'r')
+        try:
+            creds = json.loads(f.read())
+        except:
+            print "Super-Gluu. Initialize notification services. Failed to load credentials from file:", super_gluu_creds_file
+            return None
+        finally:
+            f.close()
+
+        return creds
+
+    def sendPushNotification(self, client_redirect_uri, user, super_gluu_request):
+        try:
+            self.sendPushNotificationImpl(client_redirect_uri, user, super_gluu_request)
+        except:
+            print "Super-Gluu. Send push notification. Failed to send push notification: ", sys.exc_info()[1]
+
+    def sendPushNotificationImpl(self, client_redirect_uri, user, super_gluu_request):
+        if not self.enabledPushNotifications:
+            return
+
+        user_name = user.getUserId()
+        print "Super-Gluu. Send push notification. Loading user '%s' devices" % user_name
+
+        send_notification = False
+        send_notification_result = True
+
+        userService = CdiUtil.bean(UserService)
+        deviceRegistrationService = CdiUtil.bean(DeviceRegistrationService)
+
+        user_inum = userService.getUserInum(user_name)
+
+        send_android = 0
+        send_ios = 0
+        u2f_devices_list = deviceRegistrationService.findUserDeviceRegistrations(user_inum, client_redirect_uri, "oxId", "oxDeviceData", "oxDeviceNotificationConf")
+        if u2f_devices_list.size() > 0:
+            for u2f_device in u2f_devices_list:
+                device_data = u2f_device.getDeviceData()
+
+                # Device data which Super-Gluu gets during enrollment
+                if device_data == None:
+                    continue
+
+                platform = device_data.getPlatform()
+                push_token = device_data.getPushToken()
+
+                if StringHelper.equalsIgnoreCase(platform, "ios") and StringHelper.isNotEmpty(push_token):
+                    # Sending notification to iOS user's device
+                    if self.pushAppleService == None:
+                        print "Super-Gluu. Send push notification. Apple push notification service is not enabled"
+                    else:
+                        send_notification = True
+                        
+                        title = "Super Gluu"
+                        message = "Confirm your sign in request to: %s" % client_redirect_uri
+
+                        if self.pushSnsMode or self.pushGluuMode:
+                            pushSnsService = CdiUtil.bean(PushSnsService)
+                            targetEndpointArn = self.getTargetEndpointArn(deviceRegistrationService, pushSnsService, PushPlatform.APNS, user, u2f_device)
+                            if targetEndpointArn == None:
+                                return
+
+                            send_notification = True
+    
+                            sns_push_request_dictionary = { "aps": 
+                                                                { "badge": 0,
+                                                                  "alert" : {"body": message, "title" : title},
+                                                                  "category": "ACTIONABLE",
+                                                                  "content-available": "1",
+                                                                  "sound": 'default'
+                                                           },
+                                                           "request" : super_gluu_request
+                            }
+                            push_message = json.dumps(sns_push_request_dictionary, separators=(',',':'))
+    
+                            if self.pushSnsMode:
+                                apple_push_platform = PushPlatform.APNS
+                                if not self.pushAppleServiceProduction:
+                                    apple_push_platform = PushPlatform.APNS_SANDBOX
+        
+                                send_notification_result = pushSnsService.sendPushMessage(self.pushAppleService, apple_push_platform, targetEndpointArn, push_message, None)
+                                if self.debugMode:
+                                    print "Super-Gluu. Send iOS SNS push notification. token: '%s', message: '%s', send_notification_result: '%s', apple_push_platform: '%s'" % (push_token, push_message, send_notification_result, apple_push_platform)
+                            elif self.pushGluuMode:
+                                send_notification_result = self.pushAppleService.sendNotification(self.buildNotifyAuthorizationHeader(), targetEndpointArn, push_message, self.gluu_ios_platform_id)
+                                if self.debugMode:
+                                    print "Super-Gluu. Send iOS Gluu push notification. token: '%s', message: '%s', send_notification_result: '%s'" % (push_token, push_message, send_notification_result)
+                        else:
+                            additional_fields = { "request" : super_gluu_request }
+    
+                            msgBuilder = APNS.newPayload().alertBody(message).alertTitle(title).sound("default")
+                            msgBuilder.category('ACTIONABLE').badge(0)
+                            msgBuilder.forNewsstand()
+                            msgBuilder.customFields(additional_fields)
+                            push_message = msgBuilder.build()
+    
+                            send_notification_result = self.pushAppleService.push(push_token, push_message)
+                            if self.debugMode:
+                                print "Super-Gluu. Send iOS Native push notification. token: '%s', message: '%s', send_notification_result: '%s'" % (push_token, push_message, send_notification_result)
+                        send_ios = send_ios + 1
+
+                if StringHelper.equalsIgnoreCase(platform, "android") and StringHelper.isNotEmpty(push_token):
+                    # Sending notification to Android user's device
+                    if self.pushAndroidService == None:
+                        print "Super-Gluu. Send native push notification. Android push notification service is not enabled"
+                    else:
+                        send_notification = True
+
+                        title = "Super-Gluu"
+                        if self.pushSnsMode or self.pushGluuMode:
+                            pushSnsService = CdiUtil.bean(PushSnsService)
+                            targetEndpointArn = self.getTargetEndpointArn(deviceRegistrationService, pushSnsService, PushPlatform.GCM, user, u2f_device)
+                            if targetEndpointArn == None:
+                                return
+
+                            send_notification = True
+    
+                            sns_push_request_dictionary = { "collapse_key": "single",
+                                                            "content_available": True,
+                                                            "time_to_live": 60,
+                                                            "data": 
+                                                                { "message" : super_gluu_request,
+                                                                  "title" : title }
+                            }
+                            push_message = json.dumps(sns_push_request_dictionary, separators=(',',':'))
+    
+                            if self.pushSnsMode:
+                                send_notification_result = pushSnsService.sendPushMessage(self.pushAndroidService, PushPlatform.GCM, targetEndpointArn, push_message, None)
+                                if self.debugMode:
+                                    print "Super-Gluu. Send Android SNS push notification. token: '%s', message: '%s', send_notification_result: '%s'" % (push_token, push_message, send_notification_result)
+                            elif self.pushGluuMode:
+                                send_notification_result = self.pushAndroidService.sendNotification(self.buildNotifyAuthorizationHeader(), targetEndpointArn, push_message, self.gluu_android_platform_id)
+                                if self.debugMode:
+                                    print "Super-Gluu. Send Android Gluu push notification. token: '%s', message: '%s', send_notification_result: '%s'" % (push_token, push_message, send_notification_result)
+                        else:
+                            msgBuilder = Message.Builder().addData("message", super_gluu_request).addData("title", title).collapseKey("single").contentAvailable(True)
+                            push_message = msgBuilder.build()
+    
+                            send_notification_result = self.pushAndroidService.send(push_message, push_token, 3)
+                            if self.debugMode:
+                                print "Super-Gluu. Send Android Native push notification. token: '%s', message: '%s', send_notification_result: '%s'" % (push_token, push_message, send_notification_result)
+                        send_android = send_android + 1
+
+        print "Super-Gluu. Send push notification. send_android: '%s', send_ios: '%s'" % (send_android, send_ios)
+
+    def getTargetEndpointArn(self, deviceRegistrationService, pushSnsService, platform, user, u2fDevice):
+        print "Super-Gluu. Get target endpoint ARN. Preparing to build register device request with user='%s', platform='%s'" % (user.getUserId(), platform) 
+        targetEndpointArn = None
+                             
+        # Return endpoint ARN if it created already
+        notificationConf = u2fDevice.getDeviceNotificationConf()
+        notificationConfJson = {}
+        if StringHelper.isNotEmpty(notificationConf):
+            notificationConfJson = json.loads(notificationConf)
+            if 'sns_endpoint_arn' in notificationConfJson:
+                print "Super-Gluu. Get target endpoint ARN. There is already created target endpoint ARN"
+                return notificationConfJson['sns_endpoint_arn']
+
+        # Create endpoint ARN        
+        pushClient = None
+        pushClientAuth = None
+        platformApplicationArn = None
+        platformId = None
+        if platform == PushPlatform.GCM:
+            pushClient = self.pushAndroidService
+            platformId = self.gluu_android_platform_id
+            if self.pushSnsMode:
+                platformApplicationArn = self.pushAndroidPlatformArn
+        elif platform == PushPlatform.APNS:
+            pushClient = self.pushAppleService
+            platformId = self.gluu_ios_platform_id
+            if self.pushSnsMode:
+                platformApplicationArn = self.pushApplePlatformArn
+        else:
+            return None
+
+        deviceData = u2fDevice.getDeviceData()
+        pushToken = deviceData.getPushToken()
+        
+        print "Super-Gluu. Get target endpoint ARN. Attempting to create target endpoint ARN for user: '%s'" % user.getUserId()
+        if self.pushSnsMode:
+            targetEndpointArn = pushSnsService.createPlatformArn(pushClient, platformApplicationArn, pushToken, user)
+        else:
+            customUserData = pushSnsService.getCustomUserData(user)
+            if self.debugMode:
+                print "Super-Gluu. Get target endpoint ARN. Attempting to send register device request with user='%s', pushToken='%s', platformId='%s', customUserData='%s'" % (user.getUserId(), pushToken, platformId, customUserData) 
+            registerDeviceResponse = pushClient.registerDevice(self.buildNotifyAuthorizationHeader(), pushToken, customUserData, platformId);
+            if registerDeviceResponse != None and registerDeviceResponse.getStatusCode() == 200:
+                targetEndpointArn = registerDeviceResponse.getEndpointArn()
+        
+        if StringHelper.isEmpty(targetEndpointArn):
+            print "Super-Gluu. Failed to get endpoint ARN for user: '%s'" % user.getUserId()
+            return None
+
+        print "Super-Gluu. Get target endpoint ARN. Create target endpoint ARN '%s' for user: '%s'" % (targetEndpointArn, user.getUserId())
+        
+        # Store created endpoint ARN in device entry
+        notificationConfJson['sns_endpoint_arn'] = targetEndpointArn
+        userInum = user.getAttribute("inum")
+        u2fDeviceUpdate = deviceRegistrationService.findUserDeviceRegistration(userInum, u2fDevice.getId())
+        u2fDeviceUpdate.setDeviceNotificationConf(json.dumps(notificationConfJson))
+        deviceRegistrationService.updateDeviceRegistration(userInum, u2fDeviceUpdate)
+
+        return targetEndpointArn
+
+    def getApplicationUri(self, session_attributes):
+        if self.applicationId != None:
+            return self.applicationId
+            
+        if not session_attributes.containsKey("redirect_uri"):
+            return None
+
+        return session_attributes.get("redirect_uri")
+
+    def setRequestScopedParameters(self, identity, step):
+        downloadMap = HashMap()
+        if self.registrationUri != None:
+            identity.setWorkingParameter("external_registration_uri", self.registrationUri)
+
+        if self.androidUrl!= None and step == 1:
+            downloadMap.put("android", self.androidUrl)
+
+        if self.IOSUrl  != None and step == 1:
+            downloadMap.put("ios", self.IOSUrl)
+            
+        if self.customLabel != None:
+            identity.setWorkingParameter("super_gluu_label", self.customLabel)
+            
+        identity.setWorkingParameter("download_url", downloadMap)
+        identity.setWorkingParameter("super_gluu_qr_options", self.customQrOptions)
+
+    def addGeolocationData(self, session_attributes, super_gluu_request_dictionary):
+        if session_attributes.containsKey("remote_ip"):
+            remote_ip = session_attributes.get("remote_ip")
+            if StringHelper.isNotEmpty(remote_ip):
+                print "Super-Gluu. Prepare for step 2. Adding req_ip and req_loc to super_gluu_request"
+                super_gluu_request_dictionary['req_ip'] = remote_ip
+
+                remote_loc_dic = self.determineGeolocationData(remote_ip)
+                if remote_loc_dic == None:
+                    print "Super-Gluu. Prepare for step 2. Failed to determine remote location by remote IP '%s'" % remote_ip
+                    return
+
+                remote_loc = "%s, %s, %s" % ( remote_loc_dic['country'], remote_loc_dic['regionName'], remote_loc_dic['city'] )
+                remote_loc_encoded = urllib.quote(remote_loc.encode('utf-8'))
+                super_gluu_request_dictionary['req_loc'] = remote_loc_encoded
+
+    def determineGeolocationData(self, remote_ip):
+        print "Super-Gluu. Determine remote location. remote_ip: '%s'" % remote_ip
+        httpService = CdiUtil.bean(HttpService)
+
+        http_client = httpService.getHttpsClient()
+        http_client_params = http_client.getParams()
+        http_client_params.setIntParameter(CoreConnectionPNames.CONNECTION_TIMEOUT, 15 * 1000)
+        
+        geolocation_service_url = "http://ip-api.com/json/%s?fields=49177" % remote_ip
+        geolocation_service_headers = { "Accept" : "application/json" }
+
+        try:
+            http_service_response = httpService.executeGet(http_client, geolocation_service_url,  geolocation_service_headers)
+            http_response = http_service_response.getHttpResponse()
+        except:
+            print "Super-Gluu. Determine remote location. Exception: ", sys.exc_info()[1]
+            return None
+
+        try:
+            if not httpService.isResponseStastusCodeOk(http_response):
+                print "Super-Gluu. Determine remote location. Get invalid response from validation server: ", str(http_response.getStatusLine().getStatusCode())
+                httpService.consume(http_response)
+                return None
+    
+            response_bytes = httpService.getResponseContent(http_response)
+            response_string = httpService.convertEntityToString(response_bytes)
+            httpService.consume(http_response)
+        finally:
+            http_service_response.closeConnection()
+
+        if response_string == None:
+            print "Super-Gluu. Determine remote location. Get empty response from location server"
+            return None
+        
+        response = json.loads(response_string)
+        
+        if not StringHelper.equalsIgnoreCase(response['status'], "success"):
+            print "Super-Gluu. Determine remote location. Get response with status: '%s'" % response['status']
+            return None
+
+        return response
+
+    def isUserMemberOfGroup(self, user, attribute, group):
+        is_member = False
+        member_of_list = user.getAttributeValues(attribute)
+        if (member_of_list != None):
+            for member_of in member_of_list:
+                if StringHelper.equalsIgnoreCase(group, member_of) or member_of.endswith(group):
+                    is_member = True
+                    break
+
+        return is_member
+
+    def processAuditGroup(self, user, attribute, group):
+        is_member = self.isUserMemberOfGroup(user, attribute, group)
+        if (is_member):
+            print "Super-Gluu. Authenticate for processAuditGroup. User '%s' member of audit group" % user.getUserId()
+            print "Super-Gluu. Authenticate for processAuditGroup. Sending e-mail about user '%s' login to %s" % (user.getUserId(), self.audit_email)
+            
+            # Send e-mail to administrator
+            user_id = user.getUserId()
+            mailService = CdiUtil.bean(MailService)
+            subject = "User log in: %s" % user_id
+            body = "User log in: %s" % user_id
+            mailService.sendMail(self.audit_email, subject, body)
+
+    def buildNotifyAuthorizationHeader(self):
+        token = self.getAccessTokenJansServer(self.AS_ENDPOINT, self.AS_CLIENT_ID, self.AS_CLIENT_SECRET)
+        authorizationHeader =  "Bearer %s" % token
+        
+        return authorizationHeader
+
+    def getAccessTokenJansServer(self, asBaseUrl, asClientId, asClientSecret):
+        endpointUrl = asBaseUrl + "/jans-auth/restv1/token"
+
+        body = "grant_type=client_credentials&scope=https://api.gluu.org/auth/scopes/scan.supergluu"
+
+        authData = base64.b64encode(("%s:%s" % (asClientId, asClientSecret)).encode('utf-8'))
+        headers = {"Accept" : "application/json"}
+
+        try:
+            httpService = CdiUtil.bean(HttpService2)
+            httpClient =  httpService.getHttpsClient()
+            resultResponse = httpService.executePost(httpClient, endpointUrl, authData, headers, body, ContentType.APPLICATION_FORM_URLENCODED)
+            httpResponse = resultResponse.getHttpResponse()
+            httpResponseStatusCode = httpResponse.getStatusLine().getStatusCode()
+            print "Super-Gluu. Scan. Get token response status code: %s" % httpResponseStatusCode
+
+            if not httpService.isResponseStastusCodeOk(httpResponse):
+                print "Super-Gluu. Scan. Get invalid token response"
+                httpService.consume(httpResponse)
+                return False
+
+            bytes = httpService.getResponseContent(httpResponse)
+
+            response = httpService.convertEntityToString(bytes)
+        except:
+            print "Super-Gluu. Scan. Failed to send token request: ", sys.exc_info()[1]
+            return False
+
+        response_data = json.loads(response)
+
+        access_token = response_data["access_token"];
+        if StringHelper.isEmpty(access_token):
+            print "Super-Gluu. Scan. Faield to get access token"
+            return None
+
+        return access_token
+
+    def registerScanClient(self, asBaseUrl, asRedirectUri, asSSA, customScript):
+        print "Super-Gluu. Scan. Attempting to register client"
+
+        redirect_str = "[\"%s\"]" % asRedirectUri
+        data_org = {'redirect_uris': json.loads(redirect_str),
+                    'software_statement': asSSA}
+        body = json.dumps(data_org)
+
+        endpointUrl = asBaseUrl + "/jans-auth/restv1/register"
+        headers = {"Accept" : "application/json"}
+
+        try:
+            httpService = CdiUtil.bean(HttpService2)
+            httpClient =  httpService.getHttpsClient()
+            resultResponse = httpService.executePost(httpClient, endpointUrl, None, headers, body, ContentType.APPLICATION_JSON)
+            httpResponse = resultResponse.getHttpResponse()
+            httpResponseStatusCode = httpResponse.getStatusLine().getStatusCode()
+            print "Super-Gluu. Scan. Get client registration response status code: %s" % httpResponseStatusCode
+
+            if not httpService.isResponseStastusCodeOk(httpResponse):
+                print "Super-Gluu. Scan. Get invalid registration"
+                httpService.consume(httpResponse)
+                return None
+
+            bytes = httpService.getResponseContent(httpResponse)
+
+            response = httpService.convertEntityToString(bytes)
+        except:
+            print "Super-Gluu. Scan. Failed to send client registration request: ", sys.exc_info()[1]
+            return None
+
+        response_data = json.loads(response)
+        client_id = response_data["client_id"]
+        client_secret = response_data["client_secret"]
+
+        print "Super-Gluu. Scan. Registered client: %s" % client_id
+
+        print "Super-Gluu. Scan. Attempting to store client credentials in script parameters"
+        try:
+            custScriptService = CdiUtil.bean(CustomScriptService)
+            customScript = custScriptService.getScriptByDisplayName(customScript.getName())
+            for conf in customScript.getConfigurationProperties():
+                if (StringHelper.equalsIgnoreCase(conf.getValue1(), "AS_CLIENT_ID")):
+                    conf.setValue2(client_id)
+                elif (StringHelper.equalsIgnoreCase(conf.getValue1(), "AS_CLIENT_SECRET")):
+                    conf.setValue2(client_secret)
+            custScriptService.update(customScript)    
+
+            print "Super-Gluu. Scan. Stored client credentials in script parameters"
+        except: 
+            print "Super-Gluu. Scan. Failed to store client credentials.", sys.exc_info()[1]
+            return None
+
+        return {'client_id' : client_id, 'client_secret' : client_secret}
diff --git a/oxAuth/Server/integrations/super_gluu/repository/com/google/gcm/gcm-server/1.0.1.gluu/gcm-server-1.0.1.gluu.jar b/oxAuth/Server/integrations/super_gluu/repository/com/google/gcm/gcm-server/1.0.1.gluu/gcm-server-1.0.1.gluu.jar
new file mode 100644
index 0000000000000000000000000000000000000000..0af9d618a8ee7bbf1341e46e944e6f74e03a25d0
GIT binary patch
literal 28229
zcmb5V19YX&@-7@sY&#R%=ESybTa#p>iEZ1qZ96-*ZF7>`oO`go-}&zSpL2Vy-n-Z8
z>h*T-w|3Q2PgToHfr3E;{jG`ox)A^0gMWNLeSOP_C=1X^$coa-|3eHCNcc-E=1vmD
z<!d_ZtE2vZ#bg9zB}7G(l<8zd?_?&%rKM=;0B};YR8tev^@<Gh%-aW!RFe~w0GF}`
z#Sj|Wu?pquNqVU%@d<zNg5zI>#{Q^jXIKO2>9>xY7=>g>1x3FXxY0?-%nGQU$&v~W
zDKXEm&al2F(MipWlM2zl(?E?#R8r8Y{+76Qym15u`sX%*{`WS&cJ{9Z_BArHv-#IS
z{{Ip%|Bx`Vvoo_c`5y#P{wio-YwT!eVf;TV!1zBeFf;m}wuAqFU*u%s_|wGkUl08I
zJAo_E?0*0U0xEz70;2toYlZA=otzD9ot@~6tPPx;B9ot-){HTSv)N^^W68b;Ce4DF
z%%Pf3;M1a_YB&fRk0u&78$gMu;<45llW;bicRp=;e1fj`;{BN-7`#a|=C&Jh(58#!
zoBow;GWznCz4b|wcXqPGh@E>$Q5gl0|LJ9%Aj`a}5nI+oX=Q@b&8h>S5j`p?&QK{v
z<uE8WE~+JHiegBM$zzbnWU%27SVB35CC(+oHe6_O_Qf}0u{~iGsj~{=Db7GVW)y9Q
z>HMySI>#g|1z^>pgt_O4qEL>jDl?o+xBz!o$RWqfR2vzuqoP|KK0;Fo3Z{a&Ct*51
zi4a*Uu>#>8JkI-o3aJ)P(r&WKYamoL)<P-2{*?x(>MJ0lD{E87FL;_Dgpev7E9q5D
z{Kk`I!m@J5fVv@1v;Tmb&-?DlDz!+XWgQYmHDwygi(sO{HhDhN6<&EFs-g`33s`2k
zAVZDn4x}?=-nf4T?oC~%Sy+qj`>3OasE4khvp_E8IGjivJ66Ypxt@W%inJ1d>P(Yn
zh8napk5yQO(r%`E?D&tbk4i(qizlctarTsz{{YLzsr#7d&&#utqNAnq(ODM{)l$g&
zp`wJv=tmiA&D?4$?Ym9vgs{PQI2q;GP{0qeR^^;#2=8}A8W=CHU_e44{m3d|Jk6bJ
zEq|agGOLafNr2GD4CAT-#V>;`A=0N5^<lVn3+Q{ke1Nve$@0mcs%CBwuiw^=P+a*F
z-@O6T2(=*T1IyIZ)HlQ=jT)Tg$$-S@=6Om*^!s>P|FmB^LPXiNr5R}BXc^BM-7OC%
zA((SVTCWDm8cJRI4L&f1W#TYR6ljIst%WkGk(H;4jAzxDI)4b*@)QKpyEkVku2wV)
z>@an1^+ZKV?B1N1&f)@G5RcotjN#K&*=ORfZXBjbt<q!V-hw}b%Uu@ymK$zmUTX<}
z<j^VfpHcE_wP)9IvavFCI2>V~Ve&6rpL4VEO&V-o_5A@gsI0sxW!}dY8;@}qT2qSK
zCezC!E`C8MZ&*(O{U>$V3|u8`3hnb@d8*rq88uj9-u3g2YlQ>hYMm|fKFH*5G|{OF
z>_0m>`R}rE%}wjbpE<ziO`Y{GEOZg#ZHrL`OPA)kb<YdDQOAmPs^d3$Zhf-C<+e1X
zy-pI2iXw`V=NjU1=}hp0>)uj{;^uDRQ+e$1DXp2XC5bzDB`xM}HVOhB2Xx2fW{C*a
zf(Ki0z<uW=csvIC(@o1xz^Aa@VoegDyj0K3nfZ){b&Na7AGgoiDaI~2F2m+-&u1+9
zO$$y6reO05z1QmJM&SRbgapc-i`8ZmUCXjVE742aB<w*9qBaF9tp5awFj}#r-RpF!
zz$uhnB&$C8-t08KS$6dcr%;7o;<}8bMUhaYPlfzC{j5-_#)iAJ-8v6Xx1z^OFnqRe
zB)r}pMTK5MJ`_!)-W%p^7KZ-ewJxU7M2vU;c1Xh>KC@?Hm~_|y)kxqMmO3RB_Si4(
z**R&OW3C~t3|828==^#9llD$$F-88#B_~SD-Fbtp$wG<w$so?UeHN`5TPeJKPQPB0
z-r<cNS2gQlTEPgjs-K9hgFNKljt6KnxMQ<xin6u$`t(^&+UU6a+T$r&aQ1qjmZ0(x
zHNJ`5?p@f%fW))t<tkKwgULs@b*eUmX9-4L3H3j72|E*C6kf1ME<?{CW`g7Ixk0#P
z>_J_V44e5Eb8JHK1@AfawsUO4@kQ_PZr^ckhG%=>>H&4d?1lHdadu&PLJcST(eFJw
zUZdgaL3M@gfo@wwA^24vK4V`u;u3&N+iQd94c|O$<8Vy9dY}xm``hh2t6tmSZo%_S
z+#p@!;k<g04~zA>I(V|HuQPOOM3LI38e#DaJAm^{*Mf8f?}68hIiOWIRQOxr5`g01
zrt63Aakcc`I9x+TVe~#ZdJ;T)M-c$=kJQ3>hZsS04AjEdI-dK=Ij)1yJDvN>Idu57
z=bm@^SwW5(AojcbIo%3*7Z3{X1~hd$jzjv?`>=-K<ruKZWKNXT6b4fcB`U;e6@7yI
z(^>xAf8-y#;JbkU0j+#_O78#YKO}5_8dzHxE1EdCm^e9$xEYz)J6qV<{@t5oDsRcn
z$)kQ;vNb7CiDL<2o;vrm5y&ebqUDEn_r>LkLJncX*KN*QiE^*n-bCL5qX6fJM)N(3
zVNG9PYv){V_fNh5@|b$*y4zTL|G0Z6|826a#t;UMH3mJDgMd;tB0rgvB%&jL-3A-3
zK{L8AvYVux%-oXMix<>DkRq^TrVkf{6#hml=M1vL1*>_Nzrq~Zbh138x(zj~Tl^=u
z52=?pC}FeYeCBq(k)vN-iQ|unt6j3k+M#XwxMj0RldH7c$dNfSnkV8w<Dzw|N6<yv
z&vcw3BloHr*!D)V=k+s(X>$(VdfEzh&+hT}?U!P71X3g~UAqhwQWpv~1h&?zbT&YO
zQT^_a#6=n(nsm1NQvvlV`V)mo2A3U}fEhJQ8NaP!b&O8_{ozWE5hrhw@QP!*Zg@B1
ztlx@LkXBqEl_Nz-%AiW9s<QS_3p5-GtkMw$Nilm<vmVCVZJ6Sge_oi%dLi=ysXDQ|
zf&&6+(84EEmI0A5Misz~wT8QNm_T&(+_}XFP~$8?SM!sx>cj7k_4Z@)@oDs|7X-2~
zyt}Y?JR5)uj0-|qabj-Hh=dYiL>cBB^IS@uNkjpvxq7ZxegIAI#T&bb5i~%&$;6;u
zaQ>W^Rcbb^9Q|}FhC{SYlS8;nlYd~QdkR|-RSI(mH#CD>0p`0<t)53;OgJV<+$>5#
zC_LZpYIMsOe~fprNmOhmXWzBy1qRt^nqxpL_B%^r-`Xn@9bQIW^~fhsAM5(SE|3?e
zqZE;ZWO53a4lyxuKzIuh0B7fT-}Hf6F<UOJxPLOSCU;dX<j_D^IgApYi$kRYUyBFB
zbn+AYuL@1Rtk1d*3<Sgp`riN|851Wb12Yp6#=om@qN0u!iU2Ba{fcpX%PQ+CTP0fg
zMw)Q0)r|zIf~1xI3nH=C$(*t4vUKYC$T`{R)wS4jg<puc&u@Ooj&#vGk_HB+qb$&;
z^_}&%v!`e!p!OEML1<NKd--blrlfus2zJMso$VrjnIN%`?aYZjh2-uBA>K!$N+VLw
zEMd{{k?8)~Y-nb*p{p>KgW797tkTE{J_hw+o1oix`B7n0IV|YOMI`^uV&dMK`Pk57
znIR#A&FfsEqD8=WHL>*(+-V7^4zuOsjB82+RJq-pVu*NqXTrd+$4I~-qmWAuIT<Ph
z6TSV>=klmj$)q<jRpuDUWtepVF+?-oy2Fmqnh3ZGhAY4xARKP+{;8wAF65spfDUGc
z4(0>{Qb)*9Pxx%rO9y&PenEm{DtE(zM(N)ye}y0?oWf|GEfr;O<Y|L3m5gCwF}6T*
z^;xsRb*U{K(n0(1THQX)4U0ghduEO@8c@EnZ-I8+{}?W07mr>g4Kvd5i|;oNu_qK=
zXEGEeDg|iTR<Ep&YIomjTy`J(^3P9{^JHdqBK3^k=^F7PE>#6#JS~=KB1SdwT$Z_)
z5YjN}frXO?`$WS%J=GtPd4X01K+EbyZsE3(9OPoUsg}vL57rk5e^nE8ogpxSFWmfq
z00hMRAMM^h)kM(6!rIux@$bq~nY5)euZlX{y#ihr02va}xN2z<y8*5te}l0|B!8y*
zgE~wl=Yq7ACe~W8UW00ZZ=w0Ia!%Ilb&=1xi0^(_+~Q37^Y@2BW>z{Jq6}u;a&RYq
z+}r!Q(-beK>*vc;bvH2VcD<;xz9dVtu#*<cTwW`2+LMTr8q1R~bN)7vsmTPTd0&Me
z!ga1+bWa)sLM0Mciyw@-cy3Bx9;}c6_vN^HoPlJ?T<SPUL&TODHI1GF95a7!QZNaN
zES5-kD_XD=rsv1S;OV@vDkJ{^SC9%WG=Hmb1lc5;Oq2HE(sNlr(=`#)Bp3V2X{Jd3
zKKMpK=Oegk<Z{z!s>nF%62*<yV@vIAU!32;Es?9ag#Ts5W`#QPBX@_i+vLG3ToG+8
zQMNH@TwxMk|4-OtX^RExS&hpBG}9Do-ScwICMz0DY$v#M!p^-koiPlXcJo`Fdgo!b
zdrt-GgYk8Z9a(Rt8cl0&Kn?6uT!1kdw~PW_qYGW0rMhRGV%pJE<td%bUenNo#UZBQ
zC4YqzMr0kBdx2pJm+MH9pNWInyzv23F~$p?b?Wv3lY8ppgYlF(8Sa_&WWp<&sp?2q
ze5yxdc%g@&`f^~+k6isWzC+T(3rM*SgsnI!PZiP7y4@jD)f#E(i6CQ)x5uTnz<}1w
ziC=UWR_qouC^w@QL|TV~@`7wAO4NK-MHVa)2=`AO5?X6nD<yt$ZZqA3yp%0Q^!;!N
zgxT(r48g9Wu&B#$n<vRl4&~o$86e(31vpSLGT>yVz{!sWjfb^i))bU7m5a{9@^7ev
z)EvFkv+YF&9h}RL`;gEqI*Rg?ScV7gDK_PApyA8hbfgi&F|dqDahJm=RaQx>^h^#!
z!m41U0^v^i(L0IrEBZu4hQh)i)KzXM@f870*2Mz@q%G#C7^KdFjymV>;(eiMyTWQy
zi|#tv-P5dUf_gTEKl(Q1brnnR!|orzq44sg#Y`?Y<;y|_1CLQx@3gZNbG55tN{{?l
z^DIB*pC#D-hzq*%&_j^?=zF=JCl4wQ6_Spp(^)9=(n)hZDWk)Sk~I`v$8E~TN#am$
z3$@@=vJxED=3_|6EaJDsyI+Da7fv6MtNT<*Bef6lPAJ?=QCvKu4DI|#;lH}yDt_-8
z_mR~Dez+LOLoH?#t4AWS0Bbm0%-zq*J-OtXXC3MO6^3t_ZUN5V&oz+;?sQz3s=2TY
z_WIq>BjvpEc9TfO?-%D%ebCT4eLCi#M@4Sd2P?F&m`iFjVt%|a-3DNPu~cTSjDghk
z7~xz)h-yGf5Zd&2vGpzLZswz#7$fGOm9CIbh#FZ|JMC4(Fn72U-_^H3QLtjpCsaqd
zt88<LUD=SAn7)S*BmBy$O=Gsbj-z@^s4El}zNX5jhwryX#us~d9aj;2X>Ew-FkET$
zt{iDBbgwlk1Z>YZnjYT6n_c9aiqXl}jvxtW3l3^kl{Rpr1e64;j{w3N7YG|@Pm%3v
zs5dy97uuIkot}tZ8Rl=J5$wFoQG1FBa*89xS5Tk*O?)mMHFSQ$J;>je<-k1ZXwO3+
zaE43>ex~tZB7q%XtzI1#xSVh8vbx!M!+T18j5Zb>&x?5pZW8-Vy;EZAp~`^`JYe1p
z+U-dOaG=Tkfv*w`IdIzr*^ESFA3)IyXKClla^qprcexoriQP5kxiKzS33b~&Q|9e6
zqzp>g>^^E_mw;}=h)amMIL_DF1$hwahbSFr3YYl+{j0r22hLa*_`;cKUpSNHzqYsX
zjuv)~7S8Vf0GLWPe*>7_bhKxSXv;7}LY@M_wmH-xZw-O4NXDiNd(KcdN@`V&1y=D*
zTD#rI;sfR^o{wMfvU1@E$<PYf(f)nL9nW+t@6+0ooE~sRUYcJ-JJn@w0b#YiL|~AK
z!6i9kuHvn4NeM|Tnyy++U(B*q_wt50BT4pK)6v=v_qWQEw)HLN2*PdPe#!Cs*R})q
zFQ?wmd(Hdyqj{nW-`;1$%PSee*WhNC{x`ON$DC(de-3IpPNkX_UeLl)zCTG&5Hljk
zqU6D+c`|z^=oG_3olY0~@l(s^>@nxPNT~gq9cEU7X7JF=3|@cZz3lN?l?rwARDzXz
z(T+3R7CIPX_&K&0oud!KjIqmFW4}vKsuUQ@xXvm3)+&p8nUPi%61=BioFq|fMY`<z
zpJ(l>B<|xSF_kV^#rY`qYnd(^m`P1-MWh~VN5k-2?8-$Ua4XnEz%}c{Zfww53sO3i
zF^h4mK}ttShQYcsPco`>^4L+4<r91>R@~U2kD+Nv7XP%luT}E<PWXA_5S0!@<Ymk}
z1!OGHOT~36rvqd{Y-}G()o*Vsk>=5GG2U-)ziXMruP6;$B-xM-(v<nb1-11C)$ds|
zgFEh#_RL~L`j-R0Lc!H(ChdODgkmFNZWJB6P~9IInpylJyT|kw(6-PQEociggc83n
z3`wWWk#Cgwgf^!sXDQ>z#YKFn!~}l*ff1Qyyx8pWjBq{zJ3oGMruq(@z-gFZ7{pB>
z>W!qN0B%D+mST<S{V$&I@1al4vQ&s01Q3ufG7u2;f2)#z*Th0KD^FY%w9hT$dhSu#
zw$Y;WrkPbBU+X%H<`d#THd>qb9I1Hu^i_03hdOTSB5BjUb8G7#p8oWnyD-<j^w+?W
zi86Zf3P@n6XxZE0a<3BIFOk{5rY1<Zxv`{(^bR|wd0j6*vzYJByQeciXM&T{XQG=~
z4Y;G&4S?z+NjAsUZ6-Q1Ti4RB;XC37U2C6h4>$YQJyJagoLm`P$(^puE<q=}Vp<Ux
zp9~H!!*+;~`BnpddP?^Vr+N$ak&~`Zo)?pNYWA6tc&hdtk*pK%Y;s)oACY?co?z@f
zBVR`EjXy*4cVYK0?H>0o8M*!F^Plh*>SN~wG(X?iKp`-CsrR|2c(VtI8FC=?KN&uE
z0fFsj7?dpLR3%7SQU-~E8@`RD>B?7PQi03@OEJ?<W}$@~$>^vRNu7Ep7VM8Onuv~`
zhAB)$ttFYFx<Xe_l(aE<7%R>#XbY%;uX^gfNh_(L`LCy0+eq>nN0~DNCubOxi!2Z&
ziwo4E`36|gtfgh)sT7UQa8#ke4bo|$wpA{2)wC20rfnn;Yu1<|B*FP66efvhHZSx6
zlls&vDi0@6O47*CpSO|PDJleYx{3mvP5jtNaf&K83J%b;m?<T$#5Xg>&}HgN$~6Wl
z)QeO{(C?I1;w&diRDVt!O@<?w2bo@>FK2is_9!$e=f!b#-Yu_qrEHGpXvn{Gng?;I
zW~Iqj3fU@*A~9DV2ct<Dttg3}OH`7~G&Tg5v@8d-C;j-DItbXoQ1O^Sh)q1XWQb`n
zFU$p!R%Fdm$zf3%6XL6we^mhxDM((4t0|52UMoe$mqH)06|Zlv42g5^|EPBHrX_f8
zf^d-v()PQJTIew)KF~zBCs}hwfo72hpkL$~EEkrpmT}>+2F_b#I>YiAO{vljvb|(h
zYABmOP^?+?vT*Yvlw=yf(7uprcWV#O13IT$v0aAQZ}R1~7j&&zqkaKeG@5QtRnna5
zdB;WR^oD>tVhNm>WOoxHc$ca7Sf)mng9Wh6Zq#9;$2o!tMp~e&lW)MhDU2ZdnY;&d
z)#{g`IUV`M_(s<uo%jvTD73Qs=9q@;BYVm|9k87*brmeC4vOc2kJ9Jpu%@>)R-No1
zdRdo?anGC@$o1AXMUrz?JtQRO*{o*=);GnqJ<Od*`k{S3*8oWU)5d>rr=4gvGVt)4
zN1wsHvHGixJAUg8U*lkP58g3(2XD<a!T`ra@Yj@*K0||nUF?c9h3aC_??f|w1n|c@
zw?}kuR}VOkrwq7&B-5P?SS_}g?xv(QpLlb8r6;1w16+057Xp7RAv2QH7--}arFXM@
zT9%i|F?XdWcxFjwdZj}i`H$n{8&taS9hk~;-fJqp2DK+U!5ppM`5fLqtShVZ&ILwA
z$cqWlDzFtzfb7IXhiij#&H8Q+jvj`uy{55i<MG{bHakqY=WfwkKfxrw1yZZG7`(X9
zSlJiMhEHb!qp1`XtK|Oxf_LJWb}PAYtp>Qir&~q&z6PjbXQe&H$Rw*d4z09ULKM@L
zTK3}+NZb`+K9pd)ZaGWQEzY*ZOIk?t%2E;q30Zc_cVy0l=Nepi_KFYSs@^j-`j=E;
zi+IdZat>$5lvS-3=p|1bOf^55dn?vH-o~A1KM}s0-OmvO^&FTB$B{$7dyu$iaU_@q
z3t6PaOyh)93q|dh^S*gc`wZmgXJwH=Dx`K;7%S`x#NiW_MjiWR#h09oW(azLBNf4+
z38xOp3Y6u<t`tG<N*_R{rB;;?_BIsysTPewuclO05W4i0T4rS7AQd0whvW!aO&gF#
zjy`Y%(qYGGWaN5f4JNupJl=9FxWWgIv~N^G+4ULp>_lx-sL<HcR^3reb1}`#2(=Pu
zsMDQNWINA}RQV?db<tcO#%!B2Jh#ql<6I}jY`ZZ$2YwBO)NJ9ubz@@xS)Ab|_v@t(
z{zjeKTiLta9sEr$AZY^~_QTBF9v}P``WyQ<|4%gJb3;wi4H=3c<rru(chUyG(U;C8
zxST8?NJc00izPC(%z;xRZy32;-gs^1U>J46xQ-ZnF}Lt2lS(U#^!_$*se#&#sYc;H
zj1I$fn~ekSj0(fEJDPdkQuRiyBaJL?v{1v2wN?_(OA?$(Qrc2u1aofK_oP1b4br!>
zWv5I6?3Ggb4NokyAW!<#j2nJkLLNg*II_h3*7VgizW4>pEjc5ONf4iR(qzoRGO-~1
zM>DP@@#_=c<hX-rY4M(jPeS1MiYue$aGP!{7PyN|3}`b!WY`pfRTbn8*k)c8&e4&B
zM2MrpIBZdwXlg;~iG16IsV~tbcnDQ@4PyIH4AHXC%WvXZfP7Feb_onC#Y0>S!`10u
zMS?NWF+!0XLR)m5!;E&B9Kw$sV*vh;CT9Ub>7{XMHK1HYEu$e=2(&VS#bic^y3!aD
zS)VMYS}njEyS?@yd8b&eys7bs<RBcl_Nr(0yy&ZH36Ea$wPFf>7Y*xmD4hP8!t`X;
zx&pKWw8$pM!*mtBws~ro8bXO%!A5|gf9Eb)&61d^z8p8u7v019pB=c1wX=nhfs?bM
ziPP8cUzAUT0CXP%qR6Ltqb7L!H4xpp<uz>Hb{^y}zZCddQnHu^{HZ{QYk9*kZr6{U
z&s2ndk4^$PARK9>0!k*qpFb<rI;vq&4n?feBu8g5I0l?_#@k6IeyU<&P?f{jR#ize
zeuq4;73404gRzjhDpNFfLGgXh?0o)C%MONE1Yxye7YXYN`u*y;PrQ8aMzP)!vb?+I
zg-Fojxr_j!mK1X!Qy<d_H*=8SRFm)Z-w=$$YKore7tdAnm9+iO<gLuV{Q!R<GYVDC
z6z6`Rez0|dt@>$~J1VuVd}F0WM-3y~rBydU6%%{k31C|^7tbg#*{AeG$^>9>MKJAw
zKFdd$H5XPE!WVvUa<-dwk7sR=bbEh3LlK5X$~qhP28-a&^3dGa`v)H&w$&2tnL^^J
zLm8np8&?D(4%uM28n2tg==4)-f=B0)-^p$P77TkE<|9tfW??haO*a=|M3(ehzM|4G
z<4haYD-QQ@c^B>@E>qb_vu2fPdskRBFCw?OabaSQLF>h9aeoVzU-{`tIT2sjxOTF_
z)`F8Ns2S=9adpmt`3aX$wH506MsTBrCad>AFs4>prW$ipCPr8<=^Pu(I0^b3iw*Bb
zL~r-uzWAN;P(!5H;00~JSDBp#%UrU<NH6mS>q`sM34I5vgmjk*OJ&ARoZ4g)oa^K)
z?{rRIqtQ>j2W{Ja<G|o2<>`a5c-U&AN>;|rCe4{jahc|#ft*3?D}lFDK(|)=+fGeq
zHMU4vhT&VCFKreRi4plep|v=MnhR5^I0Fs7E8piWVzCFEm-PIxDT<4K`Gf!bCsgH9
z${|PmBHJ8b=`+Sn_j$uP%yzNG>h=!DT)(xi7AZqS4y@RXBa#_Om=Up;5aFE%b`M|3
zN5*8q<w1vzbk7?M+nhRCZa-6r&p5@(s{g*XT&Fd%(p5BR6In09hpO%K5=>@}dz=At
zoP}uiCYcGJ@%N5bdnEsNn$$z|1r)zyHGs$`2w@1Hx1e!LvM6%o>+^~H=5VwmPktgf
zUY@#BlkGdAU;=_sz%Iq4r(ZOOFQo}Vo#XE)jJIPN0mUFGNGf7dumk||AIW(=zpL~d
z%zTb-8h^U~q!4k}lei@sE3)thOHAzHswhF)8)giH5i;2(ghps33J*=b3J+bpmhwrs
zudL%~_N%#2dc>G^5tHn+-Zokik%YnAb8Dme0d9B8^f8JYVoNYJ!WANw_^RZ`#-yR7
zV_r^2l1A?&@lv%(<Ed>Tl<<+-x0!_&hNu!Iw-pE7CC>xY5fHs|YrKRloBZ?Y$dt#V
zbL%AKAn5ia0|n5A1m3rVuAM;L^5AiE3Qg?uC^=@ZIaW~5?cjK%hJ7HD%JjFAlX@uI
zn8gwchk{rkrrE*k(R-A;$#z{L!k0wyU{Hp@xfUSqNpAW78WXQlI}>7kagaA(x%>Zu
zgZ%5?_n(2tnG=c%>Zc8MoJ|`oY11GPk)X@$QBxuKIZR<gOx$n8{eyh#c$?+AmB@CS
zf{?I0zdXV&zGwF1h>7Kf(_=NWdml$0Gxq4X04~b8lg^_*m+qTRmlC&6-QDj{`jA_}
zH5f;N$9*q|Z4SAy%i+?UQ}Z~|oul(w(v!?Cp_HTn;3TOsjO9%2Bi39Y<3tUJO$HJJ
zXqzs&Ohm9qWFF&8pG}Zb0knM<g79isT=ctmo7FdUxC0M_n{d0Lh*wa*fha98%UCO^
zn<`fYI_L@AIEqgw7l_8DNaM?FU=Z^LXsOb&>Xm0DsDdoaB}Af&j%z66=kRu|$<v4c
zoXCyJ=?q*}k+hU*Xq-ppZMbvRX4*fD1f_7o_B6TF9e9wW(y%yf(kyfm(TGh_H6>-q
znd>Sw)l{VTE>`ifiI~@D7HX6BOqTX-<PtfPm(Yl5hoy-xsJ@Z02sssjMTmS1YmK%X
zHI>^l?roTXKNnA;lGd;mVV#C*n+h~eQNVD0-${|ca8j*hIfTjCYOPT4bo7F!T;3L}
z#e`tPqFJ$L(&&N%#)}?m%Ag%uic`&eex+g)ZYz!Y?uRmnPZ-kngXB2kgrd!rOY1ze
zazL7Y7TwdcZ5d)m+|`9VLdDl*zI&2YZvjMy)q2q!1i*+ARfuK5q&#m=%9B9CRo-(O
zsk>r*G+)ZL-;{Q>N=PpR5_Gy)%tSJgk*I9OTIHk_H~@4+u>%Bud+QsJ{wyy@|4QOH
zpv<q-oPw=?YUD{IFq9J@=fEApjm+17ggn`90OjhS)rXN1&k$w+yhh;U!GcU>7*caa
z56+T2G}4ijmSB(Y<o*&SDoN0(8Jr%qtuevy=eMOgrd+%*x+zL5ZQ+iv>G>#OSJE|H
zS7ECXrle83#wRxvxxL~KA02i{K=K_|YfS+el%>=6$pjQCUK*YD%TCJHDNQKM4P~WP
z`uJ6nf|h0gD+|XnNj<G*6U#(W*hJUE#7O*03bhuti4;Ias|=s&!o+xW-lZ(Y6#I`v
z0yC4Tq?WT-Haq;2Fx7(9GWEB%Y)~6zW(~8IIooLEXt*k&AETx!{-)+Ww7zgfV^bsR
zL&Jc`C@uWRjG->mY5N9SAMFar;j<06zFe`+<gPAAH(=lZcaj;5bOr=4R|1N27TEPn
zQJ~RF;?-cJU9qK`H>A8oQ`qnHNVgE!#|SAW8iCctu5fVF*LPhe;J};y)QIkO+5#a@
zMXch~=4550n@<>iR?FB|Cr-VK!Nw)PMh);ep^N#~dzd7`fFREE0S8GUQG+4M3KY~n
z3F&RrsBM-ZiC@hakOuL;rDS#x133k^5_OAEJ>3H3O9Rfyg?kL7F%)BU@Rw)rU<CPF
zR~#vTF?g=pVt9Q0V0^Ww6A}XB>OO~|4_?y7>PZh`{f-c+=X|ym3j+sT&;?0h#H`v7
zl&Q=t+xS(LG%A#*7L=nDc|BFeCi&GUwn}o(9{>)0hOChds@Sa$>ckFx=GPdr&%vix
z`R|uk%Rj&4>JBRHH1Vvqrnx%@G^5~or}^@5-7W6`PrD(1AlJ-+f{<=&ARvbSh(LKq
zYX|%DTc`8f3T-;j)kAU8ohN%3-*D<-R#%o(x)OFhSG6UWx<xL#6=A)Bt0M-+VscI@
zqpuuMQ^4+A`FkxfNq?oxl?7T~f7sbdZPg2C;UU6IKF59*L`)CX?DY<-+8qs%Ee~IZ
zxDs$B(L2XVIKJ}-#9uA#meu%7^%p{X`sz&o5h=>rIa`>1LB+qNw*LteBO?UDKo}84
zd^jzwsHHtXG3w)bx3PqK1NRJN5$8<EWTXXVe{o>o_Xvd|vDY_*y=FrUwr|j@0l`GT
zpn^*ZzEBsNyIt_0knzv9`7^h<ARk8ZS@j)JVbYI+w;w#poq`beHOJ=H5iQow=0@#W
znoKH?MwvyOb{|>^02y>Z`R>i0C2$~>6>GcWRjgj%u+bVkcGahu8bMUQjD$<;+&j7g
zra33n4heoKvby~nP88kr%vbs%UdP~pfH?l&j{jGXn7E~cqw<yU!hw`xQy_#C9FJZN
z!WJa;omHgC`)x=}shn$WRc`w;+2y3}%$hAC6Tt2@$NpAi_qv@vHPVpJ`~m!-5Ot)>
zW^7<bF6BAW`m{dz<TTZ3Hof8V@qT9q#O#(J$iHc1nwbjC+?=|iZyKM<J<%~e0Wo3C
zSU)+T15R&Hj6*>64Ecn*K0M5XPjTEYgq1z=tSneu*cugJZ6e1jAKrADGDy2sk9$`X
zP+<4cB=A|<_G;v4WxD~es3>cb7=QmRvvLDBcP&1@Q%?3S=47)JAG2sJ<<U^_f*zj7
zAV0XU2-jB#YPP~`h5Rd8-({;V9IgBig|g8kHR^PUH!P9+!HqHP3Rz;7XHPUhx}O^w
z&}hz?)J<YQNT4EjIm4%>lWF*%Of$S(a-{}mr&U=8I)W_J=&C$z=v}jX;$w@XqFbuf
zWILnFY%<K)p`ul}0Q-wU4Y2;6chXj5gQ_C-q%B3Cw(4DL>IM;{wr=lbwKS{zlcg0%
zP^*PhvWi#v_DADc!ii_sI+*~Kl=^r!olJU7Z+!9dbNG<NCO@8l`o>R$+_56$qB}F-
z7<mQO$&v*}=0fCZNgM#Vh)&{j-F(1wlHk-r4Kv2iD#qeJ-A?8|EkHeaaZUKn*CDxK
zCM4Jq3I_DTAM2r-Ul@NL3diKfuQ;A%nO10=v!1}96l0P5Lv_Rn!24rq>(@K5;TV}F
zq#~J4?Rb9cw`S{^KxC$8cEZY5csm`c(ros^5-t~v&o$H6R}=jH@rXGd$Kde@nj2oN
zku`ammHXlxc(`ISk5P(aGS2-gz7EHjm$vNu$K7u=oi(=Sg>ky&w)(5n1fVm{pZCag
z&|Gixei6J-G5QTE7xm_*&uE?pG|;bHk8=?4BZT8&QuScev;@I^4jh;#tlN9y+tJ_l
z)ES~6h&#m^w!%HVL%mz|y><s)87ArXRO;L{TZOEkusvYpZUhZZ5hcIB?S5D6zVnfb
zo6L(p=URbQY>C9T&iO&@FUBQpfW6J!gwW<@K`{9H!}Lco7N^ql1!mdxfencRJ6L?Q
z0h1)KwK%Mlm_7pJV-2{qI;@n4K38u9dX1Cv0P(UUkP`G!cJ2}422xg}?Rl`<7^B?x
zO`4;~kob6FhU~cVW^r3(*t4*nE~4cnT74r!btaIvApNbT-;v=4nMlj7U~gUE=O9(H
z^*lbw*sLkPf;NSm?RCXMo<JA2N1d#CG>xO!3s5Vxxop#{SjI!=WQAuxVrM@}MOIO!
zWwgQy-kA&ErPeI;hCO2*aa|Zbr}d88)nc-U)+Rc_`Ck&nEMnXeHf`5?1b<N6t_!$)
zf~L;x2F7rNE`i?2<Z|H2bx@#E-wfD64wky@l2SP;uj9%6Nn)tOmFu8Ebsa>hh8!Gq
z+f~VJVa|HC=^#dQ9YCpuA|~Gr-9i&hG7LF+p|u@%gFEL=&arbOsG3phD~R3x1pcd?
zrbK$yQ}_l1goFqL#PI)QsQw9uHSAGUP<iRcrI{_r`eOnRL%xMFXz0h)#EZoLFedcF
zR29i(o|DEVW9FC({r%Rp6ZRH{Q&qtP6>f48t*NT<@nVojp!#x@eGqMuc+gpG#*`@`
zgjFKh>2cY9wf^+Fu~tmZ|HtEl8ffx))*pR<M?F9QA&HnTa2+h)E8<c=!8pOtm<ijE
zW#U*?^bHG7-#G@L6LD$kjF9hvwK06`EsDVKD+VAGfp2;rf)h>UHsP<~rrnETovnPG
z;3ou~rFtFVXXbv%2|i8jCeUjDPEX|~(K`;UyE9VG(=pV42ED2OR)k~Mdeek+)#4xw
z1Y${nzZAd0NSipTWZOZ#eTmIvh{Q`NZ;fp#jdA^S2?%P`mkt;6_cEOg5z_(>dqs%_
zHIA?+l9f^l&2<Z~?nVzqHff7Q4om-~EQee?GoRN$mJvcq;U&Rg8u0WpNXDPpjYH3l
zs6)26f)uNm8A}H0xx!ee2nps9n=+nB=7c%VVG>tzR=3f8rzv#!f>1KlGwmGSa<RV2
zz7flz{~S>r{TPn?n?FF92z$<7lP69ZGghC42UGfF)PNUDJDVYLLsWfFY00#ztkD)`
zL)eu_u$c0Kb@%l(x7VAuRpP9<iXLgvP^+P!*W0vi1ed{lYe?c;bb9-8deQXe09WZp
z=;<L@d6|hXS8-dLg-9|DZGKDzUHxkX2=jTJr8Xa(K-C!Cra#Q2RePnT2iEF1FKfL_
z6aHp~oytJ=q%Hkh2UI);WfS{b#>$_<CMYY=L1}d`-&B;ieOu}7il7wOVvQ!b-VZYT
zG;nm;DCuhW1v0Ef4_LZ077w@Y{K;W1#|JySXjglnXw-nRT_I7Mh$tpYvwNg`cu|5q
z6ttzCUufC4+T_z-LnYyWqlh*vJfns%fJ26SEjBNe?5%dlk?hU7<~`&@%Lup<@$xjz
zwoz6QdYqkEdl<cakZoaYP-0+PekKhJyhgGz?l(op{Z*E3HO&O_!XZR?8=|=^6!cRl
z_*LVgjUp&j=Q154icd&Um5f17v?B+BAM>Rl`t?8FKj|?nG%ktQ?yms-WSt?7W8z?M
z&T%0r4l{}&L!-{VKgRdl6TmooDvtnt2E2)7Hnw@_+D`5u$0VdH9kdzjXEb%(;TKcL
zKLyn~yktY_LX%frHB4QT)-ut~6ZS9tI<lxaBXwGaX4#_Ggg2$#^>+^(G_+T{ytu3`
zL5jhXV=5fZD(Twyf2m1Fi%kNrz<>94{nlVi&T6VasJtZOEgXG9=3?wZh}!0c|2jD@
z*qwAd2ZrX2j`fOnU=|wN#B0ROlr$i+Iu)^%Si6DMPGuyaNO1%g08<n6N8Z%?qUA*q
zTjId{P&Dl&wgaT@*E<FDDb7?LLnKktphe4a+noHetVDl*6A4`6#XL)gwba~oZDvwX
z_QgHR*m6>_Lhnye>_ls`A_W&od;{J{>Yc(Hjxc)=8h;a#-}MgIjU+OW96}iJMQ50~
zVmO8QS%YL5{qV@~kaYT>jMNoEdt}yNByCt;_u_u4wo^Qs@~=M}-my?Kao1K!$-84M
zl&u8FB74xq>Zr5-bP~Il6Kjl;f9{KK9*RHi$NT&wu^Xm^H)hTLQ%?M%I-J@0vcH8l
z%8fhP<#|gGwZDct`r&z-{WZWFHF??Z{+g-{S3QWQz8$$|kG1X;#h!fN&dOop4_&(f
zGZ;ouK8Wv3<`E$A@B<-$eu+e^g-L1L;P*gX=v;r;%FFBZS%9oE4UXsz3aVV6Wnvl*
zYdJ>}5v{5v3gg|4jcrvOFp4f=QnV78N7Cj-zZo0hq26tD@?>J#3VS|B>W%=b2-(7?
zjF07_Ry2)P9ue<EE3L`SQ540l5HHMBA|;MgEwGH3`(cHFDk54lqvizWeS$9LhAUui
z<=-tqhb`b#rP^Oo)Se9=P0`Py5T(fo3YUkBmj_)wNMnt%uuNGcs5rm<JH=nfkPbdv
z6Bq5yUV379DGz=t^w%FE?3;A;-`&E9pCM#BXta6SG|0fU!eE1n0MexJNW;KoQcV%%
zhJyt80jAC!r1ydVt^fp*+ji#n*09B|vW*4y2*C{OEu)fTcgqSiqp(v!Wh$zCV9Z<Q
zS}~?4!_+?&sQOS|L)%Kn-Ph<9Jrke*hNE${r&5c)+|t2Ur}>ZW>90KVR{-%(o_Q7h
z97!8BIVej2RXZeyJmdtCn$fr5AJGG4=WphTPae$8qqkq6B?<-NO2z@_=lHreRjkq@
za=7?KT3h={$mm+-5ipet5SLX|60s<%V;g}#WpU7F*)|&^XHMxr-pD-|A<NQ$1Z$g<
z-iJmIIS|KmsUsRRap~Dr@p4~>Rq67r0t|*6kSKdee)?HVxOdQe$jcp^|6AC^vjXk_
z{KYR9eDTZwIc)mJdH)(QB)$EuWMf$FDW^i2EeLjNI&|#^S5{sQA@dL^3NbN7=!gB1
z&KaqW)hpqvo<-hwzyN;_|CpPtn!1M6@qMz><(?=1)B2o;-Rs+Qv>p%xL?f(t&B!D&
z`}q3$k!fH$1ad@=5Rxh>W)Le9e(1IOZ|UGwHh_62?T@ZnIrxw~6d|Rws6kj8mERJH
zm_@zHd3H*XD^Vi2rr10@LbT%zmZs^@gsW9$L=wMmfC_9ml=IOQ2c7~>ssdwCIz-mU
z4NAscT&nt=3w@O+##mBK5r^Z^-ins`TKPmrXRw)5{NE&##@ay&+Ez?(CUUfFi$yB&
zW@jn4%0jtUNzwPbd>9Tq^;1GyPMA7nXo2_J4CKp;P}Yh#7}w+{qw-RVij)E|ZN`ml
zM3lJ0WGX=|Dc9zIx)dLeGp0`}a*W^R#M}b|bSA1)!%EJ38X^^aG9g4!Wfw2+hVx%9
z?(2#9XSc!4Z;F5l6?rHnNp>@bcC{N%y#jqzX~cB=2Z}8bxb@(i(fu+-HcQ`!{W__g
z0<@uTlikhsww`;-Nm*r<6i=9ky4S?ny_3X78Q_mhM*34=Ic@9gWxu7SE7+3lfanf!
zjNdJjgG|82QSpIxDt1_3C@mlvC;=hr+x5r{hi7RWOb;k`sCyc|;6O8gLFpn}le($!
zWIyntPu{t28F4bcK~?MYnENIpUWni-%<LT!>TrVHlw&xK_TTlQwM3|1e(OPNf$xCL
zx9`WOHgX2(R8ReY7fPfbb{xg2$~`U(rf}}}1hd;1(0&<nWTC<H;}uhXhgE08PJ-^$
zCA2<+Rfo3~>5coo%+{Ay+&9Fd&WD`@*{e%@K8aQ1&=To{`$z?e!lTXv<Pl!uTHN=X
zOM&mB$EV1_N9J0?3hw%zf${xdP@Lbut(pi|uqgTGQ$b9RL~L96eo!vh!3^WuH=+04
z_~DA(@M7Y@6Sv(|aR;ibXZ#7#kocPc$pQ`}IqktWJaibw0S^AF74ViIzG&Kyco#H-
zvty(WjKAXBYpCA{MqhzA%-5|ms{hh}`~%slZ2T?s{<IN~pZs}19H>ZTSt0(tA)o==
z=A}k3Jdd)nK(V%|jU?IR#1w-ar^4%2z|8YFoP#U>tL?RCGHxG7eAU{MzihirU6KXV
zIRDVQ<UDenzFPN~9=_E3{PPI$o92@Gc+d(utM3e2_Ionn9k$h7g^t<9H!HiErXJ0#
z#`KEL(N!X==3O_bp*TOb4%$7o@vjU{tb^K6yLBhIP<$;-evc|6Jkqcv?l0VOWI}<=
zdYYYy6wOweF$YZK-8r;=8fY=WJd!aJ84M>8sL}Pbrd$*0$ysLiB}N)AZ9!Lodh2lt
z^FzOx$htH0Dg&+aEW{`yZswl~@;#1)@;TzjQLJF8_1d{G!FdB}Ed3Q6`zwQK6qoR#
z9Y3?xzKUDp^J$4lZ-Z<ts>IH$R<o8pmMHTE$Y96qi%E<j9KqWY05)3eBBJ$SQ8uW|
zzj6~OVa$X$Qo$9fQf&2NLT-9RpcFo7Z8-ap?-FP0>}@T_i?#=r?>|H)8JFREO4==F
zI^PhS;fwWKlkRr<bt0ilV4hZGGr1tX^;5aTb(lU<t8&}uRxViSQUgFy{caoUTrR>|
zl{kK;RW4i#>jxyzYwWS3*Z3f`$gLPJJ<>w)dhq<bt#Ka7!=K<jL*sY!2}rI80L70x
zIN!erQ$no&#y+6nW0Z1LP2`WHyQsYGUz$fST~1NEIGi@PYO!ctQI6S@6ZWJbRezXM
zVF+nv{`x2p1a`s}?0T}S>=i(+qFf`uDSg4*5Pz;qpjD@-)Mli%=+AcjOfV0~x!hmO
zgwE7l4K27VNf{DJoAEb}#CA9mSxR0K_RWz+U^<u9oe4-C0`=*6MNs_)Wd=Woimdsq
zWi#xMx0Rk-&?TGie2K{V!xCxQVIa++3((RtH1Ww%Zb0WBlOK6Ayxj6<YnOe>W~pcM
z$zjTH^|h_$*vgS@Vu#VceSC}l&FIg`^orD{G?W~15D5b8yG%TfU=|OaI5xIi5vT;H
zP)2=$7()bDC5wN6G1N;y1>`8;o{i`vR}Y{ll5h}9Wk|E9GD3r*LO~O)np@|Y7q%#-
zJL1%k<tJVK1C?4nHy@?kS;fDqMKpM;A3TLa4uAN)e*_<##|D;uMuns!B)m6~DGLr)
z;?r+=`hnOG|JcnydFwkQ@s1(|=c@DvLjn)JWK#MlL0}v?1D2p_+9*MAT(RJ&CG*Ri
z{H;`rwC?2oqUmivV%-)rJqnwS&)b&yjb;4{_i9qy#oF<R!^fxausl<1ppkV<%b@#1
zk1RpNx14id9X<+(oL%2xFZmTgcK<SntZM;QAT8dSVF)cOT*)jFD;T-Uj$>p^i+5OP
zHh}N+4QyA=;b)xg1DeW>)x-|YdQWpp_*Dr;w-^@xHn4XA*vI^gSGoW?YTqyeXlbUB
z8|g?t+O5UTd0}wVcV5de)1mPATi#P0+<uknaE<gq>P_*^Q^up~3U)uFHY@rWy19b;
zUC#SIFn={wQ2{;oT3?Cv*sr3^AOF!*DVf-Q)y0ztxi~r7*~l9>e%)35_uD~=GE$(7
zh+Z0NRqr#4r%jsl_+j%@Rk}7eipl{Z1Cm!KY!$H^!gcL~-3J0-2p>Q`2^?DB;2sqC
zaT6Wxc88?<?|Tn$J&aA^>V2Y6oE&UvY;0K2qnQzFVzBL5)x_*GT#$j|3j^ky4xs#w
zMg~QFEke0uefQ#kWJ$7O*v=_K<f|;XRvbsPmi_^8wEIU<*jC>x$e=Rv#1_f?T83s%
zTx7+khUtDJcBb*}UTxF(UaSI#ynHKL^MRFodVJ(kG@%1UN`r6Tqm2X_J_LtWozekt
z7vckq2&TFpZe|p4E|#7Sbj(Hv)w;o0)qXtCXv@oW07H(KZm6Ke>Fso7QYPf?Fj=#Y
z^d^kd5WH6~&R2vA)p1xeBwCztXLQQ8-y*O%>l;4b&hR^We&x*zhCVJ-7;}zj!6j6X
zjRmllh&n6FgPSVASp{g6Ogo<yfRtic;HU%h{Tqj(Eu4aeMg#;TA@$$*n7_Zczx$X<
z4=7LNg@;d0*Q6&V_myuTutZ=2P~X2RqA_fPATgu}2NDvka*zmNrcMl`LWNtEw_LgO
zdttabNc~Wrp=!BWuym-dT-3CwEYwW?d|H1pmB1vq{`7j@@ASB8f68#0_P)f+`aA)U
zhnQ!SuZwNnZG79>BOY`;0-$#-1rK|D+oI20xOF3pCfE=5{KLR+XrCN?`(hj4e$Xk3
zZzbccym=<=Exj2%K0yvP_6xX8KvS-*<XDvHnKItT?skq3`kMKh-94bnv)OaY*wKP7
zb81@hh|@p&2>|)R<fq5*EaI<s3!v!b>KF649=~-P+*b2a9<3hTbBW(#c#(-08|&a7
z*`syupiTG$?7K>PtChUQkEVO=A3VW&Z;8b}JH+!dwD#>Y`aKB|@J<t?{;BQFelAJ6
znkq(lndbXQ_$2E2po*T}ziA!yL9y4v{NozmeXqdFPYm?&ouHfP*~<Tu66k}}e+v@s
zlkG)I<A#91Zs#-YPv+<rO!Wu3@*l!EZ&YLc)IZG2ITU)eiZ5e@>$lgKV`urQU%+fY
zI5F5|%&f$dATW_M8U#zVuV1Y|iz1pxUuh8JnN=t;Wz4S3n=kB+nd!a_=*+H6kwF-a
zVc~}m9Fua7vcH!zGQUxojx_6la=Ra;pGAoroRUcqc9c!YhBRxRvi>7_V|z58l1GYV
zLdUp?aYHGUH0zLZVo=#FfYh?Wvy5#as|eeyOz&l0*U~PvCAxG-%FM5nY|KMXX<@`8
zu9R%tgJ0=_{t8suC8wi!#Hh^rhFobu@`x}yt*9v7G6)i?k4NSeBE3v@lUc?kq~lCx
zf$&OH36JWkU)rUm!z|UZsUuyQRcuo%#j>g+nq`5<oxr5*<(6-CKc+N_aiLmfA)`7<
zML>y`K_xuev{Y4SXH8J4G1W4*w6BP3N;zBxjZvk&G_P+p#kx^Q-M)io_f|ZGit<WU
zi8l60QHhp$!O<dXTZz0Z-gt7f2Hqvi94diYFVnJQ>-kve#IwxXs$@>ur7c$#^AwiA
zD|hN1ur;r7%b`V<O&sk6KIUG;wN*^FO%CVsee;yaUE8`u%JbCqR1xXWB&aQ;w4sSP
zHlmRLJ%U{D#$sGk5O36;X3Tg&BtO^9h9pHi09pEyQ)Z5w>E$dMh7L+q%n#6Xx-#m<
zvC0-&n!|=JL*ftEN9q+fgCs1LE#=*xIhjj8!#+zpEt+R1V5#&T;~}eZLTcqRqOwSF
zG<LF#y93}Lh-w*KSfFN(+86vv!Uu)6BUxNT4`YU#dZjYT$!XK|>8DxRopGGV#ElAy
zfAf#Jtt`d!0((@%u>wyOdDt;8sjc@Cpx8v!MudVoRhMFL6lTCr>S8{YrGxed_Ly%T
zSS?>OtZfo6!8RT=+WE5CNspE_HWC!NyxgcZ3&JfZ=8UuyTT^~P@<d41FfyxYLv4UH
z4KC`0;|LO8YI-E7K(4gDi<~+0W?-hsQ({xH#0Uce9<UA~W8xI)pjGZTBDhGyw>8;#
zLmJ2?nkZWB5o5Bw@!|&Xet9Cku+d~yD*X|RLzW>^U}6%qb$9%SRFSSd<l18zGj^d<
zqnjp6tWw#4HSQYc!*d}V1RZ<r5|R2j0|UH$wPoapp*(}*{tEeYSU15NH(2bHY~T>M
zi#U|s1UH@*T%hoJ$m(bdqn(-=7GBJ#0L?Saz?0CaB=l_&tM8)RdolW(eG^Z+G?CQ^
z<N;G4T3kxp{jsWy(8L?qYvfH4&WA9ZntH#ka)mtnEiX`Kcl*yry_o!BId#SgSk9uZ
zU`gW)eNrP?!MLwC`ntGs$a70;RT+)bVT+K~h~(XD@?#gG^jW})fO#X`-NnXo#2yWg
z_bVH%e13n?%kC@nxPdFbgck!{rAwI|H>y_He>lsJ2s2f#7qUgzSF~Nu;78cX$)HUh
zq}JSDix+)pP@Ki(x-np(47u+%1$jK+P^rytqM#@}z{i^oD3KYu2;u|wX&_n>Mbe$;
zewu3a`z27xEi)!)aOpJLjB?&yq~9T0Tt32#<<V-A9ZbSEi}*{}w2@yGJUdzL$d&{w
ztN^g3gG|W<5T4zw-R)S<OkB7_^zRopM=&D3att*T*qU6$!5!qbjQ~F8&(h6-Bjef6
z)P_%fjaoSVI&-u4-l*{|$ZrveHC8RalYjK=4Ji-zoeh~CuWTT8APeF@=r0V0HFoU~
z=-?;KE%-T7&&9>EkPbQ{^qs33*!XRyoBd<kNzo%EzvY^V3XNI<bDF90#%)nFS#j&y
z_0_hw-P$;vWAus13eu3%T7&^3&UJD3Ds)N|bg8l=!P0|;pObVua>roTn@U;YEPy?)
z`eW&0<MkfIs()RyaiJamk>+a4?{z@&QwOqG8DpHv_HkMP%Q(_l@Z{JAY<V`LUctA4
zd=*h%i-<APFQGVjX)I))AT6gONjbUne^quBP*JU2lu$YaDG33Q?(WW^I|Ze?8$>#W
zZh@g>Xa=M~5D)>0p<B8^rMvubz2H5bFaD1OGpu#b-rqg<&b{}Wb<W;~(Y#pd6p0z(
zK4xA#xUlwJC*zav39=!sPiWyJQEhoLsocWX=Dlvpw)hLGe5t6)8565}88>>4PZDfV
zjw@v?&A_y!g;?m*b=-?=Gtyz((W!-dqlV*QnOL=^SCD>>dsz4up+lq8Vf>MlWG`vL
zcj=HBR~n2wRq41n{pbd}_!8nz@((u$`%R?H9~g;?7UeK%w~^<pHp(cONDNY2RmLAS
zbr2F9xFbkqkp#j9*sgoGMlW;|^{fPKTPR1E&`(ZB1i*gFD_r!~Ygb_0#1XS_UBHjU
z6Io{eU_8w};s22ts2ACp+0DVXthkj+*u54>h$ON9RyrIDI*#z<LKI|<DW{Y=-Qe(?
zhSUlKZV7`SHmH&$@1hzM#^Ruw*0uKLfp73OHovFaB7Hoks+rZ>o7(1~XZ|i^%gX9Q
z>tMG6C-0>kuTb<jj=*^$JR3t6EirR%nm*$B(q4bGNg?NFbnnmYabX$LsR?=%{g$yM
z`gj*+U3|-oIh)TNo6p>u`7{@FGP>Ner?-7iP2Q#p;u#Kb=LwmyPQOTaSvlDok^`w2
zO|k;#Kq^PawutimKM$gQa*6QmQ|0=gI#K*(#ZgdAR)<aVX&0rbVm)&LW@{QV+1Ft-
zaqi-D23PhA2GX8(23KI?*pl9<W_>4dT!iJsw6=L(4chY->aPo8ED*HnL|$_t<maz2
zO-u+J99Z5W9a}k~*6D6>xxVX=K46t^uhWatvr2+vN3_4FzTeOlouRJ1rRbUh-o~T7
zSL?a-qR4x+ITgH}@T6nT(z(7y>qR6s&|U3B&#Fd%G`1_yifTA$^Q~e94T>)l5ZM_a
zkyp~jRL4RGu@Ivsxg(bxAecuQVy8iEOtP3PQ3EDbG0>i?VlyG)WvrnQ2f~aa%9^6y
z*HL)gLA@`Vyrp>}X8P4QYwg+SQ`HY+szdxqXj7`zqXr?m)<x1|d_ek9W4xF)aY0BX
zOeyb>M<LZX9(ooGoGK!HYr!}$^<wptVZ~wwuv3?K(G6g$ti<+huAqt{KMf>I8}PKa
zK%!+`ck6^A)nA7W9X3zBR{q{zbx!8nQK=f_tz;pc!N~r;N3c4@M7Bx;D0P`trw*B>
zMeAdz@(&47<J7a|tBd+%uW(*?v0FVNc78hw+@cb1wkgsYEeY|0s+O1FGaQ9@;e6Nz
z^6711zIbony=?261-_<n*{M=PB>4b#XE=hKCxE$1P9y|&^tRxS$O+=Gw@dpi*k&>r
zQ=4lBA`vKSNyihZ9)Fe4v6ipO7EHC#;ixSIvy)D6Hfeq*+Aa4`)j8&kb~vDP#c3MJ
zpotBpjK4XS#;*7-^uf<-=UO=~W~wX9eY>jlk{`uLh}pJ%!lh<2QQ<GulGPi35Qzdp
z6*HyKT|wy3(*uZ}%Xe?<O-1+*2o7V5`@Sd=E>RMFUb|r$=!XrUH4LiAC@jK@Q<wEF
zWh^$5=3&(YC<5jBFM)w1B-jP|!(1=+ihLTu*L0nNJbK}hBUlfJk19vax153H%k)^~
zoY=L%Puh$hw2Y5%6SD}h9<<z-IL`ZKp=yA;=~q8iH0w3_d7j}Y_?#H2vgm6RT=eL3
z6$J1UHfGn-;);{_)vT(aSQT$KD2!5ZdoTk`@?F_blpr?-+O6&Ur0JfqVToT4xe>zy
zWVa_`P#Gr1BW9IS|JHzd+Uu$Y%E?OY%YrA4$>&l+_;n!^ZL3fKew(paG2Hb$+?+)e
zvwgI?6ys6Zd5`LM6}?!VYJ>z)z?GJ-dEpM@k+A5d4wj8=doI~MZU4Nl&^T=XdwfC=
z_$4lV<#1qHVU|g5uuHC~qqA~>dGfhVr@&(&ygL0SB<=(kwfd#PPd;|&F;S6du}zva
z=z9qeDh51D(c=qlOlbSIkF*`oSNPc7({u|m9pCeDF+$xdEVncxTza{@(}57rU505y
zd^v9^QKP7-qL4ge5WbNuktcDT%{z~$NEcdStsLfslyOfWI5i82n;;}qvN};G7kO-I
zx~0@=a~Q0FYP@$$hbx(50Vw4h<ts9c^Eh95>716Yr695OTJC-ol&^S1mfh4fH8_JO
zumQ)rrX^f0o`oWv=j-5<!VCFb=|<Yz1Z2{vZl~3TSQdkx6dj09ifIGNipmCEK$A)1
zDjgo6&dN5aEPlGjDXIPv>tka73dP0=a({UEqov6Krz7VhZhdgF^(*UamJ5%?XV^<X
z>)09bya!%bb`5ZlHrkjB_HJ{Edvi0qJn<mnsdrZj%G(q%<jK}rsUT|_C$b5a*tQfP
zC1L6dJLWkerd`tw=7Paw>w0VMUQV%U3x0nn#!85F-s-eL;bc2!aVQ>mxY?huApLzE
zIwP`dvp_S%QMWO6+6!U-Oq5rM7yrY12eGtcou1fzTR1{rTn<8_ViMP}TGY20!85V@
zjfUs?HK6H&6CZX$z?jQbuXD2fc5vgQ*i;RJ4mCLb5$<Rk&_yO(m=*E8kftFi2y#R>
z;pFhR`SCpK(MNKpx@T$D1q-F98aevDlu3h0njrbIUSyUDS-`xVa}~q`!EC<YY!#8l
z!eyh{{xqsV&5U!LvmZuQ86p4eXU&+Ij%MaKw9bU^hQ*a!+sh0XZ|?R@L!tVBva+HF
zbhi4s3h2JOZX05}xL@1w%@K~(^)ih;LV4A!Ca|i!=I;^Lk4X+<1ac)KEUT2&kop2b
zX9}AJPImomE^ClZ`msYRrszqH+|)wu`#w+}ml?_Ru(3RMsj&*(w+u3(u@^TV52nTS
z$S1h!Gh|zODJaZ8aUsRS3hf8LO6d1LSTD3uKHHc<dxiOllgVpUe<-5ggt@=5@yK2f
zg$VCHPLu<&(-zoJ5F|hSfN{!w4IeXbwc1M0Y&9x$+8D4>fQ)T3s^b2p2?9~f>Q4M*
zFO$rDSU*+v`FYgm<0Ly$G<qt?w>kX0opm?7&-LGmkH+y8gdCWCQMZ@}9F=q<2}e}>
zi&V&@z2d?VDZ_0uEP3>6<5@Ss6rINy(`?eO9*7@eGTIEgWLofde!!)z0@*kid5$Yc
z$2g1Cm(09ZF)~pwoo-gD<2goNdagJG!(KTcL$#9@UyS>4!pz>%iXp^{ek-G}X8@G;
z;%Jdd588V=EQUS?p><gxGC63arNOBBf~<$svG`F`70{QYnhVhwOect7mi~rD()A%w
zSxBU-w@wHRf1K;MUiHyCgV{~jBF&+bsmExi`ErXdaLlrz@%hTmwNdFdf}m99BKFUm
z#Zgjd83|cxRBI-UwschktH3Y(w~*2UZI87R5-E-~UD>1ZS*#_NX{WZH0xgG+OUKR@
z_3fxeE^5ko5LQrHoW8}yL@Z^e`c9FD538K#;siQpZ?`2&R(jyO6ojS(>wXa*s$HSb
zGlk6&O%HscrLC5MMKV<5D2}8fOt3hBMuHdP8nl#K`R3g1kz)|F>Z@LADNDuCmHc=8
z<**vSa~h{HH6g#^R$|p>7l7wQSn5($CBU{-9WAuxa(o2aWw}M9aQjWA{@_=5VHwDi
z+^}<DYv4;1*2Gfx=?=jFCz<VF)Qt8#^%irEO6iV{P_<yB)8sRVpTAW}kuAiDGG6Yw
z%Z?uiJwjC>Qq<e<rr00GI*)rPws^$u6)~4hP6Of{GY@`GKT;q%Y6yWHB&7(w^0-)C
zA=~lSPVN#CI2cM-V(NQ34bDxke?d~@IlJN&H1p7SJk}iElZ<>BHmdaj)=DRP(7KAc
z1ga%VjU%iS!sO%nSYVh-?`R$yzBBST9JX`?9p-$a{_-ppWT4YqtNu)sjV!N;Y2QF{
z%%c2_k5S#_eS@3FpY2=<KUQ7i#=?&~(r+I48H|<#&$S{&-&J?w?Aqi8sGdOTVi%uD
z+D&-88Lf|yO7RkmiwNyD*!q?W+ZD}CF9&6Bw8$<PefLRt!>p(ML~^+q+&LzkMS&#+
zdDGg2yWM6v^KNpZ(el&zD|6R0M71J<frPeNweGwTnk+>`fR-{NNHTPA$^{K1j=G^A
zG2&UB(ccw`%HqYEnKHPuyF=cnfAH19fl?8E5;N!ZhZK&J#(J_7#FIP?6d}4<qF0_w
zm)>EBxvL0}4uLTEmA0)550=iRR>2teMRJo}i1so<B#a45V(1i`!%p;6YZ+V;*7l5R
zHGQo>_1hQn8r<k5`zaa_@FG*1p8vKT=k_aa98ZrUJ|ce|%HS#3UDFfvYUwC<lBf?x
zo>ADl=hE&f9U3nAvqV+?bk=>ZrX)4CA6ZJZy0{K$>%`-KI?(#EGe<-=?alYir@D*R
zmfq-|kHKMy$V>ch4=Wlib{a|w#pt_*XwM=;)j2${hk_EN<X6T@>T`!%?D5C+C2h08
zx@t8gvv7y9**&qr3H~rfejigDz50#bfoUDqkmjI*d)w3=vpT00R({Rb#MKysWoq;$
z73mmXb7=?p2;KQSBNe=_)Q+mJz9yS#T=Ny*zYMhUf$V7(QSp~IzIH=Cg*yW$n}OUJ
z71TJ~gF8xIUeg#QrdeBf;X`SlBRhe?&s`ta(e=JGJI+3ejd<lvGB$9)?V@JPP0}c2
z<TCWU#2PIU5smPZ)y)^9`4dS%i~??t;-&^o+S!ynu{3bk-uUvcyJeL}=F8yqGUbZT
z*)QtUgmop~4U=%hZ|4oU;78?n!z{k!i`7&k5frI<js!hqVa%1L5j9}Rw<G8yYK$L$
z(P5l=#nUYHWpO<-4|9X|JR>vTev?qULn?LPDb012Kt|?r+@XL{4t_)Ov$cjpy1HR&
zAA#n6*+EZ~=I-@jvQt$rpnYE5qTSpQ=OI&zT>2ThS4>OZ$(i&y*1HQC&kf_RYd9M6
ze&cIrLK(UNoz8?6EB=irbLjaS@KNHP_jJ#)M=`$&#|8U7@pPYq4>@IAJ+KpqkRLSP
zDt~Gy`p%KJZv>9f*pp*zHLwRsD{L`v+>A6(laxj%jlKbeXX{jjwAVWxws_xz_&ZA3
zi`i))8tZ&wiAb;GLyIX$u82+(_YS-?YkbS<9)a`7+$F8jLU=6H{}N*dNaESh>Gm08
zT(;G!JOj<sj6deZ946(Gfc(NXru_Rvc=t=`C~`jiDTONQzG^P#sDc8&dFP931BUV^
zs|(-}^<|y=0}17AeX?aj6g5O@9naPf1Rl{6?79ra;p|sc^Z|@{QOaObdFK&GchNr?
zic5cX)4;|`KXDmhU8)@)E`JT#CRE$kRB?=XX*oB}`m`mNLs%=a``vi~BWxCex5j|T
zNCy32edl^RW_>6Ay~r9DhIYKzjtN`@l!;+De-=$$M)^mDHTg6!7(raB-yfbaK!YE3
z>#DStd@Awn=!MO)W~`y@1C2@opW;H^>^7--Bn=0^2G6==@I-fTcI=*EXVV}j^3e2v
z!73ismqt;3j5YL86^7Y7FxQgnkn=Mr%oBV)bP~%Pq>gObT6~XKy1h$e!2r8=g+a42
z2u*{M2~v)vrJoSfdk`-vvcE~QGUYE%DdCF)Z~9FQd*LnMF>_Olgm-q0&ePm;?6uiI
zIbRo_>!WxRe`tSh`>xH(ZC%h46XNd*4aKN)dYFa&t|7JLOx33W;n)d><6M(;pu~g1
zUHrgssr&N&PS^b2b;KFW>Kc4a&G%O%#7gZIFZ{HRYeqjJ?)qE!MuB8RpzyYCh5hSQ
zaVoM4j7vP<+SNSh9`3tOmPH;dGqaTA5$_(573%siVyDaMl``AD6%s-khq&}2Z}&I^
zT+mzx73{enZ_DwvHQ!SocxC!%VMEJ@Wjt*GIFOG?e2qF0ezIUVA~;>Q;vBm@`o1He
zr2%A~tI^7$)?6p{GW>X1ygoCchPg0yRB?m@nPaM+Xt@4qTip}^kw5u2vQuRc9!W?`
zyJvF3hCz_MP~?0R)-1W@N8Pa0&W&|+_4m<BmXBn3{EI(kxe)u;2KFD(3NJafg)|*c
zr(51A#YnVM$$iPkb|~;J<1_<H*zx;ePrOxs5FN!qJk?Rjq>GUt_2phQM68!`92{7T
zAL3L6nw>%sc(zYz(+gBUZ%ux>N6Z%%BT}D^D((BE=0HHVQ+lXKAWL(f)rI~2Y+IKV
zm2Q|Vw^|uqi|99H3>9RYHsc_S`<@)|Yx<C2<m0@9=65wLI(25^t#Wk|mrQ+4=mCXr
z08BB+Y)~>aB~!DLs+TFe=JdgO-n!BUA3YiA4S5I1x4yB@we0J@bgpTBxyv~y<3q9s
zm(=bfv|qf<Lko@t`TG<DBfoOUtV^`Wu1XA_m2GEmwG}kuRHhF%!3ud$uLKnN?0-xP
z5NVT&Kt!?8O4<v7TH1RwdWiegEEhL%c5Hlmy`7ZJ%`|(!-(6B)VR&Ee$(Y39)FWPO
zfsCYmhY8th!q1w?c^gI`O)|**!%YSYWG7NFdHi`S5gU?zP{k@0M|28>xjq6=PZ4o9
zT-z1Jr>{skbY3~p4?w+d>B5zzsI~VRYhlU-KPzx%O@D=9eW<_()@LDDIR&st&9n?-
z2&?2l)wCctd8V=Jqh)>MoglYqE0Q7rP8GVZ*sUhF@ksjWQa^QH^^lmeHDNoDVw+so
z;(`Tb7-!m^02ho{J<qZ!(Wr3|C6LIXW!16>KR+<~vRy3SJwUS`t~>6lKrlVKC(2HO
zs$(^AdFXiD^cVE?YsE~qxR);biGiB{Y9-6un96-z6}R*y&+N%guS70&e=b_|GU@H5
z!YiLk5_It~tAX-`^wAFkIgJKGu}KUWaR!E&I*Y=+eq4>~93MhK{G^U8eo<YDW|!--
z`K&2gDUE=QsYe?|eLQ~X2H7nI*#<N(p$Q0e5eTCmSNLF2ePWT}SNmV$J;8Ref-mbx
zMVQ7!?j=k>1TIrHEt~jIcUJ{rf$L5~%0z%=tX8uR>n;nv*kyUv!{lcZg^J<!uinmu
zjUH*zt$&UUnL|FR2OW#mIy{~iRXejw>pr32m_fumVR7BP!j(R*4I;}OIm2#5vOJJ`
z83|deaUl^#Inob(e88i+M?IWr&rH)Cq=Z>K{a|*VqC2Zp@=MN_jPj+kOn~?M^=cHB
z_rg&XRGZekvmc>83~rowlL34Lkb7lB5t;~qi+AhQ^}LMR0AfexRzuVeAPh;l%cm^+
zL9CCu3uh#@5tS*Q`SUoNa+gUQ&~cR4rcY#hmd!R{K)-xjL${c-;I<b#Fni~TnpT$^
zK4BZBVU4XvWnOw%UR-JLq;qFdMya=?6Vwx5<JaU&c~pYrap}IPh(F5+Gt?q|e!>U3
z$a8KP(P0E3X7mRRdw$v!U;s&HD5khHg8GRzOI`V5<jg@Mp7MM#{2=PQs<};@*#3kK
z_46zgkFUN0u^2#Vk?ydp;O`z7$5(Ji>-ceu%|Slfra=u_*%IZ$<d-+!_m+?NjB1u$
zKE0gQ8|}7lue*xV+~s!>Y5`u_u{*_|6awc9<_{1HCxj$Oj<K(zg!36cdCpv#Gl|x)
z;Wl&<T+_4F4b%jLFJ;Jl;rWP4KK$_Tah<560L655%<I@=RveEwj5h}=>%kpe79F&K
zs#EmT{Pg%aNolUcW>a+41b*0d?)_a%_l1yaYG`pTn?Xgm=UKJTilN%^VmaI4&CB<4
z`2xn?5BW<7<9WsD?$Lhy{wm=d#d2)I3+N_MuJBo^Y}|9a%#rwh4r~Sg({4`H3XFS%
z>8%~w=41=Dc_JOUlTYY&mb~7X?c2i@#ZrFBD1~`!1BYN;b;{jvCJb{dC~%4g>cChd
z8%FdB{`9EBM2BpngEyyJi6Yl>IiSSRG9I-=*(0*3bgPWrE1|G#wkK+OIK8I(!{Jj@
z&u}-GVcjia*N6LT60%y!Z+jV7-SmX07j`6sx^v)k!a{iM<-yUrQ5xwMlYD8M<rGvE
z=IoH>^h`a&qbGuXHF-HYYR??<PYpl5p`&8yn-v)_cM^wkB!wo<NGJCcIBAHC700Hj
z%Z{(Dfw{Svn;Sg)*W~$pN}%1P2_xzJ_bGTE%KA4q5WYfss`{*h;5*<!3>)3b80SZa
zsQSLlM5&C>$Pbzzft80M85%>Vrz0TwE3e4zp=GoBu1mRknce<=7{g>Vhsf_qOvMdp
zAtv{;wMf3zDJ545H6>r=_>G57*e3H~m-Kv>!f)1DhP2KI%ZwwHA858NZ{^le1^VOy
zuaV3T74e&a6Im6jP>+_BfFq%W><uo}1ug)?Wp?MI-H4NOmIVWGva(z_-ed`Sqm4kl
z?sKjo`pI?r!?c&5i8H`T?8p8zT_Z4@aUn&%mbqyXp(Wie8PhRKR(`q=jBK?rf0vLn
zG5o?Jm)FH$>oL)4O@%k;RtUDLu7|m4vgHd`(R>nsWh2mY8%2Pzvo2A(XYiZl^csDA
zq@=Dr!cS*2)x_bY_k=JDNj{j9BOaQ`+9G8I+6-z&)C(bm@X47tx{q|BCq0x|T5X!+
zYU_#Yndah2-&e;$S9PweHmz`e^tjA4?Y%(Iw}X%N`AH+Bycm?VPMMf74zPwBJefNE
z&^F~b#b95(L4_>boe4=lHzv%-1#?8+Hsir<%A*ln=;9<q4C*^6JiG0wl!?)m&)4yH
zhTtnY)n0G+LuXV^T~tVN1l2jL+uxjWT!W;z<ldOh>gL~HN+z4;{aWT)t5F>-1mez5
zzaEzKn-$4Anv-U;CX=+(!Jn$^kI%TaOou;r?9$>?x1lKi?u@JCCtiR0;+Z7(Rdf3L
zQuom&*xJ1qDUY!aa;zCI$hi3GtVRY5TZ!K{l7@#g&6XJ)auQv!1w~PHdnyLEU!fCj
zaS#=1iWCjx#%<Z07CT!oyOJs>ua8`BiScP0WUN*ZDJzyfX&@qs30Shi5<=r$;#^3{
zjpIlwACu;Lt#Gyy+R~q|8*UpMkb12X^VlSNZzy#Py~u3U3;F~T85p6Qh6|=8eeADo
zph)UUrS3xYaB<eKY&3Cd&apy42hUFJ+87x44ms6S(^0a=@d`k!C20@;>Wvz=a!w;H
zsuSxxl9IemrnZ#b@L0>BJG*Y(W5e1c)+f3YhnRZe^Q9Dq%S7k3!0Uro&uBP1TD)yG
z-5xjLh-n8KIU-`sCuvIHxCvs=)|aHr%|uVj^#^K^lhmnfL!RS2Jbc4wa5&F-I4f=v
zk?bsmF58pN&)Muggvlq>V3ex2;g>rr(_Y;6mc>5q<U9OtRY8As3b;|uymbn&eePyz
z_q#UzUpM}tYyZ2gz%Lu$=<+lDqPoxYXHEROmISo_8haDZ_!oJ6x*N-a#LCwdFK;TC
z5N~w8el!&Q^A!F7<8U)M4_lig4Hc!&ELbn4mxQ%FpM7ohNTuU`Mc0|CD`NHfI7EI4
zy#0VbVx)Tai@RgSM_E*hvh&!16Hv>=wpUKd1%u>6=4xf9Ezn}CxV{t}9@}d#rIMX%
z?j1G(!5q&VE&)31Ab{Y}xan&pq;BmFDl=Z-IB^LDc?>41lRvzSvsb`$%%c3Uu1nLb
zU8uVu`mz90|EHY}A7om#HPj-&Q%a!)Yu2GP4+w=O5jYD)WJi*qwVWw4a2;mH^=mLx
zgF}r~$&XVr=qVx<d|xM3@bsFyBS8@wwHy^~mu#ZS@Df+#L-1*P?gK2IV@~E)Gdbc(
z1l<#HmU+WDLt!RAfl`{Hkd%Py76yMv&?5w$b7^lTozC{pQ*c)%55)n_glXV_-UrYQ
zKwE^CoO~?RM}6twPuAS+_Y)Wv3-js2b-{K)RJK5l>i17`_3aH=QbmYx!dP>nE82>}
z>PPiMed+c3{JoA!IHf1@m9i&;d_~8-T%K{a$IY{nNFFKk`r4IKAH17_UhQ{=64%e9
zK%^1^&?H?48taOeih4vN0AB{*bX1q|K!~Jt@&>yj&K9PVKoq<2@oN^im`5zMbA4Y!
z>z<~?!=Az}cI)PSf$(xi8S4W&J9uTxfzfO!IJC6S#YbN(n7|#Ve21L#zCLsgfCYbi
zPJG~cJdYfs0_t;}7w%q&WZwJ&ufUta${^Jy&2F?e;RuhBa*shHnp;=a5Xeyeh)17*
zWNZp6a5oS-#CnbnH@~-K@tIq7OGH5h@8wj)X!EPJO+36P()p=YN*86mKCKHso8$`U
z;j_i%rF2Pjgf)uQ;Q0#SN`GPts~kHsSv}IG;V|EVwvj)`MU;7blQ9kFNO!+EhrMoo
zx&PmD*}=))!PLpc($rbaO$iEMlw*)pP?0HC-&J4$K$lllF%X@a<(zTRq8_3tl%dI&
zMatvq8w85uMxvoXJsNscff4Kn2R7(OXfA<Q#P9)vm*O4`!@zw2s(_kJ!h!SA@WH`|
zv+B`sg0pAC1E3t+$b$sHD^-#Ac8*rq%EHX}H=Pu)aJcY)?>Ta_LpK8p=9}n`*WW*<
zw_!i`Ao;QJkCEq3ee?JCus=AG+#>wd{Ntt+``7V<xc}z;FJ>XPQ~lw4^4m5)UT+Gw
ze;q#}c5mMQi1^(+<nIH2*oXWwegqQUR95~W@YYP^?*V?;iQEFn{T$$z3+dm3{J0F?
zg82PC$nRIv->`meH}V@=p8val#kylYa(i5Uu0($eeQ|T~{z<Za?CY=7{6}5-yF_;t
z!f%QCZcfjCCi+bX`d7X1yU=%4rEj4RZZuy08}y(0XYLZ*l~KJVFuqZ-{BHz*7FE5=
za90)cmf`ru^XES?{8CMN7x=DP*DY`z@xKE9S^MTUQHHw|clEGtDe6i7Uy6S`40n}#
zZi(E<|4*WyC+n_Y#Vx_&(|;rQnS90FOx;z4xW!+%xsLwxQT`MDKc?w!JNGS1_)YuV
ze`oo5j_!8j-J;Xns44w3`k#CA?q=t1-`g!R!HstDe?tDpyxeUAy2ZD=xv~Ej{GVs!
zZq5EJF0R18;r@FC|J^LzEi}Jng9`pPw!3@r*JZ<xHO4Ok3+DTGI-@__;(uFl{C0!-
zYw#a$cHh5i{WbU|(|=xp{5{r>HOMdH$3zm0{xXp}Sbtbb{4sAoTa)|-oaaCN|G@sb
sLir>5&z=%*(esV}k4gVPzkOy@2Hd|<Wq^Spx%p|nX$EyN`SIWX00;NwSpWb4

literal 0
HcmV?d00001

diff --git a/oxAuth/Server/integrations/super_gluu/repository/com/google/gcm/gcm-server/1.0.1.gluu/gcm-server-1.0.1.gluu.jar.md5 b/oxAuth/Server/integrations/super_gluu/repository/com/google/gcm/gcm-server/1.0.1.gluu/gcm-server-1.0.1.gluu.jar.md5
new file mode 100644
index 00000000..46552dca
--- /dev/null
+++ b/oxAuth/Server/integrations/super_gluu/repository/com/google/gcm/gcm-server/1.0.1.gluu/gcm-server-1.0.1.gluu.jar.md5
@@ -0,0 +1 @@
+a68c1030a94d67cbc64a12f4f760e82c
\ No newline at end of file
diff --git a/oxAuth/Server/integrations/super_gluu/repository/com/google/gcm/gcm-server/1.0.1.gluu/gcm-server-1.0.1.gluu.jar.sha1 b/oxAuth/Server/integrations/super_gluu/repository/com/google/gcm/gcm-server/1.0.1.gluu/gcm-server-1.0.1.gluu.jar.sha1
new file mode 100644
index 00000000..431ae018
--- /dev/null
+++ b/oxAuth/Server/integrations/super_gluu/repository/com/google/gcm/gcm-server/1.0.1.gluu/gcm-server-1.0.1.gluu.jar.sha1
@@ -0,0 +1 @@
+578751f9da59d25403805867930db7ed458c3ae4
\ No newline at end of file
diff --git a/oxAuth/Server/integrations/super_gluu/repository/com/google/gcm/gcm-server/1.0.1.gluu/gcm-server-1.0.1.gluu.pom b/oxAuth/Server/integrations/super_gluu/repository/com/google/gcm/gcm-server/1.0.1.gluu/gcm-server-1.0.1.gluu.pom
new file mode 100644
index 00000000..fd0477f4
--- /dev/null
+++ b/oxAuth/Server/integrations/super_gluu/repository/com/google/gcm/gcm-server/1.0.1.gluu/gcm-server-1.0.1.gluu.pom
@@ -0,0 +1,8 @@
+<?xml version="1.0" encoding="UTF-8"?>
+<project xsi:schemaLocation="http://maven.apache.org/POM/4.0.0 http://maven.apache.org/xsd/maven-4.0.0.xsd" xmlns="http://maven.apache.org/POM/4.0.0"
+    xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance">
+  <modelVersion>4.0.0</modelVersion>
+  <groupId>com.google.gcm</groupId>
+  <artifactId>gcm-server</artifactId>
+  <version>1.0.1.gluu</version>
+</project>
diff --git a/oxAuth/Server/integrations/super_gluu/repository/com/google/gcm/gcm-server/1.0.1.gluu/gcm-server-1.0.1.gluu.pom.md5 b/oxAuth/Server/integrations/super_gluu/repository/com/google/gcm/gcm-server/1.0.1.gluu/gcm-server-1.0.1.gluu.pom.md5
new file mode 100644
index 00000000..6126b5f4
--- /dev/null
+++ b/oxAuth/Server/integrations/super_gluu/repository/com/google/gcm/gcm-server/1.0.1.gluu/gcm-server-1.0.1.gluu.pom.md5
@@ -0,0 +1 @@
+3e2f5fe7273ec568da5d8daab6cb99a3
\ No newline at end of file
diff --git a/oxAuth/Server/integrations/super_gluu/repository/com/google/gcm/gcm-server/1.0.1.gluu/gcm-server-1.0.1.gluu.pom.sha1 b/oxAuth/Server/integrations/super_gluu/repository/com/google/gcm/gcm-server/1.0.1.gluu/gcm-server-1.0.1.gluu.pom.sha1
new file mode 100644
index 00000000..eb0541fd
--- /dev/null
+++ b/oxAuth/Server/integrations/super_gluu/repository/com/google/gcm/gcm-server/1.0.1.gluu/gcm-server-1.0.1.gluu.pom.sha1
@@ -0,0 +1 @@
+82419a7d510b6809d6e34dcf84b12fccd3d63ab1
\ No newline at end of file
diff --git a/oxAuth/Server/integrations/super_gluu/repository/com/google/gcm/gcm-server/maven-metadata.xml b/oxAuth/Server/integrations/super_gluu/repository/com/google/gcm/gcm-server/maven-metadata.xml
new file mode 100644
index 00000000..3fe315a7
--- /dev/null
+++ b/oxAuth/Server/integrations/super_gluu/repository/com/google/gcm/gcm-server/maven-metadata.xml
@@ -0,0 +1,12 @@
+<?xml version="1.0" encoding="UTF-8"?>
+<metadata>
+  <groupId>com.google.gcm</groupId>
+  <artifactId>gcm-server</artifactId>
+  <versioning>
+    <release>1.0.1.gluu</release>
+    <versions>
+      <version>1.0.1.gluu</version>
+    </versions>
+    <lastUpdated>20160713194346</lastUpdated>
+  </versioning>
+</metadata>
diff --git a/oxAuth/Server/integrations/super_gluu/repository/com/google/gcm/gcm-server/maven-metadata.xml.md5 b/oxAuth/Server/integrations/super_gluu/repository/com/google/gcm/gcm-server/maven-metadata.xml.md5
new file mode 100644
index 00000000..bd2630a9
--- /dev/null
+++ b/oxAuth/Server/integrations/super_gluu/repository/com/google/gcm/gcm-server/maven-metadata.xml.md5
@@ -0,0 +1 @@
+6ed9b8a162275e13f176b718271fabac
\ No newline at end of file
diff --git a/oxAuth/Server/integrations/super_gluu/repository/com/google/gcm/gcm-server/maven-metadata.xml.sha1 b/oxAuth/Server/integrations/super_gluu/repository/com/google/gcm/gcm-server/maven-metadata.xml.sha1
new file mode 100644
index 00000000..4083cf36
--- /dev/null
+++ b/oxAuth/Server/integrations/super_gluu/repository/com/google/gcm/gcm-server/maven-metadata.xml.sha1
@@ -0,0 +1 @@
+2c9a252aa4d788e7702cac5dafb31e0dd6393acf
\ No newline at end of file
diff --git a/oxAuth/Server/integrations/super_gluu/sample/super_gluu_creds.json b/oxAuth/Server/integrations/super_gluu/sample/super_gluu_creds.json
new file mode 100644
index 00000000..4f19782c
--- /dev/null
+++ b/oxAuth/Server/integrations/super_gluu/sample/super_gluu_creds.json
@@ -0,0 +1,45 @@
+{
+    "android":{
+        "gcm":{
+            "enabled":false,
+            "api_key":""
+        },
+        "sns":{
+            "enabled":false,
+            "platform_arn":"arn:aws:sns:..."
+        },
+        "gluu":{
+            "enabled":true,
+            "access_key":"36WH2JiexBOoAIBP",
+            "secret_access_key":"ueqsU2Dc7m3r4HmLz4M79DpzzCNqTfek"
+            "platform_id":"ce_gcm"
+        }
+    },
+    "ios":{
+        "apns":{
+            "enabled":false,
+            "p12_file_path":"/etc/certs/SuperGluu-NotificationCertificate.p12",
+            "p12_password":"password",
+            "production":false
+        },
+        "sns":{
+            "enabled":false,
+            "platform_arn":"arn:aws:sns:...",
+            "production":false
+        },
+        "gluu":{
+            "enabled":true,
+            "access_key":"auONAdePWoYFBX6V",
+            "secret_access_key":"f050aW0nnihym0GwktWd7O15jGSQcoei"
+            "platform_id":"ce_apns"
+        }
+    },
+    "sns":{
+        "access_key":"",
+        "secret_key":"",
+        "region":""
+    },
+    "gluu":{
+        "server_uri":"https://cloud.gluu.org/scan/push-api-server"
+    }
+}
diff --git a/oxAuth/Server/integrations/twilio_sms/README.txt b/oxAuth/Server/integrations/twilio_sms/README.txt
new file mode 100644
index 00000000..3ca0409d
--- /dev/null
+++ b/oxAuth/Server/integrations/twilio_sms/README.txt
@@ -0,0 +1,7 @@
+Twilio SMS Authentication Script
+
+This is a two step authentication workflow. The first step is standard username password authentication
+against the local Gluu Server LDAP. The second step requires the person to enter a code that is sent via 
+SMS to the person's mobile number. 
+
+See all details at https://gluu.org/docs/ce/authn-guide/sms-otp/
diff --git a/oxAuth/Server/integrations/twilio_sms/twilio2FA.py b/oxAuth/Server/integrations/twilio_sms/twilio2FA.py
new file mode 100644
index 00000000..0e1ac16d
--- /dev/null
+++ b/oxAuth/Server/integrations/twilio_sms/twilio2FA.py
@@ -0,0 +1,254 @@
+# oxAuth is available under the MIT License (2008). See http://opensource.org/licenses/MIT for full text.
+# Copyright (c) 2018, Gluu
+#
+# Author: Jose Gonzalez
+# Author: Gasmyr Mougang
+
+from org.gluu.service.cdi.util import CdiUtil
+from org.gluu.oxauth.security import Identity
+from org.gluu.model.custom.script.type.auth import PersonAuthenticationType
+from org.gluu.oxauth.service import AuthenticationService
+from org.gluu.oxauth.service.common import UserService
+from org.gluu.oxauth.service import SessionIdService
+from org.gluu.oxauth.util import ServerUtil
+from org.gluu.util import StringHelper, ArrayHelper
+from java.util import Arrays
+from javax.faces.application import FacesMessage
+from org.gluu.jsf2.message import FacesMessages
+
+import com.twilio.Twilio as Twilio
+import com.twilio.rest.api.v2010.account.Message as Message
+import com.twilio.type.PhoneNumber as PhoneNumber
+import org.codehaus.jettison.json.JSONArray as JSONArray
+
+import java
+import random
+import jarray
+import sys
+
+class PersonAuthentication(PersonAuthenticationType):
+    def __init__(self, currentTimeMillis):
+        self.currentTimeMillis = currentTimeMillis
+        self.mobile_number = None
+        self.identity = CdiUtil.bean(Identity)
+
+    def init(self, customScript, configurationAttributes):
+        print "=============================================="
+        print "===TWILIO SMS INITIALIZATION=================="
+        print "=============================================="
+        self.ACCOUNT_SID = None
+        self.AUTH_TOKEN = None
+        self.FROM_NUMBER = None
+
+        # Get Custom Properties
+        try:
+            self.ACCOUNT_SID = configurationAttributes.get("twilio_sid").getValue2()
+        except:
+            print 'TwilioSMS, Missing required configuration attribute "twilio_sid"'
+
+        try:
+            self.AUTH_TOKEN = configurationAttributes.get("twilio_token").getValue2()
+        except:
+            print'TwilioSMS, Missing required configuration attribute "twilio_token"'
+        try:
+            self.FROM_NUMBER = configurationAttributes.get("from_number").getValue2()
+        except:
+            print'TwilioSMS, Missing required configuration attribute "from_number"'
+
+        if None in (self.ACCOUNT_SID, self.AUTH_TOKEN, self.FROM_NUMBER):
+            print "twilio_sid, twilio_token, from_number is empty ... returning False"
+            return False
+
+        print "===TWILIO SMS INITIALIZATION DONE PROPERLY====="  
+        return True
+
+    def destroy(self, configurationAttributes):
+        print "Twilio SMS. Destroy"
+        print "Twilio SMS. Destroyed successfully"
+        return True
+
+    def getApiVersion(self):
+        return 11
+        
+    def getAuthenticationMethodClaims(self, requestParameters):
+        return None
+        
+    def isValidAuthenticationMethod(self, usageType, configurationAttributes):
+        return True
+
+    def getAlternativeAuthenticationMethod(self, usageType, configurationAttributes):
+        return None
+
+    def authenticate(self, configurationAttributes, requestParameters, step):
+        print "=============================================="
+        print "====TWILIO SMS AUTHENCATION==================="
+        print "=============================================="
+        userService = CdiUtil.bean(UserService)
+        authenticationService = CdiUtil.bean(AuthenticationService)
+        sessionIdService = CdiUtil.bean(SessionIdService)
+        facesMessages = CdiUtil.bean(FacesMessages)
+        facesMessages.setKeepMessages()
+
+        session_attributes = self.identity.getSessionId().getSessionAttributes()
+        form_passcode = ServerUtil.getFirstValue(requestParameters, "passcode")
+        form_name = ServerUtil.getFirstValue(requestParameters, "TwilioSmsloginForm")
+
+        print "TwilioSMS. form_response_passcode: %s" % str(form_passcode)
+
+        if step == 1:
+            print "=============================================="
+            print "=TWILIO SMS STEP 1 | Password Authentication=="
+            print "=============================================="
+            credentials = self.identity.getCredentials()
+            user_name = credentials.getUsername()
+            user_password = credentials.getPassword()
+            logged_in = False
+            if StringHelper.isNotEmptyString(user_name) and StringHelper.isNotEmptyString(user_password):
+                logged_in = authenticationService.authenticate(user_name, user_password)
+
+            if not logged_in:
+                return False
+
+            # Get the Person's number and generate a code
+            foundUser = None
+            try:
+                foundUser = authenticationService.getAuthenticatedUser()
+            except:
+                print 'TwilioSMS, Error retrieving user %s from LDAP' % (user_name)
+                return False
+
+            try:
+                isVerified = foundUser.getAttribute("phoneNumberVerified")
+                if isVerified:
+                    self.mobile_number = foundUser.getAttribute("employeeNumber")
+                if  self.mobile_number is None:
+                    mobile_numbers_json = foundUser.getAttribute("mobile", True, True)
+                    if mobile_numbers_json is not None:
+                        if mobile_numbers_json is not None:
+                            self.mobile_number = mobile_numbers_json.get(0)
+                if  self.mobile_number is None:
+                    self.mobile_number = foundUser.getAttribute("telephoneNumber")
+                if  self.mobile_number is None:
+                    print "TwilioSMS, Error finding mobile number for user '%s'" % user_name
+
+            except:
+                facesMessages.add(FacesMessage.SEVERITY_ERROR, "Failed to determine mobile phone number")
+                print "TwilioSMS, Error finding mobile number for '%s'. Exception: '%s'" % (user_name, sys.exc_info()[1])
+                return False
+
+            # Generate Random six digit code and store it in array
+            code = random.randint(100000, 999999)
+
+            # Get code and save it in LDAP temporarily with special session entry
+            self.identity.setWorkingParameter("code", code)
+            sessionId = sessionIdService.getSessionId() # fetch from persistence
+            sessionId.getSessionAttributes().put("code", code)
+
+            try:
+                Twilio.init(self.ACCOUNT_SID, self.AUTH_TOKEN);
+                message = Message.creator(PhoneNumber(self.mobile_number), PhoneNumber(self.FROM_NUMBER), str(code)).create();
+                print "++++++++++++++++++++++++++++++++++++++++++++++"
+                print 'TwilioSMs, Message Sid: %s' % (message.getSid())
+                print 'TwilioSMs, User phone: %s' % (self.mobile_number)
+                print "++++++++++++++++++++++++++++++++++++++++++++++"
+                sessionId.getSessionAttributes().put("mobile_number", self.mobile_number)
+                sessionId.getSessionAttributes().put("mobile", self.mobile_number)
+                sessionIdService.updateSessionId(sessionId)
+                self.identity.setWorkingParameter("mobile_number", self.mobile_number)
+                self.identity.getSessionId().getSessionAttributes().put("mobile_number",self.mobile_number)
+                self.identity.setWorkingParameter("mobile", self.mobile_number)
+                self.identity.getSessionId().getSessionAttributes().put("mobile",self.mobile_number)
+                print "++++++++++++++++++++++++++++++++++++++++++++++"
+                print "Number: %s" % (self.identity.getWorkingParameter("mobile_number"))
+                print "Mobile: %s" % (self.identity.getWorkingParameter("mobile"))
+                print "++++++++++++++++++++++++++++++++++++++++++++++"
+                print "========================================"
+                print "===TWILIO SMS FIRST STEP DONE PROPERLY=="
+                print "========================================"
+                return True
+            except Exception, ex:
+                facesMessages.add(FacesMessage.SEVERITY_ERROR, "Failed to send message to mobile phone")
+                print "TwilioSMS. Error sending message to Twilio"
+                print "TwilioSMS. Unexpected error:", ex
+
+            return False
+        elif step == 2:
+            # Retrieve the session attribute
+            print "=============================================="
+            print "=TWILIO SMS STEP 2 | Password Authentication=="
+            print "=============================================="
+            code = session_attributes.get("code")
+            print '=======> Session code is "%s"' % str(code)
+            sessionIdService = CdiUtil.bean(SessionIdService)
+            sessionId = sessionIdService.getSessionId() # fetch from persistence
+            code = sessionId.getSessionAttributes().get("code")
+            print '=======> Database code is "%s"' % str(code)
+            self.identity.setSessionId(sessionId)
+            print "=============================================="
+            print "TwilioSMS. Code: %s" % str(code)
+            print "=============================================="
+            if code is None:
+                print "TwilioSMS. Failed to find previously sent code"
+                return False
+
+            if form_passcode is None:
+                print "TwilioSMS. Passcode is empty"
+                return False
+
+            if len(form_passcode) != 6:
+                print "TwilioSMS. Passcode from response is not 6 digits: %s" % form_passcode
+                return False
+
+            if form_passcode == code:
+                print "TiwlioSMS, SUCCESS! User entered the same code!"
+                print "========================================"
+                print "===TWILIO SMS SECOND STEP DONE PROPERLY"
+                print "========================================"
+                return True
+
+            print "+++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++" 
+            print "TwilioSMS. FAIL! User entered the wrong code! %s != %s" % (form_passcode, code)
+            print "+++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++" 
+            facesMessages.add(FacesMessage.SEVERITY_ERROR, "Incorrect Twilio code, please try again.")
+            print "================================================"
+            print "===TWILIO SMS SECOND STEP FAILED: INCORRECT CODE"
+            print "================================================"
+            return False
+
+        print "TwilioSMS. ERROR: step param not found or != (1|2)"
+
+        return False
+
+    def prepareForStep(self, configurationAttributes, requestParameters, step):
+        if step == 1:
+            print "TwilioSMS. Prepare for Step 1"
+            return True
+        elif step == 2:
+            print "TwilioSMS. Prepare for Step 2"
+            return True
+        return False
+
+    def getExtraParametersForStep(self, configurationAttributes, step):
+        if step == 2:
+            return Arrays.asList("code")
+
+        return None
+
+    def getCountAuthenticationSteps(self, configurationAttributes):
+        return 2
+
+    def getPageForStep(self, configurationAttributes, step):
+        if step == 2:
+            return "/auth/otp_sms/otp_sms.xhtml"
+
+        return ""
+        
+    def getNextStep(self, configurationAttributes, requestParameters, step):
+        return -1
+
+    def getLogoutExternalUrl(self, configurationAttributes, requestParameters):
+        print "Get external logout URL call"
+        return None
+        
+    def logout(self, configurationAttributes, requestParameters):
+        return True
diff --git a/oxAuth/Server/integrations/u2f/U2fExternalAuthenticator.py b/oxAuth/Server/integrations/u2f/U2fExternalAuthenticator.py
new file mode 100644
index 00000000..95079b88
--- /dev/null
+++ b/oxAuth/Server/integrations/u2f/U2fExternalAuthenticator.py
@@ -0,0 +1,214 @@
+# oxAuth is available under the MIT License (2008). See http://opensource.org/licenses/MIT for full text.
+# Copyright (c) 2016, Gluu
+#
+# Author: Yuriy Movchan
+#
+
+import java
+import sys
+from javax.ws.rs.core import Response
+from javax.ws.rs import WebApplicationException
+from javax.ws.rs import ClientErrorException
+from org.gluu.model.custom.script.type.auth import PersonAuthenticationType
+from org.gluu.oxauth.client.fido.u2f import FidoU2fClientFactory
+from org.gluu.oxauth.model.config import Constants
+from org.gluu.oxauth.security import Identity
+from org.gluu.oxauth.service import AuthenticationService, SessionIdService
+from org.gluu.oxauth.service.common import UserService
+from org.gluu.oxauth.service.fido.u2f import DeviceRegistrationService
+from org.gluu.oxauth.util import ServerUtil
+from org.gluu.service.cdi.util import CdiUtil
+from org.gluu.util import StringHelper
+
+
+class PersonAuthentication(PersonAuthenticationType):
+    def __init__(self, currentTimeMillis):
+        self.currentTimeMillis = currentTimeMillis
+
+    def init(self, customScript, configurationAttributes):
+        print "U2F. Initialization"
+
+        print "U2F. Initialization. Downloading U2F metadata"
+        u2f_server_uri = configurationAttributes.get("u2f_server_uri").getValue2()
+        u2f_server_metadata_uri = u2f_server_uri + "/.well-known/fido-u2f-configuration"
+
+        metaDataConfigurationService = FidoU2fClientFactory.instance().createMetaDataConfigurationService(u2f_server_metadata_uri)
+
+        max_attempts = 20
+        for attempt in range(1, max_attempts + 1):
+            try:
+                self.metaDataConfiguration = metaDataConfigurationService.getMetadataConfiguration()
+                break
+            except WebApplicationException, ex:
+                # Detect if last try or we still get Service Unavailable HTTP error
+                if (attempt == max_attempts) or (ex.getResponse().getStatus() != Response.Status.SERVICE_UNAVAILABLE.getStatusCode()):
+                    raise ex
+
+                java.lang.Thread.sleep(3000)
+                print "Attempting to load metadata: %d" % attempt
+        
+        print "U2F. Initialized successfully"
+        return True   
+
+    def destroy(self, configurationAttributes):
+        print "U2F. Destroy"
+        print "U2F. Destroyed successfully"
+        return True
+
+    def getApiVersion(self):
+        return 11
+        
+    def getAuthenticationMethodClaims(self, requestParameters):
+        return None
+        
+    def isValidAuthenticationMethod(self, usageType, configurationAttributes):
+        return True
+
+    def getAlternativeAuthenticationMethod(self, usageType, configurationAttributes):
+        return None
+
+    def authenticate(self, configurationAttributes, requestParameters, step):
+        authenticationService = CdiUtil.bean(AuthenticationService)
+
+        identity = CdiUtil.bean(Identity)
+        credentials = identity.getCredentials()
+
+        user_name = credentials.getUsername()
+
+        if (step == 1):
+            print "U2F. Authenticate for step 1"
+
+            user_password = credentials.getPassword()
+            logged_in = False
+            if (StringHelper.isNotEmptyString(user_name) and StringHelper.isNotEmptyString(user_password)):
+                userService = CdiUtil.bean(UserService)
+                logged_in = authenticationService.authenticate(user_name, user_password)
+
+            if (not logged_in):
+                return False
+
+            return True
+        elif (step == 2):
+            print "U2F. Authenticate for step 2"
+
+            token_response = ServerUtil.getFirstValue(requestParameters, "tokenResponse")
+            if token_response == None:
+                print "U2F. Authenticate for step 2. tokenResponse is empty"
+                return False
+
+            auth_method = ServerUtil.getFirstValue(requestParameters, "authMethod")
+            if auth_method == None:
+                print "U2F. Authenticate for step 2. authMethod is empty"
+                return False
+
+            authenticationService = CdiUtil.bean(AuthenticationService)
+            user = authenticationService.getAuthenticatedUser()
+            if (user == None):
+                print "U2F. Prepare for step 2. Failed to determine user name"
+                return False
+
+            if (auth_method == 'authenticate'):
+                print "U2F. Prepare for step 2. Call FIDO U2F in order to finish authentication workflow"
+                authenticationRequestService = FidoU2fClientFactory.instance().createAuthenticationRequestService(self.metaDataConfiguration)
+                authenticationStatus = authenticationRequestService.finishAuthentication(user.getUserId(), token_response)
+
+                if (authenticationStatus.getStatus() != Constants.RESULT_SUCCESS):
+                    print "U2F. Authenticate for step 2. Get invalid authentication status from FIDO U2F server"
+                    return False
+
+                return True
+            elif (auth_method == 'enroll'):
+                print "U2F. Prepare for step 2. Call FIDO U2F in order to finish registration workflow"
+                registrationRequestService = FidoU2fClientFactory.instance().createRegistrationRequestService(self.metaDataConfiguration)
+                registrationStatus = registrationRequestService.finishRegistration(user.getUserId(), token_response)
+
+                if (registrationStatus.getStatus() != Constants.RESULT_SUCCESS):
+                    print "U2F. Authenticate for step 2. Get invalid registration status from FIDO U2F server"
+                    return False
+
+                return True
+            else:
+                print "U2F. Prepare for step 2. Authenticatiod method is invalid"
+                return False
+
+            return False
+        else:
+            return False
+
+    def prepareForStep(self, configurationAttributes, requestParameters, step):
+        identity = CdiUtil.bean(Identity)
+
+        if (step == 1):
+            return True
+        elif (step == 2):
+            print "U2F. Prepare for step 2"
+
+            session = CdiUtil.bean(SessionIdService).getSessionId()
+            if session == None:
+                print "U2F. Prepare for step 2. Failed to determine session_id"
+                return False
+
+            authenticationService = CdiUtil.bean(AuthenticationService)
+            user = authenticationService.getAuthenticatedUser()
+            if (user == None):
+                print "U2F. Prepare for step 2. Failed to determine user name"
+                return False
+
+            u2f_application_id = configurationAttributes.get("u2f_application_id").getValue2()
+
+            # Check if user have registered devices
+            deviceRegistrationService = CdiUtil.bean(DeviceRegistrationService)
+
+            userInum = user.getAttribute("inum")
+
+            registrationRequest = None
+            authenticationRequest = None
+
+            deviceRegistrations = deviceRegistrationService.findUserDeviceRegistrations(userInum, u2f_application_id)
+            if (deviceRegistrations.size() > 0):
+                print "U2F. Prepare for step 2. Call FIDO U2F in order to start authentication workflow"
+
+                try:
+                    authenticationRequestService = FidoU2fClientFactory.instance().createAuthenticationRequestService(self.metaDataConfiguration)
+                    authenticationRequest = authenticationRequestService.startAuthentication(user.getUserId(), None, u2f_application_id, session.getId())
+                except ClientErrorException, ex:
+                    if (ex.getResponse().getResponseStatus() != Response.Status.NOT_FOUND):
+                        print "U2F. Prepare for step 2. Failed to start authentication workflow. Exception:", sys.exc_info()[1]
+                        return False
+            else:
+                print "U2F. Prepare for step 2. Call FIDO U2F in order to start registration workflow"
+                registrationRequestService = FidoU2fClientFactory.instance().createRegistrationRequestService(self.metaDataConfiguration)
+                registrationRequest = registrationRequestService.startRegistration(user.getUserId(), u2f_application_id, session.getId())
+
+            identity.setWorkingParameter("fido_u2f_authentication_request", ServerUtil.asJson(authenticationRequest))
+            identity.setWorkingParameter("fido_u2f_registration_request", ServerUtil.asJson(registrationRequest))
+
+            return True
+        elif (step == 3):
+            print "U2F. Prepare for step 3"
+
+            return True
+        else:
+            return False
+
+    def getExtraParametersForStep(self, configurationAttributes, step):
+        return None
+
+    def getCountAuthenticationSteps(self, configurationAttributes):
+        return 2
+
+    def getPageForStep(self, configurationAttributes, step):
+        if (step == 2):
+            return "/auth/u2f/login.xhtml"
+
+        return ""
+
+    def getNextStep(self, configurationAttributes, requestParameters, step):
+        return -1
+
+    def getLogoutExternalUrl(self, configurationAttributes, requestParameters):
+        print "Get external logout URL call"
+        return None
+
+    def logout(self, configurationAttributes, requestParameters):
+        return True
diff --git a/oxAuth/Server/integrations/uaf/Installation.md b/oxAuth/Server/integrations/uaf/Installation.md
new file mode 100644
index 00000000..d2cf46ca
--- /dev/null
+++ b/oxAuth/Server/integrations/uaf/Installation.md
@@ -0,0 +1,48 @@
+This list of steps needed to do to enable SAML person authentication module.
+
+1. Configure apache HTTP proxy to access UAF server:  
+    - Make sure that enabled next apache2 plugins: proxy, proxy_http, ssl
+      To enable them use next commands:
+        * a2enmod proxy
+        * a2enmod proxy_http
+        * a2enmod ssl
+    - Add to Apache2 https_gluu.conf file next lines:
+```
+        SSLProxyEngine on
+        SSLProxyCheckPeerCN on
+        SSLProxyCheckPeerExpire on
+
+        <Location /nnl>
+                ProxyPass https://evaluation4.noknoktest.com:8443/nnl retry=5 disablereuse=On
+                ProxyPassReverse https://evaluation4.noknoktest.com:8443/nnl
+                Order allow,deny
+                Allow from all
+        </Location>
+```
+	Proxy between UAF and oxAuth sever is needed because UAF server not supports CORS operations. In this configuration we uses evaluation server.
+
+2. Confire new custom module in oxTrust:
+    - Log into oxTrust with administrative permissions.
+    - Open "Configuration→Manage Custom Scripts" page.
+    - Select "Person Authentication" tab.
+    - Click on "Add custom script configuration" link.
+    - Enter name = uaf
+    - Enter level = 0-100 (priority of this method).
+    - Select usage type "Interactive".
+    - Add custom required and optional properties which specified in "Properties description.md".
+    - Copy/paste script from UafExternalAuthenticator.py.
+    - Activate it via "Enabled" checkbox.
+    - Click "Update" button at the bottom of this page.
+
+3. Configure oxAuth to use UAF authentication by default:
+    - Log into oxTrust with administrative permissions.
+    - Open "Configuration→Manage Authentication" page.
+    - Scroll to "Default Authentication Method" panel. Select "uaf" authentication mode.
+    - Click "Update" button at the bottom of this page.
+
+4. Try to log in using UAF authentication method:
+    - Wait 30 seconds and try to log in again. During this time oxAuth reload list of available person authentication modules.
+    - Open second browser or second browsing session and try to log in again. It's better to try to do that from another browser session because we can return back to previous authentication method if something will go wrong.
+
+There are log messages in this custom authentication script. In order to debug this module we can use command like this:
+tail -f /opt/tomcat/logs/wrapper.log | grep "UAF"
diff --git a/oxAuth/Server/integrations/uaf/Properties description.md b/oxAuth/Server/integrations/uaf/Properties description.md
new file mode 100644
index 00000000..5c7e6385
--- /dev/null
+++ b/oxAuth/Server/integrations/uaf/Properties description.md	
@@ -0,0 +1,20 @@
+This is a person authentication module for oxAuth that enables [UAF](https://www.noknok.com) for user authentication.
+
+The module has a few properties:
+
+1) uaf_server_uri - It's mandatory property. It's URL to UAF server.
+   Example: https://ce-dev.gluu.org
+
+2) uaf_policy_name - Specify UAF policy name. It's optional property.
+   Example: default
+
+3) send_push_notifaction - Specify if UAF server should send push notifications to person mobile phone.
+   It's optional property.
+   Allowed values: true/false
+   Example: false
+
+4) registration_uri - It's URL to page where user can register new account. It's optional property.
+    Example: https://ce-dev.gluu.org/identity/register
+
+5) qr_options - Specify width and height of QR image. It's optional property.
+    Example: qr_options: { width: 400, height: 400 }
diff --git a/oxAuth/Server/integrations/uaf/Readme.md b/oxAuth/Server/integrations/uaf/Readme.md
new file mode 100644
index 00000000..8073ff5b
--- /dev/null
+++ b/oxAuth/Server/integrations/uaf/Readme.md
@@ -0,0 +1,51 @@
+# FIDO UAF Authenticator
+
+UAF allows applications to take advantage of the security capabilities of modern devices such as fingerprint, iris, and voice biometrics. It provides a unified infrastructure that allows you to integrate these capabilities in a simple manner to enable authentication that is both more user friendly and more secure than passwords.
+
+## Typical UAF architecture
+
+The following diagram provides an overview of the UAF infrastructure, which contains (1) components that resides on the user’s device, and (2) server side components that connect to a UAF server. The typical gateway between these two parts is a mobile browser with a UAF plugin. The RP should provide proxy capabilities to deliver messages from the mobile browser plugin to the UAF server.
+
+![Typical UAF design](./img/typical_uaf_architecture.png)
+
+It's not very convenient when the RP is a second device. Non Nok offers an Out-of-band (OOB) API which simplifies UAF integration in this case.   
+
+## Out-of-Band Authentication 
+Out-of-Band authentication allows mobile device authenticatation with UAF even on devices that 
+do not have any UAF components installed. Using this workflow, the user of a laptop authenticates 
+to a web application using their mobile device. The user binds the browser session to his or her 
+mobile device by scanning a QR code, or by triggering a push notification. The user then performs 
+the UAF authentication on an out-of-band channel between the mobile device and the Nok Nok 
+Authentication Server. Once the user authenticates successfully, the Authentication Server 
+notifies your application server. OOB is a proprietary feature developed by Nok Nok Labs on top 
+of the FIDO UAF protocol. 
+
+![OOB with QR codes](./img/oob_qr_code.png)
+
+Also it allows push notification messages to be sent by the platform.
+
+## Device integration models
+
+This is not a part of the UAF authentication script, but it shows the modular
+architecture of the UAF mobile authentication stack.
+
+Some devices will feature a preloaded UAF Client and one or more UAF ASMs. In some cases, 
+devices may only feature a preloaded UAF ASM, rather than both a UAF Client and ASM. Older 
+legacy devices may feature neither a UAF Client nor a UAF ASM. Nevertheless the App SDK 
+can support each of these three scenarios illustrated below from the same mobile application. 
+
+![Typical UAF design](./img/uaf_device_integration_models.png)
+
+
+## Integration with oxAuth
+
+The oxAuth UAF integration leverages the Person Authentication module. This workflow shows
+the communication process between the components.
+
+![Typical UAF design](./img/gluu_uaf_integration_authentication_workflow.png)
+
+## Person authentication module activation
+
+This module is part of CE. It has only one mandatory property "uaf_server_uri". There are more information about module configuration in "Installation.md" and "Properties description.md"
+
+Nok Nok SDK contains sample application which allows to test script. In the SDK there are binaries and source code of this application.
diff --git a/oxAuth/Server/integrations/uaf/UafExternalAuthenticator.py b/oxAuth/Server/integrations/uaf/UafExternalAuthenticator.py
new file mode 100644
index 00000000..73319124
--- /dev/null
+++ b/oxAuth/Server/integrations/uaf/UafExternalAuthenticator.py
@@ -0,0 +1,398 @@
+# oxAuth is available under the MIT License (2008). See http://opensource.org/licenses/MIT for full text.
+# Copyright (c) 2016, Gluu
+#
+# Author: Yuriy Movchan
+#
+
+# Requires the following custom properties and values:
+#   uaf_server_uri: <idp_hostname>
+#
+# These are non mandatory custom properties and values:
+#   uaf_policy_name: default
+#   send_push_notifaction: false
+#   registration_uri: https://<idp_hostname>/identity/register
+#   qr_options: { width: 400, height: 400 }
+
+from org.gluu.model.custom.script.type.auth import PersonAuthenticationType
+from org.gluu.service.cdi.util import CdiUtil
+from org.gluu.oxauth.security import Identity
+from org.gluu.oxauth.service import AuthenticationService, SessionIdService
+from org.gluu.oxauth.service.common import UserService
+from org.gluu.util import StringHelper, ArrayHelper
+from org.gluu.oxauth.util import ServerUtil
+from org.gluu.oxauth.model.config import Constants
+from javax.ws.rs.core import Response
+from java.util import Arrays
+from org.gluu.oxauth.service.net import HttpService
+from org.apache.http.params import CoreConnectionPNames
+
+import sys
+import java
+import json
+
+class PersonAuthentication(PersonAuthenticationType):
+    def __init__(self, currentTimeMillis):
+        self.currentTimeMillis = currentTimeMillis
+
+    def init(self, customScript, configurationAttributes):
+        print "UAF. Initialization"
+
+        if not configurationAttributes.containsKey("uaf_server_uri"):
+            print "UAF. Initialization. Property uaf_server_uri is mandatory"
+            return False
+
+        self.uaf_server_uri = configurationAttributes.get("uaf_server_uri").getValue2()
+
+        self.uaf_policy_name = "default"
+        if configurationAttributes.containsKey("uaf_policy_name"):
+            self.uaf_policy_name = configurationAttributes.get("uaf_policy_name").getValue2()
+
+        self.send_push_notifaction = False
+        if configurationAttributes.containsKey("send_push_notifaction"):
+            self.send_push_notifaction = StringHelper.toBoolean(configurationAttributes.get("send_push_notifaction").getValue2(), False)
+
+        self.registration_uri = None
+        if configurationAttributes.containsKey("registration_uri"):
+            self.registration_uri = configurationAttributes.get("registration_uri").getValue2()
+
+        self.customQrOptions = {}
+        if configurationAttributes.containsKey("qr_options"):
+            self.customQrOptions = configurationAttributes.get("qr_options").getValue2()
+
+        print "UAF. Initializing HTTP client"
+        httpService = CdiUtil.bean(HttpService)
+        self.http_client = httpService.getHttpsClient()
+        http_client_params = self.http_client.getParams()
+        http_client_params.setIntParameter(CoreConnectionPNames.CONNECTION_TIMEOUT, 15 * 1000)
+
+        print "UAF. Initialized successfully. uaf_server_uri: '%s', uaf_policy_name: '%s', send_push_notifaction: '%s', registration_uri: '%s', qr_options: '%s'" % (self.uaf_server_uri, self.uaf_policy_name, self.send_push_notifaction, self.registration_uri, self.customQrOptions)
+        
+        print "UAF. Initialized successfully"
+        return True
+
+    def destroy(self, configurationAttributes):
+        print "UAF. Destroy"
+        print "UAF. Destroyed successfully"
+        return True
+
+    def getApiVersion(self):
+        return 11
+        
+    def getAuthenticationMethodClaims(self, requestParameters):
+        return None
+        
+    def isValidAuthenticationMethod(self, usageType, configurationAttributes):
+        return True
+
+    def getAlternativeAuthenticationMethod(self, usageType, configurationAttributes):
+        return None
+
+    def authenticate(self, configurationAttributes, requestParameters, step):
+        identity = CdiUtil.bean(Identity)
+        credentials = identity.getCredentials()
+
+        session_attributes = identity.getSessionId().getSessionAttributes()
+
+        self.setRequestScopedParameters(identity)
+
+        if (step == 1):
+            print "UAF. Authenticate for step 1"
+
+            user_name = credentials.getUsername()
+
+            authenticated_user = self.processBasicAuthentication(credentials)
+            if authenticated_user == None:
+                return False
+
+            uaf_auth_method = "authenticate"
+            # Uncomment this block if you need to allow user second device registration
+            #enrollment_mode = ServerUtil.getFirstValue(requestParameters, "loginForm:registerButton")
+            #if StringHelper.isNotEmpty(enrollment_mode):
+            #    uaf_auth_method = "enroll"
+            
+            if uaf_auth_method == "authenticate":
+                user_enrollments = self.findEnrollments(credentials)
+                if len(user_enrollments) == 0:
+                    uaf_auth_method = "enroll"
+                    print "UAF. Authenticate for step 1. There is no UAF enrollment for user '%s'. Changing uaf_auth_method to '%s'" % (user_name, uaf_auth_method)
+
+            print "UAF. Authenticate for step 1. uaf_auth_method: '%s'" % uaf_auth_method
+            
+            identity.setWorkingParameter("uaf_auth_method", uaf_auth_method)
+
+            return True
+        elif (step == 2):
+            print "UAF. Authenticate for step 2"
+
+            session = CdiUtil.bean(SessionIdService).getSessionId()
+            if session == None:
+                print "UAF. Prepare for step 2. Failed to determine session_id"
+                return False
+
+            user = authenticationService.getAuthenticatedUser()
+            if (user == None):
+                print "UAF. Authenticate for step 2. Failed to determine user name"
+                return False
+            user_name = user.getUserId()
+
+            uaf_auth_result = ServerUtil.getFirstValue(requestParameters, "auth_result")
+            if uaf_auth_result != "success":
+                print "UAF. Authenticate for step 2. auth_result is '%s'" % uaf_auth_result
+                return False
+
+            # Restore state from session
+            uaf_auth_method = session_attributes.get("uaf_auth_method")
+
+            if not uaf_auth_method in ['enroll', 'authenticate']:
+                print "UAF. Authenticate for step 2. Failed to authenticate user. uaf_auth_method: '%s'" % uaf_auth_method
+                return False
+
+            # Request STATUS_OBB
+            if True:
+                #TODO: Remove this condition
+                # It's workaround becuase it's not possible to call STATUS_OBB 2 times. First time on browser and second ime on server
+                uaf_user_device_handle = ServerUtil.getFirstValue(requestParameters, "auth_handle")
+            else:
+                uaf_obb_auth_method = session_attributes.get("uaf_obb_auth_method")
+                uaf_obb_server_uri = session_attributes.get("uaf_obb_server_uri")
+                uaf_obb_start_response = session_attributes.get("uaf_obb_start_response")
+
+                # Prepare STATUS_OBB
+                uaf_obb_start_response_json = json.loads(uaf_obb_start_response)
+                uaf_obb_status_request_dictionary = { "operation": "STATUS_%s" % uaf_obb_auth_method,
+                                                      "userName": user_name,
+                                                      "needDetails": 1,
+                                                      "oobStatusHandle": uaf_obb_start_response_json["oobStatusHandle"],
+                                                    }
+    
+                uaf_obb_status_request = json.dumps(uaf_obb_status_request_dictionary, separators=(',',':'))
+                print "UAF. Authenticate for step 2. Prepared STATUS request: '%s' to send to '%s'" % (uaf_obb_status_request, uaf_obb_server_uri)
+
+                uaf_status_obb_response = self.executePost(uaf_obb_server_uri, uaf_obb_status_request)
+                if uaf_status_obb_response == None:
+                    return False
+
+                print "UAF. Authenticate for step 2. Get STATUS response: '%s'" % uaf_status_obb_response
+                uaf_status_obb_response_json = json.loads(uaf_status_obb_response)
+                
+                if uaf_status_obb_response_json["statusCode"] != 4000:
+                    print "UAF. Authenticate for step 2. UAF operation status is invalid. statusCode: '%s'" % uaf_status_obb_response_json["statusCode"]
+                    return False
+
+                uaf_user_device_handle = uaf_status_obb_response_json["additionalInfo"]["authenticatorsResult"]["handle"]
+
+            if StringHelper.isEmpty(uaf_user_device_handle):
+                print "UAF. Prepare for step 2. Failed to get UAF handle"
+                return False
+
+            uaf_user_external_uid = "uaf:%s" % uaf_user_device_handle
+            print "UAF. Authenticate for step 2. UAF handle: '%s'" % uaf_user_external_uid
+
+            if uaf_auth_method == "authenticate":
+                # Validate if user used device with same keYHandle
+                user_enrollments = self.findEnrollments(credentials)
+                if len(user_enrollments) == 0:
+                    uaf_auth_method = "enroll"
+                    print "UAF. Authenticate for step 2. There is no UAF enrollment for user '%s'." % user_name
+                    return False
+                
+                for user_enrollment in user_enrollments:
+                    if StringHelper.equalsIgnoreCase(user_enrollment, uaf_user_device_handle):
+                        print "UAF. Authenticate for step 2. There is UAF enrollment for user '%s'. User authenticated successfully" % user_name
+                        return True
+            else:
+                userService = CdiUtil.bean(UserService)
+
+                # Double check just to make sure. We did checking in previous step
+                # Check if there is user which has uaf_user_external_uid
+                # Avoid mapping user cert to more than one IDP account
+                find_user_by_external_uid = userService.getUserByAttribute("oxExternalUid", uaf_user_external_uid)
+                if find_user_by_external_uid == None:
+                    # Add uaf_user_external_uid to user's external GUID list
+                    find_user_by_external_uid = userService.addUserAttribute(user_name, "oxExternalUid", uaf_user_external_uid)
+                    if find_user_by_external_uid == None:
+                        print "UAF. Authenticate for step 2. Failed to update current user"
+                        return False
+    
+                    return True
+
+            return False
+        else:
+            return False
+
+    def prepareForStep(self, configurationAttributes, requestParameters, step):
+        authenticationService = CdiUtil.bean(AuthenticationService)
+
+        identity = CdiUtil.bean(Identity)
+        credentials = identity.getCredentials()
+
+        session_attributes = identity.getSessionId().getSessionAttributes()
+
+        self.setRequestScopedParameters(identity)
+
+        if (step == 1):
+            return True
+        elif (step == 2):
+            print "UAF. Prepare for step 2"
+
+            session = CdiUtil.bean(SessionIdService).getSessionId()
+            if session == None:
+                print "UAF. Prepare for step 2. Failed to determine session_id"
+                return False
+
+            user = authenticationService.getAuthenticatedUser()
+            if (user == None):
+                print "UAF. Prepare for step 2. Failed to determine user name"
+                return False
+
+            uaf_auth_method = session_attributes.get("uaf_auth_method")
+            if StringHelper.isEmpty(uaf_auth_method):
+                print "UAF. Prepare for step 2. Failed to determine auth_method"
+                return False
+
+            print "UAF. Prepare for step 2. uaf_auth_method: '%s'" % uaf_auth_method
+
+            uaf_obb_auth_method = "OOB_REG"
+            uaf_obb_server_uri = self.uaf_server_uri + "/nnl/v2/reg" 
+            if StringHelper.equalsIgnoreCase(uaf_auth_method, "authenticate"):
+                uaf_obb_auth_method = "OOB_AUTH"
+                uaf_obb_server_uri = self.uaf_server_uri + "/nnl/v2/auth" 
+
+            # Prepare START_OBB
+            uaf_obb_start_request_dictionary = { "operation": "START_%s" % uaf_obb_auth_method,
+                                                 "userName": user.getUserId(),
+                                                 "policyName": "default",
+                                                 "oobMode":
+                                                    { "qr": "true", "rawData": "false", "push": "false" } 
+                                               }
+
+            uaf_obb_start_request = json.dumps(uaf_obb_start_request_dictionary, separators=(',',':'))
+            print "UAF. Prepare for step 2. Prepared START request: '%s' to send to '%s'" % (uaf_obb_start_request, uaf_obb_server_uri)
+
+            # Request START_OBB
+            uaf_obb_start_response = self.executePost(uaf_obb_server_uri, uaf_obb_start_request)
+            if uaf_obb_start_response == None:
+                return False
+
+            print "UAF. Prepare for step 2. Get START response: '%s'" % uaf_obb_start_response
+            uaf_obb_start_response_json = json.loads(uaf_obb_start_response)
+
+            # Prepare STATUS_OBB
+            #TODO: Remove needDetails parameter
+            uaf_obb_status_request_dictionary = { "operation": "STATUS_%s" % uaf_obb_auth_method,
+                                                  "userName": user.getUserId(),
+                                                  "needDetails": 1,
+                                                  "oobStatusHandle": uaf_obb_start_response_json["oobStatusHandle"],
+                                                }
+
+            uaf_obb_status_request = json.dumps(uaf_obb_status_request_dictionary, separators=(',',':'))
+            print "UAF. Prepare for step 2. Prepared STATUS request: '%s' to send to '%s'" % (uaf_obb_status_request, uaf_obb_server_uri)
+
+            identity.setWorkingParameter("uaf_obb_auth_method", uaf_obb_auth_method)
+            identity.setWorkingParameter("uaf_obb_server_uri", uaf_obb_server_uri)
+            identity.setWorkingParameter("uaf_obb_start_response", uaf_obb_start_response)
+            identity.setWorkingParameter("qr_image", uaf_obb_start_response_json["modeResult"]["qrCode"]["qrImage"])
+            identity.setWorkingParameter("uaf_obb_status_request", uaf_obb_status_request)
+
+            return True
+        else:
+            return False
+
+    def getExtraParametersForStep(self, configurationAttributes, step):
+        return Arrays.asList("uaf_auth_method", "uaf_obb_auth_method", "uaf_obb_server_uri", "uaf_obb_start_response")
+
+    def getCountAuthenticationSteps(self, configurationAttributes):
+        return 2
+
+    def getPageForStep(self, configurationAttributes, step):
+        if (step == 2):
+            return "/auth/uaf/login.xhtml"
+
+        return ""
+
+    def getNextStep(self, configurationAttributes, requestParameters, step):
+        return -1
+
+    def getLogoutExternalUrl(self, configurationAttributes, requestParameters):
+        print "Get external logout URL call"
+        return None
+
+    def logout(self, configurationAttributes, requestParameters):
+        return True
+
+    def setRequestScopedParameters(self, identity):
+        if self.registration_uri != None:
+            identity.setWorkingParameter("external_registration_uri", self.registration_uri)
+        identity.setWorkingParameter("qr_options", self.customQrOptions)
+
+    def processBasicAuthentication(self, credentials):
+        userService = CdiUtil.bean(UserService)
+        authenticationService = CdiUtil.bean(AuthenticationService)
+
+        user_name = credentials.getUsername()
+        user_password = credentials.getPassword()
+
+        logged_in = False
+        if StringHelper.isNotEmptyString(user_name) and StringHelper.isNotEmptyString(user_password):
+            logged_in = authenticationService.authenticate(user_name, user_password)
+
+        if not logged_in:
+            return None
+
+        find_user_by_uid = authenticationService.getAuthenticatedUser()
+        if find_user_by_uid == None:
+            print "UAF. Process basic authentication. Failed to find user '%s'" % user_name
+            return None
+        
+        return find_user_by_uid
+
+    def findEnrollments(self, credentials):
+        result = []
+
+        userService = CdiUtil.bean(UserService)
+        user_name = credentials.getUsername()
+        user = userService.getUser(user_name, "oxExternalUid")
+        if user == None:
+            print "UAF. Find enrollments. Failed to find user"
+            return result
+        
+        user_custom_ext_attribute = userService.getCustomAttribute(user, "oxExternalUid")
+        if user_custom_ext_attribute == None:
+            return result
+        
+        uaf_prefix = "uaf:"
+        uaf_prefix_length = len(uaf_prefix) 
+        for user_external_uid in user_custom_ext_attribute.getValues():
+            index = user_external_uid.find(uaf_prefix)
+            if index != -1:
+                enrollment_uid = user_external_uid[uaf_prefix_length:]
+                result.append(enrollment_uid)
+        
+        return result
+
+    def executePost(self, request_uri, request_data):
+        httpService = CdiUtil.bean(HttpService)
+
+        request_headers = { "Content-type" : "application/json; charset=UTF-8", "Accept" : "application/json" }
+
+        try:
+            http_service_response = httpService.executePost(self.http_client, request_uri, None, request_headers, request_data)
+            http_response = http_service_response.getHttpResponse()
+        except:
+            print "UAF. Validate POST response. Exception: ", sys.exc_info()[1]
+            return None
+
+        try:
+            if not httpService.isResponseStastusCodeOk(http_response):
+                print "UAF. Validate POST response. Get invalid response from  server: %s" % str(http_response.getStatusLine().getStatusCode())
+                httpService.consume(http_response)
+                return None
+    
+            response_bytes = httpService.getResponseContent(http_response)
+            response_string = httpService.convertEntityToString(response_bytes)
+            httpService.consume(http_response)
+            
+            return response_string
+        finally:
+            http_service_response.closeConnection()
+        return None
diff --git a/oxAuth/Server/integrations/uaf/img/gluu_uaf_integration_authentication_workflow.png b/oxAuth/Server/integrations/uaf/img/gluu_uaf_integration_authentication_workflow.png
new file mode 100644
index 0000000000000000000000000000000000000000..c247c7641e708987fad8ae7c2e958ce90ec629b9
GIT binary patch
literal 59443
zcmcG$1z45q+ATco)@7g=fJ;FI6eI*`TLF=70TmGe0g-M@wn_-nEz&71t)d_;Em8`S
zlaOxs$AfEsJHGv2=X~csKYL$m@y<1w^L?MV?=i+b?&qo0m5ZC!?^#cwP&SEPIwwP+
ztdyfrR%}?i8n0Y?P%wvot-c|C@f>B5{4XRo@+F0`pCWqhw46mie~Y<|oczM#@Z=+I
z_dm|8W7=OW{YL7jgUo@yU0Qc(>&Nw3W=Ww@e@h7MX@9VAH0pW61F@~A&tFqiU=9sA
zu>X>j&ibfzqWc*cADy~qXa6fu?~t!=S)eHAI!hr2SIgtZLwwyq#)Ew3Pb3YDXf>U1
zC;0iE^5UA}?_Wb={tQ{Z^y{_l%V>VT=D#-T_b*@1om#c@+q*-{S$@C7vsG%@(r<5`
zI*<pZP#h%4(~_S%2mTiyC8cw6-)3s3p`YFSOlDYbO{8RWr-k(@RTUM#gq)F*ZKbTT
zbm1kkl_fH+F(0nv-@JLVr_0|^;mnx_A3l7LOH>!yw1@k%86Slbz;foH8t$W{#O>h4
zRI71aZ!HbG>G0&_<Q;qW?hR9!9(uS%_zRtR^Q+X<)N6{LVoPMmhsxG{P0~!eS-g!p
z`u^b>nyp*6e%!N+^2gQ9nojG?m?)GNKSvt$B{d{ltB<PZC>1=}#OkK~<HO@U!ZvS<
z?&YlOY6#0npQ%=)2~V!Y|6j8t)o3RrC6!cEcrn_J*D3aWO?vG@ClJAJ+V^FW;-LFf
z+>SztbP5;uRvB8ed0&rNra&RBD?8;d-$Q2i+IUso^XJb;UkT(t9k-Q2d4C>beOK&w
z;qAs`E%&fJCv<y0?b49D-BZk}>U~UAA>qASV&06{*(V#NYa%3Q=;;$w(sX-2Y+$b)
z=`2;Nw#=?PH*ET;#v)tfyn#W&p(_DVHCF^A+}zywC!3AOCz=esFL`@;MKl>?OGx-}
zOIujH^*f;#p=y{bZ@(}dS(LSp-{jI{i+S)Bk$IEz=gvi`Wt;hNXg;Y64zH_G^%t4@
zb#{E9NfD2$+x#}^$;REGhWYd9=lC^dcwbnN(aN=+RJeLIK({U?JV?m8uftV@&8^}}
zzD0F}#NLd_37z^l-+h}M`x+95WS)!$ozibg-}JVERWYG<w|2m*o}Sy|Lv3xEbh5It
zby=o*vBCmo{YR<{|NQe$;o#0rakbJI4GJYnYBj|{?2P+(vi~hiPW=eIkQLT+Z(Xc+
zT7Q#aep>D^4V&RlyABBoHirv#vobP%#GQSO)ZeMmosbhc{fv!TAMf9kx;WF2A2+sU
z3qAKS)pQg81f80Qu6OrW7?c_`Bm_1Ivggkw4_NIqt&!l(ELTjqC6Qt_pwcu?H58(^
z9g}vo47M2&b)Ah$wHy99m_5Yfe);CjFg~lXD2_s(mTdEE54V7TJ5C&j*x4&<<CJSI
zabo->-<i6&x@NRa4m36B=ik)Q@~sFI*eiPIz=03nc6GMoYgMsRD018t*joYHgy+X(
zskx)Y2P^EEhP>xjjywu>WUy13o}Ts-w#{<c#}^tGcXYmkVethc&CZ>D!$k~}k$g-Q
zCdbv;PL~uHSJlU>dcJ)5dJVnBJC%hJ)<mVDNXg&?+?u%it;(SI{{A}>KF3eHr`j*t
zmHTiM=r>-!e*IgHWeRrBSVsPQxr(rH*X5>h6F&j-gj?l)Orrd={V8dtR0XY@H*Zh<
z`oWK9rMLNYnl(Ogo+>G%kf<K79b|dIy*61(9MdXMTwJW%m>ka7i#uz;BAe^mCAoSd
z?S9dc($X454O^z(pUy9zt7MzShrQJ9+9zaH%cQa2)ZklcwB7u;Vt9CX?{s%Cdy=q-
zhz4f4rqFqB=iQTI6#_#&q0iae<re1m-p;2`{@C&UX$OTO<(?DpURuR(v{Ix^B~QPJ
zN7IQzWPa>rT7S-H#i)`?q<6jxy^yZw*4?{%WoMh?M^DUm2iqGQlN1+E@hbZGQK>ZB
zr1!=#5sP0Tm_H|{je5%7Y--J3xd<wH)2+GIrD1B`SMNPdyVF_XSwA9VJ>jFCYn6G_
zI5KX={NvxY)+bwzb}5&3m-}lUW8gQ5YMXDrqOKnF)WwCzy{ur12v$N@;a)=%=GiQ2
z0#_mJ=;wp3O0&a=L(3X6dm3d1>s{%EzF94naaB&$I%?JB-=ElkVDN4?3zqup)WeSh
zP8xl%V%Rp)ps1v)8^d$w>;B%K8XuZ64B16>v0T5U>KqiES(qL2^z&0;8}|wewwn>%
ze)vkQr=ohaaivg$N|3j=qCt}h|4`0o+~j$~ZGQg#dbw?x#*yQB1}$0lPVS3QObkl9
z(~zKMP&$YRHl8Q_`a=Eesc&hPqqnHGRav}-tyg0e;$?<fbH#r$yDpdp4euAl_$0SZ
z_BYm8Esi&6WS3J7^Us|-r!={4dTz9mshD59Be|5#IJ#kRVNyg?CRo^Z2R%Lg-9QX>
zdz!&$S9wY+ul~1MJr#|w(Rv~C%PFUh|AECXx95ajeQIm>&z~Mj8YarvSmSv;658fN
ztpoQOD-c^512=xL$m%az`Rh?|S=nVZ%T7<-w!GXR>p?!-U+>q<bb4#plu+fQq^_~r
z8l~yhCAT(2Nf%gYC@I~}HE#$$PsevJtTwse!-u)}(B}n?TU3W$hlb`v9DBYn{`33$
zhxM~rrc{-o=d1lT)A9f0G2B1jZnL~@vdum**nXjL&+C_mCB01UZ8U7lQ){zd%oU$G
zMZL-`p%ZZ>aL+I2fPwlGFYK04_S2I5$>KaUWkH>fk&hLNYfIL8jtB9jJwFuOE}`Qp
zIZ-q<+%f)s4Z~;J*O(+l_MBf2(hb|xb@S%tY^b@B*PbNWWVVSTo{kH%vc{hK)r0rj
zdFv}yT|0N{RzySU!bBoFVyR&+`%Lg6RxRe~)G6uvW6wwP7*?%XWi?WKm`OA;*e)x}
ze8`|h<7aeaQ1Wv9^F!OWT?%}@`p*{Slv~bEHq)_)e#^7X7DjLnZu;rclC`=TacJcV
z0D)8CMqR$zDno`j!xxTSeJka-nNH@)6&Hngm2iK9tYVd+oVae>lS<N!$C90iN=Y9y
zzrWL9upM(7U%*yuXfbaa*hcHVkY&Tn&;L!uD=5eySMtggGgUJk?^BIN-*h6ChwSHu
ziyTT=Dh!04t0&8jaTI5p4Uk2q_CUvMrolj{LS)ef&$Tymr)^ujYKBZ{QY<1he|LZ}
z<GiV_1ojR7ty4BPJ<1f=AA3l`&qFlux%#2*EBG(mI@OHSl+h>23(2Ytr)E}B9IovL
zIEmtZvW3AQSLE(@hYK$IqA}SlhYnqM`t&KAx7Ahafi(9k!lH}<0;<);*2msvn-p0}
zx*%M-N}d{4tV%hi5U2F&tmEcPL7j^;)O-Gjv#O<-`j~)#ee+Wtu37UFO)Xw@+qY|y
z?WKKc(t&xVVXpY)Vb){EB!+S)gG_ZivS+=fN(_XGT<G+2^M~?g$B-xcu<)#~c+(Ja
zBmz!WsTfAu57fWzsj(#aMjva91T=A}9|_rmBPvhw17-^>mAyvu4phv4zp6fW)M+Ha
z7%{6h-`-vn+17tKe{5-R)=U$b%Jb)2=66yYs(0+%>1C1ZnBCyRp?UfG^;d{>)`OWv
zD#DtD8#6kEk)jm*tcP+NXgiv=KeqW{(|&1Kaeihzev;ad$cw0jH1bxW37I)#T=eo~
z6J=qGU)S^kGiI_?CufK9{jn@ETkHnDrIq9R=h&JIgf?v0P=2D}YDYR7P}Z%w7<s$#
zM3H$@41?7^?JdGn*P`_&wE_hQY7-9{Xv)~D=`@W%qUM#TmYsgCH900Fa$K(=A<fH_
zT7N8LqUo<FasD8gMH4SJHQm*l_ubyZYjEex*|QQ#N<KPY-@MA48!0W%u^f%N_Kc%2
z6^rGgecrPsY(7ui7Ehs1@`k9N-QE6?K~^QHx^*Q8SUx=Z-+ZEFBmI!LlsmWV<tY<e
ztQKeYB`^Q_b+;x}N7i_>oY!AuVX8pi)^4Wva80(k;r6XtuiwzrEJw64h#&11$-wU5
z+#)pgLZ>Aw?djkCcHDW-3C@ETUAXaQuO+92;zuKc9zTBEg<WxCmxfK!(`U~(*R5N3
ztLMurg}Wbv7sfO4cOFx@xo!J)35=nHoSaARx3pNx#ra9w!G`MkOyl;C>trLZ&>bx1
zzWwE$R!eVWumPhlR<9o-{o8Vlou(7%dAIMDOe-1KHx22jm4*_ubZN8Z@|+`km!Nrw
z-w*o#8wj3!*#9Lm@PG1AvbXp9(rvz|T({ypt>#=ssc^L5@<vzr@@VeCm>Rp6SK@8g
zEXrpXY0w<!mDI1(so?OE_MPIKq)n;w7Afj-SkAIwup`Lx)5=@HD>Y07{|H{+k-$I5
z+gtn9{FjC)-K6|7<I!3<y6%0NyFKp*W)}Ix+sz5_7#D9@8pHnq(fL1lw*NrCcGNmN
zEBJ9_c>RVAvVcM-?tDG2-;#C0r!Lm3dEg~z#t{w<>BZT$#RqCa0in&#0*(c*zNP6=
zA8cUzf^A?^QN$6}P5{;8UFuSa>bbz9Tm;*Leq~LyKOb*4u4EPv$UaBky|CVEY|KPx
z>ia|f(K0R?8k%r?PONcv1<53yo}M(RR?F^>Xc<_F8~^;g_58()r9bW-;pbQ3<KqkW
z>KN#ZeHQfc{=SE}(Q#m6FC%BE0Aq&Sg&Asi#JVsWd-;hOzF}KMqnP&L45N<1EbP<q
zUj<wA@K6RdcfP(ky+vg14O{-)y%Pq_UnB43)-?vFzF%nR@mzPxq0yN!G4bnHrBURS
zHL1=q5l3gZzsv=xgBy^zvdmLMZDkfijNgdx&P$x)-fU@sm4h5%Sp&S9%MC|E&p*E$
z$Zwi6==fyQUcXIyc|5)vyqU2^mO1q2pYJtoRnzb2EC8{D)E=Xa>3EyCey)W*uk4ti
zPFI<42PZ?T?PQBg>F~tJ`Qu$T_ZNkvR0<1(Sjx6^T@BI9#3*(lbgS2_l*!9yv7UGO
zF`IBwV>X4K&i;7>!|`hlP2AoZc9{eBa`j7tQ)z~?tJ+3bKQW0E(o#*ap$D2XWreK9
zq!bjqA};%G>+h2nKR;Q-U_bW?BNYASjg&oR_MzH|fDg~;H#l*8%P<T^&SDnz<I(q%
zoId$PE<mf)3sLVnze&%FnaQC<N#W^p(b3T*m6eJ>iaXh^Mr~kwdkU|JiHTMJC~$nJ
zrX^YpUL1v}bhbOtJg7cFEf(ob>(;G4d{=M<KlSK9Yp$xR;K-#nvFlcTLP9t!3L@%J
zs%`j;A^Ulr%~mHqok+V+MiZK!#3UsfG+l*u_Ul^6`BIA})#|o6btKBB+$vAKRlbK#
z#I9Ludbpz~4Hry|j9*#UrS9*0%^IL_-Dh$8HM2yw2yic2(FkD8W%{pUn4b%8;?B?J
ztgfzhV%$zgM<+F1cRpnHRSa{b=4m{Q+f5KlE!JR>q8EMXZBE1a<-WeY5!VZzTyXd0
zH;pMW0XsUx!BKUIvr=d>pw#SPU0Vg0u37(A=^HJsA`7<}eOGVVv+~ug_tJDlw({SH
z?1r(H#f-ndTef}A9$oU;oSdAO<5kiw-@YBi2YArdG;&_v|K<Jk?5y(4Q$_ch()A?}
z)yuF@zjH|J@0^WIZm9H$;ms)VPn=f{bjh!{mykQ5a<Di~Ii*l*zOOFUnbEjTUQxbh
zH;a~ULj}*AG;@WNQ6$otdl&$lcPH-HsxLaS7W|m(Nze$Zv8s!n-rn8r6_$Z@dA75)
z;o`fn)%1`i>Sr1>?A5?r@{o7rV-=3!b0mPR^TlgBda7QNzpM*Azkz%ZR)tl6Qjws+
z5Z<n^xG+ycM;DK$?*U0rw6n8QHWmN!=uyBv79%4gwo-9wclFHBYgb|Sf*(>cGBQu~
z^A;Co!3tDTZ%aQleYj?eSHX`j7a43Biznxm6*|_?6wPUv@E<)|rXVa?^oNJ@^k_Hh
zi4*bw3pF2~ZWoF`;;+F@O^i**64MSadQxN(l;Au*zDLDAA>R4vQ|6>NKq$__BPUMO
zX<6<saxokDR{Y~`6!NbDwF+aww{P?OSdHW|!{;44mUGxI*aV(5Izv>CmMl|G505Zp
zyxZ>|tfEP_6)+z8^`jtbb}+jRY5M$y3o#d6>6sE1CwVRk(y5M&j+!EK$KvzFE?xSf
zX5P|y&rHoTGh%Va2vn1(kdRXyMXr;~xrzBLEzC!c);jaHMp=#bS<V~8ijBXV%8On9
zz;<o`+5)5JTkVKZ<H{f*p{_K62v-nry@bpQU>7nSh0Z7J<}9#-vciTtr~0T<%;xX^
z*1n^BDB217Nc|<w$Url{w755KzHFpD{%+vJ4cpm?69DK;C3$1j;?5=`3k(@;cG-Yq
zi<65B!9{xIx5|93d%6V&8{%F%d0Lpfuim&4a8mk)wewzHHn$0I>WsR>_m5C*Wx#1L
zVP%_mo3AnY0%m4Q3?&5H_U3~^Y-eCFgk*Nv$|_5|QSqwLW4D`yE_BpnL5%vNCr|ul
z#;N{zTkxc|vNMCmY!W}StLEv`r|&oB+vo2VvPyNkiFb6%3LiEv`a`2nx@D@V3+r)@
z=q;#Wc7_=}=|ThI_BEDVX8lSBi^qCvitd2D*N$l!^`8XIbYe^ab@WaS>=?sHA5GD3
zl>e_?$7Uf`lcuM5aNe{sMp9(H_7W%Nb<|ol?~TCW(UFldzU~0o8!oj8YE57V3`~99
z1}+x->CINuc&3uv?+-SVA*QHR)7Uo3BM2)ybwbD6D|)Ln$CAE=wxi9^JQ9<tYX3O@
zr@Q!N0|NukgkTPvHkxj#Qrwjy4Q)QiO2^$VPY$-I)tgi6%P(<4tT4#vt@NSizAg1M
zl|;qj%F4;FdF{aiP7DIJKU~FjN%7tL`M2r5*u=8T?jSuz-zEMt2}NzMXaw>N6v{jf
z<iRcg;f&Sa^B2Yww`m32PBeBQ`WrP~czway$z<e$2;Oo?K%gmSrZ4t_yH0CPrsp6y
zI*0pZQ0X#vCh;<a=yJsWJAL)>_!eI-ZLhDb%G!ZiJO<6TlT%X4g(jOd8GQk@8~a|K
z@~9Iwn#`K+@>e@_zG`f6rm<lmd$QHqnQ?TalwH*li}Z$WeVk6%%g6&e19w1a<#jIu
zUvuWj8>&p+Ba%0vX(|)camAgWRSny5&mx=imI6;a%mrc&*f%u;Cmby96k#{Zpbk9e
z{9@92^VTiD!Io@QOFv#i1B0yILn(KEoO${3rR)J)<$VGH_uCL5YQy`n7b`n0l-!D<
zLpwu8qI(#|!0D3nQUXPEM@L8Fhx(yHSsyK`DOEJ<{^_)v3j_1Sug!Kcu=w-m<15x|
z=5{aB&uCEywHxgETcoBq;&E93pYdf--szt&CF3UYfhg2xD_#0{x=U^x9cs?3As8Ou
zKFjH8`|O9{w!y-HeN><dF89k|fz2-2F$yA@Q+ccv4M|D}(&uXqGcx*o`6Bhw(^Ct|
z4C2QjZtmKTMMc(e*&>?!JUsPBmEOD~Ps=3k<wL>&-Qu8d({2&7nGXz}2SVC=<$=RT
zsfqb2y|ZJzm=EYJ#o+;g0_J-}BNP+WnM%}?Z;C!0DE#=5R`gbVoU%H#;q^t=Z5pA4
zv|P~D4i;ZEsXEV;o^h{JOs{b$e-S|b&70#ISp_VI|LDw=w3-}LYZpmtB@;UP!;!&h
zO!4D4TFsqDm9B-m-2~;-j;BJTal45yZLR4vG@BAv=*m8obW<chTM;y<w=F-vbYYSy
zI8yVHWyWikk&JQ>unX>dX8k@*oZ_<&*awV5dc_E%7;Uv4@?DspRn>R9+1}n>mcKY}
z=$(o^d`VoK3z}dAVsd@*hYx263);SWw+=KBxm!)ivHUKxF(IM$Uqr@hWiPmAc6zB^
z^=h*jEk`cq)OuEQZ~6RbL#JH6#uRPIgT*#rw)M$GKDoqsOeOV*w1~O!$C{+hM(toz
z(eAnO>PSfxDh6T<j1%GtM-I9Q-e7E4jM^pHQE51dfm2zQ36;vXzrSBL)b5H++x(}$
z&!j-*`b8`XCyqiJgo+F9yNODlHOmzN4fwowYGVFER*~&sZ%W{B2W$Rhwnpai=G#?s
zpEO>*dPT4wR$s)qHGHoXgVYJdlr~dQQF%JhYSH0bKZ8N>hY;lhyy%mYBj{~Xv6l}V
zwNi@+f(Y8R)$L8j7sj0UEGeVfQforvCZ5WIREuKVxU?&{rKP2bvKyzKn|030eEv@4
zBER|Iov?fZKhsW6#XX{3fRSA8W#n0%rl}WRYX{q=dp0zX^jfrQPANG!|Mu?Q-rfjE
z@P`f^D#VHmskO<YKWh_x(X_+RKhX91-27x)i<k1ZT{b$wD<rfpLYYxczvG(;1%j|g
zx1XGYC4FDrJUnhPD)X|LwD#!NMoDYs9TWIF#@*~#aB0LM%NQ}=?Iv{j(h;so!J116
z_OzUZKAx=PCZR~0s1}XTisV%kSJO}S>61X*|1GVQsRgO+R@h6|!f}s=1Z>5*1xc|a
zJ7Gjg9i#z7ls6Ny!`usVX6EW2Sc=PnMHW4xg9U8bJPl8Uv(Vc=_v+aA;AG<Rx737e
zEN{xk7M}UtHTm-s{^Ba#Mm%h66`Hfp?9;jI`o|uNu$({jN%4ek?XPb}_~#L6Gc3%f
z_wE@Rm*-Bl>H)ZQy5|!hjvdLCl-s_@QCV8b<xcfI9Q5r*hO<^x<o&KmxhJD>ZlMkJ
zmQ-zl`AN|G-Mv4BRER8m<Hn7+e9l0#Z#oK;PT(U1NnjVl&a`Zi6?7tb-;3Pm=RTDx
zrQUXPyP`hWF<3DjG_p#?wXd*^M_}>5FnIV(4xOQf)8K>_=D)3Xu5)g<I$HLyp0YBX
z0Fl)W7GL(`E~eEaVeJ;9Z)d5u_jG!HluJh*%P;eMlIAXPI&NVw%NFM1O8My8j3jSG
zXI{|&(ObMWDW}Lan{PJ&Dr4qV!y%UpzV_a)GIPA8Rj)5PGj6A+ALK|>tJANTo)6x^
zJ1=NHc=cd0BNJ1m1lc=8y$CtI;$Sh+L28ZU<@*%(<P9yCRJ<xLxUlnBk!7&Q#6S~d
z7ai!QZVOoqF4_7sToKQMTlxhno;-PCbtgD7^JnQ)Qq8V~D4At6-TRLXuy4!rvIYN3
zx%Pg!af@k#vg=}hb7o4KFy`zMr}gBZY4Ic`Vo&inhh|W^_J5841yrQmZia@2+K3rO
zE)t}D?%X3C)Ci_~Ub{Lmav3zA)O1QR_*=I1q(M!T^g-Fz7dB;RhNR9b*LOsw&ee%p
zItz45Bv_60TxZqTKOSW;r$4%ZJqNJo{)#ofXP~08Vz0=a(S|Ks?5i!?=fq2}hg%XV
zi;Iz9%l%HoYiXJGpF|9dR?SGzX-bdhGirbI)YX+2G7Q^fM9k+7xvG0o(^J_RsH$l(
zTIMY41YvagX=Tsb&A=*VE%fW%3Z_0<$gtX13JVMOh#q2M`lQ#`+SiR4$)UHN=;x>|
zcHBHAlfWL+6fim~!c0HYXj$A~zc3oSO=oU;AkSv{-e}w6Lc@%p?aUZrnN3?Jd*sm?
z8pS%7{J|1(EADZsoF6}ZQr2#M+Z2Ih1gypsKYEgyqxd{qpJwrn_S{rS+d^EbtAts1
zTuOyIBN$ZN<&x(vF7=<?4vwQha=X;)n0wgIpEvbvp-3@`mU^?B7iXCC%7~84to<Te
zRVlJ~RP>p%^Eh*E;6f}$V)YjKIHY8~iT+0Su#X?liORI)*)oZeIv}8>Nu!o`Gzc0~
zy5hHmqtxMtBa=Yp;_i8KBjUg}+NTpXJ<ICy)04}$vpuGkC08jp>eP^$kN+Co$;a^A
z_Sg5*dX467w%z9Zl36Cb2Slv~(i)l*%;~%LaNoXmj5SvCBFc~#ocDx720Xw0&}Au7
z2nLI)i;{j_mhrfc2pKOJ%l&yP2dugeo`gz%M)WX4LEq(URHJ-f+TSs@gdQUA&W)vy
zQka*H?Y!^Hinc8fEi=3Z8dENAc03CVu|7)pQ@)<pQRM@@iFW6I<pO!fNWXqEm^VAP
zjf%Nxg>pJhZIHB|ZE9l_1&t2F5{<E$2M4f_ADE)Lj1GT>{N~9x-cxn<&p(6Cu3m8J
zZFjx3fb_#CN+)18mKo%!JGb)SGg<EZKu&eLX|02SIfwdC{^7ppvJWI?I@0p{{WVzW
z*WOWrO9sEZdgyjj-F965<-Pq0qJQ@S0Ft1%cVl6?(tc0xPg$#g0P|=ztA_Saa~t*<
zxjm9iDNTjRJvFCBcd>VXYIS7~<)zR+G%MJ|YauaoGjh?1<5q8V_yzvyBiy}-)?8s>
zVQ<gfe%>Zq@K<KJKj;_}A?UiQVs8?Sy_2fW^j!Q!)9si1z1cMk)Yt=jd~SE4iZwCR
zW(e+7j-6GOtW~;1FFq6$I5WO{@#1@OOK6kXf_!&U5j~f(vhpnya_XBW4hJ5tDEfnc
z-)7?mHFICAN|H2R`uge!FHC9HpelGUvsLcRQCB*YUyb>KplG*f*`BA5eCGAAqzDDG
zeI3wpx&Zfi5kgLY7vF+DgX%+25}UU&3JhRJ?0HikE+z18HYu78dqFP3UGBRu*mwP`
zjg|$`F5Io{1LdSDEIiy75<RjPcEeb--KPdV5nf29M>X=A_X*p4J*txWd4@_wIrVn9
zX^^h^+zuNJ`3$~pL+jjud{mHII+gl%d^VgUl_AMD*&QwdOUr<@xPddKbhtr{uY#jb
zumW0gIhEurL~9<Du$Lxz!!EYe3LeYZfeayo*ePv+j-o3XQ?JEV$+<9y3=Z=(fNkHx
z_7wI+3Gq&b79PeLN=-&kuG(B3fReXtg^+%w!QRqP$ra^80|aGy?@hPV3l3c1>bm(o
z0-DeT_tL=k&KzCX`^o7Vb9;m|{z2a=HQ#$3Q;pm2Kf2+wx6MNR>#TLD<sc!xrVmvl
z6JNae!x(BjDQ|iY>}*LN?Ol6b1DtwTAduHpXu_vqMjdtYE(i$<Gs(hcsrpUzml7m-
zSQGW9LkZa1|6+cGREDXv>{fkmM+*myyUK=Dx&(%DG#MK%R(aRarV1P;lmnun;sG^i
z0cuy6CKdAAsR6-(lDm%1?BTiNBd*?Uugm0%?cQi$XzFjgklxU=Q2P1v-Av|i*^vB}
zz%6IjZrXGLgiJomuJD(wVnCvnTx5sg@Vx-<nUflAcC+yfBtrq%&1}<|1wXyVr6E~#
z`|v-88i0(!RrKW{UyOwx5+IiBwF|EF`sw;jw_^J<jl2C4)Uy4coBE(Ez4ZI1=exWw
znIol*et)>d57lm8k~dN382z|i(ql?8H*%m+UsHKZCuI70KDL1b^sO?~DKy#}hr-h;
z8y1YMdR{p?$&Dmk2m4BNyJ?U+u8=Wp(-N$8!cMHfm1%Z5*VBlkN{u<Qk!e}izKEmW
zY^Hu)=hCY`T7$S#lVfR2$_ah7(V7G$(p&ZXnIWlqZ}Q;i{WbK*hlhtF!1zd|fLIjl
zB3a8zJXy;zQ{+yF^Wdqo^NC&R7OyOO!@b2;T01j0X%=}f%Oci*ZDdec`%cQI?voR~
zKj=-KA5h5`*h00V2j$rmdPkkIV*k~JpFa5#sxzl<Mr!*ghqyd_{ye4HtCQpFV8CTj
zQ4WYtxg>Kwb#me+3WjQifvIRmyj_r8Tx4XV|DR`{_(Vk=sfm$ig?e1+@pYj(TwDT@
zS$x|?GqS%X?PbJvYb54Q_%(6gUobNlj!Cy)T);d7(Pw(edi4rMixsuCccM(CqV4_h
z<HxtnlZ7=r11`PI%~uK1@P$K!%qAHg?{`7j`k77XiA!6oVA$SwzWwgW9jDCRZoM6x
zEXm^7m(Fm-b0Uak;LU6P^xX-xD?GQ)hTnj&BpUNVIMHA>Ju7XOr+1>J8;7dUbaq>8
zt%S~RPZP_E|88?)=Ki{5i+b>M77n4g_bALS{rrD2Lj7BP;PGk|2k89ItwJ^?N&d0X
zDLdx5?Hai&WfB1_w53tHv?;$l3urYTs6Bo5{q9LQ2|tz2q{Q!=JC=9eH(IrlVf2q*
zE_@H3eNakqC59vN^S^XrkvIMSRmT~w0zZh@dho&#9v+49zPcLJ0bi3!*azy5yC<)z
z!$Y*^<lPVejOGZyFKLv#Oy|cNScQaI^fJSbO`0~5yQ2j3t&N)cPHLkNH&39ROLy|_
zDaZ-c06R;U;Cmmaz>VtpiwoIVW&<&#qN(o(!V0b?xl7H&ZSZY}%lby1rH_l`cjPEs
znZ1qX{g1n!+aidj_Hgy4YIv;rlXD;j!dw+I2#-c`RH$Tg+Cdb75$4k#2n<&L?CfL~
z7FKU;Y!voZwaLtHN{>BS@-EuZ=>EvNx62>6TCTMy+IRZ=^|;2O-7LaN$v2-?2#%I*
zE7hxwdUgK!PUT>_&5o@$qY|GA3uCk^gZQB?r?IiJiX+J=qQal>wtc<#yC+at_ZsHB
z0>ft&6ukO;7kj$A2+BFoDiU>Yv#)%7XjMDC>e8PBpvwC;EG<}vXBSR=T9a))M4VSm
zrv5zo_oj1DMJCTrtTV)aax7TTGC9bieO-8Dq~7;;_enuVZG^xkc)A{TRR$*l;Z4gW
zK6tR4i2v}G)nLqpB1$VN>h%(H$vjTU87LcMzXd*gu(bFcSg_D+{y>o^E-r4H_6^ij
zV?omSK>*X70f(YMsQF>2L17|9WN}W`y%s@^lsiDZ#l*#BVKqt9YhYv5fUplFD5b0R
zylw0Rs!0bgIDHXk&ke&PdS2STZCfZT6iiG^Ix}Ov^p!GXt$<}Ubmkc}sfq~f+YI}h
z4iHaYOLj&Pcil~;5337Tm8|GkzgD>G&+l}`D`_4l-D1#=nhJp=ZeS>Ejj)?`r?FZK
z=7(}dQQU&Ug$qy81euu5gH%HD*8LK4AMj_$y>j>E;l~^opwp_nxpp5)_^aJqx0IGS
zhw23MV%d(t&|{JNGZNN45-&@Wo12@rX?IN}4^;o`>e9s^2ShJ<Dx;FIgs&lXe@oX_
zecFlCwukfP-%68HQ@KTDAZnqua`RZCMt&XuSNy4>B+a7bF|wB~{f&4Nh*1yn@`k9R
zqFKK_Z14;S=ubY%$EU28Wy0*Ozg=!=0mx~sl(RX0{lm(66ani|n+VY?a_NP+Xa>^J
zSiP!YFOtYzQ32CFIW28%>Oe+Y{g+o~<2$kPW$xWeCT2xaR{#ZIf0@-{H#-0?W4i6Z
zrgnPEpIcktOd<A=k&%%xtfU^8Y^olu+g_sIv{HU)OUctrN)1;*!%A4U{ZJ3&qeLf;
zKIl)-<04?kczdTKcyTV0-hR$#ytn3Jigu;KojY-iy;xqT+Xo0Q&KalaHz@#1NY73T
zwA9C^T1V~B$N&d~&GXV;o;y;IGTQVZttHS~_j8a%P1N*5l0k7$4k{+nTbO5hI@_PM
z$v)Pb{Ey+#L5!y9f_yjgcNy-eGa?`8{=@R{o(qxrKEgnr=ajrme1+8MI%$a~On3I*
zaQXM$y=zbZdO60`7k^o9xWmUj3m-(>JJ?6@bB%#~%n>_H6>>#k;abkJmj3}W`Q0Jr
ziNpE_&#o<bWkXmFggglO)93f%h*=x8|H#@1@-9jY=W>>)yDMdvF68N!(a4?r``^1b
ztY@i3(qH%2I|cs{$D;hW(@Hco-v6fu)Bc}&c<+iCo!nOs)8skqjCx?4L{x<HOT<M*
znO|D1l5s(Tdda_Ze<hoj(FELc;@~WdLYWeCS95-sTA0A#+k(X83gOv)&S+U>&lTjY
zQTz5q_zB+j)7Dj_yWh`hZV8Eh2LnSQ<h=Fq;>w-{Uxl99owB@kb=mtO!Ie3hE+L`E
z>-#%4(gckB74xVm2#nC`fb$QFRzvMS0p|%KDGM{RC^&9%HO;)DJDiK$HdA*$efre<
zj5Xozx@rixx~Pmk12u-u7!Mt9O8yFpAqXU|NrAkaw{7fOdb|Fx!eINS=fq444b~LZ
zLgGhBtB_^bk!U_#`6**4dW%@>l7m9-#7eolV*eBr-yU^!a;k-NcSzI^5tc1?OlBSw
zW)D1oSo@5k3MT2dJ<LXa7F)GHJ?s$_lmJ52S9~})wO(lK%h{~Hm{<>A-)NL=^!mRh
z*?DpqwVz`;bchAP2rP*;&G}PPdvr5Gb1!iL!%>J24Fd_ttSwSwm<sKg5E?(NW2%Zk
zS=mH}+M&cj+)k=@rIn=<i6HGA9i&(Wi?ynDG)&jw5fL$`AFg%}gU{qP!b%J<9%>4x
zGFoF_RqCrj*H6GsW8vnO)6voCgZ%`BGbT~p>aeG%qP~iXijryi86WWI(MpuW&B@Eq
z3|<3gTlKq=aWsGmw`2G2Xq0DS!Q$A)Q)||o7unU8mm&O1fftDkqGAkud<IRu3G}Cw
z|82$(hCC39%o*YZj*~-KYn8@<g9nL+6#<eI>Y&BS+1ceajo@X>5(m{7y1{tkbZd*O
zWxvPvojW4{6JfAnhGi6LxB3c}rO`u}b*AMw12ups<HV=Rrk3?}@L~Hh&(NmH`ZcY6
zUBHb<V{m9&ZHzhYC{0hRc<L9&mSsae2cwQSotS<5b4{I0)#9(Bq9RsgY<Cab6KpqD
zWr~nII=j17CAYEc*?+q>$_*v*9M76J*U!$wyy_lSTPvqZM#aV^hkP$mJry2|FCnKN
zUag<5UNcB9qGmGNI`dAog^`(;R}rO;pTC2U{BrDl>lLdvenH`beBI*>yJCQq>$9*z
z!^6Uqg4b-?LnI#L*~>)ZCI-KFaa8ybB2YYzL_IcJkfreoANXBWnJ*U^FNr|@ItA4n
z&!$&r*Bn!Na|(Hwm_DI$*bF`d1!Bc5pct3hFknqxVQ6Z6Ac{n&kdotd=T7MAdhYt1
zH^O8%%#DR{>z%{0LvZw6HEYy5bnIBU3NJ+2?KCu6wiT%0;43-s69M1IEujDUER=eE
zQKa_;c&Wh#PSL43lwVR@R>nO)JIM<hI>%^t<>a@Bc504iwm}QO@nB}R9}o{_^cEKC
zPgw>+*dIN9j2eHR4=Q3=cT%P%a>wsyWQpFhMEdu|s<P5&mD>65^X9mog>FKAykjtk
z_0v%FhqwPd#<(+3Jhyo-E=8#_7&fC)*TyVe#9`7sU9w9>D57Q8J^1qWI(*lpU*5`b
zQA(OtZ{qRl?Bxyumw)zsQvIXclHC(rWj(R)Qz#ZiOd=GP_;%h1(lg;u^1xxegV@uh
z!0%AvL@pfvx<EvC5PSUlBF2GSJpAio>2L1;b@7P&mw&zpQO&%^^nM5VGWlo!dxU`N
zf44P*eCQG(i1CEGyv4FR5LI(2$h0sRzh;(=z&3m*_R`(G-F!N)3m7CCMFY6-_DD^m
zl%T2NSRmbQN|dO}hyzw>1}!Q;&vjtgHVLxl)3hoA_zb*Bn0o(C^QCm}o5b%|l%1cm
zCg#ZCqpFT&G=~E6F>`Ur5(yDB`vd@ss0=m_{2+5IZ4Ei1qM`(y;c^T?c2+Gfao*kE
zKNeQ(UI_Mzz!gp0-9gp~L6%*+MXRBX5x;tHpWIe`BsF3g9YaE6#lnpg%=>P!;$KJ;
z@+;j0O*3<>(N@F)Y{erex~O=$yN4QA@LfdX###&2yq_&7jT4fAAQ^*aQ^~i>_2brQ
zSDenPH?0m6<sV3`F)2NkVR0Gmm3XZCXv8hBcYxwc(VYr%su(YI%TAhkR2i&hdLwO1
zIwa{Ra)SSaRK4dYQ3@*QccPJ0>N~duLn+BzDf?`JRTRZFXYBI?Y$JGSZX@#6^CP4J
zltw|9G#JeyYJ&4_t_x`Q$U=P?@$#tm_$LU38B;T${V|~Z>$hxaK&}(NV+bR|%#i(J
zEU9Db<wA6bgO1fl!jqP_TGt8v<KOP#L2iF~M)NI2+f{NY$w>B+1!516wp2Wf^#Y_f
z0J9r`a8HGKq?(9N;}uahRXuY+pQdmwg3hVQMqI8!rD{m#7K91_1Fj6q=d4GLd_mWV
z)+%1;5RtrXHZ@G|I-W+3G{mb$qK8CxVQv~xU+$^R7QtT*Fh+&q%Hr5!Ol(5+o9hK*
z1W}&57RH$xj^VL_2z}!EhetA{-bB4#Vkbv<(T*g?O4b$N?HF({wB8F=XwNZiwd_XS
z-I9Kk@$g|iG%`Fx0#9pDj|I;09w%%J3r@001BEn_4IvtdxdXVzLKW3RPmWzi@6*FU
z1d|fRwq$T>LCiHB>#35dJV|s)a<||?IzK<Vk^IVtbd+D6dfuHa^XInRnyIMx2AAwT
zd3XP5A}Dxl7<~0W%+Yq0d5Q7WIJImA%|fRtlowkJSPvdNi!vgNLH?-S9D<Hrq%yRW
z7<=xmd!Avn8BI_FHFsg@2}6<k?XlNA-PMBvGGnBe$M*L7@^W9Ui%9B|-`3Fan|vu{
z&yPbx4#7(=4@t<t!(@W7(1Qc{w4r#_Bq|qGP?N^V_CO_^YO5Iba<W_*8yuDB0iI1o
zd-uQfada>*+bXxC(9bsD)$$OPXfPIxZC7#}0)0tI$%v0OI1azf)Ei<lndsl3!2m`v
zq^{qZqiktu$yunBh)S+5s3lBn8czj3RX$1TfZgT`)|`^=@$>E=9=vLI->)L7JZVt@
zowz+c(z%E4-p%ma;?gJ^OQC~+(5@*DVP0NuF2X;gx=7SkaCdhfLsderyCM*JY6D>-
z@LedQ&m_(B(9xrpnVFgEyI~*K#XJ$y;|cw5+=-pLDpg^IOfdnLVMVD{%MuH8FlY1%
zHIE5gP$kDA2_;6gpxd%4)8~mlj@&I&H8BZRQQ~w$<O&7kAP)#f30cqKAcHXN9gosC
z>UO(GPcpCV6-g<Q3bdRN$aOmz7N;E1z7c|Wr9l7<EZZJ_eles%q~M1n84X)keRoEy
zl{mR~V#W(JtyfkrWe;i~vE=#AW7Y8)t$jRgC?!S^RDg(_^`{<2wJt$TAh?8m5Sn)_
z7OOlO<sf!>dkcW)R%4gdg^6xgv!5ULJAVBERyFzKKJ1Ilx~k2vzE`c-B6y8;%kM?W
z^!G(cyX#G<?60UEA^CqxttZc}qDaNxjUa@kWVv=!NcD9P5Dmk*^<O^?uU^ZRH~C-a
zX{kr=7tI=ruRo5h?at{x%)ybgTyG_kqwG2aJ4%da=;Ts2;T-9GlhXg=GT789Wzvus
zwR4FWg&ZaAh5;kLFXEOis()Vyl75kZ<lh%L|NX*UA>pd%aWej$h1Z=p-Y1+pe;2(j
zha}=hzAE1R&*BZ<jGzC3vd41&f0Zo5J55jSOZQsSheat3^(s#Pqz0-TF>tvj<S$r3
zl<_W2XBAVP2n?K0L8T58hf-RtzLh!b`_~vqOD4;GL~2n&ecfNa^hDM}t%?d7kM!g2
z+0~y?IgvegYQ)PC!Ql3<@9*oiHJzL|Sm0=bWeZ-DUA-;>gKKYWicKI?pSRWGHB1hh
zGN^&JYGW9leq$fqkz*xXX|bD;1g~EW5tNHCA_n09kO*JwP_h*-rRvyPj!UCNGd`KW
zs0R1ay=-R`d_Dmq!%SS3p(brJAfQn_on;R(B@v3dF7_sNzjJ+}Mj~j;S3rUoC)4FD
z+q>4Xtk*0TCT(va+tBwI9%MVA>@9ACkpFYrW#*YgMq60;`dV|dQK<KL@gfA45>+ZP
zDNJ&&u;DVxsjdXRLNLRwCGD4_G^wWsOD+0565hT&sb=(vhVA}~P*b-s<YZ>(Cqx%4
z(ub+=1Jm1|@$s#FojPh@T;r(zh`OiWX*__$3jIpd-E6Qq8fu)l`(}E<C=gFpsF{Ev
z#BEz-hIxyX3>GHSNTfagTvZ+v55hS#3y*Me%8(6=OBxTWlPEv3L^Z9Ugb0$w8?wy;
z7Bf<=L<G1Dt6BqmQ(>r>DNzIMIap@AUqb`xBSuY-RgzBNDQgQa`~3M5ska)8&S=8N
zVTBe)g7gv3b(-HA)n|c3Qb}sU-=HZX>Ts}4wZ0mo4kBn@Q$`~CBU%g&L(e4g`voW3
zAF`^sb)_{~zy!+UByFKCKL(PiG){$fQ<ne%P7bX(j%W|+ySGkZ*bF@>(ufmcqM}I;
zxM)Z$GRz(KA|^1=>bFK6V=%yFt?UhRpOj{n#QTUi6nT_w`gC|f-U9)r4IYjqJPE`Y
z4)v+;IeXq0v_zr%f~7o2NEK<p>t}9Wkt>5D7+qQ`Oy%&BLjE~&B9Za&qesvezEDSS
zr_2~t43{FDdsv%V;d=1TkqH7>fWJK&og$$1-c4Ch3NFC2S}(7trWMbgmHQ6?kxe_=
zLN_+U%2H(#2$G6cjJh=pHX%rlS3#v}0YqM-u6PEkz7}CN1`{3&@%GzWqt__SyoOCW
z4gFcrI*gkV{u2o{HoU*l+|s5|MBM9W71A~_LF?H9Y5||Dq}rXJ5$b{rjG<1&CLbSc
zY0~s7;ofq;<jG&k{a+w-Y5z?arJ>`L;5jg9Pr2m0-Me@D@fk;;DJ2ZhQwN{Qw#*Yc
zw|A*+PFfm3@Hc={V)r{%T3#-Xj9`k=yQmDR>6q_V2p6nKgt3Z=3dlK(fr7Ffz-S7s
zsB}?{tFq8wcm~ocX`S1#Yge~yi<sWhFnI?C#$)|c5jE;`A_F6cu!|9y0a74V<AJt(
zjjF0DU?@4bk947RLqV>KQ<g>j)?oG|zA!U0lQb@XxF0xhproIkC9gji8bqdTawT|h
zD%!AvGvvJjY&(uc$uxHV`Ny5VFviu96_is<QefEL4v!d32b)o8R;C}_2=^JRGWEE3
zsJO}7r~_9kjD9@c#lpwesHF@wlg8&o80I@(Jy(Ui4+ar@&Fair5fPC#E8WY(=_jel
z7+2GtFYnh!OqHnq-Uc8Zy-r*eOS&^aO$@>cCj8~Xu&X@**N~9XM+7EM;~C-0q^7I6
z*ZvF1A7GWxnbk%xBptL+O0NdB8jtlz>wilv=8rw31Qc=N?)Ot{i^x?nq%BZt9UMBn
zFb>tD1K2Y-I1zn>YNX>hA&=s`{^Z}i05iI*q^SvFb6h2gZFPWXrr7p+U}FRkWW2pd
zZ+Q+~TdwFDOhE9RM>j<l2oN_`8><9_u~b-e9zS^!gT+zu`SY84BB?@u=7$AF-G1KG
zbf~pu!0ed_Tccv@x4wAw)_OHCdMohnTKMsn8aBt;pR=n>O1gzDTe12!2pnlG{_uE%
zT0IT#&Ch?72k^-PL)Ji-)6b~#ub!y<Cpg8V@f%K6gtP@H5HaE8Dqmdy`Tr6t&uZ;a
zgqqL=uPQGJ<A>0x&3)(Vmu8qnma5Qxfb71gC{jmBsUBNf8_DiQgk<nwbx^xLYfwWV
zdNSKc57#3{N78-fYu;*Eq%{w1X33=cS5KHSj9Y1J2M-o(+|3E1{?P|x?hjXEX1q9R
zC1tR~^uw?-`+jLDG-W|1q!sN#A~=DLH!O1)i(zn3@Pm#-j2j?!`fS<#oG-n+x{_K+
z{{eKF2t?sq;4E6gd4dDMFsJ*#CFuiHkTK24#U+7&QT}xMVHTS*ahBm{X#0X)z(jP#
zJFdS{-#_5iku6TFAvTs-{c*rt|Ae^7ZlE}<|I{f0*tG2LcneDQ!$AM^<wr#JwJoch
z+VqH&|JavGmHU0Beo#CZ3{Q)9Yl$Ep(<mJTQrk=b7bWBjO|B!5n>-Bx78E&Jh|CVM
ztA1asUAkDebm1Yebg}981?$qq*54O<mo9#PfXBaFJck;y4HzyUd0!#z_I@$BmB^*K
z)wL|HU^%qA$P@0L`lm+&nIL$J@;^CwqLbzD;ftiPwG;*H?8~eQad-XgirtwY_r4;W
z#LO1)1}!o%=%;9maV+@prj;G16F?ONn+S{NWGTUB3x&41Dtk|7Xb<Y8AuOb)kWwN6
z)Ih=|NNCnkd+dZU?5XT>F6hnR400%6m}M`3%_@?5C48LUV#KR1o_5)DLJW(f2E8)c
zu};sD5!E))3!eO1hv!l!sFc##1;-&e6l%nd4gsM+!c2oik}*x{7|>_4SDp@gdD;!V
z8tTM~apuh2;%?))DI<bhz}Y9Wokqwh91bO}4w$$jyplrW9)uiZP|3}L+-IqIL+K?D
z0kQ%cEMFQ4NDb6}4=ln>48m8jzp~n&v3djs>W2f1`r%LqsA)HC%_a?jd(yNk=|!ut
zFHB*$vAQEUTq^%e;{uws|5XvcBD95$pU94CK$P_}$d<Aw<MuVCL~h=9@>=ISFhFgt
zwfU!yACJIW+Zji1I6j=3030=gtj{QlHY+#i_}HFtd89}3cM(X?;tjf4h)xY`W_d^Q
z-vs)v8Cao^-N6Ymdm9pii%emisRg#`Gz-Ls{VaYtj?S&@qrqs1Ds5y&Z+885Nx@fO
z^PBdalp;1R@tMDn6I*G3cJ9eV;`~Y@cDTbUcp$O9srr!bg!x0>4@KxEJ;P8!Dpa&1
zgD{MWu)@*6dl|2hYn2A8WF$CR=2eyx=y_<dUz{iXPhf;5kUD1N7$m7^n9#1%glK|Y
zUX3Qt>vgdR4+_@*Rv7r1B!nO#cjHDViS6Gv0xK<dWVT})U@rM_*W;u<ExZcr2amH!
zL5ij+Qqy1%wowBA{Q^AF(#262h5DWqF!7R>ff8@l#5X+@(Rf%xs{dn+RnH&&Ur^3Y
zKjq(HyI6IRp%;Qj4LB#mCfehth|h0kVt^_u@XT%yBaF34+F6hs)Zk%O;1?L*$92mI
zCc(MI#_ZXsm;`~vj^NjVXHT8m{wPd3mc#Gb>vU%k@A6ZZYnQWx)<>qQ`NZkG)Kbx|
z{dlDG+fk=IHv)9GUAU;fO+X^vb^ES#4z6W2m+L;R<8TSvw03y6rQO<|^TTrspW8R@
z8q95e{w{Y{Yhv2qwu)Bm;2~ja!!L>5ry&q$c<tJ;<2K4UF>!IVAgdvWp{a1#JMUe;
zcI{ne`iokN!wieB+U5t%iC|?nRlv~q%8|Yrad!+Y_D7(6h%8Q565_vUH|IGR_M`Ej
z@`{R)q`ZQZW;VNh`}WtQeGY4yg^i8WNSgu*S{e86KLtgN1P)RU#WX~fpY^}*HKq1=
z@WWMOhIKR+bcO3Dj<bKE@lk9kYR$~E9F2JJ@S$l(;U>q~ftGAVqOPEA;sgLcj@mf8
zVdv2|UTapZYRuVmWdHtmGr8Aku_e69j|op~V@XR(gEg}b>pL8W+VnxI+Z-I<e)N@$
zf<gp%4;9@TBa@R2@cyDn@?=Ik8ayLFi^hQ4Vl?vY>hC@O6zbqWIdS3y^U0G+&d$#6
zVb7ke*V58rW@nd#41)(VBZFmXYD(-_c{6>iq{7PrJ?_PyXUFixI-g(snPo8?itI_V
zV@KG`j1`W2$&k1lUzwespTB3%o}WWQiG_t1R;^ymFX)(iT2u3NOiT>n4n1h3_=Y1T
z7J7phL@_=6ro~KeBQoN*T5L8hw{0dVOfWPnO9i8Og<9r!LY&muh&vE96hL`Po=$8>
zDSY1L8V?;mef6~d5)r9_f`aicXSXmz4qF^roEPzCkW*DxHyE9V5ellCbX{$2kH$i$
zh6hUHW&z~v0eXw?%k((I0T+G43@emPOj1p)#l)WJ>gsyn=o=_}+522yC!<h#7Vse-
zWG~c_-s%#WVk~oF+a#D9#gY1XJv}`p+fkK%xQLquTp8g&QmbdxO;FG68w;3Ny=>Vs
zI7PBaC6j1Pi?jKQvG{bomMqht&6_CS4{c+Cntl+GfE(E((sX0N7lKAnz|cj2&~NR3
z84wVM{ww99JBbkk&etBPqa=R8Je|O>@XPTEb$WJ|is#h5eftaGkA4Yxw0U4skKo{7
zun0M6=^thRF0F$pD4W#P)%BvHDThZjokdDHVc04N(w0=-<Pq?xBkoR#2lKZ#*B>sG
zC5dQYH|pP}6dZg&6zG7^rame)4RW1-ay{YINE^5>_tj?SE?%T!US|dj?PHNNt80Ex
zD9zU=w&g~}3cDsf5GvbXvZ_mdGRZuF7adA$8hJS_w*G#8P`<SNBqSvCOITP~%AisE
zfSY##wU<NGJSljqbV${k&~J~Mb`T=3Xp)|@-k~AG3l}c<Vdi)S_6eAk%~hD^Y0gYf
z`z|ajbP+4Ji!lV-t~Rth@)#L5zpdK1VFQ;oTIK3%Yn4h7owZ$PIX*bS3x{SVdG8J*
z1(aSzW!<O2_534r{Osqc8WN&iP}Xn7%PJ_`I&|oeA11mB5xgupnbWa5JuB;506Ix`
z@7=36*qYna`*!Ts;!NVA?n1w|$fybJuQPF5O?Gwp&00KJpR-wWm9@{Vp7mv{l{4tU
zOay`NfuJ^FawO|s=QEPn(QswW@4;g=BRJ4IZ(N5oJ+@`>*A{5=iGp<Nb2jR&Y<Zm7
zC2TMafY36CRE9M=^6aLVt!*w@mY76q{v9V@`1@0P|Hx`at3#}x-yVc4yh?F+J|{>A
zc+q34Zt-Ik$!S5G&sOtRzM+My0v*e0l8(y-Ks-EOy!gVp(2zQ9$rH~YwvqDd3M0v-
z8P-TyLUa%0)zktb&)$vUW!$!}7_?DF#yzqC%a(2FrW_h{u0(Kib6fCx7|2RXqX2wF
z(s3E(?$&h#I9hnN`dsES9}EDqd)u;xVzc)5%g%V&EsR84xGZDH$GyGZaHxQKT;YwQ
z<^6<rIm-nTJNZq#F83DerA0(sATiq$Jd^Z|)%<u@`YU_=(zqlL;N(y=Ue79v=4B5b
zpD18(cV^0W%}d1A@b0yhEN6I9k~A8w<k4F|j(;J&>tdHL*J7i6@BKod7_@sa{8M;#
z=-&P02gXwV)F}s&=1`Uq8u@$>-X6EX+(~sw$5rfwLo7=({CjjMRv7^S0cMF(KiH=!
z6vKjJBKYE8Q6QLb(vYL2YF^<WHBPeADZfs-<6jzQ&k(s${eIYb$~*5DOOMd7A5NfO
zG-Ti@-{mjGP$)Lbeh(EL`4hv7zyBnf4{vkeJ+K6b6KN1vaHa?u?^Ao9==eoMKJ3~2
z<a(61NnJO`KSt8kbnVHaJ*UmDCuF*^{#EB|KDYFN7$S+K@5I;szrXY=<l8ruV?f8K
z*{<KXu@;-%)6MNwM8qM{wj9fXs>pE29=o5sf?I>9=yt9KBpRsgaxyaQ^&I=i>=UgX
zDgp|zq%`sc-7NxgiQ~fu4;&y<20g(0#xjS&GfTJhD+I@Gh!M&Pvs2xdFCma~Vq;>&
z(CFmOSi>F9VBN-x14d$laJm*KTKS-n%Ak2~HIp-gh&nVCBP#8LoPq)xe&m6?Kpvwj
zf`nrEjJuAY&V-z2(4c2IhdZa)wTqRF?FvjqM#E0aPfZ>#Qy&S{X^kEbpk@79kaJ4$
zn)<S!B7ToEXU@o}sKh|Ar>48RZ*!&>Qh|`fV@em82=ATl+|)2pP%$E=z~b<m@V6u;
zBwPVMHTS>yBwI82#;5g6s3Nt0e9F^=phs#GJ*1^AHYm44Bil@ZIIK)f(@KrTcl;GN
z-u^WV@TcpdhET6+!-%tSvLrY^`6A2ep{IHM`t{X-BWZBhnoV+SJd0*+x@Vc;0LP@H
zq@Rw{!xU#Hhs?9p#UpfLkWRrtAz#$#7p<oRK4q2rZu+m!xX^9Ca8YEY%GG3k#uQC3
z;;zCoQIPdwfFUxX^@eOPZY1Z=R4&d*LJ+f^0Usa#s_7d2_N@|bLO(@AR`w;hK_sb4
zK*X&<t83#RN5Hzxo9iJ9=?f`{<4ID~<=b_ItSj|#%S0Kpo9kf6-sjE!89@aVwHp3^
z8vt^=0YpSlV_9TqB1YRzX1CQL@2&Bk5J44*bfq97NV=P#HB<+ZHYqJh<aRmcAS39Y
zj)R(I0K(+GreT4Zi%NhE2CX^0W<tG-L9gzimrq_^UI&~ECE9uYqCWj?+qQX-Kzf{F
z^2gHNdsjewKqy`6;Y=^$S`?o8z5?B~#%u$mv1GoJ-9E{Zt3qR8#G7YJq`uu}Drz?u
z33h~PP>oXsjhd1`hf>Rpl^CND#V|ppm=o+!;4orvyng)$zStR?1v_5&*`xJj_n!vD
zdGYB+QX>x-L|uJ-diD^!8sk_rz2FW!hFzIv1Ad?(CO<x`@}EJIP!${?OQo%<(DQ-Y
z?2+A}!qnWd2Ej$1{$VC$owqQfht1bw_eMSH)hooE@2{8QBZZ#ZcE%(gMMaombno23
zK?2@m-}Dl7(7rt|m~A_2Hb3H>FL&))Nclua$bN)?uRjWOf>ApsPy(<cgKiP03XV6m
zEhxa{=>F-3+ou~<@P(%ucV9uWD;uzihXSpKK}I2X5YHNq2hDrxSpDIjL%pl%l*EVc
zhef8Jf|*Ak)(~EXK8ad@4gk!XvKiwATKS`aLp?wTW`-@GD#Tzo1_w=PWo2TyB^wJ1
zu_;~&5{yO*Lw3>KIy^`!I;oHltvMxRq0h<Rx)o6#>#r8yF!Cz($@Satr__&DaaII{
zjIXdbd*%$Gy`v#2^=q>>0EsgG`yM%Gcx%Y{Li|gXzpv5GHJB?(&dQ8MO5VeziK95G
z<OxNMuTgu5@!k8jbB(&=-@y;fcgwlg`))Jj$9|!kvUZ#Od*<L>Snk?dqI@Q4TA2mX
zY76aFiuv8rrBh@qwpts`F8gl#d!8J;_xmoN+PsuRDBo9IilF2@{{5vEw8cB#O)e!7
z3T4XyylV+mVjca-C`)NO|2xbJKDxR7d-h+SwdUu~pD!*iv+=p^7t!0hKkMOj+CC<=
zaZ4wf{_E-?tj7~6m6~+RE0QjJQS;Fo>{w3{IevKENT$Ni-R(=e<3GGK6^B{74V8<y
zJ4v|!%@I9VAUr^}Z>Ax^v4Ug4sH;XFe4Uo=+YnX|$tPI9{CuG<M)j^<T66=3iaq^r
zRVsHG_OVhb_b+9-U^!V?VlKH2o7@cKMmZ^|5OUNZ5khqJ^z{4uB6Q}jW|@eRN(oxz
z1$S7^c2xw%ip>4kGBatvXfEkk&8A_&dP(~u?XF!7z52_4>F4n5{+9{LNZD*Z9;-n(
z5yYZ5jd@z7JF#}D4fzXc1)8;3?>MkV0eH1&xw-Vk*=~K2;H%C>{_TVPN`iH~hWwE|
zjsG=TQ(>qr=;CM?{d7rx9toTvX_A$AofZkrSV>(?Egr5fXs#eyR}M=CrFzLDUqP@X
z&I_E8fT*N(jFp|eAx!k;j;&i?K~Mjhs;sIS3p+9@>UKoo@9XQ^S6DwHsa?di@hk~8
zIIe47`Z&}TUAT&gYo6dcvihGreJTwo1NG&*Og>{TI*MxuHO643K7CKGILj(}_)5SR
z>?X8SM8G$ai`HPC0SHiMfBg7i_0#PlvR|K!GIjJzS>sp!XRpV7QWvsvIpBBjN8@9C
zSHOy2`oB?29iZfZfr#})9K@QYJFfU*X=%3>TR%TPIXSs7oWh5iMEMU6w0K*V2a9MR
zgs4C<fmJ6?3pIy&oN$%^IfWI@M&$bXWExflXhf&6T!<Jg;ZNQJD+xS~31MN3xhT<_
zxwg!Sd@Q%;7YJg62fG)B|IM?otp~$}cnK6i1&7z6t11DcL<T;C`sPeywLWh~XzrqD
z0!u=pUv)&;(ilKvR)LiP2Tu}UgW&PagF(njZWr5CDR|EbeD*HwH{wZmX}>LWXkw<X
zzd2CYRs|tX*SKQY6pz95{f6st*S3r<SG#Yy%0k_mdK^wU>}WG8Oli?!Vdp??c$$vw
zd=4B;k}Q=&W&Ng2b^VPgX;@}0Mn!aHt~ii37ElP)tW@T`uz!=|J;`AufD<?xq8i0`
zM%$NV<a`61T^rlpeq$3If9;-GxTNKk{vY<<JS^w@{TsgQ3}P6&%8)Ihv`U*bQ8CiK
zA=(#d-<z?MB1F<c6xyVHN7RrO+PhlNv~SYB->>s3hB4p!_dA~Fci+eH9LM92nPIwe
z^|?Nu_j#VL?NnI<@&fTo2Ixmb;Tub;ds*6!X|gax*$PCWsBv(@AQ*q(0?Ipgo<;~z
zTemq)odD=H(S(qm9yNv;{r0nwO+WJ;(5+u)&pwo|3#AA?<)GKE_mHubhL*j@x<8%}
zifwuM_5_EurCa$>MfzAfy!*k^Zx8j{Qqeb~(*gj2<|0Z9Atfkm0wu;9(K3M$!28y>
za06`tYq1ltm0cK)xHoNjcUS|H^AnZz)@FLse){PEh8>_!A?VsBO_>sccHWZ!hBId-
zWB8@t{{H*#MI|Ty_~U4#O4-uDl#Y+hwr394gOg%2OES=GUB5Q3(tPofB{g^v{<5`@
zuEJShl)tN~TcgDc*8{TPYv4&ikDx1LMjJ$`&`&SCLGSC&`qrXOUsCzY)bVBT@s>3|
ziicb%H*mL{Tp=)$U{v@9fM+HOX&`-X@$0$!Irkd?5BjsAJuonkeYn~Mk7rTb)WYIo
z^@#4v_mWx@v+Pg5z{h0Ly#z^6c$Z;jOHLG|Zppk_=He6)647JQCQ?&V<9QG2R3qSX
zEwOd-E(!+@(20myhaKh?IXf1P;pZ}koxSCRw|GuQY>LQIgSPT<_1>dnP)NKd#x070
z0wqY;7bbb+fIdR+W`NcPS~BnSA(F)5ncVCoQjb%JRJHV1f=CsLcq4~_2?YH?ZFsYw
zy#n!7^aK<88fabTUnC)NlmS0Db5MHt)XLDEuado)SNTxC$JX~@N;UGCAEc&gL2{FN
zKtX|NlIuI{hsTHDa47JudwZ7#IRX-S6cR#><HKv$ei?n*az1{-4J#vazCtL;$c<sU
zDC$Q2&hHDAQ3{*Ii4$*7^%Xp`Gp_(rx+w`tE*oPgKh$}SFuT3M-FyoQGjrP+`2yL1
z=WkKsUQ<(3ORPGM+MuAITLe7d1bu@$0FHcBZ|G3<VQr^Z@nyY!9eNDcr4~1AHsZxB
z=!#^9KX|}Pu)-N=P64$F=HA|1{m#zZI=S1~J!XSVx06HWW(WW_1J=Qa;jL?85>_E3
zT2_TC?v1C7R|lzp#Qw|qED<&pK+Y%&070L<;YR5|8BW@ZI<4giy1RGpKAWStw{^Jn
zgUvivXCk(J(syNxr}$3PI)!r05EzKx0w372a+j@Flz(B$hdNuc`W49&e(Yw7li8R_
z*=J+Q9Iotd=yN({a|nYW%Lec?P{T<VO=#t*e+&tAjZ5@hE8VIT>)8fV{&aHoW1~hO
zMO|KAK1un(ryGu)N?h#Y+Ft&Da`;UtLIWbkP8^ftFS+}_9OVrARnDms{<RHypFi9k
zmu7&+0NJYk$Se-<AMOmsN$tfY=e=ns-RSv4Grwzjd^ti6FVrk^PicWaY}1VG_@{Lf
zb0FS9!^W~`^QT=r14Z`3@yxb=Z=g)dn!^*AYWp~(@g|kgh`rBu?hNEaBwZf?u^0#o
zBD5vNk-zMD5A0+;1atavGchguBY234f*QhRl+RZ3#F|z-g6`u0RM%1Jl~3BT{lg2c
zZd_qf8W$fQ&lZPR?f*@m#atQ{oTG_%V3x^0+8|dqCO<$kPBlnTaiz>H5%aqwUd1e4
zS!3PQ*hsoLoZGeC6U^#Vd`sn<S{7{7DgZ)_qyGVNj0mg-nB8(*EL5&IMnbvuc9Ql`
zqw-If8!yaTXB=x*`eY|gzy7WWmzKxb;kS~)_!i`O-`wYF@ud&nHc0})_~QIupYE-Q
zH{TAuc$_nO5aSexPfcSEFFZ3iI2c-0TvP<vgDQPmx;eKWCMJsdB;pc4ho6q4J^*44
zl`Is0vI`;_O&^3cfQ*Q25>dRl$!Geqq72Ys45)In88jTh?lfQ$Q+(jqvHN6V0=6ON
zFHv#pDGN%6^p+wIk%)UHyXDugG;7ONHMD6E0PY7eLJYxmFE6z$GOj?txCROc;41bo
zglk@SS-LP91UE0l!}6Z2`G$7}`afAuxE&sVS1Roc>+;WrK9wD`Oh82{$H;`=j(yPr
zh}rH3a%vpqgkF+tb?HO5JW5Zr#wz{Tac*9c@1BDfy85}D`pHoq&=`haG4{#H1#q84
zBeJQf2kCz2h5=YJ?-N-2O$V3g1g|EwR@5zllLLqKRyPemW)n`xvJ{6nblyf4sRVp*
zaXq+q??wNt<I2n#z$`#lXtc(qq#_GMf#^vt15B)CkveD5A{sX)^bcMuA`=9%tu(++
zDq)a)m!BVYj54Lsg$)BiZMwQo!o18q&_XX4*n|}(U>H`)%3tGx2BB+vl$@*q4Ggt%
zdn2QTCuaj<HD<pE5TCSk{jhFx$+-0A`wKue?$e(=5|!WYVoNh8u}92e)P^z*nS%9*
z`o*+t-D56bqwX-=S0{*cIbf<r__;B)M|t7uF}<_!9Ef|B?(MuA-Y=%7gL<iR=F}-(
zzm&`CbhHi}II?Q>YM=QRUnYhDFm`iuvn(^s+K0@*zI^}Tg3z$An4$!9=h-;@Zvu7(
zq*Mzs$)r2YzUxti2&@}NwUTY$3drTJ=jML0)*?8&Xhyoe%>betjE3J&k$k*%<k>9e
zL#aSNtaYq*X7yv<5Q6hW4iygba|cG1STCSaxA0g78N{~OG)1ucZgI%mux1S}zGfW&
zcNnFUy3lW!l$p=J7{#YgcDq_Mr1UK)=oUi|FRYca_$?&UO`EL>a%<c0LXAcv{1~dr
z%Eh|y))!|#eJbT6ROXWu22S^8S67#H*6m9M(si5O|KuF}_vyKa`;(}91~<B5Qt0dJ
zUoME^G(8_%rk)N0s{hqK=ezW*p}#3=L5%pp<HsMHmdAgHuK1VcP;K>^HM?<T`<*b?
zbUEndzNRi=`}UKALqmlnB@gh1j8q*=Dif`;KFnKz8H7$qux(*XG@`5n>B*A=o*;va
zd$J`+>Vi65QNqlB;=F(VWi&>G&>sIyjuoY9pg|^(E5FUlB);SJ&*{AAGjVF<)!IU0
z23hj~xUPW59MsS-Hpx_7pOX=A9|sJMVOa`HgFt`-Acj8SXF&B?EqAi*Zy*&+yRuca
z5k(jVx>_F*@j^^wB9fy45hZ2OAB<aLi^`=PEV4>(T3c?I5dOYR|L<e3W{Siet4)*i
zA7auW#V-aUW6!k!_uY<n&w8W#4^&9#*cffrWx^dktkaHw=y%XyaLE7{w+fNdi>neF
z{FF{H6Qy2|8Uc8d@yzj;jL4N3kS&hTj<cKo23|kvkx`!Fe@WxVff=1@9+a9|S(_jT
z2=mD*>std=i*PZxocMzv_bO_Ep8C<lhrdBv#>OdO9OV(EqQPGLUsGznMba`f;b!wI
zp;x5j*#<lqWbI}a*a+FEBgMwLWS^dn{T7Qw&}0My3XhQ9G%084<`X+e#tfd6sP?$E
z8@ajP;g;4kZ9_oFZ{RSpCG`<R2PxG?5TGRVetv4&h8RHvTZ8+2btF<BEvV2jb`u3s
z1V4mGww^?YxW%m+3)b?eKG}ic^hRfPy1q+amNqvpZ=P=2C?*!Kz#;Dg92=9=L$tZj
z;>Fmx@5bph+)_0x2fEfCU8w1RN;W2vVB8rgNaG`sq^YD+e>A4DU=sfD^XJ2Z92w6)
znamIvx=3Xp1H;JGPM@m5pzIEXTQuz;tY!O<2KsfHrEuR+Ukx~nLSN}!qs8A`o?BUN
zVglrngjjg{F)+&d6mQwGBtQHX9a<7$>)KX-UPbI&M2$*}qwb!jS@sL0b)1p8E$Yij
z{U}b~R;46(&;`*|8aNg0z>u^V7m6Qoo?zWV?P}jFIy(?InEDSgEa;7|P)pxXn~Rw<
zB65T#j358T3}HF7<l_KD0|GbS5&1StC8PuK%B4t*h59C&X@6$Vzct+`{I!yU>5?~5
z9&2GlamdfjMe<2bj&F+2e@X56Sl@p6(Rha17Q4^)*1j4<>^dE6X$V~m;_3hj618Lm
za6tCu%a_@@3I*gk;Lxb`a2eF$=jMLxcK$q{wtd4&3m71Y`MVwa)*fZ_Uxo$mD880@
zjma9%+AN=L9>Wf)Ll3qKElb*Ty1iLbH1P}!&uvDCbg}RKa5iZfcQgh~4NUY;?6S?J
zEi-aI<y?4qm9}+2p6ehwBS4|uM&Ro=10^2u!bGBe27n@rd~;u2Gqpx|PQyNz{;L?s
zf`F<Fp&l&rlHaxoq|#G|<EMX0c8@x14w}gCY+B$r_x84hU)icdh}Nfu{c(xI0_UfJ
zEU2$q5_^bJFQ_}ezfNXQkZc&HzzpI}0jmTcG=|tH{7Rk&9fKgTQTSyB{z%IM1Qvch
zWnSL@`#vJD@axkmyoCSDOD0X5*L$sY^vf82c#XtrBqSi=(vJ;PKZB8XaS^JYAKTq6
z3(wrqdZ*~0sq&1Yc2eT_j-Nh>75(~t=@|dX;`#9P{~3D3|NI9)nY;r-*ZhrIp+L2u
zL@)#|429!<FcmTKC_-nMW@g&yyc(5$zP>!^yoCS8rKaq&F|<q05wUKvD6SX++*x^+
zU{<Y<*o*KE$bTTnctHUH+Ohye!vP49V&pY6G|n>9e4W(4Wu;6LAWx9+d$%al)Tz}r
zjElh_f=PJ%Hw4qCSi5<ME_nCu0Kj+EIJ8pwpe(p~c&=MI@WsVN1b!}JLX!4?oU*V_
zLpM;2|D3mENz-TZ#O->S?`JwSJ`{=jyCx9SyOGbbet(#DT4n8ge^hv%qkFO>S2keE
zCQk>FUVnjr1wpb*HQj}0NG1#+dPzlGAgMzqO`pF8m6dRJG`nUYDc${#bu!sbpFP_I
zqe`UT#qQT?hNX3ljfUvC$o~t$n5f<7qe<o^TWomJ!XdhWc#RZcV5Py>y$-5`iG;e@
zNfRg51L|cLm&47HMOgLIy~!Z9>;X-6hM76-P3wKR(GpT*Cp23{pKC`14g1ohf5haX
z7eQ@;;T`XI1zJWT8N?AS>3I)wV*~2hWtKf`u{e0!AYvBEY9SCaGR`3M=2^`q2frU+
z$FfU-DHd^v!4Mzrtxk08djh4EvFTgSd*Ao6OjB&bvW$g|XW!Yp73Nv9zS8=YA`!50
z-A8V;3a8_z--$|x>jIZo9jDsWzr<>BmXdx)&2-@zNJ1VV2Pvw;Y2`y;LnP<PZ-M@n
z;vFae(5MeFk9Wb0l5}?id*&hsCwv-t7*GzXsy@Vy9x3H;4fBVg$ChMkXCfd3#28vy
z)6BO|_VJ`~{wrJ<+Eu>jWaT-F@x=b>@y^(e=k9`shmG3Vgj$X{XvoF@|K8`x{m9oN
zC9togi`D_=O|*H}u3x_oI0R=fNWPL)(~g5L^HEp2-6hP;y$3@awP;rA=(>=OW(oj%
zk0(qgEvcoe0R!R3I?*5!7E?UspHia@*Gu=FnK*IcpGP7~QVfFtQ>{Gs#~*(Xu7rt7
z^itr8x**~Aw;42bFPf3Q9}ac6&)HWg6147x^o8UXuHz=4|1yq6fQS-mD_akq<=^Dw
zE&)fj#3L?L(<;Va0~}Ea^jCH)o>#y>@}8E%gLY(%fSVyPo9RGDCw{sn#YL@#5wlSL
zJyY$5Wxz6K9qWdiC2n(Oc*ci6anFY7(0hZhBq<p_n~M8)?rg>1S3aD7o{+WoD<L%w
zM{5Lrct09hgx7g$IkX635lWs~W>u9o!0VzmeB5EEa|YmmU%z={S?1j2qz;Gfec;b`
z$x46@tC%=5NJ4qEQ#IZR&k7`J@ga5AL%2H8w(TF;ByY#2NQA1#$wQV!!oKUU*aGXr
zt*Q*kdAN33IIMKcWVTY(r8zm8kPSk*dLPOxQkQ}LvbvA39Lp`9+`bn_4>YL3icoO6
zQrevMJ$v?yf;Q+D#l=!<x)&7G2ud%uYXEboA;w+WI?{#dNz^2*D>aOK9^}8J$@kp3
zsYDo$^m>duz_$x|_)rGSb8)WAutm}U5bXRitikX(o1b_$MS_I+DCPZG+QWA#VJxc|
zX})<lYe@NSf^dJ>o=&V~)2lOua@HQ*h$U4z6y-p|6qFNZGF+uEA8Zi&4g$O0V<EK5
zO*{9g2#c{=)Lb#Xyx*JqjbM-YX;yV&q|8u$R4y?}oiRGMaVeVai%1-$?-(VZpRT<;
z^1+K!xX(`1we`hcpJtXPO&JsIJnc|9%Q{{s>n&I)Ah~ztufN_|vZ8SjxIHRfu38Ve
zP8xi`qeQ=BbZ+8OFoo8S^&9)2J=gk<@q&z$iLb8ZjEX++BG;pP>P7_|45?Yto9=gv
z@oE8QS9rhc8|CO2c_(X#q-z-eKP~HU&3zCSR!CtMs06sfNcoGA8M30rZj}uh@d4lg
zNRUeER8q;J>17u1%}B3Bj41IgC{vbpj%N;A_VGbkl+Aj({_O<{`x+pw`3=t;4Ox&v
zVDMZkE}o)ZP52OcC;?OoCqVopBSc6{XeNh)EFNDWE4ln=XT&YsBbpuh?25&B&gvb%
zW9P27QKS!~94KI+ObC4h>^t=_@>{DfP3td=_+{zRP>@9>#<V^OphQ=b_K2G2&}Jnl
zH!(1)W0=!i92oHimeRSOei`f1G>BMq%)o3xDr+Bg$Gd@nCZ1~n^zM<9Q^bUeq+?4+
z!;DJNos(OFVj}<yAhIep<_+%*NKfRTt5q1|)_C22VEoFar1K*2sP1vO>L92YTE{?+
zbr9~jHmd)Gn@oy+fT)7`(8P6LL2vasJG;wrD)?R7rm#5HhBNi5elO?ti`w-Var&Wd
zHfa<a8SJ<v>5>W*ofZTEQBcjonMgJw(3s>Erkxk1J;3%M>%L~)Rv8AhnW$SeW`00$
zCQ;&FU=IUB!vkRMU`rq=>{*j77hQmS*dsjIs_*kLWJ{EkH%5PjcXpugMj2TAhzWgY
zAIEStA|5<AB@#b@;<jz$t4p&UpLq)vY-$6Bp?-AbwA^Y9U;&tb2m&KXqRau<^Z{x9
zGH1@mXy36KDmvwFI!i6hMnDqx0u)9^ESj!xL52v_t{&=$BB396HKz6a5z?)~N&{*M
zS{p042Cv~xU)JDrGzVDdU4Z)FeOTKQdO_8OLKP1p<6&qh%XkM#t*@Vd>vPeGw{<QB
zB=HuPLyM)AS*lV~TT5o?nKNg)>1|A3ybFq<t{J2*MFw{O0HwX2<HwIjscKHG3A%fC
z8+ZlWn+m`RE?m55GKZU|?qpOSA8usI9|a}wxKs-mAL;;VNnX&Ue*r!YyWD=s`BiVL
z3@REpsS;EzT(3}S@IHv%!*9n=m=M+u^)P1I=*?$@4}HVsdvW%<dA<6DA=M^u=&7sF
zc~{s7%aT=BBk<txlVxCD@vH#i$_F&NWoaf9nkIgcp6H?A7?MX-e+LVHS&%b4)&hDt
zOT}@#lP)el*7qegWl0%ngH$O*R-sWTwkX^O7qi<FHN`Nh3N^c+q(t9|c{vWE1jeUh
zm=Wee#K7R9$S&IO2Ll*kH@HPv!gHvbOd26mpwE;bMLdk5$FQBS2x4XdB;demZ7t&d
z-zBu(heh>5xs5u#0mPdTOjx8kj4{q|Bg6u#mA7cejLT%@<*8{{KmQ`3<bY-^<J(Z<
zm(UEBZy&mJrNYA8%F}{wkSBf?CsdkXE08}AV`G)b4oH$L_{IPc%k<asY$js?jdi$|
zWICt(M=n-z#HdL&dLu-V^+S18$5!!qg;PgjE$brB;#7j%hQ<~g&e%e?gM8oYvA=;q
zhpWO@%<f&Q#ev%|wZVcD=Rmn)w8N7Gl8ZqgvUEm7tf2?*0^DQ>7O6-_83F@9t&pkq
zZzTN|iFpx=P<V&0-Z*so*I^T%ij|uCb?`}Ff6#5pBG5enMs053b)4KZ`?$N{A73=>
zzO|8tZ9<$GQ8tHXj?R+b%0__r?GfY0NP<h4O@fz0`=F&uvT9C|pCi6R$DJke9Frz0
ztHWLzy#135U22_$XHJ|rQI@ie#%GmuQqO)Z#3Zbx6J;!C&$?<f$Ivwxr)2T+u?bWO
zKS$x02^2b1Tk$VLD{8O=sV?#BsSk$M+%H4xe7r>A*45EMZaW84>um@)QG#tn;k>{g
zyipf0t-a{E)<X-=*vlw8aeP(we*fM^<u?B<RVCiT7wx5H4(|+~2%DC&LQ~&bNp>d<
z^Vags<a>n%<C{Vpw;32RqE@i~OL71H_e$)Y8^*+&6|^GaHzy~jq%K+1(`KhOSx^)3
zyWNM&1(mW9hdj~Iz|$2K6m)t-aCks|LUDj#C#$X5J2}pj?$r{=-V)<9<sUzqxWT39
z=8K0H+9P|>3PMZB#flF57CG7UIEJc3ZUcf!v`=<7==qfPj3tz{!5-_-QYJ`NLe$d@
z#qGz$4Z^J!j1BReUM#h;=wEu01KyP`BThJcZA$rIhr0)YAhxs;_$y4KRjm@=iWe2n
zHU-pmbXd}-!EkjaAu`te?$c7u!<S>=)k33Ej984MzZL?!C!(j~2|9eAHg(CXFL`IA
zVB9n<-rDwT9_urHf0Bl^YuEm2;5E&{p~jsr002LKWy_YtOQaVD1|3~mH0XE@$M8dl
zPkn^Vif|NFgrBTDsrS9kfo|bC{YwI?70~%`y;@y#C9p0K23fKz^rI8uM!1K()0x+_
zPzg3>Xx(4yIsopXoGus(%MT|3G$*|j&YdhP$3>DJ6`5mia=Y4U1;+{$FTw)RaD?SE
zfn2<WZobSIP*^cc%(q(yaFoQ!ys*5-X1~FYrIuny+zno-a4SqB;Q%=XI<3j-1w3=j
z^5xse&%o6HP|k;3(MZhRQXT;~ihe%8VP+w0_CjAiraXnKYduL7gk#pqJ_*h^z$bY?
zCJ95>dUCP>+8;tTp;0=lP|Q060$>TJeq>zz27Ldq-TkN#t2~EKGrsk{xYk9ojjOv=
zyxZZ`FGW9_F8JnWeQE#s`dZhG)uXYg?_YwCDhtzDxJ!7)AAV$p@MC+n`rFz2%b{@Q
z@S4@DgDch@RFRI?92B$Wj3fUd!*#($4-aK)>sXvQ5YoHOAMLAMZ>)GY-j;K;V}CyZ
zheYL=j;?pAC%0?QsN9SpaS9SX_OX|E{EC-wjP~`Pwr0!BWB6?yeasyXLbi&t3dC97
zy8m-PR^s`?3x)hKX(9KG!aRcHZP0i?_S|5b__0^h+^zK-qUUTE&`)K#B3}SdE6@?p
z5upe+K*&pGQ1TW;-fiaTiNy;R`o7H!*Pn|Q2&Xr%Ol!9bj%_<Ms$II1RChh4ngl_k
zs${FUmv6OX{R%|=!q4R@mo@W<*nE#R&El0)z!Q$Cwg6`RP^Nk%_W__4SR}9(Q42Ji
zDk@%=OCc8^6-dm}wDqkKx-<n@SvRytmRPK1Q~}0{hDZubLCXQAP0u3KD^uXBvaReI
z{*0DKfiyw$l#fA^y}Rv4P|K7PvZTa8Uz^Ie=r}Z5l`WQxk-Wy;76p3B{q+y_wZxQG
zij-ZXpI?%7!2)aRg3%L8!`(xqCdPo4B7{}MP#mRZs-r4+3<$~N*3u3UVnJbh2~&;Q
zg(!kzczPaEDn4qgPz!9$yU-NS4mI!wYZ^vO_ZkeP{f2Ex6z$|=`y>9ew3{CbKhg3i
z+Sw%_V-2nPJL}v_fnONOr1A(|>Uq!;;{99B`2PL7=CH)dv+cRQQJ+1#8aH?|=pj5H
z=m*kZVDTa;a8S;_Ho%9%Y`Pj1DZ(oe7BR4Aituj$>WDMYgO(bycJdIRK@xz~&sW@`
zsCBb`scF+^YL|ccWeuDSVa`>c+#%H}vc6qWq!SSuICP?5mR_b!j7Mwdt3vbWVtKQ?
zB?B|!PYV8#gTjeN1y-oGXn4KEsn-}&p?^A~_n@G-n5IsshfEqLPMSnK3OF~^s;gk`
z&>8B7*$@E5lv_G<Qew@TKg&|NfGU=V18os%t9!k~80YGDkX3y8wCg#IH`ZkyFUoZ9
zewbq3+^Cmfn^ak%_mmylfywE-7%%R^w{TWw-e^;S@v6VSDS~1n;*25FdK4CRz0>9V
z4KEER!L~0QZ2JBzu2bUfWtZIDO>L@lzazPtA8X-*+}l!GZJMU>A=D$h`(aFX#?K7b
z);!o4Fgu%$H0+>){ps@O&nJ)xRQkb!AGQ4ZzSQun`wy<K$6lk{&x`xk1USL-p_%5a
z2}z@M|AlHiW>jl#iP#>FFaDwhFu#lO&Ez#cR4Y7UfUNa_shGTmVpTQmwz>5TJtyOc
zeePw=q2?1A@2#&KY&fdB@$JRL#*VSiq`uW|<*R<o{Y#-GO#m_#1+LE&O~o-?U`vZ&
zca`_v^m6^WbruVgqKFp$r-4f)i(~*`#N!L(aR_+dx@E}HN@ck5A=`6lw-qFRwda0b
z@rE`w!c!PypobN7LGTX(jWEzXcC7ST!d#Ci=grLAQoh?=Z&m$o$JlMDE?Lr<Au*x#
z(4_$W=)o=LxcG4!zIpY^Kw(Pj2jZB2)Gz}P%3+QnLZi}ZAVP5?|34!1P5&8(4k^js
ztA;175|crNP_vUJ^v0B!155zw%EeF_;(#hBC^#CI8YslH_}BJyON-uj&FPG><}@x_
zAX|u2nm{~^Ur7b65P#f92Ddb(Z1ODv`2iw=PPH@VCruzFl<G{4Dr`4UWEkQEBPS0a
zUb%|eR1B!(Isx}U{Vdb!{eZ2>rmu+nm#!f7$*!`CQO6Sg*|pY2K<Yo{=P|1I+s`BK
z(bm{ULkK`@LClvvEohMKkv-Ol*d$ToHVjM%puP-jMKiqmlH;*(ySZa+l4XehP_v#r
zC}%|tjdIh9G1rbzTrY5B^{Z=rKLBE)fHI#J9B73&URzpqZUx~xLH9^eURLpJjtj=R
zi^D)c{Mfc0VCtO}$^W~rHH)htV@+FfhkI&Qm|4SuwBFMcHiY&uxuQC$WANJDyUW4!
z=9;PkUZ|-4zMNHrPpBHTk1-q%eo^|Ixfh$e-yrvE>suXNiHIK3)#F{lZp2bAr4CfI
zHO_MBJ(*vfWHE3dkf{m1h*d|eTvBEN_zN&#(b(TdY*UNqC#UaVSvVeOu+%f+`YQSO
z)GK<TXAyU{_JZ%4V@ZsJwBBcoeyB8XQg+D@qXn}VZQ&s>j=ce0Gl=k_bw`?Glt<C{
ztRs=}8ktMlJ4&2bKpt4_pktd}-XQM{((B%Vcv@Pti1(0`&yE-Hj3}zBGY!nao!1kj
z5erbx2(!O@&k)XgCf5<s15;92JRgJ6d)d!Z)*u!Ud^qYhuLshRNZU^V2?+`bHDX%<
zt)_uM>bd;I!^llyd0qjp18M=KQBMLWxSJ7jSbIEe^o&<U^j%7r=%=w!@2PZW^wA4k
z024RMsU>5*Ef}<WsXZxe<U0V}oDV5*4D=WB7k@>!j-!waxo~e|pYt+;$Ty~RdO|~P
z+!*Wlz8TwZ3i9#}b@b~gH$ClX|Cd%<E&OM_A6o4i`;Ta~Bfbn%jLh9Z<r3+<OTEk$
zCyS1nkQla+r%s)+ZW7tM@ag6pUqbu#oqd1xdr#}=<oiPdo;zw2**Kq--)sy$yDiM9
zJYyD>jnW4ueUcbG8J<qLd~jUy^s$@&XD&rX+n3IIs?5BnTgG0(xg9SN8|&Fm(v&VX
zhOGCJ&2n@~4^Z9&sggMR4jT|%Dfhl{9*^CM-{QU)5JtV%G%A=97+)Vlb8y3K`agkx
z|Co$C{`L;`ub_uAnM(01{ya#Or-87Z#MrhUp)d<xULt6fkrR*B8);-|E8Qh{U;xeH
zoq>Ncjm^wPidv$}a|;)0{`+jd<&q#ia2TxtkRK0`myT{WgYY^13DY2szcB%c2B8(3
ztJgUSnlc#nqI4}hXeq2Ew%9`YPvD=Z^I$xlNF+#akl7@c-yhlI6a|$FMM)RnaWKY$
z+L4wQC4SKIBWsN8l%Sdmfo=){%A=UFpr8!X<gd7ZhL2uK{DDkOo?L01YbG%@GjR?F
z;&S`6*KX1UbMO84RT5VQPY2i#x+UETr2_}<LYo&79bFI<9%y&G{o_uuX5x;gDnfRQ
zl9CdkuI84u2iacCit}&%$mjvq5OEjLrIiH*_Ygg|9m=E7bQPlMFlj=sSym$&7t+ON
zsyCF7Xr>p@P7!tZmf%Vif@2!iiVxLk?`z{co}{v(e#02|^E8kwj5rpV<r0YGX*qEB
zZs`vy&LriRw)J_xURt{ONp?3VNJBIs@Kk;~)`)88Aya~^gj|#%d*kpz@}qFk=4DL4
zS36zeu8SnjYaE+8#^j_T%|_@2X~xIg)>0Cg9ux|c5CWwGFdGVB;|j*6QWILw1Y-XA
z2!f#k14CPfJX|L8%iKIAwd~iM0h3<bUG`JS^z8O+Y&Bk|W+yD%C~h>*s#MWqr+bkS
z&;4sB9^U`yob*rg%ntJXGA)zi=tIp_=jI*cUba%4J7CJ}Ijerx*u8tQ=g>g<)xKk%
z-mCc&-pFohD^^n#jq=xPYjf_d-1k1KS&y;_U`HZ%ILA;QyjA7x4oTsjG(AEa(CZd;
zAD$H2<82ye1Su>bhuY@K2M_Awd7)Vhfm4(TU{eZIg3N>@eqFs<8rmVN8>PlVgv{W<
zFtd^i3%{dyn~_MN1pCi20w&OOy{!?M5R_kP*;jLenpm<GN%Z|SH!ar;jR83-s88@D
zB9P#QapG0?LUhDX7y!o9#TcW9<cRR`>v|iayb;4OVVtxl;%TOUH=@=n?VEUH-XW%m
z2k}BSm3Gpe(a<wc#&vaXt$N@sCV*uUe}W^%;MUjNL<~HLN#H{9bA{z-F*bw+!~>9*
z2vMKKqGT$gC<qh>D5}rXmKmE;Xtc_6UzI|~ik>^A$Q<`m3Z#B}<mHQK;%yrlZi5o8
zeUS}{GwE9)0i$qjn+hvj%8|i3$zo*Rgd>9kwDEqFi!Ko}3JOMH07#{7^79sGdEwv6
zYrLhVxjjT=oTVh{0+*s|>zf_trZyVJK{K<Yc4ux8N&#3M6QnI0;>J7LY@Jk!$0MXV
zIr}6Ymx^+%tmJ5`z&~pN8TB+d`efG%26?p&ED02bsY3{6C;cvGcx|xLr(>};h=k4X
za=~<VX%X5NsZ4=5<j3$sTCL;8hmt2q0%2Omnz0Zoyc$yFvztupe7U?)_WWzIHGvG(
z;_l8^sDu59jpoh5sqHg+tVE!ATO?$x;$xMlvBBdBZY};}uYbWeL>3)CQESB=FvGqf
zi?0G;0I-s8;L|@u8cKijeb|sF3z>B?ENXCVWCXt9ZbeI~lqtLj`UhCNvEuXQqetA7
z#N;vT<>h7Hl2#}feIY98<FNbgRj&|luK>r9-Hh2Y-o!jbxjcnbmP+1@%d-&56im`Y
zP+1+eRZOuzb8;Zgl#pv10S|A`F^FWddi*erSRgWxLjF_^F%`X>+tWmLnT03RE~b?w
z5LkY)t!l6|1k2yLFUj^|1Ps4WqbuWrR%Hq(LxW9vcf<%5AU!z<t(ykSLWKk&pk-{t
zcgNGz@gOct?}18~bW%k){+iMj>jaGrC@=9I5Epcv;{#1&lm-@wXa;z}_rV&S5Bc?n
z4UpSViXWv~YC3fliehOYfQ*!kcN+NXp`%pP(rS$<$Gd}Uko-TmHwgbjj7VyByw7kI
zQ@H&FL?w93H#AP12as6++CD)eTqxq<-&e5666wNAY10SXJ@2~~7ES%*_k{T(u>jn*
z0g!sAxcm@eCQ*Y7JIX<e7~m*Ho7>U5>IT>_BRs1pQMNu-jxcd6nwv*vIsla7aFJ=*
z?dAz6BLtTt#y$<bJ-_ao$6`HzBg5wK{k|0AEvKecp(24ZXxaiHMkeV;8hTR!7^Lw%
z`U<DGfR&`~%kv)OR31+-YvaQ8h}i9A$e>|F$;<ZLqD+E(X;q-c^leDr=}<M`r~T>|
z84?JimOFW^hEpF@4dn*`&w?bZMY$YM*ymCYa4$Ve4ffdgr8h2CdpRv&0O$ZzFY}o$
zuBK<u3@p0`aD%v37_wA0+}KOXU-Ettx?<u7Uq)^tHmvLi>XkWw@SsHOP9L%tY0>cz
z4+7!dL}}IVbP^m!)<`U9IUf9CjST+%m~bQ7Xatn_QA9*B^!c46iVc<=dYIb*bfy#B
zyQ)Og3x6HT0VVA`3h6a25^2COY1%b-ZIyMBCWI)?U19g(*&-l-z7cG>;;$jD!PpWC
zod{Y5dGrKYO(HmLOp{uKDvqbmREs>aGvqViwkFAu4oPBz{mnISZqYHVvEc?ugdrGd
zL>fSk-5|PA8V7*B8^B!6;eRyp!WL8lRB7A=l<t_REU$-s8?;pdngBG(j#_PAp`&F%
z*ppjI_?K&!b{<~#M`BqEpVFr@c5f{<`^xj<FU^OyB_BsTV&#u;IDXn{0o#jGrjY*>
z=#T`Uq}+t@QL8BomMn61;SW3Qoh>4gKVL{do|!CEJ@oH4K;=qW7dp{GPuBih+@5m4
zGU&f6a$o6lXy<!m>+*xnpqM@msLJbZdUdx}V8u2*hCHlhMaHTbmp7hihZG^?BxQU!
zZp+irotS`=n;)ue#Qo{Q;VbUWvvH#^?qS-=ri%xHg#B7gj+h(X0Pm2+V`>MFs(MTh
zm~X@g;za0Nl!>G|LozEsf+>d%K^CQ=4{6m-9BEMRvKE`c(WVo}Bn|P<g#pkxx+uV_
zBqS=`*tZllV>O3nt)-|O#AG<V`N_8?ADnOGqMjO?ct*+GTDiRH=U2C?@_n4uBos~y
z{&DDV_#}6|2g{my=|YbScm<4+6dLSew!8&*0_Glfk>={?9$fjV!yAtGiPJ53jvKQg
zXm()?hmj@_kth415!F1?A}Q7LboIg6){e&-p_g>s{h~@|_KZQ_&BuSc!^Ze@=Cqqv
z{4-()UGsF<mwT!XZ9kG9>kmW3vRxCG&1QX5hAZ#8LE!$+$Hw5PbGZ~;TgO`bQ{z0>
zO7)CJgD|$a9sMb9Xml)aoei_Q<-XBLV%ZL`$rWE-5ABUq&zSRlTfpPTm+`7grEYwy
z3bsx>nXRjE$})zj6Z(GUs9pCIN7L-b8H=|*<}Dtdxq2)gW&D?Xlx0$5C<cS|N3$bK
zR)Z0A?H*I`FlH}9GoF|2D{8d|V1*KHszMxC71%?MBk>B$4n}pYrVsZhJ@sU}gdkPZ
zuI4&*5IAZ@#g%-riyEv*K6^(B%tB%Uy7DGUtYSrGp)^nqm-DBSoVz^<l@^Cu&#SHq
z-BDumlPv1gP%B79fTpYPk4e-2_*nwqDvzgB_LT9mx-BtDvsh(r5Mca$>ZZ|%dRk%!
zLp@@dQ!+d_+q!JgAmN-{hudjL3u8w(cB{hRoT#9qvvgea3#W14UY~%oycy&Wr4Udo
z9;tSAp`sFPa5cAsyuwwm#&M`SB6a?+E3)9u-l2scb6N$K1;8O^{Y_V>j7JkXk8*TV
z$B08DlP_!&Dj8-`rIdn?b3Qg(XgZW2?Cd-!iD*dm;oRluGR7nfNl;=#kdIiuImGC2
zUuohGNb!zqH`I7m(Lo6kXhr}_X(he`um^?lQ`?1FWRvESFDJ}m!E!sW(Q+p_!cmD6
zNQ@7jtpP5hb`f0&-$>qoGnSBLpkWTzIN`CH!nSljPBS<@%G)Fn4Md`1Tr;#@6}p_T
zzJqBriz(IpvDuRrM+Qa#&@Msr{~kR1NNJ1SkyJ*|lEju3{T0Hg)DmN5;<{Vu;K5%S
zF^tx4GVa@2a+vPb=aLxm`aMQ^X91y3xVjub8SN0lR94-QjIcGQ-VbL<P)i&I;2>(~
z6I)`LTr#xZ1+52OwK6!L_U<&nC-0fc;e%3%ppCqtM1xSWTEMrw7JLM@qMyd+SZlFV
zy-2697M4;-jzgedgq%wgJ3IpYsCOYXGIjje>O!}^rvPNfPEZITS?M6+Y-lkVvKZn@
zXN7c!ew?`67f&5lvY~G{WH+P7=BY4xhtudC=5SBl;x;e&uvTvbBr=4iM?~D<(u6+-
z9cd8+yo2G@V2kpRrE&)?g-n0{)fIAGG6!(u3|M7F8Vr}2#)aU1MukJsg}Bgb+I3uu
z9^rASF%6cYg6LN1!NC8fOOLj<Ej$?10t_ku9`{2CQgb4q+zQ!X^`3h-7%1u%{{4Qh
zB03V|qSGqH__PT{Dl4YWuT^_rf`mHpH@Fo9fyeYT;pE5I(Jv-J-Ou>3?&q^eM$L&=
z3s>m4RZTkyFLO`ucFe|1vDCg|ZuJ;%B)UOW`3N2)^0k4Xlopo{R(MzJWai8R^s!<H
z#ql>BBdnXaB}GW;9t3-%tp*HdYyeB@YpH>u@T?OF8Z?(u6jBA&Ewz58^$9Q<N#tUo
z^;@7-R#;_+P6#cbGA$FKEPzChS2;OK=)Yif!u}OejQ#`jn4prQ(NvN=2C&w+uB=Dd
z2tA~99MT_v{XpzOt9dJ$2E>7dK~lXHP-SZmKR-Xvs$EFfqm|O6s?m;Ai7Bo$ny_Pz
zCpW{D<JC7K%4su1KO}hLi)f2A#robz8@!)z{KFqfgNTLVrEVv;!&g4o8&Ww6@@yy!
zxdF8;-z<sVfXyz$$pberT=2t(GMAIn46%-S&<y;w!DzEkwl*fxo2X$F!F$!;-)yrx
zPgZDIIR?B0>}r(7E{;fMi!OZX99?4VFXmF+#4wwVpeXxJL0E6FPTL!i7z=~*8<ZtO
z%c3sKJ!k1D=8OdSwd>a#Tg_lpjoknMJ)R@g&FtoamLA_WM`@#?(6=_|Mfabb^UIrg
z%Nzx&GK%lj@GGiBxeAWm<LHm2X2oJg1`D%8cGD!OUY&tia4r$oEM5Wx_7Mp7)6kiG
zk~%PnkvI2o&6LBL%*>PH7*e?}{ogXGdL3ra!xH~s{}hI8`nFwr%ioiPPOA7xzqDtN
z-b2{yC-N<4FhpmmlN@IDK^{)o=?p2G(Gs?GJB%TD3ap|jwI8`Jj7~0ANz1Dt1(y9{
z7O+--fD6Jb@zK;a%SDJ#bM+gA0uyJDUToiJIn}(&s-}#9%qNR<WFMTII@u>XXlldQ
z49fCtOcgKs_0XlU7GvKSU^ej_sgChW%5{`gXE6TpM|tv;w~2lfX><WJ5y7?9z9z2J
z*tb%5nU#=aECla(z5)8n2WJ*=XquadhRB6fgKjOe3XkiFGppKww}PR_LA;W=&*4bx
z`fTRZm%ZZ{vrT)wIL9Wvym_LVBJh$<L=~#zhE+gaAVdlnfhJ{~lBe1#-dVd$T@NP=
znmHV@_v`EH<u5%He{LtI{?hCA?e)R=i#{b(R?-uO@xI1Vv`c%WOWQefw*DL6`*urw
zOSMFDCoNn0c-QRp7&EWzA3MLtYu;JW!P;5_Mve9q_Bc@LCxx-l{hi)5@UBuc-DKuz
zb+K&KmqkkD!>bOGMVJn3#ET_<e!Y$|c%kd;tB?;cx0*bMTS|ZIFNuU8+0`0A_gQQc
zsA;c+J%zs3qlYXW7>0n~gg`hj<P0VbUvVEn`3+v`roZ8&P71}r3)?W-h}&3!9ENk(
z{?cKrvEi8J>vb#kSoB~-M0IisjHCN;Nia9k*#n6HhAv!hm<SEAmQJF&!^(uhv2d86
zi6BQBDMJP?WU8m#%FIjF2EIb#5#+3QV()Ks;^fLBMoprVKO)qskj{3HfHWzQc4&)+
zo<n$Wwr)Nk9zkqCR;t5?K-ziQQGmTD@1rzB>~JG_=q}$e(dug>_sri8p7Q#xA!vYn
z`uqEZnnobcJ3<HoTINd?rZzVy!lV|ZoexL{uM5J*vf-jquqj1>F%mMXG{!_zig5M>
zY^qm#If${!+kfz{)h4lREhAy>MtvwXK6-w385%I=4r2GZ5Ncpg$ShC%Kw>)b{t_)w
za@xhU(A)_j#h9-y*IyW`DS2^zIlrt9yHv|3&{pi>+_|EIzA*|%M>^;5<HDHF^VHQX
zGL-E)df@fZr`YfgC{-8hxKaC`4X8kOgI03Axnq`pY?(=J*R`XqX(P_y-x8GS=*X`X
zPV2k$Ff2?Es=m0~zN3P(2A>VFe{I*kx%10zA^K$}K7~*AviPjg)zFNe)t{A>1<mG&
zQVVe>$iqkLaqYHzF#5s>OjEl(p&@1&(J}3WbtKgJ<)b->#vTPB&VywITFaO!x6=Fo
zwxRJM?JjNrhZjd#_r_>@!Ta7QzZ``eEnJJTSY??$$My~(3T~qhfMi;!y&tEe>3dVH
z)^{N+Y%|Sypjy;YM^GGg!i1a$33t<mG_-o1$k{f6Uer0JIxM0k!B44}mOzl=7Vj}x
zYlTbgle9<+mnn`qmzJsAH2PhK=w2=C?OVHUU6x)SX&~TwuuoP7w~6eH!s?WuwD++P
z5id`wpu>X}FQVCQ-4vW};Qhc3CJQ{=v=&d&{v97Ogr0D(TSo^1eI4wGNl9-W&3acn
z>v+t^rZRYANxcpmE@gv%uo0{5z3>4|a$|n52bY~#(!H>fGEaC!(S16w-T)rK1Z~98
z<oM1o>MsSVilrx2;X=#{rH%G`K6`hb5cO@{WLEq@M!f^$#^_nhBd}6|a0(87jA|Zr
za=YKrCSZ(?Wf4Mv&Hg%(aMbMz-!32ptr7+=uvT;#LuSX;gHO=(+a;SCVDMJMnp(({
z-z%&Cj_j5WTi+kL5pAc-Wh0?i;C7-^D%@wpf)2W8F45-Gz%wlhl#QzaNK4Cwe4jSw
zo+PLUyKN(Y+5loq;i8qYv||ETMtO1e!oY8UpWv78UNqXP;dwCErq<IxGe!`fPyItG
z2zhRjz+vp+4UL9&ozPQ)2rx<rQ(R|%X|8jv@)ks9kY*8x78z+FY_w5@^##gdsDpw5
z;v$=|tXcze0(@2qq*eymI-%|8baa2v<N~lML`Nk48p7B65WYdPu!mgHfa$fJ>d!&G
z-x$j@&7Ub;9sok3mwn$dps!t-lEc4Ya-)Qtsyg6tz=nI*yEI2;3b+hA4t4mC9E7tN
z;4IlDn&3L}>g-C_=R^iCP&?b(3(z?OHAsU&nCV&A6}<_)3#IMh6H-fcOvtTHG~__R
z?oRCfndifbufWIe;dv*tK&C84EPYS9RFy-UI6t7X>f<7BPzka@LYS$#bQI%I)x~Md
z0s#<5zEsrmPfhFYW>s3~&gzid*^SV_*2TC(fR!%`^fY2vwJWgU@IBB>x`2T=GAY59
z0G(A(C6=^UM<LZPtv|2mR!pK0ZGl<DcjT1J-o5-JWv*(U_-+?;iwSTq%OQ>d1FSMN
zR@!xVAB)bWA1;kk*0Ou4fjD~B;z#_u7U;e}hT{-#8LepmG8<8+h&~M}&s)gOoa~ru
z)YcU(iq8MJEI|2t_wRe-Q}nM>%|6-vg6-*CqlwR+YfN7{>;BHs2?!OmFZoIT(Vr|L
z^pJIsk1@sy#{pWeEB|QG&)E)}c5KbPg4KLT&!`{l>j08<+BCU6WB*yKl}hxcR*E6D
z=8EijSr^2BlViLIlMZFI114J7cp3j!IQ`qxbAU&HA-aG@m*E+wSnvt;Hp|rz9pvM`
z|HG^WQpLYUPGi)EqeEmYyDN8-cPlf_>_+;Bsa9*y_tfvA+k80()Prb!Se+G1uI&1h
z8ngE!AVTq&r?H-e8LThrWdR^Otp6dUPXFWmP6afGkPi{y$dHi5UjcCK4$Db<_)lFo
zzB_Eo7a9xsEWa000ev!hRMJi_>x7BvOD`%hDi9q-E%2=vjBx-m0@QD!t$MJX^#{U!
zcm8;st}<@w{8nM9dgwKc#sDD4F>Nyo5!ncsm#!MA^3ayCx)Z2`(BfL!s|)#r<u|Qg
zySBkoNHowd{KCvI!L-;9$14^Y;csAdpBo9$r%fXCK*Od>Zg$doAl&p0TlPkbF|D5V
zTdG&M^5|6SoYoBPi)neZ8CQt0gPY#oTsEDW<06**od#GYl~jdP!MC)Z4-kfpp}OYV
zDle-u>4GM6<Rf=@9=|#FgGl#>g>z>ce0LrGFhz92gS}0h1g*fVZg1Sa2nrAQu^{&y
z<LPKm;{$Myn!3Ov;1VLQ6h=p4XrW2?wkbKZD3g{1;Y_0KR=6g_(@QVO7ECeit6GJC
zK3Gc+gxC^=3Ss^_#M;4&iJ-PnX<yhR3UF$w7aByBiaCd4;jd72_k8t^5wmskwTq+g
zdzq_WQbZ0L@cd(OOhMf@3-RP;1^S_8Qaqk;h2_=E-Z)_;8nlf~;ehO~8X3}-c?W09
zauhY_6S0|!Qz8@)fI~{<aL#!zNacuu1aeLpsW9llfB4KWe1NHp3%pDN9c!EdKm=fP
z8%(PI13~AZ^CLYb-G}7^BsW7?JMs&2hlal))JEnsX93cupmt)^X#3IjS>gq{&2p+W
zUZpj7n@zY1VINiFkKZBM6e;IO3yCX?4MJ~7>TNBiLI11Quis$=Wx6qyjfXQnHr=w%
z7c&is1S68)SQtWO04C;oq+5J`pa&eEC~=DW!S1Z+^hmXs;-cGzn@~D!sw$laOg1lN
zqmUradpIKW5#_{@IYo4}T0c5F);s{bL=Eo+j2{vp9^Yyj?xsg~s`{#JJN7FliHAf&
zASu9hcEy_N(tjo1t|kpGsp>sL<1J_@+?qbL7b1(xn;42>Ia>E%@$tnpa9{8$cO`Ay
za3ia_#H%hwQHi)3M@;bmc=^Gf;YoV~m)B6E^i?eXsKg%zD|~F#U!Uq8vp57>WxR1m
z`H-g@Tv+s@I#dVYjD_$SnF4|<_@EMoX*MbWsFpX7u_ZcgG=JM6*HIQ)1-vl?2y{RN
z6K5!VdGlMu>==fq_^4=32}x)*(@t8PwuE5Y@n7H%ntt6QB5?y@*?<>Xk(HB14hO-h
z>DL-x%|<~*?~46hA4Ejh+>n-*PSREvk9htMfJR~faVcb(H3T6<u@%(+^+YO}M0X{-
z)kYu}4WiG$y&DpC0PZ5f4PE&_JTM&(o)y_meQ2*O(U>)1ze+KtuPsY$)FV~89wyLJ
zay`GH0Khm+KB&}0%27{}<Og;G15n%r*wEBs^ycYVfO{t`0*fuf8ASd$LBg*<LKCD$
zQy0>(taHzM-TL^cn@3z}^zkST&uE+c-EkT_7@)52E!$v-t|n~w1mf*Q&@9+3tp=*Z
z)EXShI)oGuEQ(qw1Fc1jm=Ls3I5%h~Y9-Q){WI~KzQR~xa1O1`z)&7Q0n1UNq-_O0
zvZs-PN2NEdyc|E_(#qM{)v=31Ktj<^g;$Y84zn_dRZ(BhRA=`;F<FT&4N-I$&UpwC
zem!kLMK3CV(}H+$jA;E8ZO*}Pd*Q&%iBK6N{K`L)^+8uwc2O3?sp$aY9G=Ms?LL66
z3MBF)%r{vzCmKQ`Qs3q8lMF*wmG2}AzzRgAB3LynZ2=@$5s`=-ygT?nA3-5nov@;E
zDKOHw3Tq$J_z#oAR3e`TzQHYk=^buQ1Tz_gJb~;k?IV^u7XZSc4;w+j(e}e<Hf~J*
z^ap@Q@$mC$<^vbPQX->Y8ixMZtz{;_>Y<F$m0~#ooLY<E>>KZ`K)ETDAqv0d9#8T_
zK}t2?wt{Z!@7hF<h(oc7Y)Td>DNSVKow`Ib-giwXJ=7_+I)#JYYk6D}J@Xp`h?0gR
zoga$}HvyTf1zjV6sm_Lzo-G6`9|l*G4bj{ipcTp8cWMX?{DueO8TgDOWpCtN-UKMs
z0rj~3Qc8^mi9@uLDok(EB-b++S&9Mi2ks_<!1P)R+0c)%tV>bw<c(n{(fc^vL}`&W
z(fbHmlosD7)_#frHKLqwYp}Z)J`xWRQKxhL%2A3Iz!5`<bXSgI&0<?jg;ed1y%g<&
zp<jR~D%>2pcov=Mq377GoiyiP9(wtFm6)zqzhunSyfm;YH*?{HJDH*rLnB8a4xkT*
z*Z#tE#KlB&vcMmRN2L8!Zic0hvoPZhL0Df}2o@z2^!V}P?0v`}SutJM)^gIEc)Ut~
zW9;Cv_5W;|7>sBTKZh^gV_`?E%A^AS2K_ZtrMV8y?jAFFJ)b#kp5=7N$LQCGQ>T7P
zoC)v|zg&+)Pgb#Kv~6Oz?q7cA4^utF{^01IVYQI;6;pNjGj8sm^79NKAGx336`EpU
zg)nPj#k|?}P%thYYeN0UvX7^ZCWGT!Grq(j|A#+%dJzpTYXK1a#Nd6ylRxjF6d@dI
z&b}ZxL|3}kc3p#;dXMk#(bMR?d~!ea)BBf{GLnUjRVdFivS1~zC3<==7t0=)3yhRK
zfwpQ&j0x+#n+eVRRa+q2#?XfI1FsU>+3j!(D8Z64kb*}{)1f6s6oMR|I-8xGe^_Zg
z|IqI+H{AS=gO1j?Z$G{EY4e_5L}_Y>OB)KyoKKtg?6?%vOfMPq*#m|qvn&zI=+5ky
z_B@}yk)&EUu*eNYdBfajc1C+5eMP;j5qsJJ0b&5hj6AxyBA_u9#~_t>i&>bEJxJF*
zY{^pqku8?SC<7w-^dRcTmaAtcok^}!@%exH`0qW)Ro6xpq$toG4$eHSQ0We0>vvP|
z2SiFS`fryL^6&4|?M*n|jT^;}!h>WZ6*GG4Bu5fV(}t`uis*ylq0>0YnEnGBPbfhg
zqpyc8rSu&`Y$>99A+zs(VDSSPG{th}AihPx$}YMgrIZh6&3Y~$@1_Xd480|4EvQby
zNUen^p$coJiKkj->0k_yEqsJjZzybol6P?`mmdSJN3qQSd)8or1<u{oR#jyrUO8Ol
zgX4pOQBH^~4SP+JHp&~p1P3y$h(;io?PVw*Polqm1-?rIrB)#}q`U>o?0y7vEb9~P
zb)rfsPY@1Q6^^-V9plBPcl`7nY<ub_{3z~)W3rg^6?{jo?>A4-c*1N!NIW5hVE)@S
z7#SOPmSpHCdZbOej;tAQ2M!hUDVrGf6U`H^R{l+~aLHf>$N7(M0LlW9)aG$>@pXXd
zluRsze6m-8e*|<pAp7W4Q?gV~M)LS=u+^#jjpMxEN&WMSXQWY9RIKUh#V!{AHq`M3
z>`d!g({v$X6$iTa+@sQnf#1@NH_#J&m}@Nz%@j+|1qY=4ZEQc|x{<Y#mfmVY<9h%o
z5WGCGBlIZMlRr!ghGTu0a%qbIx(-@=L>A{ne3BKJn2zCkc>t~nh8+{dOr(rc1TXq7
zbsVJ4$7S&oLS*5^w_yH!ifo3qokKh7HZ<N)NRY4wpx|5JCKbnUPSdI$DxrvbaVYRc
z<Py@HiF&C>w89A5c3d))HTE&`G%+0}_fqKwF3ZZ~z_#r$$ab{wN!x!szq&kAKwQci
zcAdq1M|OmWQY42_c)~8)ROXB{b1RV`JdBMO)`fpkO~rgh38AD*qdJNAm6%0!p6ppD
zaAm+goks?$k^qdW2SMi0gqP{ZROkW>M#_RSBsN?m=YurU`0T*j`J+c{;)Kz8aVLkF
zdH{(FM%TA|`}tMR1-C!PpC(+!>>OO^sp_L=^{I6@^_wkU3cnA~J2W#esy%7kx3}R2
z?t*cQ%Ey;iTvVJB)}YD_)!SCLsq}G$qU1=G81@}fqu)(k06yc?N^lnV^?VT+vcqSO
zQps>V4&A$y%CFw^ga&K@;j+w_2oT^+bYW-DCjtZ?zC69B=|q6QK)0H{8P){<3fcp|
zDlTL%)Y-<qgSW(3Xy<M;{wyw?7J2>W;h0`GDi@&t_+CLE<)KG&9_^X{lnB&r|Jhna
z<(Gv|v>*al+hx5=Tyq}We2hFrys2|jGZyyb(xxx407j6d++oWK!RcWWg5lWU6Ncky
zKnEF9Z5&NDv1lpLO&gPa)xprwT3W<f^FMDos2MX^t!Rn75zoQMQ~837<@3ImJM7@X
zln8N2PZR3Z7aJZ=T=`uDJ=v%tbOWSq0FIy(h}Aimzp0tZfpvY9^MfihvrkD~>qict
z%q>$nWpn`c#0X2iW#<vhFt;Etpo@T*X(}xR31fV}qAyRJGU>fcGFo_IYe%Y-)+2_x
z7`T^u7kzT|d+_<}xQ6g=b_BE&K8(sz(Y6uNN#r2HedvuJ8;LnbY)UC+gz`U7NhxHs
z%0#u$8xe+R3q$aLV#it@VhUC^jF?$P_80$-FbvuTN8f>hd7$!qkgeiam<0U|4K{e5
zF=lq0bNXAFNqMjy9b=5Yok?)RYQ$lqH#OsLjqNX2T8}IVic?kV!cwFMVOew&MlVr!
zo^8Ewoo)VG9?5K)z=3>_vJE)a3Yo=_G191xPXo#)QcWX%?+O=b+aR+gwJr8i1)-yi
z*NH6KrK4E)PjWs`(<ue>Ca&`ks25d0n}~X^dgNH2cc&j&8`l9q<5Pv$`2g&THk`_E
z*x(KJyY(P1IFGPo;G#Ant=$<%zE+6dWao0T?}otLqq3nOe!n~K5ZO?y<sb(%uLxH<
z1lqhFKFHg^;@hOTBdIaX9ed*ejpCYb9F;QmUZ48-QU1Rv5i287y?~+v-Jr1$z-2I<
zVinWog_IZ>8d|<uc>}vkw&EQ0!c@XpTvAdWsTgc0PD(q|)IQx5h-+Hmx%p_iZhpwH
z=u$S5s?-X-1E&XOe%Hu>BHiJJWw!>vV*0Tst-10@J{Mv<Fn*_K-nU!M1qlS8gR7lg
z9S0pj9CRe*{4jP6wMv6H1RFs6`pEO{oH_R#z6!ISj3-9ua{nU+N4nf@pnfW+A#qUL
zbM5ah*!9;dVPZyy{<0fERt!s0@h{H-hXduGp~sY)x_Wvcz|jdCjx+Uz0jlB{Tt6X1
z;o%Etn@ZpYv<7(auoT7+b&BJdk`=8Lg?XDu8;YSu-{2v-ch4Tj3>U<yQPYw5;mi`U
zZ=_WlgjCi-p!`q1zAoj{^XbUEDTIK1(ed)sBSvQH<yeh%z}}lvf8MIu(oOg46}t~D
z<sgJ^VjL_3(y&m+4f_KBsdH=9$@Sf$2WgBfCW`DQ$Fjs4DHRXo`zk)Zx1mT52z>J>
z2Vjp6*5c(LR&r5Ng(=cD8aIH3;)l9K&xP`{_>a7pN^&|9HsFn`nq@V;8;rqBhDAoJ
zFu=;fdnn>7pO%C6@#dAk+N<}KD@Dc#dwF4)B8_i-hb`mIv%e>lFIwMI`N>m*Ro?r=
znaJ??KYXq-{@X^FNYvSUCBtYuU2{lqHv6~H%fL^JJa)MVD^+n%u$<VlWLb1?%B(Nl
z$;F?n0L^YR{WSHI;+*hr%ar&u;^Tk5Uvts`CzoqC5&q{EvdT=JDo%IC^6{)1V@VrZ
zTsb^gHA{2}>X($qE=qG`X#NhQHy{&2H@rTa-cz2=6)Ip-%D>{9)n5VmAwxARAgknm
zMBavP^^bbR7(Dc2y;3)yG$$@ww@Dv+sPSeg+G_BqoB4<%bS8@>os(;G{W%*SCodMa
zw><lrPHmMa@2P!v4N?`71`dV3mwQlmI<7k;Bt#HOZO}|-)^JyqC2IYyk-J}e0D0sC
zlPwo~KYO`aKPfea66Hi%_`fL1(B4s)D+Sj;P1ziIDX7NlR&7LB<NANH)^@ksj6&Sw
zKBHyR$C0~d_wN0`2CyNlsjD0+jE2Zej*fK_D2T9)7y(PgR&OOZxP2mR5aDxIK4LC@
z7Jd30#>03OKx!LA6HqA|7y`#h{sWu}WV=RyOY;T?NV2Rb0UeJu(!W0?@q~!N{7MuT
zT2}*r-LxH&>($W4>8Zn~pQ-mDL53p8k@9i?@*0qJTSGcXZHaM?p8tqm);?U(<L_O^
zW*XgQU#z{v!Xdn`#2I6?Wp1P0+t2wNWRVnih^5y9658!~X2znsfOLrWg5ZcY<$#Fc
zl0oN3PCF#*bb^gHKn`*1aCEbJN3oI>rXf|F=C_2+{BRrraZfJ#5F(kK1#azMhLD~}
zn2~OSp$~vOz)oX&NH4eud?rYDd#Yrj_OenHzlWlRvL-Ql^jfhqCUSn?i#*+zv5>sV
zkR1^aheX>3;8EHx7VZ_MH!wH>@v{PEYNLugS~S8u4NY99(n1>@0o*AfcL41?ZH{t5
z6U(fKgGXU40CLa2j*HL^o8N{pt-fxsYy`~goVogyudKmCex10nF+hS~1y_0UNsiA$
zu|jNuG%b=)H&Kw;v&Rz^$7Sw*Fpo*=$Lhm9rB@efF~|;v)8Y%L%MOkOu3!nCb<aBd
z8LENjJxn4r$OSr%lCN7s!labiV+ytOURI7a(Dgr|p9x?`EP@2^YX>oX!7W>;V<Cw)
zQi)*aYTb|o_&dfRe--NsPVVpo^aI)CK@2d+Jh#85TDTc9Jow2~5q3=>KxkCN8^OP{
zFLKHH41m|9JpMQMX3G$d79{Um*4X<EK{|9H_kv=x=4dL8sPFmNKNpOGAb0#0RF+91
z{3iiyENo$y02cp?{7Rx5sQxOT{hck$;`LOdQXwT@jAI?n_H4{K;;%y+|3!$^O6e?M
zG#$Hxk0tzYvPU?%0OiewI&$zrM2(=)a2a=Z&hm$a9_b%=!FfsOOq}ib%?U9^5z6iJ
zSs)%J`Qgvv;$6Zn`+2Gv-)Vc1A1SrtFtk^YN=+b?3cAWm5&M=f*k2A!p339g_EqM0
zcN_L*_Fh~fHvaJSQ$}UoSFc?8`NcWBF7GO80Sdz{$?bGL>u;o!``lL6VeLyvBFmPu
z1`H`ZmZ`9vHDClp5meNvKYH@dqm$o$J!@L2=f;Q65T8F<2IjHK0DNW8E7SAr_CGXv
zDAcL=e9;2n`+hHN4p;;mQ2SLtGkAKyZl4krh<Gj-z6w)$L^Xx5A?yX#8cXvXc&Sv~
zd!wsAQ~x?Q)b8yQU-Tv9B_yt$+Jc&vDcrd6<%9VP4qK{xr=SXm$-*`MRvHG3frND1
zuJ6B+D*tE(95rZ-G%KA0>|fhYQ<SuS-8CVR{~IY8R*U43+U&nOs;FzJnY#SPQH5z3
zTGpv(rrwURj)HO^F6}A}kL$(}1tCTR$g*`XK|?m6HSnXpm}$%cj)m}fz2A-qR5+X-
zK{G%VrL_m*qJP-NlA0k5C_?TQjrrsSY>N$TeDecm<;m5Pwk*0wdyZovQ%TH|fE4t9
z>)s2^g4G-GDdh8n?LccF68jnCZVAXxBsBU^=sEJjhe21xG>PFeddfK_8J6RX8x(-o
zIvBi<5e7S!6ou9}625_I_80WAP!&+dnCCSx<)~(a+7V(#5*GKQW1P3rVjo#x=Nj#s
zM)DeYOCd>!VbdOJFAP#lQKG9y#TRKA&YHQkLuSreSx<sSIB|B<(q_u5!S+dXjih>J
z8fU39@$ga-v3C2osWZR%aK~<jKZa(Id^ZKl%E@m>JIwGs5<Sjex}=E1cfg9J`vsUv
z&J#58uWC*plQARW)CEPzMinqf76C6k8pn)5G_a=2P?uIyXCbE<I)RuAnYvLABO~8N
zn0;!$E)dCm5#JJr+J=O`h_rrS(^d&&$|SZX%;YN;bv$j{w=f3DiEPPf_@y?8$3EW;
zSjrPvksIHp3|lS^=#VTCjUb~fx$or-KvZc>$doI>Voa(|@cOUavL#8=$*`1l?RF2l
zu%B??TD=<Ptv#LuCQ<fE5*fdshmRbhd(0P*FheE2Ep-4olNM*!M_h0d{|`<HW}_dY
zWz3IN;!gh$LjWH74`IIlH->=Fvgk*}+<sCScl#oFayt}%^tQBhs})rZW_~z+6W)A(
zKE`*q)0nd*C@JS+>tdUI?@iPXWa&NPmG};_A@9kK87%xSAc|BN(LUL_9es1d|Izh-
z7+hd!X+}fv#~z6<%2pOO<(d}%Y{hIPnfPx+xX?GSzVS7$SwU1H%1Fks?8sPEpsxMg
z)X_q~+RbGzHd+XbS%qNnXd#%yDg+lttH4jJd0^-0JU}HTKpOM~7i%Qgp!5Hfys*;G
zg4?O-jmjq%(a(JAGPoRfyvwYyf0ummp7~Y#qLMp9%S|e6ri5nu@pu+3wOI7wg?~)u
z?MoUh3BuB+@BY?Xv}pQGzG*4DlYj0xWw+pb^{Otn$n66=8<X4ERD8r0xWYHrZhF3T
znUTllC3a;FX1Zg^EB{gciz~(Wha&j@-5;&FH*FpewZ=@-INB(PhQ9!q*!D$QJ3b4o
z0(wqzRPB-e;{9jOa=d0HN0l0rzBHAVj3SMuYe1~^*JpK>qS%_tUE$b~oe1=c5_5rp
zk};0LP$7h`XuKWN{?m0l>Bs<)%*PAKYD_kA_`c`_19!h|{(`*UhC_KmbZ9{?61m`t
zMt_HWutC}Oq0WQzngvU*IM7ae#5qb@o!FuO(7+7>x8hnp_J?UH&&5+$4W>@_YqcFA
zO9y%I$p1s^Ua=1BX(13d90XOFfB%M7qjHK8UtC?u{*i>Yo(-;Sex_Wi!(3ckH}^>n
zMQ=B;6!tZj+hU&@;g6%!8x?@9kP}fKY!!0KRnxg>x$qQ6t$?1(yO#*-h*s92jk^Uv
zC(C>{B=}frVNz)NAiM`;g)GR1T-&oVm*|4pp66Mz?bkVVPBz%F*RE%x${qzjfJfIS
z@+Y!>zMn79&zA=PYfH50a+7Q;%MGhnt^_Kbqr#DYrJuR3yqf<^l?_jygZPSuVdh{j
zj-rT6Ssx*u_x53BhPjc?dM$Junr2<(kt8q_-U~7{kc}A^_Z?vPZR}b*3?(>F4GSoC
z6!l}Mzc`J}O27Wut*Ys6e53+_lwySpX~4AW%x6vWql5vvBTyM>-%84Ge-jA$>sd7i
zfOpbf^)|=4E%*~f42Kx#wzEIsYM``2qKC|!n$#(r8V7P17~dhRrYaOH)(AxTY{d9D
z-Rh>)ZVLAByoUzYqgY9;GRbG8cf~J8n=bdNea!cGhJiPTRtDc;OAkKo?onk^v3E^t
zn%su8!4oOi=aUEkFLMB01PNb5fV8+aHa&1J4?G#JX>fBS|5-i{zns70=kr&NlD^}P
zP@+#xd=R^Ml{z~df4etf>SKQ-34_eiM4#~F1=qa17Rw+rN@AREv7f{4dzXCpTG}iy
zK9R4&^9{r_P8@Y75=abk<tUlUJgm1{rT9qv)`8`^aohvYKOW}t21s~j*^|6;FYKz=
zqir+>Rn=47H^a(({=$V#ST(~31t9$$q$0eHVYtGiFEA<Wm3#M=cSRb~b)TV8ma_nU
zcN1MquUOEEt~llROg-5ib#=|`s-{IUJyk*Wv@0ch_a;=jaOplgDVMk`5C=S^Yc991
zo#`@@XlWJ4Z7+S$m+keW@ut!yL8Cw0%sFsfMDhU$&<HxEJmd%A;W^duK~74P&j!B_
zl&K=n2qb0|Lo$lkLne*<NOkF?+;bS2979B?m(U*kxPT^3N?O6f0@`}qSy~BY?IV~<
zs4JrQI_Q-^AQh_KSb5aGtKa@nClYt6hhoDm)QioKGY5nM{xgHZTD&DvUg7zP<@Ukl
zKu?JPj#aNl+M7fBPQK?Gx#1hjY#HZU*TnHh&K2z2fg(r_qc$1pbE`4j5ew7Q%`_`k
zRMxEN5Ycwf8LHUM^h=2WT_0At1dOa3AMVaB+q4xu?tp{;)QxKJ!IGF_5h9s!z6{Z#
z?z7B~5~tn&L{236m7qMuAgT@78M&PycVBv~dxGj!^xUMn6#x)}by1DjPHr4CQe}9l
zH!&_=V?zZHOga|H9(L7#@I`gLRfX<8mswA6D$<;e#0F>fwl@EY6ay@erVbZQd6i+)
zCi!-m!PF+UZB8S!>}KV|LVkW9tt!iWIf>kvmh%4CZYJ6LY*qnTyCEtjfB{^on0tHO
zaAVtG!-+e8eiV?bQfB9L?!9y6D2d{G9N>Uo1*c9EM<le@13`!aRIEVM&!%_9xg*pd
z!Tc|VWe^fQ6nyzk^K4elCJ<Xu#nr>`XB0xT|G!$h(m*QLcKwo~XwXDNGBgPh(a2_{
zGzb-yu-oP#Ly_5{ga(;Q5fvJCN+D{Q$`+D&S{WAGoVkQW!goFGzVn?Q=bT?>{k3?l
z^}f&Z-1l`~!^`8Iw~RfkpPG`G-?`3*cRWZdN<>A78GJMh2Ld(23HOZIkz-^@e;$ut
z$CSGeoPX@@Aq<B%T`MI%l-}LR?3l*wA_NS~Zmxgq8u8q<({^UUQ$#|`pqUqP&QkDC
zO3!ApEF^D3I6dWJyv%{Ugx(&cI5_wXf=h3S4|WZyNvy$b4o%Dx8Eh44I6f$amx6d+
zhJ&MVSMJs!k=F0^nb#%L=(9c{jF|3TA~4dnmDUMU8P2*ie&d>|?K`GC037A&S-M3X
zeU?oZ*6N0s-8idhWZym8RIGv1nEpSj-`|=$i@?s18xI&A)QnNMojOnSddV<N(WN%(
zi+J??Ic@HTuH=8pt!}uWea_r;8O5vIeh>EgU%Gmh%U_R|OWU_3YsvcsD;8CARtqgJ
ziTM(+<j&jf-*~3_*Yxu3%-Wf?HH}wtfPKC^E~4R0${Tk1-G&&}PS+3E+;^4q46d#c
zHYDoG5ND)g{6<pC*TwdKOxD@ibFu0cH=m#wWroor;|wjCl_gEAUS<SlxK$_opvv0z
zdF09$kDhWX6TYOc23kFkP;;s=T!)`Gv_3Ob<`9GN!M8h)qV`N9gx=lX8&5DY3pCji
z&6#DRYqq+a*_#ui11vZd3Fe@rCs3ipTbY%K#)(7Bh~XSYOqDU3UrUAujU2NRMXDZ&
zccY@D$jGKM3?d&jmbxlhs&ic>EAVM<P@(YBebQ!85hp`Q0#rheD2Gii6_PnnZv-d>
z3<5%aAW2LNnw~IFI*U{2)3zL9pxr4QU+>4GALHgp#xCdeUI(!CD>VBZz`Eg7BjYlq
z=YO?@f(gZ|!#+-9MzlkXvWyx*MuHygdZy)z?;%wld{WA3tsJ4n#rqpzzF@!0Ah$3y
z#(VX`usT!ig9n#UcNWW8d>eDQ&!-qGht{Dw$J13w8|uPN$TcDeTYxOCd~VYLopnAY
z^l6vFjl^l{dSK?c*mH*i`{E6~HRzqi{9|{XHP=E5`ItFC4zq^|Y=x46?b~hZH*@r@
ztZjxy0jJ3Ua6;z#UKdg-N$_eZ=g)bW1h>y{glgf!sgM(nP4tw-^rX#{^1M1PE9gCm
z!QIkTt2P3@tR0=t&UkTdSXPh8!~v$oA%^^_(Z*q+Q<F5eob#6Hasky7{X%;{D1lFY
z7mg-zac~7?;ei~Em_fq}(%uZXk)&dnfw@cs5ZZ(4>K7|!hR-$~nw38)pkI4!{)!v}
zuoG6R`kY?a3Uv#I7(|kE#opC0WuS^N4;%;^hpcG#Nbr>_{8TFDckx~Q4QY>x_8y~|
zLF>S&mW!+=&(2JQGLPkev&l<c2@2YxCt|b1@Ad7o5c`I>c|9IGjvF|PA^gg}3$MQl
zDn?Re?H0-m<{^E#sEFoMgr!I;aPyq^bXM?PjMTTUIXUp`k_50<Go#tw8@yI|N<~Qg
zY0+wYF;pj*tHw2>u72!H5i1osMnvYA?Sz9AAd0I82S*X1=babt1b0HXCJB!yK(Tdf
zD0I^88enPkpcC;@4wWMc(#xm3H5{Khe5S)+V?O2Hc3D7iI0VleRSepJOU?Yz0ONw@
z?G0#PImAeWSuGp71u-fSJU-E`Zx?QS4wk_uX8Io;I!Q<d!pxs5weHsXL(yWs<Chqo
zg3|0EfSP^&r!(zYop3RCrA;o+ZejiY>&_WZ>Q4Z&q|wYU!{bzo^XS{iN;T}QA^BHI
zXYg1&YU=iAviKgN3*RTbWNNER@bC;m&u_thXp%@gbbl)uh-x7!bcsPg-XUJVB2K!{
zK{>QzF^+@$CIi^~j$?^BiA}G~rUMG*=*vCT7Z<OPuwGBu_hfG^S!x^b<zQ1U1~4fF
z5Jy}>q6?guFFeD~;>v1GFx;E_`lVGpD7ABa?I8T7ijjU!>nv1HfX$E1>4d>m$up*0
z4mV4STn~33D5E;p+Y=2#7*T};TRQW}>)p^X9gB`C+JX?{M%z0xvR`I0<}9?-L{()6
zq!lVU88D(a)oO+>DqYxxY#~lHqt`koKg+;g<g@#2{;SiuYhN_Vf^bHC_F+xpf#g&}
zjnF-f>hB0Os2V_{p#~MFI&-InzMU$JsiI$xi<l8*_w|z<l~~Hp$5W0iD#2;2{mu%T
zp4hI%8|}vi992lfGgjM^jEJ8%tK`TDj$*8%;ph?fzxr8acXh0TI#O(Rlt>1RNc%$Y
ze$rQXnOMt6diA4g*RCm@iE`SuZJYjo-$kQ!<k4)FTD}Kv<DNL^ykmDYQ1(bP0SC}?
zD1C*ieit#YD6W{k<PJ(E)#woSS>#%SDWB%uc|s;~3%d*@p65OLcD%x(Pfkwmh%ZCw
z6v}o<*h)^z)wt$<6LI0}A`&(#lo&Jx+h**ZGpMTh#o~jP7h4f~u9O<9!aMs}Y>I$f
z<vD+$r$xy>_O)YgecI;bWh9vMDygP7eRcV!uI{dxsbRD+^`BmXNWdWm50vHnVUV57
zr=Z~F^DwsX|0B<VCpqIInfX(w&71pY$jKhlj9qAAz_r8{(b%Hq*$vZ0P1{$Aipo-o
zd711&=Jp558LwN@z&e^wVT{ReDqHaCeECS=a=Ee7Iyz!h=hvb&Y@x!E93bAe;2*$C
zSu>yCZS|?sDd}09;_4T8p1GvRgy|gVq6Y^}8ck9{Lc>?Mzs>Dq&4Ks}vlr47$^($F
zB^uxI#w>9*`U$VJP_6&fYOU$%efd_6;PmMypI8g)tD|dX8{V9^bfF^~g9^pRvuYQ?
zHb)Jb7LJZ=^}PP>agAC>f0FLWlN%{X_yp;=Z5_jWe-mtts~;W~CN@q~DCCQpG@8*8
zHoCEJoN^Ga7*F};jq_cY{VJdu*_`b2X!E(cG|MALzjAKe_xPnpDItzhp#Y|Y%Zr$o
zbsO|o`YeCr)Nw{CR<uiXBgj=Fj64WPsr@)n>ezVRPv>|X2QgL(W&wmBj>$TTM<v^%
ztP-aZC6Pbr$r%SxE6?>E;*12bZlzjQZp=u<0(uHz-6_m#q$kHl0IOU^odb>*Z#}gs
zzU5Q9@eRPU^L5yj91^`k{Qo@fJI0cKboLXY1|HL{mK>O|A#LcW%M^~!EQyk${=01F
zi>u0wG=%9nNfBUvQMFR5K-H*oX#V-l?}40rU9v*?COG(g{OC<ikP;j3`lh0Fo;CM1
zxT&`|kuQZCqrlt(ru61h={yimQob<9d@=>mI|oI8OgD_5DJnjM%2@`79!v+4Pj1y{
z!ye=1wF}dDU!0<Ud~JV^*rGMw%c)9KyVP4S*c|cE&^s(feJMIQX<P9-dktffn3Yj)
z(I>pXdD?VZ=p11PVx9bfdmjxwe8mgYCZjQNBPRwxKzlNbE%xI%mE9<2I4Cd78I9S}
z9j7rj`*{;URs)yqZ)|aHP-*Gt>0KlZ4iDl*J&cz#h=mUI7Q^}MAp_BO&>k94E+J=*
z=MS;61oYSy+sa5n2IUK)fy&+TdpDUS+n+S6LajNg(~2pkpxriM`2Ps&xHqRLftthZ
zm|)yHj`6+5i4%f^bLKvfc5WD<dci1X+tEdGQ`zVNHps}F{nFJjHdJqG)sdoH(h=4Q
z4F)9cal5M?hs{L#MeP}!vFgTQ#6cmS#_V<M*q^h_H%_i*PFPe!1Gt#$@zmj396ImY
z9E;JnOMy#I6_dn94QsdxEucu5b{c-&m@sBzBjv2!owV<Mvfd!W=4JoY;paz^sy<c>
z$j?jAo)bJArwPr`K;x@}-h7RqwhwO2&ObDLC5YIH_%in0=TNS<P=T+4ML@mx;f4Pk
z2(){Hm6gq<FV#*4l}*dr&$OSE+4p#UXEeUkx>jCQKr*Rz4GP<ltb>-l7{g#QtcVe4
zc(1YS1t^lC@`0)3(3Q6Xk5o8FLLbSoJ=UDDR6AruP#qLVA~1zkRSUZ)m|-6<IZHw$
zE~k~i3chZPEQ=PExn-asD4Q|duKnhr##l(*1>Ns%a6jrK#NAjGCv`ASI?+Zb03sUe
zQ6M;eP>>y_g4AHXU(1Fg3y8S+;dQ_9HPStu#1)U~%xax}4sc5uD7HAEkyD}QkUr>4
zHnTT2feLgB&?-nCw}4zfne{dT*;Yt@^3OL@248~7CfN7&yG<V0XtsrVd&Ss8sE7NO
z4M31s^Y=%rzx4^${v{LrG9pPKn>w1o`10<yPCD`^F|io*!UEhxSXCwaG?{@|%W!|=
z5Yww_(U*U9p3?nuh>l?OoJPpq0gz|!r^C-_Kxv^`)~BPu>%R}2Wh1mUN6}<E^FQ~q
z9}yCdPQEB(e!cxfHH>j32DTd<_fD=lO-qEUn9a;kUe(sdxOaW3n*H*TxQX|WntRvm
zsH~diKeur-S{W=GS)HeBo7%@=B&UqbttT1X&vuEt8zb>#AKSccgCATmGXA+r11DJR
zmv^E&QHjm1+|w{%(Pd8CFg_I^7J9)QL|yN3CuYhGY2GaO%uXFT4^jZ9)tbF)lJ{7R
z$2zO5CiO&!BPxnJDdE`PruLW{x-;(e_Y<Seg5!H?IYU7uswoo2K3CT<R_6nz=bgP9
zSNOGLNiWvmLAiuYNa^4Gk<fj`8OEc8AGQ13Aq}aqjMM)<ijsSGKKN4xY0)Vyg3q?p
z&`WDCuUKfKzBkccB!tK#z{e}F&pZemk8p%@r^gMCS_>>+UQ7@U07%uZolM;kS7U}y
zC($;tpfCaszj>1wi4Enjjc+TMUo8ss$oWw!YPzLQv2tQa4hm`*dMJ2JIEGl}P3_#1
zF!o3gL=Y-2WT7wuW2sP*5^lTe=UVDmOo}UZR3TW(wY+(^-SkWNZ7w>Ml7<Q;IqXSp
z;^fydGfRXmhZgEJa|GBM$7gg7uG@-LkG?w*d*n#LvLj@jZ4Ufq3C5~|S@9A`RU<GS
zw60IS?L63c95kd|>pb^f1bgr9j^h-m2Xlt<j(0@b?l?Bf)hLVUUNuaXfrRN!>B4lY
zw&={&S{WfhVPR=vF2pq73%dmJFW|@(+7@m4qT&1q{s#GwX!>s9N>E;f3?N`{S)sw?
zsC_*Y{2KriMS=`%jkFG6m}L^P(CO_*PN)anO#kuS^EXu!Cwff?uEE?w?r6xLW$+rT
z>^l0z<I&;u(QTuOiC>w!MPSt9lSQhew4q?*IEyJ~kPG+_C=HIfILs9kFt;l!h|A2*
z?mC<PvuLoJ4Y9jYW}!h<eYmF9A9+?!)&JDa=8Z+3k5&h+y6;w+_<oO$>PsVgnV7P9
zRAyqi#<Q~;gKke|6dDB@EHxtPE;#61t6qwX5Av$xj@5zv@XwdRm1Ub~zh3Juw+?YG
zA@5*mpO*6r3QGQ4`B>1e*P(X*1>{F~g=zgSzwe}e`PaLPCAA;_{7ZQI?SlC$eqBvG
zLgl{tudA6YUH?D-@ixD8;3QqtU9><vV?Jxqfa^kmrW=oa+TUooE*LkrvHE2BVM9z%
z@t`c%&;N#>UsoeP{>T4)wJ}lVHu>^b&rdigFaEE~4(XiUHrCzt>vL6!3?bs~9nKkw
zLdIcWnZ;iKEhq|LzE$0y$1C$sd@z)Uo28_b)LJR2xzJAwp#oB}#(<Seb-MS66HH9k
zB8Hj7)8v8>`ImjBgt#~-?340w>?=BXC!xNUN75V+d$H}?SHT`?bV_D1o9&eZxyTmi
z&C~5!LMYi@G!33WKm}tKoulA3J3)Y!p;1wn!KxG1&dSJGi8Dd{z<~uMm~%4(Cz-LB
z&*y_WQ<Z9d&@^7IilVq9i7x<6Qxm<>9C$g@`O~5D4~>ov0@0U%TnVE1mjbX4?LyBR
zP@UdjcOu=2A1kji+x<LP9(*9Nt3he9Z})_)hCyy$X|MAim=j}C@SC%<BHG7bjJgk+
zk6ixu!{ho|bhpRvFyNtlF=zP8BCQQ=0~h6mM8MDZF36WBOo7w{?BzO&+uu=v>_2j(
z2ySMI*3+HqRo@{(&=DD)d_sym#0Q-rw|+f0j?sNCE=tgP1(C{@)gw0u%pI)4HV|V!
zrJD1S0rJr?+r$AZ^$DECx`u|=z`2)zEg=g#zT)T*OZb+oQ9j--56a<R))lw6a)S`1
z;x(~lW`><-+gD(ut-S~xS|HXnA{@AIoV+Kt+taX};77B689ez8NG^*o9^X|RtxDg6
z{_G-T>>AdbZ^70Lz%QJ^^g&Sm4=%{BLV((N)?P~4=G^nN98N5k0Z${joC{}M0Wk-G
zLS6V~NoT}A4{MdkS+G<UkP*kvPo(&Kf?L#Jov~S5oY*68h9t=9Ome4;cr{8mKq55-
zgO&F$eOIQ)LC-MK*Ix&tDg8|JXy!O%jYC>Z8o^|aM3euN%;DR=J2f=zvt+WbM^48$
z<W>d8hlREAw^}tW-u1=z;Q+Am)*m;Gken`qPBnrF=)G<bMS*9c3k+^qquELG)d=xn
zXpR`V@zGOzOwN8TH@J&rwgYfOV|e3c0e<q_9Q8rq-%Fj<Mg~?sJPxh7Id;fTgsZ|v
zadA|#5pZ9aCv!b2doK+&`dr^`KyOJ8=cvh=<R;rQ>+6XiyLJ$W4=)7?a5!+)gDBt_
z6()^fJfXixu)lTl=AAn_@_OU&yzDCsfoD}DGb%4VAt6D@JP)a?6{)zW5roB(xYSK>
zYOThVt*dEprmPzzq}g;V<!)U~6Kh5hhZwO=ob-Bif2WDdN_5j7zM&Ws9XykMDA!+j
zN|g7XT}9~_$fzow<C|eZ<qwBZNU7(DU&J>KOokJm=~57v6h0Bh-*|c+V+;s}?vRuJ
z<;zd#CV4)X)f{E{z(zvn*fD<))!LqAw&df<ln2<RVNL$CG&frufEC}JO`6{ChnzKQ
zDEG@3N7kdSf?7>hd+6V5;<rHDMGofAt$C^>w!rq2f8bQSxZ~muxx)@lqc`ddggvAK
zjdu(UVvebc)UPLpavgtdz@HaEg-{776)sqFpgNgDIS;pp;K|sBdi;`5;ei&)5i_oK
z5EA!;Rk`~HJPcR1PPMQp3XducOnb$twA56x?W~kJbq^g$U!W7++S1JIZ=8^QKFs&_
zIorW1v}oGj;EiKh!`xg7+tjY{$%9!~5wCGaP6_0eVD6S;iYx9ve0Z*oLHu)c$c}LH
zBl{fn1=E`;nXEj;vT9om*O@*zp!1<<qI}V{<AmTkChPEegUru+q057QmK(cA6_8KL
zB|-?UT<?JPtsdQ?KjH%*>;;Tj!3@R_fFH1h2FWk%?d<Muhgula{I_V&{2^3(It6<4
zOTde@_4N-x+5E=QXwnE9(FK5ggMsPZd;MCF0H>Y8{QQ2{v@~drAX&pXO*5?(9}_0T
zJjA>Dn1O*QJk*LyN)%$p56b2Eqeyv>nz|GdDfWh}r;zBhW5XaD7r6hI;QZQiXWF#z
z`ftX@qN^8i!;m@vy>Om6`_{u%xs8=~Q+5b%KPQO~ht~cIp0mxy*@D<Yp^G*O@DcoV
zRxWHry*Jl)0P0{G4bHy3FHhLK$Pcn&-rusc2M-{TqG|yxEhs1`hM8L@5nzlGG#iD^
zQkW~M{%BjQ#Cv7v(@PDQn{NQ*idtYTAY_HujG$s-$E>BTeG^snM#Q&9(sA68p9c#m
zg~RfIU<(#`VX0Z?y@`t-!Tm5842SWF3CQpC+nc6vxg=O=hlhrWfx*PEeN6B?eAxt^
zBiDl)z}F2;=v|~>9tHNh418k*vRFgkRDLA&iWV_5Qno1?T7nY06tx)&R6Onpvg)=O
zhjKs7tcm_rQp{9Xq^+%0m5o=Wi-Ljr9+V>oSKU6Tna;pp?{EYc*A(C?hJ<i3Sp^NR
zAJmSlp+D*j|5LEw$m9a*u?HYVSX|tqM>SV40&F4g`SD@#uYw{>>qo%<bFouBOG!<w
ViR4y4_ESfzwO5<=T>bZp{{jbzNAv&y

literal 0
HcmV?d00001

diff --git a/oxAuth/Server/integrations/uaf/img/oob_qr_code.png b/oxAuth/Server/integrations/uaf/img/oob_qr_code.png
new file mode 100644
index 0000000000000000000000000000000000000000..ce0716ef00c1329964586a6fd4d4e84a5efa75a8
GIT binary patch
literal 77419
zcmeFZXHZq!)-Ade5yb!~L9&1e5D<}^l&DCCMGguA0s@kAP(d<?h~z9eNzOq9L2}Np
zh>}5ahTA9m?6c2T^{VcB?|%2+x2r7KxaOK;j?qW&t+&?3^p=$tzl2MMi$b9;J$Wo5
zk3wNhpirl^&Ygwd+|#RGMWL>vo`^hBw2N9Cv5%7SIIdqE;LMMB-YlR?sb2Kq#>X%6
zs`>6W^1gH?G{^_F_kB#r3&}Hha;G~`qUeUY_c@PTyt6+tw-5Idy;y$?o6kf!=Jc(v
z?i_f8JGPZ>bLBX;^4E*Py-=u{d(8TRCqJP~Z@P1x{B)MK_7w8NJ$#zW$lq>n&Y2^B
zqb`bgVIhA%yDmh5{EfmQfN{fr*Szp?kiTml{=fQ)wda-Z%S#%jI}5_I==u)##UGTn
z5V>OXN_vMjRtdM-I2BrF^q1C~bF<gjJt|$Y!^XD?lB0I5&!D~<zzwcbpIiNIAoWmt
zWtaFytqIYuzJ2^}RPTmKwZ%~=@rN+RwKw=IisJei{ypQvV)>Su=Q#-`n3);us7c1Q
zBd8{&w|GvYxGus&e8Afxo@kxY|IS@J?O;jcGHD%2&KTf66UI^M8u1KYD+PtJ#GgR9
zIbE;4(6l$c%QqO^C%0}Kz@T27oqc#{PifdT6f|J6woUU5{`KJAw>uTmr%=DI!vyZi
zKBjSrR>;e7?OpSCIqC`AUX$w^7P=>xB0jUW!hD#YLD${*p=oIsGqyU+6_ur_+(-4O
zc-e1NBcMim1!rn4%4}ob0`KsETB>>rqphaj>uyISerR?uc43DM2gSv9GW;UE)#1Q1
zGhuwLfrT_xM`u%{XNaD0a!otz>_y_P8e`=?Qx>h}d2Gf}o5e@#(&9<T>2f(VX8V#b
zPaoYZ=ic=Rhc>2}y~yYs{I-R6ZsekyEtNk{p<4Z5J*VE82=fU(w>+c^==HFB<SJ7o
z)Hwg4s<o|chNg4jnAf-$ZA$%Mc*^s95l?eu&bex>b0kxa3w;8%##$N50`DVT{jpF{
zq!2?5IO^~10tB0O^Ru}_IE(3Gu+Oh%xVEyhMy{J{%vfzy91WLwRdNunkLYr{ZlePa
zZ?W|1>k<Ce2q-Gu8T6O2t=<y;NYOM(ys#pcQ)hg1&{<tvXH0<_YlgslDA0eu*6biZ
zpxIQnYsG7Zs+9Y<wMURn`;DqwSKhkI<t_Y)Uaic<TQNU2U5o?*^R&$<2XqcK582kd
zrYQs`V?B+0`?ydw;SkGiPIqeQCa`(Pj7_{|h{JmMepZ}j7p%Tr-S%w?pGB5PYoEgO
z$jh!Z);>D1jyv$Kw$|k$6<1EK^yt2}YgGcF7}xwJQq<V1lVOFeQm!sUXB+Ez&FtBk
zEvGskQF*dAHTZZHs(N7#=sSu8*+(MqIM>vU;5)Dn9!_E~*6TUuC^t4bBz&HAqPy1l
z-p*d6(fZ?CsCnGIv>>=O{CU5n*78lvk0iV+7Mj_dmbu*f=T|jC{n7t%;SzoS?(zPv
zcL=#Q!4NB~VKK}8%!-En)W&Z!?axCUgQx55PF3A@JxrYScrC(*DNf0U$K7;V-~K1A
zlw!o3M-)<Wwv8>cq<C`Z-g{6^h&hS#1<p85>$XhK5B~6+@tciG;hb3!b|0Sj`i#|X
zk}+y#r;gL^zylt<!sR_v6`g64Q}w^Y>1nq3riHKPu;~TsX-w1ZOzELtRIZMl*UU<J
z+b(y4GhHb)Q{}g;-t7J1HOB{n#dKA@f=3n9+5#)TqGRc{ww!u4hN;6YX-%R~24cu2
zzumXbJY$w^>PH@}=4|4nNiOF>JyA+oTCn6?yRJpG8#_GF?z5tTnH3Hea=pCEFYmlG
zSvKxmYm$3pYFE9&s3qLDALH`opD$#>ki_O~dCgeY52^<~;W)o~njiC)Qm%E~YWnnD
zbz_!H<<yi^%(Kir2jNq1AsX8TW6cc*Mh^ZCMK^RNZt#N0Sj))huQ2@T<-<5ljc)y|
zy~r|^p&ne97sG?Tg(H8qiFfwf`?R%`>RqaIh9icCHOXu8a~vptR~@bGN3`umm3WY%
zuCqX*i+h;4KWd@1b~$MwHr-g!>v*3t=Y0CpRVzznsWyyd`PPi~G4YGu_azpWMk9IA
zWpNAa$AK&u*4X;$>J6@dDZ1L@LmGP*S)CE%9;K#hsIdklk>h6G6XJ`__IWC8au!t+
z1nCVmHL(`dxj<#ZRMTM)xi|9;6_9xvHKu}m+9D`cJ$QP7SQXMc_sM4)2Ypk_JD5<Y
z4}wUxx6hp*R>LlzCPAS}h>&_PTw`q}Ecym21>^s}@&I@GKdmtT{a<mfc_81wdbXWr
zX|V9A;PFAeQjS(u2&1x5oez;((W`K!OqF=}-+51Jm-b|-$O7X&W=bBb$1`oQ%1TO~
z2k@v-7lVU>;)8F?7-6cM2a8N1dvmmNR;u=;F)sUApINlC^_o7<4VhK<*kYVhtQUF>
z7kaY>%WZR{WBAfGHmvfg1yKEk&CQb00?ukUmnquKst=Q6UG|;`9{hQCv~qkT(-g|m
z*Qf28WmdH-mZ6l@8NqH`V85=vG+L=%A3)hv=S!lOtJ3U(`}(vy*DD4#HU)Zm`oUte
zSPrw%Omv2lVMl^!1h-}KEy=LB@gJVXV>NH)yHWxjHfH0qHOtd2XIkgG(}H<ymormh
z93)1{ZTl{;RK&f(!ZF(UGrl+W4)1~P&x_8x)1hjGMj<Y{(<Dnn#WE=}u}U^JMFTRV
zDBN0|+&fH6QsMy=9j(#4g{C7sOxjf%>%UvN>Zx5bS#^KDZ1_OqFdd@YU2bc}f4I@*
zu=eZrX6;p(RD~4j`OYNYGV6up(Mrb*Gfb7kdJ8AJ&7z7__<hk>*Q3(UOzO#n#(hTc
zpga~+Ud$RL&$blKqJ;JI_2+B7uMXxL1ag=Try^5xfrPm`CDtX~eDbGZ|JUd9nCj{n
z$7OEol~GO2GOLcOGJNp?l)Ur5ZpSM2Wo!0iD6>><bUr2Hv-^6qU43lW`Q=Fjzhlv7
zX3cbJmz_sL#b$lq-r-npEvlZTRHCUhSGY^;+u79>^6_JWZhe5^_VS2YsYTLHfASQA
zSZ5`vhzD||7Sn|I_}B69@JdTcRM@k#vn{Nx(T^W{HHI*zzy~vwbF>^*Dz`UUI596*
zMk{$7Hd5u~<+*Ur)GX^67%;N4qksMS#bfs;uISZ30z~D4Kj)}yxy_PdiZrFDsOYbu
zA$9mt>_L482M31x_vK+?lp;Ay9@zbP))LMpPR?nnC@=r<V{mXtL_}k_7%D2DPNxIH
z!+LMSkW#=&h1YhuJ3-WUqm_4MHZ3JazS3dy(}xdnw4y#LmClt9Vq#)&FI-RvVL)#*
z&;_Q#YDDl@rz6{;`uIrwwscf`spZV4prGel6K>ITFeA)b6{#jeMTU)^=;wz^^Os8|
zFW1%9rmE!X;9kD06htdJH9dWkle75riegz=S>wovrk0l0+WNY}>(^g>h!~T1cI+TN
zrI6L>PE#m!-nY@Aa2siCY?POf@Im$+EI@`~S2BZoQ6?=dEg>0Mx|<tncW<xp$B)Ui
zqMYkPlAN5J_I7p+_4VSXPMu;<D@c|2bSJ*HR)pQKQ{>&*OPzUoO;$U9p68RCNA))+
z<@@z!si(*#ils?Ka-^%|CL|;#5)l(8$HiSozO}1M!PL|g`||43{iM;+(Y5VuWmvuM
zKYpOo73m>hWZDFeD}FbJCqkMCrkg5Z7NSrpw_8ovS{h1WsXmYw_PmVtyi94eJz~p9
zL-Pnm#93(G#8_)NL}P7h8=8}obLGkv#cCI4NH>p!-(T#QsPio}Xrq!=$9cx%TbICQ
z(E4)nr+);OdBWbtT%tIYy$IY{Zgrw=dTvfNZj8BsqpPWDVNEUy5>dKLtU$!Q=WjV)
z^~X(3y~rmaLJ>B2Tp-ziRAUH(oF6LAp>kYg?MX*J?da%O+uACcbD7)x`QwN1qeqV<
zBqbFS#r(S~9c}$d*~E^wU5`_Kc;e-2`xxU-G=x4)iCckP&Zv~x-Vj9BQ(<oj3)|4u
zwH^`ukdDKy)C5IGck=5?)B+le%Gur8u7^qMGi{NTJE&ouyu7?mQBj#Kk(|c8nW_#)
zyEEu~eW~5uUCmMY3atkuTP0;>3|w3)kXDsoAFw;`S(ywLJb~bk%DY^%ta_I?n%_|g
zg08%3XX3&ovImbZk#i_QJTbcxbvB!1`uh4F92_VXy;8Ma?3aVx8jmb14BxVmhZzD>
zIJBy(#0(?gPsOhW3AfUTu)g`y@a9hpM!R^#CUVsE*crlB%Fxg-it0=aet38|kIO+x
z)$VU{>*Zlpn5@w17+sd3=BPlrTermEqdgF<RtG!gkaZ#|ubsNCJTNf8<G7XSvNw0T
za&JCE;_>4Tp`oF3Lp=*p5HS%PCh2osDGTlK!V)qv2GxY_T&8#F>7PKVg^6fU%+(Ra
z#=#jHk=AQn{qslm;X}78SFiR|IXgOU4H)oP&l8F}pa|2UHkb_LiDI3-*gj&5$!chL
zyt}ibQCL~vX`<g+KR!8`c;%)<s?E|MlEPq~f5?%eY;HsPcRkz;{pm-V2tmRiAfQ!M
zRrNmFMXP;vV*~D7r<f!`w7EE-@bvTD4%pAlT2c2%X#)6?l9CJ|Ws|Y#`$ar3Oo)q%
z%V4H`fyW!XJJ4}gF2S9Q(=@Xf<D#x!^h(aiD1E?}*zGEks)$*%GM7inGlV>F`_7aM
z4AmaIV&muIQ%sY;X}vUvhObnRkiZqMKh^Jnl*o}X>-oN%SfifwB-nIa#gV<Hx+5ba
zL?k3Bkm`*f2}?*wbVAN*(JHuio+dyen%7nux##iGA-d2AU4Hy!)q!StexAY1%nWj(
zVSC)8!4mUCC=509k5I2}!8Eh!H_JACW+KAJAHyGat~Aky0%(1FxV_NCQr(SlJ(lvr
zx`(!~$U|xilDnbMTkagnYin!wWU4B_D0`t!c&(}v!tIe2aNgUH^S*NPl?z&%jl(Wf
zz~dqwo^q^!a{;n-%g;PxQ%IJS`|<wL^yH+%*bsXJzp^RI$nY?;Yo!4!3#{j-0pDvi
zOt0WR01*zSFKF@Xacp%yO8E2VHM05kx0cu(34WY$=gQ7~{^RVWYxl<1>R2eI3mOmn
zQc_YNHa0i9WQ?I`Nj!bZ=4g)f`k8njRZkSR<wgw_-kk>zy5prqt2;ExL|?!t*sbRk
zVbTKFyiwQYo5R`E%5AcEtY+g<Q&WWotM;1eGCox>46{_15B)lRlR~)j8V_4wSn8A%
z&#!7Ng<Yk)EZZp8$fMDx+BoS-SrK9Z6lq_++-MajtHYltxy#S5>4`_(JNE4zy3)Zq
zWiY<NqN1XL5LORC7BE7678}&%`Hi_Q1UgaKPZ1EYXbl?{heIwj>PYY)W>TwNx_;`~
zZ^(SevN>$dCzX_NMVjhrI=`EeD~oYjeo24)vy!O)fXPGPINYcDC`rOkCEiPpk%)C(
zUDR(!Vmzl!K39N_s5>**sp(UwBh6wc04{A<gN|Rpw|8sSiG{o-^RC{OemU2fl&+A{
zidGh7iHhdME8RQO$dp<#ESxy4bysY;E@4{hfuyNGwuL!kMReoS6fDTK$QGTRFhSwI
zfB-@Q74l5f{hFL%eKB$Ih1`0ot}5q!E*-2Id<3bvpTDY@slr-XUOr@6{`)uGb}HH0
z$^*H&_c?MK8`VVHqInZlkChIrZ`llz5v{ZfyNEiys;b1p#g&IFUuf8MYwM{QjXT$k
zC&a#@P{-wiZ%Gjn6Du`{+we_ITw#gjb+}V9^T4AzUn%G+2ffk6S<wnsY0-t<CbloH
zZ5bfMrk0knsQ4Xb%U7z{99OYk-y<a@B@=Y1kO*aFvbD8M!84bUk*TYzGX#W(Y}Nr^
z>Kdl8^)^9esEu&3$<UJVOMd$iPA$2vW2NR{Iv@4dwAwUOoX1`Xm|ex^c$k~pv{f7<
zt!3rqj2s+FhkKh{In_r-TM3?z&Y3^{c$t#t3rsrlPf*!C$`xkFX=5GFrp_{I)35!Y
z^a*#~!1#}`)=6q)Ux}V?<Yo9OYs<hQRcO@n;8p)Uz&w$axF{|!0KX=q6{?UM%AFom
zd@WLrxoP}sWmy{c<x$>SYFAB~XwUSQq0g0@Wj(CsbH+YvPAk(WQJwNAZrOkm4J)-d
z87LTmd{yq^;;X~MZ44RL>o^}07MI;0(vc>8J{%vm4;2X4&7A661QSXI90?CQ$V4xy
z$4%r&%B$oA;m+~N*PV6FYLLM@wpDcMwD8!Ty|MjlXgNh|@MmwToUpdjss~`d7OhM7
zP&AjHbm9pf#4&4@HT3lr#s1Oc6`fKlcrT=-osv2yp3T2BGr8&GR2A%Wh4#X(`2m}Y
ziwhF^A3uI9@!@fEDh0rRKyf6`w-)`P6ES@rGOfAkg3Zq=QRkVh*j=mX6CLuUWVhb(
z6=xvh^18E6be`CFrNf;#F?#!*l7_mTt-vOz;^X7v5%=|c06{iuT|z}EIyjWU_WB}D
z?OgD>wS9w;rER_~Z6|ewh}9uPqGGr7dkl3}0;QJhm~+;&@}a4HX!f1JoqfXgBjJ!R
zi`nYKZh8zug{^Wa&d?Us@6guXjg5`&ug`y2jn$mWSH`;d&`Y>euy`~LP!k^?AMWl(
z<3|g;g@lQf!{o5GKnByJRYqwXp0s{?W1@llXr~E@Ygd4pV@^kBd`7A`bT@;GJ*b*f
zU%q@na6bd!yYZ-xR2C@}%g)+2Z{4Q18Lj?S`RB_7NsQv~_p1<z8s_VPhnBZGz6T$R
z?!Jv?=$Juc*E;^{N&Hh3?!3R%Q)Dvq*ONm%+S^*nfFeyiXw%I8wWMO9NFivCX-c!K
zv&VILo|$CjS?Mjlq?%=4BL109o1GG!pUv{QpD#@<Yun*uL(i5m-4q&GN%jmSL;)4M
zPu;9Csix*3)^f`%V{x1a_Eyvv9kaX2QzhEj=T;Ma>|KL=1ZCy5o_jbt9E2zU4!J~n
zUjz~(ha(#G)e<)0V6|&C8M~3<%VJwAmOizkkt*~?W}=U}ov0TJS3*CjBO#k!MuI?p
z+-%xDA@BaID^1lOuLSWnMMyE9%B!{Gmv1nu6*MfOPt`m@uu!1DUaF9=@CCEuwh;x>
zN8=WF%*@IdTIIuVbrsUxVL{n=EF}huPOUno9b0l<gK~+DMV8|U8VhS%#)5jKVpC1%
zPkzDlW8qH}m%tuDx&bI_tYZ>$#{r=^6%3r8Rw!i{OD1oKwn-h?(%Fi1thCChR6exF
zCYe}iV+{%lns1MPx3z*X+nPr`n`w>WP6R-_ur*}HQsApr<^k6W2NSJ!P}MaH#D&q5
z6Ycg|d05Tn#OYTO?u;qmz8rpX3U5<s*4L77ca^4&iEDSoF!(sdD>Sxv*DzSQ6+t+w
zll7663@EO6$OlM^4Qb*d)W7HZZ<$R;EzW1%T2Wgf+Sz$b<mmV=!Qd9X>GQk^VhW|<
zMQx%EN3XXG80J7Bm%HcBpGTU=7A+#!t1iAxjg6g<veIF@UMtQm=bN6=Ow6Ixzrkp8
z<Vr)O#v&VY_PrfoHZqP^snGjIR`Q_wOB2Ndjo=Z}HA*dLOhXf<2zoRgjoe~b?2#er
z)&206jQyiJbKjpohV4(EC)zNY9(lWF&+pF#`cOQ0xJ*Oiv9-g1PXEF=YWD+K!1J0V
zuOC$(?HR|%e0JHiYht>m7NfV&w0~4g$n&x=A(^sl&uGqan|>>i1-%h4xVFW7P)|rf
zkvS9VIttgHEE&uQ^vyEJ8ayB0$0&Zb^?&0Nrf2GfbLLE{eoMq)sb$JQ29{eiFJ$>!
zGBKIBL=1!zHov5pO|>jGS3@(*+%%jIrXuQtXjb<43HMr=>st3YYf}zW8%}wUPb57J
zRjPJ5Y}O(|MYTiYiS+O{Z`~p*puTo<MXi!(@Ap|z*S%sLK|!0{i-}D%0=l6Ip3+Jk
z$>?cH&7DA`F@?F~bVS#n+;^Cm0fSZ_tocHQd!e$U72~!))isMH+9sp4D6}pug?I5{
zceL$jnr698_{nSozJPYDr6!Tx-rrM0V_7lC^Y$H`!SN>E0M<zo#tL=bQk*@K!4+oZ
z>?keACH8z}Y}9S5<zeo_gY`BB?Wzjap-wMx#i><NpNN<*CD^yKD_wWqzNl;A&+IoG
zBHCOgVHnL1JZ;Lt!WsL${BuxjY%Jgoy{&Y&Q|DIIHGstd5S;|n!Qc+%FR#yQCamjg
z&J>d*i^>~bX}I(x*JZRPsl;EtOhte(zvEWe$*3pm0~dT*s$`*E_QU9FQBjxLeflJ`
zG>*GeEX}$ed|a72^jx%({ZYJsV^d4<pDK0LEH!rMW13H50)g8AmyigH*YuoBKX1%*
zTtCD3d);+eh=6lDPRC#o-CV%$6K(!5*D~<PHn)gH`i{+-Ew1Zt?p-m@hL-%-R0=98
zVOlP`dN3c5oiP(YPy|r%r;}(q$t^E0d$`6IG2X7qavEw=SWLo?Efx-XSKoli@fyA~
zoaXQ2(+Pygx4J>puq-s&fKwBJRw65}tl(R=SoQlXuIT7dS@@(Q|CsmfRn8gZ5WDQa
z(^oWbH@EblA8W^<c6zpzjv8}^R?ljxA*hMOnDM~(Twl=2$Pc2U<y)dMqnW9>fZ42q
zeDI=Du9!I|dTnzs?&V`aUZ2BiyHO{plF&YQbDBtnOIex)o&M?lWlE!y6*0fV$oP~_
z%ug0bg5hD@6`PBFl2+=wMOC!5f|&S*H@b?oWB4+XlHFbebXFU)a!54rhK7VBLI0Nl
zt^H4}j_oz~CdS-oAx~4K4Zk1C&Y`S(S-H4XDbn#`CD1z}Xc!_s0?9RLpFR;nw5vfe
zJ?mZ)sNpO$O+ZB#+sL}+=l{{M<6Nodrw@)Dk4r<1Z(%sP2-){LH~pmVY)xKbSe+7H
z^Ja+}%IE>~N$q-&JCJee?Dblj6BcQ{H_Lc2Ku;0I-Doc2^nsPeWqMB9cEmc=WoH}*
z;CbswEsTQH-p0QjH8C;aH>6c&*I0K`PQbP@Gr_r9X`?wYl#b7|RjbbBPtsfJmkez>
z9+p8I%F4>6rKP{1{sZTgd~~ob1H~D2+j{&vcIDyLP`YY<viXpTGD+!PX~WGKoN$4<
zY1PDcJ~G_dVWr2Tw=4$rMFsZVoti{Q8g=J-vm$%5HI287U?%{aL#PCVhkG1E`*Zl|
zaNYDEe(Z5u+ML))h6GA62ZElFjjiis@ER3%a<NWp-eeD6K5MqUR{3^XtsuQ3qaw9k
zxmuySSyy>P>GodbO<c!>jEV$ZT<gfWxw$j|`z>Lt!X(TZ_Z-<#ujQdus^#i<3>FyD
z0dE#ub#?<|_c<-`>v>Ni{{0<6nxi=-(W-vos_9qz&oj%*%THrru^V;Yxq0(u_+RDv
z;}-xEhLEfo<PvJ9SEdN}eliu)O`P?#13nk|Xg-M`3g;ul2khM0aD$j2Xw-)xu*@Ro
zmT&fXIjp_pQX8jUQf{tr#c~>dQU?ezEbwzizrx7${G`I{P%{7lgl1Ui%i(k+LcP`j
zunq((8IM(}4>6O2J-M;OhjPcpd?zdq|6}!z`~dnR-(a7^SH85`4iYf#_3@dcncpib
zIk3Ox7jmjO9EobK1L!}@*DW;};z0ONA8&8g+qIVt0(O!Td69k}C}91q37oNKot>Q<
z0|v2arXyu*YikSzCdrO<y|}X+!UR{3Wfy1ak1JJV*8~X!^pk}m3PZ$ShH2p1M=rrU
z%O^?9W#m+K0y=NeIzUBf09lJLYLMxE)z{Y-;BP;6dU#5vO|E%(^4NuPwnQf-Q{Ju|
zcg?$~rH`A1zu4XVj6bztj4uvG=$yHR&Dzuxgw#c7PFY#makDYW9T=^DH009d@)ZFl
zt%|Uf_gHs60Ou_Q%$A&@;-`v=SB^5OeQvMqdtN5iEO!wd9bK-|9F%r37s~B&MRyMc
z6CS+2U|(NHGROhk+wxWDa~Jd5jG)tZ^2c$bxlF+om!^=CZZX{$TFql9;#6Kza$tFb
zZ}k+mRaD%cZ5z#1>$nl0J&YoD_Z^x*)R2j8VnRZ9yfDt;S`!P8>ruskFV$IKZo}(z
z<NzFt`I9A;FPA+9X3wL%qlsX`+_H#aqOf>+L0QDqqePe#A3qN2_AK-gy}*7qYb~NE
z6vf2eyBzHr6q;eQSXo&uY;B9bZKZn+3rRGlNIQB|l*!A*9vsTJvGAqsc!(3OuLk;D
z<CFM?*B#>cEGXkR%Qj8}%eRT2YcYAn&3u}JjgL<Qx}2`Ep4TCLe|rI}7pzt%MDs~_
z-P9X^Nr7}Ch|W}zLxxE`RwX*ERFPT1z#%KU&CRenn(ZohM(W6b{NS5B(L$%{@}oB#
zLqE@AW2dR+>#Kczb_&PSlofaca{%rBl)Ori*4F;~xyKBZK5n9ID=0E2r^U4|guDV8
zR;irIt%v{$?gYSt`6Qeu92?-ekv<H%o3B2E^cKNG47Q~uiXY70aiSMps~K!s2@v3B
z=0&Z1a3H9dAj6B@%RsBl0(AH9o$ZdoDb<Xmg9X96)R@TqhwF_d`o6?W8`GiM7B?u|
z#vzhFefsnTQ5;0PuXs>REGLmS<!q{W1nx_*vIP@z9@hd0ewIS3HJjqbMO|t?Jp3k|
zu{akv?p}~yQi0uX(8&#}Y<LbHg}%oC(t)ITpx=Bgghl%(oiS}_<D9*s@orJXy0({V
znc8?;_4PiXi>shn7=ny};G_HZ?>B38qbQJq4?0E4&8MGJfyu``e?F+Z-0@pcXpGBR
zm93i)P7b;m!Rk9JOTPp#8DYPUQ*<<A(PQtV&|h4x?v9K|AK`5&KFd%hJgB`#w6t3F
z{VbFG4sQk_tA+RXa;spOU+$5E`tLnGGk`f%D|i_M1J&P3IQ#lSp32?EhKBaRLgUTv
z7g+8vGcT`+dR(ZGAybrC4pF-^n;QzOM(F8C{){*dEObF14#UyU`=WlB>@e<nW(@6p
zmv01hu1Dn(e8*9zjX!-XFK#NNb|=1G^X}a{bdDB3XeJ&j9+-r4=2Hxy$2e{;_W*f|
zFkcx!$#a}HFK$0$k9JlRCF75GvzbI&)kH8#OJU+u<tz!i4^*)^mTn!FFNetdny}dX
zdSunc$Y}+1I3fu^-_P!_@zMlSHL_TDq2^Z<kF~_pP-b)>6~AJ#Bq=bvs+E;io992c
z7Pl$tbiQfAh#%ap-Db3zC-bQ0l8<kzOlc1lR9NjJNvmxL@wry~NG{k#q1nI{n!a4u
zqNLd4r2gDV^wbvFU*ZM=i{=LlGk~EJbH}<jg3#KqEsbj2PNmBwzJL4nEpCO(yw)ng
zu5Dyi!*(B|MKgnF!0w}<mE(l4IUGXHm7VIL(coi^VBO!$qW)@MbYv=0-G(H7b)Cgr
zu(h;Qc=ak12&yz0!9zu0OG(7Po5{Izt$m7)&O$hN&@+sNOLCF)zB^xo%`3EgGsh^4
z=%DeK-e_K{u9ZKt1iL<GaQwh5fWcvk(1Tz8si|n@v2=UVrRd_~Vno`2Wb+T{LgW@K
zAtluVanPNm&WTQyeROnmq&#9XBR13wV0w2RKT!L%&?<Dh>-?)4#i7a~`_KSKmMgRB
zjw%F^^<;tKV`rBNWtl-W?~B9sau&OBZ&>ByQ)7A17(gvF{4@3qX|&(Id&d&{=0%G@
zf=uEJ;npa|-b{FgT5dS1nsEIWvFPR4r1swE>7@yau09sXWuY)wL@(hm8GQNeEw(<3
ze3&18y)~jm-MlFZ1y31aUE_s3nn=v^1!@_8<*c3)b+S>(T@N_6q#ow8y(`0@zj2Ys
zOjCRLs5ds<#V{ogcwmG#Lqxf*6q$8Oag@jJPHdJy$TKnmyCPX?g&%WrR?sQw+P0B%
zXb~;E0J;7KN@X)Vl9&TCQ^JXLJci%F><pu&X-*Tqs)a2VFI_@|Q1QTQl<#nNCRQWt
zlH15HP>2xz_O5DzR;2?y5TNr5r1qn$pWb5nBlbBq)(?Hc^OOkQ3Cccx7qRA#7aHm6
zreSvfyQYQ)AtB)xNb)bgyPqG-)4QN7jzbf0z>QG(hnvbRG5qS4j@wH9Wb9K53&ztS
z_QKN&E2Ko^`;j{O2TA?m`$X$=rgf4d*|UKh^z(<-J`QG;3AaoYy2Xu&j)VlUF>*qt
z0)2w){4=d4va%mwNf2Grcx!QBZ?jK(p#RjpZjiK~uVwHDX@W_uK-S6Wz&~)f#Qqmk
zUifKVm-L2Tj)c4mZaM}_%8MKPKD$;aIs!-Nj;pS6-8+Ro6o*-~?^)z_7AzGjRzy5D
z$>KlMmoxr}S7MOgcG<o0=|d!@uvoEa_l=vUrza?88?%XlMxccvN+r@7AaXMa4Qgs`
zXLS;xUvEi8d;yL2VC_x9!D3*UN66=G%0R|1Gj<-8e}a4}?`b`6t4K_csYtKE;c3i~
zzPhWFP1Ba(VzFLu^ia0d<P|{l<<c3dOB7tPz9cNYM~C~MJQ{7$x>H`SeI5dOka0@{
zyTkrcaZiHig&rW%fJazcT`gs3T<6)Fl-rZuEhdd`AH7PrwP@$DMUmK^{X=oX`x~wy
zM&{en9%IS6I<EZ$8k-}NCH65%X&J^YQTfYb0#PxsbZFol7IW(n8Zk?={4)yYS;SNE
z`kB_~jF}im>Fr_5K%mWuu3Vv&k!jPg86BRUC%e7Eute0Ym-#(rU-o&Mzw*nKT->Ey
zL87ItA|D$UVVWgvv~1HT?yJ2|r^yQCf_TZAiaVFqd@g@<3?er}2z|mUR}w%^On>z5
z?0iR}r+!;Z)(K<KfVz%BBri~gLAWr6B<1ku8x9&&9w5IDBJQ-6YR}J;+->vOZkXBH
zpHg0@f_c2TvU8?X)qdO8*kzfhxDjL{SwIFofL@$;#yx?OBFA9YqtBTWJ_ZO9KrNU}
z%BFw9n?Vx{+kARv<~9op3sBG6N2XIPF^$1PXWRZIux@UmpFN9XP|nVjj^;6h)^2Zq
zrFx+K)K^Bt7y!%u{t|gI{9#~Vkbp!43lfx)GK0q4EZ*ekYH5)I9T@ptb#*mlz;yVa
z5$N}7l@5g`>ifhgx5$s5KPN-`J_oD~qVOQ{=<fc0Q(vDlT<cM$J^%anEr9d(j*d-j
zZ8C4(yg}L$ExU1S=fllD9?Rbs_mdikXaY{>LP2b9R)oEbNT@&p7=rGJqz@{mKaXzS
zxIs9Z{%v<)40Ny57r#Ctv)WT^rri?7tsr=~5e#fp4uF4iiJPeMU`XBF-HMdl79xns
zy*Ayn3Ahw7Hz2nLDp>0djmum?1AuVQ1f<FM9SW4PHPR5ciU=AYg!Ml<Gxi73_&YnT
z7W-M3M#_~zE2>PE3{OCMBA3HGfa&z@9wVj?pu0v?>?Dbh?mWGx2=|9X|L>Ma>px?U
zlD>R_4z_8r4vSaR>&LD8Y;1_R#ALWc?gH`Mc36oV@N#H^^ezvSfA^OsS9{VF#1SPF
zFgqbBY1-GX_dpzEyng*5tPSqDb4VZj{rh)9BBG?uq^B8xhT#DM5Gn%FcB(;J4D??g
zeg;zKU|%493HlG{XYy)l5d*#`)LNZR?ks3A060Rc4!6`{f~8g})&mgIfPZ%?*r+!%
z9IlQ7rZUxOcg@GwSHaG%1X=W&nwqAeW>DyenA8*jMEdyqqjhu=jJi|f_cj+6I>f2b
zu-7&_pRyR%dJ%x$8G$qxFkhPRYu$Q$Hw9k6-$#23ELmEWYM^;`_UG#MRJ*z&njq8w
zc}VGspa~;D7YI8aFE3f(SD>ylo9SX<VZp{t(5dsG2lW-qGiZ>o5q!hH(JqWIU@^{H
zs+TBv6hSWO{CM+efnF2w&D*yb>F9neilT5HdL_1hNlr%0I7rO?Zi~%1fA!YO+4guu
z5ihe{$%b8#2G9&N$dCw5vupqv>F~ev{ke&VCk6x_B;FBe9k~{=qZ}Y9w2={m_-hnb
z$Ww!B@L?$s9l8n(yB<J;iDW;di7&I7L!1B^pg1FZKl0V}RF0D1mQfC6*4#i^8%PZ>
z*PjHAc65=QFj!`t0cp8$>q-q13$PwAcU=Gy3M{52kQfJW+Cy$u5l^CJ_Xu)>0$2;W
zlcmTDUk%8Ew5|*`qMmF`UPQ8P<6HNGbx9$h6MMNf^=l9MpF;CVF-or2ZoF%8HHh5{
z{`>E8`TqBNuug{e|IuswKchIAwg3Bz$_ZHn;pBj-0c}KCO^r<9ad1pbwx8cc@Ix^0
z@(wMc@lbb8tm9L@&})Mn10E#n*|A3mVnbT5A~Q@jB%e8;w0i+_e*qfwo(C7X>)w+{
zmm^j6Vp9Yg7dUR4Lc~6-52Wsce0<Id^%{lv5KCyl8dFg4z+|Wl+!M{R)yi6OzEE^#
z0(d`#g{9V7Of$=r=IMnCMKOk2ZyNP%JPf`y-;)t4urr2*WFJV8XvC?<LW-)f2BYKa
z3yrO<N>Ekh6%-JAS2VY!7}(i*folj83Iou(0IE6S?m+BKfUonlPw(0Qy>@uCzY@V~
zn|<~YMe1!{Tcs{fs?KQZ`BWVbT%SN+g%=`cbUSNB#4|Jo^2#d3F0q>qt3akegHhmt
z{o0Ex?P@J3zt95eSNr|txEz~8iUU$>4i0Uzc2~un4||j&ws&VD1f0tRcBif)CO9O?
zeeu4^zM2>q_B{-KfbWuu=0SHQOLb+c<`=yFcG?*L77%E`NDa-Wr?;^tTo*D*-&!2a
zf)*F?-Wm1eB{kl@#c+#faAW7iT1;xgV-SVsj(+-YcKWgy{q`drEYtIaw5YfB6c_ax
z8w}`CAHX{1(XANGWiC{1yVCpJ<HBZdd%V$5vj1|brh1aZ=Lh`POsBoQ1C+u$ldQqj
zmX5gFpw}$is;A!UJ35qj@&sXB(sH5^90(o<GJc~^WEk7nD_rwSAFf`d%$n~>Ps3#7
zKpsXTVkm|h2gUoy3k!TDuFFxq2Rn(Qq}-6{*cB?vm*oqg24ufdy;)n&$ivXM@wlYt
zHV=aYj6<;wm&nS|pUlXvjemZ1qifG<@BvsOhYAuWq3U<9={0rdi{tgAYH1=LR($bg
zuF03azqan@d{JXaPZ^p~Duz!rMLIe!gN+3>rX-3CfEzp;2<_wVxUFezzxISZRa^V~
z>Z<!EEJ^qR2IcfGo>We<&e|@jU4r|Pj$4bYi?epXupzQoIN&t(zU*|hB%iq^_uP>i
zpBYmSCl@$Ev!M}4gh&?FQbxHAgNJtPOkRGzHE=adnq`WITFz+O?)0RRuxnkmN8xX!
z2JY)2vFreLvQ5zJp(jg{m7y<ExqISP+M8!&H|v$0zIs(k`>fy6Z5jbB+n%fpJb|5u
z<;Oek=q6FmXkj5KqW)sP^jo9SJR>>Soeg4hM?NvCE3s7VB*4DZN)^ACpO=TU*Yok7
zRPuB3Ns_LklH*dZB>jv=UCITbIi#R2F&6X@qQ>^1lDvL~n4cV`yb$Xn@?g`ApV^(o
z;afGz`jt`wC^vuL2@(#5<hTOUjhLet)RQmv;k{n-_VH5`a;g|CHckO^6iMU4dDLrN
z*x+1W-{D+-`O_eFu0xzkPN&o&d1Z>ND0VjW4$>)uO4$(zO5@@{K8NGs3q8F#uzflh
zOg(0Q*<Q0T(|C=uCtV5M7Q<g?yP^e3+c*6jdep-s*ym$$tug!=qS{XISaxn*-qB78
zv~)z&Bq@D3c)cu<9KUpO`={7HMMOZGrj!Oa!{?6N_l=of*Lba0Di9lx5|}Bav}90j
z2jJVUdE{Je6cRJn^E6lE)6(bgh+<6k8?3XlurWBiLAeafuw5BN95Zum{;Vz%A$QZt
z7kcvNJbB@A8o2x$44s~vTb1rTo^mwr@;zsR7*<n>TQ^eefw;?i;SHf<sgRQhas(pu
z0niG9e+)YszBYOL7LS^qL})Kqm6EY=F89B@fQ@RvLzY(ZUp7gA8GaXxN8Tz-7Y!kf
zzQfgeYQWWZ|17+OiHUe%p1^?4e7R?tXEQN5@ku2+DqSf}hf^U}2;1|}rvY*Mu2dh7
zzE`J5)%YV5_Yhz(0<NLCp4%d0m&Cj=@Qa0{fxe@y1;9ta!ouQ>_EU`Wc66D|(!A{I
zHS(*8xYJD;<NVvHCXpQTM;l%91C`~Pl1MbP3**hfPJ@Xz*vre)2mJFTFh#m>{4-=4
zI%N4jAo&5v`gF~V&p(zH*@_}Rf`mKi&$$6XPqI_^z;;<<M6SH(hlcKThWqlcSUu!9
z)!6`<jo|4JrG2Cstip(;b1qm$Kn|=e6#AuNVj`(lY4SkR&q_r<KZW{w8P2O*esMA%
zh94V0F`MkQmKO#?0Rf6It)p^#zDmr0QHQKMCkKiLBa$lNJVfo!+SEB=Jj2lndu#_v
zAV!SANy8BSAr5AvD^|uO*`d&Az9&BgQBGj#$gA^T(E;^_gGbd3=07AYMpQMg@yZ1S
zIqW8dB7Ft(;8_%q(x+<PI29X(I0&x$U747a!q~U1e3E?J&VPw4Rk<z3VIiyd!Se$<
zX8@s^%_X*&9`IxL6iJbzbJWo0xw*+KIS20*V5^Yv+Pr$Rd@35sF@W5#BfiXVaVi%T
zAh8OD&Q*7AV_b7a+xT?%?&s?x*cOB*hLhd|2UUCqiJ%53A>FBRbe=qK)e{}8k^3DT
z?VIJ3XlFxp+=OmrAr1V}9<?G}p`q;SYR5+~pC2G;WjVBh1HP}sd{WZ&pto5;hCc}~
z=>pigJT@f0MuQe-T>ED{nT5^x_pjFILYG4aX&D^UyOZcb+%M3^a5vA@f}^k;*;9b9
z3y0jGF86}^yxF6you=z~8M!(csyEWI_N-d{ZYBk{+|P}Avlgp`Ua6rX69qLjHJZvR
zuV$dR*u(IygjF?XhHotmB5r#$6!-yOJe28qB*xAGgaB=jyPK(r%4O%dR1{Z-Dc!+G
z#0dc%<2#&77OB(wJClJ6pqa=+)k3#zL*GQk=1?#fh>0+Ss;6{UJG;BPTgZW^zZDAY
zCQQZ2_yFyzm06|r<lIC({DwT<b)W($mhTK*jppHQZmone8pf(i@!N4Ch=2fTxF8W5
zZsJfv#p!&Bb79qyoTIy+RTsGN7sV+u>UW6|Wq3J?d;ZVP<jD=tO`j1GS-3*^R1N9L
z4S>krXl)2eUiqrd7C<-w>G(3qgw%4iHkjTD_THL+j~3}Nkdb=_2KIp+DhKQ>jJs36
zVD!ULz@*QDky#Ne_2|)W*_`bO_LeQNf*2a<LmZR=oU(I!*8nVa0|A{R=6SI`)yqzi
z6@PN&I7UZudR|_2#9g|#y|Qu-Qyu8%B@2z*1^^?>6&flc(lqG1GpsX|$ku*G?!k1j
z!`5{M`>zdatn*g*&j8AdlyYkYz-Scn0w?n^ni&plvpC!n{A8%t_#hF&v!F8+JA$Km
zjfZ-({*rO-DI*?T`?W9nEm3J;aynV)_uIn?aq3~*I$qk`?CHwNfRwt^(TwHc;Cr3V
z2FL&vOxQWh(h$D+9x<}}Y5Dm_#!bBmNeSW^ibs;43ws)Y5s$}aF$~UP7;;)p)Sh3$
zRBMBuSuwJnN&)Jxq_$SC<YD<r?=hSaP-m_s9m0bz`U&SKYaVeKdDYkbOjqkkN7_Av
zl|>qRM3sGikyK~zqTLcZ|43oRvSIr}DAJVkM~guO?p(U%$mUl$2}<!xt4|e@tqjpw
z@}joAX^Ffm6<y59Hd$)vin$5GBYBIBX|CHN4l~iV=gfa6d&1E@T?8~-r{F&sNNc~*
zzaQ-_zJbMMn*aIDUkm;JJR1RWG+Hp*J*AVE`8(2r%dD3gxoU>{QiA}{eOj@Wgec5C
zi9&a-U`s#T)pQU8SGShf9k*UFY38|`yV)Z-T;|=`U9EapziYm*AUMxWyu?Mt7zCK5
zi5f!<C|*Ei$tvkrDZjAlV7)M3cywsJR_iU~VEv;v*?G-dt?<<oxJ~p)0I49xn-KYT
zdz+iR>SlA%L3E_NvEZZ4FbJedS1x9z35bN_aBj{g=mS1X#Hc7+USzV_B_lWop{BR!
zgq-l955Aoty8at1=423>TmJtVlyd13$L8#)CS+;O{dhWRurF@Hxf6s!{4XDU<i*P=
zL{S6>fd6$P{E1e7d`~6_v}c&VW~0QCuJ-v;c;bHeB#Pn;&GPU$^ZqOUzT5xpuQ2_E
zU#xN$5zks%^{?HkSGh}^k4b32`g<J9eEnv6VHNd3+v;ZC$VU-Q5t>kNMq15x(<3bm
z^ppm0WfY&iJkshxdx>bSdU|@{hr~at&zaANdHwi&&b%HDQhkD23QQu>6+$9iEWR(v
zj3fqNm`?gaptWEsDH)pKRx(eXbilcf1UTY^Kz^f+irs0$(M-}G_l{eWwnbsBdQxPl
z5h@4T9|e8=<N-5XFML}YIHu)|Z>s?bxC@R3ZT?)yS@4#QMjnFicjx{Dptru7H&}&M
zbMlmeE*g;E^{f5Y>*j<Hz;~@y@;V+t4P>L1fsLQ(gIA6}UHh#R4IzilR(t|<d)L?E
z(M|+0LoL3%NuS6@TN_PIb6K6XmQn`VV5BXS5jau-D9}q;Xq=(=>tpiD)q8%GG8!6D
zrqzcw){E_rAm66|Z*@Yc6>nVPHt{krFjyEawN$(3T6JP32l%6X<Km>3LZJjv<ys>n
zP+5$;FK^NP`(95G+8QJWZ_sX`S!&-n-Y5M@aGRM!snEEm6Dr;Y2oGV0MO8E@msT&N
zr41HYXT;2RimsZQCs*IQ_EQdN?`*rXv--3grEd41=Op^~a;qRG=b)l3yuqQ8g(N?B
zyv^p9C~c+qY1wR8MOQ44W8cJCSeks|$&)8!4_?PDr>pmEkevC!wRfYoe&HJqRXZof
zDRBy%5iX9HynhxSxP4-z+XFiL*T(TW>CcXoSK;@K`iin_mWR_ICh{?(_7;u!ZBQMz
zOoptq6UCfvM?HV_peF;}bu1RpO%0B=L*i;Zg1@&=z$CN>2s{A5{arQcqHbcEa!w5R
z^^$<wgO9caE4<%1z9gIfw-*2!qs<l{A`z}1{jaYyg>+3W4H_;*u<KXXnW?(}Yaf<O
zayjjM71*1l>pG4#xMl$TOL{6C213rl4VbO+aqD?O8;(Ip1c^`vy**#I=TUmlOw5kH
zzl5ZKu>U$lUFhx{9Q*J6>&w=>z2T5Xq09afXFg^Ed0Y&9F9=0eKk&`=fPn3f$NF)P
zl4lla)>?+l+SUt7+;{8{fL;Y2N4Tc=uF!BP!Nk{_Lc`{-M#|8D#~Uq2M8rkYUJc|K
zjiiUn?c-k5Wm$)lg-8p&Ucsh>bh=|$crW*hOyE)1r#{gfL3GT%!xLy&AN2+F?BgBK
zJ1du1@M2Zx{c~cLUdPFwX;KTl_AW_uka?l{_W?KF;^O<C%b5!X`^^=MV4L+-=uZIU
z&vhAgNn(_rU2_Z%q7$2ab4zNiqUj+tyxp^-j)m3>O2`A3-4y17$b&Fct9Gdzz$5xf
zj(8an${d}p!rF!p$KfJCdDPhwuKdr17Nen}rp|$$7&-N$FQ`~!>U2C}>yV&uyRPo%
zm5D8Pe4I>iuOY#I<_3SlZS$Nthy+-@bhS&={|;}ibLKS;?j=Z#SRk0#3dFZH{VQQm
zxN|+@7aEo(IJt0N{O`=ods&F$D;14t%3l{A{<8^jXfCS+;ukCYb>Y!Jary4A(a`^O
z;qgCv0QeVVG=zU$==x90!J7|YG&Vl}^BDgJt8sL^7;UfNZ@<4|P}R2X5VPB2N{rVc
zE4PIoa#!?4j`!X8YwsV~q}_dfE=YcmNIvz0(tr=4Xwe5fLZT(#t?8)wsL^Uc3Eh}*
z`=1tMddu4j)|EayGe=S7JToq_3ws)&HL)~7kMA%tB^4EInXn|)UH7uPAc}8(>W#8E
z{_5wz>k}&+Z@n%wTzOQhjt4&+u-v$Ez76+6=@n`jef?XsL9-?-X`=tzi<SZUzk7$J
z_6}zqXrn7+WDGBU5{OjP(R!7*)nw3l*)_r4Y{?(hV!!adK9Pk3Ke*s|i+n%a-!`|f
z&{+&)Z74L8!3a336ucxbXpM@`%=Fva+bgbYE`EP~f{745e@2TE#whUCt9s}hE%WuK
zX9&#r;fFsMMKn6-^XK=`(VD^T)jNX%+n&@Vug6bAU%x-pSn|KS8V(<f{r>&)p_CMl
z&Fr5HjHlVu)NDs04jdV~e(TnIIHg)#Ib8hqzkbciTd%&pKDwaCTJ%S=BS(9C4qxOA
z6%KNA1&(82*veWz)`!?R|8rg|9?Q#LvEjA7uc#g=?c-Cu&)bnJjN`Di_zUWRx0hEO
zERR_zDTzph$3JtHQs`@^r*{($7Smn7J|^=6gNcPIK|o6S<oWaQ6^>+j7M9zrtU+O6
z*T5y_DMGtDGMSv53^Ml*=)8Y5HPLZ%hl6exs#YIFCw}h21t21_2HFy@Pn^yZ!C&ot
z2S1>CdV2Wm{<uXK75R~IuO%Is?r+V#OG~2%P?TI!vSW60@~u~~>=^<Qd^>BH^4$U(
zf;IqMprxgzrNzg`ze!HM1sv4DNPBzx!>3Pu!F6W7(8~nMA%V9DEDgJ;g~k1?t*uOr
z(vPs(bXUA1?oYPmkJ1Kt!L#JP?4W&RV)Eqi<C?a%KpNrq_ny_b9haV!l9GDB&fd}0
zMaRb%wYa#b&oB6&vk7hY2Uzlq3`U?8T<5BXW^y)>1*4&P1E$F0L)oMIFxGe^PX5fF
zqa9r{T%rXXx)n5qm+SWApF%?BFx7(KN__P6=>lg596~R<WBa_l=22~ZeelPR-$BHO
zquaQvtE=#ft7K%2Kme)cy*LjJyy`2fWo0~YBKfg|#P`NVTuMqxkPCkTetd0VF#+cZ
zzkm%2rsi;YwXmRI7H$*GYn`m#XS%bu_c11BG;>BAcAqM(m)*i6eDgQJ3q3P4YlHA3
zoSN2tQp@YK&!kyyH4Z$>Z3c#UGqyoV{8eHfSgF%F0T6_-z04DByfqAr^!d-eoz~FM
z;Idh~2D0$Z?(X=^jQGQcC^*UsH8$i)@GVwZ%j@t60C7KNsTbWh8GLZ@;>C9I9M7O2
z0yu{I4Q3paaam<$ac5_KYinyh$1OiNv6t&KVA0*vBd4J7V|X}fcJ?I&C1p@>@Q?0p
zLO5FucH78+m6a74xD~+FA1y7Hbai!Mq2W$65MQcoCpqPcxBJJBSDc)j&Rx1R4INC2
z1K(d6=C~5hbLymIG5vUd*;((rD;1{USA1s%2?VaYyL-iw=SJv%%{Fc2*C#-45YyD8
z1jwnQt6OTnehZGCU%zp~{lf=*U`c-f*Lofg&tSSS<Ra;PcQ`{X9mVwxmaKy!?g@}W
zyROs+f>XSWY{tEJ;e1*x7<%x%MY?-?L6Z`el)P9}RJ1WaZ~<IXetv%a`388PKXY+$
zwU;Uw43CT;flzEZLd(S!Ha7N5NJy9)+zOng!$`2fHe-9)e%;C08JmDa<e)I<@r@TR
zUf@$v1&r5vH^=akgXICpp9m=@?2~MDv@LSuN>EHpKz=?O@C=Sjr;b;y@f#5a1O%Av
z#~<E=P!%E&(Reu4Lm+ZMGQY48)cvl&W0TKbSwurv7z?H!P9OH0=0ng$Cp(V=-%1I6
zOg#oe&Bn$C9D|UC1_d6qzzqflA2^HCl_-uUaC~5ipfGSbh24988eSIgLSJ8AR<;Ik
zrE0DYHbi;~_%^PQk`fRSih!gI9Zvti0GtCh*jgTG^1gce_3PIUH8m>@F?+UW&%PQe
z@`rvg7jQA$?mJkQ{(5kFX6E0sL3FdTvvK|X*!B%$-;i(*58w6lKZ`l@ua!Ui@c71;
zq@?lLu^L$ulkmqSZ!7q~j&bwu-9;0@ifZIzcVL&FtKfO-#d$r;bFIu_Ii&ZaD$}F8
zhTI%S%-$ui;bR>6RG~(Ijy4Tl?=&b2Um#}f92_j*Ef(7MC(Kth%5D7L;o#keCLMP5
zBZwRD4}cc#>Ena@{{4F{Ufz5-rVDR%XpDRG?t?Ll=bJaDfNi|V&K{DU&H%0406cuK
z7d5{Fp{1pzz`-BklRu!o!CNWbLu#yl_ZIS@$btU{i6liu#jhYUY;10V!Fh_Dn|o@o
zSX}PWDQk9iK7Rfu($b%IbN^oZNpM3Ub1Q@1#1sEineNV_@zo8+0$u4^5%s9{e<?EL
zc4{|it}E2O#|c@K%%<fNmlTaAd~)I1`L%5ClJat1FxgB3w>?gMyn_RzG8HASRW0mA
zGqV-#kYsUD(Ok<JX>h8%{rs6&pRwi7pFcGX4PJ0Ev>hxL;8SX;uwTCy^|Im5_zzMx
zhl|jSPD10!=d|+y7*P1wMuwjq>~P@rCo8u{PyQfxTJu-+0QWnTV**zbKnmR4+-J_5
zxd+GffjikNpRoZKT}f%#$B2l*?pLzJ5YG<yA_pt)L}<t1;kmfES#6rbIEi1EZe5~l
zmXwq{hlh8YlXKfdu(tZ*U(4SVgDgU4C!|+eR@T*|3Ahe|_dq{+d|h7x8yoveO3M1w
zud5=o9cBTlkh|>dxn*MbXjoVRffx>oj&6Y}QwkjH)2wl*itxUP!>r#7Rm>1luS-)u
zt8zBZQfi7+U%1&^p(XaBD$LL5e2*D7?-9&uO3H0;?Ie%54zA9n#IALCQg>t-bHZun
zKdY;|{$9KgIN;OE%*^DnU%SC+Hu_?7zULy<gKH)xCd4eN&A@abI||<E@w1~N2wuPd
zh4?%!E-eoaXvE83AxZ_Cy<GR^Qmj@+qeXp*32wYVrcnx}5xC4VXU`_&<jC|fYaY$)
zQgYhdg?a^B^=Nrvd;t<76pPhroVJ{#rNzY;x8UsO)(b6N?mf)St49=nPaH@d;b4xw
z?{css7*)DIu{Z+0G*-PvLde-^X=#rbLO4WWH$a}F;I?qzT<FV(cg6sz?`qkckU*QQ
zUEK<mjLT{kAM8CPrKPNJY#cWETFSyTKD&GHf)S`Oa>~lv#I0%zLinp^Ct`Z;AF7d7
zwvlwv=Xo*9iKc4b`OcQ*GqqN{@3;Z;85oF1&hhG@u;#l_hRV5t{M&Gb=lb>QC_%w$
z?Ii-&gB?~F6`#vN*xR?KK|m-4(5A1ie~p}6*T6trON$B=>8anp*JeBDOfgk0kg3cq
zEp<V6d4;KphJ~7#o%ND8xVg17BCeux4c^X@0s*kGIB+#&w6cSe`%1><0=N0Z8SoMi
ziD=-jDkmo-oOX3}eQ#u3ZAJ0|HYlWR`?V==$=-j@FTBNrE#UIy4Fz<Fw|i5eSsUyU
zE)a8vTwa=C|2@s{E)gJ|MRQ^*WtHT`(C82_f*qQ|Vfywoh1-BkV6Vj$6nx6eybE&+
zgaZwrFc`%6)Ko2m$iUa<Sb@}nXUX!W<<mYvtW)v9Mtg{|{N4N<j(<Vg%mbg!*~=7<
zi?c^&hl*FIv*Y1xe}P$FOtxm(#MG3ClvInlz&j@DN44Y)L{HDR60_|ZkuuEq&Qhp~
z6kCe=1+eJp$zzM>*AjXqbys*un*v(p<>5(4PJRy%9oE*}!&A4~n1t76u||L2Mnh8*
z;Metg_dWoD!l_pauknCVJ`RcD#_ijdz?N|w7I=d_V{Cl<+wS@d{oT7z!^~$|DM1fx
z17q{of&%0v1F*Nv;iWQgETxWlUlUli^KdSyHCC_<3QcZq?zf*m-&6A1jLpwWz+%bG
zv?A{{h&L{~KEdLz$dHtmcLmO+L-~a%H5$BnWYAHnaNA1UuV$phAD+H)RqYHxD5Z`e
zzpaFEsglN136Dk02O^P!k=yk2=gXscNz=2Kg89e!%WR=};CA=)fHNt7Ag8Lswn5NS
z-V77~$%qH%(P%XIhX*R`+29ot&mp}5Rw|^2bHne$!$~1N<A63<94zz&Zs#%;pI2ca
zJ25e_N|^dH!{^>1Aw&RV-Pr}ayHCJ>YIgQ-sDO6%_Rn>6zJsxT04OiWqyU=$GEpW=
z#(W2>q>JUjjIjzF!~h)l8)T@u-d-jA)zF8qgN%|kr@U@ZwBoa|<VHQpy=mohH$mYA
zff0#MxJ%{5&~78xV)82MeT_Q^2C`X7fHH;PXaF!*C@7l0348wGx5J0GQ~)YKa?<6?
zmtps?*|k4o)~;%X6Dul3uSg*u{T}Qw=HlhnefG@F-~SS@JH}+3N=iy%ii(5)R^go)
z*ia$w-o4vj?J5XsKV0cZ;^^oI{g9W32R6Jc#QpvIiG_tBLO8d61_x(yX{n{6bY0fC
zSrM0(*=y%GAv-$&TrmfShvCnjJ=``O(ONjIt}TPdsjN&T=yD(?f7h$zRqE&N^{*9|
z7d%5U%hcaEOAxJ!T7T+pFcqwZ7L>Uy$Iy0g@V?Ph!%1;il3N-I1xS5`ib`5bYjnuP
z%k0wM+Ye0WY>?A{SMdxDC4qwmNI`%c0bnkYR!}e&5`nIsUfl;8;jj7mlb|JqMMQL}
zCvk$_L`r?Ik5zRvZ~XhHz5OD+pdfXwik}E=d_uxoXm=)NX6mPY1sm>Lt6N!Ho4<ZN
z2IT7hqU$@rxlsGR&pDk24Wr14tVCsHB<mzaMhe*@D}-c(vKq#Z(4efMvMM1GDkCy7
zB4k#C?2x^AKX*OndEfv0Uhi|A=X%alir+oH<1@auo`HdAqvbAC9mmwwc~RfmZiZ%u
ze9Iqg`^oW!=kSE4ra2ZBo$23KDXR+Jvf8RU_bS!g{><>$cz5#REAxm)!6$?FD)btO
zq>i0(e)#-u*6V<i*1l`gj7u9)ZWMS*Ld<7@Nhi+?UIycqJa2S^oM?p}AH}+>#6N^p
zI_%bK?pJOjEbQ#;HTR^#=QlE*A8g>ou`P!mzx9<1A4b&NJK*#ea#Wn0x60|$JE2zS
z16ytl8IYcy-f0Vq!?<^-V@t}))>`peB_EFt_J6fjI%jOIX&ecxEz^5_UtizA@Zf%Q
z4J$q?qI;NExY0xv;H-zo$7?7m{(bP^!QB@|myT|4@2Lpwd5|G=q%IDIA>7Q({^tCA
zE_O_`jn9p3Puo*f-xg5bot~6<ROSArxK$)MNkn>d2b&QS0%$k{w^Hd2ePM>Z3l8=t
zj~{z{rWsE|M?`>$wn?MX>FMb<97XrhFJ@R6@_|V=1DO*kXyW5JbkmKB+uK<j_Bs3*
z8L9m6p%+k}eS0<)x<)b{?FQ^hHxY<P0z(mo7*B<q$Fpk}OqEwr>_KU(psv0d<1o^V
zUMb)bV1%0a%<PM{k-S(8V1YckF?$`tU`<U8B`CBPI+GAKDSA)?he}O>llZD*hgF6y
zYI7FLYn3MYi7tqZvg!s4B)hwc9BrvS@H0DDCiA<H?S|I&Bl*vt-z4?2$GEvpx?T`g
zJawP$i!;+P$$Ad2SWsR<BwNojgt<dTlpwRtm1Q;=S4xD^4GM*F8WtOr+ne|7*#oRq
z5oT;q>+7JLj*5!f$;Vd#ohxYMb?xo#<kWznJP-f#-F?R8!M%I*ta7L~x@^=*6Rl`)
z7Qf4QS1(FZd-R#8VHqh>-ni{^a&p=x@xqT9^%>UxG)x@>!@~(Xg;pDS2Yk1EeRJWk
zsp)E{%BQv1+oYG8g0iVr@5|^9DltA}JLOk3Z=P(t=iTfRO3hg+$JbiN0PTeTw~_r2
zIm$3@En;2EhA~-Bo;_RoEXl?A8`k(S??_kVI!JF(5t8JRQoGbIziJztW|&J53(RY(
zZ$3vmj<m_e%?%V`Gf;)^Am0@X4O!8giiwE{i;0!Kd$&d&p7S5A#XRqhO^tPO7#ka7
z!`_9mO1`hE;*yhNM<;Z~S3dTBj&xhDBZozK$f0A$f>!apyda9Rq1jPYZ&5*lC1`4T
z#U%!mr?Ygb!<CH3q#{kPJE(|v8uK5PdiqeiK*N=8>sFOaU+uDyhSz86LUP^cAjw7B
z#_I8-?OI^qdR#`FjrDc1aq5}At3C<}3TSqDg@tK-eOHrZyNip9k!fA#C#;~O^T*di
z-EEGa72rTUME!sL_1Ae<S49nt8#m-vqE?m{5}rH>3JcqUo#f%-x{5Hjb;phm^$AMj
zvy=UBXWWzXjyW7i)6+kup{%?c$P3CbI#(GAA~>qveJ{>6`}zS|1FELr<RpSjQTFlU
zPmMPTMQW~^+NI~a6}K$RZD1Z}{KrAoGAJ=GQD;Br!)?8ftwZZp%e*2_RK+ab@#}BC
z$$h&p=jKMPmC;)f5v9is4Ffjs5ZFpJ*7Sl89S66}-XD&}VJlp}F`-CVq2M_({>FDj
zhGmGwYhs*FebT+tb4(T^;y$2QAPMpC%RqBSYYmKiLPc8>BYyqRn)M?8Sp4xh=iIy2
z)+iKD0Q+h%?Jau0^%m$A6j3ieJRE3#?p!T?1-b(ap1O>Ihmt{aP+8#M9y)yZ8YH6;
zvmKr{e3yq!rv}=#A_t=9=cLT-;o3u&ar;yFp4;dfIbRqk+*MZ5c^P4U3;+1B-HKql
z<!5v&!swQtOlE}4t?aG@J(WZ1vTM!x=gs-oifdBaC2k8&+D7r6Uz+XKSNGOh>Khg>
z`cn8{yfBVKNSB9K>C^MVXJ`4N)j2s0d3bZ3_O)?QiTJ;?UwL)gEK+5lDQd@<TYA*V
z@gyv8xF)A<bNorW?c)s%n&~_|&#R07T)%!j47dLG?|;p}^|%I4Ee=22Mtk8Pzzno3
zC|=oE9COM4?AVd{;)MlNolA2)UfJ2%a~Q3mZ*{Jg#-+cZsEB2CsX~4p;|@@gTSG;t
zr?1~NI(ppIRSZ3uqM{-#8=IQF{a#3P{rm#xohEo%9KU=+5v0yt2Z)UJdYS0`@g+|*
zXs^+gTmBcc@IAn{WYvQ{7H|}^{5iIBf`Z?B`!o#=7u$!oDjK<cQf8eAl1|YP5qTKV
z(a$Q{bD#VAfcwL!`P{1UYFek<XJJoYUovT`K+Jas$bv-K^W#SiB3Fmr+j!Ny%uEqL
zH*<y`s8;v?2ch#^F)U3;NMJs2ekV!M(4EPV|E|uitY)71z=C;vv7+5>Zf;)+y;(PI
z+z4O8jkq{=Gzz3yMN^QFnp%wk2Zx02nAq6Z2-|$yc{GIS%BxpWzY)wRm^m<Lrv#^w
zRi)8-m8%<eY8!)hMXSq>+LvbgzCApQ)!M+d68v7F)Gl#)$;hN4Q;n`eBlV|`L1>*8
z-TL@osk!W!cg$Q%`;V|yKJK$grda56{q^FhRNTHkkGoM1?CBm#iThby-%w3Q7q_QR
zF+GZsOzR||`-SOI@_}&E$ykr^VLq3#d+!<OZtdA6qok-87WIuyq{5|??Za8U#^MyN
z{CMpbk_ExugIqK6Px?*-P!jaH6kO~M+=oP0L+yMH(~Csv022X+v)#>Twd%)t^OAKW
z?Vjl2Xyxb20M!h5_>dEK$MQ>_(<WAlO=uC4g@uK8?%quSz#=YgkLYRn>HWz~%rbs|
zu2~0=^$(=su*#a~*4Eb3*47nE^OJ)e1=5gKl4zMxxDf2Sy4dN3sVQo)5}Q#B=Crjw
zH!q{c4OG(6VI;LP^m%i0b2o3@x^n;i4&X|dTyPgomF9HAz?8`Cm`LDTxj_*{+jg{Z
zY_iUOqaxmB^>MBKA(Oa2Sy<*gJhg7dua=WTHM6Z*nW~yjr1vZ{O5Z{H>1w;T-&*OL
zzodRQvAq^jq~eD5&3#RfVuSFG(&8%*Q7GOzzxLuqf*)+$==qr@qm1+4;-Qm^ot3p3
zMH$>3YcN94HW(P)>Qgaq^j4Upbvq(LQ9<D^{GT3Jcu4OF@Qc(5P@ug<tbKK9T7XKI
zKF@1jG$<(O%j*l*TU+&>rKQClWH!{(6SkgV16qx-d6w|FK)ZJfhMSK$4u-(0$7wd~
zRM@TVYh}sV-4Z<9I`N!3?K<zK;C*LK*o#~fx+|t=FLGG$uGmo#gYBv@3X7Wj?U5=h
z-R4w>g_eCbd5-K}&RD$UldqXAct<SF?!0}a(6Ga%wDJp^-)LVw-qXJ<xUF%-s6In6
zfAJO9-7owpkC<a~Um_#%^K%LcZee9*%{lkA3Yp|RKrNfb<jruYh;VpM(c$wsR2jq{
zyg;p_qy%+u?UZffU`LuX=E?E{FpvVl@ys|k4EfU>RWkyF{>!rrn7`TeFS>>imV5P{
zU&a??VFpaIW9wyfk?6Eh42QyCblToN1i#?#?+^I)JY*5(=H@?VX3k*Tpq`=OBs6o9
zRceKMkubI-YVtEMF#P!XX1lkyH{45|9vXR%uKvY+;Q|%S=H9_@KGBOk0LR<3bZK~B
zYTmB48&^v;A8NXt+;TPj<Pn?FZ5GZ6A>psgvr<h96;yB}t}V`v5v)M|)T!u@-C8#z
zt-G$S^$QHt`UR+&TtED8^Y@A}JUEyMoDM)j=*wwFHTCTx{ec`YT<Cg{Z=YYB>_fr^
z3PY0Y<Hx&4zr1<}+5h<LtTky7Tc7`lVi7RiZmc#wHZbum9C9H*;Q-vWwzs1hQ#)~j
z7WMPy5AAMaedr?a*<XO$z|_rm*c1v{$L&JK-BZ!~2Zn~IxmKtVY%Dg~>D|&E-*agB
zjpD3J+1>)<E6Q9)+ST;Of$_uG4j?Ywq~LOnkkr3gfGTw8PHt{zx=VxJS60>oZfIXl
z*#RyB%{SeS9qI`FpaK+?lzIjR-lIOkM4af1!lhs+C|w{lH8M78d+xIaWk^YFZCIv7
zg(%_xA_J4O+g=F?3DPE5T9!ilj9b+M_?$Ep*eQh5V)Xfx8#nl{To^hD7X$@Z8Bq6r
zaPmB&qPNk1p7CV|;nxdJ3_lv@&YhRh_ZK-yEx1rger&P65x8Eetxa^R*`d-{8e8wf
zPZsL;(xDl8;QhpJv_JSnu)w1+fAhXwcb#@0Ry1g;t^{wFmGt^)@b^HPpwQ4HfN*WG
zF~@l53DFoHz7-YZ#h(7Z35-~!77_~dA7d_G=(ltl;D;a#+K-EZ-Kg-$2L)aOOyIDx
z@&;h#j=}vqf<DyL5J-z8mDd+Gs%})pHCD8-*`4dy*$3jqdL-uM+~Q(53LqSU%G%mK
z*yVn-W?q9I#QgN>w~*0{Pfn5*QapMztID1MIhtrDF#hBg{(xi}C*m%uey7PkbrPEa
z!9rWZsJO&?%b(J@C)Hv$L0~F9LiAuE=h3oAVS&PkTjQV}gpNq2|NS*j)3ryHnNGKa
zlBapJG*VP1-LK0jX`u8@K5deEw9S20^6wJMoz>-&p9k`Pj&+4rILzr?J!kZeMX4fE
zw9lD8K}ga|E^B<au4Vs}=Hcdi-JX@V+mCq7C26v86vS*Q5J20>OHT#j4^tYoOiXI=
zvGiWM^2fx)sKv|exNmmw@wD!{vNC^M1j4R>y@9>D8=bU=hX+oGA}~t*SI)dB#n`0X
zLUw$1e-6Zogcf86Ks{!lTnGaNfH5H@CGf22Dg4n2<X>#06`GpIsi}mSK##3o<m25K
z>jP6pX-f+U3h>DL<EkJ$C*<Yj{i2fgv7(>_6OG0PElQD-MGgqsn`5oF#(T=UMu${<
zOybo1A0|=q^fWb2hDPw6qHkdBIc6c_5E62hpZV17<P|n(DvQGQ-pbDGr1<?PU)fRQ
z_uYSmTWEWoWB6B(c>T}{51*Ql@(Z$0Zr?WH<xCTa(^kD`FrB{|<QEZqu(tQQzU!NN
zS2B5bD~V5SIT^CoeCVa-7OUXhX=$sCbk<iX)dAptOU*?j9lx9gRlC<Dn}VbfC+pd4
zFDghMq^zoH=fSOal)fX?TBGm7eO1h8x=FRl@gJ^d#;C~WK4!A)$6Z9UxCTrEuD+7G
zIvUbN9Ps$L6DUAG#yKYVuCBCx{_Fyk8kVUnf?w;riwn2JF2<(9r%`EQ+_;ADUx6PB
zx_-R}5eSy0^$54?HnWsM#sq<oFxuuWG%TbIgmNZY(vclSXOY1*bkr!4`XDfS2II7e
ztmng>89OO+s$8jO98ebP#x<Sal@UNO5;2qFQh0I1?>mL6ig9ZcZ?|4@R6?|Qm}T&I
z9c@>n{)euR0NJ)eW-hNd9hYym;vE`K+g24zSEd45V@*DEOr6bdc*?@H+|m`@Oe?g~
zS-5?yCy25}<H(#`THi-4Iv-}PFiVLa8Z_06PNGURgEAs1ldLld>#fDTzDgc0E#zzR
zNIaD}-A`R!%FwvDBt)Oiq+i;;c;^ehLx*=M4mCREi&F!1fI@&=ZgrK}psK2xtPvju
z9Qy9vyQGH)frhFZ5EtNs7(@dt9i4Jab|ai0x=koG`LRBM+)82J1_vwAV-Ua=TmmCd
zCQEB;;1$<$awIss=jcX0zqDSO8wXOj5ycUKCBSyZdoM6^tQ66JEVV$m0EI}4#uf)(
zL|ps`aAKg~Qqal^D=j$+c4KQ0WA<ws8tyW_*(>dqm>W#}u()^|<F@x+1^bSa?tjX2
zua@COZ@-Gqr4yBX@q5}PT-JWRo!Ywcoc?nl;e<-%lBgFWRM<2HoV>IvN0pim$flP|
zy<~~}Bw(bKdR{fHggcF8_S0FJhNo@eCLiLq$4|1Fvd$#yz8I^_NEn<>826k_Jk@o}
zAk?#G`E{aB=AskBmK#qqRnyHqof%?%(=B_hQA>ygOurLwOVsX~%cIXNUzGlt*d@nj
zy6<pOW>Ej6aK3?xz1ik6@zpo=kQHPd+RGSzC%W=>+4aHt0_pqP7ziK;itL4h5R8Hq
z^~G0wo<2qK_G)G%TGCw*-v19-9qv^BLVKR>W0~gj)a4=U?;r<^mUB3`t9%#W4&g@2
zGg?e_!sQ=7(tf3T?Uk~+18@V6hzMQdk?YT&XA{8&DqqCs<g826XMy>QPfVE4PxOK)
z+sepTes%4}k4;UOSN%8YB#6cRki7_RisV3mrE^~nB&**K7~j;Bd?AV{_O#5qDCS1%
z(?9S3iI7OjX^?6~mcG_@N;+JEcNLsI2;Kka!ulq0^|rsw!11`IR(;u21C^r|>v$4W
z6pmgv?DqX)@^{;p+5Dap=83w^;#RsVx-w6EI2Ri{ii#{vdDOqwyRb;-^%s3SDVyRH
z${afDl>T5{swcyg=fh(+s^$a2URh7r?M`**n8-ybfKuAe-{0)anWI4Ppg?$LQosVr
z9r(fXoE)+waQy?>$^%ag@S9Us_I`J_IjDzmRAG=bJf1mq#MCsNYTZ_05eb5)foVcR
zq;UNB7Jzb?+d>U=MQ-6IHzo|I-WZkr*wRu_Qt}s&I*j`q`0`}GgPh~F+qX3v=gLSc
zg`|keIr`uQ0fh2*EiIAgOn<2}a@A1Z-MMoIRIItBrC-+V2G%jEvBbyk5o>-*yHfZD
z2R~?T>CjY^Ibc|mZD$qQq!xPWxYOo4$LmtVkLLe8DVhGz`K+avtyaj{VEUt`E7L_4
zM(3Vc1`Exf3MnvJi1k=`*`Lci9b1*w-(--ae(J>P*Az<+BmUP&p7#0inUSi@TTQQ?
zbscvUNIF^``7K&Uy*d8Jb`Z56o}@qR?h9qztDheQ^nt50le^Prax+-Y(<@8!Z1O($
z+S?7H&y+*@aUSK><D49|8Nb<qj{8z5oVa9+c5P<uB;pq$DDecJ|5N%$om=e4Gehe#
zR0jIFZpMe7E%IVm;MV5YG{P+atM5ij^`*#{1OHiC^H-k7I2YVtWgrG&O3H+t8zUJ*
z5KI8W|2?-}7_NwQG%O+M>4M;c&(uVTKp5!{xxw*xxzOv^H^xdj_N9c%XM(T87?t;6
z6=K5*oZcOkIM@0fz!@Y|T%4SL1|?psP$}5B!KHMS$<|vow|eNjYU&wt1%6|eYMS+>
zcZFAVr1+fe-ZO}g+3c}d=2`)b3gqA#zAI++g7Gu6wGBdtZf0i2CVMFYodX>MLm3!F
zP+)t};dxxV1VoHzix5H0em*F+v9%Qe^@|g5LRYKe<HwsQbFwNdXz;fYmK|4d8^gB2
z_M|;f`dGDoG=s|GdZtBr7KD{x8=^$5sL!4~J2g;$4Kw^v>Z$-^2H93zRTYflv;ogC
zVBi-LQRj)$;h~}TH8rIWKvAt*=Q`Fr5-OC#z_2Y!#+H6GJsm+)>@#Z_qNaBog^A5D
zL{ocms^6wk<Y1xS8VyCu)yiRLog9x|IK>dz)1&Wbb>znAS6}Wk-iuRawLjW$2ZC{d
zB=3$74V?uY_ZF~Mbm(ra|8fw5HB`RG{@s5}+<pZh78I5fjP>#%C@*o@UU@G{An|No
z6tOUet+5-*Xw=~@FbQK)!*dix<(r5|X7F>a5QaXyZEn6Bv~^blU_den7gir8$#ZP6
z5{|pX#3H_bw`7;|QZ_f|YRNF=gDL^LfBXEj0Kofhr?UbOr$Cf6IX7+r9Ov=Vr<Xpb
zWSqh(IX+1-6I|%2Iw&Fk%u?IySmRoq)hK$#F9Lj`rfP%n4u3?@5x$|Jp%r|?(9jSH
zERyA5jfn#A#>vSEfZTa?#T$QXp3m|@lm<*pOax9L#W8jU<E^3Z+K40wJr<zYL?F1X
zb2)1O{Dm;dU4@tGA&{7x#fM4EK=lirixF7tx=l>~#CLc{9kdbvJw>QnG+QE;?`bh-
ztOPE}%<ODMcRxWK1kmC;5Q-4jJU}GAhy%fC$f)@w+g4-lgu{q@ezHfKha8_*V!B|V
zoZNTG$uc)px^b6z@x5=1Yon@@e82GVj7G|F3e8a44(*sw$hc{iQNQQA)g{V+*qJwh
zl0Iy7y20m+1~Wt_Ux&)7$7MLSCIwV-u!!)wO3w~wO|kc1pI<p6)uJ-Al5K$QvL&Ig
zFb)TT-m#<f?AL>rW(LLs`=0|>Rg05}hGXi4p59!$=!#Lv$jAt@gzIB9o_wX*(VF|x
zk&Q4jMzst#U;Zr`w5lVmBofkx_LqD0v-~g-#^UVRD(L=v8GsQJmKC0Jta2$D3!-h=
zxP7lZ#eXBJ2CKm=t7oP~aTkW4kxlYGb*lc;C(BO*_2kmPv2~9iH9$}?#Ge`?&u{dM
zekCvrMk-=(#?RT=ek?HHKZ%+x@)vI-Wj+T?ZDeHp%6C<+x3^b8Vu=?zqg)E_G|!#p
ztRKgj4-2k{W<68YrrQ%PKoNZQaDt(~tdMH#Hs#Ih*Yxa+wYM&F<Hun~$wN9SRORC0
z;!yO^K_S<`t2&5{#~T8iyALn{kIfFS5xMlq1`{*tz@yC%RcFk#6s;WjoblP*-o6H6
z6JY%NAVV{QL&3iF<Hu9pV39$$nVXpvw_g~3o^$ST2O-Nb)Z$%v`8s6onhzgDgoXbB
zU5Orrl&U~agM))(rk7AlXMuqKKX{Dt-T`V{kJKklVmmKCtEoBT>u{Ez%j9IsbKcz#
zAK%TherdG#8E?)%YHEiz*RK`7SDnErs!`J>BVs*q_Q0JzeU@>Q@QdbL&Si?<DF<$G
z1GQ7LIlh@w%3OhEG3@Vt3TXGO5&OD5?ouA?b<+C#OpwpkL;BqTW7Ujwx3v!2ghhR1
z6ESNuKmMH}6}_j=)nxOni!bj9J?71MemAegKv3R}a@}A2-kxV&mL`W+!+Z2M%c@Jr
zJ+>T3YA_9&!)ZQ{qQiZAY2FTyeny}&57$0%hDQI5^(S;w-sN_#bV)7E#5xW<!Uv1q
zPX!EYL?xo1UhagJ)~*6BD3GiX)d&uvuiy4#M@J{`zp)Ft8mJV_D{u3HRC_VVb?VqL
zsv}3rlHrzI54;Q4{4`b{e`oY*;VS_4A3=tjl_mQ0=~K0Mk!u(1SOvWhlWr6i%3)Fv
z`uuTBq8yLUS%t{zKEQfnmmv8Gv-F_6P}GvZ%Pql(UfpA3btoDjhUrGr{7f(Ns+9cF
zKR~Ae4Js#nFcn=AL;w>~9v*)3INVuOH)Q@R^}135c!^ZqI<hHjU-5z&gNVPl%wqUD
znXEozdM6a}NElUsf2lTXI1SF7B=MS~hbrsp_(nC^(1F@jo&DU_mWfn@LEzV+Fafst
z&^=zxb+Ex72>f{H7fDj<!)fd?J#?zOr-y3G7T7Sv)$Si;K-dDALkg;t<MC(kXaJ!g
zacz6P4ZIgiu-$8r&4ep}PfE$TD*;K_kI%U`;Pu6t{634KfYi}jzX0F_u|a2^^lPKV
z0NJj9t$f`*BOe<1G*)h}dxUKDC(rb>c5{=KiLQoiT0~ZRzzyJDDrZ?=Ki%G>d~w&^
ziDySu%tHN2SoqhPQ-NZ|KWl}ie!h1MUI>U|e-!YZ;n<2;oUdc!GKFRI%|AR{`k@il
z;?vujK51zhYS=o+TD_c(kUXmIAY1lw^Y9*8)mOSYN~d$8_*+y4S-;+-8@q(}7M+rQ
zT+%MPmKACDjh`}?s&z`g652r#!&med#9v0<?nb+PVzB8tM_&zKje$F}A$+{NnT^eN
z%?<}vDVD^$E6H<4Bos0J%LrY(c#+^ns7bNPWgun;0mPd6%=4OhPcz_681dD)3VC5k
z$$nH$ijb*URBS=$^GizNg>~0;;Num9G-`0IkXf}_6>S8e4fs_*-@~c#%NTex!W<E}
z1=1_T3Uc63?Gye4H3xW-8#PgK*D$0A+LRk;`{?NCO3TV%#@a;S?u-l}$Z<s5Xr|nW
z`XX`qgeEs{^7DW@#~5r%#Uc{iuM3#ZCDAu`q<+(}-NF0PcbQdYEQZqg#{I^lM~{*v
zKjB;}x%II1VrUxLNc}=DDe4L8O)Li}gN@1iK~KXs`W|zT|H1LAZ)&ot`t*e8QI7}T
zrvwLcNlHe72Eq+&1uY3@DxsjYw6rk(@~EvXKMlLgX-J#UZG-@Ze&O0Cy6|M?U1_Ob
z!Qu=7E`gRXi<tl2+}w;bEwRYN3?90A@~ExvDXVZrE>3RlYhbQ7@g4W-k?Il(+wJ1w
z#3>{>D`dysep_+LIPv*W6>Xo*tiI`q8m{j)jRSJ~_)7cgbln}JJx`BJ-0szcctNI4
zDFRcd?l>6cHUO$1a(ETrNbgItXYhle<S5dPevL>ZD@$~^(IdY&!CmF$SN)3q{Jr^(
z?C1dKgZ{pytcbgfx?mHN@MSE%u+NeQX)tPZqv5W94<va5A_1UgnM+d}@EBBbvNEIv
zq=7@Cd;#hU#bHd}vY=s32*#C&MTDgrUxzvec%wBG$C!!`0QFZE4CDkZ0=Nd;6|zdF
z@9*hI8+1wh3PKUoPUSd!z^J-F*ed8O@zN^hUlBMa8&r0o=Cw()*dsOmrxec2veqS|
z%EqeKMbEY^7hP;oT*4mX>f-&jVtl`2s;bZdTmvUffH0g`fSNQAXedIRw)Wy$g1&Ni
z{rr>gRn*kfaLxx{r0{d#z7Yra5I`0^76>?mRbkhG6LO0`_7fQ{5;-bGP;TdY$~Tj4
zwC@jfsFNFyWp0J4)e4*i+kx{C$;o5SF%f(R)INPsW0lNh73mS+4q66Omw`BvMT+GZ
zUM+R$`v#=W!zb4n-$YIP@q}(g#pgw#v8#J29+NxM99wf-cbV4Ymx@Mk$2;l^9PQVn
z!a?B4HJE6i--3Ooe);kxl6YoS%@3LkU6Wm}-G|E)kA;KOU0VIY%X3Q^2-Z8a?*E&2
zVTp~P&W96&_yQtj0VLwX{6sT>5opLF4^4}F5HPpm>fXD5e|{k~BU3o{8xlTbMC8Ka
z79YWhpB?M0XlrAJ^61k-DjnoZK&b(%BG(6CmL*ElV~}S5h6W=+W}p>eKmkn@mf+n%
zm5M?H1VQdm^jgHPffE!JodzU;n;azk4Z^4~wHKd0l2+Jm%3*5e)usxW-x_z7;pf0p
z9<<U&aIuQAy%W51e&7j3iGhBl`|OnIcseC7AYdJO9W=?^5WHbag+)cpClV`}j*D3W
zci(IDoED`>7`s#zYAcd6@LbhilYAzGtd;2u-*H$qF>|=&kI+9cA&FZ^s1BI@E6_<`
z3PPAf9z8MW@3|qDeBF6_`3=?^Xtu!5m34HmqhKPGLcx7m78aJ8sQMGOXhyH*=1P)C
zfr<xj8==dHC8f@a9hiup=iRMaKR!g8H3^lE<mb%)Ke-~sLi-ju=W(j%D^V+bFlCcB
z_4jrCY&@H6vL``fN@#QYE+hW3UMB|TrVIIJiz6V(t3wy6=U`j;kNOAQTE8Nu9fiw`
zR=m7~aHFD{e>YtEe-keiu3ZWUiLnJ$L&k9W{F2;3*c<ur;|YjQiDDl|9?eRYWhFfd
z{0$p%To2vCE}dUqxPT#omjQbMI*y2p)Y8^2MN)`5BNmFli9|sd81>NGY;0_#4TVyM
z6r9_(`C;wA@4@Zxr>v|j9#tgbRm@4`KoQh~Dg57F)X7<3&M$O9K^T64aj0vc_l%Zy
z7lgec$u2Vez`=tnyo=)o(ohD|&OT%8VYQkH6HKmnWnON|U$&<prs58LspG5X-Ntm|
z{l<;ZY<7s%y}=WBHd{U_I_9%$rKpv`5@Ba&hc5LkKytzs!4_lRkspm0>gqAqwQ#9h
z6-Q7MgL27kLwW>yhNuhqweY~)gSVjSSXln?nURY3TA~7<df3Dy4ii=~Ve`Fr?;cdg
z#bs^&up2!0ns?4GC?Eo`NI~P0%E};Ih+F8fApH1B3?<|1c<7IX`wb5dj)&f3L*S|a
zd=G@HdMWf2;B$l_ytV{ze>t?e9xVKoLOD+vnHY!TbMc&@N{*%9e7+h)8Eo;r_0y#P
zdeo(~5HQiBcbf{Dbq+xD6o<Se^W`hE?AcGN_O&wt8R5jN;qQM^N2hseGF+L5;2eB>
zeC1)xljRk+>^g-X)s(hIAt7O!Rp&&s{qnz9H*p$4noZgjOstf0A7%4ioUwv$10nJ}
zgffVDnYp?Bs1*tI3U>#jKo{qJa>C2Sy?1X2P`QsY!#M+kgAYM0pbEu!L0JqW1`Xpp
z(k>3sV+dq6FkpERl{E@IsA^yfVuIE`ILV(ElDK53WxVj#B)l21unv*Z4-fD`wqx~f
zVKdQXZ|QV<>lV0A-271KDirCgdHR~wPv0<vyfLbZu(SH1oSyhhCpd9!HnYtyM^RX8
zEGr07EBt_^rKRW5x1vd5KIpm|k53UE<VR-_SsC&w93p)wfXFDEKop%7u+|`v2%DAs
zeURU+<n7zbfK_@12ZQhdpl!fMB(5al4?~QL61QW-^Cz&!%6)_8{~;hG6yG9VbLXL$
zjRKC3{UFW^{1q=i#egi!bLrng@B;7vFu0w7hVs`jF@2f=%h1P`#su#-Zt8YS(q}f|
zASkP=AK{^|{O*Cmp|PdKx2N1*Xq3v`{Q|GN&{&%KC@s-_s0?4!<ShoGe9bQ_d2gP9
z8r9L3ssr~<s^1-$_O1O@KBzXPrKJ%i?pEfpv_~Z%nkivneF*D_+rJ%p_iK2TE?VS3
zCcwE>kf;lPA!<Z<4myKCAgJO{6he?$LO2T;ZE)WSh>Khb0ny2mCkcRn@|1{5kQX;>
z+GGjRWcTjfr_oVEWipV~z=}ix!YL3NzDM_&C7w!DixR#97ePW|qF=o>Hv~;b<(qsq
zaY)?5geO2=mEfoc6I+Aek)mg2uEfuqnUizo!;pB5SajP7gSiiqpm?d7e@k`+h7)-r
zTbzH|iuX^Jeb>poH|`Ep1>>>~IDg-OSl$bz76KGr6w!dN5c2oa2nj@~0wm#FM}C`d
z%7s>8;;y=>`_IWkbl|+OTT$}9asma~!s6n*-QSNvz*&VWT;JTB4BYJT)KD2|@~ElJ
zAw8S=QNQ)ojPums*T5@l)<1$`3}!T7x(WD79Qd_{hK8g8!?qJO6+8-xT(^k9%lPZC
z)oYWrhf2GUwSdqz6qy!v8VA0PVF3pOkxun@4?ws74<P|mXj@_LmPwFYVcqSQ?6saU
zd(TJGS*hGQvNzxOkfqONamUsJ@Dl3s0d_|1^Wa$`Cir+wmixZ>FZ#a?mZAd(4}8=(
zb!r#AU`wIwWM3_>sOW@4e2zQyztDd_S9(fH1zOHL0BLqQ8AM(}SZyE+X!7`X@7{@Q
z0;8jSPMdJ?>A$p6Sm?I0RwGf&VbsiE>qBn*r51^!%8(VzW3J}F*Ef;`gTgICyfK58
zj9@DeVH2q*js(*9O+5IKRa+H2%_?ykzYn;!&Aedk_U+pddP&*=#IlL)04?eh0%5=i
zwK7p~F^vu};pV5qM~r2on>KShDDLBA=un0X=eKhR!*$3)AYNjq5+O|i&H~@jGBOI$
z+l!EY8Adi|fIS4(MaL7fhP<5s$0KS5{>HvZ3D=Q^JAg&Hpz*_TC;miT-R)qpP#V-g
za;+XXLHn;3;KWF3FgT}m>(&wP6DA>%vI;OA${`X>Fj?CVtJ#1cf<n6jirBZPyC0{e
zC8eit2~vdEcK`J`AV?t~(@{G4=52rBl5!mWEuzp@QK_=y7``a!hN|SZCjU~8Y!@~Z
zDL`Axq9}KH-E*)#5A%;#H9a!eW#Z79^+{@i*|?S=bLgCu^`zbI$4~mz<C*`a^SuD<
zAkTe_ojCYh-d>ih4e?$4Ac?hIv(>_aEG%(?{h%5HUF346u20cp&a~tC_<w7N{v&jq
zPy)B<w-HqXE<H#&Kgdm>S%)qe)1IpEsm?n&nc>A5=qjBsZ5NikXc=2k)9m@HkP$+g
zejL>NJm#McetNQ1e(C2LIl02W*9V@*<DH~SOiSB`oKV)@{@PXtkwzLe9jmr1D_r?3
z=Q5SMLWZ^IACQ!wo(YumUO0W`OaRy;C<Pc_ClkGQu9v|Z3LX$~S)6fz-SOx2bQ!p8
zp#G=|E~9<}VWVz3`P)zdNCs1hLs9Es$-PjlcumzS5!}kgh7y!X1*D5)xqJ86aEDvP
zf{L4(?jS@x6j!`XzVq3$DqdbPM56$!0S_-P;OAp%>gpHa{+ff5wz6ntT8LQv0LQmt
zkU8MK?+8Zdv6Q2@JJh&9MSFl9#YUWg-MUCXX*J<vW20UB{*|ZQdI%9f^H80@2v}cW
zm@8S>s-u14^hDw@tO;HfYUN^qSXhuX*lsweCd2F>wRdsnKeW;_b_n!%U5VmizA&~;
zacP<uBGA1O@*i+;!O6*-{`w>O`n$Y=NlE^oibv|}DxqYZ`L8MC2;J<=OmcqyJ)C4B
zl1)h921pDa>NDFfYT=aOFk+^Sij94NvXKzk@~iV21Te>FrBF0}aQU6V<sqpL@C!OH
z<>SY9L3;tpg6K3Lk4FO9g}?!6+;jUjQMmLnvkYz&uDGk+J8%mZ|2&ou0C)g+KHzMW
z|M+X61Hzqp^z>;kf-9i_S;Pk14?}edvxkMfy&9a{*j1<zCNaW&5(7>517P?MV1%v)
zQ@Cj|^)QK#T24-GuTkDj%y|q0CP82h=z9r5Dj{(fE;?K-;(vpW6}vp%;W;*rST;H4
zy9$L)`%WPt4QReUHZ+ugSfNlhV8kBKrKKH5j9?)}Z-B}J6^t)GEVNKiIbFEmog~|X
zyv^}6EtHUN#x}m(e1Wi7;&;cVr+JIkTICa|zSV_ko^35=t}i!1YjU^a$<D6T7w-Kh
z#rak^Dqid|JQI@Uog#Z%Q{dsvmv|4gEiiM_I!;x$tWZlH%Si7^(dJwGEIP|s+K$f1
zs>=HMGI>{glVr&q?Os06f1$A7OZ~#wg|QL2ub%R=qpIvhI$!o!@|3Q=fii(uQqWeS
zanXHW{fR+@)y@voNNYsYW6`2(;-P+d!MAC3^L+#600LZGnBqsJ+l{uD?Vu|K-3EkY
zTIdr9Xh<aR(a|T9U6}<Ao+_<v4iinPzA5Qwf|1_GVSIqW2^&UvePIYjI1fV2{0={T
zc+RT?4JV*O@Mq=l29n<ZI+=__0sNqAs5=<OXpA1UK(j#PK4@NmLP4aR2r~gT@&s?(
z{Sz1HyPs-&J-h^EKnRCCJ9-ZYrj7!VA~+W+x<rzRhdu>C_(SL&;GKaW@YqM$Q3}TI
zGt3c2)rO&OLAM^#tz1}!;JXjgK~OP_PxPu{jGM=J_gdtrN61<rXnw*kB;wMicD5y5
z9nunFihz~SlKgzYE)n|9_<LOWYpwA9{qJDr#?OmMJpW*h9I>5)Nvj;6UGfR#^Z^S6
zPVtIo)6+Je8#zycs08oqA!cY`9kcrKV^E)<!U)6#J8f>iR3@Y(DI!sx<ZMMOvbahS
zZl`l@+@jSD2~qP{IvBoY)+BSXRy9oa(ueDk(OzAjOFFqZSFF&tl%aHrmbf4QK!#fC
z^5;mwY-4F8zzS@r%aVh-=^iR4242o|k5w<*1)!-&me%N~L)b)aV@kC!>U4~Qs|NAU
zEPF`|N1G4Ue<D^r;3W*2q*d?pO+F2Fykh5v_53q*&4vvd-d0zGPpoi;whbz3X5rI+
zfVG0a4wwIOQIR|f#9eSg1A(HYqdVl`aRBk6{Bw0I2ET~lfpjuw8(H7BvrrZ+EYL)H
z3{;<*9eT2c%Bd-Zic`+Efd|+lfqYP~TO&FHdL!mMjCOpBs6lKu*mrK+UmStk*?d9x
zpa8g(ac!T!d|6gg69Qfn$nq;#9`G&-7nFk-^@?A>%korkl9ARFYv0q;a~KGATcNi!
zw$2<~199x5$c1!)XvdH%U@;RhFWo>ElYC=*C2A_PNUCN^Ln{#(`%3HJL_)p&_+&!4
zuiS~4hgbeA^z}BcKoKZ6{{rycJD6glWj!TucTBxpT??EYJGZhk(Y}ShG4Im!)2ih-
zZ1BC18a4K!+V5Sdo8tQ3IvwUIE&B3iHbf&vEGS0&?CyQ#ojZ1T7v!_aRve?G?!K@A
zI#^fY%tUPjx2`#`IYeT0D@jB{jQ$OStOzYVz~HNx>p;uIM2Sq<9@iv;O7;;bz--6P
zI5O`6$B<Fb=slT&f%AZuDKJ2N18`ByoLBLmV1Seqk95c5#)@JA@RekBAM3x^1tb*8
zke?&Do#vJ{ercim&<Bd0`w~SgukfCr15m<h+I)R2j{d9{QzgkT47?iCkmqE9UYf|w
zarbqGdUJt56RSH4<9R?Sr$+x|Ri>n_QQt7`9?va@p$R$mZ6#Rwpg6h@=u)EC#HEH$
z-vn{>5LQ9$RGrX*W1dpyzx@HIG5g%~O!)TfmoJ~3c=*@WU24QYhKtHK?3qpDpn=Dp
z>swlgNmb0Qc@xA+m<_9f?jQ)@Fpeo!u>rC;nJ==4`NZ^sz7a!^OA~{_NzVx4k<3wW
z{xrq5VH`MNJ?GxNhC)iKpO(D5gRn#3kZID#96R#65SjKGzK$T**~)hQi2U%^>iRWn
z{)*bls)|<tRM=^?6^y)<DSOI+qADLdW>zvcJ~zK0@Ljg2P5%gA%Cm%o>ML!|aR|to
z)3m<x6TFa#kfVxf3ca!d+*6N@-{e%)!flSE2>2bkzFr`bgd_nXYi4EZ|0-IFwB}IS
zpT=w41Oz8H-1)mQ`uU)c5Tc%*8g99P27jt*u*;zAjt*xU6Ly4{Qv(AV0iEElh0?Vg
zQ4M|b0~n*>gCiZ0P5mP{9qO}fwbs$F*Psw0%{KlR00dgtWw1h0@b=(&0dt5bNF2rz
z?w+1VH7%0EBLiFrDZlypQ=`2TB$8_><g45fSb~p&SW^Jx#vz-W$W}f{ZM(gssv#K6
zg+Gjlq>jdqL;^5oKW#*zG{D%BWOM7$HhxW5BG<#ARf;;BK=c^Q`%t-y%Vzthqu4~K
z-Vw4QUZV5YRDMHy(BCy{Mfc4EiTTOix=X%uZ{+tFJr>3Q3bICMAIF#GU8tPa2F?Xc
z58JlnjPP+NTDhY|tBIA4ga@W*mVO+`@P+-LCTdOLQ*Te+>?~mO#sx<P;r}slLX663
znv*kKFH*?#%u=3H>*u!K_WeCT>9eV+NJ~{Ew`jT<VL0h2XIyl2B~E}Il$>bu5dI#e
zq$q(I1aom}5KmZA<AmaEjB>;_4?r*w51K*K4GgzIAd!L03&55`%N<Ev=h#SqYY-fj
z7k6AK5ABc(mj$p<Wq5~Ac;`)oxbSRuj8}Ge1oTWByV_A3hR6tIz*``<Fj~HCZDoQN
z4!VNJ+E3_#zT&O;wSbTDG(#=2BXK4Gzaq|8R>^ZWV`8e%x{>2T<_&8K72(nQ6IqtW
zfG{ihQ#07i=FV<;LQP`0EvFok=Rx;TH9Xe7`^1AkU<E9O=Lq_3Fa;eO$H~u*Ba8EM
z2o|_#*y#Wlokn_{!t8atmP3@$M+1%mD#Xbzx%}rEwCH7xjp0ak^?2t4<5b><^VNCo
z(R;8HC0r6xf3|JoI&g#3+jd`utOoxfpc0-l9qlNHO^B>(VeH0y4oh_G*pT9qFH6@s
zHWYc*%|%p(6A}w#fy~7TKjhKI2Zz?6xG$QM?MmLYYp(ezq0-<^c&Z||btTL%Z{a4b
z?lZ(+!o&ag(S}v69k(u54+(|bW+PHn4{Fu_W3yKv7a@tK`57~e{Q5M1VK$AnPkDJc
z=H`YX8WZcbNxnxh4g?t}gJmW^BaFb2m=;M|8@OwUG=VG+=4@y`)uWO&lm>KR^YKCP
z=QVk!o+;bdc=pxauSTR~7CXNaWmLk2SP5b{LGSVr1BLOtvvT-@UFfNAqK}75fNB4k
zO*oS8AU4C86p}G8-UBNJstMn5<XPhZJmrI6ddG*k(6G>Jo@h?c9E14Ru?oxD!<oJy
zCQ=F$yE6Lu%19v&@Q3JLyv0gW)MH6Oh7rwDFhBnS=s_g`FKI}!)5WfmaEcr3)j8sc
zHNj%jpuQln0<bJ$4Pay@v8TBB3aQ*3i{=^8g5yOK6*xywD<*;1L?T#+UwpPluLse~
zN;UEp`h?&6`v;i}fzL%u(*xfg++1H)h<fAP4?Q>g&f1y*8{pwZbG-wXdOLgqE`~qY
zNt$3(S=tl(j{5R(rpxh^GK}G8B4Tp<Jl_YZKkeAT)=|jjUCoFxH0j5S<x|MjC!aEP
zV>B-DD<C&&!pJ%s7kbi-$)~m|Qizz6v)KPY0tvr&kF+bKXhavxCgX7v>LPTe|KJzF
zg_1%8prID=h}_+`IP=YJVcmgN=@WRD788bx@tQqR2B56rgDwdnoR&d6dhCt&4Q$l8
z^mCioWuhSRc0ngi018x-(U5d8?9oZY{Y7B(!-FjZdLb5Nyj}!Zb2t7vav=~61(rp<
za@~E$aFutV=|z2#T6)WkxAatevcCtIA6QTx;)S1W0@@T5X%<jFs;Ski7gCRxaA3hR
zSv&D(P~T;FFS-%y4x$7}1mJrKgKG9JfMDq8D9bRjG6=B~d0{IZT``$<A~i8m%!~7N
z9W!`l+-6A40J%2#T0lg$ZCSi1B(iPlyGO<a1oXB_@`Y7L3ic25PKpN{cnc_s%u3)n
zz=ZCltkmN}%+x~HdX)3?W$Vv)&c^**m>vS}_W|GaRJYt>CkhD~s_}c{Lrr@~`-5%y
zIWwU-SN&<k-r<Ewm|&e>zZ{9i!JKi3Y8V`<0I@-nz}rrBUEN4{F1klXLP2B0I2nHr
zr~#e{dxX^gpAi61RcIhy^PA)!sI9Ff!Xva7mSqbFYL)213Dp5~JqeF65CRgt5QrBh
zl-9W8X8@XpFz*k5Pze4yR4xzEcj%{Jq|{ZoKrjz20N)L7p20pLINT<2$^h4Iw`Sr7
zJa`Gu)Pa`t>+xLV{_QJ;5ETV--RB!pd$j^!N$&pk?H>#wLczScvlIo^ao8#d<baXl
z_~#nrwwairg0Ui3!xOeH&W!%DVPWnR%A4`I%B{)j@nHZ>pd;+VQOWlhzX~R*0S+tN
z8fM_bH`wK&Il2Q)btCTbrRmWRXt0>Y&u&A!;g*w&tB&L?b>S-QBqk>EnA*S^t0Ukd
zn3UG9hx0bPhr=vInZA4Iu!4*=US)zj`&yE}zk<B=(%1TWe`jph?o*q_Q83nLS}1{x
zXc8^mxNY}8SY;7O$%@aPV^LOah1o}0`Mu}HEnAXt&>)-a`ps4HX~bFLX$_d-^1b78
z(~O&6e8Z!*-+(;J_^#Xou9OMN8Z*}q;qWmd_Cd&p(qTU~2JcQ)0`I249|6%ah=dbK
zDhz06<EHJ&5ET^d+4gO>AqPb&3rS5)RSEEjlezdlUS1v>+>0XUm7DR>Hj?r9Iafv>
z4<aZMDb!xm!h7hmh!2VQalsiCgG|T@iz)Q&Tvf=2zLTIxc#4V?%V>{)-xB9BGMN)t
zIe=qz2y-^|S@1-V*O0FOosnI+l;I9#;s?X*w}{&o+!g}Ty1RH185|69yNDSGBl8Fa
z?${|u6c->fa1tVE>$+%*zyYFy;o~`=$H^g-Oo@(;(fnL@19NbkdaD@j_)0BwqN^ac
zWqLH>15wn+rVekH-+#`+LEYw!+XO)8U7YEUv_(q6YXtv>&{SyN3I#dA6iVu3=mIF$
zuUjA?mX?=`k`@5oD};_{F<W}|7_o<#FAr*gd@{^PR>Sf<F?cC}&&mtH2={;l0Ne}$
zkzv5YGsE04uoQT)31iiNxzS0?fyDxpCHZi~fR0s*MlizN+qOq%6G~w`ob?unTQt}j
zlyX+}kB$(j6SfW2z=NskF)bXKGxw>Nu0Qq58*22UjX&VTh0fD;r2P&m60$|O^2&2|
zaHNq0LM|w}z3$P`m5%-0_yr3>C4fN#IY6c?YNqP!Gsr#nfgszk^ux7~h|C1$NDI$s
zu}Gd%193`vV&v=xxL(A}xo!7}%UF^G;}fxn%_oQ6Xnw-20Jwzmh63gur~?>fRZ71C
zWepjlMVe50wvh0I1WoQQpGy699Xdo*tr-4tXEE`*FZZu><<fyYCc}Fm=Z7bKxqmi9
z*VUN|0r~=cmkLrE*|e54!@$tcP?Z8*sW;U)xR|Kh6=~|jiOUS<#dDnFXLWydz%Gt7
z)q|@~WcQc|v+MZ1_Xwu*m|jb+Ke^?mg<cT?r-H!|PU7ukXJ{y(VLpu140<FX&KD%*
z<3nggnNhmovF8W4%&@SAV#)x~9x(3J`v-)5W>%JhlG1vj^SXLiFYi1jWD6uYqCJOi
zC)s(u-C{o;ovTBhavpg-$NwM92NfoOLpp3VY2BcIe_>KEaSl;85yu#ld+@|E1Nrut
zc!)@u?eG~0%IoteC!ehuM_<!3IvNJ-0tq(-=MLd;4Jt)oSUhJnw-F&E!i-vQ@FQcJ
z-KUJ6p2%<gtlO~U&8rgez-xX2bL{cLQ7kD7!Qef{>#fcEA4wfkSV}_?2=<%AS&SR6
zoBpGvrSaXT(!b?RJD*+ieaii-A&8R(v_wp;P!p8A`zrfcNGmrphvZ%Lpdf)s&uP2=
z+^v>p`q%K>Kzkq=wTA8;N|eihQ6Yu65}wfb8S}f~l_l$KY01-J(m|LtoV$-NtTjk^
zM+&i6Ng+I;w+~&Sc~jLXd%dD7q$e~kX3^TJRmeZS8Gh4<eTIyr!v|i6g5mk|=kFKv
zC7LCeSeTHE4x^dj*M3ZkHVQL?*6}IvwZC+zK=J1B^V^?5g>(mL@x<R2oWTz-hr3e{
zvgIz&j3d*CLPL)h4bt?7I%x(th~BQatckeSL{)~m?bgkkZ!r~y5)$$q{20kCh{;5y
zbN;+AzS3*V4t29?|MB}$@Ja!%=|;u9S3?<<#wNh|GBPr92Vn$xHiqX$_95jT1J;N-
z`8#$+>e9S2rRWYCDqKyJsGHLi6r5#C)z#G=cXtyeGtX@##(*tq#Db@^DbUYj^y2go
z18@MV_D@grqGGLwt%e@@E)KL|h>lhKos3_tcNwi|!6h<$h-K@q(LZ?JGD6Te29K#)
zIsC>adwe<NeEvc*;YI|*3#Q*t4}gaz5_24SUguA{xww_cAit*<wcnL|xjNL*MD#UD
zSsOtxW8Oj_{tTFhsA(4z+59(GNBXy*=j!S24+ITDMhhOH-u_Two|<TlVG$(2$sHft
z*M50(Mnmk~K%DxqK=3K_zQ75QAn5|zgBC>q!h?RSFbP$tg@2MkIrpV2aIvyX_D!CH
zosADr45m8W!h(^|fj@%ywEQD}^&CotKJ?LTVPAjTruFT_t<^(lL+pLqQ7fp+^`+)h
z#M{e%V96^Gnwo}WyH<IA$Do$~4OA`Jg?w&nKeHoB-6SmiAW!M32tSY7z&QZ2c-Upg
zQ)zEYLqj*fU~??pn7;=qVHB|`P*I1lhzFCJ5>p3`-eCVgBkS3KgN=VxCrHwlJP{mq
zGFlPPF;<CWOibbUJ^ktSw1^GTM+KNSv^&CZ6yfbZ%$hmWynhfjQ`7{fZEcU?Xy5Uf
zKSsGOlr+jIxZ+FS&G8yUJ;8em{z4IA;W_I(MLu6?Io{JO#|RLY>3o5hU)^4vw~$Hx
zPF`Mrs-B9~qWJwL^_7Do{eF&LRbpZa)sJWqNRDd!3zd_*`|NDkU-7_7(O~~9-cM$p
ze@fLQU<;z(%?p-aVBz&y8doB`ASiR(hnj;i3n){f<$Zm0ENONejKE$s;32`G=Ctbx
z*SO&gh8!vjq78zwN;&fYyTm6tfizQfXJ4R+lx*<!J?RZfPa<iz$EzwBy*NhkZ4dVQ
z+aSkgymGyf>1%f(rFf_mz~!q*-3UggL6dW*{}+NTxy4iZ4NV*~Am`eJdl+Q@-~Gai
z_W^(qL2v@meUzH2iXNUx!k&rrGGO~S{5)`PQ62W-Nt+bZl^6ySkH!*@sT_k(3i=D;
zbp$L@uxvDLQK6UZA%fisVV8{oY)<%6^j#Xr6QtrtqU^yJ|3Ht9LAjbK=Zq1ENc{{s
z4%jE_Ws56WLh@8j<4HWF;<0{nDPN0x<6rs~Sbr(`V$?-9+CN-PE;+jMcKQEy=W+kD
zJHK@13p6np;r1LZdYDWe{0QflQ&2EEg2_MI`LE}wTNq4lvi{yW9>O6VH{K)vr8KCA
zX+=x7y(#O#mt4lYx$FnCH#rqoXfMCiZ_Dl6Q?$jPTzuT2Dcr0_ZpOP@^lYof(#P5x
zF*61O+m?h&d!U3wyvHZAIO-|}<;xkERn+htI1acoZuE@+5Bwf>Tn^|SLGI8Y?FT4M
zs1Ym$X0&!g7C|}<oR-(FBPx@O`yfa%L)L;F{t7@eRI*nPDDDX8JVK+7xqIOV(xT3#
z%79i5crS>N@p5pn0!6}u(&HJNak-Zz7z-V2zgjcVdB34O{qV>uF8Xd{)+4`8%<3xS
z5tZ%Yb{ia8j++T-N$wX<I(C8<;T(mCdRph!6^&noyV0u-Z|VvZravdA%U)?F<q9cv
zX8B{j9{=L^APt}*Ct0?4C)x9N*c`0hV$$6aZk_KjMTUTk|Lo#smtE+LlX+EfCxKOO
z%0m1{$k~tSt1??sOuAOC41Su-_FgQY_P%yk>A>Mgw(oV;br;8{L~d}%c4Kj5yrw7>
z8u35B%~%~D4YumjIH&z$UzvMZ2fLFDN)kXsMCL_IE$F?ZAO;D%!PfQOR2pa`;g}HZ
z!KCgtD_P_$1es}4=tWf4q&7uxdq7|flY$sD!7nf=sy)|{c-#^DwV!Ge08`kjRTxIr
z<B0B=nK=Yq)Q_(UkbC^E7GT-%ks=jd_pPCk^*N0sM#S)lMm@;duU^et`+KY?9C_02
z$(|{#;nJ7O5aQZUVxX&Fq+s+?nPMkFHC`wEwK{SiH`>}^YK9e;%g~XTncJ&5$jjp%
zyz*YmX=mTDto18*<xL>73m{=FFU(k>CY?~r3l9Ii=vF)GH-}mDRI(<f$nRS2xFBfy
zx}>*S7czQZRdw0A`jPP(n_<OyXCGH;(-Mx^b2ohi!UE)guS6a{mhGh^;`Y@kuF$Kt
z`c2C#w_X7#Kl>)`Xs362mrq7IUY3+8^7S|FiD}Hs`V&A8(n}z!t&;#MpqC}1&7hBZ
z0Q^lK-2lmlsHDvu9ihSbw4QUN?*l951`t6GhS`BTB%^MzOc3l<l(z=}|0OaL;(CCq
z5ggGj9-hA;qzPu^UnsVk0>eP2E+W_<eteqD2rP_~gXTYeHpJu5j=gIF_ggk=HrE6v
z-nq-T?iFnpeK(i%?<mo4Sb!!pMsl@|^PIVTNW!%>*BSS9hXvo`JAxJCz{%&{zh6r(
zMopdcouM1YHNyrZ!Yn2;S-%{7dBrp(_gzKx8eLt<FJD#)1rA8-yv+&`Jh--CU|XTz
zi`jEOe`vF9?(p|`c-!V;i1|`g&zAzX5bjCodWpx3Kv45uzdG6UE}XrG@%hZhQzl9B
z-&Zn^_~kx67G0!}|9DiAiHTXOql#YDW$UKRQ~bK=Y`s;3Cy#eBZQZY0vu`gnuW##f
zWVV)vox#+nPwB?7;IBzPMF0>`246}mKTV~owq+#=?>4;aY*qCW?>>){mFn#+18VdO
zLzJ-p20;(<QOfzQlJC{AWACi9C;L-?;FCfI0doR>fPmswRT01+>JI1`#^n!qSzpb(
zv)N52Iiemc2sxx>|2d@YeEULQ+BJVncQ6!)5Q<NObbNn;Pr)T3yGG0O6CjIK{CzgS
z-$*b1?|%U+PMj<ExnEEBv^r0%YuO@bKKO@F@X+^F-@;w;1_tc<oGVlDoTC!K<5U&L
z-ekvjmbVnQWqtQFbsW{XAs5bgb7Ej^278?O%G=X2s*K4G+|~|d54@-G_Wbzp;*Of@
z+mG^%b^ax(;Zr5$(fzq^eaZS|MURT3e(sKkky!Xm3uPc?0M`>jVk^c(x6g8Dyje*Y
z=*->6ezbRPCZkmdm^7^E<ZIA`6|Sy$f|{ytY^j^E(#^IxNtlB@hxTy_I->?S6HZ$f
zhmru(<IXBvz2@ZXy7X+)?5w#0Fhp`qUHZe07Vs^_|GuWQZKUxMlPb;N6S8jGDIYwz
zZLXWP$YtLB_M@1SZBJ{~cP3mqZ6}eO|7|dJ{gOn&#vMDVG_@t8^bL<Y_jE|j2yq-v
z>OQi2;zq^`+Zpa#hJxd}miZ%_k2bt4e8;C@UH0u(h>7pj6q?%`X4BQ?>+<#@zo?Fn
zO$p~@mv_|DK`z6#W5@Hf(_v2z9h>N1{oL>0UwN%oviGCpz8h)p-mEs$0YDbeJN34<
zmb$<(SW8cJIK#R$R5<H-Vt(|WWiPYeXCxiD!o|DW?6iN{{ml|NZmq5D*4`XSo~!~<
ztS4SSW^AA5DLqmfPTOKn-`y68>FyI&)ixX~3#)SbS4Le*mcfhNxY0kO`}5-4-<gB*
zgG8zrw(ckE`(7j#r7FbHt*$D3dFi9teMA1+$p!8$HKQu-k*oe5LoY3TLPrqYUEfb)
z0iMmu9;QFur$^cTQBW;3=i2<mX~%nN$GV(VsQLN(rLrxkGPw;-E_^oEUv((FdhmeQ
zP{l{7SY^4$lB8<>#6+X-HWOxU>8p1vlq7{8pHyeVhf6VL3jDZxm!NTV-(3CNS=*B;
zs@Jpb3^(p{-chMU^IT|t!?DT~uydTK_%`y*zHsPLe*N0kYymon_ZR8AW7HL77NM@a
z2<)|4Db{;vs%Y`vPlDV)2OBCa{J8=#g@($BGfRV%7-uPb>;=VNBM!3}O5Ue%9;Tw<
zD7ne$xSdYKkKKXwTTf!fP1+1i`KY`enu`%D6z@#qL7m=Z+D`h<8^4+#<nS`iR4LAm
z%f6N}sPXE-H(DX>@_Q5N>qI@553L+<4{!<0$+WNaqIciXSK8*1$o91=B5wMzjS2O>
zG|g>-?Ua)n-JAwWj-;<R-E4B&ua|X+&+~>!SMgWrM0x4j?>f^@9wi;|x&O#x%Cw|p
zSxM@Z?A@aV1`$mSC8eorN6v8c)UCha;U#%zQfcP7&$vC~v-U#`<MMfzdfk0YI|6rZ
zcTrKMTxUa7*+!Hms01?IKCl>wIfh*;SoTc$`afC*@deB`{Ef2zCqg{oEbJQC94F)b
zHX)Y(p1k`lSUa6DV*{PLvP#tvA4Ac*E9&>RZSUsenB2WA;%V`wp?8eaXPMTpZ))C#
zVyFN23CEw8*puaZ^RFJxzo&J<pia8{NklbUYZm3<SHqq${cC+AmqZ*Y8EZT8Dw>QN
z2frE870_>K{WRxa(4X!!{+3b4&z<}I8|s&=xfXA;|DH+w(lviQT+N~JTL!Jr(djGI
z`nSEVhD-Nb`sYQvs~#-B|7|8A#prYRKMI!CF>|L9&Ll`I30v{At}6R01u}iEVhuD$
z60$z_E42%`AZj+H>d-Y8%7$&(qA#RGvuVTW<Mu>IpYOA5(8jmF<$oL%bISG%j*8a_
zk{&Y)yh8EvT_BP;etasoRm@3G{6t%4!JvHYA*%~d>4-Or@bIUtni;!9vNft_S886A
z%`Q2A|C45HhnbPG?9vbK4RIH5SKI2gved^i8mvlFzm9ffJt!#uZe%@QRC{t4AjnSV
zyKHlM6psFx1ZjJgZEDi*R+nou#oHU*icgBZs#_>t`P)E+a{V4uBiLL9iz5nuaTXVA
z?>1$}Y*}=HN+7heG<4E`=TimCc#zf&rL-++92Ln4l6e;{u^Rf0hP|=tUELw}Bcn}^
z>Cvo%SyF%pf5wb!wD;vm9OuX1Xx+!{N{1q>jbvywR^7xq7WYpYI1J=X?ak$2w>}yh
zAeK4H>Cs0e*m<yQg7fRo`i4hu-_T~X1%zF%J-=8_m7KGjOG|T+wR^UXek<c;-7EMA
zOTDaGb|<(7Wh_)Jy<<M(eE$0p$P9R(t|Go2GI&C&61_;_Q|ppWFghp*{__Do(RPw_
zMU!TEG0!)QL;P!j(+1T#`QGtrn!`&ABU|ka#hAXD`^(QAyuMDBIe+NK=W8z=D2aA!
z%KY=}Mgr{f79w1v6Xr9mny@QxrTrM4`0}O){(jLek@zG{@=Bv`fA<HAz03^^G-<g?
zhtLg|JUfbwk$E>#5zpGq*Wo!MGu$8Zsp3V;S(Bev(-K%eHXK(l`o5RS=>u-r0U~7q
zY=;Kk`wra}gjPibqu-&Gz8imjecS#_x;y(+3udR=c{e}ly!gi(N7??13-R`GU#{F`
zC`@{M&LP?HKuwdU?tyHnn6onr+k}=zUB4eu9cF#{lC|uacdp0%6-whCpTxsE_WS#L
zSQQ04%U_C`T<rUpkv6-y`o}lmYSpW_1r{~-jhFv1bY#(xFD*0V)04<%?eO(Ix>V#h
z*BK`pNgGM4%lPYu7Tk91m*!#PEpPg60TqR%Nrk1EGT9$2TAQt}(~o%<I9>Bu%HAE#
z=V)?s{O3-2ciXG??=t#d9~8B(mpI<(`C&PtvrRT#j-8=!ad_DEW5YyJ#rq5Qe0~N*
z)}70=d&H-HU*5ZLrP{O9I?k)+<sNCuK;u+_{G?6Co#?=^iJ$dm$vIDzxRp4r_8dPy
zUwg6n$kIRF`}R?*P*#i3@Z#7ayKfKvjb;1}OuU>cW1MmlT?c4JP5Y}llJ-VPhgWLx
z?RO~Obf(6zy!o1S-c&!giA+Jo{B**gc1tuDs$wDSh^NNMndiqC8cb#Sikr6n&?~rU
znyhZ6`Drg>`tiP2e`y&X*Vs2HIt|HjYm$Oj3@P#5^WhdX?5&~C%P-ipCdwUBA8JfI
z<{cwut9ass1&i3vlD7}UE^TSDW%Ufv;%_;Sx#!BbtYMGVL(x#fY3uUf&b%16$l*7S
zY{rI_D;u^%tt-o#?Y^L?VQ;-0H7a%?^`DV-Bg~>MvVo4W-^(Tu)|PV<l4%y+pKSD2
z7|8pF6nNsl3OuKWznPi;oTZrU-CG8l<3A)Pv>cPoyO*?PdG`V{XNTEG`r}^<ieJns
zEE#5hIVvpB#YEE>KgqKXkN*m~bak&4OiH}zJS?ZdA>aMK*n7{QD!XM}R7DArMG2BY
zK_zFAq<{nkL6M*&$sjprP_kr1l4KE3$r%Jha+WMPC&@X7dHTh@_Wt%h>(u>m>)u~y
zRjsP8bUNpF$J?X3NB8qQJsD(8F?OXR)Q;z?p~iI<7M9H!CMju2cTsxngB_{M_6a|x
zPFG^p%5B1|=W{}LXD;ons?GPVMzsAIjoXx<{;_v_LO|W{XUD){XOqF#-b7cuMmsX+
zWy`nBo4HoAoRKW?;zVo)ZI5Fo2?nADf|}zFrnwDvO>{M$b2IT$O*DPA9=TiQIY6~z
z$-(5Ul-zx_7*lt9vy!6BBEdM_KF><&YCxpvWJ&Gq5!d}U${li?m5OL1MW?$PdKe;C
zrZ!MiQ?b5$NsgDWEW--Ut`w#6H_pnrtm3;!xd*NcSBS6fTsAoDZZ`>}u8l5^xSbh~
z(i9ze=d;q7YtpEMmrd$Z63{m+!lXjM;`_@cHuuALFxBiI$=#!|mCQuG;I~;L`)Ml4
z_&=%=Tx~yY$N$>QIyyL+A^W9X`t!hget&v^)-Ef)wkcbdy}w&@Uh|i-_jk$#VcT{|
zIkDftH>|h!`nEIHg5a=R!oHSf7FFG*Ru-PZcsg->fPK6H{J2$>UmljDmMmW%Z&dwo
zKlQi=vg&PqW#m%AmLAr?y`Bsqq7bn3@oZ$>*xr!VFE;Zli6lNK!d56-acHPxW7M*{
z*jH4z|Ku??nt}TTUls%BZmUBc2j}bgzdREdBSb&lwb(w_Bj7Y?9351p03{mge`ick
z5^&u76rt%$_b@;q({R%L-MW3N<b#!(t4tackm1a9B<|&)MDSl86yAPbdaK^nw(I22
z*eM0&%JEF|*5ux=ST+%Oz+@Fm_2q9$sS+oL`$vaUFVb+*>iwUU%0Jk2YdC08z8@?4
z(BE~6``ER<^LA*Wi@U4(ThV)0Z|et#<?%sl1;#0JwWwZ8F`N{g=?M1~bUz|Hz+RLu
zHRK2k4Em~C!n%_Y`!qxG*4wV;5f_WV7pCJrrN1>fG~fdO9iy#^Bz7z;Y>Le}cgfcO
z=`nRW3@^gYsyJwdToP1}{SD{S?`!;@Y(){*^6}$V6!FxZ3c8z**3}2|KipRIH{Y5S
z6X<udqrFVbEWOaJck9J7a>{sol%S?C{hhl53cr(>LE`Z<FiSqLd<}9Amq#}%t&4AL
z+%J<w`*!Dm^TU4@{IDMadiOs=*fXeJSGfs6<<rpEm`Nz1%KzFe$z&_pKi3GQtIi7<
zjg_+U2xdHOts)eWjjJsd=`OX^zl3&Ox%PQ;dJ!P_0Bp<tuO{=qvwUdMLf2&i>Kj0-
z+@#+zR>`}3)t<6;PUowjgGIPV$ErbX_f3;gcOPp$s?8fKmwol^Q?dizJ$s@Fjnn+!
z6^_<OJJ`6tUJfEJ#01Ev)o#5%E3}f(9U(QyJ3bE3#(}EBeNaL=2s`9qHmAKD$)55w
z@pjvo#T)C}{bi9KTXvR|@8+2cJx+0w@B8I9<sGr5^tQ^^0UC9RQ%|6}w{w<-{SVg$
z&<&U$1iki4fL93<LCsT`$nMtXfsN_4C|9REA$nP|CLWcozR=Ad7@9P+|D0D+@(6W=
zSsI6L2~zEWK|u()2ax6+|LTDJyC8Q>>=>x0aUcis7a+pFIoEzP#+A|%tn^~FZm)c{
zBas@=%Ya)4Lb_(QIz9@V&NsL&K>7B6dz%;zr^oz&Or-|}$P1S)OZmC$9Xb0!jV2Dj
zv|({^ZBU4{+Hv~ZDf@R{(TB{)1UMwd@<>@YFazV_;{j+EL4X2^g{H8Ljg5t^tse9>
zAUA?Sofx#M{vW>1eI9Pr2sj*Cr%=g8Mt~pyzq@x;(vpn<^@;H1{-Yrcke37z_b2-L
zY0t7fsiA2JQ$L}M`#-#?BK}5|Gdv|in}Z%HY@AYBayhg$p@%U8wYodk#*v%Dzx}ti
zmo48w^9I3hZ_NeCh((2kCFh?<a9WFh@28?+|Gbv>vebFYU;01n_IrZA7WnUzg1@dG
zY8#M>{m-oCZ{+-U*4$g=UHT(|O2WqnDc(XovPCyPmT&O89`?BXl21@k(HZ(4xk#Ta
zw6V&kG>-$Gc^;bIkK8k9!oRjaPwnBBemfkEb|^JOAF$DyCFOJ^y+wo8X;`x^2L}!%
zrx*IpqL!A~X*0%!i1>IAZ}H4GpVDOc$6_gjU4R$5E_XUgN_PF(SM7%&=bW?Mc$qWi
zTc&%J+rERdj^V5IuHm3m?@Mk!eoz2(Kpg>5K&$vbSH4L%f4KvCn*ia5PDF$&5$g3n
z&et^b-T~=y>twG&CQZ5^zwonJ{5>dzstxjO$aOcJArP=yqjZe4lDC=O%B0;cVCRF;
zS&0DJzjefL+V}pflJIu}04SVq>-?cv7bUDpPL6ch0g{FM;Ef=h4d`!e4X=*g<-hw%
z*YL|WlZQ+iRzXowDzp>9Af@2vaw7kc(E;?Y)nnfQWJ<gGdlU}WoMU8&lm-W5z<#X(
z`k*&nCn8NRMlp7}q<ud{B2jStgABvbG1;Fbg}(M6s0@GIru>-p4>OXKkU)nfNL|Wn
z#Woq)h*JSg28BJc>!cH^8N~210JNuk_QV5F?wQ8}a1ZqQBo~y?V`N4R%=9H*-9HC1
zag*R1T7EdX7yaWXSe+g_N(50zUn3z&Mg59u?sffr?M^2xb08pF)}e-~H(ntkt%D$b
z<AIjLAxL)tZegjKw7Q(O@qjoFA_vy2iy$(s5bBzPd~5&Q1r3-4(zXV`8kp-sK}qr9
zv>aC5xB!J_6J2pQyFmG4pr;ob<Xb^SHTdicIJ+GM(R#wHky&r=va*Uj35KIKGP3L1
z3dtAXhq#y+d|<aX4tI?8#y?lR{)Yp11Of#D&OX{3pPpO1)5!n6IiEv;i0BSL6hQ)(
zNhy<tg++FdZ^1qF{aIxgdNDtt0a)dLz?^|e1pT`SwXatiBqU%MMze0ddkolOUu6X{
zY(X-Z;%U<g{Or<57{(?l=0D$Zf-?fLhwA9HO@U2B;|5S-z<ywEYv<r*mp`07A0tDl
zZ>%E*D!~APnTOWOW#<tm0HIKnugN!`y(oZbfL`~X01`mT19<_M41nI%GSYer6UTtx
z3t;zGcfy;;V&CO)%%!D$D9Nt@F}dqJuRC+K#JoqSJUu)}@7a9GU(@dWFXKxPKxi2V
zAPkUi*LF*biW8{;c>!JB&FI(|Js~s2-D$KKnLd4}Ps8^DaYIG<%Nqd3xw*Lk4quA4
z1o#FY*{A0dt(Q;5U=A)&7#^TuoUR2+KH%cwsUK*<q!+8r1mlCF>E71VNuZ#k<2{bf
z^np#z(D2_b2DTd5@j*521|L60zcSJFN*2_QXcqo%UxKYepHd>1duN~b&ntt*Tt7dG
zaun>1J0NmA(ecDJ<;FT#!i~D`+~e;`w>Q@tumAF2o<-0eiW$h5t<F0)#22b`^f+U*
zmD_7QjQ~M8aN_&OXCIs%DTm8lfI>e)VTU&B`m4f}^%yeBtmSgjqQCV8Z#rqed1R6e
zbZ4Xib42=QiRol7Q-(od<mDxd0=xE)e^-QoV5T3uefu9@6az{G2*&^#2rWOHpQ`?+
zF*>X^x3%dWZZALqU3H<#SdViss^h*UwKd2zNj|g$2^-|?4-!;?IA9l-zI<OhE|-Er
zD#{x+6D17%NQli+GBPvZdj97Z-*ei&1*0vho13x3(9lv*V-eu0Ob?x$1_p<^PmT}(
zsa)_F<2MsO1JD_PA|aS;)DGE1%V_{O>%rKtWLn<ezk4&EdV<0VqQRgyUi5|MKOME8
zeI;xsz?MPLMhfWpv(h(WWN;1OZFyD-v8Wcl0)<}w(-$*$$fwqKr9L1d2k+gx4#Tw^
z*Mely^b1M~QXZ#2IX+y<8G%kIkiYcCv;O(@d#UN^)(71;L0b9&E;V&33NI2?rJDLE
z;!l4LH3Afc_7zM&oBQMH^T_vZh3ojgrb$3Q5D-XQK+AwF<S?2NkC92!j-|L(4@c@?
zHcC?^Ec7RoSfFXeo1<B!v^)B4=)YX2wI+}p5#U1IJ0d`;A&3#+MO8yH(eER-^g>l4
zyde=@qbo?e6tM0HDGGog79cDGP9k)g5brg?)Ea1=ghH_y`l$Or7byd&JlKrsp}q{x
z7#T%SXh23o!ZCr4BRB#ky>VMZK<51`T9+Yi0&*pUpO54fFJFJ#beC+^&Cg5)Ijf@H
z=SUM2(2ou<91XY}&3#8$MNq}{+8_F_KqrcsJOm960#WE2LHF(~x%~h3&lK@2odpCg
zT<6n2EHtWXkD*uav|Sj9c}+zH2?J*Gr~g_Fd=l)DnT7ew^0ExXk(ldk4MPC^AwnKP
z{^{Ar8IX{3$G23Y%nCfL7R(V+2!}wRx3mU5NlaR+D6dii(J$|oeM<i_)p}ANlQ`L|
zu_|oXE)7K_{k#vZ{L6b<)}CcZRB6RmAz>25<Ov%k=x0*KLvwX)Yj4YC=ZpHf5B~v@
zrwyGyCkjw*H|zBLp^HKwI>UOl79te<$wwh9%a~7)NqG^J0dN76w%5z6bU87cAnG>6
z6j98u@_#*A>nZ>LuOICggV<r2Thdtc=vsxK(AUXnvG(gcUnZwLOQJ{=M@KBIZ0cIN
zufXG`CXS87{qw=DOy#>jffAR2uAvk#Gy(7qfo}qmBT#}sB!>{;G(_^d#EvC}j^1eK
zGnP_h<Rg*xGI&B-uO{_>y(AQ$t59XmDp_lYtmyH$a&?P8!~y~?YX$_Q1LTimV7>~v
z9)19>30y76kw^oU4Prsah<gN0hoE%RWXYFJOe5T=taSdlp)Ogp**WRHw%(T!RPb(c
zGQukXQV)=skcJ_E69<L{fWGuD`R&_oIde03o*pi4_MafzTx>d&OCy{B$o@@0kaT=^
zL7;7*(F|}}8)%@xuW|5lK09=5Y5u2qY!sbkz~KI$+gN=v3J1_Q`&;PsA_G@|1VF~=
zzz!2MlPsqjkOkdgWsUwA?V{N6;W12X{I2lB#SsJ*2jJRR%$8^mBSQJD_Sr!v3z#f;
zu0leoi6wFW&9*dE{Zyl46&gE2U~pb2Nag~N5E;q<KyC=?Pm^67;fNqy5`ZSti-`r{
zr6PMg%>`3c0I!B<TmT>n;86#OX4b$)MmQk=!tW`RCIYL7a2vDwZ`SF;6Spw(FD!s8
z?dmIYxnW*Yl?p>bNCy$7Gf=4HzdpMO8ZJh^3vUC~Qg8dqQv?hGk(iLj=nCMr(v>?B
zE^?a%MtFNSR6SRR#cX9N1pyicMtQbC*Rkr49b9Uv;RQ!iTzeQl1gwnzxe8q5Mi3J7
z^|sc^Fp-Ekm9IN09=e)941!+e4R)G02_Qm%0FD5q3ovH{Vv7qiDD75W0?S@vB#u8Y
zIPkM=hSCc*W#!$2mal*!x(k~-RBTiWcqE72<(L{XcZdz2ptNxP=r_hct@Vcw0Ur-X
zb-_y>Uh|<kpm99`h|qwFs*bsVq;D=ez;z!0YB`+Y$!A3=Ob{6XU<DSVq~wU2x{-Vi
z)hN)uAW4b=WM&VfyZ%p}JQC65=fT<tQS+6NB@;Fw1*!$=;N}AL7G#_tv7X1y*WXlf
zU+N$JXM@MfLGNrnF+v8k*4FvDIOkKD#d31AqhqE<adNbKGs#lt+xN1`SLPuQMS<u7
zB34t7X+j_dd5nq4)nN0im(TY$YkoIKEX*^dGtiz+esgpHkh++Jgpa7XJ6J-ddI5UX
z%OdVgMdE)RCqpN{VHH)Pk^GxL*I|Ug#DHDSWM)}7sKu8F_SaSsznB1;S;|?DdKhH?
z^px`<;0++o<KW>Nz~9kJ1}4Ft7MhKITpSyN^HI~*`+Q-Z<!l8&8UXjv6gE7us$Oo`
zU(6CoO#DbB@p9D&;u`6ckwfP7v2&YX59U7uKpN<2T)?3LfULi7xd2!WBBTM>SZz~N
z+1TG%F<?D4fN^hZ<bwIUa}D)~7LeO;Wh@*Nb|7m3%<&-rYr$fA2RhzF5}+&);4`=p
zek*bS6w*{W?|iC=i0JM}|HSxDx1Hwe00>yP6U;(v=QjTx*z)U_4TKBGVcbA$0>T$?
z*(9bKf&!`eg5h|pya1t5vtaKsesF%^YY;HokG0=H{CRoHLuKIrdIEIh=P-=H_pk&A
z$okOHN0tCuYm;ag+Um(3|85Cu8kGZ}t_u|Z>JlZE<E7s>f$0x7E#%E;BqSh54l=VI
zKrqBnP$Fj$NLDG2=YMgVbe@CM4{`a~&#^=_HD7vrb(Sl$0dzGfY;6h3Bo-@TVjxTL
zICumd|0d&>&e|As!88`;6}q5tAnG@A6WNT{qCH}QE}b;UkZZtDgC_;JJu=~Dqc!sd
z_v?XBr_)nF<R&}~3+vt8s)f@s1ye@>wHrvu#lQq(_qN%2IFQT1b6eX~`!n8%;f!<r
z%{mb^01m4Zy;g*ucZZjSw=!%z<6P%?0SzHqumQCttn~>dZ5>q3kh}!UF@%)E15_6}
zp|ljor1(jpF&L>t87ZVcD|teB0qw#-xjh?X^`AfbVgz01odIb*lkwu9#KXPD@1mDX
zva-HH{s3y6pzfI@yYxGdipL*bNf7P^77>H4K;7DSRmTln+zl{S0Q=wBPH7z*EY(8W
zS^VACwDb&&T&2V;{wyY5`5Wvt#r&uN6g5`qG^v(H7k|$dDe=J3`1E9D=;9@Gm>qrI
z2Zt&!DxI<D<ai+VgZNRWyosp^L|I)>Su+`|i0OeTexSn$b%%GcT)xy!+nr5OY07)M
z$S{^cybVbAIQj29T1XdR)Hl;drZPgstV~n~slh?UB<9G(6eKuy-=Z}V$%-qSb{=U(
z#Sn=4$sw-~lLuk{Hv~~;Y-23*7lG3ReYu*S=g};_s>R@GX~o@hd=FbUrCGuXmtRCy
z6eRLxvp(`{Z0+a)V19e8KO`4OB``HOfS6TRNd|}B2R|Luh;5cT-|7Q};6>JTA9VCb
zA|d`7kVQmuI&yX-3bp>WT>$P52%ajQEjuYk4xSpwVWBJTN&6^70{pzl$>*?sdZ3Hr
zM>@bBX;iso<+jSen@<0G?j3d(BP7o1oiH?;5pg8nV#$G`bQ2K1f5^BD<*S5o$+;)`
zHQjH%?!EyTWExa=5q%J7*MPnX0w|4vvE+b~YRr0cO)x_-1?o(QbB3sxnphR50vI%X
z2}uKiyMVESaaCMrB^1Y|caF}EFiM&fq@zyjwPOB8rhUglo5lW&^zE%k1%P*vgD;#1
zm#%5!hy@w6;NQFkNx;1}rXx<@2&MlnmL*3xi-1^KhiEqeau-F$Bn9pV-ftR$HgZ&>
zfSkq&LbgM`KHcz9SXw<aZ0`aC3W#P%f?{C&7;f~4))!0+vRUoL3P9<s{TNTVvxN#l
zfo41l4IL#R_U`xHB99#%Hopu%J)>k#k5}hM>RE3^UQ>0F620JcAM@sYDVk8P`<K7=
zIP+U4j8pr($4b7X#aY)s{e3l2s)nB{y>fLE$`ad6osQ#`d-=!1<{L*R?)wfe0c0FD
zWj9($tv>ooWKGcQs8K`(;OD%tD}}!Va{60=Btgbwr5mC)X7OwMQvoK>Df~vwMCgr|
z9*WPXT%Mw%Gr;QMKA1S!D?dp-ktvEbs|f1{t#)t;BR11Pf`?7?2n1A5)4jb%PN-gJ
zZ=@FVO@G2&%W*o0k5t4>5L_K1;Ow$HXrN}j(>LO9vV(Ayq1yrT(CYwY-O}VswV2lf
zign8zAjW~}WlDdh@T_!eci36C^!SK>9wf%^C%7FNfp{cp`>Ji#ct`Ncu;WUfGMU>#
zs*siGKEL}Bc@z$13&vVij?n@go#kg5Ryr%<7x}taXoq`iVJXoktUsdNN1T`n^nc9^
z8D~#UK24F5d#rO%GQQao%@OGGhc@j=d<z5y#MS`6hH&NJ-n+h-k;7^6^V}HR^I+aD
zEGt^jkuyZ-@KzKq_1MahUD^;7eFlKin|N6s8F}{T*|QKA#$A5*fM9?8>vuzyQ9Ep)
z#b{_|COj*un`We4^s-r_?EUBF@G{*$@~n4J$7bW{TzyooGlXs@JN+UqIPd(L64TF?
zf3V<=n%*5YTgs!aK-Q0Pp2G4`x57d&=FnXSx3M)BYra`WBnKLCUi79g9To)q;z7tD
z7G6Q9aZZ^J$iQv1vQ@2*Sa<9UbhXy5R9JTamhLvlixIvPKV8r39T<>ua=J&KU6J2N
zCFdLRm66Il4&k^X`T?DtZ+aF4^;v9gT&bSk=o}bm0$lq6K=K?myh%s}4dqMLYGYoz
zi_B9XrUlUPpMc^oU*x<=N0)y8ftvUX^D}vQB%gDdv6-?yC05TE+WQo67ge$4;Lv*u
zut^8t=p13@rX$!!2-XzD@acLI&6yw0YqQC|REWF|5({%QML^AGRHt@-yo2920CLlf
zPY>M>Z54d9<W*H$#qfoj>Vf2WBplz|vFNeYVQ?RHDu^1fb~&gg0rJ76kVfkpfw5`t
zI_6VAM`$gQZGNX;V>*AbcEPs#l91JI^Q7IW<2*-_yE_Qmub)=89MREPIbE%LDE^BM
zgil@eM(wvN|9moY_Y+ZAv2ggY^-JJjCR|Ph$j;`KJH%`i>!LCQiC`BXA~^$N;pcuF
ztxhkbC(v<mg-2;Pz1#XFRMP0PZhgAT2QS=(%57f@OybFsgVnuwWa8+EV<YA04>^PH
zCns^%q;SpP8+D+^A8{9v6WY0&qUrR`y>j!ij)q%|L4w=IFnpo9tdfzM)LNgNfk#Ix
z!%(&ZC^qcXqFnno0>Us6xwD<0+HknV$~qSrYqr>>bsSd(x{hq+f%6Hjksyb%30hZM
z@c+h(8<71Vs7)Y?{h}-x|K++j)=F+(QO!~^(!Db5mNxv*^)UBU^#vGdAh+aj*<19v
zlG5f{$+-T&%_y5AxB7B*i_-%&2-P9f2dkOtBPDDp62YI7lFs?oc0E)Ewk^NnnGcD9
zixj8M5O;Rf>UT5uXp!(0bJQBjvie}&dK#B+eLyE<1CAOM7o9MueMkgTGy@Tqw6n@R
zL}SUNbm#lTh3xAb9#9yZwkt26iGK9t$sFj4&%(<_wO;D3(iT`7u`YwNg7~SO@0^5T
zW}lEF6uEKWf{1C7XgVZI$|VX>)R~u_IwiPlN{<28Et=-^x2ib@V6x3BXNl4ANIO%~
zKb4p(2a#4UzbN>Ule3mjpjR*m5WC3+a<hq=vC48+>b_rU$d4hnL2QvjKbWn{%I_vF
zJ`<uqKtjmhDo#f@V#bFES=*1h+Lwq7BsTwE^1v=Vn2SY>{9vyNMM+fG7)0I(DvixN
z%9^9o=?m0m;HBmV4HC5A1ULvLunMH%)F#0&c0{{>*t~p&ZOier?_~})>qHAv_N%!-
zGDtTL<SN~Pw)@@3qtvhI1<3!XGe?UgPJ&r9*;Amvl1l%43Micp7I4_8C(#kzhX{sf
z6@&;M-cnX`a}3F%8~;Jc+6mGnoTAC{QF6EOd}~1$EO)&YpX{Jh47d_i!+S5XmR=@e
zv(12?(SHOaal7R|-N6)uga^}S$3y$3YRTrIaSq4w`^Qcry~|+fQE$=E*E`%#!vW(?
zO;o4pyut$wgXZ<eY^nX1NNkRF6PoRiw?4Q&iI7i0*MiGQrfk&A?exGvLU@~iWOwx>
zO2vLWd>A?Gkd0aP$nxcZ1p=fS)3?@OoAe4{Soqmy2k^%~@ec?fJ6g<86LxVZ5!tra
zTY@94X4QOCaJy3s*pX>HG^Z12_!iBb$wE$9$CFbgnl7jOpkwHMSUH*A!jAJXHueRO
zsHDRgtxs(Gcm8ygFqT-OPVFJpYh%)B_}4&7cGBl>c?rWVCY@Q;R_Q1*Ti~{|^oT<(
z?&#_IxZ(;}N7>Y7t0Ty@g?x<`25k!s*B!;xsx@IyAsLz0N254<$q;w;0lyDp(0s?&
zLWV78t;%3x;3Nz&)*e~PvF=y5??SOXi#ath1GgGS{}3<HeU)GM@DKg(Z1u+q3gH(@
z{iH5D1yfr%FVmw7{0t;eshXF0L(M&5CncI>XQ7s-U#(UFVlm|R0=QE!0~bl7mo0Nf
zzUSJTvz9M&BC!-f62DYc<-kc%4Q2^xtObJB{!{=PqPT!Byne1^)QJgFG9lzJ=s_21
zAy-R{)8>|#FV52dg>nd8NFaiuz&se_#E@~$Y-FtYT!QoJ<VGWv4ou9MnVr=t7`*!P
zq4<?hFi<IcLOkEEIXR310<lPh0VA<-P7;i_vmF01;?g54h&tY?*k~Y+$JhYVfxq4U
zLgThNj{4=tlyl?u?RSu)Atzr*%DYy}MVK1T*K@SoE-W^@7Wic`s4?dovI%YQxCmz&
zDDs>zuuCaG%o(b^jw?m|(Gb!>IZz+SlThEvMMldIV^f7l_H@GPqR&=$1qVG(g&EQ1
z&8a&52qhj%2*y40HQ41suTHyuS80kMi4!UK%!-}gs*UIy?k5@GJP~^b0a;6+!f_bS
z$#nOeO-^BrVw&{$(7#l#ohPrUDQ9cT<9z21NIj>3pa#nmQ@AF6h>Uy&bHyN<!u0DI
zn5tG-T+ATe806;{7k9QE-H!|)&Zi64To*XKpi|=sYubSKvk8G`v#Az;tJ4$T3gx<I
z3E3WlTKQfgN*Ah9f_uva$Tl`sh`H2wVO4<Fsn|c>5)^#>yu^Hs+6W0M;GbvmB&la1
znoLG0YarS_6~Md_IoT#UYZ<ab^zKf%?HAy8e5q88^|i4vTq?0av;P>R=Z^Pl@tIM(
zsvx9{Xr~i>bA^3ECYB%*TfpX_SL-fA0LqlwtL1B(u;DHzeafRh+S9vX?05^f#KsOL
zrO<?rk3f?dWGFwu;Hu%@Zvy=Mq>lgoVsx7HU5bXaz3CmN4F^H^eKl5+C+S?1AKUej
z;EjkHLt&DNsD=?F9e~e`$T=fh3$n7n0e&9aI$N`1H*HxCj{l<P18)mL!mujROO}L$
z(sw5<qCbAT?shOs0z?_N5t<)RRsiYA^#hmD%4R5m(xuBl<P^UWtVN1&T44}D1Qfq0
z`TS5YGyn)s7$J>4qp{5JL8}(T``ws?#fpic0T-N+f)E7{e2a~(alyuJj{zRYFOKu?
z&-!{gynelC>A4SIaRBp~Z!<9=-it7-z#m?<-;Fq_8=~s!lvSwHBlr+76;z5%$bevb
zmm*l_)W_(fmniLpx98ldsH?{1Ze69j^3JA~>K%MPMJo6rIxNPkm*WdnhT-0WBvXh&
z7^L=1YgBj>tWg0C4HEE#uq*=z51@uQZF5gC6`oQ2d&JpqQzUjEq|5zr@OUHIrbzw*
z*`hAoj8w9eCJZr422EhqzA$F=$MNRlF?W<JBCiD<5@ZI`+McoQ*>?r~{jQQ>Sw}~H
zVD_%SbAa#N2UERu=gz0pRBwyBfjtYlz^aBh^ovsG5}{9u+=v!?zXFUW6#hw&zyIY5
zjhq_T5I-C2zZ(aK9C+OYpwa<U|864!7*Kl$GE-r&ndi#NIwixmSy({m-W&QrXU!hj
zk5{(@;A{CgIW?4()AvFUvnr8?y$<uz$y0&SEEiPp4q$PhF&GWBe8l8oya)`RTSs!_
zY7A-$qMrg!j8JgSK#gQL?Dh&`78}TAf(|Pko&ypPL}wCaqXm<HgDKTb(1e0BX1)(E
zA0%T|Ej^u&!nP4)05JF<w3It5gW&26o79<MJ<-vjzjW!63!vT@ai)Cx{i`68tT<XN
zN6@~OQ*}hA$IxfmhX9Nagn<eV$%IVL@~S#9V#Nf1cLf(0cV>RR0QfTD=o=si2A9t|
zq9>ATq;(?u6KJ3SiIh#0GOnffNYfC=Z}7r3^xc1KDCDxR|NbEKy8ijWaY!*}#~`Vl
zQl`oSH#cE~f(9onEsa6(8DgHLe|JtnK>?ZK0}7&Jw?k|aU&n$X0dhYADJ=UjM_(x5
zZ-Mnh!TbZ5ZDMhk;_@_dKqQdUELHRM+cyLU3?EEy^>i@k>xY5czZer;L}5TQ1Yxh*
z$<<R#Fvrgr$dL&1Lh2S^KYYN@bnKooR_A#n3`%jrC))}T{sKDYd%hqB632n0lrV>F
zZ48k^h`wk0TFqmB5;PkGL4zo7c!kubYn0j(KDjOb_meRH7I74Cce7GEJBTot;~?zy
z;@kW8b9h1ZC5#ohaltz-Ec^i1sz#PK)Mh{jpG^r7o<g{zU%vQ(1i_d0-x2fVKYJ0k
z!lb<5j+6)K6F5EUei~t@0)U~`2&`4q!m#mbXz?Qfj}*sluMsgLA-}U@g44r|<t+*t
z#2e5XX>=7owjdQzlXeAH3F9M|BJ|;t-Kl5pMT^wuZO_6Dh?pQ9VEdTBoVp3(jQWp*
zIr8h|<UDs^!F1{pXO<;#>*^;^K|&4^IAU94f<(9xhV2DV!<2}`j{Z^V5M(n5&NhSH
zqnc)CXU7F~vIj4biPmEuG+73!+^dk~`Pq=2JsoNFt5Ae$h#WqoCQIvbyuX2PK-qrm
zd%*aE3vch+y9**~6}xrzrZF#GKt|jke+@C#Op{(1-UdP;hEVIHWwX~vk8FY0-z@-7
zrl@!g87~br!^Ph;3DEw4lLW2sx)nQ}kNW@HSHpSVf_&fBnIKWv^&XO41FgPpZO?vB
z^6Y#6Zf)Qzb}8_rfSxdbD-9N5U4Xy;^DnZ9yZdnV!-4X*!~qalb+Sti_N-BYz5yt?
ze0atncm_YIsJ}+2MT!ot2PAf(C(^s};5gR&hZa!WzD1vH_@loYe&Y%)0j50EF93El
zn6*@A(EhO=ETsb|<e2E5qbFUkms0r1C4>&^=9PEy5bcp+p-?D@zH6yna&ZIE?1umZ
zLJ29zhv?M*e(^6*WNvC|dIiOzQQkYJNEC%}!v!#u3zBqucMxBp>-PM+<whnZhz1Bu
zmWW2S9BT>|iHstF6I?TC@!vmdd6xnKt{}xKxc<XuVZt29Ws{VTKDlvaVKoHyNZjc^
zJd9gaVoS>-@CwyX#F?h5LHwLAwObPuU?Hj^HuNtGoh0>n009t~bu&Qj(*t^!CGI4=
z(kZx2>VwwC**Ww@OppD{^g=V0m=L{l5bCp}yp{;eRybsOpl1a65S$Vk_+}v_TlBke
zBfX~?wsIftgfI-{2^?AojQh~M|B{)xyc+TVSuV|)rAi4WhWtlZ2f8+O35_re{Q#j{
zA-KyMnwb2L4^LW<2Gk?N4uEIruX<)pkWz3!7%5fDUOgp+@BNJN?93NI3Pu&;3mzY_
zy!zBv!${NsP$e>;NKsMIOEmevfBqWg#ak>av#?XI;H4S}`oR#S4RAW|!@?dYC=jI?
z+3iXG;|Vk6Z`HxO24Q_YKzUlmM4rOWAk!Nu@FeZmejuCn*LmgEOtM2PfP@+u9Fn*}
zBMibdZu^rMi%Uyb7cY!fLbU>p;a`W#iGv2O^yyQ=MAzLxGEHh>_fr=rsln?<-bFbZ
zvcrGR0&@>HyiJgV%mwH!7xCF!MgS6^E&Ldwfm@a4QY{j@0+Gu`m=`gg?`<|VWXP}%
zcme}vzYe%}fU7J3#T3Na){2o8zdC!(>xfn+GG`vjX&nQF+Yq3`VH04yZCWavvnH~?
znM+Q7{(DdYV+X}Ot}6|UAdd)VNgCD;xg2QHua4<K>{_V)n`$Y72LLS>P6X8<`>}VH
z)&)Q_h;|Mn4q5m}yyALtb}}_!W)di$A}KSd3fdc;C8Ka50q?4yshLB7oHYX^$@aTZ
z0X{txL=+&!DHrsU0|^*dse-&b%rJaxzxE9t==jp#qh@`V0_q;mR8*RvMby;Mv6f#9
z0UoZ-NajWrl3s4F2$pkt;qO|>eBO?)HO^X1+T1HIEK_3@q{6R$CEwQ#+j)Z(`N-M-
zrp}TA<Uel&|KC4^ZTP<%^8d;hPB~?M-t85isiS*C{UzY11mE$H$>xioYWHtA!b9X!
zCznM6?zqmp#NEXRAhizp7Z#x0*?883@VwxC*^8IsazAy=^j!B0$-oi*g1P>{JLG1c
z@b5C2>$RhmMReUyNezSVf2Hmoe)YoC>t-K1Hd8G#e5^}@x{BBP)|Oc3@@m#KX_L!S
zLT|A4-yEJZu@-MK#|s-KHO=_wakbFr>qcxT9V1GW@KqJQzbT;=x#tWo`oId_G-t<H
z##gMuOR}3EJ#=||RE8G~N`@u>Fpn{YaaEtA_=(3j!$ba=8~xxjZPUI#O$zU&QnR8E
zCaX#u^#y(TG|yJ6<v`Y*4e6}Jc3%9qe!sr1>YrQ1e17;Uyj|Bcqk3_UJtMX@(+EpJ
zm*bXotV#{TMoSs(Pwg80SZT9@YPO&U#C#XYN|>5X$kEhd*QWi|sKxTtaGI?w6caox
z%a55e_MR=SHyANJoN*AmAJGrrDXpa7mx|%pHbyel{GO&HYs*?OA>?s^5KfZ?JM-|b
zCRwwwQ4*T;!G{GRy`!;g?{lx#Ilp0-$2jh|!1lq1EN&r5&Ob<_S?Mr!u#{oE*&s-3
zH*V&o;e`hi1x^l0ckk!uVpqObjm~eZ&0fF#dH>?I3%?7!N#AQtd+0LpWgBU4Cfs9w
zfLr2MIDe@)hFw3sIoCv_@_kl%FS<VWy2aC*vQ86=b{a{XI9qr>o7&Npvo|?zv^Iw_
zGe*sSFLU-x<YV%<`dv28a)?17m-S+Z2`}0ES)tkK*M>?gIwdP1Jxcyf8_#3bAH+BN
zRj|80TTZt*-IX?)U91q&<ryq@-g<Z?(qsQc8~W!$FNf03W;AbBvlr9a11%}E70US$
zW5|OIm(q?mFAHhlU0JnxZAUsV$L^q?5<tEghx4nD`tlU9#LQ5P+G;YE=Q)FMKjj~n
zG)9O&nZM@t+mnMjk_Y;A*UPwc=ZL}7LZ5m+S-ow;DLCBx@N4>RZXeTNi}!7ok+^>G
zAU?n9!C@o&V$Qecax;k~%yF$y_elCPt>9^;$GHVupP6h+=XLS*HT=X8P@cJ4YMd4R
zS)J8tnW{pf-`#*V>DvCQoRBbY*439JqX`PGej&n5d|SFtnI7N-7OaoaTk%?-U!u@T
zxNT*rnH*rO%)byjcXxKHMA?d*B%N|*-ic3ZltlbqDvcYl6<O|YJnH_72UXf6BsWyc
zCa$vjhg=(0S+boBpm2V`Y=XVv^v*W`-@7lk%6a%YwkB_3H^JTV8e@X}OolqWGAbu(
zx6;R^6Ok3J+_(H%HRF2TsGnD{qG>wuZmf#jeq3T@`ooj4c%QVqr%`<=E{=MufH=E3
zFTbDs#%GM|(#;Ec8lLqLZmVqD9Cv$cTku<ybMiNxzIuL7dQgh(nO*+|Hyd*+<9Ouz
zkmblx&l?;jz8uR<nRg+4Ev_S_LxYnBEP`r=jj~esn{<}i(YYcQMfiLj%Id_%dw;EA
zlcc^READPMc}S%(HaQ)WMRoYOVT{D-X32(Y7Dm;#EkBz_50062u%a_dJ_Zh(TIgkO
zMPuuXbCXBu@|W7AdY&%i(c|Nr<%XIROc{~X$tLk!<Z5-Hq{`G8P70J*9ha}iJ8JG<
zin-r((f2$rnjqny;MoDfiTjvo5l7m)vzyE48YB53kp-Cw4?Z&;$lltEVK(C~Wv!Yn
z`W*C@Ov$Xt+G74SV~CjrNAgG`YUq{Dxv_DQi3ULol2i$U@$Dyh7OrNo9u9F2-&CFt
ze|Ut3BUM6aJxUd=HQhpi!IxuaC6?gXYE7}dWT9Dlr?El8{#?l*&v-2Lz@K3D)H^>r
zGj~zS+sQ75X+g1@lp~cx&C?HA^_Ou&wSBW_rG{3fzfoY2q)`ZG4>{OWUgMi&UAc9a
zsDfdDe!@@OAo}L+Z+{zBnL_#%gU4Qtyw3O36qvy(Eo`$rhm`~zE#kwYiod^jW*)ls
zRyU*CbqPFAVb4(~zl+u*Y!OI5D5Bt~%?+b5@MUB5u(iACdhyLAzm5pVE5{idBbr>@
z$ur*2V6}Wkj#Vevxlg}tBs5YvX8%5HhuBB&_tTL%fdyXlxB5ig@$2P8#ps`^1;<>_
zUAoWhnFr!d<*ZmdqrxNTO?iLpt>~@w)HU>UftOWg!QltrhE!gB1Z#L&(mO8QDXiFw
zbiM+EGM7!!>8*serHgv_irxw+DR)gM9&9^op2KE3*_IRF_1b$>yxGJ+P2ESHi5;D}
z9o;r)Zsn|XYtF#OV0b^jzWS|vzl}_!x0aLM8@B~sr}R4Ey1hqcx@~wQ#v=^7q3@VX
zrg&sL^tsOs)G&-wU~=4Qt@Xamdzjj{p|<hXtLmBWJG&b<%4upZnTn^+1;m*S(S^?P
zl(~Dx20ROK#iRI<ACnVX`+Q$EPK(HXpw9izkBNY2Zf_Y0^9^gu@8M(3SvbEkZ=_a3
zCVUg|$sJctF<r{o>cqT-4^tbT2rWnH>&-}ztgUQ>b&={95Is^09e%y8ZW?;C==_f_
zxVa5iY97xtiOFIbV#ZeFw|8`ArYyNhm|L%F1^Hfz5N2&Iq%1p!-~L5MCpLs=XQ%wF
zXnA$UO)9FfKU%tZz9p?AGyL%?LHop#*50xj15-LGc1K-5?xn33PSAa_6gX)0KR5pS
zQdtU(-Hqe-%;Y)CHk*UO_?Ju{e8k1HxB4!5&baBu^s8viC68l``I{xp@AjBk7afW>
zBquWNk(SXGr)(U$2;@Y5SJ9YG|EVoM$(47-b+nV0jX5(IcdAzD<w0qes4b1f(D2ps
z!e2J6dlm<#7r&{Io3Geyw7cQg@3Nap%-a*94Xp7<XX9@eo4y%e63R5UP29DMm!4&H
z$myQ(zCxYiFC_SEd9LV+Km_YUOaAicpZew1^syt9`UNVEy5ZrM6sfw&kC(B<KXFkC
z9GtM{c4@CWyZUJwpM35W_@aQ3)ns|wFY(gH<Mqdt%|e$n4sC8F+1O^sE8CYIOul+^
z$J~TJ7PG7WV-W$%^4!|GJ-O$)PC>JXQaPS1?Q6YPa}Of<?tb<6y1jW_EkXw+_Q1uQ
zfVlUfPVvT21@BxR@6*|((n|(U2<{SamQ~h%tc~sO-RL_lE;aR)`h<nHqvc@i%QrVt
zYFp%qHA}S_|A5&b$sx)n9<!6!2Q_?ETmE-f@F4kSmdsa+f(F8x{^pFCk^4%jjf9p=
zn%t`V1cH?`t6a(VF3Mdk(+<vX{>>j#+5b3<(J$S%a_rZ|?(4YOP1qJshbEo%$SdEI
z4|Wn8_OGzK-)EL6^ejGEZkl9T5iGB7$Cq{6y|kT17M7hxlQ3~i*ktyWX|tyBc}4|y
zYs0V})i-ujFLx<jY_s}9Ep$BzNj7u?Uh8q6JN{W_6!+iq)%b~!)^TO7ZwC)xR5Do&
zla`bRTkQcY(*D}xi}{rdd{i%vu4kPSNolFE%V9JdrhRWHNZ7RdGyJAxRQC20BOM9v
zSSOkGtNhseGG8!1jud}C*~tp}EM&)99x^^TNZ^x-QOnU&pVL(QUdz6Rn7`6@nHbH@
zs#<7ibR{@LN%-qdSFaeF5$1j}Z>QD^<?W)xOQzMOmFeoAnM|;MZo95vJR5RI>TC!O
zeVgu^P-{T$iY*l4;ovd6>KW5V%lgQg;<lS*sjJFLN}KV-d`My(dT0+tn!C?*(_!au
z|4Zp20Yfa`^>eBfgxS9=kCSOmZ7E0cS$X|5E58Mi@n8%t1!)qn?fonjVyIQRr%e^C
z)az^^`J7w)^!o^5lSM6&Y6$wq=>m_7n$ZIy%nrOP^v~ro*&PB-uB#C)Z#0)iIqL5U
z9Hv&!tnRGjbhN95_cT$3pb7()dAzmC&{pqVtz(lh(t0JqQ`IZryzFE|vc6;K;h+_Z
zFLvqM40C=xes~7_KtRu;V_IoKai|9Mz$l%#z^R9L;`ol~HpS&BEM`m>Me>>79s@j+
zQF_DCiVMlTL=7lLxkd>z;gA@Q-nuU}#CTpF7vD{s=XIoCNlWA7;+{T7K3oy^=SuD`
ztm&2zjV887rju`L^e-=)ElV6zJ-R%EldZ9mx|Y1)L6Tm?Nmmlglcga`@}Y{`{$jV<
zx<fh57+==g182&CF5FX-P68iu6T)nMc$6o`TH>q1mtP7bt`PBR1z<Ep`Tj|?w5dD%
zHllx8RQWdY=YoATx9_AX#>k65!kn#BQ-${;`yDM3b~WW>&QHvvd(twwN=62$hv`gb
zspH+Le9(4LAXdi4t#!k6m7wnEGw;S9AN^fly2Z~c=vi7S^B&&LCv8IudJW0E*6F?>
z85J{y2OFdYyMcCSis;8f7pYfpIn&!(k4N3+J~$qH9%{XAd@d(4Kc4u~#>Lr?pGtgz
zgV$9LT=pMfvzZhr7<sM7H(*M<C2A<fZu8_?a<nxT%9iJ5E_q1PLpJGeaukNW=@<8!
z_r(*ztl<kY12q-Tm#6BrNl-)D(;^YP6$bm-T^i@4OmP}2f>$<|l{A=)U!^m-rEJo@
zYa)8fj4zm1bdq88($Op+An~JUrYWxcbjU<t(niHaMRJc076#=kfAo#FWbGqLxlwej
zdEV_8^tX9}t-pzl{P;z=6)%#P=l$U~ub_IT^pN&Xl$ym}*w+PO$c#4Up5RyUVhp~*
z>L%c{jNSe+i?3?Ru9e;#-L9c=$BwJAt(HOaoU(5WmewcRmlx{npSKeGaF#TGOCuNz
zdSG>3Y=+yX$rR`59B1w#?MuAd8@0W73O(k(N;Vu_Lzg3IX3fxyZ#W%)6Ps^)cTRv3
zz4f(N#Sej>H<@&d#daPQTR8@M_di<s;Ox2ogdKY^m%U4V)I@xZ8pETLz@K&6#(tku
zOutaaHk_rc14GP3g+zNMjixqVT`gK$@Ba6AY=um<qL!9eJv%#xW5&35HyOcEB@KD3
z?^2bT$(j(Ls#u8KUKbGFZTCD4zh0`p({<b5{u-68v?=`$F}~SF0%o&d_T|n?ukJgc
z*=I2sl%MqeR;JEQ7^F<sXUeVMuyZ<Azhsv`YQ}7tJ;M6l(1qdZ{$$Mi;5EOZZoa;n
zqJu1#A=1yxI2uk$hKslFp>Mbu1*yeqN@xw|>2$QCA5U?Yv37J#9+|zGdx9Otx@eXs
zPScLPXJ$cZt%fUAVsUg28&%*lNFGc~xMEa8A)*#5o}O27F6d3fpEBFDH3<g!WuKDW
z>)T5+LR;o5Rs|Z@vSvd!X)4M^Y}zcl;ew&ZpC$9fLgDJgjIaG$@wXYe@X9T3n*Cav
zarV3IRngLtuf$lCOq5uQ-bL^OqiM66k9WW2a@E~r8can>)|Yl@`6KM#_6H2Sf=$J<
zy}fZ+o?n_$4lGN5N+5S%E2)KK@>h}BVQNWE-S@=7S<^x<QSr8(r4Sc;<!zx5U%52*
zh@o4XWg!(h6-{_@YkurB^oJ<T*#4Tp#e2Jsawob=*;GBaRM8bBt~q90^!-IvG^7lE
z(gYUgaDQrW9iH}6@G+ZvTr<smS~T(*BjDUFrVLX+CAxSzk?KN}*`$vP#$LAdhE#Gu
z<7M^0;nn%@m!6{L+dL}ob_s}S@2Lyan{g&Hw^`Q<Q!&|Wsw9US@ZQ_6_$_B!Iv=>s
zN4}oXI`dtu{+2UiNhe#SkD_cI{nSxyZUui`mT}zn<AUPyDDI6eDw4j0>;Mm1uImkw
zkbOP%t@%Wfra~62H5=K7x2ifnGbuLSz90V}lINqzj%T~zR`s^{h5JERdg#l1pBne6
z%Y1ElSB5c6wn&eS17dx#)dipbnW+|Kq{ogIRQog4CCV6bZOFmiJQOEZdL_AI!e%WV
zy(>w?HQl$o|9dH2|KMc&s_*5ma|4d9zOlrg_9PCBx5R16IAl;bBqVlUq<i_=Yp(J0
zu4>F{>n4XwVyjma4z`Xw^0bMSw%s4#+dA%xena$y`&B%NlJhH1YP&@3^y2f+op3Y;
zm*?`CRojLc@4<jzlj)sJ^ha@x!iDH>oF=wjk{0kZeGz5cyY{`b@@KuQu^Qa1npuqF
zMqW(JRPPWcuw|#!Ea=!WRpi!B{JOv=#u>6wu>`f$98>)qRL<!N$`PW+pI4Y}Chsg9
zce{LJetacP7#$Kfi_Lg^8WJN=>FYH7sn5<psnn1&Byy?Q5XbsqLX@yCYXeHnoPKmR
ziD%>>rF&9CkYr+VoBGC(%)qiw;&mC}9K20w#W!qwmkz!P*YSqD+qtM**kO#jD!gqr
z8qh<rEp0SC6sI(|y1Dt(I|ToZOIy}DM`cZ;*Qjtq<dK6}d5ACXp@VLCNJ)#(@$Z3#
z2UQZ6KhNJW;gK35n@B4XK1`<;*vWDwFYaz0U8)Scy~AOxyiIXfG1PJAv0vn?nGcff
z!!oxvj?1>bb0uItzc_I;bgrkx^;q*=NUODw<ZChUoOsjYg3jinBbVjN7oF>_-t)zJ
z=oYRT{9HD~XGxQM)PWrntq9%aCCN+}Udr|UnSp54$yX%;E)x0zP%(1UaeiaGDWvwn
zX$qsP)mlwZer9$jUU+P9WxDn<_4q1&?k}naLSZ{^Td!=aZ<IwoT0vYj%XdV~S2n{6
zTie}thm1B7OO1cZ*?eAbz#p{LQu$3Wx4AqWui1697L+k6SXAHITbo$@_MG=FJMpQ*
z{8Q2|yAlpLHI04zyWzrZ<1b#N{G6|I`>42;YVc)4T&0w;iJtrfM|DAPGLMU9^p~u0
zg<w%%<7X>s>^m;Znd@OAq`EmJTV=djpXe9c^|y}~f-@{J2T0yf1T^;_;R<J5-jt3=
zg!k2Ch@~)((lN(3!mhoJ;i5tL%FH|DUAaqz+TwI7rEtTCLsHFE9XIa~+2D1oj1Kc6
zvcU0GEvbes0yi!Hh}iy@4n=j%vAz<`_^9FB2-Cn(+t4dfd~<8dHr4jHglS6qrRklG
z6Ky&Mx9e?wGV=AXWxfCWjD*d6my5kec5No5e^vM^uNjjChh2FT|21Lw2c%)s6CN{g
z=Qf@!;U$qx7GFvbalYlpm?ZloJgP+ur|s^&>%zBEys1@33Zv8A3j#Yi{P?yWcn3@*
zx9VTq|H}K*QSylcb_j{U7do$;@Blw9oIZ_#W%gSZq*w2WKEI3Ra5^zmK=2ATcG>Q_
z?m$i37v559SHH(f-$|n<UpW+q3t(4Ps1j*s91XlTX6VxRi6w9>sj<ULQ(IqeM47Ie
zP>S1ZGL<}K<)0-~R2M4MYsT01#Y>Xcp_I0xI+ckMF%o&VQrz}@j_<u<uN6YC=e+G$
zuHaV0%q5rXShC;sMRhv53KkQXSjM<?8(J(45s4UXLqr{ZNiH%>$?YA2`bls>P`@x~
zwE6csRkk)c-6{RbgCquBtKrv@GM$GORpFcW-!u?p=3XDsoC!X_@i7>5(1|6-2;;hU
zsHW@dzQ$SV9v`rz#7|n>ZP|u7yfI{ZfHyX>qGzk>=TrsIWutgL(XX|y%IRgw=-&wS
z+9n=mpKHtD3udlgj2LMP4SZQVaB@+gO*r5jYprfhPtt&v`~+q}mr*BiFu~$_!L{=a
zRn-&S5$?-WHYcw!rtOcK?iE(;{J>mQsEGf4NY5-lpxRt1_bnp%1+kfm-t;%T_zQel
z#kp<WqCL`SB`uo1A{QPnO?qdYH*2?Mr|XwS*&K10ukve<zgV8?L36V!$B84{lA3?<
z(@Q7;li$wsYHT%wB&q6v;OvF(3|&j6Z$y-Js!86W2@lM1t2lK|)W^fPsoClG5oYN6
z17r!N^QdAcX*0Y|3c-zQo9o5BPV~CPq=8wO*3Httw(yMwd#UELgvKzBOIpTP%LMLW
zPv$Qxy}y$=Gwd=`?4xsf;!lBHuve0|)G4D#l<PHFbwodsM@v9ntYES&Tfo8H`pZv^
zv44&q%B+Ii1HT{T%%C5p59=gE9esXDnxHrP;{u~~#sw1_NkcTebJN9+rN%|x%Dg2{
z7r36ctwHgPF=>3!b6eWjy;`8DGqBRcP~gOW+*dL?ePx>pYq0XY@e36#foGF_ms}Kv
ze|&Oc>L3~3(6%{58I;uMsM4!NuINhn#M6?=s>Lca6KCv2Cklm05V;k4k%j3P$bS!l
z3d`Z=p<uOR=X7!Bxx@59mBN0>q}ny#H`ia;FdA#3q{?sY(9|kL=BCweFbZph75Hj-
z^!x4pF&L(k`Nm0_u)?3pJ|<BAX#6>oXSZoZ{^-LOH+mP^OS`<T`dZFZtVY>QZ5=*0
z|5L?R?HOBx^DDP!{sw&xl!r$`&9$D2aq%?9h?1QD__qCl%DlkAJt^ugr>nB!IWZe}
z)4QR~lo^y9OPJ<NhI&pB0kfur+3nU8Ty#Q}BVwMGbDH8;d8_sAKW>`g3uqot*FraN
zd~!QbGg^Cgikr!^$5du`T1)Q6_gAl%mGC{eOmNx_bqpJXpDmVWr`V)Z>;Lu{zV<Mm
zoo2L#ubpb~UfTt0w52$7RFggXjoOA#DADQ<t7rkvJQ@8RZd1Nw$ccy*{&)8JM^)V9
zo_H&3`=i2_pKRFOGmnZozfc@aBh1}e(<%_#ROoO}!LWN?{ejxO>5w-<I0Ax%#8lj6
z#+8X~3yf5>B8ND7I`_W^scurvl%lD$8TRd<(T1n<ekY3~6e{-B9cVJ#offIjFz_>s
z_kQ%L6&odG@Cj?#qPkU&L3#cj<Sgmt--5<`MHeTXyB>a3lDNjVuBg6s+q4zNTj8|i
zT3de1>Y1emzLQ>7rmdaZ=pC$|`~CxXg&9gbTd!ZRD2|;|qz#uN7vn&=?c8B{{BgPW
zV#<8B$c6F38Z`3C#u1{Uw87Fl9nF98X#&V)PYt*nwKJMi2Q~0IzWC3*O{uarvLotg
z$x;zz&_EOQy*Et%hS6jSC#JNPa7rbhO!66l9J||uZ#03)>|7r)abNMXd6AQ^)aYF;
zbK%+^4no*WCKRihZAG;M@hj%Pj~u_224l`~<mhamwc>e^zMnPO3+-#`3_Q7768};<
zAqlHYDf%Vh%&!ZKuFo<Vqo0saR-?YuJUn_AL72p0xH)9k5%y>;z56ijMVW4@r?K);
zsbGKW8yv>|%>4DSQ{p?Wlqo-?I&=wEq;u9kW*Tuc8R2X=>x6b(7p?fgRHwe=iPOAE
zwI}$UdANaTSgjXblw*E&a_cZbwEuQue}go`r9*nC<x>rl>RLo{>3`6F^*yL7^?YRS
z#e+QBCIO!F*)L`x072$vpc641P!xW7vRzB6D7K=gr|}CN2~?T4Of2bd77rLlNBmKx
z)nK;Ua>)xY@E;XaU!E(|CaEgkH@y3+JD#iBAiBbxrY?RdB-jbRE!V;{AxPk|n%YP<
zm;L>ZK@a=f9*v?W-_5?n`({qQ@U^|0b#z=BK@~Up3pJ9d*?fYMs~5>WI35T07%LCP
z6t;>{uIqwF+8}Z@RMS{$u=l{&FUB;%z5fGy*XvXK%|;zQn)3Due-r1nTbnD!E5{?G
zKSx)iN2a_suAxI37)$}zmi#Z(kM!7!!x=Af`^x64ihkzt*>}+NYb-`5jUyAV0>x|U
zD1G}~e)05d&7ziS&n5LhR=eEaWDVWT%6|fWI^hdyP6hFI_~`R&h+7K9E(>#-qMNT=
zZaAj4Cm9&Lx;@3&ae9-yyNFIa3bl;?Q^MG5B#j^@h&GZBJ?0tNOc=`p)^;q4n70FY
zJC6%2QBI8fS?71r>5kK@XMBza*ii~8B=fh?H&DwvThH?X8Uxe?m6sW^`a))JR2g4U
zXFWI&7QrX^Udr6)+I^F&!_0W9U#Zm+l}0r1Cusf94xc{w#c5Z|8yxHs5_GaSvhp13
zZ}HE)?zv~jDNG7Hb18t%Q9#divdUEN_9tviD}?%r=m(8M16B4*uLX?bg(-X`2GzB~
z=ZhW4;`GezPpM~i-t#K)c;7O_eY)tMD{?MK>z3uuZ^WK!i=M~M=5Ls+w5uBJ?fJi2
zTzW1vg`)tcgym;ChPHDi^=+$M`kBVjOMH(!|6u;|iua}d#<Km$?3LETZQL4$+@yPL
z?ZzR(SJh&bTPuWc<4=Xyaz77I7gVBgy(~3Q7aCq+#Gk@L^H*n>w)ZXN6|r+#NRkog
zpA{&}=&WTi78<E&s8#niOBi3KN$Dc*xlM4+&N=8wf8CB;iDlm%4AjWPTp0^hL!^U4
zMqO>yV?mjrRV}5mMEne#IVG={?>!wJLK?*f7w$U!eEBR)r1plBS-%8LBNfX&XNq9k
z@J%y~I~x|Q*ZVnA=D=Y#6_n?Z(o&!=uXisv3bEJP%~bp-N-Eeo+@Fu<xmae(AZK!!
z^KQn;xapja8g}^O%Fn7YuRXe^G>1<ZsFydk?A`^`M^G&WHgRwnoof+VKcot0vWk~H
z)ySE-V|6{HzT*Pnz?=t)$J=qGGe04?KW6?hMW)G4yv0%ZvjHz{wm_DhdYchD94lqL
z;r%^4{A(I1!vVJ+`k_yKWB)unA#x;>wt~ZvUDv*)I;s{sfA3k;j753M&xZ-rRLkt`
zr%NyKgQweG<i>>Ra7Alen+O^`KevXRJ9K5np$|tU>6bBkd0Q)PS>9e~m+DZ{>pbd%
z!HBH&pZY24w2Ihh-NXCET@PFtQ(Altk`LZqAQx1A&3S{#DQ-vBbh>3kf?)-R-C5bs
z@+MWn;Ns+=%N~dKRs1Tv)hsKvuci;KizY``=6T6LuXZMlCvU#~Wa;C+i930HFy_{-
zcUe{^(H0*yb77BHT4YNzr5pJZrmj!LBHT3s<+2Pb>su{KeE7s=WTBHu_P$G<HLv+@
zN78geepLIo;?JMpZn{0eFCD!bD^KLb=&#N6u1a-9SNYGrGEev)t~oXg&k@auWs4va
z9eE$`BY(k>AFNK)-yO4jeFKDCUM_v^?Q!hWKpU9ijIL;;R%pwV^N%?CT~1nA-`pE-
zCOn9*&~jYya%xWVCe_%jjZjl8?G+2$%jZph_S9!byO!V0ddJACvj3H}Zn)f|k-6$S
zU1Q7tYU(S)+KQHT+d^>y6n869+}*VlDemrW!QI{6DNtJ6B{;>MQY5%*f#4AQrssV3
zyElLGJWFQQEZg(W>^*ZVNHPcCCo7;Om`mfXqa;kOu6yy@`)v*n3;6%O3-AT53{|?a
zYy(7l`wBHqj3f#K4dd`Ds>3j;r4_;cfC6dbxqdzNW6?XIpW_q)&m25a;Ks5(@ewW<
zI^iT<JCzw{?liPC3H^C>0gqS*8iO4f-o4gKaYbrGC5~eIH-bX6PMSpeZDUK0zD)W#
z7FO!Xxi-FVeoOY3CZrQ97)Csj(&vld4N!3PI+E4_$qJ|MJcD3~=YzH*`x0S{627_)
zQL^Y1{OwzE2nJBCI}%lG89$-^+{KJ|FMu3I9lL@$zW|J3&*x*vDm3c7X81eo#v@fl
z4?UvB{?${jjj1wN#{$of1jX0H8o5{8D6GX8enW153b!dcPMehfLja3{O;O;3$YqX@
z7uw=!NGk)Ce$T$txS?*guI;cLf|4)tOgRc1IpkvYm=DI^Lf6Z#16wfKfPEcNJ&UcB
zYD9y-CMzNQSgQl-#Q0>EFSsxMFs_SnyQ4qq8D_jq7C7N~Wf@H>8oU$X5=FMbIo?TH
z@m}l7+Jt+kh|r{5k@i)aTtF4G&dHV-yx*ew7p3sJyP;ueH{#vSh`@viW3IP}EVr-F
zO!~Pab_+3E<)2+h$Q!MLMZy#tQA_x<EmLAqy*yb%Gut=whM|I*o@m7Gon4a>_5HgW
zzSR0X0xg{XHr!0^X&B#)dpi|rwpc3i=q(Zk&I3UnmR`s9<QiZf{0MSNU2;qV#jlUv
z>~i@eWZNvM82sLCTtI5Y8$cN3^=M8$6L|R`A-iZ^!rT{ivN+WoV51pf)qHs<LoB+q
z*@Hgw`1|QO=`^N0ecLNXvd%bBbf0KmbaH6&9uQ#5$@d#VwMi`yTM=$8ySgQ6_o3S5
z&n|EIIf1zk)#}Em9r@!AeuA_k5lgx0UN=TohsM-nw;cywV{?q`)ukfGk@FKxT8OLa
z3HRboeBFlK@7+XWR9QhjDk-b5=fjX(!8lOj>fv^5`x}jQq#F@9yO9C>8NuC-9GDB@
z({(?z>on90n-#AW3sStYyM=XeA&4QWECY^Wt*BEW5Bf^9nZf<9#cR3SCYJ!YcNtQD
zQ`afEm#&wsBrzgfcWU=>Cpxs8X5ic&(LYh4r0F+fTloFF2u}z4-)CB8N^3L;GYZ|c
z1uHT=n_1KoJ}#>D3sVozqSQpYXA(4-^PK%chD%B+mABv6jZ<9M26{c_4OqupE*vUD
ztBZ`UJExAGI$1oL1#98xL~2(m0l$XbDG@9Lma7BperUPU7-_9opUcQ1!HKzYcD7Sb
zm=UikZ0r<|1Z*q)y3qvL<c|hP&RaxUHlLsWux(isHs{S1(zJK>hNTsoRcbmJ?31VQ
z;CT>&e!aR$`8fvvqDFXPe$BPKUhAx~hfeE;6nS_DLA3S9!aKVep5OyD_YSg>fvmb1
z_um5Lsx$X@q&BL>p`OzAk+(fx^0=@+x}^}JTC5{+-a$<vHq@xq+EGf!uPwAAgGUL}
z$Kp-~b|&iqsEBY|sq0z+l^8RvYiEX;;GyC8crFs%9h<Bf(_r+s^q$i6P2t|Yt-qS@
zN#D6y5>MmkIY*XkRH2XDNrBq>CB15QHESkXfM)`%nHGXa;4SF0R(Ys?ht{1Wze8l~
zDa1wEtE#_Ez`ZuK@I+*vH%s5sIzqj0&Jw{wGX?Cn&HFYyIG%_40cGfVQOu`-qPt<#
zTs>L5r^!QJNwsR#$b4^>h*tx`rU{pWA#6m3CY4zprsOQ)*FX-@$M48^EV@xb$ur66
zrw#V#@r5#DP@0}Oh`?pc$;580C7*5nm<J$OlB{Ge3l1*W7{nj6@PD?s+Tk+oz$ML(
zi!w^HwSayhe$_tROn})wbscu@Cmr!fqw1ImNEI4$>!yMP!Gr6v2o{SV+Tke!I})L$
zsUbw}fEfQ_NMart%q`M5gz5yb>4~UJo*Arm({PK!G}uVNX_V<q7`5<7(L;x@Ub543
z`ZSUyIc^=LXkIRN4xiRDUG{?vWJ967aS^W@>)t)XD*1trM(hw$V*D6I_9RTnURu5^
zW8Fh|*sI&{pRFmAl30=1St-RRkTH>%HO~ec+Rb%f(Ihm_{@ms-ed-WA4G1JiH#n_W
zG~U?+8iCu)S(+-Bmb|C<3$M5WT&&%uu$6+QWfX3?J|5&dGNW8Y0>b+%_$xi_1!#Yl
zF6pPya`~&7WaZjY3wdhqr4|tks~^X0WTC)YaR8j9ICSzU2EYfAUc)7q55`P`HN1O~
zw5JaPU-;U!dxs@mYRbP{6UDjM%&<ARLl3pg2>8&50fF}5wtAVJ&UfJ!I+QIL@ZPmX
zl7$wU3|G2U%)hmTSk!s&-+MoKC5he;t$O}8wy4QTiiMcT?Gt!%ebP6`KI!T*eI;OZ
z2Vg%SF#1eO%|#?4lHAUHzdbD=aJr_yo>ryl=0zbCf!ZaG`aWZCt!$71&X>fP<f5Dy
zGw;<~mJHKL+VB0evZ(8?zs?%@nCi1nb^w9?S<g8V<_U17q)@LBW4T-P=ipOZlZs-Z
z6o;!j$nNoq8mmfCIk5XoiZ^8d{PK-TN?M&V??*}lx;21n<b3MeueHhO83MzWOmAdD
zN35!fx<UWQlDynZALS-`&b$<v1`fJ`Q$-HK0MZ_s?SA+T5*}wyg9gmN27_&f#Hr_D
zdmfy2k2Ws5I7R8<vhzun0lScM>&9PyCg!@AYdyxBh>tvDOg5`UIBg(?1*c|uOKjxm
z4A<6lx2r3lwtZ2jgnB9~TgN3G?9J0(NGO0S=1@ZRt=kBCyM1enOuh^&#6?3aQzy@~
zKVo^wUVrnj8c9WnV}O!-*CSa2TULsWQI!DeRdChC1Xi}E57o8cxq@uo_${N2QR_#}
zUff3uh~poxm#85vGj;*@`qUR%Oo=D79d%R}XX)cBISIeCW4k^fXKgE+g*my02tSO%
zdn&Y{R9;sAWN7it3vrkpKoR)@J^cBp-QC#`oU~|Z|ErtgU=Pvjx^AM*W=gl3Z_PK{
zp)9jH4fFfa&hlTRTDL<SZ?t7DVx2T!93&-zuOuA8c#MtMLfiKyB9}v;R-Lc)#~m0E
zU&m@Jh<(iJM2&%3`8nn*D>1@PFIo8WuD*?AvrOwpvGpvh?)|r_9WhQB9M11cE<Ogk
z8H#6h0A%mQHR6ESG1kn}w?Lcv%t)eVb3`=5lc@R{v4U&onh~=7Ww^Dt!y`^dx_u>5
z-h7$80V@wgg4ktqG-7=q#nfe9wqEPn(#NZC-k2O(;2OeZCmt_p9MB|sjArjckE2@D
zrk@>Rx+FUkXw}eqRPoFqjg?!-b;vZH?NbA>xlqMKq3bf_SUrp&*PuN}VOhlA9YYZf
zJiKGW%YFRxWIJMPqh$Vv*j?H?>Q%;EhB?*qC-TK(E)|-|hr*rQxOe2}9|K$R(?7sv
zO=tj)z5!V8vS-6UiQi0SKduM`G7UA@drwusTsy0HmKeOB%n{sV6zY@l{D5V6B(uhM
zT!~OrQmhvNl7koqE7gITu?uI7Jr~=Mqi|5X-bcvZ4xZiRO;h#kI;k@9kLVbeAYF7=
zinY7~SDWZauz(DK;IF=6731GweV8Xzd6*TBGb368p-q#{6nxl65+k$m>HM(6J#tc$
zaITy>vC_rBF<PF^1JUI$Z@=qa3GsX|T~+yczO#&^C%@MDoc)>*$td4-LacG$XLa!i
z;R9<)^YI#)%rLE~dGL;Oa+b~f99CQAK~X}Z9GGTPio}c@5ZUI8$7;d5W&2*Lq>XJ7
zX0q8VvZ%?<y=0&*)a$eoY5Bau<H$GBuQ*EQ<Vys1g8Bs*(ezdJm&5b<53r^G%M-(o
z+ELUid(SjYhvNQHF^Vi!8cI;@yh6o<zllkfWX`0TY!gn$OQNWos>hmbuaQ3>Q)_^(
ze~51AYz4Q;g<MMX{AciD-0jP;NBG+~LSekwaHzsg-!_(^<DF7B3mAi!n~*6RE&Z;c
z`FDR1p8RoO>yRjz!V$H=(9$V61Ask37*BVTn(uH@9{XF~Ho2Yt+{4p;`E2akY~mBc
zS6m}66Hl{C?q?832+C6pYD>n~YHragvi(BIm+#=#&*xpX+Uc1-eDxewS*M80N2->r
zI+;^Ie+}s@3Ff|U7Nt0J{vbKZs6qYUBaZWzCadd+FVVe1e|!8mPy~<TKT-y`XD8Ne
zonI&O$?q>|{_T9n%Gx9+g;`V@;#5FJYIsOfDt0go$37PF5&7cgUIb!KSS+n{Hj^N5
zUV~p#3%2ruMKn=HPF+{I9ySDhr<&1}1$9huigZi{1^|Pw5W7>hmJzgb$+Me&y?<<n
znr;rPtd80I+ZyuYR6=Vu&U}BrO*lKSuRahJN^NEbK-u0IWC(6>37p&W>Z_9Fn>n60
z7#m?U2cQ#1KBJseg{Si$b?soA`Ict3BKn7+V`*Hu|GR`rl!Fly6{oT8wicv??kAIj
zb7gtBUe0*inRsxf&GX1^)gQ~yKS?<dW8XEM_E1LBB@VQe>h2AVA$2fVwBX2U7mzBk
zO<=7<?tXMd7^1%Hgbye3t*Teox#U>COwJ(n?>|XUONwRNU-kZ?@2JG7DNkwxDOkGf
z&pk3vp<R@;6KJVR(Z%j4#7Sq1PqAizS|s+5G~;#G9A;r38(AL6W30~O>~w~d>x13z
z$s9%b2DY-Ym62S>Y7pZVJ5SqXavP5AFh=xMX&Z&~a;|TgCsEFo?Sf+JVs`nsh|kAM
z1oUF8L~eSnk`hxs)9>xB4^?Yi)bfWxFHa~$Ywj)+-$n<A^^fkjKxdOiV@}HTp^ER{
zx=M_hkJKKCMI!t9nyqSoYOGYXv?`rQ7(;5E8#fPAAKIU}wcmbo^_5gWE8~k?!Mp~)
zc#Bp9sPxm=9mdCvS0FHSRiF5WVslDM)hk)BLG!3xuY)^>S=P_yLBb$b0C`+5L?E9V
zd22p5R_0#gm;f&cD`e$EajoWF+=afK^B=GgVTi0Av*zxI&EpvB#CZdIV3?-PV8O2g
zr*~(!1p3^DbTsT?eu3&m;1;NS3g+F_=hV2EY}XO&w|_Ofy1?5By5R=tSS-wPeloI4
z21gb@N;Z?=5O)BgqTd^;)h*o(ix<f@|2D9g_wT3g@DRsX>W=%v=I}}?SG;BVJ1xOa
zBYCCC96l1;c*$V2S7fo|?H1k-Nc-~D@Y5u%i@FsGWWQNPudklro^kGR7}UZ*nSy!`
zHpyyTqh<(xWNwQpCA7`kIU=_JYczfcmiC(w<lfY3ybea#mKjIRM-Q=QAld|1Q(rC1
z=874Sys+;(JB5zjAez_EXX>Q$a<?)~Ub?#2(7iXi!rxXg4#b4mHR$B#u2TmXiYE=P
zNc!<t%#ySm&XD2=wk=wsl_hV5@8Gr0fsS`uT(c(!IWp77J6D-iN@b$>93N(i>J&>i
zK2AGb`t*z@9yi<M^Q;oF+y~^d;hCT&j45N+EgrDn?*#q2!;ngqxLo7+3e&TDBz#8D
zWh|UTq6~<b!HGO*H<d#@s$md~uaNqv_`0&>?CcA7hSA^A#ct>b_J)AQ1iM5GkLN)p
zOIao%#Cr=5Z%R`JH+<3852G$}O9Xhy=a#h7mJMlL@{EKAVjav<rBffal?mz=ef1BH
zVD$^fd0J(q=taKgNeTuZWhUg-vlN;F33-YH-kl`|X7~bZs>ZTEkxWm=*khdC4Boqq
zY~Lghd~H735e`oc^aPq@6_PI8`{ycTiwfBF=mc-t54=TigF0h6I>a>=v9(G6sbRp#
zCKDCTNT(Vg7y771BYWTg#%P*w1XsHH`Eh+HQsEsrUlCfz+Y2dPk~j;|*B2OSJT=rU
z;o;^uA#U`p<eVy8aW}LDx0Q-#x3J5t65KBu9PGu;AU)4YOwmxxIyEp*Y6Vz$B*8#u
z=M3pVs7Ne$#l1l22T()$<DOI1IL75q6H$ZurPxvFATyUp-u4ndC*99G4}RpWJn+!F
zB&F_+{dA?+>OEbF($hEN4ex|zsMNL+i?&-zAMcaBLOkh4Lj3zzbq;=|m;bC?)YpT*
zz2(z4BDQcS;PReCz4ZqD{3Y2Y3NM!XwnwC(lLt}*NIr^AIdX^2tAwI{v8=QuH@0Xg
zWEK8k2>k2Y6vU2w8|kqAH|C=Mc~+8Rc+tC8vWL)WvEJJ(2eaqko5D|%5AOP`>UuaL
zWMQwzaaYQXQ|Y)2@(rr9G<YY(`|UAU%Vy_$QG-7vc^-#0cf=!GJGP%{3=Xz5<AGPI
zv(*8hjqyi+5!06b7Yd<OlCM5385ZwBpt*id<`3i;17)eC=7`%M8>|u@_3`tqpkK$Q
z0<|s2LJJkZVaj}BVmFBW!Y9-K-(;+iSJGl09G|UBS+tgnwtOzy6QKV(!P&L<(QNTt
z#O7b!NR1thSuJzlCCzpD^uP+mtoI~oTeZ)4yxg``U(|Y;Tuy4zy}A|mrcVWW9KdbO
z;#O)Z5B$as>lBGRiIk~C=%#N|c3LzhF8fws$tG>)msBe2O(X2IGfwv!E&(XQji?uV
zZ1!R;_%BADdA`K%ng`{aKa#7)E`VzN1k&Q9=$;92aE8Q0xL!RNFRNGw!L<3zrMAlj
zhhLi_%MxkN%;^BD%O&UG!@JRD0>?i|UCkd;ecSawHiZuCQ2WLG`UPmyZ6vk60Z$T-
zt0r4u7^Y}H0o-~HUblywO_0{3pW6{ot0$jL_bZ72POg6KD76D#?(pLd%h+{&eO>;>
z4LtNJh`oOwn8tXE=vB35td^XkdPw8KG=Ze(Gq}n=0vR*W{g~=Ax@%NIdq<K$6J9sP
z)op~epUx6KR5z+JTCCW>N1NUB1+O_}^gtw)P7sX;zf@2T?IW5NN!29bX4Y;5Wd(r5
zb2FNnC^PeOp3%p8db5XPSuc=uu>{YN3ObG&Xym;WFQDf1`k03tLswtdq~1@L;3R{J
zwYK?vw8`c#IjrrCTBIupS)Y!Y%qr|AJMzi~VZX)NtC_M<139345KXo?3u`jy+h?Vi
zIi0%c{?byBbrK%0_Ss!ocXrKPsXzOqv<am;0Uq;SUY@^W^Johf5GvsCh*3UZ09G?>
ziDT8LShM**I_qdg$$ydT<oxi>6OWQb&siDh1^hVG-dTPuOh-NPqYtx{=iwf#oK&_q
zrNwRH)j7HUWNM*1|G-{gn_P~f=SRY|WJoC2K8%ltcHWnqtakm8#_TN?V!K9emjNDr
z`e5opb~xc%7RKB2T0<KSXFY`VztQnpOrE0PAH{6E+%lm08Dn`HSN6smZ&<4g?UZZ^
z<wnV;ORuOWu{6iQ>T^Hs259Z{HvaIA+&VP+v4KA@j1J%(bm5V|Hd-C)p+5RFi(MjO
zugaivLfQfniqHR^fW^W>x>KzZYgg&s?MX3KgAmKeps?^Ax!S0XwYLwAJQFW+3Fc-s
zVc@!%r3@X^QNv=W1U{dXky2Wzml(8IXEG<q;Z>)|RhwU0^zN1eV&%u@2}{IY_`j7z
zz47>kCPjKq1h^58?Z{<X!2LM=czpG=s<~sqM>IIJpM>T~(xPKT@pbty#Q(W-gLxLK
z{!nwP&i-Nr5X;E;bAK|NP-JTI<|33MdVc8$(6lco)7Cxqwat8nDw`yi1aC4$PHu5q
zxOPwxk$GY7XKhD4oA@=$)OACBU2fn_<i)_+962_a%wpyAdbV_t>kDn6w}PXH^$%|&
z(O8a9xq{pGkA6&xyuI?n)ar?~spu(kmc6@!WT}dS2;&V_HK;H>FX=##X1OZ+Y9SIG
z%3)pK%y+RlD_dkFnM<R4h*~&Vu>Z-wfz2%K_!fhcDGUmhK)T>WLx(!&U>ap@wIGb4
z699eeO2i7^2cCr5RhCpuA=h&;4)7yK1S-j}p1I5KCJ=G%5+Z14VHxXqY#;wg#O41m
z-cb4-%rb>k$3r)elZVOJD9JRM_bg01R6Id3-WXCf3aICy^R602u4kZ|Xt<c>xQp;l
zYvwmdl^|K2EVLEissuPC=vIw?U2|ieL~CecgQ-Lq%|-X&vncQz8pVLQp{*@yBF4tq
zR@HlRHklDuR6lP@=_uAQv<4x;YxJe&$FuaMqkTM4d^~vTG=+6CSE#tV>tjVYA;g_&
z9HsPz>N_!hCg4)DHL=WsQ%yL>a@0gNzrSMD+{9N&#(7~|XJw2gV78o-ppnh$lSeA+
zFMnCnsu3lTYyAS!-8(oU^a}Bb0-vs<USk|G;eF?T`V=?CagI<(XCC$!z9_f;4;#nx
zNZLQGhEP|O$wGy1P#7EfKi%25dqiCZ1?M>n1I`Dd`WIZy8rq-v2_1b42D4`iCzT3d
zaZad=f81hD0qU#u_uBvR;p3L)WzxZBX}88x?rdv4Q`Ef-I*eiAu-OIKy|s<y2&o$J
zI6MBEhdFLlmpZp4lFHbyc4n&b<58bw4DF{dg>KrGnIhy(_&R+<I*EbmX1F{<Rai4$
zZ*kn4%7#$;kxbAxdXC9`eL?LkcA&tJESy05AuCl@um|=nfbicsaWURx`xon2Ok{m|
zN7%f%VM14w8!SjyJ#y)6Q$8_86pIeanB5>DS59Mh`QZJnJaMLM@U%IZ|Ej{Ov2`$8
zT=U?2jilYMgQs+hUFhgkX|%sr6mDDcck65*$CJJq?*3gDQGO8Op&Nx!=*Ddy1_RE*
zZkSFwwxyhA`yHv7Lw6=I#!?llLP2GwRU7b2@g&PMz-6kt?H~g&0s1Me-=>F`c!Y#~
zDQnjpI2agj^i^$PHs8*#cUIONkB)C%^8npdR+6`b6Ne6W0^=XTwWpXi1KLQ((I5+p
z;#)=h!xX#@0!CgtXp4YQP^wAzyEF7(oU*2?8b9lP^7NHjpfCbeg_jr`;8tgZWXg>!
zxc1M_iuknBCJee<OsSUjNw#158O|_<M@i#Tx7fYEOXprSs})lB4)swaHV-eZ5ga^i
z-}iVtXlG;Zj>TZsx*t9Dh=)e56sHy`*tyEK75xZ>aD{v0te|JJ-VzD@Hm@t9ZzC8f
zo_J$-^(6F%<BRv^0ICZTycGkWCh~?6qjTNieAJmFepgwT_>g;xGjTNE9m}ySx~|;W
z=diUf7A4e=i@=QSuVV{sC(zedfrUQ5t#?Y_OlKj@pof#-p#GM=5_que7gyIYCL7JG
zG~j9-(+6C;@P6(}=T{}d_<mgN-N^a5hv$)&+PZ!4*n=c%O}@Tf*>qYwo;Py)gg9Pp
zkC(4Tcfj&@H?5=igb`_c1N+ts>tu>{#@=oI^GcR@@?YhmUvJSXxXb2?v?J&QJ|BtZ
zJ627jUT7A|WCmP1kdm&hgU<lJ><nC7yAV`T28*L}8DAk{aVvJzCsitcnpQ4hu!?Hd
z43kZ*HB3?k3Jw~L;M!VN+t4HL5#29UTsTrEh47iz)ll4b=oB#5GiX^}pcQ+%{7AgI
zjP$P6EA`dw7=J}uvS*5(BKnlkxgW7;Sn9I$LST1kg_{4BG?qhBU!(l|>4Ls6aftrv
z5PsX^ORrZhpy#x4cCoy}ar$7>M#m$Fk<pyYDfVjAIge~jz~K{0h!Z(6Z_fTCOnVh5
zakKVNRYXQSUs5h#e%ekNQ{={CVJ#%P+49je;``zHnI|;{(-uGyFK{A+nQhq-kYO3F
zoz6&yJReRd&cZ~v6<#6&kZ1U@qYV2p=kfOhPt(WQ;k~`LhU9F}1LwR*tNXRK$ih+`
zGBV+ctGi%6@@wK%uixg+O>O4xj<BaVO@J!?R!cjQXnDM|gGN|&DOSeMn@wMx0^zY(
z1ERussZTdUWyzZnV@G!ukYhn!))C=Iv(*)%14IqA!kedJibRrR!XZWJ`nRJV;0P_j
z;-@-&B>`o=9{LgB8s)>a`t+?aNjDmw&|H;^ipphYN9DqF=F4y7pOYvlSTN(jZq_?i
zH|?rXMT0|DCIIkJJiO<6a8VHRV1At-v2}1!g&2m+vw1^eIiK}aKWxwRqZmC<T}!XA
z-6g$u@{nq4RoRNrO=m7e$&IDTGped<RyXl29fJsjKjx^DIjMS;8qn}!S`D}evof6D
zXZ@Pj_#$!KxEt*)?U6J-Mzv~Kd+ycP$LPRd(a=v<;#ePT;ErPFdH~?p%^=-=GL6pX
zM!Dmu5b~AUt2T@;$&pS(_D<=~kL2>0D}xyg_Ctf&-(6%gPHBr3;0FLFc87duXvmMo
zV#r?DH~9^WI>emEkaLvrTtPiFQ@FS&ykKdlHO1J=x5<|v$=j&G1331VIpUoR8E%KS
zjeAQXH7n$s%^vT2j=rn=)u8polH&2sSJGL4zqTqYxfi}Cq|A+fe<VG<Jwb7>-$9x5
z3Q1)rsEywe3s~H4kqM7aHQ9NKcXHLpz&nxg2Z?vCLdZ*bYl&I~;`o`xu#s|ldYVX>
zB-ygI4qdIyGw?K_p;FgEEqUw*RrndH@{&RArC911YmRyV_{Y_KmR#awr%(B?i(0y4
zr99rOeB<{EtnDpofv=teUQb?mMr4Us>ar8hXDtN0JVX4o#<%B(H}?UK4oJ>IwwLaH
zL?sAMV7tafmZ6qslsn!}empoO47<vIfv{Wl-i>04+{YAlL{$r-VcS@9AG&BjxZ58<
ziu;EQWl=2A^2)q&D17$sJErN|#_ECo9mSHSFOFcS*lIOjfWzJd<)T_K@5pi|g=j^_
z{XJ!LW+DQ?A2quo-iWQtYP?F|EI9(GkY;4cHry8jws_h*`2nfIH!hk7iVhj9Ea+FM
zKG}%5>K^Kq_O+^QHM)EI2<iVC{`r2X-Z-}6??Qw_?49vQ-t<l11$3M=<^8@9Ebm;)
zK9JMNwt^uAwJCv36Hb9m^ttBOG}k3&9J&z2X|inq$^7O#OX}&oKxVr9(-ugn0Q_A5
z{@yI)8-nDUH|RrhQsU}7M(Bi3)vQC<r!(Jk2-K(+rx&P1F?hdlMNFo#paUp$&ULNQ
z#>XuSGZ*$Emkh|a_IAW=;nW&S$rlf}y~^Y)zIOH12&5AqYe4wQE`N)M)9F!lF5wof
zy{Uz}Hw=9w)?i`O(n%g-Pq)W@tGNr`=GW85jLv|;E$!9LuOPQ*x)_$s=f{U4D)g=1
zxggRRdnYfBLcZZiA1Jo{LYr-+CqXi&@crV^^xfIr0H{>c!mga-baTR>RdYWK1X9=^
z5=i$Y#toSHe!i`eei9^UiBuqvu}b7(S3j^GOaOzN_kI*Zi2m#W?m|N}vyf-+a1KFR
z4a39vvLvR5ZO65YA4t3L*-xd6LtphwKlzxO6(!;?(>y57be|kkg+U3U-nt#}2x5%b
z&~@G?gzr!Sb5Z;BRsQY_dfbIEtsz+b4q+lJI1Q3b&=vBT+vX(&1m1~dBRm5*H9b#b
z`VmEPD;cTuwF&k^`q=RCB9>I?>zmmIroKdL`7#4+0Dqgn56mO6d?)2<i>d^cb|zWO
zJGEWbPaAruG%a`$Z9gRT>q}I+(Uz}s$_phM*KVC&k;S9AUT>M+631{y8q8xY>?%0a
z)Cl~ZjtqTi+YqCGk{8JZ%L+IwC^{}YGc6wM4d1YP%n{ks&;5zmYkS8w5b-YBj<M^>
ziavxrHvFEMe)fLZ!{JSS`y@B6Yl^3di)B)C8zl=Xs>`srXk_2)bFE`=qa>}+B8i!v
zTv&BDWeXkx)TMf?krYAa1H6N$VdXiIzBYY*TW@|3#7UWeQx${IQgYD2>Q<RiXwJ6Y
zbFoM&T;=mp+EgT;W7&=y<%?p%X}ZWu?Z&wA1XMS-JcVs_K1cg$b~<O3qLq|m$q?7d
z;MYV!IqniA3j@H#zd7<lA<s{Io`{tiNV#S_bNB~*oQSqEwh8z20K;P>j%R-7piEe<
z2mA<~LUK#Rf`PxQY<5?xuj}fYHCkF}UsnH6BoneBO<dkNY-$f|KcINKcIAR1n8QtA
z$a7JH`pUcayOU7Z>RU29)zm&)asdXlZ->xe){yfWL=kiei-}XVlp2E>dnu+x{4n2K
z_ZFNlc}Dau0VY|fw1G-h<0dSO03fiduY($)8X*-?JESo+2|17?qOyXP3ddmj7WWbN
zmP^O}Q>>!AxB_0b9Z*tV2XfF>^0se(0?!_fy7$$681#*8qTMeVc-5Dei*M=QJuu{=
z_heJ@CD@c&ul&q>n+#`Oit=kP6*^!A)8lh?ExPeYke1J;tcGr%z;2DS9xb?-Z6!wX
zsf=Ob6@78;FQx+U8F21r7bpJ(hX*HYc($UCX%wZAzF$#JCk@M7r{(c=VK1D&M|pd@
z7;^&_A$VFPKfA(tQA`rP;Is}Jpc7WT1Kvw`!>c|nw1N9mIXGZkQBv_K&j@{3CzHHD
z^U?aYKltX}#DjYPdW4mGC9h6q$Ll?8cIDE$pUjgR`$ZL805ffC9>9YReiJMKaVoI?
zqogVq14tGe0z9lCsZZHM-r?d9$Ba+OitTQ(-`Le=@jTzDIUo^iCU#I;gG{P&@&$g;
znDRl+ZjN{&xpNUFx1%g)%a^Y0@Jdv2laSd3-RoOPlpPSi&RKqLB>Zjf!xgJE`9ret
z@Q?iicdq!PsZ{I5Fewh>Gs4naw_$W)uoA`mjO%J$d3RZVBl7dS(P4`9%vVcPX3V_o
zH0V}^ZSEd_w6reliud5fIa(G`jH`rQt)9Kb2F=O}z6(5T89U3{VFnnqOU?Pl;M+V8
z(t6Sc^IYM02rNS>^+?7a3RZVJu0x&@6~<4pJ|WRl=<8Yibr80yB{Vx8GnL4ow-tMa
zbf8zroIQg&OdLykTeE_194<o}!}xGU6O{H!llgSiu4t<nLapFQvdb6up+8j=dS61G
z>P00Y11_H{L<l1s5I=-NrCxwpr8?#Oo6$S42gO8^bfII>B(<!6U+8XZ+q7z`rHex2
zA(&Z0<^h+5ps_sF;bp)1UgPH^c0Ld5?Mmlf{b=f%yWQtj!r0}qog089wPSyoBT%8y
z<_jpoaMFK$xR@tqPr)ahc@uv&4EiklZg)I|SjD8nuFSN<!_0NtzuN&32UUnY5-_<R
zWT{rOMDm--7M90p@;PrUXYw3smCg(%X5j0%7}~1AThvaYAAn;TMXRS06f#2@9uQx4
z@->~4VtVIdH+8T8{}drvZGJHnHOUytQwvyrvY6QKX;6%{<-}{8ImveD9a^KVZ0Ycf
z<>!2@IT9NQnknlKvYZv{esN29J(;mb;EFYwv{Y|JCIqO^b@iiA5O`Y8*o&aInYvr$
z54NDBqJCMe!N5<W*Vn^7=%%K1Leoq8j3=BkS?7qAZ4#eL!PAXMzCgR67%M&r+eZZR
z4)0v7hPX=^5dyEYfgYH0PwOzmD73UycN#QWjMi#6?tTA(80DkpUfAr9CVK|7ORtVX
z+D|b)Ikqu=;C~9_;IErHbtt-_2%d#({M28<2S7n8mZ^?rR_wUCqcFi<cn!UihxGlO
zSlXo+NzZ9s1{)_TFF6gz%k1U=FZLAlkzi-XoaZB5EHYPw!unalWq@Z|XoI-&ZZ}f5
zWE1_l`A^~6^ZECWtJ{{MHtOExigdt_N<Bx8K}u=0X5b%i)Oa|L`YTW01jq0tRdR4q
zvz=gGbxMc?s9=P%D7+#5_{J-6WOH98A5~tx+f!^WK~g|elxWYYT7`^+T+}Y!^(>hH
zW-oM|-lD%FjlLL}q5n#rc<HK@*0rXxew1+OC7(8aO9$T5&cQYJwa6;umFomox-daB
z$3&AKbt!*MCrr%&INf2k@2gqMcyNO3r^}o;UAlm2(p4+DL1E`?yB`UQzp)~H2>((!
ze-7VaKi7u%xN}Uapxt?AgCg9fo5FLCU!B!1iyp8~P5u_s{k<z7AA)Y6ZHvraLIdq4
z{0rf&$W35CzMos;s&=Wdi=&TK&;4ZyyHuw>S;@G>az_(S6fYbP9dPUzTean4;$JZp
zLAyZ7X`(R4%a6rn+#6zx>?#Z}LSOOYvA%FIikpr^a~0yjrHpJTBX;o?uxBytzX0_c
zA(+~WQcNpD=cX|jEDCJr@3oxbJl3}6Sr+v<9#{R9WRkeOMIgfTSHHy4bme6648ptF
z|Cw=Jf`SR2%m%ii@$!BD;y}vPK)z20!tPj*N;T-cc)X|^fjP8j9Kj+3TOwG@*<-u)
z8~yhAEG@Hi+*fty?r++bvKnD4e{skhRPX;-{UKIl#-!mBb|XG7orY;&cuu!EyAdQ6
z+_b1oq`!@OPzF(Oq*qmnLE+xIioDgIhtS=f(qLnZJ+7dxQv8&*zxStsqV}4|kH2b$
zFgtJo8uh;Lk-0^S;Zs`}3@%oUp*J?G???PaY6X810!mTynzLI@;Avf~_4ZEQyy~dA
zdcB;r<2=}_IB1`rVgomwNeoZoTwKcYsQU1%5SElN_bXzM{)t%=d*1rOhp17{k|(#=
z`wi~wdKlEf(wFa!;<+FVvU?KjXjR%ieIZ~*-dH&(0dx?5&?D?HNY&hn05vJ>%g$p#
zYP7tHX%y;3J^DUzhP1)XQed3a^q<kZU1a!>M&kJh30#QdLh5p>{TK#tJ|LSearl#_
z{ZRKQDsJ9~5Imf}&T9F64OPmj!G)iu<wOG=zh=_#bBdsfq?%||r(Ekhupl*-F!Z6W
zAvCjFEj%5cQ6V_$^&Ck&O*)e5kYu7xQRI}It9}(44FDg6gUaY9x+Vq4ADMjkIjJJx
z8_l+SAoCZ6ob$m1a3UC4RfJBdEj)C+`yp=x?Wmqyet(mpD{YL~%#}vEcookJgE?~H
z=|c9zdP7>Gq^mc+4LK<v^Oj=}kf3C{+3<)T@1n#ZPx+w@qi0rSG8ORU)o{FwB42>u
z$glzOvxSVQ8Fg}r5Q-%$BW_4`7}TiUU4lwk-x&d`zDTyU{3>@YAyJ@5T(b8Yvne}~
zr;<Rtr1L}lham+C0R%5}x}(P$41%W5w9hKUqaUcA)TzTjVicHpgHej}OLAys=s7~3
zQf89fE87kxGD-9N0c7^bs(-;fr}9rqn1~3$k96T)LGK?spPKc=vAd;%#VGhHu_W{<
zU?PPyViFT12&`@p>@7cI)i7fK^$fCX=c%q8j8;A2Nv-QQ6NaQHMfx^6XqYGm-oFdp
ztdc=;fl<Ijno_k##F-W6S;b<vk5kibgW6LY_x&^h)zGR$VO)sc@oHQd{bTW3iA2c)
z`-g=dbw)wbJ#Rx3v<=6^hZTr(NJOFjD~HMQPJ+h|H#omJ26Ovg!Dos8;Q}9`7WChu
zEad+T;2&$HxBu;EOdIweLjNRs{~g6e6!q5qBH%9i#^xXSU!E{S8f?h_?Gb~{Eg-Z;
zW+v+%c3esQ)Z`Jh&3?bq&GoO^Z~XroB0o{2De0}Oc!RWZ`@gRLk40%254;1Cj<Np=
zKJ~x3<9zqO^#3CTU;O`)`6u|hUp7+zSBn1`1@-?5{NMQ?`k!U^Z#8_#?8qzPP;Gi3
UOK;b&H?W_aw31YfgmK9K0os5C-~a#s

literal 0
HcmV?d00001

diff --git a/oxAuth/Server/integrations/uaf/img/typical_uaf_architecture.png b/oxAuth/Server/integrations/uaf/img/typical_uaf_architecture.png
new file mode 100644
index 0000000000000000000000000000000000000000..44fe121758c9e0f905623c65bb061dce043ea05e
GIT binary patch
literal 11696
zcmcI~c|4SD`~FyB>|+TjyOI!P-x<3?mdKucELkE#W2v!~EkgE&kc6^k87f7#Oj*X7
zB8>g9PWJCL>UrMh`+eT`{rvv<{lU21*L}}@-Pd^?=W!h88GFS*n~s`;8UlgP>FQ`0
zgU<~Jgwz5`0shLp$UX~!@IZ7m)J$(@FXgCsEOa(R*EGM;YgQv|Y@x~?=USXho)71>
zhK;q2N0Cv~ESMQHo6b}h#~KI@>1QH&HC4UNyGzIP75UB?zc3W9dwDu>CQ&k3ioXX>
zctaB_l4v^|ELm{EZIKZYE^*sL5CUOmfYODl`@pr01mau2zd7zBd&+WxpHG)*ZpR{x
zYNAi3LZs{If}rjfg^E{O7}1LQ<;JrWuLw42Yzf+%H(-3Qk#$A4n1J(Lm4k$sYh`9%
zHe1D61V<z)#Ayo`D$Gj12F2H`+z9HqHK7?4k6Ec~@=<*5eGe9awMf$~5V=$yUMXTV
z!JmJYdTysu!f>LAKKh>je*W3uS*gM1x@jpKl5JXQtGR1!zH#M}G8ffbDM^R{37W(w
zCJL(tOWF)px_TZG&h-N4@d+1&9nh48TtA4B-{Fyjq>+MAP~zlN5s*`)aI$Z(9Jrt^
zA7-Fz<}s7qZ3WBAYvr^FLaU8~CKkmE$#?cQWS?Z`1_`yy>KKPzw>7^Jn7{VsEXw}l
z_DG9-+MW9Le!<+l<iS?o`()~`d$Ql>8V1)FnBePapy)DtN%Z!#T<q{jmZe~#64Pvd
zNNEa*&8MIs4m<b39VP$m(8~^Xe9y!uOyY-zn%h069y3iO>Mn-7Uq3K7__X*yGHkfE
za2FnCpsahS@11@yrjbX&E0CCBmi)u7xXVc;rS0&ta{JcGtJTl|g~}-iLfwikr#*dU
z>cVC$+iVYEX0<R#_pnD#RYraN^;Zg;gSjWmyc-uzhhmgXtokU6+w}}n`Md0Dm(q}o
zWjIA&s<l$P#vcNE*_zIJkuC=QR};zv!_#`>bP~v(#7Dqs%F!pKSVo^Jao=8id#y`I
z?s_4m@w%$=!0Q|E_3h3?VWaZ9)=t}gqst@d37bya17S3^W#@QyTih2eZSN;fsWy0j
zvn;PbN7nF<cROUJY=#I^i8=U8*GVtonRU{!<CI2RAw5MN#n|LM=h0?k#Q7F2Ie+GQ
zN2?o$rPlKP7`x!%4?m#gE-e!&`=Jxp2E&H*eBN-H<kc%DXUAp`xJ>fiU+A+QFjfy7
zxP5m9@#{WZBGm#a-^({V`Kk^*O3+693l7=7_%wqvJ3BFrZK+&{xS0D)*0<=!w}Mmq
zS{fr+XT*d<o?&m~oj`IL#57<poBX^9XT8N5AXB(Npi$=k?#r|NT2)1o+D5dv-Dvo$
z@#m04flbZiXQ#$Yw|#@JrtJEweo>m?iamr)cW(7luW?t3aq4^7ht3{<ukU*XmvC`k
z(z(2Ac;-UO$~yv$iic6qb=sN0;-L$t57;re_i-Hs5@rVw+UsWUyib3q_YS2ilorXa
z+oh{Oa1z335(w@n&<)U~Zt5hEfV=bTkmztMM3x*y@rD;fIQ`q6Yka$r%8)lru>Jfq
zQDu;qEOF`}&S4z?XW(Zce;Bz_jb%nR6+}E~!2QGa{eRqy_+8NQ^bm}#VJZ#e2_<_p
z_?B#@9lOIF^ZlRfq!(QFrnnDzoGlEHF@ckDVE?YRgvP4Iu}fc0vzQ*argi9;g&jRS
zIN5RVQ;_t6rRU+UH*7>Q75hDL0=m6T{1-|k^d7b-0t>bI{s^m^oFq=GKO+f+#$%65
zQ{_0HNT1y+btHjtpoKk|EXh$?JkP?h%-1nkJF)i!MW(R(X)8KkE!rq`^YV0d3O!D)
zt*t+kYhrG}z$O}BWNCA)=GuMqo$qCbkKPl8hrGDPf#Rx-PgrZQjp06>-U2S#+wu*z
z+t9cJRXQ<NVYp1#ExBpbMu!d*I2>cFU{XJ81)pq?ewyC*4w<xJaYfj+23&1{E?`U6
z68rIU6FynT#-xtmUnGQlGN-lD7ux7GVXpCFm8hJ4sJ&O0*yoX_p!fWNPy8*dQ7!H5
zY%G;r^ODY~C7qpARfPKWQ^DsyC*5ZXxA`>i)W2+7W6w3V+uXaL;7$a#xQIX_cYwkc
zg=77wiqaIDm2%#r)BW@vn@=p(NqJX{M8UTcC{Vc&9I9M%XVF}}*zVD@0xxy+9c?nW
zVR#7qP-rpLtUfAjOUJH;E^>{N4yr_AK)t_idNMdi2}|1Xbd7%e&wDIHYIRF{GL2-!
zZt+UO&4&c4!2+mWAwdg5;Qao_z_$?B0~SoWL8YI#d5(N^S0TXLXF;EbIqme`7{2)B
z;u2$^9$r9Khegw5IzLVttzt;v7oO0uH^$4Q4#cE%Z#ZVQ*9m%XqpNlCo54N%;uKM3
z^UvCBj}iE2KJ1IF1=ecGSFoA%(%RAccRXI(=E6S;VW<jSFfm?yyej2vw9D6hX<FlL
zt^ddtQhRc?PkGOE%FopsVI(xQ!<?oMcRbY~Iv-8*xH#o0oaVi3mq0_~gJ%APpIiPx
zPhU+dt+}kt*)GVp?<mFTR1!)ReFxIm0{J}i`k#1A81C}E&WJo`QWm#Bd~@{ZlLV1K
zCH1j$)%Y-@_|x^dS07%f-xe88=wvoO#I4_)^wYLcuiAZHyRs38ZHjJcpQS{LiJ0U4
zMEMtnPG}-(_tr_|P4NjF4@ViMQ(Ehb7KJ4_?KY}4ln6PE=}oRDU_0*|B3Yqdq=nvy
zqfb+gKa-N|Q!Cs!5cWXSO0^<Gm9}z1`ChCdH-yOGIFYOPsZr)Ix<T11S^CX8B$Uo*
ztK4i3KFJWe@!-3R{Z5@Y>^UjPiLRbd+s<9vu-d)%)X2_otm|E#Z(duu{8QBXYF}K3
zBRcgKa~NvV{o;+J29B3UTZI%lub?~47pIHXH$Gun(hZ7pF=L(jUbVX23Dd&M3L#9%
zUg{Gm*QKdAqj(9e?CTW?$G#a{K$XALMKHoRBA$@K4IwBkJT(X_;_l?xAXi18%6;?@
zqfuppVf!?(2eUHd4%OEVH^l~_OJlN<q+n3B{d4YOZU1(cD&DLfmo-JtSP(N7X(rs0
zIkKlEueeqX`}FpZ?nYo~o{DtsJWx4BZ&FOAMGhBB!r^c`55kbh9C=Q0K3H&sqO$U!
z-QNEGe*auJ;~Y!FS!&^6LO4fsYs3OZ^uEJ<b-30QPKC=b@@zl}F6Xdfp{RhzySuwl
z-4o47{<^w4lj39GkvI#NX0iwbLP;N4W;iyXa@?yB?p-%ZJp3mAVQY8av_71%9)r1o
zsrekGfL2v7V)0dpi?A1_6zWQLvM{4WhTS|48wnMs$6V2{Q+&w{#a!X3&QirklA_1K
zbF)B~&cK4vst6e{r(^KO4)>bLP<FD3HPUcw7s-G5h}f00=%#m5akdzgS=Kf(rO_8_
z#f)uL*;dHeUGSVf8yFb)MX+pndAZ1dAr8`pW+PV`6)fVt$qdEtXfTsIgnHG5V`&O@
zl;>{WzWrEURGbMGY%ieujw-%mYn%iwM!VzcBfgmw;!ka}pU>|@8C?0M$3^0n{B@1z
zb59ZA)qUFC4H5NE761z%Nrq;7)6+w@eXzgV?*<`L#UF!_lgv!oLd~c-qwJBRC-W6T
z_czVge*TmV;*yRmL+YAQi*nd$^0d(goJo?aoLH&nZhLuis54D5B4>!t|JItDNWtMN
zO%|&)@&Hmao#Un4HwGX$JUf_&s8G^zqCunz5!k3#rwy+Q!bZeve^4#HKY_kM0w)7k
zS3`x%!m+Bv6EF@uIs7CA__r#eRTc4s*%f7wjM6ZYyn4QqcxZ(x&!sJR`|>!1wiX)i
zi-53%|Ld-Py%LGN44v)uU+FkaCPTQ;GAZp`t9y@5X^+Pl?p0glCoFXzgWh;-F>9gA
z+Wvn1PV&6s<S}@np@Bp16e{2ZI3+h5bQw7rbfKfS((O12+~e&D^gW)J4%#!q8*|?(
zGDjv|=G<~*RVqU0ZP_C?S+d58Q!Zbnm~ek4#`yf%*Rb=4YnGR9PA|RO^%p1!vm6}y
zN}IJ*3k4faCgc05GQ3kQeD=aB;_c9(A&rOH!t}clYkQ?*Xv1V1fpRNY@}}_WdEDV7
zM<#MY*LdFP?NVR;m{xNS^Ed04ng~XT>in#FYNY%#vC0^RYpZJA_lv4+i?M4<yK_b(
zPTn*5Jk>we@`EnQ(e(6x^joyPhmFc8#3tXfJR@f=H0>#v`7YQ7PH1Rr?tjuVQ*#$<
zz1-9LqZ(N|!}dsm8LZXJS;>(7k8PSU(ni}eh=pK&=y+48vhG-8R1~(#-q!5wMHO_f
zzSZ}L4rwV@Q}sMU`pKd-C|t(C7&by~EhZCEML3m_gMIg@g68THGT25WW|5=e7Df$+
zeRK`ZSXxw9<bi-Haj-`Zl85DVm#M{G-Ly5~qw>&;+@#pJ`M~|QWo1{PIs<y4H+*Hf
z`4JtuodUj~x=NAUMH0p;kZ{tm>CRI5%dhNH*x3{fN9)HW^+6rciR$Y3)o^T;>gK1?
z>2b6a+fmS&(4uk`j^a#+0^Z9By}?e5OF(BdjgmyVE)(epoxj5az;1k-E!~cxDCA#(
z7i?xpf{q|YEsrFY7_^OW89|Bb-ZKyvA1!?T*^i+udFR-ivso<Ho{$G#I*m;b1$yfJ
zQRZ{GyT|%5=+pf7i^Q<R5A)^r6s+5n5e)JSnSAy1t^eSr?iDRf6+J%@pGJPPAGY#?
zb>K$s%R=Ygs`Cx}IJWqM+NO`Y<PjJ`cQl78nZ*>tN{))nZO56|vqdKHVau68)OxQx
zEw;}?j&>MMjd1$`SJ0xDJWU1QpHjOm4#Qv8I3e(pZE1?_5jkp4Lk=p<&>0*SioEc^
z;kC6T%A-@MMwz>pE-vWMT>O5%$Mr3<&3)&(RBwe^D8{nvwPIQIJ2|vMRMG1N^I;L8
zxH#kQBcWlJUM&u;iMF$%HLtlvhQOJF#Ol`Q1ow2&`mcj`Y~L=Na}G@PmH=<ufLb5Q
zII$z-eQ*=kh(x7ipEd1T7MXAWQyM$Y(M<xD0=#;#61vGgG9kT;zt&-4GjrFTmez{o
z&GiRZKuJ}J<Ngbj_-YZU347ETKMp{X!Q$b?Y31z7s)7FdFL+`KHz!o`!5pJR;VXoY
z<>(79PSuWh)s?N=^1^U!0gX93;ww)(YhJ}2fQhQ9yb~87CK?L%6CedFudH+sbCX;6
zLt-vFdmrSku&}(}xeL2bCvD9}dW&a+w7$Ncmza=pXCG!|oit9H?iY%92!MNPe?Mmd
zqo3?FU;Rc0U^L6Ij>>K)16BU4o+#$vs^O!I_S{ihsLNQsEm-yx$N~sbxPo4?fHB(6
z&aU{^VdvCTfhoSdz5Q2uqc=`--tR(P)h?b5ig!i?G{&YfFWn1`309BT*D!j&ec!(H
z7zCuPsiRayg|a;h8`0<4fJb1xNYQN6r~r^$h}q4bnv*=@xSvo&D9CFi%R*1y)-^$R
zHg3N8Umvj0t^rZ!eAqZywsVF*a+qv$;6_nCOeqBk+=O+e3j!6*yI<3A*LJ_An&X<y
z;aOvW7PgKn3JL9J;ONmAVb&#U_NXtL&N-eN>SUfVp(GN(PH57g?I>L#ngD~%fzwj$
z$aJC;Fm>B$knMP~bB3gbpD`yr<=l>@5tO;iMVm1a-))lS>|x6n^<yA#VswqeW1?|w
zek5=QB3=W0hqkYQrxNvj>}wz+?sVT+f2OfPP`32{A3x%~xA*rstIQBz3AIiBOChH>
zm|PaGt*z?BIN5r2TcW+eGiEL{k4ieWCnsvd1>l4XUVEV`vpAw(G6$ZU#|PP#aGE<2
z^(|e3Rn2ONe2f$>27zKufnW;9dR5w1bOd9(L|VPAL?M8C<gXk*A{qaC0so>WC}6a#
zIISrf20N0zj5Yw->s!Oyh#b#4tCDU&(B?PZKx39eTV<;Ynp#>eMW!jyLKZ3E3f+JV
z2(A-WCW;Mc5ajS*G;4GzfXKRds#{q!(R)LjK4j1(SwK^2y1_3ZjdS`f+$qqUvzwbW
ztn$#iC4D6PU*tSf1!Dc9D6R`ex1tXwof#I$6yC<4rg5&Zd>9=aUD5~PpNhkRbIqZu
z{_Tm}Dj&V-vJ@Gz-bD?@Nx%d3U1C(NPfB;wTmgbp+UUHw5s|WzUI>=u_cvm3YVi)Z
z*UPxkMwTPXUoDzHlq~oX@B&t#Y_I=~3=k;>pb`KHBZyq$_o(G;#00Amk(I=X!W9A?
zsUY&;nuz~SKAa>=c>g3H^na2MQGhjXe&O(cWIDCbaXHW9U}q_ig2a-|IKn!{EHAja
z-L=|R;1lmSpV$0GmfO1d#bR*T5I=C8rrhoU4SW&dmqv!Bo2tatTv_CJRcwQ&fCbM>
z%12<UrbYZur3^iwTDfB2Aa=%=7OfASV5%G|*WnnU5oFzRhPlBjnI>yF6+2gWng?cG
z*fHMBDFbHcYk}AM+E(h?;SA5qoKh|sm+!j$aOum_iiuBUeWDw>Gqp>vBP8IXeD_6z
zo~u(KFUL+G0%ir2FA1<%@?AAietyR*r>oX7(rY{cfAOuYC!>7V#bjp-#}laBW7R&|
z$vcm9f~+r{VUbVFs&Ua&|7fypJ^e{%^j!6qfU!3qYpCKaurJgSOY9DTpJnN*haUED
zmFC${1erVBjS1JYe912>DHo8V)0rBG8O%L*1m!Qfcx%XGtm>oN7<+p27DvOvPT)tW
z>IeDi#04#uzf*km7C#k^X1pN1G3YLSo@!-zdZw0t&a;Zs3YCx_lVuNu_mW1i$Di@5
z!8iEgWqY-`qXYC^;ERk6enZdCQkS2+lki$l@-g!#=na~GaL>PT6<`hfq27N*fo++Y
zbuN1?Y4}^>%n%TEklbc+XK(c#+f)sZNq6EX_@1>o>J9g${gZ5-eBD0$vETt&kyz!a
zBbI5Q^2c=tX$EK+k&kZA3^xf{jfq@stgv)b`fw(2{lKGn;EEle>D#ehWRU)vQ<{&$
zqH@j|uRr=6{X!%>Ye)Guf-z?nHXB~i!V{@>RU^NV&<t#29u1nnGIJ<jY(DJh;}F=~
z7OZI~M>oz&DWs2n49qq380M4o68YRc_rztE%#q<*4e^Qv7RzR&ic)~0(bZ|dAiqcq
zy8^}#l#t^AvUwGY<;^Qy0xOwH8g7{L=nxx6J9n(hx}_ST&@E{w)9%Wr%OJQi3a~bQ
zUaw5%?`uwH6_hQ+^Z2jtYzz3VaB#p4Nl}As^=`t7;=@HVaqjr_4m8p|Ul`?;{gh{8
zNEKlNRcJYHS|g)mZ%5c0q+XzFh$?!|bpM(ZM#=_IyU%zQc_=AynY#562l5$K_n0n;
zx1_%;GQH-lDpvO_s`zxHwfqLG;ed8zM(Q5ckvWQ&s`ce7+Ez1M{%x|3>2MVqruO&?
zw#@<N*SzC=@$0(z7tVM0k2U>hZAbG~+wxTVnyxfie&w|EBRN8g532Zju={|3ap2h)
z`%|+3ZUiLHi74R50pS65b*carj!sz{FvVD~ZAbwL0Ym>Yj@15AMu2ki5pQusP5+5c
zzex`mWyJFE?0t@|7c4vJcA>n0OSHFZlRIqup_sV0)+J`bJ(D9VL67wF>&up=j9{1Z
z^71ND?p7$dc|#=YY<ejWh_Xu`dsP@?KDVwbuKn?c_@@0=@SM1G3W=X<jLVU;!@hKM
zXhvw{5%@uKz8~?i@o#?Qz#RhgsKQM6yrFP(8IL5~m8j2vcO*`NrXxc$%99c08NWXT
zN}3j!1t7xNfs=IN??}fe-+CnN{xJy5dIWV4%-cNs@TW=j9qqM2LRiwqcI;EThEDGZ
zEiS3N+4u?Dm=&AB9{$AJy<$JkiYoBF!aY2^`Y`GBYWIbjmf7A&<eB<aIVzO`hGgZC
z_Yat$HloBCV@0dmxn%iilwRD4ym1EuYmt8q9KpjqjY(kH?dA(k)=}-(^ZQowAB;vz
zXSk^)dK;!Q$N3y)5PTN0on{OYU^{T&onmZH>bpaOBfmb}^TR1F$k3l@D6(gGsaNaQ
z^OpLl>A~^Q>yZhzIvkj!DI87ggsqOq@rH9Uj4x7>hDIN5EX`#zAmMHyWeX_H8mN<C
zbwzrY?z2}3${9D9{=~~R;1Ahy#d<_5uAQ$LnoVGu=d*Im$(>H|sC`S7lQcD2GIPAE
z^FiOo2g>!PEBj+cf*G~AA!e;hDRv`pM%@Z?mn>qcE2LySt%}(*<(Kj>ZfLv1cTlC_
zQn*%nk<v?@XG7Dh9@}15JVW)=SHDv_ea;L%>T&nym=W${f3PvSWUbi%NqVrpz0Yqa
zqmHM#z%P00iFsEf&bQ~x%Zb72rE_+-eF$S(E3&xUN_t^6*Wp4|?-2dzs%6AYKPmrP
zd<r=_8`dl82vFT<NSiakL>aU^=BO~=zM5g~>G)AuLNL1M(Ti$NI?<4L>heL?T7Krt
z=CSKIv>_DMKmo6#Cb-&2+*T?FbEt)H{}{Qk5eNJ*y8>x)MLR+BLzy+Vka+s$^u|V$
z7p3W0b3%4cu)F)Yi-g^_i_r1Y*0;WG%ujoz)RpcD*L@aN*4Y{R+^=-Vsa<L7HSFO~
zGL6HU$EhcZ)QG|Z>8*}yzP$yw!kCcD#St&r&q#?*Nf7F_5VSrpT7`k>bp`r6fI(~m
z(@P?o5%^9-xB=GJC!qR1Fj(=zRF)WzjOxd~cgw$aLQ$vRVauTgj}`-f@pFdcz-i?H
z$UNi1UTKUc5CWN^c;OfBOb9lw80JRnuO1vIgN>+5G)uD1vRzMF3b-Vl)$^yOAo^os
zT{q|b-^2hvCRspt|AV0JMWTTNn4m=kZj<d0*fGD3-^re$w_aKL?sH@W<-kWTepbFR
zwYizfEKl27(nrc~wE3~`nw;mc{?{!nv#92lmOOdUCydagvzkUa-kE2CpSBTxhNrrK
zT#e^=aO1c^4i}aj74T?u)T#t~<fTzclAt+>o?SXsl}M>(QTq2Y%tXseRkDd>vDk0u
zoGufshb-{mn8&VF{%40QB9y|CmA$qy&j1ZfF8Zt<t#cACV!mwPNmf=?jL{c9M>MJ;
zqJa^m@OS>%9nkpU-U%8qxI!GBu~Ve0=oc;hG(K)4x;{QWPV@+4^J6rO`mX`<DM;ID
ziRXb98BoUQ%)Y#8#DYkcqfj#9IRo{lAwC@!7uUzu)>h(+2FkHgq$9LN`)u3ad8fi$
zHX}!iax9ipdT+-m)x&XEquyHcwExd3V0mtUKoHP<?e&M8F`?~nk2!)}$&)d-#?m*)
z61-u6iLFOGfc!4i{|=@jCjsty<Yb{fz0^GN$@e4(yIAQ(C=ooZPyx$r$t5kfQCa_r
zsegm6pP-!NB)`%P5s&@ToX2R@*`v9bK+S|rQGKBWnQb@vu*q@!XO+dw>Qc$(t<c?m
zY0Gp$fvsGfodHK~r_uc}DO^}6uXaFV<ybJX*1Rc94gMe;>&Wd7M{6eAJXLB|vib4E
zHobE|8{f+rTfk{&X6S1mm_4%-<ewINnTmJgsw!R=r7Q++(w;{Zo9Z#z4F8SZRIw)o
z<C-UR+_&?%1&~`hdm&bINO`#&_gn5cv!Jfx`9S04dDJqfI_Tl`k|zQ$FLi(9a}O@1
zw#kz;sBtTJp$re}yvg$D!=o(i^t86srP$j>#xjHjGcp@xcYJ9$_Fkk*xk|y)V(je5
zI$?YobJ>S!i)H8MR{x`@uLh&aF{m`m;5kXFsyr+H8+nW<v!YCF5(S)rHTXS;<=L(p
zsg1e)9s{w|CV|nDrs{qA_;cW`gu#MoAI-4Pv|^nM?)kv+4H<IZI2y`kGrbxvGD*AN
z;m2X`?^2*CBTim&;jey@ZiRi=FO7Pn?a90?z=p(h4lMikS(u9jc1igoneJf=AZS76
zhLBU4oKrVAql+S$5_rMesV~epl)93wHih-CvZ}oCy^u7xzA+p)*YMv#p|f(X5%dUn
z5PJcROeSKKkrG4d1lTW;szdz$kIDD5GN`02GIGeI@xZ7-Fqu$c4i@ZSF`q%cc4-{H
z$)LakbNrjf;hAq8uJ)fCjyV>2T_z^Yho7H@+uqNA)^a<*IN-XBJ^M`wS_>kkpm$Gt
zzCKS53YVO-TU%*&cDLeh=V}v4hyf*n0;tK|T?Jf7mOw|p8%aFa-NT;J*;u0bJW`Vd
zkDP@#9hHccfFqDOt;<w`t*EE~hgwenus}(Ly@JTbK|Me(GW5=!Y<VSd($}w?cpo|I
znw4JV9AGmP69zCT`8E}(UcQ~li2c9R@4w9XITnsqGoX>j1-dRSN1TLWh;~Le78oX{
zWAmRS=plknM3s#JrQ10^p0m-G+}POoyJE1mvvck^M;~K74Zy?J@8QuBr-~cy<VRrX
z)hD(rJ{;jl#6$e4+H?0w*A3)Q_*h{@w`qFtg!VDHv05v&3IM&~hD<TTdPF4;3%0$`
zEjYspY6fFtV@WF$Ervu(snFmRQBnv!$>V{F3)bB;O}UB%czry|e%}!nv;1=tXV)<`
zHT5HCh-FdCc<62_{6U*JW6Xut!TQY?tiki#6xy#({7zc`z?tV{i2y}lmjP4^MBt7j
zG|7LYZhvLI-$a|3`2bdl)7FQ4B8H&2{Sj#;eG7cczf(SNT@~ZbLgdf8u5SBv4D*|u
z9ae+!D%&>!x5`<N^po{2xD^C<SON4-iJ-=wTse=!S3W!S{D!9Plv2?97nJDKp%nrE
zGT4qg+KOJo01+_W_tuam<W30R*L4~>U{D@2IlkkkJ&9;f@2g?RPf8uAQ6W}|b7QzK
z>=O3+RVbn3N<^#SxJkup{*9m@Q6IQN;Ye)-7Qj#_-<&yovaQ1*28-;<cVAy$@YNVt
zwi7E(Aww<Gd5HkgvO#iK@96Go$*0?ArHPn-`cV6_95T{Ncp<y^Hutj|$mMwg=R|<O
z{wb_pI2LA^i0$4KL?WLF_+OpM0f;14`fb{X4Zx7U8&}mReuVOjW!H01OH9SRh(~&B
zuT`*3YIg)p^d73?zp5fc;fdDjG|ml0QOdZ?GR~{dFW!1|dY?8^e|c|~Qn!HZ=3YjU
ztX`B&yE-t*FQHHNERx``H!wIrgNI&gsc06|uJD_fTO>0ZW9Vzj6odKZM(Z8v;0&bj
zUIT<~g}BUEzj7RaCy8y-lpSyGA3wL=;})xLD>==JTzaXJZ}6%qI1jN+`;Le!g;t0f
zU;K;|qFq)}R7xh{PP5kZV7ksA2eq@2ah<Jt-M-R2V#NUvr0b;rmhb-#8sG!m=VQ_|
z0zQBi&tq^&oI3vz{QO&`@K_JOe|SJlpV^E6V2Cu!6ohHRI|{UU>GAa9)K)W#w1F0m
za6J74p~Iyr16V?QU6mya>uT48B=Ns%jPsJ=Bs|qqkDM)J_!**G`{y7%s)%;o<fp7V
zo13@h{li_rSz<8}uA;1LkVB891$9Eu^R)SuRrA6v%j*KqSE_-<D+pkwVIhJ8pc<S~
zO`Lc_K9a)AH!N%-X?wKJ`^UjSDAB3~o7spZa-%5rS51*0f@XUk(3nb%8TSI7Y#eYG
zVSq0gqrJVobwS;;7+MaBgusQ<O>@3wYNv>yg^wm0ixGk`(wQvSMEnEFEt8yVH&9*t
z1xPdyxEST1==AGg33Oj1?}yrHpO(bXf(oGtGF=ijqSjd{AR{AFX0oV?*qtMy&%2Ql
zbJdhug%9E(u_wQ^B_9L)G9jd%lM*f#*Vw3FFmr@8tn5@!jQCxiH}_7^gQ{N?o>8y+
z+9bVRj)SL+?8_`*$L&05X>80QI@vjJ$DvLoTRXc2F=Zl+B*~1xCa4>-#01rkgS&?J
zxTpgvRb)WM{zebY5UoBXt)&sN_jC0g_;CcaUur8W2{Y<=yF3j%y;X5lttI}Cc5mo=
zJU|fO@Mqb7bVqmmQl+fu(m{<Ql6CBFD)Qgr*%A2yZ3tQ^9HhTU6Mbt^qY8Jc8I+v4
z77BbgfONmp=|2cMkxT(SD@<oKEUr&SyxbL4dyJ@9!FORIiDL8{Z@}Tw)ZR$K56*?Q
zyq=2yzRD`rM~iDeHz@MHB4~W6;M(OG57f1I9@M$U#o-@>OH&H)f(6S*QHgG^rP5EL
z-ao1atq_w+ElK?A4W{LQ%`AhCke`)Nr`}Xn&hTtxcizSJIoRUY*Jh8l`L+7mCE<-<
z9WJR!uYKRK--Hm(E&wR~8uqXSClyx38qaTZ>4!g)#|uNGfe?Yq1?d%r$Ca2J>$}L9
zHjvSq@V>YECRB<03}b_P^FcEa#CQORUB&M_T@~!$FM81oCkU19*xlSV!u^q#j_fVy
zS_2|$HUH_l(%KoB_2GdP`|~F(GZ+1p_oNlh$66mB8MYVxyy-dxF=gDbp4xA2Y)Ypx
z$j*gxPvmA&p2p<VB4HYV7SG`i4qPjGO3W@<oj4a(7v-toSsL5vt=cyR7_f*Ap3wt=
z*1-*8iwQCcm?+!cEfJ3-tmigUglQyeZSZ+PJuekYL+HRX1u6<#dFy1)n_Pf#N;v<%
zB)MlNr9$(_s=O`kp}77C+A2q9<vd&?Jc%j~$Et_aALEq2f$0c(Fa6N4<}8wv$i7VK
z+arc8SpDvn5VS4u<sO5%@T#(`LFTw?rqg$LHukV${sdXc?Xi+X^*&>o_9PV`6~A<^
zT<tsiXtPQ#VYvm9?eY3~Nx6^G*od%b2*cH82eClMro%BS<j#u>>(StP-i@ZWIS$Yq
z5Wb*EK!R2c0Vuu|YMHqC?mAhxTr5`mB@+==fYastdkXK0YSY+-qLhAlDzrdOg0%b>
zsWX|5RRtXvH$an=;Nd$)FKrk(Fn8{~G)6$eL7^<X5VSmk3c$%Ojx7qc>q|9ckV^#(
ziU^{7guDSAN55Mh|7-=*C<eU|KI7jY;X%pHCuCY-ZU5+w1Vb+kuMmKBFO#N*fQS?x
zNjat{bVoJ>LIzy=zjdBnNWivlZ0vUUe!Z3rD(Ov+e<atv`teHJAz<23Z|^zn&PsFr
zg||0~12dG?A#Wf#a5kde_B#cN@5-xFk4`N_%EcmEa1mlGnWLXz=wZSSfo3yzh>K1!
zR<G5})opS}aBj6yB*C%daxtBZU6*6xd*87anpPf&APY~gF^~2~Kb8GR^SdT(Rg(Kv
zR_r{u`dyzSb3-yui1_EW-zp2d?3g^$bUA2|u|<Az{qgNbl0l0$2Nj*3jG5;b9`9JE
z<UzlxJHs9Hl$&3uoF_G(ep#Pm%Tr=Fu+^_DG))=q5=8@??y%=(y7LkjncxOYuMTAj
z^Aooffrg2`jGqbFuFM$w`BcdMgY*8w9Xj3x=7(QyVH`ps2$$E`A39%TPirTq$bQ<s
zm!t4AG2T+VIBQV@v<p?0ZilW)FMJXDF5tZ1_&hc7&JF$9ene*9wD1q`rRA_45oeA(
z_o`BNyq`(!RYW9*;TivedNJVzk(-}%O0Crkv?%)gQn3PwVp0#kU0-R6YPLoZ8lqgf
zm}UYx?k-HHrQRZTDfD|-XLL*XPyHxL;)d`uX)+SldvR3b79k~DH)#y0J273JUgxH;
z$(5hfZ^l<rZr&`Yr`x!v@B#9F8fJ;nb0zZ?YKejp(wzc`--#$xtJ%O$v*V!oMtIRj
z)@R`}Z@#>J%-#KC;rDBA#H@8zUTz3Y7AW{3<unofw>n(rRC8mf;umP7i@K>!n)AC`
znmys=Yf8N-pPUD4>5Odc+4XSg`;U<mO;L-xNliP;Ay&4IOCjdAeq({S#CEOF4HaU=
z2y;rlv+~E+YiWf(HlJ6POj$H}ZS4F5_)*nf>W|VrxhqBZHI3quaY;z-Wb+B6cbCTt
z<VvSU!tVL5uGFcA6gdum3*w`W$3Gi{Cl5(Xj$L7F8`<&zo!AgvO#_W``1QO017ri|
A6#xJL

literal 0
HcmV?d00001

diff --git a/oxAuth/Server/integrations/uaf/img/uaf_device_integration_models.png b/oxAuth/Server/integrations/uaf/img/uaf_device_integration_models.png
new file mode 100644
index 0000000000000000000000000000000000000000..02a3273337715e25968d0725655aa8d188f299e7
GIT binary patch
literal 31811
zcmd43c|6qX|36H!W+^EpTRSDDtO=t;$smnrtj!T)2^F$$*-GJrGzdjTV?QQj-zwP}
zyR1WYgR#s0yWTVEbUw@dy??*^e%z1y{BgXS_kLZk>$N<e&)56Ob*(ELY<z5VbaWi*
zS1;e7qhmnQ(e3bJVFJJCZ5Wi((FxP3U%sg8@@lfAENtkiTV~z;uU!1SnKH-e^=}5=
z)B752cbol8rd|Xq|C@&#<L!yd-=l=-4b7&mDhu4ZANtp6On7<X^XeNl#$wkaUzW?8
z*PFZ!`3w_y^NNwBV5(6p;$2yPk=o`T=ll@oBy*0G_RrHvG#Y=pqo(IId#+FT;Ip0J
zNx*+@dkgGnTRv(m;2EL+n3b_Rs2g%VpJ6Y|qc7{+X|<F(M@dJoi3A_3%ZZyh8KFM7
z6jAe5KQ{5px{g}X^IRE$xq`JkJY{sGXlxT~sn<EvA9`n2;#BW^zfh)gT|B0%b-Bog
zqxEe39|TR6#YmOUTApy{y&;C9uHs2eU*5@u9)i0>%qfsMl{8yEPqj!*wc&6QM?=kQ
zY~_a>mTi$FVuN$j2H1*-qU?~lUhPK4QocLd=ByY?<>D#SyD5CKhz*<&4SE*0>NS1h
zLp>MuE&Azxz1VGbq&ceAL+NFrh{=cZblG82n#a|-I~ry}6GiSQC1{|cGGlkpNrxXB
zIA_k_8eiw3<lM_n_fCf=;Fx;zc)Ye5)}UA9bHg;<=2^ZFHxmE(oqDnf4+s~0yx;d)
zD&3iJpo5P`1c2Ms_V?Qa!WjD{{6!^yocBrCjicKU=$Cb{lE<fPH?F>al+NoCb_dG=
z&Qc3-^yVe(IllykAFOCL;oEXQVh$tdf9yinvU_p%pY#{?@frB%#rOqqdfKP#j6W|}
zo#@ax))b1H`#>>Huy{~nUnJh`nEWQAgOI|o)RLqbm+u|kx#(*vKjCTWVtPBE4OxMX
zZEGQFYOC??QK*}+nGqYSwv-B&3pJLlx?r%eet>9DR%&jjK)!c(jlFbOATFmdyedV7
zuk=SsXYS<=Nvkt$FU9!=*A#1|3ZqOsCv?%Zqgv|BLD$O(lO;^V9de4*E_!uj?H%#M
z9h?2Ce+l9qdT)xftlqt59$Rg7tfjivMxW`gE{hdHr=w)c*<QDn+Rdz#b0sp4MrMY*
z1Rg_*KwIA+c&!d(w8<52)h&^&TPyr!R@TnlYkY8xMT)~2f_GLaW|7i1vm%s|+nL%$
zTEpkTk+FPbSzF@X-E+ORC8e86nj}S^(<ZfqQ*ha}sOtE(afem~GJdo4bV3DzF7*2W
zV(Q(FZ_Bgkc4iq7Ztc1C@$73=1l{{{lE|=@2GKU?Wm~GJI+V0zQ;gEKGWTmQzMmX?
ze}C)gBg(fLXr%k{WZZAKQ*4iZYnjelwp|r-I{NMGS(WbgvhGRJk7e66_6u8C2T6mv
ziCb&lUv9>VN^NAk9VlYH_esOGeU)TEn(HDIdWACC8x~8%Gu{p`Q%GBNQ?Loc<i4jI
zSE!TY{78_xe+PTcsIExb;X3?Nky!0&g;Os&R^9-qW5>Iacr{jj#m+F+=4-1~m3wSg
z$$Y6X*91r0JG?E~n{qZc)7H|BqN3#Ym+c~jtv|q3l$g5ZPTq=l*Xtnu<vh~Xn73Fq
zE9RrcKZqiCNO&?6Ck9Y$WrMq1+TSG56X%%RF}P=heQhmaxf-2$H&*AQFm1wxjy@@<
zsrUAVCrPHa!&<B_EIXA3KFlwn>_J<n*cz_EUX?1nkLZBc=`ifAawgpgq)Qn|R;XJr
zY4iF{z$~utyEC0|*<bz~+|zJ_jX1%FdsgaXO_X1d>__$8`_ViWc*!HixFfUk?$w&y
z4yA@nbNM*CgvzN_`qg^uWUMdjRbp?;#b;A??j*lTU6t-<LP^!*f3$365a-URJYc(Z
zt)sp#xyiJafS@=vie)hnCsxldt)7c#?7qB5BPrH$aUP8F5*TGu?8KO1%1pWnoFU%n
zhRMiz<mX4X#1&EJvx*!tYzK4Ga=&)|#lY`z#=e`PKee(fF7S2`Kbp6-JRMoLoZbs>
z$4AsHSq<2l$@Ge?=FjOHn~-3Vy^dLj_&L$F^@q_D$KuW1vTC<VmeMm5l8CqIi8~G>
zq?=?BPD|;l<k|FT-;~wTGIv&DYCacnjy?!&y*NK1zsZsIZnEA{s$TrzE6vA=R};r4
z`&)=l|H#PH+gr2XjC-h-tJTz@;1-C-<(-j*nO;L$jmB>n6D@M1Lspk>Zq;*S$!>;l
zkQDhjz*C^n*CySg#!J{ScEt<OV^rM*BXN@jX|Wn4IzEEBkX23Sst#``b#fziZS=TA
zxtp9obPj=~C!;4k-WZ+nM_MnPqA()5^APUtBMkk*BbfQfr*(efj<JALSngF)5N^C-
zZ-%M-3!x4>pQ^)%XjeQe02~(tjyq00E-V$sNVfql;o2mLq-)$&8F_G>zg!zQJo>7N
z4t6wKxhZ%Y$Z4LJN4zi>MMbIW@I=Kj(cR+<PW)4>?yZ<chbBGU*yZ?91RcFd(D-hu
zKlfn}M$l8Y`03D4h^3?Zr;AtBxf*_~hljQQ@O}O|7lntt?36D#i11_R0e(8JgJIR&
z)qjyKT&~36!jC;6ThJ+oC=ksR1T|uC?)m0cj&$bPk(mdh)R<>@qts-nZkZVUf9k6L
z@A>_jCUmL@TQuSX`!za+V?>8loUd5jopaIIQu01QcTgu><BRM9o!?s3ew6kJii8Hr
zi4O@ApatoBbpE2$LHLj3@(i6SrV&jX?fJsdfB0uaqlg4w8ksMMG#@V%rMqsXlt7>h
zpogYr_0D1N;@6op#$(W6B)q}@sNrko)xSp}_7ezm)QQ2_1BcV*Hs<s|Bzy0VFDkk)
zDjizctZ(W$T$sKL;#$%tV%h4%=}{-}Yj1BHImgZ%hPIY=x%36+A@t1V{Et#8gUZ&4
zH5Kshlff*=6YqZ%kXO|PYMkK*jIgy{%QnwPNk<(cPn4~9CdNmye?}j&Mb|o&B*COs
zD|k<>D_8Z`FdD2Y1RpuL(Z6eSF|_heCb%%-u%izPvhXnC&Ea5J@}V<cTG&f6$rW5I
zNEQL%Gw4&HW)#gYjQ*lhm#tWlNljP3%RyEm3=Y4hf~}o50x8W~t3qePE%$r7{6+5|
z4JvuY0$~AnuW4X+^zO#}scFT6^t?V*4(;<7bzx;ee!;OIXSktVdvFSuY_Y2gCYecB
zaYCB#vKQ6u9o~O-7HLF#x~(j`AoBG8i0&(UNwy^PnsKWyOqVDWY_184RPq$>JXIBW
zgUI*Deh;qy`1ON0ttms7_KG72SN|p0zP1b9tV}1`NrNr!1zODwWhCR;h0Ut((lyCO
zr>Fa&r;rK~eG$L!1NH1iew^0G&$FjtPN&0!?2j8b?Kfjam>0&!-P$PbqKAK(G_GP-
zO<9Ibc@y1RFSyK^Sk$<?f=9<KQ_NF8`0WLc(Rc_K>896Ts)~K|QrR9W|2(B1b;W8o
z`V`Rttfe@;?0ZjEVT;9b#zji1Mu)HpC!QOTyl<^f4^HJI*~<5~Q@C8X<~Q>%tbBE!
zbez$RpSCxT>8YJWrWX3yup$lgyxpvtrC!Xsh(T6<?R08Yq#BW}Cm$G7Ba?RC<H1{>
z2f=ckRCU722SB%0_Y=yNDx{<m4RndCcN;8PF&+};OIA(vS)^R{Yw{&mS~g|ldVUB7
za+b<5ZkWW!J2~I0jI_JOCqT6J2=noLO0|bfMFeV@M}aJ2HN#LDNl9%OQR+1nmq#v+
zUU*4Nw>Y~$#V>0)ZlrfvFl5biqo~S#=Lv8T7Nkpiqk={}E3&KU`{-&_E2{z{QT`U+
zx({r)C`SHU^)#WFp#37$z0rL#;cVxcpzjlKw@RLPX(?hjrZV#3`yZ|>=-NW?9?Tkk
zLc4JuFRhY!t5RWW)9`Oa6MgZ^V-L>QkG}Y@V>kMmtiPy&jb;3CqQB^r<?KAHGSXbT
zg1{LCnfFR&pt)qiw1iDs$)w@IG*{E!zNETSl4mG;uvD`jK&i}&xt>5+U3r?oycc)Z
zjV<0OTj~crn(Yn4Wo$DCnvFxpU$ob9*5L)3&Gj^g*F8t<sk$3EViAcVVzLe5+cu9C
z4ZZ|^%Mmk{P2N|@lOuWt%~n6;n)w~80<EXRh{cP!411|I-+vq|y4WL#3JqnjOBFlE
z0v!+8^gq{#;6>{0M=yQAatekqN`PnT<U!XS)!K_oCDM<*ZV%EE6g6B^GC!2Bmx|BQ
zOVWT$dol<N#yjd@xE!1e#Fs1XB6X!*^v5TP98>3}Fuyp-iWGt@>!G(#mxj{=p(R3+
z>S(-I&-&!}X3iWxqj57g4%pc-bt91Jf_FNmUTi8??S`!+Fp*Jn=_e7#)sI-k6aqgB
z1|<#6M&v8DhZcFxZjB^+tK4btQ!UodWxmR_#tUVyuSj*)3+g^4{V4X;rVOw4x<^kH
ze=fG4pEsHyo_aT(M)a~yX!@4vIiizr-@1D%13@~|wWV)}yY9Jp>19XvS=br$wYnRH
z5)H7IYW6efYNS=~A)(pyz3zJ5q=rmP4Iv(ujGh_VamLF|0>M#Ec&JpjC%&yF-_bQn
zfy{zbz)V~}vukbKb+&cFNhd$9w0Fh1r6n^z!GFWiTT~}JuMBrzX2h?)?`BuNm!|FY
zY&XribgjXbf@P2W`1eV+4?q5hKD}n@!Bka6K1Hh9?C9PD%*~G-sTtn}`3!YM8xpAj
zhpCZ7U%Ozi-eZ8}dxU9Qa(acCT0Ub-orJ7x0bKmFME+B^G~ptUk=R&h5)!5avgg;N
zYG(v5*rpOI#k#+Zu9Cv?UyxnM2~9K69BXNtQ?gsrn{J1WAjT~oqf?s*UF$4F`8Sxw
zA4Mo`@Ce{udRRVxjBQC@I7WIkN{PB^^uKW+>xP7Gw!N8OniyK#Fs+>=aZV1oTj=F0
zsbC22>Wvnrh77x-wG=zp%inJ~Q-<-g++~Vc`NCky2J+$z6w(^PX43b%>4lZW9^Zp=
z1TksKAMfj;hwQd>ZI7}ar>+&(fHs)<m>e0|*j^d=MkM1aw$<)NkIm&PU<31F!aE;F
zyxT*{aqv#};_@`{E(Qzjpb^%3K3&GXf}k~qQrxtQ0&6Q|KRlls7x*1zn3aFeBDF1l
z0ZiInTydoZ)~&Ftr$pS*xV$?>87$rgOvaKU`=AqnnK8F3w>TrNK&GfMSyMpiX_M}R
zS`%iATxMgw7M}&z151_t3?kRP-Oki#Z9m9ai4*J2gk#|KK(q{jNrQT3iY!O$q8N4o
z@5IcFn^Sn%WI42P4!2a<${bx{a|+aAnQZrT{3)kJy_~uVZ7u#NQkhib=r$*Dq}A(o
zA3URvj`o@?Oo+;(j1P^ham937^^n?!WtfXMuYwS172^hP8h9k7X)eX59zU8H+Z-GR
z%Ow#eys~G{D3IUBx6M*4)IlJ>b8glPG4Mz(v_wcZ_!|q7VJ<yxS+1S1v=Su_CR1QL
z(Fu|W$qZ;wc+bmm6AG=LH&xu5{!BiO@U@%lkql_O#8;^+q<aBIbq#DLJO1fP!v5)L
ze!7z3J^%DHzoPLYTHpp@9V9(ui*jFT0B1$cuk@^aLcaz@d5$Q@cAj*D=To1p-z~n4
zw6d*3>YL*j7J=khQ?EBi5LT#b%gIf7QiWu<E9kNB>tQ#4_y$%)>;f*GNA<z|&FZgY
zfq=stUNGz^BH79Sb%Oiwg*ne9-MR{J8aK|)&hAx*9GeCPgUPIOlh7I3qUJ5@lauwX
zaY@;ZPEH_UGCYXDa--hw%O!W)m%YfhC&}9fF|7!`y}ZEhVaj&~dd5+w%!_5KZCOJn
z;VVz(A6j02S$ExNud2W3UW4^w5jJQye5FQvNWX0L1+*JL8g+#)#137@KH5nC+Hb|e
zmMwIKne<Xk1N+FXr>Ex&xg*P1mO<<y1VIFS`t&IP{P@9+>6Q<S(a^})Se-`|%9n9I
zj8tGEKm`>=t_v0v6f}}$7E`94RAoKMuljr$V|*L#FM12f^Qq9m)X3<A9p^0{2=dUC
z)1?HNN6E57$^QJkcYR#3I6Qfz{P}L&?S|go-gXY}`niddp=M0SnOKkm+48Yp#q8yt
zsU6J>g(+j%f+mg#49<RYa_GNGwdz*U11)|Gqf_1ahJM@@uJq-YR7^|sFe4oYR_|qd
zHjMq7FKi#oHJ;))O&~}@2N+J!4j|zZG{X|FPESu8$?h^?snjk1c>k_ZcLK_UZsx^m
zrz7=ZwK-C5`<L-t%wV^Xk<k}Sf+ueJq7@wsfuLO_;cT3y>60tX><pE<uN4#&-YdDr
zKvxLC5ytE1cKBpT#c7T{m#V5b0IkAVm-^w`!39M{5lxoIK%)7TNIV{V#C3k8VHJ};
zk@8Y5v>@oCat!XAU|2M(Zhb>TLsydCX|s$?I9~{M=Z$(71&iBObnp&MRFt7$ZlSE_
zqIc%bW{m`~kIiEY{jv6?&qacViYTQHy*$};)U<se`^Q|J1b*J9|2#C_*`SgvU7yqF
zXrS8#()e$WVEgv-do=9ERYF@3Jmq=|{KFT_HuM{H!k`~OxyJ<O+6870OcVHX>)wpC
z3YHDpq5@dxi&!@1N}jvm&n_y81^qxR@f5_sEGlCkonb+uE1){>6!-z`h3tzFeTqMn
z6RE26<<2?ub#4}aeD;_5SEW|Mb>~3&BbFdQ{UzsF_5K4_TOyy3eS{H^#f6)rQqD47
zNu`I7Nn21<DIfC3qbr|V)6up?=^B~P*4TS*`JiG5Y_rk5zlh~K!H;KxN<^?tJuUFb
z?A4o5$@QZSc0+oI_|bC-M02HtI&JS&<P)l0w8ICB+CU*lEeu_*=<t9elA$WpmjSiX
z0&qhje9I_Nq-*scDZ?cE*mEgO2shKKwr;GkE-t>oqdK=Tnqa@d?s$WW7+O_GM5%E_
z%7q>ePE@;py=51zuG%PeoyWE1vmo85^;LmgZO+}rbXohp4|YfRSwOKV8l3o-Lz&xR
zt<!uz3w7CzpVVwoBNY}FKIm1D+W{5QMsR(7{g6^8XXnvE*L%YLqPw4up!#BC4|Qnz
z9i^g=$q9KVldm{(AT*O5#HuO=ObdfQjPb~k2hPrz$sTqYCu$jfiXA~Hex=#L1tE@t
zOj#x+-|xEJ-i=efTu&$-9R<#w@k%9i9{+iutgP%SO)mCIo^(8MZZ2*jh_={UF|I3G
ziz?LVz8F6W4tbVTr3(g|FXU<){q=-lb9Kj!w^r9gWd6kA!78tr?{Px*UrmLcfy=Mv
zP9?TdnZMe<URe$fAHD0Q%%gfZqGo6&x#_T&9-&yQiItA;-PgI#_a_U_)6u!(`%=Dk
zE&%J|qf0}XSTNEn?*f0n;uw6G^upc_++Cd!MsWDFiAiWU?(o@vB7zmuLa)3psp&Cc
zoZ+$)_F9W>__2!u3mX(~lIx-OV*>*fPF5=AA2RLFtgaBf#o?<>VXyL4p33<#rz8UJ
zx|pE~-<%B_9))ie0Pm_J@{SX!$)&C`cHq7w>{W2vgfdI#{-@35_*)r~!GGEYJg|?R
zNN!59{OjGND03E+4$q1Z4&YSJ0+XBcr5`#t3>LTR95Coz$Q*E)D#|ZZ_DjerUYwr(
z>I&-H_k}Ovb>}*Ud#^@u44p?}CBLbuXj;krC{#vb=Xwn<av4}(^P`?)Go#lS5Eyd=
zLC^m<FsAw5jMGKS5%xyLGt$WwhQ_Zeh|(^n$1bUW%9M`tGVL0|QVvXGkD_9l`!mEF
z`$zeT_c^|K14>vr=EOHRDSi**-7)7G94~5UTFvP3TFy9d^syB-UI(?V4@1*+Bp+v~
zI7`DT`oh=AI4PI3T~a>^nCuyiE#HBJzuXu6;b1o9^|$y+XWV!L$yeOQ$hU6fm;Xpy
zs<jnB9by_aIrVEnbboxkeaQNn1b}Oz%x^>`lW|gs=KZ_eUgI1iMhiL^uI&+EFl|(|
zlpbDo{33YZ$0OT!qH@RCJt|~cd0xddGL`nnH(G-V;<|6lBV=Vc?_Cwm3OuWA|E_7)
z4Cqbv{cju&U=k5F_3)2tTs7cANpEo9<)UU?CJPVtJvWa&rv81g@;r2718Zvl6!BMQ
z#tsNr#as(NmKoc0&62_NURYoZNH0L8N<|F-hVt$;7)G&V@(zxX^iTg`uD+lDpNE>u
z<&_$@>T`fZx0KYhAOM`8XFn?!a;z}ECZa9>Lln7lNl<%MskGlgGoz6<>FdoOX3`he
z;=kozS`tgJNeyPQck*R|FSi-aik18@Kmz<P6XjGouA4Y!V39Jx5vXPN@=CN?lNOfk
zpuJ7%BfwGYx+FQud;9>A`(TW{t07W)dwyT`1!M4^>ta$bVjtAEOd2Fwo(ikea>?Pm
zgv|-flD?@5d<o;5=y?t9P|OqdhJ23<ygY5@d#>1jA~+73X|^3koHuV0)k}$U)@~E`
zf_oa-<+s|MoX9o~s$1V5NO0Sjo@`i^TDg|iA+cPt(yJ?&OkQh+6C>&~dEwn|a4v21
z8VcEM36=mbU$65^uI(1F4@nag6mI##H^Qm4tTnwa@xvI+sYIIDZ_Mi%$LD%!hW!P8
zKmOfJbLs&obAvCPh<MT=bmJq^!RysE-6@yFtvXywrnki_)OdDpJS=z2B{sAqzGlz-
zQrg!K1)JX#3~zY%CJySc-x-}3Teexf@akb<imXYyE&vWoD6!%ITm+6qBWc+@3-iQr
zK4UXJ*QF>VfuDkkefYlDdv`d-6@_F1HKzg*3Kz{%i<?FBcKvBz2ov2B`CS*<**XcA
z71Bi+%u&~(%;P@ucxeYsR#f{^68qBx@Fw*m-}|O~1oCV+khl(g`MXtk^3+2|79>Z?
zw|owZ&KeuZV@iFu$IUb^%Kea=>7}4F;gV~rLV(HHT13RByXZ|xU!WYWaE%I+W<(Ek
zm+OaMq>D@O0xGj&d$z16Zm}R`tVDiHg_g-@7`acGZJem(?9L6qn{=$$SxDtcjFWfc
z9(I*%<libTvs(H_)S5Qdym;M3c4le_b)?rLtqhYvBD<Z?)>E))3H|J=emi~`9B|J?
zdgdk>b;R?t!D08P#~5jI`pQVvi4H=0?wE*eob&R+UGl>#f%qvK7v8wS<!F4le1Sdf
z`SN3bj^YoeW#1YvV%K{!5r(}aYqrX&6yGcvqJcfhA$?yC=E;wnNEu-S%FMN}<JSAO
zmaO<!(FQRAEARgbfaRLsa+5DGm1cZ1&{3YBhOy0alCSHoA;?UPDZ+FnP+o03{*U1d
zrsnavefnE8`#@@Tf~2iBCvwGOdNHKuNIZu}h^(^Rtp;4WUdZ`7%Gm^CiaYL9T*J5X
z`YErq9f^^Tw5D%rO8+@p08)y7vWU%(^%+QC<BvDjgmKQKt4elF!^g;|k%#`1D3dnb
zUGpoi7)98DU$ti{?NYGm9oaO?_)}5iV^WOu8}0pnSUGA;nq(CbKIOD*SQNM+k{u3W
z#08h_I~=6pEq66?2W_<ymRXQwVrfxry#)!pskU^Re_*mBaQ3e}=h~;^7e(UM$LNR#
z`AKN=bYPHH)rU`;SuKbqSf_Gu^iAyG@S1*_pE{pjOI{1j1-@dBH`oy`x!COJVcC-?
zx$eBuEfP*1cO-Z2D3Ux=_q8pr_b(zC-OmOclCG%-eXX(|jLmaNIX<wrPG#Ko_9v5H
zVvOr1@qR)A{V4MC*lK+gXMAo+*kF8TVg;cXk5{y$1rv$ln`xLcCXMdYS#-I9bQear
zYIdA7=Au0LrUZFTS^!#8<%L%gjD8O?y^O@UgB;QTU*fBbB>o*~yei5+>c4M|r1`s!
z{*0o2loIgcEJza-EObWlKtK6WV|}N@0ql?9-{PJVuR<M0s+9-L)~_tp8cB127$0#<
zyeMs)GAj%(^727}=AJO0HG~{@kAVvve7y@q15gdqqJh8Yfg@lqz(hmT!g1q$wj0wG
z?v1b+M&s+qd)MBxdtBrKQHzg*7SU9(JKia4R*0g<X9t#kY61Fp<-Ni6xBAP>FfRM+
zfly1irFc0rH7}^uSF<u*bS41CT<Q{~0c}13(GM^-m(oNlBef?L;@lSp1DPv)ogSr$
z&II>E`y8On(AUr=@6MaZOW3*Kk&`ziFgm#USP(p|+18J|_mzkr1|gJf{pee0llgF4
z<W(yA{dw?y%04k8?)LI!b&C$oxZ;6*1ad}8>*wgG@w<PKM8ZW@;ltkRYhSg7<b&T%
z2(2yI^f@1pl;^X)RyCn5ezipxM8YB0=|a&Ef9aV|1P^6e9`W(M7*xqg8n9ye$zd3Q
zJPJ%f<MI{FzoZKFqEZry92ZniraPvaV=^9o{$xdNBi0kdpKjdE+&7&=>h%orgHoJm
z)`nL%eK6;*{Fa(@9pq9VXL|-wb08~=wx*=0=*NK-mrAO{<^S+()R}6mL&e;zrhG7M
zDOI`nD*@7Dh#%(pEl0AEFmh|(v&P8^*%w>jM6l$GubXnVQ|oC;MGm(2Hgp{}wgi@K
zdYpy-wmbO>f(hSm*B}oRXJZ5i6dx#A!uQ|$dRGi1GSSi5-qy1xA9Ho0j8bSiUs|R7
z>mk}X;umlHZfs$r<_a32UCwe)HWjJHXLsEQ8CPQ&)Ar3(9eFaocJP6W1zF0WdP8RF
z!p^@fmI7AT_Apb^wJug6g|tm2#bp6D$as^(m(0)SXC~Wz=*#Q77$R`r`~*@3GyQ?|
z*^}AlSI#&IcZuTq{b7m*d@%w=6lL%>SAy_4V#n*wi3V3bXqn`GbzU~(oSDm)o@s`W
zhnk7_qnUb-tu~F<yt<b%;`*(vp}ZXsdXS=``Eiu5J!VF1bf-R&;V97|i#hU$JX2}h
zY&jvc*O>*FXQhg};#)V#J9XD2|M)PSNA7<!z}j!T++Aot?2khB??Q8W%!<8)Hut{a
z@bH{TPg)Y7d(#FM?du)Vj4A%U65j$r61cakoVRDM0hH&Sf|lKO&L|DesZjjyhaarc
z)!_jp-?C6RxDZIPldVpvhkpQ2FyP+Q!(B@5aWa@@heUyd?{c%06CjE}#!S5?pLHtL
zTl;`9zE*XkP`vT>SA*hx3%`3TYFZpGN%bDrXi1W!GVkxM>h&(j;C9IE{^g~p&gK8}
z<Q~j0U_zz%T+5z`j<Dx}JRgGn?mf5&;0eAEz)N;$T3xOy=Y?Jmq)^LdY`h=uPi~yO
zQdQ0iRS$r)t-136@c0J*v*Y_WXXnEP{3AD0DJTipv^1fdTH6vD6`G&?m%}HjS^;bY
zNZX@#Q~^{-t>giS#d%wLrsTtidnRNN_7cxEJymQBanwYDlc6D<snniS>SRI@VK+81
zauK3Md2v;p$zHw1<}pypa;xsSq&Mu|YXizNMm~!|kOs`pJ5b5Y&dz9n^L!Ae=p}yH
zdU6VsL-S&FLqCB#FE4R(RG~OUjcNXs=$M)g&)n*w4M1BopgdJs1^a0Ft<@<|t7pd2
zM?F4L8Oge?AO^s|AyDNxNtW;M7yb5!^p^$C5$?imumt$d%Q{1g^~W6nl@2hNAh7I$
z_rFwm<i&!_{xs30YvEe84Xp8~{#DB3&s-8nPp#cKtzt4g)9O5B`T=)zD`Iq|T{;y&
zYukl+Pj7FA;!{)~3^4K)#45CtjAHPSCxcXE4O|&ldX<?_yh_y??c+>?z^p(98YIw0
z7*FtAiUx4l2Rm+lpi*jY)$d0~>BH~yONyKY7@Z$L&q7tvFo0QQ$U^^~=v;Uqw}1Qu
zH6F%kU261W7y-5Q2ma%PV!Hm*_xbHt_CZ@07761zJT(msA!Lh+T>wGCrlp-W!~PM)
zOXo2>If+nOn<NO3zWZj;^&bWJn$CNd%|le+Ej?;X>Inq9J^u;2wGwd-2~fGuc+KgF
zRs<Fxf~0p6SmZt~L1sE3*Ns)DB>UN`F=+63kpRa&7Y!gN6sh0M!GW-OP*!b+kA3>O
z75H^!Wo0#I=*0)pUOJCNk>E37!HE!Rm+!?iV8)IF6uOJT$if|AkNE~*GtWJid!2!1
zZ2wQ55|R}FEbly-kHyq$<#^gF#*YBPlZG<@nC-I8G4NY5*}{jBO0)~n0r=~-sIjD2
zh~R#(xeeF>$cup({a@iTFjW9W6QiNA&=wU|&4$iGv*m$5jLfEz;A+qob^5@i?+GI+
zsCR&bWB~Pp_ChuQAV5xFfd2&(92kQEwCoP*v!vn<fT`|xjo*8K{cpFvV?VfsYLvM`
zUOAl?^aA(BA_C-YaL`rq&{_Hc=|>lUUiOCSG5{nQ+NSrBVL?{;A8n)C-lluaQP~Q!
zQoNC2HztE0S8K*i#c~Fx#Y$+N>s`n#JY26Ai|9C&?>SvclK}1|spiWBtQ(gzP292<
zm^c2gB95@l*)UeV091u@H%O{22afF2{%gf}0R>BG8vtxyljR*<{_4*iQnsX4NMV?-
z-QtK@Qy^yK)i|o$?H--(#;GVdlVqmWdH~P`rV}7@ft1A2(Yy`gZ<Z0`4pr1!>BE;h
zJ3Ci>K07y29J(zdro8B<u2-il^Bl76S}sTu2?s!PR@qbB*^l_{1#Td4G?mJ&+1aAX
z;8V8_ph}|=X1cD&N5tn39r;&4lJ);NruqNVOEkN@UG4DR&<CK(J1NbOEUPXhb#Bq%
zKQL=zb$t26oV%E{L=gj0)#Vsmdza%EXevq*iZo(@@&c?A;E+9d6}udRDc^ZEcI*e5
zm#sO8txE!@GX~vaX&8Fxu3fe{;}lKXi8bT$N1lRGt@7>iS^&odyG<vHV7XTB;vanZ
z1|+F=l?R~MBofRg%@<OC!NxUY+z(XjpMi|E=IatFDz`M~$<05rn`pMMxY6Um+Y1L)
zVYMQDyP~((m`sY1pI$1Mjhs#>vX3?SUIatW7g<^(Nt7M?0YieCGJFFJ@PW&3+S6x-
zSxO7QtKC86B`FX?E=bxI-9SZM=;l>z`cNY36lLDIDtKZ}A;10CJ&n5-S`s#O6Gg(k
zH%GmJina-d^x&=bva@iBMI9XP?G<oJ&kiNqx<S;z>l)|#MzMES-I1}YUcA}2rEk9t
z)uxD6drgbm0(aF1%=iyd0RA_fZ3a3RH3RF97d@~e4c6ANvqJj=hApuC6yoB6%X^j)
z9D6ET!LqE_P4yaVfpk>AQsobm2I5)tp6b7zRhxkVmy?SASN`z}1f%&G6%c?0!w&I&
zdH2U;1@MrTQWNhPW`t;@K?H>ICVeJnUE~EvTNX8WeEE34o^)Ioump{xAGxV305AtU
z?DW*D-)8xZj({<$_)uwz13UiqV*h+jeio!KRoL`$#iP{gYb#)sRxt`$SAq1F<;4ql
z!>Gf``aB?A5;GEJi;tA-#tC1p&FPtY2Y8ctBAm2(a13DL+|~EV5pgJ^%ha>l{M=#z
zle-JecImBHogNX4c?kJLr7sZP-r_TctLjKSoYv1WDX<gdub9C1XLD#Ikw>SeGn?`=
zGc%23xk3S*q1Po<K7{oGKk#{yp;$lPuMBbuu{wF<8c<zeaob=$LpCS+8r&8_zk_xk
zMvRXR47_Q||B(F0f!(+rIIF0a6({^z(AyY&(DlQJfQmHzEV)>v+bl?WvzTE;INZ5c
z%qIehx>B0wV>$hRt7f8N^FlCxd^y18A*@`T?j-n~a}i}yie%YWse53^wbVf-j?n?c
z_*3^L2*pNaX$e2o&|sS7bTO{yV+EPi!(m8!Fa?~zKLULIF(kJL*D_-R=5niHF6T1l
z0F4(4YC8)c^?~x{F^J>4CEy1PIVgy^qrvy+c{i&Cr8@dYTj>_As6<J25V@$blELO+
zWpIrL{A@shb5PJ}4`<qy=6f=V>@JoPcmF!Y!W0c+^`pbEXoOs>;BHW0@38MH9=Pi!
z43uXX(*hUQ7PnFRFUzP)fC@M2$lt%QJ_>&+v@v$&Yxf(~(u9hmh;ef#3QJd((AJOY
zIj*f4E@+36Bo?-~x=8-aoP5~vod>*sFK*#R2`|gx*treCQIR>4VFhB*MA-js?Pv|T
z!XGbUAeQ>4`N2ziJgS>QGptBARNFVOxaSS7pe+~gJ*?z;6?_w0SXATy<(C=L!^E6=
zCs)~UbAWGw7cboDz|?K|4lkuyA|zJ;OhcW!Ou~7>jE0U!)c7Yiaag*vGM-L;WGmGQ
zN)bSX$>-{Tw3Lsj^z|-)kn`1}p5{Lid<O(OADWdRARVgwd6XIdu@CTckEyr;NTnl9
zq_Bkj_Kb?xArV}~?q7&_i6snkrjHE**+FW0nEPk3<km#1T$DA(fo@&p*n5ag&;?~5
z1oi*7s^+vtlCv>q<MF?#iESP)gwyZRc75*B8W89!0kIDP0=V}+=l#Gt@}RFt7=U+U
zrWVc>&$bWPrYH8`7N|S`l{(m0Zwab6KpboXH2){3(l`eof;1t0IrHeepC@#+TEyS%
z-mj_#!ny%z3-G_fgBja524}N51irbXIer}COm;{oAL58Gg9wv7|JQ@}8oWovt6V_6
z_{KnrtH7&23z~6Nzw<V;dW{U=TEOo;|4CysKV@=g|DN%h*%}gm9XJA&thI*(&G}S8
zYGOo;e`cuAkO}DHC%CYZ<?i>yj58_EfhgbAEvCkaM?EW_bti}PzF)qY$~+X^KSk`C
zbWgA!K)L-!Uijl*?j+7Ja!9`zEdZ`vy~UA|=Pzpi&2etb?F4T6hg^sjAFiGKLxc^D
z%b{9LR|pay?xZ+RoAUVN--w?nrugAq0AvVSO1;xrlY)#^Lv~J?hMfz+or~kfX+5FB
z3yhLr#(U*nU~HEf%J0Cb+|{Fl91JA8epD%d{8*5uP)>7KTwn3Ye;ah%C~`Y#nh+%u
zUuxns(`liGds9WZu+g)rgr*+q)^u)W>N8%!hCuNw4Zw^;SRI>%6uU=}FJ|Qt1QX%!
zwAAPexRLYgLQN?{Pm#?XIn(xaoQ2~)u`ONXms59<o%$*#O&w?QmRT8~^1Jyd04Zd(
zhEXp(DL~Sqp$#!#uq1SUH-|zUFV$v`ztGy0iXdko8^g{SKg`b1>T7JuyKu+6>_Ye5
zgb};Rp$v+d{LM_>e_SrtlX5rTRp>uour2h*F#`G8N%vQo_E9|(Lt!lj7?Yefb>6k!
z^KrJ=eO8l0aeXJ*f2|nW_>~azXT%gCZVy^I_Odf#rZjv8ayG}r9QxwhTw;u~wl?H?
z>-9dcAQx?1$ZU8pm7u&YkrCDh_2}U2tvLnf-bgioOwvqbt<ksUPX!GPO>@+U6Ui|k
z@QN{501p|cRzfWUPC(UiRB}_vn}@+Jo@{Oo6R5XlC%s?k$(yP$%NFM?KU4Sdzlp56
z1Q~a`-K$!H%v#^5p^KiSw6ubhk=5%8Luh&~$w}t|xg^IT+4g0eyG*Z}VC9=-gi`@$
zJ|(yK@Wah)YwKITo7<YlE+Sh7E|3{LalC@yarjk?fiiY3us4=hpDU~z#fqysCE0D!
zWPUtm>88cQzLWtAjj4Y=#;LWw!R^OjK}xU!V;yL11thxc0r`fnRztm7;>}a%k)Ssv
zqD+$@)ZAC2N!j}cGglfeFo3!q{~q=9Mr&)A-8d6&U=o#hJP;5=$PYk$fpdX4!EHzV
zzO~gu2}94uKtqLT3T!cD`bJ<H5Dxv{NI`j8q}&b|R1)>?atlJyB*uO+vVXhP*+vs8
zC+ja-VtMe#BS9*%#3)IP9grnbaV464|2!Qs>s`Omx&J4p0<efGz088YeM}lDcH7;f
zp0MY-yH>^O3ZowBd*RA?*8QYvUXM)tzWe;{BsJcjSXwBN!IT%Ua-_Xfw$4HGCV<TU
zDan8Tom|dKY<>!8#p8b?>L|Vqo^*MVqk((O;*-A7J4!h&KVFT~m%aIJt62fXyZk=B
zXH@R7I74*IKkzh1@q(U$hO|k0>z>^>t@7`z?MPRnhm{ddyDKA|JTgSTg)uoSwHa2;
ziamd`5|t&**ei?>V2V#ZBxEyjfCbr(atv;>!p!5lKFPFH59evvI=|)YcKlFpkCsd8
zpnUC1*N(_~@3!%P6id<^)+sF2-XJK{OuEeyGM49Oc=8gY8I3{Y^m0qPKs;AMs))bY
z>D>$QvTz%=!b@2Bo&V$}1(?ybGGWLksRCJ>Tc5Z(1e`bK<2qk(c2BY*pN8g-e<Mfp
zpS3TWcos_zYakq7>^LKD_emKjLm!kGdI#A`E-*^iu*tuvcvZ5X7xbSP$i{<}t@I*u
z>8ne18A~+Mhs$Q-Dho0S#p98CG&;D`sJ}ZdyGkYlox0+gh0zX4$<(y9<oFLnqbwNh
zu)c|ALOaD<G2-Ou_?zwxU)`_XiysCoq%#Y0LuU}hk!5dPeO*E0V_A&+{>n&AKDJW)
zAO*2sLC^l}WVWUucETx+VxeZX7GBDUp7?8EgqX1`+aS2sSyPfG%CMbw^tq;)0V1=5
zN@TX<1VR`h$`$I0Vyr<H1gRz5hcm1dHQo|$oxVflo=wN`$!#y8kFpM#rbGk%jn<q3
zhAgi>bnMZp)+OoUr&_&h^}4s?dh%n=y@4p9-z1HX?HNov;&cCnbxdWY@<3sQGgkd+
z4TSdYWqzB0Nz@UqHr>4n?>kuQT1q~H+QMtGzrM9utUe{=j6eQNRdY+tMyjYJSXn=$
zXPhXgr>4&QSjV|^%?oZ^h)B06Q|Y#6Kr$h@$?oyOwcX8hqngT-0veAUUCa3Skg#mJ
z1u~UzIA~||;B<7Vqm0?8QQRY?CPgHhe1X1n8y!fYOgKCg{{y!OQj>ZY$(gnh6j^3j
zi2AI8fO7N~Wu|h9s>v-GdVk^_v*S9Sa&|8mH4vq`Z%nzwwu~xPwyqK=ndb<d`SDuQ
zNKNUBAS!Azm<j=cGBohTU#sq527=O`B{vZ~Qt>iUE~l}x=KX1338%6sG!lCqj|Ui!
zgl2WnXIuHIoIym2A(0n$hTK`$@ZZ_P%1D#qgFoE9|5wToHu$Mr|KABi?UyOP2t%Ny
z0x1DR4(|JvQ&PlTq5wmPPpaY>@vt5nDoxDC0o}mTE`>V%g?66DV_5!{ZJv;T13j1L
zeYK`fyV<Z&GiU0hN~9T&_~TnZ(0cYY#v0_sKx*=zax{pANao#EdbC1q0<g>fLxv8b
zh9(kVBTkaVDzs$K?>Bw{s&E1PPHkk0>$(b1@NH5Q(7RAV`7;Xq(&Z>%e$tl`STGQb
zic}JZniBm+UIH43_Y7bl!L5Mq=eF85ZojSip^f4Hi>FSE!D#6v<>lE=uPS7y?@VFV
z`UgR{9kc!x4g*xb$WHC_cKo`@6M#6e7YJ&`cKu_BY5BxO-k+?_|K{-jw*m>&U)y9t
z)rIW}$`X%<^Z?&sncK7Svx9iaE=>s$myn<lehgA}sm_f8<R(+2Xdgs}Tf#<P<cF#q
z9nB4`Yy{m<#{tSM;WfJp$hm?8X&i#-`gdLkL0)Xrhor-AZuZ*9nFtk2xg`wK8AEhL
zyVJvmBZcn`n;>mZ6hN#I@(o7{zRQ-agv_t1p(ldi>u<<&cE_QvDJg}C@6f-gJD?-L
zjyu=6rWCg#;NdkA-hqGaQ`I>}TI*Xjdin4)a7*b#1k^7DJzfK8BNxJ^y*F~VFK4i_
zO3ng>M!`x^*+ZzP4e^=@0Edvg)-tFUMq4lVNnDQi4*PSTl^j$)=g5qjZq~bIB*7v#
zraR)eeuy^#3$yTKU8HzT75C{Jh*^Jd)^%!r-#vd(f6mB21|{IYfL`0sUsO(-_7{?M
zcQ@ZFKZzI*0E+FWFvb+9<;rF^I+ggqNBl5tZ`k0sHJQTKpk0nQN)wG;!d}V)((w?r
zqY#+^)>BoIIOxa9lk%t0S?W+@-_0^9d7vhb1dG^0>P!e|2g`d4<mLxC^!b1q+!pHe
z0Jql#eGuTOq%MOd0np*10`;XpmjX-UXDeAH4__h+66#{f14$Kth^UP;yK#-Xw|idB
z0Ds1Uw0sPD9KhoTid05k*}lWCZbWLInFf|GtU7%J1NvYBML0k^)vmmwgr8afsI@96
zYor5nUiszr*-%6T%sRkFY0NtHXI7fJPS6Q@9?*|7+t_EeFkWJG<v9W#<K=ZaEF)`6
znBe^K+}gt2nm6Lelf)3v+BGcSb$1PWnY+YYLOWzl%bah@YOUg$Ip580{gqdBWmj}t
zRw-udMINAM?P}t&+&(=HW)JXITHLsq^o#EM(QH~Fi?9F;M;Boz8aBKyg&nC=k}c*u
z7csd7decnyZKf<g*qFY7TNc`%r6E3Cm=WP!{KD$N>5gR~t>%g}+>)br!CC&n(ad6t
z(dDO{rDow#ZwGv|vCVa&RiIZ2K?H3?`13bGZ%*JiY7POk3oQY7L)UeeqPQ>l!5Q)l
z*Conto;1R(x>d^$Z<6B_TqOuYB?_Ky5-n@X=WHj3(l&6pwl|{H^3N5O8RaEg!)(jC
zF(xlMqfa=jEqI}?8J594nLDVaHtYy`eY%!-BV+@{QIIjFu!1J9>xxj5m&yHRsI$%7
zMxJ98dpR~b05r3N=8gLsb{Ds9I?KDB(q4WVz1x8~)9IaCteyqIt+%>6c>MiFrk(Ja
zl+r_(;3%~j`!rG+;^)2ILiZXpM7u#_*iZvChFzt#xV(}_)Ho!YrF)lRMZfWwFY<j;
zJz4D4(O98f;;nL$<k&x=wFySe_7pk#)hd2);+bYQg?-h<us|<A$Jp$o=`@A3zvGx`
znPKVD<qk^b_Hg3CaJG$TZr_hOxC+GZQD1-jMTroT(}hmVw?ON!?f8=D067m?lG5jG
ze+DD<OjdllPplwX$7;>^W!Y?e3(-*W#A&4Afu|ef5LvK7iSs=+3=clteyLVXuqNbc
z_VM5_ph*N3<yz8=J1vC>jgvvpI?&qpKujxW<rN7o>E;F#U+Hvm?VG2X*%Dr6*KGJ2
zd}zL%J?T8Gjfjxm$V`koi0yKha++(iT3)53G2MT}nRys2QZP=rYnyE{{^KanErLD#
z_r+J0v0dG)`ta`hV~z#wd4G**mu$sDZ8mYkx18&T7Yoz03frRcNH=qVP-^qg(QdtH
ze8vqkFwp=Ao=H#jo^(TE<H14(_zaOR2I_dKJ#8X}$Y4wBI0ds6SoL3{By*i}?|3lb
zeE#$~%^1CTo7K32Bw5os_x^b<t;QyR213u%Mi?oAhJorhfZdMJ>^8z*w6(EwZCxu1
zxR8T)v6rN!U1>LL5U%1$wYo)XrV>WP8Tg9|sY7by`?N;XfIw*&XdC$@G6yaN>IIaq
zq-qt^Q)IYtyHkN&2U7cj7CH_cgUW63(@Drt?#6|h@Rj`LH#?vp0%Q*6(bTrz5XgN%
ztxy9xypa3#V?i4HXaD;YMs2Jy<m3E79X05*{#M%Q3Q%i}MiqSmNGw1X%^84%@=^b8
z`#frBfc!IP9z_C&nkW4j*7nP%$@QmLO>C6cFan)O_%RcSSI`l_lWRf&U-tF(lL3C8
z3W<US&Nrpty~^1&l9CQXjkuD0nNrke-i-rxaOoW&*Z-5}1$ZKO1mMddPz`eJ)Tah*
zpx}`qUk(6Ls7rWw4+zoZj;)|)TXVbo(;tKVn&=7mM)j6(7IBmAP0}Ls)-YTH#QDVz
z(;{(uIXd99L(Kr;wAo*_j)6Ll8@*S<wkp;JorH9Q@IXEAB$4HCT46!KedDf-Z8bnl
zgT+_!p#VIfxj`y$jpwY6`6a&uQ)A=vS@t|Q3qmvquODlh$BbVxIBG_jTZWZxEE%p;
z!Piwrry5@a0qM&H6G$ERr#a}C*t<_7iL~Bps<BjLderg#G;WJ9Pft3oa~TV28y()X
zC#gl_TaHlt?uCxxSy5amkT+r8YBU*Bi@|~1BltDl8sHqvZNGx9D>2cvxKMWh#JLT`
z1B>9Bjs|XcKafor*9W?Lt?)Ve{p&3AyaNRJVlE!)X^Le4bnrg{HwfUVx1#&6adB~F
z#_qgwi5e|CA<qXETW7m)r7kK8^jDOWK0j1=|Ni~MKw{7-k60=FzIPG`A8`K?;lUc!
z+)mAspjOlj(EF)$fzBJ{8RoR2@NK6Y4`5+HE2=GUL?E*rIsonw6$opC`glM`(}618
z7+hv7(`|u&Ogf{r+=UC0fq2krRcOcO<MfZf&GYW|;$8fS`*41L&{6VRoZqnzj6Fat
zfGTEaeH}D}goEadbnnlpUc34Jkv*`r&Nj%Bt^%9sbtV<qvE335H3N|yf{M0#&jAqk
zuf6Ax`p$_7w9Y}y7Zmk{5mQYdqS}5KT3+3(nsd&d`<BzYFgUFQdI*>82(Faj&E-vn
z7gmm<1Z{!tz6Do!pPl^{Xe)0c5%9((o46~*eUIMzi-JX!R6&dj5N(KedTh_}kuZe1
zg8lxcgsLY1Mpf}_4c2yVcdvW4mbt+p7lmF^JI<vSw$B&>lo%qy^3Q47<uA85&}AQh
z+1hVm#h6dZFz*#)N3bC8S@#5rCdaq62n7y7es4zrwSg#^w*+myGQX&N?1j}Rs#^)Z
zor*-(zLy^xm!`AC9{1V=*~xQ+clQ#C*Dvi;{XO$oXNq}LD~7<)Ex#K|G`_-yzY*M4
z+Ow%`*ROX|Il_fRdBjbwA42vvlEt}x-W$!)nG6xN{iA2`lPTI*>$}~X#8vEF3p^O0
z<JX!OljX^%(TPn(?C^1rSm+$W8M)~Rc^|++?w*b3618v1q$dd9wYa9<Wp+C!#@ATz
zm3~%+6-K$q?DiapyNYz*tW8zAH5npsq+GA|)ybI$C%UCva-6mvF+%Rp#fccXpExmS
z$Uto+_2mXlW_J_>fmXysB4l%Es(X<Lm_v|SmVDqs?#H->FmIVzxbkN8mZH{t=*!!a
z6+M|xEH0Ntc9yLu!T@7~XC0|;)%f|C^U9UFpem@)27PxALGcct_6dNDWpRAjXBAWH
zq7Vfs%aixCp{>a`BIB2Z-e)|#S+f3C=JhS&fwC`(NC9{RhG8%G?m^wTtThm!6(+zJ
z3LcE3O4iX(1Oh>Y)?+n$P9urA9`K9LE(UjAWZ4s?1|Keei#8Xl3Tf1=+f+KSsA069
zAz)&0^8%qNt#b&OG1Bp1tHMoqWTpJ_wnuI}h~szH)Al|P4*HlwX$uha*|8&E-S-Cs
zXD5I`+$}UV3PeJPck!H@r@HN#&I;XG$~1rY!K?EcufRfm)P%WYUG(=n-<s8PLe74B
zsg3u(Zc#NCX3}$6kgo$3h#<DNrRh`ifBIWNv@{!(-B8x;drI%AcDf_zt)Y>g)D-;J
zJ}@tNl{{%b#!vnNZMRn<O_B{I@*s}}Un8OZTNxxSPJhZn94mje4<rtTZUS1#Z>@iM
z#svRosO^WJCWL|#1X;cVTDIUL8#!Y0tMSUTh-e2!9SWDAo?)vzq6s?A9&3mJUCqBm
z&h$*o<*C(Piq}c+)fDfEVgZAp`Dj4UM_SNIk$cv(zk<MNqCG;nFIA6COw>AA<^PL^
z-4BWv;F{*)D@UW(=P)d&=l@=Hr2!UdyY+?4C7L5OD&#RxEOK2ABzd$#3!*E-Kav9+
zpnHOEGBjC!JaUz3yOEyih|fT^%P-mUO$lmk1%}WUd_(1mN@NsNa2Z*F_zcx2i@vac
z>!4W`WM5Fh^z%am)Y1<WOrY+A3a0JZa@`4h_<m54#Z>ZK${Svr<*T=3K>})<8bR&L
zHrkzB4XGCd5wAHo5K=3FhO*X+-m|>khoM>*YTfe4bhosSYTk?MThHG*l_cch+t?%z
zs^TMvl^wJgL4)McY=uCouuSyuo8FeGi_fd%B@dh{OM0nBA@IM}fQCSde?}S#zkj!`
zmG1x{@`Xq+?Q1o=sOJJUmlon8_ivxXirg))s*|3DF9S3&WJ?hE_pf#D#j$iIdys{6
z=i3{D?pi>YRDiGKfFYn&q2S)oWq5gc4NoiWQynN&zjq7*`?hnjN-OF|M>y&fOuz>?
zHmCIj4fA5XdU{7&Hir9bWhf;*-ee*m=Rh&onlz=Eusk@mv_$EvLvAR>cD0f1-9D1f
zT!nHu#=}557%KY-$OcgVyn`p!`oIqg#{oRT20cE$`C#w$Q{4v`v^rpmvwFCisc9v*
zz$n!(-F=&9QB0>|=|Qr`TFK*&*oc<-r61hS|K#VZgPc<=r0?RD0Q@kqV?gwURf?ph
zr`P613yQe;lIV+Zy{p|VO9Ilbdfk3Ti3Jod`rcXL)Z&gg2V(f@!4H8`rnmTK7Au>_
z(DxobwD9<FlyutvabV3^Xw7k;Q@Q-{Do%H?sezGU`MHD}r_V5GY&<9vN2hYP3r2J)
zt@`6X=jD30SKo2an;PG|k$5cQuIc$fy<Rv5*U!R&Ty=GEfidBMRAgl2v(r3X`cF^*
z3KsO<r(u)3kZF=v%1n0#x7pZqv0k!WOJ83H19Kr;cbU|_RA|uEzK$Ye2&XW86Sn!T
z#1|l1fNZpx*w%K_4C}VBnoAz}<-o2$v4My<$WZqNgWI3gE%;1oCssUx0J>u)j=P^e
z13wJ{;!dCziKw}gF+V@Qc;E84-lAV41SdfGYid<%`>=x|CED6B**;g~@)<hYxB>YU
zMI=W;^+KP&X!cH^>VbNJDa_Gy)t9gn@_iH8ZV&467S*lR(oRwi#x5FMEU@ayT{Z5$
zyfXblE$m6Rdy^*g`I$agTXqcTYtBeR+|*gTGgkFOLFtyT_VUZ3&({^#oKoA?LAq#N
zA`uL0i~UVS0$PPDkEnC2x3mIW#t&wGzqsvwy;FEw#7i@QL#IV#r!k~!jR}2qPL84-
z>QjW0B1fgXR1FoVM=Si;c&l1vEB=CW*eIecVYpQenbT_aN6hdKkTJM_wGiMoaD!t~
z<=t;YqphS%+lHT{k8}jmJT$cxdAoZ9j@T%DP**9cr)?5qdN=)bk2Ac;tjH=yaU|wM
zzCWG;h%Q+KL;%16P&*$pAg>94%o8M+H^+WVv4XQUNT1niZP!qma<aYErEUoT10dYX
zKeslvnVL|zjRYk_=*6SMK!dXjBBIw>kOF$zG8^6*!v_;cU8aht_^FK7J%tG`@-lhO
z8Li9%gytkZJxh14e}C|QzXq@cl(C}geAl4<^*%zvXQF9Yz@T4!`0()%^@&d#V@}(p
z47C8G38f%+uyYTteHR*KqFAs=N#-=T=t}b9`>LCf-)XRO@`lB7{>VNq#ofQV6xdFn
z@p=QX$(u0qTMfkKiJG*H&RZ8<DPHVpE7IcPOS5?^EAfJsKR^1@Ct-FC^5+9S3BY5X
zwk;IaM1r(7e6#@iP5`*r*=R(u5c0#%Y_}=66xN1jG(Vkoa?4~Aj074^-qP=G&Nj%w
zgvH@$6HaZRJKCxb3P>#4Y5^!zD|R>DOZJ_I1w4wNCh|O&_EA^Qwpi?6fH+793%v=H
z1N@2{RDBwxYNM?X$l?C27q7ZN?Mr8Sy5jNmI}BvpAhPfNO&J~q#VXKd^lwH5p@$%t
z36#*VS}FiJ;FAT>N!0IlImW2&*rJ(|lP@6BAqUL?z94ZJAgXd(X4KD0(4sL-X$LVW
z5WEQ<{3DPbfA#C!Ew2Yj#sQeTt&6)1kVydBLU?HyHL*}}Uzo}#)q+qF2L-t@#Is*o
zIS^c-B3&73QRPuhf6K!HiKnPTK`qd>5!HUEgB%orK*L`sdfQhn^kC$H-#!d>8<OLJ
za2k4%X*+WP^Yq)NvD!3}s=R^|Z;^I6-oHNpnz2v%B{u;@F{6rd)eENWkrrY>`Z_o}
z=jVQ?tg7-OpP+xWb6ezR$%f2_uXzufZZ2<K8nfIO%i7F(9ohjDYp!ccQ+imaZ0<cq
z)wNNzfgEUSr!+c%AjCEpz0BVS#BU%-X${23#ogCt-N{PTE5ddH%opmmrvlee5bWL9
z#JAD^lzL$w)WO@v#&$Rc@O=Q9u}JxgPDg`Ft{h)R_;QPjiw_ZqO5Lo;Qh4P4E(mp}
zryhvjqbe3+2g-D6dC7vjA`#LDK#ZA)prD|3vMy@LMB*1XyN8I}MSI11NYh2j0(izo
zM@Dec2p~-?fLi>47KkRW1ke#Q>%Q`(D<g*hl2E!feF1#(ZWoYpK`O{czmmgue!o<Z
zU}5|$vnT$c*8Fubs#Vjx5fu^nlE<_M2p1K>0zp3qoz+Z3Y~Zs5(3c#5w)<Kv69DY?
zK!r04_&6%mfT~w^0s*PGe-mU<lVXs(?GuTpxeOW<fM)1C9R3mnM(`aDa>6Y8Sr(4U
zNJ#D2E(lnQ6FNK@TW}zQC(u^_WEx;EY`TBqM7gE{E&@(byL)~Xh;)r*xyt1)2H?RL
zl)4(7vnX&eZ|Bot?s;)uJ$)c&F(*@;No8|_A#iPTK4b8~u&|{=Bmx@lzNJ=|CzZQ=
zy|XKS>fs*T35g#5>>8+M@q^0n5419V6(!(~2nNYG2-<s1K-%Jes7lwfTNn4Dd;xqT
zsi|mrPIt}I?87)8PN}a}s-U-5o3y*>y^v64Bo}~0_TVnPwu)MYbek>xEWf@R1qLv?
zP^>^)e6~e1{Fsr6oe#|X+jOtHtDBa2*SHvx1Y7(&d$~?Nbi{2Ev$3Umz{sU5LqXhI
zNi*haaa&&2x~Ij3th1E0`xy8ONvmAR`=2+Ya?N_945LfaHWdDZ0n!V6Zx$cokN2^P
z89r0j3_S#d`amL2xlo|X6b1&V=9f@ri8U~mU+(ViLgB3+TYc!s(!d%7<&x^mZgguW
z0H_VFiAjn=TX<TK2bVBj2$?eX!m>ya^=?x$kAyCgO^N3e_opaHi?)Z8rKETbiG4wM
zTCywrL(?;A87eCx`maKFzRnW>jOC8+gW$yeyKX+<6Cl96Kj|zZj$097xe9~x-Q5jP
z1|$JUWRPz@guN@hVz_40RhE#6P93+uQ6^;Lip!*wUSR%M8(kjvP^!oN;m2X0|5e*}
zM>Vx=?*@<}O7Wn8NVDM)0YmRa6g_A_G}4<v>0OM{0|F`{prQ~^I))BPH<TbC2mwP6
z<p3(u1%v>RQ1V+lc<w#tzB|Sn;}!lOBw??;_TF>N^36HF1zbR0s3=vYw37!^+fH@7
zRF=Z>34#DYMP1&0uUrf0=&iXEP=dSkvfX{UCN-?_+Lk8p4n5h!PmUj~Gk}k*?=7UF
z3uQcyA&gPy_*MGMM;Vp5fO`hcnhsP?%iu~qSTPfNz&Wya+HsB+!4s3)6;)VjW!-pY
zY)e=erxv&!MnbrsUhDc(<`a1OI_H#1Ye1v{wRVUj&P+eIZ`~Q^!;DL?I?H;+>$U_(
zi;7Q9(w~l4k71r<ZxBc1E&494sND~%-N=o=7m~VE5sH82_p0agefp*tQ2?YIfB0DW
zn7khLx5Egodwo*HB)vT&P;q7z9{&tX+MCBpoENup3lA@+t0I?|Dz>Nwp?S+mdc2U!
zBb{*Ij#f`MN}DuHYQfiGY*njE@#nlqTbEz_s4C~QopViEbGPa6oI7YkG+yV&jI{;d
zvB7+_f6Bsz42oyjML$V=#%{v~%IyovAi5R(XW<*J%!dt-pK$C=H|4%aWioNa;-`gi
zyt5!1wL?ew<#e=`Xl(Q)%+cGA1?y+dHFi$}<`&R-l?<4SE<?B;@eudlwLO46flB!P
zo#!S<5Av2|{QmXo{z4G5o$`e8khd6pS?iv3;}0N|`;{_#`1>R1pI-^Ea$W$B9hil<
zza<hSW60P4o<;lbSniHtVvsxevhQHwpa3gjr``VVW_{H8$|(>_9ssIt2Ur7qkC(8&
zI52ih*7FyyyQ*c_r+;Ha5Dd2vDqV_eZJK)xz<wwfi0}H518fomL7tR`Z0$}8^zS(L
zU%9}Y#Mw@~{;#;5k*j0myFmKzUx4U8qP$<a{CzHDAcW3gXa5#|?nXL*Zie+hsO`+-
z;?W(aVB~Ms2H@lAk67w#0AdcM1@>dR;HnkN{l(kcp2ya+QxD%RYsRccP+R7-K$f5n
zAd4b;zxCY?qNCQUE&bdEJ!sx{Q-NzAP&rsby+seeqyVz#=Y!dz^UA@K_qPf#rX!bM
zbLCU@y9>!066N#43@H7%J)jV_^o>`Ck_v|*Q#Ze&9Pak}b9O&IT)|$15O;w(s!hRc
zKokNNFG8%BeHF6Y`)PX-e<@(g4Fi`UQXOd-N?<13O77Jft|kUAV(j#GoF8IJUl*u+
ztOP*8c@QH&bcJU>;&nset5;d#D$X?di$7~CqZGKOrv75vyl9VCoSspK&s3+jJ^ryw
z?a7imyE(IE_hh`QJ{+>G(4@bCNxSY$nn_0;6vhf+6+BE;eK9qK9Y0Liciq3_i04K~
zhJv_fKATjZ<*rRsN*cEHg93qr^OlK0-&Ki$b_~HR`EG6<I9Itd-dQX&&}nUL^;vgB
zre}pV3<2w@4{bvan`fO$=w8rC+o=BrB1NCbOIw;lL$=7dU=xtf8ziqiUO?YI6$?d0
z&t$Zz%XCpL1jDUi6h_>?%Zrl=FcBD|NvBL$0Kzo@{_U`LgDQ?-;DP_Un)eh7Uld?*
z4!Z}C#)Q&h%dl9Pu;V_5gs43~*DFsa`UQfh`lg?s(X%xI{Yw+@d>Jie=4%Bqb$x;$
zIhOD&9uD!xgaBr8{Zy$eJUjb7T!qa1oFDznu#0Km%N*B)w{9JRcSQuh4_`jZYvqab
zOKtha2r>E^g`ub<tk~w>ZlvoNXyOOi0N8b4U1M3|wDQ;8-N_|#{mb<PO>wjK=AsG=
zl(G{k;y$9ry?1S)<%c;!*+;v`#*y}peWxPe_+uzE;UV3U0NrIFK^#aeZiG-uv|XSm
zv0rgh8iEoH8Bik8b@Q%G5B$2*wFg_**iIAzFm!8}WoLzE$Rp4{q&0|%;9kMjz|y*%
z#=unkmyRIP)6M~ss5ih0rL!=?IViUeElyay7N~WEN^8S+l3m&Wcr`8X(PK3F0TdQ=
z#WKFRgl#KnpR1eU6h$+AKEZIM7;JLpAaV5wxSDXFJ{j0y{a#Zc*fc;b{{sor0rY9%
zk_;G(e)F6+40dP|+9TjENDM{;GyZ3V0wiIa(BPoCV28+_8%l2goDQP5>}>-DsxWQP
zYypC41sqi0@bo_X14QNYuY4gB#4-QNq1~x8Q2FfhLlFs?dx?K27@+fD+F#OZccSHA
zj^%&e$Q^%{2{r((t~2x>#T>BfsleH*OvPNDq>mNvD><^G8%-uR`^M;uUW#cb765Gr
zFtf?&oiyRA<Yd4<$6@|rk$n?T3VLSl*<tRqQ33Gn)M_+fZbki@gF$1Kx&HDFN8HR)
z?!1KaBnC0dY?}5)skYB3n{*qXnsRPrLP%_%j+QAA)Oc6q%|!#1E)$H(nLAFMfS{P1
zZ>B46<qS&`>jQ}3(vKhFSN8j9-r(_)ii?bavyOm9PY@_rDYJae0^DOOX94jP@Do57
z1=?#thNr$2_~a0a-nlDHiFO<ym<<7KyP?SV30jiBgWutsI}CTCdi$t@I-NTsaK2J7
zsPwq%5HFw`0Xl6!>n((qfop%~!3~Ya1Z3ra%J`D+DTFLBUu=hM%_x52)5StYZjJTA
zZ+hFs&u5t-3g-f;Xstwq;Pc<Je}7cSw7awhRsWvc?t;F|Z_#D2<>n8#3L$750DFM@
zEx%8bss1z@rPIa<^e=t-sR0P}(4a5m$vZq=j>dlp1IWWzVM*eM(1&g&jdt<MAcWwR
z1U<XPXg{wbV2=V$m;&HdYo*k98#PE31KgHZ(!j9?bVNerNq$~{`xVv+P~2lN<Nfdt
zQpF%W%PR@sQukHqg$F&q4!<Y;U!tGD^@)UDKOKnPjqkz(kh%i#3J6I4dX;F|x%K}F
zY@rw*x=&EQ8UxQb!@y&p1p<-8{R*cbkc2f&>_2<mIKj%x)nR1cpB~ficL-wi1hW{{
zf<`s@yL*9CR=S*hOn)cW2gu(*yB9<l{ulEHOuH50e)7(~uzMel`M5z(|5Q0tqZ8>R
z&S2VG@j;{erp*~yQuYgs7Ae4a{zVljZf~x{eQ_rgiU|oj9p2X1csA2>1R`J*6$V*-
z#@*fLoH8--I1{?La)6u-JQqh{@Q|2c1`tPElB3_dMIDgY=12tOZ@`%Y(Is@)J;hb?
zQARw(=-AekAW`UqTJ<}A!t0AFMcR|%9Z&aUY5qXE3-DK5dHS{DV)^GI2Kbha^yki)
zT_&$Tlif-~PjP>j$Wetm7kkfi|7i<9>1LkUbvLW)k9dbH>K?W`TR)#R$7<SkTzK}{
z1pBptb?GRA=^^M2zdUJUlaT*R+%5cMfi?QLb_}i<cx5_>^AB<lC$O9wXs@lQ9Cn|P
zL1k%>)<<88lYCa!)|y{Pnx^69j$Y^?k8f=yt44%aTEkFyE1B7?t&y1xyp>Q8OI~e_
zn0Bxg{!~5D%XwwB%1TDqphdz9$Hc4M(93o$t{sS$^vHqF_JA5^x#zOBw}MFi1uXN|
z3)rC$;zR@2>9_vjx#(8PtIQcQ&4&HFgq+6SDN<_R@bICI^sOI_JW<rc@%*$Y(GtOi
z-uXM0n-q~t8-UTTFIIcI%2(UY`7mYy1q~>G#y(p}KbINpo^I<s8>p4vGgEe3`5xa{
zY@W-hXeIQXpnxE?<SLcNK-|J-?o{XY%zV48I5^$dyD)_@nJw0KD$}=k7A}Sx_}OO1
ziCm;Fc}8LSo#&id7BNwd0V2Nc*37HI96i$@zwe=p)({ONRI;NUDWRiKVWei$JMXM|
zmwflq?g9Ni)Ef;yP)S)AUf~wMp0DK7W7DwTeU`tGEfs#?H1y|rEOW@rKAe*R>Hqvg
zgIi3TWFnJHBwX(${==L1V~f=HRPWshM7?Cg6EZqyhOb2(N6g<*FCSY>SUB%h)yK+<
zqpTO)sZMUA)KK492_>KJu>e*_PA1xL*be;fndU?`9RQOmB=vJ3f%WaG7~nv91Ni|m
z)a7Jx6!9Snt~YE4UZdfxO|fvjOlNSJ(Dg)tS7qqg0R~@fjIr~xoF=Ck@|dXhMn+r8
zlmkII0krz3Q>Hr5uEfPa4O8>wGY2r-(}bT%(!`mqLz=W3bETL0=yfT?loDHAZ~|8}
z%B3|)F~{RdX?%fscy84`T*yy%DTKL_li{IHR`x^R#%Zfz7qzzXike9uA{(B-S2qM+
zh}4xO$lnfgvoz%3i!+KpUMASE|B&sVT4S%SqU#?c84l7GrFOfKvc3JsjYy&J=sE@3
z6L15aN8zi!n?1#|G}9uvsiOvGMd=0yQnhlvlC12b^+}yv%OMjQbWExlARfnDnHXRC
zE<XQ3DaCa&=uz_`2g!Zq4E<e&>CixakZom|4RKjJ=*r-UOboa5eJ-s-w&p2QE|tT%
zl=Yh1rUjE+$fGXtK42;aS4+?LN;h2l6M8NZ9zz>>k@{$%wlRWWfbZ(=P_Nm?u2_G=
zz-^<6_hz4-M7BPe7+CwRCBa6jZ6c71-)Z#5+7g0|S`T|7BrFIwth1M>{zZ){BiT0=
zOGgtXY5s<&k}^T1pW(T_9iq5E*LYXxoXFC$y1j(}u7qJlQEh7L@K0l&ZbsG;60x<}
z82VLuQI`cD6Is9Y#?i5XkF#^rvxF{M!nm63+j*{j0y%9SgugL!<NXen58hR7byd<=
zwF@P{MWQ5aG70jErX9BmEPD$gUHVh47g2YC;MA{xj*ZCH@BqIL`tPwvk<>BwVDsVE
zmv4!^N*Gs^l}+$W+*^e}G}TV59xGlIQX?E)!m5B8svNyo1Xr%PAv!8a(YynAA38=H
z$l@fdg5ivpiaY65=O3ok-Itf(O5M?#%|(ZX(uqq+*u9(T+@r+d&961Jw!(?JRt`MK
zQAJ`p5FuPXs4atWaDrwfKE5w)W`)riTWw|&?=?P5)G3>2#}dl#nrV-G@IE_SEqvo%
zudj$9U!1o8r*$#7tSt4>T`k)buK@zU2y}h<2}xriNqwf3Ip%!*1xy$q{IHtQY50fN
zT@gN8uTQhlw_k5ebvK<02-b{T2U6r8<D}~DBoa?CrP#>NkZsE~U-!)@S;s~C|0ZGE
z(Wb?8@Rof+^Ol#WX%(Ix6m36PG+Fr-j@C*ItJ|brtx}+^C=zYJ+2Z;O_MuP3!y&a(
z*FAZ4K$VT5!^W3#WD+hd`c(1(W%7U@xCw4()T8r0PH)3ce&j&@-z{hDhW*jFazTj8
zW!6hYY9#tIFV4x*?QM8&<CnB$4O{%7_h45fhCT37QRz6zP#tz0NVh<Hpac0WrBIUh
zhw!^*Re2>A<n=QBDu6(`1&-@sGYm$6lL`mwK6-M{ZUEFOfBk>;VQm-6<>Le_;T&`l
zF!Yq4=w_4i?w0W@BHZlgcUJKWj}9=D_Hjflf#BnOo2e2HYq$-R_r`{L!ujm3`xQWI
z+yvUO;sZaRV}2~p74lP047WWaMn99hJ>{t|bPQ;_Vr)b26lN>ogZ5k*x{OXEVPfq9
zxDKK?AKI>f`~MQZ5BGIH5}VP5^GNqBJ`5?*C^f`{U(uavk!U4nfTj<3i@EzgJd8N`
zx;L0$yD4vIX}a-q=|<<+f$$LzV9)G;J!7tz{<j?ir5qL0x78S$MEM@@H5zVLkMz#m
zzBP0OG?X1_Y&Hc}rQyY~SGv;aDJ-a@Z{5>H2`szdr<LkTfS8Pqjj4|8<^X#bG#AQ*
zz}+Wtwe|d<ySE8=lj0KLC$E11kHiiP%gfiW|BW43FmJ)bg<J<Skhl#Q0A63y&D&U^
zTdF!R$`M4XOhS}evf=EVYGB-9Yz@yJL#~042(Ak3k22r|HY$0Gni2#)!2S?p-~~Pe
z<z)}W!0s}V&^X|fz<#h^2N?s#DS<P<{D$+_DVHcbNV4v0{fuV?ZW>k&kr$sKUc}qV
zzc9~`qqKrA`s7wH)j2f#vVOJuf<x?|Bi1%*{R09lfi%u=A$z5+%X)fxx)8=r19`oD
z|D+558!Rw;qobohjB7~;F8o*zG^rjb3SfdxlGj~eM4k$J-PV1(GlZAj&sFm*`@8kc
ztM)h8)p$A9ZniCJm{yM%CX*c3cSA#430YT+EzV;Epke)h+7?8Z$LD>u(2loHL_Zm!
z+9+U593tCF3f?(3;#->PgiCD;Q?2*Bz@0zSozO>HH$E^kUS1xbOD|fZS<~1bpTjPn
z>&S3G$%dcgiRvv_us^x9J~ZAdRnSxbI9W@lQXaZK&CPJ*DUrK$%_2Hn4jHM0ZIjBS
z+e-JyeO#TeiYh}-TOK5NN*d$1KCYG2k;Cv7F@wb$JlCGO1lX35$9uJ}14{Z6E+%uU
zMx}6ot~_9MiGL^cR>r9G4HM;lu4{Vth6lHCRx`}_;s|@fI(_nbPm6BiamfuCuI0(a
z@&wnF{1KEpFOf*I$%;NhlR_9y@vE=#2u8vuB9rXX98g+d>ZRm@wZ%v1(4+`1tTG}u
zU$R8k+BmnQz>Vi#e_EB&8sa(ai)){<tSsTjz^1id5b3yUSZ7HAJ%8<))o{S&m2CxX
z<Q(ztv>5z1R2!e-B{MC>Jruw{h^=)vIdM%O$9y0pv9b3?8vkGrPh*azMC{q>{>aEi
zQI278PvNx+={eb|OE<*T7iCdAyKQ0_Gb;*7iWua@X|&svX4#{u`Cx7b4vOGj$*|{O
z28act>f(Fvjr#b_#f2slFxO=+d^a5l>o<0ABjWjUFa9>~SZFUawah&)2Jc=EoV2-k
zPlE(pQcF_bW{!EUl++hrjiHvw`{>bGyU?V*$^sL@tSGpnl9j^-BC!{Mp7BprU)Dl4
z=zJHvxn-KTk27NRN9jc8Lb;I#Rr`(9oJCF<^+^TM*g<7wZ+q*!7LZ#Pe%_ev4Mc}^
zX}kTPp#jc;=>Q!BdQ3p5VZ4Hd!)*UtB|xQ^vF<F)ke|Rk`UtiF;eOEAJ;K3_;^ZKI
z@tUs7={pa;fLqH5pjCulP3{jrDK5v*&Ei%-j?ZhdHz?4$r_ai;b6mFpp99YkntSy~
z`~oM8<(Ho50M08c>emX^L2w}JAN}u@M(Z?O@!PEs*d*{h6Q6U$v}CFYb6csfb98!C
zA~&{zXFPU2fYgOrDhc>Tsw3U$l<sM;YJrteNXn9AyBa5<)R%R^rNVGHWwGbP$zvu=
z%P)dv{YQ|i&TZ5Neq46o=`5`!n<|1pj&Z_y`sO<2yJ7_CEhaV4MtM=MW|1{1PoC?i
zaLcOdWUb&>cJ64Ds+^wK+*1I-G)d$>3hm9(_E4O8n&ci^J-@CM^o)DZ_#bDu<K)vu
z)t%*AjMxYWwMdzY>f5i?vK_SSH&P?8R43p>n@F(zDSYAQKZo};rfR{5pG=8LQv-7s
z*pHS|)}@LX*8)?u^jj<NmHnqSdROt;vpvrjBixI>g5SL-M)y#u%!<PS3KtB%_<SEb
zkxK3e*tZxEDlr_;G&MlDtX2FnX*r3Sk$)LkE8uhUkyc=o2(+=322i8mrykHt{eOEq
zJCpZF;flVUr?a;;KCT34ietzL;W^3Dma*}-S`>P*+?4AslQa3w=GTup=HU-ZJH{lP
z(_~iLWf6cY;BrmcGe{e?FwHG#2~^3dRNNJwo4pM`a5F8*6*k<j+(MfQj;@#7rIvn0
zasjTV$?Ojfv*SS)TRiX)IgS7;H)Zzy7&pQK^~atA*IrquAqvsSIxEb{oxiUR!B<^+
zkEUHnE1!CSa^dzVii0b1pk{MVAx@&DyZhPmgWHz_c1*}I;}7NAyrcAD`k!(tLfYiu
z#q{>@Ovj-UHI<ld+xI_{O?-vlDB}XQXlV+uoc+YvfM}Q-o1v5ctie`UiqKN0P&JLh
zhTv2qD}VmDf0YAEyjAWPk3TAX>fyU58nHp!McbQs1n2ak^JDXKF86br=Q!te8rwOL
zmm6ackzz`eyOyjO*^yy&BY8`midC;@j&&DHeXI5#y~H$QOArOX?agK8pF;3-?;Pce
zs{I`HVsz4!s-cTNc}ftMbD{oKe6D6`pNO-0XnRCT5M~>}<20Xy<tLkrSvOou;>2Wf
zk#!q-<A(3zO0GH|)<2|>9NQ;W(k$+-X|h$MR8_{~xW%+MxMyyN&`d1epb38)x?!%#
zys_tD53QX1JAY#$!HBycW-h$>?Pyj1!{&YKv*~37k23t?8?6NBsW?>V%qNyE{6XZj
zm$@cQu;?GBQ-2`0-1DeYOPJV2#OfOQ2Dn&FRNnZC>fGq_PfR%?%@y1iDMpoEb$LHR
z?=INh=!)Un^?><nMKJMQ<t6LnJ!T>;yQ5uemkvHC%%reLDAti=MKeX2d@QThYVZqx
zkoGvp9Akf7P(?RrVqv~<TIY<xF+^Wh&*n;Fu_#J!0C_}fGH{{r&ckw=J#fFfI(Hjf
zuJsmuV66_y<m+kDR{|Ug)VnFnNqdav3JK)rxg{2tP5Ozs1bJPoP$Ycy=K7~=<XrzC
z+p0q%xbvckLdy~Lru(0KT9x->vT;qXZ5+BQp4aD}>>-cFW{5J$o2RX{o8Qfvick>9
zn@lwK#)x(6TIW-bNngv2C`8R2VaV!tfwWGli~`TowLrn3#^-Z>O|^6LGqx1H3KHKP
z)!!y-gC$PayLSAjWlcX{MqrWr)1rY|y+<aXpl~b^oP>fUthHO*&9Y}z6!4dlHxNs|
zsLlH%PXTQvgL2_*=tYwIHixn|xT=%JI^lgmzGmCJ%6q!AOeu3h*W=G9eB)GFV9g4S
zCQW#5-g*^cP1i#YG38W`?#<sPLOSG&Z%doth^@toD)yf-Xqc2X3YY|UsDvM^(CImM
zcGdB_$z(lj$zg;hdd%@6jW;PQYeNeu5<95%FotU5w30b4mo7t1bm2<dM>UzYp}#rf
zT-UsaunG}f;7i)*8JRWkj5g}tx^O-)y~Z_&Wo@*sMAUk<B}adt#@>bGhR$B1*iY&9
zTO3W+Jt=bXP?=1_bKnkk;rVB9i>@$nsorC-0nvv2N6=$uzuqq6g4x6*?SfgJ!|Fb7
zE7%A`!LWRayI~cPz!-ubQ3&1!y9<KNG5-78;)<q@cAV8zr@f*_9ht5^uO9u9fE+t!
zh#$X8aqu0kMG3<b2VDC*C$5x+{9*2KM14k5*mXCh$lxfV*5W%~TqseF-PttMmB-21
zODGKQ-Qr1+ncM4fy$l>w4;^H-5BEIdenbdRLvJr5*rfACZ#pME3Q#Cx)n<1MiX*19
zbYDBJpEny|r{(d?yfEqv*JFWz4xus)VB$f<s3^7f5I2%0{#`9AH^?aJ>ZNZ~o`l5Z
zIi4HkLc}yD;dq0`Jo(#m&7)z>qRd}ZfpUpQudSi$OU{viG%v4vuA^I7%q-~?w96vW
z+jf#N?^ke?$dBD*D$R7zS9JZjY>{JLPejLzH&^w{4c!pFlhS}ApBsM|$@@F*6^ra*
z#{C%%WQ7Ul*5k8Dt7+SwKHcJ6{LV%iVy?<To0SsB8@@Hsgl{BQOhvNfIhrexGM>K3
zQ%#RMUp|-qb!}IP#b{7aqGZBA9Cv$6((%4HSrDeP)|f1+c+6+bI7cVT7b$uVsq#`}
zT(FUF`;ku5*6pF8(){Nx3tUDbvE^D`L;fE^w|!IIJV+mHL}|4sJ(Wu(cbSsy&HG4&
z!CQm2DAMgxp0(D*s;QZ!aJftO7e6p%=yjB6Pa;7iTz|>$lcvxGAB$M?y5SyUzU-YV
z+RcGX7CZ7<NX%_Ma_#ieL85}T7m5Dz0ZRSTmV4084*P>*4gd|VQ<EWHRIB+j;Nv@s
zh|Xdf&%n=W4fc|5HkB};mpUD@^ZE9EM_l-STs0gw%ReyhT^N1VyWPy?$=i1QDV_G}
z929fIwU%99g3XXxZfe1HcG^_3m1lK?a?VCSYNIG@Gi7@5l8@0C8JTLC%x}u3sB|w$
z(H@)Oz*MX#g;?En?-RVQHq#LhzX|aJLa(oN38t^G1Kh8*1g734m~O=A&i!y7D{%|M
z=NHEipP>yhe)AitwY`<VzDgm+(h`mw>>b$U5?@<<c8*_hkFR33w}w9UmWG_-2jPc)
z0*VN*^^exx)n>xh7Rx%Pf@XleCIQo_rEPXdr4P2G(n200%T6s^Bzo2cXPP~ni`(9I
zc)Nd88O##+u(SD|03u>4R(4vDl|i%$1pB`KYtRzKFJbfk2XgC9-9U>Zx$~&y>gzQw
z`XQ~1!DiM@8;fq+TWUO4EI*ALIN`L{#f=$=pzCZN6fcP`m{JZM!r`00mHCKIT31kS
zRC6HpH@0_m@YqscOLT<7Cp0aE#Aszkro_YU#T!SeYDBY7ReZF)BY=?+S>Ttr-Vt1G
zODT<AWdQ@j6kU@x5MTkS0@-dgq`0!3Djsswa=f>JkX;;NYq)kq_y}vrXCu(D%fW?u
z6uCR(_y6VZj{A-KA-(Yv_|M=a1Z<ZBz4Zki?%&`3#E4qbZS}~wcIaDuJ;QTFy4Uah
E4@0xyb^rhX

literal 0
HcmV?d00001

diff --git a/oxAuth/Server/integrations/uaf/sequence_diagram.txt b/oxAuth/Server/integrations/uaf/sequence_diagram.txt
new file mode 100644
index 00000000..0a557e3b
--- /dev/null
+++ b/oxAuth/Server/integrations/uaf/sequence_diagram.txt
@@ -0,0 +1,25 @@
+Title UAF authentication workflow
+
+Person->Browser: Open RP URL
+Browser->RP: Protected resource
+RP->Gluu Server: Start AuthZ & AuthN
+Gluu Server->UAF Script: Start User/Password + UAF
+UAF Script->UAF Script: 1) Verify user/password
+UAF Script->Nok Nok Server: START_OOB
+Nok Nok Server->UAF Script: QR code for mobile application
+UAF Script->Browser: 2) Render UAF login page with QR code
+
+Person->UAF Mobile: Start UAF application
+UAF Mobile->Browser: Scan QR code
+UAF Mobile->Nok Nok Server: INIT_OBB
+Person->UAF Mobile: Biometric authentication
+UAF Mobile->Nok Nok Server: FINISH_OBB
+
+Browser->Nok Nok Server: STATUS_OBB with delay 5 seconds
+Browser->UAF Script: 3) Send response
+UAF Script->Nok Nok Server: STATUS_OBB
+UAF Script->Nok Nok Server: CANCEL_OBB if UAF authentication failed
+
+RP->Gluu Server: Request authorization
+RP->Gluu Server: Request tokens
+RP->Gluu Server: Request user_info
diff --git a/oxAuth/Server/integrations/whispeak/README.md b/oxAuth/Server/integrations/whispeak/README.md
new file mode 100644
index 00000000..e49f7dbc
--- /dev/null
+++ b/oxAuth/Server/integrations/whispeak/README.md
@@ -0,0 +1,73 @@
+# Whispeak
+## Overview
+[Whispeak](https://whispeak.io) Whispeak is a speaker recognition software as a service platform that makes it easy to add a biometric factor to authentication processes. Don’t choose between security and fluidity.
+
+This script allows to enroll and authenticate using voice biometrics as single factor or second factor.
+It integrates with Passport Gluu installation in order to secure the enrollment and to provide a fallback for authentication if not possible to use voice.
+
+This integration is optional if enrollment securization is not needed nor fallback.
+
+## Prerequisites
+
+- An account in Whispeak for your company so to have a configured API with a valid API key. https://whispeak.io/
+- Some custom attributes added to user profiles in Gluu. 
+- Two custom libraries to be added to your Gluu installation.
+- Whispeak custom script and related resources included in Gluu packaging [Whispeak interception script](https://github.com/GluuFederation/oxAuth/blob/master/Server/integrations/whispeak/whispeak_open_v1.py) 
+
+## Properties
+Whispeak script has this mandatory properties
+|	Property	|	Description		|	Example	|
+|-----------------------|-------------------------------|---------------|
+|API_BASE_URL 		|URL of the Whispeak Web Service|`https://YOUR-CUSTOMER-NAME.whispeak.io/v1`|
+|API_KEY 	|API key |`YOUR-API-KEY`|
+|API_APP_PATH 	|API PATH |`/YOUR-API-PATH`|
+
+For passport integrations
+|	Property	|	Description		|	Example	|
+|-----------------------|-------------------------------|---------------|
+|KEY_STORE_FILE 		|Address of key store fille for passport|`Usually: /etc/certs/passport-rp.jks`|
+|KEY_STORE_PASSWORD 	|Key store password |`YOUR KEYSTORE PASSWORD`|
+
+Other additional properties
+|	Property	|	Description		|	Example	|
+|-----------------------|-------------------------------|---------------|
+|SECOND_FACTOR 	|Ask for password as first step |`True|False`|
+|LOG_LEVEL 		|Level of logging|`DEBUG|INFO|WARNING|ERROR`|
+|MAX_NUMBER_OF_ERRORS_FALLBACK 	|Number of errors to show fallback method |`Default 0`|
+|MAX_NUMBER_OF_ERRORS_VERIFY 	|Number of errors on verify to delete enrolled signature |`Default 3`|
+
+## Whispeak Documentation
+
+If you want to have more information about the API calls used in this script please visit https://doc.whispeak.io/v1
+If you want to contact us just use the contact form over https://whispeak.io/
+
+## Configure attributes
+
+As indicated in Gluu doc: https://gluu.org/docs/gluu-server/admin-guide/attribute/
+
+You need to add these three text fields:
+- whispeakSignatureId
+- whispeakRevocationPwd
+- whispeakRevocationUiLink
+
+## Add librearies
+- You need to add these two jars: primefaces-8.0.jar and httpmime-4.5.13.jar
+- Specified in Gluu doc at: https://gluu.org/docs/gluu-server/operation/custom-design/
+
+## Configure oxTrust 
+
+Follow the steps below to configure the Whispeak module in the oxTrust Admin GUI.
+
+1. Navigate to `Configuration` > `Person Authentication Scripts`.
+1. Scroll down to the Whispeak authentication script   
+
+1. Configure the properties, all of which are mandatory, according to your API    
+
+1. Enable the script by ticking the check box    
+![enable](../img/admin-guide/enable.png)
+
+Now Whispeak's biometric authentication is available as an authentication mechanism for your Gluu Server. This means that, using OpenID Connect `acr_values`, applications can now request Whispeak biometric authentication for users. 
+
+!!! Note 
+    To make sure Whispeak has been enabled successfully, you can check your Gluu Server's OpenID Connect configuration by navigating to the following URL: `https://<hostname>/.well-known/openid-configuration`. Find `"acr_values_supported":` and you should see `"whispeak"`. 
+
diff --git a/oxAuth/Server/integrations/whispeak/whispeak_open_v1.py b/oxAuth/Server/integrations/whispeak/whispeak_open_v1.py
new file mode 100644
index 00000000..db713b4f
--- /dev/null
+++ b/oxAuth/Server/integrations/whispeak/whispeak_open_v1.py
@@ -0,0 +1,1326 @@
+# oxAuth is available under the MIT License (2008).
+# See http://opensource.org/licenses/MIT for full text.
+# Copyright (c) 2016, Gluu
+#
+# Author: Whispeak _ 2021
+#
+from base64 import b64decode
+
+import json
+import sys
+import time
+import logging
+import re
+
+from java.io import BufferedReader, InputStreamReader
+from java.lang import String
+from java.net import URI
+from java.util import Arrays, Collections
+from javax.faces.application import FacesMessage
+from javax.faces.context import FacesContext
+from org.apache.commons.io import IOUtils
+from org.apache.http import HttpStatus
+from org.apache.http.client.methods import HttpDelete, HttpGet, HttpPost
+from org.apache.http.client.utils import URIBuilder
+from org.apache.http.entity import ContentType
+from org.apache.http.entity.mime import MultipartEntityBuilder
+from org.apache.http.impl.client import HttpClientBuilder
+from org.gluu.config.oxtrust import LdapOxPassportConfiguration
+from org.gluu.jsf2.message import FacesMessages
+from org.gluu.jsf2.service import FacesService
+from org.gluu.model.custom.script.type.auth import PersonAuthenticationType
+from org.gluu.oxauth.model.common import User
+from org.gluu.oxauth.model.jwt import Jwt
+from org.gluu.oxauth.security import Identity
+from org.gluu.oxauth.service import AuthenticationService, UserService
+from org.gluu.service import CacheService
+from org.gluu.oxauth.service.common import EncryptionService
+from org.gluu.oxauth.service.net import HttpService
+from org.gluu.oxauth.util import ServerUtil
+from org.gluu.persist import PersistenceEntryManager
+from org.gluu.service.cdi.util import CdiUtil
+from org.gluu.util import StringHelper
+
+
+SCRIPT_VERSION = 'whispeak_open_v1.py'
+
+
+class PersonAuthentication(PersonAuthenticationType):
+
+    def __init__(self, current_time_millis):
+        self.current_time_millis = current_time_millis
+
+    ################################################################################
+    # Gluu auxiliary configuration and status functions
+    ################################################################################
+
+    ################################################################################
+    # Initialization functions
+
+    def init(self, custom_script, configuration_attributes):
+        self.logger = logging.getLogger(__name__)
+        log_format = '%(levelname)s - [%(filename)s:%(lineno)s - %(funcName)20s()] - %(message)s'
+        logging.basicConfig(format=log_format)
+        self.logger.setLevel(logging.INFO)
+
+        self.logger.info("Going to Setting log level")
+        log_level = configuration_attributes.get("LOG_LEVEL")
+        if log_level is not None:
+            log_level_value = log_level.getValue2()
+            self.logger.info("Setting log level %s", log_level_value)
+            self.logger.setLevel(logging.getLevelName(log_level_value))
+            if log_level_value == "DEBUG":
+                def trace(frame, event, arg):
+                    if event == "call":
+                        filename = frame.f_code.co_filename
+                        if filename == SCRIPT_VERSION:
+                            function_name = frame.f_code.co_name
+                            if function_name != "log":
+                                print("Function {}", function_name)
+                    return trace
+                sys.settrace(trace)
+            else:
+                sys.settrace(None)
+
+        success = self._process_key_store_properties(configuration_attributes)
+
+        if success:
+            self.provider_key = "provider"
+            self.passport_dn = self._get_passport_config_dn()
+            self.passport_enabled = True
+        else:
+            self.logger.debug("Passport Not initialized")
+            self.passport_enabled = False
+        self.logger.debug(
+            "Initialization ok, passport enabled status %s", success)
+        self._set_configuration_attributes(configuration_attributes)
+
+        self.storage_working_parameters = True
+        self.variable_debugging = False
+        return True
+
+    def _put(self, key, variable):
+        if self.storage_working_parameters or (key in self._getWorkingParameters()):
+            if self.variable_debugging:
+                self.logger.debug(
+                    "Put variable \"%s\" in working parameters with key \"%s\"", variable, key)
+            CdiUtil.bean(Identity).setWorkingParameter(key, variable)
+        else:
+            unique_key = CdiUtil.bean(
+                Identity).getSessionId().getId() + "-" + key
+            if self.variable_debugging:
+                self.logger.debug(
+                    "Put variable \"%s\" in cache with key \"%s\"", variable, unique_key)
+            CdiUtil.bean(CacheService).put(unique_key, variable)
+
+    def _get(self, key):
+        if self.storage_working_parameters or (key in self._getWorkingParameters()):
+            variable = CdiUtil.bean(Identity).getWorkingParameter(key)
+            if self.variable_debugging:
+                self.logger.debug(
+                    "Get variable \"%s\" from working parameters with key \"%s\"", variable, key)
+            return variable
+        else:
+            unique_key = CdiUtil.bean(
+                Identity).getSessionId().getId() + "-" + key
+            variable = CdiUtil.bean(CacheService).get(unique_key)
+            if self.variable_debugging:
+                self.logger.debug(
+                    "Get variable \"%s\" from cache with key \"%s\"", variable, unique_key)
+            return variable
+
+    def _get_passport_config_dn(self):
+        file = open('/etc/gluu/conf/gluu.properties', 'r')
+        for line in file:
+            prop = line.split("=")
+            if prop[0] == "oxpassport_ConfigurationEntryDN":
+                prop.pop(0)
+                break
+
+        file.close()
+        return "=".join(prop).strip()
+
+    def _process_key_store_properties(self, configuration_attributes):
+        file = configuration_attributes.get("KEY_STORE_FILE")
+        password = configuration_attributes.get("KEY_STORE_PASSWORD")
+
+        if file is not None and password is not None:
+            file = file.getValue2()
+            password = password.getValue2()
+
+            if StringHelper.isNotEmpty(file) and StringHelper.isNotEmpty(password):
+                self.key_store_file = file
+                self.key_store_password = password
+                return True
+
+        self.logger.debug(
+            "Properties key_store_file or key_store_password not found or empty")
+        return False
+
+    def _return_page(self, page, step):
+        page = page.replace('//', '/')
+        return page
+
+    def _set_configuration_attributes(self, configuration_attributes):
+        if configuration_attributes.containsKey("API_BASE_URL"):
+            url = configuration_attributes.get("API_BASE_URL").getValue2()
+            self.api_base_url = configuration_attributes.get(
+                "API_BASE_URL").getValue2()
+        if configuration_attributes.containsKey("API_APP_PATH"):
+            path = configuration_attributes.get("API_APP_PATH").getValue2()
+            self.api_app_path = path
+        if configuration_attributes.containsKey("API_KEY"):
+            api_key = configuration_attributes.get("API_KEY").getValue2()
+            self.api_key = api_key
+
+        if configuration_attributes.containsKey("FALLBACK_RETURN_HOST"):
+            fallback_return_host = configuration_attributes.get(
+                "FALLBACK_RETURN_HOST").getValue2()
+            self.fallback_return_host = fallback_return_host
+        else:
+            self.fallback_return_host = "auth.whispeak.io"
+
+        if configuration_attributes.containsKey("MAX_NUMBER_OF_ERRORS_VERIFY"):
+            number_of_errors_verify = configuration_attributes.get(
+                "MAX_NUMBER_OF_ERRORS_VERIFY").getValue2()
+            self.max_number_of_errors_verify = int(number_of_errors_verify)
+        else:
+            self.max_number_of_errors_verify = 3
+
+        if configuration_attributes.containsKey("MAX_NUMBER_OF_ERRORS_FALLBACK"):
+            number_of_errors_fallback = configuration_attributes.get(
+                "MAX_NUMBER_OF_ERRORS_FALLBACK").getValue2()
+            self.max_number_of_errors_fallback = int(number_of_errors_fallback)
+        else:
+            self.max_number_of_errors_fallback = 0
+
+        if configuration_attributes.containsKey("CHECK_ONLY_USERNAME"):
+            check_domain = configuration_attributes.get(
+                "CHECK_ONLY_USERNAME").getValue2()
+            self.check_only_username = check_domain
+        else:
+            self.check_only_username = False
+
+        if configuration_attributes.containsKey("SECOND_FACTOR"):
+            second_factor = configuration_attributes.get(
+                "SECOND_FACTOR").getValue2()
+            self.logger.debug("Second factor is %s", second_factor)
+            self.second_factor = second_factor
+        else:
+            self.second_factor = False
+
+        if not url or not path or not api_key:
+            if not url:
+                self.logger.error("Mandatory Property: API_BASE_URL")
+            if not path:
+                self.logger.error("Mandatory Property: API_APP_PATH")
+            if not api_key:
+                self.logger.error("Mandatory Property: API_KEY")
+            self._set_message_error(
+                FacesMessage.SEVERITY_ERROR, "login.authConfigurationError")
+            return False
+        self.endpoint = "{url}/apps{path}".format(url=url, path=path)
+
+    def _initialize_clean_config(self, configuration_attributes):
+
+        self._reinitialize_storage()
+
+        self._put("show_password", self.second_factor)
+        self._put("show_oidc_panel", False)
+        self._put("show_return_client_panel", False)
+        self._put("external_providers", False)
+
+        return True
+
+    def _reinitialize_storage(self):
+        self.logger.debug("Clean Working Parameters")
+        for key in self._getWorkingParameters():
+            self._put(key, None)
+        for key in self._getStorage():
+            self._put(key, None)
+
+    def _print_storage(self):
+        all_storage = self._getWorkingParameters() + self._getStorage()
+        self.logger.debug(all_storage)
+        for key in all_storage:
+            self._get(key)
+
+    def getApiVersion(self):
+        return 11
+
+    def getAuthenticationMethodClaims(self, requestParameters):
+        return None
+
+    def getAlternativeAuthenticationMethod(self, usage_type, configuration_attributes):
+        if configuration_attributes.containsKey("ALTERNATIVE_ACR_VALUE"):
+            ALTERNATIVE_ACR_VALUE = configuration_attributes.get(
+                "ALTERNATIVE_ACR_VALUE").getValue2()
+            self.logger.debug("Alternative acr value %s",
+                              ALTERNATIVE_ACR_VALUE)
+
+            return ALTERNATIVE_ACR_VALUE
+        return False
+
+    def getExtraParametersForStep(self, configuration_attributes, step):
+        # Used in xhtml pages
+        parameters = self._getWorkingParameters()
+        # Used internally in script
+        if self.storage_working_parameters:
+            parameters = Arrays.asList(
+                self._getWorkingParameters() + self._getStorage())
+        else:
+            parameters = Arrays.asList(self._getWorkingParameters())
+        return parameters
+
+    def _getStorage(self):
+        storage = ["username",
+                   "selected_provider",
+                   "passport_user_profile",
+                   "whispeak_signature_id",
+                   "user_password",
+                   "user_profile_oidc",
+                   "retry_error",
+                   "no_identification_step",
+                   "error_number",
+                   "error_number_verify",
+                   "count_authentication_steps",
+                   "token",
+                   "next_step",
+                   "username_from_parameters"]
+        return storage
+
+    def _getWorkingParameters(self):
+        parameters = ["flow",
+                      "enroll_challenge",
+                      "external_providers",
+                      "asr_text",
+                      "revocation_ui_link",
+                      "revocation_pwd",
+                      "show_password"]
+        return parameters
+
+    def getCountAuthenticationSteps(self, configuration_attributes):
+        steps = int(self._get(
+            "count_authentication_steps") or 7)
+        self.logger.debug(
+            "Total authentication count steps before jump %s", steps)
+        steps = self._set_jump_steps(
+            steps, True)
+        self.logger.debug(
+            "Total authentication count steps after jump %s", steps)
+
+        return steps
+
+    ################################################################################
+    # Fallback on platform down
+
+    def isValidAuthenticationMethod(self, usage_type, configuration_attributes):
+        if self._get("flow"):
+            if not self._isWhispeakAlive():
+                return False
+
+        return True
+
+    def _isWhispeakAlive(self):
+        self.logger.debug("Whispeak ENDPOINT %s", self.endpoint)
+
+        url = URI(self.api_base_url + "/health")
+
+        get_connection = HttpGet(url)
+
+        try:
+
+            http_service_response = HttpClientBuilder.create().build().execute(get_connection)
+            if http_service_response.getStatusLine().getStatusCode() != HttpStatus.SC_OK:
+                http_service_response.close()
+                raise Exception()
+            http_service_response.close()
+        except Exception as e:
+            self.logger.error("Contact Whispeak Server FAILED %s", str(e))
+            self._set_message_error(
+                FacesMessage.SEVERITY_ERROR, "login.authTimeout")
+            return False
+        finally:
+            get_connection.releaseConnection()
+        self.logger.debug("Whispeak Heartbeat Alive")
+        return True
+
+    ################################################################################
+    # End lifecycle
+
+    def destroy(self, configuration_attributes):
+        self.logger.info("Destroy SUCCESS")
+        return True
+
+    def get_logout_external_url(self, configuration_attributes, request_parameters):
+        return None
+
+    def logout(self, configuration_attributes, request_parameters):
+        return True
+
+    ################################################################################
+    # Gluu step management functions
+    ################################################################################
+
+    def _set_user_name_from_parameters(self):
+        username = self._get_user_name_from_request()
+
+        if username is None:
+            username = self._get(
+                "username_from_parameters")
+            if username is None:
+                return False
+        else:
+            self._put("username_from_parameters", username)
+
+        self._set_user_and_flow(username)
+
+        if not self.second_factor and username:
+            self.logger.debug("No identification step will be shown")
+            self._put("no_identification_step", True)
+
+        return True
+
+    def _get_user_name_from_request(self):
+        extra_parameters = ServerUtil.getFirstValue(FacesContext.getCurrentInstance(
+        ).getExternalContext().getRequest().getParameterMap(), "extraParameters")
+
+        if extra_parameters:
+            username = json.loads(extra_parameters)["username"]
+            self.logger.debug(
+                "Username from extra_parameters is %s", username)
+        else:
+            username = ServerUtil.getFirstValue(FacesContext.getCurrentInstance(
+            ).getExternalContext().getRequest().getParameterMap(), "username")
+            self.logger.debug("Username from direct parameter is %s", username)
+
+        return username
+
+    ################################################################################
+    # Called before each step to retrieve xhtml page
+
+    def getPageForStep(self, configuration_attributes, step):
+        if CdiUtil.bean(Identity).getSessionId():
+            # Session is initialized
+            flow = self._get("flow")
+            enroll_challenge = self._get(
+                "enroll_challenge")
+            step = self._set_jump_steps(step)
+        else:
+            username = self._get_user_name_from_request()
+            self.logger.debug("username is \"%s\"", username)
+            if username and not self.second_factor:
+                step = step + 1
+                flow = "enroll"
+                user = CdiUtil.bean(UserService).getUserByAttribute(
+                    'mail',  username)
+                if user:
+                    if user.getAttribute('whispeakSignatureId'):
+                        flow = "auth"
+
+        if step == 1:
+            page = self._return_page(
+                "/whispeak_open_identification.xhtml", step)
+
+        if step == 2:
+            if flow == "enroll":
+                page = self._return_page(
+                    "/whispeak_open_ask_enroll.xhtml", step)
+            else:
+                page = self._return_page(
+                    "/whispeak_open_authentication_submit.xhtml", step)
+
+        if step == 3:
+            if flow == "enroll" and enroll_challenge:
+                if enroll_challenge == "Reject":
+                    page = self._return_page(
+                        "/whispeak_open_passport_fallback.xhtml", step)
+                else:
+                    page = self._return_page(
+                        "/whispeak_open_passport.xhtml", step)
+            else:
+                page = self._return_page(
+                    "/whispeak_open_passport_loading.xhtml", step)
+
+        if step == 4:
+            page = self._return_page(
+                "/whispeak_open_passport_loading.xhtml", step)
+
+        if step == 5:
+            page = self._return_page(
+                "/whispeak_open_enrollment_submit.xhtml", step)
+
+        if step == 6:
+            page = self._return_page(
+                "/whispeak_open_authentication_submit.xhtml", step)
+
+        if step == 7:
+            page = self._return_page(
+                "/whispeak_open_revocation_data_show.xhtml", step)
+
+        self.logger.debug("Page %s for Step %s", page, step)
+
+        return page
+
+    ################################################################################
+    # Called to know which step goes next
+
+    def getNextStep(self, configuration_attributes, request_parameters, step):
+
+        next_step = self._get("next_step")
+
+        if next_step:
+            self._put("next_step", "")
+        else:
+            next_step = -1
+
+        self.logger.debug("Next step %s current step %s", next_step, step)
+
+        return next_step
+
+    ################################################################################
+    # Called before each step to execute logic
+
+    def prepareForStep(self, configuration_attributes, request_parameters, step):
+        self.logger.debug(
+            "Get session id prepare for step \"%s\" data \"%s\"", CdiUtil.bean(Identity).getSessionId().getId(), CdiUtil.bean(Identity).getSessionId().getSessionAttributes())
+
+        if step == 1:
+            username_from_parameters = self._get(
+                "username_from_parameters")
+            self._initialize_clean_config(configuration_attributes)
+            if username_from_parameters is not None:
+                self._put("username_from_parameters", username_from_parameters)
+            self._set_user_name_from_parameters()
+
+        step = self._set_jump_steps(step)
+
+        try:
+            flow = self._get("flow")
+            self.logger.debug("Flow %s Step %s", flow, step)
+
+            if step > 4 or (step == 2 and flow == "auth"):
+                self._set_access_token_and_text(
+                    self._get_access_token_and_text("enroll")
+                    if flow == "enroll" and step == 5
+                    else self._get_access_token_and_text("auth")
+                )
+
+            if (step > 2 or (step == 2 and flow == "auth")) and self.passport_enabled:
+                self.logger.debug("Preparing passport")
+                self._prepare_passport()
+        except Exception as e:
+            self.logger.error(
+                "Exception in prepareForStep function, returning to step 1 %s", str(e))
+            self._put("next_step", 1)
+            self._set_message_error(
+                FacesMessage.SEVERITY_INFO, "login.send_restart", False)
+
+        return True
+
+    ################################################################################
+    # Gluu authentication functions
+    ################################################################################
+
+    ################################################################################
+    # Core gluu authentication
+
+    def authenticate(self, configuration_attributes, request_parameters, step):
+
+        self.logger.debug(
+            "Get session id \"%s\" data \"%s\"", CdiUtil.bean(Identity).getSessionId().getId(), CdiUtil.bean(Identity).getSessionId().getSessionAttributes())
+        if self.variable_debugging:
+            self._print_storage()
+        self.logger.debug("Step %s", step)
+
+        if not self.passport_enabled:
+            if not self._redirect_to_client_fallback(configuration_attributes, request_parameters):
+                return False
+
+        if not self._check_script_exec_in_order(request_parameters, step):
+            return False
+
+        step = self._set_jump_steps(step)
+        step_ok = False
+
+        try:
+            self._put("retry_error", False)
+
+            enroll_challenge = request_parameters.get(
+                "loginForm:enroll_challenge")
+            self._put("enroll_challenge",
+                      enroll_challenge[0] if enroll_challenge is not None else None)
+
+            step_ok = self.__class__.__dict__["_PersonAuthentication__step{step}".format(step=step)](
+                self,
+                request_parameters,
+                step)
+
+            count_authentication_steps = self._get(
+                "count_authentication_steps")
+
+            self.logger.info("Step %s result is %s", step, step_ok)
+
+            if step_ok:
+                if step + 1 > count_authentication_steps:
+                    user = self._get("username")
+                    CdiUtil.bean(AuthenticationService).authenticate(user)
+                    self.logger.info(
+                        "Flow is finished login user %s in gluu service, in step %s", user, step)
+            else:
+                self.logger.warning("Step %s failed", step)
+                if self._get("retry_error"):
+                    current_error_number = self._get(
+                        "error_number") or 0
+                    current_error_number = current_error_number + 1
+                    self._put("error_number", current_error_number)
+                    number_of_errors_fallback = self.max_number_of_errors_fallback
+                    self.logger.debug("Current nb of errors %s Fallback at nb of errors %s", self._get(
+                        "error_number"), number_of_errors_fallback)
+                    if current_error_number >= number_of_errors_fallback:
+                        if not self.passport_enabled:
+                            self._put("show_return_client_panel", True)
+                        else:
+                            self._put("show_oidc_panel", True)
+                else:
+                    self.logger.warning(
+                        "Non retryable error returning to step 1, retry_error is %s", self._get("retry_error"))
+                    self._put("next_step", 1)
+                    self._set_message_error(
+                        FacesMessage.SEVERITY_INFO, "login.send_restart", False)
+
+        except Exception as e:
+            self.logger.error(
+                "Exception in authentication function, returning to step 1 %s", str(e))
+            self._put("next_step", 1)
+            self._set_message_error(
+                FacesMessage.SEVERITY_INFO, "login.send_restart", False)
+
+        if self.variable_debugging:
+            self._print_storage()
+        return step_ok
+
+    def _redirect_to_client_fallback(self, configuration_attributes, request_parameters):
+        client_url = FacesContext.getCurrentInstance().getExternalContext(
+        ).getRequestCookieMap().get("rp_origin_id").getValue()
+
+        host = self.fallback_return_host
+        if bool(client_url) and not host in client_url:
+            fallback_return_url = re.search(
+                r"(https://[a-zA-Z\-\.]+)/.*", client_url).group(1)
+        else:
+            if configuration_attributes.containsKey("FALLBACK_REDIRECT_URL"):
+                fallback_return_url = configuration_attributes.get(
+                    "FALLBACK_REDIRECT_URL").getValue2()
+            else:
+                fallback_return_url = host
+        self.logger.debug("fallback_return_url %s", fallback_return_url)
+        self._put("client_url", fallback_return_url)
+
+        # Get enroll challenge response
+        enroll_challenge_parameter = request_parameters.get(
+            "loginForm:enroll_challenge")
+        enroll_challenge = enroll_challenge_parameter[0] if enroll_challenge_parameter is not None else None
+
+        rejected_enroll = enroll_challenge == "Reject"
+
+        redirect_to_client = bool(ServerUtil.getFirstValue(
+            request_parameters, "loginForm:redirect-to-client")) or rejected_enroll
+
+        if bool(redirect_to_client):
+            client_url = self._get(
+                "client_url")
+            if bool(client_url):
+                self.logger.debug("Redirecting to %s", client_url)
+                CdiUtil.bean(FacesService).redirectToExternalURL(client_url)
+            else:
+                self._set_message_error(
+                    FacesMessage.SEVERITY_INFO, "login.restart", False)
+                self._put("next_step", 1)
+                self.logger.error("Not possible to get client URL, restarting")
+                return False
+        return True
+
+    def _check_script_exec_in_order(self, request_parameters, step):
+        origin_page_param = ServerUtil.getFirstValue(
+            request_parameters, "loginForm:origin-page")
+
+        if origin_page_param:
+            expected_page = self.getPageForStep(None, step)
+
+            origin_page = self._return_page(origin_page_param, step)
+            self.logger.debug("origin_page %s", origin_page)
+            self.logger.debug("expected_page %s", expected_page)
+
+            if origin_page != expected_page:
+                self._set_message_error(
+                    FacesMessage.SEVERITY_INFO, "login.restart", False)
+                self._put("next_step", 1)
+                self.logger.error(
+                    "origin_page and expected_page differ restart on step 1")
+                return False
+        return True
+
+    def _set_jump_steps(self, step, back=False):
+        if self._get("no_identification_step"):
+            step = self._jump(step, back, 1)
+            self.logger.debug(
+                "Jumping over first step, so updated to %s", step)
+        if (not self.passport_enabled) and 2 < step < 8:
+            step = self._jump(step, back, 2)
+            self.logger.debug(
+                "Jumping over passport steps, so updated to %s", step)
+        return step
+
+    def _jump(self, step, back, amount):
+        if back:
+            return step - amount
+        return step + amount
+
+    ################################################################################
+    # First step: user identification with email
+
+    def __step1(self, request_parameters, step):
+
+        credentials = CdiUtil.bean(Identity).getCredentials()
+
+        username = credentials.getUsername()
+        if not username:
+            return False
+
+        user = self._set_user_and_flow(username)
+
+        # ONLY FOR DEMO PURPOSES
+        # as we are already authenticating user here before voice to some extent, possibly insecure
+        if self.second_factor:
+            user_password = ServerUtil.getFirstValue(
+                request_parameters, "loginForm:password") or credentials.getPassword()
+            if StringHelper.isNotEmptyString(username) and StringHelper.isNotEmptyString(user_password):
+                if not user or not user.getAttribute('userPassword'):
+                    self._put("user_password", user_password)
+                    return True
+                authenticated = CdiUtil.bean(AuthenticationService).authenticate(
+                    username, user_password)
+                if not authenticated:
+                    self.logger.info(
+                        "Password mismatch for user %s", username)
+                    self._set_message_error(
+                        FacesMessage.SEVERITY_ERROR, "whispeak.login.2fa.passwordMismatch")
+                return authenticated
+            return False
+
+        return True
+
+    def _set_user_and_flow(self, username):
+        user = CdiUtil.bean(UserService).getUserByAttribute('mail',  username)
+        whispeak_signature_id = ''
+
+        self._put("username", username)
+
+        if user:
+            whispeak_signature_id = user.getAttribute('whispeakSignatureId')
+
+        if not user or not whispeak_signature_id:
+            self.logger.info(
+                "User %s does not exist or is not enrolled, will be created", username)
+            self._put("flow", "enroll")
+            self._put("count_authentication_steps", 7)
+            self.logger.debug("Updated total steps to: %s",
+                              self._get("count_authentication_steps"))
+        else:
+            self.logger.info(
+                "User %s is already enrolled, proceed for authentication", username)
+            self._put("flow", "auth")
+            self._put("count_authentication_steps", 2)
+            self.logger.debug("Updated total steps to: %s",
+                              self._get("count_authentication_steps"))
+        return user
+
+    ################################################################################
+    # Second step: enrollment challenge question, auth or passport
+
+    def __step2(self, request_parameters, step):
+        flow = self._get("flow")
+
+        if flow == "auth":
+            if self._check_and_activate_alternative_provider_selected(request_parameters):
+                self._put("count_authentication_steps", 3)
+                self.logger.debug("Updated total steps to: %s",
+                                  self._get("count_authentication_steps"))
+                redirect_result = self._redirect_oidc()
+                return redirect_result
+
+            login_voice = self._get_login_voice_and_set_text(
+                request_parameters)
+            if not login_voice:
+                self.logger.warning(
+                    "Authentication flow, voice is NOT present, retryable error")
+                self._put("retry_error", True)
+                return False
+            else:
+                self.logger.debug(
+                    "Authentication flow, voice is present in request with size in bytes %s", (len(login_voice)))
+
+            username = self._get("username")
+            user = CdiUtil.bean(UserService).getUserByAttribute(
+                'mail',  username)
+
+            whispeak_signature_id = user.getAttribute('whispeakSignatureId')
+            logged_in = self._whispeak_voice(
+                "auth", login_voice, whispeak_signature_id)
+            if logged_in:
+                user_password = self._get(
+                    "user_password")
+                if user_password:
+                    user.setAttribute('userPassword', user_password)
+                    CdiUtil.bean(UserService).updateUser(user)
+            self.logger.info(
+                "User %s is authenticated via voice in Whispeak", username)
+            return logged_in
+
+        else:
+            enroll_challenge = self._get(
+                "enroll_challenge")
+            if enroll_challenge == "Reject":
+                self.logger.debug("User does not want to enroll, fallback")
+                if self.passport_enabled:
+                    self._put("count_authentication_steps", 4)
+                else:
+                    self._put("count_authentication_steps", 3)
+                self.logger.debug("Updated total steps to: %s",
+                                  self._get("count_authentication_steps"))
+            return True
+
+    ################################################################################
+    # Third step: passport redirect
+
+    def __step3(self, request_parameters, step):
+
+        flow = self._get("flow")
+
+        if flow == "enroll":
+            self._check_and_activate_alternative_provider_selected(
+                request_parameters)
+            redirect_result = self._redirect_oidc()
+            return redirect_result
+
+        jwt_param = ServerUtil.getFirstValue(request_parameters, "user")
+        return self._is_oidc_authenticated(jwt_param)
+
+    ################################################################################
+    # Fourth step: passport return, token processing
+
+    def __step4(self, request_parameters, step):
+
+        jwt_param = ServerUtil.getFirstValue(request_parameters, "user")
+        user_profile_oidc = self._is_oidc_authenticated(jwt_param)
+        self.logger.debug(
+            "user_profile_oidc when retrieved \"%s\"", user_profile_oidc)
+        if user_profile_oidc:
+            self.logger.debug("Saving user profile")
+            self._put('user_profile_oidc', user_profile_oidc)
+            return True
+        return False
+
+    ################################################################################
+    # Fifth step: enroll with passport fallback
+
+    def __step5(self, request_parameters, step):
+
+        redirect_result = self._adjust_fallback_steps_passport_and_redirect(
+            request_parameters)
+        if redirect_result:
+            self.logger.info("redirects")
+            return redirect_result
+
+        self.logger.info("Processing voice enroll")
+
+        whispeak_signature_id = self._whispeak_voice(
+            "enroll", self._get_login_voice_and_set_text(request_parameters))
+
+        if whispeak_signature_id:
+            self._put("whispeak_signature_id", whispeak_signature_id)
+
+        authentication_result = whispeak_signature_id
+
+        return authentication_result
+
+    ################################################################################
+    # Sixth step: verify enroll with passport fallback
+
+    def __step6(self, request_parameters, step):
+
+        redirect_result = self._adjust_fallback_steps_passport_and_redirect(
+            request_parameters)
+        if redirect_result:
+            self.logger.info("redirects")
+            return redirect_result
+
+        self.logger.info("Processing voice enroll verification")
+
+        whispeak_signature_id = self._get(
+            "whispeak_signature_id")
+        username = self._get("username")
+        logged_in = self._whispeak_voice("auth", self._get_login_voice_and_set_text(
+            request_parameters), whispeak_signature_id)
+        if logged_in:
+            user = CdiUtil.bean(UserService).getUserByAttribute(
+                'mail',  username)
+            user_profile_oidc = self._get(
+                'user_profile_oidc')
+            if not user:
+                user = self._create_user(
+                    username, whispeak_signature_id, user_profile_oidc)
+            else:
+                self._update_user(user, user_profile_oidc)
+            user.setAttribute('whispeakSignatureId', whispeak_signature_id)
+            user.setAttribute('whispeakRevocationUiLink',
+                              self._get("revocation_ui_link"))
+            user.setAttribute('whispeakRevocationPwd',
+                              self._get("revocation_pwd"))
+            user_password = self._get("user_password")
+            if user_password:
+                user.setAttribute('userPassword', user_password)
+            CdiUtil.bean(UserService).updateUser(user)
+        else:
+            current_error_number_verify = self._get(
+                "error_number_verify") + 1
+            self._put("error_number_verify", current_error_number_verify)
+            max_number_of_errors_verify = self.max_number_of_errors_verify
+            self.logger.debug("Current nb of errors %s Verify at nb of errors %s",
+                              current_error_number_verify, max_number_of_errors_verify)
+            if current_error_number_verify >= max_number_of_errors_verify:
+                self.logger.debug("Proceeding to delete signature")
+                self._delete_signature(whispeak_signature_id)
+                self._put("retry_error", False)
+                self._set_message_error(
+                    FacesMessage.SEVERITY_ERROR, "whispeak.login.signatureDoesNotExist")
+
+        return logged_in
+
+    ################################################################################
+    # Seventh step: show revocation info and confirm
+    def __step7(self, request_parameters, step):
+
+        return True
+
+    ################################################################################
+    # Whispeak Functions
+    ################################################################################
+
+    def _adjust_fallback_steps_passport_and_redirect(self, request_parameters):
+        if self._check_and_activate_alternative_provider_selected(request_parameters):
+            self._put("count_authentication_steps", 4)
+            self._put("next_step", 4)
+            redirect_result = self._redirect_oidc()
+            return redirect_result
+        return False
+
+    def _get_login_voice_and_set_text(self, request_parameters):
+
+        login_voice_base64 = ServerUtil.getFirstValue(
+            request_parameters, "loginForm:voiceBase64")
+
+        if login_voice_base64:
+            login_voice = self._base64_to_file(login_voice_base64)
+        asr_text = ServerUtil.getFirstValue(
+            request_parameters, "loginForm:asr-text-retry")
+        self.logger.debug(
+            "Retrieved from form asr_text of length %s", len(asr_text))
+        if asr_text:
+            self._put("asr_text", asr_text)
+
+        if not login_voice:
+            self.logger.warning(
+                "Authentication flow, voice is NOT present in request so return false and keep step")
+            self._put("retry_error", True)
+            return False
+        else:
+            self.logger.debug("Size bytes of file %s", len(login_voice))
+
+        return login_voice
+
+    def _base64_to_file(self, login_voice_base64):
+        if not login_voice_base64:
+            return None
+
+        voice_bytes = b64decode(login_voice_base64.encode('ascii'))
+
+        return voice_bytes
+
+    def _get_access_token_and_text(self, for_method):
+        self.logger.info("Get Token for: %s", for_method)
+
+        whispeak_service_url = "{endpoint}/{route}".format(
+            endpoint=self.endpoint, route=for_method)
+
+        url = URI(whispeak_service_url)
+
+        self.logger.debug("URL Token %s", url)
+        get_connection = HttpGet(url)
+        bearer = "Bearer {key}".format(key=self.api_key)
+        self.logger.debug("Bearer Token: %s", bearer)
+        get_connection.setHeader("Authorization", bearer)
+
+        try:
+            http_get_response = HttpClientBuilder.create().build().execute(get_connection)
+            http_response_entity = http_get_response.getEntity()
+            http_response_content = http_response_entity.getContent()
+            if http_get_response.getStatusLine().getStatusCode() != HttpStatus.SC_OK:
+                self.logger.error("Whispeak Obtain Access Token - SERVER resp NOT OK code %s",
+                                  http_get_response.getStatusLine().getStatusCode())
+                http_get_response.close()
+                return None
+
+            data = json.loads(IOUtils.toString(http_response_content, "UTF-8"))
+            http_get_response.close()
+            self.logger.debug("Access Token and Text: %s", data)
+            return data
+
+        except Exception as e:
+            self.logger.error(
+                "Whispeak Obtain Access Token Exception %s", str(e))
+            return None
+        finally:
+            get_connection.releaseConnection()
+
+    def _delete_signature(self, whispeak_signature_id):
+
+        whispeak_service_url = "{endpoint}/signatures/{whispeak_signature_id}".format(
+            endpoint=self.endpoint, whispeak_signature_id=whispeak_signature_id)
+
+        url = URI(whispeak_service_url)
+        self.logger.debug("URL Delete %s", url)
+        get_connection = HttpDelete(url)
+        bearer = "Bearer {key}".format(key=self.api_key)
+        self.logger.debug("Bearer Delete, bearer %s", bearer)
+        get_connection.setHeader("Authorization", bearer)
+
+        try:
+            http_delete_response = HttpClientBuilder.create().build().execute(get_connection)
+            if http_delete_response.getStatusLine().getStatusCode() != HttpStatus.SC_OK:
+                self.logger.error("Whispeak Delete signature - SERVER resp NOT OK code %s",
+                                  http_delete_response.getStatusLine().getStatusCode())
+                return False
+            self.logger.info("Whispeak Delete signature code %s",
+                             http_delete_response.getStatusLine().getStatusCode())
+        except Exception as e:
+            self.logger.error(
+                "Whispeak Delete Signature Exception %s", str(e))
+            return False
+        finally:
+            if http_delete_response:
+                http_delete_response.close()
+            get_connection.releaseConnection()
+
+        return True
+
+    def _set_access_token_and_text(self, data):
+        if not data or not data['text']:
+            self.logger.error("Not possible to get tokens")
+            self._set_message_error(
+                FacesMessage.SEVERITY_ERROR, "login.authConfigurationError")
+            return False
+        self._put("token", data['token'])
+        self._put("asr_text", data['text'])
+        return True
+
+    def _whispeak_voice(self, operation, login_voice, whispeak_signature_id=None):
+
+        whispeak_service_url = "{endpoint}/{operation}".format(
+            endpoint=self.endpoint, operation=operation)
+
+        builder = URIBuilder(whispeak_service_url)
+        url = builder.build()
+        self.logger.debug("URL %s", url)
+        http_service_request = HttpPost(url)
+
+        try:
+            token = self._get("token")
+            self.logger.debug("JWT temp token %s", token)
+            http_service_request.setHeader("Authorization", "Bearer " + token)
+            multipart_builder = MultipartEntityBuilder.create()
+            multipart_builder.addBinaryBody(
+                "file", login_voice, ContentType.APPLICATION_OCTET_STREAM, "gluu" + ".wav")
+            if operation == "auth":
+                self.logger.info("Whispeak Signature %s",
+                                 whispeak_signature_id)
+                multipart_builder.addTextBody(
+                    "id", whispeak_signature_id, ContentType.TEXT_PLAIN)
+            multipart = multipart_builder.build()
+            http_service_request.setEntity(multipart)
+            time_sent = time.time()
+            http_service_response = HttpClientBuilder.create().build().execute(
+                http_service_request)
+            self.logger.info(
+                "Whispeak API, received response in %ss", (time.time() - time_sent))
+
+            response_body = self._response_content_entity(
+                http_service_response)
+            status_code = http_service_response.getStatusLine().getStatusCode()
+            if status_code == HttpStatus.SC_OK:
+                self.logger.info("Operation  %s SUCCEED with code %s",
+                                 operation, http_service_response.getStatusLine())
+                return True
+            if status_code == HttpStatus.SC_CREATED:
+                self._put("revocation_ui_link",
+                          response_body['revocation']['revocation_ui_link'])
+                self._put(
+                    "revocation_pwd", response_body['revocation']['signature_secret_password'])
+                return response_body["id"]
+            if status_code == 404:
+                self._remove_signature_from_user(whispeak_signature_id)
+                return False
+            self._put("retry_error", True)
+            self._set_message_error(
+                FacesMessage.SEVERITY_ERROR, self._whispeak_error_message(status_code))
+            self.logger.warning(
+                "Operation FAILED with code%s", http_service_response.getStatusLine())
+            return False
+        except Exception as e:
+            if http_service_response:
+                self.logger.info("Operation FAILED with code %s",
+                                 http_service_response.getStatusLine())
+            self.logger.error("Whispeak Auth Exception %s", str(e))
+            return False
+        finally:
+            if http_service_response:
+                http_service_response.close()
+            http_service_request.releaseConnection()
+
+    def _remove_signature_from_user(self, whispeak_signature_id):
+        user = CdiUtil.bean(UserService).getUserByAttribute(
+            'whispeakSignatureId', whispeak_signature_id)
+        user.setAttribute('whispeakSignatureId', '')
+        user.setAttribute('whispeakRevocationUiLink', '')
+        user.setAttribute('whispeakRevocationPwd', '')
+        CdiUtil.bean(UserService).updateUser(user)
+        self.logger.info(
+            "Removed non existent user signature from Gluu %s to force enrollment again (probably speaker secret was removed)", whispeak_signature_id)
+        self._put("next_step", "1")
+        self._set_message_error(
+            FacesMessage.SEVERITY_ERROR, "whispeak.login.signatureDoesNotExist")
+
+    def _whispeak_error_message(self, code):
+        error_messages = {
+            400: "whispeak.apiError.badRequest",
+            401: "whispeak.apiError.unauthorized",
+            403: "whispeak.apiError.invalidCredential",
+            404: "whispeak.apiError.signatureNotFound",
+            415: "whispeak.apiError.unsupportedAudioFile",
+            419: "whispeak.apiError.voiceMismatch",
+            420: "whispeak.apiError.audioConstraintsFailed",
+            430: "whispeak.apiError.invalidEnrollSignature"
+        }
+        return error_messages[code]
+
+    ################################################################################
+    # Passport functions
+    ################################################################################
+
+    def _prepare_passport(self):
+        if not self._get("external_providers"):
+            self.registered_providers = self._parse_provider_configs()
+            self._put("external_providers", json.dumps(
+                self.registered_providers))
+
+    def _get_passport_redirect_url(self, provider):
+
+        self.logger.debug("Prepare passport for Provider %s", provider)
+
+        # provider is assumed to exist in self.registered_providers
+        url = None
+
+        token_endpoint = "https://%s/passport/token" % CdiUtil.bean(
+            FacesContext).getExternalContext().getRequest().getServerName()
+
+        self.logger.debug(
+            "Obtaining token from passport at %s", token_endpoint)
+        resultResponse = CdiUtil.bean(HttpService).executeGet(
+            HttpClientBuilder.create().build(), token_endpoint, Collections.singletonMap("Accept", "text/json"))
+        http_response = resultResponse.getHttpResponse()
+        message_bytes = CdiUtil.bean(
+            HttpService).getResponseContent(http_response)
+
+        response = CdiUtil.bean(
+            HttpService).convertEntityToString(message_bytes)
+        self.logger.debug("Response Code %s",
+                          http_response.getStatusLine().getStatusCode())
+        if not http_response.getStatusLine().getStatusCode() == HttpStatus.SC_OK:
+            self._set_message_error(
+                FacesMessage.SEVERITY_ERROR, "passport.unavailable")
+        token_obj = json.loads(response)
+        if 'token_' in token_obj:
+            url = "/passport/auth/%s/%s" % (provider, token_obj["token_"])
+        return url
+
+    def _check_and_activate_alternative_provider_selected(self, request_parameters):
+        provider = ServerUtil.getFirstValue(
+            request_parameters, "loginForm:provider")
+        if not provider:
+            return False
+        if not hasattr(self, 'registered_providers'):
+            self.registered_providers = self.parseProviderConfigs()
+        is_configured_provider = len(
+            [prvd for prvd in self.registered_providers if next(iter(prvd)) == provider]) > 0
+
+        if is_configured_provider:
+            # it's a recognized external IDP
+            self._put("selected_provider", provider)
+            return True
+
+        return False
+
+    def _redirect_oidc(self):
+        provider = self._get("selected_provider")
+        if not provider:
+            return False
+        url = self._get_passport_redirect_url(provider)
+        if not url:
+            return False
+        self.logger.info("Redirecting user to OIDC url: %s", url)
+        self._put("selected_provider", None)
+        CdiUtil.bean(FacesService).redirectToExternalURL(url)
+        return True
+
+    def _is_oidc_authenticated(self, jwt_param):
+
+        # Parse JWT and validate
+        self.logger.info("Checking user OIDC token")
+        jwt = Jwt.parse(jwt_param)
+        (user_profile) = self._get_user_profile(jwt)
+        if user_profile is None:
+            return False
+
+        auth_step1_username = self._get("username")
+
+        if not self._validate_username_oidc(auth_step1_username, user_profile):
+            self.logger.error(
+                "FAIL not possible to verify username returns false")
+            self._set_message_error(
+                FacesMessage.SEVERITY_ERROR, "login.authOidcMismatch")
+            return False
+        return user_profile
+
+    def _validate_username_oidc(self, auth_step1_username, user_profile):
+
+        oidc_username = user_profile["mail"][0]
+
+        if self.check_only_username:
+            auth_step1_username = auth_step1_username.split("@")[0]
+            oidc_username = oidc_username.split("@")[0]
+
+        self.logger.debug(
+            "Validate username matches with third-party username")
+
+        if oidc_username != auth_step1_username:
+            self.logger.warning(
+                "Usernames from OIDC does not match username from auth step 1")
+            return False
+        return True
+
+    def _get_user_profile(self, jwt):
+        jwt_claims = jwt.getClaims()
+        user_profile_json = None
+        user_profile_json = CdiUtil.bean(EncryptionService).decrypt(
+            jwt_claims.getClaimAsString("data"))
+        user_profile = json.loads(user_profile_json)
+        return user_profile
+
+    def _parse_provider_configs(self):
+        registered_providers = []
+        registered_providers = self._parse_all_providers()
+        to_remove = []
+        for provider in registered_providers:
+            provider = list(provider.values())[0]
+            if provider["type"] == "saml":
+                to_remove.append(provider)
+            else:
+                provider["saml"] = False
+        for provider in to_remove:
+            registered_providers.pop(provider)
+        self.logger.debug("Configured providers: %s", registered_providers)
+
+        return registered_providers
+
+    def _parse_all_providers(self):
+        registered_providers = []
+        config = LdapOxPassportConfiguration()
+        config = CdiUtil.bean(PersistenceEntryManager).find(
+            config.getClass(), self.passport_dn).getPassportConfiguration()
+        config = config.getProviders() if config is not None else config
+        if config is not None and len(config) > 0:
+            for prvdetails in config:
+                if prvdetails.isEnabled():
+                    registered_providers.append({prvdetails.getId():
+                                                 {
+                        "id": prvdetails.getId(),
+                        "emailLinkingSafe": prvdetails.isEmailLinkingSafe(),
+                        "requestForEmail": prvdetails.isRequestForEmail(),
+                        "logo_img": prvdetails.getLogoImg(),
+                        "displayName": prvdetails.getDisplayName(),
+                        "type": prvdetails.getType(),
+                    }
+                    })
+        return registered_providers
+
+    ################################################################################
+    # Generic Auxiliary functions
+    ################################################################################
+
+    def _create_user(self, user_email, signature_id=None, profile=None, user_password=None):
+        new_user = User()
+
+        username = user_email.split("@")[0]
+        new_user.setAttribute("uid", user_email, True)
+        new_user.setAttribute("givenName", username, True)
+        new_user.setAttribute("displayName", username, True)
+        new_user.setAttribute("sn", "-", True)
+        new_user.setAttribute("mail", user_email, True)
+        new_user.setAttribute("gluuStatus", "active", True)
+        new_user.setAttribute("whispeakSignatureId", signature_id)
+        new_user.setAttribute("password", user_password)
+
+        if profile:
+            self._fill_user(new_user, profile)
+
+        new_user = CdiUtil.bean(UserService).addUser(new_user, True)
+
+        return new_user
+
+    def _update_user(self, user, profile):
+        self._fill_user(user, profile)
+        CdiUtil.bean(UserService).updateUser(user)
+
+    def _fill_user(self, user, profile):
+        if profile:
+            for attr in profile:
+                if attr != self.provider_key:
+                    values = profile[attr]
+                    user.setAttribute(attr, values)
+                    if attr == "mail":
+                        ox_trust_mails = []
+                        for mail in values:
+                            ox_trust_mails.append(
+                                '{"value":"{mail}","primary":false}')
+                        user.setAttribute("oxTrustEmail", ox_trust_mails)
+
+    def _set_message_error(self, severity, msg, clear=True):
+        if clear:
+            self._new_messages()
+        error_message = String.format("#{msgs['%s']}", msg)
+        self.logger.debug("Error message to be returned %s", error_message)
+        CdiUtil.bean(FacesMessages).add(severity, error_message)
+
+    def _new_messages(self):
+        CdiUtil.bean(FacesMessages).clear()
+
+    def _response_content_entity(self, http_service_response):
+        input_stream = http_service_response.getEntity().getContent()
+        reader = BufferedReader(InputStreamReader(input_stream, "UTF-8"), 8)
+        string_buffer = ""
+        line = reader.readLine()
+        while line is not None:
+            string_buffer = string_buffer + line.encode('utf-8') + "\n"
+            line = reader.readLine()
+        return json.loads(string_buffer)
diff --git a/oxAuth/Server/integrations/wwpass/INSTALLATION.md b/oxAuth/Server/integrations/wwpass/INSTALLATION.md
new file mode 100644
index 00000000..59e1f770
--- /dev/null
+++ b/oxAuth/Server/integrations/wwpass/INSTALLATION.md
@@ -0,0 +1,244 @@
+# Setting Up WWPass Authentication in Gluu Server
+
+## Introduction
+
+[WWPass](https://wwpass.com/) replaces the traditional username and password
+login with a more advanced multi-factor authentication solution. WWPass employs
+strong cryptography and robust combination of authentication factors to deliver
+a secure and user-friendly authentication experience. WWPass authentication
+starts with a smartphone app or a hardware token as the first authentication
+factor. Then additional authentication factors such as PIN or biometrics can be
+added to verify the user identity further.
+
+[Gluu Server](https://gluu.org/docs/gluu-server/4.1/) is a container
+distribution of free open source software (FOSS) for identity and access
+management (IAM). Gluu Server combines SAML 2.0, LDAP, OpenID Connect,
+and other authentication and authorization protocol implementations to create
+a platform for user authentication, identity information, and policy decisions.
+
+Combining WWPass strong multi-factor authentication with the versatility of
+Gluu Server helps to build secure IAM solutions that can be used for single
+sign-on (SSO), customer identity and access management (CIAM), and identity
+federation.
+
+## Prerequisites
+
+This tutorial assumes that you have the following:
+
+- Gluu Server 4.1.1 installed on Ubuntu Server 18.04 or 16.04;
+- An administrative account on this Ubuntu Server;
+- An application certificate and private key for WWPass authentication;
+- WWPass Key app or hardware token;
+
+### Obtain Application Certificate and Private Key From WWPass
+
+To obtain an application certificate and private key go to
+[wwpass.com](https://wwpass.com), click **Sign Up** to create a developer
+account or **Log In** if you already have an account. Then follow the website
+instructions to register your application domain and issue the application
+certificate.
+
+## Prepare WWPass Integration Files
+
+Copy this directory to your Gluu server and make it current
+```console
+cd wwpass
+```
+
+Files in `pages` directory should be deployed to
+`/opt/gluu-server/opt/gluu/jetty/oxauth/custom/pages/`
+
+```console
+sudo cp -rL pages/* /opt/gluu-server/opt/gluu/jetty/oxauth/custom/pages/
+```
+
+Files in `static` directory should be deployed to
+`/opt/gluu-server/opt/gluu/jetty/oxauth/custom/static/`
+
+```console
+sudo cp -rL pages/* /opt/gluu-server/opt/gluu/jetty/oxauth/custom/static/
+```
+
+Copy `wwpass.py` to `/opt/gluu-server/opt/gluu/python/libs/`
+
+```console
+sudo cp wwpass.py /opt/gluu-server/opt/gluu/python/libs/
+```
+
+Copy `ticket.json` to `/opt/gluu-server/opt/wwpass_gluu/cgi`
+
+``` console
+sudo mkdir -p /opt/gluu-server/opt/wwpass_gluu/cgi
+sudo cp ticket.json /opt/gluu-server/opt/wwpass_gluu/cgi
+```
+
+Make sure `ticket.json` is executable
+
+```console
+sudo chmod 755 /opt/gluu-server/opt/wwpass_gluu/cgi/ticket.json
+```
+
+Copy WWPass application certificate and private key to
+`/opt/gluu-server/opt/wwpass_gluu/`
+(assuming the certificate and key files are in your home directory)
+
+```console
+sudo cp ~/gluu_client.crt /opt/gluu-server/opt/wwpass_gluu/gluu_client.crt
+sudo cp ~/gluu_client.key /opt/gluu-server/opt/wwpass_gluu/gluu_client.key
+```
+
+Replace `~/gluu_client.crt` and `~/gluu_client.key` with the names and location
+of your certificate and key files.
+
+Copy WWPass CA certificate `wwpass.ca.crt` to `/opt/gluu-server/opt/wwpass_gluu/`
+
+```console
+sudo cp wwpass.ca.crt /opt/gluu-server/opt/wwpass_gluu
+```
+
+Log in to the Gluu Server container
+
+```console
+sudo /sbin/gluu-serverd login
+```
+
+Change ownership of files and directories just copied
+
+```console
+chown -R jetty:jetty /opt/jetty
+chown root:gluu /opt/gluu/python/libs/wwpass.py
+```
+
+## Configure Apache
+
+Use your favorite console text editor to change Apache configuration
+
+```console
+[vi|nano|joe|...] /opt/gluu-server/etc/apache2/sites-available/https_gluu.conf
+```
+
+Scroll down the file until you find the last `<Location>...</Location>` tag and
+insert the following snippet below it:
+
+```apache
+<Location /wwpass>
+  require all granted
+</Location>
+
+ScriptAlias "/wwpass/" "/opt/wwpass_gluu/cgi/"
+
+<Directory /opt/wwpass_gluu/cgi/>
+  SetHandler cgi-script
+  Options +ExecCGI
+  Order deny,allow
+  Allow from all
+</Directory>
+```
+
+Save the file and exit the editor.
+
+Enable mod_cgi and restart apache:
+
+```console
+a2enmod cgi
+systemctl restart apache2
+```
+
+Check that `ticket.json` is working.
+Go to `https://<your_gluu_host>/wwpass/ticket.json`.
+If your setup is correct, you will see output like this:
+
+```json
+{"result": true, "data": "SPNAME:07629a1963c5e4f4f339ecb852b7a0bf10a90c62@p-sp-05-50:16033", "ttl": 600, "encoding": "plain"}
+```
+
+## Configure Gluu Server
+
+Log in as administrator and go to "Configuration -> Manage Custom scripts".
+
+In `Person Authentication` tab, click `Add custom script configuration` at the bottom of the page
+
+Create custom script `wwpass` with Location Type set to `Database`.
+
+Add the following to `Custom Property` fields by clicking on `Add new property` button:
+
+- wwpass_crt_file: /opt/wwpass_gluu/gluu_client.crt
+- wwpass_key_file: /opt/wwpass_gluu/gluu_client.key
+- registration_url: URL of the registration web application, if you have one. Do not add this property otherwise
+- recovery_url: URL for account recovery, if you have one. Do not add this property otherwise.
+
+To require PIN or biometrics during login, add:
+
+- use_pin: True
+
+To enable binding WWPass keys with email, add:
+
+- allow_email_bind: True
+
+Note, your Gluu server should be able to send emails, see
+`Configuration -> Organization configuration -> SMTP Server Configuration`.
+
+To enable binding WWPass keys with existing usernames and passwords, add:
+
+- allow_password_bind: True
+
+To enable binding WWPass keys with another WWPass key, add:
+
+- allow_passkey_bind: True
+
+Replace the content of `Script` textbox with the content of `wwpassauth.py` from `gluu-master`
+
+Set `Enabled` checkbox to enable the custom script:
+
+Click the `Update` button.
+
+It's also recommended to increase the unauthenticated session lifetime to give
+users more time to bind their WWPass keys.
+
+Go to `Configuration -> JSON configuration -> OxAuth Configuration`, find
+`sessionIdUnauthenticatedUnusedLifetime` setting and set it to `600` or more.
+
+Click `Update` to save settings.
+
+### Set up Authentication Method
+
+Before switching to WWPass authentication, make sure you have opened
+an administrator session in a different browser (not in a different window,
+but a completely different browser). Do not close that browser window and
+reload it from time to time to make sure your session does not expire.
+
+Keep the backup session opened until you are sure that WWPass authentication
+works properly or you might lock yourself out of Gluu. If that happens, refer to:
+[Gluu FAQ](https://gluu.org/docs/gluu-server/operation/faq/#revert-an-authentication-method)
+
+In the Gluu Admin interface, navigate to `Configuration -> Manage Authentication -> Default Authentication Method`.
+Set both options to "wwpass".
+
+Click `Update` to save settings.
+
+### Test Your Setup
+
+Open "https://<your.gluu.url>/" in a different browser (not the one you used to
+configure Gluu).
+
+Try to sign in to your Gluu server with WWPass and bind your key using either
+email or username and password.
+
+If something does not work as expected, return to your main browser and revert
+`Configuration -> Manage Authentication -> Default Authentication Method` back
+to `auth_ldap_server` while you troubleshoot the problem.
+
+## Troubleshooting
+
+Relevant Gluu log files are:
+
+- `/opt/gluu-server/opt/gluu/jetty/oxauth/logs/oxauth.log`
+- `/opt/gluu-server/opt/gluu/jetty/oxauth/logs/oxauth_script.log`
+
+Check the files above for any errors. Errors in `wwpass` interception script
+are also displayed in Gluu web interface at 'Configuration -> Manage Custom
+scripts'. If there are any errors in the script, its name will be in red and
+the script editor will display the red button named "Show Error".
+
+Feel free to contact WWPass at support@wwpass.com if you have troubles
+integrating WWPass in your Gluu Server.
diff --git a/oxAuth/Server/integrations/wwpass/README.md b/oxAuth/Server/integrations/wwpass/README.md
new file mode 100644
index 00000000..62b46b60
--- /dev/null
+++ b/oxAuth/Server/integrations/wwpass/README.md
@@ -0,0 +1,19 @@
+# WWPass integration for Gluu
+
+[WWPass](https://wwpass.com/) replaces the traditional username and password
+login with a more advanced multi-factor authentication solution. WWPass employs
+strong cryptography and robust combination of authentication factors to deliver
+a secure and user-friendly authentication experience. WWPass authentication
+starts with a smartphone app or a hardware token as the first authentication
+factor. Then additional authentication factors such as PIN or biometrics can be
+added to verify the user identity further.
+
+## Installation
+
+To install WWPass support in Gluu server refer to [INSTALLATION.md](INSTALLATION.md).
+
+To install additional components refer to main wwpass-gluu repository at https://github.com/wwpass/gluu
+
+## Contacts
+
+Feel free to contact WWPass at support@wwpass.com if you have trouble integrating WWPass in your Gluu setup
\ No newline at end of file
diff --git a/oxAuth/Server/integrations/wwpass/pages/auth/wwpass/checkemail.xhtml b/oxAuth/Server/integrations/wwpass/pages/auth/wwpass/checkemail.xhtml
new file mode 100644
index 00000000..59f10a80
--- /dev/null
+++ b/oxAuth/Server/integrations/wwpass/pages/auth/wwpass/checkemail.xhtml
@@ -0,0 +1,163 @@
+<!DOCTYPE composition
+    PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN" "http://www.w3.org/TR/xhtml1/DTD/xhtml1-transitional.dtd">
+<ui:composition xmlns="http://www.w3.org/1999/xhtml" xmlns:f="http://xmlns.jcp.org/jsf/core"
+    xmlns:ui="http://xmlns.jcp.org/jsf/facelets" xmlns:h="http://xmlns.jcp.org/jsf/html"
+    xmlns:b="http://bootsfaces.net/ui"
+    template="/WEB-INF/incl/layout/template.xhtml">
+    <f:metadata>
+      <f:viewAction action="#{authenticator.prepareAuthenticationForStep}" />
+
+      <f:viewParam name="login_hint" value="#{loginAction.loginHint}" />
+    </f:metadata>
+
+    <ui:define name="head">
+        <meta name="viewport" content="width=device-width, initial-scale=1" />
+        <meta name="description" content="WWPass Bind page description" />
+        <style>
+.body {
+  font-family: "Roboto", "Arial", sans-serif;
+  color: #707070;
+  font-weight: 300;
+  background: #EEF2FA;
+  background-repeat: no-repeat;
+  background-position: center;
+  background-size: cover;
+  min-width: 320px;
+  min-height: 100vh;
+  display: -webkit-box;
+  display: -ms-flexbox;
+  display: flex;
+  -webkit-box-orient: vertical;
+  -webkit-box-direction: normal;
+      -ms-flex-direction: column;
+          flex-direction: column;
+  -webkit-box-pack: justify;
+      -ms-flex-pack: justify;
+          justify-content: space-between;
+  margin: 0;
+  padding: 0 !important;
+  width: auto !important; }
+
+.content {
+  width: 100%;
+  max-width: 290px;
+  margin: auto;
+  display: -webkit-box;
+  display: -ms-flexbox;
+  display: flex;
+  -webkit-box-orient: vertical;
+  -webkit-box-direction: normal;
+      -ms-flex-direction: column;
+          flex-direction: column; }
+
+.content--center {
+  text-align: center; }
+
+.content--narrow {
+  max-width: 290px; }
+
+.content__element {
+  width: 100%;
+  max-width: 690px;
+  background-color: #ffffff;
+  border: 1px solid #dddddd;
+  border-radius: 15px;
+  -webkit-margin-before: 10px;
+          margin-block-start: 10px;
+  -webkit-padding-after: 15px;
+          padding-block-end: 15px; }
+
+.content__element--first {
+  -webkit-box-ordinal-group: 0;
+      -ms-flex-order: -1;
+          order: -1; }
+
+#status {
+  display: none; }
+
+.button {
+  display: flex;
+  min-width: 200px;
+  height: 40px;
+  margin: 0 auto;
+  font-size: 14px;
+  line-height: 34px;
+  font-weight: 400;
+  text-decoration: none;
+  text-align: center;
+  border-radius: 4px;
+  -webkit-padding-start: 15px;
+          padding-inline-start: 15px;
+  -webkit-padding-end: 15px;
+          padding-inline-end: 15px;
+  display: inline-block;
+  -webkit-margin-before: 20px;
+          margin-block-start: 20px;
+  -webkit-margin-after: 30px;
+          margin-block-end: 30px;
+  cursor: pointer;
+  -webkit-box-sizing: border-box;
+          box-sizing: border-box; }
+
+.form__label {
+  display: -webkit-box;
+  display: -ms-flexbox;
+  display: flex;
+  -webkit-box-orient: vertical;
+  -webkit-box-direction: normal;
+      -ms-flex-direction: column;
+          flex-direction: column;
+  -webkit-margin-before: 5px;
+          margin-block-start: 5px;
+  font-size: 13px;
+  line-height: 18px; }
+
+.text {
+  font-size: 15px;
+  line-height: 22px;
+  max-width: 910px;
+  -webkit-margin-start: 10px;
+          margin-inline-start: 10px;
+  -webkit-margin-end: 10px;
+          margin-inline-end: 10px; }
+    </style>
+  </ui:define>
+
+    <ui:define name="pageTitle">
+        <h:outputText value="#{msgs['login.pageTitle']}" />
+    </ui:define>
+
+    <ui:define name="body">
+      <h:panelGroup>
+        <div class="content">
+          <div class="content__element content__element--first content--center  content--narrow">
+            <div id="email_check">
+              <b:form id="checkEmailForm" name="checkEmailForm" method="post" class="form from--bind" enctype="application/x-www-form-urlencoded">
+                <input type="hidden" name="loginForm" value="checkEmailForm" />
+                <p class="text">Enter a code that was sent to #{identity.getWorkingParameter('email')}</p>
+                <label for="code" class="form__label" value="">
+                  Email code
+                </label>
+                <input placeholder="Paste your email code here" name="code"
+                  required="true" autocomplete="off" value="" class="form__input">
+                <p class="text">If you don't receive the email, check that the email address is associated with an active user account.</p>
+              </input>
+
+                <h:commandButton id="loginButton" styleClass="button button--action"
+                      value="Verify email" action="#{authenticator.authenticate}" />
+              </b:form>
+            </div>
+          </div>
+        </div>
+      </h:panelGroup>
+      <script>
+        // 90% of session lifetime
+        var timeout = 0#{identity.getWorkingParameter('sessionLifetime')} * 900;
+        // Prevent session timeout while the tab is open
+        setInterval(function(){fetch(window.location.href)}, timeout);
+        /* ]]> */
+      </script>
+    </ui:define>
+
+</ui:composition>
+
diff --git a/oxAuth/Server/integrations/wwpass/pages/auth/wwpass/wwpass.xhtml b/oxAuth/Server/integrations/wwpass/pages/auth/wwpass/wwpass.xhtml
new file mode 100644
index 00000000..8330f86c
--- /dev/null
+++ b/oxAuth/Server/integrations/wwpass/pages/auth/wwpass/wwpass.xhtml
@@ -0,0 +1,285 @@
+<!DOCTYPE composition
+    PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN" "http://www.w3.org/TR/xhtml1/DTD/xhtml1-transitional.dtd">
+<ui:composition xmlns="http://www.w3.org/1999/xhtml" xmlns:f="http://xmlns.jcp.org/jsf/core"
+    xmlns:ui="http://xmlns.jcp.org/jsf/facelets" xmlns:h="http://xmlns.jcp.org/jsf/html"
+    template="/WEB-INF/incl/layout/template.xhtml">
+    <f:metadata>
+        <f:viewAction action="#{authenticator.prepareAuthenticationForStep}" if="#{not identity.loggedIn}" />
+    </f:metadata>
+
+    <ui:define name="head">
+        <meta name="viewport" content="width=device-width, initial-scale=1" />
+        <meta name="description" content="WWPass page description" />
+        <style>
+.body {
+  font-family: "Roboto", "Arial", sans-serif;
+  color: #707070;
+  font-weight: 300;
+  background: #EEF2FA;
+  background-repeat: no-repeat;
+  background-position: center;
+  background-size: cover;
+  min-width: 320px;
+  min-height: 100vh;
+  display: -webkit-box;
+  display: -ms-flexbox;
+  display: flex;
+  -webkit-box-orient: vertical;
+  -webkit-box-direction: normal;
+      -ms-flex-direction: column;
+          flex-direction: column;
+  -webkit-box-pack: justify;
+      -ms-flex-pack: justify;
+          justify-content: space-between;
+  margin: 0;
+  padding: 0 !important;
+  width: auto !important; }
+
+.content {
+  width: 100%;
+  max-width: 290px;
+  margin: auto;
+  display: -webkit-box;
+  display: -ms-flexbox;
+  display: flex;
+  -webkit-box-orient: vertical;
+  -webkit-box-direction: normal;
+      -ms-flex-direction: column;
+          flex-direction: column; }
+
+.content--center {
+  text-align: center; }
+
+.content--narrow {
+  max-width: 290px; }
+
+.content__element {
+  width: 100%;
+  max-width: 690px;
+  background-color: #ffffff;
+  border: 1px solid #dddddd;
+  border-radius: 15px;
+  -webkit-margin-before: 10px;
+          margin-block-start: 10px;
+  -webkit-padding-after: 15px;
+          padding-block-end: 15px; }
+
+.content__element--first {
+  -webkit-box-ordinal-group: 0;
+      -ms-flex-order: -1;
+          order: -1; }
+
+#status {
+  display: none; }
+
+.hr {
+  width: 100%;
+  height: 1px;
+  background-color: #dddddd;
+  -webkit-margin-after: 15px;
+          margin-block-end: 15px; }
+
+.button {
+  display: flex;
+  min-width: 200px;
+  height: 40px;
+  margin: 0 auto;
+  font-size: 14px;
+  line-height: 34px;
+  font-weight: 400;
+  text-decoration: none;
+  text-align: center;
+  border-radius: 4px;
+  -webkit-padding-start: 15px;
+          padding-inline-start: 15px;
+  -webkit-padding-end: 15px;
+          padding-inline-end: 15px;
+  display: inline-block;
+  -webkit-margin-before: 20px;
+          margin-block-start: 20px;
+  -webkit-margin-after: 30px;
+          margin-block-end: 30px;
+  cursor: pointer;
+  -webkit-box-sizing: border-box;
+          box-sizing: border-box; }
+
+.button--store {
+  min-width: 125px;
+  -webkit-margin-before: 0;
+          margin-block-start: 0;
+  -webkit-margin-after: 10px;
+          margin-block-end: 10px;
+  padding: 0;
+  background-size: 100% 100%;
+  background-repeat: no-repeat;
+  background-position: center;
+  color: #0055cc;
+  border-color: #0055cc;
+  -webkit-transition-property: all;
+  transition-property: all;
+  -webkit-transition-duration: 0.2s;
+          transition-duration: 0.2s; }
+
+.button--store:nth-of-type(2) {
+  -webkit-margin-start: 6px;
+          margin-inline-start: 6px; }
+
+.button--store:hover,
+.button--store:focus,
+.button--store:active {
+  color: #0077ff;
+  border-color: #0077ff; }
+
+.button--store-google {
+  /* <![CDATA[ */
+  background-image: url("data:image/svg+xml;utf8,<svg xmlns=\"http://www.w3.org/2000/svg\" width=\"125\" height=\"40\" viewBox=\"0 0 125 40\"><path fill=\"%2305c\" d=\"M22.94,19.49l3-3c-1.62-1-12-6.67-12.67-7-.1-.1-.29-.1-.38-.19ZM12.08,9.3a1.28,1.28,0,0,0-.47,1.14v19a1.27,1.27,0,0,0,.47,1.14L22.46,19.87ZM22.94,20.44l-10,10.19c.1,0,.19-.1.29-.1.66-.38,7.61-4.29,12.57-7Zm7.81-1.34c-.29-.19-2-1.14-4.19-2.38L23.42,20l3,3.14c2.38-1.33,4.1-2.29,4.29-2.38.48-.28,1.05-1,0-1.62Zm14.16-7.74a2.43,2.43,0,0,1-.63,1.8,2.78,2.78,0,0,1-3.92,0,2.6,2.6,0,0,1-.8-2,2.75,2.75,0,0,1,2.76-2.79,4.89,4.89,0,0,1,1.07.18,2,2,0,0,1,.8.63l-.45.45A1.63,1.63,0,0,0,42.32,9a1.77,1.77,0,0,0-1.43.63,1.85,1.85,0,0,0-.63,1.53,1.86,1.86,0,0,0,.64,1.53,2.29,2.29,0,0,0,1.42.63,2,2,0,0,0,1.52-.63,1.5,1.5,0,0,0,.45-1.08h-2v-.72h2.59ZM49,9.11H46.61v1.71h2.23v.63H46.61v1.71H49v.63H45.9V8.39H49ZM52,13.79h-.71V9.11H49.73V8.48H53.4v.63H51.87v4.68Zm4.11,0V8.39h.71v5.4Zm3.75,0h-.71V9.11H57.59V8.48h3.66v.63H59.73v4.68Zm8.48-.72a2.79,2.79,0,0,1-3.93,0,2.68,2.68,0,0,1-.8-2,2.68,2.68,0,0,1,.8-2,2.79,2.79,0,0,1,3.93,0,2.68,2.68,0,0,1,.8,2,2.68,2.68,0,0,1-.8,2Zm-3.39-.45a2.09,2.09,0,0,0,1.43.63,1.79,1.79,0,0,0,1.43-.63,2.2,2.2,0,0,0,.63-1.53,1.85,1.85,0,0,0-.63-1.53,2.09,2.09,0,0,0-1.43-.63,1.79,1.79,0,0,0-1.43.63,2.19,2.19,0,0,0,0,3.06Zm5.18,1.17V8.39h.8l2.59,4.14h0v-4h.72v5.4h-.72L70.71,9.47h0v4.32Zm-6.61,7.83a3.78,3.78,0,1,0,3.84,3.78,3.86,3.86,0,0,0-3.84-3.78Zm0,6.12a2.22,2.22,0,0,1-2.14-2.31v0a2.23,2.23,0,0,1,2.11-2.34h0a2.18,2.18,0,0,1,2.15,2.2.71.71,0,0,1,0,.14,2.28,2.28,0,0,1-2.14,2.34Zm-8.39-6.12a3.78,3.78,0,1,0,.12,0Zm0,6.12a2.23,2.23,0,0,1-2.15-2.31v0a2.22,2.22,0,0,1,2.1-2.34h0a2.18,2.18,0,0,1,2.15,2.2.71.71,0,0,1,0,.14,2.23,2.23,0,0,1-2.11,2.34Zm-9.91-4.95v1.62H49a3.7,3.7,0,0,1-.9,2.07,3.9,3.9,0,0,1-2.94,1.17A4.18,4.18,0,0,1,41,23.5a1,1,0,0,1,0-.17A4.22,4.22,0,0,1,45.11,19h.07a4.4,4.4,0,0,1,2.94,1.17L49.28,19a5.67,5.67,0,0,0-4-1.62,5.94,5.94,0,1,0-.09,11.88,5.22,5.22,0,0,0,5.53-5.4,3.3,3.3,0,0,0-.09-1H45.18Zm40.53,1.26a3.53,3.53,0,0,0-6.87,1.35,3.68,3.68,0,0,0,3.57,3.78h.18a3.83,3.83,0,0,0,3.21-1.71l-1.34-.9a2.15,2.15,0,0,1-1.87,1.08,2,2,0,0,1-1.88-1.17l5.09-2.07Zm-5.18,1.26a2.18,2.18,0,0,1,2-2.25,1.55,1.55,0,0,1,1.42.81ZM76.43,29h1.7V17.84h-1.7Zm-2.77-6.57h0a2.9,2.9,0,0,0-2-.81A3.83,3.83,0,0,0,68,25.4a3.77,3.77,0,0,0,3.66,3.78,2.27,2.27,0,0,0,2-.9h.09v.54a2,2,0,0,1-3.93.9l-1.43.63a3.7,3.7,0,0,0,3.4,2.25c2,0,3.66-1.17,3.66-4V21.89H73.75v.54Zm-1.88,5.31a2.2,2.2,0,0,1-2.14-2.25,2.23,2.23,0,0,1,2.11-2.34h0a2.14,2.14,0,0,1,2.06,2.25v.09A2.25,2.25,0,0,1,71.78,27.74Zm21.79-9.9h-4V29h1.7V24.77h2.32A3.47,3.47,0,1,0,94,17.84a2.41,2.41,0,0,0-.38,0Zm.09,5.4H91.25V19.37h2.41a1.9,1.9,0,0,1,2,1.86v0A2,2,0,0,1,93.66,23.24Zm10.27-1.62a3,3,0,0,0-3,1.71l1.52.63a1.58,1.58,0,0,1,1.52-.81,1.62,1.62,0,0,1,1.78,1.44v.09a3.57,3.57,0,0,0-1.78-.45c-1.61,0-3.22.9-3.22,2.52a2.57,2.57,0,0,0,2.67,2.44h.1a2.37,2.37,0,0,0,2.14-1.08h.09V29h1.61V24.68C107.32,22.7,105.9,21.62,103.93,21.62Zm-.18,6.12c-.54,0-1.34-.27-1.34-1,0-.9,1-1.17,1.79-1.17a3.46,3.46,0,0,1,1.51.36,2,2,0,0,1-2,1.8Zm9.46-5.85-1.87,4.86h-.09l-2-4.86H107.5l2.94,6.75-1.7,3.78h1.79l4.55-10.53ZM98.21,29h1.7V17.84h-1.7Z\"/></svg>");
+  /* ]]> */
+  margin-left: 0;
+  font-size: 0; }
+
+.button--store-google:hover,
+.button--store-google:focus,
+.button--store-google:active {
+  /* <![CDATA[ */
+  background-image: url('data:image/svg+xml;utf8,<svg xmlns="http://www.w3.org/2000/svg" width="125" height="40" viewBox="0 0 125 40"><path fill="%2307f" d="M22.94,19.49l3-3c-1.62-1-12-6.67-12.67-7-.1-.1-.29-.1-.38-.19ZM12.08,9.3a1.28,1.28,0,0,0-.47,1.14v19a1.27,1.27,0,0,0,.47,1.14L22.46,19.87ZM22.94,20.44l-10,10.19c.1,0,.19-.1.29-.1.66-.38,7.61-4.29,12.57-7Zm7.81-1.34c-.29-.19-2-1.14-4.19-2.38L23.42,20l3,3.14c2.38-1.33,4.1-2.29,4.29-2.38.48-.28,1.05-1,0-1.62Zm14.16-7.74a2.43,2.43,0,0,1-.63,1.8,2.78,2.78,0,0,1-3.92,0,2.6,2.6,0,0,1-.8-2,2.75,2.75,0,0,1,2.76-2.79,4.89,4.89,0,0,1,1.07.18,2,2,0,0,1,.8.63l-.45.45A1.63,1.63,0,0,0,42.32,9a1.77,1.77,0,0,0-1.43.63,1.85,1.85,0,0,0-.63,1.53,1.86,1.86,0,0,0,.64,1.53,2.29,2.29,0,0,0,1.42.63,2,2,0,0,0,1.52-.63,1.5,1.5,0,0,0,.45-1.08h-2v-.72h2.59ZM49,9.11H46.61v1.71h2.23v.63H46.61v1.71H49v.63H45.9V8.39H49ZM52,13.79h-.71V9.11H49.73V8.48H53.4v.63H51.87v4.68Zm4.11,0V8.39h.71v5.4Zm3.75,0h-.71V9.11H57.59V8.48h3.66v.63H59.73v4.68Zm8.48-.72a2.79,2.79,0,0,1-3.93,0,2.68,2.68,0,0,1-.8-2,2.68,2.68,0,0,1,.8-2,2.79,2.79,0,0,1,3.93,0,2.68,2.68,0,0,1,.8,2,2.68,2.68,0,0,1-.8,2Zm-3.39-.45a2.09,2.09,0,0,0,1.43.63,1.79,1.79,0,0,0,1.43-.63,2.2,2.2,0,0,0,.63-1.53,1.85,1.85,0,0,0-.63-1.53,2.09,2.09,0,0,0-1.43-.63,1.79,1.79,0,0,0-1.43.63,2.19,2.19,0,0,0,0,3.06Zm5.18,1.17V8.39h.8l2.59,4.14h0v-4h.72v5.4h-.72L70.71,9.47h0v4.32Zm-6.61,7.83a3.78,3.78,0,1,0,3.84,3.78,3.86,3.86,0,0,0-3.84-3.78Zm0,6.12a2.22,2.22,0,0,1-2.14-2.31v0a2.23,2.23,0,0,1,2.11-2.34h0a2.18,2.18,0,0,1,2.15,2.2.71.71,0,0,1,0,.14,2.28,2.28,0,0,1-2.14,2.34Zm-8.39-6.12a3.78,3.78,0,1,0,.12,0Zm0,6.12a2.23,2.23,0,0,1-2.15-2.31v0a2.22,2.22,0,0,1,2.1-2.34h0a2.18,2.18,0,0,1,2.15,2.2.71.71,0,0,1,0,.14,2.23,2.23,0,0,1-2.11,2.34Zm-9.91-4.95v1.62H49a3.7,3.7,0,0,1-.9,2.07,3.9,3.9,0,0,1-2.94,1.17A4.18,4.18,0,0,1,41,23.5a1,1,0,0,1,0-.17A4.22,4.22,0,0,1,45.11,19h.07a4.4,4.4,0,0,1,2.94,1.17L49.28,19a5.67,5.67,0,0,0-4-1.62,5.94,5.94,0,1,0-.09,11.88,5.22,5.22,0,0,0,5.53-5.4,3.3,3.3,0,0,0-.09-1H45.18Zm40.53,1.26a3.53,3.53,0,0,0-6.87,1.35,3.68,3.68,0,0,0,3.57,3.78h.18a3.83,3.83,0,0,0,3.21-1.71l-1.34-.9a2.15,2.15,0,0,1-1.87,1.08,2,2,0,0,1-1.88-1.17l5.09-2.07Zm-5.18,1.26a2.18,2.18,0,0,1,2-2.25,1.55,1.55,0,0,1,1.42.81ZM76.43,29h1.7V17.84h-1.7Zm-2.77-6.57h0a2.9,2.9,0,0,0-2-.81A3.83,3.83,0,0,0,68,25.4a3.77,3.77,0,0,0,3.66,3.78,2.27,2.27,0,0,0,2-.9h.09v.54a2,2,0,0,1-3.93.9l-1.43.63a3.7,3.7,0,0,0,3.4,2.25c2,0,3.66-1.17,3.66-4V21.89H73.75v.54Zm-1.88,5.31a2.2,2.2,0,0,1-2.14-2.25,2.23,2.23,0,0,1,2.11-2.34h0a2.14,2.14,0,0,1,2.06,2.25v.09A2.25,2.25,0,0,1,71.78,27.74Zm21.79-9.9h-4V29h1.7V24.77h2.32A3.47,3.47,0,1,0,94,17.84a2.41,2.41,0,0,0-.38,0Zm.09,5.4H91.25V19.37h2.41a1.9,1.9,0,0,1,2,1.86v0A2,2,0,0,1,93.66,23.24Zm10.27-1.62a3,3,0,0,0-3,1.71l1.52.63a1.58,1.58,0,0,1,1.52-.81,1.62,1.62,0,0,1,1.78,1.44v.09a3.57,3.57,0,0,0-1.78-.45c-1.61,0-3.22.9-3.22,2.52a2.57,2.57,0,0,0,2.67,2.44h.1a2.37,2.37,0,0,0,2.14-1.08h.09V29h1.61V24.68C107.32,22.7,105.9,21.62,103.93,21.62Zm-.18,6.12c-.54,0-1.34-.27-1.34-1,0-.9,1-1.17,1.79-1.17a3.46,3.46,0,0,1,1.51.36,2,2,0,0,1-2,1.8Zm9.46-5.85-1.87,4.86h-.09l-2-4.86H107.5l2.94,6.75-1.7,3.78h1.79l4.55-10.53ZM98.21,29h1.7V17.84h-1.7Z"/></svg>');
+  /* ]]> */ }
+
+.button--store-ios {
+  /* <![CDATA[ */
+  background-image: url('data:image/svg+xml;utf8,<svg xmlns="http://www.w3.org/2000/svg" width="125" height="40" viewBox="0 0 125 40"><path fill="%2305c" d="M28.87,19.8a5.21,5.21,0,0,1,2.47-4.37,5.31,5.31,0,0,0-4.18-2.28c-1.75-.18-3.46,1.06-4.35,1.06s-2.29-1-3.78-1a5.57,5.57,0,0,0-4.68,2.88c-2,3.53-.51,8.72,1.43,11.57,1,1.4,2.1,3,3.58,2.9s2-.93,3.75-.93,2.24.93,3.75.9,2.54-1.4,3.48-2.82a11.75,11.75,0,0,0,1.59-3.26,5,5,0,0,1-3.06-4.64ZM26,11.28A5.18,5.18,0,0,0,27.18,7.6a5.13,5.13,0,0,0-3.35,1.75,4.83,4.83,0,0,0-1.2,3.54A4.25,4.25,0,0,0,26,11.28ZM49.87,30.35h-2l-1.11-3.51H42.87l-1.06,3.51h-2l3.82-12H46l3.84,12Zm-3.47-5-1-3.13q-.16-.48-.6-2.25h0c-.18.75-.37,1.5-.56,2.25l-1,3.13Zm13.31.57a5,5,0,0,1-1.18,3.48,3.46,3.46,0,0,1-2.63,1.14,2.62,2.62,0,0,1-2.43-1.23h0v4.55h-1.9V24.56c0-.92,0-1.87-.07-2.84h1.67l.1,1.37h0a3.37,3.37,0,0,1,4.66-1,3.24,3.24,0,0,1,.76.67,4.8,4.8,0,0,1,1,3.18ZM57.77,26a3.58,3.58,0,0,0-.57-2.08,1.92,1.92,0,0,0-1.65-.85,2,2,0,0,0-1.28.47,2.17,2.17,0,0,0-.75,1.23,3,3,0,0,0-.09.59V26.8A2.32,2.32,0,0,0,54,28.39a1.9,1.9,0,0,0,1.49.65,2,2,0,0,0,1.68-.84A3.79,3.79,0,0,0,57.77,26Zm11.79-.07a4.91,4.91,0,0,1-1.18,3.48,3.46,3.46,0,0,1-2.63,1.14,2.61,2.61,0,0,1-2.43-1.23h0v4.55h-1.9V24.56c0-.92,0-1.87-.08-2.84H63l.1,1.37h0a3.37,3.37,0,0,1,4.66-1,3.45,3.45,0,0,1,.76.67,4.74,4.74,0,0,1,1,3.18ZM67.62,26a3.64,3.64,0,0,0-.56-2.08,1.93,1.93,0,0,0-1.66-.85,2,2,0,0,0-1.28.47,2.23,2.23,0,0,0-.75,1.23,2.39,2.39,0,0,0-.08.59V26.8a2.28,2.28,0,0,0,.57,1.59,1.88,1.88,0,0,0,1.49.65A2,2,0,0,0,67,28.2a3.65,3.65,0,0,0,.6-2.2Zm13,1a3.19,3.19,0,0,1-1.06,2.49,4.66,4.66,0,0,1-3.23,1.05,5.62,5.62,0,0,1-3.08-.75l.44-1.6A5.14,5.14,0,0,0,76.4,29a2.54,2.54,0,0,0,1.68-.49,1.6,1.6,0,0,0,.6-1.3,1.67,1.67,0,0,0-.5-1.23A4.45,4.45,0,0,0,76.54,25q-3.12-1.17-3.12-3.43a3.06,3.06,0,0,1,1.1-2.42,4.26,4.26,0,0,1,2.91-.95,5.74,5.74,0,0,1,2.7.57l-.48,1.56a4.73,4.73,0,0,0-2.27-.55,2.33,2.33,0,0,0-1.57.5,1.45,1.45,0,0,0-.48,1.09,1.49,1.49,0,0,0,.55,1.17,6,6,0,0,0,1.73.92,5.92,5.92,0,0,1,2.25,1.46A3.1,3.1,0,0,1,80.59,27Zm6.29-3.84h-2.1v4.19c0,1.07.37,1.6,1.11,1.6a3,3,0,0,0,.85-.09l0,1.46a4.35,4.35,0,0,1-1.48.21,2.28,2.28,0,0,1-1.76-.69,3.41,3.41,0,0,1-.63-2.33V23.15H81.66V21.71h1.25V20.13l1.87-.57v2.15h2.1v1.45ZM96.34,26a4.77,4.77,0,0,1-1.13,3.27,4,4,0,0,1-3.14,1.31,3.8,3.8,0,0,1-3-1.26A4.61,4.61,0,0,1,88,26.11a4.73,4.73,0,0,1,1.16-3.29,4,4,0,0,1,3.11-1.28,3.92,3.92,0,0,1,3,1.26A4.53,4.53,0,0,1,96.34,26Zm-2,.06A3.89,3.89,0,0,0,93.85,24a1.87,1.87,0,0,0-1.7-1,1.9,1.9,0,0,0-1.75,1,3.93,3.93,0,0,0-.51,2.09,3.85,3.85,0,0,0,.51,2,2,2,0,0,0,2.62.82,2,2,0,0,0,.82-.83A4,4,0,0,0,94.37,26Zm8.16-2.63a3,3,0,0,0-.6,0,1.78,1.78,0,0,0-1.55.76,2.88,2.88,0,0,0-.48,1.71v4.53H98l0-5.92c0-1,0-1.9-.07-2.72H99.6l.07,1.65h.06a3,3,0,0,1,1-1.36,2.3,2.3,0,0,1,1.38-.47,2.49,2.49,0,0,1,.47,0ZM111,25.62a4.26,4.26,0,0,1-.07.87h-5.71a2.52,2.52,0,0,0,.83,2,2.8,2.8,0,0,0,1.87.6,6.29,6.29,0,0,0,2.31-.41l.3,1.33a6.9,6.9,0,0,1-2.87.53,4.09,4.09,0,0,1-3.13-1.18,4.34,4.34,0,0,1-1.14-3.16,5,5,0,0,1,1.06-3.25,3.64,3.64,0,0,1,3-1.39,3.19,3.19,0,0,1,2.8,1.39,4.76,4.76,0,0,1,.75,2.72Zm-1.81-.5a2.69,2.69,0,0,0-.37-1.47,1.66,1.66,0,0,0-1.52-.8,1.81,1.81,0,0,0-1.52.78,2.86,2.86,0,0,0-.56,1.49ZM45.77,11a3,3,0,0,1-1,2.39,3.68,3.68,0,0,1-2.48.74A10.39,10.39,0,0,1,41,14.07V8.28a10.81,10.81,0,0,1,1.61-.12,3.46,3.46,0,0,1,2.31.67A2.73,2.73,0,0,1,45.77,11Zm-1,0a2.2,2.2,0,0,0-.54-1.58,2.13,2.13,0,0,0-1.58-.55A4.77,4.77,0,0,0,41.9,9v4.4a3.39,3.39,0,0,0,.64,0,2.19,2.19,0,0,0,1.65-.6A2.45,2.45,0,0,0,44.78,11Zm6.22.9a2.36,2.36,0,0,1-.56,1.61,2,2,0,0,1-1.54.65,1.93,1.93,0,0,1-1.48-.62A2.25,2.25,0,0,1,46.88,12a2.27,2.27,0,0,1,.56-1.61A2,2,0,0,1,49,9.76a2,2,0,0,1,1.49.62A2.26,2.26,0,0,1,51,11.93Zm-1,0a1.93,1.93,0,0,0-.25-1,.92.92,0,0,0-.84-.51.94.94,0,0,0-.86.51,1.91,1.91,0,0,0-.25,1,1.9,1.9,0,0,0,.25,1,1,1,0,0,0,1.69,0A1.92,1.92,0,0,0,50,12Zm8-2.12-1.32,4.25h-.85l-.55-1.85c-.13-.45-.25-.9-.34-1.37h0a10.16,10.16,0,0,1-.34,1.37L54,14.09h-.87L51.91,9.84h1l.47,2c.12.48.21.93.29,1.36h0A13.25,13.25,0,0,1,54,11.87l.6-2h.77l.57,2a13.39,13.39,0,0,1,.33,1.4h0a13.37,13.37,0,0,1,.29-1.4l.51-2Zm4.85,4.25h-.93V11.66c0-.75-.29-1.13-.85-1.13a.89.89,0,0,0-.68.31,1.14,1.14,0,0,0-.26.73v2.52h-.93v-3c0-.37,0-.78,0-1.22H60l0,.67h0a1.33,1.33,0,0,1,.49-.51,1.5,1.5,0,0,1,.85-.24,1.31,1.31,0,0,1,1,.38,1.87,1.87,0,0,1,.49,1.41v2.54Zm2.58,0h-.93V7.9h.93v6.19ZM71,11.93a2.31,2.31,0,0,1-.55,1.61,2,2,0,0,1-1.54.64,1.85,1.85,0,0,1-1.48-.62A2.28,2.28,0,0,1,66.83,12a2.3,2.3,0,0,1,.56-1.61,2.14,2.14,0,0,1,3,0A2.26,2.26,0,0,1,71,11.93Zm-1,0a2,2,0,0,0-.25-1A1,1,0,0,0,68,11a2,2,0,0,0-.25,1A1.93,1.93,0,0,0,68,13a.94.94,0,0,0,.85.51.93.93,0,0,0,.84-.52A1.88,1.88,0,0,0,70,12Zm5.5,2.13h-.84l-.07-.49h0a1.42,1.42,0,0,1-1.23.58,1.24,1.24,0,0,1-1-.38,1.19,1.19,0,0,1-.33-.86,1.33,1.33,0,0,1,.64-1.19,3.4,3.4,0,0,1,1.82-.4v-.08c0-.56-.29-.84-.88-.84a1.89,1.89,0,0,0-1.1.32l-.19-.62a2.64,2.64,0,0,1,1.45-.37c1.1,0,1.65.59,1.65,1.76v1.56a5.71,5.71,0,0,0,.06,1Zm-1-1.46V12c-1,0-1.55.26-1.55.85a.65.65,0,0,0,.18.5.71.71,0,0,0,.46.17,1,1,0,0,0,.57-.2.82.82,0,0,0,.34-.67Zm6.29,1.46H80l0-.68h0a1.39,1.39,0,0,1-1.35.77,1.57,1.57,0,0,1-1.27-.6,2.36,2.36,0,0,1-.5-1.56,2.49,2.49,0,0,1,.55-1.67,1.66,1.66,0,0,1,1.3-.59,1.24,1.24,0,0,1,1.18.58h0V7.9h.94v5c0,.42,0,.8,0,1.15Zm-1-1.79v-.71a1.08,1.08,0,0,0-.37-.87.93.93,0,0,0-.62-.23,1,1,0,0,0-.82.42,1.74,1.74,0,0,0-.3,1.08A1.68,1.68,0,0,0,78,13a1,1,0,0,0,.82.42,1,1,0,0,0,.74-.35,1.18,1.18,0,0,0,.27-.78Zm9-.37a2.36,2.36,0,0,1-.55,1.61,2,2,0,0,1-1.55.64,1.83,1.83,0,0,1-1.47-.62A2.23,2.23,0,0,1,84.68,12a2.26,2.26,0,0,1,.57-1.61,2.12,2.12,0,0,1,3,0,2.26,2.26,0,0,1,.54,1.55Zm-1,0a1.93,1.93,0,0,0-.25-1,.92.92,0,0,0-.84-.51,1,1,0,0,0-.86.51,2.19,2.19,0,0,0,0,2,1,1,0,0,0,1.29.39,1,1,0,0,0,.4-.4A1.92,1.92,0,0,0,87.83,12Zm6,2.13h-.94V11.66c0-.75-.28-1.12-.85-1.12a.82.82,0,0,0-.67.3,1.11,1.11,0,0,0-.26.73v2.52h-.94v-3c0-.37,0-.78,0-1.22H91l0,.67h0a1.31,1.31,0,0,1,.48-.51,1.52,1.52,0,0,1,.85-.24,1.32,1.32,0,0,1,1,.38,1.87,1.87,0,0,1,.49,1.41v2.54Zm6.3-3.54h-1v2.06c0,.53.18.79.55.79a1.84,1.84,0,0,0,.41,0l0,.71a2,2,0,0,1-.73.11,1.11,1.11,0,0,1-.86-.34,1.64,1.64,0,0,1-.32-1.15V10.55h-.61V9.84h.61V9.07l.92-.28V9.84h1v.71Zm5,3.54h-.93V11.68c0-.76-.29-1.14-.85-1.14a.88.88,0,0,0-.89.66,1.27,1.27,0,0,0,0,.34v2.55h-.93V7.9h.93v2.56h0a1.41,1.41,0,0,1,1.27-.7,1.29,1.29,0,0,1,1,.38,2,2,0,0,1,.47,1.42v2.53Zm5.11-2.32a2,2,0,0,1,0,.42h-2.81a1.23,1.23,0,0,0,.41,1,1.34,1.34,0,0,0,.92.3,2.9,2.9,0,0,0,1.13-.2l.15.66a3.6,3.6,0,0,1-1.41.26,2,2,0,0,1-1.54-.58,2.12,2.12,0,0,1-.56-1.56,2.46,2.46,0,0,1,.52-1.6,1.78,1.78,0,0,1,1.47-.68,1.57,1.57,0,0,1,1.38.68,2.29,2.29,0,0,1,.37,1.34Zm-.89-.25a1.31,1.31,0,0,0-.18-.72.83.83,0,0,0-.74-.4.9.9,0,0,0-.75.39,1.4,1.4,0,0,0-.28.73Z"/></svg>');
+  /* ]]> */
+  margin-right: 0;
+  font-size: 0; }
+
+.button--store-ios:hover,
+.button--store-ios:focus,
+.button--store-ios:active {
+  /* <![CDATA[ */
+  background-image: url('data:image/svg+xml;utf8,<svg xmlns="http://www.w3.org/2000/svg" width="125" height="40" viewBox="0 0 125 40"><path fill="%2307f" d="M28.87,19.8a5.21,5.21,0,0,1,2.47-4.37,5.31,5.31,0,0,0-4.18-2.28c-1.75-.18-3.46,1.06-4.35,1.06s-2.29-1-3.78-1a5.57,5.57,0,0,0-4.68,2.88c-2,3.53-.51,8.72,1.43,11.57,1,1.4,2.1,3,3.58,2.9s2-.93,3.75-.93,2.24.93,3.75.9,2.54-1.4,3.48-2.82a11.75,11.75,0,0,0,1.59-3.26,5,5,0,0,1-3.06-4.64ZM26,11.28A5.18,5.18,0,0,0,27.18,7.6a5.13,5.13,0,0,0-3.35,1.75,4.83,4.83,0,0,0-1.2,3.54A4.25,4.25,0,0,0,26,11.28ZM49.87,30.35h-2l-1.11-3.51H42.87l-1.06,3.51h-2l3.82-12H46l3.84,12Zm-3.47-5-1-3.13q-.16-.48-.6-2.25h0c-.18.75-.37,1.5-.56,2.25l-1,3.13Zm13.31.57a5,5,0,0,1-1.18,3.48,3.46,3.46,0,0,1-2.63,1.14,2.62,2.62,0,0,1-2.43-1.23h0v4.55h-1.9V24.56c0-.92,0-1.87-.07-2.84h1.67l.1,1.37h0a3.37,3.37,0,0,1,4.66-1,3.24,3.24,0,0,1,.76.67,4.8,4.8,0,0,1,1,3.18ZM57.77,26a3.58,3.58,0,0,0-.57-2.08,1.92,1.92,0,0,0-1.65-.85,2,2,0,0,0-1.28.47,2.17,2.17,0,0,0-.75,1.23,3,3,0,0,0-.09.59V26.8A2.32,2.32,0,0,0,54,28.39a1.9,1.9,0,0,0,1.49.65,2,2,0,0,0,1.68-.84A3.79,3.79,0,0,0,57.77,26Zm11.79-.07a4.91,4.91,0,0,1-1.18,3.48,3.46,3.46,0,0,1-2.63,1.14,2.61,2.61,0,0,1-2.43-1.23h0v4.55h-1.9V24.56c0-.92,0-1.87-.08-2.84H63l.1,1.37h0a3.37,3.37,0,0,1,4.66-1,3.45,3.45,0,0,1,.76.67,4.74,4.74,0,0,1,1,3.18ZM67.62,26a3.64,3.64,0,0,0-.56-2.08,1.93,1.93,0,0,0-1.66-.85,2,2,0,0,0-1.28.47,2.23,2.23,0,0,0-.75,1.23,2.39,2.39,0,0,0-.08.59V26.8a2.28,2.28,0,0,0,.57,1.59,1.88,1.88,0,0,0,1.49.65A2,2,0,0,0,67,28.2a3.65,3.65,0,0,0,.6-2.2Zm13,1a3.19,3.19,0,0,1-1.06,2.49,4.66,4.66,0,0,1-3.23,1.05,5.62,5.62,0,0,1-3.08-.75l.44-1.6A5.14,5.14,0,0,0,76.4,29a2.54,2.54,0,0,0,1.68-.49,1.6,1.6,0,0,0,.6-1.3,1.67,1.67,0,0,0-.5-1.23A4.45,4.45,0,0,0,76.54,25q-3.12-1.17-3.12-3.43a3.06,3.06,0,0,1,1.1-2.42,4.26,4.26,0,0,1,2.91-.95,5.74,5.74,0,0,1,2.7.57l-.48,1.56a4.73,4.73,0,0,0-2.27-.55,2.33,2.33,0,0,0-1.57.5,1.45,1.45,0,0,0-.48,1.09,1.49,1.49,0,0,0,.55,1.17,6,6,0,0,0,1.73.92,5.92,5.92,0,0,1,2.25,1.46A3.1,3.1,0,0,1,80.59,27Zm6.29-3.84h-2.1v4.19c0,1.07.37,1.6,1.11,1.6a3,3,0,0,0,.85-.09l0,1.46a4.35,4.35,0,0,1-1.48.21,2.28,2.28,0,0,1-1.76-.69,3.41,3.41,0,0,1-.63-2.33V23.15H81.66V21.71h1.25V20.13l1.87-.57v2.15h2.1v1.45ZM96.34,26a4.77,4.77,0,0,1-1.13,3.27,4,4,0,0,1-3.14,1.31,3.8,3.8,0,0,1-3-1.26A4.61,4.61,0,0,1,88,26.11a4.73,4.73,0,0,1,1.16-3.29,4,4,0,0,1,3.11-1.28,3.92,3.92,0,0,1,3,1.26A4.53,4.53,0,0,1,96.34,26Zm-2,.06A3.89,3.89,0,0,0,93.85,24a1.87,1.87,0,0,0-1.7-1,1.9,1.9,0,0,0-1.75,1,3.93,3.93,0,0,0-.51,2.09,3.85,3.85,0,0,0,.51,2,2,2,0,0,0,2.62.82,2,2,0,0,0,.82-.83A4,4,0,0,0,94.37,26Zm8.16-2.63a3,3,0,0,0-.6,0,1.78,1.78,0,0,0-1.55.76,2.88,2.88,0,0,0-.48,1.71v4.53H98l0-5.92c0-1,0-1.9-.07-2.72H99.6l.07,1.65h.06a3,3,0,0,1,1-1.36,2.3,2.3,0,0,1,1.38-.47,2.49,2.49,0,0,1,.47,0ZM111,25.62a4.26,4.26,0,0,1-.07.87h-5.71a2.52,2.52,0,0,0,.83,2,2.8,2.8,0,0,0,1.87.6,6.29,6.29,0,0,0,2.31-.41l.3,1.33a6.9,6.9,0,0,1-2.87.53,4.09,4.09,0,0,1-3.13-1.18,4.34,4.34,0,0,1-1.14-3.16,5,5,0,0,1,1.06-3.25,3.64,3.64,0,0,1,3-1.39,3.19,3.19,0,0,1,2.8,1.39,4.76,4.76,0,0,1,.75,2.72Zm-1.81-.5a2.69,2.69,0,0,0-.37-1.47,1.66,1.66,0,0,0-1.52-.8,1.81,1.81,0,0,0-1.52.78,2.86,2.86,0,0,0-.56,1.49ZM45.77,11a3,3,0,0,1-1,2.39,3.68,3.68,0,0,1-2.48.74A10.39,10.39,0,0,1,41,14.07V8.28a10.81,10.81,0,0,1,1.61-.12,3.46,3.46,0,0,1,2.31.67A2.73,2.73,0,0,1,45.77,11Zm-1,0a2.2,2.2,0,0,0-.54-1.58,2.13,2.13,0,0,0-1.58-.55A4.77,4.77,0,0,0,41.9,9v4.4a3.39,3.39,0,0,0,.64,0,2.19,2.19,0,0,0,1.65-.6A2.45,2.45,0,0,0,44.78,11Zm6.22.9a2.36,2.36,0,0,1-.56,1.61,2,2,0,0,1-1.54.65,1.93,1.93,0,0,1-1.48-.62A2.25,2.25,0,0,1,46.88,12a2.27,2.27,0,0,1,.56-1.61A2,2,0,0,1,49,9.76a2,2,0,0,1,1.49.62A2.26,2.26,0,0,1,51,11.93Zm-1,0a1.93,1.93,0,0,0-.25-1,.92.92,0,0,0-.84-.51.94.94,0,0,0-.86.51,1.91,1.91,0,0,0-.25,1,1.9,1.9,0,0,0,.25,1,1,1,0,0,0,1.69,0A1.92,1.92,0,0,0,50,12Zm8-2.12-1.32,4.25h-.85l-.55-1.85c-.13-.45-.25-.9-.34-1.37h0a10.16,10.16,0,0,1-.34,1.37L54,14.09h-.87L51.91,9.84h1l.47,2c.12.48.21.93.29,1.36h0A13.25,13.25,0,0,1,54,11.87l.6-2h.77l.57,2a13.39,13.39,0,0,1,.33,1.4h0a13.37,13.37,0,0,1,.29-1.4l.51-2Zm4.85,4.25h-.93V11.66c0-.75-.29-1.13-.85-1.13a.89.89,0,0,0-.68.31,1.14,1.14,0,0,0-.26.73v2.52h-.93v-3c0-.37,0-.78,0-1.22H60l0,.67h0a1.33,1.33,0,0,1,.49-.51,1.5,1.5,0,0,1,.85-.24,1.31,1.31,0,0,1,1,.38,1.87,1.87,0,0,1,.49,1.41v2.54Zm2.58,0h-.93V7.9h.93v6.19ZM71,11.93a2.31,2.31,0,0,1-.55,1.61,2,2,0,0,1-1.54.64,1.85,1.85,0,0,1-1.48-.62A2.28,2.28,0,0,1,66.83,12a2.3,2.3,0,0,1,.56-1.61,2.14,2.14,0,0,1,3,0A2.26,2.26,0,0,1,71,11.93Zm-1,0a2,2,0,0,0-.25-1A1,1,0,0,0,68,11a2,2,0,0,0-.25,1A1.93,1.93,0,0,0,68,13a.94.94,0,0,0,.85.51.93.93,0,0,0,.84-.52A1.88,1.88,0,0,0,70,12Zm5.5,2.13h-.84l-.07-.49h0a1.42,1.42,0,0,1-1.23.58,1.24,1.24,0,0,1-1-.38,1.19,1.19,0,0,1-.33-.86,1.33,1.33,0,0,1,.64-1.19,3.4,3.4,0,0,1,1.82-.4v-.08c0-.56-.29-.84-.88-.84a1.89,1.89,0,0,0-1.1.32l-.19-.62a2.64,2.64,0,0,1,1.45-.37c1.1,0,1.65.59,1.65,1.76v1.56a5.71,5.71,0,0,0,.06,1Zm-1-1.46V12c-1,0-1.55.26-1.55.85a.65.65,0,0,0,.18.5.71.71,0,0,0,.46.17,1,1,0,0,0,.57-.2.82.82,0,0,0,.34-.67Zm6.29,1.46H80l0-.68h0a1.39,1.39,0,0,1-1.35.77,1.57,1.57,0,0,1-1.27-.6,2.36,2.36,0,0,1-.5-1.56,2.49,2.49,0,0,1,.55-1.67,1.66,1.66,0,0,1,1.3-.59,1.24,1.24,0,0,1,1.18.58h0V7.9h.94v5c0,.42,0,.8,0,1.15Zm-1-1.79v-.71a1.08,1.08,0,0,0-.37-.87.93.93,0,0,0-.62-.23,1,1,0,0,0-.82.42,1.74,1.74,0,0,0-.3,1.08A1.68,1.68,0,0,0,78,13a1,1,0,0,0,.82.42,1,1,0,0,0,.74-.35,1.18,1.18,0,0,0,.27-.78Zm9-.37a2.36,2.36,0,0,1-.55,1.61,2,2,0,0,1-1.55.64,1.83,1.83,0,0,1-1.47-.62A2.23,2.23,0,0,1,84.68,12a2.26,2.26,0,0,1,.57-1.61,2.12,2.12,0,0,1,3,0,2.26,2.26,0,0,1,.54,1.55Zm-1,0a1.93,1.93,0,0,0-.25-1,.92.92,0,0,0-.84-.51,1,1,0,0,0-.86.51,2.19,2.19,0,0,0,0,2,1,1,0,0,0,1.29.39,1,1,0,0,0,.4-.4A1.92,1.92,0,0,0,87.83,12Zm6,2.13h-.94V11.66c0-.75-.28-1.12-.85-1.12a.82.82,0,0,0-.67.3,1.11,1.11,0,0,0-.26.73v2.52h-.94v-3c0-.37,0-.78,0-1.22H91l0,.67h0a1.31,1.31,0,0,1,.48-.51,1.52,1.52,0,0,1,.85-.24,1.32,1.32,0,0,1,1,.38,1.87,1.87,0,0,1,.49,1.41v2.54Zm6.3-3.54h-1v2.06c0,.53.18.79.55.79a1.84,1.84,0,0,0,.41,0l0,.71a2,2,0,0,1-.73.11,1.11,1.11,0,0,1-.86-.34,1.64,1.64,0,0,1-.32-1.15V10.55h-.61V9.84h.61V9.07l.92-.28V9.84h1v.71Zm5,3.54h-.93V11.68c0-.76-.29-1.14-.85-1.14a.88.88,0,0,0-.89.66,1.27,1.27,0,0,0,0,.34v2.55h-.93V7.9h.93v2.56h0a1.41,1.41,0,0,1,1.27-.7,1.29,1.29,0,0,1,1,.38,2,2,0,0,1,.47,1.42v2.53Zm5.11-2.32a2,2,0,0,1,0,.42h-2.81a1.23,1.23,0,0,0,.41,1,1.34,1.34,0,0,0,.92.3,2.9,2.9,0,0,0,1.13-.2l.15.66a3.6,3.6,0,0,1-1.41.26,2,2,0,0,1-1.54-.58,2.12,2.12,0,0,1-.56-1.56,2.46,2.46,0,0,1,.52-1.6,1.78,1.78,0,0,1,1.47-.68,1.57,1.57,0,0,1,1.38.68,2.29,2.29,0,0,1,.37,1.34Zm-.89-.25a1.31,1.31,0,0,0-.18-.72.83.83,0,0,0-.74-.4.9.9,0,0,0-.75.39,1.4,1.4,0,0,0-.28.73Z"/></svg>');
+  /* ]]> */ }
+
+.qrcode--tap {
+  position: relative; }
+
+.qrcode--tap::before {
+  position: absolute;
+  display: block;
+  content: '';
+  width: 100%;
+  height: 100%;
+  top: 0;
+  left: 0;
+  z-index: 5;
+  background-color: rgba(0, 0, 0, 0.65);
+  /* <![CDATA[ */
+  background-image: url('data:image/svg+xml;utf8,<svg xmlns="http://www.w3.org/2000/svg" xmlns:xlink="http://www.w3.org/1999/xlink" version="1.1" id="Layer_1" x="0px" y="0px" viewBox="0 0 177 177" style="enable-background:new 0 0 177 177;" xml:space="preserve"><style type="text/css">.st0{fill:none;stroke:%23FFFFFF;stroke-width:2;stroke-linecap:round;stroke-linejoin:round;stroke-miterlimit:10;}%3C%2Fstyle%3E<g><line class="st0" x1="80" y1="46.5" x2="80" y2="40"/><line class="st0" x1="70.8" y1="50.3" x2="66.2" y2="45.7"/><line class="st0" x1="89.2" y1="50.3" x2="93.8" y2="45.7"/><line class="st0" x1="93" y1="59.6" x2="99.6" y2="59.6"/><line class="st0" x1="60.4" y1="59.6" x2="67" y2="59.6"/></g><g>	<path class="st0" d="M123.9,134.3l-4.9,13c-0.5,1.6-0.9,4.2-0.9,5.8v6.9H77v-7.6c0-1.8-0.3-3.6-1.6-4.8l-7.2-6.6   c-2.1-2.1-3.8-4.6-4.9-7.3l-2.2-4.9c-1.3-3-3.6-5.6-6.4-7.3l-5.3-3.6c-2.2-1.5-3.3-3.5-3.3-6.4c0-3.2,2.6-6.5,6.5-6.5   c1.4,0,2.9,0.3,4.1,0.8l0,0c4.8,2,9.2,5,12.9,8.8l3.6,4.5v-15.7V59.9c0-3.4,3.3-6.8,7-6.8c3.8,0,7,3.1,7,7.3v23.5   c1.3-1.6,3.8-2.6,6.1-2.6c3.9,0,7.1,3.2,7.1,7.1l0.1,1.4c1.2-2.2,3.5-3.6,6.2-3.6c3.6,0,6.6,2.8,7,6.3c0,0,0,0,0,0   c0.9-0.4,1.9-0.6,2.9-0.6c3.4,0,6.3,2.5,6.9,5.7c0,0,2.7,17.7,2.7,23.5C126,128.1,125.2,130.4,123.9,134.3z"/><line class="st0" x1="87.3" y1="103.3" x2="87" y2="83.9"/><line class="st0" x1="100.7" y1="103.8" x2="100.2" y2="89.7"/><line class="st0" x1="114.1" y1="107" x2="113.4" y2="92.4"/><line class="st0" x1="113.4" y1="92.4" x2="113.4" y2="92.4"/></g></svg>');
+  /* ]]> */
+  -webkit-animation-name: qrtapAnimation;
+          animation-name: qrtapAnimation;
+  -webkit-animation-timing-function: ease;
+          animation-timing-function: ease;
+  -webkit-animation-iteration-count: infinite;
+          animation-iteration-count: infinite;
+  -webkit-animation-duration: 2.5s;
+          animation-duration: 2.5s;
+  -webkit-animation-direction: alternate;
+          animation-direction: alternate;
+  pointer-events: none; }
+
+@-webkit-keyframes qrtapAnimation {
+  0%,
+  55% {
+    opacity: 0;
+    background-color: rgba(0, 0, 0, 0); }
+  80%,
+  to {
+    opacity: 1;
+    background-color: rgba(0, 0, 0, 0.6); } }
+
+@keyframes qrtapAnimation {
+  0%,
+  55% {
+    opacity: 0;
+    background-color: rgba(0, 0, 0, 0); }
+  80%,
+  to {
+    opacity: 1;
+    background-color: rgba(0, 0, 0, 0.6); } }
+.text {
+  font-size: 15px;
+  line-height: 22px;
+  max-width: 910px;
+  -webkit-margin-start: 10px;
+          margin-inline-start: 10px;
+  -webkit-margin-end: 10px;
+          margin-inline-end: 10px; }
+
+.text--marginTop-0 {
+  -webkit-margin-before: 0;
+          margin-block-start: 0; }
+
+.text__sup {
+  font-size: 6px;
+  line-height: 8px; }
+      </style>
+    </ui:define>
+
+    <ui:define name="pageTitle">
+        <h:outputText value="#{msgs['login.pageTitle']}" />
+    </ui:define>
+
+    <ui:define name="body">
+      <div class="content">
+        <div class="content__element content__element--first content--center  content--narrow">
+          <h2 class="heading heading--h2 heading--light heading--marginBottom-0">Scan the QR code</h2>
+          <p class="text text--marginTop-0">
+            with WWPass<sup class="text__sup">TM</sup><h:outputText value="&#160;" />PassKey<h:outputText value="&#160;" />App to<h:outputText value="&#160;" />log in<h:outputText value="&#160;" />
+          </p>
+          <div class="loginMain__code-qr qrtap" id="qrcode" style="height: 196px; width: 196px; margin: auto">
+            <canvas width="256" height="256"></canvas>
+          </div>
+          <div id="passkey" style="display:none">
+            <button class="button button--action">Log in with PassKey</button>
+          </div>
+
+          <div class="hr"></div>
+          <p class="text text--sm">Download WWPass<sup class="text__sup">TM</sup><h:outputText value="&#160;" />PassKey<h:outputText value="&#160;" />App from
+          </p>
+          <a class="button button--store button--store-ios" href="https://itunes.apple.com/us/app/wwpass-passkey-lite/id984532938">AppStore</a>
+          <a class="button button--store button--store-google" href="https://play.google.com/store/apps/details?id=com.wwpass.android.passkey">Google Play</a>
+        </div>
+      </div>
+
+      <script type="text/javascript" src="/oxauth/ext/resources/js/wwpass-frontend.js" />
+      <script type="text/javascript">
+        window.onload = function () {
+            WWPass.authInit({
+                qrcode:'#qrcode',
+                passkey:'#passkey',
+                forcePasskeyButton: false,
+                callbackURL: window.location.protocol + '//' + window.location.hostname + '#{request.contextPath}/postlogin.htm',
+                ticketURL: '/wwpass/ticket.json?' + (#{identity.getWorkingParameter('use_pin')}?'p=1':'')
+            });
+        };
+      </script>
+      <script>
+        /* <![CDATA[ */
+        function isMobile() { return navigator && (
+          ('userAgent' in navigator && navigator.userAgent.match(/iPhone|iPod|iPad|Android/i))
+          || (navigator.maxTouchPoints > 1 && !navigator.userAgent.match(/Windows/i))
+        ) && !window.MSStream;};
+
+        if (isMobile()) {
+          var qrcode = document.querySelector(`#qrcode`);
+          qrcode.classList.add(`qrcode--tap`);
+        }
+        // 90% of session lifetime
+        var timeout = 0#{identity.getWorkingParameter('sessionLifetime')} * 900;
+        // Prevent session timeout while the tab is open
+        setInterval(function(){fetch(window.location.href)}, timeout);
+        /* ]]> */
+      </script>
+    </ui:define>
+
+</ui:composition>
+
diff --git a/oxAuth/Server/integrations/wwpass/pages/auth/wwpass/wwpassbind.xhtml b/oxAuth/Server/integrations/wwpass/pages/auth/wwpass/wwpassbind.xhtml
new file mode 100644
index 00000000..2b93995a
--- /dev/null
+++ b/oxAuth/Server/integrations/wwpass/pages/auth/wwpass/wwpassbind.xhtml
@@ -0,0 +1,329 @@
+  <!DOCTYPE composition
+      PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN" "http://www.w3.org/TR/xhtml1/DTD/xhtml1-transitional.dtd">
+  <ui:composition xmlns="http://www.w3.org/1999/xhtml" xmlns:f="http://xmlns.jcp.org/jsf/core"
+      xmlns:ui="http://xmlns.jcp.org/jsf/facelets" xmlns:h="http://xmlns.jcp.org/jsf/html"
+      xmlns:b="http://bootsfaces.net/ui"
+      template="/WEB-INF/incl/layout/template.xhtml">
+      <f:metadata>
+        <f:viewAction action="#{authenticator.prepareAuthenticationForStep}"/>
+
+        <f:viewParam name="login_hint" value="#{loginAction.loginHint}" />
+      </f:metadata>
+
+      <ui:define name="head">
+          <meta name="viewport" content="width=device-width, initial-scale=1" />
+          <meta name="description" content="WWPass Bind page description" />
+          <style>
+.body {
+  font-family: "Roboto", "Arial", sans-serif;
+  color: #707070;
+  font-weight: 300;
+  background: #EEF2FA;
+  background-repeat: no-repeat;
+  background-position: center;
+  background-size: cover;
+  min-width: 320px;
+  min-height: 100vh;
+  display: -webkit-box;
+  display: -ms-flexbox;
+  display: flex;
+  -webkit-box-orient: vertical;
+  -webkit-box-direction: normal;
+      -ms-flex-direction: column;
+          flex-direction: column;
+  -webkit-box-pack: justify;
+      -ms-flex-pack: justify;
+          justify-content: space-between;
+  margin: 0;
+  padding: 0 !important;
+  width: auto !important; }
+
+.content {
+  width: 100%;
+  max-width: 290px;
+  margin: auto;
+  display: -webkit-box;
+  display: -ms-flexbox;
+  display: flex;
+  -webkit-box-orient: vertical;
+  -webkit-box-direction: normal;
+      -ms-flex-direction: column;
+          flex-direction: column; }
+
+.content--center {
+  text-align: center; }
+
+.content--narrow {
+  max-width: 290px; }
+
+.content__element {
+  width: 100%;
+  max-width: 690px;
+  background-color: #ffffff;
+  border: 1px solid #dddddd;
+  border-radius: 15px;
+  -webkit-margin-before: 10px;
+          margin-block-start: 10px;
+  -webkit-padding-after: 15px;
+          padding-block-end: 15px; }
+
+.content__element--first {
+  -webkit-box-ordinal-group: 0;
+      -ms-flex-order: -1;
+          order: -1; }
+
+#status {
+  display: none; }
+
+.button {
+  display: flex;
+  min-width: 200px;
+  height: 40px;
+  margin: 0 auto;
+  font-size: 14px;
+  line-height: 34px;
+  font-weight: 400;
+  text-decoration: none;
+  text-align: center;
+  border-radius: 4px;
+  -webkit-padding-start: 15px;
+          padding-inline-start: 15px;
+  -webkit-padding-end: 15px;
+          padding-inline-end: 15px;
+  display: inline-block;
+  -webkit-margin-before: 20px;
+          margin-block-start: 20px;
+  -webkit-margin-after: 30px;
+          margin-block-end: 30px;
+  cursor: pointer;
+  -webkit-box-sizing: border-box;
+          box-sizing: border-box; }
+
+.form__label {
+  display: -webkit-box;
+  display: -ms-flexbox;
+  display: flex;
+  -webkit-box-orient: vertical;
+  -webkit-box-direction: normal;
+      -ms-flex-direction: column;
+          flex-direction: column;
+  -webkit-margin-before: 5px;
+          margin-block-start: 5px;
+  font-size: 13px;
+  line-height: 18px; }
+.qrcode--tap {
+  position: relative; }
+
+.qrcode--tap::before {
+  position: absolute;
+  display: block;
+  content: '';
+  width: 100%;
+  height: 100%;
+  top: 0;
+  left: 0;
+  z-index: 5;
+  background-color: rgba(0, 0, 0, 0.65);
+  /* <![CDATA[ */
+  background-image: url('data:image/svg+xml;utf8,<svg xmlns="http://www.w3.org/2000/svg" xmlns:xlink="http://www.w3.org/1999/xlink" version="1.1" id="Layer_1" x="0px" y="0px" viewBox="0 0 177 177" style="enable-background:new 0 0 177 177;" xml:space="preserve"><style type="text/css">.st0{fill:none;stroke:%23FFFFFF;stroke-width:2;stroke-linecap:round;stroke-linejoin:round;stroke-miterlimit:10;}%3C%2Fstyle%3E<g><line class="st0" x1="80" y1="46.5" x2="80" y2="40"/><line class="st0" x1="70.8" y1="50.3" x2="66.2" y2="45.7"/><line class="st0" x1="89.2" y1="50.3" x2="93.8" y2="45.7"/><line class="st0" x1="93" y1="59.6" x2="99.6" y2="59.6"/><line class="st0" x1="60.4" y1="59.6" x2="67" y2="59.6"/></g><g>	<path class="st0" d="M123.9,134.3l-4.9,13c-0.5,1.6-0.9,4.2-0.9,5.8v6.9H77v-7.6c0-1.8-0.3-3.6-1.6-4.8l-7.2-6.6   c-2.1-2.1-3.8-4.6-4.9-7.3l-2.2-4.9c-1.3-3-3.6-5.6-6.4-7.3l-5.3-3.6c-2.2-1.5-3.3-3.5-3.3-6.4c0-3.2,2.6-6.5,6.5-6.5   c1.4,0,2.9,0.3,4.1,0.8l0,0c4.8,2,9.2,5,12.9,8.8l3.6,4.5v-15.7V59.9c0-3.4,3.3-6.8,7-6.8c3.8,0,7,3.1,7,7.3v23.5   c1.3-1.6,3.8-2.6,6.1-2.6c3.9,0,7.1,3.2,7.1,7.1l0.1,1.4c1.2-2.2,3.5-3.6,6.2-3.6c3.6,0,6.6,2.8,7,6.3c0,0,0,0,0,0   c0.9-0.4,1.9-0.6,2.9-0.6c3.4,0,6.3,2.5,6.9,5.7c0,0,2.7,17.7,2.7,23.5C126,128.1,125.2,130.4,123.9,134.3z"/><line class="st0" x1="87.3" y1="103.3" x2="87" y2="83.9"/><line class="st0" x1="100.7" y1="103.8" x2="100.2" y2="89.7"/><line class="st0" x1="114.1" y1="107" x2="113.4" y2="92.4"/><line class="st0" x1="113.4" y1="92.4" x2="113.4" y2="92.4"/></g></svg>');
+  /* ]]> */
+  -webkit-animation-name: qrtapAnimation;
+          animation-name: qrtapAnimation;
+  -webkit-animation-timing-function: ease;
+          animation-timing-function: ease;
+  -webkit-animation-iteration-count: infinite;
+          animation-iteration-count: infinite;
+  -webkit-animation-duration: 2.5s;
+          animation-duration: 2.5s;
+  -webkit-animation-direction: alternate;
+          animation-direction: alternate;
+  pointer-events: none; }
+
+@-webkit-keyframes qrtapAnimation {
+  0%,
+  55% {
+    opacity: 0;
+    background-color: rgba(0, 0, 0, 0); }
+  80%,
+  to {
+    opacity: 1;
+    background-color: rgba(0, 0, 0, 0.6); } }
+
+@keyframes qrtapAnimation {
+  0%,
+  55% {
+    opacity: 0;
+    background-color: rgba(0, 0, 0, 0); }
+  80%,
+  to {
+    opacity: 1;
+    background-color: rgba(0, 0, 0, 0.6); } }
+.text {
+  font-size: 15px;
+  line-height: 22px;
+  max-width: 910px;
+  -webkit-margin-start: 10px;
+          margin-inline-start: 10px;
+  -webkit-margin-end: 10px;
+          margin-inline-end: 10px; }
+          </style>
+        </ui:define>
+
+      <ui:define name="pageTitle">
+          <h:outputText value="#{msgs['login.pageTitle']}" />
+      </ui:define>
+
+      <ui:define name="body">
+        <div class="content">
+          <div class="content__element content__element--first content--center  content--narrow">
+            <div id="errors" style="color:red;">
+              <p>#{identity.getWorkingParameter('errors')}</p>
+            </div>
+            <h:panelGroup rendered="#{!(''.equals(identity.getWorkingParameter('allow_email_bind')))}">
+              <div class="bind_option">
+                <input type="submit" value="Bind with an email" class="button button--action button--bind"/>
+              </div>
+
+              <div id="email_bind" style="display: none;">
+                <b:form id="bindEmailForm" name="bindEmailForm" method="post" class="form form--bind" enctype="application/x-www-form-urlencoded">
+                  <input type="hidden" name="loginForm" value="bindEmailForm" />
+                  <p class="text">Enter an email for your existing account</p>
+
+                  <label for="email" class="form__label">
+                    Email
+                  </label>
+                  <input placeholder="user@example.com" name="email"
+                    required="true" value="" class="form__input">
+                  </input>
+
+                  <h:commandButton id="loginButton" styleClass="button button--action"
+                        value="Verify email" action="#{authenticator.authenticate}" />
+                </b:form>
+
+              </div>
+            </h:panelGroup>
+            <h:panelGroup rendered="#{!(''.equals(identity.getWorkingParameter('allow_password_bind')))}">
+              <div class="bind_option">
+                <input type="submit" value="Bind with a password" class="button button--action button--bind"/>
+              </div>
+
+              <div id="password_bind" style="display: none;">
+                <b:form id="loginForm" name="loginForm" method="post" class="form form--bind" enctype="application/x-www-form-urlencoded">
+                  <input type="hidden" name="loginForm" value="loginForm" />
+                  <p class="text">Enter your credentials to bind PassKey to your account</p>
+
+                  <label for="loginForm:username" class="form__label"
+                  value="#{msgs['login.username']}">
+                    Username
+                  </label>
+                  <b:inputText placeholder="#{msgs['login.username']}" fieldId="loginForm:username" name="loginForm:username"
+                    required="true" autocomplete="off" value="#{credentials.username}" class="form__input">
+                  </b:inputText>
+
+                  <label for="loginForm:password" class="form__label" value="#{msgs['login.password']}">Password</label>
+                  <b:inputSecret placeholder="#{msgs['login.password']}"
+                    fieldId="loginForm:password" name="loginForm:password" value="#{credentials.password}"
+                    autocomplete="off" class="form__input">
+                  </b:inputSecret>
+
+                  <h:commandButton id="loginButton" styleClass="button button--action"
+                        value="Bind" action="#{authenticator.authenticate}" />
+                </b:form>
+
+              </div>
+            </h:panelGroup>
+
+            <h:panelGroup rendered="#{!(''.equals(identity.getWorkingParameter('allow_passkey_bind')))}">
+              <div class="bind_option">
+                <input type="submit" value="Bind with another PassKey" class="button button--action button--bind"/>
+              </div>
+
+              <div id="bind" style="display: none;">
+                <div class="" align="center">
+                  <p class="text">Scan QRCode to bind the previous PassKey to your account</p>
+                </div>
+                <div class="" align="center">
+                  <div id="qrcode" style="width: 196px; height: 196px;"></div>
+                  <div id="passkey" style="display:none">
+                    <button class="button button--action">Log in with PassKey</button>
+                  </div>
+                </div>
+              </div>
+            </h:panelGroup>
+
+            <h:panelGroup rendered="#{!(''.equals(identity.getWorkingParameter('registration_url')))}">
+              <div id="register" class="bind_option">
+                <form id="registerForm" class=""
+                  action="#{identity.getWorkingParameter('registration_url')}" method="post">
+                  <div class="">
+                    <div class="">
+                      <h:commandButton id="registerUser" styleClass="button button--action" value="Register a new user" />
+                    </div>
+                  </div>
+                  <h:inputHidden id="ticket" value="#{identity.getWorkingParameter('ticket')}" />
+                  <h:inputHidden id="puid" value="#{identity.getWorkingParameter('puid')}" />
+                </form>
+              </div>
+            </h:panelGroup>
+            <h:panelGroup rendered="#{!(''.equals(identity.getWorkingParameter('recovery_url')))}" class="bind_option">
+              <div id="recovery">
+                <p class="text">You presented a new WWPass Key, not associated with any account. If you already have an account, and need to replace your WWPass Key, please follow <a href="#{identity.getWorkingParameter('recovery_url')}">this link</a>.</p>
+              </div>
+            </h:panelGroup>
+          </div>
+        </div>
+        <script type="text/javascript"
+        src="/oxauth/ext/resources/js/wwpass-frontend.js" />
+        <script type="text/javascript">
+          /* <![CDATA[ */
+          window.onload = function () {
+            var binds = document.querySelectorAll(`.bind_option`);
+              if (binds) {
+                for (i=0 ; i < binds.length ; i++) {
+                  var bind = binds[i];
+                  var buttons = bind.getElementsByClassName('button--bind');
+                  if (buttons.length > 0) {
+                    buttons[0].addEventListener(`click`, function(evt) {
+                      evt.preventDefault();
+                      evt.target.parentElement.nextElementSibling.style.display = null;
+                      for (j=0 ; j < binds.length ; j++) {
+                        var bind = binds[j];
+                        bind.style.display = `none`;
+                      }
+                    });
+                    buttons[0].removeAttribute("disabled");
+                  }
+                }
+              }
+              WWPass.authInit({
+                  qrcode:'#qrcode',
+                  passkey:'#passkey',
+                  forcePasskeyButton: false,
+                  callbackURL: window.location.protocol + '//' + window.location.hostname + '#{request.contextPath}/postlogin.htm',
+                  ticketURL: "/wwpass/ticket.json?#{identity.getWorkingParameter('use_pin')?'p=1':''}"
+              });
+          };
+        /* ]]> */
+        </script>
+        <script>
+          /* <![CDATA[ */
+          function isMobile() { return navigator && (
+            ('userAgent' in navigator && navigator.userAgent.match(/iPhone|iPod|iPad|Android/i))
+            || (navigator.maxTouchPoints > 1 && !navigator.userAgent.match(/Windows/i))
+          ) && !window.MSStream;};
+
+          if (isMobile()) {
+            var qrcode = document.querySelector(`#qrcode`);
+            qrcode.classList.add(`qrcode--tap`);
+          }
+          // 90% of session lifetime
+          var timeout = 0#{identity.getWorkingParameter('sessionLifetime')} * 900;
+          // Prevent session timeout while the tab is open
+          setInterval(function(){fetch(window.location.href)}, timeout);
+          /* ]]> */
+        </script>
+
+      </ui:define>
+
+  </ui:composition>
+
diff --git a/oxAuth/Server/integrations/wwpass/static/js/wwpass-frontend.js b/oxAuth/Server/integrations/wwpass/static/js/wwpass-frontend.js
new file mode 100644
index 00000000..aeb1d82d
--- /dev/null
+++ b/oxAuth/Server/integrations/wwpass/static/js/wwpass-frontend.js
@@ -0,0 +1,6097 @@
+(function () {
+  'use strict';
+
+  function _classCallCheck(instance, Constructor) {
+    if (!(instance instanceof Constructor)) {
+      throw new TypeError("Cannot call a class as a function");
+    }
+  }
+
+  var classCallCheck = _classCallCheck;
+
+  function _defineProperties(target, props) {
+    for (var i = 0; i < props.length; i++) {
+      var descriptor = props[i];
+      descriptor.enumerable = descriptor.enumerable || false;
+      descriptor.configurable = true;
+      if ("value" in descriptor) descriptor.writable = true;
+      Object.defineProperty(target, descriptor.key, descriptor);
+    }
+  }
+
+  function _createClass(Constructor, protoProps, staticProps) {
+    if (protoProps) _defineProperties(Constructor.prototype, protoProps);
+    if (staticProps) _defineProperties(Constructor, staticProps);
+    return Constructor;
+  }
+
+  var createClass = _createClass;
+
+  function _defineProperty(obj, key, value) {
+    if (key in obj) {
+      Object.defineProperty(obj, key, {
+        value: value,
+        enumerable: true,
+        configurable: true,
+        writable: true
+      });
+    } else {
+      obj[key] = value;
+    }
+
+    return obj;
+  }
+
+  var defineProperty = _defineProperty;
+
+  function _objectSpread(target) {
+    for (var i = 1; i < arguments.length; i++) {
+      var source = arguments[i] != null ? arguments[i] : {};
+      var ownKeys = Object.keys(Object(source));
+
+      if (typeof Object.getOwnPropertySymbols === 'function') {
+        ownKeys = ownKeys.concat(Object.getOwnPropertySymbols(source).filter(function (sym) {
+          return Object.getOwnPropertyDescriptor(source, sym).enumerable;
+        }));
+      }
+
+      ownKeys.forEach(function (key) {
+        defineProperty(target, key, source[key]);
+      });
+    }
+
+    return target;
+  }
+
+  var objectSpread = _objectSpread;
+
+  /* Constants */
+
+  /* Status codes */
+  var WWPASS_OK_MSG = 'OK';
+  var WWPASS_STATUS = {
+    CONTINUE: 100,
+    OK: 200,
+    INTERNAL_ERROR: 400,
+    ALREADY_PERSONALIZED: 401,
+    PASSWORD_MISMATCH: 402,
+    PASSWORD_LOCKOUT: 403,
+    WRONG_KEY: 404,
+    WRONG_KEY_SECOND: 405,
+    NOT_A_KEY: 406,
+    NOT_A_KEY_SECOND: 407,
+    KEY_DISABLED: 408,
+    NOT_ALLOWED: 409,
+    BLANK_TOKEN: 410,
+    BLANK_SECOND_TOKEN: 411,
+    ACTIVITY_PROFILE_LOCKED: 412,
+    SSL_REQUIRED: 413,
+    BLANK_NORMAL_TOKEN: 414,
+    BLANK_SECOND_NORMAL_TOKEN: 415,
+    BLANK_MASTER_TOKEN: 416,
+    BLANK_SECOND_MASTER_TOKEN: 417,
+    NOT_ACTIVATED_TOKEN: 418,
+    NOT_ACTIVATED_SECOND_TOKEN: 419,
+    WRONG_KEY_SET: 420,
+    NO_VERIFIER: 421,
+    INCOMPLETE_KEYSET: 422,
+    INVALID_TICKET: 423,
+    SAME_TOKEN: 424,
+    NO_RECOVERY_INFO: 425,
+    BAD_RECOVERY_REQUEST: 426,
+    RECOVERY_FAILED: 427,
+    TERMINAL_ERROR: 500,
+    TERMINAL_NOT_FOUND: 501,
+    TERMINAL_BAD_REQUEST: 502,
+    NO_CONNECTION: 503,
+    NETWORK_ERROR: 504,
+    PROTOCOL_ERROR: 505,
+    UNKNOWN_HANDLER: 506,
+    TERMINAL_CANCELED: 590,
+    TIMEOUT: 600,
+    TICKET_TIMEOUT: 601,
+    USER_REJECT: 603,
+    NO_AUTH_INTERFACES_FOUND: 604,
+    TERMINAL_TIMEOUT: 605,
+    UNSUPPORTED_PLATFORM: 606
+  };
+  var WWPASS_NO_AUTH_INTERFACES_FOUND_MSG = 'No WWPass SecurityPack is found on your computer or WWPass Browser Plugin is disabled';
+  var WWPASS_UNSUPPORTED_PLATFORM_MSG_TMPL = 'WWPass authentication is not supported on';
+  var WWPASS_KEY_TYPE_PASSKEY = 'passkey';
+  var WWPASS_KEY_TYPE_DEFAULT = WWPASS_KEY_TYPE_PASSKEY;
+
+  var getCallbackURL = function getCallbackURL() {
+    var initialOptions = arguments.length > 0 && arguments[0] !== undefined ? arguments[0] : {};
+    var defaultOptions = {
+      ppx: 'wwp_',
+      version: 2,
+      status: 200,
+      reason: 'OK',
+      ticket: undefined,
+      callbackURL: undefined,
+      hw: false // hardware legacy
+
+    };
+
+    var options = objectSpread({}, defaultOptions, initialOptions);
+
+    var url = '';
+
+    if (typeof options.callbackURL === 'string') {
+      url = options.callbackURL;
+    }
+
+    var firstDelimiter = url.indexOf('?') === -1 ? '?' : '&';
+    url += "".concat(firstDelimiter + encodeURIComponent(options.ppx), "version=").concat(options.version);
+    url += "&".concat(encodeURIComponent(options.ppx), "ticket=").concat(encodeURIComponent(options.ticket));
+    url += "&".concat(encodeURIComponent(options.ppx), "status=").concat(encodeURIComponent(options.status));
+    url += "&".concat(encodeURIComponent(options.ppx), "reason=").concat(encodeURIComponent(options.reason));
+
+    if (options.hw) {
+      url += "&".concat(encodeURIComponent(options.ppx), "hw=1");
+    }
+
+    return url;
+  };
+
+  var getUniversalURL = function getUniversalURL() {
+    var initialOptions = arguments.length > 0 && arguments[0] !== undefined ? arguments[0] : {};
+    var allowCallbackURL = arguments.length > 1 && arguments[1] !== undefined ? arguments[1] : true;
+    var defaultOptions = {
+      universal: false,
+      operation: 'auth',
+      ppx: 'wwp_',
+      version: 2,
+      ticket: undefined,
+      callbackURL: undefined,
+      clientKey: undefined
+    };
+
+    var options = objectSpread({}, defaultOptions, initialOptions);
+
+    var url = options.universal ? 'https://get.wwpass.com/' : 'wwpass://';
+
+    if (options.operation === 'auth') {
+      url += 'auth';
+      url += "?v=".concat(options.version);
+      url += "&t=".concat(encodeURIComponent(options.ticket));
+      url += "&ppx=".concat(encodeURIComponent(options.ppx));
+
+      if (options.clientKey) {
+        url += "&ck=".concat(options.clientKey);
+      }
+
+      if (options.callbackURL && allowCallbackURL) {
+        url += "&c=".concat(encodeURIComponent(options.callbackURL));
+      }
+    } else {
+      url += "".concat(encodeURIComponent(options.operation), "?t=").concat(encodeURIComponent(options.ticket));
+    }
+
+    return url;
+  };
+
+  var navigateToCallback = function navigateToCallback(options) {
+    if (typeof options.callbackURL === 'function') {
+      options.callbackURL(getCallbackURL(options));
+    } else {
+      // URL string
+      window.location.href = getCallbackURL(options);
+    }
+  };
+
+  var connectionPool = [];
+
+  var closeConnectionPool = function closeConnectionPool() {
+    while (connectionPool.length) {
+      var connection = connectionPool.shift();
+
+      if (connection.readyState === WebSocket.OPEN) {
+        connection.close();
+      }
+    }
+  };
+
+  var applyDefaults = function applyDefaults(initialOptions) {
+    var defaultOptions = {
+      ppx: 'wwp_',
+      version: 2,
+      ticket: undefined,
+      callbackURL: undefined,
+      returnErrors: false,
+      log: function log() {},
+      development: false,
+      spfewsAddress: 'wss://spfews.wwpass.com',
+      echo: undefined,
+      clientKeyOnly: false
+    };
+    return objectSpread({}, defaultOptions, initialOptions);
+  };
+  /**
+  * WWPass SPFE WebSocket connection
+  * @param {object} options
+  *
+  * options = {
+  *   'ticket': undefined, // stirng
+  *   'callbackURL': undefined, //string
+  *   'development': false || 'string' , // work with another spfews.wwpass.* server
+  *   'log': function (message) || console.log, // another log handler
+  *   'echo': undefined
+  * }
+  */
+
+
+  var getWebSocketResult = function getWebSocketResult(initialOptions) {
+    return new Promise(function (resolve, reject) {
+      var options = applyDefaults(initialOptions);
+      var clientKey = null;
+      var originalTicket = options.ticket;
+      var ttl = null;
+
+      var settle = function settle(status, reason) {
+        if (status === 200) {
+          var result = {
+            ppx: options.ppx,
+            version: options.version,
+            status: status,
+            reason: WWPASS_OK_MSG,
+            ticket: options.ticket,
+            callbackURL: options.callbackURL,
+            clientKey: clientKey,
+            originalTicket: originalTicket,
+            ttl: ttl
+          };
+
+          if (!options.clientKeyOnly) {
+            navigateToCallback(result);
+          }
+
+          resolve(result);
+        } else {
+          var err = {
+            ppx: options.ppx,
+            version: options.version,
+            status: status,
+            reason: reason,
+            ticket: options.ticket,
+            callbackURL: options.callbackURL
+          };
+
+          if ((status === WWPASS_STATUS.INTERNAL_ERROR || options.returnErrors) && !options.clientKeyOnly) {
+            navigateToCallback(err);
+          }
+
+          reject(err);
+        }
+      };
+
+      if (!('WebSocket' in window)) {
+        settle(WWPASS_STATUS.INTERNAL_ERROR, 'WebSocket is not supported.');
+        return;
+      }
+
+      var websocketurl = options.spfewsAddress;
+      var socket = new WebSocket(websocketurl);
+      connectionPool.push(socket);
+      var log = options.log;
+
+      socket.onopen = function () {
+        try {
+          log("Connected: ".concat(websocketurl));
+          var message = JSON.stringify({
+            ticket: options.ticket
+          });
+          log("Sent message to server: ".concat(message));
+          socket.send(message);
+        } catch (error) {
+          log(error);
+          settle(WWPASS_STATUS.INTERNAL_ERROR, 'WebSocket error');
+        }
+      };
+
+      socket.onclose = function () {
+        try {
+          var index = connectionPool.indexOf(socket);
+
+          if (index !== -1) {
+            connectionPool.splice(index, 1);
+          }
+
+          log('Disconnected');
+          resolve({
+            refresh: true
+          });
+        } catch (error) {
+          log(error);
+          settle(WWPASS_STATUS.INTERNAL_ERROR, 'WebSocket error');
+        }
+      };
+
+      socket.onmessage = function (message) {
+        try {
+          log("Message received from server: ".concat(message.data));
+          var response = JSON.parse(message.data);
+          var status = response.code;
+          var reason = response.reason;
+
+          if ('clientKey' in response && !clientKey) {
+            clientKey = response.clientKey;
+
+            if (response.originalTicket !== undefined) {
+              originalTicket = response.originalTicket;
+              ttl = response.ttl;
+            }
+          }
+
+          if (status === 100) {
+            return;
+          }
+
+          settle(status, reason);
+          socket.close();
+        } catch (error) {
+          log(error);
+          settle(WWPASS_STATUS.INTERNAL_ERROR, 'WebSocket error');
+        }
+      };
+    });
+  };
+
+  var abToB64 = function abToB64(data) {
+    return btoa(String.fromCharCode.apply(null, new Uint8Array(data)));
+  };
+
+  var b64ToAb = function b64ToAb(base64) {
+    var s = atob(base64);
+    var bytes = new Uint8Array(s.length);
+
+    for (var i = 0; i < s.length; i += 1) {
+      bytes[i] = s.charCodeAt(i);
+    }
+
+    return bytes.buffer;
+  };
+
+  var ab2str = function ab2str(buf) {
+    return String.fromCharCode.apply(null, new Uint16Array(buf));
+  };
+
+  var str2ab = function str2ab(str) {
+    var buf = new ArrayBuffer(str.length * 2); // 2 bytes for each char
+
+    var bufView = new Uint16Array(buf);
+
+    for (var i = 0, strLen = str.length; i < strLen; i += 1) {
+      bufView[i] = str.charCodeAt(i);
+    }
+
+    return buf;
+  };
+
+  var crypto = window.crypto || window.msCrypto;
+  var subtle = crypto ? crypto.webkitSubtle || crypto.subtle : null;
+
+  var encodeClientKey = function encodeClientKey(key) {
+    return abToB64(key).replace(/\+/g, '-').replace(/[/]/g, '.').replace(/=/g, '_');
+  };
+
+  var encrypt = function encrypt(options, key, data) {
+    return subtle.encrypt(options, key, data);
+  };
+
+  var decrypt = function decrypt(options, key, data) {
+    return subtle.decrypt(options, key, data);
+  };
+
+  var importKey = function importKey(format, key, algoritm, extractable, operations) {
+    return subtle.importKey(format, key, algoritm, extractable, operations);
+  }; // eslint-disable-line max-len
+
+
+  var getRandomData = function getRandomData(buffer) {
+    return crypto.getRandomValues(buffer);
+  };
+
+  var concatBuffers = function concatBuffers() {
+    for (var _len = arguments.length, args = new Array(_len), _key = 0; _key < _len; _key++) {
+      args[_key] = arguments[_key];
+    }
+
+    var totalLen = args.reduce(function (accumulator, curentAB) {
+      return accumulator + curentAB.byteLength;
+    }, 0);
+    var i = 0;
+    var result = new Uint8Array(totalLen);
+
+    while (args.length > 0) {
+      result.set(new Uint8Array(args[0]), i);
+      i += args[0].byteLength;
+      args.shift();
+    }
+
+    return result.buffer;
+  };
+
+  function _arrayWithHoles(arr) {
+    if (Array.isArray(arr)) return arr;
+  }
+
+  var arrayWithHoles = _arrayWithHoles;
+
+  function _iterableToArrayLimit(arr, i) {
+    if (!(Symbol.iterator in Object(arr) || Object.prototype.toString.call(arr) === "[object Arguments]")) {
+      return;
+    }
+
+    var _arr = [];
+    var _n = true;
+    var _d = false;
+    var _e = undefined;
+
+    try {
+      for (var _i = arr[Symbol.iterator](), _s; !(_n = (_s = _i.next()).done); _n = true) {
+        _arr.push(_s.value);
+
+        if (i && _arr.length === i) break;
+      }
+    } catch (err) {
+      _d = true;
+      _e = err;
+    } finally {
+      try {
+        if (!_n && _i["return"] != null) _i["return"]();
+      } finally {
+        if (_d) throw _e;
+      }
+    }
+
+    return _arr;
+  }
+
+  var iterableToArrayLimit = _iterableToArrayLimit;
+
+  function _nonIterableRest() {
+    throw new TypeError("Invalid attempt to destructure non-iterable instance");
+  }
+
+  var nonIterableRest = _nonIterableRest;
+
+  function _slicedToArray(arr, i) {
+    return arrayWithHoles(arr) || iterableToArrayLimit(arr, i) || nonIterableRest();
+  }
+
+  var slicedToArray = _slicedToArray;
+
+  var isClientKeyTicket = function isClientKeyTicket(ticket) {
+    var _ticket$split = ticket.split('@'),
+        _ticket$split2 = slicedToArray(_ticket$split, 1),
+        info = _ticket$split2[0];
+
+    var spnameFlagsOTP = info.split(':');
+
+    if (spnameFlagsOTP.length < 3) {
+      return false;
+    }
+
+    var FLAGS_INDEX = 1; // second element of ticket — flags
+
+    var flags = spnameFlagsOTP[FLAGS_INDEX];
+    return flags.split('').some(function (element) {
+      return element === 'c';
+    });
+  };
+
+  var ticketAdapter = function ticketAdapter(response) {
+    if (response && response.data) {
+      var ticket = {
+        ticket: response.data,
+        ttl: response.ttl || 120
+      };
+      delete ticket.data;
+      return ticket;
+    }
+
+    return response;
+  };
+
+  function createCommonjsModule(fn, module) {
+  	return module = { exports: {} }, fn(module, module.exports), module.exports;
+  }
+
+  var _typeof_1 = createCommonjsModule(function (module) {
+  function _typeof(obj) {
+    if (typeof Symbol === "function" && typeof Symbol.iterator === "symbol") {
+      module.exports = _typeof = function _typeof(obj) {
+        return typeof obj;
+      };
+    } else {
+      module.exports = _typeof = function _typeof(obj) {
+        return obj && typeof Symbol === "function" && obj.constructor === Symbol && obj !== Symbol.prototype ? "symbol" : typeof obj;
+      };
+    }
+
+    return _typeof(obj);
+  }
+
+  module.exports = _typeof;
+  });
+
+  function _assertThisInitialized(self) {
+    if (self === void 0) {
+      throw new ReferenceError("this hasn't been initialised - super() hasn't been called");
+    }
+
+    return self;
+  }
+
+  var assertThisInitialized = _assertThisInitialized;
+
+  function _possibleConstructorReturn(self, call) {
+    if (call && (_typeof_1(call) === "object" || typeof call === "function")) {
+      return call;
+    }
+
+    return assertThisInitialized(self);
+  }
+
+  var possibleConstructorReturn = _possibleConstructorReturn;
+
+  var getPrototypeOf = createCommonjsModule(function (module) {
+  function _getPrototypeOf(o) {
+    module.exports = _getPrototypeOf = Object.setPrototypeOf ? Object.getPrototypeOf : function _getPrototypeOf(o) {
+      return o.__proto__ || Object.getPrototypeOf(o);
+    };
+    return _getPrototypeOf(o);
+  }
+
+  module.exports = _getPrototypeOf;
+  });
+
+  var setPrototypeOf = createCommonjsModule(function (module) {
+  function _setPrototypeOf(o, p) {
+    module.exports = _setPrototypeOf = Object.setPrototypeOf || function _setPrototypeOf(o, p) {
+      o.__proto__ = p;
+      return o;
+    };
+
+    return _setPrototypeOf(o, p);
+  }
+
+  module.exports = _setPrototypeOf;
+  });
+
+  function _inherits(subClass, superClass) {
+    if (typeof superClass !== "function" && superClass !== null) {
+      throw new TypeError("Super expression must either be null or a function");
+    }
+
+    subClass.prototype = Object.create(superClass && superClass.prototype, {
+      constructor: {
+        value: subClass,
+        writable: true,
+        configurable: true
+      }
+    });
+    if (superClass) setPrototypeOf(subClass, superClass);
+  }
+
+  var inherits = _inherits;
+
+  function _isNativeFunction(fn) {
+    return Function.toString.call(fn).indexOf("[native code]") !== -1;
+  }
+
+  var isNativeFunction = _isNativeFunction;
+
+  var construct = createCommonjsModule(function (module) {
+  function isNativeReflectConstruct() {
+    if (typeof Reflect === "undefined" || !Reflect.construct) return false;
+    if (Reflect.construct.sham) return false;
+    if (typeof Proxy === "function") return true;
+
+    try {
+      Date.prototype.toString.call(Reflect.construct(Date, [], function () {}));
+      return true;
+    } catch (e) {
+      return false;
+    }
+  }
+
+  function _construct(Parent, args, Class) {
+    if (isNativeReflectConstruct()) {
+      module.exports = _construct = Reflect.construct;
+    } else {
+      module.exports = _construct = function _construct(Parent, args, Class) {
+        var a = [null];
+        a.push.apply(a, args);
+        var Constructor = Function.bind.apply(Parent, a);
+        var instance = new Constructor();
+        if (Class) setPrototypeOf(instance, Class.prototype);
+        return instance;
+      };
+    }
+
+    return _construct.apply(null, arguments);
+  }
+
+  module.exports = _construct;
+  });
+
+  var wrapNativeSuper = createCommonjsModule(function (module) {
+  function _wrapNativeSuper(Class) {
+    var _cache = typeof Map === "function" ? new Map() : undefined;
+
+    module.exports = _wrapNativeSuper = function _wrapNativeSuper(Class) {
+      if (Class === null || !isNativeFunction(Class)) return Class;
+
+      if (typeof Class !== "function") {
+        throw new TypeError("Super expression must either be null or a function");
+      }
+
+      if (typeof _cache !== "undefined") {
+        if (_cache.has(Class)) return _cache.get(Class);
+
+        _cache.set(Class, Wrapper);
+      }
+
+      function Wrapper() {
+        return construct(Class, arguments, getPrototypeOf(this).constructor);
+      }
+
+      Wrapper.prototype = Object.create(Class.prototype, {
+        constructor: {
+          value: Wrapper,
+          enumerable: false,
+          writable: true,
+          configurable: true
+        }
+      });
+      return setPrototypeOf(Wrapper, Class);
+    };
+
+    return _wrapNativeSuper(Class);
+  }
+
+  module.exports = _wrapNativeSuper;
+  });
+
+  var WWPassError =
+  /*#__PURE__*/
+  function (_Error) {
+    inherits(WWPassError, _Error);
+
+    function WWPassError(code) {
+      var _this;
+
+      classCallCheck(this, WWPassError);
+
+      for (var _len = arguments.length, args = new Array(_len > 1 ? _len - 1 : 0), _key = 1; _key < _len; _key++) {
+        args[_key - 1] = arguments[_key];
+      }
+
+      _this = possibleConstructorReturn(this, getPrototypeOf(WWPassError).call(this, args, WWPassError));
+      Error.captureStackTrace(assertThisInitialized(_this), WWPassError);
+      _this.code = code;
+      return _this;
+    }
+
+    createClass(WWPassError, [{
+      key: "toString",
+      value: function toString() {
+        return "".concat(this.name, "(").concat(this.code, "): ").concat(this.message);
+      }
+    }]);
+
+    return WWPassError;
+  }(wrapNativeSuper(Error));
+
+  var exportKey = function exportKey(type, key) {
+    return subtle.exportKey(type, key);
+  }; // generate digest from string
+
+
+  var hex = function hex(buffer) {
+    var hexCodes = [];
+    var view = new DataView(buffer);
+
+    for (var i = 0; i < view.byteLength; i += 4) {
+      // Using getUint32 reduces the number of iterations needed (we process 4 bytes each time)
+      var value = view.getUint32(i); // toString(16) will give the hex representation of the number without padding
+
+      var stringValue = value.toString(16); // We use concatenation and slice for padding
+
+      var padding = '00000000';
+      var paddedValue = (padding + stringValue).slice(-padding.length);
+      hexCodes.push(paddedValue);
+    } // Join all the hex strings into one
+
+
+    return hexCodes.join('');
+  }; // https://developer.mozilla.org/en-US/docs/Web/API/SubtleCrypto/digest
+
+
+  var sha256 = function sha256(str) {
+    // We transform the string into an arraybuffer.
+    var buffer = str2ab(str);
+    return subtle.digest({
+      name: 'SHA-256'
+    }, buffer).then(function (hash) {
+      return hex(hash);
+    });
+  };
+
+  var clean = function clean(items) {
+    var currentDate = window.Date.now();
+    return items.filter(function (item) {
+      return item.deadline > currentDate;
+    });
+  };
+
+  var loadNonces = function loadNonces() {
+    var wwpassNonce = window.localStorage.getItem('wwpassNonce');
+
+    if (!wwpassNonce) {
+      return [];
+    }
+
+    try {
+      return clean(JSON.parse(wwpassNonce));
+    } catch (error) {
+      window.localStorage.removeItem('wwpassNonce');
+      throw error;
+    }
+  };
+
+  var saveNonces = function saveNonces(nonces) {
+    window.localStorage.setItem('wwpassNonce', JSON.stringify(nonces));
+  }; // get from localStorage Client Nonce
+
+
+  var getClientNonce = function getClientNonce(ticket) {
+    var newTTL = arguments.length > 1 && arguments[1] !== undefined ? arguments[1] : null;
+
+    if (!subtle) {
+      throw new WWPassError(WWPASS_STATUS.SSL_REQUIRED, 'Client-side encryption requires https.');
+    }
+
+    var nonces = loadNonces();
+    return sha256(ticket).then(function (hash) {
+      var nonce = nonces.find(function (it) {
+        return hash === it.hash;
+      });
+      var key = nonce && nonce.key ? b64ToAb(nonce.key) : undefined;
+
+      if (newTTL && key) {
+        nonce.deadline = window.Date.now() + newTTL * 1000;
+        saveNonces(nonces);
+      }
+
+      return key;
+    });
+  }; // generate Client Nonce and set it to localStorage
+
+
+  var generateClientNonce = function generateClientNonce(ticket) {
+    var ttl = arguments.length > 1 && arguments[1] !== undefined ? arguments[1] : 120;
+
+    if (!subtle) {
+      throw new WWPassError(WWPASS_STATUS.SSL_REQUIRED, 'Client-side encryption requires https.');
+    }
+
+    return getClientNonce(ticket).then(function (loadedKey) {
+      if (loadedKey) {
+        return loadedKey;
+      }
+
+      return subtle.generateKey({
+        name: 'AES-CBC',
+        length: 256
+      }, true, // is extractable
+      ['encrypt', 'decrypt']).then(function (key) {
+        return exportKey('raw', key);
+      }).then(function (rawKey) {
+        return sha256(ticket).then(function (digest) {
+          var nonce = {
+            hash: digest,
+            key: abToB64(rawKey),
+            deadline: window.Date.now() + ttl * 1000
+          };
+          var nonces = loadNonces();
+          nonces.push(nonce);
+          saveNonces(nonces); // hack for return key
+
+          return rawKey;
+        });
+      });
+    });
+  };
+
+  var getClientNonceWrapper = function getClientNonceWrapper(ticket) {
+    var ttl = arguments.length > 1 && arguments[1] !== undefined ? arguments[1] : 120;
+
+    if (!isClientKeyTicket(ticket)) {
+      return new Promise(function (resolve) {
+        resolve(undefined);
+      });
+    }
+
+    return generateClientNonce(ticket, ttl);
+  };
+
+  var copyClientNonce = function copyClientNonce(oldTicket, newTicket, ttl) {
+    return getClientNonce(oldTicket).then(function (nonceKey) {
+      return sha256(newTicket) // eslint-disable-line max-len
+      .then(function (digest) {
+        var nonces = loadNonces();
+        nonces.push({
+          hash: digest,
+          key: abToB64(nonceKey),
+          deadline: window.Date.now() + ttl * 1000
+        });
+        saveNonces(nonces);
+      });
+    });
+  };
+
+  var clientKeyIV = new Uint8Array([176, 178, 97, 142, 156, 31, 45, 30, 81, 210, 85, 14, 202, 203, 86, 240]);
+
+  var WWPassCryptoPromise =
+  /*#__PURE__*/
+  function () {
+    createClass(WWPassCryptoPromise, [{
+      key: "encryptArrayBuffer",
+      value: function encryptArrayBuffer(arrayBuffer) {
+        var iv = new Uint8Array(this.ivLen);
+        getRandomData(iv);
+        var algorithm = this.algorithm;
+        Object.assign(algorithm, {
+          iv: iv
+        });
+        return encrypt(algorithm, this.clientKey, arrayBuffer).then(function (encryptedAB) {
+          return concatBuffers(iv.buffer, encryptedAB);
+        });
+      }
+    }, {
+      key: "encryptString",
+      value: function encryptString(string) {
+        return this.encryptArrayBuffer(str2ab(string)).then(abToB64);
+      }
+    }, {
+      key: "decryptArrayBuffer",
+      value: function decryptArrayBuffer(encryptedArrayBuffer) {
+        var algorithm = this.algorithm;
+        Object.assign(algorithm, {
+          iv: encryptedArrayBuffer.slice(0, this.ivLen)
+        });
+        return decrypt(algorithm, this.clientKey, encryptedArrayBuffer.slice(this.ivLen));
+      }
+    }, {
+      key: "decryptString",
+      value: function decryptString(encryptedString) {
+        return this.decryptArrayBuffer(b64ToAb(encryptedString)).then(ab2str);
+      } // Private
+
+    }], [{
+      key: "getWWPassCrypto",
+
+      /* Return Promise that will be resloved to catual crypto object
+      with encrypt/decrypt String/ArrayBuffer methods and cleintKey member.
+      Ticket must be authenticated with 'c' auth factor.
+      Only supported values for algorithm are 'AES-GCM' and 'AES-CBC'.
+      */
+      value: function getWWPassCrypto(ticket) {
+        var algorithmName = arguments.length > 1 && arguments[1] !== undefined ? arguments[1] : 'AES-GCM';
+        var encryptedClientKey = null;
+        var algorithm = {
+          name: algorithmName,
+          length: 256
+        };
+        return getWebSocketResult({
+          ticket: ticket,
+          clientKeyOnly: true
+        }).then(function (result) {
+          if (!result.clientKey) {
+            throw Error("No client key associated with the ticket ".concat(ticket));
+          }
+
+          encryptedClientKey = result.clientKey;
+          return getClientNonce(result.originalTicket ? result.originalTicket : ticket, result.ttl);
+        }).then(function (key) {
+          if (!key) {
+            throw new Error('No client key nonce associated with the ticket in this browser');
+          }
+
+          return importKey('raw', key, {
+            name: 'AES-CBC'
+          }, false, ['encrypt', 'decrypt', 'wrapKey', 'unwrapKey']);
+        }).then(function (clientKeyNonce) {
+          return decrypt({
+            name: 'AES-CBC',
+            iv: clientKeyIV
+          }, clientKeyNonce, b64ToAb(encryptedClientKey));
+        }).then(function (arrayBuffer) {
+          return importKey('raw', arrayBuffer, algorithm, false, ['encrypt', 'decrypt', 'wrapKey', 'unwrapKey']);
+        }).then(function (key) {
+          return new WWPassCryptoPromise(key, algorithm);
+        }).catch(function (error) {
+          if (error.reason !== undefined) {
+            throw new Error(error.reason);
+          }
+
+          throw error;
+        });
+      }
+    }]);
+
+    function WWPassCryptoPromise(key, algorithm) {
+      classCallCheck(this, WWPassCryptoPromise);
+
+      this.ivLen = algorithm.name === 'AES-GCM' ? 12 : 16;
+      this.algorithm = algorithm;
+
+      if (algorithm.name === 'AES-GCM') {
+        Object.assign(this.algorithm, {
+          tagLength: 128
+        });
+      }
+
+      this.clientKey = key;
+    }
+
+    return WWPassCryptoPromise;
+  }();
+
+  var runtime_1 = createCommonjsModule(function (module) {
+  /**
+   * Copyright (c) 2014-present, Facebook, Inc.
+   *
+   * This source code is licensed under the MIT license found in the
+   * LICENSE file in the root directory of this source tree.
+   */
+
+  var runtime = (function (exports) {
+
+    var Op = Object.prototype;
+    var hasOwn = Op.hasOwnProperty;
+    var undefined$1; // More compressible than void 0.
+    var $Symbol = typeof Symbol === "function" ? Symbol : {};
+    var iteratorSymbol = $Symbol.iterator || "@@iterator";
+    var asyncIteratorSymbol = $Symbol.asyncIterator || "@@asyncIterator";
+    var toStringTagSymbol = $Symbol.toStringTag || "@@toStringTag";
+
+    function wrap(innerFn, outerFn, self, tryLocsList) {
+      // If outerFn provided and outerFn.prototype is a Generator, then outerFn.prototype instanceof Generator.
+      var protoGenerator = outerFn && outerFn.prototype instanceof Generator ? outerFn : Generator;
+      var generator = Object.create(protoGenerator.prototype);
+      var context = new Context(tryLocsList || []);
+
+      // The ._invoke method unifies the implementations of the .next,
+      // .throw, and .return methods.
+      generator._invoke = makeInvokeMethod(innerFn, self, context);
+
+      return generator;
+    }
+    exports.wrap = wrap;
+
+    // Try/catch helper to minimize deoptimizations. Returns a completion
+    // record like context.tryEntries[i].completion. This interface could
+    // have been (and was previously) designed to take a closure to be
+    // invoked without arguments, but in all the cases we care about we
+    // already have an existing method we want to call, so there's no need
+    // to create a new function object. We can even get away with assuming
+    // the method takes exactly one argument, since that happens to be true
+    // in every case, so we don't have to touch the arguments object. The
+    // only additional allocation required is the completion record, which
+    // has a stable shape and so hopefully should be cheap to allocate.
+    function tryCatch(fn, obj, arg) {
+      try {
+        return { type: "normal", arg: fn.call(obj, arg) };
+      } catch (err) {
+        return { type: "throw", arg: err };
+      }
+    }
+
+    var GenStateSuspendedStart = "suspendedStart";
+    var GenStateSuspendedYield = "suspendedYield";
+    var GenStateExecuting = "executing";
+    var GenStateCompleted = "completed";
+
+    // Returning this object from the innerFn has the same effect as
+    // breaking out of the dispatch switch statement.
+    var ContinueSentinel = {};
+
+    // Dummy constructor functions that we use as the .constructor and
+    // .constructor.prototype properties for functions that return Generator
+    // objects. For full spec compliance, you may wish to configure your
+    // minifier not to mangle the names of these two functions.
+    function Generator() {}
+    function GeneratorFunction() {}
+    function GeneratorFunctionPrototype() {}
+
+    // This is a polyfill for %IteratorPrototype% for environments that
+    // don't natively support it.
+    var IteratorPrototype = {};
+    IteratorPrototype[iteratorSymbol] = function () {
+      return this;
+    };
+
+    var getProto = Object.getPrototypeOf;
+    var NativeIteratorPrototype = getProto && getProto(getProto(values([])));
+    if (NativeIteratorPrototype &&
+        NativeIteratorPrototype !== Op &&
+        hasOwn.call(NativeIteratorPrototype, iteratorSymbol)) {
+      // This environment has a native %IteratorPrototype%; use it instead
+      // of the polyfill.
+      IteratorPrototype = NativeIteratorPrototype;
+    }
+
+    var Gp = GeneratorFunctionPrototype.prototype =
+      Generator.prototype = Object.create(IteratorPrototype);
+    GeneratorFunction.prototype = Gp.constructor = GeneratorFunctionPrototype;
+    GeneratorFunctionPrototype.constructor = GeneratorFunction;
+    GeneratorFunctionPrototype[toStringTagSymbol] =
+      GeneratorFunction.displayName = "GeneratorFunction";
+
+    // Helper for defining the .next, .throw, and .return methods of the
+    // Iterator interface in terms of a single ._invoke method.
+    function defineIteratorMethods(prototype) {
+      ["next", "throw", "return"].forEach(function(method) {
+        prototype[method] = function(arg) {
+          return this._invoke(method, arg);
+        };
+      });
+    }
+
+    exports.isGeneratorFunction = function(genFun) {
+      var ctor = typeof genFun === "function" && genFun.constructor;
+      return ctor
+        ? ctor === GeneratorFunction ||
+          // For the native GeneratorFunction constructor, the best we can
+          // do is to check its .name property.
+          (ctor.displayName || ctor.name) === "GeneratorFunction"
+        : false;
+    };
+
+    exports.mark = function(genFun) {
+      if (Object.setPrototypeOf) {
+        Object.setPrototypeOf(genFun, GeneratorFunctionPrototype);
+      } else {
+        genFun.__proto__ = GeneratorFunctionPrototype;
+        if (!(toStringTagSymbol in genFun)) {
+          genFun[toStringTagSymbol] = "GeneratorFunction";
+        }
+      }
+      genFun.prototype = Object.create(Gp);
+      return genFun;
+    };
+
+    // Within the body of any async function, `await x` is transformed to
+    // `yield regeneratorRuntime.awrap(x)`, so that the runtime can test
+    // `hasOwn.call(value, "__await")` to determine if the yielded value is
+    // meant to be awaited.
+    exports.awrap = function(arg) {
+      return { __await: arg };
+    };
+
+    function AsyncIterator(generator) {
+      function invoke(method, arg, resolve, reject) {
+        var record = tryCatch(generator[method], generator, arg);
+        if (record.type === "throw") {
+          reject(record.arg);
+        } else {
+          var result = record.arg;
+          var value = result.value;
+          if (value &&
+              typeof value === "object" &&
+              hasOwn.call(value, "__await")) {
+            return Promise.resolve(value.__await).then(function(value) {
+              invoke("next", value, resolve, reject);
+            }, function(err) {
+              invoke("throw", err, resolve, reject);
+            });
+          }
+
+          return Promise.resolve(value).then(function(unwrapped) {
+            // When a yielded Promise is resolved, its final value becomes
+            // the .value of the Promise<{value,done}> result for the
+            // current iteration.
+            result.value = unwrapped;
+            resolve(result);
+          }, function(error) {
+            // If a rejected Promise was yielded, throw the rejection back
+            // into the async generator function so it can be handled there.
+            return invoke("throw", error, resolve, reject);
+          });
+        }
+      }
+
+      var previousPromise;
+
+      function enqueue(method, arg) {
+        function callInvokeWithMethodAndArg() {
+          return new Promise(function(resolve, reject) {
+            invoke(method, arg, resolve, reject);
+          });
+        }
+
+        return previousPromise =
+          // If enqueue has been called before, then we want to wait until
+          // all previous Promises have been resolved before calling invoke,
+          // so that results are always delivered in the correct order. If
+          // enqueue has not been called before, then it is important to
+          // call invoke immediately, without waiting on a callback to fire,
+          // so that the async generator function has the opportunity to do
+          // any necessary setup in a predictable way. This predictability
+          // is why the Promise constructor synchronously invokes its
+          // executor callback, and why async functions synchronously
+          // execute code before the first await. Since we implement simple
+          // async functions in terms of async generators, it is especially
+          // important to get this right, even though it requires care.
+          previousPromise ? previousPromise.then(
+            callInvokeWithMethodAndArg,
+            // Avoid propagating failures to Promises returned by later
+            // invocations of the iterator.
+            callInvokeWithMethodAndArg
+          ) : callInvokeWithMethodAndArg();
+      }
+
+      // Define the unified helper method that is used to implement .next,
+      // .throw, and .return (see defineIteratorMethods).
+      this._invoke = enqueue;
+    }
+
+    defineIteratorMethods(AsyncIterator.prototype);
+    AsyncIterator.prototype[asyncIteratorSymbol] = function () {
+      return this;
+    };
+    exports.AsyncIterator = AsyncIterator;
+
+    // Note that simple async functions are implemented on top of
+    // AsyncIterator objects; they just return a Promise for the value of
+    // the final result produced by the iterator.
+    exports.async = function(innerFn, outerFn, self, tryLocsList) {
+      var iter = new AsyncIterator(
+        wrap(innerFn, outerFn, self, tryLocsList)
+      );
+
+      return exports.isGeneratorFunction(outerFn)
+        ? iter // If outerFn is a generator, return the full iterator.
+        : iter.next().then(function(result) {
+            return result.done ? result.value : iter.next();
+          });
+    };
+
+    function makeInvokeMethod(innerFn, self, context) {
+      var state = GenStateSuspendedStart;
+
+      return function invoke(method, arg) {
+        if (state === GenStateExecuting) {
+          throw new Error("Generator is already running");
+        }
+
+        if (state === GenStateCompleted) {
+          if (method === "throw") {
+            throw arg;
+          }
+
+          // Be forgiving, per 25.3.3.3.3 of the spec:
+          // https://people.mozilla.org/~jorendorff/es6-draft.html#sec-generatorresume
+          return doneResult();
+        }
+
+        context.method = method;
+        context.arg = arg;
+
+        while (true) {
+          var delegate = context.delegate;
+          if (delegate) {
+            var delegateResult = maybeInvokeDelegate(delegate, context);
+            if (delegateResult) {
+              if (delegateResult === ContinueSentinel) continue;
+              return delegateResult;
+            }
+          }
+
+          if (context.method === "next") {
+            // Setting context._sent for legacy support of Babel's
+            // function.sent implementation.
+            context.sent = context._sent = context.arg;
+
+          } else if (context.method === "throw") {
+            if (state === GenStateSuspendedStart) {
+              state = GenStateCompleted;
+              throw context.arg;
+            }
+
+            context.dispatchException(context.arg);
+
+          } else if (context.method === "return") {
+            context.abrupt("return", context.arg);
+          }
+
+          state = GenStateExecuting;
+
+          var record = tryCatch(innerFn, self, context);
+          if (record.type === "normal") {
+            // If an exception is thrown from innerFn, we leave state ===
+            // GenStateExecuting and loop back for another invocation.
+            state = context.done
+              ? GenStateCompleted
+              : GenStateSuspendedYield;
+
+            if (record.arg === ContinueSentinel) {
+              continue;
+            }
+
+            return {
+              value: record.arg,
+              done: context.done
+            };
+
+          } else if (record.type === "throw") {
+            state = GenStateCompleted;
+            // Dispatch the exception by looping back around to the
+            // context.dispatchException(context.arg) call above.
+            context.method = "throw";
+            context.arg = record.arg;
+          }
+        }
+      };
+    }
+
+    // Call delegate.iterator[context.method](context.arg) and handle the
+    // result, either by returning a { value, done } result from the
+    // delegate iterator, or by modifying context.method and context.arg,
+    // setting context.delegate to null, and returning the ContinueSentinel.
+    function maybeInvokeDelegate(delegate, context) {
+      var method = delegate.iterator[context.method];
+      if (method === undefined$1) {
+        // A .throw or .return when the delegate iterator has no .throw
+        // method always terminates the yield* loop.
+        context.delegate = null;
+
+        if (context.method === "throw") {
+          // Note: ["return"] must be used for ES3 parsing compatibility.
+          if (delegate.iterator["return"]) {
+            // If the delegate iterator has a return method, give it a
+            // chance to clean up.
+            context.method = "return";
+            context.arg = undefined$1;
+            maybeInvokeDelegate(delegate, context);
+
+            if (context.method === "throw") {
+              // If maybeInvokeDelegate(context) changed context.method from
+              // "return" to "throw", let that override the TypeError below.
+              return ContinueSentinel;
+            }
+          }
+
+          context.method = "throw";
+          context.arg = new TypeError(
+            "The iterator does not provide a 'throw' method");
+        }
+
+        return ContinueSentinel;
+      }
+
+      var record = tryCatch(method, delegate.iterator, context.arg);
+
+      if (record.type === "throw") {
+        context.method = "throw";
+        context.arg = record.arg;
+        context.delegate = null;
+        return ContinueSentinel;
+      }
+
+      var info = record.arg;
+
+      if (! info) {
+        context.method = "throw";
+        context.arg = new TypeError("iterator result is not an object");
+        context.delegate = null;
+        return ContinueSentinel;
+      }
+
+      if (info.done) {
+        // Assign the result of the finished delegate to the temporary
+        // variable specified by delegate.resultName (see delegateYield).
+        context[delegate.resultName] = info.value;
+
+        // Resume execution at the desired location (see delegateYield).
+        context.next = delegate.nextLoc;
+
+        // If context.method was "throw" but the delegate handled the
+        // exception, let the outer generator proceed normally. If
+        // context.method was "next", forget context.arg since it has been
+        // "consumed" by the delegate iterator. If context.method was
+        // "return", allow the original .return call to continue in the
+        // outer generator.
+        if (context.method !== "return") {
+          context.method = "next";
+          context.arg = undefined$1;
+        }
+
+      } else {
+        // Re-yield the result returned by the delegate method.
+        return info;
+      }
+
+      // The delegate iterator is finished, so forget it and continue with
+      // the outer generator.
+      context.delegate = null;
+      return ContinueSentinel;
+    }
+
+    // Define Generator.prototype.{next,throw,return} in terms of the
+    // unified ._invoke helper method.
+    defineIteratorMethods(Gp);
+
+    Gp[toStringTagSymbol] = "Generator";
+
+    // A Generator should always return itself as the iterator object when the
+    // @@iterator function is called on it. Some browsers' implementations of the
+    // iterator prototype chain incorrectly implement this, causing the Generator
+    // object to not be returned from this call. This ensures that doesn't happen.
+    // See https://github.com/facebook/regenerator/issues/274 for more details.
+    Gp[iteratorSymbol] = function() {
+      return this;
+    };
+
+    Gp.toString = function() {
+      return "[object Generator]";
+    };
+
+    function pushTryEntry(locs) {
+      var entry = { tryLoc: locs[0] };
+
+      if (1 in locs) {
+        entry.catchLoc = locs[1];
+      }
+
+      if (2 in locs) {
+        entry.finallyLoc = locs[2];
+        entry.afterLoc = locs[3];
+      }
+
+      this.tryEntries.push(entry);
+    }
+
+    function resetTryEntry(entry) {
+      var record = entry.completion || {};
+      record.type = "normal";
+      delete record.arg;
+      entry.completion = record;
+    }
+
+    function Context(tryLocsList) {
+      // The root entry object (effectively a try statement without a catch
+      // or a finally block) gives us a place to store values thrown from
+      // locations where there is no enclosing try statement.
+      this.tryEntries = [{ tryLoc: "root" }];
+      tryLocsList.forEach(pushTryEntry, this);
+      this.reset(true);
+    }
+
+    exports.keys = function(object) {
+      var keys = [];
+      for (var key in object) {
+        keys.push(key);
+      }
+      keys.reverse();
+
+      // Rather than returning an object with a next method, we keep
+      // things simple and return the next function itself.
+      return function next() {
+        while (keys.length) {
+          var key = keys.pop();
+          if (key in object) {
+            next.value = key;
+            next.done = false;
+            return next;
+          }
+        }
+
+        // To avoid creating an additional object, we just hang the .value
+        // and .done properties off the next function object itself. This
+        // also ensures that the minifier will not anonymize the function.
+        next.done = true;
+        return next;
+      };
+    };
+
+    function values(iterable) {
+      if (iterable) {
+        var iteratorMethod = iterable[iteratorSymbol];
+        if (iteratorMethod) {
+          return iteratorMethod.call(iterable);
+        }
+
+        if (typeof iterable.next === "function") {
+          return iterable;
+        }
+
+        if (!isNaN(iterable.length)) {
+          var i = -1, next = function next() {
+            while (++i < iterable.length) {
+              if (hasOwn.call(iterable, i)) {
+                next.value = iterable[i];
+                next.done = false;
+                return next;
+              }
+            }
+
+            next.value = undefined$1;
+            next.done = true;
+
+            return next;
+          };
+
+          return next.next = next;
+        }
+      }
+
+      // Return an iterator with no values.
+      return { next: doneResult };
+    }
+    exports.values = values;
+
+    function doneResult() {
+      return { value: undefined$1, done: true };
+    }
+
+    Context.prototype = {
+      constructor: Context,
+
+      reset: function(skipTempReset) {
+        this.prev = 0;
+        this.next = 0;
+        // Resetting context._sent for legacy support of Babel's
+        // function.sent implementation.
+        this.sent = this._sent = undefined$1;
+        this.done = false;
+        this.delegate = null;
+
+        this.method = "next";
+        this.arg = undefined$1;
+
+        this.tryEntries.forEach(resetTryEntry);
+
+        if (!skipTempReset) {
+          for (var name in this) {
+            // Not sure about the optimal order of these conditions:
+            if (name.charAt(0) === "t" &&
+                hasOwn.call(this, name) &&
+                !isNaN(+name.slice(1))) {
+              this[name] = undefined$1;
+            }
+          }
+        }
+      },
+
+      stop: function() {
+        this.done = true;
+
+        var rootEntry = this.tryEntries[0];
+        var rootRecord = rootEntry.completion;
+        if (rootRecord.type === "throw") {
+          throw rootRecord.arg;
+        }
+
+        return this.rval;
+      },
+
+      dispatchException: function(exception) {
+        if (this.done) {
+          throw exception;
+        }
+
+        var context = this;
+        function handle(loc, caught) {
+          record.type = "throw";
+          record.arg = exception;
+          context.next = loc;
+
+          if (caught) {
+            // If the dispatched exception was caught by a catch block,
+            // then let that catch block handle the exception normally.
+            context.method = "next";
+            context.arg = undefined$1;
+          }
+
+          return !! caught;
+        }
+
+        for (var i = this.tryEntries.length - 1; i >= 0; --i) {
+          var entry = this.tryEntries[i];
+          var record = entry.completion;
+
+          if (entry.tryLoc === "root") {
+            // Exception thrown outside of any try block that could handle
+            // it, so set the completion value of the entire function to
+            // throw the exception.
+            return handle("end");
+          }
+
+          if (entry.tryLoc <= this.prev) {
+            var hasCatch = hasOwn.call(entry, "catchLoc");
+            var hasFinally = hasOwn.call(entry, "finallyLoc");
+
+            if (hasCatch && hasFinally) {
+              if (this.prev < entry.catchLoc) {
+                return handle(entry.catchLoc, true);
+              } else if (this.prev < entry.finallyLoc) {
+                return handle(entry.finallyLoc);
+              }
+
+            } else if (hasCatch) {
+              if (this.prev < entry.catchLoc) {
+                return handle(entry.catchLoc, true);
+              }
+
+            } else if (hasFinally) {
+              if (this.prev < entry.finallyLoc) {
+                return handle(entry.finallyLoc);
+              }
+
+            } else {
+              throw new Error("try statement without catch or finally");
+            }
+          }
+        }
+      },
+
+      abrupt: function(type, arg) {
+        for (var i = this.tryEntries.length - 1; i >= 0; --i) {
+          var entry = this.tryEntries[i];
+          if (entry.tryLoc <= this.prev &&
+              hasOwn.call(entry, "finallyLoc") &&
+              this.prev < entry.finallyLoc) {
+            var finallyEntry = entry;
+            break;
+          }
+        }
+
+        if (finallyEntry &&
+            (type === "break" ||
+             type === "continue") &&
+            finallyEntry.tryLoc <= arg &&
+            arg <= finallyEntry.finallyLoc) {
+          // Ignore the finally entry if control is not jumping to a
+          // location outside the try/catch block.
+          finallyEntry = null;
+        }
+
+        var record = finallyEntry ? finallyEntry.completion : {};
+        record.type = type;
+        record.arg = arg;
+
+        if (finallyEntry) {
+          this.method = "next";
+          this.next = finallyEntry.finallyLoc;
+          return ContinueSentinel;
+        }
+
+        return this.complete(record);
+      },
+
+      complete: function(record, afterLoc) {
+        if (record.type === "throw") {
+          throw record.arg;
+        }
+
+        if (record.type === "break" ||
+            record.type === "continue") {
+          this.next = record.arg;
+        } else if (record.type === "return") {
+          this.rval = this.arg = record.arg;
+          this.method = "return";
+          this.next = "end";
+        } else if (record.type === "normal" && afterLoc) {
+          this.next = afterLoc;
+        }
+
+        return ContinueSentinel;
+      },
+
+      finish: function(finallyLoc) {
+        for (var i = this.tryEntries.length - 1; i >= 0; --i) {
+          var entry = this.tryEntries[i];
+          if (entry.finallyLoc === finallyLoc) {
+            this.complete(entry.completion, entry.afterLoc);
+            resetTryEntry(entry);
+            return ContinueSentinel;
+          }
+        }
+      },
+
+      "catch": function(tryLoc) {
+        for (var i = this.tryEntries.length - 1; i >= 0; --i) {
+          var entry = this.tryEntries[i];
+          if (entry.tryLoc === tryLoc) {
+            var record = entry.completion;
+            if (record.type === "throw") {
+              var thrown = record.arg;
+              resetTryEntry(entry);
+            }
+            return thrown;
+          }
+        }
+
+        // The context.catch method must only be called with a location
+        // argument that corresponds to a known catch block.
+        throw new Error("illegal catch attempt");
+      },
+
+      delegateYield: function(iterable, resultName, nextLoc) {
+        this.delegate = {
+          iterator: values(iterable),
+          resultName: resultName,
+          nextLoc: nextLoc
+        };
+
+        if (this.method === "next") {
+          // Deliberately forget the last sent value so that we don't
+          // accidentally pass it on to the delegate.
+          this.arg = undefined$1;
+        }
+
+        return ContinueSentinel;
+      }
+    };
+
+    // Regardless of whether this script is executing as a CommonJS module
+    // or not, return the runtime object so that we can declare the variable
+    // regeneratorRuntime in the outer scope, which allows this module to be
+    // injected easily by `bin/regenerator --include-runtime script.js`.
+    return exports;
+
+  }(
+    // If this script is executing as a CommonJS module, use module.exports
+    // as the regeneratorRuntime namespace. Otherwise create a new empty
+    // object. Either way, the resulting object will be used to initialize
+    // the regeneratorRuntime variable at the top of this file.
+    module.exports
+  ));
+
+  try {
+    regeneratorRuntime = runtime;
+  } catch (accidentalStrictMode) {
+    // This module should not be running in strict mode, so the above
+    // assignment should always work unless something is misconfigured. Just
+    // in case runtime.js accidentally runs in strict mode, we can escape
+    // strict mode using a global Function call. This could conceivably fail
+    // if a Content Security Policy forbids using Function, but in that case
+    // the proper solution is to fix the accidental strict mode problem. If
+    // you've misconfigured your bundler to force strict mode and applied a
+    // CSP to forbid Function, and you're not willing to fix either of those
+    // problems, please detail your unique predicament in a GitHub issue.
+    Function("r", "regeneratorRuntime = r")(runtime);
+  }
+  });
+
+  var regenerator = runtime_1;
+
+  function asyncGeneratorStep(gen, resolve, reject, _next, _throw, key, arg) {
+    try {
+      var info = gen[key](arg);
+      var value = info.value;
+    } catch (error) {
+      reject(error);
+      return;
+    }
+
+    if (info.done) {
+      resolve(value);
+    } else {
+      Promise.resolve(value).then(_next, _throw);
+    }
+  }
+
+  function _asyncToGenerator(fn) {
+    return function () {
+      var self = this,
+          args = arguments;
+      return new Promise(function (resolve, reject) {
+        var gen = fn.apply(self, args);
+
+        function _next(value) {
+          asyncGeneratorStep(gen, resolve, reject, _next, _throw, "next", value);
+        }
+
+        function _throw(err) {
+          asyncGeneratorStep(gen, resolve, reject, _next, _throw, "throw", err);
+        }
+
+        _next(undefined);
+      });
+    };
+  }
+
+  var asyncToGenerator = _asyncToGenerator;
+
+  var noCacheHeaders = {
+    pragma: 'no-cache',
+    'cache-control': 'no-cache'
+  };
+
+  var getTicket = function getTicket(url) {
+    return fetch(url, {
+      cache: 'no-store',
+      headers: noCacheHeaders
+    }).then(function (response) {
+      if (!response.ok) {
+        throw Error("Error fetching ticket from \"".concat(url, "\": ").concat(response.statusText));
+      }
+
+      return response.json();
+    });
+  };
+  /* updateTicket should be called when the client wants to extend the session beyond
+    ticket's TTL. The URL handler on the server should use putTicket to get new ticket
+    whith the same credentials as the old one. The URL should return JSON object:
+    {"oldTicket": "<previous_ticket>", "newTicket": "<new_ticket>", "ttl": <new_ticket_ttl>}
+    The functions ultimately resolves to:
+    {"ticket": "<new_ticket>", "ttl": <new_ticket_ttl>}
+  */
+
+
+  var updateTicket = function updateTicket(url) {
+    return fetch(url, {
+      cache: 'no-store',
+      headers: noCacheHeaders
+    }).then(function (response) {
+      if (!response.ok) {
+        throw Error("Error updating ticket from \"".concat(url, "\": ").concat(response.statusText));
+      }
+
+      return response.json();
+    }).then(function (response) {
+      if (!response.newTicket || !response.oldTicket || !response.ttl) {
+        throw Error("Invalid response ot updateTicket: ".concat(response));
+      }
+
+      var result = {
+        ticket: response.newTicket,
+        ttl: response.ttl
+      };
+
+      if (!isClientKeyTicket(response.newTicket)) {
+        return result;
+      } // We have to call getWebSocketResult and getClientNonce to check for Nonce and update
+      // TTL on original ticket
+
+
+      return getWebSocketResult({
+        ticket: response.newTicket,
+        clientKeyOnly: true
+      }).then(function (wsResult) {
+        if (!wsResult.clientKey) {
+          throw Error("No client key associated with the ticket ".concat(response.newTicket));
+        }
+
+        return getClientNonce(wsResult.originalTicket ? wsResult.originalTicket : response.newTicket, wsResult.ttl);
+      }).then(function () {
+        return result;
+      });
+    });
+  };
+
+  var toString = {}.toString;
+
+  var isarray = Array.isArray || function (arr) {
+    return toString.call(arr) == '[object Array]';
+  };
+
+  var K_MAX_LENGTH = 0x7fffffff;
+
+  function Buffer (arg, offset, length) {
+    if (typeof arg === 'number') {
+      return allocUnsafe(arg)
+    }
+
+    return from(arg, offset, length)
+  }
+
+  Buffer.prototype.__proto__ = Uint8Array.prototype;
+  Buffer.__proto__ = Uint8Array;
+
+  // Fix subarray() in ES2016. See: https://github.com/feross/buffer/pull/97
+  if (typeof Symbol !== 'undefined' && Symbol.species &&
+      Buffer[Symbol.species] === Buffer) {
+    Object.defineProperty(Buffer, Symbol.species, {
+      value: null,
+      configurable: true,
+      enumerable: false,
+      writable: false
+    });
+  }
+
+  function checked (length) {
+    // Note: cannot use `length < K_MAX_LENGTH` here because that fails when
+    // length is NaN (which is otherwise coerced to zero.)
+    if (length >= K_MAX_LENGTH) {
+      throw new RangeError('Attempt to allocate Buffer larger than maximum ' +
+                           'size: 0x' + K_MAX_LENGTH.toString(16) + ' bytes')
+    }
+    return length | 0
+  }
+
+  function isnan (val) {
+    return val !== val // eslint-disable-line no-self-compare
+  }
+
+  function createBuffer (length) {
+    var buf = new Uint8Array(length);
+    buf.__proto__ = Buffer.prototype;
+    return buf
+  }
+
+  function allocUnsafe (size) {
+    return createBuffer(size < 0 ? 0 : checked(size) | 0)
+  }
+
+  function fromString (string) {
+    var length = byteLength(string) | 0;
+    var buf = createBuffer(length);
+
+    var actual = buf.write(string);
+
+    if (actual !== length) {
+      // Writing a hex string, for example, that contains invalid characters will
+      // cause everything after the first invalid character to be ignored. (e.g.
+      // 'abxxcd' will be treated as 'ab')
+      buf = buf.slice(0, actual);
+    }
+
+    return buf
+  }
+
+  function fromArrayLike (array) {
+    var length = array.length < 0 ? 0 : checked(array.length) | 0;
+    var buf = createBuffer(length);
+    for (var i = 0; i < length; i += 1) {
+      buf[i] = array[i] & 255;
+    }
+    return buf
+  }
+
+  function fromArrayBuffer (array, byteOffset, length) {
+    if (byteOffset < 0 || array.byteLength < byteOffset) {
+      throw new RangeError('\'offset\' is out of bounds')
+    }
+
+    if (array.byteLength < byteOffset + (length || 0)) {
+      throw new RangeError('\'length\' is out of bounds')
+    }
+
+    var buf;
+    if (byteOffset === undefined && length === undefined) {
+      buf = new Uint8Array(array);
+    } else if (length === undefined) {
+      buf = new Uint8Array(array, byteOffset);
+    } else {
+      buf = new Uint8Array(array, byteOffset, length);
+    }
+
+    // Return an augmented `Uint8Array` instance
+    buf.__proto__ = Buffer.prototype;
+    return buf
+  }
+
+  function fromObject (obj) {
+    if (Buffer.isBuffer(obj)) {
+      var len = checked(obj.length) | 0;
+      var buf = createBuffer(len);
+
+      if (buf.length === 0) {
+        return buf
+      }
+
+      obj.copy(buf, 0, 0, len);
+      return buf
+    }
+
+    if (obj) {
+      if ((typeof ArrayBuffer !== 'undefined' &&
+          obj.buffer instanceof ArrayBuffer) || 'length' in obj) {
+        if (typeof obj.length !== 'number' || isnan(obj.length)) {
+          return createBuffer(0)
+        }
+        return fromArrayLike(obj)
+      }
+
+      if (obj.type === 'Buffer' && Array.isArray(obj.data)) {
+        return fromArrayLike(obj.data)
+      }
+    }
+
+    throw new TypeError('First argument must be a string, Buffer, ArrayBuffer, Array, or array-like object.')
+  }
+
+  function utf8ToBytes (string, units) {
+    units = units || Infinity;
+    var codePoint;
+    var length = string.length;
+    var leadSurrogate = null;
+    var bytes = [];
+
+    for (var i = 0; i < length; ++i) {
+      codePoint = string.charCodeAt(i);
+
+      // is surrogate component
+      if (codePoint > 0xD7FF && codePoint < 0xE000) {
+        // last char was a lead
+        if (!leadSurrogate) {
+          // no lead yet
+          if (codePoint > 0xDBFF) {
+            // unexpected trail
+            if ((units -= 3) > -1) bytes.push(0xEF, 0xBF, 0xBD);
+            continue
+          } else if (i + 1 === length) {
+            // unpaired lead
+            if ((units -= 3) > -1) bytes.push(0xEF, 0xBF, 0xBD);
+            continue
+          }
+
+          // valid lead
+          leadSurrogate = codePoint;
+
+          continue
+        }
+
+        // 2 leads in a row
+        if (codePoint < 0xDC00) {
+          if ((units -= 3) > -1) bytes.push(0xEF, 0xBF, 0xBD);
+          leadSurrogate = codePoint;
+          continue
+        }
+
+        // valid surrogate pair
+        codePoint = (leadSurrogate - 0xD800 << 10 | codePoint - 0xDC00) + 0x10000;
+      } else if (leadSurrogate) {
+        // valid bmp char, but last char was a lead
+        if ((units -= 3) > -1) bytes.push(0xEF, 0xBF, 0xBD);
+      }
+
+      leadSurrogate = null;
+
+      // encode utf8
+      if (codePoint < 0x80) {
+        if ((units -= 1) < 0) break
+        bytes.push(codePoint);
+      } else if (codePoint < 0x800) {
+        if ((units -= 2) < 0) break
+        bytes.push(
+          codePoint >> 0x6 | 0xC0,
+          codePoint & 0x3F | 0x80
+        );
+      } else if (codePoint < 0x10000) {
+        if ((units -= 3) < 0) break
+        bytes.push(
+          codePoint >> 0xC | 0xE0,
+          codePoint >> 0x6 & 0x3F | 0x80,
+          codePoint & 0x3F | 0x80
+        );
+      } else if (codePoint < 0x110000) {
+        if ((units -= 4) < 0) break
+        bytes.push(
+          codePoint >> 0x12 | 0xF0,
+          codePoint >> 0xC & 0x3F | 0x80,
+          codePoint >> 0x6 & 0x3F | 0x80,
+          codePoint & 0x3F | 0x80
+        );
+      } else {
+        throw new Error('Invalid code point')
+      }
+    }
+
+    return bytes
+  }
+
+  function byteLength (string) {
+    if (Buffer.isBuffer(string)) {
+      return string.length
+    }
+    if (typeof ArrayBuffer !== 'undefined' && typeof ArrayBuffer.isView === 'function' &&
+        (ArrayBuffer.isView(string) || string instanceof ArrayBuffer)) {
+      return string.byteLength
+    }
+    if (typeof string !== 'string') {
+      string = '' + string;
+    }
+
+    var len = string.length;
+    if (len === 0) return 0
+
+    return utf8ToBytes(string).length
+  }
+
+  function blitBuffer (src, dst, offset, length) {
+    for (var i = 0; i < length; ++i) {
+      if ((i + offset >= dst.length) || (i >= src.length)) break
+      dst[i + offset] = src[i];
+    }
+    return i
+  }
+
+  function utf8Write (buf, string, offset, length) {
+    return blitBuffer(utf8ToBytes(string, buf.length - offset), buf, offset, length)
+  }
+
+  function from (value, offset, length) {
+    if (typeof value === 'number') {
+      throw new TypeError('"value" argument must not be a number')
+    }
+
+    if (typeof ArrayBuffer !== 'undefined' && value instanceof ArrayBuffer) {
+      return fromArrayBuffer(value, offset, length)
+    }
+
+    if (typeof value === 'string') {
+      return fromString(value, offset)
+    }
+
+    return fromObject(value)
+  }
+
+  Buffer.prototype.write = function write (string, offset, length) {
+    // Buffer#write(string)
+    if (offset === undefined) {
+      length = this.length;
+      offset = 0;
+    // Buffer#write(string, encoding)
+    } else if (length === undefined && typeof offset === 'string') {
+      length = this.length;
+      offset = 0;
+    // Buffer#write(string, offset[, length])
+    } else if (isFinite(offset)) {
+      offset = offset | 0;
+      if (isFinite(length)) {
+        length = length | 0;
+      } else {
+        length = undefined;
+      }
+    }
+
+    var remaining = this.length - offset;
+    if (length === undefined || length > remaining) length = remaining;
+
+    if ((string.length > 0 && (length < 0 || offset < 0)) || offset > this.length) {
+      throw new RangeError('Attempt to write outside buffer bounds')
+    }
+
+    return utf8Write(this, string, offset, length)
+  };
+
+  Buffer.prototype.slice = function slice (start, end) {
+    var len = this.length;
+    start = ~~start;
+    end = end === undefined ? len : ~~end;
+
+    if (start < 0) {
+      start += len;
+      if (start < 0) start = 0;
+    } else if (start > len) {
+      start = len;
+    }
+
+    if (end < 0) {
+      end += len;
+      if (end < 0) end = 0;
+    } else if (end > len) {
+      end = len;
+    }
+
+    if (end < start) end = start;
+
+    var newBuf = this.subarray(start, end);
+    // Return an augmented `Uint8Array` instance
+    newBuf.__proto__ = Buffer.prototype;
+    return newBuf
+  };
+
+  Buffer.prototype.copy = function copy (target, targetStart, start, end) {
+    if (!start) start = 0;
+    if (!end && end !== 0) end = this.length;
+    if (targetStart >= target.length) targetStart = target.length;
+    if (!targetStart) targetStart = 0;
+    if (end > 0 && end < start) end = start;
+
+    // Copy 0 bytes; we're done
+    if (end === start) return 0
+    if (target.length === 0 || this.length === 0) return 0
+
+    // Fatal error conditions
+    if (targetStart < 0) {
+      throw new RangeError('targetStart out of bounds')
+    }
+    if (start < 0 || start >= this.length) throw new RangeError('sourceStart out of bounds')
+    if (end < 0) throw new RangeError('sourceEnd out of bounds')
+
+    // Are we oob?
+    if (end > this.length) end = this.length;
+    if (target.length - targetStart < end - start) {
+      end = target.length - targetStart + start;
+    }
+
+    var len = end - start;
+    var i;
+
+    if (this === target && start < targetStart && targetStart < end) {
+      // descending copy from end
+      for (i = len - 1; i >= 0; --i) {
+        target[i + targetStart] = this[i + start];
+      }
+    } else if (len < 1000) {
+      // ascending copy from start
+      for (i = 0; i < len; ++i) {
+        target[i + targetStart] = this[i + start];
+      }
+    } else {
+      Uint8Array.prototype.set.call(
+        target,
+        this.subarray(start, start + len),
+        targetStart
+      );
+    }
+
+    return len
+  };
+
+  Buffer.prototype.fill = function fill (val, start, end) {
+    // Handle string cases:
+    if (typeof val === 'string') {
+      if (typeof start === 'string') {
+        start = 0;
+        end = this.length;
+      } else if (typeof end === 'string') {
+        end = this.length;
+      }
+      if (val.length === 1) {
+        var code = val.charCodeAt(0);
+        if (code < 256) {
+          val = code;
+        }
+      }
+    } else if (typeof val === 'number') {
+      val = val & 255;
+    }
+
+    // Invalid ranges are not set to a default, so can range check early.
+    if (start < 0 || this.length < start || this.length < end) {
+      throw new RangeError('Out of range index')
+    }
+
+    if (end <= start) {
+      return this
+    }
+
+    start = start >>> 0;
+    end = end === undefined ? this.length : end >>> 0;
+
+    if (!val) val = 0;
+
+    var i;
+    if (typeof val === 'number') {
+      for (i = start; i < end; ++i) {
+        this[i] = val;
+      }
+    } else {
+      var bytes = Buffer.isBuffer(val)
+        ? val
+        : new Buffer(val);
+      var len = bytes.length;
+      for (i = 0; i < end - start; ++i) {
+        this[i + start] = bytes[i % len];
+      }
+    }
+
+    return this
+  };
+
+  Buffer.concat = function concat (list, length) {
+    if (!isarray(list)) {
+      throw new TypeError('"list" argument must be an Array of Buffers')
+    }
+
+    if (list.length === 0) {
+      return createBuffer(null, 0)
+    }
+
+    var i;
+    if (length === undefined) {
+      length = 0;
+      for (i = 0; i < list.length; ++i) {
+        length += list[i].length;
+      }
+    }
+
+    var buffer = allocUnsafe(length);
+    var pos = 0;
+    for (i = 0; i < list.length; ++i) {
+      var buf = list[i];
+      if (!Buffer.isBuffer(buf)) {
+        throw new TypeError('"list" argument must be an Array of Buffers')
+      }
+      buf.copy(buffer, pos);
+      pos += buf.length;
+    }
+    return buffer
+  };
+
+  Buffer.byteLength = byteLength;
+
+  Buffer.prototype._isBuffer = true;
+  Buffer.isBuffer = function isBuffer (b) {
+    return !!(b != null && b._isBuffer)
+  };
+
+  var typedarrayBuffer = Buffer;
+
+  var toSJISFunction;
+  var CODEWORDS_COUNT = [
+    0, // Not used
+    26, 44, 70, 100, 134, 172, 196, 242, 292, 346,
+    404, 466, 532, 581, 655, 733, 815, 901, 991, 1085,
+    1156, 1258, 1364, 1474, 1588, 1706, 1828, 1921, 2051, 2185,
+    2323, 2465, 2611, 2761, 2876, 3034, 3196, 3362, 3532, 3706
+  ];
+
+  /**
+   * Returns the QR Code size for the specified version
+   *
+   * @param  {Number} version QR Code version
+   * @return {Number}         size of QR code
+   */
+  var getSymbolSize = function getSymbolSize (version) {
+    if (!version) throw new Error('"version" cannot be null or undefined')
+    if (version < 1 || version > 40) throw new Error('"version" should be in range from 1 to 40')
+    return version * 4 + 17
+  };
+
+  /**
+   * Returns the total number of codewords used to store data and EC information.
+   *
+   * @param  {Number} version QR Code version
+   * @return {Number}         Data length in bits
+   */
+  var getSymbolTotalCodewords = function getSymbolTotalCodewords (version) {
+    return CODEWORDS_COUNT[version]
+  };
+
+  /**
+   * Encode data with Bose-Chaudhuri-Hocquenghem
+   *
+   * @param  {Number} data Value to encode
+   * @return {Number}      Encoded value
+   */
+  var getBCHDigit = function (data) {
+    var digit = 0;
+
+    while (data !== 0) {
+      digit++;
+      data >>>= 1;
+    }
+
+    return digit
+  };
+
+  var setToSJISFunction = function setToSJISFunction (f) {
+    if (typeof f !== 'function') {
+      throw new Error('"toSJISFunc" is not a valid function.')
+    }
+
+    toSJISFunction = f;
+  };
+
+  var isKanjiModeEnabled = function () {
+    return typeof toSJISFunction !== 'undefined'
+  };
+
+  var toSJIS = function toSJIS (kanji) {
+    return toSJISFunction(kanji)
+  };
+
+  var utils = {
+  	getSymbolSize: getSymbolSize,
+  	getSymbolTotalCodewords: getSymbolTotalCodewords,
+  	getBCHDigit: getBCHDigit,
+  	setToSJISFunction: setToSJISFunction,
+  	isKanjiModeEnabled: isKanjiModeEnabled,
+  	toSJIS: toSJIS
+  };
+
+  var errorCorrectionLevel = createCommonjsModule(function (module, exports) {
+  exports.L = { bit: 1 };
+  exports.M = { bit: 0 };
+  exports.Q = { bit: 3 };
+  exports.H = { bit: 2 };
+
+  function fromString (string) {
+    if (typeof string !== 'string') {
+      throw new Error('Param is not a string')
+    }
+
+    var lcStr = string.toLowerCase();
+
+    switch (lcStr) {
+      case 'l':
+      case 'low':
+        return exports.L
+
+      case 'm':
+      case 'medium':
+        return exports.M
+
+      case 'q':
+      case 'quartile':
+        return exports.Q
+
+      case 'h':
+      case 'high':
+        return exports.H
+
+      default:
+        throw new Error('Unknown EC Level: ' + string)
+    }
+  }
+
+  exports.isValid = function isValid (level) {
+    return level && typeof level.bit !== 'undefined' &&
+      level.bit >= 0 && level.bit < 4
+  };
+
+  exports.from = function from (value, defaultValue) {
+    if (exports.isValid(value)) {
+      return value
+    }
+
+    try {
+      return fromString(value)
+    } catch (e) {
+      return defaultValue
+    }
+  };
+  });
+  var errorCorrectionLevel_1 = errorCorrectionLevel.L;
+  var errorCorrectionLevel_2 = errorCorrectionLevel.M;
+  var errorCorrectionLevel_3 = errorCorrectionLevel.Q;
+  var errorCorrectionLevel_4 = errorCorrectionLevel.H;
+  var errorCorrectionLevel_5 = errorCorrectionLevel.isValid;
+
+  function BitBuffer () {
+    this.buffer = [];
+    this.length = 0;
+  }
+
+  BitBuffer.prototype = {
+
+    get: function (index) {
+      var bufIndex = Math.floor(index / 8);
+      return ((this.buffer[bufIndex] >>> (7 - index % 8)) & 1) === 1
+    },
+
+    put: function (num, length) {
+      for (var i = 0; i < length; i++) {
+        this.putBit(((num >>> (length - i - 1)) & 1) === 1);
+      }
+    },
+
+    getLengthInBits: function () {
+      return this.length
+    },
+
+    putBit: function (bit) {
+      var bufIndex = Math.floor(this.length / 8);
+      if (this.buffer.length <= bufIndex) {
+        this.buffer.push(0);
+      }
+
+      if (bit) {
+        this.buffer[bufIndex] |= (0x80 >>> (this.length % 8));
+      }
+
+      this.length++;
+    }
+  };
+
+  var bitBuffer = BitBuffer;
+
+  /**
+   * Helper class to handle QR Code symbol modules
+   *
+   * @param {Number} size Symbol size
+   */
+  function BitMatrix (size) {
+    if (!size || size < 1) {
+      throw new Error('BitMatrix size must be defined and greater than 0')
+    }
+
+    this.size = size;
+    this.data = new typedarrayBuffer(size * size);
+    this.data.fill(0);
+    this.reservedBit = new typedarrayBuffer(size * size);
+    this.reservedBit.fill(0);
+  }
+
+  /**
+   * Set bit value at specified location
+   * If reserved flag is set, this bit will be ignored during masking process
+   *
+   * @param {Number}  row
+   * @param {Number}  col
+   * @param {Boolean} value
+   * @param {Boolean} reserved
+   */
+  BitMatrix.prototype.set = function (row, col, value, reserved) {
+    var index = row * this.size + col;
+    this.data[index] = value;
+    if (reserved) this.reservedBit[index] = true;
+  };
+
+  /**
+   * Returns bit value at specified location
+   *
+   * @param  {Number}  row
+   * @param  {Number}  col
+   * @return {Boolean}
+   */
+  BitMatrix.prototype.get = function (row, col) {
+    return this.data[row * this.size + col]
+  };
+
+  /**
+   * Applies xor operator at specified location
+   * (used during masking process)
+   *
+   * @param {Number}  row
+   * @param {Number}  col
+   * @param {Boolean} value
+   */
+  BitMatrix.prototype.xor = function (row, col, value) {
+    this.data[row * this.size + col] ^= value;
+  };
+
+  /**
+   * Check if bit at specified location is reserved
+   *
+   * @param {Number}   row
+   * @param {Number}   col
+   * @return {Boolean}
+   */
+  BitMatrix.prototype.isReserved = function (row, col) {
+    return this.reservedBit[row * this.size + col]
+  };
+
+  var bitMatrix = BitMatrix;
+
+  var alignmentPattern = createCommonjsModule(function (module, exports) {
+  /**
+   * Alignment pattern are fixed reference pattern in defined positions
+   * in a matrix symbology, which enables the decode software to re-synchronise
+   * the coordinate mapping of the image modules in the event of moderate amounts
+   * of distortion of the image.
+   *
+   * Alignment patterns are present only in QR Code symbols of version 2 or larger
+   * and their number depends on the symbol version.
+   */
+
+  var getSymbolSize = utils.getSymbolSize;
+
+  /**
+   * Calculate the row/column coordinates of the center module of each alignment pattern
+   * for the specified QR Code version.
+   *
+   * The alignment patterns are positioned symmetrically on either side of the diagonal
+   * running from the top left corner of the symbol to the bottom right corner.
+   *
+   * Since positions are simmetrical only half of the coordinates are returned.
+   * Each item of the array will represent in turn the x and y coordinate.
+   * @see {@link getPositions}
+   *
+   * @param  {Number} version QR Code version
+   * @return {Array}          Array of coordinate
+   */
+  exports.getRowColCoords = function getRowColCoords (version) {
+    if (version === 1) return []
+
+    var posCount = Math.floor(version / 7) + 2;
+    var size = getSymbolSize(version);
+    var intervals = size === 145 ? 26 : Math.ceil((size - 13) / (2 * posCount - 2)) * 2;
+    var positions = [size - 7]; // Last coord is always (size - 7)
+
+    for (var i = 1; i < posCount - 1; i++) {
+      positions[i] = positions[i - 1] - intervals;
+    }
+
+    positions.push(6); // First coord is always 6
+
+    return positions.reverse()
+  };
+
+  /**
+   * Returns an array containing the positions of each alignment pattern.
+   * Each array's element represent the center point of the pattern as (x, y) coordinates
+   *
+   * Coordinates are calculated expanding the row/column coordinates returned by {@link getRowColCoords}
+   * and filtering out the items that overlaps with finder pattern
+   *
+   * @example
+   * For a Version 7 symbol {@link getRowColCoords} returns values 6, 22 and 38.
+   * The alignment patterns, therefore, are to be centered on (row, column)
+   * positions (6,22), (22,6), (22,22), (22,38), (38,22), (38,38).
+   * Note that the coordinates (6,6), (6,38), (38,6) are occupied by finder patterns
+   * and are not therefore used for alignment patterns.
+   *
+   * var pos = getPositions(7)
+   * // [[6,22], [22,6], [22,22], [22,38], [38,22], [38,38]]
+   *
+   * @param  {Number} version QR Code version
+   * @return {Array}          Array of coordinates
+   */
+  exports.getPositions = function getPositions (version) {
+    var coords = [];
+    var pos = exports.getRowColCoords(version);
+    var posLength = pos.length;
+
+    for (var i = 0; i < posLength; i++) {
+      for (var j = 0; j < posLength; j++) {
+        // Skip if position is occupied by finder patterns
+        if ((i === 0 && j === 0) ||             // top-left
+            (i === 0 && j === posLength - 1) || // bottom-left
+            (i === posLength - 1 && j === 0)) { // top-right
+          continue
+        }
+
+        coords.push([pos[i], pos[j]]);
+      }
+    }
+
+    return coords
+  };
+  });
+  var alignmentPattern_1 = alignmentPattern.getRowColCoords;
+  var alignmentPattern_2 = alignmentPattern.getPositions;
+
+  var getSymbolSize$1 = utils.getSymbolSize;
+  var FINDER_PATTERN_SIZE = 7;
+
+  /**
+   * Returns an array containing the positions of each finder pattern.
+   * Each array's element represent the top-left point of the pattern as (x, y) coordinates
+   *
+   * @param  {Number} version QR Code version
+   * @return {Array}          Array of coordinates
+   */
+  var getPositions = function getPositions (version) {
+    var size = getSymbolSize$1(version);
+
+    return [
+      // top-left
+      [0, 0],
+      // top-right
+      [size - FINDER_PATTERN_SIZE, 0],
+      // bottom-left
+      [0, size - FINDER_PATTERN_SIZE]
+    ]
+  };
+
+  var finderPattern = {
+  	getPositions: getPositions
+  };
+
+  var maskPattern = createCommonjsModule(function (module, exports) {
+  /**
+   * Data mask pattern reference
+   * @type {Object}
+   */
+  exports.Patterns = {
+    PATTERN000: 0,
+    PATTERN001: 1,
+    PATTERN010: 2,
+    PATTERN011: 3,
+    PATTERN100: 4,
+    PATTERN101: 5,
+    PATTERN110: 6,
+    PATTERN111: 7
+  };
+
+  /**
+   * Weighted penalty scores for the undesirable features
+   * @type {Object}
+   */
+  var PenaltyScores = {
+    N1: 3,
+    N2: 3,
+    N3: 40,
+    N4: 10
+  };
+
+  /**
+  * Find adjacent modules in row/column with the same color
+  * and assign a penalty value.
+  *
+  * Points: N1 + i
+  * i is the amount by which the number of adjacent modules of the same color exceeds 5
+  */
+  exports.getPenaltyN1 = function getPenaltyN1 (data) {
+    var size = data.size;
+    var points = 0;
+    var sameCountCol = 0;
+    var sameCountRow = 0;
+    var lastCol = null;
+    var lastRow = null;
+
+    for (var row = 0; row < size; row++) {
+      sameCountCol = sameCountRow = 0;
+      lastCol = lastRow = null;
+
+      for (var col = 0; col < size; col++) {
+        var module = data.get(row, col);
+        if (module === lastCol) {
+          sameCountCol++;
+        } else {
+          if (sameCountCol >= 5) points += PenaltyScores.N1 + (sameCountCol - 5);
+          lastCol = module;
+          sameCountCol = 1;
+        }
+
+        module = data.get(col, row);
+        if (module === lastRow) {
+          sameCountRow++;
+        } else {
+          if (sameCountRow >= 5) points += PenaltyScores.N1 + (sameCountRow - 5);
+          lastRow = module;
+          sameCountRow = 1;
+        }
+      }
+
+      if (sameCountCol >= 5) points += PenaltyScores.N1 + (sameCountCol - 5);
+      if (sameCountRow >= 5) points += PenaltyScores.N1 + (sameCountRow - 5);
+    }
+
+    return points
+  };
+
+  /**
+   * Find 2x2 blocks with the same color and assign a penalty value
+   *
+   * Points: N2 * (m - 1) * (n - 1)
+   */
+  exports.getPenaltyN2 = function getPenaltyN2 (data) {
+    var size = data.size;
+    var points = 0;
+
+    for (var row = 0; row < size - 1; row++) {
+      for (var col = 0; col < size - 1; col++) {
+        var last = data.get(row, col) +
+          data.get(row, col + 1) +
+          data.get(row + 1, col) +
+          data.get(row + 1, col + 1);
+
+        if (last === 4 || last === 0) points++;
+      }
+    }
+
+    return points * PenaltyScores.N2
+  };
+
+  /**
+   * Find 1:1:3:1:1 ratio (dark:light:dark:light:dark) pattern in row/column,
+   * preceded or followed by light area 4 modules wide
+   *
+   * Points: N3 * number of pattern found
+   */
+  exports.getPenaltyN3 = function getPenaltyN3 (data) {
+    var size = data.size;
+    var points = 0;
+    var bitsCol = 0;
+    var bitsRow = 0;
+
+    for (var row = 0; row < size; row++) {
+      bitsCol = bitsRow = 0;
+      for (var col = 0; col < size; col++) {
+        bitsCol = ((bitsCol << 1) & 0x7FF) | data.get(row, col);
+        if (col >= 10 && (bitsCol === 0x5D0 || bitsCol === 0x05D)) points++;
+
+        bitsRow = ((bitsRow << 1) & 0x7FF) | data.get(col, row);
+        if (col >= 10 && (bitsRow === 0x5D0 || bitsRow === 0x05D)) points++;
+      }
+    }
+
+    return points * PenaltyScores.N3
+  };
+
+  /**
+   * Calculate proportion of dark modules in entire symbol
+   *
+   * Points: N4 * k
+   *
+   * k is the rating of the deviation of the proportion of dark modules
+   * in the symbol from 50% in steps of 5%
+   */
+  exports.getPenaltyN4 = function getPenaltyN4 (data) {
+    var darkCount = 0;
+    var modulesCount = data.data.length;
+
+    for (var i = 0; i < modulesCount; i++) darkCount += data.data[i];
+
+    var k = Math.abs(Math.ceil((darkCount * 100 / modulesCount) / 5) - 10);
+
+    return k * PenaltyScores.N4
+  };
+
+  /**
+   * Return mask value at given position
+   *
+   * @param  {Number} maskPattern Pattern reference value
+   * @param  {Number} i           Row
+   * @param  {Number} j           Column
+   * @return {Boolean}            Mask value
+   */
+  function getMaskAt (maskPattern, i, j) {
+    switch (maskPattern) {
+      case exports.Patterns.PATTERN000: return (i + j) % 2 === 0
+      case exports.Patterns.PATTERN001: return i % 2 === 0
+      case exports.Patterns.PATTERN010: return j % 3 === 0
+      case exports.Patterns.PATTERN011: return (i + j) % 3 === 0
+      case exports.Patterns.PATTERN100: return (Math.floor(i / 2) + Math.floor(j / 3)) % 2 === 0
+      case exports.Patterns.PATTERN101: return (i * j) % 2 + (i * j) % 3 === 0
+      case exports.Patterns.PATTERN110: return ((i * j) % 2 + (i * j) % 3) % 2 === 0
+      case exports.Patterns.PATTERN111: return ((i * j) % 3 + (i + j) % 2) % 2 === 0
+
+      default: throw new Error('bad maskPattern:' + maskPattern)
+    }
+  }
+
+  /**
+   * Apply a mask pattern to a BitMatrix
+   *
+   * @param  {Number}    pattern Pattern reference number
+   * @param  {BitMatrix} data    BitMatrix data
+   */
+  exports.applyMask = function applyMask (pattern, data) {
+    var size = data.size;
+
+    for (var col = 0; col < size; col++) {
+      for (var row = 0; row < size; row++) {
+        if (data.isReserved(row, col)) continue
+        data.xor(row, col, getMaskAt(pattern, row, col));
+      }
+    }
+  };
+
+  /**
+   * Returns the best mask pattern for data
+   *
+   * @param  {BitMatrix} data
+   * @return {Number} Mask pattern reference number
+   */
+  exports.getBestMask = function getBestMask (data, setupFormatFunc) {
+    var numPatterns = Object.keys(exports.Patterns).length;
+    var bestPattern = 0;
+    var lowerPenalty = Infinity;
+
+    for (var p = 0; p < numPatterns; p++) {
+      setupFormatFunc(p);
+      exports.applyMask(p, data);
+
+      // Calculate penalty
+      var penalty =
+        exports.getPenaltyN1(data) +
+        exports.getPenaltyN2(data) +
+        exports.getPenaltyN3(data) +
+        exports.getPenaltyN4(data);
+
+      // Undo previously applied mask
+      exports.applyMask(p, data);
+
+      if (penalty < lowerPenalty) {
+        lowerPenalty = penalty;
+        bestPattern = p;
+      }
+    }
+
+    return bestPattern
+  };
+  });
+  var maskPattern_1 = maskPattern.Patterns;
+  var maskPattern_2 = maskPattern.getPenaltyN1;
+  var maskPattern_3 = maskPattern.getPenaltyN2;
+  var maskPattern_4 = maskPattern.getPenaltyN3;
+  var maskPattern_5 = maskPattern.getPenaltyN4;
+  var maskPattern_6 = maskPattern.applyMask;
+  var maskPattern_7 = maskPattern.getBestMask;
+
+  var EC_BLOCKS_TABLE = [
+  // L  M  Q  H
+    1, 1, 1, 1,
+    1, 1, 1, 1,
+    1, 1, 2, 2,
+    1, 2, 2, 4,
+    1, 2, 4, 4,
+    2, 4, 4, 4,
+    2, 4, 6, 5,
+    2, 4, 6, 6,
+    2, 5, 8, 8,
+    4, 5, 8, 8,
+    4, 5, 8, 11,
+    4, 8, 10, 11,
+    4, 9, 12, 16,
+    4, 9, 16, 16,
+    6, 10, 12, 18,
+    6, 10, 17, 16,
+    6, 11, 16, 19,
+    6, 13, 18, 21,
+    7, 14, 21, 25,
+    8, 16, 20, 25,
+    8, 17, 23, 25,
+    9, 17, 23, 34,
+    9, 18, 25, 30,
+    10, 20, 27, 32,
+    12, 21, 29, 35,
+    12, 23, 34, 37,
+    12, 25, 34, 40,
+    13, 26, 35, 42,
+    14, 28, 38, 45,
+    15, 29, 40, 48,
+    16, 31, 43, 51,
+    17, 33, 45, 54,
+    18, 35, 48, 57,
+    19, 37, 51, 60,
+    19, 38, 53, 63,
+    20, 40, 56, 66,
+    21, 43, 59, 70,
+    22, 45, 62, 74,
+    24, 47, 65, 77,
+    25, 49, 68, 81
+  ];
+
+  var EC_CODEWORDS_TABLE = [
+  // L  M  Q  H
+    7, 10, 13, 17,
+    10, 16, 22, 28,
+    15, 26, 36, 44,
+    20, 36, 52, 64,
+    26, 48, 72, 88,
+    36, 64, 96, 112,
+    40, 72, 108, 130,
+    48, 88, 132, 156,
+    60, 110, 160, 192,
+    72, 130, 192, 224,
+    80, 150, 224, 264,
+    96, 176, 260, 308,
+    104, 198, 288, 352,
+    120, 216, 320, 384,
+    132, 240, 360, 432,
+    144, 280, 408, 480,
+    168, 308, 448, 532,
+    180, 338, 504, 588,
+    196, 364, 546, 650,
+    224, 416, 600, 700,
+    224, 442, 644, 750,
+    252, 476, 690, 816,
+    270, 504, 750, 900,
+    300, 560, 810, 960,
+    312, 588, 870, 1050,
+    336, 644, 952, 1110,
+    360, 700, 1020, 1200,
+    390, 728, 1050, 1260,
+    420, 784, 1140, 1350,
+    450, 812, 1200, 1440,
+    480, 868, 1290, 1530,
+    510, 924, 1350, 1620,
+    540, 980, 1440, 1710,
+    570, 1036, 1530, 1800,
+    570, 1064, 1590, 1890,
+    600, 1120, 1680, 1980,
+    630, 1204, 1770, 2100,
+    660, 1260, 1860, 2220,
+    720, 1316, 1950, 2310,
+    750, 1372, 2040, 2430
+  ];
+
+  /**
+   * Returns the number of error correction block that the QR Code should contain
+   * for the specified version and error correction level.
+   *
+   * @param  {Number} version              QR Code version
+   * @param  {Number} errorCorrectionLevel Error correction level
+   * @return {Number}                      Number of error correction blocks
+   */
+  var getBlocksCount = function getBlocksCount (version, errorCorrectionLevel$1) {
+    switch (errorCorrectionLevel$1) {
+      case errorCorrectionLevel.L:
+        return EC_BLOCKS_TABLE[(version - 1) * 4 + 0]
+      case errorCorrectionLevel.M:
+        return EC_BLOCKS_TABLE[(version - 1) * 4 + 1]
+      case errorCorrectionLevel.Q:
+        return EC_BLOCKS_TABLE[(version - 1) * 4 + 2]
+      case errorCorrectionLevel.H:
+        return EC_BLOCKS_TABLE[(version - 1) * 4 + 3]
+      default:
+        return undefined
+    }
+  };
+
+  /**
+   * Returns the number of error correction codewords to use for the specified
+   * version and error correction level.
+   *
+   * @param  {Number} version              QR Code version
+   * @param  {Number} errorCorrectionLevel Error correction level
+   * @return {Number}                      Number of error correction codewords
+   */
+  var getTotalCodewordsCount = function getTotalCodewordsCount (version, errorCorrectionLevel$1) {
+    switch (errorCorrectionLevel$1) {
+      case errorCorrectionLevel.L:
+        return EC_CODEWORDS_TABLE[(version - 1) * 4 + 0]
+      case errorCorrectionLevel.M:
+        return EC_CODEWORDS_TABLE[(version - 1) * 4 + 1]
+      case errorCorrectionLevel.Q:
+        return EC_CODEWORDS_TABLE[(version - 1) * 4 + 2]
+      case errorCorrectionLevel.H:
+        return EC_CODEWORDS_TABLE[(version - 1) * 4 + 3]
+      default:
+        return undefined
+    }
+  };
+
+  var errorCorrectionCode = {
+  	getBlocksCount: getBlocksCount,
+  	getTotalCodewordsCount: getTotalCodewordsCount
+  };
+
+  var EXP_TABLE = new typedarrayBuffer(512);
+  var LOG_TABLE = new typedarrayBuffer(256)
+
+  /**
+   * Precompute the log and anti-log tables for faster computation later
+   *
+   * For each possible value in the galois field 2^8, we will pre-compute
+   * the logarithm and anti-logarithm (exponential) of this value
+   *
+   * ref {@link https://en.wikiversity.org/wiki/Reed%E2%80%93Solomon_codes_for_coders#Introduction_to_mathematical_fields}
+   */
+  ;(function initTables () {
+    var x = 1;
+    for (var i = 0; i < 255; i++) {
+      EXP_TABLE[i] = x;
+      LOG_TABLE[x] = i;
+
+      x <<= 1; // multiply by 2
+
+      // The QR code specification says to use byte-wise modulo 100011101 arithmetic.
+      // This means that when a number is 256 or larger, it should be XORed with 0x11D.
+      if (x & 0x100) { // similar to x >= 256, but a lot faster (because 0x100 == 256)
+        x ^= 0x11D;
+      }
+    }
+
+    // Optimization: double the size of the anti-log table so that we don't need to mod 255 to
+    // stay inside the bounds (because we will mainly use this table for the multiplication of
+    // two GF numbers, no more).
+    // @see {@link mul}
+    for (i = 255; i < 512; i++) {
+      EXP_TABLE[i] = EXP_TABLE[i - 255];
+    }
+  }());
+
+  /**
+   * Returns log value of n inside Galois Field
+   *
+   * @param  {Number} n
+   * @return {Number}
+   */
+  var log = function log (n) {
+    if (n < 1) throw new Error('log(' + n + ')')
+    return LOG_TABLE[n]
+  };
+
+  /**
+   * Returns anti-log value of n inside Galois Field
+   *
+   * @param  {Number} n
+   * @return {Number}
+   */
+  var exp = function exp (n) {
+    return EXP_TABLE[n]
+  };
+
+  /**
+   * Multiplies two number inside Galois Field
+   *
+   * @param  {Number} x
+   * @param  {Number} y
+   * @return {Number}
+   */
+  var mul = function mul (x, y) {
+    if (x === 0 || y === 0) return 0
+
+    // should be EXP_TABLE[(LOG_TABLE[x] + LOG_TABLE[y]) % 255] if EXP_TABLE wasn't oversized
+    // @see {@link initTables}
+    return EXP_TABLE[LOG_TABLE[x] + LOG_TABLE[y]]
+  };
+
+  var galoisField = {
+  	log: log,
+  	exp: exp,
+  	mul: mul
+  };
+
+  var polynomial = createCommonjsModule(function (module, exports) {
+  /**
+   * Multiplies two polynomials inside Galois Field
+   *
+   * @param  {Buffer} p1 Polynomial
+   * @param  {Buffer} p2 Polynomial
+   * @return {Buffer}    Product of p1 and p2
+   */
+  exports.mul = function mul (p1, p2) {
+    var coeff = new typedarrayBuffer(p1.length + p2.length - 1);
+    coeff.fill(0);
+
+    for (var i = 0; i < p1.length; i++) {
+      for (var j = 0; j < p2.length; j++) {
+        coeff[i + j] ^= galoisField.mul(p1[i], p2[j]);
+      }
+    }
+
+    return coeff
+  };
+
+  /**
+   * Calculate the remainder of polynomials division
+   *
+   * @param  {Buffer} divident Polynomial
+   * @param  {Buffer} divisor  Polynomial
+   * @return {Buffer}          Remainder
+   */
+  exports.mod = function mod (divident, divisor) {
+    var result = new typedarrayBuffer(divident);
+
+    while ((result.length - divisor.length) >= 0) {
+      var coeff = result[0];
+
+      for (var i = 0; i < divisor.length; i++) {
+        result[i] ^= galoisField.mul(divisor[i], coeff);
+      }
+
+      // remove all zeros from buffer head
+      var offset = 0;
+      while (offset < result.length && result[offset] === 0) offset++;
+      result = result.slice(offset);
+    }
+
+    return result
+  };
+
+  /**
+   * Generate an irreducible generator polynomial of specified degree
+   * (used by Reed-Solomon encoder)
+   *
+   * @param  {Number} degree Degree of the generator polynomial
+   * @return {Buffer}        Buffer containing polynomial coefficients
+   */
+  exports.generateECPolynomial = function generateECPolynomial (degree) {
+    var poly = new typedarrayBuffer([1]);
+    for (var i = 0; i < degree; i++) {
+      poly = exports.mul(poly, [1, galoisField.exp(i)]);
+    }
+
+    return poly
+  };
+  });
+  var polynomial_1 = polynomial.mul;
+  var polynomial_2 = polynomial.mod;
+  var polynomial_3 = polynomial.generateECPolynomial;
+
+  function ReedSolomonEncoder (degree) {
+    this.genPoly = undefined;
+    this.degree = degree;
+
+    if (this.degree) this.initialize(this.degree);
+  }
+
+  /**
+   * Initialize the encoder.
+   * The input param should correspond to the number of error correction codewords.
+   *
+   * @param  {Number} degree
+   */
+  ReedSolomonEncoder.prototype.initialize = function initialize (degree) {
+    // create an irreducible generator polynomial
+    this.degree = degree;
+    this.genPoly = polynomial.generateECPolynomial(this.degree);
+  };
+
+  /**
+   * Encodes a chunk of data
+   *
+   * @param  {Buffer} data Buffer containing input data
+   * @return {Buffer}      Buffer containing encoded data
+   */
+  ReedSolomonEncoder.prototype.encode = function encode (data) {
+    if (!this.genPoly) {
+      throw new Error('Encoder not initialized')
+    }
+
+    // Calculate EC for this data block
+    // extends data size to data+genPoly size
+    var pad = new typedarrayBuffer(this.degree);
+    pad.fill(0);
+    var paddedData = typedarrayBuffer.concat([data, pad], data.length + this.degree);
+
+    // The error correction codewords are the remainder after dividing the data codewords
+    // by a generator polynomial
+    var remainder = polynomial.mod(paddedData, this.genPoly);
+
+    // return EC data blocks (last n byte, where n is the degree of genPoly)
+    // If coefficients number in remainder are less than genPoly degree,
+    // pad with 0s to the left to reach the needed number of coefficients
+    var start = this.degree - remainder.length;
+    if (start > 0) {
+      var buff = new typedarrayBuffer(this.degree);
+      buff.fill(0);
+      remainder.copy(buff, start);
+
+      return buff
+    }
+
+    return remainder
+  };
+
+  var reedSolomonEncoder = ReedSolomonEncoder;
+
+  var numeric = '[0-9]+';
+  var alphanumeric = '[A-Z $%*+-./:]+';
+  var kanji = '(?:[\u3000-\u303F]|[\u3040-\u309F]|[\u30A0-\u30FF]|' +
+    '[\uFF00-\uFFEF]|[\u4E00-\u9FAF]|[\u2605-\u2606]|[\u2190-\u2195]|\u203B|' +
+    '[\u2010\u2015\u2018\u2019\u2025\u2026\u201C\u201D\u2225\u2260]|' +
+    '[\u0391-\u0451]|[\u00A7\u00A8\u00B1\u00B4\u00D7\u00F7])+';
+  var byte = '(?:(?![A-Z0-9 $%*+-./:]|' + kanji + ').)+';
+
+  var KANJI = new RegExp(kanji, 'g');
+  var BYTE_KANJI = new RegExp('[^A-Z0-9 $%*+-./:]+', 'g');
+  var BYTE = new RegExp(byte, 'g');
+  var NUMERIC = new RegExp(numeric, 'g');
+  var ALPHANUMERIC = new RegExp(alphanumeric, 'g');
+
+  var TEST_KANJI = new RegExp('^' + kanji + '$');
+  var TEST_NUMERIC = new RegExp('^' + numeric + '$');
+  var TEST_ALPHANUMERIC = new RegExp('^[A-Z0-9 $%*+-./:]+$');
+
+  var testKanji = function testKanji (str) {
+    return TEST_KANJI.test(str)
+  };
+
+  var testNumeric = function testNumeric (str) {
+    return TEST_NUMERIC.test(str)
+  };
+
+  var testAlphanumeric = function testAlphanumeric (str) {
+    return TEST_ALPHANUMERIC.test(str)
+  };
+
+  var regex = {
+  	KANJI: KANJI,
+  	BYTE_KANJI: BYTE_KANJI,
+  	BYTE: BYTE,
+  	NUMERIC: NUMERIC,
+  	ALPHANUMERIC: ALPHANUMERIC,
+  	testKanji: testKanji,
+  	testNumeric: testNumeric,
+  	testAlphanumeric: testAlphanumeric
+  };
+
+  var mode = createCommonjsModule(function (module, exports) {
+  /**
+   * Numeric mode encodes data from the decimal digit set (0 - 9)
+   * (byte values 30HEX to 39HEX).
+   * Normally, 3 data characters are represented by 10 bits.
+   *
+   * @type {Object}
+   */
+  exports.NUMERIC = {
+    id: 'Numeric',
+    bit: 1 << 0,
+    ccBits: [10, 12, 14]
+  };
+
+  /**
+   * Alphanumeric mode encodes data from a set of 45 characters,
+   * i.e. 10 numeric digits (0 - 9),
+   *      26 alphabetic characters (A - Z),
+   *   and 9 symbols (SP, $, %, *, +, -, ., /, :).
+   * Normally, two input characters are represented by 11 bits.
+   *
+   * @type {Object}
+   */
+  exports.ALPHANUMERIC = {
+    id: 'Alphanumeric',
+    bit: 1 << 1,
+    ccBits: [9, 11, 13]
+  };
+
+  /**
+   * In byte mode, data is encoded at 8 bits per character.
+   *
+   * @type {Object}
+   */
+  exports.BYTE = {
+    id: 'Byte',
+    bit: 1 << 2,
+    ccBits: [8, 16, 16]
+  };
+
+  /**
+   * The Kanji mode efficiently encodes Kanji characters in accordance with
+   * the Shift JIS system based on JIS X 0208.
+   * The Shift JIS values are shifted from the JIS X 0208 values.
+   * JIS X 0208 gives details of the shift coded representation.
+   * Each two-byte character value is compacted to a 13-bit binary codeword.
+   *
+   * @type {Object}
+   */
+  exports.KANJI = {
+    id: 'Kanji',
+    bit: 1 << 3,
+    ccBits: [8, 10, 12]
+  };
+
+  /**
+   * Mixed mode will contain a sequences of data in a combination of any of
+   * the modes described above
+   *
+   * @type {Object}
+   */
+  exports.MIXED = {
+    bit: -1
+  };
+
+  /**
+   * Returns the number of bits needed to store the data length
+   * according to QR Code specifications.
+   *
+   * @param  {Mode}   mode    Data mode
+   * @param  {Number} version QR Code version
+   * @return {Number}         Number of bits
+   */
+  exports.getCharCountIndicator = function getCharCountIndicator (mode, version$1) {
+    if (!mode.ccBits) throw new Error('Invalid mode: ' + mode)
+
+    if (!version.isValid(version$1)) {
+      throw new Error('Invalid version: ' + version$1)
+    }
+
+    if (version$1 >= 1 && version$1 < 10) return mode.ccBits[0]
+    else if (version$1 < 27) return mode.ccBits[1]
+    return mode.ccBits[2]
+  };
+
+  /**
+   * Returns the most efficient mode to store the specified data
+   *
+   * @param  {String} dataStr Input data string
+   * @return {Mode}           Best mode
+   */
+  exports.getBestModeForData = function getBestModeForData (dataStr) {
+    if (regex.testNumeric(dataStr)) return exports.NUMERIC
+    else if (regex.testAlphanumeric(dataStr)) return exports.ALPHANUMERIC
+    else if (regex.testKanji(dataStr)) return exports.KANJI
+    else return exports.BYTE
+  };
+
+  /**
+   * Return mode name as string
+   *
+   * @param {Mode} mode Mode object
+   * @returns {String}  Mode name
+   */
+  exports.toString = function toString (mode) {
+    if (mode && mode.id) return mode.id
+    throw new Error('Invalid mode')
+  };
+
+  /**
+   * Check if input param is a valid mode object
+   *
+   * @param   {Mode}    mode Mode object
+   * @returns {Boolean} True if valid mode, false otherwise
+   */
+  exports.isValid = function isValid (mode) {
+    return mode && mode.bit && mode.ccBits
+  };
+
+  /**
+   * Get mode object from its name
+   *
+   * @param   {String} string Mode name
+   * @returns {Mode}          Mode object
+   */
+  function fromString (string) {
+    if (typeof string !== 'string') {
+      throw new Error('Param is not a string')
+    }
+
+    var lcStr = string.toLowerCase();
+
+    switch (lcStr) {
+      case 'numeric':
+        return exports.NUMERIC
+      case 'alphanumeric':
+        return exports.ALPHANUMERIC
+      case 'kanji':
+        return exports.KANJI
+      case 'byte':
+        return exports.BYTE
+      default:
+        throw new Error('Unknown mode: ' + string)
+    }
+  }
+
+  /**
+   * Returns mode from a value.
+   * If value is not a valid mode, returns defaultValue
+   *
+   * @param  {Mode|String} value        Encoding mode
+   * @param  {Mode}        defaultValue Fallback value
+   * @return {Mode}                     Encoding mode
+   */
+  exports.from = function from (value, defaultValue) {
+    if (exports.isValid(value)) {
+      return value
+    }
+
+    try {
+      return fromString(value)
+    } catch (e) {
+      return defaultValue
+    }
+  };
+  });
+  var mode_1 = mode.NUMERIC;
+  var mode_2 = mode.ALPHANUMERIC;
+  var mode_3 = mode.BYTE;
+  var mode_4 = mode.KANJI;
+  var mode_5 = mode.MIXED;
+  var mode_6 = mode.getCharCountIndicator;
+  var mode_7 = mode.getBestModeForData;
+  var mode_8 = mode.isValid;
+
+  var version = createCommonjsModule(function (module, exports) {
+  // Generator polynomial used to encode version information
+  var G18 = (1 << 12) | (1 << 11) | (1 << 10) | (1 << 9) | (1 << 8) | (1 << 5) | (1 << 2) | (1 << 0);
+  var G18_BCH = utils.getBCHDigit(G18);
+
+  function getBestVersionForDataLength (mode, length, errorCorrectionLevel) {
+    for (var currentVersion = 1; currentVersion <= 40; currentVersion++) {
+      if (length <= exports.getCapacity(currentVersion, errorCorrectionLevel, mode)) {
+        return currentVersion
+      }
+    }
+
+    return undefined
+  }
+
+  function getReservedBitsCount (mode$1, version) {
+    // Character count indicator + mode indicator bits
+    return mode.getCharCountIndicator(mode$1, version) + 4
+  }
+
+  function getTotalBitsFromDataArray (segments, version) {
+    var totalBits = 0;
+
+    segments.forEach(function (data) {
+      var reservedBits = getReservedBitsCount(data.mode, version);
+      totalBits += reservedBits + data.getBitsLength();
+    });
+
+    return totalBits
+  }
+
+  function getBestVersionForMixedData (segments, errorCorrectionLevel) {
+    for (var currentVersion = 1; currentVersion <= 40; currentVersion++) {
+      var length = getTotalBitsFromDataArray(segments, currentVersion);
+      if (length <= exports.getCapacity(currentVersion, errorCorrectionLevel, mode.MIXED)) {
+        return currentVersion
+      }
+    }
+
+    return undefined
+  }
+
+  /**
+   * Check if QR Code version is valid
+   *
+   * @param  {Number}  version QR Code version
+   * @return {Boolean}         true if valid version, false otherwise
+   */
+  exports.isValid = function isValid (version) {
+    return !isNaN(version) && version >= 1 && version <= 40
+  };
+
+  /**
+   * Returns version number from a value.
+   * If value is not a valid version, returns defaultValue
+   *
+   * @param  {Number|String} value        QR Code version
+   * @param  {Number}        defaultValue Fallback value
+   * @return {Number}                     QR Code version number
+   */
+  exports.from = function from (value, defaultValue) {
+    if (exports.isValid(value)) {
+      return parseInt(value, 10)
+    }
+
+    return defaultValue
+  };
+
+  /**
+   * Returns how much data can be stored with the specified QR code version
+   * and error correction level
+   *
+   * @param  {Number} version              QR Code version (1-40)
+   * @param  {Number} errorCorrectionLevel Error correction level
+   * @param  {Mode}   mode                 Data mode
+   * @return {Number}                      Quantity of storable data
+   */
+  exports.getCapacity = function getCapacity (version, errorCorrectionLevel, mode$1) {
+    if (!exports.isValid(version)) {
+      throw new Error('Invalid QR Code version')
+    }
+
+    // Use Byte mode as default
+    if (typeof mode$1 === 'undefined') mode$1 = mode.BYTE;
+
+    // Total codewords for this QR code version (Data + Error correction)
+    var totalCodewords = utils.getSymbolTotalCodewords(version);
+
+    // Total number of error correction codewords
+    var ecTotalCodewords = errorCorrectionCode.getTotalCodewordsCount(version, errorCorrectionLevel);
+
+    // Total number of data codewords
+    var dataTotalCodewordsBits = (totalCodewords - ecTotalCodewords) * 8;
+
+    if (mode$1 === mode.MIXED) return dataTotalCodewordsBits
+
+    var usableBits = dataTotalCodewordsBits - getReservedBitsCount(mode$1, version);
+
+    // Return max number of storable codewords
+    switch (mode$1) {
+      case mode.NUMERIC:
+        return Math.floor((usableBits / 10) * 3)
+
+      case mode.ALPHANUMERIC:
+        return Math.floor((usableBits / 11) * 2)
+
+      case mode.KANJI:
+        return Math.floor(usableBits / 13)
+
+      case mode.BYTE:
+      default:
+        return Math.floor(usableBits / 8)
+    }
+  };
+
+  /**
+   * Returns the minimum version needed to contain the amount of data
+   *
+   * @param  {Segment} data                    Segment of data
+   * @param  {Number} [errorCorrectionLevel=H] Error correction level
+   * @param  {Mode} mode                       Data mode
+   * @return {Number}                          QR Code version
+   */
+  exports.getBestVersionForData = function getBestVersionForData (data, errorCorrectionLevel$1) {
+    var seg;
+
+    var ecl = errorCorrectionLevel.from(errorCorrectionLevel$1, errorCorrectionLevel.M);
+
+    if (isarray(data)) {
+      if (data.length > 1) {
+        return getBestVersionForMixedData(data, ecl)
+      }
+
+      if (data.length === 0) {
+        return 1
+      }
+
+      seg = data[0];
+    } else {
+      seg = data;
+    }
+
+    return getBestVersionForDataLength(seg.mode, seg.getLength(), ecl)
+  };
+
+  /**
+   * Returns version information with relative error correction bits
+   *
+   * The version information is included in QR Code symbols of version 7 or larger.
+   * It consists of an 18-bit sequence containing 6 data bits,
+   * with 12 error correction bits calculated using the (18, 6) Golay code.
+   *
+   * @param  {Number} version QR Code version
+   * @return {Number}         Encoded version info bits
+   */
+  exports.getEncodedBits = function getEncodedBits (version) {
+    if (!exports.isValid(version) || version < 7) {
+      throw new Error('Invalid QR Code version')
+    }
+
+    var d = version << 12;
+
+    while (utils.getBCHDigit(d) - G18_BCH >= 0) {
+      d ^= (G18 << (utils.getBCHDigit(d) - G18_BCH));
+    }
+
+    return (version << 12) | d
+  };
+  });
+  var version_1 = version.isValid;
+  var version_2 = version.getCapacity;
+  var version_3 = version.getBestVersionForData;
+  var version_4 = version.getEncodedBits;
+
+  var G15 = (1 << 10) | (1 << 8) | (1 << 5) | (1 << 4) | (1 << 2) | (1 << 1) | (1 << 0);
+  var G15_MASK = (1 << 14) | (1 << 12) | (1 << 10) | (1 << 4) | (1 << 1);
+  var G15_BCH = utils.getBCHDigit(G15);
+
+  /**
+   * Returns format information with relative error correction bits
+   *
+   * The format information is a 15-bit sequence containing 5 data bits,
+   * with 10 error correction bits calculated using the (15, 5) BCH code.
+   *
+   * @param  {Number} errorCorrectionLevel Error correction level
+   * @param  {Number} mask                 Mask pattern
+   * @return {Number}                      Encoded format information bits
+   */
+  var getEncodedBits = function getEncodedBits (errorCorrectionLevel, mask) {
+    var data = ((errorCorrectionLevel.bit << 3) | mask);
+    var d = data << 10;
+
+    while (utils.getBCHDigit(d) - G15_BCH >= 0) {
+      d ^= (G15 << (utils.getBCHDigit(d) - G15_BCH));
+    }
+
+    // xor final data with mask pattern in order to ensure that
+    // no combination of Error Correction Level and data mask pattern
+    // will result in an all-zero data string
+    return ((data << 10) | d) ^ G15_MASK
+  };
+
+  var formatInfo = {
+  	getEncodedBits: getEncodedBits
+  };
+
+  function NumericData (data) {
+    this.mode = mode.NUMERIC;
+    this.data = data.toString();
+  }
+
+  NumericData.getBitsLength = function getBitsLength (length) {
+    return 10 * Math.floor(length / 3) + ((length % 3) ? ((length % 3) * 3 + 1) : 0)
+  };
+
+  NumericData.prototype.getLength = function getLength () {
+    return this.data.length
+  };
+
+  NumericData.prototype.getBitsLength = function getBitsLength () {
+    return NumericData.getBitsLength(this.data.length)
+  };
+
+  NumericData.prototype.write = function write (bitBuffer) {
+    var i, group, value;
+
+    // The input data string is divided into groups of three digits,
+    // and each group is converted to its 10-bit binary equivalent.
+    for (i = 0; i + 3 <= this.data.length; i += 3) {
+      group = this.data.substr(i, 3);
+      value = parseInt(group, 10);
+
+      bitBuffer.put(value, 10);
+    }
+
+    // If the number of input digits is not an exact multiple of three,
+    // the final one or two digits are converted to 4 or 7 bits respectively.
+    var remainingNum = this.data.length - i;
+    if (remainingNum > 0) {
+      group = this.data.substr(i);
+      value = parseInt(group, 10);
+
+      bitBuffer.put(value, remainingNum * 3 + 1);
+    }
+  };
+
+  var numericData = NumericData;
+
+  /**
+   * Array of characters available in alphanumeric mode
+   *
+   * As per QR Code specification, to each character
+   * is assigned a value from 0 to 44 which in this case coincides
+   * with the array index
+   *
+   * @type {Array}
+   */
+  var ALPHA_NUM_CHARS = [
+    '0', '1', '2', '3', '4', '5', '6', '7', '8', '9',
+    'A', 'B', 'C', 'D', 'E', 'F', 'G', 'H', 'I', 'J', 'K', 'L', 'M',
+    'N', 'O', 'P', 'Q', 'R', 'S', 'T', 'U', 'V', 'W', 'X', 'Y', 'Z',
+    ' ', '$', '%', '*', '+', '-', '.', '/', ':'
+  ];
+
+  function AlphanumericData (data) {
+    this.mode = mode.ALPHANUMERIC;
+    this.data = data;
+  }
+
+  AlphanumericData.getBitsLength = function getBitsLength (length) {
+    return 11 * Math.floor(length / 2) + 6 * (length % 2)
+  };
+
+  AlphanumericData.prototype.getLength = function getLength () {
+    return this.data.length
+  };
+
+  AlphanumericData.prototype.getBitsLength = function getBitsLength () {
+    return AlphanumericData.getBitsLength(this.data.length)
+  };
+
+  AlphanumericData.prototype.write = function write (bitBuffer) {
+    var i;
+
+    // Input data characters are divided into groups of two characters
+    // and encoded as 11-bit binary codes.
+    for (i = 0; i + 2 <= this.data.length; i += 2) {
+      // The character value of the first character is multiplied by 45
+      var value = ALPHA_NUM_CHARS.indexOf(this.data[i]) * 45;
+
+      // The character value of the second digit is added to the product
+      value += ALPHA_NUM_CHARS.indexOf(this.data[i + 1]);
+
+      // The sum is then stored as 11-bit binary number
+      bitBuffer.put(value, 11);
+    }
+
+    // If the number of input data characters is not a multiple of two,
+    // the character value of the final character is encoded as a 6-bit binary number.
+    if (this.data.length % 2) {
+      bitBuffer.put(ALPHA_NUM_CHARS.indexOf(this.data[i]), 6);
+    }
+  };
+
+  var alphanumericData = AlphanumericData;
+
+  function ByteData (data) {
+    this.mode = mode.BYTE;
+    this.data = new typedarrayBuffer(data);
+  }
+
+  ByteData.getBitsLength = function getBitsLength (length) {
+    return length * 8
+  };
+
+  ByteData.prototype.getLength = function getLength () {
+    return this.data.length
+  };
+
+  ByteData.prototype.getBitsLength = function getBitsLength () {
+    return ByteData.getBitsLength(this.data.length)
+  };
+
+  ByteData.prototype.write = function (bitBuffer) {
+    for (var i = 0, l = this.data.length; i < l; i++) {
+      bitBuffer.put(this.data[i], 8);
+    }
+  };
+
+  var byteData = ByteData;
+
+  function KanjiData (data) {
+    this.mode = mode.KANJI;
+    this.data = data;
+  }
+
+  KanjiData.getBitsLength = function getBitsLength (length) {
+    return length * 13
+  };
+
+  KanjiData.prototype.getLength = function getLength () {
+    return this.data.length
+  };
+
+  KanjiData.prototype.getBitsLength = function getBitsLength () {
+    return KanjiData.getBitsLength(this.data.length)
+  };
+
+  KanjiData.prototype.write = function (bitBuffer) {
+    var i;
+
+    // In the Shift JIS system, Kanji characters are represented by a two byte combination.
+    // These byte values are shifted from the JIS X 0208 values.
+    // JIS X 0208 gives details of the shift coded representation.
+    for (i = 0; i < this.data.length; i++) {
+      var value = utils.toSJIS(this.data[i]);
+
+      // For characters with Shift JIS values from 0x8140 to 0x9FFC:
+      if (value >= 0x8140 && value <= 0x9FFC) {
+        // Subtract 0x8140 from Shift JIS value
+        value -= 0x8140;
+
+      // For characters with Shift JIS values from 0xE040 to 0xEBBF
+      } else if (value >= 0xE040 && value <= 0xEBBF) {
+        // Subtract 0xC140 from Shift JIS value
+        value -= 0xC140;
+      } else {
+        throw new Error(
+          'Invalid SJIS character: ' + this.data[i] + '\n' +
+          'Make sure your charset is UTF-8')
+      }
+
+      // Multiply most significant byte of result by 0xC0
+      // and add least significant byte to product
+      value = (((value >>> 8) & 0xff) * 0xC0) + (value & 0xff);
+
+      // Convert result to a 13-bit binary string
+      bitBuffer.put(value, 13);
+    }
+  };
+
+  var kanjiData = KanjiData;
+
+  var dijkstra_1 = createCommonjsModule(function (module) {
+
+  /******************************************************************************
+   * Created 2008-08-19.
+   *
+   * Dijkstra path-finding functions. Adapted from the Dijkstar Python project.
+   *
+   * Copyright (C) 2008
+   *   Wyatt Baldwin <self@wyattbaldwin.com>
+   *   All rights reserved
+   *
+   * Licensed under the MIT license.
+   *
+   *   http://www.opensource.org/licenses/mit-license.php
+   *
+   * THE SOFTWARE IS PROVIDED "AS IS", WITHOUT WARRANTY OF ANY KIND, EXPRESS OR
+   * IMPLIED, INCLUDING BUT NOT LIMITED TO THE WARRANTIES OF MERCHANTABILITY,
+   * FITNESS FOR A PARTICULAR PURPOSE AND NONINFRINGEMENT. IN NO EVENT SHALL THE
+   * AUTHORS OR COPYRIGHT HOLDERS BE LIABLE FOR ANY CLAIM, DAMAGES OR OTHER
+   * LIABILITY, WHETHER IN AN ACTION OF CONTRACT, TORT OR OTHERWISE, ARISING FROM,
+   * OUT OF OR IN CONNECTION WITH THE SOFTWARE OR THE USE OR OTHER DEALINGS IN
+   * THE SOFTWARE.
+   *****************************************************************************/
+  var dijkstra = {
+    single_source_shortest_paths: function(graph, s, d) {
+      // Predecessor map for each node that has been encountered.
+      // node ID => predecessor node ID
+      var predecessors = {};
+
+      // Costs of shortest paths from s to all nodes encountered.
+      // node ID => cost
+      var costs = {};
+      costs[s] = 0;
+
+      // Costs of shortest paths from s to all nodes encountered; differs from
+      // `costs` in that it provides easy access to the node that currently has
+      // the known shortest path from s.
+      // XXX: Do we actually need both `costs` and `open`?
+      var open = dijkstra.PriorityQueue.make();
+      open.push(s, 0);
+
+      var closest,
+          u, v,
+          cost_of_s_to_u,
+          adjacent_nodes,
+          cost_of_e,
+          cost_of_s_to_u_plus_cost_of_e,
+          cost_of_s_to_v,
+          first_visit;
+      while (!open.empty()) {
+        // In the nodes remaining in graph that have a known cost from s,
+        // find the node, u, that currently has the shortest path from s.
+        closest = open.pop();
+        u = closest.value;
+        cost_of_s_to_u = closest.cost;
+
+        // Get nodes adjacent to u...
+        adjacent_nodes = graph[u] || {};
+
+        // ...and explore the edges that connect u to those nodes, updating
+        // the cost of the shortest paths to any or all of those nodes as
+        // necessary. v is the node across the current edge from u.
+        for (v in adjacent_nodes) {
+          if (adjacent_nodes.hasOwnProperty(v)) {
+            // Get the cost of the edge running from u to v.
+            cost_of_e = adjacent_nodes[v];
+
+            // Cost of s to u plus the cost of u to v across e--this is *a*
+            // cost from s to v that may or may not be less than the current
+            // known cost to v.
+            cost_of_s_to_u_plus_cost_of_e = cost_of_s_to_u + cost_of_e;
+
+            // If we haven't visited v yet OR if the current known cost from s to
+            // v is greater than the new cost we just found (cost of s to u plus
+            // cost of u to v across e), update v's cost in the cost list and
+            // update v's predecessor in the predecessor list (it's now u).
+            cost_of_s_to_v = costs[v];
+            first_visit = (typeof costs[v] === 'undefined');
+            if (first_visit || cost_of_s_to_v > cost_of_s_to_u_plus_cost_of_e) {
+              costs[v] = cost_of_s_to_u_plus_cost_of_e;
+              open.push(v, cost_of_s_to_u_plus_cost_of_e);
+              predecessors[v] = u;
+            }
+          }
+        }
+      }
+
+      if (typeof d !== 'undefined' && typeof costs[d] === 'undefined') {
+        var msg = ['Could not find a path from ', s, ' to ', d, '.'].join('');
+        throw new Error(msg);
+      }
+
+      return predecessors;
+    },
+
+    extract_shortest_path_from_predecessor_list: function(predecessors, d) {
+      var nodes = [];
+      var u = d;
+      var predecessor;
+      while (u) {
+        nodes.push(u);
+        predecessor = predecessors[u];
+        u = predecessors[u];
+      }
+      nodes.reverse();
+      return nodes;
+    },
+
+    find_path: function(graph, s, d) {
+      var predecessors = dijkstra.single_source_shortest_paths(graph, s, d);
+      return dijkstra.extract_shortest_path_from_predecessor_list(
+        predecessors, d);
+    },
+
+    /**
+     * A very naive priority queue implementation.
+     */
+    PriorityQueue: {
+      make: function (opts) {
+        var T = dijkstra.PriorityQueue,
+            t = {},
+            key;
+        opts = opts || {};
+        for (key in T) {
+          if (T.hasOwnProperty(key)) {
+            t[key] = T[key];
+          }
+        }
+        t.queue = [];
+        t.sorter = opts.sorter || T.default_sorter;
+        return t;
+      },
+
+      default_sorter: function (a, b) {
+        return a.cost - b.cost;
+      },
+
+      /**
+       * Add a new item to the queue and ensure the highest priority element
+       * is at the front of the queue.
+       */
+      push: function (value, cost) {
+        var item = {value: value, cost: cost};
+        this.queue.push(item);
+        this.queue.sort(this.sorter);
+      },
+
+      /**
+       * Return the highest priority element in the queue.
+       */
+      pop: function () {
+        return this.queue.shift();
+      },
+
+      empty: function () {
+        return this.queue.length === 0;
+      }
+    }
+  };
+
+
+  // node.js module exports
+  {
+    module.exports = dijkstra;
+  }
+  });
+
+  var segments = createCommonjsModule(function (module, exports) {
+  /**
+   * Returns UTF8 byte length
+   *
+   * @param  {String} str Input string
+   * @return {Number}     Number of byte
+   */
+  function getStringByteLength (str) {
+    return unescape(encodeURIComponent(str)).length
+  }
+
+  /**
+   * Get a list of segments of the specified mode
+   * from a string
+   *
+   * @param  {Mode}   mode Segment mode
+   * @param  {String} str  String to process
+   * @return {Array}       Array of object with segments data
+   */
+  function getSegments (regex, mode, str) {
+    var segments = [];
+    var result;
+
+    while ((result = regex.exec(str)) !== null) {
+      segments.push({
+        data: result[0],
+        index: result.index,
+        mode: mode,
+        length: result[0].length
+      });
+    }
+
+    return segments
+  }
+
+  /**
+   * Extracts a series of segments with the appropriate
+   * modes from a string
+   *
+   * @param  {String} dataStr Input string
+   * @return {Array}          Array of object with segments data
+   */
+  function getSegmentsFromString (dataStr) {
+    var numSegs = getSegments(regex.NUMERIC, mode.NUMERIC, dataStr);
+    var alphaNumSegs = getSegments(regex.ALPHANUMERIC, mode.ALPHANUMERIC, dataStr);
+    var byteSegs;
+    var kanjiSegs;
+
+    if (utils.isKanjiModeEnabled()) {
+      byteSegs = getSegments(regex.BYTE, mode.BYTE, dataStr);
+      kanjiSegs = getSegments(regex.KANJI, mode.KANJI, dataStr);
+    } else {
+      byteSegs = getSegments(regex.BYTE_KANJI, mode.BYTE, dataStr);
+      kanjiSegs = [];
+    }
+
+    var segs = numSegs.concat(alphaNumSegs, byteSegs, kanjiSegs);
+
+    return segs
+      .sort(function (s1, s2) {
+        return s1.index - s2.index
+      })
+      .map(function (obj) {
+        return {
+          data: obj.data,
+          mode: obj.mode,
+          length: obj.length
+        }
+      })
+  }
+
+  /**
+   * Returns how many bits are needed to encode a string of
+   * specified length with the specified mode
+   *
+   * @param  {Number} length String length
+   * @param  {Mode} mode     Segment mode
+   * @return {Number}        Bit length
+   */
+  function getSegmentBitsLength (length, mode$1) {
+    switch (mode$1) {
+      case mode.NUMERIC:
+        return numericData.getBitsLength(length)
+      case mode.ALPHANUMERIC:
+        return alphanumericData.getBitsLength(length)
+      case mode.KANJI:
+        return kanjiData.getBitsLength(length)
+      case mode.BYTE:
+        return byteData.getBitsLength(length)
+    }
+  }
+
+  /**
+   * Merges adjacent segments which have the same mode
+   *
+   * @param  {Array} segs Array of object with segments data
+   * @return {Array}      Array of object with segments data
+   */
+  function mergeSegments (segs) {
+    return segs.reduce(function (acc, curr) {
+      var prevSeg = acc.length - 1 >= 0 ? acc[acc.length - 1] : null;
+      if (prevSeg && prevSeg.mode === curr.mode) {
+        acc[acc.length - 1].data += curr.data;
+        return acc
+      }
+
+      acc.push(curr);
+      return acc
+    }, [])
+  }
+
+  /**
+   * Generates a list of all possible nodes combination which
+   * will be used to build a segments graph.
+   *
+   * Nodes are divided by groups. Each group will contain a list of all the modes
+   * in which is possible to encode the given text.
+   *
+   * For example the text '12345' can be encoded as Numeric, Alphanumeric or Byte.
+   * The group for '12345' will contain then 3 objects, one for each
+   * possible encoding mode.
+   *
+   * Each node represents a possible segment.
+   *
+   * @param  {Array} segs Array of object with segments data
+   * @return {Array}      Array of object with segments data
+   */
+  function buildNodes (segs) {
+    var nodes = [];
+    for (var i = 0; i < segs.length; i++) {
+      var seg = segs[i];
+
+      switch (seg.mode) {
+        case mode.NUMERIC:
+          nodes.push([seg,
+            { data: seg.data, mode: mode.ALPHANUMERIC, length: seg.length },
+            { data: seg.data, mode: mode.BYTE, length: seg.length }
+          ]);
+          break
+        case mode.ALPHANUMERIC:
+          nodes.push([seg,
+            { data: seg.data, mode: mode.BYTE, length: seg.length }
+          ]);
+          break
+        case mode.KANJI:
+          nodes.push([seg,
+            { data: seg.data, mode: mode.BYTE, length: getStringByteLength(seg.data) }
+          ]);
+          break
+        case mode.BYTE:
+          nodes.push([
+            { data: seg.data, mode: mode.BYTE, length: getStringByteLength(seg.data) }
+          ]);
+      }
+    }
+
+    return nodes
+  }
+
+  /**
+   * Builds a graph from a list of nodes.
+   * All segments in each node group will be connected with all the segments of
+   * the next group and so on.
+   *
+   * At each connection will be assigned a weight depending on the
+   * segment's byte length.
+   *
+   * @param  {Array} nodes    Array of object with segments data
+   * @param  {Number} version QR Code version
+   * @return {Object}         Graph of all possible segments
+   */
+  function buildGraph (nodes, version) {
+    var table = {};
+    var graph = {'start': {}};
+    var prevNodeIds = ['start'];
+
+    for (var i = 0; i < nodes.length; i++) {
+      var nodeGroup = nodes[i];
+      var currentNodeIds = [];
+
+      for (var j = 0; j < nodeGroup.length; j++) {
+        var node = nodeGroup[j];
+        var key = '' + i + j;
+
+        currentNodeIds.push(key);
+        table[key] = { node: node, lastCount: 0 };
+        graph[key] = {};
+
+        for (var n = 0; n < prevNodeIds.length; n++) {
+          var prevNodeId = prevNodeIds[n];
+
+          if (table[prevNodeId] && table[prevNodeId].node.mode === node.mode) {
+            graph[prevNodeId][key] =
+              getSegmentBitsLength(table[prevNodeId].lastCount + node.length, node.mode) -
+              getSegmentBitsLength(table[prevNodeId].lastCount, node.mode);
+
+            table[prevNodeId].lastCount += node.length;
+          } else {
+            if (table[prevNodeId]) table[prevNodeId].lastCount = node.length;
+
+            graph[prevNodeId][key] = getSegmentBitsLength(node.length, node.mode) +
+              4 + mode.getCharCountIndicator(node.mode, version); // switch cost
+          }
+        }
+      }
+
+      prevNodeIds = currentNodeIds;
+    }
+
+    for (n = 0; n < prevNodeIds.length; n++) {
+      graph[prevNodeIds[n]]['end'] = 0;
+    }
+
+    return { map: graph, table: table }
+  }
+
+  /**
+   * Builds a segment from a specified data and mode.
+   * If a mode is not specified, the more suitable will be used.
+   *
+   * @param  {String} data             Input data
+   * @param  {Mode | String} modesHint Data mode
+   * @return {Segment}                 Segment
+   */
+  function buildSingleSegment (data, modesHint) {
+    var mode$1;
+    var bestMode = mode.getBestModeForData(data);
+
+    mode$1 = mode.from(modesHint, bestMode);
+
+    // Make sure data can be encoded
+    if (mode$1 !== mode.BYTE && mode$1.bit < bestMode.bit) {
+      throw new Error('"' + data + '"' +
+        ' cannot be encoded with mode ' + mode.toString(mode$1) +
+        '.\n Suggested mode is: ' + mode.toString(bestMode))
+    }
+
+    // Use Mode.BYTE if Kanji support is disabled
+    if (mode$1 === mode.KANJI && !utils.isKanjiModeEnabled()) {
+      mode$1 = mode.BYTE;
+    }
+
+    switch (mode$1) {
+      case mode.NUMERIC:
+        return new numericData(data)
+
+      case mode.ALPHANUMERIC:
+        return new alphanumericData(data)
+
+      case mode.KANJI:
+        return new kanjiData(data)
+
+      case mode.BYTE:
+        return new byteData(data)
+    }
+  }
+
+  /**
+   * Builds a list of segments from an array.
+   * Array can contain Strings or Objects with segment's info.
+   *
+   * For each item which is a string, will be generated a segment with the given
+   * string and the more appropriate encoding mode.
+   *
+   * For each item which is an object, will be generated a segment with the given
+   * data and mode.
+   * Objects must contain at least the property "data".
+   * If property "mode" is not present, the more suitable mode will be used.
+   *
+   * @param  {Array} array Array of objects with segments data
+   * @return {Array}       Array of Segments
+   */
+  exports.fromArray = function fromArray (array) {
+    return array.reduce(function (acc, seg) {
+      if (typeof seg === 'string') {
+        acc.push(buildSingleSegment(seg, null));
+      } else if (seg.data) {
+        acc.push(buildSingleSegment(seg.data, seg.mode));
+      }
+
+      return acc
+    }, [])
+  };
+
+  /**
+   * Builds an optimized sequence of segments from a string,
+   * which will produce the shortest possible bitstream.
+   *
+   * @param  {String} data    Input string
+   * @param  {Number} version QR Code version
+   * @return {Array}          Array of segments
+   */
+  exports.fromString = function fromString (data, version) {
+    var segs = getSegmentsFromString(data, utils.isKanjiModeEnabled());
+
+    var nodes = buildNodes(segs);
+    var graph = buildGraph(nodes, version);
+    var path = dijkstra_1.find_path(graph.map, 'start', 'end');
+
+    var optimizedSegs = [];
+    for (var i = 1; i < path.length - 1; i++) {
+      optimizedSegs.push(graph.table[path[i]].node);
+    }
+
+    return exports.fromArray(mergeSegments(optimizedSegs))
+  };
+
+  /**
+   * Splits a string in various segments with the modes which
+   * best represent their content.
+   * The produced segments are far from being optimized.
+   * The output of this function is only used to estimate a QR Code version
+   * which may contain the data.
+   *
+   * @param  {string} data Input string
+   * @return {Array}       Array of segments
+   */
+  exports.rawSplit = function rawSplit (data) {
+    return exports.fromArray(
+      getSegmentsFromString(data, utils.isKanjiModeEnabled())
+    )
+  };
+  });
+  var segments_1 = segments.fromArray;
+  var segments_2 = segments.fromString;
+  var segments_3 = segments.rawSplit;
+
+  /**
+   * QRCode for JavaScript
+   *
+   * modified by Ryan Day for nodejs support
+   * Copyright (c) 2011 Ryan Day
+   *
+   * Licensed under the MIT license:
+   *   http://www.opensource.org/licenses/mit-license.php
+   *
+  //---------------------------------------------------------------------
+  // QRCode for JavaScript
+  //
+  // Copyright (c) 2009 Kazuhiko Arase
+  //
+  // URL: http://www.d-project.com/
+  //
+  // Licensed under the MIT license:
+  //   http://www.opensource.org/licenses/mit-license.php
+  //
+  // The word "QR Code" is registered trademark of
+  // DENSO WAVE INCORPORATED
+  //   http://www.denso-wave.com/qrcode/faqpatent-e.html
+  //
+  //---------------------------------------------------------------------
+  */
+
+  /**
+   * Add finder patterns bits to matrix
+   *
+   * @param  {BitMatrix} matrix  Modules matrix
+   * @param  {Number}    version QR Code version
+   */
+  function setupFinderPattern (matrix, version) {
+    var size = matrix.size;
+    var pos = finderPattern.getPositions(version);
+
+    for (var i = 0; i < pos.length; i++) {
+      var row = pos[i][0];
+      var col = pos[i][1];
+
+      for (var r = -1; r <= 7; r++) {
+        if (row + r <= -1 || size <= row + r) continue
+
+        for (var c = -1; c <= 7; c++) {
+          if (col + c <= -1 || size <= col + c) continue
+
+          if ((r >= 0 && r <= 6 && (c === 0 || c === 6)) ||
+            (c >= 0 && c <= 6 && (r === 0 || r === 6)) ||
+            (r >= 2 && r <= 4 && c >= 2 && c <= 4)) {
+            matrix.set(row + r, col + c, true, true);
+          } else {
+            matrix.set(row + r, col + c, false, true);
+          }
+        }
+      }
+    }
+  }
+
+  /**
+   * Add timing pattern bits to matrix
+   *
+   * Note: this function must be called before {@link setupAlignmentPattern}
+   *
+   * @param  {BitMatrix} matrix Modules matrix
+   */
+  function setupTimingPattern (matrix) {
+    var size = matrix.size;
+
+    for (var r = 8; r < size - 8; r++) {
+      var value = r % 2 === 0;
+      matrix.set(r, 6, value, true);
+      matrix.set(6, r, value, true);
+    }
+  }
+
+  /**
+   * Add alignment patterns bits to matrix
+   *
+   * Note: this function must be called after {@link setupTimingPattern}
+   *
+   * @param  {BitMatrix} matrix  Modules matrix
+   * @param  {Number}    version QR Code version
+   */
+  function setupAlignmentPattern (matrix, version) {
+    var pos = alignmentPattern.getPositions(version);
+
+    for (var i = 0; i < pos.length; i++) {
+      var row = pos[i][0];
+      var col = pos[i][1];
+
+      for (var r = -2; r <= 2; r++) {
+        for (var c = -2; c <= 2; c++) {
+          if (r === -2 || r === 2 || c === -2 || c === 2 ||
+            (r === 0 && c === 0)) {
+            matrix.set(row + r, col + c, true, true);
+          } else {
+            matrix.set(row + r, col + c, false, true);
+          }
+        }
+      }
+    }
+  }
+
+  /**
+   * Add version info bits to matrix
+   *
+   * @param  {BitMatrix} matrix  Modules matrix
+   * @param  {Number}    version QR Code version
+   */
+  function setupVersionInfo (matrix, version$1) {
+    var size = matrix.size;
+    var bits = version.getEncodedBits(version$1);
+    var row, col, mod;
+
+    for (var i = 0; i < 18; i++) {
+      row = Math.floor(i / 3);
+      col = i % 3 + size - 8 - 3;
+      mod = ((bits >> i) & 1) === 1;
+
+      matrix.set(row, col, mod, true);
+      matrix.set(col, row, mod, true);
+    }
+  }
+
+  /**
+   * Add format info bits to matrix
+   *
+   * @param  {BitMatrix} matrix               Modules matrix
+   * @param  {ErrorCorrectionLevel}    errorCorrectionLevel Error correction level
+   * @param  {Number}    maskPattern          Mask pattern reference value
+   */
+  function setupFormatInfo (matrix, errorCorrectionLevel, maskPattern) {
+    var size = matrix.size;
+    var bits = formatInfo.getEncodedBits(errorCorrectionLevel, maskPattern);
+    var i, mod;
+
+    for (i = 0; i < 15; i++) {
+      mod = ((bits >> i) & 1) === 1;
+
+      // vertical
+      if (i < 6) {
+        matrix.set(i, 8, mod, true);
+      } else if (i < 8) {
+        matrix.set(i + 1, 8, mod, true);
+      } else {
+        matrix.set(size - 15 + i, 8, mod, true);
+      }
+
+      // horizontal
+      if (i < 8) {
+        matrix.set(8, size - i - 1, mod, true);
+      } else if (i < 9) {
+        matrix.set(8, 15 - i - 1 + 1, mod, true);
+      } else {
+        matrix.set(8, 15 - i - 1, mod, true);
+      }
+    }
+
+    // fixed module
+    matrix.set(size - 8, 8, 1, true);
+  }
+
+  /**
+   * Add encoded data bits to matrix
+   *
+   * @param  {BitMatrix} matrix Modules matrix
+   * @param  {Buffer}    data   Data codewords
+   */
+  function setupData (matrix, data) {
+    var size = matrix.size;
+    var inc = -1;
+    var row = size - 1;
+    var bitIndex = 7;
+    var byteIndex = 0;
+
+    for (var col = size - 1; col > 0; col -= 2) {
+      if (col === 6) col--;
+
+      while (true) {
+        for (var c = 0; c < 2; c++) {
+          if (!matrix.isReserved(row, col - c)) {
+            var dark = false;
+
+            if (byteIndex < data.length) {
+              dark = (((data[byteIndex] >>> bitIndex) & 1) === 1);
+            }
+
+            matrix.set(row, col - c, dark);
+            bitIndex--;
+
+            if (bitIndex === -1) {
+              byteIndex++;
+              bitIndex = 7;
+            }
+          }
+        }
+
+        row += inc;
+
+        if (row < 0 || size <= row) {
+          row -= inc;
+          inc = -inc;
+          break
+        }
+      }
+    }
+  }
+
+  /**
+   * Create encoded codewords from data input
+   *
+   * @param  {Number}   version              QR Code version
+   * @param  {ErrorCorrectionLevel}   errorCorrectionLevel Error correction level
+   * @param  {ByteData} data                 Data input
+   * @return {Buffer}                        Buffer containing encoded codewords
+   */
+  function createData (version, errorCorrectionLevel, segments) {
+    // Prepare data buffer
+    var buffer = new bitBuffer();
+
+    segments.forEach(function (data) {
+      // prefix data with mode indicator (4 bits)
+      buffer.put(data.mode.bit, 4);
+
+      // Prefix data with character count indicator.
+      // The character count indicator is a string of bits that represents the
+      // number of characters that are being encoded.
+      // The character count indicator must be placed after the mode indicator
+      // and must be a certain number of bits long, depending on the QR version
+      // and data mode
+      // @see {@link Mode.getCharCountIndicator}.
+      buffer.put(data.getLength(), mode.getCharCountIndicator(data.mode, version));
+
+      // add binary data sequence to buffer
+      data.write(buffer);
+    });
+
+    // Calculate required number of bits
+    var totalCodewords = utils.getSymbolTotalCodewords(version);
+    var ecTotalCodewords = errorCorrectionCode.getTotalCodewordsCount(version, errorCorrectionLevel);
+    var dataTotalCodewordsBits = (totalCodewords - ecTotalCodewords) * 8;
+
+    // Add a terminator.
+    // If the bit string is shorter than the total number of required bits,
+    // a terminator of up to four 0s must be added to the right side of the string.
+    // If the bit string is more than four bits shorter than the required number of bits,
+    // add four 0s to the end.
+    if (buffer.getLengthInBits() + 4 <= dataTotalCodewordsBits) {
+      buffer.put(0, 4);
+    }
+
+    // If the bit string is fewer than four bits shorter, add only the number of 0s that
+    // are needed to reach the required number of bits.
+
+    // After adding the terminator, if the number of bits in the string is not a multiple of 8,
+    // pad the string on the right with 0s to make the string's length a multiple of 8.
+    while (buffer.getLengthInBits() % 8 !== 0) {
+      buffer.putBit(0);
+    }
+
+    // Add pad bytes if the string is still shorter than the total number of required bits.
+    // Extend the buffer to fill the data capacity of the symbol corresponding to
+    // the Version and Error Correction Level by adding the Pad Codewords 11101100 (0xEC)
+    // and 00010001 (0x11) alternately.
+    var remainingByte = (dataTotalCodewordsBits - buffer.getLengthInBits()) / 8;
+    for (var i = 0; i < remainingByte; i++) {
+      buffer.put(i % 2 ? 0x11 : 0xEC, 8);
+    }
+
+    return createCodewords(buffer, version, errorCorrectionLevel)
+  }
+
+  /**
+   * Encode input data with Reed-Solomon and return codewords with
+   * relative error correction bits
+   *
+   * @param  {BitBuffer} bitBuffer            Data to encode
+   * @param  {Number}    version              QR Code version
+   * @param  {ErrorCorrectionLevel} errorCorrectionLevel Error correction level
+   * @return {Buffer}                         Buffer containing encoded codewords
+   */
+  function createCodewords (bitBuffer, version, errorCorrectionLevel) {
+    // Total codewords for this QR code version (Data + Error correction)
+    var totalCodewords = utils.getSymbolTotalCodewords(version);
+
+    // Total number of error correction codewords
+    var ecTotalCodewords = errorCorrectionCode.getTotalCodewordsCount(version, errorCorrectionLevel);
+
+    // Total number of data codewords
+    var dataTotalCodewords = totalCodewords - ecTotalCodewords;
+
+    // Total number of blocks
+    var ecTotalBlocks = errorCorrectionCode.getBlocksCount(version, errorCorrectionLevel);
+
+    // Calculate how many blocks each group should contain
+    var blocksInGroup2 = totalCodewords % ecTotalBlocks;
+    var blocksInGroup1 = ecTotalBlocks - blocksInGroup2;
+
+    var totalCodewordsInGroup1 = Math.floor(totalCodewords / ecTotalBlocks);
+
+    var dataCodewordsInGroup1 = Math.floor(dataTotalCodewords / ecTotalBlocks);
+    var dataCodewordsInGroup2 = dataCodewordsInGroup1 + 1;
+
+    // Number of EC codewords is the same for both groups
+    var ecCount = totalCodewordsInGroup1 - dataCodewordsInGroup1;
+
+    // Initialize a Reed-Solomon encoder with a generator polynomial of degree ecCount
+    var rs = new reedSolomonEncoder(ecCount);
+
+    var offset = 0;
+    var dcData = new Array(ecTotalBlocks);
+    var ecData = new Array(ecTotalBlocks);
+    var maxDataSize = 0;
+    var buffer = new typedarrayBuffer(bitBuffer.buffer);
+
+    // Divide the buffer into the required number of blocks
+    for (var b = 0; b < ecTotalBlocks; b++) {
+      var dataSize = b < blocksInGroup1 ? dataCodewordsInGroup1 : dataCodewordsInGroup2;
+
+      // extract a block of data from buffer
+      dcData[b] = buffer.slice(offset, offset + dataSize);
+
+      // Calculate EC codewords for this data block
+      ecData[b] = rs.encode(dcData[b]);
+
+      offset += dataSize;
+      maxDataSize = Math.max(maxDataSize, dataSize);
+    }
+
+    // Create final data
+    // Interleave the data and error correction codewords from each block
+    var data = new typedarrayBuffer(totalCodewords);
+    var index = 0;
+    var i, r;
+
+    // Add data codewords
+    for (i = 0; i < maxDataSize; i++) {
+      for (r = 0; r < ecTotalBlocks; r++) {
+        if (i < dcData[r].length) {
+          data[index++] = dcData[r][i];
+        }
+      }
+    }
+
+    // Apped EC codewords
+    for (i = 0; i < ecCount; i++) {
+      for (r = 0; r < ecTotalBlocks; r++) {
+        data[index++] = ecData[r][i];
+      }
+    }
+
+    return data
+  }
+
+  /**
+   * Build QR Code symbol
+   *
+   * @param  {String} data                 Input string
+   * @param  {Number} version              QR Code version
+   * @param  {ErrorCorretionLevel} errorCorrectionLevel Error level
+   * @return {Object}                      Object containing symbol data
+   */
+  function createSymbol (data, version$1, errorCorrectionLevel) {
+    var segments$1;
+
+    if (isarray(data)) {
+      segments$1 = segments.fromArray(data);
+    } else if (typeof data === 'string') {
+      var estimatedVersion = version$1;
+
+      if (!estimatedVersion) {
+        var rawSegments = segments.rawSplit(data);
+
+        // Estimate best version that can contain raw splitted segments
+        estimatedVersion = version.getBestVersionForData(rawSegments,
+          errorCorrectionLevel);
+      }
+
+      // Build optimized segments
+      // If estimated version is undefined, try with the highest version
+      segments$1 = segments.fromString(data, estimatedVersion);
+    } else {
+      throw new Error('Invalid data')
+    }
+
+    // Get the min version that can contain data
+    var bestVersion = version.getBestVersionForData(segments$1,
+        errorCorrectionLevel);
+
+    // If no version is found, data cannot be stored
+    if (!bestVersion) {
+      throw new Error('The amount of data is too big to be stored in a QR Code')
+    }
+
+    // If not specified, use min version as default
+    if (!version$1) {
+      version$1 = bestVersion;
+
+    // Check if the specified version can contain the data
+    } else if (version$1 < bestVersion) {
+      throw new Error('\n' +
+        'The chosen QR Code version cannot contain this amount of data.\n' +
+        'Minimum version required to store current data is: ' + bestVersion + '.\n'
+      )
+    }
+
+    var dataBits = createData(version$1, errorCorrectionLevel, segments$1);
+
+    // Allocate matrix buffer
+    var moduleCount = utils.getSymbolSize(version$1);
+    var modules = new bitMatrix(moduleCount);
+
+    // Add function modules
+    setupFinderPattern(modules, version$1);
+    setupTimingPattern(modules);
+    setupAlignmentPattern(modules, version$1);
+
+    // Add temporary dummy bits for format info just to set them as reserved.
+    // This is needed to prevent these bits from being masked by {@link MaskPattern.applyMask}
+    // since the masking operation must be performed only on the encoding region.
+    // These blocks will be replaced with correct values later in code.
+    setupFormatInfo(modules, errorCorrectionLevel, 0);
+
+    if (version$1 >= 7) {
+      setupVersionInfo(modules, version$1);
+    }
+
+    // Add data codewords
+    setupData(modules, dataBits);
+
+    // Find best mask pattern
+    var maskPattern$1 = maskPattern.getBestMask(modules,
+      setupFormatInfo.bind(null, modules, errorCorrectionLevel));
+
+    // Apply mask pattern
+    maskPattern.applyMask(maskPattern$1, modules);
+
+    // Replace format info bits with correct values
+    setupFormatInfo(modules, errorCorrectionLevel, maskPattern$1);
+
+    return {
+      modules: modules,
+      version: version$1,
+      errorCorrectionLevel: errorCorrectionLevel,
+      maskPattern: maskPattern$1,
+      segments: segments$1
+    }
+  }
+
+  /**
+   * QR Code
+   *
+   * @param {String | Array} data                 Input data
+   * @param {Object} options                      Optional configurations
+   * @param {Number} options.version              QR Code version
+   * @param {String} options.errorCorrectionLevel Error correction level
+   * @param {Function} options.toSJISFunc         Helper func to convert utf8 to sjis
+   */
+  var create = function create (data, options) {
+    if (typeof data === 'undefined' || data === '') {
+      throw new Error('No input text')
+    }
+
+    var errorCorrectionLevel$1 = errorCorrectionLevel.M;
+    var version$1;
+
+    if (typeof options !== 'undefined') {
+      // Use higher error correction level as default
+      errorCorrectionLevel$1 = errorCorrectionLevel.from(options.errorCorrectionLevel, errorCorrectionLevel.M);
+      version$1 = version.from(options.version);
+
+      if (options.toSJISFunc) {
+        utils.setToSJISFunction(options.toSJISFunc);
+      }
+    }
+
+    return createSymbol(data, version$1, errorCorrectionLevel$1)
+  };
+
+  var qrcode = {
+  	create: create
+  };
+
+  function hex2rgba (hex) {
+    if (typeof hex !== 'string') {
+      throw new Error('Color should be defined as hex string')
+    }
+
+    var hexCode = hex.slice().replace('#', '').split('');
+    if (hexCode.length < 3 || hexCode.length === 5 || hexCode.length > 8) {
+      throw new Error('Invalid hex color: ' + hex)
+    }
+
+    // Convert from short to long form (fff -> ffffff)
+    if (hexCode.length === 3 || hexCode.length === 4) {
+      hexCode = Array.prototype.concat.apply([], hexCode.map(function (c) {
+        return [c, c]
+      }));
+    }
+
+    // Add default alpha value
+    if (hexCode.length === 6) hexCode.push('F', 'F');
+
+    var hexValue = parseInt(hexCode.join(''), 16);
+
+    return {
+      r: (hexValue >> 24) & 255,
+      g: (hexValue >> 16) & 255,
+      b: (hexValue >> 8) & 255,
+      a: hexValue & 255
+    }
+  }
+
+  var getOptions = function getOptions (options) {
+    if (!options) options = {};
+    if (!options.color) options.color = {};
+
+    var margin = typeof options.margin === 'undefined' ||
+      options.margin === null ||
+      options.margin < 0 ? 4 : options.margin;
+
+    return {
+      scale: options.scale || 4,
+      margin: margin,
+      color: {
+        dark: hex2rgba(options.color.dark || '#000000ff'),
+        light: hex2rgba(options.color.light || '#ffffffff')
+      },
+      type: options.type,
+      rendererOpts: options.rendererOpts || {}
+    }
+  };
+
+  var qrToImageData = function qrToImageData (imgData, qr, margin, scale, color) {
+    var size = qr.modules.size;
+    var data = qr.modules.data;
+    var scaledMargin = margin * scale;
+    var symbolSize = size * scale + scaledMargin * 2;
+    var palette = [color.light, color.dark];
+
+    for (var i = 0; i < symbolSize; i++) {
+      for (var j = 0; j < symbolSize; j++) {
+        var posDst = (i * symbolSize + j) * 4;
+        var pxColor = color.light;
+
+        if (i >= scaledMargin && j >= scaledMargin &&
+          i < symbolSize - scaledMargin && j < symbolSize - scaledMargin) {
+          var iSrc = Math.floor((i - scaledMargin) / scale);
+          var jSrc = Math.floor((j - scaledMargin) / scale);
+          pxColor = palette[data[iSrc * size + jSrc]];
+        }
+
+        imgData[posDst++] = pxColor.r;
+        imgData[posDst++] = pxColor.g;
+        imgData[posDst++] = pxColor.b;
+        imgData[posDst] = pxColor.a;
+      }
+    }
+  };
+
+  var utils$1 = {
+  	getOptions: getOptions,
+  	qrToImageData: qrToImageData
+  };
+
+  var canvas = createCommonjsModule(function (module, exports) {
+  function clearCanvas (ctx, canvas, size) {
+    ctx.clearRect(0, 0, canvas.width, canvas.height);
+
+    if (!canvas.style) canvas.style = {};
+    canvas.height = size;
+    canvas.width = size;
+    canvas.style.height = size + 'px';
+    canvas.style.width = size + 'px';
+  }
+
+  function getCanvasElement () {
+    try {
+      return document.createElement('canvas')
+    } catch (e) {
+      throw new Error('You need to specify a canvas element')
+    }
+  }
+
+  exports.render = function render (qrData, canvas, options) {
+    var opts = options;
+    var canvasEl = canvas;
+
+    if (typeof opts === 'undefined' && (!canvas || !canvas.getContext)) {
+      opts = canvas;
+      canvas = undefined;
+    }
+
+    if (!canvas) {
+      canvasEl = getCanvasElement();
+    }
+
+    opts = utils$1.getOptions(opts);
+    var size = (qrData.modules.size + opts.margin * 2) * opts.scale;
+
+    var ctx = canvasEl.getContext('2d');
+    var image = ctx.createImageData(size, size);
+    utils$1.qrToImageData(image.data, qrData, opts.margin, opts.scale, opts.color);
+
+    clearCanvas(ctx, canvasEl, size);
+    ctx.putImageData(image, 0, 0);
+
+    return canvasEl
+  };
+
+  exports.renderToDataURL = function renderToDataURL (qrData, canvas, options) {
+    var opts = options;
+
+    if (typeof opts === 'undefined' && (!canvas || !canvas.getContext)) {
+      opts = canvas;
+      canvas = undefined;
+    }
+
+    if (!opts) opts = {};
+
+    var canvasEl = exports.render(qrData, canvas, opts);
+
+    var type = opts.type || 'image/png';
+    var rendererOpts = opts.rendererOpts || {};
+
+    return canvasEl.toDataURL(type, rendererOpts.quality)
+  };
+  });
+  var canvas_1 = canvas.render;
+  var canvas_2 = canvas.renderToDataURL;
+
+  function getColorAttrib (color) {
+    return 'fill="rgb(' + [color.r, color.g, color.b].join(',') + ')" ' +
+      'fill-opacity="' + (color.a / 255).toFixed(2) + '"'
+  }
+
+  var render = function render (qrData, options) {
+    var opts = utils$1.getOptions(options);
+    var size = qrData.modules.size;
+    var data = qrData.modules.data;
+    var qrcodesize = (size + opts.margin * 2) * opts.scale;
+
+    var xmlStr = '<?xml version="1.0" encoding="utf-8"?>\n';
+    xmlStr += '<!DOCTYPE svg PUBLIC "-//W3C//DTD SVG 1.1//EN" "http://www.w3.org/Graphics/SVG/1.1/DTD/svg11.dtd">\n';
+
+    xmlStr += '<svg version="1.1" baseProfile="full"';
+    xmlStr += ' width="' + qrcodesize + '" height="' + qrcodesize + '"';
+    xmlStr += ' viewBox="0 0 ' + qrcodesize + ' ' + qrcodesize + '"';
+    xmlStr += ' xmlns="http://www.w3.org/2000/svg"';
+    xmlStr += ' xmlns:xlink="http://www.w3.org/1999/xlink"';
+    xmlStr += ' xmlns:ev="http://www.w3.org/2001/xml-events">\n';
+
+    xmlStr += '<rect x="0" y="0" width="' + qrcodesize + '" height="' + qrcodesize + '" ' + getColorAttrib(opts.color.light) + ' />\n';
+    xmlStr += '<defs><rect id="p" width="' + opts.scale + '" height="' + opts.scale + '" /></defs>\n';
+    xmlStr += '<g ' + getColorAttrib(opts.color.dark) + '>\n';
+
+    for (var i = 0; i < size; i++) {
+      for (var j = 0; j < size; j++) {
+        if (!data[i * size + j]) continue
+
+        var x = (opts.margin + j) * opts.scale;
+        var y = (opts.margin + i) * opts.scale;
+        xmlStr += '<use x="' + x + '" y="' + y + '" xlink:href="#p" />\n';
+      }
+    }
+
+    xmlStr += '</g>\n';
+    xmlStr += '</svg>';
+
+    return xmlStr
+  };
+
+  var svgRender = {
+  	render: render
+  };
+
+  var browser = createCommonjsModule(function (module, exports) {
+  function renderCanvas (renderFunc, canvas, text, opts, cb) {
+    var argsNum = arguments.length - 1;
+    if (argsNum < 2) {
+      throw new Error('Too few arguments provided')
+    }
+
+    if (argsNum === 2) {
+      cb = text;
+      text = canvas;
+      canvas = opts = undefined;
+    } else if (argsNum === 3) {
+      if (canvas.getContext && typeof cb === 'undefined') {
+        cb = opts;
+        opts = undefined;
+      } else {
+        cb = opts;
+        opts = text;
+        text = canvas;
+        canvas = undefined;
+      }
+    }
+
+    if (typeof cb !== 'function') {
+      throw new Error('Callback required as last argument')
+    }
+
+    try {
+      var data = qrcode.create(text, opts);
+      cb(null, renderFunc(data, canvas, opts));
+    } catch (e) {
+      cb(e);
+    }
+  }
+
+  exports.create = qrcode.create;
+  exports.toCanvas = renderCanvas.bind(null, canvas.render);
+  exports.toDataURL = renderCanvas.bind(null, canvas.renderToDataURL);
+
+  // only svg for now.
+  exports.toString = renderCanvas.bind(null, function (data, _, opts) {
+    return svgRender.render(data, opts)
+  });
+
+  /**
+   * Legacy API
+   */
+  exports.qrcodedraw = function () {
+    return {
+      draw: exports.toCanvas
+    }
+  };
+  });
+  var browser_1 = browser.create;
+  var browser_2 = browser.toCanvas;
+  var browser_3 = browser.toDataURL;
+  var browser_4 = browser.qrcodedraw;
+
+  var isMobile = function isMobile() {
+    return navigator && ('userAgent' in navigator && navigator.userAgent.match(/iPhone|iPod|iPad|Android/i) || navigator.maxTouchPoints > 1 && navigator.platform === 'MacIntel');
+  };
+
+  var removeLoader = function removeLoader(element) {
+    while (element.firstChild) {
+      element.removeChild(element.firstChild);
+    }
+  };
+
+  var haveStyleSheet = false;
+
+  var setLoader = function setLoader(element, styles) {
+    var loaderClass = "".concat(styles.prefix || 'wwp_', "qrcode_loader");
+    var loader = document.createElement('div');
+    loader.className = loaderClass;
+    loader.innerHTML = "<div class=\"".concat(loaderClass, "_blk\"></div>\n  <div class=\"").concat(loaderClass, "_blk ").concat(loaderClass, "_delay\"></div>\n  <div class=\"").concat(loaderClass, "_blk ").concat(loaderClass, "_delay\"></div>\n  <div class=\"").concat(loaderClass, "_blk\"></div>");
+
+    if (!haveStyleSheet) {
+      var style = document.createElement('style');
+      style.innerHTML = "@keyframes ".concat(styles.prefix || 'wwp_', "pulse {\n      0%   { opacity: 1; }\n      100% { opacity: 0; }\n    }\n    .").concat(loaderClass, " {\n      display: flex;\n      flex-direction: row;\n      flex-wrap: wrap;\n      justify-content: space-around;\n      align-items: center;\n      width: 30%;\n      height: 30%;\n      margin-left: 35%;\n      padding-top: 35%;\n    }\n    .").concat(loaderClass, "_blk {\n      height: 35%;\n      width: 35%;\n      animation: ").concat(styles.prefix || 'wwp_', "pulse 0.75s ease-in infinite alternate;\n      background-color: #cccccc;\n    }\n    .").concat(loaderClass, "_delay {\n      animation-delay: 0.75s;\n    }");
+      document.getElementsByTagName('head')[0].appendChild(style);
+      haveStyleSheet = true;
+    }
+
+    removeLoader(element);
+    element.appendChild(loader);
+  };
+
+  var setRefersh = function setRefersh(element, error) {
+    var httpsRequired = error instanceof WWPassError && error.code === WWPASS_STATUS.SSL_REQUIRED;
+    var offline = window.navigator.onLine !== undefined && !window.navigator.onLine;
+    var wrapper = document.createElement('div');
+    wrapper.style.display = 'flex';
+    wrapper.style.alignItems = 'center';
+    wrapper.style.height = '100%';
+    wrapper.style.width = '100%';
+    var refreshNote = document.createElement('div');
+    refreshNote.style.margin = '0 10%';
+    refreshNote.style.width = '80%';
+    refreshNote.style.textAlign = 'center';
+    refreshNote.style.overflow = 'hidden';
+    var text = 'Error occured';
+
+    if (httpsRequired) {
+      text = 'Please use HTTPS';
+    } else if (offline) {
+      text = 'No internet connection';
+    }
+
+    refreshNote.innerHTML = "<p style=\"margin:0; font-size: 1.2em; color: black;\">".concat(text, "</p>");
+    var refreshButton = null;
+
+    if (!httpsRequired) {
+      refreshButton = document.createElement('a');
+      refreshButton.textContent = 'Retry';
+      refreshButton.style.fontWeight = '400';
+      refreshButton.style.fontFamily = '"Arial", sans-serif';
+      refreshButton.style.fontSize = '1.2em';
+      refreshButton.style.lineHeight = '1.7em';
+      refreshButton.style.cursor = 'pointer';
+      refreshButton.href = '#';
+      refreshNote.appendChild(refreshButton);
+    }
+
+    wrapper.appendChild(refreshNote); // eslint-disable-next-line no-console
+
+    console.error("Error in WWPass Library: ".concat(error));
+    removeLoader(element);
+    element.appendChild(wrapper);
+    return httpsRequired ? Promise.reject(error.message) : new Promise(function (resolve) {
+      // Refresh after 1 minute or on click
+      setTimeout(function () {
+        resolve({
+          refresh: true
+        });
+      }, 60000);
+      refreshButton.addEventListener('click', function (event) {
+        resolve({
+          refresh: true
+        });
+        event.preventDefault();
+      });
+
+      if (offline) {
+        window.addEventListener('online', function () {
+          return resolve({
+            refresh: true
+          });
+        });
+      }
+    });
+  };
+
+  var debouncePageVisibilityFactory = function debouncePageVisibilityFactory() {
+    var state = arguments.length > 0 && arguments[0] !== undefined ? arguments[0] : 'visible';
+    var debounce = null;
+    return function (fn) {
+      debounce = fn;
+
+      var onDebounce = function onDebounce() {
+        if (document.visibilityState === state) {
+          debounce();
+          document.removeEventListener('visibilitychange', onDebounce);
+        }
+      };
+
+      if (document.visibilityState === state) {
+        debounce();
+      } else {
+        document.addEventListener('visibilitychange', onDebounce);
+      }
+    };
+  };
+
+  var debouncePageVisible = debouncePageVisibilityFactory();
+
+  var QRCodePromise = function QRCodePromise(parentElement, wwpassURLoptions, ttl, qrcodeStyle) {
+    return new Promise(function (resolve) {
+      var QRCodeElement = document.createElement('canvas');
+      browser.toCanvas(QRCodeElement, getUniversalURL(wwpassURLoptions, false), qrcodeStyle || {}, function (error) {
+        if (error) {
+          throw error;
+        }
+      });
+
+      if (qrcodeStyle) {
+        QRCodeElement.className = "".concat(qrcodeStyle.prefix, "qrcode_canvas");
+        QRCodeElement.style.max_width = "".concat(qrcodeStyle.width, "px");
+        QRCodeElement.style.max_height = "".concat(qrcodeStyle.width, "px");
+      }
+
+      QRCodeElement.style.height = '100%';
+      QRCodeElement.style.width = '100%';
+
+      if (isMobile()) {
+        // Wrapping QRCode canvas in <a>
+        var universalLinkElement = document.createElement('a');
+        universalLinkElement.href = getUniversalURL(wwpassURLoptions);
+        universalLinkElement.appendChild(QRCodeElement);
+        universalLinkElement.addEventListener('click', function () {
+          resolve({
+            away: true
+          });
+        });
+        QRCodeElement = universalLinkElement;
+      }
+
+      removeLoader(parentElement);
+      parentElement.appendChild(QRCodeElement);
+      setTimeout(function () {
+        debouncePageVisible(function () {
+          resolve({
+            refresh: true
+          });
+        });
+      }, ttl * 900);
+    });
+  };
+
+  var clearQRCode = function clearQRCode(parentElement, style) {
+    return setLoader(parentElement, style);
+  };
+
+  // const DEFAULT_WAIT_CLASS = 'focused';
+  // style.transition = 'all .4s ease-out';
+  // style.opacity = '.3';
+
+  var PROTOCOL_VERSION = 2;
+  var WAIT_ON_CLICK = 2000;
+  var WAIT_ON_ERROR = 500;
+
+  function wait(ms) {
+    if (ms) return new Promise(function (r) {
+      return setTimeout(r, ms);
+    });
+    return null;
+  }
+
+  var tryQRCodeAuth =
+  /*#__PURE__*/
+  function () {
+    var _ref = asyncToGenerator(
+    /*#__PURE__*/
+    regenerator.mark(function _callee(options) {
+      var log, json, response, ticket, ttl, key, wwpassURLoptions, result;
+      return regenerator.wrap(function _callee$(_context) {
+        while (1) {
+          switch (_context.prev = _context.next) {
+            case 0:
+              log = options.log;
+              _context.prev = 1;
+              log(options);
+              clearQRCode(options.qrcode, options.qrcodeStyle);
+              _context.next = 6;
+              return getTicket(options.ticketURL);
+
+            case 6:
+              json = _context.sent;
+              response = ticketAdapter(json);
+              ticket = response.ticket;
+              ttl = response.ttl;
+              _context.next = 12;
+              return getClientNonceWrapper(ticket, ttl);
+
+            case 12:
+              key = _context.sent;
+              wwpassURLoptions = {
+                universal: options.universal,
+                ticket: ticket,
+                callbackURL: options.callbackURL,
+                ppx: options.ppx,
+                version: PROTOCOL_VERSION,
+                clientKey: key ? encodeClientKey(key) : undefined
+              };
+              _context.next = 16;
+              return Promise.race([QRCodePromise(options.qrcode, wwpassURLoptions, ttl, options.qrcodeStyle), getWebSocketResult({
+                callbackURL: options.callbackURL,
+                ticket: ticket,
+                log: log,
+                development: options.development,
+                version: options.version,
+                ppx: options.ppx,
+                spfewsAddress: options.spfewsAddress,
+                returnErrors: options.returnErrors
+              })]);
+
+            case 16:
+              result = _context.sent;
+              clearQRCode(options.qrcode, options.qrcodeStyle);
+
+              if (!result.refresh) {
+                _context.next = 20;
+                break;
+              }
+
+              return _context.abrupt("return", {
+                status: WWPASS_STATUS.CONTINUE,
+                reason: 'Need to refresh QRCode'
+              });
+
+            case 20:
+              if (result.clientKey && options.catchClientKey) {
+                options.catchClientKey(result.clientKey);
+              }
+
+              if (!result.away) {
+                _context.next = 24;
+                break;
+              }
+
+              closeConnectionPool();
+              return _context.abrupt("return", {
+                status: WWPASS_STATUS.OK,
+                reason: 'User clicked on QRCode'
+              });
+
+            case 24:
+              return _context.abrupt("return", result);
+
+            case 27:
+              _context.prev = 27;
+              _context.t0 = _context["catch"](1);
+
+              if (_context.t0.status) {
+                _context.next = 35;
+                break;
+              }
+
+              log('QRCode auth error', _context.t0);
+              _context.next = 33;
+              return setRefersh(options.qrcode, _context.t0);
+
+            case 33:
+              clearQRCode(options.qrcode, options.qrcodeStyle);
+              return _context.abrupt("return", {
+                status: WWPASS_STATUS.NETWORK_ERROR,
+                reason: _context.t0
+              });
+
+            case 35:
+              clearQRCode(options.qrcode, options.qrcodeStyle);
+
+              if (!(_context.t0.status === WWPASS_STATUS.INTERNAL_ERROR || options.returnErrors)) {
+                _context.next = 39;
+                break;
+              }
+
+              navigateToCallback(_context.t0);
+              return _context.abrupt("return", _context.t0);
+
+            case 39:
+              if (_context.t0.status === WWPASS_STATUS.TICKET_TIMEOUT) {
+                log('ticket timed out');
+              }
+
+              return _context.abrupt("return", _context.t0);
+
+            case 41:
+            case "end":
+              return _context.stop();
+          }
+        }
+      }, _callee, null, [[1, 27]]);
+    }));
+
+    return function tryQRCodeAuth(_x) {
+      return _ref.apply(this, arguments);
+    };
+  }();
+
+  var getDelay = function getDelay(status) {
+    switch (status) {
+      case WWPASS_STATUS.OK:
+        return WAIT_ON_CLICK;
+
+      case WWPASS_STATUS.CONTINUE:
+        return 0;
+
+      default:
+        return WAIT_ON_ERROR;
+    }
+  };
+  /*
+   * WWPass QR code auth function
+   *
+  options = {
+      'ticketURL': undefined, // string
+      'callbackURL': undefined, // string
+      'development': false, // work with dev server
+      'log': function (message) || console.log, // another log handler
+  }
+   */
+
+
+  var wwpassQRCodeAuth =
+  /*#__PURE__*/
+  function () {
+    var _ref2 = asyncToGenerator(
+    /*#__PURE__*/
+    regenerator.mark(function _callee2(initialOptions) {
+      var defaultOptions, options, result;
+      return regenerator.wrap(function _callee2$(_context2) {
+        while (1) {
+          switch (_context2.prev = _context2.next) {
+            case 0:
+              defaultOptions = {
+                universal: false,
+                ticketURL: undefined,
+                callbackURL: undefined,
+                development: false,
+                once: false,
+                // Repeat authentication while possible
+                version: 2,
+                ppx: 'wwp_',
+                spfewsAddress: 'wss://spfews.wwpass.com',
+                qrcodeStyle: {
+                  width: 256,
+                  prefix: 'wwp_'
+                },
+                log: function log() {}
+              };
+              options = objectSpread({}, defaultOptions, initialOptions);
+              options.qrcodeStyle = objectSpread({}, defaultOptions.qrcodeStyle, initialOptions.qrcodeStyle);
+
+              if (options.ticketURL) {
+                _context2.next = 5;
+                break;
+              }
+
+              throw Error('ticketURL not found');
+
+            case 5:
+              if (options.callbackURL) {
+                _context2.next = 7;
+                break;
+              }
+
+              throw Error('callbackURL not found');
+
+            case 7:
+              if (options.qrcode) {
+                _context2.next = 9;
+                break;
+              }
+
+              throw Error('Element not found');
+
+            case 9:
+              _context2.next = 11;
+              return tryQRCodeAuth(options);
+
+            case 11:
+              result = _context2.sent;
+
+              if (!(options.once && result.status !== WWPASS_STATUS.CONTINUE)) {
+                _context2.next = 14;
+                break;
+              }
+
+              return _context2.abrupt("return", result);
+
+            case 14:
+              _context2.next = 16;
+              return wait(getDelay(result.status));
+
+            case 16:
+              if (document.documentElement.contains(options.qrcode)) {
+                _context2.next = 9;
+                break;
+              }
+
+            case 17:
+              return _context2.abrupt("return", {
+                status: WWPASS_STATUS.TERMINAL_ERROR,
+                reason: 'QRCode element is not in DOM'
+              });
+
+            case 18:
+            case "end":
+              return _context2.stop();
+          }
+        }
+      }, _callee2);
+    }));
+
+    return function wwpassQRCodeAuth(_x2) {
+      return _ref2.apply(this, arguments);
+    };
+  }();
+
+  var openWithTicket = function openWithTicket(initialOptions) {
+    return new Promise(function (resolve) {
+      var defaultOptions = {
+        ticket: '',
+        ttl: 120,
+        callbackURL: '',
+        ppx: 'wwp_',
+        away: true
+      };
+
+      var options = objectSpread({}, defaultOptions, initialOptions);
+
+      if (isClientKeyTicket(options.ticket)) {
+        generateClientNonce(options.ticket, options.ttl).then(function (key) {
+          options = objectSpread({}, options, {
+            clientKey: encodeClientKey(key)
+          });
+          var url = getUniversalURL(options);
+
+          if (options.away) {
+            window.location.href = url;
+          } else {
+            resolve(url);
+          }
+        });
+      } else {
+        var url = getUniversalURL(options);
+
+        if (options.away) {
+          window.location.href = url;
+        } else {
+          resolve(url);
+        }
+      }
+    });
+  };
+
+  var prefix = window.location.protocol === 'https:' ? 'https:' : 'http:';
+  var CSS = "".concat(prefix, "//cdn.wwpass.com/packages/wwpass.js/2.4/wwpass.js.css");
+
+  var isNativeMessaging = function isNativeMessaging() {
+    var _navigator = navigator,
+        userAgent = _navigator.userAgent;
+    var re = /Firefox\/([0-9]+)\./;
+    var match = userAgent.match(re);
+
+    if (match && match.length > 1) {
+      var version = match[1];
+
+      if (Number(version) >= 51) {
+        return 'Firefox';
+      }
+    }
+
+    re = /Chrome\/([0-9]+)\./;
+    match = userAgent.match(re);
+
+    if (match && match.length > 1) {
+      var _version = match[1];
+
+      if (Number(_version) >= 45) {
+        return 'Chrome';
+      }
+    }
+
+    return false;
+  };
+
+  var wwpassPlatformName = function wwpassPlatformName() {
+    var _navigator2 = navigator,
+        userAgent = _navigator2.userAgent;
+    var knownPlatforms = ['Android', 'iPhone', 'iPad'];
+
+    for (var i = 0; i < knownPlatforms.length; i += 1) {
+      if (userAgent.search(new RegExp(knownPlatforms[i], 'i')) !== -1) {
+        return knownPlatforms[i];
+      }
+    }
+
+    return null;
+  };
+
+  var wwpassMessageForPlatform = function wwpassMessageForPlatform(platformName) {
+    return "".concat(WWPASS_UNSUPPORTED_PLATFORM_MSG_TMPL, " ").concat(platformName);
+  };
+
+  var wwpassShowError = function wwpassShowError(message, title, onCloseCallback) {
+    if (!document.getElementById('_wwpass_css')) {
+      var l = document.createElement('link');
+      l.id = '_wwpass_css';
+      l.rel = 'stylesheet';
+      l.href = CSS;
+      document.head.appendChild(l);
+    }
+
+    var dlg = document.createElement('div');
+    dlg.id = '_wwpass_err_dlg';
+    var dlgClose = document.createElement('span');
+    dlgClose.innerHTML = 'Close';
+    dlgClose.id = '_wwpass_err_close';
+    var header = document.createElement('h1');
+    header.innerHTML = title;
+    var text = document.createElement('div');
+    text.innerHTML = message;
+    dlg.appendChild(header);
+    dlg.appendChild(text);
+    dlg.appendChild(dlgClose);
+    document.body.appendChild(dlg);
+    document.getElementById('_wwpass_err_close').addEventListener('click', function () {
+      var elem = document.getElementById('_wwpass_err_dlg');
+      elem.parentNode.removeChild(elem);
+      onCloseCallback();
+      return false;
+    });
+    return true;
+  };
+
+  var wwpassNoSoftware = function wwpassNoSoftware(code, onclose) {
+    if (code === WWPASS_STATUS.NO_AUTH_INTERFACES_FOUND) {
+      var client = isNativeMessaging();
+      var message = '';
+
+      if (client) {
+        if (client === 'Chrome') {
+          var returnURL = encodeURIComponent(window.location.href);
+          message = '<p>The WWPass Authentication extension for Chrome is not installed or is disabled in browser settings.';
+          message += '<p>Click the link below to install and enable the WWPass Authentication extension.';
+          message += "<p><a href=\"https://chrome.wwpass.com/?callbackURL=".concat(returnURL, "\">Install WWPass Authentication Extension</a>");
+        } else if (client === 'Firefox') {
+          // Firefox
+          var _returnURL = encodeURIComponent(window.location.href);
+
+          message = '<p>The WWPass Authentication extension for Firefox is not installed or is disabled in browser settings.';
+          message += '<p>Click the link below to install and enable the WWPass Authentication extension.';
+          message += "<p><a href=\"https://firefox.wwpass.com/?callbackURL=".concat(_returnURL, "\">Install WWPass Authentication Extension</a>");
+        }
+      } else {
+        message = '<p>No Security Pack is found on your computer or WWPass&nbsp;Browser&nbsp;Plugin is disabled.</p><p>To install Security Pack visit <a href="https://ks.wwpass.com/download/">Key Services</a> or check plugin settings of your browser to activate WWPass&nbsp;Browser&nbsp;Plugin.</p><p><a href="https://support.wwpass.com/?topic=604">Learn more...</a></p>';
+      }
+
+      wwpassShowError(message, 'WWPass &mdash; No Software Found', onclose);
+    } else if (code === WWPASS_STATUS.UNSUPPORTED_PLATFORM) {
+      wwpassShowError(wwpassMessageForPlatform(wwpassPlatformName()), 'WWPass &mdash; Unsupported Platform', onclose);
+    }
+  };
+
+  var renderPassKeyButton = function renderPassKeyButton() {
+    var button = document.createElement('button');
+    button.innerHTML = '<svg id="icon-button_logo" viewBox="0 0 34 20" style="fill: none; left: 28px; stroke-width: 2px; width: 35px; height: 25px; top: 5px; position: absolute;"><switch><g><title>button_logo</title><path fill="#FFF" d="M31.2 20h-28c-1.7 0-3-1.3-3-3V3c0-1.7 1.3-3 3-3h27.4C32.5 0 34 1.6 34 3.6c0 1.3-.8 2.5-1.9 3L34 16.8c.2 1.6-.9 3-2.5 3.1-.1.1-.2.1-.3.1zM27 6h-1c-1.1 0-2 .9-2 2v1h-8.3c-.8-2.8-3.8-4.4-6.5-3.5S4.8 9.2 5.6 12s3.8 4.4 6.5 3.5c1.7-.5 3-1.8 3.5-3.5H27V6zm-1 1c-.6 0-1 .4-1 1v2H12.1V8.3c0-.2-.1-.3-.2-.3h-.2l-3.6 2.3c-.1.1-.2.3-.1.4l.1.1 3.6 2.2c.1.1.3 0 .4-.1V11H26V7z"></path></g></switch></svg> Log in with PassKey';
+    button.setAttribute('style', 'color: white; background-color: #2277E6; font-weight: 400; font-size: 18px; line-height: 36px; font-family: "Arial", sans-serif; padding-right: 15px; cursor: pointer; height: 40px; width: 255px; border-radius: 3px; border: 1px solid #2277E6; padding-left: 60px; text-decoration: none; position: relative;');
+    return button;
+  };
+
+  var PLUGIN_OBJECT_ID = '_wwpass_plugin';
+  var PLUGIN_MIME_TYPE = 'application/x-wwauth';
+  var PLUGIN_TIMEOUT = 10000;
+  var REDUCED_PLUGIN_TIMEOUT = 1000;
+  var PLUGIN_AUTH_KEYTYPE_REVISION = 9701;
+  var PluginInfo = {};
+  var savedPluginInstance;
+  var pendingReqests = [];
+
+  var havePlugin = function havePlugin() {
+    return navigator.mimeTypes[PLUGIN_MIME_TYPE] !== undefined;
+  };
+
+  var wwpassPluginShowsErrors = function wwpassPluginShowsErrors(pluginVersionString) {
+    if (typeof pluginVersionString === 'string') {
+      var pluginVersion = pluginVersionString.split('.');
+
+      for (var i = 0; i < pluginVersion.length; i += 1) {
+        pluginVersion[i] = parseInt(pluginVersion[i], 10);
+      }
+
+      if (pluginVersion.length === 3) {
+        if (pluginVersion[0] > 2 || pluginVersion[0] === 2 && pluginVersion[1] > 4 || pluginVersion[0] === 2 && pluginVersion[1] === 4 && pluginVersion[2] >= 1305) {
+          return true;
+        }
+      }
+    }
+
+    return false;
+  };
+
+  var getPluginInstance = function getPluginInstance(log) {
+    return new Promise(function (resolve, reject) {
+      if (savedPluginInstance) {
+        if (window._wwpass_plugin_loaded !== undefined) {
+          // eslint-disable-line no-underscore-dangle
+          pendingReqests.push([resolve, reject]);
+        } else {
+          log('%s: plugin is already initialized', 'getPluginInstance');
+          resolve(savedPluginInstance);
+        }
+      } else {
+        var junkBrowser = navigator.mimeTypes.length === 0;
+        var pluginInstalled = havePlugin();
+        var timeout = junkBrowser ? REDUCED_PLUGIN_TIMEOUT : PLUGIN_TIMEOUT;
+
+        if (pluginInstalled || junkBrowser) {
+          log('%s: trying to create plugin instance(junkBrowser=%s, timeout=%d)', 'getPluginInstance', junkBrowser, timeout);
+          var pluginHtml = "<object id='".concat(PLUGIN_OBJECT_ID, "' width=0 height=0 type='").concat(PLUGIN_MIME_TYPE, "'><param name='onload' value='_wwpass_plugin_loaded'/></object>");
+          var pluginDiv = document.createElement('div');
+          pluginDiv.setAttribute('style', 'position: fixed; left: 0; top:0; width: 1px; height: 1px; z-index: -1; opacity: 0.01');
+          document.body.appendChild(pluginDiv);
+          pluginDiv.innerHTML += pluginHtml;
+          savedPluginInstance = document.getElementById(PLUGIN_OBJECT_ID);
+          var timer = setTimeout(function () {
+            delete window._wwpass_plugin_loaded; // eslint-disable-line no-underscore-dangle
+
+            savedPluginInstance = null;
+            log('%s: WWPass plugin loading timeout', 'getPluginInstance');
+            reject({
+              code: WWPASS_STATUS.NO_AUTH_INTERFACES_FOUND,
+              message: WWPASS_NO_AUTH_INTERFACES_FOUND_MSG
+            });
+
+            for (var i = 0; i < pendingReqests.length; i += 1) {
+              var pendingReject = pendingReqests[i][1];
+              pendingReject({
+                code: WWPASS_STATUS.NO_AUTH_INTERFACES_FOUND,
+                message: WWPASS_NO_AUTH_INTERFACES_FOUND_MSG
+              });
+            }
+          }, PLUGIN_TIMEOUT);
+
+          window._wwpass_plugin_loaded = function () {
+            // eslint-disable-line no-underscore-dangle
+            log('%s: plugin loaded', 'getPluginInstance');
+            delete window._wwpass_plugin_loaded; // eslint-disable-line no-underscore-dangle
+
+            clearTimeout(timer);
+
+            try {
+              PluginInfo.versionString = savedPluginInstance.version;
+              PluginInfo.revision = parseInt(savedPluginInstance.version.split('.')[2], 10);
+              PluginInfo.showsErrors = wwpassPluginShowsErrors(PluginInfo.versionString);
+            } catch (err) {
+              log('%s: error parsing plugin version: %s', 'getPluginInstance', err);
+            }
+
+            resolve(savedPluginInstance);
+
+            for (var i = 0; i < pendingReqests.length; i += 1) {
+              var pendingResolve = pendingReqests[i][0];
+              pendingResolve(savedPluginInstance);
+            }
+          };
+        } else {
+          log('%s: no suitable plugins installed', 'getPluginInstance');
+          reject({
+            code: WWPASS_STATUS.NO_AUTH_INTERFACES_FOUND,
+            message: WWPASS_NO_AUTH_INTERFACES_FOUND_MSG
+          });
+        }
+      }
+    });
+  };
+
+  var wrapCallback = function wrapCallback(callback) {
+    if (!PluginInfo.showsErrors) {
+      return function (code, ticketOrMessage) {
+        if (code !== WWPASS_STATUS.OK && code !== WWPASS_STATUS.USER_REJECT) {
+          var message = "<p><b>A error has occured:</b> ".concat(ticketOrMessage, "</p>") + "<p><a href=\"https://support.wwpass.com/?topic=".concat(code, "\">Learn more</a></p>");
+          wwpassShowError(message, 'WWPass Error', function () {
+            callback(code, ticketOrMessage);
+          });
+        } else {
+          callback(code, ticketOrMessage);
+        }
+      };
+    }
+
+    return callback;
+  };
+
+  var wwpassPluginExecute = function wwpassPluginExecute(inputRequest) {
+    return new Promise(function (resolve, reject) {
+      var defaultOptions = {
+        log: function log() {}
+      };
+
+      var request = objectSpread({}, defaultOptions, inputRequest);
+
+      request.log('%s: called, operation name is "%s"', 'wwpassPluginExecute', request.operation || null);
+      getPluginInstance(request.log).then(function (plugin) {
+        var wrappedCallback = wrapCallback(function (code, ticketOrMessage) {
+          if (code === WWPASS_STATUS.OK) {
+            resolve(ticketOrMessage);
+          } else {
+            reject({
+              code: code,
+              message: ticketOrMessage
+            });
+          }
+        });
+
+        if (plugin.execute !== undefined) {
+          request.callback = wrappedCallback;
+          plugin.execute(request);
+        } else if (request.operation === 'auth') {
+          if (PluginInfo.revision < PLUGIN_AUTH_KEYTYPE_REVISION) {
+            plugin.authenticate(request.ticket, wrappedCallback);
+          } else {
+            plugin.authenticate(request.ticket, wrappedCallback, request.firstKeyType || WWPASS_KEY_TYPE_DEFAULT);
+          }
+        } else {
+          plugin.do_operation(request.operation, wrappedCallback);
+        }
+      }).catch(reject);
+    });
+  };
+
+  var pluginWaitForRemoval = function pluginWaitForRemoval() {
+    var log = arguments.length > 0 && arguments[0] !== undefined ? arguments[0] : function () {};
+    return new Promise(function (resolve, reject) {
+      getPluginInstance(log).then(function (plugin) {
+        plugin.on_key_removed(resolve);
+      }).catch(reject);
+    });
+  };
+
+  var EXTENSION_POLL_TIMEOUT = 200;
+  var EXTENSION_POLL_ATTEMPTS = 15;
+  var extensionNotInstalled = false;
+
+  var timedPoll = function timedPoll(args) {
+    var condition = args.condition;
+
+    if (typeof condition === 'function') {
+      condition = condition();
+    }
+
+    if (condition) {
+      args.onCondition();
+    } else {
+      var attempts = args.attempts || 0;
+
+      if (attempts--) {
+        // eslint-disable-line no-plusplus
+        var timeout = args.timeout || 100;
+        setTimeout(function (p) {
+          return function () {
+            timedPoll(p);
+          };
+        }({
+          timeout: timeout,
+          attempts: attempts,
+          condition: args.condition,
+          onCondition: args.onCondition,
+          onTimeout: args.onTimeout
+        }), timeout);
+      } else {
+        args.onTimeout();
+      }
+    }
+  };
+
+  var isNativeMessagingExtensionReady = function isNativeMessagingExtensionReady() {
+    return (document.querySelector('meta[property="wwpass:extension:version"]') || document.getElementById('_WWAuth_Chrome_Installed_')) !== null;
+  };
+
+  var randomID = function randomID() {
+    return ((1 + Math.random()) * 0x100000000 | 0).toString(16).substring(1);
+  }; // eslint-disable-line no-bitwise,max-len
+
+
+  var wwpassNMCall = function wwpassNMCall(func, args) {
+    var log = arguments.length > 2 && arguments[2] !== undefined ? arguments[2] : function () {};
+    return new Promise(function (resolve, reject) {
+      if (extensionNotInstalled) {
+        log('%s: chrome native messaging extension is not installed', 'wwpassNMExecute');
+        reject({
+          code: WWPASS_STATUS.NO_AUTH_INTERFACES_FOUND,
+          message: WWPASS_NO_AUTH_INTERFACES_FOUND_MSG
+        });
+        return;
+      }
+
+      timedPoll({
+        timeout: EXTENSION_POLL_TIMEOUT,
+        attempts: EXTENSION_POLL_ATTEMPTS,
+        condition: isNativeMessagingExtensionReady,
+        onCondition: function onCondition() {
+          var id = randomID();
+          window.postMessage({
+            type: '_WWAuth_Message',
+            src: 'client',
+            id: id,
+            func: func,
+            args: args ? JSON.parse(JSON.stringify(args)) : args
+          }, '*');
+          window.addEventListener('message', function onMessageCallee(event) {
+            if (event.data.type === '_WWAuth_Message' && event.data.src === 'plugin' && event.data.id === id) {
+              window.removeEventListener('message', onMessageCallee, false);
+
+              if (event.data.code === WWPASS_STATUS.NO_AUTH_INTERFACES_FOUND) {
+                var message = '<p>No Security Pack is found on your computer or WWPass&nbsp;native&nbsp;host is not responding.</p><p>To install Security Pack visit <a href="https://ks.wwpass.com/download/">Key Services</a> </p><p><a href="https://support.wwpass.com/?topic=604">Learn more...</a></p>';
+                wwpassShowError(message, 'WWPass Error', function () {
+                  reject({
+                    code: event.data.code,
+                    message: event.data.ticketOrMessage
+                  });
+                });
+              } else if (event.data.code === WWPASS_STATUS.OK) {
+                resolve(event.data.ticketOrMessage);
+              } else {
+                reject({
+                  code: event.data.code,
+                  message: event.data.ticketOrMessage
+                });
+              }
+            }
+          }, false);
+        },
+        onTimeout: function onTimeout() {
+          extensionNotInstalled = true;
+          log('%s: chrome native messaging extension is not installed', 'wwpassNMExecute');
+          reject({
+            code: WWPASS_STATUS.NO_AUTH_INTERFACES_FOUND,
+            message: WWPASS_NO_AUTH_INTERFACES_FOUND_MSG
+          });
+        }
+      });
+    });
+  };
+
+  var wwpassNMExecute = function wwpassNMExecute(inputRequest) {
+    var defaultOptions = {
+      log: function log() {}
+    };
+
+    var request = objectSpread({}, defaultOptions, inputRequest);
+
+    var log = request.log;
+    delete request.log;
+    log('%s: called', 'wwpassNMExecute');
+    request.uri = {
+      domain: window.location.hostname,
+      protocol: window.location.protocol
+    };
+    return wwpassNMCall('exec', [request], log);
+  };
+
+  var nmWaitForRemoval = function nmWaitForRemoval() {
+    var log = arguments.length > 0 && arguments[0] !== undefined ? arguments[0] : function () {};
+    return wwpassNMCall('on_key_rm', undefined, log);
+  };
+
+  var pluginPresent = function pluginPresent() {
+    return havePlugin() || isNativeMessagingExtensionReady();
+  };
+
+  var wwpassPlatformName$1 = function wwpassPlatformName() {
+    var _navigator = navigator,
+        userAgent = _navigator.userAgent;
+    var knownPlatforms = ['Android', 'iPhone', 'iPad'];
+
+    for (var i = 0; i < knownPlatforms.length; i += 1) {
+      if (userAgent.search(new RegExp(knownPlatforms[i], 'i')) !== -1) {
+        return knownPlatforms[i];
+      }
+    }
+
+    return null;
+  }; // N.B. it call functions in REVERSE order
+
+
+  var chainedCall = function chainedCall(functions, request, resolve, reject) {
+    functions.pop()(request).then(resolve, function (e) {
+      if (e.code === WWPASS_STATUS.NO_AUTH_INTERFACES_FOUND) {
+        if (functions.length > 0) {
+          chainedCall(functions, request, resolve, reject);
+        } else {
+          wwpassNoSoftware(e.code, function () {});
+          reject(e);
+        }
+      } else {
+        reject(e);
+      }
+    });
+  };
+
+  var wwpassCall = function wwpassCall(nmFunc, pluginFunc, request) {
+    return new Promise(function (resolve, reject) {
+      var platformName = wwpassPlatformName$1();
+
+      if (platformName !== null) {
+        wwpassNoSoftware(WWPASS_STATUS.UNSUPPORTED_PLATFORM, function () {
+          reject({
+            code: WWPASS_STATUS.UNSUPPORTED_PLATFORM,
+            message: wwpassMessageForPlatform(platformName)
+          });
+        });
+        return;
+      }
+
+      if (havePlugin()) {
+        chainedCall([nmFunc, pluginFunc], request, resolve, reject);
+      } else {
+        chainedCall([pluginFunc, nmFunc], request, resolve, reject);
+      }
+    });
+  };
+
+  var wwpassAuth = function wwpassAuth(request) {
+    return wwpassCall(wwpassNMExecute, wwpassPluginExecute, objectSpread({}, request, {
+      operation: 'auth'
+    }));
+  };
+
+  var waitForRemoval = function waitForRemoval() {
+    return wwpassCall(nmWaitForRemoval, pluginWaitForRemoval);
+  };
+
+  var doWWPassPasskeyAuth = function doWWPassPasskeyAuth(options) {
+    return getTicket(options.ticketURL).then(function (json) {
+      var response = ticketAdapter(json);
+      var ticket = response.ticket;
+      return getClientNonceWrapper(ticket, response.ttl).then(function (key) {
+        return wwpassAuth({
+          ticket: ticket,
+          clientKeyNonce: key !== undefined ? abToB64(key) : undefined,
+          log: options.log
+        });
+      }).then(function () {
+        return ticket;
+      });
+      /* We may receive new ticket here but we need
+       * to keep the original one to find nonce */
+    });
+  };
+
+  var initPasskeyButton = function initPasskeyButton(options, resolve, reject) {
+    if (options.passkeyButton.innerHTML.length === 0) {
+      options.passkeyButton.appendChild(renderPassKeyButton());
+    }
+
+    var authUnderway = false;
+    options.passkeyButton.addEventListener('click', function (e) {
+      if (!authUnderway) {
+        authUnderway = true;
+        doWWPassPasskeyAuth(options).then(function (newTicket) {
+          authUnderway = false;
+          resolve({
+            ppx: options.ppx,
+            version: options.version,
+            code: WWPASS_STATUS.OK,
+            message: WWPASS_OK_MSG,
+            ticket: newTicket,
+            callbackURL: options.callbackURL,
+            hw: true
+          });
+        }, function (err) {
+          authUnderway = false;
+
+          if (!err.code) {
+            options.log('passKey error', err);
+          } else if (err.code === WWPASS_STATUS.INTERNAL_ERROR || options.returnErrors) {
+            reject({
+              ppx: options.ppx,
+              version: options.version,
+              code: err.code,
+              message: err.message,
+              callbackURL: options.callbackURL
+            });
+          }
+        });
+      }
+
+      e.preventDefault();
+    }, false);
+  };
+
+  var wwpassPasskeyAuth = function wwpassPasskeyAuth(initialOptions) {
+    return new Promise(function (resolve, reject) {
+      var defaultOptions = {
+        ticketURL: '',
+        callbackURL: '',
+        ppx: 'wwp_',
+        forcePasskeyButton: true,
+        log: function log() {}
+      };
+
+      var options = objectSpread({}, defaultOptions, initialOptions);
+
+      if (!options.passkeyButton) {
+        reject({
+          ppx: options.ppx,
+          version: options.version,
+          code: WWPASS_STATUS.INTERNAL_ERROR,
+          message: 'Cannot find passkey element',
+          callbackURL: options.callbackURL
+        });
+      }
+
+      if (options.forcePasskeyButton || pluginPresent()) {
+        if (options.passkeyButton.style.display === 'none') {
+          options.passkeyButton.style.display = null;
+        }
+
+        initPasskeyButton(options, resolve, reject);
+      } else {
+        var displayBackup = options.passkeyButton.style.display;
+        options.passkeyButton.style.display = 'none';
+        var observer = new MutationObserver(function (_mutationsList, _observer) {
+          if (pluginPresent()) {
+            _observer.disconnect();
+
+            options.passkeyButton.style.display = displayBackup === 'none' ? null : displayBackup;
+            initPasskeyButton(options, resolve, reject);
+          }
+        });
+        observer.observe(document.head, {
+          childList: true
+        });
+      }
+    }).then(navigateToCallback, navigateToCallback);
+  };
+
+  var absolutePath = function absolutePath(href) {
+    var link = document.createElement('a');
+    link.href = href;
+    return link.href;
+  };
+
+  var authInit = function authInit(initialOptions) {
+    var defaultOptions = {
+      ticketURL: '',
+      callbackURL: '',
+      hw: false,
+      ppx: 'wwp_',
+      version: 2,
+      log: function log() {}
+    };
+
+    var options = objectSpread({}, defaultOptions, initialOptions);
+
+    if (typeof options.callbackURL === 'string') {
+      options.callbackURL = absolutePath(options.callbackURL);
+    }
+
+    options.passkeyButton = typeof options.passkey === 'string' ? document.querySelector(options.passkey) : options.passkey;
+    options.qrcode = typeof options.qrcode === 'string' ? document.querySelector(options.qrcode) : options.qrcode;
+    var promises = [];
+
+    if (options.passkeyButton) {
+      promises.push(wwpassPasskeyAuth(options));
+    }
+
+    promises.push(wwpassQRCodeAuth(options));
+    return Promise.race(promises);
+  };
+
+  var version$1 = "2.1.6";
+
+  if ('console' in window && window.console.log) {
+    window.console.log("WWPass frontend library version ".concat(version$1));
+  }
+
+  window.WWPass = {
+    authInit: authInit,
+    openWithTicket: openWithTicket,
+    isClientKeyTicket: isClientKeyTicket,
+    cryptoPromise: WWPassCryptoPromise,
+    copyClientNonce: copyClientNonce,
+    updateTicket: updateTicket,
+    pluginPresent: pluginPresent,
+    waitForRemoval: waitForRemoval,
+    STATUS: WWPASS_STATUS
+  };
+
+}());
+//# sourceMappingURL=wwpass-frontend.js.map
diff --git a/oxAuth/Server/integrations/wwpass/ticket.json b/oxAuth/Server/integrations/wwpass/ticket.json
new file mode 100644
index 00000000..bdff117e
--- /dev/null
+++ b/oxAuth/Server/integrations/wwpass/ticket.json
@@ -0,0 +1,9 @@
+#!/bin/bash
+if [[ "$QUERY_STRING" =~ ^p=.* ]]
+then
+    auth_type="p"
+fi
+
+echo "Content-type: application/json"
+echo ""
+curl "https://spfe.wwpass.com/get.json?auth_type=$auth_type" --cert /opt/wwpass_gluu/gluu_client.crt --key /opt/wwpass_gluu/gluu_client.key --cacert /opt/wwpass_gluu/wwpass.ca.crt -s
diff --git a/oxAuth/Server/integrations/wwpass/wwpass.ca.crt b/oxAuth/Server/integrations/wwpass/wwpass.ca.crt
new file mode 100644
index 00000000..19c91f55
--- /dev/null
+++ b/oxAuth/Server/integrations/wwpass/wwpass.ca.crt
@@ -0,0 +1,35 @@
+-----BEGIN CERTIFICATE-----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+-----END CERTIFICATE----- 
diff --git a/oxAuth/Server/integrations/wwpass/wwpass.py b/oxAuth/Server/integrations/wwpass/wwpass.py
new file mode 100644
index 00000000..00139c78
--- /dev/null
+++ b/oxAuth/Server/integrations/wwpass/wwpass.py
@@ -0,0 +1,235 @@
+# -*- coding: utf-8 -*-
+__author__="Rostislav Kondratenko <r.kondratenko@wwpass.com>"
+__date__ ="$27.11.2014 18:05:15$"
+
+# Copyright 2009-2019 WWPASS Corporation
+#
+# Licensed under the Apache License, Version 2.0 (the "License");
+# you may not use this file except in compliance with the License.
+# You may obtain a copy of the License at
+#
+#   http://www.apache.org/licenses/LICENSE-2.0
+#
+# Unless required by applicable law or agreed to in writing, software
+# distributed under the License is distributed on an "AS IS" BASIS,
+# WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+# See the License for the specific language governing permissions and
+# limitations under the License.
+
+import pickle
+from threading import Lock
+import ssl
+try:
+    # python3
+    from urllib.request import urlopen
+    from urllib.parse import urlencode
+    from urllib.error import URLError
+except ImportError:
+    # python2
+    from urllib2 import urlopen, URLError
+    from urllib import urlencode
+
+DEFAULT_CADATA = u'''-----BEGIN CERTIFICATE-----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+-----END CERTIFICATE----- '''
+
+PIN = 'p'
+SESSION_KEY = 's'
+CLIENT_KEY = 'c'
+
+class WWPassException(IOError):
+    pass
+
+class WWPassConnection(object):
+    def __init__(self, key_file, cert_file, timeout=10, spfe_addr='https://spfe.wwpass.com', cafile=None):
+        self.context = ssl.SSLContext(protocol=ssl.PROTOCOL_TLSv1)
+        self.context.load_cert_chain(certfile=cert_file, keyfile=key_file)
+        if cafile is None:
+            self.context.load_verify_locations(cadata=DEFAULT_CADATA)
+        else:
+            self.context.load_verify_locations(cafile=cafile)
+        self.spfe_addr = 'https://%s' % spfe_addr if spfe_addr.find('://') == -1 else spfe_addr
+        self.timeout = timeout
+
+    def makeRequest(self, method, command, attempts=3,**paramsDict):
+        params = {k:v.encode('UTF-8') if hasattr(v,"encode") else v for k, v in paramsDict.items() if v is not None}
+        try:
+            if method == 'GET':
+                res = urlopen(self.spfe_addr +'/'+command+'?'+urlencode(params), context=self.context, timeout=self.timeout)
+            else:
+                res = urlopen(self.spfe_addr +'/'+command, data=urlencode(params).encode('UTF-8'), context=self.context, timeout=self.timeout)
+            res = pickle.loads(res.read())
+            if not res['result']:
+                if 'code'in res:
+                    raise WWPassException('SPFE returned error: %s: %s' %(res['code'], res['data']))
+                raise WWPassException('SPFE returned error: %s' % res['data'])
+            return res
+        except URLError as e:
+            if attempts>0:
+                attempts -= 1
+            else:
+                raise
+        return self.makeRequest(method, command, attempts,**params)
+
+    def makeAuthTypeString(self, auth_types):
+        valid_auth_types = (PIN, SESSION_KEY, CLIENT_KEY)
+        return ''.join(x for x in auth_types if x in valid_auth_types)
+
+    def getName(self):
+        ticket = self.getTicket(ttl=0)['ticket']
+        pos = ticket.find(':')
+        if pos == -1:
+            raise WWPassException('Cannot extract service provider name from ticket.')
+        return ticket[:pos]
+
+    def getTicket(self, ttl=None, auth_types=()):
+        result = self.makeRequest('GET','get', ttl=ttl or None, auth_type=self.makeAuthTypeString(auth_types) or None)
+        return {'ticket' : result['data'], 'ttl' : result['ttl']}
+
+    def getPUID(self, ticket, auth_types=(), finalize=None):
+        result = self.makeRequest('GET','puid', ticket=ticket, auth_type=self.makeAuthTypeString(auth_types) or None, finalize=finalize)
+        return {'puid' : result['data']}
+
+    def putTicket(self, ticket, ttl=None, auth_types=(), finalize=None):
+        result = self.makeRequest('GET','put', ticket=ticket, ttl=ttl or None, auth_type=self.makeAuthTypeString(auth_types) or None, finalize=finalize)
+        return {'ticket' : result['data'], 'ttl' : result['ttl']}
+
+    def readData(self, ticket, container=b'', finalize=None):
+        result = self.makeRequest('GET','read', ticket=ticket, container=container or None, finalize=finalize)
+        return {'data' : result['data']}
+
+    def readDataAndLock(self, ticket, lockTimeout, container=b''):
+        result = self.makeRequest('GET','read', ticket=ticket, container=container or None, lock='1', to=lockTimeout)
+        return {'data' : result['data']}
+
+
+    def writeData(self, ticket, data, container=b'', finalize=None):
+        self.makeRequest('POST','write', ticket=ticket, data=data, container=container or None, finalize=finalize)
+        return True
+
+    def writeDataAndUnlock(self, ticket, data, container=b'', finalize=None):
+        self.makeRequest('POST','write', ticket=ticket, data=data, container=container or None, unlock='1', finalize=finalize)
+        return True
+
+    def lock(self, ticket, lockTimeout, lockid):
+        self.makeRequest('GET','lock',ticket=ticket, lockid=lockid, to=lockTimeout)
+        return True
+
+    def unlock(self, ticket, lockid, finalize=None):
+        self.makeRequest('GET','unlock', ticket=ticket, lockid=lockid, finalize=finalize)
+        return True
+
+    def getSessionKey(self, ticket, finalize=None):
+        result = self.makeRequest('GET','key', ticket=ticket, finalize=finalize)
+        return {'sessionKey' : result['data']}
+
+    def createPFID(self, data=''):
+        if data:
+            result =  self.makeRequest('POST','sp/create', data=data)
+        else:
+            result =  self.makeRequest('GET','sp/create')
+        return {'pfid' : result['data']}
+
+    def removePFID(self, pfid):
+        self.makeRequest('POST','sp/remove', pfid=pfid)
+        return True
+
+    def readDataSP(self, pfid):
+        result =  self.makeRequest('GET','sp/read', pfid=pfid)
+        return {'data' : result['data']}
+
+    def readDataSPandLock(self, pfid, lockTimeout):
+        result =  self.makeRequest('GET','sp/read', pfid=pfid, to=lockTimeout, lock=1)
+        return {'data' : result['data']}
+
+    def writeDataSP(self, pfid, data):
+        self.makeRequest('POST','sp/write', pfid=pfid, data=data)
+        return True
+
+    def writeDataSPandUnlock(self, pfid, data):
+        self.makeRequest('POST','sp/write', pfid=pfid, data=data, unlock=1)
+        return True
+
+    def lockSP(self, lockid, lockTimeout):
+        self.makeRequest('GET','sp/lock',lockid=lockid, to=lockTimeout)
+        return True
+
+    def unlockSP(self, lockid):
+        self.makeRequest('GET','sp/unlock',lockid=lockid)
+        return True
+
+    def getClientKey(self, ticket):
+        result =  self.makeRequest('GET','clientkey',ticket=ticket)
+        res_dict = {'clientKey' : result['data'], 'ttl' : result['ttl']}
+        if 'originalTicket' in result:
+            res_dict['originalTicket'] = result['originalTicket']
+        return res_dict
+
+class WWPassConnectionMT(WWPassConnection):
+    def __init__(self, key_file, cert_file, timeout=10, spfe_addr='https://spfe.wwpass.com', ca_file=None, initial_connections=2):
+        self.Pool = []
+        self.key_file = key_file
+        self.cert_file = cert_file
+        self.ca_file = ca_file
+        self.timeout = timeout
+        self.spfe_addr = spfe_addr
+        for _ in xrange(initial_connections):
+            self.addConnection()
+
+    def addConnection(self, acquired = False):
+        c = WWPassConnection(self.key_file, self.cert_file, self.timeout, self.spfe_addr, self.ca_file)
+        c.lock = Lock()
+        if acquired:
+            c.lock.acquire()
+        self.Pool.append(c)
+        return c
+
+    def getConnection(self):
+        for conn in (c for c in self.Pool if c.lock.acquire(False)):
+            return conn
+        conn=self.addConnection(True)
+        return conn
+
+    def makeRequest(self, method, command, attempts=3,**paramsDict):
+        conn = None
+        try:
+            conn = self.getConnection()
+            return conn.makeRequest(method, command, attempts, **paramsDict)
+        finally:
+            if conn is not None:
+                conn.lock.release()
+
+WWPASSConnection = WWPassConnection
+WWPASSConnectionMT = WWPassConnectionMT
diff --git a/oxAuth/Server/integrations/wwpass/wwpassauth.py b/oxAuth/Server/integrations/wwpass/wwpassauth.py
new file mode 100644
index 00000000..453e60ba
--- /dev/null
+++ b/oxAuth/Server/integrations/wwpass/wwpassauth.py
@@ -0,0 +1,289 @@
+from org.gluu.service.cdi.util import CdiUtil
+from org.gluu.oxauth.security import Identity
+from org.gluu.oxauth.model.configuration import AppConfiguration
+from org.gluu.model.custom.script.type.auth import PersonAuthenticationType
+from org.gluu.oxauth.service import AuthenticationService
+from org.xdi.oxauth.service import UserService
+from org.gluu.util import StringHelper
+from org.gluu.service import MailService
+from org.gluu.oxauth.model.configuration import AppConfiguration
+
+from javax.faces.context import FacesContext
+
+from com.google.common.io import BaseEncoding
+
+from urlparse import urlparse
+
+import jarray
+from java.util import Arrays
+from java.security import SecureRandom
+import java
+
+from time import time
+
+from wwpass import WWPassConnection
+
+
+class PersonAuthentication(PersonAuthenticationType):
+    EMAIL_NONCE_EXPIRATION = 600 # seconds
+
+    def __init__(self, currentTimeMillis):
+        self.currentTimeMillis = currentTimeMillis
+        self.user = None
+
+    @staticmethod
+    def generateNonce(keyLength):
+        bytes = jarray.zeros(keyLength, "b")
+        secureRandom = SecureRandom()
+        secureRandom.nextBytes(bytes)
+        return BaseEncoding.base64().omitPadding().encode(bytes)
+
+    def init(self, configurationAttributes):
+        print "WWPASS. Initialization"
+        self.allow_email_bind = configurationAttributes.get("allow_email_bind").getValue2() if configurationAttributes.containsKey("allow_email_bind") else ''
+        self.allow_password_bind = configurationAttributes.get("allow_password_bind").getValue2() if configurationAttributes.containsKey("allow_password_bind") else ''
+        self.allow_passkey_bind = configurationAttributes.get("allow_passkey_bind").getValue2() if configurationAttributes.containsKey("allow_passkey_bind") else ''
+        self.registration_url = configurationAttributes.get("registration_url").getValue2() if configurationAttributes.containsKey("registration_url") else ''
+        self.recovery_url = configurationAttributes.get("recovery_url").getValue2() if configurationAttributes.containsKey("recovery_url") else ''
+        self.wwc = WWPassConnection(
+            configurationAttributes.get("wwpass_key_file").getValue2(),
+            configurationAttributes.get("wwpass_crt_file").getValue2())
+        self.use_pin = configurationAttributes.get("use_pin").getValue2() if configurationAttributes.containsKey("use_pin") else None
+        self.auth_type = ('p',) if self.use_pin else ()
+        self.sso_cookie_domain = '.'.join(urlparse(CdiUtil.bean(AppConfiguration).getBaseEndpoint()).netloc.split('.')[-2:])
+        sso_cookie_tags = configurationAttributes.get("sso_cookie_tags").getValue2() if configurationAttributes.containsKey("sso_cookie_tags") else None
+        if sso_cookie_tags:
+            self.sso_cookie_tags = sso_cookie_tags.split(' ')
+        else:
+            self.sso_cookie_tags = []
+        print "WWPASS. Initialized successfully"
+        return True
+
+    def destroy(self, configurationAttributes):
+        print "WWPASS. Destroy"
+        return True
+
+    def getApiVersion(self):
+        return 2
+
+    def isValidAuthenticationMethod(self, usageType, configurationAttributes):
+        return True
+
+    def getAlternativeAuthenticationMethod(self, usageType, configurationAttributes):
+        return None
+
+    def tryFirstLogin(self, puid, userService, authenticationService): # Login user that was just registered via external link
+        user = userService.getUserByAttribute("oxTrustExternalId", "wwpass:%s"%puid)
+        if user and authenticationService.authenticate(user.getUserId()):
+                userService.addUserAttribute(user.getUserId(), "oxExternalUid", "wwpass:%s"%puid)
+                userService.removeUserAttribute(user.getUserId(),"oxTrustExternalId", "wwpass:%s"%puid)
+                return True
+        return False
+
+    def getPuid(self, ticket):
+        puid = self.wwc.getPUID(ticket, self.auth_type)['puid']
+        assert puid #Just in case it's empty or None
+        return puid
+
+    def authenticateWithWWPass(self, userService, authenticationService, identity, ticket):
+        puid = self.getPuid(ticket)
+        user = userService.getUserByAttribute("oxExternalUid", "wwpass:%s"%puid)
+        if user:
+            if authenticationService.authenticate(user.getUserId()):
+                return True
+        else:
+            if self.registration_url and self.tryFirstLogin(puid, userService, authenticationService):
+                return True
+            identity.setWorkingParameter("puid", puid)
+            identity.setWorkingParameter("ticket", ticket)
+            return True
+        return False
+
+    def bindWWPass(self, requestParameters, userService, authenticationService, identity, ticket):
+        puid = identity.getWorkingParameter("puid")
+        email = requestParameters.get('email')[0] if 'email' in requestParameters else None
+        if not puid:
+            identity.setWorkingParameter("errors", "WWPass login failed")
+            return False
+        if ticket:
+            puid_new = self.getPuid(ticket)
+            # Always use the latest PUID when retrying step 2
+            identity.setWorkingParameter("puid", puid_new)
+            if puid == puid_new:
+                # Registering via external web service
+                if not self.registration_url:
+                    return False
+                if self.tryFirstLogin(puid, userService, authenticationService):
+                    identity.setWorkingParameter("puid", None)
+                    return True
+            else:
+                if not self.allow_passkey_bind:
+                    return False
+                # Binding with existing PassKey
+                user = userService.getUserByAttribute("oxExternalUid", "wwpass:%s"%puid_new)
+                if user:
+                    if authenticationService.authenticate(user.getUserId()):
+                        userService.addUserAttribute(user.getUserId(), "oxExternalUid", "wwpass:%s"%puid)
+                        identity.setWorkingParameter("puid", None)
+                        return True
+                identity.setWorkingParameter("errors", "Invalid user")
+                return False
+        elif email:
+            # Binding via email
+            if not self.allow_email_bind:
+                return False
+            email = requestParameters.get('email')[0] if 'email' in requestParameters else None
+            identity.setWorkingParameter("email", email)
+            user = userService.getUserByAttribute('mail', email)
+            if not user:
+                print("User with email '%s' not found." % email)
+                return True
+            nonce = self.generateNonce(33)
+            mailService = CdiUtil.bean(MailService)
+            identity.setWorkingParameter("email_nonce", nonce)
+            identity.setWorkingParameter("email_nonce_exp", str(time() + self.EMAIL_NONCE_EXPIRATION))
+            subject = "Bind your WWPass Key"
+            body = """
+To bind your WWPass Key to your account, copy and paste the following
+code into "Email code" field in the login form:
+%s
+If you haven't requested this operation, you can safely disregard this email.
+            """
+            mailService.sendMail(email, subject, body % nonce)
+            return True
+        else:
+            # Binding via username/password
+            if not self.allow_password_bind:
+                return False
+            puid = identity.getWorkingParameter("puid")
+            if not puid:
+                return False
+            credentials = identity.getCredentials()
+            user_name = credentials.getUsername()
+            user_password = credentials.getPassword()
+            logged_in = False
+            if (StringHelper.isNotEmptyString(user_name) and StringHelper.isNotEmptyString(user_password)):
+                try:
+                    logged_in = authenticationService.authenticate(user_name, user_password)
+                except Exception as e:
+                    print(e)
+            if not logged_in:
+                identity.setWorkingParameter("errors", "Invalid username or password")
+                return False
+            user = authenticationService.getAuthenticatedUser()
+            if not user:
+                identity.setWorkingParameter("errors", "Invalid user")
+                return False
+            userService.addUserAttribute(user_name, "oxExternalUid", "wwpass:%s"%puid)
+            identity.setWorkingParameter("puid", None)
+            return True
+        return False
+
+    def checkEmailNonce(self, requestParameters, userService, authenticationService, identity, ticket):
+        # Verify email nonce
+        if not self.allow_email_bind:
+            identity.setWorkingParameter("email", None)
+            return False
+        puid = identity.getWorkingParameter("puid")
+        if not puid:
+            return False
+        nonce = requestParameters.get('code')[0] if 'code' in requestParameters else None
+        email = identity.getWorkingParameter("email")
+        proper_nonce = identity.getWorkingParameter("email_nonce")
+        nonce_expiration = float(identity.getWorkingParameter("email_nonce_exp") or 0.0)
+        if not nonce or not email or not proper_nonce or not nonce_expiration or nonce_expiration < time() or nonce != proper_nonce:
+            print("WWPass. Wrong email verification code", nonce,email,proper_nonce,nonce_expiration, time())
+            identity.setWorkingParameter("email", None)
+            identity.setWorkingParameter("errors", "Invalid email or verification code")
+            return False
+        user = userService.getUserByAttribute('mail', email)
+        identity.setWorkingParameter("email", None)
+        if user:
+            if authenticationService.authenticate(user.getUserId()):
+                userService.addUserAttribute(user.getUserId(), "oxExternalUid", "wwpass:%s"%identity.getWorkingParameter("puid"))
+                identity.setWorkingParameter("puid", None)
+                return True
+        print("No user")
+        return False
+
+
+    def doAuthenticate(self, step, requestParameters, userService, authenticationService, identity, ticket):
+        if step == 1:
+            return self.authenticateWithWWPass(userService, authenticationService, identity, ticket)
+        elif step == 2:
+            return self.bindWWPass(requestParameters, userService, authenticationService, identity, ticket)
+        elif step == 3:
+            return self.checkEmailNonce(requestParameters, userService, authenticationService, identity, ticket)
+        else:
+            return False
+
+
+    def authenticate(self, configurationAttributes, requestParameters, step):
+        print("WWPass. Authenticate for step %d" %step)
+        authenticationService = CdiUtil.bean(AuthenticationService)
+        userService = CdiUtil.bean(UserService)
+        ticket = requestParameters.get('wwp_ticket')[0] if 'wwp_ticket' in requestParameters else None
+        identity = CdiUtil.bean(Identity)
+        identity.setWorkingParameter("errors", "")
+        result = self.doAuthenticate(step, requestParameters, userService, authenticationService, identity, ticket)
+        if result and self.sso_cookie_tags:
+            externalContext = CdiUtil.bean(FacesContext).getExternalContext()
+            for tag in self.sso_cookie_tags:
+                externalContext.addResponseCookie("sso_magic_%s"%tag, "auth", {"path":"/", "domain":self.sso_cookie_domain, "maxAge": CdiUtil.bean(AppConfiguration).getSessionIdUnusedLifetime()})
+        return result
+
+    def prepareForStep(self, configurationAttributes, requestParameters, step):
+        identity = CdiUtil.bean(Identity)
+        identity.setWorkingParameter("sessionLifetime",CdiUtil.bean(AppConfiguration).getSessionIdUnauthenticatedUnusedLifetime())
+        identity.setWorkingParameter("use_pin", bool(self.use_pin))
+        print("PrepareForStep %s" % step)
+        if (step == 1):
+            return True
+        elif (step == 2):
+            identity.setWorkingParameter("registration_url", self.registration_url)
+            identity.setWorkingParameter("recovery_url", self.recovery_url)
+            identity.setWorkingParameter("allow_email_bind", self.allow_email_bind)
+            identity.setWorkingParameter("allow_password_bind", self.allow_password_bind)
+            identity.setWorkingParameter("allow_passkey_bind", self.allow_passkey_bind)
+            print("WWPASS. Errors:%s" % identity.getWorkingParameter("errors"))
+            return True
+        elif (step == 3):
+            return True
+        return False
+
+    def getExtraParametersForStep(self, configurationAttributes, step):
+        if step == 3:
+            return Arrays.asList("puid", "email", "email_nonce", "email_nonce_exp", "sessionLifetime")
+        return Arrays.asList("puid", "ticket", "use_pin", "errors", "email", "sessionLifetime")
+
+    def getCountAuthenticationSteps(self, configurationAttributes):
+        identity = CdiUtil.bean(Identity)
+        if not identity.isSetWorkingParameter("puid"):
+            return 1
+        if not identity.isSetWorkingParameter("email"):
+            return 2
+        return 3
+
+    def getPageForStep(self, configurationAttributes, step):
+        if step == 1:
+            return "/auth/wwpass/wwpass.xhtml"
+        if step == 2:
+            return "/auth/wwpass/wwpassbind.xhtml"
+        return "/auth/wwpass/checkemail.xhtml"
+
+    def logout(self, configurationAttributes, requestParameters):
+        print("WWPASS. Logout")
+        # This is not called. Probably bug in Gluu
+        # externalContext = CdiUtil.bean(FacesContext).getExternalContext()
+        # externalContext.addResponseCookie("sso_magic", "auth", {"path":"/", "domain":self.sso_cookie_domain, "maxAge": 0})
+        return True
+
+    def getNextStep(self, configurationAttributes, requestParameters, step):
+        # If user did not pass this step, change the step to previous one
+        identity = CdiUtil.bean(Identity)
+        puid = identity.getWorkingParameter("puid")
+        email = identity.getWorkingParameter("email")
+        print ("WWPass getNextStep for step %d, email: %s" % (step, email))
+        if puid and not email and step != 1:
+            return 2
+        return -1
diff --git a/oxAuth/Server/integrations/yubicloud/README.txt b/oxAuth/Server/integrations/yubicloud/README.txt
new file mode 100644
index 00000000..eea4807b
--- /dev/null
+++ b/oxAuth/Server/integrations/yubicloud/README.txt
@@ -0,0 +1,35 @@
+Yubicloud OTP Validataion
+=========================
+
+This is a single step authentication workflow. Instead of a human entering a
+password, Yubico's Yubikey OTP will be taken in as password.
+
+This script uses the Yubicloud Service by Yubico for validation of the OTP.
+
+Here are the steps required to setup the Yubico OTP as password.
+
+    1. Setup a custom attribute named the `yubikeyId`.  Add this attribute the
+       users who have to be authenticated via this method. Store the public part
+       of the Yubikey Idendity (usually the first 12 chars of OTP) in this
+       attribute against each user. This matches the user against the key.
+
+        Setting up Custom Attributes: https://www.gluu.org/docs/customize/attributes/
+        Find the Yubikey Idendity: https://demo.yubico.com
+
+    2. Register for a Yubicloud API Key and get client ID and client Secret.
+       https://upgrade.yubico.com/getapikey/
+
+    3. Configure the custom script:
+        i) Enter the value for `yubicloud_uri` as any one of the following:
+            api.yubico.com
+            api2.yubico.com
+            api3.yubico.com
+            api4.yubico.com
+            api5.yubico.com
+        ii) Enter the client secret as `yubicloud_api_key`
+        iii) Enter the client ID as `yubicloud_id`
+
+Now the method `yubicloud` can be set as the authentication mechanism and Yubikey
+can be used in place of the password of the users for authentication.
+
+
diff --git a/oxAuth/Server/integrations/yubicloud/YubicloudExternalAuthenticator.py b/oxAuth/Server/integrations/yubicloud/YubicloudExternalAuthenticator.py
new file mode 100644
index 00000000..24fe0919
--- /dev/null
+++ b/oxAuth/Server/integrations/yubicloud/YubicloudExternalAuthenticator.py
@@ -0,0 +1,118 @@
+# oxAuth is available under the MIT License (2008). See http://opensource.org/licenses/MIT for full text.
+# Copyright (c) 2016, Gluu
+#
+# Author: Yuriy Movchan, Arunmozhi
+#
+
+from org.gluu.service.cdi.util import CdiUtil
+from org.gluu.oxauth.security import Identity
+from org.gluu.model.custom.script.type.auth import PersonAuthenticationType
+from org.gluu.oxauth.service import UserService
+from org.gluu.util import StringHelper
+
+import java
+
+import urllib2
+import urllib
+import uuid
+
+
+class PersonAuthentication(PersonAuthenticationType):
+    def __init__(self, currentTimeMillis):
+        self.currentTimeMillis = currentTimeMillis
+
+    def init(self, customScript, configurationAttributes):
+        print "Yubicloud. Initialization"
+
+        self.api_server = configurationAttributes.get("yubicloud_uri").getValue2()
+        self.api_key = configurationAttributes.get("yubicloud_api_key").getValue2()
+        self.client_id = configurationAttributes.get("yubicloud_id").getValue2()
+
+        return True
+
+    def destroy(self, configurationAttributes):
+        print "Yubicloud. Destroyed successfully"
+        return True
+
+    def getApiVersion(self):
+        return 11
+        
+    def getAuthenticationMethodClaims(self, requestParameters):
+        return None
+        
+    def isValidAuthenticationMethod(self, usageType, configurationAttributes):
+        return True
+
+    def getAlternativeAuthenticationMethod(self, usageType, configurationAttributes):
+        return None
+
+    def authenticate(self, configurationAttributes, requestParameters, step):
+        if (step == 1):
+            print "Yubicloud. Authenticate for step 1"
+
+            identity = CdiUtil.bean(Identity)
+            credentials = identity.getCredentials()
+
+            username = credentials.getUsername()
+            otp = credentials.getPassword()
+
+            # Validate otp length
+            if len(otp) < 32 or len(otp) > 48:
+                print "Yubicloud. Invalid OTP length"
+                return False
+
+            user_service = CdiUtil.bean(UserService)
+            user = user_service.getUser(username)
+
+            public_key = user.getAttribute('yubikeyId')
+
+            # Match the user with the yubikey
+            if public_key not in otp:
+                print "Yubicloud. Public Key not matching OTP"
+                return False
+
+            data = ""
+            try:
+                nonce = str(uuid.uuid4()).replace("-", "")
+                params = urllib.urlencode({"id": self.client_id, "otp": otp, "nonce": nonce})
+                url = "https://" + self.api_server + "/wsapi/2.0/verify/?" + params
+                f = urllib2.urlopen(url)
+                data = f.read()
+            except Exception as e:
+                print "Yubicloud. Exception ", e
+
+            if 'status=OK' in data:
+                user_service.authenticate(username)
+                print "Yubicloud. Authentication Successful"
+                return True
+
+            print "Yubicloud. End of Step 1. Returning False."
+            return False
+        else:
+            return False
+
+    def prepareForStep(self, configurationAttributes, requestParameters, step):
+        if (step == 1):
+            print "Yubicloud. Prepare for Step 1"
+            return True
+        else:
+            return False
+
+    def getExtraParametersForStep(self, configurationAttributes, step):
+        return None
+
+    def getCountAuthenticationSteps(self, configurationAttributes):
+        return 1
+
+    def getPageForStep(self, configurationAttributes, step):
+        return ""
+
+    def getNextStep(self, configurationAttributes, requestParameters, step):
+        return -1
+
+    def getLogoutExternalUrl(self, configurationAttributes, requestParameters):
+        print "Get external logout URL call"
+        return None
+
+    def logout(self, configurationAttributes, requestParameters):
+        return True
diff --git a/oxAuth/Server/pom.xml b/oxAuth/Server/pom.xml
new file mode 100644
index 00000000..6b7f5e0b
--- /dev/null
+++ b/oxAuth/Server/pom.xml
@@ -0,0 +1,1263 @@
+<?xml version="1.0" encoding="UTF-8"?>
+<project xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" xmlns="http://maven.apache.org/POM/4.0.0"
+	xsi:schemaLocation="http://maven.apache.org/POM/4.0.0 http://maven.apache.org/maven-v4_0_0.xsd">
+	<modelVersion>4.0.0</modelVersion>
+	<artifactId>oxauth-server</artifactId>
+	<name>oxAuth Server</name>
+	<packaging>war</packaging>
+
+	<parent>
+		<groupId>org.gluu</groupId>
+		<artifactId>oxauth</artifactId>
+		<version>4.5.6-SNAPSHOT</version>
+	</parent>
+
+	<prerequisites>
+		<maven>${maven.min-version}</maven>
+	</prerequisites>
+
+	<build>
+		<finalName>${project.artifactId}</finalName>
+
+		<filters>
+			<filter>profiles/${cfg}/config-build.properties</filter>
+			<filter>profiles/${cfg}/config-oxauth-test-data.properties</filter>
+		</filters>
+
+		<resources>
+			<resource>
+				<directory>src/main/resources</directory>
+				<filtering>true</filtering>
+				<includes>
+					<include>**/*.xml</include>
+					<include>**/*.properties</include>
+					<include>META-INF/navigation/*.navigation.xml</include>
+					<include>META-INF/services/*.*</include>
+				</includes>
+			</resource>
+		</resources>
+
+		<testResources>
+			<testResource>
+				<directory>src/main/webapp</directory>
+				<includes>
+					<include>WEB-INF/**</include>
+				</includes>
+				<filtering>true</filtering>
+			</testResource>
+			<testResource>
+				<directory>src/test/resources</directory>
+				<filtering>true</filtering>
+			</testResource>
+		</testResources>
+
+		<plugins>
+			<plugin>
+				<groupId>org.apache.maven.plugins</groupId>
+				<artifactId>maven-install-plugin</artifactId>
+				<!-- check it : for some reason jar and war are not attached to project automatically, as temp solution install them manually -->
+				<executions>
+					<execution>
+						<id>install-jar</id>
+						<phase>install</phase>
+						<goals>
+							<goal>install-file</goal>
+						</goals>
+						<configuration>
+							<packaging>jar</packaging>
+							<artifactId>${project.artifactId}</artifactId>
+							<groupId>${project.groupId}</groupId>
+							<version>${project.version}</version>
+							<file>
+								${project.build.directory}/${project.build.finalName}.jar
+							</file>
+						</configuration>
+					</execution>
+					<execution>
+						<id>install-war</id>
+						<phase>install</phase>
+						<goals>
+							<goal>install-file</goal>
+						</goals>
+						<configuration>
+							<packaging>war</packaging>
+							<artifactId>${project.artifactId}</artifactId>
+							<groupId>${project.groupId}</groupId>
+							<version>${project.version}</version>
+							<file>
+								${project.build.directory}/${project.build.finalName}.war
+							</file>
+						</configuration>
+					</execution>
+				</executions>
+			</plugin>
+
+			<plugin>
+				<groupId>org.apache.maven.plugins</groupId>
+				<artifactId>maven-jar-plugin</artifactId>
+				<executions>
+					<execution>
+						<id>make-a-jar</id>
+						<phase>compile</phase>
+						<goals>
+							<goal>jar</goal>
+						</goals>
+					</execution>
+					<execution>
+						<goals>
+							<goal>test-jar</goal>
+						</goals>
+					</execution>
+				</executions>
+			</plugin>
+
+			<plugin>
+				<groupId>org.apache.maven.plugins</groupId>
+				<artifactId>maven-resources-plugin</artifactId>
+				<executions>
+					<execution>
+						<id>prepare-configuration-files</id>
+						<phase>process-test-resources</phase>
+						<goals>
+							<goal>copy-resources</goal>
+						</goals>
+						<configuration>
+							<outputDirectory>${project.build.directory}/conf</outputDirectory>
+							<resources>
+								<resource>
+									<directory>${basedir}/conf</directory>
+									<filtering>true</filtering>
+								</resource>
+							</resources>
+							<filters>
+								<filter>${basedir}/profiles/${cfg}/config-oxauth.properties</filter>
+								<filter>${basedir}/profiles/${cfg}/config-oxauth-test.properties</filter>
+							</filters>
+						</configuration>
+					</execution>
+				</executions>
+			</plugin>
+
+			<plugin>
+				<groupId>org.apache.maven.plugins</groupId>
+				<artifactId>maven-surefire-plugin</artifactId>
+				<configuration>
+					<argLine>-Xms1024m -Xmx2048m -XX:MaxMetaspaceSize=512m -XX:+DisableExplicitGC
+						-Dgluu.base=${project.build.directory}
+						-Dserver.base=${project.build.directory}
+						-Dlog.base=${project.build.directory}
+						-Dgluu.disable.scheduler=true
+ 
+					</argLine>
+				</configuration>
+			</plugin>
+
+			<plugin>
+				<groupId>org.apache.maven.plugins</groupId>
+				<artifactId>maven-war-plugin</artifactId>
+				<configuration>
+					<failOnMissingWebXml>false</failOnMissingWebXml>
+					<archive>
+						<manifest>
+							<addDefaultImplementationEntries>true</addDefaultImplementationEntries>
+						</manifest>
+						<manifestEntries>
+							<Implementation-Build>${buildNumber}</Implementation-Build>
+						</manifestEntries>
+					</archive>
+
+					<webResources>
+						<resource>
+							<directory>src/main/webapp</directory>
+							<filtering>true</filtering>
+							<includes>
+								<include>**/*.xml</include>
+								<include>**/*.properties</include>
+							</includes>
+						</resource>
+						<resource>
+							<directory>src/main/webapp</directory>
+							<filtering>false</filtering>
+							<includes>
+								<include>META-INF/navigation/*.navigation.xml</include>
+								<include>**/*.xhtml</include>
+								<include>**/*.jsp</include>
+								<include>**/*.html</include>
+								<include>**/*.pdf</include>
+								<include>**/*.js</include>
+								<include>**/*.css</include>
+								<include>**/*.xcss</include>
+								<include>**/*.png</include>
+								<include>**/*.jpg</include>
+								<include>**/*.gif</include>
+								<include>**/*.ico</include>
+							</includes>
+						</resource>
+					</webResources>
+				</configuration>
+			</plugin>
+
+			<!-- Build number plugin -->
+			<plugin>
+				<groupId>org.codehaus.mojo</groupId>
+				<artifactId>buildnumber-maven-plugin</artifactId>
+				<version>1.1</version>
+				<executions>
+					<execution>
+						<phase>validate</phase>
+						<goals>
+							<goal>create</goal>
+						</goals>
+					</execution>
+				</executions>
+				<configuration>
+					<doCheck>false</doCheck>
+					<doUpdate>false</doUpdate>
+				</configuration>
+			</plugin>
+
+            <plugin>
+                <groupId>pl.project13.maven</groupId>
+                <artifactId>git-commit-id-plugin</artifactId>
+                <version>2.2.6</version>
+                <executions>
+                    <execution>
+                        <id>get-the-git-infos</id>
+                        <goals>
+                            <goal>revision</goal>
+                        </goals>
+                    </execution>
+                </executions>
+                <configuration>
+                    <generateGitPropertiesFile>true</generateGitPropertiesFile>
+                    <failOnNoGitDirectory>false</failOnNoGitDirectory>
+                </configuration>
+            </plugin>
+
+			<!-- Jetty plugin -->
+			<plugin>
+				<groupId>org.eclipse.jetty</groupId>
+				<artifactId>jetty-maven-plugin</artifactId>
+				<configuration>
+					<webAppConfig>
+						<descriptor>${project.build.directory}/${project.build.finalName}/WEB-INF/web.xml</descriptor>
+						<contextPath>/oxauth</contextPath>
+					</webAppConfig>
+
+					<webAppSourceDirectory>${project.build.directory}/${project.build.finalName}</webAppSourceDirectory>
+					<scanIntervalSeconds>3</scanIntervalSeconds>
+				</configuration>
+			</plugin>
+		</plugins>
+	</build>
+
+	<reporting>
+		<plugins>
+			<!-- OWASP plugin -->
+			<plugin>
+				<groupId>org.owasp</groupId>
+				<artifactId>dependency-check-maven</artifactId>
+				<reportSets>
+					<reportSet>
+						<reports>
+							<report>aggregate</report>
+						</reports>
+					</reportSet>
+				</reportSets>
+			</plugin>
+		</plugins>
+	</reporting>
+
+	<dependencies>
+        <dependency>
+            <groupId>io.prometheus</groupId>
+            <artifactId>simpleclient_common</artifactId>
+            <version>0.9.0</version>
+        </dependency>
+        <dependency>
+            <groupId>net.agkn</groupId>
+            <artifactId>hll</artifactId>
+            <version>1.6.0</version>
+        </dependency>
+		<!-- https://github.com/wywygmbh/log4j-plugin-fluency -->
+		<dependency>
+			<groupId>com.wywy</groupId>
+			<artifactId>log4j-plugin-fluency</artifactId>
+		</dependency>
+		<!-- oxAuth -->
+		<dependency>
+			<groupId>org.gluu</groupId>
+			<artifactId>oxauth-model</artifactId>
+		</dependency>
+		<dependency>
+			<groupId>org.gluu</groupId>
+			<artifactId>oxauth-common</artifactId>
+			<exclusions>
+				<exclusion>
+					<groupId>org.bouncycastle</groupId>
+					<artifactId>bcprov-jdk15on</artifactId>
+				</exclusion>
+			</exclusions>
+		</dependency>
+		<!-- persistence model -->
+		<dependency>
+			<groupId>org.gluu</groupId>
+			<artifactId>oxauth-persistence-model</artifactId>
+		</dependency>
+
+		<dependency>
+			<groupId>org.gluu</groupId>
+			<artifactId>oxauth-client</artifactId>
+		</dependency>
+		<dependency>
+			<groupId>org.gluu</groupId>
+			<artifactId>oxauth-static</artifactId>
+		</dependency>
+
+		<!-- Gluu -->
+		<dependency>
+			<groupId>org.gluu</groupId>
+			<artifactId>oxcore-model</artifactId>
+		</dependency>
+		<dependency>
+			<groupId>org.gluu</groupId>
+			<artifactId>oxcore-util</artifactId>
+		</dependency>
+		<dependency>
+			<groupId>org.gluu</groupId>
+			<artifactId>gluu-orm-annotation</artifactId>
+		</dependency>
+		<dependency>
+			<groupId>org.gluu</groupId>
+			<artifactId>gluu-orm-ldap</artifactId>
+		</dependency>
+		<dependency>
+			<groupId>org.gluu</groupId>
+			<artifactId>gluu-orm-couchbase</artifactId>
+		</dependency>
+		<dependency>
+			<groupId>org.gluu</groupId>
+			<artifactId>gluu-orm-sql</artifactId>
+		</dependency>
+		<dependency>
+			<groupId>org.gluu</groupId>
+			<artifactId>gluu-orm-spanner</artifactId>
+		</dependency>
+		<dependency>
+			<groupId>org.gluu</groupId>
+			<artifactId>gluu-orm-hybrid</artifactId>
+		</dependency>
+		<dependency>
+			<groupId>org.gluu</groupId>
+			<artifactId>gluu-orm-cdi</artifactId>
+		</dependency>
+		<dependency>
+			<groupId>org.gluu</groupId>
+			<artifactId>oxcore-service</artifactId>
+		</dependency>
+		<dependency>
+			<groupId>org.gluu</groupId>
+			<artifactId>oxcore-server</artifactId>
+		</dependency>
+		<dependency>
+			<groupId>org.gluu</groupId>
+			<artifactId>oxcore-jsf-util</artifactId>
+		</dependency>
+		<dependency>
+			<groupId>org.gluu</groupId>
+			<artifactId>oxcore-timer-weld</artifactId>
+		</dependency>
+        <dependency>
+            <groupId>org.gluu</groupId>
+            <artifactId>oxcore-script</artifactId>
+        </dependency>
+
+		<!-- oxEleven -->
+		<dependency>
+			<groupId>org.gluu</groupId>
+			<artifactId>oxeleven-model</artifactId>
+		</dependency>
+		<dependency>
+			<groupId>org.gluu</groupId>
+			<artifactId>oxeleven-client</artifactId>
+		</dependency>
+
+		<!-- oxNotify -->
+		<dependency>
+			<groupId>org.gluu</groupId>
+			<artifactId>oxnotify-client2</artifactId>
+		</dependency>
+
+		<!-- Fido2 -->
+		<dependency>
+			<groupId>org.gluu</groupId>
+			<artifactId>fido2-client</artifactId>
+		</dependency>
+
+		<!-- Weld -->
+		<dependency>
+			<groupId>javax.enterprise</groupId>
+			<artifactId>cdi-api</artifactId>
+			<scope>provided</scope>
+		</dependency>
+
+		<dependency>
+			<groupId>javax.servlet</groupId>
+			<artifactId>javax.servlet-api</artifactId>
+			<scope>provided</scope>
+		</dependency>
+
+        <dependency>
+            <groupId>net.bootsfaces</groupId>
+            <artifactId>bootsfaces</artifactId>
+            <version>1.5.0</version>
+            <scope>compile</scope>
+        </dependency>
+
+		<!-- Bouncycastle -->
+		<dependency>
+			<groupId>org.bouncycastle</groupId>
+			<artifactId>bcprov-jdk18on</artifactId>
+			<scope>provided</scope>
+		</dependency>
+		<dependency>
+			<groupId>org.bouncycastle</groupId>
+			<artifactId>bcpkix-jdk18on</artifactId>
+			<scope>provided</scope>
+		</dependency>
+		<dependency>
+			<groupId>org.bouncycastle</groupId>
+			<artifactId>bcmail-jdk18on</artifactId>
+			<scope>provided</scope>
+		</dependency>
+
+			<!-- OmniFaces -->
+		<dependency>
+			<groupId>org.omnifaces</groupId>
+			<artifactId>omnifaces</artifactId>
+		</dependency>
+
+		<!-- Commons libs -->
+		<dependency>
+			<groupId>org.antlr</groupId>
+			<artifactId>antlr-runtime</artifactId>
+		</dependency>
+		<dependency>
+			<groupId>commons-beanutils</groupId>
+			<artifactId>commons-beanutils</artifactId>
+		</dependency>
+		<dependency>
+			<groupId>commons-codec</groupId>
+			<artifactId>commons-codec</artifactId>
+		</dependency>
+		<dependency>
+			<groupId>commons-collections</groupId>
+			<artifactId>commons-collections</artifactId>
+		</dependency>
+		<dependency>
+			<groupId>commons-configuration</groupId>
+			<artifactId>commons-configuration</artifactId>
+		</dependency>
+		<dependency>
+			<groupId>commons-io</groupId>
+			<artifactId>commons-io</artifactId>
+		</dependency>
+		<dependency>
+			<groupId>commons-lang</groupId>
+			<artifactId>commons-lang</artifactId>
+		</dependency>
+		<dependency>
+			<groupId>commons-net</groupId>
+			<artifactId>commons-net</artifactId>
+		</dependency>
+
+		<!-- Logging -->
+		<dependency>
+			<groupId>org.apache.logging.log4j</groupId>
+			<artifactId>log4j-core</artifactId>
+		</dependency>
+		<dependency>
+			<groupId>org.apache.logging.log4j</groupId>
+			<artifactId>log4j-slf4j-impl</artifactId>
+		</dependency>
+		<dependency>
+			<groupId>org.apache.logging.log4j</groupId>
+			<artifactId>log4j-jul</artifactId>
+		</dependency>
+
+		<!-- Net -->
+		<dependency>
+			<groupId>org.apache.httpcomponents</groupId>
+			<artifactId>httpclient</artifactId>
+		</dependency>
+		<dependency>
+			<groupId>org.apache.httpcomponents</groupId>
+			<artifactId>httpcore</artifactId>
+		</dependency>
+		<dependency>
+			<groupId>com.sun.mail</groupId>
+			<artifactId>jakarta.mail</artifactId>
+		</dependency>
+
+		<!-- Metrics -->
+		<dependency>
+			<groupId>io.dropwizard.metrics</groupId>
+			<artifactId>metrics-core</artifactId>
+		</dependency>
+
+		<!-- Google -->
+		<dependency>
+			<groupId>com.google.guava</groupId>
+			<artifactId>guava</artifactId>
+		</dependency>
+		<dependency>
+			<groupId>com.google.code.findbugs</groupId>
+			<artifactId>jsr305</artifactId>
+		</dependency>
+
+		<!-- Jython -->
+		<dependency>
+			<groupId>org.gluufederation</groupId>
+			<artifactId>jython-standalone</artifactId>
+		</dependency>
+
+		<!-- JMS -->
+		<dependency>
+			<groupId>javax.jms</groupId>
+			<artifactId>javax.jms-api</artifactId>
+		</dependency>
+		<dependency>
+			<groupId>org.apache.activemq</groupId>
+			<artifactId>activemq-client</artifactId>
+		</dependency>
+		<dependency>
+			<groupId>org.apache.activemq</groupId>
+			<artifactId>activemq-pool</artifactId>
+		</dependency>
+		<dependency>
+			<groupId>org.apache.commons</groupId>
+			<artifactId>commons-pool2</artifactId>
+		</dependency>
+
+		<!-- RestEasy -->
+		<dependency>
+			<groupId>org.jboss.resteasy</groupId>
+			<artifactId>resteasy-cdi</artifactId>
+		</dependency>
+		<dependency>
+			<groupId>org.jboss.resteasy</groupId>
+			<artifactId>resteasy-client</artifactId>
+		</dependency>
+		<dependency>
+			<groupId>org.jboss.resteasy</groupId>
+			<artifactId>resteasy-servlet-initializer</artifactId>
+		</dependency>
+		<dependency>
+			<groupId>org.jboss.resteasy</groupId>
+			<artifactId>resteasy-jaxb-provider</artifactId>
+		</dependency>
+		<dependency>
+			<groupId>org.jboss.resteasy</groupId>
+			<artifactId>resteasy-jackson2-provider</artifactId>
+		</dependency>
+
+		<!-- Jackson -->
+		<dependency>
+			<groupId>com.fasterxml.jackson.core</groupId>
+			<artifactId>jackson-core</artifactId>
+		</dependency>
+		<dependency>
+			<groupId>com.fasterxml.jackson.core</groupId>
+			<artifactId>jackson-annotations</artifactId>
+		</dependency>
+		<dependency>
+			<groupId>com.fasterxml.jackson.core</groupId>
+			<artifactId>jackson-databind</artifactId>
+		</dependency>
+
+		<!-- AWS SNS -->
+		<dependency>
+			<groupId>com.amazonaws</groupId>
+			<artifactId>aws-java-sdk-sns</artifactId>
+		</dependency>
+
+		<!-- Other -->
+		<dependency>
+			<groupId>org.codehaus.jettison</groupId>
+			<artifactId>jettison</artifactId>
+		</dependency>
+		<dependency>
+			<groupId>com.googlecode.json-simple</groupId>
+			<artifactId>json-simple</artifactId>
+		</dependency>
+		<dependency>
+			<groupId>org.mvel</groupId>
+			<artifactId>mvel2</artifactId>
+		</dependency>
+        <dependency>
+            <groupId>org.jetbrains</groupId>
+            <artifactId>annotations</artifactId>
+        </dependency>
+
+		<!-- Time -->
+		<dependency>
+		    <groupId>joda-time</groupId>
+		    <artifactId>joda-time</artifactId>
+		</dependency>
+
+		<!-- Test -->
+		<dependency>
+			<groupId>org.gluu</groupId>
+			<artifactId>oxauth-model</artifactId>
+			<type>test-jar</type>
+			<scope>test</scope>
+		</dependency>
+		<dependency>
+			<groupId>org.gluu</groupId>
+			<artifactId>oxauth-client</artifactId>
+			<version>4.5.6-SNAPSHOT</version>
+			<type>test-jar</type>
+			<scope>test</scope>
+		</dependency>
+
+		<dependency>
+			<groupId>org.testng</groupId>
+			<artifactId>testng</artifactId>
+			<scope>test</scope>
+		</dependency>
+		<dependency>
+			<groupId>javax.websocket</groupId>
+			<artifactId>javax.websocket-api</artifactId>
+			<scope>test</scope>
+		</dependency>
+		<dependency>
+			<groupId>org.mockito</groupId>
+			<artifactId>mockito-core</artifactId>
+			<version>3.11.2</version>
+			<scope>test</scope>
+		</dependency>
+		<dependency>
+			<groupId>org.mockito</groupId>
+			<artifactId>mockito-testng</artifactId>
+			<version>0.4.8</version>
+			<scope>test</scope>
+		</dependency>
+
+		<!-- Test: Arquillian container and extensions -->
+		<dependency>
+			<groupId>org.jboss.arquillian.testng</groupId>
+			<artifactId>arquillian-testng-container</artifactId>
+			<scope>test</scope>
+		</dependency>
+		<dependency>
+			<groupId>org.jboss.arquillian.extension</groupId>
+			<artifactId>arquillian-rest-client-impl-3x</artifactId>
+			<scope>test</scope>
+		</dependency>
+		<dependency>
+			<groupId>org.eu.ingwar.tools</groupId>
+			<artifactId>arquillian-suite-extension</artifactId>
+			<scope>test</scope>
+		</dependency>
+		<dependency>
+		    <groupId>org.reflections</groupId>
+		    <artifactId>reflections</artifactId>
+		    <version>0.9.10</version>
+			<scope>test</scope>
+		</dependency>
+
+		<!-- Test: External DB drivers-->
+		<!-- Couchbase -->
+		<dependency>
+			<groupId>com.couchbase.client</groupId>
+			<artifactId>java-client</artifactId>
+			<scope>test</scope>
+		</dependency>
+		<!-- Cloud Spanner -->
+		<dependency>
+			<groupId>com.google.cloud</groupId>
+			<artifactId>google-cloud-spanner</artifactId>
+			<scope>test</scope>
+		</dependency>
+
+		<!-- We have to explicitly specify version because arquillian-jetty-container depends on 1.1.11-->
+		<dependency>
+			<groupId>org.jboss.arquillian.container</groupId>
+			<artifactId>arquillian-container-test-impl-base</artifactId>
+			<version>1.4.0.Final</version>
+			<scope>test</scope>
+		</dependency>
+		<dependency>
+			<groupId>org.jboss.arquillian.container</groupId>
+			<artifactId>arquillian-container-spi</artifactId>
+			<version>1.4.0.Final</version>
+			<scope>test</scope>
+		</dependency>
+		<dependency>
+			<groupId>org.jboss.arquillian.container</groupId>
+			<artifactId>arquillian-container-test-spi</artifactId>
+			<version>1.4.0.Final</version>
+			<scope>test</scope>
+		</dependency>
+		<dependency>
+			<groupId>org.jboss.arquillian.testenricher</groupId>
+			<artifactId>arquillian-testenricher-cdi</artifactId>
+			<version>1.4.0.Final</version>
+			<scope>test</scope>
+		</dependency>
+
+		<!-- Test: Shrinkwrap -->
+		<dependency>
+			<groupId>org.jboss.shrinkwrap.resolver</groupId>
+			<artifactId>shrinkwrap-resolver-depchain</artifactId>
+			<type>pom</type>
+			<scope>test</scope>
+		</dependency>
+		<dependency>
+			<groupId>org.jboss.shrinkwrap.resolver</groupId>
+			<artifactId>shrinkwrap-resolver-impl-maven</artifactId>
+			<scope>test</scope>
+		</dependency>
+		<dependency>
+			<groupId>org.jboss.shrinkwrap.descriptors</groupId>
+			<artifactId>shrinkwrap-descriptors-impl-javaee</artifactId>
+			<scope>test</scope>
+		</dependency>
+	</dependencies>
+
+	<profiles>
+		<profile>
+			<id>webapp</id>
+			<activation>
+				<property>
+					<name>!webapp.disable</name>
+				</property>
+			</activation>
+
+			<dependencies>
+				<dependency>
+					<groupId>javax.enterprise</groupId>
+					<artifactId>cdi-api</artifactId>
+				</dependency>
+				<dependency>
+				    <groupId>org.glassfish</groupId>
+				    <artifactId>jakarta.faces</artifactId>
+				</dependency>
+
+				<dependency>
+					<groupId>org.glassfish.web</groupId>
+					<artifactId>el-impl</artifactId>
+					<exclusions>
+						<exclusion>
+							<groupId>javax.el</groupId>
+							<artifactId>el-api</artifactId>
+						</exclusion>
+					</exclusions>
+				</dependency>
+
+				<dependency>
+					<groupId>javax.el</groupId>
+					<artifactId>el-api</artifactId>
+					<scope>test</scope>
+				</dependency>
+
+				<dependency>
+					<groupId>org.jboss.weld.servlet</groupId>
+					<artifactId>weld-servlet-core</artifactId>
+				</dependency>
+				<dependency>
+					<groupId>org.jboss.weld</groupId>
+					<artifactId>weld-core-impl</artifactId>
+				</dependency>
+				<dependency>
+					<groupId>org.jboss.weld.module</groupId>
+					<artifactId>weld-jsf</artifactId>
+				</dependency>
+		        <dependency>
+		            <groupId>org.jboss.spec.javax.ejb</groupId>
+		            <artifactId>jboss-ejb-api_3.2_spec</artifactId>
+		            <scope>provided</scope>
+		        </dependency>
+ 
+				<!-- Test: Embedded Jetty -->
+				<dependency>
+					<groupId>org.jboss.arquillian.container</groupId>
+					<artifactId>arquillian-jetty-embedded-9</artifactId>
+					<scope>test</scope>
+				</dependency>
+				<dependency>
+					<groupId>org.eclipse.jetty</groupId>
+					<artifactId>jetty-webapp</artifactId>
+					<scope>test</scope>
+				</dependency>
+				<dependency>
+					<groupId>org.eclipse.jetty</groupId>
+					<artifactId>jetty-deploy</artifactId>
+					<scope>test</scope>
+				</dependency>
+				<dependency>
+					<groupId>org.eclipse.jetty</groupId>
+					<artifactId>jetty-annotations</artifactId>
+					<scope>test</scope>
+				</dependency>
+				<dependency>
+					<groupId>org.eclipse.jetty</groupId>
+					<artifactId>jetty-plus</artifactId>
+					<scope>test</scope>
+				</dependency>
+
+                <dependency>
+                    <groupId>org.bitbucket.b_c</groupId>
+                    <artifactId>jose4j</artifactId>
+                </dependency>
+			</dependencies>
+
+			<build>
+				<plugins>
+					<plugin>
+						<groupId>org.apache.maven.plugins</groupId>
+						<artifactId>maven-war-plugin</artifactId>
+						<configuration>
+							<archive>
+								<manifest>
+									<addDefaultImplementationEntries>true</addDefaultImplementationEntries>
+								</manifest>
+								<manifestEntries>
+									<Implementation-Build>${buildNumber}</Implementation-Build>
+                                    <!--suppress UnresolvedMavenProperty -->
+                                    <Build-Branch>${git.branch}</Build-Branch>
+								</manifestEntries>
+							</archive>
+
+							<webResources>
+								<resource>
+									<directory>src/main/webapp</directory>
+									<filtering>true</filtering>
+									<includes>
+										<include>**/*.xml</include>
+										<include>**/*.properties</include>
+									</includes>
+								</resource>
+								<resource>
+									<directory>src/main/webapp</directory>
+									<filtering>false</filtering>
+									<includes>
+										<include>META-INF/navigation/*.navigation.xml</include>
+										<include>**/*.xhtml</include>
+										<include>**/*.jsp</include>
+										<include>**/*.html</include>
+										<include>**/*.pdf</include>
+										<include>**/*.js</include>
+										<include>**/*.css</include>
+										<include>**/*.xcss</include>
+										<include>**/*.png</include>
+										<include>**/*.jpg</include>
+										<include>**/*.gif</include>
+										<include>**/*.ico</include>
+									</includes>
+								</resource>
+							</webResources>
+						</configuration>
+					</plugin>
+				</plugins>
+			</build>
+		</profile>
+
+		<profile>
+			<id>webapp-jetty</id>
+			<activation>
+				<property>
+					<name>!jetty.disable</name>
+				</property>
+			</activation>
+
+			<build>
+				<plugins>
+					<plugin>
+						<groupId>org.apache.maven.plugins</groupId>
+						<artifactId>maven-war-plugin</artifactId>
+						<configuration>
+							<webResources>
+								<!-- Duplicity for m2e-wtp plugin -->
+								<resource>
+									<directory>src/main/webapp</directory>
+									<filtering>true</filtering>
+									<includes>
+										<include>**/*.xml</include>
+										<include>**/*.properties</include>
+									</includes>
+								</resource>
+								<resource>
+									<directory>src/main/webapp</directory>
+									<filtering>false</filtering>
+									<includes>
+										<include>META-INF/navigation/*.navigation.xml</include>
+										<include>**/*.xhtml</include>
+										<include>**/*.jsp</include>
+										<include>**/*.html</include>
+										<include>**/*.pdf</include>
+										<include>**/*.js</include>
+										<include>**/*.css</include>
+										<include>**/*.xcss</include>
+										<include>**/*.png</include>
+										<include>**/*.jpg</include>
+										<include>**/*.gif</include>
+										<include>**/*.ico</include>
+									</includes>
+								</resource>
+
+								<resource>
+									<directory>src/main/webapp-jetty</directory>
+									<filtering>true</filtering>
+								</resource>
+							</webResources>
+						</configuration>
+					</plugin>
+				</plugins>
+			</build>
+		</profile>
+
+		<profile>
+			<id>webapp-tomcat</id>
+			<activation>
+				<property>
+					<name>tomcat.enable</name>
+				</property>
+			</activation>
+
+			<build>
+				<plugins>
+					<plugin>
+						<groupId>org.apache.maven.plugins</groupId>
+						<artifactId>maven-war-plugin</artifactId>
+						<configuration>
+							<webResources>
+								<!-- Duplicity for m2e-wtp plugin -->
+								<resource>
+									<directory>src/main/webapp</directory>
+									<filtering>true</filtering>
+									<includes>
+										<include>**/*.xml</include>
+										<include>**/*.properties</include>
+									</includes>
+								</resource>
+								<resource>
+									<directory>src/main/webapp</directory>
+									<filtering>false</filtering>
+									<includes>
+										<include>META-INF/navigation/*.navigation.xml</include>
+										<include>**/*.xhtml</include>
+										<include>**/*.jsp</include>
+										<include>**/*.html</include>
+										<include>**/*.pdf</include>
+										<include>**/*.js</include>
+										<include>**/*.css</include>
+										<include>**/*.xcss</include>
+										<include>**/*.png</include>
+										<include>**/*.jpg</include>
+										<include>**/*.gif</include>
+										<include>**/*.ico</include>
+									</includes>
+								</resource>
+
+								<resource>
+									<directory>src/main/webapp-tomcat</directory>
+									<filtering>true</filtering>
+								</resource>
+							</webResources>
+						</configuration>
+					</plugin>
+				</plugins>
+			</build>
+		</profile>
+
+		<profile>
+			<id>jetty-embedded</id>
+			<activation>
+				<activeByDefault>true</activeByDefault>
+				<property>
+					<name>jetty.embedded</name>
+				</property>
+			</activation>
+
+			<dependencies>
+				<!-- Remove after oxAuth client update to same version -->
+				<dependency>
+					<groupId>org.jboss.resteasy</groupId>
+					<artifactId>resteasy-jaxrs</artifactId>
+					<version>3.0.21.Final</version>
+					<scope>test</scope>
+				</dependency>
+				<dependency>
+					<groupId>org.jboss.resteasy</groupId>
+					<artifactId>resteasy-cdi</artifactId>
+					<version>3.0.21.Final</version>
+					<scope>test</scope>
+				</dependency>
+				<dependency>
+					<groupId>org.jboss.resteasy</groupId>
+					<artifactId>resteasy-client</artifactId>
+					<version>3.0.21.Final</version>
+					<scope>test</scope>
+				</dependency>
+				<dependency>
+					<groupId>org.jboss.resteasy</groupId>
+					<artifactId>resteasy-servlet-initializer</artifactId>
+					<version>3.0.21.Final</version>
+					<scope>test</scope>
+				</dependency>
+			</dependencies>
+		</profile>
+
+		<profile>
+			<id>generic-provider-libs</id>
+			<activation>
+                <activeByDefault>true</activeByDefault>
+				<property>
+					<name>!fips.enable</name>
+				</property>
+			</activation>
+
+			<dependencies>
+				<dependency>
+					<groupId>org.bouncycastle</groupId>
+					<artifactId>bcprov-jdk18on</artifactId>
+				</dependency>
+				<dependency>
+					<groupId>org.bouncycastle</groupId>
+					<artifactId>bcpkix-jdk18on</artifactId>
+				</dependency>
+				<dependency>
+					<groupId>org.bouncycastle</groupId>
+					<artifactId>bcmail-jdk18on</artifactId>
+				</dependency>                
+			</dependencies>
+		</profile>
+
+		<profile>
+			<id>fips-provider-libs</id>
+			<activation>
+				<property>
+					<name>fips.enable</name>
+				</property>
+			</activation>
+
+			<dependencies>
+				<!-- Fips -->
+                <dependency>
+                    <groupId>org.bouncycastle</groupId>
+                    <artifactId>bc-fips</artifactId>
+                </dependency>
+                <dependency>
+                    <groupId>org.bouncycastle</groupId>
+                    <artifactId>bcpkix-fips</artifactId>
+                </dependency>
+                <dependency>
+                    <groupId>org.bouncycastle</groupId>
+                    <artifactId>bcmail-fips</artifactId>
+                </dependency>
+			</dependencies>
+		</profile>
+
+		<profile>
+			<id>glassfish</id>
+			<activation>
+				<property>
+					<name>glassfish.enable</name>
+				</property>
+			</activation>
+
+			<dependencies>
+				<!-- Glassfish -->
+				<dependency>
+					<groupId>org.glassfish.main.extras</groupId>
+					<artifactId>glassfish-embedded-all</artifactId>
+					<version>4.1.2</version>
+					<scope>test</scope>
+				</dependency>
+				<dependency>
+					<groupId>org.jboss.arquillian.container</groupId>
+					<artifactId>arquillian-glassfish-embedded-3.1</artifactId>
+					<version>1.0.0.Final</version>
+					<scope>test</scope>
+				</dependency>
+			</dependencies>
+		</profile>
+
+		<profile>
+			<id>swagger</id>
+			<activation>
+				<property>
+					<name>swagger-enabled</name>
+				</property>
+			</activation>
+			<properties>
+			</properties>
+			<build>
+				<plugins>
+					<plugin>
+						<groupId>com.github.kongchen</groupId>
+						<artifactId>swagger-maven-plugin</artifactId>
+						<version>2.0</version>
+						<configuration>
+							<apiSources>
+								<apiSource>
+									<locations>org.gluu.oxauth.model.uma;
+									</locations>
+									<apiVersion>v1</apiVersion>
+									<basePath>http://gluu.org</basePath>
+									<outputTemplate>${basedir}/src/main/docs/mustache/markdown.mustache</outputTemplate>
+									<outputPath>${basedir}/generated/swagger.markdown</outputPath>
+									<swaggerDirectory>${basedir}/generated/apidocs</swaggerDirectory>
+									<!--swaggerUIDocBasePath>http://www.example.com/restapi/doc</swaggerUIDocBasePath -->
+									<!--useOutputFlatStructure>false</useOutputFlatStructure -->
+									<mustacheFileRoot>${basedir}/src/main/docs/mustache</mustacheFileRoot>
+									<!--overridingModels>/swagger-overriding-models.json</overridingModels -->
+								</apiSource>
+							</apiSources>
+						</configuration>
+						<executions>
+							<execution>
+								<phase>compile</phase>
+								<goals>
+									<goal>generate</goal>
+								</goals>
+							</execution>
+						</executions>
+						<dependencies>
+							<dependency>
+								<groupId>javax.servlet</groupId>
+								<artifactId>servlet-api</artifactId>
+								<version>2.3</version>
+								<scope>runtime</scope>
+							</dependency>
+						</dependencies>
+					</plugin>
+				</plugins>
+			</build>
+			<dependencies>
+				<dependency>
+					<groupId>com.wordnik</groupId>
+					<artifactId>swagger-jaxrs_2.10</artifactId>
+					<version>1.3.13</version>
+				</dependency>
+				<dependency>
+					<groupId>com.wordnik</groupId>
+					<artifactId>swagger-servlet_2.9.1</artifactId>
+					<version>1.3.1</version>
+				</dependency>
+			</dependencies>
+		</profile>
+
+		<profile>
+			<id>push_sender</id>
+			<activation>
+				<activeByDefault>true</activeByDefault>
+				<property>
+					<name>!disable-push-messages</name>
+				</property>
+			</activation>
+			<repositories>
+				<repository>
+					<id>push_sender-local</id>
+					<url>file://${project.basedir}/integrations/super_gluu/repository</url>
+				</repository>
+			</repositories>
+			<dependencies>
+				<dependency>
+					<groupId>com.google.gcm</groupId>
+					<artifactId>gcm-server</artifactId>
+					<version>1.0.1.gluu</version>
+					<scope>compile</scope>
+				</dependency>
+			</dependencies>
+		</profile>
+
+		<profile>
+			<id>otp_auth</id>
+			<activation>
+				<activeByDefault>true</activeByDefault>
+				<property>
+					<name>!disable-otp_auth</name>
+				</property>
+			</activation>
+			<repositories>
+				<repository>
+					<id>otp_auth-local</id>
+					<url>file://${project.basedir}/integrations/otp/repository</url>
+				</repository>
+			</repositories>
+			<dependencies>
+				<dependency>
+					<groupId>com.lochbridge.oath</groupId>
+					<artifactId>oath-otp</artifactId>
+					<version>0.0.1-SNAPSHOT</version>
+					<scope>compile</scope>
+				</dependency>
+				<dependency>
+					<groupId>com.lochbridge.oath</groupId>
+					<artifactId>oath-otp-keyprovisioning</artifactId>
+					<version>0.0.1-SNAPSHOT</version>
+					<scope>compile</scope>
+				</dependency>
+			</dependencies>
+		</profile>
+
+		<profile>
+			<id>test-dependencies</id>
+			<activation>
+				<property>
+					<name>maven.test.skip</name>
+					<value>false</value>
+				</property>
+			</activation>
+			<dependencies>
+				<dependency>
+					<groupId>org.gluu</groupId>
+					<artifactId>oxauth-model</artifactId>
+					<type>test-jar</type>
+					<scope>test</scope>
+				</dependency>
+				<dependency>
+					<groupId>org.gluu</groupId>
+					<artifactId>oxauth-client</artifactId>
+					<version>4.5.6-SNAPSHOT</version>
+					<type>test-jar</type>
+					<scope>test</scope>
+				</dependency>
+			</dependencies>
+		</profile>
+
+		<profile>
+			<id>owasp-check</id>
+			<activation>
+				<property>
+					<name>dependency.check</name>
+					<value>true</value>
+				</property>
+			</activation>
+
+			<build>
+				<plugins>
+					<!-- OWASP plugin -->
+					<plugin>
+						<groupId>org.owasp</groupId>
+						<artifactId>dependency-check-maven</artifactId>
+						<configuration>
+							<skipProvidedScope>true</skipProvidedScope>
+							<failBuildOnCVSS>${cvss-score}</failBuildOnCVSS>
+						</configuration>
+						<executions>
+							<execution>
+								<goals>
+									<goal>check</goal>
+								</goals>
+							</execution>
+						</executions>
+					</plugin>
+				</plugins>
+			</build>
+		</profile>
+	</profiles>
+
+</project>
\ No newline at end of file
diff --git a/oxAuth/Server/profiles/.gitignore b/oxAuth/Server/profiles/.gitignore
new file mode 100644
index 00000000..f02e853b
--- /dev/null
+++ b/oxAuth/Server/profiles/.gitignore
@@ -0,0 +1,5 @@
+/hudson
+/local
+/ce-dev
+/ce-dev2
+/ce-dev.gluu.org/
diff --git a/oxAuth/Server/profiles/default/client_keystore.pkcs12 b/oxAuth/Server/profiles/default/client_keystore.pkcs12
new file mode 100644
index 0000000000000000000000000000000000000000..83704fd6155d2c0e847771f04c8feb178f724cba
GIT binary patch
literal 23345
zcmbTdbC4y^*6-c6ZQHhO+t#!(ZTGZodz#ajwrx$@wx(^qyMNCU_r`nUM4S^RDylMb
zW!3&;uZqw5=2}@yLAvxHz@SV)I)@O@G@(+VkMO{d!1+NsOJG4da{%)nrXV(o|KAiF
zCRh*~D!`1$6a@SU0sFsC!NCB7<Ocye0*tmy7XRl7aCjzdCa(WGgkz!wL(7945q#4z
zwApz5eqIuT^Fo+vL<|B#i39>n!~_Qc^*_G|0u2ttgbx926e<O54hjZL1BOKZ<mgcg
ze#P7IdMJbPjFt`-1PtUez*UttQee<umR><?>+ibgBznTh7Cq7#rs|3GbYFRh=lr$;
zL^|0y($u*^Q|NPyHsc3eQDk?=;g;hl#~Z$6yTgGiHRPLgVL``2sw=*#zWQUnKzTSo
zM)(Hqx{|b04a~3Fsj-&|=;bOm=#e!rb~J66UQ5k;XSjt&h_^x7&&4v!hIE557u0Zu
zdhok!^7ScP5z5I)|48Ysax`D%-bO2bG^~a#u|$v_jd2rcMJ}l<9Zz{U-!VxS@<B#)
z`f|fl16wW>U5T!H=#CeVu5PEJTAelBnH$UNapx~I*X$@C+ymFK15u?gD&y0D8K1or
z!fQ)Z2HIniA4O-(K1`bb=kJ9^W0oP10%8K<1TqEU24V)Z=0Fxe^ngAa5bHlZHXvib
z$oL-{2jC7<K+g;?X9{Eju(AMg0eV~jyBQEW6Y>B3VRU9RFcdXwJ98pt4t6GPCcuS-
zgN=zP2>j3g^9q0q0gQbA?iH}#c&q6e_xf?r*wB^y*0=t_;Gg%OyaJ(z!SvV;1s6AS
z&Y2KIm#APtVAFIG^a4byJOTabB!SPiGUs>Nb@FCzOQ}-%DHb%c<-cz_JX&QJQZGg=
z-ZZ7onqY!z{`4h87U^+Hn_Lc76;7sg9!e(->IyyFFJ0#bDBKkJg)jPUFlH+k9LZR3
z_FWEAs4;R~g*A)e(Sg&8LijdJP6V9rWKtEG)<md~>5wF&0YhU(sqvg}<fcUY5pcdN
z!9TyOmrU+1A~lmxu@Fn6vYY$lFb2s+&uPHabN6o{TVAE<QHfb!E8BNbZp6=%LA_l&
zj4$h2L&oCE)pnheKf4wzrGzKh5;^ep<8$C4gKr^qK*j&guGk97#Mtu_X*@Fon&Zwl
z$x?(KR015yDajG5j$}+ckwj100KbAOey9>2ipFayyn61@0jmpW%J_sDYZwwZ!O&5R
zIsK+6Yd{UGxL&VvC<lB3+FkAz(*9Vho)@8^-6`!GHGQpA&F{!??pF}m3IZ70#<cuU
zC)^hkAN5K?Opvo=Es^;1Mq5G2lJf4Cm9r|wNYFd@nj&JQ>6UkgPpWLLXMDrR>uOAV
zpPIaxyJKTH0(?|)eR1NsTgLa;wCN~D8S>hTX#uOji?;3PWGj9#qqW(kXm0oe9vD<O
z(lkrC705NPo3<1rhVQwfFzjXEj1kUg1W@h6kNl`->ds+Uhlzjv(BFKN>njW>jP7Jo
z=E0z)d1ST8GVEHbLHc+uq-%73fdoy!^V?cYHS8A$K2<8n5is!YHeXjyH9R7fJ)-#5
z?HK=-a&#hqB|ZrUrZYrwbl%j03+NqHto_3i?*MbXgunw`s``wOhK3+*>2RR}AE3e`
zBD<d`ifPI1YKcX25fC9tZY-oid#Y^aJneOXi8w#%84LW&!u!R|3O6vK0Bnqi;#Hqr
zA(p-6bU3DIuneSJ1XovlM(pwu>d)U#c>X#O?3J0LzkZOF*$nd8m(6yzr7$R->lT<t
z_3)6Gs3s+X>USnjspdLLDjk-cOwr23b#E<EpR~_#S7khR`#~NMy1UbENZx6;n{VR6
zG$<CWIrLM`)#hZ;WekkKRa>p2I8+Th=dPmXw>B@UKW`06fHBx(JHXDJ6W_{Z_69LS
zi+$J9z!=gi@*5(X5}c`$#^45s<drok9RqB9|NeD1z_;aB@5B;D_B21RX>O<`jA<o7
zI#N0@z9ef-pFrc)H!@G$!_&7VU!z?L#yKQo^W~&xolCk}`b%SOOC`4T{k9=iT!m&s
zMc842AwH!aC*+48la8deoCpmOz7^;X&3v_MGvLoS<!6w6(%(PAGT?Ut-M26KFWNTy
z-$3P;9ug^sLS8yF+o87H=E^^vVf)?8K|M+{EVrV4&$U{rILixIy2M`ydMEXlZ&ssK
zPHF>(*CUGwv|lH7jZc_uGoS);BwWmIf(zt%h}`%i0`%e(^w(UjycyOY4PYAbJDB`e
zoq;g^n%HS~q2BakMEpLlsmv-hYf5k`=|QRT78{_2d?xynyOLs|FV_soMMgvStZP&r
zUa^zV00kqR+3*a-GQIXX-s#spIE6+BT*S+q81(ma{sL>v!Ngy6Umc2RvXoz7zZj-5
zC2vblO-BC4l)`#j3$cbQs`!DDiYzBjU49rVgm+B`k8g!p`xb*XyW&GYpKIeRrTAYV
z-57}DA2fd<+YE5f17OYtI5_}4Hb86q58Szc*a3&hKeHx))&y{m2_OWR146<V+KvAm
z(z%#9{%fSK?fOaxUoF~7?mHC&5%6N#b1MG&PmnH9I~!Itfah1qC>2ygLr?vMbUPQ<
z>x~&R@j)Wps9%@q&#V>(1wrp~r`^1r3i6yKRZbs~6JSm|j&1N%B@^ZlDEu{+>k<d>
zxQiN9Nv=TN*mm6ESlt30me-4HP&NeROX)hpx<#RqgEA5oN~8MCMtZhx<1k=WFcCGL
zM{Jhc2jm*{^OiC`Y*5cyS=yn_zLV7b%ykl>_dvlGuSp_(rSUcyaVBAINSf@O2yTyS
zJA3x1up6|0^tD2ms2SVj!Wwtp5C~+jwK6@Nhj#_Hz6U~V(5W~N64bBY>yi?>=}Hbl
zHr1%013T%?!E5+P9XdtR8fCa{dN;Pt)-6gz-?u08NFopaT*L&coXmu$QtXjt8*%qD
zMKAO8m{GGIIB?OE?KgKM2R39V2C+LUJ>T2P!0C`@0>ak1;zxWHDKyO=({!T)Yjwu(
zS~P+y>xh@JF$5}NDa#W}LLThbcBliT%u*W^=IFjl+ALB{8bsgt3;WGN6a2QNogb@A
z<uZ}c0C|n@a&S%~>GZ~Jp(g5FOhy;B&QH-NfHNzAANRdGn3E%$#aYPO(uHQ5U$`<9
zBrDpPF?ZZKPAKF_(<yyN8PrdKg92^|0!uc+`dY21VwptK3{yf}%cnS9?JVNG;qRQ;
z<YS8lef@9keh|W~_p5I32&tiSATIopi{d;5VlN1Y4Q3b2YWGQsQKy+T?Z;<}bwo#v
z9V9YEDf}mbA3iZQ@IX?TRW(`U7hGnA1T*OLl{c>4eZQT6V7VfIW@285r6$MeyO&w1
zmjZXJ93oOg!o863_|;C<?$X%AFCY(j_Z??Q?)k+&3Ud0qHCmplQpnGLw^Q>NaXMlI
zb;y10gAtG0(Tt_4Z*9XJ5an%w$Y{%vqz7QSztt)Cj^rXA6c*}Ag0SZrnuGTvo2HUA
ztr#q$S91+F&RQ~d)k0=W55Xew8;@=0%!KTFHc?O+-x4EG2*66fhZE~<BF}01H`p)3
zLahzLH3JL9kNHkwl6Co(rr0sw_$mzf{V0QUUm->)lG_5Q&x3Z4{7~&mvx7st#rCoS
z?{)2^0C^T(Y=Umo2fn8FUp^O@nVlG2x=8tTOx4*ncB>ZwF{OiY&;$u=)Db*JSoG5`
zf;_GFF$>g9m{_BLQBuSBTWn$l+4_Ywd{qIp>=I?cu~OjBx9WNKM7DHmeiT#<om7RD
zy=u%XFq7g?o(`Oj!s0)&Tg2NiR~YozZsq#%8lvZWI1Okax@xK>)`6Z<jN)qkM6uBj
zc)uHB6RRT{<v(=u;T7H$Ba9r|ol5-T6p!=#NW_4s_0?_VzttT$8>53rF4jI8AfjnC
z2e;s(vHK>pDiKId_K2d@>pT*5Di^+Y!nRFeed~5{`~jXHFxE;mK2M4HL{Su(DtGTX
zu1m=Y0+$$==H8T%+>{t0Z2`PJc1&wl-jZ_$*%nVtTe`5-hARWPbf@Hqo}NkjcuCV4
zYVrby{f;z{C2hj0($AC~1?*!FF~$y;l?zgo{;f8ek^5Z@=kzCRNIi|dLv*p!GDb4G
zDy>EP#?Wjqto@Yzr_dS|(&Fh|#CfHv99B{rLu+C3sq49LDGw}xnw1%;Rc}ow&UJP}
z(9g>0L08bJ9h*FHL#Ong-$OS40)ev*Y~64>qJ_q`Y*917{VSxK{iD#$0Dxxy2kP_y
zNSgx``<Gs41K^qkVE<C?+yLuWj~M`aw*Ng$0V5Vb7-0Snkj}#OUn9Ng5ro&UC=MT%
ztS_~P3`efky&~v8K|1-GM1W|0OxtK*OH`|+g3lMy-?2pN!r_{!m;4EDIUc+2Pr@7w
zsT!WklT(Mni%NDa>QbyiZ%Mdb!R^3=jYhjoqj_X}k-6ZGud%pZy>7?u3^jI*)Fz=<
zF536n&tl%k(uqQ4`Vwk36U1=@#SMuy|K>I-Cva*^e<JBzjEarF|FO4P&L6})A0zWj
z>NpieVo7cww(Fb>2BJ7zu}ZE|%vvKidNthZG6;*P8h}9M=-?->bSbP6QvJ?ryO7$%
z6`bgg)78+36ezYyHk2eew3I9#{WMEKTc^vyQUIIZP9H2v5ev(+k~j9FN`Xv$_x9wq
zw!e9eo%bnH6IdlU@2`6KQ!Gq*g!UwUzx|yt<i%NFSjrAkn}--_jI=^WoVIHGbU^$V
z$a+tY6S$7peNF}o*P<)X$XO=KgWZqK5Jff{+AwIL-pgX@XwE*ubz5_E?YU~R>V2bA
z;k<_JHq#=hzPD+2Y$6J&VEu>|=}T)RV<}}!o9l`#U3B5Gw)@V{-A3w}0?GFtzot>g
zV}98P2(_P3U;(!IAyCn-ilrl?Frl3$jINn${>|}my8}eBon{emWhCxrt{T+~e9yw#
z;wj5AIkBo6t3juzhE?OmKT(3h6Gt$Q?W*n|?H9gV3)rtk>Qj@j#!tGjp3<$H`_)N8
zw%5gynqbt<CBfhI>@UQT6444F>Fd8Kv>P1fm@B6#WMnUbw!(pm<J@shIg2bbmqukZ
zdK%@Ehp7UcXlXAm=smFzJxlHD!ILrD6co+E;q{VvEk^EpraVH=h{h_ESQ|VJL!&rM
z#-MtY!L%|4C^8PpCR`8A5)0Ga?D0*6L!k<6fQv<H#u8$@72QzqZ;RMS!zKH`Ly{Y5
zIZ$+YkA-4Ojc6?T3ccRTifvsa*VascQn27PrNha-%bF$kp_lkw?qWw<`5*?q`|N~;
zw{<HG(Rl0Yh_|YAIIVKJ(jgQ{P^qetj(n0L*Nx;^?BxyAsT_*uP#>iqq&dv1@|*A_
zBV1#<8C6;>o&~6Ii~083Vk`)8?s*%I)Dt5#yTmv2e527gaQ;-L_9h_7j^##SXOKdH
zT+bonr4`?IxwsT-sP@u7M2Ern`6Sg;pUOz3^nvvrPU>js9jIcL__~28fIBoq->yjU
zQa=Ii-9+8&Ri@S=nmnWY<67|n(#8OsEgv+w2U=de6&xOMt2(p5@Wh`)D$uzZLjdFl
zv0J8cM4OU|lz!A_MW$)7LfWCr@UD^$ZRPY(;<g4}uy`7)@M(56XTB)*k9ae~UDhd|
ztp|?D1N8*y>G?s9g1t3n7z6Pa*d|_xzYV=wWPB6v<|uD3>A!=OS8q_J>_`1SpXfm>
z`}@5on&Ne0@;Lhhq;8!+-E&FDG1&Qx;w7X&j&Y&8qoItU`H#YZBMc6k$1%CfpgNNB
zODv*M?+j}gw|#?fv8=Fxghcww`oP#3h9xkD)YjjHdOxDQh5ayKc<HFEyfgdQMU*Ij
z3xZOG><*&)k_Zs<#}?4z2^P!If&UmQ64cTdd*d(f+tEB@$-=($tqId2*6c|3dTeu3
zO8CS=8$gogrj5;Su=dqp<?_^HDh^8Y*;++g=p4j7#}1|4ogHBDslM8LDu*nPCqKaI
zQZr1kAM@?EyVKpcM~3E{Dc=7pq<^V&W&oni0Ie|q+w_2w3xM_iK|06(CSHsI=@ury
zUG)Ee-vnU&QtDrcny;h{JCMb{Rq1T(|25LXH4QXR$x-N=(X^lTYxEcnqoKC{6Qox)
z6f^aJ?1Z=xYLk6lGGKfm-5RJZ5dwH^-tMimM~c9LPNrVNf8};ZzcR>6sZf@3g6q73
z>ba$CK-oZ&8n`GvI?5}mlnx#|DWbMqQZ_W{{99fdfiM~oT?{R4RsHUEG!mo&{4S{z
z{+4)E3qy^__PDsd)x;>3wtUU$8HQA9KbPB0Z9_ZgHqwa9#jAy&DupTr18;0cZ-~R+
z6?Yz$rf^H3ck>c2_zp3FF31qiK?6O`vG5HCTEu7hK0$2L3LKw~@V%KL{}V8p62@W?
z)jNT=Ss1NvA5yB;xYCQLi+@1L4(ryB1Vp{5>`pL3$8)|%sBq9-w{@keXTT>l%FGlU
zk1;VmlSy-Dy^WWHHXxf<d9y(n*?8uTrpi?`8uz8n(Jv~xPH+;nib|)o)7xC5lx6Yr
zw%Y<nvGB&~-6yBmx9{9Hl=nh-2}<mwYc@HmF^$HLe#^YqT8I$C1iH3}pR8Omo_R5(
z2t|WrF6df&ZlDC$Ov_Io8k$T^fYn)b!l8D84C@OO{!mN{%p>njI_%9{_HE5a*{RcA
zD8fzLNgxx5d`OCHAD^FIl#(WA&ro;SiT#sn5oVYWU-r{O1K<7nkJwu(9=5ExTwY|8
z?l<rekmTy6x|T#G2gOL^v3i=SX3Z@lze8R5rjvvl>z5;j?-q_gtz@O_>y;8m9BT`O
zrTO@NiFn1ILiwHC^m`Da9{7lsZwPU<exTk0aX<$FD+l>;T#y{Uts>`6tiRhJnc&sS
zpY-*^asOcDoQjEc-=uP4i-nS;^tre6j!4!y;MR!8Fl&jGJgfJBp*Jj~d0E{~<MONx
zUi+^889i!<+Y?f&eqSevX?+3pn+4~rSVLSDWe(#|<TUr<^69v-0d-vuM9mFRVOUhG
zUT{@g7!P;`m~5pSVQ9I~DJi7Y#T;^Z|HyjTd;;oD*SkQqbaIaTmGQjXL%1HvVGSv?
zjU*<FK-tOnq+o{=+a>pAoJS(OMS#oX47qkw&Vr=MrYE{wX$1C{C5v$h!<~vpTXFSa
z&;1+|X|gw7iD?aIW(}`fKI$QcsEE%at(|x6z_9!YZUNu8)XCg|O~VY%>$HfQ=Z_Uj
zpV2Yg(J%!=`BM<o^Q$`e(POQ`5U4-fF>A*8GM%v6i~{AQkM|i!I7{wt&3-|!-$M}I
z?G2v^jR!=WTjyQq=p8(Q=wVrYq7gcZOvVsz1OOBC8mq`azH`MRfVONgJ_nx*T59L^
z|6X`y$K`55Y|{~T=u?81N^9EQDG-papbJ%3<M_rnpfZnp?n8Z?mTSeuaC7#DmXo95
zr4DS*jc%c!MAtm{9o5Ty5+}5Vk)*Qx#1eIKps=yo!H6JR03ReN)eLT*E`b5np^_n4
zPmqVv4`|0jwti__B2dW~Ki^ZKyfVJ<Chu2T4Xm3(bBT15?Vss3>h9u(+K$e~>8kI3
z3@&i9F`mVpJTW16n2u&P9EldylwkMe@9_HL3ij+VQyp(6;(m$2%+KmHii?PwGEX8c
z@p4`4gN%+JeEf493iI%Ne-S?|Y^*GTdHfk+oS>CVF!i@2tkK2iphK4zkynWr#GlbT
zkZEP>AT)&=YW&P1wIv-v<W`wCebO>l>R(7}=(8Vuv>#J-$SZFD6l&@+`)xL_U^+B(
z{&em)``1YS(%dWnIDe`0uWUIdV8jZzeyMaO0JvEJJ(GWQ`&aKP1TX<?+<+%I0lhDk
zZvtfYZ;{Ua-y?lZ4P`DWI{lHp%)-J!)DNXl{?Fonf^@IW5>K49Yv~(Eiuxfq@UbtX
z567ZGtc{ku28;iSwx|WNQHq;#f#t8IFEpkDJM3R`09#Bc8u%TGH;&SThUY9tLs5ln
z#uOw>cDks@=%I6T95$wjrFgpzee+0YjyXm|?^mcuGha3lz8JxtgiuMYm!is%1;U=V
zviThSUgn7S)3K)bK~IeQf*8V0M&rhFD@@u!kd)sZt@uSRl^$$zP@YtC{4F6Ey{6kh
z4FBElz-Bq=&kX6@G|t82B-UV@7D9%gIib|jx<VqCBgAu{j2A^~RYjiVc05T#{(&1e
zQPm;g)%_Z$!vjfk9BUxh3;M)Nhi~6+c|ze$FnbmBydg3(`2fevl=~#f$C?YX;hb*?
z*FT}t*4b_m&p*XMO{V*dV_hb>H-bDSIaY9g9+M-xB^8n_Wf3-BfW!94;Hw^C<*cu&
zh6ZLu$Ndsz&uV^;;RFx;-Wy&W3xO{;pP|$~Ced}~pIx^rxlsE^bO}~vuSZsSwJvW4
z@8qx7=QhImy=+r0iwGJNYsn&Ewzb*ueFGWqEN+Mm6zTTKWhsFO47HPvGG1l~ZBRx{
zv8r}@XH7u>KeN!c?@CkB%%&ydLgGyM+g9ezTd(FI;sc6Oh&EGL-u(`>)J?p;JsyO0
zg4UVg7Ia#zN7NW9C*)(V%9I*~Y53e8F7Dic#ICS|Q@osqvyxyG*OVmr)hzZT9fD!E
zTDv4LSEDT#+VnQ`<Ms+;H{u|&$#cYJfiZ#0_;{SN8x`%{iY(%K^tqk|G*`VPseGor
zS<nIyL<-zfsRcBIUVtBP#M1b3|GI<(tp@ol*28lsSXz}NilN^z{;D9O&VtGmOA)+j
zlkL7@{e3-2;K(AcX5_=&H1-y6B8z6pA%?cyXEgRDR7sDAj=oWoD=Im@#6<Qvtb-?a
zFG&6?97tv`$+z}0ShHqDy=d;=emoO%BbE@(i?pc;ihQ3@&Z^KmS>IvEh_PgUAxEYf
zr7d6(&XjgenFu7pr_Q^UUq^ga|M6bliiYKDL~`;f_SF<4BJ$+NT#L%?5tD?aE;rbu
z?(;VB@p6cIQTOa=E>@66u*YfWy=eri)}5E}kv>&ws2;#mYZsSUNiSYFnp$b3Fc4;=
z7EVdw1RHXS%>UIeE;Lc<Mv=)qiZg$-wo9VH;elDdFLe<x?`458S!miJIT3&<TvN_&
z(Qp9{`r8<6Q8wYWeH8B*XG!?4Hevd!Sd;}v8LF4IU{TQWi~e*do`F)S<xg7dy(!D<
z%V^Z<zvSmI@ZYwLtKnsfS}LnUziF|f@6DILF<_1&uH0@b=)l?pmyl<$1}7b|{u<pI
zLR@$990zr1N+_3CY*nBYTP3s&AXk@09t^PW8BLvlTo`4Isy>tS1reZ(LUbQhWszPz
z{K+GmWfjRa-<PA#i;P$n<L*ZBmfiv=Pb8iNF66QcO!kY$2A___j(y_E&G8%DQokiY
zd@wy^8l%Pp)CayC(ArBy&m2-A6QQ#~rdRq=jnPuXFHXvY5-_I6Ru~!dVM>;DVvF68
zpGMsn;$Ibc`mI|<gV9^{3TIEg(BZf?kC*-6d-xbc*O&(~zM1i>KQ<fdbb}dq`zdQ!
z))|Uwg}mo2@k6tp-yz4IXgDD8`vRi5(w>5gi7L=Mim=>MGlq}Qzd||-0LiBR=<P3n
z|Bnvm27vl2Z~j#t{Zi!g0Nri@(Bfaf=K#zZ1IB=oC;;hSEi>Rb&VP$^4$l8trRVA^
zPwUXVXz+|kLV_B=ClxC0IQ%C_UkIoF#-0G&lmgka#4V*@^M!N`>1G^8R%nD~5FI-X
zRl(c&>&5HOpXNvQq&-$Q8kt_{rx!!D6yl4ku;BwAkF!`_&YixnEaaC(+Q0`m%n0m#
zenoRnL5Ng%D4i*ZlT*1Szo?}jZiuX(sN?1MhtJbV2XBO&E^$qX1^i615<vJbBU6-y
zGg;LVodrAczVE=lJJ=!V;SR%U-h3{G&AmR{a$@m!=QOMg=;$Z<a9N!cZVqU2bgU<I
zG=eA}HaGauG4oEMSVFmyOqaU#>YLZGByZVbRa*zENwdV?g6<&}hD|O74x7SZ_ITuV
zQ=hjhvK@yWo)Iyw(T2D8sYGej$~Z~%kTGGC^R3oT2iI1ClU?D;tap2^`82HoLzQZm
z6-uMeC`WG?x%mjIgsMtyey@;HPn_XoxX-r#4Q$k79g+cNAYW;xu!gwj(7FAGOcMo#
znq{31_C}KK;Z@eQtAEGw`NHW@-?R2;4C*9XHPo4q(&3w^A4VeXA$LmqL+P3O+oqk2
zXfT$-^&N%BZA@5TCf?tCZ;`nf>_@A-&|Tb5hAiy91Ixiw@$^CyF#gr!-mBf>RXBOo
zI1dGRN2^4)6&I8T=bF6jT%0Sbr^h4|_Ya<APV5myNQv;9-X5<T+;Le0Dla+Z9_xeO
z#3ptw`xE6*Uaa^$Y`?UM2V6SepmOemfLm!k%F5bV&T!`fJ2(@(?TTkb`_DsURZliF
zq!ZD7db-$K<Uk1Lk}3I=Zm;tirTxCCEN{de>uj0|7lNiF*5Td|zLw*Nap@Eq&1NIU
zHNw7RIK46?4N4(xDE){$Kgk7Qt4&wq@%b?E+>XEbg~E!fnPuV1sMD4UlHQVu^`!mV
zou~FG$<B9OVT@^+u}MqK`pq#$TYO*#ZIYey&MDF;R;zS7rWe=NQTfPY2CE*E-*&3f
z>w-WHMAwQWM8FPB+r#(!5Zt?Cm@3t+>9WNVvh_Iqz-UZoX%hmb)`rD+ghN28Rc&N`
zjem5hl58^z#w)3+c3Z`Ox7r;o&^~QJNRfYsu%0vRxka#{$3-6yI7fBlJ|DqBfqmTp
zV{Rn4$?5AjrTlUPta95F6)6_}^0e0kq`7X{;rHW0{mhHiKlBvX=Xk8X_PU?Q{LP;;
z+EX*A@cjGGURn>iZ}{6_W87qDj{-#zy|Kb<2aXC23rK=pqzlp^SPXKf6c&vIzgL{s
zL(R)8=aEYg_!O&|(_R^<e9~EyC#vLM^q2Hahm{~s;GGm~bqs{MsTMwi(ssoiRnv;g
z3t*qp5BS%G#TEj&m`3b5C<f+qypf;zB7mFyFo8UI6SDRgJhgN3Z@b2n2HX~I6UT8;
zi#MaLul=k*3EI!2lig+`2Df0!Yr=X)LU~!A=<NynKL4nHVkieITH1qPMog+YDE2%b
zCwnb|@kr3&Uy8Dc*#|u4`5U;wCRqs<;c>q+R->gfp+QtXFZxl#e9xMaROBF?Me*AI
z_%5~y9|}h(t=<;V3Qs?y*FNz3lx6pTP%BrQ=tC9vM&Ri<*HKtw#ClC+%_B^N@Q;W5
zj_hG}l2ceh770EBL2|pxGQVW@VU&@$dRJ*$2jh4W(d59&3Zk;%t0Bh^*(bG>UY>ZY
z@vJbOQJ~P*z~m0~G3UJdk&~d%T_jB4UkCpR=^S4g8vtihz`^tnw9NsK<^-Vo3+Z3@
z{zAG5V9fT9%>sab&VOM3rRBK+r`gw&{}$<-+<^T}Q~%G77hpkvk@w&2c#+ocynlQl
zbu}nr4Wl_dnbo!|_>an?bl%30(QOY1#d(W<>KDbZV1d(TxTc}uMkWrf@Zj=~($~R4
z?solPi^MBQW5i)rf3me1=JuiTV&q;-L$Zl@(m@M<D={RP6AUSfZlQBdx!D6ZC#SJ2
z3W7-k-S++@o(&kP6C})F{6jTJIr%NkC$6|d%T*5cqnc9>`_mWG6qfMPP8|r>!)3t=
zRxO>-P#>zoO4m=-VXUe5I(t~Tic4iar)G3Qvtt^vx)p8U6vmq`s@!<TX<iXr*?@*n
z9~kC9Y5E#yzk_&Xpnq*zG|JOgQJx|LtT<U;Lay+PJPN7&UwQOvWd*2i0KCZz@XuEQ
z?JGTI0kHm$N54GwRUP@-tMq02s*acdyvq*o<yR5h3~(>t{I?$EX8x~(bfG?E@pY8T
z5|ARTDI?miNJnMKuKy%RqnN&RP0gRu8k)N$7=My@d<ALEuEUdN?>of}Y!IqW%_xY+
z^1R!>NLczbhoQ}BSl}j%68m(yu_DNaW&<P;vv_J5+%Tw1oDf2RMFqi^6dh2Li}dp@
z&Ye87ZuxFAwQk??gxc1WN;(e2_fcTmCo$rEPo9NjKz0sW^3EO<f3(`3Bp&Y_&ROA;
z9k$O#dq4Q*%GvPodX_aG<tz;no5Z5!7!aeqVhOuU?v#Ag6R_$tTlQUXNTi8k#1rqt
zqb+`Hc0(N>xx8|z{UR7CoC5b>v})hvR*Caq3Pl0Upk)~P9uBWI$hx3qC@lC(v|;s{
zjo!3IG@YD0_E9LVTXW~999A8gaU@)b-dX;B9j=7>nY*F8<zH2Xm+Fb4o9F}nwWb0Y
zwNiC;M9KXC$nIit;I$K^({?%qT=j98`<91I@3JLzMvW=IO8GSI%+Dw!4`-Q+WG&ca
zbfi6p-h0#^wrqKorm<#uZsEc9tHc2pd$ZDS@yZge_(L4;2`R3-2pX)n4l9QANp`Q<
z60W4b9=<)KJ5<x6emCxcp#u8L6RD_uO<8c-ykZH(17kaRWe4m>Ecv!zhjx8*9qVuB
zz9F0&cg7{}B!t=?vDs;ZU^`~(_*jxqsDc*CHkH{%m-VW6RlL7>C=12vTQo1xL01f@
zzcW$?APUkUVyeh~Oo0ZVh>gV5Uro^SCH5N0&mz$1%$Q>*;bR!#5R|s7&8B+5jmt|q
zOkcYGc;pz*WOYIJy-BQaUF#9Tmk6UvDH*tXn0|@jQ#pHKZpcTE;6fP8^XoMsvW>|7
zEe4|~f9IJ4s;_1YQQ+<ut@%^Ci{a!Uvk_J}S0Hy8ynF=-UyHR|wW;;xZ|=oK+qIX#
zav5<jrevg>jW49Nho^h53#a+<<1^i$Bjv3$NJVNQAoXebT}c1L)aU^LlJz**yd&&%
z+2i*g;;RY}<*uP*7(+3RAU10F-P$A6*8v-v&jwba!;Ahqt*EI#r1>d6+5X=gy6{<H
z>ZAwG@@Xe!2b*{LgNx?Kv`D3mWJbZ75ushe4gHTWrp57li^BPu3ONTL0!1zRd)LuB
zT6_?Wgb0Jreq1O|JRgx`2D5U9R&g*N42WM9@X{<(LvoK8HhF1WMAnV_gk#Qm;^|_)
zc{OiCE}A#KSsTQ+X$sR2I^%TicZgsnl&~+sA{nXhE-~2a1h?=2uRPO6P|v`Abh(C7
zx*R=INyOe@0IeIIa=Ue$ys;HbK`USYVVFKfUlX<)yBx`QI)fMmT%sklD3J3NZ%QrW
z5bg=d`4ff?$DVwQcw0a0kU6qv6!tnat*L#S;#XBp-Kp(+qnToO%p}8fEDTQqw_h+r
zJ%`goGB3?4j$ama9?LHl+LIt!A~dK~2nYRGT+W^-zn0Bj*9qIac?!K+x0p0qM@Ht<
zL~*K5kR%q#6RVA(UnRxNZ3a;p$a1hx>bm;TOypf31vBQ073JRr`hnZ~a+{{}fQnGV
z5m(A<z4ee+h`|ir#;<xn(-CKJn(RNs#$$PCo6n(&)iaKwY&IR-o`&|R7wUF~1IoTp
z#W7a*-9Odt4c(#phT)hcEi^FOa+d<M7LjATg`d*S5E{Du84h)|xuFcsLiU{68)E;K
ziRB(5jO*LpwyG3CXp_+h1n-H1x#Yh>I>$fwW(FXe9RTjHEvW4O1m~~N%=S<4{tDM$
zn^3<3@)z7$0LVB0->W$Q@T`E*zYWsdO#eO7ljxqv4yA@v!Qql_)(&#+37gJ5{u89%
zsoWg3$&;&0iV?SRVLj%3AzgT{r_!$f=-b8%Jh2uRT9wr>tLS%vV(zftGL^0m$gJ%?
z+fe9dZJqU-J``dSTZ**)XO5p|Am3*%)8<B@9@5g$_|7%TCKR;qC;}_0A~<;OB={C;
zAI2}J^qI7sKICqUm(;Tr(V9_OKxgiI51I>&m2u&fpwHLJ()<N^cv;71(TSUl(5+yS
z5#5w}%1b{$Ak||t>Bm}U(56GrFe?6ZO}jf;$#OG=?e;8-Ud~1eE_Wembumc@81roG
zF+v86HaouhPeLhkk<*pa&XL?E74f-?1cqZ!E^+RYGI?WoNCU?w3&vVVq_%*Fp<eF;
zUjV)E3FH(U3}0(5uSUj8j~a>!q2$_+p`jogdSeT0R2t<gimj(kIi1ET?%NCEEt&Z*
zl}R@X)dkZgLuztq{uY0Q-Jbb#2i3QRq+Dq`0Y-U~L9d(X*%TAv`@HUty`xo?`?qiF
za0R==gUJ=Y2LgYdKZi`3{@O6*!b=Q_PkWXP^#UXwZ(SDE%%0@4Y0Hv*QHp_gawJ%w
z19l%<0F78(GOE}%ba*EIclIZ&oq3Dzitb@DGX7--egnp@lck%@Cw7H**$k7VwAia_
z^D*;p$Wg~j5;N#CFRO^}FhDi#*z?IkB2kIIz{q`mN&Z-Utez^NrM2R&o-1%A!jY>{
z|5eJ=n$WgR24yo+idaz%eH{yq5UFnK{1RI=Bt!LB>zkV#k`PpqpQP7WDiGft#9t|i
zegXXf=W)%!_e&n8Sk~Mw9<F=$xNCS1QI^cd0?cp_sX6CntY=BMG**YrNmgg&%K2~-
zcF~6O!;-T<@`3BaUc{657mZ=sW9>4`VN7Skj%b1~5@L8-tXMo|P!$e7K2pm2BoS7s
zbU%ov8pzxHYft(6_;5Q(Eqfsj76i}OQws}JZVnjbkvDYaEYb&!*18n|P;q2q+|n$3
z^2}nIYY$Gebqp$)(<_kBM^X@*qa0(zp{U-5tb2!8v%&gaA&|qkRhs54!FMyNY344s
z;`_`6ysfgqPMqDmL#_^p@a@BE9;k|O@>m{{IlJMoS8YwcXi6ueqB<p!nw?`7mB~6U
z^atEkudv#m$ddk<W`dMR4E9GAy?O&CXLV`k369c8CUBvc)ax`}&hr8bVfpU$eF{8g
zp!~oPI^LF3Lp@+3!WNX+#9bvyz&6ANX-s8Z;k)qITc2$->xo@JZa8g_w_$@6Z^IF~
zpZdJG*4DNAwLSGBG|$j$Ff_&I<vKsz{39~SrDdXUGFhGVE*FdXgC;G1SmGp}0XzEO
zaw4RG6s*=JHyh02O+#0CZ|+Sa#Vvc0Kn2)BKAI_`4~AlP7TUC96A&JL^Mw8@2WxVT
z=P;t+*khZ5R0^`!au-6mdm&gR_md>>ad=OWDvz;kGv7Ss{pb08LNNA>eaiKKU~d85
zNn%L5Q43V92VU8>Q`vwG(dym`_Ptgmx!OXOXH&vA6M`qhDm)Zri~+Ed;fV80%0ra?
zKXiRzKc1CemcDDM0mp|)Q{x5J+JCqStx9nzr_Bg_#F*Kg;0gdw7?Q-o?NK`3hRffz
zft9~WO1M26@0vbmMY$uwjjETQT_9-;LcR)6%Lt^l<5t@vrs;r@b+~7+N<0lmh*tNn
zjJe#dru{3Va{?g!l@4P8fSChueC=WS`i|fW?rebG7wErIX<zBHFO~kaN@M*;tAEv0
zzA7aqfS~Yizck=xW&td*a{u3T*Vh*)u>Wq|l?8GoBTDda7n7sRJ8RA#jLXdf`JW(t
zg*utkmiG!B>E~}DrA^l=u)zGmkjLO|mSvasRp#(2@cad5h~qi84lBvlG0xs!Jio7N
zMSc>Lx11zm(O#q-%GJgwx>n->naA_o;cza5iWW4LTkuV>jM~%7U+7#!#znxWV2VaD
z1zU$(iCsyAWeZeMh}}+N=QB-^oklztD*S+?0gbn$D2*8|kj}zL_p+J6<4By$e%Lv2
zF1$irR^p|EUe|Pa(}8<hyC3~EG`Q3EuRQcW|2)S(LG;U4U+GMCfVcj~L#zP5d?i4Q
z0oSkZMZPvHumkS>3cYNA;QN&h{i=Jh{=0P)Hw(Z+6b1k1gAquG{2+=%fGHLP7zogW
z{ofhjf9Ekm`O3MB01EcyUwESq#zU-H%e7kniN|DKDb+`dM#!(2Ke84RML+_AD3B;V
z@;&0?k{`N}!A8zYiJjusL*vr|Dh2ctz&BO5WJ1&%+51-X9S3TGkQ;OaL7u-grE71k
zE*>|`QGN?Wx?S3D1$EU(`{Pngl(RH>lN2T3q#Y0kp*lp9R@PzJQiQjUukV&oR1U0T
zh6;Kw5xS=^F3)FE%jDk4f|Ax^%q9QZu96bp%}ZZ{)2Q~H&dImg<peP`JTWQnR;96h
zEOtDdt7kcNg^Ki$5cFg5ZC$#ziGS%_kJ{UqDe_zrjsQV;FMr~=?M71$fmKQzH8J~B
znjHlx2ON7Xaycb2e(PTB6E7HM-}Xn@C5{b$$mASG5jC|SjPq8_2lIgC4aMi&A4KN?
zq8M80Cj#hTMq_z}ZwM*{RhTlRw#mm<mNzF3@~ywQ71NMvHuB7tISY*>7_z+Q43R8<
zXEE(RF%BQtCMNwQnB1vH41(999~~u$&A=t!j7g3So7Lo;%}YnlVXVPTg$HNv&<3t3
zmKg0FG=2iQ$pB7WZzF|752P>k#;P;^Nl>VOFT@IAJMHI^J1y_j6Y{*-234r`d@vHc
zeVxZ=BM3`Q`)(+=IC+5`M4Q)!*WyY51+^*Re{|e_vmuLt`9Qb)-N8#9;{g9eJLrt$
z-Dj9Lc;@=tc%O2Z_w)h#pa{>LvDlj0-7?rT?A7wgZkhsJdnWaAm6oKDO%LuI(Vgl-
za_m&cACHNH%Ma`04adH}l-2+H`%V+n)F#+Kv3_RMZ#Hll^hDO`^Y31tF-fW2Ac(bM
zx*3fKdM)lXcC>F5L#{N)wwshdoC>hhBQ)x*I!adw_gv18^e3z5iLjk(mfW#i3FO=4
zzs@1AjSWE~Wz~5U1O7ywNSX2Czch6cWsNekLL+UUlIshis^i(@i5W+kF_p;=yc>C_
ztb(vBT^`bi``9p62I!WGA!L5crM{W325}iPZrQ9Yk=635%_f?3$!9$5(G1245HoE4
z2u*M3UN!jc3TICrcBJi=9AK|FHHNBrTE_p58@Yv$TxU{A5a0va4W}@=XU4>8&CUVO
zl7ZNRD;QJQ8IT}J)h49mV(jZnD_++~&xl(b4qsCd@klM#bhN@bK+FjvWy!f09PoNH
zr+VCJWYo|yk>yYPvrCithGT~97-4<k(Z2B8aI7c17fNaP(@x^^^XyU|lV!|v2t{;4
zdcge4u9l#3MYnK`_%PK;9&B0Z@6tjcoqdb;bQZ1TMR;v5m4j%0l>F?Hv(`*RAzjHU
zgE6|Ji9fNFppUbJeef^8*hH>UR(|uyyFpkbrlN1TKyKn>8T;zJBpbBz{B^>+4E+U@
z*xpQFAL11|$iNZ9wzIyQd`ZmZQd;gL^}hN-LE%wKY!p*uT-<x$8?MEO^NY^&K``gs
zs!P`)T|Sz_I7Nq+wK$F4)@JR!S($P18FMt-j&ahX&9pgOXjGxb9XJC|>6Rjj_x4Qe
z?J}qT(w~^;nWJ4z9tfGjr-w_~aYyy=v8hQXKUae)sm+jO`HHfX_xNYdqvV}$1v_tS
zgx4r^2@PsVQt;qUE%JtNjzMgt@Vof!(1TON8JYtT7SwlR|0c6x(L0g*c5k8|UH)O`
zDAj63P*}4ox11sbkr)L+io`t?6`Jsy(lt?YS2AYEWjBt}sAzMwei53bQGSdCv;KnL
z)@?mt6VIM{A}8G9R5%=E?BsJ#I4`RYs8Q=c^MGol%wH6ZQ|J&jN0gC+i~COSOGv-<
zmgET`;epg6haHp`k+*Z|g^-lWp)tT-p<%6{g>yrA<j8rlXhq$FMtR%)a1e-^M5_id
z&KLvwEk{a;K9pEek|@~}hO)$W1eJkG){{!v?RT3ZfmiCI=sOo@y312bf}((>;-1b0
zdY96Zlb3kxCxJd9FFuMtLvc(bcg6&=)xed}NepEVIaZfq=Xr#3Er&=?Ac6xgGyEWu
zh}W*fBQ-oK74!31>N*Io4^Gep7zo*JI}Dchm?-M@)1EkW243a&HZ5oF_~Jd;q|I&v
zxStpU$zAOp2O#?0K3aIbX@~yN(97d)*uQ?BqMviYLwS6s>{5Klth#+})X3T04eIc5
zL5)zGnJA<irWz*e9Va``evQzGAWOX%JDq-2;#*iGVLuU7`NfJ``9c(6E8(yxrMikj
ztx1ODl&)VFIwXn2dC{fYxk}yxqJ5*2Vc0Pi{>mwXA-3%qF)lu{pA+_L@J9ByQCx&N
z2-Hs1F#wWFyU|!&XhRApyWw1c{taOU*F=TVLLcRVeJ-@HmM+DkRu$qeTS0jE_1eXs
z(r)#})J;W^s)RA+98<%}I5}%kni@_upm`}V+`lj%XX3z<z2+4;gX86S8U^G0{HCLy
zyn5VkBoI+?OuJfI<A^mJOKG#uu34nP{jmmHF#%1d8p!iVs|py`qbPliD)0D)5USr6
zTFPfhzq$6Rk`lw#WvvfEi;^G*>h>!#N+#b&X$H<kWIxO>>ir4*b4}m~tyM!?s<*>d
zh37H(xYYlW2=3eX8P}AsdFyKkN;3asX`r9PSuF{JZYgmZ^68lgvD?P$;eFibDj$U7
z4C675<lXA0ezbJ1)ftys&KPHc-s{tU1{Q1n*?^`hf-7B$;shJSwnO%4-hMKb7!g{{
z1Tp=IP(T^g<}Eb95*(uNEJ!O2bny8d=9bsjAC}}UDmOc5`Dd3t-=RqoZbr!a#epW|
zTe|GCsY0)n{|(veJgf_3mTgJ`V=Ht6=~|N0jX~@cmuF<WQqTOpPQ={ntjhJA=hOJN
zo6-;Ks4fg<{v+$USTTgG>p>-(KQs4(g`fE3*qKDEwIC#5oPzymJkqaSN1f}+y|$A>
zSAQclGR(xzBr8kCoH%rSo~?BmLvkG)&#f%Eo{E>Cgeq1&SdkG$HFdQ4@(i(+i$qZK
zyKmKuHCe4V(h>HI6<;dzF?XKI?Kq-Nlod);qKSjOul*;a-R=(+sf#2I@nQRRe-B}8
z_Ny4`v^@{5p^M!TG|M;*UwsqtfnzU9t<sHSTwQb@Tn`fbRn!;>n>0O67d2GJ2?gif
z4K>zI>LKitEDzVJVz)&mg<6ES`p_AZytdWJ+q$8UxWlW1i3#0Wc!5xgI3d7V6)~<w
z3zxYbuog6N#;)HIFi@><<?h%lC+4~5H+#&Q&(n1O%$y3&+p{dir$~T!EN+9<=Sp6G
zflYNq!JL<la|??D7t$jmPh?~K5|_&OC%7O|`YBY@$M5aae=nDAiFt5fNO+U|&2s8@
z-HrFh)U}fZW*vC}frIMfWoEdU537zp(cwh+u<?T&Oi_}J)=8s=MVRzZ7eT|R-U}HH
zc>h>sajD0G+%jg@oiaENnr-A?qvjl6>M>l)_l|*U=PV8siwoJchTGr0zttb(=-2ez
zr$4Ee{e6g?qT^_Ez=<zHhPok;waBSQaan>JfK?uC>`Xw9fEc13^;Sc7Rfx7ufGV^D
zz~w<iQ;-4}ML>HHSv&9w*8O>XB`PjNNyQI;0ZCT4T^M$$+-l!E8LwzyCYiNEOb6IA
zc2^qyxW&|B8Am#=3ChGV*M%S9POR&inCypg<jmPuu*KGDfH|+}^^20F8Wd|$xqhYy
z3Wo2F@w+o<8=MK0yO@-<gu9G2VvEUdq$2M$mXKxt!=TMCjU1w46rd(y;w$Abfd2=l
z#s|11S@hW#gm&-4zniYL=Jq!(i4!p*9ynNHbn5#Iykm4mFWgYl&R;IKWd+aVq*Th3
zHUkf%I%M?wDPY=M{XES%GX1o$Unk|4b=zS(vds>NO&q}wcy!z5;0Od6NpfOYTRu-F
zQHlx?SNyC(ofh~3Ibk1J3`d*M`1<mM(w~@JuE@*mltC~`T7H8PyzUOvmTd7_y43YU
zm?4t6_(ZgYv9j;(MQbH>vG^lWcJ4m}7cUrrG4j=i?{IxRfRf4x549dT3{CAvdU`&<
zeVchX=~(KOj-o@|a&`>G4%9|4C3qk^TbRT&6IOjp2lg3%IcBtObZw%k0tpO644MsZ
z-%8w5?aH19iX_Y3{dI!PdrKM%F2#6H;onkzgvp7~H(_jzG^xS>7LYdlbpdPTR0~ud
z2Rs^qNS1CGvJ=8__RzEKTWr0~oJaZR&(<WAuTB02ivc}yMMPeIY?_Up!@3e{#4+=6
z5ag~l^a&Q+siFtf)hs6(M_nfDL-(N4>fk*`!WC?yLd!6!kx1{Io)o1vLo3y>n5MoG
z&g9LUSo)+$a#Qb*3+v5_MGX9uNG)J@hr56|umn+z6F22#NrjFoAmiHku}<hQxLMMV
z7qqyiyOIWt?4?U#GPU;fo064eC=rvZXM}r!S(Bs6v{>RyHv-PWJ9xy1%;dtyfv4HP
z-^#LBPt%!uBS0Kk<%C2_0~=jRF7MHDR7re7J?s!6JoVV~JcQew_73i+8$e-}6ELJ$
zEvM!pb>nBr);*<G5f&l!f9r&1@^PNoElP7;d;?M3fXb;D^`$f5r6Cw)X600`k*Ug7
zROLOywk3;7Z`FA-U5G8V2=_GP^2%Uv$i$-si{-fN{j$5!U0mW#*$aqHIR$o+D_&FX
zZ+BY27Kxafp-yZx?UE_lFjHA)Zl~+R^Y0*j6MMXbi+r!id-^TOdA?yT1ZncrY7&<*
zungT?#7s?ZgHes~GoaQ=$43GhubTOr+Rc1Jw3y(yG)#goxBR)8a&@V4-+OZdZ)Gst
z*#kT3_j2R7CQbA1{&0PxYPwC-KsRG~8zif4CV1|B<C&^_|CPcX5*Nqlx7Z~kamp><
zNbnQlK}8oK@J_X8Q^rBu<#T((g1prU1)72q0}ORV94!8w_p{Qw)$DdZ;653OU_w!P
z#A4;MQ@-TAT7v6E<L+wSI1-bvvo)wrd_52uYBWMl#fC#sa0dJ+ycbGZ&CLx}w!*C4
z5O)e<(y7iE6rHUh-;!y4(eh6(3wGk(4=k46tYc}FQ-jEYLz?)s?)cNfZ$gA=97*$@
zV+^U@Q<w%t%`%bHEc3Yzmomruq-jVpRY_U>7+WPk-=P+OlG$F1YjdzFb?v0HnFn1d
zs5hsAg6RYnl$%F=aglLrNu{rfdAQVCUOgD|W5YIl@5+Da$r*x-{A_jWt(E#-Gf4%T
z*U7xA^(Y*-nJzD(K}C|<Fb!vIOT|Y~<d#8^YMDQ+-fS-4+YTKENybB)zA0rIsZ)?c
z3=X@8;Vfv(3|qvdGeMp44f#j!(7f=WP=#YQ`(~3u5LRMmJ|ah@g~e1gXo{gVE2N7H
z0lAFa+SW*Hpf7$1tX>7gh`zBMPC&htLG{mz;$rsiWrb>%tfzC3kTill?N4Y^R|8dx
zo$5zFvD?WA`;pte^V0F|lAQ8r-0>j0rSW=zI%N>pbu@P5V#mGU4zRQj83oi1>3s5%
z{xX(J_D*m!+rd_LZ0~R_Z-kQ!Ry#=DRzD$^RBgGN+BlKGCRORvJ5wX*Cg$dPzYc$T
zL|*@SGr!IpMHH{104h$|mm8SA#Px1uD<?KJf6(5YN&`O9v5NgS*Vf>X*mk?_DI-RV
z%YddgID4pe=3SI0_{TG|Kr{3Tbl__#@v88CYx^Ug#TqZ`0}u73*z^F6nKZj1nm#lL
z3I7v!dK$qjqhx4jjGE>$@alo*c*3}{&mtVGc!UPuBu}_7d@00RHj69hJSjM5*~S47
z2F?Pu9r!{z*3;VBxNBKMi+<d49uxLJy9cC>O(5$9-_Ku|(0cyD;Ta2%-{6P`PWgEH
zpRC!~CzS;lA~JUjDtQ?j`O6fxyb$BxB(BX-p_|p8q>*JwI_pV&ou=whwwb3)4!u(5
zw!+J8&)s7=!p-z>EN4RSn_aY~nWGEbfm1S418Z|gL^1CiOuGKk_vaTj0K=CdY^??U
z)QKi&Earralz~foZ01uSBg+r4KSp|1`rue$ky<f@*Mht}@-_u}lbGa{VsrDSe%IX{
zK7)335PeC{qKKUDi&6H;^I5Uf;kH>+*{)%Qr_cZvhy4rlY>49gj%D6e#%k<~A48SF
ziR{WO=sTBq<ZB}&q)ch2o*7+F1FUHKh)l~Hgp~U#h{E0zKoNugjvj!IY^jK=P6ozk
z^oDfn%bov3ZGE&JK{y7MJ)F%R2@<CHy9YtJaCdOq5-TMi|2BK+9sdYcnpVD$qYZh6
zJ&X`slIscyv-&Cq{X4Ogy2QsX$IzkgU9`9d&iWz+<Y;1D;t`p6VwM{Nj4@!EQ=gR&
z>XtT2?-cpR+AcQ94VpjM+CX#l9YiOb<1#JqvvJ!6bp3Do86HokG0yDLBmI9ZyGB5G
z!U=i)V!)I-lJ&QJp&-0M03xPLp*p)G&kxly#9`QSy08!{g}{A|68er3O{GMwlN?h1
zmk+&sH?cEMS3V<9bA!F@8cPP%C>S1Xw?BZ$GQ5T}ZX%`_-*%1U^LkS4V8%Sl$jLw?
zYz5!^mPM7zA%ph9Rp8HVtKcfli<tF846Vw<^hL2?1*oFCIIZX;6{jn2>)-7^h23;B
z!*<W>Ms&O89;mNHjs-a<B>Y15u*B|`|6c$s6VvQZ#tH%Uy4q`e8&W79jmH~jO>h$T
zJ^T{ZShdQFsb;F}00GDuv!_{32kecW9zaKH8f;)Ps-aj4MrR>UFQtnY7q+&G$w*r;
zB66cv_yniSHlM1=-kn|PJsS;oi<V=yqvcEm+-n>$M{PJyb!5zy`TOcWZxL5-U-c(q
z;jWr3K<?#6$?siMt4iAYJtauUlQaY!OGl}4lUB2caG*j!@v961O<dP0TI%R6vG^?N
z-O-msUJC!LS8Ix2?VWAL(Z*mDvy?a8jU6~{0>Kgqb#ug3oz+xN1oX<!7!6|&2k3=&
zoEYiIBXKwnD~Htl>YV(_7#9y2fvsq=!ZC3I54D<ckNstSDkH<|0q%?3f8lK*)1c8l
zD^>dJNE!v0wupK(Bnd4v4IH*f>c}EcC$2F99QBa|nl%*o()<%P9P4BwqyDp!=dpm`
z^7TGA-<DUMX~PKthu|-^*O-QEV9%n@WMcBlS@B~B=-en|Tdmhlx7MT_0_yCy$?OAl
zV05aK9fJH;M|RwFruaa7QH);g@3zC+7_}ENDDy?SWmyX01}oW^F7GiI`-XN`36oP+
zj`Hzu04E9|+l!Q9<CraH+f+L~Hvk{{L-{@0-)+4xy>(CwSwzoqxF4k^V_*~6Jifa!
zm_j)s!!LKJfdrE4fq##-qAE5LGG%<8?L|#ew!T89+!Wz_dnJ_A?%8K(8ra6Q;%$y{
zt@D=oRW0uUy+t@L$eKy$aS!4(*P<tM<3!GOoD4Afq7OtOs2iP4eUCoFoOTBTGLu&I
zrnqgJe(}l=iT(4Z3O`(KOObGP&&NlwSea03z{yo|yVK+8vz97#P|>PW)#g`w>!qb$
z5I{=rqoTGIH=Ysl?_3Rltp&A~cO8%`W!EK|QTMGudU<f*h;<PModtxl%zOWGS1Gup
zTHJ<BBtzV8X;Tck*{;FyF6z+xPxq{1?8x3t6xo3FUo661-D3Yro8nPAM}%tJBE|^?
zpFjB`gfkAV=xUmtzd%nu__py1H~v+Klfll;DRvF^!U#tQF5(rql*SNKI`;Zm^M#vR
zSlFYNi_2=bd54d5&ut{vTi-@Ov+=XdyAv6G!)YAv`xfm}k=(QQLovB~5Xnud@H<XL
zcTb7i$SKzc74!WNu57^<@il;W^#)|Rca#thN3YII8H`{x2aTB7Q%=iNT{ytd)>O=y
z*G2+v$8Ctnp9icWhJ(ABb^?=unlFoO#2~&<Zn$*lE1@hJRj|HG;TtaD(W9k$(V<AN
zR|LkCg-fr>8y`AtuqZ=I&BvO_c2fA`quW!a<Ir=C{c)iTOy@QF|JpNf#DLafcmM<`
zJIf~BuV!=HTFR;=teBqS{Fb+YvjI!(nBIU7cT7`P{L9}zZa4J=*DDFoXN3HITKu(c
z#|gB3^$%@@i}^Dy4ZE?gsk!iW0H$Ws$^2pQfZ<!csrH@&$#seKp@Nnkh!S$Jq*C!4
zfiPb7aDL+S*&(o=*V4|47okSHoLf&I`GM0JpQozPlw33EYR*tSHD1;z9}Vd}fe;hz
zsm3PVK#n2NvMOq1Ic4kq)MGKAvZ9nO_`Eb)UqY|$+Q2JTjV4}*P}K!PxR*etikfZ8
zK_a(kI883}{z!-1kTc{OSDsa`ot(Ha1_|F9iAT)m3<He%aT&X&pK+5IPwR|<St78<
zfU0G@UBM~WjwiNTb5n9C1ok9%lbxA2Nc-~$x#rRU%xo^alN4+rq+aAmo0y}pp{kl#
zuQeLBy*Y_->5w5DBYay>Ob4Y(d_e@s=cuD<*rWT9#5#P}XiFA0OMwuBTP)`SGextC
zKT_Y-s1(cef`TrT5`SAc=vlzdfiYubTIyZvZF){C(LJh3&#aD>&Q2!ZHGm~;bXWP^
zsL71UXwMnPw4scs3P19anr~ji0AEk=K1*%y<8gD^s>y#<!<ZtwabcGQg-r^c^_R-y
zZOl`92?o6bJPe~eUifcb*&Md+-SVP%=`XuV?0aD5iFzq~@xvM<M|iV`)jPp5fjyh6
z7dHIT?6z^%y}~vEZ-2yL#rKI>ml|<MP)<>&l{-}NdXCf&8DyTNeh@mSpOl5FFH;<s
zW4hAFD9H%gQ#N&jwIkrA+}#LmRM-+RRUIK?>jEE$_ft-p90Amz)_j5z>Co2nvK`-T
z_~%kEqjPPdZ`uDMk4%komOF8i)V7WE*rrZ!k82*=#K?0}LA!kfJg(OWzCl>-NIObY
zt{7AH5AN1Qo@v&(ofjjQL%9HbgMEkM6Z7<|YufRqd58_N)QW$*;hE__g%){pzy?ch
z#D_{#MCRR5<KuFk3W-KQ#(;@u2O<x=qStf$OYHB*wXoq!E|Fk)$!^-+=HCdbX*z^+
zj_?#u*9yQ2kua~tQ(E5x<2Q3h<Sr{I*3o$G-kR#BnNyEl-8l-n@4D@-m^6sx*9dxl
zKl<AqO2YDDZhQ<02?hfRx`2_FE>%1<hIDy^WJ5*l6Q84$_pw!!PT%(?{eJd;SN+sA
zpMo)BStLnxun=W%kSD!GrYC_<{YQZKf<}m)F?&ndVVi;;yxaaAXM0t3_3g(!My4@N
zvUEPZ_7x@{_p=$DsVS{$CqAeQ{@g<f1OWVnxxMJKZY20#Otw~}vuTX<4W)$|`Q|NT
zMu8wPSq91?_n?XDXQsqm5lyMToHRn#>4oN@DEWpDT#sgg!2A*?V~mJ~g3Q1JQbmM_
z%T7X6{w<EcCVPXzT?YjtUJsr`8Tj6z$$x-aVw-*Y0<g~i$W%DyR$3wXTRv!?#-KQG
zPfaZJX`k%xwm^azz8+2lxoc`Y+NARS3{N5cUe>&!tr_Q-sMO6;7_618E?~<nB!{%n
zoEXvVgpc_ecNJcratf(?T>s319}#;#)Vpa%vfg-tc1>4_8$Nx)WDo!w!4d76t1ELY
z!`5^cWISfbWWmdi@miL>5y!|DAc{84dpF}<838h~b#>65nNZ1o1daLlIUh9?64O6%
zn6*DbuhJeO3`7i<u)ay7Ke<aY<AAM#%m1CzCZgJITJX2rsCC9Cf!O;_-?kQ5c~dif
zc6szBG>Uqt?<SF7+#2ey^ByN1<M&Tn{82ea&$=ekY@y)kMQ0|p%1tRmWihYrcTfbF
z6#7|{t!o}Q46qcZLm~;GUXdq2JrQDIl#Cy%<fn)6uW^K)hP3PVa6S3xVI+Dt<-5k4
zt{s5!bocMzal3J0EnOo$(f-D#ZhQeS8M>V>KMgAw1*LsL;IQWeX0$vA`(qn<)n{uB
z90d}A!=PlM^-c#wEdNln7&M^sY~z8#?{#su+@*CQ5X>`iUC}DS)gCj9a4b-G`sOZ3
zPD0GR9Em4<0Bc?mtwy+}+Jf$J45n1DI^0MOHDa=3=*$2=TB*X13CW5_tz$Rz5(P66
z_7?8%vCx42yl5k)#uyTpmzS%fh&A0<>rMS-^g|c9Kc9CD=}+TMg#&O^&MYIYFA|A}
zF+JXp|H=`!9j%MO?`30<#p;Mxp4=7@?%B9w`rrUgD>^QBp$A&`y09$t(lKP2Q8x6`
zDLbKC&KTU-UcIB7IN5`zCgK~%ax_^wZsy7d7H07*SczFShp)yWCphm_;`bzre;+rP
zJ1qeCR5WyD9I|w`h`Z%dOB=orEVU7%T(M5uAJrd^kPaT`76GJUV@(-HYXY<&M&yXR
zQNBIn25(V^vH|r{`Uz1I3<=SLlQ-st&0#9(6`mkfyQOyYx-%#sdZP>v$!Q&Ek6YDV
z1pIK_|Gi6KzYq;M+=6!l-9<9sflWypPv!Lq=BX72)>2u2sUSi{H&T<u{X_^6@h{(-
z_d-7@JaOfd?;@&QZTAQF7UXSuefLbDd%tIowS?s&q6dP45zwMSmYneNfCCO6rkwNP
z4YN}Lh%#}$_(l4PuBJ&W&(1gdr8ltP>-LId+E(7?<H&cB(@Tjia_xmHue@_d7I(3K
z9J5T%Dw8}-jepSW&#dfcN*`qv0mxp_k;U*?DLuhPc7pSWKSDSn5i=Y|zoF@tH2nnl
z={u6>Hn|A*nndfa!EZBW5v89ltO1k@HGipK@YJ51!6Qi(xP%!mXTw`IuSBedKjqSc
zT&%^~w~JS|_j&top0zQ^3$ZFrrxWk?!+Dt)mM5q)F%_}DDMHFNjnh>;iXGG##&Z{g
zG9gX#BQ9W+TW)$*^_3VWOC)IBjG{k3YoL_AFwuJ->B>N*0PXD<Y8Jh~NqwosbH7)+
z&ylEXpmStZcPCQcK1gHVv*w3&*)O?G8@3m~g5N6UWu}V#I9k^Ey5(OlQ1<1}J(?Hv
z<1KS;NhNUiQ!|07kbzjuEHcspdE_Tql!To-kC%3t#E6OqK~5$QOdFQ_$(BEMo7LC4
zQ+m?*;;0N_!x)u>kOA=xYFZ;QSGlFhZpaxrw3WTlSP5qQ?~8KGH1=Qk!|eY}6ieZk
zJ2h(T<sHxc-{cQnx{8elh@=SL8Y7Jxs(3ZBpv2;)D(bk{9gLgBJs=G%e2$u&xeF%*
zC?Ls%F(w<#alU+qs)U)M+3P4sM?zfxsTfQss@%#t8i%e}3%$0r4ahD|U2({|n}KK_
z7%3YO-{va);~pQve{`Z~0f`MBk$wrlx;hbqrWH9(?+yb}76eE)>)Z>$<Hb7b+AYH%
zJW_Ke9yn@4LcI-jTP1*B(%V>q&J%3*Td#TG$`Ka<{BD?9?_%0oNsc0MtnN}xT9WKm
z(1R3}J{?$)!>slH#O<zSt3~chvVe1wDCGmRCOPKVD^{!$s9iVN#N?zWIq$XJ3>0TJ
z#_LaRzNn&rsA=Hz0#6m|<#+LPWA)E=sRt^tN4pfZ0%7FL?y=`sYY}Oj!x+R*BV-!E
z8P9%QdA08q#oCo!FBL%u9I5oRkp;xloOAOXDN4yX%<iwpjP#y#@2O0i$7}OF0$UV(
z_%i{Y^^3Y>s%sArW*yRJx{U~9s?l0+zhkO&)@ga3v<dC-fa`BJ$+~LvaV_#)Iix|h
zS47$q04<p(RRl~+CIedS3mAk)BqTHd4Jk{<Nr|){ym6ytIqL!%ZF>wnk-G$;RMvIr
zo0rTh01O2=oYfs3LXItW8tq4s`>Lo1TAtI|cm`%Wg7;84f4d(+<(lHt*ps0xXoqIG
z$->||of5Lv!v&9eA$nhl_LgkZi^2v0DV(*z*(YcsBE4}pMuEGpPnSp4+Sx*mKHHaB
zAteD{5?CO)?^t0VQ8~rzW^+gioy1QN%heeEahh#g#Q2A7@!kPVC&G7wQ6(HLMdWGL
z?07+RR$B;mM|oj=J{hS<t&#yoSbZ@Fo{y7}wmUzKAEMCqR;FK;Ku6!2TAmS#bfJk9
z(R(^ok3Goa@4cm**%$n9i%H}Sl(=?Y`)NZD_Bn!mNQF@UM17-(WY;7cS{}^rXqa6+
zb@=0u4S{c~Hbgn4Y2kZdX2c4_&W1;>rOIvs#d!Y&%hft^@aLn(H#GNeR!4v+0kNO@
z0g0K^$PF>~yEfnBIj-eF{{Wk?7YnF8@<_Myvs&05)&TTf$AIAx-0y&X!T4xGrLbM1
z?|4+()Jpajk81qe-gx_Y@`NB;;jsw>Yy)WvG|=*1C@WgnH{I5xC%71eC$Kvk)&@y^
z*7WHp+HabDt67BRYVe23Ypsxuass4_X}@Rw%yVVj&X#UUW2dIMgBbPqz(YT+=$4&b
z5YKzUnB&k4u<C=gqR~$IQ|GqUU0_+8z91kTpe;q+-)?hS$$f1uJls@;U-`~A_6faI
za+ewToo3o@OvKkgK)aPzyW7*_CQzf%6zM*e+AF_6ZeM~n7pV#L(qZ`?K{f>i-s@Ss
zU+gbPoU0A4XR_<@Z8%nJ5@7R6oThZ|ur>S0Bdm~e_xn@uSaElXZATWCKJjx*p2~f9
zwQJ38WS&RxtQ`rEF%EVN7jmR^Q#eU~F({jylQJ#$!h@yY=c$dtWkBirMeSU_)C(rm
zH#zI}kpU~aeo})%?7}os?m;<y`JD9iUW4<F$`oF}yV_c@Ew7aC#x&e|%i7N)hX?Rc
z>mZ1bD-rIN{byB@oiKRjDV1>Jsbo?Mg-NY*5F_asM%cE{wKt%83@2>sDUz)LBi0mQ
z<F80STnV8G_c{8-S@-y!yg{_6{G{TuhKwMH%<e&3BQH=z`C%^&28{KAqB*S6OG+h~
zfv0S#r2||dSP;Cu35J_r!r+w+)cXsG<Dh_KlT|qY0}R94!Z&)IwnAZ8qOMv!K<^sv
ztQJ=yDha`-1am3RmI2*Uv$)fjue_=Kaa?1iAzRxnP;AzS<<6qJV^B??KiE~4`$!UZ
ztvr`dbimT-2T_?g#B3RypYAz`X7xJQ9)U9$Sf$D8Pzv2Hl0T1BCqfl?8rQFp50c-X
zRzKF5#in9;K$w%-zyRfglHhid6FC!Xw~?{tBSlfr-1f`BW98E@J}@CL2?hl#4g&%j
z1povTu<f4Trj2Bkh<Om9s814fS><G-1Qcdi6jw_cqy&c%R_YD7L|R&0$vpxC0fwMe
Cc?vK9

literal 0
HcmV?d00001

diff --git a/oxAuth/Server/profiles/default/config-build.properties b/oxAuth/Server/profiles/default/config-build.properties
new file mode 100644
index 00000000..28ee9fad
--- /dev/null
+++ b/oxAuth/Server/profiles/default/config-build.properties
@@ -0,0 +1,7 @@
+oxauth.debug=false
+
+javax.faces.PROJECT_STAGE=Production
+javax.faces.FACELETS_REFRESH_PERIOD=10
+
+log4j.default.log.level=INFO
+weld.debug=false
diff --git a/oxAuth/Server/profiles/default/config-oxauth-test-data.properties b/oxAuth/Server/profiles/default/config-oxauth-test-data.properties
new file mode 100644
index 00000000..d05142d0
--- /dev/null
+++ b/oxAuth/Server/profiles/default/config-oxauth-test-data.properties
@@ -0,0 +1,34 @@
+test.server.name=localhost:80
+test.server.url=http://localhost:80
+
+auth.user.uid=test_user
+auth.user.password=test_user_password
+auth.user.inum=B1F3-AEAE-B798
+auth.user.email=test_user@test.org
+
+auth.user2.uid=test_user2
+auth.user2.password=test_user_password2
+auth.user2.inum=B1F3-AEAE-B799
+auth.user2.email=test_user2@test.org
+
+auth.client.id=FF81-2D39
+auth.client.secret=FF81-2D39-jenkins-dev1
+
+ldap.admin.password=ldap_admin_test_password
+
+uma.user.uid=test_user
+uma.user.password=test_user_password
+uma.pat.client.id=AB77-1A2B
+uma.pat.client.secret=AB77-1A2B-jenkins-dev1
+
+sector.identifier.id=a55ede29-8f5a-461d-b06e-76caee8d40b5
+sector.identifier.id.bad=840ef58d-a7d0-4986-af7b-71ed0089ce61
+
+contact.email.1=test_user1@gluu.org
+contact.email.2=test_user2@gluu.org
+
+test.keep.clients=1001.67f09e79-8521-427e-88cb-705da4a881a6, AB77-1A2B, 3E20, FF81-2D39, 1201.d4c0fb8c-790f-4129-8da7-916c936bf219, 1202.8b5acea4-fb83-4766-8635-290beefe6790
+
+clientKeyStoreFile=profiles/default/client_keystore.pkcs12
+clientKeyStoreSecret=secret
+
diff --git a/oxAuth/Server/profiles/default/config-oxauth-test.properties b/oxAuth/Server/profiles/default/config-oxauth-test.properties
new file mode 100644
index 00000000..aeb741ce
--- /dev/null
+++ b/oxAuth/Server/profiles/default/config-oxauth-test.properties
@@ -0,0 +1,19 @@
+server.name=localhost:80
+
+config.oxauth.issuer=https://localhost:8443
+config.oxauth.contextPath=https://localhost:8443
+config.oxauth.salt=123456789012345678901234567890
+
+config.persistence.type=ldap
+
+# LDAP
+config.ldap.bindDN=cn=Directory Manager
+config.ldap.bindPassword=Ni2Bih3nCUU=
+config.ldap.servers=localhost:1636
+config.ldap.maxConnections=3
+config.ldap.useSSL=true
+
+# Generic properties
+config.generic.configurationEntryDN=ou=oxauth_test,ou=configuration,o=gluu
+config.generic.createLdapConfigurationEntryIfNotExist=true
+config.generic.certsDir=conf
diff --git a/oxAuth/Server/profiles/default/config-oxauth.properties b/oxAuth/Server/profiles/default/config-oxauth.properties
new file mode 100644
index 00000000..50e61bae
--- /dev/null
+++ b/oxAuth/Server/profiles/default/config-oxauth.properties
@@ -0,0 +1,17 @@
+server.name=localhost:80
+
+config.oxauth.issuer=https://localhost:8443
+config.oxauth.contextPath=https://localhost:8443
+config.oxauth.salt=123456789012345678901234567890
+
+# Generic properties
+config.generic.configurationEntryDN=ou=oxauth_test,ou=configuration,o=gluu
+config.generic.createLdapConfigurationEntryIfNotExist=true
+config.generic.certsDir=conf
+
+# Expiration time
+config.client.authorization-code-lifetime=60
+config.client.dynamic-registration-expiration-time=120
+config.client.clean-service-interval=3600
+
+config.uma.requester-permission-token-lifetime=600
diff --git a/oxAuth/Server/src-remove/pages.xml b/oxAuth/Server/src-remove/pages.xml
new file mode 100644
index 00000000..b3a69c76
--- /dev/null
+++ b/oxAuth/Server/src-remove/pages.xml
@@ -0,0 +1,55 @@
+<?xml version="1.0" encoding="UTF-8"?>
+<pages xmlns="http://jboss.org/schema/seam/pages"
+       xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance"
+       xsi:schemaLocation="http://jboss.org/schema/seam/pages http://jboss.org/schema/seam/pages-2.3.xsd"
+       no-conversation-view-id="/authorize.xhtml"
+       login-view-id="/login.xhtml">
+
+    <exception class="javax.faces.application.ViewExpiredException">
+        <redirect view-id="/login.xhtml">
+            <message severity="warn">Your session has timed out, please try again</message>
+        </redirect>
+    </exception>
+
+    <exception class="org.jboss.seam.ui.UnauthorizedCommandException">
+        <redirect view-id="/login.xhtml">
+            <message severity="error">The request is invalid, please try again</message>
+        </redirect>
+    </exception>
+
+    <exception class="javax.faces.validator.ValidatorException">
+        <redirect view-id="/error.xhtml">
+            <message severity="error">
+                #{logout.missingParameters}
+            </message>
+        </redirect>
+    </exception>
+        <exception class="javax.faces.application.ViewExpiredException">
+            <redirect view-id="/error.xhtml">
+                <message severity="warn">Your session has timed out, please try again</message>
+            </redirect>
+        </exception>
+
+        <exception class="org.jboss.seam.ConcurrentRequestTimeoutException" log-level="trace">
+            <http-error error-code="503" />
+        </exception>
+
+        <exception class="java.lang.NullPointerException">
+            <redirect view-id="/error.xhtml">
+                <message severity="warn">Required data not found to complete this action. Please try again
+                or report your issue to a BT administrator.</message>
+            </redirect>
+        </exception>
+
+        <exception class="java.lang.RuntimeException">
+            <redirect view-id="/error.xhtml">
+                <message severity="warn">Unexpected Error</message>
+           </redirect>
+       </exception>
+
+        <exception>
+            <redirect view-id="/error.xhtml">
+                <message severity="error">Unexpected error, please try again</message>
+            </redirect>
+        </exception>
+</pages>
\ No newline at end of file
diff --git a/oxAuth/Server/src/main/docs/mustache/markdown.mustache b/oxAuth/Server/src/main/docs/mustache/markdown.mustache
new file mode 100644
index 00000000..4e395468
--- /dev/null
+++ b/oxAuth/Server/src/main/docs/mustache/markdown.mustache
@@ -0,0 +1,112 @@
+## API Document
+
+{{#apiDocuments}}
+### {{resourcePath}}
+
+#### Overview
+{{{description}}}
+
+{{#apis}}
+#### `{{path}}`
+{{#operations}}
+##### {{nickname}}
+**{{httpMethod}}** `{{path}}`
+
+{{summary}}
+{{{notes}}}
+
+###### URL
+    {{url}}
+###### Parameters
+{{#parameters}}
+- {{paramType}}
+
+    <table border="1">
+        <tr>
+            <th>Parameter</th>
+            <th>Required</th>
+            <th>Description</th>
+            <th>Data Type</th>
+        </tr>
+        {{#paras}}
+        <tr>
+            <th>{{name}}</th>
+            <td>{{required}}</td>
+            <td>{{description}}</td>
+            <td>{{#linkType}}<a href="#{{linkType}}">{{type}}</a>{{/linkType}}{{^linkType}}{{type}}{{/linkType}}</td>
+        </tr>
+        {{/paras}}
+    </table>
+{{/parameters}}
+
+{{#responseClass}}
+###### Response
+[{{className}}](#{{classLinkName}}){{^genericClasses}}{{/genericClasses}}{{#genericClasses}}< [{{className}}](#{{classLinkName}}) >{{/genericClasses}}
+{{/responseClass}}
+
+
+###### Errors
+<table border="1">
+    <tr>
+        <th>Status Code</th>
+        <th>Reason</th>
+    </tr>
+    {{#errorResponses}}
+        <tr>
+            <td>{{code}}</td>
+            <td>{{message}}</td>
+        </tr>
+    {{/errorResponses}}
+</table>
+
+{{#samples}}
+###### Samples
+{{/samples}}
+{{#samples}}
+{{sampleDescription}}
+
+- Sample Request
+
+```
+{{{sampleRequest}}}
+```
+
+- Sample Response
+
+```
+{{{sampleResponse}}}
+```
+
+{{/samples}}
+
+- - -
+{{/operations}}
+{{/apis}}
+{{/apiDocuments}}
+
+## Data Types
+{{#dataTypes}}
+
+
+## <a name="{{name}}">{{name}}</a>
+
+<table border="1">
+    <tr>
+        <th>type</th>
+        <th>required</th>
+        <th>access</th>
+        <th>description</th>
+        <th>notes</th>
+    </tr>
+    {{#items}}
+        <tr>
+            <td>{{#linkType}}<a href="#{{linkType}}">{{type}}</a>{{/linkType}}{{^linkType}}{{type}}{{/linkType}}</td>
+            <td>{{#required}}required{{/required}}{{^required}}optional{{/required}}</td>
+            <td>{{#access}}{{{access}}}{{/access}}{{^access}}-{{/access}}</td>
+            <td>{{#description}}{{{description}}}{{/description}}{{^description}}-{{/description}}</td>
+            <td>{{#notes}}{{{notes}}}{{/notes}}{{^notes}}-{{/notes}}</td>
+        </tr>
+    {{/items}}
+</table>
+
+{{/dataTypes}}
diff --git a/oxAuth/Server/src/main/java/org/gluu/oxauth/audit/ApplicationAuditLogger.java b/oxAuth/Server/src/main/java/org/gluu/oxauth/audit/ApplicationAuditLogger.java
new file mode 100644
index 00000000..800c8827
--- /dev/null
+++ b/oxAuth/Server/src/main/java/org/gluu/oxauth/audit/ApplicationAuditLogger.java
@@ -0,0 +1,205 @@
+package org.gluu.oxauth.audit;
+
+import java.io.IOException;
+import java.util.HashSet;
+import java.util.Iterator;
+import java.util.Set;
+import java.util.concurrent.locks.ReentrantLock;
+
+import javax.annotation.PostConstruct;
+import javax.annotation.PreDestroy;
+import javax.enterprise.context.ApplicationScoped;
+import javax.enterprise.event.Observes;
+import javax.inject.Inject;
+import javax.inject.Named;
+import javax.jms.JMSException;
+import javax.jms.MessageProducer;
+import javax.jms.QueueConnection;
+import javax.jms.QueueSession;
+import javax.jms.Session;
+import javax.jms.TextMessage;
+
+import org.apache.activemq.ActiveMQConnectionFactory;
+import org.apache.activemq.pool.PooledConnectionFactory;
+import org.apache.commons.collections.CollectionUtils;
+import org.apache.commons.lang.BooleanUtils;
+import org.gluu.oxauth.model.audit.OAuth2AuditLog;
+import org.gluu.oxauth.model.configuration.AppConfiguration;
+import org.gluu.oxauth.util.ServerUtil;
+import org.gluu.service.cdi.async.Asynchronous;
+import org.gluu.service.cdi.event.ConfigurationUpdate;
+import org.gluu.util.StringHelper;
+import org.slf4j.Logger;
+
+import com.google.common.base.Objects;
+
+@ApplicationScoped
+public class ApplicationAuditLogger {
+
+	@Inject
+	private Logger log;
+
+	@Inject
+	private AppConfiguration appConfiguration;
+
+	private final String BROKER_URL_PREFIX = "failover:(";
+	private final String BROKER_URL_SUFFIX = ")?timeout=5000&jms.useAsyncSend=true";
+	private final int ACK_MODE = Session.AUTO_ACKNOWLEDGE;
+	private final String CLIENT_QUEUE_NAME = "oauth2.audit.logging";
+	private final boolean transacted = false;
+
+	private volatile PooledConnectionFactory pooledConnectionFactory;
+
+	private Set<String> jmsBrokerURISet;
+	private String jmsUserName;
+	private String jmsPassword;
+
+	private final ReentrantLock lock = new ReentrantLock();
+
+	private boolean enabled;
+	private boolean sendAuditJms;
+
+	@PostConstruct
+	public void init() {
+		updateConfiguration(appConfiguration);
+	}
+
+	public void updateConfiguration(@Observes @ConfigurationUpdate AppConfiguration appConfiguration) {
+		this.enabled = BooleanUtils.isTrue(appConfiguration.getEnabledOAuthAuditLogging());
+		this.sendAuditJms = StringHelper.isNotEmpty(appConfiguration.getJmsUserName())
+				&& StringHelper.isNotEmpty(appConfiguration.getJmsPassword())
+				&& CollectionUtils.isNotEmpty(appConfiguration.getJmsBrokerURISet());
+
+		boolean configChanged = !Objects.equal(this.jmsUserName, appConfiguration.getJmsUserName())
+				|| !Objects.equal(this.jmsPassword, appConfiguration.getJmsPassword())
+				|| !Objects.equal(this.jmsBrokerURISet, appConfiguration.getJmsBrokerURISet());
+
+		if (configChanged) {
+			destroy();
+		}
+	}
+
+	@Asynchronous
+	public void sendMessage(OAuth2AuditLog oAuth2AuditLog) {
+		if (!enabled) {
+			return;
+		}
+
+		boolean messageDelivered = false;
+		if (sendAuditJms) {
+			if (tryToEstablishJMSConnection()) {
+				messageDelivered = loggingThroughJMS(oAuth2AuditLog);
+			}
+		}
+
+		if (!messageDelivered) {
+			loggingThroughFile(oAuth2AuditLog);
+		}
+	}
+
+	@PreDestroy
+	public void destroy() {
+		if (this.pooledConnectionFactory == null) {
+			return;
+		}
+
+		this.pooledConnectionFactory.clear();
+		this.pooledConnectionFactory = null;
+	}
+
+	private boolean tryToEstablishJMSConnection() {
+		if (this.pooledConnectionFactory != null) {
+			return true;
+		}
+
+		lock.lock();
+		try {
+			// Check if another thread initialized JMS pool already
+			if (this.pooledConnectionFactory == null) {
+				return tryToEstablishJMSConnectionImpl();
+			}
+
+			return true;
+		} finally {
+			lock.unlock();
+		}
+	}
+
+	private boolean tryToEstablishJMSConnectionImpl() {
+		Set<String> jmsBrokerURISet = appConfiguration.getJmsBrokerURISet();
+		if (!enabled || CollectionUtils.isEmpty(jmsBrokerURISet)) {
+			return false;
+		}
+
+		this.jmsBrokerURISet = new HashSet<String>(jmsBrokerURISet);
+		this.jmsUserName = appConfiguration.getJmsUserName();
+		this.jmsPassword = appConfiguration.getJmsPassword();
+
+		Iterator<String> jmsBrokerURIIterator = jmsBrokerURISet.iterator();
+
+		StringBuilder uriBuilder = new StringBuilder();
+		while (jmsBrokerURIIterator.hasNext()) {
+			String jmsBrokerURI = jmsBrokerURIIterator.next();
+			uriBuilder.append("tcp://");
+			uriBuilder.append(jmsBrokerURI);
+			if (jmsBrokerURIIterator.hasNext()) {
+				uriBuilder.append(",");
+			}
+		}
+
+		String brokerUrl = BROKER_URL_PREFIX + uriBuilder + BROKER_URL_SUFFIX;
+
+		ActiveMQConnectionFactory connectionFactory = new ActiveMQConnectionFactory(this.jmsUserName, this.jmsPassword, brokerUrl);
+		this.pooledConnectionFactory = new PooledConnectionFactory(connectionFactory);
+
+		pooledConnectionFactory.setIdleTimeout(5000);
+		pooledConnectionFactory.setMaxConnections(10);
+		pooledConnectionFactory.start();
+
+		return true;
+	}
+
+	private boolean loggingThroughJMS(OAuth2AuditLog oAuth2AuditLog) {
+		QueueConnection connection = null;
+		try {
+			connection = pooledConnectionFactory.createQueueConnection();
+			connection.start();
+
+			QueueSession session = connection.createQueueSession(transacted, ACK_MODE);
+			MessageProducer producer = session.createProducer(session.createQueue(CLIENT_QUEUE_NAME));
+
+			TextMessage txtMessage = session.createTextMessage();
+			txtMessage.setText(ServerUtil.asPrettyJson(oAuth2AuditLog));
+			producer.send(txtMessage);
+			
+			return true;
+		} catch (JMSException e) {
+			log.error("Can't send message", e);
+		} catch (IOException e) {
+			log.error("Can't serialize the audit log", e);
+		} catch (Exception e) {
+			log.error("Can't send message, please check your activeMQ configuration.", e);
+		} finally {
+			if (connection == null) {
+				return false;
+			}
+
+			try {
+				connection.close();
+			} catch (JMSException e) {
+				log.error("Can't close connection.");
+			}
+		}
+		
+		return false;
+	}
+
+	private void loggingThroughFile(OAuth2AuditLog oAuth2AuditLog) {
+		try {
+			log.info(ServerUtil.asPrettyJson(oAuth2AuditLog));
+		} catch (IOException e) {
+			log.error("Can't serialize the audit log", e);
+		}
+	}
+
+}
diff --git a/oxAuth/Server/src/main/java/org/gluu/oxauth/audit/debug/ServletLoggingFilter.java b/oxAuth/Server/src/main/java/org/gluu/oxauth/audit/debug/ServletLoggingFilter.java
new file mode 100644
index 00000000..4722ac9f
--- /dev/null
+++ b/oxAuth/Server/src/main/java/org/gluu/oxauth/audit/debug/ServletLoggingFilter.java
@@ -0,0 +1,143 @@
+package org.gluu.oxauth.audit.debug;
+
+import java.io.IOException;
+import java.time.Duration;
+import java.time.Instant;
+import java.util.Set;
+
+import javax.inject.Inject;
+import javax.servlet.Filter;
+import javax.servlet.FilterChain;
+import javax.servlet.FilterConfig;
+import javax.servlet.ServletException;
+import javax.servlet.ServletRequest;
+import javax.servlet.ServletResponse;
+import javax.servlet.annotation.WebFilter;
+import javax.servlet.http.HttpServletRequest;
+import javax.servlet.http.HttpServletResponse;
+
+import org.apache.commons.collections.CollectionUtils;
+import org.apache.commons.lang.BooleanUtils;
+import org.gluu.oxauth.audit.debug.entity.HttpRequest;
+import org.gluu.oxauth.audit.debug.entity.HttpResponse;
+import org.gluu.oxauth.audit.debug.wrapper.RequestWrapper;
+import org.gluu.oxauth.audit.debug.wrapper.ResponseWrapper;
+import org.gluu.oxauth.model.configuration.AppConfiguration;
+import org.slf4j.Logger;
+
+import com.fasterxml.jackson.annotation.JsonInclude;
+import com.fasterxml.jackson.core.JsonProcessingException;
+import com.fasterxml.jackson.databind.ObjectMapper;
+
+/**
+ * Created by eugeniuparvan on 5/10/17.
+ *
+ * @author Yuriy Movchan Date: 06/09/2019
+ */
+@WebFilter(urlPatterns = {"/*"})
+public class ServletLoggingFilter implements Filter {
+
+    private static final ObjectMapper OBJECT_MAPPER = new ObjectMapper();
+
+    static {
+        OBJECT_MAPPER.setSerializationInclusion(JsonInclude.Include.NON_EMPTY);
+    }
+
+    @Inject
+    private Logger log;
+
+    @Inject
+    private AppConfiguration appConfiguration;
+
+    @Override
+    public void init(FilterConfig filterConfig) throws ServletException {
+    }
+
+    @Override
+    public void doFilter(ServletRequest request, ServletResponse response, FilterChain chain) throws IOException, ServletException {
+    	Instant start = now(); 
+    			
+        if (!(request instanceof HttpServletRequest) || !(response instanceof HttpServletResponse)) {
+            throw new ServletException("LoggingFilter just supports HTTP requests");
+        }
+        HttpServletRequest httpRequest = (HttpServletRequest) request;
+        HttpServletResponse httpResponse = (HttpServletResponse) response;
+
+        if (!BooleanUtils.toBoolean(appConfiguration.getHttpLoggingEnabled())) {
+            chain.doFilter(httpRequest, httpResponse);
+            return;
+        }
+        Set<String> excludedPaths = appConfiguration.getHttpLoggingExludePaths();
+        if (!CollectionUtils.isEmpty(excludedPaths)) {
+            for (String excludedPath : excludedPaths) {
+                String requestURI = httpRequest.getRequestURI();
+                if (requestURI.startsWith(excludedPath)) {
+                    chain.doFilter(httpRequest, httpResponse);
+                    return;
+                }
+            }
+        }
+
+        RequestWrapper requestWrapper = new RequestWrapper(httpRequest);
+        ResponseWrapper responseWrapper = new ResponseWrapper(httpResponse);
+
+        chain.doFilter(httpRequest, httpResponse);
+        
+        Duration duration = duration(start);
+
+        // yuriyz: log request and response only after filter handling.
+        // #914 - we don't want to effect server functionality due to logging. Currently content can be messed if it is InputStream.
+        if (log.isDebugEnabled()) {
+	        log.debug(getRequestDescription(requestWrapper, duration));
+	        log.debug(getResponseDescription(responseWrapper));
+        }
+    }
+
+    @Override
+    public void destroy() {
+
+    }
+
+    protected String getRequestDescription(RequestWrapper requestWrapper, Duration duration) {
+        try {
+            HttpRequest httpRequest = new HttpRequest();
+            httpRequest.setSenderIP(requestWrapper.getLocalAddr());
+            httpRequest.setMethod(requestWrapper.getMethod());
+            httpRequest.setPath(requestWrapper.getRequestURI());
+            httpRequest.setParams(requestWrapper.isFormPost() ? null : requestWrapper.getParameters());
+            httpRequest.setHeaders(requestWrapper.getHeaders());
+            httpRequest.setBody(requestWrapper.getContent());
+            httpRequest.setDuration(duration.toString());
+            return OBJECT_MAPPER.writeValueAsString(httpRequest);
+        } catch (Exception e) {
+            log.warn("Cannot serialize Request to JSON", e);
+            return null;
+        }
+    }
+
+    protected String getResponseDescription(ResponseWrapper responseWrapper) {
+        HttpResponse httpResponse = new HttpResponse();
+        httpResponse.setStatus(responseWrapper.getStatus());
+        httpResponse.setHeaders(responseWrapper.getHeaders());
+        try {
+            return OBJECT_MAPPER.writeValueAsString(httpResponse);
+        } catch (JsonProcessingException e) {
+            log.warn("Cannot serialize Response to JSON", e);
+            return null;
+        }
+    }
+
+    public Instant now() {
+        return Instant.now();
+    }
+
+    public Duration duration(Instant start) {
+        Instant end = Instant.now();
+        return Duration.between(start, end);
+    }
+
+    public Duration duration(Instant start, Instant end) {
+        return Duration.between(start, end);
+    }
+
+}
diff --git a/oxAuth/Server/src/main/java/org/gluu/oxauth/audit/debug/entity/HttpRequest.java b/oxAuth/Server/src/main/java/org/gluu/oxauth/audit/debug/entity/HttpRequest.java
new file mode 100644
index 00000000..d061171b
--- /dev/null
+++ b/oxAuth/Server/src/main/java/org/gluu/oxauth/audit/debug/entity/HttpRequest.java
@@ -0,0 +1,75 @@
+package org.gluu.oxauth.audit.debug.entity;
+
+import java.util.Map;
+
+/**
+ * Created by eugeniuparvan on 5/15/17.
+ *
+ * @author Yuriy Movchan Date: 06/09/2019
+ */
+public class HttpRequest {
+    private String senderIP;
+    private String method;
+    private String path;
+    private Map<String, String> params;
+    private Map<String, String> headers;
+    private String body;
+    private String duration;
+
+    public String getSenderIP() {
+        return senderIP;
+    }
+
+    public void setSenderIP(String senderIP) {
+        this.senderIP = senderIP;
+    }
+
+    public String getMethod() {
+        return method;
+    }
+
+    public void setMethod(String method) {
+        this.method = method;
+    }
+
+    public String getPath() {
+        return path;
+    }
+
+    public void setPath(String path) {
+        this.path = path;
+    }
+
+    public Map<String, String> getParams() {
+        return params;
+    }
+
+    public void setParams(Map<String, String> params) {
+        this.params = params;
+    }
+
+    public Map<String, String> getHeaders() {
+        return headers;
+    }
+
+    public void setHeaders(Map<String, String> headers) {
+        this.headers = headers;
+    }
+
+    public String getBody() {
+        return body;
+    }
+
+    public void setBody(String body) {
+        this.body = body;
+    }
+
+	public String getDuration() {
+		return duration;
+	}
+
+	public void setDuration(String duration) {
+		this.duration = duration;
+	}
+
+}
diff --git a/oxAuth/Server/src/main/java/org/gluu/oxauth/audit/debug/entity/HttpResponse.java b/oxAuth/Server/src/main/java/org/gluu/oxauth/audit/debug/entity/HttpResponse.java
new file mode 100644
index 00000000..742e76b7
--- /dev/null
+++ b/oxAuth/Server/src/main/java/org/gluu/oxauth/audit/debug/entity/HttpResponse.java
@@ -0,0 +1,27 @@
+package org.gluu.oxauth.audit.debug.entity;
+
+import java.util.Map;
+
+/**
+ * Created by eugeniuparvan on 5/15/17.
+ */
+public class HttpResponse {
+    private int status;
+    private Map<String, String> headers;
+
+    public int getStatus() {
+        return status;
+    }
+
+    public void setStatus(int status) {
+        this.status = status;
+    }
+
+    public Map<String, String> getHeaders() {
+        return headers;
+    }
+
+    public void setHeaders(Map<String, String> headers) {
+        this.headers = headers;
+    }
+}
diff --git a/oxAuth/Server/src/main/java/org/gluu/oxauth/audit/debug/wrapper/RequestWrapper.java b/oxAuth/Server/src/main/java/org/gluu/oxauth/audit/debug/wrapper/RequestWrapper.java
new file mode 100644
index 00000000..e7034292
--- /dev/null
+++ b/oxAuth/Server/src/main/java/org/gluu/oxauth/audit/debug/wrapper/RequestWrapper.java
@@ -0,0 +1,148 @@
+package org.gluu.oxauth.audit.debug.wrapper;
+
+import java.io.ByteArrayInputStream;
+import java.io.IOException;
+import java.io.InputStream;
+import java.nio.charset.StandardCharsets;
+import java.util.Arrays;
+import java.util.Collections;
+import java.util.Enumeration;
+import java.util.HashMap;
+import java.util.Map;
+
+import javax.servlet.ReadListener;
+import javax.servlet.ServletInputStream;
+import javax.servlet.http.HttpServletRequest;
+import javax.servlet.http.HttpServletRequestWrapper;
+import javax.ws.rs.HttpMethod;
+import javax.ws.rs.core.MediaType;
+
+import org.apache.commons.io.IOUtils;
+import org.apache.commons.lang.ArrayUtils;
+import org.apache.commons.lang.StringUtils;
+
+/**
+ * Created by eugeniuparvan on 5/10/17.
+ */
+public class RequestWrapper extends HttpServletRequestWrapper {
+
+    private byte[] content;
+
+    private final Map<String, String[]> parameterMap;
+
+    private final HttpServletRequest delegate;
+
+
+    /**
+     * Constructs a request object wrapping the given request.
+     *
+     * @param request
+     * @throws IllegalArgumentException if the request is null
+     */
+    public RequestWrapper(HttpServletRequest request) {
+        super(request);
+        this.delegate = request;
+        if (isFormPost()) {
+            this.parameterMap = request.getParameterMap() != null ? new HashMap<String, String[]>(request.getParameterMap()) : Collections.<String, String[]>emptyMap();
+        } else {
+            this.parameterMap = Collections.emptyMap();
+        }
+    }
+
+    public Map<String, String[]> getParams() {
+        if (ArrayUtils.isEmpty(content) || this.parameterMap.isEmpty()) {
+            return delegate.getParameterMap();
+        }
+        return this.parameterMap;
+    }
+
+    public String getContent() {
+        try {
+            if (this.parameterMap.isEmpty()) {
+                if (ArrayUtils.isEmpty(content))
+                    content = IOUtils.toByteArray(delegate.getInputStream());
+                else
+                    content = IOUtils.toByteArray(new LoggingServletInputStream(content));
+            } else {
+                content = getContentFromParameterMap(this.parameterMap);
+            }
+            String requestEncoding = delegate.getCharacterEncoding();
+            String normalizedContent = StringUtils.normalizeSpace(new String(content, requestEncoding != null ? requestEncoding : StandardCharsets.UTF_8.name()));
+            return StringUtils.isBlank(normalizedContent) ? null : normalizedContent;
+        } catch (IOException e) {
+            throw new IllegalStateException();
+        }
+    }
+
+
+    public Map<String, String> getHeaders() {
+        Map<String, String> headers = new HashMap<String, String>(0);
+        Enumeration<String> headerNames = getHeaderNames();
+        while (headerNames.hasMoreElements()) {
+            String headerName = headerNames.nextElement();
+            if (headerName != null) {
+                headers.put(headerName, getHeader(headerName));
+            }
+        }
+        return headers;
+    }
+
+    public Map<String, String> getParameters() {
+        Map<String, String> params = new HashMap<String, String>();
+        for (Map.Entry<String, String[]> entry : getParams().entrySet()) {
+            String[] values = entry.getValue();
+            params.put(entry.getKey(), values.length > 0 ? values[0] : null);
+        }
+        return params;
+    }
+
+    public boolean isFormPost() {
+        String contentType = getContentType();
+        return (contentType != null && contentType.contains(MediaType.APPLICATION_FORM_URLENCODED) && HttpMethod.POST.equalsIgnoreCase(getMethod()));
+    }
+
+    private byte[] getContentFromParameterMap(Map<String, String[]> parameterMap) {
+        StringBuilder sb = new StringBuilder();
+        String ampersand = "&";
+        for (Map.Entry<String, String[]> entry : parameterMap.entrySet()) {
+            String[] value = entry.getValue();
+            sb.append(entry.getKey() + "=" + (value.length == 1 ? value[0] : Arrays.toString(value)) + ampersand);
+        }
+        String params = sb.toString();
+        return params.substring(0, params.length() - 1).getBytes();
+    }
+
+    private class LoggingServletInputStream extends ServletInputStream {
+
+        private final InputStream is;
+
+        private LoggingServletInputStream(byte[] content) {
+            this.is = new ByteArrayInputStream(content);
+        }
+
+        @Override
+        public boolean isFinished() {
+            return true;
+        }
+
+        @Override
+        public boolean isReady() {
+            return true;
+        }
+
+        @Override
+        public void setReadListener(ReadListener readListener) {
+        }
+
+        @Override
+        public int read() throws IOException {
+            return this.is.read();
+        }
+
+        @Override
+        public void close() throws IOException {
+            super.close();
+            is.close();
+        }
+    }
+}
diff --git a/oxAuth/Server/src/main/java/org/gluu/oxauth/audit/debug/wrapper/ResponseWrapper.java b/oxAuth/Server/src/main/java/org/gluu/oxauth/audit/debug/wrapper/ResponseWrapper.java
new file mode 100644
index 00000000..7dc9f0cf
--- /dev/null
+++ b/oxAuth/Server/src/main/java/org/gluu/oxauth/audit/debug/wrapper/ResponseWrapper.java
@@ -0,0 +1,31 @@
+package org.gluu.oxauth.audit.debug.wrapper;
+
+import java.util.HashMap;
+import java.util.Map;
+
+import javax.servlet.http.HttpServletResponse;
+import javax.servlet.http.HttpServletResponseWrapper;
+
+/**
+ * Created by eugeniuparvan on 5/10/17.
+ */
+public class ResponseWrapper extends HttpServletResponseWrapper {
+
+    /**
+     * Constructs a response adaptor wrapping the given response.
+     *
+     * @param response
+     * @throws IllegalArgumentException if the response is null
+     */
+    public ResponseWrapper(HttpServletResponse response) {
+        super(response);
+    }
+
+    public Map<String, String> getHeaders() {
+        Map<String, String> headers = new HashMap<String, String>(0);
+        for (String headerName : getHeaderNames()) {
+            headers.put(headerName, getHeader(headerName));
+        }
+        return headers;
+    }
+}
diff --git a/oxAuth/Server/src/main/java/org/gluu/oxauth/auth/AuthenticationFilter.java b/oxAuth/Server/src/main/java/org/gluu/oxauth/auth/AuthenticationFilter.java
new file mode 100644
index 00000000..a3a5b8f4
--- /dev/null
+++ b/oxAuth/Server/src/main/java/org/gluu/oxauth/auth/AuthenticationFilter.java
@@ -0,0 +1,534 @@
+/*
+ * oxAuth is available under the MIT License (2008). See http://opensource.org/licenses/MIT for full text.
+ *
+ * Copyright (c) 2014, Gluu
+ */
+
+package org.gluu.oxauth.auth;
+
+import org.apache.commons.codec.binary.Base64;
+import org.apache.commons.lang.StringUtils;
+import org.apache.http.HttpHeaders;
+import org.apache.http.HttpStatus;
+import org.apache.http.entity.ContentType;
+import org.gluu.model.security.Identity;
+import org.gluu.oxauth.model.authorize.AuthorizeRequestParam;
+import org.gluu.oxauth.model.common.*;
+import org.gluu.oxauth.model.configuration.AppConfiguration;
+import org.gluu.oxauth.model.crypto.AbstractCryptoProvider;
+import org.gluu.oxauth.model.error.ErrorResponseFactory;
+import org.gluu.oxauth.model.exception.InvalidJwtException;
+import org.gluu.oxauth.model.registration.Client;
+import org.gluu.oxauth.model.session.SessionId;
+import org.gluu.oxauth.model.session.SessionIdState;
+import org.gluu.oxauth.model.token.ClientAssertion;
+import org.gluu.oxauth.model.token.ClientAssertionType;
+import org.gluu.oxauth.model.token.HttpAuthTokenType;
+import org.gluu.oxauth.model.token.TokenErrorResponseType;
+import org.gluu.oxauth.model.util.Util;
+import org.gluu.oxauth.service.ClientFilterService;
+import org.gluu.oxauth.service.ClientService;
+import org.gluu.oxauth.service.CookieService;
+import org.gluu.oxauth.service.SessionIdService;
+import org.gluu.oxauth.service.token.TokenService;
+import org.gluu.oxauth.util.ServerUtil;
+import org.gluu.util.StringHelper;
+import org.slf4j.Logger;
+
+import javax.inject.Inject;
+import javax.servlet.*;
+import javax.servlet.annotation.WebFilter;
+import javax.servlet.http.HttpServletRequest;
+import javax.servlet.http.HttpServletResponse;
+import javax.ws.rs.WebApplicationException;
+import java.io.IOException;
+import java.io.PrintWriter;
+import java.net.URLDecoder;
+import java.nio.charset.StandardCharsets;
+import java.util.List;
+
+import static org.gluu.oxauth.model.ciba.BackchannelAuthenticationErrorResponseType.INVALID_REQUEST;
+
+/**
+ * @author Javier Rojas Blum
+ * @version May 29, 2020
+ */
+@WebFilter(
+        asyncSupported = true,
+        urlPatterns = {
+                "/restv1/authorize",
+                "/restv1/token",
+                "/restv1/userinfo",
+                "/restv1/revoke",
+                "/restv1/revoke_session",
+                "/restv1/bc-authorize",
+                "/restv1/device_authorization"},
+        displayName = "oxAuth")
+public class AuthenticationFilter implements Filter {
+
+    private static final String REALM = "oxAuth";
+
+    @Inject
+    private Logger log;
+
+    @Inject
+    private Authenticator authenticator;
+
+    @Inject
+    private SessionIdService sessionIdService;
+
+    @Inject
+    private CookieService cookieService;
+
+    @Inject
+    private ClientService clientService;
+
+    @Inject
+    private ClientFilterService clientFilterService;
+
+    @Inject
+    private ErrorResponseFactory errorResponseFactory;
+
+    @Inject
+    private AppConfiguration appConfiguration;
+
+    @Inject
+    private Identity identity;
+
+    @Inject
+    private AuthorizationGrantList authorizationGrantList;
+
+    @Inject
+    private AbstractCryptoProvider cryptoProvider;
+
+    @Inject
+    private MTLSService mtlsService;
+
+    @Inject
+    private TokenService tokenService;
+
+    private String realm;
+
+    @Override
+    public void init(FilterConfig filterConfig) throws ServletException {
+    }
+
+    @Override
+    public void doFilter(ServletRequest servletRequest, ServletResponse servletResponse, final FilterChain filterChain) throws IOException, ServletException {
+        final HttpServletRequest httpRequest = (HttpServletRequest) servletRequest;
+        final HttpServletResponse httpResponse = (HttpServletResponse) servletResponse;
+
+        try {
+            final String requestUrl = httpRequest.getRequestURL().toString();
+            log.trace("Get request to: '{}'", requestUrl);
+            
+            final String method = httpRequest.getMethod();
+            if (appConfiguration.isSkipAuthenticationFilterOptionsMethod() && "OPTIONS".equals(method)) {
+                log.trace("Ignoring '{}' request to to: '{}'", method, requestUrl);
+                filterChain.doFilter(httpRequest, httpResponse);
+                return;
+            }
+
+            boolean tokenEndpoint = ServerUtil.isSameRequestPath(requestUrl, appConfiguration.getTokenEndpoint());
+            boolean tokenRevocationEndpoint = ServerUtil.isSameRequestPath(requestUrl, appConfiguration.getTokenRevocationEndpoint());
+            boolean backchannelAuthenticationEnpoint = ServerUtil.isSameRequestPath(requestUrl, appConfiguration.getBackchannelAuthenticationEndpoint());
+            boolean deviceAuthorizationEndpoint = ServerUtil.isSameRequestPath(requestUrl, appConfiguration.getDeviceAuthzEndpoint());
+            boolean umaTokenEndpoint = requestUrl.endsWith("/uma/token");
+            boolean revokeSessionEndpoint = requestUrl.endsWith("/revoke_session");
+            String authorizationHeader = httpRequest.getHeader("Authorization");
+
+            try {
+	            if (processMTLS(httpRequest, httpResponse, filterChain)) {
+	                return;
+	            }
+            } catch (Throwable ex) {
+            	// Catch exceptions like org.eclipse.jetty.http.BadMessageException when form is invalid
+            	// https://github.com/GluuFederation/oxAuth/issues/1843
+                log.error(ex.getMessage(), ex);
+            }
+
+            if ((tokenRevocationEndpoint || deviceAuthorizationEndpoint) && clientService.isPublic(httpRequest.getParameter("client_id"))) {
+                log.trace("Skipped authentication for {} for public client.", tokenRevocationEndpoint ? "Token Revocation" : "Device Authorization");
+                filterChain.doFilter(httpRequest, httpResponse);
+                return;
+            }
+
+            if (tokenEndpoint || umaTokenEndpoint || revokeSessionEndpoint || tokenRevocationEndpoint || deviceAuthorizationEndpoint) {
+                log.debug("Starting endpoint authentication {}", requestUrl);
+
+                // #686 : allow authenticated client via user access_token
+                final String accessToken = tokenService.getToken(authorizationHeader,
+                    HttpAuthTokenType.Bearer,HttpAuthTokenType.AccessToken);
+                if (StringUtils.isNotBlank(accessToken)) {
+                    processAuthByAccessToken(accessToken, httpRequest, httpResponse, filterChain);
+                    return;
+                }
+
+                if (httpRequest.getParameter("client_assertion") != null
+                        && httpRequest.getParameter("client_assertion_type") != null) {
+                    log.debug("Starting JWT token endpoint authentication");
+                    processJwtAuth(httpRequest, httpResponse, filterChain);
+                } else if (tokenService.isBasicAuthToken(authorizationHeader)) {
+                    log.debug("Starting Basic Auth token endpoint authentication");
+                    processBasicAuth(httpRequest, httpResponse, filterChain);
+                } else {
+                    log.debug("Starting POST Auth token endpoint authentication");
+                    processPostAuth(clientFilterService, httpRequest, httpResponse, filterChain, tokenEndpoint);
+                }
+            } else if (backchannelAuthenticationEnpoint) {
+                if (httpRequest.getParameter("client_assertion") != null
+                        && httpRequest.getParameter("client_assertion_type") != null) {
+                    log.debug("Starting JWT token endpoint authentication");
+                    processJwtAuth(httpRequest, httpResponse, filterChain);
+                } else if (tokenService.isBasicAuthToken(authorizationHeader)) {
+                    processBasicAuth(httpRequest, httpResponse, filterChain);
+                } else {
+                    String entity = errorResponseFactory.getErrorAsJson(INVALID_REQUEST);
+                    httpResponse.setStatus(HttpStatus.SC_BAD_REQUEST);
+                    httpResponse.addHeader("WWW-Authenticate", "Basic realm=\"" + getRealm() + "\"");
+                    httpResponse.setContentType(ContentType.APPLICATION_JSON.toString());
+                    httpResponse.setHeader(HttpHeaders.CONTENT_LENGTH, String.valueOf(entity.length()));
+                    PrintWriter out = httpResponse.getWriter();
+                    out.print(entity);
+                    out.flush();
+                }
+            } else if (authorizationHeader != null && !tokenService.isNegotiateAuthToken(authorizationHeader)) {
+                if (tokenService.isBearerAuthToken(authorizationHeader)) {
+                    processBearerAuth(httpRequest, httpResponse, filterChain);
+                } else if (tokenService.isBasicAuthToken(authorizationHeader)) {
+                    processBasicAuth(httpRequest, httpResponse, filterChain);
+                } else {
+                    httpResponse.addHeader("WWW-Authenticate", "Basic realm=\"" + getRealm() + "\"");
+                    httpResponse.sendError(401, "Not authorized");
+                }
+            } else {
+                String sessionId = cookieService.getSessionIdFromCookie(httpRequest);
+                List<Prompt> prompts = Prompt.fromString(httpRequest.getParameter(AuthorizeRequestParam.PROMPT), " ");
+
+                if (StringUtils.isBlank(sessionId) && appConfiguration.getSessionIdRequestParameterEnabled()) {
+                    sessionId = httpRequest.getParameter(AuthorizeRequestParam.SESSION_ID);
+                }
+
+                SessionId sessionIdObject = null;
+                if (StringUtils.isNotBlank(sessionId)) {
+                    sessionIdObject = sessionIdService.getSessionId(sessionId);
+                }
+                if (sessionIdObject != null && SessionIdState.AUTHENTICATED == sessionIdObject.getState()
+                        && !prompts.contains(Prompt.LOGIN)) {
+                    processSessionAuth(sessionId, httpRequest, httpResponse, filterChain);
+                } else {
+                    filterChain.doFilter(httpRequest, httpResponse);
+                }
+            }
+        } catch (WebApplicationException ex) {
+            if (ex.getResponse() != null) {
+                sendResponse(httpResponse, ex);
+                return;
+            }
+            log.error(ex.getMessage(), ex);
+        } catch (Exception ex) {
+            log.error(ex.getMessage(), ex);
+        }
+    }
+
+    /**
+     * @return whether successful or not
+     */
+    private boolean processMTLS(HttpServletRequest httpRequest, HttpServletResponse httpResponse, FilterChain filterChain) throws Exception {
+        if (cryptoProvider == null) {
+            log.debug("Unable to create cryptoProvider.");
+            return false;
+        }
+
+        final String clientId = httpRequest.getParameter("client_id");
+        if (StringUtils.isNotBlank(clientId)) {
+            final Client client = clientService.getClient(clientId);
+            if (client != null &&
+                    (client.getAuthenticationMethod() == AuthenticationMethod.TLS_CLIENT_AUTH ||
+                            client.getAuthenticationMethod() == AuthenticationMethod.SELF_SIGNED_TLS_CLIENT_AUTH)) {
+                return mtlsService.processMTLS(httpRequest, httpResponse, filterChain, client);
+            }
+        }
+        return false;
+    }
+
+    private void processAuthByAccessToken(String accessToken, HttpServletRequest httpRequest, HttpServletResponse httpResponse, FilterChain filterChain) {
+        try {
+            log.trace("Authenticating client by access token {} ...", accessToken);
+            if (StringUtils.isBlank(accessToken)) {
+                sendError(httpResponse);
+                return;
+            }
+
+            AuthorizationGrant grant = authorizationGrantList.getAuthorizationGrantByAccessToken(accessToken);
+            if (grant == null) {
+                sendError(httpResponse);
+                return;
+            }
+            final AbstractToken accessTokenObj = grant.getAccessToken(accessToken);
+            if (accessTokenObj == null || !accessTokenObj.isValid()) {
+                sendError(httpResponse);
+                return;
+            }
+
+            Client client = grant.getClient();
+            authenticator.configureSessionClient(client);
+            filterChain.doFilter(httpRequest, httpResponse);
+            return;
+        } catch (Exception ex) {
+            log.error("Failed to authenticate client by access_token", ex);
+        }
+
+        sendError(httpResponse);
+    }
+
+    private void processSessionAuth(String p_sessionId, HttpServletRequest p_httpRequest, HttpServletResponse p_httpResponse, FilterChain p_filterChain) {
+        boolean requireAuth;
+
+        requireAuth = !authenticator.authenticateBySessionId(p_sessionId);
+        log.trace("Process Session Auth, sessionId = {}, requireAuth = {}", p_sessionId, requireAuth);
+
+        if (!requireAuth) {
+            try {
+                p_filterChain.doFilter(p_httpRequest, p_httpResponse);
+            } catch (Exception ex) {
+                log.error("Failed to process session authentication", ex);
+                requireAuth = true;
+            }
+        }
+
+        if (requireAuth) {
+            sendError(p_httpResponse);
+        }
+    }
+
+    private void processBasicAuth(HttpServletRequest servletRequest, HttpServletResponse servletResponse, FilterChain filterChain) {
+        boolean requireAuth = true;
+
+        try {
+            String header = servletRequest.getHeader("Authorization");
+            if (tokenService.isBasicAuthToken(header)) {
+                String base64Token = tokenService.getBasicToken(header);
+                String token = new String(Base64.decodeBase64(base64Token), StandardCharsets.UTF_8);
+
+                String username = "";
+                String password = "";
+                int delim = token.indexOf(":");
+
+                if (delim != -1) {
+                    // oxAuth #677 URL decode the username and password
+                    username = URLDecoder.decode(token.substring(0, delim), Util.UTF8_STRING_ENCODING);
+                    password = URLDecoder.decode(token.substring(delim + 1), Util.UTF8_STRING_ENCODING);
+                }
+
+                requireAuth = !StringHelper.equals(username, identity.getCredentials().getUsername())
+                        || !identity.isLoggedIn();
+
+                // Only authenticate if username doesn't match Identity.username
+                // and user isn't authenticated
+                if (requireAuth) {
+                    if (!username.equals(identity.getCredentials().getUsername()) || !identity.isLoggedIn()) {
+                        identity.getCredentials().setUsername(username);
+                        identity.getCredentials().setPassword(password);
+
+                        if (servletRequest.getRequestURI().endsWith("/token")
+                                || servletRequest.getRequestURI().endsWith("/revoke")
+                                || servletRequest.getRequestURI().endsWith("/revoke_session")
+                                || servletRequest.getRequestURI().endsWith("/userinfo")
+                                || servletRequest.getRequestURI().endsWith("/bc-authorize")
+                                || servletRequest.getRequestURI().endsWith("/device_authorization")) {
+                            Client client = clientService.getClient(username);
+                            if (client == null
+                                    || AuthenticationMethod.CLIENT_SECRET_BASIC != client.getAuthenticationMethod()) {
+                                throw new Exception("The Token Authentication Method is not valid.");
+                            }
+                            requireAuth = !authenticator.authenticateClient(servletRequest);
+                        } else {
+                            requireAuth = !authenticator.authenticateUser(servletRequest);
+                        }
+                    }
+                }
+            }
+
+            if (!requireAuth) {
+                filterChain.doFilter(servletRequest, servletResponse);
+                return;
+            }
+        } catch (Exception ex) {
+            log.info("Basic authentication failed", ex);
+        }
+
+        if (requireAuth && !identity.isLoggedIn()) {
+            sendError(servletResponse);
+        }
+    }
+
+    private void processBearerAuth(HttpServletRequest servletRequest, HttpServletResponse servletResponse,
+                                   FilterChain filterChain) {
+        try {
+            String header = servletRequest.getHeader("Authorization");
+            if (tokenService.isBearerAuthToken(header)) {
+                // Immutable object
+                // servletRequest.getParameterMap().put("access_token", new
+                // String[]{accessToken});
+                filterChain.doFilter(servletRequest, servletResponse);
+            }
+        } catch (Exception ex) {
+            log.info("Bearer authorization failed: {}", ex);
+        }
+    }
+
+    private void processPostAuth(ClientFilterService clientFilterService, HttpServletRequest servletRequest,
+                                 HttpServletResponse servletResponse, FilterChain filterChain, boolean tokenEndpoint) {
+        try {
+            String clientId = "";
+            String clientSecret = "";
+            boolean isExistUserPassword = false;
+            if (StringHelper.isNotEmpty(servletRequest.getParameter("client_id"))
+                    && StringHelper.isNotEmpty(servletRequest.getParameter("client_secret"))) {
+                clientId = servletRequest.getParameter("client_id");
+                clientSecret = servletRequest.getParameter("client_secret");
+                isExistUserPassword = true;
+            }
+            log.trace("isExistUserPassword: {}", isExistUserPassword);
+
+            boolean requireAuth = !StringHelper.equals(clientId, identity.getCredentials().getUsername())
+                    || !identity.isLoggedIn();
+            log.debug("requireAuth: '{}'", requireAuth);
+
+            if (requireAuth) {
+                if (isExistUserPassword) {
+                    Client client = clientService.getClient(clientId);
+                    if (client != null && AuthenticationMethod.CLIENT_SECRET_POST == client.getAuthenticationMethod()) {
+                        // Only authenticate if username doesn't match
+                        // Identity.username and user isn't authenticated
+                        if (!clientId.equals(identity.getCredentials().getUsername()) || !identity.isLoggedIn()) {
+                            identity.logout();
+
+                            identity.getCredentials().setUsername(clientId);
+                            identity.getCredentials().setPassword(clientSecret);
+
+                            requireAuth = !authenticator.authenticateClient(servletRequest);
+                        } else {
+                            authenticator.configureSessionClient(client);
+                        }
+                    }
+                } else if (Boolean.TRUE.equals(appConfiguration.getClientAuthenticationFiltersEnabled())) {
+                    String clientDn = clientFilterService
+                            .processAuthenticationFilters(servletRequest.getParameterMap());
+                    if (clientDn != null) {
+                        Client client = clientService.getClientByDn(clientDn);
+
+                        identity.logout();
+
+                        identity.getCredentials().setUsername(client.getClientId());
+                        identity.getCredentials().setPassword(null);
+
+                        requireAuth = !authenticator.authenticateClient(servletRequest, true);
+                    }
+                } else if (tokenEndpoint) {
+                    Client client = clientService.getClient(servletRequest.getParameter("client_id"));
+                    if (client != null && client.getAuthenticationMethod() == AuthenticationMethod.NONE) {
+                        identity.logout();
+
+                        identity.getCredentials().setUsername(client.getClientId());
+                        identity.getCredentials().setPassword(null);
+
+                        requireAuth = !authenticator.authenticateClient(servletRequest, true);
+                    }
+                }
+            }
+
+            if (!requireAuth) {
+                filterChain.doFilter(servletRequest, servletResponse);
+                return;
+            }
+
+            if (!identity.isLoggedIn()) {
+                sendError(servletResponse);
+            }
+        } catch (Exception ex) {
+            log.error("Post authentication failed: {}", ex);
+        }
+    }
+
+    private void processJwtAuth(HttpServletRequest servletRequest, HttpServletResponse servletResponse,
+                                FilterChain filterChain) {
+        boolean authorized = false;
+
+        try {
+            if (servletRequest.getParameter("client_assertion") != null
+                    && servletRequest.getParameter("client_assertion_type") != null) {
+                String clientId = servletRequest.getParameter("client_id");
+                ClientAssertionType clientAssertionType = ClientAssertionType
+                        .fromString(servletRequest.getParameter("client_assertion_type"));
+                String encodedAssertion = servletRequest.getParameter("client_assertion");
+
+                if (clientAssertionType == ClientAssertionType.JWT_BEARER) {
+                    ClientAssertion clientAssertion = new ClientAssertion(appConfiguration, cryptoProvider, clientId,
+                            clientAssertionType, encodedAssertion);
+
+                    String username = clientAssertion.getSubjectIdentifier();
+                    String password = clientAssertion.getClientSecret();
+
+                    // Only authenticate if username doesn't match
+                    // Identity.username and user isn't authenticated
+                    if (!username.equals(identity.getCredentials().getUsername()) || !identity.isLoggedIn()) {
+                        identity.getCredentials().setUsername(username);
+                        identity.getCredentials().setPassword(password);
+
+                        authenticator.authenticateClient(servletRequest, true);
+                        authorized = true;
+                    }
+                }
+            }
+
+            filterChain.doFilter(servletRequest, servletResponse);
+        } catch (ServletException | IOException | InvalidJwtException ex) {
+            log.info("JWT authentication failed: {}", ex);
+        }
+
+        if (!authorized) {
+            sendError(servletResponse);
+        }
+    }
+
+    private void sendError(HttpServletResponse servletResponse) {
+        try (PrintWriter out = servletResponse.getWriter()) {
+            servletResponse.setStatus(401);
+            servletResponse.addHeader("WWW-Authenticate", "Basic realm=\"" + getRealm() + "\"");
+            servletResponse.setContentType("application/json;charset=UTF-8");
+            out.write(errorResponseFactory.errorAsJson(TokenErrorResponseType.INVALID_CLIENT, "Unable to authenticate client."));
+        } catch (IOException ex) {
+            log.error(ex.getMessage(), ex);
+        }
+    }
+
+    private void sendResponse(HttpServletResponse servletResponse, WebApplicationException e) {
+        try (PrintWriter out = servletResponse.getWriter()) {
+            servletResponse.setStatus(e.getResponse().getStatus());
+            servletResponse.addHeader("WWW-Authenticate", "Basic realm=\"" + getRealm() + "\"");
+            servletResponse.setContentType("application/json;charset=UTF-8");
+            out.write(e.getResponse().getEntity().toString());
+        } catch (IOException ex) {
+            log.error(ex.getMessage(), ex);
+        }
+    }
+
+    public String getRealm() {
+        if (realm != null) {
+            return realm;
+        } else {
+            return REALM;
+        }
+    }
+
+    public void setRealm(String realm) {
+        this.realm = realm;
+    }
+
+    @Override
+    public void destroy() {
+    }
+
+}
\ No newline at end of file
diff --git a/oxAuth/Server/src/main/java/org/gluu/oxauth/auth/Authenticator.java b/oxAuth/Server/src/main/java/org/gluu/oxauth/auth/Authenticator.java
new file mode 100644
index 00000000..6b864d66
--- /dev/null
+++ b/oxAuth/Server/src/main/java/org/gluu/oxauth/auth/Authenticator.java
@@ -0,0 +1,826 @@
+/*
+ * oxAuth is available under the MIT License (2008). See http://opensource.org/licenses/MIT for full text.
+ *
+ * Copyright (c) 2014, Gluu
+ */
+
+package org.gluu.oxauth.auth;
+
+import org.apache.commons.lang.StringUtils;
+import org.gluu.jsf2.message.FacesMessages;
+import org.gluu.jsf2.service.FacesService;
+import org.gluu.model.AuthenticationScriptUsageType;
+import org.gluu.model.custom.script.conf.CustomScriptConfiguration;
+import org.gluu.model.security.Credentials;
+import org.gluu.oxauth.i18n.LanguageBean;
+import org.gluu.oxauth.model.authorize.AuthorizeErrorResponseType;
+import org.gluu.oxauth.model.common.User;
+import org.gluu.oxauth.model.config.Constants;
+import org.gluu.oxauth.model.configuration.AppConfiguration;
+import org.gluu.oxauth.model.exception.InvalidSessionStateException;
+import org.gluu.oxauth.model.jwt.JwtClaimName;
+import org.gluu.oxauth.model.registration.Client;
+import org.gluu.oxauth.model.session.SessionId;
+import org.gluu.oxauth.model.session.SessionIdState;
+import org.gluu.oxauth.security.Identity;
+import org.gluu.oxauth.service.*;
+import org.gluu.oxauth.service.external.ExternalAuthenticationService;
+import org.gluu.util.StringHelper;
+import org.slf4j.Logger;
+
+import javax.enterprise.context.RequestScoped;
+import javax.faces.application.FacesMessage;
+import javax.faces.application.FacesMessage.Severity;
+import javax.faces.context.ExternalContext;
+import javax.faces.context.FacesContext;
+import javax.inject.Inject;
+import javax.inject.Named;
+import javax.servlet.http.HttpServletRequest;
+import java.util.HashMap;
+import java.util.List;
+import java.util.Map;
+import java.util.Map.Entry;
+
+/**
+ * Authenticator component
+ *
+ * @author Javier Rojas Blum
+ * @author Yuriy Movchan
+ * @version August 20, 2019
+ */
+@RequestScoped
+@Named
+public class Authenticator {
+
+	public static final String INVALID_SESSION_MESSAGE = "login.errorSessionInvalidMessage";
+	public static final String AUTHENTICATION_ERROR_MESSAGE = "login.failedToAuthenticate";
+
+	@Inject
+	private Logger logger;
+
+	@Inject
+	private Identity identity;
+
+	@Inject
+	private Credentials credentials;
+
+	@Inject
+	private ClientService clientService;
+
+	@Inject
+	private SessionIdService sessionIdService;
+
+	@Inject
+	private AuthenticationService authenticationService;
+
+	@Inject
+	private ExternalAuthenticationService externalAuthenticationService;
+
+	@Inject
+	private AppConfiguration appConfiguration;
+
+	@Inject
+	private FacesContext facesContext;
+
+	@Inject
+	private ExternalContext externalContext;
+
+	@Inject
+	private FacesService facesService;
+
+	@Inject
+	private FacesMessages facesMessages;
+
+	@Inject
+	private LanguageBean languageBean;
+
+	@Inject
+	private RequestParameterService requestParameterService;
+
+	@Inject
+	private ErrorHandlerService errorHandlerService;
+
+	private String authAcr;
+
+	private Integer authStep;
+
+	private String lastResult;
+	private SessionId curentSessionId;
+
+	/**
+	 * Tries to authenticate an user, returns <code>true</code> if the
+	 * authentication succeed
+	 *
+	 * @return Returns <code>true</code> if the authentication succeed
+	 */
+	public boolean authenticate() {
+		HttpServletRequest servletRequest = (HttpServletRequest) facesContext.getExternalContext().getRequest();
+
+		final SessionId sessionId = getSessionId(servletRequest);
+		if (sessionIdService.isSessionIdAuthenticated(sessionId)) {
+			// #1029 : session is already authenticated, we run into second authorization
+			// request
+			errorHandlerService.handleError("login.userAlreadyAuthenticated", AuthorizeErrorResponseType.RETRY,
+					"Session is already authenticated. Please re-send authorization request. If AS errorHandlingMethod=remote then RP can get redirect with error and re-send authorization request automatically.");
+			return false;
+		}
+
+		lastResult = authenticateImpl(servletRequest, true, false, false);
+        logger.debug("authenticate resultCode: {}", lastResult);
+
+		if (Constants.RESULT_SUCCESS.equals(lastResult)) {
+			return true;
+		} else if (Constants.RESULT_FAILURE.equals(lastResult)) {
+			authenticationFailed();
+		} else if (Constants.RESULT_NO_PERMISSIONS.equals(lastResult)) {
+			handlePermissionsError();
+		} else if (Constants.RESULT_EXPIRED.equals(lastResult)) {
+			handleSessionInvalid();
+		} else if (Constants.RESULT_AUTHENTICATION_FAILED.equals(lastResult)) {
+			// Do nothing to keep compatibility with older versions
+			if (facesMessages.getMessages().size() == 0) {
+				addMessage(FacesMessage.SEVERITY_ERROR, "login.failedToAuthenticate");
+			}
+		}
+
+		return false;
+	}
+
+	public String authenticateWithOutcome() {
+		HttpServletRequest servletRequest = (HttpServletRequest) facesContext.getExternalContext().getRequest();
+		lastResult = authenticateImpl(servletRequest, true, false, false);
+
+		if (Constants.RESULT_SUCCESS.equals(lastResult)) {
+		} else if (Constants.RESULT_FAILURE.equals(lastResult)) {
+			authenticationFailed();
+		} else if (Constants.RESULT_NO_PERMISSIONS.equals(lastResult)) {
+			handlePermissionsError();
+		} else if (Constants.RESULT_EXPIRED.equals(lastResult)) {
+			handleSessionInvalid();
+		} else if (Constants.RESULT_AUTHENTICATION_FAILED.equals(lastResult)) {
+			// Do nothing to keep compatibility with older versions
+			if (facesMessages.getMessages().size() == 0) {
+				addMessage(FacesMessage.SEVERITY_ERROR, "login.failedToAuthenticate");
+			}
+			handleLoginError(null);
+		}
+
+		return lastResult;
+	}
+
+	public boolean authenticateClient(HttpServletRequest servletRequest, boolean skipPassword) {
+		String result = authenticateImpl(servletRequest, false, skipPassword, true);
+		return Constants.RESULT_SUCCESS.equals(result);
+	}
+
+	public boolean authenticateClient(HttpServletRequest servletRequest) {
+		String result = authenticateImpl(servletRequest, false, false, true);
+		return Constants.RESULT_SUCCESS.equals(result);
+	}
+
+	public boolean authenticateUser(HttpServletRequest servletRequest) {
+		String result = authenticateImpl(servletRequest, false, false, false);
+		return Constants.RESULT_SUCCESS.equals(result);
+	}
+
+	public String authenticateImpl(HttpServletRequest servletRequest, boolean interactive, boolean skipPassword,
+			boolean service) {
+		String result = Constants.RESULT_FAILURE;
+		try {
+			logger.trace("Authenticating ... (interactive: " + interactive + ", skipPassword: " + skipPassword
+					+ ", credentials.username: " + credentials.getUsername() + ")");
+			if (service && (StringHelper.isNotEmpty(credentials.getUsername())
+					&& (skipPassword || StringHelper.isNotEmpty(credentials.getPassword())) && servletRequest != null
+					&& (servletRequest.getRequestURI().endsWith("/token")
+							|| servletRequest.getRequestURI().endsWith("/revoke")
+							|| servletRequest.getRequestURI().endsWith("/revoke_session")
+							|| servletRequest.getRequestURI().endsWith("/userinfo")
+							|| servletRequest.getRequestURI().endsWith("/bc-authorize")
+							|| servletRequest.getRequestURI().endsWith("/device_authorization")))) {
+				boolean authenticated = clientAuthentication(credentials, interactive, skipPassword);
+				if (authenticated) {
+					result = Constants.RESULT_SUCCESS;
+				}
+			} else {
+				if (interactive) {
+					result = userAuthenticationInteractive(servletRequest);
+				} else {
+					boolean authenticated = userAuthenticationService();
+					if (authenticated) {
+						result = Constants.RESULT_SUCCESS;
+					}
+				}
+			}
+		} catch (InvalidSessionStateException ex) {
+			// Allow to handle it via GlobalExceptionHandler
+			throw ex;
+		} catch (Exception ex) {
+			logger.error(ex.getMessage(), ex);
+		}
+
+		if (Constants.RESULT_SUCCESS.equals(result)) {
+			logger.trace("Authentication successfully for '{}'", credentials.getUsername());
+			return result;
+		}
+
+		logger.info("Authentication failed for '{}'", credentials.getUsername());
+		return result;
+	}
+
+	public boolean clientAuthentication(Credentials credentials, boolean interactive, boolean skipPassword) {
+		boolean isServiceUsesExternalAuthenticator = !interactive
+				&& externalAuthenticationService.isEnabled(AuthenticationScriptUsageType.SERVICE);
+		if (isServiceUsesExternalAuthenticator) {
+			CustomScriptConfiguration customScriptConfiguration = externalAuthenticationService
+					.determineCustomScriptConfiguration(AuthenticationScriptUsageType.SERVICE, 1, this.authAcr);
+
+			if (customScriptConfiguration == null) {
+				logger.error("Failed to get CustomScriptConfiguration. acr: '{}'", this.authAcr);
+			} else {
+				this.authAcr = customScriptConfiguration.getCustomScript().getName();
+
+				boolean result = externalAuthenticationService.executeExternalAuthenticate(customScriptConfiguration,
+						null, 1);
+				logger.info("Authentication result for user '{}', result: '{}'", credentials.getUsername(), result);
+
+				if (result) {
+					Client client = authenticationService.configureSessionClient();
+					showClientAuthenticationLog(client);
+					return true;
+				}
+			}
+		}
+
+		boolean loggedIn = skipPassword;
+		if (!loggedIn) {
+			loggedIn = clientService.authenticate(credentials.getUsername(), credentials.getPassword());
+		}
+		if (loggedIn) {
+			Client client = authenticationService.configureSessionClient();
+			showClientAuthenticationLog(client);
+			return true;
+		}
+
+		return false;
+	}
+
+	private void showClientAuthenticationLog(Client client) {
+		StringBuilder sb = new StringBuilder("Authentication success for Client");
+		if (StringHelper.toBoolean(appConfiguration.getLogClientIdOnClientAuthentication(), false)
+				|| StringHelper.toBoolean(appConfiguration.getLogClientNameOnClientAuthentication(), false)) {
+			sb.append(":");
+			if (appConfiguration.getLogClientIdOnClientAuthentication()) {
+				sb.append(" ").append("'").append(client.getClientId()).append("'");
+			}
+			if (appConfiguration.getLogClientNameOnClientAuthentication()) {
+				sb.append(" ").append("('").append(client.getClientName()).append("')");
+			}
+		}
+		logger.info(sb.toString());
+	}
+
+	private String userAuthenticationInteractive(HttpServletRequest servletRequest) {
+		SessionId sessionId = getSessionId(servletRequest);
+		Map<String, String> sessionIdAttributes = sessionIdService.getSessionAttributes(sessionId);
+		if (sessionIdAttributes == null) {
+			logger.debug("Unable to get session attributes. SessionId: " + (sessionId != null ? sessionId.getId() : null));
+			return Constants.RESULT_EXPIRED;
+		}
+
+		// Set current state into identity to allow use in login form and
+		// authentication scripts
+		identity.setSessionId(sessionId);
+
+		initCustomAuthenticatorVariables(sessionIdAttributes);
+		boolean useExternalAuthenticator = externalAuthenticationService
+				.isEnabled(AuthenticationScriptUsageType.INTERACTIVE);
+		if (useExternalAuthenticator && !StringHelper.isEmpty(this.authAcr)) {
+			initCustomAuthenticatorVariables(sessionIdAttributes);
+			if ((this.authStep == null) || StringHelper.isEmpty(this.authAcr)) {
+				logger.error("Failed to determine authentication mode");
+				return Constants.RESULT_EXPIRED;
+			}
+
+			CustomScriptConfiguration customScriptConfiguration = externalAuthenticationService
+					.getCustomScriptConfiguration(AuthenticationScriptUsageType.INTERACTIVE, this.authAcr);
+			if (customScriptConfiguration == null) {
+				logger.error("Failed to get CustomScriptConfiguration for acr: '{}', auth_step: '{}'", this.authAcr,
+						this.authStep);
+				return Constants.RESULT_FAILURE;
+			}
+
+			// Check if all previous steps had passed
+			boolean passedPreviousSteps = isPassedPreviousAuthSteps(sessionIdAttributes, this.authStep);
+			if (!passedPreviousSteps) {
+				logger.error("There are authentication steps not marked as passed. acr: '{}', auth_step: '{}'",
+						this.authAcr, this.authStep);
+				return Constants.RESULT_FAILURE;
+			}
+
+			// Restore identity working parameters from session
+			setIdentityWorkingParameters(sessionIdAttributes);
+
+			boolean result = externalAuthenticationService.executeExternalAuthenticate(customScriptConfiguration,
+					externalContext.getRequestParameterValuesMap(), this.authStep);
+			if (logger.isDebugEnabled()) {
+				String userId = credentials.getUsername();
+				if (StringHelper.isEmpty(userId)) {
+					User user = identity.getUser();
+					if (user != null) {
+						userId = user.getUserId();
+					}
+					logger.debug(
+							"Authentication result for user '{}'. auth_step: '{}', result: '{}', credentials: '{}'",
+							userId, this.authStep, result, System.identityHashCode(credentials));
+				}
+			}
+
+			int overridenNextStep = -1;
+			logger.trace("#########################################################################");
+			logger.trace("++++++++++++++++++++++++++++++++++++++++++CURRENT ACR:" + this.authAcr);
+			logger.trace("++++++++++++++++++++++++++++++++++++++++++CURRENT STEP:" + this.authStep);
+			int apiVersion = externalAuthenticationService.executeExternalGetApiVersion(customScriptConfiguration);
+			if (apiVersion > 1) {
+				logger.trace("According to API version script supports steps overriding");
+				overridenNextStep = externalAuthenticationService.getNextStep(customScriptConfiguration,
+						externalContext.getRequestParameterValuesMap(), this.authStep);
+				logger.debug("Get next step from script: '{}'", overridenNextStep);
+			}
+
+			if (!result && (overridenNextStep == -1)) {
+				// Force session lastUsedAt update if authentication attempt is failed
+				sessionIdService.updateSessionId(sessionId);
+				return Constants.RESULT_AUTHENTICATION_FAILED;
+			}
+
+			boolean overrideCurrentStep = false;
+			if (overridenNextStep > -1) {
+				overrideCurrentStep = true;
+				// Reload session id
+/*
+ * TODO: Remove after 6.0. Check if this will not led to external script problems.
+				sessionId = sessionIdService.getSessionId();
+*/
+
+				// Reset to specified step
+				sessionId = sessionIdService.resetToStep(sessionId, overridenNextStep);
+				if (sessionId == null) {
+					return Constants.RESULT_AUTHENTICATION_FAILED;
+				}
+
+				this.authStep = overridenNextStep;
+				logger.info("Authentication reset to step : '{}'", this.authStep);
+			}
+
+			// Update parameters map to allow access it from count
+			// authentication steps method
+			updateExtraParameters(customScriptConfiguration, this.authStep + 1, sessionIdAttributes);
+
+			// Determine count authentication methods
+			int countAuthenticationSteps = externalAuthenticationService
+					.executeExternalGetCountAuthenticationSteps(customScriptConfiguration);
+/*
+ * TODO: Remove after 6.0. Check if this will not led to external script problems.
+			// Reload from LDAP to make sure that we are updating latest session
+			// attributes
+			sessionId = sessionIdService.getSessionId();
+*/
+			sessionIdAttributes = sessionIdService.getSessionAttributes(sessionId);
+
+			// Prepare for next step
+			if ((this.authStep < countAuthenticationSteps) || overrideCurrentStep) {
+				int nextStep;
+				if (overrideCurrentStep) {
+					nextStep = overridenNextStep;
+				} else {
+					nextStep = this.authStep + 1;
+				}
+
+				String redirectTo = externalAuthenticationService
+						.executeExternalGetPageForStep(customScriptConfiguration, nextStep);
+				if (redirectTo == null) {
+					return Constants.RESULT_FAILURE;
+				} else if (StringHelper.isEmpty(redirectTo)) {
+					redirectTo = "/login.xhtml";
+				}
+
+				// Store/Update extra parameters in session attributes map
+				updateExtraParameters(customScriptConfiguration, nextStep, sessionIdAttributes);
+
+				if (!overrideCurrentStep) {
+					// Update auth_step
+					sessionIdAttributes.put("auth_step", Integer.toString(nextStep));
+
+					// Mark step as passed
+					markAuthStepAsPassed(sessionIdAttributes, this.authStep);
+				}
+
+				if (sessionId != null) {
+					boolean updateResult = updateSession(sessionId, sessionIdAttributes);
+					if (!updateResult) {
+						return Constants.RESULT_EXPIRED;
+					}
+				}
+
+				logger.trace("Redirect to page: '{}'", redirectTo);
+				facesService.redirectWithExternal(redirectTo, null);
+
+				return Constants.RESULT_SUCCESS;
+			}
+
+			if (this.authStep == countAuthenticationSteps) {
+				// Store/Update extra parameters in session attributes map
+				updateExtraParameters(customScriptConfiguration, this.authStep + 1, sessionIdAttributes);
+
+				SessionId eventSessionId = authenticationService.configureSessionUser(sessionId, sessionIdAttributes);
+
+				authenticationService.quietLogin(credentials.getUsername());
+
+				// Redirect to authorization workflow
+				logger.debug("Sending event to trigger user redirection: '{}'", credentials.getUsername());
+				authenticationService.onSuccessfulLogin(eventSessionId);
+
+				logger.info("Authentication success for User: '{}'", credentials.getUsername());
+				return Constants.RESULT_SUCCESS;
+			}
+		} else {
+			if (StringHelper.isNotEmpty(credentials.getUsername())) {
+				boolean authenticated = authenticationService.authenticate(credentials.getUsername(),
+						credentials.getPassword());
+				if (authenticated) {
+					SessionId eventSessionId = authenticationService.configureSessionUser(sessionId,
+							sessionIdAttributes);
+
+					// Redirect to authorization workflow
+					logger.debug("Sending event to trigger user redirection: '{}'", credentials.getUsername());
+					authenticationService.onSuccessfulLogin(eventSessionId);
+				} else {
+					// Force session lastUsedAt update if authentication attempt is failed
+					sessionIdService.updateSessionId(sessionId);
+				}
+
+				logger.info("Authentication success for User: '{}'", credentials.getUsername());
+				return Constants.RESULT_SUCCESS;
+			}
+		}
+
+		return Constants.RESULT_FAILURE;
+	}
+
+	protected void handleSessionInvalid() {
+		errorHandlerService.handleError(INVALID_SESSION_MESSAGE,
+				AuthorizeErrorResponseType.AUTHENTICATION_SESSION_INVALID,
+				"Create authorization request to start new authentication session.");
+	}
+
+	protected void handleScriptError() {
+		handleScriptError(AUTHENTICATION_ERROR_MESSAGE);
+	}
+
+	protected void handleScriptError(String facesMessageId) {
+		errorHandlerService.handleError(facesMessageId, AuthorizeErrorResponseType.INVALID_AUTHENTICATION_METHOD,
+				"Contact administrator to fix specific ACR method issue.");
+	}
+
+	protected void handlePermissionsError() {
+		errorHandlerService.handleError("login.youDontHavePermission", AuthorizeErrorResponseType.ACCESS_DENIED,
+				"Contact administrator to grant access to resource.");
+	}
+
+	protected void handleLoginError(String facesMessageId) {
+		errorHandlerService.handleError(facesMessageId, AuthorizeErrorResponseType.LOGIN_REQUIRED,
+				"User should log into into system.");
+	}
+
+	private boolean updateSession(SessionId sessionId, Map<String, String> sessionIdAttributes) {
+		sessionId.setSessionAttributes(sessionIdAttributes);
+		boolean updateResult = sessionIdService.updateSessionId(sessionId, true, true, true);
+		if (!updateResult) {
+			logger.debug("Failed to update session entry: '{}'", sessionId.getId());
+			return false;
+		}
+
+		return true;
+	}
+
+	private boolean userAuthenticationService() {
+		if (externalAuthenticationService.isEnabled(AuthenticationScriptUsageType.SERVICE)) {
+			CustomScriptConfiguration customScriptConfiguration = externalAuthenticationService
+					.determineCustomScriptConfiguration(AuthenticationScriptUsageType.SERVICE, 1, this.authAcr);
+
+			if (customScriptConfiguration == null) {
+				logger.error("Failed to get CustomScriptConfiguration. auth_step: '{}', acr: '{}'", this.authStep,
+						this.authAcr);
+			} else {
+				this.authAcr = customScriptConfiguration.getName();
+
+				boolean result = externalAuthenticationService.executeExternalAuthenticate(customScriptConfiguration,
+						null, 1);
+				logger.info("Authentication result for '{}'. auth_step: '{}', result: '{}'", credentials.getUsername(),
+						this.authStep, result);
+
+				if (result) {
+					authenticationService.configureEventUser();
+
+					logger.info("Authentication success for User: '{}'", credentials.getUsername());
+					return true;
+				}
+				logger.info("Authentication failed for User: '{}'", credentials.getUsername());
+			}
+		}
+
+		if (StringHelper.isNotEmpty(credentials.getUsername())) {
+			boolean authenticated = authenticationService.authenticate(credentials.getUsername(),
+					credentials.getPassword());
+			if (authenticated) {
+				authenticationService.configureEventUser();
+
+				logger.info("Authentication success for User: '{}'", credentials.getUsername());
+				return true;
+			}
+			logger.info("Authentication failed for User: '{}'", credentials.getUsername());
+		}
+
+		return false;
+	}
+
+	private void setIdentityWorkingParameters(Map<String, String> sessionIdAttributes) {
+		Map<String, String> authExternalAttributes = authenticationService
+				.getExternalScriptExtraParameters(sessionIdAttributes);
+
+		HashMap<String, Object> workingParameters = identity.getWorkingParameters();
+		for (Entry<String, String> authExternalAttributeEntry : authExternalAttributes.entrySet()) {
+			String authExternalAttributeName = authExternalAttributeEntry.getKey();
+			String authExternalAttributeType = authExternalAttributeEntry.getValue();
+
+			if (sessionIdAttributes.containsKey(authExternalAttributeName)) {
+				String authExternalAttributeValue = sessionIdAttributes.get(authExternalAttributeName);
+				Object typedValue = requestParameterService.getTypedValue(authExternalAttributeValue,
+						authExternalAttributeType);
+
+				workingParameters.put(authExternalAttributeName, typedValue);
+			}
+		}
+	}
+
+	public String prepareAuthenticationForStep() {
+		SessionId sessionId = sessionIdService.getSessionId();
+		lastResult = prepareAuthenticationForStep(sessionId);
+
+		if (Constants.RESULT_SUCCESS.equals(lastResult)) {
+		} else if (Constants.RESULT_FAILURE.equals(lastResult)) {
+			handleScriptError();
+		} else if (Constants.RESULT_NO_PERMISSIONS.equals(lastResult)) {
+			handlePermissionsError();
+		} else if (Constants.RESULT_EXPIRED.equals(lastResult)) {
+			handleSessionInvalid();
+		}
+
+		return lastResult;
+	}
+
+	public String prepareAuthenticationForStep(SessionId sessionId) {
+		Map<String, String> sessionIdAttributes = sessionIdService.getSessionAttributes(sessionId);
+		if (sessionIdAttributes == null) {
+			logger.debug("Unable to get attributes from session");
+			return Constants.RESULT_EXPIRED;
+		}
+
+		// Set current state into identity to allow use in login form and
+		// authentication scripts
+		identity.setSessionId(sessionId);
+
+		if (!externalAuthenticationService.isEnabled(AuthenticationScriptUsageType.INTERACTIVE)) {
+			return Constants.RESULT_SUCCESS;
+		}
+
+		initCustomAuthenticatorVariables(sessionIdAttributes);
+		if (StringHelper.isEmpty(this.authAcr)) {
+			return Constants.RESULT_SUCCESS;
+		}
+
+		if ((this.authStep == null) || (this.authStep < 1)) {
+			return Constants.RESULT_NO_PERMISSIONS;
+		}
+
+		CustomScriptConfiguration customScriptConfiguration = externalAuthenticationService
+				.getCustomScriptConfiguration(AuthenticationScriptUsageType.INTERACTIVE, this.authAcr);
+		if (customScriptConfiguration == null) {
+			logger.error("Failed to get CustomScriptConfiguration. auth_step: '{}', acr: '{}'", this.authStep,
+					this.authAcr);
+			return Constants.RESULT_FAILURE;
+		}
+
+		// Check if all previous steps had passed
+		boolean passedPreviousSteps = isPassedPreviousAuthSteps(sessionIdAttributes, this.authStep);
+		if (!passedPreviousSteps) {
+			logger.error("There are authentication steps not marked as passed. acr: '{}', auth_step: '{}'",
+					this.authAcr, this.authStep);
+			return Constants.RESULT_FAILURE;
+		}
+
+		// Restore identity working parameters from session
+		setIdentityWorkingParameters(sessionIdAttributes);
+
+		String currentauthAcr = customScriptConfiguration.getName();
+
+		customScriptConfiguration = externalAuthenticationService.determineExternalAuthenticatorForWorkflow(
+				AuthenticationScriptUsageType.INTERACTIVE, customScriptConfiguration);
+		if (customScriptConfiguration == null) {
+			return Constants.RESULT_FAILURE;
+		} else {
+			String determinedauthAcr = customScriptConfiguration.getName();
+			if (!StringHelper.equalsIgnoreCase(currentauthAcr, determinedauthAcr)) {
+				// Redirect user to alternative login workflow
+				String redirectTo = externalAuthenticationService
+						.executeExternalGetPageForStep(customScriptConfiguration, this.authStep);
+
+				if (StringHelper.isEmpty(redirectTo)) {
+					redirectTo = "/login.xhtml";
+				}
+
+				CustomScriptConfiguration determinedCustomScriptConfiguration = externalAuthenticationService
+						.getCustomScriptConfiguration(AuthenticationScriptUsageType.INTERACTIVE, determinedauthAcr);
+				if (determinedCustomScriptConfiguration == null) {
+					logger.error("Failed to get determined CustomScriptConfiguration. auth_step: '{}', acr: '{}'",
+							this.authStep, this.authAcr);
+					return Constants.RESULT_FAILURE;
+				}
+
+				logger.debug("Redirect to page: '{}'. Force to use acr: '{}'", redirectTo, determinedauthAcr);
+
+				determinedauthAcr = determinedCustomScriptConfiguration.getName();
+				String determinedAuthLevel = Integer.toString(determinedCustomScriptConfiguration.getLevel());
+
+				sessionIdAttributes.put("acr", determinedauthAcr);
+				sessionIdAttributes.put("auth_level", determinedAuthLevel);
+				sessionIdAttributes.put("auth_step", Integer.toString(1));
+
+				// Remove old session parameters from session
+				if (!appConfiguration.getKeepAuthenticatorAttributesOnAcrChange()) {
+					authenticationService.clearExternalScriptExtraParameters(sessionIdAttributes);
+				}
+
+				if (sessionId != null) {
+					boolean updateResult = updateSession(sessionId, sessionIdAttributes);
+					if (!updateResult) {
+						return Constants.RESULT_EXPIRED;
+					}
+				}
+
+				facesService.redirectWithExternal(redirectTo, null);
+
+				return Constants.RESULT_SUCCESS;
+			}
+		}
+
+		Boolean result = externalAuthenticationService.executeExternalPrepareForStep(customScriptConfiguration,
+				externalContext.getRequestParameterValuesMap(), this.authStep);
+		if ((result != null) && result) {
+			// Store/Update extra parameters in session attributes map
+			updateExtraParameters(customScriptConfiguration, this.authStep, sessionIdAttributes);
+
+			if (sessionId != null) {
+				boolean updateResult = updateSession(sessionId, sessionIdAttributes);
+				if (!updateResult) {
+					return Constants.RESULT_FAILURE;
+				}
+			}
+
+			return Constants.RESULT_SUCCESS;
+		} else {
+			return Constants.RESULT_FAILURE;
+		}
+	}
+
+	public boolean authenticateBySessionId(String sessionIdString) {
+		if (StringUtils.isNotBlank(sessionIdString)) {
+			try {
+				SessionId sessionId = sessionIdService.getSessionId(sessionIdString);
+				return authenticateBySessionId(sessionId);
+			} catch (Exception e) {
+				logger.trace(e.getMessage(), e);
+			}
+		}
+
+		return false;
+	}
+
+	public boolean authenticateBySessionId(SessionId sessionId) {
+		if (sessionId == null) {
+			return false;
+		}
+		String p_sessionId = sessionId.getId();
+
+		logger.trace("authenticateBySessionId, sessionId = '{}', session = '{}', state= '{}'", p_sessionId, sessionId,
+				sessionId.getState());
+		// IMPORTANT : authenticate by session id only if state of session is
+		// authenticated!
+		if (SessionIdState.AUTHENTICATED == sessionId.getState()) {
+			final User user = authenticationService.getUserOrRemoveSession(sessionId);
+			if (user != null) {
+				try {
+					authenticationService.quietLogin(user.getUserId());
+
+					authenticationService.configureEventUser(sessionId);
+				} catch (Exception e) {
+					logger.trace(e.getMessage(), e);
+				}
+
+				return true;
+			}
+		}
+
+		return false;
+	}
+
+	private void initCustomAuthenticatorVariables(Map<String, String> sessionIdAttributes) {
+		if (sessionIdAttributes == null) {
+			logger.error("Failed to restore attributes from session attributes");
+			return;
+		}
+
+		this.authStep = StringHelper.toInteger(sessionIdAttributes.get("auth_step"), null);
+		this.authAcr = sessionIdAttributes.get(JwtClaimName.AUTHENTICATION_CONTEXT_CLASS_REFERENCE);
+	}
+
+	private boolean authenticationFailed() {
+		addMessage(FacesMessage.SEVERITY_ERROR, "login.errorMessage");
+		handleScriptError(null);
+		return false;
+	}
+
+	private void markAuthStepAsPassed(Map<String, String> sessionIdAttributes, Integer authStep) {
+		String key = String.format("auth_step_passed_%d", authStep);
+		sessionIdAttributes.put(key, Boolean.TRUE.toString());
+	}
+
+	private boolean isAuthStepPassed(Map<String, String> sessionIdAttributes, Integer authStep) {
+		String key = String.format("auth_step_passed_%d", authStep);
+		if (sessionIdAttributes.containsKey(key) && Boolean.parseBoolean(sessionIdAttributes.get(key))) {
+			return true;
+		}
+
+		return false;
+	}
+
+	private boolean isPassedPreviousAuthSteps(Map<String, String> sessionIdAttributes, Integer authStep) {
+		for (int i = 1; i < authStep; i++) {
+			boolean isAuthStepPassed = isAuthStepPassed(sessionIdAttributes, i);
+			if (!isAuthStepPassed) {
+				return false;
+			}
+		}
+
+		return true;
+	}
+
+	private void updateExtraParameters(CustomScriptConfiguration customScriptConfiguration, int step,
+			Map<String, String> sessionIdAttributes) {
+		List<String> extraParameters = externalAuthenticationService
+				.executeExternalGetExtraParametersForStep(customScriptConfiguration, step);
+		authenticationService.updateExtraParameters(sessionIdAttributes, extraParameters);
+	}
+
+	public void configureSessionClient(Client client) {
+		authenticationService.configureSessionClient(client);
+	}
+
+	public void addMessage(Severity severity, String summary) {
+		String message = languageBean.getMessage(summary);
+		facesMessages.add(severity, message);
+	}
+
+    private SessionId getSessionId(HttpServletRequest servletRequest) {
+        if (this.curentSessionId == null && identity.getSessionId() != null) {
+            return curentSessionId = identity.getSessionId();
+        }
+        if (this.curentSessionId == null) {
+            this.curentSessionId = sessionIdService.getSessionId(servletRequest);
+        }
+        return this.curentSessionId;
+    }
+
+	public String getMaskedNumber() {
+		String result = getFullNumber();
+		if (result != null && result.length() > 7) {
+			String sub = result.substring(4, 6);
+			result = result.replace(sub, "XX");
+		}
+		return result;
+	}
+
+	private String getFullNumber() {
+		String phone = null;
+		SessionId sessionId = sessionIdService.getSessionId();
+		if (sessionId != null) {
+			if (phone == null || phone.isEmpty()) {
+				phone = sessionId.getSessionAttributes().get("mobile_number");
+			}
+			if (phone == null || phone.isEmpty()) {
+				phone = sessionId.getSessionAttributes().get("mobile");
+			}
+		}
+		return phone == null ? "UNKNOW USER PHONE." : phone;
+	}
+}
diff --git a/oxAuth/Server/src/main/java/org/gluu/oxauth/auth/MTLSService.java b/oxAuth/Server/src/main/java/org/gluu/oxauth/auth/MTLSService.java
new file mode 100644
index 00000000..961c62f6
--- /dev/null
+++ b/oxAuth/Server/src/main/java/org/gluu/oxauth/auth/MTLSService.java
@@ -0,0 +1,138 @@
+package org.gluu.oxauth.auth;
+
+import com.google.common.base.Strings;
+import org.apache.commons.lang.ArrayUtils;
+import org.apache.commons.lang.StringUtils;
+import org.gluu.oxauth.model.authorize.AuthorizeRequestParam;
+import org.gluu.oxauth.model.common.AuthenticationMethod;
+import org.gluu.oxauth.model.common.Prompt;
+import org.gluu.oxauth.model.crypto.AbstractCryptoProvider;
+import org.gluu.oxauth.model.error.ErrorResponseFactory;
+import org.gluu.oxauth.model.jwk.JSONWebKey;
+import org.gluu.oxauth.model.jwk.JSONWebKeySet;
+import org.gluu.oxauth.model.registration.Client;
+import org.gluu.oxauth.model.session.SessionId;
+import org.gluu.oxauth.model.session.SessionIdState;
+import org.gluu.oxauth.model.token.TokenErrorResponseType;
+import org.gluu.oxauth.model.util.CertUtils;
+import org.gluu.oxauth.service.SessionIdService;
+import org.gluu.oxauth.util.ServerUtil;
+import org.json.JSONObject;
+import org.slf4j.Logger;
+
+import javax.enterprise.context.ApplicationScoped;
+import javax.inject.Inject;
+import javax.inject.Named;
+import javax.servlet.FilterChain;
+import javax.servlet.http.HttpServletRequest;
+import javax.servlet.http.HttpServletResponse;
+import javax.ws.rs.WebApplicationException;
+import javax.ws.rs.core.Response;
+import java.security.PublicKey;
+import java.security.cert.X509Certificate;
+import java.util.List;
+
+/**
+ * @author Yuriy Zabrovarnyy
+ */
+@ApplicationScoped
+public class MTLSService {
+
+    @Inject
+    private Logger log;
+
+    @Inject
+    private Authenticator authenticator;
+
+    @Inject
+    private SessionIdService sessionIdService;
+
+    @Inject
+    private AbstractCryptoProvider cryptoProvider;
+
+    @Inject
+    private ErrorResponseFactory errorResponseFactory;
+
+    public boolean processMTLS(HttpServletRequest httpRequest, HttpServletResponse httpResponse, FilterChain filterChain, Client client) throws Exception {
+        log.debug("Trying to authenticate client {} via {} ...", client.getClientId(),
+                client.getAuthenticationMethod());
+
+        final String clientCertAsPem = httpRequest.getHeader("X-ClientCert");
+        if (StringUtils.isBlank(clientCertAsPem)) {
+            log.debug("Client certificate is missed in `X-ClientCert` header, client_id: {}.", client.getClientId());
+            return false;
+        }
+
+        X509Certificate cert = CertUtils.x509CertificateFromPem(clientCertAsPem);
+        if (cert == null) {
+            log.debug("Failed to parse client certificate, client_id: {}.", client.getClientId());
+            return false;
+        }
+        final String cn = CertUtils.getCN(cert);
+        if (!cn.equals(client.getClientId())) {
+            log.error("Client certificate CN does not match clientId. Reject call, CN: " + cn + ", clientId: " + client.getClientId());
+            throw new WebApplicationException(Response.status(Response.Status.UNAUTHORIZED).entity(errorResponseFactory.getErrorAsJson(TokenErrorResponseType.INVALID_CLIENT, httpRequest.getParameter("state"), "")).build());
+        }
+
+        if (client.getAuthenticationMethod() == AuthenticationMethod.TLS_CLIENT_AUTH) {
+
+            final String subjectDn = client.getAttributes().getTlsClientAuthSubjectDn();
+            if (StringUtils.isBlank(subjectDn)) {
+                log.debug("SubjectDN is not set for client {} which is required to authenticate it via `tls_client_auth`.", client.getClientId());
+                return false;
+            }
+
+            // we check only `subjectDn`, the PKI certificate validation is performed by apache/httpd
+            if (CertUtils.equalsRdn(subjectDn, cert.getSubjectDN().getName())) {
+                log.debug("Client {} authenticated via `tls_client_auth`.", client.getClientId());
+                authenticatedSuccessfully(client, httpRequest);
+
+                filterChain.doFilter(httpRequest, httpResponse);
+                return true;
+            }
+        }
+
+        if (client.getAuthenticationMethod() == AuthenticationMethod.SELF_SIGNED_TLS_CLIENT_AUTH) { // disable it
+            final PublicKey publicKey = cert.getPublicKey();
+            final byte[] encodedKey = publicKey.getEncoded();
+
+            JSONObject jsonWebKeys = ServerUtil.getJwks(client);
+
+            if (jsonWebKeys == null) {
+                log.debug("Unable to load json web keys for client: {}, jwks_uri: {}, jks: {}", client.getClientId(),
+                        client.getJwksUri(), client.getJwks());
+                return false;
+            }
+
+            final JSONWebKeySet keySet = JSONWebKeySet.fromJSONObject(jsonWebKeys);
+            for (JSONWebKey key : keySet.getKeys()) {
+                if (ArrayUtils.isEquals(encodedKey,
+                        cryptoProvider.getPublicKey(key.getKid(), jsonWebKeys, null).getEncoded())) {
+                    log.debug("Client {} authenticated via `self_signed_tls_client_auth`, matched kid: {}.",
+                            client.getClientId(), key.getKid());
+                    authenticatedSuccessfully(client, httpRequest);
+
+                    filterChain.doFilter(httpRequest, httpResponse);
+                    return true;
+                }
+            }
+        }
+        return false;
+    }
+
+    private void authenticatedSuccessfully(Client client, HttpServletRequest httpRequest) {
+        authenticator.configureSessionClient(client);
+
+        List<Prompt> prompts = Prompt.fromString(httpRequest.getParameter(AuthorizeRequestParam.PROMPT), " ");
+        if (prompts.contains(Prompt.LOGIN)) {
+            return; // skip session authentication if we have prompt=login
+        }
+
+        SessionId sessionIdObject = sessionIdService.getSessionId(httpRequest);
+        if (sessionIdObject == null || sessionIdObject.getState() != SessionIdState.AUTHENTICATED) {
+            return;
+        }
+
+        authenticator.authenticateBySessionId(sessionIdObject);
+    }
+}
diff --git a/oxAuth/Server/src/main/java/org/gluu/oxauth/auth/SelectAccountAction.java b/oxAuth/Server/src/main/java/org/gluu/oxauth/auth/SelectAccountAction.java
new file mode 100644
index 00000000..ac488013
--- /dev/null
+++ b/oxAuth/Server/src/main/java/org/gluu/oxauth/auth/SelectAccountAction.java
@@ -0,0 +1,399 @@
+package org.gluu.oxauth.auth;
+
+import java.io.UnsupportedEncodingException;
+import java.util.List;
+import java.util.Map;
+import java.util.Set;
+
+import javax.annotation.PostConstruct;
+import javax.enterprise.context.RequestScoped;
+import javax.faces.context.ExternalContext;
+import javax.inject.Inject;
+import javax.inject.Named;
+import javax.servlet.http.HttpServletRequest;
+import javax.servlet.http.HttpServletResponse;
+
+import org.apache.commons.lang.StringUtils;
+import org.gluu.jsf2.service.FacesService;
+import org.gluu.oxauth.model.common.User;
+import org.gluu.oxauth.model.session.SessionId;
+import org.gluu.oxauth.security.Identity;
+import org.gluu.oxauth.service.CookieService;
+import org.gluu.oxauth.service.RequestParameterService;
+import org.gluu.oxauth.service.SessionIdService;
+import org.slf4j.Logger;
+
+import com.google.common.collect.Lists;
+import com.google.common.collect.Maps;
+import com.google.common.collect.Sets;
+
+/**
+ * @author Yuriy Zabrovarnyy
+ */
+@RequestScoped
+@Named
+public class SelectAccountAction {
+
+    private static final String FORM_ID = "selectForm";
+    private static final String LOGIN_BUTTON_REF = FORM_ID + ":loginButton";
+
+    @Inject
+    private Logger log;
+
+    @Inject
+    private Identity identity;
+
+    @Inject
+    private SessionIdService sessionIdService;
+
+    @Inject
+    private FacesService facesService;
+
+    @Inject
+    private CookieService cookieService;
+
+    @Inject
+    private ExternalContext externalContext;
+
+    @Inject
+    private RequestParameterService requestParameterService;
+
+    @Inject
+    private Authenticator authenticator;
+
+
+    // OAuth 2.0 request parameters
+    private String scope;
+    private String responseType;
+    private String clientId;
+    private String redirectUri;
+    private String state;
+
+    // OpenID Connect request parameters
+    private String responseMode;
+    private String nonce;
+    private String display;
+    private String prompt;
+    private Integer maxAge;
+    private String uiLocales;
+    private String idTokenHint;
+    private String loginHint;
+    private String acrValues;
+    private String amrValues;
+    private String request;
+    private String requestUri;
+    private String codeChallenge;
+    private String codeChallengeMethod;
+    private String claims;
+    private String authReqId;
+    private String bindingMessage;
+    private String sessionId;
+    private String allowedScope;
+
+    private List<SessionId> currentSessions = Lists.newArrayList();
+    private String selectedSessionId;
+
+    @PostConstruct
+    public void prepare() {
+        currentSessions = Lists.newArrayList();
+        Set<String> uids = Sets.newHashSet();
+        for (SessionId sessionId : sessionIdService.getCurrentSessions()) {
+            final User user = sessionIdService.getUser(sessionId);
+            if (user == null) {
+                log.error("Failed to get user for session. Skipping it from current_sessions, id: " + sessionId.getId());
+                continue;
+            }
+            final String uid = StringUtils.isNotBlank(user.getUserId()) ? user.getUserId() : user.getDn();
+            if (!currentSessions.contains(sessionId) && !uids.contains(uid)) {
+                log.trace("User: {}, sessionId: {}", uid, sessionId.getId());
+                currentSessions.add(sessionId);
+                uids.add(uid);
+            }
+        }
+        log.trace("Found {} sessions", currentSessions.size());
+    }
+
+    public List<SessionId> getCurrentSessions() {
+        return currentSessions;
+    }
+
+    public void select() {
+        try {
+            log.debug("Selected account: " + selectedSessionId);
+            clearSessionIdCookie();
+            SessionId selectedSession = currentSessions.stream().filter(s -> s.getId().equals(selectedSessionId)).findAny().get();
+            cookieService.createSessionIdCookie(selectedSession, false);
+            identity.setSessionId(selectedSession);
+            authenticator.authenticateBySessionId(selectedSessionId);
+            String uri = buildAuthorizationUrl();
+            log.trace("RedirectTo: {}", uri);
+            facesService.redirectToExternalURL(uri);
+        } catch (UnsupportedEncodingException e) {
+            log.error(e.getMessage(), e);
+        }
+    }
+
+    public String getName(SessionId sessionId) {
+        final User user = sessionId.getUser();
+        final String displayName = user.getAttribute("displayName");
+        if (StringUtils.isNotBlank(displayName)) {
+            return displayName;
+        }
+        if (StringUtils.isNotBlank(displayName)) {
+            return user.getUserId();
+        }
+        return user.getDn();
+    }
+
+    public void login() {
+        try {
+            clearSessionIdCookie();
+            String uri = buildAuthorizationUrl();
+            log.trace("RedirectTo: {}", uri);
+            facesService.redirectToExternalURL(uri);
+        } catch (UnsupportedEncodingException e) {
+            log.error(e.getMessage(), e);
+        }
+    }
+
+    public void clearSessionIdCookie() {
+        final Object response = externalContext.getResponse();
+        if (!(response instanceof HttpServletResponse)) {
+            log.error("Unknown http response.");
+            return;
+        }
+
+        HttpServletResponse httpResponse = (HttpServletResponse) response;
+        cookieService.removeSessionIdCookie(httpResponse);
+        cookieService.removeOPBrowserStateCookie(httpResponse);
+
+        if (identity != null) {
+            identity.logout();
+        }
+        log.trace("Removed session_id and opbs cookies.");
+    }
+
+    private String buildAuthorizationUrl() throws UnsupportedEncodingException {
+        final HttpServletRequest httpRequest = (HttpServletRequest) externalContext.getRequest();
+        return httpRequest.getContextPath() + "/restv1/authorize?" + requestParameterService.parametersAsString(getFilteredParameters());
+    }
+
+    private Map<String, String> getFilteredParameters() {
+        final Map<String, String> parameterMap = externalContext.getRequestParameterMap();
+        final Map<String, String> filtered = Maps.newHashMap();
+        final String formIdWithColon = FORM_ID + ":";
+
+        for (Map.Entry<String, String> entry : parameterMap.entrySet()) {
+            final String key = entry.getKey();
+            if (key.equals("javax.faces.ViewState") || key.equals(FORM_ID) || key.contains(LOGIN_BUTTON_REF)) {
+                continue;
+            }
+            if (key.startsWith(formIdWithColon)) {
+                filtered.put(StringUtils.removeStart(key, formIdWithColon), entry.getValue());
+                continue;
+            }
+            filtered.put(StringUtils.removeStart(key, formIdWithColon), entry.getValue());
+        }
+        return filtered;
+    }
+
+    public String getScope() {
+        return scope;
+    }
+
+    public void setScope(String scope) {
+        this.scope = scope;
+    }
+
+    public String getResponseType() {
+        return responseType;
+    }
+
+    public void setResponseType(String responseType) {
+        this.responseType = responseType;
+    }
+
+    public String getClientId() {
+        return clientId;
+    }
+
+    public void setClientId(String clientId) {
+        this.clientId = clientId;
+    }
+
+    public String getRedirectUri() {
+        return redirectUri;
+    }
+
+    public void setRedirectUri(String redirectUri) {
+        this.redirectUri = redirectUri;
+    }
+
+    public String getState() {
+        return state;
+    }
+
+    public void setState(String state) {
+        this.state = state;
+    }
+
+    public String getResponseMode() {
+        return responseMode;
+    }
+
+    public void setResponseMode(String responseMode) {
+        this.responseMode = responseMode;
+    }
+
+    public String getNonce() {
+        return nonce;
+    }
+
+    public void setNonce(String nonce) {
+        this.nonce = nonce;
+    }
+
+    public String getDisplay() {
+        return display;
+    }
+
+    public void setDisplay(String display) {
+        this.display = display;
+    }
+
+    public String getPrompt() {
+        return prompt;
+    }
+
+    public void setPrompt(String prompt) {
+        this.prompt = prompt;
+    }
+
+    public Integer getMaxAge() {
+        return maxAge;
+    }
+
+    public void setMaxAge(Integer maxAge) {
+        this.maxAge = maxAge;
+    }
+
+    public String getUiLocales() {
+        return uiLocales;
+    }
+
+    public void setUiLocales(String uiLocales) {
+        this.uiLocales = uiLocales;
+    }
+
+    public String getIdTokenHint() {
+        return idTokenHint;
+    }
+
+    public void setIdTokenHint(String idTokenHint) {
+        this.idTokenHint = idTokenHint;
+    }
+
+    public String getLoginHint() {
+        return loginHint;
+    }
+
+    public void setLoginHint(String loginHint) {
+        this.loginHint = loginHint;
+    }
+
+    public String getAcrValues() {
+        return acrValues;
+    }
+
+    public void setAcrValues(String acrValues) {
+        this.acrValues = acrValues;
+    }
+
+    public String getAmrValues() {
+        return amrValues;
+    }
+
+    public void setAmrValues(String amrValues) {
+        this.amrValues = amrValues;
+    }
+
+    public String getRequest() {
+        return request;
+    }
+
+    public void setRequest(String request) {
+        this.request = request;
+    }
+
+    public String getRequestUri() {
+        return requestUri;
+    }
+
+    public void setRequestUri(String requestUri) {
+        this.requestUri = requestUri;
+    }
+
+    public String getCodeChallenge() {
+        return codeChallenge;
+    }
+
+    public void setCodeChallenge(String codeChallenge) {
+        this.codeChallenge = codeChallenge;
+    }
+
+    public String getCodeChallengeMethod() {
+        return codeChallengeMethod;
+    }
+
+    public void setCodeChallengeMethod(String codeChallengeMethod) {
+        this.codeChallengeMethod = codeChallengeMethod;
+    }
+
+    public String getClaims() {
+        return claims;
+    }
+
+    public void setClaims(String claims) {
+        this.claims = claims;
+    }
+
+    public String getAuthReqId() {
+        return authReqId;
+    }
+
+    public void setAuthReqId(String authReqId) {
+        this.authReqId = authReqId;
+    }
+
+    public String getSessionId() {
+        return sessionId;
+    }
+
+    public void setSessionId(String sessionId) {
+        this.sessionId = sessionId;
+    }
+
+    public String getAllowedScope() {
+        return allowedScope;
+    }
+
+    public void setAllowedScope(String allowedScope) {
+        this.allowedScope = allowedScope;
+    }
+
+    public String getBindingMessage() {
+        return bindingMessage;
+    }
+
+    public void setBindingMessage(String bindingMessage) {
+        this.bindingMessage = bindingMessage;
+    }
+
+    public String getSelectedSessionId() {
+        return selectedSessionId;
+    }
+
+    public void setSelectedSessionId(String selectedSessionId) {
+        this.selectedSessionId = selectedSessionId;
+    }
+}
diff --git a/oxAuth/Server/src/main/java/org/gluu/oxauth/authorize/ws/rs/AuthorizeAction.java b/oxAuth/Server/src/main/java/org/gluu/oxauth/authorize/ws/rs/AuthorizeAction.java
new file mode 100644
index 00000000..4f7fe66f
--- /dev/null
+++ b/oxAuth/Server/src/main/java/org/gluu/oxauth/authorize/ws/rs/AuthorizeAction.java
@@ -0,0 +1,951 @@
+/*
+ * oxAuth is available under the MIT License (2008). See http://opensource.org/licenses/MIT for full text.
+ *
+ * Copyright (c) 2014, Gluu
+ */
+
+package org.gluu.oxauth.authorize.ws.rs;
+
+import org.apache.commons.lang.StringUtils;
+import org.apache.commons.text.StringEscapeUtils;
+import org.apache.logging.log4j.util.Strings;
+import org.gluu.jsf2.message.FacesMessages;
+import org.gluu.jsf2.service.FacesService;
+import org.gluu.model.AuthenticationScriptUsageType;
+import org.gluu.model.custom.script.conf.CustomScriptConfiguration;
+import org.gluu.oxauth.auth.Authenticator;
+import org.gluu.oxauth.i18n.LanguageBean;
+import org.gluu.oxauth.model.auth.AuthenticationMode;
+import org.gluu.oxauth.model.authorize.*;
+import org.gluu.oxauth.model.common.*;
+import org.gluu.oxauth.model.config.Constants;
+import org.gluu.oxauth.model.configuration.AppConfiguration;
+import org.gluu.oxauth.model.crypto.AbstractCryptoProvider;
+import org.gluu.oxauth.model.error.ErrorResponseFactory;
+import org.gluu.oxauth.model.exception.AcrChangedException;
+import org.gluu.oxauth.model.exception.InvalidJwtException;
+import org.gluu.oxauth.model.jwt.JwtClaimName;
+import org.gluu.oxauth.model.ldap.ClientAuthorization;
+import org.gluu.oxauth.model.registration.Client;
+import org.gluu.oxauth.model.session.SessionId;
+import org.gluu.oxauth.model.session.SessionIdState;
+import org.gluu.oxauth.model.util.Base64Util;
+import org.gluu.oxauth.model.util.JwtUtil;
+import org.gluu.oxauth.model.util.Util;
+import org.gluu.oxauth.security.Identity;
+import org.gluu.oxauth.service.*;
+import org.gluu.oxauth.service.ciba.CibaRequestService;
+import org.gluu.oxauth.service.external.ExternalAuthenticationService;
+import org.gluu.oxauth.service.external.ExternalConsentGatheringService;
+import org.gluu.oxauth.service.external.ExternalPostAuthnService;
+import org.gluu.oxauth.service.external.context.ExternalPostAuthnContext;
+import org.gluu.oxauth.util.ServerUtil;
+import org.gluu.persist.exception.EntryPersistenceException;
+import org.gluu.service.net.NetworkService;
+import org.gluu.util.StringHelper;
+import org.gluu.util.locale.LocaleUtil;
+import org.slf4j.Logger;
+
+import javax.enterprise.context.RequestScoped;
+import javax.faces.application.FacesMessage;
+import javax.faces.context.ExternalContext;
+import javax.faces.context.FacesContext;
+import javax.inject.Inject;
+import javax.inject.Named;
+import javax.servlet.http.HttpServletRequest;
+import javax.servlet.http.HttpServletResponse;
+import javax.ws.rs.WebApplicationException;
+import javax.ws.rs.client.ClientBuilder;
+import javax.ws.rs.core.MediaType;
+import javax.ws.rs.core.Response;
+import java.io.IOException;
+import java.io.UnsupportedEncodingException;
+import java.net.URI;
+import java.net.URLEncoder;
+import java.util.*;
+
+import static org.gluu.oxauth.service.DeviceAuthorizationService.SESSION_USER_CODE;
+/**
+ * @author Javier Rojas Blum
+ * @author Yuriy Movchan
+ * @version March 4, 2020
+ */
+@RequestScoped
+@Named
+public class AuthorizeAction {
+
+    @Inject
+    private Logger log;
+
+    @Inject
+    private ClientService clientService;
+
+    @Inject
+    private ErrorResponseFactory errorResponseFactory;
+
+    @Inject
+    private SessionIdService sessionIdService;
+
+    @Inject
+    private RedirectionUriService redirectionUriService;
+
+    @Inject
+    private ClientAuthorizationsService clientAuthorizationsService;
+
+    @Inject
+    private ExternalAuthenticationService externalAuthenticationService;
+
+    @Inject
+    private ExternalConsentGatheringService externalConsentGatheringService;
+
+    @Inject
+    private AuthenticationMode defaultAuthenticationMode;
+
+    @Inject
+    private LanguageBean languageBean;
+
+    @Inject
+    private NetworkService networkService;
+
+    @Inject
+    private AppConfiguration appConfiguration;
+
+    @Inject
+    private FacesService facesService;
+
+    @Inject
+    private FacesMessages facesMessages;
+
+    @Inject
+    private FacesContext facesContext;
+
+    @Inject
+    private ExternalContext externalContext;
+
+    @Inject
+    private ConsentGathererService consentGatherer;
+
+    @Inject
+    private AuthorizeService authorizeService;
+
+    @Inject
+    private RequestParameterService requestParameterService;
+
+    @Inject
+    private ScopeChecker scopeChecker;
+
+    @Inject
+    private ErrorHandlerService errorHandlerService;
+
+    @Inject
+    private AbstractCryptoProvider cryptoProvider;
+
+    @Inject
+    private CookieService cookieService;
+    
+    @Inject
+    private Authenticator authenticator;
+    
+    @Inject
+    private AuthenticationService authenticationService;
+
+    @Inject
+    private ExternalPostAuthnService externalPostAuthnService;
+
+    @Inject
+    private CibaRequestService cibaRequestService;
+
+	@Inject
+	private Identity identity;
+
+    @Inject
+    private AuthorizeRestWebServiceValidator authorizeRestWebServiceValidator;
+
+    // OAuth 2.0 request parameters
+    private String scope;
+    private String responseType;
+    private String clientId;
+    private String redirectUri;
+    private String state;
+
+    // OpenID Connect request parameters
+    private String responseMode;
+    private String nonce;
+    private String display;
+    private String prompt;
+    private Integer maxAge;
+    private String uiLocales;
+    private String idTokenHint;
+    private String loginHint;
+    private String acrValues;
+    private String amrValues;
+    private String request;
+    private String requestUri;
+    private String codeChallenge;
+    private String codeChallengeMethod;
+    private String claims;
+
+    // CIBA Request parameter
+    private String authReqId;
+
+    // custom oxAuth parameters
+    private String sessionId;
+
+    private String allowedScope;
+
+    public void checkUiLocales() {
+        List<String> uiLocalesList = null;
+        if (StringUtils.isNotBlank(uiLocales)) {
+            uiLocalesList = Util.splittedStringAsList(uiLocales, " ");
+
+            List<Locale> supportedLocales = languageBean.getSupportedLocales();
+            Locale matchingLocale = LocaleUtil.localeMatch(uiLocalesList, supportedLocales);
+
+            if (matchingLocale != null) {
+                languageBean.setLocale(matchingLocale);
+            }
+        } else {
+            Locale requestedLocale = facesContext.getExternalContext().getRequestLocale();
+            if (requestedLocale != null) {
+                languageBean.setLocale(requestedLocale);
+                return;
+            }
+            
+            Locale defaultLocale = facesContext.getApplication().getDefaultLocale();
+            if (defaultLocale != null) {
+                languageBean.setLocale(defaultLocale);
+            }
+        }
+    }
+
+    public void checkPermissionGranted() {
+        try {
+            checkPermissionGrantedInternal();
+        } catch (Exception e) {
+            log.error("Failed to perform checkPermissionGranted()", e);
+            permissionDenied();
+        }
+    }
+
+    public void checkPermissionGrantedInternal() throws IOException {
+        if ((clientId == null) || clientId.isEmpty()) {
+            log.debug("Permission denied. client_id should be not empty.");
+            permissionDenied();
+            return;
+        }
+
+        Client client = null;
+        try {
+            client = clientService.getClient(clientId);
+        } catch (EntryPersistenceException ex) {
+            log.debug("Permission denied. Failed to find client by inum '{}' in LDAP.", clientId, ex);
+            permissionDenied();
+            return;
+        }
+
+        if (client == null) {
+            log.debug("Permission denied. Failed to find client_id '{}' in LDAP.", clientId);
+            permissionDenied();
+            return;
+        }
+
+        // Fix the list of scopes in the authorization page. oxAuth #739
+        Set<String> grantedScopes = scopeChecker.checkScopesPolicy(client, scope);
+        allowedScope = org.gluu.oxauth.model.util.StringUtils.implode(grantedScopes, " ");
+
+        SessionId session = getSession();
+        List<Prompt> prompts = Prompt.fromString(prompt, " ");
+
+        try {
+            redirectUri = authorizeRestWebServiceValidator.validateRedirectUri(client, redirectUri, state, session != null ? session.getSessionAttributes().get(SESSION_USER_CODE) : null, (HttpServletRequest) externalContext.getRequest());
+        } catch (WebApplicationException e) {
+            log.debug(e.getMessage(), e);
+            permissionDenied();
+            return;
+        }
+
+        try {
+            session = sessionIdService.assertAuthenticatedSessionCorrespondsToNewRequest(session, acrValues);
+        } catch (AcrChangedException e) {
+            log.debug("There is already existing session which has another acr then {}, session: {}", acrValues, session.getId());
+            if (e.isForceReAuthentication()) {
+                session = handleAcrChange(session, prompts);
+            } else {
+                log.error("ACR is changed, please provide a supported and enabled acr value");
+                permissionDenied();
+                return;
+            }
+        }
+
+        if (session == null || StringUtils.isBlank(session.getUserDn()) || SessionIdState.AUTHENTICATED != session.getState()) {
+            Map<String, String> parameterMap = externalContext.getRequestParameterMap();
+            Map<String, String> requestParameterMap = requestParameterService.getAllowedParameters(parameterMap);
+
+            String redirectTo = "/login.xhtml";
+
+            boolean useExternalAuthenticator = externalAuthenticationService.isEnabled(AuthenticationScriptUsageType.INTERACTIVE);
+            if (useExternalAuthenticator) {
+                List<String> acrValuesList = sessionIdService.acrValuesList(this.acrValues);
+                if (acrValuesList.isEmpty()) {
+                    acrValuesList = Arrays.asList(defaultAuthenticationMode.getName());
+                }
+
+                CustomScriptConfiguration customScriptConfiguration = externalAuthenticationService.determineCustomScriptConfiguration(AuthenticationScriptUsageType.INTERACTIVE, acrValuesList);
+
+                if (customScriptConfiguration == null) {
+                    log.error("Failed to get CustomScriptConfiguration. auth_step: {}, acr_values: {}", 1, this.acrValues);
+                    permissionDenied();
+                    return;
+                }
+
+                String acr = customScriptConfiguration.getName();
+
+                requestParameterMap.put(JwtClaimName.AUTHENTICATION_CONTEXT_CLASS_REFERENCE, acr);
+                requestParameterMap.put("auth_step", Integer.toString(1));
+
+                String tmpRedirectTo = externalAuthenticationService.executeExternalGetPageForStep(customScriptConfiguration, 1);
+                if (StringHelper.isNotEmpty(tmpRedirectTo)) {
+                    log.trace("Redirect to person authentication login page: {}", tmpRedirectTo);
+                    redirectTo = tmpRedirectTo;
+                }
+            }
+
+            // Store Remote IP
+            String remoteIp = networkService.getRemoteIp();
+            requestParameterMap.put(Constants.REMOTE_IP, remoteIp);
+
+            // User Code used in Device Authz flow
+            if (session != null && session.getSessionAttributes().containsKey(SESSION_USER_CODE)) {
+                String userCode = session.getSessionAttributes().get(SESSION_USER_CODE);
+                requestParameterMap.put(SESSION_USER_CODE, userCode);
+            }
+
+            // Create unauthenticated session
+            SessionId unauthenticatedSession = sessionIdService.generateUnauthenticatedSessionId(null, new Date(), SessionIdState.UNAUTHENTICATED, requestParameterMap, false);
+            unauthenticatedSession.setSessionAttributes(requestParameterMap);
+            unauthenticatedSession.addPermission(clientId, false);
+            
+            // Copy ACR script parameters
+            if (appConfiguration.getKeepAuthenticatorAttributesOnAcrChange()) {
+            	authenticationService.copyAuthenticatorExternalAttributes(session, unauthenticatedSession);
+            }
+
+            // #1030, fix for flow 4 - transfer previous session permissions to new session
+            if (session != null && session.getPermissionGrantedMap() != null && session.getPermissionGrantedMap().getPermissionGranted() != null) {
+                for (Map.Entry<String, Boolean> entity : session.getPermissionGrantedMap().getPermissionGranted().entrySet()) {
+                    unauthenticatedSession.addPermission(entity.getKey(), entity.getValue());
+                }
+                sessionIdService.remove(session); // #1030, remove previous session
+            }
+
+            boolean persisted = sessionIdService.persistSessionId(unauthenticatedSession, !prompts.contains(Prompt.NONE)); // always persist is prompt is not none
+            if (persisted && log.isTraceEnabled()) {
+                log.trace("Session '{}' persisted to LDAP", unauthenticatedSession.getId());
+            }
+
+            this.sessionId = unauthenticatedSession.getId();
+            cookieService.createSessionIdCookie(unauthenticatedSession, false);
+            cookieService.creatRpOriginIdCookie(redirectUri);
+            identity.setSessionId(unauthenticatedSession);
+
+            Map<String, Object> loginParameters = new HashMap<String, Object>();
+            if (requestParameterMap.containsKey(AuthorizeRequestParam.LOGIN_HINT)) {
+                loginParameters.put(AuthorizeRequestParam.LOGIN_HINT, requestParameterMap.get(AuthorizeRequestParam.LOGIN_HINT));
+            }
+
+            boolean enableRedirect = StringHelper.toBoolean(System.getProperty("gluu.enable-redirect", "false"), false); 
+            if (!enableRedirect && redirectTo.toLowerCase().endsWith("xhtml")) {
+            	if (redirectTo.toLowerCase().endsWith("postlogin.xhtml")) {
+                	authenticator.authenticateWithOutcome();
+            	} else {
+	            	authenticator.prepareAuthenticationForStep(unauthenticatedSession);
+	            	facesService.renderView(redirectTo);
+            	}
+            } else {
+            	facesService.redirectWithExternal(redirectTo, loginParameters);
+            }
+
+            return;
+        }
+
+        String userCode = session.getSessionAttributes().get(SESSION_USER_CODE);
+        if (StringUtils.isBlank(userCode) && StringUtils.isBlank(redirectionUriService.validateRedirectionUri(clientId, redirectUri))) {
+            ExternalContext externalContext = facesContext.getExternalContext();
+            externalContext.setResponseStatus(HttpServletResponse.SC_BAD_REQUEST);
+            externalContext.setResponseContentType(MediaType.APPLICATION_JSON);
+            externalContext.getResponseOutputWriter().write(errorResponseFactory.getErrorAsJson(AuthorizeErrorResponseType.INVALID_REQUEST_REDIRECT_URI, state, ""));
+            facesContext.responseComplete();
+        }
+
+        if (log.isTraceEnabled()) {
+            log.trace("checkPermissionGranted, userDn = " + session.getUserDn());
+        }
+
+        if (prompts.contains(Prompt.SELECT_ACCOUNT)) {
+            Map requestParameterMap = requestParameterService.getAllowedParameters(externalContext.getRequestParameterMap());
+            facesService.redirect("/selectAccount.xhtml", requestParameterMap);
+            return;
+        }
+
+        if (prompts.contains(Prompt.NONE) && prompts.size() > 1) {
+            invalidRequest();
+            return;
+        }
+
+        ExternalPostAuthnContext postAuthnContext = new ExternalPostAuthnContext(client, session, (HttpServletRequest)externalContext.getRequest(), (HttpServletResponse) externalContext.getResponse());
+        final boolean forceAuthorization = externalPostAuthnService.externalForceAuthorization(client, postAuthnContext);
+
+        final boolean hasConsentPrompt = prompts.contains(Prompt.CONSENT);
+        if (!hasConsentPrompt && !forceAuthorization) {
+            if (appConfiguration.getTrustedClientEnabled() && client.getTrustedClient()) {
+                // if trusted client = true, then skip authorization page and grant access directly
+                permissionGranted(session);
+                return;
+            } else if (ServerUtil.isTrue(appConfiguration.getSkipAuthorizationForOpenIdScopeAndPairwiseId())
+                    && SubjectType.PAIRWISE.toString().equals(client.getSubjectType()) && hasOnlyOpenidScope()) {
+                // If a client has only openid scope and pairwise id, person should not have to authorize. oxAuth-743
+                permissionGranted(session);
+                return;
+            }
+
+            final User user = sessionIdService.getUser(session);
+            ClientAuthorization clientAuthorization = clientAuthorizationsService.find(
+                    user.getAttribute("inum"),
+                    client.getClientId());
+            if (clientAuthorization != null && clientAuthorization.getScopes() != null &&
+                    Arrays.asList(clientAuthorization.getScopes()).containsAll(
+                            org.gluu.oxauth.model.util.StringUtils.spaceSeparatedToList(scope))) {
+                permissionGranted(session);
+                return;
+            }
+        }
+
+        if (externalConsentGatheringService.isEnabled()) {
+            if (consentGatherer.isConsentGathered()) {
+                log.trace("Consent-gathered flow passed successfully");
+                permissionGranted(session);
+                return;
+            }
+
+            log.trace("Starting external consent-gathering flow");
+
+            boolean result = consentGatherer.configure(session.getUserDn(), clientId, state);
+            if (!result) {
+                log.error("Failed to initialize external consent-gathering flow.");
+                permissionDenied();
+                return;
+            }
+        }
+    }
+
+    private SessionId handleAcrChange(SessionId session, List<Prompt> prompts) {
+        if (session != null) {
+            if (session.getState() == SessionIdState.AUTHENTICATED) {
+
+                if (!prompts.contains(Prompt.LOGIN)) {
+                    prompts.add(Prompt.LOGIN);
+                }
+                session.getSessionAttributes().put("prompt", org.gluu.oxauth.model.util.StringUtils.implode(prompts, " "));
+                session.setState(SessionIdState.UNAUTHENTICATED);
+
+                // Update Remote IP
+                String remoteIp = networkService.getRemoteIp();
+                session.getSessionAttributes().put(Constants.REMOTE_IP, remoteIp);
+
+                final boolean isSessionPersisted = sessionIdService.reinitLogin(session, false);
+                if (!isSessionPersisted) {
+                    sessionIdService.updateSessionId(session);
+                }
+            }
+        }
+        return session;
+    }
+
+    private SessionId getSession() {
+        return authorizeService.getSession(sessionId);
+    }
+
+    public List<org.oxauth.persistence.model.Scope> getScopes() {
+        return authorizeService.getScopes(allowedScope);
+    }
+
+    public List<String> getRequestedClaims() {
+        Set<String> result = new HashSet<String>();
+        String requestJwt = request;
+
+        if (StringUtils.isBlank(requestJwt) && StringUtils.isNotBlank(requestUri)) {
+            try {
+                URI reqUri = new URI(requestUri);
+                String reqUriHash = reqUri.getFragment();
+                String reqUriWithoutFragment = reqUri.getScheme() + ":" + reqUri.getSchemeSpecificPart();
+
+                javax.ws.rs.client.Client clientRequest = ClientBuilder.newClient();
+                try {
+	        	    Response clientResponse = clientRequest.target(reqUriWithoutFragment).request().buildGet().invoke();
+	        	    clientRequest.close();
+	
+	                int status = clientResponse.getStatus();
+	                if (status == 200) {
+	                    String entity = clientResponse.readEntity(String.class);
+	
+	                    if (StringUtils.isBlank(reqUriHash)) {
+	                        requestJwt = entity;
+	                    } else {
+	                        String hash = Base64Util.base64urlencode(JwtUtil.getMessageDigestSHA256(entity));
+	                        if (StringUtils.equals(reqUriHash, hash)) {
+	                            requestJwt = entity;
+	                        }
+	                    }
+	                }
+                } finally {
+                	clientRequest.close();
+                }
+            } catch (Exception e) {
+                log.error(e.getMessage(), e);
+            }
+        }
+
+        if (StringUtils.isNotBlank(requestJwt)) {
+            try {
+                Client client = clientService.getClient(clientId);
+
+                if (client != null) {
+                    JwtAuthorizationRequest jwtAuthorizationRequest = new JwtAuthorizationRequest(appConfiguration, cryptoProvider, request, client);
+
+                    if (jwtAuthorizationRequest.getUserInfoMember() != null) {
+                        for (Claim claim : jwtAuthorizationRequest.getUserInfoMember().getClaims()) {
+                            result.add(claim.getName());
+                        }
+                    }
+
+                    if (jwtAuthorizationRequest.getIdTokenMember() != null) {
+                        for (Claim claim : jwtAuthorizationRequest.getIdTokenMember().getClaims()) {
+                            result.add(claim.getName());
+                        }
+                    }
+                }
+            } catch (EntryPersistenceException | InvalidJwtException e) {
+                log.error(e.getMessage(), e);
+            }
+        }
+
+        return new ArrayList<>(result);
+    }
+
+    /**
+     * Returns the scope of the access request.
+     *
+     * @return The scope of the access request.
+     */
+    public String getScope() {
+        return scope;
+    }
+
+    /**
+     * Sets the scope of the access request.
+     *
+     * @param scope The scope of the access request.
+     */
+    public void setScope(String scope) {
+        this.scope = scope;
+    }
+
+    /**
+     * Returns the response type: <code>code</code> for requesting an authorization code (authorization code grant) or
+     * <strong>token</strong> for requesting an access token (implicit grant).
+     *
+     * @return The response type.
+     */
+    public String getResponseType() {
+        return responseType;
+    }
+
+    /**
+     * Sets the response type.
+     *
+     * @param responseType The response type.
+     */
+    public void setResponseType(String responseType) {
+        this.responseType = responseType;
+    }
+
+    /**
+     * Returns the client identifier.
+     *
+     * @return The client identifier.
+     */
+    public String getClientId() {
+        return clientId;
+    }
+
+    /**
+     * Sets the client identifier.
+     *
+     * @param clientId The client identifier.
+     */
+    public void setClientId(String clientId) {
+        this.clientId = clientId;
+    }
+
+    /**
+     * Returns the redirection URI.
+     *
+     * @return The redirection URI.
+     */
+    public String getRedirectUri() {
+        return redirectUri;
+    }
+
+    /**
+     * Sets the redirection URI.
+     *
+     * @param redirectUri The redirection URI.
+     */
+    public void setRedirectUri(String redirectUri) {
+        this.redirectUri = redirectUri;
+    }
+
+    /**
+     * Returns an opaque value used by the client to maintain state between the request and callback. The authorization
+     * server includes this value when redirecting the user-agent back to the client. The parameter should be used for
+     * preventing cross-site request forgery.
+     *
+     * @return The state between the request and callback.
+     */
+    public String getState() {
+        return state;
+    }
+
+    /**
+     * Sets the state between the request and callback.
+     *
+     * @param state The state between the request and callback.
+     */
+    public void setState(String state) {
+        this.state = state;
+    }
+
+    /**
+     * Returns the mechanism to be used for returning parameters from the Authorization Endpoint.
+     *
+     * @return The response mode.
+     */
+    public String getResponseMode() {
+        return responseMode;
+    }
+
+    /**
+     * Sets the mechanism to be used for returning parameters from the Authorization Endpoint.
+     *
+     * @param responseMode The response mode.
+     */
+    public void setResponseMode(String responseMode) {
+        this.responseMode = responseMode;
+    }
+
+    /**
+     * Return a string value used to associate a user agent session with an ID Token, and to mitigate replay attacks.
+     *
+     * @return The nonce value.
+     */
+    public String getNonce() {
+        return nonce;
+    }
+
+    /**
+     * Sets a string value used to associate a user agent session with an ID Token, and to mitigate replay attacks.
+     *
+     * @param nonce The nonce value.
+     */
+    public void setNonce(String nonce) {
+        this.nonce = nonce;
+    }
+
+    /**
+     * Returns an ASCII string value that specifies how the Authorization Server displays the authentication page
+     * to the End-User.
+     *
+     * @return The display value.
+     */
+    public String getDisplay() {
+        return display;
+    }
+
+    /**
+     * Sets an ASCII string value that specifies how the Authorization Server displays the authentication page
+     * to the End-User.
+     *
+     * @param display The display value
+     */
+    public void setDisplay(String display) {
+        this.display = display;
+    }
+
+    /**
+     * Returns a space delimited list of ASCII strings that can contain the values
+     * login, consent, select_account, and none.
+     *
+     * @return A list of prompt options.
+     */
+    public String getPrompt() {
+        return prompt;
+    }
+
+    /**
+     * Sets a space delimited list of ASCII strings that can contain the values
+     * login, consent, select_account, and none.
+     *
+     * @param prompt A list of prompt options.
+     */
+    public void setPrompt(String prompt) {
+        this.prompt = prompt;
+    }
+
+    public Integer getMaxAge() {
+        return maxAge;
+    }
+
+    public void setMaxAge(Integer maxAge) {
+        this.maxAge = maxAge;
+    }
+
+    public String getUiLocales() {
+        return uiLocales;
+    }
+
+    public void setUiLocales(String uiLocales) {
+        this.uiLocales = uiLocales;
+    }
+
+    public String getIdTokenHint() {
+        return idTokenHint;
+    }
+
+    public void setIdTokenHint(String idTokenHint) {
+        this.idTokenHint = idTokenHint;
+    }
+
+    public String getLoginHint() {
+        return loginHint;
+    }
+
+    public void setLoginHint(String loginHint) {
+        this.loginHint = StringEscapeUtils.escapeEcmaScript(loginHint);
+    }
+
+    public String getAcrValues() {
+        return acrValues;
+    }
+
+    public void setAcrValues(String acrValues) {
+        this.acrValues = acrValues;
+    }
+
+    public String getAmrValues() {
+        return amrValues;
+    }
+
+    public void setAmrValues(String amrValues) {
+        this.amrValues = amrValues;
+    }
+
+    /**
+     * Returns a JWT encoded OpenID Request Object.
+     *
+     * @return A JWT encoded OpenID Request Object.
+     */
+    public String getRequest() {
+        return request;
+    }
+
+    /**
+     * Sets a JWT encoded OpenID Request Object.
+     *
+     * @param request A JWT encoded OpenID Request Object.
+     */
+    public void setRequest(String request) {
+        this.request = request;
+    }
+
+    /**
+     * Returns an URL that points to an OpenID Request Object.
+     *
+     * @return An URL that points to an OpenID Request Object.
+     */
+    public String getRequestUri() {
+        return requestUri;
+    }
+
+    /**
+     * Sets an URL that points to an OpenID Request Object.
+     *
+     * @param requestUri An URL that points to an OpenID Request Object.
+     */
+    public void setRequestUri(String requestUri) {
+        this.requestUri = requestUri;
+    }
+
+    public String getSessionId() {
+        return sessionId;
+    }
+
+    public void setSessionId(String p_sessionId) {
+        sessionId = p_sessionId;
+    }
+
+    public void permissionGranted() {
+        final SessionId session = getSession();
+        permissionGranted(session);
+    }
+
+    public void permissionGranted(SessionId session) {
+        final HttpServletRequest httpRequest = (HttpServletRequest) externalContext.getRequest();
+        authorizeService.permissionGranted(httpRequest, session);
+    }
+
+    public void permissionDenied() {
+        final SessionId session = getSession();
+        authorizeService.permissionDenied(session);
+    }
+
+    private void authenticationFailedSessionInvalid() {
+        facesMessages.add(FacesMessage.SEVERITY_ERROR, "login.errorSessionInvalidMessage");
+        facesService.redirect("/error.xhtml");
+    }
+
+    public void invalidRequest() {
+        log.trace("invalidRequest");
+        StringBuilder sb = new StringBuilder();
+
+        sb.append(redirectUri);
+        if (redirectUri != null && redirectUri.contains("?")) {
+            sb.append("&");
+        } else {
+            sb.append("?");
+        }
+        sb.append(errorResponseFactory.getErrorAsQueryString(AuthorizeErrorResponseType.INVALID_REQUEST,
+                getState()));
+
+        facesService.redirectToExternalURL(sb.toString());
+    }
+
+    public void consentRequired() {
+        StringBuilder sb = new StringBuilder();
+
+        sb.append(redirectUri);
+        if (redirectUri != null && redirectUri.contains("?")) {
+            sb.append("&");
+        } else {
+            sb.append("?");
+        }
+        sb.append(errorResponseFactory.getErrorAsQueryString(AuthorizeErrorResponseType.CONSENT_REQUIRED, getState()));
+
+        facesService.redirectToExternalURL(sb.toString());
+    }
+
+    public String getCodeChallenge() {
+        return codeChallenge;
+    }
+
+    public void setCodeChallenge(String codeChallenge) {
+        this.codeChallenge = codeChallenge;
+    }
+
+    public String getCodeChallengeMethod() {
+        return codeChallengeMethod;
+    }
+
+    public void setCodeChallengeMethod(String codeChallengeMethod) {
+        this.codeChallengeMethod = codeChallengeMethod;
+    }
+
+    public String getClaims() {
+        return claims;
+    }
+
+    public void setClaims(String claims) {
+        this.claims = claims;
+    }
+
+    public String getAuthReqId() {
+        return authReqId;
+    }
+
+    public void setAuthReqId(String authReqId) {
+        this.authReqId = authReqId;
+    }
+
+    public String getBindingMessage() {
+        String bindingMessage = null;
+
+        if (Strings.isNotBlank(getAuthReqId())) {
+            final CibaRequestCacheControl cibaRequestCacheControl = cibaRequestService.getCibaRequest(authReqId);
+
+            if (cibaRequestCacheControl != null) {
+                bindingMessage = cibaRequestCacheControl.getBindingMessage();
+            }
+        }
+
+        return bindingMessage;
+    }
+
+    public String encodeParameters(String url, Map<String, Object> parameters) {
+        if (parameters.isEmpty()) return url;
+
+        StringBuilder builder = new StringBuilder(url);
+        for (Map.Entry<String, Object> param : parameters.entrySet()) {
+            String parameterName = param.getKey();
+            if (!containsParameter(url, parameterName)) {
+                Object parameterValue = param.getValue();
+                if (parameterValue instanceof Iterable) {
+                    for (Object value : (Iterable) parameterValue) {
+                        builder.append('&')
+                                .append(parameterName)
+                                .append('=');
+                        if (value != null) {
+                            builder.append(encode(value));
+                        }
+                    }
+                } else {
+                    builder.append('&')
+                            .append(parameterName)
+                            .append('=');
+                    if (parameterValue != null) {
+                        builder.append(encode(parameterValue));
+                    }
+                }
+            }
+        }
+        if (url.indexOf('?') < 0) {
+            builder.setCharAt(url.length(), '?');
+        }
+        return builder.toString();
+    }
+
+    private boolean containsParameter(String url, String parameterName) {
+        return url.indexOf('?' + parameterName + '=') > 0 ||
+                url.indexOf('&' + parameterName + '=') > 0;
+    }
+
+    private String encode(Object value) {
+        try {
+            return URLEncoder.encode(String.valueOf(value), "UTF-8");
+        } catch (UnsupportedEncodingException iee) {
+            throw new RuntimeException(iee);
+        }
+    }
+
+    private boolean hasOnlyOpenidScope() {
+        return getScopes() != null && getScopes().size() == 1 && getScopes().get(0).getId().equals("openid");
+    }
+
+    protected void handleSessionInvalid() {
+        errorHandlerService.handleError(Authenticator.INVALID_SESSION_MESSAGE, AuthorizeErrorResponseType.AUTHENTICATION_SESSION_INVALID, "Create authorization request to start new authentication session.");
+    }
+
+
+    protected void handleScriptError(String facesMessageId) {
+        errorHandlerService.handleError(Authenticator.AUTHENTICATION_ERROR_MESSAGE, AuthorizeErrorResponseType.INVALID_AUTHENTICATION_METHOD, "Contact administrator to fix specific ACR method issue.");
+    }
+
+}
diff --git a/oxAuth/Server/src/main/java/org/gluu/oxauth/authorize/ws/rs/AuthorizeRestWebService.java b/oxAuth/Server/src/main/java/org/gluu/oxauth/authorize/ws/rs/AuthorizeRestWebService.java
new file mode 100644
index 00000000..fda492f4
--- /dev/null
+++ b/oxAuth/Server/src/main/java/org/gluu/oxauth/authorize/ws/rs/AuthorizeRestWebService.java
@@ -0,0 +1,194 @@
+/*
+ * oxAuth is available under the MIT License (2008). See http://opensource.org/licenses/MIT for full text.
+ *
+ * Copyright (c) 2014, Gluu
+ */
+
+package org.gluu.oxauth.authorize.ws.rs;
+
+import org.gluu.oxauth.model.authorize.AuthorizeRequestParam;
+
+import javax.servlet.http.HttpServletRequest;
+import javax.servlet.http.HttpServletResponse;
+import javax.ws.rs.*;
+import javax.ws.rs.core.Context;
+import javax.ws.rs.core.MediaType;
+import javax.ws.rs.core.Response;
+import javax.ws.rs.core.SecurityContext;
+
+/**
+ * <p>
+ * Provides interface for request authorization through REST web services.
+ * </p>
+ * <p>
+ * An authorization grant is a credential representing the resource owner's
+ * authorization (to access its protected resources) used by the client to
+ * obtain an access token.
+ * </p>
+ *
+ * @author Javier Rojas Blum
+ * @version October 7, 2019
+ */
+public interface AuthorizeRestWebService {
+
+    /**
+     * Requests authorization.
+     *
+     * @param scope               The scope of the access request.
+     * @param responseType        The response type informs the authorization server of the desired response type:
+     *                            <strong>code</strong>, <strong>token</strong>, <strong>id_token</strong>
+     *                            a combination of them. The response type parameter is mandatory.
+     * @param clientId            The client identifier.
+     * @param redirectUri         Redirection URI
+     * @param state               An opaque value used by the client to maintain state between
+     *                            the request and callback. The authorization server includes
+     *                            this value when redirecting the user-agent back to the client.
+     *                            The parameter should be used for preventing cross-site request
+     *                            forgery.
+     * @param responseMode        Informs the Authorization Server of the mechanism to be used for returning parameters
+     *                            from the Authorization Endpoint. This use of this parameter is NOT RECOMMENDED when the
+     *                            Response Mode that would be requested is the default mode specified for the Response Type.
+     * @param nonce               A string value used to associate a user agent session with an ID Token,
+     *                            and to mitigate replay attacks.
+     * @param display             An ASCII string value that specifies how the Authorization Server displays the
+     *                            authentication page to the End-User.
+     * @param prompt              A space delimited list of ASCII strings that can contain the values login, consent,
+     *                            select_account, and none.
+     * @param maxAge              Maximum Authentication Age. Specifies the allowable elapsed time in seconds since the
+     *                            last time the End-User was actively authenticated.
+     * @param uiLocales           End-User's preferred languages and scripts for the user interface, represented as a
+     *                            space-separated list of BCP47 [RFC5646] language tag values, ordered by preference.
+     * @param idTokenHint         Previously issued ID Token passed to the Authorization Server as a hint about the
+     *                            End-User's current or past authenticated session with the Client.
+     * @param loginHint           Hint to the Authorization Server about the login identifier the End-User might use to
+     *                            log in (if necessary).
+     * @param acrValues           Requested Authentication Context Class Reference values. Space-separated string that
+     *                            specifies the acr values that the Authorization Server is being requested to use for
+     *                            processing this Authentication Request, with the values appearing in order of preference.
+     * @param amrValues           Requested Authentication Methods References. JSON array of strings that are identifiers
+     *                            for authentication methods used in the authentication. For instance, values might indicate
+     *                            that both password and OTP authentication methods were used. The definition of particular
+     *                            values to be used in the amr Claim is beyond the scope of this specification.The amr value
+     *                            is an array of case sensitive strings.
+     * @param request             A JWT  encoded OpenID Request Object.
+     * @param requestUri          An URL that points to an OpenID Request Object.
+     * @param requestSessionId    request session id
+     * @param sessionId           session id
+     * @param originHeaders
+     * @param codeChallenge       PKCE code challenge
+     * @param codeChallengeMethod PKCE code challenge method
+     * @param authReqId           A unique identifier to identify the CIBA authentication request made by the Client.
+     * @param httpRequest         http request
+     * @param securityContext     An injectable interface that provides access to security
+     *                            related information.
+     * @return <p>
+     * When the responseType parameter is set to <strong>code</strong>:
+     * </p>
+     * <p>
+     * If the resource owner grants the access request, the
+     * authorization server issues an authorization code and delivers it
+     * to the client by adding the following parameters to the query
+     * component of the redirection URI using the
+     * application/x-www-form-urlencoded format:
+     * </p>
+     * <dl>
+     * <dt>code</dt>
+     * <dd>
+     * The authorization code generated by the authorization server.</dd>
+     * <dt>state</dt>
+     * <dd>
+     * If the state parameter was present in the client authorization
+     * request. The exact value received from the client.</dd>
+     * </dl>
+     * <p/>
+     * <p>
+     * When the responseType parameter is set to <strong>token</strong>:
+     * </p>
+     * <p>
+     * If the resource owner grants the access request, the
+     * authorization server issues an access token and delivers it to
+     * the client by adding the following parameters to the fragment
+     * component of the redirection URI using the
+     * application/x-www-form-urlencoded format.
+     * </p>
+     * <dl>
+     * <dt>access_token</dt>
+     * <dd>The access token issued by the authorization server.</dd>
+     * <dt>token_type</dt>
+     * <dd>The type of the token issued. Value is case insensitive.</dd>
+     * <dt>expires_in</dt>
+     * <dd>The lifetime in seconds of the access token. For example, the
+     * value 3600 denotes that the access token will expire in one hour
+     * from the time the response was generated.</dd>
+     * <dt>scope</dt>
+     * <dd>The scope of the access token.</dd>
+     * <dt>state</dt>
+     * <dd>If the state parameter was present in the client
+     * authorization request. The exact value received from the client.</dd>
+     * </dl>
+     */
+    @GET
+    @Path("/authorize")
+    @Produces({MediaType.TEXT_PLAIN})
+    Response requestAuthorizationGet(
+            @QueryParam("scope") String scope,
+            @QueryParam("response_type") String responseType,
+            @QueryParam("client_id") String clientId,
+            @QueryParam("redirect_uri") String redirectUri,
+            @QueryParam("state") String state,
+            @QueryParam("response_mode") String responseMode,
+            @QueryParam("nonce") String nonce,
+            @QueryParam("display") String display,
+            @QueryParam("prompt") String prompt,
+            @QueryParam("max_age") Integer maxAge,
+            @QueryParam("ui_locales") String uiLocales,
+            @QueryParam("id_token_hint") String idTokenHint,
+            @QueryParam("login_hint") String loginHint,
+            @QueryParam("acr_values") String acrValues,
+            @QueryParam("amr_values") String amrValues,
+            @QueryParam("request") String request,
+            @QueryParam("request_uri") String requestUri,
+            @QueryParam("request_session_id") String requestSessionId,
+            @QueryParam("session_id") String sessionId,
+            @QueryParam("origin_headers") String originHeaders,
+            @QueryParam("code_challenge") String codeChallenge,
+            @QueryParam("code_challenge_method") String codeChallengeMethod,
+            @QueryParam(AuthorizeRequestParam.CUSTOM_RESPONSE_HEADERS) String customResponseHeaders,
+            @QueryParam("claims") String claims,
+            @QueryParam("auth_req_id") String authReqId,
+            @Context HttpServletRequest httpRequest,
+            @Context HttpServletResponse httpResponse,
+            @Context SecurityContext securityContext);
+
+    @POST
+    @Path("/authorize")
+    @Produces({MediaType.TEXT_PLAIN})
+    Response requestAuthorizationPost(
+            @FormParam("scope") String scope,
+            @FormParam("response_type") String responseType,
+            @FormParam("client_id") String clientId,
+            @FormParam("redirect_uri") String redirectUri,
+            @FormParam("state") String state,
+            @QueryParam("response_mode") String responseMode,
+            @FormParam("nonce") String nonce,
+            @FormParam("display") String display,
+            @FormParam("prompt") String prompt,
+            @FormParam("max_age") Integer maxAge,
+            @FormParam("ui_locales") String uiLocales,
+            @FormParam("id_token_hint") String idTokenHint,
+            @FormParam("login_hint") String loginHint,
+            @FormParam("acr_values") String acrValues,
+            @FormParam("amr_values") String amrValues,
+            @FormParam("request") String request,
+            @FormParam("request_uri") String requestUri,
+            @FormParam("request_session_id") String requestSessionId,
+            @FormParam("session_id") String sessionId,
+            @FormParam("origin_headers") String originHeaders,
+            @QueryParam("code_challenge") String codeChallenge,
+            @QueryParam("code_challenge_method") String codeChallengeMethod,
+            @QueryParam(AuthorizeRequestParam.CUSTOM_RESPONSE_HEADERS) String customResponseHeaders,
+            @QueryParam("claims") String claims,
+            @Context HttpServletRequest httpRequest,
+            @Context HttpServletResponse httpResponse,
+            @Context SecurityContext securityContext);
+}
\ No newline at end of file
diff --git a/oxAuth/Server/src/main/java/org/gluu/oxauth/authorize/ws/rs/AuthorizeRestWebServiceImpl.java b/oxAuth/Server/src/main/java/org/gluu/oxauth/authorize/ws/rs/AuthorizeRestWebServiceImpl.java
new file mode 100644
index 00000000..930cca1c
--- /dev/null
+++ b/oxAuth/Server/src/main/java/org/gluu/oxauth/authorize/ws/rs/AuthorizeRestWebServiceImpl.java
@@ -0,0 +1,1056 @@
+/*
+ * oxAuth is available under the MIT License (2008). See http://opensource.org/licenses/MIT for full text.
+ *
+ * Copyright (c) 2014, Gluu
+ */
+
+package org.gluu.oxauth.authorize.ws.rs;
+
+import com.google.common.base.Function;
+import com.google.common.collect.Lists;
+import com.google.common.collect.Maps;
+import org.apache.commons.collections.CollectionUtils;
+import org.apache.commons.lang.ArrayUtils;
+import org.apache.commons.lang.StringUtils;
+import org.gluu.oxauth.audit.ApplicationAuditLogger;
+import org.gluu.oxauth.ciba.CIBAPingCallbackService;
+import org.gluu.oxauth.ciba.CIBAPushTokenDeliveryService;
+import org.gluu.oxauth.model.audit.Action;
+import org.gluu.oxauth.model.audit.OAuth2AuditLog;
+import org.gluu.oxauth.model.authorize.*;
+import org.gluu.oxauth.model.common.*;
+import org.gluu.oxauth.model.config.ConfigurationFactory;
+import org.gluu.oxauth.model.config.Constants;
+import org.gluu.oxauth.model.configuration.AppConfiguration;
+import org.gluu.oxauth.model.crypto.AbstractCryptoProvider;
+import org.gluu.oxauth.model.crypto.binding.TokenBindingMessage;
+import org.gluu.oxauth.model.error.ErrorResponseFactory;
+import org.gluu.oxauth.model.exception.AcrChangedException;
+import org.gluu.oxauth.model.exception.InvalidSessionStateException;
+import org.gluu.oxauth.model.jwt.JwtClaimName;
+import org.gluu.oxauth.model.ldap.ClientAuthorization;
+import org.gluu.oxauth.model.registration.Client;
+import org.gluu.oxauth.model.session.SessionId;
+import org.gluu.oxauth.model.session.SessionIdState;
+import org.gluu.oxauth.model.token.JsonWebResponse;
+import org.gluu.oxauth.model.token.JwrService;
+import org.gluu.oxauth.model.util.Util;
+import org.gluu.oxauth.security.Identity;
+import org.gluu.oxauth.service.*;
+import org.gluu.oxauth.service.ciba.CibaRequestService;
+import org.gluu.oxauth.service.external.ExternalPostAuthnService;
+import org.gluu.oxauth.service.external.ExternalResourceOwnerPasswordCredentialsService;
+import org.gluu.oxauth.service.external.ExternalUpdateTokenService;
+import org.gluu.oxauth.service.external.context.ExternalPostAuthnContext;
+import org.gluu.oxauth.service.external.context.ExternalResourceOwnerPasswordCredentialsContext;
+import org.gluu.oxauth.service.external.context.ExternalUpdateTokenContext;
+import org.gluu.oxauth.service.external.session.SessionEvent;
+import org.gluu.oxauth.service.external.session.SessionEventType;
+import org.gluu.oxauth.util.QueryStringDecoder;
+import org.gluu.oxauth.util.RedirectUri;
+import org.gluu.oxauth.util.RedirectUtil;
+import org.gluu.oxauth.util.ServerUtil;
+import org.gluu.persist.exception.EntryPersistenceException;
+import org.gluu.util.StringHelper;
+import org.slf4j.Logger;
+
+import javax.inject.Inject;
+import javax.servlet.http.HttpServletRequest;
+import javax.servlet.http.HttpServletResponse;
+import javax.ws.rs.HttpMethod;
+import javax.ws.rs.Path;
+import javax.ws.rs.WebApplicationException;
+import javax.ws.rs.core.Context;
+import javax.ws.rs.core.MediaType;
+import javax.ws.rs.core.Response;
+import javax.ws.rs.core.Response.ResponseBuilder;
+import javax.ws.rs.core.SecurityContext;
+import java.net.URI;
+import java.util.*;
+import java.util.Map.Entry;
+
+import static org.apache.commons.lang.BooleanUtils.isTrue;
+import static org.gluu.oxauth.model.util.StringUtils.implode;
+
+/**
+ * Implementation for request authorization through REST web services.
+ *
+ * @author Javier Rojas Blum
+ * @version May 9, 2020
+ */
+@Path("/")
+public class AuthorizeRestWebServiceImpl implements AuthorizeRestWebService {
+
+    @Inject
+    private Logger log;
+
+    @Inject
+    private ApplicationAuditLogger applicationAuditLogger;
+
+    @Inject
+    private ErrorResponseFactory errorResponseFactory;
+
+    @Inject
+    private AuthorizationGrantList authorizationGrantList;
+
+    @Inject
+    private ClientService clientService;
+
+    @Inject
+    private UserService userService;
+
+    @Inject
+    private Identity identity;
+
+    @Inject
+    private AuthenticationFilterService authenticationFilterService;
+
+    @Inject
+    private SessionIdService sessionIdService;
+
+    @Inject CookieService cookieService;
+
+    @Inject
+    private ScopeChecker scopeChecker;
+
+    @Inject
+    private ClientAuthorizationsService clientAuthorizationsService;
+
+    @Inject
+    private RequestParameterService requestParameterService;
+
+    @Inject
+    private AppConfiguration appConfiguration;
+
+    @Inject
+    private ConfigurationFactory �onfigurationFactory;
+
+    @Inject
+    private AbstractCryptoProvider cryptoProvider;
+
+    @Inject
+    private AuthorizeRestWebServiceValidator authorizeRestWebServiceValidator;
+
+    @Inject
+    private CIBAPushTokenDeliveryService cibaPushTokenDeliveryService;
+
+    @Inject
+    private CIBAPingCallbackService cibaPingCallbackService;
+
+    @Inject
+    private ExternalPostAuthnService externalPostAuthnService;
+
+    @Inject
+    private CibaRequestService cibaRequestService;
+
+    @Inject
+    private DeviceAuthorizationService deviceAuthorizationService;
+
+    @Inject
+    private AttributeService attributeService;
+
+    @Inject
+    private ExternalUpdateTokenService externalUpdateTokenService;
+
+    @Inject
+    private ExternalResourceOwnerPasswordCredentialsService externalResourceOwnerPasswordCredentialsService;
+
+    @Context
+    private HttpServletRequest servletRequest;
+
+    @Override
+    public Response requestAuthorizationGet(
+            String scope, String responseType, String clientId, String redirectUri, String state, String responseMode,
+            String nonce, String display, String prompt, Integer maxAge, String uiLocales, String idTokenHint,
+            String loginHint, String acrValues, String amrValues, String request, String requestUri,
+            String requestSessionId, String sessionId, String originHeaders,
+            String codeChallenge, String codeChallengeMethod, String customResponseHeaders, String claims, String authReqId,
+            HttpServletRequest httpRequest, HttpServletResponse httpResponse, SecurityContext securityContext) {
+        return requestAuthorization(scope, responseType, clientId, redirectUri, state, responseMode, nonce, display,
+                prompt, maxAge, uiLocales, idTokenHint, loginHint, acrValues, amrValues, request, requestUri,
+                requestSessionId, sessionId, HttpMethod.GET, originHeaders, codeChallenge, codeChallengeMethod,
+                customResponseHeaders, claims, authReqId, httpRequest, httpResponse, securityContext);
+    }
+
+    @Override
+    public Response requestAuthorizationPost(
+            String scope, String responseType, String clientId, String redirectUri, String state, String responseMode,
+            String nonce, String display, String prompt, Integer maxAge, String uiLocales, String idTokenHint,
+            String loginHint, String acrValues, String amrValues, String request, String requestUri,
+            String requestSessionId, String sessionId, String originHeaders,
+            String codeChallenge, String codeChallengeMethod, String customResponseHeaders, String claims,
+            HttpServletRequest httpRequest, HttpServletResponse httpResponse, SecurityContext securityContext) {
+        return requestAuthorization(scope, responseType, clientId, redirectUri, state, responseMode, nonce, display,
+                prompt, maxAge, uiLocales, idTokenHint, loginHint, acrValues, amrValues, request, requestUri,
+                requestSessionId, sessionId, HttpMethod.POST, originHeaders, codeChallenge, codeChallengeMethod,
+                customResponseHeaders, claims, null, httpRequest, httpResponse, securityContext);
+    }
+
+    private Response requestAuthorization(
+            String scope, String responseType, String clientId, String redirectUri, String state, String respMode,
+            String nonce, String display, String prompt, Integer maxAge, String uiLocalesStr, String idTokenHint,
+            String loginHint, String acrValuesStr, String amrValuesStr, String request, String requestUri, String requestSessionId,
+            String sessionId, String method, String originHeaders, String codeChallenge, String codeChallengeMethod,
+            String customRespHeaders, String claims, String authReqId,
+            HttpServletRequest httpRequest, HttpServletResponse httpResponse, SecurityContext securityContext) {
+        scope = ServerUtil.urlDecode(scope); // it may be encoded in uma case
+        requestUri = ServerUtil.urlDecode(requestUri); // requestUri usually contains encoded characters.
+
+        String tokenBindingHeader = httpRequest.getHeader("Sec-Token-Binding");
+
+        OAuth2AuditLog oAuth2AuditLog = new OAuth2AuditLog(ServerUtil.getIpAddress(httpRequest), Action.USER_AUTHORIZATION);
+        oAuth2AuditLog.setClientId(clientId);
+        oAuth2AuditLog.setScope(scope);
+
+        // ATTENTION : please do not add more parameter in this debug method because it will not work with Seam 2.2.2.Final ,
+        // there is limit of 10 parameters (hardcoded), see: org.jboss.seam.core.Interpolator#interpolate
+        log.debug("Attempting to request authorization: "
+                        + "responseType = {}, clientId = {}, scope = {}, redirectUri = {}, nonce = {}, "
+                        + "state = {}, request = {}, isSecure = {}, requestSessionId = {}, sessionId = {}",
+                responseType, clientId, scope, redirectUri, nonce,
+                state, request, securityContext.isSecure(), requestSessionId, sessionId);
+
+        log.debug("Attempting to request authorization: "
+                        + "acrValues = {}, amrValues = {}, originHeaders = {}, codeChallenge = {}, codeChallengeMethod = {}, "
+                        + "customRespHeaders = {}, claims = {}, tokenBindingHeader = {}",
+                acrValuesStr, amrValuesStr, originHeaders, codeChallenge, codeChallengeMethod, customRespHeaders, claims, tokenBindingHeader);
+
+        ResponseBuilder builder = Response.ok();
+
+        List<String> uiLocales = Util.splittedStringAsList(uiLocalesStr, " ");
+        List<ResponseType> responseTypes = ResponseType.fromString(responseType, " ");
+        List<Prompt> prompts = Prompt.fromString(prompt, " ");
+        List<String> acrValues = Util.splittedStringAsList(acrValuesStr, " ");
+        List<String> amrValues = Util.splittedStringAsList(amrValuesStr, " ");
+        ResponseMode responseMode = ResponseMode.getByValue(respMode);
+
+        Map<String, String> customParameters = requestParameterService.getCustomParameters(
+                QueryStringDecoder.decode(httpRequest.getQueryString(),true));
+        if (HttpMethod.POST.endsWith(method)) {
+            requestParameterService.addCustomParameters(httpRequest, customParameters);
+        }
+
+        SessionId sessionUser = identity.getSessionId();
+        User user = sessionIdService.getUser(sessionUser);
+
+        try {
+            Map<String, String> customResponseHeaders = Util.jsonObjectArrayStringAsMap(customRespHeaders);
+
+            updateSessionForROPC(httpRequest, sessionUser);
+
+            Client client = authorizeRestWebServiceValidator.validateClient(clientId, state);
+            String deviceAuthzUserCode = deviceAuthorizationService.getUserCodeFromSession(httpRequest);
+            redirectUri = authorizeRestWebServiceValidator.validateRedirectUri(client, redirectUri, state, deviceAuthzUserCode, httpRequest);
+            log.trace("Validated URI: {}", redirectUri);
+            checkAcrChanged(acrValuesStr, prompts, sessionUser); // check after redirect uri is validated
+
+            RedirectUriResponse redirectUriResponse = new RedirectUriResponse(new RedirectUri(redirectUri, responseTypes, responseMode), state, httpRequest, errorResponseFactory);
+            redirectUriResponse.setFapiCompatible(appConfiguration.getFapiCompatibility());
+
+            Set<String> scopes = scopeChecker.checkScopesPolicy(client, scope);
+            boolean isPromptFromJwt = false;
+
+            authorizeRestWebServiceValidator.validateRequestParameterSupported(request, state);
+            authorizeRestWebServiceValidator.validateRequestUriParameterSupported(requestUri, state);
+
+            JwtAuthorizationRequest jwtRequest = null;
+            if (StringUtils.isNotBlank(request) || StringUtils.isNotBlank(requestUri)) {
+                try {
+                    jwtRequest = JwtAuthorizationRequest.createJwtRequest(request, requestUri, client, redirectUriResponse, cryptoProvider, appConfiguration);
+
+                    if (jwtRequest == null) {
+                        throw createInvalidJwtRequestException(redirectUriResponse, "Failed to parse jwt.");
+                    }
+                    if (StringUtils.isNotBlank(jwtRequest.getState())) {
+                        state = jwtRequest.getState();
+                        redirectUriResponse.setState(state);
+                    }
+                    if (appConfiguration.getFapiCompatibility() && StringUtils.isBlank(jwtRequest.getState())) {
+                        state = ""; // #1250 - FAPI : discard state if in JWT we don't have state
+                        redirectUriResponse.setState("");
+                    }
+
+                    authorizeRestWebServiceValidator.validateRequestObject(jwtRequest, redirectUriResponse);
+
+                    // MUST be equal
+                    if (!jwtRequest.getResponseTypes().containsAll(responseTypes) || !responseTypes.containsAll(jwtRequest.getResponseTypes())) {
+                        throw createInvalidJwtRequestException(redirectUriResponse, "The responseType parameter is not the same in the JWT");
+                    }
+                    if (StringUtils.isBlank(jwtRequest.getClientId()) || !jwtRequest.getClientId().equals(clientId)) {
+                        throw createInvalidJwtRequestException(redirectUriResponse, "The clientId parameter is not the same in the JWT");
+                    }
+
+                    // JWT wins
+                    if (!jwtRequest.getScopes().isEmpty()) {
+                        if (!scopes.contains("openid")) { // spec: Even if a scope parameter is present in the Request Object value, a scope parameter MUST always be passed using the OAuth 2.0 request syntax containing the openid scope value
+                            throw new WebApplicationException(Response
+                                    .status(Response.Status.BAD_REQUEST)
+                                    .entity(errorResponseFactory.getErrorAsJson(AuthorizeErrorResponseType.INVALID_SCOPE, state, "scope parameter does not contain openid value which is required."))
+                                    .build());
+                        }
+                        scopes = scopeChecker.checkScopesPolicy(client, Lists.newArrayList(jwtRequest.getScopes()));
+                    }
+                    if (jwtRequest.getRedirectUri() != null && !jwtRequest.getRedirectUri().equals(redirectUri)) {
+                        throw createInvalidJwtRequestException(redirectUriResponse, "The redirect_uri parameter is not the same in the JWT");
+                    }
+                    if (StringUtils.isNotBlank(jwtRequest.getNonce())) {
+                        nonce = jwtRequest.getNonce();
+                    }
+                    if (jwtRequest.getDisplay() != null && StringUtils.isNotBlank(jwtRequest.getDisplay().getParamName())) {
+                        display = jwtRequest.getDisplay().getParamName();
+                    }
+                    if (!jwtRequest.getPrompts().isEmpty()) {
+                        prompts = Lists.newArrayList(jwtRequest.getPrompts());
+                        isPromptFromJwt = true;
+                    }
+                    if (jwtRequest.getResponseMode() != null) {
+                        redirectUriResponse.getRedirectUri().setResponseMode(jwtRequest.getResponseMode());
+                    }
+
+                    final IdTokenMember idTokenMember = jwtRequest.getIdTokenMember();
+                    if (idTokenMember != null) {
+                        if (idTokenMember.getMaxAge() != null) {
+                            maxAge = idTokenMember.getMaxAge();
+                        }
+                        final Claim acrClaim = idTokenMember.getClaim(JwtClaimName.AUTHENTICATION_CONTEXT_CLASS_REFERENCE);
+                        if (acrClaim != null && acrClaim.getClaimValue() != null) {
+                            acrValuesStr = acrClaim.getClaimValue().getValueAsString();
+                            acrValues = Util.splittedStringAsList(acrValuesStr, " ");
+                        }
+
+                        Claim userIdClaim = idTokenMember.getClaim(JwtClaimName.SUBJECT_IDENTIFIER);
+                        if (userIdClaim != null && userIdClaim.getClaimValue() != null
+                                && userIdClaim.getClaimValue().getValue() != null) {
+                            String userIdClaimValue = userIdClaim.getClaimValue().getValue();
+
+                            if (user != null) {
+                                String userId = user.getUserId();
+
+                                if (!userId.equalsIgnoreCase(userIdClaimValue)) {
+                                    builder = redirectUriResponse.createErrorBuilder(AuthorizeErrorResponseType.USER_MISMATCHED);
+                                    applicationAuditLogger.sendMessage(oAuth2AuditLog);
+                                    return builder.build();
+                                }
+                            }
+                        }
+                    }
+                    requestParameterService.getCustomParameters(jwtRequest, customParameters);
+                } catch (WebApplicationException e) {
+                    throw e;
+                } catch (Exception e) {
+                    log.error("Invalid JWT authorization request. Message : " + e.getMessage(), e);
+                    throw createInvalidJwtRequestException(redirectUriResponse, "Invalid JWT authorization request");
+                }
+            }
+            if (!cibaRequestService.hasCibaCompatibility(client)) {
+                if (appConfiguration.getFapiCompatibility() && jwtRequest == null) {
+                    throw redirectUriResponse.createWebException(AuthorizeErrorResponseType.INVALID_REQUEST);
+                }
+                authorizeRestWebServiceValidator.validateRequestJwt(request, requestUri, redirectUriResponse);
+            }
+            authorizeRestWebServiceValidator.validate(responseTypes, prompts, nonce, state, redirectUri, httpRequest, client, responseMode);
+
+            if (CollectionUtils.isEmpty(acrValues) && !ArrayUtils.isEmpty(client.getDefaultAcrValues())) {
+                acrValues = Lists.newArrayList(client.getDefaultAcrValues());
+            }
+
+            if (scopes.contains(ScopeConstants.OFFLINE_ACCESS) && !client.getTrustedClient()) {
+                if (!responseTypes.contains(ResponseType.CODE)) {
+                    log.trace("Removed (ignored) offline_scope. Can't find `code` in response_type which is required.");
+                    scopes.remove(ScopeConstants.OFFLINE_ACCESS);
+                }
+
+                if (scopes.contains(ScopeConstants.OFFLINE_ACCESS) && !prompts.contains(Prompt.CONSENT)) {
+                    log.error("Removed offline_access. Can't find prompt=consent. Consent is required for offline_access.");
+                    scopes.remove(ScopeConstants.OFFLINE_ACCESS);
+                }
+            }
+
+            final boolean isResponseTypeValid = AuthorizeParamsValidator.validateResponseTypes(responseTypes, client)
+                    && AuthorizeParamsValidator.validateGrantType(responseTypes, client.getGrantTypes(), appConfiguration.getGrantTypesSupported());
+
+            if (!isResponseTypeValid) {
+                throw new WebApplicationException(Response
+                        .status(Response.Status.BAD_REQUEST)
+                        .entity(errorResponseFactory.getErrorAsJson(AuthorizeErrorResponseType.UNSUPPORTED_RESPONSE_TYPE, state, ""))
+                        .build());
+            }
+
+            AuthorizationGrant authorizationGrant = null;
+
+            User ropcUser = executeRopcIfRequired(user, httpRequest, httpResponse);
+            if (ropcUser != null) {
+                user = ropcUser;
+                if (sessionUser == null) {
+                    log.trace("Generating authenticated session.");
+                    Map<String, String> genericRequestMap = getGenericRequestMap(httpRequest);
+
+                    Map<String, String> parameterMap = Maps.newHashMap(genericRequestMap);
+                    Map<String, String> requestParameterMap = requestParameterService.getAllowedParameters(parameterMap);
+                    sessionUser = sessionIdService.generateAuthenticatedSessionId(httpRequest, user.getDn(), prompt);
+                    sessionUser.setSessionAttributes(requestParameterMap);
+
+                    cookieService.createSessionIdCookie(sessionUser, httpRequest, httpResponse, false);
+                    sessionIdService.updateSessionId(sessionUser);
+                }
+            }
+
+            log.trace("User: {}, prompts: {}", user, prompts);
+            if (user == null) {
+                identity.logout();
+                if (prompts.contains(Prompt.NONE)) {
+                    if (authenticationFilterService.isEnabled()) {
+                        Map<String, String> params;
+                        if (method.equals(HttpMethod.GET)) {
+                            params = QueryStringDecoder.decode(httpRequest.getQueryString());
+                        } else {
+                            params = getGenericRequestMap(httpRequest);
+                        }
+
+                        String userDn = authenticationFilterService.processAuthenticationFilters(params);
+                        if (userDn != null) {
+                            Map<String, String> genericRequestMap = getGenericRequestMap(httpRequest);
+
+                            Map<String, String> parameterMap = Maps.newHashMap(genericRequestMap);
+                            Map<String, String> requestParameterMap = requestParameterService.getAllowedParameters(parameterMap);
+
+                            sessionUser = sessionIdService.generateAuthenticatedSessionId(httpRequest, userDn, prompt);
+                            sessionUser.setSessionAttributes(requestParameterMap);
+
+                            cookieService.createSessionIdCookie(sessionUser, httpRequest, httpResponse, false);
+                            sessionIdService.updateSessionId(sessionUser);
+                            user = userService.getUserByDn(sessionUser.getUserDn());
+                        } else {
+                            builder = redirectUriResponse.createErrorBuilder(AuthorizeErrorResponseType.LOGIN_REQUIRED);
+                            applicationAuditLogger.sendMessage(oAuth2AuditLog);
+                            return builder.build();
+                        }
+                    } else {
+                        builder = redirectUriResponse.createErrorBuilder(AuthorizeErrorResponseType.LOGIN_REQUIRED);
+                        applicationAuditLogger.sendMessage(oAuth2AuditLog);
+                        return builder.build();
+                    }
+                } else {
+                    if (prompts.contains(Prompt.LOGIN)) {
+                        unauthenticateSession(sessionId, httpRequest, isPromptFromJwt);
+                        sessionId = null;
+                        prompts.remove(Prompt.LOGIN);
+                    }
+
+                    return redirectToAuthorizationPage(redirectUriResponse.getRedirectUri(), responseTypes, scope, clientId,
+                            redirectUri, state, responseMode, nonce, display, prompts, maxAge, uiLocales,
+                            idTokenHint, loginHint, acrValues, amrValues, request, requestUri, originHeaders,
+                            codeChallenge, codeChallengeMethod, sessionId, claims, authReqId, customParameters, oAuth2AuditLog, httpRequest);
+                }
+            }
+
+            boolean authnMaxAgeValid = authorizeRestWebServiceValidator.isAuthnMaxAgeValid(maxAge, sessionUser, client);
+            if (!authnMaxAgeValid) {
+                unauthenticateSession(sessionId, httpRequest);
+                sessionId = null;
+
+                return redirectToAuthorizationPage(redirectUriResponse.getRedirectUri(), responseTypes, scope, clientId,
+                        redirectUri, state, responseMode, nonce, display, prompts, maxAge, uiLocales,
+                        idTokenHint, loginHint, acrValues, amrValues, request, requestUri, originHeaders,
+                        codeChallenge, codeChallengeMethod, sessionId, claims, authReqId, customParameters, oAuth2AuditLog, httpRequest);
+            }
+
+            oAuth2AuditLog.setUsername(user.getUserId());
+
+            ExternalPostAuthnContext postAuthnContext = new ExternalPostAuthnContext(client, sessionUser, httpRequest, httpResponse);
+            final boolean forceReAuthentication = externalPostAuthnService.externalForceReAuthentication(client, postAuthnContext);
+            if (forceReAuthentication) {
+                unauthenticateSession(sessionId, httpRequest);
+                sessionId = null;
+
+                return redirectToAuthorizationPage(redirectUriResponse.getRedirectUri(), responseTypes, scope, clientId,
+                        redirectUri, state, responseMode, nonce, display, prompts, maxAge, uiLocales,
+                        idTokenHint, loginHint, acrValues, amrValues, request, requestUri, originHeaders,
+                        codeChallenge, codeChallengeMethod, sessionId, claims, authReqId, customParameters, oAuth2AuditLog, httpRequest);
+            }
+
+            final boolean forceAuthorization = externalPostAuthnService.externalForceAuthorization(client, postAuthnContext);
+            if (forceAuthorization) {
+                return redirectToAuthorizationPage(redirectUriResponse.getRedirectUri(), responseTypes, scope, clientId,
+                        redirectUri, state, responseMode, nonce, display, prompts, maxAge, uiLocales,
+                        idTokenHint, loginHint, acrValues, amrValues, request, requestUri, originHeaders,
+                        codeChallenge, codeChallengeMethod, sessionId, claims, authReqId, customParameters, oAuth2AuditLog, httpRequest);
+            }
+
+            ClientAuthorization clientAuthorization = null;
+            boolean clientAuthorizationFetched = false;
+            if (scopes.size() > 0) {
+                if (prompts.contains(Prompt.CONSENT)) {
+                    return redirectToAuthorizationPage(redirectUriResponse.getRedirectUri(), responseTypes, scope, clientId,
+                            redirectUri, state, responseMode, nonce, display, prompts, maxAge, uiLocales,
+                            idTokenHint, loginHint, acrValues, amrValues, request, requestUri, originHeaders,
+                            codeChallenge, codeChallengeMethod, sessionId, claims, authReqId, customParameters, oAuth2AuditLog, httpRequest);
+                }
+
+                final boolean clientHasAllScopes = sessionIdService.hasClientAllScopes(sessionUser, clientId, scopes);
+                final boolean permissionGrantedForClient = isTrue(sessionUser.isPermissionGrantedForClient(clientId));
+                if (client.getTrustedClient() || (clientHasAllScopes && permissionGrantedForClient)) {
+                    log.trace("Granting access to session {}, clientTrusted: {}, clientHasAllScopes: {}, permissionGrantedForClient: {}", sessionUser.getId(), client.getTrustedClient(), clientHasAllScopes, permissionGrantedForClient);
+                    sessionUser.addPermission(clientId, true, scopes);
+                    sessionIdService.updateSessionId(sessionUser);
+                } else {
+                    clientAuthorization = clientAuthorizationsService.find(user.getAttribute("inum"), client.getClientId());
+                    if (clientAuthorization == null || clientAuthorization.getScopes() == null || clientAuthorization.getScopes().length == 0) {
+                        log.trace("Redirect to authorization page, no appropriate clientAuthorization, clientId: {}", client.getClientId());
+                        return redirectToAuthorizationPage(redirectUriResponse.getRedirectUri(), responseTypes, scope, clientId,
+                                redirectUri, state, responseMode, nonce, display, prompts, maxAge, uiLocales,
+                                idTokenHint, loginHint, acrValues, amrValues, request, requestUri, originHeaders,
+                                codeChallenge, codeChallengeMethod, sessionId, claims, authReqId, customParameters, oAuth2AuditLog, httpRequest);
+                    }
+
+                    clientAuthorizationFetched = true;
+                    log.trace("ClientAuthorization - scope: " + scope + ", dn: " + clientAuthorization.getDn() + ", requestedScope: " + scopes);
+                    if (Arrays.asList(clientAuthorization.getScopes()).containsAll(scopes)) {
+                        log.trace("Granting access to session {}, clientAuthorization has all scopes {}", sessionUser.getId(), clientAuthorization.getScopes());
+                        sessionUser.addPermission(clientId, true);
+                        sessionIdService.updateSessionId(sessionUser);
+                    } else {
+                        return redirectToAuthorizationPage(redirectUriResponse.getRedirectUri(), responseTypes, scope, clientId,
+                                redirectUri, state, responseMode, nonce, display, prompts, maxAge, uiLocales,
+                                idTokenHint, loginHint, acrValues, amrValues, request, requestUri, originHeaders,
+                                codeChallenge, codeChallengeMethod, sessionId, claims, authReqId, customParameters, oAuth2AuditLog, httpRequest);
+                    }
+                }
+            }
+
+            if (prompts.contains(Prompt.LOGIN)) {
+                boolean sessionUnauthenticated = false;
+
+                //  workaround for #1030 - remove only authenticated session, for set up acr we set it unauthenticated and then drop in AuthorizeAction
+                if (identity.getSessionId().getState() == SessionIdState.AUTHENTICATED) {
+                    sessionUnauthenticated = unauthenticateSession(sessionId, httpRequest, isPromptFromJwt);
+                }
+                sessionId = null;
+                prompts.remove(Prompt.LOGIN);
+
+                if (sessionUnauthenticated || identity.getSessionId().getState() == SessionIdState.UNAUTHENTICATED) {
+                    return redirectToAuthorizationPage(redirectUriResponse.getRedirectUri(), responseTypes, scope, clientId,
+                            redirectUri, state, responseMode, nonce, display, prompts, maxAge, uiLocales,
+                            idTokenHint, loginHint, acrValues, amrValues, request, requestUri, originHeaders,
+                            codeChallenge, codeChallengeMethod, sessionId, claims, authReqId, customParameters, oAuth2AuditLog, httpRequest);
+                }
+            }
+
+            if (prompts.contains(Prompt.CONSENT) || !sessionUser.isPermissionGrantedForClient(clientId)) {
+                if (!clientAuthorizationFetched) {
+                    clientAuthorization = clientAuthorizationsService.find(user.getAttribute("inum"), client.getClientId());
+                }
+                clientAuthorizationsService.clearAuthorizations(clientAuthorization, client.getPersistClientAuthorizations());
+
+                prompts.remove(Prompt.CONSENT);
+
+                return redirectToAuthorizationPage(redirectUriResponse.getRedirectUri(), responseTypes, scope, clientId,
+                        redirectUri, state, responseMode, nonce, display, prompts, maxAge, uiLocales,
+                        idTokenHint, loginHint, acrValues, amrValues, request, requestUri, originHeaders,
+                        codeChallenge, codeChallengeMethod, sessionId, claims, authReqId, customParameters, oAuth2AuditLog, httpRequest);
+            }
+
+            if (prompts.contains(Prompt.SELECT_ACCOUNT)) {
+                return redirectToSelectAccountPage(redirectUriResponse.getRedirectUri(), responseTypes, scope, clientId,
+                        redirectUri, state, responseMode, nonce, display, prompts, maxAge, uiLocales,
+                        idTokenHint, loginHint, acrValues, amrValues, request, requestUri, originHeaders,
+                        codeChallenge, codeChallengeMethod, sessionId, claims, authReqId, customParameters, oAuth2AuditLog, httpRequest);
+            }
+
+            AuthorizationCode authorizationCode = null;
+            if (responseTypes.contains(ResponseType.CODE)) {
+                authorizationGrant = authorizationGrantList.createAuthorizationCodeGrant(user, client,
+                        sessionUser.getAuthenticationTime());
+                authorizationGrant.setNonce(nonce);
+                authorizationGrant.setJwtAuthorizationRequest(jwtRequest);
+                authorizationGrant.setTokenBindingHash(TokenBindingMessage.getTokenBindingIdHashFromTokenBindingMessage(tokenBindingHeader, client.getIdTokenTokenBindingCnf()));
+                authorizationGrant.setScopes(scopes);
+                authorizationGrant.setCodeChallenge(codeChallenge);
+                authorizationGrant.setCodeChallengeMethod(codeChallengeMethod);
+                authorizationGrant.setClaims(claims);
+
+                // Store acr_values
+                authorizationGrant.setAcrValues(getAcrForGrant(acrValuesStr, sessionUser));
+                authorizationGrant.setSessionDn(sessionUser.getDn());
+                authorizationGrant.save(); // call save after object modification!!!
+
+                authorizationCode = authorizationGrant.getAuthorizationCode();
+
+                redirectUriResponse.getRedirectUri().addResponseParameter("code", authorizationCode.getCode());
+            }
+
+            final ExecutionContext executionContext = new ExecutionContext(httpRequest, httpResponse);
+            executionContext.setGrant(authorizationGrant);
+            executionContext.setClient(client);
+            executionContext.setAppConfiguration(appConfiguration);
+            executionContext.setAttributeService(attributeService);
+
+            AccessToken newAccessToken = null;
+            if (responseTypes.contains(ResponseType.TOKEN)) {
+                if (authorizationGrant == null) {
+                    authorizationGrant = authorizationGrantList.createImplicitGrant(user, client,
+                            sessionUser.getAuthenticationTime());
+                    authorizationGrant.setNonce(nonce);
+                    authorizationGrant.setJwtAuthorizationRequest(jwtRequest);
+                    authorizationGrant.setScopes(scopes);
+                    authorizationGrant.setClaims(claims);
+
+                    // Store acr_values
+                    authorizationGrant.setAcrValues(getAcrForGrant(acrValuesStr, sessionUser));
+                    authorizationGrant.setSessionDn(sessionUser.getDn());
+                    authorizationGrant.save(); // call save after object modification!!!
+                }
+
+                newAccessToken = authorizationGrant.createAccessToken(httpRequest.getHeader("X-ClientCert"), executionContext);
+
+                redirectUriResponse.getRedirectUri().addResponseParameter(AuthorizeResponseParam.ACCESS_TOKEN, newAccessToken.getCode());
+                redirectUriResponse.getRedirectUri().addResponseParameter(AuthorizeResponseParam.TOKEN_TYPE, newAccessToken.getTokenType().toString());
+                redirectUriResponse.getRedirectUri().addResponseParameter(AuthorizeResponseParam.EXPIRES_IN, newAccessToken.getExpiresIn() + "");
+            }
+
+            if (responseTypes.contains(ResponseType.ID_TOKEN)) {
+                boolean includeIdTokenClaims = Boolean.TRUE.equals(appConfiguration.getLegacyIdTokenClaims());
+                if (authorizationGrant == null) {
+                    includeIdTokenClaims = true;
+                    authorizationGrant = authorizationGrantList.createImplicitGrant(user, client,
+                            sessionUser.getAuthenticationTime());
+                    authorizationGrant.setNonce(nonce);
+                    authorizationGrant.setJwtAuthorizationRequest(jwtRequest);
+                    authorizationGrant.setScopes(scopes);
+                    authorizationGrant.setClaims(claims);
+
+                    // Store authentication acr values
+                    authorizationGrant.setAcrValues(getAcrForGrant(acrValuesStr, sessionUser));
+                    authorizationGrant.setSessionDn(sessionUser.getDn());
+                    authorizationGrant.save(); // call save after object modification, call is asynchronous!!!
+                }
+
+                ExternalUpdateTokenContext context = ExternalUpdateTokenContext.of(executionContext);
+                Function<JsonWebResponse, Void> postProcessor = externalUpdateTokenService.buildModifyIdTokenProcessor(context);
+
+                IdToken idToken = authorizationGrant.createIdToken(
+                        nonce, authorizationCode, newAccessToken, null,
+                        state, authorizationGrant, includeIdTokenClaims,
+                        JwrService.wrapWithSidFunction(TokenBindingMessage.createIdTokenTokingBindingPreprocessing(tokenBindingHeader, client.getIdTokenTokenBindingCnf()), sessionUser.getOutsideSid()),
+                        postProcessor, executionContext);
+
+                redirectUriResponse.getRedirectUri().addResponseParameter(AuthorizeResponseParam.ID_TOKEN, idToken.getCode());
+            }
+
+            if (authorizationGrant != null && StringHelper.isNotEmpty(acrValuesStr) && !appConfiguration.getFapiCompatibility()) {
+                redirectUriResponse.getRedirectUri().addResponseParameter(AuthorizeResponseParam.ACR_VALUES, acrValuesStr);
+            }
+
+            if (sessionUser.getId() == null) {
+                final SessionId newSessionUser = sessionIdService.generateAuthenticatedSessionId(httpRequest, sessionUser.getUserDn(), prompt);
+                String newSessionId = newSessionUser.getId();
+                sessionUser.setId(newSessionId);
+                log.trace("newSessionId = {}", newSessionId);
+            }
+            if (!appConfiguration.getFapiCompatibility() && appConfiguration.getSessionIdRequestParameterEnabled()) {
+                redirectUriResponse.getRedirectUri().addResponseParameter(AuthorizeResponseParam.SESSION_ID, sessionUser.getId());
+            }
+            redirectUriResponse.getRedirectUri().addResponseParameter(AuthorizeResponseParam.SID, sessionUser.getOutsideSid());
+            redirectUriResponse.getRedirectUri().addResponseParameter(AuthorizeResponseParam.SESSION_STATE, sessionIdService.computeSessionState(sessionUser, clientId, redirectUri));
+            redirectUriResponse.getRedirectUri().addResponseParameter(AuthorizeResponseParam.STATE, state);
+            if (scope != null && !scope.isEmpty() && authorizationGrant != null && !appConfiguration.getFapiCompatibility()) {
+                scope = authorizationGrant.checkScopesPolicy(scope);
+
+                redirectUriResponse.getRedirectUri().addResponseParameter(AuthorizeResponseParam.SCOPE, scope);
+            }
+
+            clientService.updateAccessTime(client, false);
+            oAuth2AuditLog.setSuccess(true);
+
+            updateSessionRpRedirect(sessionUser);
+
+            log.trace("Preparing redirect to: {}", redirectUriResponse.getRedirectUri());
+            builder = RedirectUtil.getRedirectResponseBuilder(redirectUriResponse.getRedirectUri(), httpRequest);
+
+            if (appConfiguration.getCustomHeadersWithAuthorizationResponse()) {
+                for (String key : customResponseHeaders.keySet()) {
+                    builder.header(key, customResponseHeaders.get(key));
+                }
+            }
+
+            if (StringUtils.isNotBlank(authReqId)) {
+                runCiba(authReqId, executionContext);
+            }
+            if (StringUtils.isNotBlank(deviceAuthzUserCode)) {
+                processDeviceAuthorization(deviceAuthzUserCode, user);
+            }
+        } catch (WebApplicationException e) {
+            applicationAuditLogger.sendMessage(oAuth2AuditLog);
+            log.debug(e.getMessage(), e);
+            throw e;
+        } catch (AcrChangedException e) { // Acr changed
+            log.error("ACR is changed, please provide a supported and enabled acr value");
+            log.error(e.getMessage(), e);
+
+            RedirectUri redirectUriResponse = new RedirectUri(redirectUri, responseTypes, responseMode);
+            redirectUriResponse.parseQueryString(errorResponseFactory.getErrorAsQueryString(
+                    AuthorizeErrorResponseType.SESSION_SELECTION_REQUIRED, state));
+            redirectUriResponse.addResponseParameter("hint", "Use prompt=login in order to alter existing session.");
+            applicationAuditLogger.sendMessage(oAuth2AuditLog);
+            return RedirectUtil.getRedirectResponseBuilder(redirectUriResponse, httpRequest).build();
+        } catch (EntryPersistenceException e) { // Invalid clientId
+            builder = Response.status(Response.Status.UNAUTHORIZED.getStatusCode())
+                    .entity(errorResponseFactory.getErrorAsJson(AuthorizeErrorResponseType.UNAUTHORIZED_CLIENT, state, ""))
+                    .type(MediaType.APPLICATION_JSON_TYPE);
+            log.error(e.getMessage(), e);
+        } catch (InvalidSessionStateException ex) { // Allow to handle it via GlobalExceptionHandler
+            throw ex;
+        } catch (Exception e) {
+            builder = Response.status(Response.Status.INTERNAL_SERVER_ERROR.getStatusCode()); // 500
+            log.error(e.getMessage(), e);
+        }
+
+        applicationAuditLogger.sendMessage(oAuth2AuditLog);
+        return builder.build();
+    }
+
+    private User executeRopcIfRequired(User user, HttpServletRequest httpRequest, HttpServletResponse httpResponse) {
+        if (!appConfiguration.getForceRopcInAuthorizationEndpoint()) {
+            return null;
+        }
+
+        log.trace("Triggering ROPC at Authorization Endpoint (forced by 'forceRopcInAuthorizationEndpoint' configuration property)");
+
+        if (!externalResourceOwnerPasswordCredentialsService.isEnabled()) {
+            log.trace("Skip ROPC because no ROPC script found.");
+            return null;
+        }
+
+        final ExternalResourceOwnerPasswordCredentialsContext context = new ExternalResourceOwnerPasswordCredentialsContext(httpRequest, httpResponse, appConfiguration, attributeService, userService);
+        context.setUser(user);
+
+        if (externalResourceOwnerPasswordCredentialsService.executeExternalAuthenticate(context)) {
+            user = context.getUser();
+            if (user != null) {
+                log.trace("ROPC - User {} is authenticated successfully by external script.", user.getUserId());
+                return user;
+            } else {
+                log.trace("ROPC returned True but user is not set (set valid user in context.setUser(<user>))");
+            }
+        } else {
+            log.trace("ROPC script returned False.");
+        }
+
+        return null;
+    }
+
+    private void updateSessionRpRedirect(SessionId sessionUser) {
+        int rpRedirectCount = Util.parseIntSilently(sessionUser.getSessionAttributes().get("successful_rp_redirect_count"), 0);
+        rpRedirectCount++;
+
+        sessionUser.getSessionAttributes().put("successful_rp_redirect_count", Integer.toString(rpRedirectCount));
+        sessionIdService.updateSessionId(sessionUser);
+    }
+
+    private String getAcrForGrant(String acrValuesStr, SessionId sessionUser) {
+        final String acr = sessionIdService.getAcr(sessionUser);
+        return StringUtils.isNotBlank(acr) ? acr : acrValuesStr;
+    }
+
+    private void runCiba(String authReqId, ExecutionContext executionContext) {
+        CibaRequestCacheControl cibaRequest = cibaRequestService.getCibaRequest(authReqId);
+
+        if (cibaRequest == null || cibaRequest.getStatus() == CibaRequestStatus.EXPIRED) {
+            log.trace("User responded too late and the grant {} has expired, {}", authReqId, cibaRequest);
+            return;
+        }
+
+        cibaRequestService.removeCibaRequest(authReqId);
+        CIBAGrant cibaGrant = authorizationGrantList.createCIBAGrant(cibaRequest);
+        executionContext.setGrant(cibaGrant);
+
+        RefreshToken refreshToken = cibaGrant.createRefreshToken(executionContext);
+        log.debug("Issuing refresh token: {}", refreshToken.getCode());
+
+        AccessToken accessToken = cibaGrant.createAccessToken(executionContext.getHttpRequest().getHeader("X-ClientCert"), executionContext);
+        log.debug("Issuing access token: {}", accessToken.getCode());
+
+        ExternalUpdateTokenContext context = ExternalUpdateTokenContext.of(executionContext);
+        Function<JsonWebResponse, Void> postProcessor = externalUpdateTokenService.buildModifyIdTokenProcessor(context);
+
+        boolean includeIdTokenClaims = Boolean.TRUE.equals(appConfiguration.getLegacyIdTokenClaims());
+        IdToken idToken = cibaGrant.createIdToken(
+                null, null, accessToken, refreshToken,
+                null, cibaGrant, includeIdTokenClaims, null, postProcessor, executionContext);
+
+        cibaGrant.setTokensDelivered(true);
+        cibaGrant.save();
+
+        if (cibaRequest.getClient().getBackchannelTokenDeliveryMode() == BackchannelTokenDeliveryMode.PUSH) {
+            cibaPushTokenDeliveryService.pushTokenDelivery(
+                    cibaGrant.getAuthReqId(),
+                    cibaGrant.getClient().getBackchannelClientNotificationEndpoint(),
+                    cibaRequest.getClientNotificationToken(),
+                    accessToken.getCode(),
+                    refreshToken.getCode(),
+                    idToken.getCode(),
+                    accessToken.getExpiresIn()
+            );
+        } else if (cibaGrant.getClient().getBackchannelTokenDeliveryMode() == BackchannelTokenDeliveryMode.PING) {
+            cibaGrant.setTokensDelivered(false);
+            cibaGrant.save();
+
+            cibaPingCallbackService.pingCallback(
+                    cibaGrant.getAuthReqId(),
+                    cibaGrant.getClient().getBackchannelClientNotificationEndpoint(),
+                    cibaRequest.getClientNotificationToken()
+            );
+        } else if (cibaGrant.getClient().getBackchannelTokenDeliveryMode() == BackchannelTokenDeliveryMode.POLL) {
+            cibaGrant.setTokensDelivered(false);
+            cibaGrant.save();
+        }
+    }
+
+    private WebApplicationException createInvalidJwtRequestException(RedirectUriResponse redirectUriResponse, String reason) {
+        if (appConfiguration.getFapiCompatibility()) {
+            log.debug(reason); // in FAPI case log reason but don't send it since it's `reason` is not known.
+            return redirectUriResponse.createWebException(AuthorizeErrorResponseType.INVALID_REQUEST_OBJECT);
+        }
+        return redirectUriResponse.createWebException(AuthorizeErrorResponseType.INVALID_REQUEST_OBJECT, reason);
+    }
+
+    private void updateSessionForROPC(HttpServletRequest httpRequest, SessionId sessionUser) {
+        if (sessionUser == null) {
+            return;
+        }
+
+        Map<String, String> sessionAttributes = sessionUser.getSessionAttributes();
+        String authorizedGrant = sessionUser.getSessionAttributes().get(Constants.AUTHORIZED_GRANT);
+        if (StringHelper.isNotEmpty(authorizedGrant) && GrantType.RESOURCE_OWNER_PASSWORD_CREDENTIALS == GrantType.fromString(authorizedGrant)) {
+            // Remove from session to avoid execution on next AuthZ request
+            sessionAttributes.remove(Constants.AUTHORIZED_GRANT);
+
+            // Reset AuthZ parameters
+            Map<String, String> parameterMap = getGenericRequestMap(httpRequest);
+            Map<String, String> requestParameterMap = requestParameterService.getAllowedParameters(parameterMap);
+            sessionAttributes.putAll(requestParameterMap);
+            sessionIdService.updateSessionId(sessionUser, true, true, true);
+        }
+    }
+
+    private void checkAcrChanged(String acrValuesStr, List<Prompt> prompts, SessionId sessionUser) throws AcrChangedException {
+        try {
+            sessionIdService.assertAuthenticatedSessionCorrespondsToNewRequest(sessionUser, acrValuesStr);
+        } catch (AcrChangedException e) { // Acr changed
+            //See https://github.com/GluuFederation/oxTrust/issues/797
+            if (e.isForceReAuthentication()) {
+                if (!prompts.contains(Prompt.LOGIN)) {
+                    log.info("ACR is changed, adding prompt=login to prompts");
+                    prompts.add(Prompt.LOGIN);
+
+                    sessionUser.setState(SessionIdState.UNAUTHENTICATED);
+                    sessionUser.getSessionAttributes().put("prompt", org.gluu.oxauth.model.util.StringUtils.implode(prompts, " "));
+                    if (!sessionIdService.persistSessionId(sessionUser)) {
+                        log.trace("Unable persist session_id, try to update it.");
+                        sessionIdService.updateSessionId(sessionUser);
+                    }
+
+                    sessionIdService.externalEvent(new SessionEvent(SessionEventType.UNAUTHENTICATED, sessionUser));
+                }
+            } else {
+                throw e;
+            }
+        }
+    }
+
+    private Map<String, String> getGenericRequestMap(HttpServletRequest httpRequest) {
+        Map<String, String> result = new HashMap<>();
+        for (Entry<String, String[]> entry : httpRequest.getParameterMap().entrySet()) {
+            result.put(entry.getKey(), entry.getValue()[0]);
+        }
+
+        return result;
+    }
+
+    private Response redirectToAuthorizationPage(RedirectUri redirectUriResponse, List<ResponseType> responseTypes, String scope, String clientId,
+                                                 String redirectUri, String state, ResponseMode responseMode, String nonce, String display,
+                                                 List<Prompt> prompts, Integer maxAge, List<String> uiLocales, String idTokenHint, String loginHint,
+                                                 List<String> acrValues, List<String> amrValues, String request, String requestUri, String originHeaders,
+                                                 String codeChallenge, String codeChallengeMethod, String sessionId, String claims, String authReqId,
+                                                 Map<String, String> customParameters, OAuth2AuditLog oAuth2AuditLog, HttpServletRequest httpRequest) {
+        return redirectTo("/authorize", redirectUriResponse, responseTypes, scope, clientId, redirectUri,
+                state, responseMode, nonce, display, prompts, maxAge, uiLocales, idTokenHint, loginHint, acrValues, amrValues, request, requestUri, originHeaders,
+                codeChallenge, codeChallengeMethod, sessionId, claims, authReqId, customParameters, oAuth2AuditLog, httpRequest);
+    }
+
+    private Response redirectToSelectAccountPage(RedirectUri redirectUriResponse, List<ResponseType> responseTypes, String scope, String clientId,
+                                                 String redirectUri, String state, ResponseMode responseMode, String nonce, String display,
+                                                 List<Prompt> prompts, Integer maxAge, List<String> uiLocales, String idTokenHint, String loginHint,
+                                                 List<String> acrValues, List<String> amrValues, String request, String requestUri, String originHeaders,
+                                                 String codeChallenge, String codeChallengeMethod, String sessionId, String claims, String authReqId,
+                                                 Map<String, String> customParameters, OAuth2AuditLog oAuth2AuditLog, HttpServletRequest httpRequest) {
+        return redirectTo("/selectAccount", redirectUriResponse, responseTypes, scope, clientId, redirectUri,
+                state, responseMode, nonce, display, prompts, maxAge, uiLocales, idTokenHint, loginHint, acrValues, amrValues, request, requestUri, originHeaders,
+                codeChallenge, codeChallengeMethod, sessionId, claims, authReqId, customParameters, oAuth2AuditLog, httpRequest);
+    }
+
+    private Response redirectTo(String pathToRedirect,
+            RedirectUri redirectUriResponse, List<ResponseType> responseTypes, String scope, String clientId,
+            String redirectUri, String state, ResponseMode responseMode, String nonce, String display,
+            List<Prompt> prompts, Integer maxAge, List<String> uiLocales, String idTokenHint, String loginHint,
+            List<String> acrValues, List<String> amrValues, String request, String requestUri, String originHeaders,
+            String codeChallenge, String codeChallengeMethod, String sessionId, String claims, String authReqId,
+            Map<String, String> customParameters, OAuth2AuditLog oAuth2AuditLog, HttpServletRequest httpRequest) {
+
+        final URI contextUri = URI.create(appConfiguration.getIssuer()).resolve(servletRequest.getContextPath() + pathToRedirect + �onfigurationFactory.getFacesMapping());
+
+        redirectUriResponse.setBaseRedirectUri(contextUri.toString());
+        redirectUriResponse.setResponseMode(ResponseMode.QUERY);
+
+        // oAuth parameters
+        String responseType = implode(responseTypes, " ");
+        if (StringUtils.isNotBlank(responseType)) {
+            redirectUriResponse.addResponseParameter(AuthorizeRequestParam.RESPONSE_TYPE, responseType);
+        }
+        if (StringUtils.isNotBlank(scope)) {
+            redirectUriResponse.addResponseParameter(AuthorizeRequestParam.SCOPE, scope);
+        }
+        if (StringUtils.isNotBlank(clientId)) {
+            redirectUriResponse.addResponseParameter(AuthorizeRequestParam.CLIENT_ID, clientId);
+        }
+        if (StringUtils.isNotBlank(redirectUri)) {
+            redirectUriResponse.addResponseParameter(AuthorizeRequestParam.REDIRECT_URI, redirectUri);
+        }
+        if (StringUtils.isNotBlank(state)) {
+            redirectUriResponse.addResponseParameter(AuthorizeRequestParam.STATE, state);
+        }
+        if (responseMode != null) {
+            redirectUriResponse.addResponseParameter(AuthorizeRequestParam.RESPONSE_MODE, responseMode.getParamName());
+        }
+
+        // OIC parameters
+        if (StringUtils.isNotBlank(nonce)) {
+            redirectUriResponse.addResponseParameter(AuthorizeRequestParam.NONCE, nonce);
+        }
+        if (StringUtils.isNotBlank(display)) {
+            redirectUriResponse.addResponseParameter(AuthorizeRequestParam.DISPLAY, display);
+        }
+        String prompt = implode(prompts, " ");
+        if (StringUtils.isNotBlank(prompt)) {
+            redirectUriResponse.addResponseParameter(AuthorizeRequestParam.PROMPT, prompt);
+        }
+        if (maxAge != null) {
+            redirectUriResponse.addResponseParameter(AuthorizeRequestParam.MAX_AGE, maxAge.toString());
+        }
+        String uiLocalesStr = implode(uiLocales, " ");
+        if (StringUtils.isNotBlank(uiLocalesStr)) {
+            redirectUriResponse.addResponseParameter(AuthorizeRequestParam.UI_LOCALES, uiLocalesStr);
+        }
+        if (StringUtils.isNotBlank(idTokenHint)) {
+            redirectUriResponse.addResponseParameter(AuthorizeRequestParam.ID_TOKEN_HINT, idTokenHint);
+        }
+        if (StringUtils.isNotBlank(loginHint)) {
+            redirectUriResponse.addResponseParameter(AuthorizeRequestParam.LOGIN_HINT, loginHint);
+        }
+        String acrValuesStr = implode(acrValues, " ");
+        if (StringUtils.isNotBlank(acrValuesStr)) {
+            redirectUriResponse.addResponseParameter(AuthorizeRequestParam.ACR_VALUES, acrValuesStr);
+        }
+        String amrValuesStr = implode(amrValues, " ");
+        if (StringUtils.isNotBlank(amrValuesStr)) {
+            redirectUriResponse.addResponseParameter(AuthorizeRequestParam.AMR_VALUES, amrValuesStr);
+        }
+        if (StringUtils.isNotBlank(request)) {
+            redirectUriResponse.addResponseParameter(AuthorizeRequestParam.REQUEST, request);
+        }
+        if (StringUtils.isNotBlank(requestUri)) {
+            redirectUriResponse.addResponseParameter(AuthorizeRequestParam.REQUEST_URI, requestUri);
+        }
+        if (StringUtils.isNotBlank(codeChallenge)) {
+            redirectUriResponse.addResponseParameter(AuthorizeRequestParam.CODE_CHALLENGE, codeChallenge);
+        }
+        if (StringUtils.isNotBlank(codeChallengeMethod)) {
+            redirectUriResponse.addResponseParameter(AuthorizeRequestParam.CODE_CHALLENGE_METHOD, codeChallengeMethod);
+        }
+        if (StringUtils.isNotBlank(sessionId) && appConfiguration.getSessionIdRequestParameterEnabled()) {
+            redirectUriResponse.addResponseParameter(AuthorizeRequestParam.SESSION_ID, sessionId);
+        }
+        if (StringUtils.isNotBlank(claims)) {
+            redirectUriResponse.addResponseParameter(AuthorizeRequestParam.CLAIMS, claims);
+        }
+
+        // CIBA param
+        if (StringUtils.isNotBlank(authReqId)) {
+            redirectUriResponse.addResponseParameter(AuthorizeRequestParam.AUTH_REQ_ID, authReqId);
+        }
+
+        // mod_ox param
+        if (StringUtils.isNotBlank(originHeaders)) {
+            redirectUriResponse.addResponseParameter(AuthorizeRequestParam.ORIGIN_HEADERS, originHeaders);
+        }
+
+        if (customParameters != null && customParameters.size() > 0) {
+            for (Map.Entry<String, String> entry : customParameters.entrySet()) {
+                redirectUriResponse.addResponseParameter(entry.getKey(), entry.getValue());
+            }
+        }
+
+        ResponseBuilder builder = RedirectUtil.getRedirectResponseBuilder(redirectUriResponse, httpRequest);
+        applicationAuditLogger.sendMessage(oAuth2AuditLog);
+        return builder.build();
+    }
+
+    private boolean unauthenticateSession(String sessionId, HttpServletRequest httpRequest) {
+        return unauthenticateSession(sessionId, httpRequest, false);
+    }
+
+    private boolean unauthenticateSession(String sessionId, HttpServletRequest httpRequest, boolean isPromptFromJwt) {
+        SessionId sessionUser = identity.getSessionId();
+        if (isPromptFromJwt && sessionUser != null && !sessionUser.getSessionAttributes().containsKey("successful_rp_redirect_count")) {
+            return false; // skip unauthentication because there were no at least one successful rp redirect
+        }
+
+        identity.logout();
+
+        if (sessionUser != null) {
+            sessionUser.setUserDn(null);
+            sessionUser.setUser(null);
+            sessionUser.setAuthenticationTime(null);
+        }
+
+        if (StringHelper.isEmpty(sessionId)) {
+            sessionId = cookieService.getSessionIdFromCookie(httpRequest);
+        }
+
+        SessionId persistenceSessionId = sessionIdService.getSessionId(sessionId);
+        if (persistenceSessionId == null) {
+            log.error("Failed to load session from LDAP by session_id: '{}'", sessionId);
+            return true;
+        }
+
+        persistenceSessionId.setState(SessionIdState.UNAUTHENTICATED);
+        persistenceSessionId.setUserDn(null);
+        persistenceSessionId.setUser(null);
+        persistenceSessionId.setAuthenticationTime(null);
+        boolean result = sessionIdService.updateSessionId(persistenceSessionId);
+        sessionIdService.externalEvent(new SessionEvent(SessionEventType.UNAUTHENTICATED, persistenceSessionId).setHttpRequest(httpRequest));
+        if (!result) {
+            log.error("Failed to update session_id '{}'", sessionId);
+        }
+        return result;
+    }
+
+    /**
+     * Processes an authorization granted for device code grant type.
+     * @param userCode User code used in the device code flow.
+     * @param user Authenticated user that is giving the permissions.
+     */
+    private void processDeviceAuthorization(String userCode, User user) {
+        DeviceAuthorizationCacheControl cacheData = deviceAuthorizationService.getDeviceAuthzByUserCode(userCode);
+        if (cacheData == null || cacheData.getStatus() == DeviceAuthorizationStatus.EXPIRED) {
+            log.trace("User responded too late and the authorization {} has expired, {}", userCode, cacheData);
+            return;
+        }
+
+        deviceAuthorizationService.removeDeviceAuthRequestInCache(userCode, cacheData.getDeviceCode());
+        DeviceCodeGrant deviceCodeGrant = authorizationGrantList.createDeviceGrant(cacheData, user);
+
+        log.info("Granted device authorization request, user_code: {}, device_code: {}, grant_id: {}", userCode, cacheData.getDeviceCode(), deviceCodeGrant.getGrantId());
+    }
+
+}
\ No newline at end of file
diff --git a/oxAuth/Server/src/main/java/org/gluu/oxauth/authorize/ws/rs/AuthorizeRestWebServiceValidator.java b/oxAuth/Server/src/main/java/org/gluu/oxauth/authorize/ws/rs/AuthorizeRestWebServiceValidator.java
new file mode 100644
index 00000000..5fbfd950
--- /dev/null
+++ b/oxAuth/Server/src/main/java/org/gluu/oxauth/authorize/ws/rs/AuthorizeRestWebServiceValidator.java
@@ -0,0 +1,315 @@
+package org.gluu.oxauth.authorize.ws.rs;
+
+import org.apache.commons.lang.BooleanUtils;
+import org.apache.commons.lang.StringUtils;
+import org.gluu.oxauth.model.authorize.AuthorizeErrorResponseType;
+import org.gluu.oxauth.model.authorize.AuthorizeParamsValidator;
+import org.gluu.oxauth.model.authorize.JwtAuthorizationRequest;
+import org.gluu.oxauth.model.common.*;
+import org.gluu.oxauth.model.configuration.AppConfiguration;
+import org.gluu.oxauth.model.error.ErrorResponseFactory;
+import org.gluu.oxauth.model.registration.Client;
+import org.gluu.oxauth.model.session.SessionId;
+import org.gluu.oxauth.service.ClientService;
+import org.gluu.oxauth.service.DeviceAuthorizationService;
+import org.gluu.oxauth.service.RedirectUriResponse;
+import org.gluu.oxauth.service.RedirectionUriService;
+import org.gluu.oxauth.util.RedirectUri;
+import org.gluu.oxauth.util.RedirectUtil;
+import org.gluu.oxauth.util.ServerUtil;
+import org.gluu.persist.exception.EntryPersistenceException;
+import org.jetbrains.annotations.NotNull;
+import org.jetbrains.annotations.Nullable;
+import org.slf4j.Logger;
+
+import javax.inject.Inject;
+import javax.inject.Named;
+import javax.servlet.http.HttpServletRequest;
+import javax.ws.rs.WebApplicationException;
+import javax.ws.rs.core.MediaType;
+import javax.ws.rs.core.Response;
+import java.util.*;
+
+import static org.apache.commons.lang3.BooleanUtils.isTrue;
+import static org.gluu.oxauth.model.ciba.BackchannelAuthenticationErrorResponseType.INVALID_REQUEST;
+
+/**
+ * @author Yuriy Zabrovarnyy
+ */
+@Named
+public class AuthorizeRestWebServiceValidator {
+
+    @Inject
+    private Logger log;
+
+    @Inject
+    private ErrorResponseFactory errorResponseFactory;
+
+    @Inject
+    private ClientService clientService;
+
+    @Inject
+    private RedirectionUriService redirectionUriService;
+
+    @Inject
+    private DeviceAuthorizationService deviceAuthorizationService;
+
+    @Inject
+    private AppConfiguration appConfiguration;
+
+    public Client validateClient(String clientId, String state) {
+        if (StringUtils.isBlank(clientId)) {
+            throw new WebApplicationException(Response
+                    .status(Response.Status.BAD_REQUEST)
+                    .entity(errorResponseFactory.getErrorAsJson(AuthorizeErrorResponseType.UNAUTHORIZED_CLIENT, state, "client_id is empty or blank."))
+                    .type(MediaType.APPLICATION_JSON_TYPE)
+                    .build());
+        }
+
+        try {
+            final Client client = clientService.getClient(clientId);
+            if (client == null) {
+                throw new WebApplicationException(Response
+                        .status(Response.Status.UNAUTHORIZED)
+                        .entity(errorResponseFactory.getErrorAsJson(AuthorizeErrorResponseType.UNAUTHORIZED_CLIENT, state, "Unable to find client."))
+                        .type(MediaType.APPLICATION_JSON_TYPE)
+                        .build());
+            }
+            if (client.isDisabled()) {
+                throw new WebApplicationException(Response
+                        .status(Response.Status.UNAUTHORIZED)
+                        .entity(errorResponseFactory.getErrorAsJson(AuthorizeErrorResponseType.DISABLED_CLIENT, state, "Client is disabled."))
+                        .type(MediaType.APPLICATION_JSON_TYPE)
+                        .build());
+            }
+
+            return client;
+        } catch (EntryPersistenceException e) { // Invalid clientId
+            throw new WebApplicationException(Response
+                    .status(Response.Status.UNAUTHORIZED)
+                    .entity(errorResponseFactory.getErrorAsJson(AuthorizeErrorResponseType.UNAUTHORIZED_CLIENT, state, "Unable to find client on AS."))
+                    .type(MediaType.APPLICATION_JSON_TYPE)
+                    .build());
+        }
+    }
+
+    public boolean isAuthnMaxAgeValid(Integer maxAge, SessionId sessionUser, Client client) {
+        if (maxAge == null) {
+            maxAge = client.getDefaultMaxAge();
+        }
+        if (maxAge == null) { // if not set, it's still valid
+            return true;
+        }
+
+        if (maxAge == 0) { // issue #2361: allow authentication for max_age=0
+            if (BooleanUtils.isTrue(appConfiguration.getDisableAuthnForMaxAgeZero())) {
+                return false;
+            }
+            return true;
+        }
+
+
+        GregorianCalendar userAuthnTime = new GregorianCalendar(TimeZone.getTimeZone("UTC"));
+        if (sessionUser.getAuthenticationTime() != null) {
+            userAuthnTime.setTime(sessionUser.getAuthenticationTime());
+        }
+
+        userAuthnTime.add(Calendar.SECOND, maxAge);
+        return userAuthnTime.after(ServerUtil.now());
+    }
+
+    public void validateRequestJwt(String request, String requestUri, RedirectUriResponse redirectUriResponse) {
+        if (appConfiguration.getFapiCompatibility() && StringUtils.isBlank(request) && StringUtils.isBlank(requestUri)) {
+            throw redirectUriResponse.createWebException(AuthorizeErrorResponseType.INVALID_REQUEST, "request and request_uri are both not specified which is forbidden for FAPI.");
+        }
+        if (StringUtils.isNotBlank(request) && StringUtils.isNotBlank(requestUri)) {
+            throw redirectUriResponse.createWebException(AuthorizeErrorResponseType.INVALID_REQUEST, "Both request and request_uri are specified which is not allowed.");
+        }
+    }
+
+    public void validate(List<ResponseType> responseTypes, List<Prompt> prompts, String nonce, String state, String redirectUri, HttpServletRequest httpRequest, Client client, ResponseMode responseMode) {
+        if (!AuthorizeParamsValidator.validateParams(responseTypes, prompts, nonce, appConfiguration.getFapiCompatibility())) {
+            if (redirectUri != null && redirectionUriService.validateRedirectionUri(client, redirectUri) != null) {
+                RedirectUri redirectUriResponse = new RedirectUri(redirectUri, responseTypes, responseMode);
+                redirectUriResponse.parseQueryString(errorResponseFactory.getErrorAsQueryString(
+                        AuthorizeErrorResponseType.INVALID_REQUEST, state));
+                throw new WebApplicationException(RedirectUtil.getRedirectResponseBuilder(redirectUriResponse, httpRequest).build());
+            } else {
+                throw new WebApplicationException(Response
+                        .status(Response.Status.BAD_REQUEST.getStatusCode())
+                        .type(MediaType.APPLICATION_JSON_TYPE)
+                        .entity(errorResponseFactory.getErrorAsJson(AuthorizeErrorResponseType.INVALID_REQUEST, state, "Invalid redirect uri."))
+                        .build());
+            }
+        }
+    }
+
+    public void validateRequestObject(JwtAuthorizationRequest jwtRequest, RedirectUriResponse redirectUriResponse) {
+        if (!jwtRequest.getAud().isEmpty() && !jwtRequest.getAud().contains(appConfiguration.getIssuer())) {
+            log.error("Failed to match aud to AS, aud: " + jwtRequest.getAud());
+            throw redirectUriResponse.createWebException(AuthorizeErrorResponseType.INVALID_REQUEST_OBJECT);
+        }
+
+        if (!appConfiguration.getFapiCompatibility()) {
+            return;
+        }
+
+        // FAPI related validation
+        if (jwtRequest.getExp() == null) {
+            log.error("The exp claim is not set");
+            throw redirectUriResponse.createWebException(AuthorizeErrorResponseType.INVALID_REQUEST_OBJECT);
+        }
+        final long expInMillis = jwtRequest.getExp() * 1000L;
+        final long now = new Date().getTime();
+        if (expInMillis < now) {
+            log.error("Request object expired. Exp:" + expInMillis + ", now: " + now);
+            throw redirectUriResponse.createWebException(AuthorizeErrorResponseType.INVALID_REQUEST_OBJECT);
+        }
+        if (jwtRequest.getScopes() == null || jwtRequest.getScopes().isEmpty()) {
+            log.error("Request object does not have scope claim.");
+            throw redirectUriResponse.createWebException(AuthorizeErrorResponseType.INVALID_REQUEST_OBJECT);
+        }
+        if (StringUtils.isBlank(jwtRequest.getNonce())) {
+            log.error("Request object does not have nonce claim.");
+            throw redirectUriResponse.createWebException(AuthorizeErrorResponseType.INVALID_REQUEST_OBJECT);
+        }
+        if (StringUtils.isBlank(jwtRequest.getRedirectUri())) {
+            log.error("Request object does not have redirect_uri claim.");
+            throw redirectUriResponse.createWebException(AuthorizeErrorResponseType.INVALID_REQUEST_OBJECT);
+        }
+    }
+
+    /**
+     * Validates expiration, audience and scopes in the JWT request.
+     * @param jwtRequest Object to be validated.
+     */
+    public void validateCibaRequestObject(JwtAuthorizationRequest jwtRequest, String clientId) {
+        if (jwtRequest.getAud().isEmpty() || !jwtRequest.getAud().contains(appConfiguration.getIssuer())) {
+            log.error("Failed to match aud to AS, aud: " + jwtRequest.getAud());
+            throw new WebApplicationException(Response
+                    .status(Response.Status.BAD_REQUEST)
+                    .entity(errorResponseFactory.getErrorAsJson(INVALID_REQUEST))
+                    .build());
+        }
+
+        if (!appConfiguration.getFapiCompatibility()) {
+            return;
+        }
+
+        // FAPI related validation
+        if (jwtRequest.getExp() == null) {
+            log.error("The exp claim is not set");
+            throw new WebApplicationException(Response
+                    .status(Response.Status.BAD_REQUEST)
+                    .entity(errorResponseFactory.getErrorAsJson(INVALID_REQUEST))
+                    .build());
+        }
+        final long expInMillis = jwtRequest.getExp() * 1000L;
+        final long now = new Date().getTime();
+        if (expInMillis < now) {
+            log.error("Request object expired. Exp:" + expInMillis + ", now: " + now);
+            throw new WebApplicationException(Response
+                    .status(Response.Status.BAD_REQUEST)
+                    .entity(errorResponseFactory.getErrorAsJson(INVALID_REQUEST))
+                    .build());
+        }
+        if (jwtRequest.getScopes() == null || jwtRequest.getScopes().isEmpty()) {
+            log.error("Request object does not have scope claim.");
+            throw new WebApplicationException(Response
+                    .status(Response.Status.BAD_REQUEST)
+                    .entity(errorResponseFactory.getErrorAsJson(INVALID_REQUEST))
+                    .build());
+        }
+        if (StringUtils.isEmpty(jwtRequest.getIss()) || !jwtRequest.getIss().equals(clientId)) {
+            log.error("Request object has a wrong iss claim, iss: " + jwtRequest.getIss());
+            throw new WebApplicationException(Response
+                    .status(Response.Status.BAD_REQUEST)
+                    .entity(errorResponseFactory.getErrorAsJson(INVALID_REQUEST))
+                    .build());
+        }
+        if (jwtRequest.getIat() == null || jwtRequest.getIat() == 0) {
+            log.error("Request object has a wrong iat claim, iat: " + jwtRequest.getIat());
+            throw new WebApplicationException(Response
+                    .status(Response.Status.BAD_REQUEST)
+                    .entity(errorResponseFactory.getErrorAsJson(INVALID_REQUEST))
+                    .build());
+        }
+        int nowInSeconds = Math.toIntExact(System.currentTimeMillis() / 1000);
+        if (jwtRequest.getNbf() == null || jwtRequest.getNbf() >  nowInSeconds
+                || jwtRequest.getNbf() < nowInSeconds - appConfiguration.getCibaMaxExpirationTimeAllowedSec()) {
+            log.error("Request object has a wrong nbf claim, nbf: " + jwtRequest.getNbf());
+            throw new WebApplicationException(Response
+                    .status(Response.Status.BAD_REQUEST)
+                    .entity(errorResponseFactory.getErrorAsJson(INVALID_REQUEST))
+                    .build());
+        }
+        if (StringUtils.isEmpty(jwtRequest.getJti())) {
+            log.error("Request object has a wrong jti claim, jti: " + jwtRequest.getJti());
+            throw new WebApplicationException(Response
+                    .status(Response.Status.BAD_REQUEST)
+                    .entity(errorResponseFactory.getErrorAsJson(INVALID_REQUEST))
+                    .build());
+        }
+        int result = (StringUtils.isNotBlank(jwtRequest.getLoginHint()) ? 1 : 0)
+                + (StringUtils.isNotBlank(jwtRequest.getLoginHintToken()) ? 1 : 0)
+                + (StringUtils.isNotBlank(jwtRequest.getIdTokenHint()) ? 1 : 0);
+        if (result != 1) {
+            log.error("Request object has too many hints or doesnt have any");
+            throw new WebApplicationException(Response
+                    .status(Response.Status.BAD_REQUEST)
+                    .entity(errorResponseFactory.getErrorAsJson(INVALID_REQUEST))
+                    .build());
+        }
+    }
+
+    public String validateRedirectUri(@NotNull Client client, @Nullable String redirectUri, String state,
+                                      String deviceAuthzUserCode, HttpServletRequest httpRequest) {
+        if (StringUtils.isNotBlank(deviceAuthzUserCode)) {
+            DeviceAuthorizationCacheControl deviceAuthorizationCacheControl = deviceAuthorizationService
+                    .getDeviceAuthzByUserCode(deviceAuthzUserCode);
+            redirectUri = deviceAuthorizationService.getDeviceAuthorizationPage(deviceAuthorizationCacheControl, client, state, httpRequest);
+        } else {
+            redirectUri = redirectionUriService.validateRedirectionUri(client, redirectUri);
+        }
+        if (StringUtils.isNotBlank(redirectUri)) {
+            return redirectUri;
+        }
+        throw new WebApplicationException(Response
+                .status(Response.Status.BAD_REQUEST)
+                .entity(errorResponseFactory.getErrorAsJson(AuthorizeErrorResponseType.INVALID_REQUEST_REDIRECT_URI, state, ""))
+                .build());
+    }
+
+    public void validateRequestParameterSupported(String request, String state) {
+        if (StringUtils.isBlank(request)) {
+            return;
+        }
+
+        if (isTrue(appConfiguration.getRequestParameterSupported())) {
+            return;
+        }
+
+        log.debug("'request' support is switched off by requestParameterSupported=false configuration property.");
+        throw new WebApplicationException(Response
+                .status(Response.Status.BAD_REQUEST)
+                .entity(errorResponseFactory.getErrorAsJson(AuthorizeErrorResponseType.REQUEST_NOT_SUPPORTED, state, "request processing is denied by AS."))
+                .build());
+
+    }
+
+    public void validateRequestUriParameterSupported(String requestUri, String state) {
+        if (StringUtils.isBlank(requestUri)) {
+            return;
+        }
+
+        if (isTrue(appConfiguration.getRequestUriParameterSupported())) {
+            return;
+        }
+
+        log.debug("'request_uri' support is switched off by requestUriParameterSupported=false configuration property.");
+        throw new WebApplicationException(Response
+                .status(Response.Status.BAD_REQUEST)
+                .entity(errorResponseFactory.getErrorAsJson(AuthorizeErrorResponseType.REQUEST_URI_NOT_SUPPORTED, state, "request_uri processing is denied by AS"))
+                .build());
+    }
+}
diff --git a/oxAuth/Server/src/main/java/org/gluu/oxauth/authorize/ws/rs/ConsentGathererService.java b/oxAuth/Server/src/main/java/org/gluu/oxauth/authorize/ws/rs/ConsentGathererService.java
new file mode 100644
index 00000000..262d66f7
--- /dev/null
+++ b/oxAuth/Server/src/main/java/org/gluu/oxauth/authorize/ws/rs/ConsentGathererService.java
@@ -0,0 +1,320 @@
+/*
+ * oxAuth is available under the MIT License (2008). See http://opensource.org/licenses/MIT for full text.
+ *
+ * Copyright (c) 2015, Gluu
+ */
+
+package org.gluu.oxauth.authorize.ws.rs;
+
+import org.gluu.jsf2.service.FacesService;
+import org.gluu.model.custom.script.conf.CustomScriptConfiguration;
+import org.gluu.oxauth.i18n.LanguageBean;
+import org.gluu.oxauth.model.authorize.AuthorizeRequestParam;
+import org.gluu.oxauth.model.authorize.ScopeChecker;
+import org.gluu.oxauth.model.config.Constants;
+import org.gluu.oxauth.model.configuration.AppConfiguration;
+import org.gluu.oxauth.model.session.SessionId;
+import org.gluu.oxauth.service.AuthorizeService;
+import org.gluu.oxauth.service.ClientService;
+import org.gluu.oxauth.service.SessionIdService;
+import org.gluu.oxauth.service.common.UserService;
+import org.gluu.oxauth.service.external.ExternalConsentGatheringService;
+import org.gluu.oxauth.service.external.context.ConsentGatheringContext;
+import org.gluu.util.StringHelper;
+import org.slf4j.Logger;
+
+import javax.enterprise.context.RequestScoped;
+import javax.faces.application.FacesMessage;
+import javax.faces.context.ExternalContext;
+import javax.faces.context.FacesContext;
+import javax.inject.Inject;
+import javax.inject.Named;
+import javax.servlet.http.HttpServletRequest;
+import javax.servlet.http.HttpServletResponse;
+import java.util.*;
+
+/**
+ * @author Yuriy Movchan Date: 10/30/2017
+ */
+@RequestScoped
+@Named(value = "consentGatherer")
+public class ConsentGathererService {
+
+    @Inject
+    private Logger log;
+
+    @Inject
+    private ExternalConsentGatheringService external;
+
+    @Inject
+    private AppConfiguration appConfiguration;
+
+    @Inject
+    private FacesContext facesContext;
+
+    @Inject
+    private ExternalContext externalContext;
+
+    @Inject
+    private FacesService facesService;
+
+    @Inject
+    private LanguageBean languageBean;
+
+    @Inject
+    private ConsentGatheringSessionService sessionService;
+
+    @Inject
+    private UserService userService;
+
+    @Inject
+    private AuthorizeService authorizeService;
+
+    @Inject
+    private ClientService clientService;
+    
+    @Inject
+    private SessionIdService sessionIdService;
+
+    @Inject
+    private ScopeChecker scopeChecker;
+
+    private final Map<String, String> pageAttributes = new HashMap<String, String>();
+    private ConsentGatheringContext context;
+    
+    public boolean configure(String userDn, String clientId, String state) {
+        final HttpServletRequest httpRequest = (HttpServletRequest) externalContext.getRequest();
+        final HttpServletResponse httpResponse = (HttpServletResponse) externalContext.getResponse();
+
+        final SessionId session = sessionService.getConsentSession(httpRequest, httpResponse, userDn, true);
+
+        CustomScriptConfiguration script = determineConsentScript(clientId);
+        if (script == null) {
+            log.error("Failed to determine consent-gathering script");
+            return false;
+        }
+
+        sessionService.configure(session, script.getName(), clientId, state);
+
+        this.context = new ConsentGatheringContext(script.getConfigurationAttributes(), httpRequest, httpResponse, session,
+        		pageAttributes, sessionService, userService, facesService, appConfiguration);
+        log.debug("Configuring consent-gathering script '{}'", script.getName());
+
+        int step = sessionService.getStep(session);
+        String redirectTo = external.getPageForStep(script, step, context);
+        if (StringHelper.isEmpty(redirectTo)) {
+            log.error("Failed to determine page for consent-gathering script");
+        	return false;
+        }
+
+        context.persist();
+
+        log.trace("Redirecting to page: '{}'", redirectTo);
+		facesService.redirectWithExternal(redirectTo, null);
+
+		return true;
+    }
+
+    private CustomScriptConfiguration determineConsentScript(String clientId) {
+        if (appConfiguration.getConsentGatheringScriptBackwardCompatibility()) {
+            // in 4.1 and earlier we returned default consent script
+            return external.getDefaultExternalCustomScript();
+        }
+
+        final List<String> consentGatheringScripts = clientService.getClient(clientId).getAttributes().getConsentGatheringScripts();
+        final List<CustomScriptConfiguration> scripts = external.getCustomScriptConfigurationsByDns(consentGatheringScripts);
+        if (!scripts.isEmpty()) {
+            final CustomScriptConfiguration script = Collections.max(scripts, Comparator.comparingInt(CustomScriptConfiguration::getLevel)); // flow supports single script, thus taking the one with higher level
+            log.debug("Determined consent gathering script `%s`", script.getName());
+            return script;
+        }
+
+        log.debug("There no consent gathering script configured for client `%s`. Therefore taking default consent script.", clientId);
+        return external.getDefaultExternalCustomScript();
+    }
+
+    public boolean authorize() {
+        try {
+            final HttpServletRequest httpRequest = (HttpServletRequest) externalContext.getRequest();
+            final HttpServletResponse httpResponse = (HttpServletResponse) externalContext.getResponse();
+
+            final SessionId session = sessionService.getConsentSession(httpRequest, httpResponse, null, false);
+            if (session == null) {
+                log.error("Failed to restore claim-gathering session state");
+            	errorPage("consent.gather.invalid.session");
+                return false;
+            }
+
+            CustomScriptConfiguration script = getScript(session);
+            if (script == null) {
+                log.error("Failed to find script '{}' in session:", sessionService.getScriptName(session));
+            	errorPage("consent.gather.failed");
+                return false;
+            }
+
+            int step = sessionService.getStep(session);
+            if (!sessionService.isPassedPreviousSteps(session, step)) {
+                log.error("There are consent-gathering steps not marked as passed. scriptName: '{}', step: '{}'", script.getName(), step);
+            	errorPage("consent.gather.invalid.step");
+                return false;
+            }
+
+            this.context = new ConsentGatheringContext(script.getConfigurationAttributes(), httpRequest, httpResponse, session,
+                    pageAttributes, sessionService, userService, facesService, appConfiguration);
+            boolean authorizeResult = external.authorize(script, step, context);
+            log.debug("Consent-gathering result for script '{}', step: '{}', gatheredResult: '{}'", script.getName(), step, authorizeResult);
+
+            int overridenNextStep = external.getNextStep(script, step, context);
+            if (!authorizeResult && overridenNextStep == -1) {
+            	SessionId connectSession = sessionService.getConnectSession(httpRequest);
+            	authorizeService.permissionDenied(connectSession);
+                return false;
+            }
+
+            if (overridenNextStep != -1) {
+                sessionService.resetToStep(session, overridenNextStep, step);
+                step = overridenNextStep;
+            }
+
+            int stepsCount = external.getStepsCount(script, context);
+            if (step < stepsCount || overridenNextStep != -1) {
+                int nextStep;
+                if (overridenNextStep != -1) {
+                    nextStep = overridenNextStep;
+                } else {
+                    nextStep = step + 1;
+                    sessionService.markStep(session, step, true);
+                }
+
+                sessionService.setStep(nextStep, session);
+
+                String redirectTo = external.getPageForStep(script, nextStep, context);
+                context.persist();
+
+                log.trace("Redirecting to page: '{}'", redirectTo);
+    			facesService.redirectWithExternal(redirectTo, null);
+
+    			return true;
+            }
+
+            if (step == stepsCount) {
+                context.persist();
+                onSuccess(httpRequest, session, context);
+                return true;
+            }
+        } catch (Exception e) {
+            log.error("Exception during gather() method call.", e);
+        }
+
+        log.error("Failed to perform gather() method successfully.");
+    	errorPage("consent.gather.failed");
+        return false;
+    }
+
+    private void onSuccess(HttpServletRequest httpRequest, SessionId session, ConsentGatheringContext context) {
+    	sessionService.setAuthenticatedSessionState(httpRequest, context.getHttpResponse(), session);
+    	
+    	SessionId connectSessionId = sessionService.getConnectSession(httpRequest);
+    	
+    	authorizeService.permissionGranted(httpRequest, connectSessionId);
+    }
+
+    public String prepareForStep() {
+        try {
+            final HttpServletRequest httpRequest = (HttpServletRequest) externalContext.getRequest();
+            final HttpServletResponse httpResponse = (HttpServletResponse) externalContext.getResponse();
+
+            final SessionId session = sessionService.getConsentSession(httpRequest, httpResponse, null, false);
+            if (session == null || session.getSessionAttributes().isEmpty()) {
+            	log.error("Failed to restore claim-gathering session state");
+                return result(Constants.RESULT_EXPIRED);
+            }
+
+            CustomScriptConfiguration script = getScript(session);
+            if (script == null) {
+                log.error("Failed to find script '{}' in session:", sessionService.getScriptName(session));
+                return result(Constants.RESULT_FAILURE);
+            }
+
+            int step = sessionService.getStep(session);
+            if (step < 1) {
+                log.error("Invalid step: {}", step);
+                return result(Constants.RESULT_INVALID_STEP);
+            }
+
+            if (!sessionService.isPassedPreviousSteps(session, step)) {
+                log.error("There are consent-gathering steps not marked as passed. scriptName: '{}', step: '{}'", script.getName(), step);
+                return result(Constants.RESULT_FAILURE);
+            }
+
+            this.context = new ConsentGatheringContext(script.getConfigurationAttributes(), httpRequest, httpResponse, session,
+            		pageAttributes, sessionService, userService, facesService, appConfiguration);
+            boolean result = external.prepareForStep(script, step, context);
+            log.debug("Consent-gathering prepare for step result for script '{}', step: '{}', gatheredResult: '{}'", script.getName(), step, result);
+            if (result) {
+                context.persist();
+                return result(Constants.RESULT_SUCCESS);
+            }
+        } catch (Exception ex) {
+            log.error("Failed to prepareForStep()", ex);
+        }
+
+        return result(Constants.RESULT_FAILURE);
+    }
+
+    private void errorPage(String errorKey) {
+        addMessage(FacesMessage.SEVERITY_ERROR, errorKey);
+        facesService.redirect("/error.xhtml");
+    }
+
+    public String result(String resultCode) {
+        if (Constants.RESULT_FAILURE.equals(resultCode)) {
+            addMessage(FacesMessage.SEVERITY_ERROR, "consent.gather.failed");
+        } else if (Constants.RESULT_INVALID_STEP.equals(resultCode)) {
+            addMessage(FacesMessage.SEVERITY_ERROR, "consent.gather.invalid.step");
+        } else if (Constants.RESULT_EXPIRED.equals(resultCode)) {
+            addMessage(FacesMessage.SEVERITY_ERROR, "consent.gather.invalid.session");
+        }
+        return resultCode;
+    }
+
+    public void addMessage(FacesMessage.Severity severity, String summary) {
+        String msg = languageBean.getMessage(summary);
+        FacesMessage message = new FacesMessage(severity, msg, null);
+        facesContext.addMessage(null, message);
+    }
+
+    public Map<String, String> getPageAttributes() {
+        return pageAttributes;
+    }
+
+    protected CustomScriptConfiguration getScript(final SessionId session) {
+		String scriptName = sessionService.getScriptName(session);
+		CustomScriptConfiguration script = external.getCustomScriptConfigurationByName(scriptName);
+
+		return script;
+	}
+
+	public boolean isConsentGathered() {
+        final HttpServletRequest httpRequest = (HttpServletRequest) externalContext.getRequest();
+        return sessionService.isSessionStateAuthenticated(httpRequest);
+	}
+
+	public ConsentGatheringContext getContext() {
+		return context;
+	}
+
+    public List<org.oxauth.persistence.model.Scope> getScopes() {
+    	if (context == null) {
+    		return Collections.emptyList();
+    	}
+
+    	SessionId authenticatedSessionId = sessionIdService.getSessionId();
+        // Fix the list of scopes in the authorization page. oxAuth #739
+        Set<String> grantedScopes = scopeChecker.checkScopesPolicy(context.getClient(), authenticatedSessionId.getSessionAttributes().get(AuthorizeRequestParam.SCOPE));
+        String allowedScope = org.gluu.oxauth.model.util.StringUtils.implode(grantedScopes, " ");
+
+        return authorizeService.getScopes(allowedScope);
+    }
+
+}
diff --git a/oxAuth/Server/src/main/java/org/gluu/oxauth/authorize/ws/rs/ConsentGatheringSessionService.java b/oxAuth/Server/src/main/java/org/gluu/oxauth/authorize/ws/rs/ConsentGatheringSessionService.java
new file mode 100644
index 00000000..c0777b06
--- /dev/null
+++ b/oxAuth/Server/src/main/java/org/gluu/oxauth/authorize/ws/rs/ConsentGatheringSessionService.java
@@ -0,0 +1,218 @@
+/*
+ * oxAuth is available under the MIT License (2008). See http://opensource.org/licenses/MIT for full text.
+ *
+ * Copyright (c) 2015, Gluu
+ */
+
+package org.gluu.oxauth.authorize.ws.rs;
+
+import org.apache.commons.lang.StringUtils;
+import org.gluu.oxauth.model.common.User;
+import org.gluu.oxauth.model.registration.Client;
+import org.gluu.oxauth.model.session.SessionId;
+import org.gluu.oxauth.model.util.Util;
+import org.gluu.oxauth.service.ClientService;
+import org.gluu.oxauth.service.CookieService;
+import org.gluu.oxauth.service.SessionIdService;
+import org.gluu.persist.exception.EntryPersistenceException;
+import org.slf4j.Logger;
+
+import javax.inject.Inject;
+import javax.inject.Named;
+import javax.servlet.http.HttpServletRequest;
+import javax.servlet.http.HttpServletResponse;
+
+/**
+ * @author Yuriy Movchan
+ * @version December 8, 2018
+ */
+@Named
+public class ConsentGatheringSessionService {
+
+    @Inject
+    private Logger log;
+
+    @Inject
+    private SessionIdService sessionIdService;
+
+    @Inject
+    private CookieService cookieService;
+
+    @Inject
+    private ClientService clientService;
+
+    public SessionId getConnectSession(HttpServletRequest httpRequest) {
+        String cookieId = cookieService.getSessionIdFromCookie(httpRequest);
+        log.trace("Cookie - session_id: {}", cookieId);
+        if (StringUtils.isNotBlank(cookieId)) {
+            return sessionIdService.getSessionId(cookieId);
+        }
+
+        return null;
+    }
+    public boolean hasCookie(HttpServletRequest httpRequest) {
+        String cookieId = cookieService.getConsentSessionIdFromCookie(httpRequest);
+
+        return StringUtils.isNotBlank(cookieId);
+    }
+
+    public SessionId getConsentSession(HttpServletRequest httpRequest, HttpServletResponse httpResponse, String userDn, boolean create) {
+        String cookieId = cookieService.getConsentSessionIdFromCookie(httpRequest);
+        log.trace("Cookie - consent_session_id: {}", cookieId);
+
+        if (StringUtils.isNotBlank(cookieId)) {
+            SessionId sessionId = sessionIdService.getSessionId(cookieId);
+            if (sessionId != null) {
+                log.trace("Loaded consent_session_id from cookie, session: {}", sessionId);
+                return sessionId;
+            } else {
+                log.error("Failed to load consent_session_id from cookie: {}", cookieId);
+            }
+        } else { 
+            if (!create) {
+                log.error("consent_session_id cookie is not set.");
+            }
+        }
+
+        if (!create) {
+            return null;
+        }
+
+        log.trace("Generating new consent_session_id ...");
+        SessionId session = sessionIdService.generateUnauthenticatedSessionId(userDn);
+
+        cookieService.createCookieWithState(session.getId(), session.getSessionState(), session.getOPBrowserState(), httpRequest, httpResponse, CookieService.CONSENT_SESSION_ID_COOKIE_NAME);
+        log.trace("consent_session_id cookie created.");
+
+        return session;
+    }
+
+    public void setAuthenticatedSessionState(HttpServletRequest httpRequest, HttpServletResponse httpResponse, SessionId sessionId) {
+        SessionId connectSession = getConnectSession(httpRequest);
+        sessionIdService.setSessionIdStateAuthenticated(httpRequest, httpResponse, sessionId, connectSession.getUserDn());
+    }
+
+    public boolean isSessionStateAuthenticated(HttpServletRequest httpRequest) {
+        boolean hasSession = hasCookie(httpRequest);
+        
+        if (hasSession) {
+            final SessionId session = getConsentSession(httpRequest, null, null, false);
+            return sessionIdService.isSessionIdAuthenticated(session);
+        } else {
+            return false;
+        }
+    }
+
+    public boolean persist(SessionId session) {
+        try {
+            if (sessionIdService.updateSessionId(session, true)) {
+                log.trace("Session updated successfully. Session: " + session);
+                return true;
+            }
+        } catch (EntryPersistenceException e) {
+            try {
+                if (sessionIdService.persistSessionId(session, true)) {
+                    log.trace("Session persisted successfully. Session: " + session);
+                    return true;
+                }
+            } catch (Exception ex) {
+                log.error("Failed to persist session, id: " + session.getId(), ex);
+            }
+        } catch (Exception e) {
+            log.error("Failed to persist session, id: " + session.getId(), e);
+        }
+        return false;
+    }
+
+    public int getStep(SessionId session) {
+        String stepString = session.getSessionAttributes().get("step");
+        int step = Util.parseIntSilently(stepString);
+        if (step == -1) {
+            step = 1;
+            setStep(step, session);
+        }
+        return step;
+    }
+
+    public void setStep(int step, SessionId session) {
+        session.getSessionAttributes().put("step", Integer.toString(step));
+    }
+
+    public void configure(SessionId session, String scriptName, String clientId, String state) {
+        setStep(1, session);
+        setScriptName(session, scriptName);
+
+        setClientId(session, clientId);
+        persist(session);
+    }
+
+    public boolean isStepPassed(SessionId session, Integer step) {
+        return Boolean.parseBoolean(session.getSessionAttributes().get(String.format("consent_step_passed_%d", step)));
+    }
+
+    public boolean isPassedPreviousSteps(SessionId session, Integer step) {
+        for (int i = 1; i < step; i++) {
+            if (!isStepPassed(session, i)) {
+                return false;
+            }
+        }
+        return true;
+    }
+
+    public void markStep(SessionId session, Integer step, boolean value) {
+        String key = String.format("consent_step_passed_%d", step);
+        if (value) {
+            session.getSessionAttributes().put(key, Boolean.TRUE.toString());
+        } else {
+            session.getSessionAttributes().remove(key);
+        }
+    }
+
+    public String getScriptName(SessionId session) {
+        return session.getSessionAttributes().get("gather_script_name");
+    }
+
+    public void setScriptName(SessionId session, String scriptName) {
+        session.getSessionAttributes().put("gather_script_name", scriptName);
+    }
+
+    public String getClientId(SessionId session) {
+        return session.getSessionAttributes().get("client_id");
+    }
+
+    public void setClientId(SessionId session, String clientId) {
+        session.getSessionAttributes().put("client_id", clientId);
+    }
+
+    public void resetToStep(SessionId session, int overridenNextStep, int step) {
+        for (int i = overridenNextStep; i <= step; i++) {
+            markStep(session, i, false);
+        }
+
+        setStep(overridenNextStep, session);
+    }
+
+    public User getUser(HttpServletRequest httpRequest, String... returnAttributes) {
+        return sessionIdService.getUser(getConnectSession(httpRequest));
+    }
+
+    public String getUserDn(HttpServletRequest httpRequest) {
+        SessionId connectSession = getConnectSession(httpRequest);
+        if (connectSession != null) {
+            return connectSession.getUserDn();
+        }
+
+        log.trace("No logged in user.");
+        return null;
+    }
+
+    public Client getClient(SessionId session) {
+        String clientId = getClientId(session);
+        if (StringUtils.isNotBlank(clientId)) {
+            return clientService.getClient(clientId);
+        }
+        log.trace("client_id is not in session.");
+        return null;
+    }
+
+}
diff --git a/oxAuth/Server/src/main/java/org/gluu/oxauth/authorize/ws/rs/DeviceAuthorizationAction.java b/oxAuth/Server/src/main/java/org/gluu/oxauth/authorize/ws/rs/DeviceAuthorizationAction.java
new file mode 100644
index 00000000..e5e15247
--- /dev/null
+++ b/oxAuth/Server/src/main/java/org/gluu/oxauth/authorize/ws/rs/DeviceAuthorizationAction.java
@@ -0,0 +1,367 @@
+/*
+ * oxAuth is available under the MIT License (2008). See http://opensource.org/licenses/MIT for full text.
+ *
+ * Copyright (c) 2014, Gluu
+ */
+
+package org.gluu.oxauth.authorize.ws.rs;
+
+import org.apache.commons.lang.StringUtils;
+import org.gluu.jsf2.message.FacesMessages;
+import org.gluu.oxauth.i18n.LanguageBean;
+import org.gluu.oxauth.model.common.DeviceAuthorizationCacheControl;
+import org.gluu.oxauth.model.common.DeviceAuthorizationStatus;
+import org.gluu.oxauth.model.configuration.AppConfiguration;
+import org.gluu.oxauth.model.session.SessionId;
+import org.gluu.oxauth.model.session.SessionIdState;
+import org.gluu.oxauth.model.util.Util;
+import org.gluu.oxauth.service.CookieService;
+import org.gluu.oxauth.service.DeviceAuthorizationService;
+import org.gluu.oxauth.service.SessionIdService;
+import org.gluu.oxauth.util.RedirectUri;
+import org.slf4j.Logger;
+
+import javax.enterprise.context.RequestScoped;
+import javax.faces.application.FacesMessage;
+import javax.faces.context.FacesContext;
+import javax.inject.Inject;
+import javax.inject.Named;
+import java.io.IOException;
+import java.io.Serializable;
+import java.util.Date;
+import java.util.HashMap;
+import java.util.Map;
+import java.util.UUID;
+
+import static org.gluu.oxauth.model.authorize.AuthorizeRequestParam.*;
+import static org.gluu.oxauth.model.util.StringUtils.EASY_TO_READ_CHARACTERS;
+import static org.gluu.oxauth.service.DeviceAuthorizationService.*;
+
+/**
+ * Action used to process all requests related to device authorization.
+ */
+@Named
+@RequestScoped
+public class DeviceAuthorizationAction implements Serializable {
+
+    @Inject
+    private Logger log;
+
+    @Inject
+    private FacesMessages facesMessages;
+
+    @Inject
+    private LanguageBean languageBean;
+
+    @Inject
+    private DeviceAuthorizationService deviceAuthorizationService;
+
+    @Inject
+    private AppConfiguration appConfiguration;
+
+    @Inject
+    private SessionIdService sessionIdService;
+
+    @Inject
+    private CookieService cookieService;
+
+    // Query params
+    private String code;
+    private String sessionId;
+    private String state;
+    private String sessionState;
+    private String error;
+    private String errorDescription;
+    private String userCode;
+
+    // UI data
+    private String userCodePart1;
+    private String userCodePart2;
+    private String titleMsg;
+    private String descriptionMsg;
+
+    // Internal process
+    private Long lastAttempt = System.currentTimeMillis();
+    private byte attempts;
+
+    /**
+     * Method used by the view to load all query params and set the page state.
+     */
+    public void pageLoaded() {
+        log.info("Processing device authorization page request, userCode: {}, code: {}, sessionId: {}, state: {}, sessionState: {}, error: {}, errorDescription: {}", userCode, code, sessionId, state, sessionState, error, errorDescription);
+        if (StringUtils.isNotBlank(error)) {
+            this.titleMsg = error;
+            this.descriptionMsg = errorDescription;
+        }
+        if (this.isDeviceAuthnCompleted()) {
+            this.titleMsg = languageBean.getMessage("device.authorization.access.granted.title");
+            this.descriptionMsg = languageBean.getMessage("device.authorization.authorization.completed.msg");
+        }
+
+        initializeSession();
+    }
+
+    /**
+     * Reset data in session or create a new one whether there is no session.
+     */
+    public void initializeSession() {
+        SessionId sessionId = sessionIdService.getSessionId();
+        Map<String, String> sessionAttributes = new HashMap<>();
+        if (StringUtils.isNotBlank(userCode)) {
+            sessionAttributes.put(SESSION_USER_CODE, userCode);
+        }
+        if (sessionId == null) {
+            SessionId deviceAuthzSession = sessionIdService.generateUnauthenticatedSessionId(null, new Date(), SessionIdState.UNAUTHENTICATED, sessionAttributes, false);
+            sessionIdService.persistSessionId(deviceAuthzSession);
+            cookieService.createSessionIdCookie(deviceAuthzSession, false);
+            log.debug("Created session for device authorization grant page, sessionId: {}", deviceAuthzSession.getId());
+        } else {
+            if (StringUtils.isNotBlank(sessionId.getSessionAttributes().get(SESSION_LAST_ATTEMPT))
+                    && StringUtils.isNotBlank(sessionId.getSessionAttributes().get(SESSION_ATTEMPTS))) {
+                lastAttempt = Long.parseLong(sessionId.getSessionAttributes().get(SESSION_LAST_ATTEMPT));
+                attempts = Byte.parseByte(sessionId.getSessionAttributes().get(SESSION_ATTEMPTS));
+            }
+            sessionAttributes.put(SESSION_LAST_ATTEMPT, String.valueOf(lastAttempt));
+            sessionAttributes.put(SESSION_ATTEMPTS, String.valueOf(attempts));
+            sessionId.setSessionAttributes(sessionAttributes);
+            sessionIdService.updateSessionId(sessionId);
+        }
+    }
+
+    /**
+     * Processes user code introduced or loaded in the veritification page and redirects whether user code is correct
+     * or return an error if there is something wrong.
+     */
+    public void processUserCodeVerification() {
+        SessionId session = sessionIdService.getSessionId();
+        if (session == null) {
+            facesMessages.add(FacesMessage.SEVERITY_WARN, languageBean.getMessage("error.errorEncountered"));
+            return;
+        }
+
+        if (!preventBruteForcing(session)) {
+            facesMessages.add(FacesMessage.SEVERITY_WARN, languageBean.getMessage("device.authorization.brute.forcing.msg"));
+            return;
+        }
+
+        String userCode;
+        if (StringUtils.isBlank(userCodePart1) && StringUtils.isBlank(userCodePart2)) {
+            userCode = session.getSessionAttributes().get(SESSION_USER_CODE);
+        } else {
+            userCode = userCodePart1 + '-' + userCodePart2;
+        }
+        userCode = userCode.toUpperCase();
+
+        if (!validateFormat(userCode)) {
+            facesMessages.add(FacesMessage.SEVERITY_WARN, languageBean.getMessage("device.authorization.invalid.user.code"));
+            return;
+        }
+
+        DeviceAuthorizationCacheControl cacheData = deviceAuthorizationService.getDeviceAuthzByUserCode(userCode);
+        log.debug("Verifying device authorization cache data: {}", cacheData);
+
+        String message = null;
+        if (cacheData != null) {
+            if (cacheData.getStatus() == DeviceAuthorizationStatus.PENDING) {
+                session.getSessionAttributes().put(SESSION_USER_CODE, userCode);
+                session.getSessionAttributes().remove(SESSION_LAST_ATTEMPT);
+                session.getSessionAttributes().remove(SESSION_ATTEMPTS);
+                sessionIdService.updateSessionId(session);
+
+                redirectToAuthorization(cacheData);
+            } else if (cacheData.getStatus() == DeviceAuthorizationStatus.DENIED) {
+                message = languageBean.getMessage("device.authorization.access.denied.msg");
+            } else {
+                message = languageBean.getMessage("device.authorization.expired.code.msg");
+            }
+        } else {
+            message = languageBean.getMessage("device.authorization.invalid.user.code");
+        }
+
+        if (message != null) {
+            facesMessages.add(FacesMessage.SEVERITY_WARN, message);
+        }
+    }
+
+    /**
+     * Prevents brute forcing for user code field from device_authorization page.
+     * @param session Session used to keep data related to all attemps done.
+     */
+    private boolean preventBruteForcing(SessionId session) {
+        lastAttempt = Long.valueOf(session.getSessionAttributes().getOrDefault(SESSION_LAST_ATTEMPT, "0"));
+        attempts = Byte.parseByte(session.getSessionAttributes().getOrDefault(SESSION_ATTEMPTS, "0"));
+        long currentTime = System.currentTimeMillis();
+        if (currentTime - lastAttempt > 500 && attempts < 5) {
+            lastAttempt = currentTime;
+            attempts++;
+            session.getSessionAttributes().put(SESSION_LAST_ATTEMPT, String.valueOf(lastAttempt));
+            session.getSessionAttributes().put(SESSION_ATTEMPTS, String.valueOf(attempts));
+            sessionIdService.updateSessionId(session);
+            return true;
+        } else {
+            log.trace("User has done too many failed user code verification requests, sessionId: {}", sessionIdService.getSessionId());
+            return false;
+        }
+    }
+
+    /**
+     * Ensures that the user code gotten from UI is well formatted.
+     * @param userCode User code to be processed.
+     */
+    private boolean validateFormat(String userCode) {
+        String regex = "[" + EASY_TO_READ_CHARACTERS + "]{4}-[" + EASY_TO_READ_CHARACTERS + "]{4}";
+        return userCode.matches(regex);
+    }
+
+    /**
+     * Process data related to device authorization and redirects to the authorization page.
+     * @param cacheData Data related to the device code request.
+     */
+    private void redirectToAuthorization(DeviceAuthorizationCacheControl cacheData) {
+        try {
+            log.info("Redirecting to authorization code flow to process device authorization, data: {}", cacheData);
+            String authorizationEndpoint = appConfiguration.getAuthorizationEndpoint();
+            String clientId = cacheData.getClient().getClientId();
+            String responseType = appConfiguration.getDeviceAuthzResponseTypeToProcessAuthz();
+            String scope = Util.listAsString(cacheData.getScopes());
+            String state = UUID.randomUUID().toString();
+            String nonce = UUID.randomUUID().toString();
+
+            RedirectUri authRequest = new RedirectUri(authorizationEndpoint);
+            authRequest.addResponseParameter(CLIENT_ID, clientId);
+            authRequest.addResponseParameter(RESPONSE_TYPE, responseType);
+            authRequest.addResponseParameter(SCOPE, scope);
+            authRequest.addResponseParameter(STATE, state);
+            authRequest.addResponseParameter(NONCE, nonce);
+
+            FacesContext.getCurrentInstance().getExternalContext().redirect(authRequest.toString());
+        } catch (IOException e) {
+            log.error("Problems trying to redirect to authorization page from device authorization action", e);
+            String message = languageBean.getMessage("error.errorEncountered");
+            facesMessages.add(FacesMessage.SEVERITY_WARN, message);
+        } catch (Exception e) {
+            log.error("Exception processing redirection", e);
+            String message = languageBean.getMessage("error.errorEncountered");
+            facesMessages.add(FacesMessage.SEVERITY_WARN, message);
+        }
+    }
+
+    /**
+     * Checks if page is loaded for a new device request.
+     */
+    public boolean isNewRequest() {
+        return StringUtils.isBlank(code) && StringUtils.isBlank(sessionId) && StringUtils.isBlank(state)
+                && StringUtils.isBlank(error) && StringUtils.isBlank(errorDescription);
+    }
+
+    /**
+     * Checks if page should show error messages.
+     */
+    public boolean isErrorResponse() {
+        return StringUtils.isNotBlank(error) && StringUtils.isNotBlank(error);
+    }
+
+    /**
+     * Checks if page should be shown in complete verification mode, it means that the
+     * user code has been shared by the url.
+     */
+    public boolean isCompleteVerificationMode() {
+        return isNewRequest() && StringUtils.isNotBlank(userCode);
+    }
+
+    /**
+     * Checks if the authorization is complete and page should show confirmation to the end-user.
+     */
+    public boolean isDeviceAuthnCompleted() {
+        return StringUtils.isNotBlank(code) && StringUtils.isNotBlank(state) && StringUtils.isBlank(error);
+    }
+
+    public String getUserCodePart1() {
+        return userCodePart1;
+    }
+
+    public void setUserCodePart1(String userCodePart1) {
+        this.userCodePart1 = userCodePart1;
+    }
+
+    public String getUserCodePart2() {
+        return userCodePart2;
+    }
+
+    public void setUserCodePart2(String userCodePart2) {
+        this.userCodePart2 = userCodePart2;
+    }
+
+    public String getCode() {
+        return code;
+    }
+
+    public void setCode(String code) {
+        this.code = code;
+    }
+
+    public String getSessionId() {
+        return sessionId;
+    }
+
+    public void setSessionId(String sessionId) {
+        this.sessionId = sessionId;
+    }
+
+    public String getState() {
+        return state;
+    }
+
+    public void setState(String state) {
+        this.state = state;
+    }
+
+    public String getSessionState() {
+        return sessionState;
+    }
+
+    public void setSessionState(String sessionState) {
+        this.sessionState = sessionState;
+    }
+
+    public String getError() {
+        return error;
+    }
+
+    public void setError(String error) {
+        this.error = error;
+    }
+
+    public String getErrorDescription() {
+        return errorDescription;
+    }
+
+    public void setErrorDescription(String errorDescription) {
+        this.errorDescription = errorDescription;
+    }
+
+    public String getUserCode() {
+        return userCode;
+    }
+
+    public void setUserCode(String userCode) {
+        this.userCode = userCode;
+    }
+
+    public String getTitleMsg() {
+        return titleMsg;
+    }
+
+    public void setTitleMsg(String titleMsg) {
+        this.titleMsg = titleMsg;
+    }
+
+    public String getDescriptionMsg() {
+        return descriptionMsg;
+    }
+
+    public void setDescriptionMsg(String descriptionMsg) {
+        this.descriptionMsg = descriptionMsg;
+    }
+}
+
diff --git a/oxAuth/Server/src/main/java/org/gluu/oxauth/authorize/ws/rs/DeviceAuthorizationRestWebService.java b/oxAuth/Server/src/main/java/org/gluu/oxauth/authorize/ws/rs/DeviceAuthorizationRestWebService.java
new file mode 100644
index 00000000..cfafb673
--- /dev/null
+++ b/oxAuth/Server/src/main/java/org/gluu/oxauth/authorize/ws/rs/DeviceAuthorizationRestWebService.java
@@ -0,0 +1,48 @@
+/*
+ * oxAuth is available under the MIT License (2008). See http://opensource.org/licenses/MIT for full text.
+ *
+ * Copyright (c) 2014, Gluu
+ */
+
+package org.gluu.oxauth.authorize.ws.rs;
+
+import org.gluu.oxauth.model.authorize.DeviceAuthorizationRequestParam;
+
+import javax.servlet.http.HttpServletRequest;
+import javax.servlet.http.HttpServletResponse;
+import javax.ws.rs.FormParam;
+import javax.ws.rs.POST;
+import javax.ws.rs.Path;
+import javax.ws.rs.Produces;
+import javax.ws.rs.core.Context;
+import javax.ws.rs.core.MediaType;
+import javax.ws.rs.core.Response;
+import javax.ws.rs.core.SecurityContext;
+
+/**
+ * <p>
+ * Provides interface to process OAuth2 Device Flow.
+ * </p>
+ */
+public interface DeviceAuthorizationRestWebService {
+
+
+    /**
+     * Device Authorization Request [RFC8628 3.1].
+     * Generates user_code, device_code and data needed to follow the device authorization flow
+     * in other rest services.
+     *
+     * @param clientId REQUIRED The client identifier as described in Section 2.2 of [RFC6749].
+     * @param scope The scope of the access request as defined by Section 3.3 of [RFC6749].
+     */
+    @POST
+    @Path("/device_authorization")
+    @Produces({MediaType.APPLICATION_JSON})
+    Response deviceAuthorization(
+            @FormParam(DeviceAuthorizationRequestParam.CLIENT_ID) String clientId,
+            @FormParam(DeviceAuthorizationRequestParam.SCOPE) String scope,
+            @Context HttpServletRequest httpRequest,
+            @Context HttpServletResponse httpResponse,
+            @Context SecurityContext securityContext);
+
+}
\ No newline at end of file
diff --git a/oxAuth/Server/src/main/java/org/gluu/oxauth/authorize/ws/rs/DeviceAuthorizationRestWebServiceImpl.java b/oxAuth/Server/src/main/java/org/gluu/oxauth/authorize/ws/rs/DeviceAuthorizationRestWebServiceImpl.java
new file mode 100644
index 00000000..4ddde014
--- /dev/null
+++ b/oxAuth/Server/src/main/java/org/gluu/oxauth/authorize/ws/rs/DeviceAuthorizationRestWebServiceImpl.java
@@ -0,0 +1,159 @@
+/*
+ * oxAuth is available under the MIT License (2008). See http://opensource.org/licenses/MIT for full text.
+ *
+ * Copyright (c) 2014, Gluu
+ */
+
+package org.gluu.oxauth.authorize.ws.rs;
+
+import org.gluu.oxauth.audit.ApplicationAuditLogger;
+import org.gluu.oxauth.model.audit.Action;
+import org.gluu.oxauth.model.audit.OAuth2AuditLog;
+import org.gluu.oxauth.model.authorize.DeviceAuthorizationResponseParam;
+import org.gluu.oxauth.model.authorize.ScopeChecker;
+import org.gluu.oxauth.model.common.DeviceAuthorizationCacheControl;
+import org.gluu.oxauth.model.common.DeviceAuthorizationStatus;
+import org.gluu.oxauth.model.configuration.AppConfiguration;
+import org.gluu.oxauth.model.error.ErrorResponseFactory;
+import org.gluu.oxauth.model.registration.Client;
+import org.gluu.oxauth.model.session.SessionClient;
+import org.gluu.oxauth.model.util.StringUtils;
+import org.gluu.oxauth.security.Identity;
+import org.gluu.oxauth.service.ClientService;
+import org.gluu.oxauth.service.DeviceAuthorizationService;
+import org.gluu.oxauth.util.ServerUtil;
+import org.gluu.util.StringHelper;
+import org.json.JSONException;
+import org.json.JSONObject;
+import org.slf4j.Logger;
+
+import javax.inject.Inject;
+import javax.servlet.http.HttpServletRequest;
+import javax.servlet.http.HttpServletResponse;
+import javax.ws.rs.Path;
+import javax.ws.rs.WebApplicationException;
+import javax.ws.rs.core.*;
+import java.net.URI;
+import java.util.ArrayList;
+import java.util.List;
+import java.util.Set;
+
+import static org.gluu.oxauth.model.authorize.DeviceAuthorizationResponseParam.*;
+import static org.gluu.oxauth.model.token.TokenErrorResponseType.INVALID_CLIENT;
+import static org.gluu.oxauth.model.token.TokenErrorResponseType.INVALID_GRANT;
+
+/**
+ * Implementation for device authorization rest service.
+ */
+@Path("/")
+public class DeviceAuthorizationRestWebServiceImpl implements DeviceAuthorizationRestWebService {
+
+    @Inject
+    private Logger log;
+
+    @Inject
+    private ApplicationAuditLogger applicationAuditLogger;
+
+    @Inject
+    private ErrorResponseFactory errorResponseFactory;
+
+    @Inject
+    private Identity identity;
+
+    @Inject
+    private ScopeChecker scopeChecker;
+
+    @Inject
+    private AppConfiguration appConfiguration;
+
+    @Inject
+    private DeviceAuthorizationService deviceAuthorizationService;
+
+    @Inject
+    private ClientService clientService;
+
+    @Context
+    private HttpServletRequest servletRequest;
+
+
+    @Override
+    public Response deviceAuthorization(String clientId, String scope, HttpServletRequest httpRequest,
+                                        HttpServletResponse httpResponse, SecurityContext securityContext) {
+        scope = ServerUtil.urlDecode(scope); // it may be encoded
+
+        OAuth2AuditLog oAuth2AuditLog = new OAuth2AuditLog(ServerUtil.getIpAddress(httpRequest), Action.DEVICE_CODE_AUTHORIZATION);
+        oAuth2AuditLog.setClientId(clientId);
+        oAuth2AuditLog.setScope(scope);
+
+        try {
+            log.debug("Attempting to request device codes: clientId = {}, scope = {}", clientId, scope);
+
+            SessionClient sessionClient = identity.getSessionClient();
+            Client client = sessionClient != null ? sessionClient.getClient() : null;
+            if (client == null) {
+                client = clientService.getClient(clientId);
+                if (!clientService.isPublic(client)) {
+                    log.trace("Client is not public and not authenticated. Skip device authorization, clientId: {}", clientId);
+                    throw errorResponseFactory.createWebApplicationException(Response.Status.UNAUTHORIZED, INVALID_CLIENT, "");
+                }
+            }
+            if (client == null) {
+                log.trace("Client is not unknown. Skip revoking.");
+                throw errorResponseFactory.createWebApplicationException(Response.Status.UNAUTHORIZED, INVALID_CLIENT, "");
+            }
+
+            if (!deviceAuthorizationService.hasDeviceCodeCompatibility(client)) {
+                throw errorResponseFactory.createWebApplicationException(Response.Status.BAD_REQUEST, INVALID_GRANT, "");
+            }
+
+            List<String> scopes = new ArrayList<>();
+            if (StringHelper.isNotEmpty(scope)) {
+                Set<String> grantedScopes = scopeChecker.checkScopesPolicy(client, scope);
+                scopes.addAll(grantedScopes);
+            }
+
+            String userCode = StringUtils.generateRandomReadableCode((byte) 8); // Entropy 20^8 which is suggested in the RFC8628 section 6.1
+            String deviceCode = StringUtils.generateRandomCode((byte) 24); // Entropy 160 bits which is over userCode entropy based on RFC8628 section 5.2
+            URI verificationUri = UriBuilder.fromUri(appConfiguration.getIssuer()).path("device-code").build();
+            int expiresIn = appConfiguration.getDeviceAuthzRequestExpiresIn();
+            int interval = appConfiguration.getDeviceAuthzTokenPollInterval();
+            long lastAccess = System.currentTimeMillis();
+            DeviceAuthorizationStatus status = DeviceAuthorizationStatus.PENDING;
+
+            DeviceAuthorizationCacheControl deviceAuthorizationCacheControl = new DeviceAuthorizationCacheControl(userCode,
+                    deviceCode, client, scopes, verificationUri, expiresIn, interval, lastAccess, status);
+            deviceAuthorizationService.saveInCache(deviceAuthorizationCacheControl, true, true);
+            log.info("Device authorization flow initiated, userCode: {}, deviceCode: {}, clientId: {}, verificationUri: {}, expiresIn: {}, interval: {}", userCode, deviceCode, clientId, verificationUri, expiresIn, interval);
+
+            applicationAuditLogger.sendMessage(oAuth2AuditLog);
+            return Response.ok()
+                    .entity(getResponseJSONObject(deviceAuthorizationCacheControl).toString(4).replace("\\/", "/"))
+                    .type(MediaType.APPLICATION_JSON_TYPE)
+                    .build();
+        } catch (WebApplicationException wae) {
+            throw wae;
+        } catch (Exception e) {
+            log.error("Problems processing device authorization init flow, clientId: {}, scope: {}", clientId, scope, e);
+            return Response.status(Response.Status.INTERNAL_SERVER_ERROR)
+                    .build();
+        }
+    }
+
+    private JSONObject getResponseJSONObject(DeviceAuthorizationCacheControl deviceAuthorizationCacheControl) throws JSONException {
+        URI verificationUriComplete = UriBuilder.fromUri(deviceAuthorizationCacheControl.getVerificationUri())
+                .queryParam(DeviceAuthorizationResponseParam.USER_CODE, deviceAuthorizationCacheControl.getUserCode())
+                .build();
+
+        JSONObject responseJsonObject = new JSONObject();
+
+        responseJsonObject.put(DEVICE_CODE, deviceAuthorizationCacheControl.getDeviceCode());
+        responseJsonObject.put(USER_CODE, deviceAuthorizationCacheControl.getUserCode());
+        responseJsonObject.put(VERIFICATION_URI, deviceAuthorizationCacheControl.getVerificationUri());
+        responseJsonObject.put(VERIFICATION_URI_COMPLETE, verificationUriComplete.toString());
+        responseJsonObject.put(EXPIRES_IN, deviceAuthorizationCacheControl.getExpiresIn());
+        responseJsonObject.put(INTERVAL, deviceAuthorizationCacheControl.getInterval());
+
+        return responseJsonObject;
+    }
+
+}
\ No newline at end of file
diff --git a/oxAuth/Server/src/main/java/org/gluu/oxauth/authorize/ws/rs/LoginAction.java b/oxAuth/Server/src/main/java/org/gluu/oxauth/authorize/ws/rs/LoginAction.java
new file mode 100644
index 00000000..b727ab7a
--- /dev/null
+++ b/oxAuth/Server/src/main/java/org/gluu/oxauth/authorize/ws/rs/LoginAction.java
@@ -0,0 +1,31 @@
+package org.gluu.oxauth.authorize.ws.rs;
+
+import javax.enterprise.context.RequestScoped;
+import javax.inject.Inject;
+import javax.inject.Named;
+
+import org.slf4j.Logger;
+
+
+/**
+ * @author Javier Rojas Blum
+ * @version May 24, 2016
+ */
+@RequestScoped
+@Named
+public class LoginAction {
+
+    @Inject
+    private Logger log;
+
+    private String loginHint;
+
+    public String getLoginHint() {
+        return loginHint;
+    }
+
+    public void setLoginHint(String loginHint) {
+        this.loginHint = loginHint;
+    }
+
+}
diff --git a/oxAuth/Server/src/main/java/org/gluu/oxauth/authorize/ws/rs/LogoutAction.java b/oxAuth/Server/src/main/java/org/gluu/oxauth/authorize/ws/rs/LogoutAction.java
new file mode 100644
index 00000000..a0e864a4
--- /dev/null
+++ b/oxAuth/Server/src/main/java/org/gluu/oxauth/authorize/ws/rs/LogoutAction.java
@@ -0,0 +1,302 @@
+/*
+ * oxAuth is available under the MIT License (2008). See http://opensource.org/licenses/MIT for full text.
+ *
+ * Copyright (c) 2014, Gluu
+ */
+
+package org.gluu.oxauth.authorize.ws.rs;
+
+import com.fasterxml.jackson.core.JsonGenerationException;
+import com.fasterxml.jackson.core.JsonParseException;
+import com.fasterxml.jackson.databind.JsonMappingException;
+import org.gluu.jsf2.service.FacesService;
+import org.gluu.model.custom.script.conf.CustomScriptConfiguration;
+import org.gluu.oxauth.i18n.LanguageBean;
+import org.gluu.oxauth.model.common.AuthorizationGrant;
+import org.gluu.oxauth.model.common.AuthorizationGrantList;
+import org.gluu.oxauth.model.configuration.AppConfiguration;
+import org.gluu.oxauth.model.session.EndSessionRequestParam;
+import org.gluu.oxauth.model.session.SessionId;
+import org.gluu.oxauth.model.util.Base64Util;
+import org.gluu.oxauth.model.util.Util;
+import org.gluu.oxauth.service.SessionIdService;
+import org.gluu.oxauth.service.external.ExternalAuthenticationService;
+import org.gluu.service.JsonService;
+import org.gluu.util.StringHelper;
+import org.slf4j.Logger;
+
+import javax.enterprise.context.RequestScoped;
+import javax.faces.application.FacesMessage;
+import javax.faces.context.FacesContext;
+import javax.inject.Inject;
+import javax.inject.Named;
+import java.io.IOException;
+import java.util.Map;
+
+/**
+ * @author Javier Rojas Blum
+ * @author Yuriy Movchan
+ * @version August 9, 2017
+ */
+@RequestScoped
+@Named
+public class LogoutAction {
+
+    private static final String EXTERNAL_LOGOUT = "external_logout";
+    private static final String EXTERNAL_LOGOUT_DATA = "external_logout_data";
+
+    @Inject
+    private Logger log;
+
+    @Inject
+    private AuthorizationGrantList authorizationGrantList;
+
+    @Inject
+    private SessionIdService sessionIdService;
+
+    @Inject
+    private ExternalAuthenticationService externalAuthenticationService;
+
+    @Inject
+    private JsonService jsonService;
+
+    @Inject
+    private AppConfiguration appConfiguration;
+
+    @Inject
+    private FacesService facesService;
+
+    @Inject
+    private FacesContext facesContext;
+
+    @Inject
+    private LanguageBean languageBean;
+
+    private String idTokenHint;
+    private String postLogoutRedirectUri;
+    private SessionId sessionId;
+
+
+    public String getIdTokenHint() {
+        return idTokenHint;
+    }
+
+    public void setIdTokenHint(String idTokenHint) {
+        this.idTokenHint = idTokenHint;
+    }
+
+    public String getPostLogoutRedirectUri() {
+        return postLogoutRedirectUri;
+    }
+
+    public void setPostLogoutRedirectUri(String postLogoutRedirectUri) {
+        this.postLogoutRedirectUri = postLogoutRedirectUri;
+    }
+
+    public void redirect() {
+        SessionId sessionId = sessionIdService.getSessionId();
+
+        boolean validationResult = validateParameters();
+        if (!validationResult) {
+            try {
+                restoreLogoutParametersFromSession(sessionId);
+            } catch (IOException ex) {
+                logoutFailed();
+                log.debug("Failed to restore logout parameters from session", ex);
+            }
+
+            validationResult = validateParameters();
+            if (!validationResult) {
+                missingLogoutParameters();
+                return;
+            }
+        }
+
+        ExternalLogoutResult externalLogoutResult = processExternalAuthenticatorLogOut(sessionId);
+        if (ExternalLogoutResult.FAILURE == externalLogoutResult) {
+            logoutFailed();
+            return;
+        } else if (ExternalLogoutResult.REDIRECT == externalLogoutResult) {
+            return;
+        }
+
+        StringBuilder sb = new StringBuilder();
+
+        // Required parameters
+        if (idTokenHint != null && !idTokenHint.isEmpty()) {
+            sb.append(EndSessionRequestParam.ID_TOKEN_HINT + "=").append(idTokenHint);
+        }
+
+        if (sessionId != null && !postLogoutRedirectUri.isEmpty()) {
+            if (appConfiguration.getSessionIdRequestParameterEnabled()) {
+                sb.append("&" + EndSessionRequestParam.SESSION_ID + "=").append(sessionId.getId());
+            }
+            sb.append("&" + EndSessionRequestParam.SID + "=").append(sessionId.getOutsideSid());
+        }
+
+        if (postLogoutRedirectUri != null && !postLogoutRedirectUri.isEmpty()) {
+            sb.append("&" + EndSessionRequestParam.POST_LOGOUT_REDIRECT_URI + "=").append(postLogoutRedirectUri);
+        }
+
+        facesService.redirectToExternalURL("restv1/end_session?" + sb.toString());
+    }
+
+    private boolean validateParameters() {
+        return (StringHelper.isNotEmpty(idTokenHint) || (sessionId != null)) && StringHelper.isNotEmpty(postLogoutRedirectUri);
+    }
+
+    private ExternalLogoutResult processExternalAuthenticatorLogOut(SessionId sessionId) {
+        if ((sessionId != null) && sessionId.getSessionAttributes().containsKey(EXTERNAL_LOGOUT)) {
+            log.debug("Detected callback from external system. Resuming logout.");
+            return ExternalLogoutResult.SUCCESS;
+        }
+
+        AuthorizationGrant authorizationGrant = authorizationGrantList.getAuthorizationGrantByIdToken(idTokenHint);
+        if (authorizationGrant == null) {
+            Boolean endSessionWithAccessToken = appConfiguration.getEndSessionWithAccessToken();
+            if ((endSessionWithAccessToken != null) && endSessionWithAccessToken) {
+                authorizationGrant = authorizationGrantList.getAuthorizationGrantByAccessToken(idTokenHint);
+            }
+        }
+        if ((authorizationGrant == null) && (sessionId == null)) {
+            return ExternalLogoutResult.FAILURE;
+        }
+
+        String acrValues;
+        if (authorizationGrant == null) {
+            acrValues = sessionIdService.getAcr(sessionId);
+        } else {
+            acrValues = authorizationGrant.getAcrValues();
+        }
+
+        boolean isExternalAuthenticatorLogoutPresent = StringHelper.isNotEmpty(acrValues);
+        if (isExternalAuthenticatorLogoutPresent) {
+            log.debug("Attemptinmg to execute logout method of '{}' external authenticator.", acrValues);
+
+            CustomScriptConfiguration customScriptConfiguration = externalAuthenticationService.getCustomScriptConfigurationByName(acrValues);
+            if (customScriptConfiguration == null) {
+                log.error("Failed to get ExternalAuthenticatorConfiguration. acr_values: {}", acrValues);
+                return ExternalLogoutResult.FAILURE;
+            } else {
+                boolean scriptExternalLogoutResult = externalAuthenticationService.executeExternalLogout(customScriptConfiguration, null);
+                ExternalLogoutResult externalLogoutResult = scriptExternalLogoutResult ? ExternalLogoutResult.SUCCESS : ExternalLogoutResult.FAILURE;
+                log.debug("Logout result is '{}' for session '{}', userDn: '{}'", externalLogoutResult, sessionId.getId(), sessionId.getUserDn());
+
+                int apiVersion = externalAuthenticationService.executeExternalGetApiVersion(customScriptConfiguration);
+                if (apiVersion < 3) {
+                    // Not support redirect to external system at logout
+                    return externalLogoutResult;
+                }
+
+                log.trace("According to API version script supports logout redirects");
+                String logoutExternalUrl = externalAuthenticationService.getLogoutExternalUrl(customScriptConfiguration, null);
+                log.debug("External logout result is '{}' for user '{}'", logoutExternalUrl, sessionId.getUserDn());
+
+                if (StringHelper.isEmpty(logoutExternalUrl)) {
+                    return externalLogoutResult;
+                }
+
+                // Store in session parameters needed to call end_session
+                try {
+                    storeLogoutParametersInSession(sessionId);
+                } catch (IOException ex) {
+                    log.debug("Failed to persist logout parameters in session", ex);
+
+                    return ExternalLogoutResult.FAILURE;
+                }
+
+                // Redirect to external URL
+                facesService.redirectToExternalURL(logoutExternalUrl);
+                return ExternalLogoutResult.REDIRECT;
+            }
+        } else {
+            return ExternalLogoutResult.SUCCESS;
+        }
+    }
+
+    private void storeLogoutParametersInSession(SessionId sessionId) throws JsonGenerationException, JsonMappingException, IOException {
+        Map<String, String> sessionAttributes = sessionId.getSessionAttributes();
+
+        LogoutParameters logoutParameters = new LogoutParameters(idTokenHint, postLogoutRedirectUri);
+
+        String logoutParametersJson = jsonService.objectToJson(logoutParameters);
+        String logoutParametersBase64 = Base64Util.base64urlencode(logoutParametersJson.getBytes(Util.UTF8_STRING_ENCODING));
+
+        sessionAttributes.put(EXTERNAL_LOGOUT, Boolean.toString(true));
+        sessionAttributes.put(EXTERNAL_LOGOUT_DATA, logoutParametersBase64);
+
+        sessionIdService.updateSessionId(sessionId);
+    }
+
+    private boolean restoreLogoutParametersFromSession(SessionId sessionId) throws IllegalArgumentException, JsonParseException, JsonMappingException, IOException {
+        if (sessionId == null) {
+            return false;
+        }
+
+        this.sessionId = sessionId;
+        Map<String, String> sessionAttributes = sessionId.getSessionAttributes();
+
+        boolean restoreParameters = sessionAttributes.containsKey(EXTERNAL_LOGOUT);
+        if (!restoreParameters) {
+            return false;
+        }
+
+        String logoutParametersBase64 = sessionAttributes.get(EXTERNAL_LOGOUT_DATA);
+        String logoutParametersJson = new String(Base64Util.base64urldecode(logoutParametersBase64), Util.UTF8_STRING_ENCODING);
+
+        LogoutParameters logoutParameters = jsonService.jsonToObject(logoutParametersJson, LogoutParameters.class);
+
+        this.idTokenHint = logoutParameters.getIdTokenHint();
+        this.postLogoutRedirectUri = logoutParameters.getPostLogoutRedirectUri();
+
+        return true;
+    }
+
+    public void missingLogoutParameters() {
+        String message = languageBean.getMessage("logout.missingParameters");
+        facesContext.addMessage(null, new FacesMessage(FacesMessage.SEVERITY_ERROR, message, message));
+        facesService.redirect("/error.xhtml");
+    }
+
+    public void logoutFailed() {
+        String message = languageBean.getMessage("logout.failedToProceed");
+        facesContext.addMessage(null, new FacesMessage(FacesMessage.SEVERITY_ERROR, message, message));
+        facesService.redirect("/error.xhtml");
+    }
+
+    public static class LogoutParameters {
+        private String idTokenHint;
+        private String postLogoutRedirectUri;
+
+        public LogoutParameters() {
+        }
+
+        public LogoutParameters(String idTokenHint, String postLogoutRedirectUri) {
+            this.idTokenHint = idTokenHint;
+            this.postLogoutRedirectUri = postLogoutRedirectUri;
+        }
+
+        public String getIdTokenHint() {
+            return idTokenHint;
+        }
+
+        public void setIdTokenHint(String idTokenHint) {
+            this.idTokenHint = idTokenHint;
+        }
+
+        public String getPostLogoutRedirectUri() {
+            return postLogoutRedirectUri;
+        }
+
+        public void setPostLogoutRedirectUri(String postLogoutRedirectUri) {
+            this.postLogoutRedirectUri = postLogoutRedirectUri;
+        }
+    }
+
+    private enum ExternalLogoutResult {
+        SUCCESS,
+        FAILURE,
+        REDIRECT
+    }
+
+}
\ No newline at end of file
diff --git a/oxAuth/Server/src/main/java/org/gluu/oxauth/bcauthorize/ws/rs/BackchannelAuthorizeRestWebService.java b/oxAuth/Server/src/main/java/org/gluu/oxauth/bcauthorize/ws/rs/BackchannelAuthorizeRestWebService.java
new file mode 100644
index 00000000..e8a18bcf
--- /dev/null
+++ b/oxAuth/Server/src/main/java/org/gluu/oxauth/bcauthorize/ws/rs/BackchannelAuthorizeRestWebService.java
@@ -0,0 +1,46 @@
+/*
+ * oxAuth-CIBA is available under the Gluu Enterprise License (2019).
+ *
+ * Copyright (c) 2014, Gluu
+ */
+
+package org.gluu.oxauth.bcauthorize.ws.rs;
+
+import javax.servlet.http.HttpServletRequest;
+import javax.servlet.http.HttpServletResponse;
+import javax.ws.rs.FormParam;
+import javax.ws.rs.POST;
+import javax.ws.rs.Path;
+import javax.ws.rs.Produces;
+import javax.ws.rs.core.Context;
+import javax.ws.rs.core.MediaType;
+import javax.ws.rs.core.Response;
+import javax.ws.rs.core.SecurityContext;
+
+/**
+ * @author Javier Rojas Blum
+ * @version August 20, 2019
+ */
+public interface BackchannelAuthorizeRestWebService {
+
+    @POST
+    @Path("/bc-authorize")
+    @Produces({MediaType.APPLICATION_JSON})
+    Response requestBackchannelAuthorizationPost(
+            @FormParam("client_id") String clientId,
+            @FormParam("scope") String scope,
+            @FormParam("client_notification_token") String clientNotificationToken,
+            @FormParam("acr_values") String acrValues,
+            @FormParam("login_hint_token") String loginHintToken,
+            @FormParam("id_token_hint") String idTokenHint,
+            @FormParam("login_hint") String loginHint,
+            @FormParam("binding_message") String bindingMessage,
+            @FormParam("user_code") String userCode,
+            @FormParam("requested_expiry") Integer requestedExpiry,
+            @FormParam("request") String request,
+            @FormParam("request_uri") String requestUri,
+            @Context HttpServletRequest httpRequest,
+            @Context HttpServletResponse httpResponse,
+            @Context SecurityContext securityContext
+    );
+}
\ No newline at end of file
diff --git a/oxAuth/Server/src/main/java/org/gluu/oxauth/bcauthorize/ws/rs/BackchannelAuthorizeRestWebServiceImpl.java b/oxAuth/Server/src/main/java/org/gluu/oxauth/bcauthorize/ws/rs/BackchannelAuthorizeRestWebServiceImpl.java
new file mode 100644
index 00000000..c9849225
--- /dev/null
+++ b/oxAuth/Server/src/main/java/org/gluu/oxauth/bcauthorize/ws/rs/BackchannelAuthorizeRestWebServiceImpl.java
@@ -0,0 +1,349 @@
+/*
+ * oxAuth-CIBA is available under the Gluu Enterprise License (2019).
+ *
+ * Copyright (c) 2014, Gluu
+ */
+
+package org.gluu.oxauth.bcauthorize.ws.rs;
+
+import org.apache.commons.lang.StringUtils;
+import org.apache.logging.log4j.util.Strings;
+import org.gluu.oxauth.audit.ApplicationAuditLogger;
+import org.gluu.oxauth.authorize.ws.rs.AuthorizeRestWebServiceValidator;
+import org.gluu.oxauth.ciba.CIBAAuthorizeParamsValidatorService;
+import org.gluu.oxauth.ciba.CIBAEndUserNotificationService;
+import org.gluu.oxauth.client.JwkClient;
+import org.gluu.oxauth.model.audit.Action;
+import org.gluu.oxauth.model.audit.OAuth2AuditLog;
+import org.gluu.oxauth.model.authorize.JwtAuthorizationRequest;
+import org.gluu.oxauth.model.authorize.ScopeChecker;
+import org.gluu.oxauth.model.common.*;
+import org.gluu.oxauth.model.configuration.AppConfiguration;
+import org.gluu.oxauth.model.crypto.AbstractCryptoProvider;
+import org.gluu.oxauth.model.crypto.signature.AlgorithmFamily;
+import org.gluu.oxauth.model.crypto.signature.ECDSAPublicKey;
+import org.gluu.oxauth.model.crypto.signature.RSAPublicKey;
+import org.gluu.oxauth.model.crypto.signature.SignatureAlgorithm;
+import org.gluu.oxauth.model.error.DefaultErrorResponse;
+import org.gluu.oxauth.model.error.ErrorResponseFactory;
+import org.gluu.oxauth.model.exception.InvalidClaimException;
+import org.gluu.oxauth.model.exception.InvalidJwtException;
+import org.gluu.oxauth.model.jws.ECDSASigner;
+import org.gluu.oxauth.model.jws.RSASigner;
+import org.gluu.oxauth.model.jwt.Jwt;
+import org.gluu.oxauth.model.registration.Client;
+import org.gluu.oxauth.model.session.SessionClient;
+import org.gluu.oxauth.security.Identity;
+import org.gluu.oxauth.service.ciba.CibaRequestService;
+import org.gluu.oxauth.service.common.UserService;
+import org.gluu.oxauth.util.ServerUtil;
+import org.gluu.util.StringHelper;
+import org.json.JSONException;
+import org.json.JSONObject;
+import org.slf4j.Logger;
+
+import javax.inject.Inject;
+import javax.servlet.http.HttpServletRequest;
+import javax.servlet.http.HttpServletResponse;
+import javax.ws.rs.Path;
+import javax.ws.rs.WebApplicationException;
+import javax.ws.rs.core.MediaType;
+import javax.ws.rs.core.Response;
+import javax.ws.rs.core.SecurityContext;
+import java.util.ArrayList;
+import java.util.Date;
+import java.util.List;
+import java.util.Set;
+
+import static org.gluu.oxauth.model.ciba.BackchannelAuthenticationErrorResponseType.*;
+import static org.gluu.oxauth.model.ciba.BackchannelAuthenticationResponseParam.*;
+
+/**
+ * Implementation for request backchannel authorization through REST web services.
+ *
+ * @author Javier Rojas Blum
+ * @version April 22, 2020
+ */
+@Path("/")
+public class BackchannelAuthorizeRestWebServiceImpl implements BackchannelAuthorizeRestWebService {
+
+    @Inject
+    private Logger log;
+
+    @Inject
+    private Identity identity;
+
+    @Inject
+    private UserService userService;
+
+    @Inject
+    private ApplicationAuditLogger applicationAuditLogger;
+
+    @Inject
+    private ErrorResponseFactory errorResponseFactory;
+
+    @Inject
+    private AuthorizationGrantList authorizationGrantList;
+
+    @Inject
+    private ScopeChecker scopeChecker;
+
+    @Inject
+    private AppConfiguration appConfiguration;
+
+    @Inject
+    private CIBAAuthorizeParamsValidatorService cibaAuthorizeParamsValidatorService;
+
+    @Inject
+    private CIBAEndUserNotificationService cibaEndUserNotificationService;
+
+    @Inject
+    private CibaRequestService cibaRequestService;
+
+    @Inject
+    private AbstractCryptoProvider cryptoProvider;
+
+    @Inject
+    private AuthorizeRestWebServiceValidator authorizeRestWebServiceValidator;
+
+    @Override
+    public Response requestBackchannelAuthorizationPost(
+            String clientId, String scope, String clientNotificationToken, String acrValues, String loginHintToken,
+            String idTokenHint, String loginHint, String bindingMessage, String userCodeParam, Integer requestedExpiry,
+            String request, String requestUri, HttpServletRequest httpRequest,
+            HttpServletResponse httpResponse, SecurityContext securityContext) {
+        scope = ServerUtil.urlDecode(scope); // it may be encoded
+
+        OAuth2AuditLog oAuth2AuditLog = new OAuth2AuditLog(ServerUtil.getIpAddress(httpRequest), Action.BACKCHANNEL_AUTHENTICATION);
+        oAuth2AuditLog.setClientId(clientId);
+        oAuth2AuditLog.setScope(scope);
+
+        // ATTENTION : please do not add more parameter in this debug method because it will not work with Seam 2.2.2.Final,
+        // there is limit of 10 parameters (hardcoded), see: org.jboss.seam.core.Interpolator#interpolate
+        log.debug("Attempting to request backchannel authorization: "
+                        + "clientId = {}, scope = {}, clientNotificationToken = {}, acrValues = {}, loginHintToken = {}, "
+                        + "idTokenHint = {}, loginHint = {}, bindingMessage = {}, userCodeParam = {}, requestedExpiry = {}, "
+                        + "request= {}",
+                clientId, scope, clientNotificationToken, acrValues, loginHintToken,
+                idTokenHint, loginHint, bindingMessage, userCodeParam, requestedExpiry, request);
+        log.debug("Attempting to request backchannel authorization: "
+                + "isSecure = {}", securityContext.isSecure());
+
+        Response.ResponseBuilder builder = Response.ok();
+
+        if (!appConfiguration.getCibaEnabled()) {
+            log.warn("Trying to register a CIBA request, however CIBA config is disabled.");
+            builder = Response.status(Response.Status.BAD_REQUEST.getStatusCode());
+            builder.entity(errorResponseFactory.getErrorAsJson(INVALID_REQUEST));
+            return builder.build();
+        }
+
+        SessionClient sessionClient = identity.getSessionClient();
+        Client client = null;
+        if (sessionClient != null) {
+            client = sessionClient.getClient();
+        }
+
+        if (client == null) {
+            builder = Response.status(Response.Status.UNAUTHORIZED.getStatusCode()); // 401
+            builder.entity(errorResponseFactory.getErrorAsJson(INVALID_CLIENT));
+            return builder.build();
+        }
+
+        if (!cibaRequestService.hasCibaCompatibility(client)) {
+            builder = Response.status(Response.Status.BAD_REQUEST.getStatusCode()); // 401
+            builder.entity(errorResponseFactory.getErrorAsJson(INVALID_REQUEST));
+            return builder.build();
+        }
+
+        List<String> scopes = new ArrayList<>();
+        if (StringHelper.isNotEmpty(scope)) {
+            Set<String> grantedScopes = scopeChecker.checkScopesPolicy(client, scope);
+            scopes.addAll(grantedScopes);
+        }
+
+        JwtAuthorizationRequest jwtRequest = null;
+        if (StringUtils.isNotBlank(request) || StringUtils.isNotBlank(requestUri)) {
+            jwtRequest = JwtAuthorizationRequest.createJwtRequest(request, requestUri,
+                    client, null, cryptoProvider, appConfiguration);
+            if (jwtRequest == null) {
+                log.error("The JWT couldn't be processed");
+                builder = Response.status(Response.Status.BAD_REQUEST.getStatusCode()); // 400
+                builder.entity(errorResponseFactory.getErrorAsJson(INVALID_REQUEST));
+                throw new WebApplicationException(builder.build());
+            }
+            authorizeRestWebServiceValidator.validateCibaRequestObject(jwtRequest, client.getClientId());
+            // JWT wins
+            if (!jwtRequest.getScopes().isEmpty()) {
+                scopes.addAll(scopeChecker.checkScopesPolicy(client, jwtRequest.getScopes()));
+            }
+            if (StringUtils.isNotBlank(jwtRequest.getClientNotificationToken())) {
+                clientNotificationToken = jwtRequest.getClientNotificationToken();
+            }
+            if (StringUtils.isNotBlank(jwtRequest.getAcrValues())) {
+                acrValues = jwtRequest.getAcrValues();
+            }
+            if (StringUtils.isNotBlank(jwtRequest.getLoginHintToken())) {
+                loginHintToken = jwtRequest.getLoginHintToken();
+            }
+            if (StringUtils.isNotBlank(jwtRequest.getIdTokenHint())) {
+                idTokenHint = jwtRequest.getIdTokenHint();
+            }
+            if (StringUtils.isNotBlank(jwtRequest.getLoginHint())) {
+                loginHint = jwtRequest.getLoginHint();
+            }
+            if (StringUtils.isNotBlank(jwtRequest.getBindingMessage())) {
+                bindingMessage = jwtRequest.getBindingMessage();
+            }
+            if (StringUtils.isNotBlank(jwtRequest.getUserCode())) {
+                userCodeParam = jwtRequest.getUserCode();
+            }
+            if (jwtRequest.getRequestedExpiry() != null) {
+                requestedExpiry = jwtRequest.getRequestedExpiry();
+            } else if (jwtRequest.getExp() != null) {
+                requestedExpiry = Math.toIntExact(jwtRequest.getExp() - System.currentTimeMillis() / 1000);
+            }
+        }
+        if (appConfiguration.getFapiCompatibility() && jwtRequest == null) {
+            builder = Response.status(Response.Status.BAD_REQUEST.getStatusCode()); // 400
+            builder.entity(errorResponseFactory.getErrorAsJson(INVALID_REQUEST));
+            return builder.build();
+        }
+        User user = null;
+        try {
+            if (Strings.isNotBlank(loginHint)) { // login_hint
+                user = userService.getUniqueUserByAttributes(appConfiguration.getBackchannelLoginHintClaims(), loginHint);
+            } else if (Strings.isNotBlank(idTokenHint)) { // id_token_hint
+                AuthorizationGrant authorizationGrant = authorizationGrantList.getAuthorizationGrantByIdToken(idTokenHint);
+                if (authorizationGrant == null) {
+                    builder = Response.status(Response.Status.BAD_REQUEST.getStatusCode()); // 400
+                    builder.entity(errorResponseFactory.getErrorAsJson(UNKNOWN_USER_ID));
+                    return builder.build();
+                }
+                user = authorizationGrant.getUser();
+            }
+            if (Strings.isNotBlank(loginHintToken)) { // login_hint_token
+                Jwt jwt = Jwt.parse(loginHintToken);
+
+                SignatureAlgorithm algorithm = jwt.getHeader().getSignatureAlgorithm();
+                String keyId = jwt.getHeader().getKeyId();
+
+                if (algorithm == null || Strings.isBlank(keyId)) {
+                    builder = Response.status(Response.Status.BAD_REQUEST.getStatusCode()); // 400
+                    builder.entity(errorResponseFactory.getErrorAsJson(UNKNOWN_USER_ID));
+                    return builder.build();
+                }
+
+                boolean validSignature = false;
+                if (algorithm.getFamily() == AlgorithmFamily.RSA) {
+                    RSAPublicKey publicKey = JwkClient.getRSAPublicKey(client.getJwksUri(), keyId);
+                    RSASigner rsaSigner = new RSASigner(algorithm, publicKey);
+                    validSignature = rsaSigner.validate(jwt);
+                } else if (algorithm.getFamily() == AlgorithmFamily.EC) {
+                    ECDSAPublicKey publicKey = JwkClient.getECDSAPublicKey(client.getJwksUri(), keyId);
+                    ECDSASigner ecdsaSigner = new ECDSASigner(algorithm, publicKey);
+                    validSignature = ecdsaSigner.validate(jwt);
+                }
+                if (!validSignature) {
+                    builder = Response.status(Response.Status.BAD_REQUEST.getStatusCode()); // 400
+                    builder.entity(errorResponseFactory.getErrorAsJson(UNKNOWN_USER_ID));
+                    return builder.build();
+                }
+
+                JSONObject subject = jwt.getClaims().getClaimAsJSON("subject");
+                if (subject == null || !subject.has("subject_type") || !subject.has(subject.getString("subject_type"))) {
+                    builder = Response.status(Response.Status.BAD_REQUEST.getStatusCode()); // 400
+                    builder.entity(errorResponseFactory.getErrorAsJson(UNKNOWN_USER_ID));
+                    return builder.build();
+                }
+
+                String subjectTypeKey = subject.getString("subject_type");
+                String subjectTypeValue = subject.getString(subjectTypeKey);
+
+                user = userService.getUniqueUserByAttributes(appConfiguration.getBackchannelLoginHintClaims(), subjectTypeValue);
+            }
+        } catch (InvalidJwtException e) {
+            log.error(e.getMessage(), e);
+        } catch (JSONException e) {
+            log.error(e.getMessage(), e);
+        }
+        if (user == null) {
+            builder = Response.status(Response.Status.BAD_REQUEST.getStatusCode()); // 400
+            builder.entity(errorResponseFactory.getErrorAsJson(UNKNOWN_USER_ID));
+            return builder.build();
+        }
+
+        try {
+            String userCode = (String) user.getAttribute("oxAuthBackchannelUserCode", true, false);
+            DefaultErrorResponse cibaAuthorizeParamsValidation = cibaAuthorizeParamsValidatorService.validateParams(
+                    scopes, clientNotificationToken, client.getBackchannelTokenDeliveryMode(),
+                    loginHintToken, idTokenHint, loginHint, bindingMessage, client.getBackchannelUserCodeParameter(),
+                    userCodeParam, userCode, requestedExpiry);
+            if (cibaAuthorizeParamsValidation != null) {
+                builder = Response.status(cibaAuthorizeParamsValidation.getStatus());
+                builder.entity(errorResponseFactory.errorAsJson(
+                        cibaAuthorizeParamsValidation.getType(), cibaAuthorizeParamsValidation.getReason()));
+                return builder.build();
+            }
+
+            String deviceRegistrationToken = (String) user.getAttribute("oxAuthBackchannelDeviceRegistrationToken", true, false);
+            if (deviceRegistrationToken == null) {
+                builder = Response.status(Response.Status.UNAUTHORIZED.getStatusCode()); // 401
+                builder.entity(errorResponseFactory.getErrorAsJson(UNAUTHORIZED_END_USER_DEVICE));
+                return builder.build();
+            }
+
+            int expiresIn = requestedExpiry != null ? requestedExpiry : appConfiguration.getBackchannelAuthenticationResponseExpiresIn();
+            Integer interval = client.getBackchannelTokenDeliveryMode() == BackchannelTokenDeliveryMode.PUSH ?
+                    null : appConfiguration.getBackchannelAuthenticationResponseInterval();
+            long currentTime = new Date().getTime();
+
+            CibaRequestCacheControl cibaRequestCacheControl = new CibaRequestCacheControl(user, client, expiresIn, scopes,
+                    clientNotificationToken, bindingMessage, currentTime, acrValues);
+
+            cibaRequestService.save(cibaRequestCacheControl, expiresIn);
+
+            String authReqId = cibaRequestCacheControl.getAuthReqId();
+
+            // Notify End-User to obtain Consent/Authorization
+            cibaEndUserNotificationService.notifyEndUser(
+                    cibaRequestCacheControl.getScopesAsString(),
+                    cibaRequestCacheControl.getAcrValues(),
+                    authReqId,
+                    deviceRegistrationToken);
+
+            builder.entity(getJSONObject(
+                    authReqId,
+                    expiresIn,
+                    interval).toString(4).replace("\\/", "/"));
+
+            builder.type(MediaType.APPLICATION_JSON_TYPE);
+            builder.cacheControl(ServerUtil.cacheControl(true, false));
+        } catch (JSONException e) {
+            builder = Response.status(400);
+            builder.entity(errorResponseFactory.getErrorAsJson(INVALID_REQUEST));
+            log.error(e.getMessage(), e);
+        } catch (InvalidClaimException e) {
+            builder = Response.status(400);
+            builder.entity(errorResponseFactory.getErrorAsJson(INVALID_REQUEST));
+            log.error(e.getMessage(), e);
+        }
+
+        applicationAuditLogger.sendMessage(oAuth2AuditLog);
+        return builder.build();
+    }
+
+    private JSONObject getJSONObject(String authReqId, int expiresIn, Integer interval) throws JSONException {
+        JSONObject responseJsonObject = new JSONObject();
+
+        responseJsonObject.put(AUTH_REQ_ID, authReqId);
+        responseJsonObject.put(EXPIRES_IN, expiresIn);
+
+        if (interval != null) {
+            responseJsonObject.put(INTERVAL, interval);
+        }
+
+        return responseJsonObject;
+    }
+
+}
\ No newline at end of file
diff --git a/oxAuth/Server/src/main/java/org/gluu/oxauth/bcauthorize/ws/rs/BackchannelDeviceRegistrationRestWebService.java b/oxAuth/Server/src/main/java/org/gluu/oxauth/bcauthorize/ws/rs/BackchannelDeviceRegistrationRestWebService.java
new file mode 100644
index 00000000..443dbb51
--- /dev/null
+++ b/oxAuth/Server/src/main/java/org/gluu/oxauth/bcauthorize/ws/rs/BackchannelDeviceRegistrationRestWebService.java
@@ -0,0 +1,36 @@
+/*
+ * oxAuth-CIBA is available under the Gluu Enterprise License (2019).
+ *
+ * Copyright (c) 2014, Gluu
+ */
+
+package org.gluu.oxauth.bcauthorize.ws.rs;
+
+import javax.servlet.http.HttpServletRequest;
+import javax.servlet.http.HttpServletResponse;
+import javax.ws.rs.FormParam;
+import javax.ws.rs.POST;
+import javax.ws.rs.Path;
+import javax.ws.rs.Produces;
+import javax.ws.rs.core.Context;
+import javax.ws.rs.core.MediaType;
+import javax.ws.rs.core.Response;
+import javax.ws.rs.core.SecurityContext;
+
+/**
+ * @author Javier Rojas Blum
+ * @version October 7, 2019
+ */
+public interface BackchannelDeviceRegistrationRestWebService {
+
+    @POST
+    @Path("/bc-deviceRegistration")
+    @Produces({MediaType.APPLICATION_JSON})
+    Response requestBackchannelDeviceRegistrationPost(
+            @FormParam("id_token_hint") String idTokenHint,
+            @FormParam("device_registration_token") String deviceRegistrationToken,
+            @Context HttpServletRequest httpRequest,
+            @Context HttpServletResponse httpResponse,
+            @Context SecurityContext securityContext
+    );
+}
\ No newline at end of file
diff --git a/oxAuth/Server/src/main/java/org/gluu/oxauth/bcauthorize/ws/rs/BackchannelDeviceRegistrationRestWebServiceImpl.java b/oxAuth/Server/src/main/java/org/gluu/oxauth/bcauthorize/ws/rs/BackchannelDeviceRegistrationRestWebServiceImpl.java
new file mode 100644
index 00000000..24f26de6
--- /dev/null
+++ b/oxAuth/Server/src/main/java/org/gluu/oxauth/bcauthorize/ws/rs/BackchannelDeviceRegistrationRestWebServiceImpl.java
@@ -0,0 +1,118 @@
+/*
+ * oxAuth-CIBA is available under the Gluu Enterprise License (2019).
+ *
+ * Copyright (c) 2014, Gluu
+ */
+
+package org.gluu.oxauth.bcauthorize.ws.rs;
+
+import org.gluu.oxauth.audit.ApplicationAuditLogger;
+import org.gluu.oxauth.ciba.CIBADeviceRegistrationValidatorService;
+import org.gluu.oxauth.model.audit.Action;
+import org.gluu.oxauth.model.audit.OAuth2AuditLog;
+import org.gluu.oxauth.model.ciba.BackchannelAuthenticationErrorResponseType;
+import org.gluu.oxauth.model.common.AuthorizationGrant;
+import org.gluu.oxauth.model.common.AuthorizationGrantList;
+import org.gluu.oxauth.model.common.User;
+import org.gluu.oxauth.model.configuration.AppConfiguration;
+import org.gluu.oxauth.model.error.DefaultErrorResponse;
+import org.gluu.oxauth.model.error.ErrorResponseFactory;
+import org.gluu.oxauth.service.common.UserService;
+import org.gluu.oxauth.util.ServerUtil;
+import org.slf4j.Logger;
+
+import javax.inject.Inject;
+import javax.servlet.http.HttpServletRequest;
+import javax.servlet.http.HttpServletResponse;
+import javax.ws.rs.Path;
+import javax.ws.rs.core.Response;
+import javax.ws.rs.core.SecurityContext;
+
+import static org.gluu.oxauth.model.ciba.BackchannelAuthenticationErrorResponseType.INVALID_REQUEST;
+import static org.gluu.oxauth.model.ciba.BackchannelDeviceRegistrationErrorResponseType.UNKNOWN_USER_ID;
+
+/**
+ * Implementation for request backchannel device registration through REST web services.
+ *
+ * @author Javier Rojas Blum
+ * @version October 7, 2019
+ */
+@Path("/")
+public class BackchannelDeviceRegistrationRestWebServiceImpl implements BackchannelDeviceRegistrationRestWebService {
+
+    @Inject
+    private Logger log;
+
+    @Inject
+    private ApplicationAuditLogger applicationAuditLogger;
+
+    @Inject
+    private AppConfiguration appConfiguration;
+
+    @Inject
+    private ErrorResponseFactory errorResponseFactory;
+
+    @Inject
+    private UserService userService;
+
+    @Inject
+    private AuthorizationGrantList authorizationGrantList;
+
+    @Inject
+    private CIBADeviceRegistrationValidatorService cibaDeviceRegistrationValidatorService;
+
+    @Override
+    public Response requestBackchannelDeviceRegistrationPost(
+            String idTokenHint, String deviceRegistrationToken,
+            HttpServletRequest httpRequest, HttpServletResponse httpResponse, SecurityContext securityContext) {
+
+        OAuth2AuditLog oAuth2AuditLog = new OAuth2AuditLog(ServerUtil.getIpAddress(httpRequest), Action.BACKCHANNEL_DEVICE_REGISTRATION);
+
+        // ATTENTION : please do not add more parameter in this debug method because it will not work with Seam 2.2.2.Final,
+        // there is limit of 10 parameters (hardcoded), see: org.jboss.seam.core.Interpolator#interpolate
+        log.debug("Attempting to request backchannel device registration: "
+                        + "idTokenHint = {}, deviceRegistrationToken = {}, isSecure = {}",
+                idTokenHint, deviceRegistrationToken, securityContext.isSecure());
+
+        Response.ResponseBuilder builder = Response.ok();
+
+        if (!appConfiguration.getCibaEnabled()) {
+            log.warn("Trying to register a CIBA device, however CIBA config is disabled.");
+            builder = Response.status(Response.Status.BAD_REQUEST.getStatusCode());
+            builder.entity(errorResponseFactory.getErrorAsJson(INVALID_REQUEST));
+            return builder.build();
+        }
+
+        DefaultErrorResponse cibaDeviceRegistrationValidation = cibaDeviceRegistrationValidatorService.validateParams(
+                idTokenHint, deviceRegistrationToken);
+        if (cibaDeviceRegistrationValidation != null) {
+            builder = Response.status(cibaDeviceRegistrationValidation.getStatus());
+            builder.entity(errorResponseFactory.errorAsJson(
+                    cibaDeviceRegistrationValidation.getType(), cibaDeviceRegistrationValidation.getReason()));
+            return builder.build();
+        }
+
+        User user = null;
+
+        AuthorizationGrant authorizationGrant = authorizationGrantList.getAuthorizationGrantByIdToken(idTokenHint);
+        if (authorizationGrant == null) {
+            builder = Response.status(Response.Status.BAD_REQUEST.getStatusCode()); // 400
+            builder.entity(errorResponseFactory.getErrorAsJson(BackchannelAuthenticationErrorResponseType.UNKNOWN_USER_ID));
+            return builder.build();
+        }
+
+        user = authorizationGrant.getUser();
+
+        if (user == null) {
+            builder = Response.status(Response.Status.BAD_REQUEST.getStatusCode()); // 400
+            builder.entity(errorResponseFactory.getErrorAsJson(UNKNOWN_USER_ID));
+            return builder.build();
+        }
+
+        userService.setCustomAttribute(user, "oxAuthBackchannelDeviceRegistrationToken", deviceRegistrationToken);
+        userService.updateUser(user);
+
+        applicationAuditLogger.sendMessage(oAuth2AuditLog);
+        return builder.build();
+    }
+}
\ No newline at end of file
diff --git a/oxAuth/Server/src/main/java/org/gluu/oxauth/bcauthorize/ws/rs/CIBAAuthorizeAction.java b/oxAuth/Server/src/main/java/org/gluu/oxauth/bcauthorize/ws/rs/CIBAAuthorizeAction.java
new file mode 100644
index 00000000..9bf0a5a1
--- /dev/null
+++ b/oxAuth/Server/src/main/java/org/gluu/oxauth/bcauthorize/ws/rs/CIBAAuthorizeAction.java
@@ -0,0 +1,89 @@
+/*
+ * oxAuth is available under the MIT License (2008). See http://opensource.org/licenses/MIT for full text.
+ *
+ * Copyright (c) 2014, Gluu
+ */
+
+package org.gluu.oxauth.bcauthorize.ws.rs;
+
+import org.gluu.oxauth.model.configuration.AppConfiguration;
+import org.gluu.oxauth.util.RedirectUri;
+import org.slf4j.Logger;
+
+import javax.enterprise.context.RequestScoped;
+import javax.inject.Inject;
+import javax.inject.Named;
+import java.util.UUID;
+
+import static org.gluu.oxauth.model.authorize.AuthorizeRequestParam.*;
+
+/**
+ * @author Javier Rojas Blum
+ * @version November 19, 2019
+ */
+@RequestScoped
+@Named("cibaAuthorizeAction")
+public class CIBAAuthorizeAction {
+
+    @Inject
+    private Logger log;
+
+    @Inject
+    private AppConfiguration appConfiguration;
+
+    public String getApiKey() {
+        return appConfiguration.getCibaEndUserNotificationConfig().getApiKey();
+    }
+
+    public String getAuthDomain() {
+        return appConfiguration.getCibaEndUserNotificationConfig().getAuthDomain();
+    }
+
+    public String getDatabaseURL() {
+        return appConfiguration.getCibaEndUserNotificationConfig().getDatabaseURL();
+    }
+
+    public String getProjectId() {
+        return appConfiguration.getCibaEndUserNotificationConfig().getProjectId();
+    }
+
+    public String getStorageBucket() {
+        return appConfiguration.getCibaEndUserNotificationConfig().getStorageBucket();
+    }
+
+    public String getMessagingSenderId() {
+        return appConfiguration.getCibaEndUserNotificationConfig().getMessagingSenderId();
+    }
+
+    public String getAppId() {
+        return appConfiguration.getCibaEndUserNotificationConfig().getAppId();
+    }
+
+    public String getPublicVapidKey() {
+        return appConfiguration.getCibaEndUserNotificationConfig().getPublicVapidKey();
+    }
+
+    public String getAuthRequest() {
+        String authorizationEndpoint = appConfiguration.getAuthorizationEndpoint();
+        String clientId = appConfiguration.getBackchannelClientId();
+        String redirectUri = appConfiguration.getBackchannelRedirectUri();
+        String responseType = "token id_token";
+        String scope = "openid";
+        String state = UUID.randomUUID().toString();
+        String nonce = UUID.randomUUID().toString();
+
+        RedirectUri authRequest = new RedirectUri(authorizationEndpoint);
+        authRequest.addResponseParameter(CLIENT_ID, clientId);
+        authRequest.addResponseParameter(REDIRECT_URI, redirectUri);
+        authRequest.addResponseParameter(RESPONSE_TYPE, responseType);
+        authRequest.addResponseParameter(SCOPE, scope);
+        authRequest.addResponseParameter(STATE, state);
+        authRequest.addResponseParameter(NONCE, nonce);
+
+        return authRequest.toString();
+    }
+
+    public String getBackchannelDeviceRegistrationEndpoint() {
+        return appConfiguration.getBackchannelDeviceRegistrationEndpoint();
+    }
+}
\ No newline at end of file
diff --git a/oxAuth/Server/src/main/java/org/gluu/oxauth/ciba/CIBAAuthorizeParamsValidatorService.java b/oxAuth/Server/src/main/java/org/gluu/oxauth/ciba/CIBAAuthorizeParamsValidatorService.java
new file mode 100644
index 00000000..de2bb206
--- /dev/null
+++ b/oxAuth/Server/src/main/java/org/gluu/oxauth/ciba/CIBAAuthorizeParamsValidatorService.java
@@ -0,0 +1,143 @@
+/*
+ * oxAuth is available under the MIT License (2008). See http://opensource.org/licenses/MIT for full text.
+ *
+ * Copyright (c) 2014, Gluu
+ */
+
+package org.gluu.oxauth.ciba;
+
+import org.apache.commons.lang.BooleanUtils;
+import org.apache.logging.log4j.util.Strings;
+import org.gluu.oxauth.model.common.BackchannelTokenDeliveryMode;
+import org.gluu.oxauth.model.configuration.AppConfiguration;
+import org.gluu.oxauth.model.error.DefaultErrorResponse;
+
+import javax.enterprise.context.ApplicationScoped;
+import javax.inject.Inject;
+import javax.ws.rs.core.Response;
+import java.util.ArrayList;
+import java.util.List;
+import java.util.regex.Pattern;
+
+import static org.gluu.oxauth.model.ciba.BackchannelAuthenticationErrorResponseType.*;
+
+/**
+ * @author Javier Rojas Blum
+ * @version April 22, 2020
+ */
+@ApplicationScoped
+public class CIBAAuthorizeParamsValidatorService {
+
+    @Inject
+    private AppConfiguration appConfiguration;
+
+    public DefaultErrorResponse validateParams(
+            List<String> scopeList, String clientNotificationToken, BackchannelTokenDeliveryMode tokenDeliveryMode,
+            String loginHintToken, String idTokenHint, String loginHint, String bindingMessage,
+            Boolean backchannelUserCodeParameter, String userCodeParam, String userCode, Integer requestedExpirity) {
+        if (tokenDeliveryMode == null) {
+            DefaultErrorResponse errorResponse = new DefaultErrorResponse();
+            errorResponse.setStatus(Response.Status.BAD_REQUEST.getStatusCode());
+            errorResponse.setType(UNAUTHORIZED_CLIENT);
+            errorResponse.setReason(
+                    "Clients registering to use CIBA must indicate a token delivery mode.");
+
+            return errorResponse;
+        }
+
+        if (scopeList == null || !scopeList.contains("openid")) {
+            DefaultErrorResponse errorResponse = new DefaultErrorResponse();
+            errorResponse.setStatus(Response.Status.BAD_REQUEST.getStatusCode());
+            errorResponse.setType(INVALID_SCOPE);
+            errorResponse.setReason(
+                    "CIBA authentication requests must contain the openid scope value.");
+
+            return errorResponse;
+        }
+
+        if (!validateOneParamNotBlank(loginHintToken, idTokenHint, loginHint)) {
+            DefaultErrorResponse errorResponse = new DefaultErrorResponse();
+            errorResponse.setStatus(Response.Status.BAD_REQUEST.getStatusCode());
+            errorResponse.setType(INVALID_REQUEST);
+            errorResponse.setReason(
+                    "It is required that the Client provides one (and only one) of the hints in the authentication " +
+                            "request, that is login_hint_token, id_token_hint or login_hint.");
+
+            return errorResponse;
+        }
+
+        if (tokenDeliveryMode == BackchannelTokenDeliveryMode.PING || tokenDeliveryMode == BackchannelTokenDeliveryMode.PUSH) {
+            if (Strings.isBlank(clientNotificationToken)) {
+                DefaultErrorResponse errorResponse = new DefaultErrorResponse();
+                errorResponse.setStatus(Response.Status.BAD_REQUEST.getStatusCode());
+                errorResponse.setType(INVALID_REQUEST);
+                errorResponse.setReason(
+                        "The client notification token is required if the Client is registered to use Ping or Push modes.");
+
+                return errorResponse;
+            }
+        }
+
+        if(Strings.isNotBlank(bindingMessage)) {
+            final Pattern pattern = Pattern.compile(appConfiguration.getBackchannelBindingMessagePattern());
+            if (!pattern.matcher(bindingMessage).matches()) {
+                DefaultErrorResponse errorResponse = new DefaultErrorResponse();
+                errorResponse.setStatus(Response.Status.BAD_REQUEST.getStatusCode());
+                errorResponse.setType(INVALID_BINDING_MESSAGE);
+                errorResponse.setReason("The provided binding message is unacceptable. It must match the pattern: " + pattern.pattern());
+
+                return errorResponse;
+            }
+        }
+
+        if (BooleanUtils.isTrue(backchannelUserCodeParameter)) {
+            if (Strings.isBlank(userCodeParam)) {
+                DefaultErrorResponse errorResponse = new DefaultErrorResponse();
+                errorResponse.setStatus(Response.Status.BAD_REQUEST.getStatusCode());
+                errorResponse.setType(INVALID_USER_CODE);
+                errorResponse.setReason("The user code is required.");
+
+                return errorResponse;
+            } else if (Strings.isBlank(userCode)) {
+                DefaultErrorResponse errorResponse = new DefaultErrorResponse();
+                errorResponse.setStatus(Response.Status.BAD_REQUEST.getStatusCode());
+                errorResponse.setType(INVALID_USER_CODE);
+                errorResponse.setReason("The user code is not set.");
+
+                return errorResponse;
+            } else if (!userCode.equals(userCodeParam)) {
+                DefaultErrorResponse errorResponse = new DefaultErrorResponse();
+                errorResponse.setStatus(Response.Status.BAD_REQUEST.getStatusCode());
+                errorResponse.setType(INVALID_USER_CODE);
+                errorResponse.setReason("The user code is not valid.");
+
+                return errorResponse;
+            }
+        }
+
+        if (requestedExpirity != null && (requestedExpirity < 1
+                || requestedExpirity > appConfiguration.getCibaMaxExpirationTimeAllowedSec())) {
+            DefaultErrorResponse errorResponse = new DefaultErrorResponse();
+            errorResponse.setStatus(Response.Status.BAD_REQUEST.getStatusCode());
+            errorResponse.setType(INVALID_REQUEST);
+            errorResponse.setReason("Requested expirity is not allowed.");
+
+            return errorResponse;
+        }
+
+        return null;
+    }
+
+    private boolean validateOneParamNotBlank(String... params) {
+        List<String> notBlankParams = new ArrayList<>();
+
+        for (String param : params) {
+            if (Strings.isNotBlank(param)) {
+                notBlankParams.add(param);
+            }
+        }
+
+        return notBlankParams.size() == 1;
+    }
+
+}
\ No newline at end of file
diff --git a/oxAuth/Server/src/main/java/org/gluu/oxauth/ciba/CIBAConfigurationService.java b/oxAuth/Server/src/main/java/org/gluu/oxauth/ciba/CIBAConfigurationService.java
new file mode 100644
index 00000000..e66049ec
--- /dev/null
+++ b/oxAuth/Server/src/main/java/org/gluu/oxauth/ciba/CIBAConfigurationService.java
@@ -0,0 +1,58 @@
+/*
+ * oxAuth is available under the MIT License (2008). See http://opensource.org/licenses/MIT for full text.
+ *
+ * Copyright (c) 2014, Gluu
+ */
+
+package org.gluu.oxauth.ciba;
+
+import org.gluu.oxauth.model.configuration.AppConfiguration;
+import org.json.JSONArray;
+import org.json.JSONObject;
+import org.slf4j.Logger;
+import org.slf4j.LoggerFactory;
+
+import javax.enterprise.context.ApplicationScoped;
+
+import javax.inject.Inject;
+
+import static org.gluu.oxauth.model.configuration.ConfigurationResponseClaim.*;
+
+/**
+ * @author Javier Rojas Blum
+ * @version August 20, 2019
+ */
+@ApplicationScoped
+public class CIBAConfigurationService {
+
+    private final static Logger log = LoggerFactory.getLogger(CIBAConfigurationService.class);
+
+    @Inject
+    private AppConfiguration appConfiguration;
+
+    public void processConfiguration(JSONObject jsonConfiguration) {
+        try {
+            jsonConfiguration.put(BACKCHANNEL_AUTHENTICATION_ENDPOINT, appConfiguration.getBackchannelAuthenticationEndpoint());
+
+            JSONArray backchannelTokenDeliveryModesSupported = new JSONArray();
+            for (String item : appConfiguration.getBackchannelTokenDeliveryModesSupported()) {
+                backchannelTokenDeliveryModesSupported.put(item);
+            }
+            if (backchannelTokenDeliveryModesSupported.length() > 0) {
+                jsonConfiguration.put(BACKCHANNEL_TOKEN_DELIVERY_MODES_SUPPORTED, backchannelTokenDeliveryModesSupported);
+            }
+
+            JSONArray backchannelAuthenticationRequestSigningAlgValuesSupported = new JSONArray();
+            for (String item : appConfiguration.getBackchannelAuthenticationRequestSigningAlgValuesSupported()) {
+                backchannelAuthenticationRequestSigningAlgValuesSupported.put(item);
+            }
+            if (backchannelAuthenticationRequestSigningAlgValuesSupported.length() > 0) {
+                jsonConfiguration.put(BACKCHANNEL_AUTHENTICATION_REQUEST_SIGNING_ALG_VALUES_SUPPORTED, backchannelAuthenticationRequestSigningAlgValuesSupported);
+            }
+
+            jsonConfiguration.put(BACKCHANNEL_USER_CODE_PAREMETER_SUPPORTED, appConfiguration.getBackchannelUserCodeParameterSupported());
+        } catch (Exception e) {
+            log.error("Failed to process CIBA configuration.", e);
+        }
+    }
+}
\ No newline at end of file
diff --git a/oxAuth/Server/src/main/java/org/gluu/oxauth/ciba/CIBADeviceRegistrationValidatorService.java b/oxAuth/Server/src/main/java/org/gluu/oxauth/ciba/CIBADeviceRegistrationValidatorService.java
new file mode 100644
index 00000000..fdca3574
--- /dev/null
+++ b/oxAuth/Server/src/main/java/org/gluu/oxauth/ciba/CIBADeviceRegistrationValidatorService.java
@@ -0,0 +1,47 @@
+/*
+ * oxAuth is available under the MIT License (2008). See http://opensource.org/licenses/MIT for full text.
+ *
+ * Copyright (c) 2014, Gluu
+ */
+
+package org.gluu.oxauth.ciba;
+
+import org.apache.logging.log4j.util.Strings;
+import org.gluu.oxauth.model.error.DefaultErrorResponse;
+
+import javax.enterprise.context.ApplicationScoped;
+
+import javax.ws.rs.core.Response;
+
+import static org.gluu.oxauth.model.ciba.BackchannelAuthenticationErrorResponseType.INVALID_REQUEST;
+import static org.gluu.oxauth.model.ciba.BackchannelAuthenticationErrorResponseType.UNKNOWN_USER_ID;
+
+/**
+ * @author Javier Rojas Blum
+ * @version October 7, 2019
+ */
+@ApplicationScoped
+public class CIBADeviceRegistrationValidatorService {
+
+    public DefaultErrorResponse validateParams(String idTokenHint, String deviceRegistrationToken) {
+        if (Strings.isBlank(deviceRegistrationToken)) {
+            DefaultErrorResponse errorResponse = new DefaultErrorResponse();
+            errorResponse.setStatus(Response.Status.BAD_REQUEST.getStatusCode()); // 400
+            errorResponse.setType(INVALID_REQUEST);
+            errorResponse.setReason("The device registration token cannot be blank.");
+
+            return errorResponse;
+        }
+
+        if (Strings.isBlank(idTokenHint)) {
+            DefaultErrorResponse errorResponse = new DefaultErrorResponse();
+            errorResponse.setStatus(Response.Status.BAD_REQUEST.getStatusCode()); // 400
+            errorResponse.setType(UNKNOWN_USER_ID);
+            errorResponse.setReason("The id token hint cannot be blank.");
+
+            return errorResponse;
+        }
+
+        return null;
+    }
+}
\ No newline at end of file
diff --git a/oxAuth/Server/src/main/java/org/gluu/oxauth/ciba/CIBAEndUserNotificationService.java b/oxAuth/Server/src/main/java/org/gluu/oxauth/ciba/CIBAEndUserNotificationService.java
new file mode 100644
index 00000000..25ed4e15
--- /dev/null
+++ b/oxAuth/Server/src/main/java/org/gluu/oxauth/ciba/CIBAEndUserNotificationService.java
@@ -0,0 +1,99 @@
+/*
+ * oxAuth is available under the MIT License (2008). See http://opensource.org/licenses/MIT for full text.
+ *
+ * Copyright (c) 2014, Gluu
+ */
+
+package org.gluu.oxauth.ciba;
+
+import org.gluu.oxauth.client.ciba.fcm.FirebaseCloudMessagingClient;
+import org.gluu.oxauth.client.ciba.fcm.FirebaseCloudMessagingRequest;
+import org.gluu.oxauth.client.ciba.fcm.FirebaseCloudMessagingResponse;
+import org.gluu.oxauth.model.configuration.AppConfiguration;
+import org.gluu.oxauth.service.ciba.CibaEncryptionService;
+import org.gluu.oxauth.service.external.ExternalCibaEndUserNotificationService;
+import org.gluu.oxauth.service.external.context.ExternalCibaEndUserNotificationContext;
+import org.gluu.oxauth.util.RedirectUri;
+import org.slf4j.Logger;
+import org.slf4j.LoggerFactory;
+
+import javax.enterprise.context.ApplicationScoped;
+
+import javax.inject.Inject;
+import java.util.UUID;
+
+import static org.gluu.oxauth.model.authorize.AuthorizeRequestParam.*;
+
+/**
+ * @author Javier Rojas Blum
+ * @version October 7, 2019
+ */
+@ApplicationScoped
+public class CIBAEndUserNotificationService {
+
+    private final static Logger log = LoggerFactory.getLogger(CIBAEndUserNotificationService.class);
+
+    @Inject
+    private AppConfiguration appConfiguration;
+
+    @Inject
+    private CibaEncryptionService cibaEncryptionService;
+
+    @Inject
+    private ExternalCibaEndUserNotificationService externalCibaEndUserNotificationService;
+
+    public void notifyEndUser(String scope, String acrValues, String authReqId, String deviceRegistrationToken) {
+        try {
+            if (externalCibaEndUserNotificationService.isEnabled()) {
+                log.debug("CIBA: Authorization request sending to the end user with custom interception scripts");
+                ExternalCibaEndUserNotificationContext context = new ExternalCibaEndUserNotificationContext(scope,
+                        acrValues, authReqId, deviceRegistrationToken, appConfiguration, cibaEncryptionService);
+                log.info("CIBA: Notification sent to the end user, result {}",
+                        externalCibaEndUserNotificationService.executeExternalNotifyEndUser(context));
+            } else {
+                this.notifyEndUserUsingFCM(scope, acrValues, authReqId, deviceRegistrationToken);
+            }
+        } catch (Exception e) {
+            log.info("Error when it was sending the notification to the end user to validate the Ciba authorization", e);
+        }
+    }
+
+    /**
+     * Method responsible to send notifications to the end user using Firebase Cloud Messaging.
+     * @param deviceRegistrationToken Device already registered.
+     * @param scope Scope of the authorization request
+     * @param acrValues Acr values used to the authorzation request
+     * @param authReqId Authentication request id.
+     */
+    private void notifyEndUserUsingFCM(String scope, String acrValues, String authReqId, String deviceRegistrationToken) {
+        String clientId = appConfiguration.getBackchannelClientId();
+        String redirectUri = appConfiguration.getBackchannelRedirectUri();
+        String url = appConfiguration.getCibaEndUserNotificationConfig().getNotificationUrl();
+        String key = cibaEncryptionService.decrypt(appConfiguration.getCibaEndUserNotificationConfig()
+                .getNotificationKey(), true);
+        String to = deviceRegistrationToken;
+        String title = "oxAuth Authentication Request";
+        String body = "Client Initiated Backchannel Authentication (CIBA)";
+
+        RedirectUri authorizationRequestUri = new RedirectUri(appConfiguration.getAuthorizationEndpoint());
+        authorizationRequestUri.addResponseParameter(CLIENT_ID, clientId);
+        authorizationRequestUri.addResponseParameter(RESPONSE_TYPE, "id_token");
+        authorizationRequestUri.addResponseParameter(SCOPE, scope);
+        authorizationRequestUri.addResponseParameter(ACR_VALUES, acrValues);
+        authorizationRequestUri.addResponseParameter(REDIRECT_URI, redirectUri);
+        authorizationRequestUri.addResponseParameter(STATE, UUID.randomUUID().toString());
+        authorizationRequestUri.addResponseParameter(NONCE, UUID.randomUUID().toString());
+        authorizationRequestUri.addResponseParameter(PROMPT, "consent");
+        authorizationRequestUri.addResponseParameter(AUTH_REQ_ID, authReqId);
+
+        String clickAction = authorizationRequestUri.toString();
+
+        FirebaseCloudMessagingRequest firebaseCloudMessagingRequest = new FirebaseCloudMessagingRequest(key, to, title, body, clickAction);
+        FirebaseCloudMessagingClient firebaseCloudMessagingClient = new FirebaseCloudMessagingClient(url);
+        firebaseCloudMessagingClient.setRequest(firebaseCloudMessagingRequest);
+        FirebaseCloudMessagingResponse firebaseCloudMessagingResponse = firebaseCloudMessagingClient.exec();
+
+        log.debug("CIBA: firebase cloud messaging result status " + firebaseCloudMessagingResponse.getStatus());
+    }
+
+}
\ No newline at end of file
diff --git a/oxAuth/Server/src/main/java/org/gluu/oxauth/ciba/CIBAPingCallbackService.java b/oxAuth/Server/src/main/java/org/gluu/oxauth/ciba/CIBAPingCallbackService.java
new file mode 100644
index 00000000..bc41873b
--- /dev/null
+++ b/oxAuth/Server/src/main/java/org/gluu/oxauth/ciba/CIBAPingCallbackService.java
@@ -0,0 +1,44 @@
+/*
+ * oxAuth is available under the MIT License (2008). See http://opensource.org/licenses/MIT for full text.
+ *
+ * Copyright (c) 2014, Gluu
+ */
+
+package org.gluu.oxauth.ciba;
+
+import org.gluu.oxauth.client.ciba.ping.PingCallbackClient;
+import org.gluu.oxauth.client.ciba.ping.PingCallbackRequest;
+import org.gluu.oxauth.client.ciba.ping.PingCallbackResponse;
+import org.gluu.oxauth.model.configuration.AppConfiguration;
+import org.slf4j.Logger;
+import org.slf4j.LoggerFactory;
+
+import javax.enterprise.context.ApplicationScoped;
+
+import javax.inject.Inject;
+
+/**
+ * @author Javier Rojas Blum
+ * @version December 21, 2019
+ */
+@ApplicationScoped
+public class CIBAPingCallbackService {
+
+    private final static Logger log = LoggerFactory.getLogger(CIBAPingCallbackService.class);
+
+    @Inject
+    private AppConfiguration appConfiguration;
+
+    public void pingCallback(String authReqId, String clientNotificationEndpoint, String clientNotificationToken) {
+        PingCallbackRequest pingCallbackRequest = new PingCallbackRequest();
+
+        pingCallbackRequest.setClientNotificationToken(clientNotificationToken);
+        pingCallbackRequest.setAuthReqId(authReqId);
+
+        PingCallbackClient pingCallbackClient = new PingCallbackClient(clientNotificationEndpoint, appConfiguration.getFapiCompatibility());
+        pingCallbackClient.setRequest(pingCallbackRequest);
+        PingCallbackResponse pingCallbackResponse = pingCallbackClient.exec();
+
+        log.debug("CIBA: ping callback result status " + pingCallbackResponse.getStatus());
+    }
+}
diff --git a/oxAuth/Server/src/main/java/org/gluu/oxauth/ciba/CIBAPushErrorService.java b/oxAuth/Server/src/main/java/org/gluu/oxauth/ciba/CIBAPushErrorService.java
new file mode 100644
index 00000000..96936a44
--- /dev/null
+++ b/oxAuth/Server/src/main/java/org/gluu/oxauth/ciba/CIBAPushErrorService.java
@@ -0,0 +1,42 @@
+/*
+ * oxAuth is available under the MIT License (2008). See http://opensource.org/licenses/MIT for full text.
+ *
+ * Copyright (c) 2014, Gluu
+ */
+
+package org.gluu.oxauth.ciba;
+
+import org.gluu.oxauth.client.ciba.push.PushErrorClient;
+import org.gluu.oxauth.client.ciba.push.PushErrorRequest;
+import org.gluu.oxauth.client.ciba.push.PushErrorResponse;
+import org.gluu.oxauth.model.ciba.PushErrorResponseType;
+import org.slf4j.Logger;
+import org.slf4j.LoggerFactory;
+
+import javax.enterprise.context.ApplicationScoped;
+
+/**
+ * @author Javier Rojas Blum
+ * @version May 9, 2020
+ */
+@ApplicationScoped
+public class CIBAPushErrorService {
+
+    private final static Logger log = LoggerFactory.getLogger(CIBAPushErrorService.class);
+
+    public void pushError(String authReqId, String clientNotificationEndpoint, String clientNotificationToken,
+                          PushErrorResponseType error, String errorDescription) {
+        PushErrorRequest pushErrorRequest = new PushErrorRequest();
+
+        pushErrorRequest.setClientNotificationToken(clientNotificationToken);
+        pushErrorRequest.setAuthReqId(authReqId);
+        pushErrorRequest.setErrorType(error);
+        pushErrorRequest.setErrorDescription(errorDescription);
+
+        PushErrorClient pushErrorClient = new PushErrorClient(clientNotificationEndpoint);
+        pushErrorClient.setRequest(pushErrorRequest);
+        PushErrorResponse pushErrorResponse = pushErrorClient.exec();
+
+        log.debug("CIBA: push error result status " + pushErrorResponse.getStatus());
+    }
+}
diff --git a/oxAuth/Server/src/main/java/org/gluu/oxauth/ciba/CIBAPushTokenDeliveryService.java b/oxAuth/Server/src/main/java/org/gluu/oxauth/ciba/CIBAPushTokenDeliveryService.java
new file mode 100644
index 00000000..7058542c
--- /dev/null
+++ b/oxAuth/Server/src/main/java/org/gluu/oxauth/ciba/CIBAPushTokenDeliveryService.java
@@ -0,0 +1,45 @@
+/*
+ * oxAuth is available under the MIT License (2008). See http://opensource.org/licenses/MIT for full text.
+ *
+ * Copyright (c) 2014, Gluu
+ */
+
+package org.gluu.oxauth.ciba;
+
+import org.gluu.oxauth.client.ciba.push.PushTokenDeliveryClient;
+import org.gluu.oxauth.client.ciba.push.PushTokenDeliveryRequest;
+import org.gluu.oxauth.client.ciba.push.PushTokenDeliveryResponse;
+import org.gluu.oxauth.model.common.TokenType;
+import org.slf4j.Logger;
+import org.slf4j.LoggerFactory;
+
+import javax.enterprise.context.ApplicationScoped;
+
+/**
+ * @author Javier Rojas Blum
+ * @version September 4, 2019
+ */
+@ApplicationScoped
+public class CIBAPushTokenDeliveryService {
+
+    private final static Logger log = LoggerFactory.getLogger(CIBAPushTokenDeliveryService.class);
+
+    public void pushTokenDelivery(String authReqId, String clientNotificationEndpoint, String clientNotificationToken,
+                                  String accessToken, String refreshToken, String idToken, Integer expiresIn) {
+        PushTokenDeliveryRequest pushTokenDeliveryRequest = new PushTokenDeliveryRequest();
+
+        pushTokenDeliveryRequest.setClientNotificationToken(clientNotificationToken);
+        pushTokenDeliveryRequest.setAuthReqId(authReqId);
+        pushTokenDeliveryRequest.setAccessToken(accessToken);
+        pushTokenDeliveryRequest.setTokenType(TokenType.BEARER);
+        pushTokenDeliveryRequest.setRefreshToken(refreshToken);
+        pushTokenDeliveryRequest.setExpiresIn(expiresIn);
+        pushTokenDeliveryRequest.setIdToken(idToken);
+
+        PushTokenDeliveryClient pushTokenDeliveryClient = new PushTokenDeliveryClient(clientNotificationEndpoint);
+        pushTokenDeliveryClient.setRequest(pushTokenDeliveryRequest);
+        PushTokenDeliveryResponse pushTokenDeliveryResponse = pushTokenDeliveryClient.exec();
+
+        log.debug("CIBA: push token delivery result status " + pushTokenDeliveryResponse.getStatus());
+    }
+}
diff --git a/oxAuth/Server/src/main/java/org/gluu/oxauth/ciba/CIBARegisterClientMetadataService.java b/oxAuth/Server/src/main/java/org/gluu/oxauth/ciba/CIBARegisterClientMetadataService.java
new file mode 100644
index 00000000..0e47e665
--- /dev/null
+++ b/oxAuth/Server/src/main/java/org/gluu/oxauth/ciba/CIBARegisterClientMetadataService.java
@@ -0,0 +1,47 @@
+/*
+ * oxAuth is available under the MIT License (2008). See http://opensource.org/licenses/MIT for full text.
+ *
+ * Copyright (c) 2014, Gluu
+ */
+
+package org.gluu.oxauth.ciba;
+
+import org.apache.commons.lang.BooleanUtils;
+import org.apache.commons.lang.StringUtils;
+import org.gluu.oxauth.model.common.BackchannelTokenDeliveryMode;
+import org.gluu.oxauth.model.configuration.AppConfiguration;
+import org.gluu.oxauth.model.crypto.signature.AsymmetricSignatureAlgorithm;
+import org.gluu.oxauth.model.registration.Client;
+
+import javax.enterprise.context.ApplicationScoped;
+
+import javax.inject.Inject;
+
+/**
+ * @author Javier Rojas Blum
+ * @version August 20, 2019
+ */
+@ApplicationScoped
+public class CIBARegisterClientMetadataService {
+
+    @Inject
+    private AppConfiguration appConfiguration;
+
+    public void updateClient(Client client, BackchannelTokenDeliveryMode backchannelTokenDeliveryMode,
+                             String backchannelClientNotificationEndpoint, AsymmetricSignatureAlgorithm backchannelAuthenticationRequestSigningAlg,
+                             Boolean backchannelUserCodeParameter) {
+        if (backchannelTokenDeliveryMode != null) {
+            client.setBackchannelTokenDeliveryMode(backchannelTokenDeliveryMode);
+        }
+        if (StringUtils.isNotBlank(backchannelClientNotificationEndpoint)) {
+            client.setBackchannelClientNotificationEndpoint(backchannelClientNotificationEndpoint);
+        }
+        if (backchannelAuthenticationRequestSigningAlg != null) {
+            client.setBackchannelAuthenticationRequestSigningAlg(backchannelAuthenticationRequestSigningAlg);
+        }
+        if (BooleanUtils.isTrue(appConfiguration.getBackchannelUserCodeParameterSupported())
+                && backchannelUserCodeParameter != null) {
+            client.setBackchannelUserCodeParameter(backchannelUserCodeParameter);
+        }
+    }
+}
\ No newline at end of file
diff --git a/oxAuth/Server/src/main/java/org/gluu/oxauth/ciba/CIBARegisterClientResponseService.java b/oxAuth/Server/src/main/java/org/gluu/oxauth/ciba/CIBARegisterClientResponseService.java
new file mode 100644
index 00000000..bc0af05f
--- /dev/null
+++ b/oxAuth/Server/src/main/java/org/gluu/oxauth/ciba/CIBARegisterClientResponseService.java
@@ -0,0 +1,39 @@
+/*
+ * oxAuth is available under the MIT License (2008). See http://opensource.org/licenses/MIT for full text.
+ *
+ * Copyright (c) 2014, Gluu
+ */
+
+package org.gluu.oxauth.ciba;
+
+import org.gluu.oxauth.model.registration.Client;
+import org.gluu.oxauth.model.util.Util;
+import org.json.JSONException;
+import org.json.JSONObject;
+import org.slf4j.Logger;
+import org.slf4j.LoggerFactory;
+
+import javax.enterprise.context.ApplicationScoped;
+
+import static org.gluu.oxauth.model.register.RegisterRequestParam.*;
+
+/**
+ * @author Javier Rojas Blum
+ * @version August 20, 2019
+ */
+@ApplicationScoped
+public class CIBARegisterClientResponseService {
+
+    private final static Logger log = LoggerFactory.getLogger(CIBARegisterClientResponseService.class);
+
+    public void updateResponse(JSONObject responseJsonObject, Client client) {
+        try {
+            Util.addToJSONObjectIfNotNull(responseJsonObject, BACKCHANNEL_TOKEN_DELIVERY_MODE.toString(), client.getBackchannelTokenDeliveryMode());
+            Util.addToJSONObjectIfNotNull(responseJsonObject, BACKCHANNEL_CLIENT_NOTIFICATION_ENDPOINT.toString(), client.getBackchannelClientNotificationEndpoint());
+            Util.addToJSONObjectIfNotNull(responseJsonObject, BACKCHANNEL_AUTHENTICATION_REQUEST_SIGNING_ALG.toString(), client.getBackchannelAuthenticationRequestSigningAlg());
+            Util.addToJSONObjectIfNotNull(responseJsonObject, BACKCHANNEL_USER_CODE_PARAMETER.toString(), client.getBackchannelUserCodeParameter());
+        } catch (JSONException e) {
+            log.error("Failed to update response.", e);
+        }
+    }
+}
\ No newline at end of file
diff --git a/oxAuth/Server/src/main/java/org/gluu/oxauth/ciba/CIBARegisterParamsValidatorService.java b/oxAuth/Server/src/main/java/org/gluu/oxauth/ciba/CIBARegisterParamsValidatorService.java
new file mode 100644
index 00000000..11b629ab
--- /dev/null
+++ b/oxAuth/Server/src/main/java/org/gluu/oxauth/ciba/CIBARegisterParamsValidatorService.java
@@ -0,0 +1,126 @@
+/*
+ * oxAuth is available under the MIT License (2008). See http://opensource.org/licenses/MIT for full text.
+ *
+ * Copyright (c) 2014, Gluu
+ */
+
+package org.gluu.oxauth.ciba;
+
+import org.apache.logging.log4j.util.Strings;
+import org.gluu.oxauth.model.common.BackchannelTokenDeliveryMode;
+import org.gluu.oxauth.model.common.GrantType;
+import org.gluu.oxauth.model.common.SubjectType;
+import org.gluu.oxauth.model.configuration.AppConfiguration;
+import org.gluu.oxauth.model.crypto.signature.AsymmetricSignatureAlgorithm;
+import org.gluu.oxauth.model.util.Util;
+import org.json.JSONArray;
+import org.slf4j.Logger;
+import org.slf4j.LoggerFactory;
+
+import javax.enterprise.context.ApplicationScoped;
+
+import javax.inject.Inject;
+import javax.ws.rs.HttpMethod;
+import javax.ws.rs.client.ClientBuilder;
+import javax.ws.rs.core.Response;
+
+import java.util.List;
+
+import static org.gluu.oxauth.model.common.BackchannelTokenDeliveryMode.*;
+import static org.gluu.oxauth.model.common.GrantType.CIBA;
+
+/**
+ * @author Javier Rojas Blum
+ * @version May 20, 2020
+ */
+@ApplicationScoped
+public class CIBARegisterParamsValidatorService {
+
+    private final static Logger log = LoggerFactory.getLogger(CIBARegisterParamsValidatorService.class);
+
+    @Inject
+    private AppConfiguration appConfiguration;
+
+    public boolean validateParams(
+            BackchannelTokenDeliveryMode backchannelTokenDeliveryMode, String backchannelClientNotificationEndpoint,
+            AsymmetricSignatureAlgorithm backchannelAuthenticationRequestSigningAlg, Boolean backchannelUserCodeParameter,
+            List<GrantType> grantTypes, SubjectType subjectType, String sectorIdentifierUri, String jwks, String jwksUri) {
+        try {
+            // Not CIBA Registration
+            if (backchannelTokenDeliveryMode == null && Strings.isBlank(backchannelClientNotificationEndpoint) && backchannelAuthenticationRequestSigningAlg == null) {
+                return true;
+            }
+
+            // Required parameter.
+            if (backchannelTokenDeliveryMode == null
+                    || !appConfiguration.getBackchannelTokenDeliveryModesSupported().contains(backchannelTokenDeliveryMode.getValue())) {
+                return false;
+            }
+
+            // Required if the token delivery mode is set to ping or push.
+            if ((backchannelTokenDeliveryMode == PING || backchannelTokenDeliveryMode == PUSH)
+                    && Strings.isBlank(backchannelClientNotificationEndpoint)) {
+                return false;
+            }
+
+            // Grant type urn:openid:params:grant-type:ciba is required if the token delivery mode is set to ping or poll.
+            if (backchannelTokenDeliveryMode == PING || backchannelTokenDeliveryMode == POLL) {
+                if (!appConfiguration.getGrantTypesSupported().contains(CIBA) || !grantTypes.contains(CIBA)) {
+                    return false;
+                }
+            }
+
+            // If the server does not support backchannel_user_code_parameter_supported, the default value is false.
+            if (appConfiguration.getBackchannelUserCodeParameterSupported() == null || appConfiguration.getBackchannelUserCodeParameterSupported() == false) {
+                backchannelUserCodeParameter = false;
+            }
+
+            if (subjectType != null && subjectType == SubjectType.PAIRWISE) {
+
+                if (backchannelTokenDeliveryMode == PING || backchannelTokenDeliveryMode == POLL) {
+                    if (Strings.isBlank(jwks) && Strings.isBlank(jwksUri)) {
+                        return false;
+                    }
+                }
+
+                if (Strings.isNotBlank(sectorIdentifierUri)) {
+					javax.ws.rs.client.Client clientRequest = ClientBuilder.newClient();
+					String entity = null;
+					try {
+						Response clientResponse = clientRequest.target(sectorIdentifierUri).request().buildGet().invoke();
+	                    int status = clientResponse.getStatus();
+	
+	                    if (status != 200) {
+	                        return false;
+	                    }
+	
+	                    entity = clientResponse.readEntity(String.class);
+					} finally {
+						clientRequest.close();
+                    }
+
+					JSONArray sectorIdentifierJsonArray = new JSONArray(entity);
+
+                    if (backchannelTokenDeliveryMode == PING || backchannelTokenDeliveryMode == POLL) {
+                        // If a sector_identifier_uri is explicitly provided, then the jwks_uri must be included in the list of
+                        // URIs pointed to by the sector_identifier_uri.
+                        if (!Strings.isBlank(jwksUri) && !Util.asList(sectorIdentifierJsonArray).contains(jwksUri)) {
+                            return false;
+                        }
+                    } else if (backchannelTokenDeliveryMode == PUSH) {
+                        // In case a sector_identifier_uri is explicitly provided, then the backchannel_client_notification_endpoint
+                        // must be included in the list of URIs pointed to by the sector_identifier_uri.
+                        if (!Util.asList(sectorIdentifierJsonArray).contains(backchannelClientNotificationEndpoint)) {
+                            return false;
+                        }
+                    }
+                }
+            }
+        } catch (Exception e) {
+            log.trace(e.getMessage(), e);
+            return false;
+        }
+
+        return true;
+    }
+}
\ No newline at end of file
diff --git a/oxAuth/Server/src/main/java/org/gluu/oxauth/clientinfo/ws/rs/ClientInfoRestWebService.java b/oxAuth/Server/src/main/java/org/gluu/oxauth/clientinfo/ws/rs/ClientInfoRestWebService.java
new file mode 100644
index 00000000..d5ee72d6
--- /dev/null
+++ b/oxAuth/Server/src/main/java/org/gluu/oxauth/clientinfo/ws/rs/ClientInfoRestWebService.java
@@ -0,0 +1,37 @@
+/*
+ * oxAuth is available under the MIT License (2008). See http://opensource.org/licenses/MIT for full text.
+ *
+ * Copyright (c) 2014, Gluu
+ */
+
+package org.gluu.oxauth.clientinfo.ws.rs;
+
+import javax.ws.rs.*;
+import javax.ws.rs.core.Context;
+import javax.ws.rs.core.MediaType;
+import javax.ws.rs.core.Response;
+import javax.ws.rs.core.SecurityContext;
+
+/**
+ * Provides interface for Client Info REST web services
+ *
+ * @author Javier Rojas Blum Date: 07.19.2012
+ */
+public interface ClientInfoRestWebService {
+
+    @GET
+    @Path("/clientinfo")
+    @Produces({MediaType.APPLICATION_JSON})
+    Response requestClientInfoGet(
+            @QueryParam("access_token") String accessToken,
+            @HeaderParam("Authorization") String authorization,
+            @Context SecurityContext securityContext);
+
+    @POST
+    @Path("/clientinfo")
+    @Produces({MediaType.APPLICATION_JSON})
+    Response requestClientInfoPost(
+            @FormParam("access_token") String accessToken,
+            @HeaderParam("Authorization") String authorization,
+            @Context SecurityContext securityContext);
+}
\ No newline at end of file
diff --git a/oxAuth/Server/src/main/java/org/gluu/oxauth/clientinfo/ws/rs/ClientInfoRestWebServiceImpl.java b/oxAuth/Server/src/main/java/org/gluu/oxauth/clientinfo/ws/rs/ClientInfoRestWebServiceImpl.java
new file mode 100644
index 00000000..d11bb1af
--- /dev/null
+++ b/oxAuth/Server/src/main/java/org/gluu/oxauth/clientinfo/ws/rs/ClientInfoRestWebServiceImpl.java
@@ -0,0 +1,135 @@
+/*
+ * oxAuth is available under the MIT License (2008). See http://opensource.org/licenses/MIT for full text.
+ *
+ * Copyright (c) 2014, Gluu
+ */
+
+package org.gluu.oxauth.clientinfo.ws.rs;
+
+import org.gluu.model.GluuAttribute;
+import org.gluu.oxauth.model.clientinfo.ClientInfoErrorResponseType;
+import org.gluu.oxauth.model.clientinfo.ClientInfoParamsValidator;
+import org.gluu.oxauth.model.common.AbstractToken;
+import org.gluu.oxauth.model.common.AuthorizationGrant;
+import org.gluu.oxauth.model.common.AuthorizationGrantList;
+import org.gluu.oxauth.model.error.ErrorResponseFactory;
+import org.gluu.oxauth.model.registration.Client;
+import org.gluu.oxauth.service.AttributeService;
+import org.gluu.oxauth.service.ClientService;
+import org.gluu.oxauth.service.ScopeService;
+import org.gluu.oxauth.service.token.TokenService;
+import org.gluu.oxauth.util.ServerUtil;
+import org.json.JSONException;
+import org.json.JSONObject;
+import org.oxauth.persistence.model.Scope;
+import org.slf4j.Logger;
+
+import javax.inject.Inject;
+import javax.ws.rs.Path;
+import javax.ws.rs.core.Response;
+import javax.ws.rs.core.SecurityContext;
+import java.util.Set;
+
+/**
+ * Provides interface for Client Info REST web services
+ *
+ * @author Javier Rojas Blum
+ * @version 0.9 March 27, 2015
+ */
+@Path("/")
+public class ClientInfoRestWebServiceImpl implements ClientInfoRestWebService {
+
+	@Inject
+	private Logger log;
+
+	@Inject
+	private ErrorResponseFactory errorResponseFactory;
+
+	@Inject
+	private AuthorizationGrantList authorizationGrantList;
+
+	@Inject
+	private ScopeService scopeService;
+
+	@Inject
+	private ClientService clientService;
+
+	@Inject
+    private AttributeService attributeService;
+    
+    @Inject
+    private TokenService tokenService;
+
+    @Override
+    public Response requestClientInfoGet(String accessToken, String authorization, SecurityContext securityContext) {
+        return requestClientInfo(accessToken, authorization, securityContext);
+    }
+
+    @Override
+    public Response requestClientInfoPost(String accessToken, String authorization, SecurityContext securityContext) {
+        return requestClientInfo(accessToken, authorization, securityContext);
+    }
+
+    public Response requestClientInfo(String accessToken, String authorization, SecurityContext securityContext) {
+        if (tokenService.isBearerAuthToken(authorization)) {
+            accessToken = tokenService.getBearerToken(authorization);
+        }
+        log.debug("Attempting to request Client Info, Access token = {}, Is Secure = {}",
+                new Object[] { accessToken, securityContext.isSecure() });
+        Response.ResponseBuilder builder = Response.ok();
+
+        if (!ClientInfoParamsValidator.validateParams(accessToken)) {
+            builder = Response.status(400);
+            builder.entity(errorResponseFactory.errorAsJson(ClientInfoErrorResponseType.INVALID_REQUEST, "Failed to validate access token."));
+        } else {
+            AuthorizationGrant authorizationGrant = authorizationGrantList.getAuthorizationGrantByAccessToken(accessToken);
+
+            if (authorizationGrant == null) {
+                log.trace("Failed to find authorization grant for access token.");
+                return Response.status(400).entity(errorResponseFactory.getErrorAsJson(ClientInfoErrorResponseType.INVALID_TOKEN,"","Unable to find grant object associated with access token.")).build();
+            }
+
+            final AbstractToken token = authorizationGrant.getAccessToken(accessToken);
+            if (token == null || !token.isValid()) {
+                log.trace("Invalid access token.");
+                return Response.status(400).entity(errorResponseFactory.getErrorAsJson(ClientInfoErrorResponseType.INVALID_TOKEN,"","Invalid access token.")).build();
+            }
+
+            builder.cacheControl(ServerUtil.cacheControlWithNoStoreTransformAndPrivate());
+            builder.header("Pragma", "no-cache");
+            builder.entity(getJSonResponse(authorizationGrant.getClient(), authorizationGrant.getScopes()));
+        }
+
+        return builder.build();
+    }
+
+    /**
+     * Builds a JSon String with the response parameters.
+     */
+    public String getJSonResponse(Client client, Set<String> scopes) {
+        JSONObject jsonObj = new JSONObject();
+
+        try {
+            for (String scopeName : scopes) {
+                Scope scope = scopeService.getScopeById(scopeName);
+
+                if (scope.getOxAuthClaims() != null) {
+                    for (String claimDn : scope.getOxAuthClaims()) {
+                        GluuAttribute attribute = attributeService.getAttributeByDn(claimDn);
+
+                        String attributeName = attribute.getName();
+                        Object attributeValue = clientService.getAttribute(client, attribute.getName());
+
+                        jsonObj.put(attributeName, attributeValue);
+                    }
+                }
+            }
+        } catch (JSONException e) {
+            log.error(e.getMessage(), e);
+        } catch (Exception e) {
+            log.error(e.getMessage(), e);
+        }
+
+        return jsonObj.toString();
+    }
+}
\ No newline at end of file
diff --git a/oxAuth/Server/src/main/java/org/gluu/oxauth/crypto/cert/CertificateParser.java b/oxAuth/Server/src/main/java/org/gluu/oxauth/crypto/cert/CertificateParser.java
new file mode 100644
index 00000000..299c700c
--- /dev/null
+++ b/oxAuth/Server/src/main/java/org/gluu/oxauth/crypto/cert/CertificateParser.java
@@ -0,0 +1,56 @@
+/*
+ * oxAuth is available under the MIT License (2008). See http://opensource.org/licenses/MIT for full text.
+ *
+ * Copyright (c) 2014, Gluu
+ */
+
+package org.gluu.oxauth.crypto.cert;
+
+import java.io.ByteArrayInputStream;
+import java.io.IOException;
+import java.io.InputStream;
+import java.io.StringReader;
+import java.security.cert.CertificateException;
+import java.security.cert.CertificateFactory;
+import java.security.cert.X509Certificate;
+
+import org.apache.commons.codec.binary.Base64;
+import org.apache.commons.io.IOUtils;
+import org.bouncycastle.cert.X509CertificateHolder;
+import org.bouncycastle.cert.jcajce.JcaX509CertificateConverter;
+import org.bouncycastle.openssl.PEMParser;
+import org.gluu.util.security.SecurityProviderUtility;
+
+public class CertificateParser {
+
+	public static X509Certificate parsePem(String pemEncodedCert) throws CertificateException {
+		StringReader sr = new StringReader(pemEncodedCert);
+		PEMParser pemReader = new PEMParser(sr);
+		try {
+			X509CertificateHolder certificateHolder = ((X509CertificateHolder) pemReader.readObject());
+			if (certificateHolder == null) {
+				return null;
+			}
+
+			X509Certificate cert = new JcaX509CertificateConverter().setProvider(SecurityProviderUtility.getBCProvider()).getCertificate(certificateHolder);
+
+			return cert;
+		} catch (IOException ex) {
+			throw new CertificateException(ex);
+		} finally {
+			IOUtils.closeQuietly(pemReader);
+		}
+	}
+
+    public static X509Certificate parseDer(String base64DerEncodedCert) throws CertificateException {
+        return parseDer(Base64.decodeBase64(base64DerEncodedCert));
+    }
+
+    public static X509Certificate parseDer(byte[] derEncodedCert) throws CertificateException {
+        return parseDer(new ByteArrayInputStream(derEncodedCert));
+    }
+
+    public static X509Certificate parseDer(InputStream is) throws CertificateException {
+            return (X509Certificate) CertificateFactory.getInstance("X.509", SecurityProviderUtility.getBCProvider()).generateCertificate(is);
+    }
+}
diff --git a/oxAuth/Server/src/main/java/org/gluu/oxauth/crypto/random/ChallengeGenerator.java b/oxAuth/Server/src/main/java/org/gluu/oxauth/crypto/random/ChallengeGenerator.java
new file mode 100644
index 00000000..91818a83
--- /dev/null
+++ b/oxAuth/Server/src/main/java/org/gluu/oxauth/crypto/random/ChallengeGenerator.java
@@ -0,0 +1,12 @@
+/*
+ * oxAuth is available under the MIT License (2008). See http://opensource.org/licenses/MIT for full text.
+ *
+ * Copyright (c) 2014, Gluu
+ */
+
+package org.gluu.oxauth.crypto.random;
+
+public interface ChallengeGenerator {
+
+    byte[] generateChallenge();
+}
diff --git a/oxAuth/Server/src/main/java/org/gluu/oxauth/crypto/random/RandomChallengeGenerator.java b/oxAuth/Server/src/main/java/org/gluu/oxauth/crypto/random/RandomChallengeGenerator.java
new file mode 100644
index 00000000..077d0811
--- /dev/null
+++ b/oxAuth/Server/src/main/java/org/gluu/oxauth/crypto/random/RandomChallengeGenerator.java
@@ -0,0 +1,25 @@
+/*
+ * oxAuth is available under the MIT License (2008). See http://opensource.org/licenses/MIT for full text.
+ *
+ * Copyright (c) 2014, Gluu
+ */
+
+package org.gluu.oxauth.crypto.random;
+
+import java.security.SecureRandom;
+
+import javax.inject.Named;
+
+@Named("randomChallengeGenerator")
+public class RandomChallengeGenerator implements ChallengeGenerator {
+
+    private final SecureRandom random = new SecureRandom();
+
+    @Override
+    public byte[] generateChallenge() {
+        byte[] randomBytes = new byte[32];
+        random.nextBytes(randomBytes);
+
+        return randomBytes;
+    }
+}
diff --git a/oxAuth/Server/src/main/java/org/gluu/oxauth/crypto/signature/SHA256withECDSASignatureVerification.java b/oxAuth/Server/src/main/java/org/gluu/oxauth/crypto/signature/SHA256withECDSASignatureVerification.java
new file mode 100644
index 00000000..12bbaf81
--- /dev/null
+++ b/oxAuth/Server/src/main/java/org/gluu/oxauth/crypto/signature/SHA256withECDSASignatureVerification.java
@@ -0,0 +1,85 @@
+/*
+ * oxAuth is available under the MIT License (2008). See http://opensource.org/licenses/MIT for full text.
+ *
+ * Copyright (c) 2014, Gluu
+ */
+
+package org.gluu.oxauth.crypto.signature;
+
+import java.security.GeneralSecurityException;
+import java.security.KeyFactory;
+import java.security.MessageDigest;
+import java.security.NoSuchAlgorithmException;
+import java.security.PublicKey;
+import java.security.Signature;
+import java.security.cert.X509Certificate;
+
+import javax.inject.Named;
+
+import org.bouncycastle.asn1.sec.SECNamedCurves;
+import org.bouncycastle.asn1.x9.X9ECParameters;
+import org.bouncycastle.jce.spec.ECParameterSpec;
+import org.bouncycastle.jce.spec.ECPublicKeySpec;
+import org.bouncycastle.math.ec.ECPoint;
+import org.gluu.oxauth.model.exception.SignatureException;
+import org.gluu.util.security.SecurityProviderUtility;
+
+@Named
+public class SHA256withECDSASignatureVerification implements SignatureVerification {
+
+    @Override
+    public boolean checkSignature(X509Certificate certificate, byte[] signedBytes, byte[] signature) throws SignatureException {
+        return checkSignature(certificate.getPublicKey(), signedBytes, signature);
+    }
+
+    @Override
+    public boolean checkSignature(PublicKey publicKey, byte[] signedBytes, byte[] signature) throws SignatureException {
+        boolean isValid = false;
+		try {
+			Signature ecdsaSignature = Signature.getInstance("SHA256withECDSA", SecurityProviderUtility.getBCProvider());
+			ecdsaSignature.initVerify(publicKey);
+			ecdsaSignature.update(signedBytes);
+
+			isValid = ecdsaSignature.verify(signature);
+		} catch (GeneralSecurityException ex) {
+			throw new SignatureException(ex);
+		}
+        
+        return isValid;
+    }
+
+    @Override
+    public PublicKey decodePublicKey(byte[] encodedPublicKey) throws SignatureException {
+            X9ECParameters curve = SECNamedCurves.getByName("secp256r1");
+            ECPoint point = curve.getCurve().decodePoint(encodedPublicKey);
+
+            try {
+				return KeyFactory.getInstance("ECDSA").generatePublic(
+				        new ECPublicKeySpec(point,
+				                new ECParameterSpec(
+				                        curve.getCurve(),
+				                        curve.getG(),
+				                        curve.getN(),
+				                        curve.getH()
+				                )
+				        )
+				);
+			} catch (GeneralSecurityException ex) {
+				throw new SignatureException(ex);
+			}
+    }
+
+    @Override
+    public byte[] hash(byte[] bytes) {
+        try {
+            return MessageDigest.getInstance("SHA-256").digest(bytes);
+        } catch (NoSuchAlgorithmException e) {
+            throw new RuntimeException(e);
+        }
+    }
+
+    @Override
+    public byte[] hash(String str) {
+        return hash(str.getBytes());
+    }
+}
diff --git a/oxAuth/Server/src/main/java/org/gluu/oxauth/crypto/signature/SignatureVerification.java b/oxAuth/Server/src/main/java/org/gluu/oxauth/crypto/signature/SignatureVerification.java
new file mode 100644
index 00000000..66dd645d
--- /dev/null
+++ b/oxAuth/Server/src/main/java/org/gluu/oxauth/crypto/signature/SignatureVerification.java
@@ -0,0 +1,26 @@
+/*
+ * oxAuth is available under the MIT License (2008). See http://opensource.org/licenses/MIT for full text.
+ *
+ * Copyright (c) 2014, Gluu
+ */
+
+package org.gluu.oxauth.crypto.signature;
+
+import java.security.PublicKey;
+import java.security.cert.X509Certificate;
+
+import org.gluu.oxauth.model.exception.SignatureException;
+
+public interface SignatureVerification {
+
+	boolean checkSignature(X509Certificate attestationCertificate, byte[] signedBytes, byte[] signature) throws SignatureException;
+
+    boolean checkSignature(PublicKey publicKey, byte[] signedBytes, byte[] signature) throws SignatureException;
+
+    PublicKey decodePublicKey(byte[] encodedPublicKey) throws SignatureException;
+
+    byte[] hash(byte[] bytes);
+
+    byte[] hash(String str);
+
+}
diff --git a/oxAuth/Server/src/main/java/org/gluu/oxauth/exception/GlobalExceptionHandler.java b/oxAuth/Server/src/main/java/org/gluu/oxauth/exception/GlobalExceptionHandler.java
new file mode 100644
index 00000000..65a44bcb
--- /dev/null
+++ b/oxAuth/Server/src/main/java/org/gluu/oxauth/exception/GlobalExceptionHandler.java
@@ -0,0 +1,72 @@
+package org.gluu.oxauth.exception;
+
+import java.util.Iterator;
+
+import javax.faces.FacesException;
+import javax.faces.application.ConfigurableNavigationHandler;
+import javax.faces.context.ExceptionHandler;
+import javax.faces.context.ExceptionHandlerWrapper;
+import javax.faces.context.ExternalContext;
+import javax.faces.context.FacesContext;
+import javax.faces.event.ExceptionQueuedEvent;
+import javax.faces.event.ExceptionQueuedEventContext;
+
+import org.apache.commons.lang.exception.ExceptionUtils;
+import org.slf4j.Logger;
+import org.slf4j.LoggerFactory;
+
+/**
+ * Created by eugeniuparvan on 8/29/17.
+ */
+public class GlobalExceptionHandler extends ExceptionHandlerWrapper {
+    private static final Logger log = LoggerFactory.getLogger(GlobalExceptionHandler.class);
+
+    private ExceptionHandler wrapped;
+
+    GlobalExceptionHandler(ExceptionHandler exception) {
+        this.wrapped = exception;
+    }
+
+    @Override
+    public ExceptionHandler getWrapped() {
+        return this.wrapped;
+    }
+
+    public void handle() throws FacesException {
+        final Iterator<ExceptionQueuedEvent> i = getUnhandledExceptionQueuedEvents().iterator();
+
+        while (i.hasNext()) {
+            ExceptionQueuedEvent event = i.next();
+            ExceptionQueuedEventContext context = (ExceptionQueuedEventContext) event.getSource();
+
+            Throwable t = context.getException();
+            final FacesContext fc = FacesContext.getCurrentInstance();
+            final ExternalContext externalContext = fc.getExternalContext();
+            try {
+				if (isInvalidSessionStateException(t)) {
+	                log.error(t.getMessage(), t);
+					performRedirect(externalContext, "/error_session.htm");
+				} else {
+	                log.error(t.getMessage(), t);
+	                performRedirect(externalContext, "/error_service.htm");
+				}
+                fc.renderResponse();
+            } finally {
+                i.remove();
+            }
+        }
+        getWrapped().handle();
+    }
+
+    private boolean isInvalidSessionStateException(Throwable t) {
+        return ExceptionUtils.getRootCause(t) instanceof org.gluu.oxauth.model.exception.InvalidSessionStateException;
+    }
+
+    private void performRedirect(ExternalContext externalContext, String viewId) {
+        try {
+            externalContext.redirect(externalContext.getRequestContextPath() + viewId);
+        } catch (Exception e) {
+            log.error("Can't perform redirect to viewId: " + viewId, e);
+        }
+    }
+}
\ No newline at end of file
diff --git a/oxAuth/Server/src/main/java/org/gluu/oxauth/exception/GlobalExceptionHandlerFactory.java b/oxAuth/Server/src/main/java/org/gluu/oxauth/exception/GlobalExceptionHandlerFactory.java
new file mode 100644
index 00000000..f5c8def8
--- /dev/null
+++ b/oxAuth/Server/src/main/java/org/gluu/oxauth/exception/GlobalExceptionHandlerFactory.java
@@ -0,0 +1,20 @@
+package org.gluu.oxauth.exception;
+
+import javax.faces.context.ExceptionHandler;
+import javax.faces.context.ExceptionHandlerFactory;
+
+/**
+ * Created by eugeniuparvan on 8/29/17.
+ */
+public class GlobalExceptionHandlerFactory extends ExceptionHandlerFactory {
+    private ExceptionHandlerFactory exceptionHandlerFactory;
+
+    public GlobalExceptionHandlerFactory(ExceptionHandlerFactory exceptionHandlerFactory) {
+        this.exceptionHandlerFactory = exceptionHandlerFactory;
+    }
+
+    @Override
+    public ExceptionHandler getExceptionHandler() {
+        return new GlobalExceptionHandler(exceptionHandlerFactory.getExceptionHandler());
+    }
+}
\ No newline at end of file
diff --git a/oxAuth/Server/src/main/java/org/gluu/oxauth/exception/InvalidSchemaUpdateException.java b/oxAuth/Server/src/main/java/org/gluu/oxauth/exception/InvalidSchemaUpdateException.java
new file mode 100644
index 00000000..2ba545dc
--- /dev/null
+++ b/oxAuth/Server/src/main/java/org/gluu/oxauth/exception/InvalidSchemaUpdateException.java
@@ -0,0 +1,28 @@
+/*
+ * oxAuth is available under the MIT License (2008). See http://opensource.org/licenses/MIT for full text.
+ *
+ * Copyright (c) 2014, Gluu
+ */
+
+package org.gluu.oxauth.exception;
+
+/**
+ * @author Yuriy Movchan Date: 10.15.2010
+ */
+public class InvalidSchemaUpdateException extends RuntimeException {
+
+	private static final long serialVersionUID = 3071969232087073304L;
+
+	public InvalidSchemaUpdateException(Throwable root) {
+		super(root);
+	}
+
+	public InvalidSchemaUpdateException(String string, Throwable root) {
+		super(string, root);
+	}
+
+	public InvalidSchemaUpdateException(String s) {
+		super(s);
+	}
+
+}
diff --git a/oxAuth/Server/src/main/java/org/gluu/oxauth/exception/UncaughtException.java b/oxAuth/Server/src/main/java/org/gluu/oxauth/exception/UncaughtException.java
new file mode 100644
index 00000000..4bdcf679
--- /dev/null
+++ b/oxAuth/Server/src/main/java/org/gluu/oxauth/exception/UncaughtException.java
@@ -0,0 +1,66 @@
+package org.gluu.oxauth.exception;
+
+import org.slf4j.Logger;
+import org.slf4j.LoggerFactory;
+
+import javax.enterprise.inject.Vetoed;
+import javax.servlet.http.HttpServletRequest;
+import javax.ws.rs.WebApplicationException;
+import javax.ws.rs.core.Context;
+import javax.ws.rs.core.Response;
+import javax.ws.rs.core.UriInfo;
+import javax.ws.rs.ext.ExceptionMapper;
+import javax.ws.rs.ext.Provider;
+import java.net.URI;
+
+/**
+ * Created by eugeniuparvan on 8/29/17.
+ */
+@Provider
+@Vetoed
+public class UncaughtException extends Throwable implements ExceptionMapper<Throwable> {
+
+    private static final long serialVersionUID = 1L;
+
+    private static final String ERROR_PAGE = "/error_service.htm";
+
+    private Logger log = LoggerFactory.getLogger(UncaughtException.class);
+
+    @Context
+    private HttpServletRequest httpRequest;
+
+    @Context
+    private UriInfo uriInfo;
+
+    public UncaughtException() {
+    }
+
+
+    @Override
+    public Response toResponse(Throwable exception) {
+        try {
+            if (exception instanceof WebApplicationException) {
+                final Response response = ((WebApplicationException) exception).getResponse();
+                if (response != null && response.getStatus() > 0) {
+                    return response;
+                }
+            }
+            log.error("Jersey error.", exception);
+            return Response.temporaryRedirect(new URI(getRedirectURI())).build();
+        } catch (Exception e) {
+            log.error("Jersey error.", e);
+            return Response.status(500).entity("Something bad happened. Please try again later!").type("text/plain").build();
+        }
+    }
+
+    private String getRedirectURI() throws Exception {
+        String baseUri = uriInfo.getBaseUri().toString();
+        String contextPath = httpRequest.getContextPath();
+
+        int startIndex = baseUri.indexOf(contextPath);
+        if (startIndex == -1)
+            throw new Exception("Can't build redirect URI");
+
+        return baseUri.substring(0, startIndex + contextPath.length()) + ERROR_PAGE;
+    }
+}
\ No newline at end of file
diff --git a/oxAuth/Server/src/main/java/org/gluu/oxauth/exception/fido/u2f/BadConfigurationException.java b/oxAuth/Server/src/main/java/org/gluu/oxauth/exception/fido/u2f/BadConfigurationException.java
new file mode 100644
index 00000000..da4bf3ad
--- /dev/null
+++ b/oxAuth/Server/src/main/java/org/gluu/oxauth/exception/fido/u2f/BadConfigurationException.java
@@ -0,0 +1,20 @@
+/*
+ * oxAuth is available under the MIT License (2008). See http://opensource.org/licenses/MIT for full text.
+ *
+ * Copyright (c) 2014, Gluu
+ */
+
+package org.gluu.oxauth.exception.fido.u2f;
+
+public class BadConfigurationException extends RuntimeException {
+
+	private static final long serialVersionUID = -1914683110856700400L;
+
+	public BadConfigurationException(String message) {
+		super(message);
+	}
+
+	public BadConfigurationException(String message, Throwable cause) {
+		super(message, cause);
+	}
+}
diff --git a/oxAuth/Server/src/main/java/org/gluu/oxauth/exception/fido/u2f/DeviceCompromisedException.java b/oxAuth/Server/src/main/java/org/gluu/oxauth/exception/fido/u2f/DeviceCompromisedException.java
new file mode 100644
index 00000000..517a4e15
--- /dev/null
+++ b/oxAuth/Server/src/main/java/org/gluu/oxauth/exception/fido/u2f/DeviceCompromisedException.java
@@ -0,0 +1,30 @@
+/*
+ * oxAuth is available under the MIT License (2008). See http://opensource.org/licenses/MIT for full text.
+ *
+ * Copyright (c) 2014, Gluu
+ */
+
+package org.gluu.oxauth.exception.fido.u2f;
+
+import org.gluu.oxauth.model.fido.u2f.DeviceRegistration;
+
+public class DeviceCompromisedException extends Exception {
+
+	private static final long serialVersionUID = -2098466708327419261L;
+
+	private final DeviceRegistration registration;
+
+	public DeviceCompromisedException(DeviceRegistration registration, String message, Throwable cause) {
+		super(message, cause);
+		this.registration = registration;
+	}
+
+	public DeviceCompromisedException(DeviceRegistration registration, String message) {
+		super(message);
+		this.registration = registration;
+	}
+
+	public DeviceRegistration getDeviceRegistration() {
+		return registration;
+	}
+}
diff --git a/oxAuth/Server/src/main/java/org/gluu/oxauth/exception/fido/u2f/InvalidDeviceCounterException.java b/oxAuth/Server/src/main/java/org/gluu/oxauth/exception/fido/u2f/InvalidDeviceCounterException.java
new file mode 100644
index 00000000..20444bfb
--- /dev/null
+++ b/oxAuth/Server/src/main/java/org/gluu/oxauth/exception/fido/u2f/InvalidDeviceCounterException.java
@@ -0,0 +1,18 @@
+/*
+ * oxAuth is available under the MIT License (2008). See http://opensource.org/licenses/MIT for full text.
+ *
+ * Copyright (c) 2014, Gluu
+ */
+
+package org.gluu.oxauth.exception.fido.u2f;
+
+import org.gluu.oxauth.model.fido.u2f.DeviceRegistration;
+
+public class InvalidDeviceCounterException extends DeviceCompromisedException {
+
+	private static final long serialVersionUID = -3393844723613998052L;
+
+	public InvalidDeviceCounterException(DeviceRegistration registration) {
+		super(registration, "The device's internal counter was was smaller than expected. It's possible that the device has been cloned!");
+	}
+}
diff --git a/oxAuth/Server/src/main/java/org/gluu/oxauth/exception/fido/u2f/InvalidKeyHandleDeviceException.java b/oxAuth/Server/src/main/java/org/gluu/oxauth/exception/fido/u2f/InvalidKeyHandleDeviceException.java
new file mode 100644
index 00000000..f017429e
--- /dev/null
+++ b/oxAuth/Server/src/main/java/org/gluu/oxauth/exception/fido/u2f/InvalidKeyHandleDeviceException.java
@@ -0,0 +1,21 @@
+/*
+ * oxAuth is available under the MIT License (2008). See http://opensource.org/licenses/MIT for full text.
+ *
+ * Copyright (c) 2014, Gluu
+ */
+
+package org.gluu.oxauth.exception.fido.u2f;
+
+public class InvalidKeyHandleDeviceException extends Exception {
+
+	private static final long serialVersionUID = 4324358428668365475L;
+
+	public InvalidKeyHandleDeviceException(String message, Throwable cause) {
+		super(message, cause);
+	}
+
+	public InvalidKeyHandleDeviceException(String message) {
+		super(message);
+	}
+
+}
diff --git a/oxAuth/Server/src/main/java/org/gluu/oxauth/exception/fido/u2f/NoEligableDevicesException.java b/oxAuth/Server/src/main/java/org/gluu/oxauth/exception/fido/u2f/NoEligableDevicesException.java
new file mode 100644
index 00000000..d30bfa16
--- /dev/null
+++ b/oxAuth/Server/src/main/java/org/gluu/oxauth/exception/fido/u2f/NoEligableDevicesException.java
@@ -0,0 +1,37 @@
+/*
+ * oxAuth is available under the MIT License (2008). See http://opensource.org/licenses/MIT for full text.
+ *
+ * Copyright (c) 2014, Gluu
+ */
+
+package org.gluu.oxauth.exception.fido.u2f;
+
+import java.util.Collections;
+import java.util.List;
+
+import org.gluu.oxauth.model.fido.u2f.DeviceRegistration;
+
+public class NoEligableDevicesException extends Exception {
+
+	private static final long serialVersionUID = -7685552584573073454L;
+
+	private final List<? extends DeviceRegistration> deviceRegistrations;
+
+	public NoEligableDevicesException(List<? extends DeviceRegistration> deviceRegistrations, String message, Throwable cause) {
+		super(message, cause);
+		this.deviceRegistrations = Collections.unmodifiableList(deviceRegistrations);
+	}
+
+	public NoEligableDevicesException(List<? extends DeviceRegistration> deviceRegistrations, String message) {
+		super(message);
+		this.deviceRegistrations = Collections.unmodifiableList(deviceRegistrations);
+	}
+
+	public List<? extends DeviceRegistration> getDeviceRegistrations() {
+		return deviceRegistrations;
+	}
+
+	public boolean hasDevices() {
+		return !deviceRegistrations.isEmpty();
+	}
+}
diff --git a/oxAuth/Server/src/main/java/org/gluu/oxauth/filter/CorsFilter.java b/oxAuth/Server/src/main/java/org/gluu/oxauth/filter/CorsFilter.java
new file mode 100644
index 00000000..2dbc9b7d
--- /dev/null
+++ b/oxAuth/Server/src/main/java/org/gluu/oxauth/filter/CorsFilter.java
@@ -0,0 +1,168 @@
+/*
+ * oxAuth is available under the MIT License (2008). See http://opensource.org/licenses/MIT for full text.
+ *
+ * Copyright (c) 2014, Gluu
+ */
+
+package org.gluu.oxauth.filter;
+
+import java.io.IOException;
+import java.io.UnsupportedEncodingException;
+import java.net.URLDecoder;
+import java.util.ArrayList;
+import java.util.Arrays;
+import java.util.Collection;
+import java.util.List;
+
+import javax.inject.Inject;
+import javax.servlet.FilterChain;
+import javax.servlet.FilterConfig;
+import javax.servlet.ServletException;
+import javax.servlet.ServletRequest;
+import javax.servlet.ServletResponse;
+import javax.servlet.annotation.WebFilter;
+import javax.servlet.http.HttpServletRequest;
+
+import org.apache.commons.codec.binary.Base64;
+import org.gluu.oxauth.model.config.ConfigurationFactory;
+import org.gluu.oxauth.model.configuration.AppConfiguration;
+import org.gluu.oxauth.model.registration.Client;
+import org.gluu.oxauth.model.util.Util;
+import org.gluu.oxauth.service.ClientService;
+import org.gluu.server.filters.AbstractCorsFilter;
+import org.gluu.util.StringHelper;
+import org.slf4j.Logger;
+
+/**
+ * CORS Filter to support both Tomcat and Jetty
+ *
+ * @author Yuriy Movchan
+ * @author Javier Rojas Blum
+ * @version March 20, 2018
+ */
+@WebFilter(
+        filterName = "CorsFilter",
+        asyncSupported = true,
+        urlPatterns = {"/.well-known/*", "/restv1/*", "/opiframe"})
+public class CorsFilter extends AbstractCorsFilter {
+
+	@Inject
+    private Logger log;
+
+    @Inject
+    private ConfigurationFactory configurationFactory;
+
+    @Inject
+    private AppConfiguration appConfiguration;
+
+    @Inject
+    private ClientService clientService;
+
+    private boolean filterEnabled;
+
+    public CorsFilter() {
+        super();
+    }
+
+    @Override
+    public void init(final FilterConfig filterConfig) throws ServletException {
+        // Initialize defaults
+        parseAndStore(DEFAULT_ALLOWED_ORIGINS, DEFAULT_ALLOWED_HTTP_METHODS,
+                DEFAULT_ALLOWED_HTTP_HEADERS, DEFAULT_EXPOSED_HEADERS,
+                DEFAULT_SUPPORTS_CREDENTIALS, DEFAULT_PREFLIGHT_MAXAGE,
+                DEFAULT_DECORATE_REQUEST);
+
+        AppConfiguration appConfiguration = configurationFactory.getAppConfiguration();
+
+        if (filterConfig != null) {
+            String filterName = filterConfig.getFilterName();
+            CorsFilterConfig corsFilterConfig = new CorsFilterConfig(filterName, appConfiguration);
+
+            String configEnabled = corsFilterConfig
+                    .getInitParameter(PARAM_CORS_ENABLED);
+            String configAllowedOrigins = corsFilterConfig
+                    .getInitParameter(PARAM_CORS_ALLOWED_ORIGINS);
+            String configAllowedHttpMethods = corsFilterConfig
+                    .getInitParameter(PARAM_CORS_ALLOWED_METHODS);
+            String configAllowedHttpHeaders = corsFilterConfig
+                    .getInitParameter(PARAM_CORS_ALLOWED_HEADERS);
+            String configExposedHeaders = corsFilterConfig
+                    .getInitParameter(PARAM_CORS_EXPOSED_HEADERS);
+            String configSupportsCredentials = corsFilterConfig
+                    .getInitParameter(PARAM_CORS_SUPPORT_CREDENTIALS);
+            String configPreflightMaxAge = corsFilterConfig
+                    .getInitParameter(PARAM_CORS_PREFLIGHT_MAXAGE);
+            String configDecorateRequest = corsFilterConfig
+                    .getInitParameter(PARAM_CORS_REQUEST_DECORATE);
+
+            if (configEnabled != null) {
+                this.filterEnabled = Boolean.parseBoolean(configEnabled);
+            }
+
+            parseAndStore(configAllowedOrigins, configAllowedHttpMethods,
+                    configAllowedHttpHeaders, configExposedHeaders,
+                    configSupportsCredentials, configPreflightMaxAge,
+                    configDecorateRequest);
+        }
+    }
+
+    @Override
+    public void doFilter(ServletRequest servletRequest, ServletResponse servletResponse, FilterChain filterChain)
+            throws IOException, ServletException {
+        if (this.filterEnabled) {
+            try {
+                Collection<String> clientAllowedOrigins = doFilterImpl(servletRequest);
+                setContextClientAllowedOrigins(servletRequest, clientAllowedOrigins);
+			} catch (Exception ex) {
+				log.error("Failed to process request", ex);
+			}
+            super.doFilter(servletRequest, servletResponse, filterChain);
+        } else {
+            filterChain.doFilter(servletRequest, servletResponse);
+        }
+    }
+
+    protected Collection<String> doFilterImpl(ServletRequest servletRequest)
+            throws UnsupportedEncodingException, IOException, ServletException {
+    	List<String> clientAuthorizedOrigins = null;
+
+        if (StringHelper.isNotEmpty(servletRequest.getParameter("client_id"))) {
+            String clientId = servletRequest.getParameter("client_id");
+            Client client = clientService.getClient(clientId);
+            if (client != null) {
+                String[] authorizedOriginsArray = client.getAuthorizedOrigins();
+                if (authorizedOriginsArray != null && authorizedOriginsArray.length > 0) {
+                    clientAuthorizedOrigins = Arrays.asList(authorizedOriginsArray);
+                }
+            }
+        } else {
+            final HttpServletRequest httpRequest = (HttpServletRequest) servletRequest;
+            String header = httpRequest.getHeader("Authorization");
+            if (httpRequest.getRequestURI().endsWith("/token")) {
+                if (header != null && header.startsWith("Basic ")) {
+                    String base64Token = header.substring(6);
+                    String token = new String(Base64.decodeBase64(base64Token), Util.UTF8_STRING_ENCODING);
+
+                    String username = "";
+                    int delim = token.indexOf(":");
+
+                    if (delim != -1) {
+                        username = URLDecoder.decode(token.substring(0, delim), Util.UTF8_STRING_ENCODING);
+                    }
+
+                    Client client = clientService.getClient(username);
+
+                    if (client != null) {
+                        String[] authorizedOriginsArray = client.getAuthorizedOrigins();
+                        if (authorizedOriginsArray != null && authorizedOriginsArray.length > 0) {
+                            clientAuthorizedOrigins = Arrays.asList(authorizedOriginsArray);
+                        }
+                    }
+                }
+            }
+        }
+        
+        return clientAuthorizedOrigins;
+    }
+}
+
diff --git a/oxAuth/Server/src/main/java/org/gluu/oxauth/filter/CorsFilterConfig.java b/oxAuth/Server/src/main/java/org/gluu/oxauth/filter/CorsFilterConfig.java
new file mode 100644
index 00000000..b3edb374
--- /dev/null
+++ b/oxAuth/Server/src/main/java/org/gluu/oxauth/filter/CorsFilterConfig.java
@@ -0,0 +1,119 @@
+/*
+ * oxAuth is available under the MIT License (2008). See http://opensource.org/licenses/MIT for full text.
+ *
+ * Copyright (c) 2014, Gluu
+ */
+
+package org.gluu.oxauth.filter;
+
+import java.util.Collections;
+import java.util.Enumeration;
+import java.util.HashMap;
+import java.util.List;
+import java.util.Map;
+
+import javax.servlet.FilterConfig;
+import javax.servlet.ServletContext;
+
+import org.gluu.oxauth.model.configuration.AppConfiguration;
+import org.gluu.oxauth.model.configuration.CorsConfigurationFilter;
+
+/**
+ * @author Javier Rojas Blum
+ * @version February 15, 2017
+ */
+public class CorsFilterConfig implements FilterConfig {
+
+    private String filterName;
+    private Map<String, String> initParameters;
+
+    /**
+     * Key to retrieve if filter enabled from {@link CorsConfigurationFilter}.
+     */
+    public static final String PARAM_CORS_ENABLED = "cors.enabled";
+
+    /**
+     * Key to retrieve allowed origins from {@link CorsConfigurationFilter}.
+     */
+    public static final String PARAM_CORS_ALLOWED_ORIGINS = "cors.allowed.origins";
+
+    /**
+     * Key to retrieve allowed methods from {@link CorsConfigurationFilter}.
+     */
+    public static final String PARAM_CORS_ALLOWED_METHODS = "cors.allowed.methods";
+
+    /**
+     * Key to retrieve allowed headers from {@link CorsConfigurationFilter}.
+     */
+    public static final String PARAM_CORS_ALLOWED_HEADERS = "cors.allowed.headers";
+
+    /**
+     * Key to retrieve exposed headers from {@link CorsConfigurationFilter}.
+     */
+    public static final String PARAM_CORS_EXPOSED_HEADERS = "cors.exposed.headers";
+
+    /**
+     * Key to retrieve support credentials from {@link CorsConfigurationFilter}.
+     */
+    public static final String PARAM_CORS_SUPPORT_CREDENTIALS = "cors.support.credentials";
+
+    /**
+     * Key to retrieve logging enabled from {@link CorsConfigurationFilter}.
+     */
+    public static final String PARAM_CORS_LOGGING_ENABLED = "cors.logging.enabled";
+
+    /**
+     * Key to retrieve preflight max age from {@link CorsConfigurationFilter}.
+     */
+    public static final String PARAM_CORS_PREFLIGHT_MAXAGE = "cors.preflight.maxage";
+
+    /**
+     * Key to determine if request should be decorated {@link CorsConfigurationFilter}.
+     */
+    public static final String PARAM_CORS_REQUEST_DECORATE = "cors.request.decorate";
+
+    public CorsFilterConfig(String filterName, AppConfiguration appConfiguration) {
+        this.filterName = filterName;
+        initParameters = new HashMap<String, String>();
+
+        List<CorsConfigurationFilter> corsConfigurationFilters = appConfiguration.getCorsConfigurationFilters();
+        for (CorsConfigurationFilter corsConfigurationFilter : corsConfigurationFilters) {
+            if (filterName.equals(corsConfigurationFilter.getFilterName())) {
+                initParameters.put(PARAM_CORS_ENABLED, corsConfigurationFilter.getCorsEnabled().toString());
+                initParameters.put(PARAM_CORS_ALLOWED_ORIGINS, corsConfigurationFilter.getCorsAllowedOrigins());
+                initParameters.put(PARAM_CORS_ALLOWED_METHODS, corsConfigurationFilter.getCorsAllowedMethods());
+                initParameters.put(PARAM_CORS_ALLOWED_HEADERS, corsConfigurationFilter.getCorsAllowedHeaders());
+                initParameters.put(PARAM_CORS_EXPOSED_HEADERS, corsConfigurationFilter.getCorsExposedHeaders());
+                initParameters.put(PARAM_CORS_SUPPORT_CREDENTIALS, corsConfigurationFilter.getCorsSupportCredentials().toString());
+                initParameters.put(PARAM_CORS_LOGGING_ENABLED, corsConfigurationFilter.getCorsLoggingEnabled().toString());
+                initParameters.put(PARAM_CORS_PREFLIGHT_MAXAGE, corsConfigurationFilter.getCorsPreflightMaxAge().toString());
+                initParameters.put(PARAM_CORS_REQUEST_DECORATE, corsConfigurationFilter.getCorsRequestDecorate().toString());
+            }
+        }
+
+    }
+
+    @Override
+    public String getFilterName() {
+        return filterName;
+    }
+
+    @Override
+    public ServletContext getServletContext() {
+        return null;
+    }
+
+    @Override
+    public String getInitParameter(String name) {
+        if (initParameters == null) {
+            return (null);
+        }
+
+        return initParameters.get(name);
+    }
+
+    @Override
+    public Enumeration<String> getInitParameterNames() {
+        return Collections.enumeration(initParameters.keySet());
+    }
+}
diff --git a/oxAuth/Server/src/main/java/org/gluu/oxauth/gluu/ws/rs/GluuConfigurationWS.java b/oxAuth/Server/src/main/java/org/gluu/oxauth/gluu/ws/rs/GluuConfigurationWS.java
new file mode 100644
index 00000000..d4f6e2e8
--- /dev/null
+++ b/oxAuth/Server/src/main/java/org/gluu/oxauth/gluu/ws/rs/GluuConfigurationWS.java
@@ -0,0 +1,124 @@
+/*
+ * oxAuth is available under the MIT License (2008). See http://opensource.org/licenses/MIT for full text.
+ *
+ * Copyright (c) 2014, Gluu
+ */
+
+package org.gluu.oxauth.gluu.ws.rs;
+
+import com.google.common.collect.Maps;
+import com.google.common.collect.Sets;
+import org.apache.commons.lang.StringUtils;
+import org.gluu.model.GluuAttribute;
+import org.gluu.model.custom.script.conf.CustomScriptConfiguration;
+import org.gluu.oxauth.model.configuration.AppConfiguration;
+import org.gluu.oxauth.model.error.ErrorResponseFactory;
+import org.gluu.oxauth.model.gluu.GluuConfiguration;
+import org.gluu.oxauth.model.gluu.GluuErrorResponseType;
+import org.gluu.oxauth.service.AttributeService;
+import org.gluu.oxauth.service.ScopeService;
+import org.gluu.oxauth.service.external.ExternalAuthenticationService;
+import org.gluu.oxauth.util.ServerUtil;
+import org.oxauth.persistence.model.Scope;
+import org.slf4j.Logger;
+
+import javax.inject.Inject;
+import javax.ws.rs.GET;
+import javax.ws.rs.Path;
+import javax.ws.rs.Produces;
+import javax.ws.rs.WebApplicationException;
+import javax.ws.rs.core.Response;
+import java.util.*;
+
+/**
+ * Created by eugeniuparvan on 8/5/16.
+ */
+@Path("/.well-known/gluu-configuration")
+public class GluuConfigurationWS {
+
+    @Inject
+    private Logger log;
+
+    @Inject
+    private ScopeService scopeService;    
+
+    @Inject
+    private AttributeService attributeService;    
+
+    @Inject
+    private ErrorResponseFactory errorResponseFactory;
+
+    @Inject
+    private AppConfiguration appConfiguration;
+
+    @Inject
+    private ExternalAuthenticationService externalAuthenticationService;
+
+    @GET
+    @Produces({"application/json"})
+    public Response getConfiguration() {
+        try {
+            final GluuConfiguration conf = new GluuConfiguration();
+
+            conf.setIdGenerationEndpoint(appConfiguration.getIdGenerationEndpoint());
+            conf.setIntrospectionEndpoint(appConfiguration.getIntrospectionEndpoint());
+            conf.setAuthLevelMapping(createAuthLevelMapping());
+            conf.setScopeToClaimsMapping(createScopeToClaimsMapping());
+
+            // convert manually to avoid possible conflicts between resteasy
+            // providers, e.g. jettison, jackson
+            final String entity = ServerUtil.asPrettyJson(conf);
+            log.trace("Gluu configuration: {}", entity);
+
+            return Response.ok(entity).build();
+        } catch (Throwable ex) {
+            log.error(ex.getMessage(), ex);
+            throw new WebApplicationException(Response.status(Response.Status.INTERNAL_SERVER_ERROR)
+                    .entity(errorResponseFactory.getErrorResponse(GluuErrorResponseType.SERVER_ERROR)).build());
+        }
+    }
+
+    public Map<Integer, Set<String>> createAuthLevelMapping() {
+        Map<Integer, Set<String>> map = Maps.newHashMap();
+        try {
+            for (CustomScriptConfiguration script : externalAuthenticationService.getCustomScriptConfigurationsMap()) {
+                String acr = script.getName();
+                int level = script.getLevel();
+
+                Set<String> acrs = map.get(level);
+                if (acrs == null) {
+                    acrs = Sets.newHashSet();
+                    map.put(level, acrs);
+                }
+                acrs.add(acr);
+            }
+        } catch (Exception e) {
+            log.error(e.getMessage(), e);
+        }
+        return map;
+    }
+
+    private Map<String, Set<String>> createScopeToClaimsMapping() {
+        Map<String, Set<String>> result = new HashMap<String, Set<String>>();
+        try {
+            for (Scope scope : scopeService.getAllScopesList()) {
+                final Set<String> claimsList = new HashSet<String>();
+                result.put(scope.getId(), claimsList);
+
+                final List<String> claimIdList = scope.getOxAuthClaims();
+                if (claimIdList != null && !claimIdList.isEmpty()) {
+                    for (String claimDn : claimIdList) {
+                        final GluuAttribute attribute = attributeService.getAttributeByDn(claimDn);
+                        final String claimName = attribute.getOxAuthClaimName();
+                        if (StringUtils.isNotBlank(claimName)) {
+                            claimsList.add(claimName);
+                        }
+                    }
+                }
+            }
+        } catch (Exception e) {
+            log.error(e.getMessage(), e);
+        }
+        return result;
+    }
+}
diff --git a/oxAuth/Server/src/main/java/org/gluu/oxauth/i18n/ApplicationFacesLocalizationConfigPopulator.java b/oxAuth/Server/src/main/java/org/gluu/oxauth/i18n/ApplicationFacesLocalizationConfigPopulator.java
new file mode 100644
index 00000000..2e450f70
--- /dev/null
+++ b/oxAuth/Server/src/main/java/org/gluu/oxauth/i18n/ApplicationFacesLocalizationConfigPopulator.java
@@ -0,0 +1,13 @@
+package org.gluu.oxauth.i18n;
+
+import org.gluu.jsf2.customization.FacesLocalizationConfigPopulator;
+
+public class ApplicationFacesLocalizationConfigPopulator extends FacesLocalizationConfigPopulator {
+	private static final String LANGUAGE_FILE_PATTERN = "^oxauth_(.*)\\.properties$";
+
+	@Override
+	public String getLanguageFilePattern() {
+		return LANGUAGE_FILE_PATTERN;
+	}
+
+}
diff --git a/oxAuth/Server/src/main/java/org/gluu/oxauth/i18n/CustomResourceBundle.java b/oxAuth/Server/src/main/java/org/gluu/oxauth/i18n/CustomResourceBundle.java
new file mode 100644
index 00000000..56b9e38a
--- /dev/null
+++ b/oxAuth/Server/src/main/java/org/gluu/oxauth/i18n/CustomResourceBundle.java
@@ -0,0 +1,20 @@
+package org.gluu.oxauth.i18n;
+
+import org.gluu.jsf2.i18n.ExtendedResourceBundle;
+
+/**
+ * Custom i18n resource loader
+ *
+ * @author Yuriy Movchan
+ * @version 02/23/2018
+ */
+public class CustomResourceBundle extends ExtendedResourceBundle {
+
+    private static final String BASE_NAME = "oxauth";
+    
+    @Override
+    public String getBaseName() {
+        return BASE_NAME;
+    }
+
+}
diff --git a/oxAuth/Server/src/main/java/org/gluu/oxauth/i18n/LanguageBean.java b/oxAuth/Server/src/main/java/org/gluu/oxauth/i18n/LanguageBean.java
new file mode 100644
index 00000000..1ad23724
--- /dev/null
+++ b/oxAuth/Server/src/main/java/org/gluu/oxauth/i18n/LanguageBean.java
@@ -0,0 +1,175 @@
+/*
+ * oxAuth is available under the MIT License (2008). See http://opensource.org/licenses/MIT for full text.
+ *
+ * Copyright (c) 2014, Gluu
+ */
+
+package org.gluu.oxauth.i18n;
+
+import java.io.Serializable;
+import java.util.LinkedList;
+import java.util.List;
+import java.util.Locale;
+import java.util.MissingResourceException;
+import java.util.ResourceBundle;
+
+import javax.enterprise.context.ApplicationScoped;
+import javax.enterprise.event.Observes;
+import javax.faces.context.FacesContext;
+import javax.inject.Inject;
+import javax.inject.Named;
+import javax.servlet.http.Cookie;
+import javax.servlet.http.HttpServletResponse;
+
+import org.apache.commons.lang3.tuple.Pair;
+import org.apache.logging.log4j.util.Strings;
+import org.gluu.oxauth.model.configuration.AppConfiguration;
+import org.gluu.service.cdi.event.ConfigurationUpdate;
+import org.gluu.util.StringHelper;
+import org.gluu.util.locale.LocaleUtil;
+import org.slf4j.Logger;
+
+/**
+ * @version August 9, 2017
+ */
+@Named("language")
+@ApplicationScoped
+public class LanguageBean implements Serializable {
+
+	private static final long serialVersionUID = -6723715664277907737L;
+
+	private static final String COOKIE_NAME = "org.gluu.i18n.Locale";
+	private static final int DEFAULT_MAX_AGE = 31536000; // 1 year in seconds
+	private static final String COOKIE_PATH = "/";
+
+	private static final Locale defaultLocale = Locale.ENGLISH;
+
+    @Inject
+    private Logger log;
+
+	private List<Locale> supportedLocales;
+
+    public void initSupportedLocales(@Observes @ConfigurationUpdate AppConfiguration appConfiguration) {
+    	this.supportedLocales = buildSupportedLocales(appConfiguration);
+    }
+
+    @Deprecated
+    // We need to keep it till 5.0 for compatibility with old xhtml files
+	public String getLocaleCode() {
+		try {
+			Locale locale = getCookieLocale();
+			if (locale != null) {
+				setLocale(locale);
+			}
+
+			return locale.toLanguageTag();
+		} catch (Exception e) {
+			return defaultLocale.getLanguage();
+		}
+	}
+
+	public Locale getLocale() {
+		try {
+			Locale locale = getCookieLocale();
+			if (locale != null) {
+				return locale;
+			}
+		} catch (Exception ex) {
+			log.trace("Failed to get locale from cookie", ex);
+		}
+
+		return defaultLocale;
+	}
+
+	public void setLocaleCode(String requestedLocaleCode) {
+		for (Locale supportedLocale : supportedLocales) {
+			if (!Strings.isEmpty(supportedLocale.getLanguage()) && supportedLocale.getLanguage().equals(requestedLocaleCode)) {
+				Locale locale = new Locale(requestedLocaleCode);
+				FacesContext.getCurrentInstance().getViewRoot().setLocale(locale);
+				setCookieValue(locale.toLanguageTag());
+				break;
+			}
+		}
+	}
+
+	public void setLocale(Locale requestedLocale) {
+		for (Locale supportedLocale : supportedLocales) {
+			if (supportedLocale.equals(requestedLocale)) {
+				FacesContext.getCurrentInstance().getViewRoot().setLocale(supportedLocale);
+				setCookieValue(supportedLocale.toLanguageTag());
+				break;
+			}
+		}
+		
+		// If there is no supported locale attempt to find it by language
+		setLocaleCode(requestedLocale.getLanguage());
+	}
+
+    public List<Locale> getSupportedLocales() {
+    	return supportedLocales;
+    }
+
+	private List<Locale> buildSupportedLocales(AppConfiguration appConfiguration) {
+		List<String> uiLocales = appConfiguration.getUiLocalesSupported();
+		
+		List<Locale> supportedLocales = new LinkedList<Locale>();
+		for (String uiLocale : uiLocales) {
+        	Pair<Locale, List<Locale>> locales = LocaleUtil.toLocaleList(uiLocale);
+        	
+        	supportedLocales.addAll(locales.getRight());
+		}
+		
+		return supportedLocales;
+	}
+
+	public String getMessage(String key) {
+		FacesContext context = FacesContext.getCurrentInstance();
+		ResourceBundle bundle = context.getApplication().getResourceBundle(context, "msgs");
+		String result;
+		try {
+			result = bundle.getString(key);
+		} catch (MissingResourceException e) {
+			result = "???" + key + "??? not found";
+		}
+		return result;
+	}
+
+	private void setCookieValue(String value) {
+		FacesContext ctx = FacesContext.getCurrentInstance();
+
+		if (ctx == null)
+			return;
+		HttpServletResponse response = (HttpServletResponse) ctx.getExternalContext().getResponse();
+		Cookie cookie = new Cookie(COOKIE_NAME, value);
+		cookie.setMaxAge(DEFAULT_MAX_AGE);
+		cookie.setPath(COOKIE_PATH);
+		cookie.setSecure(true);
+		cookie.setVersion(1);
+		response.addCookie(cookie);
+	}
+
+	private String getCookieValue() {
+		Cookie cookie = getCookie();
+		return cookie == null ? null : cookie.getValue();
+	}
+
+	private Locale getCookieLocale() {
+		String cookieValue = getCookieValue();
+		if (StringHelper.isEmpty(cookieValue)) {
+			return null;
+		}
+		
+		Locale locale = Locale.forLanguageTag(cookieValue);
+
+		return locale;
+	}
+
+	private Cookie getCookie() {
+		FacesContext ctx = FacesContext.getCurrentInstance();
+		if (ctx != null) {
+			return (Cookie) ctx.getExternalContext().getRequestCookieMap().get(COOKIE_NAME);
+		} else {
+			return null;
+		}
+	}
+}
\ No newline at end of file
diff --git a/oxAuth/Server/src/main/java/org/gluu/oxauth/idgen/ws/rs/IdGenService.java b/oxAuth/Server/src/main/java/org/gluu/oxauth/idgen/ws/rs/IdGenService.java
new file mode 100644
index 00000000..4e70ca26
--- /dev/null
+++ b/oxAuth/Server/src/main/java/org/gluu/oxauth/idgen/ws/rs/IdGenService.java
@@ -0,0 +1,52 @@
+/*
+ * oxAuth is available under the MIT License (2008). See http://opensource.org/licenses/MIT for full text.
+ *
+ * Copyright (c) 2014, Gluu
+ */
+
+package org.gluu.oxauth.idgen.ws.rs;
+
+import javax.inject.Inject;
+
+import org.gluu.oxauth.model.common.IdType;
+import org.gluu.oxauth.service.common.api.IdGenerator;
+import org.gluu.oxauth.service.external.ExternalIdGeneratorService;
+import org.gluu.util.StringHelper;
+import org.slf4j.Logger;
+
+import javax.enterprise.context.ApplicationScoped;
+
+/**
+ * @author Yuriy Zabrovarnyy
+ * @version 0.9, 24/06/2013
+ */
+@ApplicationScoped
+public class IdGenService implements IdGenerator {
+
+    @Inject
+    private Logger log;
+
+    @Inject
+    private InumGenerator inumGenerator;
+    
+    @Inject
+    private ExternalIdGeneratorService externalIdGeneratorService;
+
+    public String generateId(IdType p_idType, String p_idPrefix) {
+        return generateId(p_idType.getType(), p_idPrefix);
+    }
+
+    @Override
+    public String generateId(String p_idType, String p_idPrefix) {
+    	if (externalIdGeneratorService.isEnabled()) {
+    		final String generatedId = externalIdGeneratorService.executeExternalDefaultGenerateIdMethod("oxauth", p_idType, p_idPrefix);
+
+    		if (StringHelper.isNotEmpty(generatedId)) {
+    			return generatedId;
+    		}
+    	}
+    	
+    	return inumGenerator.generateId(p_idType, p_idPrefix);
+    }
+
+}
diff --git a/oxAuth/Server/src/main/java/org/gluu/oxauth/idgen/ws/rs/InumGenerator.java b/oxAuth/Server/src/main/java/org/gluu/oxauth/idgen/ws/rs/InumGenerator.java
new file mode 100644
index 00000000..b1d1d23b
--- /dev/null
+++ b/oxAuth/Server/src/main/java/org/gluu/oxauth/idgen/ws/rs/InumGenerator.java
@@ -0,0 +1,154 @@
+/*
+ * oxAuth is available under the MIT License (2008). See http://opensource.org/licenses/MIT for full text.
+ *
+ * Copyright (c) 2014, Gluu
+ */
+
+package org.gluu.oxauth.idgen.ws.rs;
+
+import java.util.List;
+import java.util.regex.Matcher;
+import java.util.regex.Pattern;
+
+import javax.inject.Inject;
+
+import org.apache.commons.lang.StringUtils;
+import org.gluu.model.GluuAttribute;
+import org.gluu.oxauth.model.common.IdType;
+import org.gluu.oxauth.model.common.User;
+import org.gluu.persist.PersistenceEntryManager;
+import org.gluu.persist.model.base.DummyEntry;
+import org.gluu.search.filter.Filter;
+import org.gluu.util.INumGenerator;
+import org.slf4j.Logger;
+
+import javax.enterprise.context.ApplicationScoped;
+
+import org.gluu.oxauth.model.config.BaseDnConfiguration;
+import org.gluu.oxauth.model.config.StaticConfiguration;
+import org.gluu.oxauth.model.gluu.GluuConfiguration;
+import org.gluu.oxauth.model.registration.Client;
+
+/**
+ * Inum ID generator. Generates inum: e.g. @!1111!0001!1234.
+ *
+ * @author Yuriy Zabrovarnyy
+ * @version 0.9, 26/06/2013
+ */
+@ApplicationScoped
+public class InumGenerator {
+
+    public static final String SEPARATOR = "!";
+
+    private static final int MAX = 100;
+
+	private final Pattern baseRdnPattern = Pattern.compile(".+o=([\\w\\!\\@\\.]+)$");
+
+    @Inject
+    private Logger log;
+    @Inject
+    private PersistenceEntryManager ldapEntryManager;
+
+    @Inject
+    private StaticConfiguration staticConfiguration;
+
+    public String generateId(String p_idType, String p_idPrefix) {
+        final IdType idType = IdType.fromString(p_idType);
+        if (idType != null) {
+            return generateId(idType, p_idPrefix);
+        } else {
+            log.error("Unable to identify id type: {}", p_idType);
+        }
+        return "";
+    }
+
+    public String generateId(IdType p_idType, String p_idPrefix) {
+        String inum;
+        int counter = 0;
+
+        try {
+            while (true) {
+                final StringBuilder sb = new StringBuilder();
+                sb.append(p_idPrefix).
+                        append(InumGenerator.SEPARATOR).
+                        append(p_idType.getInum()).
+                        append(InumGenerator.SEPARATOR);
+
+                if ((IdType.CLIENTS == p_idType) || (IdType.PEOPLE == p_idType)) { 
+                	sb.append(INumGenerator.generate(4));
+                } else {
+                	sb.append(INumGenerator.generate(2));
+                }
+
+                inum = sb.toString();
+                if (StringUtils.isBlank(inum)) {
+                    log.error("Unable to generate inum: {}", inum);
+                    break;
+                }
+
+                if (!contains(inum, p_idType)) {
+                    break;
+                }
+
+                /* Just to make sure it doesn't get into an infinite loop */
+                if (counter > MAX) {
+                    log.error("Infinite loop problem while generating new inum");
+                    return "";
+                }
+                counter++;
+            }
+        } catch (Exception e) {
+            log.error(e.getMessage(), e);
+            inum = e.getMessage();
+        }
+        log.trace("Generated inum: {}", inum);
+        return inum;
+    }
+
+	public boolean contains(String inum, IdType type) {
+		final String baseDn = baseDn(type);
+		final Filter filter = Filter.createEqualityFilter("inum", inum);
+		Class<?> entryClass = getEntryClass(type);
+		final List<?> entries = ldapEntryManager.findEntries(baseDn, entryClass, filter);
+		return entries != null && !entries.isEmpty();
+	}
+
+    private Class<?> getEntryClass(IdType type) {
+		switch (type) {
+			case CLIENTS:
+				return Client.class;
+			case CONFIGURATION:
+				return GluuConfiguration.class;
+			case ATTRIBUTE:
+				return GluuAttribute.class;
+			case PEOPLE:
+				return User.class;
+		}
+
+       return DummyEntry.class;
+	}
+
+	public String baseDn(IdType p_type) {
+        final BaseDnConfiguration baseDn = staticConfiguration.getBaseDn();
+        switch (p_type) {
+            case CLIENTS:
+                return baseDn.getClients();
+            case CONFIGURATION:
+                return baseDn.getConfiguration();
+            case ATTRIBUTE:
+                return baseDn.getAttributes();
+            case PEOPLE:
+                return baseDn.getPeople();
+        }
+
+        // if not able to identify baseDn by type then return organization baseDn, e.g. o=gluu
+        Matcher m = baseRdnPattern.matcher(baseDn.getClients());
+        if (m.matches()) {
+        	return m.group(1);
+        }
+
+        log.error("Use fallback DN: o=gluu, for ID generator, please check oxAuth configuration, clientDn must be valid DN");
+        return "o=gluu";
+    }
+
+}
diff --git a/oxAuth/Server/src/main/java/org/gluu/oxauth/introspection/ws/rs/IntrospectionWebService.java b/oxAuth/Server/src/main/java/org/gluu/oxauth/introspection/ws/rs/IntrospectionWebService.java
new file mode 100644
index 00000000..87f99b98
--- /dev/null
+++ b/oxAuth/Server/src/main/java/org/gluu/oxauth/introspection/ws/rs/IntrospectionWebService.java
@@ -0,0 +1,307 @@
+/*
+ * oxAuth is available under the MIT License (2008). See http://opensource.org/licenses/MIT for full text.
+ *
+ * Copyright (c) 2014, Gluu
+ */
+
+package org.gluu.oxauth.introspection.ws.rs;
+
+import com.google.common.collect.Lists;
+import org.apache.commons.codec.binary.Base64;
+import org.apache.commons.lang.StringUtils;
+import org.gluu.oxauth.claims.Audience;
+import org.gluu.oxauth.model.authorize.AuthorizeErrorResponseType;
+import org.gluu.oxauth.model.common.*;
+import org.gluu.oxauth.model.config.WebKeysConfiguration;
+import org.gluu.oxauth.model.configuration.AppConfiguration;
+import org.gluu.oxauth.model.error.ErrorResponseFactory;
+import org.gluu.oxauth.model.jwt.Jwt;
+import org.gluu.oxauth.model.token.JwtSigner;
+import org.gluu.oxauth.model.uma.UmaScopeType;
+import org.gluu.oxauth.model.util.Util;
+import org.gluu.oxauth.service.AttributeService;
+import org.gluu.oxauth.service.ClientService;
+import org.gluu.oxauth.service.external.ExternalIntrospectionService;
+import org.gluu.oxauth.service.external.context.ExternalIntrospectionContext;
+import org.gluu.oxauth.service.token.TokenService;
+import org.gluu.oxauth.util.ServerUtil;
+import org.gluu.util.Pair;
+import org.json.JSONException;
+import org.json.JSONObject;
+import org.slf4j.Logger;
+
+import javax.inject.Inject;
+import javax.servlet.http.HttpServletRequest;
+import javax.servlet.http.HttpServletResponse;
+import javax.ws.rs.*;
+import javax.ws.rs.core.Context;
+import javax.ws.rs.core.MediaType;
+import javax.ws.rs.core.Response;
+import java.io.IOException;
+import java.io.UnsupportedEncodingException;
+import java.net.URLDecoder;
+import java.nio.charset.StandardCharsets;
+import java.util.Iterator;
+
+import static org.apache.commons.lang3.BooleanUtils.isTrue;
+
+/**
+ * @author Yuriy Zabrovarnyy
+ * @version June 30, 2018
+ */
+@Path("/introspection")
+public class IntrospectionWebService {
+
+    private static final Pair<AuthorizationGrant, Boolean> EMPTY = new Pair<>(null, false);
+
+    @Inject
+    private Logger log;
+    @Inject
+    private AppConfiguration appConfiguration;
+    @Inject
+    private TokenService tokenService;
+    @Inject
+    private ErrorResponseFactory errorResponseFactory;
+    @Inject
+    private AuthorizationGrantList authorizationGrantList;
+    @Inject
+    private ClientService clientService;
+    @Inject
+    private ExternalIntrospectionService externalIntrospectionService;
+    @Inject
+    private AttributeService attributeService;
+    @Inject
+    private WebKeysConfiguration webKeysConfiguration;
+
+    @GET
+    @Produces(MediaType.APPLICATION_JSON)
+    public Response introspectGet(@HeaderParam("Authorization") String p_authorization,
+                                  @QueryParam("token") String p_token,
+                                  @QueryParam("token_type_hint") String tokenTypeHint,
+                                  @QueryParam("response_as_jwt") String responseAsJwt,
+                                  @Context HttpServletRequest httpRequest,
+                                  @Context HttpServletResponse httpResponse
+    ) {
+        return introspect(p_authorization, p_token, tokenTypeHint, responseAsJwt, httpRequest, httpResponse);
+    }
+
+    @POST
+    @Produces(MediaType.APPLICATION_JSON)
+    public Response introspectPost(@HeaderParam("Authorization") String p_authorization,
+                                   @FormParam("token") String p_token,
+                                   @FormParam("token_type_hint") String tokenTypeHint,
+                                   @FormParam("response_as_jwt") String responseAsJwt,
+                                   @Context HttpServletRequest httpRequest,
+                                   @Context HttpServletResponse httpResponse) {
+        return introspect(p_authorization, p_token, tokenTypeHint, responseAsJwt, httpRequest, httpResponse);
+    }
+
+    private AuthorizationGrant validateAuthorization(String p_authorization, String p_token) throws IOException {
+        final boolean skipAuthorization = ServerUtil.isTrue(appConfiguration.getIntrospectionSkipAuthorization());
+        log.trace("skipAuthorization: {}", skipAuthorization);
+        if (skipAuthorization) {
+            return null;
+        }
+
+        if (StringUtils.isBlank(p_authorization)) {
+            log.trace("Bad request: Authorization header or token is blank.");
+            throw new WebApplicationException(Response.status(Response.Status.BAD_REQUEST).type(MediaType.APPLICATION_JSON_TYPE).entity(errorResponseFactory.errorAsJson(AuthorizeErrorResponseType.INVALID_REQUEST, "")).build());
+        }
+
+        final Pair<AuthorizationGrant, Boolean> pair = getAuthorizationGrant(p_authorization, p_token);
+        final AuthorizationGrant authorizationGrant = pair.getFirst();
+        if (authorizationGrant == null) {
+            log.debug("Authorization grant is null.");
+            if (isTrue(pair.getSecond())) {
+                log.debug("Returned {\"active\":false}.");
+                throw new WebApplicationException(Response.status(Response.Status.OK)
+                        .entity("{\"active\":false}")
+                        .type(MediaType.APPLICATION_JSON_TYPE)
+                        .build());
+            }
+            throw new WebApplicationException(Response.status(Response.Status.UNAUTHORIZED)
+                    .type(MediaType.APPLICATION_JSON_TYPE)
+                    .entity(errorResponseFactory.errorAsJson(AuthorizeErrorResponseType.ACCESS_DENIED, "Authorization grant is null."))
+                    .build());
+        }
+
+        final AbstractToken authorizationAccessToken = authorizationGrant.getAccessToken(tokenService.getToken(p_authorization));
+
+        if ((authorizationAccessToken == null || !authorizationAccessToken.isValid()) && !pair.getSecond()) {
+            log.error("Access token is not valid. Valid: " + (authorizationAccessToken != null && authorizationAccessToken.isValid()) + ", basicClientAuthentication: " + pair.getSecond());
+            throw new WebApplicationException(Response.status(Response.Status.UNAUTHORIZED).type(MediaType.APPLICATION_JSON_TYPE).entity(errorResponseFactory.errorAsJson(AuthorizeErrorResponseType.ACCESS_DENIED, "Access token is not valid")).build());
+        }
+
+        if (ServerUtil.isTrue(appConfiguration.getIntrospectionAccessTokenMustHaveUmaProtectionScope()) &&
+                !authorizationGrant.getScopesAsString().contains(UmaScopeType.PROTECTION.getValue())) { // #562 - make uma_protection optional
+            final String reason = "access_token used to access introspection endpoint does not have uma_protection scope, however in oxauth configuration `checkUmaProtectionScopePresenceDuringIntrospection` is true";
+            log.trace(reason);
+            throw new WebApplicationException(Response.status(Response.Status.UNAUTHORIZED).entity(errorResponseFactory.errorAsJson(AuthorizeErrorResponseType.ACCESS_DENIED, reason)).type(MediaType.APPLICATION_JSON_TYPE).build());
+        }
+        return authorizationGrant;
+    }
+
+    private Response introspect(String p_authorization, String p_token, String tokenTypeHint, String responseAsJwt, HttpServletRequest httpRequest, HttpServletResponse httpResponse) {
+        try {
+            log.trace("Introspect token, authorization: {}, token to introspect: {}, tokenTypeHint: {}", p_authorization, p_token, tokenTypeHint);
+
+            AuthorizationGrant authorizationGrant = validateAuthorization(p_authorization, p_token);
+
+            if (StringUtils.isBlank(p_token)) {
+                log.trace("Bad request: Token is blank.");
+                return Response.status(Response.Status.BAD_REQUEST).type(MediaType.APPLICATION_JSON_TYPE).entity(errorResponseFactory.errorAsJson(AuthorizeErrorResponseType.INVALID_REQUEST, "")).build();
+            }
+
+            final IntrospectionResponse response = new IntrospectionResponse(false);
+
+            final AuthorizationGrant grantOfIntrospectionToken = authorizationGrantList.getAuthorizationGrantByAccessToken(p_token);
+
+            AbstractToken tokenToIntrospect = null;
+            if (grantOfIntrospectionToken != null) {
+                tokenToIntrospect = grantOfIntrospectionToken.getAccessToken(p_token);
+
+                response.setActive(tokenToIntrospect.isValid());
+                response.setExpiresAt(ServerUtil.dateToSeconds(tokenToIntrospect.getExpirationDate()));
+                response.setIssuedAt(ServerUtil.dateToSeconds(tokenToIntrospect.getCreationDate()));
+                response.setAcrValues(grantOfIntrospectionToken.getAcrValues());
+                response.setScope(grantOfIntrospectionToken.getScopes() != null ? grantOfIntrospectionToken.getScopes() : Lists.newArrayList()); // #433
+                response.setClientId(grantOfIntrospectionToken.getClientId());
+                response.setSub(grantOfIntrospectionToken.getSub());
+                response.setUsername(grantOfIntrospectionToken.getUserId());
+                response.setIssuer(appConfiguration.getIssuer());
+                response.setAudience(grantOfIntrospectionToken.getClientId());
+
+                if (tokenToIntrospect instanceof AccessToken) {
+                    AccessToken accessToken = (AccessToken) tokenToIntrospect;
+                    response.setTokenType(accessToken.getTokenType() != null ? accessToken.getTokenType().getName() : TokenType.BEARER.getName());
+                }
+            } else {
+                log.debug("Failed to find grant for access_token: " + p_token + ". Return 200 with active=false.");
+            }
+            JSONObject responseAsJsonObject = createResponseAsJsonObject(response, grantOfIntrospectionToken);
+
+            ExternalIntrospectionContext context = new ExternalIntrospectionContext(authorizationGrant, httpRequest, httpResponse, appConfiguration, attributeService);
+            context.setGrantOfIntrospectionToken(grantOfIntrospectionToken);
+            if (externalIntrospectionService.executeExternalModifyResponse(responseAsJsonObject, context)) {
+                log.trace("Successfully run extenal introspection scripts.");
+            } else {
+                responseAsJsonObject = createResponseAsJsonObject(response, grantOfIntrospectionToken);
+                log.trace("Canceled changes made by external introspection script since method returned `false`.");
+            }
+
+            // Make scopes conform as required by spec, see #1499
+            if (response.getScope()!= null && !appConfiguration.getIntrospectionResponseScopesBackwardCompatibility()) {
+            	String scopes = StringUtils.join(response.getScope().toArray(), " ");
+            	responseAsJsonObject.put("scope", scopes);
+            }
+            if (Boolean.TRUE.toString().equalsIgnoreCase(responseAsJwt)) {
+                return Response.status(Response.Status.OK).entity(createResponseAsJwt(responseAsJsonObject, grantOfIntrospectionToken)).build();
+            }
+
+            final String entity = responseAsJsonObject.toString();
+            if (log.isTraceEnabled()) {
+                log.trace("Response entity: {}", entity);
+            }
+            return Response.status(Response.Status.OK).entity(entity).type(MediaType.APPLICATION_JSON_TYPE).build();
+
+        } catch (WebApplicationException e) {
+            log.error(e.getMessage(), e);
+            throw e;
+        } catch (Exception e) {
+            log.error(e.getMessage(), e);
+            return Response.status(Response.Status.INTERNAL_SERVER_ERROR).type(MediaType.APPLICATION_JSON_TYPE).build();
+        }
+    }
+
+    private String createResponseAsJwt(JSONObject response, AuthorizationGrant grant) throws Exception {
+        final JwtSigner jwtSigner = JwtSigner.newJwtSigner(appConfiguration, webKeysConfiguration, grant.getClient());
+        final Jwt jwt = jwtSigner.newJwt();
+        Audience.setAudience(jwt.getClaims(), grant.getClient());
+
+        Iterator<String> keysIter = response.keys();
+        while (keysIter.hasNext()) {
+            String key = keysIter.next();
+            Object value = response.opt(key);
+            if (value != null) {
+                try {
+                    jwt.getClaims().setClaimObject(key, value, false);
+                } catch (Exception e) {
+                    log.error("Failed to put claims into jwt. Key: " + key + ", response: " + response.toString(), e);
+                }
+            }
+        }
+
+        if (log.isTraceEnabled()) {
+            log.trace("Response before signing: {}", jwt.getClaims().toJsonString());
+        }
+        return jwtSigner.sign().toString();
+    }
+
+    private JSONObject createResponseAsJsonObject(IntrospectionResponse response, AuthorizationGrant grantOfIntrospectionToken) throws JSONException, IOException {
+        final JSONObject result = new JSONObject(ServerUtil.asJson(response));
+
+        if (log.isTraceEnabled()) {
+            log.trace("grantOfIntrospectionToken: {}, x5ts256: {}", (grantOfIntrospectionToken != null), (grantOfIntrospectionToken != null ? grantOfIntrospectionToken.getX5ts256() : ""));
+        }
+
+        if (grantOfIntrospectionToken != null && StringUtils.isNotBlank(grantOfIntrospectionToken.getX5ts256())) {
+            JSONObject cnf = result.optJSONObject("cnf");
+            if (cnf == null) {
+                cnf = new JSONObject();
+                result.put("cnf", cnf);
+            }
+
+            cnf.put("x5t#S256", grantOfIntrospectionToken.getX5ts256());
+        }
+
+        return result;
+    }
+
+    /**
+     * @return we return pair of authorization grant or otherwise true - if it's basic client authentication or false if it is not
+     * @throws UnsupportedEncodingException when encoding is not supported
+     */
+    private Pair<AuthorizationGrant, Boolean> getAuthorizationGrant(String authorization, String accessToken) throws UnsupportedEncodingException {
+        AuthorizationGrant grant = tokenService.getBearerAuthorizationGrant(authorization);
+        if (grant != null) {
+            final String authorizationAccessToken = tokenService.getBearerToken(authorization);
+            final AbstractToken accessTokenObject = grant.getAccessToken(authorizationAccessToken);
+            if (accessTokenObject != null && accessTokenObject.isValid()) {
+                return new Pair<>(grant, false);
+            } else {
+                log.error("Access token is not valid: " + authorizationAccessToken);
+                return EMPTY;
+            }
+        }
+
+        grant = tokenService.getBasicAuthorizationGrant(authorization);
+        if (grant != null) {
+            return new Pair<>(grant, false);
+        }
+        if (tokenService.isBasicAuthToken(authorization)) {
+
+            String encodedCredentials = tokenService.getBasicToken(authorization);
+
+            String token = new String(Base64.decodeBase64(encodedCredentials), StandardCharsets.UTF_8);
+
+            int delim = token.indexOf(":");
+
+            if (delim != -1) {
+                String clientId = URLDecoder.decode(token.substring(0, delim), Util.UTF8_STRING_ENCODING);
+                String password = URLDecoder.decode(token.substring(delim + 1), Util.UTF8_STRING_ENCODING);
+                if (clientService.authenticate(clientId, password)) {
+                    grant = authorizationGrantList.getAuthorizationGrantByAccessToken(accessToken);
+                    if (isTrue(appConfiguration.getIntrospectionRestrictBasicAuthnToOwnTokens()) && grant != null && !grant.getClientId().equals(clientId)) {
+                        log.trace("Failed to match grant object clientId and client id provided during authentication.");
+                        return EMPTY;
+                    }
+                    return new Pair<>(grant, true);
+                } else {
+                    log.trace("Failed to perform basic authentication for client: {}", clientId);
+                }
+            }
+        }
+        return EMPTY;
+    }
+
+}
diff --git a/oxAuth/Server/src/main/java/org/gluu/oxauth/jwk/ws/rs/JwkRestWebService.java b/oxAuth/Server/src/main/java/org/gluu/oxauth/jwk/ws/rs/JwkRestWebService.java
new file mode 100644
index 00000000..b6df77c2
--- /dev/null
+++ b/oxAuth/Server/src/main/java/org/gluu/oxauth/jwk/ws/rs/JwkRestWebService.java
@@ -0,0 +1,49 @@
+/*
+ * oxAuth is available under the MIT License (2008). See http://opensource.org/licenses/MIT for full text.
+ *
+ * Copyright (c) 2014, Gluu
+ */
+
+package org.gluu.oxauth.jwk.ws.rs;
+
+import javax.ws.rs.GET;
+import javax.ws.rs.Path;
+import javax.ws.rs.Produces;
+import javax.ws.rs.core.Context;
+import javax.ws.rs.core.MediaType;
+import javax.ws.rs.core.Response;
+import javax.ws.rs.core.SecurityContext;
+
+/**
+ * <p>
+ * Provides interface for JWK REST web services
+ * </p>
+ * <p>
+ * A JSON Web Key (JWK) is a JSON data structure that represents a set of public keys as a JSON object [RFC4627].
+ * The JWK format is used to represent bare keys. JSON Web Keys are referenced in JSON Web Signatures (JWSs)
+ * using the jku (JSON Key URL) header parameter.
+ * </p>
+ * <p>
+ * It is sometimes useful to be able to reference public key representations, for instance, in order to verify the
+ * signature on content signed with the corresponding private key. The JSON Web Key (JWK) data structure provides a
+ * convenient JSON representation for sets of public keys utilizing either the Elliptic Curve or RSA families of
+ * algorithms.
+ * </p>
+ *
+ * @author Javier Rojas Blum Date: 11.15.2011
+ */
+public interface JwkRestWebService {
+
+    /**
+     * The JWK endpoint.
+     *
+     * @param securityContext An injectable interface that provides access to security
+     *                        related information.
+     * @return The JSON Web Key data structure JWK. A JWK consists of a JWK Container Object, which is a JSON object
+     *         that contains an array of JWK Key Objects as a member.
+     */
+    @GET
+    @Path("/jwks")
+    @Produces({MediaType.APPLICATION_JSON})
+    Response requestJwk(@Context SecurityContext securityContext);
+}
\ No newline at end of file
diff --git a/oxAuth/Server/src/main/java/org/gluu/oxauth/jwk/ws/rs/JwkRestWebServiceImpl.java b/oxAuth/Server/src/main/java/org/gluu/oxauth/jwk/ws/rs/JwkRestWebServiceImpl.java
new file mode 100644
index 00000000..652645d8
--- /dev/null
+++ b/oxAuth/Server/src/main/java/org/gluu/oxauth/jwk/ws/rs/JwkRestWebServiceImpl.java
@@ -0,0 +1,73 @@
+/*
+ * oxAuth is available under the MIT License (2008). See http://opensource.org/licenses/MIT for full text.
+ *
+ * Copyright (c) 2014, Gluu
+ */
+
+package org.gluu.oxauth.jwk.ws.rs;
+
+import org.gluu.oxauth.model.config.WebKeysConfiguration;
+import org.gluu.oxauth.model.configuration.AppConfiguration;
+import org.gluu.oxauth.model.jwk.JSONWebKey;
+import org.slf4j.Logger;
+
+import javax.inject.Inject;
+import javax.ws.rs.Path;
+import javax.ws.rs.core.Response;
+import javax.ws.rs.core.SecurityContext;
+import java.util.List;
+import java.util.stream.Collectors;
+
+/**
+ * Provides interface for JWK REST web services
+ *
+ * @author Javier Rojas Blum
+ * @version June 15, 2016
+ */
+@Path("/")
+public class JwkRestWebServiceImpl implements JwkRestWebService {
+
+    @Inject
+    private Logger log;
+
+    @Inject
+    private AppConfiguration appConfiguration;
+
+    @Inject
+    private WebKeysConfiguration webKeysConfiguration;
+
+    @Override
+    public Response requestJwk(SecurityContext sec) {
+        log.debug("Attempting to request JWK, Is Secure = {}", sec.isSecure());
+        Response.ResponseBuilder builder = Response.ok();
+
+        try {
+            WebKeysConfiguration webKeysConfiguration = new WebKeysConfiguration();
+            webKeysConfiguration.setKeys(this.filterKeys(this.webKeysConfiguration.getKeys()));
+            builder.entity(webKeysConfiguration.toString());
+        } catch (Exception e) {
+            log.error(e.getMessage(), e);
+            builder = Response.status(Response.Status.INTERNAL_SERVER_ERROR.getStatusCode()); // 500
+        }
+
+        return builder.build();
+    }
+
+    /**
+     * Method responsible to filter keys and return a new list of keys with all
+     * algorithms that it is inside Json config attribute called "jwksAlgorithmsSupported"
+     * @param allKeys All keys that should be filtered
+     * @return Filtered list
+     */
+    private List<JSONWebKey> filterKeys(List<JSONWebKey> allKeys) {
+        List<String> jwksAlgorithmsSupported = appConfiguration.getJwksAlgorithmsSupported();
+        if (allKeys == null || allKeys.size() == 0
+                || jwksAlgorithmsSupported == null || jwksAlgorithmsSupported.size() == 0) {
+            return allKeys;
+        }
+        return allKeys.stream().filter(
+                (key) -> jwksAlgorithmsSupported.contains(key.getAlg().getParamName())
+        ).collect(Collectors.toList());
+    }
+
+}
\ No newline at end of file
diff --git a/oxAuth/Server/src/main/java/org/gluu/oxauth/model/GluuOrganization.java b/oxAuth/Server/src/main/java/org/gluu/oxauth/model/GluuOrganization.java
new file mode 100644
index 00000000..53090acc
--- /dev/null
+++ b/oxAuth/Server/src/main/java/org/gluu/oxauth/model/GluuOrganization.java
@@ -0,0 +1,232 @@
+package org.gluu.oxauth.model;
+
+/*
+ * oxTrust is available under the MIT License (2008). See http://opensource.org/licenses/MIT for full text.
+ *
+ * Copyright (c) 2014, Gluu
+ */
+
+import java.io.Serializable;
+
+import javax.validation.constraints.NotNull;
+import javax.validation.constraints.Size;
+
+import org.gluu.model.GluuStatus;
+import org.gluu.persist.annotation.AttributeName;
+import org.gluu.persist.annotation.DataEntry;
+import org.gluu.persist.annotation.ObjectClass;
+import org.gluu.persist.model.base.Entry;
+
+import com.fasterxml.jackson.annotation.JsonInclude;
+import com.fasterxml.jackson.annotation.JsonInclude.Include;
+
+/**
+ * Group
+ * 
+ * @author Yuriy Movchan Date: 11.02.2010
+ */
+@DataEntry(sortBy = "displayName")
+@ObjectClass(value = "gluuOrganization")
+@JsonInclude(Include.NON_NULL)
+public class GluuOrganization extends Entry implements Serializable {
+
+	private static final long serialVersionUID = -8284018077740582699L;
+
+	@NotNull
+	@Size(min = 0, max = 60, message = "Length of the Display Name should not exceed 60")
+	@AttributeName
+	private String displayName;
+
+	@NotNull
+	@Size(min = 0, max = 60, message = "Length of the Description should not exceed 60")
+	@AttributeName
+	private String description;
+
+	@AttributeName(name = "memberOf")
+	private String member;
+
+	@AttributeName(name = "c")
+	private String countryName;
+
+	@AttributeName(name = "o")
+	private String organization;
+
+	@AttributeName(name = "gluuStatus")
+	private GluuStatus status;
+
+	@AttributeName(name = "gluuManagerGroup")
+	private String managerGroup;
+
+	@AttributeName(name = "oxTrustLogoPath")
+	private String oxTrustLogoPath;
+
+	@AttributeName(name = "oxTrustFaviconPath")
+	private String oxTrustFaviconPath;
+
+	@AttributeName(name = "oxAuthLogoPath")
+	private String oxAuthLogoPath;
+
+	@AttributeName(name = "oxAuthFaviconPath")
+	private String oxAuthFaviconPath;
+
+	@AttributeName(name = "idpLogoPath")
+	private String idpLogoPath;
+
+	@AttributeName(name = "idpFaviconPath")
+	private String idpFaviconPath;
+
+	@AttributeName(name = "gluuThemeColor")
+	private String themeColor;
+
+	@AttributeName(name = "gluuOrgShortName")
+	private String shortName;
+
+	@AttributeName(name = "gluuCustomMessage")
+	private String[] customMessages;
+
+	@AttributeName(name = "title")
+	private String title;
+
+	public String getOrganizationTitle() {
+		if (title == null || title.trim().equals("")) {
+			return "Gluu";
+		}
+		return title;
+	}
+
+	public String getCountryName() {
+		return countryName;
+	}
+
+	public void setCountryName(String countryName) {
+		this.countryName = countryName;
+	}
+
+	public String[] getCustomMessages() {
+		return customMessages;
+	}
+
+	public void setCustomMessages(String[] customMessages) {
+		this.customMessages = customMessages;
+	}
+
+	public String getDescription() {
+		return description;
+	}
+
+	public void setDescription(String description) {
+		this.description = description;
+	}
+
+	public String getDisplayName() {
+		return displayName;
+	}
+
+	public void setDisplayName(String displayName) {
+		this.displayName = displayName;
+	}
+
+	public String getManagerGroup() {
+		return managerGroup;
+	}
+
+	public void setManagerGroup(String managerGroup) {
+		this.managerGroup = managerGroup;
+	}
+
+	public String getMember() {
+		return member;
+	}
+
+	public void setMember(String member) {
+		this.member = member;
+	}
+
+	public String getOrganization() {
+		return organization;
+	}
+
+	public void setOrganization(String organization) {
+		this.organization = organization;
+	}
+
+	public String getShortName() {
+		return shortName;
+	}
+
+	public void setShortName(String shortName) {
+		this.shortName = shortName;
+	}
+
+	public GluuStatus getStatus() {
+		return status;
+	}
+
+	public void setStatus(GluuStatus status) {
+		this.status = status;
+	}
+
+	public String getThemeColor() {
+		return themeColor;
+	}
+
+	public void setThemeColor(String themeColor) {
+		this.themeColor = themeColor;
+	}
+
+	public String getTitle() {
+		return title;
+	}
+
+	public void setTitle(String title) {
+		this.title = title;
+	}
+
+	public String getOxTrustLogoPath() {
+		return oxTrustLogoPath;
+	}
+
+	public void setOxTrustLogoPath(String oxTrustLogoPath) {
+		this.oxTrustLogoPath = oxTrustLogoPath;
+	}
+
+	public String getOxTrustFaviconPath() {
+		return oxTrustFaviconPath;
+	}
+
+	public void setOxTrustFaviconPath(String oxTrustFaviconPath) {
+		this.oxTrustFaviconPath = oxTrustFaviconPath;
+	}
+
+	public String getOxAuthLogoPath() {
+		return oxAuthLogoPath;
+	}
+
+	public void setOxAuthLogoPath(String oxAuthLogoPath) {
+		this.oxAuthLogoPath = oxAuthLogoPath;
+	}
+
+	public String getOxAuthFaviconPath() {
+		return oxAuthFaviconPath;
+	}
+
+	public void setOxAuthFaviconPath(String oxAuthFaviconPath) {
+		this.oxAuthFaviconPath = oxAuthFaviconPath;
+	}
+
+	public String getIdpLogoPath() {
+		return idpLogoPath;
+	}
+
+	public void setIdpLogoPath(String idpLogoPath) {
+		this.idpLogoPath = idpLogoPath;
+	}
+
+	public String getIdpFaviconPath() {
+		return idpFaviconPath;
+	}
+
+	public void setIdpFaviconPath(String idpFaviconPath) {
+		this.idpFaviconPath = idpFaviconPath;
+	}
+}
diff --git a/oxAuth/Server/src/main/java/org/gluu/oxauth/model/audit/Action.java b/oxAuth/Server/src/main/java/org/gluu/oxauth/model/audit/Action.java
new file mode 100644
index 00000000..2b14e7a4
--- /dev/null
+++ b/oxAuth/Server/src/main/java/org/gluu/oxauth/model/audit/Action.java
@@ -0,0 +1,39 @@
+/*
+ * oxAuth is available under the MIT License (2008). See http://opensource.org/licenses/MIT for full text.
+ *
+ * Copyright (c) 2014, Gluu
+ */
+
+package org.gluu.oxauth.model.audit;
+
+/**
+ * @version August 20, 2019
+ */
+public enum Action {
+    CLIENT_REGISTRATION("CLIENT_REGISTRATION"),
+    CLIENT_UPDATE("CLIENT_UPDATE"),
+    CLIENT_READ("CLIENT_READ"),
+    CLIENT_DELETE("CLIENT_DELETE"),
+    USER_AUTHORIZATION("USER_AUTHORIZATION"),
+    BACKCHANNEL_AUTHENTICATION("BACKCHANNEL_AUTHENTICATION"),
+    BACKCHANNEL_DEVICE_REGISTRATION("BACKCHANNEL_DEVICE_REGISTRATION"),
+    USER_INFO("USER_INFO"),
+    TOKEN_REQUEST("TOKEN_REQUEST"),
+    TOKEN_VALIDATE("TOKEN_VALIDATE"),
+    TOKEN_REVOCATION("TOKEN_REVOCATION"),
+    SESSION_UNAUTHENTICATED("SESSION_UNAUTHENTICATED"),
+    SESSION_AUTHENTICATED("SESSION_AUTHENTICATED"),
+    SESSION_DESTROYED("SESSION_DESTROYED"),
+    DEVICE_CODE_AUTHORIZATION("DEVICE_CODE_AUTHORIZATION");
+
+    private String value;
+
+    Action(String value) {
+        this.value = value;
+    }
+
+    @Override
+    public String toString() {
+        return value;
+    }
+}
diff --git a/oxAuth/Server/src/main/java/org/gluu/oxauth/model/audit/OAuth2AuditLog.java b/oxAuth/Server/src/main/java/org/gluu/oxauth/model/audit/OAuth2AuditLog.java
new file mode 100644
index 00000000..04cc9ee1
--- /dev/null
+++ b/oxAuth/Server/src/main/java/org/gluu/oxauth/model/audit/OAuth2AuditLog.java
@@ -0,0 +1,86 @@
+package org.gluu.oxauth.model.audit;
+
+import java.util.Date;
+
+import org.apache.commons.lang.StringUtils;
+import org.gluu.net.InetAddressUtility;
+import org.gluu.oxauth.model.common.AuthorizationGrant;
+
+
+public class OAuth2AuditLog {
+
+    private final String ip;
+    private final Action action;
+    private final Date timestamp;
+    private final String macAddress;
+    private boolean isSuccess;
+
+
+    private String clientId;
+
+    private String username;
+    private String scope;
+
+    public OAuth2AuditLog(String ip, Action action) {
+        this.ip = ip;
+        this.action = action;
+        this.timestamp = new Date();
+        this.macAddress = InetAddressUtility.getMACAddressOrNull();
+        this.isSuccess = false;
+    }
+
+    public void updateOAuth2AuditLog(AuthorizationGrant authorizationGrant, boolean success) {
+        this.setClientId(authorizationGrant.getClientId());
+        this.setUsername(authorizationGrant.getUserId());
+        this.setScope(StringUtils.join(authorizationGrant.getScopes(), " "));
+        this.setSuccess(success);
+    }
+
+    public String getIp() {
+        return ip;
+    }
+
+    public Action getAction() {
+        return action;
+    }
+
+    public Date getTimestamp() {
+        return timestamp;
+    }
+
+    public String getMacAddress() {
+        return macAddress;
+    }
+
+    public boolean isSuccess() {
+        return isSuccess;
+    }
+
+    public void setSuccess(boolean success) {
+        isSuccess = success;
+    }
+
+    public String getClientId() {
+        return clientId;
+    }
+
+    public void setClientId(String clientId) {
+        this.clientId = clientId;
+    }
+
+    public String getUsername() {
+        return username;
+    }
+
+    public void setUsername(String username) {
+        this.username = username;
+    }
+
+    public String getScope() {
+        return scope;
+    }
+
+    public void setScope(String scope) {
+        this.scope = scope;
+    }
+}
\ No newline at end of file
diff --git a/oxAuth/Server/src/main/java/org/gluu/oxauth/model/auth/AuthenticationMode.java b/oxAuth/Server/src/main/java/org/gluu/oxauth/model/auth/AuthenticationMode.java
new file mode 100644
index 00000000..2d56c520
--- /dev/null
+++ b/oxAuth/Server/src/main/java/org/gluu/oxauth/model/auth/AuthenticationMode.java
@@ -0,0 +1,32 @@
+package org.gluu.oxauth.model.auth;
+
+import java.io.Serializable;
+
+import javax.enterprise.inject.Vetoed;
+
+/**
+ * @author Yuriy Movchan
+ * Date: 03/17/2017
+ */
+@Vetoed
+public class AuthenticationMode implements Serializable {
+
+	private static final long serialVersionUID = -3187893527945584013L;
+
+	private String name;
+
+	public AuthenticationMode() {}
+
+	public AuthenticationMode(String name) {
+		this.name = name;
+	}
+
+	public String getName() {
+		return name;
+	}
+
+	public void setName(String name) {
+		this.name = name;
+	}
+
+}
diff --git a/oxAuth/Server/src/main/java/org/gluu/oxauth/model/authorize/AuthorizeParamsValidator.java b/oxAuth/Server/src/main/java/org/gluu/oxauth/model/authorize/AuthorizeParamsValidator.java
new file mode 100644
index 00000000..9d6952b6
--- /dev/null
+++ b/oxAuth/Server/src/main/java/org/gluu/oxauth/model/authorize/AuthorizeParamsValidator.java
@@ -0,0 +1,85 @@
+/*
+ * oxAuth is available under the MIT License (2008). See http://opensource.org/licenses/MIT for full text.
+ *
+ * Copyright (c) 2014, Gluu
+ */
+
+package org.gluu.oxauth.model.authorize;
+
+import org.apache.commons.lang.StringUtils;
+import org.gluu.oxauth.model.common.GrantType;
+import org.gluu.oxauth.model.common.Prompt;
+import org.gluu.oxauth.model.common.ResponseType;
+import org.gluu.oxauth.model.registration.Client;
+
+import java.util.Arrays;
+import java.util.List;
+import java.util.Set;
+
+/**
+ * Validates the parameters received for the authorize web service.
+ *
+ * @author Javier Rojas Blum
+ * @version July 19, 2017
+ */
+public class AuthorizeParamsValidator {
+
+    /**
+     * Validates the parameters for an authorization request.
+     *
+     * @param responseTypes The response types. This parameter is mandatory.
+     * @return Returns <code>true</code> when all the parameters are valid.
+     */
+    public static boolean validateParams(List<ResponseType> responseTypes, List<Prompt> prompts, String nonce, boolean fapiCompatibility) {
+        if (fapiCompatibility && responseTypes.size() == 1 && responseTypes.contains(ResponseType.CODE)) {
+            return false;
+        }
+
+        boolean existsNonce = StringUtils.isNotBlank(nonce);
+        if (!existsNonce && ((responseTypes.contains(ResponseType.CODE) && responseTypes.contains(ResponseType.ID_TOKEN))
+                || (responseTypes.contains(ResponseType.ID_TOKEN) && responseTypes.size() == 1)
+                || (responseTypes.contains(ResponseType.ID_TOKEN) && responseTypes.contains(ResponseType.TOKEN))
+                || (responseTypes.contains(ResponseType.TOKEN) && responseTypes.size() == 1))) {
+            return false;
+        }
+
+        boolean validParams = !responseTypes.isEmpty();
+        return validParams && noNonePrompt(prompts);
+    }
+
+    public static boolean noNonePrompt(List<Prompt> prompts) {
+        return !(prompts.contains(Prompt.NONE) && prompts.size() > 1);
+    }
+
+    public static boolean validateResponseTypes(List<ResponseType> responseTypes, Client client) {
+        if (responseTypes == null || responseTypes.isEmpty() || client == null || client.getResponseTypes() == null) {
+            return false;
+        }
+
+        List<ResponseType> clientSupportedResponseTypes = Arrays.asList(client.getResponseTypes());
+
+        return clientSupportedResponseTypes.containsAll(responseTypes);
+    }
+
+    public static boolean validateGrantType(List<ResponseType> responseTypes, GrantType[] clientGrantTypesArray, Set<GrantType> grantTypesSupported) {
+        List<GrantType> clientGrantTypes = Arrays.asList(clientGrantTypesArray);
+
+        if (responseTypes == null || grantTypesSupported == null) {
+            return false;
+        }
+        if (responseTypes.contains(ResponseType.CODE)) {
+            GrantType requestedGrantType = GrantType.AUTHORIZATION_CODE;
+            if (!clientGrantTypes.contains(requestedGrantType) || !grantTypesSupported.contains(requestedGrantType)) {
+                return false;
+            }
+        }
+        if (responseTypes.contains(ResponseType.TOKEN) || responseTypes.contains(ResponseType.ID_TOKEN)) {
+            GrantType requestedGrantType = GrantType.IMPLICIT;
+            if (!clientGrantTypes.contains(requestedGrantType) || !grantTypesSupported.contains(requestedGrantType)) {
+                return false;
+            }
+        }
+
+        return true;
+    }
+}
\ No newline at end of file
diff --git a/oxAuth/Server/src/main/java/org/gluu/oxauth/model/authorize/Claim.java b/oxAuth/Server/src/main/java/org/gluu/oxauth/model/authorize/Claim.java
new file mode 100644
index 00000000..85dade0f
--- /dev/null
+++ b/oxAuth/Server/src/main/java/org/gluu/oxauth/model/authorize/Claim.java
@@ -0,0 +1,37 @@
+/*
+ * oxAuth is available under the MIT License (2008). See http://opensource.org/licenses/MIT for full text.
+ *
+ * Copyright (c) 2014, Gluu
+ */
+
+package org.gluu.oxauth.model.authorize;
+
+/**
+ * @author Javier Rojas Blum Date: 03.09.2012
+ */
+public class Claim {
+
+    private String name;
+    private ClaimValue claimValue;
+
+    public Claim(String name, ClaimValue claimValue) {
+        this.name = name;
+        this.claimValue = claimValue;
+    }
+
+    public String getName() {
+        return name;
+    }
+
+    public void setName(String name) {
+        this.name = name;
+    }
+
+    public ClaimValue getClaimValue() {
+        return claimValue;
+    }
+
+    public void setClaimValue(ClaimValue claimValue) {
+        this.claimValue = claimValue;
+    }
+}
\ No newline at end of file
diff --git a/oxAuth/Server/src/main/java/org/gluu/oxauth/model/authorize/ClaimValue.java b/oxAuth/Server/src/main/java/org/gluu/oxauth/model/authorize/ClaimValue.java
new file mode 100644
index 00000000..89478386
--- /dev/null
+++ b/oxAuth/Server/src/main/java/org/gluu/oxauth/model/authorize/ClaimValue.java
@@ -0,0 +1,124 @@
+/*
+ * oxAuth is available under the MIT License (2008). See http://opensource.org/licenses/MIT for full text.
+ *
+ * Copyright (c) 2014, Gluu
+ */
+
+package org.gluu.oxauth.model.authorize;
+
+import org.json.JSONArray;
+import org.json.JSONException;
+import org.json.JSONObject;
+
+import java.util.ArrayList;
+import java.util.List;
+
+/**
+ * @author Javier Rojas Blum Date: 03.09.2012
+ */
+public class ClaimValue {
+
+    private ClaimValueType claimValueType;
+    private List<String> values;
+    private String value;
+    private Boolean essential;
+
+    private ClaimValue() {
+    }
+
+    public static ClaimValue createNull() {
+        ClaimValue claimValue = new ClaimValue();
+        claimValue.claimValueType = ClaimValueType.NULL;
+
+        return claimValue;
+    }
+
+    public static ClaimValue createEssential(boolean essentialValue) {
+        ClaimValue claimValue = new ClaimValue();
+        claimValue.setEssential(essentialValue);
+
+        // todo do we need code below ?
+        if (essentialValue) {
+            claimValue.claimValueType = ClaimValueType.ESSENTIAL_TRUE;
+        } else {
+            claimValue.claimValueType = ClaimValueType.ESSENTIAL_FALSE;
+        }
+        return claimValue;
+    }
+
+    public static ClaimValue createValueList(List<String> values) {
+        ClaimValue claimValue = new ClaimValue();
+        claimValue.claimValueType = ClaimValueType.VALUE_LIST;
+
+        claimValue.values = new ArrayList<String>(values);
+
+        return claimValue;
+    }
+
+    public static ClaimValue createSingleValue(String value) {
+        ClaimValue claimValue = new ClaimValue();
+        claimValue.claimValueType = ClaimValueType.SINGLE_VALUE;
+
+        claimValue.value = value;
+
+        return claimValue;
+    }
+
+    public Boolean getEssential() {
+        return essential;
+    }
+
+    public void setEssential(Boolean essential) {
+        this.essential = essential;
+    }
+
+    public ClaimValueType getClaimValueType() {
+        return claimValueType;
+    }
+
+    public List<String> getValues() {
+        return values;
+    }
+
+    public String getValue() {
+        return value;
+    }
+
+    public String getValueAsString() {
+        if (values != null && !values.isEmpty()) {
+            return String.join(" ", values);
+        }
+        return value;
+    }
+
+    public JSONObject toJSONObject() throws JSONException {
+        JSONObject obj = null;
+
+        switch (claimValueType) {
+            case NULL:
+                break;
+            case ESSENTIAL_TRUE:
+                obj = new JSONObject();
+                obj.put("essential", true);
+                break;
+            case ESSENTIAL_FALSE:
+                obj = new JSONObject();
+                obj.put("essential", false);
+                break;
+            case VALUE_LIST:
+                JSONArray arr = new JSONArray();
+                for (String value : values) {
+                    arr.put(value);
+                }
+                obj = new JSONObject();
+                obj.put("values", arr);
+                break;
+            case SINGLE_VALUE:
+                obj = new JSONObject();
+                obj.put("value", value);
+                break;
+        }
+
+        return obj;
+    }
+}
\ No newline at end of file
diff --git a/oxAuth/Server/src/main/java/org/gluu/oxauth/model/authorize/ClaimValueType.java b/oxAuth/Server/src/main/java/org/gluu/oxauth/model/authorize/ClaimValueType.java
new file mode 100644
index 00000000..1088a282
--- /dev/null
+++ b/oxAuth/Server/src/main/java/org/gluu/oxauth/model/authorize/ClaimValueType.java
@@ -0,0 +1,18 @@
+/*
+ * oxAuth is available under the MIT License (2008). See http://opensource.org/licenses/MIT for full text.
+ *
+ * Copyright (c) 2014, Gluu
+ */
+
+package org.gluu.oxauth.model.authorize;
+
+/**
+ * @author Javier Rojas Blum Date: 03.21.2012
+ */
+public enum ClaimValueType {
+    NULL,
+    ESSENTIAL_TRUE,
+    ESSENTIAL_FALSE,
+    VALUE_LIST,
+    SINGLE_VALUE;
+}
\ No newline at end of file
diff --git a/oxAuth/Server/src/main/java/org/gluu/oxauth/model/authorize/IdTokenMember.java b/oxAuth/Server/src/main/java/org/gluu/oxauth/model/authorize/IdTokenMember.java
new file mode 100644
index 00000000..80aee5c9
--- /dev/null
+++ b/oxAuth/Server/src/main/java/org/gluu/oxauth/model/authorize/IdTokenMember.java
@@ -0,0 +1,83 @@
+/*
+ * oxAuth is available under the MIT License (2008). See http://opensource.org/licenses/MIT for full text.
+ *
+ * Copyright (c) 2014, Gluu
+ */
+
+package org.gluu.oxauth.model.authorize;
+
+import org.apache.commons.lang.StringUtils;
+import org.gluu.oxauth.model.util.Util;
+import org.json.JSONArray;
+import org.json.JSONException;
+import org.json.JSONObject;
+
+import java.util.ArrayList;
+import java.util.Iterator;
+import java.util.List;
+
+/**
+ * @author Javier Rojas Blum Date: 03.09.2012
+ */
+public class IdTokenMember {
+
+    private List<Claim> claims;
+    private Integer maxAge;
+
+    public IdTokenMember(JSONObject jsonObject) throws JSONException {
+        claims = new ArrayList<Claim>();
+
+        for (Iterator<String> iterator = jsonObject.keys(); iterator.hasNext(); ) {
+            String claimName = iterator.next();
+            ClaimValue claimValue = null;
+
+            if (claimName != null && claimName.equals("max_age") && jsonObject.has("max_age")) {
+                maxAge = jsonObject.getInt("max_age");
+            } else if (jsonObject.isNull(claimName)) {
+                claimValue = ClaimValue.createNull();
+            } else {
+                JSONObject claimValueJsonObject = jsonObject.getJSONObject(claimName);
+
+                if (claimValueJsonObject.has("values")) {
+                    JSONArray claimValueJsonArray = claimValueJsonObject.getJSONArray("values");
+                    List<String> claimValueArr = Util.asList(claimValueJsonArray);
+                    claimValue = ClaimValue.createValueList(claimValueArr);
+                } else if (claimValueJsonObject.has("value")) {
+                    String value = claimValueJsonObject.getString("value");
+                    claimValue = ClaimValue.createSingleValue(value);
+                }
+                if (claimValueJsonObject.has("essential")) {
+                    final boolean essential = claimValueJsonObject.getBoolean("essential");
+                    if (claimValue != null) {
+                        claimValue.setEssential(essential);
+                    } else {
+                        claimValue = ClaimValue.createEssential(essential);
+                    }
+                }
+            }
+
+            Claim claim = new Claim(claimName, claimValue);
+            claims.add(claim);
+        }
+    }
+
+    public List<Claim> getClaims() {
+        return claims;
+    }
+
+    public Integer getMaxAge() {
+        return maxAge;
+    }
+
+    public Claim getClaim(String claimName) {
+        if (StringUtils.isNotBlank(claimName)) {
+            for (Claim claim : claims) {
+                if (claimName.equals(claim.getName())) {
+                    return claim;
+                }
+            }
+        }
+
+        return null;
+    }
+}
\ No newline at end of file
diff --git a/oxAuth/Server/src/main/java/org/gluu/oxauth/model/authorize/JwtAuthorizationRequest.java b/oxAuth/Server/src/main/java/org/gluu/oxauth/model/authorize/JwtAuthorizationRequest.java
new file mode 100644
index 00000000..36ac9192
--- /dev/null
+++ b/oxAuth/Server/src/main/java/org/gluu/oxauth/model/authorize/JwtAuthorizationRequest.java
@@ -0,0 +1,526 @@
+/*
+ * oxAuth is available under the MIT License (2008). See http://opensource.org/licenses/MIT for full text.
+ *
+ * Copyright (c) 2014, Gluu
+ */
+
+package org.gluu.oxauth.model.authorize;
+
+import com.google.common.collect.Lists;
+import org.apache.commons.lang.StringUtils;
+import org.apache.commons.lang3.ArrayUtils;
+import org.gluu.oxauth.model.common.Display;
+import org.gluu.oxauth.model.common.Prompt;
+import org.gluu.oxauth.model.common.ResponseMode;
+import org.gluu.oxauth.model.common.ResponseType;
+import org.gluu.oxauth.model.configuration.AppConfiguration;
+import org.gluu.oxauth.model.crypto.AbstractCryptoProvider;
+import org.gluu.oxauth.model.crypto.encryption.BlockEncryptionAlgorithm;
+import org.gluu.oxauth.model.crypto.encryption.KeyEncryptionAlgorithm;
+import org.gluu.oxauth.model.crypto.signature.SignatureAlgorithm;
+import org.gluu.oxauth.model.error.ErrorResponseFactory;
+import org.gluu.oxauth.model.exception.InvalidJwtException;
+import org.gluu.oxauth.model.jwe.Jwe;
+import org.gluu.oxauth.model.jwe.JweDecrypterImpl;
+import org.gluu.oxauth.model.jwt.JwtHeader;
+import org.gluu.oxauth.model.jwt.JwtHeaderName;
+import org.gluu.oxauth.model.registration.Client;
+import org.gluu.oxauth.model.util.Base64Util;
+import org.gluu.oxauth.model.util.JwtUtil;
+import org.gluu.oxauth.model.util.URLPatternList;
+import org.gluu.oxauth.model.util.Util;
+import org.gluu.oxauth.service.ClientService;
+import org.gluu.oxauth.service.RedirectUriResponse;
+import org.gluu.oxauth.service.RedirectionUriService;
+import org.gluu.oxauth.util.ServerUtil;
+import org.gluu.service.cdi.util.CdiUtil;
+import org.jetbrains.annotations.Nullable;
+import org.json.JSONArray;
+import org.json.JSONException;
+import org.json.JSONObject;
+import org.slf4j.Logger;
+import org.slf4j.LoggerFactory;
+
+import javax.ws.rs.WebApplicationException;
+import javax.ws.rs.client.ClientBuilder;
+import javax.ws.rs.core.Response;
+import java.io.UnsupportedEncodingException;
+import java.net.URI;
+import java.net.URLDecoder;
+import java.nio.charset.StandardCharsets;
+import java.security.PrivateKey;
+import java.util.ArrayList;
+import java.util.List;
+
+/**
+ * @author Javier Rojas Blum
+ * @version November 20, 2018
+ */
+public class JwtAuthorizationRequest {
+
+    private final static Logger log = LoggerFactory.getLogger(JwtAuthorizationRequest.class);
+
+    // Header
+    private String type;
+    private String algorithm;
+    private String encryptionAlgorithm;
+    private String keyId;
+
+    // Payload
+    private List<ResponseType> responseTypes;
+    private String clientId;
+    private List<String> scopes;
+    private String redirectUri;
+    private String nonce;
+    private String state;
+    private List<String> aud = Lists.newArrayList();
+    private Display display;
+    private List<Prompt> prompts;
+    private UserInfoMember userInfoMember;
+    private IdTokenMember idTokenMember;
+    private Integer exp;
+    private String iss;
+    private Integer iat;
+    private Integer nbf;
+    private String jti;
+    private String clientNotificationToken;
+    private String acrValues;
+    private String loginHintToken;
+    private String idTokenHint;
+    private String loginHint;
+    private String bindingMessage;
+    private String userCode;
+    private Integer requestedExpiry;
+    private ResponseMode responseMode;
+
+    private String encodedJwt;
+    private String payload;
+
+    private AppConfiguration appConfiguration;
+
+    public JwtAuthorizationRequest(AppConfiguration appConfiguration, AbstractCryptoProvider cryptoProvider, String encodedJwt, Client client) throws InvalidJwtException {
+        try {
+            this.appConfiguration = appConfiguration;
+            this.responseTypes = new ArrayList<>();
+            this.scopes = new ArrayList<>();
+            this.prompts = new ArrayList<>();
+            this.encodedJwt = encodedJwt;
+
+            if (StringUtils.isEmpty(encodedJwt)) {
+                throw new InvalidJwtException("The JWT is null or empty");
+            }
+
+
+            String[] parts = encodedJwt.split("\\.");
+
+            if (parts.length == 5) {
+                String encodedHeader = parts[0];
+
+                JwtHeader jwtHeader = new JwtHeader(encodedHeader);
+
+                keyId = jwtHeader.getKeyId();
+                KeyEncryptionAlgorithm keyEncryptionAlgorithm = KeyEncryptionAlgorithm.fromName(
+                        jwtHeader.getClaimAsString(JwtHeaderName.ALGORITHM));
+                BlockEncryptionAlgorithm blockEncryptionAlgorithm = BlockEncryptionAlgorithm.fromName(
+                        jwtHeader.getClaimAsString(JwtHeaderName.ENCRYPTION_METHOD));
+
+                JweDecrypterImpl jweDecrypter = null;
+                if ("RSA".equals(keyEncryptionAlgorithm.getFamily())) {
+                    PrivateKey privateKey = cryptoProvider.getPrivateKey(keyId);
+                    jweDecrypter = new JweDecrypterImpl(privateKey);
+                } else {
+                    ClientService clientService = CdiUtil.bean(ClientService.class);
+                    jweDecrypter = new JweDecrypterImpl(clientService.decryptSecret(client.getClientSecret()).getBytes(StandardCharsets.UTF_8));
+                }
+                jweDecrypter.setKeyEncryptionAlgorithm(keyEncryptionAlgorithm);
+                jweDecrypter.setBlockEncryptionAlgorithm(blockEncryptionAlgorithm);
+
+                Jwe jwe = jweDecrypter.decrypt(encodedJwt);
+
+                loadHeader(jwe.getHeader().toJsonString());
+                loadPayload(jwe.getClaims().toJsonString());
+            } else if (parts.length == 2 || parts.length == 3) {
+                String encodedHeader = parts[0];
+                String encodedClaim = parts[1];
+                String encodedSignature = StringUtils.EMPTY;
+                if (parts.length == 3) {
+                    encodedSignature = parts[2];
+                }
+
+                String signingInput = encodedHeader + "." + encodedClaim;
+                String header = new String(Base64Util.base64urldecode(encodedHeader), StandardCharsets.UTF_8);
+                String payload = new String(Base64Util.base64urldecode(encodedClaim), StandardCharsets.UTF_8);
+                payload = payload.replace("\\", "");
+
+                loadHeader(header);
+
+                SignatureAlgorithm sigAlg = SignatureAlgorithm.fromString(algorithm);
+                if (sigAlg == null) {
+                    throw new InvalidJwtException("The JWT algorithm is not supported");
+                }
+                if (sigAlg == SignatureAlgorithm.NONE && appConfiguration.getFapiCompatibility()) {
+                    throw new InvalidJwtException("None algorithm is not allowed for FAPI");
+                }
+                if (!validateSignature(cryptoProvider, sigAlg, client, signingInput, encodedSignature)) {
+                    throw new InvalidJwtException("The JWT signature is not valid");
+                }
+
+                loadPayload(payload);
+            } else {
+                throw new InvalidJwtException("The JWT is not well formed");
+            }
+
+        } catch (Exception e) {
+            throw new InvalidJwtException(e);
+        }
+    }
+
+    public String getEncodedJwt() {
+        return encodedJwt;
+    }
+
+    private void loadHeader(String header) throws JSONException {
+        JSONObject jsonHeader = new JSONObject(header);
+
+        if (jsonHeader.has("typ")) {
+            type = jsonHeader.getString("typ");
+        }
+        if (jsonHeader.has("alg")) {
+            algorithm = jsonHeader.getString("alg");
+        }
+        if (jsonHeader.has("enc")) {
+            encryptionAlgorithm = jsonHeader.getString("enc");
+        }
+        if (jsonHeader.has("kid")) {
+            keyId = jsonHeader.getString("kid");
+        }
+    }
+
+    private void loadPayload(String payload) throws JSONException, UnsupportedEncodingException {
+        this.payload = payload;
+
+        JSONObject jsonPayload = new JSONObject(payload);
+
+        if (jsonPayload.has("response_type")) {
+            JSONArray responseTypeJsonArray = jsonPayload.optJSONArray("response_type");
+            if (responseTypeJsonArray != null) {
+                for (int i = 0; i < responseTypeJsonArray.length(); i++) {
+                    ResponseType responseType = ResponseType.fromString(responseTypeJsonArray.getString(i));
+                    responseTypes.add(responseType);
+                }
+            } else {
+                responseTypes.addAll(ResponseType.fromString(jsonPayload.getString("response_type"), " "));
+            }
+        }
+        if (jsonPayload.has("exp")) {
+            exp = jsonPayload.getInt("exp");
+        }
+        if (jsonPayload.has("aud")) {
+            final String audStr = jsonPayload.optString("aud");
+            if (StringUtils.isNotBlank(audStr)) {
+                this.aud.add(audStr);
+            }
+            final JSONArray audArray = jsonPayload.optJSONArray("aud");
+            if (audArray != null && audArray.length() > 0) {
+                this.aud.addAll(Util.asList(audArray));
+            }
+        }
+        clientId = jsonPayload.optString("client_id", null);
+        if (jsonPayload.has("scope")) {
+            JSONArray scopesJsonArray = jsonPayload.optJSONArray("scope");
+            if (scopesJsonArray != null) {
+                for (int i = 0; i < scopesJsonArray.length(); i++) {
+                    String scope = scopesJsonArray.getString(i);
+                    scopes.add(scope);
+                }
+            } else {
+                String scopeStringList = jsonPayload.getString("scope");
+                scopes.addAll(Util.splittedStringAsList(scopeStringList, " "));
+            }
+        }
+        if (jsonPayload.has("redirect_uri")) {
+            redirectUri = URLDecoder.decode(jsonPayload.getString("redirect_uri"), "UTF-8");
+        }
+        nonce = jsonPayload.optString("nonce", null);
+        state = jsonPayload.optString("state", null);
+        if (jsonPayload.has("display")) {
+            display = Display.fromString(jsonPayload.getString("display"));
+        }
+        if (jsonPayload.has("prompt")) {
+            JSONArray promptJsonArray = jsonPayload.optJSONArray("prompt");
+            if (promptJsonArray != null) {
+                for (int i = 0; i < promptJsonArray.length(); i++) {
+                    Prompt prompt = Prompt.fromString(promptJsonArray.getString(i));
+                    prompts.add(prompt);
+                }
+            } else {
+                prompts.addAll(Prompt.fromString(jsonPayload.getString("prompt"), " "));
+            }
+        }
+        if (jsonPayload.has("claims")) {
+            JSONObject claimsJsonObject = jsonPayload.getJSONObject("claims");
+
+            if (claimsJsonObject.has("userinfo")) {
+                userInfoMember = new UserInfoMember(claimsJsonObject.getJSONObject("userinfo"));
+            }
+            if (claimsJsonObject.has("id_token")) {
+                idTokenMember = new IdTokenMember(claimsJsonObject.getJSONObject("id_token"));
+            }
+        }
+        iss = jsonPayload.optString("iss", null);
+        if (jsonPayload.has("exp")) {
+            exp = jsonPayload.getInt("exp");
+        }
+        if (jsonPayload.has("iat")) {
+            iat = jsonPayload.getInt("iat");
+        }
+        if (jsonPayload.has("nbf")) {
+            nbf = jsonPayload.getInt("nbf");
+        }
+        jti = jsonPayload.optString("jti", null);
+        clientNotificationToken = jsonPayload.optString("client_notification_token", null);
+        acrValues = jsonPayload.optString("acr_values", null);
+        loginHintToken = jsonPayload.optString("login_hint_token", null);
+        idTokenHint = jsonPayload.optString("id_token_hint", null);
+        loginHint = jsonPayload.optString("login_hint", null);
+        bindingMessage = jsonPayload.optString("binding_message", null);
+        userCode = jsonPayload.optString("user_code", null);
+
+        if (jsonPayload.has("requested_expiry")) {
+            // requested_expirity is an exception, it could be String or Number.
+            if (jsonPayload.get("requested_expiry") instanceof Number) {
+                requestedExpiry = jsonPayload.getInt("requested_expiry");
+            } else {
+                requestedExpiry = Integer.parseInt(jsonPayload.getString("requested_expiry"));
+            }
+        }
+        if (jsonPayload.has("response_mode")) {
+            responseMode = ResponseMode.getByValue(jsonPayload.optString("response_mode"));
+        }
+    }
+
+    private boolean validateSignature(AbstractCryptoProvider cryptoProvider, SignatureAlgorithm signatureAlgorithm, Client client, String signingInput, String signature) throws Exception {
+        ClientService clientService = CdiUtil.bean(ClientService.class);
+        String sharedSecret = clientService.decryptSecret(client.getClientSecret());
+        JSONObject jwks = ServerUtil.getJwks(client);
+        return cryptoProvider.verifySignature(signingInput, signature, keyId, jwks, sharedSecret, signatureAlgorithm);
+    }
+
+    public String getEncryptionAlgorithm() {
+        return encryptionAlgorithm;
+    }
+
+    public String getKeyId() {
+        return keyId;
+    }
+
+    public String getType() {
+        return type;
+    }
+
+    public String getAlgorithm() {
+        return algorithm;
+    }
+
+    public List<ResponseType> getResponseTypes() {
+        return responseTypes;
+    }
+
+    public String getClientId() {
+        return clientId;
+    }
+
+    public List<String> getScopes() {
+        return scopes;
+    }
+
+    public String getRedirectUri() {
+        return redirectUri;
+    }
+
+    public String getNonce() {
+        return nonce;
+    }
+
+    public String getState() {
+        return state;
+    }
+
+    public Display getDisplay() {
+        return display;
+    }
+
+    public List<Prompt> getPrompts() {
+        return prompts;
+    }
+
+    public UserInfoMember getUserInfoMember() {
+        return userInfoMember;
+    }
+
+    public IdTokenMember getIdTokenMember() {
+        return idTokenMember;
+    }
+
+    public Integer getExp() {
+        return exp;
+    }
+
+    public List<String> getAud() {
+        if (aud == null) aud = Lists.newArrayList();
+        return aud;
+    }
+
+    public String getPayload() {
+        return payload;
+    }
+
+    public String getIss() {
+        return iss;
+    }
+
+    public Integer getIat() {
+        return iat;
+    }
+
+    public Integer getNbf() {
+        return nbf;
+    }
+
+    public String getJti() {
+        return jti;
+    }
+
+    public String getClientNotificationToken() {
+        return clientNotificationToken;
+    }
+
+    public String getAcrValues() {
+        return acrValues;
+    }
+
+    public String getLoginHintToken() {
+        return loginHintToken;
+    }
+
+    public String getIdTokenHint() {
+        return idTokenHint;
+    }
+
+    public String getLoginHint() {
+        return loginHint;
+    }
+
+    public String getBindingMessage() {
+        return bindingMessage;
+    }
+
+    public String getUserCode() {
+        return userCode;
+    }
+
+    public Integer getRequestedExpiry() {
+        return requestedExpiry;
+    }
+
+    public ResponseMode getResponseMode() {
+        return responseMode;
+    }
+
+    @Nullable
+    private static String queryRequest(@Nullable String requestUri, @Nullable RedirectUriResponse redirectUriResponse,
+                                       AppConfiguration appConfiguration) {
+        if (StringUtils.isBlank(requestUri)) {
+            return null;
+        }
+        boolean validRequestUri = false;
+        try {
+            URI reqUri = new URI(requestUri);
+            String reqUriHash = reqUri.getFragment();
+            String reqUriWithoutFragment = reqUri.getScheme() + ":" + reqUri.getSchemeSpecificPart();
+
+            javax.ws.rs.client.Client clientRequest = ClientBuilder.newClient();
+            String request = null;
+            try {
+                Response clientResponse = clientRequest.target(reqUriWithoutFragment).request().buildGet().invoke();
+                int status = clientResponse.getStatus();
+
+                if (status == 200) {
+                    request = clientResponse.readEntity(String.class);
+
+                    if (StringUtils.isBlank(reqUriHash) || !appConfiguration.getRequestUriHashVerificationEnabled()) {
+                        validRequestUri = true;
+                    } else {
+                        String hash = Base64Util.base64urlencode(JwtUtil.getMessageDigestSHA256(request));
+                        validRequestUri = StringUtils.equals(reqUriHash, hash);
+                    }
+                }
+            } finally {
+                clientRequest.close();
+            }
+
+            if (!validRequestUri && redirectUriResponse != null) {
+                throw redirectUriResponse.createWebException(AuthorizeErrorResponseType.INVALID_REQUEST_URI, "Invalid request uri.");
+            }
+            return request;
+        } catch (WebApplicationException e) {
+            throw e;
+        } catch (Exception e) {
+            log.error(e.getMessage(), e);
+            return null;
+        }
+    }
+
+    public static JwtAuthorizationRequest createJwtRequest(String request, String requestUri, Client client, RedirectUriResponse redirectUriResponse, AbstractCryptoProvider cryptoProvider, AppConfiguration appConfiguration) {
+        validateRequestUri(requestUri, client, appConfiguration, redirectUriResponse != null ? redirectUriResponse.getState() : null);
+        final String requestFromClient = queryRequest(requestUri, redirectUriResponse, appConfiguration);
+        if (StringUtils.isNotBlank(requestFromClient)) {
+            request = requestFromClient;
+        }
+
+        if (StringUtils.isBlank(request)) {
+            return null;
+        }
+
+        try {
+            return new JwtAuthorizationRequest(appConfiguration, cryptoProvider, request, client);
+        } catch (WebApplicationException e) {
+            throw e;
+        } catch (Exception e) {
+            log.error("Invalid JWT authorization request. " + e.getMessage(), e);
+        }
+        return null;
+    }
+
+    public static void validateRequestUri(String requestUri, Client client, AppConfiguration appConfiguration, String state) {
+        validateRequestUri(requestUri, client, appConfiguration, state, CdiUtil.bean(ErrorResponseFactory.class));
+    }
+
+    public static void validateRequestUri(String requestUri, Client client, AppConfiguration appConfiguration, String state, ErrorResponseFactory errorResponseFactory) {
+        if (StringUtils.isBlank(requestUri)) {
+            return; // nothing to validate
+        }
+
+        // client.requestUris() - validation
+        if (ArrayUtils.isNotEmpty(client.getRequestUris()) && !RedirectionUriService.isUriEqual(requestUri, client.getRequestUris())) {
+            log.debug("request_uri is forbidden by client request uris.");
+            throw new WebApplicationException(Response
+                    .status(Response.Status.BAD_REQUEST)
+                    .entity(errorResponseFactory.getErrorAsJson(AuthorizeErrorResponseType.INVALID_REQUEST_URI, state, ""))
+                    .build());
+        }
+
+        // check black list
+        final List<String> blackList = appConfiguration.getRequestUriBlockList();
+        if (!blackList.isEmpty()) {
+            URLPatternList urlPatternList = new URLPatternList(blackList);
+            if (urlPatternList.isUrlListed(requestUri)) {
+                log.debug("request_uri is forbidden by requestUriBlackList configuration.");
+                throw new WebApplicationException(Response
+                        .status(Response.Status.BAD_REQUEST)
+                        .entity(errorResponseFactory.getErrorAsJson(AuthorizeErrorResponseType.INVALID_REQUEST_URI, state, ""))
+                        .build());
+            }
+        }
+    }
+}
\ No newline at end of file
diff --git a/oxAuth/Server/src/main/java/org/gluu/oxauth/model/authorize/ScopeChecker.java b/oxAuth/Server/src/main/java/org/gluu/oxauth/model/authorize/ScopeChecker.java
new file mode 100644
index 00000000..f46196c4
--- /dev/null
+++ b/oxAuth/Server/src/main/java/org/gluu/oxauth/model/authorize/ScopeChecker.java
@@ -0,0 +1,94 @@
+/*
+ * oxAuth is available under the MIT License (2008). See http://opensource.org/licenses/MIT for full text.
+ *
+ * Copyright (c) 2014, Gluu
+ */
+
+package org.gluu.oxauth.model.authorize;
+
+import com.google.common.collect.Sets;
+
+import javax.enterprise.context.ApplicationScoped;
+
+import org.apache.commons.lang.StringUtils;
+import org.gluu.oxauth.model.registration.Client;
+import org.gluu.oxauth.service.ScopeService;
+import org.gluu.oxauth.service.SpontaneousScopeService;
+import org.gluu.oxauth.service.external.ExternalSpontaneousScopeService;
+import org.gluu.oxauth.service.external.context.SpontaneousScopeExternalContext;
+import org.slf4j.Logger;
+
+import javax.inject.Inject;
+import java.util.Arrays;
+import java.util.HashSet;
+import java.util.List;
+import java.util.Set;
+
+/**
+ * Validates the scopes received for the authorize web service.
+ *
+ * @author Yuriy Zabrovarnyy
+ * @author Yuriy Movchan
+ * @author Javier Rojas Blum
+ * @version January 30, 2018
+ */
+@ApplicationScoped
+public class ScopeChecker {
+
+    @Inject
+    private Logger log;
+
+    @Inject
+    private ScopeService scopeService;
+
+    @Inject
+    private SpontaneousScopeService spontaneousScopeService;
+
+    @Inject
+    private ExternalSpontaneousScopeService externalSpontaneousScopeService;
+
+    public Set<String> checkScopesPolicy(Client client, String scope) {
+        if (StringUtils.isBlank(scope)) {
+            return Sets.newHashSet();
+        }
+        return checkScopesPolicy(client, Arrays.asList(scope.split(" ")));
+    }
+
+    public Set<String> checkScopesPolicy(Client client, List<String> scopesRequested) {
+        log.debug("Checking scopes policy for: " + scopesRequested);
+        Set<String> grantedScopes = new HashSet<>();
+
+        if (scopesRequested == null || scopesRequested.isEmpty() || client == null) {
+            return grantedScopes;
+        }
+
+        String[] scopesAllowed = client.getScopes() != null ? client.getScopes() : new String[0];
+
+        for (String scopeRequested : scopesRequested) {
+            if (StringUtils.isBlank(scopeRequested)) {
+                continue;
+            }
+
+            List<String> scopesAllowedIds = scopeService.getScopeIdsByDns(Arrays.asList(scopesAllowed));
+            if (scopesAllowedIds.contains(scopeRequested)) {
+                grantedScopes.add(scopeRequested);
+                continue;
+            }
+
+            if (spontaneousScopeService.isAllowedBySpontaneousScopes(client, scopeRequested)) {
+                grantedScopes.add(scopeRequested);
+
+                SpontaneousScopeExternalContext context = new SpontaneousScopeExternalContext(client, scopeRequested, grantedScopes, spontaneousScopeService);
+                externalSpontaneousScopeService.executeExternalManipulateScope(context);
+
+                if (context.isAllowSpontaneousScopePersistence()) {
+                    spontaneousScopeService.createSpontaneousScopeIfNeeded(Sets.newHashSet(client.getAttributes().getSpontaneousScopes()), scopeRequested, client.getClientId());
+                }
+            }
+        }
+
+        log.debug("Granted scopes: " + grantedScopes);
+
+        return grantedScopes;
+    }
+}
\ No newline at end of file
diff --git a/oxAuth/Server/src/main/java/org/gluu/oxauth/model/authorize/UserInfoMember.java b/oxAuth/Server/src/main/java/org/gluu/oxauth/model/authorize/UserInfoMember.java
new file mode 100644
index 00000000..e0a467fd
--- /dev/null
+++ b/oxAuth/Server/src/main/java/org/gluu/oxauth/model/authorize/UserInfoMember.java
@@ -0,0 +1,68 @@
+/*
+ * oxAuth is available under the MIT License (2008). See http://opensource.org/licenses/MIT for full text.
+ *
+ * Copyright (c) 2014, Gluu
+ */
+
+package org.gluu.oxauth.model.authorize;
+
+import java.util.ArrayList;
+import java.util.Iterator;
+import java.util.List;
+
+import org.json.JSONArray;
+import org.json.JSONException;
+import org.json.JSONObject;
+import org.gluu.oxauth.model.util.Util;
+
+/**
+ * @author Javier Rojas Blum Date: 03.09.2012
+ */
+public class UserInfoMember {
+
+    private List<Claim> claims;
+    private List<String> preferredLocales;
+
+    public UserInfoMember(JSONObject jsonObject) throws JSONException {
+        claims = new ArrayList<Claim>();
+
+        for (Iterator<String> iterator = jsonObject.keys(); iterator.hasNext(); ) {
+            String claimName = iterator.next();
+            ClaimValue claimValue = null;
+
+            if (jsonObject.isNull(claimName)) {
+                claimValue = ClaimValue.createNull();
+            } else {
+                JSONObject claimValueJsonObject = jsonObject.getJSONObject(claimName);
+                if (claimValueJsonObject.has("essential")) {
+                    boolean essential = claimValueJsonObject.getBoolean("essential");
+                    claimValue = ClaimValue.createEssential(essential);
+                } else if (claimValueJsonObject.has("values")) {
+                    JSONArray claimValueJsonArray = claimValueJsonObject.getJSONArray("values");
+                    List<String> claimValueArr = Util.asList(claimValueJsonArray);
+                    claimValue = ClaimValue.createValueList(claimValueArr);
+                }
+            }
+
+            Claim claim = new Claim(claimName, claimValue);
+            claims.add(claim);
+        }
+
+        preferredLocales = new ArrayList<String>();
+        if (jsonObject.has("preferred_locales")) {
+            JSONArray preferredLocalesJsonArray = jsonObject.getJSONArray("preferred_locales");
+
+            for (int i = 0; i < preferredLocalesJsonArray.length(); i++) {
+                preferredLocales.add(preferredLocalesJsonArray.getString(i));
+            }
+        }
+    }
+
+    public List<Claim> getClaims() {
+        return claims;
+    }
+
+    public List<String> getPreferredLocales() {
+        return preferredLocales;
+    }
+}
\ No newline at end of file
diff --git a/oxAuth/Server/src/main/java/org/gluu/oxauth/model/clientinfo/ClientInfoErrorResponseType.java b/oxAuth/Server/src/main/java/org/gluu/oxauth/model/clientinfo/ClientInfoErrorResponseType.java
new file mode 100644
index 00000000..25c1d47e
--- /dev/null
+++ b/oxAuth/Server/src/main/java/org/gluu/oxauth/model/clientinfo/ClientInfoErrorResponseType.java
@@ -0,0 +1,46 @@
+/*
+ * oxAuth is available under the MIT License (2008). See http://opensource.org/licenses/MIT for full text.
+ *
+ * Copyright (c) 2014, Gluu
+ */
+
+package org.gluu.oxauth.model.clientinfo;
+
+import org.gluu.oxauth.model.error.IErrorType;
+
+/**
+ * @author Javier Rojas Date: 07.19.2012
+ */
+public enum ClientInfoErrorResponseType implements IErrorType {
+
+    INVALID_REQUEST("invalid_request"),
+    INVALID_TOKEN("invalid_token");
+
+    private final String paramName;
+
+    private ClientInfoErrorResponseType(String paramName) {
+        this.paramName = paramName;
+    }
+
+    public static ClientInfoErrorResponseType fromString(String param) {
+        if (param != null) {
+            for (ClientInfoErrorResponseType err : ClientInfoErrorResponseType.values()) {
+                if (param.equals(err.paramName)) {
+                    return err;
+                }
+            }
+        }
+
+        return null;
+    }
+
+    @Override
+    public String toString() {
+        return paramName;
+    }
+
+    @Override
+    public String getParameter() {
+        return paramName;
+    }
+}
\ No newline at end of file
diff --git a/oxAuth/Server/src/main/java/org/gluu/oxauth/model/clientinfo/ClientInfoParamsValidator.java b/oxAuth/Server/src/main/java/org/gluu/oxauth/model/clientinfo/ClientInfoParamsValidator.java
new file mode 100644
index 00000000..3801b73a
--- /dev/null
+++ b/oxAuth/Server/src/main/java/org/gluu/oxauth/model/clientinfo/ClientInfoParamsValidator.java
@@ -0,0 +1,25 @@
+/*
+ * oxAuth is available under the MIT License (2008). See http://opensource.org/licenses/MIT for full text.
+ *
+ * Copyright (c) 2014, Gluu
+ */
+
+package org.gluu.oxauth.model.clientinfo;
+
+/**
+ * Validates the parameters received for the client info web service.
+ *
+ * @author Javier Rojas Blum Date: 07.19.2012
+ */
+public class ClientInfoParamsValidator {
+
+    /**
+     * Validates the parameters for a client info request.
+     *
+     * @param accessToken
+     * @return Returns <code>true</code> when all the parameters are valid.
+     */
+    public static boolean validateParams(String accessToken) {
+        return accessToken != null && !accessToken.isEmpty();
+    }
+}
\ No newline at end of file
diff --git a/oxAuth/Server/src/main/java/org/gluu/oxauth/model/common/AbstractAuthorizationGrant.java b/oxAuth/Server/src/main/java/org/gluu/oxauth/model/common/AbstractAuthorizationGrant.java
new file mode 100644
index 00000000..914e3c51
--- /dev/null
+++ b/oxAuth/Server/src/main/java/org/gluu/oxauth/model/common/AbstractAuthorizationGrant.java
@@ -0,0 +1,502 @@
+/*
+ * oxAuth is available under the MIT License (2008). See http://opensource.org/licenses/MIT for full text.
+ *
+ * Copyright (c) 2014, Gluu
+ */
+
+package org.gluu.oxauth.model.common;
+
+import org.gluu.oxauth.model.authorize.JwtAuthorizationRequest;
+import org.gluu.oxauth.model.authorize.ScopeChecker;
+import org.gluu.oxauth.model.configuration.AppConfiguration;
+import org.gluu.oxauth.model.ldap.TokenLdap;
+import org.gluu.oxauth.model.registration.Client;
+import org.gluu.oxauth.model.util.CertUtils;
+import org.gluu.oxauth.service.external.ExternalUpdateTokenService;
+import org.gluu.oxauth.service.external.context.ExternalUpdateTokenContext;
+import org.gluu.oxauth.util.TokenHashUtil;
+import org.slf4j.Logger;
+import org.slf4j.LoggerFactory;
+
+import javax.inject.Inject;
+import java.util.*;
+import java.util.concurrent.ConcurrentHashMap;
+import java.util.concurrent.ConcurrentMap;
+import java.util.concurrent.CopyOnWriteArraySet;
+
+/**
+ * @author Yuriy Zabrovarnyy
+ * @author Javier Rojas Blum
+ * @author Yuriy Movchan
+ * @version November 28, 2018
+ */
+
+public abstract class AbstractAuthorizationGrant implements IAuthorizationGrant {
+
+    private static final Logger log = LoggerFactory.getLogger(AbstractAuthorizationGrant.class);
+
+    @Inject
+    protected AppConfiguration appConfiguration;
+
+    @Inject
+    protected ScopeChecker scopeChecker;
+
+    @Inject
+    private ExternalUpdateTokenService externalUpdateTokenService;
+
+    private User user;
+    private AuthorizationGrantType authorizationGrantType;
+    private Client client;
+    private Set<String> scopes;
+
+    private String grantId;
+    private JwtAuthorizationRequest jwtAuthorizationRequest;
+    private Date authenticationTime;
+    private TokenLdap tokenLdap;
+    private AccessToken longLivedAccessToken;
+    private IdToken idToken;
+    private AuthorizationCode authorizationCode;
+    private String tokenBindingHash;
+    private String x5ts256;
+    private String nonce;
+    private String codeChallenge;
+    private String codeChallengeMethod;
+    private String claims;
+
+    private String acrValues;
+    private String sessionDn;
+
+    protected final ConcurrentMap<String, AccessToken> accessTokens = new ConcurrentHashMap<String, AccessToken>();
+    protected final ConcurrentMap<String, RefreshToken> refreshTokens = new ConcurrentHashMap<String, RefreshToken>();
+
+    public AbstractAuthorizationGrant() {
+    }
+
+    protected AbstractAuthorizationGrant(User user, AuthorizationGrantType authorizationGrantType, Client client,
+                                         Date authenticationTime) {
+        init(user, authorizationGrantType, client, authenticationTime);
+    }
+
+    protected void init(User user, AuthorizationGrantType authorizationGrantType, Client client,
+                        Date authenticationTime) {
+        this.authenticationTime = authenticationTime != null ? new Date(authenticationTime.getTime()) : null;
+        this.user = user;
+        this.authorizationGrantType = authorizationGrantType;
+        this.client = client;
+        this.scopes = new CopyOnWriteArraySet<String>();
+        this.grantId = UUID.randomUUID().toString();
+    }
+
+    @Override
+    public synchronized String getGrantId() {
+        return grantId;
+    }
+
+    @Override
+    public synchronized void setGrantId(String p_grantId) {
+        grantId = p_grantId;
+    }
+
+    /**
+     * Returns the {@link AuthorizationCode}.
+     *
+     * @return The authorization code.
+     */
+    @Override
+    public AuthorizationCode getAuthorizationCode() {
+        return authorizationCode;
+    }
+
+    /**
+     * Sets the {@link AuthorizationCode}.
+     *
+     * @param authorizationCode The authorization code.
+     */
+    @Override
+    public void setAuthorizationCode(AuthorizationCode authorizationCode) {
+        this.authorizationCode = authorizationCode;
+    }
+
+    public String getTokenBindingHash() {
+        return tokenBindingHash;
+    }
+
+    public void setTokenBindingHash(String tokenBindingHash) {
+        this.tokenBindingHash = tokenBindingHash;
+    }
+
+    public String getX5ts256() {
+        return x5ts256;
+    }
+
+    public void setX5ts256(String x5ts256) {
+        this.x5ts256 = x5ts256;
+    }
+
+    @Override
+    public String getNonce() {
+        return nonce;
+    }
+
+    @Override
+    public void setNonce(String nonce) {
+        this.nonce = nonce;
+    }
+
+    public String getCodeChallenge() {
+        return codeChallenge;
+    }
+
+    public void setCodeChallenge(String codeChallenge) {
+        this.codeChallenge = codeChallenge;
+    }
+
+    public String getCodeChallengeMethod() {
+        return codeChallengeMethod;
+    }
+
+    public void setCodeChallengeMethod(String codeChallengeMethod) {
+        this.codeChallengeMethod = codeChallengeMethod;
+    }
+
+    public String getClaims() {
+        return claims;
+    }
+
+    public void setClaims(String claims) {
+        this.claims = claims;
+    }
+
+    /**
+     * Returns a list with all the issued refresh tokens codes.
+     *
+     * @return List with all the issued refresh tokens codes.
+     */
+    @Override
+    public Set<String> getRefreshTokensCodes() {
+        return refreshTokens.keySet();
+    }
+
+    /**
+     * Returns a list with all the issued access tokens codes.
+     *
+     * @return List with all the issued access tokens codes.
+     */
+    @Override
+    public Set<String> getAccessTokensCodes() {
+        return accessTokens.keySet();
+    }
+
+    /**
+     * Returns a list with all the issued access tokens.
+     *
+     * @return List with all the issued access tokens.
+     */
+    @Override
+    public List<AccessToken> getAccessTokens() {
+        return new ArrayList<AccessToken>(accessTokens.values());
+    }
+
+    @Override
+    public void setScopes(Collection<String> scopes) {
+        this.scopes.clear();
+        this.scopes.addAll(scopes);
+    }
+
+    @Override
+    public AccessToken getLongLivedAccessToken() {
+        return longLivedAccessToken;
+    }
+
+    @Override
+    public void setLongLivedAccessToken(AccessToken longLivedAccessToken) {
+        this.longLivedAccessToken = longLivedAccessToken;
+    }
+
+    @Override
+    public IdToken getIdToken() {
+        return idToken;
+    }
+
+    @Override
+    public void setIdToken(IdToken idToken) {
+        this.idToken = idToken;
+    }
+
+    @Override
+    public TokenLdap getTokenLdap() {
+        return tokenLdap;
+    }
+
+    @Override
+    public void setTokenLdap(TokenLdap p_tokenLdap) {
+        this.tokenLdap = p_tokenLdap;
+    }
+
+    /**
+     * Returns the resource owner's.
+     *
+     * @return The resource owner's.
+     */
+    @Override
+    public User getUser() {
+        return user;
+    }
+
+    public String getAcrValues() {
+        return acrValues;
+    }
+
+    public void setAcrValues(String acrValues) {
+        this.acrValues = acrValues;
+    }
+
+    public String getSessionDn() {
+        return sessionDn;
+    }
+
+    public void setSessionDn(String sessionDn) {
+        this.sessionDn = sessionDn;
+    }
+
+    /**
+     * Checks the scopes policy configured according to the type of the
+     * authorization grant to limit the issued token scopes.
+     *
+     * @param requestedScopes A space-delimited list of values in which the order of values
+     *                        does not matter.
+     * @return A space-delimited list of scopes
+     */
+    @Override
+    public String checkScopesPolicy(String requestedScopes) {
+        this.scopes.clear();
+
+        Set<String> grantedScopes = scopeChecker.checkScopesPolicy(client, requestedScopes);
+        this.scopes.addAll(grantedScopes);
+
+        final StringBuilder grantedScopesSb = new StringBuilder();
+        for (String scope : scopes) {
+            grantedScopesSb.append(" ").append(scope);
+        }
+
+        final String grantedScopesSt = grantedScopesSb.toString().trim();
+
+        return grantedScopesSt;
+    }
+
+    @Override
+    public AccessToken createAccessToken(String certAsPem, ExecutionContext executionContext) {
+        int lifetime = appConfiguration.getAccessTokenLifetime();
+        // oxAuth #830 Client-specific access token expiration
+        if (client != null && client.getAccessTokenLifetime() != null && client.getAccessTokenLifetime() > 0) {
+            lifetime = client.getAccessTokenLifetime();
+        }
+
+        int lifetimeFromScript = externalUpdateTokenService.getAccessTokenLifetimeInSeconds(ExternalUpdateTokenContext.of(executionContext));
+        if (lifetimeFromScript > 0) {
+            lifetime = lifetimeFromScript;
+            log.trace("Override access token lifetime with value from script: {}", lifetimeFromScript);
+        }
+
+        AccessToken accessToken = new AccessToken(lifetime);
+
+        accessToken.setAuthMode(getAcrValues());
+        accessToken.setSessionDn(getSessionDn());
+        accessToken.setX5ts256(CertUtils.confirmationMethodHashS256(certAsPem));
+
+        return accessToken;
+    }
+
+    @Override
+    public RefreshToken createRefreshToken(ExecutionContext executionContext) {
+        int lifetime = appConfiguration.getRefreshTokenLifetime();
+        if (client.getRefreshTokenLifetime() != null && client.getRefreshTokenLifetime() > 0) {
+            lifetime = client.getRefreshTokenLifetime();
+            log.debug("Overwritten refresh_token lifetime from client, clientId: {} .", client.getClientId());
+        }
+
+        final int refreshTokenLifetimeFromScript = executionContext.getRefreshTokenLifetimeFromScript();
+        if (refreshTokenLifetimeFromScript > 0) {
+            lifetime = refreshTokenLifetimeFromScript;
+            log.debug("Overwritten refresh_token lifetime from script with {} value.", refreshTokenLifetimeFromScript);
+        }
+
+        RefreshToken refreshToken = new RefreshToken(lifetime);
+
+        refreshToken.setAuthMode(getAcrValues());
+        refreshToken.setSessionDn(getSessionDn());
+
+        return refreshToken;
+    }
+
+    @Override
+    public String getUserId() {
+        if (user == null) {
+            return null;
+        }
+
+        return user.getUserId();
+    }
+
+    @Override
+    public String getUserDn() {
+        if (user == null) {
+            return null;
+        }
+
+        return user.getDn();
+    }
+
+    /**
+     * Returns the {@link AuthorizationGrantType}.
+     *
+     * @return The authorization grant type.
+     */
+    @Override
+    public AuthorizationGrantType getAuthorizationGrantType() {
+        return authorizationGrantType;
+    }
+
+    /**
+     * Returns the {@link org.gluu.oxauth.model.registration.Client}. An
+     * application making protected resource requests on behalf of the resource
+     * owner and with its authorization.
+     *
+     * @return The client.
+     */
+    @Override
+    public Client getClient() {
+        return client;
+    }
+
+    @Override
+    public String getClientId() {
+        if (client == null) {
+            return null;
+        }
+
+        return client.getClientId();
+    }
+
+    @Override
+    public String getClientDn() {
+        if (client == null) {
+            return null;
+        }
+
+        return client.getDn();
+    }
+
+    @Override
+    public Date getAuthenticationTime() {
+        return authenticationTime;
+    }
+
+    public void setAuthenticationTime(Date authenticationTime) {
+        this.authenticationTime = authenticationTime;
+    }
+
+    /**
+     * Returns a list of the scopes granted to the client.
+     *
+     * @return List of the scopes granted to the client.
+     */
+    @Override
+    public Set<String> getScopes() {
+        return scopes;
+    }
+
+    @Override
+    public JwtAuthorizationRequest getJwtAuthorizationRequest() {
+        return jwtAuthorizationRequest;
+    }
+
+    @Override
+    public void setJwtAuthorizationRequest(JwtAuthorizationRequest p_jwtAuthorizationRequest) {
+        jwtAuthorizationRequest = p_jwtAuthorizationRequest;
+    }
+
+    @Override
+    public void setAccessTokens(List<AccessToken> accessTokens) {
+        put(this.accessTokens, accessTokens);
+    }
+
+    private static <T extends AbstractToken> void put(ConcurrentMap<String, T> p_map, List<T> p_list) {
+        p_map.clear();
+        if (p_list != null && !p_list.isEmpty()) {
+            for (T t : p_list) {
+                p_map.put(t.getCode(), t);
+            }
+        }
+    }
+
+    /**
+     * Returns a list with all the issued refresh tokens.
+     *
+     * @return List with all the issued refresh tokens.
+     */
+    @Override
+    public List<RefreshToken> getRefreshTokens() {
+        return new ArrayList<RefreshToken>(refreshTokens.values());
+    }
+
+    @Override
+    public void setRefreshTokens(List<RefreshToken> refreshTokens) {
+        put(this.refreshTokens, refreshTokens);
+    }
+
+    /**
+     * Gets the refresh token instance from the refresh token list given its
+     * code.
+     *
+     * @param refreshTokenCode The code of the refresh token.
+     * @return The refresh token instance or <code>null</code> if not found.
+     */
+    @Override
+    public RefreshToken getRefreshToken(String refreshTokenCode) {
+        if (log.isTraceEnabled()) {
+            log.trace("Looking for the refresh token: " + refreshTokenCode + " for an authorization grant of type: "
+                    + getAuthorizationGrantType());
+        }
+        return refreshTokens.get(TokenHashUtil.hash(refreshTokenCode));
+    }
+
+    /**
+     * Gets the access token instance from the id token list or the access token
+     * list given its code.
+     *
+     * @param tokenCode The code of the access token.
+     * @return The access token instance or <code>null</code> if not found.
+     */
+    @Override
+    public AbstractToken getAccessToken(String tokenCode) {
+
+        String hashedTokenCode = TokenHashUtil.hash(tokenCode);
+
+        final IdToken idToken = getIdToken();
+        if (idToken != null) {
+            if (idToken.getCode().equals(hashedTokenCode)) {
+                return idToken;
+            }
+        }
+
+        final AccessToken longLivedAccessToken = getLongLivedAccessToken();
+        if (longLivedAccessToken != null) {
+            if (longLivedAccessToken.getCode().equals(hashedTokenCode)) {
+                return longLivedAccessToken;
+            }
+        }
+
+        return accessTokens.get(hashedTokenCode);
+    }
+
+    @Override
+    public String toString() {
+        return "AbstractAuthorizationGrant{" + "user=" + user + ", authorizationCode=" + authorizationCode + ", client="
+                + client + ", grantId='" + grantId + '\'' + ", nonce='" + nonce + '\'' + ", acrValues='" + acrValues
+                + '\'' + ", sessionDn='" + sessionDn + '\'' + ", codeChallenge='" + codeChallenge + '\''
+                + ", codeChallengeMethod='" + codeChallengeMethod + '\'' + ", authenticationTime=" + authenticationTime
+                + ", scopes=" + scopes + ", authorizationGrantType=" + authorizationGrantType + ", tokenBindingHash=" + tokenBindingHash
+                + ", x5ts256=" + x5ts256 + ", claims=" + claims + '}';
+    }
+}
\ No newline at end of file
diff --git a/oxAuth/Server/src/main/java/org/gluu/oxauth/model/common/AbstractToken.java b/oxAuth/Server/src/main/java/org/gluu/oxauth/model/common/AbstractToken.java
new file mode 100644
index 00000000..ece6741b
--- /dev/null
+++ b/oxAuth/Server/src/main/java/org/gluu/oxauth/model/common/AbstractToken.java
@@ -0,0 +1,291 @@
+/*
+ * oxAuth is available under the MIT License (2008). See http://opensource.org/licenses/MIT for full text.
+ *
+ * Copyright (c) 2014, Gluu
+ */
+
+package org.gluu.oxauth.model.common;
+
+import org.gluu.oxauth.model.crypto.signature.SignatureAlgorithm;
+import org.gluu.oxauth.model.token.HandleTokenFactory;
+import org.gluu.oxauth.model.util.HashUtil;
+import org.gluu.oxauth.util.ServerUtil;
+import org.gluu.persist.annotation.AttributeName;
+import org.gluu.persist.annotation.Expiration;
+import org.gluu.persist.model.base.Deletable;
+
+import java.io.Serializable;
+import java.time.Duration;
+import java.util.Calendar;
+import java.util.Date;
+import java.util.concurrent.TimeUnit;
+
+/**
+ * <p>
+ * Base class for the access token, refresh token and authorization code.
+ * </p>
+ * <p>
+ * When created, a token is valid for a given lifetime, and after this period of
+ * time, it will be marked as expired automatically by a background process.
+ * </p>
+ * <p>
+ * When required, the token can be marked as revoked.
+ * </p>
+ *
+ * @author Javier Rojas Blum
+ * @version March 14, 2019
+ */
+public abstract class AbstractToken implements Serializable, Deletable {
+
+    @AttributeName(name = "tknCde", consistency = true)
+    private String code;
+    @AttributeName(name = "iat")
+    private Date creationDate;
+    @AttributeName(name = "exp")
+    private Date expirationDate;
+    @AttributeName(name = "del")
+    private boolean deletable = true;
+    private boolean revoked;
+    private boolean expired;
+
+    private String authMode;
+
+    @AttributeName(name = "ssnId")
+    private String sessionDn;
+    private String x5ts256;
+
+    @Expiration
+    private int ttl;
+
+    /**
+     * Creates and initializes the values of an abstract token.
+     *
+     * @param lifeTime The life time of the token.
+     */
+    public AbstractToken(int lifeTime) {
+        if (lifeTime <= 0) {
+            throw new IllegalArgumentException("Lifetime of the token is less or equal to zero.");
+        }
+        ttl = lifeTime;
+        Calendar calendar = Calendar.getInstance();
+        creationDate = calendar.getTime();
+        calendar.add(Calendar.SECOND, lifeTime);
+        expirationDate = calendar.getTime();
+
+        code = HandleTokenFactory.generateHandleToken();
+
+        revoked = false;
+        expired = false;
+    }
+
+    protected AbstractToken(String code, Date creationDate, Date expirationDate) {
+        this.code = code;
+        this.creationDate = creationDate;
+        this.expirationDate = expirationDate;
+
+        checkExpired();
+    }
+
+    public int getTtl() {
+        initTtl();
+        return ttl;
+    }
+
+    private void initTtl() {
+        if (ttl > 0) {
+            return;
+        }
+        ttl = ServerUtil.calculateTtl(creationDate, expirationDate);
+        if (ttl > 0) {
+            return;
+        }
+        // unable to calculate ttl (expiration or creation date is not set), thus defaults it to 1 day
+        ttl = (int) TimeUnit.DAYS.toSeconds(1);
+    }
+
+    public void resetTtlFromExpirationDate() {
+        this.ttl = (int) Duration.between(new Date().toInstant(), getExpirationDate().toInstant()).getSeconds();
+    }
+
+    /**
+     * Checks whether the token has expired and if true, marks itself as expired.
+     */
+    public void checkExpired() {
+        checkExpired(new Date());
+    }
+
+    /**
+     * Checks whether the token has expired and if true, marks itself as expired.
+     */
+    public void checkExpired(Date now) {
+        if (now.after(expirationDate)) {
+            expired = true;
+        }
+    }
+
+    /**
+     * Checks whether a token is valid, it is valid if it is not revoked and not
+     * expired.
+     *
+     * @return Returns <code>true</code> if the token is valid.
+     */
+    public boolean isValid() {
+        return !revoked && !expired;
+    }
+
+    /**
+     * Returns the token code.
+     *
+     * @return The Code of the token.
+     */
+    public String getCode() {
+        return code;
+    }
+
+    /**
+     * Sets the token code.
+     *
+     * @param code The code of the token.
+     */
+    public void setCode(String code) {
+        this.code = code;
+    }
+
+    /**
+     * Returns the creation date of the token.
+     *
+     * @return The creation date.
+     */
+    public Date getCreationDate() {
+        return creationDate != null ? new Date(creationDate.getTime()) : null;
+    }
+
+    /**
+     * Sets the creation date of the token.
+     *
+     * @param creationDate The creation date.
+     */
+    public void setCreationDate(Date creationDate) {
+        this.creationDate = creationDate != null ? new Date(creationDate.getTime()) : null;
+    }
+
+    /**
+     * Returns the expiration date of the token.
+     *
+     * @return The expiration date.
+     */
+    public Date getExpirationDate() {
+        return expirationDate != null ? new Date(expirationDate.getTime()) : null;
+    }
+
+    /**
+     * Sets the expiration date of the token.
+     *
+     * @param expirationDate The expiration date.
+     */
+    public void setExpirationDate(Date expirationDate) {
+        this.expirationDate = expirationDate != null ? new Date(expirationDate.getTime()) : null;
+    }
+
+    /**
+     * Returns <code>true</code> if the token has been revoked.
+     *
+     * @return <code>true</code> if the token has been revoked.
+     */
+    public boolean isRevoked() {
+        return revoked;
+    }
+
+    /**
+     * Sets the value of the revoked flag to indicate whether the token has been
+     * revoked.
+     *
+     * @param revoked Revoke or not.
+     */
+    public synchronized void setRevoked(boolean revoked) {
+        this.revoked = revoked;
+    }
+
+    /**
+     * Return <code>true</code> if the token has expired.
+     *
+     * @return <code>true</code> if the token has expired.
+     */
+    public boolean isExpired() {
+        return expired;
+    }
+
+    /**
+     * Sets the value of the expired flag to indicate whether the token has
+     * expired.
+     *
+     * @param expired Expire or not.
+     */
+    public synchronized void setExpired(boolean expired) {
+        this.expired = expired;
+    }
+
+    /**
+     * Returns the authentication mode.
+     *
+     * @return The authentication mode.
+     */
+    public String getAuthMode() {
+        return authMode;
+    }
+
+    /**
+     * Sets the authentication mode.
+     *
+     * @param authMode The authentication mode.
+     */
+    public void setAuthMode(String authMode) {
+        this.authMode = authMode;
+    }
+
+    public String getX5ts256() {
+        return x5ts256;
+    }
+
+    public void setX5ts256(String x5ts256) {
+        this.x5ts256 = x5ts256;
+    }
+
+    public String getSessionDn() {
+        return sessionDn;
+    }
+
+    public void setSessionDn(String sessionDn) {
+        this.sessionDn = sessionDn;
+    }
+
+    @Override
+    public Boolean isDeletable() {
+        return deletable;
+    }
+
+    public void setDeletable(boolean deletable) {
+        this.deletable = deletable;
+    }
+
+    /**
+     * Returns the lifetime in seconds of the token.
+     *
+     * @return The lifetime in seconds of the token.
+     */
+    public int getExpiresIn() {
+        int expiresIn = 0;
+
+        checkExpired();
+        if (isValid()) {
+            long diff = expirationDate.getTime() - new Date().getTime();
+            expiresIn = diff != 0 ? (int) (diff / 1000) : 0;
+        }
+
+        return expiresIn;
+    }
+
+    public static String getHash(String input, SignatureAlgorithm signatureAlgorithm) {
+        return HashUtil.getHash(input, signatureAlgorithm);
+    }
+}
\ No newline at end of file
diff --git a/oxAuth/Server/src/main/java/org/gluu/oxauth/model/common/AccessToken.java b/oxAuth/Server/src/main/java/org/gluu/oxauth/model/common/AccessToken.java
new file mode 100644
index 00000000..2d8d15b0
--- /dev/null
+++ b/oxAuth/Server/src/main/java/org/gluu/oxauth/model/common/AccessToken.java
@@ -0,0 +1,73 @@
+/*
+ * oxAuth is available under the MIT License (2008). See http://opensource.org/licenses/MIT for full text.
+ *
+ * Copyright (c) 2014, Gluu
+ */
+
+package org.gluu.oxauth.model.common;
+
+import java.util.Date;
+
+import org.gluu.oxauth.model.common.TokenType;
+
+/**
+ * <p>
+ * Access token (as well as any access token type-specific attributes) MUST be
+ * kept confidential in transit and storage, and only shared among the
+ * authorization server, the resource servers the access token is valid for, and
+ * the client to whom the access token is issued.
+ * </p>
+ * <p>
+ * When using the implicit grant type, the access token is transmitted in the
+ * URI fragment, which can expose it to unauthorized parties.
+ * </p>
+ * <p>
+ * The authorization server MUST ensure that access tokens cannot be generated,
+ * modified, or guessed to produce valid access tokens by unauthorized parties.
+ * </p>
+ * <p>
+ * The client SHOULD request access tokens with the minimal scope and lifetime
+ * necessary. The authorization server SHOULD take the client identity into
+ * account when choosing how to honor the requested scope and lifetime, and MAY
+ * issue an access token with a less rights than requested.
+ * </p>
+ *
+ * @author Javier Rojas Blum Date: 09.29.2011
+ */
+public class    AccessToken extends AbstractToken {
+
+    private TokenType tokenType;
+
+    /**
+     * <p>
+     * Constructs an access token.
+     * </p>
+     * <p>
+     * When created, a token is valid for a given lifetime, and after this
+     * period of time, it will be marked as expired automatically by a
+     * background process.
+     * </p>
+     * <p>
+     * When required, the token can be marked as revoked.
+     * </p>
+     *
+     * @param lifeTime  The life time of the token.
+     */
+    public AccessToken(int lifeTime) {
+        super(lifeTime);
+        this.tokenType = TokenType.BEARER;
+    }
+
+    public AccessToken(String tokenCode, Date creationDate, Date expirationDate) {
+        super(tokenCode, creationDate, expirationDate);
+    }
+
+    /**
+     * Returns the {@link TokenType}.
+     *
+     * @return The token type.
+     */
+    public TokenType getTokenType() {
+        return tokenType;
+    }
+}
\ No newline at end of file
diff --git a/oxAuth/Server/src/main/java/org/gluu/oxauth/model/common/AuthorizationCode.java b/oxAuth/Server/src/main/java/org/gluu/oxauth/model/common/AuthorizationCode.java
new file mode 100644
index 00000000..7f5835d1
--- /dev/null
+++ b/oxAuth/Server/src/main/java/org/gluu/oxauth/model/common/AuthorizationCode.java
@@ -0,0 +1,94 @@
+/*
+ * oxAuth is available under the MIT License (2008). See http://opensource.org/licenses/MIT for full text.
+ *
+ * Copyright (c) 2014, Gluu
+ */
+
+package org.gluu.oxauth.model.common;
+
+import java.util.Date;
+
+/**
+ * <p>
+ * The authorization code is obtained by using an authorization server as an
+ * intermediary between the client and resource owner. Instead of requesting
+ * authorization directly from the resource owner, the client directs the
+ * resource owner to an authorization server (via its user- agent as defined in
+ * [RFC2616]), which in turn directs the resource owner back to the client with
+ * the authorization code.
+ * </p>
+ * <p>
+ * Before directing the resource owner back to the client with the authorization
+ * code, the authorization server authenticates the resource owner and obtains
+ * authorization. Because the resource owner only authenticates with the
+ * authorization server, the resource owner's credentials are never shared with
+ * the client.
+ * </p>
+ * <p>
+ * The authorization code provides a few important security benefits such as the
+ * ability to authenticate the client, and the transmission of the access token
+ * directly to the client without passing it through the resource owner's
+ * user-agent, potentially exposing it to others, including the resource owner.
+ * </p>
+ *
+ * @author Javier Rojas Blum Date: 09.29.2011
+ */
+public class AuthorizationCode extends AbstractToken {
+
+    private boolean used;
+
+    /**
+     * <p>
+     * Constructs an authorization code.
+     * </p>
+     * <p>
+     * When created, a token is valid for a given lifetime, and after this
+     * period of time, it will be marked as expired automatically by a
+     * background process.
+     * </p>
+     * <p>
+     * When required, the token can be marked as revoked.
+     * </p>
+     *
+     * @param lifeTime The life time of the token.
+     */
+    public AuthorizationCode(int lifeTime) {
+        super(lifeTime);
+        used = false;
+    }
+
+    public AuthorizationCode(String code, Date creationDate, Date expirationDate) {
+        super(code, creationDate, expirationDate);
+        used = false;
+        checkExpired();
+    }
+
+    /**
+     * Checks whether a token is valid. An authorization code is valid if
+     * it has not been used before, not revoked and not expired.
+     */
+    @Override
+    public boolean isValid() {
+        return super.isValid() && !used;
+    }
+
+    /**
+     * Returns whether an authorization code has been used.
+     *
+     * @return <code>true</code> if the authorization code has been used.
+     */
+    public boolean isUsed() {
+        return used;
+    }
+
+    /**
+     * Sets the flag to indicate whether a token has been used.
+     * The authorization code must be used only once and after
+     * it must be marked as used.
+     *
+     * @param used Used or not.
+     */
+    public synchronized void setUsed(boolean used) {
+        this.used = used;
+    }
+}
\ No newline at end of file
diff --git a/oxAuth/Server/src/main/java/org/gluu/oxauth/model/common/AuthorizationCodeGrant.java b/oxAuth/Server/src/main/java/org/gluu/oxauth/model/common/AuthorizationCodeGrant.java
new file mode 100644
index 00000000..99e7bdee
--- /dev/null
+++ b/oxAuth/Server/src/main/java/org/gluu/oxauth/model/common/AuthorizationCodeGrant.java
@@ -0,0 +1,89 @@
+/*
+ * oxAuth is available under the MIT License (2008). See http://opensource.org/licenses/MIT for full text.
+ *
+ * Copyright (c) 2014, Gluu
+ */
+
+package org.gluu.oxauth.model.common;
+
+import org.gluu.oxauth.model.registration.Client;
+
+import java.util.Date;
+
+/**
+ * <p>
+ * The authorization code is obtained by using an authorization server as an
+ * intermediary between the client and resource owner. Instead of requesting
+ * authorization directly from the resource owner, the client directs the
+ * resource owner to an authorization server (via its user- agent as defined in
+ * [RFC2616]), which in turn directs the resource owner back to the client with
+ * the authorization code.
+ * </p>
+ * <p>
+ * Before directing the resource owner back to the client with the authorization
+ * code, the authorization server authenticates the resource owner and obtains
+ * authorization. Because the resource owner only authenticates with the
+ * authorization server, the resource owner's credentials are never shared with
+ * the client.
+ * </p>
+ * <p>
+ * The authorization code provides a few important security benefits such as the
+ * ability to authenticate the client, and the transmission of the access token
+ * directly to the client without passing it through the resource owner's
+ * user-agent, potentially exposing it to others, including the resource owner.
+ * </p>
+ *
+ * @author Javier Rojas Blum Date: 09.29.2011
+ * @author Yuriy Movchan
+ */
+public class AuthorizationCodeGrant extends AuthorizationGrant {
+
+    public AuthorizationCodeGrant() {}
+
+    /**
+     * Constructs and authorization code grant.
+     *
+     * @param user               The resource owner.
+     * @param client             An application making protected resource requests on behalf of the resource owner and
+     *                           with its authorization.
+     * @param authenticationTime The Claim Value is the number of seconds from 1970-01-01T0:0:0Z as measured in UTC
+     *                           until the date/time that the End-User authentication occurred.
+     */
+    public AuthorizationCodeGrant(User user, Client client, Date authenticationTime) {
+        init(user, client, authenticationTime);
+    }
+
+    public void init(User user, Client client, Date authenticationTime) {
+        super.init(user, AuthorizationGrantType.AUTHORIZATION_CODE, client, authenticationTime);
+        setAuthorizationCode(new AuthorizationCode(appConfiguration.getAuthorizationCodeLifetime()));
+        setIsCachedWithNoPersistence(true);
+    }
+
+    @Override
+    public GrantType getGrantType() {
+        return GrantType.AUTHORIZATION_CODE;
+    }
+
+    /**
+     * Revokes all the issued tokens.
+     */
+    @Override
+    public void revokeAllTokens() {
+        super.revokeAllTokens();
+        if (getAuthorizationCode() != null) {
+            getAuthorizationCode().setRevoked(true);
+        }
+    }
+
+    /**
+     * Checks all tokens for expiration. Each token will check itself and mark
+     * as expired when needed.
+     */
+    @Override
+    public void checkExpiredTokens() {
+        super.checkExpiredTokens();
+        if (getAuthorizationCode() != null) {
+            getAuthorizationCode().checkExpired();
+        }
+    }
+}
\ No newline at end of file
diff --git a/oxAuth/Server/src/main/java/org/gluu/oxauth/model/common/AuthorizationGrant.java b/oxAuth/Server/src/main/java/org/gluu/oxauth/model/common/AuthorizationGrant.java
new file mode 100644
index 00000000..5546bef6
--- /dev/null
+++ b/oxAuth/Server/src/main/java/org/gluu/oxauth/model/common/AuthorizationGrant.java
@@ -0,0 +1,480 @@
+/*
+ * oxAuth is available under the MIT License (2008). See http://opensource.org/licenses/MIT for full text.
+ *
+ * Copyright (c) 2014, Gluu
+ */
+
+package org.gluu.oxauth.model.common;
+
+import com.google.common.base.Function;
+import com.google.common.collect.Lists;
+import org.apache.commons.lang.BooleanUtils;
+import org.apache.commons.lang.StringUtils;
+import org.gluu.model.metric.MetricType;
+import org.gluu.oxauth.claims.Audience;
+import org.gluu.oxauth.model.authorize.JwtAuthorizationRequest;
+import org.gluu.oxauth.model.config.WebKeysConfiguration;
+import org.gluu.oxauth.model.crypto.signature.SignatureAlgorithm;
+import org.gluu.oxauth.model.jwt.Jwt;
+import org.gluu.oxauth.model.jwt.JwtClaimName;
+import org.gluu.oxauth.model.ldap.TokenLdap;
+import org.gluu.oxauth.model.registration.Client;
+import org.gluu.oxauth.model.token.HandleTokenFactory;
+import org.gluu.oxauth.model.token.IdTokenFactory;
+import org.gluu.oxauth.model.token.JsonWebResponse;
+import org.gluu.oxauth.model.token.JwtSigner;
+import org.gluu.oxauth.model.util.JwtUtil;
+import org.gluu.oxauth.service.*;
+import org.gluu.oxauth.service.external.ExternalIntrospectionService;
+import org.gluu.oxauth.service.external.ExternalUpdateTokenService;
+import org.gluu.oxauth.service.external.context.ExternalIntrospectionContext;
+import org.gluu.oxauth.service.external.context.ExternalUpdateTokenContext;
+import org.gluu.oxauth.service.stat.StatService;
+import org.gluu.oxauth.util.TokenHashUtil;
+import org.gluu.service.CacheService;
+import org.json.JSONObject;
+import org.slf4j.Logger;
+import org.slf4j.LoggerFactory;
+
+import javax.inject.Inject;
+import javax.ws.rs.WebApplicationException;
+import java.util.Date;
+import java.util.List;
+import java.util.Set;
+
+/**
+ * Base class for all the types of authorization grant.
+ *
+ * @author Javier Rojas Blum
+ * @author Yuriy Movchan
+ * @version April 10, 2020
+ */
+public abstract class AuthorizationGrant extends AbstractAuthorizationGrant {
+
+    private static final Logger log = LoggerFactory.getLogger(AuthorizationGrant.class);
+
+    @Inject
+    private CacheService cacheService;
+
+    @Inject
+    private GrantService grantService;
+
+    @Inject
+    private IdTokenFactory idTokenFactory;
+
+    @Inject
+    private WebKeysConfiguration webKeysConfiguration;
+
+    @Inject
+    private ClientService clientService;
+
+    @Inject
+    private ExternalIntrospectionService externalIntrospectionService;
+
+    @Inject
+    private AttributeService attributeService;
+
+    @Inject
+    private SectorIdentifierService sectorIdentifierService;
+
+	@Inject
+	private MetricService metricService;
+
+	@Inject
+    private StatService statService;
+
+    @Inject
+    private ExternalUpdateTokenService externalUpdateTokenService;
+
+    private boolean isCachedWithNoPersistence = false;
+
+    public AuthorizationGrant() {
+    }
+
+    public AuthorizationGrant(User user, AuthorizationGrantType authorizationGrantType, Client client,
+                              Date authenticationTime) {
+        super(user, authorizationGrantType, client, authenticationTime);
+    }
+
+    public void init(User user, AuthorizationGrantType authorizationGrantType, Client client, Date authenticationTime) {
+        super.init(user, authorizationGrantType, client, authenticationTime);
+    }
+
+    public IdToken createIdToken(
+            IAuthorizationGrant grant, String nonce,
+            AuthorizationCode authorizationCode, AccessToken accessToken, RefreshToken refreshToken,
+            String state, Set<String> scopes, boolean includeIdTokenClaims, Function<JsonWebResponse, Void> preProcessing,
+            Function<JsonWebResponse, Void> postProcessing, ExecutionContext executionContext) throws Exception {
+        JsonWebResponse jwr = idTokenFactory.createJwr(grant, nonce, authorizationCode, accessToken, refreshToken,
+                state, scopes, includeIdTokenClaims, preProcessing, postProcessing, executionContext);
+        final IdToken idToken = new IdToken(jwr.toString(), jwr.getClaims().getClaimAsDate(JwtClaimName.ISSUED_AT),
+                jwr.getClaims().getClaimAsDate(JwtClaimName.EXPIRATION_TIME));
+        if (log.isTraceEnabled())
+            log.trace("Created id_token:" + idToken.getCode() );
+        return idToken;
+    }
+
+    @Override
+    public String checkScopesPolicy(String scope) {
+        final String result = super.checkScopesPolicy(scope);
+        save();
+        return result;
+    }
+
+    @Override
+    public void save() {
+        if (isCachedWithNoPersistence) {
+            if (getAuthorizationGrantType() == AuthorizationGrantType.AUTHORIZATION_CODE) {
+                saveInCache();
+            } else if (getAuthorizationGrantType() == AuthorizationGrantType.CIBA) {
+                saveInCache();
+            } else {
+                throw new UnsupportedOperationException(
+                        "Grant caching is not supported for : " + getAuthorizationGrantType());
+            }
+        } else {
+            if (BooleanUtils.isTrue(appConfiguration.getUseCacheForAllImplicitFlowObjects()) && isImplicitFlow()) {
+                saveInCache();
+                return;
+            }
+            saveImpl();
+        }
+    }
+
+    private void saveInCache() {
+        CacheGrant cachedGrant = new CacheGrant(this, appConfiguration);
+        cacheService.put(cachedGrant.getExpiresIn(), cachedGrant.cacheKey(), cachedGrant);
+    }
+
+    public boolean isImplicitFlow() {
+        return getAuthorizationGrantType() == null || getAuthorizationGrantType() == AuthorizationGrantType.IMPLICIT;
+    }
+
+    private void saveImpl() {
+        String grantId = getGrantId();
+        if (grantId != null && StringUtils.isNotBlank(grantId)) {
+            final List<TokenLdap> grants = grantService.getGrantsByGrantId(grantId);
+            if (grants != null && !grants.isEmpty()) {
+                for (TokenLdap t : grants) {
+                    initTokenFromGrant(t);
+                    log.debug("Saving grant: " + grantId + ", code_challenge: " + getCodeChallenge());
+                    grantService.mergeSilently(t);
+                }
+            }
+        }
+    }
+
+    private void initTokenFromGrant(TokenLdap token) {
+        final String nonce = getNonce();
+        if (nonce != null) {
+            token.setNonce(nonce);
+        }
+        token.setScope(getScopesAsString());
+        token.setAuthMode(getAcrValues());
+        token.setSessionDn(getSessionDn());
+        token.setAuthenticationTime(getAuthenticationTime());
+        token.setCodeChallenge(getCodeChallenge());
+        token.setCodeChallengeMethod(getCodeChallengeMethod());
+        token.setClaims(getClaims());
+
+        final JwtAuthorizationRequest jwtRequest = getJwtAuthorizationRequest();
+        if (jwtRequest != null && StringUtils.isNotBlank(jwtRequest.getEncodedJwt())) {
+            token.setJwtRequest(jwtRequest.getEncodedJwt());
+        }
+    }
+
+    @Override
+    public AccessToken createAccessToken(String certAsPem, ExecutionContext context) {
+        try {
+            context.setGrant(this);
+
+            final AccessToken accessToken = super.createAccessToken(certAsPem, context);
+            if (accessToken.getExpiresIn() < 0) {
+                log.trace("Failed to create access token with negative expiration time");
+                return null;
+            }
+
+            JwtSigner jwtSigner = null;
+            if (getClient().isAccessTokenAsJwt()) {
+                jwtSigner = createAccessTokenAsJwt(accessToken, context);
+            }
+
+            boolean externalOk = externalUpdateTokenService.modifyAccessToken(accessToken, ExternalUpdateTokenContext.of(context, jwtSigner));
+            if (!externalOk) {
+                log.trace("External script forbids access token creation.");
+                return null;
+            }
+
+            if (getClient().isAccessTokenAsJwt() && jwtSigner != null) {
+                final String accessTokenCode = jwtSigner.sign().toString();
+                if (log.isTraceEnabled())
+                    log.trace("Created access token JWT: {}", accessTokenCode + ", claims: " + jwtSigner.getJwt().getClaims().toJsonString());
+
+                accessToken.setCode(accessTokenCode);
+            }
+
+            final TokenLdap tokenEntity = asToken(accessToken);
+            context.setAccessTokenEntity(tokenEntity);
+
+            persist(tokenEntity);
+
+            statService.reportAccessToken(getGrantType());
+            metricService.incCounter(MetricType.OXAUTH_TOKEN_ACCESS_TOKEN_COUNT);
+
+            if (log.isTraceEnabled())
+                log.trace("Created plain access token: {}", accessToken.getCode());
+
+            return accessToken;
+        } catch (WebApplicationException e) {
+            throw e;
+        } catch (Exception e) {
+            log.error(e.getMessage(), e);
+            return null;
+        }
+    }
+
+    private JwtSigner createAccessTokenAsJwt(AccessToken accessToken, ExecutionContext context) throws Exception {
+        final User user = getUser();
+        final Client client = getClient();
+
+        SignatureAlgorithm signatureAlgorithm = SignatureAlgorithm
+                .fromString(appConfiguration.getDefaultSignatureAlgorithm());
+        if (client.getAccessTokenSigningAlg() != null
+                && SignatureAlgorithm.fromString(client.getAccessTokenSigningAlg()) != null) {
+            signatureAlgorithm = SignatureAlgorithm.fromString(client.getAccessTokenSigningAlg());
+        }
+
+        final JwtSigner jwtSigner = new JwtSigner(appConfiguration, webKeysConfiguration, signatureAlgorithm,
+                client.getClientId(), clientService.decryptSecret(client.getClientSecret()));
+        final Jwt jwt = jwtSigner.newJwt();
+        jwt.getClaims().setClaim("scope", Lists.newArrayList(getScopes()));
+        jwt.getClaims().setClaim("client_id", getClientId());
+        jwt.getClaims().setClaim("username", user != null ? user.getAttribute("displayName") : null);
+        jwt.getClaims().setClaim("token_type", accessToken.getTokenType().getName());
+        jwt.getClaims().setClaim("code", accessToken.getCode()); // guarantee uniqueness : without it we can get race condition
+        jwt.getClaims().setExpirationTime(accessToken.getExpirationDate());
+        jwt.getClaims().setIssuedAt(accessToken.getCreationDate());
+        jwt.getClaims().setSubjectIdentifier(getSub());
+        jwt.getClaims().setClaim("x5t#S256", accessToken.getX5ts256());
+        Audience.setAudience(jwt.getClaims(), getClient());
+
+        if (client.getAttributes().getRunIntrospectionScriptBeforeAccessTokenAsJwtCreationAndIncludeClaims()) {
+            runIntrospectionScriptAndInjectValuesIntoJwt(jwt, context);
+        }
+
+        return jwtSigner;
+    }
+
+    private void runIntrospectionScriptAndInjectValuesIntoJwt(Jwt jwt, ExecutionContext executionContext) {
+        JSONObject responseAsJsonObject = new JSONObject();
+
+        ExternalIntrospectionContext context = new ExternalIntrospectionContext(this, executionContext.getHttpRequest(), executionContext.getHttpResponse(), appConfiguration, attributeService);
+        context.setAccessTokenAsJwt(jwt);
+        if (externalIntrospectionService.executeExternalModifyResponse(responseAsJsonObject, context)) {
+            log.trace("Successfully run external introspection scripts.");
+
+            if (context.isTranferIntrospectionPropertiesIntoJwtClaims()) {
+                log.trace("Transfering claims into jwt ...");
+                JwtUtil.transferIntoJwtClaims(responseAsJsonObject, jwt);
+                log.trace("Transfered.");
+            }
+        }
+    }
+
+    @Override
+    public RefreshToken createRefreshToken(ExecutionContext executionContext) {
+        try {
+            final int refreshTokenLifetimeInSeconds = externalUpdateTokenService.getRefreshTokenLifetimeInSeconds(ExternalUpdateTokenContext.of(executionContext));
+            executionContext.setRefreshTokenLifetimeFromScript(refreshTokenLifetimeInSeconds);
+
+            final RefreshToken refreshToken = super.createRefreshToken(executionContext);
+            if (refreshToken.getExpiresIn() > 0) {
+                final TokenLdap entity = asToken(refreshToken);
+                executionContext.setRefreshTokenEntity(entity);
+
+                boolean externalOk = externalUpdateTokenService.modifyRefreshToken(refreshToken, ExternalUpdateTokenContext.of(executionContext));
+                if (!externalOk) {
+                    log.trace("External script forbids refresh token creation.");
+                    return null;
+                }
+
+                persist(entity);
+            }
+
+            statService.reportRefreshToken(getGrantType());
+            metricService.incCounter(MetricType.OXAUTH_TOKEN_REFRESH_TOKEN_COUNT);
+
+            if (log.isTraceEnabled())
+                log.trace("Created refresh token: " + refreshToken.getCode());
+
+            return refreshToken;
+        } catch (Exception e) {
+            log.error(e.getMessage(), e);
+            return null;
+        }
+    }
+
+    public RefreshToken createRefreshToken(ExecutionContext executionContext, Date expirationDate) {
+        try {
+            RefreshToken refreshToken = new RefreshToken(HandleTokenFactory.generateHandleToken(), new Date(), expirationDate);
+
+            refreshToken.setAuthMode(getAcrValues());
+            refreshToken.setSessionDn(getSessionDn());
+
+            if (refreshToken.getExpiresIn() > 0) {
+                final TokenLdap entity = asToken(refreshToken);
+                executionContext.setRefreshTokenEntity(entity);
+
+                boolean externalOk = externalUpdateTokenService.modifyRefreshToken(refreshToken, ExternalUpdateTokenContext.of(executionContext));
+                if (!externalOk) {
+                    log.trace("External script forbids refresh token creation.");
+                    return null;
+                }
+
+                persist(entity);
+                statService.reportRefreshToken(getGrantType());
+                metricService.incCounter(MetricType.OXAUTH_TOKEN_REFRESH_TOKEN_COUNT);
+
+                if (log.isTraceEnabled())
+                    log.trace("Created refresh token: " + refreshToken.getCode());
+
+                return refreshToken;
+            }
+
+            log.debug("Token expiration date is in the past. Skip creation.");
+            return null;
+        } catch (Exception e) {
+            log.error(e.getMessage(), e);
+            return null;
+        }
+    }
+
+    @Override
+    public IdToken createIdToken(
+            String nonce, AuthorizationCode authorizationCode, AccessToken accessToken, RefreshToken refreshToken,
+            String state, AuthorizationGrant authorizationGrant, boolean includeIdTokenClaims, Function<JsonWebResponse, Void> preProcessing,
+            Function<JsonWebResponse, Void> postProcessing, ExecutionContext executionContext) {
+        try {
+            final IdToken idToken = createIdToken(this, nonce, authorizationCode, accessToken, refreshToken,
+                    state, getScopes(), includeIdTokenClaims, preProcessing, postProcessing, executionContext);
+            final String acrValues = authorizationGrant.getAcrValues();
+            final String sessionDn = authorizationGrant.getSessionDn();
+            if (idToken.getExpiresIn() > 0) {
+                final TokenLdap tokenLdap = asToken(idToken);
+                tokenLdap.setAuthMode(acrValues);
+                tokenLdap.setSessionDn(sessionDn);
+                persist(tokenLdap);
+            }
+
+            setAcrValues(acrValues);
+            setSessionDn(sessionDn);
+
+            statService.reportIdToken(getGrantType());
+            metricService.incCounter(MetricType.OXAUTH_TOKEN_ID_TOKEN_COUNT);
+
+            return idToken;
+        } catch (WebApplicationException e) {
+            throw e;
+        } catch (Exception e) {
+            log.error(e.getMessage(), e);
+            return null;
+        }
+    }
+
+    public void persist(TokenLdap p_token) {
+        grantService.persist(p_token);
+    }
+
+    public void persist(AuthorizationCode p_code) {
+        persist(asToken(p_code));
+    }
+
+    public TokenLdap asToken(IdToken p_token) {
+        final TokenLdap result = asTokenLdap(p_token);
+        result.setTokenTypeEnum(org.gluu.oxauth.model.ldap.TokenType.ID_TOKEN);
+        return result;
+    }
+
+    public TokenLdap asToken(RefreshToken p_token) {
+        final TokenLdap result = asTokenLdap(p_token);
+        result.setTokenTypeEnum(org.gluu.oxauth.model.ldap.TokenType.REFRESH_TOKEN);
+        return result;
+    }
+
+    public TokenLdap asToken(AuthorizationCode p_authorizationCode) {
+        final TokenLdap result = asTokenLdap(p_authorizationCode);
+        result.setTokenTypeEnum(org.gluu.oxauth.model.ldap.TokenType.AUTHORIZATION_CODE);
+        return result;
+    }
+
+    public TokenLdap asToken(AccessToken p_accessToken) {
+        final TokenLdap result = asTokenLdap(p_accessToken);
+        result.setTokenTypeEnum(org.gluu.oxauth.model.ldap.TokenType.ACCESS_TOKEN);
+        return result;
+    }
+
+    public String getScopesAsString() {
+        final StringBuilder scopes = new StringBuilder();
+        for (String s : getScopes()) {
+            scopes.append(s).append(" ");
+        }
+        return scopes.toString().trim();
+    }
+
+    public TokenLdap asTokenLdap(AbstractToken p_token) {
+
+        final TokenLdap result = new TokenLdap();
+        final String hashedCode = TokenHashUtil.hash(p_token.getCode());
+
+        result.setDn(grantService.buildDn(hashedCode));
+        result.setGrantId(getGrantId());
+        result.setCreationDate(p_token.getCreationDate());
+        result.setExpirationDate(p_token.getExpirationDate());
+        result.setTtl(p_token.getTtl());
+        result.setTokenCode(hashedCode);
+        result.setUserId(getUserId());
+        result.setClientId(getClientId());
+
+        result.getAttributes().setX5cs256(p_token.getX5ts256());
+
+        final AuthorizationGrantType grantType = getAuthorizationGrantType();
+        if (grantType != null) {
+            result.setGrantType(grantType.getParamName());
+        }
+
+        final AuthorizationCode authorizationCode = getAuthorizationCode();
+        if (authorizationCode != null) {
+            result.setAuthorizationCode(TokenHashUtil.hash(authorizationCode.getCode()));
+        }
+
+        initTokenFromGrant(result);
+
+        return result;
+    }
+
+    @Override
+    public void revokeAllTokens() {
+        final TokenLdap tokenLdap = getTokenLdap();
+        if (tokenLdap != null && StringUtils.isNotBlank(tokenLdap.getGrantId())) {
+            grantService.removeAllByGrantId(tokenLdap.getGrantId());
+        }
+    }
+
+    @Override
+    public void checkExpiredTokens() {
+        // do nothing, clean up is made via grant service:
+        // org.gluu.oxauth.service.GrantService.cleanUp()
+    }
+
+    public String getSub() {
+        return sectorIdentifierService.getSub(this);
+    }
+
+    public boolean isCachedWithNoPersistence() {
+        return isCachedWithNoPersistence;
+    }
+
+    public void setIsCachedWithNoPersistence(boolean isCachedWithNoPersistence) {
+        this.isCachedWithNoPersistence = isCachedWithNoPersistence;
+    }
+}
\ No newline at end of file
diff --git a/oxAuth/Server/src/main/java/org/gluu/oxauth/model/common/AuthorizationGrantList.java b/oxAuth/Server/src/main/java/org/gluu/oxauth/model/common/AuthorizationGrantList.java
new file mode 100644
index 00000000..0cd28c93
--- /dev/null
+++ b/oxAuth/Server/src/main/java/org/gluu/oxauth/model/common/AuthorizationGrantList.java
@@ -0,0 +1,369 @@
+/*
+ * oxAuth is available under the MIT License (2008). See http://opensource.org/licenses/MIT for full text.
+ *
+ * Copyright (c) 2014, Gluu
+ */
+
+package org.gluu.oxauth.model.common;
+
+import org.apache.commons.lang.StringUtils;
+import org.gluu.model.metric.MetricType;
+import org.gluu.oxauth.model.authorize.JwtAuthorizationRequest;
+import org.gluu.oxauth.model.configuration.AppConfiguration;
+import org.gluu.oxauth.model.crypto.AbstractCryptoProvider;
+import org.gluu.oxauth.model.ldap.TokenLdap;
+import org.gluu.oxauth.model.ldap.TokenType;
+import org.gluu.oxauth.model.registration.Client;
+import org.gluu.oxauth.model.util.Util;
+import org.gluu.oxauth.service.ClientService;
+import org.gluu.oxauth.service.GrantService;
+import org.gluu.oxauth.service.MetricService;
+import org.gluu.oxauth.service.common.UserService;
+import org.gluu.oxauth.util.ServerUtil;
+import org.gluu.oxauth.util.TokenHashUtil;
+import org.gluu.service.CacheService;
+import org.gluu.util.StringHelper;
+import org.slf4j.Logger;
+
+import javax.enterprise.context.Dependent;
+import javax.enterprise.inject.Instance;
+import javax.inject.Inject;
+import java.util.ArrayList;
+import java.util.Arrays;
+import java.util.Date;
+import java.util.List;
+
+/**
+ * Component to hold in memory authorization grant objects.
+ *
+ * @author Javier Rojas Blum
+ * @version February 25, 2020
+ */
+@Dependent
+public class AuthorizationGrantList implements IAuthorizationGrantList {
+
+    @Inject
+    private Logger log;
+
+    @Inject
+    private Instance<AbstractAuthorizationGrant> grantInstance;
+
+    @Inject
+    private GrantService grantService;
+
+    @Inject
+    private UserService userService;
+
+    @Inject
+    private ClientService clientService;
+
+    @Inject
+    private AppConfiguration appConfiguration;
+
+    @Inject
+    private CacheService cacheService;
+
+    @Inject
+    private AbstractCryptoProvider cryptoProvider;
+
+	@Inject
+	private MetricService metricService;
+
+    @Override
+    public void removeAuthorizationGrants(List<AuthorizationGrant> authorizationGrants) {
+        if (authorizationGrants != null && !authorizationGrants.isEmpty()) {
+            for (AuthorizationGrant r : authorizationGrants) {
+                grantService.remove(r);
+            }
+        }
+    }
+
+    @Override
+    public AuthorizationGrant createAuthorizationGrant(User user, Client client, Date authenticationTime) {
+        AuthorizationGrant grant = grantInstance.select(SimpleAuthorizationGrant.class).get();
+        grant.init(user, null, client, authenticationTime);
+
+        return grant;
+    }
+
+    @Override
+    public AuthorizationCodeGrant createAuthorizationCodeGrant(User user, Client client, Date authenticationTime) {
+        AuthorizationCodeGrant grant = grantInstance.select(AuthorizationCodeGrant.class).get();
+        grant.init(user, client, authenticationTime);
+
+        CacheGrant memcachedGrant = new CacheGrant(grant, appConfiguration);
+        cacheService.put(grant.getAuthorizationCode().getExpiresIn(), memcachedGrant.cacheKey(), memcachedGrant);
+        log.trace("Put authorization grant in cache, code: " + grant.getAuthorizationCode().getCode() + ", clientId: " + grant.getClientId());
+        
+        metricService.incCounter(MetricType.OXAUTH_TOKEN_AUTHORIZATION_CODE_COUNT);
+        return grant;
+    }
+
+    @Override
+    public ImplicitGrant createImplicitGrant(User user, Client client, Date authenticationTime) {
+        ImplicitGrant grant = grantInstance.select(ImplicitGrant.class).get();
+        grant.init(user, client, authenticationTime);
+
+        return grant;
+    }
+
+    @Override
+    public ClientCredentialsGrant createClientCredentialsGrant(User user, Client client) {
+        ClientCredentialsGrant grant = grantInstance.select(ClientCredentialsGrant.class).get();
+        grant.init(user, client);
+
+        return grant;
+    }
+
+    @Override
+    public ResourceOwnerPasswordCredentialsGrant createResourceOwnerPasswordCredentialsGrant(User user, Client client) {
+        ResourceOwnerPasswordCredentialsGrant grant = grantInstance.select(ResourceOwnerPasswordCredentialsGrant.class).get();
+        grant.init(user, client);
+
+        return grant;
+    }
+
+    @Override
+    public CIBAGrant createCIBAGrant(CibaRequestCacheControl request) {
+        CIBAGrant grant = grantInstance.select(CIBAGrant.class).get();
+        grant.init(request);
+
+        CacheGrant memcachedGrant = new CacheGrant(grant, appConfiguration);
+        cacheService.put(request.getExpiresIn(), memcachedGrant.getAuthReqId(), memcachedGrant);
+        log.trace("Ciba grant saved in cache, authReqId: {}, grantId: {}", grant.getAuthReqId(), grant.getGrantId());
+        return grant;
+    }
+
+    @Override
+    public CIBAGrant getCIBAGrant(String authReqId) {
+        Object cachedGrant = cacheService.get(authReqId);
+        if (cachedGrant == null) {
+            // retry one time : sometimes during high load cache client may be not fast enough
+            cachedGrant = cacheService.get(authReqId);
+            log.trace("Failed to fetch CIBA grant from cache, authReqId: {}", authReqId);
+        }
+        return cachedGrant instanceof CacheGrant ? ((CacheGrant) cachedGrant).asCibaGrant(grantInstance) : null;
+    }
+
+    @Override
+    public DeviceCodeGrant createDeviceGrant(DeviceAuthorizationCacheControl data, User user) {
+        DeviceCodeGrant grant = grantInstance.select(DeviceCodeGrant.class).get();
+        grant.init(data, user);
+
+        CacheGrant memcachedGrant = new CacheGrant(grant, appConfiguration);
+        cacheService.put(data.getExpiresIn(), memcachedGrant.getDeviceCode(), memcachedGrant);
+        log.trace("Device code grant saved in cache, deviceCode: {}, grantId: {}", grant.getDeviceCode(), grant.getGrantId());
+        return grant;
+    }
+
+    @Override
+    public DeviceCodeGrant getDeviceCodeGrant(String deviceCode) {
+        Object cachedGrant = cacheService.get(deviceCode);
+        if (cachedGrant == null) {
+            // retry one time : sometimes during high load cache client may be not fast enough
+            cachedGrant = cacheService.get(deviceCode);
+            log.trace("Failed to fetch Device code grant from cache, deviceCode: {}", deviceCode);
+        }
+        return cachedGrant instanceof CacheGrant ? ((CacheGrant) cachedGrant).asDeviceCodeGrant(grantInstance) : null;
+    }
+
+    @Override
+    public AuthorizationCodeGrant getAuthorizationCodeGrant(String authorizationCode) {
+        Object cachedGrant = cacheService.get(CacheGrant.cacheKey(authorizationCode, null));
+        if (cachedGrant == null) {
+            // retry one time : sometimes during high load cache client may be not fast enough
+            cachedGrant = cacheService.get(CacheGrant.cacheKey(authorizationCode, null));
+            log.trace("Failed to fetch authorization grant from cache, code: " + authorizationCode);
+        }
+        return cachedGrant instanceof CacheGrant ? ((CacheGrant) cachedGrant).asCodeGrant(grantInstance) : null;
+    }
+
+    @Override
+    public AuthorizationGrant getAuthorizationGrantByRefreshToken(String clientId, String refreshTokenCode) {
+        if (!ServerUtil.isTrue(appConfiguration.getPersistRefreshTokenInLdap())) {
+            return assertTokenType((TokenLdap) cacheService.get(TokenHashUtil.hash(refreshTokenCode)), TokenType.REFRESH_TOKEN, clientId);
+        }
+        return assertTokenType(grantService.getGrantByCode(refreshTokenCode), TokenType.REFRESH_TOKEN, clientId);
+    }
+
+    public AuthorizationGrant assertTokenType(TokenLdap tokenLdap, TokenType tokenType, String clientId) {
+        if (tokenLdap == null || tokenLdap.getTokenTypeEnum() != tokenType) {
+            return null;
+        }
+
+        final AuthorizationGrant grant = asGrant(tokenLdap);
+        if (grant == null || !grant.getClientId().equals(clientId)) {
+            return null;
+        }
+        return grant;
+    }
+
+    @Override
+    public List<AuthorizationGrant> getAuthorizationGrant(String clientId) {
+        final List<AuthorizationGrant> result = new ArrayList<>();
+        try {
+            final List<TokenLdap> entries = new ArrayList<TokenLdap>();
+            entries.addAll(grantService.getGrantsOfClient(clientId));
+            entries.addAll(grantService.getCacheClientTokensEntries(clientId));
+
+            for (TokenLdap t : entries) {
+                final AuthorizationGrant grant = asGrant(t);
+                if (grant != null) {
+                    result.add(grant);
+                }
+            }
+        } catch (Exception e) {
+            log.trace(e.getMessage(), e);
+        }
+        return result;
+    }
+
+    @Override
+    public AuthorizationGrant getAuthorizationGrantByAccessToken(String accessToken) {
+        return getAuthorizationGrantByAccessToken(accessToken, false);
+    }
+
+    public AuthorizationGrant getAuthorizationGrantByAccessToken(String accessToken, boolean onlyFromCache) {
+        final TokenLdap tokenLdap = grantService.getGrantByCode(accessToken);
+        if (tokenLdap != null    && (tokenLdap.getTokenTypeEnum() == org.gluu.oxauth.model.ldap.TokenType.ACCESS_TOKEN || tokenLdap.getTokenTypeEnum() == org.gluu.oxauth.model.ldap.TokenType.LONG_LIVED_ACCESS_TOKEN)) {
+            return asGrant(tokenLdap);
+        }
+        return null;
+    }
+
+    @Override
+    public AuthorizationGrant getAuthorizationGrantByIdToken(String idToken) {
+        if (StringUtils.isBlank(idToken)) {
+            return null;
+        }
+        final TokenLdap tokenLdap = grantService.getGrantByCode(idToken);
+        if (tokenLdap != null && (tokenLdap.getTokenTypeEnum() == org.gluu.oxauth.model.ldap.TokenType.ID_TOKEN)) {
+            return asGrant(tokenLdap);
+        }
+        return null;
+    }
+
+    public AuthorizationGrant asGrant(TokenLdap tokenLdap) {
+        if (tokenLdap != null) {
+            final AuthorizationGrantType grantType = AuthorizationGrantType.fromString(tokenLdap.getGrantType());
+            if (grantType != null) {
+            	String userId = tokenLdap.getUserId();
+            	User user = null;
+            	if (StringHelper.isNotEmpty(userId)) {
+                    user = userService.getUser(userId);
+            	}
+                final Client client = clientService.getClient(tokenLdap.getClientId());
+                final Date authenticationTime = tokenLdap.getAuthenticationTime();
+                final String nonce = tokenLdap.getNonce();
+
+                AuthorizationGrant result;
+                switch (grantType) {
+                    case AUTHORIZATION_CODE:
+                        AuthorizationCodeGrant authorizationCodeGrant = grantInstance.select(AuthorizationCodeGrant.class).get();
+                        authorizationCodeGrant.init(user, client, authenticationTime);
+
+                        result = authorizationCodeGrant;
+                        break;
+                    case CLIENT_CREDENTIALS:
+                        ClientCredentialsGrant clientCredentialsGrant = grantInstance.select(ClientCredentialsGrant.class).get();
+                        clientCredentialsGrant.init(user, client);
+
+                        result = clientCredentialsGrant;
+                        break;
+                    case IMPLICIT:
+                        ImplicitGrant implicitGrant = grantInstance.select(ImplicitGrant.class).get();
+                        implicitGrant.init(user, client, authenticationTime);
+
+                        result = implicitGrant;
+                        break;
+                    case RESOURCE_OWNER_PASSWORD_CREDENTIALS:
+                        ResourceOwnerPasswordCredentialsGrant resourceOwnerPasswordCredentialsGrant = grantInstance.select(ResourceOwnerPasswordCredentialsGrant.class).get();
+                        resourceOwnerPasswordCredentialsGrant.init(user, client);
+
+                        result = resourceOwnerPasswordCredentialsGrant;
+                        break;
+                    case CIBA:
+                        CIBAGrant cibaGrant = grantInstance.select(CIBAGrant.class).get();
+                        cibaGrant.init(user, AuthorizationGrantType.CIBA, client, tokenLdap.getCreationDate());
+
+                        result = cibaGrant;
+                        break;
+                    case DEVICE_CODE:
+                        DeviceCodeGrant deviceCodeGrant = grantInstance.select(DeviceCodeGrant.class).get();
+                        deviceCodeGrant.init(user, AuthorizationGrantType.DEVICE_CODE, client, tokenLdap.getCreationDate());
+
+                        result = deviceCodeGrant;
+                        break;
+                    default:
+                        return null;
+                }
+
+                final String grantId = tokenLdap.getGrantId();
+                final String jwtRequest = tokenLdap.getJwtRequest();
+                final String authMode = tokenLdap.getAuthMode();
+                final String sessionDn = tokenLdap.getSessionDn();
+                final String claims = tokenLdap.getClaims();
+
+                result.setTokenBindingHash(tokenLdap.getTokenBindingHash());
+                result.setNonce(nonce);
+                result.setX5ts256(tokenLdap.getAttributes().getX5cs256());
+                result.setTokenLdap(tokenLdap);
+                if (StringUtils.isNotBlank(grantId)) {
+                    result.setGrantId(grantId);
+                }
+                result.setScopes(Util.splittedStringAsList(tokenLdap.getScope(), " "));
+
+                result.setCodeChallenge(tokenLdap.getCodeChallenge());
+                result.setCodeChallengeMethod(tokenLdap.getCodeChallengeMethod());
+
+                if (StringUtils.isNotBlank(jwtRequest)) {
+                    try {
+                        result.setJwtAuthorizationRequest(new JwtAuthorizationRequest(appConfiguration, cryptoProvider, jwtRequest, client));
+                    } catch (Exception e) {
+                        log.trace(e.getMessage(), e);
+                    }
+                }
+
+                result.setAcrValues(authMode);
+                result.setSessionDn(sessionDn);
+                result.setClaims(claims);
+
+                if (tokenLdap.getTokenTypeEnum() != null) {
+                    switch (tokenLdap.getTokenTypeEnum()) {
+                        case AUTHORIZATION_CODE:
+                            if (result instanceof AuthorizationCodeGrant) {
+                                final AuthorizationCode code = new AuthorizationCode(tokenLdap.getTokenCode(), tokenLdap.getCreationDate(), tokenLdap.getExpirationDate());
+                                final AuthorizationCodeGrant g = (AuthorizationCodeGrant) result;
+                                code.setX5ts256(g.getX5ts256());
+                                g.setAuthorizationCode(code);
+                            }
+                            break;
+                        case REFRESH_TOKEN:
+                            final RefreshToken refreshToken = new RefreshToken(tokenLdap.getTokenCode(), tokenLdap.getCreationDate(), tokenLdap.getExpirationDate());
+                            refreshToken.setX5ts256(result.getX5ts256());
+                            result.setRefreshTokens(Arrays.asList(refreshToken));
+                            break;
+                        case ACCESS_TOKEN:
+                            final AccessToken accessToken = new AccessToken(tokenLdap.getTokenCode(), tokenLdap.getCreationDate(), tokenLdap.getExpirationDate());
+                            accessToken.setX5ts256(result.getX5ts256());
+                            result.setAccessTokens(Arrays.asList(accessToken));
+                            break;
+                        case ID_TOKEN:
+                            final IdToken idToken = new IdToken(tokenLdap.getTokenCode(), tokenLdap.getCreationDate(), tokenLdap.getExpirationDate());
+                            idToken.setX5ts256(result.getX5ts256());
+                            result.setIdToken(idToken);
+                            break;
+                        case LONG_LIVED_ACCESS_TOKEN:
+                            final AccessToken longLivedAccessToken = new AccessToken(tokenLdap.getTokenCode(), tokenLdap.getCreationDate(), tokenLdap.getExpirationDate());
+                            longLivedAccessToken.setX5ts256(result.getX5ts256());
+                            result.setLongLivedAccessToken(longLivedAccessToken);
+                            break;
+                    }
+                }
+                return result;
+            }
+        }
+        return null;
+    }
+
+}
diff --git a/oxAuth/Server/src/main/java/org/gluu/oxauth/model/common/AuthorizationGrantType.java b/oxAuth/Server/src/main/java/org/gluu/oxauth/model/common/AuthorizationGrantType.java
new file mode 100644
index 00000000..769d61e6
--- /dev/null
+++ b/oxAuth/Server/src/main/java/org/gluu/oxauth/model/common/AuthorizationGrantType.java
@@ -0,0 +1,113 @@
+/*
+ * oxAuth is available under the MIT License (2008). See http://opensource.org/licenses/MIT for full text.
+ *
+ * Copyright (c) 2014, Gluu
+ */
+
+package org.gluu.oxauth.model.common;
+
+import com.fasterxml.jackson.annotation.JsonCreator;
+import com.fasterxml.jackson.annotation.JsonValue;
+
+/**
+ * An authorization grant is a credential representing the resource owner's
+ * authorization (to access its protected resources) used by the client to
+ * obtain an access token. This specification defines four grant types:
+ * authorization code, implicit, resource owner password credentials, and client
+ * credentials.
+ *
+ * @author Javier Rojas Blum
+ * @version August 20, 2019
+ */
+public enum AuthorizationGrantType implements HasParamName {
+
+	/**
+	 * The authorization code is obtained by using an authorization server as an
+	 * intermediary between the client and resource owner. Instead of requesting
+	 * authorization directly from the resource owner, the client directs the
+	 * resource owner to an authorization server (via its user- agent as defined
+	 * in [RFC2616]), which in turn directs the resource owner back to the
+	 * client with the authorization code.
+	 */
+	AUTHORIZATION_CODE("authorization_code"),
+	/**
+	 * The implicit grant is a simplified authorization code flow optimized for
+	 * clients implemented in a browser using a scripting language such as
+	 * JavaScript. In the implicit flow, instead of issuing the client an
+	 * authorization code, the client is issued an access token directly (as the
+	 * result of the resource owner authorization). The grant type is implicit
+	 * as no intermediate credentials (such as an authorization code) are issued
+	 * (and later used to obtain an access token).
+	 */
+	IMPLICIT("implicit"),
+	/**
+	 * The client credentials (or other forms of client authentication) can be
+	 * used as an authorization grant when the authorization scope is limited to
+	 * the protected resources under the control of the client, or to protected
+	 * resources previously arranged with the authorization server. Client
+	 * credentials are used as an authorization grant typically when the client
+	 * is acting on its own behalf (the client is also the resource owner), or
+	 * is requesting access to protected resources based on an authorization
+	 * previously arranged with the authorization server.
+	 */
+	CLIENT_CREDENTIALS("client_credentials"),
+	/**
+	 * The resource owner password credentials (i.e. username and password) can
+	 * be used directly as an authorization grant to obtain an access token. The
+	 * credentials should only be used when there is a high degree of trust
+	 * between the resource owner and the client (e.g. its device operating
+	 * system or a highly privileged application), and when other authorization
+	 * grant types are not available (such as an authorization code).
+	 */
+	RESOURCE_OWNER_PASSWORD_CREDENTIALS("resource_owner_password_credentials"),
+	/**
+	 * An extension grant for Client Initiated Backchannel Authentication.
+	 */
+	CIBA("urn:openid:params:grant-type:ciba"),
+
+	/**
+	 * Device Authorization Grant Type for OAuth 2.0
+	 */
+	DEVICE_CODE("urn:ietf:params:oauth:grant-type:device_code"),
+	;
+
+    private final String paramName;
+
+    private AuthorizationGrantType(String paramName) {
+        this.paramName = paramName;
+    }
+
+    /**
+     * Returns the corresponding {@link AuthorizationGrantType} for a given parameter.
+     *
+     * @param param The parameter.
+     * @return The corresponding authorization grant type if found, otherwise
+     *         <code>null</code>.
+     */
+    @JsonCreator
+    public static AuthorizationGrantType fromString(String param) {
+        if (param != null) {
+            for (AuthorizationGrantType agt : AuthorizationGrantType.values()) {
+                if (param.equals(agt.paramName)) {
+                    return agt;
+                }
+            }
+        }
+        return null;
+    }
+
+    /**
+     * Returns a string representation of the object. In this case the parameter
+     * name for the authorization grant type parameter.
+     */
+    @Override
+    @JsonValue
+    public String toString() {
+        return paramName;
+    }
+
+    @Override
+    public String getParamName() {
+        return paramName;
+    }
+}
\ No newline at end of file
diff --git a/oxAuth/Server/src/main/java/org/gluu/oxauth/model/common/CIBAGrant.java b/oxAuth/Server/src/main/java/org/gluu/oxauth/model/common/CIBAGrant.java
new file mode 100644
index 00000000..a0f617e2
--- /dev/null
+++ b/oxAuth/Server/src/main/java/org/gluu/oxauth/model/common/CIBAGrant.java
@@ -0,0 +1,65 @@
+/*
+ * oxAuth is available under the MIT License (2008). See http://opensource.org/licenses/MIT for full text.
+ *
+ * Copyright (c) 2014, Gluu
+ */
+
+package org.gluu.oxauth.model.common;
+
+import org.gluu.service.CacheService;
+
+import javax.inject.Inject;
+
+/**
+ * An extension grant with the grant type value: urn:openid:params:grant-type:ciba
+ *
+ * @author Javier Rojas Blum
+ * @version May 5, 2020
+ */
+public class CIBAGrant extends AuthorizationGrant {
+
+    private String authReqId;
+    private boolean tokensDelivered;
+
+    @Inject
+    private CacheService cacheService;
+
+    public CIBAGrant() {
+    }
+
+    @Override
+    public GrantType getGrantType() {
+        return GrantType.CIBA;
+    }
+
+    public void init(CibaRequestCacheControl cibaRequest) {
+        super.init(cibaRequest.getUser(), AuthorizationGrantType.CIBA, cibaRequest.getClient(), null);
+        setAuthReqId(cibaRequest.getAuthReqId());
+        setAcrValues(cibaRequest.getAcrValues());
+        setScopes(cibaRequest.getScopes());
+        setIsCachedWithNoPersistence(true);
+    }
+
+    @Override
+    public void save() {
+        CacheGrant cachedGrant = new CacheGrant(this, appConfiguration);
+        cacheService.put(cachedGrant.getExpiresIn(), cachedGrant.getAuthReqId(), cachedGrant);
+    }
+
+    public String getAuthReqId() {
+        return authReqId;
+    }
+
+    public void setAuthReqId(String authReqId) {
+        this.authReqId = authReqId;
+    }
+
+    public boolean isTokensDelivered() {
+        return tokensDelivered;
+    }
+
+    public void setTokensDelivered(boolean tokensDelivered) {
+        this.tokensDelivered = tokensDelivered;
+    }
+
+}
diff --git a/oxAuth/Server/src/main/java/org/gluu/oxauth/model/common/CacheGrant.java b/oxAuth/Server/src/main/java/org/gluu/oxauth/model/common/CacheGrant.java
new file mode 100644
index 00000000..f909412e
--- /dev/null
+++ b/oxAuth/Server/src/main/java/org/gluu/oxauth/model/common/CacheGrant.java
@@ -0,0 +1,328 @@
+/*
+ * oxAuth is available under the MIT License (2008). See http://opensource.org/licenses/MIT for full text.
+ *
+ * Copyright (c) 2014, Gluu
+ */
+
+package org.gluu.oxauth.model.common;
+
+import org.apache.commons.lang.StringUtils;
+import org.gluu.oxauth.model.configuration.AppConfiguration;
+import org.gluu.oxauth.model.registration.Client;
+
+import javax.enterprise.inject.Instance;
+import java.io.Serializable;
+import java.util.Date;
+import java.util.Set;
+
+/**
+ * @author yuriyz
+ * @version November 28, 2018
+ */
+public class CacheGrant implements Serializable {
+
+    private String authorizationCodeString;
+    private Date authorizationCodeCreationDate;
+    private Date authorizationCodeExpirationDate;
+
+    private User user;
+    private Client client;
+    private Date authenticationTime;
+    private Set<String> scopes;
+    private String grantId;
+    private String tokenBindingHash;
+    private String nonce;
+    private String codeChallenge;
+    private String codeChallengeMethod;
+    private String claims;
+    private String deviceCode;
+
+    private String acrValues;
+    private String sessionDn;
+    private int expiresIn = 1;
+
+    // CIBA
+    private String authReqId;
+    private boolean tokensDelivered;
+
+
+    public CacheGrant() {
+    }
+
+    public CacheGrant(AuthorizationGrant grant, AppConfiguration appConfiguration) {
+        if (grant.getAuthorizationCode() != null) {
+            authorizationCodeString = grant.getAuthorizationCode().getCode();
+            authorizationCodeCreationDate = grant.getAuthorizationCode().getCreationDate();
+            authorizationCodeExpirationDate = grant.getAuthorizationCode().getExpirationDate();
+        }
+        initExpiresIn(grant, appConfiguration);
+
+        user = grant.getUser();
+        client = grant.getClient();
+        authenticationTime = grant.getAuthenticationTime();
+        scopes = grant.getScopes();
+        tokenBindingHash = grant.getTokenBindingHash();
+        grantId = grant.getGrantId();
+        nonce = grant.getNonce();
+        acrValues = grant.getAcrValues();
+        codeChallenge = grant.getCodeChallenge();
+        codeChallengeMethod = grant.getCodeChallengeMethod();
+        claims = grant.getClaims();
+        sessionDn = grant.getSessionDn();
+    }
+
+    public CacheGrant(CIBAGrant grant, AppConfiguration appConfiguration) {
+        if (grant.getAuthorizationCode() != null) {
+            authorizationCodeString = grant.getAuthorizationCode().getCode();
+            authorizationCodeCreationDate = grant.getAuthorizationCode().getCreationDate();
+            authorizationCodeExpirationDate = grant.getAuthorizationCode().getExpirationDate();
+        }
+        initExpiresIn(grant, appConfiguration);
+
+        user = grant.getUser();
+        client = grant.getClient();
+        authenticationTime = grant.getAuthenticationTime();
+        scopes = grant.getScopes();
+        tokenBindingHash = grant.getTokenBindingHash();
+        grantId = grant.getGrantId();
+        nonce = grant.getNonce();
+        acrValues = grant.getAcrValues();
+        codeChallenge = grant.getCodeChallenge();
+        codeChallengeMethod = grant.getCodeChallengeMethod();
+        claims = grant.getClaims();
+        sessionDn = grant.getSessionDn();
+
+        authReqId = grant.getAuthReqId();
+        tokensDelivered = grant.isTokensDelivered();
+    }
+
+    public CacheGrant(DeviceCodeGrant grant, AppConfiguration appConfiguration) {
+        if (grant.getAuthorizationCode() != null) {
+            authorizationCodeString = grant.getAuthorizationCode().getCode();
+            authorizationCodeCreationDate = grant.getAuthorizationCode().getCreationDate();
+            authorizationCodeExpirationDate = grant.getAuthorizationCode().getExpirationDate();
+        }
+        initExpiresIn(grant, appConfiguration);
+
+        user = grant.getUser();
+        client = grant.getClient();
+        authenticationTime = grant.getAuthenticationTime();
+        scopes = grant.getScopes();
+        tokenBindingHash = grant.getTokenBindingHash();
+        grantId = grant.getGrantId();
+        nonce = grant.getNonce();
+        acrValues = grant.getAcrValues();
+        codeChallenge = grant.getCodeChallenge();
+        codeChallengeMethod = grant.getCodeChallengeMethod();
+        claims = grant.getClaims();
+        sessionDn = grant.getSessionDn();
+        deviceCode = grant.getDeviceCode();
+    }
+
+    private void initExpiresIn(AuthorizationGrant grant, AppConfiguration appConfiguration) {
+        if (grant.getAuthorizationCode() != null) {
+            expiresIn = grant.getAuthorizationCode().getExpiresIn();
+        } else {
+            expiresIn = appConfiguration.getAccessTokenLifetime();
+            // oxAuth #830 Client-specific access token expiration
+            if (client != null && client.getAccessTokenLifetime() != null && client.getAccessTokenLifetime() > 0) {
+                expiresIn = client.getAccessTokenLifetime();
+            }
+        }
+    }
+
+    public int getExpiresIn() {
+        return expiresIn;
+    }
+
+    public Date getAuthorizationCodeCreationDate() {
+        return authorizationCodeCreationDate;
+    }
+
+    public User getUser() {
+        return user;
+    }
+
+    public void setUser(User user) {
+        this.user = user;
+    }
+
+    public Set<String> getScopes() {
+        return scopes;
+    }
+
+    public void setScopes(Set<String> scopes) {
+        this.scopes = scopes;
+    }
+
+    public String getGrantId() {
+        return grantId;
+    }
+
+    public void setGrantId(String grantId) {
+        this.grantId = grantId;
+    }
+
+    public Client getClient() {
+        return client;
+    }
+
+    public void setClient(Client client) {
+        this.client = client;
+    }
+
+    public Date getAuthenticationTime() {
+        return authenticationTime;
+    }
+
+    public void setAuthenticationTime(Date authenticationTime) {
+        this.authenticationTime = authenticationTime;
+    }
+
+    public String getAuthorizationCodeString() {
+        return authorizationCodeString;
+    }
+
+    public void setAuthorizationCodeString(String authorizationCodeString) {
+        this.authorizationCodeString = authorizationCodeString;
+    }
+
+    public String getNonce() {
+        return nonce;
+    }
+
+    public void setNonce(String nonce) {
+        this.nonce = nonce;
+    }
+
+    public String getCodeChallenge() {
+        return codeChallenge;
+    }
+
+    public void setCodeChallenge(String codeChallenge) {
+        this.codeChallenge = codeChallenge;
+    }
+
+    public String getCodeChallengeMethod() {
+        return codeChallengeMethod;
+    }
+
+    public void setCodeChallengeMethod(String codeChallengeMethod) {
+        this.codeChallengeMethod = codeChallengeMethod;
+    }
+
+    public String getClaims() {
+        return claims;
+    }
+
+    public void setClaims(String claims) {
+        this.claims = claims;
+    }
+
+    public String getAcrValues() {
+        return acrValues;
+    }
+
+    public void setAcrValues(String acrValues) {
+        this.acrValues = acrValues;
+    }
+
+    public String getSessionDn() {
+        return sessionDn;
+    }
+
+    public void setSessionDn(String sessionDn) {
+        this.sessionDn = sessionDn;
+    }
+
+    public AuthorizationCodeGrant asCodeGrant(Instance<AbstractAuthorizationGrant> grantInstance) {
+        AuthorizationCodeGrant grant = grantInstance.select(AuthorizationCodeGrant.class).get();
+        grant.init(user, client, authenticationTime);
+
+        grant.setAuthorizationCode(new AuthorizationCode(authorizationCodeString, authorizationCodeCreationDate, authorizationCodeExpirationDate));
+        grant.setScopes(scopes);
+        grant.setGrantId(grantId);
+        grant.setSessionDn(sessionDn);
+        grant.setCodeChallenge(codeChallenge);
+        grant.setCodeChallengeMethod(codeChallengeMethod);
+        grant.setAcrValues(acrValues);
+        grant.setNonce(nonce);
+        grant.setClaims(claims);
+
+        return grant;
+    }
+
+    public CIBAGrant asCibaGrant(Instance<AbstractAuthorizationGrant> grantInstance) {
+        CIBAGrant grant = grantInstance.select(CIBAGrant.class).get();
+        grant.init(user, AuthorizationGrantType.CIBA,  client, authenticationTime);
+        grant.setScopes(scopes);
+        grant.setGrantId(grantId);
+        grant.setSessionDn(sessionDn);
+        grant.setCodeChallenge(codeChallenge);
+        grant.setCodeChallengeMethod(codeChallengeMethod);
+        grant.setAcrValues(acrValues);
+        grant.setNonce(nonce);
+        grant.setClaims(claims);
+        grant.setAuthReqId(authReqId);
+        grant.setTokensDelivered(tokensDelivered);
+
+        return grant;
+    }
+
+    public DeviceCodeGrant asDeviceCodeGrant(Instance<AbstractAuthorizationGrant> grantInstance) {
+        DeviceCodeGrant grant = grantInstance.select(DeviceCodeGrant.class).get();
+        grant.init(user, AuthorizationGrantType.DEVICE_CODE,  client, authenticationTime);
+        grant.setScopes(scopes);
+        grant.setGrantId(grantId);
+        grant.setSessionDn(sessionDn);
+        grant.setCodeChallenge(codeChallenge);
+        grant.setCodeChallengeMethod(codeChallengeMethod);
+        grant.setAcrValues(acrValues);
+        grant.setNonce(nonce);
+        grant.setClaims(claims);
+        grant.setDeviceCode(deviceCode);
+
+        return grant;
+    }
+
+    public String cacheKey() {
+        return cacheKey(authorizationCodeString, grantId);
+    }
+
+    public static String cacheKey(String code, String grantId) {
+        if (StringUtils.isBlank(code)) {
+            return grantId;
+        }
+        return code;
+    }
+
+    public String getAuthReqId() {
+        return authReqId;
+    }
+
+    public void setAuthReqId(String authReqId) {
+        this.authReqId = authReqId;
+    }
+
+    public boolean isTokensDelivered() {
+        return tokensDelivered;
+    }
+
+    public void setTokensDelivered(boolean tokensDelivered) {
+        this.tokensDelivered = tokensDelivered;
+    }
+
+    public String getDeviceCode() {
+        return deviceCode;
+    }
+
+    @Override
+    public String toString() {
+        return "MemcachedGrant{" +
+                "authorizationCode=" + authorizationCodeString +
+                ", user=" + user +
+                ", client=" + client +
+                ", authenticationTime=" + authenticationTime +
+                '}';
+    }
+}
diff --git a/oxAuth/Server/src/main/java/org/gluu/oxauth/model/common/CibaRequestCacheControl.java b/oxAuth/Server/src/main/java/org/gluu/oxauth/model/common/CibaRequestCacheControl.java
new file mode 100644
index 00000000..1c5653df
--- /dev/null
+++ b/oxAuth/Server/src/main/java/org/gluu/oxauth/model/common/CibaRequestCacheControl.java
@@ -0,0 +1,173 @@
+/*
+ * oxAuth is available under the MIT License (2008). See http://opensource.org/licenses/MIT for full text.
+ *
+ * Copyright (c) 2014, Gluu
+ */
+
+package org.gluu.oxauth.model.common;
+
+import org.gluu.oxauth.model.registration.Client;
+import org.gluu.oxauth.model.util.StringUtils;
+import org.gluu.oxauth.model.util.Util;
+
+import java.io.Serializable;
+import java.security.SecureRandom;
+import java.util.List;
+
+/**
+ * Class used to keep all data about a CIBA request that should be processed and saved in Cache.
+ *
+ * @author Milton BO
+ * @version June 2, 2020
+ */
+public class CibaRequestCacheControl implements Serializable {
+
+    private String authReqId;
+    private User user;
+    private Client client;
+    private List<String> scopes;
+
+    private int expiresIn = 1;
+    private String clientNotificationToken;
+    private String bindingMessage;
+    private Long lastAccessControl;
+    private CibaRequestStatus status;
+    private boolean tokensDelivered;
+    private String acrValues;
+
+    public CibaRequestCacheControl() {
+    }
+
+    public CibaRequestCacheControl(User user, Client client, int expiresIn, List<String> scopeList,
+                                   String clientNotificationToken, String bindingMessage, Long lastAccessControl,
+                                   String acrValues) {
+        this.authReqId = StringUtils.generateRandomCode((byte) 24); // Entropy above of 160 bits based on specs [RFC section 7.3]
+        this.user = user;
+        this.client = client;
+        this.scopes = scopeList;
+        this.status = CibaRequestStatus.PENDING;
+        this.expiresIn = expiresIn;
+        this.clientNotificationToken = clientNotificationToken;
+        this.bindingMessage = bindingMessage;
+        this.lastAccessControl = lastAccessControl;
+        this.tokensDelivered = false;
+        this.acrValues = acrValues;
+    }
+
+    public String cacheKey() {
+        return authReqId;
+    }
+
+    public String getScopesAsString() {
+        final StringBuilder scopes = new StringBuilder();
+        for (String s : getScopes()) {
+            scopes.append(s).append(" ");
+        }
+        return scopes.toString().trim();
+    }
+
+    public int getExpiresIn() {
+        return expiresIn;
+    }
+
+    public String getAuthReqId() {
+        return authReqId;
+    }
+
+    public void setAuthReqId(String authReqId) {
+        this.authReqId = authReqId;
+    }
+
+    public User getUser() {
+        return user;
+    }
+
+    public void setUser(User user) {
+        this.user = user;
+    }
+
+    public Client getClient() {
+        return client;
+    }
+
+    public void setClient(Client client) {
+        this.client = client;
+    }
+
+    public List<String> getScopes() {
+        return scopes;
+    }
+
+    public void setScopes(List<String> scopes) {
+        this.scopes = scopes;
+    }
+
+    public void setExpiresIn(int expiresIn) {
+        this.expiresIn = expiresIn;
+    }
+
+    public String getClientNotificationToken() {
+        return clientNotificationToken;
+    }
+
+    public void setClientNotificationToken(String clientNotificationToken) {
+        this.clientNotificationToken = clientNotificationToken;
+    }
+
+    public String getBindingMessage() {
+        return bindingMessage;
+    }
+
+    public void setBindingMessage(String bindingMessage) {
+        this.bindingMessage = bindingMessage;
+    }
+
+    public Long getLastAccessControl() {
+        return lastAccessControl;
+    }
+
+    public void setLastAccessControl(Long lastAccessControl) {
+        this.lastAccessControl = lastAccessControl;
+    }
+
+    public CibaRequestStatus getStatus() {
+        return status;
+    }
+
+    public void setStatus(CibaRequestStatus status) {
+        this.status = status;
+    }
+
+    public boolean isTokensDelivered() {
+        return tokensDelivered;
+    }
+
+    public void setTokensDelivered(boolean tokensDelivered) {
+        this.tokensDelivered = tokensDelivered;
+    }
+
+    public String getAcrValues() {
+        return acrValues;
+    }
+
+    public void setAcrValues(String acrValues) {
+        this.acrValues = acrValues;
+    }
+
+    @Override
+    public String toString() {
+        return "CibaRequestCacheControl{" +
+                ", authReqId='" + authReqId + '\'' +
+                ", user=" + user +
+                ", client=" + client +
+                ", scopes=" + scopes +
+                ", expiresIn=" + expiresIn +
+                ", clientNotificationToken='" + clientNotificationToken + '\'' +
+                ", bindingMessage='" + bindingMessage + '\'' +
+                ", lastAccessControl=" + lastAccessControl +
+                ", userAuthorization=" + status +
+                ", tokensDelivered=" + tokensDelivered +
+                ", acrValues='" + acrValues + '\'' +
+                '}';
+    }
+}
\ No newline at end of file
diff --git a/oxAuth/Server/src/main/java/org/gluu/oxauth/model/common/CibaRequestStatus.java b/oxAuth/Server/src/main/java/org/gluu/oxauth/model/common/CibaRequestStatus.java
new file mode 100644
index 00000000..e319d058
--- /dev/null
+++ b/oxAuth/Server/src/main/java/org/gluu/oxauth/model/common/CibaRequestStatus.java
@@ -0,0 +1,42 @@
+/*
+ * oxAuth is available under the MIT License (2008). See http://opensource.org/licenses/MIT for full text.
+ *
+ * Copyright (c) 2014, Gluu
+ */
+
+package org.gluu.oxauth.model.common;
+
+import org.apache.commons.lang.StringUtils;
+
+/**
+ * @author Javier Rojas Blum
+ * @version May 9, 2020
+ */
+public enum CibaRequestStatus {
+    PENDING("pending"),
+    GRANTED("granted"),
+    DENIED("denied"),
+    EXPIRED("expired"),
+    IN_PROCESS("in_process");
+
+    private final String value;
+
+    CibaRequestStatus(String name) {
+        value = name;
+    }
+
+    public String getValue() {
+        return value;
+    }
+
+    public static CibaRequestStatus fromValue(String value) {
+        if (StringUtils.isNotBlank(value)) {
+            for (CibaRequestStatus t : values()) {
+                if (t.getValue().endsWith(value)) {
+                    return t;
+                }
+            }
+        }
+        return null;
+    }
+}
diff --git a/oxAuth/Server/src/main/java/org/gluu/oxauth/model/common/ClientCredentialsGrant.java b/oxAuth/Server/src/main/java/org/gluu/oxauth/model/common/ClientCredentialsGrant.java
new file mode 100644
index 00000000..2646773a
--- /dev/null
+++ b/oxAuth/Server/src/main/java/org/gluu/oxauth/model/common/ClientCredentialsGrant.java
@@ -0,0 +1,56 @@
+/*
+ * oxAuth is available under the MIT License (2008). See http://opensource.org/licenses/MIT for full text.
+ *
+ * Copyright (c) 2014, Gluu
+ */
+
+package org.gluu.oxauth.model.common;
+
+import org.gluu.oxauth.model.registration.Client;
+
+/**
+ * The client credentials (or other forms of client authentication) can be used
+ * as an authorization grant when the authorization scope is limited to the
+ * protected resources under the control of the client, or to protected
+ * resources previously arranged with the authorization server. Client
+ * credentials are used as an authorization grant typically when the client is
+ * acting on its own behalf (the client is also the resource owner), or is
+ * requesting access to protected resources based on an authorization previously
+ * arranged with the authorization server.
+ *
+ * @author Javier Rojas Blum Date: 09.29.2011
+ * @author Yuriy Movchan
+ */
+public class ClientCredentialsGrant extends AuthorizationGrant {
+
+    public ClientCredentialsGrant() {}
+
+    /**
+     * Construct a client credentials grant.
+     *
+     * @param user   The resource owner.
+     * @param client An application making protected resource requests on behalf of
+     *               the resource owner and with its authorization.
+     */
+    public ClientCredentialsGrant(User user, Client client) {
+        init(user, client);
+    }
+
+    @Override
+    public GrantType getGrantType() {
+        return GrantType.CLIENT_CREDENTIALS;
+    }
+
+    public void init(User user, Client client) {
+        super.init(user, AuthorizationGrantType.CLIENT_CREDENTIALS, client, null);
+    }
+
+    /**
+     * The authorization server MUST NOT issue a refresh token.
+     */
+    @Override
+    public RefreshToken createRefreshToken(ExecutionContext executionContext) {
+        throw new UnsupportedOperationException(
+                "The authorization server MUST NOT issue a refresh token.");
+    }
+}
\ No newline at end of file
diff --git a/oxAuth/Server/src/main/java/org/gluu/oxauth/model/common/ClientTokens.java b/oxAuth/Server/src/main/java/org/gluu/oxauth/model/common/ClientTokens.java
new file mode 100644
index 00000000..bc18c805
--- /dev/null
+++ b/oxAuth/Server/src/main/java/org/gluu/oxauth/model/common/ClientTokens.java
@@ -0,0 +1,52 @@
+package org.gluu.oxauth.model.common;
+
+import com.google.common.base.Preconditions;
+import org.gluu.util.StringHelper;
+
+import java.io.Serializable;
+import java.util.HashSet;
+import java.util.Set;
+
+/**
+ * @author yuriyz
+ */
+@Deprecated // scheduled for removing
+public class ClientTokens implements Serializable {
+
+    private String clientId;
+
+    private Set<String> tokenHashes = new HashSet<String>();
+
+    public ClientTokens(String clientId) {
+        this.clientId = clientId;
+    }
+
+    public String getClientId() {
+        return clientId;
+    }
+
+    public void setClientId(String clientId) {
+        this.clientId = clientId;
+    }
+
+    public Set<String> getTokenHashes() {
+        return tokenHashes;
+    }
+
+    public void setTokenHashes(Set<String> tokenHashes) {
+        this.tokenHashes = tokenHashes;
+    }
+
+    public String cacheKey() {
+        Preconditions.checkState(StringHelper.isNotEmpty(clientId));
+        return clientId + "_tokens";
+    }
+
+    @Override
+    public String toString() {
+        return "ClientTokens{" +
+                "clientId='" + clientId + '\'' +
+                ", tokenHashes=" + tokenHashes +
+                '}';
+    }
+}
diff --git a/oxAuth/Server/src/main/java/org/gluu/oxauth/model/common/DefaultScope.java b/oxAuth/Server/src/main/java/org/gluu/oxauth/model/common/DefaultScope.java
new file mode 100644
index 00000000..c089f3a3
--- /dev/null
+++ b/oxAuth/Server/src/main/java/org/gluu/oxauth/model/common/DefaultScope.java
@@ -0,0 +1,49 @@
+/*
+ * oxAuth is available under the MIT License (2008). See http://opensource.org/licenses/MIT for full text.
+ *
+ * Copyright (c) 2014, Gluu
+ */
+
+package org.gluu.oxauth.model.common;
+
+/**
+ * @author Javier Rojas Date: 11.30.2011
+ */
+public enum DefaultScope {
+    OPEN_ID("openid"),
+    PROFILE("profile"),
+    EMAIL("email"),
+    ADDRESS("address"),
+    PHONE("phone");
+
+    private final String paramName;
+
+    private DefaultScope(String paramName) {
+        this.paramName = paramName;
+    }
+
+    /**
+     * Returns the corresponding {@link DefaultScope} for a default scope parameter.
+     *
+     * @param param The default scope parameter.
+     * @return The corresponding scope if found, otherwise <code>null</code>.
+     */
+    public static DefaultScope fromString(String param) {
+        if (param != null) {
+            for (DefaultScope ds : DefaultScope.values()) {
+                if (param.equals(ds.paramName)) {
+                    return ds;
+                }
+            }
+        }
+        return null;
+    }
+
+    /**
+     * Returns a string representation of the object. In this case the parameter name for the default scope.
+     */
+    @Override
+    public String toString() {
+        return paramName;
+    }
+}
diff --git a/oxAuth/Server/src/main/java/org/gluu/oxauth/model/common/DeviceAuthorizationCacheControl.java b/oxAuth/Server/src/main/java/org/gluu/oxauth/model/common/DeviceAuthorizationCacheControl.java
new file mode 100644
index 00000000..4c2cddaf
--- /dev/null
+++ b/oxAuth/Server/src/main/java/org/gluu/oxauth/model/common/DeviceAuthorizationCacheControl.java
@@ -0,0 +1,133 @@
+/*
+ * oxAuth is available under the MIT License (2008). See http://opensource.org/licenses/MIT for full text.
+ *
+ * Copyright (c) 2014, Gluu
+ */
+
+package org.gluu.oxauth.model.common;
+
+import org.gluu.oxauth.model.registration.Client;
+
+import java.io.Serializable;
+import java.net.URI;
+import java.util.List;
+
+/**
+ * Class used to keep all data about an OAuth2 Device Flow request.
+ */
+public class DeviceAuthorizationCacheControl implements Serializable {
+
+    private String userCode;
+    private String deviceCode;
+    private Client client;
+    private List<String> scopes;
+    private URI verificationUri;
+    private int expiresIn = 1;
+    private int interval = 5;
+    private long lastAccessControl;
+    private DeviceAuthorizationStatus status;
+
+    public DeviceAuthorizationCacheControl() {
+    }
+
+    public DeviceAuthorizationCacheControl(String userCode, String deviceCode, Client client, List<String> scopes,
+                                           URI verificationUri, int expiresIn, int interval, long lastAccessControl,
+                                           DeviceAuthorizationStatus status) {
+        this.userCode = userCode;
+        this.deviceCode = deviceCode;
+        this.client = client;
+        this.scopes = scopes;
+        this.verificationUri = verificationUri;
+        this.expiresIn = expiresIn;
+        this.interval = interval;
+        this.lastAccessControl = lastAccessControl;
+        this.status = status;
+    }
+
+    public String getUserCode() {
+        return userCode;
+    }
+
+    public void setUserCode(String userCode) {
+        this.userCode = userCode;
+    }
+
+    public String getDeviceCode() {
+        return deviceCode;
+    }
+
+    public void setDeviceCode(String deviceCode) {
+        this.deviceCode = deviceCode;
+    }
+
+    public Client getClient() {
+        return client;
+    }
+
+    public void setClient(Client client) {
+        this.client = client;
+    }
+
+    public List<String> getScopes() {
+        return scopes;
+    }
+
+    public void setScopes(List<String> scopes) {
+        this.scopes = scopes;
+    }
+
+    public URI getVerificationUri() {
+        return verificationUri;
+    }
+
+    public void setVerificationUri(URI verificationUri) {
+        this.verificationUri = verificationUri;
+    }
+
+    public int getExpiresIn() {
+        return expiresIn;
+    }
+
+    public void setExpiresIn(int expiresIn) {
+        this.expiresIn = expiresIn;
+    }
+
+    public int getInterval() {
+        return interval;
+    }
+
+    public void setInterval(int interval) {
+        this.interval = interval;
+    }
+
+    public Long getLastAccessControl() {
+        return lastAccessControl;
+    }
+
+    public void setLastAccessControl(long lastAccessControl) {
+        this.lastAccessControl = lastAccessControl;
+    }
+
+    public DeviceAuthorizationStatus getStatus() {
+        return status;
+    }
+
+    public void setStatus(DeviceAuthorizationStatus status) {
+        this.status = status;
+    }
+
+    @Override
+    public String toString() {
+        return "DeviceAuthorizationCacheControl{" +
+                "userCode='" + userCode + '\'' +
+                ", deviceCode='" + deviceCode + '\'' +
+                ", client=" + client +
+                ", scopes=" + scopes +
+                ", verificationUri='" + verificationUri + '\'' +
+                ", expiresIn=" + expiresIn +
+                ", interval=" + interval +
+                ", lastAccessControl=" + lastAccessControl +
+                ", status=" + status +
+                '}';
+    }
+}
\ No newline at end of file
diff --git a/oxAuth/Server/src/main/java/org/gluu/oxauth/model/common/DeviceAuthorizationStatus.java b/oxAuth/Server/src/main/java/org/gluu/oxauth/model/common/DeviceAuthorizationStatus.java
new file mode 100644
index 00000000..26206a66
--- /dev/null
+++ b/oxAuth/Server/src/main/java/org/gluu/oxauth/model/common/DeviceAuthorizationStatus.java
@@ -0,0 +1,27 @@
+/*
+ * oxAuth is available under the MIT License (2008). See http://opensource.org/licenses/MIT for full text.
+ *
+ * Copyright (c) 2014, Gluu
+ */
+
+package org.gluu.oxauth.model.common;
+
+/**
+ * Contains a list of values of  status for OAuth2 Device Flow requests.
+ */
+public enum DeviceAuthorizationStatus {
+    PENDING("pending"),
+    DENIED("denied"),
+    EXPIRED("expired");
+
+    private final String value;
+
+    DeviceAuthorizationStatus(String name) {
+        value = name;
+    }
+
+    public String getValue() {
+        return value;
+    }
+
+}
diff --git a/oxAuth/Server/src/main/java/org/gluu/oxauth/model/common/DeviceCodeGrant.java b/oxAuth/Server/src/main/java/org/gluu/oxauth/model/common/DeviceCodeGrant.java
new file mode 100644
index 00000000..eb66680a
--- /dev/null
+++ b/oxAuth/Server/src/main/java/org/gluu/oxauth/model/common/DeviceCodeGrant.java
@@ -0,0 +1,54 @@
+/*
+ * oxAuth is available under the MIT License (2008). See http://opensource.org/licenses/MIT for full text.
+ *
+ * Copyright (c) 2014, Gluu
+ */
+
+package org.gluu.oxauth.model.common;
+
+import org.apache.commons.lang.StringUtils;
+import org.gluu.service.CacheService;
+
+import javax.inject.Inject;
+
+/**
+ * An extension grant with the grant type value: urn:ietf:params:oauth:grant-type:device_code
+ */
+public class DeviceCodeGrant extends AuthorizationGrant {
+
+    private String deviceCode;
+
+    @Inject
+    private CacheService cacheService;
+
+    public DeviceCodeGrant() {
+    }
+
+    @Override
+    public GrantType getGrantType() {
+        return GrantType.DEVICE_CODE;
+    }
+
+    public void init(DeviceAuthorizationCacheControl cacheData, User user) {
+        super.init(user, AuthorizationGrantType.DEVICE_CODE, cacheData.getClient(), null);
+        setDeviceCode(cacheData.getDeviceCode());
+        setIsCachedWithNoPersistence(true);
+        setScopes(cacheData.getScopes());
+    }
+
+    @Override
+    public void save() {
+        CacheGrant cachedGrant = new CacheGrant(this, appConfiguration);
+        String cacheKey = StringUtils.isNotBlank(cachedGrant.getDeviceCode()) ? cachedGrant.getDeviceCode() : cachedGrant.getGrantId();
+        cacheService.put(cachedGrant.getExpiresIn(), cacheKey, cachedGrant);
+    }
+
+    public String getDeviceCode() {
+        return deviceCode;
+    }
+
+    public void setDeviceCode(String deviceCode) {
+        this.deviceCode = deviceCode;
+    }
+
+}
diff --git a/oxAuth/Server/src/main/java/org/gluu/oxauth/model/common/ExecutionContext.java b/oxAuth/Server/src/main/java/org/gluu/oxauth/model/common/ExecutionContext.java
new file mode 100644
index 00000000..ff6136a7
--- /dev/null
+++ b/oxAuth/Server/src/main/java/org/gluu/oxauth/model/common/ExecutionContext.java
@@ -0,0 +1,107 @@
+package org.gluu.oxauth.model.common;
+
+import org.gluu.oxauth.model.configuration.AppConfiguration;
+import org.gluu.oxauth.model.ldap.TokenLdap;
+import org.gluu.oxauth.model.registration.Client;
+import org.gluu.oxauth.service.AttributeService;
+
+import javax.servlet.http.HttpServletRequest;
+import javax.servlet.http.HttpServletResponse;
+
+/**
+ * @author Yuriy Zabrovarnyy
+ */
+public class ExecutionContext {
+
+    private final HttpServletRequest httpRequest;
+    private final HttpServletResponse httpResponse;
+
+    private Client client;
+    private AuthorizationGrant grant;
+
+    private TokenLdap idTokenEntity;
+    private TokenLdap accessTokenEntity;
+    private TokenLdap refreshTokenEntity;
+
+    private AppConfiguration appConfiguration;
+    private AttributeService attributeService;
+
+    private int refreshTokenLifetimeFromScript;
+
+    public ExecutionContext(HttpServletRequest httpRequest, HttpServletResponse httpResponse) {
+        this.httpRequest = httpRequest;
+        this.httpResponse = httpResponse;
+    }
+
+    public int getRefreshTokenLifetimeFromScript() {
+        return refreshTokenLifetimeFromScript;
+    }
+
+    public void setRefreshTokenLifetimeFromScript(int refreshTokenLifetimeFromScript) {
+        this.refreshTokenLifetimeFromScript = refreshTokenLifetimeFromScript;
+    }
+
+    public HttpServletRequest getHttpRequest() {
+        return httpRequest;
+    }
+
+    public HttpServletResponse getHttpResponse() {
+        return httpResponse;
+    }
+
+    public Client getClient() {
+        return client;
+    }
+
+    public void setClient(Client client) {
+        this.client = client;
+    }
+
+    public AuthorizationGrant getGrant() {
+        return grant;
+    }
+
+    public void setGrant(AuthorizationGrant grant) {
+        this.grant = grant;
+    }
+
+    public TokenLdap getIdTokenEntity() {
+        return idTokenEntity;
+    }
+
+    public void setIdTokenEntity(TokenLdap idTokenEntity) {
+        this.idTokenEntity = idTokenEntity;
+    }
+
+    public TokenLdap getAccessTokenEntity() {
+        return accessTokenEntity;
+    }
+
+    public void setAccessTokenEntity(TokenLdap accessTokenEntity) {
+        this.accessTokenEntity = accessTokenEntity;
+    }
+
+    public TokenLdap getRefreshTokenEntity() {
+        return refreshTokenEntity;
+    }
+
+    public void setRefreshTokenEntity(TokenLdap refreshTokenEntity) {
+        this.refreshTokenEntity = refreshTokenEntity;
+    }
+
+    public AppConfiguration getAppConfiguration() {
+        return appConfiguration;
+    }
+
+    public void setAppConfiguration(AppConfiguration appConfiguration) {
+        this.appConfiguration = appConfiguration;
+    }
+
+    public AttributeService getAttributeService() {
+        return attributeService;
+    }
+
+    public void setAttributeService(AttributeService attributeService) {
+        this.attributeService = attributeService;
+    }
+}
diff --git a/oxAuth/Server/src/main/java/org/gluu/oxauth/model/common/IAuthorizationGrant.java b/oxAuth/Server/src/main/java/org/gluu/oxauth/model/common/IAuthorizationGrant.java
new file mode 100644
index 00000000..5c0e796a
--- /dev/null
+++ b/oxAuth/Server/src/main/java/org/gluu/oxauth/model/common/IAuthorizationGrant.java
@@ -0,0 +1,124 @@
+/*
+ * oxAuth is available under the MIT License (2008). See http://opensource.org/licenses/MIT for full text.
+ *
+ * Copyright (c) 2014, Gluu
+ */
+
+package org.gluu.oxauth.model.common;
+
+import com.google.common.base.Function;
+import org.gluu.oxauth.model.authorize.JwtAuthorizationRequest;
+import org.gluu.oxauth.model.ldap.TokenLdap;
+import org.gluu.oxauth.model.registration.Client;
+import org.gluu.oxauth.model.token.JsonWebResponse;
+
+import java.util.Collection;
+import java.util.Date;
+import java.util.List;
+import java.util.Set;
+
+/**
+ * @author Yuriy Zabrovarnyy
+ * @author Javier Rojas Blum
+ * @version September 4, 2019
+ */
+
+public interface IAuthorizationGrant {
+
+    GrantType getGrantType();
+
+    String getGrantId();
+
+    void setGrantId(String p_grantId);
+
+    AuthorizationCode getAuthorizationCode();
+
+    void setAuthorizationCode(AuthorizationCode authorizationCode);
+
+    String getNonce();
+
+    void setNonce(String nonce);
+
+    String getSub();
+
+    AccessToken createAccessToken(String certAsPem, ExecutionContext executionContext);
+
+    RefreshToken createRefreshToken(ExecutionContext executionContext);
+
+    IdToken createIdToken(
+            String nonce, AuthorizationCode authorizationCode, AccessToken accessToken, RefreshToken refreshToken,
+            String state, AuthorizationGrant authorizationGrant, boolean includeIdTokenClaims,
+            Function<JsonWebResponse, Void> preProcessing, Function<JsonWebResponse, Void> postProcessing,
+            ExecutionContext executionContext);
+
+    RefreshToken getRefreshToken(String refreshTokenCode);
+
+    AbstractToken getAccessToken(String tokenCode);
+
+    void revokeAllTokens();
+
+    void checkExpiredTokens();
+
+    String checkScopesPolicy(String scope);
+
+    User getUser();
+
+    String getUserId();
+
+    String getUserDn();
+
+    AuthorizationGrantType getAuthorizationGrantType();
+
+    String getClientId();
+
+    Client getClient();
+
+    String getClientDn();
+
+    List<AccessToken> getAccessTokens();
+
+    Set<String> getScopes();
+
+    Set<String> getRefreshTokensCodes();
+
+    Set<String> getAccessTokensCodes();
+
+    List<RefreshToken> getRefreshTokens();
+
+    void setRefreshTokens(List<RefreshToken> refreshTokens);
+
+    AccessToken getLongLivedAccessToken();
+
+    IdToken getIdToken();
+
+    JwtAuthorizationRequest getJwtAuthorizationRequest();
+
+    void setJwtAuthorizationRequest(JwtAuthorizationRequest p_jwtAuthorizationRequest);
+
+    Date getAuthenticationTime();
+
+    TokenLdap getTokenLdap();
+
+    void setTokenLdap(TokenLdap p_tokenLdap);
+
+    void setLongLivedAccessToken(AccessToken longLivedAccessToken);
+
+    void setIdToken(IdToken idToken);
+
+    void setScopes(Collection<String> scopes);
+
+    void setAccessTokens(List<AccessToken> accessTokens);
+
+    String getAcrValues();
+
+    void setAcrValues(String authMode);
+
+    String getSessionDn();
+
+    void setSessionDn(String sessionDn);
+
+    /**
+     * Saves changes asynchronously
+     */
+    void save();
+}
\ No newline at end of file
diff --git a/oxAuth/Server/src/main/java/org/gluu/oxauth/model/common/IAuthorizationGrantList.java b/oxAuth/Server/src/main/java/org/gluu/oxauth/model/common/IAuthorizationGrantList.java
new file mode 100644
index 00000000..9d33ca92
--- /dev/null
+++ b/oxAuth/Server/src/main/java/org/gluu/oxauth/model/common/IAuthorizationGrantList.java
@@ -0,0 +1,51 @@
+/*
+ * oxAuth is available under the MIT License (2008). See http://opensource.org/licenses/MIT for full text.
+ *
+ * Copyright (c) 2014, Gluu
+ */
+
+package org.gluu.oxauth.model.common;
+
+import org.gluu.oxauth.model.registration.Client;
+
+import java.util.Date;
+import java.util.List;
+
+/**
+ * @author Yuriy Zabrovarnyy
+ * @version August 20, 2019
+ */
+
+public interface IAuthorizationGrantList {
+
+    void removeAuthorizationGrants(List<AuthorizationGrant> authorizationGrants);
+
+    AuthorizationGrant createAuthorizationGrant(User user, Client client, Date authenticationTime);
+
+    AuthorizationCodeGrant createAuthorizationCodeGrant(User user, Client client, Date authenticationTime);
+
+    ImplicitGrant createImplicitGrant(User user, Client client, Date authenticationTime);
+
+    ClientCredentialsGrant createClientCredentialsGrant(User user, Client client);
+
+    ResourceOwnerPasswordCredentialsGrant createResourceOwnerPasswordCredentialsGrant(User user, Client client);
+
+    CIBAGrant createCIBAGrant(CibaRequestCacheControl request);
+
+    AuthorizationCodeGrant getAuthorizationCodeGrant(String authorizationCode);
+
+    AuthorizationGrant getAuthorizationGrantByRefreshToken(String clientId, String refreshTokenCode);
+
+    List<AuthorizationGrant> getAuthorizationGrant(String clientId);
+
+    AuthorizationGrant getAuthorizationGrantByAccessToken(String tokenCode);
+
+    AuthorizationGrant getAuthorizationGrantByIdToken(String idToken);
+
+    CIBAGrant getCIBAGrant(String authReqId);
+
+    DeviceCodeGrant createDeviceGrant(DeviceAuthorizationCacheControl data, User user);
+
+    DeviceCodeGrant getDeviceCodeGrant(String deviceCode);
+
+}
\ No newline at end of file
diff --git a/oxAuth/Server/src/main/java/org/gluu/oxauth/model/common/IdToken.java b/oxAuth/Server/src/main/java/org/gluu/oxauth/model/common/IdToken.java
new file mode 100644
index 00000000..1854e60f
--- /dev/null
+++ b/oxAuth/Server/src/main/java/org/gluu/oxauth/model/common/IdToken.java
@@ -0,0 +1,23 @@
+/*
+ * oxAuth is available under the MIT License (2008). See http://opensource.org/licenses/MIT for full text.
+ *
+ * Copyright (c) 2014, Gluu
+ */
+
+package org.gluu.oxauth.model.common;
+
+import java.util.Date;
+
+/**
+ * @author Javier Rojas Blum Date: 02.13.2012
+ */
+public class IdToken extends AbstractToken {
+
+    public IdToken(int lifeTime) {
+        super(lifeTime);
+    }
+
+    public IdToken(String code, Date creationDate, Date expirationDate) {
+        super(code, creationDate, expirationDate);
+    }
+}
\ No newline at end of file
diff --git a/oxAuth/Server/src/main/java/org/gluu/oxauth/model/common/ImplicitGrant.java b/oxAuth/Server/src/main/java/org/gluu/oxauth/model/common/ImplicitGrant.java
new file mode 100644
index 00000000..d938a707
--- /dev/null
+++ b/oxAuth/Server/src/main/java/org/gluu/oxauth/model/common/ImplicitGrant.java
@@ -0,0 +1,76 @@
+/*
+ * oxAuth is available under the MIT License (2008). See http://opensource.org/licenses/MIT for full text.
+ *
+ * Copyright (c) 2014, Gluu
+ */
+
+package org.gluu.oxauth.model.common;
+
+import org.gluu.oxauth.model.registration.Client;
+
+import java.util.Date;
+
+/**
+ * <p>
+ * The implicit grant is a simplified authorization code flow optimized for
+ * clients implemented in a browser using a scripting language such as
+ * JavaScript. In the implicit flow, instead of issuing the client an
+ * authorization code, the client is issued an access token directly (as the
+ * result of the resource owner authorization). The grant type is implicit as no
+ * intermediate credentials (such as an authorization code) are issued (and
+ * later used to obtain an access token).
+ * </p>
+ * <p>
+ * When issuing an implicit grant, the authorization server does not
+ * authenticate the client. In some cases, the client identity can be verified
+ * via the redirection URI used to deliver the access token to the client. The
+ * access token may be exposed to the resource owner or other applications with
+ * access to the resource owner's user-agent.
+ * </p>
+ * <p>
+ * Implicit grants improve the responsiveness and efficiency of some clients
+ * (such as a client implemented as an in-browser application) since it reduces
+ * the number of round trips required to obtain an access token. However, this
+ * convenience should be weighed against the security implications of using
+ * implicit grants, especially when the authorization code grant type is
+ * available.
+ * </p>
+ *
+ * @author Javier Rojas Blum Date: 09.29.2011
+ * @author Yuriy Movchan
+ */
+public class ImplicitGrant extends AuthorizationGrant {
+	
+	public ImplicitGrant() {}
+
+    /**
+     * Constructs an implicit grant.
+     *
+     * @param user               The resource owner.
+     * @param client             An application making protected resource requests on behalf of the resource owner and
+     *                           with its authorization.
+     * @param authenticationTime The Claim Value is the number of seconds from 1970-01-01T0:0:0Z as measured in UTC
+     *                           until the date/time that the End-User authentication occurred.
+     */
+    public ImplicitGrant(User user, Client client, Date authenticationTime) {
+        init(user, client, authenticationTime);
+    }
+
+    @Override
+    public GrantType getGrantType() {
+        return GrantType.IMPLICIT;
+    }
+
+    public void init(User user, Client client, Date authenticationTime) {
+        super.init(user, AuthorizationGrantType.IMPLICIT, client, authenticationTime);
+    }
+
+    /**
+     * The authorization server MUST NOT issue a refresh token.
+     */
+    @Override
+    public RefreshToken createRefreshToken(ExecutionContext executionContext) {
+        throw new UnsupportedOperationException(
+                "The authorization server MUST NOT issue a refresh token.");
+    }
+}
\ No newline at end of file
diff --git a/oxAuth/Server/src/main/java/org/gluu/oxauth/model/common/RefreshToken.java b/oxAuth/Server/src/main/java/org/gluu/oxauth/model/common/RefreshToken.java
new file mode 100644
index 00000000..2f5bbc09
--- /dev/null
+++ b/oxAuth/Server/src/main/java/org/gluu/oxauth/model/common/RefreshToken.java
@@ -0,0 +1,70 @@
+/*
+ * oxAuth is available under the MIT License (2008). See http://opensource.org/licenses/MIT for full text.
+ *
+ * Copyright (c) 2014, Gluu
+ */
+
+package org.gluu.oxauth.model.common;
+
+import java.util.Date;
+
+/**
+ * <p>
+ * Authorization servers MAY issue refresh tokens to web application clients and
+ * native application clients.
+ * </p>
+ * <p>
+ * Refresh tokens MUST be kept confidential in transit and storage, and shared
+ * only among the authorization server and the client to whom the refresh tokens
+ * were issued.
+ * </p>
+ * <p>
+ * The authorization server MUST maintain the binding between a refresh token
+ * and the client to whom it was issued. The authorization server MUST verify
+ * the binding between the refresh token and client identity whenever the client
+ * identity can be authenticated. When client authentication is not possible,
+ * the authorization server SHOULD deploy other means to detect refresh token
+ * abuse.
+ * </p>
+ * <p>
+ * For example, the authorization server could employ refresh token rotation in
+ * which a new refresh token is issued with every access token refresh response.
+ * The previous refresh token is invalidated but retained by the authorization
+ * server. If a refresh token is compromised and subsequently used by both the
+ * attacker and the legitimate client, one of them will present an invalidated
+ * refresh token which will inform the authorization server of the breach.
+ * </p>
+ * <p>
+ * The authorization server MUST ensure that refresh tokens cannot be generated,
+ * modified, or guessed to produce valid refresh tokens by unauthorized parties.
+ * </p>
+ *
+ * @author Javier Rojas Date: 09.29.2011
+ *
+ */
+public class RefreshToken extends AbstractToken {
+
+	/**
+	 * <p>
+	 * Constructs a refresh token.
+	 * </p>
+	 * <p>
+	 * When created, a token is valid for a given lifetime, and after this
+	 * period of time, it will be marked as expired automatically by a
+	 * background process.
+	 * </p>
+	 * <p>
+	 * When required, the token can be marked as revoked.
+	 * </p>
+	 *
+	 * @param lifeTime
+	 *            The life time of the token.
+	 */
+	public RefreshToken(int lifeTime) {
+		super(lifeTime);
+	}
+
+    public RefreshToken(String code, Date creationDate, Date expirationDate) {
+        super(code, creationDate, expirationDate);
+    }
+}
\ No newline at end of file
diff --git a/oxAuth/Server/src/main/java/org/gluu/oxauth/model/common/ResourceOwnerPasswordCredentialsGrant.java b/oxAuth/Server/src/main/java/org/gluu/oxauth/model/common/ResourceOwnerPasswordCredentialsGrant.java
new file mode 100644
index 00000000..3a3c7208
--- /dev/null
+++ b/oxAuth/Server/src/main/java/org/gluu/oxauth/model/common/ResourceOwnerPasswordCredentialsGrant.java
@@ -0,0 +1,56 @@
+/*
+ * oxAuth is available under the MIT License (2008). See http://opensource.org/licenses/MIT for full text.
+ *
+ * Copyright (c) 2014, Gluu
+ */
+
+package org.gluu.oxauth.model.common;
+
+import org.gluu.oxauth.model.registration.Client;
+
+/**
+ * <p>
+ * The resource owner password credentials (i.e. username and password) can be
+ * used directly as an authorization grant to obtain an access token. The
+ * credentials should only be used when there is a high degree of trust between
+ * the resource owner and the client (e.g. its device operating system or a
+ * highly privileged application), and when other authorization grant types are
+ * not available (such as an authorization code).
+ * </p>
+ * <p>
+ * Even though this grant type requires direct client access to the resource
+ * owner credentials, the resource owner credentials are used for a single
+ * request and are exchanged for an access token. This grant type can eliminate
+ * the need for the client to store the resource owner credentials for future
+ * use, by exchanging the credentials with a long-lived access token or refresh
+ * token.
+ * </p>
+ *
+ * @author Javier Rojas Blum Date: 09.29.2011
+ * @author Yuriy Movchan
+ */
+public class ResourceOwnerPasswordCredentialsGrant extends AuthorizationGrant {
+	
+	public ResourceOwnerPasswordCredentialsGrant() {}
+
+    /**
+     * Constructs a resource owner password credentials grant.
+     *
+     * @param user   The resource owner.
+     * @param client An application making protected resource requests on behalf of
+     *               the resource owner and with its authorization.
+     */
+    public ResourceOwnerPasswordCredentialsGrant(User user, Client client) {
+        init(user, client);
+    }
+
+    @Override
+    public GrantType getGrantType() {
+        return GrantType.RESOURCE_OWNER_PASSWORD_CREDENTIALS;
+    }
+
+    public void init(User user, Client client) {
+        super.init(user, AuthorizationGrantType.RESOURCE_OWNER_PASSWORD_CREDENTIALS, client, null);
+    }
+
+}
\ No newline at end of file
diff --git a/oxAuth/Server/src/main/java/org/gluu/oxauth/model/common/SessionTokens.java b/oxAuth/Server/src/main/java/org/gluu/oxauth/model/common/SessionTokens.java
new file mode 100644
index 00000000..f45bee88
--- /dev/null
+++ b/oxAuth/Server/src/main/java/org/gluu/oxauth/model/common/SessionTokens.java
@@ -0,0 +1,53 @@
+package org.gluu.oxauth.model.common;
+
+import com.google.common.base.Preconditions;
+import org.gluu.util.StringHelper;
+
+import java.io.Serializable;
+import java.util.HashSet;
+import java.util.Set;
+
+/**
+ * @author yuriyz
+ */
+@Deprecated // scheduled for removing
+public class SessionTokens implements Serializable {
+
+    private String sessionDn;
+
+    private Set<String> tokenHashes = new HashSet<String>();
+
+    public SessionTokens(String sessionDn) {
+        this.sessionDn = sessionDn;
+    }
+
+
+    public String getSessionDn() {
+        return sessionDn;
+    }
+
+    public void setSessionDn(String sessionDn) {
+        this.sessionDn = sessionDn;
+    }
+
+    public Set<String> getTokenHashes() {
+        return tokenHashes;
+    }
+
+    public void setTokenHashes(Set<String> tokenHashes) {
+        this.tokenHashes = tokenHashes;
+    }
+
+    public String cacheKey() {
+        Preconditions.checkState(StringHelper.isNotEmpty(sessionDn));
+        return sessionDn + "_tokens";
+    }
+
+    @Override
+    public String toString() {
+        return "SessionTokens{" +
+                "sessionDn='" + sessionDn + '\'' +
+                ", tokenHashes=" + tokenHashes +
+                '}';
+    }
+}
\ No newline at end of file
diff --git a/oxAuth/Server/src/main/java/org/gluu/oxauth/model/common/SimpleAuthorizationGrant.java b/oxAuth/Server/src/main/java/org/gluu/oxauth/model/common/SimpleAuthorizationGrant.java
new file mode 100644
index 00000000..e31a89b1
--- /dev/null
+++ b/oxAuth/Server/src/main/java/org/gluu/oxauth/model/common/SimpleAuthorizationGrant.java
@@ -0,0 +1,13 @@
+package org.gluu.oxauth.model.common;
+
+/**
+ * @author Yuriy Movchan
+ * @version 02/13/2017
+ */
+public class SimpleAuthorizationGrant extends AuthorizationGrant {
+
+    @Override
+    public GrantType getGrantType() {
+        return GrantType.NONE;
+    }
+}
diff --git a/oxAuth/Server/src/main/java/org/gluu/oxauth/model/common/UnmodifiableAuthorizationGrant.java b/oxAuth/Server/src/main/java/org/gluu/oxauth/model/common/UnmodifiableAuthorizationGrant.java
new file mode 100644
index 00000000..10af3873
--- /dev/null
+++ b/oxAuth/Server/src/main/java/org/gluu/oxauth/model/common/UnmodifiableAuthorizationGrant.java
@@ -0,0 +1,263 @@
+/*
+ * oxAuth is available under the MIT License (2008). See http://opensource.org/licenses/MIT for full text.
+ *
+ * Copyright (c) 2014, Gluu
+ */
+
+package org.gluu.oxauth.model.common;
+
+import com.google.common.base.Function;
+import org.gluu.oxauth.model.authorize.JwtAuthorizationRequest;
+import org.gluu.oxauth.model.ldap.TokenLdap;
+import org.gluu.oxauth.model.registration.Client;
+import org.gluu.oxauth.model.token.JsonWebResponse;
+
+import java.util.Collection;
+import java.util.Date;
+import java.util.List;
+import java.util.Set;
+
+/**
+ * Gives ability to use authorization grant in read-only mode.
+ *
+ * @author Yuriy Zabrovarnyy
+ * @author Javier Rojas Blum
+ * @version September 4, 2019
+ */
+
+public class UnmodifiableAuthorizationGrant implements IAuthorizationGrant {
+
+    private final IAuthorizationGrant grant;
+
+    public UnmodifiableAuthorizationGrant(IAuthorizationGrant grant) {
+        this.grant = grant;
+    }
+
+    @Override
+    public GrantType getGrantType() {
+        return GrantType.NONE;
+    }
+
+    @Override
+    public String getGrantId() {
+        return grant.getGrantId();
+    }
+
+    @Override
+    public void setGrantId(String p_grantId) {
+        throw new UnsupportedOperationException("Not allowed for UnmodifiableAuthorizationGrant.");
+    }
+
+    @Override
+    public AuthorizationCode getAuthorizationCode() {
+        return grant.getAuthorizationCode();
+    }
+
+    @Override
+    public void setAuthorizationCode(AuthorizationCode authorizationCode) {
+        throw new UnsupportedOperationException("Not allowed for UnmodifiableAuthorizationGrant.");
+    }
+
+    @Override
+    public String getNonce() {
+        return grant.getNonce();
+    }
+
+    @Override
+    public void setNonce(String nonce) {
+        throw new UnsupportedOperationException("Not allowed for UnmodifiableAuthorizationGrant.");
+    }
+
+    @Override
+    public String getSub() {
+        return grant.getSub();
+    }
+
+    @Override
+    public AccessToken createAccessToken(String certAsPem, ExecutionContext executionContext) {
+        throw new UnsupportedOperationException("Not allowed for UnmodifiableAuthorizationGrant.");
+    }
+
+    @Override
+    public RefreshToken createRefreshToken(ExecutionContext executionContext) {
+        throw new UnsupportedOperationException("Not allowed for UnmodifiableAuthorizationGrant.");
+    }
+
+    @Override
+    public IdToken createIdToken(
+            String nonce, AuthorizationCode authorizationCode, AccessToken accessToken, RefreshToken refreshToken,
+            String state, AuthorizationGrant authorizationGrant, boolean includeIdTokenClaims, Function<JsonWebResponse, Void> preProcessing,
+            Function<JsonWebResponse, Void> postProcessing, ExecutionContext executionContext) {
+        throw new UnsupportedOperationException("Not allowed for UnmodifiableAuthorizationGrant.");
+    }
+
+    @Override
+    public RefreshToken getRefreshToken(String refreshTokenCode) {
+        return grant.getRefreshToken(refreshTokenCode);
+    }
+
+    @Override
+    public AbstractToken getAccessToken(String tokenCode) {
+        return grant.getAccessToken(tokenCode);
+    }
+
+    @Override
+    public void revokeAllTokens() {
+        throw new UnsupportedOperationException("Not allowed for UnmodifiableAuthorizationGrant.");
+    }
+
+    @Override
+    public void checkExpiredTokens() {
+        throw new UnsupportedOperationException("Not allowed for UnmodifiableAuthorizationGrant.");
+    }
+
+    @Override
+    public String checkScopesPolicy(String scope) {
+        throw new UnsupportedOperationException("Not allowed for UnmodifiableAuthorizationGrant.");
+    }
+
+    @Override
+    public User getUser() {
+        return grant.getUser();
+    }
+
+    @Override
+    public String getUserId() {
+        return grant.getUserId();
+    }
+
+    @Override
+    public String getUserDn() {
+        return grant.getUserDn();
+    }
+
+    @Override
+    public AuthorizationGrantType getAuthorizationGrantType() {
+        return grant.getAuthorizationGrantType();
+    }
+
+    @Override
+    public String getClientId() {
+        return grant.getClientId();
+    }
+
+    @Override
+    public Client getClient() {
+        return grant.getClient();
+    }
+
+    @Override
+    public String getClientDn() {
+        return grant.getClientDn();
+    }
+
+    @Override
+    public List<AccessToken> getAccessTokens() {
+        return grant.getAccessTokens();
+    }
+
+    @Override
+    public Set<String> getScopes() {
+        return grant.getScopes();
+    }
+
+    @Override
+    public Set<String> getRefreshTokensCodes() {
+        return grant.getRefreshTokensCodes();
+    }
+
+    @Override
+    public Set<String> getAccessTokensCodes() {
+        return grant.getAccessTokensCodes();
+    }
+
+    @Override
+    public List<RefreshToken> getRefreshTokens() {
+        return grant.getRefreshTokens();
+    }
+
+    @Override
+    public void setRefreshTokens(List<RefreshToken> refreshTokens) {
+        throw new UnsupportedOperationException("Not allowed for UnmodifiableAuthorizationGrant.");
+    }
+
+    @Override
+    public AccessToken getLongLivedAccessToken() {
+        return grant.getLongLivedAccessToken();
+    }
+
+    @Override
+    public IdToken getIdToken() {
+        return grant.getIdToken();
+    }
+
+    @Override
+    public JwtAuthorizationRequest getJwtAuthorizationRequest() {
+        return grant.getJwtAuthorizationRequest();
+    }
+
+    @Override
+    public void setJwtAuthorizationRequest(JwtAuthorizationRequest p_jwtAuthorizationRequest) {
+        throw new UnsupportedOperationException("Not allowed for UnmodifiableAuthorizationGrant.");
+    }
+
+    @Override
+    public Date getAuthenticationTime() {
+        return grant.getAuthenticationTime();
+    }
+
+    @Override
+    public TokenLdap getTokenLdap() {
+        return grant.getTokenLdap();
+    }
+
+    @Override
+    public void setTokenLdap(TokenLdap p_tokenLdap) {
+        throw new UnsupportedOperationException("Not allowed for UnmodifiableAuthorizationGrant.");
+    }
+
+    @Override
+    public void setLongLivedAccessToken(AccessToken longLivedAccessToken) {
+        throw new UnsupportedOperationException("Not allowed for UnmodifiableAuthorizationGrant.");
+    }
+
+    @Override
+    public void setIdToken(IdToken idToken) {
+        throw new UnsupportedOperationException("Not allowed for UnmodifiableAuthorizationGrant.");
+    }
+
+    @Override
+    public void setScopes(Collection<String> scopes) {
+        throw new UnsupportedOperationException("Not allowed for UnmodifiableAuthorizationGrant.");
+    }
+
+    @Override
+    public void setAccessTokens(List<AccessToken> accessTokens) {
+        throw new UnsupportedOperationException("Not allowed for UnmodifiableAuthorizationGrant.");
+    }
+
+    @Override
+    public String getAcrValues() {
+        return grant.getAcrValues();
+    }
+
+    @Override
+    public void setAcrValues(String authMode) {
+        throw new UnsupportedOperationException("Not allowed for UnmodifiableAuthorizationGrant.");
+    }
+
+    @Override
+    public String getSessionDn() {
+        return grant.getSessionDn();
+    }
+
+    @Override
+    public void setSessionDn(String sessionDn) {
+        throw new UnsupportedOperationException("Not allowed for UnmodifiableAuthorizationGrant.");
+    }
+
+    @Override
+    public void save() {
+        throw new UnsupportedOperationException("Not allowed for UnmodifiableAuthorizationGrant.");
+    }
+}
diff --git a/oxAuth/Server/src/main/java/org/gluu/oxauth/model/config/Conf.java b/oxAuth/Server/src/main/java/org/gluu/oxauth/model/config/Conf.java
new file mode 100644
index 00000000..9418dd7a
--- /dev/null
+++ b/oxAuth/Server/src/main/java/org/gluu/oxauth/model/config/Conf.java
@@ -0,0 +1,109 @@
+/*
+ * oxAuth is available under the MIT License (2008). See http://opensource.org/licenses/MIT for full text.
+ *
+ * Copyright (c) 2014, Gluu
+ */
+
+package org.gluu.oxauth.model.config;
+
+import org.gluu.oxauth.model.configuration.AppConfiguration;
+import org.gluu.oxauth.model.error.ErrorMessages;
+import org.gluu.persist.annotation.AttributeName;
+import org.gluu.persist.annotation.DN;
+import org.gluu.persist.annotation.DataEntry;
+import org.gluu.persist.annotation.JsonObject;
+import org.gluu.persist.annotation.ObjectClass;
+
+/**
+ * @author Yuriy Zabrovarnyy
+ * @version 0.9, 03/01/2013
+ */
+@DataEntry
+@ObjectClass(value = "oxAuthConfiguration")
+public class Conf {
+    @DN
+    private String dn;
+
+    @JsonObject
+    @AttributeName(name = "oxAuthConfDynamic")
+    private AppConfiguration dynamic;
+
+    @JsonObject
+    @AttributeName(name = "oxAuthConfStatic")
+    private StaticConfiguration statics;
+
+    @JsonObject
+    @AttributeName(name = "oxAuthConfErrors")
+    private ErrorMessages errors;
+
+    @JsonObject
+    @AttributeName(name = "oxAuthConfWebKeys")
+    private WebKeysConfiguration webKeys;
+
+    @AttributeName(name = "oxRevision")
+    private long revision;
+
+    public Conf() {
+    }
+
+    public String getDn() {
+        return dn;
+    }
+
+    public void setDn(String p_dn) {
+        dn = p_dn;
+    }
+
+    public AppConfiguration getDynamic() {
+		return dynamic;
+	}
+
+	public void setDynamic(AppConfiguration dynamic) {
+		this.dynamic = dynamic;
+	}
+
+	public StaticConfiguration getStatics() {
+		return statics;
+	}
+
+	public void setStatics(StaticConfiguration statics) {
+		this.statics = statics;
+	}
+
+	public ErrorMessages getErrors() {
+		return errors;
+	}
+
+	public void setErrors(ErrorMessages errors) {
+		this.errors = errors;
+	}
+
+	public WebKeysConfiguration getWebKeys() {
+		return webKeys;
+	}
+
+	public void setWebKeys(WebKeysConfiguration webKeys) {
+		this.webKeys = webKeys;
+	}
+
+	public long getRevision() {
+		return revision;
+	}
+
+	public void setRevision(long revision) {
+		this.revision = revision;
+	}
+
+	@Override
+    public String toString() {
+        final StringBuilder sb = new StringBuilder();
+        sb.append("Conf");
+        sb.append("{m_dn='").append(dn).append('\'');
+        sb.append(", m_dynamic='").append(dynamic).append('\'');
+        sb.append(", m_static='").append(statics).append('\'');
+        sb.append(", m_errors='").append(errors).append('\'');
+        sb.append(", m_webKeys='").append(webKeys).append('\'');
+        sb.append('}');
+        return sb.toString();
+    }
+}
diff --git a/oxAuth/Server/src/main/java/org/gluu/oxauth/model/config/ConfigurationFactory.java b/oxAuth/Server/src/main/java/org/gluu/oxauth/model/config/ConfigurationFactory.java
new file mode 100644
index 00000000..baf96a8a
--- /dev/null
+++ b/oxAuth/Server/src/main/java/org/gluu/oxauth/model/config/ConfigurationFactory.java
@@ -0,0 +1,578 @@
+/*
+ * oxAuth is available under the MIT License (2008). See http://opensource.org/licenses/MIT for full text.
+ *
+ * Copyright (c) 2014, Gluu
+ */
+
+package org.gluu.oxauth.model.config;
+
+import org.apache.commons.lang.StringUtils;
+import org.gluu.exception.ConfigurationException;
+import org.gluu.oxauth.model.configuration.AppConfiguration;
+import org.gluu.oxauth.model.configuration.Configuration;
+import org.gluu.oxauth.model.crypto.AbstractCryptoProvider;
+import org.gluu.oxauth.model.crypto.CryptoProviderFactory;
+import org.gluu.oxauth.model.error.ErrorMessages;
+import org.gluu.oxauth.model.error.ErrorResponseFactory;
+import org.gluu.oxauth.model.event.CryptoProviderEvent;
+import org.gluu.oxauth.model.jwk.JSONWebKey;
+import org.gluu.oxauth.service.common.ApplicationFactory;
+import org.gluu.oxauth.util.ServerUtil;
+import org.gluu.persist.PersistenceEntryManager;
+import org.gluu.persist.exception.BasePersistenceException;
+import org.gluu.persist.model.PersistenceConfiguration;
+import org.gluu.persist.service.PersistanceFactoryService;
+import org.gluu.service.cdi.async.Asynchronous;
+import org.gluu.service.cdi.event.*;
+import org.gluu.service.timer.event.TimerEvent;
+import org.gluu.service.timer.schedule.TimerSchedule;
+import org.gluu.util.StringHelper;
+import org.gluu.util.properties.FileConfiguration;
+import org.json.JSONObject;
+import org.slf4j.Logger;
+
+import javax.annotation.PostConstruct;
+import javax.enterprise.context.ApplicationScoped;
+import javax.enterprise.event.Event;
+import javax.enterprise.event.Observes;
+import javax.enterprise.inject.Instance;
+import javax.enterprise.inject.Produces;
+import javax.inject.Inject;
+import javax.inject.Named;
+import javax.servlet.ServletContext;
+import javax.servlet.ServletRegistration;
+import java.io.File;
+import java.util.concurrent.atomic.AtomicBoolean;
+import java.util.stream.Collectors;
+
+/**
+ * @author Yuriy Zabrovarnyy
+ * @author Javier Rojas Blum
+ * @author Yuriy Movchan
+ * @version June 15, 2016
+ */
+@ApplicationScoped
+public class ConfigurationFactory {
+
+	@Inject
+	private Logger log;
+
+	@Inject
+	private Event<TimerEvent> timerEvent;
+
+	@Inject
+	private Event<AppConfiguration> configurationUpdateEvent;
+
+    @Inject
+    private Event<AbstractCryptoProvider> cryptoProviderEvent;
+
+	@Inject
+	private Event<String> event;
+
+	@Inject @Named(ApplicationFactory.PERSISTENCE_ENTRY_MANAGER_NAME)
+	private Instance<PersistenceEntryManager> persistenceEntryManagerInstance;
+
+    @Inject
+	private PersistanceFactoryService persistanceFactoryService;
+
+	@Inject
+	private Instance<Configuration> configurationInstance;
+
+	@Inject
+	private Instance<AbstractCryptoProvider> abstractCryptoProviderInstance;
+
+	public final static String PERSISTENCE_CONFIGUARION_RELOAD_EVENT_TYPE = "persistenceConfigurationReloadEvent";
+	public final static String BASE_CONFIGUARION_RELOAD_EVENT_TYPE = "baseConfigurationReloadEvent";
+
+	private final static int DEFAULT_INTERVAL = 30; // 30 seconds
+
+	static {
+		if (System.getProperty("gluu.base") != null) {
+			BASE_DIR = System.getProperty("gluu.base");
+		} else if ((System.getProperty("catalina.base") != null) && (System.getProperty("catalina.base.ignore") == null)) {
+			BASE_DIR = System.getProperty("catalina.base");
+		} else if (System.getProperty("catalina.home") != null) {
+			BASE_DIR = System.getProperty("catalina.home");
+		} else if (System.getProperty("jboss.home.dir") != null) {
+			BASE_DIR = System.getProperty("jboss.home.dir");
+		} else {
+			BASE_DIR = null;
+		}
+	}
+
+	private static final String BASE_DIR;
+	private static final String DIR = BASE_DIR + File.separator + "conf" + File.separator;
+
+	private static final String BASE_PROPERTIES_FILE = DIR + "gluu.properties";
+	private static final String LDAP_PROPERTIES_FILE = "oxauth.properties";
+
+	private final String CONFIG_FILE_NAME = "oxauth-config.json";
+	private final String ERRORS_FILE_NAME = "oxauth-errors.json";
+	private final String STATIC_CONF_FILE_NAME = "oxauth-static-conf.json";
+	private final String WEB_KEYS_FILE_NAME = "oxauth-web-keys.json";
+	private final String SALT_FILE_NAME = "salt";
+
+	private String confDir, configFilePath, errorsFilePath, staticConfFilePath, webKeysFilePath, saltFilePath;
+
+	private boolean loaded = false;
+
+	private FileConfiguration baseConfiguration;
+    
+    private PersistenceConfiguration persistenceConfiguration;
+	private AppConfiguration conf;
+	private StaticConfiguration staticConf;
+	private WebKeysConfiguration jwks;
+	private ErrorResponseFactory errorResponseFactory;
+	private String cryptoConfigurationSalt;
+
+    private String contextPath;
+	private String facesMapping;
+
+	private AtomicBoolean isActive;
+
+	private long baseConfigurationFileLastModifiedTime;
+
+	private long loadedRevision = -1;
+	private boolean loadedFromLdap = true;
+
+	@PostConstruct
+	public void init() {
+		this.isActive = new AtomicBoolean(true);
+		try {
+            this.persistenceConfiguration = persistanceFactoryService.loadPersistenceConfiguration(LDAP_PROPERTIES_FILE);
+			loadBaseConfiguration();
+
+			this.confDir = confDir();
+
+			this.configFilePath = confDir + CONFIG_FILE_NAME;
+			this.errorsFilePath = confDir + ERRORS_FILE_NAME;
+			this.staticConfFilePath = confDir + STATIC_CONF_FILE_NAME;
+
+			String certsDir = this.baseConfiguration.getString("certsDir");
+			if (StringHelper.isEmpty(certsDir)) {
+				certsDir = confDir;
+			}
+			this.webKeysFilePath = certsDir + File.separator + WEB_KEYS_FILE_NAME;
+			this.saltFilePath = confDir + SALT_FILE_NAME;
+			loadCryptoConfigurationSalt();
+		} finally {
+			this.isActive.set(false);
+		}
+	}
+
+	public void onServletContextActivation(@Observes ServletContext context ) {
+        this.contextPath = context.getContextPath();
+
+        this.facesMapping = "";
+        ServletRegistration servletRegistration = context.getServletRegistration("Faces Servlet");
+        if (servletRegistration == null) {
+        	return;
+        }
+
+        String[] mappings = servletRegistration.getMappings().toArray(new String[0]);
+        if (mappings.length == 0) {
+            return;
+        }
+        
+        this.facesMapping = mappings[0].replaceAll("\\*", "");
+     }
+
+	public void create() {
+		if (!createFromLdap(true)) {
+			log.error("Failed to load configuration from LDAP. Please fix it!!!.");
+			throw new ConfigurationException("Failed to load configuration from LDAP.");
+		} else {
+			log.info("Configuration loaded successfully.");
+		}
+	}
+
+	public void initTimer() {
+		log.debug("Initializing Configuration Timer");
+
+		final int delay = 30;
+		final int interval = DEFAULT_INTERVAL;
+
+		timerEvent.fire(new TimerEvent(new TimerSchedule(delay, interval), new ConfigurationEvent(),
+				Scheduled.Literal.INSTANCE));
+	}
+
+	@Asynchronous
+	public void reloadConfigurationTimerEvent(@Observes @Scheduled ConfigurationEvent configurationEvent) {
+		if (this.isActive.get()) {
+			return;
+		}
+
+		if (!this.isActive.compareAndSet(false, true)) {
+			return;
+		}
+
+		try {
+			reloadConfiguration();
+		} catch (Throwable ex) {
+			log.error("Exception happened while reloading application configuration", ex);
+		} finally {
+			this.isActive.set(false);
+		}
+	}
+
+	private void reloadConfiguration() {
+		// Reload LDAP configuration if needed
+	    PersistenceConfiguration newPersistenceConfiguration = persistanceFactoryService.loadPersistenceConfiguration(LDAP_PROPERTIES_FILE);
+
+		if (newPersistenceConfiguration != null) {
+			if (!StringHelper.equalsIgnoreCase(this.persistenceConfiguration.getFileName(), newPersistenceConfiguration.getFileName()) || (newPersistenceConfiguration.getLastModifiedTime() > this.persistenceConfiguration.getLastModifiedTime())) {
+				// Reload configuration only if it was modified
+				this.persistenceConfiguration = newPersistenceConfiguration;
+				event.select(LdapConfigurationReload.Literal.INSTANCE).fire(PERSISTENCE_CONFIGUARION_RELOAD_EVENT_TYPE);
+			}
+		}
+
+        // Reload Base configuration if needed
+		File baseConfiguration = new File(BASE_PROPERTIES_FILE);
+		if (baseConfiguration.exists()) {
+			final long lastModified = baseConfiguration.lastModified();
+			if (lastModified > baseConfigurationFileLastModifiedTime) {
+				// Reload configuration only if it was modified
+				loadBaseConfiguration();
+				event.select(BaseConfigurationReload.Literal.INSTANCE).fire(BASE_CONFIGUARION_RELOAD_EVENT_TYPE);
+			}
+		}
+
+		if (!loadedFromLdap) {
+			return;
+		}
+
+		if (!isRevisionIncreased()) {
+			return;
+		}
+
+		createFromLdap(false);
+	}
+
+	private boolean isRevisionIncreased() {
+        final Conf conf = loadConfigurationFromLdap("oxRevision");
+        if (conf == null) {
+            return false;
+        }
+
+        log.trace("LDAP revision: " + conf.getRevision() + ", server revision:" + loadedRevision);
+        return conf.getRevision() > this.loadedRevision;
+    }
+
+	private String confDir() {
+		final String confDir = this.baseConfiguration.getString("confDir", null);
+		if (StringUtils.isNotBlank(confDir)) {
+			return confDir;
+		}
+
+		return DIR;
+	}
+
+	public FileConfiguration getBaseConfiguration() {
+		return baseConfiguration;
+	}
+
+	@Produces
+    @ApplicationScoped
+    public PersistenceConfiguration getPersistenceConfiguration() {
+        return persistenceConfiguration;
+    }
+
+	@Produces
+	@ApplicationScoped
+	public AppConfiguration getAppConfiguration() {
+		return conf;
+	}
+
+	@Produces
+	@ApplicationScoped
+	public StaticConfiguration getStaticConfiguration() {
+		return staticConf;
+	}
+
+	@Produces
+	@ApplicationScoped
+	public WebKeysConfiguration getWebKeysConfiguration() {
+		return jwks;
+	}
+
+	@Produces
+	@ApplicationScoped
+	public ErrorResponseFactory getErrorResponseFactory() {
+		return errorResponseFactory;
+	}
+
+	public BaseDnConfiguration getBaseDn() {
+		return getStaticConfiguration().getBaseDn();
+	}
+
+	public String getCryptoConfigurationSalt() {
+		return cryptoConfigurationSalt;
+	}
+
+	private boolean createFromFile() {
+		boolean result = reloadConfFromFile() && reloadErrorsFromFile() && reloadStaticConfFromFile()
+				&& reloadWebkeyFromFile();
+
+		return result;
+	}
+
+	private boolean reloadWebkeyFromFile() {
+		final WebKeysConfiguration webKeysFromFile = loadWebKeysFromFile();
+		if (webKeysFromFile != null) {
+			log.info("Reloaded web keys from file: " + webKeysFilePath);
+			jwks = webKeysFromFile;
+			return true;
+		} else {
+			log.error("Failed to load web keys configuration from file: " + webKeysFilePath);
+		}
+
+		return false;
+	}
+
+	private boolean reloadStaticConfFromFile() {
+		final StaticConfiguration staticConfFromFile = loadStaticConfFromFile();
+		if (staticConfFromFile != null) {
+			log.info("Reloaded static conf from file: " + staticConfFilePath);
+			staticConf = staticConfFromFile;
+			return true;
+		} else {
+			log.error("Failed to load static configuration from file: " + staticConfFilePath);
+		}
+
+		return false;
+	}
+
+	private boolean reloadErrorsFromFile() {
+		final ErrorMessages errorsFromFile = loadErrorsFromFile();
+		if (errorsFromFile != null) {
+			log.info("Reloaded errors from file: " + errorsFilePath);
+			errorResponseFactory = new ErrorResponseFactory(errorsFromFile, conf);
+			return true;
+		} else {
+			log.error("Failed to load errors from file: " + errorsFilePath);
+		}
+
+		return false;
+	}
+
+	private boolean reloadConfFromFile() {
+		final AppConfiguration configFromFile = loadConfFromFile();
+		if (configFromFile != null) {
+			log.info("Reloaded configuration from file: " + configFilePath);
+			conf = configFromFile;
+			return true;
+		} else {
+			log.error("Failed to load configuration from file: " + configFilePath);
+		}
+
+		return false;
+	}
+
+	public boolean reloadConfFromLdap() {
+        if (!isRevisionIncreased()) {
+            return false;
+        }
+	    return createFromLdap(false);
+    }
+
+	private boolean createFromLdap(boolean recoverFromFiles) {
+		log.info("Loading configuration from '{}' DB...", baseConfiguration.getString("persistence.type"));
+		try {
+			final Conf c = loadConfigurationFromLdap();
+			if (c != null) {
+				init(c);
+
+				// Destroy old configuration
+				if (this.loaded) {
+					destroy(AppConfiguration.class);
+					destroy(StaticConfiguration.class);
+					destroy(WebKeysConfiguration.class);
+					destroy(ErrorResponseFactory.class);
+				}
+
+				this.loaded = true;
+				configurationUpdateEvent.select(ConfigurationUpdate.Literal.INSTANCE).fire(conf);
+
+                destroyCryptoProviderInstance();
+				AbstractCryptoProvider newAbstractCryptoProvider = abstractCryptoProviderInstance.get();
+				cryptoProviderEvent.select(CryptoProviderEvent.Literal.INSTANCE).fire(newAbstractCryptoProvider);
+
+				return true;
+			}
+		} catch (Exception ex) {
+			log.error(ex.getMessage(), ex);
+		}
+
+		if (recoverFromFiles) {
+			log.info("Unable to find configuration in LDAP, try to load configuration from file system... ");
+			if (createFromFile()) {
+				this.loadedFromLdap = false;
+				return true;
+			}
+		}
+
+		return false;
+	}
+
+	public void destroy(Class<? extends Configuration> clazz) {
+		Instance<? extends Configuration> confInstance = configurationInstance.select(clazz);
+		configurationInstance.destroy(confInstance.get());
+	}
+
+	private void destroyCryptoProviderInstance() {
+	    log.trace("Destroyed crypto provider instance.");
+
+		AbstractCryptoProvider abstractCryptoProvider = abstractCryptoProviderInstance.get();
+		abstractCryptoProviderInstance.destroy(abstractCryptoProvider);
+        CryptoProviderFactory.reset();
+	}
+
+	private Conf loadConfigurationFromLdap(String... returnAttributes) {
+		final PersistenceEntryManager ldapManager = persistenceEntryManagerInstance.get();
+		final String dn = this.baseConfiguration.getString("oxauth_ConfigurationEntryDN");
+		try {
+			final Conf conf = ldapManager.find(dn, Conf.class, returnAttributes);
+
+			return conf;
+		} catch (BasePersistenceException ex) {
+			ex.printStackTrace();
+			log.error(ex.getMessage());
+		}
+
+		return null;
+	}
+
+	private void init(Conf p_conf) {
+		initConfigurationConf(p_conf);
+		this.loadedRevision = p_conf.getRevision();
+	}
+
+	private void initConfigurationConf(Conf p_conf) {
+		if (p_conf.getDynamic() != null) {
+			conf = p_conf.getDynamic();
+		}
+		if (p_conf.getStatics() != null) {
+			staticConf = p_conf.getStatics();
+		}
+		if (p_conf.getWebKeys() != null) {
+			jwks = p_conf.getWebKeys();
+		} else {
+			generateWebKeys();
+		}
+		if (p_conf.getErrors() != null) {
+			errorResponseFactory = new ErrorResponseFactory(p_conf.getErrors(), p_conf.getDynamic());
+		}
+	}
+
+	private void generateWebKeys() {
+		log.info("Failed to load JWKS. Attempting to generate new JWKS...");
+
+		String newWebKeys = null;
+		try {
+            final AbstractCryptoProvider cryptoProvider = CryptoProviderFactory.getCryptoProvider(getAppConfiguration());
+
+			// Generate new JWKS
+			JSONObject jsonObject = AbstractCryptoProvider.generateJwks(cryptoProvider, getAppConfiguration());
+			newWebKeys = jsonObject.toString();
+
+			// Attempt to load new JWKS
+			jwks = ServerUtil.createJsonMapper().readValue(newWebKeys, WebKeysConfiguration.class);
+
+			// Store new JWKS in LDAP
+			Conf conf = loadConfigurationFromLdap();
+			conf.setWebKeys(jwks);
+
+			long nextRevision = conf.getRevision() + 1;
+			conf.setRevision(nextRevision);
+
+			final PersistenceEntryManager ldapManager = persistenceEntryManagerInstance.get();
+			ldapManager.merge(conf);
+
+			log.info("Generated new JWKS successfully.");
+            log.trace("JWKS keys: " + conf.getWebKeys().getKeys().stream().map(JSONWebKey::getKid).collect(Collectors.toList()));
+
+            log.trace("KeyStore keys: " + cryptoProvider.getKeys());
+        } catch (Exception ex2) {
+			log.error("Failed to re-generate JWKS keys", ex2);
+		}
+	}
+
+	private AppConfiguration loadConfFromFile() {
+		try {
+			return ServerUtil.createJsonMapper().readValue(new File(configFilePath), AppConfiguration.class);
+		} catch (Exception e) {
+			log.warn(e.getMessage(), e);
+		}
+		return null;
+	}
+
+	private ErrorMessages loadErrorsFromFile() {
+		try {
+			return ServerUtil.createJsonMapper().readValue(new File(errorsFilePath), ErrorMessages.class);
+		} catch (Exception e) {
+			log.warn(e.getMessage(), e);
+		}
+		return null;
+	}
+
+	private StaticConfiguration loadStaticConfFromFile() {
+		try {
+			return ServerUtil.createJsonMapper().readValue(new File(staticConfFilePath), StaticConfiguration.class);
+		} catch (Exception e) {
+			log.warn(e.getMessage(), e);
+		}
+		return null;
+	}
+
+	private WebKeysConfiguration loadWebKeysFromFile() {
+		try {
+			return ServerUtil.createJsonMapper().readValue(new File(webKeysFilePath), WebKeysConfiguration.class);
+		} catch (Exception e) {
+			log.warn(e.getMessage(), e);
+		}
+		return null;
+	}
+
+	private void loadBaseConfiguration() {
+		this.baseConfiguration = createFileConfiguration(BASE_PROPERTIES_FILE, true);
+
+		File baseConfiguration = new File(BASE_PROPERTIES_FILE);
+		this.baseConfigurationFileLastModifiedTime = baseConfiguration.lastModified();
+	}
+
+	public void loadCryptoConfigurationSalt() {
+		try {
+			FileConfiguration cryptoConfiguration = createFileConfiguration(saltFilePath, true);
+
+			this.cryptoConfigurationSalt = cryptoConfiguration.getString("encodeSalt");
+		} catch (Exception ex) {
+			log.error("Failed to load configuration from {}", saltFilePath, ex);
+			throw new ConfigurationException("Failed to load configuration from " + saltFilePath, ex);
+		}
+	}
+
+	private FileConfiguration createFileConfiguration(String fileName, boolean isMandatory) {
+		try {
+			FileConfiguration fileConfiguration = new FileConfiguration(fileName);
+
+			return fileConfiguration;
+		} catch (Exception ex) {
+			if (isMandatory) {
+				log.error("Failed to load configuration from {}", fileName, ex);
+				throw new ConfigurationException("Failed to load configuration from " + fileName, ex);
+			}
+		}
+
+		return null;
+	}
+
+	public String getFacesMapping() {
+        return facesMapping;
+    }
+
+    public String getContextPath() {
+        return contextPath;
+    }
+
+}
diff --git a/oxAuth/Server/src/main/java/org/gluu/oxauth/model/config/Constants.java b/oxAuth/Server/src/main/java/org/gluu/oxauth/model/config/Constants.java
new file mode 100644
index 00000000..827df8cf
--- /dev/null
+++ b/oxAuth/Server/src/main/java/org/gluu/oxauth/model/config/Constants.java
@@ -0,0 +1,36 @@
+/*
+ * oxAuth is available under the MIT License (2008). See http://opensource.org/licenses/MIT for full text.
+ *
+ * Copyright (c) 2014, Gluu
+ */
+
+package org.gluu.oxauth.model.config;
+
+/**
+ * Constants
+ * 
+ * @author Yuriy Movchan Date: 10.14.2010
+ */
+public final class Constants {
+
+	public static final String RESULT_SUCCESS = "success";
+	public static final String RESULT_FAILURE = "failure";
+    public static final String RESULT_AUTHENTICATION_FAILED = "authentication_failed";
+	public static final String RESULT_DUPLICATE = "duplicate";
+	public static final String RESULT_DISABLED = "disabled";
+	public static final String RESULT_NO_PERMISSIONS = "no_permissions";
+	public static final String RESULT_INVALID_STEP = "invalid_step";
+	public static final String RESULT_VALIDATION_ERROR = "validation_error";
+	public static final String RESULT_LOGOUT = "logout";
+	public static final String RESULT_EXPIRED = "expired";
+
+	public static final String U2F_PROTOCOL_VERSION = "U2F_V2";
+	
+	public static final String OX_AUTH_SCOPE_TYPE_OPENID = "openid";
+	public static final String REVOKE_SESSION_SCOPE = "revoke_session";
+
+	public static final String REMOTE_IP = "remote_ip";
+	public static final String AUTHENTICATED_USER = "auth_user";
+	public static final String AUTHORIZED_GRANT = "authorized_grant";
+
+}
diff --git a/oxAuth/Server/src/main/java/org/gluu/oxauth/model/config/WebKeysConfiguration.java b/oxAuth/Server/src/main/java/org/gluu/oxauth/model/config/WebKeysConfiguration.java
new file mode 100644
index 00000000..cdd61b24
--- /dev/null
+++ b/oxAuth/Server/src/main/java/org/gluu/oxauth/model/config/WebKeysConfiguration.java
@@ -0,0 +1,24 @@
+/*
+ * oxAuth is available under the MIT License (2008). See http://opensource.org/licenses/MIT for full text.
+ *
+ * Copyright (c) 2014, Gluu
+ */
+
+package org.gluu.oxauth.model.config;
+
+import com.fasterxml.jackson.annotation.JsonIgnoreProperties;
+import org.gluu.oxauth.model.configuration.Configuration;
+import org.gluu.oxauth.model.jwk.JSONWebKeySet;
+
+import javax.enterprise.inject.Vetoed;
+
+/**
+ * @author Yuriy Movchan
+ * @version 03/15/2017
+ */
+@JsonIgnoreProperties(ignoreUnknown = true)
+@Vetoed
+public class WebKeysConfiguration extends JSONWebKeySet implements Configuration {
+
+
+}
diff --git a/oxAuth/Server/src/main/java/org/gluu/oxauth/model/discovery/OpenIdConnectDiscoveryParamsValidator.java b/oxAuth/Server/src/main/java/org/gluu/oxauth/model/discovery/OpenIdConnectDiscoveryParamsValidator.java
new file mode 100644
index 00000000..e0c64ca3
--- /dev/null
+++ b/oxAuth/Server/src/main/java/org/gluu/oxauth/model/discovery/OpenIdConnectDiscoveryParamsValidator.java
@@ -0,0 +1,17 @@
+/*
+ * oxAuth is available under the MIT License (2008). See http://opensource.org/licenses/MIT for full text.
+ *
+ * Copyright (c) 2014, Gluu
+ */
+
+package org.gluu.oxauth.model.discovery;
+
+/**
+ * @author Javier Rojas Date: 01.28.2013
+ */
+public class OpenIdConnectDiscoveryParamsValidator {
+
+    public static boolean validateParams(String resource, String rel) {
+        return resource != null && !resource.isEmpty();
+    }
+}
\ No newline at end of file
diff --git a/oxAuth/Server/src/main/java/org/gluu/oxauth/model/error/ErrorMessageList.java b/oxAuth/Server/src/main/java/org/gluu/oxauth/model/error/ErrorMessageList.java
new file mode 100644
index 00000000..d06deb61
--- /dev/null
+++ b/oxAuth/Server/src/main/java/org/gluu/oxauth/model/error/ErrorMessageList.java
@@ -0,0 +1,36 @@
+/*
+ * oxAuth is available under the MIT License (2008). See http://opensource.org/licenses/MIT for full text.
+ *
+ * Copyright (c) 2014, Gluu
+ */
+
+package org.gluu.oxauth.model.error;
+
+import java.util.ArrayList;
+
+import javax.xml.bind.annotation.XmlElement;
+import javax.xml.bind.annotation.XmlRootElement;
+
+import org.gluu.model.error.ErrorMessage;
+
+
+/**
+ * Represents an error message list in a configuration XML file.
+ *
+ * @author Javier Rojas Date: 09.23.2011
+ *
+ */
+@XmlRootElement(name = "errors")
+public class ErrorMessageList {
+
+	@XmlElement(name = "error")
+	private ArrayList<ErrorMessage> errors;
+
+	public ArrayList<ErrorMessage> getErrorList() {
+		return errors;
+	}
+
+	public void setErrorList(ArrayList<ErrorMessage> errorList) {
+		this.errors = errorList;
+	}
+}
diff --git a/oxAuth/Server/src/main/java/org/gluu/oxauth/model/error/ErrorMessages.java b/oxAuth/Server/src/main/java/org/gluu/oxauth/model/error/ErrorMessages.java
new file mode 100644
index 00000000..12897861
--- /dev/null
+++ b/oxAuth/Server/src/main/java/org/gluu/oxauth/model/error/ErrorMessages.java
@@ -0,0 +1,139 @@
+/*
+ * oxAuth is available under the MIT License (2008). See http://opensource.org/licenses/MIT for full text.
+ *
+ * Copyright (c) 2014, Gluu
+ */
+
+package org.gluu.oxauth.model.error;
+
+import com.fasterxml.jackson.annotation.JsonIgnoreProperties;
+
+import javax.xml.bind.annotation.*;
+
+import org.gluu.model.error.ErrorMessage;
+
+import java.util.List;
+
+/**
+ * @author Yuriy Zabrovarnyy
+ * @author Javier Rojas Blum
+ * @version August 20, 2019
+ */
+@XmlRootElement(name = "errors")
+@XmlAccessorType(XmlAccessType.FIELD)
+@JsonIgnoreProperties(ignoreUnknown = true)
+public class ErrorMessages {
+
+    @XmlElementWrapper(name = "authorize")
+    @XmlElement(name = "error")
+    private List<ErrorMessage> authorize;
+    @XmlElementWrapper(name = "client-info")
+    @XmlElement(name = "error")
+    private List<ErrorMessage> clientInfo;
+    @XmlElementWrapper(name = "end-session")
+    @XmlElement(name = "error")
+    private List<ErrorMessage> endSession;
+    @XmlElementWrapper(name = "register")
+    @XmlElement(name = "error")
+    private List<ErrorMessage> register;
+    @XmlElementWrapper(name = "token")
+    @XmlElement(name = "error")
+    private List<ErrorMessage> token;
+    @XmlElementWrapper(name = "revoke")
+    @XmlElement(name = "error")
+    private List<ErrorMessage> revoke;
+    @XmlElementWrapper(name = "uma")
+    @XmlElement(name = "error")
+    private List<ErrorMessage> uma;
+    @XmlElementWrapper(name = "user-info")
+    @XmlElement(name = "error")
+    private List<ErrorMessage> userInfo;
+
+    @XmlElementWrapper(name = "fido")
+    @XmlElement(name = "error")
+    private List<ErrorMessage> fido;
+
+    @XmlElementWrapper(name = "backchannelAuthentication")
+    @XmlElement(name = "error")
+    private List<ErrorMessage> backchannelAuthentication;
+
+    public List<ErrorMessage> getAuthorize() {
+        return authorize;
+    }
+
+    public void setAuthorize(List<ErrorMessage> p_authorize) {
+        authorize = p_authorize;
+    }
+
+    public List<ErrorMessage> getClientInfo() {
+        return clientInfo;
+    }
+
+    public void setClientInfo(List<ErrorMessage> p_clientInfo) {
+        clientInfo = p_clientInfo;
+    }
+
+    public List<ErrorMessage> getEndSession() {
+        return endSession;
+    }
+
+    public void setEndSession(List<ErrorMessage> p_endSession) {
+        endSession = p_endSession;
+    }
+
+    public List<ErrorMessage> getRegister() {
+        return register;
+    }
+
+    public void setRegister(List<ErrorMessage> p_register) {
+        register = p_register;
+    }
+
+    public List<ErrorMessage> getToken() {
+        return token;
+    }
+
+    public void setToken(List<ErrorMessage> p_token) {
+        token = p_token;
+    }
+
+    public List<ErrorMessage> getRevoke() {
+        return revoke;
+    }
+
+    public void setRevoke(List<ErrorMessage> p_revoke) {
+        revoke = p_revoke;
+    }
+
+    public List<ErrorMessage> getUma() {
+        return uma;
+    }
+
+    public void setUma(List<ErrorMessage> p_uma) {
+        uma = p_uma;
+    }
+
+    public List<ErrorMessage> getUserInfo() {
+        return userInfo;
+    }
+
+    public void setUserInfo(List<ErrorMessage> p_userInfo) {
+        userInfo = p_userInfo;
+    }
+
+    public List<ErrorMessage> getFido() {
+        return fido;
+    }
+
+    public void setFido(List<ErrorMessage> fido) {
+        this.fido = fido;
+    }
+
+    public List<ErrorMessage> getBackchannelAuthentication() {
+        return backchannelAuthentication;
+    }
+
+    public void setBackchannelAuthentication(List<ErrorMessage> backchannelAuthentication) {
+        this.backchannelAuthentication = backchannelAuthentication;
+    }
+}
\ No newline at end of file
diff --git a/oxAuth/Server/src/main/java/org/gluu/oxauth/model/error/ErrorResponseFactory.java b/oxAuth/Server/src/main/java/org/gluu/oxauth/model/error/ErrorResponseFactory.java
new file mode 100644
index 00000000..b50e4b72
--- /dev/null
+++ b/oxAuth/Server/src/main/java/org/gluu/oxauth/model/error/ErrorResponseFactory.java
@@ -0,0 +1,176 @@
+/*
+ * oxAuth is available under the MIT License (2008). See http://opensource.org/licenses/MIT for full text.
+ *
+ * Copyright (c) 2014, Gluu
+ */
+
+package org.gluu.oxauth.model.error;
+
+import org.gluu.model.error.ErrorMessage;
+import org.gluu.oxauth.model.authorize.AuthorizeErrorResponseType;
+import org.gluu.oxauth.model.ciba.BackchannelAuthenticationErrorResponseType;
+import org.gluu.oxauth.model.clientinfo.ClientInfoErrorResponseType;
+import org.gluu.oxauth.model.configuration.AppConfiguration;
+import org.gluu.oxauth.model.configuration.Configuration;
+import org.gluu.oxauth.model.fido.u2f.U2fErrorResponseType;
+import org.gluu.oxauth.model.register.RegisterErrorResponseType;
+import org.gluu.oxauth.model.session.EndSessionErrorResponseType;
+import org.gluu.oxauth.model.token.TokenErrorResponseType;
+import org.gluu.oxauth.model.token.TokenRevocationErrorResponseType;
+import org.gluu.oxauth.model.uma.UmaErrorResponseType;
+import org.gluu.oxauth.model.userinfo.UserInfoErrorResponseType;
+import org.gluu.oxauth.util.ServerUtil;
+import org.slf4j.Logger;
+import org.slf4j.LoggerFactory;
+
+import javax.enterprise.inject.Vetoed;
+import javax.ws.rs.WebApplicationException;
+import javax.ws.rs.core.MediaType;
+import javax.ws.rs.core.Response;
+import java.io.IOException;
+import java.util.List;
+
+/**
+ * Provides an easy way to get Error responses based in an error response type
+ *
+ * @author Yuriy Zabrovarnyy
+ * @author Javier Rojas Blum
+ * @author Yuriy Movchan
+ * @version August 20, 2019
+ */
+@Vetoed
+public class ErrorResponseFactory implements Configuration {
+
+    private static Logger log = LoggerFactory.getLogger(ErrorResponseFactory.class);
+
+    private ErrorMessages messages;
+    private AppConfiguration appConfiguration;
+
+    public ErrorResponseFactory() {
+    }
+
+    public ErrorResponseFactory(ErrorMessages messages, AppConfiguration appConfiguration) {
+        this.messages = messages;
+        this.appConfiguration = appConfiguration;
+    }
+
+    public ErrorMessages getMessages() {
+        return messages;
+    }
+
+    public void setMessages(ErrorMessages p_messages) {
+        messages = p_messages;
+    }
+
+    /**
+     * Looks for an error message.
+     *
+     * @param p_list error list
+     * @param type   The type of the error.
+     * @return Error message or <code>null</code> if not found.
+     */
+    private ErrorMessage getError(List<ErrorMessage> p_list, IErrorType type) {
+        log.debug("Looking for the error with id: {}", type);
+
+        if (p_list != null) {
+            for (ErrorMessage error : p_list) {
+                if (error.getId().equals(type.getParameter())) {
+                    log.debug("Found error, id: {}", type);
+                    return error;
+                }
+            }
+        }
+
+        log.error("Error not found, id: {}", type);
+        return new ErrorMessage(type.getParameter(), type.getParameter(), null);
+    }
+
+    public String getErrorAsJson(IErrorType p_type) {
+        return getErrorResponse(p_type).toJSonString();
+    }
+
+    public String errorAsJson(IErrorType p_type, String reason) {
+        final DefaultErrorResponse error = getErrorResponse(p_type);
+        error.setReason(appConfiguration.getErrorReasonEnabled() ? reason : "");
+        return error.toJSonString();
+    }
+
+    public WebApplicationException createWebApplicationException(Response.Status status, IErrorType type, String reason) throws WebApplicationException {
+        return new WebApplicationException(Response
+                .status(status)
+                .entity(errorAsJson(type, reason))
+                .type(MediaType.APPLICATION_JSON_TYPE)
+                .build());
+    }
+
+    public String getErrorAsJson(IErrorType p_type, String p_state, String reason) {
+        return getErrorResponse(p_type, p_state, reason).toJSonString();
+    }
+
+    public String getErrorAsQueryString(IErrorType p_type, String p_state) {
+        return getErrorAsQueryString(p_type, p_state, "");
+    }
+
+    public String getErrorAsQueryString(IErrorType p_type, String p_state, String reason) {
+        return getErrorResponse(p_type, p_state, reason).toQueryString();
+    }
+
+    public DefaultErrorResponse getErrorResponse(IErrorType type, String p_state, String reason) {
+        final DefaultErrorResponse response = getErrorResponse(type);
+        response.setState(p_state);
+        response.setReason(reason);
+        return response;
+    }
+
+    public DefaultErrorResponse getErrorResponse(IErrorType type) {
+        final DefaultErrorResponse response = new DefaultErrorResponse();
+        response.setType(type);
+
+        if (type != null && messages != null) {
+            List<ErrorMessage> list = null;
+            if (type instanceof AuthorizeErrorResponseType) {
+                list = messages.getAuthorize();
+            } else if (type instanceof ClientInfoErrorResponseType) {
+                list = messages.getClientInfo();
+            } else if (type instanceof EndSessionErrorResponseType) {
+                list = messages.getEndSession();
+            } else if (type instanceof RegisterErrorResponseType) {
+                list = messages.getRegister();
+            } else if (type instanceof TokenErrorResponseType) {
+                list = messages.getToken();
+            } else if (type instanceof TokenRevocationErrorResponseType) {
+                list = messages.getRevoke();
+            } else if (type instanceof UmaErrorResponseType) {
+                list = messages.getUma();
+            } else if (type instanceof UserInfoErrorResponseType) {
+                list = messages.getUserInfo();
+            } else if (type instanceof U2fErrorResponseType) {
+                list = messages.getFido();
+            } else if (type instanceof BackchannelAuthenticationErrorResponseType) {
+                list = messages.getBackchannelAuthentication();
+            }
+
+            if (list != null) {
+                final ErrorMessage m = getError(list, type);
+                response.setErrorDescription(m.getDescription());
+                response.setErrorUri(m.getUri());
+            }
+        }
+
+        return response;
+    }
+
+    public String getJsonErrorResponse(IErrorType type) {
+        final DefaultErrorResponse response = getErrorResponse(type);
+
+        JsonErrorResponse jsonErrorResponse = new JsonErrorResponse(response);
+
+        try {
+            return ServerUtil.asJson(jsonErrorResponse);
+        } catch (IOException ex) {
+            log.error("Failed to generate error response", ex);
+            return null;
+        }
+    }
+
+}
\ No newline at end of file
diff --git a/oxAuth/Server/src/main/java/org/gluu/oxauth/model/error/JsonErrorResponse.java b/oxAuth/Server/src/main/java/org/gluu/oxauth/model/error/JsonErrorResponse.java
new file mode 100644
index 00000000..0fc606dd
--- /dev/null
+++ b/oxAuth/Server/src/main/java/org/gluu/oxauth/model/error/JsonErrorResponse.java
@@ -0,0 +1,83 @@
+/*
+ * oxAuth is available under the MIT License (2008). See http://opensource.org/licenses/MIT for full text.
+ *
+ * Copyright (c) 2014, Gluu
+ */
+
+package org.gluu.oxauth.model.error;
+
+import com.fasterxml.jackson.annotation.JsonProperty;
+import com.fasterxml.jackson.annotation.JsonPropertyOrder;
+import org.jboss.resteasy.annotations.providers.jaxb.IgnoreMediaTypes;
+
+/**
+ * JSON error response
+ * 
+ * @author Yuriy Movchan Date: 05/20/2015
+ */
+@IgnoreMediaTypes("application/*+json") // try to ignore jettison as it's recommended here: http://docs.jboss.org/resteasy/docs/2.3.4.Final/userguide/html/json.html
+@JsonPropertyOrder({ "status", "error" })
+public class JsonErrorResponse {
+
+    @JsonProperty(value = "status")
+    private String status;
+
+    @JsonProperty(value = "error")
+    private String error;
+
+    @JsonProperty(value = "error_description")
+	private String errorDescription;
+
+    @JsonProperty(value = "error_uri")
+	private String errorUri;
+
+	public JsonErrorResponse() {
+    }
+
+	public JsonErrorResponse(DefaultErrorResponse response) {
+		this.error = response.getType().getParameter();
+		this.errorDescription = response.getErrorDescription();
+		this.errorUri = response.getErrorUri();
+	}
+
+	public String getStatus() {
+		return status;
+	}
+
+	public void setStatus(String status) {
+		this.status = status;
+	}
+
+	public String getError() {
+		return error;
+	}
+
+	public void setError(String error) {
+		this.error = error;
+	}
+
+	public String getErrorDescription() {
+		return errorDescription;
+	}
+
+	public void setErrorDescription(String errorDescription) {
+		this.errorDescription = errorDescription;
+	}
+
+	public String getErrorUri() {
+		return errorUri;
+	}
+
+	public void setErrorUri(String errorUri) {
+		this.errorUri = errorUri;
+	}
+
+	@Override
+	public String toString() {
+		StringBuilder builder = new StringBuilder();
+		builder.append("JsonErrorResponse [status=").append(status).append(", error=").append(error).append(", errorDescription=")
+				.append(errorDescription).append(", errorUri=").append(errorUri).append("]");
+		return builder.toString();
+	}
+
+}
diff --git a/oxAuth/Server/src/main/java/org/gluu/oxauth/model/exception/AcrChangedException.java b/oxAuth/Server/src/main/java/org/gluu/oxauth/model/exception/AcrChangedException.java
new file mode 100644
index 00000000..ef8f148f
--- /dev/null
+++ b/oxAuth/Server/src/main/java/org/gluu/oxauth/model/exception/AcrChangedException.java
@@ -0,0 +1,40 @@
+package org.gluu.oxauth.model.exception;
+
+/**
+ * @author Yuriy Zabrovarnyy
+ * @version 0.9, 16/06/2015
+ */
+
+public class AcrChangedException extends Exception {
+
+    private boolean forceReAuthentication;
+
+    public AcrChangedException() {
+        forceReAuthentication = true;
+    }
+
+    public AcrChangedException(boolean forceReAuthentication) {
+        this.forceReAuthentication = forceReAuthentication;
+    }
+
+    public AcrChangedException(Throwable cause) {
+        super(cause);
+    }
+
+    public AcrChangedException(String message) {
+        super(message);
+    }
+
+    public AcrChangedException(String message, Throwable cause) {
+        super(message, cause);
+    }
+
+    public boolean isForceReAuthentication() {
+        return forceReAuthentication;
+    }
+
+    public void setForceReAuthentication(boolean forceReAuthentication) {
+        this.forceReAuthentication = forceReAuthentication;
+    }
+
+}
diff --git a/oxAuth/Server/src/main/java/org/gluu/oxauth/model/exception/InvalidSessionStateException.java b/oxAuth/Server/src/main/java/org/gluu/oxauth/model/exception/InvalidSessionStateException.java
new file mode 100644
index 00000000..6ff81fa4
--- /dev/null
+++ b/oxAuth/Server/src/main/java/org/gluu/oxauth/model/exception/InvalidSessionStateException.java
@@ -0,0 +1,21 @@
+package org.gluu.oxauth.model.exception;
+
+/**
+ * Indicates that current session should be invalidated
+ *
+ * @author Yuriy Movchan Date: 06/04//2019
+ *
+ */
+public class InvalidSessionStateException extends RuntimeException {
+
+	private static final long serialVersionUID = -2256375601182225949L;
+
+	public InvalidSessionStateException() {
+		super();
+	}
+
+	public InvalidSessionStateException(String message) {
+		super(message);
+	}
+
+}
diff --git a/oxAuth/Server/src/main/java/org/gluu/oxauth/model/exception/InvalidStateException.java b/oxAuth/Server/src/main/java/org/gluu/oxauth/model/exception/InvalidStateException.java
new file mode 100644
index 00000000..f5d7f84e
--- /dev/null
+++ b/oxAuth/Server/src/main/java/org/gluu/oxauth/model/exception/InvalidStateException.java
@@ -0,0 +1,21 @@
+package org.gluu.oxauth.model.exception;
+
+/**
+ * Runtime exception to stop code execution if something is not right
+ *
+ * @author Yuriy Movchan Date: 09/08//2016
+ *
+ */
+public class InvalidStateException extends RuntimeException {
+
+	private static final long serialVersionUID = 6256375601182225949L;
+
+	public InvalidStateException() {
+		super();
+	}
+
+	public InvalidStateException(String message) {
+		super(message);
+	}
+
+}
diff --git a/oxAuth/Server/src/main/java/org/gluu/oxauth/model/fido/u2f/AuthenticateRequestMessageLdap.java b/oxAuth/Server/src/main/java/org/gluu/oxauth/model/fido/u2f/AuthenticateRequestMessageLdap.java
new file mode 100644
index 00000000..8758a110
--- /dev/null
+++ b/oxAuth/Server/src/main/java/org/gluu/oxauth/model/fido/u2f/AuthenticateRequestMessageLdap.java
@@ -0,0 +1,59 @@
+/*
+ * oxAuth is available under the MIT License (2008). See http://opensource.org/licenses/MIT for full text.
+ *
+ * Copyright (c) 2014, Gluu
+ */
+package org.gluu.oxauth.model.fido.u2f;
+
+import java.io.Serializable;
+import java.util.Date;
+
+import org.gluu.oxauth.model.fido.u2f.protocol.AuthenticateRequestMessage;
+import org.gluu.persist.annotation.AttributeName;
+import org.gluu.persist.annotation.JsonObject;
+
+/**
+ * U2F authentication requests
+ *
+ * @author Yuriy Movchan
+ * @version August 9, 2017
+ */
+public class AuthenticateRequestMessageLdap extends RequestMessageLdap implements Serializable {
+
+    private static final long serialVersionUID = -1142931562244920584L;
+
+    @JsonObject
+    @AttributeName(name = "oxRequest")
+    private AuthenticateRequestMessage authenticateRequestMessage;
+
+    public AuthenticateRequestMessageLdap() {
+    }
+
+    public AuthenticateRequestMessageLdap(AuthenticateRequestMessage authenticateRequestMessage) {
+        this.authenticateRequestMessage = authenticateRequestMessage;
+        this.requestId = authenticateRequestMessage.getRequestId();
+    }
+
+    public AuthenticateRequestMessageLdap(String dn, String id, Date creationDate, String sessionId, String userInum,
+                                          AuthenticateRequestMessage authenticateRequestMessage) {
+        super(dn, id, authenticateRequestMessage.getRequestId(), creationDate, sessionId, userInum);
+        this.authenticateRequestMessage = authenticateRequestMessage;
+    }
+
+    public AuthenticateRequestMessage getAuthenticateRequestMessage() {
+        return authenticateRequestMessage;
+    }
+
+    public void setAuthenticateRequestMessage(AuthenticateRequestMessage authenticateRequestMessage) {
+        this.authenticateRequestMessage = authenticateRequestMessage;
+    }
+
+    @Override
+    public String toString() {
+        StringBuilder builder = new StringBuilder();
+        builder.append("AuthenticateRequestMessageLdap [id=").append(id).append(", authenticateRequestMessage=").append(authenticateRequestMessage)
+                .append(", requestId=").append(requestId).append(", creationDate=").append(creationDate).append("]");
+        return builder.toString();
+    }
+
+}
diff --git a/oxAuth/Server/src/main/java/org/gluu/oxauth/model/fido/u2f/DeviceRegistration.java b/oxAuth/Server/src/main/java/org/gluu/oxauth/model/fido/u2f/DeviceRegistration.java
new file mode 100644
index 00000000..c3151f53
--- /dev/null
+++ b/oxAuth/Server/src/main/java/org/gluu/oxauth/model/fido/u2f/DeviceRegistration.java
@@ -0,0 +1,327 @@
+/*
+ * oxAuth is available under the MIT License (2008). See http://opensource.org/licenses/MIT for full text.
+ *
+ * Copyright (c) 2014, Gluu
+ */
+package org.gluu.oxauth.model.fido.u2f;
+
+import java.io.Serializable;
+import java.security.cert.CertificateEncodingException;
+import java.security.cert.X509Certificate;
+import java.util.Calendar;
+import java.util.Date;
+import java.util.GregorianCalendar;
+import java.util.TimeZone;
+
+import org.gluu.oxauth.exception.fido.u2f.InvalidDeviceCounterException;
+import org.gluu.oxauth.model.fido.u2f.exception.BadInputException;
+import org.gluu.oxauth.model.fido.u2f.protocol.DeviceData;
+import org.gluu.oxauth.model.util.Base64Util;
+import org.gluu.persist.annotation.AttributeName;
+import org.gluu.persist.annotation.DataEntry;
+import org.gluu.persist.annotation.Expiration;
+import org.gluu.persist.annotation.JsonObject;
+import org.gluu.persist.annotation.ObjectClass;
+import org.gluu.persist.model.base.BaseEntry;
+
+/**
+ * U2F Device registration
+ *
+ * @author Yuriy Movchan Date: 05/14/2015
+ */
+@DataEntry(sortBy = "creationDate", sortByName = "creationDate")
+@ObjectClass(value = "oxDeviceRegistration")
+public class DeviceRegistration extends BaseEntry implements Serializable {
+
+	private static final long serialVersionUID = -4542931562244920585L;
+
+	@AttributeName(ignoreDuringUpdate = true, name = "oxId")
+	private String id;
+
+	@AttributeName
+	private String displayName;
+
+	@AttributeName
+	private String description;
+
+	@AttributeName(name = "oxNickName")
+	private String nickname;
+
+    @AttributeName(name = "personInum")
+    protected String userInum;
+
+    @JsonObject
+    @AttributeName(name = "oxDeviceRegistrationConf")
+	private DeviceRegistrationConfiguration deviceRegistrationConfiguration;
+
+    @JsonObject
+    @AttributeName(name = "oxDeviceNotificationConf")
+    private String deviceNotificationConf;
+
+    @AttributeName(name = "oxCounter")
+	private long counter;
+
+    @AttributeName(name = "oxStatus")
+	private DeviceRegistrationStatus status;
+
+	@AttributeName(name = "oxApplication")
+	private String application;
+
+	@AttributeName(name = "oxDeviceKeyHandle")
+	private String keyHandle;
+
+	@AttributeName(name = "oxDeviceHashCode")
+	private Integer keyHandleHashCode;
+
+    @JsonObject
+	@AttributeName(name = "oxDeviceData")
+	private DeviceData deviceData;
+
+	@AttributeName(name = "creationDate")
+	private Date creationDate;
+
+    @AttributeName(name = "oxLastAccessTime")
+    private Date lastAccessTime;
+
+    @AttributeName(name = "exp")
+    private Date expirationDate;
+
+    @AttributeName(name = "del")
+    private boolean deletable = true;
+
+    @Expiration
+    private Integer ttl;
+
+	public DeviceRegistration() {}
+
+	public DeviceRegistration(String userInum, String keyHandle, String publicKey, String attestationCert, long counter, DeviceRegistrationStatus status,
+			String application, Integer keyHandleHashCode, Date creationDate) {
+		this.deviceRegistrationConfiguration = new DeviceRegistrationConfiguration(publicKey, attestationCert);
+		this.counter = counter;
+		this.status = status;
+		this.application = application;
+		this.userInum = userInum;
+		this.keyHandle = keyHandle;
+		this.keyHandleHashCode = keyHandleHashCode;
+		this.creationDate = creationDate;
+	}
+
+	public DeviceRegistration(String userInum, String keyHandle, String publicKey, X509Certificate attestationCert, long counter) throws BadInputException {
+		this.userInum = userInum;
+		this.keyHandle = keyHandle;
+		try {
+			String attestationCertDecoded = Base64Util.base64urlencode(attestationCert.getEncoded());
+			this.deviceRegistrationConfiguration = new DeviceRegistrationConfiguration(publicKey, attestationCertDecoded);
+		} catch (CertificateEncodingException e) {
+			throw new BadInputException("Malformed attestation certificate", e);
+		}
+
+		this.counter = counter;
+	}
+
+	public String getId() {
+		return id;
+	}
+
+	public void setId(String id) {
+		this.id = id;
+	}
+
+	public String getDisplayName() {
+		return displayName;
+	}
+
+	public void setDisplayName(String displayName) {
+		this.displayName = displayName;
+	}
+
+	public String getDescription() {
+		return description;
+	}
+
+	public void setDescription(String description) {
+		this.description = description;
+	}
+
+	public String getNickname() {
+		return nickname;
+	}
+
+	public void setNickname(String nickname) {
+		this.nickname = nickname;
+	}
+
+	public String getUserInum() {
+		return userInum;
+	}
+
+	public void setUserInum(String userInum) {
+		this.userInum = userInum;
+	}
+
+	public DeviceRegistrationConfiguration getDeviceRegistrationConfiguration() {
+		return deviceRegistrationConfiguration;
+	}
+
+	public void setDeviceRegistrationConfiguration(DeviceRegistrationConfiguration deviceRegistrationConfiguration) {
+		this.deviceRegistrationConfiguration = deviceRegistrationConfiguration;
+	}
+
+	public String getDeviceNotificationConf() {
+        return deviceNotificationConf;
+    }
+
+	public void setDeviceNotificationConf(String deviceNotificationConf) {
+        this.deviceNotificationConf = deviceNotificationConf;
+    }
+
+    public long getCounter() {
+		return counter;
+	}
+
+	public void setCounter(long counter) {
+		this.counter = counter;
+	}
+
+	public DeviceRegistrationStatus getStatus() {
+		return status;
+	}
+
+	public void setStatus(DeviceRegistrationStatus status) {
+		this.status = status;
+	}
+
+	public String getApplication() {
+		return application;
+	}
+
+	public void setApplication(String application) {
+		this.application = application;
+	}
+
+	public String getKeyHandle() {
+		return keyHandle;
+	}
+
+	public void setKeyHandle(String keyHandle) {
+		this.keyHandle = keyHandle;
+	}
+
+	public Integer getKeyHandleHashCode() {
+		return keyHandleHashCode;
+	}
+
+	public void setKeyHandleHashCode(Integer keyHandleHashCode) {
+		this.keyHandleHashCode = keyHandleHashCode;
+	}
+
+	public Date getCreationDate() {
+		return creationDate;
+	}
+
+	public void setCreationDate(Date creationDate) {
+		this.creationDate = creationDate;
+    }
+
+	public void clearExpiration() {
+        this.expirationDate = null;
+        this.deletable = false;
+        this.ttl = 0;
+	}
+
+	public void setExpiration() {
+        if (creationDate != null) {
+            final int expiration = 90;
+            Calendar calendar = new GregorianCalendar(TimeZone.getTimeZone("UTC"));
+            calendar.setTime(creationDate);
+            calendar.add(Calendar.SECOND, expiration);
+            this.expirationDate = calendar.getTime();
+            this.deletable = true;
+            this.ttl = expiration;
+        }
+    }
+
+    public Integer getTtl() {
+        return ttl;
+    }
+
+    public void setTtl(Integer ttl) {
+        this.ttl = ttl;
+    }
+
+    public DeviceData getDeviceData() {
+		return deviceData;
+	}
+
+	public void setDeviceData(DeviceData deviceData) {
+		this.deviceData = deviceData;
+	}
+
+	public Date getLastAccessTime() {
+		return lastAccessTime;
+	}
+
+	public void setLastAccessTime(Date lastAccessTime) {
+		this.lastAccessTime = lastAccessTime;
+	}
+
+	public boolean isCompromised() {
+		return DeviceRegistrationStatus.COMPROMISED == this.status;
+	}
+
+	public void markCompromised() {
+		this.status = DeviceRegistrationStatus.COMPROMISED;
+	}
+
+	public void checkAndUpdateCounter(long clientCounter) throws InvalidDeviceCounterException {
+		if (clientCounter == Integer.MAX_VALUE) {
+			// TODO: Remove in 6.0.It's enough period to migrate broken iOS counter
+			// Handle special case when counter value is max positive integer value
+			counter = -1;
+		} else {
+			if (clientCounter <= counter) {
+				markCompromised();
+				throw new InvalidDeviceCounterException(this);
+			}
+			counter = clientCounter;
+		}
+	}
+
+    public Date getExpirationDate() {
+        return expirationDate;
+    }
+
+    public void setExpirationDate(Date expirationDate) {
+        this.expirationDate = expirationDate;
+    }
+
+    public boolean isDeletable() {
+        return deletable;
+    }
+
+    public void setDeletable(boolean deletable) {
+        this.deletable = deletable;
+    }
+
+    @Override
+    public String toString() {
+        return "DeviceRegistration{" +
+                "id='" + id + '\'' +
+                ", displayName='" + displayName + '\'' +
+                ", description='" + description + '\'' +
+                ", nickname='" + nickname + '\'' +
+                ", deviceRegistrationConfiguration=" + deviceRegistrationConfiguration +
+                ", deviceNotificationConf='" + deviceNotificationConf + '\'' +
+                ", counter=" + counter +
+                ", status=" + status +
+                ", application='" + application + '\'' +
+                ", keyHandle='" + keyHandle + '\'' +
+                ", keyHandleHashCode=" + keyHandleHashCode +
+                ", deviceData=" + deviceData +
+                ", creationDate=" + creationDate +
+                ", lastAccessTime=" + lastAccessTime +
+                ", expirationDate=" + expirationDate +
+                ", deletable=" + deletable +
+                "} " + super.toString();
+    }
+}
diff --git a/oxAuth/Server/src/main/java/org/gluu/oxauth/model/fido/u2f/DeviceRegistrationConfiguration.java b/oxAuth/Server/src/main/java/org/gluu/oxauth/model/fido/u2f/DeviceRegistrationConfiguration.java
new file mode 100644
index 00000000..b0e1aa6a
--- /dev/null
+++ b/oxAuth/Server/src/main/java/org/gluu/oxauth/model/fido/u2f/DeviceRegistrationConfiguration.java
@@ -0,0 +1,53 @@
+package org.gluu.oxauth.model.fido.u2f;
+
+import java.security.cert.CertificateException;
+import java.security.cert.X509Certificate;
+
+import com.fasterxml.jackson.annotation.JsonIgnore;
+import com.fasterxml.jackson.annotation.JsonProperty;
+import org.gluu.oxauth.crypto.cert.CertificateParser;
+import org.gluu.oxauth.model.util.Base64Util;
+
+/**
+ * U2F Device registration key
+ *
+ * @author Yuriy Movchan Date: 05/29/2015
+ */
+public class DeviceRegistrationConfiguration {
+
+	@JsonProperty
+	public final String publicKey;
+
+	@JsonProperty
+	public final String attestationCert;
+
+	public DeviceRegistrationConfiguration(@JsonProperty("publicKey") String publicKey,
+			@JsonProperty("attestationCert") String attestationCert) {
+		this.publicKey = publicKey;
+		this.attestationCert = attestationCert;
+	}
+
+	public String getPublicKey() {
+		return publicKey;
+	}
+
+	public String getAttestationCert() {
+		return attestationCert;
+	}
+
+	@JsonIgnore
+	public X509Certificate getAttestationCertificate() throws CertificateException, NoSuchFieldException {
+		if (attestationCert == null) {
+			throw new NoSuchFieldException();
+		}
+		return CertificateParser.parseDer(Base64Util.base64urldecode(attestationCert));
+	}
+
+	@Override
+	public String toString() {
+		StringBuilder builder = new StringBuilder();
+		builder.append("DeviceRegistrationConfiguration [publicKey=").append(publicKey).append(", attestationCert=").append(attestationCert).append("]");
+		return builder.toString();
+	}
+
+}
\ No newline at end of file
diff --git a/oxAuth/Server/src/main/java/org/gluu/oxauth/model/fido/u2f/DeviceRegistrationResult.java b/oxAuth/Server/src/main/java/org/gluu/oxauth/model/fido/u2f/DeviceRegistrationResult.java
new file mode 100644
index 00000000..bb8d82ff
--- /dev/null
+++ b/oxAuth/Server/src/main/java/org/gluu/oxauth/model/fido/u2f/DeviceRegistrationResult.java
@@ -0,0 +1,50 @@
+/*
+ * oxAuth is available under the MIT License (2008). See http://opensource.org/licenses/MIT for full text.
+ *
+ * Copyright (c) 2014, Gluu
+ */
+package org.gluu.oxauth.model.fido.u2f;
+
+import java.io.Serializable;
+
+/**
+ * U2F Device registration with status
+ *
+ * @author Yuriy Movchan Date: 03/22/2016
+ */
+public class DeviceRegistrationResult implements Serializable {
+
+	private static final long serialVersionUID = -1542131162244920584L;
+
+	private DeviceRegistration deviceRegistration;
+
+	private Status status;
+
+	public DeviceRegistrationResult() {}
+
+	public DeviceRegistrationResult(DeviceRegistration deviceRegistration, Status status) {
+		this.deviceRegistration = deviceRegistration;
+		this.status = status;
+	}
+
+	public DeviceRegistration getDeviceRegistration() {
+		return deviceRegistration;
+	}
+
+	public void setDeviceRegistration(DeviceRegistration deviceRegistration) {
+		this.deviceRegistration = deviceRegistration;
+	}
+
+	public Status getStatus() {
+		return status;
+	}
+
+	public void setStatus(Status status) {
+		this.status = status;
+	}
+
+	public enum Status {
+		APPROVED, CANCELED;
+	}
+
+}
diff --git a/oxAuth/Server/src/main/java/org/gluu/oxauth/model/fido/u2f/RegisterRequestMessageLdap.java b/oxAuth/Server/src/main/java/org/gluu/oxauth/model/fido/u2f/RegisterRequestMessageLdap.java
new file mode 100644
index 00000000..2caa8a3f
--- /dev/null
+++ b/oxAuth/Server/src/main/java/org/gluu/oxauth/model/fido/u2f/RegisterRequestMessageLdap.java
@@ -0,0 +1,59 @@
+/*
+ * oxAuth is available under the MIT License (2008). See http://opensource.org/licenses/MIT for full text.
+ *
+ * Copyright (c) 2014, Gluu
+ */
+package org.gluu.oxauth.model.fido.u2f;
+
+import java.io.Serializable;
+import java.util.Date;
+
+import org.gluu.oxauth.model.fido.u2f.protocol.RegisterRequestMessage;
+import org.gluu.persist.annotation.AttributeName;
+import org.gluu.persist.annotation.JsonObject;
+
+/**
+ * U2F registration requests
+ *
+ * @author Yuriy Movchan
+ * @version August 9, 2017
+ */
+public class RegisterRequestMessageLdap extends RequestMessageLdap implements Serializable {
+
+    private static final long serialVersionUID = -2242931562244920584L;
+
+    @JsonObject
+    @AttributeName(name = "oxRequest")
+    private RegisterRequestMessage registerRequestMessage;
+
+    public RegisterRequestMessageLdap() {
+    }
+
+    public RegisterRequestMessageLdap(RegisterRequestMessage registerRequestMessage) {
+        this.registerRequestMessage = registerRequestMessage;
+        this.requestId = registerRequestMessage.getRequestId();
+    }
+
+    public RegisterRequestMessageLdap(String dn, String id, Date creationDate, String sessionId, String userInum,
+                                      RegisterRequestMessage registerRequestMessage) {
+        super(dn, id, registerRequestMessage.getRequestId(), creationDate, sessionId, userInum);
+        this.registerRequestMessage = registerRequestMessage;
+    }
+
+    public RegisterRequestMessage getRegisterRequestMessage() {
+        return registerRequestMessage;
+    }
+
+    public void setRegisterRequestMessage(RegisterRequestMessage registerRequestMessage) {
+        this.registerRequestMessage = registerRequestMessage;
+    }
+
+    @Override
+    public String toString() {
+        StringBuilder builder = new StringBuilder();
+        builder.append("RegisterRequestMessageLdap [id=").append(id).append(", registerRequestMessage=").append(registerRequestMessage).append(", requestId=")
+                .append(requestId).append(", creationDate=").append(creationDate).append("]");
+        return builder.toString();
+    }
+
+}
diff --git a/oxAuth/Server/src/main/java/org/gluu/oxauth/model/fido/u2f/RequestMessageLdap.java b/oxAuth/Server/src/main/java/org/gluu/oxauth/model/fido/u2f/RequestMessageLdap.java
new file mode 100644
index 00000000..ac0a3641
--- /dev/null
+++ b/oxAuth/Server/src/main/java/org/gluu/oxauth/model/fido/u2f/RequestMessageLdap.java
@@ -0,0 +1,134 @@
+package org.gluu.oxauth.model.fido.u2f;
+
+import org.gluu.persist.annotation.Expiration;
+import org.gluu.persist.model.base.BaseEntry;
+import org.gluu.persist.annotation.AttributeName;
+import org.gluu.persist.annotation.DataEntry;
+import org.gluu.persist.annotation.ObjectClass;
+
+import java.util.Calendar;
+import java.util.Date;
+import java.util.GregorianCalendar;
+import java.util.TimeZone;
+
+/**
+ * U2F base request
+ *
+ * @author Yuriy Movchan
+ * @version August 9, 2017
+ */
+@DataEntry(sortBy = "creationDate", sortByName = "creationDate")
+@ObjectClass(value = "oxU2fRequest")
+public class RequestMessageLdap extends BaseEntry {
+
+    @AttributeName(ignoreDuringUpdate = true, name = "oxId")
+    protected String id;
+
+    @AttributeName(name = "oxRequestId")
+    protected String requestId;
+
+    @AttributeName(name = "creationDate")
+    protected Date creationDate;
+
+    @AttributeName(name = "oxSessionStateId")
+    protected String sessionId;
+
+    @AttributeName(name = "personInum")
+    protected String userInum;
+
+    @AttributeName(name = "exp")
+    private Date expirationDate;
+
+    @AttributeName(name = "del")
+    private boolean deletable = true;
+
+    @Expiration
+    private Integer ttl;
+
+    public RequestMessageLdap() {
+    }
+
+    public RequestMessageLdap(String dn) {
+        super(dn);
+    }
+
+    public RequestMessageLdap(String dn, String id, String requestId, Date creationDate, String sessionId, String userInum) {
+        super(dn);
+        this.id = id;
+        this.requestId = requestId;
+        this.creationDate = creationDate;
+        this.sessionId = sessionId;
+        this.userInum = userInum;
+
+        final int expiration = 90;
+        Calendar calendar = new GregorianCalendar(TimeZone.getTimeZone("UTC"));
+        calendar.setTime(creationDate);
+        calendar.add(Calendar.SECOND, expiration);
+        this.expirationDate = calendar.getTime();
+        this.ttl = expiration;
+    }
+
+    public Integer getTtl() {
+        return ttl;
+    }
+
+    public void setTtl(Integer ttl) {
+        this.ttl = ttl;
+    }
+
+    public String getId() {
+        return id;
+    }
+
+    public void setId(String id) {
+        this.id = id;
+    }
+
+    public String getRequestId() {
+        return requestId;
+    }
+
+    public void setRequestId(String requestId) {
+        this.requestId = requestId;
+    }
+
+    public Date getCreationDate() {
+        return creationDate;
+    }
+
+    public void setCreationDate(Date creationDate) {
+        this.creationDate = creationDate;
+    }
+
+    public String getSessionId() {
+        return sessionId;
+    }
+
+    public void setSessionId(String sessionId) {
+        this.sessionId = sessionId;
+    }
+
+    public String getUserInum() {
+        return userInum;
+    }
+
+    public void setUserInum(String userInum) {
+        this.userInum = userInum;
+    }
+
+    public Date getExpirationDate() {
+        return expirationDate;
+    }
+
+    public void setExpirationDate(Date expirationDate) {
+        this.expirationDate = expirationDate;
+    }
+
+    public boolean isDeletable() {
+        return deletable;
+    }
+
+    public void setDeletable(boolean deletable) {
+        this.deletable = deletable;
+    }
+}
\ No newline at end of file
diff --git a/oxAuth/Server/src/main/java/org/gluu/oxauth/model/ldap/CIBARequest.java b/oxAuth/Server/src/main/java/org/gluu/oxauth/model/ldap/CIBARequest.java
new file mode 100644
index 00000000..5570d49d
--- /dev/null
+++ b/oxAuth/Server/src/main/java/org/gluu/oxauth/model/ldap/CIBARequest.java
@@ -0,0 +1,118 @@
+package org.gluu.oxauth.model.ldap;
+
+import org.gluu.persist.annotation.AttributeName;
+import org.gluu.persist.annotation.DN;
+import org.gluu.persist.annotation.DataEntry;
+import org.gluu.persist.annotation.ObjectClass;
+
+import java.io.Serializable;
+import java.util.Date;
+
+/**
+ * Object class used to save information of every CIBA request.
+ *
+ * @author Milton BO
+ * @version May 27, 2020
+ */
+@DataEntry
+@ObjectClass(value = "cibaRequest")
+public class CIBARequest implements Serializable {
+
+    @DN
+    private String dn;
+
+    @AttributeName(name = "authReqId")
+    private String authReqId;
+
+    @AttributeName(name = "clnId", consistency = true)
+    private String clientId;
+
+    @AttributeName(name = "usrId", consistency = true)
+    private String userId;
+
+    @AttributeName(name = "creationDate")
+    private Date creationDate;
+
+    @AttributeName(name = "exp")
+    private Date expirationDate;
+
+    @AttributeName(name = "oxStatus")
+    private String status;
+
+
+    public String getDn() {
+        return dn;
+    }
+
+    public void setDn(String dn) {
+        this.dn = dn;
+    }
+
+    public String getAuthReqId() {
+        return authReqId;
+    }
+
+    public void setAuthReqId(String authReqId) {
+        this.authReqId = authReqId;
+    }
+
+    public String getClientId() {
+        return clientId;
+    }
+
+    public void setClientId(String clientId) {
+        this.clientId = clientId;
+    }
+
+    public String getUserId() {
+        return userId;
+    }
+
+    public void setUserId(String userId) {
+        this.userId = userId;
+    }
+
+    public Date getCreationDate() {
+        return creationDate;
+    }
+
+    public void setCreationDate(Date creationDate) {
+        this.creationDate = creationDate;
+    }
+
+    public Date getExpirationDate() {
+        return expirationDate;
+    }
+
+    public void setExpirationDate(Date expirationDate) {
+        this.expirationDate = expirationDate;
+    }
+
+    public String getStatus() {
+        return status;
+    }
+
+    public void setStatus(String status) {
+        this.status = status;
+    }
+
+    @Override
+    public boolean equals(Object o) {
+        if (this == o) return true;
+        if (o == null || getClass() != o.getClass()) return false;
+
+        CIBARequest that = (CIBARequest) o;
+
+        if (!dn.equals(that.dn)) return false;
+        if (!authReqId.equals(that.authReqId)) return false;
+
+        return true;
+    }
+
+    @Override
+    public int hashCode() {
+        int result = dn.hashCode();
+        result = 31 * result + authReqId.hashCode();
+        return result;
+    }
+}
diff --git a/oxAuth/Server/src/main/java/org/gluu/oxauth/model/ldap/ClientAuthorization.java b/oxAuth/Server/src/main/java/org/gluu/oxauth/model/ldap/ClientAuthorization.java
new file mode 100644
index 00000000..91740d3f
--- /dev/null
+++ b/oxAuth/Server/src/main/java/org/gluu/oxauth/model/ldap/ClientAuthorization.java
@@ -0,0 +1,123 @@
+package org.gluu.oxauth.model.ldap;
+
+import org.gluu.persist.annotation.*;
+
+import java.io.Serializable;
+import java.util.Date;
+
+/**
+ * @author Javier Rojas Blum
+ * @version October 16, 2015
+ */
+@DataEntry
+@ObjectClass(value = "oxClientAuthorization")
+public class ClientAuthorization implements Serializable {
+
+    @DN
+    private String dn;
+
+    @AttributeName(name = "oxId")
+    private String id;
+
+    @AttributeName(name = "oxAuthClientId", consistency = true)
+    private String clientId;
+
+    @AttributeName(name = "oxAuthUserId", consistency = true)
+    private String userId;
+
+    @AttributeName(name = "oxAuthScope")
+    private String[] scopes;
+
+    @AttributeName(name = "exp")
+    private Date expirationDate;
+
+    @AttributeName(name = "del")
+    private boolean deletable = true;
+
+    @Expiration
+    private Integer ttl;
+
+    public Integer getTtl() {
+        return ttl;
+    }
+
+    public void setTtl(Integer ttl) {
+        this.ttl = ttl;
+    }
+
+    public String getDn() {
+        return dn;
+    }
+
+    public void setDn(String dn) {
+        this.dn = dn;
+    }
+
+    public String getId() {
+        return id;
+    }
+
+    public void setId(String id) {
+        this.id = id;
+    }
+
+    public String getClientId() {
+        return clientId;
+    }
+
+    public void setClientId(String clientId) {
+        this.clientId = clientId;
+    }
+
+    public String[] getScopes() {
+        return scopes;
+    }
+
+    public void setScopes(String[] scopes) {
+        this.scopes = scopes;
+    }
+
+    public String getUserId() {
+        return userId;
+    }
+
+    public void setUserId(String userId) {
+        this.userId = userId;
+    }
+
+    public Date getExpirationDate() {
+        return expirationDate;
+    }
+
+    public void setExpirationDate(Date expirationDate) {
+        this.expirationDate = expirationDate;
+    }
+
+    public boolean isDeletable() {
+        return deletable;
+    }
+
+    public void setDeletable(boolean deletable) {
+        this.deletable = deletable;
+    }
+
+    @Override
+    public boolean equals(Object o) {
+        if (this == o) return true;
+        if (o == null || getClass() != o.getClass()) return false;
+
+        ClientAuthorization that = (ClientAuthorization) o;
+
+        if (!dn.equals(that.dn)) return false;
+        if (!id.equals(that.id)) return false;
+
+        return true;
+    }
+
+    @Override
+    public int hashCode() {
+        int result = dn.hashCode();
+        result = 31 * result + id.hashCode();
+        return result;
+    }
+}
diff --git a/oxAuth/Server/src/main/java/org/gluu/oxauth/model/ldap/SchemaEntry.java b/oxAuth/Server/src/main/java/org/gluu/oxauth/model/ldap/SchemaEntry.java
new file mode 100644
index 00000000..de29f731
--- /dev/null
+++ b/oxAuth/Server/src/main/java/org/gluu/oxauth/model/ldap/SchemaEntry.java
@@ -0,0 +1,99 @@
+/*
+ * oxAuth is available under the MIT License (2008). See http://opensource.org/licenses/MIT for full text.
+ *
+ * Copyright (c) 2014, Gluu
+ */
+
+package org.gluu.oxauth.model.ldap;
+
+import java.io.Serializable;
+import java.util.ArrayList;
+import java.util.List;
+
+import org.gluu.persist.model.base.BaseEntry;
+import org.gluu.persist.annotation.AttributeName;
+
+/**
+ * Schema attribute
+ *
+ * @author Yuriy Movchan Date: 10.14.2010
+ */
+@org.gluu.persist.annotation.SchemaEntry
+public final class SchemaEntry extends BaseEntry implements Serializable {
+
+	private static final long serialVersionUID = 3819004894646725606L;
+
+	@AttributeName
+	private List<String> attributeTypes = new ArrayList<String>();
+
+	@AttributeName
+	private List<String> objectClasses = new ArrayList<String>();
+
+	public final List<String> getAttributeTypes() {
+		return attributeTypes;
+	}
+
+	public final void setAttributeTypes(List<String> attributeTypes) {
+		this.attributeTypes = attributeTypes;
+	}
+
+	public final void addAttributeType(String attributeType) {
+		this.attributeTypes.add(attributeType);
+	}
+
+	public final List<String> getObjectClasses() {
+		return objectClasses;
+	}
+
+	public final void setObjectClasses(List<String> objectClasses) {
+		this.objectClasses = objectClasses;
+	}
+
+	public final void addObjectClass(String objectClass) {
+		this.objectClasses.add(objectClass);
+	}
+
+	@Override
+	public int hashCode() {
+		final int prime = 31;
+		int result = super.hashCode();
+		result = prime * result + ((attributeTypes == null) ? 0 : attributeTypes.hashCode());
+		result = prime * result + ((objectClasses == null) ? 0 : objectClasses.hashCode());
+		return result;
+	}
+
+	@Override
+	public boolean equals(Object obj) {
+		if (this == obj) {
+			return true;
+		}
+		if (!super.equals(obj)) {
+			return false;
+		}
+		if (getClass() != obj.getClass()) {
+			return false;
+		}
+		SchemaEntry other = (SchemaEntry) obj;
+		if (attributeTypes == null) {
+			if (other.attributeTypes != null) {
+				return false;
+			}
+		} else if (!attributeTypes.equals(other.attributeTypes)) {
+			return false;
+		}
+		if (objectClasses == null) {
+			if (other.objectClasses != null) {
+				return false;
+			}
+		} else if (!objectClasses.equals(other.objectClasses)) {
+			return false;
+		}
+		return true;
+	}
+
+	@Override
+	public String toString() {
+		return String.format("SchemaAttribute [dn=%s, attributeTypes=%s, objectClasses=%s]", getDn(), attributeTypes, objectClasses);
+	}
+
+}
diff --git a/oxAuth/Server/src/main/java/org/gluu/oxauth/model/ldap/TokenAttributes.java b/oxAuth/Server/src/main/java/org/gluu/oxauth/model/ldap/TokenAttributes.java
new file mode 100644
index 00000000..7d95cf46
--- /dev/null
+++ b/oxAuth/Server/src/main/java/org/gluu/oxauth/model/ldap/TokenAttributes.java
@@ -0,0 +1,47 @@
+package org.gluu.oxauth.model.ldap;
+
+import com.fasterxml.jackson.annotation.JsonIgnoreProperties;
+import com.fasterxml.jackson.annotation.JsonProperty;
+
+import java.io.Serializable;
+import java.util.HashMap;
+import java.util.Map;
+
+/**
+ * @author Yuriy Zabrovarnyy
+ */
+@JsonIgnoreProperties(
+        ignoreUnknown = true
+)
+public class TokenAttributes implements Serializable {
+
+    @JsonProperty("x5cs256")
+    private String x5cs256;
+    @JsonProperty("attributes")
+    private Map<String, String> attributes;
+
+    public String getX5cs256() {
+        return x5cs256;
+    }
+
+    public void setX5cs256(String x5cs256) {
+        this.x5cs256 = x5cs256;
+    }
+
+    public Map<String, String> getAttributes() {
+        if (attributes == null) attributes = new HashMap<>();
+        return attributes;
+    }
+
+    public void setAttributes(Map<String, String> attributes) {
+        this.attributes = attributes;
+    }
+
+    @Override
+    public String toString() {
+        return "TokenAttributes{" +
+                "attributes='" + attributes + '\'' +
+                "x5cs256='" + x5cs256 + '\'' +
+                '}';
+    }
+}
diff --git a/oxAuth/Server/src/main/java/org/gluu/oxauth/model/ldap/TokenLdap.java b/oxAuth/Server/src/main/java/org/gluu/oxauth/model/ldap/TokenLdap.java
new file mode 100644
index 00000000..e88e4f74
--- /dev/null
+++ b/oxAuth/Server/src/main/java/org/gluu/oxauth/model/ldap/TokenLdap.java
@@ -0,0 +1,314 @@
+/*
+ * oxAuth is available under the MIT License (2008). See http://opensource.org/licenses/MIT for full text.
+ *
+ * Copyright (c) 2014, Gluu
+ */
+
+package org.gluu.oxauth.model.ldap;
+
+import org.apache.commons.lang.StringUtils;
+import org.gluu.oxauth.model.common.GrantType;
+import org.gluu.persist.annotation.*;
+
+import java.io.Serializable;
+import java.util.Date;
+
+/**
+ * @author Yuriy Zabrovarnyy
+ * @author Javier Rojas Blum
+ * @version September 6, 2017
+ */
+
+@DataEntry
+@ObjectClass(value = "token")
+public class TokenLdap implements Serializable {
+
+    @DN
+    private String dn;
+    @AttributeName(name = "grtId", consistency = true)
+    private String grantId;
+    @AttributeName(name = "usrId")
+    private String userId;
+    @AttributeName(name = "clnId")
+    private String clientId;
+    @AttributeName(name = "iat")
+    private Date creationDate;
+    @AttributeName(name = "exp")
+    private Date expirationDate;
+    @AttributeName(name = "del")
+    private boolean deletable = true;
+    @AttributeName(name = "authnTime")
+    private Date authenticationTime;
+    @AttributeName(name = "scp")
+    private String scope;
+    @AttributeName(name = "tknCde", consistency = true)
+    private String tokenCode;
+    @AttributeName(name = "tknTyp")
+    private String tokenType;
+    @AttributeName(name = "grtTyp")
+    private String grantType;
+    @AttributeName(name = "jwtReq")
+    private String jwtRequest;
+    @AttributeName(name = "authzCode", consistency = true)
+    private String authorizationCode;
+    @AttributeName(name = "nnc")
+    private String nonce;
+    @AttributeName(name = "chlng")
+    private String codeChallenge;
+    @AttributeName(name = "chlngMth")
+    private String codeChallengeMethod;
+    @AttributeName(name = "clms")
+    private String claims;
+    @AttributeName(name = "tknBndCnf")
+    private String tokenBindingHash;
+
+    @AttributeName(name = "acr")
+    private String authMode;
+
+    @AttributeName(name = "ssnId", consistency = true)
+    private String sessionDn;
+    @Expiration
+    private Integer ttl;
+
+    @AttributeName(name = "attr")
+    @JsonObject
+    private TokenAttributes attributes;
+
+    private boolean isFromCache;
+
+    public TokenLdap() {
+    }
+
+    public TokenAttributes getAttributes() {
+        if (attributes == null) {
+            attributes = new TokenAttributes();
+        }
+        return attributes;
+    }
+
+    public Integer getTtl() {
+        return ttl;
+    }
+
+    public void setTtl(Integer ttl) {
+        this.ttl = ttl;
+    }
+
+    public final void setAttributes(TokenAttributes attributes) {
+        this.attributes = attributes;
+    }
+
+    public boolean isDeletable() {
+        return deletable;
+    }
+
+    public void setDeletable(boolean deletable) {
+        this.deletable = deletable;
+    }
+
+    public String getAuthorizationCode() {
+        return authorizationCode;
+    }
+
+    public void setAuthorizationCode(String p_authorizationCode) {
+        authorizationCode = p_authorizationCode;
+    }
+
+    public String getTokenBindingHash() {
+        return tokenBindingHash;
+    }
+
+    public void setTokenBindingHash(String tokenBindingHash) {
+        this.tokenBindingHash = tokenBindingHash;
+    }
+
+    public String getNonce() {
+        return nonce;
+    }
+
+    public void setNonce(String nonce) {
+        this.nonce = nonce;
+    }
+
+    public String getGrantId() {
+        return grantId;
+    }
+
+    public void setGrantId(String p_grantId) {
+        grantId = p_grantId;
+    }
+
+    public Date getAuthenticationTime() {
+        return authenticationTime;
+    }
+
+    public void setAuthenticationTime(Date p_authenticationTime) {
+        authenticationTime = p_authenticationTime;
+    }
+
+    public Date getCreationDate() {
+        return creationDate;
+    }
+
+    public void setCreationDate(Date p_creationDate) {
+        creationDate = p_creationDate;
+    }
+
+    public String getDn() {
+        return dn;
+    }
+
+    public void setDn(String p_dn) {
+        dn = p_dn;
+    }
+
+    public Date getExpirationDate() {
+        return expirationDate;
+    }
+
+    public void setExpirationDate(Date p_expirationDate) {
+        expirationDate = p_expirationDate;
+    }
+
+    public String getGrantType() {
+        return grantType;
+    }
+
+    public void setGrantType(String p_grantType) {
+        grantType = p_grantType;
+    }
+
+    public String getScope() {
+        return scope;
+    }
+
+    public void setScope(String p_scope) {
+        scope = p_scope;
+    }
+
+    public String getTokenCode() {
+        return tokenCode;
+    }
+
+    public void setTokenCode(String p_tokenCode) {
+        tokenCode = p_tokenCode;
+    }
+
+    public String getTokenType() {
+        return tokenType;
+    }
+
+    public void setTokenType(String p_tokenType) {
+        tokenType = p_tokenType;
+    }
+
+    public TokenType getTokenTypeEnum() {
+        return TokenType.fromValue(tokenType);
+    }
+
+    public void setTokenTypeEnum(TokenType p_tokenType) {
+        if (p_tokenType != null) {
+            tokenType = p_tokenType.getValue();
+        }
+    }
+
+    public String getUserId() {
+        return userId;
+    }
+
+    public void setUserId(String p_userId) {
+        userId = p_userId;
+    }
+
+    public String getClientId() {
+        return clientId;
+    }
+
+    public void setClientId(String clientId) {
+        this.clientId = clientId;
+    }
+
+    public String getJwtRequest() {
+        return jwtRequest;
+    }
+
+    public void setJwtRequest(String p_jwtRequest) {
+        jwtRequest = p_jwtRequest;
+    }
+
+    public String getAuthMode() {
+        return authMode;
+    }
+
+    public void setAuthMode(String authMode) {
+        this.authMode = authMode;
+    }
+
+    public String getCodeChallenge() {
+        return codeChallenge;
+    }
+
+    public void setCodeChallenge(String codeChallenge) {
+        this.codeChallenge = codeChallenge;
+    }
+
+    public String getCodeChallengeMethod() {
+        return codeChallengeMethod;
+    }
+
+    public void setCodeChallengeMethod(String codeChallengeMethod) {
+        this.codeChallengeMethod = codeChallengeMethod;
+    }
+
+    public String getClaims() {
+        return claims;
+    }
+
+    public void setClaims(String claims) {
+        this.claims = claims;
+    }
+
+    public String getSessionDn() {
+        return sessionDn;
+    }
+
+    public void setSessionDn(String sessionDn) {
+        this.sessionDn = sessionDn;
+    }
+
+    public boolean isFromCache() {
+        return isFromCache;
+    }
+
+    public void setIsFromCache(boolean isFromCache) {
+        this.isFromCache = isFromCache;
+    }
+
+    public final void setFromCache(boolean isFromCache) {
+        this.isFromCache = isFromCache;
+    }
+
+    public boolean isImplicitFlow() {
+        return StringUtils.isBlank(grantType) || grantType.equals(GrantType.IMPLICIT.getValue());
+    }
+
+    @Override
+    public boolean equals(Object o) {
+        if (this == o) return true;
+        if (o == null || getClass() != o.getClass()) return false;
+
+        TokenLdap tokenLdap = (TokenLdap) o;
+
+        if (tokenCode != null ? !tokenCode.equals(tokenLdap.tokenCode) : tokenLdap.tokenCode != null) return false;
+        if (tokenType != null ? !tokenType.equals(tokenLdap.tokenType) : tokenLdap.tokenType != null) return false;
+
+        return true;
+    }
+
+    @Override
+    public int hashCode() {
+        int result = tokenCode != null ? tokenCode.hashCode() : 0;
+        result = 31 * result + (tokenType != null ? tokenType.hashCode() : 0);
+        return result;
+    }
+}
diff --git a/oxAuth/Server/src/main/java/org/gluu/oxauth/model/ldap/TokenType.java b/oxAuth/Server/src/main/java/org/gluu/oxauth/model/ldap/TokenType.java
new file mode 100644
index 00000000..7f78f255
--- /dev/null
+++ b/oxAuth/Server/src/main/java/org/gluu/oxauth/model/ldap/TokenType.java
@@ -0,0 +1,42 @@
+/*
+ * oxAuth is available under the MIT License (2008). See http://opensource.org/licenses/MIT for full text.
+ *
+ * Copyright (c) 2014, Gluu
+ */
+
+package org.gluu.oxauth.model.ldap;
+
+import org.apache.commons.lang.StringUtils;
+
+/**
+* @author Yuriy Zabrovarnyy
+* @version 0.9, 08/01/2013
+*/
+public enum TokenType {
+    ID_TOKEN("id_token"),
+    ACCESS_TOKEN("access_token"),
+    LONG_LIVED_ACCESS_TOKEN("access_token"),
+    REFRESH_TOKEN("refresh_token"),
+    AUTHORIZATION_CODE("authorization_code");
+
+    private final String value;
+
+    TokenType(String name) {
+        value = name;
+    }
+
+    public String getValue() {
+        return value;
+    }
+
+    public static TokenType fromValue(String value) {
+        if (StringUtils.isNotBlank(value)) {
+            for (TokenType t : values()) {
+                if (t.getValue().endsWith(value)) {
+                    return t;
+                }
+            }
+        }
+        return null;
+    }
+}
diff --git a/oxAuth/Server/src/main/java/org/gluu/oxauth/model/ldap/UserGroup.java b/oxAuth/Server/src/main/java/org/gluu/oxauth/model/ldap/UserGroup.java
new file mode 100644
index 00000000..d76510f7
--- /dev/null
+++ b/oxAuth/Server/src/main/java/org/gluu/oxauth/model/ldap/UserGroup.java
@@ -0,0 +1,100 @@
+/*
+ * oxAuth is available under the MIT License (2008). See http://opensource.org/licenses/MIT for full text.
+ *
+ * Copyright (c) 2014, Gluu
+ */
+
+package org.gluu.oxauth.model.ldap;
+
+import org.gluu.persist.annotation.AttributeName;
+import org.gluu.persist.annotation.DN;
+import org.gluu.persist.annotation.DataEntry;
+
+/**
+ * @author Yuriy Zabrovarnyy
+ * @version 0.9, 27/07/2012
+ */
+
+@DataEntry
+public class UserGroup {
+    @DN
+    private String dn;
+    @AttributeName(name = "displayName")
+    private String displayName;
+    @AttributeName(name = "member")
+    private String[] member;
+    @AttributeName(name = "gluuGroupType")
+    private String groupType;
+    @AttributeName(name = "gluuStatus")
+    private String status;
+    @AttributeName(name = "iname")
+    private String iname;
+    @AttributeName(name = "inum")
+    private String inum;
+    @AttributeName(name = "owner")
+    private String owner;
+
+    public String getDisplayName() {
+        return displayName;
+    }
+
+    public void setDisplayName(String p_displayName) {
+        displayName = p_displayName;
+    }
+
+    public String getDn() {
+        return dn;
+    }
+
+    public void setDn(String p_dn) {
+        dn = p_dn;
+    }
+
+    public String getGroupType() {
+        return groupType;
+    }
+
+    public void setGroupType(String p_groupType) {
+        groupType = p_groupType;
+    }
+
+    public String getIname() {
+        return iname;
+    }
+
+    public void setIname(String p_iname) {
+        iname = p_iname;
+    }
+
+    public String getInum() {
+        return inum;
+    }
+
+    public void setInum(String p_inum) {
+        inum = p_inum;
+    }
+
+    public String[] getMember() {
+        return member;
+    }
+
+    public void setMember(String[] p_member) {
+        member = p_member;
+    }
+
+    public String getOwner() {
+        return owner;
+    }
+
+    public void setOwner(String p_owner) {
+        owner = p_owner;
+    }
+
+    public String getStatus() {
+        return status;
+    }
+
+    public void setStatus(String p_status) {
+        status = p_status;
+    }
+}
diff --git a/oxAuth/Server/src/main/java/org/gluu/oxauth/model/registration/RegisterParamsValidator.java b/oxAuth/Server/src/main/java/org/gluu/oxauth/model/registration/RegisterParamsValidator.java
new file mode 100644
index 00000000..428b7e89
--- /dev/null
+++ b/oxAuth/Server/src/main/java/org/gluu/oxauth/model/registration/RegisterParamsValidator.java
@@ -0,0 +1,451 @@
+/*
+ * oxAuth is available under the MIT License (2008). See http://opensource.org/licenses/MIT for full text.
+ *
+ * Copyright (c) 2014, Gluu
+ */
+
+package org.gluu.oxauth.model.registration;
+
+import org.apache.commons.lang.StringUtils;
+import org.gluu.oxauth.client.RegisterRequest;
+import org.gluu.oxauth.model.common.GrantType;
+import org.gluu.oxauth.model.common.ResponseType;
+import org.gluu.oxauth.model.common.SubjectType;
+import org.gluu.oxauth.model.configuration.AppConfiguration;
+import org.gluu.oxauth.model.crypto.signature.SignatureAlgorithm;
+import org.gluu.oxauth.model.error.ErrorResponseFactory;
+import org.gluu.oxauth.model.register.ApplicationType;
+import org.gluu.oxauth.model.register.RegisterErrorResponseType;
+import org.gluu.oxauth.model.util.Pair;
+import org.gluu.oxauth.model.util.URLPatternList;
+import org.gluu.oxauth.model.util.Util;
+import org.gluu.oxauth.util.ServerUtil;
+import org.json.JSONArray;
+import org.slf4j.Logger;
+
+import javax.enterprise.context.ApplicationScoped;
+import javax.inject.Inject;
+import javax.ws.rs.WebApplicationException;
+import javax.ws.rs.client.ClientBuilder;
+import javax.ws.rs.core.MediaType;
+import javax.ws.rs.core.Response;
+import java.net.URI;
+import java.net.URISyntaxException;
+import java.util.HashSet;
+import java.util.List;
+import java.util.Set;
+
+import static org.apache.commons.lang.BooleanUtils.isTrue;
+
+/**
+ * Validates the parameters received for the register web service.
+ *
+ * @author Javier Rojas Blum
+ * @version October 22, 2019
+ */
+@ApplicationScoped
+public class RegisterParamsValidator {
+
+    @Inject
+    private Logger log;
+
+    @Inject
+    private AppConfiguration appConfiguration;
+
+    @Inject
+    private ErrorResponseFactory errorResponseFactory;
+
+    private static final String HTTP = "http";
+    private static final String HTTPS = "https";
+    private static final String LOCALHOST = "localhost";
+    private static final String LOOPBACK = "127.0.0.1";
+
+    /**
+     * Validates the parameters for a register request.
+     *
+     * @param applicationType The Application Type: native or web.
+     * @param subjectType     The subject_type requested for responses to this Client.
+     * @param grantTypes      Grant Types that the Client is declaring that it will restrict itself to using.
+     * @param redirectUris    Space-separated list of redirect URIs.
+     * @return Whether the parameters of client register is valid or not.
+     */
+    public Pair<Boolean, String> validateParamsClientRegister(
+            ApplicationType applicationType, SubjectType subjectType,
+            List<GrantType> grantTypes, List<ResponseType> responseTypes,
+            List<String> redirectUris) {
+        if (applicationType == null) {
+            return new Pair<>(false, "application_type is not valid.");
+        }
+
+        if (grantTypes != null &&
+                (grantTypes.contains(GrantType.AUTHORIZATION_CODE) || grantTypes.contains(GrantType.IMPLICIT)
+                || (responseTypes.contains(ResponseType.CODE) && !grantTypes.contains(GrantType.DEVICE_CODE))
+                || responseTypes.contains(ResponseType.TOKEN) || responseTypes.contains(ResponseType.ID_TOKEN))) {
+            if (redirectUris == null || redirectUris.isEmpty()) {
+                return new Pair<>(false, "Redirect uris are empty.");
+            }
+        }
+
+        if (subjectType == null || !appConfiguration.getSubjectTypesSupported().contains(subjectType.toString())) {
+            log.debug("Parameter subject_type is not valid.");
+            return new Pair<>(false, "Parameter subject_type is not valid.");
+        }
+
+        return new Pair<>(true, "");
+    }
+
+    /**
+     * Validates all algorithms received for a register client request. It throws a WebApplicationException
+     * whether a validation doesn't pass.
+     *
+     * @param registerRequest Object containing all parameters received to register a client.
+     */
+    public void validateAlgorithms( RegisterRequest registerRequest ) {
+        if ( registerRequest.getIdTokenSignedResponseAlg() != null
+                && registerRequest.getIdTokenSignedResponseAlg() != SignatureAlgorithm.NONE &&
+                ! appConfiguration.getIdTokenSigningAlgValuesSupported().contains(
+                        registerRequest.getIdTokenSignedResponseAlg().toString()) ) {
+            log.debug("Parameter id_token_signed_response_alg is not valid.");
+            throw errorResponseFactory.createWebApplicationException(Response.Status.BAD_REQUEST,
+                    RegisterErrorResponseType.INVALID_CLIENT_METADATA, "Parameter id_token_signed_response_alg is not valid.");
+        }
+
+        if ( registerRequest.getIdTokenEncryptedResponseAlg() != null &&
+                ! appConfiguration.getIdTokenEncryptionAlgValuesSupported().contains(
+                        registerRequest.getIdTokenEncryptedResponseAlg().toString()) ) {
+            log.debug("Parameter id_token_encrypted_response_alg is not valid.");
+            throw errorResponseFactory.createWebApplicationException(Response.Status.BAD_REQUEST,
+                    RegisterErrorResponseType.INVALID_CLIENT_METADATA, "Parameter id_token_encrypted_response_alg is not valid.");
+        }
+
+        if ( registerRequest.getIdTokenEncryptedResponseEnc() != null &&
+                ! appConfiguration.getIdTokenEncryptionEncValuesSupported().contains(
+                        registerRequest.getIdTokenEncryptedResponseEnc().toString()) ) {
+            log.debug("Parameter id_token_encrypted_response_enc is not valid.");
+            throw errorResponseFactory.createWebApplicationException(Response.Status.BAD_REQUEST,
+                    RegisterErrorResponseType.INVALID_CLIENT_METADATA, "Parameter id_token_encrypted_response_enc is not valid.");
+        }
+
+        if ( registerRequest.getUserInfoSignedResponseAlg() != null &&
+                ! appConfiguration.getUserInfoSigningAlgValuesSupported().contains(
+                        registerRequest.getUserInfoSignedResponseAlg().toString()) ) {
+            log.debug("Parameter userinfo_signed_response_alg is not valid.");
+            throw errorResponseFactory.createWebApplicationException(Response.Status.BAD_REQUEST,
+                    RegisterErrorResponseType.INVALID_CLIENT_METADATA, "Parameter userinfo_signed_response_alg is not valid.");
+        }
+
+        if ( registerRequest.getUserInfoEncryptedResponseAlg() != null &&
+                ! appConfiguration.getUserInfoEncryptionAlgValuesSupported().contains(
+                        registerRequest.getUserInfoEncryptedResponseAlg().toString()) ) {
+            log.debug("Parameter userinfo_encrypted_response_alg is not valid.");
+            throw errorResponseFactory.createWebApplicationException(Response.Status.BAD_REQUEST,
+                    RegisterErrorResponseType.INVALID_CLIENT_METADATA, "Parameter userinfo_encrypted_response_alg is not valid.");
+        }
+
+        if ( registerRequest.getUserInfoEncryptedResponseEnc() != null &&
+                ! appConfiguration.getUserInfoEncryptionEncValuesSupported().contains(
+                        registerRequest.getUserInfoEncryptedResponseEnc().toString()) ) {
+            log.debug("Parameter userinfo_encrypted_response_enc is not valid.");
+            throw errorResponseFactory.createWebApplicationException(Response.Status.BAD_REQUEST,
+                    RegisterErrorResponseType.INVALID_CLIENT_METADATA, "Parameter userinfo_encrypted_response_enc is not valid.");
+        }
+
+        if ( registerRequest.getRequestObjectSigningAlg() != null &&
+                ! appConfiguration.getRequestObjectSigningAlgValuesSupported().contains(
+                        registerRequest.getRequestObjectSigningAlg().toString()) ) {
+            log.debug("Parameter request_object_signing_alg is not valid.");
+            throw errorResponseFactory.createWebApplicationException(Response.Status.BAD_REQUEST,
+                    RegisterErrorResponseType.INVALID_CLIENT_METADATA, "Parameter request_object_signing_alg is not valid.");
+        }
+
+        if ( registerRequest.getRequestObjectEncryptionAlg() != null &&
+                ! appConfiguration.getRequestObjectEncryptionAlgValuesSupported().contains(
+                        registerRequest.getRequestObjectEncryptionAlg().toString()) ) {
+            log.debug("Parameter request_object_encryption_alg is not valid.");
+            throw errorResponseFactory.createWebApplicationException(Response.Status.BAD_REQUEST,
+                    RegisterErrorResponseType.INVALID_CLIENT_METADATA, "Parameter request_object_encryption_alg is not valid.");
+        }
+
+        if ( registerRequest.getRequestObjectEncryptionEnc() != null &&
+                ! appConfiguration.getRequestObjectEncryptionEncValuesSupported().contains(
+                        registerRequest.getRequestObjectEncryptionEnc().toString()) ) {
+            log.debug("Parameter request_object_encryption_enc is not valid.");
+            throw errorResponseFactory.createWebApplicationException(Response.Status.BAD_REQUEST,
+                    RegisterErrorResponseType.INVALID_CLIENT_METADATA, "Parameter request_object_encryption_enc is not valid.");
+        }
+
+        if ( registerRequest.getTokenEndpointAuthMethod() != null &&
+                ! appConfiguration.getTokenEndpointAuthMethodsSupported().contains(
+                        registerRequest.getTokenEndpointAuthMethod().toString()) ) {
+            log.debug("Parameter token_endpoint_auth_method is not valid.");
+            throw errorResponseFactory.createWebApplicationException(Response.Status.BAD_REQUEST,
+                    RegisterErrorResponseType.INVALID_CLIENT_METADATA, "Parameter token_endpoint_auth_method is not valid.");
+        }
+
+        if ( registerRequest.getTokenEndpointAuthSigningAlg() != null &&
+                ! appConfiguration.getTokenEndpointAuthSigningAlgValuesSupported().contains(
+                        registerRequest.getTokenEndpointAuthSigningAlg().toString()) ) {
+            log.debug("Parameter token_endpoint_auth_signing_alg is not valid.");
+            throw errorResponseFactory.createWebApplicationException(Response.Status.BAD_REQUEST,
+                    RegisterErrorResponseType.INVALID_CLIENT_METADATA, "Parameter token_endpoint_auth_signing_alg is not valid.");
+        }
+    }
+
+    /**
+     * Validates the parameters for a client read request.
+     *
+     * @param clientId    Unique Client identifier.
+     * @param accessToken Access Token obtained out of band to authorize the registrant.
+     * @return Whether the parameters of client read is valid or not.
+     */
+    public boolean validateParamsClientRead(String clientId, String accessToken) {
+        return StringUtils.isNotBlank(clientId) && StringUtils.isNotBlank(accessToken);
+    }
+
+    /**
+     * @param grantTypes          Grant Types that the Client is declaring that it will restrict itself to using.
+     * @param applicationType     The Application Type: native or web.
+     * @param subjectType         Subject Type requested for responses to this Client.
+     * @param redirectUris        Redirection URI values used by the Client.
+     * @param sectorIdentifierUrl A HTTPS scheme URL to be used in calculating Pseudonymous Identifiers by the OP.
+     *                            The URL contains a file with a single JSON array of redirect_uri values.
+     * @return Whether the Redirect URI parameters are valid or not.
+     */
+    public boolean validateRedirectUris(List<GrantType> grantTypes, List<ResponseType> responseTypes,
+                                        ApplicationType applicationType, SubjectType subjectType,
+                                        List<String> redirectUris, String sectorIdentifierUrl) {
+        boolean valid = true;
+        Set<String> redirectUriHosts = new HashSet<String>();
+
+        if (redirectUris != null && !redirectUris.isEmpty()) {
+            for (String redirectUri : redirectUris) {
+                if (redirectUri == null || redirectUri.contains("#")) {
+                    valid = false;
+                } else {
+                    URI uri = null;
+                    try {
+                        uri = new URI(redirectUri);
+                    } catch (URISyntaxException e) {
+                        log.debug("Failed to parse redirect_uri: {}, error: {}", redirectUri, e.getMessage());
+                        valid = false;
+                        continue;
+                    }
+                    redirectUriHosts.add(uri.getHost());
+                    switch (applicationType) {
+                        case WEB:
+                            if (HTTP.equalsIgnoreCase(uri.getScheme())) {
+                                if (!LOCALHOST.equalsIgnoreCase(uri.getHost()) && !LOOPBACK.equalsIgnoreCase(uri.getHost())) {
+                                    log.debug("Invalid protocol for redirect_uri: " +
+                                            redirectUri +
+                                            " (only https protocol is allowed for application_type=web or localhost/127.0.0.1 for http)");
+                                    valid = false;
+                                }
+                            }
+                            break;
+                        case NATIVE:
+                            // to conform "OAuth 2.0 for Native Apps" https://tools.ietf.org/html/draft-wdenniss-oauth-native-apps-00
+                            // we allow registration with custom schema for native apps.
+//                                if (!HTTP.equalsIgnoreCase(uri.getScheme())) {
+//                                    valid = false;
+//                                } else if (!LOCALHOST.equalsIgnoreCase(uri.getHost())) {
+//                                    valid = false;
+//                                }
+                            break;
+                    }
+                }
+            }
+        } else if (!grantTypes.contains(GrantType.AUTHORIZATION_CODE) && !grantTypes.contains(GrantType.IMPLICIT) &&
+                (!responseTypes.contains(ResponseType.CODE) || grantTypes.contains(GrantType.DEVICE_CODE))
+                && !responseTypes.contains(ResponseType.TOKEN) && !responseTypes.contains(ResponseType.ID_TOKEN)) {
+            // It is valid for grant types: password, client_credentials, urn:ietf:params:oauth:grant-type:uma-ticket and urn:openid:params:grant-type:ciba
+            valid = true;
+        } else {
+            valid = false;
+        }
+
+
+        /*
+         * Providers that use pairwise sub (subject) values SHOULD utilize the sector_identifier_uri value
+         * provided in the Subject Identifier calculation for pairwise identifiers.
+         *
+         * If the Client has not provided a value for sector_identifier_uri in Dynamic Client Registration,
+         * the Sector Identifier used for pairwise identifier calculation is the host component of the
+         * registered redirect_uri.
+         *
+         * If there are multiple hostnames in the registered redirect_uris, the Client MUST register a
+         * sector_identifier_uri.
+         */
+        if (subjectType != null && subjectType.equals(SubjectType.PAIRWISE) && StringUtils.isBlank(sectorIdentifierUrl)) {
+            if (redirectUriHosts.size() > 1) {
+                valid = false;
+            }
+        }
+
+        // Validate Sector Identifier URL
+        boolean noRedirectUriInSectorIdentifierUri = false;
+        if (valid && StringUtils.isNotBlank(sectorIdentifierUrl)) {
+            try {
+                URI uri = new URI(sectorIdentifierUrl);
+                if (!HTTPS.equalsIgnoreCase(uri.getScheme())) {
+                    valid = false;
+                }
+
+                javax.ws.rs.client.Client clientRequest = ClientBuilder.newClient();
+        		String entity = null;
+        		try {
+        			Response clientResponse = clientRequest.target(sectorIdentifierUrl).request().buildGet().invoke();
+	                int status = clientResponse.getStatus();
+	
+	                if (status == 200) {
+	                    entity = clientResponse.readEntity(String.class);
+	
+	                    JSONArray sectorIdentifierJsonArray = new JSONArray(entity);
+	                    valid = Util.asList(sectorIdentifierJsonArray).containsAll(redirectUris);
+	                }
+        		} finally {
+        			clientRequest.close();
+        		}
+            } catch (Exception e) {
+                log.debug(e.getMessage(), e);
+                valid = false;
+            } finally {
+                if (!valid) {
+                    noRedirectUriInSectorIdentifierUri = true;
+                }
+            }
+        }
+
+        // Validate Redirect Uris checking the white list and black list
+        if (valid || isTrue(appConfiguration.getAllowWildcardRedirectUri())) {
+            valid = checkWhiteListRedirectUris(redirectUris) && checkBlackListRedirectUris(redirectUris);
+        }
+
+        if (noRedirectUriInSectorIdentifierUri) {
+            throw errorResponseFactory.createWebApplicationException(Response.Status.BAD_REQUEST, RegisterErrorResponseType.INVALID_CLIENT_METADATA, "Failed to validate redirect uris. No redirect_uri in sector_identifier_uri content.");
+        }
+
+        return valid;
+    }
+
+    public boolean validateInitiateLoginUri(String initiateLoginUri) {
+        boolean valid = false;
+
+        try {
+            URI uri = new URI(initiateLoginUri);
+            if (HTTPS.equalsIgnoreCase(uri.getScheme())) {
+                valid = true;
+            }
+        } catch (URISyntaxException e) {
+            log.debug(e.getMessage(), e);
+            valid = false;
+        }
+
+        return valid;
+    }
+
+    /**
+     * All the Redirect Uris must match to return true.
+     */
+    private boolean checkWhiteListRedirectUris(List<String> redirectUris) {
+        boolean valid = true;
+        List<String> whiteList = appConfiguration.getClientWhiteList();
+        boolean wildcardSupported = isTrue(appConfiguration.getAllowWildcardRedirectUri());
+        URLPatternList urlPatternList = new URLPatternList(whiteList, wildcardSupported);
+
+        for (String redirectUri : redirectUris) {
+            valid &= urlPatternList.isUrlListed(redirectUri);
+        }
+
+        return valid;
+    }
+
+    /**
+     * None of the Redirect Uris must match to return true.
+     */
+    private boolean checkBlackListRedirectUris(List<String> redirectUris) {
+        boolean valid = true;
+        List<String> blackList = appConfiguration.getClientBlackList();
+        boolean wildcardSupported = isTrue(appConfiguration.getAllowWildcardRedirectUri());
+        URLPatternList urlPatternList = new URLPatternList(blackList, wildcardSupported);
+
+        for (String redirectUri : redirectUris) {
+            valid &= !urlPatternList.isUrlListed(redirectUri);
+        }
+
+        return valid;
+    }
+
+    public void validateLogoutUri(List<String> logoutUris, List<String> redirectUris, ErrorResponseFactory errorResponseFactory) {
+        if (logoutUris == null || logoutUris.isEmpty()) { // logout uri is optional so null or empty list is valid
+            return;
+        }
+        for (String logoutUri : logoutUris) {
+            validateLogoutUri(logoutUri, redirectUris, errorResponseFactory);
+        }
+    }
+
+    public void validateLogoutUri(String logoutUri, List<String> redirectUris, ErrorResponseFactory errorResponseFactory) {
+        if (Util.isNullOrEmpty(logoutUri)) { // logout uri is optional so null or empty string is valid
+            return;
+        }
+
+        // preconditions
+        if (redirectUris == null || redirectUris.isEmpty()) {
+            log.debug("Preconditions of logout uri validation are failed.");
+            throwInvalidLogoutUri(errorResponseFactory);
+            return;
+        }
+
+        try {
+            Set<String> redirectUriHosts = collectUriHosts(redirectUris);
+
+            URI uri = new URI(logoutUri);
+
+            if (!redirectUriHosts.contains(uri.getHost())) {
+                log.debug("logout uri host is not within redirect_uris, logout_uri: {}, redirect_uris: {}", logoutUri, redirectUris);
+                throwInvalidLogoutUri(errorResponseFactory);
+                return;
+            }
+
+            if (!HTTPS.equalsIgnoreCase(uri.getScheme())) {
+                log.debug("logout uri schema is not https, logout_uri: {}", logoutUri);
+                throwInvalidLogoutUri(errorResponseFactory);
+            }
+        } catch (Exception e) {
+            log.debug(e.getMessage(), e);
+            throwInvalidLogoutUri(errorResponseFactory);
+        }
+    }
+
+    private void throwInvalidLogoutUri(ErrorResponseFactory errorResponseFactory) throws WebApplicationException {
+        throw new WebApplicationException(
+                Response.status(Response.Status.BAD_REQUEST.getStatusCode()).
+                        type(MediaType.APPLICATION_JSON_TYPE).
+                        entity(errorResponseFactory.errorAsJson(RegisterErrorResponseType.INVALID_LOGOUT_URI, "Failed to valide logout uri.")).
+                        cacheControl(ServerUtil.cacheControl(true, false)).
+                        header("Pragma", "no-cache").
+                        build());
+    }
+
+    private static Set<String> collectUriHosts(List<String> uriList) throws URISyntaxException {
+        Set<String> hosts = new HashSet<String>();
+
+        for (String redirectUri : uriList) {
+            URI uri = new URI(redirectUri);
+            hosts.add(uri.getHost());
+        }
+        return hosts;
+    }
+
+    /**
+     * Check if exists a Password Grant Type in the list of Grant Types.
+     * @param grantTypes List of Grant Types.
+     * @return True if Password Grant Type exists in the list, otherwise false
+     */
+    public boolean checkIfThereIsPasswordGrantType(List<GrantType> grantTypes) {
+        if (grantTypes != null)
+            return grantTypes.stream().anyMatch(grantType -> grantType == GrantType.RESOURCE_OWNER_PASSWORD_CREDENTIALS);
+        return false;
+    }
+
+}
\ No newline at end of file
diff --git a/oxAuth/Server/src/main/java/org/gluu/oxauth/model/session/SessionClient.java b/oxAuth/Server/src/main/java/org/gluu/oxauth/model/session/SessionClient.java
new file mode 100644
index 00000000..7ffbecbc
--- /dev/null
+++ b/oxAuth/Server/src/main/java/org/gluu/oxauth/model/session/SessionClient.java
@@ -0,0 +1,47 @@
+/*
+ * oxAuth is available under the MIT License (2008). See http://opensource.org/licenses/MIT for full text.
+ *
+ * Copyright (c) 2014, Gluu
+ */
+
+package org.gluu.oxauth.model.session;
+
+import java.util.GregorianCalendar;
+import java.util.TimeZone;
+
+import javax.inject.Named;
+
+import org.gluu.oxauth.model.registration.Client;
+
+/**
+ * @author Javier Rojas Blum Date: 03.20.2012
+ */
+@Named
+public class SessionClient {
+
+    private Client client;
+    private Long authenticationTime;
+
+
+    public Client getClient() {
+        return client;
+    }
+
+    public void setClient(Client client) {
+        this.client = client;
+        long authTime = -1L;
+        if (client != null) {
+            GregorianCalendar c = new GregorianCalendar(TimeZone.getTimeZone("UTC"));
+            authTime = c.getTimeInMillis();
+        }
+        setAuthenticationTime(authTime);
+    }
+
+    public Long getAuthenticationTime() {
+        return authenticationTime;
+    }
+
+    public void setAuthenticationTime(Long authenticationTime) {
+        this.authenticationTime = authenticationTime;
+    }
+}
\ No newline at end of file
diff --git a/oxAuth/Server/src/main/java/org/gluu/oxauth/model/token/ClientAssertion.java b/oxAuth/Server/src/main/java/org/gluu/oxauth/model/token/ClientAssertion.java
new file mode 100644
index 00000000..23593657
--- /dev/null
+++ b/oxAuth/Server/src/main/java/org/gluu/oxauth/model/token/ClientAssertion.java
@@ -0,0 +1,146 @@
+/*
+ * oxAuth is available under the MIT License (2008). See http://opensource.org/licenses/MIT for full text.
+ *
+ * Copyright (c) 2014, Gluu
+ */
+
+package org.gluu.oxauth.model.token;
+
+import org.apache.commons.lang.StringUtils;
+import org.gluu.oxauth.util.ServerUtil;
+import org.json.JSONObject;
+import org.gluu.oxauth.model.common.AuthenticationMethod;
+import org.gluu.oxauth.model.configuration.AppConfiguration;
+import org.gluu.oxauth.model.crypto.AbstractCryptoProvider;
+import org.gluu.oxauth.model.crypto.signature.AlgorithmFamily;
+import org.gluu.oxauth.model.crypto.signature.SignatureAlgorithm;
+import org.gluu.oxauth.model.exception.InvalidJwtException;
+import org.gluu.oxauth.model.jwt.Jwt;
+import org.gluu.oxauth.model.jwt.JwtClaimName;
+import org.gluu.oxauth.model.jwt.JwtHeaderName;
+import org.gluu.oxauth.model.jwt.JwtType;
+import org.gluu.oxauth.model.registration.Client;
+import org.gluu.oxauth.model.util.JwtUtil;
+import org.gluu.oxauth.service.ClientService;
+import org.gluu.service.cdi.util.CdiUtil;
+import org.gluu.util.security.StringEncrypter;
+
+import java.util.Date;
+import java.util.List;
+
+/**
+ * @author Javier Rojas Blum
+ * @version February 12, 2019
+ */
+public class ClientAssertion {
+
+    private Jwt jwt;
+    private String clientSecret;
+
+    public ClientAssertion(AppConfiguration appConfiguration, AbstractCryptoProvider cryptoProvider, String clientId, ClientAssertionType clientAssertionType, String encodedAssertion)
+            throws InvalidJwtException {
+        try {
+            if (!load(appConfiguration, cryptoProvider, clientId, clientAssertionType, encodedAssertion)) {
+                throw new InvalidJwtException("Cannot load the JWT");
+            }
+        } catch (StringEncrypter.EncryptionException e) {
+            throw new InvalidJwtException(e.getMessage(), e);
+        } catch (Exception e) {
+            throw new InvalidJwtException("Cannot verify the JWT", e);
+        }
+    }
+
+    public String getSubjectIdentifier() {
+        return jwt.getClaims().getClaimAsString(JwtClaimName.SUBJECT_IDENTIFIER);
+    }
+
+    public String getClientSecret() {
+        return clientSecret;
+    }
+
+    private boolean load(AppConfiguration appConfiguration, AbstractCryptoProvider cryptoProvider, String clientId, ClientAssertionType clientAssertionType, String encodedAssertion)
+            throws Exception {
+        boolean result;
+
+        if (clientAssertionType == ClientAssertionType.JWT_BEARER) {
+            if (StringUtils.isNotBlank(encodedAssertion)) {
+                jwt = Jwt.parse(encodedAssertion);
+
+                // TODO: Store jti this value to check for duplicates
+
+                // Validate clientId
+                String issuer = jwt.getClaims().getClaimAsString(JwtClaimName.ISSUER);
+                String subject = jwt.getClaims().getClaimAsString(JwtClaimName.SUBJECT_IDENTIFIER);
+                List<String> audience = jwt.getClaims().getClaimAsStringList(JwtClaimName.AUDIENCE);
+                Date expirationTime = jwt.getClaims().getClaimAsDate(JwtClaimName.EXPIRATION_TIME);
+                //SignatureAlgorithm algorithm = SignatureAlgorithm.fromName(jwt.getHeader().getClaimAsString(JwtHeaderName.ALGORITHM));
+                if ((clientId == null && StringUtils.isNotBlank(issuer) && StringUtils.isNotBlank(subject) && issuer.equals(subject))
+                        || (StringUtils.isNotBlank(clientId) && StringUtils.isNotBlank(issuer)
+                        && StringUtils.isNotBlank(subject) && clientId.equals(issuer) && issuer.equals(subject))) {
+
+                    // Validate audience
+                    String tokenUrl = appConfiguration.getTokenEndpoint();
+                    String cibaAuthUrl = appConfiguration.getBackchannelAuthenticationEndpoint();
+                    if (audience != null && (audience.contains(appConfiguration.getIssuer()) || audience.contains(tokenUrl) || audience.contains(cibaAuthUrl))) {
+
+                        // Validate expiration
+                        if (expirationTime.after(new Date())) {
+                            ClientService clientService = CdiUtil.bean(ClientService.class);
+                            Client client = clientService.getClient(subject);
+
+                            // Validate client
+                            if (client != null) {
+                                JwtType jwtType = JwtType.fromString(jwt.getHeader().getClaimAsString(JwtHeaderName.TYPE));
+                                AuthenticationMethod authenticationMethod = client.getAuthenticationMethod();
+                                SignatureAlgorithm signatureAlgorithm = jwt.getHeader().getSignatureAlgorithm();
+
+                                if (jwtType == null && signatureAlgorithm != null) {
+                                    jwtType = signatureAlgorithm.getJwtType();
+                                }
+
+                                if (jwtType != null && signatureAlgorithm != null && signatureAlgorithm.getFamily() != null &&
+                                        ((authenticationMethod == AuthenticationMethod.CLIENT_SECRET_JWT && AlgorithmFamily.HMAC.equals(signatureAlgorithm.getFamily()))
+                                                || (authenticationMethod == AuthenticationMethod.PRIVATE_KEY_JWT && (AlgorithmFamily.RSA.equals(signatureAlgorithm.getFamily()) || AlgorithmFamily.EC.equals(signatureAlgorithm.getFamily()))))) {
+                                    if (client.getTokenEndpointAuthSigningAlg() == null || SignatureAlgorithm.fromString(client.getTokenEndpointAuthSigningAlg()).equals(signatureAlgorithm)) {
+                                        clientSecret = clientService.decryptSecret(client.getClientSecret());
+
+                                        // Validate the crypto segment
+                                        String keyId = jwt.getHeader().getKeyId();
+                                        JSONObject jwks = ServerUtil.getJwks(client);
+                                        String sharedSecret = clientService.decryptSecret(client.getClientSecret());
+                                        boolean validSignature = cryptoProvider.verifySignature(jwt.getSigningInput(), jwt.getEncodedSignature(),
+                                                keyId, jwks, sharedSecret, signatureAlgorithm);
+
+                                        if (validSignature) {
+                                            result = true;
+                                        } else {
+                                            throw new InvalidJwtException("Invalid cryptographic segment");
+                                        }
+                                    } else {
+                                        throw new InvalidJwtException("Invalid signing algorithm");
+                                    }
+                                } else {
+                                    throw new InvalidJwtException("Invalid authentication method");
+                                }
+                            } else {
+                                throw new InvalidJwtException("Invalid client");
+                            }
+                        } else {
+                            throw new InvalidJwtException("JWT has expired");
+                        }
+                    } else {
+                        throw new InvalidJwtException("Invalid audience: " + audience);
+                    }
+                } else {
+                    throw new InvalidJwtException("Invalid clientId");
+                }
+            } else {
+                throw new InvalidJwtException("The Client Assertion is null or empty");
+            }
+        } else {
+            throw new InvalidJwtException("Invalid Client Assertion Type");
+        }
+
+        return result;
+    }
+}
\ No newline at end of file
diff --git a/oxAuth/Server/src/main/java/org/gluu/oxauth/model/token/HandleTokenFactory.java b/oxAuth/Server/src/main/java/org/gluu/oxauth/model/token/HandleTokenFactory.java
new file mode 100644
index 00000000..abd83182
--- /dev/null
+++ b/oxAuth/Server/src/main/java/org/gluu/oxauth/model/token/HandleTokenFactory.java
@@ -0,0 +1,44 @@
+/*
+ * oxAuth is available under the MIT License (2008). See http://opensource.org/licenses/MIT for full text.
+ *
+ * Copyright (c) 2014, Gluu
+ */
+
+package org.gluu.oxauth.model.token;
+
+import java.util.UUID;
+
+/**
+ * Handle (or artifact) a reference to some internal data structure within the
+ * authorization server, the internal data structure contains the attributes of
+ * the token, such as user id, scope, etc. Handles typically require a
+ * communication between resource server and token server in order to validate
+ * the token and obtain token- bound data. Handles enable simple revocation and
+ * do not require cryptographic mechanisms to protected token content from being
+ * modified. As a disadvantage, they require additional resource/ token server
+ * communication impacting on performance and scalability. An authorization code
+ * is an example of a 'handle' token. An access token may also be implemented as
+ * a handle token. A 'handle' token is often referred to as an 'opaque' token
+ * because the resource server does not need to be able to interpret the token
+ * directly, it simply uses the token.
+ *
+ * @author Javier Rojas Date: 10.31.2011
+ *
+ */
+public class HandleTokenFactory {
+
+	/**
+	 * When creating token handles, the authorization server MUST include a
+	 * reasonable level of entropy in order to mitigate the risk of guessing
+	 * attacks. The token value MUST be constructed from a cryptographically
+	 * strong random or pseudo-random number sequence [RFC1750] generated by the
+	 * Authorization Server. The probability of any two Authorization Code
+	 * values being identical MUST be less than or equal to 2^(-128) and SHOULD
+	 * be less than or equal to 2^(-160).
+	 *
+	 * @return The generated handle token.
+	 */
+	public static String generateHandleToken() {
+		return UUID.randomUUID().toString();
+	}
+}
\ No newline at end of file
diff --git a/oxAuth/Server/src/main/java/org/gluu/oxauth/model/token/HttpAuthTokenType.java b/oxAuth/Server/src/main/java/org/gluu/oxauth/model/token/HttpAuthTokenType.java
new file mode 100644
index 00000000..d80014a1
--- /dev/null
+++ b/oxAuth/Server/src/main/java/org/gluu/oxauth/model/token/HttpAuthTokenType.java
@@ -0,0 +1,19 @@
+package org.gluu.oxauth.model.token;
+
+public enum  HttpAuthTokenType {
+    Basic("Basic "),
+    Bearer("Bearer "),
+    AccessToken("AccessToken "),
+    Negotiate("Negotiate ");
+
+    private final String prefix;
+
+    private HttpAuthTokenType(String prefix) {
+        this.prefix = prefix;
+    }
+
+    public String getPrefix() {
+
+        return this.prefix;
+    }
+}
\ No newline at end of file
diff --git a/oxAuth/Server/src/main/java/org/gluu/oxauth/model/token/IdTokenFactory.java b/oxAuth/Server/src/main/java/org/gluu/oxauth/model/token/IdTokenFactory.java
new file mode 100644
index 00000000..f5667f6e
--- /dev/null
+++ b/oxAuth/Server/src/main/java/org/gluu/oxauth/model/token/IdTokenFactory.java
@@ -0,0 +1,364 @@
+/*
+ * oxAuth is available under the MIT License (2008). See http://opensource.org/licenses/MIT for full text.
+ *
+ * Copyright (c) 2014, Gluu
+ */
+
+package org.gluu.oxauth.model.token;
+
+import com.google.common.base.Function;
+import com.google.common.collect.Lists;
+import org.apache.commons.lang.StringUtils;
+import org.apache.logging.log4j.util.Strings;
+import org.gluu.model.GluuAttribute;
+import org.gluu.model.custom.script.conf.CustomScriptConfiguration;
+import org.gluu.model.custom.script.type.auth.PersonAuthenticationType;
+import org.gluu.oxauth.claims.Audience;
+import org.gluu.oxauth.model.authorize.Claim;
+import org.gluu.oxauth.model.authorize.JwtAuthorizationRequest;
+import org.gluu.oxauth.model.common.*;
+import org.gluu.oxauth.model.configuration.AppConfiguration;
+import org.gluu.oxauth.model.exception.InvalidClaimException;
+import org.gluu.oxauth.model.jwt.JwtClaimName;
+import org.gluu.oxauth.model.jwt.JwtSubClaimObject;
+import org.gluu.oxauth.model.registration.Client;
+import org.gluu.oxauth.model.session.SessionId;
+import org.gluu.oxauth.service.AttributeService;
+import org.gluu.oxauth.service.ScopeService;
+import org.gluu.oxauth.service.SessionIdService;
+import org.gluu.oxauth.service.date.DateFormatterService;
+import org.gluu.oxauth.service.external.ExternalAuthenticationService;
+import org.gluu.oxauth.service.external.ExternalDynamicScopeService;
+import org.gluu.oxauth.service.external.ExternalUpdateTokenService;
+import org.gluu.oxauth.service.external.context.DynamicScopeExternalContext;
+import org.gluu.oxauth.service.external.context.ExternalUpdateTokenContext;
+import org.json.JSONObject;
+import org.oxauth.persistence.model.Scope;
+import org.slf4j.Logger;
+
+import javax.enterprise.context.ApplicationScoped;
+import javax.inject.Inject;
+import java.io.Serializable;
+import java.util.*;
+
+import static org.gluu.oxauth.model.common.ScopeType.DYNAMIC;
+
+/**
+ * JSON Web Token (JWT) is a compact token format intended for space constrained
+ * environments such as HTTP Authorization headers and URI query parameters.
+ * JWTs encode claims to be transmitted as a JSON object (as defined in RFC
+ * 4627) that is base64url encoded and digitally signed. Signing is accomplished
+ * using a JSON Web Signature (JWS). JWTs may also be optionally encrypted using
+ * JSON Web Encryption (JWE).
+ *
+ * @author Javier Rojas Blum
+ * @author Yuriy Movchan
+ * @author Yuriy Zabrovarnyy
+ * @version 12 Feb, 2020
+ */
+@ApplicationScoped
+public class IdTokenFactory {
+
+    @Inject
+    private Logger log;
+
+    @Inject
+    private ExternalDynamicScopeService externalDynamicScopeService;
+
+    @Inject
+    private ExternalAuthenticationService externalAuthenticationService;
+
+    @Inject
+    private ScopeService scopeService;
+
+    @Inject
+    private AttributeService attributeService;
+
+    @Inject
+    private AppConfiguration appConfiguration;
+
+    @Inject
+    private JwrService jwrService;
+
+    @Inject
+    private SessionIdService sessionIdService;
+
+    @Inject
+    private DateFormatterService dateFormatterService;
+
+    @Inject
+    private ExternalUpdateTokenService externalUpdateTokenService;
+
+    private void setAmrClaim(JsonWebResponse jwt, String acrValues) {
+        List<String> amrList = Lists.newArrayList();
+
+        CustomScriptConfiguration script = externalAuthenticationService.getCustomScriptConfigurationByName(acrValues);
+        if (script != null) {
+            amrList.add(Integer.toString(script.getLevel()));
+
+            PersonAuthenticationType externalAuthenticator = (PersonAuthenticationType) script.getExternalType();
+            int apiVersion = externalAuthenticator.getApiVersion();
+
+            if (apiVersion > 3) {
+                Map<String, String> authenticationMethodClaimsOrNull = externalAuthenticator.getAuthenticationMethodClaims(script.getConfigurationAttributes());
+                if (authenticationMethodClaimsOrNull != null) {
+                    for (String key : authenticationMethodClaimsOrNull.keySet()) {
+                        amrList.add(key + ":" + authenticationMethodClaimsOrNull.get(key));
+                    }
+                }
+            }
+        }
+
+        jwt.getClaims().setClaim(JwtClaimName.AUTHENTICATION_METHOD_REFERENCES, amrList);
+    }
+
+    private void fillClaims(JsonWebResponse jwr,
+                            IAuthorizationGrant authorizationGrant, String nonce,
+                            AuthorizationCode authorizationCode, AccessToken accessToken, RefreshToken refreshToken,
+                            String state, Set<String> scopes, boolean includeIdTokenClaims,
+                            Function<JsonWebResponse, Void> preProcessing, Function<JsonWebResponse, Void> postProcessing,
+                            ExecutionContext executionContext) throws Exception {
+
+        final Client client = authorizationGrant.getClient();
+        jwr.getClaims().setIssuer(appConfiguration.getIssuer());
+        Audience.setAudience(jwr.getClaims(), client);
+
+        int lifeTime = appConfiguration.getIdTokenLifetime();
+        if (client.getAttributes().getIdTokenLifetime() != null) {
+            lifeTime = client.getAttributes().getIdTokenLifetime();
+            log.trace("Override id token lifetime with value from client: {}", client.getClientId());
+        }
+
+        int lifetimeFromScript = externalUpdateTokenService.getIdTokenLifetimeInSeconds(ExternalUpdateTokenContext.of(executionContext));
+        if (lifetimeFromScript > 0) {
+            lifeTime = lifetimeFromScript;
+            log.trace("Override id token lifetime with value from script: {}", lifetimeFromScript);
+        }
+
+        Calendar calendar = Calendar.getInstance();
+        Date issuedAt = calendar.getTime();
+        calendar.add(Calendar.SECOND, lifeTime);
+        Date expiration = calendar.getTime();
+
+        jwr.getClaims().setExpirationTime(expiration);
+        jwr.getClaims().setIssuedAt(issuedAt);
+        jwr.setClaim("code", UUID.randomUUID().toString());
+
+        if (preProcessing != null) {
+            preProcessing.apply(jwr);
+        }
+        final SessionId session = sessionIdService.getSessionByDn(authorizationGrant.getSessionDn(), true);
+        if (session != null) {
+            jwr.setClaim("sid", session.getOutsideSid());
+        }
+
+        if (authorizationGrant.getAcrValues() != null) {
+            jwr.setClaim(JwtClaimName.AUTHENTICATION_CONTEXT_CLASS_REFERENCE, authorizationGrant.getAcrValues());
+            setAmrClaim(jwr, authorizationGrant.getAcrValues());
+        }
+        if (StringUtils.isNotBlank(nonce)) {
+            jwr.setClaim(JwtClaimName.NONCE, nonce);
+        }
+        if (authorizationGrant.getAuthenticationTime() != null) {
+            jwr.getClaims().setClaim(JwtClaimName.AUTHENTICATION_TIME, authorizationGrant.getAuthenticationTime());
+        }
+        if (authorizationCode != null) {
+            String codeHash = AbstractToken.getHash(authorizationCode.getCode(), jwr.getHeader().getSignatureAlgorithm());
+            jwr.setClaim(JwtClaimName.CODE_HASH, codeHash);
+        }
+        if (accessToken != null) {
+            String accessTokenHash = AbstractToken.getHash(accessToken.getCode(), jwr.getHeader().getSignatureAlgorithm());
+            jwr.setClaim(JwtClaimName.ACCESS_TOKEN_HASH, accessTokenHash);
+        }
+        if (Strings.isNotBlank(state)) {
+            String stateHash = AbstractToken.getHash(state, jwr.getHeader().getSignatureAlgorithm());
+            jwr.setClaim(JwtClaimName.STATE_HASH, stateHash);
+        }
+        if (authorizationGrant.getGrantType() != null) {
+            jwr.setClaim("grant", authorizationGrant.getGrantType().getValue());
+        }
+        jwr.setClaim(JwtClaimName.OX_OPENID_CONNECT_VERSION, appConfiguration.getOxOpenIdConnectVersion());
+
+        User user = authorizationGrant.getUser();
+        List<Scope> dynamicScopes = new ArrayList<>();
+        if (includeIdTokenClaims && client.isIncludeClaimsInIdToken()) {
+            for (String scopeName : scopes) {
+                Scope scope = scopeService.getScopeById(scopeName);
+                if (scope == null) {
+                    continue;
+                }
+
+                if (DYNAMIC == scope.getScopeType()) {
+                    dynamicScopes.add(scope);
+                    continue;
+                }
+
+                Map<String, Object> claims = scopeService.getClaims(user, scope);
+
+                if (Boolean.TRUE.equals(scope.isOxAuthGroupClaims())) {
+                    JwtSubClaimObject groupClaim = new JwtSubClaimObject();
+                    groupClaim.setName(scope.getId());
+                    for (Map.Entry<String, Object> entry : claims.entrySet()) {
+                        String key = entry.getKey();
+                        Object value = entry.getValue();
+
+                        if (value instanceof List) {
+                            groupClaim.setClaim(key, (List) value);
+                        } else {
+                            groupClaim.setClaim(key, (String) value);
+                        }
+                    }
+
+                    jwr.getClaims().setClaim(scope.getId(), groupClaim);
+                } else {
+                    for (Map.Entry<String, Object> entry : claims.entrySet()) {
+                        String key = entry.getKey();
+                        Object value = entry.getValue();
+                        log.info("IdToken Factory called: {}", value);
+
+                        if (value instanceof List) {
+                            jwr.getClaims().setClaim(key, (List) value);
+                        } else if (value instanceof Boolean) {
+                            jwr.getClaims().setClaim(key, (Boolean) value);
+                        } else if (value instanceof Date) {
+                            Serializable formattedValue = dateFormatterService.formatClaim((Date) value, key);
+                            jwr.getClaims().setClaimObject(key, formattedValue, true);
+                        } else {
+                            jwr.setClaim(key, (String) value);
+                        }
+                    }
+                }
+
+                jwr.getClaims().setSubjectIdentifier(authorizationGrant.getUser().getAttribute("inum"));
+            }
+        }
+
+        setClaimsFromJwtAuthorizationRequest(jwr, authorizationGrant, scopes);
+        setClaimsFromRequestedClaims(((AuthorizationGrant) authorizationGrant).getClaims(), jwr, user);
+        jwrService.setSubjectIdentifier(jwr, authorizationGrant);
+
+        if ((dynamicScopes.size() > 0) && externalDynamicScopeService.isEnabled()) {
+            final UnmodifiableAuthorizationGrant unmodifiableAuthorizationGrant = new UnmodifiableAuthorizationGrant(authorizationGrant);
+            DynamicScopeExternalContext dynamicScopeContext = new DynamicScopeExternalContext(dynamicScopes, jwr, unmodifiableAuthorizationGrant);
+            externalDynamicScopeService.executeExternalUpdateMethods(dynamicScopeContext);
+        }
+
+        processCiba(jwr, authorizationGrant, refreshToken);
+
+        if (postProcessing != null) {
+        	postProcessing.apply(jwr);
+        }
+    }
+
+    private void setClaimsFromRequestedClaims(String requestedClaims, JsonWebResponse jwr, User user)
+            throws InvalidClaimException {
+        if (requestedClaims != null) {
+            JSONObject claimsObj = new JSONObject(requestedClaims);
+            if (claimsObj.has("id_token")) {
+                JSONObject idTokenObj = claimsObj.getJSONObject("id_token");
+                for (Iterator<String> it = idTokenObj.keys(); it.hasNext(); ) {
+                    String claimName = it.next();
+                    GluuAttribute gluuAttribute = attributeService.getByClaimName(claimName);
+
+                    if (gluuAttribute != null) {
+                        String ldapClaimName = gluuAttribute.getName();
+
+                        Object attribute = user.getAttribute(ldapClaimName, false, gluuAttribute.getOxMultiValuedAttribute());
+
+                        if (attribute instanceof List) {
+                            jwr.getClaims().setClaim(claimName, (List) attribute);
+                        } else if (attribute instanceof Boolean) {
+                            jwr.getClaims().setClaim(claimName, (Boolean) attribute);
+                        } else if (attribute instanceof Date) {
+                            Serializable formattedValue = dateFormatterService.formatClaim((Date) attribute, claimName);
+                            jwr.getClaims().setClaimObject(claimName, formattedValue, true);
+                        } else {
+                            jwr.setClaim(claimName, (String) attribute);
+                        }
+                    }
+                }
+            }
+        }
+    }
+
+    private void processCiba(JsonWebResponse jwr, IAuthorizationGrant authorizationGrant, RefreshToken refreshToken) {
+        if (!(authorizationGrant instanceof CIBAGrant)) {
+            return;
+        }
+
+        String refreshTokenHash = AbstractToken.getHash(refreshToken.getCode(), null);
+        jwr.setClaim(JwtClaimName.REFRESH_TOKEN_HASH, refreshTokenHash);
+
+        CIBAGrant cibaGrant = (CIBAGrant) authorizationGrant;
+        jwr.setClaim(JwtClaimName.AUTH_REQ_ID, cibaGrant.getAuthReqId());
+    }
+
+    private void setClaimsFromJwtAuthorizationRequest(JsonWebResponse jwr, IAuthorizationGrant authorizationGrant, Set<String> scopes) throws InvalidClaimException {
+        final JwtAuthorizationRequest requestObject = authorizationGrant.getJwtAuthorizationRequest();
+        if (requestObject == null || requestObject.getIdTokenMember() == null) {
+            return;
+        }
+
+        for (Claim claim : requestObject.getIdTokenMember().getClaims()) {
+            boolean optional = true; // ClaimValueType.OPTIONAL.equals(claim.getClaimValue().getClaimValueType());
+            GluuAttribute gluuAttribute = attributeService.getByClaimName(claim.getName());
+
+            if (gluuAttribute == null) {
+                continue;
+            }
+
+            Client client = authorizationGrant.getClient();
+
+            if (validateRequesteClaim(gluuAttribute, client.getClaims(), scopes)) {
+                String ldapClaimName = gluuAttribute.getName();
+                Object attribute = authorizationGrant.getUser().getAttribute(ldapClaimName, optional, gluuAttribute.getOxMultiValuedAttribute());
+                jwr.getClaims().setClaimFromJsonObject(claim.getName(), attribute);
+            }
+        }
+    }
+
+    public JsonWebResponse createJwr(
+            IAuthorizationGrant grant, String nonce,
+            AuthorizationCode authorizationCode, AccessToken accessToken, RefreshToken refreshToken,
+            String state, Set<String> scopes, boolean includeIdTokenClaims,
+            Function<JsonWebResponse, Void> preProcessing, Function<JsonWebResponse, Void> postProcessing,
+            ExecutionContext executionContext) throws Exception {
+
+        final Client client = grant.getClient();
+
+        JsonWebResponse jwr = jwrService.createJwr(client);
+        fillClaims(jwr, grant, nonce, authorizationCode, accessToken, refreshToken, state, scopes, includeIdTokenClaims, preProcessing, postProcessing, executionContext);
+
+        if (log.isTraceEnabled())
+            log.trace("Created claims for id_token, claims: " + jwr.getClaims().toJsonString());
+
+        return jwrService.encode(jwr, client);
+    }
+
+    private boolean validateRequesteClaim(GluuAttribute gluuAttribute, String[] clientAllowedClaims, Collection<String> scopes) {
+        if (gluuAttribute == null) {
+            return false;
+        }
+
+        if (clientAllowedClaims != null) {
+            for (String clientAllowedClaim : clientAllowedClaims) {
+                if (gluuAttribute.getDn().equals(clientAllowedClaim)) {
+                    return true;
+                }
+            }
+        }
+
+        for (String scopeName : scopes) {
+            Scope scope = scopeService.getScopeById(scopeName);
+
+            if (scope != null && scope.getOxAuthClaims() != null) {
+                for (String claimDn : scope.getOxAuthClaims()) {
+                    if (gluuAttribute.getDisplayName().equals(attributeService.getAttributeByDn(claimDn).getDisplayName())) {
+                        return true;
+                    }
+                }
+            }
+        }
+        return false;
+    }
+}
\ No newline at end of file
diff --git a/oxAuth/Server/src/main/java/org/gluu/oxauth/model/token/JwrService.java b/oxAuth/Server/src/main/java/org/gluu/oxauth/model/token/JwrService.java
new file mode 100644
index 00000000..14879eff
--- /dev/null
+++ b/oxAuth/Server/src/main/java/org/gluu/oxauth/model/token/JwrService.java
@@ -0,0 +1,163 @@
+package org.gluu.oxauth.model.token;
+
+import com.google.common.base.Function;
+
+import javax.enterprise.context.ApplicationScoped;
+
+import org.apache.commons.lang.StringUtils;
+import org.gluu.oxauth.model.common.IAuthorizationGrant;
+import org.gluu.oxauth.model.config.WebKeysConfiguration;
+import org.gluu.oxauth.model.configuration.AppConfiguration;
+import org.gluu.oxauth.model.crypto.AbstractCryptoProvider;
+import org.gluu.oxauth.model.crypto.encryption.BlockEncryptionAlgorithm;
+import org.gluu.oxauth.model.crypto.encryption.KeyEncryptionAlgorithm;
+import org.gluu.oxauth.model.exception.InvalidJweException;
+import org.gluu.oxauth.model.jwe.Jwe;
+import org.gluu.oxauth.model.jwe.JweEncrypter;
+import org.gluu.oxauth.model.jwe.JweEncrypterImpl;
+import org.gluu.oxauth.model.jwk.Algorithm;
+import org.gluu.oxauth.model.jwk.JSONWebKeySet;
+import org.gluu.oxauth.model.jwk.Use;
+import org.gluu.oxauth.model.jwt.Jwt;
+import org.gluu.oxauth.model.jwt.JwtType;
+import org.gluu.oxauth.model.registration.Client;
+import org.gluu.oxauth.service.ClientService;
+import org.gluu.oxauth.service.SectorIdentifierService;
+import org.gluu.oxauth.service.ServerCryptoProvider;
+import org.gluu.oxauth.util.ServerUtil;
+import org.json.JSONObject;
+import org.slf4j.Logger;
+
+import javax.inject.Inject;
+import java.nio.charset.StandardCharsets;
+import java.security.PublicKey;
+
+import static org.gluu.oxauth.model.jwt.JwtHeaderName.ALGORITHM;
+
+/**
+ * @author Yuriy Zabrovarnyy
+ * @version April 10, 2020
+ */
+@ApplicationScoped
+public class JwrService {
+
+    @Inject
+    private Logger log;
+
+    @Inject
+    private AbstractCryptoProvider cryptoProvider;
+
+    @Inject
+    private ClientService clientService;
+
+    @Inject
+    private AppConfiguration appConfiguration;
+
+    @Inject
+    private WebKeysConfiguration webKeysConfiguration;
+
+    @Inject
+    private SectorIdentifierService sectorIdentifierService;
+
+    /**
+     * Encode means encrypt for Jwe and sign for Jwt, means it's implementaiton specific but we want to abstract it.
+     *
+     * @return encoded Jwr
+     */
+    public JsonWebResponse encode(JsonWebResponse jwr, Client client) throws Exception {
+        if (jwr instanceof Jwe) {
+            return encryptJwe((Jwe) jwr, client);
+        }
+        if (jwr instanceof Jwt) {
+            return signJwt((Jwt) jwr, client);
+        }
+
+        throw new IllegalArgumentException("Unknown Jwr instance.");
+    }
+
+    private Jwt signJwt(Jwt jwt, Client client) throws Exception {
+        JwtSigner jwtSigner = JwtSigner.newJwtSigner(appConfiguration, webKeysConfiguration, client);
+        jwtSigner.setJwt(jwt);
+        jwtSigner.sign();
+        return jwt;
+    }
+
+    private Jwe encryptJwe(Jwe jwe, Client client) throws Exception {
+
+        if (appConfiguration.getUseNestedJwtDuringEncryption()) {
+            JwtSigner jwtSigner = JwtSigner.newJwtSigner(appConfiguration, webKeysConfiguration, client);
+            Jwt jwt = jwtSigner.newJwt();
+            jwt.setClaims(jwe.getClaims());
+            jwe.setSignedJWTPayload(signJwt(jwt, client));
+        }
+
+        KeyEncryptionAlgorithm keyEncryptionAlgorithm = KeyEncryptionAlgorithm.fromName(jwe.getHeader().getClaimAsString(ALGORITHM));
+        final BlockEncryptionAlgorithm encryptionMethod = jwe.getHeader().getEncryptionMethod();
+
+        if (keyEncryptionAlgorithm == KeyEncryptionAlgorithm.RSA_OAEP || keyEncryptionAlgorithm == KeyEncryptionAlgorithm.RSA1_5) {
+            JSONObject jsonWebKeys = ServerUtil.getJwks(client);
+            String keyId = new ServerCryptoProvider(cryptoProvider).getKeyId(JSONWebKeySet.fromJSONObject(jsonWebKeys),
+                    Algorithm.fromString(keyEncryptionAlgorithm.getName()),
+                    Use.ENCRYPTION);
+            PublicKey publicKey = cryptoProvider.getPublicKey(keyId, jsonWebKeys, null);
+            jwe.getHeader().setKeyId(keyId);
+
+            if (publicKey == null) {
+                throw new InvalidJweException("The public key is not valid");
+            }
+
+            JweEncrypter jweEncrypter = new JweEncrypterImpl(keyEncryptionAlgorithm, encryptionMethod, publicKey);
+            return jweEncrypter.encrypt(jwe);
+        }
+        if (keyEncryptionAlgorithm == KeyEncryptionAlgorithm.A128KW || keyEncryptionAlgorithm == KeyEncryptionAlgorithm.A256KW) {
+            byte[] sharedSymmetricKey = clientService.decryptSecret(client.getClientSecret()).getBytes(StandardCharsets.UTF_8);
+            JweEncrypter jweEncrypter = new JweEncrypterImpl(keyEncryptionAlgorithm, encryptionMethod, sharedSymmetricKey);
+            return jweEncrypter.encrypt(jwe);
+        }
+
+        throw new IllegalArgumentException("Unsupported encryption algorithm: " + keyEncryptionAlgorithm);
+    }
+
+    public JsonWebResponse createJwr(Client client) {
+        try {
+            if (client.getIdTokenEncryptedResponseAlg() != null
+                    && client.getIdTokenEncryptedResponseEnc() != null) {
+                Jwe jwe = new Jwe();
+
+                // Header
+                KeyEncryptionAlgorithm keyEncryptionAlgorithm = KeyEncryptionAlgorithm.fromName(client.getIdTokenEncryptedResponseAlg());
+                BlockEncryptionAlgorithm blockEncryptionAlgorithm = BlockEncryptionAlgorithm.fromName(client.getIdTokenEncryptedResponseEnc());
+                jwe.getHeader().setType(JwtType.JWT);
+                jwe.getHeader().setAlgorithm(keyEncryptionAlgorithm);
+                jwe.getHeader().setEncryptionMethod(blockEncryptionAlgorithm);
+                return jwe;
+            } else {
+                JwtSigner jwtSigner = JwtSigner.newJwtSigner(appConfiguration, webKeysConfiguration, client);
+                return jwtSigner.newJwt();
+            }
+        } catch (Exception e) {
+            log.error("Failed to create logout_token.", e);
+            return null;
+        }
+    }
+
+    public void setSubjectIdentifier(JsonWebResponse jwr, IAuthorizationGrant authorizationGrant) {
+        jwr.getClaims().setSubjectIdentifier(authorizationGrant.getSub());
+    }
+
+    public static Function<JsonWebResponse, Void> wrapWithSidFunction(Function<JsonWebResponse, Void> input, String outsideSid) {
+        return jwr -> {
+            if (jwr == null) {
+                return null;
+            }
+            if (input != null) {
+                input.apply(jwr);
+            }
+            if (StringUtils.isNotEmpty(outsideSid)) {
+                jwr.setClaim("sid", outsideSid);
+            }
+            return null;
+        };
+    }
+
+}
diff --git a/oxAuth/Server/src/main/java/org/gluu/oxauth/model/token/JwtSigner.java b/oxAuth/Server/src/main/java/org/gluu/oxauth/model/token/JwtSigner.java
new file mode 100644
index 00000000..9ad6153b
--- /dev/null
+++ b/oxAuth/Server/src/main/java/org/gluu/oxauth/model/token/JwtSigner.java
@@ -0,0 +1,112 @@
+/*
+ * oxAuth is available under the MIT License (2008). See http://opensource.org/licenses/MIT for full text.
+ *
+ * Copyright (c) 2014, Gluu
+ */
+
+package org.gluu.oxauth.model.token;
+
+import org.gluu.oxauth.model.configuration.AppConfiguration;
+import org.gluu.oxauth.model.crypto.AbstractCryptoProvider;
+import org.gluu.oxauth.model.crypto.signature.SignatureAlgorithm;
+import org.gluu.oxauth.model.jwk.Algorithm;
+import org.gluu.oxauth.model.jwk.JSONWebKeySet;
+import org.gluu.oxauth.model.jwk.Use;
+import org.gluu.oxauth.model.jwt.Jwt;
+import org.gluu.oxauth.model.jwt.JwtType;
+import org.gluu.oxauth.model.registration.Client;
+import org.gluu.oxauth.service.ClientService;
+import org.gluu.oxauth.service.ServerCryptoProvider;
+import org.gluu.service.cdi.util.CdiUtil;
+
+import com.google.common.base.Preconditions;
+
+/**
+ * @author Yuriy Zabrovarnyy
+ * @author Javier Rojas Blum
+ * @version February 12, 2019
+ */
+
+public class JwtSigner {
+
+    private AbstractCryptoProvider cryptoProvider;
+    private SignatureAlgorithm signatureAlgorithm;
+    private String audience;
+    private String hmacSharedSecret;
+
+    private AppConfiguration appConfiguration;
+    private JSONWebKeySet webKeys;
+
+    private Jwt jwt;
+
+    public JwtSigner(AppConfiguration appConfiguration, JSONWebKeySet webKeys, SignatureAlgorithm signatureAlgorithm, String audience) {
+        this(appConfiguration, webKeys, signatureAlgorithm, audience, null);
+    }
+
+    public JwtSigner(AppConfiguration appConfiguration, JSONWebKeySet webKeys, SignatureAlgorithm signatureAlgorithm, String audience, String hmacSharedSecret) {
+        this(appConfiguration, webKeys, signatureAlgorithm, audience, hmacSharedSecret,null);
+    }
+
+    public JwtSigner(AppConfiguration appConfiguration, JSONWebKeySet webKeys, SignatureAlgorithm signatureAlgorithm, String audience, String hmacSharedSecret, AbstractCryptoProvider cryptoProvider) {
+        this.appConfiguration = appConfiguration;
+        this.webKeys = webKeys;
+        this.signatureAlgorithm = signatureAlgorithm;
+        this.audience = audience;
+        this.hmacSharedSecret = hmacSharedSecret;
+
+        this.cryptoProvider = cryptoProvider != null ? cryptoProvider : new ServerCryptoProvider( CdiUtil.bean(AbstractCryptoProvider.class));
+    }
+
+    public static JwtSigner newJwtSigner(AppConfiguration appConfiguration, JSONWebKeySet webKeys, Client client) throws Exception {
+        Preconditions.checkNotNull(client);
+
+        SignatureAlgorithm signatureAlgorithm = SignatureAlgorithm.fromString(appConfiguration.getDefaultSignatureAlgorithm());
+        if (client.getIdTokenSignedResponseAlg() != null) {
+            signatureAlgorithm = SignatureAlgorithm.fromString(client.getIdTokenSignedResponseAlg());
+        }
+
+        ClientService clientService = CdiUtil.bean(ClientService.class);
+        return new JwtSigner(appConfiguration, webKeys, signatureAlgorithm, client.getClientId(), clientService.decryptSecret(client.getClientSecret()));
+    }
+
+    public Jwt newJwt() throws Exception {
+        jwt = new Jwt();
+
+        // Header
+        String keyId = cryptoProvider.getKeyId(webKeys, Algorithm.fromString(signatureAlgorithm.getName()), Use.SIGNATURE);
+        if (keyId != null) {
+            jwt.getHeader().setKeyId(keyId);
+        }
+        jwt.getHeader().setType(JwtType.JWT);
+        jwt.getHeader().setAlgorithm(signatureAlgorithm);
+
+        // Claims
+        jwt.getClaims().setIssuer(appConfiguration.getIssuer());
+        jwt.getClaims().setAudience(audience);
+        return jwt;
+    }
+
+    public Jwt sign() throws Exception {
+        // Signature
+        String signature = cryptoProvider.sign(jwt.getSigningInput(), jwt.getHeader().getKeyId(), hmacSharedSecret, signatureAlgorithm);
+        jwt.setEncodedSignature(signature);
+
+        return jwt;
+    }
+
+    public Jwt getJwt() {
+        return jwt;
+    }
+
+    public void setJwt(Jwt jwt) {
+        this.jwt = jwt;
+    }
+
+    public SignatureAlgorithm getSignatureAlgorithm() {
+        return signatureAlgorithm;
+    }
+
+    public void setCryptoProvider(AbstractCryptoProvider cryptoProvider) {
+        this.cryptoProvider = cryptoProvider;
+    }
+}
\ No newline at end of file
diff --git a/oxAuth/Server/src/main/java/org/gluu/oxauth/model/token/PersistentJwt.java b/oxAuth/Server/src/main/java/org/gluu/oxauth/model/token/PersistentJwt.java
new file mode 100644
index 00000000..fc8f9ae2
--- /dev/null
+++ b/oxAuth/Server/src/main/java/org/gluu/oxauth/model/token/PersistentJwt.java
@@ -0,0 +1,316 @@
+/*
+ * oxAuth is available under the MIT License (2008). See http://opensource.org/licenses/MIT for full text.
+ *
+ * Copyright (c) 2014, Gluu
+ */
+
+package org.gluu.oxauth.model.token;
+
+import java.util.ArrayList;
+import java.util.Date;
+import java.util.List;
+
+import org.apache.commons.lang.StringUtils;
+import org.json.JSONArray;
+import org.json.JSONException;
+import org.json.JSONObject;
+import org.gluu.oxauth.model.common.AccessToken;
+import org.gluu.oxauth.model.common.AuthorizationGrantType;
+import org.gluu.oxauth.model.common.IdToken;
+import org.gluu.oxauth.model.common.RefreshToken;
+import org.gluu.oxauth.model.util.Util;
+import org.slf4j.Logger;
+import org.slf4j.LoggerFactory;
+
+/**
+ * @author Javier Rojas Blum Date: 05.22.2012
+ */
+public class PersistentJwt {
+
+    private final static Logger log = LoggerFactory.getLogger(PersistentJwt.class);
+
+    private String userId;
+    private String clientId;
+    private AuthorizationGrantType authorizationGrantType;
+    private Date authenticationTime;
+    private List<String> scopes;
+    private List<AccessToken> accessTokens;
+    private List<RefreshToken> refreshTokens;
+    private AccessToken longLivedAccessToken;
+    private IdToken idToken;
+
+    public PersistentJwt() {
+    }
+
+    public PersistentJwt(String jwt) {
+        try {
+            load(jwt);
+        } catch (JSONException e) {
+            log.error(e.getMessage(), e);
+        }
+    }
+
+    public String getUserId() {
+        return userId;
+    }
+
+    public void setUserId(String userId) {
+        this.userId = userId;
+    }
+
+    public String getClientId() {
+        return clientId;
+    }
+
+    public void setClientId(String clientId) {
+        this.clientId = clientId;
+    }
+
+    public AuthorizationGrantType getAuthorizationGrantType() {
+        return authorizationGrantType;
+    }
+
+    public void setAuthorizationGrantType(AuthorizationGrantType authorizationGrantType) {
+        this.authorizationGrantType = authorizationGrantType;
+    }
+
+    public Date getAuthenticationTime() {
+        return authenticationTime;
+    }
+
+    public List<String> getScopes() {
+        return scopes;
+    }
+
+    public void setScopes(List<String> scopes) {
+        this.scopes = scopes;
+    }
+
+    public void setAuthenticationTime(Date authenticationTime) {
+        this.authenticationTime = authenticationTime;
+    }
+
+    public List<AccessToken> getAccessTokens() {
+        return accessTokens;
+    }
+
+    public void setAccessTokens(List<AccessToken> accessTokens) {
+        this.accessTokens = accessTokens;
+    }
+
+    public List<RefreshToken> getRefreshTokens() {
+        return refreshTokens;
+    }
+
+    public void setRefreshTokens(List<RefreshToken> refreshTokens) {
+        this.refreshTokens = refreshTokens;
+    }
+
+    public AccessToken getLongLivedAccessToken() {
+        return longLivedAccessToken;
+    }
+
+    public void setLongLivedAccessToken(AccessToken longLivedAccessToken) {
+        this.longLivedAccessToken = longLivedAccessToken;
+    }
+
+    public IdToken getIdToken() {
+        return idToken;
+    }
+
+    public void setIdToken(IdToken idToken) {
+        this.idToken = idToken;
+    }
+
+    @Override
+    public String toString() {
+        JSONObject jsonObject = new JSONObject();
+
+        try {
+            if (StringUtils.isNotBlank(userId)) {
+                jsonObject.put("user_id", userId);
+            }
+            if (StringUtils.isNotBlank(clientId)) {
+                jsonObject.put("client_id", clientId);
+            }
+            if (authorizationGrantType != null) {
+                jsonObject.put("authorization_grant_type", authorizationGrantType);
+            }
+            if (authenticationTime != null) {
+                jsonObject.put("authentication_time", authenticationTime.getTime());
+            }
+            if (scopes != null) {
+                JSONArray scopesJsonArray = new JSONArray();
+                for (String scope : scopes) {
+                    scopesJsonArray.put(scope);
+                }
+                jsonObject.put("scopes", scopesJsonArray);
+            }
+            if (accessTokens != null) {
+                JSONArray accessTokensJsonArray = new JSONArray();
+
+                for (AccessToken accessToken : accessTokens) {
+                    JSONObject accessTokenJsonObject = new JSONObject();
+
+                    if (accessToken.getCode() != null && !accessToken.getCode().isEmpty()) {
+                        accessTokenJsonObject.put("code", accessToken.getCode());
+                    }
+                    if (accessToken.getCreationDate() != null) {
+                        accessTokenJsonObject.put("creation_date", accessToken.getCreationDate().getTime());
+                    }
+                    if (accessToken.getExpirationDate() != null) {
+                        accessTokenJsonObject.put("expiration_date", accessToken.getExpirationDate().getTime());
+                    }
+
+                    accessTokensJsonArray.put(accessTokenJsonObject);
+                }
+
+                jsonObject.put("access_tokens", accessTokensJsonArray);
+            }
+            if (refreshTokens != null) {
+                JSONArray refreshTokensJsonArray = new JSONArray();
+
+                for (RefreshToken refreshToken : refreshTokens) {
+                    JSONObject refreshTokenJsonObject = new JSONObject();
+
+                    if (refreshToken.getCode() != null && !refreshToken.getCode().isEmpty()) {
+                        refreshTokenJsonObject.put("code", refreshToken.getCode());
+                    }
+                    if (refreshToken.getCreationDate() != null) {
+                        refreshTokenJsonObject.put("creation_date", refreshToken.getCreationDate().getTime());
+                    }
+                    if (refreshToken.getExpirationDate() != null) {
+                        refreshTokenJsonObject.put("expiration_date", refreshToken.getExpirationDate().getTime());
+                    }
+                }
+
+                jsonObject.put("refresh_tokens", refreshTokensJsonArray);
+            }
+            if (longLivedAccessToken != null) {
+                JSONObject longLivedAccessTokenJsonObject = new JSONObject();
+
+                if (longLivedAccessToken.getCode() != null && !longLivedAccessToken.getCode().isEmpty()) {
+                    longLivedAccessTokenJsonObject.put("code", longLivedAccessToken.getCode());
+                }
+                if (longLivedAccessToken.getCreationDate() != null) {
+                    longLivedAccessTokenJsonObject.put("creation_date", longLivedAccessToken.getCreationDate().getTime());
+                }
+                if (longLivedAccessToken.getExpirationDate() != null) {
+                    longLivedAccessTokenJsonObject.put("expiration_date", longLivedAccessToken.getExpirationDate().getTime());
+                }
+
+                jsonObject.put("long_lived_access_token", longLivedAccessTokenJsonObject);
+            }
+            if (idToken != null) {
+                JSONObject idTokenJsonObject = new JSONObject();
+
+                if (idToken.getCode() != null && !idToken.getCode().isEmpty()) {
+                    idTokenJsonObject.put("code", idToken.getCode());
+                }
+                if (idToken.getCreationDate() != null) {
+                    idTokenJsonObject.put("creation_date", idToken.getCreationDate().getTime());
+                }
+                if (idToken.getExpirationDate() != null) {
+                    idTokenJsonObject.put("expiration_date", idToken.getExpirationDate().getTime());
+                }
+
+                jsonObject.put("id_token", idTokenJsonObject);
+            }
+
+
+        } catch (JSONException e) {
+            log.error(e.getMessage(), e);
+        }
+
+        return jsonObject.toString();
+    }
+
+    private boolean load(String jwt) throws JSONException {
+        boolean result = false;
+
+        JSONObject jsonObject = new JSONObject(jwt);
+
+        if (jsonObject.has("user_id")) {
+            userId = jsonObject.getString("user_id");
+        }
+        if (jsonObject.has("client_id")) {
+            clientId = jsonObject.getString("client_id");
+        }
+        if (jsonObject.has("authorization_grant_type")) {
+            authorizationGrantType = AuthorizationGrantType.fromString(jsonObject.getString("authorization_grant_type"));
+        }
+        if (jsonObject.has("authentication_time")) {
+            authenticationTime = new Date(jsonObject.getLong("authentication_time"));
+        }
+        if (jsonObject.has("scopes")) {
+            JSONArray jsonArray = jsonObject.getJSONArray("scopes");
+            scopes = Util.asList(jsonArray);
+        }
+        if (jsonObject.has("access_tokens")) {
+            JSONArray accessTokensJsonArray = jsonObject.getJSONArray("access_tokens");
+            accessTokens = new ArrayList<AccessToken>();
+
+            for (int i = 0; i < accessTokensJsonArray.length(); i++) {
+                JSONObject accessTokenJsonObject = accessTokensJsonArray.getJSONObject(i);
+
+                if (accessTokenJsonObject.has("code")
+                        && accessTokenJsonObject.has("creation_date")
+                        && accessTokenJsonObject.has("expiration_date")) {
+                    String tokenCode = accessTokenJsonObject.getString("code");
+                    Date creationDate = new Date(accessTokenJsonObject.getLong("creation_date"));
+                    Date expirationDate = new Date(accessTokenJsonObject.getLong("expiration_date"));
+
+                    AccessToken accessToken = new AccessToken(tokenCode, creationDate, expirationDate);
+                    accessTokens.add(accessToken);
+                }
+            }
+        }
+        if (jsonObject.has("refresh_tokens")) {
+            JSONArray refreshTokensJsonArray = jsonObject.getJSONArray("refresh_tokens");
+            refreshTokens = new ArrayList<RefreshToken>();
+
+            for (int i = 0; i < refreshTokensJsonArray.length(); i++) {
+                JSONObject refreshTokenJsonObject = refreshTokensJsonArray.getJSONObject(i);
+
+                if (refreshTokenJsonObject.has("code")
+                        && refreshTokenJsonObject.has("creation_date")
+                        && refreshTokenJsonObject.has("expiration_date")) {
+                    String tokenCode = refreshTokenJsonObject.getString("code");
+                    Date creationDate = new Date(refreshTokenJsonObject.getLong("creation_date"));
+                    Date expirationDate = new Date(refreshTokenJsonObject.getLong("expiration_date"));
+
+                    RefreshToken refreshToken = new RefreshToken(tokenCode, creationDate, expirationDate);
+                    refreshTokens.add(refreshToken);
+                }
+            }
+        }
+        if (jsonObject.has("long_lived_access_token")) {
+            JSONObject longLivedAccessTokenJsonObject = jsonObject.getJSONObject("long_lived_access_token");
+
+            if (longLivedAccessTokenJsonObject.has("code")
+                    && longLivedAccessTokenJsonObject.has("creation_date")
+                    && longLivedAccessTokenJsonObject.has("expiration_date")) {
+                String tokenCode = longLivedAccessTokenJsonObject.getString("code");
+                Date creationDate = new Date(longLivedAccessTokenJsonObject.getLong("creation_date"));
+                Date expirationDate = new Date(longLivedAccessTokenJsonObject.getLong("expiration_date"));
+
+                longLivedAccessToken = new AccessToken(tokenCode, creationDate, expirationDate);
+            }
+        }
+        if (jsonObject.has("id_token")) {
+            JSONObject idTokenJsonObject = jsonObject.getJSONObject("id_token");
+
+            if (idTokenJsonObject.has("code")
+                    && idTokenJsonObject.has("creation_date")
+                    && idTokenJsonObject.has("expiration_date")) {
+                String tokenCode = idTokenJsonObject.getString("code");
+                Date creationDate = new Date(idTokenJsonObject.getLong("creation_date"));
+                Date expirationDate = new Date(idTokenJsonObject.getLong("expiration_date"));
+
+                idToken = new IdToken(tokenCode, creationDate, expirationDate);
+            }
+        }
+
+        return result;
+    }
+}
\ No newline at end of file
diff --git a/oxAuth/Server/src/main/java/org/gluu/oxauth/model/token/TokenParamsValidator.java b/oxAuth/Server/src/main/java/org/gluu/oxauth/model/token/TokenParamsValidator.java
new file mode 100644
index 00000000..34b7e0c7
--- /dev/null
+++ b/oxAuth/Server/src/main/java/org/gluu/oxauth/model/token/TokenParamsValidator.java
@@ -0,0 +1,84 @@
+/*
+ * oxAuth is available under the MIT License (2008). See http://opensource.org/licenses/MIT for full text.
+ *
+ * Copyright (c) 2014, Gluu
+ */
+
+package org.gluu.oxauth.model.token;
+
+import org.gluu.oxauth.model.common.GrantType;
+
+import java.net.URI;
+import java.util.Arrays;
+import java.util.List;
+import java.util.Set;
+
+/**
+ * Validates the parameters received for the token web service.
+ *
+ * @author Javier Rojas Blum
+ * @version February 25, 2020
+ */
+public class TokenParamsValidator {
+
+    /**
+     * Validates the parameters for a token request.
+     *
+     * @param grantType    The grant type. This parameter is mandatory. Value must be set
+     *                     to: <code>authorization_code</code>, <code>password</code>,
+     *                     <code>client_credentials</code>, <code>refresh_token</code>,
+     *                     or a valid {@link URI}.
+     * @param code         The authorization code.
+     * @param redirectUri
+     * @param username
+     * @param password
+     * @param scope
+     * @param assertion
+     * @param refreshToken
+     * @return Returns <code>true</code> when all the parameters are valid.
+     */
+    public static boolean validateParams(String grantType, String code,
+                                         String redirectUri, String username, String password, String scope,
+                                         String assertion, String refreshToken) {
+        boolean result = false;
+        if (grantType == null || grantType.isEmpty()) {
+            return false;
+        }
+
+        GrantType gt = GrantType.fromString(grantType);
+
+        switch (gt) {
+            case AUTHORIZATION_CODE:
+                result = code != null && !code.isEmpty() && redirectUri != null && !redirectUri.isEmpty();
+                break;
+            case RESOURCE_OWNER_PASSWORD_CREDENTIALS:
+                result = true;
+                break;
+            case CLIENT_CREDENTIALS:
+                result = true;
+                break;
+            case REFRESH_TOKEN:
+                result = refreshToken != null && !refreshToken.isEmpty();
+                break;
+            case CIBA:
+                result = true;
+                break;
+            case DEVICE_CODE:
+                result = true;
+                break;
+        }
+
+        return result;
+    }
+
+    public static boolean validateParams(String clientId, String clientSecret) {
+        return clientId != null && !clientId.isEmpty()
+                && clientSecret != null && !clientSecret.isEmpty();
+    }
+
+    public static boolean validateGrantType(GrantType requestedGrantType, GrantType[] clientGrantTypesArray, Set<GrantType> grantTypesSupported) {
+        List<GrantType> clientGrantTypes = Arrays.asList(clientGrantTypesArray);
+
+        return clientGrantTypes.contains(requestedGrantType) && grantTypesSupported.contains(requestedGrantType);
+    }
+}
\ No newline at end of file
diff --git a/oxAuth/Server/src/main/java/org/gluu/oxauth/model/token/ValidateTokenParamsValidator.java b/oxAuth/Server/src/main/java/org/gluu/oxauth/model/token/ValidateTokenParamsValidator.java
new file mode 100644
index 00000000..7540f1c3
--- /dev/null
+++ b/oxAuth/Server/src/main/java/org/gluu/oxauth/model/token/ValidateTokenParamsValidator.java
@@ -0,0 +1,26 @@
+/*
+ * oxAuth is available under the MIT License (2008). See http://opensource.org/licenses/MIT for full text.
+ *
+ * Copyright (c) 2014, Gluu
+ */
+
+package org.gluu.oxauth.model.token;
+
+/**
+ * Validates the parameters received for the validate token web service.
+ *
+ * @author Javier Rojas Blum Date: 10.27.2011
+ */
+public class ValidateTokenParamsValidator {
+
+	/**
+	 * Validates the parameters for a validate token request.
+	 *
+	 * @param accessToken
+	 *            The access token issued by the authorization server.
+	 * @return Returns <code>true</code> when all the parameters are valid.
+	 */
+	public static boolean validateParams(String accessToken) {
+		return accessToken != null && !accessToken.isEmpty();
+	}
+}
\ No newline at end of file
diff --git a/oxAuth/Server/src/main/java/org/gluu/oxauth/model/userinfo/UserInfoParamsValidator.java b/oxAuth/Server/src/main/java/org/gluu/oxauth/model/userinfo/UserInfoParamsValidator.java
new file mode 100644
index 00000000..c4bae63f
--- /dev/null
+++ b/oxAuth/Server/src/main/java/org/gluu/oxauth/model/userinfo/UserInfoParamsValidator.java
@@ -0,0 +1,25 @@
+/*
+ * oxAuth is available under the MIT License (2008). See http://opensource.org/licenses/MIT for full text.
+ *
+ * Copyright (c) 2014, Gluu
+ */
+
+package org.gluu.oxauth.model.userinfo;
+
+/**
+ * Validates the parameters received for the user info web service.
+ *
+ * @author Javier Rojas Blum Date: 12.30.2011
+ */
+public class UserInfoParamsValidator {
+
+    /**
+     * Validates the parameters for an user info request.
+     *
+     * @param accessToken
+     * @return Returns <code>true</code> when all the parameters are valid.
+     */
+    public static boolean validateParams(String accessToken) {
+        return accessToken != null && !accessToken.isEmpty();
+    }
+}
diff --git a/oxAuth/Server/src/main/java/org/gluu/oxauth/register/ws/rs/RegisterRestWebService.java b/oxAuth/Server/src/main/java/org/gluu/oxauth/register/ws/rs/RegisterRestWebService.java
new file mode 100644
index 00000000..83bf704a
--- /dev/null
+++ b/oxAuth/Server/src/main/java/org/gluu/oxauth/register/ws/rs/RegisterRestWebService.java
@@ -0,0 +1,106 @@
+/*
+ * oxAuth is available under the MIT License (2008). See http://opensource.org/licenses/MIT for full text.
+ *
+ * Copyright (c) 2014, Gluu
+ */
+
+package org.gluu.oxauth.register.ws.rs;
+
+import javax.servlet.http.HttpServletRequest;
+import javax.ws.rs.*;
+import javax.ws.rs.core.Context;
+import javax.ws.rs.core.MediaType;
+import javax.ws.rs.core.Response;
+import javax.ws.rs.core.SecurityContext;
+
+/**
+ * Provides interface for register REST web services.
+ *
+ * @author Javier Rojas Blum
+ * @author Yuriy Zabrovarnyy
+ * @version 0.1, 01.11.2012
+ */
+public interface RegisterRestWebService {
+
+    /**
+     * In order for an OpenID Connect client to utilize OpenID services for a user, the client needs to register with
+     * the OpenID Provider to acquire a client ID and shared secret.
+     *
+     * @param requestParams   request parameters
+     * @param httpRequest     http request object
+     * @param securityContext An injectable interface that provides access to security related information.
+     * @return response
+     */
+    @POST
+    @Path("/register")
+    @Produces({MediaType.APPLICATION_JSON})
+    Response requestRegister(
+            String requestParams,
+            @Context HttpServletRequest httpRequest,
+            @Context SecurityContext securityContext);
+
+    /**
+     * This operation updates the Client Metadata for a previously registered client.
+     *
+     * @param requestParams   request parameters
+     * @param clientId        client id
+     * @param authorization   Access Token that is used at the Client Configuration Endpoint
+     * @param httpRequest     http request object
+     * @param securityContext An injectable interface that provides access to security related information.
+     * @return response
+     */
+
+    @PUT
+    @Path("register")
+    @Produces({MediaType.APPLICATION_JSON})
+    Response requestClientUpdate(
+            String requestParams,
+            @QueryParam("client_id")
+            String clientId,
+            @HeaderParam("Authorization") String authorization,
+            @Context HttpServletRequest httpRequest,
+            @Context SecurityContext securityContext);
+
+    /**
+     * This operation retrieves the Client Metadata for a previously registered client.
+     *
+     * @param clientId        Unique Client identifier.
+     * @param securityContext An injectable interface that provides access to security related information.
+     * @return response
+     */
+    @GET
+    @Path("/register")
+    @Produces({MediaType.APPLICATION_JSON})
+    Response requestClientRead(
+            @QueryParam("client_id")
+            String clientId,
+            @HeaderParam("Authorization") String authorization,
+            @Context HttpServletRequest httpRequest,
+            @Context SecurityContext securityContext);
+
+    /**
+     * This operation removes the Client Metadata for a previously registered client.
+     *
+     * @param clientId        Unique Client identifier.
+     * @param securityContext An injectable interface that provides access to security related information.
+     * @return If a client has been successfully deprovisioned, the authorization
+     * server responds with an HTTP 204 No Content message.
+     * <p>
+     * If the registration access token used to make this request is not
+     * valid, the server responds with HTTP 401 Unauthorized.
+     * <p>
+     * If the client does not exist on this server, the server responds
+     * with HTTP 401 Unauthorized.
+     * <p>
+     * If the client is not allowed to delete itself, the server
+     * responds with HTTP 403 Forbidden.
+     */
+    @DELETE
+    @Path("/register")
+    @Produces({MediaType.APPLICATION_JSON})
+    Response delete(
+            @QueryParam("client_id") String clientId,
+            @HeaderParam("Authorization") String authorization,
+            @Context HttpServletRequest httpRequest,
+            @Context SecurityContext securityContext);
+}
\ No newline at end of file
diff --git a/oxAuth/Server/src/main/java/org/gluu/oxauth/register/ws/rs/RegisterRestWebServiceImpl.java b/oxAuth/Server/src/main/java/org/gluu/oxauth/register/ws/rs/RegisterRestWebServiceImpl.java
new file mode 100644
index 00000000..5d955376
--- /dev/null
+++ b/oxAuth/Server/src/main/java/org/gluu/oxauth/register/ws/rs/RegisterRestWebServiceImpl.java
@@ -0,0 +1,1092 @@
+/*
+ * oxAuth is available under the MIT License (2008). See http://opensource.org/licenses/MIT for full text.
+ *
+ * Copyright (c) 2014, Gluu
+ */
+
+package org.gluu.oxauth.register.ws.rs;
+
+import com.google.common.base.Strings;
+import com.google.common.collect.Lists;
+import org.apache.commons.lang.BooleanUtils;
+import org.apache.commons.lang.StringUtils;
+import org.gluu.model.GluuAttribute;
+import org.gluu.model.metric.MetricType;
+import org.gluu.oxauth.audit.ApplicationAuditLogger;
+import org.gluu.oxauth.ciba.CIBARegisterClientMetadataService;
+import org.gluu.oxauth.ciba.CIBARegisterClientResponseService;
+import org.gluu.oxauth.ciba.CIBARegisterParamsValidatorService;
+import org.gluu.oxauth.client.RegisterRequest;
+import org.gluu.oxauth.model.audit.Action;
+import org.gluu.oxauth.model.audit.OAuth2AuditLog;
+import org.gluu.oxauth.model.common.*;
+import org.gluu.oxauth.model.config.StaticConfiguration;
+import org.gluu.oxauth.model.configuration.AppConfiguration;
+import org.gluu.oxauth.model.crypto.AbstractCryptoProvider;
+import org.gluu.oxauth.model.crypto.signature.AlgorithmFamily;
+import org.gluu.oxauth.model.crypto.signature.SignatureAlgorithm;
+import org.gluu.oxauth.model.error.ErrorResponseFactory;
+import org.gluu.oxauth.model.exception.InvalidJwtException;
+import org.gluu.oxauth.model.json.JsonApplier;
+import org.gluu.oxauth.model.jwt.Jwt;
+import org.gluu.oxauth.model.register.RegisterErrorResponseType;
+import org.gluu.oxauth.model.register.RegisterResponseParam;
+import org.gluu.oxauth.model.registration.Client;
+import org.gluu.oxauth.model.registration.RegisterParamsValidator;
+import org.gluu.oxauth.model.token.HandleTokenFactory;
+import org.gluu.oxauth.model.util.JwtUtil;
+import org.gluu.oxauth.model.util.Pair;
+import org.gluu.oxauth.model.util.Util;
+import org.gluu.oxauth.service.AttributeService;
+import org.gluu.oxauth.service.ClientService;
+import org.gluu.oxauth.service.MetricService;
+import org.gluu.oxauth.service.ScopeService;
+import org.gluu.oxauth.service.common.InumService;
+import org.gluu.oxauth.service.external.ExternalDynamicClientRegistrationService;
+import org.gluu.oxauth.service.token.TokenService;
+import org.gluu.oxauth.util.ServerUtil;
+import org.gluu.persist.model.base.CustomAttribute;
+import org.gluu.util.StringHelper;
+import org.gluu.util.security.StringEncrypter;
+import org.json.JSONArray;
+import org.json.JSONException;
+import org.json.JSONObject;
+import org.oxauth.persistence.model.Scope;
+import org.slf4j.Logger;
+
+import javax.inject.Inject;
+import javax.servlet.http.HttpServletRequest;
+import javax.ws.rs.HeaderParam;
+import javax.ws.rs.Path;
+import javax.ws.rs.WebApplicationException;
+import javax.ws.rs.core.Context;
+import javax.ws.rs.core.MediaType;
+import javax.ws.rs.core.Response;
+import javax.ws.rs.core.SecurityContext;
+import java.net.URI;
+import java.util.*;
+
+import static org.apache.commons.lang3.BooleanUtils.isTrue;
+import static org.gluu.oxauth.model.register.RegisterRequestParam.*;
+import static org.gluu.oxauth.model.register.RegisterResponseParam.*;
+import static org.gluu.oxauth.model.util.StringUtils.implode;
+import static org.gluu.oxauth.model.util.StringUtils.toList;
+
+/**
+ * Implementation for register REST web services.
+ *
+ * @author Javier Rojas Blum
+ * @author Yuriy Zabrovarnyy
+ * @author Yuriy Movchan
+ * @version May 20, 2020
+ */
+@Path("/")
+public class RegisterRestWebServiceImpl implements RegisterRestWebService {
+
+    @Inject
+    private Logger log;
+    @Inject
+    private ApplicationAuditLogger applicationAuditLogger;
+    @Inject
+    private ErrorResponseFactory errorResponseFactory;
+
+    @Inject
+    private ScopeService scopeService;
+
+    @Inject
+    private AttributeService attributeService;
+
+    @Inject
+    private InumService inumService;
+    @Inject
+    private ClientService clientService;
+    @Inject
+    private TokenService tokenService;
+
+    @Inject
+    private MetricService metricService;
+
+    @Inject
+    private ExternalDynamicClientRegistrationService externalDynamicClientRegistrationService;
+
+    @Inject
+    private RegisterParamsValidator registerParamsValidator;
+
+    @Inject
+    private AppConfiguration appConfiguration;
+
+    @Inject
+    private StaticConfiguration staticConfiguration;
+
+    @Inject
+    private AbstractCryptoProvider cryptoProvider;
+
+    @Inject
+    private CIBARegisterParamsValidatorService cibaRegisterParamsValidatorService;
+
+    @Inject
+    private CIBARegisterClientMetadataService cibaRegisterClientMetadataService;
+
+    @Inject
+    private CIBARegisterClientResponseService cibaRegisterClientResponseService;
+
+    @Inject
+    private AuthorizationGrantList authorizationGrantList;
+
+    @Override
+    public Response requestRegister(String requestParams, HttpServletRequest httpRequest, SecurityContext securityContext) {
+        com.codahale.metrics.Timer.Context timerContext = metricService.getTimer(MetricType.DYNAMIC_CLIENT_REGISTRATION_RATE).time();
+        try {
+            return registerClientImpl(requestParams, httpRequest, securityContext);
+        } finally {
+            timerContext.stop();
+        }
+    }
+
+    private Response registerClientImpl(String requestParams, HttpServletRequest httpRequest, SecurityContext securityContext) {
+        Response.ResponseBuilder builder = Response.status(Response.Status.CREATED);
+        if (appConfiguration.getReturn200OnClientRegistration()) {
+            builder = Response.ok();
+        }
+
+        OAuth2AuditLog oAuth2AuditLog = new OAuth2AuditLog(ServerUtil.getIpAddress(httpRequest), Action.CLIENT_REGISTRATION);
+        try {
+            final JSONObject requestObject = new JSONObject(requestParams);
+            final JSONObject softwareStatement = validateSoftwareStatement(httpRequest, requestObject);
+            if (softwareStatement != null) {
+                log.trace("Override request parameters by software_statement");
+                for (String key : softwareStatement.keySet()) {
+                    requestObject.putOpt(key, softwareStatement.get(key));
+                }
+            }
+
+            final RegisterRequest r = RegisterRequest.fromJson(requestObject, appConfiguration.getLegacyDynamicRegistrationScopeParam());
+            if (requestObject.has(SOFTWARE_STATEMENT.toString())) {
+                r.setSoftwareStatement(requestObject.getString(SOFTWARE_STATEMENT.toString()));
+            }
+
+            log.info("Attempting to register client: applicationType = {}, clientName = {}, redirectUris = {}, isSecure = {}, sectorIdentifierUri = {}, defaultAcrValues = {}",
+                    r.getApplicationType(), r.getClientName(), r.getRedirectUris(), securityContext.isSecure(), r.getSectorIdentifierUri(), r.getDefaultAcrValues());
+            log.trace("Registration request = {}", requestParams);
+
+            if (!appConfiguration.getDynamicRegistrationEnabled()) {
+                log.info("Dynamic client registration is disabled.");
+                throw errorResponseFactory.createWebApplicationException(Response.Status.BAD_REQUEST, RegisterErrorResponseType.ACCESS_DENIED, "Dynamic client registration is disabled.");
+            }
+
+            if (!appConfiguration.getDynamicRegistrationPasswordGrantTypeEnabled()
+                    && registerParamsValidator.checkIfThereIsPasswordGrantType(r.getGrantTypes())) {
+                log.info("Password Grant Type is not allowed for Dynamic Client Registration.");
+                throw errorResponseFactory.createWebApplicationException(Response.Status.BAD_REQUEST, RegisterErrorResponseType.ACCESS_DENIED, "Password Grant Type is not allowed for Dynamic Client Registration.");
+            }
+
+            if (r.getSubjectType() == null) {
+                SubjectType defaultSubjectType = SubjectType.fromString(appConfiguration.getDefaultSubjectType());
+                if (defaultSubjectType != null) {
+                    r.setSubjectType(defaultSubjectType);
+                } else if (appConfiguration.getSubjectTypesSupported().contains(SubjectType.PUBLIC.toString())) {
+                    r.setSubjectType(SubjectType.PUBLIC);
+                } else if (appConfiguration.getSubjectTypesSupported().contains(SubjectType.PAIRWISE.toString())) {
+                    r.setSubjectType(SubjectType.PAIRWISE);
+                }
+            }
+
+            registerParamsValidator.validateAlgorithms(r); // Throws a WebApplicationException whether a validation doesn't pass
+
+            if (r.getIdTokenSignedResponseAlg() == null) {
+                r.setIdTokenSignedResponseAlg(SignatureAlgorithm.fromString(appConfiguration.getDefaultSignatureAlgorithm()));
+            }
+            if (r.getAccessTokenSigningAlg() == null) {
+                r.setAccessTokenSigningAlg(SignatureAlgorithm.fromString(appConfiguration.getDefaultSignatureAlgorithm()));
+            }
+
+            if (r.getClaimsRedirectUris() != null && !r.getClaimsRedirectUris().isEmpty()) {
+                if (!registerParamsValidator.validateRedirectUris(r.getGrantTypes(), r.getResponseTypes(),
+                        r.getApplicationType(), r.getSubjectType(), r.getClaimsRedirectUris(), r.getSectorIdentifierUri())) {
+                    log.debug("Value of one or more claims_redirect_uris is invalid, claims_redirect_uris: " + r.getClaimsRedirectUris());
+                    throw errorResponseFactory.createWebApplicationException(Response.Status.BAD_REQUEST, RegisterErrorResponseType.INVALID_CLAIMS_REDIRECT_URI, "Value of one or more claims_redirect_uris is invalid");
+                }
+            }
+
+            if (!Strings.isNullOrEmpty(r.getInitiateLoginUri())) {
+                if (!registerParamsValidator.validateInitiateLoginUri(r.getInitiateLoginUri())) {
+                    log.debug("The Initiate Login Uri is invalid. The initiate_login_uri must use the https schema: " + r.getInitiateLoginUri());
+                    throw errorResponseFactory.createWebApplicationException(
+                            Response.Status.BAD_REQUEST,
+                            RegisterErrorResponseType.INVALID_CLIENT_METADATA,
+                            "The Initiate Login Uri is invalid. The initiate_login_uri must use the https schema.");
+                }
+            }
+
+            final Pair<Boolean, String> validateResult = registerParamsValidator.validateParamsClientRegister(
+                    r.getApplicationType(), r.getSubjectType(),
+                    r.getGrantTypes(), r.getResponseTypes(),
+                    r.getRedirectUris());
+            if (!validateResult.getFirst()) {
+                log.trace("Client parameters are invalid, returns invalid_request error. Reason: " + validateResult.getSecond());
+                throw errorResponseFactory.createWebApplicationException(Response.Status.BAD_REQUEST, RegisterErrorResponseType.INVALID_CLIENT_METADATA, validateResult.getSecond());
+            }
+
+            if (!registerParamsValidator.validateRedirectUris(
+                    r.getGrantTypes(), r.getResponseTypes(),
+                    r.getApplicationType(), r.getSubjectType(),
+                    r.getRedirectUris(), r.getSectorIdentifierUri())) {
+                throw errorResponseFactory.createWebApplicationException(Response.Status.BAD_REQUEST, RegisterErrorResponseType.INVALID_REDIRECT_URI, "Failed to validate redirect uris.");
+            }
+
+            if (!cibaRegisterParamsValidatorService.validateParams(
+                    r.getBackchannelTokenDeliveryMode(),
+                    r.getBackchannelClientNotificationEndpoint(),
+                    r.getBackchannelAuthenticationRequestSigningAlg(),
+                    r.getBackchannelUserCodeParameter(),
+                    r.getGrantTypes(),
+                    r.getSubjectType(),
+                    r.getSectorIdentifierUri(),
+                    r.getJwks(),
+                    r.getJwksUri()
+            )) { // CIBA
+                throw errorResponseFactory.createWebApplicationException(Response.Status.BAD_REQUEST, RegisterErrorResponseType.INVALID_CLIENT_METADATA,
+                        "Invalid Client Metadata registering to use CIBA (Client Initiated Backchannel Authentication).");
+            }
+
+
+            registerParamsValidator.validateLogoutUri(r.getFrontChannelLogoutUris(), r.getRedirectUris(), errorResponseFactory);
+            registerParamsValidator.validateLogoutUri(r.getBackchannelLogoutUris(), r.getRedirectUris(), errorResponseFactory);
+
+            String clientsBaseDN = staticConfiguration.getBaseDn().getClients();
+
+            String inum = inumService.generateClientInum();
+            String generatedClientSecret = UUID.randomUUID().toString();
+
+            final Client client = new Client();
+            client.setDn("inum=" + inum + "," + clientsBaseDN);
+            client.setClientId(inum);
+            client.setDeletable(true);
+            client.setClientSecret(clientService.encryptSecret(generatedClientSecret));
+            client.setRegistrationAccessToken(HandleTokenFactory.generateHandleToken());
+            client.setIdTokenTokenBindingCnf(r.getIdTokenTokenBindingCnf());
+
+            final Calendar calendar = new GregorianCalendar(TimeZone.getTimeZone("UTC"));
+            client.setClientIdIssuedAt(calendar.getTime());
+
+            if (appConfiguration.getDynamicRegistrationExpirationTime() > 0) { // #883 : expiration can be -1, mean does not expire
+                calendar.add(Calendar.SECOND, appConfiguration.getDynamicRegistrationExpirationTime());
+                client.setClientSecretExpiresAt(calendar.getTime());
+                client.setExpirationDate(calendar.getTime());
+                client.setTtl(appConfiguration.getDynamicRegistrationExpirationTime());
+            }
+            client.setDeletable(client.getClientSecretExpiresAt() != null);
+
+            if (StringUtils.isBlank(r.getClientName()) && r.getRedirectUris() != null && !r.getRedirectUris().isEmpty()) {
+                try {
+                    URI redUri = new URI(r.getRedirectUris().get(0));
+                    client.setClientName(redUri.getHost());
+                } catch (Exception e) {
+                    //ignore
+                    log.error(e.getMessage(), e);
+                    client.setClientName("Unknown");
+                }
+            }
+
+            updateClientFromRequestObject(client, r, false);
+
+            boolean registerClient = true;
+            if (externalDynamicClientRegistrationService.isEnabled()) {
+                registerClient = externalDynamicClientRegistrationService.executeExternalCreateClientMethods(r, client);
+            }
+
+            if (!registerClient) {
+                log.trace("Client parameters are invalid, returns invalid_request error. External registration script returned false.");
+                throw errorResponseFactory.createWebApplicationException(Response.Status.BAD_REQUEST, RegisterErrorResponseType.INVALID_CLIENT_METADATA, "External registration script returned false.");
+            }
+
+            Date currentTime = Calendar.getInstance().getTime();
+            client.setLastAccessTime(currentTime);
+            client.setLastLogonTime(currentTime);
+
+            Boolean persistClientAuthorizations = appConfiguration.getDynamicRegistrationPersistClientAuthorizations();
+            client.setPersistClientAuthorizations(persistClientAuthorizations != null ? persistClientAuthorizations : false);
+
+            clientService.persist(client);
+
+            JSONObject jsonObject = getJSONObject(client);
+            builder.entity(jsonObject.toString(4).replace("\\/", "/"));
+
+            log.info("Client registered: clientId = {}, applicationType = {}, clientName = {}, redirectUris = {}, sectorIdentifierUri = {}",
+                    client.getClientId(), client.getApplicationType(), client.getClientName(), client.getRedirectUris(), client.getSectorIdentifierUri());
+
+            oAuth2AuditLog.setClientId(client.getClientId());
+            oAuth2AuditLog.setScope(clientScopesToString(client));
+            oAuth2AuditLog.setSuccess(true);
+        } catch (StringEncrypter.EncryptionException e) {
+            builder = internalErrorResponse("Encryption exception occured.");
+            log.error(e.getMessage(), e);
+        } catch (JSONException e) {
+            builder = internalErrorResponse("Failed to parse JSON.");
+            log.error(e.getMessage(), e);
+        } catch (WebApplicationException e) {
+            log.error(e.getMessage(), e);
+            throw e;
+        } catch (Exception e) {
+            builder = internalErrorResponse("Unknown.");
+            log.error(e.getMessage(), e);
+        }
+
+        builder.cacheControl(ServerUtil.cacheControl(true, false));
+        builder.header("Pragma", "no-cache");
+        builder.type(MediaType.APPLICATION_JSON_TYPE);
+        applicationAuditLogger.sendMessage(oAuth2AuditLog);
+        return builder.build();
+    }
+
+    private JSONObject validateSoftwareStatement(HttpServletRequest httpServletRequest, JSONObject requestObject) {
+        if (!requestObject.has(SOFTWARE_STATEMENT.toString())) {
+            return null;
+        }
+
+        try {
+            Jwt softwareStatement = Jwt.parse(requestObject.getString(SOFTWARE_STATEMENT.toString()));
+            final SignatureAlgorithm signatureAlgorithm = softwareStatement.getHeader().getSignatureAlgorithm();
+
+            final SoftwareStatementValidationType validationType = SoftwareStatementValidationType.fromString(appConfiguration.getSoftwareStatementValidationType());
+            if (validationType == SoftwareStatementValidationType.NONE) {
+                log.trace("software_statement validation was skipped due to `softwareStatementValidationType` configuration property set to none. (Not recommended.)");
+                return softwareStatement.getClaims().toJsonObject();
+            }
+
+            if (validationType == SoftwareStatementValidationType.SCRIPT) {
+                if (!externalDynamicClientRegistrationService.isEnabled()) {
+                    log.error("Server is mis-configured. softwareStatementValidationType=script but there is no any Dynamic Client Registration script enabled.");
+                    return null;
+                }
+
+                if (AlgorithmFamily.HMAC.equals(signatureAlgorithm.getFamily())) {
+
+                    final String hmacSecret = externalDynamicClientRegistrationService.getSoftwareStatementHmacSecret(httpServletRequest, requestObject, softwareStatement);
+                    if (StringUtils.isBlank(hmacSecret)) {
+                        log.error("No hmacSecret provided in Dynamic Client Registration script (method getSoftwareStatementHmacSecret didn't return actual secret). ");
+                        throw errorResponseFactory.createWebApplicationException(Response.Status.BAD_REQUEST, RegisterErrorResponseType.INVALID_SOFTWARE_STATEMENT, "");
+                    }
+
+                    if (!cryptoProvider.verifySignature(softwareStatement.getSigningInput(), softwareStatement.getEncodedSignature(), null, null, hmacSecret, signatureAlgorithm)) {
+                        throw new InvalidJwtException("Invalid signature in the software statement");
+                    }
+
+                    return softwareStatement.getClaims().toJsonObject();
+                }
+
+                final JSONObject softwareStatementJwks = externalDynamicClientRegistrationService.getSoftwareStatementJwks(httpServletRequest, requestObject, softwareStatement);
+                if (softwareStatementJwks == null) {
+                    log.error("No jwks provided in Dynamic Client Registration script (method getSoftwareStatementJwks didn't return actual jwks). ");
+                    throw errorResponseFactory.createWebApplicationException(Response.Status.BAD_REQUEST, RegisterErrorResponseType.INVALID_SOFTWARE_STATEMENT, "");
+                }
+
+                if (!cryptoProvider.verifySignature(softwareStatement.getSigningInput(), softwareStatement.getEncodedSignature(), softwareStatement.getHeader().getKeyId(), softwareStatementJwks, null, signatureAlgorithm)) {
+                    throw new InvalidJwtException("Invalid signature in the software statement");
+                }
+
+                return softwareStatement.getClaims().toJsonObject();
+            }
+
+            if ((validationType == SoftwareStatementValidationType.JWKS_URI ||
+                    validationType == SoftwareStatementValidationType.JWKS) &&
+                    StringUtils.isBlank(appConfiguration.getSoftwareStatementValidationClaimName())) {
+                log.error("softwareStatementValidationClaimName configuration property is not specified. Please specify claim name from software_statement which points to jwks (or jwks_uri).");
+                throw errorResponseFactory.createWebApplicationException(Response.Status.BAD_REQUEST, RegisterErrorResponseType.INVALID_SOFTWARE_STATEMENT, "Failed to validate software statement");
+            }
+
+            String jwksUriClaim = null;
+            if (validationType == SoftwareStatementValidationType.JWKS_URI) {
+                jwksUriClaim = softwareStatement.getClaims().getClaimAsString(appConfiguration.getSoftwareStatementValidationClaimName());
+            }
+
+            String jwksClaim = null;
+            if (validationType == SoftwareStatementValidationType.JWKS) {
+                jwksClaim = softwareStatement.getClaims().getClaimAsString(appConfiguration.getSoftwareStatementValidationClaimName());
+            }
+
+            if (StringUtils.isBlank(jwksUriClaim) && StringUtils.isBlank(jwksClaim)) {
+                final String msg = String.format("software_statement does not contain `%s` claim and thus is considered as invalid.", appConfiguration.getSoftwareStatementValidationClaimName());
+                log.error(msg);
+                throw errorResponseFactory.createWebApplicationException(Response.Status.BAD_REQUEST, RegisterErrorResponseType.INVALID_SOFTWARE_STATEMENT, msg);
+            }
+
+            JSONObject jwks = Strings.isNullOrEmpty(jwksUriClaim) ?
+                    new JSONObject(jwksClaim) :
+                    JwtUtil.getJSONWebKeys(jwksUriClaim);
+
+            boolean validSignature = cryptoProvider.verifySignature(softwareStatement.getSigningInput(),
+                    softwareStatement.getEncodedSignature(),
+                    softwareStatement.getHeader().getKeyId(), jwks, null, signatureAlgorithm);
+
+            if (!validSignature) {
+                throw new InvalidJwtException("Invalid cryptographic segment in the software statement");
+            }
+
+            return softwareStatement.getClaims().toJsonObject();
+        } catch (Exception e) {
+            final String msg = "Invalid software_statement.";
+            log.error(msg, e);
+            throw errorResponseFactory.createWebApplicationException(Response.Status.BAD_REQUEST, RegisterErrorResponseType.INVALID_SOFTWARE_STATEMENT, msg);
+        }
+    }
+
+    private Response.ResponseBuilder internalErrorResponse(String reason) {
+        return Response.status(Response.Status.INTERNAL_SERVER_ERROR)
+                .type(MediaType.APPLICATION_JSON_TYPE)
+                .entity(errorResponseFactory.errorAsJson(RegisterErrorResponseType.INVALID_CLIENT_METADATA, reason));
+    }
+
+    // yuriyz - ATTENTION : this method is used for both registration and update client metadata cases, therefore any logic here
+    // will be applied for both cases.
+    private void updateClientFromRequestObject(Client p_client, RegisterRequest requestObject, boolean update) throws JSONException {
+
+        JsonApplier.getInstance().transfer(requestObject, p_client);
+        JsonApplier.getInstance().transfer(requestObject, p_client.getAttributes());
+
+        List<String> redirectUris = requestObject.getRedirectUris();
+        if (redirectUris != null && !redirectUris.isEmpty()) {
+            redirectUris = new ArrayList<>(new HashSet<>(redirectUris)); // Remove repeated elements
+            p_client.setRedirectUris(redirectUris.toArray(new String[redirectUris.size()]));
+        }
+        List<String> claimsRedirectUris = requestObject.getClaimsRedirectUris();
+        if (claimsRedirectUris != null && !claimsRedirectUris.isEmpty()) {
+            claimsRedirectUris = new ArrayList<>(new HashSet<>(claimsRedirectUris)); // Remove repeated elements
+            p_client.setClaimRedirectUris(claimsRedirectUris.toArray(new String[claimsRedirectUris.size()]));
+        }
+        if (requestObject.getApplicationType() != null) {
+            p_client.setApplicationType(requestObject.getApplicationType().toString());
+        }
+        if (StringUtils.isNotBlank(requestObject.getClientName())) {
+            p_client.setClientName(requestObject.getClientName());
+        }
+        if (StringUtils.isNotBlank(requestObject.getSectorIdentifierUri())) {
+            p_client.setSectorIdentifierUri(requestObject.getSectorIdentifierUri());
+        }
+
+        Set<ResponseType> responseTypeSet = new HashSet<>();
+        responseTypeSet.addAll(requestObject.getResponseTypes());
+
+        Set<GrantType> grantTypeSet = new HashSet<>();
+        grantTypeSet.addAll(requestObject.getGrantTypes());
+
+        if (isTrue(appConfiguration.getGrantTypesAndResponseTypesAutofixEnabled())) {
+            if (appConfiguration.getClientRegDefaultToCodeFlowWithRefresh()) {
+                if (responseTypeSet.size() == 0 && grantTypeSet.size() == 0) {
+                    responseTypeSet.add(ResponseType.CODE);
+                }
+                if (responseTypeSet.contains(ResponseType.CODE)) {
+                    grantTypeSet.add(GrantType.AUTHORIZATION_CODE);
+                    grantTypeSet.add(GrantType.REFRESH_TOKEN);
+                }
+                if (grantTypeSet.contains(GrantType.AUTHORIZATION_CODE)) {
+                    responseTypeSet.add(ResponseType.CODE);
+                    grantTypeSet.add(GrantType.REFRESH_TOKEN);
+                }
+            }
+            if (responseTypeSet.contains(ResponseType.TOKEN) || responseTypeSet.contains(ResponseType.ID_TOKEN)) {
+                grantTypeSet.add(GrantType.IMPLICIT);
+            }
+            if (grantTypeSet.contains(GrantType.IMPLICIT)) {
+                responseTypeSet.add(ResponseType.TOKEN);
+            }
+        }
+
+        Set<Set<ResponseType>> responseTypesSupported = appConfiguration.getResponseTypesSupported();
+        Set<GrantType> grantTypesSupported = appConfiguration.getGrantTypesSupported();
+
+        if (!responseTypesSupported.contains(responseTypeSet)) {
+            responseTypeSet.clear();
+        }
+
+        grantTypeSet.retainAll(grantTypesSupported);
+
+        Set<GrantType> dynamicGrantTypeDefault = appConfiguration.getDynamicGrantTypeDefault();
+        grantTypeSet.retainAll(dynamicGrantTypeDefault);
+
+        if (!update || requestObject.getResponseTypes().size() > 0) {
+            p_client.setResponseTypes(responseTypeSet.toArray(new ResponseType[responseTypeSet.size()]));
+        }
+        if (!update) {
+            p_client.setGrantTypes(grantTypeSet.toArray(new GrantType[grantTypeSet.size()]));
+        } else if (appConfiguration.getEnableClientGrantTypeUpdate() && requestObject.getGrantTypes().size() > 0) {
+            p_client.setGrantTypes(grantTypeSet.toArray(new GrantType[grantTypeSet.size()]));
+        }
+
+        List<String> contacts = requestObject.getContacts();
+        if (contacts != null && !contacts.isEmpty()) {
+            contacts = new ArrayList<>(new HashSet<>(contacts)); // Remove repeated elements
+            p_client.setContacts(contacts.toArray(new String[contacts.size()]));
+        }
+        if (StringUtils.isNotBlank(requestObject.getLogoUri())) {
+            p_client.setLogoUri(requestObject.getLogoUri());
+        }
+        if (StringUtils.isNotBlank(requestObject.getClientUri())) {
+            p_client.setClientUri(requestObject.getClientUri());
+        }
+        if (StringUtils.isNotBlank(requestObject.getPolicyUri())) {
+            p_client.setPolicyUri(requestObject.getPolicyUri());
+        }
+        if (StringUtils.isNotBlank(requestObject.getTosUri())) {
+            p_client.setTosUri(requestObject.getTosUri());
+        }
+        if (StringUtils.isNotBlank(requestObject.getJwksUri())) {
+            p_client.setJwksUri(requestObject.getJwksUri());
+        }
+        if (StringUtils.isNotBlank(requestObject.getJwks())) {
+            p_client.setJwks(requestObject.getJwks());
+        }
+        if (requestObject.getSubjectType() != null) {
+            p_client.setSubjectType(requestObject.getSubjectType().toString());
+        }
+        if (requestObject.getRptAsJwt() != null) {
+            p_client.setRptAsJwt(requestObject.getRptAsJwt());
+        }
+        if (requestObject.getAccessTokenAsJwt() != null) {
+            p_client.setAccessTokenAsJwt(requestObject.getAccessTokenAsJwt());
+        }
+        if (requestObject.getTlsClientAuthSubjectDn() != null) {
+            p_client.getAttributes().setTlsClientAuthSubjectDn(requestObject.getTlsClientAuthSubjectDn());
+        }
+        if (requestObject.getAllowSpontaneousScopes() != null) {
+            p_client.getAttributes().setAllowSpontaneousScopes(requestObject.getAllowSpontaneousScopes());
+        }
+        if (requestObject.getSpontaneousScopes() != null) {
+            p_client.getAttributes().setSpontaneousScopes(requestObject.getSpontaneousScopes());
+        }
+        if (requestObject.getRunIntrospectionScriptBeforeAccessTokenAsJwtCreationAndIncludeClaims() != null) {
+            p_client.getAttributes().setRunIntrospectionScriptBeforeAccessTokenAsJwtCreationAndIncludeClaims(requestObject.getRunIntrospectionScriptBeforeAccessTokenAsJwtCreationAndIncludeClaims());
+        }
+        if (requestObject.getKeepClientAuthorizationAfterExpiration() != null) {
+            p_client.getAttributes().setKeepClientAuthorizationAfterExpiration(requestObject.getKeepClientAuthorizationAfterExpiration());
+        }
+        if (requestObject.getAccessTokenSigningAlg() != null) {
+            p_client.setAccessTokenSigningAlg(requestObject.getAccessTokenSigningAlg().toString());
+        }
+        if (requestObject.getIdTokenSignedResponseAlg() != null) {
+            p_client.setIdTokenSignedResponseAlg(requestObject.getIdTokenSignedResponseAlg().toString());
+        }
+        if (requestObject.getIdTokenEncryptedResponseAlg() != null) {
+            p_client.setIdTokenEncryptedResponseAlg(requestObject.getIdTokenEncryptedResponseAlg().toString());
+        }
+        if (requestObject.getIdTokenEncryptedResponseEnc() != null) {
+            p_client.setIdTokenEncryptedResponseEnc(requestObject.getIdTokenEncryptedResponseEnc().toString());
+        }
+        if (requestObject.getUserInfoSignedResponseAlg() != null) {
+            p_client.setUserInfoSignedResponseAlg(requestObject.getUserInfoSignedResponseAlg().toString());
+        }
+        if (requestObject.getUserInfoEncryptedResponseAlg() != null) {
+            p_client.setUserInfoEncryptedResponseAlg(requestObject.getUserInfoEncryptedResponseAlg().toString());
+        }
+        if (requestObject.getUserInfoEncryptedResponseEnc() != null) {
+            p_client.setUserInfoEncryptedResponseEnc(requestObject.getUserInfoEncryptedResponseEnc().toString());
+        }
+        if (requestObject.getRequestObjectSigningAlg() != null) {
+            p_client.setRequestObjectSigningAlg(requestObject.getRequestObjectSigningAlg().toString());
+        }
+        if (requestObject.getRequestObjectEncryptionAlg() != null) {
+            p_client.setRequestObjectEncryptionAlg(requestObject.getRequestObjectEncryptionAlg().toString());
+        }
+        if (requestObject.getRequestObjectEncryptionEnc() != null) {
+            p_client.setRequestObjectEncryptionEnc(requestObject.getRequestObjectEncryptionEnc().toString());
+        }
+        if (requestObject.getTokenEndpointAuthMethod() != null) {
+            p_client.setTokenEndpointAuthMethod(requestObject.getTokenEndpointAuthMethod().toString());
+        } else { // If omitted, the default is client_secret_basic
+            p_client.setTokenEndpointAuthMethod(AuthenticationMethod.CLIENT_SECRET_BASIC.toString());
+        }
+        if (requestObject.getTokenEndpointAuthSigningAlg() != null) {
+            p_client.setTokenEndpointAuthSigningAlg(requestObject.getTokenEndpointAuthSigningAlg().toString());
+        }
+        if (requestObject.getDefaultMaxAge() != null) {
+            p_client.setDefaultMaxAge(requestObject.getDefaultMaxAge());
+        }
+        if (requestObject.getRequireAuthTime() != null) {
+            p_client.setRequireAuthTime(requestObject.getRequireAuthTime());
+        }
+        List<String> defaultAcrValues = requestObject.getDefaultAcrValues();
+        if (defaultAcrValues != null && !defaultAcrValues.isEmpty()) {
+            defaultAcrValues = new ArrayList<>(new HashSet<>(defaultAcrValues)); // Remove repeated elements
+            p_client.setDefaultAcrValues(defaultAcrValues.toArray(new String[defaultAcrValues.size()]));
+        }
+        if (StringUtils.isNotBlank(requestObject.getInitiateLoginUri())) {
+            p_client.setInitiateLoginUri(requestObject.getInitiateLoginUri());
+        }
+        List<String> postLogoutRedirectUris = requestObject.getPostLogoutRedirectUris();
+        if (postLogoutRedirectUris != null && !postLogoutRedirectUris.isEmpty()) {
+            postLogoutRedirectUris = new ArrayList<>(new HashSet<>(postLogoutRedirectUris)); // Remove repeated elements
+            p_client.setPostLogoutRedirectUris(postLogoutRedirectUris.toArray(new String[postLogoutRedirectUris.size()]));
+        }
+
+        if (requestObject.getFrontChannelLogoutUris() != null && !requestObject.getFrontChannelLogoutUris().isEmpty()) {
+            p_client.setFrontChannelLogoutUri(requestObject.getFrontChannelLogoutUris().toArray(new String[requestObject.getFrontChannelLogoutUris().size()]));
+        }
+        p_client.setFrontChannelLogoutSessionRequired(requestObject.getFrontChannelLogoutSessionRequired());
+
+        if (requestObject.getBackchannelLogoutUris() != null && !requestObject.getBackchannelLogoutUris().isEmpty()) {
+            p_client.getAttributes().setBackchannelLogoutUri(requestObject.getBackchannelLogoutUris());
+        }
+        p_client.getAttributes().setBackchannelLogoutSessionRequired(requestObject.getBackchannelLogoutSessionRequired());
+
+        List<String> requestUris = requestObject.getRequestUris();
+        if (requestUris != null && !requestUris.isEmpty()) {
+            requestUris = new ArrayList<>(new HashSet<>(requestUris)); // Remove repeated elements
+            p_client.setRequestUris(requestUris.toArray(new String[requestUris.size()]));
+        }
+
+        List<String> authorizedOrigins = requestObject.getAuthorizedOrigins();
+        if (authorizedOrigins != null && !authorizedOrigins.isEmpty()) {
+            authorizedOrigins = new ArrayList<>(new HashSet<>(authorizedOrigins)); // Remove repeated elements
+            p_client.setAuthorizedOrigins(authorizedOrigins.toArray(new String[authorizedOrigins.size()]));
+        }
+
+        List<String> scopes = requestObject.getScope();
+        if (grantTypeSet.contains(GrantType.RESOURCE_OWNER_PASSWORD_CREDENTIALS) && !appConfiguration.getDynamicRegistrationAllowedPasswordGrantScopes().isEmpty()) {
+            scopes = Lists.newArrayList(scopes);
+            scopes.retainAll(appConfiguration.getDynamicRegistrationAllowedPasswordGrantScopes());
+        }
+        List<String> scopesDn;
+        if (scopes != null && !scopes.isEmpty()
+                && appConfiguration.getDynamicRegistrationScopesParamEnabled() != null
+                && appConfiguration.getDynamicRegistrationScopesParamEnabled()) {
+            List<String> defaultScopes = scopeService.getDefaultScopesDn();
+            List<String> requestedScopes = scopeService.getScopesDn(scopes);
+            Set<String> allowedScopes = new HashSet<>();
+
+            for (String requestedScope : requestedScopes) {
+                if (defaultScopes.contains(requestedScope)) {
+                    allowedScopes.add(requestedScope);
+                }
+            }
+
+            scopesDn = new ArrayList<>(allowedScopes);
+            p_client.setScopes(scopesDn.toArray(new String[scopesDn.size()]));
+        } else if (BooleanUtils.isFalse(appConfiguration.getDynamicRegistrationDisableFallbackScopesAssigning())) {
+            scopesDn = scopeService.getDefaultScopesDn();
+            p_client.setScopes(scopesDn.toArray(new String[scopesDn.size()]));
+        }
+
+        List<String> claims = requestObject.getClaims();
+        if (claims != null && !claims.isEmpty()) {
+            List<String> claimsDn = attributeService.getAttributesDn(claims);
+            p_client.setClaims(claimsDn.toArray(new String[claimsDn.size()]));
+        }
+
+        if (requestObject.getJsonObject() != null) {
+            // Custom params
+            putCustomStuffIntoObject(p_client, requestObject.getJsonObject());
+        }
+
+        if (requestObject.getAccessTokenLifetime() != null) {
+            p_client.setAccessTokenLifetime(requestObject.getAccessTokenLifetime());
+        }
+
+        if (StringUtils.isNotBlank(requestObject.getSoftwareId())) {
+            p_client.setSoftwareId(requestObject.getSoftwareId());
+        }
+        if (StringUtils.isNotBlank(requestObject.getSoftwareVersion())) {
+            p_client.setSoftwareVersion(requestObject.getSoftwareVersion());
+        }
+        if (StringUtils.isNotBlank(requestObject.getSoftwareStatement())) {
+            p_client.setSoftwareStatement(requestObject.getSoftwareStatement());
+        }
+
+        cibaRegisterClientMetadataService.updateClient(p_client, requestObject.getBackchannelTokenDeliveryMode(),
+                requestObject.getBackchannelClientNotificationEndpoint(), requestObject.getBackchannelAuthenticationRequestSigningAlg(),
+                requestObject.getBackchannelUserCodeParameter());
+    }
+
+    @Override
+    public Response requestClientUpdate(String requestParams, String clientId, @HeaderParam("Authorization") String authorization, @Context HttpServletRequest httpRequest, @Context SecurityContext securityContext) {
+        OAuth2AuditLog oAuth2AuditLog = new OAuth2AuditLog(ServerUtil.getIpAddress(httpRequest), Action.CLIENT_UPDATE);
+        oAuth2AuditLog.setClientId(clientId);
+        try {
+            log.debug("Attempting to UPDATE client, client_id: {}, requestParams = {}, isSecure = {}",
+                    clientId, requestParams, securityContext.isSecure());
+            final String accessToken = tokenService.getToken(authorization);
+
+            if (StringUtils.isNotBlank(accessToken) && StringUtils.isNotBlank(clientId) && StringUtils.isNotBlank(requestParams)) {
+                JSONObject requestObject = new JSONObject(requestParams);
+                final JSONObject softwareStatement = validateSoftwareStatement(httpRequest, requestObject);
+                if (softwareStatement != null) {
+                    log.trace("Override request parameters by software_statement");
+                    for (String key : softwareStatement.keySet()) {
+                        requestObject.putOpt(key, softwareStatement.get(key));
+                    }
+                }
+
+                final RegisterRequest request = RegisterRequest.fromJson(requestObject, appConfiguration.getLegacyDynamicRegistrationScopeParam());
+                if (request != null) {
+                    boolean redirectUrisValidated = true;
+                    if (request.getRedirectUris() != null && !request.getRedirectUris().isEmpty()) {
+                        redirectUrisValidated = registerParamsValidator.validateRedirectUris(
+                                request.getGrantTypes(), request.getResponseTypes(),
+                                request.getApplicationType(), request.getSubjectType(),
+                                request.getRedirectUris(), request.getSectorIdentifierUri());
+                    }
+
+                    if (redirectUrisValidated) {
+                        if (!cibaRegisterParamsValidatorService.validateParams(
+                                request.getBackchannelTokenDeliveryMode(),
+                                request.getBackchannelClientNotificationEndpoint(),
+                                request.getBackchannelAuthenticationRequestSigningAlg(),
+                                request.getBackchannelUserCodeParameter(),
+                                request.getGrantTypes(),
+                                request.getSubjectType(),
+                                request.getSectorIdentifierUri(),
+                                request.getJwks(),
+                                request.getJwksUri()
+                        )) {
+                            return Response.status(Response.Status.BAD_REQUEST).
+                                    entity(errorResponseFactory.errorAsJson(RegisterErrorResponseType.INVALID_CLIENT_METADATA,
+                                            "Invalid Client Metadata registering to use CIBA.")).build();
+                        }
+
+                        if (request.getSubjectType() != null
+                                && !appConfiguration.getSubjectTypesSupported().contains(request.getSubjectType().toString())) {
+                            log.debug("Client UPDATE : parameter subject_type is invalid. Returns BAD_REQUEST response.");
+                            applicationAuditLogger.sendMessage(oAuth2AuditLog);
+                            return Response.status(Response.Status.BAD_REQUEST).
+                                    entity(errorResponseFactory.errorAsJson(RegisterErrorResponseType.INVALID_CLIENT_METADATA, "subject_type is invalid.")).build();
+                        }
+
+                        final Client client = clientService.getClient(clientId, accessToken);
+                        if (client != null) {
+                            updateClientFromRequestObject(client, request, true);
+
+                            boolean updateClient = true;
+                            if (externalDynamicClientRegistrationService.isEnabled()) {
+                                updateClient = externalDynamicClientRegistrationService.executeExternalUpdateClientMethods(request, client);
+                            }
+
+                            if (updateClient) {
+                                clientService.merge(client);
+
+                                oAuth2AuditLog.setScope(clientScopesToString(client));
+                                oAuth2AuditLog.setSuccess(true);
+                                applicationAuditLogger.sendMessage(oAuth2AuditLog);
+                                return Response.status(Response.Status.OK).entity(clientAsEntity(client)).build();
+                            } else {
+                                log.trace("The Access Token is not valid for the Client ID, returns invalid_token error.");
+                                applicationAuditLogger.sendMessage(oAuth2AuditLog);
+                                return Response.status(Response.Status.BAD_REQUEST).
+                                        type(MediaType.APPLICATION_JSON_TYPE).
+                                        entity(errorResponseFactory.errorAsJson(RegisterErrorResponseType.INVALID_TOKEN, "External registration script returned false.")).build();
+                            }
+                        } else {
+                            log.trace("The Access Token is not valid for the Client ID, returns invalid_token error.");
+                            applicationAuditLogger.sendMessage(oAuth2AuditLog);
+                            return Response.status(Response.Status.BAD_REQUEST).
+                                    type(MediaType.APPLICATION_JSON_TYPE).
+                                    entity(errorResponseFactory.errorAsJson(RegisterErrorResponseType.INVALID_TOKEN, "The Access Token is not valid for the Client ID.")).build();
+                        }
+                    }
+                }
+            }
+
+            log.debug("Client UPDATE : parameters are invalid. Returns BAD_REQUEST response.");
+            applicationAuditLogger.sendMessage(oAuth2AuditLog);
+            return Response.status(Response.Status.BAD_REQUEST).
+                    entity(errorResponseFactory.errorAsJson(RegisterErrorResponseType.INVALID_CLIENT_METADATA, "Unknown.")).build();
+
+        } catch (WebApplicationException e) {
+            log.error(e.getMessage(), e);
+            throw e;
+        } catch (Exception e) {
+            log.error(e.getMessage(), e);
+        }
+        applicationAuditLogger.sendMessage(oAuth2AuditLog);
+        return internalErrorResponse("Unknown.").build();
+    }
+
+    @Override
+    public Response requestClientRead(String clientId, String authorization, HttpServletRequest httpRequest,
+                                      SecurityContext securityContext) {
+        String accessToken = tokenService.getToken(authorization);
+        log.debug("Attempting to read client: clientId = {}, registrationAccessToken = {} isSecure = {}",
+                clientId, accessToken, securityContext.isSecure());
+        Response.ResponseBuilder builder = Response.ok();
+
+        OAuth2AuditLog oAuth2AuditLog = new OAuth2AuditLog(ServerUtil.getIpAddress(httpRequest), Action.CLIENT_READ);
+        oAuth2AuditLog.setClientId(clientId);
+        try {
+            if (appConfiguration.getDynamicRegistrationEnabled()) {
+                if (registerParamsValidator.validateParamsClientRead(clientId, accessToken)) {
+                    Client client = clientService.getClient(clientId, accessToken);
+                    if (client != null) {
+                        oAuth2AuditLog.setScope(clientScopesToString(client));
+                        oAuth2AuditLog.setSuccess(true);
+                        builder.entity(clientAsEntity(client));
+                    } else {
+                        log.trace("The Access Token is not valid for the Client ID, returns invalid_token error.");
+                        builder = Response.status(Response.Status.BAD_REQUEST.getStatusCode()).type(MediaType.APPLICATION_JSON_TYPE);
+                        builder.entity(errorResponseFactory.errorAsJson(RegisterErrorResponseType.INVALID_TOKEN, "The Access Token is not valid for the Client"));
+                    }
+                } else {
+                    log.trace("Client ID or Access Token is not valid.");
+                    throw errorResponseFactory.createWebApplicationException(Response.Status.BAD_REQUEST, RegisterErrorResponseType.INVALID_CLIENT_METADATA, "Client ID or Access Token is not valid.");
+                }
+            } else {
+                throw errorResponseFactory.createWebApplicationException(Response.Status.BAD_REQUEST, RegisterErrorResponseType.ACCESS_DENIED, "Dynamic registration is disabled.");
+            }
+        } catch (JSONException e) {
+            log.error(e.getMessage(), e);
+            throw errorResponseFactory.createWebApplicationException(Response.Status.INTERNAL_SERVER_ERROR, RegisterErrorResponseType.INVALID_CLIENT_METADATA, "Failed to parse json.");
+        } catch (StringEncrypter.EncryptionException e) {
+            log.error(e.getMessage(), e);
+            throw errorResponseFactory.createWebApplicationException(Response.Status.INTERNAL_SERVER_ERROR, RegisterErrorResponseType.INVALID_CLIENT_METADATA, "Encryption exception occurred.");
+        }
+
+        builder.cacheControl(ServerUtil.cacheControl(true, false));
+        builder.header("Pragma", "no-cache");
+        applicationAuditLogger.sendMessage(oAuth2AuditLog);
+        return builder.build();
+    }
+
+    private String clientAsEntity(Client p_client) throws JSONException, StringEncrypter.EncryptionException {
+        final JSONObject jsonObject = getJSONObject(p_client);
+        return jsonObject.toString(4).replace("\\/", "/");
+    }
+
+    private JSONObject getJSONObject(Client client) throws JSONException, StringEncrypter.EncryptionException {
+        JSONObject responseJsonObject = new JSONObject();
+
+        JsonApplier.getInstance().apply(client, responseJsonObject);
+        JsonApplier.getInstance().apply(client.getAttributes(), responseJsonObject);
+
+        Util.addToJSONObjectIfNotNull(responseJsonObject, RegisterResponseParam.CLIENT_ID.toString(), client.getClientId());
+        if (appConfiguration.getReturnClientSecretOnRead()) {
+            Util.addToJSONObjectIfNotNull(responseJsonObject, CLIENT_SECRET.toString(), clientService.decryptSecret(client.getClientSecret()));
+        }
+        Util.addToJSONObjectIfNotNull(responseJsonObject, RegisterResponseParam.REGISTRATION_ACCESS_TOKEN.toString(), client.getRegistrationAccessToken());
+        Util.addToJSONObjectIfNotNull(responseJsonObject, REGISTRATION_CLIENT_URI.toString(),
+                appConfiguration.getRegistrationEndpoint() + "?" +
+                        RegisterResponseParam.CLIENT_ID.toString() + "=" + client.getClientId());
+        responseJsonObject.put(CLIENT_ID_ISSUED_AT.toString(), client.getClientIdIssuedAt().getTime() / 1000);
+        responseJsonObject.put(CLIENT_SECRET_EXPIRES_AT.toString(), client.getClientSecretExpiresAt() != null && client.getClientSecretExpiresAt().getTime() > 0 ?
+                client.getClientSecretExpiresAt().getTime() / 1000 : 0);
+
+        Util.addToJSONObjectIfNotNull(responseJsonObject, REDIRECT_URIS.toString(), client.getRedirectUris());
+        Util.addToJSONObjectIfNotNull(responseJsonObject, CLAIMS_REDIRECT_URIS.toString(), client.getClaimRedirectUris());
+        Util.addToJSONObjectIfNotNull(responseJsonObject, RESPONSE_TYPES.toString(), ResponseType.toStringArray(client.getResponseTypes()));
+        Util.addToJSONObjectIfNotNull(responseJsonObject, GRANT_TYPES.toString(), GrantType.toStringArray(client.getGrantTypes()));
+        Util.addToJSONObjectIfNotNull(responseJsonObject, APPLICATION_TYPE.toString(), client.getApplicationType());
+        Util.addToJSONObjectIfNotNull(responseJsonObject, CONTACTS.toString(), client.getContacts());
+        Util.addToJSONObjectIfNotNull(responseJsonObject, CLIENT_NAME.toString(), client.getClientName());
+        Util.addToJSONObjectIfNotNull(responseJsonObject, LOGO_URI.toString(), client.getLogoUri());
+        Util.addToJSONObjectIfNotNull(responseJsonObject, CLIENT_URI.toString(), client.getClientUri());
+        Util.addToJSONObjectIfNotNull(responseJsonObject, POLICY_URI.toString(), client.getPolicyUri());
+        Util.addToJSONObjectIfNotNull(responseJsonObject, TOS_URI.toString(), client.getTosUri());
+        Util.addToJSONObjectIfNotNull(responseJsonObject, JWKS_URI.toString(), client.getJwksUri());
+        Util.addToJSONObjectIfNotNull(responseJsonObject, SECTOR_IDENTIFIER_URI.toString(), client.getSectorIdentifierUri());
+        Util.addToJSONObjectIfNotNull(responseJsonObject, SUBJECT_TYPE.toString(), client.getSubjectType());
+        Util.addToJSONObjectIfNotNull(responseJsonObject, ID_TOKEN_SIGNED_RESPONSE_ALG.toString(), client.getIdTokenSignedResponseAlg());
+        Util.addToJSONObjectIfNotNull(responseJsonObject, ID_TOKEN_ENCRYPTED_RESPONSE_ALG.toString(), client.getIdTokenEncryptedResponseAlg());
+        Util.addToJSONObjectIfNotNull(responseJsonObject, ID_TOKEN_ENCRYPTED_RESPONSE_ENC.toString(), client.getIdTokenEncryptedResponseEnc());
+        Util.addToJSONObjectIfNotNull(responseJsonObject, USERINFO_SIGNED_RESPONSE_ALG.toString(), client.getUserInfoSignedResponseAlg());
+        Util.addToJSONObjectIfNotNull(responseJsonObject, USERINFO_ENCRYPTED_RESPONSE_ALG.toString(), client.getUserInfoEncryptedResponseAlg());
+        Util.addToJSONObjectIfNotNull(responseJsonObject, USERINFO_ENCRYPTED_RESPONSE_ENC.toString(), client.getUserInfoEncryptedResponseEnc());
+        Util.addToJSONObjectIfNotNull(responseJsonObject, REQUEST_OBJECT_SIGNING_ALG.toString(), client.getRequestObjectSigningAlg());
+        Util.addToJSONObjectIfNotNull(responseJsonObject, REQUEST_OBJECT_ENCRYPTION_ALG.toString(), client.getRequestObjectEncryptionAlg());
+        Util.addToJSONObjectIfNotNull(responseJsonObject, REQUEST_OBJECT_ENCRYPTION_ENC.toString(), client.getRequestObjectEncryptionEnc());
+        Util.addToJSONObjectIfNotNull(responseJsonObject, TOKEN_ENDPOINT_AUTH_METHOD.toString(), client.getTokenEndpointAuthMethod());
+        Util.addToJSONObjectIfNotNull(responseJsonObject, TOKEN_ENDPOINT_AUTH_SIGNING_ALG.toString(), client.getTokenEndpointAuthSigningAlg());
+        Util.addToJSONObjectIfNotNull(responseJsonObject, DEFAULT_MAX_AGE.toString(), client.getDefaultMaxAge());
+        Util.addToJSONObjectIfNotNull(responseJsonObject, REQUIRE_AUTH_TIME.toString(), client.getRequireAuthTime());
+        Util.addToJSONObjectIfNotNull(responseJsonObject, DEFAULT_ACR_VALUES.toString(), client.getDefaultAcrValues());
+        Util.addToJSONObjectIfNotNull(responseJsonObject, INITIATE_LOGIN_URI.toString(), client.getInitiateLoginUri());
+        Util.addToJSONObjectIfNotNull(responseJsonObject, POST_LOGOUT_REDIRECT_URIS.toString(), client.getPostLogoutRedirectUris());
+        Util.addToJSONObjectIfNotNull(responseJsonObject, REQUEST_URIS.toString(), client.getRequestUris());
+        Util.addToJSONObjectIfNotNull(responseJsonObject, AUTHORIZED_ORIGINS.toString(), client.getAuthorizedOrigins());
+        Util.addToJSONObjectIfNotNull(responseJsonObject, RPT_AS_JWT.toString(), client.isRptAsJwt());
+        Util.addToJSONObjectIfNotNull(responseJsonObject, TLS_CLIENT_AUTH_SUBJECT_DN.toString(), client.getAttributes().getTlsClientAuthSubjectDn());
+        Util.addToJSONObjectIfNotNull(responseJsonObject, ALLOW_SPONTANEOUS_SCOPES.toString(), client.getAttributes().getAllowSpontaneousScopes());
+        Util.addToJSONObjectIfNotNull(responseJsonObject, SPONTANEOUS_SCOPES.toString(), client.getAttributes().getSpontaneousScopes());
+        Util.addToJSONObjectIfNotNull(responseJsonObject, RUN_INTROSPECTION_SCRIPT_BEFORE_ACCESS_TOKEN_CREATION_AS_JWT_AND_INCLUDE_CLAIMS.toString(), client.getAttributes().getRunIntrospectionScriptBeforeAccessTokenAsJwtCreationAndIncludeClaims());
+        Util.addToJSONObjectIfNotNull(responseJsonObject, KEEP_CLIENT_AUTHORIZATION_AFTER_EXPIRATION.toString(), client.getAttributes().getKeepClientAuthorizationAfterExpiration());
+        Util.addToJSONObjectIfNotNull(responseJsonObject, ACCESS_TOKEN_AS_JWT.toString(), client.isAccessTokenAsJwt());
+        Util.addToJSONObjectIfNotNull(responseJsonObject, ACCESS_TOKEN_SIGNING_ALG.toString(), client.getAccessTokenSigningAlg());
+        Util.addToJSONObjectIfNotNull(responseJsonObject, ACCESS_TOKEN_LIFETIME.toString(), client.getAccessTokenLifetime());
+        Util.addToJSONObjectIfNotNull(responseJsonObject, SOFTWARE_ID.toString(), client.getSoftwareId());
+        Util.addToJSONObjectIfNotNull(responseJsonObject, SOFTWARE_VERSION.toString(), client.getSoftwareVersion());
+        Util.addToJSONObjectIfNotNull(responseJsonObject, SOFTWARE_STATEMENT.toString(), client.getSoftwareStatement());
+
+        if (!Util.isNullOrEmpty(client.getJwks())) {
+            Util.addToJSONObjectIfNotNull(responseJsonObject, JWKS.toString(), new JSONObject(client.getJwks()));
+        }
+
+        // Logout params
+        Util.addToJSONObjectIfNotNull(responseJsonObject, FRONT_CHANNEL_LOGOUT_URI.toString(), client.getFrontChannelLogoutUri());
+        Util.addToJSONObjectIfNotNull(responseJsonObject, FRONT_CHANNEL_LOGOUT_SESSION_REQUIRED.toString(), client.getFrontChannelLogoutSessionRequired());
+        Util.addToJSONObjectIfNotNull(responseJsonObject, BACKCHANNEL_LOGOUT_URI.toString(), client.getAttributes().getBackchannelLogoutUri());
+        Util.addToJSONObjectIfNotNull(responseJsonObject, BACKCHANNEL_LOGOUT_SESSION_REQUIRED.toString(), client.getAttributes().getBackchannelLogoutSessionRequired());
+
+        // Custom Params
+        String[] scopeNames = null;
+        String[] scopeDns = client.getScopes();
+        if (scopeDns != null) {
+            scopeNames = new String[scopeDns.length];
+            for (int i = 0; i < scopeDns.length; i++) {
+                Scope scope = scopeService.getScopeByDn(scopeDns[i]);
+                scopeNames[i] = scope.getId();
+            }
+        }
+
+        if (appConfiguration.getLegacyDynamicRegistrationScopeParam()) {
+            Util.addToJSONObjectIfNotNull(responseJsonObject, SCOPES.toString(), scopeNames);
+        } else {
+            Util.addToJSONObjectIfNotNull(responseJsonObject, SCOPE.toString(), implode(scopeNames, " "));
+        }
+
+        String[] claimNames = null;
+        String[] claimDns = client.getClaims();
+        if (claimDns != null) {
+            claimNames = new String[claimDns.length];
+            for (int i = 0; i < claimDns.length; i++) {
+                GluuAttribute gluuAttribute = attributeService.getAttributeByDn(claimDns[i]);
+                claimNames[i] = gluuAttribute.getOxAuthClaimName();
+            }
+        }
+
+        putCustomAttributesInResponse(client, responseJsonObject);
+
+        if (claimNames != null && claimNames.length > 0) {
+            Util.addToJSONObjectIfNotNull(responseJsonObject, CLAIMS.toString(), implode(claimNames, " "));
+        }
+
+        cibaRegisterClientResponseService.updateResponse(responseJsonObject, client);
+
+        return responseJsonObject;
+    }
+
+    private void putCustomAttributesInResponse(Client client,  JSONObject responseJsonObject) {
+        final List<String> allowedCustomAttributeNames = appConfiguration.getDynamicRegistrationCustomAttributes();
+        final List<CustomAttribute> customAttributes = client.getCustomAttributes();
+        if (allowedCustomAttributeNames == null || allowedCustomAttributeNames.isEmpty() || customAttributes == null) {
+            return;
+        }
+
+        for (CustomAttribute attribute : customAttributes) {
+            if (!allowedCustomAttributeNames.contains(attribute.getName()))
+                continue;
+
+            if (attribute.isMultiValued()) {
+                Util.addToJSONObjectIfNotNull(responseJsonObject, attribute.getName(), attribute.getValues());
+            } else {
+                Util.addToJSONObjectIfNotNull(responseJsonObject, attribute.getName(), attribute.getValue());
+            }
+        }
+    }
+
+    /**
+     * Puts custom object class and custom attributes in client object for persistence.
+     *
+     * @param p_client        client object
+     * @param p_requestObject request object
+     */
+    private void putCustomStuffIntoObject(Client p_client, JSONObject p_requestObject) throws JSONException {
+        // custom object class
+        final String customOC = appConfiguration.getDynamicRegistrationCustomObjectClass();
+        if (StringUtils.isNotBlank(customOC)) {
+            p_client.setCustomObjectClasses(new String[]{customOC});
+        }
+
+        // custom attributes (custom attributes must be in custom object class)
+        final List<String> attrList = appConfiguration.getDynamicRegistrationCustomAttributes();
+        if (attrList != null && !attrList.isEmpty()) {
+            for (String attr : attrList) {
+                if (p_requestObject.has(attr)) {
+                    final JSONArray parameterValuesJsonArray = p_requestObject.optJSONArray(attr);
+                    final List<String> parameterValues = parameterValuesJsonArray != null ?
+                            toList(parameterValuesJsonArray) :
+                            Arrays.asList(p_requestObject.getString(attr));
+                    if (parameterValues != null && !parameterValues.isEmpty()) {
+                        try {
+                            boolean processed = processApplicationAttributes(p_client, attr, parameterValues);
+                            if (!processed) {
+                                p_client.getCustomAttributes().add(new CustomAttribute(attr, parameterValues));
+                            }
+                        } catch (Exception e) {
+                            log.debug(e.getMessage(), e);
+                        }
+                    }
+                }
+            }
+        }
+    }
+
+    private boolean processApplicationAttributes(Client p_client, String attr, final List<String> parameterValues) {
+        if (StringHelper.equalsIgnoreCase("oxAuthTrustedClient", attr)) {
+            boolean trustedClient = StringHelper.toBoolean(parameterValues.get(0), false);
+            p_client.setTrustedClient(trustedClient);
+
+            return true;
+        } else if (StringHelper.equalsIgnoreCase("oxIncludeClaimsInIdToken", attr)) {
+            boolean includeClaimsInIdToken = StringHelper.toBoolean(parameterValues.get(0), false);
+            p_client.setIncludeClaimsInIdToken(includeClaimsInIdToken);
+
+            return true;
+        }
+
+        return false;
+    }
+
+    private String clientScopesToString(Client client) {
+        String[] scopeDns = client.getScopes();
+        if (scopeDns != null) {
+            String[] scopeNames = new String[scopeDns.length];
+            for (int i = 0; i < scopeDns.length; i++) {
+                Scope scope = scopeService.getScopeByDn(scopeDns[i]);
+                scopeNames[i] = scope.getId();
+            }
+            return StringUtils.join(scopeNames, " ");
+        }
+        return null;
+    }
+
+    @Override
+    public Response delete(String clientId, String authorization, HttpServletRequest httpRequest, SecurityContext securityContext) {
+        OAuth2AuditLog auditLog = new OAuth2AuditLog(ServerUtil.getIpAddress(httpRequest), Action.CLIENT_DELETE);
+        auditLog.setClientId(clientId);
+
+        try {
+            String accessToken = tokenService.getToken(authorization);
+
+            log.debug("Attempting to delete client: clientId = {0}, registrationAccessToken = {1} isSecure = {2}",
+                    clientId, accessToken, securityContext.isSecure());
+
+            if (!appConfiguration.getDynamicRegistrationEnabled()) {
+                throw errorResponseFactory.createWebApplicationException(Response.Status.BAD_REQUEST, RegisterErrorResponseType.ACCESS_DENIED, "Dynamic registration is disabled.");
+            }
+
+            if (!registerParamsValidator.validateParamsClientRead(clientId, accessToken)) {
+                log.trace("Client parameters are invalid.");
+                throw errorResponseFactory.createWebApplicationException(Response.Status.BAD_REQUEST, RegisterErrorResponseType.INVALID_CLIENT_METADATA, "");
+            }
+
+            Client client = clientService.getClient(clientId, accessToken);
+            if (client == null) {
+                throw errorResponseFactory.createWebApplicationException(Response.Status.UNAUTHORIZED, RegisterErrorResponseType.INVALID_TOKEN, "");
+            }
+
+            clientService.remove(client);
+            auditLog.setSuccess(true);
+
+            return Response
+                    .status(Response.Status.NO_CONTENT)
+                    .cacheControl(ServerUtil.cacheControl(true, false))
+                    .header("Pragma", "no-cache").build();
+        } catch (WebApplicationException e) {
+            if (e.getResponse() != null) {
+                return e.getResponse();
+            }
+            throw e;
+        } catch (Exception e) {
+            log.error(e.getMessage(), e);
+            throw errorResponseFactory.createWebApplicationException(Response.Status.INTERNAL_SERVER_ERROR, RegisterErrorResponseType.INVALID_CLIENT_METADATA, "Failed to process request.");
+        } finally {
+            applicationAuditLogger.sendMessage(auditLog);
+        }
+    }
+
+}
\ No newline at end of file
diff --git a/oxAuth/Server/src/main/java/org/gluu/oxauth/revoke/RevokeRestWebService.java b/oxAuth/Server/src/main/java/org/gluu/oxauth/revoke/RevokeRestWebService.java
new file mode 100644
index 00000000..325bb5af
--- /dev/null
+++ b/oxAuth/Server/src/main/java/org/gluu/oxauth/revoke/RevokeRestWebService.java
@@ -0,0 +1,46 @@
+/*
+ * oxAuth is available under the MIT License (2008). See http://opensource.org/licenses/MIT for full text.
+ *
+ * Copyright (c) 2014, Gluu
+ */
+
+package org.gluu.oxauth.revoke;
+
+import javax.servlet.http.HttpServletRequest;
+import javax.servlet.http.HttpServletResponse;
+import javax.ws.rs.FormParam;
+import javax.ws.rs.POST;
+import javax.ws.rs.Path;
+import javax.ws.rs.Produces;
+import javax.ws.rs.core.Context;
+import javax.ws.rs.core.MediaType;
+import javax.ws.rs.core.Response;
+import javax.ws.rs.core.SecurityContext;
+
+/**
+ * Provides interface for token revocation REST web services.
+ * <p>
+ * The oxAuth authorization server's revocation policy acts as follows:
+ * The revocation of a particular token cause the revocation of related
+ * tokens and the underlying authorization grant.  If the particular
+ * token is a refresh token, then the authorization server will also
+ * invalidate all access tokens based on the same authorization grant.
+ * If the token passed to the request is an access token, the server will
+ * revoke the respective refresh token as well.
+ *
+ * @author Javier Rojas Blum
+ * @version January 16, 2019
+ */
+public interface RevokeRestWebService {
+
+    @POST
+    @Path("/revoke")
+    @Produces({MediaType.APPLICATION_JSON})
+    Response requestAccessToken(
+            @FormParam("token") String token,
+            @FormParam("token_type_hint") String tokenTypeHint,
+            @FormParam("client_id") String clientId,
+            @Context HttpServletRequest request,
+            @Context HttpServletResponse response,
+            @Context SecurityContext sec);
+}
diff --git a/oxAuth/Server/src/main/java/org/gluu/oxauth/revoke/RevokeRestWebServiceImpl.java b/oxAuth/Server/src/main/java/org/gluu/oxauth/revoke/RevokeRestWebServiceImpl.java
new file mode 100644
index 00000000..e929483d
--- /dev/null
+++ b/oxAuth/Server/src/main/java/org/gluu/oxauth/revoke/RevokeRestWebServiceImpl.java
@@ -0,0 +1,152 @@
+/*
+ * oxAuth is available under the MIT License (2008). See http://opensource.org/licenses/MIT for full text.
+ *
+ * Copyright (c) 2014, Gluu
+ */
+
+package org.gluu.oxauth.revoke;
+
+import org.apache.commons.lang.StringUtils;
+import org.gluu.oxauth.audit.ApplicationAuditLogger;
+import org.gluu.oxauth.model.audit.Action;
+import org.gluu.oxauth.model.audit.OAuth2AuditLog;
+import org.gluu.oxauth.model.common.AuthorizationGrant;
+import org.gluu.oxauth.model.common.AuthorizationGrantList;
+import org.gluu.oxauth.model.common.TokenTypeHint;
+import org.gluu.oxauth.model.error.ErrorResponseFactory;
+import org.gluu.oxauth.model.registration.Client;
+import org.gluu.oxauth.model.session.SessionClient;
+import org.gluu.oxauth.model.token.TokenRevocationErrorResponseType;
+import org.gluu.oxauth.security.Identity;
+import org.gluu.oxauth.service.ClientService;
+import org.gluu.oxauth.service.GrantService;
+import org.gluu.oxauth.service.external.ExternalRevokeTokenService;
+import org.gluu.oxauth.service.external.context.RevokeTokenContext;
+import org.gluu.oxauth.util.ServerUtil;
+import org.slf4j.Logger;
+
+import javax.inject.Inject;
+import javax.servlet.http.HttpServletRequest;
+import javax.servlet.http.HttpServletResponse;
+import javax.ws.rs.Path;
+import javax.ws.rs.WebApplicationException;
+import javax.ws.rs.core.MediaType;
+import javax.ws.rs.core.Response;
+import javax.ws.rs.core.SecurityContext;
+
+/**
+ * Provides interface for token revocation REST web services
+ *
+ * @author Javier Rojas Blum
+ * @author Yuriy Zabrovarnyy
+ */
+@Path("/")
+public class RevokeRestWebServiceImpl implements RevokeRestWebService {
+
+    @Inject
+    private Logger log;
+
+    @Inject
+    private ApplicationAuditLogger applicationAuditLogger;
+
+    @Inject
+    private Identity identity;
+
+    @Inject
+    private AuthorizationGrantList authorizationGrantList;
+
+    @Inject
+    private GrantService grantService;
+
+    @Inject
+    private ErrorResponseFactory errorResponseFactory;
+
+    @Inject
+    private ClientService clientService;
+
+    @Inject
+    private ExternalRevokeTokenService externalRevokeTokenService;
+
+    @Override
+    public Response requestAccessToken(String token, String tokenTypeHint, String clientId,
+                                       HttpServletRequest request, HttpServletResponse response, SecurityContext sec) {
+        log.debug("Attempting to revoke token: token = {}, tokenTypeHint = {}, isSecure = {}", token, tokenTypeHint, sec.isSecure());
+        OAuth2AuditLog oAuth2AuditLog = new OAuth2AuditLog(ServerUtil.getIpAddress(request), Action.TOKEN_REVOCATION);
+
+        validateToken(token);
+
+        Response.ResponseBuilder builder = Response.ok();
+        SessionClient sessionClient = identity.getSessionClient();
+
+        Client client = sessionClient != null ? sessionClient.getClient() : null;
+        if (client == null) {
+            client = clientService.getClient(clientId);
+            if (!clientService.isPublic(client)) {
+                log.trace("Client is not public and not authenticated. Skip revoking.");
+                return response(builder, oAuth2AuditLog);
+            }
+        }
+        if (client == null) {
+            log.trace("Client is not unknown. Skip revoking.");
+            return response(builder, oAuth2AuditLog);
+        }
+
+        oAuth2AuditLog.setClientId(client.getClientId());
+
+        TokenTypeHint tth = TokenTypeHint.getByValue(tokenTypeHint);
+        AuthorizationGrant authorizationGrant = null;
+
+        if (tth == TokenTypeHint.ACCESS_TOKEN) {
+            authorizationGrant = authorizationGrantList.getAuthorizationGrantByAccessToken(token);
+        } else if (tth == TokenTypeHint.REFRESH_TOKEN) {
+            authorizationGrant = authorizationGrantList.getAuthorizationGrantByRefreshToken(client.getClientId(), token);
+        } else {
+            // Since the hint about the type of the token submitted for revocation is optional. oxAuth will
+            // search it as Access Token then as Refresh Token.
+            authorizationGrant = authorizationGrantList.getAuthorizationGrantByAccessToken(token);
+            if (authorizationGrant == null) {
+                authorizationGrant = authorizationGrantList.getAuthorizationGrantByRefreshToken(client.getClientId(), token);
+            }
+        }
+
+        if (authorizationGrant == null) {
+            log.trace("Unable to find token.");
+            return response(builder, oAuth2AuditLog);
+        }
+        if (!authorizationGrant.getClientId().equals(client.getClientId())) {
+            log.trace("Token was issued with client {} but revoke is requested with client {}. Skip revoking.", authorizationGrant.getClientId(), client.getClientId());
+            return response(builder, oAuth2AuditLog);
+        }
+
+        RevokeTokenContext revokeTokenContext = new RevokeTokenContext(request, client, authorizationGrant, builder);
+        final boolean scriptResult = externalRevokeTokenService.revokeTokenMethods(revokeTokenContext);
+        if (!scriptResult) {
+            log.trace("Revoke is forbidden by 'Revoke Token' custom script (method returned false). Exit without revoking.");
+            return response(builder, oAuth2AuditLog);
+        }
+
+        grantService.removeAllByGrantId(authorizationGrant.getGrantId());
+        log.trace("Revoked successfully.");
+
+        return response(builder, oAuth2AuditLog);
+    }
+
+    private void validateToken(String token) {
+        if (StringUtils.isBlank(token)) {
+            throw new WebApplicationException(Response
+                    .status(Response.Status.BAD_REQUEST.getStatusCode())
+                    .type(MediaType.APPLICATION_JSON_TYPE)
+                    .entity(errorResponseFactory.errorAsJson(TokenRevocationErrorResponseType.INVALID_REQUEST, "Failed to validate token."))
+                    .build());
+        }
+    }
+
+    private Response response(Response.ResponseBuilder builder, OAuth2AuditLog oAuth2AuditLog) {
+        builder.cacheControl(ServerUtil.cacheControl(true, false));
+        builder.header("Pragma", "no-cache");
+
+        applicationAuditLogger.sendMessage(oAuth2AuditLog);
+
+        return builder.build();
+    }
+}
diff --git a/oxAuth/Server/src/main/java/org/gluu/oxauth/revoke/RevokeSessionRestWebService.java b/oxAuth/Server/src/main/java/org/gluu/oxauth/revoke/RevokeSessionRestWebService.java
new file mode 100644
index 00000000..fbc33a7b
--- /dev/null
+++ b/oxAuth/Server/src/main/java/org/gluu/oxauth/revoke/RevokeSessionRestWebService.java
@@ -0,0 +1,113 @@
+package org.gluu.oxauth.revoke;
+
+import org.apache.commons.lang.ArrayUtils;
+import org.gluu.oxauth.model.common.User;
+import org.gluu.oxauth.model.config.Constants;
+import org.gluu.oxauth.model.error.ErrorResponseFactory;
+import org.gluu.oxauth.model.session.EndSessionErrorResponseType;
+import org.gluu.oxauth.model.session.SessionClient;
+import org.gluu.oxauth.model.session.SessionId;
+import org.gluu.oxauth.model.session.SessionIdState;
+import org.gluu.oxauth.security.Identity;
+import org.gluu.oxauth.service.ScopeService;
+import org.gluu.oxauth.service.SessionIdService;
+import org.gluu.oxauth.service.UserService;
+import org.slf4j.Logger;
+
+import javax.inject.Inject;
+import javax.servlet.http.HttpServletRequest;
+import javax.servlet.http.HttpServletResponse;
+import javax.ws.rs.*;
+import javax.ws.rs.core.Context;
+import javax.ws.rs.core.MediaType;
+import javax.ws.rs.core.Response;
+import javax.ws.rs.core.SecurityContext;
+import java.util.Arrays;
+import java.util.List;
+import java.util.stream.Collectors;
+
+
+/**
+ * @author Yuriy Zabrovarnyy
+ */
+@Path("/")
+public class RevokeSessionRestWebService {
+
+    @Inject
+    private Logger log;
+
+    @Inject
+    private UserService userService;
+
+    @Inject
+    private SessionIdService sessionIdService;
+
+    @Inject
+    private ErrorResponseFactory errorResponseFactory;
+
+    @Inject
+    private Identity identity;
+
+    @Inject
+    private ScopeService scopeService;
+
+    @POST
+    @Path("/revoke_session")
+    @Produces({MediaType.APPLICATION_JSON})
+    public Response requestRevokeSession(
+            @FormParam("user_criterion_key") String userCriterionKey,
+            @FormParam("user_criterion_value") String userCriterionValue,
+            @Context HttpServletRequest request,
+            @Context HttpServletResponse response,
+            @Context SecurityContext sec) {
+        try {
+            log.debug("Attempting to revoke session: userCriterionKey = {}, userCriterionValue = {}, isSecure = {}",
+                    userCriterionKey, userCriterionValue, sec.isSecure());
+
+            validateAccess();
+
+            final User user = userService.getUserByAttribute(userCriterionKey, userCriterionValue);
+            if (user == null) {
+                log.trace("Unable to find user by {}={}", userCriterionKey, userCriterionValue);
+                return Response.ok().build(); // no error because we don't want to disclose internal AS info about users
+            }
+
+            List<SessionId> sessionIdList = sessionIdService.findByUser(user.getDn());
+            if (sessionIdList == null || sessionIdList.isEmpty()) {
+                log.trace("No sessions found for user uid: {}, dn: {}", user.getUserId(), user.getDn());
+                return Response.ok().build();
+            }
+
+            final List<SessionId> authenticatedSessions = sessionIdList.stream().filter(sessionId -> sessionId.getState() == SessionIdState.AUTHENTICATED).collect(Collectors.toList());
+            sessionIdService.remove(authenticatedSessions);
+            log.debug("Revoked {} user's sessions (user: {})", authenticatedSessions.size(), user.getUserId());
+
+            return Response.ok().build();
+        } catch (WebApplicationException e) {
+            throw e;
+        } catch (Exception e) {
+            log.error(e.getMessage(), e);
+            return Response.status(500).build();
+        }
+    }
+
+    private void validateAccess() {
+        SessionClient sessionClient = identity.getSessionClient();
+        if (sessionClient == null || sessionClient.getClient() == null || ArrayUtils.isEmpty(sessionClient.getClient().getScopes())) {
+            log.debug("Client failed to authenticate.");
+            throw new WebApplicationException(
+                    Response.status(Response.Status.UNAUTHORIZED.getStatusCode())
+                            .entity(errorResponseFactory.getErrorAsJson(EndSessionErrorResponseType.INVALID_REQUEST))
+                            .build());
+        }
+
+        List<String> scopesAllowedIds = scopeService.getScopeIdsByDns(Arrays.asList(sessionClient.getClient().getScopes()));
+
+        if (!scopesAllowedIds.contains(Constants.REVOKE_SESSION_SCOPE)) {
+            log.debug("Client does not have required revoke_session scope.");
+            throw new WebApplicationException(Response.status(Response.Status.UNAUTHORIZED.getStatusCode())
+                    .entity(errorResponseFactory.getErrorAsJson(EndSessionErrorResponseType.INVALID_REQUEST))
+                    .build());
+        }
+    }
+}
diff --git a/oxAuth/Server/src/main/java/org/gluu/oxauth/security/Identity.java b/oxAuth/Server/src/main/java/org/gluu/oxauth/security/Identity.java
new file mode 100644
index 00000000..fa4a4cb4
--- /dev/null
+++ b/oxAuth/Server/src/main/java/org/gluu/oxauth/security/Identity.java
@@ -0,0 +1,59 @@
+/*
+ * oxAuth is available under the MIT License (2008). See http://opensource.org/licenses/MIT for full text.
+ *
+ * Copyright (c) 2014, Gluu
+ */
+
+package org.gluu.oxauth.security;
+
+import javax.annotation.Priority;
+import javax.enterprise.context.RequestScoped;
+import javax.enterprise.inject.Alternative;
+import javax.inject.Named;
+import javax.interceptor.Interceptor;
+
+import org.gluu.oxauth.model.session.SessionClient;
+import org.gluu.oxauth.model.session.SessionId;
+import org.gluu.oxauth.model.common.User;
+
+/**
+ * @version August 9, 2017
+ */
+@Alternative
+@Priority(Interceptor.Priority.APPLICATION + 20)
+@RequestScoped
+@Named
+public class Identity extends org.gluu.model.security.Identity {
+
+    private static final long serialVersionUID = 2751659008033189259L;
+
+    private SessionId sessionId;
+
+    private User user;
+    private SessionClient sessionClient;
+
+    public SessionId getSessionId() {
+        return sessionId;
+    }
+
+    public void setSessionId(SessionId sessionId) {
+        this.sessionId = sessionId;
+    }
+
+    public User getUser() {
+        return user;
+    }
+
+    public void setUser(User user) {
+        this.user = user;
+    }
+
+    public void setSessionClient(SessionClient sessionClient) {
+        this.sessionClient = sessionClient;
+    }
+
+	public SessionClient getSessionClient() {
+		return sessionClient;
+	}
+
+}
diff --git a/oxAuth/Server/src/main/java/org/gluu/oxauth/service/AppInitializer.java b/oxAuth/Server/src/main/java/org/gluu/oxauth/service/AppInitializer.java
new file mode 100644
index 00000000..63c16f84
--- /dev/null
+++ b/oxAuth/Server/src/main/java/org/gluu/oxauth/service/AppInitializer.java
@@ -0,0 +1,715 @@
+/*
+ * oxAuth is available under the MIT License (2008). See http://opensource.org/licenses/MIT for full text.
+ *
+ * Copyright (c) 2014, Gluu
+ */
+
+package org.gluu.oxauth.service;
+
+import com.google.common.collect.Lists;
+import org.gluu.exception.ConfigurationException;
+import org.gluu.model.AuthenticationScriptUsageType;
+import org.gluu.model.SimpleProperty;
+import org.gluu.model.custom.script.CustomScriptType;
+import org.gluu.model.custom.script.conf.CustomScriptConfiguration;
+import org.gluu.model.ldap.GluuLdapConfiguration;
+import org.gluu.oxauth.model.auth.AuthenticationMode;
+import org.gluu.oxauth.model.config.ConfigurationFactory;
+import org.gluu.oxauth.model.configuration.AppConfiguration;
+import org.gluu.oxauth.service.cdi.event.AuthConfigurationEvent;
+import org.gluu.oxauth.service.cdi.event.ReloadAuthScript;
+import org.gluu.oxauth.service.ciba.CibaRequestsProcessorJob;
+import org.gluu.oxauth.service.common.ApplicationFactory;
+import org.gluu.oxauth.service.common.EncryptionService;
+import org.gluu.oxauth.service.expiration.ExpirationNotificatorTimer;
+import org.gluu.oxauth.service.external.ExternalAuthenticationService;
+import org.gluu.oxauth.service.logger.LoggerService;
+import org.gluu.oxauth.service.stat.StatService;
+import org.gluu.oxauth.service.stat.StatTimer;
+import org.gluu.oxauth.service.status.ldap.LdapStatusTimer;
+import org.gluu.persist.PersistenceEntryManager;
+import org.gluu.persist.PersistenceEntryManagerFactory;
+import org.gluu.persist.exception.BasePersistenceException;
+import org.gluu.persist.ldap.impl.LdapEntryManagerFactory;
+import org.gluu.persist.model.PersistenceConfiguration;
+import org.gluu.service.PythonService;
+import org.gluu.service.cdi.async.Asynchronous;
+import org.gluu.service.cdi.event.ApplicationInitialized;
+import org.gluu.service.cdi.event.ApplicationInitializedEvent;
+import org.gluu.service.cdi.event.LdapConfigurationReload;
+import org.gluu.service.cdi.event.Scheduled;
+import org.gluu.service.cdi.util.CdiUtil;
+import org.gluu.service.custom.lib.CustomLibrariesLoader;
+import org.gluu.service.custom.script.CustomScriptManager;
+import org.gluu.service.external.ExternalPersistenceExtensionService;
+import org.gluu.service.metric.inject.ReportMetric;
+import org.gluu.service.timer.QuartzSchedulerManager;
+import org.gluu.service.timer.event.TimerEvent;
+import org.gluu.service.timer.schedule.TimerSchedule;
+import org.gluu.util.OxConstants;
+import org.gluu.util.StringHelper;
+import org.gluu.orm.util.properties.FileConfiguration;
+import org.gluu.util.security.SecurityProviderUtility;
+import org.gluu.util.security.StringEncrypter;
+import org.gluu.util.security.StringEncrypter.EncryptionException;
+import org.jboss.weld.util.reflection.ParameterizedTypeImpl;
+import org.oxauth.persistence.model.configuration.GluuConfiguration;
+import org.oxauth.persistence.model.configuration.oxIDPAuthConf;
+import org.slf4j.Logger;
+
+import javax.annotation.PostConstruct;
+import javax.enterprise.context.ApplicationScoped;
+import javax.enterprise.context.BeforeDestroyed;
+import javax.enterprise.context.Initialized;
+import javax.enterprise.event.Event;
+import javax.enterprise.event.Observes;
+import javax.enterprise.inject.Instance;
+import javax.enterprise.inject.Produces;
+import javax.enterprise.inject.spi.BeanManager;
+import javax.inject.Inject;
+import javax.inject.Named;
+import javax.servlet.ServletContext;
+import java.lang.annotation.Annotation;
+import java.util.ArrayList;
+import java.util.List;
+import java.util.Properties;
+import java.util.concurrent.atomic.AtomicBoolean;
+
+/**
+ * @author Javier Rojas Blum
+ * @author Yuriy Movchan
+ * @author Yuriy Zabrovarnyy
+ * @version 0.1, 24/10/2011
+ */
+@ApplicationScoped
+@Named
+public class AppInitializer {
+
+	private final static int DEFAULT_INTERVAL = 30; // 30 seconds
+
+	@Inject
+	private Logger log;
+
+	@Inject
+	private BeanManager beanManager;
+
+	@Inject
+	private Event<String> event;
+
+	@Inject
+	private Event<ApplicationInitializedEvent> eventApplicationInitialized;
+
+	@Inject
+	private Event<TimerEvent> timerEvent;
+
+	@Inject
+	@Named(ApplicationFactory.PERSISTENCE_ENTRY_MANAGER_NAME)
+	private Instance<PersistenceEntryManager> persistenceEntryManagerInstance;
+
+	@Inject
+	@Named(ApplicationFactory.PERSISTENCE_METRIC_ENTRY_MANAGER_NAME)
+	@ReportMetric
+	private Instance<PersistenceEntryManager> persistenceMetricEntryManagerInstance;
+
+	@Inject
+	@Named(ApplicationFactory.PERSISTENCE_AUTH_ENTRY_MANAGER_NAME)
+	private Instance<List<PersistenceEntryManager>> persistenceAuthEntryManagerInstance;
+
+	@Inject
+	@Named(ApplicationFactory.PERSISTENCE_AUTH_CONFIG_NAME)
+	private Instance<List<GluuLdapConfiguration>> persistenceAuthConfigInstance;
+
+	@Inject
+	private ApplicationFactory applicationFactory;
+
+	@Inject
+	private Instance<AuthenticationMode> authenticationModeInstance;
+
+	@Inject
+	private Instance<EncryptionService> encryptionServiceInstance;
+
+	@Inject
+	private PythonService pythonService;
+
+	@Inject
+	private MetricService metricService;
+
+	@Inject
+	private CustomScriptManager customScriptManager;
+	
+	@Inject
+	private ExternalPersistenceExtensionService externalPersistenceExtensionService;
+
+	@Inject
+	private ConfigurationFactory configurationFactory;
+
+	@Inject
+	private CleanerTimer cleanerTimer;
+
+	@Inject
+	private KeyGeneratorTimer keyGeneratorTimer;
+
+    @Inject
+    private StatService statService;
+
+    @Inject
+    private StatTimer statTimer;
+
+	@Inject
+    private ExpirationNotificatorTimer expirationNotificatorTimer;
+
+	@Inject
+	private CustomLibrariesLoader customLibrariesLoader;
+
+	@Inject
+	private LdapStatusTimer ldapStatusTimer;
+
+	@Inject
+	private QuartzSchedulerManager quartzSchedulerManager;
+
+	@Inject
+	private LoggerService loggerService;
+	
+	@Inject
+	private ExternalAuthenticationService externalAuthenticationService;
+
+	@Inject
+	private AppConfiguration appConfiguration;
+
+	@Inject
+	private CibaRequestsProcessorJob cibaRequestsProcessorJob;
+
+	private AtomicBoolean isActive;
+	private long lastFinishedTime;
+	private AuthenticationMode authenticationMode;
+
+	private List<GluuLdapConfiguration> persistenceAuthConfigs;
+
+	@PostConstruct
+	public void createApplicationComponents() {
+		SecurityProviderUtility.installBCProvider();
+	}
+
+	public void applicationInitialized(@Observes @Initialized(ApplicationScoped.class) Object init) {
+		log.debug("Initializing application services");
+
+		configurationFactory.create();
+
+		PersistenceEntryManager localPersistenceEntryManager = persistenceEntryManagerInstance.get();
+		log.trace("Attempting to use {}: {}", ApplicationFactory.PERSISTENCE_ENTRY_MANAGER_NAME, localPersistenceEntryManager.getOperationService());
+
+		GluuConfiguration newConfiguration = loadConfiguration(localPersistenceEntryManager, "oxIDPAuthentication", "oxAuthenticationMode");
+
+		this.persistenceAuthConfigs = loadPersistenceAuthConfigs(newConfiguration);
+
+		// Initialize python interpreter
+		pythonService.initPythonInterpreter(configurationFactory.getBaseConfiguration()
+				.getString("pythonModulesDir", null));
+
+		// Initialize script manager
+		List<CustomScriptType> supportedCustomScriptTypes = Lists.newArrayList(CustomScriptType.values());
+
+		supportedCustomScriptTypes.remove(CustomScriptType.CACHE_REFRESH);
+		supportedCustomScriptTypes.remove(CustomScriptType.UPDATE_USER);
+		supportedCustomScriptTypes.remove(CustomScriptType.USER_REGISTRATION);
+		supportedCustomScriptTypes.remove(CustomScriptType.SCIM);
+		supportedCustomScriptTypes.remove(CustomScriptType.IDP);
+
+        statService.init();
+
+		// Start timer
+		initSchedulerService();
+
+		// Schedule timer tasks
+		metricService.initTimer();
+		configurationFactory.initTimer();
+		loggerService.initTimer();
+		ldapStatusTimer.initTimer();
+		cleanerTimer.initTimer();
+		customScriptManager.initTimer(supportedCustomScriptTypes);
+		keyGeneratorTimer.initTimer();
+        statTimer.initTimer();
+		expirationNotificatorTimer.initTimer();
+		initTimer();
+		initCibaRequestsProcessor();
+
+		// Set default authentication method after
+		setDefaultAuthenticationMethod(newConfiguration);
+
+		// Notify plugins about finish application initialization
+		eventApplicationInitialized.select(ApplicationInitialized.Literal.APPLICATION)
+				.fire(new ApplicationInitializedEvent());
+	}
+
+	protected void initSchedulerService() {
+		quartzSchedulerManager.start();
+
+		String disableScheduler = System.getProperties().getProperty("gluu.disable.scheduler");
+		if ((disableScheduler != null) && Boolean.valueOf(disableScheduler)) {
+			this.log.warn("Suspending Quartz Scheduler Service...");
+			quartzSchedulerManager.standby();
+			return;
+		}
+	}
+
+	@Produces
+	@ApplicationScoped
+	public StringEncrypter getStringEncrypter() {
+		String encodeSalt = configurationFactory.getCryptoConfigurationSalt();
+
+		if (StringHelper.isEmpty(encodeSalt)) {
+			throw new ConfigurationException("Encode salt isn't defined");
+		}
+
+		try {
+			StringEncrypter stringEncrypter = StringEncrypter.instance(encodeSalt);
+
+			return stringEncrypter;
+		} catch (EncryptionException ex) {
+			throw new ConfigurationException("Failed to create StringEncrypter instance");
+		}
+	}
+
+	public void initTimer() {
+		this.isActive = new AtomicBoolean(false);
+		this.setLastFinishedTime(System.currentTimeMillis());
+
+		timerEvent.fire(new TimerEvent(new TimerSchedule(60, DEFAULT_INTERVAL), new AuthConfigurationEvent(),
+				Scheduled.Literal.INSTANCE));
+	}
+
+	@Asynchronous
+	public void reloadConfigurationTimerEvent(@Observes @Scheduled AuthConfigurationEvent authConfigurationEvent) {
+		if (this.isActive.get()) {
+			return;
+		}
+
+		if (!this.isActive.compareAndSet(false, true)) {
+			return;
+		}
+
+		try {
+			reloadConfiguration();
+		} catch (Throwable ex) {
+			log.error("Exception happened while reloading application configuration", ex);
+		} finally {
+			this.isActive.set(false);
+			this.setLastFinishedTime(System.currentTimeMillis());
+		}
+	}
+
+	private void reloadConfiguration() {
+		PersistenceEntryManager localPersistenceEntryManager = persistenceEntryManagerInstance.get();
+		log.trace("Attempting to use {}: {}", ApplicationFactory.PERSISTENCE_ENTRY_MANAGER_NAME, localPersistenceEntryManager.getOperationService());
+
+		GluuConfiguration newConfiguration = loadConfiguration(localPersistenceEntryManager, "oxIDPAuthentication", "oxAuthenticationMode");
+
+		List<GluuLdapConfiguration> newPersistenceAuthConfigs = loadPersistenceAuthConfigs(newConfiguration);
+
+		if (!this.persistenceAuthConfigs.equals(newPersistenceAuthConfigs)) {
+			recreatePersistenceAuthEntryManagers(newPersistenceAuthConfigs);
+			this.persistenceAuthConfigs = newPersistenceAuthConfigs;
+
+			event.select(ReloadAuthScript.Literal.INSTANCE)
+					.fire(ExternalAuthenticationService.MODIFIED_INTERNAL_TYPES_EVENT_TYPE);
+		}
+
+		setDefaultAuthenticationMethod(newConfiguration);
+	}
+
+	/*
+	 * Utility method which can be used in custom scripts
+	 */
+	public PersistenceEntryManager createPersistenceAuthEntryManager(GluuLdapConfiguration persistenceAuthConfig) {
+		PersistenceEntryManagerFactory persistenceEntryManagerFactory = applicationFactory.getPersistenceEntryManagerFactory();
+		Properties persistenceConnectionProperties = prepareAuthConnectionProperties(persistenceAuthConfig, persistenceEntryManagerFactory.getPersistenceType());
+
+		PersistenceEntryManager persistenceAuthEntryManager = 
+				persistenceEntryManagerFactory.createEntryManager(persistenceConnectionProperties);
+		log.debug("Created custom authentication PersistenceEntryManager: {}", persistenceAuthEntryManager);
+
+		externalPersistenceExtensionService.executePersistenceExtensionAfterCreate(persistenceConnectionProperties, persistenceAuthEntryManager);
+
+		return persistenceAuthEntryManager;
+	}
+
+	protected Properties preparePersistanceProperties() {
+		PersistenceConfiguration persistenceConfiguration = this.configurationFactory.getPersistenceConfiguration();
+		FileConfiguration persistenceConfig = persistenceConfiguration.getConfiguration();
+		Properties connectionProperties = (Properties) persistenceConfig.getProperties();
+
+		EncryptionService securityService = encryptionServiceInstance.get();
+		Properties decryptedConnectionProperties = securityService.decryptAllProperties(connectionProperties);
+		return decryptedConnectionProperties;
+	}
+
+	protected Properties prepareCustomPersistanceProperties(String configId) {
+		Properties connectionProperties = preparePersistanceProperties();
+		if (StringHelper.isNotEmpty(configId)) {
+			// Replace properties names 'configId.xyz' to 'configId.xyz' in order to
+			// override default values
+			connectionProperties = (Properties) connectionProperties.clone();
+
+			String baseGroup = configId + ".";
+			for (Object key : connectionProperties.keySet()) {
+				String propertyName = (String) key;
+				if (propertyName.startsWith(baseGroup)) {
+					propertyName = propertyName.substring(baseGroup.length());
+
+					Object value = connectionProperties.get(key);
+					connectionProperties.put(propertyName, value);
+				}
+			}
+		}
+
+		return connectionProperties;
+	}
+
+	@Produces
+	@ApplicationScoped
+	@Named(ApplicationFactory.PERSISTENCE_ENTRY_MANAGER_NAME)
+	public PersistenceEntryManager createPersistenceEntryManager() {
+		Properties connectionProperties = preparePersistanceProperties();
+
+		PersistenceEntryManager persistenceEntryManager = applicationFactory.getPersistenceEntryManagerFactory()
+				.createEntryManager(connectionProperties);
+		log.info("Created {}: {} with operation service: {}",
+				new Object[] { ApplicationFactory.PERSISTENCE_ENTRY_MANAGER_NAME, persistenceEntryManager,
+						persistenceEntryManager.getOperationService() });
+
+		externalPersistenceExtensionService.executePersistenceExtensionAfterCreate(connectionProperties, persistenceEntryManager);
+
+		return persistenceEntryManager;
+	}
+
+	@Produces
+	@ApplicationScoped
+	@Named(ApplicationFactory.PERSISTENCE_METRIC_ENTRY_MANAGER_NAME)
+	@ReportMetric
+	public PersistenceEntryManager createMetricPersistenceEntryManager() {
+		Properties connectionProperties = prepareCustomPersistanceProperties(
+				ApplicationFactory.PERSISTENCE_METRIC_CONFIG_GROUP_NAME);
+
+		PersistenceEntryManager persistenceEntryManager = applicationFactory.getPersistenceEntryManagerFactory()
+				.createEntryManager(connectionProperties);
+		log.info("Created {}: {} with operation service: {}",
+				new Object[] { ApplicationFactory.PERSISTENCE_METRIC_ENTRY_MANAGER_NAME, persistenceEntryManager,
+						persistenceEntryManager.getOperationService() });
+
+		externalPersistenceExtensionService.executePersistenceExtensionAfterCreate(connectionProperties, persistenceEntryManager);
+
+		return persistenceEntryManager;
+	}
+
+	@Produces
+	@ApplicationScoped
+	@Named(ApplicationFactory.PERSISTENCE_AUTH_CONFIG_NAME)
+	public List<GluuLdapConfiguration> createPersistenceAuthConfigs() {
+		return persistenceAuthConfigs;
+	}
+
+	@Produces
+	@ApplicationScoped
+	@Named(ApplicationFactory.PERSISTENCE_AUTH_ENTRY_MANAGER_NAME)
+	public List<PersistenceEntryManager> createPersistenceAuthEntryManager() {
+		List<PersistenceEntryManager> persistenceAuthEntryManagers = new ArrayList<PersistenceEntryManager>();
+		if (this.persistenceAuthConfigs.size() == 0) {
+			return persistenceAuthEntryManagers;
+		}
+		
+		PersistenceEntryManagerFactory persistenceEntryManagerFactory = applicationFactory.getPersistenceEntryManagerFactory(LdapEntryManagerFactory.class);
+
+		List<Properties> persistenceAuthProperties = prepareAuthConnectionProperties(this.persistenceAuthConfigs, persistenceEntryManagerFactory.getPersistenceType());
+		log.trace("Attempting to create LDAP auth PersistenceEntryManager with properties: {}", persistenceAuthProperties);
+
+		for (int i = 0; i < persistenceAuthProperties.size(); i++) {
+			PersistenceEntryManager persistenceAuthEntryManager = 
+					persistenceEntryManagerFactory.createEntryManager(persistenceAuthProperties.get(i));
+			log.debug("Created {}#{}: {}", new Object[] { ApplicationFactory.PERSISTENCE_AUTH_ENTRY_MANAGER_NAME, i,
+					persistenceAuthEntryManager });
+
+			persistenceAuthEntryManagers.add(persistenceAuthEntryManager);
+
+			externalPersistenceExtensionService.executePersistenceExtensionAfterCreate(persistenceAuthProperties.get(i), persistenceAuthEntryManager);
+		}
+
+		return persistenceAuthEntryManagers;
+	}
+
+	public void recreatePersistenceEntryManager(@Observes @LdapConfigurationReload String event) {
+		recreatePersistanceEntryManagerImpl(persistenceEntryManagerInstance,
+				ApplicationFactory.PERSISTENCE_ENTRY_MANAGER_NAME);
+
+		recreatePersistanceEntryManagerImpl(persistenceEntryManagerInstance,
+				ApplicationFactory.PERSISTENCE_METRIC_ENTRY_MANAGER_NAME, ReportMetric.Literal.INSTANCE);
+	}
+
+	protected void recreatePersistanceEntryManagerImpl(Instance<PersistenceEntryManager> instance,
+			String persistenceEntryManagerName, Annotation... qualifiers) {
+		// Get existing application scoped instance
+		PersistenceEntryManager oldPersistenceEntryManager = CdiUtil.getContextBean(beanManager,
+				PersistenceEntryManager.class, persistenceEntryManagerName);
+
+		// Close existing connections
+		closePersistenceEntryManager(oldPersistenceEntryManager, persistenceEntryManagerName);
+
+		// Force to create new bean
+		PersistenceEntryManager persistenceEntryManager = instance.get();
+		instance.destroy(persistenceEntryManager);
+		log.info("Recreated instance {}: {} with operation service: {}", persistenceEntryManagerName,
+				persistenceEntryManager, persistenceEntryManager.getOperationService());
+	}
+
+	private void closePersistenceEntryManager(PersistenceEntryManager oldPersistenceEntryManager,
+			String persistenceEntryManagerName) {
+		// Close existing connections
+		if ((oldPersistenceEntryManager != null) && (oldPersistenceEntryManager.getOperationService() != null)) {
+			log.debug("Attempting to destroy {}:{} with operation service: {}", persistenceEntryManagerName,
+					oldPersistenceEntryManager, oldPersistenceEntryManager.getOperationService());
+			oldPersistenceEntryManager.destroy();
+			log.debug("Destroyed {}:{} with operation service: {}", persistenceEntryManagerName,
+					oldPersistenceEntryManager, oldPersistenceEntryManager.getOperationService());
+
+			externalPersistenceExtensionService.executePersistenceExtensionAfterDestroy(oldPersistenceEntryManager);
+		}
+	}
+
+	private void closePersistenceEntryManagers(List<PersistenceEntryManager> oldPersistenceEntryManagers) {
+		// Close existing connections
+		for (PersistenceEntryManager oldPersistenceEntryManager : oldPersistenceEntryManagers) {
+			log.debug("Attempting to destroy {}: {}", ApplicationFactory.PERSISTENCE_AUTH_ENTRY_MANAGER_NAME,
+					oldPersistenceEntryManager);
+			oldPersistenceEntryManager.destroy();
+			log.debug("Destroyed {}: {}", ApplicationFactory.PERSISTENCE_AUTH_ENTRY_MANAGER_NAME,
+					oldPersistenceEntryManager);
+
+			externalPersistenceExtensionService.executePersistenceExtensionAfterDestroy(oldPersistenceEntryManager);
+		}
+	}
+
+	public void recreatePersistenceAuthEntryManagers(List<GluuLdapConfiguration> newPersistenceAuthConfigs) {
+		// Get existing application scoped instance
+		List<PersistenceEntryManager> oldPersistenceAuthEntryManagers = CdiUtil.getContextBean(beanManager,
+				new ParameterizedTypeImpl(List.class, PersistenceEntryManager.class),
+				ApplicationFactory.PERSISTENCE_AUTH_ENTRY_MANAGER_NAME);
+
+		// Recreate components
+		this.persistenceAuthConfigs = newPersistenceAuthConfigs;
+
+		// Close existing connections
+		closePersistenceEntryManagers(oldPersistenceAuthEntryManagers);
+
+		// Destroy old Ldap auth entry managers
+		for (PersistenceEntryManager oldPersistenceAuthEntryManager : oldPersistenceAuthEntryManagers) {
+			log.debug("Attempting to destroy {}: {}", ApplicationFactory.PERSISTENCE_AUTH_ENTRY_MANAGER_NAME,
+					oldPersistenceAuthEntryManager);
+			oldPersistenceAuthEntryManager.destroy();
+			log.debug("Destroyed {}: {}", ApplicationFactory.PERSISTENCE_AUTH_ENTRY_MANAGER_NAME,
+					oldPersistenceAuthEntryManager);
+
+			externalPersistenceExtensionService.executePersistenceExtensionAfterDestroy(oldPersistenceAuthEntryManager);
+		}
+
+		// Force to create new Ldap auth entry managers bean
+		List<PersistenceEntryManager> persistenceAuthEntryManagers = persistenceAuthEntryManagerInstance.get();
+		persistenceAuthEntryManagerInstance.destroy(persistenceAuthEntryManagers);
+		log.info("Recreated instance {}: {}", ApplicationFactory.PERSISTENCE_AUTH_ENTRY_MANAGER_NAME,
+				persistenceAuthEntryManagers);
+
+		// Force to create new auth configuration bean
+		List<GluuLdapConfiguration> oldPersistenceAuthConfigs = persistenceAuthConfigInstance.get();
+		persistenceAuthConfigInstance.destroy(oldPersistenceAuthConfigs);
+	}
+
+	private List<Properties> prepareAuthConnectionProperties(List<GluuLdapConfiguration> persistenceAuthConfigs, String persistenceType) {
+		List<Properties> result = new ArrayList<Properties>();
+
+		// Prepare connection providers per LDAP authentication configuration
+		for (GluuLdapConfiguration persistenceAuthConfig : persistenceAuthConfigs) {
+			Properties decrypytedConnectionProperties = prepareAuthConnectionProperties(persistenceAuthConfig, persistenceType);
+
+			result.add(decrypytedConnectionProperties);
+		}
+
+		return result;
+	}
+
+	private Properties prepareAuthConnectionProperties(GluuLdapConfiguration persistenceAuthConfig, String persistenceType) {
+		String prefix = persistenceType + "#";
+		FileConfiguration configuration = configurationFactory.getPersistenceConfiguration().getConfiguration();
+
+		Properties properties = (Properties) configuration.getProperties().clone();
+		if (persistenceAuthConfig != null) {
+			properties.setProperty(prefix + "servers", buildServersString(persistenceAuthConfig.getServers()));
+
+			String bindDn = persistenceAuthConfig.getBindDN();
+			if (StringHelper.isNotEmpty(bindDn)) {
+				properties.setProperty(prefix + "bindDN", bindDn);
+				properties.setProperty(prefix + "bindPassword", persistenceAuthConfig.getBindPassword());
+			}
+			properties.setProperty(prefix + "useSSL", Boolean.toString(persistenceAuthConfig.isUseSSL()));
+			properties.setProperty(prefix + "maxconnections", Integer.toString(persistenceAuthConfig.getMaxConnections()));
+			
+			// Remove internal DB trustStoreFile property
+			properties.remove(prefix + "ssl.trustStoreFile");			
+			properties.remove(prefix + "ssl.trustStorePin");			
+			properties.remove(prefix + "ssl.trustStoreFormat");			
+		}
+
+		EncryptionService securityService = encryptionServiceInstance.get();
+		Properties decrypytedProperties = securityService.decryptAllProperties(properties);
+
+		return decrypytedProperties;
+	}
+
+	private String buildServersString(List<?> servers) {
+		StringBuilder sb = new StringBuilder();
+
+		if (servers == null) {
+			return sb.toString();
+		}
+
+		boolean first = true;
+		for (Object server : servers) {
+			if (first) {
+				first = false;
+			} else {
+				sb.append(",");
+			}
+
+			if (server instanceof SimpleProperty) {
+				sb.append(((SimpleProperty) server).getValue());
+			} else {
+				sb.append(server);
+			}
+		}
+
+		return sb.toString();
+	}
+
+	private void setDefaultAuthenticationMethod(GluuConfiguration configuration) {
+		String currentAuthMethod = null;
+		if (this.authenticationMode != null) {
+			currentAuthMethod = this.authenticationMode.getName();
+		}
+
+		String actualAuthMethod = getActualDefaultAuthenticationMethod(configuration);
+
+		if (!StringHelper.equals(currentAuthMethod, actualAuthMethod)) {
+			authenticationMode = null;
+			if (actualAuthMethod != null) {
+				this.authenticationMode = new AuthenticationMode(actualAuthMethod);
+			}
+
+			authenticationModeInstance.destroy(authenticationModeInstance.get());
+		}
+	}
+
+	private String getActualDefaultAuthenticationMethod(GluuConfiguration configuration) {
+		if ((configuration != null) && (configuration.getAuthenticationMode() != null)) {
+			return configuration.getAuthenticationMode();
+		}
+		
+		CustomScriptConfiguration defaultExternalAuthenticator = externalAuthenticationService.getDefaultExternalAuthenticator(AuthenticationScriptUsageType.INTERACTIVE);
+		if (defaultExternalAuthenticator != null) {
+			return defaultExternalAuthenticator.getName();
+		}
+
+		return OxConstants.SCRIPT_TYPE_INTERNAL_RESERVED_NAME;
+	}
+
+	@Produces
+	@ApplicationScoped
+	public AuthenticationMode getDefaultAuthenticationMode() {
+		return authenticationMode;
+	}
+
+	private GluuConfiguration loadConfiguration(PersistenceEntryManager localPersistenceEntryManager,
+			String... persistenceReturnAttributes) {
+		String configurationDn = configurationFactory.getBaseDn().getConfiguration();
+		if (StringHelper.isEmpty(configurationDn)) {
+			return null;
+		}
+
+		GluuConfiguration configuration = null;
+		try {
+			configuration = localPersistenceEntryManager.find(configurationDn, GluuConfiguration.class,
+					persistenceReturnAttributes);
+		} catch (BasePersistenceException ex) {
+			log.error("Failed to load global configuration entry from Ldap", ex);
+			return null;
+		}
+
+		return configuration;
+	}
+
+	private List<GluuLdapConfiguration> loadPersistenceAuthConfigs(GluuConfiguration configuration) {
+		List<GluuLdapConfiguration> persistenceAuthConfigs = new ArrayList<GluuLdapConfiguration>();
+
+		List<oxIDPAuthConf> persistenceIdpAuthConfigs = loadLdapIdpAuthConfigs(configuration);
+		if (persistenceIdpAuthConfigs == null) {
+			return persistenceAuthConfigs;
+		}
+
+		for (oxIDPAuthConf persistenceIdpAuthConfig : persistenceIdpAuthConfigs) {
+			GluuLdapConfiguration persistenceAuthConfig = persistenceIdpAuthConfig.getConfig();
+			if ((persistenceAuthConfig != null) && persistenceAuthConfig.isEnabled()) {
+				persistenceAuthConfigs.add(persistenceAuthConfig);
+			}
+		}
+
+		return persistenceAuthConfigs;
+	}
+
+	private List<oxIDPAuthConf> loadLdapIdpAuthConfigs(GluuConfiguration configuration) {
+		if ((configuration == null) || (configuration.getOxIDPAuthentication() == null)) {
+			return null;
+		}
+
+		List<oxIDPAuthConf> configurations = new ArrayList<oxIDPAuthConf>();
+		for (oxIDPAuthConf authConf : configuration.getOxIDPAuthentication()) {
+			if (authConf.getType().equalsIgnoreCase("ldap") || authConf.getType().equalsIgnoreCase("auth")) {
+				configurations.add(authConf);
+			}
+		}
+
+		return configurations;
+	}
+
+	public void destroy(@Observes @BeforeDestroyed(ApplicationScoped.class) ServletContext init) {
+		log.info("Stopping services and closing DB connections at server shutdown...");
+		log.debug("Checking who intiated destory", new Throwable());
+
+		metricService.close();
+
+		PersistenceEntryManager persistenceEntryManager = persistenceEntryManagerInstance.get();
+		closePersistenceEntryManager(persistenceEntryManager, ApplicationFactory.PERSISTENCE_ENTRY_MANAGER_NAME);
+
+		List<PersistenceEntryManager> persistenceAuthEntryManagers = persistenceAuthEntryManagerInstance.get();
+		closePersistenceEntryManagers(persistenceAuthEntryManagers);
+	}
+
+	public long getLastFinishedTime() {
+		return lastFinishedTime;
+	}
+
+	public void setLastFinishedTime(long lastFinishedTime) {
+		this.lastFinishedTime = lastFinishedTime;
+	}
+
+	/**
+	 * Method to initialize CIBA requests processor job according to a json property which
+	 * should be more than 0 seconds of interval
+	 */
+	private void initCibaRequestsProcessor() {
+		if (appConfiguration.getCibaEnabled() && appConfiguration.getBackchannelRequestsProcessorJobIntervalSec() > 0) {
+			if (cibaRequestsProcessorJob != null) {
+				cibaRequestsProcessorJob.initTimer();
+			}
+		} else {
+			log.warn("Ciba requests processor hasn't been started because the interval is not valid to run or this is disabled, value: {}",
+					appConfiguration.getBackchannelRequestsProcessorJobIntervalSec());
+		}
+	}
+
+}
diff --git a/oxAuth/Server/src/main/java/org/gluu/oxauth/service/AttributeService.java b/oxAuth/Server/src/main/java/org/gluu/oxauth/service/AttributeService.java
new file mode 100644
index 00000000..862cc94c
--- /dev/null
+++ b/oxAuth/Server/src/main/java/org/gluu/oxauth/service/AttributeService.java
@@ -0,0 +1,114 @@
+/*
+ * oxAuth is available under the MIT License (2008). See http://opensource.org/licenses/MIT for full text.
+ *
+ * Copyright (c) 2014, Gluu
+ */
+
+package org.gluu.oxauth.service;
+
+import java.util.ArrayList;
+import java.util.List;
+
+import javax.enterprise.context.ApplicationScoped;
+import javax.inject.Inject;
+
+import org.gluu.model.GluuAttribute;
+import org.gluu.oxauth.model.config.StaticConfiguration;
+import org.gluu.oxauth.model.configuration.AppConfiguration;
+import org.gluu.service.BaseCacheService;
+import org.gluu.util.StringHelper;
+import org.slf4j.Logger;
+
+/**
+ * @author Javier Rojas Blum
+ * @version May 30, 2018
+ */
+@ApplicationScoped
+public class AttributeService extends org.gluu.service.AttributeService {
+
+    /**
+	 * 
+	 */
+	private static final long serialVersionUID = -990409035168814270L;
+
+    @Inject
+    private Logger log;
+
+    @Inject
+    private StaticConfiguration staticConfiguration;
+
+    @Inject
+	private AppConfiguration appConfiguration;
+
+    /**
+     * returns GluuAttribute by Dn
+     *
+     * @return GluuAttribute
+     */
+    public GluuAttribute getAttributeByDn(String dn) {
+    	BaseCacheService usedCacheService = getCacheService();
+
+    	return usedCacheService.getWithPut(dn, () -> persistenceEntryManager.find(GluuAttribute.class, dn), 60);
+    }
+
+    public GluuAttribute getByLdapName(String name) {
+        List<GluuAttribute> gluuAttributes = getAttributesByAttribute("gluuAttributeName", name, staticConfiguration.getBaseDn().getAttributes());
+        if (gluuAttributes.size() > 0) {
+            for (GluuAttribute gluuAttribute : gluuAttributes) {
+                if (gluuAttribute.getName() != null && gluuAttribute.getName().equals(name)) {
+                    return gluuAttribute;
+                }
+            }
+        }
+
+        return null;
+    }
+
+    public GluuAttribute getByClaimName(String name) {
+        List<GluuAttribute> gluuAttributes = getAttributesByAttribute("oxAuthClaimName", name, staticConfiguration.getBaseDn().getAttributes());
+        if (gluuAttributes.size() > 0) {
+            for (GluuAttribute gluuAttribute : gluuAttributes) {
+                if (gluuAttribute.getOxAuthClaimName() != null && gluuAttribute.getOxAuthClaimName().equals(name)) {
+                    return gluuAttribute;
+                }
+            }
+        }
+
+        return null;
+    }
+
+    public List<GluuAttribute> getAllAttributes() {
+        return getAllAttributes(staticConfiguration.getBaseDn().getAttributes());
+    }
+
+    public String getDnForAttribute(String inum) {
+        String attributesDn = staticConfiguration.getBaseDn().getAttributes();
+        if (StringHelper.isEmpty(inum)) {
+            return attributesDn;
+        }
+
+        return String.format("inum=%s,%s", inum, attributesDn);
+    }
+
+    public List<String> getAttributesDn(List<String> claimNames) {
+        List<String> claims = new ArrayList<String>();
+
+        for (String claimName : claimNames) {
+            GluuAttribute gluuAttribute = getByClaimName(claimName);
+            if (gluuAttribute != null) {
+                claims.add(gluuAttribute.getDn());
+            }
+        }
+
+        return claims;
+    }
+
+    protected BaseCacheService getCacheService() {
+    	if (appConfiguration.getUseLocalCache()) {
+    		return localCacheService;
+    	}
+    	
+    	return cacheService;
+    }
+
+}
\ No newline at end of file
diff --git a/oxAuth/Server/src/main/java/org/gluu/oxauth/service/AuthenticationFilterService.java b/oxAuth/Server/src/main/java/org/gluu/oxauth/service/AuthenticationFilterService.java
new file mode 100644
index 00000000..bb845ff6
--- /dev/null
+++ b/oxAuth/Server/src/main/java/org/gluu/oxauth/service/AuthenticationFilterService.java
@@ -0,0 +1,76 @@
+/*
+ * oxAuth is available under the MIT License (2008). See http://opensource.org/licenses/MIT for full text.
+ *
+ * Copyright (c) 2014, Gluu
+ */
+
+package org.gluu.oxauth.service;
+
+import java.util.Map;
+
+import javax.annotation.PostConstruct;
+import javax.enterprise.context.ApplicationScoped;
+import javax.inject.Inject;
+
+import org.apache.commons.lang.StringUtils;
+import org.gluu.oxauth.model.common.User;
+import org.gluu.oxauth.model.configuration.AppConfiguration;
+import org.gluu.persist.PersistenceEntryManager;
+import org.gluu.persist.exception.AuthenticationException;
+import org.gluu.persist.exception.operation.SearchException;
+import org.gluu.util.StringHelper;
+
+/**
+ * Provides operations with authentication filters
+ *
+ * @author Yuriy Movchan Date: 07.20.2012
+ */
+@ApplicationScoped
+public class AuthenticationFilterService extends BaseAuthFilterService {
+
+    @Inject
+    private PersistenceEntryManager ldapEntryManager;
+
+    @Inject
+    private AppConfiguration appConfiguration;
+
+    @PostConstruct
+    public void init() {
+        super.init(appConfiguration.getAuthenticationFilters(), Boolean.TRUE.equals(appConfiguration.getAuthenticationFiltersEnabled()), true);
+    }
+
+    public String processAuthenticationFilter(AuthenticationFilterWithParameters authenticationFilterWithParameters, Map<?, ?> attributeValues) throws SearchException {
+        if (attributeValues == null) {
+            return null;
+        }
+        final Map<String, String> normalizedAttributeValues = normalizeAttributeMap(attributeValues);
+        final String resultDn = loadEntryDN(ldapEntryManager, User.class, authenticationFilterWithParameters, normalizedAttributeValues);
+        if (StringUtils.isBlank(resultDn)) {
+            return null;
+        }
+
+        if (!Boolean.TRUE.equals(authenticationFilterWithParameters.getAuthenticationFilter().getBind())) {
+            return resultDn;
+        }
+
+        String bindPasswordAttribute = authenticationFilterWithParameters.getAuthenticationFilter().getBindPasswordAttribute();
+        if (StringHelper.isEmpty(bindPasswordAttribute)) {
+            log.error("Skipping authentication filter:\n '{}'\n. It should contains not empty bind-password-attribute attribute. ", authenticationFilterWithParameters.getAuthenticationFilter());
+            return null;
+        }
+
+        bindPasswordAttribute = StringHelper.toLowerCase(bindPasswordAttribute);
+
+        try {
+            boolean authenticated = ldapEntryManager.authenticate(resultDn, User.class, normalizedAttributeValues.get(bindPasswordAttribute));
+            if (authenticated) {
+                return resultDn;
+            }
+        } catch (AuthenticationException ex) {
+            log.error("Invalid password", ex);
+        }
+
+        return null;
+    }
+
+}
\ No newline at end of file
diff --git a/oxAuth/Server/src/main/java/org/gluu/oxauth/service/AuthenticationProtectionService.java b/oxAuth/Server/src/main/java/org/gluu/oxauth/service/AuthenticationProtectionService.java
new file mode 100644
index 00000000..1f4fe32d
--- /dev/null
+++ b/oxAuth/Server/src/main/java/org/gluu/oxauth/service/AuthenticationProtectionService.java
@@ -0,0 +1,64 @@
+package org.gluu.oxauth.service;
+
+import javax.enterprise.context.ApplicationScoped;
+import javax.enterprise.event.Observes;
+import javax.inject.Inject;
+import javax.inject.Named;
+
+import org.gluu.oxauth.model.configuration.AppConfiguration;
+import org.gluu.oxauth.model.configuration.AuthenticationProtectionConfiguration;
+import org.gluu.service.cdi.event.ConfigurationUpdate;
+
+/**
+ * Brute Force authentication protection service implementation
+ *
+ * @author Yuriy Movchan Date: 08/21/2018
+ */
+@ApplicationScoped
+@Named
+public class AuthenticationProtectionService extends org.gluu.service.security.protect.AuthenticationProtectionService {
+
+    private static final int DEFAULT_ATTEMPT_EXPIRATION = 15; // 15 seconds
+
+    private static final int DEFAULT_MAXIMUM_ALLOWED_ATTEMPTS_WITHOUT_DELAY = 4; // 4 attempts
+
+    private static final int DEFAULT_DELAY_TIME = 2; // 5 seconds
+
+    private static final String DEFAULT_KEY_PREFIX = "user";
+    
+    @Inject
+    private AppConfiguration appConfiguration;
+
+    @Override
+    protected void init() {
+        updateConfiguration(appConfiguration);
+    }
+
+    public void updateConfiguration(@Observes @ConfigurationUpdate AppConfiguration appConfiguration) {
+        AuthenticationProtectionConfiguration authenticationProtectionConfiguration = appConfiguration.getAuthenticationProtectionConfiguration();
+        if (authenticationProtectionConfiguration == null) {
+            this.attemptExpiration = DEFAULT_ATTEMPT_EXPIRATION;
+            this.maximumAllowedAttemptsWithoutDelay = DEFAULT_MAXIMUM_ALLOWED_ATTEMPTS_WITHOUT_DELAY;
+
+            this.delayTime = DEFAULT_DELAY_TIME;
+        } else {
+            this.attemptExpiration = authenticationProtectionConfiguration.getAttemptExpiration();
+            this.maximumAllowedAttemptsWithoutDelay = authenticationProtectionConfiguration.getMaximumAllowedAttemptsWithoutDelay();
+
+            this.delayTime = authenticationProtectionConfiguration.getDelayTime();
+        }
+    }
+
+    @Override
+    protected String getKeyPrefix() {
+        return DEFAULT_KEY_PREFIX;
+    }
+
+    public boolean isEnabled() {
+        AuthenticationProtectionConfiguration authenticationProtectionConfiguration = appConfiguration.getAuthenticationProtectionConfiguration();
+
+        return (authenticationProtectionConfiguration != null) && (authenticationProtectionConfiguration.getBruteForceProtectionEnabled());
+        
+    }
+
+}
diff --git a/oxAuth/Server/src/main/java/org/gluu/oxauth/service/AuthenticationService.java b/oxAuth/Server/src/main/java/org/gluu/oxauth/service/AuthenticationService.java
new file mode 100644
index 00000000..ae89a8e3
--- /dev/null
+++ b/oxAuth/Server/src/main/java/org/gluu/oxauth/service/AuthenticationService.java
@@ -0,0 +1,868 @@
+/*
+ * oxAuth is available under the MIT License (2008). See http://opensource.org/licenses/MIT for full text.
+ *
+ * Copyright (c) 2014, Gluu
+ */
+
+package org.gluu.oxauth.service;
+
+import static org.gluu.oxauth.model.authorize.AuthorizeResponseParam.SESSION_ID;
+import static org.gluu.oxauth.model.authorize.AuthorizeResponseParam.SID;
+
+import java.io.UnsupportedEncodingException;
+import java.security.Principal;
+import java.util.ArrayList;
+import java.util.Arrays;
+import java.util.Date;
+import java.util.GregorianCalendar;
+import java.util.HashMap;
+import java.util.HashSet;
+import java.util.List;
+import java.util.Map;
+import java.util.Set;
+import java.util.TimeZone;
+
+import javax.enterprise.context.RequestScoped;
+import javax.faces.context.ExternalContext;
+import javax.inject.Inject;
+import javax.inject.Named;
+import javax.servlet.http.HttpServletRequest;
+import javax.servlet.http.HttpServletResponse;
+
+import org.apache.commons.lang.StringUtils;
+import org.gluu.jsf2.service.FacesService;
+import org.gluu.model.GluuStatus;
+import org.gluu.model.SimpleProperty;
+import org.gluu.model.ldap.GluuLdapConfiguration;
+import org.gluu.model.metric.MetricType;
+import org.gluu.model.security.Credentials;
+import org.gluu.model.security.SimplePrincipal;
+import org.gluu.oxauth.model.common.SimpleUser;
+import org.gluu.oxauth.model.common.User;
+import org.gluu.oxauth.model.config.Constants;
+import org.gluu.oxauth.model.configuration.AppConfiguration;
+import org.gluu.oxauth.model.registration.Client;
+import org.gluu.oxauth.model.session.SessionClient;
+import org.gluu.oxauth.model.session.SessionId;
+import org.gluu.oxauth.model.util.Util;
+import org.gluu.oxauth.security.Identity;
+import org.gluu.oxauth.service.common.ApplicationFactory;
+import org.gluu.oxauth.service.common.UserService;
+import org.gluu.persist.PersistenceEntryManager;
+import org.gluu.persist.exception.AuthenticationException;
+import org.gluu.persist.exception.EntryPersistenceException;
+import org.gluu.persist.model.base.CustomAttribute;
+import org.gluu.persist.model.base.CustomEntry;
+import org.gluu.persist.model.base.CustomObjectAttribute;
+import org.gluu.util.ArrayHelper;
+import org.gluu.util.Pair;
+import org.gluu.util.StringHelper;
+import org.json.JSONException;
+import org.slf4j.Logger;
+
+/**
+ * Authentication service methods
+ *
+ * @author Yuriy Movchan
+ * @author Javier Rojas Blum
+ * @version November 23, 2017
+ */
+@RequestScoped
+public class AuthenticationService {
+
+    private static final String AUTH_EXTERNAL_ATTRIBUTES = "auth_external_attributes";
+
+	@Inject
+	private Logger log;
+
+	@Inject
+	private AppConfiguration appConfiguration;
+
+	@Inject
+	private Identity identity;
+
+	@Inject
+	private Credentials credentials;
+
+	@Inject
+	@Named(ApplicationFactory.PERSISTENCE_AUTH_CONFIG_NAME)
+	private List<GluuLdapConfiguration> ldapAuthConfigs;
+
+	@Inject
+	private PersistenceEntryManager ldapEntryManager;
+
+	@Inject
+	@Named(ApplicationFactory.PERSISTENCE_AUTH_ENTRY_MANAGER_NAME)
+	private List<PersistenceEntryManager> ldapAuthEntryManagers;
+
+	@Inject
+	private UserService userService;
+
+	@Inject
+	private ClientService clientService;
+
+	@Inject
+	private SessionIdService sessionIdService;
+
+	@Inject
+	private MetricService metricService;
+
+	@Inject
+	private ExternalContext externalContext;
+
+	@Inject
+	private FacesService facesService;
+
+	@Inject
+	private RequestParameterService requestParameterService;
+
+	@Inject
+	private AuthenticationProtectionService authenticationProtectionService;
+
+	/**
+	 * Authenticate user.
+	 *
+	 * @param userName
+	 *            The username.
+	 * @param password
+	 *            The user's password.
+	 * @return <code>true</code> if success, otherwise <code>false</code>.
+	 */
+	public boolean authenticate(String userName, String password) {
+		log.debug("Authenticating user with LDAP: username: '{}', credentials: '{}'", userName,
+				System.identityHashCode(credentials));
+
+		boolean authenticated = false;
+		boolean protectionServiceEnabled = authenticationProtectionService.isEnabled();
+
+		com.codahale.metrics.Timer.Context timerContext = null;
+		timerContext = metricService
+				.getTimer(MetricType.OXAUTH_USER_AUTHENTICATION_RATE).time();
+		try {
+			if ((this.ldapAuthConfigs == null) || (this.ldapAuthConfigs.size() == 0)) {
+				authenticated = localAuthenticate(userName, password);
+			} else {
+				authenticated = externalAuthenticate(userName, password);
+			}
+		} finally {
+			timerContext.stop();
+		}
+
+		String userId = userName;
+		if ((identity.getUser() != null) && StringHelper.isNotEmpty(identity.getUser().getUserId())) {
+			userId = identity.getUser().getUserId();
+		}
+		setAuthenticatedUserSessionAttribute(userId, authenticated);
+
+		MetricType metricType;
+		if (authenticated) {
+			metricType = MetricType.OXAUTH_USER_AUTHENTICATION_SUCCESS;
+		} else {
+			metricType = MetricType.OXAUTH_USER_AUTHENTICATION_FAILURES;
+		}
+
+		metricService.incCounter(metricType);
+
+		if (protectionServiceEnabled) {
+			authenticationProtectionService.storeAttempt(userId, authenticated);
+			authenticationProtectionService.doDelayIfNeeded(userId);
+		}
+
+		return authenticated;
+	}
+
+	/**
+	 * Authenticate user.
+	 *
+	 * @param nameValue
+	 *            The name value to find user
+	 * @param password
+	 *            The user's password.
+	 * @param nameAttributes
+	 *            List of attribute to search.
+	 * @return <code>true</code> if success, otherwise <code>false</code>.
+	 */
+	public boolean authenticate(String nameValue, String password, String ... nameAttributes) {
+		log.debug("Authenticating user with LDAP: nameValue: '{}', nameAttributes: '{}', credentials: '{}'", nameValue,
+				ArrayHelper.toString(nameAttributes),
+				System.identityHashCode(credentials));
+
+		Pair<Boolean, User> authenticatedPair = null;
+		boolean authenticated = false;
+		boolean protectionServiceEnabled = authenticationProtectionService.isEnabled();
+
+		com.codahale.metrics.Timer.Context timerContext = metricService
+				.getTimer(MetricType.OXAUTH_USER_AUTHENTICATION_RATE).time();
+		try {
+			authenticatedPair = localAuthenticate(nameValue, password, nameAttributes);
+		} finally {
+			timerContext.stop();
+		}
+
+		String userId = null;
+		if ((authenticatedPair != null) && (authenticatedPair.getSecond() != null)) {
+			authenticated = authenticatedPair.getFirst();
+			userId = authenticatedPair.getSecond().getUserId();
+		}
+		setAuthenticatedUserSessionAttribute(userId, authenticated);
+
+		MetricType metricType;
+		if (authenticated) {
+			metricType = MetricType.OXAUTH_USER_AUTHENTICATION_SUCCESS;
+		} else {
+			metricType = MetricType.OXAUTH_USER_AUTHENTICATION_FAILURES;
+		}
+
+		metricService.incCounter(metricType);
+
+		if (protectionServiceEnabled) {
+			authenticationProtectionService.storeAttempt(userId, authenticated);
+			authenticationProtectionService.doDelayIfNeeded(userId);
+		}
+
+		return authenticated;
+	}
+
+	private void setAuthenticatedUserSessionAttribute(String userName, boolean authenticated) {
+		SessionId sessionId = sessionIdService.getSessionId();
+		if (sessionId != null) {
+			Map<String, String> sessionIdAttributes = sessionId.getSessionAttributes();
+			if (authenticated) {
+				sessionIdAttributes.put(Constants.AUTHENTICATED_USER, userName);
+			}
+			sessionIdService.updateSessionIdIfNeeded(sessionId, authenticated);
+		}
+	}
+
+	private boolean localAuthenticate(String userName, String password) {
+		User user = userService.getUser(userName);
+		if (user != null) {
+			if (!checkUserStatus(user)) {
+				return false;
+			}
+
+			// Use local LDAP server for user authentication
+			boolean authenticated = false;
+			try {
+				authenticated = ldapEntryManager.authenticate(user.getDn(), User.class, password);
+			} catch (AuthenticationException ex) {
+				log.error("Authentication failed: " + ex.getMessage());
+				if (log.isDebugEnabled()) {
+					log.debug("Authentication failed:", ex);
+				}
+			}
+			if (authenticated) {
+				configureAuthenticatedUser(user);
+				updateLastLogonUserTime(user);
+
+				log.trace("Authenticate: credentials: '{}', credentials.userName: '{}', authenticatedUser.userId: '{}'",
+						System.identityHashCode(credentials), credentials.getUsername(), getAuthenticatedUserId());
+			}
+
+			return authenticated;
+		}
+
+		return false;
+	}
+
+	private Pair<Boolean, User> localAuthenticate(String nameValue, String password, String ... nameAttributes) {
+		String lowerNameValue = StringHelper.toString(nameValue);
+		User user = userService.getUserByAttributes(lowerNameValue, nameAttributes, new String[] {"uid", "gluuStatus"});
+		if (user != null) {
+			if (!checkUserStatus(user)) {
+				return new Pair<Boolean, User>(false, user);
+			}
+
+			// Use local LDAP server for user authentication
+			boolean authenticated = ldapEntryManager.authenticate(user.getDn(), User.class, password);
+			if (authenticated) {
+				configureAuthenticatedUser(user);
+				updateLastLogonUserTime(user);
+
+				log.trace("Authenticate: credentials: '{}', credentials.userName: '{}', authenticatedUser.userId: '{}'",
+						System.identityHashCode(credentials), credentials.getUsername(), getAuthenticatedUserId());
+			}
+
+			return new Pair<Boolean, User>(authenticated, user);
+		}
+
+		return new Pair<Boolean, User>(false, null);
+	}
+
+	private boolean externalAuthenticate(String keyValue, String password) {
+		for (int i = 0; i < this.ldapAuthConfigs.size(); i++) {
+			GluuLdapConfiguration ldapAuthConfig = this.ldapAuthConfigs.get(i);
+			PersistenceEntryManager ldapAuthEntryManager = this.ldapAuthEntryManagers.get(i);
+
+			String primaryKey = "uid";
+			if (StringHelper.isNotEmpty(ldapAuthConfig.getPrimaryKey())) {
+				primaryKey = ldapAuthConfig.getPrimaryKey();
+			}
+
+			String localPrimaryKey = "uid";
+			if (StringHelper.isNotEmpty(ldapAuthConfig.getLocalPrimaryKey())) {
+				localPrimaryKey = ldapAuthConfig.getLocalPrimaryKey();
+			}
+
+			boolean authenticated = authenticate(ldapAuthConfig, ldapAuthEntryManager, keyValue, password, primaryKey,
+					localPrimaryKey, false);
+			if (authenticated) {
+				return authenticated;
+			}
+		}
+
+		return false;
+	}
+
+	public boolean authenticate(String keyValue, String password, String primaryKey, String localPrimaryKey) {
+		if (this.ldapAuthConfigs == null) {
+			return authenticate(null, ldapEntryManager, keyValue, password, primaryKey, localPrimaryKey);
+		}
+
+		boolean authenticated = false;
+		boolean protectionServiceEnabled = authenticationProtectionService.isEnabled();
+
+		com.codahale.metrics.Timer.Context timerContext = metricService
+				.getTimer(MetricType.OXAUTH_USER_AUTHENTICATION_RATE).time();
+		try {
+			for (int i = 0; i < this.ldapAuthConfigs.size(); i++) {
+				GluuLdapConfiguration ldapAuthConfig = this.ldapAuthConfigs.get(i);
+				PersistenceEntryManager ldapAuthEntryManager = this.ldapAuthEntryManagers.get(i);
+
+				authenticated = authenticate(ldapAuthConfig, ldapAuthEntryManager, keyValue, password, primaryKey,
+						localPrimaryKey, false);
+				if (authenticated) {
+					break;
+				}
+			}
+		} finally {
+			timerContext.stop();
+		}
+		String userId = null;
+		if ((identity.getUser() != null) && StringHelper.isNotEmpty(identity.getUser().getUserId())) {
+			userId = identity.getUser().getUserId();
+		}
+		setAuthenticatedUserSessionAttribute(userId, authenticated);
+
+		MetricType metricType;
+		if (authenticated) {
+			metricType = MetricType.OXAUTH_USER_AUTHENTICATION_SUCCESS;
+		} else {
+			metricType = MetricType.OXAUTH_USER_AUTHENTICATION_FAILURES;
+		}
+
+		metricService.incCounter(metricType);
+
+		if (protectionServiceEnabled) {
+			authenticationProtectionService.storeAttempt(keyValue, authenticated);
+			authenticationProtectionService.doDelayIfNeeded(keyValue);
+		}
+
+		return authenticated;
+	}
+
+	/*
+	 * Utility method which can be used in custom scripts
+	 */
+	public boolean authenticate(GluuLdapConfiguration ldapAuthConfig, PersistenceEntryManager ldapAuthEntryManager,
+			String keyValue, String password, String primaryKey, String localPrimaryKey) {
+		
+		return authenticate(ldapAuthConfig, ldapAuthEntryManager, keyValue, password, primaryKey, localPrimaryKey, true);
+	}
+
+	/*
+	 * Utility method which can be used in custom scripts
+	 */
+	public boolean authenticate(GluuLdapConfiguration ldapAuthConfig, PersistenceEntryManager ldapAuthEntryManager,
+			String keyValue, String password, String primaryKey, String localPrimaryKey, boolean updateMetrics) {
+		boolean authenticated = false;
+		boolean protectionServiceEnabled = authenticationProtectionService.isEnabled();
+
+		com.codahale.metrics.Timer.Context timerContext = null;
+		
+		if (updateMetrics) {
+			timerContext = metricService.getTimer(MetricType.OXAUTH_USER_AUTHENTICATION_RATE).time();
+		}
+
+		try {
+			authenticated = authenticateImpl(ldapAuthConfig, ldapAuthEntryManager, keyValue, password, primaryKey, localPrimaryKey);
+		} finally {
+			if (updateMetrics) {
+				timerContext.stop();
+			}
+		}
+
+		String userId = keyValue;
+		if ((identity.getUser() != null) && StringHelper.isNotEmpty(identity.getUser().getUserId())) {
+			userId = identity.getUser().getUserId();
+		}
+		setAuthenticatedUserSessionAttribute(userId, authenticated);
+
+		if (updateMetrics) {
+			MetricType metricType;
+			if (authenticated) {
+				metricType = MetricType.OXAUTH_USER_AUTHENTICATION_SUCCESS;
+			} else {
+				metricType = MetricType.OXAUTH_USER_AUTHENTICATION_FAILURES;
+			}
+	
+			metricService.incCounter(metricType);
+		}
+
+		if (protectionServiceEnabled) {
+			authenticationProtectionService.storeAttempt(userId, authenticated);
+			authenticationProtectionService.doDelayIfNeeded(userId);
+		}
+
+		return authenticated;
+	}
+
+	private boolean authenticateImpl(GluuLdapConfiguration ldapAuthConfig, PersistenceEntryManager ldapAuthEntryManager,
+			String keyValue, String password, String primaryKey, String localPrimaryKey) {
+		log.debug("Attempting to find userDN by primary key: '{}' and key value: '{}', credentials: '{}'", primaryKey,
+				keyValue, System.identityHashCode(credentials));
+
+		try {
+			List<?> baseDNs;
+			if (ldapAuthConfig == null) {
+				baseDNs = Arrays.asList(userService.getDnForUser(null));
+			} else {
+				baseDNs = ldapAuthConfig.getBaseDNs();
+			}
+
+			if (baseDNs != null && !baseDNs.isEmpty()) {
+				for (Object baseDnProperty : baseDNs) {
+					String baseDn;
+					if (baseDnProperty instanceof SimpleProperty) {
+						baseDn = ((SimpleProperty) baseDnProperty).getValue();
+					} else {
+						baseDn = baseDnProperty.toString();
+					}
+
+					User user = getUserByAttribute(ldapAuthEntryManager, baseDn, primaryKey, keyValue);
+					if (user != null) {
+						String userDn = user.getDn();
+						log.debug("Attempting to authenticate userDN: {}", userDn);
+						if (ldapAuthEntryManager.authenticate(userDn, User.class, password)) {
+							log.debug("User authenticated: {}", userDn);
+
+							log.debug("Attempting to find userDN by local primary key: {}", localPrimaryKey);
+							User localUser = userService.getUserByAttribute(localPrimaryKey, keyValue);
+							if (localUser != null) {
+								if (!checkUserStatus(localUser)) {
+									return false;
+								}
+
+								configureAuthenticatedUser(localUser);
+								updateLastLogonUserTime(localUser);
+
+								log.trace(
+										"authenticate_external: credentials: '{}', credentials.userName: '{}', authenticatedUser.userId: '{}'",
+										System.identityHashCode(credentials), credentials.getUsername(),
+										getAuthenticatedUserId());
+
+								return true;
+							}
+						}
+					}
+				}
+			} else {
+				log.error("There are no baseDns specified in authentication configuration.");
+			}
+		} catch (Exception e) {
+			log.error(e.getMessage(), e);
+		}
+
+		return false;
+	}
+
+	public boolean authenticate(String userName) {
+		log.debug("Authenticating user with LDAP: username: '{}', credentials: '{}'", userName,
+				System.identityHashCode(credentials));
+
+		boolean authenticated = false;
+		boolean protectionServiceEnabled = authenticationProtectionService.isEnabled();
+
+		com.codahale.metrics.Timer.Context timerContext = metricService
+				.getTimer(MetricType.OXAUTH_USER_AUTHENTICATION_RATE).time();
+		try {
+			User user = userService.getUser(userName);
+			if ((user != null) && checkUserStatus(user)) {
+				credentials.setUsername(user.getUserId());
+				configureAuthenticatedUser(user);
+				updateLastLogonUserTime(user);
+
+				log.trace("Authenticate: credentials: '{}', credentials.userName: '{}', authenticatedUser.userId: '{}'",
+						System.identityHashCode(credentials), credentials.getUsername(), getAuthenticatedUserId());
+
+				authenticated = true;
+			}
+		} finally {
+			timerContext.stop();
+		}
+
+		setAuthenticatedUserSessionAttribute(userName, authenticated);
+
+		MetricType metricType;
+		if (authenticated) {
+			metricType = MetricType.OXAUTH_USER_AUTHENTICATION_SUCCESS;
+		} else {
+			metricType = MetricType.OXAUTH_USER_AUTHENTICATION_FAILURES;
+		}
+
+		metricService.incCounter(metricType);
+
+		if (protectionServiceEnabled) {
+			authenticationProtectionService.storeAttempt(userName, authenticated);
+			authenticationProtectionService.doDelayIfNeeded(userName);
+		}
+
+		return authenticated;
+	}
+
+	private User getUserByAttribute(PersistenceEntryManager ldapAuthEntryManager, String baseDn, String attributeName,
+			String attributeValue) {
+		log.debug("Getting user information from LDAP: attributeName = '{}', attributeValue = '{}'", attributeName,
+				attributeValue);
+
+		if (StringHelper.isEmpty(attributeValue)) {
+			return null;
+		}
+
+		SimpleUser sampleUser = new SimpleUser();
+		sampleUser.setDn(baseDn);
+
+		List<CustomObjectAttribute> customAttributes = new ArrayList<CustomObjectAttribute>();
+		customAttributes.add(new CustomObjectAttribute(attributeName, attributeValue));
+
+		sampleUser.setCustomAttributes(customAttributes);
+
+		log.debug("Searching user by attributes: '{}', baseDn: '{}'", customAttributes, baseDn);
+		List<User> entries = ldapAuthEntryManager.findEntries(sampleUser, 1);
+		log.debug("Found '{}' entries", entries.size());
+
+		if (entries.size() > 0) {
+			SimpleUser foundUser = entries.get(0);
+
+			return ldapAuthEntryManager.find(User.class, foundUser.getDn());
+		} else {
+			return null;
+		}
+	}
+
+	private boolean checkUserStatus(User user) {
+		CustomObjectAttribute userStatus = userService.getCustomAttribute(user, "gluuStatus");
+
+		if ((userStatus != null) && GluuStatus.ACTIVE.equals(GluuStatus.getByValue(StringHelper.toString(userStatus.getValue())))) {
+			return true;
+		}
+
+		log.warn("User '{}' was disabled", user.getUserId());
+		return false;
+	}
+
+	private void updateLastLogonUserTime(User user) {
+		if (!appConfiguration.getUpdateUserLastLogonTime()) {
+			return;
+		}
+
+		CustomEntry customEntry = new CustomEntry();
+		customEntry.setDn(user.getDn());
+
+		List<String> personCustomObjectClassList = appConfiguration.getPersonCustomObjectClassList();
+		if ((personCustomObjectClassList != null) && !personCustomObjectClassList.isEmpty()) {
+			// Combine object classes from LDAP and configuration in one list
+			Set<Object> customPersonCustomObjectClassList = new HashSet<Object>();
+			customPersonCustomObjectClassList.add("gluuPerson");
+			customPersonCustomObjectClassList.addAll(personCustomObjectClassList);
+			if (user.getCustomObjectClasses() != null) { 
+				customPersonCustomObjectClassList.addAll(Arrays.asList(user.getCustomObjectClasses()));
+			}
+
+			customEntry.setCustomObjectClasses(
+					customPersonCustomObjectClassList.toArray(new String[customPersonCustomObjectClassList.size()]));
+		} else {
+			customEntry.setCustomObjectClasses(UserService.USER_OBJECT_CLASSES);
+		}
+
+		Date now = new GregorianCalendar(TimeZone.getTimeZone("UTC")).getTime();
+		String nowDateString = ldapEntryManager.encodeTime(customEntry.getDn(), now);
+		CustomAttribute customAttribute = new CustomAttribute("oxLastLogonTime", nowDateString);
+		customEntry.getCustomAttributes().add(customAttribute);
+
+		try {
+			ldapEntryManager.merge(customEntry);
+		} catch (EntryPersistenceException epe) {
+			log.error("Failed to update oxLastLogonTime of user '{}'", user.getUserId());
+		}
+	}
+
+	public SessionId configureSessionUser(SessionId sessionId, Map<String, String> sessionIdAttributes) {
+		log.trace("configureSessionUser: credentials: '{}', sessionId: '{}', credentials.userName: '{}', authenticatedUser.userId: '{}'",
+				System.identityHashCode(credentials), sessionId, credentials.getUsername(), getAuthenticatedUserId());
+
+		User user = getAuthenticatedUser();
+
+		String sessionAuthUser = sessionIdAttributes.get(Constants.AUTHENTICATED_USER);
+		log.trace("configureSessionUser sessionId: '{}', sessionId.auth_user: '{}'", sessionId, sessionAuthUser);
+
+		SessionId newSessionId = sessionIdService.setSessionIdStateAuthenticated(getHttpRequest(), getHttpResponse(), sessionId, user.getDn());
+
+		identity.setSessionId(sessionId);
+		newSessionId.setUser(user);
+
+		return newSessionId;
+	}
+
+	public SessionId configureEventUser() {
+		User user = getAuthenticatedUser();
+		if (user == null) {
+			return null;
+		}
+
+		log.debug("ConfigureEventUser: username: '{}', credentials: '{}'", user.getUserId(),
+				System.identityHashCode(credentials));
+
+		SessionId sessionId = sessionIdService.generateAuthenticatedSessionId(getHttpRequest(), user.getDn());
+
+		identity.setSessionId(sessionId);
+
+		return sessionId;
+	}
+
+	private HttpServletRequest getHttpRequest() {
+		if (externalContext == null) {
+			return null;
+		}
+		return (HttpServletRequest) externalContext.getRequest();
+	}
+
+    private HttpServletResponse getHttpResponse() {
+        if (externalContext == null) {
+            return null;
+        }
+        return (HttpServletResponse) externalContext.getResponse();
+    }
+
+	public void configureEventUser(SessionId sessionId) {
+		sessionIdService.updateSessionId(sessionId);
+
+		identity.setSessionId(sessionId);
+	}
+
+	public void quietLogin(String userName) {
+		Principal principal = new SimplePrincipal(userName);
+		identity.acceptExternallyAuthenticatedPrincipal(principal);
+		identity.quietLogin();
+	}
+
+	private void configureAuthenticatedUser(User user) {
+		identity.setUser(user);
+	}
+
+	public User getAuthenticatedUser() {
+		if (identity.getUser() != null) {
+			return identity.getUser();
+		} else {
+			SessionId sessionId = sessionIdService.getSessionId();
+			if (sessionId != null) {
+				Map<String, String> sessionIdAttributes = sessionId.getSessionAttributes();
+				String userId = sessionIdAttributes.get(Constants.AUTHENTICATED_USER);
+				if (StringHelper.isNotEmpty(userId)) {
+					User user = userService.getUser(userId);
+					identity.setUser(user);
+
+					return user;
+				}
+			}
+		}
+
+		return null;
+	}
+
+	public String getAuthenticatedUserId() {
+		User authenticatedUser = getAuthenticatedUser();
+		if (authenticatedUser != null) {
+			return authenticatedUser.getUserId();
+		}
+
+		return null;
+	}
+
+	public Client configureSessionClient() {
+		String clientInum = credentials.getUsername();
+		log.debug("ConfigureSessionClient: username: '{}', credentials: '{}'", clientInum,
+				System.identityHashCode(credentials));
+
+		Client client = clientService.getClient(clientInum);
+		configureSessionClient(client);
+		return client;
+	}
+
+	public void configureSessionClient(Client client) {
+		SessionClient sessionClient = new SessionClient();
+		sessionClient.setClient(client);
+
+		identity.setSessionClient(sessionClient);
+
+		clientService.updateAccessTime(client, true);
+	}
+
+	@SuppressWarnings({ "unchecked", "rawtypes" })
+	public void onSuccessfulLogin(SessionId sessionUser) {
+		log.info("Attempting to redirect user: SessionUser: {}", sessionUser != null ? sessionUser.getId() : "");
+
+		if ((sessionUser == null) || StringUtils.isBlank(sessionUser.getUserDn())) {
+			return;
+		}
+
+		User user = sessionIdService.getUser(sessionUser);
+
+		log.info("Attempting to redirect user: User: {}", user);
+		if (user == null) {
+            log.error("Failed to identify logged in user for session: {}", sessionUser);
+		    return;
+        }
+
+        final Map<String, String> result = sessionUser.getSessionAttributes();
+        result.put(SESSION_ID, sessionUser.getId()); // parameters must be filled before filtering
+        result.put(SID, sessionUser.getOutsideSid()); // parameters must be filled before filtering
+
+        Map<String, String> allowedParameters = requestParameterService.getAllowedParameters(result);
+
+        log.trace("Logged in successfully! User: {}, page: /authorize.xhtml, map: {}", user, allowedParameters);
+        facesService.redirect("/authorize.xhtml", (Map) allowedParameters);
+	}
+
+	public User getUserOrRemoveSession(SessionId p_sessionId) {
+		if (p_sessionId != null) {
+			try {
+				if (StringUtils.isNotBlank(p_sessionId.getUserDn())) {
+					final User user = sessionIdService.getUser(p_sessionId);
+					if (user != null) {
+						return user;
+					} else { // if there is no user than session is invalid
+						sessionIdService.remove(p_sessionId);
+					}
+				} else { // if there is no user than session is invalid
+					sessionIdService.remove(p_sessionId);
+				}
+			} catch (Exception e) {
+				log.trace(e.getMessage(), e);
+			}
+		}
+		return null;
+	}
+
+	public String parametersAsString() throws UnsupportedEncodingException {
+		final Map<String, String> parameterMap = getParametersMap(null);
+
+		return requestParameterService.parametersAsString(parameterMap);
+	}
+
+	public Map<String, String> getParametersMap(List<String> extraParameters) {
+		final Map<String, String> parameterMap = new HashMap<String, String>(externalContext.getRequestParameterMap());
+
+		return requestParameterService.getParametersMap(extraParameters, parameterMap);
+	}
+
+	public boolean isParameterExists(String p_name) {
+		return identity.isSetWorkingParameter(p_name);
+	}
+
+	public void updateExtraParameters(Map<String, String> sessionIdAttributes, List<String> extraParameters) {
+        // Load extra parameters set
+        Map<String, String> authExternalAttributes = getExternalScriptExtraParameters(sessionIdAttributes);
+
+        if (extraParameters != null) {
+        	log.trace("Attempting to store extraParameters: {}", extraParameters);
+            for (String extraParameter : extraParameters) {
+                if (isParameterExists(extraParameter)) {
+                    Pair<String, String> extraParameterValueWithType = requestParameterService
+                            .getParameterValueWithType(extraParameter);
+                    String extraParameterValue = extraParameterValueWithType.getFirst();
+                    String extraParameterType = extraParameterValueWithType.getSecond();
+
+                    // Store parameter name and value
+                    sessionIdAttributes.put(extraParameter, extraParameterValue);
+
+                    // Store parameter name and type
+                    authExternalAttributes.put(extraParameter, extraParameterType);
+                }
+            }
+        }
+
+        // Store identity working parameters in session
+        setExternalScriptExtraParameters(sessionIdAttributes, authExternalAttributes);
+    	log.trace("Storing sessionIdAttributes: {}", sessionIdAttributes);
+    	log.trace("Storing authExternalAttributes: {}", authExternalAttributes);
+    }
+
+    public Map<String, String> getExternalScriptExtraParameters(Map<String, String> sessionIdAttributes) {
+        String authExternalAttributesString = sessionIdAttributes.get(AUTH_EXTERNAL_ATTRIBUTES);
+        Map<String, String> authExternalAttributes = new HashMap<String, String>();
+        try {
+            authExternalAttributes = Util.jsonObjectArrayStringAsMap(authExternalAttributesString);
+        } catch (JSONException ex) {
+            log.error("Failed to convert JSON array of auth_external_attributes to Map<String, String>");
+        }
+
+        return authExternalAttributes;
+    }
+
+    public void setExternalScriptExtraParameters(Map<String, String> sessionIdAttributes,
+                                                  Map<String, String> authExternalAttributes) {
+        String authExternalAttributesString = null;
+        try {
+            authExternalAttributesString = Util.mapAsString(authExternalAttributes);
+        } catch (JSONException ex) {
+            log.error("Failed to convert Map<String, String> of auth_external_attributes to JSON array");
+        }
+
+        sessionIdAttributes.put(AUTH_EXTERNAL_ATTRIBUTES, authExternalAttributesString);
+    }
+
+    public void clearExternalScriptExtraParameters(Map<String, String> sessionIdAttributes) {
+        Map<String, String> authExternalAttributes = getExternalScriptExtraParameters(sessionIdAttributes);
+
+        for (String authExternalAttribute : authExternalAttributes.keySet()) {
+            sessionIdAttributes.remove(authExternalAttribute);
+        }
+
+        sessionIdAttributes.remove(AUTH_EXTERNAL_ATTRIBUTES);
+    }
+
+    public void copyAuthenticatorExternalAttributes(SessionId oldSession, SessionId newSession) {
+		if ((oldSession != null) && (oldSession.getSessionAttributes() != null) &&
+			(newSession != null) && (newSession.getSessionAttributes() != null)) {
+
+			Map<String, String> newSessionIdAttributes = newSession.getSessionAttributes();
+			Map<String, String> oldSessionIdAttributes = oldSession.getSessionAttributes();
+
+			Map<String, String> authExternalAttributes = getExternalScriptExtraParameters(oldSession.getSessionAttributes());
+
+		    if (authExternalAttributes != null) {
+		    	log.trace("Attempting to copy extraParameters into new session: {}", authExternalAttributes);
+		        for (String authExternalAttributeName : authExternalAttributes.keySet()) {
+		            if (oldSessionIdAttributes.containsKey(authExternalAttributeName)) {
+		                String authExternalAttributeValue = oldSessionIdAttributes.get(authExternalAttributeName);
+
+		                // Store in new session
+		                newSessionIdAttributes.put(authExternalAttributeName, authExternalAttributeValue);
+		            }
+		        }
+		    }
+
+		    setExternalScriptExtraParameters(newSessionIdAttributes, authExternalAttributes);
+		}
+	}
+
+	public List<GluuLdapConfiguration> getLdapAuthConfigs() {
+		return ldapAuthConfigs;
+	}
+
+	public List<PersistenceEntryManager> getLdapAuthEntryManagers() {
+		return ldapAuthEntryManagers;
+	}
+
+}
\ No newline at end of file
diff --git a/oxAuth/Server/src/main/java/org/gluu/oxauth/service/AuthorizeService.java b/oxAuth/Server/src/main/java/org/gluu/oxauth/service/AuthorizeService.java
new file mode 100644
index 00000000..343e947a
--- /dev/null
+++ b/oxAuth/Server/src/main/java/org/gluu/oxauth/service/AuthorizeService.java
@@ -0,0 +1,327 @@
+/*
+ * oxAuth is available under the MIT License (2008). See http://opensource.org/licenses/MIT for full text.
+ *
+ * Copyright (c) 2014, Gluu
+ */
+
+package org.gluu.oxauth.service;
+
+import com.google.common.collect.Sets;
+import org.apache.commons.lang.StringUtils;
+import org.gluu.jsf2.message.FacesMessages;
+import org.gluu.jsf2.service.FacesService;
+import org.gluu.oxauth.auth.Authenticator;
+import org.gluu.oxauth.ciba.CIBAPingCallbackService;
+import org.gluu.oxauth.ciba.CIBAPushErrorService;
+import org.gluu.oxauth.model.authorize.AuthorizeErrorResponseType;
+import org.gluu.oxauth.model.authorize.AuthorizeRequestParam;
+import org.gluu.oxauth.model.ciba.PushErrorResponseType;
+import org.gluu.oxauth.model.common.*;
+import org.gluu.oxauth.model.configuration.AppConfiguration;
+import org.gluu.oxauth.model.error.ErrorResponseFactory;
+import org.gluu.oxauth.model.registration.Client;
+import org.gluu.oxauth.model.session.SessionId;
+import org.gluu.oxauth.security.Identity;
+import org.gluu.oxauth.service.ciba.CibaRequestService;
+import org.gluu.oxauth.util.RedirectUri;
+import org.gluu.oxauth.util.ServerUtil;
+import org.oxauth.persistence.model.Scope;
+import org.slf4j.Logger;
+
+import javax.enterprise.context.RequestScoped;
+import javax.faces.application.FacesMessage;
+import javax.faces.context.ExternalContext;
+import javax.inject.Inject;
+import javax.servlet.http.HttpServletRequest;
+import javax.servlet.http.HttpServletResponse;
+import java.util.ArrayList;
+import java.util.List;
+import java.util.Map;
+import java.util.Set;
+
+import static org.gluu.oxauth.model.util.StringUtils.spaceSeparatedToList;
+
+/**
+ * @author Yuriy Movchan
+ * @author Javier Rojas Blum
+ * @version May 9, 2020
+ */
+@RequestScoped
+public class AuthorizeService {
+
+    @Inject
+    private Logger log;
+
+    @Inject
+    private ClientService clientService;
+
+    @Inject
+    private ErrorResponseFactory errorResponseFactory;
+
+    @Inject
+    private SessionIdService sessionIdService;
+
+    @Inject
+    private CookieService cookieService;
+
+    @Inject
+    private ClientAuthorizationsService clientAuthorizationsService;
+
+    @Inject
+    private Identity identity;
+
+    @Inject
+    private Authenticator authenticator;
+
+    @Inject
+    private FacesService facesService;
+
+    @Inject
+    private FacesMessages facesMessages;
+
+    @Inject
+    private ExternalContext externalContext;
+
+    @Inject
+    private AppConfiguration appConfiguration;
+
+    @Inject
+    private ScopeService scopeService;
+
+    @Inject
+    private RequestParameterService requestParameterService;
+
+    @Inject
+    private AuthorizationGrantList authorizationGrantList;
+
+    @Inject
+    private CIBAPingCallbackService cibaPingCallbackService;
+
+    @Inject
+    private CIBAPushErrorService cibaPushErrorService;
+
+    @Inject
+    private CibaRequestService cibaRequestService;
+
+    @Inject
+    private DeviceAuthorizationService deviceAuthorizationService;
+
+    public SessionId getSession() {
+        return getSession(null);
+    }
+
+    public SessionId getSession(String sessionId) {
+        if (StringUtils.isBlank(sessionId)) {
+            sessionId = cookieService.getSessionIdFromCookie();
+            if (StringUtils.isBlank(sessionId)) {
+                return null;
+            }
+        }
+
+        if (!identity.isLoggedIn()) {
+            authenticator.authenticateBySessionId(sessionId);
+        }
+
+        SessionId ldapSessionId = sessionIdService.getSessionId(sessionId);
+        if (ldapSessionId == null) {
+            identity.logout();
+        }
+
+        return ldapSessionId;
+    }
+
+    public void permissionGranted(HttpServletRequest httpRequest, final SessionId session) {
+        log.trace("permissionGranted");
+        try {
+            final User user = sessionIdService.getUser(session);
+            if (user == null) {
+                log.debug("Permission denied. Failed to find session user: userDn = " + session.getUserDn() + ".");
+                permissionDenied(session);
+                return;
+            }
+
+            String clientId = session.getSessionAttributes().get(AuthorizeRequestParam.CLIENT_ID);
+            final Client client = clientService.getClient(clientId);
+
+            String scope = session.getSessionAttributes().get(AuthorizeRequestParam.SCOPE);
+            Set<String> scopeSet = Sets.newHashSet(spaceSeparatedToList(scope));
+            String responseType = session.getSessionAttributes().get(AuthorizeRequestParam.RESPONSE_TYPE);
+
+            boolean persistDuringImplicitFlow = ServerUtil.isFalse(appConfiguration.getUseCacheForAllImplicitFlowObjects()) || !ResponseType.isImplicitFlow(responseType);
+            if (!client.getTrustedClient() && persistDuringImplicitFlow && client.getPersistClientAuthorizations()) {
+
+                clientAuthorizationsService.add(user.getAttribute("inum"), client.getClientId(), scopeSet);
+            }
+            session.addPermission(clientId, true, scopeSet);
+            sessionIdService.updateSessionId(session);
+            identity.setSessionId(session);
+
+            // OXAUTH-297 - set session_id cookie
+            if (!appConfiguration.getInvalidateSessionCookiesAfterAuthorizationFlow()) {
+                cookieService.createSessionIdCookie(session, false);
+            }
+            Map<String, String> sessionAttribute = requestParameterService.getAllowedParameters(session.getSessionAttributes());
+
+            if (sessionAttribute.containsKey(AuthorizeRequestParam.PROMPT)) {
+                List<Prompt> prompts = Prompt.fromString(sessionAttribute.get(AuthorizeRequestParam.PROMPT), " ");
+                prompts.remove(Prompt.CONSENT);
+                sessionAttribute.put(AuthorizeRequestParam.PROMPT, org.gluu.oxauth.model.util.StringUtils.implodeEnum(prompts, " "));
+            }
+
+            final String parametersAsString = requestParameterService.parametersAsString(sessionAttribute);
+            String uri = httpRequest.getContextPath() + "/restv1/authorize?" + parametersAsString;
+            log.trace("permissionGranted, redirectTo: {}", uri);
+
+            if (invalidateSessionCookiesIfNeeded()) {
+                if (!uri.contains(AuthorizeRequestParam.SESSION_ID) && appConfiguration.getSessionIdRequestParameterEnabled()) {
+                    uri += "&session_id=" + session.getId();
+                }
+            }
+            facesService.redirectToExternalURL(uri);
+        } catch (Exception e) {
+            log.error("Unable to perform grant permission", e);
+            showErrorPage("login.failedToGrantPermission");
+        }
+    }
+
+    public void permissionDenied(final SessionId session) {
+        try {
+            permissionDeniedInternal(session);
+        } catch (Exception e) {
+            log.error("Unable to perform permission deny", e);
+            showErrorPage("login.failedToDeny");
+        }
+    }
+
+    public void permissionDeniedInternal(final SessionId session) {
+        log.trace("permissionDenied");
+        invalidateSessionCookiesIfNeeded();
+
+        if (session == null) {
+            authenticationFailedSessionInvalid();
+            return;
+        }
+
+        String baseRedirectUri = session.getSessionAttributes().get(AuthorizeRequestParam.REDIRECT_URI);
+        String state = session.getSessionAttributes().get(AuthorizeRequestParam.STATE);
+        ResponseMode responseMode = ResponseMode.fromString(session.getSessionAttributes().get(AuthorizeRequestParam.RESPONSE_MODE));
+        List<ResponseType> responseType = ResponseType.fromString(session.getSessionAttributes().get(AuthorizeRequestParam.RESPONSE_TYPE), " ");
+
+        RedirectUri redirectUri = new RedirectUri(baseRedirectUri, responseType, responseMode);
+        redirectUri.parseQueryString(errorResponseFactory.getErrorAsQueryString(AuthorizeErrorResponseType.ACCESS_DENIED, state));
+
+        // CIBA
+        Map<String, String> sessionAttribute = requestParameterService.getAllowedParameters(session.getSessionAttributes());
+        if (sessionAttribute.containsKey(AuthorizeRequestParam.AUTH_REQ_ID)) {
+            String authReqId = sessionAttribute.get(AuthorizeRequestParam.AUTH_REQ_ID);
+            CibaRequestCacheControl request = cibaRequestService.getCibaRequest(authReqId);
+
+            if (request != null  && request.getClient() != null) {
+                if (request.getStatus() == CibaRequestStatus.PENDING) {
+                    cibaRequestService.removeCibaRequest(authReqId);
+                }
+                switch (request.getClient().getBackchannelTokenDeliveryMode()) {
+                    case POLL:
+                        request.setStatus(CibaRequestStatus.DENIED);
+                        request.setTokensDelivered(false);
+                        cibaRequestService.update(request);
+                        break;
+                    case PING:
+                        request.setStatus(CibaRequestStatus.DENIED);
+                        request.setTokensDelivered(false);
+                        cibaRequestService.update(request);
+
+                        cibaPingCallbackService.pingCallback(
+                                request.getAuthReqId(),
+                                request.getClient().getBackchannelClientNotificationEndpoint(),
+                                request.getClientNotificationToken()
+                        );
+                        break;
+                    case PUSH:
+                        cibaPushErrorService.pushError(
+                                request.getAuthReqId(),
+                                request.getClient().getBackchannelClientNotificationEndpoint(),
+                                request.getClientNotificationToken(),
+                                PushErrorResponseType.ACCESS_DENIED,
+                                "The end-user denied the authorization request.");
+                        break;
+                }
+            }
+        }
+        if (sessionAttribute.containsKey(DeviceAuthorizationService.SESSION_USER_CODE)) {
+            processDeviceAuthDeniedResponse(sessionAttribute);
+        }
+
+        facesService.redirectToExternalURL(redirectUri.toString());
+    }
+
+    private void authenticationFailedSessionInvalid() {
+        showErrorPage("login.errorSessionInvalidMessage");
+    }
+
+    private void showErrorPage(String errorCode) {
+        log.debug("Redirect to /error.xhtml page with {} error code.", errorCode);
+        facesMessages.add(FacesMessage.SEVERITY_ERROR, errorCode);
+        facesService.redirect("/error.xhtml");
+    }
+
+    public List<org.oxauth.persistence.model.Scope> getScopes() {
+        SessionId session = getSession();
+        String scope = session.getSessionAttributes().get("scope");
+
+        return getScopes(scope);
+
+    }
+
+    public List<Scope> getScopes(String scopes) {
+        List<org.oxauth.persistence.model.Scope> result = new ArrayList<org.oxauth.persistence.model.Scope>();
+
+        if (scopes != null && !scopes.isEmpty()) {
+            String[] scopesName = scopes.split(" ");
+            for (String scopeName : scopesName) {
+                org.oxauth.persistence.model.Scope s = scopeService.getScopeById(scopeName);
+                if (s != null && s.getDescription() != null) {
+                    result.add(s);
+                }
+            }
+        }
+
+        return result;
+    }
+
+    private boolean invalidateSessionCookiesIfNeeded() {
+        if (appConfiguration.getInvalidateSessionCookiesAfterAuthorizationFlow()) {
+            return invalidateSessionCookies();
+        }
+        return false;
+    }
+
+    private boolean invalidateSessionCookies() {
+        try {
+            if (externalContext.getResponse() instanceof HttpServletResponse) {
+                final HttpServletResponse httpResponse = (HttpServletResponse) externalContext.getResponse();
+
+                log.trace("Invalidated {} cookie.", CookieService.SESSION_ID_COOKIE_NAME);
+                httpResponse.addHeader("Set-Cookie", CookieService.SESSION_ID_COOKIE_NAME + "=deleted; Path=/; Secure; HttpOnly; Expires=Thu, 01 Jan 1970 00:00:01 GMT;");
+
+                log.trace("Invalidated {} cookie.", CookieService.CONSENT_SESSION_ID_COOKIE_NAME);
+                httpResponse.addHeader("Set-Cookie", CookieService.CONSENT_SESSION_ID_COOKIE_NAME + "=deleted; Path=/; Secure; HttpOnly; Expires=Thu, 01 Jan 1970 00:00:01 GMT;");
+                return true;
+            }
+        } catch (Exception e) {
+            log.error(e.getMessage(), e);
+        }
+        return false;
+    }
+
+    private void processDeviceAuthDeniedResponse(Map<String, String> sessionAttribute) {
+        String userCode = sessionAttribute.get(DeviceAuthorizationService.SESSION_USER_CODE);
+        DeviceAuthorizationCacheControl cacheData = deviceAuthorizationService.getDeviceAuthzByUserCode(userCode);
+
+        if (cacheData != null && cacheData.getStatus() == DeviceAuthorizationStatus.PENDING) {
+            cacheData.setStatus(DeviceAuthorizationStatus.DENIED);
+            deviceAuthorizationService.saveInCache(cacheData, true, false);
+            deviceAuthorizationService.removeDeviceAuthRequestInCache(userCode, null);
+        }
+    }
+}
diff --git a/oxAuth/Server/src/main/java/org/gluu/oxauth/service/BaseAuthFilterService.java b/oxAuth/Server/src/main/java/org/gluu/oxauth/service/BaseAuthFilterService.java
new file mode 100644
index 00000000..e3d10a34
--- /dev/null
+++ b/oxAuth/Server/src/main/java/org/gluu/oxauth/service/BaseAuthFilterService.java
@@ -0,0 +1,283 @@
+/*
+ * oxAuth is available under the MIT License (2008). See http://opensource.org/licenses/MIT for full text.
+ *
+ * Copyright (c) 2014, Gluu
+ */
+
+package org.gluu.oxauth.service;
+
+import java.util.ArrayList;
+import java.util.Collection;
+import java.util.HashMap;
+import java.util.HashSet;
+import java.util.List;
+import java.util.Map;
+import java.util.Set;
+import java.util.regex.Matcher;
+import java.util.regex.Pattern;
+
+import javax.inject.Inject;
+
+import org.gluu.oxauth.model.configuration.BaseFilter;
+import org.gluu.persist.PersistenceEntryManager;
+import org.gluu.persist.exception.operation.SearchException;
+import org.gluu.persist.ldap.impl.LdapFilterConverter;
+import org.gluu.persist.model.base.BaseEntry;
+import org.gluu.search.filter.Filter;
+import org.gluu.util.ArrayHelper;
+import org.gluu.util.StringHelper;
+import org.slf4j.Logger;
+
+/**
+ * @author Yuriy Movchan
+ * @author Yuriy Zabrovarnyy
+ * @author Javier Rojas Blum
+ * @version March 4, 2016
+ */
+
+public abstract class BaseAuthFilterService {
+	
+	@Inject
+	protected Logger log;
+
+	@Inject
+	protected LdapFilterConverter ldapFilterConverter;
+
+    public static final Pattern PARAM_VALUE_PATTERN = Pattern.compile("([\\w]+)[\\s]*\\=[\\*\\s]*(\\{[\\s]*[\\d]+[\\s]*\\})[\\*\\s]*");
+
+    private boolean enabled;
+    private boolean filterAttributes = true;
+
+    private List<AuthenticationFilterWithParameters> filterWithParameters;
+
+    public static class AuthenticationFilterWithParameters {
+
+        private BaseFilter authenticationFilter;
+        private List<String> variableNames;
+        private List<AuthenticationFilterService.IndexedParameter> indexedVariables;
+
+        public AuthenticationFilterWithParameters(BaseFilter authenticationFilter, List<String> variableNames, List<AuthenticationFilterService.IndexedParameter> indexedVariables) {
+            this.authenticationFilter = authenticationFilter;
+            this.variableNames = variableNames;
+            this.indexedVariables = indexedVariables;
+        }
+
+        public BaseFilter getAuthenticationFilter() {
+            return authenticationFilter;
+        }
+
+        public void setAuthenticationFilter(BaseFilter authenticationFilter) {
+            this.authenticationFilter = authenticationFilter;
+        }
+
+        public List<String> getVariableNames() {
+            return variableNames;
+        }
+
+        public void setVariableNames(List<String> variableNames) {
+            this.variableNames = variableNames;
+        }
+
+        public List<AuthenticationFilterService.IndexedParameter> getIndexedVariables() {
+            return indexedVariables;
+        }
+
+        public void setIndexedVariables(List<AuthenticationFilterService.IndexedParameter> indexedVariables) {
+            this.indexedVariables = indexedVariables;
+        }
+
+        public String toString() {
+            return String.format("AutheticationFilterWithParameters [authenticationFilter=%s, variableNames=%s, indexedVariables=%s]",
+                    authenticationFilter, variableNames, indexedVariables);
+        }
+
+    }
+
+    public static class IndexedParameter {
+
+        private String paramName;
+        private String paramIndex;
+
+        public IndexedParameter(String paramName, String paramIndex) {
+            this.paramName = paramName;
+            this.paramIndex = paramIndex;
+        }
+
+        public String getParamName() {
+            return paramName;
+        }
+
+        public void setParamName(String paramName) {
+            this.paramName = paramName;
+        }
+
+        public String getParamIndex() {
+            return paramIndex;
+        }
+
+        public void setParamIndex(String paramIndex) {
+            this.paramIndex = paramIndex;
+        }
+
+        public String toString() {
+            return String.format("IndexedParameter [paramName=%s, paramIndex=%s]", paramName, paramIndex);
+        }
+    }
+
+    public void init(List<? extends BaseFilter> p_filterList, boolean p_enabled, boolean p_filterAttributes) {
+        this.enabled = p_enabled;
+        this.filterWithParameters = prepareAuthenticationFilterWithParameters(p_filterList);
+        this.filterAttributes = p_filterAttributes;
+    }
+
+    private List<AuthenticationFilterWithParameters> prepareAuthenticationFilterWithParameters(List<? extends BaseFilter> p_filterList) {
+        final List<AuthenticationFilterWithParameters> tmpAuthenticationFilterWithParameters = new ArrayList<AuthenticationFilterWithParameters>();
+
+        if (!this.enabled || p_filterList == null) {
+            return tmpAuthenticationFilterWithParameters;
+        }
+
+        for (BaseFilter authenticationFilter : p_filterList) {
+            if (Boolean.TRUE.equals(authenticationFilter.getBind()) && StringHelper.isEmpty(authenticationFilter.getBindPasswordAttribute())) {
+                log.error("Skipping authentication filter:\n '{}'\n. It should contains not empty bind-password-attribute attribute. ", authenticationFilter);
+                continue;
+            }
+
+            List<String> variableNames = new ArrayList<String>();
+            List<BaseAuthFilterService.IndexedParameter> indexedParameters = new ArrayList<BaseAuthFilterService.IndexedParameter>();
+
+            Matcher matcher = BaseAuthFilterService.PARAM_VALUE_PATTERN.matcher(authenticationFilter.getFilter());
+            while (matcher.find()) {
+                String paramName = normalizeAttributeName(matcher.group(1));
+                String paramIndex = matcher.group(2);
+
+                variableNames.add(paramName);
+                indexedParameters.add(new BaseAuthFilterService.IndexedParameter(paramName, paramIndex));
+            }
+
+            AuthenticationFilterWithParameters tmpAutheticationFilterWithParameter = new AuthenticationFilterWithParameters(authenticationFilter, variableNames, indexedParameters);
+            tmpAuthenticationFilterWithParameters.add(tmpAutheticationFilterWithParameter);
+
+            log.debug("Authentication filter with parameters: '{}'. ", tmpAutheticationFilterWithParameter);
+        }
+
+        return tmpAuthenticationFilterWithParameters;
+    }
+
+    public static List<AuthenticationFilterWithParameters> getAllowedAuthenticationFilters(Collection<?> attributeNames, List<AuthenticationFilterWithParameters> p_filterList) {
+        List<AuthenticationFilterWithParameters> tmpAuthenticationFilterWithParameters = new ArrayList<AuthenticationFilterWithParameters>();
+        if (attributeNames == null) {
+            return tmpAuthenticationFilterWithParameters;
+        }
+
+        Set<String> normalizedAttributeNames = new HashSet<String>();
+        for (Object attributeName : attributeNames) {
+            normalizedAttributeNames.add(normalizeAttributeName(attributeName.toString()));
+        }
+
+        for (AuthenticationFilterWithParameters autheticationFilterWithParameters : p_filterList) {
+            if (normalizedAttributeNames.containsAll(autheticationFilterWithParameters.getVariableNames())) {
+                tmpAuthenticationFilterWithParameters.add(autheticationFilterWithParameters);
+            }
+        }
+
+        return tmpAuthenticationFilterWithParameters;
+    }
+
+    public static Map<String, String> normalizeAttributeMap(Map<?, ?> attributeValues) {
+        Map<String, String> normalizedAttributeValues = new HashMap<String, String>();
+        for (Map.Entry<?, ?> attributeValueEntry : attributeValues.entrySet()) {
+            String attributeValue = null;
+
+            Object attributeValueEntryValue = attributeValueEntry.getValue();
+            if (attributeValueEntryValue instanceof String[]) {
+                if (ArrayHelper.isNotEmpty((String[]) attributeValueEntryValue)) {
+                    attributeValue = ((String[]) attributeValueEntryValue)[0];
+                }
+            } else if (attributeValueEntryValue instanceof String) {
+                attributeValue = (String) attributeValueEntryValue;
+            } else if (attributeValueEntryValue != null) {
+                attributeValue = attributeValueEntryValue.toString();
+            }
+
+            if (attributeValue != null) {
+                normalizedAttributeValues.put(normalizeAttributeName(attributeValueEntry.getKey().toString()), attributeValue);
+            }
+        }
+        return normalizedAttributeValues;
+    }
+
+    public static String buildFilter(AuthenticationFilterWithParameters authenticationFilterWithParameters, Map<String, String> p_normalizedAttributeValues) {
+        String filter = authenticationFilterWithParameters.getAuthenticationFilter().getFilter();
+        for (IndexedParameter indexedParameter : authenticationFilterWithParameters.getIndexedVariables()) {
+            String attributeValue = p_normalizedAttributeValues.get(indexedParameter.getParamName());
+            if (attributeValue != null) {
+                filter = filter.replace(indexedParameter.getParamIndex(), attributeValue);
+            }
+        }
+        return filter;
+    }
+
+    public <T> String loadEntryDN(PersistenceEntryManager p_manager, Class<T> entryClass, AuthenticationFilterWithParameters authenticationFilterWithParameters, Map<String, String> normalizedAttributeValues) throws SearchException {
+        final String filter = buildFilter(authenticationFilterWithParameters, normalizedAttributeValues);
+
+        Filter ldapFilter = ldapFilterConverter.convertRawLdapFilterToFilter(filter).multiValued(false);
+        List<T> foundEntries = p_manager.findEntries(authenticationFilterWithParameters.getAuthenticationFilter().getBaseDn(), entryClass, ldapFilter, new String[0]);
+
+        if (foundEntries.size() > 1) {
+            log.error("Found more than one entry by filter: '{}'. Entries:\n", ldapFilter, foundEntries);
+            return null;
+        }
+
+        if (!(foundEntries.size() == 1)) {
+            return null;
+        }
+
+        return ((BaseEntry) foundEntries.get(0)).getDn();
+    }
+
+    public String processAuthenticationFilters(Map<?, ?> attributeValues) throws SearchException {
+        if (attributeValues == null) {
+            return null;
+        }
+
+        final List<AuthenticationFilterWithParameters> allowedList = filterAttributes ?
+                getAllowedAuthenticationFilters(attributeValues.keySet(), getFilterWithParameters()) :
+                getFilterWithParameters();
+
+        for (AuthenticationFilterWithParameters allowed : allowedList) {
+            String resultDn = processAuthenticationFilter(allowed, attributeValues);
+            if (StringHelper.isNotEmpty(resultDn)) {
+                return resultDn;
+            }
+        }
+
+        return null;
+    }
+
+    public abstract String processAuthenticationFilter(AuthenticationFilterWithParameters p_allowed, Map<?, ?> p_attributeValues) throws SearchException;
+
+    public List<AuthenticationFilterWithParameters> getFilterWithParameters() {
+        return filterWithParameters;
+    }
+
+    public boolean isEnabled() {
+        return enabled;
+    }
+
+    public void setEnabled(boolean p_enabled) {
+        enabled = p_enabled;
+    }
+
+    public boolean isFilterAttributes() {
+        return filterAttributes;
+    }
+
+    public void setFilterAttributes(boolean p_filterAttributes) {
+        filterAttributes = p_filterAttributes;
+    }
+
+    public static String normalizeAttributeName(String attributeName) {
+        return StringHelper.toLowerCase(attributeName.trim());
+    }
+}
diff --git a/oxAuth/Server/src/main/java/org/gluu/oxauth/service/CleanerTimer.java b/oxAuth/Server/src/main/java/org/gluu/oxauth/service/CleanerTimer.java
new file mode 100644
index 00000000..d2322d92
--- /dev/null
+++ b/oxAuth/Server/src/main/java/org/gluu/oxauth/service/CleanerTimer.java
@@ -0,0 +1,230 @@
+/*
+ * oxAuth is available under the MIT License (2008). See http://opensource.org/licenses/MIT for full text.
+ *
+ * Copyright (c) 2014, Gluu
+ */
+
+package org.gluu.oxauth.service;
+
+import java.util.Date;
+import java.util.HashSet;
+import java.util.Map;
+import java.util.Set;
+import java.util.concurrent.TimeUnit;
+import java.util.concurrent.atomic.AtomicBoolean;
+
+import javax.enterprise.context.ApplicationScoped;
+import javax.enterprise.event.Event;
+import javax.enterprise.event.Observes;
+import javax.inject.Inject;
+import javax.inject.Named;
+
+import org.gluu.model.ApplicationType;
+import org.gluu.model.metric.ldap.MetricEntry;
+import org.gluu.oxauth.model.config.StaticConfiguration;
+import org.gluu.oxauth.model.configuration.AppConfiguration;
+import org.gluu.oxauth.model.fido.u2f.DeviceRegistration;
+import org.gluu.oxauth.model.fido.u2f.RegisterRequestMessageLdap;
+import org.gluu.oxauth.model.ldap.ClientAuthorization;
+import org.gluu.oxauth.model.ldap.TokenLdap;
+import org.gluu.oxauth.model.registration.Client;
+import org.gluu.oxauth.model.session.SessionId;
+import org.gluu.oxauth.model.uma.persistence.UmaResource;
+import org.gluu.oxauth.service.fido.u2f.RequestService;
+import org.gluu.oxauth.uma.authorization.UmaPCT;
+import org.gluu.oxauth.uma.service.UmaPctService;
+import org.gluu.oxauth.uma.service.UmaResourceService;
+import org.gluu.persist.PersistenceEntryManager;
+import org.gluu.search.filter.Filter;
+import org.gluu.service.cache.CacheProvider;
+import org.gluu.service.cdi.async.Asynchronous;
+import org.gluu.service.cdi.event.CleanerEvent;
+import org.gluu.service.cdi.event.Scheduled;
+import org.gluu.service.timer.event.TimerEvent;
+import org.gluu.service.timer.schedule.TimerSchedule;
+import org.oxauth.persistence.model.Scope;
+import org.slf4j.Logger;
+
+import com.google.common.base.Stopwatch;
+import com.google.common.collect.Maps;
+
+/**
+ * @author Yuriy Zabrovarnyy
+ * @author Javier Rojas Blum
+ * @version August 9, 2017
+ */
+@ApplicationScoped
+public class CleanerTimer {
+
+    public final static int BATCH_SIZE = 1000;
+    private final static int DEFAULT_INTERVAL = 30; // 30 seconds
+
+    @Inject
+    private Logger log;
+
+    @Inject
+    private PersistenceEntryManager entryManager;
+
+    @Inject
+    private UmaPctService umaPctService;
+
+    @Inject
+    private UmaResourceService umaResourceService;
+
+    @Inject
+    private CacheProvider cacheProvider;
+
+    @Inject
+    @Named("u2fRequestService")
+    private RequestService u2fRequestService;
+
+    @Inject
+    private AppConfiguration appConfiguration;
+
+    @Inject
+    private StaticConfiguration staticConfiguration;
+
+    @Inject
+    private Event<TimerEvent> cleanerEvent;
+
+	@Inject
+	private MetricService metricService;
+
+    private long lastFinishedTime;
+
+    private AtomicBoolean isActive;
+
+    public void initTimer() {
+        log.debug("Initializing Cleaner Timer");
+        this.isActive = new AtomicBoolean(false);
+
+        // Schedule to start cleaner every 30 seconds
+        cleanerEvent.fire(
+                new TimerEvent(new TimerSchedule(DEFAULT_INTERVAL, DEFAULT_INTERVAL), new CleanerEvent(), Scheduled.Literal.INSTANCE));
+
+        this.lastFinishedTime = System.currentTimeMillis();
+    }
+
+    @Asynchronous
+    public void process(@Observes @Scheduled CleanerEvent cleanerEvent) {
+        if (this.isActive.get()) {
+            return;
+        }
+
+        if (!this.isActive.compareAndSet(false, true)) {
+            return;
+        }
+
+        try {
+            processImpl();
+        } finally {
+            this.isActive.set(false);
+        }
+    }
+
+    private boolean isStartProcess() {
+        int interval = appConfiguration.getCleanServiceInterval();
+        if (interval < 0) {
+            log.info("Cleaner Timer is disabled.");
+            log.warn("Cleaner Timer Interval (cleanServiceInterval in oxauth configuration) is negative which turns OFF internal clean up by the server. Please set it to positive value if you wish internal clean up timer run.");
+            return false;
+        }
+
+        long cleaningInterval = interval * 1000;
+
+        long timeDiffrence = System.currentTimeMillis() - this.lastFinishedTime;
+
+        return timeDiffrence >= cleaningInterval;
+    }
+
+    public void processImpl() {
+        try {
+            if (!isStartProcess()) {
+                log.trace("Starting conditions aren't reached");
+                return;
+            }
+
+            int chunkSize = appConfiguration.getCleanServiceBatchChunkSize();
+            if (chunkSize <= 0)
+                chunkSize = BATCH_SIZE;
+
+            Date now = new Date();
+
+            final Set<String> processedBaseDns = new HashSet<>();
+            for (Map.Entry<String, Class<?>> baseDn : createCleanServiceBaseDns().entrySet()) {
+                try {
+                    if (entryManager.hasExpirationSupport(baseDn.getKey())) {
+                        continue;
+                    }
+
+                    String processedBaseDn = baseDn.getKey() + "_" + (baseDn.getValue() == null ? "" : baseDn.getValue().getSimpleName());
+                    if (processedBaseDns.contains(processedBaseDn)) {
+                        log.warn("baseDn: {}, already processed. Please fix cleaner configuration! Skipping second run...", baseDn);
+                        continue;
+                    }
+
+                    processedBaseDns.add(processedBaseDn);
+
+                    log.debug("Start clean up for baseDn: " + baseDn.getValue() + ", class: " + baseDn.getValue());
+                    final Stopwatch started = Stopwatch.createStarted();
+
+                    int removed = cleanup(baseDn, now, chunkSize);
+
+                    log.debug("Finished clean up for baseDn: {}, takes: {}ms, removed items: {}", baseDn, started.elapsed(TimeUnit.MILLISECONDS), removed);
+                } catch (Exception e) {
+                    log.error("Failed to process clean up for baseDn: " + baseDn + ", class: " + baseDn.getValue(), e);
+                }
+            }
+
+            processCache(now);
+
+            this.lastFinishedTime = System.currentTimeMillis();
+        } catch (Exception e) {
+            log.error("Failed to process clean up.", e);
+        }
+    }
+
+    private Map<String, Class<?>> createCleanServiceBaseDns() {
+        final String u2fBase = staticConfiguration.getBaseDn().getU2fBase();
+
+        final Map<String, Class<?>> cleanServiceBaseDns = Maps.newHashMap();
+
+        cleanServiceBaseDns.put(staticConfiguration.getBaseDn().getClients(), Client.class);
+        cleanServiceBaseDns.put(umaPctService.branchBaseDn(), UmaPCT.class);
+        cleanServiceBaseDns.put(umaResourceService.getBaseDnForResource(), UmaResource.class);
+        cleanServiceBaseDns.put(String.format("ou=registration_requests,%s", u2fBase), RegisterRequestMessageLdap.class);
+        cleanServiceBaseDns.put(String.format("ou=registered_devices,%s", u2fBase), DeviceRegistration.class);
+        // cleanServiceBaseDns.put(staticConfiguration.getBaseDn().getPeople(), User.class);
+        cleanServiceBaseDns.put(metricService.buildDn(null, null, ApplicationType.OX_AUTH), MetricEntry.class);
+        cleanServiceBaseDns.put(staticConfiguration.getBaseDn().getTokens(), TokenLdap.class);
+        cleanServiceBaseDns.put(staticConfiguration.getBaseDn().getAuthorizations(), ClientAuthorization.class);
+        cleanServiceBaseDns.put(staticConfiguration.getBaseDn().getScopes(), Scope.class);
+        cleanServiceBaseDns.put(staticConfiguration.getBaseDn().getSessions(), SessionId.class);
+
+        return cleanServiceBaseDns;
+    }
+
+    public int cleanup(final Map.Entry<String, Class<?>> baseDn, final Date now, final int batchSize) {
+        try {
+            Filter filter = Filter.createANDFilter(
+                    Filter.createEqualityFilter("del", true),
+                    Filter.createLessOrEqualFilter("exp", entryManager.encodeTime(baseDn.getKey(), now)));
+
+            int removedCount = entryManager.remove(baseDn.getKey(), baseDn.getValue(), filter, batchSize);
+            log.trace("Removed " + removedCount + " entries from " + baseDn.getKey());
+            return removedCount;
+        } catch (Exception e) {
+            log.error("Failed to perform clean up.", e);
+        }
+
+        return 0;
+    }
+
+    private void processCache(Date now) {
+        try {
+            cacheProvider.cleanup(now);
+        } catch (Exception e) {
+            log.error("Failed to clean up cache.", e);
+        }
+    }
+}
diff --git a/oxAuth/Server/src/main/java/org/gluu/oxauth/service/ClientAuthorizationsService.java b/oxAuth/Server/src/main/java/org/gluu/oxauth/service/ClientAuthorizationsService.java
new file mode 100644
index 00000000..4ab4316d
--- /dev/null
+++ b/oxAuth/Server/src/main/java/org/gluu/oxauth/service/ClientAuthorizationsService.java
@@ -0,0 +1,173 @@
+/*
+ * oxAuth is available under the MIT License (2008). See http://opensource.org/licenses/MIT for full text.
+ *
+ * Copyright (c) 2014, Gluu
+ */
+
+package org.gluu.oxauth.service;
+
+import org.apache.commons.lang3.ArrayUtils;
+import org.gluu.oxauth.model.config.StaticConfiguration;
+import org.gluu.oxauth.model.configuration.AppConfiguration;
+import org.gluu.oxauth.model.ldap.ClientAuthorization;
+import org.gluu.oxauth.model.registration.Client;
+import org.gluu.persist.PersistenceEntryManager;
+import org.gluu.persist.exception.EntryPersistenceException;
+import org.gluu.persist.model.base.SimpleBranch;
+import org.gluu.search.filter.Filter;
+import org.gluu.util.StringHelper;
+import org.slf4j.Logger;
+
+import javax.inject.Inject;
+import javax.inject.Named;
+import java.util.Arrays;
+import java.util.HashSet;
+import java.util.List;
+import java.util.Set;
+
+/**
+ * @author Javier Rojas Blum
+ * @version March 4, 2020
+ */
+@Named
+public class ClientAuthorizationsService {
+
+    @Inject
+    private Logger log;
+
+    @Inject
+    private PersistenceEntryManager ldapEntryManager;
+
+    @Inject
+    private ClientService clientService;
+
+    @Inject
+    private StaticConfiguration staticConfiguration;
+
+    @Inject
+    private AppConfiguration appConfiguration;
+
+    public void addBranch() {
+        SimpleBranch branch = new SimpleBranch();
+        branch.setOrganizationalUnitName("authorizations");
+        branch.setDn(createDn(null));
+
+        ldapEntryManager.persist(branch);
+    }
+
+    public boolean containsBranch() {
+        return ldapEntryManager.contains(createDn(null), SimpleBranch.class);
+    }
+
+    public void prepareBranch() {
+        String baseDn = createDn(null);
+        if (!ldapEntryManager.hasBranchesSupport(baseDn)) {
+        	return;
+        }
+
+        // Create client authorizations branch if needed
+        if (!containsBranch()) {
+            addBranch();
+        }
+    }
+
+    public ClientAuthorization find(String userInum, String clientId) {
+        prepareBranch();
+
+        final String id = createId(userInum, clientId);
+        try {
+            if (appConfiguration.getClientAuthorizationBackwardCompatibility()) {
+                return findToRemoveIn50(userInum, clientId);
+            }
+            return ldapEntryManager.find(ClientAuthorization.class, createDn(createId(userInum, clientId)));
+        } catch (EntryPersistenceException e) {
+            log.trace("Unable to find client persistence for {}", id);
+            return null;
+        } catch (Exception e) {
+            log.error(e.getMessage(), e);
+            return null;
+        }
+    }
+
+    // old version should should be removed in 5.0 version. (We have to fetch entry by key instead of query to improve performance)
+    public ClientAuthorization findToRemoveIn50(String userInum, String clientId) {
+        Filter filter = Filter.createANDFilter(
+                Filter.createEqualityFilter("oxAuthClientId", clientId),
+                Filter.createEqualityFilter("oxAuthUserId", userInum)
+        );
+
+        List<ClientAuthorization> entries = ldapEntryManager.findEntries(staticConfiguration.getBaseDn().getAuthorizations(), ClientAuthorization.class, filter);
+        if (entries != null && !entries.isEmpty()) {
+            if (entries.size() > 1) {
+                for (ClientAuthorization entry : entries) {
+                    if (entry.getId().equals(createId(entry.getUserId(), entry.getClientId()))) {
+                        return entry; // return entry where id fits to "userId + _ + clientId" pattern
+                    }
+                }
+            }
+            return entries.get(0);
+        }
+
+        return null;
+    }
+
+    public void clearAuthorizations(ClientAuthorization clientAuthorization, boolean persistInPersistence) {
+        if (clientAuthorization == null) {
+            return;
+        }
+
+        if (persistInPersistence) {
+            ldapEntryManager.remove(clientAuthorization);
+        }
+    }
+
+    public void add(String userInum, String clientId, Set<String> scopes) {
+        log.trace("Attempting to add client authorization, scopes:" + scopes + ", clientId: " + clientId + ", userInum: " + userInum);
+        Client client = clientService.getClient(clientId);
+
+
+        // oxAuth #441 Pre-Authorization + Persist Authorizations... don't write anything
+        // If a client has pre-authorization=true, there is no point to create the entry under
+        // ou=clientAuthorizations it will negatively impact performance, grow the size of the
+        // ldap database, and serve no purpose.
+        prepareBranch();
+
+        ClientAuthorization clientAuthorization = find(userInum, clientId);
+
+        if (clientAuthorization == null) {
+            final String id = createId(userInum, clientId);
+
+            clientAuthorization = new ClientAuthorization();
+            clientAuthorization.setId(id);
+            clientAuthorization.setDn(createDn(id));
+            clientAuthorization.setClientId(clientId);
+            clientAuthorization.setUserId(userInum);
+            clientAuthorization.setScopes(scopes.toArray(new String[scopes.size()]));
+            clientAuthorization.setDeletable(!client.getAttributes().getKeepClientAuthorizationAfterExpiration());
+            clientAuthorization.setExpirationDate(client.getExpirationDate());
+            clientAuthorization.setTtl(appConfiguration.getDynamicRegistrationExpirationTime());
+
+            ldapEntryManager.persist(clientAuthorization);
+        } else if (ArrayUtils.isNotEmpty(clientAuthorization.getScopes())) {
+            Set<String> set = new HashSet<>(scopes);
+            set.addAll(Arrays.asList(clientAuthorization.getScopes()));
+
+            if (set.size() != clientAuthorization.getScopes().length) {
+                clientAuthorization.setScopes(set.toArray(new String[set.size()]));
+                ldapEntryManager.merge(clientAuthorization);
+            }
+        }
+    }
+
+    public static String createId(String userId, String clientId) {
+        return userId + "_" + clientId;
+    }
+
+    public String createDn(String oxId) {
+        String baseDn = staticConfiguration.getBaseDn().getAuthorizations();
+        if (StringHelper.isEmpty(oxId)) {
+            return baseDn;
+        }
+        return String.format("oxId=%s,%s", oxId, baseDn);
+    }
+}
diff --git a/oxAuth/Server/src/main/java/org/gluu/oxauth/service/ClientFilterService.java b/oxAuth/Server/src/main/java/org/gluu/oxauth/service/ClientFilterService.java
new file mode 100644
index 00000000..e38b90e7
--- /dev/null
+++ b/oxAuth/Server/src/main/java/org/gluu/oxauth/service/ClientFilterService.java
@@ -0,0 +1,53 @@
+/*
+ * oxAuth is available under the MIT License (2008). See http://opensource.org/licenses/MIT for full text.
+ *
+ * Copyright (c) 2014, Gluu
+ */
+
+package org.gluu.oxauth.service;
+
+import java.util.Map;
+
+import javax.annotation.PostConstruct;
+import javax.enterprise.context.ApplicationScoped;
+import javax.inject.Inject;
+
+import org.apache.commons.lang.StringUtils;
+import org.gluu.oxauth.model.configuration.AppConfiguration;
+import org.gluu.oxauth.model.registration.Client;
+import org.gluu.persist.PersistenceEntryManager;
+import org.gluu.persist.exception.operation.SearchException;
+
+/**
+ * @author Yuriy Zabrovarnyy
+ * @author Javier Rojas Blum
+ * @version March 4, 2016
+ */
+@ApplicationScoped
+public class ClientFilterService extends BaseAuthFilterService {
+
+    @Inject
+    private PersistenceEntryManager ldapEntryManager;
+
+    @Inject
+    private AppConfiguration appConfiguration;
+
+    @PostConstruct
+    public void init() {
+        super.init(appConfiguration.getClientAuthenticationFilters(), Boolean.TRUE.equals(appConfiguration.getClientAuthenticationFiltersEnabled()), false);
+    }
+
+    public String processAuthenticationFilter(AuthenticationFilterWithParameters authenticationFilterWithParameters, Map<?, ?> attributeValues) throws SearchException {
+        if (attributeValues == null) {
+            return null;
+        }
+        final Map<String, String> normalizedAttributeValues = normalizeAttributeMap(attributeValues);
+        final String resultDn = loadEntryDN(ldapEntryManager, Client.class, authenticationFilterWithParameters, normalizedAttributeValues);
+        if (StringUtils.isBlank(resultDn)) {
+            return null;
+        }
+
+        return resultDn;
+    }
+
+}
diff --git a/oxAuth/Server/src/main/java/org/gluu/oxauth/service/ClientService.java b/oxAuth/Server/src/main/java/org/gluu/oxauth/service/ClientService.java
new file mode 100644
index 00000000..4ba71dac
--- /dev/null
+++ b/oxAuth/Server/src/main/java/org/gluu/oxauth/service/ClientService.java
@@ -0,0 +1,355 @@
+/*
+ * oxAuth is available under the MIT License (2008). See http://opensource.org/licenses/MIT for full text.
+ *
+ * Copyright (c) 2014, Gluu
+ */
+
+package org.gluu.oxauth.service;
+
+import com.google.common.base.Preconditions;
+import com.google.common.collect.Sets;
+import org.gluu.oxauth.model.common.AuthenticationMethod;
+import org.gluu.oxauth.model.config.StaticConfiguration;
+import org.gluu.oxauth.model.configuration.AppConfiguration;
+import org.gluu.oxauth.model.exception.InvalidClaimException;
+import org.gluu.oxauth.model.registration.Client;
+import org.gluu.oxauth.service.common.EncryptionService;
+import org.gluu.persist.PersistenceEntryManager;
+import org.gluu.persist.exception.EntryPersistenceException;
+import org.gluu.persist.model.base.CustomAttribute;
+import org.gluu.persist.model.base.CustomEntry;
+import org.gluu.service.BaseCacheService;
+import org.gluu.service.CacheService;
+import org.gluu.service.LocalCacheService;
+import org.gluu.util.StringHelper;
+import org.gluu.util.security.StringEncrypter;
+import org.gluu.util.security.StringEncrypter.EncryptionException;
+import org.json.JSONArray;
+import org.oxauth.persistence.model.Scope;
+import org.slf4j.Logger;
+
+import javax.enterprise.context.ApplicationScoped;
+import javax.inject.Inject;
+import java.util.*;
+
+/**
+ * Provides operations with clients.
+ *
+ * @author Javier Rojas Blum
+ * @author Yuriy Movchan Date: 04/15/2014
+ * @version October 22, 2016
+ */
+@ApplicationScoped
+public class ClientService {
+
+	public static final String[] CLIENT_OBJECT_CLASSES = new String[] { "oxAuthClient" };
+
+	@Inject
+	private Logger log;
+
+	@Inject
+	private PersistenceEntryManager ldapEntryManager;
+
+	@Inject
+	private CacheService cacheService;
+
+    @Inject
+    private LocalCacheService localCacheService;
+
+	@Inject
+	private ScopeService scopeService;
+
+	@Inject
+	private EncryptionService encryptionService;
+
+	@Inject
+	private AppConfiguration appConfiguration;
+
+	@Inject
+	private StaticConfiguration staticConfiguration;
+
+	public void persist(Client client) {
+		ldapEntryManager.persist(client);
+	}
+
+	public void merge(Client client) {
+		ldapEntryManager.merge(client);
+		removeFromCache(client);
+	}
+
+	/**
+	 * Authenticate client.
+	 *
+	 * @param clientId
+	 *            Client inum.
+	 * @param password
+	 *            Client password.
+	 * @return <code>true</code> if success, otherwise <code>false</code>.
+	 */
+	public boolean authenticate(String clientId, String password) {
+		log.debug("Authenticating Client with LDAP: clientId = {}", clientId);
+		boolean authenticated = false;
+
+		try {
+			Client client = getClient(clientId);
+			if (client == null) {
+				log.debug("Failed to find client = {}", clientId);
+				return authenticated;
+			}
+			String decryptedClientSecret = decryptSecret(client.getClientSecret());
+			authenticated = client != null && decryptedClientSecret != null && decryptedClientSecret.equals(password);
+		} catch (StringEncrypter.EncryptionException e) {
+			log.error(e.getMessage(), e);
+		}
+
+		return authenticated;
+	}
+
+	public Set<Client> getClient(Collection<String> clientIds, boolean silent) {
+		Set<Client> set = Sets.newHashSet();
+
+		if (clientIds == null) {
+			return set;
+		}
+
+		for (String clientId : clientIds) {
+			try {
+				Client client = getClient(clientId);
+				if (client != null) {
+					set.add(client);
+				}
+			} catch (RuntimeException e) {
+				if (!silent) {
+					throw e;
+				}
+			}
+		}
+		return set;
+	}
+
+	public Client getClient(String clientId) {
+		if (clientId != null && !clientId.isEmpty()) {
+			Client result = getClientByDn(buildClientDn(clientId));
+			log.debug("Found {} entries for client id = {}", result != null ? 1 : 0, clientId);
+
+			return result;
+		}
+		return null;
+	}
+
+	public boolean isPublic(String clientId) {
+	    return isPublic(getClient(clientId));
+    }
+
+	public boolean isPublic(Client client) {
+	    return client != null && client.getAuthenticationMethod() == AuthenticationMethod.NONE;
+    }
+
+	public Client getClient(String clientId, String registrationAccessToken) {
+        final Client client = getClient(clientId);
+        if (client != null && registrationAccessToken != null && registrationAccessToken.equals(client.getRegistrationAccessToken())) {
+            return client;
+        }
+		return null;
+	}
+
+	public Set<Client> getClientsByDns(Collection<String> dnList) {
+		return getClientsByDns(dnList, true);
+	}
+
+	public Set<Client> getClientsByDns(Collection<String> dnList, boolean silently) {
+		Preconditions.checkNotNull(dnList);
+
+		final Set<Client> result = Sets.newHashSet();
+		for (String clientDn : dnList) {
+			try {
+				result.add(getClientByDn(clientDn));
+			} catch (RuntimeException e) {
+				if (!silently) {
+					throw e;
+				}
+			}
+		}
+		return result;
+	}
+
+	/**
+	 * Returns client by DN.
+	 *
+	 * @param dn
+	 *            dn of client
+	 * @return Client
+	 */
+	public Client getClientByDn(String dn) {
+		BaseCacheService usedCacheService = getCacheService();
+	    try {
+            return usedCacheService.getWithPut(dn, () -> ldapEntryManager.find(Client.class, dn), 60);
+        } catch (Exception e) {
+	        log.trace(e.getMessage(), e);
+	        return null;
+        }
+	}
+
+	public org.gluu.persist.model.base.CustomAttribute getCustomAttribute(Client client, String attributeName) {
+		for (org.gluu.persist.model.base.CustomAttribute customAttribute : client.getCustomAttributes()) {
+			if (StringHelper.equalsIgnoreCase(attributeName, customAttribute.getName())) {
+				return customAttribute;
+			}
+		}
+
+		return null;
+	}
+
+	public void setCustomAttribute(Client client, String attributeName, String attributeValue) {
+		org.gluu.persist.model.base.CustomAttribute customAttribute = getCustomAttribute(client, attributeName);
+
+		if (customAttribute == null) {
+			customAttribute = new org.gluu.persist.model.base.CustomAttribute(attributeName);
+			client.getCustomAttributes().add(customAttribute);
+		}
+
+		customAttribute.setValue(attributeValue);
+	}
+
+	public List<Client> getAllClients(String[] returnAttributes) {
+		String baseDn = staticConfiguration.getBaseDn().getClients();
+
+		List<Client> result = ldapEntryManager.findEntries(baseDn, Client.class, null, returnAttributes);
+
+		return result;
+	}
+
+	public List<Client> getAllClients(String[] returnAttributes, int size) {
+		String baseDn = staticConfiguration.getBaseDn().getClients();
+
+		List<Client> result = ldapEntryManager.findEntries(baseDn, Client.class, null, returnAttributes, size);
+
+		return result;
+	}
+
+	public String buildClientDn(String p_clientId) {
+		final StringBuilder dn = new StringBuilder();
+		dn.append(String.format("inum=%s,", p_clientId));
+		dn.append(staticConfiguration.getBaseDn().getClients()); // ou=clients,o=gluu
+		return dn.toString();
+	}
+
+	public void remove(Client client) {
+		if (client != null) {
+			removeFromCache(client);
+
+			String clientDn = client.getDn();
+			ldapEntryManager.removeRecursively(clientDn, Client.class);
+		}
+	}
+
+	private void removeFromCache(Client client) {
+		BaseCacheService usedCacheService = getCacheService();
+		try {
+			usedCacheService.remove(client.getDn());
+		} catch (Exception e) {
+			log.error("Failed to remove client from cache." + client.getDn(), e);
+		}
+	}
+
+	public void updateAccessTime(Client client, boolean isUpdateLogonTime) {
+		if (!appConfiguration.getUpdateClientAccessTime()) {
+			return;
+		}
+
+		String clientDn = client.getDn();
+
+		CustomEntry customEntry = new CustomEntry();
+		customEntry.setDn(clientDn);
+		customEntry.setCustomObjectClasses(CLIENT_OBJECT_CLASSES);
+
+		Date now = new GregorianCalendar(TimeZone.getTimeZone("UTC")).getTime();
+		String nowDateString = ldapEntryManager.encodeTime(customEntry.getDn(), now);
+
+		CustomAttribute customAttributeLastAccessTime = new CustomAttribute("oxLastAccessTime", nowDateString);
+		customEntry.getCustomAttributes().add(customAttributeLastAccessTime);
+
+		if (isUpdateLogonTime) {
+			CustomAttribute customAttributeLastLogonTime = new CustomAttribute("oxLastLogonTime", nowDateString);
+			customEntry.getCustomAttributes().add(customAttributeLastLogonTime);
+		}
+
+		try {
+			ldapEntryManager.merge(customEntry);
+		} catch (EntryPersistenceException epe) {
+			log.error("Failed to update oxLastAccessTime and oxLastLogonTime of client '{}'", clientDn);
+		}
+
+		removeFromCache(client);
+	}
+
+	public Object getAttribute(Client client, String clientAttribute) throws InvalidClaimException {
+		Object attribute = null;
+
+		if (clientAttribute != null) {
+			if (clientAttribute.equals("displayName")) {
+				attribute = client.getClientName();
+			} else if (clientAttribute.equals("inum")) {
+				attribute = client.getClientId();
+			} else if (clientAttribute.equals("oxAuthAppType")) {
+				attribute = client.getApplicationType();
+			} else if (clientAttribute.equals("oxAuthIdTokenSignedResponseAlg")) {
+				attribute = client.getIdTokenSignedResponseAlg();
+			} else if (clientAttribute.equals("oxAuthRedirectURI") && client.getRedirectUris() != null) {
+				JSONArray array = new JSONArray();
+				for (String redirectUri : client.getRedirectUris()) {
+					array.put(redirectUri);
+				}
+				attribute = array;
+			} else if (clientAttribute.equals("oxAuthScope") && client.getScopes() != null) {
+				JSONArray array = new JSONArray();
+				for (String scopeDN : client.getScopes()) {
+					Scope s = scopeService.getScopeByDn(scopeDN);
+					if (s != null) {
+						String scopeName = s.getId();
+						array.put(scopeName);
+					}
+				}
+				attribute = array;
+			} else {
+				for (CustomAttribute customAttribute : client.getCustomAttributes()) {
+					if (customAttribute.getName().equals(clientAttribute)) {
+						List<String> values = customAttribute.getValues();
+						if (values != null) {
+							if (values.size() == 1) {
+								attribute = values.get(0);
+							} else {
+								JSONArray array = new JSONArray();
+								for (String v : values) {
+									array.put(v);
+								}
+								attribute = array;
+							}
+						}
+
+						break;
+					}
+				}
+			}
+		}
+
+		return attribute;
+	}
+
+	public String decryptSecret(String encryptedClientSecret) throws EncryptionException {
+		return encryptionService.decrypt(encryptedClientSecret);
+	}
+
+	public String encryptSecret(String clientSecret) throws EncryptionException {
+		return encryptionService.encrypt(clientSecret);
+	}
+
+    private BaseCacheService getCacheService() {
+    	if (appConfiguration.getUseLocalCache()) {
+    		return localCacheService;
+    	}
+    	
+    	return cacheService;
+    }
+
+}
\ No newline at end of file
diff --git a/oxAuth/Server/src/main/java/org/gluu/oxauth/service/CookieService.java b/oxAuth/Server/src/main/java/org/gluu/oxauth/service/CookieService.java
new file mode 100644
index 00000000..77322303
--- /dev/null
+++ b/oxAuth/Server/src/main/java/org/gluu/oxauth/service/CookieService.java
@@ -0,0 +1,333 @@
+package org.gluu.oxauth.service;
+
+import com.google.common.collect.Sets;
+import org.apache.commons.lang.StringUtils;
+import org.gluu.oxauth.model.config.ConfigurationFactory;
+import org.gluu.oxauth.model.configuration.AppConfiguration;
+import org.gluu.oxauth.model.session.SessionId;
+import org.gluu.oxauth.model.session.SessionIdState;
+import org.gluu.persist.exception.EntryPersistenceException;
+import org.gluu.service.cdi.util.CdiUtil;
+import org.json.JSONArray;
+import org.json.JSONException;
+import org.slf4j.Logger;
+
+import javax.enterprise.context.ApplicationScoped;
+import javax.enterprise.context.RequestScoped;
+import javax.faces.context.ExternalContext;
+import javax.faces.context.FacesContext;
+import javax.inject.Inject;
+import javax.servlet.http.Cookie;
+import javax.servlet.http.HttpServletRequest;
+import javax.servlet.http.HttpServletResponse;
+import java.text.DateFormat;
+import java.text.SimpleDateFormat;
+import java.util.Calendar;
+import java.util.Set;
+
+import static org.gluu.oxauth.model.util.StringUtils.toList;
+
+/**
+ * @author Yuriy Zabrovarnyy
+ */
+@RequestScoped
+public class CookieService {
+
+    private static final String SESSION_STATE_COOKIE_NAME = "session_state";
+    public static final String OP_BROWSER_STATE = "opbs";
+    public static final String SESSION_ID_COOKIE_NAME = "session_id";
+    private static final String RP_ORIGIN_ID_COOKIE_NAME = "rp_origin_id";
+    private static final String UMA_SESSION_ID_COOKIE_NAME = "uma_session_id";
+    public static final String CONSENT_SESSION_ID_COOKIE_NAME = "consent_session_id";
+    public static final String CURRENT_SESSIONS_COOKIE_NAME = "current_sessions";
+
+    @Inject
+    private Logger log;
+
+    @Inject
+    private FacesContext facesContext;
+
+    @Inject
+    private ExternalContext externalContext;
+
+    @Inject
+    private ConfigurationFactory configurationFactory;
+
+    @Inject
+    private AppConfiguration appConfiguration;
+
+    public String getSessionIdFromCookie(HttpServletRequest request) {
+        return getValueFromCookie(request, SESSION_ID_COOKIE_NAME);
+    }
+
+    public String getUmaSessionIdFromCookie(HttpServletRequest request) {
+        return getValueFromCookie(request, UMA_SESSION_ID_COOKIE_NAME);
+    }
+
+    public String getConsentSessionIdFromCookie(HttpServletRequest request) {
+        return getValueFromCookie(request, CONSENT_SESSION_ID_COOKIE_NAME);
+    }
+
+    public String getSessionStateFromCookie(HttpServletRequest request) {
+        return getValueFromCookie(request, SESSION_STATE_COOKIE_NAME);
+    }
+
+    public Set<String> getCurrentSessions() {
+        try {
+            if (facesContext == null) {
+                return null;
+            }
+            final HttpServletRequest request = (HttpServletRequest) externalContext.getRequest();
+            if (request != null) {
+                return getCurrentSessions(request);
+            } else {
+                log.trace("Faces context returns null for http request object.");
+            }
+        } catch (Exception e) {
+            log.error(e.getMessage(), e);
+        }
+
+        return null;
+    }
+
+    public Set<String> getCurrentSessions(HttpServletRequest request) {
+        final String valueFromCookie = getValueFromCookie(request, CURRENT_SESSIONS_COOKIE_NAME);
+        if (StringUtils.isBlank(valueFromCookie)) {
+            return Sets.newHashSet();
+        }
+
+        try {
+            return Sets.newHashSet(toList(new JSONArray(valueFromCookie)));
+        } catch (JSONException e) {
+            log.error("Failed to parse current_sessions, value: " + valueFromCookie, e);
+            return Sets.newHashSet();
+        }
+    }
+
+    public void addCurrentSessionCookie(SessionId sessionId, HttpServletRequest request, HttpServletResponse httpResponse) {
+        final Set<String> currentSessions = getCurrentSessions(request);
+        removeOutdatedCurrentSessions(currentSessions, sessionId);
+        currentSessions.add(sessionId.getId());
+
+        String header = CURRENT_SESSIONS_COOKIE_NAME + "=" + new JSONArray(currentSessions).toString();
+        header += "; Path=/";
+        header += "; Secure";
+        header += "; HttpOnly";
+
+        createCookie(header, httpResponse);
+    }
+
+    private void removeOutdatedCurrentSessions(Set<String> currentSessions, SessionId session) {
+        if (session != null) {
+            final String oldSessionId = session.getSessionAttributes().get(SessionId.OLD_SESSION_ID_ATTR_KEY);
+            if (StringUtils.isNotBlank(oldSessionId)) {
+                currentSessions.remove(oldSessionId);
+            }
+        }
+
+        if (currentSessions.isEmpty()) {
+            return;
+        }
+
+        SessionIdService sessionIdService = CdiUtil.bean(SessionIdService.class); // avoid cycle dependency
+
+        Set<String> toRemove = Sets.newHashSet();
+        for (String sessionId : currentSessions) {
+            SessionId sessionIdObject = null;
+            try {
+                sessionIdObject = sessionIdService.getSessionId(sessionId, true);
+            } catch (EntryPersistenceException e) {
+                // ignore - valid case if session is outdated
+            }
+            if (sessionIdObject == null) {
+                toRemove.add(sessionId);
+            }
+        }
+        currentSessions.removeAll(toRemove);
+    }
+
+    public String getValueFromCookie(HttpServletRequest request, String cookieName) {
+        try {
+            final Cookie[] cookies = request.getCookies();
+            if (cookies != null) {
+                for (Cookie cookie : cookies) {
+                    if (cookie.getName().equals(cookieName) /*&& cookie.getSecure()*/) {
+                        log.trace("Found cookie: '{}'", cookie.getValue());
+                        return cookie.getValue();
+                    }
+                }
+            }
+        } catch (Exception e) {
+            log.error(e.getMessage(), e);
+        }
+        return "";
+    }
+
+
+    public String getRpOriginIdCookie() {
+        return getValueFromCookie(RP_ORIGIN_ID_COOKIE_NAME);
+    }
+
+    public String getValueFromCookie(String cookieName) {
+        try {
+            if (facesContext == null) {
+                return null;
+            }
+            final HttpServletRequest request = (HttpServletRequest) externalContext.getRequest();
+            if (request != null) {
+                return getValueFromCookie(request, cookieName);
+            } else {
+                log.trace("Faces context returns null for http request object.");
+            }
+        } catch (Exception e) {
+            log.error(e.getMessage(), e);
+        }
+
+        return null;
+    }
+
+    public String getSessionIdFromCookie() {
+        try {
+            if (facesContext == null) {
+                return null;
+            }
+            final HttpServletRequest request = (HttpServletRequest) externalContext.getRequest();
+            if (request != null) {
+                return getSessionIdFromCookie(request);
+            } else {
+                log.trace("Faces context returns null for http request object.");
+            }
+        } catch (Exception e) {
+            log.error(e.getMessage(), e);
+        }
+
+        return null;
+    }
+
+    public void creatRpOriginIdCookie(String rpOriginId) {
+        try {
+            final Object response = externalContext.getResponse();
+            if (response instanceof HttpServletResponse) {
+                final HttpServletResponse httpResponse = (HttpServletResponse) response;
+
+                creatRpOriginIdCookie(rpOriginId, httpResponse);
+            }
+        } catch (Exception e) {
+            log.error(e.getMessage(), e);
+        }
+    }
+
+    public void creatRpOriginIdCookie(String rpOriginId, HttpServletResponse httpResponse) {
+        String header = RP_ORIGIN_ID_COOKIE_NAME + "=" + rpOriginId;
+        header += "; Path=" + configurationFactory.getContextPath();
+        header += "; Secure";
+        header += "; HttpOnly";
+
+        createCookie(header, httpResponse);
+    }
+
+    public void createCookieWithState(String sessionId, String sessionState, String opbs, HttpServletRequest request, HttpServletResponse httpResponse, String cookieName) {
+        String header = cookieName + "=" + sessionId;
+        header += "; Path=/";
+        header += "; Secure";
+        header += "; HttpOnly";
+
+        createCookie(header, httpResponse);
+
+        createSessionStateCookie(sessionState, httpResponse);
+        createOPBrowserStateCookie(opbs, httpResponse);
+    }
+
+    public void createSessionIdCookie(SessionId sessionId, HttpServletRequest request, HttpServletResponse httpResponse, boolean isUma) {
+        String cookieName = isUma ? UMA_SESSION_ID_COOKIE_NAME : SESSION_ID_COOKIE_NAME;
+        if (!isUma && sessionId.getState() == SessionIdState.AUTHENTICATED) {
+            addCurrentSessionCookie(sessionId, request, httpResponse);
+        }
+        createCookieWithState(sessionId.getId(), sessionId.getSessionState(), sessionId.getOPBrowserState(), request, httpResponse, cookieName);
+    }
+
+    public void createSessionIdCookie(SessionId sessionId, boolean isUma) {
+        try {
+            final Object response = externalContext.getResponse();
+            final Object request = externalContext.getRequest();
+            if (response instanceof HttpServletResponse && request instanceof HttpServletRequest) {
+                final HttpServletResponse httpResponse = (HttpServletResponse) response;
+                final HttpServletRequest httpRequest = (HttpServletRequest) request;
+
+                createSessionIdCookie(sessionId, httpRequest, httpResponse, isUma);
+            }
+        } catch (Exception e) {
+            log.error(e.getMessage(), e);
+        }
+    }
+
+    public void createSessionStateCookie(String sessionState, HttpServletResponse httpResponse) {
+        // Create the special cookie header with secure flag but not HttpOnly because the session_state
+        // needs to be read from the OP iframe using JavaScript
+        String header = SESSION_STATE_COOKIE_NAME + "=" + sessionState;
+        header += "; Path=/";
+        header += "; Secure";
+
+        createCookie(header, httpResponse);
+    }
+
+    public void createOPBrowserStateCookie(String opbs, HttpServletResponse httpResponse) {
+        // Create the special cookie header with secure flag but not HttpOnly because the opbs
+        // needs to be read from the OP iframe using JavaScript
+        String header = OP_BROWSER_STATE + "=" + opbs;
+        header += "; Path=/";
+        header += "; Secure";
+        Integer sessionStateLifetime = appConfiguration.getSessionIdLifetime();
+        if (sessionStateLifetime != null && sessionStateLifetime > 0) {
+            DateFormat formatter = new SimpleDateFormat("E, dd MMM yyyy HH:mm:ss Z");
+            Calendar expirationDate = Calendar.getInstance();
+            expirationDate.add(Calendar.SECOND, sessionStateLifetime);
+            header += "; Expires=" + formatter.format(expirationDate.getTime()) + ";";
+            if (StringUtils.isNotBlank(appConfiguration.getCookieDomain())) {
+                header += "Domain=" + appConfiguration.getCookieDomain() + ";";
+            }
+        }
+        httpResponse.addHeader("Set-Cookie", header);
+    }
+
+    protected void createCookie(String header, HttpServletResponse httpResponse) {
+        Integer sessionStateLifetime = appConfiguration.getSessionIdLifetime();
+        if (sessionStateLifetime != null && sessionStateLifetime > 0) {
+            DateFormat formatter = new SimpleDateFormat("E, dd MMM yyyy HH:mm:ss Z");
+            Calendar expirationDate = Calendar.getInstance();
+            expirationDate.add(Calendar.SECOND, sessionStateLifetime);
+            header += "; Expires=" + formatter.format(expirationDate.getTime()) + ";";
+            if (StringUtils.isNotBlank(appConfiguration.getCookieDomain())) {
+                header += "Domain=" + appConfiguration.getCookieDomain() + ";";
+            }
+        }
+
+        httpResponse.addHeader("Set-Cookie", header);
+    }
+
+    public void removeSessionIdCookie(HttpServletResponse httpResponse) {
+        removeCookie(SESSION_ID_COOKIE_NAME, httpResponse);
+    }
+
+    public void removeOPBrowserStateCookie(HttpServletResponse httpResponse) {
+        removeCookie(OP_BROWSER_STATE, httpResponse);
+    }
+
+    public void removeUmaSessionIdCookie(HttpServletResponse httpResponse) {
+        removeCookie(UMA_SESSION_ID_COOKIE_NAME, httpResponse);
+    }
+
+    public void removeConsentSessionIdCookie(HttpServletResponse httpResponse) {
+        removeCookie(CONSENT_SESSION_ID_COOKIE_NAME, httpResponse);
+    }
+
+    public void removeCookie(String cookieName, HttpServletResponse httpResponse) {
+        final Cookie cookie = new Cookie(cookieName, null); // Not necessary, but saves bandwidth.
+        cookie.setPath("/");
+        cookie.setMaxAge(0); // Don't set to -1 or it will become a session cookie!
+        if (StringUtils.isNotBlank(appConfiguration.getCookieDomain())) {
+            cookie.setDomain(appConfiguration.getCookieDomain());
+        }
+        httpResponse.addCookie(cookie);
+    }
+}
\ No newline at end of file
diff --git a/oxAuth/Server/src/main/java/org/gluu/oxauth/service/CryptoProviderProviderFactory.java b/oxAuth/Server/src/main/java/org/gluu/oxauth/service/CryptoProviderProviderFactory.java
new file mode 100644
index 00000000..bb9b325d
--- /dev/null
+++ b/oxAuth/Server/src/main/java/org/gluu/oxauth/service/CryptoProviderProviderFactory.java
@@ -0,0 +1,48 @@
+package org.gluu.oxauth.service;
+
+import javax.enterprise.context.ApplicationScoped;
+import javax.enterprise.inject.Produces;
+import javax.inject.Inject;
+import javax.inject.Named;
+
+import org.gluu.oxauth.model.common.WebKeyStorage;
+import org.gluu.oxauth.model.configuration.AppConfiguration;
+import org.gluu.oxauth.model.crypto.AbstractCryptoProvider;
+import org.slf4j.Logger;
+
+/**
+ * Crypto Provider
+ * 
+ * @author Yuriy Movchan
+ * @version 11/02/2018
+ */
+@ApplicationScoped
+@Named
+public class CryptoProviderProviderFactory {
+
+    @Inject
+    private Logger log;
+
+    @Inject
+    private AppConfiguration appConfiguration;
+
+    @Produces
+    @ApplicationScoped
+    public AbstractCryptoProvider getCryptoProvider() throws Exception {
+        log.debug("Started to create crypto provider");
+
+        WebKeyStorage webKeyStorage = appConfiguration.getWebKeysStorage();
+        if (webKeyStorage == null) {
+            throw new RuntimeException("Failed to initialize cryptoProvider, cryptoProviderType is not specified!");
+        }
+
+        AbstractCryptoProvider cryptoProvider = org.gluu.oxauth.model.crypto.CryptoProviderFactory.getCryptoProvider(appConfiguration);
+
+        if (cryptoProvider == null) {
+            throw new RuntimeException("Failed to initialize cryptoProvider, cryptoProviderType is unsupported: " + webKeyStorage);
+        }
+
+        return cryptoProvider;
+    }
+
+}
diff --git a/oxAuth/Server/src/main/java/org/gluu/oxauth/service/DeviceAuthorizationService.java b/oxAuth/Server/src/main/java/org/gluu/oxauth/service/DeviceAuthorizationService.java
new file mode 100644
index 00000000..f9e652e6
--- /dev/null
+++ b/oxAuth/Server/src/main/java/org/gluu/oxauth/service/DeviceAuthorizationService.java
@@ -0,0 +1,183 @@
+/*
+ * oxAuth is available under the MIT License (2008). See http://opensource.org/licenses/MIT for full text.
+ *
+ * Copyright (c) 2014, Gluu
+ */
+
+package org.gluu.oxauth.service;
+
+import org.apache.commons.lang.StringUtils;
+import org.gluu.oxauth.model.authorize.AuthorizeErrorResponseType;
+import org.gluu.oxauth.model.common.DeviceAuthorizationCacheControl;
+import org.gluu.oxauth.model.common.DeviceAuthorizationStatus;
+import org.gluu.oxauth.model.common.GrantType;
+import org.gluu.oxauth.model.configuration.AppConfiguration;
+import org.gluu.oxauth.model.error.ErrorResponseFactory;
+import org.gluu.oxauth.model.registration.Client;
+import org.gluu.oxauth.model.session.SessionId;
+import org.gluu.service.CacheService;
+import org.slf4j.Logger;
+
+import javax.enterprise.context.ApplicationScoped;
+import javax.inject.Inject;
+import javax.servlet.http.HttpServletRequest;
+import javax.ws.rs.WebApplicationException;
+import javax.ws.rs.core.MediaType;
+import javax.ws.rs.core.Response;
+import javax.ws.rs.core.UriBuilder;
+import java.io.Serializable;
+import java.net.URI;
+import java.util.Map;
+
+/**
+ * Service used to process data related to device code grant type.
+ */
+@ApplicationScoped
+public class DeviceAuthorizationService implements Serializable {
+
+    public static final String SESSION_ATTEMPTS = "attemps";
+    public static final String SESSION_LAST_ATTEMPT = "last_attempt";
+    public static final String SESSION_USER_CODE = "user_code";
+
+    @Inject
+    private Logger log;
+
+    @Inject
+    private AppConfiguration appConfiguration;
+
+    @Inject
+    private CacheService cacheService;
+
+    @Inject
+    private ErrorResponseFactory errorResponseFactory;
+
+    @Inject
+    private SessionIdService sessionIdService;
+
+    /**
+     * Saves data in cache, it could be saved with two identifiers used by Token endpoint or device_authorization page.
+     * @param data Data to be saved.
+     * @param saveDeviceCode Defines whether data should be saved using device code.
+     * @param saveUserCode Defines whether data should be saved using user code.
+     */
+    public void saveInCache(DeviceAuthorizationCacheControl data, boolean saveDeviceCode, boolean saveUserCode) {
+        if (saveDeviceCode) {
+            cacheService.put(data.getExpiresIn(), data.getDeviceCode(), data);
+        }
+        if (saveUserCode) {
+            cacheService.put(data.getExpiresIn(), data.getUserCode(), data);
+        }
+        log.trace("Device request saved in cache, userCode: {}, deviceCode: {}, clientId: {}", data.getUserCode(), data.getDeviceCode(), data.getClient().getClientId());
+    }
+
+    /**
+     * Returns cache data related to the device authz request using device_code as cache key.
+     */
+    public DeviceAuthorizationCacheControl getDeviceAuthzByUserCode(String userCode) {
+        Object cachedObject = cacheService.get(userCode);
+        if (cachedObject == null) {
+            // retry one time : sometimes during high load cache client may be not fast enough
+            cachedObject = cacheService.get(userCode);
+            log.trace("Failed to fetch DeviceAuthorizationCacheControl request from cache, cacheKey: {}", userCode);
+        }
+        return cachedObject instanceof DeviceAuthorizationCacheControl ? (DeviceAuthorizationCacheControl) cachedObject : null;
+    }
+
+    /**
+     * Returns cache data related to the device authz request using user_code as cache key.
+     */
+    public DeviceAuthorizationCacheControl getDeviceAuthzByDeviceCode(String deviceCode) {
+        Object cachedObject = cacheService.get(deviceCode);
+        if (cachedObject == null) {
+            // retry one time : sometimes during high load cache client may be not fast enough
+            cachedObject = cacheService.get(deviceCode);
+            log.trace("Failed to fetch DeviceAuthorizationCacheControl request from cache, cacheKey: {}", deviceCode);
+        }
+        return cachedObject instanceof DeviceAuthorizationCacheControl ? (DeviceAuthorizationCacheControl) cachedObject : null;
+    }
+
+    /**
+     * Verifies whether a specific client has Device Code grant type compatibility.
+     *
+     * @param client Client to check.
+     */
+    public boolean hasDeviceCodeCompatibility(Client client) {
+        for (GrantType gt : client.getGrantTypes()) {
+            if (gt.getValue().equals(GrantType.DEVICE_CODE.getValue())) {
+                return true;
+            }
+        }
+        return false;
+    }
+
+    /**
+     * Validates data related to the cache, status and client in order to return correct redirection
+     * used to process device authorizations.
+     *
+     * @param deviceAuthorizationCacheControl Cache data related to the device code request.
+     * @param client Client in process.
+     * @param state State of the authorization request.
+     * @param servletRequest HttpServletRequest
+     */
+    public String getDeviceAuthorizationPage(DeviceAuthorizationCacheControl deviceAuthorizationCacheControl, Client client,
+                                             String state, HttpServletRequest servletRequest) {
+        if (deviceAuthorizationCacheControl == null) {
+            throw new WebApplicationException(Response
+                .status(Response.Status.BAD_REQUEST)
+                .entity(errorResponseFactory.getErrorAsJson(AuthorizeErrorResponseType.INVALID_REQUEST, state, "Request not processed."))
+                .type(MediaType.APPLICATION_JSON_TYPE)
+                .build());
+        }
+        if (deviceAuthorizationCacheControl.getStatus() != DeviceAuthorizationStatus.PENDING) {
+            throw new WebApplicationException(Response
+                .status(Response.Status.BAD_REQUEST)
+                .entity(errorResponseFactory.getErrorAsJson(AuthorizeErrorResponseType.INVALID_REQUEST, state, "Request already processed."))
+                .type(MediaType.APPLICATION_JSON_TYPE)
+                .build());
+        }
+        if (!deviceAuthorizationCacheControl.getClient().getClientId().equals(client.getClientId())) {
+            throw new WebApplicationException(Response
+                    .status(Response.Status.BAD_REQUEST)
+                    .entity(errorResponseFactory.getErrorAsJson(AuthorizeErrorResponseType.UNAUTHORIZED_CLIENT, state, "Client doesn't match."))
+                    .type(MediaType.APPLICATION_JSON_TYPE)
+                    .build());
+        }
+        final URI uri = UriBuilder.fromPath(appConfiguration.getIssuer()).path(servletRequest.getContextPath())
+                .path("/device_authorization.htm").build();
+        return uri.toString();
+    }
+
+    /**
+     * Removes device request data from cache using user_code and device_code.
+     * @param userCode User code used as key in cache.
+     * @param deviceCode Device code used as key in cache.
+     */
+    public void removeDeviceAuthRequestInCache(String userCode, String deviceCode) {
+        try {
+            if (StringUtils.isNotBlank(userCode)) {
+                cacheService.remove(userCode);
+            }
+            if (StringUtils.isNotBlank(deviceCode)) {
+                cacheService.remove(deviceCode);
+            }
+            log.debug("Removed from cache device authorization using user_code: {}, device_code: {}", userCode, deviceCode);
+        } catch (Exception e) {
+            log.error(e.getMessage(), e);
+        }
+    }
+
+    /**
+     * Uses an HttpServletRequest, process it and return userCode in the session whether it exists.
+     * @param httpRequest Request received from an user agent.
+     */
+    public String getUserCodeFromSession(HttpServletRequest httpRequest) {
+        SessionId sessionId = sessionIdService.getSessionId(httpRequest);
+        if (sessionId != null) {
+            final Map<String, String> sessionAttributes = sessionId.getSessionAttributes();
+            if (sessionAttributes.containsKey(SESSION_USER_CODE)) {
+                return sessionAttributes.get(SESSION_USER_CODE);
+            }
+        }
+        return null;
+    }
+}
diff --git a/oxAuth/Server/src/main/java/org/gluu/oxauth/service/ErrorHandlerService.java b/oxAuth/Server/src/main/java/org/gluu/oxauth/service/ErrorHandlerService.java
new file mode 100644
index 00000000..d8351951
--- /dev/null
+++ b/oxAuth/Server/src/main/java/org/gluu/oxauth/service/ErrorHandlerService.java
@@ -0,0 +1,95 @@
+/*
+ * oxAuth is available under the MIT License (2008). See http://opensource.org/licenses/MIT for full text.
+ *
+ * Copyright (c) 2014, Gluu
+ */
+
+package org.gluu.oxauth.service;
+
+import org.gluu.jsf2.message.FacesMessages;
+import org.gluu.jsf2.service.FacesService;
+import org.gluu.oxauth.model.configuration.AppConfiguration;
+import org.gluu.oxauth.model.error.ErrorHandlingMethod;
+import org.gluu.oxauth.model.error.ErrorResponseFactory;
+import org.gluu.oxauth.model.error.IErrorType;
+import org.gluu.oxauth.util.RedirectUri;
+import org.gluu.util.StringHelper;
+import org.slf4j.Logger;
+
+import javax.enterprise.context.ApplicationScoped;
+import javax.faces.application.FacesMessage;
+import javax.faces.application.FacesMessage.Severity;
+import javax.inject.Inject;
+import javax.inject.Named;
+
+/**
+ * Helper service to generate either error response or local error based on application settings
+ *
+ * @author Yuriy Movchan Date: 12/07/2018
+ */
+@ApplicationScoped
+@Named
+public class ErrorHandlerService {
+
+    @Inject
+    private Logger log;
+
+    @Inject
+    private SessionIdService sessionIdService;
+
+    @Inject
+    private CookieService cookieService;
+
+    @Inject
+    private AppConfiguration appConfiguration;
+
+    @Inject
+    private ErrorResponseFactory errorResponseFactory;
+
+    @Inject
+    private FacesService facesService;
+
+    @Inject
+    private FacesMessages facesMessages;
+
+    public void handleError(String facesMessageId, IErrorType errorType, String hint) {
+        if (ErrorHandlingMethod.REMOTE == appConfiguration.getErrorHandlingMethod()) {
+            handleRemoteError(facesMessageId, errorType, hint);
+        } else {
+            handleLocalError(facesMessageId);
+        }
+    }
+
+    private void addMessage(Severity severity, String facesMessageId) {
+        if (StringHelper.isNotEmpty(facesMessageId)) {
+            facesMessages.add(FacesMessage.SEVERITY_ERROR, String.format("#{msgs['%s']}", facesMessageId));
+        }
+    }
+
+    private void handleLocalError(String facesMessageId) {
+        addMessage(FacesMessage.SEVERITY_ERROR, facesMessageId);
+        facesService.redirect("/error.xhtml");
+    }
+    
+    private void handleRemoteError(String facesMessageId, IErrorType errorType, String hint) {
+        String redirectUri = cookieService.getRpOriginIdCookie();
+        
+        if (StringHelper.isEmpty(redirectUri)) {
+            log.error("Failed to get redirect_uri from cookie");
+            handleLocalError(facesMessageId);
+            return;
+        }
+        
+        RedirectUri redirectUriResponse = new RedirectUri(redirectUri, null, null);
+        redirectUriResponse.parseQueryString(errorResponseFactory.getErrorAsQueryString(
+                errorType, null));
+        if (StringHelper.isNotEmpty(hint)) {
+            redirectUriResponse.addResponseParameter("hint", "Create authorization request to start new authentication session.");
+        }
+        final String redirectTo = redirectUriResponse.toString();
+        log.debug("Redirect to {}", redirectTo);
+        facesService.redirectToExternalURL(redirectTo);
+
+    }
+
+}
diff --git a/oxAuth/Server/src/main/java/org/gluu/oxauth/service/GrantService.java b/oxAuth/Server/src/main/java/org/gluu/oxauth/service/GrantService.java
new file mode 100644
index 00000000..1eb04572
--- /dev/null
+++ b/oxAuth/Server/src/main/java/org/gluu/oxauth/service/GrantService.java
@@ -0,0 +1,374 @@
+/*
+ * oxAuth is available under the MIT License (2008). See http://opensource.org/licenses/MIT for full text.
+ *
+ * Copyright (c) 2014, Gluu
+ */
+
+package org.gluu.oxauth.service;
+
+import com.google.common.collect.Lists;
+import org.apache.commons.lang.BooleanUtils;
+import org.apache.commons.lang.StringUtils;
+import org.gluu.oxauth.model.common.AuthorizationGrant;
+import org.gluu.oxauth.model.common.CacheGrant;
+import org.gluu.oxauth.model.common.ClientTokens;
+import org.gluu.oxauth.model.common.SessionTokens;
+import org.gluu.oxauth.model.config.StaticConfiguration;
+import org.gluu.oxauth.model.configuration.AppConfiguration;
+import org.gluu.oxauth.model.ldap.TokenLdap;
+import org.gluu.oxauth.model.ldap.TokenType;
+import org.gluu.oxauth.model.registration.Client;
+import org.gluu.oxauth.util.TokenHashUtil;
+import org.gluu.persist.PersistenceEntryManager;
+import org.gluu.search.filter.Filter;
+import org.gluu.service.CacheService;
+import org.gluu.service.cache.CacheConfiguration;
+import org.gluu.service.cache.CacheProviderType;
+import org.slf4j.Logger;
+
+import javax.enterprise.context.ApplicationScoped;
+import javax.inject.Inject;
+import java.util.*;
+
+import static org.gluu.oxauth.util.ServerUtil.isTrue;
+
+/**
+ * @author Yuriy Zabrovarnyy
+ * @author Javier Rojas Blum
+ * @version November 28, 2018
+ */
+@ApplicationScoped
+public class GrantService {
+
+    @Inject
+    private Logger log;
+
+    @Inject
+    private PersistenceEntryManager ldapEntryManager;
+
+    @Inject
+    private ClientService clientService;
+
+    @Inject
+    private CacheService cacheService;
+
+    @Inject
+    private StaticConfiguration staticConfiguration;
+
+    @Inject
+    private AppConfiguration appConfiguration;
+
+    @Inject
+    private CacheConfiguration cacheConfiguration;
+
+    public static String generateGrantId() {
+        return UUID.randomUUID().toString();
+    }
+
+    public String buildDn(String p_hashedToken) {
+        return String.format("tknCde=%s,", p_hashedToken) + tokenBaseDn();
+    }
+
+    private String tokenBaseDn() {
+        return staticConfiguration.getBaseDn().getTokens();  // ou=tokens,o=gluu
+    }
+
+    public void merge(TokenLdap p_token) {
+        ldapEntryManager.merge(p_token);
+    }
+
+    public void mergeSilently(TokenLdap p_token) {
+        try {
+            ldapEntryManager.merge(p_token);
+        } catch (Exception e) {
+            log.error(e.getMessage(), e);
+        }
+    }
+
+    private boolean shouldPutInCache(TokenType tokenType, boolean isImplicitFlow) {
+        if (cacheConfiguration.getCacheProviderType() == CacheProviderType.NATIVE_PERSISTENCE) {
+            return false;
+        }
+
+        if (isImplicitFlow && BooleanUtils.isTrue(appConfiguration.getUseCacheForAllImplicitFlowObjects())) {
+            return true;
+        }
+
+        switch (tokenType) {
+            case ID_TOKEN:
+                if (!isTrue(appConfiguration.getPersistIdTokenInLdap())) {
+                    return true;
+                }
+            case REFRESH_TOKEN:
+                if (!isTrue(appConfiguration.getPersistRefreshTokenInLdap())) {
+                    return true;
+                }
+        }
+        return false;
+    }
+
+    public void persist(TokenLdap token) {
+        if (shouldPutInCache(token.getTokenTypeEnum(), token.isImplicitFlow())) {
+            ClientTokens clientTokens = getCacheClientTokens(token.getClientId());
+            clientTokens.getTokenHashes().add(token.getTokenCode());
+
+            int expiration = appConfiguration.getDynamicRegistrationExpirationTime(); // fallback to client's lifetime
+            switch (token.getTokenTypeEnum()) {
+                case ID_TOKEN:
+                    expiration = appConfiguration.getIdTokenLifetime();
+                    break;
+                case REFRESH_TOKEN:
+                    expiration = appConfiguration.getRefreshTokenLifetime();
+                    break;
+                case ACCESS_TOKEN:
+                case LONG_LIVED_ACCESS_TOKEN:
+                    int lifetime = appConfiguration.getAccessTokenLifetime();
+                    Client client = clientService.getClient(token.getClientId());
+                    // oxAuth #830 Client-specific access token expiration
+                    if (client != null && client.getAccessTokenLifetime() != null && client.getAccessTokenLifetime() > 0) {
+                        lifetime = client.getAccessTokenLifetime();
+                    }
+                    expiration = lifetime;
+                    break;
+                case AUTHORIZATION_CODE:
+                    expiration = appConfiguration.getAuthorizationCodeLifetime();
+                    break;
+            }
+
+            token.setIsFromCache(true);
+            cacheService.put(expiration, token.getTokenCode(), token);
+            cacheService.put(expiration, clientTokens.cacheKey(), clientTokens);
+
+            if (StringUtils.isNotBlank(token.getSessionDn())) {
+                SessionTokens sessionTokens = getCacheSessionTokens(token.getSessionDn());
+                sessionTokens.getTokenHashes().add(token.getTokenCode());
+
+                cacheService.put(expiration, sessionTokens.cacheKey(), sessionTokens);
+            }
+            return;
+        }
+
+        ldapEntryManager.persist(token);
+    }
+
+    public ClientTokens getCacheClientTokens(String clientId) {
+        ClientTokens clientTokens = new ClientTokens(clientId);
+        Object o = cacheService.get(clientTokens.cacheKey());
+        if (o instanceof ClientTokens) {
+            return (ClientTokens) o;
+        } else {
+            return clientTokens;
+        }
+    }
+
+    public SessionTokens getCacheSessionTokens(String sessionDn) {
+        SessionTokens sessionTokens = new SessionTokens(sessionDn);
+        Object o = cacheService.get(sessionTokens.cacheKey());
+        if (o instanceof SessionTokens) {
+            return (SessionTokens) o;
+        } else {
+            return sessionTokens;
+        }
+    }
+
+    public void remove(TokenLdap p_token) {
+        if (p_token.isFromCache()) {
+            cacheService.remove(p_token.getTokenCode());
+            log.trace("Removed token from cache, code: " + p_token.getTokenCode());
+        } else {
+            ldapEntryManager.remove(p_token);
+            log.trace("Removed token from LDAP, code: " + p_token.getTokenCode());
+        }
+    }
+
+    public void removeSilently(TokenLdap token) {
+        try {
+            remove(token);
+
+            if (StringUtils.isNotBlank(token.getAuthorizationCode())) {
+                cacheService.remove(CacheGrant.cacheKey(token.getAuthorizationCode(), token.getGrantId()));
+            }
+        } catch (Exception e) {
+            log.error(e.getMessage(), e);
+        }
+    }
+
+    public void remove(List<TokenLdap> p_entries) {
+        if (p_entries != null && !p_entries.isEmpty()) {
+            for (TokenLdap t : p_entries) {
+                try {
+                    remove(t);
+                } catch (Exception e) {
+                    log.error("Failed to remove entry", e);
+                }
+            }
+        }
+    }
+
+    public void removeSilently(List<TokenLdap> p_entries) {
+        if (p_entries != null && !p_entries.isEmpty()) {
+            for (TokenLdap t : p_entries) {
+                removeSilently(t);
+            }
+        }
+    }
+
+    public void remove(AuthorizationGrant p_grant) {
+        if (p_grant != null && p_grant.getTokenLdap() != null) {
+            try {
+                remove(p_grant.getTokenLdap());
+            } catch (Exception e) {
+                log.error(e.getMessage(), e);
+            }
+        }
+    }
+
+    public List<TokenLdap> getGrantsOfClient(String p_clientId) {
+        try {
+            final String baseDn = clientService.buildClientDn(p_clientId);
+            return ldapEntryManager.findEntries(baseDn, TokenLdap.class, Filter.createPresenceFilter("tknCde"));
+        } catch (Exception e) {
+            logException(e);
+        }
+        return Collections.emptyList();
+    }
+
+    public TokenLdap getGrantByCode(String p_code) {
+        Object grant = cacheService.get(TokenHashUtil.hash(p_code));
+        if (grant instanceof TokenLdap) {
+            return (TokenLdap) grant;
+        } else {
+            return load(buildDn(TokenHashUtil.hash(p_code)));
+        }
+    }
+
+    private TokenLdap load(String p_tokenDn) {
+        try {
+            final TokenLdap entry = ldapEntryManager.find(TokenLdap.class, p_tokenDn);
+            return entry;
+        } catch (Exception e) {
+            logException(e);
+        }
+        return null;
+    }
+
+    public List<TokenLdap> getGrantsByGrantId(String p_grantId) {
+        try {
+            return ldapEntryManager.findEntries(tokenBaseDn(), TokenLdap.class, Filter.createEqualityFilter("grtId", p_grantId));
+        } catch (Exception e) {
+            logException(e);
+        }
+        return Collections.emptyList();
+    }
+
+    public List<TokenLdap> getGrantsByAuthorizationCode(String p_authorizationCode) {
+        try {
+            return ldapEntryManager.findEntries(tokenBaseDn(), TokenLdap.class, Filter.createEqualityFilter("authzCode", TokenHashUtil.hash(p_authorizationCode)));
+        } catch (Exception e) {
+            logException(e);
+        }
+        return Collections.emptyList();
+    }
+
+    public List<TokenLdap> getGrantsBySessionDn(String sessionDn) {
+        List<TokenLdap> grants = new ArrayList<>();
+        try {
+            List<TokenLdap> ldapGrants = ldapEntryManager.findEntries(tokenBaseDn(), TokenLdap.class, Filter.createEqualityFilter("ssnId", sessionDn));
+            if (ldapGrants != null) {
+                grants.addAll(ldapGrants);
+            }
+            grants.addAll(getGrantsFromCacheBySessionDn(sessionDn));
+        } catch (Exception e) {
+            logException(e);
+        }
+        return grants;
+    }
+
+    private void logException(Exception e) {
+        if (BooleanUtils.isTrue(appConfiguration.getLogNotFoundEntityAsError())) {
+            log.error(e.getMessage(), e);
+        } else {
+            log.trace(e.getMessage(), e);
+        }
+    }
+
+    public List<TokenLdap> getGrantsFromCacheBySessionDn(String sessionDn) {
+        if (StringUtils.isBlank(sessionDn)) {
+            return Collections.emptyList();
+        }
+        return getCacheTokensEntries(getCacheSessionTokens(sessionDn).getTokenHashes());
+    }
+
+    public List<TokenLdap> getCacheClientTokensEntries(String clientId) {
+        if (cacheConfiguration.getCacheProviderType() == CacheProviderType.NATIVE_PERSISTENCE) {
+            return Collections.emptyList();
+        }
+        Object o = cacheService.get(new ClientTokens(clientId).cacheKey());
+        if (o instanceof ClientTokens) {
+            return getCacheTokensEntries(((ClientTokens) o).getTokenHashes());
+        }
+        return Collections.emptyList();
+    }
+
+    public List<TokenLdap> getCacheTokensEntries(Set<String> tokenHashes) {
+        List<TokenLdap> tokens = new ArrayList<>();
+
+        for (String tokenHash : tokenHashes) {
+            Object o1 = cacheService.get(tokenHash);
+            if (o1 instanceof TokenLdap) {
+                TokenLdap token = (TokenLdap) o1;
+                token.setIsFromCache(true);
+                tokens.add(token);
+            }
+        }
+        return tokens;
+    }
+
+    public void logout(String sessionDn) {
+        final List<TokenLdap> tokens = getGrantsBySessionDn(sessionDn);
+        if (!appConfiguration.getRemoveRefreshTokensForClientOnLogout()) {
+            List<TokenLdap> refreshTokens = Lists.newArrayList();
+            for (TokenLdap token : tokens) {
+                if (token.getTokenTypeEnum() == TokenType.REFRESH_TOKEN) {
+                    refreshTokens.add(token);
+                }
+            }
+            if (!refreshTokens.isEmpty()) {
+                log.trace("Refresh tokens are not removed on logout (because removeRefreshTokensForClientOnLogout configuration property is false)");
+                tokens.removeAll(refreshTokens);
+            }
+        }
+        removeSilently(tokens);
+    }
+
+    public void removeAllTokensBySession(String sessionDn, boolean logout) {
+        removeSilently(getGrantsBySessionDn(sessionDn));
+    }
+
+    /**
+     * Removes grant with particular code.
+     *
+     * @param p_code code
+     */
+    public void removeByCode(String p_code) {
+        final TokenLdap t = getGrantByCode(p_code);
+        if (t != null) {
+            removeSilently(t);
+        }
+        cacheService.remove(CacheGrant.cacheKey(p_code, null));
+    }
+
+    // authorization code is saved only in cache
+    public void removeAuthorizationCode(String code) {
+        cacheService.remove(CacheGrant.cacheKey(code, null));
+    }
+
+    public void removeAllByAuthorizationCode(String p_authorizationCode) {
+        removeSilently(getGrantsByAuthorizationCode(p_authorizationCode));
+    }
+
+    public void removeAllByGrantId(String p_grantId) {
+        removeSilently(getGrantsByGrantId(p_grantId));
+    }
+
+}
\ No newline at end of file
diff --git a/oxAuth/Server/src/main/java/org/gluu/oxauth/service/KeyGeneratorTimer.java b/oxAuth/Server/src/main/java/org/gluu/oxauth/service/KeyGeneratorTimer.java
new file mode 100644
index 00000000..0d1cdb01
--- /dev/null
+++ b/oxAuth/Server/src/main/java/org/gluu/oxauth/service/KeyGeneratorTimer.java
@@ -0,0 +1,180 @@
+/*
+ * oxAuth is available under the MIT License (2008). See http://opensource.org/licenses/MIT for full text.
+ *
+ * Copyright (c) 2014, Gluu
+ */
+
+package org.gluu.oxauth.service;
+
+import org.gluu.oxauth.model.config.Conf;
+import org.gluu.oxauth.model.config.ConfigurationFactory;
+import org.gluu.oxauth.model.config.WebKeysConfiguration;
+import org.gluu.oxauth.model.configuration.AppConfiguration;
+import org.gluu.oxauth.model.crypto.AbstractCryptoProvider;
+import org.gluu.oxauth.model.jwk.JSONWebKey;
+import org.gluu.oxauth.service.cdi.event.KeyGenerationEvent;
+import org.gluu.oxauth.util.ServerUtil;
+import org.gluu.persist.PersistenceEntryManager;
+import org.gluu.service.cdi.async.Asynchronous;
+import org.gluu.service.cdi.event.Scheduled;
+import org.gluu.service.timer.event.TimerEvent;
+import org.gluu.service.timer.schedule.TimerSchedule;
+import org.json.JSONArray;
+import org.json.JSONObject;
+import org.slf4j.Logger;
+
+import javax.enterprise.context.ApplicationScoped;
+import javax.enterprise.event.Event;
+import javax.enterprise.event.Observes;
+import javax.inject.Inject;
+import javax.inject.Named;
+import java.util.GregorianCalendar;
+import java.util.TimeZone;
+import java.util.concurrent.atomic.AtomicBoolean;
+import java.util.stream.Collectors;
+
+import static org.gluu.oxauth.model.jwk.JWKParameter.*;
+
+/**
+ * @author Javier Rojas Blum
+ * @author Yuriy Zabrovarnyy
+ */
+@ApplicationScoped
+@Named
+public class KeyGeneratorTimer {
+
+	private static final int DEFAULT_INTERVAL = 60;
+
+    @Inject
+    private Logger log;
+
+    @Inject
+    private Event<TimerEvent> timerEvent;
+
+    @Inject
+    private ConfigurationFactory configurationFactory;
+
+    @Inject
+    private PersistenceEntryManager ldapEntryManager;
+
+    @Inject
+    private AppConfiguration appConfiguration;
+
+    @Inject
+    private AbstractCryptoProvider cryptoProvider;
+
+    private AtomicBoolean isActive;
+	private long lastFinishedTime;
+
+    public void initTimer() {
+        log.info("Initializing Key Generator Timer");
+        this.isActive = new AtomicBoolean(false);
+
+		timerEvent.fire(new TimerEvent(new TimerSchedule(DEFAULT_INTERVAL, DEFAULT_INTERVAL), new KeyGenerationEvent(),
+				Scheduled.Literal.INSTANCE));
+
+		this.lastFinishedTime = System.currentTimeMillis();
+        log.info("Initialized Key Generator Timer");
+    }
+
+    @Asynchronous
+    public void process(@Observes @Scheduled KeyGenerationEvent keyGenerationEvent) {
+        if (!appConfiguration.getKeyRegenerationEnabled()) {
+            return;
+        }
+
+        if (this.isActive.get()) {
+            return;
+        }
+
+        if (!this.isActive.compareAndSet(false, true)) {
+            return;
+        }
+
+        try {
+        	updateKeys();
+        } catch (Exception ex) {
+			log.error("Exception happened while executing keys update", ex);
+        } finally {
+            this.isActive.set(false);
+        }
+    }
+
+	private void updateKeys() throws Exception {
+		if (!isStartUpdateKeys()) {
+			return;
+		}
+
+		updateKeysImpl();
+		this.lastFinishedTime = System.currentTimeMillis();
+	}
+
+	private boolean isStartUpdateKeys() {
+		long poolingInterval = appConfiguration.getKeyRegenerationInterval();
+        if (poolingInterval <= 0) {
+        	poolingInterval = DEFAULT_INTERVAL;
+        }
+
+        poolingInterval = poolingInterval * 3600 * 1000L;
+
+		long timeDifference = System.currentTimeMillis() - this.lastFinishedTime;
+
+		return timeDifference >= poolingInterval;
+	}
+
+    private void updateKeysImpl() throws Exception {
+        log.info("Updating JWKS keys ...");
+        String dn = configurationFactory.getBaseConfiguration().getString("oxauth_ConfigurationEntryDN");
+        Conf conf = ldapEntryManager.find(Conf.class, dn);
+
+        JSONObject jwks = conf.getWebKeys().toJSONObject();
+        JSONObject updatedJwks =  updateKeys(jwks);
+
+        conf.setWebKeys(ServerUtil.createJsonMapper().readValue(updatedJwks.toString(), WebKeysConfiguration.class));
+
+        long nextRevision = conf.getRevision() + 1;
+        conf.setRevision(nextRevision);
+        ldapEntryManager.merge(conf);
+
+        log.info("Updated JWKS successfully");
+        log.trace("JWKS keys: " + conf.getWebKeys().getKeys().stream().map(JSONWebKey::getKid).collect(Collectors.toList()));
+        log.trace("KeyStore keys: " + cryptoProvider.getKeys());
+    }
+
+    private JSONObject updateKeys(JSONObject jwks) throws Exception {
+        JSONObject jsonObject = AbstractCryptoProvider.generateJwks(cryptoProvider, appConfiguration);
+
+        JSONArray keys = jwks.getJSONArray(JSON_WEB_KEY_SET);
+        for (int i = 0; i < keys.length(); i++) {
+            JSONObject key = keys.getJSONObject(i);
+
+            if (key.has(EXPIRATION_TIME) && !key.isNull(EXPIRATION_TIME)) {
+                GregorianCalendar now = new GregorianCalendar(TimeZone.getTimeZone("UTC"));
+                GregorianCalendar expirationDate = new GregorianCalendar(TimeZone.getTimeZone("UTC"));
+                expirationDate.setTimeInMillis(key.getLong(EXPIRATION_TIME));
+
+                if (expirationDate.before(now)) {
+                    // The expired key is not added to the array of keys
+                    log.trace("Removing JWK: {}, Expiration date: {}", key.getString(KEY_ID),
+                            key.getLong(EXPIRATION_TIME));
+                    cryptoProvider.deleteKey(key.getString(KEY_ID));
+                } else if (cryptoProvider.containsKey(key.getString(KEY_ID))) {
+                    log.trace("Contains kid: {}", key.getString(KEY_ID));
+                    jsonObject.getJSONArray(JSON_WEB_KEY_SET).put(key);
+                }
+            } else if (cryptoProvider.containsKey(key.getString(KEY_ID))) {
+                GregorianCalendar expirationTime = new GregorianCalendar(TimeZone.getTimeZone("UTC"));
+                expirationTime.add(GregorianCalendar.HOUR, appConfiguration.getKeyRegenerationInterval());
+                expirationTime.add(GregorianCalendar.SECOND, appConfiguration.getIdTokenLifetime());
+                key.put(EXPIRATION_TIME, expirationTime.getTimeInMillis());
+
+                log.trace("Contains kid {} without exp {}", key.getString(KEY_ID), expirationTime);
+
+                jsonObject.getJSONArray(JSON_WEB_KEY_SET).put(key);
+            }
+        }
+
+        return jsonObject;
+    }
+
+}
\ No newline at end of file
diff --git a/oxAuth/Server/src/main/java/org/gluu/oxauth/service/LdapCustomAuthenticationConfigurationService.java b/oxAuth/Server/src/main/java/org/gluu/oxauth/service/LdapCustomAuthenticationConfigurationService.java
new file mode 100644
index 00000000..aaf2d5f1
--- /dev/null
+++ b/oxAuth/Server/src/main/java/org/gluu/oxauth/service/LdapCustomAuthenticationConfigurationService.java
@@ -0,0 +1,112 @@
+/*
+ * oxAuth is available under the MIT License (2008). See http://opensource.org/licenses/MIT for full text.
+ *
+ * Copyright (c) 2014, Gluu
+ */
+
+package org.gluu.oxauth.service;
+
+import java.io.Serializable;
+import java.util.ArrayList;
+import java.util.List;
+
+import javax.enterprise.context.ApplicationScoped;
+import javax.inject.Inject;
+
+import org.gluu.model.AuthenticationScriptUsageType;
+import org.gluu.model.SimpleCustomProperty;
+import org.gluu.model.config.CustomAuthenticationConfiguration;
+import org.gluu.oxauth.service.common.ConfigurationService;
+import org.gluu.util.StringHelper;
+import org.oxauth.persistence.model.configuration.CustomProperty;
+import org.oxauth.persistence.model.configuration.GluuConfiguration;
+import org.oxauth.persistence.model.configuration.oxIDPAuthConf;
+import org.slf4j.Logger;
+
+import com.fasterxml.jackson.databind.ObjectMapper;
+
+/**
+ * Provides service methods methods with LDAP configuration
+ *
+ * @author Yuriy Movchan Date: 08.27.2012
+ */
+@ApplicationScoped
+public class LdapCustomAuthenticationConfigurationService implements Serializable {
+
+	private static final long serialVersionUID = -2225890597520443390L;
+
+	private static final String CUSTOM_AUTHENTICATION_SCRIPT_PROPERTY_NAME = "script.__$__customAuthenticationScript__$__";
+	private static final String CUSTOM_AUTHENTICATION_PROPERTY_PREFIX = "property.";
+	private static final String CUSTOM_AUTHENTICATION_SCRIPT_USAGE_TYPE = "usage.";
+
+	@Inject
+	private Logger log;
+
+	@Inject
+	private ConfigurationService configurationService;
+
+	public List<CustomAuthenticationConfiguration> getCustomAuthenticationConfigurations() {
+		GluuConfiguration gluuConfiguration = configurationService.getConfiguration();
+		List<oxIDPAuthConf> authConfigurations = gluuConfiguration.getOxIDPAuthentication();
+		
+		List<CustomAuthenticationConfiguration> customAuthenticationConfigurations = new ArrayList<CustomAuthenticationConfiguration>();
+		
+		if (authConfigurations == null) {
+			return customAuthenticationConfigurations;
+		}
+
+		for (oxIDPAuthConf authConfiguration : authConfigurations) {
+			if (authConfiguration.getEnabled() && authConfiguration.getType().equalsIgnoreCase("customAuthentication")) {
+				CustomAuthenticationConfiguration customAuthenticationConfiguration = mapCustomAuthentication(authConfiguration);
+				customAuthenticationConfigurations.add(customAuthenticationConfiguration);
+			}
+		}
+
+		return customAuthenticationConfigurations;
+	}
+
+	private CustomAuthenticationConfiguration mapCustomAuthentication(oxIDPAuthConf oneConf) {
+		CustomAuthenticationConfiguration customAuthenticationConfig = new CustomAuthenticationConfiguration();
+		customAuthenticationConfig.setName(oneConf.getName());
+		customAuthenticationConfig.setLevel(oneConf.getLevel());
+		customAuthenticationConfig.setPriority(oneConf.getPriority());
+		customAuthenticationConfig.setEnabled(oneConf.getEnabled());
+		customAuthenticationConfig.setVersion(oneConf.getVersion());
+
+		for (CustomProperty customProperty : oneConf.getFields()) {
+			if ((customProperty.getValues() == null) || (customProperty.getValues().size() == 0)) {
+				continue;
+			}
+			
+			String attrName = StringHelper.toLowerCase(customProperty.getName());
+			
+			if (StringHelper.isEmpty(attrName)) {
+				continue;
+			}
+
+			String value = customProperty.getValues().get(0);
+
+			if (attrName.startsWith(CUSTOM_AUTHENTICATION_PROPERTY_PREFIX)) {
+				String key = customProperty.getName().substring(CUSTOM_AUTHENTICATION_PROPERTY_PREFIX.length());
+				SimpleCustomProperty property = new SimpleCustomProperty(key, value);
+				customAuthenticationConfig.getCustomAuthenticationAttributes().add(property);
+			} else if (StringHelper.equalsIgnoreCase(attrName, CUSTOM_AUTHENTICATION_SCRIPT_PROPERTY_NAME)) {
+				customAuthenticationConfig.setCustomAuthenticationScript(value);
+			} else if (StringHelper.equalsIgnoreCase(attrName, CUSTOM_AUTHENTICATION_SCRIPT_USAGE_TYPE)) {
+				if (StringHelper.isNotEmpty(value)) {
+					AuthenticationScriptUsageType authenticationScriptUsageType =  AuthenticationScriptUsageType.getByValue(value);
+					customAuthenticationConfig.setUsageType(authenticationScriptUsageType);
+				}
+			}
+		}
+
+		return customAuthenticationConfig;		
+	}
+
+	private Object jsonToObject(String json, Class<?> clazz) throws Exception {
+		ObjectMapper mapper = new ObjectMapper();
+		Object clazzObject = mapper.readValue(json, clazz);
+		return clazzObject;
+	}
+
+}
diff --git a/oxAuth/Server/src/main/java/org/gluu/oxauth/service/LocalResponseCache.java b/oxAuth/Server/src/main/java/org/gluu/oxauth/service/LocalResponseCache.java
new file mode 100644
index 00000000..4a41131d
--- /dev/null
+++ b/oxAuth/Server/src/main/java/org/gluu/oxauth/service/LocalResponseCache.java
@@ -0,0 +1,99 @@
+package org.gluu.oxauth.service;
+
+import com.google.common.cache.Cache;
+import com.google.common.cache.CacheBuilder;
+import org.gluu.oxauth.model.configuration.AppConfiguration;
+import org.gluu.oxauth.service.cdi.event.AuthConfigurationEvent;
+import org.gluu.service.cdi.async.Asynchronous;
+import org.gluu.service.cdi.event.Scheduled;
+import org.json.JSONObject;
+import org.slf4j.Logger;
+
+import javax.enterprise.context.ApplicationScoped;
+import javax.enterprise.event.Observes;
+import javax.inject.Inject;
+import javax.inject.Named;
+import java.util.List;
+import java.util.concurrent.TimeUnit;
+import java.util.concurrent.atomic.AtomicBoolean;
+
+/**
+ * @author Yuriy Zabrovarnyy
+ */
+@ApplicationScoped
+@Named
+public class LocalResponseCache {
+
+    public static final int DEFAULT_DISCOVERY_LIFETIME = 60;
+    public static final int DEFAULT_SECTOR_IDENTIFIER_LIFETIME = 1440; // 1 day
+
+    private static final String DISCOVERY_CACHE_KEY = "DISCOVERY_CACHE_KEY";
+
+    @Inject
+    private AppConfiguration appConfiguration;
+    @Inject
+    private Logger log;
+
+    private final AtomicBoolean rebuilding = new AtomicBoolean(false);
+
+    private Cache<String, JSONObject> discoveryCache = CacheBuilder.newBuilder()
+            .expireAfterWrite(DEFAULT_DISCOVERY_LIFETIME, TimeUnit.MINUTES).build();
+    private Cache<String, List<String>> sectorIdentifierCache = CacheBuilder.newBuilder()
+            .expireAfterWrite(DEFAULT_SECTOR_IDENTIFIER_LIFETIME, TimeUnit.MINUTES).build();
+
+
+    private int currentDiscoveryLifetime = DEFAULT_DISCOVERY_LIFETIME;
+    private int currentSectorIdentifierLifetime = DEFAULT_SECTOR_IDENTIFIER_LIFETIME;
+
+    @Asynchronous
+    public void reloadConfigurationTimerEvent(@Observes @Scheduled AuthConfigurationEvent authConfigurationEvent) {
+        try {
+            if (rebuilding.get())
+                return;
+
+            rebuilding.set(true);
+
+            if (currentDiscoveryLifetime != appConfiguration.getDiscoveryCacheLifetimeInMinutes()) {
+                currentDiscoveryLifetime = appConfiguration.getDiscoveryCacheLifetimeInMinutes();
+                discoveryCache = CacheBuilder.newBuilder()
+                        .expireAfterWrite(appConfiguration.getDiscoveryCacheLifetimeInMinutes(), TimeUnit.MINUTES).build();
+                log.trace("Re-created discovery cache with lifetime: " + appConfiguration.getDiscoveryCacheLifetimeInMinutes());
+            }
+            if (currentSectorIdentifierLifetime != appConfiguration.getSectorIdentifierCacheLifetimeInMinutes()) {
+                currentSectorIdentifierLifetime = appConfiguration.getSectorIdentifierCacheLifetimeInMinutes();
+                sectorIdentifierCache = CacheBuilder.newBuilder()
+                        .expireAfterWrite(appConfiguration.getSectorIdentifierCacheLifetimeInMinutes(), TimeUnit.MINUTES).build();
+                log.trace("Re-created sector identifier cache with lifetime: " + appConfiguration.getSectorIdentifierCacheLifetimeInMinutes());
+            }
+        } finally {
+            rebuilding.set(false);
+        }
+
+    }
+
+    public List<String> getSectorRedirectUris(String sectorIdentifierUri) {
+        if (sectorIdentifierCache == null || rebuilding.get())
+            return null;
+        return sectorIdentifierCache.getIfPresent(sectorIdentifierUri);
+    }
+
+    public void putSectorRedirectUris(String sectorIdentifierUri, List<String> redirectUris) {
+        if (sectorIdentifierCache == null || rebuilding.get())
+            return;
+
+        sectorIdentifierCache.put(sectorIdentifierUri, redirectUris);
+    }
+
+    public JSONObject getDiscoveryResponse() {
+        if (discoveryCache == null || rebuilding.get())
+            return null;
+        return discoveryCache.getIfPresent(DISCOVERY_CACHE_KEY);
+    }
+
+    public void putDiscoveryResponse(JSONObject response) {
+        if (discoveryCache == null || rebuilding.get())
+            return;
+
+        discoveryCache.put(DISCOVERY_CACHE_KEY, response);
+    }
+}
diff --git a/oxAuth/Server/src/main/java/org/gluu/oxauth/service/MetricService.java b/oxAuth/Server/src/main/java/org/gluu/oxauth/service/MetricService.java
new file mode 100644
index 00000000..8834a52f
--- /dev/null
+++ b/oxAuth/Server/src/main/java/org/gluu/oxauth/service/MetricService.java
@@ -0,0 +1,93 @@
+/*
+ * oxAuth is available under the MIT License (2008). See http://opensource.org/licenses/MIT for full text.
+ *
+ * Copyright (c) 2014, Gluu
+ */
+
+package org.gluu.oxauth.service;
+
+import org.gluu.model.ApplicationType;
+import org.gluu.oxauth.model.configuration.AppConfiguration;
+import org.gluu.oxauth.service.common.ApplicationFactory;
+import org.gluu.oxauth.service.common.ConfigurationService;
+import org.gluu.persist.PersistenceEntryManager;
+import org.gluu.service.metric.inject.ReportMetric;
+import org.gluu.service.net.NetworkService;
+import org.gluu.oxauth.model.config.StaticConfiguration;
+
+import javax.enterprise.context.ApplicationScoped;
+import javax.enterprise.inject.Instance;
+import javax.inject.Inject;
+import javax.inject.Named;
+
+/**
+ * Store and retrieve metric
+ *
+ * @author Yuriy Movchan Date: 07/30/2015
+ */
+@ApplicationScoped
+@Named(MetricService.METRIC_SERVICE_COMPONENT_NAME)
+public class MetricService extends org.gluu.service.metric.MetricService {
+	
+	public static final String METRIC_SERVICE_COMPONENT_NAME = "metricService";
+
+	private static final long serialVersionUID = 7875838160379126796L;
+
+	@Inject
+    private Instance<MetricService> instance;
+
+	@Inject
+    private ConfigurationService configurationService;
+
+	@Inject
+	private AppConfiguration appConfiguration;
+
+	@Inject
+    private StaticConfiguration staticConfiguration;
+
+	@Inject
+    private NetworkService networkService;
+
+    @Inject
+    @Named(ApplicationFactory.PERSISTENCE_METRIC_ENTRY_MANAGER_NAME)
+    @ReportMetric
+    private PersistenceEntryManager ldapEntryManager;
+
+    public void initTimer() {
+    	initTimer(this.appConfiguration.getMetricReporterInterval(), this.appConfiguration.getMetricReporterKeepDataDays());
+    }
+
+	@Override
+	public String baseDn() {
+		return staticConfiguration.getBaseDn().getMetric();
+	}
+
+	public org.gluu.service.metric.MetricService getMetricServiceInstance() {
+		return instance.get();
+	}
+
+    @Override
+    public boolean isMetricReporterEnabled() {
+        if (this.appConfiguration.getMetricReporterEnabled() == null) {
+            return false;
+        }
+
+        return this.appConfiguration.getMetricReporterEnabled();
+    }
+
+    @Override
+    public ApplicationType getApplicationType() {
+        return ApplicationType.OX_AUTH;
+    }
+
+    @Override
+    public PersistenceEntryManager getEntryManager() {
+        return ldapEntryManager;
+    }
+
+	@Override
+	public String getNodeIndetifier() {
+		return networkService.getMacAdress();
+	}
+
+}
\ No newline at end of file
diff --git a/oxAuth/Server/src/main/java/org/gluu/oxauth/service/OrganizationService.java b/oxAuth/Server/src/main/java/org/gluu/oxauth/service/OrganizationService.java
new file mode 100644
index 00000000..0f6dc665
--- /dev/null
+++ b/oxAuth/Server/src/main/java/org/gluu/oxauth/service/OrganizationService.java
@@ -0,0 +1,65 @@
+package org.gluu.oxauth.service;
+
+import org.gluu.model.ApplicationType;
+import org.gluu.oxauth.model.GluuOrganization;
+import org.gluu.oxauth.model.configuration.AppConfiguration;
+import org.gluu.persist.PersistenceEntryManager;
+import org.gluu.service.BaseCacheService;
+import org.gluu.service.CacheService;
+import org.gluu.service.LocalCacheService;
+import org.gluu.util.OxConstants;
+
+import javax.enterprise.context.ApplicationScoped;
+import javax.inject.Inject;
+
+@ApplicationScoped
+public class OrganizationService extends org.gluu.service.OrganizationService {
+
+    private static final long serialVersionUID = -8966940469789981584L;
+    public static final int ONE_MINUTE_IN_SECONDS = 60;
+
+    @Inject
+	private AppConfiguration appConfiguration;
+
+	@Inject
+	private PersistenceEntryManager ldapEntryManager;
+
+	@Inject
+	private CacheService cacheService;
+
+    @Inject
+    private LocalCacheService localCacheService;
+
+	/**
+	 * Update organization entry
+	 * 
+	 * @param organization
+	 *            Organization
+	 */
+	public void updateOrganization(GluuOrganization organization) {
+		ldapEntryManager.merge(organization);
+	}
+
+	public GluuOrganization getOrganization() {
+    	BaseCacheService usedCacheService = getCacheService();
+        return usedCacheService.getWithPut(OxConstants.CACHE_ORGANIZATION_KEY + "_" + getApplicationType(), () -> ldapEntryManager.find(GluuOrganization.class, getDnForOrganization()), ONE_MINUTE_IN_SECONDS);
+	}
+
+	public String getDnForOrganization() {
+		return "o=gluu";
+	}
+
+    private BaseCacheService getCacheService() {
+    	if (appConfiguration.getUseLocalCache()) {
+    		return localCacheService;
+    	}
+    	
+    	return cacheService;
+    }
+
+	@Override
+	public ApplicationType getApplicationType() {
+		return ApplicationType.OX_AUTH;
+	}
+
+}
diff --git a/oxAuth/Server/src/main/java/org/gluu/oxauth/service/OxAuthConfigurationService.java b/oxAuth/Server/src/main/java/org/gluu/oxauth/service/OxAuthConfigurationService.java
new file mode 100644
index 00000000..8e95997f
--- /dev/null
+++ b/oxAuth/Server/src/main/java/org/gluu/oxauth/service/OxAuthConfigurationService.java
@@ -0,0 +1,65 @@
+/*
+ * oxAuth is available under the MIT License (2008). See http://opensource.org/licenses/MIT for full text.
+ *
+ * Copyright (c) 2014, Gluu
+ */
+
+package org.gluu.oxauth.service;
+
+import javax.enterprise.context.ApplicationScoped;
+import javax.faces.context.FacesContext;
+import javax.inject.Inject;
+import javax.inject.Named;
+import javax.servlet.ServletContext;
+
+import org.gluu.oxauth.model.configuration.AppConfiguration;
+import org.gluu.util.StringHelper;
+
+/**
+ * OxAuthConfigurationService
+ *
+ * @author Oleksiy Tataryn Date: 08.07.2014
+ */
+@ApplicationScoped
+@Named
+@Deprecated //TODO: We don't need this class
+public class OxAuthConfigurationService {
+
+	@Inject
+	private AppConfiguration appConfiguration;
+	
+	@Inject
+	private ServletContext context;
+
+	public String getCssLocation() {
+		if (StringHelper.isEmpty(appConfiguration.getCssLocation())) {
+			FacesContext ctx = FacesContext.getCurrentInstance();
+			if (ctx == null) {
+				return "";
+			}
+			String contextPath = ctx.getExternalContext().getRequestContextPath();
+			return contextPath + "/stylesheet";
+		} else {
+			return appConfiguration.getCssLocation();
+		}
+	}
+
+	public String getJsLocation() {
+		if (StringHelper.isEmpty(appConfiguration.getJsLocation())) {
+			String contextPath = context.getContextPath();
+			return contextPath + "/js";
+		} else {
+			return appConfiguration.getJsLocation();
+		}
+	}
+
+	public String getImgLocation() {
+		if (StringHelper.isEmpty(appConfiguration.getImgLocation())) {
+			String contextPath = context.getContextPath();
+			return contextPath + "/img";
+		} else {
+			return appConfiguration.getImgLocation();
+		}
+	}
+
+}
diff --git a/oxAuth/Server/src/main/java/org/gluu/oxauth/service/PairwiseIdentifierService.java b/oxAuth/Server/src/main/java/org/gluu/oxauth/service/PairwiseIdentifierService.java
new file mode 100644
index 00000000..d50f8e4d
--- /dev/null
+++ b/oxAuth/Server/src/main/java/org/gluu/oxauth/service/PairwiseIdentifierService.java
@@ -0,0 +1,130 @@
+package org.gluu.oxauth.service;
+
+import org.gluu.oxauth.model.common.PairwiseIdType;
+import org.gluu.oxauth.model.configuration.AppConfiguration;
+import org.gluu.oxauth.model.util.SubjectIdentifierGenerator;
+import org.gluu.oxauth.service.common.UserService;
+import org.gluu.persist.PersistenceEntryManager;
+import org.gluu.persist.model.base.SimpleBranch;
+import org.gluu.search.filter.Filter;
+import org.gluu.util.StringHelper;
+import org.oxauth.persistence.model.PairwiseIdentifier;
+import org.slf4j.Logger;
+
+import javax.enterprise.context.ApplicationScoped;
+import javax.inject.Inject;
+import java.util.List;
+
+/**
+ * @author Javier Rojas Blum
+ * @version May 7, 2019
+ */
+@ApplicationScoped
+public class PairwiseIdentifierService {
+
+    @Inject
+    private Logger log;
+
+    @Inject
+    private PersistenceEntryManager ldapEntryManager;
+
+    @Inject
+    private UserService userService;
+
+    @Inject
+    private AppConfiguration appConfiguration;
+
+    public void addBranch(final String userInum) {
+        SimpleBranch branch = new SimpleBranch();
+        branch.setOrganizationalUnitName("pairwiseIdentifiers");
+        branch.setDn(getBaseDnForPairwiseIdentifiers(userInum));
+
+        ldapEntryManager.persist(branch);
+    }
+
+    public boolean containsBranch(final String userInum) {
+        return ldapEntryManager.contains(getBaseDnForPairwiseIdentifiers(userInum), SimpleBranch.class);
+    }
+
+    public void prepareBranch(final String userInum) {
+        if (!ldapEntryManager.hasBranchesSupport(userService.getDnForUser(userInum))) {
+            return;
+        }
+
+        // Create pairwise identifier branch if needed
+        if (!containsBranch(userInum)) {
+            addBranch(userInum);
+        }
+    }
+
+    public PairwiseIdentifier findPairWiseIdentifier(String userInum, String sectorIdentifier, String clientId) throws Exception {
+        PairwiseIdType pairwiseIdType = PairwiseIdType.fromString(appConfiguration.getPairwiseIdType());
+
+        if (PairwiseIdType.PERSISTENT == pairwiseIdType) {
+            prepareBranch(userInum);
+
+            String baseDnForPairwiseIdentifiers = getBaseDnForPairwiseIdentifiers(userInum);
+
+            final Filter filter;
+            if (appConfiguration.isShareSubjectIdBetweenClientsWithSameSectorId()) {
+            	Filter sectorIdentifierFilter = Filter.createEqualityFilter("oxSectorIdentifier", sectorIdentifier);
+                Filter userInumFilter = Filter.createEqualityFilter("oxAuthUserId", userInum);
+
+                filter = Filter.createANDFilter(sectorIdentifierFilter, userInumFilter);
+            } else {
+                Filter sectorIdentifierFilter = Filter.createEqualityFilter("oxSectorIdentifier", sectorIdentifier);
+                Filter clientIdFilter = Filter.createEqualityFilter("oxAuthClientId", clientId);
+                Filter userInumFilter = Filter.createEqualityFilter("oxAuthUserId", userInum);
+
+                filter = Filter.createANDFilter(sectorIdentifierFilter, clientIdFilter, userInumFilter);
+            }
+
+            List<PairwiseIdentifier> entries = ldapEntryManager.findEntries(baseDnForPairwiseIdentifiers, PairwiseIdentifier.class, filter);
+            if (entries != null && !entries.isEmpty()) {
+                // if more then one entry then it's problem, non-deterministic behavior, id must be unique
+                if (entries.size() > 1) {
+                    log.error("Found more then one pairwise identifier by sector identifier: {}" + sectorIdentifier);
+                    for (PairwiseIdentifier pairwiseIdentifier : entries) {
+                        log.error("PairwiseIdentifier: {}", pairwiseIdentifier);
+                    }
+                }
+                return entries.get(0);
+            }
+        } else { // PairwiseIdType.ALGORITHMIC
+            String key = appConfiguration.getPairwiseCalculationKey();
+            String salt = appConfiguration.getPairwiseCalculationSalt();
+            String localAccountId = appConfiguration.isShareSubjectIdBetweenClientsWithSameSectorId() ?
+                    userInum : userInum + clientId;
+
+            String calculatedSub = SubjectIdentifierGenerator.generatePairwiseSubjectIdentifier(sectorIdentifier, localAccountId, key, salt, appConfiguration);
+
+            PairwiseIdentifier pairwiseIdentifier = new PairwiseIdentifier(sectorIdentifier, clientId, userInum);
+            pairwiseIdentifier.setId(calculatedSub);
+
+            return pairwiseIdentifier;
+        }
+
+        return null;
+    }
+
+    public void addPairwiseIdentifier(String userInum, PairwiseIdentifier pairwiseIdentifier) {
+        prepareBranch(userInum);
+        userService.addUserAttributeByUserInum(userInum, "oxPPID", pairwiseIdentifier.getId());
+
+        ldapEntryManager.persist(pairwiseIdentifier);
+    }
+
+    public String getDnForPairwiseIdentifier(String oxId, String userInum) {
+        String baseDn = getBaseDnForPairwiseIdentifiers(userInum);
+        if (StringHelper.isEmpty(oxId)) {
+            return baseDn;
+        }
+        return String.format("oxId=%s,%s", oxId, baseDn);
+    }
+
+    public String getBaseDnForPairwiseIdentifiers(String userInum) {
+        final String userBaseDn = userService.getDnForUser(userInum); // "ou=pairwiseIdentifiers,inum=1234,ou=people,o=gluu"
+        return String.format("ou=pairwiseIdentifiers,%s", userBaseDn);
+    }
+
+}
diff --git a/oxAuth/Server/src/main/java/org/gluu/oxauth/service/RedirectUriResponse.java b/oxAuth/Server/src/main/java/org/gluu/oxauth/service/RedirectUriResponse.java
new file mode 100644
index 00000000..6dca548a
--- /dev/null
+++ b/oxAuth/Server/src/main/java/org/gluu/oxauth/service/RedirectUriResponse.java
@@ -0,0 +1,71 @@
+package org.gluu.oxauth.service;
+
+import org.gluu.oxauth.model.error.ErrorResponseFactory;
+import org.gluu.oxauth.model.error.IErrorType;
+import org.gluu.oxauth.util.RedirectUri;
+import org.gluu.oxauth.util.RedirectUtil;
+import org.slf4j.Logger;
+import org.slf4j.LoggerFactory;
+
+import javax.servlet.http.HttpServletRequest;
+import javax.ws.rs.WebApplicationException;
+import javax.ws.rs.core.Response;
+
+/**
+ * @author Yuriy Zabrovarnyy
+ */
+public class RedirectUriResponse {
+
+    private final static Logger log = LoggerFactory.getLogger(RedirectUriResponse.class);
+
+    private RedirectUri redirectUri;
+    private String state;
+    private HttpServletRequest httpRequest;
+    private ErrorResponseFactory errorFactory;
+    private boolean fapiCompatible = false;
+
+    public RedirectUriResponse(RedirectUri redirectUri, String state, HttpServletRequest httpRequest, ErrorResponseFactory errorFactory) {
+        this.redirectUri = redirectUri;
+        this.state = state;
+        this.httpRequest = httpRequest;
+        this.errorFactory = errorFactory;
+    }
+
+    public WebApplicationException createWebException(IErrorType errorType) {
+        return createWebException(errorType, null);
+    }
+
+    public WebApplicationException createWebException(IErrorType errorType, String reason) {
+        if (fapiCompatible) {
+            log.trace("Reason: " + reason); // print reason and set it to null since FAPI does not allow unknown fields in response
+            reason = null;
+        }
+        redirectUri.parseQueryString(errorFactory.getErrorAsQueryString(errorType, state, reason));
+        return new WebApplicationException(RedirectUtil.getRedirectResponseBuilder(redirectUri, httpRequest).build());
+    }
+
+    public void setState(String state) {
+        this.state = state;
+    }
+
+    public String getState() {
+        return state;
+    }
+
+    public Response.ResponseBuilder createErrorBuilder(IErrorType errorType) {
+        redirectUri.parseQueryString(errorFactory.getErrorAsQueryString(errorType, state));
+        return RedirectUtil.getRedirectResponseBuilder(redirectUri, httpRequest);
+    }
+
+    public RedirectUri getRedirectUri() {
+        return redirectUri;
+    }
+
+    public boolean isFapiCompatible() {
+        return fapiCompatible;
+    }
+
+    public void setFapiCompatible(boolean fapiCompatible) {
+        this.fapiCompatible = fapiCompatible;
+    }
+}
diff --git a/oxAuth/Server/src/main/java/org/gluu/oxauth/service/RedirectionUriService.java b/oxAuth/Server/src/main/java/org/gluu/oxauth/service/RedirectionUriService.java
new file mode 100644
index 00000000..3cda6846
--- /dev/null
+++ b/oxAuth/Server/src/main/java/org/gluu/oxauth/service/RedirectionUriService.java
@@ -0,0 +1,262 @@
+/*
+ * oxAuth is available under the MIT License (2008). See http://opensource.org/licenses/MIT for full text.
+ *
+ * Copyright (c) 2014, Gluu
+ */
+
+package org.gluu.oxauth.service;
+
+import com.google.common.base.Joiner;
+import com.google.common.base.Strings;
+import com.google.common.collect.Lists;
+import com.google.common.collect.Sets;
+import org.apache.commons.lang.StringUtils;
+import org.gluu.oxauth.client.QueryStringDecoder;
+import org.gluu.oxauth.model.configuration.AppConfiguration;
+import org.gluu.oxauth.model.error.ErrorResponseFactory;
+import org.gluu.oxauth.model.registration.Client;
+import org.gluu.oxauth.model.session.EndSessionErrorResponseType;
+import org.gluu.oxauth.model.session.SessionId;
+import org.gluu.oxauth.model.util.URLPatternList;
+import org.gluu.oxauth.model.util.Util;
+import org.jetbrains.annotations.NotNull;
+import org.json.JSONArray;
+import org.slf4j.Logger;
+import org.slf4j.LoggerFactory;
+
+import javax.enterprise.context.ApplicationScoped;
+import javax.inject.Inject;
+import javax.ws.rs.client.ClientBuilder;
+import javax.ws.rs.core.Response;
+import java.util.*;
+
+import static org.apache.commons.lang.BooleanUtils.isTrue;
+
+/**
+ * @author Javier Rojas Blum
+ * @version August 9, 2017
+ */
+@ApplicationScoped
+public class RedirectionUriService {
+
+    private static final Logger log = LoggerFactory.getLogger(RedirectionUriService.class);
+
+    @Inject
+    private ClientService clientService;
+
+    @Inject
+    private ErrorResponseFactory errorResponseFactory;
+
+    @Inject
+    private AppConfiguration appConfiguration;
+
+    @Inject
+    private LocalResponseCache localResponseCache;
+
+    public String validateRedirectionUri(String clientIdentifier, String redirectionUri) {
+        Client client = clientService.getClient(clientIdentifier);
+        if (client == null) {
+            return null;
+        }
+        return validateRedirectionUri(client, redirectionUri);
+    }
+
+    public List<String> getSectorRedirectUris(String sectorIdentiferUri) throws Exception {
+        List<String> result = Lists.newArrayList();
+        if (StringUtils.isBlank(sectorIdentiferUri)) {
+            return result;
+        }
+
+        final List<String> sectorRedirectUris = localResponseCache.getSectorRedirectUris(sectorIdentiferUri);
+        if (sectorRedirectUris != null) {
+            return sectorRedirectUris;
+        }
+
+        javax.ws.rs.client.Client clientRequest = ClientBuilder.newClient();
+		String entity = null;
+		try {
+			Response clientResponse = clientRequest.target(sectorIdentiferUri).request().buildGet().invoke();
+
+	        int status = clientResponse.getStatus();
+	        if (status != 200) {
+	            return result;
+	        }
+
+	        entity = clientResponse.readEntity(String.class);
+		} finally {
+			clientRequest.close();
+		}
+
+		JSONArray sectorIdentifierJsonArray = new JSONArray(entity);
+
+        for (int i = 0; i < sectorIdentifierJsonArray.length(); i++) {
+            result.add(sectorIdentifierJsonArray.getString(i));
+        }
+        localResponseCache.putSectorRedirectUris(sectorIdentiferUri, result);
+        return result;
+    }
+
+    public String validateRedirectionUri(@NotNull Client client, String redirectionUri) {
+        try {
+            String sectorIdentifierUri = client.getSectorIdentifierUri();
+            String[] redirectUris = client.getRedirectUris();
+
+            if (StringUtils.isNotBlank(sectorIdentifierUri)) {
+                redirectUris = getSectorRedirectUris(sectorIdentifierUri).toArray(new String[0]);
+            }
+
+            if (StringUtils.isNotBlank(redirectionUri) && redirectUris != null) {
+                log.debug("Validating redirection URI: clientIdentifier = {}, redirectionUri = {}, found = {}",
+                        client.getClientId(), redirectionUri, redirectUris.length);
+
+                if (isUriEqual(redirectionUri, redirectUris)) {
+                    return redirectionUri;
+                }
+            } else {
+                // Accept Request Without redirect_uri when One Registered
+                if (redirectUris != null && redirectUris.length == 1) {
+                    return redirectUris[0];
+                }
+            }
+
+            if (isTrue(appConfiguration.getAllowWildcardRedirectUri()) && redirectUris != null && redirectUris.length > 0) {
+                URLPatternList urlPatternList = new URLPatternList(Arrays.asList(redirectUris), true);
+                boolean valid = urlPatternList.isUrlListed(redirectionUri);
+                if (valid) {
+                    log.trace("Allowed by wildcard redirect_uris: {}", Joiner.on(",").join(redirectUris));
+                    return redirectionUri;
+                }
+            }
+        } catch (Exception e) {
+            return null;
+        }
+        return null;
+    }
+
+    public static boolean isUriEqual(String redirectionUri, String[] redirectUris) {
+        final String redirectUriWithoutParams = uriWithoutParams(redirectionUri);
+
+        for (String uri : redirectUris) {
+            log.debug("Comparing {} == {}", uri, redirectionUri);
+            if (uri.equals(redirectionUri)) { // compare complete uri
+                return true;
+            }
+
+            String uriWithoutParams = uriWithoutParams(uri);
+            final Map<String, String> params = getParams(uri);
+
+            if ((uriWithoutParams.equals(redirectUriWithoutParams) && params.size() == 0 && getParams(redirectionUri).size() == 0) ||
+                    uriWithoutParams.equals(redirectUriWithoutParams) && params.size() > 0 && compareParams(redirectionUri, uri)) {
+                return true;
+            }
+        }
+        return false;
+    }
+
+
+    public String validatePostLogoutRedirectUri(String clientId, String postLogoutRedirectUri) {
+
+        boolean isBlank = Util.isNullOrEmpty(postLogoutRedirectUri);
+
+        Client client = clientService.getClient(clientId);
+
+        if (client != null) {
+            String[] postLogoutRedirectUris = client.getPostLogoutRedirectUris();
+            log.debug("Validating post logout redirect URI: clientId = {}, postLogoutRedirectUri = {}", clientId, postLogoutRedirectUri);
+
+            return validatePostLogoutRedirectUri(postLogoutRedirectUri, postLogoutRedirectUris);
+        }
+
+        if (!isBlank) {
+            throw errorResponseFactory.createWebApplicationException(Response.Status.BAD_REQUEST, EndSessionErrorResponseType.POST_LOGOUT_URI_NOT_ASSOCIATED_WITH_CLIENT, "`post_logout_redirect_uri` is not added to associated client.");
+        }
+
+        return null;
+    }
+
+    public String validatePostLogoutRedirectUri(SessionId sessionId, String postLogoutRedirectUri) {
+        if (sessionId == null) {
+            throw errorResponseFactory.createWebApplicationException(Response.Status.BAD_REQUEST, EndSessionErrorResponseType.SESSION_NOT_PASSED, "Session object is not found.");
+        }
+        if (Strings.isNullOrEmpty(postLogoutRedirectUri)) {
+            throw errorResponseFactory.createWebApplicationException(Response.Status.BAD_REQUEST, EndSessionErrorResponseType.POST_LOGOUT_URI_NOT_PASSED, "`post_logout_redirect_uri` is empty.");
+        }
+
+        final Set<Client> clientsByDns = sessionId.getPermissionGrantedMap() != null
+                ? clientService.getClient(sessionId.getPermissionGrantedMap().getClientIds(true), true)
+                : Sets.<Client>newHashSet();
+
+        log.trace("Validating post logout redirect URI: postLogoutRedirectUri = {}", postLogoutRedirectUri);
+
+        for (Client client : clientsByDns) {
+            String[] postLogoutRedirectUris = client.getPostLogoutRedirectUris();
+
+            String validatedUri = validatePostLogoutRedirectUri(postLogoutRedirectUri, postLogoutRedirectUris);
+
+            if (StringUtils.isNotBlank(validatedUri)) {
+                return validatedUri;
+            }
+        }
+
+        throw errorResponseFactory.createWebApplicationException(Response.Status.BAD_REQUEST, EndSessionErrorResponseType.POST_LOGOUT_URI_NOT_ASSOCIATED_WITH_CLIENT, "Unable to validate `post_logout_redirect_uri`");
+    }
+
+    public boolean isUrlWhiteListed(String url) {
+        final boolean result = new URLPatternList(appConfiguration.getClientWhiteList()).isUrlListed(url);
+        log.trace("White listed result: {}, url: {}", result, url);
+        return result;
+    }
+
+    public String validatePostLogoutRedirectUri(String postLogoutRedirectUri, String[] allowedPostLogoutRedirectUris) {
+        if (appConfiguration.getAllowPostLogoutRedirectWithoutValidation() && isUrlWhiteListed(postLogoutRedirectUri)) {
+            log.trace("PostLogoutRedirectUri {} is whitelisted by 'clientWhiteList' configuration property.", postLogoutRedirectUri);
+            return postLogoutRedirectUri;
+        }
+
+        if (allowedPostLogoutRedirectUris != null && StringUtils.isNotBlank(postLogoutRedirectUri)) {
+            if (isUriEqual(postLogoutRedirectUri, allowedPostLogoutRedirectUris)) {
+                return postLogoutRedirectUri;
+            }
+        } else {
+            // Accept Request Without post_logout_redirect_uri when One Registered
+            if (allowedPostLogoutRedirectUris != null && allowedPostLogoutRedirectUris.length == 1) {
+                return allowedPostLogoutRedirectUris[0];
+            }
+        }
+        return "";
+    }
+
+    public static Map<String, String> getParams(String uri) {
+        Map<String, String> params = new HashMap<String, String>();
+
+        if (uri != null) {
+            int paramsIndex = uri.indexOf("?");
+            if (paramsIndex != -1) {
+                String queryString = uri.substring(paramsIndex + 1);
+                params = QueryStringDecoder.decode(queryString);
+            }
+        }
+        return params;
+    }
+
+    public static String uriWithoutParams(String uri) {
+        if (uri != null) {
+            int paramsIndex = uri.indexOf("?");
+            if (paramsIndex != -1) {
+                return uri.substring(0, paramsIndex);
+            }
+        }
+        return uri;
+    }
+
+    public static boolean compareParams(String uri1, String uri2) {
+        if (StringUtils.isBlank(uri1) || StringUtils.isBlank(uri2)) {
+            return false;
+        }
+
+        Map<String, String> params1 = getParams(uri1);
+        Map<String, String> params2 = getParams(uri2);
+
+        return params1.equals(params2);
+    }
+}
\ No newline at end of file
diff --git a/oxAuth/Server/src/main/java/org/gluu/oxauth/service/RequestParameterService.java b/oxAuth/Server/src/main/java/org/gluu/oxauth/service/RequestParameterService.java
new file mode 100644
index 00000000..eba05563
--- /dev/null
+++ b/oxAuth/Server/src/main/java/org/gluu/oxauth/service/RequestParameterService.java
@@ -0,0 +1,281 @@
+/*
+ * oxAuth is available under the MIT License (2008). See http://opensource.org/licenses/MIT for full text.
+ *
+ * Copyright (c) 2014, Gluu
+ */
+
+package org.gluu.oxauth.service;
+
+import com.google.common.collect.Lists;
+import org.apache.commons.lang.StringUtils;
+import org.gluu.model.security.Identity;
+import org.gluu.oxauth.model.authorize.AuthorizeRequestParam;
+import org.gluu.oxauth.model.authorize.JwtAuthorizationRequest;
+import org.gluu.oxauth.model.configuration.AppConfiguration;
+import org.gluu.oxauth.model.session.SessionId;
+import org.gluu.oxauth.model.util.Util;
+import org.gluu.util.Pair;
+import org.gluu.util.StringHelper;
+import org.json.JSONObject;
+import org.slf4j.Logger;
+
+import javax.annotation.Nonnull;
+import javax.enterprise.context.ApplicationScoped;
+import javax.inject.Inject;
+import javax.servlet.http.HttpServletRequest;
+import java.io.UnsupportedEncodingException;
+import java.net.URLEncoder;
+import java.util.*;
+import java.util.Map.Entry;
+
+/**
+ * @author Yuriy Movchan
+ * @author Javier Rojas Blum
+ * 
+ * @version October 7, 2019
+ */
+@ApplicationScoped
+public class RequestParameterService {
+
+	// use only "acr" instead of "acr_values" #334
+    private static final List<String> ALLOWED_PARAMETER = Collections.unmodifiableList(Arrays.asList(
+            AuthorizeRequestParam.SCOPE,
+            AuthorizeRequestParam.RESPONSE_TYPE,
+            AuthorizeRequestParam.CLIENT_ID,
+            AuthorizeRequestParam.REDIRECT_URI,
+            AuthorizeRequestParam.STATE,
+            AuthorizeRequestParam.RESPONSE_MODE,
+            AuthorizeRequestParam.NONCE,
+            AuthorizeRequestParam.DISPLAY,
+            AuthorizeRequestParam.PROMPT,
+            AuthorizeRequestParam.MAX_AGE,
+            AuthorizeRequestParam.UI_LOCALES,
+            AuthorizeRequestParam.ID_TOKEN_HINT,
+            AuthorizeRequestParam.LOGIN_HINT,
+            AuthorizeRequestParam.ACR_VALUES,
+            AuthorizeRequestParam.REQUEST,
+            AuthorizeRequestParam.REQUEST_URI,
+            AuthorizeRequestParam.ORIGIN_HEADERS,
+            AuthorizeRequestParam.CODE_CHALLENGE,
+            AuthorizeRequestParam.CODE_CHALLENGE_METHOD,
+            AuthorizeRequestParam.CUSTOM_RESPONSE_HEADERS,
+            AuthorizeRequestParam.CLAIMS,
+            AuthorizeRequestParam.AUTH_REQ_ID,
+            AuthorizeRequestParam.SID,
+            DeviceAuthorizationService.SESSION_USER_CODE));
+
+    @Inject
+    private Logger log;
+
+    @Inject
+    private Identity identity;
+
+    @Inject
+    private AppConfiguration appConfiguration;
+
+    private List<String> getAllAllowedParameters() {
+        List<String> allowedParameters = Lists.newArrayList(ALLOWED_PARAMETER);
+        if (appConfiguration.getSessionIdRequestParameterEnabled()) {
+            allowedParameters.add(AuthorizeRequestParam.SESSION_ID);
+        }
+        return allowedParameters;
+    }
+
+    public Map<String, String> getAllowedParameters(@Nonnull final Map<String, String> requestParameterMap) {
+        Set<String> authorizationRequestCustomAllowedParameters = appConfiguration.getAuthorizationRequestCustomAllowedParameters();
+        if (authorizationRequestCustomAllowedParameters == null) {
+        	authorizationRequestCustomAllowedParameters = new HashSet<String>(0);
+        }
+
+        final Map<String, String> result = new HashMap<String, String>();
+        if (requestParameterMap.isEmpty()) {
+            return result;
+        }
+
+        final List<String> allAllowed = getAllAllowedParameters();
+        final Set<Map.Entry<String, String>> set = requestParameterMap.entrySet();
+        for (Map.Entry<String, String> entry : set) {
+            if (allAllowed.contains(entry.getKey()) || authorizationRequestCustomAllowedParameters.contains(entry.getKey())) {
+                result.put(entry.getKey(), entry.getValue());
+            }
+        }
+        return result;
+    }
+
+    public Map<String, String> getCustomParameters(@Nonnull final Map<String, String> requestParameterMap) {
+        Set<String> authorizationRequestCustomAllowedParameters = appConfiguration.getAuthorizationRequestCustomAllowedParameters();
+
+        final Map<String, String> result = new HashMap<String, String>();
+        if (authorizationRequestCustomAllowedParameters == null) {
+        	return result;
+        }
+
+        if (!requestParameterMap.isEmpty()) {
+            final Set<Map.Entry<String, String>> set = requestParameterMap.entrySet();
+            for (Map.Entry<String, String> entry : set) {
+                if (authorizationRequestCustomAllowedParameters.contains(entry.getKey())) {
+                    result.put(entry.getKey(), entry.getValue());
+                }
+            }
+        }
+
+        return result;
+    }
+
+    public String parametersAsString(final Map<String, String> parameterMap) throws UnsupportedEncodingException {
+        final StringBuilder sb = new StringBuilder();
+        final Set<Entry<String, String>> set = parameterMap.entrySet();
+        for (Map.Entry<String, String> entry : set) {
+            final String value = (String) entry.getValue();
+            if (StringUtils.isNotBlank(value)) {
+                sb.append(entry.getKey()).append("=").append(URLEncoder.encode(value, Util.UTF8_STRING_ENCODING)).append("&");
+            }
+        }
+
+        String result = sb.toString();
+        if (result.endsWith("&")) {
+            result = result.substring(0, result.length() - 1);
+        }
+        return result;
+    }
+
+    public Map<String, String> getParametersMap(List<String> extraParameters, final Map<String, String> parameterMap) {
+        final List<String> allowedParameters = getAllAllowedParameters();
+
+        if (extraParameters != null) {
+            for (String extraParameter : extraParameters) {
+                putInMap(parameterMap, extraParameter);
+            }
+
+            allowedParameters.addAll(extraParameters);
+        }
+
+        parameterMap.entrySet().removeIf(entry -> !allowedParameters.contains(entry.getKey()));
+        return parameterMap;
+    }
+
+    private void putInMap(Map<String, String> map, String p_name) {
+        if (map == null) {
+            return;
+        }
+
+        String value = getParameterValue(p_name);
+
+        map.put(p_name, value);
+    }
+
+    public String getParameterValue(String p_name) {
+        Pair<String, String> valueWithType = getParameterValueWithType(p_name);
+        if (valueWithType == null) {
+            return null;
+        }
+
+        return valueWithType.getFirst();
+    }
+
+    public Pair<String, String> getParameterValueWithType(String p_name) {
+        String value = null;
+        String clazz = null;
+        final Object o = identity.getWorkingParameter(p_name);
+        if (o instanceof String) {
+            final String s = (String) o;
+            value = s;
+            clazz = String.class.getName();
+        } else if (o instanceof Integer) {
+            final Integer i = (Integer) o;
+            value = i.toString();
+            clazz = Integer.class.getName();
+        } else if (o instanceof Boolean) {
+            final Boolean b = (Boolean) o;
+            value = b.toString();
+            clazz = Boolean.class.getName();
+        }
+
+        return new Pair<String, String>(value, clazz);
+    }
+
+    public Object getTypedValue(String stringValue, String type) {
+        if (StringHelper.equals(Boolean.class.getName(), type)) {
+            return Boolean.valueOf(stringValue);
+        } else if (StringHelper.equals(Integer.class.getName(), type)) {
+            return Integer.valueOf(stringValue);
+        }
+
+        return stringValue;
+    }
+
+    /**
+     * Process a JWT Request instance and update Custom Parameters according to custom parameters sent.
+     * @param jwtRequest JWT processing
+     * @param customParameters Custom parameters used in the authorization flow.
+     */
+    public void getCustomParameters(JwtAuthorizationRequest jwtRequest, Map<String, String> customParameters) {
+        Set<String> authorizationRequestCustomAllowedParameters = appConfiguration
+                .getAuthorizationRequestCustomAllowedParameters();
+
+        if (authorizationRequestCustomAllowedParameters == null) {
+            return;
+        }
+
+        JSONObject jsonPayload = new JSONObject(jwtRequest.getPayload());
+        for (String customParam : authorizationRequestCustomAllowedParameters) {
+            if (jsonPayload.has( customParam )) {
+                customParameters.put(customParam, jsonPayload.getString(customParam));
+            }
+        }
+    }
+
+    public Map<String, String> getCustomParameters(HttpServletRequest request) {
+        Map<String, String> customParameters = new HashMap<>();
+        addCustomParameters(request, customParameters);
+        return customParameters;
+    }
+
+    public void addCustomParameters(HttpServletRequest request, Map<String, String> customParameters) {
+        Set<String> authorizationRequestCustomAllowedParameters = appConfiguration
+                .getAuthorizationRequestCustomAllowedParameters();
+
+        if (authorizationRequestCustomAllowedParameters == null) {
+            log.trace("Skipped custom parameters because 'authorizationRequestCustomAllowedParameters' AS configuration is not set.");
+            return;
+        }
+
+        final Enumeration<String> parameterNames = request.getParameterNames();
+        while (parameterNames.hasMoreElements()) {
+            final String parameterName = parameterNames.nextElement();
+            if (!authorizationRequestCustomAllowedParameters.contains(parameterName)) {
+                log.trace("Skipped '{}' as custom parameter (not defined in 'authorizationRequestCustomAllowedParameters')", parameterName);
+                continue;
+            }
+
+            final String parameterValue = request.getParameter(parameterName);
+            if (StringUtils.isNotBlank(parameterValue)) {
+                customParameters.put(parameterName, parameterValue);
+            }
+        }
+
+        log.trace("Custom parameters: {}", customParameters);
+    }
+
+    public void putCustomParametersIntoSession(SessionId sessionId, HttpServletRequest httpRequest) {
+        putCustomParametersIntoSession(sessionId, getCustomParameters(httpRequest));
+    }
+
+    public void putCustomParametersIntoSession(SessionId sessionId, Map<String, String> customParameters) {
+        if (sessionId == null || customParameters == null) {
+            return;
+        }
+
+        putCustomParametersIntoSession(sessionId.getSessionAttributes(), customParameters);
+    }
+
+    public void putCustomParametersIntoSession(Map<String, String> sessionAttributes, Map<String, String> customParameters) {
+        if (sessionAttributes == null || customParameters == null) {
+            return;
+        }
+
+        for (Map.Entry<String, String> entry : customParameters.entrySet()) {
+            sessionAttributes.put("custom_" + entry.getKey(), entry.getValue());
+        }
+    }
+}
diff --git a/oxAuth/Server/src/main/java/org/gluu/oxauth/service/ResteasyInitializer.java b/oxAuth/Server/src/main/java/org/gluu/oxauth/service/ResteasyInitializer.java
new file mode 100644
index 00000000..fc003ed8
--- /dev/null
+++ b/oxAuth/Server/src/main/java/org/gluu/oxauth/service/ResteasyInitializer.java
@@ -0,0 +1,14 @@
+package org.gluu.oxauth.service;
+
+import javax.ws.rs.ApplicationPath;
+import javax.ws.rs.core.Application;
+
+/**
+ * Integration with Resteasy
+ * 
+ * @author Yuriy Movchan
+ * @version 0.1, 03/21/2017
+ */
+@ApplicationPath("/restv1")
+public class ResteasyInitializer extends Application {	
+}
\ No newline at end of file
diff --git a/oxAuth/Server/src/main/java/org/gluu/oxauth/service/ScopeService.java b/oxAuth/Server/src/main/java/org/gluu/oxauth/service/ScopeService.java
new file mode 100644
index 00000000..7224bf02
--- /dev/null
+++ b/oxAuth/Server/src/main/java/org/gluu/oxauth/service/ScopeService.java
@@ -0,0 +1,327 @@
+/*
+ * oxAuth is available under the MIT License (2008). See http://opensource.org/licenses/MIT for full text.
+ *
+ * Copyright (c) 2014, Gluu
+ */
+
+package org.gluu.oxauth.service;
+
+import com.google.common.collect.Lists;
+import org.apache.commons.lang.StringUtils;
+import org.gluu.model.GluuAttribute;
+import org.gluu.model.attribute.AttributeDataType;
+import org.gluu.oxauth.model.common.User;
+import org.gluu.oxauth.model.config.StaticConfiguration;
+import org.gluu.oxauth.model.configuration.AppConfiguration;
+import org.gluu.oxauth.model.exception.InvalidClaimException;
+import org.gluu.oxauth.model.json.JsonApplier;
+import org.gluu.persist.PersistenceEntryManager;
+import org.gluu.search.filter.Filter;
+import org.gluu.service.BaseCacheService;
+import org.gluu.service.CacheService;
+import org.gluu.service.LocalCacheService;
+import org.gluu.util.StringHelper;
+import org.json.JSONArray;
+import org.oxauth.persistence.model.Scope;
+import org.slf4j.Logger;
+
+import javax.enterprise.context.ApplicationScoped;
+import javax.inject.Inject;
+import java.util.ArrayList;
+import java.util.*;
+
+/**
+ * @author Javier Rojas Blum Date: 07.05.2012
+ * @author Yuriy Movchan Date: 2016/04/26
+ */
+@ApplicationScoped
+public class ScopeService {
+
+    @Inject
+    private Logger log;
+
+    @Inject
+	private AppConfiguration appConfiguration;
+
+	@Inject
+	private CacheService cacheService;
+
+    @Inject
+    private LocalCacheService localCacheService;
+
+    @Inject
+    private PersistenceEntryManager ldapEntryManager;
+
+    @Inject
+    private StaticConfiguration staticConfiguration;
+
+    @Inject
+    private AttributeService attributeService;
+
+    /**
+     * returns a list of all scopes
+     *
+     * @return list of scopes
+     */
+    public List<Scope> getAllScopesList() {
+        String scopesBaseDN = staticConfiguration.getBaseDn().getScopes();
+
+        return ldapEntryManager.findEntries(scopesBaseDN,
+                Scope.class,
+                Filter.createPresenceFilter("inum"));
+    }
+
+    public List<String> getDefaultScopesDn() {
+        List<String> defaultScopes = new ArrayList<>();
+
+        for (Scope scope : getAllScopesList()) {
+            if (Boolean.TRUE.equals(scope.isDefaultScope())) {
+                defaultScopes.add(scope.getDn());
+            }
+        }
+
+        return defaultScopes;
+    }
+
+    public List<String> getScopesDn(List<String> scopeNames) {
+        List<String> scopes = new ArrayList<>();
+
+        for (String scopeName : scopeNames) {
+            Scope scope = getScopeById(scopeName);
+            if (scope != null) {
+                scopes.add(scope.getDn());
+            }
+        }
+
+        return scopes;
+    }
+
+    public List<String> getScopeIdsByDns(List<String> dns) {
+        List<String> names = Lists.newArrayList();
+        if (dns == null || dns.isEmpty()) {
+            return dns;
+        }
+
+        for (String dn : dns) {
+            Scope scope = getScopeByDnSilently(dn);
+            if (scope != null && StringUtils.isNotBlank(scope.getId())) {
+                names.add(scope.getId());
+            }
+        }
+        return names;
+    }
+
+    /**
+     * returns Scope by Dn
+     *
+     * @return Scope
+     */
+    public Scope getScopeByDn(String dn) {
+    	BaseCacheService usedCacheService = getCacheService();
+        final Scope scope = usedCacheService.getWithPut(dn, () -> ldapEntryManager.find(Scope.class, dn), 60);
+        if (scope != null && StringUtils.isNotBlank(scope.getId())) {
+        	usedCacheService.put(scope.getId(), scope); // put also by id, since we call it by id and dn
+        }
+        return scope;
+    }
+
+    /**
+     * returns Scope by Dn
+     *
+     * @return Scope
+     */
+    public Scope getScopeByDnSilently(String dn) {
+        try {
+            return getScopeByDn(dn);
+        } catch (Exception e) {
+            log.trace(e.getMessage(), e);
+            return null;
+        }
+    }
+
+    /**
+     * Get scope by DisplayName
+     *
+     * @param id
+     * @return scope
+     */
+    public Scope getScopeById(String id) {
+    	BaseCacheService usedCacheService = getCacheService();
+
+    	final Object cached = usedCacheService.get(id);
+        if (cached != null)
+            return (Scope) cached;
+
+        try {
+            List<Scope> scopes = ldapEntryManager.findEntries(
+                    staticConfiguration.getBaseDn().getScopes(), Scope.class, Filter.createEqualityFilter("oxId", id));
+            if ((scopes != null) && (scopes.size() > 0)) {
+                final Scope scope = scopes.get(0);
+                usedCacheService.put(id, scope);
+                usedCacheService.put(scope.getDn(), scope);
+                return scope;
+            }
+        } catch (Exception e) {
+            log.error("Failed to find scope with id: " + id, e);
+        }
+        return null;
+    }
+    
+    /**
+     * Get scope by oxAuthClaims
+     *
+     * @param claimDn
+     * @return List of scope
+     */
+    public List<Scope> getScopeByClaim(String claimDn) {
+    	List<Scope> scopes = fromCacheByClaimDn(claimDn);
+    	if (scopes == null) {
+	        Filter filter = Filter.createEqualityFilter("oxAuthClaim", claimDn);
+	        
+	    	String scopesBaseDN = staticConfiguration.getBaseDn().getScopes();
+	        scopes = ldapEntryManager.findEntries(scopesBaseDN, Scope.class, filter);
+	
+	        putInCache(claimDn, scopes);
+    	}
+
+        return scopes;
+    }
+
+	public List<Scope> getScopesByClaim(List<Scope> scopes, String claimDn) {
+		List<Scope> result = new ArrayList<>();
+		for (Scope scope : scopes) {
+			List<String> claims = scope.getOxAuthClaims();
+			if ((claims != null) && claims.contains(claimDn)) {
+				result.add(scope);
+			}
+		}
+
+		return result;
+	}
+
+    private void putInCache(String claimDn, List<Scope> scopes) {
+    	if (scopes == null) {
+    		return;
+    	}
+
+    	BaseCacheService usedCacheService = getCacheService();
+    	try {
+        	String key = getClaimDnCacheKey(claimDn);
+        	usedCacheService.put(key, scopes);
+        } catch (Exception ex) {
+            log.error("Failed to put scopes in cache, claimDn: '{}'", claimDn, ex);
+        }
+    }
+
+    @SuppressWarnings("unchecked")
+	private List<Scope> fromCacheByClaimDn(String claimDn) {
+    	BaseCacheService usedCacheService = getCacheService();
+        try {
+        	String key = getClaimDnCacheKey(claimDn);
+            return (List<Scope>) usedCacheService.get(key);
+        } catch (Exception ex) {
+            log.error("Failed to get scopes from cache, claimDn: '{}'", claimDn, ex);
+            return null;
+        }
+    }
+
+    private static String getClaimDnCacheKey(String claimDn) {
+        return "claim_dn" + StringHelper.toLowerCase(claimDn);
+    }
+
+    public void persist(Scope scope) {
+        ldapEntryManager.persist(scope);
+    }
+
+    private BaseCacheService getCacheService() {
+    	if (appConfiguration.getUseLocalCache()) {
+    		return localCacheService;
+    	}
+    	
+    	return cacheService;
+    }
+
+    public Map<String, Object> getClaims(User user, Scope scope) throws InvalidClaimException {
+        Map<String, Object> claims = new HashMap<>();
+
+        if (scope == null) {
+            log.trace("Scope is null.");
+            return claims;
+        }
+
+        final List<String> scopeClaims = scope.getOxAuthClaims();
+        if (scopeClaims == null) {
+            log.trace("No claims set for scope: {}", scope.getId());
+            return claims;
+        }
+
+        fillClaims(claims, scopeClaims, user);
+
+        return claims;
+    }
+
+    private void fillClaims(Map<String, Object> claims, List<String> scopeClaims, User user) throws InvalidClaimException {
+        for (String claimDn : scopeClaims) {
+            GluuAttribute gluuAttribute = attributeService.getAttributeByDn(claimDn);
+
+            String claimName = gluuAttribute.getOxAuthClaimName();
+            String ldapName = gluuAttribute.getName();
+
+            if (StringUtils.isBlank(claimName)) {
+                log.error("Failed to get claim because claim name is not set for attribute, id: {}", gluuAttribute.getDn());
+                continue;
+            }
+            if (StringUtils.isBlank(ldapName)) {
+                log.error("Failed to get claim because name is not set for attribute, id: {}", gluuAttribute.getDn());
+                continue;
+            }
+
+            setClaimField(ldapName, claimName, user, gluuAttribute, claims);
+        }
+    }
+
+    private void setClaimField(String ldapName, String claimName, User user, GluuAttribute gluuAttribute,
+                               Map<String, Object> claims) throws InvalidClaimException {
+        Object attribute = null;
+        if (ldapName.equals("uid")) {
+            attribute = user.getUserId();
+        } else if (ldapName.equals("updatedAt")) {
+            attribute = user.getUpdatedAt();
+        } else  if (ldapName.equals("createdAt")) {
+            attribute = user.getCreatedAt();
+        } else if (AttributeDataType.BOOLEAN.equals(gluuAttribute.getDataType())) {
+            final Object value = user.getAttribute(gluuAttribute.getName(), true, gluuAttribute.getOxMultiValuedAttribute());
+            if (value instanceof String) {
+                attribute = Boolean.parseBoolean(String.valueOf(value));
+            } else {
+                attribute = value;
+            }
+        } else if (AttributeDataType.DATE.equals(gluuAttribute.getDataType())) {
+            final Object value = user.getAttribute(gluuAttribute.getName(), true, gluuAttribute.getOxMultiValuedAttribute());
+            if (value instanceof Date) {
+                attribute = value;
+            } else if (value != null) {
+                attribute = decodeTime(user.getDn(), value.toString());
+            }
+        } else {
+            attribute = user.getAttribute(gluuAttribute.getName(), true, gluuAttribute.getOxMultiValuedAttribute());
+        }
+
+        if (attribute != null) {
+            claims.put(claimName, attribute instanceof JSONArray ? JsonApplier.getStringList((JSONArray) attribute) : attribute);
+        }
+    }
+
+    private Date decodeTime(String userDn, String value) {
+        Date date = ldapEntryManager.decodeTime(userDn, value);
+        if (date == null) {
+            try {
+                return new Date(value);
+            } catch (Exception e) {
+                log.error("Error on parse date: {}, input: {}", e.getMessage(), value);
+                return null;
+            }
+        }
+        return date;
+    }
+}
\ No newline at end of file
diff --git a/oxAuth/Server/src/main/java/org/gluu/oxauth/service/SectorIdentifierService.java b/oxAuth/Server/src/main/java/org/gluu/oxauth/service/SectorIdentifierService.java
new file mode 100644
index 00000000..18cd0eb3
--- /dev/null
+++ b/oxAuth/Server/src/main/java/org/gluu/oxauth/service/SectorIdentifierService.java
@@ -0,0 +1,150 @@
+package org.gluu.oxauth.service;
+
+import org.apache.commons.lang.ArrayUtils;
+import org.apache.commons.lang.StringUtils;
+import org.gluu.oxauth.model.common.*;
+import org.gluu.oxauth.model.config.StaticConfiguration;
+import org.gluu.oxauth.model.configuration.AppConfiguration;
+import org.gluu.oxauth.model.registration.Client;
+import org.gluu.persist.PersistenceEntryManager;
+import org.gluu.util.StringHelper;
+import org.oxauth.persistence.model.PairwiseIdentifier;
+import org.oxauth.persistence.model.SectorIdentifier;
+import org.slf4j.Logger;
+
+import javax.enterprise.context.ApplicationScoped;
+import javax.inject.Inject;
+import java.net.URI;
+import java.util.UUID;
+
+/**
+ * @author Javier Rojas Blum
+ * @version April 10, 2020
+ */
+@ApplicationScoped
+public class SectorIdentifierService {
+
+    @Inject
+    private Logger log;
+
+    @Inject
+    private PersistenceEntryManager ldapEntryManager;
+
+    @Inject
+    private StaticConfiguration staticConfiguration;
+
+    @Inject
+    private PairwiseIdentifierService pairwiseIdentifierService;
+
+    @Inject
+    protected AppConfiguration appConfiguration;
+
+    /**
+     * Get sector identifier by oxId
+     *
+     * @param oxId Sector identifier oxId
+     * @return Sector identifier
+     */
+    public SectorIdentifier getSectorIdentifierById(String oxId) {
+        SectorIdentifier result = null;
+        try {
+            result = ldapEntryManager.find(SectorIdentifier.class, getDnForSectorIdentifier(oxId));
+        } catch (Exception e) {
+            log.error("Failed to find sector identifier by oxId " + oxId, e);
+        }
+        return result;
+    }
+
+    /**
+     * Build DN string for sector identifier
+     *
+     * @param oxId Sector Identifier oxId
+     * @return DN string for specified sector identifier or DN for sector identifiers branch if oxId is null
+     * @throws Exception
+     */
+    public String getDnForSectorIdentifier(String oxId) {
+        String sectorIdentifierDn = staticConfiguration.getBaseDn().getSectorIdentifiers();
+        if (StringHelper.isEmpty(oxId)) {
+            return sectorIdentifierDn;
+        }
+
+        return String.format("oxId=%s,%s", oxId, sectorIdentifierDn);
+    }
+
+    public String getSub(IAuthorizationGrant grant) {
+        Client client = grant.getClient();
+        User user = grant.getUser();
+
+        if (user == null) {
+            log.trace("User is null, return blank sub");
+            return "";
+        }
+        if (client == null) {
+            log.trace("Client is null, return blank sub.");
+            return "";
+        }
+
+        return getSub(client, user, grant instanceof CIBAGrant);
+    }
+
+    public String getSub(Client client, User user, boolean isCibaGrant) {
+        if (user == null) {
+            log.trace("User is null, return blank sub");
+            return "";
+        }
+        if (client == null) {
+            log.trace("Client is null, return blank sub.");
+            return "";
+        }
+
+        final boolean isClientPairwise = SubjectType.PAIRWISE.equals(SubjectType.fromString(client.getSubjectType()));
+        if (isClientPairwise) {
+            final String sectorIdentifierUri;
+
+            if (StringUtils.isNotBlank(client.getSectorIdentifierUri())) {
+                sectorIdentifierUri = client.getSectorIdentifierUri();
+            } else {
+                if (!isCibaGrant) {
+                    sectorIdentifierUri = !ArrayUtils.isEmpty(client.getRedirectUris()) ? client.getRedirectUris()[0] : null;
+                } else {
+                    if (client.getBackchannelTokenDeliveryMode() == BackchannelTokenDeliveryMode.PUSH) {
+                        sectorIdentifierUri = client.getBackchannelClientNotificationEndpoint();
+                    } else {
+                        sectorIdentifierUri = client.getJwksUri();
+                    }
+                }
+            }
+
+            String userInum = user.getAttribute("inum");
+
+            try {
+                if (StringUtils.isNotBlank(sectorIdentifierUri)) {
+                    String sectorIdentifier = URI.create(sectorIdentifierUri).getHost();
+                    if (appConfiguration.getSubjectIdentifierBasedOnWholeUriBackwardCompatibility()) // todo remove in 5.0
+                        sectorIdentifier = sectorIdentifierUri;
+
+                    PairwiseIdentifier pairwiseIdentifier = pairwiseIdentifierService.findPairWiseIdentifier(userInum,
+                            sectorIdentifier, client.getClientId());
+                    if (pairwiseIdentifier == null) {
+                        pairwiseIdentifier = new PairwiseIdentifier(sectorIdentifier, client.getClientId(), userInum);
+                        pairwiseIdentifier.setId(UUID.randomUUID().toString());
+                        pairwiseIdentifier.setDn(pairwiseIdentifierService.getDnForPairwiseIdentifier(pairwiseIdentifier.getId(), userInum));
+                        pairwiseIdentifierService.addPairwiseIdentifier(userInum, pairwiseIdentifier);
+                    }
+                    return pairwiseIdentifier.getId();
+                } else {
+                    log.trace("Sector identifier uri is blank for client: " + client.getClientId());
+                }
+            } catch (Exception e) {
+                log.error("Failed to get sub claim. PairwiseIdentifierService failed to find pair wise identifier.", e);
+                return "";
+            }
+        }
+
+        String openidSubAttribute = appConfiguration.getOpenidSubAttribute();
+        if (StringHelper.equalsIgnoreCase(openidSubAttribute, "uid")) {
+            return user.getUserId();
+        }
+        return user.getAttribute(openidSubAttribute);
+    }
+}
diff --git a/oxAuth/Server/src/main/java/org/gluu/oxauth/service/ServerCryptoProvider.java b/oxAuth/Server/src/main/java/org/gluu/oxauth/service/ServerCryptoProvider.java
new file mode 100644
index 00000000..4febaf06
--- /dev/null
+++ b/oxAuth/Server/src/main/java/org/gluu/oxauth/service/ServerCryptoProvider.java
@@ -0,0 +1,97 @@
+package org.gluu.oxauth.service;
+
+import org.apache.log4j.Logger;
+import org.gluu.oxauth.model.config.ConfigurationFactory;
+import org.gluu.oxauth.model.crypto.AbstractCryptoProvider;
+import org.gluu.oxauth.model.crypto.signature.AlgorithmFamily;
+import org.gluu.oxauth.model.crypto.signature.SignatureAlgorithm;
+import org.gluu.oxauth.model.jwk.Algorithm;
+import org.gluu.oxauth.model.jwk.JSONWebKeySet;
+import org.gluu.oxauth.model.jwk.Use;
+import org.gluu.service.cdi.util.CdiUtil;
+import org.json.JSONObject;
+import org.msgpack.core.Preconditions;
+
+import java.security.KeyStoreException;
+import java.security.PrivateKey;
+
+/**
+ * @author Yuriy Zabrovarnyy
+ */
+public class ServerCryptoProvider extends AbstractCryptoProvider {
+
+    private static final Logger LOG = Logger.getLogger(ServerCryptoProvider.class);
+
+    private final ConfigurationFactory configurationFactory;
+    private final AbstractCryptoProvider cryptoProvider;
+
+    public ServerCryptoProvider(AbstractCryptoProvider cryptoProvider) {
+        this.configurationFactory = CdiUtil.bean(ConfigurationFactory.class);
+        this.cryptoProvider = cryptoProvider;
+        Preconditions.checkNotNull(configurationFactory);
+        Preconditions.checkNotNull(cryptoProvider);
+    }
+
+    @Override
+    public String getKeyId(JSONWebKeySet jsonWebKeySet, Algorithm algorithm, Use use) throws Exception {
+        try {
+            if (algorithm == null || AlgorithmFamily.HMAC.equals(algorithm.getFamily())) {
+                return null;
+            }
+            final String kid = cryptoProvider.getKeyId(jsonWebKeySet, algorithm, use);
+            if (!cryptoProvider.getKeys().contains(kid) && configurationFactory.reloadConfFromLdap()) {
+                return cryptoProvider.getKeyId(jsonWebKeySet, algorithm, use);
+            }
+            return kid;
+
+        } catch (KeyStoreException e) {
+            LOG.trace("Try to re-load configuration due to keystore exception (it can be rotated).");
+            if (configurationFactory.reloadConfFromLdap()) {
+                return cryptoProvider.getKeyId(jsonWebKeySet, algorithm, use);
+            }
+        }
+        return null;
+    }
+
+    @Override
+    public JSONObject generateKey(Algorithm algorithm, Long expirationTime, Use use) throws Exception {
+        return cryptoProvider.generateKey(algorithm, expirationTime, use);
+    }
+
+    @Override
+    public JSONObject generateKey(Algorithm algorithm, Long expirationTime, Use use, int keyLength) throws Exception {
+        return cryptoProvider.generateKey(algorithm, expirationTime, use, keyLength);
+    }
+
+    @Override
+    public String sign(String signingInput, String keyId, String sharedSecret, SignatureAlgorithm signatureAlgorithm) throws Exception {
+        if (configurationFactory.getAppConfiguration().getRejectJwtWithNoneAlg() && signatureAlgorithm == SignatureAlgorithm.NONE) {
+            throw new UnsupportedOperationException("None algorithm is forbidden by `rejectJwtWithNoneAlg` configuration property.");
+        }
+        return cryptoProvider.sign(signingInput, keyId, sharedSecret, signatureAlgorithm);
+    }
+
+    @Override
+    public boolean verifySignature(String signingInput, String encodedSignature, String keyId, JSONObject jwks, String sharedSecret, SignatureAlgorithm signatureAlgorithm) throws Exception {
+        if (configurationFactory.getAppConfiguration().getRejectJwtWithNoneAlg() && signatureAlgorithm == SignatureAlgorithm.NONE) {
+            LOG.trace("None algorithm is forbidden by `rejectJwtWithNoneAlg` configuration property.");
+            return false;
+        }
+        return cryptoProvider.verifySignature(signingInput, encodedSignature, keyId, jwks, sharedSecret, signatureAlgorithm);
+    }
+
+    @Override
+    public boolean deleteKey(String keyId) throws Exception {
+        return cryptoProvider.deleteKey(keyId);
+    }
+
+    @Override
+    public boolean containsKey(String keyId) {
+        return cryptoProvider.containsKey(keyId);
+    }
+
+    @Override
+    public PrivateKey getPrivateKey(String keyId) throws Exception {
+        return cryptoProvider.getPrivateKey(keyId);
+    }
+}
diff --git a/oxAuth/Server/src/main/java/org/gluu/oxauth/service/SessionIdService.java b/oxAuth/Server/src/main/java/org/gluu/oxauth/service/SessionIdService.java
new file mode 100644
index 00000000..f2973a20
--- /dev/null
+++ b/oxAuth/Server/src/main/java/org/gluu/oxauth/service/SessionIdService.java
@@ -0,0 +1,1028 @@
+/*
+ * oxAuth is available under the MIT License (2008). See http://opensource.org/licenses/MIT for full text.
+ *
+ * Copyright (c) 2014, Gluu
+ */
+
+package org.gluu.oxauth.service;
+
+import com.google.common.base.Preconditions;
+import com.google.common.collect.Sets;
+import com.unboundid.ldap.sdk.LDAPException;
+import com.unboundid.ldap.sdk.ResultCode;
+import org.apache.commons.lang.BooleanUtils;
+import org.apache.commons.lang.StringUtils;
+import org.gluu.oxauth.audit.ApplicationAuditLogger;
+import org.gluu.oxauth.model.audit.Action;
+import org.gluu.oxauth.model.audit.OAuth2AuditLog;
+import org.gluu.oxauth.model.authorize.AuthorizeRequestParam;
+import org.gluu.oxauth.model.common.Prompt;
+import org.gluu.oxauth.model.common.User;
+import org.gluu.oxauth.model.config.Constants;
+import org.gluu.oxauth.model.config.StaticConfiguration;
+import org.gluu.oxauth.model.config.WebKeysConfiguration;
+import org.gluu.oxauth.model.configuration.AppConfiguration;
+import org.gluu.oxauth.model.crypto.signature.SignatureAlgorithm;
+import org.gluu.oxauth.model.exception.AcrChangedException;
+import org.gluu.oxauth.model.exception.InvalidSessionStateException;
+import org.gluu.oxauth.model.jwt.Jwt;
+import org.gluu.oxauth.model.jwt.JwtClaimName;
+import org.gluu.oxauth.model.jwt.JwtSubClaimObject;
+import org.gluu.oxauth.model.session.SessionId;
+import org.gluu.oxauth.model.session.SessionIdState;
+import org.gluu.oxauth.model.token.JwtSigner;
+import org.gluu.oxauth.model.util.JwtUtil;
+import org.gluu.oxauth.model.util.Pair;
+import org.gluu.oxauth.model.util.Util;
+import org.gluu.oxauth.security.Identity;
+import org.gluu.oxauth.service.common.UserService;
+import org.gluu.oxauth.service.external.ExternalApplicationSessionService;
+import org.gluu.oxauth.service.external.ExternalAuthenticationService;
+import org.gluu.oxauth.service.external.session.SessionEvent;
+import org.gluu.oxauth.service.external.session.SessionEventType;
+import org.gluu.oxauth.service.stat.StatService;
+import org.gluu.oxauth.util.ServerUtil;
+import org.gluu.persist.PersistenceEntryManager;
+import org.gluu.persist.exception.EntryPersistenceException;
+import org.gluu.search.filter.Filter;
+import org.gluu.service.CacheService;
+import org.gluu.service.LocalCacheService;
+import org.gluu.util.StringHelper;
+import org.jetbrains.annotations.Nullable;
+import org.json.JSONException;
+import org.slf4j.Logger;
+
+import javax.enterprise.context.RequestScoped;
+import javax.faces.context.ExternalContext;
+import javax.faces.context.FacesContext;
+import javax.inject.Inject;
+import javax.inject.Named;
+import javax.servlet.http.HttpServletRequest;
+import javax.servlet.http.HttpServletResponse;
+import java.io.UnsupportedEncodingException;
+import java.net.URI;
+import java.net.URISyntaxException;
+import java.security.NoSuchAlgorithmException;
+import java.security.NoSuchProviderException;
+import java.util.*;
+import java.util.Map.Entry;
+import java.util.concurrent.TimeUnit;
+
+/**
+ * @author Yuriy Zabrovarnyy
+ * @author Yuriy Movchan
+ * @author Javier Rojas Blum
+ * @version December 8, 2018
+ */
+@RequestScoped
+@Named
+public class SessionIdService {
+
+    public static final String OP_BROWSER_STATE = "opbs";
+    public static final String SESSION_CUSTOM_STATE = "session_custom_state";
+    private static final int MAX_MERGE_ATTEMPTS = 3;
+    private static final int DEFAULT_LOCAL_CACHE_EXPIRATION = 2;
+
+    @Inject
+    private Logger log;
+
+    @Inject
+    private ExternalAuthenticationService externalAuthenticationService;
+
+    @Inject
+    private ExternalApplicationSessionService externalApplicationSessionService;
+
+    @Inject
+    private ApplicationAuditLogger applicationAuditLogger;
+
+    @Inject
+    private AppConfiguration appConfiguration;
+
+    @Inject
+    private WebKeysConfiguration webKeysConfiguration;
+
+    @Inject
+    private FacesContext facesContext;
+
+    @Inject
+    private ExternalContext externalContext;
+
+    @Inject
+    private RequestParameterService requestParameterService;
+
+    @Inject
+    private UserService userService;
+
+    @Inject
+    private PersistenceEntryManager persistenceEntryManager;
+
+    @Inject
+    private StaticConfiguration staticConfiguration;
+
+    @Inject
+    private CookieService cookieService;
+
+    @Inject
+    private Identity identity;
+
+    @Inject
+    private LocalCacheService localCacheService;
+
+    @Inject
+    private CacheService cacheService;
+
+    @Inject
+    private StatService statService;
+
+    private String buildDn(String sessionId) {
+        return String.format("oxId=%s,%s", sessionId, staticConfiguration.getBaseDn().getSessions());
+    }
+
+    public Set<SessionId> getCurrentSessions() {
+        final Set<String> ids = cookieService.getCurrentSessions();
+        final Set<SessionId> sessions = Sets.newHashSet();
+        for (String sessionId : ids) {
+            if (StringUtils.isBlank(sessionId)) {
+                log.error("Invalid sessionId in current_sessions: " + sessionId);
+                continue;
+            }
+
+            final SessionId sessionIdObj = getSessionId(sessionId);
+            if (sessionIdObj == null) {
+                log.trace("Unable to find session object by id: " + sessionId + " {expired?}");
+                continue;
+            }
+
+            if (sessionIdObj.getState() != SessionIdState.AUTHENTICATED) {
+                log.error("Session is not authenticated, id: " + sessionId);
+                continue;
+            }
+            sessions.add(sessionIdObj);
+        }
+        return sessions;
+    }
+
+    public String getAcr(SessionId session) {
+        if (session == null) {
+            return null;
+        }
+
+        String acr = session.getSessionAttributes().get(JwtClaimName.AUTHENTICATION_CONTEXT_CLASS_REFERENCE);
+        if (StringUtils.isBlank(acr)) {
+            acr = session.getSessionAttributes().get("acr_values");
+        }
+        return acr;
+    }
+
+    // #34 - update session attributes with each request
+    // 1) redirect_uri change -> update session
+    // 2) acr change -> throw acr change exception
+    // 3) client_id change -> do nothing
+    // https://github.com/GluuFederation/oxAuth/issues/34
+    public SessionId assertAuthenticatedSessionCorrespondsToNewRequest(SessionId session, String acrValuesStr) throws AcrChangedException {
+        if (session != null && !session.getSessionAttributes().isEmpty() && session.getState() == SessionIdState.AUTHENTICATED) {
+
+            final Map<String, String> sessionAttributes = session.getSessionAttributes();
+
+            String sessionAcr = getAcr(session);
+
+            if (StringUtils.isBlank(sessionAcr)) {
+                log.trace("Failed to fetch acr from session, attributes: " + sessionAttributes);
+                return session;
+            }
+
+            List<String> acrValuesList = acrValuesList(acrValuesStr);
+            boolean isAcrChanged = !acrValuesList.isEmpty() && !acrValuesList.contains(sessionAcr);
+            if (isAcrChanged) {
+                Map<String, Integer> acrToLevel = externalAuthenticationService.acrToLevelMapping();
+                Integer sessionAcrLevel = acrToLevel.get(externalAuthenticationService.scriptName(sessionAcr));
+
+                for (String acrValue : acrValuesList) {
+                    Integer currentAcrLevel = acrToLevel.get(externalAuthenticationService.scriptName(acrValue));
+
+                    log.info("Acr is changed. Session acr: " + sessionAcr + "(level: " + sessionAcrLevel + "), " +
+                            "current acr: " + acrValue + "(level: " + currentAcrLevel + ")");
+
+                    // Requested acr method not enabled
+                    if (currentAcrLevel == null) {
+                        throw new AcrChangedException(false);
+                    }
+
+                    if (sessionAcrLevel < currentAcrLevel) {
+                        throw new AcrChangedException();
+                    }
+                }
+                // https://github.com/GluuFederation/oxAuth/issues/291
+                return session; // we don't want to reinit login because we have stronger acr (avoid overriding)
+            }
+
+            reinitLogin(session, false);
+        }
+
+        return session;
+    }
+
+    private static boolean shouldReinitSession(Map<String, String> sessionAttributes, Map<String, String> currentSessionAttributes) {
+        final Map<String, String> copySessionAttributes = new HashMap<>(sessionAttributes);
+        final Map<String, String> copyCurrentSessionAttributes = new HashMap<>(currentSessionAttributes);
+
+        // it's up to RP whether to change state per request
+        copySessionAttributes.remove(AuthorizeRequestParam.STATE);
+        copyCurrentSessionAttributes.remove(AuthorizeRequestParam.STATE);
+
+        return !copyCurrentSessionAttributes.equals(copySessionAttributes);
+    }
+
+    /**
+     *
+     * @param session
+     * @param force
+     * @return returns whether session was updated
+     */
+    public boolean reinitLogin(SessionId session, boolean force) {
+        final Map<String, String> sessionAttributes = session.getSessionAttributes();
+        final Map<String, String> currentSessionAttributes = getCurrentSessionAttributes(sessionAttributes);
+        if (log.isTraceEnabled()) {
+            log.trace("sessionAttributes: {}", sessionAttributes);
+            log.trace("currentSessionAttributes: {}", currentSessionAttributes);
+            log.trace("shouldReinitSession: {}, force: {}", shouldReinitSession(sessionAttributes, currentSessionAttributes), force);
+        }
+
+        if (force || shouldReinitSession(sessionAttributes, currentSessionAttributes)) {
+            sessionAttributes.putAll(currentSessionAttributes);
+
+            // Reinit login
+            sessionAttributes.put("c", "1");
+
+            for (Iterator<Entry<String, String>> it = currentSessionAttributes.entrySet().iterator(); it.hasNext(); ) {
+                Entry<String, String> currentSessionAttributesEntry = it.next();
+                String name = currentSessionAttributesEntry.getKey();
+                if (name.startsWith("auth_step_passed_")) {
+                    it.remove();
+                }
+            }
+
+            session.setSessionAttributes(currentSessionAttributes);
+
+            if (force) {
+            	// Reset state to unauthenticated
+            	session.setState(SessionIdState.UNAUTHENTICATED);
+                externalEvent(new SessionEvent(SessionEventType.UNAUTHENTICATED, session));
+            }
+
+            boolean updateResult = updateSessionId(session, true, true, true);
+            if (!updateResult) {
+                log.debug("Failed to update session entry: '{}'", session.getId());
+            }
+            if (log.isTraceEnabled()) {
+                log.trace("sessionAttributes after update: {}, ", session.getSessionAttributes());
+            }
+            return updateResult;
+        }
+        return false;
+    }
+
+    public SessionId resetToStep(SessionId session, int resetToStep) {
+        final Map<String, String> sessionAttributes = session.getSessionAttributes();
+
+        int currentStep = 1;
+        if (sessionAttributes.containsKey("auth_step")) {
+            currentStep = StringHelper.toInteger(sessionAttributes.get("auth_step"), currentStep);
+        }
+
+        if (resetToStep <= currentStep) {
+	        for (int i = resetToStep; i <= currentStep; i++) {
+	            String key = String.format("auth_step_passed_%d", i);
+	            sessionAttributes.remove(key);
+	        }
+        } else {
+        	// Scenario when we sckip steps. In this case we need to mark all previous steps as passed
+	        for (int i = currentStep + 1; i < resetToStep; i++) {
+	            sessionAttributes.put(String.format("auth_step_passed_%d", i), Boolean.TRUE.toString());
+	        }
+        }
+
+        sessionAttributes.put("auth_step", String.valueOf(resetToStep));
+
+        boolean updateResult = updateSessionId(session, true, true, true);
+        if (!updateResult) {
+            log.debug("Failed to update session entry: '{}'", session.getId());
+            return null;
+        }
+        
+        return session;
+    }
+
+    private Map<String, String> getCurrentSessionAttributes(Map<String, String> sessionAttributes) {
+        if (facesContext == null) {
+            return sessionAttributes;
+        }
+
+        // Update from request
+        final Map<String, String> currentSessionAttributes = new HashMap<>(sessionAttributes);
+
+        Map<String, String> requestParameters = externalContext.getRequestParameterMap();
+        Map<String, String> newRequestParameterMap = requestParameterService.getAllowedParameters(requestParameters);
+        for (Entry<String, String> newRequestParameterMapEntry : newRequestParameterMap.entrySet()) {
+            String name = newRequestParameterMapEntry.getKey();
+            if (!StringHelper.equalsIgnoreCase(name, "auth_step")) {
+                currentSessionAttributes.put(name, newRequestParameterMapEntry.getValue());
+            }
+        }
+        if (!requestParameters.containsKey(AuthorizeRequestParam.CODE_CHALLENGE) || !requestParameters.containsKey(AuthorizeRequestParam.CODE_CHALLENGE_METHOD)) {
+            currentSessionAttributes.remove(AuthorizeRequestParam.CODE_CHALLENGE);
+            currentSessionAttributes.remove(AuthorizeRequestParam.CODE_CHALLENGE_METHOD);
+        }
+
+        return currentSessionAttributes;
+    }
+
+    public SessionId getSessionId() {
+        String sessionId = cookieService.getSessionIdFromCookie();
+
+        if (StringHelper.isEmpty(sessionId)) {
+        	if (identity.getSessionId() != null) {
+        		sessionId = identity.getSessionId().getId();
+        	}
+        }
+
+        if (StringHelper.isNotEmpty(sessionId)) {
+            return getSessionId(sessionId);
+        } else {
+        	log.trace("Session cookie not exists");
+        }
+
+        return null;
+    }
+
+    public Map<String, String> getSessionAttributes(SessionId sessionId) {
+        if (sessionId != null) {
+            return sessionId.getSessionAttributes();
+        }
+
+        return null;
+    }
+
+    public SessionId generateAuthenticatedSessionId(HttpServletRequest httpRequest, String userDn) throws InvalidSessionStateException {
+        Map<String, String> sessionIdAttributes = new HashMap<>();
+        sessionIdAttributes.put("prompt", "");
+
+        return generateAuthenticatedSessionId(httpRequest, userDn, sessionIdAttributes);
+    }
+
+    public SessionId generateAuthenticatedSessionId(HttpServletRequest httpRequest, String userDn, String prompt) throws InvalidSessionStateException {
+        Map<String, String> sessionIdAttributes = new HashMap<>();
+        sessionIdAttributes.put("prompt", prompt);
+
+        return generateAuthenticatedSessionId(httpRequest, userDn, sessionIdAttributes);
+    }
+
+    public SessionId generateAuthenticatedSessionId(HttpServletRequest httpRequest, String userDn, Map<String, String> sessionIdAttributes) throws InvalidSessionStateException {
+        SessionId sessionId = generateSessionId(userDn, new Date(), SessionIdState.AUTHENTICATED, sessionIdAttributes, true);
+
+        reportActiveUser(sessionId);
+
+        if (externalApplicationSessionService.isEnabled()) {
+            String userName = sessionId.getSessionAttributes().get(Constants.AUTHENTICATED_USER);
+            boolean externalResult = externalApplicationSessionService.executeExternalStartSessionMethods(httpRequest, sessionId);
+            log.info("Start session result for '{}': '{}'", userName, "start", externalResult);
+
+            if (!externalResult) {
+            	reinitLogin(sessionId, true);
+            	throw new InvalidSessionStateException("Session creation is prohibited by external session script!");
+            }
+
+            externalEvent(new SessionEvent(SessionEventType.AUTHENTICATED, sessionId).setHttpRequest(httpRequest));
+        }
+
+        return sessionId;
+    }
+
+    private void reportActiveUser(SessionId sessionId) {
+        try {
+            final User user = getUser(sessionId);
+            if (user != null) {
+                statService.reportActiveUser(user.getUserId());
+            }
+        } catch (Exception e) {
+            log.error(e.getMessage(), e);
+        }
+    }
+
+    public SessionId generateUnauthenticatedSessionId(String userDn) {
+        Map<String, String> sessionIdAttributes = new HashMap<>();
+        return generateSessionId(userDn, new Date(), SessionIdState.UNAUTHENTICATED, sessionIdAttributes, true);
+    }
+
+    public SessionId generateUnauthenticatedSessionId(String userDn, Date authenticationDate, SessionIdState state, Map<String, String> sessionIdAttributes, boolean persist) {
+        return generateSessionId(userDn, authenticationDate, state, sessionIdAttributes, persist);
+    }
+    
+    public String computeSessionState(SessionId sessionId, String clientId, String redirectUri) {
+        final boolean isSameClient = clientId.equals(sessionId.getSessionAttributes().get("client_id")) &&
+                redirectUri.equals(sessionId.getSessionAttributes().get("redirect_uri"));
+        if(isSameClient)
+            return sessionId.getSessionState();
+        final String salt = UUID.randomUUID().toString();
+        final String opbs = sessionId.getOPBrowserState();
+        final String sessionState = computeSessionState(clientId,redirectUri, opbs, salt);
+        return sessionState;
+    }
+
+    private String computeSessionState(String clientId, String redirectUri, String opbs, String salt) {
+        try {
+            final String clientOrigin = getClientOrigin(redirectUri);
+            final String sessionState = JwtUtil.bytesToHex(JwtUtil.getMessageDigestSHA256(
+                    clientId + " " + clientOrigin + " " + opbs + " " + salt)) + "." + salt;
+            return sessionState;
+        } catch (NoSuchProviderException | NoSuchAlgorithmException | UnsupportedEncodingException | URISyntaxException e) {
+            log.error("Failed generating session state! " + e.getMessage(), e);
+            throw new RuntimeException(e);
+		}
+    }
+
+    private String getClientOrigin(String redirectUri) throws URISyntaxException {
+    	if (StringHelper.isNotEmpty(redirectUri)) {
+	        final URI uri = new URI(redirectUri);
+	        String result = uri.getScheme() + "://" + uri.getHost();
+	        if(uri.getPort() > 0)
+	            result += ":" + Integer.toString(uri.getPort());
+	        return result;
+    	} else {
+    		return appConfiguration.getIssuer();
+    	}
+    }
+
+    private SessionId generateSessionId(String userDn, Date authenticationDate, SessionIdState state, Map<String, String> sessionIdAttributes, boolean persist) {
+        final String internalSid = UUID.randomUUID().toString();
+        final String outsideSid = UUID.randomUUID().toString();
+        final String salt = UUID.randomUUID().toString();
+        final String clientId = sessionIdAttributes.get("client_id");
+        final String opbs = UUID.randomUUID().toString();
+        final String redirectUri = sessionIdAttributes.get("redirect_uri");
+        final String sessionState = computeSessionState(clientId, redirectUri, opbs, salt);
+        final String dn = buildDn(internalSid);
+        sessionIdAttributes.put(OP_BROWSER_STATE, opbs);
+
+        Preconditions.checkNotNull(dn);
+
+        if (SessionIdState.AUTHENTICATED == state && StringUtils.isBlank(userDn) && !sessionIdAttributes.containsKey("uma")) {
+            return null;
+        }
+
+        final SessionId sessionId = new SessionId();
+        sessionId.setId(internalSid);
+        sessionId.setOutsideSid(outsideSid);
+        sessionId.setDn(dn);
+        sessionId.setUserDn(userDn);
+        sessionId.setSessionState(sessionState);
+
+        final Pair<Date, Integer> expiration = expirationDate(sessionId.getCreationDate(), state);
+        sessionId.setExpirationDate(expiration.getFirst());
+        sessionId.setTtl(expiration.getSecond());
+
+        Boolean sessionAsJwt = appConfiguration.getSessionAsJwt();
+        sessionId.setIsJwt(sessionAsJwt != null && sessionAsJwt);
+
+        sessionId.setAuthenticationTime(authenticationDate != null ? authenticationDate : new Date());
+
+        if (state != null) {
+            sessionId.setState(state);
+        }
+
+        sessionId.setSessionAttributes(sessionIdAttributes);
+        sessionId.setLastUsedAt(new Date());
+
+        if (sessionId.getIsJwt()) {
+            sessionId.setJwt(generateJwt(sessionId, userDn).asString());
+        }
+
+        boolean persisted = false;
+        if (persist) {
+            persisted = persistSessionId(sessionId);
+        }
+
+        auditLogging(sessionId);
+
+        log.trace("Generated new session, id = '{}', state = '{}', asJwt = '{}', persisted = '{}'", sessionId.getId(), sessionId.getState(), sessionId.getIsJwt(), persisted);
+        return sessionId;
+    }
+
+
+    private Jwt generateJwt(SessionId sessionId, String audience) {
+        try {
+            JwtSigner jwtSigner = new JwtSigner(appConfiguration, webKeysConfiguration, SignatureAlgorithm.RS512, audience);
+            Jwt jwt = jwtSigner.newJwt();
+
+            // claims
+            jwt.getClaims().setClaim("id", sessionId.getId());
+            jwt.getClaims().setClaim("authentication_time", sessionId.getAuthenticationTime());
+            jwt.getClaims().setClaim("user_dn", sessionId.getUserDn());
+            jwt.getClaims().setClaim("state", sessionId.getState() != null ?
+                    sessionId.getState().getValue() : "");
+
+            jwt.getClaims().setClaim("session_attributes", JwtSubClaimObject.fromMap(sessionId.getSessionAttributes()));
+
+            jwt.getClaims().setClaim("last_used_at", sessionId.getLastUsedAt());
+            jwt.getClaims().setClaim("permission_granted", sessionId.getPermissionGranted());
+            jwt.getClaims().setClaim("permission_granted_map", JwtSubClaimObject.fromBooleanMap(sessionId.getPermissionGrantedMap().getPermissionGranted()));
+
+            // sign
+            return jwtSigner.sign();
+        } catch (Exception e) {
+            log.error("Failed to sign session jwt! " + e.getMessage(), e);
+            throw new RuntimeException(e);
+        }
+    }
+
+    public SessionId setSessionIdStateAuthenticated(HttpServletRequest httpRequest, HttpServletResponse httpResponse, SessionId sessionId, String p_userDn) {
+        sessionId.setUserDn(p_userDn);
+        sessionId.setAuthenticationTime(new Date());
+        sessionId.setState(SessionIdState.AUTHENTICATED);
+
+        final User user = getUser(sessionId);
+        if (user != null) {
+            statService.reportActiveUser(user.getUserId());
+        }
+
+        final boolean persisted;
+        if (appConfiguration.getChangeSessionIdOnAuthentication() && httpResponse != null) {
+            final String oldSessionId = sessionId.getId();
+            final String newSessionId = UUID.randomUUID().toString();
+
+            log.debug("Changing session id from {} to {} ...", oldSessionId, newSessionId);
+            remove(sessionId);
+
+            sessionId.setId(newSessionId);
+            sessionId.setDn(buildDn(newSessionId));
+            sessionId.getSessionAttributes().put(SessionId.OLD_SESSION_ID_ATTR_KEY, oldSessionId);
+            if (sessionId.getIsJwt()) {
+                sessionId.setJwt(generateJwt(sessionId, sessionId.getUserDn()).asString());
+            }
+
+            persisted = persistSessionId(sessionId, true);
+            cookieService.createSessionIdCookie(sessionId, httpRequest, httpResponse, false);
+            log.debug("Session identifier changed from {} to {} .", oldSessionId, newSessionId);
+        } else {
+            persisted = updateSessionId(sessionId, true, true, true);
+        }
+
+        auditLogging(sessionId);
+        log.trace("Authenticated session, id = '{}', state = '{}', persisted = '{}'", sessionId.getId(), sessionId.getState(), persisted);
+
+        if (externalApplicationSessionService.isEnabled()) {
+            String userName = sessionId.getSessionAttributes().get(Constants.AUTHENTICATED_USER);
+            boolean externalResult = externalApplicationSessionService.executeExternalStartSessionMethods(httpRequest, sessionId);
+            log.info("Start session result for '{}': '{}'", userName, "start", externalResult);
+
+            if (!externalResult) {
+            	reinitLogin(sessionId, true);
+            	throw new InvalidSessionStateException("Session creation is prohibited by external session script!");
+            }
+            externalEvent(new SessionEvent(SessionEventType.AUTHENTICATED, sessionId).setHttpRequest(httpRequest).setHttpResponse(httpResponse));
+        }
+
+        return sessionId;
+    }
+
+    public boolean persistSessionId(final SessionId sessionId) {
+        return persistSessionId(sessionId, false);
+    }
+
+    public boolean persistSessionId(final SessionId sessionId, boolean forcePersistence) {
+        List<Prompt> prompts = getPromptsFromSessionId(sessionId);
+
+        try {
+            final int unusedLifetime = appConfiguration.getSessionIdUnusedLifetime();
+            if ((unusedLifetime > 0 && isPersisted(prompts)) || forcePersistence) {
+                sessionId.setLastUsedAt(new Date());
+
+                final Pair<Date, Integer> expiration = expirationDate(sessionId.getCreationDate(), sessionId.getState());
+                sessionId.setPersisted(true);
+                sessionId.setExpirationDate(expiration.getFirst());
+                sessionId.setTtl(expiration.getSecond());
+                log.trace("sessionIdAttributes: " + sessionId.getPermissionGrantedMap());
+                if (appConfiguration.getSessionIdPersistInCache()) {
+                    cacheService.put(expiration.getSecond(), sessionId.getDn(), sessionId);
+                } else {
+                    persistenceEntryManager.persist(sessionId);
+                }
+                localCacheService.put(DEFAULT_LOCAL_CACHE_EXPIRATION, sessionId.getDn(), sessionId);
+                return true;
+            }
+        } catch (Exception e) {
+            log.error(e.getMessage(), e);
+        }
+
+        return false;
+    }
+
+    public boolean updateSessionId(final SessionId sessionId) {
+        return updateSessionId(sessionId, true);
+    }
+
+    public boolean updateSessionId(final SessionId sessionId, boolean updateLastUsedAt) {
+        return updateSessionId(sessionId, updateLastUsedAt, false, true);
+    }
+
+    public boolean updateSessionId(final SessionId sessionId, boolean updateLastUsedAt, boolean forceUpdate, boolean modified) {
+        List<Prompt> prompts = getPromptsFromSessionId(sessionId);
+
+        try {
+            final int unusedLifetime = appConfiguration.getSessionIdUnusedLifetime();
+            if ((unusedLifetime > 0 && isPersisted(prompts)) || forceUpdate) {
+                boolean update = modified;
+
+                if (updateLastUsedAt) {
+                    Date lastUsedAt = new Date();
+                    if (sessionId.getLastUsedAt() != null) {
+                        long diff = lastUsedAt.getTime() - sessionId.getLastUsedAt().getTime();
+                        int unusedDiffInSeconds = (int) (diff/1000);
+                        if (unusedDiffInSeconds > unusedLifetime) {
+                            log.debug("Session id expired: {} by sessionIdUnusedLifetime, remove it.", sessionId.getId());
+                            remove(sessionId); // expired
+                            return false;
+                        }
+
+                        if (diff > 500) { // update only if diff is more than 500ms
+                            update = true;
+                            sessionId.setLastUsedAt(lastUsedAt);
+                        }
+                    } else {
+                        update = true;
+                        sessionId.setLastUsedAt(lastUsedAt);
+                    }
+                }
+
+                if (!sessionId.isPersisted()) {
+                    update = true;
+                    sessionId.setPersisted(true);
+                }
+
+                if (isExpired(sessionId)) {
+                    log.debug("Session id expired: {} by lifetime property, remove it.", sessionId.getId());
+                    remove(sessionId); // expired
+                    update = false;
+                }
+
+                if (update) {
+                    mergeWithRetry(sessionId);
+                }
+            }
+        } catch (Exception e) {
+            log.error(e.getMessage(), e);
+            return false;
+        }
+
+        return true;
+    }
+
+    public boolean isExpired(SessionId sessionId) {
+        if (sessionId.getAuthenticationTime() == null) {
+            return false;
+        }
+        final long currentLifetimeInSeconds = (System.currentTimeMillis() - sessionId.getAuthenticationTime().getTime()) / 1000;
+
+        return currentLifetimeInSeconds > getServerSessionIdLifetimeInSeconds();
+    }
+
+    public int getServerSessionIdLifetimeInSeconds() {
+        if (appConfiguration.getServerSessionIdLifetime() != null && appConfiguration.getServerSessionIdLifetime() > 0) {
+            return appConfiguration.getServerSessionIdLifetime();
+        }
+        if (appConfiguration.getSessionIdLifetime() != null && appConfiguration.getSessionIdLifetime() > 0) {
+            return appConfiguration.getSessionIdLifetime();
+        }
+
+        // we don't know for how long we can put it in cache/persistence since expiration is not set, so we set it to max integer.
+        if (appConfiguration.getServerSessionIdLifetime() != null && appConfiguration.getSessionIdLifetime() != null &&
+                appConfiguration.getServerSessionIdLifetime() <= 0 && appConfiguration.getSessionIdLifetime() <= 0) {
+            return Integer.MAX_VALUE;
+        }
+        log.debug("Session id lifetime configuration is null.");
+        return AppConfiguration.DEFAULT_SESSION_ID_LIFETIME;
+    }
+
+    private Pair<Date, Integer> expirationDate(Date creationDate, SessionIdState state) {
+        int expirationInSeconds = state == SessionIdState.UNAUTHENTICATED ?
+                appConfiguration.getSessionIdUnauthenticatedUnusedLifetime() :
+                getServerSessionIdLifetimeInSeconds();
+        Calendar calendar = Calendar.getInstance();
+        calendar.setTime(creationDate);
+        calendar.add(Calendar.SECOND, expirationInSeconds);
+        return new Pair<>(calendar.getTime(), expirationInSeconds);
+    }
+
+    private void mergeWithRetry(final SessionId sessionId) {
+        final Pair<Date, Integer> expiration = expirationDate(sessionId.getCreationDate(), sessionId.getState());
+        sessionId.setExpirationDate(expiration.getFirst());
+        sessionId.setTtl(expiration.getSecond());
+
+        EntryPersistenceException lastException = null;
+        for (int i = 1; i <= MAX_MERGE_ATTEMPTS; i++) {
+            try {
+                if (appConfiguration.getSessionIdPersistInCache()) {
+                    cacheService.put(expiration.getSecond(), sessionId.getDn(), sessionId);
+                } else {
+                    persistenceEntryManager.merge(sessionId);
+                }
+                localCacheService.put(DEFAULT_LOCAL_CACHE_EXPIRATION, sessionId.getDn(), sessionId);
+                externalEvent(new SessionEvent(SessionEventType.UPDATED, sessionId));
+                return;
+            } catch (EntryPersistenceException ex) {
+                lastException = ex;
+                if (ex.getCause() instanceof LDAPException) {
+                    LDAPException parentEx = ((LDAPException) ex.getCause());
+                    log.debug("LDAP exception resultCode: '{}'", parentEx.getResultCode().intValue());
+                    if ((parentEx.getResultCode().intValue() == ResultCode.NO_SUCH_ATTRIBUTE_INT_VALUE) ||
+                            (parentEx.getResultCode().intValue() == ResultCode.ATTRIBUTE_OR_VALUE_EXISTS_INT_VALUE)) {
+                        log.warn("Session entry update attempt '{}' was unsuccessfull", i);
+                        continue;
+                    }
+                }
+
+                throw ex;
+            }
+        }
+
+        log.error("Session entry update attempt was unsuccessfull after '{}' attempts", MAX_MERGE_ATTEMPTS);
+        throw lastException;
+    }
+
+    public void updateSessionIdIfNeeded(SessionId sessionId, boolean modified) {
+        updateSessionId(sessionId, true, false, modified);
+    }
+
+    private boolean isPersisted(List<Prompt> prompts) {
+        if (prompts != null && prompts.contains(Prompt.NONE)) {
+            final Boolean persistOnPromptNone = appConfiguration.getSessionIdPersistOnPromptNone();
+            return persistOnPromptNone != null && persistOnPromptNone;
+        }
+        return true;
+    }
+
+    @Nullable
+    public SessionId getSessionById(@Nullable String sessionId, boolean silently) {
+        return getSessionByDn(buildDn(sessionId), silently);
+    }
+
+    @Nullable
+    public SessionId getSessionByDn(@Nullable String dn) {
+        return getSessionByDn(dn, false);
+    }
+
+    @Nullable
+    public SessionId getSessionBySid(@Nullable String sid) {
+        if (StringUtils.isBlank(sid)) {
+            return null;
+        }
+
+        final List<SessionId> entries = persistenceEntryManager.findEntries(staticConfiguration.getBaseDn().getSessions(), SessionId.class, Filter.createEqualityFilter("sid", sid));
+        if (entries == null || entries.size() != 1) {
+            return null;
+        }
+        return entries.get(0);
+    }
+
+    @Nullable
+    public SessionId getSessionByDn(@Nullable String dn, boolean silently) {
+        if (StringUtils.isBlank(dn)) {
+            return null;
+        }
+
+        final Object localCopy = localCacheService.get(dn);
+        if (localCopy instanceof SessionId) {
+            if (isSessionValid((SessionId) localCopy)) {
+                return (SessionId) localCopy;
+            } else {
+                localCacheService.remove(dn);
+            }
+        }
+
+        try {
+            final SessionId sessionId;
+            if (appConfiguration.getSessionIdPersistInCache()) {
+                sessionId = (SessionId) cacheService.get(dn);
+            } else {
+                sessionId = persistenceEntryManager.find(SessionId.class, dn);
+            }
+            localCacheService.put(DEFAULT_LOCAL_CACHE_EXPIRATION, sessionId.getDn(), sessionId);
+            return sessionId;
+        } catch (Exception e) {
+            if (!silently) {
+                if (BooleanUtils.isTrue(appConfiguration.getLogNotFoundEntityAsError())) {
+                    log.error("Failed to get session by dn: " + dn, e);
+                } else {
+                    log.trace("Failed to get session by dn: " + dn, e);
+                }
+            }
+        }
+        return null;
+    }
+
+    @Deprecated
+    public String getSessionIdFromCookie() {
+        return cookieService.getSessionIdFromCookie();
+    }
+
+    public SessionId getSessionId(HttpServletRequest request) {
+        final String sessionIdFromCookie = cookieService.getSessionIdFromCookie(request);
+        log.trace("SessionId from cookie: " + sessionIdFromCookie);
+        return getSessionId(sessionIdFromCookie);
+    }
+
+    public SessionId getSessionId(String sessionId) {
+        return getSessionId(sessionId, false);
+    }
+
+    public SessionId getSessionId(String sessionId, boolean silently) {
+        if (StringHelper.isEmpty(sessionId)) {
+            return null;
+        }
+
+        try {
+            final SessionId entity = getSessionById(sessionId, silently);
+            log.trace("Try to get session by id: {} ...", sessionId);
+            if (entity != null) {
+                log.trace("Session dn: {}", entity.getDn());
+
+                if (isSessionValid(entity)) {
+                    return entity;
+                }
+            }
+        } catch (Exception ex) {
+            if (!silently) {
+                log.trace(ex.getMessage());
+            }
+        }
+
+        log.trace("Failed to get session by id: {}", sessionId);
+        return null;
+    }
+
+    public boolean remove(SessionId sessionId) {
+        try {
+            if (appConfiguration.getSessionIdPersistInCache()) {
+                cacheService.remove(sessionId.getDn());
+            } else {
+                persistenceEntryManager.remove(sessionId.getDn(), SessionId.class);
+            }
+            localCacheService.remove(sessionId.getDn());
+            externalEvent(new SessionEvent(SessionEventType.GONE, sessionId));
+            return true;
+        } catch (Exception e) {
+            log.error(e.getMessage(), e);
+            return false;
+        }
+    }
+
+    public void remove(List<SessionId> list) {
+        for (SessionId id : list) {
+            try {
+                remove(id);
+            } catch (Exception e) {
+                log.error("Failed to remove entry", e);
+            }
+        }
+    }
+
+    public boolean isSessionValid(SessionId sessionId) {
+        if (sessionId == null) {
+            return false;
+        }
+
+        final long sessionInterval = TimeUnit.SECONDS.toMillis(appConfiguration.getSessionIdUnusedLifetime());
+        final long sessionUnauthenticatedInterval = TimeUnit.SECONDS.toMillis(appConfiguration.getSessionIdUnauthenticatedUnusedLifetime());
+
+        final long timeSinceLastAccess = System.currentTimeMillis() - sessionId.getLastUsedAt().getTime();
+        if (timeSinceLastAccess > sessionInterval && appConfiguration.getSessionIdUnusedLifetime() != -1) {
+            return false;
+        }
+        if (sessionId.getState() == SessionIdState.UNAUTHENTICATED && timeSinceLastAccess > sessionUnauthenticatedInterval && appConfiguration.getSessionIdUnauthenticatedUnusedLifetime() != -1) {
+            return false;
+        }
+
+        return true;
+    }
+
+    private List<Prompt> getPromptsFromSessionId(final SessionId sessionId) {
+        String promptParam = sessionId.getSessionAttributes().get("prompt");
+        return Prompt.fromString(promptParam, " ");
+    }
+
+    public boolean isSessionIdAuthenticated(SessionId sessionId) {
+        if (sessionId == null) {
+            return false;
+        }
+        return SessionIdState.AUTHENTICATED.equals(sessionId.getState());
+    }
+
+    /**
+     * By definition we expects space separated acr values as it is defined in spec. But we also try maybe some client
+     * sent it to us as json array. So we try both.
+     *
+     * @return acr value list
+     */
+    public List<String> acrValuesList(String acrValues) {
+        List<String> acrs;
+        try {
+            acrs = Util.jsonArrayStringAsList(acrValues);
+        } catch (JSONException ex) {
+            acrs = Util.splittedStringAsList(acrValues, " ");
+        }
+
+
+        LinkedHashSet<String> resultAcrs = new LinkedHashSet<String>();
+        for (String acr : acrs) {
+        	resultAcrs.add(externalAuthenticationService.scriptName(acr));
+        }
+
+        return new ArrayList<String>(resultAcrs);
+    }
+
+    private void auditLogging(SessionId sessionId) {
+        HttpServletRequest httpServletRequest = ServerUtil.getRequestOrNull();
+        if (httpServletRequest != null) {
+            Action action;
+            switch (sessionId.getState()) {
+                case AUTHENTICATED:
+                    action = Action.SESSION_AUTHENTICATED;
+                    break;
+                case UNAUTHENTICATED:
+                    action = Action.SESSION_UNAUTHENTICATED;
+                    break;
+                default:
+                    action = Action.SESSION_UNAUTHENTICATED;
+            }
+            OAuth2AuditLog oAuth2AuditLog = new OAuth2AuditLog(ServerUtil.getIpAddress(httpServletRequest), action);
+            oAuth2AuditLog.setSuccess(true);
+            applicationAuditLogger.sendMessage(oAuth2AuditLog);
+        }
+    }
+
+    public User getUser(SessionId sessionId) {
+        if (sessionId == null) {
+            return null;
+        }
+
+        if (sessionId.getUser() != null) {
+            return sessionId.getUser();
+        }
+
+        if (StringUtils.isBlank(sessionId.getUserDn())) {
+            return null;
+        }
+
+        final User user = userService.getUserByDn(sessionId.getUserDn());
+        if (user != null) {
+            sessionId.setUser(user);
+            return user;
+        }
+
+        return null;
+    }
+
+    public List<SessionId> findByUser(String userDn) {
+        if (appConfiguration.getSessionIdPersistInCache()) {
+            throw new UnsupportedOperationException("Operation is not supported with sessionIdPersistInCache=true. Set it to false to avoid this exception.");
+        }
+        Filter filter = Filter.createEqualityFilter("oxAuthUserDN", userDn);
+        return persistenceEntryManager.findEntries(staticConfiguration.getBaseDn().getSessions(), SessionId.class, filter);
+    }
+
+    public void externalEvent(SessionEvent event) {
+        externalApplicationSessionService.externalEvent(event);
+    }
+
+    public boolean hasAllScopes(SessionId sessionId, Set<String> scopes) {
+        if (sessionId == null || sessionId.getSessionAttributes().isEmpty() || scopes == null || scopes.isEmpty()) {
+            return false;
+        }
+
+        final String scopesAsString = sessionId.getSessionAttributes().get("scope");
+        return hasAllScopes(scopesAsString, scopes);
+    }
+
+    public boolean hasClientAllScopes(SessionId sessionId, String clientId, Set<String> scopes) {
+        if (sessionId == null || sessionId.getSessionAttributes().isEmpty() || StringUtils.isBlank(clientId) || scopes == null || scopes.isEmpty()) {
+            return false;
+        }
+        final String key = clientId + "_authz_scopes";
+
+        String clientScopes = sessionId.getSessionAttributes().get(key);
+        return hasAllScopes(clientScopes, scopes);
+    }
+
+    public static boolean hasAllScopes(String existingScopes, Set<String> scopes) {
+        if (StringUtils.isBlank(existingScopes)) {
+            return false;
+        }
+
+        for (String scope : scopes) {
+            if (!existingScopes.contains(scope)) {
+                return false;
+            }
+        }
+        return true;
+    }
+}
\ No newline at end of file
diff --git a/oxAuth/Server/src/main/java/org/gluu/oxauth/service/SpontaneousScopeService.java b/oxAuth/Server/src/main/java/org/gluu/oxauth/service/SpontaneousScopeService.java
new file mode 100644
index 00000000..acfa3712
--- /dev/null
+++ b/oxAuth/Server/src/main/java/org/gluu/oxauth/service/SpontaneousScopeService.java
@@ -0,0 +1,121 @@
+package org.gluu.oxauth.service;
+
+import com.google.common.collect.Lists;
+import com.google.common.collect.Sets;
+
+import org.gluu.oxauth.model.common.ScopeType;
+import org.gluu.oxauth.model.config.StaticConfiguration;
+import org.gluu.oxauth.model.configuration.AppConfiguration;
+import org.gluu.oxauth.model.registration.Client;
+import org.gluu.oxauth.model.util.Pair;
+import org.oxauth.persistence.model.Scope;
+import org.slf4j.Logger;
+
+import javax.enterprise.context.ApplicationScoped;
+import javax.inject.Inject;
+import java.util.*;
+import java.util.regex.Pattern;
+
+import static org.apache.commons.lang3.BooleanUtils.isFalse;
+
+@ApplicationScoped
+public class SpontaneousScopeService {
+
+    private static final int DEFAULT_SPONTANEOUS_SCOPE_LIFETIME_IN_SECONDS = 60 * 60 * 24; // 24h
+    @Inject
+    private Logger log;
+    @Inject
+    private StaticConfiguration staticConfiguration;
+    @Inject
+    private AppConfiguration appConfiguration;
+    @Inject
+    private ScopeService scopeService;
+
+    public Scope createSpontaneousScopeIfNeeded(Set<String> regExps, String scopeId, String clientId) {
+        Scope fromPersistence = scopeService.getScopeById(scopeId);
+        if (fromPersistence != null) { // scope already exists
+            return fromPersistence;
+        }
+
+        final Pair<Boolean, String> isAllowed = isAllowedBySpontaneousScopes(regExps, scopeId);
+        if (!isAllowed.getFirst()) {
+            log.error("Forbidden by client. Check client configuration.");
+            return null;
+        }
+
+        Scope regexpScope = scopeService.getScopeById(isAllowed.getSecond());
+
+        Scope scope = new Scope();
+        scope.setDefaultScope(false);
+        scope.setDescription("Spontaneous scope: " + scope);
+        scope.setDisplayName(scopeId);
+        scope.setId(scopeId);
+        scope.setInum(UUID.randomUUID().toString());
+        scope.setScopeType(ScopeType.SPONTANEOUS);
+        scope.setDeletable(true);
+        scope.setExpirationDate(new Date(getLifetime()));
+        scope.setDn("inum=" + scope.getInum() + "," + staticConfiguration.getBaseDn().getScopes());
+        scope.getAttributes().setSpontaneousClientId(clientId);
+        scope.getAttributes().setSpontaneousClientScopes(Lists.newArrayList(isAllowed.getSecond()));
+        scope.setUmaAuthorizationPolicies(regexpScope != null ? regexpScope.getUmaAuthorizationPolicies() : new ArrayList<>());
+
+        scopeService.persist(scope);
+        log.trace("Created spontaneous scope: " + scope.getId() + ", dn: " + scope.getDn());
+        return scope;
+    }
+
+    public long getLifetime() {
+        Calendar expiration = Calendar.getInstance();
+        int lifetime = DEFAULT_SPONTANEOUS_SCOPE_LIFETIME_IN_SECONDS;
+        if (appConfiguration.getSpontaneousScopeLifetime() > 0) {
+            lifetime = appConfiguration.getSpontaneousScopeLifetime();
+        }
+        expiration.add(Calendar.SECOND, lifetime);
+        return expiration.getTimeInMillis();
+    }
+
+    public boolean isAllowedBySpontaneousScopes(Client client, String scopeRequested) {
+        if (isFalse(appConfiguration.getAllowSpontaneousScopes())) {
+            return false;
+        }
+
+        if (isFalse(client.getAttributes().getAllowSpontaneousScopes())) {
+            return false;
+        }
+
+        return isAllowedBySpontaneousScopes(Sets.newHashSet(client.getAttributes().getSpontaneousScopes()), scopeRequested).getFirst();
+    }
+
+    public boolean isAllowedBySpontaneousScopes_(Set<String> regExps, String scopeRequested) {
+        return isAllowedBySpontaneousScopes(regExps, scopeRequested).getFirst();
+    }
+
+    public Pair<Boolean, String> isAllowedBySpontaneousScopes(Set<String> regExps, String scopeRequested) {
+
+        for (String spontaneousScope : regExps) {
+            if (isAllowedBySpontaneousScope(spontaneousScope, scopeRequested)) {
+                return new Pair<>(true, spontaneousScope);
+            }
+        }
+
+        return new Pair<>(false, null);
+    }
+
+    public boolean isAllowedBySpontaneousScope(String spontaneousScope, String scopeRequested) {
+        try {
+            boolean result = spontaneousScope.equals(scopeRequested);
+
+            if (!result) {
+                result = Pattern.matches(spontaneousScope, scopeRequested);
+            }
+
+            if (result) {
+                log.trace("Scope {} allowed by spontaneous scope: {}", scopeRequested, spontaneousScope);
+            }
+            return result;
+        } catch (Exception e) {
+            log.error(e.getMessage(), e);
+        }
+        return false;
+    }
+}
diff --git a/oxAuth/Server/src/main/java/org/gluu/oxauth/service/UserGroupService.java b/oxAuth/Server/src/main/java/org/gluu/oxauth/service/UserGroupService.java
new file mode 100644
index 00000000..2e22139b
--- /dev/null
+++ b/oxAuth/Server/src/main/java/org/gluu/oxauth/service/UserGroupService.java
@@ -0,0 +1,91 @@
+/*
+ * oxAuth is available under the MIT License (2008). See http://opensource.org/licenses/MIT for full text.
+ *
+ * Copyright (c) 2014, Gluu
+ */
+
+package org.gluu.oxauth.service;
+
+import java.util.Arrays;
+import java.util.List;
+
+import javax.enterprise.context.ApplicationScoped;
+import javax.inject.Inject;
+
+import org.apache.commons.lang.StringUtils;
+import org.gluu.oxauth.model.ldap.UserGroup;
+import org.gluu.persist.PersistenceEntryManager;
+import org.gluu.persist.exception.EntryPersistenceException;
+import org.gluu.search.filter.Filter;
+import org.slf4j.Logger;
+
+/**
+ * It's utility service which applications uses in custom authentication scripts 
+ * 
+ * @author Yuriy Zabrovarnyy
+ * @version 0.9, 27/07/2012
+ * @author Yuriy Movchan Date: 04/11/2014
+ */
+@ApplicationScoped
+public class UserGroupService {
+
+    @Inject
+    private Logger log;
+
+    @Inject
+    private PersistenceEntryManager ldapEntryManager;
+
+    public UserGroup loadGroup(String p_groupDN) {
+        try {
+            if (StringUtils.isNotBlank(p_groupDN)) {
+                return ldapEntryManager.find(UserGroup.class, p_groupDN);
+            }
+        } catch (Exception e) {
+            log.debug(e.getMessage(), e);
+        }
+        return null;
+    }
+
+    public boolean isUserInGroup(String p_groupDN, String p_userDN) {
+        final UserGroup group = loadGroup(p_groupDN);
+        if (group != null) {
+            final String[] member = group.getMember();
+            if (member != null) {
+                return Arrays.asList(member).contains(p_userDN);
+            }
+        }
+        return false;
+    }
+
+    public boolean isUserInGroupOrMember(String groupDn, String personDn) {
+		Filter ownerFilter = Filter.createEqualityFilter("owner", personDn);
+		Filter memberFilter = Filter.createEqualityFilter("member", personDn);
+		Filter searchFilter = Filter.createORFilter(ownerFilter, memberFilter);
+
+		boolean isMemberOrOwner = false;
+		try {
+			isMemberOrOwner = ldapEntryManager.findEntries(groupDn, UserGroup.class, searchFilter, 1).size() > 0;
+
+		} catch (EntryPersistenceException ex) {
+			log.error("Failed to determine if person '{}' memeber or owner of group '{}'", personDn, groupDn, ex);
+		}
+
+		return isMemberOrOwner;
+	}
+
+    public boolean isInAnyGroup(String[] p_groupDNs, String p_userDN) {
+        return p_groupDNs != null && isInAnyGroup(Arrays.asList(p_groupDNs), p_userDN);
+    }
+
+    public boolean isInAnyGroup(List<String> p_groupDNs, String p_userDN) {
+        if (p_groupDNs != null && !p_groupDNs.isEmpty() && p_userDN != null && !p_userDN.isEmpty()) {
+            for (String groupDN : p_groupDNs) {
+                if (isUserInGroup(groupDN, p_userDN)) {
+                    return true;
+                }
+            }
+        }
+        return false;
+    }
+
+}
diff --git a/oxAuth/Server/src/main/java/org/gluu/oxauth/service/UserService.java b/oxAuth/Server/src/main/java/org/gluu/oxauth/service/UserService.java
new file mode 100644
index 00000000..027bf67c
--- /dev/null
+++ b/oxAuth/Server/src/main/java/org/gluu/oxauth/service/UserService.java
@@ -0,0 +1,90 @@
+/*
+ * oxAuth is available under the MIT License (2008). See http://opensource.org/licenses/MIT for full text.
+ *
+ * Copyright (c) 2014, Gluu
+ */
+
+package org.gluu.oxauth.service;
+
+import java.util.List;
+
+import javax.enterprise.context.ApplicationScoped;
+import javax.inject.Inject;
+
+import org.apache.commons.lang.StringUtils;
+import org.gluu.oxauth.model.config.StaticConfiguration;
+import org.gluu.oxauth.model.configuration.AppConfiguration;
+import org.gluu.oxauth.model.fido.u2f.DeviceRegistration;
+import org.gluu.oxauth.model.fido.u2f.DeviceRegistrationStatus;
+import org.gluu.persist.model.base.CustomEntry;
+import org.gluu.persist.model.base.SimpleBranch;
+import org.gluu.persist.model.fido2.Fido2RegistrationEntry;
+import org.gluu.search.filter.Filter;
+import org.gluu.service.net.NetworkService;
+import org.gluu.util.StringHelper;
+
+/**
+ * Provides operations with users.
+ *
+ * @author Javier Rojas Blum
+ * @version @version August 20, 2019
+ */
+@ApplicationScoped
+public class UserService extends org.gluu.oxauth.service.common.UserService {
+
+	public static final String[] USER_OBJECT_CLASSES = new String[] { "gluuPerson" };
+
+    @Inject
+    private StaticConfiguration staticConfiguration;
+
+    @Inject
+    private AppConfiguration appConfiguration;
+    
+    @Inject
+    private NetworkService networkService;
+
+    @Override
+	protected List<String> getPersonCustomObjectClassList() {
+		return appConfiguration.getPersonCustomObjectClassList();
+	}
+
+    @Override
+	protected String getPeopleBaseDn() {
+		return staticConfiguration.getBaseDn().getPeople();
+	}
+
+
+    public long countFido2RegisteredDevices(String username, String domain) {
+        String userInum = getUserInum(username);
+        if (userInum == null) {
+            return 0;
+        }
+
+        String baseDn = getBaseDnForFido2RegistrationEntries(userInum);
+        if (persistenceEntryManager.hasBranchesSupport(baseDn)) {
+            if (!persistenceEntryManager.contains(baseDn, SimpleBranch.class)) {
+                return 0;
+            }
+        }
+
+        Filter userInumFilter = Filter.createEqualityFilter("personInum", userInum);
+        Filter registeredFilter = Filter.createEqualityFilter("oxStatus", "registered");
+        Filter domainFilter = Filter.createEqualityFilter("oxApplication", domain);
+        Filter filter = Filter.createANDFilter(userInumFilter, registeredFilter, domainFilter);
+
+        return persistenceEntryManager.countEntries(baseDn, Fido2RegistrationEntry.class, filter);
+    }
+
+    public String getBaseDnForFido2RegistrationEntries(String userInum) {
+        final String userBaseDn = getDnForUser(userInum); // "ou=fido2_register,inum=1234,ou=people,o=gluu"
+
+        return String.format("ou=fido2_register,%s", userBaseDn);
+    }
+
+    public String getBaseDnForFidoDevices(String userInum) {
+        final String userBaseDn = getDnForUser(userInum); // "ou=fido,inum=1234,ou=people,o=gluu"
+
+        return String.format("ou=fido,%s", userBaseDn);
+	}
+
+}
diff --git a/oxAuth/Server/src/main/java/org/gluu/oxauth/service/cdi/event/AuthConfigurationEvent.java b/oxAuth/Server/src/main/java/org/gluu/oxauth/service/cdi/event/AuthConfigurationEvent.java
new file mode 100644
index 00000000..b2dd6ebd
--- /dev/null
+++ b/oxAuth/Server/src/main/java/org/gluu/oxauth/service/cdi/event/AuthConfigurationEvent.java
@@ -0,0 +1,7 @@
+package org.gluu.oxauth.service.cdi.event;
+
+/**
+ * @author Yuriy Movchan Date: 04/13/2017
+ */
+public class AuthConfigurationEvent {
+}
diff --git a/oxAuth/Server/src/main/java/org/gluu/oxauth/service/cdi/event/ExpirationEvent.java b/oxAuth/Server/src/main/java/org/gluu/oxauth/service/cdi/event/ExpirationEvent.java
new file mode 100644
index 00000000..fb5be432
--- /dev/null
+++ b/oxAuth/Server/src/main/java/org/gluu/oxauth/service/cdi/event/ExpirationEvent.java
@@ -0,0 +1,7 @@
+package org.gluu.oxauth.service.cdi.event;
+
+/**
+ * @author Yuriy Zabrovarnyy
+ */
+public class ExpirationEvent {
+}
diff --git a/oxAuth/Server/src/main/java/org/gluu/oxauth/service/cdi/event/KeyGenerationEvent.java b/oxAuth/Server/src/main/java/org/gluu/oxauth/service/cdi/event/KeyGenerationEvent.java
new file mode 100644
index 00000000..1bf79dd9
--- /dev/null
+++ b/oxAuth/Server/src/main/java/org/gluu/oxauth/service/cdi/event/KeyGenerationEvent.java
@@ -0,0 +1,7 @@
+package org.gluu.oxauth.service.cdi.event;
+
+/**
+ * @author Yuriy Movchan Date: 04/13/2017
+ */
+public class KeyGenerationEvent {
+}
diff --git a/oxAuth/Server/src/main/java/org/gluu/oxauth/service/cdi/event/ReloadAuthScript.java b/oxAuth/Server/src/main/java/org/gluu/oxauth/service/cdi/event/ReloadAuthScript.java
new file mode 100644
index 00000000..34a7a431
--- /dev/null
+++ b/oxAuth/Server/src/main/java/org/gluu/oxauth/service/cdi/event/ReloadAuthScript.java
@@ -0,0 +1,33 @@
+package org.gluu.oxauth.service.cdi.event;
+
+import static java.lang.annotation.ElementType.FIELD;
+import static java.lang.annotation.ElementType.METHOD;
+import static java.lang.annotation.ElementType.PARAMETER;
+import static java.lang.annotation.ElementType.TYPE;
+import static java.lang.annotation.RetentionPolicy.RUNTIME;
+
+import java.lang.annotation.Documented;
+import java.lang.annotation.Retention;
+import java.lang.annotation.Target;
+
+import javax.enterprise.util.AnnotationLiteral;
+import javax.inject.Qualifier;
+
+/**
+ * @author Yuriy Movchan Date: 04/13/2017
+ */
+@Qualifier
+@Retention(RUNTIME)
+@Target({ METHOD, FIELD, PARAMETER, TYPE })
+@Documented
+public @interface ReloadAuthScript {
+
+    public static final class Literal extends AnnotationLiteral<ReloadAuthScript> implements ReloadAuthScript {
+
+        public static final Literal INSTANCE = new Literal();
+
+        private static final long serialVersionUID = 1L;
+
+    }
+
+}
diff --git a/oxAuth/Server/src/main/java/org/gluu/oxauth/service/cdi/event/StatEvent.java b/oxAuth/Server/src/main/java/org/gluu/oxauth/service/cdi/event/StatEvent.java
new file mode 100644
index 00000000..b5e9a5b7
--- /dev/null
+++ b/oxAuth/Server/src/main/java/org/gluu/oxauth/service/cdi/event/StatEvent.java
@@ -0,0 +1,7 @@
+package org.gluu.oxauth.service.cdi.event;
+
+/**
+ * @author Yuriy Zabrovarnyy
+ */
+public class StatEvent {
+}
diff --git a/oxAuth/Server/src/main/java/org/gluu/oxauth/service/ciba/CibaEncryptionService.java b/oxAuth/Server/src/main/java/org/gluu/oxauth/service/ciba/CibaEncryptionService.java
new file mode 100644
index 00000000..66ab6ce3
--- /dev/null
+++ b/oxAuth/Server/src/main/java/org/gluu/oxauth/service/ciba/CibaEncryptionService.java
@@ -0,0 +1,82 @@
+/*
+ * oxAuth is available under the MIT License (2008). See http://opensource.org/licenses/MIT for full text.
+ *
+ * Copyright (c) 2014, Gluu
+ */
+
+package org.gluu.oxauth.service.ciba;
+
+import org.gluu.util.StringHelper;
+import org.gluu.util.security.PropertiesDecrypter;
+import org.gluu.util.security.StringEncrypter;
+import org.gluu.util.security.StringEncrypter.EncryptionException;
+import org.slf4j.Logger;
+
+import javax.enterprise.context.ApplicationScoped;
+import javax.inject.Inject;
+import javax.inject.Named;
+import java.util.Properties;
+
+/**
+ * Allows to encrypt/decrypt strings using a pre-configured key from oxCore.
+ *
+ * @author Milton BO Date: 27/04/2020
+ */
+@ApplicationScoped
+@Named
+public class CibaEncryptionService {
+
+    @Inject
+    private Logger log;
+
+    @Inject
+    private StringEncrypter stringEncrypter;
+
+    public String decrypt(String encryptedString) throws EncryptionException {
+		if (StringHelper.isEmpty(encryptedString)) {
+			return null;
+		}
+
+		return stringEncrypter.decrypt(encryptedString);
+    }
+
+	public String decrypt(String encryptedValue, boolean returnSource) {
+		if (encryptedValue == null) {
+			return encryptedValue;
+		}
+
+		String resultValue;
+		if (returnSource) {
+			resultValue = encryptedValue;
+		} else {
+			resultValue = null;
+		}
+
+		try {
+			resultValue = stringEncrypter.decrypt(encryptedValue);
+		} catch (Exception ex) {
+			if (!returnSource) {
+				log.error(String.format("Failed to decrypt value: '%s'", encryptedValue, ex));
+			}
+		}
+
+		return resultValue;
+	}
+
+	public String encrypt(String unencryptedString) throws EncryptionException {
+		if (StringHelper.isEmpty(unencryptedString)) {
+			return null;
+		}
+
+		return stringEncrypter.encrypt(unencryptedString);
+	}
+
+	public Properties decryptProperties(Properties connectionProperties) {
+		return PropertiesDecrypter.decryptProperties(stringEncrypter, connectionProperties);
+	}
+
+    public Properties decryptAllProperties(Properties connectionProperties) {
+        return PropertiesDecrypter.decryptAllProperties(stringEncrypter, connectionProperties);
+    }
+
+}
\ No newline at end of file
diff --git a/oxAuth/Server/src/main/java/org/gluu/oxauth/service/ciba/CibaRequestService.java b/oxAuth/Server/src/main/java/org/gluu/oxauth/service/ciba/CibaRequestService.java
new file mode 100644
index 00000000..1203a633
--- /dev/null
+++ b/oxAuth/Server/src/main/java/org/gluu/oxauth/service/ciba/CibaRequestService.java
@@ -0,0 +1,217 @@
+/*
+ * oxAuth is available under the MIT License (2008). See http://opensource.org/licenses/MIT for full text.
+ *
+ * Copyright (c) 2014, Gluu
+ */
+
+package org.gluu.oxauth.service.ciba;
+
+import org.apache.commons.lang.time.DateUtils;
+import org.gluu.oxauth.model.common.CibaRequestCacheControl;
+import org.gluu.oxauth.model.common.CibaRequestStatus;
+import org.gluu.oxauth.model.common.GrantType;
+import org.gluu.oxauth.model.config.StaticConfiguration;
+import org.gluu.oxauth.model.configuration.AppConfiguration;
+import org.gluu.oxauth.model.ldap.CIBARequest;
+import org.gluu.oxauth.model.registration.Client;
+import org.gluu.persist.PersistenceEntryManager;
+import org.gluu.search.filter.Filter;
+import org.gluu.service.CacheService;
+import org.slf4j.Logger;
+
+import javax.enterprise.context.ApplicationScoped;
+import javax.inject.Inject;
+import java.util.Date;
+import java.util.List;
+
+/**
+ * Service used to access to the database for CibaRequest ObjectClass.
+ *
+ * @author Milton BO
+ * @version May 28, 2020
+ */
+@ApplicationScoped
+public class CibaRequestService {
+
+    @Inject
+    private Logger log;
+
+    @Inject
+    private PersistenceEntryManager entryManager;
+
+    @Inject
+    private StaticConfiguration staticConfiguration;
+
+    @Inject
+    private AppConfiguration appConfiguration;
+
+    @Inject
+    private CacheService cacheService;
+
+    private String cibaBaseDn() {
+        return staticConfiguration.getBaseDn().getCiba();  // ou=ciba,o=gluu
+    }
+
+    /**
+     * Uses request data and expiration sent by the client and save request data in database.
+     * @param request Object containing information related to the request.
+     * @param expiresIn Expiration time that end user has to answer.
+     */
+    public void persistRequest(CibaRequestCacheControl request, int expiresIn) {
+        Date expirationDate = DateUtils.addSeconds(new Date(), expiresIn);
+
+        String authReqId = request.getAuthReqId();
+        CIBARequest cibaRequest = new CIBARequest();
+        cibaRequest.setDn("authReqId=" + authReqId + "," + this.cibaBaseDn());
+        cibaRequest.setAuthReqId(authReqId);
+        cibaRequest.setClientId(request.getClient().getClientId());
+        cibaRequest.setExpirationDate(expirationDate);
+        cibaRequest.setCreationDate(new Date());
+        cibaRequest.setStatus(CibaRequestStatus.PENDING.getValue());
+        cibaRequest.setUserId(request.getUser().getUserId());
+        entryManager.persist(cibaRequest);
+    }
+
+    /**
+     * Load a CIBARequest entry from database.
+     * @param authReqId Identifier of the entry.
+     */
+    public CIBARequest load(String authReqId) {
+        try {
+            return entryManager.find(CIBARequest.class, authReqId);
+        } catch (Exception e) {
+            log.error(e.getMessage(), e);
+            return null;
+        }
+    }
+
+    /**
+     * Generates a list of requests that are expired and also filter them using a Status.
+     * @param authorizationStatus Status used to filter entries.
+     * @param maxRequestsToGet Limit of requests that would be returned.
+     */
+    public List<CIBARequest> loadExpiredByStatus(CibaRequestStatus authorizationStatus,
+                                                 int maxRequestsToGet) {
+        try {
+            Date now = new Date();
+            Filter filter = Filter.createANDFilter(
+                    Filter.createEqualityFilter("oxStatus", authorizationStatus.getValue()),
+                    Filter.createLessOrEqualFilter("exp", entryManager.encodeTime(this.cibaBaseDn(), now)));
+            return entryManager.findEntries(this.cibaBaseDn(), CIBARequest.class, filter, maxRequestsToGet);
+        } catch (Exception e) {
+            log.error(e.getMessage(), e);
+            return null;
+        }
+    }
+
+    /**
+     * Change the status field in database for a specific request.
+     * @param cibaRequest Entry containing information of the CIBA request.
+     * @param authorizationStatus New status.
+     */
+    public void updateStatus(CIBARequest cibaRequest, CibaRequestStatus authorizationStatus) {
+        try {
+            cibaRequest.setStatus(authorizationStatus.getValue());
+            entryManager.merge(cibaRequest);
+        } catch (Exception e) {
+            log.error(e.getMessage(), e);
+        }
+    }
+
+    /**
+     * Removes a CibaRequest object from the database.
+     * @param cibaRequest Object to be removed.
+     */
+    public void removeCibaRequest(CIBARequest cibaRequest) {
+        try {
+            entryManager.remove(cibaRequest);
+        } catch (Exception e) {
+            log.error(e.getMessage(), e);
+        }
+    }
+
+    /**
+     * Removes a CibaRequest from the database.
+     * @param authReqId Identifier of the CibaRequest.
+     */
+    public void removeCibaRequest(String authReqId) {
+        try {
+            String requestDn = String.format("authReqId=%s,%s", authReqId, this.cibaBaseDn());
+            entryManager.remove(requestDn, CIBARequest.class);
+        } catch (Exception e) {
+            log.error(e.getMessage(), e);
+        }
+    }
+
+    /**
+     * Register a new CibaRequestCacheControl instance in Cache and in the database.
+     * @param request New instance to be saved.
+     * @param expiresIn Expiration time of the request in Cache and memory.
+     */
+    public void save(CibaRequestCacheControl request, int expiresIn) {
+        int expiresInCache = expiresIn;
+        if (appConfiguration.getCibaGrantLifeExtraTimeSec() > 0) {
+            expiresInCache += appConfiguration.getCibaGrantLifeExtraTimeSec();
+        }
+
+        cacheService.put(expiresInCache, request.cacheKey(), request);
+        this.persistRequest(request, expiresIn);
+        log.trace("Ciba request saved in cache, authReqId: {} clientId: {}", request.getAuthReqId(), request.getClient().getClientId());
+    }
+
+    /**
+     * Put in cache a CibaRequestCacheControl object, it uses same expiration time that it has.
+     * @param request Object to be updated, replaced or created.
+     */
+    public void update(CibaRequestCacheControl request) {
+        int expiresInCache = request.getExpiresIn();
+        if (appConfiguration.getCibaGrantLifeExtraTimeSec() > 0) {
+            expiresInCache += appConfiguration.getCibaGrantLifeExtraTimeSec();
+        }
+
+        cacheService.put(expiresInCache, request.cacheKey(), request);
+    }
+
+    /**
+     * Get a CibaRequestCacheControl object from Cache service.
+     * @param authReqId Identifier of the object to be gotten.
+     */
+    public CibaRequestCacheControl getCibaRequest(String authReqId) {
+        Object cachedObject = cacheService.get(authReqId);
+        if (cachedObject == null) {
+            // retry one time : sometimes during high load cache client may be not fast enough
+            cachedObject = cacheService.get(authReqId);
+            log.trace("Failed to fetch CIBA request from cache, authReqId: {}", authReqId);
+        }
+        return cachedObject instanceof CibaRequestCacheControl ? (CibaRequestCacheControl) cachedObject : null;
+    }
+
+    /**
+     * Removes from cache a request.
+     * @param cacheKey Object to be removed from Cache.
+     */
+    public void removeCibaCacheRequest(String cacheKey) {
+        try {
+            cacheService.remove(cacheKey);
+        } catch (Exception e) {
+            log.error(e.getMessage(), e);
+        }
+    }
+
+    /**
+     * Verifies whether a specific client has CIBA compatibility.
+     *
+     * @param client Client to check.
+     */
+    public boolean hasCibaCompatibility(Client client) {
+        if (client.getBackchannelTokenDeliveryMode() == null) {
+            return false;
+        }
+        for (GrantType gt : client.getGrantTypes()) {
+            if (gt.getValue().equals(GrantType.CIBA.getValue())) {
+                return true;
+            }
+        }
+        return false;
+    }
+}
\ No newline at end of file
diff --git a/oxAuth/Server/src/main/java/org/gluu/oxauth/service/ciba/CibaRequestsProcessorJob.java b/oxAuth/Server/src/main/java/org/gluu/oxauth/service/ciba/CibaRequestsProcessorJob.java
new file mode 100644
index 00000000..e0904541
--- /dev/null
+++ b/oxAuth/Server/src/main/java/org/gluu/oxauth/service/ciba/CibaRequestsProcessorJob.java
@@ -0,0 +1,179 @@
+/*
+ * oxAuth is available under the MIT License (2008). See http://opensource.org/licenses/MIT for full text.
+ *
+ * Copyright (c) 2014, Gluu
+ */
+
+package org.gluu.oxauth.service.ciba;
+
+import org.gluu.oxauth.ciba.CIBAPingCallbackService;
+import org.gluu.oxauth.ciba.CIBAPushErrorService;
+import org.gluu.oxauth.model.ciba.PushErrorResponseType;
+import org.gluu.oxauth.model.common.BackchannelTokenDeliveryMode;
+import org.gluu.oxauth.model.common.CibaRequestCacheControl;
+import org.gluu.oxauth.model.common.CibaRequestStatus;
+import org.gluu.oxauth.model.configuration.AppConfiguration;
+import org.gluu.oxauth.model.ldap.CIBARequest;
+import org.gluu.oxauth.util.ServerUtil;
+import org.gluu.service.cdi.async.Asynchronous;
+import org.gluu.service.cdi.event.CibaRequestsProcessorEvent;
+import org.gluu.service.cdi.event.Scheduled;
+import org.gluu.service.timer.event.TimerEvent;
+import org.gluu.service.timer.schedule.TimerSchedule;
+import org.slf4j.Logger;
+
+import javax.enterprise.context.ApplicationScoped;
+import javax.enterprise.event.Event;
+import javax.enterprise.event.Observes;
+import javax.inject.Inject;
+import java.util.List;
+import java.util.concurrent.ExecutorService;
+import java.util.concurrent.Executors;
+import java.util.concurrent.atomic.AtomicBoolean;
+
+/**
+ * Job responsible to process all expired CIBA requests and update their status.
+ *
+ * @author Milton BO
+ * @version May 20, 2020
+ */
+@ApplicationScoped
+public class CibaRequestsProcessorJob {
+
+    public static final int CHUNK_SIZE = 500; // Default value whether there isn't backchannelRequestsProcessorJobChunkSize json property value
+
+    @Inject
+    private Logger log;
+
+    @Inject
+    private AppConfiguration appConfiguration;
+
+    @Inject
+    private Event<TimerEvent> processorEvent;
+
+    @Inject
+    private CIBAPushErrorService cibaPushErrorService;
+
+    @Inject
+    private CIBAPingCallbackService cibaPingCallbackService;
+
+    @Inject
+    private CibaRequestService cibaRequestService;
+
+    private long lastFinishedTime;
+
+    private AtomicBoolean isActive;
+
+    private ExecutorService executorService;
+
+    /**
+     * Method invoked from the appInitializer to start processing every some time.
+     */
+    public void initTimer() {
+        log.debug("Initializing CIBA requests processor");
+        this.isActive = new AtomicBoolean(false);
+        int intervalSec = appConfiguration.getBackchannelRequestsProcessorJobIntervalSec();
+
+        // Schedule to start processor every N seconds
+        processorEvent.fire(new TimerEvent(new TimerSchedule(intervalSec, intervalSec),
+                new CibaRequestsProcessorEvent(), Scheduled.Literal.INSTANCE));
+
+        this.lastFinishedTime = System.currentTimeMillis();
+        this.executorService = Executors.newCachedThreadPool(ServerUtil.daemonThreadFactory());
+    }
+
+    @Asynchronous
+    public void process(@Observes @Scheduled CibaRequestsProcessorEvent cibaRequestsProcessorEvent) {
+        if (this.isActive.get()) {
+            return;
+        }
+        if (!this.isActive.compareAndSet(false, true)) {
+            return;
+        }
+
+        try {
+            if (jobIsFree()) {
+                processImpl();
+                this.lastFinishedTime = System.currentTimeMillis();
+            } else {
+                log.trace("Starting conditions aren't reached for CIBA requestes processor");
+            }
+        } finally {
+            this.isActive.set(false);
+        }
+    }
+
+    /**
+     * Defines whether the job is still in process or it is free according to the time interval defined.
+     * @return True in case it is free to start a new process.
+     */
+    private boolean jobIsFree() {
+        int interval = appConfiguration.getBackchannelRequestsProcessorJobIntervalSec();
+        if (interval < 0) {
+            log.info("CIBA Requests processor timer is disabled.");
+            log.warn("CIBA Requests processor timer Interval (cleanServiceInterval in oxauth configuration) is negative which turns OFF internal clean up by the server. Please set it to positive value if you wish internal CIBA Requests processor up timer run.");
+            return false;
+        }
+
+        long timeDiffrence = System.currentTimeMillis() - this.lastFinishedTime;
+        return timeDiffrence >= interval * 1000;
+    }
+
+    /**
+     * Main process that process CIBA requests in cache.
+     */
+    public void processImpl() {
+        try {
+            int chunkSize = appConfiguration.getBackchannelRequestsProcessorJobChunkSize() <= 0 ?
+                    CHUNK_SIZE : appConfiguration.getBackchannelRequestsProcessorJobChunkSize();
+
+            List<CIBARequest> expiredRequests = cibaRequestService.loadExpiredByStatus(
+                    CibaRequestStatus.PENDING, chunkSize);
+            expiredRequests.forEach(cibaRequest -> cibaRequestService.updateStatus(cibaRequest,
+                    CibaRequestStatus.IN_PROCESS));
+
+            for (CIBARequest expiredRequest : expiredRequests) {
+                CibaRequestCacheControl cibaRequest = cibaRequestService.getCibaRequest(expiredRequest.getAuthReqId());
+                if (cibaRequest != null) {
+                    executorService.execute(() ->
+                        processExpiredRequest(cibaRequest, expiredRequest.getAuthReqId())
+                    );
+                }
+                cibaRequestService.removeCibaRequest(expiredRequest);
+            }
+        } catch (Exception e) {
+            log.error("Failed to process CIBA request from cache.", e);
+        }
+    }
+
+    /**
+     * Method responsible to process expired CIBA requests, set them as expired in cache
+     * and send callbacks to the client
+     * @param cibaRequest Object containing data related to the CIBA request.
+     * @param authReqId Authentication request id.
+     */
+    private void processExpiredRequest(CibaRequestCacheControl cibaRequest, String authReqId) {
+        if (cibaRequest.getStatus() != CibaRequestStatus.PENDING
+                && cibaRequest.getStatus() != CibaRequestStatus.EXPIRED) {
+            return;
+        }
+        log.info("Authentication request id {} has expired", authReqId);
+
+        cibaRequestService.removeCibaCacheRequest(cibaRequest.cacheKey());
+
+        if (cibaRequest.getClient().getBackchannelTokenDeliveryMode() == BackchannelTokenDeliveryMode.PUSH) {
+            cibaPushErrorService.pushError(cibaRequest.getAuthReqId(),
+                    cibaRequest.getClient().getBackchannelClientNotificationEndpoint(),
+                    cibaRequest.getClientNotificationToken(),
+                    PushErrorResponseType.EXPIRED_TOKEN,
+                    "Request has expired and there was no answer from the end user.");
+        } else if (cibaRequest.getClient().getBackchannelTokenDeliveryMode() == BackchannelTokenDeliveryMode.PING) {
+            cibaPingCallbackService.pingCallback(
+                    cibaRequest.getAuthReqId(),
+                    cibaRequest.getClient().getBackchannelClientNotificationEndpoint(),
+                    cibaRequest.getClientNotificationToken()
+            );
+        }
+    }
+
+}
\ No newline at end of file
diff --git a/oxAuth/Server/src/main/java/org/gluu/oxauth/service/custom/CustomScriptService.java b/oxAuth/Server/src/main/java/org/gluu/oxauth/service/custom/CustomScriptService.java
new file mode 100644
index 00000000..63f15a9c
--- /dev/null
+++ b/oxAuth/Server/src/main/java/org/gluu/oxauth/service/custom/CustomScriptService.java
@@ -0,0 +1,45 @@
+/*
+ * oxAuth is available under the MIT License (2008). See http://opensource.org/licenses/MIT for full text.
+ *
+ * Copyright (c) 2014, Gluu
+ */
+
+package org.gluu.oxauth.service.custom;
+
+import java.io.UnsupportedEncodingException;
+
+import javax.annotation.Priority;
+import javax.enterprise.context.ApplicationScoped;
+import javax.enterprise.inject.Alternative;
+import javax.interceptor.Interceptor;
+import javax.inject.Inject;
+
+import org.gluu.oxauth.model.config.StaticConfiguration;
+import org.gluu.oxauth.model.util.Base64Util;
+import org.gluu.service.custom.script.AbstractCustomScriptService;
+
+/**
+ * Operations with custom scripts
+ *
+ * @author Yuriy Movchan Date: 12/03/2014
+ */
+@ApplicationScoped
+@Alternative
+@Priority(Interceptor.Priority.APPLICATION + 1)
+public class CustomScriptService extends AbstractCustomScriptService {
+	
+	@Inject
+	private StaticConfiguration staticConfiguration;
+
+	private static final long serialVersionUID = -5283102477313448031L;
+
+    public String baseDn() {
+        return staticConfiguration.getBaseDn().getScripts();
+    }
+
+    public String base64Decode(String encoded) throws IllegalArgumentException, UnsupportedEncodingException {
+        byte[] decoded = Base64Util.base64urldecode(encoded);
+        return new String(decoded, "UTF-8");
+    }
+
+}
diff --git a/oxAuth/Server/src/main/java/org/gluu/oxauth/service/date/DateFormatterService.java b/oxAuth/Server/src/main/java/org/gluu/oxauth/service/date/DateFormatterService.java
new file mode 100644
index 00000000..ced0a3d2
--- /dev/null
+++ b/oxAuth/Server/src/main/java/org/gluu/oxauth/service/date/DateFormatterService.java
@@ -0,0 +1,59 @@
+package org.gluu.oxauth.service.date;
+
+import org.apache.commons.lang.StringUtils;
+import org.gluu.oxauth.model.common.CallerType;
+import org.gluu.oxauth.model.configuration.AppConfiguration;
+
+import javax.enterprise.context.ApplicationScoped;
+import javax.inject.Inject;
+import javax.inject.Named;
+import java.io.Serializable;
+import java.text.SimpleDateFormat;
+import java.util.Date;
+import java.util.Map;
+
+/**
+ * @author Yuriy Z
+ */
+@ApplicationScoped
+@Named
+public class DateFormatterService {
+
+    @Inject
+    private AppConfiguration appConfiguration;
+
+    public Serializable formatClaim(Date date, CallerType callerType) {
+        return formatClaim(date, callerType.name().toLowerCase());
+    }
+
+    /**
+     *
+     * @param date date to format
+     * @param patternKey pattern key. It's by intention is not enum to allow arbitrary key (not "locked" by CallerType)
+     * @return formatter value
+     */
+    public Serializable formatClaim(Date date, String patternKey) {
+        // key in map is string by intention to not "lock" it by CallerType
+        final Map<String, String> formatterMap = appConfiguration.getDateFormatterPatterns();
+
+        if (formatterMap.isEmpty()) {
+            return formatClaimFallback(date);
+        }
+
+        final String explicitFormatter = formatterMap.get(patternKey);
+        if (StringUtils.isNotBlank(explicitFormatter)) {
+            return new SimpleDateFormat(explicitFormatter).format(date);
+        }
+
+        final String commonFormatter = formatterMap.get(CallerType.COMMON.name().toLowerCase());
+        if (StringUtils.isNotBlank(commonFormatter)) {
+            return new SimpleDateFormat(commonFormatter).format(date);
+        }
+
+        return formatClaimFallback(date);
+    }
+
+    public Serializable formatClaimFallback(Date date) {
+        return date.getTime() / 1000;
+    }
+}
diff --git a/oxAuth/Server/src/main/java/org/gluu/oxauth/service/expiration/ExpId.java b/oxAuth/Server/src/main/java/org/gluu/oxauth/service/expiration/ExpId.java
new file mode 100644
index 00000000..a3da755b
--- /dev/null
+++ b/oxAuth/Server/src/main/java/org/gluu/oxauth/service/expiration/ExpId.java
@@ -0,0 +1,39 @@
+package org.gluu.oxauth.service.expiration;
+
+import java.util.Objects;
+
+/**
+ * @author Yuriy Zabrovarnyy
+ */
+class ExpId {
+
+    private String key;
+    private ExpType type;
+
+    public ExpId(String key, ExpType type) {
+        this.key = key;
+        this.type = type;
+    }
+
+    public String getKey() {
+        return key;
+    }
+
+    public ExpType getType() {
+        return type;
+    }
+
+    @Override
+    public boolean equals(Object o) {
+        if (this == o) return true;
+        if (o == null || getClass() != o.getClass()) return false;
+        ExpId id = (ExpId) o;
+        return Objects.equals(key, id.key) &&
+                type == id.type;
+    }
+
+    @Override
+    public int hashCode() {
+        return Objects.hash(key, type);
+    }
+}
diff --git a/oxAuth/Server/src/main/java/org/gluu/oxauth/service/expiration/ExpType.java b/oxAuth/Server/src/main/java/org/gluu/oxauth/service/expiration/ExpType.java
new file mode 100644
index 00000000..7798db7b
--- /dev/null
+++ b/oxAuth/Server/src/main/java/org/gluu/oxauth/service/expiration/ExpType.java
@@ -0,0 +1,8 @@
+package org.gluu.oxauth.service.expiration;
+
+/**
+ * @author Yuriy Zabrovarnyy
+ */
+public enum ExpType {
+    SESSION
+}
diff --git a/oxAuth/Server/src/main/java/org/gluu/oxauth/service/expiration/ExpirationNotificatorTimer.java b/oxAuth/Server/src/main/java/org/gluu/oxauth/service/expiration/ExpirationNotificatorTimer.java
new file mode 100644
index 00000000..83206571
--- /dev/null
+++ b/oxAuth/Server/src/main/java/org/gluu/oxauth/service/expiration/ExpirationNotificatorTimer.java
@@ -0,0 +1,174 @@
+package org.gluu.oxauth.service.expiration;
+
+import net.jodah.expiringmap.ExpirationListener;
+import net.jodah.expiringmap.ExpirationPolicy;
+import net.jodah.expiringmap.ExpiringMap;
+
+import org.gluu.oxauth.model.config.StaticConfiguration;
+import org.gluu.oxauth.model.configuration.AppConfiguration;
+import org.gluu.oxauth.model.session.SessionId;
+import org.gluu.oxauth.service.cdi.event.ExpirationEvent;
+import org.gluu.oxauth.service.external.ExternalApplicationSessionService;
+import org.gluu.oxauth.service.external.session.SessionEvent;
+import org.gluu.oxauth.service.external.session.SessionEventType;
+import org.gluu.persist.PersistenceEntryManager;
+import org.gluu.search.filter.Filter;
+import org.gluu.service.cdi.async.Asynchronous;
+import org.gluu.service.cdi.event.Scheduled;
+import org.gluu.service.timer.event.TimerEvent;
+import org.gluu.service.timer.schedule.TimerSchedule;
+import org.slf4j.Logger;
+
+import javax.enterprise.context.ApplicationScoped;
+import javax.enterprise.event.Event;
+import javax.enterprise.event.Observes;
+import javax.inject.Inject;
+import javax.inject.Named;
+import java.util.Calendar;
+import java.util.Date;
+import java.util.List;
+import java.util.concurrent.TimeUnit;
+import java.util.concurrent.atomic.AtomicBoolean;
+
+/**
+ * @author Yuriy Zabrovarnyy
+ */
+@ApplicationScoped
+@Named
+public class ExpirationNotificatorTimer implements ExpirationListener<ExpId, Object> {
+
+    private static final int DEFAULT_INTERVAL = 600; // 10 min
+
+    @Inject
+    private Logger log;
+
+    @Inject
+    private Event<TimerEvent> timerEvent;
+
+    @Inject
+    private PersistenceEntryManager persistenceEntryManager;
+
+    @Inject
+    private StaticConfiguration staticConfiguration;
+
+    @Inject
+    private AppConfiguration appConfiguration;
+
+    @Inject
+    private ExternalApplicationSessionService externalApplicationSessionService;
+
+    private ExpiringMap<ExpId, Object> expiringMap = ExpiringMap.builder()
+            .expirationPolicy(ExpirationPolicy.CREATED)
+            .variableExpiration()
+            .build();
+
+    private AtomicBoolean isActive;
+
+    private long lastFinishedTime;
+
+    public void initTimer() {
+        log.debug("Initializing ExpirationNotificatorTimer");
+        this.isActive = new AtomicBoolean(false);
+
+        expiringMap = ExpiringMap.builder()
+                .expirationPolicy(ExpirationPolicy.CREATED)
+                .maxSize(appConfiguration.getExpirationNotificatorMapSizeLimit())
+                .variableExpiration()
+                .build();
+        expiringMap.addExpirationListener(this);
+
+        timerEvent.fire(new TimerEvent(new TimerSchedule(DEFAULT_INTERVAL, DEFAULT_INTERVAL), new ExpirationEvent(), Scheduled.Literal.INSTANCE));
+
+        this.lastFinishedTime = System.currentTimeMillis();
+    }
+
+    @Asynchronous
+    public void process(@Observes @Scheduled ExpirationEvent expirationEvent) {
+        if (!appConfiguration.getExpirationNotificatorEnabled()) {
+            return;
+        }
+
+        if (this.isActive.get()) {
+            return;
+        }
+
+        if (!this.isActive.compareAndSet(false, true)) {
+            return;
+        }
+
+        try {
+            if (!allowToRun()) {
+                log.trace("Not allowed to run.");
+                return;
+            }
+            fillMap();
+            this.lastFinishedTime = System.currentTimeMillis();
+        } catch (Exception ex) {
+            log.error("Exception happened while trying to fill expiringMap update", ex);
+        } finally {
+            this.isActive.set(false);
+        }
+    }
+
+    private void fillMap() {
+        Calendar future = Calendar.getInstance();
+        future.add(Calendar.SECOND, appConfiguration.getExpirationNotificatorIntervalInSeconds());
+
+        fillSessions(future.getTime());
+    }
+
+    private void fillSessions(Date future) {
+        final String baseDn = staticConfiguration.getBaseDn().getSessions();
+        final Filter filter = Filter.createANDFilter(
+                Filter.createEqualityFilter("del", true),
+                Filter.createLessOrEqualFilter("exp", persistenceEntryManager.encodeTime(baseDn, future)));
+        final List<SessionId> sessions = persistenceEntryManager.findEntries(baseDn, SessionId.class, filter);
+        if (sessions == null || sessions.isEmpty()) {
+            return;
+        }
+
+        long now = new Date().getTime();
+        for (SessionId session : sessions) {
+            final long duration = session.getExpirationDate().getTime() - now;
+
+            if (duration <= 0) {
+                remove(session);
+                continue;
+            }
+            expiringMap.put(new ExpId(session.getId(), ExpType.SESSION), session, duration, TimeUnit.MILLISECONDS);
+        }
+    }
+
+    @Override
+    public void expired(ExpId key, Object value) {
+        if (key.getType() == ExpType.SESSION && value instanceof SessionId) {
+            externalApplicationSessionService.externalEvent(new SessionEvent(SessionEventType.GONE, (SessionId) value));
+        }
+    }
+
+    private boolean allowToRun() {
+        int interval = appConfiguration.getExpirationNotificatorIntervalInSeconds();
+        if (interval < 0) {
+            log.info("ExpirationNotificator Timer is disabled.");
+            log.warn("ExpirationNotificator Timer Interval (expirationNotificatorIntervalInSeconds in oxauth configuration) is negative which turns OFF internal clean up by the server. Please set it to positive value if you wish internal clean up timer run.");
+            return false;
+        }
+
+        long timerInterval = interval * 1000;
+
+        long timeDiffrence = System.currentTimeMillis() - this.lastFinishedTime;
+
+        return timeDiffrence >= timerInterval;
+    }
+
+    public boolean remove(SessionId sessionId) {
+        try {
+            persistenceEntryManager.remove(sessionId.getDn(), SessionId.class);
+            externalApplicationSessionService.externalEvent(new SessionEvent(SessionEventType.GONE, sessionId));
+            return true;
+        } catch (Exception e) {
+            log.error(e.getMessage(), e);
+            return false;
+        }
+    }
+}
diff --git a/oxAuth/Server/src/main/java/org/gluu/oxauth/service/external/ExternalApplicationSessionService.java b/oxAuth/Server/src/main/java/org/gluu/oxauth/service/external/ExternalApplicationSessionService.java
new file mode 100644
index 00000000..e892ef47
--- /dev/null
+++ b/oxAuth/Server/src/main/java/org/gluu/oxauth/service/external/ExternalApplicationSessionService.java
@@ -0,0 +1,112 @@
+/*
+ * oxAuth is available under the MIT License (2008). See http://opensource.org/licenses/MIT for full text.
+ *
+ * Copyright (c) 2014, Gluu
+ */
+
+package org.gluu.oxauth.service.external;
+
+import org.gluu.model.SimpleCustomProperty;
+import org.gluu.model.custom.script.CustomScriptType;
+import org.gluu.model.custom.script.conf.CustomScriptConfiguration;
+import org.gluu.model.custom.script.type.session.ApplicationSessionType;
+import org.gluu.oxauth.model.session.SessionId;
+import org.gluu.oxauth.service.external.session.SessionEvent;
+import org.gluu.service.custom.script.ExternalScriptService;
+
+import javax.enterprise.context.ApplicationScoped;
+import javax.servlet.http.HttpServletRequest;
+import java.util.Map;
+
+/**
+ * Provides factory methods needed to create external application session extension
+ *
+ * @author Yuriy Movchan
+ * @version August 9, 2017
+ */
+@ApplicationScoped
+public class ExternalApplicationSessionService extends ExternalScriptService {
+
+    private static final long serialVersionUID = 2316361273036208685L;
+
+    public ExternalApplicationSessionService() {
+        super(CustomScriptType.APPLICATION_SESSION);
+    }
+
+    public boolean executeExternalStartSessionMethod(CustomScriptConfiguration customScriptConfiguration, HttpServletRequest httpRequest, SessionId sessionId) {
+        try {
+            log.trace("Executing python 'startSession' method");
+            ApplicationSessionType applicationSessionType = (ApplicationSessionType) customScriptConfiguration.getExternalType();
+            Map<String, SimpleCustomProperty> configurationAttributes = customScriptConfiguration.getConfigurationAttributes();
+            return applicationSessionType.startSession(httpRequest, sessionId, configurationAttributes);
+        } catch (Exception ex) {
+            log.error(ex.getMessage(), ex);
+            saveScriptError(customScriptConfiguration.getCustomScript(), ex);
+        }
+
+        return false;
+    }
+
+    public boolean executeExternalStartSessionMethods(HttpServletRequest httpRequest, SessionId sessionId) {
+        boolean result = true;
+        for (CustomScriptConfiguration customScriptConfiguration : this.customScriptConfigurations) {
+            if (customScriptConfiguration.getExternalType().getApiVersion() > 1) {
+                result &= executeExternalStartSessionMethod(customScriptConfiguration, httpRequest, sessionId);
+                if (!result) {
+                    return result;
+                }
+            }
+        }
+
+        return result;
+    }
+
+    public boolean executeExternalEndSessionMethod(CustomScriptConfiguration customScriptConfiguration, HttpServletRequest httpRequest, SessionId sessionId) {
+        try {
+            log.trace("Executing python 'endSession' method");
+            ApplicationSessionType applicationSessionType = (ApplicationSessionType) customScriptConfiguration.getExternalType();
+            Map<String, SimpleCustomProperty> configurationAttributes = customScriptConfiguration.getConfigurationAttributes();
+            return applicationSessionType.endSession(httpRequest, sessionId, configurationAttributes);
+        } catch (Exception ex) {
+            log.error(ex.getMessage(), ex);
+            saveScriptError(customScriptConfiguration.getCustomScript(), ex);
+        }
+
+        return false;
+    }
+
+    public boolean executeExternalEndSessionMethods(HttpServletRequest httpRequest, SessionId sessionId) {
+        boolean result = true;
+        for (CustomScriptConfiguration customScriptConfiguration : this.customScriptConfigurations) {
+            result &= executeExternalEndSessionMethod(customScriptConfiguration, httpRequest, sessionId);
+            if (!result) {
+                return result;
+            }
+        }
+
+        return result;
+    }
+
+    public void externalEvent(SessionEvent event) {
+        if (!isEnabled()) {
+            return;
+        }
+
+        for (CustomScriptConfiguration scriptConfiguration : this.customScriptConfigurations) {
+            externalEvent(scriptConfiguration, event);
+        }
+    }
+
+    private void externalEvent(CustomScriptConfiguration scriptConfiguration, SessionEvent event) {
+        try {
+            log.trace("Executing python 'onEvent' method of script: " + scriptConfiguration.getName() + ", event: " + event);
+            event.setScriptConfiguration(scriptConfiguration);
+            ApplicationSessionType applicationSessionType = (ApplicationSessionType) scriptConfiguration.getExternalType();
+            applicationSessionType.onEvent(event);
+        } catch (Exception ex) {
+            log.error(ex.getMessage(), ex);
+            saveScriptError(scriptConfiguration.getCustomScript(), ex);
+        }
+    }
+
+}
diff --git a/oxAuth/Server/src/main/java/org/gluu/oxauth/service/external/ExternalAuthenticationService.java b/oxAuth/Server/src/main/java/org/gluu/oxauth/service/external/ExternalAuthenticationService.java
new file mode 100644
index 00000000..b1bbcc71
--- /dev/null
+++ b/oxAuth/Server/src/main/java/org/gluu/oxauth/service/external/ExternalAuthenticationService.java
@@ -0,0 +1,561 @@
+/*
+ * oxAuth is available under the MIT License (2008). See http://opensource.org/licenses/MIT for full text.
+ *
+ * Copyright (c) 2014, Gluu
+ */
+
+package org.gluu.oxauth.service.external;
+
+import com.google.common.collect.Maps;
+import com.google.common.collect.Sets;
+import org.apache.commons.lang.StringUtils;
+import org.gluu.model.AuthenticationScriptUsageType;
+import org.gluu.model.SimpleCustomProperty;
+import org.gluu.model.custom.script.CustomScriptType;
+import org.gluu.model.custom.script.conf.CustomScriptConfiguration;
+import org.gluu.model.custom.script.model.CustomScript;
+import org.gluu.model.custom.script.model.auth.AuthenticationCustomScript;
+import org.gluu.model.custom.script.type.BaseExternalType;
+import org.gluu.model.custom.script.type.auth.PersonAuthenticationType;
+import org.gluu.model.ldap.GluuLdapConfiguration;
+import org.gluu.oxauth.service.cdi.event.ReloadAuthScript;
+import org.gluu.oxauth.service.common.ApplicationFactory;
+import org.gluu.oxauth.service.external.internal.InternalDefaultPersonAuthenticationType;
+import org.gluu.service.custom.script.ExternalScriptService;
+import org.gluu.util.OxConstants;
+import org.gluu.util.StringHelper;
+
+import javax.enterprise.context.ApplicationScoped;
+import javax.enterprise.event.Observes;
+import javax.inject.Inject;
+import javax.inject.Named;
+import java.util.*;
+import java.util.Map.Entry;
+
+/**
+ * Provides factory methods needed to create external authenticator
+ *
+ * @author Yuriy Movchan Date: 21/08/2012
+ */
+@ApplicationScoped
+public class ExternalAuthenticationService extends ExternalScriptService {
+
+	public final static String MODIFIED_INTERNAL_TYPES_EVENT_TYPE = "CustomScriptModifiedInternlTypesEvent";
+
+    @Inject @Named(ApplicationFactory.PERSISTENCE_AUTH_CONFIG_NAME)
+    private List<GluuLdapConfiguration> ldapAuthConfigs;
+
+    @Inject
+    private InternalDefaultPersonAuthenticationType internalDefaultPersonAuthenticationType;
+
+	private static final long serialVersionUID = 7339887464253044927L;
+
+	private Map<AuthenticationScriptUsageType, List<CustomScriptConfiguration>> customScriptConfigurationsMapByUsageType;
+	private Map<AuthenticationScriptUsageType, CustomScriptConfiguration> defaultExternalAuthenticators;
+	private Map<String, String> scriptAliasMap;
+
+	public ExternalAuthenticationService() {
+		super(CustomScriptType.PERSON_AUTHENTICATION);
+	}
+
+	public void reloadAuthScript(@Observes @ReloadAuthScript String event) {
+		reload(event);
+	}
+
+	public String scriptName(String acr) {
+		if (StringHelper.isEmpty(acr)) {
+			return null;
+		}
+
+		if (scriptAliasMap.containsKey(acr)) {
+			return scriptAliasMap.get(acr);
+		}
+
+		return acr;
+	}
+
+	@Override
+	protected void reloadExternal() {
+		// Group external authenticator configurations by usage type
+		this.customScriptConfigurationsMapByUsageType = groupCustomScriptConfigurationsMapByUsageType(this.customScriptConfigurationsNameMap);
+
+		// Build aliases map
+		this.scriptAliasMap = buildScriptAliases();
+
+		// Determine default authenticator for every usage type
+		this.defaultExternalAuthenticators = determineDefaultCustomScriptConfigurationsMap(this.customScriptConfigurationsNameMap);
+	}
+
+	private HashMap<String, String> buildScriptAliases() {
+		HashMap<String, String> newScriptAliases = new HashMap<String, String>();
+		for (Entry<String, CustomScriptConfiguration> script : customScriptConfigurationsNameMap.entrySet()) {
+			String name = script.getKey();
+			CustomScript customScript = script.getValue().getCustomScript();
+
+			newScriptAliases.put(name, name);
+
+			List<String> aliases = customScript.getAliases();
+			if (aliases != null) {
+				for (String alias : aliases) {
+					if (StringUtils.isNotBlank(alias)) {
+						newScriptAliases.put(alias, name);
+					}
+				}
+			}
+		}
+		
+		return newScriptAliases;
+	}
+
+	@Override
+	protected void addExternalConfigurations(List<CustomScriptConfiguration> newCustomScriptConfigurations) {
+		if ((ldapAuthConfigs == null) || (ldapAuthConfigs.size() == 0)) {
+			newCustomScriptConfigurations.add(getInternalCustomScriptConfiguration());
+		} else {
+			for (GluuLdapConfiguration ldapAuthConfig : ldapAuthConfigs) {
+				newCustomScriptConfigurations.add(getInternalCustomScriptConfiguration(ldapAuthConfig));
+			}
+		}
+	}
+
+	private Map<AuthenticationScriptUsageType, List<CustomScriptConfiguration>> groupCustomScriptConfigurationsMapByUsageType(Map<String,  CustomScriptConfiguration> customScriptConfigurationsMap) {
+		Map<AuthenticationScriptUsageType, List<CustomScriptConfiguration>> newCustomScriptConfigurationsMapByUsageType = new HashMap<AuthenticationScriptUsageType, List<CustomScriptConfiguration>>();
+
+		for (AuthenticationScriptUsageType usageType : AuthenticationScriptUsageType.values()) {
+			List<CustomScriptConfiguration> currCustomScriptConfigurationsMapByUsageType = new ArrayList<CustomScriptConfiguration>();
+
+			for (CustomScriptConfiguration customScriptConfiguration : customScriptConfigurationsMap.values()) {
+				if (!isValidateUsageType(usageType, customScriptConfiguration)) {
+					continue;
+				}
+
+				currCustomScriptConfigurationsMapByUsageType.add(customScriptConfiguration);
+			}
+			newCustomScriptConfigurationsMapByUsageType.put(usageType, currCustomScriptConfigurationsMapByUsageType);
+		}
+
+		return newCustomScriptConfigurationsMapByUsageType;
+	}
+
+	private Map<AuthenticationScriptUsageType, CustomScriptConfiguration> determineDefaultCustomScriptConfigurationsMap(Map<String,  CustomScriptConfiguration> customScriptConfigurationsMap) {
+		Map<AuthenticationScriptUsageType, CustomScriptConfiguration> newDefaultCustomScriptConfigurationsMap = new HashMap<AuthenticationScriptUsageType, CustomScriptConfiguration>();
+
+		for (AuthenticationScriptUsageType usageType : AuthenticationScriptUsageType.values()) {
+			CustomScriptConfiguration defaultExternalAuthenticator = null;
+			for (CustomScriptConfiguration customScriptConfiguration : customScriptConfigurationsMapByUsageType.get(usageType)) {
+				// Determine default authenticator. It has bigger level than others
+				if ((defaultExternalAuthenticator == null)
+						|| (defaultExternalAuthenticator.getLevel() < customScriptConfiguration.getLevel())) {
+					defaultExternalAuthenticator = customScriptConfiguration;
+				}
+			}
+
+			newDefaultCustomScriptConfigurationsMap.put(usageType, defaultExternalAuthenticator);
+		}
+
+		return newDefaultCustomScriptConfigurationsMap;
+	}
+
+	private boolean executeExternalIsValidAuthenticationMethod(AuthenticationScriptUsageType usageType, CustomScriptConfiguration customScriptConfiguration) {
+		try {
+			log.debug("Executing python 'isValidAuthenticationMethod' authenticator method");
+			PersonAuthenticationType externalAuthenticator = (PersonAuthenticationType) customScriptConfiguration.getExternalType();
+			Map<String, SimpleCustomProperty> configurationAttributes = customScriptConfiguration.getConfigurationAttributes();
+            final boolean result = externalAuthenticator.isValidAuthenticationMethod(usageType, configurationAttributes);
+            log.debug("Executed python 'isValidAuthenticationMethod' authenticator method, result: {}", result);
+            return result;
+		} catch (Exception ex) {
+			log.error(ex.getMessage(), ex);
+            saveScriptError(customScriptConfiguration.getCustomScript(), ex);
+		}
+
+		return false;
+	}
+
+	private String executeExternalGetAlternativeAuthenticationMethod(AuthenticationScriptUsageType usageType, CustomScriptConfiguration customScriptConfiguration) {
+		try {
+			log.trace("Executing python 'getAlternativeAuthenticationMethod' authenticator method");
+			PersonAuthenticationType externalAuthenticator = (PersonAuthenticationType) customScriptConfiguration.getExternalType();
+			Map<String, SimpleCustomProperty> configurationAttributes = customScriptConfiguration.getConfigurationAttributes();
+            final String result = externalAuthenticator.getAlternativeAuthenticationMethod(usageType, configurationAttributes);
+            log.trace("Executed python 'getAlternativeAuthenticationMethod' authenticator method, result: {}", result);
+            return result;
+		} catch (Exception ex) {
+			log.error(ex.getMessage(), ex);
+            saveScriptError(customScriptConfiguration.getCustomScript(), ex);
+		}
+
+		return null;
+	}
+
+	public int executeExternalGetCountAuthenticationSteps(CustomScriptConfiguration customScriptConfiguration) {
+		try {
+			log.trace("Executing python 'getCountAuthenticationSteps' authenticator method");
+			PersonAuthenticationType externalAuthenticator = (PersonAuthenticationType) customScriptConfiguration.getExternalType();
+			Map<String, SimpleCustomProperty> configurationAttributes = customScriptConfiguration.getConfigurationAttributes();
+            final int result = externalAuthenticator.getCountAuthenticationSteps(configurationAttributes);
+            log.trace("Executed python 'getCountAuthenticationSteps' authenticator method, result: {}", result);
+            return result;
+		} catch (Exception ex) {
+			log.error(ex.getMessage(), ex);
+            saveScriptError(customScriptConfiguration.getCustomScript(), ex);
+		}
+
+		return -1;
+	}
+
+	public boolean executeExternalAuthenticate(CustomScriptConfiguration customScriptConfiguration, Map<String, String[]> requestParameters, int step) {
+		try {
+			log.trace("Executing python 'authenticate' authenticator method");
+			PersonAuthenticationType externalAuthenticator = (PersonAuthenticationType) customScriptConfiguration.getExternalType();
+			Map<String, SimpleCustomProperty> configurationAttributes = customScriptConfiguration.getConfigurationAttributes();
+            final boolean result = externalAuthenticator.authenticate(configurationAttributes, requestParameters, step);
+            log.trace("Executed python 'authenticate' authenticator method, result: {}", result);
+            return result;
+		} catch (Exception ex) {
+			log.error(ex.getMessage(), ex);
+            saveScriptError(customScriptConfiguration.getCustomScript(), ex);
+		}
+
+		return false;
+	}
+
+	public int getNextStep(CustomScriptConfiguration customScriptConfiguration, Map<String, String[]> requestParameters, int step) {
+		try {
+			log.trace("Executing python 'getNextStep' authenticator method");
+			PersonAuthenticationType externalAuthenticator = (PersonAuthenticationType) customScriptConfiguration.getExternalType();
+			Map<String, SimpleCustomProperty> configurationAttributes = customScriptConfiguration.getConfigurationAttributes();
+            final int result = externalAuthenticator.getNextStep(configurationAttributes, requestParameters, step);
+            log.trace("Executed python 'getNextStep' authenticator method, result: {}", result);
+            return result;
+		} catch (Exception ex) {
+			log.error(ex.getMessage(), ex);
+            saveScriptError(customScriptConfiguration.getCustomScript(), ex);
+		}
+
+		return -1;
+	}
+
+	public boolean executeExternalLogout(CustomScriptConfiguration customScriptConfiguration, Map<String, String[]> requestParameters) {
+		try {
+			log.trace("Executing python 'logout' authenticator method");
+			PersonAuthenticationType externalAuthenticator = (PersonAuthenticationType) customScriptConfiguration.getExternalType();
+			Map<String, SimpleCustomProperty> configurationAttributes = customScriptConfiguration.getConfigurationAttributes();
+            final boolean result = externalAuthenticator.logout(configurationAttributes, requestParameters);
+            log.trace("Executed python 'logout' authenticator method, result: {}", result);
+            return result;
+		} catch (Exception ex) {
+			log.error(ex.getMessage(), ex);
+            saveScriptError(customScriptConfiguration.getCustomScript(), ex);
+		}
+
+		return false;
+	}
+
+	public String getLogoutExternalUrl(CustomScriptConfiguration customScriptConfiguration, Map<String, String[]> requestParameters) {
+		try {
+			log.trace("Executing python 'getLogouExternalUrl' authenticator method");
+			PersonAuthenticationType externalAuthenticator = (PersonAuthenticationType) customScriptConfiguration.getExternalType();
+			Map<String, SimpleCustomProperty> configurationAttributes = customScriptConfiguration.getConfigurationAttributes();
+            final String result = externalAuthenticator.getLogoutExternalUrl(configurationAttributes, requestParameters);
+            log.trace("Executed python 'getLogouExternalUrl' authenticator method, result: {}", result);
+            return result;
+		} catch (Exception ex) {
+			log.error(ex.getMessage(), ex);
+            saveScriptError(customScriptConfiguration.getCustomScript(), ex);
+		}
+
+		return null;
+	}
+
+	public boolean executeExternalPrepareForStep(CustomScriptConfiguration customScriptConfiguration, Map<String, String[]> requestParameters, int step) {
+		try {
+			log.trace("Executing python 'prepareForStep' authenticator method");
+			PersonAuthenticationType externalAuthenticator = (PersonAuthenticationType) customScriptConfiguration.getExternalType();
+			Map<String, SimpleCustomProperty> configurationAttributes = customScriptConfiguration.getConfigurationAttributes();
+            final boolean result = externalAuthenticator.prepareForStep(configurationAttributes, requestParameters, step);
+            log.trace("Executed python 'prepareForStep' authenticator method, result: {}", result);
+            return result;
+		} catch (Exception ex) {
+			log.error(ex.getMessage(), ex);
+            saveScriptError(customScriptConfiguration.getCustomScript(), ex);
+		}
+
+		return false;
+	}
+
+	public List<String> executeExternalGetExtraParametersForStep(CustomScriptConfiguration customScriptConfiguration, int step) {
+		try {
+			log.trace("Executing python 'getExtraParametersForStep' authenticator method");
+			PersonAuthenticationType externalAuthenticator = (PersonAuthenticationType) customScriptConfiguration.getExternalType();
+			Map<String, SimpleCustomProperty> configurationAttributes = customScriptConfiguration.getConfigurationAttributes();
+            final List<String> result = externalAuthenticator.getExtraParametersForStep(configurationAttributes, step);
+            log.trace("Executed python 'getExtraParametersForStep' authenticator method, result: {}", result);
+            return result;
+		} catch (Exception ex) {
+			log.error(ex.getMessage(), ex);
+            saveScriptError(customScriptConfiguration.getCustomScript(), ex);
+		}
+
+		return null;
+	}
+
+	public String executeExternalGetPageForStep(CustomScriptConfiguration customScriptConfiguration, int step) {
+		try {
+			log.trace("Executing python 'getPageForStep' authenticator method");
+			PersonAuthenticationType externalAuthenticator = (PersonAuthenticationType) customScriptConfiguration.getExternalType();
+			Map<String, SimpleCustomProperty> configurationAttributes = customScriptConfiguration.getConfigurationAttributes();
+            final String result = externalAuthenticator.getPageForStep(configurationAttributes, step);
+            log.trace("Executed python 'getPageForStep' authenticator method, result: {}", result);
+            return result;
+		} catch (Exception ex) {
+			log.error(ex.getMessage(), ex);
+            saveScriptError(customScriptConfiguration.getCustomScript(), ex);
+
+    		return null;
+		}
+	}
+
+	public int executeExternalGetApiVersion(CustomScriptConfiguration customScriptConfiguration) {
+		try {
+			log.trace("Executing python 'getApiVersion' authenticator method");
+			PersonAuthenticationType externalAuthenticator = (PersonAuthenticationType) customScriptConfiguration.getExternalType();
+            final int result = externalAuthenticator.getApiVersion();
+            log.trace("Executed python 'getApiVersion' authenticator method, result: {}", result);
+            return result;
+		} catch (Exception ex) {
+			log.error(ex.getMessage(), ex);
+            saveScriptError(customScriptConfiguration.getCustomScript(), ex);
+		}
+
+		return -1;
+	}
+
+	public boolean isEnabled(AuthenticationScriptUsageType usageType) {
+		return this.customScriptConfigurationsMapByUsageType != null &&
+                this.customScriptConfigurationsMapByUsageType.get(usageType).size() > 0;
+    }
+
+	public CustomScriptConfiguration getExternalAuthenticatorByAuthLevel(AuthenticationScriptUsageType usageType, int authLevel) {
+		CustomScriptConfiguration resultDefaultExternalAuthenticator = null;
+		for (CustomScriptConfiguration customScriptConfiguration : this.customScriptConfigurationsMapByUsageType.get(usageType)) {
+			// Determine authenticator
+			if (customScriptConfiguration.getLevel() != authLevel) {
+				continue;
+			}
+
+			if (resultDefaultExternalAuthenticator == null) {
+				resultDefaultExternalAuthenticator = customScriptConfiguration;
+			}
+		}
+
+		return resultDefaultExternalAuthenticator;
+	}
+
+	public CustomScriptConfiguration determineCustomScriptConfiguration(AuthenticationScriptUsageType usageType, int authStep, String acr) {
+        CustomScriptConfiguration customScriptConfiguration;
+        if (authStep == 1) {
+            if (StringHelper.isNotEmpty(acr)) {
+                customScriptConfiguration = getCustomScriptConfiguration(usageType, acr);
+            } else {
+           		customScriptConfiguration = getDefaultExternalAuthenticator(usageType);
+            }
+        } else {
+            customScriptConfiguration = getCustomScriptConfiguration(usageType, acr);
+        }
+
+        return customScriptConfiguration;
+	}
+
+	public CustomScriptConfiguration determineCustomScriptConfiguration(AuthenticationScriptUsageType usageType, List<String> acrValues) {
+		List<String> authModes = getAuthModesByAcrValues(acrValues);
+		
+		if (authModes.size() > 0) {
+			for (String authMode : authModes) {
+				for (CustomScriptConfiguration customScriptConfiguration : this.customScriptConfigurationsMapByUsageType.get(usageType)) {
+					if (StringHelper.equalsIgnoreCase(authMode, customScriptConfiguration.getName())) {
+						return customScriptConfiguration;
+					}
+				}
+			}
+		}
+
+		return null;
+	}
+
+	public List<String> getAuthModesByAcrValues(List<String> acrValues) {
+		List<String> authModes = new ArrayList<String>();
+
+		for (String acrValue : acrValues) {
+			if (StringHelper.isNotEmpty(acrValue)) {
+				String customScriptName = StringHelper.toLowerCase(scriptName(acrValue));
+				if (customScriptConfigurationsNameMap.containsKey(customScriptName)) {
+					CustomScriptConfiguration customScriptConfiguration = customScriptConfigurationsNameMap.get(customScriptName);
+					CustomScript customScript = customScriptConfiguration.getCustomScript();
+
+					// Handle internal authentication method
+					if (customScript.isInternal()) {
+						authModes.add(scriptName(acrValue));
+						continue;
+					}
+
+					CustomScriptType customScriptType = customScriptConfiguration.getCustomScript().getScriptType();
+					BaseExternalType defaultImplementation = customScriptType.getDefaultImplementation();
+					BaseExternalType pythonImplementation = customScriptConfiguration.getExternalType();
+					if ((pythonImplementation != null) && (defaultImplementation != pythonImplementation)) {
+						authModes.add(scriptName(acrValue));
+					}
+				}
+			}
+		}
+		return authModes;
+	}
+
+	public CustomScriptConfiguration determineExternalAuthenticatorForWorkflow(AuthenticationScriptUsageType usageType, CustomScriptConfiguration customScriptConfiguration) {
+    	String authMode = customScriptConfiguration.getName();
+    	log.trace("Validating acr_values: '{}'", authMode);
+
+    	boolean isValidAuthenticationMethod = executeExternalIsValidAuthenticationMethod(usageType, customScriptConfiguration);
+        if (!isValidAuthenticationMethod) {
+        	log.warn("Current acr_values: '{}' isn't valid", authMode);
+
+        	String alternativeAuthenticationMethod = executeExternalGetAlternativeAuthenticationMethod(usageType, customScriptConfiguration);
+            if (StringHelper.isEmpty(alternativeAuthenticationMethod)) {
+            	log.error("Failed to determine alternative authentication mode for acr_values: '{}'", authMode);
+                return null;
+            } else {
+            	CustomScriptConfiguration alternativeCustomScriptConfiguration = getCustomScriptConfiguration(AuthenticationScriptUsageType.INTERACTIVE, alternativeAuthenticationMethod);
+                if (alternativeCustomScriptConfiguration == null) {
+                    log.error("Failed to get alternative CustomScriptConfiguration '{}' for acr_values: '{}'", alternativeAuthenticationMethod, authMode);
+                    return null;
+                } else {
+                    return alternativeCustomScriptConfiguration;
+                }
+            }
+        }
+
+        return customScriptConfiguration;
+    }
+
+	public CustomScriptConfiguration getDefaultExternalAuthenticator(AuthenticationScriptUsageType usageType) {
+		if (this.defaultExternalAuthenticators != null) {
+			return this.defaultExternalAuthenticators.get(usageType);
+		}
+		
+		return null;
+	}
+
+	public CustomScriptConfiguration getCustomScriptConfiguration(AuthenticationScriptUsageType usageType, String name) {
+		for (CustomScriptConfiguration customScriptConfiguration : this.customScriptConfigurationsMapByUsageType.get(usageType)) {
+			if (StringHelper.equalsIgnoreCase(scriptName(name), customScriptConfiguration.getName())) {
+				return customScriptConfiguration;
+			}
+		}
+		
+		return null;
+	}
+
+	public CustomScriptConfiguration getCustomScriptConfigurationByName(String name) {
+		for (Entry<String, CustomScriptConfiguration> customScriptConfigurationEntry : this.customScriptConfigurationsNameMap.entrySet()) {
+			if (StringHelper.equalsIgnoreCase(scriptName(name), customScriptConfigurationEntry.getKey())) {
+				return customScriptConfigurationEntry.getValue();
+			}
+		}
+
+		return null;
+	}
+
+	public List<CustomScriptConfiguration> getCustomScriptConfigurationsMap() {
+		if (this.customScriptConfigurationsNameMap == null) {
+			return new ArrayList<CustomScriptConfiguration>(0);
+		}
+
+		List<CustomScriptConfiguration> configurations = new ArrayList<CustomScriptConfiguration>(this.customScriptConfigurationsNameMap.values());
+		return configurations;
+	}
+
+	public  List<String> getAcrValuesList() {
+		return new ArrayList<String>(scriptAliasMap.keySet());
+	}
+
+	private boolean isValidateUsageType(AuthenticationScriptUsageType usageType, CustomScriptConfiguration customScriptConfiguration) {
+		if (customScriptConfiguration == null) {
+			return false;
+		}
+
+		AuthenticationScriptUsageType externalAuthenticatorUsageType = ((AuthenticationCustomScript) customScriptConfiguration.getCustomScript()).getUsageType();
+
+		// Set default usage type
+		if (externalAuthenticatorUsageType == null) {
+			externalAuthenticatorUsageType = AuthenticationScriptUsageType.INTERACTIVE;
+		}
+
+		if (AuthenticationScriptUsageType.BOTH.equals(externalAuthenticatorUsageType)) {
+			return true;
+		}
+
+		if (AuthenticationScriptUsageType.INTERACTIVE.equals(usageType) && AuthenticationScriptUsageType.INTERACTIVE.equals(externalAuthenticatorUsageType)) {
+			return true;
+		}
+
+		if (AuthenticationScriptUsageType.SERVICE.equals(usageType) && AuthenticationScriptUsageType.SERVICE.equals(externalAuthenticatorUsageType)) {
+			return true;
+		}
+
+		return false;
+	}
+
+	public Map<Integer, Set<String>> levelToAcrMapping() {
+		Map<Integer, Set<String>> map = Maps.newHashMap();
+		for (CustomScriptConfiguration script : getCustomScriptConfigurationsMap()) {
+			int level = script.getLevel();
+			String acr = script.getName();
+
+			Set<String> acrs = map.get(level);
+			if (acrs == null) {
+				acrs = Sets.newHashSet();
+				map.put(level, acrs);
+			}
+			acrs.add(acr);
+		}
+		return map;
+	}
+
+	public Map<String, Integer> acrToLevelMapping() {
+		Map<String, Integer> map = Maps.newHashMap();
+		for (CustomScriptConfiguration script : getCustomScriptConfigurationsMap()) {
+			if (script.getCustomScript().isInternal()) {
+				map.put(script.getName(), -1);
+				continue;
+			}
+			map.put(script.getName(), script.getLevel());
+		}
+		return map;
+	}
+	
+	private CustomScriptConfiguration getInternalCustomScriptConfiguration(GluuLdapConfiguration ldapAuthConfig) {
+		CustomScriptConfiguration customScriptConfiguration = getInternalCustomScriptConfiguration();
+		customScriptConfiguration.getCustomScript().setName(ldapAuthConfig.getConfigId());
+		
+		return customScriptConfiguration;
+	}
+	
+	private CustomScriptConfiguration getInternalCustomScriptConfiguration() {
+		CustomScript customScript = new AuthenticationCustomScript() {
+			@Override
+			public AuthenticationScriptUsageType getUsageType() {
+				return AuthenticationScriptUsageType.INTERACTIVE;
+			}
+
+		};
+		customScript.setName(OxConstants.SCRIPT_TYPE_INTERNAL_RESERVED_NAME);
+		customScript.setLevel(-1);
+		customScript.setInternal(true);
+
+		CustomScriptConfiguration customScriptConfiguration = new CustomScriptConfiguration(customScript, internalDefaultPersonAuthenticationType,
+				new HashMap<String, SimpleCustomProperty>(0));
+		
+		return customScriptConfiguration;
+	}
+
+}
diff --git a/oxAuth/Server/src/main/java/org/gluu/oxauth/service/external/ExternalCibaEndUserNotificationService.java b/oxAuth/Server/src/main/java/org/gluu/oxauth/service/external/ExternalCibaEndUserNotificationService.java
new file mode 100644
index 00000000..786ef0b7
--- /dev/null
+++ b/oxAuth/Server/src/main/java/org/gluu/oxauth/service/external/ExternalCibaEndUserNotificationService.java
@@ -0,0 +1,60 @@
+package org.gluu.oxauth.service.external;
+
+import org.gluu.model.custom.script.CustomScriptType;
+import org.gluu.model.custom.script.conf.CustomScriptConfiguration;
+import org.gluu.model.custom.script.type.ciba.EndUserNotificationType;
+import org.gluu.oxauth.service.external.context.ExternalCibaEndUserNotificationContext;
+import org.gluu.service.custom.script.ExternalScriptService;
+import org.slf4j.Logger;
+
+import javax.enterprise.context.ApplicationScoped;
+import javax.inject.Inject;
+
+/**
+ * @author Milton BO
+ */
+@ApplicationScoped
+public class ExternalCibaEndUserNotificationService extends ExternalScriptService {
+
+    private static final long serialVersionUID = -8609727759114795446L;
+
+    @Inject
+    private Logger log;
+
+    public ExternalCibaEndUserNotificationService() {
+        super(CustomScriptType.CIBA_END_USER_NOTIFICATION);
+    }
+
+    public boolean executeExternalNotifyEndUser(ExternalCibaEndUserNotificationContext context) {
+        if (customScriptConfigurations == null || customScriptConfigurations.isEmpty()) {
+            log.trace("There is no any external interception scripts defined.");
+            return false;
+        }
+
+        for (CustomScriptConfiguration script : customScriptConfigurations) {
+            if (!executeExternalNotifyEndUser(script, context)) {
+                log.trace("Stopped running external interception scripts because script {} returns false.", script.getName());
+                return false;
+            }
+        }
+        return true;
+    }
+
+    private boolean executeExternalNotifyEndUser(CustomScriptConfiguration customScriptConfiguration,
+                                                 ExternalCibaEndUserNotificationContext context) {
+        try {
+            log.trace("Executing external 'executeExternalNotifyEndUser' method, script name: {}, context: {}",
+                    customScriptConfiguration.getName(), context);
+
+            EndUserNotificationType script = (EndUserNotificationType) customScriptConfiguration.getExternalType();
+            final boolean result = script.notifyEndUser(context);
+            log.trace("Finished external 'executeExternalNotifyEndUser' method, script name: {}, context: {}, result: {}",
+                    customScriptConfiguration.getName(), context, result);
+            return result;
+        } catch (Exception ex) {
+            log.error(ex.getMessage(), ex);
+            saveScriptError(customScriptConfiguration.getCustomScript(), ex);
+            return false;
+        }
+    }
+}
diff --git a/oxAuth/Server/src/main/java/org/gluu/oxauth/service/external/ExternalConsentGatheringService.java b/oxAuth/Server/src/main/java/org/gluu/oxauth/service/external/ExternalConsentGatheringService.java
new file mode 100644
index 00000000..d94f336f
--- /dev/null
+++ b/oxAuth/Server/src/main/java/org/gluu/oxauth/service/external/ExternalConsentGatheringService.java
@@ -0,0 +1,136 @@
+package org.gluu.oxauth.service.external;
+
+import java.util.HashMap;
+import java.util.List;
+import java.util.Map;
+
+import javax.enterprise.context.ApplicationScoped;
+import javax.inject.Inject;
+
+import org.gluu.model.custom.script.CustomScriptType;
+import org.gluu.model.custom.script.conf.CustomScriptConfiguration;
+import org.gluu.model.custom.script.type.authz.ConsentGatheringType;
+import org.gluu.oxauth.service.external.context.ConsentGatheringContext;
+import org.gluu.service.LookupService;
+import org.gluu.service.custom.script.ExternalScriptService;
+import org.gluu.util.StringHelper;
+import org.slf4j.Logger;
+
+/**
+ * @author Yuriy Movchan Date: 10/30/2017
+ */
+@ApplicationScoped
+public class ExternalConsentGatheringService extends ExternalScriptService {
+
+	private static final long serialVersionUID = 1741073794567832914L;
+
+	@Inject
+    private Logger log;
+
+    @Inject
+    private LookupService lookupService;
+
+    protected Map<String, CustomScriptConfiguration> scriptInumMap;
+
+    public ExternalConsentGatheringService() {
+        super(CustomScriptType.CONSENT_GATHERING);
+    }
+
+    @Override
+    protected void reloadExternal() {
+        this.scriptInumMap = buildExternalConfigurationsInumMap(this.customScriptConfigurations);
+    }
+
+    private Map<String, CustomScriptConfiguration> buildExternalConfigurationsInumMap(List<CustomScriptConfiguration> customScriptConfigurations) {
+        Map<String, CustomScriptConfiguration> reloadedExternalConfigurations = new HashMap<String, CustomScriptConfiguration>(customScriptConfigurations.size());
+
+        for (CustomScriptConfiguration customScriptConfiguration : customScriptConfigurations) {
+            reloadedExternalConfigurations.put(customScriptConfiguration.getInum(), customScriptConfiguration);
+        }
+
+        return reloadedExternalConfigurations;
+    }
+
+    public CustomScriptConfiguration getScriptByDn(String scriptDn) {
+        String consentScriptInum = lookupService.getInumFromDn(scriptDn);
+
+        return getScriptByInum(consentScriptInum);
+    }
+
+    public CustomScriptConfiguration getScriptByInum(String inum) {
+        if (StringHelper.isEmpty(inum)) {
+            return null;
+        }
+
+        return this.scriptInumMap.get(inum);
+    }
+
+    private ConsentGatheringType consentScript(CustomScriptConfiguration script) {
+        return (ConsentGatheringType) script.getExternalType();
+    }
+
+    public boolean authorize(CustomScriptConfiguration script, int step, ConsentGatheringContext context) {
+        try {
+            log.trace("Executing python 'authorize' method, script: " + script.getName());
+            boolean result = consentScript(script).authorize(step, context);
+            log.trace("python 'authorize' result: " + result);
+            return result;
+        } catch (Exception ex) {
+            log.error("Failed to execute python 'authorize' method, script: " + script.getName() + ", message: " + ex.getMessage(), ex);
+            saveScriptError(script.getCustomScript(), ex);
+            return false;
+        }
+    }
+
+    public int getNextStep(CustomScriptConfiguration script, int step, ConsentGatheringContext context) {
+        try {
+            log.trace("Executing python 'getNextStep' method, script: " + script.getName());
+            int result = consentScript(script).getNextStep(step, context);
+            log.trace("python 'getNextStep' result: " + result);
+            return result;
+        } catch (Exception ex) {
+            log.error("Failed to execute python 'getNextStep' method, script: " + script.getName() + ", message: " + ex.getMessage(), ex);
+            saveScriptError(script.getCustomScript(), ex);
+            return -1;
+        }
+    }
+
+    public boolean prepareForStep(CustomScriptConfiguration script, int step, ConsentGatheringContext context) {
+        try {
+            log.trace("Executing python 'prepareForStep' method, script: " + script.getName());
+            boolean result = consentScript(script).prepareForStep(step, context);
+            log.trace("python 'prepareForStep' result: " + result);
+            return result;
+        } catch (Exception ex) {
+            log.error("Failed to execute python 'prepareForStep' method, script: " + script.getName() + ", message: " + ex.getMessage(), ex);
+            saveScriptError(script.getCustomScript(), ex);
+            return false;
+        }
+    }
+
+    public int getStepsCount(CustomScriptConfiguration script, ConsentGatheringContext context) {
+        try {
+            log.trace("Executing python 'getStepsCount' method, script: " + script.getName());
+            int result = consentScript(script).getStepsCount(context);
+            log.trace("python 'getStepsCount' result: " + result);
+            return result;
+        } catch (Exception ex) {
+            log.error("Failed to execute python 'getStepsCount' method, script: " + script.getName() + ", message: " + ex.getMessage(), ex);
+            saveScriptError(script.getCustomScript(), ex);
+            return -1;
+        }
+    }
+
+    public String getPageForStep(CustomScriptConfiguration script, int step, ConsentGatheringContext context) {
+        try {
+            log.trace("Executing python 'getPageForStep' method, script: " + script.getName());
+            String result = consentScript(script).getPageForStep(step, context);
+            log.trace("python 'getPageForStep' result: " + result);
+            return result;
+        } catch (Exception ex) {
+            log.error("Failed to execute python 'getPageForStep' method, script: " + script.getName() + ", message: " + ex.getMessage(), ex);
+            saveScriptError(script.getCustomScript(), ex);
+            return "";
+        }
+    }
+}
diff --git a/oxAuth/Server/src/main/java/org/gluu/oxauth/service/external/ExternalDynamicClientRegistrationService.java b/oxAuth/Server/src/main/java/org/gluu/oxauth/service/external/ExternalDynamicClientRegistrationService.java
new file mode 100644
index 00000000..2b7d07cb
--- /dev/null
+++ b/oxAuth/Server/src/main/java/org/gluu/oxauth/service/external/ExternalDynamicClientRegistrationService.java
@@ -0,0 +1,127 @@
+/*
+ * oxAuth is available under the MIT License (2008). See http://opensource.org/licenses/MIT for full text.
+ *
+ * Copyright (c) 2014, Gluu
+ */
+
+package org.gluu.oxauth.service.external;
+
+import org.gluu.model.SimpleCustomProperty;
+import org.gluu.model.custom.script.CustomScriptType;
+import org.gluu.model.custom.script.conf.CustomScriptConfiguration;
+import org.gluu.model.custom.script.type.client.ClientRegistrationType;
+import org.gluu.oxauth.client.RegisterRequest;
+import org.gluu.oxauth.model.jwt.Jwt;
+import org.gluu.oxauth.model.registration.Client;
+import org.gluu.oxauth.service.external.context.DynamicClientRegistrationContext;
+import org.gluu.service.custom.script.ExternalScriptService;
+import org.json.JSONObject;
+
+import javax.enterprise.context.ApplicationScoped;
+import javax.servlet.http.HttpServletRequest;
+import java.util.Map;
+
+/**
+ * Provides factory methods needed to create external dynamic client registration extension
+ *
+ * @author Yuriy Movchan Date: 01/08/2015
+ */
+@ApplicationScoped
+public class ExternalDynamicClientRegistrationService extends ExternalScriptService {
+
+	private static final long serialVersionUID = 1416361273036208686L;
+
+	public ExternalDynamicClientRegistrationService() {
+		super(CustomScriptType.CLIENT_REGISTRATION);
+	}
+
+    public boolean executeExternalCreateClientMethod(CustomScriptConfiguration customScriptConfiguration, RegisterRequest registerRequest, Client client) {
+        try {
+            log.trace("Executing python 'createClient' method");
+            ClientRegistrationType externalClientRegistrationType = (ClientRegistrationType) customScriptConfiguration.getExternalType();
+            Map<String, SimpleCustomProperty> configurationAttributes = customScriptConfiguration.getConfigurationAttributes();
+            return externalClientRegistrationType.createClient(registerRequest, client, configurationAttributes);
+        } catch (Exception ex) {
+            log.error(ex.getMessage(), ex);
+            saveScriptError(customScriptConfiguration.getCustomScript(), ex);
+        }
+        
+        return false;
+    }
+
+    public boolean executeExternalCreateClientMethods(RegisterRequest registerRequest, Client client) {
+        boolean result = true;
+        for (CustomScriptConfiguration customScriptConfiguration : this.customScriptConfigurations) {
+            if (customScriptConfiguration.getExternalType().getApiVersion() > 1) {
+                result &= executeExternalCreateClientMethod(customScriptConfiguration, registerRequest, client);
+                if (!result) {
+                    return result;
+                }
+            }
+        }
+
+        return result;
+    }
+
+	public boolean executeExternalUpdateClientMethod(CustomScriptConfiguration customScriptConfiguration, RegisterRequest registerRequest, Client client) {
+		try {
+			log.trace("Executing python 'updateClient' method");
+			ClientRegistrationType externalClientRegistrationType = (ClientRegistrationType) customScriptConfiguration.getExternalType();
+			Map<String, SimpleCustomProperty> configurationAttributes = customScriptConfiguration.getConfigurationAttributes();
+			return externalClientRegistrationType.updateClient(registerRequest, client, configurationAttributes);
+		} catch (Exception ex) {
+			log.error(ex.getMessage(), ex);
+            saveScriptError(customScriptConfiguration.getCustomScript(), ex);
+		}
+		
+		return false;
+	}
+
+	public boolean executeExternalUpdateClientMethods(RegisterRequest registerRequest, Client client) {
+		boolean result = true;
+		for (CustomScriptConfiguration customScriptConfiguration : this.customScriptConfigurations) {
+			result &= executeExternalUpdateClientMethod(customScriptConfiguration, registerRequest, client);
+			if (!result) {
+				return result;
+			}
+		}
+
+		return result;
+	}
+
+    public JSONObject getSoftwareStatementJwks(HttpServletRequest httpRequest, JSONObject registerRequest, Jwt softwareStatement) {
+        try {
+            log.trace("Executing python 'getSoftwareStatementJwks' method");
+
+            DynamicClientRegistrationContext context = new DynamicClientRegistrationContext(httpRequest, registerRequest, defaultExternalCustomScript);
+            context.setSoftwareStatement(softwareStatement);
+
+            ClientRegistrationType externalType = (ClientRegistrationType) defaultExternalCustomScript.getExternalType();
+            final String result = externalType.getSoftwareStatementJwks(context);
+            log.trace("Result of python 'getSoftwareStatementJwks' method: " + result);
+            return new JSONObject(result);
+        } catch (Exception ex) {
+            log.error(ex.getMessage(), ex);
+            saveScriptError(defaultExternalCustomScript.getCustomScript(), ex);
+            return null;
+        }
+    }
+
+    public String getSoftwareStatementHmacSecret(HttpServletRequest httpRequest, JSONObject registerRequest, Jwt softwareStatement) {
+        try {
+            log.trace("Executing python 'getSoftwareStatementHmacSecret' method");
+
+            DynamicClientRegistrationContext context = new DynamicClientRegistrationContext(httpRequest, registerRequest, defaultExternalCustomScript);
+            context.setSoftwareStatement(softwareStatement);
+
+            ClientRegistrationType externalType = (ClientRegistrationType) defaultExternalCustomScript.getExternalType();
+            final String result = externalType.getSoftwareStatementHmacSecret(context);
+            log.trace("Result of python 'getSoftwareStatementHmacSecret' method: " + result);
+            return result;
+        } catch (Exception ex) {
+            log.error(ex.getMessage(), ex);
+            saveScriptError(defaultExternalCustomScript.getCustomScript(), ex);
+            return "";
+        }
+    }
+}
diff --git a/oxAuth/Server/src/main/java/org/gluu/oxauth/service/external/ExternalDynamicScopeService.java b/oxAuth/Server/src/main/java/org/gluu/oxauth/service/external/ExternalDynamicScopeService.java
new file mode 100644
index 00000000..8a9809a7
--- /dev/null
+++ b/oxAuth/Server/src/main/java/org/gluu/oxauth/service/external/ExternalDynamicScopeService.java
@@ -0,0 +1,119 @@
+/*
+ * oxAuth is available under the MIT License (2008). See http://opensource.org/licenses/MIT for full text.
+ *
+ * Copyright (c) 2014, Gluu
+ */
+
+package org.gluu.oxauth.service.external;
+
+import java.util.ArrayList;
+import java.util.HashSet;
+import java.util.List;
+import java.util.Map;
+import java.util.Set;
+
+import javax.enterprise.context.ApplicationScoped;
+
+import org.gluu.model.SimpleCustomProperty;
+import org.gluu.model.custom.script.CustomScriptType;
+import org.gluu.model.custom.script.conf.CustomScriptConfiguration;
+import org.gluu.model.custom.script.type.scope.DynamicScopeType;
+import org.gluu.oxauth.service.external.context.DynamicScopeExternalContext;
+import org.gluu.service.custom.script.ExternalScriptService;
+import org.oxauth.persistence.model.Scope;
+
+import com.google.common.collect.Sets;
+
+/**
+ * Provides factory methods needed to create dynamic scope extension
+ *
+ * @author Yuriy Movchan Date: 01/08/2015
+ */
+@ApplicationScoped
+public class ExternalDynamicScopeService extends ExternalScriptService {
+
+	private static final long serialVersionUID = 1416361273036208685L;
+
+	public ExternalDynamicScopeService() {
+		super(CustomScriptType.DYNAMIC_SCOPE);
+	}
+
+	public boolean executeExternalUpdateMethod(CustomScriptConfiguration customScriptConfiguration, DynamicScopeExternalContext dynamicScopeContext) {
+		try {
+			log.trace("Executing python 'update' method");
+			DynamicScopeType dynamicScopeType = (DynamicScopeType) customScriptConfiguration.getExternalType();
+			Map<String, SimpleCustomProperty> configurationAttributes = customScriptConfiguration.getConfigurationAttributes();
+			return dynamicScopeType.update(dynamicScopeContext, configurationAttributes);
+		} catch (Exception ex) {
+			log.error(ex.getMessage(), ex);
+            saveScriptError(customScriptConfiguration.getCustomScript(), ex);
+		}
+		
+		return false;
+	}
+
+    public List<String> executeExternalGetSupportedClaimsMethod(CustomScriptConfiguration customScriptConfiguration) {
+        int apiVersion = executeExternalGetApiVersion(customScriptConfiguration);
+        
+        if (apiVersion > 1) {
+            try {
+                log.trace("Executing python 'get supported claims' method");
+                DynamicScopeType dynamicScopeType = (DynamicScopeType) customScriptConfiguration.getExternalType();
+                Map<String, SimpleCustomProperty> configurationAttributes = customScriptConfiguration.getConfigurationAttributes();
+                return dynamicScopeType.getSupportedClaims(configurationAttributes);
+            } catch (Exception ex) {
+                log.error(ex.getMessage(), ex);
+                saveScriptError(customScriptConfiguration.getCustomScript(), ex);
+            }
+        }
+        
+        return null;
+    }
+
+	private Set<CustomScriptConfiguration> getScriptsToExecute(DynamicScopeExternalContext context) {
+        Set<String> allowedScripts = Sets.newHashSet();
+		for (org.oxauth.persistence.model.Scope scope : context.getScopes()) {
+			List<String> scopeScripts = scope.getDynamicScopeScripts();
+			if (scopeScripts != null) { 
+				allowedScripts.addAll(scopeScripts);
+			}
+		}
+
+		Set<CustomScriptConfiguration> result = Sets.newHashSet();
+		if (this.customScriptConfigurations != null) {
+			for (CustomScriptConfiguration script : this.customScriptConfigurations) {
+				if (allowedScripts.contains(script.getCustomScript().getDn())) {
+					result.add(script);
+				}
+			}
+		}
+		return result;
+	}
+
+	public boolean executeExternalUpdateMethods(DynamicScopeExternalContext dynamicScopeContext) {
+		boolean result = true;
+		for (CustomScriptConfiguration customScriptConfiguration : getScriptsToExecute(dynamicScopeContext)) {
+			result &= executeExternalUpdateMethod(customScriptConfiguration, dynamicScopeContext);
+			if (!result) {
+				return result;
+			}
+		}
+
+		return result;
+	}
+
+    public List<String> executeExternalGetSupportedClaimsMethods(List<Scope> dynamicScope) {
+        DynamicScopeExternalContext context = new DynamicScopeExternalContext(dynamicScope, null, null);
+
+        Set<String> result = new HashSet<String>();
+        for (CustomScriptConfiguration customScriptConfiguration : getScriptsToExecute(context)) {
+            List<String> scriptResult = executeExternalGetSupportedClaimsMethod(customScriptConfiguration);
+            if (scriptResult != null) {
+                result.addAll(scriptResult);
+            }
+        }
+
+        return new ArrayList<String>(result);
+    }
+
+}
diff --git a/oxAuth/Server/src/main/java/org/gluu/oxauth/service/external/ExternalEndSessionService.java b/oxAuth/Server/src/main/java/org/gluu/oxauth/service/external/ExternalEndSessionService.java
new file mode 100644
index 00000000..e421d267
--- /dev/null
+++ b/oxAuth/Server/src/main/java/org/gluu/oxauth/service/external/ExternalEndSessionService.java
@@ -0,0 +1,54 @@
+package org.gluu.oxauth.service.external;
+
+import org.apache.commons.lang.StringUtils;
+import org.gluu.model.custom.script.CustomScriptType;
+import org.gluu.model.custom.script.conf.CustomScriptConfiguration;
+import org.gluu.model.custom.script.type.logout.EndSessionType;
+import org.gluu.oxauth.service.external.context.EndSessionContext;
+import org.gluu.service.custom.script.ExternalScriptService;
+
+import javax.enterprise.context.ApplicationScoped;
+
+/**
+ * @author Yuriy Zabrovarnyy
+ */
+@ApplicationScoped
+public class ExternalEndSessionService extends ExternalScriptService {
+
+    public ExternalEndSessionService() {
+        super(CustomScriptType.END_SESSION);
+    }
+
+    public String getFrontchannelHtml(EndSessionContext context) {
+        if (customScriptConfigurations == null || customScriptConfigurations.isEmpty()) {
+            log.trace("There is no any external interception script defined (getFrontchannelHtml).");
+            return "";
+        }
+
+        for (CustomScriptConfiguration script : customScriptConfigurations) {
+            final String html = getFrontchannelHtml(script, context);
+            if (StringUtils.isNotBlank(html)) {
+                return html;
+            }
+        }
+
+        return null;
+    }
+
+    private String getFrontchannelHtml(CustomScriptConfiguration scriptConf, EndSessionContext context) {
+        try {
+            log.trace("Executing external 'getFrontchannelHtml' method, script name: {}, context: {}", scriptConf.getName(), context);
+            EndSessionType script = (EndSessionType) scriptConf.getExternalType();
+            context.setScript(scriptConf);
+
+            final String html = script.getFrontchannelHtml(context);
+            log.trace("Finished external 'getFrontchannelHtml' method, script name: {}, context {}, html: {}", scriptConf.getName(), context, html);
+
+            return html;
+        } catch (Exception ex) {
+            log.error(ex.getMessage(), ex);
+            saveScriptError(scriptConf.getCustomScript(), ex);
+            return null;
+        }
+    }
+}
diff --git a/oxAuth/Server/src/main/java/org/gluu/oxauth/service/external/ExternalIdGeneratorService.java b/oxAuth/Server/src/main/java/org/gluu/oxauth/service/external/ExternalIdGeneratorService.java
new file mode 100644
index 00000000..70960910
--- /dev/null
+++ b/oxAuth/Server/src/main/java/org/gluu/oxauth/service/external/ExternalIdGeneratorService.java
@@ -0,0 +1,51 @@
+/*
+ * oxAuth is available under the MIT License (2008). See http://opensource.org/licenses/MIT for full text.
+ *
+ * Copyright (c) 2014, Gluu
+ */
+
+package org.gluu.oxauth.service.external;
+
+import java.util.Map;
+
+import javax.enterprise.context.ApplicationScoped;
+
+import org.gluu.model.SimpleCustomProperty;
+import org.gluu.model.custom.script.CustomScriptType;
+import org.gluu.model.custom.script.conf.CustomScriptConfiguration;
+import org.gluu.model.custom.script.type.id.IdGeneratorType;
+import org.gluu.service.custom.script.ExternalScriptService;
+
+/**
+ * Provides factory methods needed to create external id generator extension
+ * 
+ * @author Yuriy Movchan Date: 01/16/2015
+ */
+@ApplicationScoped
+public class ExternalIdGeneratorService extends ExternalScriptService {
+
+	private static final long serialVersionUID = 1727751544454591273L;
+
+	public ExternalIdGeneratorService() {
+		super(CustomScriptType.ID_GENERATOR);
+	}
+
+	public String executeExternalGenerateIdMethod(CustomScriptConfiguration customScriptConfiguration, String appId, String idType, String idPrefix) {
+		try {
+			log.trace("Executing python 'generateId' method");
+			IdGeneratorType externalType = (IdGeneratorType) customScriptConfiguration.getExternalType();
+			Map<String, SimpleCustomProperty> configurationAttributes = customScriptConfiguration.getConfigurationAttributes();
+			return externalType.generateId(appId, idType, idPrefix, configurationAttributes);
+		} catch (Exception ex) {
+			log.error(ex.getMessage(), ex);
+            saveScriptError(customScriptConfiguration.getCustomScript(), ex);
+		}
+
+		return null;
+	}
+
+	public String executeExternalDefaultGenerateIdMethod(String appId, String idType, String idPrefix) {
+		return executeExternalGenerateIdMethod(this.defaultExternalCustomScript, appId, idType, idPrefix);
+	}
+
+}
diff --git a/oxAuth/Server/src/main/java/org/gluu/oxauth/service/external/ExternalIntrospectionService.java b/oxAuth/Server/src/main/java/org/gluu/oxauth/service/external/ExternalIntrospectionService.java
new file mode 100644
index 00000000..fb185296
--- /dev/null
+++ b/oxAuth/Server/src/main/java/org/gluu/oxauth/service/external/ExternalIntrospectionService.java
@@ -0,0 +1,101 @@
+package org.gluu.oxauth.service.external;
+
+import com.google.common.collect.Lists;
+import org.gluu.model.custom.script.CustomScriptType;
+import org.gluu.model.custom.script.conf.CustomScriptConfiguration;
+import org.gluu.model.custom.script.type.introspection.IntrospectionType;
+import org.gluu.oxauth.model.configuration.AppConfiguration;
+import org.gluu.oxauth.service.external.context.ExternalIntrospectionContext;
+import org.gluu.service.custom.script.ExternalScriptService;
+import org.jetbrains.annotations.NotNull;
+import org.json.JSONObject;
+import org.slf4j.Logger;
+
+import javax.enterprise.context.ApplicationScoped;
+import javax.inject.Inject;
+import javax.ws.rs.WebApplicationException;
+import java.util.List;
+
+/**
+ * @author Yuriy Zabrovarnyy
+ */
+@ApplicationScoped
+public class ExternalIntrospectionService extends ExternalScriptService {
+
+    private static final long serialVersionUID = -8609727759114795446L;
+
+    @Inject
+    private Logger log;
+    @Inject
+    private AppConfiguration appConfiguration;
+
+    public ExternalIntrospectionService() {
+        super(CustomScriptType.INTROSPECTION);
+    }
+
+    @NotNull
+    private List<CustomScriptConfiguration> getScripts(@NotNull ExternalIntrospectionContext context) {
+        if (customScriptConfigurations == null) {
+            return Lists.newArrayList();
+        }
+        if (appConfiguration.getIntrospectionScriptBackwardCompatibility()) {
+            return customScriptConfigurations;
+        }
+
+        if (context.getGrantOfIntrospectionToken() != null && context.getGrantOfIntrospectionToken().getClient() != null) {
+            final List<CustomScriptConfiguration> scripts = getCustomScriptConfigurationsByDns(context.getGrantOfIntrospectionToken().getClient().getAttributes().getIntrospectionScripts());
+            if (!scripts.isEmpty()) {
+                return scripts;
+            }
+        }
+
+        if (context.getTokenGrant() != null && context.getTokenGrant().getClient() != null) { // fallback to authorization grant
+            final List<CustomScriptConfiguration> scripts = getCustomScriptConfigurationsByDns(context.getTokenGrant().getClient().getAttributes().getIntrospectionScripts());
+            if (!scripts.isEmpty()) {
+                return scripts;
+            }
+        }
+
+        log.trace("No introspection scripts associated with client which was used to obtain access_token.");
+        return Lists.newArrayList();
+    }
+
+    public boolean executeExternalModifyResponse(JSONObject responseAsJsonObject, ExternalIntrospectionContext context) {
+        final List<CustomScriptConfiguration> scripts = getScripts(context);
+        if (scripts.isEmpty()) {
+            log.trace("There is no any external interception scripts defined.");
+            return false;
+        }
+
+        for (CustomScriptConfiguration script : scripts) {
+            if (!executeExternalModifyResponse(script, responseAsJsonObject, context)) {
+                log.debug("Stopped running external interception scripts because script {} returns false.", script.getName());
+                return false;
+            }
+        }
+
+        return true;
+    }
+
+    private boolean executeExternalModifyResponse(CustomScriptConfiguration scriptConf, JSONObject responseAsJsonObject, ExternalIntrospectionContext context) {
+        try {
+            log.trace("Executing external 'executeExternalModifyResponse' method, script name: {}, responseAsJsonObject: {} , context: {}",
+                    scriptConf.getName(), responseAsJsonObject, context);
+
+            IntrospectionType script = (IntrospectionType) scriptConf.getExternalType();
+            context.setScript(scriptConf);
+            final boolean result = script.modifyResponse(responseAsJsonObject, context);
+            log.trace("Finished external 'executeExternalModifyResponse' method, script name: {}, responseAsJsonObject: {} , context: {}, result: {}",
+                    scriptConf.getName(), responseAsJsonObject, context, result);
+
+            context.throwWebApplicationExceptionIfSet();
+            return result;
+        } catch (WebApplicationException e) {
+            throw e;
+        } catch (Exception ex) {
+            log.error(ex.getMessage(), ex);
+            saveScriptError(scriptConf.getCustomScript(), ex);
+            return false;
+        }
+    }
+}
diff --git a/oxAuth/Server/src/main/java/org/gluu/oxauth/service/external/ExternalPostAuthnService.java b/oxAuth/Server/src/main/java/org/gluu/oxauth/service/external/ExternalPostAuthnService.java
new file mode 100644
index 00000000..caa79116
--- /dev/null
+++ b/oxAuth/Server/src/main/java/org/gluu/oxauth/service/external/ExternalPostAuthnService.java
@@ -0,0 +1,96 @@
+package org.gluu.oxauth.service.external;
+
+import org.gluu.model.custom.script.CustomScriptType;
+import org.gluu.model.custom.script.conf.CustomScriptConfiguration;
+import org.gluu.model.custom.script.type.postauthn.PostAuthnType;
+import org.gluu.oxauth.model.registration.Client;
+import org.gluu.oxauth.service.external.context.ExternalPostAuthnContext;
+import org.gluu.service.custom.script.ExternalScriptService;
+import org.slf4j.Logger;
+
+import javax.enterprise.context.ApplicationScoped;
+import javax.inject.Inject;
+import java.util.List;
+
+/**
+ * @author Yuriy Zabrovarnyy
+ */
+@ApplicationScoped
+public class ExternalPostAuthnService  extends ExternalScriptService {
+
+    @Inject
+    private Logger log;
+
+    public ExternalPostAuthnService() {
+        super(CustomScriptType.POST_AUTHN);
+    }
+
+    public boolean externalForceReAuthentication(Client client, ExternalPostAuthnContext context) {
+        final List<CustomScriptConfiguration> scripts = getCustomScriptConfigurationsByDns(client.getAttributes().getPostAuthnScripts());
+        if (scripts.isEmpty()) {
+            return false;
+        }
+        log.trace("Found {} post-authn scripts.", scripts.size());
+
+        for (CustomScriptConfiguration script : scripts) {
+            if (!externalForceReAuthentication(script, context)) {
+                return false;
+            }
+        }
+
+        log.debug("Forcing re-authentication via post-authn script.");
+        return true;
+    }
+
+    public boolean externalForceAuthorization(Client client, ExternalPostAuthnContext context) {
+        final List<CustomScriptConfiguration> scripts = getCustomScriptConfigurationsByDns(client.getAttributes().getPostAuthnScripts());
+        if (scripts.isEmpty()) {
+            return false;
+        }
+        log.trace("Found {} post-authn scripts.", scripts.size());
+
+        for (CustomScriptConfiguration script : scripts) {
+            if (!externalForceAuthorization(script, context)) {
+                return false;
+            }
+        }
+
+        log.debug("Forcing authorization via post-authn script.");
+        return true;
+    }
+
+
+    public boolean externalForceReAuthentication(CustomScriptConfiguration scriptConfiguration, ExternalPostAuthnContext context) {
+        try {
+            log.trace("Executing external 'externalForceReAuthentication' method, script name: {}, context: {}", scriptConfiguration.getName(), context);
+
+            PostAuthnType script = (PostAuthnType) scriptConfiguration.getExternalType();
+            context.setScript(scriptConfiguration);
+            final boolean result = script.forceReAuthentication(context);
+
+            log.trace("Finished external 'externalForceReAuthentication' method, script name: {}, context: {}, result: {}", scriptConfiguration.getName(), context, result);
+            return result;
+        } catch (Exception ex) {
+            log.error(ex.getMessage(), ex);
+            saveScriptError(scriptConfiguration.getCustomScript(), ex);
+            return false;
+        }
+    }
+
+    public boolean externalForceAuthorization(CustomScriptConfiguration scriptConfiguration, ExternalPostAuthnContext context) {
+        try {
+            log.trace("Executing external 'externalForceAuthorization' method, script name: {}, context: {}", scriptConfiguration.getName(), context);
+
+            PostAuthnType script = (PostAuthnType) scriptConfiguration.getExternalType();
+            context.setScript(scriptConfiguration);
+            final boolean result = script.forceAuthorization(context);
+
+            log.trace("Finished external 'externalForceAuthorization' method, script name: {}, context: {}, result: {}", scriptConfiguration.getName(), context, result);
+            return result;
+        } catch (Exception ex) {
+            log.error(ex.getMessage(), ex);
+            saveScriptError(scriptConfiguration.getCustomScript(), ex);
+            return false;
+        }
+    }
+}
diff --git a/oxAuth/Server/src/main/java/org/gluu/oxauth/service/external/ExternalResourceOwnerPasswordCredentialsService.java b/oxAuth/Server/src/main/java/org/gluu/oxauth/service/external/ExternalResourceOwnerPasswordCredentialsService.java
new file mode 100644
index 00000000..14c28163
--- /dev/null
+++ b/oxAuth/Server/src/main/java/org/gluu/oxauth/service/external/ExternalResourceOwnerPasswordCredentialsService.java
@@ -0,0 +1,69 @@
+package org.gluu.oxauth.service.external;
+
+import org.gluu.model.custom.script.CustomScriptType;
+import org.gluu.model.custom.script.conf.CustomScriptConfiguration;
+import org.gluu.model.custom.script.type.owner.ResourceOwnerPasswordCredentialsType;
+import org.gluu.oxauth.service.external.context.ExternalResourceOwnerPasswordCredentialsContext;
+import org.gluu.service.custom.script.ExternalScriptService;
+import org.slf4j.Logger;
+
+import javax.enterprise.context.ApplicationScoped;
+import javax.inject.Inject;
+
+/**
+ * @author Yuriy Zabrovarnyy
+ */
+@ApplicationScoped
+public class ExternalResourceOwnerPasswordCredentialsService extends ExternalScriptService {
+
+    private static final long serialVersionUID = -1070021905117551202L;
+
+    @Inject
+    private Logger log;
+
+    public ExternalResourceOwnerPasswordCredentialsService() {
+        super(CustomScriptType.RESOURCE_OWNER_PASSWORD_CREDENTIALS);
+    }
+
+    public boolean executeExternalAuthenticate(ExternalResourceOwnerPasswordCredentialsContext context) {
+        if (customScriptConfigurations == null || customScriptConfigurations.isEmpty()) {
+            log.debug("There is no any external interception scripts defined.");
+            return false;
+        }
+
+        for (CustomScriptConfiguration script : customScriptConfigurations) {
+            if (!executeExternalAuthenticate(script, context)) {
+                log.debug("Stopped running external RO PC scripts because script {} returns false.", script.getName());
+                return false;
+            }
+        }
+
+        return true;
+    }
+
+    private boolean executeExternalAuthenticate(CustomScriptConfiguration customScriptConfiguration, ExternalResourceOwnerPasswordCredentialsContext context) {
+        try {
+            log.debug("Executing external 'executeExternalAuthenticate' method, script name: {}, context: {}",
+                    customScriptConfiguration.getName(), context);
+
+            ResourceOwnerPasswordCredentialsType script = (ResourceOwnerPasswordCredentialsType) customScriptConfiguration.getExternalType();
+            context.setScript(customScriptConfiguration);
+
+            if (script == null) {
+                log.error("Failed to load script, name: " + customScriptConfiguration.getName());
+                return false;
+            }
+
+            final boolean result = script.authenticate(context);
+
+            log.debug("Finished external 'executeExternalAuthenticate' method, script name: {}, context: {}, result: {}",
+                    customScriptConfiguration.getName(), context, result);
+            return result;
+        } catch (Exception ex) {
+            log.error(ex.getMessage(), ex);
+            saveScriptError(customScriptConfiguration.getCustomScript(), ex);
+            return false;
+        }
+    }
+
+}
diff --git a/oxAuth/Server/src/main/java/org/gluu/oxauth/service/external/ExternalRevokeTokenService.java b/oxAuth/Server/src/main/java/org/gluu/oxauth/service/external/ExternalRevokeTokenService.java
new file mode 100644
index 00000000..493902d3
--- /dev/null
+++ b/oxAuth/Server/src/main/java/org/gluu/oxauth/service/external/ExternalRevokeTokenService.java
@@ -0,0 +1,52 @@
+package org.gluu.oxauth.service.external;
+
+import org.gluu.model.custom.script.CustomScriptType;
+import org.gluu.model.custom.script.conf.CustomScriptConfiguration;
+import org.gluu.model.custom.script.type.revoke.RevokeTokenType;
+import org.gluu.oxauth.service.external.context.RevokeTokenContext;
+import org.gluu.service.custom.script.ExternalScriptService;
+import org.slf4j.Logger;
+
+import javax.enterprise.context.ApplicationScoped;
+import javax.inject.Inject;
+
+/**
+ * @author Yuriy Zabrovarnyy
+ */
+@ApplicationScoped
+public class ExternalRevokeTokenService extends ExternalScriptService {
+
+    @Inject
+    private Logger log;
+
+    public ExternalRevokeTokenService() {
+        super(CustomScriptType.REVOKE_TOKEN);
+    }
+
+    public boolean revokeToken(CustomScriptConfiguration script, RevokeTokenContext context) {
+        try {
+            log.trace("Executing python 'revokeToken' method, context: {}", context);
+            context.setScript(script);
+            RevokeTokenType revokeTokenType = (RevokeTokenType) script.getExternalType();
+            final boolean result = revokeTokenType.revoke(context);
+            log.trace("Finished 'revokeToken' method, result: {}, context: {}", result, context);
+            return result;
+        } catch (Exception ex) {
+            log.error(ex.getMessage(), ex);
+            saveScriptError(script.getCustomScript(), ex);
+        }
+
+        return false;
+    }
+
+    public boolean revokeTokenMethods(RevokeTokenContext context) {
+        for (CustomScriptConfiguration script : this.customScriptConfigurations) {
+            if (script.getExternalType().getApiVersion() > 1) {
+                if (!revokeToken(script, context)) {
+                    return false;
+                }
+            }
+        }
+        return true;
+    }
+}
diff --git a/oxAuth/Server/src/main/java/org/gluu/oxauth/service/external/ExternalSpontaneousScopeService.java b/oxAuth/Server/src/main/java/org/gluu/oxauth/service/external/ExternalSpontaneousScopeService.java
new file mode 100644
index 00000000..cb723f87
--- /dev/null
+++ b/oxAuth/Server/src/main/java/org/gluu/oxauth/service/external/ExternalSpontaneousScopeService.java
@@ -0,0 +1,60 @@
+package org.gluu.oxauth.service.external;
+
+import com.google.common.collect.Sets;
+import org.gluu.model.custom.script.CustomScriptType;
+import org.gluu.model.custom.script.conf.CustomScriptConfiguration;
+import org.gluu.model.custom.script.type.spontaneous.SpontaneousScopeType;
+import org.gluu.oxauth.model.registration.Client;
+import org.gluu.oxauth.service.external.context.SpontaneousScopeExternalContext;
+import org.gluu.service.custom.script.ExternalScriptService;
+
+import javax.enterprise.context.ApplicationScoped;
+import java.util.List;
+import java.util.Set;
+
+@ApplicationScoped
+public class ExternalSpontaneousScopeService extends ExternalScriptService {
+
+    public ExternalSpontaneousScopeService() {
+        super(CustomScriptType.SPONTANEOUS_SCOPE);
+    }
+
+    public void executeExternalManipulateScope(SpontaneousScopeExternalContext context) {
+        for (CustomScriptConfiguration script : getScriptsToExecute(context.getClient())) {
+            executeExternalManipulateScope(script, context);
+
+            log.debug("GrantedScopes {} after execution of interception script {}.", context.getGrantedScopes(), script.getName());
+        }
+    }
+
+    private void executeExternalManipulateScope(CustomScriptConfiguration scriptConfiguration, SpontaneousScopeExternalContext context) {
+        try {
+            log.debug("Executing external 'executeExternalManipulateScope' method, script name: {}, grantedScopes: {} , context: {}",
+                    scriptConfiguration.getName(), context.getGrantedScopes(), context);
+
+            SpontaneousScopeType script = (SpontaneousScopeType) scriptConfiguration.getExternalType();
+
+            script.manipulateScopes(context);
+            log.debug("Finished external 'executeExternalManipulateScope' method, script name: {}, grantedScopes: {} , context: {}",
+                    scriptConfiguration.getName(), context.getGrantedScopes(), context);
+        } catch (Exception ex) {
+            log.error(ex.getMessage(), ex);
+            saveScriptError(scriptConfiguration.getCustomScript(), ex);
+        }
+    }
+
+    private Set<CustomScriptConfiguration> getScriptsToExecute(Client client) {
+        Set<CustomScriptConfiguration> result = Sets.newHashSet();
+        if (this.customScriptConfigurations == null) {
+            return result;
+        }
+
+        List<String> scriptDns = client.getAttributes().getSpontaneousScopeScriptDns();
+        for (CustomScriptConfiguration script : this.customScriptConfigurations) {
+            if (scriptDns.contains(script.getCustomScript().getDn())) {
+                result.add(script);
+            }
+        }
+        return result;
+    }
+}
diff --git a/oxAuth/Server/src/main/java/org/gluu/oxauth/service/external/ExternalUmaClaimsGatheringService.java b/oxAuth/Server/src/main/java/org/gluu/oxauth/service/external/ExternalUmaClaimsGatheringService.java
new file mode 100644
index 00000000..73b5aeef
--- /dev/null
+++ b/oxAuth/Server/src/main/java/org/gluu/oxauth/service/external/ExternalUmaClaimsGatheringService.java
@@ -0,0 +1,168 @@
+package org.gluu.oxauth.service.external;
+
+import java.util.ArrayList;
+import java.util.Arrays;
+import java.util.Collections;
+import java.util.Comparator;
+import java.util.HashMap;
+import java.util.List;
+import java.util.Map;
+
+import javax.enterprise.context.ApplicationScoped;
+import javax.inject.Inject;
+
+import org.gluu.model.custom.script.CustomScriptType;
+import org.gluu.model.custom.script.conf.CustomScriptConfiguration;
+import org.gluu.model.custom.script.type.uma.UmaClaimsGatheringType;
+import org.gluu.oxauth.uma.authorization.UmaGatherContext;
+import org.gluu.service.LookupService;
+import org.gluu.service.custom.script.CustomScriptManager;
+import org.gluu.service.custom.script.ExternalScriptService;
+import org.gluu.util.StringHelper;
+import org.slf4j.Logger;
+
+/**
+ * @author yuriyz on 06/18/2017.
+ */
+@ApplicationScoped
+public class ExternalUmaClaimsGatheringService extends ExternalScriptService {
+
+    @Inject
+    private Logger log;
+    @Inject
+    private LookupService lookupService;
+    @Inject
+    private CustomScriptManager scriptManager;
+
+    protected Map<String, CustomScriptConfiguration> scriptInumMap;
+
+    public ExternalUmaClaimsGatheringService() {
+        super(CustomScriptType.UMA_CLAIMS_GATHERING);
+    }
+
+    @Override
+    protected void reloadExternal() {
+        this.scriptInumMap = buildExternalConfigurationsInumMap(this.customScriptConfigurations);
+    }
+
+    public CustomScriptConfiguration determineScript(String[] scriptNames) {
+        log.trace("Trying to determine claims-gathering script, scriptNames: {} ...", Arrays.toString(scriptNames));
+
+        List<CustomScriptConfiguration> scripts = new ArrayList<CustomScriptConfiguration>();
+
+        for (String scriptName : scriptNames) {
+            CustomScriptConfiguration script = getCustomScriptConfigurationByName(scriptName);
+            if (script != null) {
+                scripts.add(script);
+            } else {
+                log.error("Failed to load claims-gathering script with name: {}", scriptName);
+            }
+        }
+
+        if (scripts.isEmpty()) {
+            return null;
+        }
+
+        CustomScriptConfiguration highestPriority = Collections.max(scripts, new Comparator<CustomScriptConfiguration>() {
+            @Override
+            public int compare(CustomScriptConfiguration o1, CustomScriptConfiguration o2) {
+                return Integer.compare(o1.getLevel(), o2.getLevel());
+            }
+        });
+        log.trace("Determined claims-gathering script successfully. Name: {}, inum: {}", highestPriority.getName(), highestPriority.getInum());
+        return highestPriority;
+    }
+
+    private Map<String, CustomScriptConfiguration> buildExternalConfigurationsInumMap(List<CustomScriptConfiguration> customScriptConfigurations) {
+        Map<String, CustomScriptConfiguration> reloadedExternalConfigurations = new HashMap<String, CustomScriptConfiguration>(customScriptConfigurations.size());
+
+        for (CustomScriptConfiguration customScriptConfiguration : customScriptConfigurations) {
+            reloadedExternalConfigurations.put(customScriptConfiguration.getInum(), customScriptConfiguration);
+        }
+
+        return reloadedExternalConfigurations;
+    }
+
+    public CustomScriptConfiguration getScriptByDn(String scriptDn) {
+        String authorizationPolicyInum = lookupService.getInumFromDn(scriptDn);
+
+        return getScriptByInum(authorizationPolicyInum);
+    }
+
+    public CustomScriptConfiguration getScriptByInum(String inum) {
+        if (StringHelper.isEmpty(inum)) {
+            return null;
+        }
+
+        return this.scriptInumMap.get(inum);
+    }
+
+    private UmaClaimsGatheringType gatherScript(CustomScriptConfiguration script) {
+        return ExternalUmaRptPolicyService.HOTSWAP_UMA_SCRIPT ? (UmaClaimsGatheringType) ExternalUmaRptPolicyService.hotswap(scriptManager, script, false) : (UmaClaimsGatheringType) script.getExternalType();
+    }
+
+    public boolean gather(CustomScriptConfiguration script, int step, UmaGatherContext context) {
+        try {
+            log.debug("Executing python 'gather' method, script: " + script.getName());
+            boolean result = gatherScript(script).gather(step, context);
+            log.debug("python 'gather' result: " + result);
+            return result;
+        } catch (Exception ex) {
+            log.error("Failed to execute python 'gather' method, script: " + script.getName() + ", message: " + ex.getMessage(), ex);
+            saveScriptError(script.getCustomScript(), ex);
+            return false;
+        }
+    }
+
+    public int getNextStep(CustomScriptConfiguration script, int step, UmaGatherContext context) {
+        try {
+            log.debug("Executing python 'getNextStep' method, script: " + script.getName());
+            int result = gatherScript(script).getNextStep(step, context);
+            log.debug("python 'getNextStep' result: " + result);
+            return result;
+        } catch (Exception ex) {
+            log.error("Failed to execute python 'getNextStep' method, script: " + script.getName() + ", message: " + ex.getMessage(), ex);
+            saveScriptError(script.getCustomScript(), ex);
+            return -1;
+        }
+    }
+
+    public boolean prepareForStep(CustomScriptConfiguration script, int step, UmaGatherContext context) {
+        try {
+            log.debug("Executing python 'prepareForStep' method, script: " + script.getName());
+            boolean result = gatherScript(script).prepareForStep(step, context);
+            log.debug("python 'prepareForStep' result: " + result);
+            return result;
+        } catch (Exception ex) {
+            log.error("Failed to execute python 'prepareForStep' method, script: " + script.getName() + ", message: " + ex.getMessage(), ex);
+            saveScriptError(script.getCustomScript(), ex);
+            return false;
+        }
+    }
+
+    public int getStepsCount(CustomScriptConfiguration script, UmaGatherContext context) {
+        try {
+            log.debug("Executing python 'getStepsCount' method, script: " + script.getName());
+            int result = gatherScript(script).getStepsCount(context);
+            log.debug("python 'getStepsCount' result: " + result);
+            return result;
+        } catch (Exception ex) {
+            log.error("Failed to execute python 'getStepsCount' method, script: " + script.getName() + ", message: " + ex.getMessage(), ex);
+            saveScriptError(script.getCustomScript(), ex);
+            return -1;
+        }
+    }
+
+    public String getPageForStep(CustomScriptConfiguration script, int step, UmaGatherContext context) {
+        try {
+            log.debug("Executing python 'getPageForStep' method, script: " + script.getName());
+            String result = gatherScript(script).getPageForStep(step, context);
+            log.debug("python 'getPageForStep' result: " + result);
+            return result;
+        } catch (Exception ex) {
+            log.error("Failed to execute python 'getPageForStep' method, script: " + script.getName() + ", message: " + ex.getMessage(), ex);
+            saveScriptError(script.getCustomScript(), ex);
+            return "";
+        }
+    }
+}
diff --git a/oxAuth/Server/src/main/java/org/gluu/oxauth/service/external/ExternalUmaRptClaimsService.java b/oxAuth/Server/src/main/java/org/gluu/oxauth/service/external/ExternalUmaRptClaimsService.java
new file mode 100644
index 00000000..9db9be52
--- /dev/null
+++ b/oxAuth/Server/src/main/java/org/gluu/oxauth/service/external/ExternalUmaRptClaimsService.java
@@ -0,0 +1,61 @@
+package org.gluu.oxauth.service.external;
+
+import org.gluu.model.custom.script.CustomScriptType;
+import org.gluu.model.custom.script.conf.CustomScriptConfiguration;
+import org.gluu.model.custom.script.type.uma.UmaRptClaimsType;
+import org.gluu.oxauth.service.external.context.ExternalUmaRptClaimsContext;
+import org.gluu.service.custom.script.ExternalScriptService;
+import org.json.JSONObject;
+import org.slf4j.Logger;
+
+import javax.enterprise.context.ApplicationScoped;
+import javax.inject.Inject;
+import java.util.List;
+
+/**
+ * @author Yuriy Zabrovarnyy
+ */
+@ApplicationScoped
+public class ExternalUmaRptClaimsService extends ExternalScriptService {
+
+    @Inject
+    private Logger log;
+
+    public ExternalUmaRptClaimsService() {
+        super(CustomScriptType.UMA_RPT_CLAIMS);
+    }
+
+    public boolean externalModify(JSONObject rptAsJson, ExternalUmaRptClaimsContext context) {
+        final List<CustomScriptConfiguration> scripts = getCustomScriptConfigurationsByDns(context.getClient().getAttributes().getRptClaimsScripts());
+        if (scripts.isEmpty()) {
+            return false;
+        }
+        log.trace("Found {} RPT Claims scripts.", scripts.size());
+
+        for (CustomScriptConfiguration script : scripts) {
+            if (!externalModify(rptAsJson, script, context)) {
+                return false;
+            }
+        }
+
+        log.debug("ExternalModify returned 'true'.");
+        return true;
+    }
+
+    public boolean externalModify(JSONObject rptAsJson, CustomScriptConfiguration scriptConfiguration, ExternalUmaRptClaimsContext context) {
+        try {
+            log.trace("Executing external 'externalModify' method, script name: {}, context: {}", scriptConfiguration.getName(), context);
+
+            UmaRptClaimsType script = (UmaRptClaimsType) scriptConfiguration.getExternalType();
+            context.setScript(scriptConfiguration);
+            final boolean result = script.modify(rptAsJson, context);
+
+            log.trace("Finished external 'externalModify' method, script name: {}, context: {}, result: {}", scriptConfiguration.getName(), context, result);
+            return result;
+        } catch (Exception ex) {
+            log.error(ex.getMessage(), ex);
+            saveScriptError(scriptConfiguration.getCustomScript(), ex);
+            return false;
+        }
+    }
+}
diff --git a/oxAuth/Server/src/main/java/org/gluu/oxauth/service/external/ExternalUmaRptPolicyService.java b/oxAuth/Server/src/main/java/org/gluu/oxauth/service/external/ExternalUmaRptPolicyService.java
new file mode 100644
index 00000000..6c56cb4b
--- /dev/null
+++ b/oxAuth/Server/src/main/java/org/gluu/oxauth/service/external/ExternalUmaRptPolicyService.java
@@ -0,0 +1,148 @@
+/*
+ * oxAuth is available under the MIT License (2008). See http://opensource.org/licenses/MIT for full text.
+ *
+ * Copyright (c) 2014, Gluu
+ */
+
+package org.gluu.oxauth.service.external;
+
+import java.io.File;
+import java.util.ArrayList;
+import java.util.HashMap;
+import java.util.List;
+import java.util.Map;
+
+import javax.enterprise.context.ApplicationScoped;
+import javax.inject.Inject;
+
+import org.apache.commons.io.FileUtils;
+import org.gluu.model.custom.script.CustomScriptType;
+import org.gluu.model.custom.script.conf.CustomScriptConfiguration;
+import org.gluu.model.custom.script.type.uma.UmaRptPolicyType;
+import org.gluu.model.uma.ClaimDefinition;
+import org.gluu.oxauth.uma.authorization.UmaAuthorizationContext;
+import org.gluu.service.LookupService;
+import org.gluu.service.custom.script.CustomScriptManager;
+import org.gluu.service.custom.script.ExternalScriptService;
+import org.gluu.util.StringHelper;
+import org.slf4j.Logger;
+
+/**
+ * Provides factory methods needed to create external UMA authorization policies extension
+ *
+ * @author Yuriy Zabrovarnyy
+ * @author Yuriy Movchan
+ */
+@ApplicationScoped
+public class ExternalUmaRptPolicyService extends ExternalScriptService {
+
+	private static final long serialVersionUID = -8609727759114795435L;
+
+	public static final boolean HOTSWAP_UMA_SCRIPT = Boolean.parseBoolean(System.getProperty("uma.hotswap.script"));
+
+	@Inject
+	private Logger log;
+	@Inject
+	private LookupService lookupService;
+	@Inject
+	private CustomScriptManager scriptManager;
+
+	protected Map<String, CustomScriptConfiguration> scriptInumMap;
+
+	public ExternalUmaRptPolicyService() {
+		super(CustomScriptType.UMA_RPT_POLICY);
+	}
+
+	@Override
+	protected void reloadExternal() {
+		this.scriptInumMap = buildExternalConfigurationsInumMap(this.customScriptConfigurations);
+	}
+
+	private Map<String, CustomScriptConfiguration> buildExternalConfigurationsInumMap(List<CustomScriptConfiguration> customScriptConfigurations) {
+		Map<String, CustomScriptConfiguration> reloadedExternalConfigurations = new HashMap<String, CustomScriptConfiguration>(customScriptConfigurations.size());
+		
+		for (CustomScriptConfiguration customScriptConfiguration : customScriptConfigurations) {
+			reloadedExternalConfigurations.put(customScriptConfiguration.getInum(), customScriptConfiguration);
+		}
+
+		return reloadedExternalConfigurations;
+	}
+
+	public CustomScriptConfiguration getScriptByDn(String scriptDn) {
+		String authorizationPolicyInum = lookupService.getInumFromDn(scriptDn);
+
+		return getScriptByInum(authorizationPolicyInum);
+	}
+
+	public CustomScriptConfiguration getScriptByInum(String inum) {
+		if (StringHelper.isEmpty(inum)) {
+			return null;
+		}
+
+		return this.scriptInumMap.get(inum);
+	}
+
+	private UmaRptPolicyType policyScript(CustomScriptConfiguration script) {
+		return HOTSWAP_UMA_SCRIPT ? (UmaRptPolicyType) hotswap(scriptManager, script, true) :
+				(UmaRptPolicyType) script.getExternalType();
+	}
+
+	public boolean authorize(CustomScriptConfiguration script, UmaAuthorizationContext context) {
+		try {
+			log.debug("Executing python 'authorize' method, script: " + script.getName());
+			boolean result = policyScript(script).authorize(context);
+			log.debug("python 'authorize' result: " + result);
+			return result;
+		} catch (Exception ex) {
+			log.error("Failed to execute python 'authorize' method, script: " + script.getName() + ", message: " + ex.getMessage(), ex);
+            saveScriptError(script.getCustomScript(), ex);
+			return false;
+		}
+	}
+
+	public List<ClaimDefinition> getRequiredClaims(CustomScriptConfiguration script, UmaAuthorizationContext context) {
+		try {
+			log.debug("Executing python 'getRequiredClaims' method, script: " + script.getName());
+			List<ClaimDefinition> result = policyScript(script).getRequiredClaims(context);
+			log.debug("python 'getRequiredClaims' result: " + result);
+			return result;
+		} catch (Exception ex) {
+			log.error("Failed to execute python 'getRequiredClaims' method, script: " + script.getName() + ", message: " + ex.getMessage(), ex);
+            saveScriptError(script.getCustomScript(), ex);
+			return new ArrayList<ClaimDefinition>();
+		}
+	}
+
+	public String getClaimsGatheringScriptName(CustomScriptConfiguration script, UmaAuthorizationContext context) {
+		try {
+			log.debug("Executing python 'getClaimsGatheringScriptName' method, script: " + script.getName());
+			String result = policyScript(script).getClaimsGatheringScriptName(context);
+			log.debug("python 'getClaimsGatheringScriptName' result: " + result);
+			return result;
+		} catch (Exception ex) {
+			log.error("Failed to execute python 'getClaimsGatheringScriptName' method, script: " + script.getName() + ", message: " + ex.getMessage(), ex);
+            saveScriptError(script.getCustomScript(), ex);
+			return "";
+		}
+	}
+
+	public static <T> T hotswap(CustomScriptManager scriptManager, CustomScriptConfiguration script, boolean rptPolicyScript) {
+		if (!HOTSWAP_UMA_SCRIPT) {
+			throw new RuntimeException("UMA script hotswap is not allowed");
+		}
+
+		final String scriptPath;
+		if (rptPolicyScript) {
+			scriptPath = System.getProperty("uma.hotswap.rpt_policy_script.path");
+		} else {
+			scriptPath = System.getProperty("uma.hotswap.claims_gathering_script.path");
+		}
+		try {
+			String scriptCode = FileUtils.readFileToString(new File(scriptPath));
+			script.getCustomScript().setScript(scriptCode);
+			return (T) scriptManager.createExternalTypeFromStringWithPythonException(script.getCustomScript(), script.getConfigurationAttributes());
+		} catch (Exception e) {
+			throw new RuntimeException(e);
+		}
+	}
+}
diff --git a/oxAuth/Server/src/main/java/org/gluu/oxauth/service/external/ExternalUpdateTokenService.java b/oxAuth/Server/src/main/java/org/gluu/oxauth/service/external/ExternalUpdateTokenService.java
new file mode 100644
index 00000000..8dc8fb5d
--- /dev/null
+++ b/oxAuth/Server/src/main/java/org/gluu/oxauth/service/external/ExternalUpdateTokenService.java
@@ -0,0 +1,278 @@
+/*
+ * oxAuth is available under the MIT License (2008). See http://opensource.org/licenses/MIT for full text.
+ *
+ * Copyright (c) 2021, Gluu
+ */
+
+package org.gluu.oxauth.service.external;
+
+import com.google.common.base.Function;
+import com.google.common.collect.Lists;
+import org.gluu.model.custom.script.CustomScriptType;
+import org.gluu.model.custom.script.conf.CustomScriptConfiguration;
+import org.gluu.model.custom.script.type.token.UpdateTokenType;
+import org.gluu.oxauth.model.common.AccessToken;
+import org.gluu.oxauth.model.common.RefreshToken;
+import org.gluu.oxauth.model.token.JsonWebResponse;
+import org.gluu.oxauth.service.external.context.ExternalUpdateTokenContext;
+import org.gluu.service.custom.script.ExternalScriptService;
+import org.jetbrains.annotations.NotNull;
+import org.slf4j.Logger;
+
+import javax.enterprise.context.ApplicationScoped;
+import javax.inject.Inject;
+import javax.ws.rs.WebApplicationException;
+import java.util.List;
+
+/**
+ * @author Yuriy Movchan
+ */
+@ApplicationScoped
+public class ExternalUpdateTokenService extends ExternalScriptService {
+
+	private static final long serialVersionUID = -1033475075863270249L;
+
+	@Inject
+    private Logger log;
+
+    public ExternalUpdateTokenService() {
+        super(CustomScriptType.UPDATE_TOKEN);
+    }
+
+    public boolean modifyIdTokenMethod(CustomScriptConfiguration script, JsonWebResponse jsonWebResponse, ExternalUpdateTokenContext context) {
+        try {
+            log.trace("Executing python 'updateToken' method, script name: {}, jsonWebResponse: {}, context: {}", script.getName(), jsonWebResponse, context);
+            context.setScript(script);
+
+            UpdateTokenType updateTokenType = (UpdateTokenType) script.getExternalType();
+            final boolean result = updateTokenType.modifyIdToken(jsonWebResponse, context);
+            log.trace("Finished 'updateToken' method, script name: {}, jsonWebResponse: {}, context: {}, result: {}", script.getName(), jsonWebResponse, context, result);
+
+            context.throwWebApplicationExceptionIfSet();
+            return result;
+        } catch (WebApplicationException e) {
+            throw e;
+        } catch (Exception ex) {
+            log.error(ex.getMessage(), ex);
+            saveScriptError(script.getCustomScript(), ex);
+        }
+
+        return false;
+    }
+
+    public boolean modifyIdTokenMethods(JsonWebResponse jsonWebResponse, ExternalUpdateTokenContext context) {
+        for (CustomScriptConfiguration script : getScripts()) {
+            if (!modifyIdTokenMethod(script, jsonWebResponse, context)) {
+                return false;
+            }
+        }
+
+        return true;
+    }
+
+    @NotNull
+    private List<CustomScriptConfiguration> getScripts() {
+        if (customScriptConfigurations == null) {
+            return Lists.newArrayList();
+        }
+
+        return customScriptConfigurations;
+    }
+
+
+    public Function<JsonWebResponse, Void> buildModifyIdTokenProcessor(final ExternalUpdateTokenContext context) {
+		return new Function<JsonWebResponse, Void>() {
+			@Override
+			public Void apply(JsonWebResponse jsonWebResponse) {
+				modifyIdTokenMethods(jsonWebResponse, context);
+
+				return null;
+			}
+		};
+	}
+
+    public boolean modifyRefreshToken(CustomScriptConfiguration script, RefreshToken refreshToken, ExternalUpdateTokenContext context) {
+        try {
+            log.trace("Executing python 'modifyRefreshToken' method, script name: {}, context: {}", script.getName(), context);
+            context.setScript(script);
+
+            UpdateTokenType updateTokenType = (UpdateTokenType) script.getExternalType();
+            final boolean result = updateTokenType.modifyRefreshToken(refreshToken, context);
+            log.trace("Finished 'modifyRefreshToken' method, script name: {}, context: {}, result: {}", script.getName(), context, result);
+
+            context.throwWebApplicationExceptionIfSet();
+            return result;
+        } catch (WebApplicationException e) {
+            throw e;
+        } catch (Exception ex) {
+            log.error(ex.getMessage(), ex);
+            saveScriptError(script.getCustomScript(), ex);
+        }
+
+        return false;
+    }
+
+    public boolean modifyRefreshToken(RefreshToken refreshToken, ExternalUpdateTokenContext context) {
+        List<CustomScriptConfiguration> scripts = getScripts();
+        if (scripts.isEmpty()) {
+            return true;
+        }
+        log.trace("Executing {} update-token modifyRefreshToken scripts.", scripts.size());
+
+        for (CustomScriptConfiguration script : scripts) {
+            if (!modifyRefreshToken(script, refreshToken, context)) {
+                return false;
+            }
+        }
+
+        return true;
+    }
+
+    public boolean modifyAccessToken(CustomScriptConfiguration script, AccessToken accessToken, ExternalUpdateTokenContext context) {
+        try {
+            log.trace("Executing python 'modifyAccessToken' method, script name: {}, context: {}", script.getName(), context);
+            context.setScript(script);
+
+            UpdateTokenType updateTokenType = (UpdateTokenType) script.getExternalType();
+            final boolean result = updateTokenType.modifyAccessToken(accessToken, context);
+            log.trace("Finished 'modifyAccessToken' method, script name: {}, context: {}, result: {}", script.getName(), context, result);
+
+            context.throwWebApplicationExceptionIfSet();
+            return result;
+        } catch (WebApplicationException e) {
+            throw e;
+        } catch (Exception ex) {
+            log.error(ex.getMessage(), ex);
+            saveScriptError(script.getCustomScript(), ex);
+        }
+
+        return false;
+    }
+
+    public boolean modifyAccessToken(AccessToken accessToken, ExternalUpdateTokenContext context) {
+        List<CustomScriptConfiguration> scripts = getScripts();
+        if (scripts.isEmpty()) {
+            return true;
+        }
+        log.trace("Executing {} update-token modifyAccessToken scripts.", scripts.size());
+
+        for (CustomScriptConfiguration script : scripts) {
+            if (!modifyAccessToken(script, accessToken, context)) {
+                return false;
+            }
+        }
+
+        return true;
+    }
+
+    public int getAccessTokenLifetimeInSeconds(CustomScriptConfiguration script, ExternalUpdateTokenContext context) {
+        try {
+            log.trace("Executing python 'getAccessTokenLifetimeInSeconds' method, script name: {}, context: {}", script.getName(), context);
+            context.setScript(script);
+
+            UpdateTokenType updateTokenType = (UpdateTokenType) script.getExternalType();
+            final int result = updateTokenType.getAccessTokenLifetimeInSeconds(context);
+            log.trace("Finished 'getAccessTokenLifetimeInSeconds' method, script name: {}, context: {}, result: {}", script.getName(), context, result);
+
+            context.throwWebApplicationExceptionIfSet();
+            return result;
+        } catch (WebApplicationException e) {
+            throw e;
+        } catch (Exception ex) {
+            log.error(ex.getMessage(), ex);
+            saveScriptError(script.getCustomScript(), ex);
+        }
+        return 0;
+    }
+
+    public int getAccessTokenLifetimeInSeconds(ExternalUpdateTokenContext context) {
+        List<CustomScriptConfiguration> scripts = getScripts();
+        if (scripts.isEmpty()) {
+            return 0;
+        }
+        log.trace("Executing {} 'getAccessTokenLifetimeInSeconds' scripts.", scripts.size());
+
+        for (CustomScriptConfiguration script : scripts) {
+            final int lifetime = getAccessTokenLifetimeInSeconds(script, context);
+            if (lifetime > 0) {
+                log.trace("Finished 'getAccessTokenLifetimeInSeconds' methods, lifetime: {}", lifetime);
+                return lifetime;
+            }
+        }
+        return 0;
+    }
+
+    public int getIdTokenLifetimeInSeconds(CustomScriptConfiguration script, ExternalUpdateTokenContext context) {
+        try {
+            log.trace("Executing python 'getIdTokenLifetimeInSeconds' method, script name: {}, context: {}", script.getName(), context);
+            context.setScript(script);
+
+            UpdateTokenType updateTokenType = (UpdateTokenType) script.getExternalType();
+            final int result = updateTokenType.getIdTokenLifetimeInSeconds(context);
+            log.trace("Finished 'getIdTokenLifetimeInSeconds' method, script name: {}, context: {}, result: {}", script.getName(), context, result);
+
+            context.throwWebApplicationExceptionIfSet();
+            return result;
+        } catch (WebApplicationException e) {
+            throw e;
+        } catch (Exception ex) {
+            log.error(ex.getMessage(), ex);
+            saveScriptError(script.getCustomScript(), ex);
+        }
+        return 0;
+    }
+
+    public int getIdTokenLifetimeInSeconds(ExternalUpdateTokenContext context) {
+        List<CustomScriptConfiguration> scripts = getScripts();
+        if (scripts.isEmpty()) {
+            return 0;
+        }
+        log.trace("Executing {} 'getIdTokenLifetimeInSeconds' scripts.", scripts.size());
+
+        for (CustomScriptConfiguration script : scripts) {
+            final int lifetime = getIdTokenLifetimeInSeconds(script, context);
+            if (lifetime > 0) {
+                log.trace("Finished 'getIdTokenLifetimeInSeconds' methods, lifetime: {}", lifetime);
+                return lifetime;
+            }
+        }
+        return 0;
+    }
+
+    public int getRefreshTokenLifetimeInSeconds(CustomScriptConfiguration script, ExternalUpdateTokenContext context) {
+        try {
+            log.trace("Executing python 'getRefreshTokenLifetimeInSeconds' method, script name: {}, context: {}", script.getName(), context);
+            context.setScript(script);
+
+            UpdateTokenType updateTokenType = (UpdateTokenType) script.getExternalType();
+            final int result = updateTokenType.getRefreshTokenLifetimeInSeconds(context);
+            log.trace("Finished 'getRefreshTokenLifetimeInSeconds' method, script name: {}, context: {}, result: {}", script.getName(), context, result);
+
+            context.throwWebApplicationExceptionIfSet();
+            return result;
+        } catch (WebApplicationException e) {
+            throw e;
+        } catch (Exception ex) {
+            log.error(ex.getMessage(), ex);
+            saveScriptError(script.getCustomScript(), ex);
+        }
+        return 0;
+    }
+
+    public int getRefreshTokenLifetimeInSeconds(ExternalUpdateTokenContext context) {
+        List<CustomScriptConfiguration> scripts = getScripts();
+        if (scripts.isEmpty()) {
+            return 0;
+        }
+        log.trace("Executing {} 'getRefreshTokenLifetimeInSeconds' scripts.", scripts.size());
+
+        for (CustomScriptConfiguration script : scripts) {
+            final int lifetime = getRefreshTokenLifetimeInSeconds(script, context);
+            if (lifetime > 0) {
+                log.trace("Finished 'getRefreshTokenLifetimeInSeconds' methods, lifetime: {}", lifetime);
+                return lifetime;
+            }
+        }
+        return 0;
+    }
+}
diff --git a/oxAuth/Server/src/main/java/org/gluu/oxauth/service/external/context/ConsentGatheringContext.java b/oxAuth/Server/src/main/java/org/gluu/oxauth/service/external/context/ConsentGatheringContext.java
new file mode 100644
index 00000000..0fccc808
--- /dev/null
+++ b/oxAuth/Server/src/main/java/org/gluu/oxauth/service/external/context/ConsentGatheringContext.java
@@ -0,0 +1,128 @@
+/*
+ * oxAuth is available under the MIT License (2008). See http://opensource.org/licenses/MIT for full text.
+ *
+ * Copyright (c) 2015, Gluu
+ */
+
+package org.gluu.oxauth.service.external.context;
+
+import java.util.HashMap;
+import java.util.Map;
+
+import javax.servlet.http.HttpServletRequest;
+import javax.servlet.http.HttpServletResponse;
+
+import org.gluu.jsf2.service.FacesService;
+import org.gluu.model.SimpleCustomProperty;
+import org.gluu.oxauth.authorize.ws.rs.ConsentGatheringSessionService;
+import org.gluu.oxauth.model.configuration.AppConfiguration;
+import org.gluu.oxauth.model.registration.Client;
+import org.gluu.oxauth.model.session.SessionId;
+import org.gluu.oxauth.service.common.UserService;
+import org.gluu.oxauth.model.common.User;
+
+/**
+ * @author Yuriy Movchan Date: 10/30/2017
+ */
+public class ConsentGatheringContext extends ExternalScriptContext {
+
+    private final ConsentGatheringSessionService sessionService;
+    private final UserService userService;
+    private final FacesService facesService;
+    private final AppConfiguration appConfiguration;
+
+    private final Map<String, SimpleCustomProperty> configurationAttributes;
+    private final SessionId session;
+    private final Map<String, String> pageAttributes;
+
+    public ConsentGatheringContext(Map<String, SimpleCustomProperty> configurationAttributes, HttpServletRequest httpRequest, HttpServletResponse httpResponse, SessionId session,
+                            Map<String, String> pageAttributes,
+                            ConsentGatheringSessionService sessionService, UserService userService, FacesService facesService, AppConfiguration appConfiguration) {
+        super(httpRequest, httpResponse);
+        this.configurationAttributes = configurationAttributes;
+        this.session = session;
+        this.pageAttributes = pageAttributes;
+        this.sessionService = sessionService;
+        this.userService = userService;
+        this.facesService = facesService;
+        this.appConfiguration = appConfiguration;
+    }
+
+    public Map<String, SimpleCustomProperty> getConfigurationAttributes() {
+        return configurationAttributes;
+    }
+
+    public User getUser(String... returnAttributes) {
+        return sessionService.getUser(httpRequest, returnAttributes);
+    }
+
+    public String getUserDn() {
+        return sessionService.getUserDn(httpRequest);
+    }
+
+    public Client getClient() {
+        return sessionService.getClient(session);
+    }
+
+    public Map<String, String> getConnectSessionAttributes() {
+        SessionId connectSession = sessionService.getConnectSession(httpRequest);
+        if (connectSession != null) {
+            return new HashMap<String, String>(connectSession.getSessionAttributes());
+        }
+        return new HashMap<String, String>();
+    }
+
+    public boolean isAuthenticated() {
+        return getUser() != null;
+    }
+
+    public Map<String, String> getPageAttributes() {
+        return pageAttributes;
+    }
+
+    public Map<String, String[]> getRequestParameters() {
+        return httpRequest.getParameterMap();
+    }
+
+    public int getStep() {
+        return sessionService.getStep(session);
+    }
+
+    public void setStep(int step) {
+        sessionService.setStep(step, session);
+    }
+
+    public void addSessionAttribute(String key, String value) {
+        session.getSessionAttributes().put(key, value);
+    }
+
+    public void removeSessionAttribute(String key) {
+        session.getSessionAttributes().remove(key);
+    }
+
+    public Map<String, String> getSessionAttributes() {
+        return session.getSessionAttributes();
+    }
+
+    /**
+     * Must not take any parameters
+     */
+    public void persist() {
+    	session.getSessionAttributes().putAll(this.pageAttributes);
+
+    	sessionService.persist(session);
+    }
+
+	public UserService getUserService() {
+		return userService;
+	}
+
+	public FacesService getFacesService() {
+		return facesService;
+	}
+
+	public AppConfiguration getAppConfiguration() {
+		return appConfiguration;
+	}
+
+}
diff --git a/oxAuth/Server/src/main/java/org/gluu/oxauth/service/external/context/DynamicClientRegistrationContext.java b/oxAuth/Server/src/main/java/org/gluu/oxauth/service/external/context/DynamicClientRegistrationContext.java
new file mode 100644
index 00000000..2f524afa
--- /dev/null
+++ b/oxAuth/Server/src/main/java/org/gluu/oxauth/service/external/context/DynamicClientRegistrationContext.java
@@ -0,0 +1,56 @@
+package org.gluu.oxauth.service.external.context;
+
+import org.gluu.model.custom.script.conf.CustomScriptConfiguration;
+import org.gluu.oxauth.model.jwt.Jwt;
+import org.json.JSONObject;
+
+import javax.servlet.http.HttpServletRequest;
+
+/**
+ * @author Yuriy Zabrovarnyy
+ */
+public class DynamicClientRegistrationContext extends ExternalScriptContext {
+
+    private CustomScriptConfiguration script;
+    private JSONObject registerRequest;
+    private Jwt softwareStatement;
+
+    public DynamicClientRegistrationContext(HttpServletRequest httpRequest, JSONObject registerRequest, CustomScriptConfiguration script) {
+        super(httpRequest);
+        this.script = script;
+        this.registerRequest = registerRequest;
+    }
+
+    public Jwt getSoftwareStatement() {
+        return softwareStatement;
+    }
+
+    public void setSoftwareStatement(Jwt softwareStatement) {
+        this.softwareStatement = softwareStatement;
+    }
+
+    public CustomScriptConfiguration getScript() {
+        return script;
+    }
+
+    public void setScript(CustomScriptConfiguration script) {
+        this.script = script;
+    }
+
+    public JSONObject getRegisterRequest() {
+        return registerRequest;
+    }
+
+    public void setRegisterRequest(JSONObject registerRequest) {
+        this.registerRequest = registerRequest;
+    }
+
+    @Override
+    public String toString() {
+        return "DynamicClientRegistrationContext{" +
+                "softwareStatement=" + softwareStatement +
+                "registerRequest=" + registerRequest +
+                "script=" + script +
+                "} " + super.toString();
+    }
+}
diff --git a/oxAuth/Server/src/main/java/org/gluu/oxauth/service/external/context/DynamicScopeExternalContext.java b/oxAuth/Server/src/main/java/org/gluu/oxauth/service/external/context/DynamicScopeExternalContext.java
new file mode 100644
index 00000000..7b0ed659
--- /dev/null
+++ b/oxAuth/Server/src/main/java/org/gluu/oxauth/service/external/context/DynamicScopeExternalContext.java
@@ -0,0 +1,68 @@
+/*
+ * oxAuth is available under the MIT License (2008). See http://opensource.org/licenses/MIT for full text.
+ *
+ * Copyright (c) 2014, Gluu
+ */
+
+package org.gluu.oxauth.service.external.context;
+
+import org.gluu.oxauth.model.common.IAuthorizationGrant;
+import org.gluu.oxauth.model.common.User;
+import org.gluu.oxauth.model.token.JsonWebResponse;
+import org.oxauth.persistence.model.Scope;
+
+import java.util.ArrayList;
+import java.util.List;
+
+/**
+ * Holds object required in dynamic scope custom scripts 
+ * 
+ * @author Yuriy Movchan  Date: 07/01/2015
+ */
+
+public class DynamicScopeExternalContext extends ExternalScriptContext {
+
+	private List<Scope> dynamicScopes;
+	private JsonWebResponse jsonWebResponse;
+	private IAuthorizationGrant authorizationGrant;
+
+    public DynamicScopeExternalContext(List<Scope> dynamicScopes, JsonWebResponse jsonWebResponse, IAuthorizationGrant authorizationGrant) {
+    	super(null);
+
+    	this.dynamicScopes = dynamicScopes;
+    	this.jsonWebResponse = jsonWebResponse;
+    	this.authorizationGrant = authorizationGrant;
+    }
+
+	/**
+	 * This method is used by scripts.
+	 * @return dynamic scopes as string
+	 *
+	 */
+	public List<String> getDynamicScopes() {
+		List<String> scopes = new ArrayList<String>();
+		if (dynamicScopes != null) {
+			for (Scope scope : dynamicScopes) {
+				scopes.add(scope.getId());
+			}
+		}
+		return scopes;
+	}
+
+	public List<Scope> getScopes() {
+		return dynamicScopes;
+	}
+
+	public JsonWebResponse getJsonWebResponse() {
+		return jsonWebResponse;
+	}
+
+	public IAuthorizationGrant getAuthorizationGrant() {
+		return authorizationGrant;
+	}
+
+	public User getUser() {
+		return authorizationGrant.getUser();
+	}
+
+}
diff --git a/oxAuth/Server/src/main/java/org/gluu/oxauth/service/external/context/EndSessionContext.java b/oxAuth/Server/src/main/java/org/gluu/oxauth/service/external/context/EndSessionContext.java
new file mode 100644
index 00000000..71eef38c
--- /dev/null
+++ b/oxAuth/Server/src/main/java/org/gluu/oxauth/service/external/context/EndSessionContext.java
@@ -0,0 +1,56 @@
+package org.gluu.oxauth.service.external.context;
+
+import com.google.common.collect.Sets;
+import org.gluu.model.custom.script.conf.CustomScriptConfiguration;
+import org.gluu.oxauth.model.session.SessionId;
+
+import javax.servlet.http.HttpServletRequest;
+import java.util.Set;
+
+/**
+ * @author Yuriy Zabrovarnyy
+ */
+public class EndSessionContext extends ExternalScriptContext {
+
+    private CustomScriptConfiguration script;
+    private final Set<String> frontchannelLogoutUris;
+    private final String postLogoutRedirectUri;
+    private SessionId sessionId;
+
+    public EndSessionContext(HttpServletRequest httpRequest, Set<String> frontchannelLogoutUris, String postLogoutRedirectUri, SessionId sessionId) {
+        super(httpRequest);
+        this.frontchannelLogoutUris = frontchannelLogoutUris;
+        this.postLogoutRedirectUri = postLogoutRedirectUri;
+        this.sessionId = sessionId;
+    }
+
+    public SessionId getSessionId() {
+        return sessionId;
+    }
+
+    public CustomScriptConfiguration getScript() {
+        return script;
+    }
+
+    public void setScript(CustomScriptConfiguration script) {
+        this.script = script;
+    }
+
+    public Set<String> getFrontchannelLogoutUris() {
+        return Sets.newHashSet(frontchannelLogoutUris);
+    }
+
+    public String getPostLogoutRedirectUri() {
+        return postLogoutRedirectUri;
+    }
+
+    @Override
+    public String toString() {
+        return "EndSessionContext{" +
+                "script=" + (script != null ? script.getName() : "") +
+                ", frontchannelLogoutUris=" + frontchannelLogoutUris +
+                ", postLogoutRedirectUri='" + postLogoutRedirectUri + '\'' +
+                ", sessionId='" + sessionId + '\'' +
+                "} " + super.toString();
+    }
+}
diff --git a/oxAuth/Server/src/main/java/org/gluu/oxauth/service/external/context/ExternalCibaEndUserNotificationContext.java b/oxAuth/Server/src/main/java/org/gluu/oxauth/service/external/context/ExternalCibaEndUserNotificationContext.java
new file mode 100644
index 00000000..8a5cbfd9
--- /dev/null
+++ b/oxAuth/Server/src/main/java/org/gluu/oxauth/service/external/context/ExternalCibaEndUserNotificationContext.java
@@ -0,0 +1,63 @@
+package org.gluu.oxauth.service.external.context;
+
+import org.gluu.oxauth.model.configuration.AppConfiguration;
+import org.gluu.oxauth.service.ciba.CibaEncryptionService;
+
+/**
+ * @author Milton BO
+ */
+public class ExternalCibaEndUserNotificationContext {
+
+    private final AppConfiguration appConfiguration;
+    private final CibaEncryptionService encryptionService;
+    private final String scope;
+    private final String acrValues;
+    private final String authReqId;
+    private final String deviceRegistrationToken;
+
+    public ExternalCibaEndUserNotificationContext(String scope, String acrValues, String authReqId,
+                                                  String deviceRegistrationToken, AppConfiguration appConfiguration,
+                                                  CibaEncryptionService encryptionService) {
+        this.appConfiguration = appConfiguration;
+        this.scope = scope;
+        this.acrValues = acrValues;
+        this.authReqId = authReqId;
+        this.deviceRegistrationToken = deviceRegistrationToken;
+        this.encryptionService = encryptionService;
+    }
+
+    public AppConfiguration getAppConfiguration() {
+        return appConfiguration;
+    }
+
+    public String getScope() {
+        return scope;
+    }
+
+    public String getAcrValues() {
+        return acrValues;
+    }
+
+    public String getAuthReqId() {
+        return authReqId;
+    }
+
+    public String getDeviceRegistrationToken() {
+        return deviceRegistrationToken;
+    }
+
+    public CibaEncryptionService getEncryptionService() {
+        return encryptionService;
+    }
+
+    @Override
+    public String toString() {
+        return "ExternalCibaEndUserNotificationContext{" +
+                ", scope='" + scope + '\'' +
+                ", acrValues='" + acrValues + '\'' +
+                ", authReqId='" + authReqId + '\'' +
+                ", deviceRegistrationToken='" + deviceRegistrationToken + '\'' +
+                '}';
+    }
+
+}
diff --git a/oxAuth/Server/src/main/java/org/gluu/oxauth/service/external/context/ExternalIntrospectionContext.java b/oxAuth/Server/src/main/java/org/gluu/oxauth/service/external/context/ExternalIntrospectionContext.java
new file mode 100644
index 00000000..b3fa0faf
--- /dev/null
+++ b/oxAuth/Server/src/main/java/org/gluu/oxauth/service/external/context/ExternalIntrospectionContext.java
@@ -0,0 +1,82 @@
+package org.gluu.oxauth.service.external.context;
+
+import org.gluu.model.custom.script.conf.CustomScriptConfiguration;
+import org.gluu.oxauth.model.common.AuthorizationGrant;
+import org.gluu.oxauth.model.common.User;
+import org.gluu.oxauth.model.configuration.AppConfiguration;
+import org.gluu.oxauth.model.jwt.Jwt;
+import org.gluu.oxauth.service.AttributeService;
+
+import javax.servlet.http.HttpServletRequest;
+import javax.servlet.http.HttpServletResponse;
+
+/**
+ * @author Yuriy Zabrovarnyy
+ */
+public class ExternalIntrospectionContext extends ExternalScriptContext {
+
+    private final AuthorizationGrant tokenGrant;
+    private final AppConfiguration appConfiguration;
+    private final AttributeService attributeService;
+
+    private CustomScriptConfiguration script;
+    private Jwt accessTokenAsJwt;
+    private boolean tranferIntrospectionPropertiesIntoJwtClaims = true;
+    private AuthorizationGrant grantOfIntrospectionToken;
+
+    public ExternalIntrospectionContext(AuthorizationGrant tokenGrant, HttpServletRequest httpRequest, HttpServletResponse httpResponse,
+                                        AppConfiguration appConfiguration, AttributeService attributeService) {
+        super(httpRequest, httpResponse);
+        this.tokenGrant = tokenGrant;
+        this.appConfiguration = appConfiguration;
+        this.attributeService = attributeService;
+    }
+
+    public AuthorizationGrant getTokenGrant() {
+        return tokenGrant;
+    }
+
+    public AppConfiguration getAppConfiguration() {
+        return appConfiguration;
+    }
+
+    public AttributeService getAttributeService() {
+        return attributeService;
+    }
+
+    public CustomScriptConfiguration getScript() {
+        return script;
+    }
+
+    public void setScript(CustomScriptConfiguration script) {
+        this.script = script;
+    }
+
+    public Jwt getAccessTokenAsJwt() {
+        return accessTokenAsJwt;
+    }
+
+    public void setAccessTokenAsJwt(Jwt accessTokenAsJwt) {
+        this.accessTokenAsJwt = accessTokenAsJwt;
+    }
+
+    public boolean isTranferIntrospectionPropertiesIntoJwtClaims() {
+        return tranferIntrospectionPropertiesIntoJwtClaims;
+    }
+
+    public void setTranferIntrospectionPropertiesIntoJwtClaims(boolean tranferIntrospectionPropertiesIntoJwtClaims) {
+        this.tranferIntrospectionPropertiesIntoJwtClaims = tranferIntrospectionPropertiesIntoJwtClaims;
+    }
+
+    public AuthorizationGrant getGrantOfIntrospectionToken() {
+        return grantOfIntrospectionToken;
+    }
+
+    public void setGrantOfIntrospectionToken(AuthorizationGrant grantOfIntrospectionToken) {
+        this.grantOfIntrospectionToken = grantOfIntrospectionToken;
+    }
+
+    public User getUser() {
+        return grantOfIntrospectionToken != null ? grantOfIntrospectionToken.getUser() : null;
+    }
+}
diff --git a/oxAuth/Server/src/main/java/org/gluu/oxauth/service/external/context/ExternalPostAuthnContext.java b/oxAuth/Server/src/main/java/org/gluu/oxauth/service/external/context/ExternalPostAuthnContext.java
new file mode 100644
index 00000000..c9852e49
--- /dev/null
+++ b/oxAuth/Server/src/main/java/org/gluu/oxauth/service/external/context/ExternalPostAuthnContext.java
@@ -0,0 +1,49 @@
+package org.gluu.oxauth.service.external.context;
+
+import org.gluu.model.custom.script.conf.CustomScriptConfiguration;
+import org.gluu.oxauth.model.registration.Client;
+import org.gluu.oxauth.model.session.SessionId;
+
+import javax.servlet.http.HttpServletRequest;
+import javax.servlet.http.HttpServletResponse;
+
+/**
+ * @author Yuriy Zabrovarnyy
+ */
+public class ExternalPostAuthnContext extends ExternalScriptContext {
+
+    private final Client client;
+    private final SessionId session;
+    private CustomScriptConfiguration script;
+
+    public ExternalPostAuthnContext(Client client, SessionId session, HttpServletRequest httpRequest, HttpServletResponse httpResponse) {
+        super(httpRequest, httpResponse);
+        this.client = client;
+        this.session = session;
+    }
+
+    public CustomScriptConfiguration getScript() {
+        return script;
+    }
+
+    public void setScript(CustomScriptConfiguration script) {
+        this.script = script;
+    }
+
+    public Client getClient() {
+        return client;
+    }
+
+    public SessionId getSession() {
+        return session;
+    }
+
+    @Override
+    public String toString() {
+        return "ExternalPostAuthnContext{" +
+                "client=" + client +
+                ", session=" + (session != null ? session.getId() : "") +
+                ", script=" + script +
+                "} " + super.toString();
+    }
+}
diff --git a/oxAuth/Server/src/main/java/org/gluu/oxauth/service/external/context/ExternalResourceOwnerPasswordCredentialsContext.java b/oxAuth/Server/src/main/java/org/gluu/oxauth/service/external/context/ExternalResourceOwnerPasswordCredentialsContext.java
new file mode 100644
index 00000000..8cfa436f
--- /dev/null
+++ b/oxAuth/Server/src/main/java/org/gluu/oxauth/service/external/context/ExternalResourceOwnerPasswordCredentialsContext.java
@@ -0,0 +1,67 @@
+package org.gluu.oxauth.service.external.context;
+
+import org.gluu.model.custom.script.conf.CustomScriptConfiguration;
+import org.gluu.oxauth.model.configuration.AppConfiguration;
+import org.gluu.oxauth.service.AttributeService;
+import org.gluu.oxauth.service.common.UserService;
+import org.gluu.oxauth.model.common.User;
+
+import javax.servlet.http.HttpServletRequest;
+import javax.servlet.http.HttpServletResponse;
+
+/**
+ * @author Yuriy Zabrovarnyy
+ */
+public class ExternalResourceOwnerPasswordCredentialsContext extends ExternalScriptContext {
+
+    private final AppConfiguration appConfiguration;
+    private final AttributeService attributeService;
+    private final UserService userService;
+
+    private User user;
+    private CustomScriptConfiguration script;
+
+    public ExternalResourceOwnerPasswordCredentialsContext(HttpServletRequest httpRequest, HttpServletResponse httpResponse,
+                                                           AppConfiguration appConfiguration, AttributeService attributeService, UserService userService) {
+        super(httpRequest, httpResponse);
+        this.appConfiguration = appConfiguration;
+        this.attributeService = attributeService;
+        this.userService = userService;
+    }
+
+    public void setUser(User user) {
+        this.user = user;
+    }
+
+    public AppConfiguration getAppConfiguration() {
+        return appConfiguration;
+    }
+
+    public AttributeService getAttributeService() {
+        return attributeService;
+    }
+
+    public UserService getUserService() {
+        return userService;
+    }
+
+    public User getUser() {
+        return user;
+    }
+
+    public CustomScriptConfiguration getScript() {
+        return script;
+    }
+
+    public void setScript(CustomScriptConfiguration script) {
+        this.script = script;
+    }
+
+    @Override
+    public String toString() {
+        return "ExternalResourceOwnerPasswordCredentialsContext{" +
+                "user=" + user +
+                "script=" + script +
+                "} " + super.toString();
+    }
+}
diff --git a/oxAuth/Server/src/main/java/org/gluu/oxauth/service/external/context/ExternalScriptContext.java b/oxAuth/Server/src/main/java/org/gluu/oxauth/service/external/context/ExternalScriptContext.java
new file mode 100644
index 00000000..cae07b12
--- /dev/null
+++ b/oxAuth/Server/src/main/java/org/gluu/oxauth/service/external/context/ExternalScriptContext.java
@@ -0,0 +1,105 @@
+/*
+ * oxAuth is available under the MIT License (2008). See http://opensource.org/licenses/MIT for full text.
+ *
+ * Copyright (c) 2014, Gluu
+ */
+
+package org.gluu.oxauth.service.external.context;
+
+import org.apache.commons.net.util.SubnetUtils;
+import org.gluu.oxauth.model.util.Util;
+import org.gluu.oxauth.util.ServerUtil;
+import org.gluu.persist.PersistenceEntryManager;
+import org.gluu.persist.exception.EntryPersistenceException;
+import org.gluu.persist.model.base.CustomEntry;
+import org.slf4j.Logger;
+import org.slf4j.LoggerFactory;
+
+import javax.servlet.http.HttpServletRequest;
+import javax.servlet.http.HttpServletResponse;
+import javax.ws.rs.WebApplicationException;
+import javax.ws.rs.core.MediaType;
+import javax.ws.rs.core.Response;
+
+/**
+ * Holds object required in custom scripts
+ *
+ * @author Yuriy Movchan  Date: 07/01/2015
+ */
+
+public class ExternalScriptContext extends org.gluu.service.external.context.ExternalScriptContext {
+
+    private static final Logger log = LoggerFactory.getLogger(ExternalScriptContext.class);
+
+    private final PersistenceEntryManager ldapEntryManager;
+
+    private WebApplicationException webApplicationException;
+
+    public ExternalScriptContext(HttpServletRequest httpRequest) {
+        this(httpRequest, null);
+    }
+
+    public ExternalScriptContext(HttpServletRequest httpRequest, HttpServletResponse httpResponse) {
+    	super(httpRequest, httpResponse);
+        this.ldapEntryManager = ServerUtil.getLdapManager();
+    }
+
+    public PersistenceEntryManager getPersistenceEntryManager() {
+        return ldapEntryManager;
+    }
+
+    public boolean isInNetwork(String cidrNotation) {
+        final String ip = getIpAddress();
+        if (Util.allNotBlank(ip, cidrNotation)) {
+            final SubnetUtils utils = new SubnetUtils(cidrNotation);
+            return utils.getInfo().isInRange(ip);
+        }
+        return false;
+    }
+
+    protected CustomEntry getEntryByDn(String dn, String... ldapReturnAttributes) {
+        try {
+            return ldapEntryManager.find(dn, CustomEntry.class, ldapReturnAttributes);
+        } catch (EntryPersistenceException epe) {
+            log.error("Failed to find entry '{}'", dn);
+        }
+
+        return null;
+    }
+
+    protected String getEntryAttributeValue(String dn, String attributeName) {
+        final CustomEntry entry = getEntryByDn(dn, attributeName);
+        if (entry != null) {
+            final String attributeValue = entry.getCustomAttributeValue(attributeName);
+            return attributeValue;
+        }
+
+        return "";
+    }
+
+    public WebApplicationException getWebApplicationException() {
+        return webApplicationException;
+    }
+
+    public void setWebApplicationException(WebApplicationException webApplicationException) {
+        this.webApplicationException = webApplicationException;
+    }
+
+    public WebApplicationException createWebApplicationException(Response response) {
+        return new WebApplicationException(response);
+    }
+
+    public WebApplicationException createWebApplicationException(int status, String entity) {
+        this.webApplicationException = new WebApplicationException(Response
+                .status(status)
+                .entity(entity)
+                .type(MediaType.APPLICATION_JSON_TYPE)
+                .build());
+        return this.webApplicationException;
+    }
+
+    public void throwWebApplicationExceptionIfSet() {
+        if (webApplicationException != null)
+            throw webApplicationException;
+    }
+}
diff --git a/oxAuth/Server/src/main/java/org/gluu/oxauth/service/external/context/ExternalUmaRptClaimsContext.java b/oxAuth/Server/src/main/java/org/gluu/oxauth/service/external/context/ExternalUmaRptClaimsContext.java
new file mode 100644
index 00000000..cda31491
--- /dev/null
+++ b/oxAuth/Server/src/main/java/org/gluu/oxauth/service/external/context/ExternalUmaRptClaimsContext.java
@@ -0,0 +1,56 @@
+package org.gluu.oxauth.service.external.context;
+
+import org.gluu.model.custom.script.conf.CustomScriptConfiguration;
+import org.gluu.oxauth.model.common.ExecutionContext;
+import org.gluu.oxauth.model.registration.Client;
+
+import javax.servlet.http.HttpServletRequest;
+import javax.servlet.http.HttpServletResponse;
+
+/**
+ * @author Yuriy Zabrovarnyy
+ */
+public class ExternalUmaRptClaimsContext extends ExternalScriptContext {
+
+    private final Client client;
+    private CustomScriptConfiguration script;
+    private boolean isTranferPropertiesIntoJwtClaims = true;
+
+    public ExternalUmaRptClaimsContext(Client client, HttpServletRequest httpRequest, HttpServletResponse httpResponse) {
+        super(httpRequest, httpResponse);
+        this.client = client;
+    }
+
+    public ExternalUmaRptClaimsContext(ExecutionContext executionContext) {
+        this(executionContext.getClient(), executionContext.getHttpRequest(), executionContext.getHttpResponse());
+    }
+
+    public Client getClient() {
+        return client;
+    }
+
+    public CustomScriptConfiguration getScript() {
+        return script;
+    }
+
+    public void setScript(CustomScriptConfiguration script) {
+        this.script = script;
+    }
+
+    public boolean isTranferPropertiesIntoJwtClaims() {
+        return isTranferPropertiesIntoJwtClaims;
+    }
+
+    public void setTranferPropertiesIntoJwtClaims(boolean tranferPropertiesIntoJwtClaims) {
+        isTranferPropertiesIntoJwtClaims = tranferPropertiesIntoJwtClaims;
+    }
+
+    @Override
+    public String toString() {
+        return "ExternalUmaRptClaimsContext{" +
+                "client=" + client +
+                ", script=" + script +
+                ", isTranferPropertiesIntoJwtClaims=" + isTranferPropertiesIntoJwtClaims +
+                "} " + super.toString();
+    }
+}
diff --git a/oxAuth/Server/src/main/java/org/gluu/oxauth/service/external/context/ExternalUpdateTokenContext.java b/oxAuth/Server/src/main/java/org/gluu/oxauth/service/external/context/ExternalUpdateTokenContext.java
new file mode 100644
index 00000000..608a64b5
--- /dev/null
+++ b/oxAuth/Server/src/main/java/org/gluu/oxauth/service/external/context/ExternalUpdateTokenContext.java
@@ -0,0 +1,131 @@
+/*
+ * oxAuth is available under the MIT License (2008). See http://opensource.org/licenses/MIT for full text.
+ *
+ * Copyright (c) 2021, Gluu
+ */
+
+package org.gluu.oxauth.service.external.context;
+
+import com.google.common.collect.Lists;
+import org.gluu.model.custom.script.conf.CustomScriptConfiguration;
+import org.gluu.oxauth.model.common.AccessToken;
+import org.gluu.oxauth.model.common.AuthorizationGrant;
+import org.gluu.oxauth.model.common.ExecutionContext;
+import org.gluu.oxauth.model.configuration.AppConfiguration;
+import org.gluu.oxauth.model.jwt.Jwt;
+import org.gluu.oxauth.model.jwt.JwtClaims;
+import org.gluu.oxauth.model.jwt.JwtHeader;
+import org.gluu.oxauth.model.registration.Client;
+import org.gluu.oxauth.model.token.JwtSigner;
+import org.gluu.oxauth.service.AttributeService;
+
+import javax.servlet.http.HttpServletRequest;
+import java.util.Set;
+
+/**
+ * @author Yuriy Movchan
+ */
+public class ExternalUpdateTokenContext extends ExternalScriptContext {
+
+	private final Client client;
+	private final AuthorizationGrant grant;
+
+	private ExecutionContext executionContext;
+	private CustomScriptConfiguration script;
+    private JwtSigner jwtSigner;
+
+	private final AppConfiguration appConfiguration;
+	private final AttributeService attributeService;
+
+	public ExternalUpdateTokenContext(HttpServletRequest httpRequest, AuthorizationGrant grant,
+			Client client, AppConfiguration appConfiguration, AttributeService attributeService) {
+		super(httpRequest);
+		this.client = client;
+		this.grant = grant;
+		this.appConfiguration = appConfiguration;
+		this.attributeService = attributeService;
+	}
+
+    public static ExternalUpdateTokenContext of(ExecutionContext executionContext) {
+        return of(executionContext, null);
+    }
+
+    public static ExternalUpdateTokenContext of(ExecutionContext executionContext, JwtSigner jwtSigner) {
+        ExternalUpdateTokenContext context = new ExternalUpdateTokenContext(executionContext.getHttpRequest(), executionContext.getGrant(), executionContext.getClient(), executionContext.getAppConfiguration(), executionContext.getAttributeService());
+        context.setExecutionContext(executionContext);
+        context.setJwtSigner(jwtSigner);
+        return context;
+    }
+
+    // Usually expected to be called in : "def modifyAccessToken(self, accessToken, context):"
+    public void overwriteAccessTokenScopes(AccessToken accessToken, Set<String> newScopes) {
+        if (grant == null) {
+            return;
+        }
+
+        grant.setScopes(newScopes);
+
+        final Jwt jwt = getJwt();
+        if (jwt != null) {
+            jwt.getClaims().setClaim("scope", Lists.newArrayList(newScopes));
+        }
+    }
+
+    public JwtClaims getClaims() {
+        Jwt jwt = getJwt();
+        return jwt != null ? jwt.getClaims() : null;
+    }
+
+    public JwtHeader getHeader() {
+        Jwt jwt = getJwt();
+        return jwt != null ? jwt.getHeader() : null;
+    }
+
+    public Jwt getJwt() {
+        return jwtSigner != null ? jwtSigner.getJwt() : null;
+    }
+
+    private boolean isValidJwt(String jwt) {
+        return Jwt.parseSilently(jwt) != null;
+    }
+
+	public CustomScriptConfiguration getScript() {
+		return script;
+	}
+
+	public void setScript(CustomScriptConfiguration script) {
+		this.script = script;
+	}
+
+	public Client getClient() {
+		return client;
+	}
+
+	public AuthorizationGrant getGrant() {
+		return grant;
+	}
+
+	public AppConfiguration getAppConfiguration() {
+		return appConfiguration;
+	}
+
+	public AttributeService getAttributeService() {
+		return attributeService;
+	}
+
+    public ExecutionContext getExecutionContext() {
+        return executionContext;
+    }
+
+    public void setExecutionContext(ExecutionContext executionContext) {
+        this.executionContext = executionContext;
+    }
+
+    public JwtSigner getJwtSigner() {
+        return jwtSigner;
+    }
+
+    public void setJwtSigner(JwtSigner jwtSigner) {
+        this.jwtSigner = jwtSigner;
+    }
+}
diff --git a/oxAuth/Server/src/main/java/org/gluu/oxauth/service/external/context/RevokeTokenContext.java b/oxAuth/Server/src/main/java/org/gluu/oxauth/service/external/context/RevokeTokenContext.java
new file mode 100644
index 00000000..0fd74bd6
--- /dev/null
+++ b/oxAuth/Server/src/main/java/org/gluu/oxauth/service/external/context/RevokeTokenContext.java
@@ -0,0 +1,54 @@
+package org.gluu.oxauth.service.external.context;
+
+import org.gluu.model.custom.script.conf.CustomScriptConfiguration;
+import org.gluu.oxauth.model.common.AuthorizationGrant;
+import org.gluu.oxauth.model.registration.Client;
+
+import javax.servlet.http.HttpServletRequest;
+import javax.ws.rs.core.Response;
+
+/**
+ * @author Yuriy Zabrovarnyy
+ */
+public class RevokeTokenContext extends ExternalScriptContext {
+
+    private final Client client;
+    private final AuthorizationGrant grant;
+    private final Response.ResponseBuilder responseBuilder;
+    private CustomScriptConfiguration script;
+
+    public RevokeTokenContext(HttpServletRequest httpRequest, Client client, AuthorizationGrant grant, Response.ResponseBuilder responseBuilder) {
+        super(httpRequest);
+        this.client = client;
+        this.grant = grant;
+        this.responseBuilder = responseBuilder;
+    }
+
+    public Client getClient() {
+        return client;
+    }
+
+    public AuthorizationGrant getGrant() {
+        return grant;
+    }
+
+    public Response.ResponseBuilder getResponseBuilder() {
+        return responseBuilder;
+    }
+
+    public CustomScriptConfiguration getScript() {
+        return script;
+    }
+
+    public void setScript(CustomScriptConfiguration script) {
+        this.script = script;
+    }
+
+    @Override
+    public String toString() {
+        return "RevokeTokenContext{" +
+                "clientId=" + (client != null ? client.getClientId() : "") +
+                ", script=" + (script != null ? script.getName() : "") +
+                "} " + super.toString();
+    }
+}
diff --git a/oxAuth/Server/src/main/java/org/gluu/oxauth/service/external/context/SpontaneousScopeExternalContext.java b/oxAuth/Server/src/main/java/org/gluu/oxauth/service/external/context/SpontaneousScopeExternalContext.java
new file mode 100644
index 00000000..9d7bc6b8
--- /dev/null
+++ b/oxAuth/Server/src/main/java/org/gluu/oxauth/service/external/context/SpontaneousScopeExternalContext.java
@@ -0,0 +1,57 @@
+package org.gluu.oxauth.service.external.context;
+
+import org.gluu.oxauth.model.registration.Client;
+import org.gluu.oxauth.service.SpontaneousScopeService;
+
+import java.util.Set;
+
+public class SpontaneousScopeExternalContext extends ExternalScriptContext {
+
+    private Client client;
+    private String scopeRequested;
+    private Set<String> grantedScopes;
+    private SpontaneousScopeService spontaneousScopeService;
+    private boolean allowSpontaneousScopePersistence = true;
+
+    public SpontaneousScopeExternalContext(Client client, String scopeRequested, Set<String> grantedScopes, SpontaneousScopeService spontaneousScopeService) {
+        super(null, null);
+        this.client = client;
+        this.scopeRequested = scopeRequested;
+        this.grantedScopes = grantedScopes;
+        this.spontaneousScopeService = spontaneousScopeService;
+    }
+
+    public Client getClient() {
+        return client;
+    }
+
+    public String getScopeRequested() {
+        return scopeRequested;
+    }
+
+    public Set<String> getGrantedScopes() {
+        return grantedScopes;
+    }
+
+    public SpontaneousScopeService getSpontaneousScopeService() {
+        return spontaneousScopeService;
+    }
+
+    public boolean isAllowSpontaneousScopePersistence() {
+        return allowSpontaneousScopePersistence;
+    }
+
+    public void setAllowSpontaneousScopePersistence(boolean allowSpontaneousScopePersistence) {
+        this.allowSpontaneousScopePersistence = allowSpontaneousScopePersistence;
+    }
+
+    @Override
+    public String toString() {
+        return "SpontaneousScopeExternalContext{" +
+                "scopeRequested='" + scopeRequested + '\'' +
+                ", grantedScopes=" + grantedScopes +
+                ", contextVariables=" + super.getContextVariables() +
+                ", allowSpontaneousScopePersistence=" + allowSpontaneousScopePersistence +
+                '}';
+    }
+}
diff --git a/oxAuth/Server/src/main/java/org/gluu/oxauth/service/external/internal/InternalDefaultPersonAuthenticationType.java b/oxAuth/Server/src/main/java/org/gluu/oxauth/service/external/internal/InternalDefaultPersonAuthenticationType.java
new file mode 100644
index 00000000..26347759
--- /dev/null
+++ b/oxAuth/Server/src/main/java/org/gluu/oxauth/service/external/internal/InternalDefaultPersonAuthenticationType.java
@@ -0,0 +1,59 @@
+package org.gluu.oxauth.service.external.internal;
+
+import java.util.Map;
+
+import javax.inject.Inject;
+
+import org.gluu.model.SimpleCustomProperty;
+import org.gluu.model.custom.script.type.auth.DummyPersonAuthenticationType;
+import org.gluu.model.security.Credentials;
+import org.gluu.oxauth.service.AuthenticationService;
+
+import javax.enterprise.context.ApplicationScoped;
+
+/**
+ * Wrapper to call internal authentication method
+ *
+ * @author Yuriy Movchan Date: 06/04/2015
+ */
+@ApplicationScoped
+public class InternalDefaultPersonAuthenticationType extends DummyPersonAuthenticationType {
+
+	@Inject
+	private AuthenticationService authenticationService;
+
+	@Inject
+	private Credentials credentials;
+
+	public InternalDefaultPersonAuthenticationType() {
+	}
+
+	@Override
+	public boolean authenticate(Map<String, SimpleCustomProperty> configurationAttributes, Map<String, String[]> requestParameters, int step) {
+		if (!credentials.isSet()) {
+			return false;
+		}
+
+		return authenticationService.authenticate(credentials.getUsername(), credentials.getPassword());
+	}
+
+	@Override
+	public boolean prepareForStep(Map<String, SimpleCustomProperty> configurationAttributes, Map<String, String[]> requestParameters, int step) {
+		if (step == 1) {
+			return true;
+		}
+		
+		return super.prepareForStep(configurationAttributes, requestParameters, step);
+	}
+
+	@Override
+	public int getCountAuthenticationSteps(Map<String, SimpleCustomProperty> configurationAttributes) {
+		return 1;
+	}
+
+	@Override
+	public boolean logout(Map<String, SimpleCustomProperty> configurationAttributes, Map<String, String[]> requestParameters) {
+		return true;
+	}
+
+}
diff --git a/oxAuth/Server/src/main/java/org/gluu/oxauth/service/external/session/SessionEvent.java b/oxAuth/Server/src/main/java/org/gluu/oxauth/service/external/session/SessionEvent.java
new file mode 100644
index 00000000..0bb32e96
--- /dev/null
+++ b/oxAuth/Server/src/main/java/org/gluu/oxauth/service/external/session/SessionEvent.java
@@ -0,0 +1,66 @@
+package org.gluu.oxauth.service.external.session;
+
+import org.gluu.model.custom.script.conf.CustomScriptConfiguration;
+import org.gluu.oxauth.model.session.SessionId;
+
+import javax.servlet.http.HttpServletRequest;
+import javax.servlet.http.HttpServletResponse;
+
+/**
+ * @author Yuriy Zabrovarnyy
+ */
+public class SessionEvent {
+
+    private final SessionEventType type;
+    private final SessionId sessionId;
+    private CustomScriptConfiguration scriptConfiguration;
+    private HttpServletRequest httpRequest;
+    private HttpServletResponse httpResponse;
+
+    public SessionEvent(SessionEventType type, SessionId sessionId) {
+        this.type = type;
+        this.sessionId = sessionId;
+    }
+
+    public SessionEventType getType() {
+        return type;
+    }
+
+    public SessionId getSessionId() {
+        return sessionId;
+    }
+
+    public CustomScriptConfiguration getScriptConfiguration() {
+        return scriptConfiguration;
+    }
+
+    public void setScriptConfiguration(CustomScriptConfiguration scriptConfiguration) {
+        this.scriptConfiguration = scriptConfiguration;
+    }
+
+    public HttpServletRequest getHttpRequest() {
+        return httpRequest;
+    }
+
+    public SessionEvent setHttpRequest(HttpServletRequest httpRequest) {
+        this.httpRequest = httpRequest;
+        return this;
+    }
+
+    public HttpServletResponse getHttpResponse() {
+        return httpResponse;
+    }
+
+    public SessionEvent setHttpResponse(HttpServletResponse httpResponse) {
+        this.httpResponse = httpResponse;
+        return this;
+    }
+
+    @Override
+    public String toString() {
+        return "SessionEvent{" +
+                "type=" + type +
+                ", sessionId=" + sessionId.getId() +
+                '}';
+    }
+}
diff --git a/oxAuth/Server/src/main/java/org/gluu/oxauth/service/external/session/SessionEventType.java b/oxAuth/Server/src/main/java/org/gluu/oxauth/service/external/session/SessionEventType.java
new file mode 100644
index 00000000..dcbef411
--- /dev/null
+++ b/oxAuth/Server/src/main/java/org/gluu/oxauth/service/external/session/SessionEventType.java
@@ -0,0 +1,11 @@
+package org.gluu.oxauth.service.external.session;
+
+/**
+ * @author Yuriy Zabrovarnyy
+ */
+public enum SessionEventType {
+    AUTHENTICATED,
+    UNAUTHENTICATED,
+    UPDATED,
+    GONE // it can be time out, or expired or ended by /end_session endpoint
+}
\ No newline at end of file
diff --git a/oxAuth/Server/src/main/java/org/gluu/oxauth/service/fido/u2f/ApplicationService.java b/oxAuth/Server/src/main/java/org/gluu/oxauth/service/fido/u2f/ApplicationService.java
new file mode 100644
index 00000000..2158f053
--- /dev/null
+++ b/oxAuth/Server/src/main/java/org/gluu/oxauth/service/fido/u2f/ApplicationService.java
@@ -0,0 +1,77 @@
+/*
+ * oxAuth is available under the MIT License (2008). See http://opensource.org/licenses/MIT for full text.
+ *
+ * Copyright (c) 2014, Gluu
+ */
+
+package org.gluu.oxauth.service.fido.u2f;
+
+import java.net.URI;
+import java.net.URISyntaxException;
+
+import javax.enterprise.context.ApplicationScoped;
+
+import org.gluu.net.InetAddressUtility;
+import org.gluu.oxauth.exception.fido.u2f.BadConfigurationException;
+
+/**
+ * Provides operations with U2F applications
+ *
+ * @author Yuriy Movchan Date: 05/19/2015
+ */
+@ApplicationScoped
+public class ApplicationService {
+
+	private boolean validateApplication = true;
+
+	public boolean isValidateApplication() {
+		return validateApplication;
+	}
+
+	/**
+	 * Throws {@link BadConfigurationException} if the given App ID is found to
+	 * be incompatible with the U2F specification or any major U2F Client
+	 * implementation.
+	 *
+	 * @param appId
+	 *            the App ID to be validated
+	 */
+	public void checkIsValid(String appId) {
+		if (!appId.contains(":")) {
+			throw new BadConfigurationException("App ID does not look like a valid facet or URL. Web facets must start with 'https://'.");
+		}
+
+		if (appId.startsWith("http:")) {
+			throw new BadConfigurationException("HTTP is not supported for App IDs. Use HTTPS instead.");
+		}
+
+		if (appId.startsWith("https://")) {
+			URI url = checkValidUrl(appId);
+			checkPathIsNotSlash(url);
+//			checkNotIpAddress(url);
+		}
+	}
+
+	private void checkPathIsNotSlash(URI url) {
+		if ("/".equals(url.getPath())) {
+			throw new BadConfigurationException(
+					"The path of the URL set as App ID is '/'. This is probably not what you want -- remove the trailing slash of the App ID URL.");
+		}
+	}
+
+	private URI checkValidUrl(String appId) {
+		URI url = null;
+		try {
+			url = new URI(appId);
+		} catch (URISyntaxException e) {
+			throw new BadConfigurationException("App ID looks like a HTTPS URL, but has syntax errors.", e);
+		}
+		return url;
+	}
+
+	private void checkNotIpAddress(URI url) {
+		if (InetAddressUtility.isIpAddress(url.getAuthority()) || (url.getHost() != null && InetAddressUtility.isIpAddress(url.getHost()))) {
+			throw new BadConfigurationException("App ID must not be an IP-address, since it is not supported. Use a host name instead.");
+		}
+	}
+}
diff --git a/oxAuth/Server/src/main/java/org/gluu/oxauth/service/fido/u2f/AuthenticationService.java b/oxAuth/Server/src/main/java/org/gluu/oxauth/service/fido/u2f/AuthenticationService.java
new file mode 100644
index 00000000..280fb37b
--- /dev/null
+++ b/oxAuth/Server/src/main/java/org/gluu/oxauth/service/fido/u2f/AuthenticationService.java
@@ -0,0 +1,338 @@
+/*
+ * oxAuth is available under the MIT License (2008). See http://opensource.org/licenses/MIT for full text.
+ *
+ * Copyright (c) 2014, Gluu
+ */
+
+package org.gluu.oxauth.service.fido.u2f;
+
+import java.util.ArrayList;
+import java.util.Date;
+import java.util.GregorianCalendar;
+import java.util.List;
+import java.util.Set;
+import java.util.TimeZone;
+import java.util.UUID;
+
+import javax.enterprise.context.ApplicationScoped;
+import javax.enterprise.inject.Produces;
+import javax.inject.Inject;
+import javax.inject.Named;
+
+import org.apache.commons.codec.DecoderException;
+import org.apache.commons.codec.binary.Hex;
+import org.gluu.oxauth.crypto.random.ChallengeGenerator;
+import org.gluu.oxauth.crypto.signature.SHA256withECDSASignatureVerification;
+import org.gluu.oxauth.exception.fido.u2f.DeviceCompromisedException;
+import org.gluu.oxauth.exception.fido.u2f.InvalidKeyHandleDeviceException;
+import org.gluu.oxauth.exception.fido.u2f.NoEligableDevicesException;
+import org.gluu.oxauth.model.fido.u2f.AuthenticateRequestMessageLdap;
+import org.gluu.oxauth.model.fido.u2f.DeviceRegistration;
+import org.gluu.oxauth.model.fido.u2f.DeviceRegistrationResult;
+import org.gluu.oxauth.model.fido.u2f.exception.BadInputException;
+import org.gluu.oxauth.model.fido.u2f.message.RawAuthenticateResponse;
+import org.gluu.oxauth.model.fido.u2f.protocol.AuthenticateRequest;
+import org.gluu.oxauth.model.fido.u2f.protocol.AuthenticateRequestMessage;
+import org.gluu.oxauth.model.fido.u2f.protocol.AuthenticateResponse;
+import org.gluu.oxauth.model.fido.u2f.protocol.ClientData;
+import org.gluu.oxauth.model.fido.u2f.protocol.DeviceData;
+import org.gluu.oxauth.model.fido.u2f.protocol.DeviceNotificationConf;
+import org.gluu.oxauth.model.util.Base64Util;
+import org.gluu.oxauth.service.common.UserService;
+import org.gluu.oxauth.util.ServerUtil;
+import org.gluu.persist.PersistenceEntryManager;
+import org.gluu.persist.reflect.property.Setter;
+import org.gluu.persist.reflect.util.ReflectHelper;
+import org.gluu.search.filter.Filter;
+import org.gluu.util.StringHelper;
+import org.gluu.util.io.ByteDataInputStream;
+import org.gluu.util.security.SecurityProviderUtility;
+import org.slf4j.Logger;
+
+import com.fasterxml.jackson.core.JsonProcessingException;
+
+import org.gluu.oxauth.model.config.StaticConfiguration;
+
+/**
+ * Provides operations with U2F authentication request
+ *
+ * @author Yuriy Movchan
+ * @version August 9, 2017
+ */
+@ApplicationScoped
+@Named("u2fAuthenticationService")
+public class AuthenticationService extends RequestService {
+
+    @Inject
+    private Logger log;
+
+    @Inject
+    private PersistenceEntryManager ldapEntryManager;
+
+    @Inject
+    private ApplicationService applicationService;
+
+    @Inject
+    private RawAuthenticationService rawAuthenticationService;
+
+    @Inject
+    private ClientDataValidationService clientDataValidationService;
+
+    @Inject
+    private DeviceRegistrationService deviceRegistrationService;
+
+    @Inject
+    private UserService userService;
+
+    @Inject
+    @Named("randomChallengeGenerator")
+    private ChallengeGenerator challengeGenerator;
+
+    @Inject
+    private StaticConfiguration staticConfiguration;
+
+	@Produces @ApplicationScoped @Named("sha256withECDSASignatureVerification")
+    public SHA256withECDSASignatureVerification getBouncyCastleSignatureVerification() {
+        return new SHA256withECDSASignatureVerification();
+    }
+
+    public AuthenticateRequestMessage buildAuthenticateRequestMessage(String appId, String userInum) throws BadInputException, NoEligableDevicesException {
+        if (applicationService.isValidateApplication()) {
+            applicationService.checkIsValid(appId);
+        }
+
+        List<AuthenticateRequest> authenticateRequests = new ArrayList<AuthenticateRequest>();
+        byte[] challenge = challengeGenerator.generateChallenge();
+
+        List<DeviceRegistration> deviceRegistrations = deviceRegistrationService.findUserDeviceRegistrations(userInum, appId);
+        for (DeviceRegistration deviceRegistration : deviceRegistrations) {
+            if (!deviceRegistration.isCompromised()) {
+                AuthenticateRequest request;
+                try {
+                    request = startAuthentication(appId, deviceRegistration, challenge);
+                    authenticateRequests.add(request);
+                } catch (DeviceCompromisedException ex) {
+                    log.error("Faield to authenticate device", ex);
+                }
+            }
+        }
+
+        if (authenticateRequests.isEmpty()) {
+            if (deviceRegistrations.isEmpty()) {
+                throw new NoEligableDevicesException(deviceRegistrations, "No devices registrered");
+            } else {
+                throw new NoEligableDevicesException(deviceRegistrations, "All devices compromised");
+            }
+        }
+
+        return new AuthenticateRequestMessage(authenticateRequests);
+    }
+
+    public AuthenticateRequest startAuthentication(String appId, DeviceRegistration device) throws DeviceCompromisedException {
+        return startAuthentication(appId, device, challengeGenerator.generateChallenge());
+    }
+
+    public AuthenticateRequest startAuthentication(String appId, DeviceRegistration device, byte[] challenge) throws DeviceCompromisedException {
+        if (device.isCompromised()) {
+            throw new DeviceCompromisedException(device, "Device has been marked as compromised, cannot authenticate");
+        }
+
+        return new AuthenticateRequest(Base64Util.base64urlencode(challenge), appId, device.getKeyHandle());
+    }
+
+    public DeviceRegistrationResult finishAuthentication(AuthenticateRequestMessage requestMessage, AuthenticateResponse response, String userInum)
+            throws BadInputException, DeviceCompromisedException {
+        return finishAuthentication(requestMessage, response, userInum, null);
+    }
+
+    public DeviceRegistrationResult finishAuthentication(AuthenticateRequestMessage requestMessage, AuthenticateResponse response, String userInum, Set<String> facets)
+            throws BadInputException, DeviceCompromisedException {
+        List<DeviceRegistration> deviceRegistrations = deviceRegistrationService.findUserDeviceRegistrations(userInum, requestMessage.getAppId());
+
+        final AuthenticateRequest request = getAuthenticateRequest(requestMessage, response);
+
+        DeviceRegistration usedDeviceRegistration = null;
+        for (DeviceRegistration deviceRegistration : deviceRegistrations) {
+            if (StringHelper.equals(request.getKeyHandle(), deviceRegistration.getKeyHandle())) {
+                usedDeviceRegistration = deviceRegistration;
+                break;
+            }
+        }
+
+        if (usedDeviceRegistration == null) {
+            throw new BadInputException("Failed to find DeviceRegistration for the given AuthenticateRequest");
+        }
+
+        if (usedDeviceRegistration.isCompromised()) {
+            throw new DeviceCompromisedException(usedDeviceRegistration, "The device is marked as possibly compromised, and cannot be authenticated");
+        }
+
+        ClientData clientData = response.getClientData();
+        log.debug("Client data HEX '{}'", Hex.encodeHexString(response.getClientDataRaw().getBytes()));
+        log.debug("Signature data HEX '{}'", Hex.encodeHexString(response.getSignatureData().getBytes()));
+
+        clientDataValidationService.checkContent(clientData, RawAuthenticationService.SUPPORTED_AUTHENTICATE_TYPES, request.getChallenge(), facets);
+
+        RawAuthenticateResponse rawAuthenticateResponse = rawAuthenticationService.parseRawAuthenticateResponse(response.getSignatureData());
+        rawAuthenticationService.checkSignature(request.getAppId(), clientData, rawAuthenticateResponse,
+                Base64Util.base64urldecode(usedDeviceRegistration.getDeviceRegistrationConfiguration().getPublicKey()));
+        rawAuthenticateResponse.checkUserPresence();
+
+        log.debug("Counter in finish authentication request'{}', counter in database '{}'", rawAuthenticateResponse.getCounter(), usedDeviceRegistration.getCounter());
+        usedDeviceRegistration.checkAndUpdateCounter(rawAuthenticateResponse.getCounter());
+
+        String responseDeviceData = response.getDeviceData();
+        if (StringHelper.isNotEmpty(responseDeviceData)) {
+            try {
+                String responseDeviceDataDecoded = new String(Base64Util.base64urldecode(responseDeviceData));
+                DeviceData deviceData = ServerUtil.jsonMapperWithWrapRoot().readValue(responseDeviceDataDecoded, DeviceData.class);
+	            
+                boolean pushTokenUpdated = !StringHelper.equals(usedDeviceRegistration.getDeviceData().getPushToken(), deviceData.getPushToken());
+	            if (pushTokenUpdated) {
+	            	prepareForPushTokenChange(usedDeviceRegistration);
+	            }
+            	usedDeviceRegistration.setDeviceData(deviceData);
+            } catch (Exception ex) {
+                throw new BadInputException(String.format("Device data is invalid: %s", responseDeviceData), ex);
+            }
+        }
+
+        usedDeviceRegistration.setLastAccessTime(new Date());
+
+        deviceRegistrationService.updateDeviceRegistration(userInum, usedDeviceRegistration);
+
+        DeviceRegistrationResult.Status status = DeviceRegistrationResult.Status.APPROVED;
+
+        boolean approved = StringHelper.equals(RawAuthenticationService.AUTHENTICATE_GET_TYPE, clientData.getTyp());
+        if (!approved) {
+            status = DeviceRegistrationResult.Status.CANCELED;
+            log.debug("Authentication request with keyHandle '{}' was canceled", response.getKeyHandle());
+        }
+
+        return new DeviceRegistrationResult(usedDeviceRegistration, status);
+    }
+
+    private void prepareForPushTokenChange(DeviceRegistration deviceRegistration) {
+		String deviceNotificationConfString = deviceRegistration.getDeviceNotificationConf();
+		if (deviceNotificationConfString == null) {
+			return;
+		}
+        
+		DeviceNotificationConf deviceNotificationConf = null;
+		try {
+            deviceNotificationConf = ServerUtil.jsonMapperWithWrapRoot().readValue(deviceNotificationConfString, DeviceNotificationConf.class);
+        } catch (Exception ex) {
+            log.error("Failed to parse device notification configuration '{}'", deviceNotificationConfString);
+        }
+
+		if (deviceNotificationConf == null) {
+			return;
+		}
+        
+		String snsEndpointArn = deviceNotificationConf.getSnsEndpointArn();
+		if (StringHelper.isEmpty(snsEndpointArn)) {
+			return;
+		}
+		
+		deviceNotificationConf.setSnsEndpointArn(null);
+		deviceNotificationConf.setSnsEndpointArnRemove(snsEndpointArn);
+		List<String> snsEndpointArnHistory = deviceNotificationConf.getSnsEndpointArnHistory();
+		if (snsEndpointArnHistory == null) {
+			snsEndpointArnHistory = new ArrayList<>();
+			deviceNotificationConf.setSnsEndpointArnHistory(snsEndpointArnHistory);
+		}
+		
+		snsEndpointArnHistory.add(snsEndpointArn);
+		
+		try {
+			deviceRegistration.setDeviceNotificationConf(ServerUtil.jsonMapperWithUnwrapRoot().writeValueAsString(deviceNotificationConf));
+		} catch (Exception ex) {
+            log.error("Failed to update device notification configuration '{}'", deviceNotificationConf);
+		}
+	}
+
+	public AuthenticateRequest getAuthenticateRequest(AuthenticateRequestMessage requestMessage, AuthenticateResponse response) throws BadInputException {
+        if (!StringHelper.equals(requestMessage.getRequestId(), response.getRequestId())) {
+            throw new BadInputException("Wrong request for response data");
+        }
+
+        for (AuthenticateRequest request : requestMessage.getAuthenticateRequests()) {
+            if (StringHelper.equals(request.getKeyHandle(), response.getKeyHandle())) {
+                return request;
+            }
+        }
+
+        throw new BadInputException("Responses keyHandle does not match any contained request");
+    }
+
+    public void storeAuthenticationRequestMessage(AuthenticateRequestMessage requestMessage, String userInum, String sessionId) {
+        Date now = new GregorianCalendar(TimeZone.getTimeZone("UTC")).getTime();
+        final String authenticateRequestMessageId = UUID.randomUUID().toString();
+
+        AuthenticateRequestMessageLdap authenticateRequestMessageLdap = new AuthenticateRequestMessageLdap(getDnForAuthenticateRequestMessage(authenticateRequestMessageId),
+                authenticateRequestMessageId, now, sessionId, userInum, requestMessage);
+
+        ldapEntryManager.persist(authenticateRequestMessageLdap);
+    }
+
+    public AuthenticateRequestMessage getAuthenticationRequestMessage(String oxId) {
+        String requestDn = getDnForAuthenticateRequestMessage(oxId);
+
+        AuthenticateRequestMessageLdap authenticateRequestMessageLdap = ldapEntryManager.find(AuthenticateRequestMessageLdap.class, requestDn);
+        if (authenticateRequestMessageLdap == null) {
+            return null;
+        }
+
+        return authenticateRequestMessageLdap.getAuthenticateRequestMessage();
+    }
+
+    public AuthenticateRequestMessageLdap getAuthenticationRequestMessageByRequestId(String requestId) {
+        String baseDn = getDnForAuthenticateRequestMessage(null);
+        Filter requestIdFilter = Filter.createEqualityFilter("oxRequestId", requestId);
+
+        List<AuthenticateRequestMessageLdap> authenticateRequestMessagesLdap = ldapEntryManager.findEntries(baseDn, AuthenticateRequestMessageLdap.class,
+                requestIdFilter);
+        if ((authenticateRequestMessagesLdap == null) || authenticateRequestMessagesLdap.isEmpty()) {
+            return null;
+        }
+
+        return authenticateRequestMessagesLdap.get(0);
+    }
+
+    public void removeAuthenticationRequestMessage(AuthenticateRequestMessageLdap authenticateRequestMessageLdap) {
+        removeRequestMessage(authenticateRequestMessageLdap);
+    }
+
+    public String getUserInumByKeyHandle(String appId, String keyHandle) throws InvalidKeyHandleDeviceException {
+        if (org.gluu.util.StringHelper.isEmpty(appId) || StringHelper.isEmpty(keyHandle)) {
+            return null;
+        }
+
+        List<DeviceRegistration> deviceRegistrations = deviceRegistrationService.findDeviceRegistrationsByKeyHandle(appId, keyHandle, "oxId");
+        if (deviceRegistrations.isEmpty()) {
+            throw new InvalidKeyHandleDeviceException(String.format("Failed to find device by keyHandle '%s' in LDAP", keyHandle));
+        }
+
+        if (deviceRegistrations.size() != 1) {
+            throw new BadInputException(String.format("There are '%d' devices with keyHandle '%s' in LDAP", deviceRegistrations.size(), keyHandle));
+        }
+
+        DeviceRegistration deviceRegistration = deviceRegistrations.get(0);
+
+        return userService.getUserInumByDn(deviceRegistration.getDn());
+    }
+
+    /**
+     * Build DN string for U2F authentication request
+     */
+    public String getDnForAuthenticateRequestMessage(String oxId) {
+        final String u2fBaseDn = staticConfiguration.getBaseDn().getU2fBase(); // ou=authentication_requests,ou=u2f,o=gluu
+        if (StringHelper.isEmpty(oxId)) {
+            return String.format("ou=authentication_requests,%s", u2fBaseDn);
+        }
+
+        return String.format("oxid=%s,ou=authentication_requests,%s", oxId, u2fBaseDn);
+    }
+    
+
+}
diff --git a/oxAuth/Server/src/main/java/org/gluu/oxauth/service/fido/u2f/ClientDataValidationService.java b/oxAuth/Server/src/main/java/org/gluu/oxauth/service/fido/u2f/ClientDataValidationService.java
new file mode 100644
index 00000000..5978075f
--- /dev/null
+++ b/oxAuth/Server/src/main/java/org/gluu/oxauth/service/fido/u2f/ClientDataValidationService.java
@@ -0,0 +1,80 @@
+/*
+ * oxAuth is available under the MIT License (2008). See http://opensource.org/licenses/MIT for full text.
+ *
+ * Copyright (c) 2014, Gluu
+ */
+
+package org.gluu.oxauth.service.fido.u2f;
+
+import java.net.URI;
+import java.net.URISyntaxException;
+import java.util.HashSet;
+import java.util.Set;
+
+import javax.enterprise.context.ApplicationScoped;
+import javax.inject.Inject;
+
+import org.apache.commons.lang.ArrayUtils;
+import org.gluu.oxauth.model.fido.u2f.exception.BadInputException;
+import org.gluu.oxauth.model.fido.u2f.protocol.ClientData;
+import org.slf4j.Logger;
+
+/**
+ * Client data validation service
+ *
+ * @author Yuriy Movchan Date: 05/20/2015
+ */
+@ApplicationScoped
+public class ClientDataValidationService {
+
+	@Inject
+	private Logger log;
+
+	public void checkContent(ClientData clientData, String[] types, String challenge, Set<String> facets) throws BadInputException {
+		if (!ArrayUtils.contains(types, clientData.getTyp())) {
+			throw new BadInputException("Bad clientData: wrong typ " + clientData.getTyp());
+		}
+
+		if (!challenge.equals(clientData.getChallenge())) {
+			throw new BadInputException("Bad clientData: wrong challenge");
+		}
+
+		if (facets != null && !facets.isEmpty()) {
+			Set<String> allowedFacets = canonicalizeOrigins(facets);
+			String canonicalOrigin;
+			try {
+				canonicalOrigin = canonicalizeOrigin(clientData.getOrigin());
+			} catch (RuntimeException e) {
+				throw new BadInputException("Bad clientData: Malformed origin", e);
+			}
+			verifyOrigin(canonicalOrigin, allowedFacets);
+		}
+	}
+
+	private static void verifyOrigin(String origin, Set<String> allowedOrigins) throws BadInputException {
+		if (!allowedOrigins.contains(origin)) {
+			throw new BadInputException(origin + " is not a recognized facet for this application");
+		}
+	}
+
+	public static Set<String> canonicalizeOrigins(Set<String> origins) {
+		Set<String> result = new HashSet<String>();
+		for (String origin : origins) {
+			result.add(canonicalizeOrigin(origin));
+		}
+		return result;
+	}
+
+	public static String canonicalizeOrigin(String url) {
+		try {
+			URI uri = new URI(url);
+			if (uri.getAuthority() == null) {
+				return url;
+			}
+			return uri.getScheme() + "://" + uri.getAuthority();
+		} catch (URISyntaxException e) {
+			throw new IllegalArgumentException("Specified bad origin", e);
+		}
+	}
+
+}
diff --git a/oxAuth/Server/src/main/java/org/gluu/oxauth/service/fido/u2f/DeviceRegistrationService.java b/oxAuth/Server/src/main/java/org/gluu/oxauth/service/fido/u2f/DeviceRegistrationService.java
new file mode 100644
index 00000000..78c94311
--- /dev/null
+++ b/oxAuth/Server/src/main/java/org/gluu/oxauth/service/fido/u2f/DeviceRegistrationService.java
@@ -0,0 +1,241 @@
+/*
+ * oxAuth is available under the MIT License (2008). See http://opensource.org/licenses/MIT for full text.
+ *
+ * Copyright (c) 2014, Gluu
+ */
+
+package org.gluu.oxauth.service.fido.u2f;
+
+import org.gluu.oxauth.model.fido.u2f.DeviceRegistration;
+import org.gluu.oxauth.model.fido.u2f.DeviceRegistrationStatus;
+import org.gluu.oxauth.model.util.Base64Util;
+import org.gluu.oxauth.service.common.UserService;
+import org.gluu.persist.PersistenceEntryManager;
+import org.gluu.persist.model.BatchOperation;
+import org.gluu.persist.model.SearchScope;
+import org.gluu.persist.model.base.SimpleBranch;
+import org.gluu.search.filter.Filter;
+import org.gluu.util.StringHelper;
+import org.slf4j.Logger;
+import org.gluu.oxauth.model.config.StaticConfiguration;
+
+import javax.enterprise.context.ApplicationScoped;
+import javax.inject.Inject;
+import java.util.ArrayList;
+import java.util.Date;
+import java.util.List;
+
+/**
+ * Provides operations with user U2F devices
+ *
+ * @author Yuriy Movchan Date: 05/14/2015
+ */
+@ApplicationScoped
+public class DeviceRegistrationService {
+
+	@Inject
+	private Logger log;
+
+	@Inject
+	private PersistenceEntryManager ldapEntryManager;
+
+	@Inject
+	private UserService userService;
+
+	@Inject
+	private StaticConfiguration staticConfiguration;
+
+	public void addBranch(final String userInum) {
+		SimpleBranch branch = new SimpleBranch();
+		branch.setOrganizationalUnitName("fido");
+		branch.setDn(getBaseDnForU2fUserDevices(userInum));
+
+		ldapEntryManager.persist(branch);
+	}
+
+	public boolean containsBranch(final String userInum) {
+		return ldapEntryManager.contains(getBaseDnForU2fUserDevices(userInum), SimpleBranch.class);
+	}
+
+	public void prepareBranch(final String userInum) {
+        String baseDn = getBaseDnForU2fUserDevices(userInum);
+        if (!ldapEntryManager.hasBranchesSupport(baseDn)) {
+        	return;
+        }
+
+		// Create U2F user device registrations branch if needed
+		if (!containsBranch(userInum)) {
+			addBranch(userInum);
+		}
+	}
+
+	public DeviceRegistration findUserDeviceRegistration(String userInum, String deviceId, String... returnAttributes) {
+		prepareBranch(userInum);
+
+		String deviceDn = getDnForU2fDevice(userInum, deviceId);
+
+		return ldapEntryManager.find(deviceDn, DeviceRegistration.class, returnAttributes);
+	}
+
+	public List<DeviceRegistration> findUserDeviceRegistrations(String userInum, String appId, String ... returnAttributes) {
+		prepareBranch(userInum);
+
+		String baseDnForU2fDevices = getBaseDnForU2fUserDevices(userInum);
+		Filter userInumFilter = Filter.createEqualityFilter("personInum", userInum);
+		Filter appIdFilter = Filter.createEqualityFilter("oxApplication", appId);
+
+		Filter filter = Filter.createANDFilter(userInumFilter, appIdFilter);
+
+		return ldapEntryManager.findEntries(baseDnForU2fDevices, DeviceRegistration.class, filter, returnAttributes);
+	}
+
+	public List<DeviceRegistration> findDeviceRegistrationsByKeyHandle(String appId, String keyHandle, String ... returnAttributes) {
+		if (org.gluu.util.StringHelper.isEmpty(appId) || StringHelper.isEmpty(keyHandle)) {
+			return new ArrayList<DeviceRegistration>(0);
+		}
+
+		byte[] keyHandleDecoded = Base64Util.base64urldecode(keyHandle);
+
+		String baseDn = userService.getDnForUser(null);
+
+		Filter deviceObjectClassFilter = Filter.createEqualityFilter("objectClass", "oxDeviceRegistration");
+		Filter deviceHashCodeFilter = Filter.createEqualityFilter("oxDeviceHashCode", getKeyHandleHashCode(keyHandleDecoded));
+		Filter deviceKeyHandleFilter = Filter.createEqualityFilter("oxDeviceKeyHandle", keyHandle);
+		Filter appIdFilter = Filter.createEqualityFilter("oxApplication", appId);
+
+		Filter filter = Filter.createANDFilter(deviceObjectClassFilter, deviceHashCodeFilter, appIdFilter, deviceKeyHandleFilter);
+
+		return ldapEntryManager.findEntries(baseDn, DeviceRegistration.class, filter, returnAttributes);
+	}
+
+	public DeviceRegistration findOneStepUserDeviceRegistration(String deviceId, String... returnAttributes) {
+		String deviceDn = getDnForOneStepU2fDevice(deviceId);
+
+		return ldapEntryManager.find(DeviceRegistration.class, deviceDn);
+	}
+
+	public void addUserDeviceRegistration(String userInum, DeviceRegistration deviceRegistration) {
+		prepareBranch(userInum);
+
+		// Final registration entry should be without expiration
+        deviceRegistration.clearExpiration();
+
+		ldapEntryManager.persist(deviceRegistration);
+	}
+
+	public boolean attachUserDeviceRegistration(String userInum, String oneStepDeviceId) {
+		String oneStepDeviceDn = getDnForOneStepU2fDevice(oneStepDeviceId);
+
+		// Load temporary stored device registration
+		DeviceRegistration deviceRegistration = ldapEntryManager.find(DeviceRegistration.class, oneStepDeviceDn);
+		if (deviceRegistration == null) {
+			return false;
+		}
+
+		// Remove temporary stored device registration
+		removeUserDeviceRegistration(deviceRegistration);
+
+		// Attach user device registration to user
+		String deviceDn = getDnForU2fDevice(userInum, deviceRegistration.getId());
+
+		deviceRegistration.setDn(deviceDn);
+
+		// Final registration entry should be without expiration
+        deviceRegistration.clearExpiration();
+        
+        //fix: personInum should be populated
+        deviceRegistration.setUserInum(userInum);
+        
+        addUserDeviceRegistration(userInum, deviceRegistration);
+
+		return true;
+	}
+
+	public void addOneStepDeviceRegistration(DeviceRegistration deviceRegistration) {
+        // Set expiration for one step flow
+        deviceRegistration.setExpiration();
+		
+		ldapEntryManager.persist(deviceRegistration);
+	}
+
+	public void updateDeviceRegistration(String userInum, DeviceRegistration deviceRegistration) {
+		prepareBranch(userInum);
+
+		ldapEntryManager.merge(deviceRegistration);
+	}
+
+	public void disableUserDeviceRegistration(DeviceRegistration deviceRegistration) {
+		deviceRegistration.setStatus(DeviceRegistrationStatus.COMPROMISED);
+
+		ldapEntryManager.merge(deviceRegistration);
+	}
+
+	public void removeUserDeviceRegistration(DeviceRegistration deviceRegistration) {
+		ldapEntryManager.remove(deviceRegistration);
+	}
+
+	public List<DeviceRegistration> getExpiredDeviceRegistrations(BatchOperation<DeviceRegistration> batchOperation, Date expirationDate, String[] returnAttributes, int sizeLimit, int chunkSize) {
+		final String u2fBaseDn = getDnForOneStepU2fDevice(null);
+		Filter expirationFilter = Filter.createLessOrEqualFilter("creationDate", ldapEntryManager.encodeTime(u2fBaseDn, expirationDate));
+
+		List<DeviceRegistration> deviceRegistrations = ldapEntryManager.findEntries(u2fBaseDn, DeviceRegistration.class, expirationFilter, SearchScope.SUB, returnAttributes, batchOperation, 0, sizeLimit, chunkSize);
+
+		return deviceRegistrations;
+	}
+
+    public int getCountDeviceRegistrations(String appId) {
+        String baseDn = userService.getDnForUser(null);
+        
+        Filter appIdFilter = Filter.createEqualityFilter("oxApplication", appId);
+        Filter activeDeviceFilter = Filter.createEqualityFilter("oxStatus", DeviceRegistrationStatus.ACTIVE.getValue());
+        Filter resultFilter = Filter.createANDFilter(appIdFilter, activeDeviceFilter);
+        
+        return ldapEntryManager.countEntries(baseDn, DeviceRegistration.class, resultFilter);
+    }
+
+	/**
+	 * Build DN string for U2F user device
+	 */
+	public String getDnForU2fDevice(String userInum, String oxId) {
+		String baseDnForU2fDevices = getBaseDnForU2fUserDevices(userInum);
+		if (StringHelper.isEmpty(oxId)) {
+			return baseDnForU2fDevices;
+		}
+		return String.format("oxId=%s,%s", oxId, baseDnForU2fDevices);
+	}
+
+	public String getBaseDnForU2fUserDevices(String userInum) {
+        if (StringHelper.isEmpty(userInum)) {
+            return getDnForOneStepU2fDevice("");
+        }
+		final String userBaseDn = userService.getDnForUser(userInum); // "ou=fido,inum=1234,ou=people,o=gluu"
+		return String.format("ou=fido,%s", userBaseDn);
+	}
+
+	public String getDnForOneStepU2fDevice(String deviceRegistrationId) {
+		final String u2fBaseDn = staticConfiguration.getBaseDn().getU2fBase(); // ou=registered_devices,ou=u2f,o=gluu
+		if (StringHelper.isEmpty(deviceRegistrationId)) {
+			return String.format("ou=registered_devices,%s", u2fBaseDn);
+		}
+
+		return String.format("oxid=%s,ou=registered_devices,%s", deviceRegistrationId, u2fBaseDn);
+	}
+
+    /*
+     * Generate non unique hash code to split keyHandle among small cluster with 10-20 elements
+     *
+     * This hash code will be used to generate small LDAP indexes
+     */
+    public int getKeyHandleHashCode(byte[] keyHandle) {
+		int hash = 0;
+		for (int j = 0; j < keyHandle.length; j++) {
+			hash += keyHandle[j]*j;
+		}
+
+		return hash;
+    }
+
+    public void merge(DeviceRegistration device) {
+        ldapEntryManager.merge(device);
+    }
+}
diff --git a/oxAuth/Server/src/main/java/org/gluu/oxauth/service/fido/u2f/RawAuthenticationService.java b/oxAuth/Server/src/main/java/org/gluu/oxauth/service/fido/u2f/RawAuthenticationService.java
new file mode 100644
index 00000000..f8ebe7aa
--- /dev/null
+++ b/oxAuth/Server/src/main/java/org/gluu/oxauth/service/fido/u2f/RawAuthenticationService.java
@@ -0,0 +1,86 @@
+/*
+ * oxAuth is available under the MIT License (2008). See http://opensource.org/licenses/MIT for full text.
+ *
+ * Copyright (c) 2014, Gluu
+ */
+
+package org.gluu.oxauth.service.fido.u2f;
+
+import java.io.IOException;
+
+import javax.enterprise.context.ApplicationScoped;
+import javax.inject.Inject;
+import javax.inject.Named;
+
+import org.apache.commons.codec.binary.Hex;
+import org.apache.commons.io.IOUtils;
+import org.gluu.oxauth.crypto.signature.SHA256withECDSASignatureVerification;
+import org.gluu.oxauth.model.exception.SignatureException;
+import org.gluu.oxauth.model.fido.u2f.exception.BadInputException;
+import org.gluu.oxauth.model.fido.u2f.message.RawAuthenticateResponse;
+import org.gluu.oxauth.model.fido.u2f.protocol.ClientData;
+import org.gluu.oxauth.model.util.Base64Util;
+import org.gluu.util.io.ByteDataInputStream;
+import org.slf4j.Logger;
+
+import com.google.common.io.ByteArrayDataOutput;
+import com.google.common.io.ByteStreams;
+
+/**
+ * Provides operations with U2F RAW authentication response
+ *
+ * @author Yuriy Movchan Date: 05/20/2015
+ */
+@ApplicationScoped
+public class RawAuthenticationService {
+
+	public static final String AUTHENTICATE_GET_TYPE = "navigator.id.getAssertion";
+	public static final String AUTHENTICATE_CANCEL_TYPE = "navigator.id.cancelAssertion";
+	public static final String[] SUPPORTED_AUTHENTICATE_TYPES = new String[] { AUTHENTICATE_GET_TYPE, AUTHENTICATE_CANCEL_TYPE };
+
+	@Inject
+	private Logger log;
+
+	@Inject @Named(value = "sha256withECDSASignatureVerification")
+	private SHA256withECDSASignatureVerification signatureVerification;
+
+	public RawAuthenticateResponse parseRawAuthenticateResponse(String rawDataBase64) {
+		ByteDataInputStream bis = new ByteDataInputStream(Base64Util.base64urldecode(rawDataBase64));
+		try {
+			return new RawAuthenticateResponse(bis.readSigned(), bis.readInt(), bis.readAll());
+		} catch (IOException ex) {
+			throw new BadInputException("Failed to parse RAW authenticate response", ex);
+		} finally {
+			IOUtils.closeQuietly(bis);
+		}
+	}
+
+	public void checkSignature(String appId, ClientData clientData, RawAuthenticateResponse rawAuthenticateResponse, byte[] publicKey) throws BadInputException {
+		String rawClientData = clientData.getRawClientData();
+
+		byte[] signedBytes = packBytesToSign(signatureVerification.hash(appId), rawAuthenticateResponse.getUserPresence(),
+				rawAuthenticateResponse.getCounter(), signatureVerification.hash(rawClientData));
+
+		log.debug("Packed bytes to sign in HEX '{}'", Hex.encodeHexString(signedBytes));
+		log.debug("Signature from authentication response in HEX '{}'", Hex.encodeHexString(rawAuthenticateResponse.getSignature()));
+		try {
+			boolean isValid = signatureVerification.checkSignature(signatureVerification.decodePublicKey(publicKey), signedBytes, rawAuthenticateResponse.getSignature());
+			if (!isValid) {
+				throw new BadInputException("Signature is not valid");
+			}
+		} catch (SignatureException ex) {
+			throw new BadInputException("Failed to checkSignature", ex);
+		}
+	}
+
+	private byte[] packBytesToSign(byte[] appIdHash, byte userPresence, long counter, byte[] challengeHash) {
+		ByteArrayDataOutput encoded = ByteStreams.newDataOutput();
+		encoded.write(appIdHash);
+		encoded.write(userPresence);
+		encoded.writeInt((int) counter);
+		encoded.write(challengeHash);
+
+		return encoded.toByteArray();
+	}
+
+}
diff --git a/oxAuth/Server/src/main/java/org/gluu/oxauth/service/fido/u2f/RawRegistrationService.java b/oxAuth/Server/src/main/java/org/gluu/oxauth/service/fido/u2f/RawRegistrationService.java
new file mode 100644
index 00000000..e0700432
--- /dev/null
+++ b/oxAuth/Server/src/main/java/org/gluu/oxauth/service/fido/u2f/RawRegistrationService.java
@@ -0,0 +1,111 @@
+/*
+ * oxAuth is available under the MIT License (2008). See http://opensource.org/licenses/MIT for full text.
+ *
+ * Copyright (c) 2014, Gluu
+ */
+
+package org.gluu.oxauth.service.fido.u2f;
+
+import java.io.IOException;
+import java.io.InputStream;
+import java.security.NoSuchProviderException;
+import java.security.cert.CertificateException;
+import java.security.cert.CertificateFactory;
+import java.security.cert.X509Certificate;
+
+import javax.enterprise.context.ApplicationScoped;
+import javax.inject.Inject;
+import javax.inject.Named;
+
+import org.apache.commons.io.IOUtils;
+import org.gluu.oxauth.crypto.signature.SHA256withECDSASignatureVerification;
+import org.gluu.oxauth.model.exception.SignatureException;
+import org.gluu.oxauth.model.fido.u2f.DeviceRegistration;
+import org.gluu.oxauth.model.fido.u2f.exception.BadInputException;
+import org.gluu.oxauth.model.fido.u2f.message.RawRegisterResponse;
+import org.gluu.oxauth.model.fido.u2f.protocol.ClientData;
+import org.gluu.oxauth.model.util.Base64Util;
+import org.gluu.util.io.ByteDataInputStream;
+import org.gluu.util.security.SecurityProviderUtility;
+import org.slf4j.Logger;
+
+import com.google.common.io.ByteArrayDataOutput;
+import com.google.common.io.ByteStreams;
+
+/**
+ * Provides operations with U2F RAW registration response
+ *
+ * @author Yuriy Movchan Date: 05/20/2015
+ */
+@ApplicationScoped
+public class RawRegistrationService {
+
+	@Inject
+	private Logger log;
+
+	@Inject
+	@Named("sha256withECDSASignatureVerification")
+	private SHA256withECDSASignatureVerification signatureVerification;
+
+	public static final byte REGISTRATION_RESERVED_BYTE_VALUE = (byte) 0x05;
+	public static final byte REGISTRATION_SIGNED_RESERVED_BYTE_VALUE = (byte) 0x00;
+	public static final long INITIAL_DEVICE_COUNTER_VALUE = -1;
+
+	public static final String REGISTER_FINISH_TYPE = "navigator.id.finishEnrollment";
+	public static final String REGISTER_CANCEL_TYPE = "navigator.id.cancelEnrollment";
+	public static final String[] SUPPORTED_REGISTER_TYPES = new String[] { REGISTER_FINISH_TYPE, REGISTER_CANCEL_TYPE };
+
+
+	public RawRegisterResponse parseRawRegisterResponse(String rawDataBase64) throws BadInputException {
+		ByteDataInputStream bis = new ByteDataInputStream(Base64Util.base64urldecode(rawDataBase64));
+		try {
+			try {
+				byte reservedByte = bis.readSigned();
+				if (reservedByte != REGISTRATION_RESERVED_BYTE_VALUE) {
+					throw new BadInputException("Incorrect value of reserved byte. Expected: " + REGISTRATION_RESERVED_BYTE_VALUE + ". Was: " + reservedByte);
+				}
+				return new RawRegisterResponse(bis.read(65), bis.read(bis.readUnsigned()), parseDer(bis), bis.readAll());
+			} catch (IOException ex) {
+				throw new BadInputException("Failed to parse RAW register response", ex);
+			} catch (CertificateException e) {
+				throw new BadInputException("Malformed attestation certificate", e);
+			} catch (NoSuchProviderException e) {
+				throw new BadInputException("Failed to parse attestation certificate", e);
+			}
+		} finally {
+			IOUtils.closeQuietly(bis);
+		}
+	}
+
+    public X509Certificate parseDer(InputStream is) throws CertificateException, NoSuchProviderException {
+            return (X509Certificate) CertificateFactory.getInstance("X.509", SecurityProviderUtility.getBCProvider()).generateCertificate(is);
+    }
+
+	public void checkSignature(String appId, ClientData clientData, RawRegisterResponse rawRegisterResponse) throws BadInputException {
+		String rawClientData = clientData.getRawClientData();
+		byte[] signedBytes = packBytesToSign(signatureVerification.hash(appId), signatureVerification.hash(rawClientData), rawRegisterResponse.getKeyHandle(),
+				rawRegisterResponse.getUserPublicKey());
+		try {
+			signatureVerification.checkSignature(rawRegisterResponse.getAttestationCertificate(), signedBytes, rawRegisterResponse.getSignature());
+		} catch (SignatureException ex) {
+			throw new BadInputException("Failed to checkSignature", ex);
+		}
+	}
+
+	private byte[] packBytesToSign(byte[] appIdHash, byte[] clientDataHash, byte[] keyHandle, byte[] userPublicKey) {
+		ByteArrayDataOutput encoded = ByteStreams.newDataOutput();
+		encoded.write(REGISTRATION_SIGNED_RESERVED_BYTE_VALUE);
+		encoded.write(appIdHash);
+		encoded.write(clientDataHash);
+		encoded.write(keyHandle);
+		encoded.write(userPublicKey);
+
+		return encoded.toByteArray();
+	}
+
+	public DeviceRegistration createDevice(String userInum, RawRegisterResponse rawRegisterResponse) throws BadInputException {
+		return new DeviceRegistration(userInum, Base64Util.base64urlencode(rawRegisterResponse.getKeyHandle()), Base64Util.base64urlencode(rawRegisterResponse
+				.getUserPublicKey()), rawRegisterResponse.getAttestationCertificate(), INITIAL_DEVICE_COUNTER_VALUE);
+	}
+
+}
diff --git a/oxAuth/Server/src/main/java/org/gluu/oxauth/service/fido/u2f/RegistrationService.java b/oxAuth/Server/src/main/java/org/gluu/oxauth/service/fido/u2f/RegistrationService.java
new file mode 100644
index 00000000..534ef5f5
--- /dev/null
+++ b/oxAuth/Server/src/main/java/org/gluu/oxauth/service/fido/u2f/RegistrationService.java
@@ -0,0 +1,225 @@
+/*
+ * oxAuth is available under the MIT License (2008). See http://opensource.org/licenses/MIT for full text.
+ *
+ * Copyright (c) 2014, Gluu
+ */
+
+package org.gluu.oxauth.service.fido.u2f;
+
+import org.gluu.oxauth.crypto.random.ChallengeGenerator;
+import org.gluu.oxauth.exception.fido.u2f.DeviceCompromisedException;
+import org.gluu.oxauth.model.fido.u2f.*;
+import org.gluu.oxauth.model.fido.u2f.exception.BadInputException;
+import org.gluu.oxauth.model.fido.u2f.message.RawRegisterResponse;
+import org.gluu.oxauth.model.fido.u2f.protocol.*;
+import org.gluu.oxauth.model.util.Base64Util;
+import org.gluu.oxauth.service.common.UserService;
+import org.gluu.oxauth.util.ServerUtil;
+import org.gluu.persist.PersistenceEntryManager;
+import org.gluu.search.filter.Filter;
+import org.gluu.util.StringHelper;
+import org.slf4j.Logger;
+import org.gluu.oxauth.model.config.StaticConfiguration;
+
+import javax.enterprise.context.ApplicationScoped;
+import javax.inject.Inject;
+import javax.inject.Named;
+import java.util.*;
+
+/**
+ * Provides operations with U2F registration requests
+ *
+ * @author Yuriy Movchan
+ * @version August 9, 2017
+ */
+@ApplicationScoped
+@Named("u2fRegistrationService")
+public class RegistrationService extends RequestService {
+
+    @Inject
+    private Logger log;
+
+    @Inject
+    private PersistenceEntryManager ldapEntryManager;
+
+    @Inject
+    private ApplicationService applicationService;
+
+    @Inject
+    private UserService userService;
+
+    @Inject
+    private AuthenticationService u2fAuthenticationService;
+
+    @Inject
+    private RawRegistrationService rawRegistrationService;
+
+    @Inject
+    private ClientDataValidationService clientDataValidationService;
+
+    @Inject
+    private DeviceRegistrationService deviceRegistrationService;
+
+    @Inject
+    @Named("randomChallengeGenerator")
+    private ChallengeGenerator challengeGenerator;
+
+    @Inject
+    private StaticConfiguration staticConfiguration;
+
+    public RegisterRequestMessage builRegisterRequestMessage(String appId, String userInum) {
+        if (applicationService.isValidateApplication()) {
+            applicationService.checkIsValid(appId);
+        }
+
+        List<AuthenticateRequest> authenticateRequests = new ArrayList<AuthenticateRequest>();
+        List<RegisterRequest> registerRequests = new ArrayList<RegisterRequest>();
+
+        boolean twoStep = StringHelper.isNotEmpty(userInum);
+        if (twoStep) {
+            // In two steps we expects not empty userInum
+            List<DeviceRegistration> deviceRegistrations = deviceRegistrationService.findUserDeviceRegistrations(userInum, appId);
+            for (DeviceRegistration deviceRegistration : deviceRegistrations) {
+                if (!deviceRegistration.isCompromised()) {
+                    try {
+                        AuthenticateRequest authenticateRequest = u2fAuthenticationService.startAuthentication(appId, deviceRegistration);
+                        authenticateRequests.add(authenticateRequest);
+                    } catch (DeviceCompromisedException ex) {
+                        log.error("Faield to authenticate device", ex);
+                    }
+                }
+            }
+        }
+
+        RegisterRequest request = startRegistration(appId);
+        registerRequests.add(request);
+
+        return new RegisterRequestMessage(authenticateRequests, registerRequests);
+    }
+
+    public RegisterRequest startRegistration(String appId) {
+        return startRegistration(appId, challengeGenerator.generateChallenge());
+    }
+
+    public RegisterRequest startRegistration(String appId, byte[] challenge) {
+        return new RegisterRequest(Base64Util.base64urlencode(challenge), appId);
+    }
+
+    public DeviceRegistrationResult finishRegistration(RegisterRequestMessage requestMessage, RegisterResponse response, String userInum) throws BadInputException {
+        return finishRegistration(requestMessage, response, userInum, null);
+    }
+
+    public DeviceRegistrationResult finishRegistration(RegisterRequestMessage requestMessage, RegisterResponse response, String userInum, Set<String> facets)
+            throws BadInputException {
+        RegisterRequest request = requestMessage.getRegisterRequest();
+        String appId = request.getAppId();
+
+        ClientData clientData = response.getClientData();
+        clientDataValidationService.checkContent(clientData, RawRegistrationService.SUPPORTED_REGISTER_TYPES, request.getChallenge(), facets);
+
+        RawRegisterResponse rawRegisterResponse = rawRegistrationService.parseRawRegisterResponse(response.getRegistrationData());
+        rawRegistrationService.checkSignature(appId, clientData, rawRegisterResponse);
+
+        Date now = new GregorianCalendar(TimeZone.getTimeZone("UTC")).getTime();
+        DeviceRegistration deviceRegistration = rawRegistrationService.createDevice(userInum, rawRegisterResponse);
+        deviceRegistration.setStatus(DeviceRegistrationStatus.ACTIVE);
+        deviceRegistration.setApplication(appId);
+        deviceRegistration.setCreationDate(now);
+
+        int keyHandleHashCode = deviceRegistrationService.getKeyHandleHashCode(rawRegisterResponse.getKeyHandle());
+        deviceRegistration.setKeyHandleHashCode(keyHandleHashCode);
+
+        final String deviceRegistrationId = String.valueOf(System.currentTimeMillis());
+        deviceRegistration.setId(deviceRegistrationId);
+
+        String responseDeviceData = response.getDeviceData();
+        if (StringHelper.isNotEmpty(responseDeviceData)) {
+            try {
+                String responseDeviceDataDecoded = new String(Base64Util.base64urldecode(responseDeviceData));
+                DeviceData deviceData = ServerUtil.jsonMapperWithWrapRoot().readValue(responseDeviceDataDecoded, DeviceData.class);
+                deviceRegistration.setDeviceData(deviceData);
+            } catch (Exception ex) {
+                throw new BadInputException(String.format("Device data is invalid: %s", responseDeviceData), ex);
+            }
+        }
+
+        boolean approved = StringHelper.equals(RawRegistrationService.REGISTER_FINISH_TYPE, response.getClientData().getTyp());
+        if (!approved) {
+            log.debug("Registratio request with keyHandle '{}' was canceled", rawRegisterResponse.getKeyHandle());
+            return new DeviceRegistrationResult(deviceRegistration, DeviceRegistrationResult.Status.CANCELED);
+        }
+
+        boolean twoStep = StringHelper.isNotEmpty(userInum);
+        if (twoStep) {
+            deviceRegistration.setDn(deviceRegistrationService.getDnForU2fDevice(userInum, deviceRegistrationId));
+
+            // Check if there is device registration with keyHandle in LDAP already
+            List<DeviceRegistration> foundDeviceRegistrations = deviceRegistrationService.findDeviceRegistrationsByKeyHandle(appId, deviceRegistration.getKeyHandle(), "oxId");
+            if (foundDeviceRegistrations.size() != 0) {
+                throw new BadInputException(String.format("KeyHandle %s was compromised", deviceRegistration.getKeyHandle()));
+            }
+
+    		deviceRegistrationService.addUserDeviceRegistration(userInum, deviceRegistration);
+        } else {
+            deviceRegistration.setDn(deviceRegistrationService.getDnForOneStepU2fDevice(deviceRegistrationId));
+            deviceRegistrationService.addOneStepDeviceRegistration(deviceRegistration);
+        }
+
+        return new DeviceRegistrationResult(deviceRegistration, DeviceRegistrationResult.Status.APPROVED);
+    }
+
+    public RequestMessageLdap storeRegisterRequestMessage(RegisterRequestMessage requestMessage, String userInum, String sessionId) {
+        Date now = new GregorianCalendar(TimeZone.getTimeZone("UTC")).getTime();
+        final String registerRequestMessageId = UUID.randomUUID().toString();
+
+        RequestMessageLdap registerRequestMessageLdap = new RegisterRequestMessageLdap(getDnForRegisterRequestMessage(registerRequestMessageId),
+                registerRequestMessageId, now, sessionId, userInum, requestMessage);
+
+        ldapEntryManager.persist(registerRequestMessageLdap);
+        return registerRequestMessageLdap;
+    }
+
+    public RegisterRequestMessage getRegisterRequestMessage(String oxId) {
+        String requestDn = getDnForRegisterRequestMessage(oxId);
+
+        RegisterRequestMessageLdap registerRequestMessageLdap = ldapEntryManager.find(RegisterRequestMessageLdap.class, requestDn);
+        if (registerRequestMessageLdap == null) {
+            return null;
+        }
+
+        return registerRequestMessageLdap.getRegisterRequestMessage();
+    }
+
+    public RegisterRequestMessageLdap getRegisterRequestMessageByRequestId(String requestId) {
+        String baseDn = getDnForRegisterRequestMessage(null);
+        Filter requestIdFilter = Filter.createEqualityFilter("oxRequestId", requestId);
+
+        List<RegisterRequestMessageLdap> registerRequestMessagesLdap = ldapEntryManager.findEntries(baseDn, RegisterRequestMessageLdap.class,
+                requestIdFilter);
+        if ((registerRequestMessagesLdap == null) || registerRequestMessagesLdap.isEmpty()) {
+            return null;
+        }
+
+        return registerRequestMessagesLdap.get(0);
+    }
+
+    public void removeRegisterRequestMessage(RequestMessageLdap registerRequestMessageLdap) {
+        removeRequestMessage(registerRequestMessageLdap);
+    }
+
+    /**
+     * Build DN string for U2F register request
+     */
+    public String getDnForRegisterRequestMessage(String oxId) {
+        final String u2fBaseDn = staticConfiguration.getBaseDn().getU2fBase(); // ou=registration_requests,ou=u2f,o=gluu
+        if (StringHelper.isEmpty(oxId)) {
+            return String.format("ou=registration_requests,%s", u2fBaseDn);
+        }
+
+        return String.format("oxid=%s,ou=registration_requests,%s", oxId, u2fBaseDn);
+    }
+
+    public void merge(RequestMessageLdap request) {
+        ldapEntryManager.merge(request);
+    }
+}
diff --git a/oxAuth/Server/src/main/java/org/gluu/oxauth/service/fido/u2f/RequestService.java b/oxAuth/Server/src/main/java/org/gluu/oxauth/service/fido/u2f/RequestService.java
new file mode 100644
index 00000000..df8813d7
--- /dev/null
+++ b/oxAuth/Server/src/main/java/org/gluu/oxauth/service/fido/u2f/RequestService.java
@@ -0,0 +1,55 @@
+/*
+ * oxAuth is available under the MIT License (2008). See http://opensource.org/licenses/MIT for full text.
+ *
+ * Copyright (c) 2014, Gluu
+ */
+
+package org.gluu.oxauth.service.fido.u2f;
+
+import java.util.Date;
+import java.util.List;
+
+import javax.enterprise.context.ApplicationScoped;
+import javax.inject.Inject;
+import javax.inject.Named;
+
+import org.gluu.oxauth.model.fido.u2f.RequestMessageLdap;
+import org.gluu.persist.PersistenceEntryManager;
+import org.gluu.persist.model.BatchOperation;
+import org.gluu.persist.model.SearchScope;
+import org.gluu.search.filter.Filter;
+import org.slf4j.Logger;
+import org.gluu.oxauth.model.config.StaticConfiguration;
+
+/**
+ * Provides generic operations with U2F requests
+ *
+ * @author Yuriy Movchan Date: 05/19/2015
+ */
+@ApplicationScoped
+@Named("u2fRequestService")
+public class RequestService {
+
+	@Inject
+	private Logger log;
+
+	@Inject
+	private PersistenceEntryManager ldapEntryManager;
+
+	@Inject
+	private StaticConfiguration staticConfiguration;
+
+	public List<RequestMessageLdap> getExpiredRequestMessages(BatchOperation<RequestMessageLdap> batchOperation, Date expirationDate, String[] returnAttributes, int sizeLimit, int chunkSize) {
+		final String u2fBaseDn = staticConfiguration.getBaseDn().getU2fBase(); // ou=u2f,o=gluu
+		Filter expirationFilter = Filter.createLessOrEqualFilter("creationDate", ldapEntryManager.encodeTime(u2fBaseDn, expirationDate));
+
+		List<RequestMessageLdap> requestMessageLdap = ldapEntryManager.findEntries(u2fBaseDn, RequestMessageLdap.class, expirationFilter, SearchScope.SUB, returnAttributes, batchOperation, 0, sizeLimit, chunkSize);
+
+		return requestMessageLdap;
+	}
+
+	public void removeRequestMessage(RequestMessageLdap requestMessageLdap) {
+		ldapEntryManager.remove(requestMessageLdap);
+	}
+
+}
diff --git a/oxAuth/Server/src/main/java/org/gluu/oxauth/service/fido/u2f/UserSessionIdService.java b/oxAuth/Server/src/main/java/org/gluu/oxauth/service/fido/u2f/UserSessionIdService.java
new file mode 100644
index 00000000..e8b0c17b
--- /dev/null
+++ b/oxAuth/Server/src/main/java/org/gluu/oxauth/service/fido/u2f/UserSessionIdService.java
@@ -0,0 +1,88 @@
+/*
+ * oxAuth is available under the MIT License (2008). See http://opensource.org/licenses/MIT for full text.
+ *
+ * Copyright (c) 2014, Gluu
+ */
+
+package org.gluu.oxauth.service.fido.u2f;
+
+import java.util.Map;
+
+import javax.enterprise.context.ApplicationScoped;
+import javax.inject.Inject;
+
+import org.gluu.oxauth.model.fido.u2f.DeviceRegistrationResult;
+import org.gluu.oxauth.model.session.SessionId;
+import org.gluu.oxauth.model.session.SessionIdState;
+import org.gluu.oxauth.service.SessionIdService;
+import org.gluu.oxauth.ws.rs.fido.u2f.U2fAuthenticationWS;
+import org.gluu.util.StringHelper;
+import org.slf4j.Logger;
+
+/**
+ * Configure user session to confirm user {@link U2fAuthenticationWS} authentication
+ *
+ * @author Yuriy Movchan
+ * @version August 9, 2017
+ */
+@ApplicationScoped
+public class UserSessionIdService {
+
+    @Inject
+    private Logger log;
+
+    @Inject
+    private SessionIdService sessionIdService;
+
+    public void updateUserSessionIdOnFinishRequest(String sessionId, String userInum, DeviceRegistrationResult deviceRegistrationResult, boolean enroll, boolean oneStep) {
+        SessionId ldapSessionId = getLdapSessionId(sessionId);
+        if (ldapSessionId == null) {
+            return;
+        }
+
+        Map<String, String> sessionAttributes = ldapSessionId.getSessionAttributes();
+        if (DeviceRegistrationResult.Status.APPROVED == deviceRegistrationResult.getStatus()) {
+            sessionAttributes.put("session_custom_state", "approved");
+        } else {
+            sessionAttributes.put("session_custom_state", "declined");
+        }
+        sessionAttributes.put("oxpush2_u2f_device_id", deviceRegistrationResult.getDeviceRegistration().getId());
+        sessionAttributes.put("oxpush2_u2f_device_user_inum", userInum);
+        sessionAttributes.put("oxpush2_u2f_device_enroll", Boolean.toString(enroll));
+        sessionAttributes.put("oxpush2_u2f_device_one_step", Boolean.toString(oneStep));
+
+        sessionIdService.updateSessionId(ldapSessionId, true);
+    }
+
+    public void updateUserSessionIdOnError(String sessionId) {
+        SessionId ldapSessionId = getLdapSessionId(sessionId);
+        if (ldapSessionId == null) {
+            return;
+        }
+
+        Map<String, String> sessionAttributes = ldapSessionId.getSessionAttributes();
+        sessionAttributes.put("session_custom_state", "declined");
+
+        sessionIdService.updateSessionId(ldapSessionId, true);
+    }
+
+    private SessionId getLdapSessionId(String sessionId) {
+        if (StringHelper.isEmpty(sessionId)) {
+            return null;
+        }
+
+        SessionId ldapSessionId = sessionIdService.getSessionId(sessionId);
+        if (ldapSessionId == null) {
+            log.warn("Failed to load session id '{}'", sessionId);
+            return null;
+        }
+
+        if (SessionIdState.UNAUTHENTICATED != ldapSessionId.getState()) {
+            log.warn("Unexpected session id '{}' state: '{}'", sessionId, ldapSessionId.getState());
+            return null;
+        }
+
+        return ldapSessionId;
+    }
+
+}
diff --git a/oxAuth/Server/src/main/java/org/gluu/oxauth/service/fido/u2f/ValidationService.java b/oxAuth/Server/src/main/java/org/gluu/oxauth/service/fido/u2f/ValidationService.java
new file mode 100644
index 00000000..d384ed0a
--- /dev/null
+++ b/oxAuth/Server/src/main/java/org/gluu/oxauth/service/fido/u2f/ValidationService.java
@@ -0,0 +1,88 @@
+/*
+ * oxAuth is available under the MIT License (2008). See http://opensource.org/licenses/MIT for full text.
+ *
+ * Copyright (c) 2014, Gluu
+ */
+
+package org.gluu.oxauth.service.fido.u2f;
+
+import javax.enterprise.context.ApplicationScoped;
+import javax.inject.Inject;
+import javax.inject.Named;
+
+import org.gluu.oxauth.model.config.Constants;
+import org.gluu.oxauth.model.fido.u2f.U2fConstants;
+import org.gluu.oxauth.model.session.SessionId;
+import org.gluu.oxauth.service.SessionIdService;
+import org.gluu.oxauth.service.common.UserService;
+import org.gluu.util.StringHelper;
+import org.slf4j.Logger;
+import org.gluu.oxauth.model.common.User;
+
+/**
+ * Utility to validate U2F input data
+ *
+ * @author Yuriy Movchan
+ * @version August 9, 2017
+ */
+@ApplicationScoped
+@Named("u2fValidationService")
+public class ValidationService {
+
+    @Inject
+    private Logger log;
+
+    @Inject
+    private SessionIdService sessionIdService;
+
+    @Inject
+    private UserService userService;
+
+    public boolean isValidSessionId(String userName, String sessionId) {
+        if (sessionId == null) {
+            log.error("In two step authentication workflow session_id is mandatory");
+            return false;
+        }
+
+        SessionId ldapSessionId = sessionIdService.getSessionId(sessionId);
+        if (ldapSessionId == null) {
+            log.error("Specified session_id '{}' is invalid", sessionId);
+            return false;
+        }
+
+        String sessionIdUser = ldapSessionId.getSessionAttributes().get(Constants.AUTHENTICATED_USER);
+        if (!StringHelper.equalsIgnoreCase(userName, sessionIdUser)) {
+            log.error("Username '{}' and session_id '{}' don't match", userName, sessionId);
+            return false;
+        }
+
+        return true;
+    }
+
+    public boolean isValidEnrollmentCode(String userName, String enrollmentCode) {
+        if (enrollmentCode == null) {
+            log.error("In two step authentication workflow enrollment_code is mandatory");
+            return false;
+        }
+
+        User user = userService.getUser(userName, U2fConstants.U2F_ENROLLMENT_CODE_ATTRIBUTE);
+        if (user == null) {
+            log.error("Specified user_name '{}' is invalid", userName);
+            return false;
+        }
+
+        String userEnrollmentCode = user.getAttribute(U2fConstants.U2F_ENROLLMENT_CODE_ATTRIBUTE);
+        if (userEnrollmentCode == null) {
+            log.error("Specified enrollment_code '{}' is invalid", enrollmentCode);
+            return false;
+        }
+
+        if (!StringHelper.equalsIgnoreCase(userEnrollmentCode, enrollmentCode)) {
+            log.error("Username '{}' and enrollment_code '{}' don't match", userName, enrollmentCode);
+            return false;
+        }
+
+        return true;
+    }
+
+}
diff --git a/oxAuth/Server/src/main/java/org/gluu/oxauth/service/fido/u2f/util/KeyGenerator.java b/oxAuth/Server/src/main/java/org/gluu/oxauth/service/fido/u2f/util/KeyGenerator.java
new file mode 100644
index 00000000..7a2f2113
--- /dev/null
+++ b/oxAuth/Server/src/main/java/org/gluu/oxauth/service/fido/u2f/util/KeyGenerator.java
@@ -0,0 +1,65 @@
+/*
+ * oxAuth is available under the MIT License (2008). See http://opensource.org/licenses/MIT for full text.
+ *
+ * Copyright (c) 2014, Gluu
+ */
+
+package org.gluu.oxauth.service.fido.u2f.util;
+
+import java.util.Calendar;
+import java.util.Date;
+import java.util.UUID;
+
+import org.json.JSONObject;
+import org.gluu.oxauth.model.crypto.Certificate;
+import org.gluu.oxauth.model.crypto.Key;
+import org.gluu.oxauth.model.crypto.signature.ECDSAKeyFactory;
+import org.gluu.oxauth.model.crypto.signature.ECDSAPrivateKey;
+import org.gluu.oxauth.model.crypto.signature.ECDSAPublicKey;
+import org.gluu.oxauth.model.crypto.signature.SignatureAlgorithm;
+import org.gluu.oxauth.model.jwk.Use;
+import org.gluu.util.security.SecurityProviderUtility;
+
+/**
+ * @author Yuriy Movchan
+ * @author Javier Rojas Blum
+ * @version August 28, 2017
+ */
+public class KeyGenerator {
+    public static void main(String[] args) throws Exception {
+        SecurityProviderUtility.installBCProvider(true);
+
+        Calendar cal = Calendar.getInstance();
+        Date startDate = cal.getTime();
+
+        cal.add(Calendar.YEAR, 3);
+        Date expirationDate = cal.getTime();
+
+        String dnName = "C=US,ST=TX,L=Austin,O=Gluu,CN=Gluu oxPush2 U2F v1.0.0";
+
+        generateU2fAttestationKeys(startDate, expirationDate, dnName);
+    }
+
+    public static void generateU2fAttestationKeys(Date startDate, Date expirationDate, String dnName) throws Exception {
+        ECDSAKeyFactory keyFactory = new ECDSAKeyFactory(
+                SignatureAlgorithm.ES256,
+                null);
+        Key<ECDSAPrivateKey, ECDSAPublicKey> key = keyFactory.getKey();
+        Certificate certificate = keyFactory.generateV3Certificate(startDate, expirationDate, dnName);
+        key.setCertificate(certificate);
+
+        key.setKeyType(SignatureAlgorithm.ES256.getFamily().getValue());
+        key.setUse(Use.SIGNATURE.toString());
+        key.setAlgorithm(SignatureAlgorithm.ES256.getName());
+        key.setKeyId(UUID.randomUUID().toString());
+        key.setExpirationTime(expirationDate.getTime());
+        key.setCurve(SignatureAlgorithm.ES256.getCurve());
+
+        JSONObject jsonKey = key.toJSONObject();
+        System.out.println(jsonKey);
+
+        System.out.println("CERTIFICATE:");
+        System.out.println(certificate);
+    }
+
+}
diff --git a/oxAuth/Server/src/main/java/org/gluu/oxauth/service/logger/LoggerService.java b/oxAuth/Server/src/main/java/org/gluu/oxauth/service/logger/LoggerService.java
new file mode 100644
index 00000000..13bf317e
--- /dev/null
+++ b/oxAuth/Server/src/main/java/org/gluu/oxauth/service/logger/LoggerService.java
@@ -0,0 +1,42 @@
+package org.gluu.oxauth.service.logger;
+
+import org.gluu.oxauth.model.configuration.AppConfiguration;
+import org.gluu.oxauth.util.ServerUtil;
+
+import javax.enterprise.context.ApplicationScoped;
+import javax.inject.Inject;
+import javax.inject.Named;
+
+/**
+ * Logger service
+ *
+ * @author Yuriy Movchan Date: 08/19/2018
+ */
+@ApplicationScoped
+@Named
+public class LoggerService extends org.gluu.service.logger.LoggerService {
+
+    @Inject
+    private AppConfiguration appConfiguration;
+
+    @Override
+    public boolean isDisableJdkLogger() {
+        return ServerUtil.isTrue(appConfiguration.getDisableJdkLogger());
+    }
+
+    @Override
+    public String getLoggingLevel() {
+        return appConfiguration.getLoggingLevel();
+    }
+
+    @Override
+    public String getExternalLoggerConfiguration() {
+        return appConfiguration.getExternalLoggerConfiguration();
+    }
+
+    @Override
+    public String getLoggingLayout() {
+        return appConfiguration.getLoggingLayout();
+    }
+
+}
diff --git a/oxAuth/Server/src/main/java/org/gluu/oxauth/service/net/HttpService.java b/oxAuth/Server/src/main/java/org/gluu/oxauth/service/net/HttpService.java
new file mode 100644
index 00000000..e2fdbf61
--- /dev/null
+++ b/oxAuth/Server/src/main/java/org/gluu/oxauth/service/net/HttpService.java
@@ -0,0 +1,285 @@
+/*
+ * oxAuth is available under the MIT License (2008). See http://opensource.org/licenses/MIT for full text.
+ *
+ * Copyright (c) 2014, Gluu
+ */
+
+package org.gluu.oxauth.service.net;
+
+import java.io.IOException;
+import java.io.Serializable;
+import java.io.UnsupportedEncodingException;
+import java.net.URLEncoder;
+import java.nio.charset.Charset;
+import java.security.cert.CertificateException;
+import java.security.cert.X509Certificate;
+import java.util.Map;
+import java.util.Map.Entry;
+
+import javax.annotation.PostConstruct;
+import javax.enterprise.context.ApplicationScoped;
+import javax.inject.Inject;
+import javax.inject.Named;
+import javax.servlet.http.HttpServletRequest;
+
+import org.apache.commons.codec.binary.Base64;
+import org.apache.http.Header;
+import org.apache.http.HttpEntity;
+import org.apache.http.HttpResponse;
+import org.apache.http.HttpStatus;
+import org.apache.http.client.ClientProtocolException;
+import org.apache.http.client.HttpClient;
+import org.apache.http.client.methods.HttpGet;
+import org.apache.http.client.methods.HttpPost;
+import org.apache.http.conn.ClientConnectionManager;
+import org.apache.http.conn.scheme.PlainSocketFactory;
+import org.apache.http.conn.scheme.Scheme;
+import org.apache.http.conn.scheme.SchemeRegistry;
+import org.apache.http.conn.ssl.AllowAllHostnameVerifier;
+import org.apache.http.conn.ssl.SSLSocketFactory;
+import org.apache.http.conn.ssl.TrustStrategy;
+import org.apache.http.entity.ContentType;
+import org.apache.http.entity.StringEntity;
+import org.apache.http.impl.client.DefaultHttpClient;
+import org.apache.http.impl.conn.PoolingClientConnectionManager;
+import org.apache.http.util.EntityUtils;
+import org.gluu.net.SslDefaultHttpClient;
+import org.gluu.model.net.HttpServiceResponse;
+import org.gluu.util.StringHelper;
+import org.gluu.util.Util;
+import org.slf4j.Logger;
+/**
+ * Provides operations with http requests
+ *
+ * @author Yuriy Movchan Date: 02/05/2013
+ */
+@ApplicationScoped
+@Named
+@Deprecated
+public class HttpService implements Serializable {
+
+	private static final long serialVersionUID = -2398422090669045605L;
+
+	@Inject
+	private Logger log;
+
+	private Base64 base64;
+	
+	@PostConstruct
+	public void init() {
+		this.base64 = new Base64();
+	}
+
+	public HttpClient getHttpsClientTrustAll() {
+	    try {
+	        SSLSocketFactory sf = new SSLSocketFactory(new TrustStrategy(){
+	            @Override
+	            public boolean isTrusted(X509Certificate[] chain, String authType) throws CertificateException {
+	                return true;
+	            }
+	        }, new AllowAllHostnameVerifier());
+
+	        PlainSocketFactory psf = PlainSocketFactory.getSocketFactory();
+
+	        SchemeRegistry registry = new SchemeRegistry();
+	        registry.register(new Scheme("http", 80, psf));
+	        registry.register(new Scheme("https", 443, sf));
+	        ClientConnectionManager ccm = new PoolingClientConnectionManager(registry);
+	        return new DefaultHttpClient(ccm);
+	    } catch (Exception ex) {
+	    	log.error("Failed to create TrustAll https client", ex);
+	        return new DefaultHttpClient();
+	    }
+	}
+
+	public HttpClient getHttpsClient() {
+		HttpClient httpClient = new SslDefaultHttpClient();
+
+		return httpClient;
+	}
+
+	public HttpClient getHttpsClient(String trustStoreType, String trustStorePath, String trustStorePassword) {
+		HttpClient httpClient = new SslDefaultHttpClient(trustStoreType, trustStorePath, trustStorePassword);
+
+		return httpClient;
+	}
+
+	public HttpClient getHttpsClient(String trustStoreType, String trustStorePath, String trustStorePassword,
+			String keyStoreType, String keyStorePath, String keyStorePassword) {
+		HttpClient httpClient = new SslDefaultHttpClient(trustStoreType, trustStorePath, trustStorePassword,
+				keyStoreType, keyStorePath, keyStorePassword);
+
+		return httpClient;
+	}
+	
+	public HttpServiceResponse executePost(HttpClient httpClient, String uri, String authData, Map<String, String> headers, String postData, ContentType contentType) {
+        HttpPost httpPost = new HttpPost(uri);
+        if (StringHelper.isNotEmpty(authData)) {
+        	httpPost.setHeader("Authorization", "Basic " + authData);
+        }
+        
+        if (headers != null) {
+        	for (Entry<String, String> headerEntry : headers.entrySet()) {
+            	httpPost.setHeader(headerEntry.getKey(), headerEntry.getValue());
+        	}
+        }
+
+        StringEntity stringEntity = new StringEntity(postData, contentType);
+		httpPost.setEntity(stringEntity);
+		
+        try {
+        	HttpResponse httpResponse = httpClient.execute(httpPost);
+
+        	return new HttpServiceResponse(httpPost, httpResponse);
+		} catch (IOException ex) {
+	    	log.error("Failed to execute post request", ex);
+		}
+        
+        return null;
+	}
+
+	public HttpServiceResponse executePost(HttpClient httpClient, String uri, String authData, Map<String, String> headers, String postData) {
+		return executePost(httpClient, uri, authData, headers, postData, null);
+	}
+
+	public HttpServiceResponse executePost(HttpClient httpClient, String uri, String authData, String postData, ContentType contentType) {
+        return executePost(httpClient, uri, authData, null, postData, contentType);
+	}
+
+	public String encodeBase64(String value) {
+		try {
+			return new String(base64.encode((value).getBytes(Util.UTF8)), Util.UTF8);
+		} catch (UnsupportedEncodingException ex) {
+	    	log.error("Failed to convert '{}' to base64", value, ex);
+		}
+
+		return null;
+	}
+
+	public String encodeUrl(String value) {
+		try {
+			return URLEncoder.encode(value, Util.UTF8);
+		} catch (UnsupportedEncodingException ex) {
+	    	log.error("Failed to encode url '{}'", value, ex);
+		}
+
+		return null;
+	}
+
+	public HttpServiceResponse executeGet(HttpClient httpClient, String requestUri, Map<String, String> headers) {
+		HttpGet httpGet = new HttpGet(requestUri);
+        
+        if (headers != null) {
+        	for (Entry<String, String> headerEntry : headers.entrySet()) {
+        		httpGet.setHeader(headerEntry.getKey(), headerEntry.getValue());
+        	}
+        }
+
+		try {
+			HttpResponse httpResponse = httpClient.execute(httpGet);
+
+			return new HttpServiceResponse(httpGet, httpResponse);
+		} catch (IOException ex) {
+	    	log.error("Failed to execute get request", ex);
+		}
+
+		return null;
+	}
+
+	public HttpServiceResponse executeGet(HttpClient httpClient, String requestUri) throws ClientProtocolException, IOException {
+		return executeGet(httpClient, requestUri, null);
+	}
+
+	public byte[] getResponseContent(HttpResponse httpResponse) throws IOException {
+        if ((httpResponse == null) || (httpResponse.getStatusLine().getStatusCode() != HttpStatus.SC_OK)) {
+        	return null;
+        }
+
+        HttpEntity entity = httpResponse.getEntity();
+		byte[] responseBytes = new byte[0];
+		if (entity != null) {
+			responseBytes = EntityUtils.toByteArray(entity);
+		}
+
+    	// Consume response content
+		if (entity != null) {
+			EntityUtils.consume(entity);
+		}
+
+    	return responseBytes;
+	}
+
+	public void consume(HttpResponse httpResponse) throws IOException {
+        if ((httpResponse == null) || (httpResponse.getStatusLine().getStatusCode() != HttpStatus.SC_OK)) {
+        	return;
+        }
+
+    	// Consume response content
+        HttpEntity entity = httpResponse.getEntity();
+		if (entity != null) {
+			EntityUtils.consume(entity);
+		}
+	}
+
+	public String convertEntityToString(byte[] responseBytes) {
+		if (responseBytes == null) {
+			return null;
+		}
+
+		return new String(responseBytes);
+	}
+
+	public String convertEntityToString(byte[] responseBytes, Charset charset) {
+		if (responseBytes == null) {
+			return null;
+		}
+
+		return new String(responseBytes, charset);
+	}
+
+	public String convertEntityToString(byte[] responseBytes, String charsetName) throws UnsupportedEncodingException {
+		if (responseBytes == null) {
+			return null;
+		}
+
+		return new String(responseBytes, charsetName);
+	}
+
+	public boolean isResponseStastusCodeOk(HttpResponse httpResponse) {
+		int responseStastusCode = httpResponse.getStatusLine().getStatusCode();
+		if (responseStastusCode == HttpStatus.SC_OK) {
+			return true;
+		}
+		
+		return false;
+	}
+	
+
+	public boolean isContentTypeXml(HttpResponse httpResponse) {
+		Header contentType = httpResponse.getEntity().getContentType();
+		if (contentType == null) {
+			return false;
+		}
+
+		String contentTypeValue = contentType.getValue();
+		if (StringHelper.equals(contentTypeValue, ContentType.APPLICATION_XML.getMimeType()) || StringHelper.equals(contentTypeValue, ContentType.TEXT_XML.getMimeType())) {
+			return true;
+		}
+		
+		return false;
+	}
+
+	public String constructServerUrl(final HttpServletRequest request) {
+    	int serverPort = request.getServerPort();
+
+    	String redirectUrl;
+    	if ((serverPort == 80) || (serverPort == 443)) {
+    		redirectUrl = String.format("%s://%s%s", request.getScheme(), request.getServerName(), request.getContextPath());
+    	} else {
+    		redirectUrl = String.format("%s://%s:%s%s", request.getScheme(), request.getServerName(), request.getServerPort(), request.getContextPath());
+    	}
+    	
+    	return redirectUrl.toLowerCase();
+    }
+
+}
diff --git a/oxAuth/Server/src/main/java/org/gluu/oxauth/service/net/HttpService2.java b/oxAuth/Server/src/main/java/org/gluu/oxauth/service/net/HttpService2.java
new file mode 100644
index 00000000..8ac278d3
--- /dev/null
+++ b/oxAuth/Server/src/main/java/org/gluu/oxauth/service/net/HttpService2.java
@@ -0,0 +1,44 @@
+/*
+ * oxAuth is available under the MIT License (2008). See http://opensource.org/licenses/MIT for full text.
+ *
+ * Copyright (c) 2014, Gluu
+ */
+
+package org.gluu.oxauth.service.net;
+
+import java.io.Serializable;
+
+import javax.annotation.PostConstruct;
+import javax.annotation.PreDestroy;
+import javax.enterprise.context.ApplicationScoped;
+import javax.inject.Inject;
+
+import org.slf4j.Logger;
+
+/**
+ * Provides operations with http/https requests
+ *
+ * @author Yuriy Movchan Date: 04/10/2023
+ */
+@ApplicationScoped
+public class HttpService2 extends org.gluu.net.HttpServiceUtility implements Serializable {
+
+	@Inject
+	private Logger log;
+
+	@PostConstruct
+	public void init() {
+		super.init();
+	}
+
+	@PreDestroy
+	public void destroy() {
+		super.destroy();
+	}
+
+	@Override
+	public Logger getLogger() {
+		return log;
+	}
+
+}
diff --git a/oxAuth/Server/src/main/java/org/gluu/oxauth/service/push/sns/PushPlatform.java b/oxAuth/Server/src/main/java/org/gluu/oxauth/service/push/sns/PushPlatform.java
new file mode 100644
index 00000000..d4c5f5e9
--- /dev/null
+++ b/oxAuth/Server/src/main/java/org/gluu/oxauth/service/push/sns/PushPlatform.java
@@ -0,0 +1,25 @@
+package org.gluu.oxauth.service.push.sns;
+
+/**
+ * Platforms supported AWS SNS
+ *
+ * @author Yuriy Movchan Date: 08/31/2017
+ */
+public enum PushPlatform {
+
+	// Apple Push Notification Service
+	APNS,
+	// Sandbox version of Apple Push Notification Service
+	APNS_SANDBOX,
+	// Amazon Device Messaging
+	ADM,
+	// Google Cloud Messaging
+	GCM,
+	// Baidu CloudMessaging Service
+	BAIDU,
+	// Windows Notification Service
+	WNS,
+	// Microsoft Push Notificaion Service
+	MPNS;
+
+}
diff --git a/oxAuth/Server/src/main/java/org/gluu/oxauth/service/push/sns/PushSnsService.java b/oxAuth/Server/src/main/java/org/gluu/oxauth/service/push/sns/PushSnsService.java
new file mode 100644
index 00000000..7bd51181
--- /dev/null
+++ b/oxAuth/Server/src/main/java/org/gluu/oxauth/service/push/sns/PushSnsService.java
@@ -0,0 +1,114 @@
+package org.gluu.oxauth.service.push.sns;
+
+import java.io.IOException;
+import java.util.Date;
+import java.util.HashMap;
+import java.util.Map;
+
+import javax.inject.Inject;
+
+import org.gluu.oxauth.model.configuration.AppConfiguration;
+import org.gluu.oxauth.service.common.EncryptionService;
+import org.gluu.oxauth.util.ServerUtil;
+import org.gluu.persist.PersistenceEntryManager;
+import org.gluu.oxauth.model.common.User;
+
+import com.amazonaws.auth.AWSStaticCredentialsProvider;
+import com.amazonaws.auth.BasicAWSCredentials;
+import com.amazonaws.regions.Regions;
+import com.amazonaws.services.sns.AmazonSNS;
+import com.amazonaws.services.sns.AmazonSNSClientBuilder;
+import com.amazonaws.services.sns.model.CreatePlatformEndpointRequest;
+import com.amazonaws.services.sns.model.CreatePlatformEndpointResult;
+import com.amazonaws.services.sns.model.MessageAttributeValue;
+import com.amazonaws.services.sns.model.PublishRequest;
+import com.amazonaws.services.sns.model.PublishResult;
+
+import javax.enterprise.context.ApplicationScoped;
+
+/**
+ * Provides operations to send AWS SNS push messages
+ *
+ * @author Yuriy Movchan Date: 08/31/2017
+ */
+@ApplicationScoped
+public class PushSnsService {
+
+	@Inject
+    private EncryptionService encryptionService;
+
+	@Inject
+	private AppConfiguration appConfiguration;
+
+	@Inject
+    private PersistenceEntryManager ldapEntryManager;
+
+	public AmazonSNS createSnsClient(String accessKey, String secretKey, String region) {
+		String decryptedAccessKey = encryptionService.decrypt(accessKey, true);
+		String decryptedSecretKey = encryptionService.decrypt(secretKey, true);
+
+		BasicAWSCredentials credentials = new BasicAWSCredentials(decryptedAccessKey, decryptedSecretKey);
+	    AmazonSNS snsClient = AmazonSNSClientBuilder.standard().withRegion(Regions.fromName(region)).withCredentials(new AWSStaticCredentialsProvider(credentials)).build();
+	    
+	    return snsClient;
+	}
+
+	public String createPlatformArn(AmazonSNS snsClient, String platformApplicationArn, String token, User user) {
+		CreatePlatformEndpointRequest platformEndpointRequest = new CreatePlatformEndpointRequest();
+		platformEndpointRequest.setPlatformApplicationArn(platformApplicationArn);
+		platformEndpointRequest.setToken(token);
+		
+		String customUserData = getCustomUserData(user);
+		platformEndpointRequest.setCustomUserData(customUserData);
+		
+		CreatePlatformEndpointResult platformEndpointResult = snsClient.createPlatformEndpoint(platformEndpointRequest);
+
+		return platformEndpointResult.getEndpointArn();
+	}
+
+	public String getCustomUserData(User user) {
+		String customUserData = String.format("Issuer: %s, user: %s, date: %s", appConfiguration.getIssuer(), user.getUserId(),
+				ldapEntryManager.encodeTime(user.getDn(), new Date()));
+		return customUserData;
+	}
+
+	public PublishResult sendPushMessage(AmazonSNS snsClient, PushPlatform platform, String targetArn, Map<String, Object> customAppMessageMap, Map<String, MessageAttributeValue> messageAttributes) throws IOException {
+		Map<String, Object> appMessageMap = new HashMap<String, Object>();
+
+		if (platform == PushPlatform.GCM) {
+			appMessageMap.put("collapse_key", "single");
+			appMessageMap.put("delay_while_idle", true);
+			appMessageMap.put("time_to_live", 30);
+			appMessageMap.put("dry_run", false);
+		}
+
+		if (customAppMessageMap != null) {
+			appMessageMap.putAll(customAppMessageMap);
+		}
+
+		String message = ServerUtil.asJson(appMessageMap);
+
+		return sendPushMessage(snsClient, platform, targetArn, message, messageAttributes);
+	}
+
+	public PublishResult sendPushMessage(AmazonSNS snsClient, PushPlatform platform, String targetArn, String message,
+			Map<String, MessageAttributeValue> messageAttributes) throws IOException {
+		Map<String, String> messageMap = new HashMap<String, String>();
+		messageMap.put(platform.name(), message);
+		message = ServerUtil.asJson(messageMap);
+
+	    PublishRequest publishRequest = new PublishRequest();
+		publishRequest.setMessageStructure("json");
+		
+		if (messageAttributes != null) {
+			publishRequest.setMessageAttributes(messageAttributes);
+		}
+
+		publishRequest.setTargetArn(targetArn);
+		publishRequest.setMessage(message);
+
+		PublishResult publishResult = snsClient.publish(publishRequest);
+
+		return publishResult;
+	}
+}
diff --git a/oxAuth/Server/src/main/java/org/gluu/oxauth/service/stat/StatService.java b/oxAuth/Server/src/main/java/org/gluu/oxauth/service/stat/StatService.java
new file mode 100644
index 00000000..5da75465
--- /dev/null
+++ b/oxAuth/Server/src/main/java/org/gluu/oxauth/service/stat/StatService.java
@@ -0,0 +1,283 @@
+package org.gluu.oxauth.service.stat;
+
+import net.agkn.hll.HLL;
+import org.apache.commons.lang.StringUtils;
+import org.gluu.net.InetAddressUtility;
+import org.gluu.oxauth.model.common.GrantType;
+import org.gluu.oxauth.model.config.StaticConfiguration;
+import org.gluu.oxauth.model.stat.Stat;
+import org.gluu.oxauth.model.stat.StatEntry;
+import org.gluu.persist.PersistenceEntryManager;
+import org.gluu.persist.exception.EntryPersistenceException;
+import org.gluu.persist.model.base.SimpleBranch;
+import org.slf4j.Logger;
+
+import javax.annotation.PostConstruct;
+import javax.enterprise.context.ApplicationScoped;
+import javax.inject.Inject;
+import java.text.SimpleDateFormat;
+import java.util.Base64;
+import java.util.Date;
+import java.util.Map;
+import java.util.UUID;
+import java.util.concurrent.ConcurrentHashMap;
+import java.util.concurrent.ConcurrentMap;
+
+/**
+ * @author Yuriy Zabrovarnyy
+ */
+@ApplicationScoped
+public class StatService {
+
+    // January - 202001, December - 202012
+    private static final SimpleDateFormat PERIOD_DATE_FORMAT = new SimpleDateFormat("yyyyMM");
+    private static final int regwidth = 5;
+    private static final int log2m = 15;
+
+    public static final String ACCESS_TOKEN_KEY = "access_token";
+    public static final String ID_TOKEN_KEY = "id_token";
+    public static final String REFRESH_TOKEN_KEY = "refresh_token";
+    public static final String UMA_TOKEN_KEY = "uma_token";
+
+    @Inject
+    private Logger log;
+
+    @Inject
+    private PersistenceEntryManager entryManager;
+
+    @Inject
+    private StaticConfiguration staticConfiguration;
+
+    private String nodeId;
+    private String monthlyDn;
+    private StatEntry currentEntry;
+    private HLL hll;
+    private ConcurrentMap<String, Map<String, Long>> tokenCounters;
+
+    private boolean initialized = false;
+
+    @PostConstruct
+    public void create() {
+        initialized = false;
+    }
+
+    public boolean init() {
+        try {
+            log.info("Initializing Stat Service");
+            initNodeId();
+            if (StringUtils.isBlank(nodeId)) {
+                log.error("Failed to initialize stat service. statNodeId is not set in configuration.");
+                return false;
+            }
+            if (StringUtils.isBlank(getBaseDn())) {
+                log.error("Failed to initialize stat service. 'stat' base dn is not set in configuration.");
+                return false;
+            }
+
+            final Date now = new Date();
+            prepareMonthlyBranch(now);
+            log.trace("Monthly branch created: " + monthlyDn);
+
+            setupCurrentEntry(now);
+            log.info("Initialized Stat Service");
+            initialized = true;
+            return true;
+        } catch (Exception e) {
+            log.error("Failed to initialize Stat Service.", e);
+            return false;
+        }
+    }
+
+    public void updateStat() {
+        if (!initialized) {
+            return;
+        }
+
+        log.trace("Started updateStat ...");
+
+        Date now = new Date();
+        prepareMonthlyBranch(now);
+
+        setupCurrentEntry(now);
+
+        final Stat stat = currentEntry.getStat();
+        stat.setTokenCountPerGrantType(tokenCounters);
+        stat.setLastUpdatedAt(now.getTime());
+
+        synchronized (hll) {
+            currentEntry.setUserHllData(Base64.getEncoder().encodeToString(hll.toBytes()));
+        }
+        entryManager.merge(currentEntry);
+
+        log.trace("Finished updateStat.");
+    }
+
+    private void setupCurrentEntry() {
+        setupCurrentEntry(new Date());
+    }
+
+    private void setupCurrentEntry(Date now) {
+        final String month = PERIOD_DATE_FORMAT.format(now);
+        String dn = String.format("jansId=%s,%s", nodeId, monthlyDn); // jansId=<id>,ou=yyyyMM,ou=stat,o=gluu
+
+        if (currentEntry != null && month.equals(currentEntry.getStat().getMonth())) {
+            return;
+        }
+
+        try {
+            StatEntry entryFromPersistence = entryManager.find(StatEntry.class, dn);
+            if (entryFromPersistence != null && month.equals(entryFromPersistence.getStat().getMonth())) {
+                hll = HLL.fromBytes(Base64.getDecoder().decode(entryFromPersistence.getUserHllData()));
+                tokenCounters = new ConcurrentHashMap<>(entryFromPersistence.getStat().getTokenCountPerGrantType());
+                currentEntry = entryFromPersistence;
+                log.trace("Stat entry loaded.");
+                return;
+            }
+        } catch (EntryPersistenceException e) {
+            log.trace("Stat entry is not found in persistence.");
+        }
+
+        if (currentEntry == null) {
+            log.trace("Creating stat entry ...");
+            hll = newHll();
+            tokenCounters = new ConcurrentHashMap<>();
+
+            currentEntry = new StatEntry();
+            currentEntry.setId(nodeId);
+            currentEntry.setDn(dn);
+            currentEntry.setUserHllData(Base64.getEncoder().encodeToString(hll.toBytes()));
+            currentEntry.getStat().setMonth(PERIOD_DATE_FORMAT.format(new Date()));
+            entryManager.persist(currentEntry);
+            log.trace("Created stat entry. nodeId:" + nodeId);
+        }
+    }
+
+    public HLL newHll() {
+        return new HLL(log2m, regwidth);
+    }
+
+    private void initNodeId() {
+        if (StringUtils.isNotBlank(nodeId)) {
+            return;
+        }
+
+        try {
+            nodeId = InetAddressUtility.getMACAddressOrNull();
+            if (StringUtils.isNotBlank(nodeId)) {
+                log.trace("NodeId created: " + nodeId);
+                return;
+            }
+
+            nodeId = UUID.randomUUID().toString();
+            log.trace("NodeId created: " + nodeId);
+        } catch (Exception e) {
+            log.error("Failed to identify nodeId.", e);
+            nodeId = UUID.randomUUID().toString();
+        }
+    }
+
+    public String getNodeId() {
+        return nodeId;
+    }
+
+    public String getBaseDn() {
+        return staticConfiguration.getBaseDn().getStat();
+    }
+
+    private void prepareMonthlyBranch(Date now) {
+        final String baseDn = getBaseDn();
+        final String month = PERIOD_DATE_FORMAT.format(now); // yyyyMM
+        monthlyDn = String.format("ou=%s,%s", month, baseDn); // ou=yyyyMM,ou=stat,o=gluu
+
+        if (!entryManager.hasBranchesSupport(baseDn)) {
+            return;
+        }
+
+        try {
+            if (!entryManager.contains(monthlyDn, SimpleBranch.class)) { // Create ou=yyyyMM branch if needed
+                createBranch(monthlyDn, month);
+            }
+        } catch (Exception e) {
+            log.error("Failed to prepare monthly branch: " + monthlyDn, e);
+            throw e;
+        }
+    }
+
+    public void createBranch(String branchDn, String ou) {
+        try {
+            SimpleBranch branch = new SimpleBranch();
+            branch.setOrganizationalUnitName(ou);
+            branch.setDn(branchDn);
+
+            entryManager.persist(branch);
+        } catch (EntryPersistenceException ex) {
+            // Check if another process added this branch already
+            if (!entryManager.contains(branchDn, SimpleBranch.class)) {
+                throw ex;
+            }
+        }
+    }
+
+    public void reportActiveUser(String id) {
+        if (!initialized) {
+            return;
+        }
+
+        if (StringUtils.isBlank(id)) {
+            return;
+        }
+
+        final int hash = id.hashCode();
+        try {
+            setupCurrentEntry();
+            synchronized (hll) {
+                hll.addRaw(hash);
+            }
+        } catch (Exception e) {
+            log.error("Failed to report active user, id: " + id + ", hash: " + hash, e);
+        }
+    }
+
+    public void reportAccessToken(GrantType grantType) {
+        reportToken(grantType, ACCESS_TOKEN_KEY);
+    }
+
+    public void reportIdToken(GrantType grantType) {
+        reportToken(grantType, ID_TOKEN_KEY);
+    }
+
+    public void reportRefreshToken(GrantType grantType) {
+        reportToken(grantType, REFRESH_TOKEN_KEY);
+    }
+
+    public void reportUmaToken(GrantType grantType) {
+        reportToken(grantType, UMA_TOKEN_KEY);
+    }
+
+
+    private void reportToken(GrantType grantType, String tokenKey) {
+        if (!initialized) {
+            return;
+        }
+
+        if (grantType == null || tokenKey == null) {
+            return;
+        }
+        if (tokenCounters == null) {
+            log.error("Stat service is not initialized.");
+            return;
+        }
+
+        Map<String, Long> tokenMap = tokenCounters.computeIfAbsent(grantType.getValue(), k -> new ConcurrentHashMap<>());
+
+        Long counter = tokenMap.get(tokenKey);
+
+        if (counter == null) {
+            counter = 1L;
+        } else {
+            counter++;
+        }
+
+        tokenMap.put(tokenKey, counter);
+    }
+}
\ No newline at end of file
diff --git a/oxAuth/Server/src/main/java/org/gluu/oxauth/service/stat/StatTimer.java b/oxAuth/Server/src/main/java/org/gluu/oxauth/service/stat/StatTimer.java
new file mode 100644
index 00000000..0dd53381
--- /dev/null
+++ b/oxAuth/Server/src/main/java/org/gluu/oxauth/service/stat/StatTimer.java
@@ -0,0 +1,96 @@
+package org.gluu.oxauth.service.stat;
+
+import org.gluu.oxauth.model.configuration.AppConfiguration;
+import org.gluu.oxauth.service.cdi.event.StatEvent;
+import org.gluu.service.cdi.async.Asynchronous;
+import org.gluu.service.cdi.event.Scheduled;
+import org.gluu.service.timer.event.TimerEvent;
+import org.gluu.service.timer.schedule.TimerSchedule;
+import org.slf4j.Logger;
+
+import javax.enterprise.context.ApplicationScoped;
+import javax.enterprise.event.Event;
+import javax.enterprise.event.Observes;
+import javax.inject.Inject;
+import java.util.concurrent.atomic.AtomicBoolean;
+
+/**
+ * @author Yuriy Zabrovarnyy
+ */
+@ApplicationScoped
+public class StatTimer {
+
+    private static final int TIMER_TICK_INTERVAL_IN_SECONDS = 60; // 1 min
+    private static final int TIMER_INTERVAL_IN_SECONDS = 15 * 60; // 15 min
+
+    @Inject
+    private Logger log;
+
+    @Inject
+    private Event<TimerEvent> timerEvent;
+
+    @Inject
+    private AppConfiguration appConfiguration;
+
+    @Inject
+    private StatService statService;
+
+    private AtomicBoolean isActive;
+    private long lastFinishedTime;
+
+    @Asynchronous
+    public void initTimer() {
+        log.info("Initializing Stat Service Timer");
+
+        this.isActive = new AtomicBoolean(false);
+
+        timerEvent.fire(new TimerEvent(new TimerSchedule(TIMER_TICK_INTERVAL_IN_SECONDS, TIMER_TICK_INTERVAL_IN_SECONDS), new StatEvent(), Scheduled.Literal.INSTANCE));
+
+        this.lastFinishedTime = System.currentTimeMillis();
+        log.info("Initialized Stat Service Timer");
+    }
+
+    @Asynchronous
+    public void process(@Observes @Scheduled StatEvent event) {
+        if (!appConfiguration.getStatEnabled()) {
+            return;
+        }
+
+        if (this.isActive.get()) {
+            return;
+        }
+
+        if (!this.isActive.compareAndSet(false, true)) {
+            return;
+        }
+
+        try {
+            if (!allowToRun()) {
+                return;
+            }
+            statService.updateStat();
+            this.lastFinishedTime = System.currentTimeMillis();
+        } catch (Exception ex) {
+            log.error("Exception happened while updating stat", ex);
+        } finally {
+            this.isActive.set(false);
+        }
+    }
+
+    private boolean allowToRun() {
+        int interval = appConfiguration.getStatTimerIntervalInSeconds();
+        if (interval < 0) {
+            log.info("Stat Timer is disabled.");
+            log.warn("Stat Timer Interval (statTimerIntervalInSeconds in server configuration) is negative which turns OFF statistic on the server. Please set it to positive value if you wish it to run.");
+            return false;
+        }
+        if (interval == 0)
+            interval = TIMER_INTERVAL_IN_SECONDS;
+
+        long timerInterval = interval * 1000;
+
+        long timeDiff = System.currentTimeMillis() - this.lastFinishedTime;
+
+        return timeDiff >= timerInterval;
+    }
+}
diff --git a/oxAuth/Server/src/main/java/org/gluu/oxauth/service/status/ldap/LdapStatusTimer.java b/oxAuth/Server/src/main/java/org/gluu/oxauth/service/status/ldap/LdapStatusTimer.java
new file mode 100644
index 00000000..66d41ab7
--- /dev/null
+++ b/oxAuth/Server/src/main/java/org/gluu/oxauth/service/status/ldap/LdapStatusTimer.java
@@ -0,0 +1,117 @@
+/*
+ * oxAuth is available under the MIT License (2008). See http://opensource.org/licenses/MIT for full text.
+ *
+ * Copyright (c) 2014, Gluu
+ */
+
+package org.gluu.oxauth.service.status.ldap;
+
+import java.util.List;
+import java.util.concurrent.atomic.AtomicBoolean;
+
+import javax.enterprise.context.ApplicationScoped;
+import javax.enterprise.event.Event;
+import javax.enterprise.event.Observes;
+import javax.inject.Inject;
+import javax.inject.Named;
+
+import org.gluu.oxauth.service.common.ApplicationFactory;
+import org.gluu.persist.PersistenceEntryManager;
+import org.gluu.persist.ldap.operation.LdapOperationService;
+import org.gluu.persist.ldap.operation.impl.LdapConnectionProvider;
+import org.gluu.persist.operation.PersistenceOperationService;
+import org.gluu.service.cdi.async.Asynchronous;
+import org.gluu.service.cdi.event.LdapStatusEvent;
+import org.gluu.service.cdi.event.Scheduled;
+import org.gluu.service.timer.event.TimerEvent;
+import org.gluu.service.timer.schedule.TimerSchedule;
+import org.slf4j.Logger;
+
+/**
+ * @author Yuriy Movchan
+ * @version 0.1, 11/18/2012
+ */
+@ApplicationScoped
+public class LdapStatusTimer {
+
+    private final static int DEFAULT_INTERVAL = 60; // 1 minute
+
+    @Inject
+    private Logger log;
+
+	@Inject
+	private Event<TimerEvent> timerEvent;
+
+	@Inject
+    private PersistenceEntryManager ldapEntryManager;
+
+    @Inject @Named(ApplicationFactory.PERSISTENCE_AUTH_ENTRY_MANAGER_NAME)
+    private List<PersistenceEntryManager> ldapAuthEntryManagers;
+
+    private AtomicBoolean isActive;
+
+    public void initTimer() {
+        log.info("Initializing Persistance Layer Status Timer");
+        this.isActive = new AtomicBoolean(false);
+
+		timerEvent.fire(new TimerEvent(new TimerSchedule(DEFAULT_INTERVAL, DEFAULT_INTERVAL), new LdapStatusEvent(),
+				Scheduled.Literal.INSTANCE));
+    }
+
+    @Asynchronous
+    public void process(@Observes @Scheduled LdapStatusEvent ldapStatusEvent) {
+        if (this.isActive.get()) {
+            return;
+        }
+
+        if (!this.isActive.compareAndSet(false, true)) {
+            return;
+        }
+
+        try {
+            processInt();
+        } finally {
+            this.isActive.set(false);
+        }
+    }
+
+    private void processInt() {
+    	logConnectionProviderStatistic(ldapEntryManager, "connectionProvider", "bindConnectionProvider");
+
+    	for (int i = 0; i < ldapAuthEntryManagers.size(); i++) {
+			PersistenceEntryManager ldapAuthEntryManager = ldapAuthEntryManagers.get(i);
+			logConnectionProviderStatistic(ldapAuthEntryManager, "authConnectionProvider#" + i, "bindAuthConnectionProvider#" + i);
+    	}
+    }
+
+	public void logConnectionProviderStatistic(PersistenceEntryManager ldapEntryManager, String connectionProviderName, String bindConnectionProviderName) {
+	    PersistenceOperationService persistenceOperationService = ldapEntryManager.getOperationService();
+	    if (!(persistenceOperationService instanceof LdapOperationService)) {
+	        return;
+	    }
+
+	    LdapConnectionProvider ldapConnectionProvider = ((LdapOperationService) persistenceOperationService).getConnectionProvider();
+        LdapConnectionProvider bindLdapConnectionProvider = ((LdapOperationService) persistenceOperationService).getBindConnectionProvider();
+        
+        if (ldapConnectionProvider == null) {
+        	log.error("{} is empty", connectionProviderName);
+        } else {
+            if (ldapConnectionProvider.getConnectionPool() == null) {
+            	log.error("{} is empty", connectionProviderName);
+            } else {
+            	log.info("{} statistics: {}", connectionProviderName, ldapConnectionProvider.getConnectionPool().getConnectionPoolStatistics());
+            }
+        }
+
+        if (bindLdapConnectionProvider == null) {
+        	log.error("{} is empty", bindConnectionProviderName);
+        } else {
+            if (bindLdapConnectionProvider.getConnectionPool() == null) {
+            	log.error("{} is empty", bindConnectionProviderName);
+            } else {
+            	log.info("{} statistics: {}", bindConnectionProviderName, bindLdapConnectionProvider.getConnectionPool().getConnectionPoolStatistics());
+            }
+        }
+	}
+
+}
\ No newline at end of file
diff --git a/oxAuth/Server/src/main/java/org/gluu/oxauth/service/token/TokenService.java b/oxAuth/Server/src/main/java/org/gluu/oxauth/service/token/TokenService.java
new file mode 100644
index 00000000..88afd851
--- /dev/null
+++ b/oxAuth/Server/src/main/java/org/gluu/oxauth/service/token/TokenService.java
@@ -0,0 +1,120 @@
+/*
+ * oxAuth is available under the MIT License (2008). See http://opensource.org/licenses/MIT for full text.
+ *
+ * Copyright (c) 2014, Gluu
+ */
+
+package org.gluu.oxauth.service.token;
+
+import org.apache.commons.lang.StringUtils;
+import org.gluu.oxauth.model.common.AuthorizationGrant;
+import org.gluu.oxauth.model.common.AuthorizationGrantList;
+import org.gluu.oxauth.model.token.HttpAuthTokenType;
+import org.jetbrains.annotations.NotNull;
+import org.jetbrains.annotations.Nullable;
+
+import javax.inject.Inject;
+import javax.inject.Named;
+
+/**
+ * Token specific service methods
+ *
+ * @author Yuriy Movchan Date: 10/03/2012
+ */
+@Named
+public class TokenService {
+
+    @Inject
+    private AuthorizationGrantList authorizationGrantList;
+
+    public boolean isToken(@Nullable String authorizationParameter, @NotNull HttpAuthTokenType tokenType) {
+        return StringUtils.startsWithIgnoreCase(authorizationParameter, tokenType.getPrefix());
+    }
+
+    @Nullable
+    public String extractToken(@Nullable String authorizationParameter, @NotNull HttpAuthTokenType tokenType) {
+        if (isToken(authorizationParameter, tokenType) && authorizationParameter != null) {
+            return authorizationParameter.substring(tokenType.getPrefix().length()).trim();
+        }
+        return null;
+    }
+
+    public boolean isBasicAuthToken(@Nullable String authorizationParameter) {
+        return isToken(authorizationParameter, HttpAuthTokenType.Basic);
+    }
+
+    public boolean isBearerAuthToken(@Nullable String authorizationParameter) {
+        return isToken(authorizationParameter, HttpAuthTokenType.Bearer);
+    }
+
+    public boolean isNegotiateAuthToken(@Nullable String authorizationParameter) {
+        return isToken(authorizationParameter,HttpAuthTokenType.Negotiate);
+    }
+
+    @Nullable
+    public String getBasicToken(@Nullable String authorizationParameter) {
+        return extractToken(authorizationParameter, HttpAuthTokenType.Basic);
+    }
+
+    @Nullable
+    public String getBearerToken(@Nullable String authorizationParameter) {
+        return extractToken(authorizationParameter, HttpAuthTokenType.Bearer);
+    }
+
+    @Nullable
+    public String getToken(@Nullable String authorization) {
+        return getToken(authorization, HttpAuthTokenType.values());
+    }
+
+    @Nullable
+    public String getToken(@Nullable String authorization, @Nullable HttpAuthTokenType... allowedTokenTypes) {
+        if (StringUtils.isBlank(authorization) || allowedTokenTypes == null || allowedTokenTypes.length == 0) {
+            return null;
+        }
+
+        for (HttpAuthTokenType tokenType : allowedTokenTypes) {
+            if (tokenType != null && isToken(authorization, tokenType)) {
+                return extractToken(authorization, tokenType);
+            }
+        }
+        return null;
+    }
+
+    @Nullable
+    public AuthorizationGrant getAuthorizationGrant(@Nullable String authorization) {
+        final String token = getToken(authorization);
+        if (StringUtils.isNotBlank(token)) {
+            return authorizationGrantList.getAuthorizationGrantByAccessToken(token);
+        }
+        return null;
+    }
+
+    @Nullable
+    public AuthorizationGrant getBearerAuthorizationGrant(@Nullable String authorization) {
+        return getAuthorizationGrant(authorization, HttpAuthTokenType.Bearer);
+    }
+
+    @Nullable
+    public AuthorizationGrant getBasicAuthorizationGrant(@Nullable String authorization) {
+        return getAuthorizationGrant(authorization, HttpAuthTokenType.Basic);
+    }
+
+    @Nullable
+    public AuthorizationGrant getAuthorizationGrant(@Nullable String authorization, @Nullable HttpAuthTokenType tokenType) {
+        final String token = getToken(authorization, tokenType);
+        if (StringUtils.isNotBlank(token)) {
+            return authorizationGrantList.getAuthorizationGrantByAccessToken(token);
+        }
+        return null;
+    }
+
+    @NotNull
+    public String getClientDn(@Nullable String p_authorization) {
+        final AuthorizationGrant grant = getAuthorizationGrant(p_authorization);
+        if (grant != null) {
+            return grant.getClientDn();
+        }
+        return "";
+    }
+
+}
diff --git a/oxAuth/Server/src/main/java/org/gluu/oxauth/servlet/BcFirebaseMessagingSwServlet.java b/oxAuth/Server/src/main/java/org/gluu/oxauth/servlet/BcFirebaseMessagingSwServlet.java
new file mode 100644
index 00000000..ae5c309a
--- /dev/null
+++ b/oxAuth/Server/src/main/java/org/gluu/oxauth/servlet/BcFirebaseMessagingSwServlet.java
@@ -0,0 +1,62 @@
+package org.gluu.oxauth.servlet;
+
+import org.apache.commons.io.IOUtils;
+import org.gluu.oxauth.model.configuration.AppConfiguration;
+import org.gluu.oxauth.model.util.Util;
+import org.slf4j.Logger;
+
+import javax.inject.Inject;
+import javax.servlet.ServletException;
+import javax.servlet.annotation.WebServlet;
+import javax.servlet.http.HttpServlet;
+import javax.servlet.http.HttpServletRequest;
+import javax.servlet.http.HttpServletResponse;
+import java.io.IOException;
+import java.io.InputStream;
+import java.io.OutputStream;
+import java.nio.charset.StandardCharsets;
+import java.util.HashMap;
+import java.util.Map;
+
+@WebServlet(urlPatterns = "/firebase-messaging-sw.js")
+public class BcFirebaseMessagingSwServlet extends HttpServlet {
+
+	private static final long serialVersionUID = 5445488800130871634L;
+
+	@Inject
+	private Logger log;
+
+	@Inject
+	private AppConfiguration appConfiguration;
+
+	@Override
+	protected void doGet(HttpServletRequest httpServletRequest, HttpServletResponse response)
+			throws ServletException, IOException {
+		response.setContentType("application/javascript");
+		loadFirebaseMessagingSwFile(response);
+	}
+
+	private void loadFirebaseMessagingSwFile(HttpServletResponse response) {
+		String baseJavascriptFileConfiguration = "/WEB-INF/firebase-messaging-sw.js";
+		try (InputStream in = getServletContext().getResourceAsStream(baseJavascriptFileConfiguration);
+				OutputStream out = response.getOutputStream()) {
+			String content = IOUtils.toString(in, StandardCharsets.UTF_8);
+
+			Map<String, String> publicConfiguration = new HashMap<>();
+			publicConfiguration.put("apiKey", appConfiguration.getCibaEndUserNotificationConfig().getApiKey());
+			publicConfiguration.put("authDomain", appConfiguration.getCibaEndUserNotificationConfig().getAuthDomain());
+			publicConfiguration.put("databaseURL", appConfiguration.getCibaEndUserNotificationConfig().getDatabaseURL());
+			publicConfiguration.put("projectId", appConfiguration.getCibaEndUserNotificationConfig().getProjectId());
+			publicConfiguration.put("storageBucket", appConfiguration.getCibaEndUserNotificationConfig().getStorageBucket());
+			publicConfiguration.put("messagingSenderId", appConfiguration.getCibaEndUserNotificationConfig().getMessagingSenderId());
+			publicConfiguration.put("appId", appConfiguration.getCibaEndUserNotificationConfig().getAppId());
+
+			content = content.replace("'${FIREBASE_CONFIG}'", Util.asJson(publicConfiguration));
+
+			IOUtils.write(content, out, StandardCharsets.UTF_8);
+		} catch (IOException e) {
+			log.debug("Error loading firebase-messaging-sw.js configuration file: " + e.getMessage());
+		}
+	}
+
+}
diff --git a/oxAuth/Server/src/main/java/org/gluu/oxauth/servlet/OpenIdConfiguration.java b/oxAuth/Server/src/main/java/org/gluu/oxauth/servlet/OpenIdConfiguration.java
new file mode 100644
index 00000000..a68de445
--- /dev/null
+++ b/oxAuth/Server/src/main/java/org/gluu/oxauth/servlet/OpenIdConfiguration.java
@@ -0,0 +1,480 @@
+/*
+ * oxAuth is available under the MIT License (2008). See http://opensource.org/licenses/MIT for full text.
+ *
+ * Copyright (c) 2014, Gluu
+ */
+
+package org.gluu.oxauth.servlet;
+
+import org.apache.commons.lang.BooleanUtils;
+import org.apache.commons.lang.StringUtils;
+import org.gluu.model.GluuAttribute;
+import org.gluu.oxauth.ciba.CIBAConfigurationService;
+import org.gluu.oxauth.model.common.GrantType;
+import org.gluu.oxauth.model.common.ResponseMode;
+import org.gluu.oxauth.model.common.ResponseType;
+import org.gluu.oxauth.model.common.ScopeType;
+import org.gluu.oxauth.model.configuration.AppConfiguration;
+import org.gluu.oxauth.service.AttributeService;
+import org.gluu.oxauth.service.LocalResponseCache;
+import org.gluu.oxauth.service.ScopeService;
+import org.gluu.oxauth.service.external.ExternalAuthenticationService;
+import org.gluu.oxauth.service.external.ExternalDynamicScopeService;
+import org.gluu.oxauth.util.ServerUtil;
+import org.json.JSONArray;
+import org.json.JSONObject;
+import org.oxauth.persistence.model.Scope;
+import org.oxauth.persistence.model.ScopeAttributes;
+import org.slf4j.Logger;
+
+import javax.inject.Inject;
+import javax.servlet.annotation.WebServlet;
+import javax.servlet.http.HttpServlet;
+import javax.servlet.http.HttpServletRequest;
+import javax.servlet.http.HttpServletResponse;
+import java.io.IOException;
+import java.io.PrintWriter;
+import java.util.*;
+
+import static org.gluu.oxauth.model.configuration.ConfigurationResponseClaim.*;
+import static org.gluu.oxauth.model.util.StringUtils.implode;
+
+/**
+ * @author Javier Rojas Blum
+ * @author Yuriy Movchan Date: 2016/04/26
+ * @version August 14, 2019
+ */
+@WebServlet(urlPatterns = "/.well-known/openid-configuration", loadOnStartup = 10)
+public class OpenIdConfiguration extends HttpServlet {
+
+	private static final long serialVersionUID = -8224898157373678903L;
+
+	@Inject
+	private Logger log;
+
+	@Inject
+	private AppConfiguration appConfiguration;
+
+	@Inject
+	private AttributeService attributeService;
+
+	@Inject
+	private ScopeService scopeService;
+
+	@Inject
+	private ExternalAuthenticationService externalAuthenticationService;
+
+	@Inject
+	private ExternalDynamicScopeService externalDynamicScopeService;
+
+	@Inject
+	private CIBAConfigurationService cibaConfigurationService;
+
+	@Inject
+    private LocalResponseCache localResponseCache;
+
+
+	/**
+	 * Processes requests for both HTTP <code>GET</code> and <code>POST</code> methods.
+	 *
+	 * @param servletRequest servlet request
+	 * @param httpResponse servlet response
+	 * @throws IOException I/O exception
+	 */
+	@SuppressWarnings("deprecation")
+	protected void processRequest(HttpServletRequest servletRequest, HttpServletResponse httpResponse) throws IOException {
+		if (!(externalAuthenticationService.isLoaded() && externalDynamicScopeService.isLoaded())) {
+			httpResponse.sendError(HttpServletResponse.SC_SERVICE_UNAVAILABLE);
+			log.error("oxAuth still starting up!");
+			return;
+		}
+
+		httpResponse.setContentType("application/json");
+		try (PrintWriter out = httpResponse.getWriter()) {
+            final JSONObject cachedResponse = localResponseCache.getDiscoveryResponse();
+            if (cachedResponse != null) {
+                log.trace("Cached discovery response returned.");
+                out.println(ServerUtil.toPrettyJson(cachedResponse).replace("\\/", "/"));
+                return;
+            }
+
+            JSONObject jsonObj = new JSONObject();
+
+			jsonObj.put(ISSUER, appConfiguration.getIssuer());
+			jsonObj.put(AUTHORIZATION_ENDPOINT, appConfiguration.getAuthorizationEndpoint());
+			jsonObj.put(TOKEN_ENDPOINT, appConfiguration.getTokenEndpoint());
+			jsonObj.put(TOKEN_REVOCATION_ENDPOINT, appConfiguration.getTokenRevocationEndpoint()); // remove this line
+																									// in 5.x
+			jsonObj.put(REVOCATION_ENDPOINT, appConfiguration.getTokenRevocationEndpoint());
+			jsonObj.put(SESSION_REVOCATION_ENDPOINT, endpointUrl("/revoke_session"));
+			jsonObj.put(USER_INFO_ENDPOINT, appConfiguration.getUserInfoEndpoint());
+			jsonObj.put(CLIENT_INFO_ENDPOINT, appConfiguration.getClientInfoEndpoint());
+			jsonObj.put(CHECK_SESSION_IFRAME, appConfiguration.getCheckSessionIFrame());
+			jsonObj.put(END_SESSION_ENDPOINT, appConfiguration.getEndSessionEndpoint());
+			jsonObj.put(JWKS_URI, appConfiguration.getJwksUri());
+			jsonObj.put(REGISTRATION_ENDPOINT, appConfiguration.getRegistrationEndpoint());
+			jsonObj.put(ID_GENERATION_ENDPOINT, appConfiguration.getIdGenerationEndpoint());
+			jsonObj.put(INTROSPECTION_ENDPOINT, appConfiguration.getIntrospectionEndpoint());
+			jsonObj.put(DEVICE_AUTHZ_ENDPOINT, appConfiguration.getDeviceAuthzEndpoint());
+
+			JSONArray responseTypesSupported = new JSONArray();
+			for (Set<ResponseType> responseTypes : appConfiguration.getResponseTypesSupported()) {
+				responseTypesSupported.put(implode(responseTypes, " "));
+			}
+			if (responseTypesSupported.length() > 0) {
+				jsonObj.put(RESPONSE_TYPES_SUPPORTED, responseTypesSupported);
+			}
+
+			JSONArray responseModesSupported = new JSONArray();
+			if (appConfiguration.getResponseModesSupported() != null) {
+				for (ResponseMode responseMode : appConfiguration.getResponseModesSupported()) {
+					responseModesSupported.put(responseMode);
+				}
+			}
+			if (responseModesSupported.length() > 0) {
+				jsonObj.put(RESPONSE_MODES_SUPPORTED, responseModesSupported);
+			}
+
+			JSONArray grantTypesSupported = new JSONArray();
+			for (GrantType grantType : appConfiguration.getGrantTypesSupported()) {
+				grantTypesSupported.put(grantType);
+			}
+			if (grantTypesSupported.length() > 0) {
+				jsonObj.put(GRANT_TYPES_SUPPORTED, grantTypesSupported);
+			}
+
+			JSONArray acrValuesSupported = new JSONArray();
+			for (String acr : externalAuthenticationService.getAcrValuesList()) {
+				acrValuesSupported.put(acr);
+			}
+			jsonObj.put(ACR_VALUES_SUPPORTED, acrValuesSupported);
+			jsonObj.put(AUTH_LEVEL_MAPPING, createAuthLevelMapping());
+
+			JSONArray subjectTypesSupported = new JSONArray();
+			for (String subjectType : appConfiguration.getSubjectTypesSupported()) {
+				subjectTypesSupported.put(subjectType);
+			}
+			if (subjectTypesSupported.length() > 0) {
+				jsonObj.put(SUBJECT_TYPES_SUPPORTED, subjectTypesSupported);
+			}
+
+			JSONArray userInfoSigningAlgValuesSupported = new JSONArray();
+			for (String userInfoSigningAlg : appConfiguration.getUserInfoSigningAlgValuesSupported()) {
+				userInfoSigningAlgValuesSupported.put(userInfoSigningAlg);
+			}
+			if (userInfoSigningAlgValuesSupported.length() > 0) {
+				jsonObj.put(USER_INFO_SIGNING_ALG_VALUES_SUPPORTED, userInfoSigningAlgValuesSupported);
+			}
+
+			JSONArray userInfoEncryptionAlgValuesSupported = new JSONArray();
+			for (String userInfoEncryptionAlg : appConfiguration.getUserInfoEncryptionAlgValuesSupported()) {
+				userInfoEncryptionAlgValuesSupported.put(userInfoEncryptionAlg);
+			}
+			if (userInfoEncryptionAlgValuesSupported.length() > 0) {
+				jsonObj.put(USER_INFO_ENCRYPTION_ALG_VALUES_SUPPORTED, userInfoEncryptionAlgValuesSupported);
+			}
+
+			JSONArray userInfoEncryptionEncValuesSupported = new JSONArray();
+			for (String userInfoEncryptionEnc : appConfiguration.getUserInfoEncryptionEncValuesSupported()) {
+				userInfoEncryptionEncValuesSupported.put(userInfoEncryptionEnc);
+			}
+			if (userInfoEncryptionAlgValuesSupported.length() > 0) {
+				jsonObj.put(USER_INFO_ENCRYPTION_ENC_VALUES_SUPPORTED, userInfoEncryptionAlgValuesSupported);
+			}
+
+			JSONArray idTokenSigningAlgValuesSupported = new JSONArray();
+			for (String idTokenSigningAlg : appConfiguration.getIdTokenSigningAlgValuesSupported()) {
+				idTokenSigningAlgValuesSupported.put(idTokenSigningAlg);
+			}
+			if (idTokenSigningAlgValuesSupported.length() > 0) {
+				jsonObj.put(ID_TOKEN_SIGNING_ALG_VALUES_SUPPORTED, idTokenSigningAlgValuesSupported);
+			}
+
+			JSONArray idTokenEncryptionAlgValuesSupported = new JSONArray();
+			for (String idTokenEncryptionAlg : appConfiguration.getIdTokenEncryptionAlgValuesSupported()) {
+				idTokenEncryptionAlgValuesSupported.put(idTokenEncryptionAlg);
+			}
+			if (idTokenEncryptionAlgValuesSupported.length() > 0) {
+				jsonObj.put(ID_TOKEN_ENCRYPTION_ALG_VALUES_SUPPORTED, idTokenEncryptionAlgValuesSupported);
+			}
+
+			JSONArray idTokenEncryptionEncValuesSupported = new JSONArray();
+			for (String idTokenEncryptionEnc : appConfiguration.getIdTokenEncryptionEncValuesSupported()) {
+				idTokenEncryptionEncValuesSupported.put(idTokenEncryptionEnc);
+			}
+			if (idTokenEncryptionEncValuesSupported.length() > 0) {
+				jsonObj.put(ID_TOKEN_ENCRYPTION_ENC_VALUES_SUPPORTED, idTokenEncryptionEncValuesSupported);
+			}
+
+			JSONArray requestObjectSigningAlgValuesSupported = new JSONArray();
+			for (String requestObjectSigningAlg : appConfiguration.getRequestObjectSigningAlgValuesSupported()) {
+				requestObjectSigningAlgValuesSupported.put(requestObjectSigningAlg);
+			}
+			if (requestObjectSigningAlgValuesSupported.length() > 0) {
+				jsonObj.put(REQUEST_OBJECT_SIGNING_ALG_VALUES_SUPPORTED, requestObjectSigningAlgValuesSupported);
+			}
+
+			JSONArray requestObjectEncryptionAlgValuesSupported = new JSONArray();
+			for (String requestObjectEncryptionAlg : appConfiguration.getRequestObjectEncryptionAlgValuesSupported()) {
+				requestObjectEncryptionAlgValuesSupported.put(requestObjectEncryptionAlg);
+			}
+			if (requestObjectEncryptionAlgValuesSupported.length() > 0) {
+				jsonObj.put(REQUEST_OBJECT_ENCRYPTION_ALG_VALUES_SUPPORTED, requestObjectEncryptionAlgValuesSupported);
+			}
+
+			JSONArray requestObjectEncryptionEncValuesSupported = new JSONArray();
+			for (String requestObjectEncryptionEnc : appConfiguration.getRequestObjectEncryptionEncValuesSupported()) {
+				requestObjectEncryptionEncValuesSupported.put(requestObjectEncryptionEnc);
+			}
+			if (requestObjectEncryptionEncValuesSupported.length() > 0) {
+				jsonObj.put(REQUEST_OBJECT_ENCRYPTION_ENC_VALUES_SUPPORTED, requestObjectEncryptionEncValuesSupported);
+			}
+
+			JSONArray tokenEndpointAuthMethodsSupported = new JSONArray();
+			for (String tokenEndpointAuthMethod : appConfiguration.getTokenEndpointAuthMethodsSupported()) {
+				tokenEndpointAuthMethodsSupported.put(tokenEndpointAuthMethod);
+			}
+			if (tokenEndpointAuthMethodsSupported.length() > 0) {
+				jsonObj.put(TOKEN_ENDPOINT_AUTH_METHODS_SUPPORTED, tokenEndpointAuthMethodsSupported);
+			}
+
+			JSONArray tokenEndpointAuthSigningAlgValuesSupported = new JSONArray();
+			for (String tokenEndpointAuthSigningAlg : appConfiguration
+					.getTokenEndpointAuthSigningAlgValuesSupported()) {
+				tokenEndpointAuthSigningAlgValuesSupported.put(tokenEndpointAuthSigningAlg);
+			}
+			if (tokenEndpointAuthSigningAlgValuesSupported.length() > 0) {
+				jsonObj.put(TOKEN_ENDPOINT_AUTH_SIGNING_ALG_VALUES_SUPPORTED,
+						tokenEndpointAuthSigningAlgValuesSupported);
+			}
+
+			JSONArray displayValuesSupported = new JSONArray();
+			for (String display : appConfiguration.getDisplayValuesSupported()) {
+				displayValuesSupported.put(display);
+			}
+			if (displayValuesSupported.length() > 0) {
+				jsonObj.put(DISPLAY_VALUES_SUPPORTED, displayValuesSupported);
+			}
+
+			JSONArray claimTypesSupported = new JSONArray();
+			for (String claimType : appConfiguration.getClaimTypesSupported()) {
+				claimTypesSupported.put(claimType);
+			}
+			if (claimTypesSupported.length() > 0) {
+				jsonObj.put(CLAIM_TYPES_SUPPORTED, claimTypesSupported);
+			}
+
+			jsonObj.put(SERVICE_DOCUMENTATION, appConfiguration.getServiceDocumentation());
+
+			JSONArray idTokenTokenBindingCnfValuesSupported = new JSONArray();
+			for (String value : appConfiguration.getIdTokenTokenBindingCnfValuesSupported()) {
+				idTokenTokenBindingCnfValuesSupported.put(value);
+			}
+			jsonObj.put(ID_TOKEN_TOKEN_BINDING_CNF_VALUES_SUPPORTED, idTokenTokenBindingCnfValuesSupported);
+
+			JSONArray claimsLocalesSupported = new JSONArray();
+			for (String claimLocale : appConfiguration.getClaimsLocalesSupported()) {
+				claimsLocalesSupported.put(claimLocale);
+			}
+			if (claimsLocalesSupported.length() > 0) {
+				jsonObj.put(CLAIMS_LOCALES_SUPPORTED, claimsLocalesSupported);
+			}
+
+			JSONArray uiLocalesSupported = new JSONArray();
+			for (String uiLocale : appConfiguration.getUiLocalesSupported()) {
+				uiLocalesSupported.put(uiLocale);
+			}
+			if (uiLocalesSupported.length() > 0) {
+				jsonObj.put(UI_LOCALES_SUPPORTED, uiLocalesSupported);
+			}
+
+			JSONArray scopesSupported = new JSONArray();
+			JSONArray claimsSupported = new JSONArray();
+			JSONArray scopeToClaimsMapping = createScopeToClaimsMapping(scopesSupported, claimsSupported);
+			if (scopesSupported.length() > 0) {
+				jsonObj.put(SCOPES_SUPPORTED, scopesSupported);
+			}
+			if (claimsSupported.length() > 0) {
+				jsonObj.put(CLAIMS_SUPPORTED, claimsSupported);
+			}
+			jsonObj.put(SCOPE_TO_CLAIMS_MAPPING, scopeToClaimsMapping);
+
+			jsonObj.put(CLAIMS_PARAMETER_SUPPORTED, appConfiguration.getClaimsParameterSupported());
+			jsonObj.put(REQUEST_PARAMETER_SUPPORTED, appConfiguration.getRequestParameterSupported());
+			jsonObj.put(REQUEST_URI_PARAMETER_SUPPORTED, appConfiguration.getRequestUriParameterSupported());
+			jsonObj.put(REQUIRE_REQUEST_URI_REGISTRATION, appConfiguration.getRequireRequestUriRegistration());
+			jsonObj.put(OP_POLICY_URI, appConfiguration.getOpPolicyUri());
+			jsonObj.put(OP_TOS_URI, appConfiguration.getOpTosUri());
+			jsonObj.put(TLS_CLIENT_CERTIFICATE_BOUND_ACCESS_TOKENS, Boolean.TRUE);
+			jsonObj.put(BACKCHANNEL_LOGOUT_SUPPORTED, Boolean.TRUE);
+			jsonObj.put(BACKCHANNEL_LOGOUT_SESSION_SUPPORTED, Boolean.TRUE);
+			jsonObj.put(FRONTCHANNEL_LOGOUT_SUPPORTED, Boolean.TRUE);
+			jsonObj.put(FRONTCHANNEL_LOGOUT_SESSION_SUPPORTED, Boolean.TRUE);
+			jsonObj.put(FRONT_CHANNEL_LOGOUT_SESSION_SUPPORTED,
+					appConfiguration.getFrontChannelLogoutSessionSupported());
+
+            filterOutKeys(jsonObj, appConfiguration);
+
+			// CIBA Configuration
+			cibaConfigurationService.processConfiguration(jsonObj);
+            localResponseCache.putDiscoveryResponse(jsonObj);
+
+			out.println(ServerUtil.toPrettyJson(jsonObj).replace("\\/", "/"));
+		} catch (Exception e) {
+			log.error(e.getMessage(), e);
+		}
+	}
+
+    public static void filterOutKeys(JSONObject jsonObj, AppConfiguration appConfiguration) {
+        if (BooleanUtils.isTrue(appConfiguration.isAllowBlankValuesInDiscoveryResponse())) {
+            return;
+        }
+
+        // filter out keys with blank values
+        for (String key : new HashSet<>(jsonObj.keySet())) {
+            if (jsonObj.get(key) == null || StringUtils.isBlank(jsonObj.optString(key))) {
+                jsonObj.remove(key);
+            }
+        }
+    }
+
+	private String endpointUrl(String path) {
+		return StringUtils.replace(appConfiguration.getEndSessionEndpoint(), "/end_session", path);
+	}
+
+	/**
+	 * @deprecated theses params:
+	 *             <ul>
+	 *             <li>id_generation_endpoint</li>
+	 *             <li>introspection_endpoint</li>
+	 *             <li>auth_level_mapping</li>
+	 *             <li>scope_to_claims_mapping</li>
+	 *             </ul>
+	 *             will be moved from /.well-known/openid-configuration to
+	 *             /.well-known/gluu-configuration
+	 */
+	@Deprecated
+	private JSONArray createScopeToClaimsMapping(JSONArray scopesSupported, JSONArray claimsSupported) {
+		final JSONArray scopeToClaimMapping = new JSONArray();
+		Set<String> scopes = new HashSet<String>();
+		Set<String> claims = new HashSet<String>();
+
+		try {
+			for (Scope scope : scopeService.getAllScopesList()) {
+				if ((scope.getScopeType() == ScopeType.SPONTANEOUS && scope.isDeletable())
+						|| !(canShowInConfigEndpoint(scope.getAttributes()))) {
+					continue;
+				}
+
+				final JSONArray claimsList = new JSONArray();
+				final JSONObject mapping = new JSONObject();
+				mapping.put(scope.getId(), claimsList);
+				scopes.add(scope.getId());
+
+				scopeToClaimMapping.put(mapping);
+
+				if (ScopeType.DYNAMIC.equals(scope.getScopeType())) {
+					List<String> claimNames = externalDynamicScopeService
+							.executeExternalGetSupportedClaimsMethods(Arrays.asList(scope));
+					for (String claimName : claimNames) {
+						if (StringUtils.isNotBlank(claimName)) {
+							claimsList.put(claimName);
+							claims.add(claimName);
+						}
+					}
+				} else {
+					final List<String> claimIdList = scope.getOxAuthClaims();
+					if (claimIdList != null && !claimIdList.isEmpty()) {
+						for (String claimDn : claimIdList) {
+							final GluuAttribute attribute = attributeService.getAttributeByDn(claimDn);
+							final String claimName = attribute.getOxAuthClaimName();
+							if (StringUtils.isNotBlank(claimName)) {
+								claimsList.put(claimName);
+								claims.add(claimName);
+							}
+						}
+					}
+				}
+			}
+
+			for (String scope : scopes) {
+				scopesSupported.put(scope);
+			}
+			for (String claim : claims) {
+				claimsSupported.put(claim);
+			}
+		} catch (Exception e) {
+			log.error(e.getMessage(), e);
+		}
+		return scopeToClaimMapping;
+	}
+
+	private boolean canShowInConfigEndpoint(ScopeAttributes scopeAttributes) {
+		return scopeAttributes.isShowInConfigurationEndpoint();
+	}
+
+	/**
+	 * @deprecated theses params:
+	 *             <ul>
+	 *             <li>id_generation_endpoint</li>
+	 *             <li>introspection_endpoint</li>
+	 *             <li>auth_level_mapping</li>
+	 *             <li>scope_to_claims_mapping</li>
+	 *             </ul>
+	 *             will be moved from /.well-known/openid-configuration to
+	 *             /.well-known/gluu-configuration
+	 */
+	@Deprecated
+	private JSONObject createAuthLevelMapping() {
+		final JSONObject mappings = new JSONObject();
+		try {
+			Map<Integer, Set<String>> map = externalAuthenticationService.levelToAcrMapping();
+			for (Integer level : map.keySet())
+				mappings.put(level.toString(), map.get(level));
+		} catch (Exception e) {
+			log.error(e.getMessage(), e);
+		}
+		return mappings;
+	}
+
+	/**
+	 * Handles the HTTP <code>GET</code> method.
+	 *
+	 * @param request
+	 *            servlet request
+	 * @param response
+	 *            servlet response
+	 * @throws IOException
+	 *             if an I/O error occurs
+	 */
+	@Override
+	protected void doGet(HttpServletRequest request, HttpServletResponse response) throws IOException {
+		processRequest(request, response);
+	}
+
+	/**
+	 * Handles the HTTP <code>POST</code> method.
+	 *
+	 * @param request
+	 *            servlet request
+	 * @param response
+	 *            servlet response
+	 * @throws IOException
+	 *             if an I/O error occurs
+	 */
+	@Override
+	protected void doPost(HttpServletRequest request, HttpServletResponse response) throws IOException {
+		processRequest(request, response);
+	}
+
+	/**
+	 * Returns a short description of the servlet.
+	 *
+	 * @return a String containing servlet description
+	 */
+	@Override
+	public String getServletInfo() {
+		return "OpenID Provider Configuration Information";
+	}
+
+}
\ No newline at end of file
diff --git a/oxAuth/Server/src/main/java/org/gluu/oxauth/servlet/OxAuthFaviconServlet.java b/oxAuth/Server/src/main/java/org/gluu/oxauth/servlet/OxAuthFaviconServlet.java
new file mode 100644
index 00000000..d4194d5a
--- /dev/null
+++ b/oxAuth/Server/src/main/java/org/gluu/oxauth/servlet/OxAuthFaviconServlet.java
@@ -0,0 +1,79 @@
+package org.gluu.oxauth.servlet;
+
+import java.io.File;
+import java.io.FileInputStream;
+import java.io.IOException;
+import java.io.InputStream;
+import java.io.OutputStream;
+import java.util.Date;
+
+import javax.inject.Inject;
+import javax.servlet.ServletException;
+import javax.servlet.annotation.WebServlet;
+import javax.servlet.http.HttpServlet;
+import javax.servlet.http.HttpServletRequest;
+import javax.servlet.http.HttpServletResponse;
+
+import org.apache.commons.io.IOUtils;
+import org.apache.commons.lang.StringUtils;
+import org.gluu.oxauth.model.GluuOrganization;
+import org.gluu.oxauth.service.OrganizationService;
+import org.slf4j.Logger;
+import org.slf4j.LoggerFactory;
+@WebServlet(urlPatterns = "/servlet/favicon")
+public class OxAuthFaviconServlet extends HttpServlet {
+
+	@Inject
+	private OrganizationService organizationService;
+
+	private static final long serialVersionUID = 5445488800130871634L;
+
+	private static final Logger log = LoggerFactory.getLogger(OxAuthFaviconServlet.class);
+	public static final String BASE_OXAUTH_FAVICON_PATH = "/opt/gluu/jetty/oxauth/custom/static/favicon/";
+
+	@Override
+	protected void doGet(HttpServletRequest httpServletRequest, HttpServletResponse response)
+			throws ServletException, IOException {
+		response.setContentType("image/x-icon");
+		response.setDateHeader("Expires", new Date().getTime()+1000L*1800);
+		GluuOrganization organization = organizationService.getOrganization();
+		boolean hasSucceed = readCustomFavicon(response, organization);
+		if (!hasSucceed) {
+			readDefaultFavicon(response);
+		}
+	}
+
+	private boolean readDefaultFavicon(HttpServletResponse response) {
+		String defaultFaviconFileName = "/WEB-INF/static/favicon.ico";
+		try (InputStream in = getServletContext().getResourceAsStream(defaultFaviconFileName);
+				OutputStream out = response.getOutputStream()) {
+			IOUtils.copy(in, out);
+			return true;
+		} catch (IOException e) {
+			log.debug("Error loading default favicon: " + e.getMessage());
+			return false;
+		}
+	}
+
+	private boolean readCustomFavicon(HttpServletResponse response, GluuOrganization organization) {
+		if (organization.getOxAuthFaviconPath() == null || StringUtils.isEmpty(organization.getOxAuthFaviconPath())) {
+			return false;
+		}
+
+		File directory = new File(BASE_OXAUTH_FAVICON_PATH);
+		if (!directory.exists()) {
+			directory.mkdir();
+		}
+		File faviconPath = new File(organization.getOxAuthFaviconPath());
+		if (!faviconPath.exists()) {
+			return false;
+		}
+		try (InputStream in = new FileInputStream(faviconPath); OutputStream out = response.getOutputStream()) {
+			IOUtils.copy(in, out);
+			return true;
+		} catch (IOException e) {
+			log.debug("Error loading custom favicon: " + e.getMessage());
+			return false;
+		}
+	}
+}
diff --git a/oxAuth/Server/src/main/java/org/gluu/oxauth/servlet/OxAuthLogoServlet.java b/oxAuth/Server/src/main/java/org/gluu/oxauth/servlet/OxAuthLogoServlet.java
new file mode 100644
index 00000000..36a58e45
--- /dev/null
+++ b/oxAuth/Server/src/main/java/org/gluu/oxauth/servlet/OxAuthLogoServlet.java
@@ -0,0 +1,78 @@
+package org.gluu.oxauth.servlet;
+
+import java.io.File;
+import java.io.FileInputStream;
+import java.io.IOException;
+import java.io.InputStream;
+import java.io.OutputStream;
+import java.util.Date;
+
+import javax.inject.Inject;
+import javax.servlet.annotation.WebServlet;
+import javax.servlet.http.HttpServlet;
+import javax.servlet.http.HttpServletRequest;
+import javax.servlet.http.HttpServletResponse;
+
+import org.apache.commons.io.IOUtils;
+import org.apache.commons.lang.StringUtils;
+import org.gluu.oxauth.model.GluuOrganization;
+import org.gluu.oxauth.service.OrganizationService;
+import org.slf4j.Logger;
+import org.slf4j.LoggerFactory;
+
+@WebServlet(urlPatterns = "/servlet/logo")
+public class OxAuthLogoServlet extends HttpServlet {
+
+	private static final long serialVersionUID = 5445488800130871634L;
+
+	private static final Logger log = LoggerFactory.getLogger(OxAuthLogoServlet.class);
+
+	public static final String BASE_OXAUTH_LOGO_PATH = "/opt/gluu/jetty/oxauth/custom/static/logo/";
+
+	@Inject
+	private OrganizationService organizationService;
+
+	@Override
+	protected void doGet(HttpServletRequest request, HttpServletResponse response) {
+		response.setContentType("/image/jpg");
+		response.setDateHeader("Expires", new Date().getTime()+1000L*1800);
+		GluuOrganization organization = organizationService.getOrganization();
+		boolean hasSucceed = readCustomLogo(response, organization);
+		if (!hasSucceed) {
+			readDefaultLogo(response);
+		}
+	}
+
+	private boolean readDefaultLogo(HttpServletResponse response) {
+		String defaultLogoFileName = "/WEB-INF/static/logo.png";
+		try (InputStream in = getServletContext().getResourceAsStream(defaultLogoFileName);
+				OutputStream out = response.getOutputStream()) {
+			IOUtils.copy(in, out);
+			return true;
+		} catch (IOException e) {
+			log.debug("---------------Error loading default logo: " + e.getMessage());
+			return false;
+		}
+	}
+
+	private boolean readCustomLogo(HttpServletResponse response, GluuOrganization organization) {
+		if (organization.getOxAuthLogoPath() == null || StringUtils.isEmpty(organization.getOxAuthLogoPath())) {
+			return false;
+		}
+		File directory = new File(BASE_OXAUTH_LOGO_PATH);
+		if (!directory.exists()) {
+			directory.mkdir();
+		}
+		File logoPath = new File(organization.getOxAuthLogoPath());
+		if (!logoPath.exists()) {
+			return false;
+		}
+		try (InputStream in = new FileInputStream(logoPath); OutputStream out = response.getOutputStream()) {
+			IOUtils.copy(in, out);
+			return true;
+		} catch (IOException e) {
+			log.debug("Error loading custom logo: " + e.getMessage());
+			return false;
+		}
+	}
+}
diff --git a/oxAuth/Server/src/main/java/org/gluu/oxauth/servlet/SectorIdentifier.java b/oxAuth/Server/src/main/java/org/gluu/oxauth/servlet/SectorIdentifier.java
new file mode 100644
index 00000000..de957b10
--- /dev/null
+++ b/oxAuth/Server/src/main/java/org/gluu/oxauth/servlet/SectorIdentifier.java
@@ -0,0 +1,82 @@
+package org.gluu.oxauth.servlet;
+
+import org.gluu.oxauth.service.SectorIdentifierService;
+import org.json.JSONArray;
+import org.slf4j.Logger;
+
+import javax.inject.Inject;
+import javax.servlet.ServletException;
+import javax.servlet.annotation.WebServlet;
+import javax.servlet.http.HttpServlet;
+import javax.servlet.http.HttpServletRequest;
+import javax.servlet.http.HttpServletResponse;
+import java.io.IOException;
+import java.io.PrintWriter;
+
+/**
+ * @author Javier Rojas Blum
+ * @version January 15, 2016
+ */
+@WebServlet(urlPatterns = "/sectoridentifier/*")
+public class SectorIdentifier extends HttpServlet {
+
+	private static final long serialVersionUID = -1222077047492070618L;
+
+	@Inject
+    private Logger log;
+
+    @Inject
+    private SectorIdentifierService sectorIdentifierService;
+
+    protected void processRequest(HttpServletRequest request, HttpServletResponse response)
+            throws ServletException, IOException {
+        final HttpServletRequest httpRequest = request;
+        final HttpServletResponse httpResponse = response;
+
+        httpResponse.setContentType("application/json");
+        PrintWriter out = httpResponse.getWriter();
+        try {
+            String urlPath = httpRequest.getPathInfo();
+            String oxId = urlPath.substring(urlPath.lastIndexOf("/") + 1, urlPath.length());
+
+            org.oxauth.persistence.model.SectorIdentifier sectorIdentifier = sectorIdentifierService.getSectorIdentifierById(oxId);
+
+            JSONArray jsonArray = new JSONArray();
+
+            for (String redirectUri : sectorIdentifier.getRedirectUris()) {
+                jsonArray.put(redirectUri);
+            }
+
+            out.println(jsonArray.toString(4).replace("\\/", "/"));
+        } catch (Exception e) {
+            log.error(e.getMessage(), e);
+        } finally {
+            out.close();
+        }
+    }
+
+    /**
+     * Handles the HTTP
+     * <code>GET</code> method.
+     *
+     * @param request  servlet request
+     * @param response servlet response
+     * @throws ServletException if a servlet-specific error occurs
+     * @throws IOException      if an I/O error occurs
+     */
+    @Override
+    protected void doGet(HttpServletRequest request, HttpServletResponse response)
+            throws ServletException, IOException {
+        processRequest(request, response);
+    }
+
+    /**
+     * Returns a short description of the servlet.
+     *
+     * @return a String containing servlet description
+     */
+    @Override
+    public String getServletInfo() {
+        return "Sector Identifier";
+    }
+}
diff --git a/oxAuth/Server/src/main/java/org/gluu/oxauth/servlet/WebFinger.java b/oxAuth/Server/src/main/java/org/gluu/oxauth/servlet/WebFinger.java
new file mode 100644
index 00000000..a7c16f3f
--- /dev/null
+++ b/oxAuth/Server/src/main/java/org/gluu/oxauth/servlet/WebFinger.java
@@ -0,0 +1,135 @@
+/*
+ * oxAuth is available under the MIT License (2008). See http://opensource.org/licenses/MIT for full text.
+ *
+ * Copyright (c) 2014, Gluu
+ */
+
+package org.gluu.oxauth.servlet;
+
+import static org.gluu.oxauth.model.discovery.WebFingerParam.HREF;
+import static org.gluu.oxauth.model.discovery.WebFingerParam.LINKS;
+import static org.gluu.oxauth.model.discovery.WebFingerParam.REL;
+import static org.gluu.oxauth.model.discovery.WebFingerParam.REL_VALUE;
+import static org.gluu.oxauth.model.discovery.WebFingerParam.RESOURCE;
+import static org.gluu.oxauth.model.discovery.WebFingerParam.SUBJECT;
+
+import java.io.IOException;
+import java.io.PrintWriter;
+
+import javax.inject.Inject;
+import javax.servlet.ServletException;
+import javax.servlet.annotation.WebServlet;
+import javax.servlet.http.HttpServlet;
+import javax.servlet.http.HttpServletRequest;
+import javax.servlet.http.HttpServletResponse;
+
+import org.json.JSONArray;
+import org.json.JSONException;
+import org.json.JSONObject;
+import org.gluu.oxauth.model.configuration.AppConfiguration;
+import org.gluu.oxauth.model.discovery.OpenIdConnectDiscoveryParamsValidator;
+import org.slf4j.Logger;
+
+/**
+ * @author Javier Rojas Blum Date: 01.28.2013
+ */
+@WebServlet(urlPatterns = "/.well-known/webfinger")
+public class WebFinger extends HttpServlet {
+
+	private static final long serialVersionUID = -4708834950205359151L;
+
+	@Inject
+    private Logger log;
+	
+	@Inject
+	private AppConfiguration appConfiguration;
+
+    /**
+     * Processes requests for both HTTP <code>GET</code> and <code>POST</code> methods.
+     *
+     * @param request  servlet request
+     * @param response servlet response
+     * @throws javax.servlet.ServletException if a servlet-specific error occurs
+     * @throws java.io.IOException            if an I/O error occurs
+     */
+    protected void processRequest(HttpServletRequest request, HttpServletResponse response)
+            throws ServletException, IOException {
+        final HttpServletRequest httpRequest = request;
+        final HttpServletResponse httpResponse = response;
+
+        httpResponse.setContentType("application/jrd+json");
+        PrintWriter out = httpResponse.getWriter();
+
+        String resource = httpRequest.getParameter(RESOURCE);
+        String rel = httpRequest.getParameter(REL);
+
+        log.debug("Attempting to request OpenID Connect Discovery: " + resource + ", " + rel + ", Is Secure = " + httpRequest.isSecure());
+
+        try {
+            if (OpenIdConnectDiscoveryParamsValidator.validateParams(resource, rel)) {
+                if (rel == null || rel.equals(REL_VALUE)) {
+                    JSONObject jsonObj = new JSONObject();
+                    jsonObj.put(SUBJECT, resource);
+
+                    JSONArray linksJsonArray = new JSONArray();
+                    JSONObject linkJsonObject = new JSONObject();
+                    linkJsonObject.put(REL, REL_VALUE);
+                    linkJsonObject.put(HREF, appConfiguration.getIssuer());
+
+                    linksJsonArray.put(linkJsonObject);
+                    jsonObj.put(LINKS, linksJsonArray);
+
+                    out.println(jsonObj.toString(4).replace("\\/", "/"));
+                }
+            }
+        } catch (JSONException e) {
+        	log.error(e.getMessage(), e);
+        }
+
+        out.close();
+    }
+
+    /**
+     * Handles the HTTP <code>GET</code> method.
+     *
+     * @param request  servlet request
+     * @param response servlet response
+     * @throws javax.servlet.ServletException if a servlet-specific error occurs
+     * @throws java.io.IOException            if an I/O error occurs
+     */
+    @Override
+    protected void doGet
+    (HttpServletRequest
+             request, HttpServletResponse
+            response)
+            throws ServletException, IOException {
+        processRequest(request, response);
+    }
+
+    /**
+     * Handles the HTTP <code>POST</code> method.
+     *
+     * @param request  servlet request
+     * @param response servlet response
+     * @throws ServletException if a servlet-specific error occurs
+     * @throws IOException      if an I/O error occurs
+     */
+    @Override
+    protected void doPost
+    (HttpServletRequest
+             request, HttpServletResponse
+            response)
+            throws ServletException, IOException {
+        processRequest(request, response);
+    }
+
+    /**
+     * Returns a short description of the servlet.
+     *
+     * @return a String containing servlet description
+     */
+    @Override
+    public String getServletInfo() {
+        return "OpenID Connect Discovery";
+    }
+}
\ No newline at end of file
diff --git a/oxAuth/Server/src/main/java/org/gluu/oxauth/session/ws/rs/CheckSessionStatusRestWebServiceImpl.java b/oxAuth/Server/src/main/java/org/gluu/oxauth/session/ws/rs/CheckSessionStatusRestWebServiceImpl.java
new file mode 100644
index 00000000..c2b2401d
--- /dev/null
+++ b/oxAuth/Server/src/main/java/org/gluu/oxauth/session/ws/rs/CheckSessionStatusRestWebServiceImpl.java
@@ -0,0 +1,116 @@
+/*
+ * oxAuth is available under the MIT License (2008). See http://opensource.org/licenses/MIT for full text.
+ *
+ * Copyright (c) 2014, Gluu
+ */
+
+package org.gluu.oxauth.session.ws.rs;
+
+import com.fasterxml.jackson.annotation.JsonProperty;
+
+import org.gluu.oxauth.model.session.SessionId;
+import org.gluu.oxauth.service.CookieService;
+import org.gluu.oxauth.service.SessionIdService;
+import org.gluu.oxauth.util.ServerUtil;
+import org.gluu.util.StringHelper;
+import org.slf4j.Logger;
+
+import javax.inject.Inject;
+import javax.servlet.http.HttpServletRequest;
+import javax.servlet.http.HttpServletResponse;
+import javax.ws.rs.GET;
+import javax.ws.rs.Path;
+import javax.ws.rs.Produces;
+import javax.ws.rs.core.Context;
+import javax.ws.rs.core.MediaType;
+import javax.ws.rs.core.Response;
+import javax.ws.rs.core.SecurityContext;
+import java.io.IOException;
+import java.util.Date;
+
+/**
+ * @author Yuriy Movchan
+ * @version August 9, 2017
+ */
+@Path("/")
+public class CheckSessionStatusRestWebServiceImpl {
+
+    @Inject
+    private Logger log;
+
+    @Inject
+    private SessionIdService sessionIdService;
+
+    @Inject
+    private CookieService cookieService;
+
+    @GET
+    @Path("/session_status")
+    @Produces({MediaType.APPLICATION_JSON})
+    public Response requestCheckSessionStatus(@Context HttpServletRequest httpRequest, @Context HttpServletResponse httpResponse,
+                                              @Context SecurityContext securityContext) throws IOException {
+        String sessionIdCookie = cookieService.getSessionIdFromCookie(httpRequest);
+        log.debug("Found session '{}' cookie: '{}'", CookieService.SESSION_ID_COOKIE_NAME, sessionIdCookie);
+
+        CheckSessionResponse response = new CheckSessionResponse("unknown", "");
+
+        SessionId sessionId = sessionIdService.getSessionId(sessionIdCookie);
+        if (sessionId != null) {
+            response.setState(sessionId.getState().getValue());
+            response.setAuthTime(sessionId.getAuthenticationTime());
+
+            String sessionCustomState = sessionId.getSessionAttributes().get(SessionIdService.SESSION_CUSTOM_STATE);
+            if (StringHelper.isNotEmpty(sessionCustomState)) {
+                response.setCustomState(sessionCustomState);
+            }
+        }
+
+        String responseJson = ServerUtil.asJson(response);
+        log.debug("Check session status response: '{}'", responseJson);
+
+        return Response.ok().type(MediaType.APPLICATION_JSON).entity(responseJson).build();
+    }
+
+    class CheckSessionResponse {
+
+        @JsonProperty(value = "state")
+        String state;
+
+        @JsonProperty(value = "custom_state")
+        String customState;
+
+        @JsonProperty(value = "auth_time")
+        Date authTime;
+
+        public CheckSessionResponse(String state, String stateExt) {
+            this.state = state;
+            this.customState = stateExt;
+        }
+
+        public String getState() {
+            return state;
+        }
+
+        public void setState(String state) {
+            this.state = state;
+        }
+
+        public String getCustomState() {
+            return customState;
+        }
+
+        public void setCustomState(String customState) {
+            this.customState = customState;
+        }
+
+        public Date getAuthTime() {
+            return authTime;
+        }
+
+        public void setAuthTime(Date authTime) {
+            this.authTime = authTime;
+        }
+
+    }
+
+}
diff --git a/oxAuth/Server/src/main/java/org/gluu/oxauth/session/ws/rs/EndSessionRestWebService.java b/oxAuth/Server/src/main/java/org/gluu/oxauth/session/ws/rs/EndSessionRestWebService.java
new file mode 100644
index 00000000..e2d280b1
--- /dev/null
+++ b/oxAuth/Server/src/main/java/org/gluu/oxauth/session/ws/rs/EndSessionRestWebService.java
@@ -0,0 +1,41 @@
+/*
+ * oxAuth is available under the MIT License (2008). See http://opensource.org/licenses/MIT for full text.
+ *
+ * Copyright (c) 2014, Gluu
+ */
+
+package org.gluu.oxauth.session.ws.rs;
+
+import org.gluu.oxauth.model.session.EndSessionRequestParam;
+
+import javax.servlet.http.HttpServletRequest;
+import javax.servlet.http.HttpServletResponse;
+import javax.ws.rs.GET;
+import javax.ws.rs.Path;
+import javax.ws.rs.Produces;
+import javax.ws.rs.QueryParam;
+import javax.ws.rs.core.Context;
+import javax.ws.rs.core.MediaType;
+import javax.ws.rs.core.Response;
+import javax.ws.rs.core.SecurityContext;
+
+/**
+ * @author Javier Rojas Blum
+ * @version August 9, 2017
+ */
+public interface EndSessionRestWebService {
+
+    @GET
+    @Path("/end_session")
+    @Produces({MediaType.TEXT_PLAIN})
+    Response requestEndSession(@QueryParam(EndSessionRequestParam.ID_TOKEN_HINT) String idTokenHint,
+            @QueryParam(EndSessionRequestParam.POST_LOGOUT_REDIRECT_URI) String postLogoutRedirectUri,
+            @QueryParam(EndSessionRequestParam.STATE) String state,
+            @QueryParam("session_id") String sessionId,
+            @QueryParam("sid") String sid,
+            @QueryParam("client_id") String clientId,
+            @Context HttpServletRequest httpRequest,
+            @Context HttpServletResponse httpResponse,
+            @Context SecurityContext securityContext);
+
+}
\ No newline at end of file
diff --git a/oxAuth/Server/src/main/java/org/gluu/oxauth/session/ws/rs/EndSessionRestWebServiceImpl.java b/oxAuth/Server/src/main/java/org/gluu/oxauth/session/ws/rs/EndSessionRestWebServiceImpl.java
new file mode 100644
index 00000000..16e582ed
--- /dev/null
+++ b/oxAuth/Server/src/main/java/org/gluu/oxauth/session/ws/rs/EndSessionRestWebServiceImpl.java
@@ -0,0 +1,614 @@
+/*
+ * oxAuth is available under the MIT License (2008). See http://opensource.org/licenses/MIT for full text.
+ *
+ * Copyright (c) 2014, Gluu
+ */
+
+package org.gluu.oxauth.session.ws.rs;
+
+import com.google.common.collect.Maps;
+import com.google.common.collect.Sets;
+import org.apache.commons.lang.StringUtils;
+import org.gluu.model.security.Identity;
+import org.gluu.oxauth.audit.ApplicationAuditLogger;
+import org.gluu.oxauth.model.audit.Action;
+import org.gluu.oxauth.model.audit.OAuth2AuditLog;
+import org.gluu.oxauth.model.authorize.AuthorizeRequestParam;
+import org.gluu.oxauth.model.common.AuthorizationGrant;
+import org.gluu.oxauth.model.common.AuthorizationGrantList;
+import org.gluu.oxauth.model.common.User;
+import org.gluu.oxauth.model.config.Constants;
+import org.gluu.oxauth.model.configuration.AppConfiguration;
+import org.gluu.oxauth.model.crypto.AbstractCryptoProvider;
+import org.gluu.oxauth.model.error.ErrorHandlingMethod;
+import org.gluu.oxauth.model.error.ErrorResponseFactory;
+import org.gluu.oxauth.model.exception.InvalidJwtException;
+import org.gluu.oxauth.model.gluu.GluuErrorResponseType;
+import org.gluu.oxauth.model.jwt.Jwt;
+import org.gluu.oxauth.model.registration.Client;
+import org.gluu.oxauth.model.session.EndSessionErrorResponseType;
+import org.gluu.oxauth.model.session.SessionId;
+import org.gluu.oxauth.model.token.JsonWebResponse;
+import org.gluu.oxauth.model.util.URLPatternList;
+import org.gluu.oxauth.model.util.Util;
+import org.gluu.oxauth.service.*;
+import org.gluu.oxauth.service.external.ExternalApplicationSessionService;
+import org.gluu.oxauth.service.external.ExternalEndSessionService;
+import org.gluu.oxauth.service.external.context.EndSessionContext;
+import org.gluu.oxauth.util.ServerUtil;
+import org.gluu.oxauth.util.TokenHashUtil;
+import org.gluu.util.Pair;
+import org.gluu.util.StringHelper;
+import org.slf4j.Logger;
+
+import javax.inject.Inject;
+import javax.servlet.http.HttpServletRequest;
+import javax.servlet.http.HttpServletResponse;
+import javax.ws.rs.Path;
+import javax.ws.rs.WebApplicationException;
+import javax.ws.rs.core.MediaType;
+import javax.ws.rs.core.Response;
+import javax.ws.rs.core.SecurityContext;
+import java.net.URI;
+import java.net.URISyntaxException;
+import java.util.Map;
+import java.util.Set;
+import java.util.concurrent.ExecutorService;
+import java.util.concurrent.TimeUnit;
+
+import static org.apache.commons.lang.BooleanUtils.isTrue;
+
+/**
+ * @author Javier Rojas Blum
+ * @author Yuriy Movchan
+ * @author Yuriy Zabrovarnyy
+ * @version December 8, 2018
+ */
+@Path("/")
+public class EndSessionRestWebServiceImpl implements EndSessionRestWebService {
+
+    @Inject
+    private Logger log;
+
+    @Inject
+    private ErrorResponseFactory errorResponseFactory;
+
+    @Inject
+    private RedirectionUriService redirectionUriService;
+
+    @Inject
+    private AuthorizationGrantList authorizationGrantList;
+
+    @Inject
+    private ExternalApplicationSessionService externalApplicationSessionService;
+
+    @Inject
+    private ExternalEndSessionService externalEndSessionService;
+
+    @Inject
+    private SessionIdService sessionIdService;
+
+    @Inject
+    private CookieService cookieService;
+
+    @Inject
+    private ClientService clientService;
+
+    @Inject
+    private GrantService grantService;
+
+    @Inject
+    private Identity identity;
+
+    @Inject
+    private ApplicationAuditLogger applicationAuditLogger;
+
+    @Inject
+    private AppConfiguration appConfiguration;
+
+    @Inject
+    private LogoutTokenFactory logoutTokenFactory;
+
+    @Inject
+    private AbstractCryptoProvider cryptoProvider;
+
+    @Override
+    public Response requestEndSession(String idTokenHint, String postLogoutRedirectUri, String state, String sessionId, String sid, String clientId,
+                                      HttpServletRequest httpRequest, HttpServletResponse httpResponse, SecurityContext sec) {
+        try {
+            log.debug("Attempting to end session, idTokenHint: {}, postLogoutRedirectUri: {}, sessionId: {}, sid: {}, Is Secure = {}, state = {}, client_id = {}",
+                    idTokenHint, postLogoutRedirectUri, sessionId, sid, sec.isSecure(), state, clientId);
+
+            if (StringUtils.isBlank(sid) && StringUtils.isNotBlank(sessionId))
+                sid = sessionId; // backward compatibility. WIll be removed in next major release.
+
+            final SessionId sidSession = validateSidRequestParameter(sid, postLogoutRedirectUri, state, clientId);
+            Jwt validatedIdToken = validateIdTokenHint(idTokenHint, sidSession, postLogoutRedirectUri, state, clientId);
+
+            final Pair<SessionId, AuthorizationGrant> pair = getPair(idTokenHint, validatedIdToken, sid, httpRequest);
+            if (pair.getFirst() == null) {
+                final String reason = "Failed to identify session by session_id query parameter or by session_id cookie.";
+                throw new WebApplicationException(createErrorResponse(postLogoutRedirectUri, EndSessionErrorResponseType.INVALID_GRANT_AND_SESSION, reason, state, clientId));
+            }
+
+            postLogoutRedirectUri = validatePostLogoutRedirectUri(postLogoutRedirectUri, pair, state, clientId);
+            validateSid(postLogoutRedirectUri, validatedIdToken, pair.getFirst(), state, clientId);
+
+            endSession(pair, httpRequest, httpResponse);
+            auditLogging(httpRequest, pair);
+
+            Set<Client> clients = getSsoClients(pair);
+            Set<String> frontchannelUris = Sets.newHashSet();
+            Map<String, Client> backchannelUris = Maps.newHashMap();
+
+            for (Client client : clients) {
+                boolean hasBackchannel = false;
+                for (String logoutUri : client.getAttributes().getBackchannelLogoutUri()) {
+                    if (Util.isNullOrEmpty(logoutUri)) {
+                        continue; // skip if logout_uri is blank
+                    }
+                    backchannelUris.put(logoutUri, client);
+                    hasBackchannel = true;
+                }
+
+                if (hasBackchannel) { // client has backchannel_logout_uri
+                    continue;
+                }
+
+                for (String logoutUri : client.getFrontChannelLogoutUri()) {
+                    if (Util.isNullOrEmpty(logoutUri)) {
+                        continue; // skip if logout_uri is blank
+                    }
+
+                    if (client.getFrontChannelLogoutSessionRequired()) {
+                        logoutUri = EndSessionUtils.appendSid(logoutUri, pair.getFirst().getOutsideSid(), appConfiguration.getIssuer());
+                    }
+                    frontchannelUris.add(logoutUri);
+                }
+            }
+
+            backChannel(backchannelUris, pair.getSecond(), pair.getFirst());
+
+            if (frontchannelUris.isEmpty() && StringUtils.isNotBlank(postLogoutRedirectUri)) { // no front-channel
+                log.trace("No frontchannel_redirect_uri's found in clients involved in SSO.");
+
+                try {
+                    final String redirectTo = EndSessionUtils.appendState(postLogoutRedirectUri, state);
+                    log.trace("Redirect to postlogout_redirect_uri: {}", redirectTo);
+                    return Response.status(Response.Status.FOUND).location(new URI(redirectTo)).build();
+                } catch (URISyntaxException e) {
+                    final String message = "Failed to create URI for " + postLogoutRedirectUri + " postlogout_redirect_uri.";
+                    log.error(message);
+                    return Response.status(Response.Status.BAD_REQUEST).entity(errorResponseFactory.errorAsJson(EndSessionErrorResponseType.INVALID_REQUEST, message)).build();
+                }
+            }
+
+
+            return httpBased(frontchannelUris, postLogoutRedirectUri, state, pair, httpRequest);
+        } catch (WebApplicationException e) {
+            if (e.getResponse() != null) {
+                return e.getResponse();
+            }
+            throw e;
+        } catch (Exception e) {
+            log.error(e.getMessage(), e);
+            throw new WebApplicationException(Response
+                    .status(Response.Status.INTERNAL_SERVER_ERROR)
+                    .entity(errorResponseFactory.getJsonErrorResponse(GluuErrorResponseType.SERVER_ERROR))
+                    .build());
+        }
+    }
+
+    private void validateSid(String postLogoutRedirectUri, Jwt idToken, SessionId session, String state, String clientId) {
+        if (idToken == null) {
+            return;
+        }
+        final String sid = idToken.getClaims().getClaimAsString("sid");
+        if (StringUtils.isNotBlank(sid) && !sid.equals(session.getOutsideSid())) {
+            log.error("sid in id_token_hint does not match sid of the session. id_token_hint sid: {}, session sid: {}", sid, session.getOutsideSid());
+            throw new WebApplicationException(createErrorResponse(postLogoutRedirectUri, EndSessionErrorResponseType.INVALID_REQUEST, "sid in id_token_hint does not match sid of the session", state, clientId));
+        }
+    }
+
+    private void backChannel(Map<String, Client> backchannelUris, AuthorizationGrant grant, SessionId session) throws InterruptedException {
+        if (backchannelUris.isEmpty()) {
+            return;
+        }
+
+        log.trace("backchannel_redirect_uri's: " + backchannelUris);
+
+        User user = grant != null ? grant.getUser() : null;
+        if (user == null) {
+            user = sessionIdService.getUser(session);
+        }
+
+        final ExecutorService executorService = EndSessionUtils.getExecutorService();
+        for (final Map.Entry<String, Client> entry : backchannelUris.entrySet()) {
+            final JsonWebResponse logoutToken = logoutTokenFactory.createLogoutToken(entry.getValue(), session.getOutsideSid(), user);
+            if (logoutToken == null) {
+                log.error("Failed to create logout_token for client: " + entry.getValue().getClientId());
+                return;
+            }
+            executorService.execute(() -> EndSessionUtils.callRpWithBackchannelUri(entry.getKey(), logoutToken.toString()));
+        }
+        executorService.shutdown();
+        executorService.awaitTermination(30, TimeUnit.SECONDS);
+        log.trace("Finished backchannel calls.");
+    }
+
+    private Response createErrorResponse(String postLogoutRedirectUri, EndSessionErrorResponseType error, String reason, String state, String clientId) {
+        log.debug("Creating error response, reason: {}", reason);
+        try {
+            if (allowPostLogoutRedirect(postLogoutRedirectUri, clientId)) {
+                if (ErrorHandlingMethod.REMOTE == appConfiguration.getErrorHandlingMethod()) {
+                    String separator = postLogoutRedirectUri.contains("?") ? "&" : "?";
+                    postLogoutRedirectUri = postLogoutRedirectUri + separator + errorResponseFactory.getErrorAsQueryString(error, "", reason);
+                }
+                final String redirectTo = EndSessionUtils.appendState(postLogoutRedirectUri, state);
+                log.trace("Redirect error to {}", redirectTo);
+                return Response.status(Response.Status.FOUND).location(new URI(redirectTo)).build();
+            }
+        } catch (URISyntaxException e) {
+            log.error("Can't perform redirect", e);
+        }
+
+        log.trace("Return 400 - error {}, reason {}", error, reason);
+        return Response.status(Response.Status.BAD_REQUEST).entity(errorResponseFactory.errorAsJson(error, reason)).build();
+    }
+
+    /**
+     * Allow post logout redirect without validation only if:
+     * allowPostLogoutRedirectWithoutValidation = true and post_logout_redirect_uri is white listed
+     */
+    private boolean allowPostLogoutRedirect(String postLogoutRedirectUri, String clientId) {
+        if (StringUtils.isBlank(postLogoutRedirectUri)) {
+            log.trace("Post logout redirect is blank.");
+            return false;
+        }
+
+
+        final Boolean allowPostLogoutRedirectWithoutValidation = appConfiguration.getAllowPostLogoutRedirectWithoutValidation();
+        boolean isOk = allowPostLogoutRedirectWithoutValidation != null &&
+                allowPostLogoutRedirectWithoutValidation &&
+                isUrlWhiteListed(postLogoutRedirectUri);
+        if (isOk) {
+            log.trace("Post logout redirect allowed by 'clientWhiteList' {}", appConfiguration.getClientWhiteList());
+            return true;
+        }
+
+        if (StringUtils.isNotBlank(clientId) && StringUtils.isNotBlank(redirectionUriService.validatePostLogoutRedirectUri(clientId, postLogoutRedirectUri))) {
+            log.trace("Post logout redirect allowed by client_id {}", clientId);
+            return true;
+        }
+
+        log.trace("Post logout redirect is denied.");
+        return false;
+
+    }
+
+    public boolean isUrlWhiteListed(String url) {
+        final boolean result = new URLPatternList(appConfiguration.getClientWhiteList()).isUrlListed(url);
+        log.trace("White listed result: {}, url: {}", result, url);
+        return result;
+    }
+
+    private SessionId validateSidRequestParameter(String sid, String postLogoutRedirectUri, String state, String clientId) {
+        // sid is not required but if it is present then we must validate it #831
+        if (StringUtils.isNotBlank(sid)) {
+            SessionId sessionIdObject = sessionIdService.getSessionBySid(sid);
+            if (sessionIdObject == null) {
+                final String reason = "sid parameter in request is not valid. Logout is rejected. sid parameter in request can be skipped or otherwise valid value must be provided.";
+                log.error(reason);
+                throw new WebApplicationException(createErrorResponse(postLogoutRedirectUri, EndSessionErrorResponseType.INVALID_GRANT_AND_SESSION, reason, state, clientId));
+            }
+            return sessionIdObject;
+        }
+        return null;
+    }
+
+    protected Jwt validateIdTokenHint(String idTokenHint, SessionId sidSession, String postLogoutRedirectUri, String state, String clientId) {
+        final boolean isIdTokenHintRequired = isTrue(appConfiguration.getForceIdTokenHintPrecense());
+        if (isIdTokenHintRequired && StringUtils.isBlank(idTokenHint)) { // must be present for logout tests #1279
+            final String reason = "id_token_hint is not set";
+            log.trace(reason);
+            throw new WebApplicationException(createErrorResponse(postLogoutRedirectUri, EndSessionErrorResponseType.INVALID_REQUEST, reason, state, clientId));
+        }
+
+        if (isIdTokenHintRequired && StringUtils.isBlank(idTokenHint)) { // must be present for logout tests #1279
+            final String reason = "id_token_hint is not set";
+            log.trace(reason);
+            throw new WebApplicationException(createErrorResponse(postLogoutRedirectUri, EndSessionErrorResponseType.INVALID_REQUEST, reason, state, clientId));
+        }
+
+        if (StringUtils.isBlank(idTokenHint) && !isIdTokenHintRequired) {
+            return null;
+        }
+
+        // id_token_hint is not required but if it is present then we must validate it #831
+        if (StringUtils.isNotBlank(idTokenHint) || isIdTokenHintRequired) {
+            final boolean isRejectEndSessionIfIdTokenExpired = appConfiguration.getRejectEndSessionIfIdTokenExpired();
+            final AuthorizationGrant tokenHintGrant = getTokenHintGrant(idTokenHint);
+
+            if (tokenHintGrant == null && isRejectEndSessionIfIdTokenExpired) {
+                final String reason = "id_token_hint is not valid. Logout is rejected. id_token_hint can be skipped or otherwise valid value must be provided.";
+                log.trace(reason);
+                throw new WebApplicationException(createErrorResponse(postLogoutRedirectUri, EndSessionErrorResponseType.INVALID_GRANT_AND_SESSION, reason, state, clientId));
+            }
+            try {
+                final Jwt jwt = Jwt.parse(idTokenHint);
+                if (jwt == null) {
+                    log.error("Unable to parse id_token_hint as JWT: {}", idTokenHint);
+                    throw new WebApplicationException(createErrorResponse(postLogoutRedirectUri, EndSessionErrorResponseType.INVALID_GRANT_AND_SESSION, "Unable to parse id_token_hint as JWT.", state, clientId));
+                }
+                if (tokenHintGrant != null) { // id_token is in db
+                    log.debug("Found id_token in db.");
+                    return jwt;
+                }
+                validateIdTokenSignature(sidSession, jwt, postLogoutRedirectUri, state, clientId);
+                log.debug("id_token is validated successfully.");
+                return jwt;
+            } catch (InvalidJwtException e) {
+                log.error("Unable to parse id_token_hint as JWT.", e);
+                throw new WebApplicationException(createErrorResponse(postLogoutRedirectUri, EndSessionErrorResponseType.INVALID_GRANT_AND_SESSION, "Unable to parse id_token_hint as JWT.", state, clientId));
+            } catch (WebApplicationException e) {
+                throw e;
+            } catch (Exception e) {
+                log.error("Unable to validate id_token_hint as JWT.", e);
+                throw new WebApplicationException(createErrorResponse(postLogoutRedirectUri, EndSessionErrorResponseType.INVALID_GRANT_AND_SESSION, "Unable to validate id_token_hint as JWT.", state, clientId));
+            }
+        }
+        return null;
+    }
+
+    private void validateIdTokenSignature(SessionId sidSession, Jwt jwt, String postLogoutRedirectUri, String state, String clientId) throws Exception {
+        // verify jwt signature if we can't find it in db
+        if (!cryptoProvider.verifySignature(jwt.getSigningInput(), jwt.getEncodedSignature(), jwt.getHeader().getKeyId(),
+                null, null, jwt.getHeader().getSignatureAlgorithm())) {
+            log.error("id_token signature verification failed.");
+            throw new WebApplicationException(createErrorResponse(postLogoutRedirectUri, EndSessionErrorResponseType.INVALID_GRANT_AND_SESSION, "id_token signature verification failed.", state, clientId));
+        }
+
+        if (isTrue(appConfiguration.getAllowEndSessionWithUnmatchedSid())) {
+            return;
+        }
+        final String sidClaim = jwt.getClaims().getClaimAsString("sid");
+        if (sidSession != null && StringUtils.equals(sidSession.getOutsideSid(), sidClaim)) {
+            return;
+        }
+        log.error("sid claim from id_token does not match to any valid session on AS.");
+        throw new WebApplicationException(createErrorResponse(postLogoutRedirectUri, EndSessionErrorResponseType.INVALID_GRANT_AND_SESSION, "sid claim from id_token does not match to any valid session on AS.", state, clientId));
+    }
+
+    protected AuthorizationGrant getTokenHintGrant(String idTokenHint) {
+        if (StringUtils.isBlank(idTokenHint)) {
+            return null;
+        }
+
+        AuthorizationGrant authorizationGrant = authorizationGrantList.getAuthorizationGrantByIdToken(TokenHashUtil.hash(idTokenHint));
+        if (authorizationGrant != null) {
+            return authorizationGrant;
+        }
+
+        authorizationGrant = authorizationGrantList.getAuthorizationGrantByIdToken(idTokenHint);
+        if (authorizationGrant != null) {
+            return authorizationGrant;
+        }
+
+        Boolean endSessionWithAccessToken = appConfiguration.getEndSessionWithAccessToken();
+        if ((endSessionWithAccessToken != null) && endSessionWithAccessToken) {
+            return authorizationGrantList.getAuthorizationGrantByAccessToken(idTokenHint);
+        }
+        return null;
+    }
+
+
+    public String validatePostLogoutRedirectUri(String postLogoutRedirectUri, Pair<SessionId, AuthorizationGrant> pair, String state, String clientId) {
+        try {
+            if (StringUtils.isBlank(postLogoutRedirectUri)) {
+                return "";
+            }
+            if (isTrue(appConfiguration.getAllowPostLogoutRedirectWithoutValidation()) && isUrlWhiteListed(postLogoutRedirectUri)) {
+                log.trace("Skipped post_logout_redirect_uri validation (because allowPostLogoutRedirectWithoutValidation=true and white listed)");
+                return postLogoutRedirectUri;
+            }
+
+            String result;
+            if (pair.getSecond() == null) {
+                result = redirectionUriService.validatePostLogoutRedirectUri(pair.getFirst(), postLogoutRedirectUri);
+            } else {
+                result = redirectionUriService.validatePostLogoutRedirectUri(pair.getSecond().getClient().getClientId(), postLogoutRedirectUri);
+            }
+
+            if (StringUtils.isBlank(result) && StringUtils.isNotBlank(clientId)) {
+                result = redirectionUriService.validatePostLogoutRedirectUri(clientId, postLogoutRedirectUri);
+                log.trace("Validated post_logout_redirect_uri: {} against client_id: {}, result: {}" , postLogoutRedirectUri, clientId, result);
+            }
+
+            if (StringUtils.isBlank(result)) {
+                log.trace("Failed to validate post_logout_redirect_uri.");
+                throw new WebApplicationException(createErrorResponse(postLogoutRedirectUri, EndSessionErrorResponseType.POST_LOGOUT_URI_NOT_ASSOCIATED_WITH_CLIENT, "", state, clientId));
+            }
+
+            if (StringUtils.isNotBlank(result)) {
+                return result;
+            }
+            log.trace("Unable to validate post_logout_redirect_uri.");
+            throw new WebApplicationException(createErrorResponse(postLogoutRedirectUri, EndSessionErrorResponseType.POST_LOGOUT_URI_NOT_ASSOCIATED_WITH_CLIENT, "", state, clientId));
+        } catch (WebApplicationException e) {
+            if (pair.getFirst() != null) {
+                log.error(e.getMessage(), e);
+                throw new WebApplicationException(createErrorResponse(postLogoutRedirectUri, EndSessionErrorResponseType.POST_LOGOUT_URI_NOT_ASSOCIATED_WITH_CLIENT, "", state, clientId));
+            } else {
+                throw e;
+            }
+        }
+    }
+
+    private Response httpBased(Set<String> frontchannelUris, String postLogoutRedirectUri, String state, Pair<SessionId, AuthorizationGrant> pair, HttpServletRequest httpRequest) {
+        try {
+            final EndSessionContext context = new EndSessionContext(httpRequest, frontchannelUris, postLogoutRedirectUri, pair.getFirst());
+            final String htmlFromScript = externalEndSessionService.getFrontchannelHtml(context);
+            if (StringUtils.isNotBlank(htmlFromScript)) {
+                log.debug("HTML from `getFrontchannelHtml` external script: " + htmlFromScript);
+                return okResponse(htmlFromScript);
+            }
+        } catch (Exception e) {
+            log.error(e.getMessage(), e);
+        }
+
+        // default handling
+        final String html = EndSessionUtils.createFronthannelHtml(frontchannelUris, postLogoutRedirectUri, state);
+        log.debug("Constructed html logout page: " + html);
+        return okResponse(html);
+    }
+
+    private Response okResponse(String html) {
+        return Response.ok().
+                cacheControl(ServerUtil.cacheControl(true, true)).
+                header("Pragma", "no-cache").
+                type(MediaType.TEXT_HTML_TYPE).entity(html).
+                build();
+    }
+
+    private Pair<SessionId, AuthorizationGrant> getPair(String idTokenHint, Jwt validatedIdToken, String sid, HttpServletRequest httpRequest) {
+        AuthorizationGrant authorizationGrant = authorizationGrantList.getAuthorizationGrantByIdToken(idTokenHint);
+        if (authorizationGrant == null) {
+            Boolean endSessionWithAccessToken = appConfiguration.getEndSessionWithAccessToken();
+            if ((endSessionWithAccessToken != null) && endSessionWithAccessToken) {
+                authorizationGrant = authorizationGrantList.getAuthorizationGrantByAccessToken(idTokenHint);
+            }
+        }
+
+        SessionId sessionId = null;
+
+        try {
+            String cookieSessionId = cookieService.getSessionIdFromCookie(httpRequest);
+            if (StringHelper.isNotEmpty(cookieSessionId)) {
+                sessionId = sessionIdService.getSessionId(cookieSessionId);
+            }
+
+            if (sessionId == null && StringUtils.isNotBlank(sid)) {
+                sessionId = sessionIdService.getSessionBySid(sid);
+            }
+
+            if (sessionId == null && validatedIdToken != null) {
+                final String sidClaim = validatedIdToken.getClaims().getClaimAsString("sid");
+                log.trace("id_token sid value: {}", sidClaim);
+
+                if (StringUtils.isNotBlank(sidClaim)) {
+                    sessionId = sessionIdService.getSessionBySid(sidClaim);
+                }
+            }
+            if (sessionId == null) {
+                log.trace("Unable to find session for ending.");
+            } else {
+                log.trace("Found session for ending successfully.");
+            }
+
+        } catch (Exception e) {
+            log.error("Failed to find current session id.", e);
+        }
+        return new Pair<>(sessionId, authorizationGrant);
+    }
+
+    private void endSession(Pair<SessionId, AuthorizationGrant> pair, HttpServletRequest httpRequest, HttpServletResponse httpResponse) {
+        // Clean up authorization session
+        removeConsentSessionId(httpRequest, httpResponse);
+
+        removeSessionId(pair, httpResponse);
+
+        boolean isExternalLogoutPresent;
+        boolean externalLogoutResult = false;
+
+        isExternalLogoutPresent = externalApplicationSessionService.isEnabled();
+        if (isExternalLogoutPresent) {
+            String userName = pair.getFirst().getSessionAttributes().get(Constants.AUTHENTICATED_USER);
+            externalLogoutResult = externalApplicationSessionService.executeExternalEndSessionMethods(httpRequest, pair.getFirst());
+            log.info("End session result for '{}': '{}'", userName, externalLogoutResult);
+        }
+
+        boolean isGrantAndExternalLogoutSuccessful = isExternalLogoutPresent && externalLogoutResult;
+        if (isExternalLogoutPresent && !isGrantAndExternalLogoutSuccessful) {
+            throw errorResponseFactory.createWebApplicationException(Response.Status.UNAUTHORIZED, EndSessionErrorResponseType.INVALID_GRANT, "External logout is present but executed external logout script returned failed result.");
+        }
+
+        grantService.logout(pair.getFirst().getDn());
+
+        if (identity != null) {
+            identity.logout();
+        }
+    }
+
+    private Set<Client> getSsoClients(Pair<SessionId, AuthorizationGrant> pair) {
+        SessionId sessionId = pair.getFirst();
+        AuthorizationGrant authorizationGrant = pair.getSecond();
+        if (sessionId == null) {
+            log.error("session_id is not passed to endpoint (as cookie or manually). Therefore unable to match clients for session_id.");
+            return Sets.newHashSet();
+        }
+
+        final Set<Client> clients = sessionId.getPermissionGrantedMap() != null ?
+                clientService.getClient(sessionId.getPermissionGrantedMap().getClientIds(true), true) :
+                Sets.newHashSet();
+        if (authorizationGrant != null) {
+            clients.add(authorizationGrant.getClient());
+        }
+        return clients;
+    }
+
+    private void removeSessionId(Pair<SessionId, AuthorizationGrant> pair, HttpServletResponse httpResponse) {
+        try {
+            boolean result = sessionIdService.remove(pair.getFirst());
+            if (!result) {
+                log.error("Failed to remove session_id '{}'", pair.getFirst().getId());
+            }
+        } catch (Exception e) {
+            log.error(e.getMessage(), e);
+        } finally {
+            cookieService.removeSessionIdCookie(httpResponse);
+            cookieService.removeOPBrowserStateCookie(httpResponse);
+        }
+    }
+
+    private void removeConsentSessionId(HttpServletRequest httpRequest, HttpServletResponse httpResponse) {
+        try {
+            String id = cookieService.getConsentSessionIdFromCookie(httpRequest);
+
+            if (StringHelper.isNotEmpty(id)) {
+                SessionId ldapSessionId = sessionIdService.getSessionId(id);
+                if (ldapSessionId != null) {
+                    boolean result = sessionIdService.remove(ldapSessionId);
+                    if (!result) {
+                        log.error("Failed to remove consent_session_id '{}'", id);
+                    }
+                } else {
+                    log.error("Failed to load session by consent_session_id: '{}'", id);
+                }
+            }
+        } catch (Exception e) {
+            log.error(e.getMessage(), e);
+        } finally {
+            cookieService.removeConsentSessionIdCookie(httpResponse);
+        }
+    }
+
+    private void auditLogging(HttpServletRequest request, Pair<SessionId, AuthorizationGrant> pair) {
+        SessionId sessionId = pair.getFirst();
+        AuthorizationGrant authorizationGrant = pair.getSecond();
+
+        OAuth2AuditLog oAuth2AuditLog = new OAuth2AuditLog(ServerUtil.getIpAddress(request), Action.SESSION_DESTROYED);
+        oAuth2AuditLog.setSuccess(true);
+
+        if (authorizationGrant != null) {
+            oAuth2AuditLog.setClientId(authorizationGrant.getClientId());
+            oAuth2AuditLog.setScope(StringUtils.join(authorizationGrant.getScopes(), " "));
+            oAuth2AuditLog.setUsername(authorizationGrant.getUserId());
+        } else if (sessionId != null) {
+            oAuth2AuditLog.setClientId(sessionId.getPermissionGrantedMap().getClientIds(true).toString());
+            oAuth2AuditLog.setScope(sessionId.getSessionAttributes().get(AuthorizeRequestParam.SCOPE));
+            oAuth2AuditLog.setUsername(sessionId.getUserDn());
+        }
+
+        applicationAuditLogger.sendMessage(oAuth2AuditLog);
+    }
+}
\ No newline at end of file
diff --git a/oxAuth/Server/src/main/java/org/gluu/oxauth/session/ws/rs/EndSessionUtils.java b/oxAuth/Server/src/main/java/org/gluu/oxauth/session/ws/rs/EndSessionUtils.java
new file mode 100644
index 00000000..2fde98fa
--- /dev/null
+++ b/oxAuth/Server/src/main/java/org/gluu/oxauth/session/ws/rs/EndSessionUtils.java
@@ -0,0 +1,107 @@
+package org.gluu.oxauth.session.ws.rs;
+
+import org.apache.commons.lang.StringUtils;
+import org.gluu.oxauth.client.service.ClientFactory;
+import org.gluu.oxauth.model.util.Util;
+import org.jboss.resteasy.client.jaxrs.ResteasyClientBuilder;
+import org.slf4j.Logger;
+import org.slf4j.LoggerFactory;
+
+import javax.ws.rs.client.Entity;
+import javax.ws.rs.client.WebTarget;
+import javax.ws.rs.core.Form;
+import javax.ws.rs.core.Response;
+import java.util.Set;
+import java.util.concurrent.ExecutorService;
+import java.util.concurrent.Executors;
+
+import static org.gluu.oxauth.util.ServerUtil.daemonThreadFactory;
+
+/**
+ * @author Yuriy Zabrovarnyy
+ */
+public class EndSessionUtils {
+
+    private final static Logger log = LoggerFactory.getLogger(EndSessionUtils.class);
+
+    private EndSessionUtils() {
+    }
+
+    public static ExecutorService getExecutorService() {
+        return Executors.newCachedThreadPool(daemonThreadFactory());
+    }
+
+    public static void callRpWithBackchannelUri(final String backchannelLogoutUri, String logoutToken) {
+        javax.ws.rs.client.Client client = ((ResteasyClientBuilder) ResteasyClientBuilder.newBuilder()).httpEngine(ClientFactory.instance().createEngine(true)).build();
+        WebTarget target = client.target(backchannelLogoutUri);
+
+        log.debug("Calling RP with backchannel, backchannel_logout_uri: " + backchannelLogoutUri);
+        try (Response response = target.request().post(Entity.form(new Form("logout_token", logoutToken)))) {
+            log.debug("Backchannel RP response, status: " + response.getStatus() + ", backchannel_logout_uri" + backchannelLogoutUri);
+        } catch (Exception e) {
+            log.error("Failed to call backchannel_logout_uri" + backchannelLogoutUri + ", message: " + e.getMessage(), e);
+        }
+    }
+
+    public static String appendSid(String logoutUri, String sid, String issuer) {
+        if (logoutUri.contains("?")) {
+            return logoutUri + "&sid=" + sid + "&iss=" + issuer;
+        } else {
+            return logoutUri + "?sid=" + sid + "&iss=" + issuer;
+        }
+    }
+
+    public static String appendState(String uri, String state) {
+        if (StringUtils.isBlank(state)) {
+            return uri;
+        }
+
+        if (uri.contains("?")) {
+            if (uri.contains("state=")) {
+                return uri;
+            } else {
+                return uri + "&state=" + state;
+            }
+        } else {
+            return uri + "?state=" + state;
+        }
+    }
+
+    public static String createFronthannelHtml(Set<String> logoutUris, String postLogoutUrl, String state) {
+        String iframes = "";
+        for (String logoutUri : logoutUris) {
+            iframes = iframes + String.format("<iframe height=\"0\" width=\"0\" src=\"%s\" sandbox=\"allow-same-origin allow-scripts allow-popups allow-forms\"></iframe>", logoutUri);
+        }
+
+        String html = "<!DOCTYPE html>" +
+                "<html>" +
+                "<head>";
+
+        if (!Util.isNullOrEmpty(postLogoutUrl)) {
+
+            if (!Util.isNullOrEmpty(state)) {
+                if (postLogoutUrl.contains("?")) {
+                    postLogoutUrl += "&state=" + state;
+                } else {
+                    postLogoutUrl += "?state=" + state;
+                }
+            }
+
+            html += "<script>" +
+                    "window.onload=function() {" +
+                    "window.location='" + postLogoutUrl + "'" +
+                    "}" +
+                    "</script>";
+        }
+
+        html += "<title>Your logout was successful</title>" +
+                "</head>" +
+                "<body>" +
+                "Your logout was successful.<br/>" +
+                iframes +
+                "</body>" +
+                "</html>";
+        return html;
+    }
+
+}
diff --git a/oxAuth/Server/src/main/java/org/gluu/oxauth/session/ws/rs/LogoutTokenFactory.java b/oxAuth/Server/src/main/java/org/gluu/oxauth/session/ws/rs/LogoutTokenFactory.java
new file mode 100644
index 00000000..d4ab34a2
--- /dev/null
+++ b/oxAuth/Server/src/main/java/org/gluu/oxauth/session/ws/rs/LogoutTokenFactory.java
@@ -0,0 +1,88 @@
+package org.gluu.oxauth.session.ws.rs;
+
+import org.apache.commons.lang.StringUtils;
+import org.gluu.oxauth.claims.Audience;
+import org.gluu.oxauth.model.common.User;
+import org.gluu.oxauth.model.configuration.AppConfiguration;
+import org.gluu.oxauth.model.registration.Client;
+import org.gluu.oxauth.model.token.JsonWebResponse;
+import org.gluu.oxauth.model.token.JwrService;
+import org.gluu.oxauth.service.SectorIdentifierService;
+import org.json.JSONObject;
+import org.msgpack.core.Preconditions;
+import org.slf4j.Logger;
+
+import javax.enterprise.context.ApplicationScoped;
+
+import javax.inject.Inject;
+import java.util.Calendar;
+import java.util.Date;
+import java.util.UUID;
+
+/**
+ * @author Yuriy Zabrovarnyy
+ * @version April 10, 2020
+ */
+@ApplicationScoped
+public class LogoutTokenFactory {
+
+    private static final String EVENTS_KEY = "http://schemas.openid.net/event/backchannel-logout";
+
+    @Inject
+    private Logger log;
+
+    @Inject
+    private AppConfiguration appConfiguration;
+
+    @Inject
+    private JwrService jwrService;
+
+    @Inject
+    private SectorIdentifierService sectorIdentifierService;
+
+    public JsonWebResponse createLogoutToken(Client rpClient, String outsideSid, User user) {
+        try {
+            Preconditions.checkNotNull(rpClient);
+
+            JsonWebResponse jwr = jwrService.createJwr(rpClient);
+
+            fillClaims(jwr, rpClient, outsideSid, user);
+
+            jwrService.encode(jwr, rpClient);
+            return jwr;
+        } catch (Exception e) {
+            log.error("Failed to create logout_token for client:" + rpClient.getClientId());
+            return null;
+        }
+    }
+
+    private void fillClaims(JsonWebResponse jwr, Client client, String outsideSid, User user) {
+        int lifeTime = appConfiguration.getIdTokenLifetime();
+        Calendar calendar = Calendar.getInstance();
+        Date issuedAt = calendar.getTime();
+        calendar.add(Calendar.SECOND, lifeTime);
+        Date expiration = calendar.getTime();
+
+        jwr.getClaims().setExpirationTime(expiration);
+        jwr.getClaims().setIssuedAt(issuedAt);
+        jwr.getClaims().setIssuer(appConfiguration.getIssuer());
+        jwr.getClaims().setJwtId(UUID.randomUUID());
+        jwr.getClaims().setClaim("events", getLogoutTokenEvents());
+        Audience.setAudience(jwr.getClaims(), client);
+
+        if (StringUtils.isNotBlank(outsideSid) && client.getAttributes().getBackchannelLogoutSessionRequired()) {
+            jwr.getClaims().setClaim("sid", outsideSid);
+        }
+
+        final String sub = sectorIdentifierService.getSub(client, user, false);
+        if (StringUtils.isNotBlank(sub)) {
+            jwr.getClaims().setSubjectIdentifier(sub);
+        }
+    }
+
+    private JSONObject getLogoutTokenEvents() {
+        final JSONObject events = new JSONObject();
+        events.put(EVENTS_KEY, new JSONObject());
+        return events;
+    }
+}
diff --git a/oxAuth/Server/src/main/java/org/gluu/oxauth/token/ws/rs/TokenRestWebService.java b/oxAuth/Server/src/main/java/org/gluu/oxauth/token/ws/rs/TokenRestWebService.java
new file mode 100644
index 00000000..22d62c85
--- /dev/null
+++ b/oxAuth/Server/src/main/java/org/gluu/oxauth/token/ws/rs/TokenRestWebService.java
@@ -0,0 +1,71 @@
+/*
+ * oxAuth is available under the MIT License (2008). See http://opensource.org/licenses/MIT for full text.
+ *
+ * Copyright (c) 2014, Gluu
+ */
+
+package org.gluu.oxauth.token.ws.rs;
+
+import javax.servlet.http.HttpServletRequest;
+import javax.servlet.http.HttpServletResponse;
+import javax.ws.rs.FormParam;
+import javax.ws.rs.POST;
+import javax.ws.rs.Path;
+import javax.ws.rs.Produces;
+import javax.ws.rs.core.Context;
+import javax.ws.rs.core.MediaType;
+import javax.ws.rs.core.Response;
+import javax.ws.rs.core.SecurityContext;
+
+/**
+ * Provides interface for token REST web services
+ *
+ * @author Javier Rojas Blum
+ * @author Yuriy Zabrovarnyy
+ */
+public interface TokenRestWebService {
+
+    @POST
+    @Path("/token")
+    @Produces({MediaType.APPLICATION_JSON})
+    Response requestAccessToken(
+            @FormParam("grant_type")
+            String grantType,
+            @FormParam("code")
+            String code,
+            @FormParam("redirect_uri")
+            String redirectUri,
+            @FormParam("username")
+            String username,
+            @FormParam("password")
+            String password,
+            @FormParam("scope")
+            String scope,
+            @FormParam("assertion")
+            String assertion,
+            @FormParam("refresh_token")
+            String refreshToken,
+            @FormParam("client_id")
+            String clientId,
+            @FormParam("client_secret")
+            String clientSecret,
+            @FormParam("code_verifier")
+            String codeVerifier,
+            @FormParam("ticket")
+            String ticket,
+            @FormParam("claim_token")
+            String claimToken,
+            @FormParam("claim_token_format")
+            String claimTokenFormat,
+            @FormParam("pct")
+            String pctCode,
+            @FormParam("rpt")
+            String rptCode,
+            @FormParam("auth_req_id")
+            String authReqId,
+            @FormParam("device_code")
+            String deviceCode,
+            @Context HttpServletRequest request,
+            @Context HttpServletResponse response,
+            @Context SecurityContext sec);
+}
\ No newline at end of file
diff --git a/oxAuth/Server/src/main/java/org/gluu/oxauth/token/ws/rs/TokenRestWebServiceImpl.java b/oxAuth/Server/src/main/java/org/gluu/oxauth/token/ws/rs/TokenRestWebServiceImpl.java
new file mode 100644
index 00000000..11330e1a
--- /dev/null
+++ b/oxAuth/Server/src/main/java/org/gluu/oxauth/token/ws/rs/TokenRestWebServiceImpl.java
@@ -0,0 +1,752 @@
+/*
+ * oxAuth is available under the MIT License (2008). See http://opensource.org/licenses/MIT for full text.
+ *
+ * Copyright (c) 2014, Gluu
+ */
+
+package org.gluu.oxauth.token.ws.rs;
+
+import com.google.common.base.Function;
+import com.google.common.base.Strings;
+import com.google.common.collect.Maps;
+import org.apache.commons.lang.StringUtils;
+import org.gluu.oxauth.audit.ApplicationAuditLogger;
+import org.gluu.oxauth.model.audit.Action;
+import org.gluu.oxauth.model.audit.OAuth2AuditLog;
+import org.gluu.oxauth.model.authorize.CodeVerifier;
+import org.gluu.oxauth.model.common.*;
+import org.gluu.oxauth.model.config.Constants;
+import org.gluu.oxauth.model.configuration.AppConfiguration;
+import org.gluu.oxauth.model.crypto.binding.TokenBindingMessage;
+import org.gluu.oxauth.model.error.ErrorResponseFactory;
+import org.gluu.oxauth.model.ldap.TokenLdap;
+import org.gluu.oxauth.model.registration.Client;
+import org.gluu.oxauth.model.session.SessionClient;
+import org.gluu.oxauth.model.session.SessionId;
+import org.gluu.oxauth.model.token.JsonWebResponse;
+import org.gluu.oxauth.model.token.JwrService;
+import org.gluu.oxauth.model.token.TokenErrorResponseType;
+import org.gluu.oxauth.model.token.TokenParamsValidator;
+import org.gluu.oxauth.security.Identity;
+import org.gluu.oxauth.service.*;
+import org.gluu.oxauth.service.ciba.CibaRequestService;
+import org.gluu.oxauth.service.external.ExternalResourceOwnerPasswordCredentialsService;
+import org.gluu.oxauth.service.external.ExternalUpdateTokenService;
+import org.gluu.oxauth.service.external.context.ExternalResourceOwnerPasswordCredentialsContext;
+import org.gluu.oxauth.service.external.context.ExternalUpdateTokenContext;
+import org.gluu.oxauth.uma.service.UmaTokenService;
+import org.gluu.oxauth.util.ServerUtil;
+import org.gluu.persist.exception.AuthenticationException;
+import org.gluu.util.OxConstants;
+import org.gluu.util.StringHelper;
+import org.json.JSONException;
+import org.json.JSONObject;
+import org.slf4j.Logger;
+
+import javax.inject.Inject;
+import javax.servlet.http.HttpServletRequest;
+import javax.servlet.http.HttpServletResponse;
+import javax.ws.rs.Path;
+import javax.ws.rs.WebApplicationException;
+import javax.ws.rs.core.MediaType;
+import javax.ws.rs.core.Response;
+import javax.ws.rs.core.Response.ResponseBuilder;
+import javax.ws.rs.core.SecurityContext;
+import java.util.Arrays;
+import java.util.Date;
+import java.util.concurrent.ConcurrentMap;
+
+import static org.gluu.oxauth.util.ServerUtil.prepareForLogs;
+
+/**
+ * Provides interface for token REST web services
+ *
+ * @author Yuriy Zabrovarnyy
+ * @author Javier Rojas Blum
+ * @version May 5, 2020
+ */
+@Path("/")
+public class TokenRestWebServiceImpl implements TokenRestWebService {
+
+    @Inject
+    private Logger log;
+
+    @Inject
+    private Identity identity;
+
+    @Inject
+    private ApplicationAuditLogger applicationAuditLogger;
+
+    @Inject
+    private ErrorResponseFactory errorResponseFactory;
+
+    @Inject
+    private AuthorizationGrantList authorizationGrantList;
+
+    @Inject
+    private UserService userService;
+
+    @Inject
+    private GrantService grantService;
+
+    @Inject
+    private AuthenticationFilterService authenticationFilterService;
+
+    @Inject
+    private AuthenticationService authenticationService;
+
+    @Inject
+    private AppConfiguration appConfiguration;
+
+    @Inject
+    private UmaTokenService umaTokenService;
+
+    @Inject
+    private ExternalResourceOwnerPasswordCredentialsService externalResourceOwnerPasswordCredentialsService;
+
+    @Inject
+    private AttributeService attributeService;
+
+    @Inject
+    private SessionIdService sessionIdService;
+
+    @Inject
+    private CibaRequestService cibaRequestService;
+
+    @Inject
+    private DeviceAuthorizationService deviceAuthorizationService;
+
+    @Inject
+    private ExternalUpdateTokenService externalUpdateTokenService;
+
+    private final ConcurrentMap<String, String> refreshTokenLocalLock = Maps.newConcurrentMap();
+
+    @Override
+    public Response requestAccessToken(String grantType, String code,
+                                       String redirectUri, String username, String password, String scope,
+                                       String assertion, String refreshToken,
+                                       String clientId, String clientSecret, String codeVerifier,
+                                       String ticket, String claimToken, String claimTokenFormat, String pctCode,
+                                       String rptCode, String authReqId, String deviceCode,
+                                       HttpServletRequest request, HttpServletResponse response, SecurityContext sec) {
+        log.debug(
+                "Attempting to request access token: grantType = {}, code = {}, redirectUri = {}, username = {}, refreshToken = {}, " +
+                        "clientId = {}, ExtraParams = {}, isSecure = {}, codeVerifier = {}, ticket = {}",
+                grantType, code, redirectUri, username, refreshToken, clientId, prepareForLogs(request.getParameterMap()),
+                sec.isSecure(), codeVerifier, ticket);
+
+        boolean isUma = StringUtils.isNotBlank(ticket);
+        if (isUma) {
+            return umaTokenService.requestRpt(grantType, ticket, claimToken, claimTokenFormat, pctCode, rptCode, scope, request, response);
+        }
+
+        OAuth2AuditLog oAuth2AuditLog = new OAuth2AuditLog(ServerUtil.getIpAddress(request), Action.TOKEN_REQUEST);
+        oAuth2AuditLog.setClientId(clientId);
+        oAuth2AuditLog.setUsername(username);
+        oAuth2AuditLog.setScope(scope);
+
+        String tokenBindingHeader = request.getHeader("Sec-Token-Binding");
+
+        scope = ServerUtil.urlDecode(scope); // it may be encoded in uma case
+        ResponseBuilder builder = Response.ok();
+
+        try {
+            log.debug("Starting to validate request parameters");
+            if (!TokenParamsValidator.validateParams(grantType, code, redirectUri, username, password,
+                    scope, assertion, refreshToken)) {
+                log.trace("Failed to validate request parameters");
+                return response(error(400, TokenErrorResponseType.INVALID_REQUEST, "Failed to validate request parameters"), oAuth2AuditLog);
+            }
+
+            GrantType gt = GrantType.fromString(grantType);
+            log.debug("Grant type: '{}'", gt);
+
+            SessionClient sessionClient = identity.getSessionClient();
+            Client client = null;
+            if (sessionClient != null) {
+                client = sessionClient.getClient();
+                log.debug("Get sessionClient: '{}'", sessionClient);
+            }
+
+            if (client == null) {
+                return response(error(401, TokenErrorResponseType.INVALID_GRANT, "Unable to find client."), oAuth2AuditLog);
+            }
+
+            log.debug("Get client from session: '{}'", client.getClientId());
+            if (client.isDisabled()) {
+                return response(error(Response.Status.FORBIDDEN.getStatusCode(), TokenErrorResponseType.DISABLED_CLIENT, "Client is disabled."), oAuth2AuditLog);
+            }
+
+            final Function<JsonWebResponse, Void> idTokenTokingBindingPreprocessing = TokenBindingMessage.createIdTokenTokingBindingPreprocessing(
+                    tokenBindingHeader, client.getIdTokenTokenBindingCnf()); // for all except authorization code grant
+            final SessionId sessionIdObj = sessionIdService.getSessionId(request);
+            final Function<JsonWebResponse, Void> idTokenPreProcessing = JwrService.wrapWithSidFunction(idTokenTokingBindingPreprocessing, sessionIdObj != null ? sessionIdObj.getOutsideSid() : null);
+
+            final ExecutionContext executionContext = new ExecutionContext(request, response);
+            executionContext.setClient(client);
+            executionContext.setAppConfiguration(appConfiguration);
+            executionContext.setAttributeService(attributeService);
+
+            if (gt == GrantType.AUTHORIZATION_CODE) {
+                if (!TokenParamsValidator.validateGrantType(gt, client.getGrantTypes(), appConfiguration.getGrantTypesSupported())) {
+                    return response(error(400, TokenErrorResponseType.INVALID_GRANT, "Grant types are invalid."), oAuth2AuditLog);
+                }
+
+                log.debug("Attempting to find authorizationCodeGrant by clientId: '{}', code: '{}'", client.getClientId(), code);
+                final AuthorizationCodeGrant authorizationCodeGrant = authorizationGrantList.getAuthorizationCodeGrant(code);
+                log.trace("AuthorizationCodeGrant : '{}'", authorizationCodeGrant);
+
+                if (authorizationCodeGrant == null) {
+                    log.debug("AuthorizationCodeGrant is empty by clientId: '{}', code: '{}'", client.getClientId(), code);
+                    // if authorization code is not found then code was already used or wrong client provided = remove all grants with this auth code
+                    grantService.removeAllByAuthorizationCode(code);
+                    return response(error(400, TokenErrorResponseType.INVALID_GRANT, "Unable to find grant object for given code."), oAuth2AuditLog);
+                }
+
+                if (!client.getClientId().equals(authorizationCodeGrant.getClientId())) {
+                    log.debug("AuthorizationCodeGrant is found but belongs to another client. Grant's clientId: '{}', code: '{}'", authorizationCodeGrant.getClientId(), code);
+                    // if authorization code is not found then code was already used or wrong client provided = remove all grants with this auth code
+                    grantService.removeAllByAuthorizationCode(code);
+                    return response(error(400, TokenErrorResponseType.INVALID_GRANT, "Client mismatch."), oAuth2AuditLog);
+                }
+
+                validatePKCE(authorizationCodeGrant, codeVerifier, oAuth2AuditLog);
+
+                executionContext.setGrant(authorizationCodeGrant);
+                authorizationCodeGrant.setIsCachedWithNoPersistence(false);
+                authorizationCodeGrant.save();
+
+                RefreshToken reToken = null;
+                if (isRefreshTokenAllowed(client, scope, authorizationCodeGrant)) {
+                    reToken = authorizationCodeGrant.createRefreshToken(executionContext);
+                }
+
+                if (scope != null && !scope.isEmpty()) {
+                    scope = authorizationCodeGrant.checkScopesPolicy(scope);
+                }
+
+                AccessToken accToken = authorizationCodeGrant.createAccessToken(request.getHeader("X-ClientCert"), executionContext); // create token after scopes are checked
+
+                IdToken idToken = null;
+                if (authorizationCodeGrant.getScopes().contains("openid")) {
+                    String nonce = authorizationCodeGrant.getNonce();
+                    boolean includeIdTokenClaims = Boolean.TRUE.equals(
+                            appConfiguration.getLegacyIdTokenClaims());
+                    final String idTokenTokenBindingCnf = client.getIdTokenTokenBindingCnf();
+                    Function<JsonWebResponse, Void> authorizationCodePreProcessing = jsonWebResponse -> {
+                        if (StringUtils.isNotBlank(idTokenTokenBindingCnf) && StringUtils.isNotBlank(authorizationCodeGrant.getTokenBindingHash())) {
+                            TokenBindingMessage.setCnfClaim(jsonWebResponse, authorizationCodeGrant.getTokenBindingHash(), idTokenTokenBindingCnf);
+                        }
+                        return null;
+                    };
+
+                    ExternalUpdateTokenContext context = ExternalUpdateTokenContext.of(executionContext);
+                    Function<JsonWebResponse, Void> postProcessor = externalUpdateTokenService.buildModifyIdTokenProcessor(context);
+
+                    idToken = authorizationCodeGrant.createIdToken(
+                            nonce, authorizationCodeGrant.getAuthorizationCode(), accToken, null, null,
+                            authorizationCodeGrant, includeIdTokenClaims, JwrService.wrapWithSidFunction(authorizationCodePreProcessing, sessionIdObj != null ? sessionIdObj.getOutsideSid() : null),
+                            postProcessor, executionContext);
+                }
+
+                oAuth2AuditLog.updateOAuth2AuditLog(authorizationCodeGrant, true);
+
+                grantService.removeAuthorizationCode(authorizationCodeGrant.getAuthorizationCode().getCode());
+
+                final String entity = getJSonResponse(accToken, accToken.getTokenType(), accToken.getExpiresIn(), reToken, scope, idToken);
+                return response(Response.ok().entity(entity), oAuth2AuditLog);
+            }
+
+            if (gt == GrantType.REFRESH_TOKEN) {
+                if (!TokenParamsValidator.validateGrantType(gt, client.getGrantTypes(), appConfiguration.getGrantTypesSupported())) {
+                    return response(error(400, TokenErrorResponseType.INVALID_GRANT, "grant_type is not present in client."), oAuth2AuditLog);
+                }
+
+                AuthorizationGrant authorizationGrant = authorizationGrantList.getAuthorizationGrantByRefreshToken(client.getClientId(), refreshToken);
+
+                if (authorizationGrant == null) {
+                    log.trace("Grant object is not found by refresh token.");
+                    return response(error(400, TokenErrorResponseType.INVALID_GRANT, "Unable to find grant object by refresh token or otherwise token type or client does not match."), oAuth2AuditLog);
+                }
+
+                final RefreshToken refreshTokenObject = authorizationGrant.getRefreshToken(refreshToken);
+                if (refreshTokenObject == null || !refreshTokenObject.isValid()) {
+                    log.trace("Invalid refresh token.");
+                    return response(error(400, TokenErrorResponseType.INVALID_GRANT, "Unable to find refresh token or otherwise token type or client does not match."), oAuth2AuditLog);
+                }
+
+                checkUser(authorizationGrant, oAuth2AuditLog);
+                executionContext.setGrant(authorizationGrant);
+
+                // The authorization server MAY issue a new refresh token, in which case
+                // the client MUST discard the old refresh token and replace it with the new refresh token.
+                RefreshToken reToken = null;
+                if (!appConfiguration.getSkipRefreshTokenDuringRefreshing()) {
+                    if (appConfiguration.getRefreshTokenExtendLifetimeOnRotation()) {
+                        reToken = authorizationGrant.createRefreshToken(executionContext); // extend lifetime
+                    } else {
+                        reToken = authorizationGrant.createRefreshToken(executionContext, refreshTokenObject.getExpirationDate()); // do not extend lifetime
+                    }
+                }
+
+                if (scope != null && !scope.isEmpty()) {
+                    scope = authorizationGrant.checkScopesPolicy(scope);
+                } else {
+                    scope = authorizationGrant.getScopesAsString();
+                }
+
+                AccessToken accToken = authorizationGrant.createAccessToken(request.getHeader("X-ClientCert"), executionContext); // create token after scopes are checked
+
+                IdToken idToken = null;
+                if (appConfiguration.getOpenidScopeBackwardCompatibility() && authorizationGrant.getScopes().contains("openid")) {
+                    boolean includeIdTokenClaims = Boolean.TRUE.equals(
+                            appConfiguration.getLegacyIdTokenClaims());
+
+                    ExternalUpdateTokenContext context = ExternalUpdateTokenContext.of(executionContext);
+                    Function<JsonWebResponse, Void> postProcessor = externalUpdateTokenService.buildModifyIdTokenProcessor(context);
+
+                    idToken = authorizationGrant.createIdToken(
+                            null, null, accToken, null,
+                            null, authorizationGrant, includeIdTokenClaims, idTokenPreProcessing, postProcessor, executionContext);
+                }
+
+                TokenLdap lockedRefreshToken = lockRefreshToken(refreshToken);
+                if (lockedRefreshToken == null) {
+                    log.trace("Failed to lock refresh token {}", refreshToken);
+                    return response(error(400, TokenErrorResponseType.INVALID_GRANT, "Failed to lock refresh token."), oAuth2AuditLog);
+                }
+
+                builder.entity(getJSonResponse(accToken,
+                        accToken.getTokenType(),
+                        accToken.getExpiresIn(),
+                        reToken,
+                        scope,
+                        idToken));
+                oAuth2AuditLog.updateOAuth2AuditLog(authorizationGrant, true);
+            } else if (gt == GrantType.CLIENT_CREDENTIALS) {
+                if (!TokenParamsValidator.validateGrantType(gt, client.getGrantTypes(), appConfiguration.getGrantTypesSupported())) {
+                    return response(error(400, TokenErrorResponseType.INVALID_GRANT, "grant_type is not present in client."), oAuth2AuditLog);
+                }
+
+                ClientCredentialsGrant clientCredentialsGrant = authorizationGrantList.createClientCredentialsGrant(new User(), client); // TODO: fix the user arg
+
+                if (scope != null && !scope.isEmpty()) {
+                    scope = clientCredentialsGrant.checkScopesPolicy(scope);
+                }
+
+                executionContext.setGrant(clientCredentialsGrant);
+                AccessToken accessToken = clientCredentialsGrant.createAccessToken(request.getHeader("X-ClientCert"), executionContext); // create token after scopes are checked
+
+                IdToken idToken = null;
+                if (appConfiguration.getOpenidScopeBackwardCompatibility() && clientCredentialsGrant.getScopes().contains("openid")) {
+                    boolean includeIdTokenClaims = Boolean.TRUE.equals(
+                            appConfiguration.getLegacyIdTokenClaims());
+
+                    ExternalUpdateTokenContext context = ExternalUpdateTokenContext.of(executionContext);
+                    Function<JsonWebResponse, Void> postProcessor = externalUpdateTokenService.buildModifyIdTokenProcessor(context);
+
+                    idToken = clientCredentialsGrant.createIdToken(
+                            null, null, null, null,
+                            null, clientCredentialsGrant, includeIdTokenClaims, idTokenPreProcessing, postProcessor, executionContext);
+                }
+
+                oAuth2AuditLog.updateOAuth2AuditLog(clientCredentialsGrant, true);
+                builder.entity(getJSonResponse(accessToken,
+                        accessToken.getTokenType(),
+                        accessToken.getExpiresIn(),
+                        null,
+                        scope,
+                        idToken));
+            } else if (gt == GrantType.RESOURCE_OWNER_PASSWORD_CREDENTIALS) {
+                if (!TokenParamsValidator.validateGrantType(gt, client.getGrantTypes(), appConfiguration.getGrantTypesSupported())) {
+                    return response(error(400, TokenErrorResponseType.INVALID_GRANT, "grant_type is not present in client."), oAuth2AuditLog);
+                }
+
+                boolean authenticated = false;
+                User user = null;
+                if (authenticationFilterService.isEnabled()) {
+                    String userDn = authenticationFilterService.processAuthenticationFilters(request.getParameterMap());
+                    if (StringHelper.isNotEmpty(userDn)) {
+                        user = userService.getUserByDn(userDn);
+                        authenticated = true;
+                    }
+                }
+
+
+                if (!authenticated) {
+                    if (externalResourceOwnerPasswordCredentialsService.isEnabled()) {
+                        final ExternalResourceOwnerPasswordCredentialsContext context = new ExternalResourceOwnerPasswordCredentialsContext(request, response, appConfiguration, attributeService, userService);
+                        context.setUser(user);
+                        if (externalResourceOwnerPasswordCredentialsService.executeExternalAuthenticate(context)) {
+                            log.trace("RO PC - User is authenticated successfully by external script.");
+                            user = context.getUser();
+                        }
+                    } else {
+                        try {
+                            authenticated = authenticationService.authenticate(username, password);
+                            if (authenticated) {
+                                user = authenticationService.getAuthenticatedUser();
+                            }
+                        } catch (AuthenticationException ex) {
+                            log.trace("Failed to authenticate user ", new RuntimeException("User name or password is invalid"));
+                        }
+                    }
+                }
+
+                if (user != null) {
+                    ResourceOwnerPasswordCredentialsGrant resourceOwnerPasswordCredentialsGrant = authorizationGrantList.createResourceOwnerPasswordCredentialsGrant(user, client);
+                    executionContext.setGrant(resourceOwnerPasswordCredentialsGrant);
+                    SessionId sessionId = identity.getSessionId();
+                    if (sessionId != null) {
+                        resourceOwnerPasswordCredentialsGrant.setAcrValues(OxConstants.SCRIPT_TYPE_INTERNAL_RESERVED_NAME);
+                        resourceOwnerPasswordCredentialsGrant.setSessionDn(sessionId.getDn());
+                        resourceOwnerPasswordCredentialsGrant.save(); // call save after object modification!!!
+
+                        sessionId.getSessionAttributes().put(Constants.AUTHORIZED_GRANT, gt.getValue());
+                        boolean updateResult = sessionIdService.updateSessionId(sessionId, false, true, true);
+                        if (!updateResult) {
+                            log.debug("Failed to update session entry: '{}'", sessionId.getId());
+                        }
+                    }
+
+
+                    RefreshToken reToken = null;
+                    if (isRefreshTokenAllowed(client, scope, resourceOwnerPasswordCredentialsGrant)) {
+                        reToken = resourceOwnerPasswordCredentialsGrant.createRefreshToken(executionContext);
+                    }
+
+                    if (scope != null && !scope.isEmpty()) {
+                        scope = resourceOwnerPasswordCredentialsGrant.checkScopesPolicy(scope);
+                    }
+
+                    AccessToken accessToken = resourceOwnerPasswordCredentialsGrant.createAccessToken(request.getHeader("X-ClientCert"), executionContext); // create token after scopes are checked
+
+                    IdToken idToken = null;
+                    if (appConfiguration.getOpenidScopeBackwardCompatibility() && resourceOwnerPasswordCredentialsGrant.getScopes().contains("openid")) {
+                        boolean includeIdTokenClaims = Boolean.TRUE.equals(
+                                appConfiguration.getLegacyIdTokenClaims());
+
+                        ExternalUpdateTokenContext context = ExternalUpdateTokenContext.of(executionContext);
+                        Function<JsonWebResponse, Void> postProcessor = externalUpdateTokenService.buildModifyIdTokenProcessor(context);
+
+                        idToken = resourceOwnerPasswordCredentialsGrant.createIdToken(
+                                null, null, null, null,
+                                null, resourceOwnerPasswordCredentialsGrant, includeIdTokenClaims, idTokenPreProcessing, postProcessor, executionContext);
+                    }
+
+                    oAuth2AuditLog.updateOAuth2AuditLog(resourceOwnerPasswordCredentialsGrant, true);
+                    builder.entity(getJSonResponse(accessToken,
+                            accessToken.getTokenType(),
+                            accessToken.getExpiresIn(),
+                            reToken,
+                            scope,
+                            idToken));
+                } else {
+                    log.debug("Invalid user", new RuntimeException("User is empty"));
+                    builder = error(401, TokenErrorResponseType.INVALID_CLIENT, "Invalid user.");
+                }
+            } else if (gt == GrantType.CIBA) {
+                if (!appConfiguration.getCibaEnabled()) {
+                    log.warn("Trying to get CIBA token, however CIBA config is disabled.");
+                    return response(error(400, TokenErrorResponseType.INVALID_REQUEST, "Grant types are invalid."), oAuth2AuditLog);
+                }
+
+                if (!TokenParamsValidator.validateGrantType(gt, client.getGrantTypes(), appConfiguration.getGrantTypesSupported())) {
+                    return response(error(400, TokenErrorResponseType.INVALID_GRANT, "Grant types are invalid."), oAuth2AuditLog);
+                }
+
+                log.debug("Attempting to find authorizationGrant by authReqId: '{}'", authReqId);
+                final CIBAGrant cibaGrant = authorizationGrantList.getCIBAGrant(authReqId);
+
+                log.trace("AuthorizationGrant : '{}'", cibaGrant);
+
+                if (cibaGrant != null) {
+                    if (!cibaGrant.getClientId().equals(client.getClientId())) {
+                        builder = error(400, TokenErrorResponseType.INVALID_GRANT, "The client is not authorized.");
+                        return response(builder, oAuth2AuditLog);
+                    }
+
+                    executionContext.setGrant(cibaGrant);
+                    if (cibaGrant.getClient().getBackchannelTokenDeliveryMode() == BackchannelTokenDeliveryMode.PING ||
+                            cibaGrant.getClient().getBackchannelTokenDeliveryMode() == BackchannelTokenDeliveryMode.POLL) {
+                        if (!cibaGrant.isTokensDelivered()) {
+                            RefreshToken refToken = cibaGrant.createRefreshToken(executionContext);
+                            AccessToken accessToken = cibaGrant.createAccessToken(request.getHeader("X-ClientCert"), executionContext);
+
+                            ExternalUpdateTokenContext context = ExternalUpdateTokenContext.of(executionContext);
+                            Function<JsonWebResponse, Void> postProcessor = externalUpdateTokenService.buildModifyIdTokenProcessor(context);
+
+                            boolean includeIdTokenClaims = Boolean.TRUE.equals(appConfiguration.getLegacyIdTokenClaims());
+                            IdToken idToken = cibaGrant.createIdToken(
+                                    null, null, accessToken, refToken,
+                                    null, cibaGrant, includeIdTokenClaims, null, postProcessor, executionContext);
+
+                            cibaGrant.setTokensDelivered(true);
+                            cibaGrant.save();
+
+                            RefreshToken reToken = null;
+                            if (isRefreshTokenAllowed(client, scope, cibaGrant)) {
+                                reToken = refToken;
+                            }
+
+                            if (scope != null && !scope.isEmpty()) {
+                                scope = cibaGrant.checkScopesPolicy(scope);
+                            }
+
+                            builder.entity(getJSonResponse(accessToken,
+                                    accessToken.getTokenType(),
+                                    accessToken.getExpiresIn(),
+                                    reToken,
+                                    scope,
+                                    idToken));
+
+                            oAuth2AuditLog.updateOAuth2AuditLog(cibaGrant, true);
+                        } else {
+                            builder = error(400, TokenErrorResponseType.INVALID_GRANT, "AuthReqId is no longer available.");
+                        }
+                    } else {
+                        log.debug("Client is not using Poll flow authReqId: '{}'", authReqId);
+                        builder = error(400, TokenErrorResponseType.UNAUTHORIZED_CLIENT, "The client is not authorized as it is configured in Push Mode");
+                    }
+                } else {
+                    final CibaRequestCacheControl cibaRequest = cibaRequestService.getCibaRequest(authReqId);
+                    log.trace("Ciba request : '{}'", cibaRequest);
+                    if (cibaRequest != null) {
+                        if (!cibaRequest.getClient().getClientId().equals(client.getClientId())) {
+                            builder = error(400, TokenErrorResponseType.INVALID_GRANT, "The client is not authorized.");
+                            return response(builder, oAuth2AuditLog);
+                        }
+                        long currentTime = new Date().getTime();
+                        Long lastAccess = cibaRequest.getLastAccessControl();
+                        if (lastAccess == null) {
+                            lastAccess = currentTime;
+                        }
+                        cibaRequest.setLastAccessControl(currentTime);
+                        cibaRequestService.update(cibaRequest);
+
+                        if (cibaRequest.getStatus() == CibaRequestStatus.PENDING) {
+                            int intervalSeconds = appConfiguration.getBackchannelAuthenticationResponseInterval();
+                            long timeFromLastAccess = currentTime - lastAccess;
+
+                            if (timeFromLastAccess > intervalSeconds * 1000) {
+                                log.debug("Access hasn't been granted yet for authReqId: '{}'", authReqId);
+                                builder = error(400, TokenErrorResponseType.AUTHORIZATION_PENDING, "User hasn't answered yet");
+                            } else {
+                                log.debug("Slow down protection authReqId: '{}'", authReqId);
+                                builder = error(400, TokenErrorResponseType.SLOW_DOWN, "Client is asking too fast the token.");
+                            }
+                        } else if (cibaRequest.getStatus() == CibaRequestStatus.DENIED) {
+                            log.debug("The end-user denied the authorization request for authReqId: '{}'", authReqId);
+                            builder = error(400, TokenErrorResponseType.ACCESS_DENIED, "The end-user denied the authorization request.");
+                        } else if (cibaRequest.getStatus() == CibaRequestStatus.EXPIRED) {
+                            log.debug("The authentication request has expired for authReqId: '{}'", authReqId);
+                            builder = error(400, TokenErrorResponseType.EXPIRED_TOKEN, "The authentication request has expired");
+                        }
+                    } else {
+                        log.debug("AuthorizationGrant is empty by authReqId: '{}'", authReqId);
+                        builder = error(400, TokenErrorResponseType.EXPIRED_TOKEN, "Unable to find grant object for given auth_req_id.");
+                    }
+                }
+            } else if (gt == GrantType.DEVICE_CODE) {
+                return processDeviceCodeGrantType(gt, client, deviceCode, scope, executionContext, oAuth2AuditLog);
+            }
+        } catch (WebApplicationException e) {
+            throw e;
+        } catch (Exception e) {
+            builder = Response.status(500);
+            log.error(e.getMessage(), e);
+        }
+
+        return response(builder, oAuth2AuditLog);
+    }
+
+    private TokenLdap lockRefreshToken(String refreshTokenCode) {
+        try {
+            synchronized (refreshTokenLocalLock) {
+                if (refreshTokenLocalLock.containsKey(refreshTokenCode)) {
+                    log.trace("Refresh token is already used by another request. Refresh token  code: {}", refreshTokenCode);
+                    return null;
+                }
+
+                refreshTokenLocalLock.put(refreshTokenCode, refreshTokenCode);
+
+                final TokenLdap token = grantService.getGrantByCode(refreshTokenCode);
+                grantService.remove(token);
+                return token;
+            }
+        } catch (Exception e) {
+            // ignore
+            log.trace(e.getMessage(), e);
+        } finally {
+            refreshTokenLocalLock.remove(refreshTokenCode);
+        }
+        return null;
+    }
+
+    private void checkUser(AuthorizationGrant authorizationGrant, OAuth2AuditLog oAuth2AuditLog) {
+        if (!appConfiguration.getCheckUserPresenceOnRefreshToken()) {
+            return;
+        }
+
+        final User user = authorizationGrant.getUser();
+        if (user == null || "inactive".equalsIgnoreCase(user.getStatus())) {
+            log.trace("The user associated with this grant is not found or otherwise with status=inactive.");
+            throw new WebApplicationException(response(error(400, TokenErrorResponseType.INVALID_GRANT, "The user associated with this grant is not found or otherwise with status=inactive."), oAuth2AuditLog));
+        }
+    }
+
+    /**
+     * Processes token request for device code grant type.
+     * @param grantType Grant type used, should be device code.
+     * @param client Client in process.
+     * @param deviceCode Device code generated in device authn request.
+     * @param scope Scope registered in device authn request.
+     * @param executionContext ExecutionContext
+     * @param oAuth2AuditLog OAuth2AuditLog
+     */
+    private Response processDeviceCodeGrantType(final GrantType grantType, final Client client, final String deviceCode,
+                                                String scope, final ExecutionContext executionContext, final OAuth2AuditLog oAuth2AuditLog) {
+        if (!TokenParamsValidator.validateGrantType(grantType, client.getGrantTypes(), appConfiguration.getGrantTypesSupported())) {
+            return response(error(400, TokenErrorResponseType.INVALID_GRANT, "Grant types are invalid."), oAuth2AuditLog);
+        }
+
+        log.debug("Attempting to find authorizationGrant by deviceCode: '{}'", deviceCode);
+        final DeviceCodeGrant deviceCodeGrant = authorizationGrantList.getDeviceCodeGrant(deviceCode);
+        executionContext.setGrant(deviceCodeGrant);
+
+        log.trace("DeviceCodeGrant : '{}'", deviceCodeGrant);
+
+        if (deviceCodeGrant != null) {
+            if (!deviceCodeGrant.getClientId().equals(client.getClientId())) {
+                throw new WebApplicationException(response(error(400, TokenErrorResponseType.INVALID_GRANT, "The client is not authorized."), oAuth2AuditLog));
+            }
+            RefreshToken refToken = deviceCodeGrant.createRefreshToken(executionContext);
+            AccessToken accessToken = deviceCodeGrant.createAccessToken(executionContext.getHttpRequest().getHeader("X-ClientCert"), executionContext);
+
+            ExternalUpdateTokenContext context = ExternalUpdateTokenContext.of(executionContext);
+            Function<JsonWebResponse, Void> postProcessor = externalUpdateTokenService.buildModifyIdTokenProcessor(context);
+
+            boolean includeIdTokenClaims = Boolean.TRUE.equals(appConfiguration.getLegacyIdTokenClaims());
+            IdToken idToken = deviceCodeGrant.createIdToken(
+                    null, null, accessToken, refToken,
+                    null, deviceCodeGrant, includeIdTokenClaims, null, postProcessor, executionContext);
+
+            RefreshToken reToken = null;
+            if (isRefreshTokenAllowed(client, scope, deviceCodeGrant)) {
+                reToken = refToken;
+            }
+
+            if (scope != null && !scope.isEmpty()) {
+                scope = deviceCodeGrant.checkScopesPolicy(scope);
+            }
+            log.info("Device authorization in token endpoint processed and return to the client, device_code: {}", deviceCodeGrant.getDeviceCode());
+
+            oAuth2AuditLog.updateOAuth2AuditLog(deviceCodeGrant, true);
+
+            grantService.removeByCode(deviceCodeGrant.getDeviceCode());
+
+            return Response.ok().entity(getJSonResponse(accessToken, accessToken.getTokenType(),
+                    accessToken.getExpiresIn(), reToken, scope, idToken)).build();
+        } else {
+            final DeviceAuthorizationCacheControl cacheData = deviceAuthorizationService.getDeviceAuthzByDeviceCode(deviceCode);
+            log.trace("DeviceAuthorizationCacheControl data : '{}'", cacheData);
+            if (cacheData == null) {
+                log.debug("The authentication request has expired for deviceCode: '{}'", deviceCode);
+                throw new WebApplicationException(response(error(400, TokenErrorResponseType.EXPIRED_TOKEN, "The authentication request has expired."), oAuth2AuditLog));
+            }
+            if (!cacheData.getClient().getClientId().equals(client.getClientId())) {
+                throw new WebApplicationException(response(error(400, TokenErrorResponseType.INVALID_GRANT, "The client is not authorized."), oAuth2AuditLog));
+            }
+            long currentTime = new Date().getTime();
+            Long lastAccess = cacheData.getLastAccessControl();
+            if (lastAccess == null) {
+                lastAccess = currentTime;
+            }
+            cacheData.setLastAccessControl(currentTime);
+            deviceAuthorizationService.saveInCache(cacheData, true, true);
+
+            if (cacheData.getStatus() == DeviceAuthorizationStatus.PENDING) {
+                int intervalSeconds = appConfiguration.getBackchannelAuthenticationResponseInterval();
+                long timeFromLastAccess = currentTime - lastAccess;
+
+                if (timeFromLastAccess > intervalSeconds * 1000) {
+                    log.debug("Access hasn't been granted yet for deviceCode: '{}'", deviceCode);
+                    throw new WebApplicationException(response(error(400, TokenErrorResponseType.AUTHORIZATION_PENDING, "User hasn't answered yet"), oAuth2AuditLog));
+                } else {
+                    log.debug("Slow down protection deviceCode: '{}'", deviceCode);
+                    throw new WebApplicationException(response(error(400, TokenErrorResponseType.SLOW_DOWN, "Client is asking too fast the token."), oAuth2AuditLog));
+                }
+            }
+            if (cacheData.getStatus() == DeviceAuthorizationStatus.DENIED) {
+                log.debug("The end-user denied the authorization request for deviceCode: '{}'", deviceCode);
+                throw new WebApplicationException(response(error(400, TokenErrorResponseType.ACCESS_DENIED, "The end-user denied the authorization request."), oAuth2AuditLog));
+            }
+            log.debug("The authentication request has expired for deviceCode: '{}'", deviceCode);
+            throw new WebApplicationException(response(error(400, TokenErrorResponseType.EXPIRED_TOKEN, "The authentication request has expired"), oAuth2AuditLog));
+        }
+    }
+
+    private boolean isRefreshTokenAllowed(Client client, String requestedScope, AbstractAuthorizationGrant grant) {
+        if (appConfiguration.getForceOfflineAccessScopeToEnableRefreshToken() && !grant.getScopes().contains(ScopeConstants.OFFLINE_ACCESS) && !Strings.nullToEmpty(requestedScope).contains(ScopeConstants.OFFLINE_ACCESS)) {
+            return false;
+        }
+        return Arrays.asList(client.getGrantTypes()).contains(GrantType.REFRESH_TOKEN);
+    }
+
+    private void validatePKCE(AuthorizationCodeGrant grant, String codeVerifier, OAuth2AuditLog oAuth2AuditLog) {
+        log.trace("PKCE validation, code_verifier: {}, code_challenge: {}, method: {}",
+                codeVerifier, grant.getCodeChallenge(), grant.getCodeChallengeMethod());
+
+        if (Strings.isNullOrEmpty(grant.getCodeChallenge()) && Strings.isNullOrEmpty(codeVerifier)) {
+            return; // if no code challenge then it's valid, no PKCE check
+        }
+
+        if (!CodeVerifier.matched(grant.getCodeChallenge(), grant.getCodeChallengeMethod(), codeVerifier)) {
+            log.error("PKCE check fails. Code challenge does not match to request code verifier, " +
+                    "grantId:" + grant.getGrantId() + ", codeVerifier: " + codeVerifier);
+            throw new WebApplicationException(response(error(401, TokenErrorResponseType.INVALID_GRANT, "PKCE check fails. Code challenge does not match to request code verifier."), oAuth2AuditLog));
+        }
+    }
+
+    private Response response(ResponseBuilder builder, OAuth2AuditLog oAuth2AuditLog) {
+        builder.cacheControl(ServerUtil.cacheControl(true, false));
+        builder.header("Pragma", "no-cache");
+
+        applicationAuditLogger.sendMessage(oAuth2AuditLog);
+
+        return builder.build();
+    }
+
+    private ResponseBuilder error(int p_status, TokenErrorResponseType p_type, String reason) {
+        return Response.status(p_status).type(MediaType.APPLICATION_JSON_TYPE).entity(errorResponseFactory.errorAsJson(p_type, reason));
+    }
+
+    /**
+     * Builds a JSon String with the structure for token issues.
+     */
+    public String getJSonResponse(AccessToken accessToken, TokenType tokenType,
+                                  Integer expiresIn, RefreshToken refreshToken, String scope,
+                                  IdToken idToken) {
+        JSONObject jsonObj = new JSONObject();
+        try {
+            jsonObj.put("access_token", accessToken.getCode()); // Required
+            jsonObj.put("token_type", tokenType.toString()); // Required
+            if (expiresIn != null) { // Optional
+                jsonObj.put("expires_in", expiresIn);
+            }
+            if (refreshToken != null) { // Optional
+                jsonObj.put("refresh_token", refreshToken.getCode());
+            }
+            if (scope != null) { // Optional
+                jsonObj.put("scope", scope);
+            }
+            if (idToken != null) {
+                jsonObj.put("id_token", idToken.getCode());
+            }
+        } catch (JSONException e) {
+            log.error(e.getMessage(), e);
+        }
+
+        return jsonObj.toString();
+    }
+}
\ No newline at end of file
diff --git a/oxAuth/Server/src/main/java/org/gluu/oxauth/uma/authorization/Claims.java b/oxAuth/Server/src/main/java/org/gluu/oxauth/uma/authorization/Claims.java
new file mode 100644
index 00000000..c3a3cd56
--- /dev/null
+++ b/oxAuth/Server/src/main/java/org/gluu/oxauth/uma/authorization/Claims.java
@@ -0,0 +1,74 @@
+package org.gluu.oxauth.uma.authorization;
+
+import java.util.Map;
+import java.util.Set;
+import java.util.concurrent.ConcurrentHashMap;
+
+import org.apache.commons.lang.StringUtils;
+import org.gluu.oxauth.model.jwt.Jwt;
+
+/**
+ * @author yuriyz on 06/02/2017.
+ */
+public class Claims {
+
+    private Jwt claimsToken;
+    private String claimsTokenAsString;
+    private UmaPCT pct;
+    private Map<String, Object> claims = new ConcurrentHashMap<String, Object>();
+
+    public Claims(Jwt claimsToken, UmaPCT pct, String claimsTokenAsString) {
+        this.claimsToken = claimsToken;
+        this.pct = pct;
+        this.claimsTokenAsString = claimsTokenAsString;
+    }
+
+    public String getClaimsTokenAsString() {
+        return claimsTokenAsString;
+    }
+
+    public Set<String> keys() {
+        return claims.keySet();
+    }
+
+    public Object get(String key) {
+        if (StringUtils.isBlank(key)) {
+            return null;
+        }
+
+        if (claims.containsKey(key)) {
+            return claims.get(key);
+        } else if (claimsToken != null && claimsToken.getClaims() != null && claimsToken.getClaims().hasClaim(key)) {
+            return claimsToken.getClaims().getClaim(key);
+        } else if (pct != null && pct.getClaims() != null && pct.getClaims().hasClaim(key)) {
+            return pct.getClaims().getClaim(key);
+        }
+        return null;
+    }
+
+    public Object getClaimTokenClaim(String key) {
+        if (claimsToken != null && claimsToken.getClaims() != null && claimsToken.getClaims().hasClaim(key)) {
+            return claimsToken.getClaims().getClaim(key);
+        }
+        return null;
+    }
+
+    public Object getPctClaim(String key) {
+        if (pct != null && pct.getClaims() != null && pct.getClaims().hasClaim(key)) {
+            return pct.getClaims().getClaim(key);
+        }
+        return null;
+    }
+
+    public boolean has(String key) {
+        return get(key) != null;
+    }
+
+    public void put(String key, Object value) {
+        claims.put(key, value);
+    }
+
+    public void removeClaim(String key) {
+        claims.remove(key);
+    }
+}
diff --git a/oxAuth/Server/src/main/java/org/gluu/oxauth/uma/authorization/IPolicyExternalAuthorization.java b/oxAuth/Server/src/main/java/org/gluu/oxauth/uma/authorization/IPolicyExternalAuthorization.java
new file mode 100644
index 00000000..b6e96d86
--- /dev/null
+++ b/oxAuth/Server/src/main/java/org/gluu/oxauth/uma/authorization/IPolicyExternalAuthorization.java
@@ -0,0 +1,17 @@
+/*
+ * oxAuth is available under the MIT License (2008). See http://opensource.org/licenses/MIT for full text.
+ *
+ * Copyright (c) 2014, Gluu
+ */
+
+package org.gluu.oxauth.uma.authorization;
+
+/**
+ * @author Yuriy Zabrovarnyy
+ * @version 0.9, 21/02/2013
+ */
+
+public interface IPolicyExternalAuthorization {
+
+    public boolean authorize(UmaAuthorizationContext authorizationContext);
+}
diff --git a/oxAuth/Server/src/main/java/org/gluu/oxauth/uma/authorization/PolicyExternalAuthorizationEnum.java b/oxAuth/Server/src/main/java/org/gluu/oxauth/uma/authorization/PolicyExternalAuthorizationEnum.java
new file mode 100644
index 00000000..e74d0abb
--- /dev/null
+++ b/oxAuth/Server/src/main/java/org/gluu/oxauth/uma/authorization/PolicyExternalAuthorizationEnum.java
@@ -0,0 +1,27 @@
+/*
+ * oxAuth is available under the MIT License (2008). See http://opensource.org/licenses/MIT for full text.
+ *
+ * Copyright (c) 2014, Gluu
+ */
+
+package org.gluu.oxauth.uma.authorization;
+
+/**
+ * @author Yuriy Zabrovarnyy
+ * @version 0.9, 22/02/2013
+ */
+
+public enum PolicyExternalAuthorizationEnum implements IPolicyExternalAuthorization {
+    TRUE(true), FALSE(false);
+
+    private final boolean m_result;
+
+    private PolicyExternalAuthorizationEnum(boolean p_result) {
+        m_result = p_result;
+    }
+
+    @Override
+    public boolean authorize(UmaAuthorizationContext p_authorizationContext) {
+        return m_result;
+    }
+}
diff --git a/oxAuth/Server/src/main/java/org/gluu/oxauth/uma/authorization/UmaAuthorizationContext.java b/oxAuth/Server/src/main/java/org/gluu/oxauth/uma/authorization/UmaAuthorizationContext.java
new file mode 100644
index 00000000..d1e17404
--- /dev/null
+++ b/oxAuth/Server/src/main/java/org/gluu/oxauth/uma/authorization/UmaAuthorizationContext.java
@@ -0,0 +1,220 @@
+/*
+ * oxAuth is available under the MIT License (2008). See http://opensource.org/licenses/MIT for full text.
+ *
+ * Copyright (c) 2014, Gluu
+ */
+
+package org.gluu.oxauth.uma.authorization;
+
+import com.google.common.collect.Lists;
+import com.google.common.collect.Maps;
+import org.gluu.model.SimpleCustomProperty;
+import org.gluu.oxauth.model.common.User;
+import org.gluu.oxauth.model.configuration.AppConfiguration;
+import org.gluu.oxauth.model.registration.Client;
+import org.gluu.oxauth.model.session.SessionId;
+import org.gluu.oxauth.model.uma.persistence.UmaPermission;
+import org.gluu.oxauth.model.uma.persistence.UmaResource;
+import org.gluu.oxauth.service.AttributeService;
+import org.gluu.oxauth.service.common.UserService;
+import org.gluu.oxauth.service.external.context.ExternalScriptContext;
+import org.gluu.oxauth.uma.service.RedirectParameters;
+import org.gluu.oxauth.uma.service.UmaPermissionService;
+import org.gluu.oxauth.uma.service.UmaSessionService;
+import org.oxauth.persistence.model.Scope;
+
+import javax.servlet.http.HttpServletRequest;
+import java.util.*;
+
+/**
+ * @author Yuriy Zabrovarnyy
+ * @author Javier Rojas Blum
+ * @author Yuriy Movchan
+ */
+
+public class UmaAuthorizationContext extends ExternalScriptContext {
+
+    private final Claims claims;
+    private final Map<Scope, Boolean> scopes; // scope and boolean, true - if client requested scope and false if it is permission ticket scope
+    private final Set<UmaResource> resources;
+    private final String scriptDn;
+    private final Map<String, SimpleCustomProperty> configurationAttributes;
+    private final RedirectParameters redirectUserParameters = new RedirectParameters();
+    private final AppConfiguration configuration;
+
+    private final AttributeService attributeService;
+    private final UmaSessionService sessionService;
+    private final UserService userService;
+    private final UmaPermissionService permissionService;
+    private final Client client;
+
+    public UmaAuthorizationContext(AppConfiguration configuration, AttributeService attributeService, Map<Scope, Boolean> scopes,
+                                   Set<UmaResource> resources, Claims claims, String scriptDn, HttpServletRequest httpRequest,
+                                   Map<String, SimpleCustomProperty> configurationAttributes, UmaSessionService sessionService,
+                                   UserService userService, UmaPermissionService permissionService, Client client) {
+    	super(httpRequest);
+
+        this.configuration = configuration;
+    	this.attributeService = attributeService;
+        this.sessionService = sessionService;
+        this.userService = userService;
+        this.permissionService = permissionService;
+        this.client = client;
+        this.scopes = new HashMap<Scope, Boolean>(scopes);
+        this.resources = resources;
+        this.claims = claims;
+        this.scriptDn = scriptDn;
+        this.configurationAttributes = configurationAttributes != null ? configurationAttributes : new HashMap<String, SimpleCustomProperty>();
+    }
+
+    public String getClaimToken() {
+        return getClaims().getClaimsTokenAsString();
+    }
+
+    public Object getClaimTokenClaim(String key) {
+        return getClaims().getClaimTokenClaim(key);
+    }
+
+    public Object getPctClaim(String key) {
+        return getClaims().getPctClaim(key);
+    }
+
+    public String getIssuer() {
+        return configuration.getIssuer();
+    }
+
+    public String getScriptDn() {
+        return scriptDn;
+    }
+
+    public Map<String, SimpleCustomProperty> getConfigurationAttributes() {
+        return configurationAttributes;
+    }
+
+    public Set<String> getScopes() {
+        Set<String> result = new HashSet<String>();
+        for (Scope scope : getScopeMap().keySet()) {
+            result.add(scope.getId());
+        }
+        return result;
+    }
+
+    /**
+     * @return scopes that are bound to currently executed script
+     */
+    public Set<String> getScriptScopes() {
+        Set<String> result = new HashSet<String>();
+        for (Scope scope : getScopeMap().keySet()) {
+            if (scope.getUmaAuthorizationPolicies() != null && scope.getUmaAuthorizationPolicies().contains(scriptDn)) {
+                result.add(scope.getId());
+            }
+        }
+        return result;
+    }
+
+    public Map<Scope, Boolean> getScopeMap() {
+        return Maps.newHashMap(scopes);
+    }
+
+    public Set<UmaResource> getResources() {
+        return resources;
+    }
+
+    public Set<String> getResourceIds() {
+        Set<String> result = new HashSet<String>();
+        for (UmaResource resource : resources) {
+            result.add(resource.getId());
+        }
+        return result;
+    }
+
+    public Claims getClaims() {
+        return claims;
+    }
+
+    public Object getClaim(String claimName) {
+        return claims.get(claimName);
+    }
+
+    public void putClaim(String claimName, Object claimValue) {
+        claims.put(claimName, claimValue);
+    }
+
+    public boolean hasClaim(String claimName) {
+        return claims.has(claimName);
+    }
+
+    public void removeClaim(String claimName) {
+        claims.removeClaim(claimName);
+    }
+
+    public void addRedirectUserParam(String paramName, String paramValue) {
+        redirectUserParameters.add(paramName, paramValue);
+    }
+
+    public void removeRedirectUserParameter(String paramName) {
+        redirectUserParameters.remove(paramName);
+    }
+
+    public RedirectParameters getRedirectUserParameters() {
+        return redirectUserParameters;
+    }
+
+    public Map<String, Set<String>> getRedirectUserParametersMap() {
+        return redirectUserParameters.map();
+    }
+
+    public User getUser(String... returnAttributes) {
+        return sessionService.getUser(httpRequest, returnAttributes);
+    }
+
+    public boolean isAuthenticated() {
+        return getUser() != null;
+    }
+
+    public String getUserDn() {
+        return sessionService.getUserDn(httpRequest);
+    }
+
+    public Client getClient() {
+        return client;
+    }
+
+    public List<UmaPermission> getPermissions() {
+        SessionId session = sessionService.getSession(httpRequest, httpResponse);
+        if (session == null) {
+            getLog().trace("No UMA session set.");
+            return Lists.newArrayList();
+        }
+        return permissionService.getPermissionsByTicket(sessionService.getTicket(session));
+    }
+
+
+    //    public String getClientClaim(String p_claimName) {
+//        return getEntryAttributeValue(getGrant().getClientDn(), p_claimName);
+//    }
+//
+//    public String getUserClaim(String p_claimName) {
+//        GluuAttribute gluuAttribute = attributeService.getByClaimName(p_claimName);
+//
+//        if (gluuAttribute != null) {
+//            String ldapClaimName = gluuAttribute.getName();
+//            return getEntryAttributeValue(getGrant().getUserDn(), ldapClaimName);
+//        }
+//
+//        return null;
+//    }
+//
+//    public String getUserClaimByLdapName(String p_ldapName) {
+//        return getEntryAttributeValue(getGrant().getUserDn(), p_ldapName);
+//    }
+//
+//    public CustomEntry getUserClaimEntryByLdapName(String ldapName) {
+//        return getEntryByDn(getGrant().getUserDn(), ldapName);
+//    }
+//
+//    public CustomEntry getClientClaimEntry(String ldapName) {
+//        return getEntryByDn(getGrant().getClientDn(), ldapName);
+//    }
+
+}
diff --git a/oxAuth/Server/src/main/java/org/gluu/oxauth/uma/authorization/UmaAuthorizationContextBuilder.java b/oxAuth/Server/src/main/java/org/gluu/oxauth/uma/authorization/UmaAuthorizationContextBuilder.java
new file mode 100644
index 00000000..e93d4a74
--- /dev/null
+++ b/oxAuth/Server/src/main/java/org/gluu/oxauth/uma/authorization/UmaAuthorizationContextBuilder.java
@@ -0,0 +1,72 @@
+package org.gluu.oxauth.uma.authorization;
+
+import org.gluu.model.custom.script.conf.CustomScriptConfiguration;
+import org.gluu.oxauth.model.configuration.AppConfiguration;
+import org.gluu.oxauth.model.registration.Client;
+import org.gluu.oxauth.model.uma.persistence.UmaPermission;
+import org.gluu.oxauth.model.uma.persistence.UmaResource;
+import org.gluu.oxauth.service.AttributeService;
+import org.gluu.oxauth.service.common.UserService;
+import org.gluu.oxauth.uma.service.UmaPermissionService;
+import org.gluu.oxauth.uma.service.UmaResourceService;
+import org.gluu.oxauth.uma.service.UmaSessionService;
+import org.oxauth.persistence.model.Scope;
+
+import javax.servlet.http.HttpServletRequest;
+import java.util.HashSet;
+import java.util.List;
+import java.util.Map;
+import java.util.Set;
+
+/**
+ * @author yuriyz on 06/06/2017.
+ */
+public class UmaAuthorizationContextBuilder {
+
+    private final AttributeService attributeService;
+    private final UmaResourceService resourceService;
+    private final List<UmaPermission> permissions;
+    private final Map<Scope, Boolean> scopes;
+    private final Claims claims;
+    private final HttpServletRequest httpRequest;
+    private final AppConfiguration configuration;
+    private final UmaSessionService sessionService;
+    private final UserService userService;
+    private final UmaPermissionService permissionService;
+    private final Client client;
+
+    public UmaAuthorizationContextBuilder(AppConfiguration configuration, AttributeService attributeService, UmaResourceService resourceService,
+                                          List<UmaPermission> permissions, Map<Scope, Boolean> scopes,
+                                          Claims claims, HttpServletRequest httpRequest,
+                                          UmaSessionService sessionService, UserService userService, UmaPermissionService permissionService, Client client) {
+        this.configuration = configuration;
+        this.attributeService = attributeService;
+        this.resourceService = resourceService;
+        this.permissions = permissions;
+        this.client = client;
+        this.scopes = scopes;
+        this.claims = claims;
+        this.httpRequest = httpRequest;
+        this.sessionService = sessionService;
+        this.userService = userService;
+        this.permissionService = permissionService;
+    }
+
+    public UmaAuthorizationContext build(CustomScriptConfiguration script) {
+        return new UmaAuthorizationContext(configuration, attributeService, scopes, getResources(), claims,
+                script.getCustomScript().getDn(), httpRequest, script.getConfigurationAttributes(),
+                sessionService, userService, permissionService, client);
+    }
+
+    public Set<String> getResourceIds() {
+        Set<String> result = new HashSet<String>();
+        for (UmaPermission permission : permissions) {
+            result.add(permission.getResourceId());
+        }
+        return result;
+    }
+
+    public Set<UmaResource> getResources() {
+        return resourceService.getResources(getResourceIds());
+    }
+}
diff --git a/oxAuth/Server/src/main/java/org/gluu/oxauth/uma/authorization/UmaGatherContext.java b/oxAuth/Server/src/main/java/org/gluu/oxauth/uma/authorization/UmaGatherContext.java
new file mode 100644
index 00000000..2ea077a4
--- /dev/null
+++ b/oxAuth/Server/src/main/java/org/gluu/oxauth/uma/authorization/UmaGatherContext.java
@@ -0,0 +1,205 @@
+/*
+ * oxAuth is available under the MIT License (2008). See http://opensource.org/licenses/MIT for full text.
+ *
+ * Copyright (c) 2015, Gluu
+ */
+
+package org.gluu.oxauth.uma.authorization;
+
+import java.util.HashMap;
+import java.util.List;
+import java.util.Map;
+import java.util.Set;
+
+import javax.servlet.http.HttpServletRequest;
+
+import org.gluu.jsf2.service.FacesService;
+import org.gluu.model.SimpleCustomProperty;
+import org.gluu.oxauth.model.configuration.AppConfiguration;
+import org.gluu.oxauth.model.exception.InvalidJwtException;
+import org.gluu.oxauth.model.jwt.JwtClaims;
+import org.gluu.oxauth.model.registration.Client;
+import org.gluu.oxauth.model.session.SessionId;
+import org.gluu.oxauth.model.uma.persistence.UmaPermission;
+import org.gluu.oxauth.service.common.UserService;
+import org.gluu.oxauth.service.external.context.ExternalScriptContext;
+import org.gluu.oxauth.uma.service.RedirectParameters;
+import org.gluu.oxauth.uma.service.UmaPctService;
+import org.gluu.oxauth.uma.service.UmaPermissionService;
+import org.gluu.oxauth.uma.service.UmaSessionService;
+import org.gluu.oxauth.uma.ws.rs.UmaMetadataWS;
+import org.gluu.oxauth.model.common.User;
+
+/**
+ * @author yuriyz
+ * @version August 9, 2017
+ */
+public class UmaGatherContext extends ExternalScriptContext {
+
+    private final UmaSessionService sessionService;
+    private final UmaPermissionService permissionService;
+    private final UmaPctService pctService;
+    private final UserService userService;
+    private final FacesService facesService;
+
+    private final Map<String, SimpleCustomProperty> configurationAttributes;
+    private final AppConfiguration appConfiguration;
+    private final SessionId session;
+    private final RedirectParameters redirectUserParameters = new RedirectParameters();
+    private final UmaPCT pct;
+    private final JwtClaims claims;
+    private final Map<String, String> pageClaims;
+    private String redirectToExternalUrl = null;
+
+    public UmaGatherContext(Map<String, SimpleCustomProperty> configurationAttributes, HttpServletRequest httpRequest, SessionId session, UmaSessionService sessionService,
+                            UmaPermissionService permissionService, UmaPctService pctService, Map<String, String> pageClaims,
+                            UserService userService, FacesService facesService, AppConfiguration appConfiguration) {
+        super(httpRequest);
+        this.configurationAttributes = configurationAttributes;
+        this.session = session;
+        this.sessionService = sessionService;
+        this.permissionService = permissionService;
+        this.userService = userService;
+        this.pctService = pctService;
+        this.facesService = facesService;
+        this.pct = pctService.getByCode(sessionService.getPct(session));
+        this.claims = pct.getClaims();
+        this.pageClaims = pageClaims;
+        this.appConfiguration = appConfiguration;
+    }
+
+    public Map<String, SimpleCustomProperty> getConfigurationAttributes() {
+        return configurationAttributes;
+    }
+
+    public User getUser(String... returnAttributes) {
+        return sessionService.getUser(httpRequest, returnAttributes);
+    }
+
+    public String getUserDn() {
+        return sessionService.getUserDn(httpRequest);
+    }
+
+
+    public Client getClient() {
+        return sessionService.getClient(session);
+    }
+
+    public Map<String, String> getConnectSessionAttributes() {
+        SessionId connectSession = sessionService.getConnectSession(httpRequest);
+        if (connectSession != null) {
+            return new HashMap<String, String>(connectSession.getSessionAttributes());
+        }
+        return new HashMap<String, String>();
+    }
+
+    public boolean isAuthenticated() {
+        return getUser() != null;
+    }
+
+    public Map<String, String> getPageClaims() {
+        return pageClaims;
+    }
+
+    public Map<String, String[]> getRequestParameters() {
+        return httpRequest.getParameterMap();
+    }
+
+    public int getStep() {
+        return sessionService.getStep(session);
+    }
+
+    public void setStep(int step) {
+        sessionService.setStep(step, session);
+    }
+
+    public void addSessionAttribute(String key, String value) {
+        session.getSessionAttributes().put(key, value);
+    }
+
+    public void removeSessionAttribute(String key) {
+        session.getSessionAttributes().remove(key);
+    }
+
+    public Map<String, String> getSessionAttributes() {
+        return session.getSessionAttributes();
+    }
+
+    public void addRedirectUserParam(String paramName, String paramValue) {
+        redirectUserParameters.add(paramName, paramValue);
+    }
+
+    public void removeRedirectUserParameter(String paramName) {
+        redirectUserParameters.remove(paramName);
+    }
+
+    public RedirectParameters getRedirectUserParameters() {
+        return redirectUserParameters;
+    }
+
+    public Map<String, Set<String>> getRedirectUserParametersMap() {
+        return redirectUserParameters.map();
+    }
+
+    public List<UmaPermission> getPermissions() {
+        return permissionService.getPermissionsByTicket(sessionService.getTicket(session));
+    }
+
+    public JwtClaims getClaims() {
+        return claims;
+    }
+
+    public Object getClaim(String claimName) {
+        return claims.getClaim(claimName);
+    }
+
+    public void putClaim(String claimName, Object claimValue) {
+        claims.setClaimObject(claimName, claimValue, true);
+    }
+
+    public void removeClaim(String claimName) {
+        claims.removeClaim(claimName);
+    }
+
+    public boolean hasClaim(String claimName) {
+        return getClaim(claimName) != null;
+    }
+
+    /**
+     * Must not take any parameters
+     */
+    public void persist() {
+        try {
+            pct.setClaims(claims);
+        } catch (InvalidJwtException e) {
+            getLog().error("Failed to persist claims", e);
+        }
+
+        sessionService.persist(session);
+        pctService.merge(pct);
+    }
+
+    public void redirectToExternalUrl(String url) {
+        redirectToExternalUrl = url;
+    }
+
+    public String getRedirectToExternalUrl() {
+        return redirectToExternalUrl;
+    }
+
+    public String getAuthorizationEndpoint() {
+        return appConfiguration.getAuthorizationEndpoint();
+    }
+
+    public String getIssuer() {
+        return appConfiguration.getIssuer();
+    }
+
+    public String getBaseEndpoint() {
+        return appConfiguration.getBaseEndpoint();
+    }
+
+    public String getClaimsGatheringEndpoint() {
+        return getBaseEndpoint() + UmaMetadataWS.UMA_CLAIMS_GATHERING_PATH;
+    }
+}
diff --git a/oxAuth/Server/src/main/java/org/gluu/oxauth/uma/authorization/UmaPCT.java b/oxAuth/Server/src/main/java/org/gluu/oxauth/uma/authorization/UmaPCT.java
new file mode 100644
index 00000000..96c6c2c5
--- /dev/null
+++ b/oxAuth/Server/src/main/java/org/gluu/oxauth/uma/authorization/UmaPCT.java
@@ -0,0 +1,86 @@
+package org.gluu.oxauth.uma.authorization;
+
+import java.util.Date;
+
+import org.apache.commons.lang.StringUtils;
+import org.json.JSONObject;
+import org.gluu.oxauth.model.common.AbstractToken;
+import org.gluu.oxauth.model.exception.InvalidJwtException;
+import org.gluu.oxauth.model.jwt.JwtClaims;
+import org.gluu.oxauth.uma.service.UmaPctService;
+import org.gluu.persist.annotation.AttributeName;
+import org.gluu.persist.annotation.DN;
+import org.gluu.persist.annotation.DataEntry;
+import org.gluu.persist.annotation.ObjectClass;
+import org.slf4j.Logger;
+import org.slf4j.LoggerFactory;
+
+/**
+ * @author yuriyz on 05/30/2017.
+ */
+@DataEntry
+@ObjectClass(value = "oxAuthUmaPCT")
+public class UmaPCT extends AbstractToken {
+
+    private final static Logger log = LoggerFactory.getLogger(UmaPCT.class);
+
+    @DN
+    private String dn;
+    @AttributeName(name = "clnId")
+    private String clientId;
+    @AttributeName(name = "oxClaimValues")
+    private String claimValuesAsJson;
+
+    public UmaPCT() {
+        super(UmaPctService.DEFAULT_PCT_LIFETIME);
+    }
+
+    public UmaPCT(int lifeTime) {
+        super(lifeTime);
+    }
+
+    protected UmaPCT(String code, Date creationDate, Date expirationDate) {
+        super(code, creationDate, expirationDate);
+    }
+
+    public String getDn() {
+        return dn;
+    }
+
+    public void setDn(String dn) {
+        this.dn = dn;
+    }
+
+    public String getClientId() {
+        return clientId;
+    }
+
+    public void setClientId(String clientId) {
+        this.clientId = clientId;
+    }
+
+    public String getClaimValuesAsJson() {
+        return claimValuesAsJson;
+    }
+
+    public void setClaimValuesAsJson(String claimValuesAsJson) {
+        this.claimValuesAsJson = claimValuesAsJson;
+    }
+
+    public JwtClaims getClaims() {
+        try {
+            return StringUtils.isNotBlank(claimValuesAsJson) ? new JwtClaims(new JSONObject(claimValuesAsJson)) : new JwtClaims();
+        } catch (Exception e) {
+            log.error("Failed to parse PCT claims. " + e.getMessage(), e);
+            return null;
+        }
+    }
+
+    public void setClaims(JwtClaims claims) throws InvalidJwtException {
+        if (claims != null) {
+            claimValuesAsJson = claims.toJsonString();
+        } else {
+            claimValuesAsJson = null;
+        }
+    }
+}
diff --git a/oxAuth/Server/src/main/java/org/gluu/oxauth/uma/authorization/UmaRPT.java b/oxAuth/Server/src/main/java/org/gluu/oxauth/uma/authorization/UmaRPT.java
new file mode 100644
index 00000000..4d703fe2
--- /dev/null
+++ b/oxAuth/Server/src/main/java/org/gluu/oxauth/uma/authorization/UmaRPT.java
@@ -0,0 +1,99 @@
+/*
+ * oxAuth is available under the MIT License (2008). See http://opensource.org/licenses/MIT for full text.
+ *
+ * Copyright (c) 2014, Gluu
+ */
+
+package org.gluu.oxauth.uma.authorization;
+
+import org.gluu.oxauth.model.common.AbstractToken;
+import org.gluu.persist.annotation.AttributeName;
+import org.gluu.persist.annotation.DN;
+import org.gluu.persist.annotation.DataEntry;
+import org.gluu.persist.annotation.ObjectClass;
+
+import java.util.Date;
+import java.util.List;
+
+/**
+ * Requesting Party Token.
+ *
+ * @author Yuriy Movchan Date: 10/16/2012
+ */
+@DataEntry
+@ObjectClass(value = "oxAuthUmaRPT")
+public class UmaRPT extends AbstractToken {
+
+    @DN
+    private String dn;
+
+    private String notHashedCode;
+
+    @AttributeName(name = "usrId")
+    private String userId;
+    @AttributeName(name = "clnId")
+    private String clientId;
+    @AttributeName(name = "oxUmaPermission")
+    private List<String> permissions;
+    
+    public UmaRPT() {
+        super(1);
+    }
+
+    public UmaRPT(String code, Date creationDate, Date expirationDate, String userId, String clientId) {
+        super(code, creationDate, expirationDate);
+        this.notHashedCode = getCode();
+        this.userId = userId;
+        this.clientId = clientId;
+    }
+
+    public String getDn() {
+        return dn;
+    }
+
+    public void setDn(String p_dn) {
+        dn = p_dn;
+    }
+
+	public void setNotHashedCode(String notHashedCode) {
+		this.notHashedCode = notHashedCode;
+	}
+
+    public String getNotHashedCode() {
+        return notHashedCode;
+    }
+
+	public String getUserId() {
+        return userId;
+    }
+
+    public void setUserId(String userId) {
+        this.userId = userId;
+    }
+
+    public String getClientId() {
+        return clientId;
+    }
+
+    public void setClientId(String clientId) {
+        this.clientId = clientId;
+    }
+
+    public List<String> getPermissions() {
+        return permissions;
+    }
+
+    public void setPermissions(List<String> p_permissions) {
+        permissions = p_permissions;
+    }
+
+    @Override
+    public String toString() {
+        return "UmaRPT{" +
+                "dn='" + dn + '\'' +
+                ", userId='" + userId + '\'' +
+                ", clientId='" + clientId + '\'' +
+                ", permissions=" + permissions +
+                "} " + super.toString();
+    }
+}
diff --git a/oxAuth/Server/src/main/java/org/gluu/oxauth/uma/authorization/UmaScriptByScope.java b/oxAuth/Server/src/main/java/org/gluu/oxauth/uma/authorization/UmaScriptByScope.java
new file mode 100644
index 00000000..53e025d0
--- /dev/null
+++ b/oxAuth/Server/src/main/java/org/gluu/oxauth/uma/authorization/UmaScriptByScope.java
@@ -0,0 +1,46 @@
+package org.gluu.oxauth.uma.authorization;
+
+import org.gluu.model.custom.script.conf.CustomScriptConfiguration;
+import org.oxauth.persistence.model.Scope;
+
+/**
+ * @author yuriyz
+ */
+public class UmaScriptByScope {
+
+    private Scope scope;
+
+    private CustomScriptConfiguration script;
+
+    public UmaScriptByScope() {
+    }
+
+    public UmaScriptByScope(Scope scope, CustomScriptConfiguration script) {
+        this.scope = scope;
+        this.script = script;
+    }
+
+    public Scope getScope() {
+        return scope;
+    }
+
+    public void setScope(Scope scope) {
+        this.scope = scope;
+    }
+
+    public CustomScriptConfiguration getScript() {
+        return script;
+    }
+
+    public void setScript(CustomScriptConfiguration script) {
+        this.script = script;
+    }
+
+    @Override
+    public String toString() {
+        return "UmaScript{" +
+                "scope=" + scope +
+                ", script=" + script +
+                '}';
+    }
+}
diff --git a/oxAuth/Server/src/main/java/org/gluu/oxauth/uma/authorization/UmaWebException.java b/oxAuth/Server/src/main/java/org/gluu/oxauth/uma/authorization/UmaWebException.java
new file mode 100644
index 00000000..d29c1d85
--- /dev/null
+++ b/oxAuth/Server/src/main/java/org/gluu/oxauth/uma/authorization/UmaWebException.java
@@ -0,0 +1,63 @@
+package org.gluu.oxauth.uma.authorization;
+
+import org.apache.commons.lang.StringUtils;
+import org.gluu.oxauth.model.error.DefaultErrorResponse;
+import org.gluu.oxauth.model.error.ErrorResponseFactory;
+import org.gluu.oxauth.model.uma.UmaErrorResponseType;
+import org.slf4j.Logger;
+import org.slf4j.LoggerFactory;
+
+import javax.ws.rs.WebApplicationException;
+import javax.ws.rs.core.Response;
+import java.net.URI;
+import java.net.URLEncoder;
+
+import static javax.ws.rs.core.Response.Status.FOUND;
+import static javax.ws.rs.core.Response.Status.INTERNAL_SERVER_ERROR;
+
+/**
+ * @author yuriyz on 06/06/2017.
+ */
+public class UmaWebException extends WebApplicationException {
+
+    private final static Logger LOGGER = LoggerFactory.getLogger(UmaWebException.class);
+
+    private UmaWebException() {
+    }
+
+    public UmaWebException(String redirectUri, ErrorResponseFactory factory, UmaErrorResponseType error, String state) {
+        super(createRedirectErrorResponse(redirectUri, factory, error, state));
+    }
+
+    public static Response createRedirectErrorResponse(String redirectUri, ErrorResponseFactory factory, UmaErrorResponseType errorType, String state) {
+        return Response
+                .status(FOUND)
+                .location(createErrorUri(redirectUri, factory, errorType, state))
+                .build();
+    }
+
+    public static URI createErrorUri(String redirectUri, ErrorResponseFactory factory, UmaErrorResponseType errorType, String state) {
+        try {
+            DefaultErrorResponse error = factory.getErrorResponse(errorType);
+            if (redirectUri.contains("?")) {
+                redirectUri += "&";
+            } else {
+                redirectUri += "?";
+            }
+
+            redirectUri += "error=" + error.getErrorCode();
+            redirectUri += "&error_description=" + URLEncoder.encode(error.getErrorDescription(), "UTF-8");
+            if (StringUtils.isNotBlank(error.getErrorUri())) {
+                redirectUri += "&error_uri=" + URLEncoder.encode(error.getErrorUri(), "UTF-8");
+            }
+            if (StringUtils.isNotBlank(state)) {
+                redirectUri += "&state=" + state;
+            }
+
+            return new URI(redirectUri);
+        } catch (Exception e) {
+            LOGGER.error("Failed to construct uri: " + redirectUri, e);
+            throw factory.createWebApplicationException(INTERNAL_SERVER_ERROR, UmaErrorResponseType.SERVER_ERROR, "Failed to construct uri");
+        }
+    }
+}
diff --git a/oxAuth/Server/src/main/java/org/gluu/oxauth/uma/service/RedirectParameters.java b/oxAuth/Server/src/main/java/org/gluu/oxauth/uma/service/RedirectParameters.java
new file mode 100644
index 00000000..05cd0507
--- /dev/null
+++ b/oxAuth/Server/src/main/java/org/gluu/oxauth/uma/service/RedirectParameters.java
@@ -0,0 +1,65 @@
+package org.gluu.oxauth.uma.service;
+
+import java.io.UnsupportedEncodingException;
+import java.net.URLEncoder;
+import java.util.HashMap;
+import java.util.HashSet;
+import java.util.Map;
+import java.util.Set;
+
+import org.apache.commons.lang.StringUtils;
+import org.slf4j.Logger;
+import org.slf4j.LoggerFactory;
+
+/**
+ * @author yuriyz on 06/21/2017.
+ */
+public class RedirectParameters {
+
+    private final static Logger LOGGER = LoggerFactory.getLogger(RedirectParameters.class);
+
+    private final Map<String, Set<String>> map = new HashMap<String, Set<String>>();
+
+    public RedirectParameters() {
+    }
+
+    public void add(String paramName, String paramValue) {
+        Set<String> valueSet = map.get(paramName);
+        if (valueSet != null) {
+            valueSet.add(paramValue);
+        } else {
+            Set<String> value = new HashSet<String>();
+            value.add(paramValue);
+            map.put(paramName, value);
+        }
+    }
+
+    public void remove(String paramName) {
+        map.remove(paramName);
+    }
+
+    public Map<String, Set<String>> map() {
+        return map;
+    }
+
+    public String buildQueryString() {
+        String queryString = "";
+        for (Map.Entry<String, Set<String>> param : map.entrySet()) {
+            Set<String> values = param.getValue();
+            if (StringUtils.isNotBlank(param.getKey()) && values != null && !values.isEmpty()) {
+                for (String value : values) {
+                    if (StringUtils.isNotBlank(value)) {
+                        try {
+                            queryString += param.getKey() + "=" + URLEncoder.encode(value, "UTF-8") + "&";
+                        } catch (UnsupportedEncodingException e) {
+                            LOGGER.error("Failed to encode value: " + value, e);
+                        }
+                    }
+                }
+            }
+        }
+        queryString = StringUtils.removeEnd(queryString, "&");
+        return queryString;
+    }
+
+}
diff --git a/oxAuth/Server/src/main/java/org/gluu/oxauth/uma/service/UmaExpressionService.java b/oxAuth/Server/src/main/java/org/gluu/oxauth/uma/service/UmaExpressionService.java
new file mode 100644
index 00000000..a6e44709
--- /dev/null
+++ b/oxAuth/Server/src/main/java/org/gluu/oxauth/uma/service/UmaExpressionService.java
@@ -0,0 +1,173 @@
+package org.gluu.oxauth.uma.service;
+
+import com.google.common.collect.Lists;
+import org.gluu.oxauth.model.error.ErrorResponseFactory;
+import org.gluu.oxauth.model.uma.JsonLogic;
+import org.gluu.oxauth.model.uma.JsonLogicNode;
+import org.gluu.oxauth.model.uma.JsonLogicNodeParser;
+import org.gluu.oxauth.model.uma.UmaErrorResponseType;
+import org.gluu.oxauth.model.uma.persistence.UmaPermission;
+import org.gluu.oxauth.model.uma.persistence.UmaResource;
+import org.gluu.oxauth.model.util.Util;
+import org.gluu.oxauth.service.external.ExternalUmaRptPolicyService;
+import org.gluu.oxauth.uma.authorization.UmaAuthorizationContext;
+import org.gluu.oxauth.uma.authorization.UmaScriptByScope;
+import org.gluu.util.StringHelper;
+import org.slf4j.Logger;
+
+import javax.enterprise.context.ApplicationScoped;
+import javax.inject.Inject;
+import javax.ws.rs.core.Response;
+import java.util.ArrayList;
+import java.util.HashMap;
+import java.util.List;
+import java.util.Map;
+
+/**
+ * @author yuriyz
+ */
+@ApplicationScoped
+public class UmaExpressionService {
+
+    @Inject
+    private Logger log;
+    @Inject
+    private ExternalUmaRptPolicyService policyService;
+    @Inject
+    private ErrorResponseFactory errorResponseFactory;
+    @Inject
+    private UmaResourceService resourceService;
+    @Inject
+
+    private UmaPermissionService permissionService;
+
+    public boolean isExpressionValid(String expression) {
+        return JsonLogicNodeParser.isNodeValid(expression);
+    }
+
+    public void evaluate(Map<UmaScriptByScope, UmaAuthorizationContext> scriptMap, List<UmaPermission> permissions) {
+        for (UmaPermission permission : permissions) {
+            UmaResource resource = resourceService.getResourceById(permission.getResourceId());
+            if (StringHelper.isNotEmpty(resource.getScopeExpression())) {
+                evaluateScopeExpression(scriptMap, permission, resource);
+            } else {
+                if (!evaluateByScopes(filterByScopeDns(scriptMap, permission.getScopeDns()))) {
+                    log.trace("Regular evaluation returns false, access FORBIDDEN.");
+                    throw errorResponseFactory.createWebApplicationException(Response.Status.FORBIDDEN, UmaErrorResponseType.FORBIDDEN_BY_POLICY, "Regular evaluation returns false, access FORBIDDEN.");
+                }
+            }
+        }
+    }
+
+    private boolean evaluateByScopes(Map<UmaScriptByScope, UmaAuthorizationContext> scriptMap) {
+        for (Map.Entry<UmaScriptByScope, UmaAuthorizationContext> entry : scriptMap.entrySet()) {
+            final boolean result = policyService.authorize(entry.getKey().getScript(), entry.getValue());
+            log.trace("Policy script inum: '{}' result: '{}'", entry.getKey().getScript().getInum(), result);
+            if (!result) {
+                log.trace("Stop authorization scriptMap execution, current script returns false, script inum: " + entry.getKey().getScript().getInum() + ", scope: " + entry.getKey().getScope());
+                return false;
+            }
+        }
+        return true;
+    }
+
+    private void evaluateScopeExpression(Map<UmaScriptByScope, UmaAuthorizationContext> scriptMap, UmaPermission permission, UmaResource resource) {
+        String scopeExpression = resource.getScopeExpression();
+        JsonLogicNode node = JsonLogicNodeParser.parseNode(scopeExpression);
+        if (node != null) {
+            log.trace("Evaluating scope expression ...");
+
+            // validate scopes, all must be present
+            List<String> dataScopes = node.getDataCopy();
+            Map<String, String> scopeIdToDnMap = scopeIdToDnMap(scriptMap, permission.getScopeDns());
+            if (dataScopes.size() == scopeIdToDnMap.size()) {
+                try {
+                    List<Boolean> evaluatedResults = new ArrayList<Boolean>();
+                    for (String scopeId : dataScopes) {
+                        log.trace("Evaluating scope result for scope: " + scopeId + " ...");
+                        boolean b = evaluateByScopes(filterByScopeDns(scriptMap, Lists.newArrayList(scopeIdToDnMap.get(scopeId))));
+                        log.trace("Evaluated scope result: " + b + ", scope: " + scopeId);
+                        evaluatedResults.add(b);
+                    }
+
+                    String rule = node.getRule().toString();
+                    final boolean result;
+                    if (evaluatedResults.isEmpty()) {
+                        result = JsonLogic.apply(rule);
+                    } else {
+                        result = JsonLogic.apply(rule, Util.asJsonSilently(evaluatedResults));
+                    }
+
+                    log.trace("JsonLogic evaluation result: " + result + ", rule: " + rule + ", data:" + Util.asJsonSilently(evaluatedResults));
+                    if (result) {
+                        // access granted at this point but we have to remove scopes from permissions for which we got 'false' result
+                        removeFalseScopesFromPermission(permission, dataScopes, scopeIdToDnMap, evaluatedResults);
+                        return; // expression returned true;
+                    }
+                } catch (Exception e) {
+                    log.error("Failed to evaluate jsonlogic expression. Expression: " + scopeExpression + ", resourceDn: " + resource.getDn(), e);
+                    throw errorResponseFactory.createWebApplicationException(Response.Status.FORBIDDEN, UmaErrorResponseType.FORBIDDEN_BY_POLICY, "Failed to evaluate jsonlogic expression.");
+                }
+            } else {
+                log.error("Scope size in JsonLogic object 'data' and in permission differs which is forbidden. Node data: " + node +
+                        ", permissionDns: " + permission.getScopeDns() + ", result scopeIds: " + scopeIdToDnMap);
+                throw errorResponseFactory.createWebApplicationException(Response.Status.FORBIDDEN, UmaErrorResponseType.FORBIDDEN_BY_POLICY, "Scope size in JsonLogic object 'data' and in permission differs which is forbidden.");
+            }
+        } else {
+            log.error("Failed to parse JsonLogic object, invalid expression: " + scopeExpression);
+            throw errorResponseFactory.createWebApplicationException(Response.Status.FORBIDDEN, UmaErrorResponseType.FORBIDDEN_BY_POLICY, "Failed to parse JsonLogic object, invalid expression: " + scopeExpression);
+        }
+
+        throw errorResponseFactory.createWebApplicationException(Response.Status.FORBIDDEN, UmaErrorResponseType.FORBIDDEN_BY_POLICY, "Unknown");
+    }
+
+    private void removeFalseScopesFromPermission(UmaPermission permission, List<String> dataScopes, Map<String, String> scopeIdToDnMap, List<Boolean> evaluatedResults) {
+        if (!evaluatedResults.isEmpty() && permission.getScopeDns() != null) {
+
+            List<String> newPermissionScopes = new ArrayList<String>(permission.getScopeDns());
+
+            for (int i = 0; i < evaluatedResults.size(); i++) {
+                if (!evaluatedResults.get(i)) {
+                    String dnToRemove = scopeIdToDnMap.get(dataScopes.get(i));
+                    newPermissionScopes.remove(dnToRemove);
+                }
+            }
+
+            if (newPermissionScopes.size() < permission.getScopeDns().size()) {
+                permission.setScopeDns(newPermissionScopes);
+
+                permissionService.mergeSilently(permission);
+            }
+        }
+    }
+
+    private static Map<String, String> scopeIdToDnMap(Map<UmaScriptByScope, UmaAuthorizationContext> scriptMap, List<String> scriptDNs) {
+        Map<String, String> result = new HashMap<String, String>();
+        for (Map.Entry<UmaScriptByScope, UmaAuthorizationContext> entry : scriptMap.entrySet()) {
+            if (scriptDNs.contains(entry.getKey().getScope().getDn())) {
+                result.put(entry.getKey().getScope().getId(), entry.getKey().getScope().getDn());
+            }
+        }
+        return result;
+    }
+
+    private static Map<UmaScriptByScope, UmaAuthorizationContext> filterByScopeDns(Map<UmaScriptByScope, UmaAuthorizationContext> scriptMap, List<String> scopeDNs) {
+        Map<UmaScriptByScope, UmaAuthorizationContext> result = new HashMap<UmaScriptByScope, UmaAuthorizationContext>();
+        for (Map.Entry<UmaScriptByScope, UmaAuthorizationContext> entry : scriptMap.entrySet()) {
+            if (scopeDNs.contains(entry.getKey().getScope().getDn())) {
+                result.put(entry.getKey(), entry.getValue());
+            }
+        }
+        return result;
+    }
+
+    private static Map<UmaScriptByScope, UmaAuthorizationContext> filterByScopeId(Map<UmaScriptByScope, UmaAuthorizationContext> scriptMap, String scopeId) {
+        Map<UmaScriptByScope, UmaAuthorizationContext> result = new HashMap<UmaScriptByScope, UmaAuthorizationContext>();
+        for (Map.Entry<UmaScriptByScope, UmaAuthorizationContext> entry : scriptMap.entrySet()) {
+            if (entry.getKey().getScope().getId().equals(scopeId)) {
+                result.put(entry.getKey(), entry.getValue());
+            }
+        }
+        return result;
+    }
+}
diff --git a/oxAuth/Server/src/main/java/org/gluu/oxauth/uma/service/UmaGatherer.java b/oxAuth/Server/src/main/java/org/gluu/oxauth/uma/service/UmaGatherer.java
new file mode 100644
index 00000000..b24ca770
--- /dev/null
+++ b/oxAuth/Server/src/main/java/org/gluu/oxauth/uma/service/UmaGatherer.java
@@ -0,0 +1,263 @@
+/*
+ * oxAuth is available under the MIT License (2008). See http://opensource.org/licenses/MIT for full text.
+ *
+ * Copyright (c) 2015, Gluu
+ */
+
+package org.gluu.oxauth.uma.service;
+
+import java.util.HashMap;
+import java.util.List;
+import java.util.Map;
+
+import javax.enterprise.context.RequestScoped;
+import javax.faces.application.FacesMessage;
+import javax.faces.context.ExternalContext;
+import javax.faces.context.FacesContext;
+import javax.inject.Inject;
+import javax.inject.Named;
+import javax.servlet.http.HttpServletRequest;
+import javax.servlet.http.HttpServletResponse;
+
+import org.apache.commons.lang.StringUtils;
+import org.gluu.jsf2.service.FacesService;
+import org.gluu.model.custom.script.conf.CustomScriptConfiguration;
+import org.gluu.oxauth.i18n.LanguageBean;
+import org.gluu.oxauth.model.config.Constants;
+import org.gluu.oxauth.model.configuration.AppConfiguration;
+import org.gluu.oxauth.model.session.SessionId;
+import org.gluu.oxauth.model.uma.persistence.UmaPermission;
+import org.gluu.oxauth.service.common.UserService;
+import org.gluu.oxauth.service.external.ExternalUmaClaimsGatheringService;
+import org.gluu.oxauth.uma.authorization.UmaGatherContext;
+import org.slf4j.Logger;
+
+/**
+ * @author yuriyz
+ * @version August 9, 2017
+ */
+@RequestScoped
+@Named(value = "gatherer")
+public class UmaGatherer {
+
+    @Inject
+    private Logger log;
+    @Inject
+    private ExternalUmaClaimsGatheringService external;
+    @Inject
+    private AppConfiguration appConfiguration;
+    @Inject
+    private FacesContext facesContext;
+    @Inject
+    private ExternalContext externalContext;
+    @Inject
+    private FacesService facesService;
+    @Inject
+    private LanguageBean languageBean;
+    @Inject
+    private UmaSessionService umaSessionService;
+    @Inject
+    private UmaPermissionService umaPermissionService;
+    @Inject
+    private UmaPctService umaPctService;
+    @Inject
+    private UserService userService;
+
+    private final Map<String, String> pageClaims = new HashMap<String, String>();
+
+    public boolean gather() {
+        try {
+            final HttpServletRequest httpRequest = (HttpServletRequest) externalContext.getRequest();
+            final HttpServletResponse httpResponse = (HttpServletResponse) externalContext.getResponse();
+            final SessionId session = umaSessionService.getSession(httpRequest, httpResponse);
+
+            CustomScriptConfiguration script = getScript(session);
+            UmaGatherContext context = new UmaGatherContext(script.getConfigurationAttributes(), httpRequest, session, umaSessionService, umaPermissionService,
+                    umaPctService, pageClaims, userService, facesService, appConfiguration);
+
+            int step = umaSessionService.getStep(session);
+            if (!umaSessionService.isPassedPreviousSteps(session, step)) {
+                log.error("There are claims-gathering steps not marked as passed. scriptName: '{}', step: '{}'", script.getName(), step);
+                return false;
+            }
+
+            boolean gatheredResult = external.gather(script, step, context);
+            log.debug("Claims-gathering result for script '{}', step: '{}', gatheredResult: '{}'", script.getName(), step, gatheredResult);
+
+            int overridenNextStep = external.getNextStep(script, step, context);
+
+            if (!gatheredResult && overridenNextStep == -1) {
+                return false;
+            }
+
+            if (overridenNextStep != -1) {
+                umaSessionService.resetToStep(session, overridenNextStep, step);
+                step = overridenNextStep;
+            }
+
+            int stepsCount = external.getStepsCount(script, context);
+
+            if (step < stepsCount || overridenNextStep != -1) {
+                int nextStep;
+                if (overridenNextStep != -1) {
+                    nextStep = overridenNextStep;
+                } else {
+                    nextStep = step + 1;
+                    umaSessionService.markStep(session, step, true);
+                }
+
+                umaSessionService.setStep(nextStep, session);
+                context.persist();
+
+                String page = external.getPageForStep(script, nextStep, context);
+
+                log.trace("Redirecting to page: '{}'", page);
+                facesService.redirect(page);
+                return true;
+            }
+
+            if (step == stepsCount) {
+                context.persist();
+                onSuccess(session, context);
+                return true;
+            }
+        } catch (Exception e) {
+            log.error("Exception during gather() method call.", e);
+        }
+
+        log.error("Failed to perform gather() method successfully.");
+        return false;
+    }
+
+    private void onSuccess(SessionId session, UmaGatherContext context) {
+        List<UmaPermission> permissions = context.getPermissions();
+        String newTicket = umaPermissionService.changeTicket(permissions, permissions.get(0).getAttributes());
+
+        String url = constructRedirectUri(session, context, newTicket);
+        if (StringUtils.isNotBlank(url)) {
+            facesService.redirectToExternalURL(url);
+        } else {
+            log.debug("Redirect to claims_redirect_uri is skipped because it was not provided during request.");
+        }
+    }
+
+    private String constructRedirectUri(SessionId session, UmaGatherContext context, String newTicket) {
+        String claimsRedirectUri = umaSessionService.getClaimsRedirectUri(session);
+        if (StringUtils.isBlank(claimsRedirectUri)) {
+            log.debug("claims_redirect_uri is blank, session: " + session);
+            return "";
+        }
+
+        claimsRedirectUri = addQueryParameters(claimsRedirectUri, context.getRedirectUserParameters().buildQueryString().trim());
+        claimsRedirectUri = addQueryParameter(claimsRedirectUri, "state", umaSessionService.getState(session));
+        claimsRedirectUri = addQueryParameter(claimsRedirectUri, "ticket", newTicket);
+        return claimsRedirectUri;
+    }
+
+    public static String addQueryParameters(String url, String parameters) {
+        if (StringUtils.isNotBlank(parameters)) {
+            if (url.contains("?")) {
+                url += "&" + parameters;
+            } else {
+                url += "?" + parameters;
+            }
+        }
+        return url;
+    }
+
+    public static String addQueryParameter(String url, String paramName, String paramValue) {
+        if (StringUtils.isBlank(url)) {
+            return "";
+        }
+        if (StringUtils.isNotBlank(paramValue)) {
+            if (url.contains("?")) {
+                url += "&" + paramName + "=" + paramValue;
+            } else {
+                url += "?" + paramName + "=" + paramValue;
+            }
+        }
+        return url;
+    }
+
+    public String prepareForStep() {
+        try {
+            final HttpServletRequest httpRequest = (HttpServletRequest) externalContext.getRequest();
+            final HttpServletResponse httpResponse = (HttpServletResponse) externalContext.getResponse();
+            final SessionId session = umaSessionService.getSession(httpRequest, httpResponse);
+
+            if (session == null || session.getSessionAttributes().isEmpty()) {
+                log.error("Invalid session.");
+                return result(Constants.RESULT_EXPIRED);
+            }
+
+            CustomScriptConfiguration script = getScript(session);
+            UmaGatherContext context = new UmaGatherContext(script.getConfigurationAttributes(), httpRequest, session, umaSessionService, umaPermissionService,
+                    umaPctService, pageClaims, userService, facesService, appConfiguration);
+
+            int step = umaSessionService.getStep(session);
+            if (step < 1) {
+                log.error("Invalid step: {}", step);
+                return result(Constants.RESULT_INVALID_STEP);
+            }
+            if (script == null) {
+                log.error("Failed to load script, step: '{}'", step);
+                return result(Constants.RESULT_FAILURE);
+            }
+
+            if (!umaSessionService.isPassedPreviousSteps(session, step)) {
+                log.error("There are claims-gathering steps not marked as passed. scriptName: '{}', step: '{}'", script.getName(), step);
+                return result(Constants.RESULT_FAILURE);
+            }
+
+            boolean result = external.prepareForStep(script, step, context);
+            if (result) {
+                context.persist();
+                return result(Constants.RESULT_SUCCESS);
+            } else {
+                String redirectToExternalUrl = context.getRedirectToExternalUrl();
+                if (StringUtils.isNotBlank(redirectToExternalUrl)) {
+                    log.debug("Redirect to : " + redirectToExternalUrl);
+                    facesService.redirectToExternalURL(redirectToExternalUrl);
+                    return redirectToExternalUrl;
+                }
+            }
+        } catch (Exception e) {
+            log.error("Failed to prepareForStep()", e);
+        }
+        return result(Constants.RESULT_FAILURE);
+    }
+
+    private void errorPage(String errorKey) {
+        addMessage(FacesMessage.SEVERITY_ERROR, errorKey);
+        facesService.redirect("/error.xhtml");
+    }
+
+    public String result(String resultCode) {
+        if (Constants.RESULT_FAILURE.equals(resultCode)) {
+            addMessage(FacesMessage.SEVERITY_ERROR, "uma2.gather.failed");
+        } else if (Constants.RESULT_INVALID_STEP.equals(resultCode)) {
+            addMessage(FacesMessage.SEVERITY_ERROR, "uma2.invalid.step");
+        } else if (Constants.RESULT_EXPIRED.equals(resultCode)) {
+            addMessage(FacesMessage.SEVERITY_ERROR, "uma2.invalid.session");
+        }
+        return resultCode;
+    }
+
+    public void addMessage(FacesMessage.Severity severity, String summary) {
+        String msg = languageBean.getMessage(summary);
+        FacesMessage message = new FacesMessage(severity, msg, null);
+        facesContext.addMessage(null, message);
+    }
+
+    public Map<String, String> getPageClaims() {
+        return pageClaims;
+    }
+
+    protected CustomScriptConfiguration getScript(final SessionId session) {
+		String scriptName = umaSessionService.getScriptName(session);
+		CustomScriptConfiguration script = external.getCustomScriptConfigurationByName(scriptName);
+
+		return script;
+	}
+
+}
diff --git a/oxAuth/Server/src/main/java/org/gluu/oxauth/uma/service/UmaNeedsInfoService.java b/oxAuth/Server/src/main/java/org/gluu/oxauth/uma/service/UmaNeedsInfoService.java
new file mode 100644
index 00000000..1bbb5b61
--- /dev/null
+++ b/oxAuth/Server/src/main/java/org/gluu/oxauth/uma/service/UmaNeedsInfoService.java
@@ -0,0 +1,148 @@
+package org.gluu.oxauth.uma.service;
+
+import org.apache.commons.lang.StringUtils;
+import org.gluu.model.custom.script.conf.CustomScriptConfiguration;
+import org.gluu.model.uma.ClaimDefinition;
+import org.gluu.oxauth.model.configuration.AppConfiguration;
+import org.gluu.oxauth.model.registration.Client;
+import org.gluu.oxauth.model.uma.UmaConstants;
+import org.gluu.oxauth.model.uma.UmaNeedInfoResponse;
+import org.gluu.oxauth.model.uma.persistence.UmaPermission;
+import org.gluu.oxauth.service.AttributeService;
+import org.gluu.oxauth.service.common.UserService;
+import org.gluu.oxauth.service.external.ExternalUmaRptPolicyService;
+import org.gluu.oxauth.uma.authorization.*;
+import org.gluu.oxauth.util.ServerUtil;
+import org.oxauth.persistence.model.Scope;
+import org.slf4j.Logger;
+
+import javax.enterprise.context.ApplicationScoped;
+import javax.inject.Inject;
+import javax.servlet.http.HttpServletRequest;
+import javax.ws.rs.WebApplicationException;
+import javax.ws.rs.core.Response;
+import java.util.*;
+
+/**
+ * @author yuriyz on 06/16/2017.
+ */
+@ApplicationScoped
+public class UmaNeedsInfoService {
+
+    @Inject
+    private Logger log;
+    @Inject
+    private AppConfiguration appConfiguration;
+    @Inject
+    private UmaPermissionService permissionService;
+    @Inject
+    private AttributeService attributeService;
+    @Inject
+    private UmaResourceService resourceService;
+    @Inject
+    private ExternalUmaRptPolicyService policyService;
+    @Inject
+    private UmaSessionService sessionService;
+    @Inject
+    private UserService userService;
+
+    public Map<UmaScriptByScope, UmaAuthorizationContext> checkNeedsInfo(Claims claims, Map<Scope, Boolean> requestedScopes,
+                                                                                  List<UmaPermission> permissions, UmaPCT pct, HttpServletRequest httpRequest,
+                                                                                  Client client) {
+
+        Map<UmaScriptByScope, UmaAuthorizationContext> scriptMap = new HashMap<UmaScriptByScope, UmaAuthorizationContext>();
+        Map<String, String> ticketAttributes = new HashMap<String, String>();
+
+        List<ClaimDefinition> missedClaims = new ArrayList<ClaimDefinition>();
+
+        UmaAuthorizationContextBuilder contextBuilder = new UmaAuthorizationContextBuilder(appConfiguration,
+                attributeService, resourceService, permissions, requestedScopes, claims, httpRequest,
+                sessionService, userService, permissionService, client);
+
+
+        for (Scope scope : requestedScopes.keySet()) {
+            List<String> authorizationPolicies = scope.getUmaAuthorizationPolicies();
+            if (authorizationPolicies != null && !authorizationPolicies.isEmpty()) {
+                for (String scriptDN : authorizationPolicies) { //log.trace("Loading UMA script: " + scriptDN + ", scope: " + scope + " ...");
+                    CustomScriptConfiguration script = policyService.getScriptByDn(scriptDN);
+                    if (script != null) {
+                        UmaAuthorizationContext context = contextBuilder.build(script);
+                        scriptMap.put(new UmaScriptByScope(scope, script), context);
+
+                        List<ClaimDefinition> requiredClaims = policyService.getRequiredClaims(script, context);
+                        if (requiredClaims != null && !requiredClaims.isEmpty()) {
+                            for (ClaimDefinition definition : requiredClaims) {
+                                if (!claims.has(definition.getName())) {
+                                    missedClaims.add(definition);
+                                }
+                            }
+                        }
+
+                        String claimsGatheringScriptName = policyService.getClaimsGatheringScriptName(script, context);
+                        if (StringUtils.isNotBlank(claimsGatheringScriptName)) {
+                            ticketAttributes.put(UmaConstants.GATHERING_ID, constructGatheringScriptNameValue(ticketAttributes.get(UmaConstants.GATHERING_ID), claimsGatheringScriptName));
+                        } else {
+                            log.debug("External 'getClaimsGatheringScriptName' script method return null or blank value, script: " + script.getName());
+                        }
+                    } else {
+                        log.error("Unable to load UMA script dn: '{}'", scriptDN);
+                    }
+                }
+            } else {
+                log.trace("No policies defined for scope: " + scope.getId() + ", scopeDn: " + scope.getDn());
+            }
+        }
+
+        if (!missedClaims.isEmpty()) {
+            ticketAttributes.put(UmaPermission.PCT, pct.getCode());
+            String newTicket = permissionService.changeTicket(permissions, ticketAttributes);
+
+            UmaNeedInfoResponse needInfoResponse = new UmaNeedInfoResponse();
+            needInfoResponse.setTicket(newTicket);
+            needInfoResponse.setError("need_info");
+            needInfoResponse.setRedirectUser(buildClaimsGatheringRedirectUri(scriptMap.values(), client, newTicket));
+            needInfoResponse.setRequiredClaims(missedClaims);
+
+            throw new WebApplicationException(Response.status(Response.Status.FORBIDDEN).entity(ServerUtil.asJsonSilently(needInfoResponse)).build());
+        }
+
+        return scriptMap;
+    }
+
+    private String constructGatheringScriptNameValue(String existingValue, String claimsGatheringScriptName) {
+        if (StringUtils.isBlank(existingValue)) {
+            return claimsGatheringScriptName;
+        }
+        return existingValue + " " + claimsGatheringScriptName;
+    }
+
+    private String buildClaimsGatheringRedirectUri(Collection<UmaAuthorizationContext> contexts, Client client, String newTicket) {
+        String queryParameters = "";
+
+        for (UmaAuthorizationContext context : contexts) {
+            queryParameters += context.getRedirectUserParameters().buildQueryString() + "&";
+        }
+        queryParameters = StringUtils.removeEnd(queryParameters, "&");
+
+        String result = appConfiguration.getBaseEndpoint() + "/uma/gather_claims";
+        if (StringUtils.isNotBlank(queryParameters)) {
+            result += "?" + queryParameters;
+        }
+        result += "&client_id=" + client.getClientId() + "&ticket=" + newTicket;
+        return result;
+    }
+
+    public static Set<String> getScriptDNs(List<Scope> scopes) {
+        HashSet<String> result = new HashSet<String>();
+
+        for (Scope scope : scopes) {
+            List<String> authorizationPolicies = scope.getUmaAuthorizationPolicies();
+            if (authorizationPolicies != null) {
+                result.addAll(authorizationPolicies);
+            }
+        }
+
+        return result;
+    }
+}
+
diff --git a/oxAuth/Server/src/main/java/org/gluu/oxauth/uma/service/UmaPctService.java b/oxAuth/Server/src/main/java/org/gluu/oxauth/uma/service/UmaPctService.java
new file mode 100644
index 00000000..70b32123
--- /dev/null
+++ b/oxAuth/Server/src/main/java/org/gluu/oxauth/uma/service/UmaPctService.java
@@ -0,0 +1,195 @@
+package org.gluu.oxauth.uma.service;
+
+import java.util.List;
+import java.util.UUID;
+
+import javax.enterprise.context.ApplicationScoped;
+import javax.inject.Inject;
+import javax.inject.Named;
+
+import org.apache.commons.lang.StringUtils;
+import org.gluu.oxauth.model.config.StaticConfiguration;
+import org.gluu.oxauth.model.configuration.AppConfiguration;
+import org.gluu.oxauth.model.jwt.Jwt;
+import org.gluu.oxauth.model.jwt.JwtClaims;
+import org.gluu.oxauth.model.uma.persistence.UmaPermission;
+import org.gluu.oxauth.uma.authorization.UmaPCT;
+import org.gluu.persist.PersistenceEntryManager;
+import org.gluu.persist.model.base.SimpleBranch;
+import org.gluu.search.filter.Filter;
+import org.slf4j.Logger;
+
+/**
+ * @author yuriyz on 05/31/2017.
+ */
+@ApplicationScoped
+public class UmaPctService {
+
+    public static final int DEFAULT_PCT_LIFETIME = 2592000;
+
+    @Inject
+    private Logger log;
+
+    @Inject
+    private PersistenceEntryManager ldapEntryManager;
+
+    @Inject
+    private StaticConfiguration staticConfiguration;
+
+    @Inject
+    private AppConfiguration appConfiguration;
+
+    public UmaPCT updateClaims(UmaPCT pct, Jwt idToken, String clientId, List<UmaPermission> permissions) {
+        try {
+            String ticketPctCode = permissions.get(0).getAttributes().get("pct");
+            UmaPCT ticketPct = StringUtils.isNotBlank(ticketPctCode) ? getByCode(ticketPctCode) : null;
+
+            boolean hasPct = pct != null;
+
+            if (!hasPct) {
+                if (ticketPct != null) {
+                    pct = ticketPct;
+                } else {
+                    pct = createPctAndPersist(clientId);
+                }
+            }
+
+            // copy claims from pctTicket into normal pct
+            JwtClaims pctClaims = pct.getClaims();
+            if (ticketPct != null && hasPct) {
+                JwtClaims ticketClaims = ticketPct.getClaims();
+                for (String key : ticketClaims.keys()) {
+                    pctClaims.setClaimObject(key, ticketClaims.getClaim(key), false);
+                }
+                pct = ticketPct;
+            }
+
+            if (idToken != null && idToken.getClaims() != null) {
+                for (String key : idToken.getClaims().keys()) {
+                    pctClaims.setClaimObject(key, idToken.getClaims().getClaim(key), false);
+                }
+            }
+
+            pct.setClaims(pctClaims);
+            log.trace("PCT code: " + pct.getCode() + ", claims: " + pct.getClaimValuesAsJson());
+
+            pct.resetTtlFromExpirationDate();
+            ldapEntryManager.merge(pct);
+
+            return ldapEntryManager.find(UmaPCT.class, pct.getDn());
+        } catch (Exception e) {
+            log.error("Failed to update PCT claims. " + e.getMessage(), e);
+        }
+
+        return pct;
+    }
+
+    public UmaPCT getByCode(String pctCode) {
+        try {
+            final Filter filter = Filter.createEqualityFilter("tknCde", pctCode);
+            final List<UmaPCT> entries = ldapEntryManager.findEntries(branchBaseDn(), UmaPCT.class, filter);
+            if (entries != null && !entries.isEmpty()) {
+                return entries.get(0);
+            } else {
+                log.error("Failed to find PCT by code: " + pctCode);
+            }
+        } catch (Exception e) {
+            log.error(e.getMessage(), e);
+        }
+        return null;
+    }
+
+    public UmaPCT createPct(String clientId) {
+        String code = generateCode();
+
+        UmaPCT pct = new UmaPCT(pctLifetime());
+        pct.setCode(code);
+        pct.setDn(dn(pct.getCode()));
+        pct.setClientId(clientId);
+        return pct;
+    }
+
+    public UmaPCT createPctAndPersist(String clientId) {
+        UmaPCT pct = createPct(clientId);
+        persist(pct);
+        return pct;
+    }
+
+    public int pctLifetime() {
+        int lifeTime = appConfiguration.getUmaPctLifetime();
+        if (lifeTime <= 0) {
+            lifeTime = DEFAULT_PCT_LIFETIME;
+        }
+        return lifeTime;
+    }
+
+    public void persist(UmaPCT pct) {
+        try {
+            prepareBranch();
+
+            pct.setDn(dn(pct.getCode()));
+            ldapEntryManager.persist(pct);
+        } catch (Exception e) {
+            log.error("Failed to persist PCT, code: " + pct.getCode() + ". " + e.getMessage(), e);
+        }
+    }
+
+    public void remove(UmaPCT umaPCT) {
+        ldapEntryManager.remove(umaPCT);
+    }
+
+    public void remove(String pctCode) {
+        remove(getByCode(pctCode));
+    }
+
+    public void remove(List<UmaPCT> pctList) {
+        for (UmaPCT pct : pctList) {
+            remove(pct);
+        }
+    }
+
+    private void prepareBranch() {
+        if (!ldapEntryManager.hasBranchesSupport(branchBaseDn())) {
+            return;
+        }
+
+        if (!ldapEntryManager.contains(branchBaseDn(), SimpleBranch.class)) {
+            addBranch();
+        }
+    }
+
+    public void addBranch() {
+        SimpleBranch branch = new SimpleBranch();
+        branch.setOrganizationalUnitName("pct");
+        branch.setDn(branchBaseDn());
+
+        ldapEntryManager.persist(branch);
+    }
+
+	private String generateCode() {
+		String code = UUID.randomUUID().toString();
+
+		return code;
+	}
+
+    public String dn(String pctCode) {
+        if (StringUtils.isBlank(pctCode)) {
+            throw new IllegalArgumentException("PCT code is null or blank.");
+        }
+        return String.format("tknCde=%s,%s", pctCode, branchBaseDn());
+    }
+
+    public String branchBaseDn() {
+        final String umaBaseDn = staticConfiguration.getBaseDn().getUmaBase(); // "ou=uma,o=gluu"
+        return String.format("ou=pct,%s", umaBaseDn);
+    }
+
+    public void merge(UmaPCT pct) {
+        try {
+            pct.resetTtlFromExpirationDate();
+            ldapEntryManager.merge(pct);
+        } catch (Exception e) {
+            log.error("Failed to merge PCT, code: " + pct.getCode() + ". " + e.getMessage(), e);
+        }
+    }
+}
diff --git a/oxAuth/Server/src/main/java/org/gluu/oxauth/uma/service/UmaPermissionService.java b/oxAuth/Server/src/main/java/org/gluu/oxauth/uma/service/UmaPermissionService.java
new file mode 100644
index 00000000..b226a24c
--- /dev/null
+++ b/oxAuth/Server/src/main/java/org/gluu/oxauth/uma/service/UmaPermissionService.java
@@ -0,0 +1,188 @@
+/*
+ * oxAuth is available under the MIT License (2008). See http://opensource.org/licenses/MIT for full text.
+ *
+ * Copyright (c) 2014, Gluu
+ */
+
+package org.gluu.oxauth.uma.service;
+
+import org.apache.commons.lang.StringUtils;
+import org.gluu.oxauth.model.config.StaticConfiguration;
+import org.gluu.oxauth.model.configuration.AppConfiguration;
+import org.gluu.oxauth.model.uma.UmaPermissionList;
+import org.gluu.oxauth.model.uma.persistence.UmaPermission;
+import org.gluu.oxauth.model.util.Pair;
+import org.gluu.persist.PersistenceEntryManager;
+import org.gluu.persist.model.base.SimpleBranch;
+import org.gluu.search.filter.Filter;
+import org.gluu.util.INumGenerator;
+import org.slf4j.Logger;
+
+import javax.enterprise.context.ApplicationScoped;
+import javax.inject.Inject;
+import java.util.*;
+
+/**
+ * Holds permission tokens and permissions
+ *
+ * @author Yuriy Zabrovarnyy
+ */
+@ApplicationScoped
+public class UmaPermissionService {
+
+    private static final String ORGUNIT_OF_RESOURCE_PERMISSION = "uma_permission";
+    private static final int DEFAULT_TICKET_LIFETIME = 3600;
+
+    @Inject
+    private Logger log;
+
+    @Inject
+    private PersistenceEntryManager ldapEntryManager;
+
+    @Inject
+    private StaticConfiguration staticConfiguration;
+
+    @Inject
+    private UmaScopeService scopeService;
+
+    @Inject
+    private AppConfiguration appConfiguration;
+
+    public static String getDn(String clientDn, String ticket) {
+        return String.format("oxTicket=%s,%s", ticket, getBranchDn(clientDn));
+    }
+
+    public static String getBranchDn(String clientDn) {
+        return String.format("ou=%s,%s", ORGUNIT_OF_RESOURCE_PERMISSION, clientDn);
+    }
+
+    private List<UmaPermission> createPermissions(UmaPermissionList permissions, Pair<Date, Integer> expirationDate) {
+        final String configurationCode = INumGenerator.generate(8) + "." + System.currentTimeMillis();
+
+        final String ticket = generateNewTicket();
+        List<UmaPermission> result = new ArrayList<UmaPermission>();
+        for (org.gluu.oxauth.model.uma.UmaPermission permission : permissions) {
+            UmaPermission p = new UmaPermission(permission.getResourceId(), scopeService.getScopeDNsByIdsAndAddToLdapIfNeeded(permission.getScopes()), ticket, configurationCode, expirationDate);
+            if (permission.getParams() != null && !permission.getParams().isEmpty()) {
+                p.getAttributes().putAll(permission.getParams());
+            }
+            result.add(p);
+        }
+
+        return result;
+    }
+
+    public String generateNewTicket() {
+       return UUID.randomUUID().toString();
+    }
+
+    public String addPermission(UmaPermissionList permissionList, String clientDn) {
+        try {
+            List<UmaPermission> created = createPermissions(permissionList, ticketExpirationDate());
+            for (UmaPermission permission : created) {
+                addPermission(permission, clientDn);
+            }
+            return created.get(0).getTicket();
+        } catch (Exception e) {
+            log.error(e.getMessage(), e);
+            throw e;
+        }
+    }
+
+    public Pair<Date, Integer> ticketExpirationDate() {
+        int lifeTime = appConfiguration.getUmaTicketLifetime();
+        if (lifeTime <= 0) {
+            lifeTime = DEFAULT_TICKET_LIFETIME;
+        }
+
+        final Calendar calendar = Calendar.getInstance();
+        calendar.add(Calendar.SECOND, lifeTime);
+        return new Pair<>(calendar.getTime(), lifeTime);
+    }
+
+    public void addPermission(UmaPermission permission, String clientDn) {
+        try {
+            addBranchIfNeeded(clientDn);
+            permission.setDn(getDn(clientDn, permission.getTicket()));
+            ldapEntryManager.persist(permission);
+        } catch (Exception e) {
+            log.error(e.getMessage(), e);
+        }
+    }
+
+    public void merge(UmaPermission permission) {
+        permission.resetTtlFromExpirationDate();
+        ldapEntryManager.merge(permission);
+    }
+
+    public void mergeSilently(UmaPermission permission) {
+        try {
+            permission.resetTtlFromExpirationDate();
+            ldapEntryManager.merge(permission);
+        } catch (Exception e) {
+            log.error("Failed to persist permission: " + permission, e);
+        }
+    }
+
+    public List<UmaPermission> getPermissionsByTicket(String ticket) {
+        try {
+            final String baseDn = staticConfiguration.getBaseDn().getClients();
+            final Filter filter = Filter.createEqualityFilter("oxTicket", ticket);
+            return ldapEntryManager.findEntries(baseDn, UmaPermission.class, filter);
+        } catch (Exception e) {
+            log.error(e.getMessage(), e);
+        }
+        return null;
+    }
+
+    public void deletePermission(String ticket) {
+        try {
+            final List<UmaPermission> permissions = getPermissionsByTicket(ticket);
+            for (UmaPermission p : permissions) {
+                ldapEntryManager.remove(p);
+            }
+        } catch (Exception e) {
+            log.error(e.getMessage(), e);
+        }
+    }
+
+    public void addBranch(String clientDn) {
+    	String branchDn = getBranchDn(clientDn);
+        if (!containsBranch(branchDn)) {
+        	final SimpleBranch branch = new SimpleBranch();
+	        branch.setOrganizationalUnitName(ORGUNIT_OF_RESOURCE_PERMISSION);
+	        branch.setDn(branchDn);
+	        ldapEntryManager.persist(branch);
+        }
+    }
+
+    public void addBranchIfNeeded(String clientDn) {
+        if (!ldapEntryManager.hasBranchesSupport(clientDn)) {
+            return;
+        }
+        if (!containsBranch(clientDn)) {
+            addBranch(clientDn);
+        }
+    }
+
+    public boolean containsBranch(String clientDn) {
+        return ldapEntryManager.contains(getBranchDn(clientDn), SimpleBranch.class);
+    }
+
+    public String changeTicket(List<UmaPermission> permissions, Map<String, String> attributes) {
+        String newTicket = generateNewTicket();
+
+        for (UmaPermission permission : permissions) {
+            ldapEntryManager.remove(permission);
+
+            String dn = String.format("oxTicket=%s,%s", newTicket, StringUtils.substringAfter(permission.getDn(), ","));
+            permission.setTicket(newTicket);
+            permission.setDn(dn);
+            permission.setAttributes(attributes);
+            ldapEntryManager.persist(permission);
+            log.trace("New ticket: " + newTicket + ", old permission: " + dn);
+        }
+
+        return newTicket;
+    }
+}
diff --git a/oxAuth/Server/src/main/java/org/gluu/oxauth/uma/service/UmaResourceService.java b/oxAuth/Server/src/main/java/org/gluu/oxauth/uma/service/UmaResourceService.java
new file mode 100644
index 00000000..5e149afb
--- /dev/null
+++ b/oxAuth/Server/src/main/java/org/gluu/oxauth/uma/service/UmaResourceService.java
@@ -0,0 +1,208 @@
+/*
+ * oxAuth is available under the MIT License (2008). See http://opensource.org/licenses/MIT for full text.
+ *
+ * Copyright (c) 2014, Gluu
+ */
+
+package org.gluu.oxauth.uma.service;
+
+import com.google.common.base.Preconditions;
+import com.google.common.collect.Sets;
+import org.apache.commons.lang.StringUtils;
+import org.gluu.oxauth.model.config.StaticConfiguration;
+import org.gluu.oxauth.model.error.ErrorResponseFactory;
+import org.gluu.oxauth.model.uma.UmaErrorResponseType;
+import org.gluu.oxauth.model.uma.persistence.UmaResource;
+import org.gluu.persist.PersistenceEntryManager;
+import org.gluu.persist.model.base.SimpleBranch;
+import org.gluu.search.filter.Filter;
+import org.gluu.service.CacheService;
+import org.gluu.util.StringHelper;
+import org.slf4j.Logger;
+
+import javax.enterprise.context.ApplicationScoped;
+import javax.inject.Inject;
+import javax.ws.rs.core.Response;
+import java.util.Collections;
+import java.util.HashSet;
+import java.util.List;
+import java.util.Set;
+
+/**
+ * Provides operations with resource set descriptions
+ *
+ * @author Yuriy Movchan
+ * @author Yuriy Zabrovarnyy
+ *         Date: 10.05.2012
+ */
+@ApplicationScoped
+public class UmaResourceService {
+
+    private static final int RESOURCE_CACHE_EXPIRATION_IN_SECONDS = 120;
+
+    @Inject
+    private Logger log;
+
+    @Inject
+    private PersistenceEntryManager ldapEntryManager;
+
+    @Inject
+    private ErrorResponseFactory errorResponseFactory;
+
+    @Inject
+    private StaticConfiguration staticConfiguration;
+
+    @Inject
+    private CacheService cacheService;
+
+    public void addBranch() {
+        SimpleBranch branch = new SimpleBranch();
+        branch.setOrganizationalUnitName("resources");
+        branch.setDn(getDnForResource(null));
+
+        ldapEntryManager.persist(branch);
+    }
+
+    /**
+     * Add new resource description entry
+     *
+     * @param resource resource
+     */
+    public void addResource(UmaResource resource) {
+        validate(resource);
+        ldapEntryManager.persist(resource);
+    }
+
+    public void validate(UmaResource resource) {
+        Preconditions.checkArgument(StringUtils.isNotBlank(resource.getName()), "Name is required for resource.");
+        Preconditions.checkArgument(((resource.getScopes() != null && !resource.getScopes().isEmpty()) || StringUtils.isNotBlank(resource.getScopeExpression())), "Scope must be specified for resource.");
+        Preconditions.checkState(!resource.isExpired(), "UMA Resource expired. It must not be expired.");
+        prepareBranch();
+    }
+
+    public void updateResource(UmaResource resource) {
+        updateResource(resource, false);
+    }
+
+    /**
+     * Update resource description entry
+     *
+     * @param resource resource
+     */
+    public void updateResource(UmaResource resource, boolean skipValidation) {
+        if (!skipValidation) {
+            validate(resource);
+        }
+        cacheService.put(resource.getDn(), resource);
+        resource.resetTtlFromExpirationDate();
+        ldapEntryManager.merge(resource);
+    }
+
+    /**
+     * Remove resource description entry
+     *
+     * @param resource resource
+     */
+    public void remove(UmaResource resource) {
+        ldapEntryManager.remove(resource);
+    }
+
+    /**
+     * Remove resource description entry by ID.
+     *
+     * @param rsid resource ID
+     */
+    public void remove(String rsid) {
+        ldapEntryManager.remove(getResourceById(rsid));
+    }
+
+    public void remove(List<UmaResource> resources) {
+        for (UmaResource resource : resources) {
+            remove(resource);
+        }
+    }
+
+    /**
+     * Get all resource descriptions
+     *
+     * @return List of resource descriptions
+     */
+    public List<UmaResource> getResourcesByAssociatedClient(String associatedClientDn) {
+        try {
+            prepareBranch();
+
+            if (StringUtils.isNotBlank(associatedClientDn)) {
+                final Filter filter = Filter.createEqualityFilter("oxAssociatedClient", associatedClientDn);
+                return ldapEntryManager.findEntries(getBaseDnForResource(), UmaResource.class, filter);
+            }
+        } catch (Exception e) {
+            log.error(e.getMessage(), e);
+        }
+        return Collections.emptyList();
+    }
+
+    public Set<UmaResource> getResources(Set<String> ids) {
+        Set<UmaResource> result = new HashSet<UmaResource>();
+        if (ids != null) {
+            for (String id : ids) {
+                UmaResource resource = getResourceById(id);
+                if (resource != null) {
+                    result.add(resource);
+                } else {
+                    log.error("Failed to find resource by id: " + id);
+                }
+            }
+        }
+        return result;
+    }
+
+    public UmaResource getResourceById(String id) {
+        prepareBranch();
+
+        try {
+            final String key = getDnForResource(id);
+            final UmaResource resource = cacheService.getWithPut(key, () -> ldapEntryManager.find(UmaResource.class, key), RESOURCE_CACHE_EXPIRATION_IN_SECONDS);
+            if (resource != null) {
+                return resource;
+            }
+        } catch (Exception e) {
+            log.error("Failed to find resource set with id: " + id, e);
+        }
+        log.error("Failed to find resource set with id: " + id);
+        throw errorResponseFactory.createWebApplicationException(Response.Status.NOT_FOUND, UmaErrorResponseType.NOT_FOUND, "Failed to find resource set with id: " + id);
+    }
+
+    public Set<String> getResourceScopes(Set<String> resourceIds) {
+        Set<String> result = Sets.newHashSet();
+        for (String resourceId : resourceIds) {
+            result.addAll(getResourceById(resourceId).getScopes());
+        }
+        return result;
+    }
+
+    private void prepareBranch() {
+        if (!ldapEntryManager.hasBranchesSupport(getDnForResource(null))) {
+            return;
+        }
+
+        // Create resource description branch if needed
+        if (!ldapEntryManager.contains(getDnForResource(null), SimpleBranch.class)) {
+            addBranch();
+        }
+    }
+
+    /**
+     * Build DN string for resource description
+     */
+    public String getDnForResource(String oxId) {
+        if (StringHelper.isEmpty(oxId)) {
+            return getBaseDnForResource();
+        }
+        return String.format("oxId=%s,%s", oxId, getBaseDnForResource());
+    }
+
+    public String getBaseDnForResource() {
+        final String umaBaseDn = staticConfiguration.getBaseDn().getUmaBase(); // "ou=uma,o=gluu"
+        return String.format("ou=resources,%s", umaBaseDn);
+    }
+}
diff --git a/oxAuth/Server/src/main/java/org/gluu/oxauth/uma/service/UmaRptService.java b/oxAuth/Server/src/main/java/org/gluu/oxauth/uma/service/UmaRptService.java
new file mode 100644
index 00000000..cac23f0d
--- /dev/null
+++ b/oxAuth/Server/src/main/java/org/gluu/oxauth/uma/service/UmaRptService.java
@@ -0,0 +1,317 @@
+/*
+ * oxAuth is available under the MIT License (2008). See http://opensource.org/licenses/MIT for full text.
+ *
+ * Copyright (c) 2014, Gluu
+ */
+
+package org.gluu.oxauth.uma.service;
+
+import com.google.common.base.Preconditions;
+import org.apache.commons.lang.ArrayUtils;
+import org.gluu.oxauth.claims.Audience;
+import org.gluu.oxauth.model.common.ExecutionContext;
+import org.gluu.oxauth.model.common.GrantType;
+import org.gluu.oxauth.model.config.StaticConfiguration;
+import org.gluu.oxauth.model.config.WebKeysConfiguration;
+import org.gluu.oxauth.model.configuration.AppConfiguration;
+import org.gluu.oxauth.model.crypto.signature.SignatureAlgorithm;
+import org.gluu.oxauth.model.jwt.Jwt;
+import org.gluu.oxauth.model.registration.Client;
+import org.gluu.oxauth.model.token.JwtSigner;
+import org.gluu.oxauth.model.uma.persistence.UmaPermission;
+import org.gluu.oxauth.model.util.JwtUtil;
+import org.gluu.oxauth.service.ClientService;
+import org.gluu.oxauth.service.external.ExternalUmaRptClaimsService;
+import org.gluu.oxauth.service.external.context.ExternalUmaRptClaimsContext;
+import org.gluu.oxauth.service.stat.StatService;
+import org.gluu.oxauth.uma.authorization.UmaPCT;
+import org.gluu.oxauth.uma.authorization.UmaRPT;
+import org.gluu.oxauth.util.ServerUtil;
+import org.gluu.oxauth.util.TokenHashUtil;
+import org.gluu.persist.PersistenceEntryManager;
+import org.gluu.persist.model.base.SimpleBranch;
+import org.gluu.util.INumGenerator;
+import org.gluu.util.StringHelper;
+import org.json.JSONArray;
+import org.json.JSONException;
+import org.json.JSONObject;
+import org.slf4j.Logger;
+
+import javax.enterprise.context.ApplicationScoped;
+import javax.inject.Inject;
+import java.io.IOException;
+import java.util.*;
+
+/**
+ * RPT manager component
+ *
+ * @author Yuriy Zabrovarnyy
+ * @author Javier Rojas Blum
+ * @version June 28, 2017
+ */
+@ApplicationScoped
+public class UmaRptService {
+
+    private static final String ORGUNIT_OF_RPT = "uma_rpt";
+
+    public static final int DEFAULT_RPT_LIFETIME = 3600;
+
+    @Inject
+    private Logger log;
+
+    @Inject
+    private PersistenceEntryManager ldapEntryManager;
+
+    @Inject
+    private WebKeysConfiguration webKeysConfiguration;
+
+    @Inject
+    private UmaPctService pctService;
+
+    @Inject
+    private UmaScopeService umaScopeService;
+
+    @Inject
+    private AppConfiguration appConfiguration;
+
+    @Inject
+    private StaticConfiguration staticConfiguration;
+
+    @Inject
+    private ClientService clientService;
+
+    @Inject
+    private ExternalUmaRptClaimsService externalUmaRptClaimsService;
+
+    @Inject
+    private StatService statService;
+
+    private boolean containsBranch = false;
+
+    public String createDn(String tokenCode) {
+        return String.format("tknCde=%s,%s", TokenHashUtil.hash(tokenCode), branchDn());
+    }
+
+    public String branchDn() {
+        return String.format("ou=%s,%s", ORGUNIT_OF_RPT, staticConfiguration.getBaseDn().getTokens());
+    }
+
+    public void persist(UmaRPT rpt) {
+        try {
+            Preconditions.checkNotNull(rpt.getClientId());
+
+            addBranchIfNeeded();
+            rpt.setDn(createDn(rpt.getNotHashedCode()));
+            rpt.setCode(TokenHashUtil.hash(rpt.getNotHashedCode()));
+            ldapEntryManager.persist(rpt);
+        } catch (Exception e) {
+            log.error(e.getMessage(), e);
+        }
+    }
+
+    public UmaRPT getRPTByCode(String rptCode) {
+        try {
+            final UmaRPT entry = ldapEntryManager.find(UmaRPT.class, createDn(rptCode));
+            if (entry != null) {
+                return entry;
+            } else {
+                log.error("Failed to find RPT by code: " + rptCode);
+            }
+        } catch (Exception e) {
+            log.error(e.getMessage(), e);
+        }
+        return null;
+    }
+
+    public void deleteByCode(String rptCode) {
+        try {
+            final UmaRPT t = getRPTByCode(rptCode);
+            if (t != null) {
+                ldapEntryManager.remove(t);
+            }
+        } catch (Exception e) {
+            log.error(e.getMessage(), e);
+        }
+    }
+
+    public boolean addPermissionToRPT(UmaRPT rpt, Collection<UmaPermission> permissions) {
+        return addPermissionToRPT(rpt, permissions.toArray(new UmaPermission[permissions.size()]));
+    }
+
+    public boolean addPermissionToRPT(UmaRPT rpt, UmaPermission... permission) {
+        if (ArrayUtils.isEmpty(permission)) {
+            return true;
+        }
+
+        final List<String> permissions = getPermissionDns(Arrays.asList(permission));
+        if (rpt.getPermissions() != null) {
+            permissions.addAll(rpt.getPermissions());
+        }
+
+        rpt.setPermissions(permissions);
+
+        try {
+            rpt.resetTtlFromExpirationDate();
+            ldapEntryManager.merge(rpt);
+            log.trace("Persisted RPT: " + rpt);
+            return true;
+        } catch (Exception e) {
+            log.error(e.getMessage(), e);
+            return false;
+        }
+    }
+
+    public static List<String> getPermissionDns(Collection<UmaPermission> permissions) {
+        final List<String> result = new ArrayList<String>();
+        if (permissions != null) {
+            for (UmaPermission p : permissions) {
+                result.add(p.getDn());
+            }
+        }
+        return result;
+    }
+
+    public List<UmaPermission> getRptPermissions(UmaRPT p_rpt) {
+        final List<UmaPermission> result = new ArrayList<UmaPermission>();
+        try {
+            if (p_rpt != null && p_rpt.getPermissions() != null) {
+                final List<String> permissionDns = p_rpt.getPermissions();
+                for (String permissionDn : permissionDns) {
+                    final UmaPermission permissionObject = ldapEntryManager.find(UmaPermission.class, permissionDn);
+                    if (permissionObject != null) {
+                        result.add(permissionObject);
+                    }
+                }
+            }
+        } catch (Exception e) {
+            log.error(e.getMessage(), e);
+        }
+        return result;
+    }
+
+    public Date rptExpirationDate() {
+        int lifeTime = appConfiguration.getUmaRptLifetime();
+        if (lifeTime <= 0) {
+            lifeTime = DEFAULT_RPT_LIFETIME;
+        }
+
+        final Calendar calendar = Calendar.getInstance();
+        calendar.add(Calendar.SECOND, lifeTime);
+        return calendar.getTime();
+    }
+
+    public UmaRPT createRPTAndPersist(ExecutionContext executionContext, List<UmaPermission> permissions) {
+        try {
+            final Date creationDate = new Date();
+            final Date expirationDate = rptExpirationDate();
+            final Client client = executionContext.getClient();
+
+            final String code;
+            if (client.isRptAsJwt()) {
+                code = createRptJwt(executionContext, permissions, creationDate, expirationDate);
+            } else {
+                code = UUID.randomUUID().toString() + "_" + INumGenerator.generate(8);
+            }
+
+            UmaRPT rpt = new UmaRPT(code, creationDate, expirationDate, null, client.getClientId());
+            rpt.setPermissions(getPermissionDns(permissions));
+            persist(rpt);
+            statService.reportUmaToken(GrantType.OXAUTH_UMA_TICKET);
+            return rpt;
+        } catch (Exception e) {
+            log.error(e.getMessage(), e);
+            throw new RuntimeException("Failed to generate RPT, clientId: " + executionContext.getClient().getClientId(), e);
+        }
+    }
+
+    public void merge(UmaRPT rpt) {
+        rpt.resetTtlFromExpirationDate();
+        ldapEntryManager.merge(rpt);
+    }
+
+    private String createRptJwt(ExecutionContext executionContext, List<UmaPermission> permissions, Date creationDate, Date expirationDate) throws Exception {
+        Client client = executionContext.getClient();
+        SignatureAlgorithm signatureAlgorithm = SignatureAlgorithm.fromString(appConfiguration.getDefaultSignatureAlgorithm());
+        if (client.getAccessTokenSigningAlg() != null && SignatureAlgorithm.fromString(client.getAccessTokenSigningAlg()) != null) {
+            signatureAlgorithm = SignatureAlgorithm.fromString(client.getAccessTokenSigningAlg());
+        }
+
+        final JwtSigner jwtSigner = new JwtSigner(appConfiguration, webKeysConfiguration, signatureAlgorithm, client.getClientId(), clientService.decryptSecret(client.getClientSecret()));
+        final Jwt jwt = jwtSigner.newJwt();
+        jwt.getClaims().setClaim("client_id", client.getClientId());
+        jwt.getClaims().setExpirationTime(expirationDate);
+        jwt.getClaims().setIssuedAt(creationDate);
+        Audience.setAudience(jwt.getClaims(), client);
+
+        if (permissions != null && !permissions.isEmpty()) {
+            String pctCode = permissions.iterator().next().getAttributes().get(UmaPermission.PCT);
+            if (StringHelper.isNotEmpty(pctCode)) {
+                UmaPCT pct = pctService.getByCode(pctCode);
+                if (pct != null) {
+                    jwt.getClaims().setClaim("pct_claims", pct.getClaims().toJsonObject());
+                } else {
+                    log.error("Failed to find PCT with code: " + pctCode + " which is taken from permission object: " + permissions.iterator().next().getDn());
+                }
+            }
+
+            jwt.getClaims().setClaim("permissions", buildPermissionsJSONObject(permissions));
+        }
+        runScriptAndInjectValuesIntoJwt(jwt, executionContext);
+
+        return jwtSigner.sign().toString();
+    }
+
+    private void runScriptAndInjectValuesIntoJwt(Jwt jwt, ExecutionContext executionContext) {
+        JSONObject responseAsJsonObject = new JSONObject();
+
+        ExternalUmaRptClaimsContext context = new ExternalUmaRptClaimsContext(executionContext);
+        if (externalUmaRptClaimsService.externalModify(responseAsJsonObject, context)) {
+            log.trace("Successfully run external RPT Claim scripts.");
+
+            if (context.isTranferPropertiesIntoJwtClaims()) {
+                log.trace("Transfering claims into jwt ...");
+                JwtUtil.transferIntoJwtClaims(responseAsJsonObject, jwt);
+                log.trace("Transfered.");
+            }
+        }
+    }
+
+    public JSONArray buildPermissionsJSONObject(List<UmaPermission> permissions) throws IOException, JSONException {
+        List<org.gluu.oxauth.model.uma.UmaPermission> result = new ArrayList<>();
+
+        for (UmaPermission permission : permissions) {
+            permission.checkExpired();
+            permission.isValid();
+            if (permission.isValid()) {
+                final org.gluu.oxauth.model.uma.UmaPermission toAdd = ServerUtil.convert(permission, umaScopeService);
+                if (toAdd != null) {
+                    result.add(toAdd);
+                }
+            } else {
+                log.debug("Ignore permission, skip it in response because permission is not valid. Permission dn: {}", permission.getDn());
+            }
+        }
+
+        final String json = ServerUtil.asJson(result);
+        return new JSONArray(json);
+    }
+
+    public void addBranch() {
+        final SimpleBranch branch = new SimpleBranch();
+        branch.setOrganizationalUnitName(ORGUNIT_OF_RPT);
+        branch.setDn(branchDn());
+        ldapEntryManager.persist(branch);
+    }
+
+    public void addBranchIfNeeded() {
+        if (ldapEntryManager.hasBranchesSupport(branchDn()) && !containsBranch() && !containsBranch) {
+            addBranch();
+        } else {
+            containsBranch = true;
+        }
+    }
+
+    public boolean containsBranch() {
+        return ldapEntryManager.contains(branchDn(), SimpleBranch.class);
+    }
+}
diff --git a/oxAuth/Server/src/main/java/org/gluu/oxauth/uma/service/UmaScopeService.java b/oxAuth/Server/src/main/java/org/gluu/oxauth/uma/service/UmaScopeService.java
new file mode 100644
index 00000000..294f6e99
--- /dev/null
+++ b/oxAuth/Server/src/main/java/org/gluu/oxauth/uma/service/UmaScopeService.java
@@ -0,0 +1,228 @@
+/*
+ * oxAuth is available under the MIT License (2008). See http://opensource.org/licenses/MIT for full text.
+ *
+ * Copyright (c) 2014, Gluu
+ */
+
+package org.gluu.oxauth.uma.service;
+
+import org.apache.commons.lang.StringUtils;
+import org.gluu.oxauth.model.common.ScopeType;
+import org.gluu.oxauth.model.config.StaticConfiguration;
+import org.gluu.oxauth.model.configuration.AppConfiguration;
+import org.gluu.oxauth.model.error.ErrorResponseFactory;
+import org.gluu.oxauth.model.registration.Client;
+import org.gluu.oxauth.model.uma.UmaErrorResponseType;
+import org.gluu.oxauth.service.SpontaneousScopeService;
+import org.gluu.oxauth.service.common.InumService;
+import org.gluu.persist.PersistenceEntryManager;
+import org.gluu.search.filter.Filter;
+import org.oxauth.persistence.model.Scope;
+import org.slf4j.Logger;
+
+import javax.enterprise.context.ApplicationScoped;
+import javax.inject.Inject;
+import javax.ws.rs.core.Response;
+import java.util.ArrayList;
+import java.util.Collection;
+import java.util.List;
+import java.util.Set;
+
+import static org.apache.commons.lang3.BooleanUtils.isFalse;
+
+/**
+ * @author Yuriy Zabrovarnyy
+ * @author Yuriy Movchan
+ * @version 0.9, 22/04/2013
+ */
+@ApplicationScoped
+public class UmaScopeService {
+
+    @Inject
+    private Logger log;
+
+    @Inject
+    private PersistenceEntryManager ldapEntryManager;
+
+    @Inject
+    private InumService inumService;
+
+    @Inject
+    private ErrorResponseFactory errorResponseFactory;
+
+    @Inject
+    private AppConfiguration appConfiguration;
+
+    @Inject
+    private StaticConfiguration staticConfiguration;
+
+    @Inject
+    private SpontaneousScopeService spontaneousScopeService;
+
+    public Scope getOrCreate(Client client, String scopeId, Set<String> regExps) {
+        Scope fromLdap = getScope(scopeId);
+        if (fromLdap != null) { // already exists
+            return fromLdap;
+        }
+
+        if (isFalse(appConfiguration.getAllowSpontaneousScopes())) {
+            return null;
+        }
+
+        if (isFalse(client.getAttributes().getAllowSpontaneousScopes())) {
+            return null;
+        }
+
+        if (!spontaneousScopeService.isAllowedBySpontaneousScopes_(regExps, scopeId)) {
+            return null;
+        }
+
+        return spontaneousScopeService.createSpontaneousScopeIfNeeded(regExps, scopeId, client.getClientId());
+    }
+
+    public Scope getScope(String scopeId) {
+        try {
+            final Filter filter = Filter.createEqualityFilter("oxId", scopeId);
+            final List<Scope> entries = ldapEntryManager.findEntries(baseDn(), Scope.class, filter);
+            if (entries != null && !entries.isEmpty()) {
+                // if more then one scope then it's problem, non-deterministic behavior, id must be unique
+                if (entries.size() > 1) {
+                    log.error("Found more then one UMA scope, id: {}", scopeId);
+                    for (Scope s : entries) {
+                        log.error("Scope, Id: {}, dn: {}", s.getId(), s.getDn());
+                    }
+                }
+                return entries.get(0);
+            }
+        } catch (Exception e) {
+            log.error(e.getMessage(), e);
+        }
+        return null;
+    }
+
+    public boolean persist(Scope scope) {
+        try {
+            if (StringUtils.isBlank(scope.getDn())) {
+                scope.setDn(String.format("inum=%s,%s", scope.getInum(), baseDn()));
+            }
+
+            ldapEntryManager.persist(scope);
+            return true;
+        } catch (Exception e) {
+            log.error(e.getMessage(), e);
+            return false;
+        }
+    }
+
+    public List<String> getScopeDNsByIdsAndAddToLdapIfNeeded(List<String> scopeIds) {
+        List<String> result = new ArrayList<String>();
+        for (Scope scope : getScopesByIds(scopeIds)) {
+            result.add(scope.getDn());
+        }
+        return result;
+    }
+
+    public List<Scope> getScopesByDns(List<String> scopeDns) {
+        final List<Scope> result = new ArrayList<Scope>();
+        try {
+            if (scopeDns != null && !scopeDns.isEmpty()) {
+                for (String dn : scopeDns) {
+                    final Scope scopeDescription = ldapEntryManager.find(Scope.class, dn);
+                    if (scopeDescription != null) {
+                        result.add(scopeDescription);
+                    } else {
+                        log.error("Failed to load UMA scope with dn: {}", dn);
+                    }
+                }
+            }
+        } catch (Exception e) {
+            log.error(e.getMessage(), e);
+        }
+        return result;
+    }
+
+    public List<String> getScopeIdsByDns(List<String> scopeDns) {
+        return getScopeIds(getScopesByDns(scopeDns));
+    }
+
+    public List<String> getScopeIds(List<Scope> scopes) {
+        final List<String> result = new ArrayList<String>();
+        if (scopes != null && !scopes.isEmpty()) {
+            for (Scope scope : scopes) {
+                result.add(scope.getId());
+            }
+        }
+        return result;
+    }
+
+    public List<Scope> getScopesByIds(List<String> scopeIds) {
+        List<Scope> result = new ArrayList<Scope>();
+        if (scopeIds != null && !scopeIds.isEmpty()) {
+            List<String> notInLdap = new ArrayList<String>(scopeIds);
+
+            final List<Scope> entries = ldapEntryManager.findEntries(baseDn(), Scope.class, createAnyFilterByIds(scopeIds));
+            if (entries != null) {
+                result.addAll(entries);
+                for (Scope scope : entries) {
+                    notInLdap.remove(scope.getId());
+                }
+            }
+
+            if (!notInLdap.isEmpty()) {
+                for (String scopeId : notInLdap) {
+                    result.add(addScope(scopeId));
+                }
+            }
+        }
+        return result;
+    }
+
+    private Scope addScope(String scopeId) {
+        final Boolean addAutomatically = appConfiguration.getUmaAddScopesAutomatically();
+        if (addAutomatically != null && addAutomatically) {
+            final String inum = inumService.generateInum();
+            final Scope newScope = new Scope();
+            newScope.setScopeType(ScopeType.UMA);
+            newScope.setInum(inum);
+            newScope.setDisplayName(scopeId);
+            newScope.setId(scopeId);
+            newScope.setDeletable(false);
+
+            final boolean persisted = persist(newScope);
+            if (persisted) {
+                return newScope;
+            } else {
+                log.error("Failed to persist scope, id:{}" + scopeId);
+            }
+        }
+
+        throw errorResponseFactory.createWebApplicationException(Response.Status.BAD_REQUEST, UmaErrorResponseType.INVALID_SCOPE, "Failed to persist scope.");
+    }
+
+    private Filter createAnyFilterByIds(List<String> scopeIds) {
+        if (scopeIds != null && !scopeIds.isEmpty()) {
+        	List<Filter> filters = new ArrayList<Filter>();
+            for (String url : scopeIds) {
+            	Filter filter = Filter.createEqualityFilter("oxId", url);
+            	filters.add(filter);
+            }
+            Filter filter = Filter.createORFilter(filters.toArray(new Filter[0]));
+            log.trace("Uma scope ids: " + scopeIds + ", ldapFilter: " + filter);
+            return filter;
+        }
+
+        return null;
+    }
+
+    public String baseDn() {
+        return staticConfiguration.getBaseDn().getScopes();
+    }
+
+    public static String asString(Collection<Scope> scopes) {
+        String result = "";
+        for (Scope scope : scopes) {
+            result += scope.getId() + " ";
+        }
+        return result.trim();
+    }
+}
diff --git a/oxAuth/Server/src/main/java/org/gluu/oxauth/uma/service/UmaSessionService.java b/oxAuth/Server/src/main/java/org/gluu/oxauth/uma/service/UmaSessionService.java
new file mode 100644
index 00000000..e002ff33
--- /dev/null
+++ b/oxAuth/Server/src/main/java/org/gluu/oxauth/uma/service/UmaSessionService.java
@@ -0,0 +1,225 @@
+/*
+ * oxAuth is available under the MIT License (2008). See http://opensource.org/licenses/MIT for full text.
+ *
+ * Copyright (c) 2015, Gluu
+ */
+
+package org.gluu.oxauth.uma.service;
+
+import org.apache.commons.lang.StringUtils;
+import org.gluu.oxauth.model.common.User;
+import org.gluu.oxauth.model.registration.Client;
+import org.gluu.oxauth.model.session.SessionId;
+import org.gluu.oxauth.model.uma.persistence.UmaPermission;
+import org.gluu.oxauth.model.util.Util;
+import org.gluu.oxauth.service.ClientService;
+import org.gluu.oxauth.service.CookieService;
+import org.gluu.oxauth.service.SessionIdService;
+import org.slf4j.Logger;
+
+import javax.enterprise.context.ApplicationScoped;
+import javax.inject.Inject;
+import javax.servlet.http.HttpServletRequest;
+import javax.servlet.http.HttpServletResponse;
+import java.util.HashMap;
+import java.util.List;
+
+/**
+ * @author yuriyz
+ * @version December 8, 2018
+ */
+@ApplicationScoped
+public class UmaSessionService {
+
+    @Inject
+    private Logger log;
+    @Inject
+    private SessionIdService sessionIdService;
+    @Inject
+    private ClientService clientService;
+    @Inject
+    private CookieService cookieService;
+
+    public SessionId getConnectSession(HttpServletRequest httpRequest) {
+        String cookieId = cookieService.getSessionIdFromCookie(httpRequest);
+        log.trace("Cookie - session_id: " + cookieId);
+        if (StringUtils.isNotBlank(cookieId)) {
+            return sessionIdService.getSessionId(cookieId);
+        }
+        return null;
+    }
+
+    public SessionId getSession(HttpServletRequest httpRequest, HttpServletResponse httpResponse) {
+        String cookieId = cookieService.getUmaSessionIdFromCookie(httpRequest);
+        log.trace("Cookie - uma_session_id: " + cookieId);
+
+        if (StringUtils.isNotBlank(cookieId)) {
+            SessionId sessionId = sessionIdService.getSessionId(cookieId);
+            if (sessionId != null) {
+                log.trace("Loaded uma_session_id from cookie, session: " + sessionId);
+                return sessionId;
+            } else {
+                log.error("Failed to load uma_session_id from cookie: " + cookieId);
+            }
+        } else {
+            log.error("uma_session_id cookie is not set.");
+        }
+
+        log.trace("Generating new uma_session_id ...");
+        SessionId session = sessionIdService.generateAuthenticatedSessionId(httpRequest, "", new HashMap<String, String>() {{
+            put("uma", "true");
+        }});
+
+        cookieService.createSessionIdCookie(session, httpRequest, httpResponse, true);
+        log.trace("uma_session_id cookie created.");
+        return session;
+    }
+
+    public boolean persist(SessionId session) {
+        try {
+
+            if (sessionIdService.updateSessionId(session, true, true, true)) {
+                log.trace("Session persisted successfully. Session: " + session);
+                return true;
+            }
+        } catch (Exception e) {
+            log.error("Failed to persist session, id: " + session.getId(), e);
+        }
+        return false;
+    }
+
+    public int getStep(SessionId session) {
+        String stepString = session.getSessionAttributes().get("step");
+        int step = Util.parseIntSilently(stepString);
+        if (step == -1) {
+            step = 1;
+            setStep(step, session);
+        }
+        return step;
+    }
+
+    public void setStep(int step, SessionId session) {
+        session.getSessionAttributes().put("step", Integer.toString(step));
+    }
+
+    public void configure(SessionId session, String scriptName, Boolean reset, List<UmaPermission> permissions,
+                          String clientId, String claimRedirectUri, String state) {
+        setStep(1, session);
+        setState(session, state);
+        setClaimsRedirectUri(session, claimRedirectUri);
+        setTicket(session, permissions.get(0).getTicket());
+        setScriptName(session, scriptName);
+
+        String pct = permissions.get(0).getAttributes().get("pct");
+
+        if (StringUtils.isBlank(pct)) {
+            log.error("PCT code is null or blank in permission object.");
+            throw new RuntimeException("PCT code is null or blank in permission object.");
+        }
+
+        setPct(session, pct);
+        setClientId(session, clientId);
+        persist(session);
+    }
+
+    public boolean isStepPassed(SessionId session, Integer step) {
+        return Boolean.parseBoolean(session.getSessionAttributes().get(String.format("uma_step_passed_%d", step)));
+    }
+
+    public boolean isPassedPreviousSteps(SessionId session, Integer step) {
+        for (int i = 1; i < step; i++) {
+            if (!isStepPassed(session, i)) {
+                return false;
+            }
+        }
+        return true;
+    }
+
+    public void markStep(SessionId session, Integer step, boolean value) {
+        String key = String.format("uma_step_passed_%d", step);
+        if (value) {
+            session.getSessionAttributes().put(key, Boolean.TRUE.toString());
+        } else {
+            session.getSessionAttributes().remove(key);
+        }
+    }
+
+    public String getScriptName(SessionId session) {
+        return session.getSessionAttributes().get("gather_script_name");
+    }
+
+    public void setScriptName(SessionId session, String scriptName) {
+        session.getSessionAttributes().put("gather_script_name", scriptName);
+    }
+
+    public String getPct(SessionId session) {
+        return session.getSessionAttributes().get("pct");
+    }
+
+    public void setPct(SessionId session, String pct) {
+        session.getSessionAttributes().put("pct", pct);
+    }
+
+    public String getClientId(SessionId session) {
+        return session.getSessionAttributes().get("client_id");
+    }
+
+    public void setClientId(SessionId session, String clientId) {
+        session.getSessionAttributes().put("client_id", clientId);
+    }
+
+    public String getClaimsRedirectUri(SessionId session) {
+        return session.getSessionAttributes().get("claims_redirect_uri");
+    }
+
+    public void setClaimsRedirectUri(SessionId session, String claimsRedirectUri) {
+        session.getSessionAttributes().put("claims_redirect_uri", claimsRedirectUri);
+    }
+
+    public String getState(SessionId session) {
+        return session.getSessionAttributes().get("state");
+    }
+
+    public void setState(SessionId session, String state) {
+        session.getSessionAttributes().put("state", state);
+    }
+
+    public String getTicket(SessionId session) {
+        return session.getSessionAttributes().get("ticket");
+    }
+
+    public void setTicket(SessionId session, String ticket) {
+        session.getSessionAttributes().put("ticket", ticket);
+    }
+
+    public void resetToStep(SessionId session, int overridenNextStep, int step) {
+        for (int i = overridenNextStep; i <= step; i++) {
+            markStep(session, i, false);
+        }
+
+        setStep(overridenNextStep, session);
+    }
+
+    public User getUser(HttpServletRequest httpRequest, String... returnAttributes) {
+        return sessionIdService.getUser(getConnectSession(httpRequest));
+    }
+
+    public String getUserDn(HttpServletRequest httpRequest) {
+        SessionId connectSession = getConnectSession(httpRequest);
+        if (connectSession != null) {
+            return connectSession.getUserDn();
+        }
+
+        log.trace("No logged in user.");
+        return null;
+    }
+
+    public Client getClient(SessionId session) {
+        String clientId = getClientId(session);
+        if (StringUtils.isNotBlank(clientId)) {
+            return clientService.getClient(clientId);
+        }
+        log.trace("client_id is not in session.");
+        return null;
+    }
+}
diff --git a/oxAuth/Server/src/main/java/org/gluu/oxauth/uma/service/UmaTokenService.java b/oxAuth/Server/src/main/java/org/gluu/oxauth/uma/service/UmaTokenService.java
new file mode 100644
index 00000000..b473e6c6
--- /dev/null
+++ b/oxAuth/Server/src/main/java/org/gluu/oxauth/uma/service/UmaTokenService.java
@@ -0,0 +1,150 @@
+/*
+ * oxAuth is available under the MIT License (2008). See http://opensource.org/licenses/MIT for full text.
+ *
+ * Copyright (c) 2014, Gluu
+ */
+
+package org.gluu.oxauth.uma.service;
+
+import org.gluu.oxauth.model.common.ExecutionContext;
+import org.gluu.oxauth.model.configuration.AppConfiguration;
+import org.gluu.oxauth.model.error.ErrorResponseFactory;
+import org.gluu.oxauth.model.jwt.Jwt;
+import org.gluu.oxauth.model.registration.Client;
+import org.gluu.oxauth.model.uma.UmaErrorResponseType;
+import org.gluu.oxauth.model.uma.UmaTokenResponse;
+import org.gluu.oxauth.model.uma.persistence.UmaPermission;
+import org.gluu.oxauth.security.Identity;
+import org.gluu.oxauth.uma.authorization.*;
+import org.gluu.oxauth.util.ServerUtil;
+import org.oxauth.persistence.model.Scope;
+import org.slf4j.Logger;
+
+import javax.enterprise.context.ApplicationScoped;
+import javax.inject.Inject;
+import javax.servlet.http.HttpServletRequest;
+import javax.servlet.http.HttpServletResponse;
+import javax.ws.rs.WebApplicationException;
+import javax.ws.rs.core.Response;
+import java.util.*;
+
+/**
+ * UMA Token Service
+ */
+@ApplicationScoped
+public class UmaTokenService {
+
+    @Inject
+    private Logger log;
+    @Inject
+    private Identity identity;
+    @Inject
+    private ErrorResponseFactory errorResponseFactory;
+    @Inject
+    private UmaRptService rptService;
+    @Inject
+    private UmaPctService pctService;
+    @Inject
+    private UmaPermissionService permissionService;
+    @Inject
+    private UmaValidationService umaValidationService;
+    @Inject
+    private AppConfiguration appConfiguration;
+    @Inject
+    private UmaNeedsInfoService umaNeedsInfoService;
+    @Inject
+    private UmaExpressionService expressionService;
+
+    public Response requestRpt(
+            String grantType,
+            String ticket,
+            String claimToken,
+            String claimTokenFormat,
+            String pctCode,
+            String rptCode,
+            String scope,
+            HttpServletRequest httpRequest,
+            HttpServletResponse httpResponse) {
+        try {
+            log.trace("requestRpt grant_type: {}, ticket: {}, claim_token: {}, claim_token_format: {}, pct: {}, rpt: {}, scope: {}"
+                    , grantType, ticket, claimToken, claimTokenFormat, pctCode, rptCode, scope);
+
+            umaValidationService.validateGrantType(grantType);
+            List<UmaPermission> permissions = umaValidationService.validateTicket(ticket);
+            Jwt idToken = umaValidationService.validateClaimToken(claimToken, claimTokenFormat);
+            UmaPCT pct = umaValidationService.validatePct(pctCode);
+            UmaRPT rpt = umaValidationService.validateRPT(rptCode);
+            Client client = umaValidationService.validate(identity.getSessionClient().getClient());
+            Map<Scope, Boolean> scopes = umaValidationService.validateScopes(scope, permissions, client);
+            pct = pctService.updateClaims(pct, idToken, client.getClientId(), permissions); // creates new pct if pct is null in request
+            Claims claims = new Claims(idToken, pct, claimToken);
+
+            Map<UmaScriptByScope, UmaAuthorizationContext> scriptMap = umaNeedsInfoService.checkNeedsInfo(claims, scopes, permissions, pct, httpRequest, client);
+
+            if (!scriptMap.isEmpty()) {
+                expressionService.evaluate(scriptMap, permissions);
+            } else {
+                log.warn("There are no any policies that protects scopes. Scopes: " + UmaScopeService.asString(scopes.keySet()) + ". Configuration property umaGrantAccessIfNoPolicies: " + appConfiguration.getUmaGrantAccessIfNoPolicies());
+
+                if (appConfiguration.getUmaGrantAccessIfNoPolicies() != null && appConfiguration.getUmaGrantAccessIfNoPolicies()) {
+                    log.warn("Access granted because there are no any protection. Make sure it is intentional behavior.");
+                } else {
+                    log.warn("Access denied because there are no any protection. Make sure it is intentional behavior.");
+                    throw errorResponseFactory.createWebApplicationException(Response.Status.FORBIDDEN, UmaErrorResponseType.FORBIDDEN_BY_POLICY, "Access denied because there are no any protection. Make sure it is intentional behavior.");
+                }
+            }
+
+            log.trace("Access granted.");
+
+            updatePermissionsWithClientRequestedScope(permissions, scopes);
+            addPctToPermissions(permissions, pct);
+
+            boolean upgraded = false;
+            if (rpt == null) {
+                ExecutionContext executionContext = new ExecutionContext(httpRequest, httpResponse);
+                executionContext.setClient(client);
+                rpt = rptService.createRPTAndPersist(executionContext, permissions);
+                rptCode = rpt.getNotHashedCode();
+            } else if (rptService.addPermissionToRPT(rpt, permissions)) {
+                upgraded = true;
+            }
+
+            UmaTokenResponse response = new UmaTokenResponse();
+            response.setAccessToken(rptCode);
+            response.setUpgraded(upgraded);
+            response.setTokenType("Bearer");
+            response.setPct(pct.getCode());
+
+            return Response.ok(ServerUtil.asJson(response)).build();
+        } catch (Exception ex) {
+            log.error("Exception happened", ex);
+            if (ex instanceof WebApplicationException) {
+                throw (WebApplicationException) ex;
+            }
+        }
+
+        log.error("Failed to handle request to UMA Token Endpoint.");
+        throw errorResponseFactory.createWebApplicationException(Response.Status.INTERNAL_SERVER_ERROR, UmaErrorResponseType.SERVER_ERROR, "Failed to handle request to UMA Token Endpoint.");
+    }
+
+    private void addPctToPermissions(List<UmaPermission> permissions, UmaPCT pct) {
+        for (UmaPermission p : permissions) {
+            p.getAttributes().put(UmaPermission.PCT, pct.getCode());
+            permissionService.mergeSilently(p);
+        }
+    }
+
+    private void updatePermissionsWithClientRequestedScope(List<UmaPermission> permissions, Map<Scope, Boolean> scopes) {
+        log.trace("Updating permissions with requested scopes ...");
+        for (UmaPermission permission : permissions) {
+            Set<String> scopeDns = new HashSet<>(permission.getScopeDns());
+
+            for (Map.Entry<Scope, Boolean> entry : scopes.entrySet()) {
+                log.trace("Updating permissions with scope: " + entry.getKey().getId() + ", isRequestedScope: " + entry.getValue() + ", permisson: " + permission.getDn());
+                scopeDns.add(entry.getKey().getDn());
+            }
+
+            permission.setScopeDns(new ArrayList<>(scopeDns));
+        }
+    }
+}
diff --git a/oxAuth/Server/src/main/java/org/gluu/oxauth/uma/service/UmaValidationService.java b/oxAuth/Server/src/main/java/org/gluu/oxauth/uma/service/UmaValidationService.java
new file mode 100644
index 00000000..fee3ccf6
--- /dev/null
+++ b/oxAuth/Server/src/main/java/org/gluu/oxauth/uma/service/UmaValidationService.java
@@ -0,0 +1,493 @@
+/*
+ * oxAuth is available under the MIT License (2008). See http://opensource.org/licenses/MIT for full text.
+ *
+ * Copyright (c) 2014, Gluu
+ */
+
+package org.gluu.oxauth.uma.service;
+
+import com.google.common.base.Joiner;
+import com.google.common.collect.Sets;
+import org.apache.commons.lang.ArrayUtils;
+import org.apache.commons.lang.StringUtils;
+import org.gluu.oxauth.model.common.AuthorizationGrant;
+import org.gluu.oxauth.model.common.AuthorizationGrantList;
+import org.gluu.oxauth.model.common.GrantType;
+import org.gluu.oxauth.model.config.WebKeysConfiguration;
+import org.gluu.oxauth.model.configuration.AppConfiguration;
+import org.gluu.oxauth.model.crypto.signature.RSAPublicKey;
+import org.gluu.oxauth.model.crypto.signature.SignatureAlgorithm;
+import org.gluu.oxauth.model.error.ErrorResponseFactory;
+import org.gluu.oxauth.model.jwk.JSONWebKey;
+import org.gluu.oxauth.model.jws.RSASigner;
+import org.gluu.oxauth.model.jwt.Jwt;
+import org.gluu.oxauth.model.jwt.JwtClaimName;
+import org.gluu.oxauth.model.jwt.JwtHeaderName;
+import org.gluu.oxauth.model.registration.Client;
+import org.gluu.oxauth.model.uma.ClaimTokenFormatType;
+import org.gluu.oxauth.model.uma.UmaErrorResponseType;
+import org.gluu.oxauth.model.uma.UmaPermissionList;
+import org.gluu.oxauth.model.uma.UmaScopeType;
+import org.gluu.oxauth.model.uma.persistence.UmaPermission;
+import org.gluu.oxauth.model.uma.persistence.UmaResource;
+import org.gluu.oxauth.service.ClientService;
+import org.gluu.oxauth.service.RedirectionUriService;
+import org.gluu.oxauth.service.token.TokenService;
+import org.gluu.oxauth.uma.authorization.UmaPCT;
+import org.gluu.oxauth.uma.authorization.UmaRPT;
+import org.gluu.oxauth.uma.authorization.UmaWebException;
+import org.gluu.oxauth.util.ServerUtil;
+import org.gluu.persist.exception.EntryPersistenceException;
+import org.gluu.util.StringHelper;
+import org.oxauth.persistence.model.Scope;
+import com.google.common.base.Function;
+import com.google.common.collect.Iterables;
+import org.slf4j.Logger;
+
+import javax.enterprise.context.ApplicationScoped;
+import javax.inject.Inject;
+import javax.ws.rs.core.Response;
+import java.util.*;
+import java.util.stream.Collectors;
+
+import static javax.ws.rs.core.Response.Status.BAD_REQUEST;
+import static javax.ws.rs.core.Response.Status.UNAUTHORIZED;
+import static org.gluu.oxauth.model.uma.UmaErrorResponseType.*;
+
+/**
+ * @author Yuriy Zabrovarnyy
+ * @version 0.9, 04/02/2013
+ */
+@ApplicationScoped
+public class UmaValidationService {
+
+    @Inject
+    private Logger log;
+
+    @Inject
+    private ErrorResponseFactory errorResponseFactory;
+
+    @Inject
+    private TokenService tokenService;
+
+    @Inject
+    private AuthorizationGrantList authorizationGrantList;
+
+    @Inject
+    private UmaResourceService resourceService;
+
+    @Inject
+    private UmaScopeService umaScopeService;
+
+    @Inject
+    private AppConfiguration appConfiguration;
+
+    @Inject
+    private UmaPermissionService permissionService;
+
+    @Inject
+    private UmaPctService pctService;
+
+    @Inject
+    private UmaRptService rptService;
+
+    @Inject
+    private WebKeysConfiguration webKeysConfiguration;
+
+    @Inject
+    private ClientService clientService;
+
+    @Inject
+    private UmaExpressionService expressionService;
+
+    public AuthorizationGrant assertHasProtectionScope(String authorization) {
+        return validateAuthorization(authorization, UmaScopeType.PROTECTION);
+    }
+
+    private AuthorizationGrant validateAuthorization(String authorization, UmaScopeType umaScopeType) {
+        log.trace("Validate authorization: {}", authorization);
+        if (StringHelper.isEmpty(authorization)) {
+            throw errorResponseFactory.createWebApplicationException(UNAUTHORIZED, UNAUTHORIZED_CLIENT, "Authorization header is blank.");
+        }
+
+        String token = tokenService.getToken(authorization);
+        if (StringHelper.isEmpty(token)) {
+            log.debug("Token is invalid.");
+            throw errorResponseFactory.createWebApplicationException(UNAUTHORIZED, UNAUTHORIZED_CLIENT, "Token is invalid.");
+        }
+
+        AuthorizationGrant authorizationGrant = authorizationGrantList.getAuthorizationGrantByAccessToken(token);
+        if (authorizationGrant == null) {
+            throw errorResponseFactory.createWebApplicationException(UNAUTHORIZED, ACCESS_DENIED, "Unable to find authorization grant by token.");
+        }
+
+        Set<String> scopes = authorizationGrant.getScopes();
+        if (!scopes.contains(umaScopeType.getValue())) {
+            throw errorResponseFactory.createWebApplicationException(Response.Status.NOT_ACCEPTABLE, INVALID_CLIENT_SCOPE, "Client does not have scope: " + umaScopeType.getValue());
+        }
+        return authorizationGrant;
+    }
+
+    public UmaRPT validateRPT(String rptCode) {
+        if (StringUtils.isNotBlank(rptCode)) {
+            UmaRPT rpt = rptService.getRPTByCode(rptCode);
+            if (rpt != null) {
+                rpt.checkExpired();
+                if (rpt.isValid()) {
+                    return rpt;
+                } else {
+                    log.error("RPT is not valid. Revoked: " + rpt.isRevoked() + ", Expired: " + rpt.isExpired() + ", rptCode: " + rptCode);
+                    throw errorResponseFactory.createWebApplicationException(BAD_REQUEST, INVALID_RPT, "RPT is not valid. Revoked: " + rpt.isRevoked() + ", Expired: " + rpt.isExpired() + ", rptCode: " + rptCode);
+                }
+            } else {
+                log.error("RPT is null, rptCode: " + rptCode);
+                throw errorResponseFactory.createWebApplicationException(BAD_REQUEST, INVALID_RPT, "RPT is null, rptCode: " + rptCode);
+            }
+        }
+        return null;
+    }
+
+    public void validatePermissions(List<UmaPermission> permissions) {
+        for (UmaPermission permission : permissions) {
+            validatePermission(permission);
+        }
+    }
+
+    public void validatePermission(UmaPermission permission) {
+        if (permission == null || "invalidated".equalsIgnoreCase(permission.getStatus())) {
+            log.error("Permission is null or otherwise invalidated. Status: " + (permission != null ? permission.getStatus() : "No permissions."));
+            throw errorResponseFactory.createWebApplicationException(BAD_REQUEST, INVALID_TICKET, "Permission is null or otherwise invalidated. Status: " + (permission != null ? permission.getStatus() : "No permissions."));
+        }
+
+        permission.checkExpired();
+        if (!permission.isValid()) {
+            log.error("Permission is not valid.");
+            throw errorResponseFactory.createWebApplicationException(BAD_REQUEST, EXPIRED_TICKET, "Permission is not valid.");
+        }
+    }
+
+    public void validatePermissions(UmaPermissionList permissions, Client client) {
+        for (org.gluu.oxauth.model.uma.UmaPermission permission : permissions) {
+            validatePermission(permission, client);
+        }
+    }
+
+    public void validatePermission(org.gluu.oxauth.model.uma.UmaPermission permission, Client client) {
+        String resourceId = permission.getResourceId();
+        if (StringHelper.isEmpty(resourceId)) {
+            log.error("Resource id is empty");
+            throw errorResponseFactory.createWebApplicationException(BAD_REQUEST, INVALID_RESOURCE_ID, "Resource id is empty");
+        }
+
+        try {
+            UmaResource resource = resourceService.getResourceById(resourceId);
+            if (resource == null) {
+                log.error("Resource isn't registered or there are two resources with same Id");
+                throw errorResponseFactory.createWebApplicationException(BAD_REQUEST, INVALID_RESOURCE_ID, "Resource is not registered.");
+            }
+
+            for (String s : permission.getScopes()) {
+                if (resource.getScopes().contains(s)) {
+                    continue;
+                }
+
+                final Scope spontaneousScope = umaScopeService.getOrCreate(client, s, Sets.newHashSet(umaScopeService.getScopeIdsByDns(resource.getScopes())));
+                if (spontaneousScope == null) {
+                    log.error("Scope isn't registered and is not allowed by spontaneous scopes. Scope: " + s);
+                    throw errorResponseFactory.createWebApplicationException(BAD_REQUEST, INVALID_SCOPE, "At least one of the scopes isn't registered");
+                }
+            }
+            return;
+        } catch (EntryPersistenceException ex) {
+            log.error(ex.getMessage(), ex);
+        }
+
+        log.error("Resource isn't registered");
+        throw errorResponseFactory.createWebApplicationException(BAD_REQUEST, INVALID_RESOURCE_ID, "Resource isn't registered");
+    }
+
+    public void validateGrantType(String grantType) {
+        log.trace("Validate grantType: {}", grantType);
+
+        if (!GrantType.OXAUTH_UMA_TICKET.getValue().equals(grantType)) {
+            throw errorResponseFactory.createWebApplicationException(BAD_REQUEST, INVALID_RESOURCE_ID, "No required grant_type: " + GrantType.OXAUTH_UMA_TICKET.getValue());
+        }
+    }
+
+    public List<UmaPermission> validateTicket(String ticket) {
+        if (StringUtils.isBlank(ticket)) {
+            log.error("Ticket is null or blank.");
+            throw errorResponseFactory.createWebApplicationException(BAD_REQUEST, INVALID_TICKET, "Ticket is null or blank.");
+        }
+
+        List<UmaPermission> permissions = permissionService.getPermissionsByTicket(ticket);
+        if (permissions == null || permissions.isEmpty()) {
+            log.error("Unable to find permissions registered for given ticket:" + ticket);
+            throw errorResponseFactory.createWebApplicationException(BAD_REQUEST, INVALID_TICKET, "Unable to find permissions registered for given ticket:" + ticket);
+        }
+        return permissions;
+    }
+
+    public List<UmaPermission> validateTicketWithRedirect(String ticket, String claimsRedirectUri, String state) {
+        if (StringUtils.isBlank(ticket)) {
+            log.error("Ticket is null or blank.");
+            throw new UmaWebException(claimsRedirectUri, errorResponseFactory, INVALID_TICKET, state);
+        }
+
+        List<UmaPermission> permissions = permissionService.getPermissionsByTicket(ticket);
+        if (permissions == null || permissions.isEmpty()) {
+            log.error("Unable to find permissions registered for given ticket:" + ticket);
+            throw new UmaWebException(claimsRedirectUri, errorResponseFactory, INVALID_TICKET, state);
+        }
+        return permissions;
+    }
+
+    public Jwt validateClaimToken(String claimToken, String claimTokenFormat) {
+        if (StringUtils.isNotBlank(claimToken)) {
+            if (!ClaimTokenFormatType.isValueValid(claimTokenFormat)) {
+                log.error("claim_token_format is unsupported. Supported format is http://openid.net/specs/openid-connect-core-1_0.html#IDToken");
+                throw errorResponseFactory.createWebApplicationException(BAD_REQUEST, INVALID_CLAIM_TOKEN_FORMAT, "claim_token_format is unsupported. Supported format is http://openid.net/specs/openid-connect-core-1_0.html#IDToken");
+            }
+
+            try {
+                final Jwt idToken = Jwt.parse(claimToken);
+                if (idToken != null) {
+                    if (ServerUtil.isTrue(appConfiguration.getUmaValidateClaimToken()) && !isIdTokenValid(idToken)) {
+                        log.error("claim_token validation failed.");
+                        throw errorResponseFactory.createWebApplicationException(BAD_REQUEST, INVALID_CLAIM_TOKEN, "claim_token validation failed.");
+                    }
+                    return idToken;
+                } else {
+                    throw errorResponseFactory.createWebApplicationException(BAD_REQUEST, INVALID_CLAIM_TOKEN, "id_tokne is null.");
+                }
+            } catch (Exception e) {
+                log.error("Failed to parse claim_token as valid id_token.", e);
+                throw errorResponseFactory.createWebApplicationException(BAD_REQUEST, INVALID_CLAIM_TOKEN, "Failed to parse claim_token as valid id_token.");
+            }
+        } else if (StringUtils.isNotBlank(claimTokenFormat)) {
+            log.error("claim_token is blank but claim_token_format is not blank. Both must be blank or both must be not blank");
+            throw errorResponseFactory.createWebApplicationException(BAD_REQUEST, INVALID_CLAIM_TOKEN, "claim_token is blank but claim_token_format is not blank. Both must be blank or both must be not blank");
+        }
+        return null;
+    }
+
+    public boolean isIdTokenValid(Jwt idToken) {
+        try {
+            final String issuer = idToken.getClaims().getClaimAsString(JwtClaimName.ISSUER);
+            //final String nonceFromToken = idToken.getClaims().getClaimAsString(JwtClaimName.NONCE);
+            //final String audienceFromToken = idToken.getClaims().getClaimAsString(JwtClaimName.AUDIENCE);
+
+            final Date expiresAt = idToken.getClaims().getClaimAsDate(JwtClaimName.EXPIRATION_TIME);
+            final Date now = new Date();
+            if (now.after(expiresAt)) {
+                log.error("ID Token is expired. (It is after " + now + ").");
+                return false;
+            }
+
+            // 1. validate issuer
+            if (!issuer.equals(appConfiguration.getIssuer())) {
+                log.error("ID Token issuer is invalid. Token issuer: " + issuer + ", server issuer: " + appConfiguration.getIssuer());
+                return false;
+            }
+
+            // 2. validate signature
+            final String kid = idToken.getHeader().getClaimAsString(JwtHeaderName.KEY_ID);
+            final String algorithm = idToken.getHeader().getClaimAsString(JwtHeaderName.ALGORITHM);
+            RSAPublicKey publicKey = getPublicKey(kid);
+            if (publicKey != null) {
+                RSASigner rsaSigner = new RSASigner(SignatureAlgorithm.fromString(algorithm), publicKey);
+                boolean signature = rsaSigner.validate(idToken);
+                if (signature) {
+                    log.debug("ID Token is successfully validated.");
+                    return true;
+                }
+                log.error("ID Token signature is invalid.");
+            } else {
+                log.error("Failed to get RSA public key.");
+            }
+            return false;
+        } catch (Exception e) {
+            log.error("Failed to validate id_token. Message: " + e.getMessage(), e);
+            return false;
+        }
+    }
+
+    private RSAPublicKey getPublicKey(String kid) {
+        JSONWebKey key = webKeysConfiguration.getKey(kid);
+        if (key != null) {
+            switch (key.getKty()) {
+                case RSA:
+                    return new RSAPublicKey(
+                            key.getN(),
+                            key.getE());
+            }
+        }
+        return null;
+    }
+
+    public UmaPCT validatePct(String pctCode) {
+        if (StringUtils.isNotBlank(pctCode)) {
+            UmaPCT pct = pctService.getByCode(pctCode);
+
+            if (pct != null) {
+                pct.checkExpired();
+                if (pct.isValid()) {
+                    log.trace("PCT is validated successfully, pct: " + pctCode);
+                    return pct;
+                } else {
+                    log.error("PCT is not valid. Revoked: " + pct.isRevoked() + ", Expired: " + pct.isExpired() + ", pctCode: " + pctCode);
+                    throw errorResponseFactory.createWebApplicationException(UNAUTHORIZED, INVALID_PCT, "PCT is not valid. Revoked: " + pct.isRevoked() + ", Expired: " + pct.isExpired() + ", pctCode: " + pctCode);
+                }
+            } else {
+                log.error("Failed to find PCT with pctCode: " + pctCode);
+                throw errorResponseFactory.createWebApplicationException(UNAUTHORIZED, INVALID_PCT, "Failed to find PCT with pctCode: " + pctCode);
+            }
+        }
+        return null;
+    }
+
+    /**
+     * @param scope scope string from token request
+     * @param permissions permissions
+     * @return map of loaded scope and boolean, true - if client requested scope and false if it is permission ticket scope
+     */
+    public Map<Scope, Boolean> validateScopes(String scope, List<UmaPermission> permissions, Client client) {
+        scope = ServerUtil.urlDecode(scope);
+        final String[] scopesRequested = StringUtils.isNotBlank(scope) ? scope.split(" ") : new String[0];
+
+        final Map<Scope, Boolean> result = new HashMap<Scope, Boolean>();
+
+        if (ArrayUtils.isNotEmpty(scopesRequested)) {
+            final Set<String> resourceScopes = resourceService.getResourceScopes(permissions.stream().map(UmaPermission::getResourceId).collect(Collectors.toSet()));
+            for (String scopeId : scopesRequested) {
+                final Scope ldapScope = umaScopeService.getOrCreate(client, scopeId, resourceScopes);
+                if (ldapScope != null) {
+                    result.put(ldapScope, true);
+                } else {
+                    log.trace("Skip requested scope because it's not allowed, scope: " + scopeId);
+                }
+            }
+        }
+        for (UmaPermission permission : permissions) {
+            for (Scope s : umaScopeService.getScopesByDns(permission.getScopeDns())) {
+                result.put(s, false);
+            }
+        }
+        if (result.isEmpty()) {
+            log.error("There are no any scopes requested in the request.");
+            throw errorResponseFactory.createWebApplicationException(BAD_REQUEST, UmaErrorResponseType.INVALID_SCOPE, "There are no any scopes requested in give request.");
+        }
+        log.trace("CandidateGrantedScopes: " + Joiner.on(", ").join(Iterables.transform(result.keySet(), new Function<Scope, String>() {
+            @Override
+            public String apply(Scope scope) {
+                return scope.getId();
+            }
+        })));
+        return result;
+    }
+
+    public void validateScopeExpression(String scopeExpression) {
+        if (StringUtils.isNotBlank(scopeExpression) && !expressionService.isExpressionValid(scopeExpression)) {
+            log.error("Scope expression is invalid. Expression: " + scopeExpression);
+            throw errorResponseFactory.createWebApplicationException(BAD_REQUEST, UmaErrorResponseType.INVALID_SCOPE, "Scope expression is invalid. Expression: " + scopeExpression);
+        }
+    }
+
+    public Client validateClientAndClaimsRedirectUri(String clientId, String claimsRedirectUri, String state) {
+        if (StringUtils.isBlank(clientId)) {
+            log.error("Invalid clientId: {}", clientId);
+            throw errorResponseFactory.createWebApplicationException(BAD_REQUEST, UmaErrorResponseType.INVALID_CLIENT_ID, "Invalid clientId: " + clientId);
+        }
+        Client client = clientService.getClient(clientId);
+        if (client == null) {
+            log.error("Failed to find client with client_id: {}", clientId);
+            throw errorResponseFactory.createWebApplicationException(BAD_REQUEST, UmaErrorResponseType.INVALID_CLIENT_ID, "Failed to find client with client_id:" + clientId);
+        }
+
+        if (StringUtils.isNotBlank(claimsRedirectUri)) {
+            if (ArrayUtils.isEmpty(client.getClaimRedirectUris())) {
+                log.error("Client does not have claims_redirect_uri specified, clientId: " + clientId);
+                throw errorResponseFactory.createWebApplicationException(BAD_REQUEST, UmaErrorResponseType.INVALID_CLAIMS_REDIRECT_URI, "Client does not have claims_redirect_uri specified, clientId: " + clientId);
+            }
+
+            String equalRedirectUri = getEqualRedirectUri(claimsRedirectUri, client.getClaimRedirectUris());
+            if (equalRedirectUri != null) {
+                log.trace("Found match for claims_redirect_uri : " + equalRedirectUri);
+                return client;
+            } else {
+                log.trace("Failed to find match for claims_redirect_uri : " + claimsRedirectUri + ", client claimRedirectUris: " + Arrays.toString(client.getClaimRedirectUris()));
+            }
+        } else {
+            log.trace("claims_redirect_uri is blank");
+            if (client.getClaimRedirectUris() != null && client.getClaimRedirectUris().length == 1) {
+                log.trace("claims_redirect_uri is blank and only one claims_redirect_uri is registered.");
+                return client;
+            }
+        }
+
+        if (StringUtils.isBlank(claimsRedirectUri)) {
+            log.error("claims_redirect_uri is blank and there is none or more then one registered claims_redirect_uri for clientId: " + clientId);
+            throw errorResponseFactory.createWebApplicationException(BAD_REQUEST, UmaErrorResponseType.INVALID_CLAIMS_REDIRECT_URI, "claims_redirect_uri is blank and there is none or more then one registered claims_redirect_uri for clientId: " + clientId);
+        }
+
+        throw new UmaWebException(claimsRedirectUri, errorResponseFactory, INVALID_CLAIMS_REDIRECT_URI, state);
+    }
+
+    private String getEqualRedirectUri(String redirectUri, String[] clientRedirectUris) {
+        final String redirectUriWithoutParams = RedirectionUriService.uriWithoutParams(redirectUri);
+
+        for (String uri : clientRedirectUris) {
+            log.debug("Comparing {} == {}", uri, redirectUri);
+            if (uri.equals(redirectUri)) { // compare complete uri
+                return redirectUri;
+            }
+
+            String uriWithoutParams = RedirectionUriService.uriWithoutParams(uri);
+            final Map<String, String> params = RedirectionUriService.getParams(uri);
+
+            if ((uriWithoutParams.equals(redirectUriWithoutParams) && params.size() == 0 && RedirectionUriService.getParams(redirectUri).size() == 0) ||
+                    uriWithoutParams.equals(redirectUriWithoutParams) && params.size() > 0 && RedirectionUriService.compareParams(redirectUri, uri)) {
+                return redirectUri;
+            }
+        }
+        return null;
+    }
+
+    public String[] validatesGatheringScriptNames(String scriptNamesAsString, String claimsRedirectUri, String state) {
+        if (StringUtils.isNotBlank(scriptNamesAsString)) {
+            final String[] scriptNames = scriptNamesAsString.split(" ");
+            if (ArrayUtils.isNotEmpty(scriptNames)) {
+                return scriptNames;
+            }
+        }
+        throw new UmaWebException(claimsRedirectUri, errorResponseFactory, INVALID_CLAIMS_GATHERING_SCRIPT_NAME, state);
+    }
+
+    public void validateRestrictedByClient(String patClientDn, String rsId) {
+        if (ServerUtil.isTrue(appConfiguration.getUmaRestrictResourceToAssociatedClient())) {
+            final List<String> clients = resourceService.getResourceById(rsId).getClients();
+            if (!clients.contains(patClientDn)) {
+                log.error("Access to resource is denied because resource associated client does not match PAT client (it can be switched off if set umaRestrictResourceToAssociatedClient oxauth configuration property to false). Associated clients: " + clients + ", PAT client: " + patClientDn);
+                throw errorResponseFactory.createWebApplicationException(Response.Status.FORBIDDEN, ACCESS_DENIED, "Access to resource is denied because resource associated client does not match PAT client (it can be switched off if set umaRestrictResourceToAssociatedClient oxauth configuration property to false).");
+            }
+        }
+    }
+
+    public void validateResource(org.gluu.oxauth.model.uma.UmaResource resource) {
+        validateScopeExpression(resource.getScopeExpression());
+
+        List<String> scopeDNs = umaScopeService.getScopeDNsByIdsAndAddToLdapIfNeeded(resource.getScopes());
+        if (scopeDNs.isEmpty() && StringUtils.isBlank(resource.getScopeExpression()) ) {
+            log.error("Invalid resource. Both `scope` and `scope_expression` are blank.");
+            throw errorResponseFactory.createWebApplicationException(BAD_REQUEST, UmaErrorResponseType.INVALID_SCOPE, "Invalid resource. Both `scope` and `scope_expression` are blank.");
+        }
+    }
+
+    public Client validate(Client client) {
+        if (client == null || client.isDisabled()) {
+            log.debug("Client is not found or otherwise disabled.");
+            throw errorResponseFactory.createWebApplicationException(Response.Status.FORBIDDEN, UmaErrorResponseType.DISABLED_CLIENT, "Client is disabled.");
+        }
+        return client;
+    }
+}
diff --git a/oxAuth/Server/src/main/java/org/gluu/oxauth/uma/ws/rs/UmaGatheringWS.java b/oxAuth/Server/src/main/java/org/gluu/oxauth/uma/ws/rs/UmaGatheringWS.java
new file mode 100644
index 00000000..9b83f2f8
--- /dev/null
+++ b/oxAuth/Server/src/main/java/org/gluu/oxauth/uma/ws/rs/UmaGatheringWS.java
@@ -0,0 +1,182 @@
+/*
+ * oxAuth is available under the MIT License (2008). See http://opensource.org/licenses/MIT for full text.
+ *
+ * Copyright (c) 2015, Gluu
+ */
+
+package org.gluu.oxauth.uma.ws.rs;
+
+import org.apache.commons.lang.StringUtils;
+import org.gluu.model.custom.script.conf.CustomScriptConfiguration;
+import org.gluu.oxauth.model.configuration.AppConfiguration;
+import org.gluu.oxauth.model.error.ErrorResponseFactory;
+import org.gluu.oxauth.model.session.SessionId;
+import org.gluu.oxauth.model.uma.UmaConstants;
+import org.gluu.oxauth.model.uma.UmaErrorResponseType;
+import org.gluu.oxauth.model.uma.persistence.UmaPermission;
+import org.gluu.oxauth.service.common.UserService;
+import org.gluu.oxauth.service.external.ExternalUmaClaimsGatheringService;
+import org.gluu.oxauth.uma.authorization.UmaGatherContext;
+import org.gluu.oxauth.uma.authorization.UmaWebException;
+import org.gluu.oxauth.uma.service.UmaPctService;
+import org.gluu.oxauth.uma.service.UmaPermissionService;
+import org.gluu.oxauth.uma.service.UmaSessionService;
+import org.gluu.oxauth.uma.service.UmaValidationService;
+import org.slf4j.Logger;
+
+import javax.inject.Inject;
+import javax.servlet.http.HttpServletRequest;
+import javax.servlet.http.HttpServletResponse;
+import javax.ws.rs.*;
+import javax.ws.rs.core.Context;
+import javax.ws.rs.core.Response;
+import java.net.URI;
+import java.util.Arrays;
+import java.util.HashMap;
+import java.util.List;
+
+import static javax.ws.rs.core.Response.Status.BAD_REQUEST;
+import static javax.ws.rs.core.Response.Status.FOUND;
+import static org.gluu.oxauth.model.uma.UmaErrorResponseType.INVALID_CLAIMS_GATHERING_SCRIPT_NAME;
+import static org.gluu.oxauth.model.uma.UmaErrorResponseType.INVALID_SESSION;
+
+/**
+ * Claims-Gathering Endpoint.
+ *
+ * @author yuriyz
+ * @version August 9, 2017
+ */
+@Path("/uma/gather_claims")
+public class UmaGatheringWS {
+
+    @Inject
+    private Logger log;
+    @Inject
+    private ErrorResponseFactory errorResponseFactory;
+    @Inject
+    private UmaValidationService validationService;
+    @Inject
+    private ExternalUmaClaimsGatheringService external;
+    @Inject
+    private UmaSessionService sessionService;
+    @Inject
+    private UmaPermissionService permissionService;
+    @Inject
+    private UmaPctService pctService;
+    @Inject
+    private AppConfiguration appConfiguration;
+    @Inject
+    private UserService userService;
+
+    public Response gatherClaims(String clientId, String ticket, String claimRedirectUri, String state, Boolean reset,
+                                 Boolean authenticationRedirect, HttpServletRequest httpRequest, HttpServletResponse httpResponse) {
+        try {
+            log.trace("gatherClaims client_id: {}, ticket: {}, claims_redirect_uri: {}, state: {}, authenticationRedirect: {}, queryString: {}",
+                    clientId, ticket, claimRedirectUri, state, authenticationRedirect, httpRequest.getQueryString());
+
+            SessionId session = sessionService.getSession(httpRequest, httpResponse);
+
+            if (authenticationRedirect != null && authenticationRedirect) { // restore parameters from session
+                log.debug("Authentication redirect, restoring parameters from session ...");
+                if (session == null) {
+                    log.error("Session is null however authentication=true. Wrong workflow! Please correct custom Glaims-Gathering Script.");
+                    throw errorResponseFactory.createWebApplicationException(BAD_REQUEST, INVALID_SESSION, "Session is null however authentication=true. Wrong workflow! Please correct custom Glaims-Gathering Script.");
+                }
+                clientId = sessionService.getClientId(session);
+                ticket = sessionService.getTicket(session);
+                claimRedirectUri = sessionService.getClaimsRedirectUri(session);
+                state = sessionService.getState(session);
+                log.debug("Restored parameters from session, clientId: {}, ticket: {}, claims_redirect_uri: {}, state: {}",
+                        clientId, ticket, claimRedirectUri, state);
+            }
+
+            validationService.validateClientAndClaimsRedirectUri(clientId, claimRedirectUri, state);
+            List<UmaPermission> permissions = validationService.validateTicketWithRedirect(ticket, claimRedirectUri, state);
+            String[] scriptNames = validationService.validatesGatheringScriptNames(getScriptNames(permissions), claimRedirectUri, state);
+
+            CustomScriptConfiguration script = external.determineScript(scriptNames);
+            if (script == null) {
+                log.error("Failed to determine claims-gathering script for names: " + Arrays.toString(scriptNames));
+                throw new UmaWebException(claimRedirectUri, errorResponseFactory, INVALID_CLAIMS_GATHERING_SCRIPT_NAME, state);
+            }
+
+            sessionService.configure(session, script.getName(), reset, permissions, clientId, claimRedirectUri, state);
+
+            UmaGatherContext context = new UmaGatherContext(script.getConfigurationAttributes(), httpRequest, session, sessionService, permissionService,
+                    pctService, new HashMap<String, String>(), userService, null, appConfiguration);
+
+            int step = sessionService.getStep(session);
+            int stepsCount = external.getStepsCount(script, context);
+
+            if (step < stepsCount) {
+                String page = external.getPageForStep(script, step, context);
+
+                context.persist();
+
+                String baseEndpoint = StringUtils.removeEnd(appConfiguration.getBaseEndpoint(), "/");
+                baseEndpoint = StringUtils.removeEnd(baseEndpoint, "restv1");
+                baseEndpoint = StringUtils.removeEnd(baseEndpoint, "/");
+
+                String fullUri = baseEndpoint + page;
+                fullUri = StringUtils.removeEnd(fullUri, ".xhtml") + ".htm";
+                log.trace("Redirecting to page: '{}', fullUri: {}", page, fullUri);
+                return Response.status(FOUND).location(new URI(fullUri)).build();
+            } else {
+                log.error("Step '{}' is more or equal to stepCount: '{}'", stepsCount);
+            }
+        } catch (Exception ex) {
+            log.error("Exception happened", ex);
+            if (ex instanceof WebApplicationException) {
+                throw (WebApplicationException) ex;
+            }
+        }
+
+        log.error("Failed to handle call to UMA Claims Gathering Endpoint.");
+        throw errorResponseFactory.createWebApplicationException(Response.Status.INTERNAL_SERVER_ERROR, UmaErrorResponseType.SERVER_ERROR, "Failed to handle call to UMA Claims Gathering Endpoint.");
+    }
+
+    private static String getScriptNames(List<UmaPermission> permissions) {
+        return permissions.get(0).getAttributes().get(UmaConstants.GATHERING_ID);
+    }
+
+    @GET
+    @Produces({UmaConstants.JSON_MEDIA_TYPE})
+    public Response getGatherClaims(
+            @QueryParam("client_id")
+                    String clientId,
+            @QueryParam("ticket")
+                    String ticket,
+            @QueryParam("claims_redirect_uri")
+                    String claimRedirectUri,
+            @QueryParam("state")
+                    String state,
+            @QueryParam("reset")
+                    Boolean reset,
+            @QueryParam("authentication")
+                    Boolean authenticationRedirect,
+            @Context HttpServletRequest httpRequest,
+            @Context HttpServletResponse httpResponse) {
+        return gatherClaims(clientId, ticket, claimRedirectUri, state, reset, authenticationRedirect, httpRequest, httpResponse);
+    }
+
+    @POST
+    @Consumes({UmaConstants.JSON_MEDIA_TYPE})
+    @Produces({UmaConstants.JSON_MEDIA_TYPE})
+    public Response postGatherClaims(
+            @FormParam("client_id")
+                    String clientId,
+            @FormParam("ticket")
+                    String ticket,
+            @FormParam("claims_redirect_uri")
+                    String claimRedirectUri,
+            @FormParam("state")
+                    String state,
+            @FormParam("reset")
+                    Boolean reset,
+            @FormParam("authentication")
+                    Boolean authenticationRedirect,
+            @Context HttpServletRequest httpRequest,
+            @Context HttpServletResponse httpResponse) {
+        return gatherClaims(clientId, ticket, claimRedirectUri, state, reset, authenticationRedirect, httpRequest, httpResponse);
+    }
+}
diff --git a/oxAuth/Server/src/main/java/org/gluu/oxauth/uma/ws/rs/UmaMetadataWS.java b/oxAuth/Server/src/main/java/org/gluu/oxauth/uma/ws/rs/UmaMetadataWS.java
new file mode 100644
index 00000000..c175c97c
--- /dev/null
+++ b/oxAuth/Server/src/main/java/org/gluu/oxauth/uma/ws/rs/UmaMetadataWS.java
@@ -0,0 +1,89 @@
+/*
+ * oxAuth is available under the MIT License (2008). See http://opensource.org/licenses/MIT for full text.
+ *
+ * Copyright (c) 2014, Gluu
+ */
+
+package org.gluu.oxauth.uma.ws.rs;
+
+import org.gluu.oxauth.model.common.GrantType;
+import org.gluu.oxauth.model.common.ResponseType;
+import org.gluu.oxauth.model.configuration.AppConfiguration;
+import org.gluu.oxauth.model.error.ErrorResponseFactory;
+import org.gluu.oxauth.model.uma.UmaConstants;
+import org.gluu.oxauth.model.uma.UmaErrorResponseType;
+import org.gluu.oxauth.model.uma.UmaMetadata;
+import org.gluu.oxauth.util.ServerUtil;
+import org.slf4j.Logger;
+
+import javax.inject.Inject;
+import javax.ws.rs.GET;
+import javax.ws.rs.Path;
+import javax.ws.rs.Produces;
+import javax.ws.rs.core.Response;
+
+/**
+ * The endpoint at which the requester can obtain UMA2 metadata.
+ */
+@Path("/uma2-configuration")
+public class UmaMetadataWS {
+
+    public static final String UMA_SCOPES_SUFFIX = "/uma/scopes";
+    public static final String UMA_CLAIMS_GATHERING_PATH = "/uma/gather_claims";
+
+    @Inject
+    private Logger log;
+
+    @Inject
+    private ErrorResponseFactory errorResponseFactory;
+
+    @Inject
+    private AppConfiguration appConfiguration;
+
+    @GET
+    @Produces({UmaConstants.JSON_MEDIA_TYPE})
+    public Response getConfiguration() {
+        try {
+            final String baseEndpointUri = appConfiguration.getBaseEndpoint();
+
+            final UmaMetadata c = new UmaMetadata();
+            c.setIssuer(appConfiguration.getIssuer());
+            c.setGrantTypesSupported(new String[]{
+                    GrantType.AUTHORIZATION_CODE.getValue(),
+                    GrantType.IMPLICIT.getValue(),
+                    GrantType.CLIENT_CREDENTIALS.getValue(),
+                    GrantType.OXAUTH_UMA_TICKET.getValue()
+            });
+            c.setResponseTypesSupported(new String[]{
+                    ResponseType.CODE.getValue(), ResponseType.ID_TOKEN.getValue(), ResponseType.TOKEN.getValue()
+            });
+            c.setTokenEndpointAuthMethodsSupported(appConfiguration.getTokenEndpointAuthMethodsSupported().toArray(new String[appConfiguration.getTokenEndpointAuthMethodsSupported().size()]));
+            c.setTokenEndpointAuthSigningAlgValuesSupported(appConfiguration.getTokenEndpointAuthSigningAlgValuesSupported().toArray(new String[appConfiguration.getTokenEndpointAuthSigningAlgValuesSupported().size()]));
+            c.setUiLocalesSupported(appConfiguration.getUiLocalesSupported().toArray(new String[appConfiguration.getUiLocalesSupported().size()]));
+            c.setOpTosUri(appConfiguration.getOpTosUri());
+            c.setOpPolicyUri(appConfiguration.getOpPolicyUri());
+            c.setJwksUri(appConfiguration.getJwksUri());
+            c.setServiceDocumentation(appConfiguration.getServiceDocumentation());
+
+            c.setUmaProfilesSupported(new String[0]);
+            c.setRegistrationEndpoint(appConfiguration.getRegistrationEndpoint());
+            c.setTokenEndpoint(appConfiguration.getTokenEndpoint());
+            c.setAuthorizationEndpoint(appConfiguration.getAuthorizationEndpoint());
+            c.setIntrospectionEndpoint(baseEndpointUri + "/rpt/status");
+            c.setResourceRegistrationEndpoint(baseEndpointUri + "/host/rsrc/resource_set");
+            c.setPermissionEndpoint(baseEndpointUri + "/host/rsrc_pr");
+            c.setScopeEndpoint(baseEndpointUri + UMA_SCOPES_SUFFIX);
+            c.setClaimsInteractionEndpoint(baseEndpointUri + UMA_CLAIMS_GATHERING_PATH);
+
+            // convert manually to avoid possible conflicts between resteasy providers, e.g. jettison, jackson
+            final String entity = ServerUtil.asPrettyJson(c);
+            log.trace("Uma metadata: {}", entity);
+
+            return Response.ok(entity).build();
+        } catch (Throwable ex) {
+            log.error(ex.getMessage(), ex);
+            throw errorResponseFactory.createWebApplicationException(Response.Status.INTERNAL_SERVER_ERROR, UmaErrorResponseType.SERVER_ERROR, "Internal error.");
+        }
+    }
+
+}
diff --git a/oxAuth/Server/src/main/java/org/gluu/oxauth/uma/ws/rs/UmaPermissionRegistrationWS.java b/oxAuth/Server/src/main/java/org/gluu/oxauth/uma/ws/rs/UmaPermissionRegistrationWS.java
new file mode 100644
index 00000000..b8e4927b
--- /dev/null
+++ b/oxAuth/Server/src/main/java/org/gluu/oxauth/uma/ws/rs/UmaPermissionRegistrationWS.java
@@ -0,0 +1,117 @@
+/*
+ * oxAuth is available under the MIT License (2008). See http://opensource.org/licenses/MIT for full text.
+ *
+ * Copyright (c) 2014, Gluu
+ */
+
+package org.gluu.oxauth.uma.ws.rs;
+
+import com.fasterxml.jackson.databind.ObjectMapper;
+import com.fasterxml.jackson.databind.SerializationFeature;
+import org.gluu.oxauth.model.common.AuthorizationGrant;
+import org.gluu.oxauth.model.error.ErrorResponseFactory;
+import org.gluu.oxauth.model.uma.PermissionTicket;
+import org.gluu.oxauth.model.uma.UmaConstants;
+import org.gluu.oxauth.model.uma.UmaErrorResponseType;
+import org.gluu.oxauth.model.uma.UmaPermissionList;
+import org.gluu.oxauth.service.token.TokenService;
+import org.gluu.oxauth.uma.service.UmaPermissionService;
+import org.gluu.oxauth.uma.service.UmaValidationService;
+import org.gluu.oxauth.util.ServerUtil;
+import org.slf4j.Logger;
+
+import javax.inject.Inject;
+import javax.servlet.http.HttpServletRequest;
+import javax.ws.rs.*;
+import javax.ws.rs.core.Context;
+import javax.ws.rs.core.MediaType;
+import javax.ws.rs.core.Response;
+import java.io.IOException;
+
+/**
+ * The endpoint at which the host registers permissions that it anticipates a
+ * requester will shortly be asking for from the AM. This AM's endpoint is part
+ * of resource set registration API.
+ * <p>
+ * In response to receiving an access request accompanied by an RPT that is
+ * invalid or has insufficient authorization data, the host SHOULD register a
+ * permission with the AM that would be sufficient for the type of access
+ * sought. The AM returns a permission ticket for the host to give to the
+ * requester in its response.
+ *
+ * @author Yuriy Zabrovarnyy
+ */
+@Path("/host/rsrc_pr")
+public class UmaPermissionRegistrationWS {
+
+    @Inject
+    private Logger log;
+
+    @Inject
+    private TokenService tokenService;
+
+    @Inject
+    private UmaPermissionService permissionService;
+
+    @Inject
+    private ErrorResponseFactory errorResponseFactory;
+
+    @Inject
+    private UmaValidationService umaValidationService;
+
+    @POST
+    @Consumes({UmaConstants.JSON_MEDIA_TYPE})
+    @Produces({UmaConstants.JSON_MEDIA_TYPE})
+    public Response registerPermission(@Context HttpServletRequest request,
+                                       @HeaderParam("Authorization") String authorization,
+                                       String requestAsString) {
+        try {
+            final AuthorizationGrant authorizationGrant = umaValidationService.assertHasProtectionScope(authorization);
+
+            // UMA2 spec defined 2 possible requests, single permission or list of permission. So here we parse manually
+            UmaPermissionList permissionList = parseRequest(requestAsString);
+            umaValidationService.validatePermissions(permissionList, authorizationGrant.getClient());
+
+            String ticket = permissionService.addPermission(permissionList, tokenService.getClientDn(authorization));
+
+            return Response.status(Response.Status.CREATED).
+                    type(MediaType.APPLICATION_JSON_TYPE).
+                    entity(new PermissionTicket(ticket)).
+                    build();
+        } catch (Exception ex) {
+            if (ex instanceof WebApplicationException) {
+                throw (WebApplicationException) ex;
+            }
+
+            log.error("Exception happened", ex);
+            throw errorResponseFactory.createWebApplicationException(Response.Status.INTERNAL_SERVER_ERROR, UmaErrorResponseType.SERVER_ERROR, "Internal error.");
+        }
+    }
+
+    /**
+     * UMA2 spec (edit 4) defined to possible requests, single permission or list of permission. So here we parse manually
+     *
+     * @param requestAsString request as string
+     * @return uma permission list
+     */
+    private UmaPermissionList parseRequest(String requestAsString) {
+        final ObjectMapper mapper = ServerUtil.createJsonMapper().configure(SerializationFeature.WRAP_ROOT_VALUE, false);
+        try {
+            org.gluu.oxauth.model.uma.UmaPermission permission = mapper.readValue(requestAsString, org.gluu.oxauth.model.uma.UmaPermission.class);
+            return new UmaPermissionList().addPermission(permission);
+        } catch (IOException e) {
+            // ignore
+        }
+
+        try {
+            UmaPermissionList permissions = mapper.readValue(requestAsString, org.gluu.oxauth.model.uma.UmaPermissionList.class);
+            if (!permissions.isEmpty()) {
+                return permissions;
+            }
+            log.error("Permission list is empty.");
+        } catch (IOException e) {
+            log.error("Failed to parse uma permission request" + requestAsString, e);
+        }
+        throw errorResponseFactory.createWebApplicationException(Response.Status.BAD_REQUEST, UmaErrorResponseType.INVALID_PERMISSION_REQUEST, "Failed to parse uma permission request.");
+    }
+}
diff --git a/oxAuth/Server/src/main/java/org/gluu/oxauth/uma/ws/rs/UmaResourceRegistrationWS.java b/oxAuth/Server/src/main/java/org/gluu/oxauth/uma/ws/rs/UmaResourceRegistrationWS.java
new file mode 100644
index 00000000..ef4d45f2
--- /dev/null
+++ b/oxAuth/Server/src/main/java/org/gluu/oxauth/uma/ws/rs/UmaResourceRegistrationWS.java
@@ -0,0 +1,345 @@
+/*
+ * oxAuth is available under the MIT License (2008). See http://opensource.org/licenses/MIT for full text.
+ *
+ * Copyright (c) 2014, Gluu
+ */
+
+package org.gluu.oxauth.uma.ws.rs;
+
+import org.apache.commons.lang.StringUtils;
+import org.gluu.oxauth.model.common.AuthorizationGrant;
+import org.gluu.oxauth.model.configuration.AppConfiguration;
+import org.gluu.oxauth.model.error.ErrorResponseFactory;
+import org.gluu.oxauth.model.uma.*;
+import org.gluu.oxauth.uma.service.UmaResourceService;
+import org.gluu.oxauth.uma.service.UmaScopeService;
+import org.gluu.oxauth.uma.service.UmaValidationService;
+import org.gluu.oxauth.util.ServerUtil;
+import org.slf4j.Logger;
+
+import javax.inject.Inject;
+import javax.ws.rs.*;
+import javax.ws.rs.core.MediaType;
+import javax.ws.rs.core.Response;
+import javax.ws.rs.core.Response.ResponseBuilder;
+import java.io.IOException;
+import java.util.*;
+
+/**
+ * The API available at the resource registration endpoint enables the resource server to put resources under
+ * the protection of an authorization server on behalf of the resource owner and manage them over time.
+ * Protection of a resource at the authorization server begins on successful registration and ends on successful deregistration.
+ * <p/>
+ * The resource server uses a RESTful API at the authorization server's resource registration endpoint
+ * to create, read, update, and delete resource descriptions, along with retrieving lists of such descriptions.
+ * The descriptions consist of JSON documents that are maintained as web resources at the authorization server.
+ * (Note carefully the similar but distinct senses in which the word "resource" is used in this section.)
+ *
+ * @author Yuriy Zabrovarnyy
+ * @author Yuriy Movchan
+ * Date: 02/12/2015
+ */
+@Path("/host/rsrc/resource_set")
+public class UmaResourceRegistrationWS {
+
+    private static final int NOT_ALLOWED_STATUS = 405;
+
+    private static final int DEFAULT_RESOURCE_LIFETIME = 2592000; // 1 month
+
+    @Inject
+    private Logger log;
+
+    @Inject
+    private UmaValidationService umaValidationService;
+
+    @Inject
+    private UmaResourceService resourceService;
+
+    @Inject
+    private ErrorResponseFactory errorResponseFactory;
+
+    @Inject
+    private UmaScopeService umaScopeService;
+
+    @Inject
+    private AppConfiguration appConfiguration;
+
+    @POST
+    @Consumes({UmaConstants.JSON_MEDIA_TYPE})
+    @Produces({UmaConstants.JSON_MEDIA_TYPE})
+    public Response createResource(
+            @HeaderParam("Authorization")
+                    String authorization,
+            UmaResource resource) {
+        try {
+            String id = UUID.randomUUID().toString();
+            log.trace("Try to create resource, id: {}", id);
+
+            return putResourceImpl(Response.Status.CREATED, authorization, id, resource);
+        } catch (Exception ex) {
+            log.error("Exception during resource creation", ex);
+
+            if (ex instanceof WebApplicationException) {
+                throw (WebApplicationException) ex;
+            }
+
+            throw errorResponseFactory.createWebApplicationException(Response.Status.INTERNAL_SERVER_ERROR, UmaErrorResponseType.SERVER_ERROR, ex.getMessage());
+        }
+    }
+
+    @PUT
+    @Path("{rsid}")
+    @Consumes({UmaConstants.JSON_MEDIA_TYPE})
+    @Produces({UmaConstants.JSON_MEDIA_TYPE})
+    public Response updateResource(@HeaderParam("Authorization") String authorization,
+                                   @PathParam("rsid") String rsid,
+                                   UmaResource resource) {
+        try {
+            return putResourceImpl(Response.Status.OK, authorization, rsid, resource);
+        } catch (Exception ex) {
+            log.error("Exception during resource update, rsId: " + rsid + ", message: " + ex.getMessage(), ex);
+
+            if (ex instanceof WebApplicationException) {
+                throw (WebApplicationException) ex;
+            }
+
+            throw errorResponseFactory.createWebApplicationException(Response.Status.INTERNAL_SERVER_ERROR, UmaErrorResponseType.SERVER_ERROR, ex.getMessage());
+        }
+    }
+
+    @GET
+    @Path("{rsid}")
+    @Produces({UmaConstants.JSON_MEDIA_TYPE})
+    public Response getResource(
+            @HeaderParam("Authorization")
+                    String authorization,
+            @PathParam("rsid")
+                    String rsid) {
+        try {
+            final AuthorizationGrant authorizationGrant = umaValidationService.assertHasProtectionScope(authorization);
+            umaValidationService.validateRestrictedByClient(authorizationGrant.getClientDn(), rsid);
+            log.debug("Getting resource description: '{}'", rsid);
+
+            final org.gluu.oxauth.model.uma.persistence.UmaResource ldapResource = resourceService.getResourceById(rsid);
+
+            final UmaResourceWithId response = new UmaResourceWithId();
+
+            response.setId(ldapResource.getId());
+            response.setName(ldapResource.getName());
+            response.setDescription(ldapResource.getDescription());
+            response.setIconUri(ldapResource.getIconUri());
+            response.setScopes(umaScopeService.getScopeIdsByDns(ldapResource.getScopes()));
+            response.setScopeExpression(ldapResource.getScopeExpression());
+            response.setType(ldapResource.getType());
+            response.setIat(ServerUtil.dateToSeconds(ldapResource.getCreationDate()));
+            response.setExp(ServerUtil.dateToSeconds(ldapResource.getExpirationDate()));
+
+            final ResponseBuilder builder = Response.ok();
+            builder.entity(ServerUtil.asJson(response)); // convert manually to avoid possible conflicts between resteasy providers, e.g. jettison, jackson
+
+            return builder.build();
+        } catch (Exception ex) {
+            log.error("Exception happened", ex);
+            if (ex instanceof WebApplicationException) {
+                throw (WebApplicationException) ex;
+            }
+
+            throw errorResponseFactory.createWebApplicationException(Response.Status.INTERNAL_SERVER_ERROR, UmaErrorResponseType.SERVER_ERROR, ex.getMessage());
+        }
+    }
+
+    /**
+     * Gets resource set lists.
+     * ATTENTION: "scope" is parameter added by gluu to have additional filtering.
+     * There is no such parameter in UMA specification.
+     *
+     * @param authorization authorization
+     * @param scope         scope of resource set for additional filtering, can blank string.
+     * @return resource set ids.
+     */
+    @GET
+    @Produces({UmaConstants.JSON_MEDIA_TYPE})
+    public List<String> getResourceList(
+            @HeaderParam("Authorization")
+                    String authorization,
+            @QueryParam("scope")
+                    String scope) {
+        try {
+            log.trace("Getting list of resource descriptions.");
+
+            final AuthorizationGrant authorizationGrant = umaValidationService.assertHasProtectionScope(authorization);
+            final String clientDn = authorizationGrant.getClientDn();
+
+            final List<org.gluu.oxauth.model.uma.persistence.UmaResource> ldapResources = resourceService
+                    .getResourcesByAssociatedClient(clientDn);
+
+            final List<String> result = new ArrayList<String>(ldapResources.size());
+            for (org.gluu.oxauth.model.uma.persistence.UmaResource ldapResource : ldapResources) {
+
+                // if scope parameter is not null then filter by it, otherwise just add to result
+                if (StringUtils.isNotBlank(scope)) {
+                    final List<String> scopeUrlsByDns = umaScopeService.getScopeIdsByDns(ldapResource.getScopes());
+                    if (scopeUrlsByDns != null && scopeUrlsByDns.contains(scope)) {
+                        result.add(ldapResource.getId());
+                    }
+                } else {
+                    result.add(ldapResource.getId());
+                }
+            }
+
+            return result;
+
+        } catch (Exception ex) {
+            log.error("Exception happened on getResourceList()", ex);
+            if (ex instanceof WebApplicationException) {
+                throw (WebApplicationException) ex;
+            } else {
+                throw errorResponseFactory.createWebApplicationException(Response.Status.INTERNAL_SERVER_ERROR, UmaErrorResponseType.SERVER_ERROR, ex.getMessage());
+            }
+        }
+    }
+
+    @DELETE
+    @Path("{rsid}")
+    public Response deleteResource(
+            @HeaderParam("Authorization")
+                    String authorization,
+            @PathParam("rsid")
+                    String rsid) {
+        try {
+            log.debug("Deleting resource descriptions'");
+
+            final AuthorizationGrant authorizationGrant = umaValidationService.assertHasProtectionScope(authorization);
+            umaValidationService.validateRestrictedByClient(authorizationGrant.getClientDn(), rsid);
+            resourceService.remove(rsid);
+
+            return Response.status(Response.Status.NO_CONTENT).build();
+        } catch (Exception ex) {
+            log.error("Error on DELETE Resource - " + ex.getMessage(), ex);
+
+            if (ex instanceof WebApplicationException) {
+                throw (WebApplicationException) ex;
+            }
+
+            throw errorResponseFactory.createWebApplicationException(Response.Status.INTERNAL_SERVER_ERROR, UmaErrorResponseType.SERVER_ERROR, ex.getMessage());
+        }
+    }
+
+    private Response putResourceImpl(Response.Status status, String authorization, String rsid, UmaResource resource) throws IOException {
+        log.trace("putResourceImpl, rsid: {}, status:", rsid, status.name());
+
+        AuthorizationGrant authorizationGrant = umaValidationService.assertHasProtectionScope(authorization);
+        umaValidationService.validateResource(resource);
+
+        String userDn = authorizationGrant.getUserDn();
+        String clientDn = authorizationGrant.getClientDn();
+
+        org.gluu.oxauth.model.uma.persistence.UmaResource ldapUpdatedResource;
+
+        if (status == Response.Status.CREATED) {
+            ldapUpdatedResource = addResource(rsid, resource, userDn, clientDn);
+        } else {
+            umaValidationService.validateRestrictedByClient(clientDn, rsid);
+            ldapUpdatedResource = updateResource(rsid, resource);
+        }
+
+        UmaResourceResponse response = new UmaResourceResponse();
+        response.setId(ldapUpdatedResource.getId());
+
+        return Response.status(status).
+                type(MediaType.APPLICATION_JSON_TYPE).
+                entity(ServerUtil.asJson(response)).
+                build();
+    }
+
+    private org.gluu.oxauth.model.uma.persistence.UmaResource addResource(String rsid, UmaResource resource, String userDn, String clientDn) {
+        log.debug("Adding new resource: '{}'", rsid);
+
+        final String resourceDn = resourceService.getDnForResource(rsid);
+        final List<String> scopeDNs = umaScopeService.getScopeDNsByIdsAndAddToLdapIfNeeded(resource.getScopes());
+
+        final Calendar calendar = Calendar.getInstance();
+        Date iat = calendar.getTime();
+        Date exp = getExpirationDate(calendar);
+
+        if (resource.getIat() != null && resource.getIat() > 0) {
+            iat = new Date(resource.getIat() * 1000L);
+        }
+        if (resource.getExp() != null && resource.getExp() > 0) {
+            exp = new Date(resource.getExp() * 1000L);
+        }
+
+        final org.gluu.oxauth.model.uma.persistence.UmaResource ldapResource = new org.gluu.oxauth.model.uma.persistence.UmaResource();
+
+        ldapResource.setName(resource.getName());
+        ldapResource.setDescription(resource.getDescription());
+        ldapResource.setIconUri(resource.getIconUri());
+        ldapResource.setId(rsid);
+        ldapResource.setRev(1);
+        ldapResource.setCreator(userDn);
+        ldapResource.setDn(resourceDn);
+        ldapResource.setScopes(scopeDNs);
+        ldapResource.setScopeExpression(resource.getScopeExpression());
+        ldapResource.setClients(new ArrayList<String>(Collections.singletonList(clientDn)));
+        ldapResource.setType(resource.getType());
+        ldapResource.setCreationDate(iat);
+        ldapResource.setExpirationDate(exp);
+        ldapResource.setTtl(appConfiguration.getUmaResourceLifetime());
+
+        resourceService.addResource(ldapResource);
+
+        return ldapResource;
+    }
+
+    private Date getExpirationDate(Calendar creationCalender) {
+        int lifetime = appConfiguration.getUmaResourceLifetime();
+        if (lifetime <= 0) {
+            lifetime = DEFAULT_RESOURCE_LIFETIME;
+        }
+        creationCalender.add(Calendar.SECOND, lifetime);
+        return creationCalender.getTime();
+    }
+
+    private org.gluu.oxauth.model.uma.persistence.UmaResource updateResource(String rsid, UmaResource resource) {
+        log.debug("Updating resource description: '{}'.", rsid);
+
+        org.gluu.oxauth.model.uma.persistence.UmaResource ldapResource = resourceService.getResourceById(rsid);
+        if (ldapResource == null) {
+            return throwNotFoundException(rsid);
+        }
+
+        ldapResource.setName(resource.getName());
+        ldapResource.setDescription(resource.getDescription());
+        ldapResource.setIconUri(resource.getIconUri());
+        ldapResource.setScopes(umaScopeService.getScopeDNsByIdsAndAddToLdapIfNeeded(resource.getScopes()));
+        ldapResource.setScopeExpression(resource.getScopeExpression());
+        ldapResource.setRev(ldapResource.getRev() + 1);
+        ldapResource.setType(resource.getType());
+        if (resource.getExp() != null && resource.getExp() > 0) {
+            ldapResource.setExpirationDate(new Date(resource.getExp() * 1000L));
+            ldapResource.setTtl(appConfiguration.getUmaResourceLifetime());
+        }
+
+        resourceService.updateResource(ldapResource);
+
+        return ldapResource;
+    }
+
+    private <T> T throwNotFoundException(String rsid) {
+        log.error("Specified resource description doesn't exist, id: " + rsid);
+        throw errorResponseFactory.createWebApplicationException(Response.Status.NOT_FOUND, UmaErrorResponseType.NOT_FOUND, "Resource does not exists.");
+    }
+
+    @HEAD
+    public Response unsupportedHeadMethod() {
+        log.error("HEAD method is not allowed");
+        throw new WebApplicationException(Response.status(NOT_ALLOWED_STATUS).entity("HEAD Method Not Allowed").build());
+    }
+
+    @OPTIONS
+    public Response unsupportedOptionsMethod() {
+        log.error("OPTIONS method is not allowed");
+        throw new WebApplicationException(Response.status(NOT_ALLOWED_STATUS).entity("OPTIONS Method Not Allowed").build());
+    }
+
+}
diff --git a/oxAuth/Server/src/main/java/org/gluu/oxauth/uma/ws/rs/UmaRptIntrospectionWS.java b/oxAuth/Server/src/main/java/org/gluu/oxauth/uma/ws/rs/UmaRptIntrospectionWS.java
new file mode 100644
index 00000000..37eb8c31
--- /dev/null
+++ b/oxAuth/Server/src/main/java/org/gluu/oxauth/uma/ws/rs/UmaRptIntrospectionWS.java
@@ -0,0 +1,196 @@
+/*
+ * oxAuth is available under the MIT License (2008). See http://opensource.org/licenses/MIT for full text.
+ *
+ * Copyright (c) 2014, Gluu
+ */
+
+package org.gluu.oxauth.uma.ws.rs;
+
+import org.gluu.oxauth.model.error.ErrorResponseFactory;
+import org.gluu.oxauth.model.uma.RptIntrospectionResponse;
+import org.gluu.oxauth.model.uma.UmaConstants;
+import org.gluu.oxauth.model.uma.UmaErrorResponseType;
+import org.gluu.oxauth.model.uma.persistence.UmaPermission;
+import org.gluu.oxauth.service.ClientService;
+import org.gluu.oxauth.service.external.ExternalUmaRptClaimsService;
+import org.gluu.oxauth.service.external.context.ExternalUmaRptClaimsContext;
+import org.gluu.oxauth.uma.authorization.UmaPCT;
+import org.gluu.oxauth.uma.authorization.UmaRPT;
+import org.gluu.oxauth.uma.service.UmaPctService;
+import org.gluu.oxauth.uma.service.UmaRptService;
+import org.gluu.oxauth.uma.service.UmaScopeService;
+import org.gluu.oxauth.uma.service.UmaValidationService;
+import org.gluu.oxauth.util.ServerUtil;
+import org.gluu.util.StringHelper;
+import org.json.JSONObject;
+import org.slf4j.Logger;
+
+import javax.inject.Inject;
+import javax.servlet.http.HttpServletRequest;
+import javax.servlet.http.HttpServletResponse;
+import javax.ws.rs.*;
+import javax.ws.rs.core.Context;
+import javax.ws.rs.core.MediaType;
+import javax.ws.rs.core.Response;
+import java.util.ArrayList;
+import java.util.List;
+
+/**
+ * The endpoint at which the host requests the status of an RPT presented to it by a requester.
+ * The endpoint is RPT introspection profile implementation defined by
+ * http://docs.kantarainitiative.org/uma/draft-uma-core.html#uma-bearer-token-profile
+ *
+ * @author Yuriy Zabrovarnyy
+ */
+@Path("/rpt/status")
+public class UmaRptIntrospectionWS {
+
+    @Inject
+    private Logger log;
+    @Inject
+    private ErrorResponseFactory errorResponseFactory;
+    @Inject
+    private UmaRptService rptService;
+    @Inject
+    private UmaValidationService umaValidationService;
+    @Inject
+    private UmaScopeService umaScopeService;
+    @Inject
+    private UmaPctService pctService;
+    @Inject
+    private ExternalUmaRptClaimsService externalUmaRptClaimsService;
+    @Inject
+    private ClientService clientService;
+
+    @GET
+    @Produces(MediaType.APPLICATION_JSON)
+    public Response introspectGet(@HeaderParam("Authorization") String authorization,
+                                  @QueryParam("token") String token,
+                                  @QueryParam("token_type_hint") String tokenTypeHint,
+                                  @Context HttpServletRequest httpRequest,
+                                  @Context HttpServletResponse httpResponse) {
+        return introspect(authorization, token, tokenTypeHint, httpRequest, httpResponse);
+    }
+
+    @POST
+    @Produces(MediaType.APPLICATION_JSON)
+    public Response introspectPost(@HeaderParam("Authorization") String authorization,
+                                   @FormParam("token") String token,
+                                   @FormParam("token_type_hint") String tokenTypeHint,
+                                   @Context HttpServletRequest httpRequest,
+                                   @Context HttpServletResponse httpResponse) {
+        return introspect(authorization, token, tokenTypeHint, httpRequest, httpResponse);
+    }
+
+    private Response introspect(String authorization, String token, String tokenTypeHint, HttpServletRequest httpRequest, HttpServletResponse httpResponse) {
+        try {
+            umaValidationService.assertHasProtectionScope(authorization);
+
+            final UmaRPT rpt = rptService.getRPTByCode(token);
+
+            if (!isValid(rpt)) {
+                return Response.status(Response.Status.OK).
+                        entity(new RptIntrospectionResponse(false)).
+                        cacheControl(ServerUtil.cacheControl(true)).
+                        build();
+            }
+
+            final List<org.gluu.oxauth.model.uma.UmaPermission> permissions = buildStatusResponsePermissions(rpt);
+
+            // active status
+            final RptIntrospectionResponse statusResponse = new RptIntrospectionResponse();
+            statusResponse.setActive(true);
+            statusResponse.setExpiresAt(ServerUtil.dateToSeconds(rpt.getExpirationDate()));
+            statusResponse.setIssuedAt(ServerUtil.dateToSeconds(rpt.getCreationDate()));
+            statusResponse.setPermissions(permissions);
+            statusResponse.setClientId(rpt.getClientId());
+            statusResponse.setAud(rpt.getClientId());
+            statusResponse.setSub(rpt.getUserId());
+
+            final List<UmaPermission> rptPermissions = rptService.getRptPermissions(rpt);
+            if (!rptPermissions.isEmpty()) {
+                UmaPermission permission = rptPermissions.iterator().next();
+                String pctCode = permission.getAttributes().get(UmaPermission.PCT);
+                if (StringHelper.isNotEmpty(pctCode)) {
+                    UmaPCT pct = pctService.getByCode(pctCode);
+                    if (pct != null) {
+                        statusResponse.setPctClaims(pct.getClaims().toMap());
+                    } else {
+                        log.error("Failed to find PCT with code: " + pctCode + " which is taken from permission object: " + permission.getDn());
+                    }
+                } else {
+                    log.trace("PCT code is blank for RPT: " + rpt.getCode());
+                }
+            }
+
+            JSONObject rptAsJson = new JSONObject(ServerUtil.asJson(statusResponse));
+
+            ExternalUmaRptClaimsContext context = new ExternalUmaRptClaimsContext(clientService.getClient(rpt.getClientId()), httpRequest, httpResponse);
+            if (externalUmaRptClaimsService.externalModify(rptAsJson, context)) {
+                log.trace("Successfully run external RPT Claims script associated with {}", rpt.getClientId());
+            } else {
+                rptAsJson = new JSONObject(ServerUtil.asJson(statusResponse));
+                log.trace("Canceled changes made by external RPT Claims script since method returned `false`.");
+            }
+
+            return Response.status(Response.Status.OK)
+                    .entity(rptAsJson.toString())
+                    .type(MediaType.APPLICATION_JSON_TYPE)
+                    .cacheControl(ServerUtil.cacheControl(true))
+                    .build();
+        } catch (Exception ex) {
+            log.error("Exception happened", ex);
+            if (ex instanceof WebApplicationException) {
+                throw (WebApplicationException) ex;
+            }
+
+            throw errorResponseFactory.createWebApplicationException(Response.Status.INTERNAL_SERVER_ERROR, UmaErrorResponseType.SERVER_ERROR, "Internal error.");
+        }
+    }
+
+    private boolean isValid(UmaRPT p_rpt) {
+        if (p_rpt != null) {
+            p_rpt.checkExpired();
+            return p_rpt.isValid();
+        }
+        return false;
+    }
+
+    private boolean isValid(UmaPermission permission) {
+        if (permission != null) {
+            permission.checkExpired();
+            return permission.isValid();
+        }
+        return false;
+    }
+
+    private List<org.gluu.oxauth.model.uma.UmaPermission> buildStatusResponsePermissions(UmaRPT rpt) {
+        final List<org.gluu.oxauth.model.uma.UmaPermission> result = new ArrayList<org.gluu.oxauth.model.uma.UmaPermission>();
+        if (rpt != null) {
+            final List<UmaPermission> rptPermissions = rptService.getRptPermissions(rpt);
+            if (rptPermissions != null && !rptPermissions.isEmpty()) {
+                for (UmaPermission permission : rptPermissions) {
+                    if (isValid(permission)) {
+                        final org.gluu.oxauth.model.uma.UmaPermission toAdd = ServerUtil.convert(permission, umaScopeService);
+                        if (toAdd != null) {
+                            result.add(toAdd);
+                        }
+                    } else {
+                        log.debug("Ignore permission, skip it in response because permission is not valid. Permission dn: {}, rpt dn: {}",
+                                permission.getDn(), rpt.getDn());
+                    }
+                }
+            }
+        }
+        return result;
+    }
+
+    @GET
+    @Consumes({UmaConstants.JSON_MEDIA_TYPE})
+    @Produces({UmaConstants.JSON_MEDIA_TYPE})
+    public Response requestRptStatusGet(@HeaderParam("Authorization") String authorization,
+                                        @FormParam("token") String rpt,
+                                        @FormParam("token_type_hint") String tokenTypeHint) {
+        throw new WebApplicationException(Response.status(405).type(MediaType.APPLICATION_JSON_TYPE).entity("Introspection of RPT is not allowed by GET HTTP method.").build());
+    }
+}
diff --git a/oxAuth/Server/src/main/java/org/gluu/oxauth/uma/ws/rs/UmaScopeIconWS.java b/oxAuth/Server/src/main/java/org/gluu/oxauth/uma/ws/rs/UmaScopeIconWS.java
new file mode 100644
index 00000000..c95f29c2
--- /dev/null
+++ b/oxAuth/Server/src/main/java/org/gluu/oxauth/uma/ws/rs/UmaScopeIconWS.java
@@ -0,0 +1,60 @@
+/*
+ * oxAuth is available under the MIT License (2008). See http://opensource.org/licenses/MIT for full text.
+ *
+ * Copyright (c) 2014, Gluu
+ */
+
+package org.gluu.oxauth.uma.ws.rs;
+
+import org.apache.commons.lang.StringUtils;
+import org.gluu.oxauth.model.error.ErrorResponseFactory;
+import org.gluu.oxauth.model.uma.UmaConstants;
+import org.gluu.oxauth.model.uma.UmaErrorResponseType;
+import org.gluu.oxauth.uma.service.UmaScopeService;
+import org.oxauth.persistence.model.Scope;
+import org.slf4j.Logger;
+
+import javax.inject.Inject;
+import javax.ws.rs.GET;
+import javax.ws.rs.Path;
+import javax.ws.rs.PathParam;
+import javax.ws.rs.Produces;
+import javax.ws.rs.core.Response;
+import java.net.URI;
+
+/**
+ * @author Yuriy Zabrovarnyy
+ * @version 0.9, 02/05/2013
+ */
+
+@Path("/uma/scopes/icons")
+public class UmaScopeIconWS {
+
+    @Inject
+    private Logger log;
+
+    @Inject
+    private ErrorResponseFactory errorResponseFactory;
+
+    @Inject
+    private UmaScopeService umaScopeService;
+
+    @GET
+    @Path("{id}")
+    @Produces({UmaConstants.JSON_MEDIA_TYPE})
+    public Response getScopeDescription(@PathParam("id") String id) {
+        log.trace("UMA - get scope's icon : id: {}", id);
+        try {
+            if (StringUtils.isNotBlank(id)) {
+                final Scope scope = umaScopeService.getScope(id);
+                if (scope != null && StringUtils.isNotBlank(scope.getIconUrl())) {
+                    return Response.temporaryRedirect(new URI(scope.getIconUrl())).build();
+                }
+            }
+        } catch (Exception e) {
+            log.error(e.getMessage(), e);
+            throw errorResponseFactory.createWebApplicationException(Response.Status.INTERNAL_SERVER_ERROR, UmaErrorResponseType.SERVER_ERROR, "Internal error.");
+        }
+        throw errorResponseFactory.createWebApplicationException(Response.Status.NOT_FOUND, UmaErrorResponseType.NOT_FOUND, "Scope not found.");
+    }
+}
diff --git a/oxAuth/Server/src/main/java/org/gluu/oxauth/uma/ws/rs/UmaScopeWS.java b/oxAuth/Server/src/main/java/org/gluu/oxauth/uma/ws/rs/UmaScopeWS.java
new file mode 100644
index 00000000..b78f633d
--- /dev/null
+++ b/oxAuth/Server/src/main/java/org/gluu/oxauth/uma/ws/rs/UmaScopeWS.java
@@ -0,0 +1,64 @@
+/*
+ * oxAuth is available under the MIT License (2008). See http://opensource.org/licenses/MIT for full text.
+ *
+ * Copyright (c) 2014, Gluu
+ */
+
+package org.gluu.oxauth.uma.ws.rs;
+
+import org.apache.commons.lang.StringUtils;
+import org.gluu.oxauth.model.error.ErrorResponseFactory;
+import org.gluu.oxauth.model.uma.UmaConstants;
+import org.gluu.oxauth.model.uma.UmaErrorResponseType;
+import org.gluu.oxauth.model.uma.UmaScopeDescription;
+import org.gluu.oxauth.uma.service.UmaScopeService;
+import org.gluu.oxauth.util.ServerUtil;
+import org.oxauth.persistence.model.Scope;
+import org.slf4j.Logger;
+
+import javax.inject.Inject;
+import javax.ws.rs.GET;
+import javax.ws.rs.Path;
+import javax.ws.rs.PathParam;
+import javax.ws.rs.Produces;
+import javax.ws.rs.core.Response;
+
+/**
+ * @author Yuriy Zabrovarnyy
+ * @version 0.9, 22/04/2013
+ */
+@Path("/uma/scopes")
+public class UmaScopeWS {
+
+    @Inject
+    private Logger log;
+
+    @Inject
+    private ErrorResponseFactory errorResponseFactory;
+
+    @Inject
+    private UmaScopeService umaScopeService;
+
+    @GET
+    @Path("{id}")
+    @Produces({UmaConstants.JSON_MEDIA_TYPE})
+    public Response getScopeDescription(@PathParam("id") String id) {
+        log.trace("UMA - get scope description: id: {}", id);
+        try {
+            if (StringUtils.isNotBlank(id)) {
+                final Scope scope = umaScopeService.getScope(id);
+                if (scope != null) {
+                    final UmaScopeDescription jsonScope = new UmaScopeDescription();
+                    jsonScope.setIconUri(scope.getIconUrl());
+                    jsonScope.setName(scope.getId());
+                    jsonScope.setDescription(scope.getDescription());
+                    return Response.status(Response.Status.OK).entity(ServerUtil.asJson(jsonScope)).build();
+                }
+            }
+        } catch (Exception e) {
+            log.error(e.getMessage(), e);
+            throw errorResponseFactory.createWebApplicationException(Response.Status.INTERNAL_SERVER_ERROR, UmaErrorResponseType.SERVER_ERROR, "Internal error.");
+        }
+        throw errorResponseFactory.createWebApplicationException(Response.Status.NOT_FOUND, UmaErrorResponseType.NOT_FOUND, "Not found.");
+    }
+}
diff --git a/oxAuth/Server/src/main/java/org/gluu/oxauth/userinfo/ws/rs/UserInfoRestWebService.java b/oxAuth/Server/src/main/java/org/gluu/oxauth/userinfo/ws/rs/UserInfoRestWebService.java
new file mode 100644
index 00000000..abf50fe1
--- /dev/null
+++ b/oxAuth/Server/src/main/java/org/gluu/oxauth/userinfo/ws/rs/UserInfoRestWebService.java
@@ -0,0 +1,41 @@
+/*
+ * oxAuth is available under the MIT License (2008). See http://opensource.org/licenses/MIT for full text.
+ *
+ * Copyright (c) 2014, Gluu
+ */
+
+package org.gluu.oxauth.userinfo.ws.rs;
+
+import javax.servlet.http.HttpServletRequest;
+import javax.ws.rs.*;
+import javax.ws.rs.core.Context;
+import javax.ws.rs.core.MediaType;
+import javax.ws.rs.core.Response;
+import javax.ws.rs.core.SecurityContext;
+
+/**
+ * Provides interface for User Info REST web services
+ *
+ * @author Javier Rojas Blum
+ * @version September 7, 2017
+ */
+public interface UserInfoRestWebService {
+
+    @GET
+    @Path("/userinfo")
+    @Produces({MediaType.APPLICATION_JSON})
+    Response requestUserInfoGet(
+            @QueryParam("access_token")String accessToken,
+            @HeaderParam("Authorization") String authorization,
+            @Context HttpServletRequest request,
+            @Context SecurityContext securityContext);
+
+    @POST
+    @Path("/userinfo")
+    @Produces({MediaType.APPLICATION_JSON})
+    Response requestUserInfoPost(
+            @FormParam("access_token") String accessToken,
+            @HeaderParam("Authorization") String authorization,
+            @Context HttpServletRequest request,
+            @Context SecurityContext securityContext);
+}
\ No newline at end of file
diff --git a/oxAuth/Server/src/main/java/org/gluu/oxauth/userinfo/ws/rs/UserInfoRestWebServiceImpl.java b/oxAuth/Server/src/main/java/org/gluu/oxauth/userinfo/ws/rs/UserInfoRestWebServiceImpl.java
new file mode 100644
index 00000000..20e7fd0f
--- /dev/null
+++ b/oxAuth/Server/src/main/java/org/gluu/oxauth/userinfo/ws/rs/UserInfoRestWebServiceImpl.java
@@ -0,0 +1,435 @@
+/*
+ * oxAuth is available under the MIT License (2008). See http://opensource.org/licenses/MIT for full text.
+ *
+ * Copyright (c) 2014, Gluu
+ */
+
+package org.gluu.oxauth.userinfo.ws.rs;
+
+import org.gluu.model.GluuAttribute;
+import org.gluu.oxauth.audit.ApplicationAuditLogger;
+import org.gluu.oxauth.claims.Audience;
+import org.gluu.oxauth.model.audit.Action;
+import org.gluu.oxauth.model.audit.OAuth2AuditLog;
+import org.gluu.oxauth.model.authorize.Claim;
+import org.gluu.oxauth.model.common.*;
+import org.gluu.oxauth.model.config.WebKeysConfiguration;
+import org.gluu.oxauth.model.configuration.AppConfiguration;
+import org.gluu.oxauth.model.crypto.AbstractCryptoProvider;
+import org.gluu.oxauth.model.crypto.encryption.BlockEncryptionAlgorithm;
+import org.gluu.oxauth.model.crypto.encryption.KeyEncryptionAlgorithm;
+import org.gluu.oxauth.model.crypto.signature.SignatureAlgorithm;
+import org.gluu.oxauth.model.error.ErrorResponseFactory;
+import org.gluu.oxauth.model.exception.InvalidJweException;
+import org.gluu.oxauth.model.jwe.Jwe;
+import org.gluu.oxauth.model.jwe.JweEncrypter;
+import org.gluu.oxauth.model.jwe.JweEncrypterImpl;
+import org.gluu.oxauth.model.jwk.Algorithm;
+import org.gluu.oxauth.model.jwk.JSONWebKeySet;
+import org.gluu.oxauth.model.jwk.Use;
+import org.gluu.oxauth.model.jwt.Jwt;
+import org.gluu.oxauth.model.jwt.JwtClaims;
+import org.gluu.oxauth.model.jwt.JwtSubClaimObject;
+import org.gluu.oxauth.model.jwt.JwtType;
+import org.gluu.oxauth.model.registration.Client;
+import org.gluu.oxauth.model.token.JsonWebResponse;
+import org.gluu.oxauth.model.userinfo.UserInfoErrorResponseType;
+import org.gluu.oxauth.model.userinfo.UserInfoParamsValidator;
+import org.gluu.oxauth.model.util.Util;
+import org.gluu.oxauth.service.*;
+import org.gluu.oxauth.service.date.DateFormatterService;
+import org.gluu.oxauth.service.external.ExternalDynamicScopeService;
+import org.gluu.oxauth.service.external.context.DynamicScopeExternalContext;
+import org.gluu.oxauth.service.token.TokenService;
+import org.gluu.oxauth.util.ServerUtil;
+import org.gluu.persist.exception.EntryPersistenceException;
+import org.json.JSONObject;
+import org.oxauth.persistence.model.Scope;
+import org.slf4j.Logger;
+
+import javax.inject.Inject;
+import javax.servlet.http.HttpServletRequest;
+import javax.ws.rs.Path;
+import javax.ws.rs.core.MediaType;
+import javax.ws.rs.core.Response;
+import javax.ws.rs.core.SecurityContext;
+import java.io.Serializable;
+import java.security.PublicKey;
+import java.util.*;
+
+/**
+ * Provides interface for User Info REST web services
+ *
+ * @author Javier Rojas Blum
+ * @version October 14, 2019
+ */
+@Path("/")
+public class UserInfoRestWebServiceImpl implements UserInfoRestWebService {
+
+    @Inject
+    private Logger log;
+
+    @Inject
+    private ApplicationAuditLogger applicationAuditLogger;
+
+    @Inject
+    private ErrorResponseFactory errorResponseFactory;
+
+    @Inject
+    private AuthorizationGrantList authorizationGrantList;
+
+    @Inject
+    private ClientService clientService;
+
+    @Inject
+    private ScopeService scopeService;
+
+    @Inject
+    private AttributeService attributeService;
+
+    @Inject
+    private UserService userService;
+
+    @Inject
+    private ExternalDynamicScopeService externalDynamicScopeService;
+
+    @Inject
+    private AppConfiguration appConfiguration;
+
+    @Inject
+    private WebKeysConfiguration webKeysConfiguration;
+
+    @Inject
+    private AbstractCryptoProvider cryptoProvider;
+
+    @Inject
+    private TokenService tokenService;
+
+    @Inject
+    private DateFormatterService dateFormatterService;
+
+    @Override
+    public Response requestUserInfoGet(String accessToken, String authorization, HttpServletRequest request, SecurityContext securityContext) {
+        return requestUserInfo(accessToken, authorization, request, securityContext);
+    }
+
+    @Override
+    public Response requestUserInfoPost(String accessToken, String authorization, HttpServletRequest request, SecurityContext securityContext) {
+        return requestUserInfo(accessToken, authorization, request, securityContext);
+    }
+
+    private Response requestUserInfo(String accessToken, String authorization, HttpServletRequest request, SecurityContext securityContext) {
+
+        if (tokenService.isBearerAuthToken(authorization)) {
+            accessToken = tokenService.getBearerToken(authorization);
+        }
+
+        log.debug("Attempting to request User Info, Access token = {}, Is Secure = {}", accessToken, securityContext.isSecure());
+        Response.ResponseBuilder builder = Response.ok();
+
+        OAuth2AuditLog oAuth2AuditLog = new OAuth2AuditLog(ServerUtil.getIpAddress(request), Action.USER_INFO);
+
+        try {
+            if (!UserInfoParamsValidator.validateParams(accessToken)) {
+                return response(400, UserInfoErrorResponseType.INVALID_REQUEST, "access token is not valid.");
+            }
+
+            AuthorizationGrant authorizationGrant = authorizationGrantList.getAuthorizationGrantByAccessToken(accessToken);
+
+            if (authorizationGrant == null) {
+                log.trace("Failed to find authorization grant by access_token: " + accessToken);
+                return response(401, UserInfoErrorResponseType.INVALID_TOKEN);
+            }
+            oAuth2AuditLog.updateOAuth2AuditLog(authorizationGrant, false);
+
+            final AbstractToken accessTokenObject = authorizationGrant.getAccessToken(accessToken);
+            if (accessTokenObject == null || !accessTokenObject.isValid()) {
+                log.trace("Invalid access token object, access_token: {}, isNull: {}, isValid: {}", accessToken, accessTokenObject == null, false);
+                return response(401, UserInfoErrorResponseType.INVALID_TOKEN);
+            }
+
+            if (authorizationGrant.getAuthorizationGrantType() == AuthorizationGrantType.CLIENT_CREDENTIALS) {
+                return response(403, UserInfoErrorResponseType.INSUFFICIENT_SCOPE, "Grant object has client_credentials grant_type which is not valid.");
+            }
+            if (appConfiguration.getOpenidScopeBackwardCompatibility()
+                    && !authorizationGrant.getScopes().contains(DefaultScope.OPEN_ID.toString())
+                    && !authorizationGrant.getScopes().contains(DefaultScope.PROFILE.toString())) {
+                return response(403, UserInfoErrorResponseType.INSUFFICIENT_SCOPE, "Both openid and profile scopes are not present.");
+            }
+            if (!appConfiguration.getOpenidScopeBackwardCompatibility() && !authorizationGrant.getScopes().contains(DefaultScope.OPEN_ID.toString())) {
+                return response(403, UserInfoErrorResponseType.INSUFFICIENT_SCOPE, "Missed openid scope.");
+            }
+
+            oAuth2AuditLog.updateOAuth2AuditLog(authorizationGrant, true);
+
+            builder.cacheControl(ServerUtil.cacheControlWithNoStoreTransformAndPrivate());
+            builder.header("Pragma", "no-cache");
+
+            User currentUser = authorizationGrant.getUser();
+            try {
+                currentUser = userService.getUserByDn(authorizationGrant.getUserDn());
+            } catch (EntryPersistenceException ex) {
+                log.warn("Failed to reload user entry: '{}'", authorizationGrant.getUserDn());
+            }
+
+            if (authorizationGrant.getClient() != null
+                    && authorizationGrant.getClient().getUserInfoEncryptedResponseAlg() != null
+                    && authorizationGrant.getClient().getUserInfoEncryptedResponseEnc() != null) {
+                KeyEncryptionAlgorithm keyEncryptionAlgorithm = KeyEncryptionAlgorithm.fromName(authorizationGrant.getClient().getUserInfoEncryptedResponseAlg());
+                BlockEncryptionAlgorithm blockEncryptionAlgorithm = BlockEncryptionAlgorithm.fromName(authorizationGrant.getClient().getUserInfoEncryptedResponseEnc());
+                builder.type("application/jwt");
+                builder.entity(getJweResponse(
+                        keyEncryptionAlgorithm,
+                        blockEncryptionAlgorithm,
+                        currentUser,
+                        authorizationGrant,
+                        authorizationGrant.getScopes()));
+            } else if (authorizationGrant.getClient() != null
+                    && authorizationGrant.getClient().getUserInfoSignedResponseAlg() != null) {
+                SignatureAlgorithm algorithm = SignatureAlgorithm.fromString(authorizationGrant.getClient().getUserInfoSignedResponseAlg());
+                builder.type("application/jwt");
+                builder.entity(getJwtResponse(algorithm,
+                        currentUser,
+                        authorizationGrant,
+                        authorizationGrant.getScopes()));
+            } else {
+                builder.type((MediaType.APPLICATION_JSON + ";charset=UTF-8"));
+                builder.entity(getJSonResponse(currentUser,
+                        authorizationGrant,
+                        authorizationGrant.getScopes()));
+            }
+            return builder.build();
+        } catch (Exception e) {
+            log.error(e.getMessage(), e);
+            return Response.status(Response.Status.INTERNAL_SERVER_ERROR.getStatusCode()).build(); // 500
+        } finally {
+            applicationAuditLogger.sendMessage(oAuth2AuditLog);
+        }
+    }
+
+    private Response response(int status, UserInfoErrorResponseType errorResponseType) {
+        return response(status, errorResponseType, "");
+    }
+
+    private Response response(int status, UserInfoErrorResponseType errorResponseType, String reason) {
+        return Response
+                .status(status)
+                .entity(errorResponseFactory.errorAsJson(errorResponseType, reason))
+                .type(MediaType.APPLICATION_JSON_TYPE)
+                .cacheControl(ServerUtil.cacheControlWithNoStoreTransformAndPrivate())
+                .build();
+    }
+
+    private String getJwtResponse(SignatureAlgorithm signatureAlgorithm, User user, AuthorizationGrant authorizationGrant,
+                                  Collection<String> scopes) throws Exception {
+        log.trace("Building JWT reponse with next scopes {0} for user {1} and user custom attributes {0}", scopes, user.getUserId(), user.getCustomAttributes());
+
+        Jwt jwt = new Jwt();
+
+        // Header
+        jwt.getHeader().setType(JwtType.JWT);
+        jwt.getHeader().setAlgorithm(signatureAlgorithm);
+
+        String keyId = new ServerCryptoProvider(cryptoProvider).getKeyId(webKeysConfiguration, Algorithm.fromString(signatureAlgorithm.getName()), Use.SIGNATURE);
+        if (keyId != null) {
+            jwt.getHeader().setKeyId(keyId);
+        }
+
+        // Claims
+        jwt.setClaims(createJwtClaims(user, authorizationGrant, scopes));
+
+        // Signature
+        String sharedSecret = clientService.decryptSecret(authorizationGrant.getClient().getClientSecret());
+        String signature = cryptoProvider.sign(jwt.getSigningInput(), jwt.getHeader().getKeyId(), sharedSecret, signatureAlgorithm);
+        jwt.setEncodedSignature(signature);
+
+        return jwt.toString();
+    }
+
+    private JwtClaims createJwtClaims(User user, AuthorizationGrant authorizationGrant, Collection<String> scopes) throws Exception {
+        String claimsString = getJSonResponse(user, authorizationGrant, scopes);
+        JwtClaims claims = new JwtClaims(new JSONObject(claimsString));
+
+        claims.setIssuer(appConfiguration.getIssuer());
+        Audience.setAudience(claims, authorizationGrant.getClient());
+        return claims;
+    }
+
+    public String getJweResponse(
+            KeyEncryptionAlgorithm keyEncryptionAlgorithm, BlockEncryptionAlgorithm blockEncryptionAlgorithm,
+            User user, AuthorizationGrant authorizationGrant, Collection<String> scopes) throws Exception {
+        log.trace("Building JWE reponse with next scopes {0} for user {1} and user custom attributes {0}", scopes, user.getUserId(), user.getCustomAttributes());
+
+        Jwe jwe = new Jwe();
+
+        // Header
+        jwe.getHeader().setType(JwtType.JWT);
+        jwe.getHeader().setAlgorithm(keyEncryptionAlgorithm);
+        jwe.getHeader().setEncryptionMethod(blockEncryptionAlgorithm);
+
+        // Claims
+        jwe.setClaims(createJwtClaims(user, authorizationGrant, scopes));
+
+        // Encryption
+        if (keyEncryptionAlgorithm == KeyEncryptionAlgorithm.RSA_OAEP
+                || keyEncryptionAlgorithm == KeyEncryptionAlgorithm.RSA1_5) {
+            JSONObject jsonWebKeys = ServerUtil.getJwks(authorizationGrant.getClient());
+            String keyId = new ServerCryptoProvider(cryptoProvider).getKeyId(JSONWebKeySet.fromJSONObject(jsonWebKeys),
+                    Algorithm.fromString(keyEncryptionAlgorithm.getName()),
+                    Use.ENCRYPTION);
+            PublicKey publicKey = cryptoProvider.getPublicKey(keyId, jsonWebKeys, null);
+
+            if (publicKey != null) {
+                JweEncrypter jweEncrypter = new JweEncrypterImpl(keyEncryptionAlgorithm, blockEncryptionAlgorithm, publicKey);
+                jwe = jweEncrypter.encrypt(jwe);
+            } else {
+                throw new InvalidJweException("The public key is not valid");
+            }
+        } else if (keyEncryptionAlgorithm == KeyEncryptionAlgorithm.A128KW
+                || keyEncryptionAlgorithm == KeyEncryptionAlgorithm.A256KW) {
+            try {
+                byte[] sharedSymmetricKey = clientService.decryptSecret(authorizationGrant.getClient().getClientSecret()).getBytes(Util.UTF8_STRING_ENCODING);
+                JweEncrypter jweEncrypter = new JweEncrypterImpl(keyEncryptionAlgorithm, blockEncryptionAlgorithm, sharedSymmetricKey);
+                jwe = jweEncrypter.encrypt(jwe);
+            } catch (Exception e) {
+                throw new InvalidJweException(e);
+            }
+        }
+
+        return jwe.toString();
+    }
+
+    /**
+     * Builds a JSon String with the response parameters.
+     */
+    public String getJSonResponse(User user, AuthorizationGrant authorizationGrant, Collection<String> scopes)
+            throws Exception {
+        log.trace("Building JSON reponse with next scopes {0} for user {1} and user custom attributes {0}", scopes, user.getUserId(), user.getCustomAttributes());
+
+        JsonWebResponse jsonWebResponse = new JsonWebResponse();
+
+        // Claims
+        List<Scope> dynamicScopes = new ArrayList<Scope>();
+        for (String scopeName : scopes) {
+            org.oxauth.persistence.model.Scope scope = scopeService.getScopeById(scopeName);
+            if ((scope != null) && (org.gluu.oxauth.model.common.ScopeType.DYNAMIC == scope.getScopeType())) {
+                dynamicScopes.add(scope);
+                continue;
+            }
+
+            Map<String, Object> claims = scopeService.getClaims(user, scope);
+            if (claims == null) {
+                continue;
+            }
+
+            if (scope != null && Boolean.TRUE.equals(scope.isOxAuthGroupClaims())) {
+                JwtSubClaimObject groupClaim = new JwtSubClaimObject();
+                groupClaim.setName(scope.getId());
+                for (Map.Entry<String, Object> entry : claims.entrySet()) {
+                    String key = entry.getKey();
+                    Object value = entry.getValue();
+
+                    if (value instanceof List) {
+                        groupClaim.setClaim(key, (List<String>) value);
+                    } else {
+                        groupClaim.setClaim(key, String.valueOf(value));
+                    }
+                }
+
+                jsonWebResponse.getClaims().setClaim(scope.getId(), groupClaim);
+            } else {
+                log.info("User Info rest called: {}", claims.entrySet());
+                for (Map.Entry<String, Object> entry : claims.entrySet()) {
+                    String key = entry.getKey();
+                    Object value = entry.getValue();
+
+                    if (value instanceof List) {
+                        jsonWebResponse.getClaims().setClaim(key, (List<String>) value);
+                    } else if (value instanceof Boolean) {
+                        jsonWebResponse.getClaims().setClaim(key, (Boolean) value);
+                    } else if (value instanceof Date) {
+                        Serializable formattedValue = dateFormatterService.formatClaim((Date) value, key);
+                        jsonWebResponse.getClaims().setClaimObject(key, formattedValue, true);
+                    } else {
+                        jsonWebResponse.getClaims().setClaim(key, String.valueOf(value));
+                    }
+                }
+            }
+        }
+
+        if (authorizationGrant.getClaims() != null) {
+            JSONObject claimsObj = new JSONObject(authorizationGrant.getClaims());
+            if (claimsObj.has("userinfo")) {
+                JSONObject userInfoObj = claimsObj.getJSONObject("userinfo");
+                for (Iterator<String> it = userInfoObj.keys(); it.hasNext(); ) {
+                    String claimName = it.next();
+                    boolean optional = true; // ClaimValueType.OPTIONAL.equals(claim.getClaimValue().getClaimValueType());
+                    GluuAttribute gluuAttribute = attributeService.getByClaimName(claimName);
+
+                    if (gluuAttribute != null) {
+                        String ldapClaimName = gluuAttribute.getName();
+
+                        Object attribute = user.getAttribute(ldapClaimName, optional, gluuAttribute.getOxMultiValuedAttribute());
+                        jsonWebResponse.getClaims().setClaimFromJsonObject(claimName, attribute);
+                    }
+                }
+            }
+        }
+
+        if (authorizationGrant.getJwtAuthorizationRequest() != null
+                && authorizationGrant.getJwtAuthorizationRequest().getUserInfoMember() != null) {
+            for (Claim claim : authorizationGrant.getJwtAuthorizationRequest().getUserInfoMember().getClaims()) {
+                boolean optional = true; // ClaimValueType.OPTIONAL.equals(claim.getClaimValue().getClaimValueType());
+                GluuAttribute gluuAttribute = attributeService.getByClaimName(claim.getName());
+
+                if (gluuAttribute != null) {
+                    Client client = authorizationGrant.getClient();
+
+                    if (validateRequesteClaim(gluuAttribute, client.getClaims(), scopes)) {
+                        String ldapClaimName = gluuAttribute.getName();
+                        Object attribute = user.getAttribute(ldapClaimName, optional, gluuAttribute.getOxMultiValuedAttribute());
+                        jsonWebResponse.getClaims().setClaimFromJsonObject(claim.getName(), attribute);
+                    }
+                }
+            }
+        }
+
+        jsonWebResponse.getClaims().setSubjectIdentifier(authorizationGrant.getSub());
+
+        if ((dynamicScopes.size() > 0) && externalDynamicScopeService.isEnabled()) {
+            final UnmodifiableAuthorizationGrant unmodifiableAuthorizationGrant = new UnmodifiableAuthorizationGrant(authorizationGrant);
+            DynamicScopeExternalContext dynamicScopeContext = new DynamicScopeExternalContext(dynamicScopes, jsonWebResponse, unmodifiableAuthorizationGrant);
+            externalDynamicScopeService.executeExternalUpdateMethods(dynamicScopeContext);
+        }
+
+        return jsonWebResponse.toString();
+    }
+
+    public boolean validateRequesteClaim(GluuAttribute gluuAttribute, String[] clientAllowedClaims, Collection<String> scopes) {
+        if (gluuAttribute == null) {
+            log.trace("gluuAttribute is null.");
+            return false;
+        }
+        if (clientAllowedClaims != null) {
+            for (String clientAllowedClaim : clientAllowedClaims) {
+                if (gluuAttribute.getDn().equals(clientAllowedClaim)) {
+                    return true;
+                }
+            }
+        }
+
+        for (String scopeName : scopes) {
+            org.oxauth.persistence.model.Scope scope = scopeService.getScopeById(scopeName);
+
+            if (scope != null && scope.getOxAuthClaims() != null) {
+                for (String claimDn : scope.getOxAuthClaims()) {
+                    if (gluuAttribute.getDisplayName().equals(attributeService.getAttributeByDn(claimDn).getDisplayName())) {
+                        return true;
+                    }
+                }
+            }
+        }
+
+        return false;
+    }
+}
\ No newline at end of file
diff --git a/oxAuth/Server/src/main/java/org/gluu/oxauth/util/CertUtil.java b/oxAuth/Server/src/main/java/org/gluu/oxauth/util/CertUtil.java
new file mode 100644
index 00000000..e83ad165
--- /dev/null
+++ b/oxAuth/Server/src/main/java/org/gluu/oxauth/util/CertUtil.java
@@ -0,0 +1,72 @@
+/*
+ * oxAuth is available under the MIT License (2008). See http://opensource.org/licenses/MIT for full text.
+ *
+ * Copyright (c) 2014, Gluu
+ */
+
+package org.gluu.oxauth.util;
+
+import org.apache.commons.io.FileUtils;
+import org.apache.commons.io.IOUtils;
+import org.gluu.oxauth.crypto.cert.CertificateParser;
+import org.gluu.util.StringHelper;
+import org.slf4j.Logger;
+import org.slf4j.LoggerFactory;
+
+import java.io.File;
+import java.io.IOException;
+import java.io.InputStream;
+import java.security.cert.CertificateException;
+import java.security.cert.CertificateFactory;
+import java.security.cert.X509Certificate;
+import java.util.List;
+
+/**
+ * @author Yuriy Movchan
+ * @version March 11, 2016
+ */
+public class CertUtil {
+
+    private final static Logger log = LoggerFactory.getLogger(CertUtil.class);
+
+	private CertUtil() {}
+
+	@SuppressWarnings("unchecked")
+	public static List<X509Certificate> loadX509CertificateFromFile(String filePath) {
+		if (StringHelper.isEmpty(filePath)) {
+			log.error("X509Certificate file path is empty");
+			
+			return null;
+		}
+
+		InputStream is;
+		try {
+			is = FileUtils.openInputStream(new File(filePath));
+		} catch (IOException ex) {
+			log.error("Failed to read X.509 certificates from file: '" + filePath + "'", ex);
+			return null;
+		}
+
+		List<X509Certificate> certificates = null;
+		try {
+			CertificateFactory cf = CertificateFactory.getInstance("X.509");
+			certificates = (List<X509Certificate>) cf.generateCertificates(is);
+		} catch (CertificateException ex) {
+			log.error("Failed to parse X.509 certificates from file: '" + filePath + "'", ex);
+		} finally {
+			IOUtils.closeQuietly(is);
+		}
+
+		return certificates;
+	}
+
+	public static X509Certificate parsePem(String pem) {
+		try {
+			return CertificateParser.parsePem(pem);
+		} catch (CertificateException ex) {
+			log.error("Failed to parse PEM certificate", ex);
+		}
+		
+		return null;
+	}
+}
diff --git a/oxAuth/Server/src/main/java/org/gluu/oxauth/util/PasswordValidator.java b/oxAuth/Server/src/main/java/org/gluu/oxauth/util/PasswordValidator.java
new file mode 100644
index 00000000..b423799c
--- /dev/null
+++ b/oxAuth/Server/src/main/java/org/gluu/oxauth/util/PasswordValidator.java
@@ -0,0 +1,71 @@
+package org.gluu.oxauth.util;
+
+import org.gluu.model.attribute.AttributeValidation;
+import org.gluu.oxauth.i18n.LanguageBean;
+import org.gluu.service.AttributeService;
+import org.gluu.service.cdi.util.CdiUtil;
+
+import javax.enterprise.context.ApplicationScoped;
+import javax.faces.application.FacesMessage;
+import javax.faces.component.UIComponent;
+import javax.faces.component.UIInput;
+import javax.faces.context.FacesContext;
+import javax.faces.validator.FacesValidator;
+import javax.faces.validator.ValidatorException;
+import javax.inject.Inject;
+import java.util.regex.Matcher;
+import java.util.regex.Pattern;
+
+@ApplicationScoped
+@FacesValidator(value = "gluuPasswordValidator", managed = true)
+public class PasswordValidator implements javax.faces.validator.Validator {
+
+	private static final String USER_PASSWORD = "userPassword";
+	private String newPassword;
+	private Pattern pattern;
+	private Matcher matcher;
+	private boolean hasValidation = false;
+
+	@Inject
+	private AttributeService attributeService;
+
+	@Inject
+	private LanguageBean languageBean;
+
+	@Override
+	public void validate(FacesContext context, UIComponent component, Object value) throws ValidatorException {
+		// This is workaround unless this bug will be fixed in JSF
+		if (attributeService == null) {
+			attributeService = CdiUtil.bean(AttributeService.class);
+		}
+		if (languageBean == null) {
+			languageBean = CdiUtil.bean(LanguageBean.class);
+		}
+
+		AttributeValidation validation = attributeService.getAttributeByName(USER_PASSWORD).getAttributeValidation();
+		if (validation != null) {
+			String regexp = validation.getRegexp();
+			if (regexp != null && !regexp.isEmpty()) {
+				pattern = Pattern.compile(regexp);
+				matcher = pattern.matcher(value.toString());
+				hasValidation = true;
+			}
+		}
+		if (hasValidation && !matcher.matches()) {
+			String message = languageBean.getMessage("password.validation.invalid");
+			context.addMessage(null, new FacesMessage(FacesMessage.SEVERITY_ERROR, message, message));
+			context.validationFailed();
+			((UIInput) component).setValid(false);
+		}
+
+	}
+
+	public String getNewPassword() {
+		return newPassword;
+	}
+
+	public void setNewPassword(String newPassword) {
+		this.newPassword = newPassword;
+	}
+
+}
diff --git a/oxAuth/Server/src/main/java/org/gluu/oxauth/util/QueryStringDecoder.java b/oxAuth/Server/src/main/java/org/gluu/oxauth/util/QueryStringDecoder.java
new file mode 100644
index 00000000..e7f06450
--- /dev/null
+++ b/oxAuth/Server/src/main/java/org/gluu/oxauth/util/QueryStringDecoder.java
@@ -0,0 +1,66 @@
+/*
+ * oxAuth is available under the MIT License (2008). See http://opensource.org/licenses/MIT for full text.
+ *
+ * Copyright (c) 2014, Gluu
+ */
+
+package org.gluu.oxauth.util;
+
+import java.io.UnsupportedEncodingException;
+import java.net.URLDecoder;
+import java.util.HashMap;
+import java.util.Map;
+
+/**
+ * Provides functionality to parse query strings.
+ *
+ * @author Javier Rojas Blum
+ * @version November 24, 2017
+ */
+public class QueryStringDecoder {
+
+    /**
+     * Decodes a query string and returns a map with the parsed query string
+     * parameters as keys and its values. The parameter values are not 
+     * urldecoded
+     *
+     * @param queryString The query string.
+     * @return A map with the parsed query string parameters and its values.
+     */
+    public static Map<String,String> decode(String queryString) {
+
+        return decode(queryString,false);
+    }
+
+    /**
+     * Decodes a query string and returns a map with the parsed query string
+     * parameters as keys and its values.
+     *
+     * @param queryString The query string.
+     * @param urlDecode   Boolean indicating if the parameter values should be urldecoded
+     * @return A map with the parsed query string parameters and its values.
+     */
+    public static Map<String, String> decode(String queryString, boolean urlDecode) {
+        Map<String, String> map = new HashMap<String, String>();
+
+        if (queryString != null) {
+            String[] params = queryString.split("&");
+            for (String param : params) {
+                String[] nameValue = param.split("=");
+                String name = nameValue.length > 0 ? nameValue[0] : "";
+                String value = nameValue.length > 1 ? nameValue[1] : "";
+                if(urlDecode) {
+                    try {
+                        map.put(name, URLDecoder.decode(value,"UTF-8"));
+                    }catch(UnsupportedEncodingException e) {
+                        map.put(name,value);
+                    }
+                }else {
+                    map.put(name,value);
+                }
+            }
+        }
+
+        return map;
+    }
+}
\ No newline at end of file
diff --git a/oxAuth/Server/src/main/java/org/gluu/oxauth/util/RedirectUtil.java b/oxAuth/Server/src/main/java/org/gluu/oxauth/util/RedirectUtil.java
new file mode 100644
index 00000000..ab85e5f6
--- /dev/null
+++ b/oxAuth/Server/src/main/java/org/gluu/oxauth/util/RedirectUtil.java
@@ -0,0 +1,72 @@
+/*
+ * oxAuth is available under the MIT License (2008). See http://opensource.org/licenses/MIT for full text.
+ *
+ * Copyright (c) 2014, Gluu
+ */
+
+package org.gluu.oxauth.util;
+
+import org.gluu.oxauth.model.common.ResponseMode;
+import org.jboss.resteasy.specimpl.ResponseBuilderImpl;
+import org.json.JSONException;
+import org.json.JSONObject;
+import org.slf4j.Logger;
+import org.slf4j.LoggerFactory;
+
+import javax.servlet.http.HttpServletRequest;
+import javax.ws.rs.core.CacheControl;
+import javax.ws.rs.core.GenericEntity;
+import javax.ws.rs.core.MediaType;
+import javax.ws.rs.core.Response;
+import javax.ws.rs.core.Response.ResponseBuilder;
+import java.net.MalformedURLException;
+import java.net.URI;
+
+import static org.gluu.oxauth.client.AuthorizationRequest.NO_REDIRECT_HEADER;
+
+/**
+ * @version October 7, 2019
+ */
+public class RedirectUtil {
+
+    private final static Logger log = LoggerFactory.getLogger(RedirectUtil.class);
+
+    static String JSON_REDIRECT_PROPNAME = "redirect";
+
+    static int HTTP_REDIRECT = 302;
+
+    public static ResponseBuilder getRedirectResponseBuilder(RedirectUri redirectUriResponse, HttpServletRequest httpRequest) {
+        ResponseBuilder builder;
+
+        if (httpRequest != null && httpRequest.getHeader(NO_REDIRECT_HEADER) != null) {
+            try {
+                URI redirectURI = URI.create(redirectUriResponse.toString());
+                JSONObject jsonObject = new JSONObject();
+                jsonObject.put(JSON_REDIRECT_PROPNAME, redirectURI.toURL());
+                String jsonResp = jsonObject.toString();
+                jsonResp = jsonResp.replace("\\/", "/");
+                builder = Response.ok(
+                        new GenericEntity<String>(jsonResp, String.class),
+                        MediaType.APPLICATION_JSON_TYPE
+                );
+
+            } catch (MalformedURLException | JSONException e) {
+                builder = Response.serverError();
+                log.debug(e.getMessage(), e);
+            }
+        } else if (redirectUriResponse.getResponseMode() == ResponseMode.FORM_POST) {
+            builder = new ResponseBuilderImpl();
+            builder.status(Response.Status.OK);
+            builder.type(MediaType.TEXT_HTML_TYPE);
+            builder.cacheControl(CacheControl.valueOf("no-cache, no-store"));
+            builder.header("Pragma", "no-cache");
+            builder.entity(redirectUriResponse.toString());
+        } else {
+            URI redirectURI = URI.create(redirectUriResponse.toString());
+            builder = Response.status(HTTP_REDIRECT);
+            builder.location(redirectURI);
+        }
+
+        return builder;
+    }
+}
diff --git a/oxAuth/Server/src/main/java/org/gluu/oxauth/util/ServerUtil.java b/oxAuth/Server/src/main/java/org/gluu/oxauth/util/ServerUtil.java
new file mode 100644
index 00000000..47ee2dcc
--- /dev/null
+++ b/oxAuth/Server/src/main/java/org/gluu/oxauth/util/ServerUtil.java
@@ -0,0 +1,299 @@
+/*
+ * oxAuth is available under the MIT License (2008). See http://opensource.org/licenses/MIT for full text.
+ *
+ * Copyright (c) 2014, Gluu
+ */
+
+package org.gluu.oxauth.util;
+
+import com.fasterxml.jackson.core.JsonProcessingException;
+import com.fasterxml.jackson.databind.AnnotationIntrospector;
+import com.fasterxml.jackson.databind.DeserializationFeature;
+import com.fasterxml.jackson.databind.ObjectMapper;
+import com.fasterxml.jackson.databind.SerializationFeature;
+import com.fasterxml.jackson.databind.introspect.JacksonAnnotationIntrospector;
+import com.fasterxml.jackson.datatype.jsonorg.JsonOrgModule;
+import com.fasterxml.jackson.module.jaxb.JaxbAnnotationIntrospector;
+import com.google.common.base.Strings;
+import org.apache.commons.lang.StringUtils;
+import org.gluu.oxauth.model.registration.Client;
+import org.gluu.oxauth.model.uma.persistence.UmaPermission;
+import org.gluu.oxauth.model.util.JwtUtil;
+import org.gluu.oxauth.service.common.ApplicationFactory;
+import org.gluu.oxauth.uma.service.UmaScopeService;
+import org.gluu.persist.PersistenceEntryManager;
+import org.gluu.persist.model.base.CustomAttribute;
+import org.gluu.service.cdi.util.CdiUtil;
+import org.gluu.util.ArrayHelper;
+import org.gluu.util.Util;
+import org.json.JSONObject;
+import org.slf4j.Logger;
+import org.slf4j.LoggerFactory;
+
+import javax.faces.context.ExternalContext;
+import javax.faces.context.FacesContext;
+import javax.servlet.http.HttpServletRequest;
+import javax.ws.rs.core.CacheControl;
+import java.io.IOException;
+import java.io.UnsupportedEncodingException;
+import java.net.MalformedURLException;
+import java.net.URL;
+import java.net.URLDecoder;
+import java.util.*;
+import java.util.concurrent.Executors;
+import java.util.concurrent.ScheduledExecutorService;
+import java.util.concurrent.ThreadFactory;
+
+/**
+ * @author Yuriy Zabrovarnyy
+ * @author Yuriy Movchan
+ * @version 0.9, 26/12/2012
+ */
+
+public class ServerUtil {
+
+    private static final Logger log = LoggerFactory.getLogger(ServerUtil.class);
+
+    private ServerUtil() {
+    }
+
+    public static Map<String, String[]> prepareForLogs(Map<String, String[]> parameters) {
+        if (parameters == null || parameters.isEmpty()) {
+            return new HashMap<>();
+        }
+
+        Map<String, String[]> result = new HashMap<>(parameters);
+        if (result.containsKey("client_secret")) {
+            result.put("client_secret", new String[] {"*****"});
+        }
+        if (result.containsKey("password")) {
+            result.put("password", new String[] {"*****"});
+        }
+        return result;
+    }
+
+    public static JSONObject getJwks(Client client) {
+        return Strings.isNullOrEmpty(client.getJwks())
+                ? JwtUtil.getJSONWebKeys(client.getJwksUri())
+                : new JSONObject(client.getJwks());
+    }
+
+    public static GregorianCalendar now() {
+        return new GregorianCalendar(TimeZone.getTimeZone("UTC"));
+    }
+
+    public static int calculateTtl(Date creationDate, Date expirationDate) {
+        if (creationDate != null && expirationDate != null) {
+            return (int) ((expirationDate.getTime() - creationDate.getTime()) / 1000L);
+        }
+        return 0;
+    }
+
+    public static String asJsonSilently(Object p_object) {
+        try {
+            return asJson(p_object);
+        } catch (IOException e) {
+            log.trace(e.getMessage(), e);
+            return "";
+        }
+    }
+
+    public static ThreadFactory daemonThreadFactory() {
+        return runnable -> {
+            Thread thread = new Thread(runnable);
+            thread.setDaemon(true);
+            return thread;
+        };
+    }
+
+    public static boolean isTrue(Boolean booleanObject) {
+        return booleanObject != null && booleanObject;
+    }
+
+    public static boolean isFalse(Boolean booleanObject) {
+        return !isTrue(booleanObject);
+    }
+
+    public static String asPrettyJson(Object p_object) throws IOException {
+        final ObjectMapper mapper = ServerUtil.createJsonMapper().configure(SerializationFeature.WRAP_ROOT_VALUE, false);
+        return mapper.writerWithDefaultPrettyPrinter().writeValueAsString(p_object);
+    }
+
+    public static String asJson(Object p_object) throws IOException {
+        final ObjectMapper mapper = ServerUtil.createJsonMapper().configure(SerializationFeature.WRAP_ROOT_VALUE, false);
+        return mapper.writeValueAsString(p_object);
+    }
+
+    public static CacheControl cacheControl(boolean p_noStore) {
+        final CacheControl cacheControl = new CacheControl();
+        cacheControl.setNoStore(p_noStore);
+        return cacheControl;
+    }
+
+    public static CacheControl cacheControl(boolean p_noStore, boolean p_noTransform) {
+        final CacheControl cacheControl = new CacheControl();
+        cacheControl.setNoStore(p_noStore);
+        cacheControl.setNoTransform(p_noTransform);
+        return cacheControl;
+    }
+
+    public static CacheControl cacheControlWithNoStoreTransformAndPrivate() {
+        final CacheControl cacheControl = cacheControl(true, false);
+        cacheControl.setPrivate(true);
+        return cacheControl;
+    }
+
+    public static ObjectMapper createJsonMapper() {
+        final AnnotationIntrospector jaxb = new JaxbAnnotationIntrospector();
+        final AnnotationIntrospector jackson = new JacksonAnnotationIntrospector();
+
+        final AnnotationIntrospector pair = AnnotationIntrospector.pair(jackson, jaxb);
+
+        final ObjectMapper mapper = new ObjectMapper();
+        mapper.getDeserializationConfig().with(pair);
+        mapper.getSerializationConfig().with(pair);
+        return mapper;
+    }
+
+    public static ObjectMapper jsonMapperWithWrapRoot() {
+        return createJsonMapper().configure(SerializationFeature.WRAP_ROOT_VALUE, true);
+    }
+
+    public static ObjectMapper jsonMapperWithUnwrapRoot() {
+        return createJsonMapper().configure(DeserializationFeature.UNWRAP_ROOT_VALUE, true);
+    }
+
+    public static String toPrettyJson(JSONObject jsonObject) throws JsonProcessingException {
+		ObjectMapper mapper = new ObjectMapper();
+		mapper.registerModule(new JsonOrgModule());
+		return mapper.writerWithDefaultPrettyPrinter().writeValueAsString(jsonObject);
+	}
+
+    public static PersistenceEntryManager getLdapManager() {
+        return CdiUtil.bean(PersistenceEntryManager.class, ApplicationFactory.PERSISTENCE_ENTRY_MANAGER_NAME);
+    }
+
+    public static CustomAttribute getAttributeByName(List<CustomAttribute> p_list, String p_attributeName) {
+        if (p_list != null && !p_list.isEmpty() && StringUtils.isNotEmpty(p_attributeName)) {
+            for (CustomAttribute attr : p_list) {
+                if (p_attributeName.equals(attr.getName())) {
+                    return attr;
+                }
+            }
+        }
+        return null;
+    }
+
+    public static String getAttributeValueByName(List<CustomAttribute> p_list, String p_attributeName) {
+        final CustomAttribute attr = getAttributeByName(p_list, p_attributeName);
+        if (attr != null) {
+            return attr.getValue();
+        }
+        return "";
+    }
+
+    public static String urlDecode(String p_str) {
+        if (StringUtils.isNotBlank(p_str)) {
+            try {
+                return URLDecoder.decode(p_str, Util.UTF8);
+            } catch (UnsupportedEncodingException e) {
+                log.trace(e.getMessage(), e);
+            }
+        }
+        return p_str;
+    }
+
+    public static ScheduledExecutorService createExecutor() {
+        return Executors.newSingleThreadScheduledExecutor(new ThreadFactory() {
+            public Thread newThread(Runnable p_r) {
+                Thread thread = new Thread(p_r);
+                thread.setDaemon(true);
+                return thread;
+            }
+        });
+    }
+
+    public static org.gluu.oxauth.model.uma.UmaPermission convert(UmaPermission permission, UmaScopeService umaScopeService) {
+        if (permission != null) {
+            final org.gluu.oxauth.model.uma.UmaPermission result = new org.gluu.oxauth.model.uma.UmaPermission();
+            result.setResourceId(permission.getResourceId());
+            result.setScopes(umaScopeService.getScopeIdsByDns(permission.getScopeDns()));
+            result.setExpiresAt(dateToSeconds(permission.getExpirationDate()));
+            return result;
+        }
+        return null;
+    }
+
+    public static String getFirstValue(Map<String, String[]> map, String key) {
+        if (map.containsKey(key)) {
+            String[] values = map.get(key);
+            if (ArrayHelper.isNotEmpty(values)) {
+                return values[0];
+            }
+        }
+
+        return null;
+    }
+
+    /**
+     * @param httpRequest interface to provide request information for HTTP servlets.
+     * @return IP address of client
+     * @see <a href="http://stackoverflow.com/a/21884642/5202500">Getting IP address of client</a>
+     */
+    public static String getIpAddress(HttpServletRequest httpRequest) {
+        final String[] HEADERS_TO_TRY = {
+                "X-Forwarded-For",
+                "Proxy-Client-IP",
+                "WL-Proxy-Client-IP",
+                "HTTP_X_FORWARDED_FOR",
+                "HTTP_X_FORWARDED",
+                "HTTP_X_CLUSTER_CLIENT_IP",
+                "HTTP_CLIENT_IP",
+                "HTTP_FORWARDED_FOR",
+                "HTTP_FORWARDED",
+                "HTTP_VIA",
+                "REMOTE_ADDR"
+        };
+        for (String header : HEADERS_TO_TRY) {
+            String ip = httpRequest.getHeader(header);
+            if (ip != null && ip.length() != 0 && !"unknown".equalsIgnoreCase(ip)) {
+                return ip;
+            }
+        }
+        return httpRequest.getRemoteAddr();
+    }
+
+    /**
+     * Safe retrieves http request from FacesContext
+     *
+     * @return http
+     */
+    public static HttpServletRequest getRequestOrNull() {
+        FacesContext facesContext = FacesContext.getCurrentInstance();
+        if (facesContext == null)
+            return null;
+
+        ExternalContext externalContext = facesContext.getExternalContext();
+        if (externalContext == null)
+            return null;
+        Object request = externalContext.getRequest();
+        if (request == null || !(request instanceof HttpServletRequest))
+            return null;
+        return (HttpServletRequest) request;
+    }
+
+    public static boolean isSameRequestPath(String url1, String url2) throws MalformedURLException {
+        if (StringUtils.isBlank(url1) || StringUtils.isBlank(url2)) {
+    		return false;
+    	}
+    	
+    	URL parsedUrl1 = new URL(url1);
+    	URL parsedUrl2 = new URL(url2);
+    	
+    	return parsedUrl1.getPath().endsWith(parsedUrl2.getPath());
+    }
+
+    public static Integer dateToSeconds(Date date) {
+        return date != null ? (int) (date.getTime() / 1000) : null;
+    }
+}
diff --git a/oxAuth/Server/src/main/java/org/gluu/oxauth/util/TokenHashUtil.java b/oxAuth/Server/src/main/java/org/gluu/oxauth/util/TokenHashUtil.java
new file mode 100644
index 00000000..ebf33eb4
--- /dev/null
+++ b/oxAuth/Server/src/main/java/org/gluu/oxauth/util/TokenHashUtil.java
@@ -0,0 +1,32 @@
+/*
+ * oxAuth is available under the MIT License (2008). See http://opensource.org/licenses/MIT for full text.
+ *
+ * Copyright (c) 2014, Gluu
+ */
+
+package org.gluu.oxauth.util;
+
+import org.apache.commons.codec.digest.DigestUtils;
+import org.apache.commons.lang.StringUtils;
+
+public class TokenHashUtil {
+
+    public static final String PREFIX = "{sha256Hex}";
+
+    public static String getHashWithPrefix(String token) {
+        if (StringUtils.isNotBlank(token) && !token.startsWith(PREFIX)) {
+            return PREFIX + DigestUtils.sha256Hex(token);
+        } else {
+            return token;
+        }
+    }
+
+    public static String hash(String hashedToken) {
+        if (StringUtils.isNotBlank(hashedToken) && hashedToken.startsWith(PREFIX)) {
+            return hashedToken;
+        } else {
+            return DigestUtils.sha256Hex(hashedToken);
+        }
+    }
+
+}
\ No newline at end of file
diff --git a/oxAuth/Server/src/main/java/org/gluu/oxauth/ws/rs/controller/HealthCheckController.java b/oxAuth/Server/src/main/java/org/gluu/oxauth/ws/rs/controller/HealthCheckController.java
new file mode 100644
index 00000000..f2a11f2b
--- /dev/null
+++ b/oxAuth/Server/src/main/java/org/gluu/oxauth/ws/rs/controller/HealthCheckController.java
@@ -0,0 +1,52 @@
+package org.gluu.oxauth.ws.rs.controller;
+
+import javax.enterprise.context.ApplicationScoped;
+import javax.inject.Inject;
+import javax.ws.rs.GET;
+import javax.ws.rs.POST;
+import javax.ws.rs.Path;
+import javax.ws.rs.Produces;
+import javax.ws.rs.core.MediaType;
+
+import org.gluu.oxauth.service.external.ExternalAuthenticationService;
+import org.gluu.oxauth.service.external.ExternalDynamicScopeService;
+import org.gluu.persist.PersistenceEntryManager;
+
+/**
+ * Health check controller
+ * 
+ * @author Yuriy Movchan
+ * @version Jul 24, 2020
+ */
+@ApplicationScoped
+@Path("/")
+public class HealthCheckController {
+
+	@Inject
+	private PersistenceEntryManager persistenceEntryManager;
+
+	@Inject
+	private ExternalAuthenticationService externalAuthenticationService;
+
+	@Inject
+	private ExternalDynamicScopeService externalDynamicScopeService;
+
+    @GET
+    @POST
+    @Path("/health-check")
+    @Produces(MediaType.APPLICATION_JSON)
+	public String healthCheckController() {
+    	boolean isConnected = persistenceEntryManager.getOperationService().isConnected();
+    	String dbStatus = isConnected ? "online" : "offline";
+    	String appStatus = getAppStatus();
+        return "{\"status\": \"" + appStatus + "\", \"db_status\":\"" + dbStatus + "\"}";
+	}
+
+    public String getAppStatus() {
+        if (externalAuthenticationService.isLoaded() && externalDynamicScopeService.isLoaded()) {
+        	return "running";
+        } else {
+        	return "starting";
+        }
+    }
+}
diff --git a/oxAuth/Server/src/main/java/org/gluu/oxauth/ws/rs/fido/u2f/U2fAuthenticationWS.java b/oxAuth/Server/src/main/java/org/gluu/oxauth/ws/rs/fido/u2f/U2fAuthenticationWS.java
new file mode 100644
index 00000000..d7b0cd1e
--- /dev/null
+++ b/oxAuth/Server/src/main/java/org/gluu/oxauth/ws/rs/fido/u2f/U2fAuthenticationWS.java
@@ -0,0 +1,210 @@
+/*
+ * oxAuth is available under the MIT License (2008). See http://opensource.org/licenses/MIT for full text.
+ *
+ * Copyright (c) 2015, Gluu
+ */
+
+package org.gluu.oxauth.ws.rs.fido.u2f;
+
+import org.gluu.oxauth.exception.fido.u2f.DeviceCompromisedException;
+import org.gluu.oxauth.exception.fido.u2f.InvalidKeyHandleDeviceException;
+import org.gluu.oxauth.exception.fido.u2f.NoEligableDevicesException;
+import org.gluu.oxauth.model.config.Constants;
+import org.gluu.oxauth.model.configuration.AppConfiguration;
+import org.gluu.oxauth.model.error.ErrorResponseFactory;
+import org.gluu.oxauth.model.fido.u2f.AuthenticateRequestMessageLdap;
+import org.gluu.oxauth.model.fido.u2f.DeviceRegistration;
+import org.gluu.oxauth.model.fido.u2f.DeviceRegistrationResult;
+import org.gluu.oxauth.model.fido.u2f.U2fErrorResponseType;
+import org.gluu.oxauth.model.fido.u2f.exception.BadInputException;
+import org.gluu.oxauth.model.fido.u2f.protocol.AuthenticateRequestMessage;
+import org.gluu.oxauth.model.fido.u2f.protocol.AuthenticateResponse;
+import org.gluu.oxauth.model.fido.u2f.protocol.AuthenticateStatus;
+import org.gluu.oxauth.model.util.Base64Util;
+import org.gluu.oxauth.service.common.UserService;
+import org.gluu.oxauth.service.fido.u2f.AuthenticationService;
+import org.gluu.oxauth.service.fido.u2f.DeviceRegistrationService;
+import org.gluu.oxauth.service.fido.u2f.UserSessionIdService;
+import org.gluu.oxauth.service.fido.u2f.ValidationService;
+import org.gluu.oxauth.util.ServerUtil;
+import org.gluu.util.StringHelper;
+import org.slf4j.Logger;
+
+import javax.inject.Inject;
+import javax.ws.rs.*;
+import javax.ws.rs.core.Response;
+import javax.ws.rs.core.Response.Status;
+
+/**
+ * The endpoint allows to start and finish U2F authentication process
+ *
+ * @author Yuriy Movchan
+ * @version August 9, 2017
+ */
+@Path("/fido/u2f/authentication")
+public class U2fAuthenticationWS {
+
+    @Inject
+    private Logger log;
+
+    @Inject
+    private AppConfiguration appConfiguration;
+
+    @Inject
+    private ErrorResponseFactory errorResponseFactory;
+
+    @Inject
+    private UserService userService;
+
+    @Inject
+    private AuthenticationService u2fAuthenticationService;
+
+    @Inject
+    private DeviceRegistrationService deviceRegistrationService;
+
+    @Inject
+    private UserSessionIdService userSessionIdService;
+
+    @Inject
+    private ValidationService u2fValidationService;
+
+    @GET
+    @Produces({"application/json"})
+    public Response startAuthentication(@QueryParam("username") String userName, @QueryParam("keyhandle") String keyHandle, @QueryParam("application") String appId, @QueryParam("session_id") String sessionId) {
+        // Parameter username is deprecated. We uses it only to determine is it's one or two step workflow
+        try {
+            if (appConfiguration.getDisableU2fEndpoint()) {
+                return Response.status(Status.FORBIDDEN).build();
+            }
+
+            log.debug("Startig authentication with username '{}', keyhandle '{}' for appId '{}' and session_id '{}'", userName, keyHandle, appId, sessionId);
+
+            if (StringHelper.isEmpty(userName) && StringHelper.isEmpty(keyHandle)) {
+                throw new BadInputException("The request should contains either username or keyhandle");
+            }
+
+            String foundUserInum = null;
+
+            boolean twoStep = StringHelper.isNotEmpty(userName);
+            if (twoStep) {
+                boolean valid = u2fValidationService.isValidSessionId(userName, sessionId);
+                if (!valid) {
+                    throw new BadInputException(String.format("session_id '%s' is invalid", sessionId));
+                }
+
+                foundUserInum = userService.getUserInum(userName);
+            } else {
+                // Convert to non padding URL base64 string
+                String keyHandleWithoutPading = Base64Util.base64urlencode(Base64Util.base64urldecode(keyHandle));
+
+                // In one step we expects empty username and not empty keyhandle
+                foundUserInum = u2fAuthenticationService.getUserInumByKeyHandle(appId, keyHandleWithoutPading);
+            }
+
+            if (StringHelper.isEmpty(foundUserInum)) {
+                throw new BadInputException(String.format("Failed to find user by userName '%s' or keyHandle '%s' in LDAP", userName, keyHandle));
+            }
+
+            AuthenticateRequestMessage authenticateRequestMessage = u2fAuthenticationService.buildAuthenticateRequestMessage(appId, foundUserInum);
+            u2fAuthenticationService.storeAuthenticationRequestMessage(authenticateRequestMessage, foundUserInum, sessionId);
+
+            // convert manually to avoid possible conflict between resteasy
+            // providers, e.g. jettison, jackson
+            final String entity = ServerUtil.asJson(authenticateRequestMessage);
+
+            return Response.status(Response.Status.OK).entity(entity).cacheControl(ServerUtil.cacheControl(true)).build();
+        } catch (Exception ex) {
+            log.error("Exception happened", ex);
+            if (ex instanceof WebApplicationException) {
+                throw (WebApplicationException) ex;
+            }
+
+            if ((ex instanceof NoEligableDevicesException) || (ex instanceof InvalidKeyHandleDeviceException)) {
+                throw new WebApplicationException(Response.status(Response.Status.NOT_FOUND)
+                        .entity(errorResponseFactory.getErrorResponse(U2fErrorResponseType.NO_ELIGABLE_DEVICES)).build());
+            }
+
+            throw new WebApplicationException(Response.status(Response.Status.INTERNAL_SERVER_ERROR)
+                    .entity(errorResponseFactory.getJsonErrorResponse(U2fErrorResponseType.SERVER_ERROR)).build());
+        }
+    }
+
+    @POST
+    @Produces({"application/json"})
+    public Response finishAuthentication(@FormParam("username") String userName, @FormParam("tokenResponse") String authenticateResponseString) {
+        String sessionId = null;
+        try {
+            if (appConfiguration.getDisableU2fEndpoint()) {
+                return Response.status(Status.FORBIDDEN).build();
+            }
+
+            log.debug("Finishing authentication for username '{}' with response '{}'", userName, authenticateResponseString);
+
+            AuthenticateResponse authenticateResponse = ServerUtil.jsonMapperWithWrapRoot().readValue(authenticateResponseString, AuthenticateResponse.class);
+
+            String requestId = authenticateResponse.getRequestId();
+            AuthenticateRequestMessageLdap authenticateRequestMessageLdap = u2fAuthenticationService.getAuthenticationRequestMessageByRequestId(requestId);
+            if (authenticateRequestMessageLdap == null) {
+                throw new WebApplicationException(Response.status(Response.Status.FORBIDDEN)
+                        .entity(errorResponseFactory.getJsonErrorResponse(U2fErrorResponseType.SESSION_EXPIRED)).build());
+            }
+            sessionId = authenticateRequestMessageLdap.getSessionId();
+            u2fAuthenticationService.removeAuthenticationRequestMessage(authenticateRequestMessageLdap);
+
+            AuthenticateRequestMessage authenticateRequestMessage = authenticateRequestMessageLdap.getAuthenticateRequestMessage();
+
+            String foundUserInum = authenticateRequestMessageLdap.getUserInum();
+            DeviceRegistrationResult deviceRegistrationResult = u2fAuthenticationService.finishAuthentication(authenticateRequestMessage, authenticateResponse, foundUserInum);
+
+            // If sessionId is not empty update session
+            if (StringHelper.isNotEmpty(sessionId)) {
+                log.debug("There is session id. Setting session id attributes");
+
+                boolean oneStep = StringHelper.isEmpty(userName);
+                userSessionIdService.updateUserSessionIdOnFinishRequest(sessionId, foundUserInum, deviceRegistrationResult, false, oneStep);
+            }
+
+            AuthenticateStatus authenticationStatus = new AuthenticateStatus(Constants.RESULT_SUCCESS, requestId);
+
+            // convert manually to avoid possible conflict between resteasy
+            // providers, e.g. jettison, jackson
+            final String entity = ServerUtil.asJson(authenticationStatus);
+
+            return Response.status(Response.Status.OK).entity(entity).cacheControl(ServerUtil.cacheControl(true)).build();
+        } catch (Exception ex) {
+            log.error("Exception happened", ex);
+            if (ex instanceof WebApplicationException) {
+                throw (WebApplicationException) ex;
+            }
+
+            try {
+                // If sessionId is not empty update session
+                if (StringHelper.isNotEmpty(sessionId)) {
+                    log.debug("There is session id. Setting session id status to 'declined'");
+                    userSessionIdService.updateUserSessionIdOnError(sessionId);
+                }
+            } catch (Exception ex2) {
+                log.error("Failed to update session id status", ex2);
+            }
+
+            if (ex instanceof BadInputException) {
+                throw new WebApplicationException(Response.status(Response.Status.FORBIDDEN)
+                        .entity(errorResponseFactory.getErrorResponse(U2fErrorResponseType.INVALID_REQUEST)).build());
+            }
+
+            if (ex instanceof DeviceCompromisedException) {
+                DeviceRegistration deviceRegistration = ((DeviceCompromisedException) ex).getDeviceRegistration();
+                try {
+                    deviceRegistrationService.disableUserDeviceRegistration(deviceRegistration);
+                } catch (Exception ex2) {
+                    log.error("Failed to mark device '{}' as compomised", ex2, deviceRegistration.getId());
+                }
+                throw new WebApplicationException(Response.status(Response.Status.FORBIDDEN)
+                        .entity(errorResponseFactory.getErrorResponse(U2fErrorResponseType.DEVICE_COMPROMISED)).build());
+            }
+
+            throw new WebApplicationException(Response.status(Response.Status.INTERNAL_SERVER_ERROR)
+                    .entity(errorResponseFactory.getJsonErrorResponse(U2fErrorResponseType.SERVER_ERROR)).build());
+        }
+    }
+}
diff --git a/oxAuth/Server/src/main/java/org/gluu/oxauth/ws/rs/fido/u2f/U2fConfigurationWS.java b/oxAuth/Server/src/main/java/org/gluu/oxauth/ws/rs/fido/u2f/U2fConfigurationWS.java
new file mode 100644
index 00000000..0ef0b5a9
--- /dev/null
+++ b/oxAuth/Server/src/main/java/org/gluu/oxauth/ws/rs/fido/u2f/U2fConfigurationWS.java
@@ -0,0 +1,72 @@
+/*
+ * oxAuth is available under the MIT License (2008). See http://opensource.org/licenses/MIT for full text.
+ *
+ * Copyright (c) 2015, Gluu
+ */
+
+package org.gluu.oxauth.ws.rs.fido.u2f;
+
+import org.gluu.oxauth.model.configuration.AppConfiguration;
+import org.gluu.oxauth.model.error.ErrorResponseFactory;
+import org.gluu.oxauth.model.fido.u2f.U2fConfiguration;
+import org.gluu.oxauth.model.fido.u2f.U2fErrorResponseType;
+import org.gluu.oxauth.util.ServerUtil;
+import org.slf4j.Logger;
+
+import javax.inject.Inject;
+import javax.ws.rs.GET;
+import javax.ws.rs.Path;
+import javax.ws.rs.Produces;
+import javax.ws.rs.WebApplicationException;
+import javax.ws.rs.core.Response;
+import javax.ws.rs.core.Response.Status;
+
+/**
+ * The endpoint at which the requester can obtain FIDO U2F metadata
+ * configuration
+ *
+ * @author Yuriy Movchan Date: 05/13/2015
+ */
+@Path("/fido-configuration")
+public class U2fConfigurationWS {
+
+	@Inject
+	private Logger log;
+
+	@Inject
+	private AppConfiguration appConfiguration;
+
+	@Inject
+	private ErrorResponseFactory errorResponseFactory;
+
+	@GET
+	@Produces({ "application/json" })
+	public Response getConfiguration() {
+		try {
+		    if (appConfiguration.getDisableU2fEndpoint()) {
+	            return Response.status(Status.FORBIDDEN).build();
+		    }
+
+		    final String baseEndpointUri = appConfiguration.getBaseEndpoint();
+
+			final U2fConfiguration conf = new U2fConfiguration();
+			conf.setVersion("2.1");
+			conf.setIssuer(appConfiguration.getIssuer());
+
+			conf.setRegistrationEndpoint(baseEndpointUri + "/fido/u2f/registration");
+			conf.setAuthenticationEndpoint(baseEndpointUri + "/fido/u2f/authentication");
+
+			// convert manually to avoid possible conflicts between resteasy
+			// providers, e.g. jettison, jackson
+			final String entity = ServerUtil.asPrettyJson(conf);
+			log.trace("FIDO U2F configuration: {}", entity);
+
+			return Response.ok(entity).build();
+		} catch (Throwable ex) {
+			log.error(ex.getMessage(), ex);
+			throw new WebApplicationException(Response.status(Response.Status.INTERNAL_SERVER_ERROR)
+					.entity(errorResponseFactory.errorAsJson(U2fErrorResponseType.SERVER_ERROR, "Unknown.")).build());
+		}
+	}
+
+}
diff --git a/oxAuth/Server/src/main/java/org/gluu/oxauth/ws/rs/fido/u2f/U2fRegistrationWS.java b/oxAuth/Server/src/main/java/org/gluu/oxauth/ws/rs/fido/u2f/U2fRegistrationWS.java
new file mode 100644
index 00000000..01184673
--- /dev/null
+++ b/oxAuth/Server/src/main/java/org/gluu/oxauth/ws/rs/fido/u2f/U2fRegistrationWS.java
@@ -0,0 +1,247 @@
+/*
+ * oxAuth is available under the MIT License (2008). See http://opensource.org/licenses/MIT for full text.
+ *
+ * Copyright (c) 2015, Gluu
+ */
+
+package org.gluu.oxauth.ws.rs.fido.u2f;
+
+import org.gluu.model.custom.script.conf.CustomScriptConfiguration;
+import org.gluu.oxauth.model.common.User;
+import org.gluu.oxauth.model.config.Constants;
+import org.gluu.oxauth.model.configuration.AppConfiguration;
+import org.gluu.oxauth.model.error.ErrorResponseFactory;
+import org.gluu.oxauth.model.fido.u2f.*;
+import org.gluu.oxauth.model.fido.u2f.exception.BadInputException;
+import org.gluu.oxauth.model.fido.u2f.exception.RegistrationNotAllowed;
+import org.gluu.oxauth.model.fido.u2f.protocol.RegisterRequestMessage;
+import org.gluu.oxauth.model.fido.u2f.protocol.RegisterResponse;
+import org.gluu.oxauth.model.fido.u2f.protocol.RegisterStatus;
+import org.gluu.oxauth.model.session.SessionId;
+import org.gluu.oxauth.service.SessionIdService;
+import org.gluu.oxauth.service.common.UserService;
+import org.gluu.oxauth.service.external.ExternalAuthenticationService;
+import org.gluu.oxauth.service.fido.u2f.DeviceRegistrationService;
+import org.gluu.oxauth.service.fido.u2f.RegistrationService;
+import org.gluu.oxauth.service.fido.u2f.UserSessionIdService;
+import org.gluu.oxauth.service.fido.u2f.ValidationService;
+import org.gluu.oxauth.util.ServerUtil;
+import org.gluu.util.StringHelper;
+import org.slf4j.Logger;
+
+import javax.inject.Inject;
+import javax.ws.rs.*;
+import javax.ws.rs.core.Response;
+import javax.ws.rs.core.Response.Status;
+import java.util.List;
+
+/**
+ * The endpoint allows to start and finish U2F registration process
+ *
+ * @author Yuriy Movchan
+ * @version August 9, 2017
+ */
+@Path("/fido/u2f/registration")
+public class U2fRegistrationWS {
+
+    @Inject
+    private Logger log;
+
+    @Inject
+    private AppConfiguration appConfiguration;
+
+    @Inject
+    private UserService userService;
+
+    @Inject
+    private ErrorResponseFactory errorResponseFactory;
+
+    @Inject
+    private RegistrationService u2fRegistrationService;
+
+    @Inject
+    private DeviceRegistrationService deviceRegistrationService;
+
+    @Inject
+    private SessionIdService sessionIdService;
+
+    @Inject
+    private UserSessionIdService userSessionIdService;
+
+    @Inject
+    private ValidationService u2fValidationService;
+
+    @Inject
+    private ExternalAuthenticationService service;
+
+    @GET
+    @Produces({"application/json"})
+    public Response startRegistration(@QueryParam("username") String userName, @QueryParam("application") String appId, @QueryParam("session_id") String sessionId, @QueryParam("enrollment_code") String enrollmentCode) {
+        // Parameter username is deprecated. We uses it only to determine is it's one or two step workflow
+        try {
+            if (appConfiguration.getDisableU2fEndpoint()) {
+                return Response.status(Status.FORBIDDEN).build();
+            }
+
+            log.debug("Startig registration with username '{}' for appId '{}'. session_id '{}', enrollment_code '{}'", userName, appId, sessionId, enrollmentCode);
+
+            String userInum = null;
+
+            boolean sessionBasedEnrollment = false;
+            boolean twoStep = StringHelper.isNotEmpty(userName);
+            if (twoStep) {
+                boolean removeEnrollment = false;
+                if (StringHelper.isNotEmpty(sessionId)) {
+                    boolean valid = u2fValidationService.isValidSessionId(userName, sessionId);
+                    if (!valid) {
+                        throw new BadInputException(String.format("session_id '%s' is invalid", sessionId));
+                    }
+                    sessionBasedEnrollment = true;
+                } else if (StringHelper.isNotEmpty(enrollmentCode)) {
+                    boolean valid = u2fValidationService.isValidEnrollmentCode(userName, enrollmentCode);
+                    if (!valid) {
+                        throw new BadInputException(String.format("enrollment_code '%s' is invalid", enrollmentCode));
+                    }
+                    removeEnrollment = true;
+                } else {
+                    throw new BadInputException("session_id or enrollment_code is mandatory");
+                }
+
+                User user = userService.getUser(userName);
+                userInum = userService.getUserInum(user);
+                if (StringHelper.isEmpty(userInum)) {
+                    throw new BadInputException(String.format("Failed to find user '%s' in LDAP", userName));
+                }
+
+                if (removeEnrollment) {
+                    // We allow to use enrollment code only one time
+                    user.setAttribute(U2fConstants.U2F_ENROLLMENT_CODE_ATTRIBUTE, "");
+                    userService.updateUser(user);
+                }
+            }
+
+            if (sessionBasedEnrollment) {
+                List<DeviceRegistration> deviceRegistrations = deviceRegistrationService.findUserDeviceRegistrations(userInum, appId);
+                if (deviceRegistrations.size() > 0 && !isCurrentAuthenticationLevelCorrespondsToU2fLevel(sessionId)) {
+                    throw new RegistrationNotAllowed(String.format("It's not possible to start registration with user_name and session_id because user '%s' has already enrolled device", userName));
+                }
+            }
+
+            RegisterRequestMessage registerRequestMessage = u2fRegistrationService.builRegisterRequestMessage(appId, userInum);
+            u2fRegistrationService.storeRegisterRequestMessage(registerRequestMessage, userInum, sessionId);
+
+            // Convert manually to avoid possible conflict between resteasy providers, e.g. jettison, jackson
+            final String entity = ServerUtil.asJson(registerRequestMessage);
+
+            return Response.status(Response.Status.OK).entity(entity).cacheControl(ServerUtil.cacheControl(true)).build();
+        } catch (Exception ex) {
+            log.error("Exception happened", ex);
+            if (ex instanceof WebApplicationException) {
+                throw (WebApplicationException) ex;
+            }
+
+            if (ex instanceof RegistrationNotAllowed) {
+                throw new WebApplicationException(Response.status(Response.Status.NOT_ACCEPTABLE)
+                        .entity(errorResponseFactory.getErrorResponse(U2fErrorResponseType.REGISTRATION_NOT_ALLOWED)).build());
+            }
+
+            throw new WebApplicationException(Response.status(Response.Status.INTERNAL_SERVER_ERROR)
+                    .entity(errorResponseFactory.getJsonErrorResponse(U2fErrorResponseType.SERVER_ERROR)).build());
+        }
+    }
+
+    @POST
+    @Produces({"application/json"})
+    public Response finishRegistration(@FormParam("username") String userName, @FormParam("tokenResponse") String registerResponseString) {
+        String sessionId = null;
+        try {
+            if (appConfiguration.getDisableU2fEndpoint()) {
+                return Response.status(Status.FORBIDDEN).build();
+            }
+
+            log.debug("Finishing registration for username '{}' with response '{}'", userName, registerResponseString);
+
+            RegisterResponse registerResponse = ServerUtil.jsonMapperWithWrapRoot().readValue(registerResponseString, RegisterResponse.class);
+
+            String requestId = registerResponse.getRequestId();
+            RegisterRequestMessageLdap registerRequestMessageLdap = u2fRegistrationService.getRegisterRequestMessageByRequestId(requestId);
+            if (registerRequestMessageLdap == null) {
+                throw new WebApplicationException(Response.status(Response.Status.FORBIDDEN)
+                        .entity(errorResponseFactory.getJsonErrorResponse(U2fErrorResponseType.SESSION_EXPIRED)).build());
+            }
+            u2fRegistrationService.removeRegisterRequestMessage(registerRequestMessageLdap);
+
+            String foundUserInum = registerRequestMessageLdap.getUserInum();
+
+            RegisterRequestMessage registerRequestMessage = registerRequestMessageLdap.getRegisterRequestMessage();
+            DeviceRegistrationResult deviceRegistrationResult = u2fRegistrationService.finishRegistration(registerRequestMessage, registerResponse, foundUserInum);
+
+            // If sessionId is not empty update session
+            sessionId = registerRequestMessageLdap.getSessionId();
+            if (StringHelper.isNotEmpty(sessionId)) {
+                log.debug("There is session id. Setting session id attributes");
+
+                boolean oneStep = StringHelper.isEmpty(foundUserInum);
+                userSessionIdService.updateUserSessionIdOnFinishRequest(sessionId, foundUserInum, deviceRegistrationResult, true, oneStep);
+            }
+
+            RegisterStatus registerStatus = new RegisterStatus(Constants.RESULT_SUCCESS, requestId);
+
+            // Convert manually to avoid possible conflict between resteasy providers, e.g. jettison, jackson
+            final String entity = ServerUtil.asJson(registerStatus);
+
+            return Response.status(Response.Status.OK).entity(entity).cacheControl(ServerUtil.cacheControl(true)).build();
+        } catch (Exception ex) {
+            log.error("Exception happened", ex);
+
+            try {
+                // If sessionId is not empty update session
+                if (StringHelper.isNotEmpty(sessionId)) {
+                    log.debug("There is session id. Setting session id status to 'declined'");
+                    userSessionIdService.updateUserSessionIdOnError(sessionId);
+                }
+            } catch (Exception ex2) {
+                log.error("Failed to update session id status", ex2);
+            }
+
+            if (ex instanceof WebApplicationException) {
+                throw (WebApplicationException) ex;
+            }
+
+            if (ex instanceof BadInputException) {
+                throw new WebApplicationException(Response.status(Response.Status.FORBIDDEN)
+                        .entity(errorResponseFactory.getErrorResponse(U2fErrorResponseType.INVALID_REQUEST)).build());
+            }
+
+            throw new WebApplicationException(Response.status(Response.Status.INTERNAL_SERVER_ERROR)
+                    .entity(errorResponseFactory.getJsonErrorResponse(U2fErrorResponseType.SERVER_ERROR)).build());
+        }
+    }
+
+    private boolean isCurrentAuthenticationLevelCorrespondsToU2fLevel(String session) {
+        SessionId sessionId = sessionIdService.getSessionId(session);
+        if (sessionId == null)
+            return false;
+
+        String acrValuesStr = sessionIdService.getAcr(sessionId);
+        if (acrValuesStr == null)
+            return false;
+
+        CustomScriptConfiguration u2fScriptConfiguration = service.getCustomScriptConfigurationByName("u2f");
+        if (u2fScriptConfiguration == null)
+            return false;
+
+        String[] acrValuesArray = acrValuesStr.split(" ");
+        for (String acrValue : acrValuesArray) {
+            CustomScriptConfiguration currentScriptConfiguration = service.getCustomScriptConfigurationByName(acrValue);
+            if (currentScriptConfiguration == null)
+                continue;
+
+            if (currentScriptConfiguration.getLevel() >= u2fScriptConfiguration.getLevel())
+                return true;
+        }
+
+        return false;
+    }
+
+}
diff --git a/oxAuth/Server/src/main/java/org/gluu/oxauth/ws/rs/stat/StatResponse.java b/oxAuth/Server/src/main/java/org/gluu/oxauth/ws/rs/stat/StatResponse.java
new file mode 100644
index 00000000..8f8bb85a
--- /dev/null
+++ b/oxAuth/Server/src/main/java/org/gluu/oxauth/ws/rs/stat/StatResponse.java
@@ -0,0 +1,35 @@
+package org.gluu.oxauth.ws.rs.stat;
+
+import com.fasterxml.jackson.annotation.JsonIgnoreProperties;
+import com.fasterxml.jackson.annotation.JsonProperty;
+import org.jboss.resteasy.annotations.providers.jaxb.IgnoreMediaTypes;
+
+import java.util.HashMap;
+import java.util.Map;
+
+/**
+ * @author Yuriy Zabrovarnyy
+ */
+@IgnoreMediaTypes("application/*+json")
+@JsonIgnoreProperties(ignoreUnknown = true)
+public class StatResponse {
+
+    @JsonProperty(value = "response") // month to stat item
+    private Map<String, StatResponseItem> response = new HashMap<>();
+
+    public Map<String, StatResponseItem> getResponse() {
+        if (response == null) response = new HashMap<>();
+        return response;
+    }
+
+    public void setResponse(Map<String, StatResponseItem> response) {
+        this.response = response;
+    }
+
+    @Override
+    public String toString() {
+        return "StatResponse{" +
+                "response=" + response +
+                '}';
+    }
+}
diff --git a/oxAuth/Server/src/main/java/org/gluu/oxauth/ws/rs/stat/StatResponseItem.java b/oxAuth/Server/src/main/java/org/gluu/oxauth/ws/rs/stat/StatResponseItem.java
new file mode 100644
index 00000000..b4c52e86
--- /dev/null
+++ b/oxAuth/Server/src/main/java/org/gluu/oxauth/ws/rs/stat/StatResponseItem.java
@@ -0,0 +1,43 @@
+package org.gluu.oxauth.ws.rs.stat;
+
+import com.fasterxml.jackson.annotation.JsonProperty;
+
+import java.util.HashMap;
+import java.util.Map;
+
+/**
+ * @author Yuriy Zabrovarnyy
+ */
+public class StatResponseItem {
+
+    @JsonProperty(value = "monthly_active_users")
+    private long monthlyActiveUsers;
+
+    @JsonProperty("token_count_per_granttype")
+    private Map<String, Map<String, Long>> tokenCountPerGrantType;
+
+    public long getMonthlyActiveUsers() {
+        return monthlyActiveUsers;
+    }
+
+    public void setMonthlyActiveUsers(long monthlyActiveUsers) {
+        this.monthlyActiveUsers = monthlyActiveUsers;
+    }
+
+    public Map<String, Map<String, Long>> getTokenCountPerGrantType() {
+        if (tokenCountPerGrantType == null) tokenCountPerGrantType = new HashMap<>();
+        return tokenCountPerGrantType;
+    }
+
+    public void setTokenCountPerGrantType(Map<String, Map<String, Long>> tokenCountPerGrantType) {
+        this.tokenCountPerGrantType = tokenCountPerGrantType;
+    }
+
+    @Override
+    public String toString() {
+        return "StatResponseItem{" +
+                "monthlyActiveUsers=" + monthlyActiveUsers +
+                ", tokenCountPerGrantType=" + tokenCountPerGrantType +
+                '}';
+    }
+}
diff --git a/oxAuth/Server/src/main/java/org/gluu/oxauth/ws/rs/stat/StatWS.java b/oxAuth/Server/src/main/java/org/gluu/oxauth/ws/rs/stat/StatWS.java
new file mode 100644
index 00000000..9492eba6
--- /dev/null
+++ b/oxAuth/Server/src/main/java/org/gluu/oxauth/ws/rs/stat/StatWS.java
@@ -0,0 +1,340 @@
+package org.gluu.oxauth.ws.rs.stat;
+
+import io.prometheus.client.CollectorRegistry;
+import io.prometheus.client.Counter;
+import io.prometheus.client.exporter.common.TextFormat;
+import net.agkn.hll.HLL;
+import org.apache.commons.lang.StringUtils;
+import org.gluu.oxauth.model.common.AbstractToken;
+import org.gluu.oxauth.model.common.AuthorizationGrant;
+import org.gluu.oxauth.model.configuration.AppConfiguration;
+import org.gluu.oxauth.model.error.ErrorResponseFactory;
+import org.gluu.oxauth.model.stat.StatEntry;
+import org.gluu.oxauth.model.token.TokenErrorResponseType;
+import org.gluu.oxauth.security.Identity;
+import org.gluu.oxauth.service.stat.StatService;
+import org.gluu.oxauth.service.token.TokenService;
+import org.gluu.oxauth.util.ServerUtil;
+import org.gluu.persist.PersistenceEntryManager;
+import org.gluu.search.filter.Filter;
+import org.slf4j.Logger;
+
+import javax.enterprise.context.ApplicationScoped;
+import javax.inject.Inject;
+import javax.ws.rs.FormParam;
+import javax.ws.rs.GET;
+import javax.ws.rs.HeaderParam;
+import javax.ws.rs.POST;
+import javax.ws.rs.Path;
+import javax.ws.rs.Produces;
+import javax.ws.rs.QueryParam;
+import javax.ws.rs.WebApplicationException;
+import javax.ws.rs.core.MediaType;
+import javax.ws.rs.core.Response;
+import java.io.IOException;
+import java.io.StringWriter;
+import java.io.Writer;
+import java.util.ArrayList;
+import java.util.Base64;
+import java.util.List;
+import java.util.Map;
+
+/**
+ * Provides server with basic statistic.
+ * <p>
+ * https://github.com/GluuFederation/oxAuth/issues/1512
+ * https://github.com/GluuFederation/oxAuth/issues/1321
+ *
+ * @author Yuriy Zabrovarnyy
+ */
+@ApplicationScoped
+@Path("/internal/stat")
+public class StatWS {
+
+    private static final int DEFAULT_WS_INTERVAL_LIMIT_IN_SECONDS = 60;
+
+    @Inject
+    private Logger log;
+
+    @Inject
+    private PersistenceEntryManager entryManager;
+
+    @Inject
+    private ErrorResponseFactory errorResponseFactory;
+
+    @Inject
+    private Identity identity;
+
+    @Inject
+    private StatService statService;
+
+    @Inject
+    private AppConfiguration appConfiguration;
+
+    @Inject
+    private TokenService tokenService;
+
+    private long lastProcessedAt;
+
+    @GET
+    @Produces(MediaType.APPLICATION_JSON)
+    public Response statGet(@HeaderParam("Authorization") String authorization, @QueryParam("month") String month, @QueryParam("format") String format) {
+        return stat(authorization, month, format);
+    }
+
+    @POST
+    @Produces(MediaType.APPLICATION_JSON)
+    public Response statPost(@HeaderParam("Authorization") String authorization, @FormParam("month") String month, @FormParam("format") String format) {
+        return stat(authorization, month, format);
+    }
+
+    public Response stat(String authorization, String month, String format) {
+        log.debug("Attempting to request stat, month: " + month + ", format: " + format);
+
+        validateAuthorization(authorization);
+        final List<String> months = validateMonth(month);
+
+        if (!allowToRun()) {
+            log.trace("Interval request limit exceeded. Request is rejected. Current interval limit: " + appConfiguration.getStatWebServiceIntervalLimitInSeconds() + " (or 60 seconds if not set).");
+            throw errorResponseFactory.createWebApplicationException(Response.Status.FORBIDDEN, TokenErrorResponseType.ACCESS_DENIED, "Interval request limit exceeded.");
+        }
+
+        lastProcessedAt = System.currentTimeMillis();
+
+        try {
+            log.trace("Recognized months: " + months);
+            final StatResponse statResponse = buildResponse(months);
+
+            final String responseAsStr;
+            if ("openmetrics".equalsIgnoreCase(format)) {
+                responseAsStr = createOpenMetricsResponse(statResponse);
+            } else {
+                responseAsStr = ServerUtil.asJson(statResponse);
+            }
+
+            log.trace("Stat: " + responseAsStr);
+            return Response.ok().entity(responseAsStr).build();
+        } catch (WebApplicationException e) {
+            log.error(e.getMessage(), e);
+            throw e;
+        } catch (Exception e) {
+            log.error(e.getMessage(), e);
+            return Response.status(Response.Status.INTERNAL_SERVER_ERROR).type(MediaType.APPLICATION_JSON_TYPE).build();
+        }
+    }
+
+    private StatResponse buildResponse(List<String> months) {
+        StatResponse response = new StatResponse();
+        for (String month : months) {
+            final StatResponseItem responseItem = buildItem(month);
+            if (responseItem != null) {
+                response.getResponse().put(month, responseItem);
+            }
+        }
+
+        return response;
+    }
+
+    private StatResponseItem buildItem(String month) {
+        try {
+            String monthlyDn = String.format("ou=%s,%s", month, statService.getBaseDn());
+
+            final List<StatEntry> entries = entryManager.findEntries(monthlyDn, StatEntry.class, Filter.createPresenceFilter("jansId"));
+            if (entries == null || entries.isEmpty()) {
+                log.trace("Can't find stat entries for month: " + monthlyDn);
+                return null;
+            }
+
+            final StatResponseItem responseItem = new StatResponseItem();
+            responseItem.setMonthlyActiveUsers(userCardinality(entries));
+
+            unionTokenMapIntoResponseItem(entries, responseItem);
+
+            return responseItem;
+        } catch (Exception e) {
+            log.error(e.getMessage(), e);
+            return null;
+        }
+    }
+
+    private void unionTokenMapIntoResponseItem(List<StatEntry> entries, StatResponseItem responseItem) {
+        for (StatEntry entry : entries) {
+            for (Map.Entry<String, Map<String, Long>> en : entry.getStat().getTokenCountPerGrantType().entrySet()) {
+                if (en.getValue() == null) {
+                    continue;
+                }
+
+                final Map<String, Long> tokenMap = responseItem.getTokenCountPerGrantType().get(en.getKey());
+                if (tokenMap == null) {
+                    responseItem.getTokenCountPerGrantType().put(en.getKey(), en.getValue());
+                    continue;
+                }
+
+                for (Map.Entry<String, Long> tokenEntry : en.getValue().entrySet()) {
+                    final Long counter = tokenMap.get(tokenEntry.getKey());
+                    if (counter == null) {
+                        tokenMap.put(tokenEntry.getKey(), tokenEntry.getValue());
+                        continue;
+                    }
+
+                    tokenMap.put(tokenEntry.getKey(), counter + tokenEntry.getValue());
+                }
+            }
+        }
+    }
+
+    private long userCardinality(List<StatEntry> entries) {
+        HLL hll = decodeHll(entries.get(0));
+
+        // Union hll
+        if (entries.size() > 1) {
+            for (int i = 1; i < entries.size(); i++) {
+                hll.union(decodeHll(entries.get(i)));
+            }
+        }
+        return hll.cardinality();
+    }
+
+    private HLL decodeHll(StatEntry entry) {
+        try {
+            return HLL.fromBytes(Base64.getDecoder().decode(entry.getUserHllData()));
+        } catch (Exception e) {
+            log.error("Failed to decode HLL data, entry dn: " + entry.getDn() + ", data: " + entry.getUserHllData());
+            return statService.newHll();
+        }
+    }
+
+    private void validateAuthorization(String authorization) {
+        log.trace("Validating authorization: " + authorization);
+
+        AuthorizationGrant grant = tokenService.getAuthorizationGrant(authorization);
+        if (grant == null) {
+            log.trace("Unable to find token by authorization: " + authorization);
+            throw errorResponseFactory.createWebApplicationException(Response.Status.UNAUTHORIZED, TokenErrorResponseType.ACCESS_DENIED, "Can't find grant for authorization.");
+        }
+
+        final AbstractToken accessToken = grant.getAccessToken(tokenService.getToken(authorization));
+        if (accessToken == null) {
+            log.trace("Unable to find token by authorization: " + authorization);
+            throw errorResponseFactory.createWebApplicationException(Response.Status.UNAUTHORIZED, TokenErrorResponseType.ACCESS_DENIED, "Can't find access token.");
+        }
+
+        if (accessToken.isExpired()) {
+            log.trace("Access Token is expired: " + accessToken.getCode());
+            throw errorResponseFactory.createWebApplicationException(Response.Status.UNAUTHORIZED, TokenErrorResponseType.ACCESS_DENIED, "Token expired.");
+        }
+
+        if (!grant.getScopesAsString().contains(appConfiguration.getStatAuthorizationScope())) {
+            log.trace("Access Token does NOT have '" + appConfiguration.getStatAuthorizationScope() + "' scope which is required to call Statistic Endpoint.");
+            throw errorResponseFactory.createWebApplicationException(Response.Status.UNAUTHORIZED, TokenErrorResponseType.ACCESS_DENIED, appConfiguration.getStatAuthorizationScope() + " scope is required for token.");
+        }
+    }
+
+    private List<String> validateMonth(String month) {
+        if (StringUtils.isBlank(month)) {
+            throw errorResponseFactory.createWebApplicationException(Response.Status.BAD_REQUEST, TokenErrorResponseType.INVALID_REQUEST, "`month` parameter can't be blank and should be in format yyyyMM (e.g. 202012)");
+        }
+
+        month = ServerUtil.urlDecode(month);
+
+        List<String> months = new ArrayList<>();
+        for (String m : month.split(" ")) {
+            m = m.trim();
+            if (m.length() == 6) {
+                months.add(m);
+            }
+        }
+
+        if (months.isEmpty()) {
+            throw errorResponseFactory.createWebApplicationException(Response.Status.BAD_REQUEST, TokenErrorResponseType.INVALID_REQUEST, "`month` parameter can't be blank and should be in format yyyyMM (e.g. 202012)");
+        }
+
+        return months;
+    }
+
+    private boolean allowToRun() {
+        int interval = appConfiguration.getStatWebServiceIntervalLimitInSeconds();
+        if (interval <= 0) {
+            interval = DEFAULT_WS_INTERVAL_LIMIT_IN_SECONDS;
+        }
+
+        long timerInterval = interval * 1000L;
+
+        long timeDiff = System.currentTimeMillis() - lastProcessedAt;
+
+        return timeDiff >= timerInterval;
+    }
+
+    public static String createOpenMetricsResponse(StatResponse statResponse) throws IOException {
+        Writer writer = new StringWriter();
+        CollectorRegistry registry = new CollectorRegistry();
+
+        final Counter usersCounter = Counter.build()
+                .name("monthly_active_users")
+                .labelNames("month")
+                .help("Monthly active users")
+                .register(registry);
+
+        final Counter accessTokenCounter = Counter.build()
+                .name(StatService.ACCESS_TOKEN_KEY)
+                .labelNames("month", "grantType")
+                .help("Access Token")
+                .register(registry);
+
+        final Counter idTokenCounter = Counter.build()
+                .name(StatService.ID_TOKEN_KEY)
+                .labelNames("month", "grantType")
+                .help("Id Token")
+                .register(registry);
+
+        final Counter refreshTokenCounter = Counter.build()
+                .name(StatService.REFRESH_TOKEN_KEY)
+                .labelNames("month", "grantType")
+                .help("Refresh Token")
+                .register(registry);
+
+        final Counter umaTokenCounter = Counter.build()
+                .name(StatService.UMA_TOKEN_KEY)
+                .labelNames("month", "grantType")
+                .help("UMA Token")
+                .register(registry);
+
+        for (Map.Entry<String, StatResponseItem> entry : statResponse.getResponse().entrySet()) {
+            final String month = entry.getKey();
+            final StatResponseItem item = entry.getValue();
+
+            usersCounter
+                    .labels(month)
+                    .inc(item.getMonthlyActiveUsers());
+
+            for (Map.Entry<String, Map<String, Long>> tokenEntry : item.getTokenCountPerGrantType().entrySet()) {
+                final String grantType = tokenEntry.getKey();
+                final Map<String, Long> tokenMap = tokenEntry.getValue();
+
+                accessTokenCounter
+                        .labels(month, grantType)
+                        .inc(getToken(tokenMap, StatService.ACCESS_TOKEN_KEY));
+
+                idTokenCounter
+                        .labels(month, grantType)
+                        .inc(getToken(tokenMap, StatService.ID_TOKEN_KEY));
+
+                refreshTokenCounter
+                        .labels(month, grantType)
+                        .inc(getToken(tokenMap, StatService.REFRESH_TOKEN_KEY));
+
+                umaTokenCounter
+                        .labels(month, grantType)
+                        .inc(getToken(tokenMap, StatService.UMA_TOKEN_KEY));
+            }
+        }
+
+        TextFormat.write004(writer, registry.metricFamilySamples());
+        return writer.toString();
+    }
+
+    private static long getToken(Map<String, Long> map, String key) {
+        Long v = map.get(key);
+        return v != null ? v : 0;
+    }
+}
diff --git a/oxAuth/Server/src/main/resources/META-INF/beans.xml b/oxAuth/Server/src/main/resources/META-INF/beans.xml
new file mode 100644
index 00000000..fac30a29
--- /dev/null
+++ b/oxAuth/Server/src/main/resources/META-INF/beans.xml
@@ -0,0 +1,7 @@
+<!-- Marker file indicating CDI should be enabled -->
+<beans xmlns="http://xmlns.jcp.org/xml/ns/javaee"
+   xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance"
+   xsi:schemaLocation="
+      http://xmlns.jcp.org/xml/ns/javaee 
+      http://xmlns.jcp.org/xml/ns/javaee/beans_1_1.xsd" bean-discovery-mode="all">
+</beans>
diff --git a/oxAuth/Server/src/main/resources/META-INF/navigation/cas2.navigation.xml b/oxAuth/Server/src/main/resources/META-INF/navigation/cas2.navigation.xml
new file mode 100644
index 00000000..035a7034
--- /dev/null
+++ b/oxAuth/Server/src/main/resources/META-INF/navigation/cas2.navigation.xml
@@ -0,0 +1,41 @@
+<?xml version="1.0" encoding="UTF-8"?>
+<faces-config xmlns="http://xmlns.jcp.org/xml/ns/javaee" xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance"
+              xsi:schemaLocation="http://xmlns.jcp.org/xml/ns/javaee
+        http://xmlns.jcp.org/xml/ns/javaee/web-facesconfig_2_2.xsd" version="2.2">
+
+    <!-- cas2 -->
+    <navigation-rule>
+        <from-view-id>/auth/cas2/cas2login.xhtml</from-view-id>
+
+        <navigation-case>
+            <from-action>#{authenticator.prepareAuthenticationForStep}</from-action>
+            <from-outcome>no_permissions</from-outcome>
+            <to-view-id>/error.xhtml</to-view-id>
+            <redirect/>
+        </navigation-case>
+        <navigation-case>
+            <from-action>#{authenticator.prepareAuthenticationForStep}</from-action>
+            <from-outcome>failure</from-outcome>
+            <to-view-id>/error.xhtml</to-view-id>
+            <redirect/>
+        </navigation-case>
+    </navigation-rule>
+
+    <navigation-rule>
+        <from-view-id>/auth/cas2/cas2postlogin.xhtml</from-view-id>
+
+        <navigation-case>
+            <from-action>#{authenticator.prepareAuthenticationForStep}</from-action>
+            <from-outcome>no_permissions</from-outcome>
+            <to-view-id>/error.xhtml</to-view-id>
+            <redirect/>
+        </navigation-case>
+        <navigation-case>
+            <from-action>#{authenticator.prepareAuthenticationForStep}</from-action>
+            <from-outcome>failure</from-outcome>
+            <to-view-id>/error.xhtml</to-view-id>
+            <redirect/>
+        </navigation-case>
+    </navigation-rule>
+
+</faces-config>
\ No newline at end of file
diff --git a/oxAuth/Server/src/main/resources/META-INF/navigation/cert.navigation.xml b/oxAuth/Server/src/main/resources/META-INF/navigation/cert.navigation.xml
new file mode 100644
index 00000000..0d6d38e8
--- /dev/null
+++ b/oxAuth/Server/src/main/resources/META-INF/navigation/cert.navigation.xml
@@ -0,0 +1,53 @@
+<?xml version="1.0" encoding="UTF-8"?>
+<faces-config xmlns="http://xmlns.jcp.org/xml/ns/javaee" xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance"
+              xsi:schemaLocation="http://xmlns.jcp.org/xml/ns/javaee
+        http://xmlns.jcp.org/xml/ns/javaee/web-facesconfig_2_2.xsd" version="2.2">
+
+    <!-- cert -->
+    <navigation-rule>
+        <from-view-id>/auth/cert/cert-login.xhtml</from-view-id>
+
+        <navigation-case>
+            <from-action>#{authenticator.prepareAuthenticationForStep}</from-action>
+            <from-outcome>success</from-outcome>
+            <to-view-id>/postlogin.xhtml</to-view-id>
+            <redirect/>
+        </navigation-case>
+        <navigation-case>
+            <from-action>#{authenticator.prepareAuthenticationForStep}</from-action>
+            <from-outcome>no_permissions</from-outcome>
+            <to-view-id>/error.xhtml</to-view-id>
+            <redirect/>
+        </navigation-case>
+        <navigation-case>
+            <from-action>#{authenticator.prepareAuthenticationForStep}</from-action>
+            <from-outcome>failure</from-outcome>
+            <to-view-id>/error.xhtml</to-view-id>
+            <redirect/>
+        </navigation-case>
+        <navigation-case>
+            <from-action>#{authenticator.prepareAuthenticationForStep}</from-action>
+            <from-outcome>expired</from-outcome>
+            <to-view-id>/error.xhtml</to-view-id>
+            <redirect/>
+        </navigation-case>
+    </navigation-rule>
+
+    <navigation-rule>
+        <from-view-id>/auth/cert/login.xhtml</from-view-id>
+
+        <navigation-case>
+            <from-action>#{authenticator.prepareAuthenticationForStep}</from-action>
+            <from-outcome>no_permissions</from-outcome>
+            <to-view-id>/error.xhtml</to-view-id>
+            <redirect/>
+        </navigation-case>
+        <navigation-case>
+            <from-action>#{authenticator.prepareAuthenticationForStep}</from-action>
+            <from-outcome>failure</from-outcome>
+            <to-view-id>/error.xhtml</to-view-id>
+            <redirect/>
+        </navigation-case>
+    </navigation-rule>
+
+</faces-config>
\ No newline at end of file
diff --git a/oxAuth/Server/src/main/resources/META-INF/navigation/duo.navigation.xml b/oxAuth/Server/src/main/resources/META-INF/navigation/duo.navigation.xml
new file mode 100644
index 00000000..1024fba6
--- /dev/null
+++ b/oxAuth/Server/src/main/resources/META-INF/navigation/duo.navigation.xml
@@ -0,0 +1,24 @@
+<?xml version="1.0" encoding="UTF-8"?>
+<faces-config xmlns="http://xmlns.jcp.org/xml/ns/javaee" xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance"
+              xsi:schemaLocation="http://xmlns.jcp.org/xml/ns/javaee
+        http://xmlns.jcp.org/xml/ns/javaee/web-facesconfig_2_2.xsd" version="2.2">
+
+    <!-- duo -->
+    <navigation-rule>
+        <from-view-id>/auth/duo/duologin.xhtml</from-view-id>
+
+        <navigation-case>
+            <from-action>#{authenticator.prepareAuthenticationForStep}</from-action>
+            <from-outcome>no_permissions</from-outcome>
+            <to-view-id>/error.xhtml</to-view-id>
+            <redirect/>
+        </navigation-case>
+        <navigation-case>
+            <from-action>#{authenticator.prepareAuthenticationForStep}</from-action>
+            <from-outcome>failure</from-outcome>
+            <to-view-id>/error.xhtml</to-view-id>
+            <redirect/>
+        </navigation-case>
+    </navigation-rule>
+
+</faces-config>
\ No newline at end of file
diff --git a/oxAuth/Server/src/main/resources/META-INF/navigation/gplus.navigation.xml b/oxAuth/Server/src/main/resources/META-INF/navigation/gplus.navigation.xml
new file mode 100644
index 00000000..08609e71
--- /dev/null
+++ b/oxAuth/Server/src/main/resources/META-INF/navigation/gplus.navigation.xml
@@ -0,0 +1,41 @@
+<?xml version="1.0" encoding="UTF-8"?>
+<faces-config xmlns="http://xmlns.jcp.org/xml/ns/javaee" xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance"
+              xsi:schemaLocation="http://xmlns.jcp.org/xml/ns/javaee
+        http://xmlns.jcp.org/xml/ns/javaee/web-facesconfig_2_2.xsd" version="2.2">
+
+    <!-- gplus -->
+    <navigation-rule>
+        <from-view-id>/auth/gplus/gpluslogin.xhtml</from-view-id>
+
+        <navigation-case>
+            <from-action>#{authenticator.prepareAuthenticationForStep}</from-action>
+            <from-outcome>no_permissions</from-outcome>
+            <to-view-id>/error.xhtml</to-view-id>
+            <redirect/>
+        </navigation-case>
+        <navigation-case>
+            <from-action>#{authenticator.prepareAuthenticationForStep}</from-action>
+            <from-outcome>failure</from-outcome>
+            <to-view-id>/error.xhtml</to-view-id>
+            <redirect/>
+        </navigation-case>
+    </navigation-rule>
+
+    <navigation-rule>
+        <from-view-id>/auth/gplus/gpluspostlogin.xhtml</from-view-id>
+
+        <navigation-case>
+            <from-action>#{authenticator.prepareAuthenticationForStep}</from-action>
+            <from-outcome>no_permissions</from-outcome>
+            <to-view-id>/error.xhtml</to-view-id>
+            <redirect/>
+        </navigation-case>
+        <navigation-case>
+            <from-action>#{authenticator.prepareAuthenticationForStep}</from-action>
+            <from-outcome>failure</from-outcome>
+            <to-view-id>/error.xhtml</to-view-id>
+            <redirect/>
+        </navigation-case>
+    </navigation-rule>
+
+</faces-config>
\ No newline at end of file
diff --git a/oxAuth/Server/src/main/resources/META-INF/navigation/otp.navigation.xml b/oxAuth/Server/src/main/resources/META-INF/navigation/otp.navigation.xml
new file mode 100644
index 00000000..6e5df22d
--- /dev/null
+++ b/oxAuth/Server/src/main/resources/META-INF/navigation/otp.navigation.xml
@@ -0,0 +1,42 @@
+<?xml version="1.0" encoding="UTF-8"?>
+<faces-config xmlns="http://xmlns.jcp.org/xml/ns/javaee" xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance"
+              xsi:schemaLocation="http://xmlns.jcp.org/xml/ns/javaee
+        http://xmlns.jcp.org/xml/ns/javaee/web-facesconfig_2_2.xsd" version="2.2">
+
+    <!-- otp -->
+    <navigation-rule>
+        <from-view-id>/auth/otp/enroll.xhtml</from-view-id>
+
+        <navigation-case>
+            <from-action>#{authenticator.prepareAuthenticationForStep}</from-action>
+            <from-outcome>no_permissions</from-outcome>
+            <to-view-id>/error.xhtml</to-view-id>
+            <redirect/>
+        </navigation-case>
+        <navigation-case>
+            <from-action>#{authenticator.prepareAuthenticationForStep}</from-action>
+            <from-outcome>failure</from-outcome>
+            <to-view-id>/error.xhtml</to-view-id>
+            <redirect/>
+        </navigation-case>
+    </navigation-rule>
+
+    <navigation-rule>
+        <from-view-id>/auth/otp/otplogin.xhtml</from-view-id>
+
+        <navigation-case>
+            <from-action>#{authenticator.prepareAuthenticationForStep}</from-action>
+            <from-outcome>no_permissions</from-outcome>
+            <to-view-id>/error.xhtml</to-view-id>
+            <redirect/>
+        </navigation-case>
+        <navigation-case>
+            <from-action>#{authenticator.prepareAuthenticationForStep}</from-action>
+            <from-outcome>failure</from-outcome>
+            <to-view-id>/error.xhtml</to-view-id>
+            <redirect/>
+        </navigation-case>
+    </navigation-rule>
+
+
+</faces-config>
\ No newline at end of file
diff --git a/oxAuth/Server/src/main/resources/META-INF/navigation/oxpush.navigation.xml b/oxAuth/Server/src/main/resources/META-INF/navigation/oxpush.navigation.xml
new file mode 100644
index 00000000..51e20c0b
--- /dev/null
+++ b/oxAuth/Server/src/main/resources/META-INF/navigation/oxpush.navigation.xml
@@ -0,0 +1,58 @@
+<?xml version="1.0" encoding="UTF-8"?>
+<faces-config xmlns="http://xmlns.jcp.org/xml/ns/javaee" xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance"
+              xsi:schemaLocation="http://xmlns.jcp.org/xml/ns/javaee
+        http://xmlns.jcp.org/xml/ns/javaee/web-facesconfig_2_2.xsd" version="2.2">
+
+    <!-- oxpush -->
+    <navigation-rule>
+        <from-view-id>/auth/oxpush/oxauthenticate.xhtml</from-view-id>
+
+        <navigation-case>
+            <from-action>#{authenticator.prepareAuthenticationForStep}</from-action>
+            <from-outcome>no_permissions</from-outcome>
+            <to-view-id>/error.xhtml</to-view-id>
+            <redirect/>
+        </navigation-case>
+        <navigation-case>
+            <from-action>#{authenticator.prepareAuthenticationForStep}</from-action>
+            <from-outcome>failure</from-outcome>
+            <to-view-id>/error.xhtml</to-view-id>
+            <redirect/>
+        </navigation-case>
+    </navigation-rule>
+
+    <navigation-rule>
+        <from-view-id>/auth/oxpush/oxlogin.xhtml</from-view-id>
+
+        <navigation-case>
+            <from-action>#{authenticator.prepareAuthenticationForStep}</from-action>
+            <from-outcome>no_permissions</from-outcome>
+            <to-view-id>/error.xhtml</to-view-id>
+            <redirect/>
+        </navigation-case>
+        <navigation-case>
+            <from-action>#{authenticator.prepareAuthenticationForStep}</from-action>
+            <from-outcome>failure</from-outcome>
+            <to-view-id>/error.xhtml</to-view-id>
+            <redirect/>
+        </navigation-case>
+    </navigation-rule>
+
+    <navigation-rule>
+        <from-view-id>/auth/oxpush/oxpair.xhtml</from-view-id>
+
+        <navigation-case>
+            <from-action>#{authenticator.prepareAuthenticationForStep}</from-action>
+            <from-outcome>no_permissions</from-outcome>
+            <to-view-id>/error.xhtml</to-view-id>
+            <redirect/>
+        </navigation-case>
+        <navigation-case>
+            <from-action>#{authenticator.prepareAuthenticationForStep}</from-action>
+            <from-outcome>failure</from-outcome>
+            <to-view-id>/error.xhtml</to-view-id>
+            <redirect/>
+        </navigation-case>
+    </navigation-rule>
+
+</faces-config>
\ No newline at end of file
diff --git a/oxAuth/Server/src/main/resources/META-INF/navigation/passport.navigation.xml b/oxAuth/Server/src/main/resources/META-INF/navigation/passport.navigation.xml
new file mode 100644
index 00000000..a12902b0
--- /dev/null
+++ b/oxAuth/Server/src/main/resources/META-INF/navigation/passport.navigation.xml
@@ -0,0 +1,47 @@
+<?xml version="1.0" encoding="UTF-8"?>
+<faces-config xmlns="http://xmlns.jcp.org/xml/ns/javaee" xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance"
+              xsi:schemaLocation="http://xmlns.jcp.org/xml/ns/javaee
+        http://xmlns.jcp.org/xml/ns/javaee/web-facesconfig_2_2.xsd" version="2.2">
+
+    <!-- passport -->
+    <navigation-rule>
+        <from-view-id>/auth/passport/passportlogin.xhtml</from-view-id>
+
+        <navigation-case>
+            <from-action>#{authenticator.prepareAuthenticationForStep}</from-action>
+            <from-outcome>no_permissions</from-outcome>
+            <to-view-id>/error.xhtml</to-view-id>
+            <redirect/>
+        </navigation-case>
+        <navigation-case>
+            <from-action>#{authenticator.prepareAuthenticationForStep}</from-action>
+            <from-outcome>failure</from-outcome>
+            <to-view-id>/error.xhtml</to-view-id>
+            <redirect/>
+        </navigation-case>
+        <navigation-case>
+            <from-action>#{authenticator.prepareAuthenticationForStep}</from-action>
+            <from-outcome>expired</from-outcome>
+            <to-view-id>/error.xhtml</to-view-id>
+            <redirect/>
+        </navigation-case>
+    </navigation-rule>
+
+    <navigation-rule>
+        <from-view-id>/auth/passport/passportpostlogin.xhtml</from-view-id>
+
+        <navigation-case>
+            <from-action>#{authenticator.prepareAuthenticationForStep}</from-action>
+            <from-outcome>no_permissions</from-outcome>
+            <to-view-id>/error.xhtml</to-view-id>
+            <redirect/>
+        </navigation-case>
+        <navigation-case>
+            <from-action>#{authenticator.prepareAuthenticationForStep}</from-action>
+            <from-outcome>failure</from-outcome>
+            <to-view-id>/error.xhtml</to-view-id>
+            <redirect/>
+        </navigation-case>
+    </navigation-rule>
+
+</faces-config>
\ No newline at end of file
diff --git a/oxAuth/Server/src/main/resources/META-INF/navigation/saml.navigation.xml b/oxAuth/Server/src/main/resources/META-INF/navigation/saml.navigation.xml
new file mode 100644
index 00000000..d38d9f46
--- /dev/null
+++ b/oxAuth/Server/src/main/resources/META-INF/navigation/saml.navigation.xml
@@ -0,0 +1,41 @@
+<?xml version="1.0" encoding="UTF-8"?>
+<faces-config xmlns="http://xmlns.jcp.org/xml/ns/javaee" xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance"
+              xsi:schemaLocation="http://xmlns.jcp.org/xml/ns/javaee
+        http://xmlns.jcp.org/xml/ns/javaee/web-facesconfig_2_2.xsd" version="2.2">
+
+    <!-- saml -->
+    <navigation-rule>
+        <from-view-id>/auth/saml/samllogin.xhtml</from-view-id>
+
+        <navigation-case>
+            <from-action>#{authenticator.prepareAuthenticationForStep}</from-action>
+            <from-outcome>no_permissions</from-outcome>
+            <to-view-id>/error.xhtml</to-view-id>
+            <redirect/>
+        </navigation-case>
+        <navigation-case>
+            <from-action>#{authenticator.prepareAuthenticationForStep}</from-action>
+            <from-outcome>failure</from-outcome>
+            <to-view-id>/error.xhtml</to-view-id>
+            <redirect/>
+        </navigation-case>
+    </navigation-rule>
+
+    <navigation-rule>
+        <from-view-id>/auth/saml/samlpostlogin.xhtml</from-view-id>
+
+        <navigation-case>
+            <from-action>#{authenticator.prepareAuthenticationForStep}</from-action>
+            <from-outcome>no_permissions</from-outcome>
+            <to-view-id>/error.xhtml</to-view-id>
+            <redirect/>
+        </navigation-case>
+        <navigation-case>
+            <from-action>#{authenticator.prepareAuthenticationForStep}</from-action>
+            <from-outcome>failure</from-outcome>
+            <to-view-id>/error.xhtml</to-view-id>
+            <redirect/>
+        </navigation-case>
+    </navigation-rule>
+
+</faces-config>
\ No newline at end of file
diff --git a/oxAuth/Server/src/main/resources/META-INF/navigation/super-gluu.navigation.xml b/oxAuth/Server/src/main/resources/META-INF/navigation/super-gluu.navigation.xml
new file mode 100644
index 00000000..d207d5d8
--- /dev/null
+++ b/oxAuth/Server/src/main/resources/META-INF/navigation/super-gluu.navigation.xml
@@ -0,0 +1,24 @@
+<?xml version="1.0" encoding="UTF-8"?>
+<faces-config xmlns="http://xmlns.jcp.org/xml/ns/javaee" xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance"
+              xsi:schemaLocation="http://xmlns.jcp.org/xml/ns/javaee
+        http://xmlns.jcp.org/xml/ns/javaee/web-facesconfig_2_2.xsd" version="2.2">
+
+    <!-- super-gluu -->
+    <navigation-rule>
+        <from-view-id>/auth/super-gluu/login.xhtml</from-view-id>
+
+        <navigation-case>
+            <from-action>#{authenticator.prepareAuthenticationForStep}</from-action>
+            <from-outcome>no_permissions</from-outcome>
+            <to-view-id>/error.xhtml</to-view-id>
+            <redirect/>
+        </navigation-case>
+        <navigation-case>
+            <from-action>#{authenticator.prepareAuthenticationForStep}</from-action>
+            <from-outcome>failure</from-outcome>
+            <to-view-id>/error.xhtml</to-view-id>
+            <redirect/>
+        </navigation-case>
+    </navigation-rule>
+
+</faces-config>
\ No newline at end of file
diff --git a/oxAuth/Server/src/main/resources/META-INF/navigation/u2f.navigation.xml b/oxAuth/Server/src/main/resources/META-INF/navigation/u2f.navigation.xml
new file mode 100644
index 00000000..140ff23e
--- /dev/null
+++ b/oxAuth/Server/src/main/resources/META-INF/navigation/u2f.navigation.xml
@@ -0,0 +1,24 @@
+<?xml version="1.0" encoding="UTF-8"?>
+<faces-config xmlns="http://xmlns.jcp.org/xml/ns/javaee" xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance"
+              xsi:schemaLocation="http://xmlns.jcp.org/xml/ns/javaee
+        http://xmlns.jcp.org/xml/ns/javaee/web-facesconfig_2_2.xsd" version="2.2">
+
+    <!-- u2f -->
+    <navigation-rule>
+        <from-view-id>/auth/u2f/login.xhtml</from-view-id>
+
+        <navigation-case>
+            <from-action>#{authenticator.prepareAuthenticationForStep}</from-action>
+            <from-outcome>no_permissions</from-outcome>
+            <to-view-id>/error.xhtml</to-view-id>
+            <redirect/>
+        </navigation-case>
+        <navigation-case>
+            <from-action>#{authenticator.prepareAuthenticationForStep}</from-action>
+            <from-outcome>failure</from-outcome>
+            <to-view-id>/error.xhtml</to-view-id>
+            <redirect/>
+        </navigation-case>
+    </navigation-rule>
+
+</faces-config>
\ No newline at end of file
diff --git a/oxAuth/Server/src/main/resources/META-INF/navigation/uaf.navigation.xml b/oxAuth/Server/src/main/resources/META-INF/navigation/uaf.navigation.xml
new file mode 100644
index 00000000..b60f6660
--- /dev/null
+++ b/oxAuth/Server/src/main/resources/META-INF/navigation/uaf.navigation.xml
@@ -0,0 +1,24 @@
+<?xml version="1.0" encoding="UTF-8"?>
+<faces-config xmlns="http://xmlns.jcp.org/xml/ns/javaee" xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance"
+              xsi:schemaLocation="http://xmlns.jcp.org/xml/ns/javaee
+        http://xmlns.jcp.org/xml/ns/javaee/web-facesconfig_2_2.xsd" version="2.2">
+
+    <!-- uaf -->
+    <navigation-rule>
+        <from-view-id>/auth/uaf/login.xhtml</from-view-id>
+
+        <navigation-case>
+            <from-action>#{authenticator.prepareAuthenticationForStep}</from-action>
+            <from-outcome>no_permissions</from-outcome>
+            <to-view-id>/error.xhtml</to-view-id>
+            <redirect/>
+        </navigation-case>
+        <navigation-case>
+            <from-action>#{authenticator.prepareAuthenticationForStep}</from-action>
+            <from-outcome>failure</from-outcome>
+            <to-view-id>/error.xhtml</to-view-id>
+            <redirect/>
+        </navigation-case>
+    </navigation-rule>
+
+</faces-config>
\ No newline at end of file
diff --git a/oxAuth/Server/src/main/resources/META-INF/navigation/uma2.sample.navigation.xml b/oxAuth/Server/src/main/resources/META-INF/navigation/uma2.sample.navigation.xml
new file mode 100644
index 00000000..79298ab0
--- /dev/null
+++ b/oxAuth/Server/src/main/resources/META-INF/navigation/uma2.sample.navigation.xml
@@ -0,0 +1,40 @@
+<?xml version="1.0" encoding="UTF-8"?>
+<faces-config xmlns="http://xmlns.jcp.org/xml/ns/javaee" xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance"
+              xsi:schemaLocation="http://xmlns.jcp.org/xml/ns/javaee
+        http://xmlns.jcp.org/xml/ns/javaee/web-facesconfig_2_2.xsd" version="2.2">
+
+  <navigation-rule>
+    <from-view-id>/uma2/sample/country.xhtml</from-view-id>
+
+    <navigation-case>
+      <from-action>#{gatherer.prepareForStep}</from-action>
+      <from-outcome>invalid_step</from-outcome>
+      <to-view-id>/error.xhtml</to-view-id>
+      <redirect/>
+    </navigation-case>
+    <navigation-case>
+      <from-action>#{gatherer.prepareForStep}</from-action>
+      <from-outcome>failure</from-outcome>
+      <to-view-id>/error.xhtml</to-view-id>
+      <redirect/>
+    </navigation-case>
+  </navigation-rule>
+
+  <navigation-rule>
+    <from-view-id>/uma2/sample/city.xhtml</from-view-id>
+
+    <navigation-case>
+      <from-action>#{gatherer.prepareForStep}</from-action>
+      <from-outcome>invalid_step</from-outcome>
+      <to-view-id>/error.xhtml</to-view-id>
+      <redirect/>
+    </navigation-case>
+    <navigation-case>
+      <from-action>#{gatherer.prepareForStep}</from-action>
+      <from-outcome>failure</from-outcome>
+      <to-view-id>/error.xhtml</to-view-id>
+      <redirect/>
+    </navigation-case>
+  </navigation-rule>
+
+</faces-config>
\ No newline at end of file
diff --git a/oxAuth/Server/src/main/resources/META-INF/services/javax.faces.application.ApplicationConfigurationPopulator b/oxAuth/Server/src/main/resources/META-INF/services/javax.faces.application.ApplicationConfigurationPopulator
new file mode 100644
index 00000000..0daa9b90
--- /dev/null
+++ b/oxAuth/Server/src/main/resources/META-INF/services/javax.faces.application.ApplicationConfigurationPopulator
@@ -0,0 +1 @@
+org.gluu.oxauth.i18n.ApplicationFacesLocalizationConfigPopulator
\ No newline at end of file
diff --git a/oxAuth/Server/src/main/resources/ehcache.xml b/oxAuth/Server/src/main/resources/ehcache.xml
new file mode 100644
index 00000000..ae7513b3
--- /dev/null
+++ b/oxAuth/Server/src/main/resources/ehcache.xml
@@ -0,0 +1,141 @@
+<ehcache xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" xsi:noNamespaceSchemaLocation="ehcache.xsd">
+
+    <!--
+    DiskStore configuration
+
+    Sets the path to the directory where cache files are created.
+
+    If the path is a Java System Property it is replaced by its value in the
+    running VM.
+
+    The following properties are translated:
+    * user.home - User's home directory
+    * user.dir - User's current working directory
+    * java.io.tmpdir - Default temp file path
+
+    Subdirectories can be specified below the property e.g. java.io.tmpdir/one
+    -->
+    <diskStore path="java.io.tmpdir"/>
+
+
+    <!-- Cache configuration.
+
+    The following attributes are required.
+
+    name:
+    Sets the name of the cache. This is used to identify the cache. It must be unique.
+
+    maxElementsInMemory:
+    Sets the maximum number of objects that will be created in memory
+
+        maxElementsOnDisk:
+    Sets the maximum number of objects that will be maintained in the DiskStore
+        The default value is zero, meaning unlimited.
+
+    eternal:
+    Sets whether elements are eternal. If eternal,  timeouts are ignored and the
+    element is never expired.
+
+    overflowToDisk:
+    Sets whether elements can overflow to disk when the memory store
+    has reached the maxInMemory limit.
+
+    The following attributes are optional.
+
+    timeToIdleSeconds:
+    Sets the time to idle for an element before it expires.
+    i.e. The maximum amount of time between accesses before an element expires
+    Is only used if the element is not eternal.
+    Optional attribute. A value of 0 means that an Element can idle for infinity.
+    The default value is 0.
+
+    timeToLiveSeconds:
+    Sets the time to live for an element before it expires.
+    i.e. The maximum time between creation time and when an element expires.
+    Is only used if the element is not eternal.
+    Optional attribute. A value of 0 means that and Element can live for infinity.
+    The default value is 0.
+
+    diskPersistent:
+    Whether the disk store persists between restarts of the Virtual Machine.
+    The default value is false.
+
+    diskExpiryThreadIntervalSeconds:
+    The number of seconds between runs of the disk expiry thread. The default value
+    is 120 seconds.
+
+    memoryStoreEvictionPolicy:
+    Policy would be enforced upon reaching the maxElementsInMemory limit. Default
+    policy is Least Recently Used (specified as LRU). Other policies available -
+    First In First Out (specified as FIFO) and Less Frequently Used
+    (specified as LFU)
+
+    -->
+
+    <!--
+    Mandatory Default Cache configuration. These settings will be applied to caches
+    created programmtically using CacheManager.add(String cacheName)
+    -->
+    <defaultCache
+            maxElementsInMemory="10000"
+            eternal="false"
+            timeToIdleSeconds="600"
+            timeToLiveSeconds="600"
+            overflowToDisk="false"
+            memoryStoreEvictionPolicy="LRU"
+            />
+<!--
+    <cache name="org.hibernate.cache.StandardQueryCache"
+           maxElementsInMemory="100"
+           eternal="false"
+           overflowToDisk="false"
+           timeToIdleSeconds="300"
+           timeToLiveSeconds="600"
+           memoryStoreEvictionPolicy="LRU"/>
+
+    <cache name="org.hibernate.cache.UpdateTimestampsCache"
+           maxElementsInMemory="1000"
+           eternal="true"
+           overflowToDisk="false"/>
+-->
+    <cache name="ClientCache"
+           maxElementsInMemory="200"
+           eternal="false"
+           overflowToDisk="false"
+           timeToIdleSeconds="20"
+           timeToLiveSeconds="30"
+           memoryStoreEvictionPolicy="LRU"/>
+
+    <cache name="ClientFilterCache"
+           maxElementsInMemory="200"
+           eternal="false"
+           overflowToDisk="false"
+           timeToIdleSeconds="20"
+           timeToLiveSeconds="30"
+           memoryStoreEvictionPolicy="LRU"/>
+
+    <cache name="AttributeCache"
+           maxElementsInMemory="200"
+           eternal="false"
+           overflowToDisk="false"
+           timeToIdleSeconds="20"
+           timeToLiveSeconds="30"
+           memoryStoreEvictionPolicy="LRU"/>
+
+    <cache name="ScopeCache"
+           maxElementsInMemory="200"
+           eternal="false"
+           overflowToDisk="false"
+           timeToIdleSeconds="20"
+           timeToLiveSeconds="30"
+           memoryStoreEvictionPolicy="LRU"/>
+
+    <cache name="LookupCache"
+           maxElementsInMemory="200"
+           eternal="false"
+           overflowToDisk="false"
+           timeToIdleSeconds="20"
+           timeToLiveSeconds="30"
+           memoryStoreEvictionPolicy="LRU"/>
+
+</ehcache>
\ No newline at end of file
diff --git a/oxAuth/Server/src/main/resources/faces-config.xml b/oxAuth/Server/src/main/resources/faces-config.xml
new file mode 100644
index 00000000..e052d20a
--- /dev/null
+++ b/oxAuth/Server/src/main/resources/faces-config.xml
@@ -0,0 +1,7 @@
+<?xml version="1.0" encoding="UTF-8"?>
+<faces-config
+    xmlns="http://java.sun.com/xml/ns/javaee"
+    xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance"
+    xsi:schemaLocation="http://java.sun.com/xml/ns/javaee http://java.sun.com/xml/ns/javaee/web-facesconfig_2_0.xsd"
+    version="2.0">
+</faces-config>
diff --git a/oxAuth/Server/src/main/resources/log4j2.xml b/oxAuth/Server/src/main/resources/log4j2.xml
new file mode 100644
index 00000000..53d9e924
--- /dev/null
+++ b/oxAuth/Server/src/main/resources/log4j2.xml
@@ -0,0 +1,174 @@
+<?xml version="1.0" encoding="UTF-8"?>
+
+<Configuration packages="org.gluu.log">
+	<Appenders>
+		<Console name="STDOUT" target="SYSTEM_OUT">
+			<PatternLayout pattern="%d %-5p [%t] [%C{6}] (%F:%L) - %m%n" />
+		</Console>
+
+		<RollingFile name="OX_HTTP_REQUEST_RESPONSE_FILE" fileName="${sys:log.base}/logs/http_request_response.log" filePattern="${sys:log.base}/logs/http_request_response-%d{yyyy-MM-dd}-%i.log">
+
+			<PatternLayout pattern="%d %-5p [%t] [%C{6}] (%F:%L) - %m%n" />
+
+			<Policies>
+				<TimeBasedTriggeringPolicy interval="1" modulate="true" />
+				<SizeBasedTriggeringPolicy size="250 MB" />
+			</Policies>
+			<DefaultRolloverStrategy max="30" />
+		</RollingFile>
+
+		<RollingFile name="FILE" fileName="${sys:log.base}/logs/oxauth.log" filePattern="${sys:log.base}/logs/oxauth-%d{yyyy-MM-dd}-%i.log">
+
+			<PatternLayout pattern="%d %-5p [%t] [%C{6}] (%F:%L) - %m%n" />
+
+			<Policies>
+				<TimeBasedTriggeringPolicy interval="1" modulate="true" />
+				<SizeBasedTriggeringPolicy size="250 MB" />
+			</Policies>
+			<DefaultRolloverStrategy max="30" />
+		</RollingFile>
+
+		<RollingFile name="OX_PERSISTENCE_FILE" fileName="${sys:log.base}/logs/oxauth_persistence.log" filePattern="${sys:log.base}/logs/oxauth_persistence-%d{yyyy-MM-dd}-%i.log">
+
+			<PatternLayout pattern="%d %-5p [%t] [%C{6}] (%F:%L) - %m%n" />
+
+			<Policies>
+				<TimeBasedTriggeringPolicy interval="1" modulate="true" />
+				<SizeBasedTriggeringPolicy size="250 MB" />
+			</Policies>
+			<DefaultRolloverStrategy max="30" />
+		</RollingFile>
+
+		<RollingFile name="OX_PERSISTENCE_DURATION_FILE" fileName="${sys:log.base}/logs/oxauth_persistence_duration.log" filePattern="${sys:log.base}/logs/oxauth_persistence_duration-%d{yyyy-MM-dd}-%i.log">
+
+			<PatternLayout pattern="%d %-5p [%t] [%C{6}] (%F:%L) - %m%n" />
+
+			<Policies>
+				<TimeBasedTriggeringPolicy interval="1" modulate="true" />
+				<SizeBasedTriggeringPolicy size="250 MB" />
+			</Policies>
+			<DefaultRolloverStrategy max="30" />
+		</RollingFile>
+
+		<RollingFile name="OX_PERSISTENCE_LDAP_STATISTICS_FILE" fileName="${sys:log.base}/logs/oxauth_persistence_ldap_statistics.log"
+			filePattern="${sys:log.base}/logs/oxauth_persistence_ldap_statistics-%d{yyyy-MM-dd}-%i.log">
+
+			<PatternLayout pattern="%d %-5p [%t] [%C{6}] (%F:%L) - %m%n" />
+
+			<Policies>
+				<TimeBasedTriggeringPolicy interval="1" modulate="true" />
+				<SizeBasedTriggeringPolicy size="250 MB" />
+			</Policies>
+			<DefaultRolloverStrategy max="30" />
+		</RollingFile>
+
+		<RollingFile name="OX_SCRIPT_LOG_FILE" fileName="${sys:log.base}/logs/oxauth_script.log" filePattern="${sys:log.base}/logs/oxauth_script-%d{yyyy-MM-dd}-%i.log">
+
+			<PatternLayout pattern="%d %-5p [%t] [%C{6}] (%F:%L) - %m%n" />
+
+			<Policies>
+				<TimeBasedTriggeringPolicy interval="1" modulate="true" />
+				<SizeBasedTriggeringPolicy size="250 MB" />
+			</Policies>
+			<DefaultRolloverStrategy max="30" />
+		</RollingFile>
+
+		<RollingFile name="CLEANER" fileName="${sys:log.base}/logs/oxauth_cleaner.log" filePattern="${sys:log.base}/logs/oxauth-%d{yyyy-MM-dd}-%i.log">
+			<PatternLayout pattern="%d %-5p [%t] [%C{6}] (%F:%L) - %m%n" />
+
+			<Policies>
+				<TimeBasedTriggeringPolicy interval="1" modulate="true" />
+				<SizeBasedTriggeringPolicy size="250 MB" />
+			</Policies>
+			<DefaultRolloverStrategy max="30" />
+		</RollingFile>
+
+		<RollingFile name="OX_AUDIT_LOG_FILE" fileName="${sys:log.base}/logs/oxauth_audit.log" filePattern="${sys:log.base}/logs/oxauth_audit-%d{yyyy-MM-dd}-%i.log">
+
+			<PatternLayout pattern="%d %-5p [%macAddr] [%t] [%C{6}] (%F:%L) - %m%n" />
+
+			<Policies>
+				<TimeBasedTriggeringPolicy interval="1" modulate="true" />
+				<SizeBasedTriggeringPolicy size="250 MB" />
+			</Policies>
+			<DefaultRolloverStrategy max="30" />
+		</RollingFile>
+	</Appenders>
+
+	<Loggers>
+		<!-- ############### oxAuth ################# -->
+		<Logger name="org.gluu.oxauth" level="${log4j.default.log.level}" />
+		<Logger name="org.gluu.service" level="${log4j.default.log.level}" />
+
+		<!-- ############### Gluu ################# -->
+		<Logger name="org.gluu" level="${log4j.default.log.level}" />
+
+		<!-- EMB-6, JMS activation throws an error due to deployment ordering, but as there is a timeout and retry the tests pass. Hide the error message -->
+		<Logger name="jboss.resource.adapter.jms.inflow.JmsActivation" level="error" />
+
+	    <Logger name="com.ocpsoft" level="info" />
+
+		<!-- ############### Hibernate logging ################# -->
+		<Logger name="org.hibernate" level="error" />
+
+		<Logger name="org.gluu.oxauth.audit.debug" level="${log4j.default.log.level}" additivity="false">
+			<AppenderRef ref="OX_HTTP_REQUEST_RESPONSE_FILE" />
+		</Logger>
+
+		<Logger name="org.gluu.site.ldap" level="${log4j.default.log.level}" additivity="false">
+			<AppenderRef ref="OX_PERSISTENCE_FILE" />
+		</Logger>
+
+		<Logger name="org.gluu.persist" level="${log4j.default.log.level}" additivity="false">
+			<AppenderRef ref="OX_PERSISTENCE_FILE" />
+		</Logger>
+
+		<Logger name="com.unboundid.ldap.sdk.LDAPConnection" level="${log4j.default.log.level}" additivity="false">
+			<AppenderRef ref="OX_PERSISTENCE_FILE" />
+		</Logger>
+		<logger name="com.couchbase.client" level="${log4j.default.log.level}" additivity="false">
+			<AppenderRef ref="OX_PERSISTENCE_FILE" />
+		</logger>
+
+		<Logger name="org.gluu.persist.ldap.operation.watch" level="${log4j.default.log.level}" additivity="false">
+			<AppenderRef ref="OX_PERSISTENCE_DURATION_FILE" />
+		</Logger>
+
+		<Logger name="org.gluu.persist.couchbase.operation.watch" level="${log4j.default.log.level}" additivity="false">
+			<AppenderRef ref="OX_PERSISTENCE_DURATION_FILE" />
+		</Logger>
+
+		<Logger name="org.gluu.persist.watch" level="${log4j.default.log.level}" additivity="false">
+			<AppenderRef ref="OX_PERSISTENCE_DURATION_FILE" />
+		</Logger>
+
+		<Logger name="org.gluu.oxauth.service.status.ldap" level="${log4j.default.log.level}" additivity="false">
+			<AppenderRef ref="OX_PERSISTENCE_LDAP_STATISTICS_FILE" />
+		</Logger>
+
+		<Logger name="org.gluu.service.PythonService" level="${log4j.default.log.level}" additivity="false">
+			<AppenderRef ref="OX_SCRIPT_LOG_FILE" />
+		</Logger>
+
+		<Logger name="org.gluu.service.custom.script" level="${log4j.default.log.level}" additivity="false">
+			<AppenderRef ref="OX_SCRIPT_LOG_FILE" />
+		</Logger>
+
+		<Logger name="org.gluu.oxauth.service.custom" level="${log4j.default.log.level}" additivity="false">
+			<AppenderRef ref="OX_SCRIPT_LOG_FILE" />
+		</Logger>
+
+		<Logger name="org.gluu.oxauth.audit.ApplicationAuditLogger" level="${log4j.default.log.level}" additivity="false">
+			<AppenderRef ref="OX_AUDIT_LOG_FILE" />
+		</Logger>
+
+		<logger name="org.gluu.oxauth.service.CleanerTimer" level="${log4j.default.log.level}" additivity="false">
+			<AppenderRef ref="CLEANER" />
+		</logger>
+
+		<Root level="info">
+			<AppenderRef ref="FILE" />
+			<AppenderRef ref="STDOUT" />
+		</Root>
+	</Loggers>
+</Configuration>
diff --git a/oxAuth/Server/src/main/resources/oxauth.properties b/oxAuth/Server/src/main/resources/oxauth.properties
new file mode 100644
index 00000000..0602480c
--- /dev/null
+++ b/oxAuth/Server/src/main/resources/oxauth.properties
@@ -0,0 +1,410 @@
+common.copyright=Powered by
+common.allRightsReserved=Free and open source access management.
+common.agreePolicy=By proceeding, you agree with the {0}
+common.privacyPolicy=Privacy Policy
+common.pleaseReadTheTos=Please read the
+common.termsOfService=Terms of Service
+common.gluuInc=Gluu, Inc
+common.caution=Use subject to MIT LICENSE
+
+login.pageTitle=oxAuth - Login
+login.login=Login
+login.loginAsAnother=Login as another user
+login.selectAccount=Select Account
+login.register=Register
+login.pleaseLoginHere=Please login here
+login.username=Username
+login.password=Password
+login.rememberMe=Remember me
+login.errorMessage=Incorrect username or password.
+login.errorSessionInvalidMessage=Failed to authenticate. Authentication session has expired. Please navigate back to the original page and try again.
+login.failedToAuthenticate=Failed to authenticate.
+login.failedToGrantPermission=Failed to grant permission.
+login.failedToDeny=Failed to deny authorization.
+login.userAlreadyAuthenticated=User is already authenticated. Re-send authorization request (must be handled by RP).
+login.youDontHavePermission=You don't have permissions.
+login.forgotYourPassword = Forgot your password?
+
+fido2.touch.verification.usedevice=Use Touch ID on your Apple device to sign in to your Gluu account.
+fido2.touch.verification.insertkey = Place your finger on the Touch ID.
+fido2.touch.verification.useit=Click <b>Ok</b> to enable the Touch ID.
+login.use.touchID=OK
+selectAccount.pageTitle=Select Account
+
+logout.missingParameters=Invalid Request. The request is missing a required parameter, includes an unsupported parameter value, or is otherwise malformed.
+logout.failedToProceed=Failed to process logout
+
+authorize.pageTitle=oxAuth - Authorize
+authorize.requestForPermission=Request for Permission
+authorize.requestingPermissionForScopes={0} is requesting permission to do the following:
+authorize.viewIndividualClaim=View {0} claim.
+authorize.allow=Allow
+authorize.doNotAllow=Don't Allow
+
+uma2.gather.failed=Failed to gather claims.
+uma2.invalid.step=Invalid step provided during claims-gathering flow.
+uma2.invalid.session=Failed to gather claims. Session has expired.
+
+consent.gather.failed=Failed to gather claims.
+consent.gather.invalid.step=Invalid step provided during claims-gathering flow.
+consent.gather.invalid.session=Failed to gather claims. Session has expired.
+consent.gather.declined=Authorization declined
+
+up=\u2191
+down=\u2193
+left=\u2039
+right=\u203A
+
+validator.assertFalse=validation failed
+validator.assertTrue=validation failed
+validator.future=must be a future date
+validator.length=length must be between {min} and {max}
+validator.max=must be less than or equal to {value}
+validator.min=must be greater than or equal to {value}
+validator.notNull=may not be null
+validator.past=must be a past date
+validator.pattern=must match "{regex}"
+validator.range=must be between {min} and {max}
+validator.size=size must be between {min} and {max}
+validator.email=must be a well-formed email address
+
+org.jboss.seam.loginFailed=Login failed
+org.jboss.seam.loginSuccessful=Welcome, #0!
+
+org.jboss.seam.TransactionFailed=Transaction failed
+org.jboss.seam.NoConversation=The conversation ended, timed out or was processing another request
+org.jboss.seam.IllegalNavigation=Illegal navigation
+org.jboss.seam.ProcessEnded=Process #0 already ended
+org.jboss.seam.ProcessNotFound=Process #0 not found
+org.jboss.seam.TaskEnded=Task #0 already ended
+org.jboss.seam.TaskNotFound=Task #0 not found
+org.jboss.seam.NotLoggedIn=Please log in first
+
+javax.faces.validator.BeanValidator.MESSAGE={0}
+javax.faces.component.UIInput.CONVERSION=value could not be converted to the expected type
+javax.faces.component.UIInput.REQUIRED={0} is required
+javax.faces.component.UIInput.UPDATE=an error occurred when processing your submitted information
+javax.faces.component.UISelectOne.INVALID=value is not valid
+javax.faces.component.UISelectMany.INVALID=value is not valid
+
+javax.faces.converter.BigDecimalConverter.DECIMAL=value must be a number
+javax.faces.converter.BigDecimalConverter.DECIMAL_detail=value must be a signed decimal number consisting of zero or more digits, optionally followed by a decimal point and fraction, eg. {1}
+javax.faces.converter.BigIntegerConverter.BIGINTEGER=value must be an integer
+javax.faces.converter.BigIntegerConverter.BIGINTEGER_detail=value must be a signed integer number consisting of zero or more digits
+javax.faces.converter.BooleanConverter.BOOLEAN=value must be true or false
+javax.faces.converter.BooleanConverter.BOOLEAN_detail=value must be true or false (any value other than true will evaluate to false)
+javax.faces.converter.ByteConverter.BYTE=value must be a number between 0 and 255
+javax.faces.converter.ByteConverter.BYTE_detail=value must be a number between 0 and 255
+javax.faces.converter.CharacterConverter.CHARACTER=value must be a character
+javax.faces.converter.CharacterConverter.CHARACTER_detail=value must be a valid ASCII character
+javax.faces.converter.DateTimeConverter.DATE=value must be a date
+javax.faces.converter.DateTimeConverter.DATE_detail=value must be a date,  eg. {1}
+javax.faces.converter.DateTimeConverter.TIME=value must be a time
+javax.faces.converter.DateTimeConverter.TIME_detail=value must be a time,  eg. {1}
+javax.faces.converter.DateTimeConverter.DATETIME=value must be a date and time
+javax.faces.converter.DateTimeConverter.DATETIME_detail=value must be a date and time,  eg. {1}
+javax.faces.converter.DateTimeConverter.PATTERN_TYPE=a pattern or type attribute must be specified to convert the value
+javax.faces.converter.DoubleConverter.DOUBLE=value must be a number
+javax.faces.converter.DoubleConverter.DOUBLE_detail=value must be a number between 4.9E-324 and 1.7976931348623157E308
+javax.faces.converter.EnumConverter.ENUM=value must be convertible to an enum
+javax.faces.converter.EnumConverter.ENUM_detail=value must be convertible to an enum or from the enum that contains the constant {1}
+javax.faces.converter.EnumConverter.ENUM_NO_CLASS=value must be convertible to an enum or from the enum, but no enum class provided
+javax.faces.converter.EnumConverter.ENUM_NO_CLASS_detail=value must be convertible to an enum or from the enum, but no enum class provided
+javax.faces.converter.FloatConverter.FLOAT=value must be a number
+javax.faces.converter.FloatConverter.FLOAT_detail=value must be a number between 1.4E-45 and 3.4028235E38
+javax.faces.converter.IntegerConverter.INTEGER=value must be an integer
+javax.faces.converter.IntegerConverter.INTEGER_detail=value must be an integer number between -2147483648 and 2147483647
+javax.faces.converter.LongConverter.LONG=value must be an integer
+javax.faces.converter.LongConverter.LONG_detail=value must be an integer number between -9223372036854775808 and 9223372036854775807
+javax.faces.converter.NumberConverter.CURRENCY=value must be a currency amount
+javax.faces.converter.NumberConverter.CURRENCY_detail=value must be a currency amount, eg. {1}
+javax.faces.converter.NumberConverter.PERCENT=value must be a percentage amount
+javax.faces.converter.NumberConverter.PERCENT_detail=value must be a percentage amount, eg. {1}
+javax.faces.converter.NumberConverter.NUMBER=value must be a number
+javax.faces.converter.NumberConverter.NUMBER_detail=value must be a number
+javax.faces.converter.NumberConverter.PATTERN=value must be a number
+javax.faces.converter.NumberConverter.PATTERN_detail=value must be a number
+javax.faces.converter.ShortConverter.SHORT=value must be an integer
+javax.faces.converter.ShortConverter.SHORT_detail=value must be an integer number between -32768 and 32767
+
+javax.faces.validator.DoubleRangeValidator.MAXIMUM=value must be less than or equal to {0}
+javax.faces.validator.DoubleRangeValidator.MINIMUM=value must be greater than or equal to {0}
+javax.faces.validator.DoubleRangeValidator.NOT_IN_RANGE=value must be between {0} and {1}
+javax.faces.validator.DoubleRangeValidator.TYPE=value is not of the correct type
+javax.faces.validator.LengthValidator.MAXIMUM=value must be shorter than or equal to {0} characters
+javax.faces.validator.LengthValidator.MINIMUM=value must be longer than or equal to {0} characters
+javax.faces.validator.LongRangeValidator.MAXIMUM=value must be less than or equal to {0}
+javax.faces.validator.LongRangeValidator.MINIMUM=value must be greater than or equal to {0}
+javax.faces.validator.LongRangeValidator.NOT_IN_RANGE=value must be between {0} and {1}
+javax.faces.validator.LongRangeValidator.TYPE=value is not of the correct type
+
+javax.faces.validator.NOT_IN_RANGE=value must be between {0} and {1}
+javax.faces.converter.STRING=value could not be converted to a string
+
+cas2login.pageTitle = oxAuth - Login
+cas2login.loginHeader = Login (second step)
+cas2login.pleaseLoginHere = Please login here
+cas2login.username = Username
+cas2login.password = Password
+cas2login.rememberMe = Remember me
+cas2login.termsPrivace = Terms &amp; Privacy
+
+error.errorEncountered = Error Encountered
+error.unexpectedError = An unexpected error has occurred at {0}
+
+error.invalidSessionState = Invalid session state or session limitation rule has occured at {0}
+
+cert.failedToCheckCertificate = Failed to check certificate
+cert.thisCanHappen = This can happen in the following cases:
+cert.youHaveExpired = You have expired certificate. <br/>Please, registered with the system and get new certificate.
+cert.youSelectedInvalid = You selected invalid certificate.<br/>Please, restart your browser and try to log in again.
+cert.noteInternetExplorer = Note: Internet Explorer and Mozilla Firefox allow to clear the SSL state without restarting the browser:
+cert.ifYouAreUsing = If you are using Internet Explorer, you can use the "Clear SSL" button in the settings section: Contents (click Tools \u2192 Internet Options).
+cert.ifYouUseFireFox = If you use FireFox, you can use the menu: Options \u2192 Privacy \u2192 Clear all current history \u2192 select \u201cActive Logins\u201d \u2192 press button Clear Now.
+cert.youFailedToInstall = You failed to install the personal certificate into the browser<br/>Please, install the certificate from the backup file (.PFX), restart your browser and try to log in again.
+cert.youHaveAlreadyOpened = You have already opened the page in this browser but haven't chosen any certificate for further usage. The browser now remembers this choice. <br/>Please, restart your browser, log in again and choose the appropriate certificate.<br/>If you use Internet Explorer, click "Clear SSL state" at Tools/Internet Options/Content.
+cert.ifYouUseMacOS = If you use MacOS X and updated the operation system to version 10.5.3 please see <a href="http://support.apple.com/kb/HT1679?viewlocale=en_US" class="external">http://support.apple.com/kb/HT1679?viewlocale=en_US</a> to resolve the issue.
+
+duologin.title = oxAuth - DUO Login
+duologin.login = DUO Login (second step)
+duologin.termsPrivacy = Terms &amp; Privacy
+
+gpluslogin.title = oxAuth - Google+ Login
+gpluslogin.pageTitle = oxAuth - Login
+gpluslogin.login = Login (second step)
+gpluslogin.pleaseLoginHere = Please login here
+gpluslogin.username = Username
+gpluslogin.password = Password
+gpluslogin.rememberMe = Remember Me
+gpluslogin.termsPrivacy = Terms &amp; Privacy
+
+otp.pageTitle = oxAuth - OTP Login
+otp.otpCode = OTP code
+otp.scanQRCode = Scan QR code using OTP authenticator and press finish button
+otp.finish = Finish
+
+oxpush.pageTitle = oxAuth oxPush - Login
+oxpush.login = oxPush Login (Authentication request)
+oxpush.loginPairingRequest = oxPush Login (Pairing request)
+oxpush.sendingAuthenticationRequest = Sending authentication request...
+oxpush.termsPrivacy = Terms &amp; Privacy
+oxpush.title = oxAuth - Login
+oxpush.loginLabel = Login
+oxpush.pleaseLoginHere = Please login here
+oxpush.username = Username
+oxpush.password = Password
+oxpush.rememberMe = Remember me
+oxpush.beforeLogIn = Before log in make sure that you installed oxPush mobile application
+oxpush.androidMobileApplication = Android mobile application
+oxpush.byProceeding = By proceeding, you agree with the
+oxpush.privacyPolicy = Privacy Policy
+oxpush.pleaseRead = Please read the
+oxpush.termsOfService = Terms of Service
+oxpush.checkingPairing = Checking pairing status...
+oxpush.waitingForUser = Waiting for user approval...
+oxpush.pairingQRCode = Pairing QR code:
+oxpush.pairingCode = Pairing code:
+
+passport.pleaseLoginHere = Please login here
+passport.email = Email
+passport.termsPrivacy = Terms &amp; Privacy
+passport.oxAuthPassportLogin = oxAuth - Passport Login
+passport.needAGluuAccount = Need a Gluu account?
+passport.forgotYourPassword = Forgot your password?
+passport.useExternalAuthentication = Use External Authentication
+passport.orUseExternal=OR use an external service to sign in:
+passport.registerNewUser = Register new user
+passport.javascriptRequired=This pages requires javascript enabled to work properly
+passport.fillMissingData=Please provide the following to complete authentication:
+passport.invalidMailWarn=Please provide a valid email
+
+saml.pageTitle = oxAuth - Login
+saml.login = Login (second step)
+saml.username = Username
+saml.password = Password
+saml.rememberMe = Remember me
+saml.termsPrivacy = Terms &amp; Privacy
+
+supergluu.scanQRCode = Scan QR code using Super-Gluu
+
+# Used by twilio and smpp sms 2FA
+otp_sms.pageTitle = SMS - Login
+otp_sms.verification=2 Step Verification
+otp_sms.usedevice=Use your device to sign in to your Gluu account.
+otp_sms.verificationcode=Enter a verification code
+otp_sms.codesent=A text message with a verification code <br />\ was sent to
+otp_sms.login=Done
+otp_sms.termsPrivacy = Terms &amp; Privacy
+
+uaf.pageTitle = oxAuth - UAF Login
+uaf.scanQRCode = Scan QR code using UAF mobile authenticator
+
+supergluu.enroll.website.url= https://super.gluu.org
+supergluu.enroll.Docs.url= https://gluu.org/docs/supergluu
+supergluu.enroll.supergluuisfreesecure= Super Gluu is a free and secure two-factor authentication mobile application for all the people in your school, department, organization, or enterprise.
+supergluu.enroll.downloadsupergluu= Download Super Gluu:
+supergluu.enroll.scanqrcode= Scan the QR code with your Super Gluu app to enroll your device
+supergluu.enroll.enrollyourdevice= Enroll your device
+supergluu.enroll.Website= Website
+supergluu.enroll.Docs=Docs
+
+u2f.verification.stepverification=2 Step Verification
+u2f.verification.usedevice=Use your U2F device to sign in to your Gluu account.
+u2f.verification.insertkey = Insert your U2F security key.
+u2f.verification.useit=If your U2F key has a button, tap it. Otherwise you can remove it and re-insert it. 
+
+fido2.verification.stepverification=2 Step Verification
+fido2.verification.usedevice=Use your fido2 device to sign in to your Gluu account.
+fido2.verification.insertkey = Insert your fido2 security key.
+fido2.verification.useit=If your fido2 key has a button, tap it. Otherwise you can remove it and re-insert it. 
+
+fido2.touch.verification.usedevice=Use Touch ID on your Apple device to sign in to your Gluu account.
+fido2.touch.verification.insertkey = Place your finger on the Touch ID.
+fido2.touch.verification.useit=Click <b>Ok</b> to enable the Touch ID. 
+
+
+otp.login=Done
+otp.verification=2 Step Verification
+otp.entercode=Enter a verification code
+otp.usedevice=Use your device to sign in to your Gluu account.
+otp.getcode=Get a verification code from your OTP mobile app.
+
+password.validation.invalid = The password provided is not strong enough
+
+# Gluu Casa
+casa.login.title=Casa login
+casa.login.panel_title=Welcome
+casa.cancel=Cancel
+casa.close=Close
+casa.proceed=Proceed
+casa.alternative=Try another way to sign in
+casa.snd_step=2-step verification
+casa.enter_code=Enter code
+
+casa.cert.title=User certificate
+casa.cert.text=Use a digital certificate issued to you by a certification authority
+casa.cert.precontinue=Before you continue...
+casa.cert.hint_1=If you haven't done so, import the certificate issued to you into your web browser
+casa.cert.hint_2=When clicking on the proceed button, you will be prompted to select a certificate. Choose carefully
+casa.cert.hint_3=If presented, uncheck the option related to remembering your choice
+casa.cert.hint_4=If no prompt is shown, your browser is caching a choice made recently. To clear the SSL cache, close the browser window and try again
+casa.cert.error.not_valid=Your certificate is not valid
+casa.cert.error.unparsable=Your certificate couldn't be processed by the server
+casa.cert.error.not_selected=You did not select any certificate
+casa.cert.error.cert_enrolled_other_user=The certificate presented is registered to a different account
+casa.cert.error.cert_not_recognized=The certificate presented has not been enrolled yet in Casa
+casa.cert.error.unknown_user=Inexisting user
+
+casa.u2f.title=Security key
+casa.u2f.text=Use your security key to sign in
+
+casa.fido2.title=Security key
+casa.fido2.text=Use your security key to sign in
+casa.fido2.abort_error=Operation cancelled. Use the links below to use a different alternative or to try again
+casa.fido2.invalid_state_error=The presented key is not registered for this account. Please try again with a different key
+casa.fido2.generic_error=An error occurred. Use the links below to use a different alternative or to try again
+casa.fido2.retry_key=Retry security key 
+
+
+casa.securitykey.insert=Insert your security key
+casa.securitykey.tap=If your key has a button, tap it. Otherwise you can remove it and re-insert it.
+
+casa.touchid.use=Use the Touch ID on your Apple device.
+casa.touchid.tap=Activate and use Touch ID by clicking on the link below.
+casa.activate.touchid=Retry security key / Activate Touch ID
+
+casa.twilio_sms.title=Passcode sent via SMS
+casa.twilio_sms.text=We'll send you a one-time passcode to validate your identity
+
+casa.smpp.title=Passcode sent via SMS
+casa.smpp.text=We'll send you a one-time passcode to validate your identity
+
+casa.sms.enter=Enter the code sent via SMS
+casa.sms.choose=Choose a number to send an SMS to:
+casa.sms.send=Send
+
+casa.super_gluu.title=Super Gluu
+casa.super_gluu.text=Get a push notification sent to your Super Gluu device
+casa.super_gluu.push_approve=A push notification has been sent to your Super Gluu device. Approve to login
+casa.super_gluu.not_received_1=Didn't receive the push?
+casa.super_gluu.not_received_2=Scan a QR code instead
+
+casa.otp.title=OTP token
+casa.otp.text=Get a verification code from your OTP mobile app or hardware token.
+
+
+#casa plugin- DUO 
+casa.duo.title=DUO credentials
+casa.duo.text=Use your registered DUO credential like SMS passcodes, push notifications or U2F token.
+
+#casa plugin-BioID
+casa.bioid.title=BioID authentication
+casa.bioid.text=BioID's face recognition technology for detecting user presence and preventing fraud.
+
+#casa plugin- Stytch
+casa.stytch.title=Stytch Phone credentials
+casa.stytch.text=Stytch protects your applications by using a phone OTP to verify user identity before granting access.
+
+# CIBA
+ciba.bindingMessage=Binding Message
+
+device.authorization.pageTitle=Device Authorization
+device.authorization.title=Device Authorization
+device.authorization.subtitle=A device is processing permission to connect with your account
+device.authorization.code.inputbox.label=Code displayed on your device
+device.authorization.confirm.button=Continue
+device.authorization.invalid.user.code=Invalid code, please review the code and retry
+device.authorization.access.denied.msg=The authorization has been denied, please retry from the device
+device.authorization.expired.code.msg=Code expired, please retry from the device
+device.authorization.init.new.request.msg=Init new request
+device.authorization.access.granted.title=Device authorization granted
+device.authorization.authorization.completed.msg=Successful! Required permissions have been granted to the device.
+device.authorization.brute.forcing.msg=Too many failed attemps... please init again from device after an hour.
+
+# Passwordless
+pwdless.pageTitle=Max-Security Profile Login
+pwdless.username=Enter your username
+pwdless.choose=Choose an account:
+pwdless.other=Use another account
+
+# Stytch
+stytch.pageTitle = Stytch 2FA Login
+
+#casa plugin - email otp
+casa.email_2fa.title= Email OTP
+casa.email_2fa.text=The Email OTP method enables you to authenticate using the one-time password (OTP) that is sent to the registered email address.
+casa.email.enter=Enter the code sent via Email
+casa.email.choose=Choose an email-id to send an OTP to:
+casa.email.send=Send
+
+#whispeak
+whispeak.auth.alternative.instruction=To loggin without using your voice.
+whispeak.auth.error.instruction=Try another authentification option.
+whispeak.auth.instructions.passport.choose.provider=Please used a previous configured method to authentify yourself.
+whispeak.auth.instructions.passport.fallback=You have chosen to use your voice. You can change this choice on next authentification.
+whispeak.auth.instructions.passport.verif=First, we need to verify your identity.
+whispeak.auth.instructions.record=Please click on mic button (🎙) to start authentication record.
+whispeak.auth.instructions.validate=Validate (→) when your reading of the following sentece is finished.
+whispeak.modo=Simple, fast et secure.
+whispeak.msg2=Please enter your e-mail address.
+whispeak.use.voice.auth=Do you want to use authentication by voice?
+whispeak.use.voice.auth.question=Do you want to use authentication by voice?
+whispeak.welcome=Welcome to WHISPEAK.
+whispeak.revocation.title=Instructions to revoke your voice signature:
+whispeak.revocation.instruction=Keep note of this information so that you can destroy your voice signature at any time:
+whispeak.revocation.revocation_ui_link=Access this link to destroy the voice signature:
+whispeak.revocation.revocation_pwd=Confirmation code for destruction:
+whispeak.revocation.copytext=Copy
+whispeak.revocation.ok=Understood
+whispeak.login.signatureDoesNotExist=Your voice signature is invalid or does not exist. Please enroll again.
+whispeak.login.2fa.passwordMismatch=Incorrect password. Please try again.
+whispeak.login.2fa.password=Please use your password or create it if not having it yet.
+whispeak.apiError.voiceAuthFailed=Voice authentication failed, please try again.
+whispeak.apiError.badRequest=Technical error: incomplete request.
+whispeak.apiError.unauthorized=Technical error: Unauthorized action.
+whispeak.apiError.invalidCredential=Server error: Unauthorized action.
+whispeak.apiError.signatureNotFound=Unknown voice signature: Please register again.
+whispeak.apiError.unsupportedAudioFile=Technical error. Unsupported audio file.
+whispeak.apiError.audioConstraintsFailed=The audio clip of your voice is too short or incomplete.
+whispeak.apiError.voiceMismatch=Your voice does not match this user's voice.
+whispeak.apiError.invalidEnrollSignature=Invalid voice signature: Please enroll again.
\ No newline at end of file
diff --git a/oxAuth/Server/src/main/resources/oxauth_bg.properties b/oxAuth/Server/src/main/resources/oxauth_bg.properties
new file mode 100644
index 00000000..18316af5
--- /dev/null
+++ b/oxAuth/Server/src/main/resources/oxauth_bg.properties
@@ -0,0 +1,204 @@
+login.pageTitle=oxAuth - Inicio de sesi\u00F3n
+login.login=Inicio de sesi\u00F3n
+login.pleaseLoginHere=Ingrese los datos de su cuenta para iniciar sesi\u00F3n
+login.username=Nombre de usuario
+login.password=Contrase\u00F1a
+login.rememberMe=Recordar mis datos
+login.errorMessage=Ingrese un nombre de usuario y password validos
+login.failedToAuthenticate=Failed to authenticate.
+login.youDontHavePermission=You don't have permissions.
+login.forgotYourPassword = Forgot your password?
+
+logout.missingParameters=Invalid Request. The request is missing a required parameter, includes an unsupported parameter value, or is otherwise malformed.
+logout.failedToProceed=Failed to process logout
+
+down = \u2193
+
+javax.faces.component.UIInput.CONVERSION                    = \u0441\u0442\u043E\u0439\u043D\u043E\u0441\u0442\u0442\u0430 \u043D\u0435 \u043C\u043E\u0436\u0435 \u0434\u0430 \u0431\u044A\u0434\u0435 \u043F\u0440\u0435\u043E\u0431\u0440\u0430\u0437\u0443\u0432\u0430\u043D\u0430 \u043A\u044A\u043C \u043E\u0447\u0430\u043A\u0432\u0430\u043D\u0438\u044F \u0442\u0438\u043F
+javax.faces.component.UIInput.REQUIRED                      = \u043F\u043E\u043B\u0435\u0442\u043E \u0435 \u0437\u0430\u0434\u044A\u043B\u0436\u0438\u0442\u0435\u043B\u043D\u043E
+javax.faces.component.UIInput.UPDATE                        = \u0432\u044A\u0437\u043D\u0438\u043A\u043D\u0430\u043B\u0430 \u0435 \u0433\u0440\u0435\u0448\u043A\u0430 \u043F\u0440\u0438 \u043E\u0431\u0440\u0430\u0431\u043E\u0442\u043A\u0430 \u043D\u0430 \u0438\u0437\u043F\u0440\u0430\u0442\u0435\u043D\u0430\u0442\u0430 \u0438\u043D\u0444\u043E\u0440\u043C\u0430\u0446\u0438\u044F
+javax.faces.component.UISelectMany.INVALID                  = \u0441\u0442\u043E\u0439\u043D\u043E\u0441\u0442\u0442\u0430 \u0435 \u043D\u0435\u0432\u0430\u043B\u0438\u0434\u043D\u0430
+javax.faces.component.UISelectOne.INVALID                   = \u0441\u0442\u043E\u0439\u043D\u043E\u0441\u0442\u0442\u0430 \u0435 \u043D\u0435\u0432\u0430\u043B\u0438\u0434\u043D\u0430
+javax.faces.converter.BigDecimalConverter.DECIMAL           = \u0441\u0442\u043E\u0439\u043D\u043E\u0441\u0442\u0442\u0430 \u0442\u0440\u044F\u0431\u0432\u0430 \u0434\u0430 \u0431\u044A\u0434\u0435 \u0447\u0438\u0441\u043B\u043E
+javax.faces.converter.BigDecimalConverter.DECIMAL_detail    = \u0441\u0442\u043E\u0439\u043D\u043E\u0441\u0442\u0442\u0430 \u0442\u0440\u044F\u0431\u0432\u0430 \u0434\u0430 \u0431\u044A\u0434\u0435 \u0447\u0438\u0441\u043B\u043E \u0441\u044A\u0441 \u0437\u043D\u0430\u043A, \u0441\u044A\u0441\u0442\u043E\u044F\u0449\u043E \u0441\u0435 \u043E\u0442 \u043D\u0443\u043B\u0430 \u0438\u043B\u0438 \u043F\u043E\u0432\u0435\u0447\u0435 \u0446\u0438\u0444\u0440\u0438, \u0441\u043B\u0435\u0434\u0432\u0430\u043D\u043E \u043F\u043E \u0438\u0437\u0431\u043E\u0440 \u043E\u0442 \u0434\u0435\u0441\u0435\u0442\u0438\u0447\u043D\u0430 \u0437\u0430\u043F\u0435\u0442\u0430\u044F \u0438 \u0434\u0440\u043E\u0431\u043D\u0430 \u0447\u0430\u0441\u0442, \u043D\u0430\u043F\u0440. {1}
+javax.faces.converter.BigIntegerConverter.BIGINTEGER        = \u0441\u0442\u043E\u0439\u043D\u043E\u0441\u0442\u0442\u0430 \u0442\u0440\u044F\u0431\u0432\u0430 \u0434\u0430 \u0431\u044A\u0434\u0435 \u0446\u044F\u043B\u043E \u0447\u0438\u0441\u043B\u043E
+javax.faces.converter.BigIntegerConverter.BIGINTEGER_detail = \u0441\u0442\u043E\u0439\u043D\u043E\u0441\u0442\u0442\u0430 \u0442\u0440\u044F\u0431\u0432\u0430 \u0434\u0430 \u0431\u044A\u0434\u0435 \u0446\u044F\u043B\u043E \u0447\u0438\u0441\u043B\u043E \u0441\u044A\u0441 \u0437\u043D\u0430\u043A, \u0441\u044A\u0441\u0442\u043E\u044F\u0449\u043E \u0441\u0435 \u043E\u0442 \u043D\u0443\u043B\u0430 \u0438\u043B\u0438 \u043F\u043E\u0432\u0435\u0447\u0435 \u0446\u0438\u0444\u0440\u0438
+javax.faces.converter.BooleanConverter.BOOLEAN              = \u0441\u0442\u043E\u0439\u043D\u043E\u0441\u0442\u0442\u0430 \u0442\u0440\u044F\u0431\u0432\u0430 \u0434\u0430 \u0431\u044A\u0434\u0435 'true' \u0438\u043B\u0438 'false'
+javax.faces.converter.BooleanConverter.BOOLEAN_detail       = \u0441\u0442\u043E\u0439\u043D\u043E\u0441\u0442\u0442\u0430 \u0442\u0440\u044F\u0431\u0432\u0430 \u0434\u0430 \u0431\u044A\u0434\u0435 'true' \u0438\u043B\u0438 'false' (\u0432\u0441\u044F\u043A\u0430 \u0441\u0442\u043E\u0439\u043D\u043E\u0441\u0442 \u0440\u0430\u0437\u043B\u0438\u0447\u043D\u0430 \u043E\u0442 'true' \u0449\u0435 \u0441\u0435 \u0441\u043C\u044F\u0442\u0430 \u0437\u0430 'false')
+javax.faces.converter.ByteConverter.BYTE                    = \u0441\u0442\u043E\u0439\u043D\u043E\u0441\u0442\u0442\u0430 \u0442\u0440\u044F\u0431\u0432\u0430 \u0434\u0430 \u0431\u044A\u0434\u0435 \u0447\u0438\u0441\u043B\u043E \u043C\u0435\u0434\u0436\u0443 0 \u0438 255
+javax.faces.converter.ByteConverter.BYTE_detail             = \u0441\u0442\u043E\u0439\u043D\u043E\u0441\u0442\u0442\u0430 \u0442\u0440\u044F\u0431\u0432\u0430 \u0434\u0430 \u0431\u044A\u0434\u0435 \u0447\u0438\u0441\u043B\u043E \u043C\u0435\u0434\u0436\u0443 0 \u0438 255
+javax.faces.converter.CharacterConverter.CHARACTER          = \u0441\u0442\u043E\u0439\u043D\u043E\u0441\u0442\u0442\u0430 \u0442\u0440\u044F\u0431\u0432\u0430 \u0434\u0430 \u0431\u044A\u0434\u0435 \u0437\u043D\u0430\u043A
+javax.faces.converter.CharacterConverter.CHARACTER_detail   = \u0441\u0442\u043E\u0439\u043D\u043E\u0441\u0442\u0442\u0430 \u0442\u0440\u044F\u0431\u0432\u0430 \u0434\u0430 \u0431\u044A\u0434\u0435 \u0432\u0430\u043B\u0438\u0434\u0435\u043D ASCII \u0437\u043D\u0430\u043A
+javax.faces.converter.DateTimeConverter.DATE                = \u0441\u0442\u043E\u0439\u043D\u043E\u0441\u0442\u0442\u0430 \u0442\u0440\u044F\u0431\u0432\u0430 \u0434\u0430 \u0431\u044A\u0434\u0435 \u0434\u0430\u0442\u0430
+javax.faces.converter.DateTimeConverter.DATETIME            = \u0441\u0442\u043E\u0439\u043D\u043E\u0441\u0442\u0442\u0430 \u0442\u0440\u044F\u0431\u0432\u0430 \u0434\u0430 \u0431\u044A\u0434\u0435 \u0434\u0430\u0442\u0430 \u0438 \u0447\u0430\u0441
+javax.faces.converter.DateTimeConverter.DATETIME_detail     = \u0441\u0442\u043E\u0439\u043D\u043E\u0441\u0442\u0442\u0430 \u0442\u0440\u044F\u0431\u0432\u0430 \u0434\u0430 \u0431\u044A\u0434\u0435 \u0434\u0430\u0442\u0430 \u0438 \u0447\u0430\u0441, \u043D\u0430\u043F\u0440. {1}
+javax.faces.converter.DateTimeConverter.DATE_detail         = \u0441\u0442\u043E\u0439\u043D\u043E\u0441\u0442\u0442\u0430 \u0442\u0440\u044F\u0431\u0432\u0430 \u0434\u0430 \u0431\u044A\u0434\u0435 \u0434\u0430\u0442\u0430, \u043D\u0430\u043F\u0440. {1}
+javax.faces.converter.DateTimeConverter.PATTERN_TYPE        = \u0442\u0440\u044F\u0431\u0432\u0430 \u0434\u0430 \u0431\u044A\u0434\u0435 \u0437\u0430\u0434\u0430\u0434\u0435\u043D \u043E\u0431\u0440\u0430\u0437\u0435\u0446 \u0438\u043B\u0438 \u0430\u0442\u0440\u0438\u0431\u0443\u0442 type, \u0437\u0430 \u0434\u0430 \u0441\u0435 \u043F\u0440\u0435\u043E\u0431\u0440\u0430\u0437\u0443\u0432\u0430 \u0441\u0442\u043E\u0439\u043D\u043E\u0441\u0442\u0442\u0430
+javax.faces.converter.DateTimeConverter.TIME                = \u0441\u0442\u043E\u0439\u043D\u043E\u0441\u0442\u0442\u0430 \u0442\u0440\u044F\u0431\u0432\u0430 \u0434\u0430 \u0431\u044A\u0434\u0435 \u043E\u0442 \u0442\u0438\u043F \u0447\u0430\u0441
+javax.faces.converter.DateTimeConverter.TIME_detail         = \u0441\u0442\u043E\u0439\u043D\u043E\u0441\u0442\u0442\u0430 \u0442\u0440\u044F\u0431\u0432\u0430 \u0434\u0430 \u0431\u044A\u0434\u0435 \u043E\u0442 \u0442\u0438\u043F \u0447\u0430\u0441, \u043D\u0430\u043F\u0440. {1}
+javax.faces.converter.DoubleConverter.DOUBLE                = \u0441\u0442\u043E\u0439\u043D\u043E\u0441\u0442\u0442\u0430 \u0442\u0440\u044F\u0431\u0432\u0430 \u0434\u0430 \u0431\u044A\u0434\u0435 \u0447\u0438\u0441\u043B\u043E
+javax.faces.converter.DoubleConverter.DOUBLE_detail         = \u0441\u0442\u043E\u0439\u043D\u043E\u0441\u0442\u0442\u0430 \u0442\u0440\u044F\u0431\u0432\u0430 \u0434\u0430 \u0431\u044A\u0434\u0435 \u0447\u0438\u0441\u043B\u043E \u043C\u0435\u0436\u0434\u0443 4.9E-324 \u0438 1.7976931348623157E308
+javax.faces.converter.EnumConverter.ENUM                    = \u0441\u0442\u043E\u0439\u043D\u043E\u0441\u0442\u0442\u0430 \u0442\u0440\u044F\u0431\u0432\u0430 \u0434\u0430 \u043C\u043E\u0436\u0435 \u0434\u0430 \u0441\u0435 \u043F\u0440\u0435\u043E\u0431\u0440\u0430\u0437\u0443\u0432\u0430 \u0434\u043E \u0438\u0437\u0431\u0440\u043E\u0435\u043D \u0442\u0438\u043F
+javax.faces.converter.EnumConverter.ENUM_NO_CLASS           = \u0441\u0442\u043E\u0439\u043D\u043E\u0441\u0442\u0442\u0430 \u0442\u0440\u044F\u0431\u0432\u0430 \u0434\u0430 \u043C\u043E\u0436\u0435 \u0434\u0430 \u0441\u0435 \u043F\u0440\u0435\u043E\u0431\u0440\u0430\u0437\u0443\u0432\u0430 \u043E\u0442 \u0438\u043B\u0438 \u0434\u043E \u0438\u0437\u0431\u0440\u043E\u0435\u043D \u0442\u0438\u043F, \u043D\u043E \u043D\u0435 \u0435 \u043F\u043E\u0434\u0430\u0434\u0435\u043D \u043A\u043B\u0430\u0441 \u043E\u0442 \u0442\u0430\u043A\u044A\u0432 \u0442\u0438\u043F
+javax.faces.converter.EnumConverter.ENUM_NO_CLASS_detail    = \u0441\u0442\u043E\u0439\u043D\u043E\u0441\u0442\u0442\u0430 \u0442\u0440\u044F\u0431\u0432\u0430 \u0434\u0430 \u043C\u043E\u0436\u0435 \u0434\u0430 \u0441\u0435 \u043F\u0440\u0435\u043E\u0431\u0440\u0430\u0437\u0443\u0432\u0430 \u043E\u0442 \u0438\u043B\u0438 \u0434\u043E \u0438\u0437\u0431\u0440\u043E\u0435\u043D \u0442\u0438\u043F, \u043D\u043E \u043D\u0435 \u0435 \u043F\u043E\u0434\u0430\u0434\u0435\u043D \u043A\u043B\u0430\u0441 \u043E\u0442 \u0442\u0430\u043A\u044A\u0432 \u0442\u0438\u043F
+javax.faces.converter.EnumConverter.ENUM_detail             = \u0441\u0442\u043E\u0439\u043D\u043E\u0441\u0442\u0442\u0430 \u0442\u0440\u044F\u0431\u0432\u0430 \u0434\u0430 \u043C\u043E\u0436\u0435 \u0434\u0430 \u0441\u0435 \u043F\u0440\u0435\u043E\u0431\u0440\u0430\u0437\u0443\u0432\u0430 \u043E\u0442 \u0438\u043B\u0438 \u0434\u043E \u0438\u0437\u0431\u0440\u043E\u0435\u043D \u0442\u0438\u043F, \u043A\u043E\u0439\u0442\u043E \u0441\u044A\u0434\u044A\u0440\u0436\u0430 \u043A\u043E\u043D\u0441\u0442\u0430\u043D\u0442\u0430\u0442\u0430 {1}
+javax.faces.converter.FloatConverter.FLOAT                  = \u0441\u0442\u043E\u0439\u043D\u043E\u0441\u0442\u0442\u0430 \u0442\u0440\u044F\u0431\u0432\u0430 \u0434\u0430 \u0431\u044A\u0434\u0435 \u0447\u0438\u0441\u043B\u043E
+javax.faces.converter.FloatConverter.FLOAT_detail           = \u0441\u0442\u043E\u0439\u043D\u043E\u0441\u0442\u0442\u0430 \u0442\u0440\u044F\u0431\u0432\u0430 \u0434\u0430 \u0431\u044A\u0434\u0435 \u0447\u0438\u0441\u043B\u043E \u043C\u0435\u0436\u0434\u0443 1.4E-45 \u0438 3.4028235E38
+javax.faces.converter.IntegerConverter.INTEGER              = \u0441\u0442\u043E\u0439\u043D\u043E\u0441\u0442\u0442\u0430 \u0442\u0440\u044F\u0431\u0432\u0430 \u0434\u0430 \u0431\u044A\u0434\u0435 \u0446\u044F\u043B\u043E \u0447\u0438\u0441\u043B\u043E
+javax.faces.converter.IntegerConverter.INTEGER_detail       = \u0441\u0442\u043E\u0439\u043D\u043E\u0441\u0442\u0442\u0430 \u0442\u0440\u044F\u0431\u0432\u0430 \u0434\u0430 \u0431\u044A\u0434\u0435 \u0446\u044F\u043B\u043E \u0447\u0438\u0441\u043B\u043E \u043C\u0435\u0436\u0434\u0443 -2147483648 \u0438 2147483647
+javax.faces.converter.LongConverter.LONG                    = \u0441\u0442\u043E\u0439\u043D\u043E\u0441\u0442\u0442\u0430 \u0442\u0440\u044F\u0431\u0432\u0430 \u0434\u0430 \u0431\u044A\u0434\u0435 \u0446\u044F\u043B\u043E \u0447\u0438\u0441\u043B\u043E
+javax.faces.converter.LongConverter.LONG_detail             = \u0441\u0442\u043E\u0439\u043D\u043E\u0441\u0442\u0442\u0430 \u0442\u0440\u044F\u0431\u0432\u0430 \u0434\u0430 \u0431\u044A\u0434\u0435 \u0446\u044F\u043B\u043E \u0447\u0438\u0441\u043B\u043E \u043C\u0435\u0436\u0434\u0443 -9223372036854775808 \u0438 9223372036854775807
+javax.faces.converter.NumberConverter.CURRENCY              = \u0441\u0442\u043E\u0439\u043D\u043E\u0441\u0442\u0442\u0430 \u0442\u0440\u044F\u0431\u0432\u0430 \u0434\u0430 \u0431\u044A\u0434\u0435 \u0441\u0443\u043C\u0430 \u0432\u044A\u0432 \u0432\u0430\u043B\u0443\u0442\u0430 
+javax.faces.converter.NumberConverter.CURRENCY_detail       = \u0441\u0442\u043E\u0439\u043D\u043E\u0441\u0442\u0442\u0430 \u0442\u0440\u044F\u0431\u0432\u0430 \u0434\u0430 \u0431\u044A\u0434\u0435 \u0441\u0443\u043C\u0430 \u0432\u044A\u0432 \u0432\u0430\u043B\u0443\u0442\u0430, \u043D\u0430\u043F\u0440. {1}
+javax.faces.converter.NumberConverter.NUMBER                = \u0441\u0442\u043E\u0439\u043D\u043E\u0441\u0442\u0442\u0430 \u0442\u0440\u044F\u0431\u0432\u0430 \u0434\u0430 \u0431\u044A\u0434\u0435 \u0447\u0438\u0441\u043B\u043E
+javax.faces.converter.NumberConverter.NUMBER_detail         = \u0441\u0442\u043E\u0439\u043D\u043E\u0441\u0442\u0442\u0430 \u0442\u0440\u044F\u0431\u0432\u0430 \u0434\u0430 \u0431\u044A\u0434\u0435 \u0447\u0438\u0441\u043B\u043E
+javax.faces.converter.NumberConverter.PATTERN               = \u0441\u0442\u043E\u0439\u043D\u043E\u0441\u0442\u0442\u0430 \u0442\u0440\u044F\u0431\u0432\u0430 \u0434\u0430 \u0431\u044A\u0434\u0435 \u0447\u0438\u0441\u043B\u043E
+javax.faces.converter.NumberConverter.PATTERN_detail        = \u0441\u0442\u043E\u0439\u043D\u043E\u0441\u0442\u0442\u0430 \u0442\u0440\u044F\u0431\u0432\u0430 \u0434\u0430 \u0431\u044A\u0434\u0435 \u0447\u0438\u0441\u043B\u043E
+javax.faces.converter.NumberConverter.PERCENT               = \u0441\u0442\u043E\u0439\u043D\u043E\u0441\u0442\u0442\u0430 \u0442\u0440\u044F\u0431\u0432\u0430 \u0434\u0430 \u0431\u044A\u0434\u0435 \u043F\u0440\u043E\u0446\u0435\u043D\u0442
+javax.faces.converter.NumberConverter.PERCENT_detail        = \u0441\u0442\u043E\u0439\u043D\u043E\u0441\u0442\u0442\u0430 \u0442\u0440\u044F\u0431\u0432\u0430 \u0434\u0430 \u0431\u044A\u0434\u0435 \u043F\u0440\u043E\u0446\u0435\u043D\u0442, \u043D\u0430\u043F\u0440. {1}
+javax.faces.converter.STRING                                = \u0441\u0442\u043E\u0439\u043D\u043E\u0441\u0442\u0442\u0430 \u043D\u0435 \u043C\u043E\u0436\u0435 \u0434\u0430 \u0431\u044A\u0434\u0435 \u043F\u0440\u0435\u0432\u044A\u0440\u043D\u0430\u0442\u0430 \u0432 \u043D\u0438\u0437 \u043E\u0442 \u0441\u0438\u043C\u0432\u043E\u043B\u0438
+javax.faces.converter.ShortConverter.SHORT                  = \u0441\u0442\u043E\u0439\u043D\u043E\u0441\u0442\u0442\u0430 \u0442\u0440\u044F\u0431\u0432\u0430 \u0434\u0430 \u0431\u044A\u0434\u0435 \u0446\u044F\u043B\u043E \u0447\u0438\u0441\u043B\u043E
+javax.faces.converter.ShortConverter.SHORT_detail           = \u0441\u0442\u043E\u0439\u043D\u043E\u0441\u0442\u0442\u0430 \u0442\u0440\u044F\u0431\u0432\u0430 \u0434\u0430 \u0431\u044A\u0434\u0435 \u0446\u044F\u043B\u043E \u0447\u0438\u0441\u043B\u043E \u043C\u0435\u0436\u0434\u0443 -32768 \u0438 32767
+javax.faces.validator.DoubleRangeValidator.MAXIMUM          = \u0441\u0442\u043E\u0439\u043D\u043E\u0441\u0442\u0442\u0430 \u0442\u0440\u044F\u0431\u0432\u0430 \u0434\u0430 \u0431\u044A\u0434\u0435 \u043F\u043E-\u043C\u0430\u043B\u043A\u0430 \u0438\u043B\u0438 \u0440\u0430\u0432\u043D\u0430 \u043D\u0430 {0}
+javax.faces.validator.DoubleRangeValidator.MINIMUM          = \u0441\u0442\u043E\u0439\u043D\u043E\u0441\u0442\u0442\u0430 \u0442\u0440\u044F\u0431\u0432\u0430 \u0434\u0430 \u0431\u044A\u0434\u0435 \u043F\u043E-\u0433\u043E\u043B\u044F\u043C\u0430 \u0438\u043B\u0438 \u0440\u0430\u0432\u043D\u0430 \u043D\u0430 {0}
+javax.faces.validator.DoubleRangeValidator.NOT_IN_RANGE     = \u0441\u0442\u043E\u0439\u043D\u043E\u0441\u0442\u0442\u0430 \u0442\u0440\u044F\u0431\u0432\u0430 \u0434\u0430 \u0431\u044A\u0434\u0435 \u043C\u0435\u0436\u0434\u0443 {0} \u0438 {1}
+javax.faces.validator.DoubleRangeValidator.TYPE             = \u0441\u0442\u043E\u0439\u043D\u043E\u0441\u0442\u0442\u0430 \u043D\u0435 \u0435 \u043E\u0442 \u043F\u0440\u0430\u0432\u0438\u043B\u043D\u0438\u044F \u0432\u0438\u0434
+javax.faces.validator.LengthValidator.MAXIMUM               = \u0441\u0442\u043E\u0439\u043D\u043E\u0441\u0442\u0442\u0430 \u0442\u0440\u044F\u0431\u0432\u0430 \u0434\u0430 \u0431\u044A\u0434\u0435 \u043D\u0435 \u043F\u043E-\u0434\u044A\u043B\u0433\u0430 \u043E\u0442 {0} \u0437\u043D\u0430\u043A\u0430
+javax.faces.validator.LengthValidator.MINIMUM               = \u0441\u0442\u043E\u0439\u043D\u043E\u0441\u0442\u0442\u0430 \u0442\u0440\u044F\u0431\u0432\u0430 \u0434\u0430 \u0431\u044A\u0434\u0435 \u043F\u043E-\u0434\u044A\u043B\u0433\u0430 \u043E\u0442 {0} \u0437\u043D\u0430\u043A\u0430
+javax.faces.validator.LongRangeValidator.MAXIMUM            = \u0441\u0442\u043E\u0439\u043D\u043E\u0441\u0442\u0442\u0430 \u0442\u0440\u044F\u0431\u0432\u0430 \u0434\u0430 \u0431\u044A\u0434\u0435 \u043F\u043E-\u043C\u0430\u043B\u043A\u0430 \u0438\u043B\u0438 \u0440\u0430\u0432\u043D\u0430 \u043D\u0430 {0}
+javax.faces.validator.LongRangeValidator.MINIMUM            = \u0441\u0442\u043E\u0439\u043D\u043E\u0441\u0442\u0442\u0430 \u0442\u0440\u044F\u0431\u0432\u0430 \u0434\u0430 \u0431\u044A\u0434\u0435 \u043F\u043E-\u0433\u043E\u043B\u044F\u043C\u0430 \u0438\u043B\u0438 \u0440\u0430\u0432\u043D\u0430 \u043D\u0430 {0}
+javax.faces.validator.LongRangeValidator.NOT_IN_RANGE       = \u0441\u0442\u043E\u0439\u043D\u043E\u0441\u0442\u0442\u0430 \u0442\u0440\u044F\u0431\u0432\u0430 \u0434\u0430 \u0431\u044A\u0434\u0435 \u043C\u0435\u0436\u0434\u0443 {0} \u0438 {1}
+javax.faces.validator.LongRangeValidator.TYPE               = \u0441\u0442\u043E\u0439\u043D\u043E\u0441\u0442\u0442\u0430 \u043D\u0435 \u0435 \u043E\u0442 \u043F\u0440\u0430\u0432\u0438\u043B\u043D\u0438\u044F \u0432\u0438\u0434
+javax.faces.validator.NOT_IN_RANGE                          = \u0441\u0442\u043E\u0439\u043D\u043E\u0441\u0442\u0442\u0430 \u0442\u0440\u044F\u0431\u0432\u0430 \u0434\u0430 \u0431\u044A\u0434\u0435 \u043C\u0435\u0436\u0434\u0443 {0} \u0438 {1}
+
+left = \u2039
+
+org.jboss.seam.IllegalNavigation = \u041D\u0435\u0432\u0430\u043B\u0438\u0434\u043D\u0430 \u043D\u0430\u0432\u0438\u0433\u0430\u0446\u0438\u044F
+org.jboss.seam.NoConversation    = \u0420\u0430\u0437\u0433\u043E\u0432\u043E\u0440\u044A\u0442 \u0435 \u043F\u0440\u0438\u043A\u043B\u044E\u0447\u0438\u043B, \u0438\u0437\u0442\u0435\u043A\u043B\u043E \u043C\u0443 \u0435 \u0432\u0440\u0435\u043C\u0435\u0442\u043E \u0438\u043B\u0438 \u043E\u0431\u0440\u0430\u0431\u043E\u0442\u0432\u0430 \u0434\u0440\u0443\u0433\u0430 \u0437\u0430\u044F\u0432\u043A\u0430
+org.jboss.seam.ProcessEnded      = \u041F\u0440\u043E\u0446\u0435\u0441 #0 \u0435 \u043F\u0440\u0438\u043A\u043B\u044E\u0447\u0438\u043B
+org.jboss.seam.ProcessNotFound   = \u041F\u0440\u043E\u0446\u0435\u0441 #0 \u043D\u0435 \u0435 \u043D\u0430\u043C\u0435\u0440\u0435\u043D
+org.jboss.seam.TaskEnded         = \u0417\u0430\u0434\u0430\u0447\u0430 #0 \u0435 \u043F\u0440\u0438\u043A\u043B\u044E\u0447\u0438\u043B\u0430
+org.jboss.seam.TaskNotFound      = \u0417\u0430\u0434\u0430\u0447\u0430 #0 \u043D\u0435 \u0435 \u043D\u0430\u043C\u0435\u0440\u0435\u043D\u0430
+org.jboss.seam.TransactionFailed = \u0422\u0440\u0430\u043D\u0437\u0430\u043A\u0446\u0438\u044F \u043D\u0435 \u0435 \u0443\u0441\u043F\u044F\u043B\u0430
+org.jboss.seam.NotLoggedIn       = \u041C\u043E\u043B\u044F \u043F\u044A\u0440\u0432\u043E \u0441\u0435 \u0438\u0434\u0435\u043D\u0442\u0438\u0444\u0438\u0446\u0438\u0440\u0430\u0439\u0442\u0435
+
+org.jboss.seam.loginFailed       = \u041D\u0435\u0443\u0441\u043F\u0435\u0448\u0435\u043D \u0432\u0445\u043E\u0434
+org.jboss.seam.loginSuccessful   = \u0417\u0434\u0440\u0430\u0432\u0435\u0439, #0
+
+right = \u203A
+
+up = \u2191
+
+validator.assertFalse = \u0433\u0440\u0435\u0448\u043A\u0438 \u043F\u0440\u0438 \u0432\u0430\u043B\u0438\u0434\u0430\u0446\u0438\u044F
+validator.assertTrue  = \u0433\u0440\u0435\u0448\u043A\u0438 \u043F\u0440\u0438 \u0432\u0430\u043B\u0438\u0434\u0430\u0446\u0438\u044F
+validator.email       = \u0442\u0440\u044F\u0431\u0432\u0430 \u0434\u0430 \u0431\u044A\u0434\u0435 \u0432\u0430\u043B\u0438\u0434\u0435\u043D e-mail \u0430\u0434\u0440\u0435\u0441
+validator.future      = \u0442\u0440\u044F\u0431\u0432\u0430 \u0434\u0430 \u0431\u044A\u0434\u0435 \u0431\u044A\u0434\u0435\u0449\u0430 \u0434\u0430\u0442\u0430
+validator.length      = \u0434\u044A\u043B\u0436\u0438\u043D\u0430\u0442\u0430 \u0442\u0440\u044F\u0431\u0432\u0430 \u0434\u0430 \u0431\u044A\u0434\u0435 \u043C\u0435\u0436\u0434\u0443 {min} \u0438 {max}
+validator.max         = \u0442\u0440\u044F\u0431\u0432\u0430 \u0434\u0430 \u0431\u044A\u0434\u0435 \u043F\u043E-\u043C\u0430\u043B\u043A\u043E \u0438\u043B\u0438 \u0440\u0430\u0432\u043D\u043E \u043D\u0430 {value}
+validator.min         = \u0442\u0440\u044F\u0431\u0432\u0430 \u0434\u0430 \u0431\u044A\u0434\u0435 \u043F\u043E-\u0433\u043E\u043B\u044F\u043C\u043E \u0438\u043B\u0438 \u0440\u0430\u0432\u043D\u043E \u043D\u0430 {value}
+validator.notNull     = \u0435 \u0437\u0430\u0434\u044A\u043B\u0436\u0438\u0442\u0435\u043B\u043D\u043E
+validator.past        = \u0442\u0440\u044F\u0431\u0432\u0430 \u0434\u0430 \u0435 \u043C\u0438\u043D\u0430\u043B\u0430 \u0434\u0430\u0442\u0430\u0442\u0430
+validator.pattern     = \u0442\u0440\u044F\u0431\u0432\u0430 \u0434\u0430 \u0441\u044A\u043E\u0442\u0432\u0435\u0442\u0441\u0442\u0432\u0430 \u043D\u0430 "{regex}"
+validator.range       = \u0442\u0440\u044F\u0431\u0432\u0430 \u0434\u0430 \u0435 \u043C\u0435\u0436\u0434\u0443 {min} \u0438 {max}
+validator.size        = \u0440\u0430\u0437\u043C\u0435\u0440\u044A\u0442 \u0442\u0440\u044F\u0431\u0432\u0430 \u0434\u0430 \u0435 \u043C\u0435\u0436\u0434\u0443 {min} \u0438 {max}
+
+cas2login.pageTitle = oxAuth - Login
+cas2login.loginHeader = Login (second step)
+cas2login.pleaseLoginHere = Please login here
+cas2login.username = Username
+cas2login.password = Password
+cas2login.rememberMe = Remember me
+cas2login.termsPrivace = Terms &amp; Privacy
+
+error.errorEncountered = Error Encountered
+error.unexpectedError = An unexpected error has occurred at {0}
+
+cert.failedToCheckCertificate = Failed to check certificate
+cert.thisCanHappen = This can happen in the following cases:
+cert.youHaveExpired = You have expired certificate. <br/>Please, registered with the system and get new certificate.
+cert.youSelectedInvalid = You selected invalid certificate.<br/>Please, restart your browser and try to log in again.
+cert.noteInternetExplorer = Note: Internet Explorer and Mozilla Firefox allow to clear the SSL state without restarting the browser:
+cert.ifYouAreUsing = If you are using Internet Explorer, you can use the "Clear SSL" button in the settings section: Contents (click Tools \u2192 Internet Options).
+cert.ifYouUseFireFox = If you use FireFox, you can use the menu: Options \u2192 Privacy \u2192 Clear all current history \u2192 select \u201cActive Logins\u201d \u2192 press button Clear Now.
+cert.youFailedToInstall = You failed to install the personal certificate into the browser<br/>Please, install the certificate from the backup file (.PFX), restart your browser and try to log in again.
+cert.youHaveAlreadyOpened = You have already opened the page in this browser but haven't chosen any certificate for further usage. The browser now remembers this choice. <br/>Please, restart your browser, log in again and choose the appropriate certificate.<br/>If you use Internet Explorer, click "Clear SSL state" at Tools/Internet Options/Content.
+cert.ifYouUseMacOS = If you use MacOS X and updated the operation system to version 10.5.3 please see <a href="http://support.apple.com/kb/HT1679?viewlocale=en_US" class="external">http://support.apple.com/kb/HT1679?viewlocale=en_US</a> to resolve the issue.
+
+duologin.title = oxAuth - DUO Login
+duologin.login = DUO Login (second step)
+duologin.termsPrivacy = Terms &amp; Privacy
+
+gpluslogin.title = oxAuth - Google+ Login
+gpluslogin.pageTitle = oxAuth - Login
+gpluslogin.login = Login (second step)
+gpluslogin.pleaseLoginHere = Please login here
+gpluslogin.username = Username
+gpluslogin.password = Password
+gpluslogin.rememberMe = Remember Me
+gpluslogin.termsPrivacy = Terms &amp; Privacy
+
+otp.pageTitle = oxAuth - OTP Login
+otp.otpCode = OTP code
+otp.scanQRCode = Scan QR code using OTP authenticator and press finish button
+otp.finish = Finish
+
+oxpush.pageTitle = oxAuth oxPush - Login
+oxpush.login = oxPush Login (Authentication request)
+oxpush.loginPairingRequest = oxPush Login (Pairing request)
+oxpush.sendingAuthenticationRequest = Sending authentication request...
+oxpush.termsPrivacy = Terms &amp; Privacy
+oxpush.title = oxAuth - Login
+oxpush.loginLabel = Login
+oxpush.pleaseLoginHere = Please login here
+oxpush.username = Username
+oxpush.password = Password
+oxpush.rememberMe = Remember me
+oxpush.beforeLogIn = Before log in make sure that you installed oxPush mobile application
+oxpush.androidMobileApplication = Android mobile application
+oxpush.byProceeding = By proceeding, you agree with the
+oxpush.privacyPolicy = Privacy Policy
+oxpush.pleaseRead = Please read the
+oxpush.termsOfService = Terms of Service
+oxpush.checkingPairing = Checking pairing status...
+oxpush.waitingForUser = Waiting for user approval...
+oxpush.pairingQRCode = Pairing QR code:
+oxpush.pairingCode = Pairing code:
+
+passport.pageTitle = Passport - PostLogin
+passport.loginSecondStep = Login (second step)
+passport.pleaseLoginHere = Please login here
+passport.email = Email
+passport.termsPrivacy = Terms &amp; Privacy
+passport.oxAuthPassportLogin = oxAuth - Passport Login
+passport.needAGluuAccount = Need a Gluu account?
+passport.forgotYourPassword = Forgot your password?
+passport.useExternalAuthentication = Use External Authentification
+passport.registerNewUser = Register new user
+
+saml.pageTitle = oxAuth - Login
+saml.login = Login (second step)
+saml.username = Username
+saml.password = Password
+saml.rememberMe = Remember me
+saml.termsPrivacy = Terms &amp; Privacy
+
+supergluu.scanQRCode = Scan QR code using Super-Gluu
+
+uaf.pageTitle = oxAuth - UAF Login
+uaf.scanQRCode = Scan QR code using UAF mobile authenticator
+
+# CIBA
+ciba.bindingMessage=Binding Message
+
+device.authorization.pageTitle=\u0423\u043f\u044a\u043b\u043d\u043e\u043c\u043e\u0449\u0430\u0432\u0430\u043d\u0435 \u043d\u0430 \u0443\u0441\u0442\u0440\u043e\u0439\u0441\u0442\u0432\u043e\u0442\u043e
+device.authorization.title=\u0423\u043f\u044a\u043b\u043d\u043e\u043c\u043e\u0449\u0430\u0432\u0430\u043d\u0435 \u043d\u0430 \u0443\u0441\u0442\u0440\u043e\u0439\u0441\u0442\u0432\u043e\u0442\u043e
+device.authorization.subtitle=\u0423\u0441\u0442\u0440\u043e\u0439\u0441\u0442\u0432\u043e\u0442\u043e \u043e\u0431\u0440\u0430\u0431\u043e\u0442\u0432\u0430 \u0440\u0430\u0437\u0440\u0435\u0448\u0435\u043d\u0438\u0435 \u0437\u0430 \u0432\u0440\u044a\u0437\u043a\u0430 \u0441 \u0432\u0430\u0448\u0438\u044f \u0430\u043a\u0430\u0443\u043d\u0442
+device.authorization.code.inputbox.label=\u041a\u043e\u0434\u002c \u043f\u043e\u043a\u0430\u0437\u0430\u043d \u043d\u0430 \u0432\u0430\u0448\u0435\u0442\u043e \u0443\u0441\u0442\u0440\u043e\u0439\u0441\u0442\u0432\u043e
+device.authorization.confirm.button=\u043f\u0440\u043e\u0434\u044a\u043b\u0436\u0438
+device.authorization.invalid.user.code=\u041d\u0435\u0432\u0430\u043b\u0438\u0434\u0435\u043d \u043a\u043e\u0434\u002c \u043c\u043e\u043b\u044f\u002c \u043f\u0440\u0435\u0433\u043b\u0435\u0434\u0430\u0439\u0442\u0435 \u043a\u043e\u0434\u0430 \u0438 \u043e\u043f\u0438\u0442\u0430\u0439\u0442\u0435 \u043e\u0442\u043d\u043e\u0432\u043e
+device.authorization.access.denied.msg=\u041e\u0442\u043e\u0440\u0438\u0437\u0430\u0446\u0438\u044f\u0442\u0430 \u0435 \u043e\u0442\u043a\u0430\u0437\u0430\u043d\u0430\u002c \u043c\u043e\u043b\u044f\u002c \u043e\u043f\u0438\u0442\u0430\u0439\u0442\u0435 \u043e\u0442\u043d\u043e\u0432\u043e \u043e\u0442 \u0443\u0441\u0442\u0440\u043e\u0439\u0441\u0442\u0432\u043e\u0442\u043e
+device.authorization.expired.code.msg=\u041a\u043e\u0434\u044a\u0442 \u0438\u0437\u0442\u0435\u0447\u0435\u002c \u043c\u043e\u043b\u044f\u002c \u043e\u043f\u0438\u0442\u0430\u0439\u0442\u0435 \u043e\u0442\u043d\u043e\u0432\u043e \u043e\u0442 \u0443\u0441\u0442\u0440\u043e\u0439\u0441\u0442\u0432\u043e\u0442\u043e
+device.authorization.init.new.request.msg=\u0418\u0437\u043f\u0440\u0430\u0442\u0435\u0442\u0435 \u043d\u043e\u0432\u0430 \u0437\u0430\u044f\u0432\u043a\u0430
+device.authorization.access.granted.title=\u0420\u0430\u0437\u0440\u0435\u0448\u0435\u043d\u0438\u0435\u0442\u043e \u0437\u0430 \u0443\u0441\u0442\u0440\u043e\u0439\u0441\u0442\u0432\u043e \u0435 \u043f\u0440\u0435\u0434\u043e\u0441\u0442\u0430\u0432\u0435\u043d\u043e
+device.authorization.authorization.completed.msg=\u0423\u0441\u043f\u0435\u0448\u0435\u043d\u0021 \u041d\u0430 \u0443\u0441\u0442\u0440\u043e\u0439\u0441\u0442\u0432\u043e\u0442\u043e \u0441\u0430 \u043f\u0440\u0435\u0434\u043e\u0441\u0442\u0430\u0432\u0435\u043d\u0438 \u043d\u0435\u043e\u0431\u0445\u043e\u0434\u0438\u043c\u0438\u0442\u0435 \u0440\u0430\u0437\u0440\u0435\u0448\u0435\u043d\u0438\u044f\u002e
+device.authorization.brute.forcing.msg=\u0422\u0432\u044a\u0440\u0434\u0435 \u043c\u043d\u043e\u0433\u043e \u043d\u0435\u0443\u0441\u043f\u0435\u0448\u043d\u0438 \u043e\u043f\u0438\u0442\u0438 \u002e\u002e\u002e \u043c\u043e\u043b\u044f\u002c \u0438\u043d\u0438\u0446\u0438\u0438\u0440\u0430\u0439\u0442\u0435 \u043e\u0442\u043d\u043e\u0432\u043e \u043e\u0442 \u0443\u0441\u0442\u0440\u043e\u0439\u0441\u0442\u0432\u043e\u0442\u043e \u0441\u043b\u0435\u0434 \u0447\u0430\u0441\u002e
\ No newline at end of file
diff --git a/oxAuth/Server/src/main/resources/oxauth_de.properties b/oxAuth/Server/src/main/resources/oxauth_de.properties
new file mode 100644
index 00000000..5dffd2d3
--- /dev/null
+++ b/oxAuth/Server/src/main/resources/oxauth_de.properties
@@ -0,0 +1,210 @@
+up=\u2191
+down=\u2193
+left=\u2039
+right=\u203A
+
+login.pageTitle=oxAuth - Anmeldung
+login.login=Anmelden
+login.pleaseLoginHere=Bitte hier anmelden
+login.username=Benutzername
+login.password=Passwort
+login.rememberMe=Anmeldedaten speichern
+login.errorMessage=Falscher Benutzername oder falsches Passwort.
+login.failedToAuthenticate=Authentifizierung fehlgeschlagen
+login.youDontHavePermission=Sie haben keine Berechtigung.
+login.forgotYourPassword=Passwort vergessen?
+
+logout.missingParameters=Ung\u00FCltige Anfrage. Ein erforderlicher Parameter fehlt, ist nicht unterstg\u00FCtzt oder die Anfrage ist anderweitig fehlerhaft.
+logout.failedToProceed=Abmeldung kann nicht verarbeitet werden
+
+validator.assertFalse=Validierung fehlgeschlagen
+validator.assertTrue=Validierung fehlgeschlagen
+validator.future=muss einem zuk\u00FCnfitigen Datum entsprechen
+validator.length=die L\u00E4nge muss zwischen {min} und {max} liegen
+validator.max=muss kleiner oder gleich {value} sein
+validator.min=muss gr\u00F6\u00DFer oder gleich {value} sein
+validator.notNull=darf nicht leer sein
+validator.past=muss einem vergangenen Datum entsprechen
+validator.pattern=muss dem regul\u00E4ren Ausdruck "{regex}" entsprechen
+validator.range=muss im Wertebereich von {min} bis {max} liegen
+validator.size=die Gr\u00F6\u00DFe muss zischen {min} und {max} liegen
+validator.email=muss einer wohlgeformten E-Mailadresse entsprechen
+
+org.jboss.seam.loginFailed=Anmeldung fehlgeschlagen
+org.jboss.seam.loginSuccessful=Willkommen, #0!
+
+org.jboss.seam.TransactionFailed=Transaktion fehlgeschlagen
+org.jboss.seam.NoConversation=Der Vorgang wurde bereits beendet, verarbeitet eine andere Abfrage oder ergab eine Zeit\u00FCberschreitung
+org.jboss.seam.IllegalNavigation=Unzul\u00E4ssige Navigation
+org.jboss.seam.ProcessEnded=Prozess #0 wurde bereits beendet
+org.jboss.seam.ProcessNotFound=Prozess #0 nicht gefunden
+org.jboss.seam.TaskEnded=Funktion #0 wurde bereits beendet
+org.jboss.seam.TaskNotFound=Funktion #0 nicht gefunden
+org.jboss.seam.NotLoggedIn=Bitte melden Sie sich zun\u00E4chst an
+
+javax.faces.component.UIInput.CONVERSION=Wert konnte nicht in den erwarteten Typ umgewandelt werden
+javax.faces.component.UIInput.REQUIRED=Wert erforderlich
+javax.faces.component.UIInput.UPDATE=ein Fehler ist bei der Verarbeitung der von Ihnen gesendeten Daten aufgetreten
+javax.faces.component.UISelectOne.INVALID=Wert ung\u00FCltig
+javax.faces.component.UISelectMany.INVALID=Wert ung\u00FCltig
+
+javax.faces.converter.BigDecimalConverter.DECIMAL = ''{0}'' muss eine Dezimalzahl sein.
+javax.faces.converter.BigDecimalConverter.DECIMAL_detail = ''{0}'' muss eine Dezimalzahl aus keinem oder mehr Zeichen gefolgt von einem optionalen Punkt und den Nachkommastellen sein. Beispiel: {1} 
+javax.faces.converter.BigIntegerConverter.BIGINTEGER = ''{0}'' muss eine Zahl aus ein oder mehr Ziffern sein. 
+javax.faces.converter.BigIntegerConverter.BIGINTEGER_detail = ''{0}'' muss eine Zahl aus ein oder mehr Ziffern sein. Beispiel: {1}
+javax.faces.converter.BooleanConverter.BOOLEAN = ''{0}'' muss 'true' oder 'false' sein.
+javax.faces.converter.BooleanConverter.BOOLEAN_detail = ''{0}'' muss 'true' oder 'false' sein.  Jeder Wert au\u00DFer 'true' wird als 'false' interpretiert.
+javax.faces.converter.ByteConverter.BYTE = ''{0}'' muss eine Zahl zwischen 0 und 255 sein.
+javax.faces.converter.ByteConverter.BYTE_detail = ''{0}'' muss eine Zahl zwischen 0 und 255 sein.  Beispiel: {1}
+javax.faces.converter.CharacterConverter.CHARACTER = ''{0}'' muss ein g\u00FCltiges Zeichen sein.
+javax.faces.converter.CharacterConverter.CHARACTER_detail = ''{0}'' muss ein g\u00FCltiges ASCII Zeichen sein.
+javax.faces.converter.DateTimeConverter.DATE = ''{0}'' konnte nicht als Datum erkannt werden.
+javax.faces.converter.DateTimeConverter.DATE_detail = ''{0}'' konnte nicht als Datum erkannt werden. Beispiel: {1} 
+javax.faces.converter.DateTimeConverter.TIME = ''{0}'' konnte nicht als Zeit erkannt werden.
+javax.faces.converter.DateTimeConverter.TIME_detail = ''{0}'' konnte nicht als Zeit erkannt werden. Beispiel: {1} 
+javax.faces.converter.DateTimeConverter.DATETIME = ''{0}'' konnte nicht als Datum und Zeit erkannt werden.
+javax.faces.converter.DateTimeConverter.DATETIME_detail = ''{0}'' konnte nicht als Datum und Zeit erkannt werden. Beispiel: {1} 
+javax.faces.converter.DateTimeConverter.PATTERN_TYPE = Ein 'pattern' oder 'type' Attribut muss angegeben werden um den Wert ''{0}'' zu konvertieren.
+javax.faces.converter.DoubleConverter.DOUBLE = ''{0}'' muss eine Zahl aus ein oder mehr Ziffern sein.
+javax.faces.converter.DoubleConverter.DOUBLE_detail = ''{0}'' muss eine Zahl zwischen 4.9E-324 und 1.7976931348623157E308 sein. Beispiel: {1}
+javax.faces.converter.EnumConverter.ENUM = ''{0}'' muss in eine Enumeration konvertierbar sein.
+javax.faces.converter.EnumConverter.ENUM_detail = ''{0}'' muss in eine Enumeration konvertierbar sein, welche die Konstante ''{1}'' enth\u00E4lt.
+javax.faces.converter.EnumConverter.ENUM_NO_CLASS = ''{0}'' muss in eine Enumeration konvertierbar sein, aber es wurde keine Klasse des Typs Enum bereitgestellt.
+javax.faces.converter.EnumConverter.ENUM_NO_CLASS_detail = ''{0}'' muss in eine Enumeration konvertierbar sein, aber es wurde keine Klasse des Typs Enum bereitgestellt.
+javax.faces.converter.FloatConverter.FLOAT = ''{0}'' muss eine Zahl aus ein oder mehr Ziffern sein.
+javax.faces.converter.FloatConverter.FLOAT_detail = ''{0}'' muss eine Zahl zwischen 1.4E-45 und 3.4028235E38 sein. Beispiel: {1}
+javax.faces.converter.IntegerConverter.INTEGER = ''{0}'' muss eine Zahl aus ein oder mehr Ziffern sein.
+javax.faces.converter.IntegerConverter.INTEGER_detail = ''{0}'' muss eine Zahl zwischen -2147483648 und 2147483647 sein. Beispiel: {1}
+javax.faces.converter.LongConverter.LONG = ''{0}'' muss eine Zahl aus ein oder mehr Ziffern sein.
+javax.faces.converter.LongConverter.LONG_detail = ''{0}'' muss eine Zahl zwischen -9223372036854775808 und 9223372036854775807 sein. Beispiel: {1}
+javax.faces.converter.NumberConverter.CURRENCY = ''{0}'' konnte nicht als ein Geldbetrag erkannt werden.
+javax.faces.converter.NumberConverter.CURRENCY_detail = ''{0}'' konnte nicht als ein Geldbetrag erkannt werden. Beispiel: {1}
+javax.faces.converter.NumberConverter.PERCENT = ''{0}'' konnte nicht als ein Prozentanteil erkannt werden.
+javax.faces.converter.NumberConverter.PERCENT_detail = ''{0}'' konnte nicht als ein Prozentanteil erkannt werden. Beispiel: {1}
+javax.faces.converter.NumberConverter.NUMBER = ''{0}'' ist keine Zahl.
+javax.faces.converter.NumberConverter.NUMBER_detail = ''{0}'' ist keine Zahl. Beispiel: {1}
+javax.faces.converter.NumberConverter.PATTERN = ''{0}'' ist kein Zahlmuster.
+javax.faces.converter.NumberConverter.PATTERN_detail = ''{0}'' ist kein Zahlmuster. Beispiel: {1}
+javax.faces.converter.ShortConverter.SHORT = ''{0}'' muss eine Zahl aus ein oder mehr Ziffern sein.
+javax.faces.converter.ShortConverter.SHORT_detail = ''{0}'' muss eine Zahl zwischen -32768 und 32767 sein. Beispiel: {1}
+javax.faces.converter.STRING = Konnte ''{0}'' nicht in eine Zeichenkette konvertieren.
+
+javax.faces.validator.NOT_IN_RANGE = Validierungsfehler: Der Wert liegt nicht im erwarteten Wertebereich von {0} bis {1}.  
+javax.faces.validator.DoubleRangeValidator.MAXIMUM = Validierungsfehler: Der Wert ist gr\u00F6\u00DFer als das erlaubte Maximum von ''{0}''
+javax.faces.validator.DoubleRangeValidator.MINIMUM = Validierungsfehler: Der Wert ist kleiner als das erlaubte Minimum von ''{0}''
+javax.faces.validator.DoubleRangeValidator.NOT_IN_RANGE = Validierungsfehler: Der Wert ist nicht zwischen den erwarteten Werten von {0} und {1}
+javax.faces.validator.DoubleRangeValidator.TYPE = Validierungsfehler: Der Wert ist nicht vom korrekten Typ
+javax.faces.validator.LengthValidator.MAXIMUM = Validierungsfehler: Der Wert ist gr\u00F6\u00DFer als das erlaubte Maximum von ''{0}''
+javax.faces.validator.LengthValidator.MINIMUM = Validierungsfehler: Der Wert ist kleiner als das erlaubte Minimum von ''{0}''
+javax.faces.validator.LongRangeValidator.MAXIMUM = Validierungsfehler: Der Wert ist gr\u00F6\u00DFer als das erlaubte Maximum von ''{0}''
+javax.faces.validator.LongRangeValidator.MINIMUM = Validation Error: Der Wert ist kleiner als das erlaubte Minimum von ''{0}''
+javax.faces.validator.LongRangeValidator.NOT_IN_RANGE = Validierungsfehler: Der Wert ist nicht zwischen den erwarteten Werten von {0} und {1}.
+javax.faces.validator.LongRangeValidator.TYPE = Validierungsfehler: Der Wert ist nicht vom korrekten Typ.
+
+cas2login.pageTitle = oxAuth - Login
+cas2login.loginHeader = Login (second step)
+cas2login.pleaseLoginHere = Please login here
+cas2login.username = Username
+cas2login.password = Password
+cas2login.rememberMe = Remember me
+cas2login.termsPrivace = Terms &amp; Privacy
+
+error.errorEncountered = Error Encountered
+error.unexpectedError = An unexpected error has occurred at {0}
+
+cert.failedToCheckCertificate = Failed to check certificate
+cert.thisCanHappen = This can happen in the following cases:
+cert.youHaveExpired = You have expired certificate. <br/>Please, registered with the system and get new certificate.
+cert.youSelectedInvalid = You selected invalid certificate.<br/>Please, restart your browser and try to log in again.
+cert.noteInternetExplorer = Note: Internet Explorer and Mozilla Firefox allow to clear the SSL state without restarting the browser:
+cert.ifYouAreUsing = If you are using Internet Explorer, you can use the "Clear SSL" button in the settings section: Contents (click Tools \u2192 Internet Options).
+cert.ifYouUseFireFox = If you use FireFox, you can use the menu: Options \u2192 Privacy \u2192 Clear all current history \u2192 select \u201cActive Logins\u201d \u2192 press button Clear Now.
+cert.youFailedToInstall = You failed to install the personal certificate into the browser<br/>Please, install the certificate from the backup file (.PFX), restart your browser and try to log in again.
+cert.youHaveAlreadyOpened = You have already opened the page in this browser but haven't chosen any certificate for further usage. The browser now remembers this choice. <br/>Please, restart your browser, log in again and choose the appropriate certificate.<br/>If you use Internet Explorer, click "Clear SSL state" at Tools/Internet Options/Content.
+cert.ifYouUseMacOS = If you use MacOS X and updated the operation system to version 10.5.3 please see <a href="http://support.apple.com/kb/HT1679?viewlocale=en_US" class="external">http://support.apple.com/kb/HT1679?viewlocale=en_US</a> to resolve the issue.
+
+duologin.title = oxAuth - DUO Login
+duologin.login = DUO Login (second step)
+duologin.termsPrivacy = Terms &amp; Privacy
+
+gpluslogin.title = oxAuth - Google+ Login
+gpluslogin.pageTitle = oxAuth - Login
+gpluslogin.login = Login (second step)
+gpluslogin.pleaseLoginHere = Please login here
+gpluslogin.username = Username
+gpluslogin.password = Password
+gpluslogin.rememberMe = Remember Me
+gpluslogin.termsPrivacy = Terms &amp; Privacy
+
+otp.pageTitle = oxAuth - OTP Login
+otp.otpCode = OTP code
+otp.scanQRCode = Scan QR code using OTP authenticator and press finish button
+otp.finish = Finish
+
+oxpush.pageTitle = oxAuth oxPush - Login
+oxpush.login = oxPush Login (Authentication request)
+oxpush.loginPairingRequest = oxPush Login (Pairing request)
+oxpush.sendingAuthenticationRequest = Sending authentication request...
+oxpush.termsPrivacy = Terms &amp; Privacy
+oxpush.title = oxAuth - Login
+oxpush.loginLabel = Login
+oxpush.pleaseLoginHere = Please login here
+oxpush.username = Username
+oxpush.password = Password
+oxpush.rememberMe = Remember me
+oxpush.beforeLogIn = Before log in make sure that you installed oxPush mobile application
+oxpush.androidMobileApplication = Android mobile application
+oxpush.byProceeding = By proceeding, you agree with the
+oxpush.privacyPolicy = Privacy Policy
+oxpush.pleaseRead = Please read the
+oxpush.termsOfService = Terms of Service
+oxpush.checkingPairing = Checking pairing status...
+oxpush.waitingForUser = Waiting for user approval...
+oxpush.pairingQRCode = Pairing QR code:
+oxpush.pairingCode = Pairing code:
+
+passport.pageTitle = Passport - PostLogin
+passport.loginSecondStep = Login (second step)
+passport.pleaseLoginHere = Please login here
+passport.email = Email
+passport.termsPrivacy = Terms &amp; Privacy
+passport.oxAuthPassportLogin = oxAuth - Passport Login
+passport.needAGluuAccount = Need a Gluu account?
+passport.forgotYourPassword = Forgot your password?
+passport.useExternalAuthentication = Use External Authentification
+passport.registerNewUser = Register new user
+
+saml.pageTitle = oxAuth - Login
+saml.login = Login (second step)
+saml.username = Username
+saml.password = Password
+saml.rememberMe = Remember me
+saml.termsPrivacy = Terms &amp; Privacy
+
+supergluu.scanQRCode = Scan QR code using Super-Gluu
+
+fido2.verification.stepverification=2 Step Verification
+fido2.verification.usedevice=Use your fido2 device to sign in to your Gluu account.
+fido2.verification.insertkey = Insert your fido2 security key.
+fido2.verification.useit=If your fido2 key has a button, tap it. Otherwise you can remove it and re-insert it.
+
+uaf.pageTitle = oxAuth - UAF Login
+uaf.scanQRCode = Scan QR code using UAF mobile authenticator
+
+password.validation.invalid = The password provide is not strong enough 
+
+# CIBA
+ciba.bindingMessage=Binding Message
+
+device.authorization.pageTitle=Ger\u00E4teberechtigung
+device.authorization.title=Ger\u00E4teberechtigung
+device.authorization.subtitle=Ein Ger\u00E4t verarbeitet die Berechtigung zum Herstellen einer Verbindung mit Ihrem Konto
+device.authorization.code.inputbox.label=Auf Ihrem Ger\u00E4t angezeigter Code
+device.authorization.confirm.button=Fortsetzen
+device.authorization.invalid.user.code=Ung\u00FCltiger Code, \u00DCberpr\u00FCfen Sie den Code und versuchen Sie es erneut
+device.authorization.access.denied.msg=Die Autorisierung wurde verweigert. Bitte versuchen Sie es erneut vom Ger\u00E4t
+device.authorization.expired.code.msg=Code abgelaufen, bitte versuchen Sie es erneut vom Ger\u00E4t
+device.authorization.init.new.request.msg=Neue Anfrage initialisieren
+device.authorization.access.granted.title=Ger\u00E4teberechtigung erteilt
+device.authorization.authorization.completed.msg=Erfolgreich! Erforderliche Berechtigungen wurden dem Ger\u00E4t erteilt.
+device.authorization.brute.forcing.msg=Zu viele fehlgeschlagene Versuche ... bitte nach einer Stunde erneut vom Ger\u00e4t aus starten.
\ No newline at end of file
diff --git a/oxAuth/Server/src/main/resources/oxauth_en.properties b/oxAuth/Server/src/main/resources/oxauth_en.properties
new file mode 100644
index 00000000..0770f8d1
--- /dev/null
+++ b/oxAuth/Server/src/main/resources/oxauth_en.properties
@@ -0,0 +1,341 @@
+common.copyright=Powered by
+common.allRightsReserved=Free and open source access management.
+common.agreePolicy=By proceeding, you agree with the {0}
+common.privacyPolicy=Privacy Policy
+common.pleaseReadTheTos=Please read the
+common.termsOfService=Terms of Service
+common.gluuInc=Gluu, Inc
+common.caution=Use subject to MIT LICENSE
+
+login.pageTitle=oxAuth - Login
+login.login=Login
+login.loginAsAnother=Login as another user
+login.selectAccount=Select Account
+login.register=Register
+login.pleaseLoginHere=Please login here
+login.username=Username
+login.password=Password
+login.rememberMe=Remember me
+login.errorMessage=Incorrect username or password.
+login.errorSessionInvalidMessage=Failed to authenticate. Authentication session has expired. Please navigate back to the original page and try again.
+login.failedToAuthenticate=Failed to authenticate.
+login.failedToGrantPermission=Failed to grant permission.
+login.failedToDeny=Failed to deny authorization.
+login.userAlreadyAuthenticated=User is already authenticated. Re-send authorization request (must be handled by RP).
+login.youDontHavePermission=You don't have permissions.
+login.forgotYourPassword = Forgot your password?
+
+selectAccount.pageTitle=Select Account
+
+logout.missingParameters=Invalid Request. The request is missing a required parameter, includes an unsupported parameter value, or is otherwise malformed.
+logout.failedToProceed=Failed to process logout
+
+authorize.pageTitle=oxAuth - Authorize
+authorize.requestForPermission=Request for Permission
+authorize.requestingPermissionForScopes={0} is requesting permission to do the following:
+authorize.viewIndividualClaim=View {0} claim.
+authorize.allow=Allow
+authorize.doNotAllow=Don't Allow
+
+uma2.gather.failed=Failed to gather claims.
+uma2.invalid.step=Invalid step provided during claims-gathering flow.
+uma2.invalid.session=Failed to gather claims. Session has expired.
+
+consent.gather.failed=Failed to gather claims.
+consent.gather.invalid.step=Invalid step provided during claims-gathering flow.
+consent.gather.invalid.session=Failed to gather claims. Session has expired.
+consent.gather.declined=Authorization declined
+
+up=\u2191
+down=\u2193
+left=\u2039
+right=\u203A
+
+validator.assertFalse=validation failed
+validator.assertTrue=validation failed
+validator.future=must be a future date
+validator.length=length must be between {min} and {max}
+validator.max=must be less than or equal to {value}
+validator.min=must be greater than or equal to {value}
+validator.notNull=may not be null
+validator.past=must be a past date
+validator.pattern=must match "{regex}"
+validator.range=must be between {min} and {max}
+validator.size=size must be between {min} and {max}
+validator.email=must be a well-formed email address
+
+org.jboss.seam.loginFailed=Login failed
+org.jboss.seam.loginSuccessful=Welcome, #0!
+
+org.jboss.seam.TransactionFailed=Transaction failed
+org.jboss.seam.NoConversation=The conversation ended, timed out or was processing another request
+org.jboss.seam.IllegalNavigation=Illegal navigation
+org.jboss.seam.ProcessEnded=Process #0 already ended
+org.jboss.seam.ProcessNotFound=Process #0 not found
+org.jboss.seam.TaskEnded=Task #0 already ended
+org.jboss.seam.TaskNotFound=Task #0 not found
+org.jboss.seam.NotLoggedIn=Please log in first
+
+javax.faces.validator.BeanValidator.MESSAGE={0}
+javax.faces.component.UIInput.CONVERSION=value could not be converted to the expected type
+javax.faces.component.UIInput.REQUIRED={0} is required
+javax.faces.component.UIInput.UPDATE=an error occurred when processing your submitted information
+javax.faces.component.UISelectOne.INVALID=value is not valid
+javax.faces.component.UISelectMany.INVALID=value is not valid
+
+javax.faces.converter.BigDecimalConverter.DECIMAL=value must be a number
+javax.faces.converter.BigDecimalConverter.DECIMAL_detail=value must be a signed decimal number consisting of zero or more digits, optionally followed by a decimal point and fraction, eg. {1}
+javax.faces.converter.BigIntegerConverter.BIGINTEGER=value must be an integer
+javax.faces.converter.BigIntegerConverter.BIGINTEGER_detail=value must be a signed integer number consisting of zero or more digits
+javax.faces.converter.BooleanConverter.BOOLEAN=value must be true or false
+javax.faces.converter.BooleanConverter.BOOLEAN_detail=value must be true or false (any value other than true will evaluate to false)
+javax.faces.converter.ByteConverter.BYTE=value must be a number between 0 and 255
+javax.faces.converter.ByteConverter.BYTE_detail=value must be a number between 0 and 255
+javax.faces.converter.CharacterConverter.CHARACTER=value must be a character
+javax.faces.converter.CharacterConverter.CHARACTER_detail=value must be a valid ASCII character
+javax.faces.converter.DateTimeConverter.DATE=value must be a date
+javax.faces.converter.DateTimeConverter.DATE_detail=value must be a date,  eg. {1}
+javax.faces.converter.DateTimeConverter.TIME=value must be a time
+javax.faces.converter.DateTimeConverter.TIME_detail=value must be a time,  eg. {1}
+javax.faces.converter.DateTimeConverter.DATETIME=value must be a date and time
+javax.faces.converter.DateTimeConverter.DATETIME_detail=value must be a date and time,  eg. {1}
+javax.faces.converter.DateTimeConverter.PATTERN_TYPE=a pattern or type attribute must be specified to convert the value
+javax.faces.converter.DoubleConverter.DOUBLE=value must be a number
+javax.faces.converter.DoubleConverter.DOUBLE_detail=value must be a number between 4.9E-324 and 1.7976931348623157E308
+javax.faces.converter.EnumConverter.ENUM=value must be convertible to an enum
+javax.faces.converter.EnumConverter.ENUM_detail=value must be convertible to an enum or from the enum that contains the constant {1}
+javax.faces.converter.EnumConverter.ENUM_NO_CLASS=value must be convertible to an enum or from the enum, but no enum class provided
+javax.faces.converter.EnumConverter.ENUM_NO_CLASS_detail=value must be convertible to an enum or from the enum, but no enum class provided
+javax.faces.converter.FloatConverter.FLOAT=value must be a number
+javax.faces.converter.FloatConverter.FLOAT_detail=value must be a number between 1.4E-45 and 3.4028235E38
+javax.faces.converter.IntegerConverter.INTEGER=value must be an integer
+javax.faces.converter.IntegerConverter.INTEGER_detail=value must be an integer number between -2147483648 and 2147483647
+javax.faces.converter.LongConverter.LONG=value must be an integer
+javax.faces.converter.LongConverter.LONG_detail=value must be an integer number between -9223372036854775808 and 9223372036854775807
+javax.faces.converter.NumberConverter.CURRENCY=value must be a currency amount
+javax.faces.converter.NumberConverter.CURRENCY_detail=value must be a currency amount, eg. {1}
+javax.faces.converter.NumberConverter.PERCENT=value must be a percentage amount
+javax.faces.converter.NumberConverter.PERCENT_detail=value must be a percentage amount, eg. {1}
+javax.faces.converter.NumberConverter.NUMBER=value must be a number
+javax.faces.converter.NumberConverter.NUMBER_detail=value must be a number
+javax.faces.converter.NumberConverter.PATTERN=value must be a number
+javax.faces.converter.NumberConverter.PATTERN_detail=value must be a number
+javax.faces.converter.ShortConverter.SHORT=value must be an integer
+javax.faces.converter.ShortConverter.SHORT_detail=value must be an integer number between -32768 and 32767
+
+javax.faces.validator.DoubleRangeValidator.MAXIMUM=value must be less than or equal to {0}
+javax.faces.validator.DoubleRangeValidator.MINIMUM=value must be greater than or equal to {0}
+javax.faces.validator.DoubleRangeValidator.NOT_IN_RANGE=value must be between {0} and {1}
+javax.faces.validator.DoubleRangeValidator.TYPE=value is not of the correct type
+javax.faces.validator.LengthValidator.MAXIMUM=value must be shorter than or equal to {0} characters
+javax.faces.validator.LengthValidator.MINIMUM=value must be longer than or equal to {0} characters
+javax.faces.validator.LongRangeValidator.MAXIMUM=value must be less than or equal to {0}
+javax.faces.validator.LongRangeValidator.MINIMUM=value must be greater than or equal to {0}
+javax.faces.validator.LongRangeValidator.NOT_IN_RANGE=value must be between {0} and {1}
+javax.faces.validator.LongRangeValidator.TYPE=value is not of the correct type
+
+javax.faces.validator.NOT_IN_RANGE=value must be between {0} and {1}
+javax.faces.converter.STRING=value could not be converted to a string
+
+cas2login.pageTitle = oxAuth - Login
+cas2login.loginHeader = Login (second step)
+cas2login.pleaseLoginHere = Please login here
+cas2login.username = Username
+cas2login.password = Password
+cas2login.rememberMe = Remember me
+cas2login.termsPrivace = Terms &amp; Privacy
+
+error.errorEncountered = Error Encountered
+error.unexpectedError = An unexpected error has occurred at {0}
+
+error.invalidSessionState = Invalid session state or session limitation rule has occured at {0}
+
+cert.failedToCheckCertificate = Failed to check certificate
+cert.thisCanHappen = This can happen in the following cases:
+cert.youHaveExpired = You have expired certificate. <br/>Please, registered with the system and get new certificate.
+cert.youSelectedInvalid = You selected invalid certificate.<br/>Please, restart your browser and try to log in again.
+cert.noteInternetExplorer = Note: Internet Explorer and Mozilla Firefox allow to clear the SSL state without restarting the browser:
+cert.ifYouAreUsing = If you are using Internet Explorer, you can use the "Clear SSL" button in the settings section: Contents (click Tools \u2192 Internet Options).
+cert.ifYouUseFireFox = If you use FireFox, you can use the menu: Options \u2192 Privacy \u2192 Clear all current history \u2192 select \u201cActive Logins\u201d \u2192 press button Clear Now.
+cert.youFailedToInstall = You failed to install the personal certificate into the browser<br/>Please, install the certificate from the backup file (.PFX), restart your browser and try to log in again.
+cert.youHaveAlreadyOpened = You have already opened the page in this browser but haven't chosen any certificate for further usage. The browser now remembers this choice. <br/>Please, restart your browser, log in again and choose the appropriate certificate.<br/>If you use Internet Explorer, click "Clear SSL state" at Tools/Internet Options/Content.
+cert.ifYouUseMacOS = If you use MacOS X and updated the operation system to version 10.5.3 please see <a href="http://support.apple.com/kb/HT1679?viewlocale=en_US" class="external">http://support.apple.com/kb/HT1679?viewlocale=en_US</a> to resolve the issue.
+
+duologin.title = oxAuth - DUO Login
+duologin.login = DUO Login (second step)
+duologin.termsPrivacy = Terms &amp; Privacy
+
+gpluslogin.title = oxAuth - Google+ Login
+gpluslogin.pageTitle = oxAuth - Login
+gpluslogin.login = Login (second step)
+gpluslogin.pleaseLoginHere = Please login here
+gpluslogin.username = Username
+gpluslogin.password = Password
+gpluslogin.rememberMe = Remember Me
+gpluslogin.termsPrivacy = Terms &amp; Privacy
+
+otp.pageTitle = oxAuth - OTP Login
+otp.otpCode = OTP code
+otp.scanQRCode = Scan QR code using OTP authenticator and press finish button
+otp.finish = Finish
+
+oxpush.pageTitle = oxAuth oxPush - Login
+oxpush.login = oxPush Login (Authentication request)
+oxpush.loginPairingRequest = oxPush Login (Pairing request)
+oxpush.sendingAuthenticationRequest = Sending authentication request...
+oxpush.termsPrivacy = Terms &amp; Privacy
+oxpush.title = oxAuth - Login
+oxpush.loginLabel = Login
+oxpush.pleaseLoginHere = Please login here
+oxpush.username = Username
+oxpush.password = Password
+oxpush.rememberMe = Remember me
+oxpush.beforeLogIn = Before log in make sure that you installed oxPush mobile application
+oxpush.androidMobileApplication = Android mobile application
+oxpush.byProceeding = By proceeding, you agree with the
+oxpush.privacyPolicy = Privacy Policy
+oxpush.pleaseRead = Please read the
+oxpush.termsOfService = Terms of Service
+oxpush.checkingPairing = Checking pairing status...
+oxpush.waitingForUser = Waiting for user approval...
+oxpush.pairingQRCode = Pairing QR code:
+oxpush.pairingCode = Pairing code:
+
+passport.pleaseLoginHere = Please login here
+passport.email = Email
+passport.termsPrivacy = Terms &amp; Privacy
+passport.oxAuthPassportLogin = oxAuth - Passport Login
+passport.needAGluuAccount = Need a Gluu account?
+passport.forgotYourPassword = Forgot your password?
+passport.useExternalAuthentication = Use External Authentication
+passport.orUseExternal=OR use an external service to sign in:
+passport.registerNewUser = Register new user
+passport.javascriptRequired=This pages requires javascript enabled to work properly
+passport.fillMissingData=Please provide the following to complete authentication:
+passport.invalidMailWarn=Please provide a valid email
+
+saml.pageTitle = oxAuth - Login
+saml.login = Login (second step)
+saml.username = Username
+saml.password = Password
+saml.rememberMe = Remember me
+saml.termsPrivacy = Terms &amp; Privacy
+
+supergluu.scanQRCode = Scan QR code using Super-Gluu
+
+# Used by twilio and smpp sms 2FA
+otp_sms.pageTitle = SMS - Login
+otp_sms.verification=2 Step Verification
+otp_sms.usedevice=Use your device to sign in to your Gluu account.
+otp_sms.verificationcode=Enter a verification code
+otp_sms.codesent=A text message with a verification code <br />\ was sent to
+otp_sms.login=Done
+otp_sms.termsPrivacy = Terms &amp; Privacy
+
+uaf.pageTitle = oxAuth - UAF Login
+uaf.scanQRCode = Scan QR code using UAF mobile authenticator
+
+supergluu.enroll.website.url= https://super.gluu.org
+supergluu.enroll.Docs.url= https://gluu.org/docs/supergluu
+supergluu.enroll.supergluuisfreesecure= Super Gluu is a free and secure two-factor authentication mobile application for all the people in your school, department, organization, or enterprise.
+supergluu.enroll.downloadsupergluu= Download Super Gluu:
+supergluu.enroll.scanqrcode= Scan the QR code with your Super Gluu app to enroll your device
+supergluu.enroll.enrollyourdevice= Enroll your device
+supergluu.enroll.Website= Website
+supergluu.enroll.Docs=Docs
+
+u2f.verification.stepverification=2 Step Verification
+u2f.verification.usedevice=Use your U2F device to sign in to your Gluu account.
+u2f.verification.insertkey = Insert your U2F security key.
+u2f.verification.useit=If your U2F key has a button, tap it. Otherwise you can remove it and re-insert it. 
+
+fido2.verification.stepverification=2 Step Verification
+fido2.verification.usedevice=Use your fido2 device to sign in to your Gluu account.
+fido2.verification.insertkey = Insert your fido2 security key.
+fido2.verification.useit=If your fido2 key has a button, tap it. Otherwise you can remove it and re-insert it. 
+
+otp.login=Done
+otp.verification=2 Step Verification
+otp.entercode=Enter a verification code
+otp.usedevice=Use your device to sign in to your Gluu account.
+otp.getcode=Get a verification code from your OTP mobile app.
+
+password.validation.invalid = The password provided is not strong enough
+
+# Gluu Casa
+casa.login.title=Casa login
+casa.login.panel_title=Welcome
+casa.cancel=Cancel
+casa.close=Close
+casa.proceed=Proceed
+casa.alternative=Try another way to sign in
+casa.snd_step=2-step verification
+casa.enter_code=Enter code
+
+casa.cert.title=User certificate
+casa.cert.text=Use a digital certificate issued to you by a certification authority
+casa.cert.precontinue=Before you continue...
+casa.cert.hint_1=If you haven't done so, import the certificate issued to you into your web browser
+casa.cert.hint_2=When clicking on the proceed button, you will be prompted to select a certificate. Choose carefully
+casa.cert.hint_3=If presented, uncheck the option related to remembering your choice
+casa.cert.hint_4=If no prompt is shown, your browser is caching a choice made recently. To clear the SSL cache, close the browser window and try again
+casa.cert.error.not_valid=Your certificate is not valid
+casa.cert.error.unparsable=Your certificate couldn't be processed by the server
+casa.cert.error.not_selected=You did not select any certificate
+casa.cert.error.cert_enrolled_other_user=The certificate presented is registered to a different account
+casa.cert.error.cert_not_recognized=The certificate presented has not been enrolled yet in Casa
+casa.cert.error.unknown_user=Inexisting user
+
+casa.u2f.title=Security key
+casa.u2f.text=Use your security key to sign in
+
+casa.fido2.title=Security key
+casa.fido2.text=Use your security key to sign in
+casa.fido2.abort_error=Operation cancelled. Use the links below to use a different alternative or to try again
+casa.fido2.invalid_state_error=The presented key is not registered for this account. Please try again with a different key
+casa.fido2.generic_error=An error occurred. Use the links below to use a different alternative or to try again
+casa.fido2.retry_key=Retry security key
+
+casa.securitykey.insert=Insert your security key
+casa.securitykey.tap=If your key has a button, tap it. Otherwise you can remove it and re-insert it.
+
+casa.twilio_sms.title=Passcode sent via SMS
+casa.twilio_sms.text=We'll send you a one-time passcode to validate your identity
+
+casa.smpp.title=Passcode sent via SMS
+casa.smpp.text=We'll send you a one-time passcode to validate your identity
+
+casa.sms.enter=Enter the code sent via SMS
+casa.sms.choose=Choose a number to send an SMS to:
+casa.sms.send=Send
+
+casa.super_gluu.title=Super Gluu
+casa.super_gluu.text=Get a push notification sent to your Super Gluu device
+casa.super_gluu.push_approve=A push notification has been sent to your Super Gluu device. Approve to login
+casa.super_gluu.not_received_1=Didn't receive the push?
+casa.super_gluu.not_received_2=Scan a QR code instead
+
+casa.otp.title=OTP token
+casa.otp.text=Get a verification code from your OTP mobile app or hardware token.
+
+# CIBA
+ciba.bindingMessage=Binding Message
+
+device.authorization.pageTitle=Device Authorization
+device.authorization.title=Device Authorization
+device.authorization.subtitle=A device is processing permission to connect with your account
+device.authorization.code.inputbox.label=Code displayed on your device
+device.authorization.confirm.button=Continue
+device.authorization.invalid.user.code=Invalid code, please review the code and retry
+device.authorization.access.denied.msg=The authorization has been denied, please retry from the device
+device.authorization.expired.code.msg=Code expired, please retry from the device
+device.authorization.init.new.request.msg=Init new request
+device.authorization.access.granted.title=Device authorization granted
+device.authorization.authorization.completed.msg=Successful! Required permissions have been granted to the device.
+device.authorization.brute.forcing.msg=Too many failed attemps... please init again from device after an hour.
+
+# Passwordless
+pwdless.pageTitle=Max-Security Profile Login
+pwdless.username=Enter your username
+pwdless.choose=Choose an account:
+pwdless.other=Use another account
diff --git a/oxAuth/Server/src/main/resources/oxauth_es.properties b/oxAuth/Server/src/main/resources/oxauth_es.properties
new file mode 100644
index 00000000..13108b70
--- /dev/null
+++ b/oxAuth/Server/src/main/resources/oxauth_es.properties
@@ -0,0 +1,153 @@
+common.copyright=Desarrollado por
+common.allRightsReserved=Gesti\u00F3n de acceso de c\u00F3digo abierto.
+common.agreePolicy=Aseg\u00FArese de leer y aceptar las
+common.privacyPolicy=Pol\u00EDticas de privacidad
+common.pleaseReadTheTos=Por favor lea los
+common.termsOfService=T\u00E9rminos de Servicio
+
+login.pageTitle=oxAuth - Inicio de sesi\u00F3n
+login.login=Inicio de sesi\u00F3n
+login.pleaseLoginHere=Ingrese los datos de su cuenta para iniciar sesi\u00F3n
+login.username=Nombre de usuario
+login.password=Contrase\u00F1a
+login.rememberMe=Recordar mis datos
+login.errorMessage=Ingrese un nombre de usuario y password validos
+login.failedToAuthenticate=Error al autenticarse.
+login.youDontHavePermission=No tienes permisos.
+login.forgotYourPassword = ¿Olvidaste tu contrase\u00F1a?
+
+logout.missingParameters=Solicitud no v\u00E1lida. A la solicitud le falta un par\u00E1metro requerido, incluye un valor de par\u00E1metro no soportado o est\u00E1 malformado.
+logout.failedToProceed=Error al procesar el cierre de sesi\u00F3n
+
+
+authorize.pageTitle=oxAuth - Autorizaci\u00F3n
+authorize.requestForPermission=Solicitud de permiso
+authorize.requestingPermissionForScopes={0} esta solicitando permiso para lo siguiente:
+authorize.viewIndividualClaim=Ver claim {0}.
+authorize.allow=Permitir
+authorize.doNotAllow=No permitir
+
+cas2login.pageTitle = oxAuth - Inicio de sesi\u00F3n
+cas2login.loginHeader = Inicio de sesi\u00F3n (paso dos)
+cas2login.pleaseLoginHere = Por favor inicie sesi\u00F3n aqu\u00ED
+cas2login.username = Nombre de usuario
+cas2login.password = Contrase\u00F1a
+cas2login.rememberMe = Recordar mis datos
+cas2login.termsPrivace = T\u00E9rminos &amp; Privacidad
+
+error.errorEncountered = Se encontr\u00F3 un error
+error.unexpectedError = Ocurri\u00F3 un error inesperado en {0}
+
+cert.failedToCheckCertificate = Error al verificar el certificado
+cert.thisCanHappen = Esto puedo suceder en los siguientes casos:
+cert.youHaveExpired = El certificado ha expirado. <br/>Por favor, regístrese en el sistema y obtenga un nuevo certificado.
+cert.youSelectedInvalid = El certificado seleccionado no es v\u00E1lido. <br/> Por favor, reinicie su navegador e intente iniciar sesi\u00F3n de nuevo.
+cert.noteInternetExplorer = Nota: Internet Explorer y Mozilla Firefox permiten borrar el estado SSL sin reiniciar el navegador:
+cert.ifYouAreUsing = Si está utilizando Internet Explorer, puede usar el botón "Borrar SSL" en la sección de configuración: Contenido (haga clic en Herramientas \u2192 Opciones de Internet).
+cert.ifYouUseFireFox = Si usa FireFox, puede usar el menú: Opciones \u2192 Privacidad \u2192 Borrar todo el historial actual \u2192 seleccione \u201cInicio de sesión activo\u201d \u2192 presione el botón Borrar ahora.
+cert.youFailedToInstall = Error al instalar el certificado personal en el navegador<br/>Por favor, instale el certificado desde el archivo de copia de seguridad (.PFX), reinicie su navegador e intente iniciar sesión de nuevo.
+cert.youHaveAlreadyOpened = Ya ha abierto la página en este navegador, pero no ha elegido ningún certificado para utilizar. El navegador recordar\u00E1 esta elección. <br/>Por favor, reinicie su navegador, inicie sesión nuevamente y elija el certificado apropiado.<br/>Si usa Internet Explorer, haga clic en "Borrar estado SSL" en Herramientas/Opciones de Internet/Contenido.
+cert.ifYouUseMacOS = Si usa MacOS X y actualizó el sistema operativo a la versión 10.5.3, consulte <a href="http://support.apple.com/kb/HT1679?viewlocale=en_US" class="external">http://support.apple.com/kb/HT1679?viewlocale=en_US</a> para resolver el problema.
+
+duologin.title = oxAuth - Inicio de sesi\u00F3n DUO
+duologin.login = Inicio de sesi\u00F3n DUO (paso dos)
+duologin.termsPrivacy = T\u00E9rminos &amp; Privacidad
+
+gpluslogin.title = oxAuth - Inicio de sesi\u00F3n Google+
+gpluslogin.pageTitle = oxAuth - Inicio de sesi\u00F3n
+gpluslogin.login = Inicio de sesi\u00F3n (paso dos)
+gpluslogin.pleaseLoginHere = Por favor inicie sesi\u00F3n aqu\u00ED
+gpluslogin.username = Nombre de usuario
+gpluslogin.password = Contrase\u00F1a
+gpluslogin.rememberMe = Recordar mis datos
+gpluslogin.termsPrivacy = T\u00E9rminos &amp; Privacidad
+
+otp.pageTitle = oxAuth - Inicio de sesi\u00F3n OTP
+otp.otpCode = c\u00F3digo OTP
+otp.scanQRCode = Escanee el código QR usando el autenticador OTP y presione el botón de finalizar
+otp.finish = Finalizar
+
+oxpush.pageTitle = oxAuth oxPush - Inicio de sesi\u00F3n
+oxpush.login = Inicio de sesi\u00F3n oxPush (Solicitud de autenticaci\u00F3n)
+oxpush.loginPairingRequest = Inicio de sesi\u00F3n oxPush (Solicitud de sincronizaci\u00F3n)
+oxpush.sendingAuthenticationRequest = Enviando solicitud de autenticaci\u00F3n...
+oxpush.termsPrivacy = T\u00E9rminos &amp; Privacidad
+oxpush.title = oxAuth - Inicio de sesi\u00F3n
+oxpush.loginLabel = Inicio de sesi\u00F3n
+oxpush.pleaseLoginHere = Por favor inicie sesi\u00F3n aqu\u00ED
+oxpush.username = Nombre de usuario
+oxpush.password = Contrase\u00F1a
+oxpush.rememberMe = Recordar mis datos
+oxpush.beforeLogIn = Antes de iniciar sesi\u00F3n, aseg\u00FArese de haber instalado la aplicaci\u00F3n m\u00F3vil oxPush
+oxpush.androidMobileApplication = Aplicaci\u00F3n m\u00F3vil Android
+oxpush.byProceeding = Al proceder, usted está de acuerdo con la
+oxpush.privacyPolicy = Pol\u00EDtica de privacidad
+oxpush.pleaseRead = Por favor lea los
+oxpush.termsOfService = T\u00E9rminos de servicio
+oxpush.checkingPairing = Verificando el estado de emparejamiento...
+oxpush.waitingForUser = Esperando la aprobaci\u00F3n del usuario...
+oxpush.pairingQRCode = Emparejar c\u00F3digo QR:
+oxpush.pairingCode = Emparejar c\u00F3digo:
+
+passport.pageTitle = Passport - PostLogin
+passport.loginSecondStep = Inicio de sesi\u00F3n (paso dos)
+passport.pleaseLoginHere = Por favor inicie sesi\u00F3n aqu\u00ED
+passport.email = Correo electr\u00F3nico
+passport.termsPrivacy = T\u00E9rminos &amp; Privacidad
+passport.oxAuthPassportLogin = oxAuth - Inicio de sesi\u00F3n Passport
+passport.needAGluuAccount = ¿Necesitas una cuenta Gluu?
+passport.forgotYourPassword = ¿Olvidaste tu contrase\u00F1a?
+passport.useExternalAuthentication = Usar autenticaci\u00F3n externa
+passport.registerNewUser = Registrar un nuevo usuario
+
+saml.pageTitle = oxAuth - Inicio de sesi\u00F3n
+saml.login = Inicio de sesi\u00F3n (paso dos)
+saml.username = Nombre de usuario
+saml.password = Contrase\u00F1a
+saml.rememberMe = Recordar mis datos
+saml.termsPrivacy = T\u00E9rminos &amp; Privacidad
+
+supergluu.scanQRCode = Escanear el c\u00F3digo QR usando Super-Gluu
+
+# Used by twilio and smpp sms 2FA
+otp_sms.pageTitle = SMS - Inicio de sesi\u00f3n
+otp_sms.verification=2 Step Verification
+otp_sms.usedevice=Use your device to sign in to your Gluu account.
+otp_sms.verificationcode=Ingrese el c\u00f3digo que recibi\u00f3 por SMS
+otp_sms.codesent=A text message with a verification code <br />\ was sent to
+otp_sms.login=Inicio de sesi\u00f3n SMS (paso dos)
+otp_sms.termsPrivacy = T\u00e9rminos &amp; Privacidad
+
+uaf.pageTitle = oxAuth - Inicio de sesi\u00F3n UAF
+uaf.scanQRCode = Escanear el c\u00F3digo QR usando el autenticador m\u00F3vil UAF
+
+# Gluu Casa - general
+casa.alternative=¿No tienes tu credencial preferida a la mano?. Ingresa con una alternativa:
+casa.button.u2f=Llave de seguridad
+casa.button.twilio_sms=C\u00F3digo a trav\u00E9s de SMS
+casa.button.smpp=C\u00f3digo a trav\u00e9s de SMS
+casa.button.super_gluu=Super Gluu
+casa.button.otp=Token OTP
+
+# Gluu Casa - OTP
+otp.getcode2=Obt\u00E9n un c\u00F3digo de verificaci\u00F3n con tu aplicaci\u00F3n m\u00F3vil o token f\u00EDsico.
+
+# Gluu Casa - OTP SMS
+otp_sms.choose=Escoge un n\u00FAmero al cual enviar un mensaje de texto:
+otp_sms.send=Enviar
+
+# CIBA
+ciba.bindingMessage=Mensaje Vinculante
+
+device.authorization.pageTitle=Autorizaci\u00F3n de Dispositivos
+device.authorization.title=Autorizaci\u00F3n de Dispositivos
+device.authorization.subtitle=Un dispositivo esta procesando permiso para conectarse con tu cuenta
+device.authorization.code.inputbox.label=C\u00F3digo mostrado en el dispositivo
+device.authorization.confirm.button=Continuar
+device.authorization.invalid.user.code=Codigo invalido, por favor revisa el codigo y reintentalo.
+device.authorization.access.denied.msg=La authorizacion ha sido denegada, por favor reintenta desde el dispositivo.
+device.authorization.expired.code.msg=Codigo expirado, por favor reintenta desde el dispositivo.
+device.authorization.init.new.request.msg=Iniciar nueva solicitud
+device.authorization.access.granted.title=Autorizacion de dispositivo concedida
+device.authorization.authorization.completed.msg=Exitoso! Permisos requeridos han sido asignados al dispositivo.
+device.authorization.brute.forcing.msg=Demasiados intentos fallidos... por favor inicia nuevamente desde el dispositivo despues de una hora.
\ No newline at end of file
diff --git a/oxAuth/Server/src/main/resources/oxauth_fr.properties b/oxAuth/Server/src/main/resources/oxauth_fr.properties
new file mode 100644
index 00000000..6bc372b1
--- /dev/null
+++ b/oxAuth/Server/src/main/resources/oxauth_fr.properties
@@ -0,0 +1,270 @@
+common.copyright=Powered by
+common.allRightsReserved=Free and open source access management.
+common.agreePolicy=By proceeding, you agree with the {0}
+common.privacyPolicy=Privacy Policy
+common.pleaseReadTheTos=Please read the
+common.termsOfService=Terms of Service
+common.gluuInc=Gluu, Inc
+common.caution=Use subject to MIT LICENSE
+
+
+login.pageTitle=oxAuth - Connexion
+login.login=Connexion
+login.register=Cr\u00e9er un compte
+login.pleaseLoginHere=Se connecter
+login.username=Nom utilisateur
+login.password=Mot de passe
+login.rememberMe=Se souvenir de moi
+login.errorMessage=Email ou mot de passe incorrect.
+login.errorSessionInvalidMessage=Erreur d'authentification. La session a expir\u00e9.
+
+login.failedToAuthenticate=Erreur d'authentification.
+login.youDontHavePermission=Vous n'avez pas les permissions.
+login.forgotYourPassword = Forgot your password?
+
+authorize.pageTitle=oxAuth - Autorisation
+authorize.requestForPermission=Demande de permission
+authorize.requestingPermissionForScopes={0} demande l'autorisation de faire ce qui suit:
+authorize.viewIndividualClaim=View {0} claim.
+authorize.allow=Autoris\u00e9
+authorize.doNotAllow=Non autoris\u00e9
+
+logout.missingParameters=Requ\u00eate Invalide. La requ\u00eate manque d'un param\u00e8tre requis, comprend une valeur de param\u00e8tre non prise en charge ou est autrement mal form\u00e9e.
+logout.failedToProceed=Erreur pendant le processus de d\u00e9connexion
+
+up=\u2191
+down=\u2193
+left=\u2039
+right=\u203A
+
+javax.persistence.EntityNotFoundException                   = Entit\ufffd introuvable
+javax.persistence.OptimisticLockException                   = Un autre utilisateur a modifi\ufffd les m\ufffdmes donn\ufffdes. Veuillez essayer de nouveau.
+
+validator.assertFalse = La validation a \ufffdchou\ufffd
+validator.assertTrue  = La validation a \ufffdchou\ufffd
+validator.future      = doit \ufffdtre une date \ufffd venir.
+validator.length      = la longueur doit \ufffdtre comprise entre {min} et {max}
+validator.max         = doit \ufffdtre inf\ufffdrieur(e) ou \ufffdgal(e) \ufffd {value}
+validator.min         = doit \ufffdtre sup\ufffdrieur(e) ou \ufffdgal(e) \ufffd {value}
+validator.notNull     = ne peut \ufffdtre nul(le)
+validator.past        = doit \ufffdtre une date pass\ufffde
+validator.pattern     = doit correspondre \ufffd "{regex}"
+validator.range       = doit \ufffdtre compris(e) entre {min} et {max}
+validator.size        = La taille doit \ufffdtre comprise entre {min} et {max}
+validator.email       = doit \ufffdtre une adresse email valide
+
+org.jboss.seam.framework.EntityNotFoundException = Entit\ufffd introuvable
+org.jboss.seam.security.AuthorizationException   = Vous n'avez pas les autorisations n\ufffdcessaires pour effectuer ceci
+org.jboss.seam.security.NotLoggedInException     = Veuillez d'abord vous connecter
+org.jboss.seam.unexpected.error                  = Erreur inattendue. Veuillez essayez de nouveau.
+
+org.jboss.seam.loginFailed                       = La connexion a \ufffdchou\ufffd.
+org.jboss.seam.loginSuccessful                   = Bienvenue, {0}!
+
+org.jboss.seam.TransactionFailed                 = La transaction a \ufffdchou\ufffd.
+org.jboss.seam.NoConversation                    = La conversation s'est interrompue, a d\ufffdpass\ufffd les d\ufffdlais ou traite une autre requ\ufffdte.
+org.jboss.seam.IllegalNavigation                 = Navigation ill\ufffdgale
+org.jboss.seam.ProcessEnded                      = Processus #0 d\ufffdj\ufffd achev\ufffd
+org.jboss.seam.ProcessNotFound                   = Le processus #0 n'a pas \ufffdt\ufffd trouv\ufffd.
+org.jboss.seam.TaskEnded                         = T\ufffdche #0 d\ufffdj\ufffd achev\ufffde
+org.jboss.seam.TaskNotFound                      = La t\ufffdche #0 n'a pas \ufffdt\ufffd trouv\ufffde.
+org.jboss.seam.NotLoggedIn                       = Veuillez d'abord vous connecter.
+
+javax.faces.component.UIInput.CONVERSION                    = La valeur ne peut \ufffdtre convertie dans le type attendu
+javax.faces.component.UIInput.REQUIRED                      = Une valeur est requise.
+javax.faces.component.UIInput.UPDATE                        = Une erreur est survenue lors du traitement de l'information que vous avez fournie
+javax.faces.component.UISelectMany.INVALID                  = La valeur n'est pas valide.
+javax.faces.component.UISelectOne.INVALID                   = La valeur n'est pas valide.
+
+javax.faces.converter.BigDecimalConverter.DECIMAL           = la valeur doit \ufffdtre un nombre
+javax.faces.converter.BigDecimalConverter.DECIMAL_detail    = la valeur doit \ufffdtre un nombre d\ufffdcimal sign\ufffd comprenant z\ufffdro chiffre ou plus, \ufffdventuellement suivi par une virgule d\ufffdcimale et une faction, par ex. {1}
+javax.faces.converter.BigIntegerConverter.BIGINTEGER        = la valeur doit \ufffdtre un nombre
+javax.faces.converter.BigIntegerConverter.BIGINTEGER_detail = la valeur doit \ufffdtre un entier sign\ufffd comprenant z\ufffdro chiffre ou plus
+javax.faces.converter.BooleanConverter.BOOLEAN              = la valeur doit \ufffdtre "vrai" ou "faux"
+javax.faces.converter.BooleanConverter.BOOLEAN_detail       = la valeur doit \ufffdtre "vrai" ou "faux" (toute valeur autre que "vrai" est \ufffdvalu\ufffde \ufffd "faux")
+javax.faces.converter.ByteConverter.BYTE                    = la valeur doit \ufffdtre un nombre entre 0 et 255
+javax.faces.converter.ByteConverter.BYTE_detail             = la valeur doit \ufffdtre un nombre entre 0 et 255
+javax.faces.converter.CharacterConverter.CHARACTER          = la valeur doit \ufffdtre un caract\ufffdre
+javax.faces.converter.CharacterConverter.CHARACTER_detail   = la valeur doit \ufffdtre un caract\ufffdre ASCII valide
+javax.faces.converter.DateTimeConverter.DATE                = la valeur doit \ufffdtre une date
+javax.faces.converter.DateTimeConverter.DATE_detail         = la valeur doit \ufffdtre une date, par ex. {1}
+javax.faces.converter.DateTimeConverter.TIME                = la valeur doit \ufffdtre une heure
+javax.faces.converter.DateTimeConverter.TIME_detail         = la valeur doit \ufffdtre une heure, par ex. {1}
+javax.faces.converter.DateTimeConverter.DATETIME            = la valeur doit \ufffdtre une date et une heure
+javax.faces.converter.DateTimeConverter.DATETIME_detail     = la valeur doit \ufffdtre une date et une heure, par ex. {1}
+javax.faces.converter.DateTimeConverter.PATTERN_TYPE        = un attribut doit indiquer le mod\ufffdle ou le type pour convertir la valeur
+javax.faces.converter.DoubleConverter.DOUBLE                = la valeur doit \ufffdtre un nombre
+javax.faces.converter.DoubleConverter.DOUBLE_detail         = la valeur doit \ufffdtre un nombre entre 4,9E-324 et 17976931348623157E308
+javax.faces.converter.EnumConverter.ENUM                    = la valeur doit \ufffdtre convertible en une \ufffdnum\ufffdration
+javax.faces.converter.EnumConverter.ENUM_detail             = la valeur doit \ufffdtre convertible en une \ufffdnum\ufffdration ou depuis l''\ufffdnum\ufffdration qui contient la constante {1}
+javax.faces.converter.EnumConverter.ENUM_NO_CLASS           = la valeur doit \ufffdtre convertible en une \ufffdnum\ufffdration ou depuis l'\ufffdnum\ufffdration, mais aucune classe d'\ufffdnum\ufffdration n'est fournie
+javax.faces.converter.EnumConverter.ENUM_NO_CLASS_detail    = la valeur doit \ufffdtre convertible en une \ufffdnum\ufffdration ou depuis l'\ufffdnum\ufffdration, mais aucune classe d'\ufffdnum\ufffdration n'est fournie
+javax.faces.converter.FloatConverter.FLOAT                  = la valeur doit \ufffdtre un nombre
+javax.faces.converter.FloatConverter.FLOAT_detail           = la valeur doit \ufffdtre un nombre entre 1,4E-45 et 3,4028235E38
+javax.faces.converter.IntegerConverter.INTEGER              = la valeur doit \ufffdtre un nombre
+javax.faces.converter.IntegerConverter.INTEGER_detail       = la valeur doit \ufffdtre un nombre entre -2147483648 et 2147483647
+javax.faces.converter.LongConverter.LONG                    = la valeur doit \ufffdtre un nombre
+javax.faces.converter.LongConverter.LONG_detail             = la valeur doit \ufffdtre un nombre entre -9223372036854775808 et 9223372036854775807
+javax.faces.converter.NumberConverter.CURRENCY              = la valeur doit \ufffdtre un  montant mon\ufffdtaire
+javax.faces.converter.NumberConverter.CURRENCY_detail       = la valeur doit \ufffdtre un  montant mon\ufffdtaire, par ex. {1}
+javax.faces.converter.NumberConverter.NUMBER                = la valeur doit \ufffdtre un nombre
+javax.faces.converter.NumberConverter.NUMBER_detail         = la valeur doit \ufffdtre un nombre
+javax.faces.converter.NumberConverter.PATTERN               = la valeur doit \ufffdtre un nombre
+javax.faces.converter.NumberConverter.PATTERN_detail        = la valeur doit \ufffdtre un nombre
+javax.faces.converter.NumberConverter.PERCENT               = la valeur doit \ufffdtre un pourcentage
+javax.faces.converter.NumberConverter.PERCENT_detail        = la valeur doit \ufffdtre un pourcentage, par ex. {1}
+javax.faces.converter.ShortConverter.SHORT                  = la valeur doit \ufffdtre un nombre
+javax.faces.converter.ShortConverter.SHORT_detail           = la valeur doit \ufffdtre comprise entre -32768 et 32767
+
+javax.faces.validator.DoubleRangeValidator.MAXIMUM          = La valeur doit \ufffdtre inf\ufffdrieure ou \ufffdgale \ufffd {0}
+javax.faces.validator.DoubleRangeValidator.MINIMUM          = La valeur doit \ufffdtre sup\ufffdrieure ou \ufffdgale \ufffd {0}
+javax.faces.validator.DoubleRangeValidator.NOT_IN_RANGE     = La valeur doit \ufffdtre comprise entre {0} et {1}
+javax.faces.validator.DoubleRangeValidator.TYPE             = La valeur n'est pas du type correct
+javax.faces.validator.LengthValidator.MAXIMUM               = La valeur doit comporter {0} caract\ufffdres ou moins
+javax.faces.validator.LengthValidator.MINIMUM               = La valeur doit comporter {0} caract\ufffdres ou plus
+javax.faces.validator.LongRangeValidator.MAXIMUM            = La valeur doit \ufffdtre inf\ufffdrieure ou \ufffdgale \ufffd {0}
+javax.faces.validator.LongRangeValidator.MINIMUM            = La valeur doit \ufffdtre sup\ufffdrieure ou \ufffdgale \ufffd {0}
+javax.faces.validator.LongRangeValidator.NOT_IN_RANGE       = La valeur doit \ufffdtre comprise entre {0} et {1}
+javax.faces.validator.LongRangeValidator.TYPE               = La valeur n'est pas du type correct
+
+javax.faces.validator.NOT_IN_RANGE                          = La valeur doit \ufffdtre comprise entre {0} et {1}
+javax.faces.converter.STRING                                = La valeur ne peut \ufffdtre convertie en cha\ufffdne de caract\ufffdres
+
+cas2login.pageTitle = oxAuth - Login
+cas2login.loginHeader = Login (second step)
+cas2login.pleaseLoginHere = Please login here
+cas2login.username = Username
+cas2login.password = Password
+cas2login.rememberMe = Remember me
+cas2login.termsPrivace = Terms &amp; Privacy
+
+error.errorEncountered = Error Encountered
+error.unexpectedError = An unexpected error has occurred at {0}
+
+cert.failedToCheckCertificate = Failed to check certificate
+cert.thisCanHappen = This can happen in the following cases:
+cert.youHaveExpired = You have expired certificate. <br/>Please, registered with the system and get new certificate.
+cert.youSelectedInvalid = You selected invalid certificate.<br/>Please, restart your browser and try to log in again.
+cert.noteInternetExplorer = Note: Internet Explorer and Mozilla Firefox allow to clear the SSL state without restarting the browser:
+cert.ifYouAreUsing = If you are using Internet Explorer, you can use the "Clear SSL" button in the settings section: Contents (click Tools \u2192 Internet Options).
+cert.ifYouUseFireFox = If you use FireFox, you can use the menu: Options \u2192 Privacy \u2192 Clear all current history \u2192 select \u201cActive Logins\u201d \u2192 press button Clear Now.
+cert.youFailedToInstall = You failed to install the personal certificate into the browser<br/>Please, install the certificate from the backup file (.PFX), restart your browser and try to log in again.
+cert.youHaveAlreadyOpened = You have already opened the page in this browser but haven't chosen any certificate for further usage. The browser now remembers this choice. <br/>Please, restart your browser, log in again and choose the appropriate certificate.<br/>If you use Internet Explorer, click "Clear SSL state" at Tools/Internet Options/Content.
+cert.ifYouUseMacOS = If you use MacOS X and updated the operation system to version 10.5.3 please see <a href="http://support.apple.com/kb/HT1679?viewlocale=en_US" class="external">http://support.apple.com/kb/HT1679?viewlocale=en_US</a> to resolve the issue.
+
+duologin.title = oxAuth - DUO Login
+duologin.login = DUO Login (second step)
+duologin.termsPrivacy = Terms &amp; Privacy
+
+gpluslogin.title = oxAuth - Google+ Login
+gpluslogin.pageTitle = oxAuth - Login
+gpluslogin.login = Login (second step)
+gpluslogin.pleaseLoginHere = Please login here
+gpluslogin.username = Username
+gpluslogin.password = Password
+gpluslogin.rememberMe = Remember Me
+gpluslogin.termsPrivacy = Terms &amp; Privacy
+
+otp.pageTitle = oxAuth - OTP Login
+otp.otpCode = OTP code
+otp.scanQRCode = Scan QR code using OTP authenticator and press finish button
+otp.finish = Finish
+
+oxpush.pageTitle = oxAuth oxPush - Login
+oxpush.login = oxPush Login (Authentication request)
+oxpush.loginPairingRequest = oxPush Login (Pairing request)
+oxpush.sendingAuthenticationRequest = Sending authentication request...
+oxpush.termsPrivacy = Terms &amp; Privacy
+oxpush.title = oxAuth - Login
+oxpush.loginLabel = Login
+oxpush.pleaseLoginHere = Please login here
+oxpush.username = Username
+oxpush.password = Password
+oxpush.rememberMe = Remember me
+oxpush.beforeLogIn = Before log in make sure that you installed oxPush mobile application
+oxpush.androidMobileApplication = Android mobile application
+oxpush.byProceeding = By proceeding, you agree with the
+oxpush.privacyPolicy = Privacy Policy
+oxpush.pleaseRead = Please read the
+oxpush.termsOfService = Terms of Service
+oxpush.checkingPairing = Checking pairing status...
+oxpush.waitingForUser = Waiting for user approval...
+oxpush.pairingQRCode = Pairing QR code:
+oxpush.pairingCode = Pairing code:
+
+passport.pageTitle = Passport - PostLogin
+passport.loginSecondStep = Login (second step)
+passport.pleaseLoginHere = Please login here
+passport.email = Email
+passport.termsPrivacy = Terms &amp; Privacy
+passport.oxAuthPassportLogin = oxAuth - Passport Login
+passport.needAGluuAccount = Need a Gluu account?
+passport.forgotYourPassword = Forgot your password?
+passport.useExternalAuthentication = Use External Authentification
+passport.registerNewUser = Register new user
+
+saml.pageTitle = oxAuth - Login
+saml.login = Login (second step)
+saml.username = Username
+saml.password = Password
+saml.rememberMe = Remember me
+saml.termsPrivacy = Terms &amp; Privacy
+
+supergluu.scanQRCode = Scan QR code using Super-Gluu
+
+fido2.verification.stepverification=2 Step Verification
+fido2.verification.usedevice=Use your fido2 device to sign in to your Gluu account.
+fido2.verification.insertkey = Insert your fido2 security key.
+fido2.verification.useit=If your fido2 key has a button, tap it. Otherwise you can remove it and re-insert it.
+
+uaf.pageTitle = oxAuth - UAF Login
+uaf.scanQRCode = Scan QR code using UAF mobile authenticator
+
+password.validation.invalid = The password provide is not strong enough 
+
+# CIBA
+ciba.bindingMessage=Binding Message
+
+device.authorization.pageTitle=Autorisation de p\u00E9riph\u00E9rique
+device.authorization.title=Autorisation de p\u00E9riph\u00E9rique
+device.authorization.subtitle=Un appareil traite l'autorisation de se connecter \u00E0 votre compte
+device.authorization.code.inputbox.label=Code affich\u00E9 sur votre appareil
+device.authorization.confirm.button=Continuer
+device.authorization.invalid.user.code=Code non valide, veuillez verifier le code et reessayer
+device.authorization.access.denied.msg=L'autorisation a ete refusee, veuillez reessayer depuis l'appareil
+device.authorization.expired.code.msg=Le code a expire, veuillez reessayer depuis l'appareil
+device.authorization.init.new.request.msg=Init nouvelle demande
+device.authorization.access.granted.title=Autorisation d'appareil accordee
+device.authorization.authorization.completed.msg=Reussi! Les autorisations requises ont ete accordees a l'appareil.
+device.authorization.brute.forcing.msg=Trop de tentatives infructueuses ... veuillez recommencer depuis l'appareil apres une heure.
+
+# person authentication script - whispeak
+whispeak.auth.alternative.instruction=Pour vous connecter sans utiliser votre voix.
+whispeak.auth.error.instruction=Essayer un autre moyen d\'authentification.
+whispeak.auth.instructions.passport.choose.provider=Veuillez vous authentifier \u00E0 l\'aide d\'une m\u00E9thode d\u00E9j\u00E0 configur\u00E9e.
+whispeak.auth.instructions.passport.fallback=Vous avez choisi de ne pas utiliser votre voix, vous pouvez changer ce choix \u00E0 votre prochaine authentification.
+whispeak.auth.instructions.passport.verif=Nous devons d\'abord v\u00E9rifier votre identit\u00E9.
+whispeak.auth.instructions.record=Veuillez cliquer sur le bouton Micro (\ud83c\udf99) pour commencer l\'authentification.
+whispeak.auth.instructions.validate=Validez (→) quand vous aurez termin\u00E9 votre lecture.
+whispeak.modo=Simple, rapide et s\u00E9curis\u00E9.
+whispeak.msg2=Veuillez entrer votre adresse e-mail. 
+whispeak.use.voice.auth=Souhaitez-vous utiliser l\'authentification vocale ?
+whispeak.use.voice.auth.question=Souhaitez-vous utiliser l\'authentification vocale ?
+whispeak.welcome=Bienvenue chez WHISPEAK.
+whispeak.revocation.title=Instructions pour révoquer votre signature vocale :
+whispeak.revocation.instruction=Notez précieusement ces informations afin de pouvoir détruire votre signature vocale à tout moment :
+whispeak.revocation.revocation_ui_link=Accédez à ce lien pour détruire la signature vocale :
+whispeak.revocation.revocation_pwd=Code de confirmation pour la destruction :
+whispeak.revocation.copytext=Copier
+whispeak.revocation.ok=Compris
+whispeak.login.signatureDoesNotExist=Votre signature vocale est invalide ou inexistante. Veuillez vous inscrire en faisant une nouvelle signature.
+whispeak.login.2fa.passwordMismatch=Mot de passe incorrect. Veuillez tenter encore une fois.
+whispeak.login.2fa.password=Veuillez renseigner votre mot de passe ou en créer un si vous n\'en avez pas encore.
+whispeak.apiError.badRequest=Erreur technique: erreur de communication.
+whispeak.apiError.unauthorized=Erreur technique: Action non possible.
+whispeak.apiError.invalidCredential=Erreur serveur: Action non possible.
+whispeak.apiError.signatureNotFound=Signature vocale inconnue: veuillez vous inscrire une autre fois.
+whispeak.apiError.unsupportedAudioFile=Erreur technique. Fichier audio non valide.
+whispeak.apiError.audioConstraintsFailed=Extrait audio trop court ou incomplet.
+whispeak.apiError.voiceMismatch=Votre voix ne correspond pas pour cet utilisateur.
+whispeak.apiError.invalidEnrollSignature=Signature vocale invalide: veuillez vous inscrire une autre fois.
\ No newline at end of file
diff --git a/oxAuth/Server/src/main/resources/oxauth_it.properties b/oxAuth/Server/src/main/resources/oxauth_it.properties
new file mode 100644
index 00000000..69f4f566
--- /dev/null
+++ b/oxAuth/Server/src/main/resources/oxauth_it.properties
@@ -0,0 +1,204 @@
+login.pageTitle=oxAuth - Inicio de sesi\u00F3n
+login.login=Inicio de sesi\u00F3n
+login.pleaseLoginHere=Ingrese los datos de su cuenta para iniciar sesi\u00F3n
+login.username=Nombre de usuario
+login.password=Contrase\u00F1a
+login.rememberMe=Recordar mis datos
+login.errorMessage=Ingrese un nombre de usuario y password validos
+login.failedToAuthenticate=Failed to authenticate.
+login.youDontHavePermission=You don't have permissions.
+login.forgotYourPassword = Forgot your password?
+
+logout.missingParameters=Invalid Request. The request is missing a required parameter, includes an unsupported parameter value, or is otherwise malformed.
+logout.failedToProceed=Failed to process logout
+
+up=\u2191
+down=\u2193
+left=\u2039
+right=\u203A
+
+validator.assertFalse=validazione fallita
+validator.assertTrue=validazione corretta
+validator.future=deve essere una data futura
+validator.length=la lunghezza deve essere tra {min} e {max}
+validator.max=deve essere minore o uguale a {value}
+validator.min=deve essere maggiore o uguale a {value}
+validator.notNull=non pu\u00F2 essere nullo
+validator.past=deve essere una data passata
+validator.pattern=deve corrispondere a "{regex}"
+validator.range=deve essere tra {min} e {max}
+validator.size=la grandezza deve essere tra {min} e {max}
+validator.email=deve essere un indirizzo di posta elettronica
+
+org.jboss.seam.loginFailed=Autenticazione fallita
+org.jboss.seam.loginSuccessful=Benvenuto/a, #0
+
+org.jboss.seam.TransactionFailed=Transazione fallita
+org.jboss.seam.NoConversation=La conversazione \u00E8 terminata, scaduta oppure \u00E8 stata processata un'altra richiesta
+org.jboss.seam.IllegalNavigation=Navigazione illegale
+org.jboss.seam.ProcessEnded=Il processo \#0 \u00E8 gi\u00E0\u00A0 terminato
+org.jboss.seam.ProcessNotFound=Il processo \#0 non \u00E8 stato trovato
+org.jboss.seam.TaskEnded=Il task \#0 \u00E8 gi\u00E0 terminato
+org.jboss.seam.TaskNotFound=Il task \#0 non \u00E8 stato trovato
+org.jboss.seam.NotLoggedIn=Per favore, eseguire la login
+
+javax.faces.component.UIInput.CONVERSION=il valore non pu\u00F2 essere convertito
+javax.faces.component.UIInput.REQUIRED=\u00C8 richiesto un valore
+javax.faces.component.UIInput.UPDATE=Si \u00E8 verificato un errore nell'elaborazione delle informazioni inviate
+javax.faces.component.UISelectOne.INVALID=il valore non \u00E8 valido
+javax.faces.component.UISelectMany.INVALID=il valore non \u00E8 valido
+
+javax.faces.converter.BigDecimalConverter.DECIMAL=il valore deve essere un numero
+javax.faces.converter.BigDecimalConverter.DECIMAL_detail=il valore deve essere un numero decimale con zero o pi\u00F9 cifre, opzionalmente seguito da un punto e una frazione, es. {1}
+javax.faces.converter.BigIntegerConverter.BIGINTEGER=deve essere un intero
+javax.faces.converter.BigIntegerConverter.BIGINTEGER_detail=il valore deve essere un numero intero con zero o pi\u00F9 cifre
+javax.faces.converter.BooleanConverter.BOOLEAN=deve essere vero o falso
+javax.faces.converter.BooleanConverter.BOOLEAN_detail=il valore deve essere vero o falso (qualsiasi valore diverso da vero \u00E8 considerato falso)
+javax.faces.converter.ByteConverter.BYTE=il valore deve essere un numero compreso tra 0 e 255
+javax.faces.converter.ByteConverter.BYTE_detail=il valore deve essere un numero compreso tra 0 e 255
+javax.faces.converter.CharacterConverter.CHARACTER=deve essere un carattere
+javax.faces.converter.CharacterConverter.CHARACTER_detail=il valore deve essere un carattere ASCII valido
+javax.faces.converter.DateTimeConverter.DATE=deve essere una data
+javax.faces.converter.DateTimeConverter.DATE_detail=il valore deve essere una data, es. {1}
+javax.faces.converter.DateTimeConverter.TIME=deve essere un orario
+javax.faces.converter.DateTimeConverter.TIME_detail=il valore deve essere un orario, es. {1}
+javax.faces.converter.DateTimeConverter.DATETIME=deve essere una data ed un orario
+javax.faces.converter.DateTimeConverter.DATETIME_detail=il valore deve essere una data e un orario,  es. {1}
+javax.faces.converter.DateTimeConverter.PATTERN_TYPE=per convetire il valore devono essere specificati un pattern o un attributo tipo 
+javax.faces.converter.DoubleConverter.DOUBLE=deve essere un numero
+javax.faces.converter.DoubleConverter.DOUBLE_detail=il valore deve essere un numero compreso tra 4.9E-324 e 1.7976931348623157E308
+javax.faces.converter.EnumConverter.ENUM=il valore deve essere convertibile in una enum
+javax.faces.converter.EnumConverter.ENUM_detail=il valore deve essere convertibile in una enum o da enum che contiene la costante {1}
+javax.faces.converter.EnumConverter.ENUM_NO_CLASS=il valore deve essere convertibile in una enum o da enum, ma non \u00E8 stata fornita nessuna classe enum 
+javax.faces.converter.EnumConverter.ENUM_NO_CLASS_detail=il valore deve essere convertibile in una enum o da enum, ma non \u00E8 stata fornita nessuna classe enum 
+javax.faces.converter.FloatConverter.FLOAT=deve essere un numero
+javax.faces.converter.FloatConverter.FLOAT_detail=il valore deve essere un numero compreso tra 1.4E-45 e 3.4028235E38
+javax.faces.converter.IntegerConverter.INTEGER=deve essere un numero intero
+javax.faces.converter.IntegerConverter.INTEGER_detail=il valore deve essere un numero intero compreso tra -2147483648 e 2147483647
+javax.faces.converter.LongConverter.LONG=deve essere un numero intero
+javax.faces.converter.LongConverter.LONG_detail=il valore deve essere un numero intero compreso tra -9223372036854775808 e 9223372036854775807
+javax.faces.converter.NumberConverter.CURRENCY=il valore deve essere una valuta
+javax.faces.converter.NumberConverter.CURRENCY_detail=il valore deve essere una valuta, es. {1}
+javax.faces.converter.NumberConverter.PERCENT=il valore deve essere una percentuale
+javax.faces.converter.NumberConverter.PERCENT_detail=il valore deve essere una percentuale, es. {1}
+javax.faces.converter.NumberConverter.NUMBER=deve essere un numero
+javax.faces.converter.NumberConverter.NUMBER_detail=deve essere un numero
+javax.faces.converter.NumberConverter.PATTERN=deve essere un numero
+javax.faces.converter.NumberConverter.PATTERN_detail=deve essere un numero
+javax.faces.converter.ShortConverter.SHORT=deve essere un numero intero
+javax.faces.converter.ShortConverter.SHORT_detail=il valore deve essere un numero intero compreso -32768 e 32767
+
+javax.faces.validator.DoubleRangeValidator.MAXIMUM=il valore deve essere minore o uguale a {0}
+javax.faces.validator.DoubleRangeValidator.MINIMUM=il valore deve essere maggiore o uguale a {0}
+javax.faces.validator.DoubleRangeValidator.NOT_IN_RANGE=il valore deve essere compreso tra {0} e {1}
+javax.faces.validator.DoubleRangeValidator.TYPE=il valore non \u00E8 del tipo corretto
+javax.faces.validator.LengthValidator.MAXIMUM=il valore deve essere inferiore o uguale {0} caratteri
+javax.faces.validator.LengthValidator.MINIMUM=il valore deve essere superiore o uguale {0} caratteri
+javax.faces.validator.LongRangeValidator.MAXIMUM=il valore deve essere minore o uguale a {0}
+javax.faces.validator.LongRangeValidator.MINIMUM=il valore deve essere superiore o uguale a {0}
+javax.faces.validator.LongRangeValidator.NOT_IN_RANGE=il valore deve essere compreso tra {0} e {1}
+javax.faces.validator.LongRangeValidator.TYPE=il valore non \u00E8 del tipo corretto
+
+javax.faces.validator.NOT_IN_RANGE=il valore deve essere compreso tra {0} e {1}
+javax.faces.converter.STRING=il valore non pu\u00F2 essere convertito a stringa
+
+cas2login.pageTitle = oxAuth - Login
+cas2login.loginHeader = Login (second step)
+cas2login.pleaseLoginHere = Please login here
+cas2login.username = Username
+cas2login.password = Password
+cas2login.rememberMe = Remember me
+cas2login.termsPrivace = Terms &amp; Privacy
+
+error.errorEncountered = Error Encountered
+error.unexpectedError = An unexpected error has occurred at {0}
+
+cert.failedToCheckCertificate = Failed to check certificate
+cert.thisCanHappen = This can happen in the following cases:
+cert.youHaveExpired = You have expired certificate. <br/>Please, registered with the system and get new certificate.
+cert.youSelectedInvalid = You selected invalid certificate.<br/>Please, restart your browser and try to log in again.
+cert.noteInternetExplorer = Note: Internet Explorer and Mozilla Firefox allow to clear the SSL state without restarting the browser:
+cert.ifYouAreUsing = If you are using Internet Explorer, you can use the "Clear SSL" button in the settings section: Contents (click Tools \u2192 Internet Options).
+cert.ifYouUseFireFox = If you use FireFox, you can use the menu: Options \u2192 Privacy \u2192 Clear all current history \u2192 select \u201cActive Logins\u201d \u2192 press button Clear Now.
+cert.youFailedToInstall = You failed to install the personal certificate into the browser<br/>Please, install the certificate from the backup file (.PFX), restart your browser and try to log in again.
+cert.youHaveAlreadyOpened = You have already opened the page in this browser but haven't chosen any certificate for further usage. The browser now remembers this choice. <br/>Please, restart your browser, log in again and choose the appropriate certificate.<br/>If you use Internet Explorer, click "Clear SSL state" at Tools/Internet Options/Content.
+cert.ifYouUseMacOS = If you use MacOS X and updated the operation system to version 10.5.3 please see <a href="http://support.apple.com/kb/HT1679?viewlocale=en_US" class="external">http://support.apple.com/kb/HT1679?viewlocale=en_US</a> to resolve the issue.
+
+duologin.title = oxAuth - DUO Login
+duologin.login = DUO Login (second step)
+duologin.termsPrivacy = Terms &amp; Privacy
+
+gpluslogin.title = oxAuth - Google+ Login
+gpluslogin.pageTitle = oxAuth - Login
+gpluslogin.login = Login (second step)
+gpluslogin.pleaseLoginHere = Please login here
+gpluslogin.username = Username
+gpluslogin.password = Password
+gpluslogin.rememberMe = Remember Me
+gpluslogin.termsPrivacy = Terms &amp; Privacy
+
+otp.pageTitle = oxAuth - OTP Login
+otp.otpCode = OTP code
+otp.scanQRCode = Scan QR code using OTP authenticator and press finish button
+otp.finish = Finish
+
+oxpush.pageTitle = oxAuth oxPush - Login
+oxpush.login = oxPush Login (Authentication request)
+oxpush.loginPairingRequest = oxPush Login (Pairing request)
+oxpush.sendingAuthenticationRequest = Sending authentication request...
+oxpush.termsPrivacy = Terms &amp; Privacy
+oxpush.title = oxAuth - Login
+oxpush.loginLabel = Login
+oxpush.pleaseLoginHere = Please login here
+oxpush.username = Username
+oxpush.password = Password
+oxpush.rememberMe = Remember me
+oxpush.beforeLogIn = Before log in make sure that you installed oxPush mobile application
+oxpush.androidMobileApplication = Android mobile application
+oxpush.byProceeding = By proceeding, you agree with the
+oxpush.privacyPolicy = Privacy Policy
+oxpush.pleaseRead = Please read the
+oxpush.termsOfService = Terms of Service
+oxpush.checkingPairing = Checking pairing status...
+oxpush.waitingForUser = Waiting for user approval...
+oxpush.pairingQRCode = Pairing QR code:
+oxpush.pairingCode = Pairing code:
+
+passport.pageTitle = Passport - PostLogin
+passport.loginSecondStep = Login (second step)
+passport.pleaseLoginHere = Please login here
+passport.email = Email
+passport.termsPrivacy = Terms &amp; Privacy
+passport.oxAuthPassportLogin = oxAuth - Passport Login
+passport.needAGluuAccount = Need a Gluu account?
+passport.forgotYourPassword = Forgot your password?
+passport.useExternalAuthentication = Use External Authentification
+passport.registerNewUser = Register new user
+
+saml.pageTitle = oxAuth - Login
+saml.login = Login (second step)
+saml.username = Username
+saml.password = Password
+saml.rememberMe = Remember me
+saml.termsPrivacy = Terms &amp; Privacy
+
+supergluu.scanQRCode = Scan QR code using Super-Gluu
+
+uaf.pageTitle = oxAuth - UAF Login
+uaf.scanQRCode = Scan QR code using UAF mobile authenticator
+
+# CIBA
+ciba.bindingMessage=Binding Message
+
+device.authorization.pageTitle=Autorizzazione del dispositivo
+device.authorization.title=Autorizzazione del dispositivo
+device.authorization.subtitle=Un dispositivo sta elaborando l'autorizzazione per connettersi con il tuo account
+device.authorization.code.inputbox.label=Codice visualizzato sul dispositivo
+device.authorization.confirm.button=Continua
+device.authorization.invalid.user.code=Codice non valido, rivedi il codice e riprova
+device.authorization.access.denied.msg=L'autorizzazione e stata negata, riprovare dal dispositivo
+device.authorization.expired.code.msg=Codice scaduto, riprovare dal dispositivo
+device.authorization.init.new.request.msg=Init nuova richiesta
+device.authorization.access.granted.title=Autorizzazione del dispositivo concessa
+device.authorization.authorization.completed.msg=Riuscito! Le autorizzazioni necessarie sono state concesse al dispositivo.
+device.authorization.brute.forcing.msg=Troppi tentativi falliti ... ricominciare dal dispositivo dopo un'ora.
\ No newline at end of file
diff --git a/oxAuth/Server/src/main/resources/oxauth_ru.properties b/oxAuth/Server/src/main/resources/oxauth_ru.properties
new file mode 100644
index 00000000..dd105eb9
--- /dev/null
+++ b/oxAuth/Server/src/main/resources/oxauth_ru.properties
@@ -0,0 +1,227 @@
+common.copyright=Работает на
+common.allRightsReserved=Free and open source access management.
+common.agreePolicy=Продолжа�, вы �оглашаете�ь � #{client.getClientName()}
+common.privacyPolicy=Политика конфиденциально�ти
+common.pleaseReadTheTos=Пожалуй�та, прочитайте
+common.termsOfService=У�лови� и�пользовани�
+common.gluuInc=Gluu, Inc
+common.caution=И�пользовать в �оответ�твии � лицензией MIT LICENSE
+
+login.pageTitle=oxAuth - Вход
+login.login=Вход
+login.register=Реги�траци�
+login.pleaseLoginHere=Пожалуй�та, войдите зде�ь
+login.username=Им� пользовател�
+login.password=Пароль
+login.rememberMe=Помнить мен�
+login.errorMessage=�еверное им� пользовател� или пароль.
+login.errorSessionInvalidMessage=\u041e\u0448\u0438\u0431\u043a\u0430 \u0430\u0432\u0442\u043e\u0440\u0438\u0437\u0430\u0446\u0438\u0438. \u0421\u0435\u0441\u0441\u0438\u044f \u0438\u0441\u0442\u0435\u043a\u043b\u0430.
+login.failedToAuthenticate=�е удало�ь выполнить проверку подлинно�ти.
+login.youDontHavePermission=�е до�таточно прав.
+login.forgotYourPassword = Forgot your password?
+
+logout.failedToProceed=Ошибка при выполнении выхода
+logout.missingParameters=Invalid Request. The request is missing a required parameter, includes an unsupported parameter value, or is otherwise malformed.
+
+authorize.pageTitle=oxAuth - Authorize
+authorize.requestForPermission=Request for Permission
+authorize.requestingPermissionForScopes={0} is requesting permission to do the following:
+authorize.viewIndividualClaim=View {0} claim.
+authorize.allow=Разрешить
+authorize.doNotAllow=Don't Allow
+
+up=\u2191
+down=\u2193
+left=\u2039
+right=\u203A
+
+validator.assertFalse=validation failed
+validator.assertTrue=validation failed
+validator.future=must be a future date
+validator.length=length must be between {min} and {max}
+validator.max=must be less than or equal to {value}
+validator.min=must be greater than or equal to {value}
+validator.notNull=may not be null
+validator.past=must be a past date
+validator.pattern=must match "{regex}"
+validator.range=must be between {min} and {max}
+validator.size=size must be between {min} and {max}
+validator.email=must be a well-formed email address
+
+org.jboss.seam.loginFailed=Login failed
+org.jboss.seam.loginSuccessful=Welcome, #0!
+
+org.jboss.seam.TransactionFailed=Transaction failed
+org.jboss.seam.NoConversation=The conversation ended, timed out or was processing another request
+org.jboss.seam.IllegalNavigation=Illegal navigation
+org.jboss.seam.ProcessEnded=Process #0 already ended
+org.jboss.seam.ProcessNotFound=Process #0 not found
+org.jboss.seam.TaskEnded=Task #0 already ended
+org.jboss.seam.TaskNotFound=Task #0 not found
+org.jboss.seam.NotLoggedIn=Please log in first
+
+javax.faces.component.UIInput.CONVERSION=value could not be converted to the expected type
+javax.faces.component.UIInput.REQUIRED=value is required
+javax.faces.component.UIInput.UPDATE=an error occurred when processing your submitted information
+javax.faces.component.UISelectOne.INVALID=value is not valid
+javax.faces.component.UISelectMany.INVALID=value is not valid
+
+javax.faces.converter.BigDecimalConverter.DECIMAL=value must be a number
+javax.faces.converter.BigDecimalConverter.DECIMAL_detail=value must be a signed decimal number consisting of zero or more digits, optionally followed by a decimal point and fraction, eg. {1}
+javax.faces.converter.BigIntegerConverter.BIGINTEGER=value must be an integer
+javax.faces.converter.BigIntegerConverter.BIGINTEGER_detail=value must be a signed integer number consisting of zero or more digits
+javax.faces.converter.BooleanConverter.BOOLEAN=value must be true or false
+javax.faces.converter.BooleanConverter.BOOLEAN_detail=value must be true or false (any value other than true will evaluate to false)
+javax.faces.converter.ByteConverter.BYTE=value must be a number between 0 and 255
+javax.faces.converter.ByteConverter.BYTE_detail=value must be a number between 0 and 255
+javax.faces.converter.CharacterConverter.CHARACTER=value must be a character
+javax.faces.converter.CharacterConverter.CHARACTER_detail=value must be a valid ASCII character
+javax.faces.converter.DateTimeConverter.DATE=value must be a date
+javax.faces.converter.DateTimeConverter.DATE_detail=value must be a date,  eg. {1}
+javax.faces.converter.DateTimeConverter.TIME=value must be a time
+javax.faces.converter.DateTimeConverter.TIME_detail=value must be a time,  eg. {1}
+javax.faces.converter.DateTimeConverter.DATETIME=value must be a date and time
+javax.faces.converter.DateTimeConverter.DATETIME_detail=value must be a date and time,  eg. {1}
+javax.faces.converter.DateTimeConverter.PATTERN_TYPE=a pattern or type attribute must be specified to convert the value
+javax.faces.converter.DoubleConverter.DOUBLE=value must be a number
+javax.faces.converter.DoubleConverter.DOUBLE_detail=value must be a number between 4.9E-324 and 1.7976931348623157E308
+javax.faces.converter.EnumConverter.ENUM=value must be convertible to an enum
+javax.faces.converter.EnumConverter.ENUM_detail=value must be convertible to an enum or from the enum that contains the constant {1}
+javax.faces.converter.EnumConverter.ENUM_NO_CLASS=value must be convertible to an enum or from the enum, but no enum class provided
+javax.faces.converter.EnumConverter.ENUM_NO_CLASS_detail=value must be convertible to an enum or from the enum, but no enum class provided
+javax.faces.converter.FloatConverter.FLOAT=value must be a number
+javax.faces.converter.FloatConverter.FLOAT_detail=value must be a number between 1.4E-45 and 3.4028235E38
+javax.faces.converter.IntegerConverter.INTEGER=value must be an integer
+javax.faces.converter.IntegerConverter.INTEGER_detail=value must be an integer number between -2147483648 and 2147483647
+javax.faces.converter.LongConverter.LONG=value must be an integer
+javax.faces.converter.LongConverter.LONG_detail=value must be an integer number between -9223372036854775808 and 9223372036854775807
+javax.faces.converter.NumberConverter.CURRENCY=value must be a currency amount
+javax.faces.converter.NumberConverter.CURRENCY_detail=value must be a currency amount, eg. {1}
+javax.faces.converter.NumberConverter.PERCENT=value must be a percentage amount
+javax.faces.converter.NumberConverter.PERCENT_detail=value must be a percentage amount, eg. {1}
+javax.faces.converter.NumberConverter.NUMBER=value must be a number
+javax.faces.converter.NumberConverter.NUMBER_detail=value must be a number
+javax.faces.converter.NumberConverter.PATTERN=value must be a number
+javax.faces.converter.NumberConverter.PATTERN_detail=value must be a number
+javax.faces.converter.ShortConverter.SHORT=value must be an integer
+javax.faces.converter.ShortConverter.SHORT_detail=value must be an integer number between -32768 and 32767
+
+javax.faces.validator.DoubleRangeValidator.MAXIMUM=value must be less than or equal to {0}
+javax.faces.validator.DoubleRangeValidator.MINIMUM=value must be greater than or equal to {0}
+javax.faces.validator.DoubleRangeValidator.NOT_IN_RANGE=value must be between {0} and {1}
+javax.faces.validator.DoubleRangeValidator.TYPE=value is not of the correct type
+javax.faces.validator.LengthValidator.MAXIMUM=value must be shorter than or equal to {0} characters
+javax.faces.validator.LengthValidator.MINIMUM=value must be longer than or equal to {0} characters
+javax.faces.validator.LongRangeValidator.MAXIMUM=value must be less than or equal to {0}
+javax.faces.validator.LongRangeValidator.MINIMUM=value must be greater than or equal to {0}
+javax.faces.validator.LongRangeValidator.NOT_IN_RANGE=value must be between {0} and {1}
+javax.faces.validator.LongRangeValidator.TYPE=value is not of the correct type
+
+javax.faces.validator.NOT_IN_RANGE=value must be between {0} and {1}
+javax.faces.converter.STRING=value could not be converted to a string
+
+cas2login.pageTitle = oxAuth - Login
+cas2login.loginHeader = Login (second step)
+cas2login.pleaseLoginHere = Please login here
+cas2login.username = Username
+cas2login.password = Password
+cas2login.rememberMe = Remember me
+cas2login.termsPrivace = Terms &amp; Privacy
+
+error.errorEncountered = Error Encountered
+error.unexpectedError = An unexpected error has occurred at {0}
+
+cert.failedToCheckCertificate = Failed to check certificate
+cert.thisCanHappen = This can happen in the following cases:
+cert.youHaveExpired = You have expired certificate. <br/>Please, registered with the system and get new certificate.
+cert.youSelectedInvalid = You selected invalid certificate.<br/>Please, restart your browser and try to log in again.
+cert.noteInternetExplorer = Note: Internet Explorer and Mozilla Firefox allow to clear the SSL state without restarting the browser:
+cert.ifYouAreUsing = If you are using Internet Explorer, you can use the "Clear SSL" button in the settings section: Contents (click Tools \u2192 Internet Options).
+cert.ifYouUseFireFox = If you use FireFox, you can use the menu: Options \u2192 Privacy \u2192 Clear all current history \u2192 select \u201cActive Logins\u201d \u2192 press button Clear Now.
+cert.youFailedToInstall = You failed to install the personal certificate into the browser<br/>Please, install the certificate from the backup file (.PFX), restart your browser and try to log in again.
+cert.youHaveAlreadyOpened = You have already opened the page in this browser but haven't chosen any certificate for further usage. The browser now remembers this choice. <br/>Please, restart your browser, log in again and choose the appropriate certificate.<br/>If you use Internet Explorer, click "Clear SSL state" at Tools/Internet Options/Content.
+cert.ifYouUseMacOS = If you use MacOS X and updated the operation system to version 10.5.3 please see <a href="http://support.apple.com/kb/HT1679?viewlocale=en_US" class="external">http://support.apple.com/kb/HT1679?viewlocale=en_US</a> to resolve the issue.
+
+duologin.title = oxAuth - DUO Login
+duologin.login = DUO Login (second step)
+duologin.termsPrivacy = Terms &amp; Privacy
+
+gpluslogin.title = oxAuth - Google+ Login
+gpluslogin.pageTitle = oxAuth - Login
+gpluslogin.login = Login (second step)
+gpluslogin.pleaseLoginHere = Please login here
+gpluslogin.username = Username
+gpluslogin.password = Password
+gpluslogin.rememberMe = Remember Me
+gpluslogin.termsPrivacy = Terms &amp; Privacy
+
+otp.pageTitle = oxAuth - OTP Login
+otp.otpCode = OTP code
+otp.scanQRCode = Scan QR code using OTP authenticator and press finish button
+otp.finish = Finish
+
+oxpush.pageTitle = oxAuth oxPush - Login
+oxpush.login = oxPush Login (Authentication request)
+oxpush.loginPairingRequest = oxPush Login (Pairing request)
+oxpush.sendingAuthenticationRequest = Sending authentication request...
+oxpush.termsPrivacy = Terms &amp; Privacy
+oxpush.title = oxAuth - Login
+oxpush.loginLabel = Login
+oxpush.pleaseLoginHere = Please login here
+oxpush.username = Username
+oxpush.password = Password
+oxpush.rememberMe = Remember me
+oxpush.beforeLogIn = Before log in make sure that you installed oxPush mobile application
+oxpush.androidMobileApplication = Android mobile application
+oxpush.byProceeding = By proceeding, you agree with the
+oxpush.privacyPolicy = Privacy Policy
+oxpush.pleaseRead = Please read the
+oxpush.termsOfService = Terms of Service
+oxpush.checkingPairing = Checking pairing status...
+oxpush.waitingForUser = Waiting for user approval...
+oxpush.pairingQRCode = Pairing QR code:
+oxpush.pairingCode = Pairing code:
+
+passport.pageTitle = Passport - PostLogin
+passport.loginSecondStep = Login (second step)
+passport.pleaseLoginHere = Please login here
+passport.email = Email
+passport.termsPrivacy = Terms &amp; Privacy
+passport.oxAuthPassportLogin = oxAuth - Passport Login
+passport.needAGluuAccount = Need a Gluu account?
+passport.forgotYourPassword = Forgot your password?
+passport.useExternalAuthentication = Use External Authentification
+passport.registerNewUser = Register new user
+
+saml.pageTitle = oxAuth - Login
+saml.login = Login (second step)
+saml.username = Username
+saml.password = Password
+saml.rememberMe = Remember me
+saml.termsPrivacy = Terms &amp; Privacy
+
+supergluu.scanQRCode = Scan QR code using Super-Gluu
+
+fido2.verification.stepverification=2 Step Verification
+fido2.verification.usedevice=Use your fido2 device to sign in to your Gluu account.
+fido2.verification.insertkey = Insert your fido2 security key.
+fido2.verification.useit=If your fido2 key has a button, tap it. Otherwise you can remove it and re-insert it.
+
+uaf.pageTitle = oxAuth - UAF Login
+uaf.scanQRCode = Scan QR code using UAF mobile authenticator
+
+# CIBA
+ciba.bindingMessage=Binding Message
+
+device.authorization.pageTitle=�вторизаци� у�трой�тва
+device.authorization.title=�вторизаци� у�трой�тва
+device.authorization.subtitle=У�трой�тво обрабатывает разрешение на подключение к вашей учетной запи�и
+device.authorization.code.inputbox.label=Код отображает�� на вашем у�трой�тве
+device.authorization.confirm.button=Продолжать
+device.authorization.invalid.user.code=�еверный код, пожалуй�та, проверьте код и повторите попытку
+device.authorization.access.denied.msg=В авторизации отказано, повторите попытку � у�трой�тва
+device.authorization.expired.code.msg=Код и�тек, повторите попытку � у�трой�тва
+device.authorization.init.new.request.msg=Инициировать новый запро�
+device.authorization.access.granted.title=�вторизаци� у�трой�тва предо�тавлена
+device.authorization.authorization.completed.msg=У�пешный! Требуемые разрешени� были предо�тавлены у�трой�тву.
+device.authorization.brute.forcing.msg=Слишком много неудачных попыток ... пожалуй�та, повторите инициализацию � у�трой�тва через ча�.
\ No newline at end of file
diff --git a/oxAuth/Server/src/main/resources/oxauth_tr.properties b/oxAuth/Server/src/main/resources/oxauth_tr.properties
new file mode 100644
index 00000000..81d4029f
--- /dev/null
+++ b/oxAuth/Server/src/main/resources/oxauth_tr.properties
@@ -0,0 +1,206 @@
+login.pageTitle=oxAuth - Login
+login.login=Login
+login.register=Register
+login.pleaseLoginHere=Please login here
+login.username=Username
+login.password=Password
+login.rememberMe=Remember me
+login.errorMessage=Incorrect email or password.
+login.errorSessionInvalidMessage=Failed to authenticate. Authentication session has expired
+login.failedToAuthenticate=Failed to authenticate.
+login.youDontHavePermission=You don't have permissions.
+login.forgotYourPassword = Forgot your password?
+
+logout.missingParameters=Invalid Request. The request is missing a required parameter, includes an unsupported parameter value, or is otherwise malformed.
+logout.failedToProceed=Failed to process logout
+
+up=\u2191
+down=\u2193
+left=\u2039
+right=\u203a
+
+validator.assertFalse=do\u011frulanamad\u0131
+validator.assertTrue=do\u011frulanamad\u0131
+validator.future=gelecek bir tarih olmal\u0131d\u0131r
+validator.length=girilen de\u011ferin uzunlu\u011fu {min} ile {max} aras\u0131nda olmal\u0131d\u0131r
+validator.max=girilen de\u011fer {value} ya da daha k\u00fc\u00e7\u00fck olmal\u0131d\u0131r
+validator.min=girilen de\u011fer {value} ya da daha b\u00fcy\u00fck olmal\u0131d\u0131r
+validator.notNull=bir de\u011fer girilmesi gereklidir
+validator.past=ge\u00e7mi\u015f bir tarih girilmelidir
+validator.pattern=girilen de\u011fer "{regex}" tan\u0131mlamas\u0131na uymal\u0131d\u0131r
+validator.range=girilen de\u011ferin b\u00fcy\u00fckl\u00fc\u011f\u00fc {min} ile {max} aras\u0131nda olmal\u0131d\u0131r
+validator.size=girilen de\u011ferin boyut {min} ile {max} aras\u0131nda olmal\u0131d\u0131r
+validator.email=girilen de\u011fer e-posta adresi format\u0131na uygun olmal\u0131d\u0131r
+
+org.jboss.seam.loginFailed=Oturum a\u00e7\u0131lamad\u0131
+org.jboss.seam.loginSuccessful=Ho\u015fgeldiniz, #0!
+
+org.jboss.seam.TransactionFailed=\u0130\u015flem tamamlanamad\u0131
+org.jboss.seam.NoConversation=Konu\u015fma sonland\u0131, zaman a\u015f\u0131m\u0131na u\u011frad\u0131 ya da ba\u015fka bir talebi i\u015fliyordu
+org.jboss.seam.IllegalNavigation=Ge\u00e7ersiz y\u00f6nleme(navigasyon)
+org.jboss.seam.ProcessEnded=#0 s\u00fcreci sonlanm\u0131\u015f
+org.jboss.seam.ProcessNotFound=#0 s\u00fcreci bulunamad\u0131
+org.jboss.seam.TaskEnded=#0 g\u00f6revi sonlanm\u0131\u015f
+org.jboss.seam.TaskNotFound=#0 g\u00f6revi bulunamad\u0131
+org.jboss.seam.NotLoggedIn=L\u00fctfen \u00f6ncelikle oturum a\u00e7\u0131n
+
+javax.faces.component.UIInput.CONVERSION=girilen de\u011fer, beklenen tipe d\u00f6n\u00fc\u015ft\u00fcr\u00fclemedi
+javax.faces.component.UIInput.REQUIRED=bir de\u011fer girilmesi gereklidir
+javax.faces.component.UIInput.UPDATE=talebiniz i\u015flenirken bir hata olu\u015ftu
+javax.faces.component.UISelectOne.INVALID=ge\u00e7erli bir de\u011fer girilmelidir
+javax.faces.component.UISelectMany.INVALID=ge\u00e7erli bir de\u011fer girilmelidir
+
+javax.faces.converter.BigDecimalConverter.DECIMAL=bir say\u0131 girilmelidir
+javax.faces.converter.BigDecimalConverter.DECIMAL_detail=girilen de\u011fer, s\u0131f\u0131r ya da daha fazla basamak i\u00e7eren, ondal\u0131k ayrac\u0131 ve ondal\u0131k basamak i\u00e7erebilen i\u015faretli bir ondal\u0131k say\u0131 olmal\u0131d\u0131r, \u00f6rn. {1}
+javax.faces.converter.BigIntegerConverter.BIGINTEGER=bir tamsay\u0131 girilmelidir
+javax.faces.converter.BigIntegerConverter.BIGINTEGER_detail=girilen de\u011fer bir ya da daha fazla basamak i\u00e7eren bir tamsay\u0131 olmal\u0131d\u0131r
+javax.faces.converter.BooleanConverter.BOOLEAN=girilen de\u011fer true ya da false olmal\u0131d\u0131r
+javax.faces.converter.BooleanConverter.BOOLEAN_detail=girilen de\u011fer true ya da false olmal\u0131d\u0131r (true olmayan her de\u011fer false olarak de\u011ferlendirilecektir)
+javax.faces.converter.ByteConverter.BYTE=girilen de\u011fer 0 ile 255 aras\u0131nda bir say\u0131 olmal\u0131d\u0131r
+javax.faces.converter.ByteConverter.BYTE_detail=girilen de\u011fer 0 ile 255 aras\u0131nda bir say\u0131 olmal\u0131d\u0131r
+javax.faces.converter.CharacterConverter.CHARACTER=girilen de\u011fer bir karakter olmal\u0131d\u0131r
+javax.faces.converter.CharacterConverter.CHARACTER_detail=ge\u00e7erli bir ASCII karakter girilmelidir
+javax.faces.converter.DateTimeConverter.DATE=girilen de\u011fer bir tarih olmal\u0131d\u0131r
+javax.faces.converter.DateTimeConverter.DATE_detail=girilen de\u011fer bir tarih olmal\u0131d\u0131r, \u00f6rn. {1}
+javax.faces.converter.DateTimeConverter.TIME=girilen de\u011fer bir zaman olmal\u0131d\u0131r
+javax.faces.converter.DateTimeConverter.TIME_detail=girilen de\u011fer bir zaman olmal\u0131d\u0131r, \u00f6rn. {1}
+javax.faces.converter.DateTimeConverter.DATETIME=girilen de\u011fer tarih ve zaman i\u00e7ermelidir
+javax.faces.converter.DateTimeConverter.DATETIME_detail=girilen de\u011fer tarih ve zaman i\u00e7ermelidir, \u00f6rn. {1}
+javax.faces.converter.DateTimeConverter.PATTERN_TYPE=girilen de\u011feri d\u00f6n\u00fc\u015ft\u00fcrebilmek i\u00e7in bir desen(pattern) ya da tip \u00f6zniteli\u011fi(attribute) tan\u0131mlanmal\u0131d\u0131r.
+javax.faces.converter.DoubleConverter.DOUBLE=bir say\u0131 girilmelidir
+javax.faces.converter.DoubleConverter.DOUBLE_detail=4.9E-324 ile 1.7976931348623157E308 aras\u0131nda bir say\u0131 girilmelidir
+javax.faces.converter.EnumConverter.ENUM=girilen de\u011fer enum tipine d\u00f6n\u00fc\u015ft\u00fcr\u00fclebilmelidir
+javax.faces.converter.EnumConverter.ENUM_detail=girilen de\u011fer sabit i\u00e7eren bir enum tipinden enum tipine d\u00f6n\u00fc\u015ft\u00fcr\u00fclebilmelidir {1}
+javax.faces.converter.EnumConverter.ENUM_NO_CLASS=girilen de\u011fer enum tipinden enum tipine d\u00f6n\u00fc\u015ft\u00fcr\u00fclebilmelidir. Ancak enum s\u0131n\u0131f\u0131(class) bulunamad\u0131
+javax.faces.converter.EnumConverter.ENUM_NO_CLASS_detail=girilen de\u011fer enum tipinden enum tipine d\u00f6n\u00fc\u015ft\u00fcr\u00fclebilmelidir. Ancak enum s\u0131n\u0131f\u0131(class) bulunamad\u0131
+javax.faces.converter.FloatConverter.FLOAT=bir say\u0131 girilmelidir
+javax.faces.converter.FloatConverter.FLOAT_detail=1.4E-45 ile 3.4028235E38 aras\u0131nda bir say\u0131 girilmelidir
+javax.faces.converter.IntegerConverter.INTEGER=bir tamsay\u0131 girilmelidir
+javax.faces.converter.IntegerConverter.INTEGER_detail=-2147483648 ile 2147483647 aras\u0131nda bir tamsay\u0131 girilmelidir
+javax.faces.converter.LongConverter.LONG=bir tamsay\u0131 girilmelidir
+javax.faces.converter.LongConverter.LONG_detail=-9223372036854775808 ile 9223372036854775807 aras\u0131nda bir tamsay\u0131 girilmelidir
+javax.faces.converter.NumberConverter.CURRENCY=para birimi tipinden bir de\u011fer girilmelidir
+javax.faces.converter.NumberConverter.CURRENCY_detail=para birimi tipinden bir de\u011fer girilmelidir, \u00f6rn. {1}
+javax.faces.converter.NumberConverter.PERCENT=y\u00fczdelik tipinden bir de\u011fer girilmelidir
+javax.faces.converter.NumberConverter.PERCENT_detail=y\u00fczdelik tipinden bir de\u011fer girilmelidir, \u00f6rn. {1}
+javax.faces.converter.NumberConverter.NUMBER=bir say\u0131 girilmelidir
+javax.faces.converter.NumberConverter.NUMBER_detail=bir say\u0131 girilmelidir
+javax.faces.converter.NumberConverter.PATTERN=bir say\u0131 girilmelidir
+javax.faces.converter.NumberConverter.PATTERN_detail=bir say\u0131 girilmelidir
+javax.faces.converter.ShortConverter.SHORT=bir tamsay\u0131 girilmelidir
+javax.faces.converter.ShortConverter.SHORT_detail=-32768 ile 32767 aras\u0131nda bir tamsay\u0131 girilmelidir
+
+javax.faces.validator.DoubleRangeValidator.MAXIMUM=girilen de\u011fer {0} ya da daha k\u00fc\u00e7\u00fck olmal\u0131d\u0131r
+javax.faces.validator.DoubleRangeValidator.MINIMUM=girilen de\u011fer {0} ya da daha b\u00fcy\u00fck olmal\u0131d\u0131r
+javax.faces.validator.DoubleRangeValidator.NOT_IN_RANGE=girilen de\u011fer {0} ile {1} aras\u0131nda olmal\u0131d\u0131r
+javax.faces.validator.DoubleRangeValidator.TYPE=girilen de\u011ferin tipi yanl\u0131\u015f
+javax.faces.validator.LengthValidator.MAXIMUM=girilen de\u011fer {0} ya da daha az karakter i\u00e7ermelidir
+javax.faces.validator.LengthValidator.MINIMUM=girilen de\u011fer {0} ya da fazla karakter i\u00e7ermelidir
+javax.faces.validator.LongRangeValidator.MAXIMUM=girilen de\u011fer {0} ya da daha k\u00fc\u00e7\u00fck olmal\u0131d\u0131r
+javax.faces.validator.LongRangeValidator.MINIMUM=girilen de\u011fer {0} ya da daha b\u00fcy\u00fck olmal\u0131d\u0131r
+javax.faces.validator.LongRangeValidator.NOT_IN_RANGE=girilen de\u011fer {0} ile {1} aral\u0131\u011f\u0131nda olmal\u0131d\u0131r
+javax.faces.validator.LongRangeValidator.TYPE=yanl\u0131\u015f tipte bir de\u011fer girildi
+
+javax.faces.validator.NOT_IN_RANGE=girilen de\u011fer {0} ile {1} aral\u0131\u011f\u0131nda olmal\u0131d\u0131r
+javax.faces.converter.STRING=girilen de\u011fer bir dizgiye(string) d\u00f6n\u00fc\u015ft\u00fcr\u00fclemedi
+
+cas2login.pageTitle = oxAuth - Login
+cas2login.loginHeader = Login (second step)
+cas2login.pleaseLoginHere = Please login here
+cas2login.username = Username
+cas2login.password = Password
+cas2login.rememberMe = Remember me
+cas2login.termsPrivace = Terms &amp; Privacy
+
+error.errorEncountered = Error Encountered
+error.unexpectedError = An unexpected error has occurred at {0}
+
+cert.failedToCheckCertificate = Failed to check certificate
+cert.thisCanHappen = This can happen in the following cases:
+cert.youHaveExpired = You have expired certificate. <br/>Please, registered with the system and get new certificate.
+cert.youSelectedInvalid = You selected invalid certificate.<br/>Please, restart your browser and try to log in again.
+cert.noteInternetExplorer = Note: Internet Explorer and Mozilla Firefox allow to clear the SSL state without restarting the browser:
+cert.ifYouAreUsing = If you are using Internet Explorer, you can use the "Clear SSL" button in the settings section: Contents (click Tools \u2192 Internet Options).
+cert.ifYouUseFireFox = If you use FireFox, you can use the menu: Options \u2192 Privacy \u2192 Clear all current history \u2192 select \u201cActive Logins\u201d \u2192 press button Clear Now.
+cert.youFailedToInstall = You failed to install the personal certificate into the browser<br/>Please, install the certificate from the backup file (.PFX), restart your browser and try to log in again.
+cert.youHaveAlreadyOpened = You have already opened the page in this browser but haven't chosen any certificate for further usage. The browser now remembers this choice. <br/>Please, restart your browser, log in again and choose the appropriate certificate.<br/>If you use Internet Explorer, click "Clear SSL state" at Tools/Internet Options/Content.
+cert.ifYouUseMacOS = If you use MacOS X and updated the operation system to version 10.5.3 please see <a href="http://support.apple.com/kb/HT1679?viewlocale=en_US" class="external">http://support.apple.com/kb/HT1679?viewlocale=en_US</a> to resolve the issue.
+
+duologin.title = oxAuth - DUO Login
+duologin.login = DUO Login (second step)
+duologin.termsPrivacy = Terms &amp; Privacy
+
+gpluslogin.title = oxAuth - Google+ Login
+gpluslogin.pageTitle = oxAuth - Login
+gpluslogin.login = Login (second step)
+gpluslogin.pleaseLoginHere = Please login here
+gpluslogin.username = Username
+gpluslogin.password = Password
+gpluslogin.rememberMe = Remember Me
+gpluslogin.termsPrivacy = Terms &amp; Privacy
+
+otp.pageTitle = oxAuth - OTP Login
+otp.otpCode = OTP code
+otp.scanQRCode = Scan QR code using OTP authenticator and press finish button
+otp.finish = Finish
+
+oxpush.pageTitle = oxAuth oxPush - Login
+oxpush.login = oxPush Login (Authentication request)
+oxpush.loginPairingRequest = oxPush Login (Pairing request)
+oxpush.sendingAuthenticationRequest = Sending authentication request...
+oxpush.termsPrivacy = Terms &amp; Privacy
+oxpush.title = oxAuth - Login
+oxpush.loginLabel = Login
+oxpush.pleaseLoginHere = Please login here
+oxpush.username = Username
+oxpush.password = Password
+oxpush.rememberMe = Remember me
+oxpush.beforeLogIn = Before log in make sure that you installed oxPush mobile application
+oxpush.androidMobileApplication = Android mobile application
+oxpush.byProceeding = By proceeding, you agree with the
+oxpush.privacyPolicy = Privacy Policy
+oxpush.pleaseRead = Please read the
+oxpush.termsOfService = Terms of Service
+oxpush.checkingPairing = Checking pairing status...
+oxpush.waitingForUser = Waiting for user approval...
+oxpush.pairingQRCode = Pairing QR code:
+oxpush.pairingCode = Pairing code:
+
+passport.pageTitle = Passport - PostLogin
+passport.loginSecondStep = Login (second step)
+passport.pleaseLoginHere = Please login here
+passport.email = Email
+passport.termsPrivacy = Terms &amp; Privacy
+passport.oxAuthPassportLogin = oxAuth - Passport Login
+passport.needAGluuAccount = Need a Gluu account?
+passport.forgotYourPassword = Forgot your password?
+passport.useExternalAuthentication = Use External Authentification
+passport.registerNewUser = Register new user
+
+saml.pageTitle = oxAuth - Login
+saml.login = Login (second step)
+saml.username = Username
+saml.password = Password
+saml.rememberMe = Remember me
+saml.termsPrivacy = Terms &amp; Privacy
+
+supergluu.scanQRCode = Scan QR code using Super-Gluu
+
+uaf.pageTitle = oxAuth - UAF Login
+uaf.scanQRCode = Scan QR code using UAF mobile authenticator
+
+# CIBA
+ciba.bindingMessage=Binding Message
+
+device.authorization.pageTitle=Cihaz Yetkilendirme
+device.authorization.title=Cihaz Yetkilendirme
+device.authorization.subtitle=Bir cihaz, hesabınızla ba\u011flantı kurma iznini i\u015fliyor
+device.authorization.code.inputbox.label=Cihazınızda g\u00f6r\u00fcnt\u00fclenen kod
+device.authorization.confirm.button=Devam et
+device.authorization.invalid.user.code=Ge\u00e7ersiz kod, l\u00fctfen kodu inceleyin ve tekrar deneyin
+device.authorization.access.denied.msg=Yetkilendirme reddedildi, l\u00fctfen cihazdan tekrar deneyin
+device.authorization.expired.code.msg=Kodun s\u00fcresi doldu, l\u00fctfen cihazdan tekrar deneyin
+device.authorization.init.new.request.msg=Yeni istek ba\u015flat
+device.authorization.access.granted.title=Cihaz yetkilendirmesi verildi
+device.authorization.authorization.completed.msg=Ba\u015farılı! Cihaza gerekli izinler verildi.
+device.authorization.brute.forcing.msg=\u00c7\u006f\u006b \u0066\u0061\u007a\u006c\u0061 \u0062\u0061\u015f\u0061\u0072\u0131\u0073\u0131\u007a \u0064\u0065\u006e\u0065\u006d\u0065 \u002e\u002e\u002e \u004c\u00fc\u0074\u0066\u0065\u006e \u0062\u0069\u0072 \u0073\u0061\u0061\u0074 \u0073\u006f\u006e\u0072\u0061 \u0063\u0069\u0068\u0061\u007a\u0064\u0061\u006e \u0074\u0065\u006b\u0072\u0061\u0072 \u0062\u0061\u015f\u006c\u0061\u0074\u0131\u006e\u002e
\ No newline at end of file
diff --git a/oxAuth/Server/src/main/resources/quartz.properties b/oxAuth/Server/src/main/resources/quartz.properties
new file mode 100644
index 00000000..618df94d
--- /dev/null
+++ b/oxAuth/Server/src/main/resources/quartz.properties
@@ -0,0 +1,4 @@
+org.quartz.scheduler.instanceName=oxAuthScheduler
+org.quartz.threadPool.threadCount=5
+org.quartz.jobStore.class=org.quartz.simpl.RAMJobStore
+org.quartz.scheduler.skipUpdateCheck=true
diff --git a/oxAuth/Server/src/main/resources/validation_messages.properties b/oxAuth/Server/src/main/resources/validation_messages.properties
new file mode 100644
index 00000000..f5e33e7b
--- /dev/null
+++ b/oxAuth/Server/src/main/resources/validation_messages.properties
@@ -0,0 +1,131 @@
+# Copyright 2004 The Apache Software Foundation.
+#
+# Licensed under the Apache License, Version 2.0 (the "License");
+# you may not use this file except in compliance with the License.
+# You may obtain a copy of the License at
+#
+#      http://www.apache.org/licenses/LICENSE-2.0
+#
+# Unless required by applicable law or agreed to in writing, software
+# distributed under the License is distributed on an "AS IS" BASIS,
+# WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+# See the License for the specific language governing permissions and
+# limitations under the License.
+
+# standard messages (Spec. 2.5.2.4)
+
+# components
+javax.faces.component.UIInput.CONVERSION = {0}: Conversion error occurred.
+javax.faces.component.UIInput.REQUIRED = Value is required.
+javax.faces.component.UIInput.UPDATE = {0}: An error occurred when processing your submitted information. 
+
+javax.faces.component.UISelectOne.INVALID = {0}: Validation Error: Value is not valid
+javax.faces.component.UISelectMany.INVALID = {0}: Validation Error: Value is not valid
+
+# converters
+javax.faces.converter.BigDecimalConverter.DECIMAL = {2}: ''{0}'' must be a signed decimal number.
+javax.faces.converter.BigDecimalConverter.DECIMAL_detail = {2}: ''{0}'' must be a signed decimal number consisting of zero or more digits, that may be followed by a decimal point and fraction.  Example: {1}
+ 
+javax.faces.converter.BigIntegerConverter.BIGINTEGER = {2}: ''{0}'' must be a number consisting of one or more digits.
+javax.faces.converter.BigIntegerConverter.BIGINTEGER_detail = {2}: ''{0}'' must be a number consisting of one or more digits. Example: {1}
+ 
+javax.faces.converter.BooleanConverter.BOOLEAN = {1}: ''{0}'' must be ''true'' or ''false''.
+javax.faces.converter.BooleanConverter.BOOLEAN_detail = {1}: ''{0}'' must be ''true'' or ''false''.  Any value other than ''true'' will evaluate to ''false''.
+
+javax.faces.converter.ByteConverter.BYTE = {2}: ''{0}'' must be a number between 0 and 255.
+javax.faces.converter.ByteConverter.BYTE_detail = {2}: ''{0}'' must be a number between 0 and 255.  Example: {1}
+ 
+javax.faces.converter.CharacterConverter.CHARACTER = {1}: ''{0}'' must be a valid character.
+javax.faces.converter.CharacterConverter.CHARACTER_detail = {1}: ''{0}'' must be a valid ASCII character.
+
+javax.faces.converter.DateTimeConverter.DATE = {2}: ''{0}'' could not be understood as a date.
+javax.faces.converter.DateTimeConverter.DATE_detail = {2}: ''{0}'' could not be understood as a date. Example: {1} 
+javax.faces.converter.DateTimeConverter.TIME = {2}: ''{0}'' could not be understood as a time.
+javax.faces.converter.DateTimeConverter.TIME_detail = {2}: ''{0}'' could not be understood as a time. Example: {1} 
+javax.faces.converter.DateTimeConverter.DATETIME = {2}: ''{0}'' could not be understood as a date and time.
+javax.faces.converter.DateTimeConverter.DATETIME_detail = {2}: ''{0}'' could not be understood as a date and time. Example: {1} 
+javax.faces.converter.DateTimeConverter.PATTERN_TYPE = {1}: A ''pattern'' or ''type'' attribute must be specified to convert the value ''{0}''.
+
+javax.faces.converter.DoubleConverter.DOUBLE = {2}: ''{0}'' must be a number consisting of one or more digits.
+javax.faces.converter.DoubleConverter.DOUBLE_detail = {2}: ''{0}'' must be a number between 4.9E-324 and 1.7976931348623157E308  Example: {1}
+
+javax.faces.converter.EnumConverter.ENUM = {2}: ''{0}'' must be convertible to an enum.
+javax.faces.converter.EnumConverter.ENUM_detail = {2}: ''{0}'' must be convertible to an enum from the enum that contains the constant ''{1}''.
+javax.faces.converter.EnumConverter.ENUM_NO_CLASS = {1}: ''{0}'' must be convertible to an enum from the enum, but no enum class provided.
+javax.faces.converter.EnumConverter.ENUM_NO_CLASS_detail = {1}: ''{0}'' must be convertible to an enum from the enum, but no enum class provided.
+
+javax.faces.converter.FloatConverter.FLOAT = {2}: ''{0}'' must be a number consisting of one or more digits.
+javax.faces.converter.FloatConverter.FLOAT_detail = {2}: ''{0}'' must be a number between 1.4E-45 and 3.4028235E38  Example: {1}
+
+javax.faces.converter.IntegerConverter.INTEGER = {2}: ''{0}'' must be a number consisting of one or more digits.
+javax.faces.converter.IntegerConverter.INTEGER_detail = {2}: ''{0}'' must be a number between -2147483648 and 2147483647 Example: {1}
+
+javax.faces.converter.LongConverter.LONG = {2}: ''{0}'' must be a number consisting of one or more digits.
+javax.faces.converter.LongConverter.LONG_detail = {2}: ''{0}'' must be a number between -9223372036854775808 to 9223372036854775807 Example: {1}
+
+javax.faces.converter.NumberConverter.CURRENCY = {2}: ''{0}'' could not be understood as a currency value.
+javax.faces.converter.NumberConverter.CURRENCY_detail = {2}: ''{0}'' could not be understood as a currency value. Example: {1}
+javax.faces.converter.NumberConverter.PERCENT = {2}: ''{0}'' could not be understood as a percentage.
+javax.faces.converter.NumberConverter.PERCENT_detail = {2}: ''{0}'' could not be understood as a percentage. Example: {1}
+javax.faces.converter.NumberConverter.NUMBER = {2}: ''{0}'' is not a number.
+javax.faces.converter.NumberConverter.NUMBER_detail = {2}: ''{0}'' is not a number. Example: {1}
+javax.faces.converter.NumberConverter.PATTERN = {2}: ''{0}'' is not a number pattern.
+javax.faces.converter.NumberConverter.PATTERN_detail = {2}: ''{0}'' is not a number pattern. Example: {1}
+
+javax.faces.converter.ShortConverter.SHORT = {2}: ''{0}'' must be a number consisting of one or more digits.
+javax.faces.converter.ShortConverter.SHORT_detail = {2}: ''{0}'' must be a number between -32768 and 32767 Example: {1}
+
+javax.faces.converter.STRING = {1}: Could not convert ''{0}'' to a string.
+
+# validators
+javax.faces.validator.NOT_IN_RANGE = Validation Error: Specified attribute is not between the expected values of {0} and {1}.
+
+javax.faces.validator.DoubleRangeValidator.MAXIMUM = {1}: Validation Error: Value is greater than allowable maximum of ''{0}''
+javax.faces.validator.DoubleRangeValidator.MINIMUM = {1}: Validation Error: Value is less than allowable minimum of ''{0}''
+javax.faces.validator.DoubleRangeValidator.NOT_IN_RANGE = {2}: Validation Error: Specified attribute is not between the expected values of {0} and {1}.
+javax.faces.validator.DoubleRangeValidator.TYPE = {0}: Validation Error: Value is not of the correct type
+
+javax.faces.validator.LengthValidator.MAXIMUM = {1}: Validation Error: Length is greater than allowable maximum of ''{0}''
+javax.faces.validator.LengthValidator.MINIMUM = {1}: Validation Error: Length is less than allowable minimum of ''{0}''
+
+javax.faces.validator.LongRangeValidator.MAXIMUM = {1}: Validation Error: Value is greater than allowable maximum of ''{0}''
+javax.faces.validator.LongRangeValidator.MINIMUM = {1}: Validation Error: Value is less than allowable minimum of ''{0}''
+javax.faces.validator.LongRangeValidator.NOT_IN_RANGE = {2}: Validation Error: Specified attribute is not between the expected values of {0} and {1}.
+javax.faces.validator.LongRangeValidator.TYPE = {0}: Validation Error: Value is not of the correct type.
+
+javax.faces.validator.RegexValidator.NOT_MATCHED = {1}: Validation Error: Value not according to pattern ''{0}''
+javax.faces.validator.RegexValidator.PATTERN_NOT_SET = A pattern must be set for validate.
+javax.faces.validator.RegexValidator.MATCH_EXCEPTION = The pattern is not a valid regular expression.
+
+javax.faces.validator.BeanValidator.MESSAGE = {1}: {0}
+
+# myfaces specific messages
+org.apache.myfaces.renderkit.html.HtmlMessagesRenderer.IN_FIELD = \u0020in {0}
+org.apache.myfaces.Email.INVALID = Validation Error
+org.apache.myfaces.Email.INVALID_detail =The given value ({0}) is not a correct email-address.
+
+org.apache.myfaces.Equal.INVALID = Validation Error
+org.apache.myfaces.Equal.INVALID_detail =The given value ({0}) is not equal with value of "{1}".
+
+org.apache.myfaces.Creditcard.INVALID = Validation Error
+org.apache.myfaces.Creditcard.INVALID_detail =The given value ({0}) is not a correct creditcard
+
+org.apache.myfaces.Regexpr.INVALID=Validation Error
+org.apache.myfaces.Regexpr.INVALID_detail=The given value ({0}) is not valid.
+
+org.apache.myfaces.Date.INVALID = Validation Error
+org.apache.myfaces.Date.INVALID_detail =The given value ({0}) is not a correct date
+
+org.apache.myfaces.ticker.NOCONNECTION = No Connection: 
+org.apache.myfaces.ticker.NOCONNECTION_detail = Maybe you are behind a firewall?
+
+org.apache.myfaces.ISBN.INVALID = Validation Error
+org.apache.myfaces.ISBN.INVALID_detail =The given value ({0}) is not a correct isbn code.
+
+org.apache.myfaces.tree2.MISSING_NODE        = Missing Node
+org.apache.myfaces.tree2.MISSING_NODE_detail = The requested node "{0}" does not exist.
+
+org.apache.myfaces.calendar.CONVERSION = Conversion Error
+org.apache.myfaces.calendar.CONVERSION_detail = "{0}": The given value "{1}" could not be converted to a date.
+
+org.apache.myfaces.FileUpload.SIZE_LIMIT = "{0}": The uploaded file exceeded the maximum size of {1} bytes.
diff --git a/oxAuth/Server/src/main/webapp-jetty/WEB-INF/jetty-env.xml b/oxAuth/Server/src/main/webapp-jetty/WEB-INF/jetty-env.xml
new file mode 100644
index 00000000..5a0fe810
--- /dev/null
+++ b/oxAuth/Server/src/main/webapp-jetty/WEB-INF/jetty-env.xml
@@ -0,0 +1,21 @@
+<?xml version="1.0" encoding="UTF-8"?>
+<!DOCTYPE Configure PUBLIC "-//Jetty//Configure//EN" "https://www.eclipse.org/jetty/configure_10_0.dtd">
+
+<Configure id="webAppCtx" class="org.eclipse.jetty.webapp.WebAppContext">
+	<New id="BeanManager" class="org.eclipse.jetty.plus.jndi.Resource">
+		<Arg>
+			<Ref refid="webAppCtx" />
+		</Arg>
+
+		<Arg>BeanManager</Arg>
+
+		<Arg>
+			<New class="javax.naming.Reference">
+				<Arg>javax.enterprise.inject.spi.BeanManager</Arg>
+				<Arg>org.jboss.weld.resources.ManagerObjectFactory</Arg>
+				<Arg />
+			</New>
+		</Arg>
+	</New>
+
+</Configure>
diff --git a/oxAuth/Server/src/main/webapp-jetty/WEB-INF/web.xml b/oxAuth/Server/src/main/webapp-jetty/WEB-INF/web.xml
new file mode 100644
index 00000000..0c8e5de9
--- /dev/null
+++ b/oxAuth/Server/src/main/webapp-jetty/WEB-INF/web.xml
@@ -0,0 +1,101 @@
+<?xml version="1.0" encoding="UTF-8"?>
+
+<web-app version="3.1" xmlns="http://xmlns.jcp.org/xml/ns/javaee" xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance"
+	xsi:schemaLocation="http://xmlns.jcp.org/xml/ns/javaee http://xmlns.jcp.org/xml/ns/javaee/web-app_3_1.xsd">
+
+	<display-name>oxAuth Server</display-name>
+
+	<!-- Jetty -->
+	<context-param>
+		<param-name>org.eclipse.jetty.servlet.Default.dirAllowed</param-name>
+		<param-value>false</param-value>
+	</context-param>
+
+	<!-- Weld -->
+	<context-param>
+		<param-name>org.jboss.weld.development</param-name>
+		<param-value>${weld.debug}</param-value>
+	</context-param>
+
+	<!-- JSF -->
+	<context-param>
+		<param-name>javax.faces.PROJECT_STAGE</param-name>
+		<param-value>Production</param-value>
+	</context-param>
+	<context-param>
+		<param-name>javax.faces.DEFAULT_SUFFIX</param-name>
+		<param-value>.xhtml</param-value>
+	</context-param>
+	<context-param>
+		<param-name>javax.faces.FACELETS_RESOURCE_RESOLVER</param-name>
+		<param-value>org.gluu.service.ExternalResourceHandler</param-value>
+	</context-param>
+	<!-- Change to -1 when you don't want the compiler should check for changes -->
+	<context-param>
+		<param-name>javax.faces.FACELETS_REFRESH_PERIOD</param-name>
+		<param-value>${javax.faces.FACELETS_REFRESH_PERIOD}</param-value>
+	</context-param>
+	<context-param>
+		<param-name>javax.faces.STATE_SAVING_METHOD</param-name>
+		<param-value>client</param-value>
+	</context-param>
+
+	<!-- RichFaces -->
+	<context-param>
+		<param-name>org.richfaces.SKIN</param-name>
+		<param-value>glassX</param-value>
+	</context-param>
+
+	<!-- Suppress spurious stylesheets -->
+	<context-param>
+		<param-name>org.richfaces.CONTROL_SKINNING</param-name>
+		<param-value>disable</param-value>
+	</context-param>
+	<context-param>
+		<param-name>org.richfaces.CONTROL_SKINNING_CLASSES</param-name>
+		<param-value>disable</param-value>
+	</context-param>
+
+	<!-- Weld -->
+	<listener>
+		<listener-class>org.jboss.weld.environment.servlet.Listener</listener-class>
+	</listener>
+
+	<!-- JSF -->
+	<listener>
+		<listener-class>com.sun.faces.config.ConfigureListener</listener-class>
+	</listener>
+
+	<servlet>
+		<servlet-name>Faces Servlet</servlet-name>
+		<servlet-class>javax.faces.webapp.FacesServlet</servlet-class>
+		<load-on-startup>1</load-on-startup>
+	</servlet>
+
+	<servlet-mapping>
+		<servlet-name>Faces Servlet</servlet-name>
+		<url-pattern>*.htm</url-pattern>
+	</servlet-mapping>
+
+	<session-config>
+		<session-timeout>1</session-timeout>
+		<tracking-mode>COOKIE</tracking-mode>
+	</session-config>
+
+	<security-constraint>
+		<display-name>Restrict raw XHTML Documents</display-name>
+		<web-resource-collection>
+			<web-resource-name>XHTML</web-resource-name>
+			<url-pattern>*.xhtml</url-pattern>
+		</web-resource-collection>
+		<auth-constraint />
+	</security-constraint>
+
+	<!-- Weld -->
+	<resource-env-ref>
+		<description>Object factory for the CDI Bean Manager</description>
+		<resource-env-ref-name>BeanManager</resource-env-ref-name>
+		<resource-env-ref-type>javax.enterprise.inject.spi.BeanManager</resource-env-ref-type>
+	</resource-env-ref>
+
+</web-app>
diff --git a/oxAuth/Server/src/main/webapp-tomcat/META-INF/context.xml b/oxAuth/Server/src/main/webapp-tomcat/META-INF/context.xml
new file mode 100644
index 00000000..930c04ed
--- /dev/null
+++ b/oxAuth/Server/src/main/webapp-tomcat/META-INF/context.xml
@@ -0,0 +1,18 @@
+<?xml version="1.0" encoding="UTF-8"?>
+<Context antiJARLocking="true" path="/oxauth">
+
+    <!-- Cert authentication for case when there is no proxy like Apache -->
+    <!-- Don't remove. Use when there is standalone tomcat only.
+		<Realm className="org.gluu.tomcat7.WantSslRealm" validate="true" allRolesMode="authOnly"/>
+    	<Valve className="org.gluu.tomcat7.WantSslAuthenticator" />
+     -->
+
+  <!-- For Tomcat -->
+  <Context>
+    <Resource name="BeanManager"
+              auth="Container"
+              type="javax.enterprise.inject.spi.BeanManager"
+              factory="org.jboss.weld.resources.ManagerObjectFactory"/>
+  </Context>
+
+</Context>
diff --git a/oxAuth/Server/src/main/webapp/META-INF/MANIFEST.MF b/oxAuth/Server/src/main/webapp/META-INF/MANIFEST.MF
new file mode 100644
index 00000000..254272e1
--- /dev/null
+++ b/oxAuth/Server/src/main/webapp/META-INF/MANIFEST.MF
@@ -0,0 +1,3 @@
+Manifest-Version: 1.0
+Class-Path: 
+
diff --git a/oxAuth/Server/src/main/webapp/WEB-INF/faces-config.xml b/oxAuth/Server/src/main/webapp/WEB-INF/faces-config.xml
new file mode 100644
index 00000000..de304332
--- /dev/null
+++ b/oxAuth/Server/src/main/webapp/WEB-INF/faces-config.xml
@@ -0,0 +1,23 @@
+<?xml version="1.0" encoding="UTF-8"?>
+<faces-config xmlns="http://xmlns.jcp.org/xml/ns/javaee" xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance"
+              xsi:schemaLocation="http://xmlns.jcp.org/xml/ns/javaee
+        http://xmlns.jcp.org/xml/ns/javaee/web-facesconfig_2_2.xsd" version="2.2">
+
+    <application>
+        <locale-config>
+            <default-locale>en</default-locale>
+        </locale-config>
+
+        <resource-bundle>
+            <base-name>org.gluu.oxauth.i18n.CustomResourceBundle</base-name>
+            <var>msgs</var>
+        </resource-bundle>
+    </application>
+
+    <factory>
+        <exception-handler-factory>
+            org.gluu.oxauth.exception.GlobalExceptionHandlerFactory
+        </exception-handler-factory>
+    </factory>
+
+</faces-config>
diff --git a/oxAuth/Server/src/main/webapp/WEB-INF/firebase-messaging-sw.js b/oxAuth/Server/src/main/webapp/WEB-INF/firebase-messaging-sw.js
new file mode 100644
index 00000000..9ac94f86
--- /dev/null
+++ b/oxAuth/Server/src/main/webapp/WEB-INF/firebase-messaging-sw.js
@@ -0,0 +1,51 @@
+// Import and configure the Firebase SDK
+// These scripts are made available when the app is served or deployed on Firebase Hosting
+// If you do not serve/host your project using Firebase Hosting see https://firebase.google.com/docs/web/setup
+importScripts('https://www.gstatic.com/firebasejs/7.6.1/firebase-app.js');
+importScripts('https://www.gstatic.com/firebasejs/7.6.1/firebase-messaging.js');
+
+// Your web app's Firebase configuration
+var firebaseConfig = '${FIREBASE_CONFIG}';
+// Initialize Firebase
+firebase.initializeApp(firebaseConfig);
+
+var messaging = firebase.messaging();
+
+/**
+ * Here is is the code snippet to initialize Firebase Messaging in the Service
+ * Worker when your app is not hosted on Firebase Hosting.
+ // [START initialize_firebase_in_sw]
+ // Give the service worker access to Firebase Messaging.
+ // Note that you can only use Firebase Messaging here, other Firebase libraries
+ // are not available in the service worker.
+ importScripts('https://www.gstatic.com/firebasejs/4.8.1/firebase-app.js');
+ importScripts('https://www.gstatic.com/firebasejs/4.8.1/firebase-messaging.js');
+ // Initialize the Firebase app in the service worker by passing in the
+ // messagingSenderId.
+ firebase.initializeApp({
+   'messagingSenderId': 'YOUR-SENDER-ID'
+ });
+ // Retrieve an instance of Firebase Messaging so that it can handle background
+ // messages.
+ const messaging = firebase.messaging();
+ // [END initialize_firebase_in_sw]
+ **/
+
+
+// If you would like to customize notifications that are received in the
+// background (Web app is closed or not in browser focus) then you should
+// implement this optional method.
+// [START background_handler]
+messaging.setBackgroundMessageHandler(function(payload) {
+    console.log('[firebase-messaging-sw.js] Received background message ', payload);
+    // Customize notification here
+    var notificationTitle = 'Background Message Title';
+    var notificationOptions = {
+        body: 'Background Message body.',
+        icon: '/firebase-logo.png'
+    };
+
+    return self.registration.showNotification(notificationTitle,
+        notificationOptions);
+});
+// [END background_handler]
\ No newline at end of file
diff --git a/oxAuth/Server/src/main/webapp/WEB-INF/incl/layout/authorize-extended-template.xhtml b/oxAuth/Server/src/main/webapp/WEB-INF/incl/layout/authorize-extended-template.xhtml
new file mode 100644
index 00000000..27520b9e
--- /dev/null
+++ b/oxAuth/Server/src/main/webapp/WEB-INF/incl/layout/authorize-extended-template.xhtml
@@ -0,0 +1,132 @@
+<?xml version="1.0" encoding="UTF-8"?>
+<!DOCTYPE composition PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN"
+		"http://www.w3.org/TR/xhtml1/DTD/xhtml1-transitional.dtd">
+<ui:composition xmlns="http://www.w3.org/1999/xhtml"
+	xmlns:f="http://xmlns.jcp.org/jsf/core"
+	xmlns:ui="http://xmlns.jcp.org/jsf/facelets"
+	xmlns:h="http://xmlns.jcp.org/jsf/html"
+	template="/WEB-INF/incl/layout/authorize-template.xhtml">
+
+	<ui:define name="head">
+		<style type="text/css"/>
+	</ui:define>
+
+	<ui:define name="pageTitle">
+		<h:outputText value="#{msgs['authorize.pageTitle']}" />
+	</ui:define>
+
+	<ui:define name="body" class="notification_cls">
+		<h:form id="authorizeForm">
+			<h:inputHidden id="session_id" value="#{authorizeAction.sessionId}" />
+			<ui:param name="client" value='#{_client}' />
+			<div class="notification_popup">
+				<div class="not_header"></div>
+				<div class="not_header">
+					<div>
+						<div class="login-logo">
+							<img style="max-height: 70px; padding-bottom: 2px;" id="AppLogo"
+								src="#{request.contextPath}/servlet/logo" />
+						</div>
+						<div class="bs-docs-section"
+							style="border-top: 2px solid #1ab26b !important; margin-bottom: 5px !important; margin-top: 1px !important; padding-top: 1px !important;"></div>
+					</div>
+				</div>
+				<div class="not_body">
+					<h3>
+						<h:outputText value="#{msgs['authorize.requestForPermission']}" />
+					</h3>
+					<h:panelGroup layout="block" class="border_rad"
+						rendered='#{!empty client.getLogoUri()}'>
+						<h:graphicImage url='#{client.getLogoUri()}' width="65px"
+							height="65px" />
+					</h:panelGroup>
+
+					<h3>
+						<p class="info">
+							<h:outputFormat
+								value="#{msgs['authorize.requestingPermissionForScopes']}">
+								<f:param
+									value="#{empty client.getClientName()? client.getClientId() : client.getClientName()}" />
+							</h:outputFormat>
+						</p>
+					</h3>
+					<ul>
+						<ui:fragment rendered="#{_scopes != null or _request != null}">
+							<ui:repeat var="_scope" value="#{_scopes}">
+								<li>
+									<table>
+										<tr>
+											<td><span class="user"><i
+													class="fa fa-user-circle"></i></span></td>
+											<td><h:outputText value="#{_scope.description}" /></td>
+										</tr>
+									</table>
+								</li>
+							</ui:repeat>
+							<ui:repeat var="_requestedClaim" value="#{_requestedClaims}">
+								<li>
+									<table>
+										<tr>
+											<td><span class="user"><i
+													class="fa fa-user-circle"></i></span></td>
+											<td><h:outputFormat
+													value="#{msgs['authorize.viewIndividualClaim']}">
+													<f:param value="#{_requestedClaim}" />
+												</h:outputFormat></td>
+										</tr>
+									</table>
+								</li>
+							</ui:repeat>
+							<ui:fragment rendered="#{_request != null}">
+								<li>
+									<table>
+										<tr>
+											<td><span class="user"><i
+													class="fa fa-user-circle"></i></span></td>
+											<td><h:outputText value="#{_request}" /></td>
+										</tr>
+									</table>
+								</li>
+							</ui:fragment>
+						</ui:fragment>
+					</ul>
+					<h:panelGroup layout="block"
+								  rendered="#{!empty authorizeAction.bindingMessage}">
+						<p>
+							#{msgs['ciba.bindingMessage']}
+							<strong>
+								#{authorizeAction.bindingMessage}
+							</strong>
+						</p>
+					</h:panelGroup>
+					<h:panelGroup layout="block"
+						rendered='#{!empty client.getPolicyUri()}'>
+						<p>
+							<h:outputText value="#{msgs['common.agreePolicy']}" />
+							<a target="_blank" href='#{client.getPolicyUri()}'> <h:outputText
+									value="#{msgs['common.privacyPolicy']}" />
+							</a>
+						</p>
+					</h:panelGroup>
+					<h:panelGroup layout="block"
+						rendered='#{!empty client.getTosUri()}'>
+						<p>
+							<h:outputText value="#{msgs['common.pleaseReadTheTos']}" />
+							<a target="_blank" href='#{client.getTosUri()}'> <h:outputText
+									value="#{msgs['common.termsOfService']}" />
+							</a>
+						</p>
+					</h:panelGroup>
+					<div class="btn_rw">
+						<ui:insert name="controlButttons" />
+					</div>
+				</div>
+				<center>
+					#{msgs['common.copyright']} <a href="http://www.gluu.org">Gluu</a>.
+					#{msgs['common.allRightsReserved']}
+				</center>
+			</div>
+		</h:form>
+	</ui:define>
+
+</ui:composition>
\ No newline at end of file
diff --git a/oxAuth/Server/src/main/webapp/WEB-INF/incl/layout/authorize-template.xhtml b/oxAuth/Server/src/main/webapp/WEB-INF/incl/layout/authorize-template.xhtml
new file mode 100644
index 00000000..8a163961
--- /dev/null
+++ b/oxAuth/Server/src/main/webapp/WEB-INF/incl/layout/authorize-template.xhtml
@@ -0,0 +1,54 @@
+<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN"
+                "http://www.w3.org/TR/xhtml1/DTD/xhtml1-transitional.dtd">
+<html xmlns="http://www.w3.org/1999/xhtml"
+      xmlns:ui="http://xmlns.jcp.org/jsf/facelets"
+      xmlns:f="http://xmlns.jcp.org/jsf/core"
+      xmlns:h="http://xmlns.jcp.org/jsf/html">
+<f:view transient="true" locale="#{language.locale}">
+    <h:head>
+        <meta http-equiv="Content-Type" content="text/html; charset=UTF-8"/>
+        <title>oxAuth</title>
+
+		<link rel="icon" href="#{oxAuthConfigurationService.getImgLocation()}/favicon_icosahedron.ico" />
+
+		<link type="text/css" rel="stylesheet" href="#{oxAuthConfigurationService.cssLocation}/site.css" />
+		<link type="text/css" rel="stylesheet" href="#{oxAuthConfigurationService.cssLocation}/authorize.css" />
+		<link type="text/css" rel="stylesheet" href="#{oxAuthConfigurationService.cssLocation}/bootstrap.min.css" />
+		<link type="text/css" rel="stylesheet" href="#{oxAuthConfigurationService.cssLocation}/font-awesome.css" />
+		<link type="text/css" rel="stylesheet" href="https://fonts.googleapis.com/css?family=Open+Sans:300,400,600" />
+		<ui:insert name="head"/>
+    </h:head>
+    <h:body>
+        <div class="body">
+        	<div id="status" class="modal"><span style="background-color: #006699; color: white; font-weight: bold; position: fixed; left: 0px; top: 0px; padding: 5px 5px 5px 5px">Loading...</span></div>
+			<script type="text/javascript">
+				function handleAjax(data) {
+					var status = data.status;
+					switch (status) {
+					case "begin":
+						document.getElementById('status').className = 'loading';
+						break;
+
+					case "complete":
+						break;
+
+					case "success":
+						document.getElementById('status').className = 'modal';
+						break;
+					}
+				}
+
+				if (!(typeof jsf === 'undefined')) {
+					jsf.ajax.addOnEvent(handleAjax);
+				}
+			</script>
+
+			<h:messages id="messages" globalOnly="true" styleClass="message"
+                        errorClass="errormsg" infoClass="infomsg" warnClass="warnmsg"
+                        rendered="#{showGlobalMessages != 'false'}"/>
+            <ui:insert name="body"/>
+        </div>
+	
+    </h:body>
+</f:view>
+</html>
diff --git a/oxAuth/Server/src/main/webapp/WEB-INF/incl/layout/bioid-template.xhtml b/oxAuth/Server/src/main/webapp/WEB-INF/incl/layout/bioid-template.xhtml
new file mode 100644
index 00000000..357c13ab
--- /dev/null
+++ b/oxAuth/Server/src/main/webapp/WEB-INF/incl/layout/bioid-template.xhtml
@@ -0,0 +1,25 @@
+<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN"
+                "http://www.w3.org/TR/xhtml1/DTD/xhtml1-transitional.dtd">
+<html xmlns="http://www.w3.org/1999/xhtml"
+      xmlns:ui="http://xmlns.jcp.org/jsf/facelets"
+      xmlns:f="http://xmlns.jcp.org/jsf/core"
+      xmlns:h="http://xmlns.jcp.org/jsf/html">
+<f:view transient="true" locale="#{language.locale}">
+    <h:head>
+        <meta http-equiv="Content-Type" content="text/html; charset=UTF-8"/>
+        <title>BWS Unified User Interface</title>
+       
+        <ui:insert name="head"/>
+    </h:head>
+    <h:body>
+        <div class="body">
+        	
+
+			<h:messages id="messages" globalOnly="true" styleClass="message"
+                        errorClass="errormsg" infoClass="infomsg" warnClass="warnmsg"
+                        rendered="#{showGlobalMessages != 'false'}"/>
+            <ui:insert name="body"/>
+        </div>
+    </h:body>
+</f:view>
+</html>
\ No newline at end of file
diff --git a/oxAuth/Server/src/main/webapp/WEB-INF/incl/layout/ciba-authorize-extended-template.xhtml b/oxAuth/Server/src/main/webapp/WEB-INF/incl/layout/ciba-authorize-extended-template.xhtml
new file mode 100644
index 00000000..3cc33af7
--- /dev/null
+++ b/oxAuth/Server/src/main/webapp/WEB-INF/incl/layout/ciba-authorize-extended-template.xhtml
@@ -0,0 +1,102 @@
+<?xml version="1.0" encoding="UTF-8"?>
+<!DOCTYPE composition PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN"
+        "http://www.w3.org/TR/xhtml1/DTD/xhtml1-transitional.dtd">
+<ui:composition xmlns="http://www.w3.org/1999/xhtml"
+                xmlns:f="http://xmlns.jcp.org/jsf/core"
+                xmlns:ui="http://xmlns.jcp.org/jsf/facelets"
+                xmlns:h="http://xmlns.jcp.org/jsf/html"
+                template="/WEB-INF/incl/layout/ciba-authorize-template.xhtml">
+
+    <ui:define name="head">
+        <style type="text/css">
+        </style>
+    </ui:define>
+
+    <ui:define name="pageTitle">
+        <h:outputText value="#{msgs['authorize.pageTitle']}"/>
+    </ui:define>
+
+    <ui:define name="body" class="notification_cls">
+        <h:form id="authorizeForm">
+            <ui:param name="client" value='#{_client}'/>
+
+            <div class="notification_popup">
+                <div class="not_header">
+                    <div class="row">
+                        <div class="col-md-5">
+                            <h:panelGroup layout="block" rendered='#{empty client.logoUri}'>
+                                <object data="/ext/resources/img/logo.png" type="image/png">
+                                    <img src="../img/logo.png" alt="Logo"/>
+                                </object>
+                            </h:panelGroup>
+                        </div>
+                    </div>
+                </div>
+                <div class="not_body">
+                    <h3>
+                        <h:outputText value="#{msgs['authorize.requestForPermission']}"/>
+                    </h3>
+
+                    <h:panelGroup layout="block" class="border_rad"
+                                  rendered='#{!empty client.getLogoUri()}'>
+                        <h:graphicImage url='#{client.getLogoUri()}' width="65px" height="65px"/>
+                    </h:panelGroup>
+
+                    <h3 class="info">
+                        <h:outputFormat value="#{msgs['authorize.requestingPermissionForScopes']}">
+                            <f:param
+                                    value="#{empty client.getClientName()? client.getClientId() : client.getClientName()}"/>
+                        </h:outputFormat>
+                    </h3>
+
+                    <ul>
+                        <ui:fragment rendered="#{_scopes != null}">
+                            <ui:repeat var="_scope" value="#{_scopes}">
+                                <li>
+                                    <table>
+                                        <tr>
+                                            <td>
+                                                <span class="user">
+                                                    <i class="fa fa-user-circle"></i>
+                                                </span>
+                                            </td>
+                                            <td>
+                                                <h:outputText value="#{_scope.description}"/>
+                                            </td>
+                                        </tr>
+                                    </table>
+                                </li>
+                            </ui:repeat>
+                        </ui:fragment>
+                    </ul>
+
+                    <h:panelGroup layout="block" rendered='#{!empty client.getPolicyUri()}'>
+                        <p>
+                            <h:outputText value="#{msgs['common.agreePolicy']}"/>
+                            <a target="_blank" href='#{client.getPolicyUri()}'>
+                                <h:outputText value="#{msgs['common.privacyPolicy']}"/>
+                            </a>
+                        </p>
+                    </h:panelGroup>
+
+                    <h:panelGroup layout="block" rendered='#{!empty client.getTosUri()}'>
+                        <p>
+                            <h:outputText value="#{msgs['common.pleaseReadTheTos']}"/>
+                            <a target="_blank" href='#{client.getTosUri()}'>
+                                <h:outputText value="#{msgs['common.termsOfService']}"/>
+                            </a>
+                        </p>
+                    </h:panelGroup>
+
+                    <div class="btn_rw">
+                        <ui:insert name="controlButttons"/>
+                    </div>
+                </div>
+                <center>
+                    #{msgs['common.copyright']} <a href="http://www.gluu.org" target="_blank">
+                    Gluu</a>. #{msgs['common.allRightsReserved']}
+                </center>
+            </div>
+        </h:form>
+    </ui:define>
+</ui:composition>
\ No newline at end of file
diff --git a/oxAuth/Server/src/main/webapp/WEB-INF/incl/layout/ciba-authorize-template.xhtml b/oxAuth/Server/src/main/webapp/WEB-INF/incl/layout/ciba-authorize-template.xhtml
new file mode 100644
index 00000000..90022703
--- /dev/null
+++ b/oxAuth/Server/src/main/webapp/WEB-INF/incl/layout/ciba-authorize-template.xhtml
@@ -0,0 +1,55 @@
+<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN"
+        "http://www.w3.org/TR/xhtml1/DTD/xhtml1-transitional.dtd">
+<html xmlns="http://www.w3.org/1999/xhtml"
+      xmlns:ui="http://xmlns.jcp.org/jsf/facelets"
+      xmlns:f="http://xmlns.jcp.org/jsf/core"
+      xmlns:h="http://xmlns.jcp.org/jsf/html">
+    <f:view locale="#{language.locale}">
+        <h:head>
+            <meta http-equiv="Content-Type" content="text/html; charset=UTF-8"/>
+            <title>oxAuth</title>
+
+            <link type="text/css" rel="stylesheet" href="#{oxAuthConfigurationService.cssLocation}/site.css"/>
+            <link type="text/css" rel="stylesheet" href="#{oxAuthConfigurationService.cssLocation}/authorize.css"/>
+            <link type="text/css" rel="stylesheet" href="#{oxAuthConfigurationService.cssLocation}/font-awesome.css"/>
+
+            <!-- Bootstrap -->
+            <link href="#{oxAuthConfigurationService.cssLocation}/bootstrap.min.css" rel="stylesheet"/>
+
+            <link href="https://fonts.googleapis.com/css?family=Open+Sans:300,400,600" rel="stylesheet"/>
+
+            <ui:insert name="head"/>
+        </h:head>
+        <h:body>
+            <div class="body">
+        	<div id="status" class="modal"><span style="background-color: #006699; color: white; font-weight: bold; position: fixed; left: 0px; top: 0px; padding: 5px 5px 5px 5px">Loading...</span></div>
+			<script type="text/javascript">
+				function handleAjax(data) {
+					var status = data.status;
+					switch (status) {
+					case "begin":
+						document.getElementById('status').className = 'loading';
+						break;
+
+					case "complete":
+						break;
+
+					case "success":
+						document.getElementById('status').className = 'modal';
+						break;
+					}
+				}
+
+				if (!(typeof jsf === 'undefined')) {
+					jsf.ajax.addOnEvent(handleAjax);
+				}
+			</script>
+
+			<h:messages id="messages" globalOnly="true" styleClass="message"
+                            errorClass="errormsg" infoClass="infomsg" warnClass="warnmsg"
+                            rendered="#{showGlobalMessages != 'false'}"/>
+                <ui:insert name="body"/>
+            </div>
+        </h:body>
+    </f:view>
+</html>
\ No newline at end of file
diff --git a/oxAuth/Server/src/main/webapp/WEB-INF/incl/layout/login-extended-template.xhtml b/oxAuth/Server/src/main/webapp/WEB-INF/incl/layout/login-extended-template.xhtml
new file mode 100644
index 00000000..0dd82f81
--- /dev/null
+++ b/oxAuth/Server/src/main/webapp/WEB-INF/incl/layout/login-extended-template.xhtml
@@ -0,0 +1,133 @@
+<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN"
+		"http://www.w3.org/TR/xhtml1/DTD/xhtml1-transitional.dtd">
+<html xmlns="http://www.w3.org/1999/xhtml"
+	  xmlns:ui="http://xmlns.jcp.org/jsf/facelets"
+	  xmlns:f="http://xmlns.jcp.org/jsf/core"
+	  xmlns:h="http://xmlns.jcp.org/jsf/html">
+<f:view transient="true" locale="#{language.locale}">
+	<h:head>
+		<meta http-equiv="Content-Type" content="text/html; charset=UTF-8" />
+		<meta name="viewport" content="width=device-width, initial-scale=1" />
+		<title><ui:insert name="pageTitle" /></title>
+		<link rel="icon" href="#{request.contextPath}/servlet/favicon" type='image/x-icon' />
+		<link type="text/css" rel="stylesheet"
+			  href="#{oxAuthConfigurationService.getCssLocation()}/style.css" />
+		<link type="text/css" rel="stylesheet"
+			  href="#{oxAuthConfigurationService.getCssLocation()}/bootstrap.min.css" />
+		<link type="text/css" rel="stylesheet"
+			  href="#{oxAuthConfigurationService.getCssLocation()}/bootstrap-responsive.css" />
+		<link type="text/css" rel="stylesheet"
+			  href="#{oxAuthConfigurationService.getCssLocation()}/bootstrap-reboot.min.css" />
+		<link type="text/css" rel="stylesheet"
+			  href="#{oxAuthConfigurationService.getCssLocation()}/bootstrap-grid.min.css" />
+		<link rel="stylesheet"
+			  href="#{oxAuthConfigurationService.getCssLocation()}/fontawesome.min.css" />
+		<link rel="stylesheet"
+			  href="#{oxAuthConfigurationService.getCssLocation()}/authorize.css" />
+		<link type="text/css" rel="stylesheet"
+			  href="https://fonts.googleapis.com/css?family=Open+Sans:300,400,600" />
+		<script
+				src="#{oxAuthConfigurationService.getJsLocation()}/jquery-3.6.0.min.js"></script>
+		<script
+				src="#{oxAuthConfigurationService.getJsLocation()}/popper.min.js"></script>
+		<script
+				src="#{oxAuthConfigurationService.getJsLocation()}/fontawesome.min.js"></script>
+		<script
+				src="#{oxAuthConfigurationService.getJsLocation()}/bootstrap.min.js"></script>
+		<script
+				src="#{oxAuthConfigurationService.getJsLocation()}/bootstrap.bundle.min.js"></script>
+		<script
+				src="#{oxAuthConfigurationService.getJsLocation()}/platform.js"></script>
+		<script
+				src="#{oxAuthConfigurationService.getJsLocation()}/jquery-qrcode-0.17.0.min.js"></script>
+		<script
+				src="#{oxAuthConfigurationService.getJsLocation()}/gluu-auth.js" />
+		<script
+				src="#{oxAuthConfigurationService.getJsLocation()}/jquery-ui.min.js"></script>
+		<ui:insert name="head" />
+
+		<style>
+body {
+	margin-bottom: 3% !important;
+}
+
+.footer {
+	position: fixed;
+	bottom: 0;
+	width: 100%;
+	color: white;
+	height: 55px;
+	background-color: #00BE79;
+	justify-content: center;
+	margin-left: auto;
+	margin-right: auto;
+}
+</style>
+	</h:head>
+	<h:body>
+		<div>
+			<div class="login-logo">
+				<img style="max-height: 70px; padding-bottom: 2px;" id="AppLogo"
+					 src="#{request.contextPath}/servlet/logo" />
+			</div>
+			<div class="bs-docs-section"
+				 style="border-top: 2px solid #1ab26b !important; margin-bottom: 5px !important; margin-top: 1px !important; padding-top: 1px !important;"></div>
+		</div>
+		<div class="body">
+			<ui:insert name="body" />
+		</div>
+	</h:body>
+	<footer class="footer" id="appFooter">
+		<div class="row" style="margin-top:20px;">
+			<div class="col-sm-3"></div>
+			<div class="col-sm-6 centered" style="text-align:center;">
+				<p class="centered">
+					&copy; <a target="_blank"
+							  href="https://github.com/GluuFederation/oxAuth/blob/master/LICENSE"><h:outputText
+						value="#{msgs['common.gluuInc']}" escape="false" /></a> | <a
+						target="_blank" href="#{client.policyUri}"><h:outputText
+						value="#{msgs['common.privacyPolicy']}" escape="false" /></a> | <a
+						target="_blank" href="#{client.tosUri}"><h:outputText
+						value="#{msgs['common.termsOfService']}" escape="false" /></a>
+				</p>
+			</div>
+			<div class="col-sm-3"></div>
+		</div>
+	</footer>
+	<script type="text/javascript">
+		//<![CDATA[
+		$(document)
+				.ready(
+						function() {
+							$(window)
+									.scroll(
+											function() {
+												if (window.innerHeight < 620) {
+													document
+															.getElementById("appFooter").style.display = "none";
+												} else {
+													document
+															.getElementById("appFooter").style.display = "block";
+												}
+
+											});
+
+							$(window)
+									.on(
+											'resize',
+											function() {
+												var win = $(this);
+												if (win.height() >= 620) {
+													document
+															.getElementById("appFooter").style.display = "block";
+												} else {
+													document
+															.getElementById("appFooter").style.display = "none";
+												}
+											});
+						});
+
+		//]]>
+	</script>
+</f:view>
+</html>
\ No newline at end of file
diff --git a/oxAuth/Server/src/main/webapp/WEB-INF/incl/layout/login-template.xhtml b/oxAuth/Server/src/main/webapp/WEB-INF/incl/layout/login-template.xhtml
new file mode 100644
index 00000000..8e70e86b
--- /dev/null
+++ b/oxAuth/Server/src/main/webapp/WEB-INF/incl/layout/login-template.xhtml
@@ -0,0 +1,301 @@
+<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN"
+        "http://www.w3.org/TR/xhtml1/DTD/xhtml1-transitional.dtd">
+<html xmlns="http://www.w3.org/1999/xhtml"
+	xmlns:ui="http://xmlns.jcp.org/jsf/facelets"
+	xmlns:f="http://xmlns.jcp.org/jsf/core"
+	xmlns:h="http://xmlns.jcp.org/jsf/html">
+<f:view transient="true" locale="#{language.locale}">
+	<h:head>
+		<meta http-equiv="Content-Type" content="text/html; charset=UTF-8" />
+		<meta name="viewport" content="width=device-width, initial-scale=1" />
+		<title><ui:insert name="pageTitle" /></title>
+		<link rel="icon" href="#{request.contextPath}/servlet/favicon"
+			type='image/x-icon' />
+		<link type="text/css" rel="stylesheet"
+			href="#{oxAuthConfigurationService.getCssLocation()}/style.css" />
+		<link type="text/css" rel="stylesheet"
+			href="#{oxAuthConfigurationService.getCssLocation()}/bootstrap.min.css" />
+		<link rel="stylesheet"
+			href="#{oxAuthConfigurationService.getCssLocation()}/fontawesome.min.css" />
+		<link type="text/css" rel="stylesheet"
+			href="https://fonts.googleapis.com/css?family=Open+Sans:300,400,600" />
+
+		<script
+			src="#{oxAuthConfigurationService.getJsLocation()}/jquery-3.6.0.min.js" />
+		<script
+			src="#{oxAuthConfigurationService.getJsLocation()}/bootstrap.min.js" />
+		<script
+			src="#{oxAuthConfigurationService.getJsLocation()}/platform.js" />
+		<style>
+body {
+	margin-bottom: 3% !important;
+}
+
+.footer {
+	position: fixed;
+	bottom: 0;
+	width: 100%;
+	color: white;
+	height: 55px;
+	background-color: #00BE79;
+	justify-content: center;
+	margin-left: auto;
+	margin-right: auto;
+}
+
+
+.col-md-3 {
+    -webkit-box-flex: 0;
+    -ms-flex: 0 0 25%;
+    flex: 0 0 25%;
+    max-width: 25%;
+}
+
+
+.col-sm-3 {
+    -webkit-box-flex: 0;
+    -ms-flex: 0 0 25%;
+    flex: 0 0 25%;
+    max-width: 25%;
+}
+
+
+.col-md-9 {
+    -webkit-box-flex: 0;
+    -ms-flex: 0 0 75%;
+    flex: 0 0 75%;
+    max-width: 75%;
+}
+
+.col-sm-9 {
+    -webkit-box-flex: 0;
+    -ms-flex: 0 0 75%;
+    flex: 0 0 75%;
+    max-width: 75%;
+}
+
+@media screen and (min-height: 720px) {
+	.footer {
+		position: absolute;
+		height: 5px !important;
+	}
+}
+.form-group {
+    margin-bottom: 1rem;
+}
+@media (min-width: 768px){
+.col-md-5 {
+    -webkit-box-flex: 0;
+    -ms-flex: 0 0 41.666667%;
+    flex: 0 0 41.666667%;
+    max-width: 41.666667%;
+}
+}
+@media (min-width: 576px){
+.col-sm-5 {
+    -webkit-box-flex: 0;
+    -ms-flex: 0 0 41.666667%;
+    flex: 0 0 41.666667%;
+    max-width: 41.666667%;
+}
+}
+.form-control {
+    display: block;
+    width: 100%;
+    padding: 0.375rem 0.75rem;
+    font-size: 1rem;
+    line-height: 1.5;
+    color: #495057;
+    background-color: #fff;
+    background-clip: padding-box;
+    border: 1px solid #ced4da;
+    border-radius: 0.25rem;
+    transition: border-color .15s ease-in-out,box-shadow .15s ease-in-out;
+}
+
+@media (min-width: 768px){
+.offset-md-2 {
+    margin-left: 16.666667%;
+}
+}
+@media (min-width: 768px){
+.col-md-8 {
+    -webkit-box-flex: 0;
+    -ms-flex: 0 0 66.666667%;
+    flex: 0 0 66.666667%;
+    max-width: 66.666667%;
+}
+}
+@media (min-width: 576px){
+.col-sm-8 {
+    -webkit-box-flex: 0;
+    -ms-flex: 0 0 66.666667%;
+    flex: 0 0 66.666667%;
+    max-width: 66.666667%;
+}
+}
+
+@media (min-width: 768px){
+.offset-md-3 {
+    margin-left: 25%;
+}
+}
+@media (min-width: 768px){
+.col-md-7 {
+    -webkit-box-flex: 0;
+    -ms-flex: 0 0 58.333333%;
+    flex: 0 0 58.333333%;
+    max-width: 58.333333%;
+}
+}
+@media (min-width: 576px){
+.col-sm-7 {
+    -webkit-box-flex: 0;
+    -ms-flex: 0 0 58.333333%;
+    flex: 0 0 58.333333%;
+    max-width: 58.333333%;
+}
+}
+.btn:not(:disabled):not(.disabled) {
+    cursor: pointer;
+}
+.btn {
+    display: inline-block;
+    font-weight: 400;
+    text-align: center;
+    white-space: nowrap;
+    vertical-align: middle;
+    -webkit-user-select: none;
+    -moz-user-select: none;
+    -ms-user-select: none;
+    user-select: none;
+    border: 1px solid transparent;
+    padding: 0.375rem 0.75rem;
+    font-size: 1rem;
+    line-height: 1.5;
+    border-radius: 0.25rem;
+    transition: color .15s ease-in-out,background-color .15s ease-in-out,border-color .15s ease-in-out,box-shadow .15s ease-in-out;
+}
+@media (min-width: 576px){
+.col-sm-12 {
+    -webkit-box-flex: 0;
+    -ms-flex: 0 0 100%;
+    flex: 0 0 100%;
+    max-width: 100%;
+}
+}
+
+@media (min-width: 768px){
+.col-md-2 {
+    -webkit-box-flex: 0;
+    -ms-flex: 0 0 16.666667%;
+    flex: 0 0 16.666667%;
+    max-width: 16.666667%;
+}
+}
+@media (min-width: 576px){
+.col-sm-2 {
+    -webkit-box-flex: 0;
+    -ms-flex: 0 0 16.666667%;
+    flex: 0 0 16.666667%;
+    max-width: 16.666667%;
+}
+}
+
+.col, .col-1, .col-10, .col-11, .col-12, .col-2, .col-3, .col-4, .col-5, .col-6, .col-7, .col-8, .col-9, .col-auto, .col-lg, .col-lg-1, .col-lg-10, .col-lg-11, .col-lg-12, .col-lg-2, .col-lg-3, .col-lg-4, .col-lg-5, .col-lg-6, .col-lg-7, .col-lg-8, .col-lg-9, .col-lg-auto, .col-md, .col-md-1, .col-md-10, .col-md-11, .col-md-12, .col-md-2, .col-md-3, .col-md-4, .col-md-5, .col-md-6, .col-md-7, .col-md-8, .col-md-9, .col-md-auto, .col-sm, .col-sm-1, .col-sm-10, .col-sm-11, .col-sm-12, .col-sm-2, .col-sm-3, .col-sm-4, .col-sm-5, .col-sm-6, .col-sm-7, .col-sm-8, .col-sm-9, .col-sm-auto, .col-xl, .col-xl-1, .col-xl-10, .col-xl-11, .col-xl-12, .col-xl-2, .col-xl-3, .col-xl-4, .col-xl-5, .col-xl-6, .col-xl-7, .col-xl-8, .col-xl-9, .col-xl-auto {
+    position: relative;
+    width: 100%;
+    min-height: 1px;
+    padding-right: 15px;
+    padding-left: 15px;
+}
+
+html, body, div, span, applet, object, iframe, h1, h2, h3, h4, h5, h6, p, blockquote, pre, a, abbr, acronym, address, big, cite, code, del, dfn, em, img, ins, kbd, q, s, samp, small, strike, strong, sub, sup, tt, var, b, u, i, center, dl, dt, dd, ol, ul, li, fieldset, form, label, legend, table, caption, tbody, tfoot, thead, tr, th, td, article, aside, canvas, details, embed, figure, figcaption, footer, header, hgroup, menu, nav, output, ruby, section, summary, time, mark, audio, video {
+    margin: 0;
+    padding: 10,10;
+    border: 0;
+    font-size: 100%;
+    vertical-align: baseline;
+}
+.col-form-label {
+    padding-top: calc(0.375rem + 1px);
+    padding-bottom: calc(0.375rem + 1px);
+    margin-bottom: 0;
+    font-size: inherit;
+    line-height: 1.5;
+}
+
+label {
+    display: inline-block;
+    margin-bottom: 0.5rem;
+}
+</style>
+
+	</h:head>
+	<h:body>
+		<div>
+			<div class="login-logo">
+				<img style="max-height: 70px; padding-bottom: 2px;" id="AppLogo"
+					src="#{request.contextPath}/servlet/logo" />
+			</div>
+			<div class="bs-docs-section"
+				style="border-top: 2px solid #1ab26b !important; margin-bottom: 5px !important; margin-top: 1px !important; padding-top: 1px !important;"></div>
+		</div>
+		<div class="body">
+			<ui:insert name="body" />
+		</div>
+	</h:body>
+	<footer class="footer" id="appFooter">
+	<div class="row" style="margin-top: 20px;">
+		<div class="col-sm-3"></div>
+		<div class="col-sm-6 centered" style="text-align: center;">
+			<p class="centered">
+				&copy; <a target="_blank"
+					href="https://github.com/GluuFederation/oxAuth/blob/master/LICENSE"><h:outputText
+						value="#{msgs['common.gluuInc']}" escape="false" /></a> | <a
+					target="_blank" href="#{client.policyUri}"><h:outputText
+						value="#{msgs['common.privacyPolicy']}" escape="false" /></a> | <a
+					target="_blank" href="#{client.tosUri}"><h:outputText
+						value="#{msgs['common.termsOfService']}" escape="false" /></a>
+			</p>
+		</div>
+		<div class="col-sm-3"></div>
+	</div>
+	</footer>
+	<script type="text/javascript">
+		//<![CDATA[ 
+		$(document)
+				.ready(
+						function() {
+							$(window)
+									.scroll(
+											function() {
+												if (window.innerHeight < 620) {
+													document
+															.getElementById("appFooter").style.display = "none";
+												} else {
+													document
+															.getElementById("appFooter").style.display = "block";
+												}
+
+											});
+
+							$(window)
+									.on(
+											'resize',
+											function() {
+												var win = $(this);
+												if (win.height() >= 620) {
+													document
+															.getElementById("appFooter").style.display = "block";
+												} else {
+													document
+															.getElementById("appFooter").style.display = "none";
+												}
+											});
+						});
+
+		//]]>
+	</script>
+</f:view>
+</html>
\ No newline at end of file
diff --git a/oxAuth/Server/src/main/webapp/WEB-INF/incl/layout/template.xhtml b/oxAuth/Server/src/main/webapp/WEB-INF/incl/layout/template.xhtml
new file mode 100644
index 00000000..3075338f
--- /dev/null
+++ b/oxAuth/Server/src/main/webapp/WEB-INF/incl/layout/template.xhtml
@@ -0,0 +1,48 @@
+<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN"
+                "http://www.w3.org/TR/xhtml1/DTD/xhtml1-transitional.dtd">
+<html xmlns="http://www.w3.org/1999/xhtml"
+      xmlns:ui="http://xmlns.jcp.org/jsf/facelets"
+      xmlns:f="http://xmlns.jcp.org/jsf/core"
+      xmlns:h="http://xmlns.jcp.org/jsf/html">
+<f:view transient="true" locale="#{language.locale}">
+    <h:head>
+        <meta http-equiv="Content-Type" content="text/html; charset=UTF-8"/>
+        <title>oxAuth</title>
+        <link type="text/css" rel="stylesheet" href="#{oxAuthConfigurationService.getCssLocation()}/theme.xcss"/>
+        <link type="text/css" rel="stylesheet" href="#{oxAuthConfigurationService.getCssLocation()}/theme.css"/>
+        <link type="text/css" rel="stylesheet" href="#{oxAuthConfigurationService.getCssLocation()}/site.css"/>
+        <ui:insert name="head"/>
+    </h:head>
+    <h:body>
+        <div class="body">
+        	<div id="status" class="modal"><span style="background-color: #006699; color: white; font-weight: bold; position: fixed; left: 0px; top: 0px; padding: 5px 5px 5px 5px">Loading...</span></div>
+			<script type="text/javascript">
+				function handleAjax(data) {
+					var status = data.status;
+					switch (status) {
+					case "begin":
+						document.getElementById('status').className = 'loading';
+						break;
+
+					case "complete":
+						break;
+
+					case "success":
+						document.getElementById('status').className = 'modal';
+						break;
+					}
+				}
+
+				if (!(typeof jsf === 'undefined')) {
+					jsf.ajax.addOnEvent(handleAjax);
+				}
+			</script>
+
+			<h:messages id="messages" globalOnly="true" styleClass="message"
+                        errorClass="errormsg" infoClass="infomsg" warnClass="warnmsg"
+                        rendered="#{showGlobalMessages != 'false'}"/>
+            <ui:insert name="body"/>
+        </div>
+    </h:body>
+</f:view>
+</html>
\ No newline at end of file
diff --git a/oxAuth/Server/src/main/webapp/WEB-INF/incl/layout/whispeak-open-template.xhtml b/oxAuth/Server/src/main/webapp/WEB-INF/incl/layout/whispeak-open-template.xhtml
new file mode 100644
index 00000000..90b1968e
--- /dev/null
+++ b/oxAuth/Server/src/main/webapp/WEB-INF/incl/layout/whispeak-open-template.xhtml
@@ -0,0 +1,37 @@
+<?xml version="1.0" encoding="UTF-8"?>
+<!DOCTYPE html
+	PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN" "http://www.w3.org/TR/xhtml1/DTD/xhtml1-transitional.dtd">
+<html xmlns="http://www.w3.org/1999/xhtml" xmlns:ui="http://xmlns.jcp.org/jsf/facelets"
+	xmlns:f="http://xmlns.jcp.org/jsf/core" xmlns:h="http://xmlns.jcp.org/jsf/html" xmlns:p="http://primefaces.org/ui"
+	xmlns:b="http://bootsfaces.net/ui">
+<f:view transient="true" locale="#{language.locale}">
+	<h:head>
+		<meta http-equiv="Content-Type" content="text/html; charset=UTF-8" />
+		<meta name="viewport" content="width=device-width, initial-scale=1" />
+		<title>
+			<ui:insert name="pageTitle" />
+		</title>
+		<link rel="icon" href="#{request.contextPath}/servlet/favicon" type='image/x-icon' />
+		<link type="text/css" rel="stylesheet"
+			href="#{oxAuthConfigurationService.getCssLocation()}/fontawesome.min.css" />
+		<link type="text/css" rel="stylesheet" href="https://fonts.googleapis.com/css?family=Open+Sans:300,400,600" />
+		<script src="https://ajax.googleapis.com/ajax/libs/jquery/3.5.1/jquery.min.js"></script>
+		<link type="text/css" rel="stylesheet" href="/oxauth/ext/resources/stylesheet/recorder_3buttons.css" />
+		<link type="text/css" rel="stylesheet" href="/oxauth/ext/resources/stylesheet/form_window.css" />
+	</h:head>
+	<h:body>
+		<div class="body">
+			<h:panelGroup layout="block" styleClass="col-center">
+				<h:messages styleClass="messages" infoClass="infomsg info" errorClass="errormsg error"
+					warnClass="warnmsg" />
+			</h:panelGroup>
+			<ui:insert name="body" />
+
+		</div>
+
+	</h:body>
+	<footer id="appFooter">
+	</footer>
+</f:view>
+
+</html>
\ No newline at end of file
diff --git a/oxAuth/Server/src/main/webapp/WEB-INF/static/favicon.ico b/oxAuth/Server/src/main/webapp/WEB-INF/static/favicon.ico
new file mode 100644
index 0000000000000000000000000000000000000000..04c571577fa16929129e10958f3009d9f331735d
GIT binary patch
literal 19608
zcmeI42{e@J|G-~v_HIp7Xq{-G8nc-h2BVOr40ELruExwOW0@H<V^@@=l2){6v9zc}
z-J&Q&o2)HDq9n<cA_|q_{|>!OUETlObI<ShKmT)Pj`1DO^Ie|z^L(H0^SsV^XFJWt
z;#b8PiU0uoYGr9=2T7#xEiViG=7)rQfP@0q(uofMN-Dy)6p(a84FIHYEK^e&&66YG
z@I5(Pq?M^DlFQ?GuzWxO2zrvaw_xQ>np#Y9b?g>XgaZ3U@p6}2$(f9Y`!)0)Y3*Zr
z?=zj|%hS^z6!a|2mzPtuSl*TL0;w0Qz}}*#r#C^tM&qOPz5YpPbl82zZt|upSh?ek
zNhxjRnAp||&1zk#^?UX|>FB>A)uZ9?#jI!mFa4ZV)A7-D@Q%;foidcomDY*c+x(FR
zm!53NozVEw(i!0p;oY}|xXqwQeJw@m$cY}+A}oDsWROfFUG4ULfE!=tT9os;Q94`6
zh`9CUFH1=4GWUPDsPP*w&}AKAaqHS+)6G>q)~}JZA2|E;SZ&ElS)=5k1##|9^$nAx
z5lZpo3@h7;_WsGYZgvGe#TLq;BhECC8-^k}2#!9r^*zcJZbdr>rQe^VQEoF@*8qTV
zBFo-U;7GM5GdR9FbSB3g)CuzCLaYJ6&^U-oXLy4Gq&v8Q#WvFDx^`Uy$zmF5I1s29
zD%TYBWLbvrz||o(_KXm3hCWlnn4)MHM1~yrf&w}+$k&I>CkGj64ErTRpM}k64dk$j
zz}rY;xiBEokxE0Fa(Ez;phHA4uy{QrNnZy`(AUH1E=A%nSRxvukH+evFjz81pNzpG
zzr8dliqI!R9@B$tXJ-B_9Q2owhNnQlC8N=Sfq^=KcpVOJ0~)KZuaCyy&^R0l(m?Tp
z*#deHip|#?aRU1>1NjUdiz{Gp*hryYx;w{TV5FfT3^e-sc3r;Q(LikeH+B$3bP%13
z#_C|u;~6m-qc&WBp3m^mm<%-N1Nwq&0Uxr%j%x=YrBX*t#|`J}JFX>Pup$7uf^S5|
zwdC6eb3wEn$mjU;7~qNkXe65B4W2Ks1IOTs;R;e8*AW+9t>cetwEL$R1uT!B3`E%T
zQ!_A#^%FB;&xqM@PK`{pAw->Q$^+>F4$q#$@u7^Q>sYOUN)42rB%~IV&S0^H1xVWv
z{iD%X>WujV&FBJ<0@>=JFnAOOXD>``67;hKLnLD`B2Gp$fAB$tmJyRKppWkb`<<8X
zbbs{2VX{1e#qu(yDdL04AbW6lzH|YF<xAfHqPgr1hUl?I5zXQJC0nui0y>)kTA5Lx
z1|1fQNd_4t0+Y_bqUgFFx+q;HUKd5j;5|?v&K>8W?~c>eC4$2^s8mt&zqmHzF#Lr}
z2y#7AZI~Pe<bE`j$oeFGI)*`~qX-~|h{9q??oc2m3FVF@V3_XiBm$A43kMQ$_Lo4m
zJQh?8={_Pl!fRnd!5Hp129ZDlQ3L|s9i_{_gD7{RJ`Tn3AmQ*tB1RXgL2!t1-25e!
zC5sPbUa&|;LU}n{?pA|--?zdYKCI!g#ijH3pm0?iX~4^Rw9bu|F`><Hbs*Cj!h%O(
z2vZ$o8lt~z9UIoD<u^0dU#C+%1S9@M%zqvu&=X|;-9j00HLUe>Cwz{FAdt=jmv4YF
zM7&iz;`e*Q9|IVog<FIV>pw6Re0spYoCpFA#4<q-6qex5MCs~7OG=->V4xUu5(XrZ
zFhr8x=tTdEi5ROj|CbXnmdOlHI(q}iq@dv>h8zBibI0JY13=zCSxC@wr9(#}kjJNZ
z@HoCmI+yFiV$g+)5*@&1emh%?)-t4kgA^&aBjiPV{1>m43G!I~BvVC3If@DS|LmIo
z_1Y9~&l{Om$=ZZ>osnw${muvPrhnZjg=a13$Y3^-pXS0<B`nte`^E_EZP2lmEW#Z=
zsxZVXsXv&1w;I2BhYlz3Y2}|C9!3TyVm_XC&c8jPj6@m7%~&*;ya-^CZP0MER*_9P
zJ{%sE!vraKL-csfB0k5up}Tn6$W1(DIaCZmq@9I{sJTeLh`sRePlirb&@Mk*JSkX1
z^k3S3)OQq~kbL}yPe3Fb26~~f!r$LaMZ14Ab^3c#(e58j$1K;dSpo{~TeKgVMXZE(
zC?haeLwDsMg$Nxo35Mt&n}4*Rv4TJ!M>7_5Hs%Y@cz7t%u+5Jh;~F~s%uuA`o8idv
z6uEyMPKS|J=<Xc)#{hctKLa9}0<Z4>fE>G`|A2GYr6dSULM$o4B^D-FNrDR|A(oWj
z5(^WoB*6uf5KBsMiG>MPlHh_#h$SVs#KHtCNpQg=#F7$RVqt=nB)DJ_Vo3=uu`t0(
z5?n9|v7`i-SeRfX2`-p~SW<#ZEKIPH1Q$#~EGfYy7A9Cpf(s@gmXzQU3lpp)!3C2L
zOG<Ewg$Y)Y;DSkrB_+7T!UQWxaKR+Rk`i2EVS<$;xL^`uNeM2oFu_U^Trdf-qy(2(
zm|!IdE|`Q^Qi4k?Ot6v!7feDdDZwQcCRj;=3nn3!l;9Ez6Rae`1(Og<N^psV309Ke
zf=P%a{}z|x*t7N^8+yP#5PFh+TVwB4=qY?8!_tll03iziAR-a~K0q?+0RZ^A0l=R=
z&_nt=0AQwLWSd+N^qmOCR%XlXgPxpl@a870N!nDU-_+k*P~9$gm`BW0mR>F`D=Ss1
zh1`GIVDYx&YqH3C(l2%$XB5XBNOeTTWID0Q<yTu`V}F?%T~W)PS594jN4;}?l#3No
zV7cgMl;Ent#;-bUZzgMK;^J)He)8WG)^w)rNZZEbwvF2m(!jeGmART}3#EVr1h;tk
zvZ8rK@-nK@QGhZX0ep^c&TEVL;tgC#TH16tdTqZ{B%doU|NQe%6!7BnF=a(5DN}C3
zW229~M|Vg8%7rayQOnY%(h2&VCZ|JljL8?&5`YvvWzT0_d}cTid+ATqmD1WYrAa!4
zEqP6SQc}p(vO8yH#iVv#=?|zQ4KV8F<fX5F;oXAYVWYh-EFiz3e<dd@sJP9c<M6#n
z{+Ttod$m`~_6*4&f0H$lZ;zW~_%+zpbanNfp<Z{3zOFf1NiMx6;M4Q?X@}3wNP0!A
zCoX+gV?WJ+clq)}SJ#{?*9t$`37$Jin=Dv4v<Zl#Stg_!tDiA=)bORXdwqFHKxr7r
zZaz_8eX;zQjz7~)C;KX0eo_Q7VOQjo05E{v%I}{>O=`DaI(yMTgR!BSCwY#wd1s>5
zFPa}3q-Z87GzF~D8eUimzazCM`Z&w={j;NPUmtHtOL79Mju@NB-|9`sPail(I=jGE
zIknb3bgho2*=3x}@2l=4&+VgT9X@K@EVsDM#ce{;q`7nd{4)PkdKt59S!w01My(sa
z9h;r`;Mp|a=Aw+nq{eCL!E-;pIp#Xm%uD{0!$LvM;)Goe^C#x$rDmu{Tu?UgJAEZD
zUU^2T{kcttR?g0wzTxm8?O*W)iRj;Fs5?GVSI}u+HPP7d(BA8*j}8?$ow9przH?(u
zjM5}d*qh14m#;9q!e%W4?xfIy%?S2#Q2@9P^P9Hkfy%+9@der}Pr{(38w!Xky_*qu
z_Y~ftCDkkPJr-+pRE~{6C~mjXB$H-gbb*L9mjz3;lD^!@x(Z%nOCx=qaW`bH7%*4u
zh%PNqkL`_(E_G;J=)Bd;$zfN0y~=O#rfbxLy%Lw)%YOZ#s;Vb0|2+;|x9ZQ={k1k5
z)AA{gj>=~!1e>k$z?LaSZs%^F7j!#Ea83{Oyp2UA&aJjnnSf}s4fnjhUD}kZ2l53q
zx8z>AZFlXkQd=x9Utw)-PhFlimC&iNRO?6-HB+u`^86doU6nzv29#5u+%TPajWSu6
z{kcABAlbOFF72q&r^xz+7PQod>bpyK4KgQuTB}-N-B;MODSJWMokZtYTAKCFg~zK3
znJ-hf?pVk;r>UxKdUM-;*?C2-^`N8Psp$vIWxWCdW;qw04tw=VacjTbAC=VwxnZ@}
zJKMkTtU~8I4$$boc9v(zN+Ig1E!7q)`W!l#h@bA~>WZ*h@f2xa;5&1W^Zdqc=F0Z|
zi>v%N>}hw%1wr{ii#r9XrYf?vq%OBE+MDJLWgeMUGZsH|DY?{osrKs9Ebp1llYAcK
zZa#BN*^m|_w|JKR!54kaI=1=~Cg|U9$bPxR@0v^mVhb5n^=y}A)6q6lBfMIw8spxL
zBl(M`I^yT8j)^R&+<mOWyRa?#Z18ohY>!EP^HTV;>pe=|Jv^JY<X(SHRbxYS?m^%#
z(SRFXJp0|jSu{0Mi|lYOi}^tZDw!Qq5HF_#F_?2Q#Qv_Mu{nWmDSk2wCdjJZ*OybB
zb<^v{)x6fC7@n<Fi)Nwr^_}h7^7ED{tSF;(Z{w6%wD8LA4W8<K{(0N}Y&X?8Qm$$U
zX}!k{`4tNf%koiKPZ5p0B{I_cs&+1^HazJ(q~;TzO`1{_uPw76B2oMC1OJ}%V$b{i
zwrlzeeD+Rt1&~oi2<aJZ>!W%O+_@JTj3FKzYHw9Jf9TLeMMZNh*=o)DMREqo2VeGW
zJVMMa2ljHLmTBK!A7XZBAK}#%a$W23;>(Mu)-loA?@G4DQoM|N%v~QO7~y$kyKnV=
z@DH7{#&#JpHRE8X_E#Re`_a*47sJo*t31R1*lx8)`)2p%s*=@Ly|MzP<r^QIv-cf=
za3b8#Xv-7=h{e|%YiE4?P*@awl9h#xw)#jN*qh@b&stG)q%QY4;>G7Us4%J|rqEa)
z2zvV+o?Y4(@h;rkxCcFbp(%bM@AUcLV9=vESS8+|+N-Rm7ngrVNl&kx8q>{v@Un8V
zCFj#^%b}O=Q#0cG0*{8hE{(kwzNYit@3py7`1ll>EG`70ITe>m%iC-h8qkkVYzl9?
zFjSFt$#n3^GiELsp|C4C+3hQvqcKt5rqu2ImJScI2UuLhRweJja<FpN=Zf&pZBtO~
zePmu1#SJ?!8@Paxshj(CW-V3A`uIS4xyQMN2G^lCp}uk?X3`s@wU>-=^=}(C&VQ`f
zSQS@DKCy^0!Nl^-yrzWy%Q+jnS0Q2(3C50W_kFY0s=VUN#7zJWGjYdeI`>yK^oCL*
zo(E<7ygEO%Ok?mPV%g)jQe635YQU^tFIP7UTx38XzI*WY@h%@PqulLb>FRO_1O~5f
zK7WNgikjx7QKL5Lg5i$xZKup{)g8Jn6`{0wVrg24b>9<P^w;*MgOBeE4%F1lwu#zU
zSdmtHHZC8nvCd>~p<g6N#}%p}J3_Ee-0Cp*{jQY1eocAA-{jBu^L3=k(-ljkyZ215
zw#&V}tN!wWDJt<AXR}(@Em#ngp3bb<T~hnDp^^9Q{gS<urYwDQ-Q9#=KeyB^TgFyj
znu|an)EMPkbfQALo2k8@0`5IuQq$kmKUZ~krBPs}x2ub-s<ySl{NC(UUs`J84*N$S
z=2!obW|+}YbYtI{)|0!Ayw$l){?c4A*XWS0ZuyQ9V=`^Mzf*>5^d9*Y_SAW&PEM(Q
zxb3tR#soX>I6ygE@+DrSq0b`6?3G2J@laIBOZmjdM%SkAx6aVIkT<mG%$<!<UqH&W
zKb-VV^~q%Tw9DTz?VsD>J=9-lmMf@BtX5lDa`kd8YM?oKb5)XqO;_WKOCUWYK>e&s
zFb1oza3Ot522gDTYF*yYT!S}wW~Azq`IXyuanW(Fi~P_!g^4H9ZkKHFbq;Yio&02K
z`AL}-gjJl1<P3-NvVd+(Xp;3l)?urC*-#l;b-+S)e|nycj`_e$kKmHa30D>EoM-gq
zdtnW>c2#DOS@G8IlJK<km1eu@71G^{Lw&a%V3V&5WY(n{^}d?mP%PKsJo)kAnDc{g
zZY^ueqLF_$pj=w->KjncZ>@T>`u+P1j*dxU2Te=KHemNBaJx}k^_@N8)N<(UAXsl@
zYna`0@@#O&oSCHb*O}D@Br12>k>mr$gO45Zoe##{+=#+&^79(lAAb6D1NK?sP+v!H
zGRjM>=lm*G={^mMs!oH(LXt~tj%zDfm)&Tt5FJtGug6?nvXs+0xeJxcIJUx0w(5gh
zWB2PbZwHioord&@m)?EYQF4WS-H?ZJOI5bEzEfj%_u89#&VdOYFKZ5v3!FEFybcVt
z{gBgnaV0M(pg8Iiw0rM3a`B{V3pp3jbWCYtajMcUzkA<F4VF<!w=K^Mqnt|jA`;#X
zMB1dtwWNMgwGHc0P(5NIe@?Hvy`(@hl48ROF@0aiXco9X$!;t=$?wTXZ(ZjiH<2Fa
zvF*C@ra=!|{x4H+X$6KDYh~w!H{oVE)=Ymppl~|MSVpJ9srqBn&^g+v*>70~C!b1L
zLZ%s1C0_S)F&|ua&1Z)7Oj!ZDk(khU;+KrqfyW7ray#ZXnJGwZR-@icKtw(4e!ZXj
zyt4CgPKjU3+Nsff=kA@wE7dU%z1f+BSq7+?L?}%%|MRq;f|?2PUee~kbV_gkNrq0A
zh4%q>-=y~0*K!{pE9ecodp$;}_*77AQ`x25K4p^>KZfqZa8mu?btzyQ61`#n#W#V%
QZ@;oyVPlqMvVP0|03u`X3;+NC

literal 0
HcmV?d00001

diff --git a/oxAuth/Server/src/main/webapp/WEB-INF/static/logo.png b/oxAuth/Server/src/main/webapp/WEB-INF/static/logo.png
new file mode 100644
index 0000000000000000000000000000000000000000..539f9940bde74e4c817f3c9814c02b9d3051cde3
GIT binary patch
literal 3544
zcmV;}4JY!6P)<h;3K|Lk000e1NJLTq005@|002`61^@s6`V|-B0000PbVXQnQ*UN;
zcVTj606}DLVr3vnZDD6+Qe|Oed2z{QJOBU<dPzh<RCwC#T??2MWf}e#B$itW$RePD
zsGxX7G=tcnP`OxK#A*?hT*VCwN>K!K5d<m_5mbZ))W9St^MVvuiil_sAc!CdLI|=!
zq7|$H>t6ca=e+YUjOWbdoSCy{>3g5&dv?z`bN-q6|98I2`~Nd1tFp4vC={898rlU4
zC8t86<Wwj*6$&M%LdmI6C^;1hC8t8ksZc066-rKpA~SGOstsfp<!LW^<0`QUVr|4e
z6`LtGUF?hMequ)o7G^Fv6`r_3Y^qojzCK0lL9x@tMq+%mi!`iP1zL%Xvk}vdpNZva
z7b!Wb3YUqscKN)Qc9D{^s_+$$&rjAaQgT)mDm*?f*Dg|WDwLcGg_2XD<V-ux6|1Sk
zqR1q2wiTNv_GhtY#lEgXqo`_fLP{AUwnpqGu`|T_ioGs2MeH;kA|+?KQCn<)*g6xN
zLD??$0zdnc*k8qli)|7cBGy2MO39fHbR`iN&~x4^){UMLc*evQO8ivpkl5p5OT>EX
za49*X!dYTZi7glFA@+n=N3mas9kh8z{Dn9@!^GyECyRYc>_xHX#V*!iQ*wp{EP5Cv
zwo&XyVsFw@-YT}kwq2IvFHkIYk5~t>#mq-HkkGAk_)cs@y=3l2u{*@ti)|5`B=%de
zvN+owas0L8ZLvPIyGiyRh&>`!Bz82wG1V12U#yn#o?f(2BDR|zUQx}-iE#ZZhU3E|
z)a(R<Tbo2_%hxR#+Dqe*4xxP+Nk7rV7VM(RFBE&(2idwaO*n&5!|zkfuqgO5v29|r
zOic3nOzBg-$O#dBsMu}vfDen^&%&lLJyr{`<_z};&F9(PGYsPc#r{b$AoTC&Ys;QA
zF<ta-dS+DkPm`?c6CB$WCZ?g*Pa!?Q@m?+Vme_b+C{dsm^YS)){UP^Nl0;iLZ|KH#
z#Qw#0_PK1|g6G(TV~BKYWzd~w7v*KkpPuH}lEJ^jfgCAVSe9;bVs$qb&)!0>1pI@Z
z@?j1tG|Q%9r`o=U1AUJk&mv77dbO{LUC%IV;Xmxy{Twh5_kFerZ;JJizoB<5b{u12
z3dD4xlh|{N4iindtBY`qkBJR(yuXb7TO6RRpYyyM+1}g0w%?7jJ=UMjbrhW?%<(7r
zO@oA(jabmy@8Q9B=g4Pw2|-KJMb2ExJr~6BqNC^qK+;|8U}%>gkYpc|Xk)oOh<3J#
z>7OW=a(D$d<rR1#JMJQ;3}uec+?W?hU;cg3mS?sN*}LH)8pmTB79v51#381kCml}n
zgRUf19mo5~|8bkhwPK$;&gYkL)R6jYXSLXCKKFfxgP2zFUBGBKHC^Pqfy6w(!ex)x
zPO*>ZJ$EsjBr00k@kF+Yb!N!!Pr|QcTk*nP4!!i5VqYV9o3ry<vS3<F@|K(EZYH~(
z-eq(M1g*zVm<R(&luvxL)h`Y)?YTED^feBzd4)@R1N@LvJR>6HcU?9ao=$RF)%6;W
zgG#jjdq^sHAKaNZg;hE3R=kG!YP<qvFKxBsv!^Io*>jttB<gt)5p)>6{qI8v>29e<
zL#8{Q_$0dVXv?|1+sgf%04ZK0m(Lsf?Tj#V&PrQ&Zxisl-B@i~0z0sZc~36Aau777
z_cd`UaghCuh{&1E{If}l?NoT=b>#u%uW}#z3bOCA0Q)Tqu-{0@X#rRC;D7@<nVxZ?
z<De%nA4N6ZEI^w#GG}!=MlX~xomfhF3VHHwAKz=u{VPI3*fT_Z0=VrVENmd6uXTL(
zAw3cD$-8{E*TA^n&Dh;|Pkn9{yN=uTViD4l|1a=y3^y|$R%8e{(MBl?pL1A<c;PH2
z#?UMuO0dlwvA<CcY44-Wj;v6N>4mf6TsUrkitv4=7|vO$ElfXV7<b{m1<y^9A>^#Z
zYJ3zWquvbJiGY>vcXA-dnZ$zdAy%e1#_=A>dKRUTFDOeLFvqW`N8xpeM^X2Hi3!DS
zxl~~sFK<U}Dg}xRA!j9Xxpz!#)&}0|QkU&9Taj;K3qa<1v<)xz9K)-d=R2J;3v$FI
zlu#-i`K_BWfs1Q{k8}Mu&(p0xvz1nvMb5emrN86g^l|ZU<GIaP<L@~^qv;XvrA!eI
z{VBoxkzTW266X*W^jF6+upmO%g$NJ557TTp394zxNAtyA_1P|FjV7^}xjjKzf#PZ}
zy=L8rN#(U&meMLS$%*N(#jMz!-V>70edd^S6vV@zqTkN%JD)v-YPt=jpS=v}Spi8?
z%XmLJ#-1W5F{>Flt%1QT31%>U;ux#~R`ZaEwgqe(RsCcVZ-V2qAM)>PkAlZ-`Vv!a
zeSI7U=I1+k>}Pj`<An>_uNYny^1jOh?6)G*$Y}u;?<*!YXWo_XwPQ$zB=cyJ?P6N;
z4SM9O`Q8Og6Y&0ej}F`F(GMe-yCy;oJ^0xkh1J#+`mVx*1n}<7eYA5D)sUdXcZ+7N
zeewl$!Ks-_PRolSRQBU*>lu~S+RkLJ+>y*FM^Gxl6ep%EXZg5VU-tMM^TBi2HafQf
zRfzh$0I+7Xi$@#Jo75f#dytBN8|g;)7`Ohm3pmKW-4;+oiW}sb?-b=BQVw+~Tr+~4
z@MN1gsF;GptjixL3#9@q@}0(Z3t4y}j4t=_T~zX3Yatu5_=5M}LEFhftAmelHb2Gl
zL+Y{1W1H)k8r4qlc^^85Isx~MbKT={VN9_(949g1G_cy}=CDW<)omK+<cAoFkt<@6
z@B<;qED+|ep%*rkruO;x-hLj-G#}eGPU5&0QCUb8@X)uqkk9afZyU!`U&dTN8Lbr(
z9A@M$^@uJ{8{3q#kg}2&0&@QzVUj4y8{F11Ow?lto*cqHtyMWE+g`5?@cp^$z#bu=
z>o#6AVH6>+@SHk(Y}ea_e=k4MnwyNf9Eb6|Gac1>nB=Umwb`BF(GtTOFh49csXeHx
zg1M~Kd1z}U+lLo9>`_qQV)?O&%{+y9|NB03{B6#upp?1wYbO1RNZw|D4mTNq8X<Nl
zh;bp^K612X4DHsmAS58HTt7DjYh_}Bdj-ibiQeiNN?4uw+RcMu#S`vLdN;&=#4RJE
zO?Wydrgq0v5hpNCt22R|VR+7RN*s?++BuD6K^Wge8R;#0EaX$~q_8i@C|Eg<mF<J+
zT@b2=u}bX1f%UrW7dO>m860i}`CdqUiTh@7bKUj;{p<GmR9=h)5siJK2!{Fqw`9Cz
zzI<O;l>3dub6Sfkt~9ZGhB`BE*<>RE7JA@5pC?n$z)&E}BiTooWB0RsKyo6HU&)lB
zrbj^md_>7*2#-5eG~fkd$A3L8l46f&1Z{Y_iDtguP11v6(3b^L*eFRSIak}l=swC3
zPR$V#(tRY*j3jcY8kA42q)hU7oNe|vq>yz!1{JCTG}230A^+M|kgVfh%lzE8bFDf4
z-W)tFZ)1XO51V7Rrnu$USkHPJFQ%}t%y_TD+Cf!hZpatM1iu?*RaU09-|V715T_fx
z8OXDjS35}Py!CVu!{``FKz@<WPQqYgF8!b*H0D!Y!R*a?68R+)>@hX=YBb)ere^fA
zZebSZ+lK_VVBJxAj_ti8Oivy&{-^p7F`yx0@k~>XZFf?}!?Z6ZK<u+cud|Ik0s5pD
z)2N;v5eZ~k!3cLg$HWdi!(il*f`z5&BB%9lEuQrK4B?we!X@U|ymk{Fd^?6zKcf6M
z_?<%>XuFp99g-aL-5-;bvrTeO#_$82<5FIX@o<#+n$shKOqj80O%J?+{gVuk)3>ME
z(AY)_6l0$<6r<|4W}1+<_G2-+k;j(IEL}}r{Fj^9LYq3a{Z=qFLT&NBknbqDk!wq{
z@U)K=L3S7>Iqd^6lm!qv4>Lm$zE|<{4lIn0Qg3|ErTG@jEl~*Nk?4kD7~yUZbF<l0
z26m;Ph@9o(J>d}{MlUx1Cy4TgS)-V~+|T^73uPsENIdvz4zJ$ztZeZ=ru!28ikYPV
zARLY*F&oi4zDi;ubbp%{Lpq3wx%P|PE_S28P?AwnQX*J4g`vop#DZf0^}r{Xk37iy
z^cM4F@q9cBjLF<)AmtUT4%*5h;RO@?DH|YtONJW1VWXURDDuRP9tDj43UD<br-kLr
z3G?aUrZWe6lsU>E%1-u2lw8jOYYU5@Mf}cgzCSC;yy+?yHQ(g92O(!eA1cG=JZ42T
zA*UtT6fq1BW}%eJ1m5zJn6dc_ll^J7oO1z_@9DH;HOXA&zfu19!K#2&up-SlryGhX
zZM0*hZsnVG=?y!PfYxJOPT_!G&H^Y|VrDU&h?1D_nuSWK>Pt=wkc05>1<XQNnjmDB
zH|gOF!}$P8FzZs>A3X1w5uOin&5<VD`FbU174Ls3b4lc*+ilf8yd=c>uyhJbkBbWM
z_A`}E)idXG0|ax-W<YL&xQ*%1Z6WXDFxzbta=WEe6EvKkpyafGY0vo)wvU;si%odz
zIPpAE+_vzn(&)q|XVlnbVlz_tOeKQ+)QeSAK~jQLw2aEa0i{rMNO}5Fp*T?sB85W9
zsZeq%6iQBol2f5jaw-%`PKA<Fp-^%vl$;8Ml2f5jaw?RZ3WbtWaiZaW0t^5G!VB>B
S%`NQ!0000<MNUMnLSTY>SI1-k

literal 0
HcmV?d00001

diff --git a/oxAuth/Server/src/main/webapp/auth/bioid/bioid.xhtml b/oxAuth/Server/src/main/webapp/auth/bioid/bioid.xhtml
new file mode 100644
index 00000000..bf9b964e
--- /dev/null
+++ b/oxAuth/Server/src/main/webapp/auth/bioid/bioid.xhtml
@@ -0,0 +1,1045 @@
+<!DOCTYPE composition PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN"
+		"http://www.w3.org/TR/xhtml1/DTD/xhtml1-transitional.dtd">
+<ui:composition xmlns="http://www.w3.org/1999/xhtml"
+	xmlns:f="http://xmlns.jcp.org/jsf/core"
+	xmlns:ui="http://xmlns.jcp.org/jsf/facelets"
+	xmlns:h="http://xmlns.jcp.org/jsf/html"
+	template="/WEB-INF/incl/layout/bioid-template.xhtml">
+
+	<f:metadata>
+		<f:viewAction action="#{authenticator.prepareAuthenticationForStep}"
+			if="#{not identity.loggedIn}" />
+	</f:metadata>
+
+	<ui:define name="head">
+		<meta charset="utf-8" />
+
+		<link href="./css/uui.css" rel="stylesheet" />
+
+	</ui:define>
+	<ui:define name="pageTitle">
+		BWS Unified User Interface
+	</ui:define>
+
+	<ui:define name="body">
+
+		<header class="header"> <img class="logo"
+			src="./images/logo.svg" alt="BioID Logo" />
+		<div id="uuititle" class="title" data-res="titleVerification"></div>
+		</header>
+		<main class="main">
+		
+		<section id="uuiintroduction" class="hidden">
+		<div class="intro-title mb-3" data-res="introductionTitle">How
+			it works</div>
+		<div class="row">
+			<div class="col col-right-border">
+				<div class="col-fix-size float-right">
+					<div class="intro-subtitle" data-res="introductionStep1">Step
+						1</div>
+					<div class="intro-description" data-res="introductionStep1Desc1">Before
+						you start</div>
+					<div class="intro-description" data-res="introductionStep1Desc2">
+						come closer to the camera</div>
+					<div class="row">
+						<div class="col m-3">
+							<div class="center">
+								<div class="red center" data-res="introductionTooFarAway">Too
+									far away!</div>
+								<img src="./images/toofaraway.png" />
+							</div>
+						</div>
+						<div class="col m-3">
+							<div class="center">
+								<div class="red center" data-res="introductionTooClose">Too
+									close!</div>
+								<img src="./images/tooclose.png" />
+							</div>
+						</div>
+					</div>
+					<div class="row">
+						<div class="col m-3">
+							<div class="center">
+								<div class="blue center" data-res="introductionPerfect">Perfect!</div>
+								<img src="./images/perfect.png" />
+							</div>
+						</div>
+					</div>
+				</div>
+			</div>
+			<div class="col">
+				<div class="col-fix-size float-left">
+					<div class="intro-subtitle" data-res="introductionStep2">Step
+						2</div>
+					<div class="intro-description" data-res="introductionStep2Desc1">For
+						Liveness Detection</div>
+					<div class="intro-description" data-res="introductionStep2Desc2">
+						nod your head slightly</div>
+					<div class="row mt-3">
+						<div class="col">
+							<div class="center m-3">
+								<video src="./video/nodyourhead.mp4" class="demo-video"
+									autoplay="autoplay" playsinline="playsinline" loop="loop"
+									muted="muted" oncontextmenu="return false;"></video>
+							</div>
+						</div>
+					</div>
+					<div class="row">
+						<div class="col mt-3">
+							<div class="intro-attention blue"
+								data-res="introductionDontMoveDevice">
+								<strong>Please don't move the device!</strong>
+							</div>
+						</div>
+					</div>
+				</div>
+			</div>
+		</div>
+		<div class="row mt-3 mb-3">
+			<div class="col">
+				<div class="center">
+					<label class="checkbox"> <input type="checkbox"
+						class="intro-checkbox" id="introskip" value="yes"><span
+							data-res="introductionDontShowAgain">GOT IT! Don't show
+								the instruction again</span></input>
+					</label>
+				</div>
+			</div>
+		</div>
+		<div class="row center m-3">
+			<div class="col mb-5">
+				<button onclick="showIntroduction(false)"
+					class="button button-accept" data-res="buttonReadyToStart">I'm
+					ready to start</button>
+			</div>
+		</div>
+		</section> <section id="uuiwebapp" class="hidden">
+		<div class="row">
+			<div class="col center">
+				<div id="uuiinstruction" class="instruction transparent-background"></div>
+			</div>
+		</div>
+		<div class="row mt-3">
+			<div class="col center">
+				<h:form method="post" id="bioIDForm">
+					<h:commandButton id="enrollButton" value="Enroll Action" style="display:none"
+						action="#{authenticator.authenticate}" />
+				</h:form>
+				<button id="uuistart" class="button" data-res="buttonStart">START</button>
+			</div>
+		</div>
+		<div class="row">
+			<div class="col center m-3">
+				<div id="uuiliveview" class="liveview">
+					<div id="uuihead" class="head"></div>
+					<canvas id="uuicanvas" class="canvasview"></canvas>
+				</div>
+				<video id="livevideo" class="live" autoplay="autoplay"
+					playsinline="playsinline" oncontextmenu="return false;"></video>
+			</div>
+		</div>
+		<div class="row">
+			<div class="col center">
+				<div id="uuistatus" class="modal">
+					<div id="uuimessage"></div>
+					<div class="modal-footer">
+						<button id="uuiok" class="button button-ok">OK</button>
+					</div>
+				</div>
+			</div>
+		</div>
+		<div id="uuisingleupload" class="uploadstatus-single">
+			<!-- status images for up to 4 recordings -->
+			<div id="uuiimage1" class="image">
+				<div id="uuiwait1" class="spinner spinner-wait"></div>
+				<div id="uuiupload1" class="spinner spinner-upload"
+					data-res="uploadInfo">Uploading...</div>
+				<img id="uuiuploaded1" class="image-uploaded" />
+				<div id="uuiprogress1" class="progress-single">
+					<div id="uuiprogressbar1" class="progressbar"></div>
+				</div>
+			</div>
+			<div id="uuiimage2" class="image">
+				<div id="uuiwait2" class="spinner spinner-wait"></div>
+				<div id="uuiupload2" class="spinner spinner-upload"
+					data-res="uploadInfo">Uploading...</div>
+				<img id="uuiuploaded2" class="image-uploaded" />
+				<div id="uuiprogress2" class="progress-single">
+					<div id="uuiprogressbar2" class="progressbar"></div>
+				</div>
+			</div>
+			<div id="uuiimage3" class="image">
+				<div id="uuiwait3" class="spinner spinner-wait"></div>
+				<div id="uuiupload3" class="spinner spinner-upload"
+					data-res="uploadInfo">Uploading...</div>
+				<img id="uuiuploaded3" class="image-uploaded" />
+				<div id="uuiprogress3" class="progress-single">
+					<div id="uuiprogressbar3" class="progressbar"></div>
+				</div>
+			</div>
+			<div id="uuiimage4" class="image">
+				<div id="uuiwait4" class="spinner spinner-wait"></div>
+				<div id="uuiupload4" class="spinner spinner-upload"
+					data-res="uploadInfo">Uploading...</div>
+				<img id="uuiuploaded4" class="image-uploaded" />
+				<div id="uuiprogress4" class="progress-single">
+					<div id="uuiprogressbar4" class="progressbar"></div>
+				</div>
+			</div>
+		</div>
+		<div id="uuicompactupload" class="uploadstatus-compact">
+			<div id="uuiprogresscompact" class="progress-compact">
+				<div id="uuiprogressbarcompact" class="progressbar"></div>
+			</div>
+		</div>
+		</section> <section id="uuisplash" class="hidden">
+		<div class="row mt-9 d-flex justify-content-center">
+			<div class="col-8">
+				<div id="uuiprompt" class="promt">
+					<p data-res="prompt" class="mt-9"></p>
+					<p id="uuierror" class="alert-danger"></p>
+					<a id="uuiskip" class="button button-info" href=""
+						data-res="buttonContinue">Skip biometrics</a> <a id="uuimobileapp"
+						class="button button-info" href="" data-res="buttonMobileApp">Start
+						BioID app</a>
+				</div>
+			</div>
+		</div>
+		</section> </main>
+
+		<script src="./js/jquery-3.5.1.min.js"></script>
+		<script src="./js/getUserMedia.min.js"></script>
+		<script src="./js/bws.capture.js"></script>
+		<script src="./js/three.min.js"></script>
+		<script src="./js/objLoader.min.js"></script>
+		<script type="text/javascript">
+		//<![CDATA[
+
+        var token = '${identity.getWorkingParameter('access_token')}';
+        var returnURL = 'madhu-ubu16.infinity.com';
+        var state = '${identity.getWorkingParameter('state')}';
+        var apiurl = 'https://bws.bioid.com/extension/';
+        var task = '${identity.getWorkingParameter('bioID_auth_method')}';;
+        
+        var trait = "Face,Periocular";
+        var executions = 3;
+        var recordings = 4;
+        var threshold = 50;
+        
+        var challengeResponse = false;
+        
+        var challenges = "[]";
+        var maxHeight = 320;
+		var skipIntro = false;
+			
+		$(function() {
+			initialize();
+
+			$('#uuicancel').attr(
+					'href',
+					returnURL + '?error=user_abort&access_token=' + token
+							+ '&state=' + state);
+			$('#uuiskip').attr(
+					'href',
+					returnURL + '?error=user_skip&access_token=' + token
+							+ '&state=' + state);
+
+			if (task === 'verification') {
+				$('#uuimobileapp').attr(
+						'href',
+						'bioid-verify://?access_token=' + token
+								+ '&return_url=' + returnURL + '&state='
+								+ state);
+			} else if (task === 'enrollment') {
+				$('#uuimobileapp').attr(
+						'href',
+						'bioid-enroll://?access_token=' + token
+								+ '&return_url=' + returnURL + '&state='
+								+ state);
+			}
+
+			$('#uuiinstruction').attr('data-res', 'UserInstruction-CloseUp');
+
+			$('#uuimobileapp').click(function() {
+				$('#uuimobileapp').hide();
+			});
+
+			if (skipIntro) {
+				showIntroduction(false);
+			} else {
+				showIntroduction(true);
+			} 
+		});
+		
+	     // BWS capture jQuery plugin
+        var bwsCapture = null;
+
+        // counter for current execution
+        var currentExecution = 0;
+
+        var currentTag = '';
+        var parentTag = '';
+
+        // enrollment without challenge response
+        var enrollmentTags = ['left', 'right', 'right', 'left', 'up', 'down', 'down', 'up'];
+        var predefinedTags = ['left', 'right', 'up', 'down'];
+
+        // map for the compact upload
+        var progressMap = new Map();
+
+        // localized messages (english defaults, might get overloaded in
+		// initialize())
+        var localizedData = {
+              "titleEnrollment": "Enrollment",
+              "titleVerification": "Verification",
+              "titleIdentification": "Identification",
+              "titleLiveDetection": "Liveness Detection",
+
+              "introductionTitle": "How it works",
+              "introductionStep1": "Step 1",
+              "introductionStep1Desc1": "Before you start",
+              "introductionStep1Desc2": "come closer to the camera",
+              "introductionTooFarAway": "Too far away!",
+              "introductionTooClose": "Too close!",
+              "introductionPerfect": "Perfect!",
+              "introductionStep2": "Step 2",
+              "introductionStep2Desc1": "For Liveness Detection",
+              "introductionStep2Desc2": "nod your head slightly",
+              "introductionDontMoveDevice": "Please don't move the device!",
+              "introductionDontShowAgain": "GOT IT! Don't show the instruction again",
+
+              "buttonCancel": "back",
+              "buttonCancel.title": "Abort and navigate back to caller",
+              "buttonReadyToStart": "I'm ready to start",
+              "buttonContinue": "Skip biometrics",
+              "buttonMobileApp": "Start BioID app",
+
+              "prompt": "It seems like we don't have access to the camera. For performing biometric operations, please try the following:<br/>- Grant access to the camera.<br/>- Use a different browser (e.g. the most recent versions of Opera, Firefox, Chrome or Edge).",
+              "mobileapp": "If you have installed the BioID App on your mobile device, you can use this app for enrollment or verification.",
+
+              "uploadInfo": "Uploading...",
+
+              "capture-error": "We could not capture an image.<br />Sorry, but without access to the camera, facial recognition and liveness detection aren't possible!",
+              "nogetUserMedia": "Your browser does not support the HTML5 Media Capture and Streams API. Please use a different browser or the BioID mobile app.",
+              "permissionDenied": "Permission Denied!",
+              "webgl-error": "WebGL is disabled or unavailable. If possible activate WebGL or use another browser.",
+
+              "UserInstruction-CloseUp": "Come close before you start",
+              "UserInstruction-NodYourHead": "Please nod your head",
+              "UserInstruction-FollowMe": "Follow the blue head",
+              "UserInstruction-NoMovement": "Follow the head's movement",
+              "UserInstruction-PleaseWait": "Please wait",
+
+              "Perform-enrollment": "Training...",
+              "Perform-verification": "Verifying...",
+              "Perform-identification": "Identifying...",
+              "Perform-livenessdetection": "Processing...",
+
+              "NoMotionDetected": "We could not detect any motion.<br/>For Liveness Detection please nod your head slightly.",
+              "NoFaceFound": "We could not find a suitable face.<br/>Come close and look straight before you start.",
+              "MultipleFacesFound": "We found multiple faces or a strongly uneven background distracted us.<br/>Your face should fill the circle completely.",
+              "LiveDetectionFailed": "Liveness Detection failed.<br/>Look straight into the camera, then nod your head slightly.<br/>Please ensure constant lighting.",
+              "ChallengeResponseFailed": "Challenge-Response failed!<br/>Slowly follow the head's movement.",
+              "NotRecognized": "You have not been recognized!<br/>Please ensure constant lighting. For improving recognition, please enroll again."
+        };
+
+        /*
+		 * ----------------- Set button functionality
+		 * ------------------------------------------
+		 */
+
+
+        // jQuery - shortcut for $(document).ready()
+        // Document Object Model (DOM) is ready
+        
+
+        function showIntroduction(show) {
+            if (show) {
+                $('#uuiintroduction').show();
+            }
+            else {
+                $('#uuiintroduction').hide();
+                $('#uuiwepapp').show();
+                initCapture();
+
+                let checked = $('#introskip').prop("checked");
+                if (checked) {
+                    skipIntro = true;
+                    // set cookie (1 year) to skip the introduction for the next
+					// time
+                    // document.cookie =
+					// "BioIDSkipIntro=true;max-age=31536000;path=/";
+                }
+            }
+        }
+
+        function initCapture() {
+            // init BWS capture jQuery plugin (see bws.capture.js)
+            bwsCapture = bws.initcapture(document.getElementById('uuicanvas'), document.getElementById('livevideo'), token, {
+                apiurl: apiurl,
+                task: task,
+                trait: trait,
+                threshold: threshold,
+                challengeResponse: challengeResponse,
+                recordings: recordings,
+                maxheight: maxHeight
+            });
+            let success = initHead();
+            if (!success) {
+                $('#uuierror').html(formatText('webgl-error'));
+                $('#uuiskip').show();
+            }
+            else {
+                // and start everything
+                onStart();
+            }
+        }
+
+        // called from Start button and onStart to initiate a new recording
+        function startRecording() {
+          $('#uuistart').attr('disabled', 'disabled');
+          var tags = challengeResponse && challenges.length > currentExecution && challenges[currentExecution].length > 0 ? challenges[currentExecution] : [];
+          bwsCapture.startRecording(tags);
+        }
+
+        // called from Mirror button to mirror the captured image
+        function mirror() {
+            bwsCapture.mirror();
+        }
+
+
+        /*
+		 * ---------------- Localization of strings
+		 * ----------------------------------------------
+		 */
+
+
+        // localization of displayed strings
+        function localize() {
+            // loops through all HTML elements that must be localized.
+            let resourceElements = $('[data-res]');
+            for (let i = 0; i < resourceElements.length; i++) {
+                let element = resourceElements[i];
+                let resourceKey = $(element).attr('data-res');
+                if (resourceKey) {
+                    // Get all the resources that start with the key.
+                    for (let key in localizedData) {
+                        if (key.indexOf(resourceKey) === 0) {
+                            let value = localizedData[key];
+                            // Dot notation in resource key - assign the
+							// resource value to the elements property
+                            if (key.indexOf('.') > -1) {
+                                let attrKey = key.substring(key.indexOf('.') + 1);
+                                $(element).attr(attrKey, value);
+                            }
+                            // No dot notation in resource key, assign the
+							// resource value to the element's innerHTML.
+                            else if (key === resourceKey) {
+                                $(element).html(value);
+                            }
+                        }
+                    }
+                }
+            }
+        }
+
+        // localization and string formatting (additional arguments replace {0},
+		// {1}, etc. in localizedData[key])
+        function formatText(key) {
+            var formatted = key;
+            if (localizedData[key] !== undefined) {
+                formatted = localizedData[key];
+            }
+            for (let i = 1; i < arguments.length; i++) {
+                formatted = formatted.replace('{' + (i - 1) + '}', arguments[i]);
+            }
+            return formatted;
+        }
+        // jQuery - shortcut for $(document).ready()
+        // Document Object Model (DOM) is ready
+        $(function () {
+            initialize();
+
+            // set navigation for the buttons
+            $('#uuicancel').attr('href', returnURL + '?error=user_abort&access_token=' + token + '&state=' + state);
+            $('#uuiskip').attr('href', returnURL + '?error=user_skip&access_token=' + token + '&state=' + state);
+
+            // set url for the BioID mobile app
+            if (task === 'verification') {
+                $('#uuimobileapp').attr('href', 'bioid-verify://?access_token=' + token + '&return_url=' + returnURL + '&state=' + state);
+            }
+            else if (task === 'enrollment') {
+                $('#uuimobileapp').attr('href', 'bioid-enroll://?access_token=' + token + '&return_url=' + returnURL + '&state=' + state);
+            }
+
+            $('#uuiinstruction').attr('data-res', 'UserInstruction-CloseUp');
+
+            // hide button after first click
+            $('#uuimobileapp').click(function () {
+                $('#uuimobileapp').hide();
+            });
+
+            // Check if cookie is set
+            // let skipCookie = false;
+            // var cookie = document.cookie;
+            // if (cookie != "") {
+            // skipCookie = cookie.includes('true');
+            // }
+
+            if (skipIntro /* || skipCookie */) {
+                showIntroduction(false);
+            }
+            else {
+                showIntroduction(true);
+            }
+        });
+
+        /*
+		 * ----------------- Initialize BWS capture jQuery plugin
+		 * --------------------------------
+		 */
+
+
+        // initialize - load content in specific language and initialize bws
+		// capture
+        function initialize() {
+            // change title if task is enrollment
+            if (task === 'enrollment') {
+                $('#uuititle').attr('data-res', 'titleEnrollment');
+            }
+            // change title if task is identification
+            else if (task === 'identification') {
+                $('#uuititle').attr('data-res', 'titleIdentification');
+            }
+            else if (task === 'livenessdetection') {
+                $('#uuititle').attr('data-res', 'titleLiveDetection');
+            }
+
+            // try to get language info from the browser.
+            let userLangAttribute = navigator.language || navigator.userLanguage || navigator.browserLanguage || 'en';
+            let userLang = userLangAttribute.slice(0, 2);
+            // let userLocation = userLangAttribute.slice(-2) || 'us';
+
+            $.getJSON('./language/' + userLang + '.json').
+            done(function (data) {
+                console.log('Loaded the language-specific resource successfully');
+                localizedData = data;
+            }).fail(function (textStatus, error) {
+                console.log('Loading of language-specific resource failed with: ' + textStatus + ', ' + error);
+            }).always(function () {
+                localize();
+            });
+        }
+
+        /*
+		 * ------------------ Start BWS capture jQuery plugin
+		 * -----------------------------------
+		 */
+
+        // startup code
+        function onStart() {
+            bwsCapture.start(function () {
+                captureStarted();
+                $('#uuicanvas').show();
+            }, function (error) {
+
+                // hide uuiwebapp
+                $('#uuiwebapp').hide();
+
+                // show default information about general issues
+                $('#uuisplash').show();
+
+                // show button for continue without biometrics (skip biometric
+				// task)
+                $('#uuiskip').show();
+                // show button for BioID app (interapp communication)
+                if (task === 'verification' || task === 'enrollment') {
+                    $('#uuimobileapp').show();
+                }
+                if (error !== undefined) {
+                    // different browsers use different errors
+                    if (error.code === 1 || error.name === 'PermissionDeniedError') {
+                        // in the spec we find code == 1 and name ==
+						// PermissionDeniedError for the permission denied error
+                        $('#uuierror').html(formatText('capture-error', formatText('PermissionDenied')));
+                    } else {
+                        // otherwise try to print the error
+                        $('#uuierror').html(formatText('capture-error', error));
+                    }
+                } else {
+                    // no error info typically says that browser doesn't support
+					// getUserMedia
+                    $('#uuierror').html(formatText('nogetUserMedia'));
+                }
+            }, function (error, retry) {
+                // done
+                stopRecording();
+                currentExecution++;
+
+                if (error !== undefined && retry && currentExecution < executions) {
+                    console.log('Current Execution: ' + currentExecution);
+                } else {
+                    // done: redirect to caller ...
+                    let url = returnURL + '?access_token=' + token;
+                    if (error !== undefined) {
+                        url = url + '&error=' + error;
+                    }
+                    url = url + '&state=' + state + '&skipintro=' + skipIntro;
+                    window.location.replace(url);
+                }
+            }, function (status, message, dataURL) {
+                let $msg;
+                if (status === 'UploadProgress') {
+                        // for single upload status
+                        let id = message.id;
+                        let modId = ((id - 1) % 4) + 1;
+                        // for compact upload status
+                        let progresscompact = 0;
+                        progressMap.set(id, message.progress);
+                        progressMap.forEach(function (value) { return progresscompact += value });
+                        progresscompact = Math.ceil(progresscompact / recordings);
+                
+                        if (progresscompact > 100) {
+                            progresscompact = 100;
+                        }
+
+                        // css media query decision
+                        if ($('#uuisingleupload').is(':visible') == true) {
+                            $('#uuiprogress' + modId).show();
+                            $('#uuiprogressbar' + modId).width(message.progress + '%');
+                            // if the window size changed
+                            $('#uuiprogresscompact').hide();
+                        }
+                        else {
+                            $('#uuiprogresscompact').show();
+                            $('#uuiprogressbarcompact').width(progresscompact + '%');
+                        }
+                }
+                else if (status === 'DisplayTag') {
+                    setCurrentTag(message);
+                    $msg = $('#uuiinstruction');
+                    if (challengeResponse || task === 'enrollment') {
+                        $msg.html(formatText('UserInstruction-FollowMe'));
+                    }
+                    else {
+                        $msg.html(formatText('UserInstruction-NodYourHead'));
+                    }
+                    $msg.stop(true).fadeIn();
+                } else {
+                    // report a message on the screen
+                    let msg = formatText(status);
+
+                    // user instructions
+                    if (status.indexOf('UserInstruction') > -1) {
+                        $msg = $('#uuiinstruction');
+                        if (status === 'UserInstruction-Start') {
+                          let counter = recordings;
+                          if (counter > 4) {
+                            counter = 4;
+                          }
+                          for (let i = 1; i <= counter; i++) {
+                            $('#uuiuploaded' + i).hide();
+                            $('#uuiupload' + i).hide();
+                            $('#uuiwait' + i).show();
+                            $('#uuiimage' + i).show();
+                            $('#uuiprogress' + i).hide();
+                            $('#uuiprogressbar' + i).width(0);
+                          }
+                          progressMap.clear();
+                          $('#uuiprogresscompact').hide();
+                          $('#uuiprogressbarcompact').width(0);
+                          resetHeadDisplay();
+                        }
+                        else {
+                            $msg.html(msg);
+                            $msg.stop(true).fadeIn();
+                        }
+                    }
+
+                    // perform tasks
+                    if (status.indexOf('Perform') > -1 || status.indexOf('Retry') > -1) {
+                        // hide compact upload progress
+                        $('#uuiprogresscompact').hide();
+                    }
+
+                    // results of uploading or perform task
+                    if (status.indexOf('Failed') > -1 ||
+                        status.indexOf('NotRecognized') > -1 ||
+                        status.indexOf('NoFaceFound') > -1 ||
+                        status.indexOf('MultiFacesFound') > - 1) {
+
+                        changeLiveView(true);
+
+                        // show message
+                        $('#uuiinstruction').text('');
+                        $('#uuistatus').show();
+                        $msg = $('#uuimessage');
+                        $msg.html(formatText(msg));
+                        $msg.stop(true).fadeIn();
+                    }
+
+                    // display some animations/images depending on the status
+                    let uploaded = bwsCapture.getUploaded();
+                    let recording = uploaded + bwsCapture.getUploading();
+                    // use modulo calculation for images more than 4
+                    let modRecording = ((recording-1) % 4) + 1;
+                    let modUploaded = ((uploaded-1) % 4) + 1;
+
+                    if (status === 'Uploading') {
+                        // begin an upload - current image
+                        $('#uuiwait' + modRecording).hide();
+                        $('#uuiupload' + modRecording).show();
+                        $('#uuiuploaded' + modRecording).hide();
+
+                        // if uuiuploaded is not visible -> mobile view
+                        if (recording >= recordings) {
+                            $('#uuiinstruction').html(formatText('UserInstruction-PleaseWait'));
+                            changeLiveView(true);
+                        }
+                    } else if (status === 'Uploaded') {
+                        // successfull upload (we should have a dataURL)
+                        if (dataURL) {
+                            $('#uuiupload' + modUploaded).hide();
+                            $('#uuiprogress' + modUploaded).hide();
+                            let $image = $('#uuiuploaded' + modUploaded);
+                            $image.attr('src', dataURL);
+                            $image.show();
+                        }
+                    } else if (status === 'NoFaceFound' || status === 'MultipleFacesFound') {
+                        // upload failed
+                        recording++;
+                        modRecording = ((recording-1) % 4) + 1;
+                        $('#uuiupload' + modRecording).hide();
+                        $('#uuiwait' + modRecording).show();
+                    }
+                }
+            });
+        }
+
+        // switch between liveview and displayed messages
+        function changeLiveView(blur) {
+            if (blur) {
+                // hide head and blur canvas
+                hideHead();
+                $('#uuicanvas').css('filter', 'blur(10px)');
+                $('#uuiprogresscompact').hide();
+            }
+            else {
+                $('#uuicanvas').css('filter', 'none');
+                showHead();
+            }
+        }
+
+        // called by onStart to update GUI
+        function captureStarted() {
+            $('#uuiwebapp').show();
+            $('#uuimessage').show();
+            $('#uuiinstruction').show();
+
+            // Currently not neccessary - therefore the button is not shown!
+            // $('#uuimirror').show().click(mirror);
+
+            $('#uuistart').show().click(function () { startRecording(task === 'enrollment'); });
+
+
+            $('#uuiok').show().click(function () {
+                $('#uuistatus').hide();
+                $('#uuistart').prop('disabled', false);
+                $('#uuiinstruction').html(formatText('UserInstruction-CloseUp'));
+                changeLiveView(false);
+            });
+
+            setTimeout(function () { console.log('triggered showHead'); showHead(); }, 50);
+
+        }
+
+        // called from onStart when recording is done
+        function stopRecording() {
+            hideHead();
+
+            bwsCapture.stopRecording();
+
+            for (let i = 1; i <= 4; i++) {
+                $('#uuiimage' + i).hide();
+            }
+        }
+
+        /*
+		 * -------------------- Displaying head
+		 * ---------------------------------------------------
+		 */
+
+        var camera, scene, renderer, id;
+        var startTime;
+        var resetHead = false;
+        const maxVertical = 0.20;
+        const maxHorizontal = 0.25;
+
+        function initHead() {
+            // renderer
+            try {
+                renderer = new THREE.WebGLRenderer({ alpha: true });
+            }
+            catch (e) {
+                return false;
+            }
+
+            let container = document.getElementById('uuihead');
+            document.body.appendChild(container);
+
+            let width = $('#uuihead').width();
+            let height = $('#uuihead').height();
+            let uuihead = $('#uuihead');
+            $('#uuiliveview').append(uuihead);
+
+            // camera
+            camera = new THREE.PerspectiveCamera(20, width / height, 1, 1000);
+            camera.position.set(0, 0, 5.5);
+
+            // scene
+            scene = new THREE.Scene();
+            let ambientLight = new THREE.AmbientLight(0x4953FF, 0.4);
+            scene.add(ambientLight);
+            let pointLight = new THREE.PointLight(0x3067FF, 0.8);
+            camera.add(pointLight);
+            scene.add(camera);
+
+            // texture
+            let manager = new THREE.LoadingManager();
+            manager.onProgress = function (item, loaded, total) {
+                console.log(item, loaded, total);
+            };
+
+            // model
+            let onProgress = function (xhr) {
+                if (xhr.lengthComputable) {
+                    let percentComplete = xhr.loaded / xhr.total * 100;
+                    console.log(Math.round(percentComplete, 2) + '% downloaded');
+                }
+            };
+            let onError = function (xhr) {};
+            let loader = new THREE.OBJLoader(manager);
+            let material = new THREE.MeshLambertMaterial({ transparent: false, opacity: 0.8 });
+
+            loader.load('./model/head.obj', function (head) {
+                head.traverse(function (child) {
+                    if (child instanceof THREE.Mesh) {
+                     // child.material = material;
+                    }
+                });
+                head.name = 'BioIDHead';
+                head.position.y = 0;
+                scene.add(head);
+            }, onProgress, onError);
+
+            renderer.setClearColor(0x000000, 0); // the default
+            renderer.setPixelRatio(window.devicePixelRatio);
+            renderer.setSize(width, height);
+
+            container.appendChild(renderer.domElement);
+            document.addEventListener('uuiresize', onHeadResize, false);
+
+            return true;
+        }
+
+        function onHeadResize() {
+          
+            let canvasWidth = parseInt($('#uuicanvas').width());
+            let canvasHeight = parseInt($('#uuicanvas').height());
+
+            $('#uuihead').css({ 'margin-top': -canvasHeight, 'margin-left': '0' });
+            $('#uuihead').attr('width', canvasWidth);
+            $('#uuihead').attr('height', canvasHeight + 50);
+			
+            camera.aspect = canvasWidth / canvasHeight;
+            camera.updateProjectionMatrix();
+            renderer.setSize(canvasWidth, canvasHeight);
+            renderer.render(scene, camera);
+        }
+
+        function resetHeadDisplay() {
+            currentTag = '';
+            parentTag = '';
+            resetHead = true;
+            cancelAnimationFrame(id);
+            $('.head').css('opacity', '0.6');
+        }
+
+        function setCurrentTag(tag) {
+            if (currentTag !== '') {
+                parentTag = currentTag;
+            }
+
+            currentTag = tag;
+            startTime = new Date().getTime();
+
+            if (currentTag === 'any' && task !== 'enrollment') {
+                constantAnimation();
+            }
+            else {
+                animateHead();
+                console.log('DisplayTag: ' + tag);
+            }
+        }
+
+        function constantAnimation() {
+            // change css class 'head'
+            $('.head').css('opacity', '0.8');
+
+            // animation time
+            let delta = 0.005;
+            let head = scene.getObjectByName('BioIDHead');
+            showHead();
+
+            let direction = 'down';
+            var animate = function () {
+
+                if (direction === 'up') {
+                    if (head.rotation.x >= -maxVertical) {
+                        head.rotation.x -= delta;
+                    }
+                    else {
+                        direction = 'down';
+                    }
+                }
+
+                if (direction === 'down') {
+                    if (head.rotation.x <= maxVertical) {
+                        head.rotation.x += delta;
+                    }
+                    else {
+                        direction = 'up';
+                    }
+                }
+
+                id = requestAnimationFrame(animate);
+                renderer.render(scene, camera);
+            };
+            animate();
+        }
+
+        function animateHead() {
+            // animation time
+            let speed = 0.000005;
+            let endTime = new Date().getTime();
+            let deltaTime = (endTime - startTime);
+            let delta = deltaTime * speed;
+
+            let head = scene.getObjectByName('BioIDHead');
+            let doAnimation = false;
+
+            if (head) {
+                if (resetHead) {
+                    // reset head rotation to center
+                    head.rotation.x = 0;
+                    head.rotation.y = 0;
+                    resetHead = false;
+                    doAnimation = true;
+                    // change css class 'head'
+                    $('.head').css('opacity', '0.8');
+                    showHead();
+                }
+                else {
+                    if (currentTag === 'any') {
+                        if (task === 'enrollment') {
+                            // get predefined direction for better enrollment
+                            let recording = bwsCapture.getUploaded() + bwsCapture.getUploading() - 1;
+                            currentTag = enrollmentTags[recording];
+                        }
+                        else {
+                            if (head.rotation.x >= -maxVertical && head.rotation.x <= 0) {
+                                head.rotation.x -= delta;
+                                doAnimation = true;
+                            }
+                            else {
+                                head.rotation.x += delta;
+                                doAnimation = true;
+                            }
+                        }
+                    }
+
+                    if (currentTag === 'down') {
+                        head.rotation.y = 0;
+                        if (parentTag === 'up') {
+                            if (head.rotation.x <= 0) {
+                                head.rotation.x += delta;
+                                doAnimation = true;
+                            }
+                        }
+                        else {
+                            if (head.rotation.x >= 0 && head.rotation.x < maxVertical) {
+                                head.rotation.x += delta;
+                                doAnimation = true;
+                            }
+                        }
+                    }
+                    else if (currentTag === 'up') {
+                        head.rotation.y = 0;
+                        if (parentTag === 'down') {
+                            if (head.rotation.x >= 0) {
+                                head.rotation.x -= delta;
+                                doAnimation = true;
+                            }
+                        }
+                        else {
+                            if (head.rotation.x >= -maxVertical && head.rotation.x <= 0) {
+                                head.rotation.x -= delta;
+                                doAnimation = true;
+                            }
+                        }
+                    }
+                    else if (currentTag === 'left') {
+                        head.rotation.x = 0;
+                        if (parentTag === 'right') {
+                            if (head.rotation.y >= 0) {
+                                head.rotation.y -= delta;
+                                doAnimation = true;
+                            }
+                        }
+                        else {
+                            if (head.rotation.y >= -maxHorizontal && head.rotation.y <= 0) {
+                                head.rotation.y -= delta;
+                                doAnimation = true;
+                            }
+                        }
+                    }
+                    else if (currentTag === 'right') {
+                        head.rotation.x = 0;
+                        if (parentTag === 'left') {
+                            if (head.rotation.y <= 0) {
+                                head.rotation.y += delta;
+                                doAnimation = true;
+                            }
+                        }
+                        else {
+                            if (head.rotation.y >= 0 && head.rotation.y <= maxHorizontal) {
+                                head.rotation.y += delta;
+                                doAnimation = true;
+                            }
+                        }
+                    }
+                }
+
+                if (doAnimation) {
+                    id = requestAnimationFrame(animateHead);
+                }
+                renderer.render(scene, camera);
+            }
+        }
+
+        function showHead() {
+
+            $('#uuihead').show();
+            onHeadResize();
+            console.log('showHead')
+        }
+
+        function hideHead() {
+            $('#uuihead').hide();
+            resetHeadDisplay();
+            console.log('hideHead');
+        }
+		//    	]]>
+	</script>
+	</ui:define>
+</ui:composition>
\ No newline at end of file
diff --git a/oxAuth/Server/src/main/webapp/auth/bioid/css/uui.css b/oxAuth/Server/src/main/webapp/auth/bioid/css/uui.css
new file mode 100644
index 00000000..32a7b745
--- /dev/null
+++ b/oxAuth/Server/src/main/webapp/auth/bioid/css/uui.css
@@ -0,0 +1,764 @@
+/* Extra small devices (portrait phones, less than 740px) */
+@media (max-width: 575.98px ) and (max-height: 739.98px ) {
+    html {
+        font-size: 11px;
+    }
+
+    .navigation {
+        top: 60px;
+        left: 0;
+        width: 60px;
+    }
+
+    .instruction {
+        margin-top: 30px;
+        font-size: 1.4rem;
+        height: 50px;
+    }
+
+    .promt {
+        font-size: 1.3rem;
+    }
+
+    .uploadstatus-single {
+        display: none;
+    }
+
+    .col-right-border {
+        border: none;
+    }
+
+    .col-8 {
+        flex: 0 0 85%;
+        max-width: 85%;
+    }
+
+    .intro-title {
+        margin-top: 30px;
+    }
+
+    .demo-video {
+        max-width: 250px;
+    }
+
+    .abortbutton {
+        left: 20px;
+    }
+
+    .logo {
+        width: 11rem;
+    }
+
+    .header {
+        height: 4rem;
+        box-shadow: 0 1rem 0 0 rgb(111,118,127);
+    }
+}
+
+/* Extra small devices (portrait phones, less than 576px) */
+@media (max-width: 575.98px) and (min-height: 740px) {
+    html {
+        font-size: 11px;
+    }
+
+    .navigation {
+        top: 10px;
+        left: 0;
+        width: 60px;
+    }
+
+    .instruction {
+        margin-top: 30px;
+        font-size: 1.6rem;
+        height: 50px; 
+    }
+
+    .promt {
+        font-size: 1.3rem;
+    }
+
+    .uploadstatus-single {
+        display: none;
+    }
+
+    .col-right-border {
+        border: none;
+    }
+
+    .col-8 {
+        flex: 0 0 85%;
+        max-width: 85%;
+    }
+
+    .intro-title {
+        margin-top: 30px;
+    }
+
+    .float-right {
+        margin: 0;
+        float: none;
+    }
+
+    .float-left {
+        margin: 0;
+        float: none;
+    }
+
+    .demo-video {
+        max-width: 350px;
+    }
+
+    .abortbutton {
+        left: 20px;
+    }
+
+    .logo {
+        width: 11rem;
+    }
+
+    .header {
+        height: 4rem;
+        box-shadow: 0 1rem 0 0 rgb(111,118,127);
+    }
+}
+
+/* Small devices (landscape phones, 576px and up) */
+@media (min-width: 576px) {
+    html {
+        font-size: 12px;
+    }
+
+    .navigation {
+        top: 10px;
+        left: 10px;
+        width: 60px;
+    }
+
+    .uploadstatus-single {
+        display: none;
+    }
+
+    .col-right-border {
+        border: none;
+    }
+
+    .col-8 {
+        flex: 0 0 85%;
+        max-width: 85%;
+    }
+
+    .demo-video {
+        max-width: 400px;
+    }
+
+    .intro-title {
+        margin-top: 30px;
+    }
+
+    .instruction {
+        font-size: 1.6rem;
+        margin-top: 30px;
+        height: 80px; 
+    }
+
+    .abortbutton {
+        top: 30px;
+        left: 30px;
+    }
+
+    .logo {
+        width: 15rem;
+    }
+
+    .header {
+        height: 5rem;
+        box-shadow: 0 1.5rem 0 0 rgb(111,118,127);
+    }
+}
+
+/* Medium devices (tablets, 768px and up) */
+@media (min-width: 745px) {
+    html {
+        font-size: 15px;
+    }
+
+    .navigation {
+        top: 40px;
+        left: 35px;
+        width: 120px;
+    }
+
+    .uploadstatus-single {
+        display: none;
+    }
+
+    .col-right-border {
+        border: none;
+    }
+
+    .col-8 {
+        flex: 0 0 50%;
+        max-width: 50%;
+    }
+}
+
+@media (max-width: 896px) {
+  
+    .float-left,
+    .float-right {
+        margin: 0 auto;
+    }
+}
+
+@media (min-width: 897px) {
+    .col-right-border {
+        border-right: 1px solid black;
+    }
+}
+
+/* Large devices (desktops, 992px and up) */
+@media (min-width: 992px) {
+    html {
+        font-size: 16px;
+    }
+
+    .uploadstatus-single {
+        display: block;
+    }
+
+    .float-left {
+        float: left !important;
+        margin-left: 80px;
+    }
+
+    .float-right {
+        float: right !important;
+        margin-right: 80px;
+    }
+}
+
+body {
+    font-family: "Open Sans", "Segoe UI", Helvetica, Arial, Sans-Serif;
+    background-color: white;
+    min-height: 100%;
+}
+
+.logo {
+    position: absolute;
+    top: 0;
+    left: 0;
+}
+
+.header {
+    position: fixed;
+    top: 0;
+    right: 0;
+    left: 0;
+    padding: 0;
+    background-color: rgb(48,55,66);
+    z-index: 3;
+}
+
+.main {
+    position: absolute;
+    box-sizing: border-box;
+    top: 6rem;
+    right: 0;
+    left: 0;
+    width: 100%;
+}
+
+.abortbutton {
+    position: absolute;
+}
+
+.red {
+    color: red;
+    font-weight: 600;
+}
+
+.blue {
+    color: #3A61A0;
+    font-weight: 600;
+}
+
+.uppercase {
+    text-transform: uppercase;
+}
+
+.button {
+    border: none;
+    border-radius: 12px;
+    padding: 10px 32px;
+    color: white;
+    background-color: #93D50B;
+    text-align: center;
+    text-decoration: none;
+    display: inline-block;
+    font-size: 18px;
+    font-weight: 500;
+    line-height: 30px;
+    cursor: pointer;
+}
+
+.button:hover {
+    background-color: #82BA0B;
+}
+
+.button:focus {
+    outline: 0;
+    box-shadow: 0 0 0 0.2rem rgba(127, 186, 6, 0.5);
+}
+
+.button:hover {
+    background-color: #82BA0B;
+}
+
+.button:disabled {
+    background-color: gray;
+    color: lightgray;
+    cursor: default;
+}
+
+.button-accept {
+    width: 300px;
+}
+
+.button-ok {
+    border: 1px solid #BE0000;
+    background-color: white;
+    color: #BE0000;
+    padding: 10px 70px;
+    margin: 2px 30px;
+}
+
+.button-ok:hover {
+    background-color: #E0E0E0;
+}
+
+.button-ok:focus {
+    outline: 0;
+    box-shadow: 0 0 0 0.2rem rgba(190, 0, 0, 0.5);
+}
+
+.button-info {
+    display: none;
+    background: rgb(52,152,219);
+    margin: 10px 10px 10px 0;
+    float: left;
+}
+
+.button-info:hover {
+    background: rgb(60,176,253);
+}
+
+.button-info:focus {
+    outline: 0;
+    box-shadow: 0 0 0 0.2rem rgba(60, 176, 253, 0.5);
+}
+
+a .button-back {
+    width: 25px;
+    height: auto;
+    vertical-align: middle;
+}
+
+.navigation {
+    position: absolute;
+    top: 200px;
+    left: 300px;
+    z-index: 2;
+}
+
+.hidden {
+    display: none;
+}
+
+.title {
+    margin-top: 1.5rem;
+    text-align: center;
+    color: white;
+    font-size: 1.4rem;
+}
+
+.prompt {
+    font-size: 1rem;
+}
+
+.webapp {
+    display: none;
+    position: absolute;
+    top: 0;
+    left: 0;
+    width: 100%;
+    height: 100%;
+}
+
+.instruction {
+    z-index: 1;
+    font-weight: 600;
+    color: #3A61A0;
+}
+
+.liveview {
+    display: block;
+    z-index: -2;
+}
+
+.live {
+    position: absolute;
+    top: 50%;
+    left: 50%;
+    width: 10px;
+    height: auto;
+    z-index: -2;
+}
+
+.canvasview {
+    position: relative;
+    max-width: 800px;
+    max-height: 600px;
+    opacity: 1.0;
+    z-index: -1;
+    -webkit-transform: scaleX(-1);
+}
+
+.modal {
+    display: none;
+    position: absolute;
+    top: 50%;
+    left: 50%;
+    transform: translate(-50%, -50%);
+    font-size: 1.3rem;
+    background-color: #FFFFFF;
+    color: #BE0000;
+    padding: 50px;
+    opacity: 0.8;
+}
+
+.modal-footer {
+    margin-top: 2rem;
+}
+
+.head {
+    display: block;
+    position: relative;
+    text-align: center;
+    opacity: 0.6; 
+    z-index: 1;
+}
+
+.stats {
+    display: block;
+    position: fixed;
+    bottom: 20px;
+    left: 10px;
+    color: black;
+    font-size: 1.2rem;
+    text-align: center;
+    z-index: 1;
+}
+
+.uploadstatus-single {
+    position: fixed;
+    bottom: 0;
+    right: 0;
+    color: black;
+    text-align: right;
+}
+
+.uploadstatus-compact {
+    position: fixed;
+    bottom: 5px;
+    left: 5px;
+    right: 5px;
+}
+
+.image {
+    display: none;
+    box-sizing: border-box;
+    border: 1px solid rgb(44,100,162);
+    float: right;
+    margin: 4px;
+    width: 90px;
+    height: 120px;
+    margin-bottom: 25px;
+    opacity: 0.4;
+}
+
+.image-uploaded {
+    text-align: center;
+    width: 90px;
+    height: 120px;
+}
+
+.progress-single {
+    display: none;
+    margin-top: 5px;
+    width: 90px;
+    background-color: #e9ecef;
+    border-radius: .25rem;
+}
+
+.progress-compact {
+    display: none;
+    width: 100%;
+    background-color: #e9ecef;
+    border-radius: .25rem;
+}
+
+.progressbar {
+    display: block;
+    height: 10px;
+    width: 0;
+    background-color: #007bff;
+    border-radius: .25rem;
+}
+
+.transparent-background {
+    background-color: rgb(255,255,255);
+    background-color: rgba(255, 255, 255, .9);
+}
+
+.alert-danger {
+    color: rgb(255,80,80);
+}
+
+.intro-title {
+    font-size: 2.4rem;
+    font-weight: 700;
+    color: #3A61A0;
+    text-transform: uppercase;
+    text-align: center;
+}
+
+.intro-subtitle {
+    font-size: 2.4rem;
+    font-weight: 700;
+    color: #3A61A0;
+    text-transform: uppercase;
+    text-align: center;
+}
+
+.intro-description {
+    font-size: 1.6rem;
+    font-weight: 500;
+    color: #3A61A0;
+    text-align: center;
+}
+
+.intro-attention {
+    font-size: 1rem;
+    text-align: center;
+}
+
+.image-wrong {
+    font-size: 1rem;
+    text-align: center;
+    color: red;
+    margin-top: 20px;
+    margin-bottom: 20px;
+}
+
+.image-right {
+    font-size: 1rem;
+    font-weight: 600;
+    text-align: center;
+    color: #3A61A0;
+    margin-top: 20px;
+    margin-bottom: 20px;
+}
+
+.intro-skip {
+    font-size: 1.6rem;
+    text-align: center;
+    line-height: 1.6rem;
+}
+
+input.intro-checkbox {
+    width: 20px;
+    height: 20px;
+}
+
+.row {
+    display: -ms-flexbox;
+    display: flex;
+    -ms-flex-wrap: wrap;
+    flex-wrap: wrap;
+    margin-right: 0;
+    margin-left: 0;
+}
+
+.col {
+    -ms-flex-preferred-size: 0;
+    flex-basis: 0;
+    -ms-flex-positive: 1;
+    flex-grow: 1;
+    max-width: 100%;
+}
+
+.col-fix-size {
+    max-width: 590px;
+}
+
+.col-8 {
+    position: relative;
+    width: 100%;
+    padding-right: 15px;
+    padding-left: 15px;
+}
+
+.justify-content-center {
+    -ms-flex-pack: center !important;
+    justify-content: center !important;
+}
+
+.checkbox {
+    display: block;
+    position: relative;
+    cursor: pointer;
+    font-size: 22px;
+    -webkit-user-select: none;
+    -moz-user-select: none;
+    -ms-user-select: none;
+    user-select: none;
+}
+
+.center {
+    text-align: center;
+}
+
+.mt-3 {
+    margin-top: 1rem !important;
+}
+
+.mt-9 {
+    margin-top: 3rem !important;
+}
+
+.mb-3 {
+    margin-bottom: 1rem !important;
+}
+
+.ml-3 {
+    margin-left: 1rem !important;
+}
+
+.ml-5 {
+    margin-left: 2rem !important;
+}
+
+.m-3 {
+    margin: 1rem !important;
+}
+
+.mb-5 {
+    margin-bottom: 2rem !important;
+}
+
+.checkbox input {
+    vertical-align: middle;
+}
+
+.checkbox span {
+    vertical-align: middle;
+    font-size: 0.9rem;
+    padding-left: 10px;
+}
+
+.action-title {
+    color: #3A61A0;
+    font-weight: 500;
+}
+
+.spinner {
+    position: relative;
+    width: 100%;
+    height: 100%;
+}
+
+.spinner:before, .spinner:after {
+    content: "";
+    position: absolute;
+    border-width: 4px;
+    border-style: solid;
+    border-radius: 50%;
+}
+
+.spinner-wait:before {
+    top: 40px;
+    left: 20px;
+    width: 40px;
+    height: 40px;
+    border-color: rgb(33,33,33);
+    animation: scale 1.5s linear 0s infinite alternate;
+}
+
+.spinner-wait:after {
+    top: 40px;
+    left: 20px;
+    width: 40px;
+    height: 40px;
+    border-color: rgb(33,33,33);
+    animation: scale 1.5s linear 0s infinite alternate-reverse;
+}
+
+.spinner-upload:before {
+    top: 40px;
+    left: 20px;
+    width: 40px;
+    height: 40px;
+    border-bottom-color: rgb(33,33,33);
+    border-right-color: rgb(33,33,33);
+    border-top-color: rgb(33,33,33);
+    border-top-color: rgba(33,33,33,0);
+    border-left-color: rgb(33,33,33);
+    border-left-color: rgba(33,33,33,0);
+    animation: rotate-animation 1s linear 0s infinite;
+}
+
+.spinner-upload:after {
+    top: 50px;
+    left: 30px;
+    width: 20px;
+    height: 20px;
+    border-bottom-color: rgb(33,33,33);
+    border-right-color: rgb(33,33,33);
+    border-top-color: rgb(33,33,33);
+    border-top-color: rgba(33,33,33, 0);
+    border-left-color: rgb(33,33,33);
+    border-left-color: rgba(33,33,33, 0);
+    animation: anti-rotate-animation 0.85s linear 0s infinite;
+}
+
+@keyframes scale {
+    0% {
+        transform: scale(1);
+        border-style: solid;
+    }
+
+    100% {
+        transform: scale(0);
+        border-style: dashed;
+    }
+}
+
+@keyframes rotate-animation {
+    0% {
+        transform: rotate(0deg);
+    }
+
+    100% {
+        transform: rotate(360deg);
+    }
+}
+
+@keyframes anti-rotate-animation {
+    0% {
+        transform: rotate(0deg);
+    }
+
+    100% {
+        transform: rotate(-360deg);
+    }
+}
diff --git a/oxAuth/Server/src/main/webapp/auth/bioid/images/back.svg b/oxAuth/Server/src/main/webapp/auth/bioid/images/back.svg
new file mode 100644
index 00000000..d2db5764
--- /dev/null
+++ b/oxAuth/Server/src/main/webapp/auth/bioid/images/back.svg
@@ -0,0 +1,3 @@
+<svg xmlns="http://www.w3.org/2000/svg" width="17" height="20" viewBox="0 0 17 20">
+  <path id="Polygon_3" data-name="Polygon 3" d="M10,0,20,17H0Z" transform="translate(0 20) rotate(-90)" fill="#92d50d"/>
+</svg>
diff --git a/oxAuth/Server/src/main/webapp/auth/bioid/images/logo.svg b/oxAuth/Server/src/main/webapp/auth/bioid/images/logo.svg
new file mode 100644
index 00000000..ba35d511
--- /dev/null
+++ b/oxAuth/Server/src/main/webapp/auth/bioid/images/logo.svg
@@ -0,0 +1 @@
+<svg xmlns="http://www.w3.org/2000/svg" viewBox="0 0 534.1 276.17"><g><path fill="#fff" d="M0 276.17V.16L465.6 0l68.5 123.65-115 120.25L0 276.17z"/><g><path d="M97.25 156.81H101V170h.09a7.82 7.82 0 0 1 7.18-3.83c5.27 0 8.92 4.35 8.92 10.71 0 7.53-4.79 11.28-9.49 11.28a7.66 7.66 0 0 1-7.1-3.92h-.09l-.22 3.44h-3.22c.09-1.44.17-3.57.17-5.44zm3.75 22.46a4.89 4.89 0 0 0 .17 1.39 5.87 5.87 0 0 0 5.75 4.48c4 0 6.4-3.26 6.4-8.1 0-4.22-2.18-7.84-6.31-7.84a6.15 6.15 0 0 0-5.79 4.7 6 6 0 0 0-.22 1.61zM125.63 177.88c.09 5.18 3.35 7.31 7.23 7.31a13.7 13.7 0 0 0 5.83-1.09l.7 2.74a17.16 17.16 0 0 1-7.05 1.35c-6.49 0-10.36-4.31-10.36-10.67s3.74-11.32 9.88-11.32c6.92 0 8.71 6 8.71 9.88a9.39 9.39 0 0 1-.13 1.79zm11.23-2.74c0-2.39-1-6.18-5.31-6.18-3.92 0-5.57 3.53-5.88 6.18zM157.48 173.22c0-2.48 0-4.61-.17-6.58h3.35l.17 4.18h.17a6.37 6.37 0 0 1 5.88-4.61 8 8 0 0 1 1 .09v3.61a6 6 0 0 0-1.31-.09c-2.7 0-4.61 2-5.14 4.88a11.53 11.53 0 0 0-.13 1.79v11.23h-3.83zM174.89 177.88c.09 5.18 3.35 7.31 7.23 7.31a13.7 13.7 0 0 0 5.88-1.09l.7 2.74a17.16 17.16 0 0 1-7.05 1.35c-6.49 0-10.36-4.31-10.36-10.67s3.74-11.32 9.88-11.32c6.92 0 8.71 6 8.71 9.88a9.39 9.39 0 0 1-.13 1.79zm11.23-2.74c0-2.39-1-6.18-5.31-6.18-3.92 0-5.57 3.53-5.88 6.18zM211.06 187a14.8 14.8 0 0 1-6.06 1.2c-6.36 0-10.49-4.31-10.49-10.75s4.44-11.23 11.32-11.23a12.06 12.06 0 0 1 5.31 1.13l-.87 2.92a9.4 9.4 0 0 0-4.44-1c-4.83 0-7.45 3.61-7.45 8 0 4.88 3.14 7.88 7.31 7.88a11 11 0 0 0 4.7-1zM235.83 177c0 7.79-5.44 11.19-10.49 11.19-5.66 0-10.1-4.18-10.1-10.84 0-7 4.66-11.14 10.45-11.14 6.05 0 10.14 4.4 10.14 10.79zm-16.67.22c0 4.62 2.61 8.1 6.36 8.1s6.4-3.44 6.4-8.19c0-3.57-1.79-8.05-6.31-8.05s-6.45 4.18-6.45 8.14zM260.16 184.63c0 4.88-1 7.79-3 9.66a11.57 11.57 0 0 1-7.71 2.53 13.61 13.61 0 0 1-7-1.74l1-3a11.46 11.46 0 0 0 6.18 1.7c3.92 0 6.79-2 6.79-7.4v-2.28h-.09a7.47 7.47 0 0 1-6.7 3.53c-5.23 0-9-4.44-9-10.27 0-7.14 4.66-11.14 9.53-11.14a7 7 0 0 1 6.57 3.61h.09l.13-3.18h3.4c-.13 1.48-.17 3.22-.17 5.75zm-3.83-9.63a5 5 0 0 0-.22-1.7 5.47 5.47 0 0 0-5.35-4.09c-3.66 0-6.27 3.09-6.27 8 0 4.14 2.13 7.58 6.23 7.58a5.52 5.52 0 0 0 5.31-3.92 6.69 6.69 0 0 0 .3-2zM267.68 172.35c0-2.22 0-4-.17-5.7h3.39l.22 3.48h.09a7.8 7.8 0 0 1 7-3.92c2.92 0 7.44 1.74 7.44 9v12.54h-3.83v-12.18c0-3.4-1.26-6.23-4.88-6.23a5.62 5.62 0 0 0-5.4 5.7v12.67h-3.83zM297.59 160.72a2.29 2.29 0 0 1-2.44 2.35 2.25 2.25 0 0 1-2.31-2.35 2.33 2.33 0 0 1 2.39-2.39 2.3 2.3 0 0 1 2.36 2.39zm-4.27 27v-21.08h3.83v21.07zM302.59 185.5l9.49-12.41c1-1.18 1.83-2.18 2.79-3.31v-.09h-11.41v-3h16V169l-9.4 12.23c-.91 1.18-1.74 2.26-2.7 3.31v.09h12.28v3h-17.05zM326.92 177.88c.09 5.18 3.35 7.31 7.23 7.31a13.7 13.7 0 0 0 5.85-1.09l.7 2.74a17.16 17.16 0 0 1-7.05 1.35c-6.49 0-10.36-4.31-10.36-10.67s3.74-11.32 9.88-11.32c6.92 0 8.71 6 8.71 9.88a9.39 9.39 0 0 1-.13 1.79zm11.23-2.74c0-2.39-1-6.18-5.31-6.18-3.92 0-5.57 3.53-5.88 6.18zM366.23 156.81v25.47c0 1.87.09 4 .17 5.44H363l-.17-3.66h-.13a7.61 7.61 0 0 1-7.1 4.14c-5.09 0-9.05-4.31-9.05-10.71 0-7 4.35-11.28 9.45-11.28 3.27 0 5.4 1.52 6.36 3.18h.09v-12.58zm-3.79 18.41a6.78 6.78 0 0 0-.17-1.61 5.64 5.64 0 0 0-5.53-4.4c-4 0-6.31 3.48-6.31 8.1 0 4.27 2.13 7.79 6.23 7.79a5.81 5.81 0 0 0 5.62-4.57 6.66 6.66 0 0 0 .17-1.65z" fill="#909090"/><path d="M402 85.56a14 14 0 0 1-1-2.81q-.39-1.47-.57-2.62t-.25-1.49a6.86 6.86 0 0 0-.3-1.42 4 4 0 0 0-1.29-1.92 6.37 6.37 0 0 0-.7-.47 14.35 14.35 0 0 0 1.4-.76 5.17 5.17 0 0 0 1.57-1.53 5 5 0 0 0 .75-2.74 5.75 5.75 0 0 0-.29-1.85 5.53 5.53 0 0 0-.89-1.63 4.7 4.7 0 0 0-2-1.59 11 11 0 0 0-3.77-.67H385v21.5h5.17v-9h.89q.72 0 1.44.08a2.56 2.56 0 0 1 1.33.54 2 2 0 0 1 .62 1q.18.65.37 1.76.22 1.48.44 2.85a11.47 11.47 0 0 0 .83 2.75zm-11.81-13.12V68h3.25a5 5 0 0 1 1.79.25 1.82 1.82 0 0 1 .94.78 2.33 2.33 0 0 1 .23.65 2.58 2.58 0 0 1 .05.44 2.61 2.61 0 0 1-.13.79 1.91 1.91 0 0 1-.2.44 1.82 1.82 0 0 1-1.26 1 10.85 10.85 0 0 1-2.36.14zm19.43 2.63a16.8 16.8 0 0 0-.77-5.32 16.16 16.16 0 0 0-2.48-4.75 16.53 16.53 0 0 0-6-5 16.87 16.87 0 0 0-7.5-1.72 17.06 17.06 0 0 0-6.13 1.1 16.58 16.58 0 0 0-4.29 2.43 17.81 17.81 0 0 0-2.56 2.45 16.29 16.29 0 0 0-2.42 3.89 17.51 17.51 0 0 0-.19 13.22 16.53 16.53 0 0 0 2.72 4.35 17.52 17.52 0 0 0 2.65 2.57 16.86 16.86 0 0 0 4.83 2.54 17.11 17.11 0 0 0 13.43-1.13 16.06 16.06 0 0 0 4.75-3.86 16.58 16.58 0 0 0 3.34-6.2 16.8 16.8 0 0 0 .61-4.57zm-1.5 0a15.44 15.44 0 0 1-2.76 8.74 15 15 0 0 1-7.36 5.51 16.42 16.42 0 0 1-3.08.75 14.92 14.92 0 0 1-2.05.15 15.41 15.41 0 0 1-8.54-2.58 15.21 15.21 0 0 1-6.7-12.64 15.19 15.19 0 0 1 6.26-12.32 14.72 14.72 0 0 1 5.27-2.47 15.79 15.79 0 0 1 3.76-.45 15.23 15.23 0 0 1 5.89 1.14 14.83 14.83 0 0 1 4 2.5 15.84 15.84 0 0 1 2.32 2.48 15.18 15.18 0 0 1 2.51 5.36 16 16 0 0 1 .47 3.76z" fill="#3a61a0" fill-rule="evenodd"/><path d="M97.81 58.23h21.56c16.54 0 27.95 5.36 27.95 20.08 0 11-6.39 16.43-16.43 18.94v.23c10.84.91 18.48 8 18.48 19.16 0 17.11-14.15 21.22-30.34 21.22H97.81zm11.41 34h6.27c11.06 0 20.42-1 20.42-12.78 0-9.47-8.1-11.86-14.71-11.86h-12zm0 36.27h8.56c10.27 0 19.51-2.17 19.51-12.89 0-12.32-10.84-14-20.65-14h-7.41zM173.7 69H163V58.23h10.7zm-10.88 10.68h10.72v58.18h-10.72zM215.52 78.31c17.68 0 29.54 12.78 29.54 30.46 0 16.65-12.09 30.46-29.54 30.46s-29.66-13.8-29.66-30.46c0-17.69 11.87-30.46 29.66-30.46zm0 52.24c12.55 0 18.14-11.41 18.14-21.79 0-11.07-6.73-21.79-18.14-21.79s-18.25 10.72-18.25 21.79c0 10.39 5.59 21.79 18.25 21.79z" fill="#3a61a0"/><path d="M255.33 58.23h21.22v79.62h-21.22zM290.69 58.23h29c27.72 0 47.11 8.67 47.11 39.47 0 29.77-20 40.15-47.11 40.15h-29zm21.22 63.88h8.21c15.86 0 24.75-8.21 24.75-24.07S335.63 74 320.12 74h-8.21z" fill="#909090"/></g></g></svg>
\ No newline at end of file
diff --git a/oxAuth/Server/src/main/webapp/auth/bioid/images/perfect.png b/oxAuth/Server/src/main/webapp/auth/bioid/images/perfect.png
new file mode 100644
index 0000000000000000000000000000000000000000..66a0e6bddd47456518517e8ab06fd0566cce6d81
GIT binary patch
literal 48739
zcmV)KK)Sz)P)<h;3K|Lk000e1NJLTq009I5004~$1^@s6QNRSQ00001b5ch_0Itp)
z=>Px#IAvH#W=%~1DgXcg2mk?xX#fNO00031000^Q000000-yo_1ONa40RR921fT-|
z1ONa40RR91jQ{`u0JQ+PIsgDb07*naRCodGy$OtF%XQyZy?0N~^z8e*dHY7bM?UVm
zBrB8^E%cVikPRe2Vi<uGZ!iKoKwu{bBu5S$z=CW?u;U0aAjL4WSR1vOQYca+C5rEn
zkK5b#d9$zGGt+zL|NEahb?^6e_q=%)MF9@0``)TL=hUfFb*s)jwcPqfHss2;+_!4r
zTQ%^l8c+?4eybL~RRiCufp677*1&iMe&=8PBL_!DLQBXigz<}v2>j8J@JCAeMnX_V
zOoOoz1_$v755+ebB!Q2N;O88bci&go!i>lpEhD4hmr;ckPk%)5GCDR8AL+$|uHs1x
zeJ?#>^HW~wlSYw{tI5!dBd_t00LN8)4b~bkCX2sO>xnpc47GJ#_ztf}e0_brtP{rH
zAiQ4I*484vMi|(dVQW2HpC))j+6-@)SItinIA0_|Ams7AyZL#zSkw(g#jls2hr;ql
zU9a-%b8=jCeSeg6(29m|!<iq?0Gw#_XWwweDlGhvK|l)$Ee@Rh8t?E1$D^qf6;i!g
z?xBKHFF4gu&=IfC$neD551ebS!ZR6trtd;Z<PDKR?pj7*l(k-J&@~+JNCbzVu^hF$
znG3!z-4G?(Rrsx)iH5M6P5IDweGE3GDFhN*ND@0BKrK`jCMzfFS_BG4j!|K7fe*1z
z8U~2ZK-|Fph+D0_<eXwAr&fjpyn#>gU@76M>*Q?m);dTE{3LJrCnM8F>1%D;3;J4%
ziV%l?{U1~W;z2!I3E1yCG95lUbf*Xevtp1^sET1&X=IuKUkYJEiY6Kg(nL5*7czIH
zc7s)c!|xg^@zI__SRdVRd|fXO;2Vn5`N@lpPn+665zxq}K;ftd^A&z{M6FYJx4}Sl
zLTnQvE%Hk$m!}_(@{rN6qlAO-;WEQBT=gZp<=?~#e9{gh{}}OPsk+2%)Q(AM?GT?}
zYs7=)F%G=t#;ea5-(cMd#En3w5QYmHtW7QQ@JTqBWyK`gEPIh&u(2>r{}vo;nd>vk
zTw2kG@+CbqTU_MHl`MwiLfIt^m8Hz1ByLhJWi~NaCJFld1{hQs%!hE+R!t!GWQD_r
zEPX=6t+9m*ZLN+f;C2cj6hUVt*b>-MA%ya1mO@n~8>v*bRR~CG$s(XTwc_%t;koVE
zCmhOPeO+NJ1Noy;0PE`H_%vV?ffa(|z<Aq*Py03vhMgIcStx~dc<WkM92B}_z*TxI
zQR)*J30WBk)|7%fkuddfnAnT}DCH15xCIKbE>12^G2lDWM>N2nTp-FT{t86#5)v|Q
zopXnCh=yk;KZA;Q7J`6LrHxF0pv+2-jw5_yPy=R8I21;!L=y%Ku9+;K0kF+3u%wC*
zcO+AMh(SL}c$n{2_@uM18x`94T0*!`f@or!<ulruwK_Ee$=Cp-Lgvn87!th$O&c0J
z!U^+RTtsb{pbk8284M2%P!iekLqT9Iypcjs8AW3mC~uX$`BnOS3htHEl{zAQ(Y|^q
z%D@(ac%c-KA4_0kRQbzCF<=ciA1o5$f}6cNxtLKoSPD2i;cHCBa@5>F)ta!oK?~J@
zGEjo16dJcK&DNpFtHafJ%X}yfyx~X%zS49|-b5(*N9i|O|I6}KR-px=u1I3#7;P4c
zlp@7*-5Xe+bIP2AJ(-(ApkN)#EEXxqf$rfzFKNUB3_iF=ilDElO%ilnupjaRjSL#t
zuojE5_o4$q@)=6r)rt_t>qb5J?IZ~Dy1X=2(S-Z~C6=Mhua=ryBvQ^bZf=N`lE6J2
ze(Pw8MCT6}@URR-pJ9A==#5^-?mGBwDFn|gpiJs~gZVK`2tKw-6n0}lQvV}qC#xf_
zn_8xxGN2KTsMGr`uFf2DJ5?Fj`cS9FD&QJZZK_N(aQlSYRfh+%90Zgypmxv?N+auF
zojg>hwn7AB-T~Lua>^EE*iI?5hmk4sEf7UEPv4M1u7NXN{f0@nssChe$dcuaoK$~6
z5@A`O0KSzA=m4%Ke;?iyLS#`HHi{Y;u8fvv65{6-!V`;$#ZF8*87}T!AqV14C>r^C
z{sXR0XENPdzZ~Lg{6Oknq|XSjGNXb+zOG^;`y}qAufeD-QS~a9QuR}0I67XCx-$xq
zogx*2eev3)4AgP^LxrXg+E5`ZgaPXSoIC&43L*3E`>u+VzLu#y1QdXZYRe!39wOMZ
zw?a@2%5Ro|I-G|MW2z;TZYl@(wu`#gr9K{YjRZAB9>CXii+_+Jj~b1;LEVj{LTsfJ
zIwDebxpnYJI}mS?UT(c$LtCaT5go}bLYXq9$}*17xN+6vSvgAG5C#s2xB^xZ6$Ch*
zZIC)?t#`wXueZuqvHp;uX676~;i_mYLC^#)@DX<Qrtfe>`}7%3zf#u1wl{Gtq{}Rl
zMECi^p^}BUpMXj<5UrKa7&RmT$`=5-aa1UA_zPlG#7$;Q-um<*Wl#o3sGKzk<KHZJ
z7_yw}!=m$da|fXq^ah6pC16DmRziPBa4Ut7be?GJDTJ^Lf-fr!(O4v_@@iKW62bdU
z55sK^UvN4c04oQX_c3hHkb#cR96=o#G`?ve)VxGg^At1ksu%Rq9J&N&SfK!uj64^t
z1v0l8EgwA*vWQHs>pbvAJY-SI>IW5sq!OGwdagx>0xfExLbP78Kb2sX%ObfrDsz=2
z{fG|62BfEwws6ft0OtonAZsfVrQfoJNN#|xpFuw?vZ2bP3^-Hi=4X^~`SHktJv87E
z!9H<?6Rv2Js-*)c2Mw;lNvDX@S3fAsO~Fh-h{iMk3eqh=S#O!T?}I~jU>T;v6Sgmf
zutu29tB%UtLA=?+v|n566hbP3oHNMyR;vuaLaBs>z~mnBZIywA49UCZ6-5pOK>br8
z)mNA}R-ikbCl+PedyYUHtQ3^rn1%%E<Y6JG4(R7v`6atrDX?rVa%fR9Q-t0h!x7X2
zES$DS)(?^d{+6rC*YJUG@=bYlL@nfuqFM%Fj%6WwsBdVnW}NxEE{Gs`0?9B-(uY+N
zK)#~QMZL!pChWFrAbf@`goa4Q)!zh<#7!vUGYz<Y_zmKIdZMXi%A%%E>i*M9cqKPF
zX%NG8)<F~HhRfT<6QuTe>yRz7at}X~8j>LVA=d|G^(4%`fcVk*qvDCDB2eFqumYhF
zP!QRPr3A7=SJR(2e=2}mDTGu6-kX4u>0R!m+gJzgLDWJB-<7sjsFi{1%Qttn0fits
z-qNn$W+A8+sRs`mg0~x>^HE0NoS!SkaVo9B1ZHkRH6ulWCBiU7WzzE+wPxYT)s}#k
zH=BsNS&3091tYly!l^RrhEt%y`a%Hj5S6?E`pGwkt9Tvb%_O%EAx{{p-m=^l<2Ge+
zMx=#Bm!=C1DTM469dRXXiTg?WOo0#K$aDzCgkB%&x)O+vNuK%e`aUd-?<MpzHK({m
z6-8B<jBErPhWC<0FvRJBhXBJ2Dmtm6ad)h;nv7Qj-yK2${Jv#?LLeTNLHJ=Aq(zWJ
zhV<W9A=o0wO-n<QiFBr6>wr2B`7EiQfo1R2h=X)?0#v*`#R&oz4=V=3b=gt9HF)X4
zCI4n2NI5uPXwp)EY0EhC0GL@~6JR0euCW3>d~vmTJ3M?FXh(@8T`fm~Hv3JOiW-U!
zMK`Da#y~Qg?3W&rsl=4a^;P?m3girv9^aR46gQp$Bw1Tv)0r|O-5i1+5}6s*B_y7e
z55qy1@j<2?P2v;Mk4H{wQI)N85@GdQp(Aajb_6cl#uEu!UE4o<2q|ZuQ^yx<S6s({
zG?$R{jZg%R?I8%555t{b2;v?VRDW0@gcTqq&@6*nD};3{2U`=J-?s`fY&oQbLLLMS
zSsX`r#gTqHw~-YopI|Bh(r1`u$K;RSmK$4MH6JU5nv=5R3ADCtaD6J^q%<rRlLiXJ
z{sx7l;7G_MW^e$nP<@=_pYa;3aT4*A-pB<-m$s%z?~NJUI)f_bt%(9lR*)mLYCj%T
z0BZ71m@ZUN&C4<;Mf#1vfi{QW%vwbyarmjBLK4y?KA908hV|&O@B<`@@bs$Z;)bc9
zgf&4`7G2pD;$La{q?_VZn#!eBVA55#t?@M32juI-XeJ5?D{uRizEw4Hfu|mQML3l~
zyrsiZAe<IL8y={`S|Q-05bCw+_+|^CZxQ5VB7T2q5gN<V^O4dW26-jt)XYp-ym6yf
zGD-(kIM-wLw21iG@eKSH7S0=!#0y_ceQngYIhH_F41VRB%!mD!XFR>kHk(ACm4}xj
zQ9w08lQ!d>-*~t)g#zoaw-aiaRN{=Me>*(hm?pVJ$!|q3N{C%B2TYvl@qOtQkD|8F
zig0^?#&~W{?pvo25?E^(B>-iB8?vU%crpswjCKAnU58O=6zSt5?gl1|V?tAAsEFe%
zo+6m4Xa+ZI`5A`*SPV}@lZgq|be>C~aRf)*(YxUS){hK8Dk9jz0Boxz;x&IdyZ#-I
zu;NkzZN5Mq6nI($?%aZ{_AP_@_J?Mbuzb%YU=h@K^DC|?1H~t&r_13Z$IIcP$I8_7
zOu6gc2g<ZM|Iy=jv~t`kaQd}Z%Hqu%<%MUTE>|vHD3^7eKJ{u@TD+-pg{6Sy;Af_?
zq*B19ryk;MPVG<^aVZd4Hotqeeh54xQREY`FWQkd4*?&PT+A)3%ZHv=-=z{j&Ui}U
zyFCq(_LFT99+bCBnxXW!NZJRH{Wrp8b}o)0E+{n|E~|A@R>O#1Jkye<DFip`Mg&P-
z1T)F74+~t6HUM$YO2}l1Gh9GFtOU}D!yHPBq%|}>@?fF6pQzHfLWcaxDp5|PNX9q$
zO|BYn<%&s`mjr!R<<06Rm9I)4jh^Ju`0>LEh`7ynU|0uqU=)Nqa!mf&BB&j^AGVSh
zQV4yEz<iZ%*X}*#jyvxuC-1(m+<EVPWzXLIed)IiU%Pg-%+2lIgg<)Xq+xg8|Ih#q
z#qhN!A1^OG_e^>5`De<Kltw%k)rOP-WzOLPO2M@x*g!KOjvMp>=6h6rQw#&oB8Cs%
zpP)L#&u7wO&<mop$f&ljYUxGG=#gy-R^c|mzZrm#*KM)i=3QaEmP|dib~_{&EP6%o
zBdE{8;Kb*%5P4GwG+t6iT?LnR7cQPhR(oK&>?3U#e-oirHU(f)A6yhffGlif*;xX5
zxJr`brg!>5HdH8O>(^<JQ5MRTC5sFqRx@**013+A95{G1M;?mw6+z7C3l0tiAU`^8
zDg%^2g$-B*VFk2df`<)jWjJnyA|<hFZclmV`#)qQaQNu)CK7>b*RGXkpMI)bzIdTr
zJa@Ky;q#v>FTL_=`NHF0C^v2{Ss5YM((<aqY(bu!7%x-0=5|b#k9_EZ<%92ecR6<Q
z?y@m4UG^S0T;Bh|50$<94wMgl$Dj2@KBrH;Ql9vO&y=UW^2Kub^2KH;3=AJsLCQ+b
zHAO(K);69lo>2sOD)D6U`D8Q5mqgU7xS?=Zv9aO_9&irJfVeZQ@!AdyA}0m#wsMh7
zm=*}CC`6Z{p<AHC{jo#vlz{eh<KGpba`@$>w&jKmL3Q<|wMp*8%QtmP(gLPv3L$cf
zhFzbWM1eROb@0o?)z8XwB_&Rj4IZi5y~1-7i8q;$EDHs`$7VAl5hM*k(YErpOgfST
zk;Kk<DU^8_kwD-TVR;m92}#}2)mkz+P&dx>#Um9%S_f7Hg7+0dbZD#u6hQhhF&Oa-
zOBqz9kVA&?iK%jr-rDba|A)(=o)SO-eCkubr|VPYbD#TMIU|$**r9`E=k!FmapPvW
zI=>(pR?F(jiloKtUN4JFC<B@I+Alz7Bk$GGHQ`6f%Ni=|pIk4mKK;e=2Twj-zW(y5
zGJj*KJp9&2%f~+U=gLPu@@?e<QV>UvpDaiJ(#i6@f9VIyi_bk>p7=v4hp&D~LyJZ2
zONdGws7i6~T&?p23`N~GgyWImkg>TsUtxQpKD&H`jiwg}Ws<zQ=h-6}3Jwc1g#M;Q
zZ%5XySwrnhx8}D1LKCSthq_x+2w9PS14C>;BsBRzyaxw4fHU=N-*^K=2jfA*Hy(Ju
zPj=9b#PUfaSYGn?n?OGQM0@SV!XynEWEf|HxGAZ5I6b`T8zvIb*^{mXB15MWUY#ox
zLN}xDxH|rTLeSgYad-A%g|M|UnB6s3-uvP2EN^}6-64eTD1l%9_^*|p{x?5ee*gDB
zZJwh#17gqIu5$F?fif{ZR+d-S%J{@Y**P;+UORim-veM3++0~xRg9D|?Ig6BuX^!^
zNm3MRtE*+jpHr`wsi`T^jFrjp7!Ex3wXc*ffBDO0YW&B_fxUam5B$JiF5mVY-&x-G
z;g6KN?|aY}a}Own&wcuL%GE2Ey%MRak>ghDj;I|EBrO7-ox=SKY<(aj+MpC2JL_4#
z@X=oJ<KZ^TfQKyt;@K|z4BG>?0PPm3TNKU_84@{i?bAiLr8j?)XTpXVOtcMnkf=#P
zY3!0~VzS&#t|VyrC&z|Jz<}Qrf*C8Z$<2fiCN&=Lh!3Q$nb9eoE<2ASJ<3*!8mM$_
zUDdh31ALb_W8v2r6-~bOMGkn#C8*;R1eHU}CB<#YGhvgV0UAjJf-_=7=dZOxJ@hY>
zgRW2nQV>!K#5;>1tb?2w%n8HrJEbtYb9Z_7hyP4@%iG`8<oK0e{nhgEU;EYa@BZ!2
z*n&_WR;Lz!QOw99m{upIp2&Mb9ez=7>-ihk%MML6zJBp)S<}FKVuJEXA=DxH%IZp4
zU)|7TB<Uy1-km$kuAMu|xZd)+G=wm%>U~8DW}o0w(^Gy7pZKlcD3AZ)=gRm$oi2~P
z=e_0o|NLJl?|j#L$_KvvqrRT_{AbE1fBWO*niK<zgj>0ggdBQ`L4*yieB;scp;K@H
zM|t_GQWdKb#bo9t{*^G&i)R<uMEa)zK)g5aDEXU9Nh>9l`%f>!3N@rD1R6IkJ9l=L
zAdWY2h!BMRyB~`I0S!)Z&xe+NhpUkO!;uj2CWr^!(Nc7HD-9h^X)Iqd1(lZ(inMsg
z1yClz#{t7-JYso=Phk3$W^7hiBNYX*<%KeE7)wFcfx<C_=q!U!6zceD;KNFQ_>P@(
z<((h=j`Hx^Iz{la|Ig2sANi3VDX+cqvO02=O}tsXpvO$g5|~k^pHMG{|AzSR9RTQM
zZG*mcb6M8Hco`j!M{flsOJK#r2&I=5Ff%z>cF)e}?LSuz?%iE3UAa=0g`bp_Al*{d
zbS*9~OSw#yJv(P@Rm?A3FB6k1<=_9p&zGP1*`Fx~4;?9g`|teS@&kYQFPC?`=Yzh!
z`1#M4-~82|FUw0yS!?z~3DDv5q9_^e`vE5r_^fM`L99AZ=O_yam|sOwa9pL&bi`dL
zfo;#fQdel-8^R1l`;-G=Wn(u?pYVzvidN_rUavf~-n0x_OKxN6;S4ig{fxFA5P3C)
z;HWZ#E{u3WaWy4@01!5zDs9G%grK@wO8O|MX2w})LGqzgzdfu>Kj6bG($vrZcB@EM
zGI`@N9<eG@M&5)^ap4&aGJSw?WkZb)uf|Hp>{$v4Pm2Hx!B&ENTMzQz@quqIkG|`J
zdJ9jNrKQF4+rRZ&<sbYn|8sfnnP+A47f=3;sneUU%zHXM)riRt9wmcfKndMkUMW}9
zVVT6-F+FJ-I?Srx^b0cW`P6uNYC^o$%9MCwIE-o70nY`^JM7=Hr|i;l<?PgWS(qFz
zV@fwUF(y7E9+K=34h3^%VL|n>QBV%^*Iy`q>u>#y@{j(vA1#0H@BfeGul(R&k@fI_
z^3WrX$y)fe@`s=Kq-$K=eRItNl1!VG0^opqd9|kGlW5nu=S47g<aicCF54Hr@%aA<
zI=4-g%gr(UUUekiMeo6h4=My8;sOm-WnZ`O6W;kCz~MTjQRxHR@HGmhE-V4vm3Xt?
zYyqe39+{<38Zsq4@!nP84V3sK=@@mQ+#*D>t(@}*(Fh{oY$QV}gT5b@LCzthUo8d3
z=~xI{nol@<>|}Z0pZV^x|Ikrq|I+hMm4B>G_3wV^*EOzRaR;1Lr)FFa--R2Cnj=_}
zI5PFsiKi#ku_eq7;XSFhK|UL0c4oSakBw_}VX;h4tdzx-)v}~IIWRdV9yg?rR;43G
zM59Yq!s_y(h8Z`?%JNc~nV2gl4(=^Cr92jwmdlm-8&VolB2oh5nCo&YvKS`BpWy@@
z?z-~9fA!T@%is9nA1?p<kNsHr=l|kgln-hW^1J`se_0-U>)Xq3|JpB<^Jh;xJ&FN(
zUwkN~FrQX8n8UP}4(4{yuXAzA=R<o8#_`}C6O8nx0W4rPi%K17xF;eZ$u8qv185Ke
z$!9ou^6SI<;lvLxdlQk&w@HwI^ly__rx3CNoe(ZPP6`qW%c1j=W-Ddj)X5@CUV-sY
z#7CW$Z1s!={hB+;k_EXs25~x&y=a1m{o5cJPI4P@WlsKh6hc=-w@?Z>d{C!vON|a!
z<)Ak)7Q%bJ?Yqib-}M3Kef{dC@|jQkYWc1I_jk%~eBzVh&ltJ5!|&KJqe(u!t+jHn
zBI`h!!EftHDFbyETMzTs7u2z}e8@b&tj7BK<BdKuIVPoW(?f#=Ej=ztF-+@i&lcb*
zb#CSk7%uFe+gT<=Kd(IsBM0WnT?gmN`pxTQTyj76`q^^n+D*+jtVpbN4L6oGKe6bc
z36=$lYC^-3o8nL1OlTPMvW7Sx``GuF@BjXfl^^}lf22)P_m{u^xBh<lz5np>^6B6G
zt$~g{qA>}7YdmXReI-Df$%#eKD!OhwVFjol<rf}^Ax8q?;pc}%`x6OyeY0KWn11Fz
z98dV|`dgIxc9WW}DTHLy1gd}rSAg)aQfP5ibl{V&`eG=QtK4`!3>ry&Hhwq}2kz&;
ziBFUW{(5u}<%JahQ?4d>P=B-U7DIATmaVQ(1j4BU+1%|Z1m+69?fZV9?9;d#_oYvM
zynNv|f37S~&6UT$^mUovH(YMadWHeJW_P+H)0t5SSQoQX(=zkp!yhIPsgM0Tc9dPR
zCiwCZlb-zrqp}!Q)MJ)q5lqO$o|>5`dbx}LsD=xr?AbM2=Cm3yuDac;{7&rNS@ukh
zmL+x4yZ6tPy)%<CE7!`?8y7SmakI>5I5Q=aot2C$3s*Idpdkq+yp}gn3d~LL+*s|P
zUVizPeyKeE`9CN>^g};Xe)w<xo$_rT{oZotJ@=Pi_}QPbVj1ZCw`D2x>zk&bxatt!
zj)o?e7DJ9!-Cjh3GKdr=bG-$9jSqR1YlD8{n%yv`;dsmPPc+aJLgqq&5hZ;GTxC4g
z4xV`X^&xDD7eQ0Vq!%p@o#z!wA>;Vq2lI!2K!V=UdV?0B$oF<!@Vb5a?Rdf`E}D`;
z2x4I(ML=~IEG{O!WDO`jaH%67yX*e){*QjFOsYdKT)t2~@iYIdT)%p?EG#aUC%^uc
z^0jAQ)>vL0R~>3foo&zDoI2NdId|!@<^ZG&gkvHRWk82#+<#L&eBYkk8ux41zyzM&
z+DfWV3f8p=NpEfCONXCS=Vl&5{Z~VZ9p%X0U1guFiCvl}m=kWFl*94;JIl0`$hgw(
zJG`%qD6eT`k^kkFPnUBSE|!@cH_O=6jFiHv<|G!&4h>J3bo6|N<XTpq<6|?HdwpcB
zT)K3={Nz9T@$%&3e^maDpZG~Dgdh4J{(+Rj|6NYK@}k=TZGo>RX)8H&z`|h?EiUR7
z3kw?Rmq(Cu350n<a_L7b?(jx4=$~hWQuzO)qlRiNwc>A52w)(hiu%MEZ@!Ryx=q6d
z5jMO6Eu9{4C<Wnxw>WU(y>wL$d7E7_cP>QI5!O|`Z^pCEtWp6`kPN2+h<F_$s6)~z
zA9(cL<sBdSE(`wJ(_b#1`o*6rS1z8{%+6G~xNxI<;tOAMr=OCUze7EGO6EMB?9#P)
zkJWF=5};na!%)Ko_72=wT=IMYlYneMqJGtD%9_lAWtsSTPnQju_$Y*twG|B$M#?b_
z2M+Ji+ke+g*}G%9?B6+~p~g(vt))elDR;<H-~%Wg4i?F{RvY*xVsw16eCdVPin_j+
zHAhwMRaq_9R<B!56vUX67xlBGxd+^g$}qCAs=0`z^5hebmmm1P?<)WJ$NzbG^s#rA
zzxv<)_vPci_;0l>`U{qOL~_T;%T+N{1wom*3uO>(D(l?O!;MKI<IA-je$<#ixhW21
zfKteIg3)RE@VYzoC>Qq*T*-Uzgmg5w3=K1Uv+-Lpza1nQb~1Mgfdbdc+lmcIGHI>C
zE-vIC{uXiN5lTS(YL=Z(N9yMTpPFk&)R=?8k@xMmq#vXe6vO~>ATmf!j12o%iv%fU
zh-<TAu!7LQ_g&xdz2)wQ-sS|4f8rO*D^GsT9aMvPZU4Pee(#B=Y$dRKh;_i&9xFo4
z-}4a61E3sez;w_x4FTw6ljCeanw9|TQUJ09lwK1Q`rbe*5ehS87+qiXYQp}x9p%98
zT~Y+IWuN?mQVNF;9Vk1s=YTEDbb722_)Bk?Csqm8z!*aSSsp90P+qxkwcON~jq{q*
z;4v*p5ixHtskB%MR!R~SWr8&`sre5qlNGIgT$MHSH~-pyUH;k+|IPAW{k8wDeD7cU
z!7{B6v7Y$+?@LZ8P%(@HSJ{8SZpz+AQ>tW?0IN2*Xjg(s2Hm-ZZ>%YF6HxfH5F8(T
z_>KBM^#G5QqIXM|y;TNPlbwka8jgbm27bU-WFVgSVK^CQdOgJLl|qls^feVd%u1m$
zk!J^bt1Amq$u@fsY)_PCB&=`cTGk45ZzxABSA#LJ$fb_@uJ8Dsa@T{8n(cF+|3o?c
z+?N%WnpMZ0(Ins(_11mn)J1m$_8QD+#b8vOaz-8WrYwMEz2V`DjH6l=pyS<G(j=eu
z8BFh(bSI`{Os;v&UmbBm69i%}GkmQa)Ue>rL;K1h?K3#KZ+F?hZ*SRq@L<`y|A6*B
z>~y}&IdGn#J0rsk$&IBkCSD_>vP|~vDGw-qQ;Laa`QrJjl4GnaNeL~>N}$7gPD3)F
z2>hm((jq)HIW2x`F2}4UNKt10=3o7v<@}km<?sGa|FC@L_xyQn$v#$oTYDDZ?I8oo
zPx)aD<q6E-;-X&rS3C>XX?^8)Pg)@!8gTw;QwmfvqXZB>QnYlmKe@QWxw;lez-{`K
z|F+bPZv;B>hKQs!8k_uj+-mtOXbNp~CaAQvT$!@75GpZgyDXDaLi+Ix2dhkX`+hWN
zH*A%*`Q$Gq=2NpJd@GmI-HK*Q90{E`1L<!`y$RUlYJrfOI*zN~NF)5-kNySE8?35R
zf9>~vxy)ZWTjqA}FH17NFJ3rX)-=}s+AC+YZCLXL>g+RmQ!_WPQ`?qlq-+qP!!hu8
zCshGZ5Uc8l)4Y8r*oP1bm$5tf>=JBaWl2h5yxe_gcX|8W$I9`;2lZ+65q%uB%fo@`
zJ^RX(CO5~&CbWq`{PhGjmetv@NyHazvc9UfJ!cyzJ~B304rs{n;2j60q!!ERi&x6D
zaPyjQbZ3(Cqc*V=2(e@ed`SvzMne#`OD{;7?B2E06QxwxfB5xZ)~?Id^7sDX|5_e-
z>^({~qNT~7_fEu626>EHzh1W(GI$8V<AM%<$RU{EC=(OV{saR2r{TU)`6i!MWB~nw
zB_iQl6n01<h(g3vB6S6`K94QZ58$EAyf*ojm!AQ2jz_~CPzI6h8$TQ}%M2C#Mmgjj
z$lMhn*p@A;mut#{FQ=wx@kkceMtS>3zT3)RO`Y_szx(gY%?0i8ALS9K^K0c`YId%C
z<+<0&*~|0VQ!rvhz!qdSC$ahGlFaMtEHz@1>utQU!s&t=RuD99I$6}ERt3~aSG1R4
zR?0v-7Rue45PZwY!{z>ChsyDz2lVCQ!Lmb2U_!%?QJL_*RQQo~bzH3wplq;8ysoFA
z0d7RHa@dh9cUc3Y+SaV^CH60uo093wrK{!g{Cv5zph-^Qmi3(k!wXg#rZm5?D2srK
zV4njUqNeqM7P~9YU%pfh?AhxHQ}X!afA|f3q51Xl<Nxxf;+qZ0^ofuEVpteblI)e(
z%0h@G?7pIi2Z1@f>6!9CRA1DU8@haGoT5JOZtel8L>62k(!WPG5NzrC=~9j)O`n8T
zPL)G8xt2B)_H#%%D=fumaxiYPOU!V*qMaaV!m11m8Dtt~M!a64h$J+>AnI5|^5J-9
z_eTCeIwCy)&x@<UdbmE{K1m<`ro$A?#fvg-onE*`H%O6k(9lBmXrRm+Jo=&UDktxM
zt0woB%U3@6D`nxzc~2~c$;;SSdjRJ4l^4%k@LYiUjor99{_KufZys9Im>Ua$=Mp;~
zgFh<`nB?%nXR{D{1I9FYH>=NrACV&X$fNg__rLAI^3YrEFGub;S>~h=W@L4+cYz5;
z4-Zt)<|73#A|-(pf?PKJWjTzh6KnFoA38A?fi=Q>!wFd(kKA#n9NRrxW+XU66-;}6
zBnEleV}VS-CAc>+0b{5`6TGIKjmYZ`s!Dw6`RB^t{_FpZH$uJj?e8w{{m^%Mo}ew+
zsy?aHsAqhvgqTb4cI}E2&<&`gt7#Ae94`Hc{fXVPMQ!J2#(I2qgUTSWx97uRt1E$t
zOKyE-<Y$zKVAI9AkXYzHl}=P8%AxPb=Jp+F2h+bn+BZeK6|by@^pj>Axp^}AbWA#&
zF4AW?ns~K=sp+|VMDKmu`^p_s1|BAS>Q~B*YdSMPwl~U^h8;>_#Af&Nub#1@;Dn^9
z$tmsr)7#nOZA}`osvw!@wBUIr%Tf}+$cGNbPQ^v-4Pd9?9?cs(a`I65$lLBKk3ITO
zIdPv3O*wqL?AX0e6O=pDv9%UiJ3kH39j?k_WdKecn|x$Ch*WuN(sE3SVN8mGNxw-=
zRPNceLl($fdFa@IvRfZUF&BabgY#Bw#gWn9Ua0djXRxXv#58*rln47LmQ;>KhBykd
zqw@J@pD91_Pkzii-v4d?S$XKucc`vdrHPJ@thoie!6f^p&JT<y!2|L|m;he*#ElAI
z!v_(B{8v5(-p;MIm+D0wZjmnWpa`dH$$2u0WL)*=_98mN8^Qnqldv+%xaoj_@4Sd~
z_ntzigqgrJm3a$i!X9nQkV@;6M6GJ-(r(yKPWa$%g||qVWk2B`Gu&8GhE|RS-IjZl
zb2D9*gLW3zMmcuxL*@Rrzt6m0`SKsgGPva8upH-yQwz>czb}3DnQ}oZ40L#Q{PEoZ
z8<B3-t;MV=V18rD)2W~%x%#F$;Hci%nmAO4;p~GsEmc0CVZw(Wd7!-I!F$Ugor^H5
zjY{K8P)gB^sAKcC#(82*yhaosVH-4a2)gLlHX<3;NO@4E5y>^G!%{}Zw2~n=#=M0(
z_QCyoG#uGiPVC(&B_Ty8h2@`j6JL}9Y5Cz+CJ1?>GdYT`VKsxH0}5_Mb0Z8Vs34J*
zU-|i;EC2E*{)zMX==c2><>-mKs--Y&A*i#8$EHiQ<G-zN2qYKx!H^N(#G6}^Z*L~k
zTO>$S-&Ys~Vi1*!!>d8Zb?YevK*Cl6tbwkwlDy|bS80anGJb2nGB8WRZ;+oUZsSH_
zeTlaDy>yXP;8cLV6pbn?tYP8Vuq{CO+Lev22iv*#KzZ<;A2$7qPkgFeeDyiK5wps}
zGN4n^kQsmf;g`N@k(q#F?qFISmrkR_1ApSoY6EWv-mWMN*8HQ0e1kA*vwT_0d^^;C
z@7OzA-gEz*<*g6itrL#+dns>R#G~rytTaTvQV6y46K7sWnnImjN=I_y%Ons?GV6^@
zVO<Rxibx`XWhK=4hiUC!IC*4mdHBQuTPD20ZCsG2E;=T%^Y%w*ECIG&voFCr8^w_&
zPWDbPNlBe>Xv<Ik>woQ!p{T^~{fmE9%7<?_RA<#f*rWvVISlxSo=*x+;eZ52A)^D*
zLA$s~Z|l~&-L}*!zUzScaE;2Zp&lHJp!^$O`I<1`iK9NvtMZAAO&I(kY%arnd_(pW
zf|x}*{7T%?v;dFQsfVj-INoLPMxo#rB^PZ*w@P*^+$Q?X#6S#9lmQt5sj$lqvw-)o
z0cv<?I!F0^=|&?R*Q&w8@BK4nTn+gAD|++4`mFI*2x1DYAGA6ZZ^y4b^L)9cEy|eU
ze5b(dJ9thrnwXHKph-on3f`hzZUExpJpw2LT`cLXX(eE{h6-=J<8XQ8fxF8dP1v!2
z0iKk_Hbq}p!RYJ~xsJ<;$H~nMRZtW-TLup3Ci;+_;SBQ*l0yn=ujUXKqTI88m#hSc
z<AW_i(6FZ>6e49tA>8neM^;gofJ6q)WFX8C0>_Z(|N6;)R$hJSc~7qX=YQb`C6c<g
zh~N0Kc;X_)efoe@7`c4o9Cf^%bNyF>q#JHd4c^*cLXzunJenog#Nf9}fedG$s+Ncv
z$t_&It}-5ty2V_T4Msb{g&*c>K)5H<%zntH<Su=}hmv%RhC<Ne(vMgc&OFU~Gf7a^
z{Or|mm$)+PRT>bHZ5B7vwj|pGqIT|m>;q+&EQIS<E|!<S_!&2LH)NR0{K71Uk})*j
zBz)=X&-$DKl!H6F8t^m+kO)66^WI~5(XZ5WUUF0~qZ84gm_P7DoyPi@?QgsHq&6At
z_en`wbYw8EoTCg*i<Mv}9%%uf2pBS~=vxS_G=x<kg+OJ9#fGc}b$_igu#s67gk)p#
zaTJS!eG=MJaF>P+@4okF**h&uK*Aw6<z!iuy$L7=lmhg8|G;X<PHmf}%r~{|nNE(C
zV_MPhRp)D`&z7J1$$#oC(8o{SUEcM9Z#NyZ?Hdt=w^tArzm~W2kjt(Gg02@$itYWV
zQsG;`w5|PA%%%p_BlmMrf>iSMh0i#w3HyRyhV2_rX-yb83MXLZJ{T6%xIP}3+<-!e
zw|_F}`#~%&3giW>hRvADjE4^<D>Z#!1CFG)0l&vD3uOENQKWkl_u!g5h7ua7oAXO~
zwxJzLno-K=OE<O4vj5nf<>=iHdPU*+FZ`}2_)q{|8lzLFLqvk;lpJ_^{_-{9V=q1m
zfC)1iice-1vAUl-3T8c41o>bca3%t8aTE!8?3d~O$eqW^-6xM~ry-v_iwm8fw>^$9
z7J+Cr-5-hqW-7mTtSPv`gr~m?P&mhqsuH09#9V`)IWnR!Xh^b(q#*WbU&DJIzN_4)
zFC-@`9QMppP!^OTwM%)JP(81uR8Lk4?+sUiV->I;!CS9Y#)}s(mDf+bUViU4ehvxB
zdvs{bk>httl<k#(3EK?;M60;3nl8}^&-gder>wa2BNlgHJY!tqQwb!zAxs5fQZ_&%
z0cGqak^mS_a0s7y!m%j?DrI}u<1oaqRc3>u6oUSZc_!cVx0j&9WJc*HrXNp!!@g);
zp@KK^qzOJ97@CZwpLx}WB_?WH5viy#nfLd+?fs6Odg_UCL!U9bv#H~7z$qQbY7>@9
z%$JCKsB}|%{g<^m06R=;mg)E|fsW+yvN}B`wmUv!Xc~3xTqqLwOsn%haCCop+kJOv
z-e8Y61z~}(qCtV#N5JLBPI`r+jPj*WP%QE65RMcT?LsP*WTC+@<|j;y9dc|Mf|lh;
zwmY9VvcG)vvHQxQotgs?N0uNtlM#-VUoa*T$=|ygHAJ9MGB`mAu<Ed=vh!iqjFcMl
z4KKf@{TZ*nRKD`~r$tqCG~1t5nZ*M>y~{}5`Y^<ISrfU9e`^}oMwhZhsRts}_2DWL
z^_v~eR0dTd<CP8{F7}B+6u!9+#4B7d=s<Ccv`%DR6=6OC1g!6qZVT5GLN8^H%(>Ng
zaEMClI(-t~sxrYPKK(9TN|t%KyEOWw!|(Iy!w171zu=hhj*3d`L*oGibzu6~3NdJF
z8q1{{jqv0{?<mu=yUMlmub0!$KdI*u<}sbplWXd9Op1{waY}WCkCm8A)A43vVhe)!
z4Rr{$d5@_vp-}+%bSlzee$xp(HW$w$yLXhw?m1pg9y_Q>Nj4m@l2B_+oywhllrs~;
zxj`{BV3^?51?@zvHIJ!p@g%o@fCXP=v9m9{_*=n9$&BiQtTw@@iNbfi<*xGBU5E8$
zr0A5$lZ;YyV_w~;VhKZ8*8I%{iV6jx2~*Kgm&_%gq?l|xf8mnqXrp}PkAA;g*JsuT
z^r`qe-}e#I4R-!cL71U$)B$-`9AN`8K;%EpWnK1D19RQsS48JWDDhAX&{sr2I|f}m
zIaS6rJu#9duT8#_`6jw9&rXiu*HZ|YLHM;9x#Id^uu;98A1N$C1bwe@OBvzr?US88
z1njD<m%IflO-f$bHgr@$jV3=uldky+BoC+^PGm=JMu3w+li!$4x2y{gvs&LjcHdh~
z^YWKJ>k49c;0Za6wbg@k`5miHUptzpFI|ouh>WSBXBFYP#@4(&=}4qs(B>T&W}~*E
z5v~69M%6bET6TQ+_`&kPok#Sg;;g@Fj6DRZYnk7kzYv|r@ak|Qn)H-95nP4kEw4O~
zjS+&wHLjSdDvnEYm7!qNNu4n*L2rKcCUDvEKqkTXVCsVp-&yw0a=s&0g+?gay~v45
zSPR5ij-<?snh3R3AZ5T8nJ5XA=1nO?<`^i)qLyXPo;`2e=YHqclvgQ_zVm(F(ydxi
zy-2KfDIk}174U!=aa%VD=r({?I}qs%PMrK2cPGm>Wk1rnoe|H=;7CuJOi#e^#5)Q3
zR(OlUDqsWY;RUk+zsdmIoHCw%4=xaHKq1g!`<*sOZgsChI72-Ek!H0I`+Y8fBQ0)N
zIRwmwOTH?k)3~sM`Iv=o$*+UFQ3!UyvX-L*Y?;)<=`FHBHX7xfkG$9E&OHBB4Hd4`
z2C5oWnw&@*^_w;_rW5hC;02AN{Wer;IyW%hl<>u81%a;yU03QTo`VP$%2@n$o!Gal
zJbdTTa!5l3hAk`?0{2_nofO5SdZc%llO8?FNivME15sf&G~uj-TqyCbroI>nFP?OK
zEDw~MtPPeaH|oVMMuriif{R;u;KZTw&btnI&VhUxI^gqJw1*!m0}6sU6i#<SH0BXd
z3Mh!13UfZAcS@=fUwr8m?{Ylz`b*{XE6;oN<h>vHsCjmsKb1q2(}k@!7m08Uw0NIr
zI2;Y62bItRZZIC?f^AACkkWOXKA1#@@5mdzw*Ahl`E24FaNm0*1oL^4#L09Ex*+Vs
zvq()L^s6r`s_$oltjvrjO&^}T>^Fi;@yGRD)F`1#Bz_eXz9KF?`9#47{H_*y384*V
zR*i2mPHgyDq<;D4_8%#`4;=AC;;FCedww;3mI-ssoQIPgxtEhx7^D!cToYa0fhVR|
z2)sFQUV_v70v(1<LRnbL_wWM(i8!TK@B>E=mU~Ye)tGySECSK-78g%CsFeeA2XuPD
zy-y#@!|8Q*c||9_bV`3`;sBjq>FBJZ+L(kg(9pn_6oM52$8wH@Vko1+`It^{oZdW9
zKK#~u$`Q>aXnG@L7GGF1FW?3%I0wL@gcus2AQ%=Q8~%chj%PU)z$>r3ZUqVaOMmc5
zDTk$U*S!yxeftmho1aqp$%LY)v4ALYOGmD9)JNYZbJtP8-DwrKZ}PxLJmJ+(y5aQV
z8GOvZ{0I2~5>1aT;uT)`g;(WETKSf@l>xcAaBvJiU<o&H&_W1M?@le&nhcLObubvH
zU_~-M?86P%Fnl;}I+ZRyM<qs@F28^b-urw9F~qW<!~SMUS6;2)R*@}zl>_`1E@e3W
zK%8xG`o*uQGcRj`OdT8^Sy0l7N3a2?l>yOR*W}rSE6gFtoUdbN4l?E8GmpUJ+ZAnE
zVqKooj&cvb=O5g;Hnb6FqTGMSk#gvumKpu_RtIJ{pw3L^a|h<_?QEGmB%q5T$@7YX
zf<*oEYYZu{2(TWQCtznHRtL&pYF56EWmBAUlyo|REE<+W*=(eVK`9PxK34B%Q`MM1
zs`}sqC-jX23PDd)<sy4GONIGXgFOlC!9ZcINnuge6?J-6Ev{>#m9rmi=m%!6>r`jX
zX~fOXUn$Rh?Fon9qVF9xTL?zo`sM;dQUmt50jj=n0Sa)y8@AGIidR5VXUC@e!6)jV
zb@G6^evBtyNKNk4H6H1MX7HXO<2$JWHMs%Ks{-t0@=U0>p4_0Lso+|Ii24o=xP9G{
z7G#4flyt!RF5$y|pJw|oIcz0WAD;Lv{6<y-t^|dXbRgp%FoXTVik3$0ex=gR?LVX|
ztb_Bfu%AHR`>V67rv;Jn^4Og0Y?=cO6Plk_o7d?`e7Gc|Lf;{<2G0@ddYDRwg}@t;
zkAHyU5S>TO$^ttU59!>)<NB2*b~cWv)4KCw#-kJ@3vc-i?N3my9s>AdAUN1skc@ge
zZ!j6b3?@p6c?G?#+q^=xF4lDX*_wtfD5|CFi{-k0HOiMd^ELf;!=hxQTv!8R%5Pfd
zxsOTM_h}jO@fXjO7cS{XVW|i?tR0Gj1;ZDS*H!)rm6er)Rh5fE@;eaFbD}fLuzUo?
z5bE;PYcggg^>cAgl!qUCf4TqRN6V9c^cg7&j)CtS;qEylJo3-jpdYx}ja>iWyLeEy
zPF)jk8?RYqdNHzV5~z%Xd7ikWYw--!ge_X*lrNG-pQG^5xLtxEAb>4CGH~sXi>$O{
zCYqYPDLRFqv^-2FayT;!zEERo^5?vW10+fH`tS-iZW!)##>6dY{RV@Vh0W?Ai@_9w
zv1C*$MYMrWs`QgC<Tf->_zjT2j=l>eE+vlQAHA<y2bw!r(HR1~r8o43T+`bPzNCs3
z1r&oip4o_p!YnOvyx59<F^TUH=qS7?Q4lk;ifcj;tANc*Ot#g>DUPwqz{$ub4(uxj
zr4X<PSlArZ9s<Vu&Pe<?OHo3p>!B17h*^Ad5FK(*9?3>W<bl!=6<+5TS)>HS)Vg9p
za~;?8%g<*|pDt(5Un&=`&iepZCO?_ukovKlC>-Vi_#*OdZD+po;O=stmP1cn(Xy#C
zCQq``s)_R9l;w>j%`H@&<l&QW%Q|m?;nAA-Bl*0RU9mb)f($YE)#(?X{c5>eACA3U
zKL+#JPyVKPQW~zf5g2l`uiC~eNR1<sTaVGiY8>BDVbc$!i_xe^XLz>3h)0?l?%|y+
z@yOK#!|9DP(1fNP3`M(-bS{3#NCl9A>d`MFCxR+^u!oHm1|(fm2nphO;UZ~-eHR>5
zYMWtv2M_k(?G%V~Rq%#Lf;a2KpnttV`XtRXEuQHBY~k`Lx;}g}5uuFX&+OVO>)^1K
z&Q{7feX9TxI1_u!wl7_0!;t{Gx!<X?1cina>M++edyZ0|6Y%huP~@lB*u=w*J;u+x
z6|od(W^^_b2DQn40N%z^T4Llpf(u%$m{Oh`fVxvF4SXE6OIx6K>Z7JfeI&)41}USV
zkX_6ta2BGKgd|f&2rC?F7%OC19dEH*Jb&IBgkIAIp{HLtRnBPM<LV7rL6QZ9#%JA}
z#ki9*6O{!^rW~bq{^~-xDhufN0Ui1}eY)JdP8tmp)S+o9lygjB=|h>TvD`@hRHExd
zm4=dJD8tIjij>66h=watB%`YHuRQ)4D}?(VdbE7`@z3c)umwtCCl<|7nkZ2NZ4Tr!
zCx6^_@d{6LcK;Snd~k7b;8?keZSoI-H%i~=lV9VM0Lmt(8?1SpCh>CxkaR6j32UN6
z%Wn!{5Jf^=Fw~W7C<fuqC)Uw)aDfA3zYkAdBunA#n=)=mpCICW*LVonr`?Wj7~bav
zgLohgRMc>ah<7y+^?)4vkKf}o7fwAdJ}evR?M0pGVijR(W~WaY$~<|vVQH0eU1s;G
zv**f%OIM7>8mLunMQ~kXXB;LvCNqkF8FwrN6alhhVn44l6wY5;@X&(&2fOsU3Yr2e
zC-&=jG%17!wED1r|Gu(^%}V+*(YqU^OxVHb;e(XW2q&Mg3IJ?XzB2Gqr8?=QbLY#c
zQ>V*IQU=ezcDkIA;yJG$Yr$&Sue{!S*KvI}agUZ7rFi&_2YrpjFG9V3;c|K6*%!)_
zFP$mJbcFjMo#A+OQTr>j@4$^*uP&ZFa|l=}l+WK}U=dV>!B7W<z^Bu6Xbwj?q{&;1
z7!t4P=(v|;CEO(|;f}lSE6;rOi>(f+yM9|Cj!T$jK!CicQ2j?7N+NiJev*JUM)*om
zNfRC%Om99lUil5f&95>FFY3oK_*Rh(kW>|*DDB7W<=fI0AjPNt!huw%Mmy<;6hfu8
z2mP>19`<$X)9|<wKaj4{@xYC*V@QNa;fK==#|QWgMYg4-uvz{VNT7Ub$u$*3ao;Kp
zIdm>NY__@s$L}`s;%m<fq)w|bxE&8dNwE}Ialjg|GLV7bjXvtgeC_wl3$JK*9vxF}
zLdl6)pOcCBI4p!(d6pSkWcR*8`Iq$up7$>$X~}OyUl1<nSajugT2{kOO*p=;O+9b9
z`*^wQ_~CN&nC3dvn<NtNW3iFESPE-PAt&<<IyGrcs~^l+V43ji&0l%u8J*W~*=IH|
z&oQSC`PP%ibPCgPpUsF>!+|WLbZ)WSv1djHx6YJf2X>Vwo_gLBqlfj4#i>gR+IPUR
zV$?WA@i~d|QEvR=w1S>T;74ZH#Sa?nUQ%4WdRcQWSEP7!5Ul1*P;lo?zifr@&?E0G
zPfH=BBN;CJ2xs$;{7sNIgSZ9G3WJ#2N#{56A$W4^=#w)1O73UZ<>IIbnq-yHa9osw
z3~RiVj{qdi&j86n9VEovkVs2FxTg@J(gSFQCeAn!T_PgXpGz<xutTi7tSqAvQX!;I
z*JOt^Kmd3{@yJvNh$@ZgxXC5B?*oqt%>?O#2?xYb1oP8skR%!O$)GxdyAPjmhre;{
zvi2S5P*lC)d^jm{2zsk!X}xi0Lrai)^U;}OVsXP~ADq!xJnEjh4LQ6dXG<fN-mCy>
z-YjFn*PDBk@USKnzx~k%$_~AmF{v-eL_eoD`23RI#5YIE6|uacNk87^W2)F${oVqn
zB;{$!R#GZE)=lg$;O(s4km{UE@VI`noIdrMl>)yPp(9cK+YS45MEfCqH?e&EdO0I&
zfXPGN;vCR2sk0lWgd34eqgqD1PY0)*zdWId!{zeq>le#4{S^I*tO!3Z$>(nzYHbll
zSy3knMw_Y62U#iioW7Tc-=bg@Wxbqx?L`em=Cw&_x3+8_EZ3woYITY0Rxau}p1#UX
z`N^Z!f5b@#e8>k%a)YV2iVtr99=MJ^c$sUZ3qBp(%&IIkkIKLA^)b#i3rmIyXJ?Nx
z0dVRzmq0u796}W^R7KDX3>g5qaRzSiUYVx3+d6Hf%6L`+V3JfBU5W7aB$m@)Q}pnL
zHQA%WD$HJ=nDEfmNB3oDECBk_%}*c!jpCMpq3le%=iqVs7d>1MKNZj&o{Xd%*7RnN
z9ff-Hqb$@}me<%|q|T;ELzX8mYhunF-q3jKugj$NVJG4j3INua7MdP(9>hbU6MJ@*
zw`szTUtwBaoh{e&V=HI0h540p7c~i|xe0adQEf|p^~{+vJGr3~jmGq8^=z5d4npQ0
zuwa<6_kk_S1DRK~yt$}lz6A|K&dcn-s2zf1njqzDMtEM;#Obmo0hiYFgD$(q{msEe
z9qh8KQ<~s^L`v$w9-R@XIgC*$g%M3??vw>_LWigv)^YD=uIdPRH5e6BPVK;DsdEO{
zNRpXnG$M__Iguy`JJAuuY8cg*Qz)R3u{a~*08l`$zx?T!%gOs5Dfc|^*7C*Af4U|}
zk5u*I*~7b`hHyzo3b&KZekN}C3aI2Q9a)%rW+p#!3qWH~AyxnYKmbWZK~&NM40s6D
z@r`(3D>H*4ePU?|cEg>(^$Kku!iuNt_2p9&^||#FLTGF!u8mDkik27rNL+)_l`Fu&
zs_laWgk2{}uy8zNGk^+#efmMAq$y!<cu`q4FL?t<@`fC!-VXX^Lx`GJKW)PH*Wtp|
z^QVkvnU3<f6RJ=szcqEnQJJ+gWzHm+)SSYKI@`S7yo~oxpSz$maEuaRHp7JBfVdg%
zaXx%8pA8dOG|JAM@hJ^E`1JX##`XN<`-%|rH&&I$qUJARry~#gyz=^jl+YcA_xl5+
zy*h?{W_Gs@L(-lBAC0aay0TD~wS0Hw{Kaxca}%ef5H4R|vLd*)w63{`L;h8$X`Q)n
zc3yKFvIH(@uH)p%6WUL4wVc!S)n{HUcS=$5126~o?bHFWD4fx<Z|8KmOREmgoxLPw
zBE_S!go2}-wWF((6Jrixg87JA-l!s!h~WC&hAB;y<^(Ct<n*gARE6*s{iegGor*f|
zzx|v^yYYPJ97;?B^z(|i;XDrGH~Wz;7(q5n2Rnm7IpAC(8)E{#nXb}@R2iu$hz8@R
ztp+w<7Z^0i=C^<mao{X93a8{kD8v0BgZX!eq-l^Ez!JbUCJi2t5IJcin*fkB3!(zj
ztV!V;T_k<OyLtAh0908F9**~E2f`t7KWWtH0FhanB`s6e&b<dsz;IznyXoRkQt?tl
zC;f&xzZ;4gFh8&6)0I_7Rvt#R3P7X!+Osce@~|%TDHW4=SqP-^GGi5tc?i;AM_XM8
zJ|>Idb)C?>w5<IB%9Br%Ry2TT*mC61A+6(IEIX9ngew2Kl+g3%u9eHz7R#k8*S)&&
z;63`y#R+vTrQ=vN@?O;sx-MyX@7&o7<@NKI%N4C8ENS6k=iKgc<jAbe{ueG@EYDoH
zqWu<AWzWJ!d4a=AB-#;K9#iahka9UKB{Dm^ROa*>5Yzf;xZSKkNR|h5;`7&DIj<p&
zeu_?(07C~HrJ^qKHz0G)DJC{WAifM2_~O&^9#~5xq@v{J=P&DfhXwsE#m+ix&{wAE
zRBu)e)W0rwEb5ZP>6=lF8%AQ{km#mB2PSUR06gdd5h<X`^aLDD&+$RJ#8>{6KA?~f
z0V*Ptr6N=%B+YMuVT9;J=&JWk_;8(t06ee6ws;1@=RP2s0DTx?+<<H?UMVSsh3b3?
zoN3K~*Z@ss(s*r`$7VSEQs#j?1dNIXn^&zX63KP+5#l~qhYJgr&IOG+>WEG_M)T2O
z*_1>BX^liw6vcTk!>>;JJD>SN096-$sN|%78ouA0QYOg8$^u+NlJ1>{WpVMQzLH$m
z?;Ff&7_fV{j$%`XQ76-B1m(Iq>|XuG<1v}><BQilFTkhPuStpMm0k7=w}0OO$sM~A
z;ZJx`!-56AywqIC4y8S;)0yY=12C6lEfkH@AG_zFa_N~Dv>EAYxgrZ>&+$9TAsvWv
zhfZLA;wxV(*EL^pkA6O$lb%?H+^3V2_G+lGuD8J9U5n*jeIEUaCKqoqnM$61#>!pg
z!7|8t@+e7)Q2(tXbI?jGM+&Y#9$E0%kbGLrIH}LBkDl;6f*FY!HRng`n-VyK>MNYj
zDg7!yg-2q`2yJDB4_)6kTZ1b+X-yQ_X8M}E@yob<Zg!EdCa-0X=K@7*fXw*<gK)qP
zK(v?v1eM+R^#X&-jxZ<LZMkg;I|QN5GN`huQDh^a0YqaErAlS`;mj?#3T9sv_`00d
zelHKDZDiz4y!!Hn99XVf(HI>xUDnQH*S<rBUpaS5Z%R#W(NOu6SUi1RfI4yRxC^0B
z5-z!C?@ygRSDt)I`xcmzueFZsgaLV&fW;sY=>RNVP-fExSSbDQi8}v?O!i0bx>F|e
zedX&~QQ&tAIY;2|iG$@s4?SEC%}$i(KJ)u!Roi{v{+>t6Q!kwIdj4gZ{A`W(sYi@I
zYKvZ0zO(B1GrMHw@6!*sjINbaUw@(O7?~;eKKx+WdC!C8?BZ&9b@w%`h{(dxoBliR
zzO&3OEtD1g&cZ9QAnrMOs62T5K)G|j6xH06e-Ua~KVZ9SYQEg7lbk;P!fE|}<)XSY
z!-iTc$+9k`%DxCJA`W0>AI6FZ_!)Xu6|k^kPX_g(xdfDg9O~h+e(1&u;mEP_+*AA-
zR=WDEDWA(&{R~sdc{Lh90S{$Blz2MTzN6_2t~k#m$r`ocm0e8^F6jXE<1L+`fpfAB
z;b`96EWlBZ%~ymt@+hDht$s%WcGz_mf-p`$OhG&mHIJ4j2ul+LN!H;bspCRY0nkKT
zA_{=00nuH&k_Xuuz7?~;w3NvqeJ9=W2D2e|i$tKfhRevR!H!*f%xM1NDepHJ*M#B7
zs+7Qzw&&{2?5_;fh{LQU-)Ok3^RH`J@3(&Mvnrm-FB+;aJA14^<Z_!jhf?y^jNN$*
z3`oY~RVPsd<?*n7_UzH4hs&J@_IjRSUe?EiWIVZRy1Y#tazy6`?7sId?J~TiCCA0`
zo$r3Ayn6bg60?}EEy~)}=(7`)kG?L@$<8z7z=3JaFYGA$^`^i4>Z{rwe4j{XHUF_t
zmY#mHeAmI9<z@X${KU*`**T&gWYN6CxhogSgC~xZ<A?TW_vBo8%e^PcZdnH7`uzsV
zu%e;OG?s}bH1}!$0+z}eF9_?(+8(G2)eCK7N!ADD_HR5=ZYc@QPJkB`5y~K%y3n!^
zPUDqBM>N^1^d^Fk@Ibtx`naT#Pu@;#KhlDRhdtf#TinQ+%>bN;;CVSwKknAm@JSoY
zgAUjxmwc!zA)UPgiVXV(A#W-LNT{=*jSz{#HHFZD5;f!}fqa56Oc0c5#t`n~lMbP2
z_#qgD=!;0IE?vYb{~oheaKX$AU&PKsfwV>vmVE33<l4q<hstEpX_Z)kR0h{B@*4_z
zt7(paF9FB38<0azz5Q6NoCeH%0gm#rX$fgxdHq~@{3}m8z9!`m%0MV(MjG<KDu{B)
zcjeJpak3WRrE6B^_^eJSy8Fn!GOaDf8(R8&+b%vrnkdJP>Gv13*=R;{2dr?+9yw4B
z9Mez6-MAw8^%L(J=U=^cUF-Pz5|M8ecumXNV8ww0U8fY~2sVE8dGGP#WqFaW5JfVt
zc?!)zV8Ki;Tr1N$e{qNA32tce^tj|Wpv_fd(p392skm$JZcYBp$a>PYYi%H6!xCR@
zvYYaN<{LE6=y?xX0<GF@f{Ioh=&t;z13G_nK&%N)QDSbz7Gged!J)sQU7<I${J290
z)a=pn<Ghw1sqeg8kK&bi1>cHCvx2h=nusG8EUI6hg5%KEG<cCZ>A(dn;BOpHy2>(h
zB9|>4Wws+g;^t=nY@;I5bCDZ0o%w=n3ZX|CJhtOwLXbTI1&IyFbUX2yE_-ro5YB@}
zpa)Iu&^hGOR#N(wmw-L6Q)U4Y-uZ+!yMBcv7E0%*0KVhMBlzr|117tn15}wX^duK@
z=$f3?=f~<S@w)_S+gft-0x${Xm^k~Q4pe2CjyGLe1~B%QhN5AmA(aH>rt_m9&=qR7
z?%*uB9nj9e!+ZDmZOd4HRu_k`a`Z{La#k<&9eTprT%={h5gk@KF4<;w>wJRMoBoXk
zlmOeDZIyVISMwF>u+u0ut!PZ@?Z2*Fi|ZR&E@hci`x#bmsKbp*K6Rj(gR`3P=VPkz
zvUiR{Qu5r#jlv4X4$W(@qjFUpTUt{2YI0RUh6KB$%s3O$LnG=HxXRT1NhwOc5x%^1
z8=z3}@z=8UM<Aa**@)&~ym*NI%Efb52(wZO^VhTkR5;R`N3hV{wHUA-KIll&r9mD6
z_z!xeHXdHU2jT(|_uc4<hZuNtK4@@_4`D;P&Y3g@Z*%h!zUs}7PChcafz|+Zy0xo>
znTZ($<<<&eYc6j9)dLYllS$!-SGXdMOW0w$1ccUaQVOi9rBtMm9~A&28j#}n<O!(d
zr$8?(l7=_uVZusFn!pE7;<zLyKX`dOuQxDmMH6*Cr$7n-I?E+*jAcfdyK8zg(x}JT
zt*F1H#T)we|3-OAs|yQ0VHjK4$=o>DQfzZrJSZD)c0b!%C9$(G*5Bz+Z_y{u$2Clt
z)vI=HR@Q<P0zZ;MeN2vOK4V2I2G{h_k(M{7)X~`op}oFZ2w9eL(W%br$YZ)vp^+Jr
ziX8GPLNAk|j5zsteCKXYHZILyD~p#emQ}rp+32*fB!$REO3ApkEUQI77`ylAQ7Mxd
zbvtcv(q<`}7Mg1q6%l(ZmK5e$a&Dw6)ip0(s;f!utVBt$OVK#WuJSO4!sIF^Ghfz^
z-R#qTi|J_%hpa?+cC?X^a#bH+9XoliEQI~#%;{H^IGq?#zIqXMD*Rhra5gD)P7(16
zCtu^?1|3B8p72PQ7^6*<_(;*=hvSiA@E+~0W~2zbXrE@>1q`6axi8tTB!lc)Y-@#(
z5;@mK`;84CbS=ez6+kXEUm6Vsp`<*>EN5T52rGe+q$Q15n+G=s<aeP=Z=exD6N-}R
z3kORSLGlizATxY!uL*9*BwgdJr;fI+&d(c{T*hP-FnrJ_fHsv!^hRY%^8`nVYj6Ko
zp4Ma{PV}Teo=Gju@vBA1jnZ+kg=K;go^(v);1p###sQ7P?>?xXWY_j#|A33S--O2J
zd@;#yHS+f5hgtY3xG}93_?$v*DB>fmWsT)gJQM1CG-&vu6kJxtV`#(2RLWPYCFA0`
zq2b3UyBx<f*(l3nRU4Jq#Dv+x=AjA6&(Fb6>jz-RH5^&z>;`py%|~k0LyAvjThW`H
zpNqe#or+O%;cB^5NWmgb`TP_ln#=EJFH1+(55L>6tQC+IZJ$OVAiJLn>7_{K=dZ%5
z?9mbUZeQ^C1ytewRdKeE6i#I^;EUcenvH8K;&38O_2ntfy$6q|;BLims`!+G5=Xf2
zcj3Sjw;PI*VZ1P14UxZS+@DmNksmcpD1G4#i8RhVI*YSt3IS0=?BQHP7MBH75LV!S
zghyk?QG0}YezFe&<RQCyccUeoS5U#iY=|mgYG4tyxTZ9~p}5tAQF#>(O)r>9f|q#1
zU)OA%P+XMx?8;TgMhVc7S!ozs*D{_y=^a%^8e7+wi)zFp>NI@S_~h4~EwAf?CUggU
zsZJj)#sJ;i>QfMss_{d0m|M`ZUFV3__1UF(@{m>mv{A>C{Za}{W{#<2&`G_WSWG01
z8jh?L{UrQ~E@tr<(s*@*eEFz~&Q1Qr$yjOV@T~Sr#pu$nNolTOO`C<*q@z})2-b8u
zlQOcEfu%IA@qn@wFD+Rz@rNRypc*oG7$v2!s-Xv4nCDTJ;K-9_Q5~xa>}s^7WN_36
zWk+E$bYYH$@b!gxiK?Hso0{=(3v29x>K4b(%Y}=wMCB>$N>zQx&nsXmRK;!fNew+5
z;jvX*u!;}Am%9N`Mo2c{gA}#{ZaAJuI2lKKgjoV=eI?zk{p22UC2dm(NSRv189>p~
z90QrA5J?E{LB7eq`F)v_+`bCMgP~1C{^T3UIO4lG1^YaJ2e!-Dc-_)>TE~HKMVbgX
zDliSMWoRG}r=Y_7m$1m`GYb`7)`VTYSw*QgDX0H1$;jJPdGU6yZ@X2!(O!7zRjn@Q
z6J5P2F^_S)`KeCJA?CIYjNvAP8PUJ087%-)lXplN9MmVyd$bXUU3=O@s85I^KW}~#
zQ#$hqvM}CuM`D8%Uregw(vc-I@DWYaQDU)>`5z}Q+b~g{J}gDDj&5j}p#x7)B5Uew
z<2t|vRbk;JBfs(JA)FNA2+BoD$MXi_;blY>m!dF?T9Q0BlrN_uQ4R6@Yde76^%l<s
zMFJiRhfxG|d-mK}DZz1BDzo|>h`suOnAx&>&mIjo`1G1wN;!D=sP2Sy0W+L<$_$Kf
z%u$f;mKU5V53@7hU`zXfv(b$%aq``oDvj~+?43q&9N~0+>pPOrpid&Yr6FXfHsgGO
zRr2h%HC3|R<U2Xg9$}{tOpeeM3v)85a4QEQ;*w@clA0u?9R#*mWoIh0p`)3da#SFN
zt7Qt7{X4|EOzUusRGNf?$_fLP@nq$<Q4$BXGKM0gB#kf8r9$xAU-6l09o*CxccbbY
zYz=0B%UhmQHqF(DIn;xtJSz%yptIUG{P`!IEKfc6lFQ(RF05A~l#-5tSk73ivT+JR
z6Ly(^@zD3pjBA6BX42IWVo0Ewds`!VHd0EXS}9<H(#l31aAQS7g>{YP_5H!Rc2d$;
zql1Z=h6K!auy?^tR^KD=`;Vg{@_{KD3AxUgSJ3<dN2*~BjBz3pUq(u?*uj)S=%{pt
zNQJ{yHe`*UjOh3%Cgp)0#J+-SvX)jDQYaoDK00?REcO?$O?zCEl;lOlOetTNM-_1F
zjyubTKl~y6Or4f~Rqw7g@#It~e+Ll~>F$aQUpZMp(|(7pPz=y^$|7k*Y&OZuaQIi&
zNUdO{!Gk{lg{$u{aRN962xojd-?YOw6_z$Y8b22@p#tJ2-<U0YXf`{jxzcqC!HnT7
zboQuLqE3oX2BN8?W;7sBvVJqZ8Hi_yR%2pNGeMpzHWV4NuN$3?W)X0F#ofCg4!DtV
z6R<iZ$aH28g9;(oR|XEN(Xj^sXOkPVR7wH!*c}{`TBa;(=L`|lC)Gz}Y|Ea1P2UB4
z{C7X=w{T}2(4M12z$~fafU-ea&j<rA91ra1&Yk*5NVE8u>?|4TkW;q&`eACwz!B>s
zys-(R0B)!ou4;~gt-_e?lu?~=T>B7M<JW9pRJ}6x`HIM*PRt=B>iWuE0;#N67wVzX
zCgQ7nIjwnvrBv6kY7AcRkh!v<l?;w(1Gla`u?%cIiR^~zV?pO4VB(L;TJf($k&F0K
zZstE$Yuah$hcf23Cr~CVJMux;IsMYrO(_iyXW^^NYdX&DqBe<b=(Fv2e(-y!s;EQB
zo^^?AgjHz+SKzm{6fzB|l27n(QQ;1W9lqlc72FM~!Dwr^pi@BYJ(9YH17`vUU3U?J
zD$*vJnB}1EYyOSI0-2(ws|2DAH^{F7?YRvRGD$MB3Q}VI2P@tCN<xg2v@uIS=GhQ`
z+yD%-05l%uO(h_kE@RVItPgi5Ci_ZjVhHkr-f{;Gq!7c?m*|F-f?uz~^JeE1qL{Id
z#^lq2#Sdk`kG&!`$EYpnBco4!?(y={tFNmq(iky|!wg0iKKZ55lb4s?;9<FFDDecS
za6+@%<a1Eg!G3)LJVB>d<K}HXsy8+(1e)EG<$|Ijf8iv{`ihi+=QzT0S!9-99eQdC
zJSz<-4|RMg2|rl9%{SDEIh}~|j_OnA34Kf87btaO*$4>cH?M-sJ&?a@&SyWUvo?hw
zMS-qheqd3&mvnKe^pq?Bl)<8oOQO6~4Xl|QWtCxB6O*h&PzwylV6v!Hi)WvCPF8|`
zyYiTRu1@nOoLW_;WHB8+uGN+~twiWd2(5DL*}K0@GWuaqgJhtK{9MO19`H^nV0oBM
zX&?!_0}AtB;X*|m67b<N39$|u;Ur7=us@uJI(15#ZW61l47!FG1V>79*o4>u&=i6T
zPovDzSt(?SDhYWa2qi+ElmRjen1EqnAsBR-e9({1*m0?$N|c7eKpM*|QPNj7E=7&g
z$pRujf}M{@#uJds>?&yv6L^#H2Dd3&>5+vu*@)KYd9(S~l{I$u%)9Ci8OC+sDGK52
zxpU=@zW8NlPebD0R)ToM0U)9lU*5pB7$DJwS<ik0FWZ4vd`>GBd_sJ1-){AJ<xNLa
z=hG~kECX1pBkIjALDYD(j0s*HUa7@@+`oaaD6@W2pAS#Ws^eiz=o-b^(73)V>I0`y
z%_+!gSYK8L)No=<yBjBGWkq22E00n5OBSpm{|F47pZB*+b~Yg)PsqR=0hKPP)R~tB
zzo9z1DVe4<Ik{KgM_kvJQ_F1mR-N&imDXukJF>)<GyzJTu#I6-3XW1xe^+E7+|Y98
z!Xlqz>tNM&9b+#AGq2ymSXZ6g`@n<cj+x`CA1OuAyE0Xw(P6uI!qIdLCsIia_~gjL
zaC*2!T#$f;M=l`ko18ebzEcMkS3^PX-c})^ac__MQbY+vRqHR}A`MnflQ;9qNRK4p
zEy*T8CQ3wDpb51AHft=Ch~(3-T@=z}5Fs<3sWXm`gH|r8q(%bN?v-7#ZGI!@2a>qL
zkSn^K@{l}6>t@mLMK=f!Bru3lQS?-<Ig`#L_C<#>5FnKUI9%kYenDrW)5*C}Dek@Y
zs)r4Yd+DoRe(D7sm3AHtQr6W0pr@L6Yl^)u(&ok-Gc#V}Vi7QN&zo{m*Iw=XJE6S?
zJG3DP25j63W|D#5M<4=YG7$ZS6vLX{s+7aanmQ(ZYDS7iC19Ar>d1&@=|@>gRk{sr
z>>1U535jDI*1)RF@KqguJ~<^Nv&=6@iMf=^#w0@)EFRwU6hs|cJ1@PWff$;fU`)R%
zI1`8*;BrNL=-}*u(3q!OTbj2Lgbkw+CKQ=B*r7N4g5LD-os@ErWMx9yLQg^#z;*pR
z{7dEdu{+9$womhEHAlA7e{fS+M|J`j2qLcR?1l@MaoVZdDg`Ia&}A$v;8T6Gt{{7c
z2T2c1&`E~S!A2ztIQLL^_)ej+TNx?tAKitKaSqg5awX074ywpudm1o$1l3VGw|4oN
z62FR@GUi)4<C#3-63TKVgTxNU6TXc<T(+8Nf-RPk5>L*M&`CEd37}BM<uK)RS<??W
z3~H1#=)NLQ%BmcorlGEC`7C!AZm99oh$i&5MG??3m`J;--);Qt7oOA+;x|0c=H)cx
z6fHbLHotHsdzOrH=}&kbi>+7PCe`rwXb-^QJ#&WfhW3)-n#^hC=^tICQ}g!rOuzO5
z=q<ah)sPigDlFMe>Kub5SqOA~CO!R=Zge!NN2dCQ6xzBhA5ArSIE3YcrLm~bjwjWD
z$5ke2Ayoj%MnQV9=T)f7m<&V-p$J$W^bzv18u%{Zx@1~J8LBM%Gz?kP5arA@9rq?5
z7#0GK6%aN<&1t73$GLGjl1ggb<5R1pWf!F^nABz8gNI+LsNL&2|M8;EmoS&SsUC%M
z$D%U1T+f8*{Nx$%ZLI{-^XIgpc07D?0c@_^h}TOGu!cz;QUyuCc^TCtPUnap1W?h#
zxF3fqQ9%KubIEM50y=!lZCip)AvhlwSj5n`jB75@<2rc7lbhKmeHOyJDz*_2|6@9M
z^)BkGiKcMGYd2HG^{HE026S>Bj^i-m6^-n=6zVSXBE2rrFl-0~LDLLEX5leQIsHiX
zvaDztnED4p2{p7;tu#FQ;>+brUwz8YmJWkJ3<KOG;7#`Ak5n}r4LI^ZBF5<&Zu{-I
zTL+Tt(2^S+mbW*Pb<ks7@OiOMP}UogH|e@M;Kqu!8|yoQRqgQO_YqkY;CCRFq|A2A
zOld3g?y@ekdyHX#<X_XconK3upT`o=#G^Vj<97~G8Sz$TSpX<PY>YM0@HU?0+kz;Y
zhY%_^`!VuEE`EGvL8}T2N_SJHJstk&zBwJ^eqFywNf|uQ5s!ER)XtPT`<%XaSmby%
z$;F%k9iO?5o3b?giMYyl|2_9vVSwWd%CCO;Nyn*CSFGTEC<Ykl`ieS^PM+bQ=NT%^
z@a3e@fuXmPZ|*fpB!iVa=(fF6-bfMcktlK6=TM@`IN@$TCK)CiO7|wC0~P{8Iirv%
zWfe<h%J`-a@5&P3jAyI%!>!U}x;GRKLauFG%>xe?l*mkY(0A_=+)xojTWbLWB1Pra
z^MDgoUkD|j0B?3K+C7d&!P}2HgGs$5nE(UD9su5AlRhPAt$gA$pVy%z+U6@bzjI(!
zz*|X-P%zdZj>9v`MB`?@g7RTPLo=aWdF<5VM@@M9uBg-TdkE|*6k5th<83L2Q5|bG
zDg}Uvy`g!4H7z-=>kZDg4D1lRvT#`^A1{}y+U<8uhrE*M9(@lnp|?L_etY5UnR7nu
zbX1#}7^W}~Idbp)WlVb>HaJ&73WIagy}XIVz-A{|B}g1fKr0IB{QNQ%!zWe-u4{f_
zK~}=D%1p;s|JDx6i8805&kdC$l{yvA<RglX?<~r?Rx)^al8v%5G+5B~>+9F9#=L^^
z-7EP?M}6)&uwTzbGWDI(l76t`Q@iz|{&gjOOCM@@kS6|XJlMd=?5gK@1JRliqF_2e
zlx+alj}!jpx=taGuL~?8Ql=WT!1akyw|#ty+rdSkLQ;7q^h61)2MY%_To+2nt$p|)
zSiMY4BU2u_;XD6|cVkl6mVx}V41m)))r@o@L&Th1aPUnb)Xp1LLTCg!EXsgc^C`VK
zou@mt@Uo>*78fpGF2DQxpI1Ycd95tGg;hO)+{h;zo&k#EFrC42M<$d5Z^s+zfckDw
z6L4C?*D~9jI@hG~7iX1;W5xJ|CXLyJqvNdW>%%o|Ro)m?H`QAhg~YEZJ^jMV>X`Z!
zByC@w(iUU(E!-*VVOpJ&CDV)gC8_6MJ*{QZb2=Y!QlC`sE_WV2Ty`EfEM+GpDCM`I
ziM!?N`h0qc6$<SVWMa~akfO7bkogKN2TDmY<Ih~cyp{)<55bmt^`d@5LKj~x&g*TD
z^&^!aox;#1Hck2CDs6|>7{}HOOQw8}LH)1<dEx9?f4p=>bv&ojoY*jh@;s(b!RK_K
z3+{@3O^P}Uhu>XU_kCXvL?m%_!v{b$o&6v&&l=AxGFmg-#`BX`Md9}xS;!4_lK}Sa
z*)pO9^$>3mjCTD7L_&88fznt=Dnytncd$_878ZhOk{%v?US<?rZhfycBBCgCbezT;
zcqK_nvP|}LXUF?@WZCM1MsUn(^`gdu06c(NA&ADq1X~A$_1=Xa4i;_!>Lh3mRT^(c
zA2uR5Ke+lEpZJt##68bo#v~%0O6aual<mo|P)o3jw-I#A#E)n)j}L#Cl)EI;f3G?c
zo07Db*wu|iz^ViaZ$t`dMOMO^eq?1r-#m;fjuo*-hoA1&7mu%>I$KWZ0M#3k@v=Tv
zdgRXevPZifnFM@YhqJQIKP}!fQWiTkad`On30Vmm7Dxe6fD!Eo)b_x#q|Ug(uPL!g
z!S-RLS(jCTVp)+@U}d1QBQNSF*yc5?TEfCor+xj>e0g4{FXQ&>%mx%*G&zO}V`Yb|
z8HPY?G~&xkEF*>_J2ih2KY16p*Is&2D+&*JsKAN~)(B~G+cIH(`N<8M`mWbN2OofU
zR)XtaIM5DDLejbIHJ=igd(hReftzkL0H>Bu7&jab=<VE-1GI!4Z-L-26zvfPeye+@
z5R8?8$OtD?mHtCy;1N%Jz^foV&aP}a4K<lQjIuZPXy05=JdzK=6u>av=!i%@ak=C6
z;(a)sjuU;&gEIgns~{GKB%2ii)<O&!E}VJIbeyT^Ew<`}D;gj3)gV8i=A}55^`<@*
z{_N);_ZyxBV(UEk%Fq#IM_pM?`ymdvP%jKWSgzZUsju-pN0Lgoi{g7)N3HKsM<;(i
zs@hN|oMMTM>3erb%^iq-dQM*h>J96<mzBcV25*1l{<2@+KRkQ-e0lM#PG;t;#WQEi
z!MUBvSaTwxd-&v$azIO)Cv@u3{)310%T)U%9G_8(FXuN%rZGN@(p<*PD+^^+=OT>h
zP!$f7r5ahyV86hE6xTHrm?kt=Bs&%YB3{u+O_YW5PpAx2QalUlyjVlKwfk~T%1LCZ
zLs>35lL5MEcq<LZ$K#mfJp20VqPbqK=#-|HUwN@S|J-w$#9b)wdh8vharaePo^L#B
zfomL|!&l%KK9Evr>J@xyT6^Gvl>>PTaE(y{0QfyO6zyRg+!oysEijyP+xV?gfa~LX
z3PHlB{Pt@+#T>Q}fcH6>t^%oaJv>)1eq-E--c%s7K`dOxBNlhMbc2(puS%S8lmJvR
zql1?BW`Hs^aL8z|_??B2^9YfWWSF&{KvXAUtMY~#D{}~p@vrI!Nnd~ctlxB)pLA)f
z9n}rIY5bVhG)jcQ!@->(Z%8H|Z)!&$^f-Rz?W#H$znXMF7t4{$>L@F#oPEepK|D2f
z-`H5uv1L0w5eP#j^){Ao$gI|H8pukxOG|Zg`W2;P`dae!OV>2XsPhfA)W}xodyX9}
zhqcGyz@Y<Wx6WIf(!2pmY(-0b{2(l4V_2Z?nr*(1==%nKO=(FdCY2?b{Gvf2+>|wO
zO$uQFB_g@ltR(@p+OX!i3(C#1r?ja3ah*0rUGCQ5ExWW6^M*P+n~vB=L7l2l+UB4S
ztn}RmzwX4G%>^Bq_PNh|T0crXtpi<md4ltv`|fjH-H@V4M}4}BD^J%qHS7uxOw@Sb
zQb~Xx3?~n`f(!1|3l_Cib(nZ=6)Es`@$R`t+FRU{g}G&`4SG;LbjPG2TEMuiXq!S9
zC>WHKSPvl*f!!*3S5&uRvauy#22P`@i?msToA|VxMb{52dMig3y~}+@xBeUf^5^9@
zk`jPd|4{LS(_1gi{_r6WMUZ}{5U>)$Qn+yDR5_qyx@Pr>?UIfsV=n*)ic)mtpmsl6
z&R@Lbu`@+bDqg;1YI*!6qG;F}%omAR1W@shqhs@J!lIN6`~A})3ms}+o&J(K3?C`2
z%xFfRUrf-6N!r9{`DbRdm02eAiY5=2HFh7<q@qtnQub4P0K~^l;=fCWqTX}tuvbY?
zjXU%<-mM9`SsiaStxh@4%7W@Beqv5_rFjgj5x(AB*Q=hl{kSFtQLkM50u}QDA`?!E
zL-}Ckutj=Il{2C_j_aD^pdOjipu<gb+?@O!l8aNEG52@rqoo_Ngjii*VsS$sR$=}#
z-{Fl`l9l1x<x3aKxihEB18;jrdFYWxG_*Nh?l{6nP5exr6cqK{zudl}qYL5u`<>pj
zm8MH4W@6(Tyc|qFq67DeY7etM(|ooAw2CA;4aZ^p_VG-a{`Qn_2GbNmREC(tpF-Ks
z(p4Z{-z6Gi<61&d)ieWsKk;xlnaL-pE3-=s{W~7caM~Idet?EZ{}M;cT?W+dhM4$f
zE_i*|Rs>>4vY12+C6LO1p#wiif}3WWtd1=k8)Lh0R3)?HywUjKRXPW3$x{D*6S9+!
zHzE1Z@s+c~QD9)|w7gB_IJbb5@Q7kCe9-EG#?&_%FAJ#mul5ayMlVr1CFcdq@XOQ6
zke@~47_u?#IAqw*PDhStpBkOk4E?wif=)C-kttJ#A1IA!y`lNt0~Ds04pj!vjaV5n
zSs0&CFKe}dGBB?(tKW<qmzCj9lV!yq_LzRXX<dSEjHy1P({5@$gF3#<&&(-5WoJdO
zN8e;H`MFC&4(Qobq-t?FP?oH!+>|xIk|M(f%16FfAv}w{8qPfU&_m@dZ+XNMi<}LC
zJEt!qhh6LZdisQ;G07)f<4I$@;ZXJHNrp>5V)YJ?C!H>dc*>C^d_Q%uAQl&phy$u{
z`x)<iz)-|3$b;0-+EyxkBMcnLaNB^pNyQ-V3Y0~O<Q+WX-Mvc(j6w~%=y0lxCeJWM
zrQZfT$W1ZVhM1Y5{EXuZMq_C($wS-|ZEDb-%%gS6#I*uYp1A|8QwVe{;B*LG_8Be^
zk72`=3+H?)&$P@`|DFMS=z;QigR$@Dx|a0v+Xf~W5sM;P9s+7?OkWsbktHX}KyPmJ
z0UrR-NN`Ro7>#tH&er>T1QF7)mBbzM|7-8uqdvW=`hN1x{gSzb$%TX@CW1f$XloTk
z(WM0oMa1P&suitO3s$>YukEs3ZE0(%wzi^HsC3mER1p-Fn}S>w4H`udNq`V0lSyVW
znOo+T$y}0tKi|FgdCv2D-**yR?O)}*@AI6q_t|IfeQx_X=RD^*KMph5qN#ulj^fyJ
za89fJ=)FcdY@p*SAAIYuv_^A&b*{DKK?{u-0RK8Pot1YNnikj)SUy{z1@mfEuQJc-
zH6sU|pw}98_>Fp^FKNMV{RTE8J)-pkEhs8}qvWy-NqH~nlxE7B-=U0OV`3x~YXj@`
zHe<)mUHX;iQ#vDZgMT&ZoJK($&Bkj+%8XZ$<exI3pEBJzFC)RPPcfB{sJ4Iqfp%5~
zZTk&3$Y3DZh32w$*foGcxFL?Z$jc;(n$aV$P%|D$=E$h4tTKC~N~}{kTnN%sc;+Y2
zaRo2>7CP}*#w_DIK47>M>!KL_X@t;K&diTgW+8k<E#p{-RS9O?K2u;-?nIPGm=;V+
z<pP1PM#}J&u6~I|1>G^XP6ikRr^qBW2uh1V@Q%B|ARN{9Ufjm5@&20@N`nf6p-}-m
z)w|(g_UMQmf`?G>quY7zA|Dwz4j*ORK-=_Z`Jz2C4FP#d`v-V$&++NU_4^51H8t3^
zb%TD_Q0FDGomshH2jYY3T&FdMf8c@BI*e5dkm{6cv;}#MUNy4#$tY&6epY?`di`<}
zEAbjV@GXL@h1Lh8>{&)D+94=89C)I&MCs2o<eXmj>Bn9)0@}VqGS_Ku0>(iZWAuUX
zW0->h;VI5&z&{+TcyxY1BLq4#dGcsYb?`VHceX`S6t*^>)ZCwi!}F54L9ZPd5m0<g
zTNrWiYLbfbR&Md(`-R&-`r&rZ-aY;u%5V9Wzb|SnT<Q(T%1+!6&V{qb4O}8B-hScm
zS9jDP$;*c_40=3}Y{*>C3Z-9dv`=%LT6|{lFpBn3{se}E5npkWbTkRQB6RWlU=Zen
zslpsNK&!<s;@vr1G%jrwT2K^S#1D)gYml5XO2F4OFJv)s$z(h-4a?(EQWcIiZW!|6
zk;x$S$Up)6N;8fSj@%!^(XBdc)eBxq8LuSOF&GVK36Uqam`{9#_1Xo~1k~{e2jhTL
zhR=)+n8+v|4v7y{V_gD+!zaZ1kDhE#(vO|QBBOrmK);g2)L@<F1rM{R$dg~cd3c6B
z|N9Q<Hy!m$%sT6E>sl?ot<jTPI}15q;9<=(&L7fiI-S0>_EHVmncp)q(FGqCBYBI#
zD?~OIoz~leLwdJ=Lc1TY(AvZHjXV9F0ePl;7}~Hd!tkEcq4=T^Bf%a5PDi?5I};z!
zn*%Szl7H4RlyQDAhUp3|<h1rgV4E0S@fwj=j^sOxhe}37_4=0&n(n>pPMsuuvOWIl
zC)lVx;ad4}NA-)<;ozz(>p77bMeB<{(^!L~?}Wg(^a~86>$hT~CV>>1fGK=2T#qAd
z0``EDr@d&WoqwmzG|()#iYb2~dIqj)5N1>b!11wgE&A?LiWg5vY*BGi5>IaGu<)=d
z4z>fGm>4-n>gEE<gdhd0yJmcj4xlBy91V;}P`-5YQ&H)<QBY&1!N*8JU)brXbV_IU
z@na^eBb-&o;|a#)JqLO!vRcjp-U<EGSqPB~buhL8`?nZS5#1C`lVqxZ7U!AHkVH2|
z9k@Q6b-1;A4jtD|tet6BY}=&y^|^LP!|>heY+E_noF~6zaL&Q*ZM)j}$1k;8ZuwZd
z_2?(t4(%P-rA<^<?%e55sJCdeK<DFI0)Ch^_EG2wEJt4G(0p-tMxB%?0zaa1sop?b
zd&9MD*L9bvv-2`kXDgmP=}yYW8hpfrp*k(&;_cfC^LvbEwDz&@uzuJ@@%)+-hJ!iN
zS&am?YGiZlgnpwzhUAQ<C2{WKSuJjEjyh1;t4JJHMQHS)`V@vY9_)R%;mJ3(XFT&u
z+vS(<M)h`7uOXRo#9^^U#f{=rnYvuFY$^T8RoH|bjcgoP!lMr!7kKW}X{NBRaQUVh
z;KHxy!z%dD8*md}gB^wpikWW&$ctRTW_Dj@5J>-6Toql>E~cya%u_G+8lw03WZ+J&
z@Mr|!InvF-8R<eoh@ZHksBj4`UyaI>b_D41+Clk}13O>3t!xl@3QpJleRs9beah4I
z+XI*DJ^LPsS3`S59g#V&wBEv2VEO0Ocxkl6E4dnTbaadY-yWc^9-`iTcTUE@jg_GU
zsnJ!Ag*Ds-P9YNa2epoH*ZmK)>mRp6$C<BbM`aw2>B)Pkp5B-0lj8My@^4zRxoz0G
zUT+R|>kG**Zujp!=J)y>VUB)>jvQ+TwS$nIf6T>^z+ofk%^rm9+WoghYXh80gkhue
zG4^>_XDF=QscWOSFsxw;c8T6JXjH=B{(`0<56VDLz8t)IS__(IHR3p`>CN8zkJ%uw
z`RGASU)IZ_Fa==G!cqOi+zD-xVuV1x&x#-4f~b%rHAWJ=nLu~SjwuxNaZ*RE-|>l$
z>I9}^?Rn36A;qNMrPS|b$mgOC=9iJvt)eH)sv-DQJ6%pRNesb)-S!5*v|7Zk2up(T
zNP;(D_zB8`x1$EX5Q%>j59%?+WDtZcd7YxD%XdU1=k7kJKu>oO;iezr7vYL3ynWs9
z7aa>=Gz<%-(?DcG-Q3CDY!X!*$`4xlBI(U1lS4tFV>`kp%##R1P(B@5U+L}JV}r0s
zPvLX>?$A_0hpX~spy+A1yuxE=9Yf-HBB^a7O>k^pvUsN3HU`MyiORNI<gxZy3!Usp
zd`O*xtop5iX!aaD+W4uo?fNxkMgvFG;dbbUS=ptyMe7PnV!)S|Y{25P<;xzYML&HR
zxLzlu(g_)$vk7U9^yCC(zJ=iAvrSs{U#pEl>_%ir{)p!EOhFhWoR<;Mk22_&Uv;W7
zZ#Gz1kWTE*B=0Qloz>5|VX$l~RGtsX*swWikA67z9&J}<utvM_(Qj0p3=M|hh(=v!
zqz4O)XOv!rq|y>0G%i!NEyo@Q`zr4x)(th{SSO>qR%<KQUwfSpt?j#eul?0-;+js(
z7u^b|k%Y8GV*QAee!7Le#3x+%^2rBue&Q?4AGG{IV|<21n0y^DNK`;QkT6`i%*o;q
zRdA#+sp%pn(gb$8cY}~3LidrwL^}&nD3!+K2~34m<PouGSu1^~&%lT$<p^6&vZe4S
zLKmo+2Q`K6G{TuBCF6v&M5Urv*=VF+MI<sPNsmG3(*@wsATX~Me6M!K;kInwr6I1S
z3mW?BtQ0@Fc!KfC?zPuk)%NVYTjH#dsF`E4N+A9W0>m2wz<c=fvQRuZH4XPL{sM->
zDddaJ`3jYV)uNde=RSSkQB4~(4bZ6I0gV!loX}YZ>vYbd-uEww7r!FKr%#t?-QdA?
zS|1om-}4)rCJNF?#%F_!gf<^-(qSn}Y+}%pd`Yhm`2-pTAKrIQtO>}toY^Gfuv3O)
zyQVfW24{7q<l1%menN88Q~lIt$bVLA2k6RT;zODyoYLEc!`i-l+uiqjU4he(==5tf
zn&LMkD9hveQ0cV3Y9t+NCrm56omu4q%*6>vjK0ou+?(=Wjh!RmFd*wR{kiJuYg{%5
zG(zAssmJ1?8>$_xLL7Av?P56zv2xNIjrvt^`mQ_TSAgA$i{3nn-{5z=aG;mLfiHAG
zsoO-|qbnv;&Ae_9EXI_R;?4ldc6<rW2I`2eo+1gWh)r*>3j;M4dcoxvA>up&u%Dem
zVd#8^i68I5k6_8OCP65g(yI_=5PU!>9Tiov$c;W4xEL8=9Ks;bD8n%5IWMDdT))Y1
z_}~F;1HQ6tzwC;3WdGfs`|>mJEQW2=y!fe4y0N|QmRoJK(4Bq!;*!P6D!w`*7Qilc
z?qN)5p1ewwX;4UtsbetefNxDBcn$aI1Bcr+mu=NI2RnS=$U*(Y+Gc)lQAT2ojDV7R
zrT<~g)t5FewG-Myz>s{y8J(-ZSA^<J?e4qv`;6<`8m%FCo3mb*^3B2{+G}xMYX%SM
z6X&zq{Is-N8;CSr;BCzXy+OdxU;x;Z#jN2Rdj&M~_v=EHnO-t#JwWB8C-)r(j^(!t
z@v4zGEKERR<a1VUPQ(jcG}SpPBgPxtb!kK~0+f(PU-J2En|feYMV<M}QZ1N%_1AqP
z1=jZ7wa5NSH<44Ca&WA2H^Mi^1;K<Qv`C6zyYvk!oW5Jo0xm`kskF4HQACUoBtrE3
zQQzh&IK(DAs!?K73lf0xm2pI&g4HOx)%+n%Hwb}~@QN(oOav5+uM1^6tq@kb@T3{(
z1x^_yGSlO$;!T?Lv;+9sAL$f^#GM}+g?;Z9AsM8x=*rP@U}iZa%&>e?jK!`#uVi%D
z^f3a!j0)^0oW|kykN$ak)>l2h?Yio^cI3W&VlAG~=?SO4-k$!HCwbcNpq`M(;vIrN
zfldp?kFG$k)~=6-mei^BfsTg4yhG=#LBDF$6aZdqA0`{>3r<5vIjDuiJN6&ZV&O&|
z$<8+m`qtsZ8U2Ejb|#8=Nq$VP#6!kmy-rHHuzpQDt^EQg_5H!-^C#PuQ~Hefl%@_^
z$cW8V<WX-Mm_KNJV%<)ir>Hj&7#G%H{L^aGrgYYlho?l84-0{3^j*YR83|qwo>Teq
z+Y5U&P58iVd;Qesb>l{@D_}s_%gtL1b}^pNTE;nLj9;>5w1nBjk3~r~cVR5o>f4CZ
z-u%SYWeg5~yY)-YfAg7N-ah|nPZv|!x4n1Sr@VcsOkBo=aO`kPyqm=W+936_=sK<v
zU&J?U>Y(~BLx4`S!0^#EVaW;_gsvcaK=;@lAaXVLn24s0Ni?QNqI+h-K4C{B-Y~Sv
zK++X?WNXNf(}jWr>q!pAFunq+@9sKYn6R1=U+F#Mx4=vSQzGMLe+DL*JxGzI^ilkz
z3gKYF5UA4;ud5pY8vwz6GGQFTK-~6`TWt__?AG~xoS%pxU{OHyWOkd@5O(S?R1c%I
zh=vS{!&9c|+#A`^C*%gr`@QlmxlAJ{lMB55le!Ed*z81_7(EG48b&P`gx%_}>(=aS
z+oac_<Jyv}r~O(j*sWEkUazUZl72X5{W?9hHB4uLkFO#xXm0|G^~a<$zedgWU=CN|
z4F!vsTl6ZD^9t5zO2Ch_@Kop3Ao*hi!;jeV4FTo(uto-qUU(D13DXSuHB)H!>h<Uc
zKY33(s%^-OhWJ&fP3$d@-sF)JlF)~*GX08D{2x*|!GEK695PK{?*iqGp*$%*4{Du(
zuOT@Lg0+yXS{K==w<f&iJ*&~fCqMb|m@X*Y)Fy_I(9|tgxhPHWBZe@VkhVvdpr`FJ
z6kp+)uL1_HYcL4CZ7YsH8wX1aX%&w^bg=7zgx#3YFI@Laox&Fkf%U5h;0&iXA0ePz
z5tMI20l*`!!bHvDGNKqI7zI1==x}xDv<ih^^i$sumb9T70z}=dP08;mA|N#7=gL(2
zc{K<xD*7?;%M5~W;F&7eNQe-aW4u1~@xN*}e%?(w@%Nf`Xy2#36*yJ|^@>gg;R|m1
zy!MVmM^eAc73xY}Oc~;sc25b^=sA$Y$C63L1%39+q9k<qyp;%}Kx*+&KG>Y}k-Z0P
z1lH(j&MUu-$KpxMPq3|*p(6cy86Ku5`u>QNGG5xGr1Wdpv8boL^-)Z8co_!SwI!_;
ztktzfop`Ml8QD`{Cq0(fBCHOL5j)Es1x*dk@a+T(k-{I*tI*r_9c-Vx_mGpIE3ZUZ
z$iy@f#=r{gJqj2R^pQRCt5?3>L@$2J(K{dI^Lv=GBYm?H=Rq=k*`;5Z#_jp^o%X3q
zU({!Y$B>D@6R(>)AB`i5)zP$&{O=qpofA4Txw~yl;YbL4af1Lq%Mq{e1*4SlGj)tx
zb_-H8>23^n<Yy4*24R+YD<#(W&a61f4`mat1Qce`DA2`%#`Qi5EwHh18)1{fUk$<)
zH1nr))R|ogFaS~<%mhRaIChRfkC1^6E!1_X`YeAk2pEYN8N^!#(KAYrVTkLI$sk;H
zeY@vVw`p-pb8&SXUNf%K$2!k=>QmY~-uFk6mh$KU7!-Ny_4GwH!((eL-b@AP2%Js8
z!kqryNtg8T5*>#9{^j5)6V(nJ(V-?<PuQ&Kz}Afq`v8*lbUt+$&SCVAx*|uH*8ml#
zr2x;%dCFo0Tr$e5rw)o|lD?$jJRNX}osP<v*FdDZpW#ZwG=Wc|c`~2Uq9(scg+bs{
z<vaBj<Wu_(`7MKNhGfY2NcRgmTI~|?<y9y7=I88B>8Y=*`;7=6Gx?KfeOSd>!h<q4
zyn;N-`Ux2qPO6DsKUOQ6)B39PX-|6wG3^r{zs>dM!gPTe-ETA-w^?B#dc1>NNK{2#
z_>6X|F;0l|qc5ZZC_`Xnp(*^-ho+7XQ@2X%3BHR}pu$8}OthuII8joidREC?5nV{9
zherfPeDH{SHwe|aGk+0lt}sv$6yrs|xD_5)VKQP=CZx%aB$cd?i^jl@4id~uB>0Xv
zGZ3OP?|}soZt^0Ve3(NW7b63OrEeI7Fb2SJVFW51Gz?`w`r$um&wTcC^p&8t-|pD0
z4#LMf;;d_{Uf*rf{GKP7f5iw%2-A)HGAbY|yhh_|zReo;GGyl`-7ySwXlR)~vo3)=
zenA<VKnJoRVI!0N4jen7-H4mo=jt`&8I3IN(mQ|8*Odl5KPJl;kZbkfQy3cFXy}Qo
zj=n~38~8z3exP<qModG3C}$e7UPnHxg+9yxuL$|W*%+w6SmZnXAivib$E%+}wl+@P
zzVCqEDsb*Wlp~#-FB<(@4U)^gh7HIQo>#G4yqRG!cD*|KTIqU9uRM?H2Usv}7yyoO
z=Vb``qu_dNw0gmdzq#$w2Tr`Yy!YOFJY8@RTT9&lbfHH%qY_7*66p>~WuzPFgNY){
zBiaB!rJcgn@yjnE6I>6~RSkl~xJ{&w$buDI!4Yf499KqTKrKr%Q7?-c*AT=O$}AuY
z$#4|TR1lS^P8$Tt03kF{Wu)*06E(O}%vlmZLnjG747|O!h=g)He&WKL7s$ZgIuu-N
z@X?Nf3qNEMR<&i8s>1^l&Z$C%`v@WFKk(k)ZO?nrH@9n_baT7?Pv7f~&X<LB_?`OM
za;6T)b$&rKpwP&t8%cE<I!_Sx7i`dH#|)*(ARi&Ic!rki<zJ9-&=lRqN(8b7<N)J9
z{`KV56ZD=#+L)v_2AAt#lm|4tzU$BfeljCtr`8#GGGhez^{KV$h<p~!G=QIFTdSkc
z*6MU5|1wqb!~i^^M+Oow3OwC;6M(*KxMCyIX)Tx@*WCVuzHvBu@=V(+WAL%N@6%9U
z>jvUO_LRVSVrW@#WW5r@z-dNoYpxL)qXT}8ip50ELwJA>#FXjN${V8+wm-*F?D1N2
zoeam<zVJl|Xn*>_KX&=jeyGG*XEg;{#6>)z4i^NXyJ#N<O;0EZia$n@xPq0Z;GKSl
zgGQw|^$Ddx0v9gA4#rJ|4r|I@1!Agd_kjdWEa^>^oFX0A#Y?D}tN0N)jSw<9M0Py@
zL;>SP1{@AF_i!McCK8f`pbI!7i@N(XYADE?>Bl@O!uX;tR+0b2E+7j;{sIN?bP*r2
zsZ`^2Qx!`OF7ye*5OCoqTqyiV`^yh~uzl6vc~RTRF9+!)r4vW*_Y+;qYi+9z^te)6
zYWHhM&(J)!-LfVS8<1%H%%$o4EFO|IO%y!BSieT!M5zDqjl(4mYcWop@PbDKdP=Hb
z1O~l$v3Ph!PxHGD9x?B2`fBi?PBUVZ!D6QkffnsZu}13xOByjO$p~G-Vu3nZ&#!r^
z6r`6DdQ{N!Pk9N)e4mr1IfUexPG`PfCpaBd=iQ^-lb?_=IHk1}MgvDq^Mxa&tUrwa
zFa~sf-bBQY&`4*!-h>xZmksLRTU1_0Gz~bat;`w^`JupP;Eb~1$&a--@8a{^=f9v`
zs`C@s$8g(Uebl2JYM8pjRh^PK^l&BzeC3M=SAF&BguWFQ5>z;NR64ho;%gp{ZV-wW
zGHHF$0;3+Od)m8wi6Z>y4kGjm;-33HzkYNMl{+X^>**q|k$D$DBAijtfLo+7E()wY
zx+VYsJ;6ytK~&pGtO3qFF~V5T&frNzQ6wg^0x)GHLaspLxrJb2{3p0qaE7ar@M(1Q
z)G2(xSoE;!fuF;S1Sa}1ocvNg`r^7S3jfI;y;pbrD)W<{p^D@wuc}t3+NAmSb=N#z
z>jJC?M5Vc+8TKk$csPs&8+nM6G}H3yM&7ujbeps&$QORV>ts2MhgcVUH|y!@qsTOu
zzw5q3?TC&NW5*yTA|22dkNfqCk|WI?Qs<%r(m5}v(J(SWPmB_V!-uo-L{>-jdWnn$
zr$G_NM@#;`L2CsZ5yz<KK222)9zW&9!`t^B&@U;S(lKZoJY7-uaDJk#QijL?t0$#&
z=DP)1NQc=Ty;<9)PqU3#r&ROpgFlKwC#Ap$tjqGFj@aP!ZQt?TifKMINk!>)q9_7!
z888B5V8N||uex8&XQVZ@Bg5dN3m4_(E#5O<IP$<qNO=$1gokvIw&LZhtjtroRy~Y*
zk%xkvIpwZ$nz;{j&-eshEHob>SV)o=cY`HN77ZG36<^W|pAns|69!+pL?s0i@5$w>
zahkJxgyhJFZW;YTdU%8rbtVY@^ek}<&m@5lGQ#~*fJR3FmtTb~R1`eg!LKf0a|r2w
z`p55SU-YG4sq+V~XuEWp68jP^(NLTnb2nc11RV>u#fO)Yo(}BQe7)CKdvX}b{N|y)
zKu}|+;b}{*IzK!1V$RPLM6U*A6xf|d-{472`4HZup#-n>ygN{fbO(+yT#tD-y^{C*
z8#G1m(dN>dk%>g9Gin_}27o7Y{J4ucs|*@^oj;}H=jhIJQj+xZqM<td13H~~zkYD_
zZcR(}-hZUsagUB}R|nsrA7I(4Y0Eho8u~tOMm!Co9LcP73YZQgBcnA4&OF$v?<U}V
z@bF<71+7^~Ka3SEfHy3RC`fOkt#3NM^JU-LF2C|hZ4f)w{z{)e`@||&1!>TIyhbST
zLRDSTRw<)MM}&jZjd)4}Ust4y2L`Yd%Q$>mkglYyc>9A^F+w1Bj1szd^@9krRzw7K
zNM8u;k`9sRYg+U{RVb*jqBIghA|JEs1_9>5f&iiP6%G(MXk36pd}<VFEE>g7k^99R
zyfbe-E2MCGWGn2sl9fn&vRuYJ%A`xJJquMP$-?oZ?N`bn-Z)@gR7SMnfYE093nie(
zu_@;rZ+&C?+HZJCyW#0y+>XERke>|vEZOH=b9K97_hs#vp4#M<rz6gtQXH+eWYN(X
zPV?OYnq0=|Md}Eq6VWCu0D1$D;@RfBmM;*MIXcW{PA<|Y;vr2PPH<*|R_6~M)5aZr
zs6_ekWS0Fgza9Fq7kVpCt_$owR;Q;StdR~hZix<=S~K7&#cwQ}(=JCgBC$jAsPe%s
z$-P>$*rQXL_vn|c`IV~6bSA?ttyQq6;-oq?>kO15`9(*b>cFh6@Vbz^@|u-58=G`W
z(-AEoN=q9$UXk)9gx!pMEy>gMywXx1+jd;qzVDy?Fh$tj`j+2v^Fwt9><KUeif|Q;
z{D=cnafM4nRFBI6jMGpkN*n1TA2r(S2Eq9o4Z>&`z#}s*cYK8r<x4k<<t7r|Cb5FF
zqDvb08`0v2%ZN-jNh_)07xhYhHwZNJ$Z(Rut(*%2Kp7w$!HNx^g0>4kpZ8sZ(z&QA
zug-#y&RlZ98?)w0m~uT(Ed*h%gds!s_)oa-;X^ZBRCL1j$z$fThoA`@>AFKvU39t+
z|M>^o)4$-E?YbMD*slKEo7&#nKcWV`w(ZmxgP(Wf_3e&58a2cjLTW>L@_LakxFKK7
zOiy^;<?9Doc*7tZM}jfD$GFky>1aGHS+L`kBF&7Icit%Qt4<H=g9=vV`8=8<%Ma)v
z6Nala+P&gS=eqHVU0M)4uOCU_ECelP>L|4h>Tqk8*g(V_Mi~+vb<Lrz98z+Yr@3fY
zK;*-!Pae3x?UgY&aQLW4G`qE3`f*y!+?ETYoD^*%Bt0<(3`i(s^kzYk@?r{v-s?53
zdO&=SXw>0j(v+!<S~rQ~*`wT1i4g=1<v;(_&$UapZEGLD{bOzKo=^K#Z`5AM(0y_g
zZ(WHssGI9kIx#xc&1CUJg<^7Uf7FgEDcgba;L(6^-7u_b5YjNDBJLZ=l?Y!U-hCiO
z2pB^dKjoG3vP*Az;)jluBWi_H!1VI#DHypbf=BhcK_K18*C~;tEARt>HAvWzK{0T6
zRKbe`aB!Y8fC%zde&`daO4{NG#AQ&CA_WGtx`v}v$&vBkGCusoD}mG4S4{b$4OgiP
z4j+Ag@2ziW|LC9mXuI<IC+Yi!z3s%YBdXM_e0oKw;3plOnZY33SU{r#vWt(`kSucX
zWZkH_HBZ(P>M$F1^jXYfl~VsKHu970OuIJemE|^l<izx1lj!jI;E7IjNON*_67Eum
zz4u5g>hUJx3O&)cX`Nw%=-3&^2*Xo2>EMBap8Dv+n!_1A&5!BL#oj|l+uipcZu|B5
z^aFasKz4TN>&M+X&G|B&^t@HOB+p7GN>+AD(*qi{ARg_)v7?auFvY=uZ4&({9TCMM
zBE|?KM!x9?b<iy3?{6C9|E(|mvi3F4dx1w}?|l1P#M5kHt^cS$!f{o=REf*DMBzD=
zNV94LPa(%kuBq^Kg#ieI5Jn=5Md73Hpv4eyMLGps+sLa2D{Y36kVV?3utY(GrP{mb
zElEW)rGeEl2U1sh%c4O{24OKeIoflEf`Fi1`k?}tikL+&6m6*-G-E3GbPfuTNo3id
z$a`o;Us%zHVT2QwGkiExzyXIGVrG{BU<<`3js3(MlZX;7AN}eg_Q3vq?Up}$cYEfS
zeO0^u<}Ylw={4j!y<2Dc!5sgLMg{1>)0TuZeylumV}6+k-#?2^FJdHM<Dj5M8Vs9x
z`ft_L;j}sq>j7uf;dwi;PE&}jEanM!slH5P^uU`7b_|}?G05!lWB9*yvtA#{IGmOt
z;7Iq&w&)y%O%H0`uhW!de5f#{B^-a|>5F`hHsci_zv^^Y#^t2HS>TIA?Jd~6PCrk-
zRX;$hGZgfCRbus{GGPq704jcB=Q5&vC<hGBrFsjpos*hmypBI~+S4V<fyG30p!8#k
zLHTG}q4L<cb$k17Kl?vm({A~IegsFSBE?sYRg=U-xG)`ZTL3CoF?3Q1lrssB=uQ@a
zXgAVG1T`AKz!|UlGR|-q0AL|?1?(_Pg$wgvei#E$xqQ&WzuTd5C>0#1cm`ObqpZq>
z-U(I0id^Pbx|IpLL2xv;G0@><T;~X<nWO%1L9nhYOgu|q#w1wBlGQ7uG7eGvG_jzE
zeB}!o;==EtMFn6C&NVS<MI~{)_g!yo*Wd7@cID%*(cXlox5J0t?Hze^&?R~db9W4a
zm^{K81EpbiB2RT15slvlM4N@shdDN*2K5jb2&M{}gR7(R%>f-B+rf{c@}0nTbu{w1
zQS*4_-^@e#aTktW<0=2}DGn^*vt)I09aVlvPw8zk23s|3=L|zyruP`gXmFYlM&XR6
z4P1;ASVM^EicV<O2<1{4I}F0^?OUuDxjL)-#YiP~I?|yzzTJjF8QLt}&~F>RzaV49
zbb<V0g!tfT4R2|b3q~~<1r|eDc>J$F^XhiZ6RvIhwE^ipzyEtOCQ&|A1Lfpfg$sz7
z0fN%hq_B$)@2o3|y3KeoHnr<nVPIc1ItZVP8E;=Dpgfpo83ec_4@L&ar_0lXC@*(*
zl{<1-Ljmr1g>k7-0R0Y!(wjg~Ew*zLt$KsU#JwAYRp}pdL?|~gp9@-@O{Ie(!-Yzp
z3>K>ROj#&Q_=R^>3W%YX10oPsjG&1sF=i+Zc+5D2N`)d?j=G~>!vKhr5L_sU|B#-b
zZ+gQoweNW8547Fa+|ZtI!#z4T@DCNI-F52BXK6TG`a7o%;qMIS=;|aa^m+AN@pN{K
z1L8f6P>7v<{vAe)gTk!XFR9_N=3t|sr#yW40LW(#c$A^jjy1ezE#ZQGGMx^431^U~
z)$#EV+k=m;(GSwf=&;~N=Zr?J?+Wy`<GdCZF<>-u<ZQ$^DYM9boYoGmxa?9-6^Liy
zkCB72>NSr|(&dDn`WP)_Eopp=LD{7>fDPIqx%dA4G6<)nTfA|B2h$d27>{Tb)OlCh
zmwe}Ux92id&>n}^{=#db0wkk4TKB<?4hG_>TV5Fw2-+Q#iXj#fIu(97kh=Vbzj)<H
z!SzXjQm-}y(9*4AEyhffPZ$M7g;;lfaI_sp2(@-#-(@|i<aSoNrLUyHt9*gzYZp(&
z2+!^*yy!A+6@yU3P$lDwF{41O)r?30d{#=oNC%uUOSFC6va))-lM-2kM))>KA~X%V
zfc`pHS3h+rju;bX8L0%UPT;68uKP4~c>C}Cdi(ls`u6t3XMAzH@ri%n#X?327f7QX
z!g_!g+{A{r5%8t6@G_C3*65&gc-8^jQ7lMr1T-3;V<Kmh($Qx41?u&hR`B+LFq?cf
z=<{bA716N|;*<_A;fag7yxQbF{~G;b5;Ez8?hG;(<cadK$)cgEQSpS{%<*g(AQ=LG
zL?t~g*XV#z3Hp$RDGZ|+wqS43BIq_5sE71x&9Tdpt;c$6ptT7M1cu<SHX)%CMhHXV
zKk<i72R0aY<CCA-{^iSGA?~fc{<XiT<JJy&s$qe~F5GB~z83HXiJR~aChRis2qELe
zqZ<Gv>fsSjIE{d(4mJj1JZ*7_r_0Mna5n}hk#b!jzClavOi@wq13XI<3{+j|DgeI1
zkrwe_BSnx;@I>p;N<<4eaSoL45LaCJK}t-dnee6+ef(uSd>1b(Y!1m|1zs85^;%Is
zl$bI)Wpa)W=py&kWLaiKD!t%9;jetrA&C2nKl|hMp<DmRjrSYA<vZHtyDv8$qd+;i
zvPFl^bb3D(1^G!TJjP(1hRfi+X-JKYH3hc(h9TjJtLcF{re8y9M8Ox18?|7^r^}aW
zI&k^Ut?lZ^ZEIIwwyo{d9G`Up)+*Qzjbw}xuls2*@stLq4vJ7Y48azyS?ti;gUfV?
zE7vxyRj?qqQ@<~{Lko(V1#gf%i~^gc$RFzmn>7X5tn~sm713FEYrseY+5DV6KW4*P
z29C18FjTpqzmm15-t@Hg#@~9IY2N?tceamy<U`r0(Jyp#WWTM1>ybks(+}kCv+z{F
zoxf8D4t$R*n(|d%wXT413*(SJamqi2gSaYRhk<AG(8e{&B8*c^YE^!e0+2C1kYt~s
zH;oWz^Dv_p%$YFUjO<>4tNKndV*qAlXZ{(5T%0}Kx?lLgCs^?WX0W;REC8WRX%w-m
z+~FfaI<qUlI#o&{C)d?gfG2b+WS=z*Ix7C#-~0xxB|M>BrR%M4ertQ)^S;JEQ-1D(
z=FNI+KBAZV9G=R7q8r_zHBw-ofjS|bpG8JK0cI}mh9Wh1+T)Nx-kD<Xbj5(M!N}(o
zGW}3y_!THd06f*{n1{8ykPS^_RA$S0g$)j$3nSp^gTyexumNG$qznl%Xuup>wtdS6
zeW$^`13re*^hd{*tWjP>;wStDy$|)e1cj<Jq~k|gczbYM-zpr{Z%6PeR5;o@ZzNdI
zWZHuKUHb8spZw`p>GvqNw~u`2&)S=Q{dGAqfS;4Cc+2d};=oP#De)XXOJb#>bB2Cl
zB#=FI+UmTEe$d3oz#nvx!7PW60-sWf((Bl+r=yXjC{KMArp^L`=8+1V-IT$AALG4b
zL*5O7+0)7^)(8qQr6g<+8o`V*@ts#-I1X+RuBeXhfrxQOB#0gt^Gi}s-vcC`6e&I<
zZsZ$6eD_WHaS@Oqr_Bs1a+CnA`WIvBSnN|HX5ozALG-9Wy^3Kr9hUWk|MlvhZ2$0O
zKiF>k+$Xj-{nqcazx~x;;iu?1ADRL)bs}Bt8e~O@j>G-~&-wL4<)a=x@<AXc7V)-$
zM#1764{~<tF+}&MLGhQU^RoA!512TeXe&=B{n6R!XeXFDhzD8pbU|sD3b6H=Zz4Q&
z7coB^!&9Gi4_+7YCWAx|Y3nkh5<aBjwJ2*B)k&Cwu-LhQk1$kf%!%R0q9UcaMlkyt
z9@HC-Q##ARuTh~B4f*s_RC;gKHwwS_`rm9%(FkFmPC<I@|9Z7j<KXh>j`|v}N-^RH
zmm9;zxlvc_AX9iczxBXR*d<(XGe3+1bX?J$2Y%v&Y%t{$X66D0S+uF{i!%CTrI^yf
zB+|iv^q;xw27!vEgLj6VR~A*tPd~Aya(GanckBhN#x$M10-e4SDB$oaJ}tS&I{=r!
zb+89UQKBjQgzgvxB6}S(5iNvFq0YwcKec8_R|ivX2JiREilYrEN=D&K``^FtbM1S7
z@L#u^Zo0X>@|FL+z4WEu<qk&2WC%$IgWi>@K)gMOU3(Y^QHeKC-*|25r@rNqhRz+G
zieWj8hmOaa3!Q8dhFfH$XRU(YSL8bfHYs65=<tjx==`2~$UrdU_nL${Hft7)43NRw
z4U7lMGOTC+0@DOWLp<H#zg8n0XyC1X8K3w@gUvQPE!k_pt56JpQral6*@|@y^1oFJ
zj%5t)-n*y$)GJ=@GZ*|j3zShh%6g@1hFqX^ilGe*!C*ErA7p`+`feXZVk2No7ztpA
zY%o^vSwG;9Je#$Ycb^kO@&T@V$`d-;YZ-$`H0S_vrisw}4nND8qb~||gJAI}SmebC
zg%XGI69K_ezY+!9c`U?F_@akja52UNMJ2xnGtg^q0Zty>b{1XvrRgF+#Otd3p+mt%
z3eL_Ey3s1c*E`8H+-KFC4n2(!WE3zIqN`~G{xNM(`k(*(KezAt$3NV@>BWCfhT*36
z!WTSWd-sn-TG8-(keWC6Y0n-5KKNl@Kd%Xq!Pe%jTEOG!PpQ#CZ7dYW8UxyUUqi;J
zj|tWsenaTuI2jQ-J%^d_lkFH5b_?1dU=$c#2<JTn3a{stpE^0y6v~Ow2?wHZ<T_iF
zSr0%TPEKO|V$Hdjnh<7+L2>caXUf8_P77^Az^hFntL)*csCMc09qo7C_70B>9@IAz
zKlfi>p--VtiT8Ah^0K;d1?5eV6_2m1_{y8(0w3iE^+*qZPSsHtSa*GcirC5n86}*)
zGcE{bx^-h<8l)0IYUGPfilPTt`_Ktj#sJ^HP3l-u&RuW|y@^@%!JcyGsVAr#1PZJa
znxY9!1y*?IQtd(sjEn_7(2;3TcWnzlB{O|6oRH#$>yk4*ULg`81h}LtpAJGnIGy|u
zD=5Q-hj%!b$fXy+cpu`;OgA$FNMoQNE8``t`>H?`@PVTEVs+oW`(zY;qJ7u*{z$v&
z=BKsae#_h1H@xVD{^|IKbhaQJ2Lr&T%SdK3(pmj%8rzv^5VZ#&TbbY6d+|?CUEbk)
zmm&I~qxze9P$uGIN1U+C<9T(tT|D`Kh#@_vH@SnWbH|gNr#r)covSEA;ZvMMcUI>d
z@Y8Ng6a2=3Q2@q5MX)5JBogHn$-3lwG@vIxQ<_Wk`ckT*g!4m?K>@}Nov;0z>)Y#o
z^^NUj9hkaz&z<dO|I2^WuP`09K~johsZ^0S2Qr)zooB?;7VMkIHE)=k<1%s4I$`1D
zyQBIEXuvVjz-0KVIz>7jpFp((I4TT^eo-_LM!$-S^yuicGe6>Nt&{?O#f|(&1_@l;
zS*=w_x<PPf5|J6th-vIpom?u1@~L+CHm70hAPYCZ3ruHV2Qo0g4i=1T+~^lUMs+LO
zX(B%zU%3-~B#E2=B#V%-a3{_dmzyfVWhI{vi#W*SVdbBZf*mbh^7)B%iiMGcTDy{w
zcBvhZQTUmk_&4oazw7(j%`ytV`P*-9FMHWb+ebe9VXrHQ)bnyWC?kRgJ>S=^LCw3F
zn{z}PE=B}=Qp@ipX{$0%Y7f(MN+FnH;6gOUML+4Jr!+lR>i{|GAPv(M-e&MiOI}P=
zB1Scwro_mH4v*nsJp{S2Ucnm;84Bsi$V1x|JX$%YwGNC99US9!M&C3rQs5QmMwOBO
z#EU;hH=*Mt?di|>{Pvc&ztand7=u^*>wm7b3Z0>-wB?iyJNw*p70v<UA|mdQ|B^ws
zoA3%pMDkG#k#f{z8CN5qOI@kXi#rjBh`-<jHMoFAqu?0vrWICiA(hoYkm6!wAet#6
zDGE`3ipe~{`>*5Z?cq?2j1O0Bt5uDw5z)XzLyHC06+=+c5q|8KA0tJ-n6|@`L*o@3
zKC(-P@EvD;Q=in`dZKH=*$gK93i>0ruF_3Di(Mf%e8Wk{6BL-v6W2sP#RXpvnWYaM
z<(Qs&ulea8Z};xo>otY9Xr%ChuYG|#9i4=^`(_<47CQrF3^WI4GZCAO(2<Tp^NMZG
zYD_XhbY$|!)1Udi0MW45A=VzKD~9$=4fud)i*^|D9RWjr=-JG~Xn<+T28~cQX!jyJ
z0qOKKN{)tS%QO0O6x(`@Fua3O`d}>Fa79OX(6~?O1SPJsyh)*P>so7__-s3H@FMCZ
z-}dd@7~G~$nSbnG{*caFIGGI-Pj#uk2pKdKIV5)B5~AwfX(b2IaYegungIus-agDP
z=|~IAZRVCCX0fXQbYJQYzlRM(8M;7Bv;5Z6WT3;#NoSa%D?bI#XbMoz2uDLB*HI|Z
zh^LO8csIJ}7`^i-UGFf2AL|9Ly2dmm!#K%ZgbUyO(%Cg?`Q)RnDPNJl2|v;IhT!~9
zd5BJ|PA*x|@k8edkACDk^aWqW6#YA_PFZ>8bLpRd<ty4>efZDXcD+`6-Rpj>{ih%Q
zan0Fv1Ulz1$|$g1m|tAxUA_8T4CTdxDFh$;(9!trp*JGYpa;Wyo;oo;&*n#Z<<D;)
z6wkT<XBc7#ykMwiKsl&O6H-zo5QGun%mU6jp!2fznl}#csn?&-k(O7U%ArR#hjnPm
zQT^T|dn$M;dXY2x5Q8X2OgohCpL_NHY(M*|*LY;`{&)Re`>`MWfo=>SuS-FPsXzav
z4{RK8T|pUXBYKKkgv|{WLwbi(o&|>%LU+2ZPw55XF*-`NT!h0wfQwR}{E4n&3UhJ4
zQ!fuh!j7Nw8OCE2Gu9pZE^5kvL~`I6v&66^kyNx}1=CW9H(a+xxbVSxfmo44>LF-+
z!Xa5e!c-!TAu$dZn!*>I5RRV`7T6Oe0*`VCXI=`1T*W9r`B)x#_DqVWBJ@RNBGJf)
zkuEO=Nr%No#}NFNfBu#2Szr0w_QG%c*7maR`M&lQ&;H8xWB=m&_5H*BK6ik(5NpMY
z4n@c1v|>6bImH;T35e`%)~-Z00kK^<oRE|UBLo{Il#vsTA7ojp5y!(UiVF4`0izt^
zl`qeF#Mj>vXz|d$7ojK&fDMk)tQWnk3JU<rAEN}VVMq=J;IK|;I;iWUMhGk(dQC!c
zyq4un!WtQsCqLzB?I-l1(#<+C`Lsp@zw+}x+b{_5z@@f5B$3uVy(n4%;EhYl9<PXA
z-lABJC*43}0b+t1!lZNED&T1!(RtCr`J?8+RSQsX6$ixvRV5x%xIbB7=u$M9w72(y
zGp%=8I*c~ql4JseC>%bbIzqu}Jt_l?0mDmlC}l{kOO28C9XI)+G;B^m6DmLyZc?c*
z1Aev0A{{EEP$*V~Z(Q*xTESLPaQQPj=S&#IlaxX=znM=8Vw2bCo2l^fZ4|n%QuEse
ztb@|ho7ARbm>fPMgc?%gFKI0SpC>2RAHL`Je4P6~_?{os>iW&?wQqiB`<2(cs{O}*
z|8jL!{qV|K{dR)%-lSpvX}yUcZOy;kc;TaX3<j?q*~6eEO3^XfnnpM1C&=^pS}3Hj
z7*Ti>Ls>|7E*1s&p;#YO!u|;ICf?RxFa}CV^%L=Ivt~gPqtJ9r+e7XC<EQnR^+|tF
zg%V6>C>K)j#p3t>^M9p%8Q-VW`suYh?`W^mn}oYQ{VC^xI&u4RJw;u082z&T<V9Ek
z%EtKe$!CQZ{1HEf#lZS-BShYCy;qn|$b>fJiH@-TR0F{RK3r;G;DQr4ag0XiIyZCO
zpx_>U!A36JilWd3m)|87f&3}1BSEDqmC4F0G&6%>wcOK55!rF8GKYjamk}Q5yW|zs
zi9#D_mIYVHgK1RADBhzLa7HM6+z{dV08u#m0Z@_Vlj&kbT)c`l6PdTzhOaaZL?=U>
zJEhXZ(3&|h4AdhsA@PLq31Yq3q!S|te9?2cvpmxF-*b2SZ~x(6Xr%Cx_Jv>i740S8
z{XIIk^#$!mf9RjK+x|ko52-)iByd<tIqRew`w7_g%V@z1eR^`!3H_mzI%0JeIz5{t
z*fhoBAgX%wpixD<S%}U{N3mhk*Nmfco`kTy&?to#P<;6I;+#HWI;qo|KE3~FeBLcu
z78KdYM4IRP-50k1^wa-C(}Nvm`@6sWhV~n;{RO{PEFE1Yl3(!3evDLzbElS3>Qgk*
z0%siYtnZLdj8?}3Ctb-<r1etm^m-(>D#`rdNVyORi^!D*pLF)!27twe%Z~O2zreeD
z5mddIgtSQ)q2vWF_36AUYha(S=}Zf!@iOD-MwHuP_*PfJkRN1|L7=hF!lIRlDitoc
zG62WUWT5XjNBcGk0x^SUz?5dyP^Zs8hl}w7zQ-%z@PeO(O+}KUs+Oscf<fdqi$!!U
z4yEWFKFfoJHP;VqMu~Xq04;AB!YIV3fVUDDg)$Bp3Ur|1KBO=Ce*G6;-ERG(_q7+k
z_}kmnPq?oAl6LF8|6T8Bum9y=Xn*?0AF!UhlV?t^MCQZW2(@k-0iO1(51<UA3uzob
z2`4>7Zdsn`tG?;XF$G|KA{G}J9XKBv^<2WpfnpF6!^afD95rn@FQW6_J;}nQGAfw;
z5(o72ZJgFbc~W+ao4!obpnvj1KhnPBS<e>K+U<Y&7wvUF|1)jRou4$#*r_brGOeuj
zCBFX=zQ|<*utNOB@Fm|Fw}#4&{L&w&XqL+sp;ZliZRp+kl}5g5+qwt0WR52t|6e$C
zw(EgHJT|`@gsvd@B8OxIrrc=RG+gs6A3Dg$GK33w)5a~*4G4lOA{S^9ggf++BpRAg
zGaj9wjBzF?qKc<-;U_+hN?6>HlPHG@wy#_F2?+9VQXQX860zaMngLHEmB|W?bJn;d
z(QxJt@6L~Zto_u>f24i+bDrOx^TKaz&;IJ?`ug)fxuw18l|R`&a_a}J3uRAT(H|ME
z_o2T!cT544Ck_4S46G%XUY*?8m)3N6o}6IhS$UsKgw8sPL7tzY%!2q789lw7+WBIS
zLM$Mn10$DXT14D`^pr*{&|jiMXP@0(`u#uLzUWK74CalEM!))+pK0%Z=i8-<3(@sJ
zsrPb6Xu=V6Oz0wnV|5EEv+dzt)^LCZdZ!uEbzDd(8Yc*LmT#sGNl*PF&+UakN`xza
z<kj(pAU6?&auGB6fgSIZ#Ec4g1H#=;uzk@&9|<BQE!UwT4J4%palUk0=7R&7t{ViN
z6xI3Ri}NCdwTKi5Hr{u1O4uCdaY<smD?A4}_E7`QXDKD>%C{35ACboEHu<4pz*%XO
zG>EE1mplm28K<y~ykK%gY_ALj!bZkCKK3ENPI!`IAaad>w-aF;h~tukl`hLAv91s-
ziLHI$oo{O&`oMeJvt$^a^|$|S`x{^M%=Vhsy`f<k-u%X2Yj1ng8}zxc4n0wiJ)x&E
zrw_58z^_12njx`%X+>iM6tisJ5}*V5iLVPqW&;xCgF!$K>q-8#Sjgz$VHPs=N|O_r
zeaMUA&Pb-GOw#$3jKPuP+NYpjhI;PTeN+3IuYYm-f-n9O=L19V?l-@&z4Le8s9#t*
z0ek5b@+2(sjm-KR<dcmR%dBWt@iBt>500zQjC@hUx>)0?bzxi|@Jj89ubEGH8wK$w
zpL%py1x;R~(S%R?nK|()iRBl<?GC<*K;#sk2w|!$p>aOSCl38bM;xyFfckwh2s|Pz
z)#{tTtSp7pBR;qh&t>~0REdu4nT2o0SLB3#%ps&v80E5vBTtH`sG_qktm{&V0-uFm
zjPP|uWx+YQ*o(AaNo%J7;V2FYT97)*BQgM;fPnDGou&lYXwY-G{L~&`XHf8%QB*mj
zoq=?wTi*Tl_N=dde)|$#7zVB%_*eg~y-Vi`{?_YX*Nz|ll;8Q&xf%YmXo!xi>epz2
zIWuyZN}%-;Qw;?uPa_n^Vr7gdz-n!Tk%b(pv9xF-Bjdsz3HU<Kn~=+&{DtlDU-i`X
z(!cfPZHqok!kv*Jc;DOK)ZX=$-)JXwqB6Qr2DtGadB;#`WTSX4&-c+cbv6uMGF^@s
zyNr*x#8=wnGx3Y^58e?T>mw8jt*l_)Lf@oU#rn@Ovh9EY)*o%j90Us)W$QSVr5mFt
zvQdUnP`NuEZ;(xRghz!GrtU^Jq#V&b481SiM!yKam0NBQ6cYm6Rm8z85;w%5GhECq
zX_G5OGrF0=Ghn3pOu_?y^IL&wp{ig7yV8n2{az8Kn+!o#?UWPIyCf(NT`}a9uSOno
z2Jrg#2mul*U!4o1q1x|%IrMfTlFagXnz(V4zA6q>^rhQFG7Rr~>u<DM-}Afe^Y!}=
zPk-jK+vQhZ+g|kIZ}D}%4rDoT?;Y*J!8_Wi19!Gd@}N_Fc%TjoYdV+K7jj*Ic1dS{
zgu_aNcR39DFw&8#EH0Qv2Q4X^>U3J4ATJxYZEstzy0LA!`bq85tDo35Zhu^_z&-j!
z>_7X1-)|p$-#h%;(F>vK>^vnsQlg-IWe#U@N5c@|ZVW~`@-x7T9e>eCERV0Ur)((b
z)TMGkJsTbPs;9}1Bu-|!fL)K&8WFl^1N4sQ6Yxqm1Vy+Ka==x5C0_1_wgY|<QE=wV
z#Xpc&a54y4VMK&@vLPo%k(q=mUXiQClMEMpBHZCc<P_aQrF%4*j$Rh9UMlp7ejq71
zREp7}Q@{-$m<sE@BMd?lE&|0HAFCc68w#Ghe1k}*k4Vx!+Q^_9lp6~=pr3U_9y*r3
zKzRk3>Daq)tA0!JL+^h_+qrvp`@*mIJMG4s|3=$=)iu6a`%0zK)A`8$cKW_gw=)kM
zYR3=kX{QeE(^o}W?9+y#HS0GbR{HDAgoicd;EjXwh8|3F47ef32S*!rUeVTX+toJi
ze0*E4j=%Mqr?hojcUn%}j_VYozr5wW?Jqv?o_7Cz`+equ%NjxA8J~uW8jwWbUAQ19
z1JTT${-nvWVKh+Tq^(V3kxuc;Xcp55=5NLa(Sfs8R!q9Np`avK*L>1h)!;Mm8jU&p
zB43#r{zAC-RA&?hBI^U09p#_^>C**8u!|HC(J5ShQ+%=wKAlIzLpokW8}7GAFc}0@
zh8u$LCD1-r-ANbm2|JT;O}G*l?3lO>Q3Lj3!Qi_x#bR7?FCpbSu>fES+xV4yM<_b{
zG7KGdkD-WExf1PpwOI;)U4Qb^kfY38ZdegtvKp>z_*YXHeCwt-33kpx4Qo?TZfptA
z0ZwQO^dG$WSKBRbdwsj&n(Ny&H$J&t`;=$2E3VTMd)HOI$o}KGrDOEqPA@)Zj_%j5
zGM$bXgi7YxEj!wJUF9}kc|!$f{<()9Z2Ry0c)RD$+uPnxe5~!?d#9!>`t1h4@u+;M
zER-8VWfauRJZyHm5liyJ$V0v_8-;`kCmib>Ii(mn|KgK>f`fGyR|k;hE9F(DtcGu3
zqK*lnJ8<xcd__1}LL(A%w=qvYk*?3+k_8;K3+s!zkvcShOSp;ysxbZ>0D*H%1cy5&
zs@xPB_92h~H#kw1;P9zXT=^L<r14#o1-#SDZ^37dn?s{&W6VnUDNDgOxer39D712F
z@@J5W3w*_AM9%>9NfPOWpp!=%PF<K9<j6p8=(7H4I8lx>U)*Lef(N?AhGf~6iJrwf
z0_Ia4B0CFD;3Eh2wc|Rl^b@zf&)+Lt^*K*!mtXrt{Y3q)wq^UScIob`^s$nTS|2+2
zrpvE0|3|x>*Y7+YKX`9D^}ykFQby?RkAJuwyyq@=ehk1leW@ueXL&>?$}D{Hz*`F8
z+>R(i$^gk#7S;J<-JnJb?%<VQ%FKDjpUaz<FY<z~0-+ms2QytrHeII`4re%mx>vn-
z1QaV=#DnJ^egfHUgrhu&OJfK$I!DhC0YHxKWkbQv(+1@H5lr#bV?p`SEqw05&pZdl
z(+I(pWxC*p{sGDl1{17^ig(lyU-(Shz18rYfI#puY6#Bo%Oj0hcC)f2bnd&tR*M%S
z;%kHe->Qr-3eiB~-8*p@f%2mh#QYV!Istzo=zoOs%7li?DA0l8?LB(L6@e*Tq(@eE
zB6Sjt|Fe^Xe`w#G?b!Z3v3pVL0RDAl{nYw483qrxm1OI#D>Z%44?N0MaX)nOSUYp#
zn5GgO+@fvB`#$A$02U5e3$Ow3qJ$syQcx*bY(Q^^ft7a_Tea}uvZ*MShoYS!iv^II
z@(~N5H4>1oe4(%L-59_(aYK1dMnduRH^w_GkuF$QS}Kuhq+ZjbhUhGJH3<I=JUW}8
za_Z`Y=7=B~l6^{;6qB1n;780D78{CnK*0?MsyMq}7s9cTlcG&jcmr|>4m%ZTRC4gM
zT;1#!EU_~<<7orIFyoC6%A$vFPi$cEHma1Q<{S9pGp{J<O7fha=~a4_Ito(Qh*)`q
z&`Ud{jRv7ABMd2Al~*!OLnkbZcb*}F&ftrNM8l2u_hkfD@@K|C^cs6aI*Euz2w(Wg
z_meR?MDSk-Q;+VP6CRi+>jnMJ!UG5Ps&mDH+==_{Hs2_{Fmz0bc#VlMzz75{XE4K+
zKm5!a9o37F1FZB`gFJA#tW;zaqW%?aNB+o|pZwy}rv^P7+p1@HG3y4xvLk;}c~Dk)
zQGz{;DA!ih8QID>g+d{4ggY4J(jy%R9!hNL?nlaK5k!$k`QD%eZRR;}Fj5)e*+Hm)
z=)e+;*a$;X$qA2+^0lZ)6nsPgt}f`a==(^+Ft@?YMhKByv8fvY>zD}$PjMmFWs<7S
z<1-^hCW95dRA{c3m@gm}6z{q&@?4Y`3W{Gw41VaVdjyhGz-S*DEa;I%OlR<utvUsr
z&N^dQm4<j^EnZj=#YeTvR~n}yEwt*aA)@Gtg*2j5iN+0oamZX9!+JyqQLhod45uE^
zX-2&=+ffLTo%yvsiW6yE=tmg8E)=RTKC+Y_+mZAU1=+|(G8jPUKd|H}^_)6Bh9EXh
z5jWv8tTZv55G(<;cHr_`EE|O5kb_s@gcHQ;**7rU%5W%&tEu>ePn`rlj5~Zr3UUe@
zIW}7oEOQgCQb00>7n2MeCqg6Z@fkcpMb$<M!p3!caP9`dIT9|C=Utvd_7`xSw$i8p
zz%$6?^#ItJ%b3Ka;-Tk27yLR}IUpTyq^}GIJmEz%6D`2-<VRgh@M3%@;Y2AhFd;o-
zY2|z;;KcBvQ7l}<f?M=aAZbw!8jMRA!IDc%$r26Gq@l56G=!j|;5(dt!K?d`7Wp9{
ze9Dg!jk43LMz$xKry|_xQ$MF8P4Q8^lu<;V92u1Fq_FTM-4&1e{y0lG^C9m-MyFrd
z5ZEY?XRb6J^AQ1Y;-8oKT1SM)p}=EyDh>A-{EH=uTul^`FMyUhit8-U2WPfHMVSXy
zj|dYAA`kitIFmrs83nE*DsJ>iZ!$?xr4p{>&Kj@~aaGLXqGDG~)TR6o98gvma&!nu
zVrtkJun9+S@m^G@;xH{|(o4YrI$g$hSn-4_$%Gfb0xVR3;m7KeXk<XRw5d4BRwv+T
z;L5W==oZr@uHwrVT{Icp6K7svIg5;3DZf-B(Q!eG2oTXR>}ThQ&bz#`h&c30MtrI~
zO;M`Rh{R5?<gy_Ne(}pmq*vH~WfVfcFcgF*e2jKLN%tZX2g1CPWoRJo9w#A^Tq;)d
z@#L@0&gfvA7F5_qgZw++QGPDN%pcrv1|tOI5I1Syiz%La1BBp!FXH0ul1d?y6`%4u
z<IW@U6|xBj|F{dQ0Ab}IQlwYOJ6$5WdJA;PwvrA0)Ml--Vv48p0$hk8RUaW>ZE=>T
z8;VYaI^qW+rvQ$u1?a>T^BMT!G0UvrnZh$bd>7$C)Qr!dPgZ{PEYUB*r9h_dl?EN9
zS9}$$h8#$jR`3&T{Y3$iNS9@WUk$jPX1#;5<(a2#X2mJ<7Rjj-E;`_36bOf`m3(;8
zq2odqbT0!0Tn=M^djvgVhlS__3lERz;hCOvDCH~SYU&fZN(#}LjCBimdb1WX@}jIF
zFACWx#0X&;Eu^6kBY4E90DtAnLY*h^9UXO6LM<IQke$+s2YxaD(4?}R9|*Z(m?TCy
zVoG8W#wq_3V3x>DP7x?Y%r_WCe2);_ELBPyX-5=gE+>BYC2KMW!Pk0avThKfAQPJf
zGqjb6D7`8^$yK90<bc2lGlhtoL%^YCbTB9aR&@giS{){4;un;Lr(5tyIMfzU@r%Bx
zC#J<e>IY&lsgIcTMhQdnf&pQG;VL-O5KmguIZUS&U&3@;jDo=^1xOv|4nf*@LPkdl
z!%!V1dZ0>GH170+9C$>>rqokDDyOUV8b*Mg%(EQY=+$9ZP;B`XZxzH<q!dw+c&#9f
z0rPws=d_@R;LyWQe0O?ve7zN^54B>XkfQ~@qo52J9Z&`c6U;UJiK9^AdY}-lJ?E2K
z>eC}LFm{llrFFR@3DI$4;c%tHPh6t9C-j1&T%*-5k8`P*epws>DYJ{Zpn*TmN$?Go
z&Y2I#SIjtNFfk1##aZSgxbWd8eu`FV0W&zIkI2P%>oF-4DJ}v#{S;55o1md^O*aXP
z1|qod<s)!vJ@arz!Jn$LE06RPgc-_Deq|tx5Z{8`SQAEG8H0!qV-SrSzUqW}LVK}M
z@+<`rG<wpG9YP($J&=yE$`uA6;>$>c(XrCvA3lwTEIEsnPa7w)NgO;-$jW3GSQov%
z)(!xb1^Ox5ompYm7ZQR&C^B1THPYZm-f|?sD1q(OGowIU8U_2TH)L64c~+U4UzC~@
z4=1TvgY!`75>(Q!sJf1H8m_K(G6X@;x4`9n#1I}~l}1n*$!)<X6tVI&UzAMd-7CV5
z2-Y1Pd5In|=}=|vJSpku7pH|0LMogdg<CQ#LN`ZIxw!Otpu?p^HMby#zW603nT%MN
zs1iCsz#X*EDRvQW6-qyI(yd_m^LRsDeFqZNB`gnwNO+nr3C1g;r+d+<cPLkM4(Q7m
zxZ~5=h$afBPS#&z0-8m1fB>M^rF1cup8ReY%rI!m5HMo!)M3;c)#YO0iE__BuaO8(
z8mFtYig$KZFzA_Ay*9Akh$UKlxiALo?1Z*nJN9B#Ty*9z2%ain5YhmIanRca83<pD
z4(cNRTpq!MFlv~;MTb0J?%+|r&?uCoT_blC$0hAFGEm-UILb}wjI#$rJJ1ylOyUbj
zI&>wdVwju|F5?NaEChd&^mNHD2m>fo_Z1*)o$VJKskl!Dp$cY@LPHq!Ea?`Yh~=4?
zQHREptmUCjo&lF4WC_!%aJ_UAUW^Ya-8;j?2riWUf(K*;oni(EvnVgw8eMVVDjmKq
zYH7R@S5L9(0MTn`;7W!uknf7t%^fW{2dm)u=pzI=Fg-GS8w1I&H3T|9bb{d5b0HAf
zz^KAX24T~SA5{?3n(FPOuke^%rAV~ANUysW6lD~~#)yvOE&S-*9vR3O)Dds7mM|C#
zjDZCB%2AV<1S6Q~3K#lI2WM=tGZTv|e+r5+Vw8@w{X&1|0iILZWN!wb3oa7V3h2JM
zho;b=vEv-j%|1ltKw!Z^fQ$I$R8xG#+1Cx<veFOOu`rwr0-Yb%?+)k|2*(*1;4&Dn
zi{#OWCO#5A&?l3XJu{g{S<Th(bJA6cZc%vYC%mHugO{*n!n@ayfiA7${X|vffCINE
zt0$QUvbV&Ol@5U}d0DCKO<8Ld1>HmoO<j@JPjQGnGLT*hN1cL0&$`sPBlE_Wa+QzC
zhn~Dex+pNx@)y$_*R2-`AQYu9Q7R&)3Y4#&-xzjvBn)75&Xj6>L;si(Wykjjp^QL|
z7Fa*f6@~zVKzWoOa=4?D_39auT<O(2b%xn^h4^|~<g#^s$u&uaG&TYQJjSgO7Ke~)
zo@NQguKW>jQILe{f&hPTg`y~{Mk2IG3T3zobw2}A*&^_9u9FB(1|eWdD2NG+I?*tI
z;ZX%Y!QdC^7Zpv37xhA-iax1ILV(DqQ20fk=vBQ+S3ZQRg(oJ~LO0|Rc0n3;%tV->
zG7`ZX{&CGZGq~OnXwaQ3xUi5%t5D4og$o*$uL6C9(4UmhmT{n?4wv;tcRDf`9fnDZ
z2ieLGX+s7XbRGqUACsF%mpD4KWucU)NSi(e4j5fclF^IP1)sNo0J};Md1Exdbf8Zg
zaxI~7-IoB2fdz&V84j-85z*^QfIB!HTYr3`DlrO)kBL<>F62nZ-JK-Up)>n3Vmr59
zH!JK5eluf%oZvC@tqgG$KxoiL2tXIgK!Yx(wRW9k9v~-~WF9d<(QZLN8#h=-T8jW(
z0fnb2Ll#JgAT@4cXkCp79NphSOgG*#6Bo<NNWLtLvL#KCrI&<-JnnPmE9;SrO*+zN
zScwS5Q`CV>5QR16Jqr(#q#!^U#-(yl$LeuKv&=_YcIxt#H_IoFtip+p_aRuZ(9hWy
zj9-SuogolPr<Tp-UWlK><WAv-bvd12$~BBZbaoLyWrzOb#fQ)2oX+FvgZM<fq;Gjj
zG>i~B197FRkvBRFoG2_C1BIvdhxE`BLs#D{%%=&pn252+yi}eBzvnwd_1w7eOJMn7
zkfaL-zgRRk{bL+66(!+LVqT#)Fr$j%vzqVBkwN|YGS>kFkL!L05KmBfG7tNS0<8;Y
z65XjeClLZt8)j2Xx8&SK5di1B*`LFt>;?fs3+R5Su!x_-Fe$-=|8KZQ<M&wOBL`DH
z7InKAAL6Rvx_*V|jexinm=%uds?OumqQ-Q^Qz*i8;F>nLLo;#5@uY<jWZ}8OofaI1
zLk6IH_|(-$2XsN<qbuTvA%NqO8orGLvgD9~v+fu+1!4^${K|`cc&1X}i`eqTKzcg}
z3eXpgHaK`OQDK*%;zFRPvRrJmx={!tz`|lIAf_(?0jHnk3OgKm@TFVSS;)f(c*<ha
zW>SfT2j7iI2W195ad9VoFu{)z0=!~mV8bBefWNYli1d>V6C6TPN(n2$6dJhhqk~iU
zR#8Pzut^H&i6dRb*-utu9e{UUGj1{nl>%i3hvg)SvbV3W3$fE=f=Um*GSq24gMj!1
zt5RfSEIz5v#Bm`W5+au+7h<N@B0T4#>UX1p6%|`9+ldR&1uH}qFk}O1B%$CeID9w!
z>;%yn)S>BuF@~K9a|+b-g+YN8evJgm??go`J*q3teLB0@=#F1`3%$v88G^`*pYoE~
z`4L7DU+6AphDr$<mHHnh35hOE3xj{jj0EIoxNPhuLogpLs1qk`$hTmz!Jj+zRohn9
zHL9NI*uWSEZ@0F>!6Ql|G=-BpNv53}1dITNVKfwT86_`x6fc<if4Wf^=?G?Sj9Cq)
zBu9;baixDUPpqSc@{U;Rr6`I5m!8AjAoPgRq<lr7K!K<Oj2jt^Fb_GyMHt|t-xnEX
zijMAqi?cErw?+AtzVM51$xFOF-J$@gbix5o;V6fqg+&!~SHPVIeIz(98a7XH8m6oP
zsdVAwr+#?8>L$OB3>YbtVIaN2<A{KITD)qyfKjz1bSdY2h3;sAR&hlW^t6GIhwvot
zK5B4j>JZ#$A5c#|i;8qAQoG!c34@_5s-t7<`WiwR2bU9N#Z!H`QLrwOH`NJp;zDjk
zEHO=x^Zp3R%ty<i$JDCHEy|6ZdE%9ZKn5k&5QY(h<g7GWKsG9b4|nttypl7X8znjU
zQz&98smT*?*$;$c93+MlX&sD<8nb@MryGQhoa^Gk3ff3K=$R}QMJIZhm+4n64JDYd
znt%xDKB1Oz9}z2)7535fsIr&}PNEU-OV}O`l{!ooh;vrx@Mu-?<PRNyr>u<vBLkjT
zJ#(ZEN6JiMTEZaQG13nL49dhmrVhx5YhA&UE@3v@r66Hk=)962>kTnd5Md}W_rd86
zK<Fl80O%<MYYAF|P@$lqJC=RjaLH>j2GU36fkCLL!W0giB9t!jJ856J81$FS>d5#u
z42aCK4ns^?X4+!m;-}^n;D6u)k6KKOuwWa9m5c#tB{0*I-2@2+5TV%}ny4`pLW{^{
z;R}WaH&Yu#5EAMxC<SJ~d7Hq{GpQ$oP|3*!h17io1@hFlFRosl7JZeaGd{wdR|V#N
zWumZM;X+KBcgz@APCv#@;nJ&@nxj;t(NmX|X6Ks;3mzNAEG&MILgy>PlLnPj{J5yz
z7#S!HZCee>Tl?Hoh3HCG3i(PJokspRGH~Z`q<J#Zh^~h$!pIud4^oF{RM3PB{16+>
zj4*1&2qAIsf-d!U5yB!wIkrIZ2=x*x^ODc{0sKhKe@F&aNbxg+0KE-DEheVV=wN}i
z(!vQx-H;L2kzgAEXNDzG!SH4DqKt(h2-&3VN<lAYUg@KI@UE#s_&%go^f84<T**(r
z^bv=y7dX500?@q*W{9R70f~xwi^xjqBr~9Mn*xe25+l)#fD=nX=_6D(2%q=Vn@l^=
zm3EV!#bAo*Nj{^%V)~h~ozu$L9{tx24AO_-j9nH`X%JvQ(J)-SQNa|hFX4I^Tr>~`
z7Vr~{%;1;2sV32vEA`Y5<Y>IUXU9;O4pR7`v)E<~a3r77M?D6wl2sa5g}CXCu0y^=
zTzT{pQa#1-rknEB%cIiE&wu+Rv-BWilaA;~M#E=};e2|*F>!S4jJNS{c%qv|P)VP(
z2oWZDTL~k&I<r951LYDy7X;aG8ITd<b@Ly9|DiBZ(nZ)Prv?s)`{<;NT--y~iVZz`
ze1I95^iDd2E9nY;<VO)I7rTxSN|l#6SRv(SQJ*b=&z8XdPbKhjMhGwe|0&0x&Fg1N
j;Ik#LatUbE^>6<VFV=3zTbH@600000NkvXXu0mjf;yrcQ

literal 0
HcmV?d00001

diff --git a/oxAuth/Server/src/main/webapp/auth/bioid/images/tooclose.png b/oxAuth/Server/src/main/webapp/auth/bioid/images/tooclose.png
new file mode 100644
index 0000000000000000000000000000000000000000..b25b4f112d6164a92c606116e44a7b939575ac01
GIT binary patch
literal 49740
zcmV)CK*GO?P)<h;3K|Lk000e1NJLTq009I5004~$1^@s6QNRSQ00001b5ch_0Itp)
z=>Px#IAvH#W=%~1DgXcg2mk?xX#fNO00031000^Q000000-yo_1ONa40RR921fT-|
z1ONa40RR91jQ{`u0JQ+PIsgDb07*naRCodGy=S;)*;U`UZ%%cq>Q?NW)JYPpKn4*c
zVMLG!A`J{k$R2`V2!m|~#u%Q*<6-c8(&N#9J;pN+Mu2R?AS0p)5-0+ag}Pg@yVXG*
ztGaU4&G)`{{=fg)>xB2dx4OC|zG>fk&fa_Nwbx!dtaa87=e%P(a^-XGb1m?>7WiBX
zs0GG9*9xC&fzP$T=UO0JU@`;m|HHSIF-6988`o`YY|LSN;PMQ^9~T54N4kCA125tg
zUh!&jlTVllx~!k}%T5VH27?Az_&a5w$Y3DYU?6``wmbgT_MmKSZ<npDdTnnxyt%nm
zHnz43{^r)E{f!#NcbK?g=|e+d)7vWB@+k|Sa(Bc7zBu!Ly+wPfjmF2v%Y^(1`I8f4
zWolwv*F>3`jB9#ovP@4+lo|U|)t|IKGo|=6>8&65Q)PN`vP>z@r2U{ZDY_HgOJ$C$
zJa}-w*8UwEBOc8ky-aviJF9Ko&Z?){)a^|D>*Y39INF&ujW)}++}PZ7o37(;Y!&?V
z>Vvah+dTaZ^_Tlc{^nNgL$@{kyAyrvF;Gfv@u-ByWwdqFGwa>9$E4buw!x?EX}7$Z
zcC4@|^+%?KAMuF^^0YK3)VB01?VIiFaBXkPkQ$n%w!A3Nw0Cwut--LzSjP<;@*e*k
zcuy`8uFSyIWR1K;Jm8GkO#jZ;y^&)27J_-(Q%-Azu27Io{qOl!+e)RhA&MmChU69j
zLnBHf1X!UOcBp|vpur&wQE=^L44eo%S+}Nd8zCb_?baC#R=C7RT;ml6j)GDqeY}k0
zM>y~(4*cvPB2AgF&~e~4&XsIpO@LZ;Yt{`nNCaFc1)GB=Da&Y+;V1a(`HHkSNiJ&<
zb%?g8Fw>}XYH9tF1DO5ddYF0o`MF&5arATKk2t_Sy-s^|8mo^J<EOIIwr>Z&X~129
zVWf;-&WFdAUq^P)-3@3ggxyKc1gX8#MWc7@Mx`~0iS!J9#UG<q&w#3AQ2J<X2Xq_8
zodjkDg5|u~$&Lrq_k=r3;_fPJH-n6Hxe$OH?D#RzyM8O+Dd>H_o8IKJ_;+YgR_CJZ
zbbG-wz3bB~Bb^&*WQu`}U{@|eAtA{8!JGaRNFOVc`6_W+oauuj#88|O4%*HsfEa;b
z>qYs#w>SEE%#~4}Ri8|KA!Qg0!>%muLF3|T!<dfQYG_iAQH~t73i1^*pyCpit6nD*
z5Lcy#k(k52k)HLfT|;PiZvrCL4R>e**40aGB2A!^;WG@H<dxB-S!gsjoFkMSfsA?(
z2$py;DB66zK?0sBa3_$l8V_j2su6i`8<+0!A92FI5RfYP8vVfHsb66=En%&Y1a8o%
zWi<36&Rw7=r)6pHP`@gHCs?+F8(>uKXbP9rO?KG;GGJzdtKd89kaeZ*!EY!(!qlPS
zITZ9N)alTth}KnxD#MO(lgqlazNQ=M%bq!n30=)-@FG3?zeB^l&G_kDQA!;jjx^~J
zGZUTk%2<=Qcfdn#D7jy^4q5P=IF#WEqgP-d^qV~Bwy>@iG*q`ptvJ<d_!*85b!mf_
zft}2-M+4T%H*L^COBf9rR}IjibY}VncRIJtkQtlKHBH~dU?*R)%Yemk_oZ9-4DR-7
zpMW6@DfnIAVIk(4P6!F~S~@MwEGPULYdm=M1v4WY?QvOG+a!fx7jBon%W$ou?m`Zp
zt53Ys7X5IfWji$a8U>*zKcrP&^%}p=Q!v!<oBUNj;h(9WWj1ugSca+BXeTB-u7#U8
zd$fOo(~nLRRqBCP{fK?$_r^l#vreoJiK6y`x7ed{edcWLL19E=0J5Nyh1Sy5g*gnk
zO|BgXYIbImwUVfCD7y#94UO<?#9sH7eeD6S1mf)#Lfs5}C1g1Lzy&X#ppmDcku>q?
zFA@l4P_dEDm9HtCDkSdicIegAXl{liF@gq3aDz*J;4#AZ874jA)H^R=Z98;up;2i<
zO#izayt#^%FUNIj>(viq36R$HGweJ=mcw3jTwE>FOi{30gHPCi>en#d<z1JkFq>!-
zaCVBTMOJd8w>Zg1O>Dew6JCLZpnTmNBgr(t8ra=Y(T&4+yW?3@TaDc~T}V^qUVvuc
zFPbA7g2w6(1jj38;CIp!-sB;F_ac%7bUEsW8L-qT2R-fJKM!Vws-J^@m#@5@V<&#*
z$A`Flt_&%1c?ZuR<EX+FuF+8WwjFC`H-IU%w``LNNzRf#;v@gEevMC?rS%jwbUyLx
zHWNS4q_~mJ^-P|d-W7iRYw8m?sQ}U+IaY@9baBiB>HH-gby3(A=`dMY6DCQzJ5Uj-
zMGT$3i#X)$+CU%eGmJGB!bm#VizL!J-MC?+a)I>s<$?j)B-^E1Qo`L<ie%@26Jhzl
zo2%1#0*-_`XXbD58=50IQEF`~2648XLAqJ!1>da<0(Dp^B%Zq<$>F!fz>XcTblq^k
zY75nh(k7$WZv{W=I})w7SJRkT?B0H5xUC0m&=GotX|EV+4n-RYmTL@d3zdN1xK7Ya
zxl+M<aGv!T^8Mu3R;v5Hla}iU-cDxAHLhKF!}(x{CQetIcQ{`pcM&tgXrJ!tJMr2D
z5HTR2qz++pu{&WJ&W+x{Iu=5=Rh#rZ0v+6L$0W9s17|pyZhm&ISM^@jZb~$OAQgyL
z$Gtl|Bg37uSDYtB_e#7hAmTlCdJ$@wHH|O>y$<p^z+;eCIBA!=l*fM+CpuD;YeCiP
z@!*IX0%iz+)o}uiv=BgbLuO{Rt_MGD+7Bl+V?wXyOnB>8{<9uRFwa@%gbN5}qX57I
zmi49{#PQM>4&^p3BT8@iO}?+tPo>b*cdvYup^|+Ghri4tCdYW<>%Zs70Q1JKiOI7G
zImua|hjSSfVs8j97%*leKgWAVA&3IJxs_{J0E04GV@9d<P*UIR1@B}1y~NxnqD+T$
zddWe9=l})sO7n0pKglFMjUKS<rYI(2lo{3PHbJzX+OYy-VAIT1Km>OPADFM&4GpXt
zuVpx2<Q;BI3rppto91@u0L)W&z}7sj?@(Jc_3pIaFw6}AP_A3NSoO&14JOwu;PAnP
z62Ll2MVXdTuU()eJZMo*)07XWEi-x~(n$%I{g{5E@Y51VUlzfRt%C7pT_N*?ud;gW
zz_{Q7o~6kro=U;sNX&&qa|Wnov6J~S!CFT3TyKYW0s1tum_%#Jt<w~+`wF3xpUgoZ
z$#fDO+#BwcCb<a&fuZOy)h3=?)BC+vZZI4G&8WRVz_Nq7ou{tW>9*{^Tu6#7DDYA_
zbn|pOo1x}E;R1I_@*Gsm`^xqaa|hgzRs5q-NvKz&3<Mbcm#F>Jgk}-=eOH-+G4o1(
zIp5?1c80ijgHf-F6WLwY-EBe}MBRt|Cc%W;TU+&7AN8;Q@O_EJ#!m%NallOc%6-zK
zPr_vdYyDjJ=&RBEM_Ts#u)lYntT*LSdi+IO2TdR&Ed&^)-Q+cE2*B)ufAZQ@FR*pb
zc$1ufK+kM7_N={DA++r%BH7H9o}+XI6==)ohJg;{Y7sw!5HwSxwym+7AkE@SHxFnA
zLi5*6i}dJt!VzzM<uWYc8Sg6#rMg597>D7B5~Cf6rOPIB`w7_kwM{+HD_qD<@A$(F
z3%%}@<)k0=&RF%`9ty)C4*E4bHZiRu$(zw`N^<*Ezb_D^buZecf4Kl7QAl-JCVqxV
zq7r!U()gV=5j4`mxAh>rf$;_F5F>w(=B^k#;6$L|QPC#c;d@vK_$a*6d%mU+;3Y0}
zqQrjvJK(5PEmNKxTyj^QS_cE3!>!gXawaRobauhp^1G;ATCGB;7-WfT-7Lf5#E6a>
zPNfqPBLf{s51kJ0Iya~Q36F;FV)Vn{N1lG|9dp`nht)Wp!k-tGI=+Ze=5Xha8c61?
z7Mpw~-+eBlO{r>Bm)3|Du`ggkx_%#;d6RO#z6ou78f9XtOzb~grWOyCv8fq_kCm~>
z=`y}>utB?AV6c3y>}+k6t@9_#_S&Vgy?Ut(E}WL~SlcC7YD&uo#l}TD0!u)@q;5TX
z;cN^1ZaCXZK>uNi6Bd1;x%l)|vLM9dNEhB-{g?0*^v17i2#rz@oy6_?QN^bI3iQ*X
z{9q>TEqCAspVYNY%`o)>TdsPYz~$kQ`mFCgh0ySnWZ<#~BvN5*4UFBO4Z)MtXUES{
zn$~H^0*SHLc1Skoa0dn6?rB0Z7??vcpA_Qg0TE@<Nl7~x0iY0VKp`XBg5ey_Ax9Ld
zz)Y(sSK!q$g*h>|ugo2}uFM|3rc58Y+VLwOV4+7*47*eu69<m<l28n5Cm$*6rynn?
zr=C#$m8KoCJs8LljwYd5(sk=N9HvcZi}2fUt}B4wq^k^sowf$vEyHEiK7fzJYxon4
zFnvB=9}4l3TJ-xc-m{8lMXOI<JD8O7G=laK?-djYpY3}R&xUE@O~55)j7UczbirND
z_JSu)C%p#k(NS_uYLnJLl0e_j<ZQ&zUG2_~dUDs5m5vx=#8(FB_!M||ZVm#$iD#M>
zfYOYgPl<{%YEU%H3&#%r!B_n|EH!8uaPtTk^sI8G;qL`+a3HR0a(;g~a>wVF`D53Y
znFB|fWCA?hw=bS4gVl>=XZd{DJ}cqfTrb-fP6lt2Gh%gHh<Zy;Z}^Sr?K}l^$(K@`
z*mtmu&o0WMSdzc5jOm&<aMX%s;l>vhF5LS0Q{}=VA1@akyT5FnKkN3SIpQJ!GZo+*
z)DIyhq1F}Q@I^cp7JG|~T|A|GzLTDO$lIk)1L8=aFXUgzwQHPQVLnm!UzXV|%gV?J
zd4oxq#tVkiQUGk%RH(-P-aHBn9w?$w2<C$uBQ-BD<P3HvM1&4YR3lWRz-u6%odE1q
zv&xHsJ*u@a1tXMK)-O7x!j(uHb7iMDO2C~SulSND;Z3+IhK8Q;8353Wfd*UDA7IQ6
ziR^aWHZuNhl-&>)RKW^QOwW|Vw>-Zbf58`(xuy2$ZS(%@Q)QrQ6JJU|CXRU2OTvRK
z5m1Rz0Au4*3JbouCeWl_*`<v|n0JY}3BUoBor|Z-*7AiicIL?#w?Y{ommu#uRK~GD
zGzA$yc-)HU=!?Fxa4nyBw4DCbz2)>npD1N>SwwoG0#yoWT((Es7AOYsqgy-9fK|A1
zIvpP>;6jo}mo)VeqCpCiKl^If&+*X0qs_YGpiPVZjyTn;^~28#zB&#JT&~&Vnpkk>
zT6C~K^I%f!Hb<9grn@1<8>%^7qYx61ev2YVFVe@Lb6TfJjfXcJ7iLZG<!K`^Fcr^6
zV?YhNE~E_;il%o+H?p>!L|R|iNoy<utb()*fY+<ZKTJ>QPIIYrc9cyc@2cW(1v+tX
zyH_V^D7aJR77vzNzT|7lRd>FmN#lvX`P4&Y^T`K1*C#=nWg@C4zSa<Scqboapfv=Z
z`a1*8Jt|%NmPsiFI#Az5uo5GEY|6@j!#F6DF+Zl!7|N$_M}W7pa;^+6oh@5~du4@e
zmWiX+m+>Pvl*ywvl!fEh`?~fEUs+Cm^26ovyWd|n&Yh0(C{zC~J8MuYZ#G~>@KzBh
zOnU<FUf?*cG-x^x`GULw+-e#r^i}$8pVmH9+Au7Y!R~P|j2p!S7q#RedVB6Pz+%l(
zRhIzNVw6kFQE8t&*q#c3BC<1F937Bd1<yl#lh${`@qX&FiVc%;qjegn2Hod$M)Ma9
z4m_^t%<SahPVb#avsJ*yKw2e|`GyA%#9_f~QV^kh9PDbBXHj!V>6$-qs678GURADp
z;TJTSQ2?7yJ}71IsamiERszmPPxR#yX$1+lJ_tj8EClnWC;!-_gr9Wy)Xu`#^sEIR
zB0C5@N@1IV5k%pOfN82eJNmE-FlicH)LBYH9}C&WBGG!n`lmirCYG)$Q&-<sCS^ff
zeb<-zdh+8RDxZ4apOy<}Pr**(;3+SFIlc@-5%8x-_=IabVesa^mMVF1ErhUQq4At!
zxc@TVj0g9<a?!87E1C`3aX}f{aW%N+VCV))WiE$?SsFt7Y(}#!)I{N6S}yr;B^1wO
z(uNcQ&D%#9j*+Q#T~dNNT49Z+Kn;_x6Ku(JLXBkrjE3IBF%)d-Bu-YgX3NgmONeuK
zp{E2y%L*VZg{l<dkctEaVG&MT%{T}SlMfBr7$mAGJOR(NJ?hd2JCkWF96VHB{K{9C
zn_u+B4a&x&pD3%J{A;ZVoV5kuc|QW`a(MECnq^B7uvjR;5114IX`VhP$a+CKB(LE&
z1f8TElmc~9^0@G+`<N69+mvJD(`qkGJM<-|vF$j-v&mxPW1lQVYY%g`yrj%re`mS+
z`JeCWv5$P9-1BE|D_ffvYgt)%j0+V}4=2^Q02X-rN>h3$0No{3u-shYo&0Y5mTZJ9
z0YZ@9_Fwj6-%q9ROnCitk#@V+f)#O7R(^<uWDPS0Ld{4;?7D<1=n6dd5n0hT_7yg%
zXq9Z8z5OVp9T8$ESkj$9L;}nAE}$X|gF4tvu#3|GuP~5}l#SLf<(f7`h#3N&JEL|8
z;m(!H;c|W#pK#*#;S^J8Q?kP8!h}VDfORXMIO&rk!}2>p!Y_TrYsw2>_BCaCcCHLG
zE!cSCfwK1T_m`cGRgvXWU9%E)3Fbg+0xF-UIN>4-z~xGrd5XZIA!fg<f+zxf2|No2
z0I(>;t3d?yc`<`6X|fn(0l2)1KQ^Yk)JuxOayB(*T01+kM!a4jvO3o=Sh-j(-Sf_}
zeBTGk+-+LxxZ%!n-RFH#IezQsm5;sakIKj2`{$w)t`TxYX)(t=9u=Y}{pG2}*lkF>
z^aGE6Ab-@e`ih`DG6h<sH~p9W_#FHoBw{tt&`c0MP6ft^#fX|o!(F)w{LDRzi^~!%
zDoJDDszO9*RA$1@c!RjhLLm1DmxM<oxyQP2*Rf{k<O^oHh|dsK2VIGytK%=)fNXII
z+Uev*^YhgAlfS0dc(azEJgEelJivr!oTQoMDo*3aFjG*C3_tD!d41Ob5CqNi2nIjb
z-g;;G>eqg6IdaYQ&bs>8edW@<@6uBKvdiEpjoHrHKs<LO#qi*D12s5Lf1+3obU2bu
zx_1tgLqcmMz#vf8Ok<u)wonkzl;V(bXyPb@q=yo*f=~{%i#{;uw4IIhhOdFj_cq@0
za#{PkzbxnOeP22BMPFNHv>Wo`SABcA`u4lZ2matcm6MM>OsV0-5=C&qnwKxcr<H)>
z0_&=OLgG)1IsyG__97Z}Q7TR#Vb;6b+dU*mw0U=&>>Z}5oFn|CW1ln^6*q;Gw#Pwb
z)9iN8lCvJ@3L_0k0&>0b6{l^2r7mM&HaW=!pyyf(0Wi2Opa$GK6>N}hbVPW8+94OY
zxXV>9BG3L#_Lkiw)<U32%$IJhU;(6~yJ?Z$74+dS`K<sDd<l^UbA@#kf%B=<95~4U
zd{F1sLZEz@sJw$<q~N8dk}I6jUh(bUSHAESU+?&qb_mYC{}0Q?(~nB_^g&Op4~)w+
zFKiVe(_RbM3L%hyj_E_6EFu<J30^yp6z%9ppREDWwuwE6sYCE3frnuh4ySce5yAEm
zKq(s)FgB&B1`Cq5AW#rWm$l$ijb3b=C|hf*p)~mLYE@F`n=O49bzAEYo16L&s}>z;
zztxLRmq&l=&E>$&ca|Gp{;lQMO}Cd<|Jcu$5C8e^l@I*M+hR<aBe>F^#~D7ncjE~I
zUen->u<IGDDry&XRZz(ESw5JW@gi9EC1iXFJ;IqroN${CaYbvFMyR2a9Szdoqoa<L
zJnRylZ9v=L;NOmhBWI3H8m_v&LP)6mhFB-mNv=V4P8aBcB6E|{Lm({x!{B5oSB=xe
z>yjr7p05m4gp4+w<_=^y)IT1STnX18?OF<H0a)Nk6P^`84LA8RzY0_^Z_y6G7<h2#
zv<Q>8aWxouBm05F$IAEq_)nMP*WYBcGk3qcT=?jF^<<pX*L?M4#u^Y^v7#rZT2@nq
z0ZKq$1-9_Q6FGDG!0v+Zk!Aa&Q+YUJL6PULAHTv;M_7R{r5KZ9*xb+oM=1jlw31+(
zQ7o|FXe&eI!^e)ktjrq3w$>5`TD;s?SuR@}I`^P2C2z}8SX;SNE}XkiR#sN@rE0#M
zJSdkgUMic9yrcZL_rI^)`m$G*FaD<QDlhp5-%^g>d`J1?|L09*>!Q{c7#O;$X90#s
z1i76yz;|9D<T-AXd$gm$l_&cVqzKDz!nD&K7j5T8q4F(GgbnJKOL^cyTNm|tE-v$h
zJU|C(qS+)wz|$fn(JmBi?Pyfe4Io<w9?{`@qY#pQ7XercR|hol8fp{Gi1T(}U0TmN
zEIQ5k1J40P!4+&N5p}y)kULXIhG&{0!`8sAxJGy^E}{ft;V`U%_H4pl0|llSjAo5N
z3PW@X<#Vq+M}AzzbePx+zu-&CcmCjym)ZG+vU%xTdEy<vT{gA<k0RKSDQ-m|yfF#i
zKy)EFCgDXf$o|(QWwEmni-+a|TuHE|4m`E3{2O70SA8~KrF+_eau7Xq1IB^A6ECW)
zH3&n3&8|h%L1|bXQ3bN-8Y`QtE4BbuFPtrx&Yvq6&r1PZST2`j8C;ZbUs_p{G8r!y
zE=ehfAM)(TdYF|WJMmxsWBKq0-d|q#Gyk$&{k%KN_x}8w${+peo619<xK~*Eqb+@j
zSN(a~pm^iM5>4PgDD#)DGMZ7>Lg}?{0C)Q%#!bNb{S0hxxaqizXpz9J_=fjy!(6re
z_VJ!;%)>*4;L}N|G(wI@2zaNVqNqevtWgM&5{>$-7<K89I|`~DQ;9g%A=m~R1ZPeS
zj{w-^=&PiMy%4OniQO4O>USuDF3j%56Q4^@OkWOHn3O@!Lg?g6CDPFHAfwf}vJ*r{
z{OexX&ALRig-86WzW$rbx4ixb9XbE-C(5IL`MX*`+$__W@Z%DCSqM9lZGO*z1;Yu&
zZ3U>IceYn`KuKGM2z!|-gY|VQ1?K(R!j+i2I|f({!Wow$@V25PY8-2U^#QU{XP)+Q
zV`K5u=eHM-JdSVEe}jQ&V|8d6Fi;wFRxh3}s~66dbEi+0wY7B#{c?Hg)S2?snG611
z27Y^CbwkQWWlifK)jG;S%|RQCOYx}mQcj&Nzxa>7qkR9*{ZhH@MK3L{{fVC|fBKex
zQ$GBjcbIotk6JWJKme3P#^Eh?8`4)geW85W0~BLNKbZmf^s9jMWdtHj6oC6U(-Xl-
zoqQF~w1OlUBb-YTHr!r`8^$tIQ7LDSbm~b8^~W_Q9V4cDmyU3<?oI2EZVJ_R#*RWD
zgPnZBj#n6-uYhNAO>MJPv;fq552=^(3=ztT%BHG|?r5`->dQT;5FKr=cB<o{6jGpj
zzAXc#rw@Kr7ICgU==7!zPN%3yGXvaUL=A&FFu$Yf4UQanzwbwXs(i`Izt-`O|Jm=B
zhyV5+63lJ=c#D2`MRGqWp_`nYEpxN;5{j)dGdFMA>^e-do}g(%S(j3n-zVW_N--T>
z#2EsWjZjmZ6|Bnhih%^YHjpH(3cHbosPzT57$w1?2V1)7$$`$;k;O64bbudZ*<4*M
ztII3pv=qU(@K2mLRW2#*(I-!olV>lKEoFcDycQB=2~2670|hcZwxS<u*(~Q}HEb)s
zFr#fsN%h>!wCZxP{BJ+;hVt4s{Al^sH~esU)$4vl%OrE<Z~pZ6)tm@=T&V<FA2?Oz
zFD(T52~(ZZWr%i%9`Us5hWjzI8BX1W9GCjr@$`dw(k4bqr0z~5)g2Q_pOrg9tXqCd
zltxfpYhsQ8H;!_o#h_47pwX%uvJev7^;_gFG{SU7*C}Q|g*S<cH{mXRC!7dP4Vyp*
zDH^~j+?s%b3cE9Pqcc<RE#Ma7fad^clz^=QJte`><$M*t8+N`PomxKS!HD<|E2p+W
zk3TaS^-%Epf9#(&%HVDP_nXQm-}g=l$3(fXtVKEr;lahZGNluPYkImL+kc?!o7eO~
zvb-=iUG^_7mV*cMPJx7UT$*E6<xfmWY-OfTNP)y|f_T8($5Md5!G<jX76Vu>@Ka@*
zKC!qf9pylM;_1(B0r@pcQM<@OkOje$e)Zx7Sp;YGU_Yhg>2m+Wk6Cwo?9-3gdU!%>
z2CK@u!J?w-3DudI8CwdQ>z5Q8E7u)4P!7+}l&kkIYD%PEuTs0Mt8RbuyT73mji<_Y
z{ZBtvUin>bC`YfmvHae@|35u$tOS%7ZlQtIkp8$vJyWU1Qc!)V3s<Mr6$?i{_LM;f
zt|X707$Y_8-c=jcG@}y%9>AK%ph~Ud1!|Rx4!jq1>l>0{kjYUSWp|kgRp~Vg<Aox~
z2MX=rc!et?tb(D-DMLPKt?MZSGt=^B8o&V20X5)QB({W{?r0@Yy~xz!J)01X;kwj&
zH!pBsy14@ti$CIdwTdByd!(-nOdm)ae#;Ts&SM<#;-U}_2$kxp5?5pCZpN&Y9j*<b
zbli{qvwu-u`lT<^0^5c1vp@WXa^lg4n7WrWJ!Quw<UIYEGAzzYkk;19-1LcZWZzsl
zurOC<w5BjWceY$}R6=#&fI5GyEFF<h@iT9_cJvem#?Oh3Ng25PtN_#t@W+-Urx!I{
z@LB>21ErwyQ8+9(!e&|u11&IONrdto(*ogIxp?-BrUX0X>9eQxvux|~Q34y~((0Nl
z2>n!>l)>tTejZPjzzjckrt5~q>2llcx0UO!I$D;N_Ll`sA*RNpz*xMb%~UQH#M;G2
z%ZK0gYvm=ceM7nH%U|L4ecP}8>!_3PTsQk-OFR=dOf?OAM>Q7Am2hjvO%QsbafBNI
zqg`s>(08P{4GhmPK6uryI1p^<){qJG5<u%Y_~8<>86x(aUDhwF-i@0<7bf!7BC3bW
zWpva8Dpp-jAyhV<1ZvVr<lVk7x=1c4Ge$y!60wc<sWm(`8m*t6vFH?H(eh3ED?r*P
z;dN)`Q@>gPA^3VC>gmW8`Kn)WhG`M^;Hf_0ssdC!H7^VRan&Piz6r|x;7|RGmBEDz
z7s~6t{hP{T4}GfnjYp0N%xFt-Yp|-CjhCeZi+cKQmvfq%pFDT59NE864$e*KcOl1R
zuAeVAUURq{KD1QUx1KBq_U|wI_RW`>`8n}GJ4nz~2fl&8K_Y}*QY|TxB2Ym}(!wMf
z00Gi2fh`59pfuWpwiQ3jO9$J_x)?;7Ht?H`QX-E$`BYh!vbu2LVtM50Gged^vQU;+
zw7Vd|hVE5TVmBRLD%UP8mK%;8Df{>DE3>i|uoxyMrL_El6=kZuCU&Ig=B20>%l64n
zm5=`CH<vrU<p;`(UiM1!`n&(`O~xDEWyp9a2I>-hz!>AnN#EeOcZaEgPKfjfDoj+o
zyN``zfMJeSdf?!y7ukp#+PUolbkZ`|FxCVz#ePCVh}$Ik85d)XfMYahgvn?I8wwyi
zqiYm`HLKA@z%81D1SAN!{_RR9A9?HtdPJV%J&V3fgOcR>>SlqLp90&Br%>BZK_B*O
z-X1P6;U%q6J`BKztFCYj0NGXXAO0u*OZm!w@bwa+3+21M`5VgpAOBc6xNo1HsylkR
zYN{Y2W8)i|9?VPVOF1h=Fh4D`pC6;$TGPVaYFU=huWOxQzpRICEjn(Bzx^`5x3s7?
zHGV`whM;LGAu9tdFt(<{O!#64IBad}m1q=~Ioy#&!D6A-EnE{-fogEc=vV!vAcW6g
z+|nAus(5(xsgvc**|X)s%4)f!a(S|^D11(r<h<<D^yOMjX>PyfNV)p(VOcf{WnTPF
zPmTEpQpcrG#x_+N2dpR+1BJ_Nz2ybe?K6*;PrU8llsjMhBjqJu@yc@U)QR$Ezx|tT
zqf`Rnho#`%2HH>bLMe!zBqq#hRpv4-`xO-0Ah82p+rw#X+klgJ<QsOQ)7|33sE+TQ
zG7|kVz-R+237DYc;WU}ef`;QU8cerQ2w4hwGGD?*L7Zkpm<Shsz1OtFOPsxFRW6&_
zRHD@*)fhQq6CJq1aj8QU;A)fu15H<KD^`m@Lej1wgy8qq5GswJgVmsX39Ee6;ynn>
z7>zHS=!AYPzw`C~sC@OSzQM}in_vB^^632^*E+$za%6F#?3<faHksMlB?wb{tE_Co
z-=HjOF2TT`lAvpeu54;cPX>af7h8ILfM1iID5o@yxas&(SzOQ;k(4;4!%N#T_5JI^
z5^7F1(m~svF0lI`Hkn4KOxxXR8*Mw7b<H`Pu4O>sYXfq7!;6Ca>NUU8d_ijmD6~tL
zE|oJ{AiTJ;;a_Q<)mp%{i&_8`FN<?C<*Ebwwf3=C7Q_n!%&%pu=<QXlO<=Jo%t0$}
zaf*)#DL!^b##JZISitb=;}4Zj{rPW~J6`?z^73!}o^tl-ljU#T`CpYi+62K*<zOX%
z0uao~PW9yp%9zX1nf>Joa-*-fs-u71kMbQhyiHHM)+a66twScpXp5v!aM1(piik_l
z>>`ly<RC4A#7fHmY|8h#ki!ijV!DiR1-?+^`U-)(U3zepoRLuD3GSk2w)7i9Ex-jn
z(+%|c{Bj8VY!t#c;=XF<saxVtKpH27xA(-iQV2!SQwGWq$|I%=Ih6>Ujv|0C<<>H5
zLFU6vLvpQaRvG`5U;pZYLcsm}Kl|D8v3u_+SM8rKFS+U3@`9VLD~p)<68=pqg$+G@
z&zHxaJ|%%$DW_zDugetQ;7oz$>zfi5_+mj($A4^HJn#77az^|7M>KDr*5ROSUS?7U
zO==~dC-%6u5-mI&ZlVrKLy(|jK6TqsUZxT(Lb5xttuR0B&a7ffifVm*Lker7JS~O5
zy2iS!h8fY=(&#y$bpS0@>J^G{uMI5fJO#TCYs;Hud*!sk<FXDWb!t%up40}DJ{8Fh
zgnn9GiVlB53WZ&hN$sF`CL#Ei)+rwU;9sfiweq5G`=RpMAN<L3`s7pPllOes{HHR&
z7rGZ32aQrtL9QHDg6c=(cU^6V1hwh?5NOfg)mMf#K7wu%+|!4t_Ci^u!rC*-6(pz$
zJRB3%RaYc>Sd{>QSUzlPJmwq7PUaX^2uX2--)8A13ffI@K}v6Yk}E>rYlvhQ1hcT6
zkOswp=p54PB|rlcFa<T0KzDZ`1wPga;)%}_*j59+FD!*n3J6P_Q;<*CabPZp!XhkQ
zTrHUDwnL5HeCzGyAO7f1C|1f({Eu%e|M9KAp(plOIV98nj%$vV8xHR;lTrj6F-G{-
zB}n@YEtVziCY(8czMQ&nshpN#xUi-ZfZ_oQKpbiXU-NZs{XHcZ=L@#<jl%=;`hMch
zl7x?S2A=LZ%b){56B0;XP_h7NdVpCyknrY<QLc;lQ`M~u22wuTIzO-_<*=!8Q3fk2
z>ynht`tn7=G?fvJX$kR+4oR%bnqe#P()w1pcxlaxjFWoWPph6xQ)aZ-N!jbNYSv|G
zOsVW?)ni@?>)^tCS(s&;bv(8pXIAyu2A!#(ot0-x*3hNDeuusZxm2G2wclC3@2CEG
z`B&PayeKPWT!Wj-YX!n>b{VV`lpPYP7cxK?SG^`YDh@2*Z73nMRk-SBlspPI$rTF^
z6t1D+K~n3S2&0MDVrR&*+~#QLMVTrAnahG2zX>QOlt#rnL>25=2qC=6NM0`89IWvM
zoCwANPY#B9endZ$JM42sOFQIvHhwCBR%?f#rcy}XQw9l-pZe*Gh~w$^l!4L&?<#_R
zS;0%cZorxrEDQS<%TNC7KezwZ-};U6*57=Kc<1Rpu9JFkkZ4^;c@eyUR@pfxpsBT=
zq7qkG4*OJX7WHENT(Tht&oZ$&*dt+s-lonXoIX>^BNF~ey>Yl-LdK56%(mWn(A?cm
zVeRXCQA+eDRklrQ@!@&A6_V79-l#-jGTmUkf?a}jtqY(GE=n0(xVRkKqMADB@vURZ
zn%b;ym$OPgaemE;XmMt?96h+GQ<rn)+M`FxvT%+bJ6dL?ARgB_h11$u*%a;5+FpI?
zi6_euO>>Uyo7I}gtkxQ4Rp(hPI%-WrLkX*a-4pn|_YZ!v9J%EM<>>QXSYH2+f1&)!
zzxZj_A*_S2cpRpEvJY}N(vJ>D-?$k&w?@e;Z_g<TMA_Sm_=sybU&g^5>ENe(fmHeJ
z1V&~Z4J5Nlt6uu_v*B(4+MyqB%1VtX?4CmC7DiUCygNARra}Twm^Bc7Mj}&-HHrwZ
zJ)5u7F~XsT1c`e@0j2O;kOgSs7WDe$2VUbjHAvt1QWgvlTL?8gtOzLAjzV!+c?FuF
zz(4fkKUJ_0?!EWk@^e4?Kbv1VXo4rFp6cf%V0wm2h$Yl2>w@Ojrv!s4PtmjMGPxyq
zC(p}DkkB!$pk1f*be++Go&ys01G7_Q7MfBj=XGrO5%~wTx{p#gpoP7Ggm+fw8)&b|
zDZMVOytJGL3a1{;u+)zf2|>0Ex1<m@G%eup(TW83yp+~CSt%D$4pIP`Noe}8DT`pU
zoRUQ_kd1%G^R6jJR36)jON;a6w5B>&U3*M*+ARAI9w<xV=hJ6SmFFG2T6G>TkL!fu
z^~aBu`<{BL{Ow~;m!or&<+#>Vj%p`jP8P$gl)|DEg;YbCR)etU_@00Ni{&-H@T=vP
z7u;38?mJ&s{^&pbdNXyf^`myMq8qjlI{ni0o$9*Fk=VUJxNL@`K#N`pVs~_8-t;p~
zzJnRh^v*D=pd5aIuku6d1)|wWo}fi|*l%ffLybZRZIVf3)>XZL5|68TN^XS!7%u&Y
zJ%>AVvMxi}0sB&GG=eHfDuINx%AhKSv<j>YLf}&YG`<yp6o+t{=|WSE%1xdO3&vb!
z!QCE!XdZcA{#7q8U-J#G@dDf%fA|N=*>h*ZWEY~%XPM%UpE_GkXuV)vLd*PoOC5Sz
z=J!55Ew4L%q@34x4-OnTtZBeRS(3GIeBVM@)^5Zly)1-(UR#lzUpTIX$>S29b*%%e
zt#0^fe&~SK8>CFIJaz{9bQ*hznwCsS@Z8T@(DR}mmWtLUXag8$4Pi@j_6-UDMQtgb
zJ$td7w;~X2X@U*yh^(w>S3#!CU}B~mJF-}=)z;zx?UsC87Qh8P{qK9~G4Z!v{^CO)
zD#s5lN!e*Gq8*B-F06T~bp7E&-kCToYv2YQQaY~f)%%q9fioA&vfAR1>bbP2snGO9
zSzuAs?W(w@D}ViK|3~@CANgO)*M7(MmIpq1clr1|f7ff*PzWf7wokm1QTvX*$!>(~
zup=$gTR+6z_e4m4m_Us;$-9K1GUibNH+hkfFfRRwUD=&H$#I87g3N~^)lz7Mv?8Q3
zQPxHwWWjFCj5K~L_zkEDjH*C%N><Jo4O$Zj3RTh?p0W~^KGC@99f33qUw;<RD)<UF
zPxmU=X%WOO1L-03tsi+(F(kcRewJ1F8s$;5#l`*QhkoK8JNbYA#eZ4u{_x#;s;fOT
zvS~$x_@bV!kLWDHy3F!PeN1FtI}HmQ<1K6D<fV({gjVtW?!qaofN389(pL-%djMA-
zJM6{8ZJGE_>tx{LQVi#HDClZEp$}-a{*s=~7nj$x6)2^k14CoS56LRgJYIj3Q+mNj
z^>=S-%Hfr1ne$~!OwnEvdKAL4ES0mOdrnrusuneQCt+1<1RF}{Ji?sTK=#Q(*{21>
z2_0P8-d36VAj+pto+~G0RqSYikadMGd(AhNv$72S_)mUMJ0qLrA-(JHz>`n=U4{eN
zjd<RXC3o&Y9lF{S?<Zu9u*kSi=Pfw<u%)t52-BJl&8vMb=}S!az2pBYx4-h+%eQ?0
z8_OsE=^L%!(n9dGK?7L2&vm0enzaP?NRG(Xui%as;|j+33zvQeErT%_jah@4621ir
zh7{!*<t(sDNS_|6xJ}7Tpb|)0hKJQxgF+yb2;dKA29^%IHodP9%!LrZF}(-`*u$t6
zQxS}lgws!8_!-O8XYye!FF%&6!XO_(r&T4eOK6!7>#}fH<&c6N>jx-<ssI{4@MG$b
z3L_Lv(4owTQ??n18?nYwPg>~v{)Znb$FI7&yyrddF2DSLz1ag3B*~kU0vmec<%~>e
zO%%$t2ls1XZB}mwZk11IXJJzF<}(uJEna)p7QvU_^?BvEtcCZy?>&ZVgVImz7hHF|
zOwBHoW7^(3C*eJD=4^TTqTVr>+9(IKAh{+%T9ZJ^;E-{kg+*P{GYiTsE~S}vG;JAU
zEkW0~4kocyGB&9nU(t5trp^|u*b-rfLo~Exu%Q)y7B%N|MuHcrmZW?RN{R8kgZrL%
zsyrxb=kT%P<<P{uUv!!l?+-roL^+{diBmd5upmoeO8GaXY_2(?^Ab8+@r1S!|N2vp
zl|!mOyAUiu9zArh?9;jdlN?_1nwXXHK~YK}aO!bRWj^uVx0mZ)`c>tcn{FxJ@ZY_@
z{J~rQgW5POFUBc-z{JSMnKcGHc0~`x;QmuMU3Y9oT8qJ0vy<;Ie)AW!fG1kg3_nIg
zAC@tg>|f?18KsY&wTnDhLpb*{;Utw$+gvNCOoK<ATEr0+f+=3{O(kZb<f)ZvrXNlV
zga)k!ng-8=%4D}_K)!@*;fH;P1y=$WLTgwf;3?EYmO!H@PyjW}e#IA^m@WjphHj-_
z8L1pqPrSpvFV+3l+wUmf`d!~6NGU)2Ge50+bPes|r<fopq-B}%?9rc<@I9?3>W0d=
z;iwkhG><;}_=z&BtwYI0SsqN3Yj3)>?0oQp<;anvWmSuNHy=LeEys<E=LB1liG4(h
zVL?jad^s=6;)13P2*udigtjAB%l_s0a(GRPmRcLw+0ki0tOY&g-Rx>Vo7pG`6oq)(
zkP=vC{X!TMI_WsBSF2G}3;MOES#22})RyT!J>7ZV;gQo%>;0<r@?|f6QMvlIJIa6i
z<b!4X<SEs0tIRK)FTegfzvCm<FMR&3QZib!)NaTv*I!$X>M+&AkIj__9{O~7N|p$M
zeneIWR??g*zOMX}YBSns-%OmXn4g=|`T|O5t9;~l{%!f<AN=|9Rp0on<*(oIU(1On
zpKv|GQa}l)K5EnOqkmE+=$o!{J9GivFoUnUPB1~$N2o4KrNIkMhO#?KkI9MeaOt->
zM)D6+Eoul0an-#|80OpvHGMd(s}N{Jp@k!)i~klF5%8KT@j;LLq}g@zb<l=`paolP
zi2Arr9b|A4o|ZvQ5B$_uVm#5S-%}6>dkB2^9h_7Yn9R@sPkxpWg;F+5RfekXD(dF;
zP|_QJ@}C&tSAOM}%SW_dP8O{X+UzAWI}Egw<WF0N15FQB%c7osx7~O{x%H--%S8?L
z6I!_QTu(0~z3*@Tro8ig?<=?5cvYFz(Oyn5-hS(?<z`I-KK+SLloJm>s3-Mgx&GL(
za{bXItxM>83KB?859&041^dD>rwMrtxz<4(`qS#_-1zztq90X5A+n~y*N*1q7Rr<q
z*OaCdhYl>2dF>n=V5*?&+*41KCmwxFyAV6&j+<{OH@)cd%G}Yb%Zv2U)kiLU$Zu(W
zp>`YY(BUO53zqA&xccA&50quS2XUwBx}ZhXoefQE&S)Z}HHu4`itu*iNgceJ)0F6H
zDaONxbnTxlvkSc2F(ZDa%Z%RqoRAW|@c0Ae@q7NZT&s`Ie%n9%k@9bU=@;Cl^aDyk
zJsEvM2hcy%x%Qb?+J)0|HLV9z1aLR0jklrUJW*OghsrV7+$hxX;io}u0!d_VAJh(m
z)Xn46^<xazItb5b)+&OlFz!vE**JpqrwkNb`N6Bf2(=Ng8rLWQAlcBuZPZJXuL(Hs
z?vquWnpNsR`hrO{>Yr*$TB8Is;$wTU^Yl+kKm)y9GZ+q|1X^W~<qiA6k~petW^M4f
zUh)NBR9^J?U!aA=^W~Scb^tGSWYI-CVG1)~{Ti`M`uzedX^>yDbWj3)xU8td9@o5`
zv&*bI9M;yIju4dVuD@P9Dzl!lFSz~oa`ec-vZ$x&lJHJE{78BFu_w#TH(ys?e9Lv^
z8kyY>Jo1=!Dzqb^lY=XoyRT@`l6GRczzIe^w!%kL7#9BKLRDE?@;NOzr?ml{Ao4l@
zFIyctu1~A$WuzJHSe$(DfpYOl?Q;(1wNr4YEM0ZjbN(4U!Ed?c=5m*gHa{dmUoUgo
za@E$T)<{l2{j?O<OnK??+siH5hU5dR11Yx^9c^Z+wyG(_qLjcL*IlD6$jNfc(Suq@
zWvZZsP?b5&v_bSa<ixhaq<H`6fBCg?^tKn4yT16#%MG{OS{{1fzEA>cUn^+UH+=es
zaCFC>ce<;4?TNToLX3nY(PHHYss5gPL_+YnCsIq6f^Zd;?u`lnAabQX`C8Xk2+0Rr
znKJ-{$xvZVi)c+C(TyJg-=Ev9Y0VmNC2Kz^Or^Vm+C0fE&=PbZ_~I$wyHW`Z!Hu8F
z06%DS%Rv3ux$u6qqIF^bzD{cgIMxj=$(#>n1&}$w6ASU9u_=QcfEf+${W|A=wcc7h
zqy@Dlnd3*bTK~|={pGX-gzq27Quj9!w)oJ977_0_eoeVS+jSE%y(c6v3pd_auF^?C
zzE*Tf+jlqLIa6ME)752OYZa%o;5ebVxy*oicqkO9m4UPj?=V=It3R1_bLVsvUs77s
zi&Q8NwkhYO9F{aSnVuY!6Ayl>ET38}cieHSP*tBJSC{oOPnNmUC(F2Y7{;d;%9mbs
zu*~a+VV_!&6)<<mTci_fE9GkKNZhI&iOE&HLaiTeIj@6PSR6M_9M?2JpK@0_-Mlnc
zj>)n(a#Z=W4l%8Ena~u%$FRi<ihElY3|qHbvNk^X7r$Tbdd+v2m%rxQ%ftWrUwO#p
z&~23hy`tKw|7uSHpthHH9b|Vs@p^GS#8(CFCS(<~8*E5dj%v8!W|*ttc!#Nx)WHX*
z`j%nEhb@DIXSp4+eT5(dNDZ?=*$GP@Shy}E!oJsAliCDoHZw`M!%a;}sE05e>CTJ+
zEqT&YrCmGdD}fYz4IBoKuDy2`61QU^WLX^__9(w~5vHZ65^ejE&;P=(4m8Mr`Ip~p
zrKGhuHyU}d3P9!rA%ZroCp&ZI=W9Ow{Nu-ci06<8zP2o{zq-8lfro7&NItbyxUcM2
z+O_*;%8Mmb(@)%A20AS`u5$;AS}4@+Upa70uS4re{nW|F%8l0_D~r#+sXYGJ$+99-
zd_}th7H&Q9$MuZ`X(wI5{g@UnReLxUdsq%SF(^gE(|%0W1%h|r_))(nv90eJ%uJ7$
zYi_<ug0IC$O%KL4S7gR7XzNlRKRWYN+1B)jPr==wr~C`9J+57iIe#!^Oka%V?8Uhg
zPw0JyWu3rWDTjr#GCo_5AK9;6lGQRJ<u%9I3N2X9YoQT3dZR++sLjM3%0M0A?<`>Q
z0)F6~p%A|06<=Ha@U8!$JoV(`R&rJbGJ_kXAPVGx(la@Fx7*v#grDhczHTWf2GMi>
z3vNNo9N<-4d!6(OZqhRgelnLh88;3Q60XE|hF!NtA+*hvB?axQ3*}@=9ZvoFDYcIK
zT1aB=DsxW&)o}fqK*W*9xI#JDGOz_uh1ySc!b287jaxA&9DXW-!0+xZVCHwN1DI))
z0SwgMaLu^s!h78h{IKq&yjj-41t|q53EhW~G;$fdz}Qk_@ovB7)yH%QXTRpf8``ov
ztq+3?^pxa;;n9N!%QxPBy+0bV{~9g8EiDz!7OkH-DFra=lZ#XHn$s^F(1Ag%6=*?m
zT!Of%C-2fh3A9fC%`M6lmmc8AGbapL2bip94|o$21?B0L-bqlSi8oDWq%bDEn5lz7
z+Un$J^Mn)!%4<prVj!VDa`SCcc6y&e%6wZNSmEH)x^_i2HUBT#<ygP4Dm)!wK6$#F
z(U+7Kbs*{SbLYzouD?!GhcOHOl0NWqqrQo-rY!rnc%f@U?Vz^M*5jPcCd}&MeTPX+
z6F91^f^;fUXC>sLAo;2k)0{~utbx{G?tkxJl-u<C6|erD*O&kIO|lZ`2)8#Ob%N^Z
z1;&U)M+A!Qt#iIM+KfYYdxf_npo6F&@V<iqwJ}5yik>r&gh+F84TG2QUY?9NF(dLj
zC6hF4378lUQWR6Ph4a*hF|eppOSe%7O(``EuSIJ^4W0v`1bVRA0M5~AjHJ+3A(-jq
zRU{b1*I%m%{M5A~5Da+VGKi<VP0F+kuns!mMj7;!hj5?;ZqlquBo#w6V9RUP1E1^G
zJMJtmu4@Os!Zsr{5G~&8Wu3&zK<&WTUeJ?Oc6^!9z~(JS;)@c#ZOz-C-a4;CMvLX_
zsZ%-%d|q?zdCkK0vXl1lXH?L|jX^nd=dGftDTiK-)&$#vJJ9LE*~9wP=fRP(xO%>f
z^8pl{9-QW!fXc$ehELuX;M<IzhYMn>1qFzdv7VqEg(+RUqcAC-51a5YSN0uM1bRc&
z8kCLYOHu?{h@6%cAuB=5lyU7$EG}y2L5geN;sGf|y=0}Gg5z3<WUFz%teAo59y`Fo
zs03Z%9o2#FAS@j|;P)41W~7Luc(6{UWG(RB2cGa^M*E)nrXwvY<)O3QvKj=ILLm9>
zKX|JZ!k4__Rpsr!^=q;cwBw*ZRuR)eQ1#tew8OJ;?O45%Tu`Un@cKCtNO}$9*(FR7
zr*-^5h<jzG%Cd*06OxY8b%O@u&x~BoPvQ`8W&>J<V7^FnpfXqEM(w~U)Rz+?71XZF
z%5`BQ!YwN;TZkWUU%FYobn7Yt3v7L&Tc8nSguN<)k;<S7d+a0(DTA7pioia6P;SFb
zR3NL$fcv^vf0Kc4dCOb8phz0?OAhR$@IhlzbMsl9zT?wlv$_uJgdyklSvb?GSvjOd
zx5E-9zE8M+V@{{_^ocR;IBaa3myj)#MJa;yb0;NPT2IiEeM(!15)TQdjvMoBMePbm
zW-UBZ`i=ntGb1y7UR!m_phZRmNRlLn(&DMfRD#$z?I<=T{qYjb*_DqEx{hn%k1a}G
zz8Yu?bVCQ2wnUqE90uoC#0nE5)*U2*(j5n+xpvmI9eP;bK+uyOtK<5GX;~OEnx*WN
z!{a(mt!V&j1Cz5$$gE1&iAwbuTbo`yl!D}iEZUC4Sy%)Xa2O;k_=J?$xcDdkrKeAn
zyWjaI<;D6vi<f@sSCl__+kdV@(<;PyJyhL~QG4z<`YP`ZUg1r}#)wdWX2ex5BF&u=
zqLc<iz_KB@8LK!(17?ICdK(!o#mGtycz>56c=OnGc?ziwiHF6IRF&815swj)X?yza
zk`bv?pkAa_!q)5++k+)><U82Gt!Rx$)qK%`?!>494Ifv#_!m!ip71dpXx9wt`hf;o
zS_b&tt5qD4-(|VXpx?$TLzTnqf~?1@8inxd=G($XlY^)mW-qiBG#yyf>%APrIihbS
zE-_E${eR&ta7<Uzhl%MioyeQe!rDIJj_Wj_w*2;MFMdut4*R6Lz4)fO>P*4vr3*g6
z$f<*E{j3{DpLcAP=rOJINj>4QPMEgvr6Lv>$E761lrD9<@Cm^H14(MZd8UQyn4Zj2
zypAko#V5|jwEi%mFFH-?Ji_#W!)1J7e;LynhV+roB5Z3LaZFPHzHvCOkGD*2t(3{Z
zigpe764bWNR%k0z^;yvS7gJh`nAX9pF?~6DQ?G0f^zOuz1f6d=_#?BL8nK=Me|$KF
z??w703iyx`;uIs(75A-_!zcgt0CGT$zdh8XyyBa_O?<+={*>AEa|*W#kD%)vuwlF=
z!xaY@uQ-oem6P#+a)+7D<pj7Jy1*I69R;Hd!JD;-%+r-9Z=(PJKmbWZK~$sbNG*df
zv~lT2Y&hOp2)hu;tIWEBr)<!G8J;xp!Lv79U>B)|L7~-57(qwqE3DI+p#W;SB7L)-
zCwyKttv==3wS>OKU?rdd)U_T6vyMO>OyX7%h>;<tvSzSN_$yxiO6|)p>IJ5I%Dwm8
zZ2<(%K0n&nVZ|}k59o<`jXrsH&@b?4j;#9Z(>$4lG!z1-^``Wpl1T{;%7eP=XHfJs
z)ak*MO@9T6uN~1+15E`c^~A>tnACd?HmfO2>1g;(38!SnZ$+wdu}ZH5P6M*b5ZrT@
z;=(lFQF*K<D9^NnaZ^(6DTRD~!HE-$C>B4RwH`6Ou&+#OnzPMYk@^VinszxhS1<Ye
z!;Y*K6cIZk+Z>&iV%pva#Yg|q##D}@%{-~*WeFY7If_|XNB)H>t%vYqG3s2^K@6#H
zummLi<`2b%Vj~S29H;)s`~I@LTnmcFuD;e=kPos2sVv;wSMG~C#(+ht(?NSC2OHfh
z@%vBOgyOqp?e`0Tt7NK%n|S0))`&HEL8T4SHSqw3WuQdhav@KO)Oh3tw`QzzXJiu9
zKIu9NAwW6U6XBWsrg4p!gc&?TIWyiA-mPKa0-@U)p;S1PKm$|HbS;DSN#6>3S_O>)
zs7fFeL8OZg3Z&8-Rt7Nu;3atTpj0s1hkC#4t6uKJx4h-ooq!oj^{6VZ2rv((j9Cdd
zUq@Qfn~28_^77821=n+WVYApcF2Nf}SUJ4JQDbOeMpF(?U2nbVDN3B<!&n{@Dr8Jw
zHFB98Sdc+ZefW-nHtxl1d_!SMPkZw5?~#S_<06ly6FAN#u;3UL9RjSpHE!jg^1R|N
z#WK)zXiSPs&uUp7S`*QB>6Ugrw)CXm(v#aSOliRrMWRwn3oXGW3yw8}*#*5Oy>EY+
zJ#bJ{6`2t%RM6Pukw;(g-AA&(JC*{qClTvF)TASHveIh`<K=Ju>d(tJefRg5FaMga
z*O`R-qaNU^e0!$jm_i*F1#|$<HW&mLCR`((22Cgr*F-4fN!MW@g{Dca0SGrRg*$QD
z>hdlTAdndoM$Uu>mA*nSLqhPV?{W~x2`9y=Spmn%2cB;PuGmqjs2G9Bh8J)RDFwPp
zAa({q0faS>;l7`Wfq?^F#+y7?7`6_=GH8_pWiym<El-a6rjAuLbGq>RZ-2W5Jej8j
z_znRVBEcunc<LX}OFO*cdq9c-i-1AS5Mc*^rz6L8StIa?M){Li4f>YB7{VfRc|w-K
zl&lKR{}CABqa65Y_JN+*{3r|GS7cGq!f5M2y9J&u0OJ&-p0t?bOdmvp{_;b+Rt_rw
zOTr&kRRUjc<`Io0p=x-`k#960xWM?H0|~4*prED&AM9xTLy9KOI!FPqO`@|GD31v#
zAyHQyrL$z+jQdOk>lD11smm>?a;4??TpCja^Q|<dN+=vY=eALm!ItX4cPank?QgR}
z__DA0y7F89?#)pfWw(M;Un=PSq`m79Gpts7PcLyBg5+mNbP_tj4jtjCe{9yfBsfTC
z#$c{<kw(1wiQ0{3LEvQAc#0TS6QC=E=B$LGExJPaPzG(t^%cTUVjCTiGZS5S6KU&I
zD>s}o#Vm7leK)iKZft6xfML`@gOe+THiQ~M51~fbE$~<ax>EQXzrqtg{j?0A*WGq(
z3r-HRNf}a{O#DJ8+<VVG<<Un!ZQ(~YTwmQ7c7ze4MOgp`wOGbC4Db(1cxJTNN7)h=
zJ)|Y@TD+T(kn(LoTMk;-^LCl?^8`g{Amj)um#qUjou7x7fT3JCykr4Jpm{=5CzXMP
z!M7Erv_=tI24WOtK%3&r?MTSXvGS@Q;YB<0DR$|Ps8_8ON1pw8HdPKGC*PJ75{rn4
zwA)h33&&c(1ZNhsut@#1S!jia($ngS6`-dpIfzv*j;66vcE6}UQ4E4p4^TE_1)=Eq
z3e&Pa^LGDZAJN&1N6WR>T_4ki`<XV-1GV3vpIt}+pKXVb>7p&7=i35YEaf*BY4Fy)
zh!XGk5!-!-AgJks;X-tCJu@NW4T1tAGlF2(Dul{QCfFBoG;HwQK`^YsGXuB^H&{&|
z5n3O1ed%W5k60iyN`S!}*RXY9Vb+Lg)({W|U#)Tgr%?t9hXUy1bzxZ+LIhL9D|40G
z+6;<O{g-|9E6ne^-u<qIPvw&Eg;~!N4iZ`x(D{KWt-$N3vDOimbUN{nK26R78m|)T
zxvz)6R?~$SPK$e(@|p@TO_<Q49zu*_(R;-bCMg8y(q;&*gcac#=$ivpZpM?KLsPv$
zv~6q<HC#~wO5fqh50k7Ps8X)8%JdqD6q6MzIQrw)oBRP(<>d`Y>IW~pRcNK7br8r-
zYVnaZ4$cioYei!zKfe_*uI<b*@#!%orl3F0M^{~UT2D?yuoN7za-ekmVNz`BB3)}6
z6ZF3n<g$)sZwR&_-1ood-Q_#J`@b)D-u2S*;QjZz;?C<f5q10FQB>E_rz2C$R2Q=i
zljLNS!H^5309;oPkFc4jFyPHaGWfXkBi7sjQ()I8F=4}D$CcR71&~hg5qztK!ws`Q
zd>EFvtuGAz6VZME2u3vGZJyB~>co&p9{~y36ig!~ufBy4LZ5=)Qvw<w9?<D)&~)({
zIvQ9E=ui%Xqb#_D7XfO3Nb6qw(l2o2_kaKG@<aFy5WZq=6Zq$si4I8-pcMF27_01j
zLXEfg7WCAd(R`d;fLXoMFs-daep`WqIn!Fj=cn9Q%;Uh&6o-be6tEz)-oQX-OVAxi
z9S|awixQcX#%LA+Wu3Twdcv~Ohyw7U9eev)^xKi*fnVzBPqs_QI7B49<_<)$xE)lF
zG36guJ8FAFR*V)vC8S>Xlmg?uiP#~~c?QM#VCt0koRmW2VAG`5G-7Hb-mxA~4%7NN
zqli-%TPi9`WIav5XH5fZ$v<u@h6rP2RNKM|j}N!3%DO=@yiW=NcgI~Xar=Ax84_dB
zW70Q(l-j~8+H>}5uXiYRsVgkrFMB07m%{^x^z^&9-TWDDe5zIR5ws(Y>%&_MK?(gP
z$_$-MVj#485b2UKpNWdUmjjVe&~c7dkcO+0+p85^Jy8Vrr9s(!x~DLw!0+WZ3IjT#
z;k5`!txeocnaKlu!j@a21_<*Jl;_=khimYzzxpc+AABK0xfQgf_>@L9pD1UVfHIhq
zaPob@X+2pd{dr;GYi&UyCRx>9KRW;t?wnVT?I8Gi&I^A`QvlW(bke8xfpE1AY0Cg%
z7Y??Gisj)SafJ~c@7bd;umm=RhXtbV9r^*mjrqP5ffa(3!MMJEK$steWpQzglZf<-
z!u%q&l?wQ*H;5;225fms_-RX9Fz#pCBLv%vmx7IJO+-j)R52%>n0}!78CSM&NTaP;
z?4%;#m{urma5>Y!8=dqsZG$1fy288P^;gPR%I$Z(*ghRcR*LF6k8{Cm&vuhWhRNQ)
zP@xcrYlwV91Dq~i;y1pTgF!R1+fPbaKt%&gkiNF-z|Ckk4#FtB$XOHH3>}3~F)}Uv
z4tNOENvT1zNm!Ue$g#Mhq^1^`CwzEzk^|JC{t1YJXq7<-a83~z6nQlQUtz=XR20A?
zf6(eGpe9^f(I&NcV^F$Ey4`w5D1&#un<tV6xp3JAqhDD`=Sik<>-dr^f_<_8_UUQ4
zpr<CU@?vUBjI2D^Nnk*8<D1HSj+_sd&=?3D3u|osjmc^l(|p-Z!pKjo=@D#&zycqV
z=N40##Uu*%uPloWR)cZKta7jr_>Lk^X;)KpJ&#8*2=3hy+DKCp?<^ou(5;e1ON@zc
zk(RHW30VrRk60QPp8_Zi{&a>xMS5LBUr5BkqqjaqAE8H$j@cp+k0Q839hGLKqek?P
z){18iDA|foy=XJW6W^l5lv$Iq<hAX`^*Z>cKmF-)!wol-8*jN)uUy~fGP$Wme8ErO
zWlE&?)1GZC6hNy4y7{9|JSfDw{e~;zfONyjuOYXeLAtpuiO6L=z@r};X8^GTCQZc+
z+KX~f;Gx#K#BF>9V2*gg2nIL;O>TfhI*3hL8%Q>R5Z)CRpb<(2h%P_Dc`{g#8K??t
zz_mh67{w5{Dfq*FlRxP&;7kj85stExIl*AmE<)7q#d?_ucaP2<NPd-<Co%QcrLaWK
ze=NK$>Qvs6rULsomTU7rgdN`aJUUx@3~+W2rlcrXKbRE3DeWG3s-V1vfh%R=(}bc)
zm;uDxoS$xUdq`;Qn>&VO{S!|t?!nv+b9Oy-{qt=q2g`#U05zbWq+S4|F0_Xp_58Au
zL|1u)Cs?doh%Pi``iEtqi1Lif+F`AO=>+xSSDH|kRvIebTc@g{#YVi7-^xmT8P=M3
z(9}p;QRPqx%8R!2nuzGRb;T=f?fw<S3yWIRlujsj-~C}SmLtcnw(pyGqDnYgq;b7q
zL^_}btqH)B`3guIC09RZpb5s9$g3e#@hjX98^X|#g0pXWgmonz;fyOi6iE0En+DmV
z%%p4Iv;&^$=?5L<lcR*5t8DdPmyOiI1BU_?;%Wj7AW(+x*{F>YP>UO;o5vpmLYI|*
z2Jo<DkV4KOm65v(jqr!kNIF>_0%TLQmQxFLnbE1qVaqs&k#LXdX@mek!|g2?*o;?x
z&V50Gen<k%uNf`s-331IVFAz+bj(u*neW15JCQ{)-Zx+_&U*w{8qCo#@7Xp)0Zho;
z=DY%?Jf=Fo{!FK$Shi$B^J(-Q(F+0Qi5iLmVY9WtdVmfs?P%J;dIJ0TC^IWCGtNx~
zGbq93LI|-Yq;z&PMd7FA{DBq97k^`_6K&?7r&nI44JZIkIF4)0gY^z80xSu_vTCdd
zB>1FLmK6&$IFRI>653Ndm^t{=_Z(CQq3GfmwUSkDJ{6CZu%>#fYg)q?;2V}WzL6j-
zhvP=L#_fq$Ai8mVrjC~5iZUQtgN8+#Er%@7g(ecd>PuVj*TJzccjCb;^lRSqvp~lw
zG-+1`8oU}GPOsp0%0T|c4G~K?L>t1r3>BV;m-m~-iyjUIpe!{izoP^QtJ8A}%}+qZ
zQ!zX%%RscOKqOGkFF(ubDg|J6>1S1|&!^IG_vougoT>#J{h+6$0?x0e<e~(2LF)%|
z@_DBK!3}esr#fZO`Q+7;Rf~?q$1#VM#FG-UoYneq&KjUZFyW;s25dFzM4#Rzmaxgw
z(|bc(Z&(4e(-!8vq=q!ZC`1Z?`8X^6>|ikWW&lP_xvMRdXRxjhv`9h09|}XK2V?~Z
z9|hn_LR<5CEDH&^ry@#|>0)ca$E$hD%b~Qqli+ED+J#5B${FMR4b~;#M>tko@Ghb7
zK`SXB781>m`&z}I@SR)rlSO02t~kFr$rquvlui{N{q!S(N+CQCg`g^m=a}gzQN<cY
zz~KrAaC6@UrFpojqkr6e72Ziol#U<Mh$s-s?X^qT_vEW`L`5h}Q3nCncvGO_?xvd5
zz!j)ex*&%kk*-w;6++^08Hs#lelkCV-7U2yWmycq5RmXQp1wPu0a_J9S_PpD;>q7k
z4;VNMj`TIiBdscfR3=p!B&{qfdCIkep;~x=-E!OQ27mhDhs`%@1~j+0uf3u72lVu0
z?O<NlqF(Lw(PS3nFqsi<KMf=T)QR-~9(zicEg$O$HW6ewNa#H0rVPll(ys$OJA7k6
z3I@f&E6EmoabZiLE;6#6IW{2yv}rB@mC$jJ39BZKSBszo(_5r!FLoRxg<emft+zJy
z1FnN<D;TyM$MgoK%$InWNy(uk7=7+>@*>bO_Yqv)YtUC*tl)yCc){9G;j{r$m(W;d
z8pd^r2E<TS;wLIhkAzdp=vcPSAqbS#0o#rIA~pTU(eK9}d&J1|Itgi7H9KU@r~ITC
zux<)jGoC)MD|gTi`XllK+C@L{<fkNOn>Mr}7fQ$|@>wRz;b!FoX<UUzq{fLfNFd;X
z%cjf#`XfFyn20sn^GF+&J_^>$_^cxE+z6&3VFjQhc#=!df#Ii6SHDpPJmDGzfFfvV
zbd>^69?AhX%d@f(x5RaGb0Ok(UZjgTIq`iudW?JQ@yBJ>s|`d4#}kx41a6<6?u$Bz
zv|rnZi&{UJ)s%s$fS<`4#AAAA!2)7oRY`h_5G8@Yaf*;9fLj+H^_=Eu;#ZX^50hUW
zi;silum&iXQ+(_C9s!GNyqH9tC~<<f7Nt16;HM%ia400|H6bCDMKPhLIBOAOQYNvh
zz>v`!j{0mHYXLi|4{HQFJ6JL>r#kZ_=M`vwXhpPCaqpDS7+6CHxcFz$(e<G&(3ev3
z0V!p1okXvB_^E#x^t3z{13y+vm(Vubsuy+g&&-LZE%Cc4-nRs!eR!MngYSP2rEBZ4
z?ld^oz0p#A=lC$NkK$PH)FyP}goj<Ei!c@98dY+pr4JF~4pWQV-EyEv9KY)l$M6n9
z!V`BmAMjlkLLy(eKZ@)#=Y~072w(Raf_JThc$$Y&K)_QG^p!wgDMX%tIjpiwlfg;2
zDvgGRWL;_IP@QA-fba-(TeS{8_R){nr1c>mbqNESIW@FdJmibP^O_^?<NSd>6f(<6
zJuL<zAUrWKmk}Tf&2~I#83<k^WFDe9ID*fbfDkP>gb|=|O+WZXz&7tJU{y%?CMLBP
zuit0j$6@(M>X>}qcYrT`h*c$syzb)9i+mPJnee>8B*C&}g5?4xnGjs9C~oOn2Ltix
zUtN}R@Hqh04a}G?sV;iE(PE|pRNfun2~Yjt9cw^BtA>GrXj6Ss4U2~3*2YtkkOY%L
z;qk9J#;esFH&<L24+MB;H%GgovI;niM7qH~8qQ!wIgE5FJC)9;bU5RBE-p*N7khD;
z+6aoYLH8Oi5I#w-t__K<V8nYq<$+7(a5f#li-(%as!4$mcZx6=hC8mO5HwW$*QQfE
zq=S(b{@g-MV?i*uF(F5FOQB39(8Sfr2@7FPLGCMsUBa(H(}UT%2v{nEEF*n-lW=9w
z1Dr-RySnew83f$vGiM}t8pLWMAD*Fsl@BXnUQg3GJ#qOE>LGnRbOGx?0)VrbZ~DTw
zQqUqBandPAb+y3j!y<aj>**>OX{@~C^pxcIt`!maBoMqGz)HK=u^G?dB`-Qk7}@FI
z9f>#=Erq0TEc!{QNMWE52KqIqF%BwOSuI;I8D9u!yzr!Acp__hv8e+<lQXhPR5rU1
zZW+SluXUuc7)c1Z8wf?DGnrmrV0}VKwh-#i&-=`QXt*8JM_4LsD|*3~tx2)T+moC<
z;CqxCx-O#pRN?r=XYJ-_t%mO?aEy7_iInAqa(hYvJ{m{FTsM$i0o9AT(d=9q#`iUp
zA;Hl~L4OEEQJ9LWSyKQu!huG)JwGVy!lvxeR01{W3};kRSA-07;t)-jmCN`u`>><o
zqKt05p$w+yv_L?g1x&s&a1AQ~gryO1gc}?S{a$`YAsDwqTePwq{91Uxh!`du@y#{b
zMU(sKRT21F@|-LIP9w6Qcu3y}<hK|(Zp&MM3=Ra*=M5ydV;sN%%8miPgo@XSc@vSz
z0*i@~@=yxYS!OtE2K-Drih&n<P%LZw?tw-;A7|yuM}8Ypf;EkDKu{4*<!7berv&+C
z;l6`qO#YbGIXG{CGDEp|_dvyZ+fd34Wx~4?d?<x?7I?C=TY)kdY^<nmvQ)5U1mhH=
zUNjId(o~|yw1`~|rV1=Px~)+>Jld_nYFkrRl}%gwdk3B#2!(!AlOfD}x_(3OHI=t6
z8rz~z|6>u&s?B*BjHA>a{m4D;jT@hLoBiI6F5}Y8!6x3p%1+<A<Bi-+b{5_2E0y8n
zNQW%JzH(6E=7p3FBY<hUq02lAw#%<D(;!^);kPdGWif41g;&JZLZAZFz%-Ij2*j}7
zG-_LtvjEFnounq%$ebV{fGrh5A%7}Qfw%-iXf3!rHBtc}{COepgu~Bug7h0aXbQ(P
zDlTQD!fDH<1;h>bmGiK~6zjDMiHHLhfkJvR(Rm0`Jdw5KC}psuSDyK;Mvf61QNm&K
zoY4(G5S6f!my?5h8<D4^PZDaI&IfncQDB!rf&h0sS$7ahE!x39Fh1)(&^&%xZ&UJW
z@rK&U2f;LLfJ?S3{i7>v1?r=ySQ}O};z1dF=xMMnn7&&;e6V(bN|^?Wp3v~eRmA3|
z6wk)AzWS_k{7SO$^>GI^nG)egijQBF_R1oPi25;wz#0+HZcq3VT{o%}1^wc;Ga-Qj
z5t2A_cp#<6PRkZ}`ePAsMP+ajl-Y%dOZkd-<zu?QHz@hxTim?9+YnBKl{cNoGa%Z(
zxpxBw$1Sr}KRoW4pin>B$y|dqz0J`@5fAi#bCDK&b+HVkPipG0KaBfK@ytJr*D8dX
zLgl#NZ<O0jD1>L1(r_z{q7X3Xw8HNg5SLBX6xOf;Itsvw0R>Q%f#azZI#Y-qo^VAJ
z1(9Xi9AzL1?u)W(`SRK>8EOYO4HqGjE%5jn#y(u60m^664roD<Cp3q8#>TZKAmO0g
zaajcnberQ!mt?8xOh1Iflbk1~nBY5y@WML7j=nX3sgGilgh*&aOHaxj%y^m416dLJ
z5RtN~u53HPkC<aY&t0KKMejtApE{#pY?Ww`QHJPoEP0@7M^EzYYJqsof^!8`aczrV
zrVbocW^Dllg%!X~hFcA5MrDNMgW^#=5PtdQ15p<(pL+BH0993eL@O2;6?LW6H~a~A
zQworU#Ep7!=73!W(ow>Td~HfatV&UANHJQ$itLp+dN4*Wp^=XEQ3BUqF4NtXUHp-m
z=$LwWq;*RsOj?xGO@S2go=;zbS_RhAF5?UnsEnYvK{rkf0I05`5Fngl-Oub4QQ#@i
z5E6k#UsYf&%Q#s8KGb}{d{#h!77p#2CLiJL#tAnHLW8S$@~2X;kAldngOhoc78U}u
zI*Nd@_^V|qU~aj)w!~{=1M50oE7s^Xh$i6s2Yiv3uN*J%hNBh}`6w#wIzR|?QTBl2
z$S5a0F=;b|1FOJFf~OtkHA2n4J<39Z91CNxs$W8qAd}Cp0n0q+t3(_6_9A^j{gHF#
z+8eSscqq^5m1p+qQA*p}5*B?1eGCO7r8KVT0!M}YJq7WPdG3QgS|{L;6SO&;<QJ-#
zx}a>tFJ)^Vl?r3TSQvRiGZ=UHxFY=O8;oKp>Vo3Y_9bmRh6%+%C#E_~C1^sP{%T_s
z8EX|`6{7cu>rxwRijOt%#QMRO+K{bAE)*5*Jfk*Wl@fbOUw)>Xy&XLjj!+wGVKsTk
zqcU+-&+#ZL(}uDr3MY9*X~QJ~jlWE<!%aE+xb!i!P<U=j{2{F2xRRg2^>Z`|A;I{*
zbYrk4OEdzElGea#QI?Aa7))Q53uyBvqP`U7A;Q(bGA(@sI)&N-t--0Z)>425^nfFD
ztsnWojr7rFP<E|+Q%B*~MsL$VN~dXpf~4v5h@Q)0LDRjQKR^!j;0;B<KxcJKX{?+h
zl$x09(x8Th(g*qh7E!Vy-~^!03g~ILv#k%Bnm5%+X9M_tp}s2MzSzcm*5$o;StTnH
z3O*}#afKZRl_BP)XZ52kVr)u6jp@%Y!kQW5<RJzF?Jt_^`V87d{Q%0U78z-yNj_)B
zAP^nNodupV9{OIowjlN477iR~cVl~1i;@yplpOU%;0Ia+^f?8UXXZJKBufA|1Br!0
zc*82Nl4Ccb_OUXUC-A8@?X@mVhXrs6YeD(=Qj%&QJ*fp;ZSS)E3(qs-tLlp!jLO_N
zdL>-92b<(w0XMjy>F+{t3Q!f>U^QU{;Ahw+H69XN$x|Osa3}0e1p?h+rC=tM21S=@
zp#(W-w3LD;Pbn$X(SQ+c6aonh3^P(S0R;zYFla`S2Dx1wVUP(XVMf8Wa3h(9X+h64
z@w;hckF?8L2g0#XYk-80k{}!kfC1H{CocX_ILk^O2AeQ#P-|UlM8mj_w1!Akrv*3-
zyf9A%l&~#p&OR;8zyjTj_Uw6M5NDy4K(Y$X!5tR-yp^YTY_CNV+A5%YtO-5IX~^hL
z!6b038}Ov(+XN(H+OrTiID0`q0k1DFPw6EeJw;a}z^mGuJ9}}(PgPqoYMTY|!*=1M
zc0C4q>rsmqE|@P7ZRitd%jeFPv!cb<h*${S@?v0o&}3T*i}eBAoYqEsELqc#oe8aH
z=qbLVpRxA=DdlyWz&KijH4hXa%87AeC8Id)hytLEgtzUwX+1=OkEOu}UJ&?A<@3&h
z6vwix13181z*5O^$NMCVgGsghqNZsa{~mUrXV($7tAQpC&`60HXuelC<Ag!b^T|}<
zCIGJS!^@-!>JaS*X*ai>8R~IW5d%gunts>slX}jvT`gzkRS-S}M<rT8K(oL{rU=W(
zp>c#gqSjpy;b@??Q2_*uw18WP6;1(f;SzccqPP%t!d2+)M_OY|XrP1%8aPQO{FWD2
z3Faw3BB~i7)sG4bp4zr18$=pMlP3=9*O^c22UmpVX@ln7JjHmbO=`zsN^qWR;~LD6
zMUZV?`-e|BW(-^cq9>@Id^~C4pb8Bp{*HbkiTdt{HtP%62s^S0P&60x!>ao26r24k
zQVKr7C<>>fD9Q<xjDDk0@dZ8IC-vlwZAhjm5;#o}R<sUr?(9Wb7!o<r*_7hp2U3`u
zPqBhe#l-u9wo&JgU8|3~F3QT0MI(L~C<9qL1N~+L%``EoSDdw`z%M&tGEg?VDCz-O
zKcOUjHUY&ad|P$iEm7amE-HuLbztp)FC}sKXjA@%d=4Y=*)%3eKA<FAb{zEYMMjP_
z-+IUMX}t2tgZEPvU!hnH?%yhciZx!77>rf^++_}vE|%@^E1F?#oH3-oOl)%0jCe+t
zPx+&q`Pn0pyd=r@T8#WgDtB21AcJR5w;F)A5w1}PW*)LG$R#ul01+x^QX;gA6q#H=
zEv$N3UX<N75ET3;LZtPDRKunt#H2L>U*V+3#Xt}xgvNs+;WZCw2#{#_a=eCXxhmcD
z37p_K*{7aP1($(Z{{kzXgv`@LT)$U%K?7K(vV>nH#v+*DnC~oxO=>Vt=!-|&@)0ba
z`1(~8e?WwleRr73;i())m3f~)c;cT=qj{lFaer(;p0_C_P?+h{+R@n5ZzY`4b|q^S
ztK#Fl1RFa0bU5nl%0_wQ)M<YdbxBHUT006pw4{piLoV#+FR$<`N}J`$v**iwpMJ8O
z)t8j{j>8Sdmdeos`UyFi<kPZ%uDbr_GN)gImTiMpQ@d--Fm(`(fu;`II&|dUQowrA
zw1NRe%Z*_n&<{MlX-ioIRNCt*^d0q7JJCMdvMM&EjQB+;)(qCQma(EZ2a?!XpfA{N
zWh(K=Q)fJ7;s<8fu3VD>-nT!_imY6^6kRpyo}JuF6LIm{cQr2F?eM8b^)uX!2VPJj
zmr?E4d`1|)wG7c>{O##fe~5;4x+m6iN@x{=v%_$$NL49(`~rtMh{{DgGzSSaZmiL_
zL@{mMLin!0SBE#sp$c;<hgd6s27{?8fG+J__*q`C-10zNX=Yvb46DtfOQPON5XM;f
z@CQF&%&+{)uQG&FfIRfZ^pkANuQxSn^(-%E^kiPy+^46T;zHP-;z_4g)PRrag7Qc=
zK-UL_c<M{c#`v*D`rAoiLT}r2$2!oHUr%d(ThT8ZF#(W}PU*<*LA@_=&jSyY9c^>2
zNjOhQz%Q(7(NQ$-y6HMuAX+z&Fs{oQn3mGgv)T1V=-_uldG5LI;d1wV4_W!_pV!Mu
zgN5>>eqw${dB*koi+AY9Wf%AB2Uf&S^gk6B*H|kk1irqk`mJBMq&lr@c_GYyzo_NK
zl~4w*oh%1FE02_`tHg_}4Al>XxG4pIz;B|gPzF+NYl^EhPZc;5p^1o;ZYd8weXg9-
z&&V-t<n2&ia_TzT(QVlU)^POih=eZ41S*9(HXPGUQPU>wu;V$-0%4b;NL=NNzZhS8
z@iJ2ADGa5mKOaAb<}+CaRi1<6P6bge9oH%Z3eiXmCaECtsHg*k>*aVPXVM;i6xPxb
zb<vG0%4p*W-|aU7kC4|Z6-8?ykcOo&LOG~RX!x%wUoq7oc_Ts`XRb+8z%YEl^D>fd
z975v9R5?OBr(K2l8Ji1wa_Lu=#K*Fp)ClK{1Y-gj!bH{|FFLW#z|?vmWr0}^ZCc+?
zUOGv1{gRf1hDF5ff!-;=bXPu&0`aAZ1ur#8IQV^rLq`tj=h=^yk3IZEStq|3$GTY6
zRN%e$-lw0NUn;lj2UxGx?<#U~k{@!R?P!-(or=8wk;nDRQ_JOg{nY%l=<&lb(-N?G
z@jNM^z43+{%Z<;!qs;0@WSA=OGw*svn`6y$)b3JN;>E8t&q%1HKsY-v&eTCd&6}Pw
zhrH$L?GIT4v<3aet_9YC&l~6okEO*r0l)irN!zWg9jtLl*g1r>B1J)+x0Qwk#u@{=
z4eUa^^rbI#_nbO;LeyK=4FgpR*`;5j;pIT+W@=ypD(rCstaIg9j@|@E<Uk3}d1AZ)
z={wruvQ|MCJ^Pmtqp{$8kQ`Z=ZpLR0Hwq!Rhk1sjeAh-k3YUU(As~7O$5CF;OSnRp
zbqy`iY}+pyH5+l*PbJX6HE;-b;TG}=>rD+@&gJPti`wE`hC@UuRCTq|rQSx$w4HMI
zhd$_!q`XX4!XN(epV@R}UwldeG^5pYOj{QA&T6Hf7o27!d~DruJXos*dh*6pU~GI&
zZOS}aaSdip21+V4hgL6Ws||tO(oO&;^f<IMAzDlo{DUhh0|f&PwC5${FSz}-vY;PM
zdGzF&@|1pLm8b567CSlCd`j^(3DDYgSC!+34r<X;f=Yi%SzXkw0xR>^9Xnk1@n)vN
zd^>SLWgb6rq#QZ0zZ^PzxGeHh^s+|S9bsCas<@GO>Bzeg8W0nFKT$qw0qgpqS(zkK
z22uq2^(NL${8={T*BnRd4!jt}568+fs8+$2+HF<V73(3(`lS4_;CwG}UG0lOMO(0D
zpo~&vn_BybkI`Zw&{IoG2jy$+<iwM;;~Z^nBHMR#ZuiR693S|MC(s(dlO>XsUjH0t
z>{a}l-+)RRT1}Z1_Do)DDL`2Nbe;l!QxyPlJZ_|9McaVkVBnmc0Q_}aqYy$sA_bJh
z>!Q=-vOMj&aPqbclR0ogqB^vMmqP5uRXlufGTir50i=I9Jkoa4@6v9=a42+_Yi=pO
zGVVqtO|52FFFaN*X#o#+{Oaqi3<&e&VqjDLiss@MHJC5y<s<xADFo*1?gfRn*F_a!
zl0T^@=wMTEmEo=u4HSfTPE1cvL#_Bv>QijIkr;=Ige*nilSiTltx3)I4`}z{CVoIw
zR=`!~FP10HoGYib({MpgYv$Gn<eBAVZPV#<ZaNo$@`-Y`%fZEY@8{2}41QvcUt>OU
z=#Zue2dr%PWu<9-F`6d?!p}CTw@BIbkQD>W+l+iWK^DV=6yt<==55Js9dG96p2zjA
z1-_}sSn=sa;rg6`1{S*uY@e>J$(MD2MSvx+DnZ{=<52JTAsnU_Dq1uyiZ<<ybNdPQ
z)nEN`$3K40-vM>_x!x-2pwdL3sY~%3i!Pk>dWF}PU32vCJ+7XCv7StIaTzEkuRvM|
z2822Yk?&@>^6)b%gwVx24B$YWp+zKbb<wHKMO%bY7*z>3kn(2(cKv4(^e*nGaGM_)
z8C?dAzpIk~xK6>l+t=*|b~qojLFc*y1Vs?^_rNDV;m@%18vwKk>n!kwW1$Pvm3i+)
zJsmG-(9Ub|aB5X8sKL#mqn?j)8t6)&(Q)DlUMptq3;+Lrdv6~1+fvnM?(?4coI7(-
zKxA?j1q7!~G-3;hZA8?bOgms=t4*ueNlct=wY3u!6--2hD@JKM#-SOMh=QVkV|y7?
zROb0|=X=k&XCCuB-&Jex{d>=Q?!90>`6tx-?!Bs3ty;BeRn^*6wQJXpj*!hc8JaPj
zpmXk~1ABB@=^I+&9A58Y0q^42foMG4Z@SVSfnm6R;2^&xdF6rWc7BxgHn#FAhZ~m8
zv0!)Gk-Mh5k1@QbEc+SCyT$rCuB&*uU&U9MSMb}DSFtd6#T9&|c?G}D%+~3B#BI6h
zi1Io2_q;`3Js>yFZTy)sup!A!PSq@JIT{=c9EQr*mi~q#^DEXeYCnXXT0OYN;+q54
z3!DO+LU*2|>`1_HrWokQeHqx@tR=Wj*}WEykPskKFg(*EANdIGjL>-Fp|ieHGgUn?
zB#D@Bm3|Ix^Q2y_7w~C+GXxiW<zV&KHSor*t`QmTElN@jnw|QM#Fyf$yGM1As@mje
zq)}=3r_tIvM{bos=}U$d0*bX;83fTqWmW3+Ar^<w4goRJaf^{KXu*fzCbx5lPABTj
zie^>-m6*;kE6k_P=5%1K%=`8uMR+wdzi|!uQXr)rctuoBWhz(n`WLD7i-(T#OY4*H
zEpPstBzfH99tZ67i(%-)JC571Y0$1E>|+B@?PO#P!J$4(5BggM7y#ZUFr>yz&;jhQ
zt{q(9OTfJh+4uV$0wV;trzhlK5vLjcxpEI}9mD3YC%eTMO23rc#rt?V`(d8=*YFF>
zce}`V{KRyO>4961m1Q5h2Cw9-gb(8_!gZYS;1=L3`4QTKyjncS$Y8%lhHoGIdHAe(
zkROwnyqWMd<CdcXI=Xeq@Ce<wvyr-VS0js~yZPPwJs2U4q^B$SbMC(4yucX>p6r}t
zd7a9uMD*(Bs?*SCa}`OF&Tl3#7&b<yN{l6#mhGL6L3a!zr~d6U)~hl;;^B_~H%;$;
z+gpjjb@k}iS((t!k^18XVJh2tmb7rW4}T)0PdG%O>vokimG}~Tp_eq3@89OG>^(YH
z%2BQ^(g(qMHV8IQ`K(6*Dz2VNWEBN;xM0VdZ;tD>*{Wdwqs5_jgia71Dr|YG+bEW6
zy<ed5YenBLKe9wrp@Jo_S;2)S);Nh84*I04Vh~+6w(>5c@D@f0y3hHX&*5H;u^0uN
z6M%Uh^3=OH9isy{1gBk7*7NLHpyRR*aDdKwf!C1!^ckph{ubP~?CuiW=V#N59(*jG
zWq9p$Ek9U7=W_VWQodD?;k0XZ%HVNqJooKA%qTEE`}bgYINOm<e)in8+1{%Wat3pN
zSCalF#1(A)J;W5j{S^B!Qu_$k??Nyt$P?dDi)x}&j!w)Igg-@(FQb*{hw@tgF=)O)
za5PCCXPKrrg7Dx~mrY$SaM94c3L09!i*QeYdkEZTAb%3Tn)YO|a4vKnk72+-uz;m*
zeZ5-kv)Y{o;j=#bvqS$*_8^eiB`zpc*NjDQr3r8w!9sekh`{^T{;G}3sp(}NKFMei
zt9XyBI^&iL^xCCgtr78?sM=p?ihL{>=xViiyP%dMZe(zod}f2-FjO|)X)AGsp_0u&
z##Ki=k%%@(L<?FKL)eH2B#~-qSALa{&OTr(ZH82I8-~yhWzO;U5>Cd%Ctsnoh9X36
zshA3HlgnU{R0MuUU1iwdL;1rE<oj=W-*n6SZ(<GMA=Bd?_t>2DE6>)2hm_c0c~<h&
zqwx~y7kWI{;e#Qdv$|;L2S9sxTDpM7I2?tV15bP!f8HKAy<ke<9)$D0V?zcHD)Epb
ztHYmXS65byDLq{%-%hZ5(9@GOJZE^SA7bPX`QV$UGV&n-i~j6KpfdL}CE3rhY%Yqr
zUg27Wul6!$hqoP^*9H2bkS(VOJ~}i$Sx_X#k%E5-r>S7CJWZNKMn)c|S<^VpdW!od
zoCayw9RAx}asl>{_jweq?xyps84wr4$Hpd4iOz^9l~+>-e~Tf%lm(&f<B6a1M7S_I
zc>7zY6Rh(@9ucrJE3bC?&AMUZqbTz*B6;aeAbIT64wp2ht6ZfkCVfv-@d|(AcW|Pu
z+*ZnlZ##XJz;>5p+oL~-@X8>-(*Ge#p7=IEFNG?rkgx)m0T6F&LA`Uh3sljiGu5HO
zZ1}>B%V~qxcKqeSD%dzO7X}E$B^2BsNZHD-v?EyF%io7S<d(E3r}@AB#{Yl%2VeNq
z>4{H#;(YXXGxD|LNp~Dl9v8@*2VdaHTc7OubffbytoD_W1|UCzN~8Amn{ODLZ*Orp
ziYj!iKtrJsm9N&rpF`VAr_E}jy#{09+X}y)<evF{w*Er9cQ5B4l1yIynv!|=bk`tc
zKLbx^e_3hocok{=dAN#;cse`1Pixl-vZkUk$jfi8Qjcl`d6o0L-!NeK907uW4?Gwt
z_=@nrHT)74Q>f!d`L2Sn0_E+3hEB@>sdm8Eq5BQO!#xtp=`_S&Xo^g>J!Ct{$m<k~
zw>kHLq0@O@e?8@kzDSX$zhOZU7P-9Z9|5u*4RWBWD>Zc}rN#}MW#JMu>~@zZ`5WJV
zp)LBv*DW;Rxh;!Mmn<)Lv&_b=WG_;gQ38Nb2^qjGBZCAb+jK>?i6gWa1Uo5zHi&-m
zXAeB#WF$lU#+#Xt|AL9C9A|t>Fa#NLMln5Q$O<=&vlL9DhsdkL_X$%RrN%887^tAU
z5;x!U;1+F^&-;Q~Q;gClR&H5ghv0QL{@H90p8f1+nPkHqWx?w_zk=*ynVWv-)@khd
zk=7{ACp=H#^gA~zTd^#tvG8_)pMFbc;fq0s$98}VJZ(KQ5#`fKm`le9Fh^%ELe>q?
zbJv&q6Si38zvuz04om2B*{V!_7cmODJbhh|M85pq1EYmK2ROWy9fTgJnl&CqFf4LV
zYM85E{<oOA@NOgqz!Q`FC`w~>j*VGvN;+rQg+QD~#`)A&gp3pz@#M?O(bg`I|DL@}
zkQnu3wBQ;6(~BI6qQOB=ZUgrq6b+EunH9x$<NA!#4n!4|9TA^BrVBUz(Q6R5<ei&E
zB;qE*1b{er>lIbbbk_5@h%M3u1|gqu88g$b@JsyQY?9DcQbRjAWl0mU+<J5kD>UvE
zmxr~ipb6NZ`M?6RL9ipr-h!ET1Zh}#CBy3QC1}${ECRyBD}#}N1-k6=pF6$AfW}dV
z0ae*h*75k)iY|XCQ^l%q{tE^KTR7s4n)6+}VlV5GhS(u}k~glh;!dWo`?Eg{k6K5l
z;<`CT8Flxth?k)+et%U+?W!Ax@vbNA)fmuI{e4Eib)bvUnJ#87e}IL(J$4R-@M%rQ
z@rmhh+hf~|$P*f$y3=6f!zrH19=qlTMfrv3gIBPf*rVE6+2>6`Mg)v3F8WauqYU2`
z#k??t&xpa1fKPw&@>~Vp7ZPuIphE^G`GjaP8OdlE5Kws-={WMJ15e@M^a7)>-}*!*
z>HOMKv$xMTDw*22QxO9~dN(lnYS9J7eeAW+h<dv8MMgN5>r4#6n7Y8jU5rQBs%<?u
zWl;7juDND<%wy_c)xUbfYa?~lL^pv7MP|I+Jkwa<Gq*EJ+v)Ho4{1`b8+73OgSf6i
z(@6rQC`7djiA9uKc^jpw>sl~rHwM!uSNPd0Thk$kG;6-1KM*$?1fK{pilT<cxovmw
z<YxoQHSnvjna;EWA3<88A*G6GgHQ{HWfU4OPXE1K(W*3&xbCSHGo15T`6Eb24uTms
zJfH`s&6toA69o`O*~ogj`F-!3-u9L^O&|3!A2)sR7k}~e;upVoBc1cxV?4#Kzk+iS
z>985%(i!}**S&NIokMA#pa;ZZApD^gpQ;D1zJ|RDj4-$^_^zG|-RE#d9353t;x_?X
zbf__2U`~#JbVOJ0x7_|rp1b%Z<~^K;u*H+xpOp8<Q(|CZY%mJU_gydW5$;GKoe(=f
zhQ&M68p@lF4Vj%3f9c;6s0*Ir$V74+ogG=-KFkV5-k^AvLC%DfKS}MtKKV6H>Qb4{
zUu0B58h@e6kC?J9!1TjWjB6>o{P2r(8cx4{bdBZ6F$@B^s5kTcqAz-i0!**{V@3xy
zf`~b4)C$AZy?pvLhXutA7h2K*bAcYHgja!zFmiR7COHLGVlkU;&}<^Ng}SfV@Q_tq
z4cGoP-zB!GJ~)^Gt4VEixv22&sCjZ**{N_VeTNGRpPw@i9dpU10bkouE4}mLyo>Jm
zhI76e2Cl3lkY?cLiXmJT)DWT32<Y4fuqeTo=YzP*aD6ok(Xw92@v>hpBk<K<{ne>3
zM+ohl?;mB9U^#pepJXetUp}5><Be+yb{g?}dG+Us%!jYKV!DDIf%|y7;L!iTm24sQ
zbY<u~$Iz$ZN%$S3Bb+wOl)*0nb2K^O^IT3N?6h{qEvF5vV|a4%7CR#M9Jrck1YbI0
zBzDJ8@H%l1>kEANw8h9|*9AKBE{69WvwoK5#bGL2Y+gb-a2O46o}zFOz85_F1fIM?
zAZ*9?Y0uuHdrnVx-Nv4WJC080*g=>h+gaT7G^I>ITyWI*XsqBS)F>E2QKP*uT42#r
z{dq90Zysn8fe@jat&F%Ff$4I13zp;Q-|&qI-}r~GCSU8yzfoU--tr&3#KzBV)On?u
zu`(b~ZBBp1H%tuZ5gy6H%2WfNbo!0h%rz;}nZ0pUXV(}cs^Ui=4_y5B29r=7-!Hmk
zm^$d(<`IG&S=VwXgZ>h*(sZ~otGLD`ZG>oi7pfRVW$2@oBwP$o8G<$f870IxloFFh
zW%i{~@rUQQm!1cW!mOM!mW#9<2oysqgl><4a^f2u8rg%;uPDFy>o1(X;h+6Wo=#6?
zci^?tJ!1!>sg?O|J1?Cy3tyzt7#!y*=f_2U8tr}sdKL3~=h93Qc;A2O?mPIHh{jGv
zds+EsL-cfxb%ismNt|V_ecIn|;Pso+0H3IKC*R?F=73LGrxJcZ<)UOhd|~lzi%m)w
zPcWKbl;C{RjZQ3Aa4Z}7?8fNOX|pzRoY4qF@vQ8__dLv8Q*@mm`wM)#0B;`v>cF=j
zZYny-2T4ay+%w&N$KBJBqxZ1Ok>lqd>S3=M9T+f$@f0YJd`p8RwVz!({cz193zG2k
zbLX6j1YZ{y{RumFEJjb1(e)7bD%`=xOn2VH#v|&&QN+U@`3R;9k73L6@#$5+{Zjba
zZmJHH)4I@UDic9F6{S&99^-A(Qq}8qeBjdVOqcZ4+Qi2VT!o8Xf75Q#RTA$bbr49S
zMDsmfLqTqK{7_ZIOkZi|;L5Yk#gv!2IqkNn*&tLw7J(h!naI~zx)_0mL?G@Ee8h=E
z;KGL>er~gim?{m7`Dp-ZIO@p5C&YS`P|B5VEnB4>auOhV5nBIcoMNm*iQn+0Nj9;@
zce>De<FXX@(D?u0_g|S^i%)yn)23%X``JX6v+n$y_$Wr;!=XQP$k&I=likI*+dTz)
z*jVH7;k;6#1LSE*hf4?IZNb?SoGn1kyXaI7{m+~{I^D)M3a6P8>|@GtCFdF(+Q&Sd
z?*aDGQTDTC*%Oi6aKtx_K(-J2BxaOwj#GqoZQaQk26Rx~cI@E;rd=G!deKn<PxT9D
z$O{97aP(c?5?Ek5Fk>5NctXQJpI=iyPGdAc&iftl9p}4)yN?~2-gC#Te0y+mdiX~?
zXnN2CKavemoMNQmaz=uT9)ObFm2Q~80A@b}(<(O~on;76$E*8x#-F|CO$k#Ow;dR-
z${kUu5BDCt^X5BvovJ}}OZe{TfBv$sh|+KTqgRF2Heo8$b;nFQ5og5^sJ>Nx1Gcd;
z2BrzSx>dr_&WdN+WLS5&l5{eY=<jx0iB~*#@OHnk582{MJ_(m_#Wha2xXxSZa{82S
z9TTY%z0eKv0cL~HBZQ9b1bO{9kQ+t;Tnni1b){H^4{mT-N>@rkE|nF7Af%zi7_4wn
zI^i{pV!_1)bO9R<K^t@-It&!maxds2^j-=qU&ote@Sts!`s;1OMGV64#vpvtH$7we
z@gIK{Pwo)Kz`1U48($DU`0B&c1Fqc9W+X?(7xI0BT=p|PICk>vbhRCWr)++^(K$VN
zZ1GcM=Z^6W03CWCy=pH;;l$l1rgz_TD~)>Z^gwnJ9%P~LN)`@Ta^&bRHXvb0_Aw{V
zegcfaArC{*C~#?bx9&W~`UUF>oFTCLDvw`h&VDz>z@A6CtV8frM)>LMF*XyC&X0*a
zQORT9?UYVmPBUUT4({0LlhYlXIdB)JC4Iz)T|YhkGoLVh_`@E`D^W`4t3cNe{Kngn
z21X&BG5S-{)H^!BMrPf>55hbX(L6LJL}i-b0%II{b!2iJ1AEh*N9L)5<@+DM?0*T#
zt6%;ftG%RtDi7EMCxLZmzBblsM&&nPn^<VAUqW0PxG)ieD+U7=ZE(RSRngt+-F9Z@
z2kITJx=Z1WtBc5rFh!FFTCTzj**0Q7u)xY7Y!;%kEHxF=mOBE1N<jk4-+~w3f|!n5
zGc%}*{w_5LHA0{gd@5KODtBB~O(blTY((6L+sJw&uq0H@<~4Lq<fX)wopRWqlyBGc
zn=g6c^t7*g`t)$l3iy&Q8H<Y}sSAO(a0<~~*ImhH$5&)qa6aMze~KsEF^23u*{?Zv
zn9V`#6l4Pr-GE^^Pd_@q7JCEE9X~t1H@JHGjL-Pg=@IY0ZF=47-ZZ`buip`wujiMj
z{S8UKs65Ox!B3m7<y?Zpo{Qj?X=L@4<8F-4dFI`|sn|~;cXN)wF5WKqly@ke%~0w=
z<4pd(dUhXxo%SrF2Cp-IYXDUCQ;Zb$^WDUw9`W$$8jRC**Izvyc+j=ep2Iw~eaXu5
zfVR;NpHT<&d5x%XKq|yY2hZLLFs_N5#`rlpP`4RDjQVwf);Bet1m!ssN4TsfX}|0r
zefji}ANjE9_FHeB-uMRgACM+j+KT~HYF$}p22$At(gGv~XP!Mm5Ty$kfdFpeQuiBB
z>T-$izz%RU4Pq9bWOnK5KjO<D8s+sGG$xbw-ktHI5GgPIE>zOCl$K}E4TdX&Ff8#P
zSh8Fah|9&Tpm*i90Gm*XG7N<e;kZQ%l^Z!%BLo^_KHMRq-ZoUY=&B+jUL)2_<BwF^
zd`f~FO07UhiVl1l14Jq5Qrv~8eab5{^0#rPVSxDg=l<06FTdyinj9s(=tV9x78A2P
z#^TzY$4*Um9X~x?$K2YFnLItn9~@zDz;OA%bcD}@_i>iO)~+jk3BVcv!*TNPOUOf<
zPIQruzyLqH_4YsNBc^Mvd%*OlH@|0k$2)Gyhd}OMxQ8z*kHc_3YXC=hx*vqmK@7nm
z48?x7Iv>PP&;zr^up1+=-_ZnbII?@t5d<A|52F*iO;qKZ5JwIC?IHaE)-(JqhD<{=
zFz|3Kf;mohJMKB;rYJ`_j7VGzMFsiR0p4tgV7-&+2~#7OWn}37f{U(QU=ZsESloET
zwrSQ^vX}^iJ{3t__<B;K@V+~a1aAi9G=1Yg{g%|u3t#a3)JKmxt8PXcOO043Rx)sa
zB($*LY^ze3PTqm|H*h9M{2B&n3X^SKM(yCpQ4x}7`iL@!DC~@{epUUb>7}X)im!sR
zH%tgA$o+GjqN!(t(61evSzF5{6yJ$U{xSl_m*5RAH3TX2!YDo!sBTsKdb+SIC~6F(
zscR6Mioc!RET7Q|iNvk&ga)pnD^C9S?uDz=rIpmTGRur~dX(m6zy2Z?7r!;%Hhk{q
zK5=^GD_@yt^LChf%aLQ#gRi@4dces8(*t;_<}3p8^oi#?d%x;C&T9Xz=_nnS;j+8?
z7}{Ul^0i>C!tdKpr=mmo3s8smot-}VV;?qs!~-6P@t`v^pLaEWkDb`LHu<^+bc&OU
zj@^Ctbd0r*qZkQ)@#rMOeWwI&Sw4diIY~MXRK1FioE~_^;pxNp$m!Z^uH#_k!)(=2
ztGWOHKmbWZK~yGU3$q_g@w(KK`Yi?hJtrF3$uF=7$_oZMGK+=)WI&t0ye4#k^5Pzh
z0k1&aX6ykiE)0^`<wFNQY}@uVBYtG{?G>VD)KS}zed_{4jMxQ6Ay8$c;56biLk+*!
zeEa)33eH5hul&ldm>%-bkId-c_gPHb(HPi%psm)6&o(eXm?#Ulv;+Op7D&1djF{rp
zJVA;d<TDJDZMU>P715V+3|GEtkJXpJ7|%6_r8R8&O3=v{C|+TJj$RE|Z<U}V-QIh`
zZzcI`5LBjx?*waupt5vb2D8dF5Q4fk3y{v3bW%%GFrp2f^3H-Hjc0l7h!o1=)L}J!
zNRo&W4psOPt#mZxD8+5c+rqb;5lES$vN8%X9PB!J8?4w?v(&wo@c;eN3#PC9U!OjG
z*LQt)3_>TgY`$%{gHgcsd{%rlyATiYu@Oz5S99m5J6U5mxc};`o}WA=KNbh=dA@#R
zZh!W|3HnDJibD6`-}mzj<<B1HVe1!;e2K`&U<;mG?rii4%~RQfNc`FOEe<%bWBOge
zId}JAY#jbORj_02r-L5mq~e2o(6oonzZ-rqpi|p1F-o4(=$i_R0+o^VhV$^zFgT&O
zaFF~Cp%LCfUSyGE7d$R-7;JjK@>*%~BOlK~aHEnscjHp8P58O9i-#Vi?yK9po+h1g
z`dx_oIXoogoxIY#1AW;hY)k+AUwm8C+@piE8PXLrYip=P;2uM%JhlNqxe<_G(dM4C
z5>=>3D@omp!HAuSX3t>0%7Zd*cjmdimUuOEX`HkQ?_b<@mKI9fFa`^eaxJ0u?*tcv
zz*D0XFcP=M)=+txar_k;a$Zun6ae}z^jd%x(Ml_WFd&sZuO$%ImAp{_YeqZxBh?U8
z*-D8+j-k$$DMwI2)5R2To|kjRY+R9X*Ys=u{sq&Qe%V)Ml<?H2K6QHG3tt#Q^LKIa
zj-w~0BiGhBhkJQ{pPziA)7`@&o!fBTu;f9Z4wKEFSv8%*4(|IwIvpboKVAYwXNT#Q
zN4N2s5c<8mirnK{0-mJq?Ay%{-(v5<uxNUAbFj%?77=}iznhFN@)>kCBGLKen=(5x
zVT5qr&d)U9B189!JgG0<0}cJzkC86eaWy8$=i#TE9E%}f6mf_Vgl904&hroQFrhtp
zY?^N<a#n($P@_4&v2f~OSuSuCn;&1*o&&zVBu|y5aX5osJcCkW;j72HnR@*tQzVU;
zM&lXZ^i9)8KCIRb936B!DF~O;i`>+wwP}afqh^2tZ|Zu~xpJp&xdlpMV(~LHIOvSO
zzs~%~$Gm1}+78FNX#}M0Yn|q@24OCvY^!XM+k8g3huI@sC9IN!Ah+2dlmbV=B~}5t
zRtDZ;HZn78A%$Kk=c)j~6+ss&LV_QhOR?ea(69}`=2W2yG%7%`NI%LlGEPPjpky#S
zqLTekACU%UIq~bn$y2-`^Ha`6k>a;GWrjYZgTQ(P`BOjs!_&8X_xDdf`?Jr_DB;Kv
zSHpRCP9wgJX~S(t4(BA}Lp<59@(V+ry65=SrQ7+np?rEw$J@&nj4r6zDY6eh=^Ty&
zb}O3_yO)3|#98(toH}*)wD%ka<|IEd>u1r-vwdyo(EBV?f_*%dGh$#G;1k{vhKHt3
zj8xpE=+}unw5MGU`S2K&J$!_8fyKk!Od&2H{{`Ro(>Z<B=<#`Hxz2D_!-a#4K(3<$
zA697f<sJnL6lHa~vc=RPo6HO|JvrwuMjhmrqLAN3%d?&nN#2eI6u`Y28V2_}aDWs>
zhrIBg!q9ox%sXzmYr5_3I;qM%AK&qv-<e8z-ZOtNb=A`a)HbFL*3W1+p(J8FIhCQ@
zQrD?-kYyCAA8e*i6^wLq@@+`@T0aFwW9z_3RM7@D`i1TDUM_hVpL8w%2nU%PWlWs#
z{<-3~&{CV_d@ApBSxLcDiEf*%OaJ}5n&+CnH==Z$@RI3*!&5KBqh9;Az#(_*egpy4
z@l{~_0fj4tmI_MwA(<5|kBTkWe({$$WNNXL&&Kmxzwx5!&tG@rbPfCJzxR8;H@F;~
zMq)p9x}8zNQ97xIm7JpEx>M0ZQd}@|1aUWukAA^dhKBVA(s?jVUj5mLNaJg`EY2})
z*n5E2hWya#Jrh5&!Vj<>V+-(UMg=EW(f1>%^W=3Fo?hq9!G~9b=lv$(de$CzO?Z*r
zk>~h9)C(+9ZgB`Jha)hWU|5fQ=Wf1bI`{T>P8T>{{tT}J&oZ1p!^cvm5Acc<(&>S$
z6<o<kgmng|7wXfKl>AM|3%otKfDE3y5FJ6jo3|)2K8!H(MJLeHmECQby5gxXvE{RK
zyMXAP1J_w@!(hJUy|=}lna^{d``qbjws*hwk6z82g&SuBpfS({Z2ZA19edPK$y0a4
zs<?*I#&67U;2`op@-_McfoXyys5VE4GU!ja2cwSL4ns5OE3R~X?{sS#{phyy+Xn3!
z)jLX%jS)gRW=c-v&_F4(lu{i;&6HCpog;_JrwTgbLAKzb8}uPg%Bm2(HA1*_lrYPY
zsv3!Q07^0!&3p|<y!H=S0keD~h0UOGmad16W>cy3ReM;6#dJIIsiUrb`p180dd@HW
z^7M>neDn14KmYU7U%l~-kwZiJE}n7^yz0<&1;g{bY!<o(cmRWt1wcB$J*QaU+jEMc
zHBWlwbgHn6r!_z8=KFkq22DN+<y_q1|6X<>^1SA420z7i@zk{E3_l~co2UCZ7UrPc
zM=#lRk~Ez1w3lfKmV%Nn?7ovJ0iA6R=O&&%ayx!@EpqJGsT*I%T%YL!{27<<l_i~&
z?TTm4-7}rri=lAGGH(&~kgtZok%0wt=i!#d#@&+&Pre#?7atW^;~s;70nkun+qG{U
zcxtOtb?2zaa}V6S<qpp?q(6djdFQQnPq(sP!utGsfA4dqr#$70azxty^V82B#(;FB
zmq$aq30M6jhsXhv{A{s0?lLtkP^yZsUj3`!Oly1*#J3KGMh0P0o+XISd<G(IZRFSe
zqj5!7^y|3x%OtehB$4&Vd|ON+O04p3-bq;HEA(s-vbwKgtVl`pH^gr^Za~Y|PH)O<
zAqhnI7QDkFK^LZlPadR?;W2Occcn%K!r~Og@J_Bosk;K`TV!befGZh`u<*&lbX?|A
za$cHW#27T|*vL=gek&dC#lQTE(^LPaFQ1<O{O3<ke)5y~d9*vzk$w8Vhu=B4f`zvO
zyRTv0(9r--dRNsc`#roe+{Y8%Q;X{Lo^sG3U9s256IXA8XwY;z7YaQr#h-!CA|T`J
zlk8ADbDr0j^tHphwses0b9x_r^Bg0EE#5Y`*=!HzB{~;Bb5p%_*mau4Iy$S<i3=D9
ze^u%{Qvsgi7#fU)>jYOYf^e!qI=V0G5L|v##s5WKb4G_g;n^{%7OjaG2mIOFfWj=V
zpGdo>;XJ#MTsX9F);R*PM&amyBiNZH+|8)!7B*wO<$bqjI^l`R&wJht@SdjMe$g*a
zx7>VF^6d7~FwKQqU?f@9logCCpy0%z<VvH|b%khkD?B_$d_zg}U*63*l|HP{w84TU
z$%0F}UB!2}8o<)FFP~q<^jn5JZ9tV2RosoVK8;pxHV9T!83nC+bwZ0@osmRp%%ZQ-
zTefmmzU4&Vlr2pmVI#UwLS4b~mx^VtA>hG6gR0JD-i7bH&3cu6<r#+Z9Qh3Xkzn8?
zk)UV>opIw&8Co{^D_P22K2sO6e9K+=AdZ|u|3JLphM%4u^Y~Aj9{bqGO+WG@&z!#Q
z>%MmA_TqH&UB@`X@QNH}x_7r{6I`6Gpd<J}(<w#($4_&lI-SAaM99y~^QIvii^!{f
z+TBda$F%?!3)~s$;ip+_WKk~*doIRde2#ER(cUu`rbFl0&%ipvL7v_$OG3|e<aqdA
z#HgeICz*~gr_V1da|XkCd7kGh%)|SqeT-^y1Uxd;PE0znWldvZ6yxhoF-&W=SjQ0B
z5Vu$l30?H$;v#%8Hcl0s{`k4Hhq1VAnH33i<Y6*yi1N(>N5?Z&_=|VnJl)MkB;9j=
z=6Trw=7~tZ_6s+_k2bUIA<}JThLOM;#VIfU<x<PwsseMSfDuVJfO;O(GYCRHm&D8@
z-Oj4Pfo?>^u+@PI+BSJ_*D~~%M`+DOeu8jWisZOQsVX)k8@I%*BC7;&SruhA2(x1C
zl_~-QA^SE6)j=xGTvmLOY050V1rOW|CtV6-;gT!`(3g5hzLjSig~W~cB3AlU3Cw5y
zBWmyuG>&{)k<t<3+LX)qDqqFQU0mf;^rqR-sS-#^ej!i#dyY;&_5<HD{p){w!{j#(
zuYUEbr+@eFelE!!4m(P?l5NAjRp0<KIzCechu`SlHx7qRUm%Q8aM6#>wHrg>Hsh3&
z(S%<$`X*sFi;X#wjFE$1O)AH3p4b=YRGweBd*4+&aoOWQ=evVnc6N($)*rO_bU^d;
zh&R6naL3YKR{7l{k>79RYfJYhcrN1>c|%VAyg8uLB4~`04Ny)Rsx8}%EepR!NyC77
z$5>=&lMl9}_9=cI>*cRBmCjg~aN9Pc8P8U9UxWwK-p;n|cQVC#4?8MN^G&=}@I<7O
zOlzL?ecu*bj|du8o2fboZ)7V-#-ln@*94V2NC>L_N4mrq=Oq9(lY#1}A{h6y7yaE{
z7P$6xdrZT$MnUA#zYY(46yI^c{9lq+$)I?%&Ff5C<|0`U%!ox~P_sc$nXYb^QVXhx
zjj)<fIm30Ht-LB2{JW5W+ryPg8r{Ne=zY$!^X@#QTvJy$<RYuORBro?ZzYQ}Zn?}m
zv<(g5%t4>!9zJ0C#LIDUoANkL5@XW0z4=Yk4gcnu(>H(n_f9|hqtBdP|N7T)y*_+z
zz5Dodn9g>P>i`>f>@%JZ;5P_<1?ji``}s6^KZ}9~na{i0?h84kOMOu5KG8G+7nt9J
zCCWuTI~g4~9TZu4((gUMNP|5FS6y?M`W>I7)A8)Tz7g;x!M=1}M;n?6KD}mf(Kmoj
z7+e$Z$?m=eTU&K-M<vLN(aBV1Rtd%czFQbFzu*iJdAgviT)t7joG=op#nCL1GAeO|
zA$!Z|2;o*nFE`zJ&-B;tyDhI_J@~|tmhO2!_Jh-HW2zv}HU`4-SKT27d8#qp@KDF5
zQQZ07I0R3cLA#_~@d&RSZlmqY4QjNJYH!dJpY|R)bFZs$-7b@U#7UFCk#?aq|5kWG
z@5(OwKuK0koX)y2tq+d!6;vnfW`nROb{GX3ff|)KqlF|Q;VSW97hoQ_Rs~SNF6<hb
zAO$Rs_pnV~6shtoXv89JNOP0-$gn)gZ0GzcZ{yb2O5reChKxh05~r+YG$hb_Ury4f
z>EiVAm%e2B<WKq3>A(H_FU+gRCqMZ~)17zTnPIL|hilo&e3<owJ?u;1Gp6Yf#=#wb
z9=Udq1wen`#gmiRjL7NC>=-2f-PDUa7JZNJJmCP=#3#Hz$HsG-ayaychEC^)Kf5W1
zWpfaapH<t%egW4Xka3rDeHR6lnKX8G--@KOJ7}Q$?zX3Ta#0R6K@fDZ2Y+5=@>I`q
z0n-;{+2W(C{+-HLIUg{v&dEru6?g<(_7^an@yr9|Jd0&=EyVWctIa$4VVT>w-o#sl
z_wzB<;~)RH>81bix8O2OFMsi`On>%=zaQGQ0noUaPhHhsstpw`iMu|9xH8?tK!7uC
z-B)SAiPtUs7hJ_$=05U~>xL80mG(c=EEL^Oq^XNIS&U$NMCot&66}DHX}iI0yCrfP
zZVAo?q1F&KM+mbqpyKpL6_;exQVh9MSp1{V!W`AL!b@2Sk!2N4kz{QXYJ*^Y;cmnw
z`HuWZ2kX+Ad2ED7T=K3w*K!pxG_a36W;Vo0d1ah@O<T{D&I`&77da!ZmE<3gv^PBa
znbV^_=3`k;c<l7@m%n0q(vv=qMaH}GZvEZ2AIay>4$F75rTHXp66kW-B77&`{5z!I
zN9Ws5CqLzeAv#>90tg}hYycvydk!wLOYs8V1w<JP{LXpE2|<7FL7w@539F#|3<T)N
z^mx`99IA`+mga@A(ZD#FNhilhFq<et!D44Vf^t-&CBO(UC&?zJyb)0*@{2CvGw-LM
z$GR};53!tOO(Q>mi@{<*K=qq>W<k7qy(eFXzLx`5-h2C<)795pJw4~Ae8qV6^m<N0
z`o*7l7Uisw!14gA_R`^MD&kUnRZvcZc?sjpm-2&4RMRKk`jfP1JH<AR#b&2_6{+&W
zAAOj2%G!|xNxKoZEne2viZr1!#SSz@hjfXvAR~{?staI4*LD1&ox*cp8H7@7R<Th;
zj|zHi!7*JcC>oqubZ$!lm8%QU1+H-6r7ZjsmW%vn7#V`}Hj8c<bM;L)E2{XdmAIB8
ze)INkD7oYyY~_cS{DxDQ8HcC+QM@#bD0<12weSUx9XmRG_cOkJ`hlN#Zj8b!UhzBA
z6Q1z+sPHbP2Jhu#odaxB_G`s0-xgR_hVr_cZGcg@7GtrS&hCDHSNQ3M$=RKN{-BGm
z2%Yb{i_rPJvHl{HM!;~&OC#`5*DOq?C(;@G&VaNUyRFcZH@lCvd~-m@+s!D%HyhzV
z{1$mQGBBN^i<H+>lgKgZLobd(QjZt_kDK@H!a24-J7V!iT-{&bK`2fa-0_G_u*Cc<
z8y|u3J;$w#4sN~UF3y&`YI@;Ie=7%{y!Rb%oo@KCADE3n_?wnXf5XBni+K6g1wbW~
z31sR!2xH4=`$X_BiNKn6_J@|BsNuhNV4K)%7t%LYG17cy&%!OKLb$ZgitW@Z&SA2o
zZFyIi56ZhT2<o5|ya{{MPzp0HuHi~eRTc|lp_f8wkPPRnybw__<FD8hPw%-zCZZ~;
zV%OyhlcD61AJOYP@6$iilhu%QorC^rB!x|x@X9x?VWcRO!dupo+UKp3^IMP@g&+Q|
zZ<&7NhF^?P@O9+Ze9hP7z5DI#&A*y$zx(K{zJ7F?pz%G)YWy9?)Ds;Oo(|(Z`osmu
z19VIm8#Q7M|FaF4u#1p}t)nfU;&ezy{5gHd`M&fRi8@G?h)fe4b<hmx;I0W+92XCL
zFvOr}4j3Zr+RKl&h}XbCS8asi`Jljfq>lU`O9Mr~4OOIK{eX21A?p?%YT|UrcN9WL
z7*?~NX=f)VqoSK`zYF7baC*_NzG(Vn)($iVKm2Xq$QFsCOUE}qFA{GW194>UrD$Bb
zK#<nm+<q;nF{2)(31%b`4DSp<&Bz_&Lhym#x~-N3N^v=7+|KbWk11RB)<tt$!bP!!
zn_`C%0@WL(RfS*bSKG5v<rr5`-Fj?SAh#}Phb>Dw)PNn|g=}ugW5}UD*T_kA^tJXh
zuMZ5CJj&NY*Urm4;*4xJyeW^kRaBGAFmhJ|^i||7H@|QC{(ttrP2cllKRtcbS3NDS
zB%MB-J9!U_Xvg?5m0Doj!)U;deB6L^l-F%Oon3&mQ@c2)e4b$JP~9Iq$!{p2qCE(e
z=>af0hR&z8o!BXYA1C>3MAi}Zah9S}0}O@-uhx11Jo(;0Sv5X3D~*C3-cf|dr}LN}
z`;1&mFsgR3I)=zvga!k?2oj^?$4ew-y5Ly~b(Um)xQ3~UM#=9sTtm2>55I0^r=}+%
zZLym9Gr#b{>Ek}}lQ~23`1G6~{0@x4J#)v`0MwO1OsXrY9?c}}R_P6o$`Gm(;{t;Z
zHiR0==3!K)i@zg8at&bA23-*U1#Yu!v*-S0x}Dr&&2Hs)d>MyIs<1@HA0??ME1<TM
zmVe-E3>_D1U5%q?jT>R;Qb|qg6J^bNr0pq6$EAjbOhdpSDZmEHMboc8{Rxk#4v)@}
zxY@rlRGnUS#y6}4g`4pUZ^#mmK8b|7AeKg>p63hCJKp-{=?DJ#|DIQ8t|>TuxQ6o%
zPP0C6>s?2)rMb>vbV%+KcH%6B<I^pSB91bgKEb<rj~_q6D>=Gzt=^ldPi;C<_7`9*
zTu99CAUNvaX}gEZIlsnZ_dddm2>i{)y@&Ym6m~)GJ#;lY4-YfK;D=%{3VSgUyE%Vx
z?_uzSbLQiIzMSL$7S}N}FdBeeEP$GQ42o|REI)Z0t?|l_)UXNZ9B&RR;~9*F>j>iW
zo0q&|y_0Fvtw&GuD)vZz%Kj%`@S+%l_r3FN(+__0Kb~&8<tEw^*=d)$-Bb(RXh+>{
zBAWDyDAW^wc@iFY(<E+vABhsviC6LQ{%5|KS4pzTxbZ`z&B#@#)0Pe_bM?_np!p=O
z;h<abS`5Nvn9P+xeES<No!HL5G8Fh-LDnerVr9Yu*Z4}mX&@9>_2k|qRp8OtR<Z|2
z`&&9LfpqL0VcM$gbzIwM%_8Y87hm+m7F}e*AAxofZbQ<!Jnwwlo2Ku4`d3ZwdHY*3
zeR#=lGEe@b$8op`yYes!w{wQUaZfCUvqOG6!yWhV9RwZc7(?q*?BsL4eT2ET=MUyn
zW}mp~KeE+gpAzxbkp)554%`ZjL14<E#2&`VY65?(M=;DcZZ}f`g*47GZg~d3y9liV
z<j7h?FE;XY7w-woc~b$2Wc5k2Cqnz(1tS8sNxLKQ1V+qnH%|FEHzS4<+>Y_RggX)6
z!vf;FZo6x`_CXJsp8t|pP9OaVpEPL<p7mYNm~Ox2{d419+MM~Wu8}t&GNi%dTiQ|i
zl`rX5^huM5=4YVzggBwP4YC#Ha^9UO8{4wag^<mN41i#RW@NLZ?|5MUt<yBKZRwh6
z83cK3UW44RUb#h>O~UO7*I_HEMg*p515o~^TPpIt`L<?MND8p6aI{m~Di=4eftY>i
z&@}WJ7MX83mNy;i`0ak_8#nR+m>2(X!sI7z9T$Scm|$E<!p#Edfc*Q^``6$44byv=
zA3IO}Wfsr={ug}Vbc7-D&3w^!2c6w{wKDIe6P{u{LHzB^vHd0K9O<qxa95x6a&XSi
z`)GE0H+j`sK^=w9)7)u>LwP!;8=KUz!**rOkE!rcl1OTlo{d*aM90pw0YhSE*JZuM
zRK%+*(?<^)fBw!h<#6YryB=LQR5mvod7gozAAjaugLXFt@cryJcsHB09{br(nx4(b
z;EF4+p5FFXZ<zkg_k8o1Ce*YbZAk9Qtc-mH7i4e*{SO@=eqmhVR%ydyjv7R!35QOy
z0V`HUCCf~0Sjyazq;7-NjD~Jaln}Qr&n)<mVS9YjnOpuM2fqIdu%%uMLJGCYNYNX2
zpBZWlO0YH%Wh}&%p(y+^8d%~-fh=O@6NR*h4Hsp0ce6d#)tz`oq_HlYdx^hKTpGBI
z+&}r7HlFzH0EHO1h&N~pm2`DW<hUun&A}GncSQG0KY~$s!=Jonx{5FNp8JAdnZD!u
zekkh(&Z+&-$=`>hf8{lxA1~d?R%DIEag2dKg?>7RlG<<CcfeELjXn8jh)$Pzy@tU>
zME@9_r7WorM4(Wv6=)1xP&Dit0jeOQ5)H#e)-qCbI=99_BSV7F<eUT6B<eI~mn6s=
zqm;7@92xM7QNCF?j+|cia2*5hHe}0i2gkzSeP(O=nt$>A)3^VtpNKK|v)}*i=_mis
ze;VD)ZK2zQYKvdURmu$1-&aKxjsDOIrSZ1Sr9S4=Yl5Umo+hkNB`&JM6=(2aPRvX=
zdyLFqQir6%mZuZUKJ)rpT#nT1qTe}PAJ--QZRF7-_sGU=F$jvRun}0O(A&a;iE(5#
z3*N@yZ&Q%Uuktiw!;33_8mGwNvAL$nCX5eQm;U>@q+O@!@b+|O=buoTh66Wv%n?IA
zX_G)WT$iZfakk+;=Lf!h`n8|^x1snaU;mBMufFV6(}AlWK<7WgkoshP%Ryr*zvCDQ
zKb^jdPIZK*tiMm-&!0Iwzkm_&oI(Z-Jk6^ym?}Ri3lbK!?#DVnECCHCKk_0yx<1GD
z;i?05k6|Fci!LH!WPD>_&G;))jvTV%5JTe6x)Wr;F?Jqmm_VFmG;o&b!AW*n9>tJ(
zFzN}6m}?-OEqNOYh<mPi@bn!&e#7+Ned(7?rx+Ri>d!oL`VY_fp~zy@%XewS)gB^K
zB*6z!T8l8(ibg`^FHm=x#z~*#m40AnFvk^*_@wOg%_b2N&ne?I7|D!EbbEqLoP@Is
zcuM{S&gDi4+v5@z&()p3r{z1+!hi0c8VADzW|}$j?@}<19FB-8-H_JMz$K%QAxQr<
zeV{2#2a!Ey;7sDYwjzw8VXfkfUpkHH49cYNGbvHB4KW_Q>7?Q@Y0i@u1K>`(dK%U=
zf%&gt=fNn#k8}Je$S0y-47#drS{LMK`pLqabmlXpiNA3MB7?H%-++-!Bs7T}oJ^q;
zH(<ik^t-?QD-4xiKYi`D{owQopY)jNH~--E)6YEXho)b?;V0-7{Qd&JqU0&c?nCfg
zK^Fy;`^>o$*|>BSyBgiFq|56_&wHl>X2rl)g#MvSw=S2iJlV*%4~z=v%)yb?>4ke&
z@^O;*Ofyt4qYTpLTL@&2Uqc}+R}MktjY38To}GZ4j$ZsO!^KcXGp8_GcVY-mveo+U
zf8{q!Px(jxB=X+!?zhJnxTezl8b<f#k-r6|oJsw+xOH`GuvjD4{tcr02t;aVgb}`d
z(Utm2AJAjD5-wcyIuQDO=;l>1l-X0HNGq}ApbNhNn@6#c|1bg|5_cJ+5JueQ5kez`
zB`Tg(<`F(|9oynm%!0N08mGU)ph_SG+rUcOZt;n+vn`#cJD+&{%at$w=-gTDo*@Rn
z*J^}aoXa|bM!|H0Mt|bOOGm?RzP;v<mHU}zr7gOJHhknYuI8~5Bm;_6iVYk(ejn=z
zKl&|SJKe~zS@-q-$G1)|c-bFKAN9#kU}RvY@^>9wjN^&RklS+tjx(jWnPc8hu+V5H
z%qAdgn!k!{=gyX4I;JB9M;RLD7(?^7!J+Q_Odo3$=lP9=^FHx2D)7vL8vZ*axPWoF
zz*>O$hmJ+eY$~F0IW0KDr_)(P<P~a-4m_%z(F`L47Y<!F5I*!VpE-U1&;7=14F2@x
zFPVPs|NhqLCKeIXfGPK83y3OKx4A(q?E-y9r-|~GV8PtSO}aSghi}Fio{=*H>u-)}
z+Ci3xPE&#9ZXvh|%$`Dy5+<%Y>HUNmIZ$cy^xMuoI{0D;=v|lN*R=3h)5x#gJVGep
z*A>#m=@^sf@B1dCsU@}=yL6?w!Y;Jk8H!KQt#!;pt6XI@0s!&3xKTMfb+-G1vorhI
zZe2*d;wAr#AjsPWngXrlFngV4Scx)ZQLMFG5mQlfEeXP4M21~%%5j3B^M82G4^OXq
z^~<L({Hmu<4|&+5rXRlHm!{YJ&da8k{pt&*xBvN#F<{Qg<$I9>Ruu0b2Exy!HE!-7
zJnhq+5k*c`bRB@*hZza^+Tp@!Mh2AM*OWZvv#?0mClQgP=8pzr2``@Ev*X|yJ!u#?
z1VuUh^(N`cC;*)*Fiojx0_z2w*?1QQ;11r5`1_U*eAFjQ|L}kK$J56@_R~_<_q_Qp
zr&s*@=S}Z@=UcP>kvuEs`5wX#>NaX=fcs`4p{=*7`%?OfzZAa%X4O{WRnOrI)K6gD
z5zCLx*|eqKQJWQO{Wu-)V>3K+8^uF3^2n#Nmud1?@iq*8nG%>s@n7TfkQn$d;kL~n
zSOEVjL-U&b;tg{vit>jdxN76ZS8Fxp;u1<(WHRvT+Q0~>unBCdAn8I=9(CfCTX_tO
zU_+xzfen3vJ0I?_P+S`YScH%FOI>vm@yS{kUJD!o6u#pl7kTEd()PVzGL`M@-uA{f
zOh5S@PoMto7yS3r=YGkTPoMR9pP%cEul*C&8-8+n^IzOZr_-wM;td340J<^B-%W7K
z@*Wz~DU8O&{WJuo7jAFf>#jh5;*C8CnL4meSo;ZTdgXe7<$(zXgmVpCFytrWH6#q5
zSfgO1;RwPFQhCz2PGOo_kaYBLl2MDlF>xox;MOB2rUzgMzTiurHht75Jw9bSbMnOW
zd%ya#(;Hs%3f@FiBTakiCSV<pYi?shD;;G}|8}>=wZGwZ+Sa@AYQLd$>on~T908m6
zOgGy7Tn59$S6F`nOV}qfSEg&~5Cbkvp3qEVBaI)9;24xTfvq}8JFEEA5%?j7nZ=*H
z#2emrX<Q0-dBZ@`xY;1AvLK?e>r92~%akQXQ*J7@;ucjezD_5m(iDdZFX={P3t&(Z
zu2M)m!KI@`VHH=M)K1@P2@dUDJD^ch3620Rj5P;wDoUe}MxV-X7FCrZ?=Gj=>t<-4
zhJjYz8kS!f3ctuCZlp_LDn5kat~N|m@Q;7%h0|aB!7HZE{0Cn$efpE1Iz9UFpONdY
zUi+uhYhL!E=?{MECHaI}gFs2b`)bZaJjAZVJ!enlgCy5Y`~@jHGCzaDh9=h_NWo}<
zF3-q-H3ruX6c&AZl$t-7vWo*!{Cx-wC<HWGPBX%2XaxLFDOE!p;{#qT^3!gd#&jne
zrjBB09`NYDGkw<Iee(3kM}JC6b>`HG=?$-Z>Gay){q^~EqI&H%6{1yL4^@mjN*58X
zBZjP*SkLK@(-Z?V=^Cbt5J*zD6$~yh`fzK1Vfx-#2GV}Y4QOX<Lg4n!xe=yr`T^xb
zN#k2nI_iu1u{n0zF<zOf42w48r(45~Jc$1w4MO;C-jrc39f4liXeD$!P_hIilS^)T
zR&f=aqt>iNc2^l>Gb34<r8>!1hj?01GjyK6>gZc4lnyUkjDbd>hGL~OrwA>DMnD7M
zlg}<zO*ZuqiPKdhn)2jQ4*fulf`&!<KoCMiC|Q*+@j(4vm3qdHU~!i*2v^`=^Wy(E
zo$1q_^wjAIpZApM6CeNSxxV5V-!{GWHNQLk>F>OBdiNXo88gQUbY^z~?t}kD&R9Ie
zf}=YM_wdV2{`kvoI=a6a<zXnh8S1k%$>Jf4kP40}e5<gFuP#-1hOWMGa7`j>3K#>|
z5g;|C>j#b&Je}##!yY|-+{b>(^l;V*4sdX*PDAjQulmjD&wuZwF$BII?WPlgzFF3k
zcOaA{2<rwd5o~RV?q)bQx^2lVNK#rJS*rIL%AmMeAK@Gj3Zl%<D>0@TY2zJ%l|RXn
zOLC2mLUyN2fi3h3*Kr%rkwYFtLk@Da?U<ociV~uXzSzo9wj=M#IN=Sx<~v3RJw=$q
z)Lqfm15m!J5rV<tl&N!!W<ZRLn<N5Cv!d<bOtbRbTU?W6bZQ_vF;4@zjS4ajy#J{*
zD$b7O+{#W&OY!Tx{N})pBZM*rF3vb-))uG`S(fruP>m2QZhlT(Pu!405xh!_AxFzo
z#vq13`BuiDj03oqdj*SG3YGY|{Hu&kV;KJEH-3pH?Qcw<^mjgQ`h?GX;&lB-JYxE+
z&;R0Fw{vL7+yC;l)4N{($J6omzlHUP6B(AD;VHkLX@ft#wwDgMn;(evy9lQZyE#R9
z7f*Z*CcPfv85y{FiB2CKT5kMyWSy@UJ;20<wU<|;S3mS)ro&v<JpALP!`FRSXuRF>
zj=!1S_Ghn}-t?!xm)DS)Vt`kJ%caRp0l}`Iiq#GMRPV2_WNi$Dl6K0foutf7yf|S9
z1B%)@C|uP?<s~ZAroffIXe$KuoL|wb?=3++NIJ&mQ`cf7Y;!)C>fwezg{ikbwQq;~
zGKE-VYT0U}P-Qa@c@@k(;p*h8{Qg!30X?Ju>Z8kOUTa+$FwTMmZqm-lOv4pDcM?e(
zk3VjNXMdx`<Er7rQx!tKRi{;<-2wAP0Y%!tcOD_Q+D<$)wXsH{paIC*O^iZKD{3mS
zsfZG0h*bHLPB|P;1aiYZjgf(VWvOrs7vUMUUxTK9Tr!&dRoawaoqC<(_YGc$QTX%U
zf9Z71^&dVx=86AsdgLd6+H^fzf4x5aNnZ%nG~N2Hw@x>|`7fq3ci%CczV+SH>D%8o
zoj%Svio7jwy<s2UEBF!BK2BZA)Cq%ek;7E$^dfR{8sQTJ8FpWF-L&`02TX^re+d3-
zr|Uod3DbdVu1`LFJ3&5gf8A@Qx8L}x=_o%9?<>fbxjIBsuAs_ng^EV5AV&S_&mU-`
z=IGFRD>qVgu%MY6fwK%r8(55H9UBZ`5jVc_OXNoU%(Pe+fAUJd?1Bz>Nyo&H<~5*t
zW#sC^$A=TvVHB<mZ(5}5Hjcwe@EMMRM7JqhGB$sOC>WDOxbvT<466}=afMe75)L<y
z5Hg1`^X{#3S4Yw|>{P<WtzpNDyNqjgmx<m1y~;o@SCmvW7JpUZ7$Gq6TEhCpk7)x1
z&k8$3gD8uxjHj5w*tLap4scOYL*jg%>AGmi-Y_03FmT9L`ICl-`04Z-2aQ3G6cQFU
zU&>iwJSN=XS|qTMAHDOo=?`D{^V6Ta_yyAg87(~cV;(&{{L%a*`=dU7`ml$8bS_h@
z-R*DttCEBCCvJT&kNs20w{|RIAg+4Aw4W=brTkYv;^WuJXa8AVQ{Mj0H%+&_<4x18
zj0o<0|GUs1>lGLR{*zuFsyDp!n|fAY2Skjr2DRv*RA6{h6@x6SHrN@lqbn-)E3?*f
z!!@o1><lH>pJbH|{z)g?F|R^y@04k8qdmoM=cHX$ze6`Zq)1AO<?aJd-_V6Dm174t
z>vkx*+Vx@#3}4<LlrfN|-E0sVu~BITO1@G0l~CK`nrV{=M+LNvDdkqd!*;}X-Uf?p
zG0~s2Yauec+N{*hCl%!r7v<{jk%CZ5yhSBs5l0%Vv&JEh@D{-Qz}c`PUn(S05JQ?l
zC(Ol7ta7KL8#dn#w*fHRe)IN<e2YJ_gImLqOXp@YSzT#13Hw~R?WT84cijB$>91e&
zvdHq_kN!jq!zWBvTzh@4YaaA4zHmG^UH?&^I7%^1*FJLR&OQ?ikDdSM&F`H~@cRvp
z1a5lM>!!Qk|L&nH4ZygdZ*A=aXTFp(WlLS^jp7QW4*D->b+RJS-${xK_rk@~A&C$|
zIrQq(t<2UsPF~w_hW(Si(>0fYlh1aS&S;zJYiOhK3$!EJCaF0acm@U|uaQskCaz?K
zXY$+3)3WKz&fC2jp)qZ!HL^As!ywS!+g)N1IwDXZ%xxuyUh@w$3YrMCqFK`yKO+ah
z@M;;?Nu&$k8994826`>0N|GJ7af!>@0~NS!EuoA;jSM`&CnE%v<6}L717~MhR1UmV
zaN?E9Yc4_LE)l8>$sa^L^%vtX8-d6-@EV3;95zM_F%+Al1Q$iSjKbsw%sf&!BwNF-
z+V{WhubIogiDVimQgZD(cxbxr!4Hey@HG#5D4$1jHiFIq;Z7a7la7B!2dCTK_2v}c
z#->vzG^5HJ)H-j~RbgfG52kkdK>c1S9x0V6_!_}wB<Dh~b*L^f5z{aeA5M!o)Uan*
zhT%6y<?$^`y%DKwQgucT*Ivt=yv=`Ht)GO=yW_|?^bJj`8!&WBFj3xSov4o}1zoIQ
zbVwU?4PhQ7(C%tFJC+uQ4CyE4*LfpLJM%HK<d*_hKJwqVR>q+7uK4>h2qWKAWM>>f
z6v9fX%r6I(PZ#-T&tTexnqd<z@ulDqHo9ey7cL4g^N_46F4F=U1-#SQ>~J)!9{%Sv
zVU)C+MYAZdKzJ@U8LJ@qmZCyC6kXjfStp6I+O#9{kf+1FZV-7Q)5;jMj4PN9pv>JE
zg=;^w=0gF^u&z?V;*YL~19sP;9aO&wmQ{cD0kn~j->nS!;cOEB2aK=6prZ4J1Ptf(
z*zjwBf?Gi`)rLSe^T@4%(->$30J-S&D2xdkb;eUulBDWZ*rh3G$B#?B;1hCX1h@pl
zL_UK$Ner85bU9#*fe(tll&y6i8fC3CGYp$>t3rf(m>W}>CgaLoZHV0Hq{!T1hxEp0
z)qwJ27sJ<m3MqqSM22z=D`b=|yzV8B#BVbU>s^k;W&M`H4CxHXIJubd5X4Tx-^jbt
z4!H(Z1aGEuK%U#LM4D>FAl`v%`Y;2x$}|+*ili#ZPGkf1J$d$hBYVyP1ZoIuC>_2y
z)($dNn1xjonbI(UP8a0IElQ36_;r#67N{pLe$!Q7Em($NyAjwPmbQ#QLmOf>(9r<9
zVHWe`(~Y%+q3rOOFLY|RL84i0X<NZ4w6*AcT%&p=PT7Q#;Tl%S3#VUIG%jIrxhhW^
ze?~AOlM%PTwK32rfV6zpTXYX}gh02DJR><g^R80sZv2Iv^=cMEE}|<|7(bCX#aKJ*
z%Dm^!jbCFBqtq})Vc?_{zb#Gj76<c+t0Hw?<{LTcmbTOepkTE#*A6H^;?q_&4x=r~
zEAp-&7}0aN<drZW`XRiT&no<Z7=&WGWRzUSO`%kOiE=58_)Z_1LAYIsl+F_Fe967z
zl5aCn1?5j3-V8!p3x=Hx34^N&&J%-HV#CrfL`fV}>K_AyOPqQ1s%|TkL`i4qT7rV+
z-D22@m0=T>Q4ps*moo+nKIw-6SWhXsOd5j9bk2AcuDCV~(rMF%gfmQAqa;S<GTG4Q
z3{8eha$whMkR#kUwW7bTN<>N#G6><&m3d`k&?AD%JFkgDUOKLpW}IRFgru<^@%tC%
zgp+~Lf1t+CI!o4tj$icb(2alUXfeR65dwNH13`RfhA~(f1=Hple2TZZ?(8Dskg?lV
z<Q)-Cfru^#8>hD623{F-4O4c)O)no^_%;L={D6tmKMcb5{RlNp4x4TJ5X@Wt5h9+V
zD&+7NC@~koI&ADH!^*RfbYYN0-na%x@nDdsabKsFcSxlvPx6Tsr_lAps3**Y?FJzV
zQh9YXUzL4fV}wuyt?VvkHGlIT(gEn}sjSNx1%Hlh!zhqfcleqjkbcmtVKv6lC{tGa
z(4}Fl%B?hBRa<j+8V#o8w45DZ)K!8$|I*0hXR#&5MYrXxI~JxpqtI@*z(E2?x7E71
z7L&}>kQsQ1tC2#j8AwtcxM6jALZmPL-r-=S4NQ2&x`ERQSg(M<^5`v`_z1E93zxs>
zQ)8fB?f6`FM(YEZEA?d@G%KT!aPyHHW%Wu{!qLcD?m29yL>E~*P^Y;l2CxpDag-!4
zc@iI{6$Wig?kOg|ZlgkRf%;eZ&$ti7AegVhDMY!3hBk#T)B+XlKoHTX!lro%w_j3j
z!`U=;%)gl?&B!rnWl?DsXyw5PycO#FY#t%lNLJS@J07^~JVLOf{M%r45k=AUn>Ud5
zQ~AwMna0yUa%dC?+t3X6mGBBrIC76PfP_Z|ooV3`86nbW45snuX=$6Lqy?{&uprf4
z{nR8DQ#jnp+bCdbp;$;StG-r*kPZ&b2)H>y*fa!kR+|MK5$LybXkxfqaro^_^qvyD
zA;F3taD)N4?Q$3{J$IYQhyZ!Z0JI^{FpP`1*%+*hLfGGrTeZ3Bq{`{&H4RbuYh0s5
z<S#Si)5wwMQlAD#IgH0u**44F`4~GJ0g$tw{L1fi1^+4>rregd3}$FvbE{|pBwhTH
zDNIO(mTg40%n1^xFd-2JwqF%7xQ%#1BjLaUIzv734T&AUhE#cS+JMk#=AO(;RZbS8
zd%B>Us|yzJs!L_NTTD1BZzwXElTIkPF2x9JS*r7kx3kM91|V=404lpi3T*Vb489D7
z{4GnR!yA8a;v;kAF$;n$HXdnGC_ptPf=VrV8?;EIm{nUTLn!f#Prw^d>aU!QRb@(F
zoNNelv_!UU8k|#t8A6eK2HyOu(^FRB>d%pZaseq%@{u=b(%7~`gmP3^=#oJ>Q;#Jq
z_ff8Zp{Jp*xxUiThcU1nZNH#j8;;cRFyN`1<Y9TXxhSnP<2_{rm(FOpB0EOUw+s%T
zdRjH)t2#yx;Uo9rWiIh?E1tlSSITZ4J6$NM@WUt!8u{rKgOH-Y9YHFqE}GevKQV*E
zyd|AulWtIgPYMfVYN5Emsu2AHxe1{MQI}xl669u{lEiA4H*Li>THBX__{U3y&?n7`
zR|zN^jX@cge0}D8Zl%a1v9LHr4%F|Z41soD!<(==c$L@w5koLKddG=h{FT1LWfYe9
zS&!yQUdg|_V1@^neo8O|fJ<O#jlfB_4jU|Fd>gmWcEhXATAkM>sgpq8xF}m2gIW{t
ziSJ)^;y^-+F_4egf-@gGjuo0l2OLJBrib;!?das3`m5AP0Jn0bBcvRPD}AbSVrT=I
zI<z71K-uB%kwTq~VOuGKk<JUv%n#YsLET5D0L8XV4Ud?LjGXxGq~bK59k=$GHe7|9
zE>WPuf#~F8Xz;$ju(_@b0w@&~frRZ+tFt(33M<d*+b(R_7#GcO3p?SxTp=pjS)~<B
z4t1-nKo8zR^Py6y7?qPtsoFm)hD72DL?-h|dTHPh<%Q3p&@dv6Q1NxiUl{r1QJr=>
zoIAGh!w|4rcpfQqeBdw);mNJaRJ^N<OIg8|EbuDN5K76yfUwSZZW;*F_-~!fZs21;
ziZt}=_}RbVvDQ_l4AiJRg}7DE%$%4;o{meSPdN-j>l0BPB~SS}Z0D~Lj*!dB1cs0N
zy;84w3-2&oGX9Hx_!UW<u63Xs>Z$ZvFo)h)N5cpNu8hKr-)0Qjn5=o4Q(eh+zLjhd
zJu+G@<yXR#QA1bn90`|PRiCY2;o_2%AgQ63@4`!e!UJ~ra<I8B20;Y{yP0VbYQwee
zWXdh|A-w{q+z8SQuTq3dlrBl}?h2R-Y1+Q5u0a>vN)|~Lt`>S^D?U$m!zh<dmG&YU
znKZajiV22GLyO<UCZJq4PBPg^Ss_jNARRm+GX7*QRBi&*I5y$j=|_imBvA&So=n^0
zn@{nQX5ruZOTOY)c}K${#0FMf8IUL1F*5gA2SFue>NNz?m;hIrp4kN#e4=fJ(r`CC
zbhP9|3}w#KT$*7B(t!!r8iDHra!@)h>yW(tX?ZbLW<~~f6f4#|gz{o|-E;BqOtk41
zQCcK%akA7y9<wfIKTm!AZ4h$cjK5{!Xu#2eAAT_!@EUZ*V}u8v%4g2V%!0}-0!7dW
zX|QB$4~2@-DoM+oeijWiW*bX_mb}=<hu?7VZU4Q&=C~MyS#WEyDo2Rg2W?fI73ZI@
z3cG@%>;<YJ&I&<cRzx}Bwrd@~K?iAPk;JAe`KkfAj$ow-weV?LD1&m4t`uHSsgtk#
z@OJ~uN-sQiQdlvOzEUS8Y-Z`nGopvz4#r>@g2+aq*#NZPr&9A!{(+Zg8-;3k<XIU-
z_6QJR#tr&7Y1$2cjQB_}imtSaDk@<WO8=S#fuw1k1KI}44VVrK#$fv$71(*HgvAi3
zN5e`0gm#OoM*_>p!1^nE@f$qCn@oUfL!jTRs}6@`L$m=#xvZ}$d+D{pbu6Ckr=|lN
zBZM7C3f7edg7jW#gT-s5z7k}0w>@?{i_9W)4P*QWHxu!xN6Xj9q?nVW<byAaW*wN%
z5^ns?usE*P5LC_(E!pa?>^FtzgvLe?sY0@dJEwrB{!)BANxrTK{V8w?tzVMd7HANG
zLQ>u$5pN!}9jd4D5(TXt%K<>^xgprNk^z}XukonYK$j}3s7o_zsYce7r!qh&FZ11i
z8wR1`%P0)vK!P?1jbEqNUzcSp-b>!bm4vy+&#hrcjqqHj9S&R(5f)XYH81^Dwx$wR
zJolsr22t3B0V$(@Aj;1rH~j<ph_QnFi(%MdWRN!2M!-rOe(4<{R8XF>vi`y{;wq8X
zcBei~u;^AjZW|%AVQ6E}Fe3yXKwe!pn~;daMX2a#y95<Z*%VmUa0iL!sBLjwwu-N^
zTjE6zrGYj;_XbOdl|dM_Ygv+Q6fKnq!F;bw1{K&At4m&$lN3R58?b<3eSOJz_`!!8
zP|QepX;vdjHdc%TJwm981*6sG&uN3M`I>kBgcQ<BjiMT&-C1!-*yZbT&C<$h@KO#h
z@*_<kesTSjrya$w!I*J_rsx~Lz{U%6g?Hsi#)iDj-bSsk3KN=*8>o~9XsjhvC;oS7
zgAZ!d$p!-hO}X+X5%@q!$i>z=U>kyhkg0!+Kt>38GNSvkA~DeE?b0MY^ujbuc#e@r
zuN@f2KT-`Czp`y}>QYqebOSm%pbpy@%&-?28`dbIrVnKtqUY#Z{>fn@W5kKZN}I|!
zbYpp-H!LiwnYd5{cXFoCRoYG1ZMfq*+_01dhbXN%tqsCZl<}5Jk}6i+5nr)qe21GV
z856r!hK*R)jkziz2yaGI^1w8cpbD9k-YU2VWXf5<met3Roy|t%Y#~pd&{bjUE<zW=
z&?;M$)DQ(E43#i$z~pOcJcC0)5Wx-n_70!$y%+@Jm0ejHh9BIE?|>avC?Z;h5fp?z
zp2P-I!WMF_zaV9x3snEJH)wAgHQMxvg}Rj*Jd|Ou!VkKv14M_$K?k9<t`(%dRz^YN
zP^<1R)$e6m{sTw23_$UzM&4xB-$EV{`Zmg`PIYOQ>M>V6@ihjihuIiZ=dX1H;<BC~
zw7qrOO$Y;-o5Q%wZE?zHv_)EO(gw2-cD!YdlV)-9(N(Vm4n*mr+HvB+uW_N<h6^KZ
zm#iT~P%>Hs_L*0e$elm4*SA45_*J1wY?UN>2N*PwA&{t2j06=PX(ctQkPHO`m$W69
zvN%G}DAZG5uZy7mc|M>WZJl2+v{CtmT$DxHwbG*I<i~BmA>}Nl;jlHI!QLFJq4bk}
z>EugiFWe?w(=RachwtFu`9uM##K`<FaE{Z{kpmf!nw!foP(|BhBukNlE&7G7i5fPg
z#6wr44+9&hm-PckJrT~6UUcw;2W(?d#MGr}hXDv5gM=%6HFEuurS9aYKhRd1EWG0u
zU07F!Z5Jw{+eaIMhL?^MmXSdWhsL9?!6(@ytHIx_L=KlC5e!s7%A*Ea%d^ZTNuX0+
z3gw|2C5;XeCSvaN#!I;E+TPYpr<)Bzlmo(a>ZxI<QXq355=fxmU}y_pg)(laKqV!x
z1FVS3Onx0+Qa6{18+nCYXzErAX0m|+wo5it+brtJvn2413G|tR0;3!&hC=rxvHp=L
zAR-Qo{uX<IRZe+}v%^=XU&0H%WNss|0V#!aatq{E;mWgON)Yk7fZ<<ZF7Xb^OYqew
zN0n~pvk|VOxd-1m0+Tx8)+poAVLC0|jRnTgR9p;!x*j8jHJnEm(px{nK*+PmtuwQ1
zD4C&<b6>kENa?I}s$#3YMqTxjf56Kbg&CiR(BP5!G7qk<n5vnz5Roma(Ki-Xm3MX(
zxv<!Xw5;W3r~+`^UIW#^tOw#dyba2&)5&8t2;ERD2WcWq!697=X2zBI0%cQp8<no^
ztrJ3<h>jQ#WiAARc1{p}GgGtas1eh8pVtzcTiW4sE&}8UYa~o)PQw_`n$oCX5XB9H
zU{OjzYeiL=*I9?#Kqx~>v4V>+APxda?{h>T-QW=eVJiP;e3ierB`R8w_aIGpxfQ=9
zy!I9EH74o>U1|>3ie7ow^qYQCNmq$gVnqw^tLuW0br@p%cZYqT#NUv}-JxA*>f^x8
z1w~nBSA$vj2aGSU#3<qLkGcp{-qvlPM!``g&?o<ZbLZDcjH?zE9U-V=ucEhZ5)Nzq
z$)bgrp>j%F61NZ9ltHo$;pcSQW2&ffGsy~e@>0fSxsB+V|6&j<RPjt9<X7Tu!tJ3J
zyf#wIe3LdInHUNzZ->oM<t4*~xQT+P+eqBnG7Zk4d;^+9l$8nA$xgKnL-qR9YA}UE
z&swG4*&sx<v$k5hGEA1?64?#IQm)$@LK}d_cX&H2J&g3>rCy4!p5kpDiA-2IbjIn1
zN-9v8@;AXM=8}l*Gzo7<l4=La>f)OK00Ev!L_t*4!WJEk`Y34U9<ipgv8qol@i7qA
z!|)sKw+=xLT0!b?ge~X#?Lwj9Bbk4d#Rvgrw+O$~8#w>f@eF%yz|JqeU>kxpoEH^s
zZ-X`ureZede2K?0kzdLdZ(7?ZL!y#IvN-w04a_EhPa$&0KZo_3&iH}v0XYH2{yJ!!
zS}UT;VKxY#`f2~ohzN_3{qP5@@yTUoRMFg9?&3XyE9CGN;9mbw&z?DD(TpHq$-M$|
zo(3y0%D5=O!j~>8b-th*I3pZ#%2}G^04#6rB5`YfVfx-O&h<q(#C6!v>`xIZg}B03
zd|}0ncr%b@hD|YW1251mu@zqKm&ROznGxlggM-ONcq6dnqObH;xKRTMv~F9kLUD6A
z{-vIlIB5ochNex*!DI28*$9pLO!k+#jk0!m(EGrw>Sfd&aT;*7yo?5n+u@Q%{1`RJ
zEaAq>M;w3oH{5=qF1Yf}_wBeU=p0>|+6YE>!3^5e3I2xhC2o@$hIwds#qUGj4{6{-
z8u+hL1K;Ne;rsrpEc%BE{UHr}NCO)hU^Mf+{|O-8r9TizZYux)002ovPDHLkV1oaN
BOI!c|

literal 0
HcmV?d00001

diff --git a/oxAuth/Server/src/main/webapp/auth/bioid/images/toofaraway.png b/oxAuth/Server/src/main/webapp/auth/bioid/images/toofaraway.png
new file mode 100644
index 0000000000000000000000000000000000000000..d6cae3c1d408e3426a488e15a802ccc1aa031855
GIT binary patch
literal 47230
zcmV)QK(xP!P)<h;3K|Lk000e1NJLTq009I5004~$1^@s6QNRSQ00001b5ch_0Itp)
z=>Px#IAvH#W=%~1DgXcg2mk?xX#fNO00031000^Q000000-yo_1ONa40RR921fT-|
z1ONa40RR91jQ{`u0JQ+PIsgDb07*naRCodGy=RkV$#v(K<$YCGwf8;kXD|+K01yPg
zB|)>KR-#s+4N))jVnd;iA$<Y8Rm4W@3u#vrwIMCV<&qO10RkW#XD|Q;<ELl3r@gE0
zuI{QX@AdzklPB-JPd(M$14EHoWYu#s^SC_e&P{jk?bwt{zjD7SfnSxtuS!5A(D|!U
z_*Dt~ssw&j0#O3p5%}x><$p>Y9VzL*^3$frff>At!v}r%hBvAv-0)5&dS?jVr9$5V
zug4WOyhxmmxa=4-8Q0O7<Fao?qqy?~T?IEj>Dj<XChC69iw~bjD`%ns4_H!3h0BCF
z50RexIS(aIo(FKDPu(Y<9uItrk1maL(4i=r6>`mD99RZ~0)X+j!o&rzxP=Ydgctgt
zYx0wz^S8iT<a$~Lbb4vhOgH#VAYwC}1-D)z%ao&GGeDjfPYD!WE7uZJAhXm#j|@{-
za)m7iB9116z5d)U@eDT_6y)C&wE$u>w-H+0h!pZvy*vnKHO$}0^|oO}yO}mNHmuwt
zzNr8-8=D)#MV&kBcmK;jvUG|;u!KT-R-u->LqZ#Jh9ge6z;mF$Ghv|@LK%-_Iywqr
zO;897CZQTG@HuG;QUa~`L!QK%<W><?!VQU!kA$9&r!0j+T3NSJMpo&r+*XN^ugX`I
zS%MWLq^k^tvGVgkAlfPz*)B-&z-FCLA@86$F5(If3@*E5c+h1(^BWb!_78oQL)_rx
z#{ZzjL4^z7YqSY5f=6AVj;(AV%z%JL{82J~*|?m+&0LY8Dy4zz5Q1<tk6J)jXfk8u
zB?>HjggnAUQCRxWDNyM^ykaf}!E3(4cqroGSL#I~Mc+!MhhQm0H6)G0v<YMow)!<5
z3pzcWz$tU5DDoWYST_(M5q843NY!J%tZPm=bSsKjwOgX-QNRX?SgT*rwPFw-ZKX7(
zoKsMB=bgL;$pj|Dzzzt$3La&b@fqReEL@Qj{Na0Ag|3!#J($@`{S;g-piMGHBGG~i
zK`l@!Re^TlI&Tg~x)rK0X2C&GOQ#+zj80c^SD`w&g&}Q&_EzCHN)uc1D~5&@A)cj%
zza^0hKvF)YcVgo43wDch$*vd#YcPR`THca+hza)W1BN%Ftvgy=fI2)EqTk4cBeQ|8
z`z_*IqfVN$icHhjhiFC%0WRxfX*lHX|7w*Ry5vk|udYm(u&sW*h_Vq>#>kotGcBOF
z{1^sDwnKiYP5?r}ZGVPvUV`OLo*9T2y1*mCh_eqxjoy+le1_-rEY;x4=>zj0T$KZA
zF3PFYaUg1b)OBkm2RygA8pq#TF!JH55X%{=ck%$6Ry7XF>SO61yq*f;Fs9LBEFL6M
zBZ|jB0T)p*2(+jQ?w!pl5lID8Q5d*(3H?h#A|*dDim#D+5K$1f`k8P$lxyG_wG8Kk
zU3>3NRRTa=Bfn<hAH(xH@nUVuM*0nxQ?iVMP(1P&ffBDumK3%c12=L(zQu0`$jKFz
zppmQ8tk-iLp6T4PPHwDR^b0OC5*cAI!+8RphM+kyBP*OH#)LUMC)DCuUomk}W0|^i
zj#lm{?+~PTum%Xf@MmDAiS|)QLtH3A=G(Y-Nwgtr0U-;{>_@atWyz@w(O2P6JIb^o
z{TVb63(Yb#Ko;RhgLp9rrkg6#^eKhlv8c-82RP`8ZefoK0cm(+RH_};P_kA<tx&HB
zX^W{OX8J6z3@MFEiDmK7myG5HS^?1NNnNGalX7gO%i2dH3u93-6=_iZ+1O=2WL0pl
z#FD=VP<Le5;+ZSUkL;J)1ps})6ZW6Oozfa%z$MaY+$W)Eq)xXDJoANI(~N|XThz=U
z$_3od<Dw{k9vQ!6-pFCO&D2K>jkGJu26&rDwD;gD1sr8UIyqcGEwYM1hzfEgqq0JD
zs~=JV9`UU{6qYy@Z5jt;J3mz2Dhr4&L`LItBV!{4%e`dM(A2QJTak98)077k*FLp&
z&~`AF@v~f8)34%`eN%haGvLZ%*4z3HYDL)^pr%a-%_Lx~W(9YYVkPW+zzt^zqb~6<
z04Bu+h#wgq3E7s8!CZb$)e;C=qcMnIJf#{Sf?JAx3m{VpUPtBLk=1OVoS{w}iB*2Z
z7jyxsXdWpi*jmZk#*r-sdF7sw>AYx#$nt0#?zYn>qvb(azhT<?TNV}Ew6u^2XE6v6
z(0ROKGI_3O(-dlN8W!?Ph|Qp&j}%&SSL3vxC)x^qbllR&3D})h8Iqi$iBJ~Lz6lF`
z8j{-qfwhA-7=MmP*0Qx+qTEW_UNF>!X%m-1=lQMds|dhtxkb3D!De+UGVhd%2|-F0
zCtUj}(iV?I=XXDNEG6+&c;_$il5WLM8j87RoPKdBHNcYuf0@<xB<cSQG?7nKCtOAh
zR_hK4Osn|dZG{t$qOcn!Wt<zzrrI6BkPK}-OuQHbY9)~Fdqstkjtvp`I4J*qT-Y&h
zjC2&GP4cF<;<e5|f6KOFi*nw@LfRH|4G_iZpom3|OFRcGJ&^{!Cg^7jA}LZqgvUcZ
z80$|Fu$m4m^p!JcMnyfs>u>@N%_PQ1xGf%9OBl9_!@@0ak3x^goN^0|Ct@mCy5$mC
z593)7IS}|Q@D@al7EN<J+I6#xYr<OiqJD!S<h7(0=$ij{N+^&MzJ)B`g5=J;t)8`%
zJQ$KPqC_zUUKa++{iP}gr!NM<m7&tqWmIWZ971Av*^hYf9liA$^r#>Qe`&aaZP#m^
zy5$-=<Q&3Fp|yyFDW_Jn%NzyXA~<sd*H-K=4U)4|DOLdp6}=U)c(lssBoVI!G*k^~
zQ4rCA@$HZLAZ&4hwRnbahbN)ByrA0xuhBtM$9t~07EKNRpT>nemm2=qSq{!%thZj9
zCYW^UGbbajF+!j&vQfy@Vxo#cunNt*$cV~wiKy-k#}zRO6A<_u+185;n6Y_;)hl$U
zpkK+T8o$LOBjyVtpN8pc3sAKF+y>U=ZmVP+Q4$8&h}5YnTqX%hwD?(E@F9nAJ0H10
zN7x+YVJ<ZASm|s+8$~WJ!)92(qb$QPSX_h+ykaI3UQ5%<A9+o9Esg{iVt&wNU{=Kl
zEZn#>vr|ypfIS(gGC`p$0T&UeRd>itP|C3+^<;q-`A^1#7A=gGVr@kPbt{>#6~Gdh
z%x*W}2n(lwWK?SliiA)Fi$Oq)b$W3`Az8%<PQyTw<Fi2Ek@yo9qA4P-NFS-~T%E4a
zC=CYsK9UkNGAiOC58@hgz}uzq<gj0ilqXM5lvSoPo7YImT8s=DBZaMcM*T(gL`V0I
zOtnI>nL0bW()!w}$AQ6+eN<`21E1kYfWFWPuD=rZK-;(hbqV^2|Nq6OMz+>UyWDws
zHK~C;8F!JG$*ble0CiK~3IIZ~!E;ZK<OMGV0ijOleq4R4P_e>P0<g$=ywzBsgUK_R
zpi;y-vM|}-p3WI#wr`D2IrWSn92xrI+Yi~mYkq_UawG)pong=k7rw{r+8Blj66FyR
zN$QvFB0F2sY5=N8XIEG18yM1WICXY)r@^67^ZN&fpGeh(`G;mG=BDqb<)wwRq~F5q
zOj=uA5q}#)kP9U`co>Q(tP&^nC_s~B04`fxly8M_NXcbXSw+x36bvl_1MCgQTS+?s
zLD#~*h4gXwEeu-#PnuFNwx&oN8Fu?rsE!ZWpaoYQfUP(8Vi2grN|dN@VsH^$Yr+(B
z+JL!V_!R|WY058^pOq-eC{7~@K1jE^oJQeAxHw>Hajl@t*^V@G!hx*(14{Up=5l%=
zza<*rt$s^RN|dq?wduT>dU^-a!0?!UqiIlnPjCNLQEeb}@a~@8Ef@?4Ze(m{1BY>V
zaQ9Yv_~5R7_tGi`0#$M+k5&`)9`GWh&;=wi6!Cxj{?FEmtTLZC^Q2KPxsqmX54L7d
zrx3i*QwMF@dNBxS5$YII=CnD#aFKW!j%3l1L^Ogzr+}pya$Dm84?inwH~pNRJUK}g
zE`~S_B|~8&QzQ~JzMu2bD6AN#pba^!$}$&|4OW1cxRU{r%aMSE@5qmJE%M<~q`R*_
zjqg5?21j<-NT4o^X~6v4!!-MFI?X+t(Gza#X?p5jn!J5I?b~-ab#y9UR^T0JVSY|@
zGimSsgVs*iwHcIQ>Fbk`85&N#{R62_zmc(V`GaZS;S=^Fz4_Vcbob_!G&OlMEiKMV
zt*m8q{OlLq0$u==P$Opr6VR#%1JW$S_Ry+6N+<|h>M;^5=nQD45>z$+aRiNaRO4$K
z3}NB7C34^v5&=*?I*{d00Maj+$|C}iRci=U+eUEBAdrGr<(9Mz<CW&J{YoX);|Ro=
zBq2hVDxT#F2cM_7z3;-@7<dL+n2cciOS^nDs3B-eR0r0>4elq5Wd3Lv7S+Y#MB4qf
z5$%PYy1Kj4@c3>Sf<vjVHvC^-TT8Pu57e>sn|_cM7iLw?9cf14rR60VfdgrNVLo;B
z^r?gQTkVlLVmnuQQfE(3>gv@<fyc=OU0hyF^NR~9X%x^Y<3T@;7Sbz2^wi0x)2Ix@
zkc`pLnH}lanHSQ`{X1#$#^p41=SEsvVQPVM#ar!y;~WnKy8Nf<ybXB%qZGn_vJ!#X
z*Vh!ttk%^j^c;_y84}A47Cr#k6@w5!6D(wwQHaCvgb}Dl4$(wHf+t|cAnO9Ain|2v
zKsH^#&*_=&N;u-Cqkz>2K^P-~BL9dR%&04PM7Q-LhcyC}#F^(|2f2;~WkfYSQAOn0
z%UJh-dFQYDjw^+nlQq(eYUlN+6Yf0lR2tj0zo6IG*U|&s^{4LLP7h@aC<_(|c}GMK
zYX=H1udk;r@eZi-67Eo^9~_&ITGCD#<Zo4cEB7@8n3>WPU^Vr0`MVg*$jr~Cp}|4P
z>edKgDa~laapT&xbmHWR)Y;LM4jg_;#%X^#dg4qPo7iJNrXjblUrIMGe<+?g)0b*$
z?`Wz~#+j&ACh+ixFfP_ny|gLzCZV^+iZH6wm>U;QCv+<3SQ<3Hz(`Ha2!`$vC$)yY
zLez2KqX?tC93N$u1q2b)2+VP)2*Oitu!7XnC<Z|^4d;wOnk9-N1O{=$D~g<;0HKR1
zuq7@<L{MKtFnZ{6I<Bd*POa62MdClJPXd;;96&ZdT=*UXP(rN%Fw)FP>U!4+Ltev=
z^jiJQ2(8hRLPzT98%#S79&Z?e$s1SF?VFd=&8rvF#`=a9|Cq;jr2fGX-LbWfFuo)8
z4~=LMu`8_z-`%^UMa7Y{vb?GhK)2|I(%k%vMiWz7D4b6BZd{dNd5~6T$Lz%#L!#}`
zh=KKinW;NzZDc47^be((nTKgXMqyeDjkD8ZsaNY37vFy)P5t0+)6np6I{Eao>EziL
z(!N8-(xIo$*zflBi|NYwx6_hFC)+uiYIKn8X#TOoy*51;k=M#^$sNRxagfxzb79E=
z!>R8?(~A<O&3d0AftoQ<Y>Pp#25w}{&R>TkrXIHh0A?3)>&JpwTuOR8TPbPzL?Z;}
zZYo1M2#th@Z|f+XQdBwY@qmVph=Q>|U{q}pgh-C0aR$zMw5n6$!CZXjEoz1Az-M%i
z=I^@>ok(L^BM5gxcihY8-_dkn-sbniBU<=V!CG2+!_wxaza^@xLscueT`~wvG1fPG
zY}Bx_ypZlsUQf#pC)0%s=Tcu!R~j7}OKZ!^GAwL8@;03f<yW$lD0PM)Mgq9ajt$Aw
z=wTgbN9tDCh&ngZ^6FCh=-gZB+}l4%yLRnKXFvIC>Fl$gl5se0zuVU?rVH==B=1s~
zxN<?3<s!<$(p4I{Ogx8{rOe}mv0zyhT~mPTFO~r3K#68)Tje++I$SG#X4~GYG1P)J
zJ;WM_@N3cv$O1X0OnN9faZrVy1>~|*#V8Ho>hYZH6O0gAgqrN!&}xbjM1Ff}Cj=KX
z#aAG7+k!6*+WF(kDyg}4i3O4T$DnJJ9)v!4!rva#q}U=1KqiT4RnXW7$RZ*znz|2w
zc-;p?JjoE8Oym2Gsxx<|H7yR_QzyQp&bFd?J$L<nZ6|hUE0HwpRcl#RXSdb?v||7t
zmB5gnDF8B7w2pA=%7<y@!Tr>=Yp3GNslR7LWcm}Wzk&;6fL?mFmf*Z@%NHLt4dK;w
z8y%@v(-2<E)oE)D0-45Cu;joh{T|Ltr*D7lPt&X4{YLuIZ~lHdarQYaLLN`M_8m%>
zKYTk~zjV&H;(`v*+ynNH-On{^+3;Ge<tPB**HBfkCLy;Am2O5iePXHscNt~nN#Cl+
zGaYS}`a)jeQ*6r!K`?Vc6bWUS!UZG~w(&ffk7*Rz$Y~2gcqGu40HAb4%}VJUsRQca
zOd6mld^#KALXaZ$axqlx(yErNeHcCquF0)~L%e#N=Jq?&o}*_|U*7VYx^pwV`{v)J
zjny?JzG-)Sv@%gtwlOPZb=FS({QZ*5{}oq<?UK>xmT_RMfnA5SrA14cjy|O6g?g{?
zVthB$*}e5hsuJkZZ+TPcl9-`rJc7&U*b}9ep7=KzE?_J$Dl#BeNSl@>I~=ck>*e&9
zfA;UvfAin{4{7hgqv_-)K5d5K{JTF+bF6#Fx$zXE@p>G1b?5dn#BiDOL?{W1ZU@iQ
zMQ#LIJINM07hAw3kl}T7gw5B*;~APggVw_m7`mG;T!~xd8i6OPxU;JKE#UFWgf=^M
zl%eGnSy5&d$h^ogctKiPl|d*3u0z(O9<gv(a>Ss9`z|{~JdrQP&=q=IRBGW5grm2;
zMwXm>dnPbZ)+UTd{YS9}LHM~U!rNAfEZcQ)9k_aj%}AI-uKAIk`+JT(oyPYcgUSv9
zefZ9g()9g%y4&7O!-Hdqmt?BzX@np#Dl9~h26i1oV2g=@0K*v2nbt4_{IumbJ9AGR
zcHQ9UIiPg}Mh<qnx58&s5HcMs)1q{cNk}m1;ER#o99h3W7p3lbLoh*%Q65RqN~Wi0
z(%1j&-=xFG&!o?O`S;R}oqOf~fkq2&rAr^YWi81y7r!|KdG0dcAEXx=Zs!-JgMjk1
zoH-!!T>Q4}11TY(@(D%z3MiC?lmPWwkj`N>C%8=;>f{Pn1_42ja8wV@Mb>>c3uMTR
z1xnWOkB^(++9mjFpr0X#rlll2XweLhg0D*!%1P|1NcKZc;OjiKaHY5NwZ@CQkekJK
zYk&XXnNOEd!IksxrfW8&c7waJvYgiXR@3^*nmQUK?IQuE1sz%-?CjFcffg0lyL(gT
zW|vj!n&M0?_^qw2+vs3rX)dj3q_M8JZscYxP#<;N6i8zb22|P>MoDraIG!%H&Y(Co
zZduWKMW@yhHnsN9t@NO?X@?BLrlu@fm9Rfb_v*zDv?X~voq7H<>Df<xF&#Vod>WH+
zc;`pov9*OL8lNsAKbNH$EG3`ItlD)jr3B6hkJ<<ZZG$0W9mKWJIcN*MqI|MYC?3>B
zVA0GqEN~G<xcE6BSr#hrN~nYUY8@Mt=yP^TzMMl)^lBjC4LAsw<@61MAVlCA0)iC3
zl^~2j<=0ZLGqw-sbgJQ7d$M0RG_pZq)qmuVI4=CibMQFQuB{hHO3^7ywOTx6g>UJ=
z-I0cO?o0blJg<fSo-{W-m0tV$|C72$$LtP|JUYa>IvT_Mb+!-H-Mf2b2<UjoSEt?7
z-Jkit9SV})+1Znp7l%@h49$Rc3#^l?kni2SlU8L6M4;V)!8E8T!qT#@{96;0vWzOw
zd1ZOU?(iK9N0bgz5BNNX)gq$+Hu|tpgz%hK@R0#}q_oQGzV++slGI#4t6Ix=_w`rO
zom<z_mwx*X)3^-67k=vx(>p)@j*dJ`Rz+{Am1a*;|EQeRU)Go~F8mTOfG(<M4`zyJ
zD}iq^m?ThJ?(zmCB{^hZNKFPc7f6S@v8BE<fmo<vb2I{e#f1=f0aiRlQm1e56#;)=
z0TgRduAa1^gGRm;wA1^w;*NM!jx};)p|bQxr9I+jd^LP)yumAZ;|GqX0~#4%45n^e
zN?-q9|L3$c`#=~Qb1N4N(>t~L&rp5CP9hGC?$lwV5rs$8*+;dtsI5P32lC_C^5E!1
z8rm_Q26R}6El4`}(!yL?)CodH1}m!@f{&&J?FihPx~=Iy@9x+7fhy6OhSmaBHHui4
zLFmx>0$Y#lFxY~kH61r{f>^siz8zXptfxym8R#q{;`EYfc%N=q<F$1MZ+7=4Z=}EY
zlYf=&>Et9wr(gWSZ>Rk_0ZAK17yj%Yz+)T~?Wr8IJ^s;xX%p5itQ|P5#S7fq1ehir
zF_`c?O#S1w`Ub9%S9HM+YxN_7pzK+gNCp~$Ff<j+A++RxTfpN4<%&Vbq6HFp2-)IC
zp+_Pnqg?8R9+lJT7h(cMj0Y<If-v%chu@I#*a)(kj%-=h1a>Tilz{~ieAzdTOTe2l
ziFr{ApA&E|(}&!g&fb$Rq}^IGz+Hap)%4-3-%LAp?X@AkB|#^(CN8PUIC<~Yvk9GD
zitE;EjVgCkIv@*uJj;L)u;&>xGT_Luok@`4=uwB8*u7WVj~zBuU>BfA(+#EqtOvS!
zbn*=w{x2>pB&I4r=+xku5^P8riBMeA0l_y}P^1-!ps|i&4C1pXj-;%U4}=)A$Q9Qg
zhU#x${=d?>H-0D~DV=@s3tDG58x751{}3+H+T6$WRWSOC^2K)vTYba}*Mg6@CGL_u
z7*`XQWg;PqaBzla7)TS3Z?siB#BEtapyAb>i>&I0I5YvT(|XwN9M+IBU6a1fSr2cO
z6!IDvSlY7H5kU|>JPKQBgtWkg?{JF+T`stiV8BB}i_g%@`CAa7aOU50^7%BXW5>7)
zKlyIDclARn(*Yer?j}tM!5pv{XkXdUJiMo8Kpl_OMDD&WpQ!>JlLbU;V0p;SZUYO9
zWtTyB`QF~X)YGk9jFCZ&<CoL&+HxA!fhTH{`te~S`fFQJ^qV~$I=D2eg~tJn5J(WK
zLAtuYAo*6Wq{UBvrUSGfFdp(T2&5oQ^~c!;85|iE^w!0Az`ys#D``PTtv~f^U)3(e
zXVTE<xQxUrIZYR7sUuqsyMoJ}M|92TE$~9{xIhuunm|FggnBerNPu$Ga%{vEAV;0D
zy-}c8vLyKyig?yN+F9f^6FD}3VvGZQF~IVgK&DC@nHiB&GyW|GA*Z>G7pzsPgzBAt
z8%6_HTvVuMHZo@fC}}?vDz!bmTr7_gUBiWr;nz^D!ID;_n|<iOnFB^3;`Lw+mcgFK
z7I>CLe)egKFg&3<wN3!O|AVjTwBMAHqEmUtWUFs+Za&TF4!ydvm_~Q(N@IF%fd`7Z
zdCtJ}5G|F-PX~qQcwN@P=nxzh>h__&))^=}8W@IUT^(*%9esXP>k{jm8m4Poah0yh
zE<s)-R8OOG59-w6ty?$s;L=0!3a>0}2*;>`HGw|Kwvhv)6Gj?&7=t0&(0T_nZU8ib
z5Pz4&1tXu5gO5yHmkimu4n<u)|6aQP;6eK8AN<!gbpZFlo3G;i!*wcKvJo|&t6Fh~
zRGr&tBHrHjy0Xj`K}B*-#U<0u2)SXbU?giCG!JB`>_Zea;(b-VwH=r3EzeS|b{R+j
z=OiBH`XumB&bhYZXv!oV=d0k44#83TkxTmlCfr0<@k|%Ot#s-zFHF#gz(r-1k`#~Q
zGDQ#;4(F@#QwSVkX{NMCi-*M+eD7s-{26sU64X^U%uSv%paOLV=jd?f=nfrQ?z8!I
zm*(f|8=Bke905}Y7a8er2d27H>XXsv*HnQMisXYIcX-n3*;o|~Mnbew7Mf127g#5y
zqw<qs*pNPicJ11o?%%&}2F9dIHw+7lhWxx#JlEd&S$x#4hK!wUN0v?x4HF<Oern`E
z%%>Y@f<e=$LGso#MS16q*V4KcI)C#&`=e|WI?}l}U$MN2?PIton{8OU04wB{IPJk@
z*j1NCT%3ia1hTlCbfFJ?z;is>S>-!_#3O+c&*G^IM1>C>Woj-0MxY331<V5QQrEx>
zBDlRhdJGBM|ExiXVyg(a;d5NzxATp#<pOQcgKCYpkherV?Iy4ZYt2<wS7oKbF(keM
z7SGg<@B%I6qEtZF<F$mnnvfGDggvrb#$ZI#1REKA?=RB4o*^JjI)X0TCR2xo>bjq%
zZbkbvyzka9pKV2q0rPX_@EjYqDFS?SXw#WJe|8RfwQewIoznB;da(O2rw5lJk0{7U
z#11k+qT|lY?>S@OqXEoRhZZjT)5yq()*RG{!R6fyt1I2!eX7FHA960LJ0V$DV8F7h
zlaNd`fU%irK6n{En+kCzLV05MWKGi|0nK2rE&267|F;?;Ez2kz*Vg27i2i$ZUYDLV
z65bN`?0T8jH4_}#LZ8b84;HI~ExxFYE_@>}sR7U2AWTm2L%v~<p96S`5cPy}+?B|1
zMPSG>Af@ITj>>NLg9tb-e2?X8jmZp;;^uFmH;o#su5k+}XS+SFm6mv`+<H7`x|CK6
zu2mf5{8@pzPodT077keU3r!1r{Lral3_f_}uhN1ZPiCw~`IsDaW{x3qqOhk|N00UF
zL8tEKeR@K%OCtoW$7%bHyQ_>vk46Wgx9vU4hV+tQz<3PvP6RD1awfp_W5-}QP3uwQ
z4RyE<&I{PxpF6UcF$DVaT>{UuS1veT!&uUYgd@*OD+|_HeX61}47PqjnRwxur|AnL
z3pzRZK_Z=>Ls9GM{A+f^K~Gj{{bE(S9O%ZDDh@-(Xox7Iq`S9ork}p@EyF#fvkDx0
zHb;Vyr~`D(O0<m|Fw<n-!k_Cj$0;+D9r#DaofqlBXFj@QK96U7z=OWwn-rIm;pC{|
z_b_o&t?mb1PE(XXV31ER#|>@(0~b6b4zcSNgJ96;@ojtq(U`NCHY9CD0ED(lU&%o&
zWV+l?vDG)x4LJ^}UxO!Lt#K~^FRzTtg=rNK1?U91Ky#sGx{#bDIgM~$VaUus!AABR
zO5=Ji0eAK7SJV8=eRY-|=K+}0@i`rX1r5ioGYKW5fB^uuzQQ>K4f)miIbm#{^QOFH
z954pFxTJqzP~voJ7M!~`Lw8<WvZjv5o!`|G4`B>~O%r@K!_*Ln4vnQ+T3WLADoBjo
z%{ghfDx+dUeX^%D2&M&Q0CJ5miolSp$q2BWiD6n@*MTYN%`+A7ZitT&Pj^?JbnLaM
zj*S*%2;f6Uj07#=Bb{LU$q)X9Qc7o^|Gb@Uw8$^yLMAE~ozEe{<$7rs2j%FRQGn3k
zf_botXZm{k@brQ|eB{E70OSO`NCaW>%{Q>q2Sw=SD5njWDP89w4UkzP$rgj4s?61z
zed-npyU44>0}c$l`Gqt(b!N>phze)?ii98VNBUK+L>8IA$F=c|L>KdehIsx34~1ef
z{9@!8U=@h;;DPpI{Q7i8VB(0j(Bv+?{=Ibf>UrxBwxAkAe`L#92UkIMXj`#MQ-`?2
zGPGyWju(>H{(c@=Y>IzVhN4%CjbjtL>|v*Mbx7{^oEGG+{6OzWSk=Q&bpGh*bYVJn
zuSOwe7%cZbtS2r0c<5<Wk4f{a!>HCV`Zaa1w=F%GHecF`cU^aQb#(nO46Doe1f=qU
z9#T_!XbQwkKo)FMKc)p{KorJy*m{Btff*LXZL}aCqqm@Q5DSZo>Eeg)r1yU63yaTw
z`b)N+VwFm{<+7{C9ZZ?le&ox@Gt45e*Wy%y(Rm%iAN3w|5zoR3f56>$IU&o{a9Ity
zkYD`J$9>Zboijf4ca@PB`er^S0O&s>$hu@07@YYLAzlj?gJ6_xF0Gx`<9=U&Jn)b5
z!4-TC_|a5Pu#OLz0c+<wm&=TiO3tQGkvodAiUm*Ir-F<cpHhjRpcaQ1Sly4X(JJBs
zA^_HSJ9UhB*Hh2xF4>drUAvI(UOR6cnmae0-x$T4LyBw3jZ=gI&>?y?bzo}XcXD+u
ztq*i*I=~tOBZls-UY#)*Njvpo5~d00+pDt%Z1b&ZmH*!4RV^fP$cYkS3IU_*#`6pP
zdbFBeD^s8(ayg)k(RXN3b68Urwk6qf=uG1}?6fee!%ga_yd%NNT{3L}Qd0#CnHwxK
zJ)RG7cMEQ#1ucv)65!bi8!2cMz-WQ_(CQjS$`>4cfl-P|H;Re%g?C>6yL4Bl8acf5
ziBEkAC9@+_{OYbHZqXWDj^`X_b^)z`kYfZn3Kh6OD`sW&Xt>dsyc&I$U&#x(&>-J1
z=9?Co-;kC)rzh?xr!V?u&B57^IJD+F%z0f-1-Fo;z~!+90V3K-{35=+ztvbki-0nc
zK-kB1bp;;9+svORGa%qznhrKOAlyYLd@Deqs)7|Jmv~fqJ0F^fBWF^t?y!qmFSxF!
z`fy${*@P)SK7A%*F4s=?DN6bb{h3$e?9h>3d)BAdp7GWs4jYZ{+?^)$cA_4wJ1{E1
zc&un@z+02<=!GQ9IzwQ(32rKz?+s*4TaCOc5yQis-04^x#9}DD9`We?20Rb3rXjxu
z`r5|SYuk2=>6L1W%nH()E_7_BIv5PAUyVu-(4n5pU4LCPyzQCe)$3Y7SQanv6-|E(
z&)NcKEievdAbhGpIq{waJCZFtM&bM4{Bv7m+_7^{I(q6^QZc<fa~8{SRPge|Z>6&g
zw!;^Buv-mec~v?A5BU}+jZ6=ma67n_3v{Mh(|0~k*HSil#Em@5%y=g-T%FH}4QX}Y
z1i36o)Jj60h2jd_)3AUp&2tD_I$Z`>Pga;{b_5akB!2L;(uX`UZlbgNptA&mIj2W7
zleMC^h1W!QkOXk}`l$--FG8hobH!w$Acix$EGXn5Om1j=ZyMfpP@P~kU3v2d8dfh!
zX=yEabb30H<pFX!Ax<5|I;b$Z;U;bPtCOhXa-c{*Mg;?m801#fN%{t~c&IpQ11$Q@
z=`rIKy$yLoo!Ad7IjxNlH08j+n88tcoF`xkvZVJV`T-%wdBeuQFggJy1tlMku|$ui
z8B7zVm6lI8q>M7+213R_|AZO(cj@PA3O=H-<pJp+u)W3&Lj<#}7icQcC8O4>HISZx
zURzA<md@m@TO$iwL(!<@yMO(s>9_vbf18fUAn>;5X}!O(IFo0W0;=jQK$ek+Sbcbe
zdWn#H>WOIh1Z#0G4*(ALax?PW0=9u?c_uwnX~0~GkmpJ{tSG1yfN)z0KlH#iAU+KY
zMOB6Yt9SrWaS$q$lOR?Mg5iK{<Fx){4*57&M!w>JN?hUAIP?&-h1ckfu1!4PO`jC`
zJ<17hWcc|P<is5rkcJP|oK;wk8IPb5tpY)8cf=isPh0%fM{n7%ojdpjZ!!`+cUu<Q
zY`7d;l50jncUDFPHf$Dcx1LX6nB2`vQMInXE(DE*I^eF$Ta%`z^}v$uya0XZFXb>Y
zijyR^#RmO?*%U-@))7pWMgeA;U;%G`x?Ahd4-kn~I+0y;VqJo5$SEDB(qoK9r+~?m
zDABN^AUMPSZcbTd3!z4`v8nY2@uLr%G(FN=<`5IQ>fxt{Q?qG$W;Tru-1B@Y?S4&L
z*nJq(cIpE?d-1*wDn0$e=hN}CFQ(UD`G(}wT-1+1UPXS*5rY~ez?t5=7G>bFqC*xx
zClT?Gm&uKhaN*DN02=Th5VRfK(ZU5?_$5J4vFg}GbJaq25r9<XYD#4ot&gCgLT1Hj
z0*XO!IOO^v$b9#pbU_&o07pg2YbF#4x^HA$<Qh7LvcM$-IiaH~48R?6oYBay$Lq8K
zcM7z^MWI<FL$VAQ?57Kb-{xoB&_t>^Tn81Ls7Cjn(0qR&%}?J=_pY2brO|`agAAc5
zGc6O!D5&hLoV|m4C#F-W1Jj|^dHAvQ$QIr7?39d!??A9P#~wYeJ>!;4SGIrn2na@2
z*l!@fx&lVXwj3c<frDo_-)XN}Bc4lFI@uIJa%{*>2iNF@Hz;$Sp-+dRdOG`(HVsXl
z880b~PueRiG%5_whNcOot4>DBmT8?}S)&XYxb8l|SJQw-Im3GDvPaKh^!4?oMft$T
zckHk=6AWB=b(@S!pLpN@>EG#PuFs@lEq3Bx`RF~*v+`qk$E&+KoJ?ou!Q3_!2{QL{
zT+li^Ix4&d&-fD0@WNf_DDxUmgd<(#2nI!@kpTuXm7Tz8bgdf&@Wx&bs5;~DQLt7#
z(0kvlal-wG5khVsMx_f00*ZvKEn7Sr1pxvdzR)#>%&&$AZ^^hw8uV@Ah}q7y@@_}x
zib#7($4ZEt#IMN(6lZ?Ec%f!Yl(3=>@oSIP3`X`IG2UC}-&DibD!V$zy5{Vh0%Tas
zkl9ZLibuEb7_QOTZEH~6+;jP76fkptQd1Aj<ySQA5Qd?<5B=%HggG%Nr*JIP8s18k
zw7gT<AtVktu{I$X(-U8NkO5#Sf)L&2WlCgtq^G7OD6y%9Ki;Rnh-O(YSLKPuk>Md3
z2R-;CIqV)_OYH1{rWxdCK~s^33yU%w)OCkC{z%#}GM)|}I%uOE3={@~!&DoZADKa8
znjr%*tyjixXnw&qrA=F8)p!~-raWs4Yw5?|`>XWjfBG-d!DFZO2=!H)`cMQS^0Kgq
zU%YJWYIq~d_-KQb?^ua37t%Z~p#PIh10RV7970GUp2=(c4k_to0VQ4-gERXXUUlrE
zVXkc@N{7ISh4mdb3J$7}nZUqEt6VigKoY`2U`12GGKuY(XF|vk7=EzT#nkaZXZUPY
zD2N<1cB9wDZd&pU2T;y%9&BU;kQY=Y%ruYkpfqX<T0iu#N(tYv;E+=Db2KA}ncH#5
zrwVtjoJ&hu;ir@G#$@!jdA&M<0?HSIb~(+}U2Am-TSTKf3L*ydpd+rXJhY0X6NL^K
z7eAp03@2kCP8I@@#~MNTg9Ki6R@MfTkorCOwDE&b7zEz0;7tL;@o;w59)>a_B}2eV
zR@h2hlwli?k+4yWU~3uytgq_eQlAzIwe2`EI+%8h?MS_ng)w9lGbh8)*Eb~oX^jv>
zzrG~h&{NM-NCq!?*_3|l#`I{tpj$e!h&VW`w?4CW5_KV;Th53c@t(YWBk{sk4l5nk
zw;<jt&pYJuh+<JH=ER!=N>xr5_bDafExw?2I%^X~)&hrD4)M@OGEg<+Mpo#ccG|i;
z7h({YT|#DT#zA{qcOOz?@nUrzg>8FVZ3!doE(f4PLPRa@6g7k3fbFi<DTTDV0Yq5{
zG6_bSR2nYgL=7*1(?xSIGP@u<lmlRNP8>|`3ud(72-q((z$j-Z`6YdW)-Pb{zdEiZ
zEHal9fvO^nvZi#O?tp#6<F=4^`@=WX0ePRH?!0R3J=z^u*27Bnzz+h|0Wl0nw|RZm
zhYsj#33NJjY~3Z7bsk_%QwGig@C*Yvq?6#tK7HNF9N&IQlcEug85YtIE$PtlIQ+A!
zyE8|qm(^Lj^%Ujs@DAJho10%uYwD0onyM@<YrSB2Ann{Yk#>of-Hg#a`!uK56h^xQ
z*REYjPaQvLY4gs6l|x7L5txT*Q8M@n6bqv4W^n9T?{kq`ldc*i$xztq-8BWl=Yuhf
zNLV;T@9rKq5Ewv42vMI%pksE*XbklCr8i&uj=h(0=bi&LeVErbCrfRS;o_ps064;n
zFW{{{R82afKq|vfglBk;2VLebe1Uec0(+oUUKP)T#+QYbB&+@tMgi?8ClhOd2rEKn
z4F<Ib%{O=^29RBQgAhWa)0JwW>ABz#;J!0(t;u#hG7M3nL-?Vg4WVlSqrhyA9U01k
zEi)mr=EL5ac0CTht*aA}R{e)W;^tcX0(b1_zNaj3SEGXs&7(UtCpLDVy6f^)B!<am
z2o$FZZGbN0;Kl3)g1a$%wwOmpREJqzT}X5KB-`f31Dne;n&9b2TLTb3cViabIN?Yq
z;$+|oQw)h*(;5IDU*Q8QJ?eP(CU2$tdMnYD3!Q0XhhDa#-uli57t>FE`evGapv6KZ
ze&de5*QmSs(C}b7s$u@wv!~NDXHKVGyZ5O$Sf|*qq5a+i2SiOyWME{xZr)r?cP4%1
zpYKX)3?N$Gyrl0y=p4o1(2$KbY%PN+f{Y9u+^0S)rm9R-uJ-H(BPMY}ivjd8mE&oF
zi!wUr-+SE_7!MpiX<_OrYDuihO2ji%o`nM5>I>_5r>l3+ws4a0WJrzVJZ`ZnZn%v1
zut_ue63+=B!=+@uHJ-6y45Bx>L`Pb0wEiZjbv&2lHwb~qckYlu3k9ydK>%Zv1hzU*
zMS(z*z&6h4L${i5X%H7*U0z5sm?;j#e?i;om!yNV0JaGr+!Cm#ygjXxX4+aqf`gGk
zj1KPV-3BJtMgVkrDMT%6=uL;^U=Ec;(_@%!hm??~pR3LYK-HqV>9U60_6&mz35#od
z$8lw8IX$>@%Q`*@v9-CX&cC6K&s~;L1`Bhxb*LeOM&dFkJ}u}H-I5+>Uel;!N*`tU
z-jCl+KY8nY8y!rHjo3p~_7N5xKw>elS9j}=KDv~?`Mp<UVE8QCM%uf3S2}h4sr200
z<LRkWr*)c92b`oiSybk9#9AMO(N~@@Qk|W8LzA6j5Keb|@8}eVjDX^?(CHmd0;p?)
zvjgF4BQ|29tSkW%QHg5w(cP=3Am93-8HBwDj-=~+Axhh>;V57JaTfM~#|)0lj1522
zIGe8aA9Uzl5fHR!1<H5;j&u4pbeXflXGs|lhNy4`q4;PcI5@&65DWO$KxpZvqtKZY
zmlG6#Dud8UnHd`178-Bxu3RYj7@y9d43@h;*;2!;i;ftUtkpe9TET-%r*}CaEz*j(
z)np?rF#2WB!<jnh!WZR89vw{SG$QW;FnPMWTSK(OGzHLe3I0T)uds9UmpIe@b(IN!
zbQr3Qp}(E{(=NiM4jXA`VV#9@1G@dE@$sEXf;+WN`0;?y+MpR4rgOX*iKzxhn>l>c
zqY=QWhVI<Kcj=8u7j8_Z@BHNLbn)7qw4mn|#?+xFMn`n?SUVZo#(bb{zj=)&tbUY2
ze}AtHYUY;og=pQ;X)t~2w3jYkPCt6%z4V{|!SAHce&&-hCYt{%ZALiU`8kNRD1Ddb
z_2wnszElQB=uIcnT86D-D6>}o-YzhPRxV7plp#h4W+=QgZKOaMu@##(meYmz-_+Nl
zUPy=am8kRQ-jwXRvl<{dcd9cBKE{u#g}P2(;F-U~B^|ohsj+Z|k#H*=#3ol)^Yg_$
z#{@-T&K$^d=e(3ftBdrouehM7`cp=jCu|UiwlWCDN)vmuqtW4ljyPdtHhr3S4IXsT
z)`l*owNnJ0$juSQ)%0}X$iSe`ffR0}U5mpXyj2)TKtp;x4(##HIHJTQuUBt5>eC#Y
zJN3QmAKG1y#X{3BjDqNBz?{ZI1@4|38{8!|M+T<R1h`H;@@#W`@<PW@?ewZc@KF{V
ztM9xI!D!X-R(01N)*_y*$_s~D7+3cDdvtg2l|ks%RAqt3pJ(UNpZ)bW(_eo5Z`0)D
zJ;~OTL96=vc1~zG->vr^Or`sJfN60_YZe-jFqJrZU~ifc-^|>iI;plXt%H&XrLdWP
z{Q8^eyhachh5zCYepgxJnFdX7v@0?<r#Cz^Qb`y&?NlfqOkXs)@lK8ilS6=@xNWhO
zEmImh?SxdUFsOJll&r(7%eZcC>THG%GQFyYpD+k}_8(5yu3WI!*PB3O>JMkh5VokG
zkMxbvc%3Xuv53ob{-DcZEg=tQQXrOO&<DJVJES$970ldtPUmg83Rfv-$xdKp1r8_+
z&=jH5y7@4;VSyWxfVs*bI90$O<0GUgsFeY1h-~LWPle-b4WT9udJ3V8B0?Bo{UU0<
zE)n+-u{zA61xCQ+%XiA{<Bkbx7!{7%%Tfl$_aQPpxOG|Q{B<|i-IFans}4H5Iz64d
zSI-7;7xwKro>0`CR|@bf0AmS`CvrluLw8q0D4h<S4D8c04fKRA9UWem0pMJM$kg#Q
zY?fi+xrH^o<b=C7j;%x`Slh?f*#PnV$)EmZdih)5w-3Is{n;g%<0HdqRO<xDwYxtC
zO6Lny^4jz7N~aI+P3NzyYSb`i1Nb4Wi}Xv6alK9Hj*JIoar5@=^v8el?{!FOA^pY|
zUQ8=mRP5pz2q`%zU2ol;NxODv1fsIAMOCG19iPlgRmKZAe|xmA6tIiIk5QD!AyZOZ
zf$_|T=!BnFn%AyeN^idYYI@;QpVxC8`_fH)VAi_=OwJou^ff8l_>l%l8D-{g!ZQx>
z>TJj}nHG2XB_6m;r)Wi+BTgH7ZJ{6$faVA(+c``v;X*<V0yG{orGC>aB62`9a8tJC
zLZ~8@LCCnrdI+frXr*^GTusw0lLuSqQ0KF@QA3z`0j(koDG0uP^=KHs@FTstY}3^R
zW=%3S%c~c7gYR*Xtnc8&exsbbuX();0e5Q(i1h-J<qQGOA29UgQ|mk(s9U`8bgC2E
z7n$gw9SqF{*Im-K`xJzSN2NI@(5()-oYx6ho}k~8g}(kCy%dElMN(z8UOebV;v!(J
z;E(_Pe@x%_u3loQJ3n7_205&G{vLf0RvM>CjSlXqgU{(~0Y`~>T5@EtFOA7q?41}(
zH}2{qu;S(Ug1tL;YDA%}LFI!H3Oew~`0r|+VaGsE+R?9F72!uU+POD9Yg>qYx|6TW
zV+?tK2`$weF%ZfK&qPpv=wuH*$+*ovd?-WMm*(dmYGHF!qa2JRBwpxDH+Vez(v{2F
z_2|`_$_)gh{RfYwTQ{yqdUh7boegNjxAC1s^oGy<D)RwyxFbEz)s#2U!AI(bCm<Ja
z=X6{X?wFvfQ5ZkM-1Gz{j6uXRK9^%*GTkCo*VA#^U&BC)A{cY97A@=nGtDDXuum3H
z3$nVUCCS++z<k2~%Vq5Gz(L$_VR~{#vj?vQ!xs;ffkp)3#t+&WLExZuM_#w)cVKL{
z1_0e@QD0By6=f{?v8_hOqm|pDnHdQ^%%eYwjmFKLp9C>@%)5P&O(O~B2sv@);ow-I
zXR(ksC-vyv2%Pfk)wWx=b`^LYf!&5aeSd*feS49rrU<s6r*x<8Pp5zVZ~l+;XD@$4
zqlguq4<HY^`^zxx+cja+0*3Z;n&&TSp^;U7bYTR+a|@%|>O8P}LfeKK_{$i;jnDZA
zb`6;8Q-2&@x^r(TedF8T*HmFi`R+=y3rp$7&D%0`nwsc46D%UK<;ir1vc@o&QIL_a
zm#65iKdbeN6|Ge)%xTR*qb-g=yOE^0IA7rgg*B0zlFc#aBS((ub8u5>Ub`@q!>}Iw
zVuTbwTWhg69UWu&q&~FU{4ly^c(be$4|?D#ElaENJ#EJsUM0#O4sv%9$bLivo#~0T
zMb&|(Lon751od-Bj%2dOj1VBEg+AT|l_&BTdRl~(rIIO_94$;H%Sk->Py+<S{LHCQ
z<*21gSnwDz6dzg;_Jc^jP}IU80s!&$4oV!<{iC}qJazLU8wt?({W%5A<JAE>)M>e?
zF)3gqKu4jGb@Jen8oMrv)8V<jt1Q&n7*^8>*l1u~VpE@4=BO}J47L`z%kn-$9E~!3
zyJsjdiI=R6^zh+q`uexOlV1MD-)dgXmLo4rA-zsb6ZDLP87iG~&|Q8(x^&2p^~spf
z5y|5YJv*>p#$ZY>J++dNP80ehJnvH2&`_PV1$)vGBy}k7zCIQI+S}*S=)`!sc}H8A
zEF3DG1ua%CN{3royV$p9Pa4#Sfn66)KVm4D((ozzdEPOJo_bDVNzZ4PVbN%TN2BTJ
z_JpS9RSTMy3~TLX?9^D=vv0o{!nud{Z8WiK??K@|Kq>oI!1b4omX9a!ji=C6{2@!I
z?2t(tj=0lCwD=Ja8NpiA7)x9M4+q4{6(UcgipOZl1T-WDZ@r~L6>;aNQj-1wlHW84
zk+a~nv7E>wUKqCk3Z^vxB?&&-cX=Vz6;$S}vqr2b1A&eqML5-wbfw7nvxP_ElHqWt
z5@@S40$pNAY8(|k#o{D6#q14E`1-+|9=frkzTC;_@Jt1m+iQ!E2CiGSrODZTJBF*f
zJqzrnsX8y69L+m;k%-ECMV+T#ou70!)HzmGco~V#6$pR<wL?5gXG7_+X23qZ85?8>
z&Pl&F-g!U$_1}EQ&P0rACjl6raqHIz#f~g19otQiv0|5DSvcZ7eVT&wcBP>{jeIl}
zII?e7IygR(CN=!;)ii)1`l9sVG3cfIbtkJQ<$zJcq^1||yni9>+%c+i2YT*7MrKJJ
zo~_6cokN({`2l1wDqz^ZIyWn0F_(sPyt%VyhZ)CVEuyk0IwxGGMoBwl3`VrxF+4h|
zQ9yq>cH+1hLv~L1b_9=8-?;Ko+I!$w+M|O?S1;)q5=xW;w1AZ^7yd!C^@AS2PFKWa
zc$O+Lbf!#;Sk<WG97f!dv#Y1=c!w8U2;4%Q85?ki!BUrA7m=H>-57(_XiKscci>%W
z-5_L|BDjUea*Du!*L|dw#6ooCZ^st!in1QcSd0Rl+6uqw+(rpWc1|t40wOhaiZLLb
z<$yC}j?*~I0nb6=^=O2{2j8o+2e>8O)mE0~m8KTUG*z$<si;#jeXytg^eT1c%0eh9
zf0I!+cX$kk?(odT$rT;h)Az7V6FNAv09c9%k9tOjB68%(hTh79Wk)a?vyBeE`R#P&
z%GESBG@#Bnl<rLF)ouFYsY%v3mNYcqp*4cx9Xds+{rhRX`n{KD57s);&XEDF1!((F
zI|j%1?@o(PA5DMv-bFJg%QAATHJ}2c1=6dZupE&5+js7#&wSz6^zO(h9g3PY9m$BT
zcc`<Ej#GBZr}9sJ*cxTJbNB9~PEC%bv9VFf<fNyjP5QCW%G08YGD26bUeqV=X6*R|
z^1u{?eDPZOlTUw2udN@qkpibBy=o~tB_|j0?R@Bv)x^VChnpxsqT}k7VR3_oQK->*
z(6Bk!2m|vpw_?!;m#bW{9CxqCiRV}<%8=#0>$e@YqOFY(#F7&+HZ-VfX>q~Y`9<AI
z@MA+ojv689C?3g!G8X_v2o@HL(~SgIPiXi?r%GwSi$u{@VGCMR7t<kdwS+CLoVKh9
z6m<T6eNqiKr>7d#CaqIgXCopibrUsm?E<Lt+4MnoU6$181W2iOY}N^A*j=nINN=_l
z`A8~SpcW0!Mg>R)AVD+?|CWP?A!MY$`wHHD=biMeZ+%BofbO(gi-7mlDVGIj?ZDn(
zq_hU54{2)CAg#(^4XGszN{@XL6Y1#0NIJS}ES)$ok%kAl(!tMuBJGlq`12pWn;vKi
zF{K4Ux*;PC<PPZFh-^vX&}&++TDx%Jqx5^f^HuxU%OM?WzN9<&=~HLm5|K(kX<8Ym
zJb0FZwHLh=L9eObWpHH7Jh+pl?%g#*F{6i`mSu=o(45$@Tc51cx`eh(dB%d#4Qn$u
zZr(D3fKlL!P-tU1S($m%IuvEfpP`$61s6@`!-KTMU6kV18XQMLR_{oNvT!~ymQ;pE
z%&a)bhI7gW=ob}<a!?yH7fIzPu*x8SEC@x&Y>5lkz?Uo)xD}Qq)Fu^DYUhw2a)YfM
zonVMIl@zefZt>`#G_b&DA2|X7Cm-;5+<l9KFh)FuaaL$_Xjdph9S2%JVEuW7FsG*x
zZP?BcT+NpmA#ikgQ|kk3jNJt9)C)zK*ONq-76*LpuZ|&rbqw7BJM=0s)(*P#h;N_X
zgJ3!14k{i-7BNDw^#*CNq0WdV7y&vKKDytyaWnm^fBgVpK%c+ADcKI~66pMbU@RJf
zXDxF{clfc19lG1=?y5sgi>o@oq$9?MCI&Pb*pr?*bRao`u?GMEKmbWZK~z0;cz+t#
zgGvnZdG{jIp%LA+JGH3!%{MQkSxptDW*5u|vTnjUL{ImC)+l_m1J7GJ3jG`Z<TulV
zo_`qJq3=y<Eg<!1w?XRx7$UwO$#8!`#&1yzn|u)F*3BC>q8J$L*XQW;<fz^vJ*0Hc
zK6lu{oZH|%i{yOg?mbpU)+ZHWO4Oz41a3r+Mo;Rk&Csa;C<5~x(2P^hfp<Sh18zl#
z01F_><$9nVFYr2z!gW_@Xhe#XcqS_GtPEs0^u$Fo-O6d`+9f1~1V;ho*MwGVl|g_k
zWI#@1F7YhEOTQ*96X2mKnW!|bQhCCVbpp{w=1pspZNS#3$LUmtrgLRuL3&va!$LzG
zLi^>o<p+2qQt>$<g6huc*a7Gn7&Zhu4498~HE>Sefzt+>m!0Ox=wava)zLXK!0dtJ
zi42J`8r)6LjTfsjCzhGefg9cVwB7)5)!Btm`Emj=O33e6++is(jSe)I{_c0apQi5K
zvu(psofmkZsQ|0{7=%R)v4;lq%ma6J&ELDUK(|*fJbCHVk@Sf(C)2(IG6Xu!NN4Oo
zH(r9m>(2B<<38o<%P*cvv+BGz?>$J<xvr75qNCBIu`K<U)X6bKye0Z;FMlolli&ZR
zX<ko4-n@P*UB7tAMpJArF3K=5a<Uh&a^67tujqXV17lh|)XoXJD0;pstv=AfsA)~f
zx^LQ!#heyPDWst>c1d(HQt8`k>ov-_t3}Pz$B)~KVZCf}OF~yGzOBANgfG4VgiGA`
z;I`tga2C&eroE9kA8ky|WO%UUnhA^|!Yw3E5Ji6BZbaHKZ%5FC7lQz}a%y;VmXewm
zhIgDyWehc%+(0U$&`hY3{V_x65TZy<KT}Ns8z~@8Vc_VCN5uPjz_S5>DF56*IGj!y
zRqKL8CIKXC*{u1@)q1o5hFj3eHj8=P+Vb1XuP)o%&?rH7%}xF2%<Jk@NKs0;XtbiQ
z(SX?n76tXPRD0X7sJgU(hW_w(Ye>)fg5|L^ST_bDkt}J<^usc)uz2oi>+ki~U)Sis
z&lw==p>_kv#JbiupzTqb-0{2A$v<`aQ2J+I`m~1f>O^`+Bc~eKMrB(R!_}depLXeU
zZ@l5CPr?rF-jTle^pW)DM_1D=9ahqZq;1E8X$Om_I#Zb*YBbU>IYZi|IQP!m`oQc&
z`rH>jua4W9PQCCMyL*#HpYm$!1B`;yslh+cG+}_JI)z))RDc6ataq$wM8R=v!ZZ3v
z?Tza<WVm+OYvdNSAlpku^;_1ogX7qP8Yv9w%U8Tnip<kAxAjZe1|77xT3q~ya5;vw
zxL+LS95tK=gT!K{MyW59#u>Ch=WxGD3kw8wQKA6q)P$Yh3dB&&IBd?^gd3?Y#UNNh
zkqESHM+m_Nz81Ei0F)RR4&Rj9LfBxeb;Sa&I0%K}RVbiFmx<lW9ba5@K+_R@_=mv4
zZQ@So=|hJz1`oDgdxv%yhy_K4{M;pVTN4j21l1jt4rkK`t>|lBOj*(yZOc%1T0iTr
z&aS%}3ue~o)#xcU?sjxu3{C0m;-}L<fO@_d=jFm#09#WK?(MhVPB(Ad&^%jb6eNev
z!PelsWOJMu+CKH(4n1)6YbOt+Kl;5dr{kwj<xjuqB_w91B+hhEN0kg7Sk!8W8Q2~z
zo*p}}Gkrxy;jOE8)ATZLQTEY?J?<={FwCdsl`dbAVpQ_sx%2ke^nl9ey?5W!!%&(I
z<+jC0frCk$f4~5&Yx-b((v$NR?9ea;vxlPC7RC6g%;sb`mNmMV*ta+J@RAwn$?naF
zc1spCGQl9Q8^I!^m6G(>)(4UCKB};2ZgtKlbmq^#)q;mjE+X{9Sq+&y+8I!*F^3nb
zXk^Cn|G_2n+M0A_5CWHJt#C~5tbB_M3MuE+IdkTnPdu4`1vn>+1U{}$`n6x~)Oa=u
zK%ByKo)|eO;+-kewu{>#9Au~=!nmosDw-n0e1l7_BGw?(Aq}nzcQ_oo3v_Zis7)i(
zh#890Ign!K31kxdP>!YxlFePNr&o<QI=t@eCfFnr<gk+DD`79o>|1#v*5lE5jRVEx
ze)!sJmj2#dyVRjHtzjE8@ooZ)jXuq$)qFbr@rj}I&%g57bV5%p+OS)CQHY)w84QL8
zrj&Fe-|)+4J9SW7m@l0@l3sZCQu^LUT2O@&ozzhu>U;ptMsRLmN#_~3>)*L`OVgi@
z^!(>vG9$?gR0h;pormd;(z9f`Y?~3ihc#s>jzX(B>iMD!!ELP(y!8Bw#t#}jHnrf$
zapqkz3<KKDn3<k7&M2#fZ}sX07jP?Eag?IAG5}y=YH*J?uc0Tz3R}Yon1i4X*&)=|
zvcR-=H3{tro)C(hcCuRGl|cwip~!i%-Vvn{@K7M)_~vQ=WLZTPL82&xnZEJ@qh=)_
zyctInmqiB{5KZ0Uxxsi!K=c#L?ylhSuNhbKfm9C|F`w7q)U(Rul$IsW3GlPa=@8@f
z>bS*O9oo^l0iy(rz@|C{FZ@8rraA?SY~XFQz`~&3qljD{E#~gop^m?)wFhgE>O9<;
znOFB{F^{MII+$adqRKC2YMDfayHZ|4aL0WA-20Xm=K(gAp1(@njS~lvdid#<|D{iy
zNGFdUv6G9Plojg*jQ`c?F=7}k`?{1FL9Ya@gh(EF(N4tf@$`qEJDc9V{vh33WK^Wx
z3f-k;e{@1|QRf(X?TmuW?<MQQ_ufgr`+L8ygGG9Sw5AgyBcq-lWy5oW4kWKKl69c2
z_?2d4*^PYb75CZ+xp48E)-F~xqUhA|?7QjQxewAMeXaW0(`VDseZON{tq3sf+xZ{@
zE-KQZjE$Z+X##UHk2?rVj#oMvuyFzB(ju1?8hG$l(2pBxNN7Y{5}^3ClU=cdp0z1M
zfXWTsbgmSqz#4goc=p}ODv2r;*8x1v1bfh~0k44`8H}7|KKiFySJLzbgm0sUS{xWZ
z9}$4B{iLkLm9W3fh&!Pgz8YtTF4jO4CuzG&(qQxpgRsiu$ZE+ne77M=M;(f7v`sp@
z$z`~%=NHsC7+LTgf=zxH3PCx2$iW)*LVMQ1PAaN{t#>e`Ko{we|D>(M<eP9M$_R`#
zhig}F=#Hr4ySl@2DzHZjbNK$ef$K;bXZP(+pL_1Kz2Fp`=zwgIS_f3R%n>%Vu7R^U
zRVHF#lRG|!j5+>`XO5*WKXX0(#T%DxH^sizBw7wE4eDq$>2kz*Pz#Ljz4Mk%K<d->
zI#|S0mt)#8#E4qePzU;By<lm6+D0KmT2v(+)vD{@+L(?68Ab5T$e+IPBORHZ)+xvP
z_T=L(om$*`^srH5xV%kLXMo!H1}61zl!pNg;Cu>J1VPy1Q`0yRlBpatzlI`S&>0?R
zqt#`*qzYXK$dm;h0)9^a7c)X27p7=r=NF^qqoi1pWZsCl=*K^L<f!RnaYKOgAJYMd
zI@JO6&-W4YGN0Y0)uWMYVtlylaRcfSQ-)<t8T{_g!5Q88)v@WsR4aSb-P&2e0Puj5
zy^>rwdkk8QnZ{06AeA27QCF7ewA>*b%A6m4F*P(<YuvQZ+)C-BVl_Bt6V6{aZ+A>y
zpvntQ$CNfB5$5=$!aB#Wj!ggN3#Zb7JrmMf3y26%Suju6f`O95Fkyh`h)TDE2dgl)
zDkOB1q3G1sVTU^UuudI*^~ICvhacTeH)r(VlIgW+pJ2lfENZu*TSjk5Pk46fPJZd5
z^Xc&6quN@$m3HshZR;6I)cz=mxqG+L%~xMe-FiM``18M$`ZWq8?^aGK2SzPCqJ90w
zwRA^sbb6pSGhM%UCG9<SB0c}9Pim2IcRK#mah<PlW5y`NjUClNI#1$51bL>nuz~W0
zc7sD2;kpmJj<3fnYM?)_Bb7)gWCg4h9{5N56<1{tGDoi0h{>;r8$xqg6#9DEz!HcU
z8Gvu+489$*4MXnKwhJQNY?NRyXlcAkTtB<x$#0AZBA)qtB!IGv2Iv5JR3J!nK!Y3J
zJLQ1heSlk>o3^b+YjhYE^<O$4+lMyfMus{eYYXI#^ZE?OH|g^N(4Vz8r+`1r$m_-I
zW2&Oz-HDsva@q5J1?#+Gs%pbKEyB?Cop;|=`g+-^rVh4WuQ@!2qM*0MIr%Rf-J3r1
z%xSIe^GLPw+NG~INk?}^sZMX^Kr%HN&`1D(Q}1^WB5mr(GH*%V?BvsN>pHl!JH2##
zU;2-4T+*VT(vc{1SmbkWG79`{GOX8e=)d{1|1&*(@`O$yj;T}MOh*nKGQCNg6jvYK
zO9RUfWjyp!S{YCrhKOy<t9q*O{D&Xt6>l?XUPiZ5o&LnhvoZ)DreFWkmuvx1rIGrz
zu*ktIz179|tqv7>a^Kis$bp*I09Cb6tB@M8f|(>J8MzV;F#!)c$^cj3TPZU>Bv|wp
zeyJG*B}7^ct#c%F2yIL5ga~@`buk}!9q}l=LwFQPO$|iIg-!8T?Mia6Lq~ccig5j>
zPF8nxFf#@*GT>z;7z2xgbHl($fssRp;RT0J^Kcy7VC<D+cxa4tI$$Wn4uKs`5*(En
zJpgC-frUBaQ^Td9!qcU*0gMiMC4+Ybic$tZoKhPa!Y&CZa+JSGCc;~j)-*!+Nc;F~
z&1vyaFGk@2(k!x+HaZ~trKeBYXW%w<P-;UDOl@@Q>C9{ptQ^TV5`i)8(QjSGgC`*$
zXlQ;{?>@MH|A8(3b!Y_BsS(AmKXWvF@7y(8OW+Y{hWfKCtZKIfS*%^GEUc#cckZUO
znLBC!p{LT{{^0xR@WF$*-%(ddN2o_r?+Y*J^x+O$biFfqJzcqYNhchy*fHw?Z6i(`
zIFOz@b}St`eAtd)zp7oG%U3T;)?s^O`rO-ZrrX!ArGNP^|9hn@Ctc9tvA&aV%{sx<
z&LOQ?_CXa;_ibF`X$L{}4R7rM0I|orC!>12981oGp`RRj6kVLZW)Pl0;1iM53yowW
z-efj~GPa3n7I}q(BjgcOSRErq1d%!K0O|xev-P-*7V>n#41mPg-9swkqpA6X^}~5Q
z@XU1$Y!}WAaHnP6KopuH=uS!}R)?bFvue+1f%hGvJBxR#dTxM)MpE;xsynXWyfcA=
zOLQPk-7(yc{F*K@P8cX%%>iRhkDFhZ)r(5*X>`ExXARR=SR~XzA>FAh7b*)LVb&)N
z(kt(Nq~{xk(r&%y;NaffX@|bo$OBD0eb}kYxna=!pA`<}<@W8%>D_Z5rk}j~LAw3m
zVcMZxhP`8YS*r3lt<#0lHl5i&o~AF|(YgnZIBSF;W5iS=bj2Xf>CQep?u&^BG-bH2
z7rO4=wMS*clu4&5kDpDQr=C`BI`p*SL!ET|PP%h*N$)r~oF?|}O%pmNF{U*Lwq;d-
zdV+F63x^}=?H~OxUH;&_8!6#-YwExw-NQPR#Ys!sdaTu@6<CfVr{U`H7L?aTMQzPb
z(P$3k9$AAKHO;gJ3%cltaT`Ql(=`D;C94UlQf{(6CWcg(T$5i5RtAB>Xw@nTC>ZR{
zgv2PVK!g^N_3iwidon+yTe6{EJJBHy{VfmKFLAYOK-O7RLGoz~$hXcWnbz@3oDqXy
z>JbK4%ccW&YNWuhKb$Q9N{D@>NYe%k11}M=d%F0|C`gA*9q@7IYY6>nth`-`7l|N^
z1+^7D1ZD3(uwlAV<|woN=y*Of@#%u;WkVIg&2^?rm#?Iow|L@Gas=Mc8Un_GDF}}=
zbMT3sfN%ZuoEa;g2iUELp3WZHn||x1=hBhG`hbe23Zy`uH?<(QCZn>vGM!#~?MLYq
zJ<`na=a)_#NzWWPpr;lG%<!zJV&1!WRcjUt>D?PsX+=8@NWduYMkbYrX~?u=Ltkjx
zef$}6q=Qgr(^b93eb=ttdW`yRni$u~#GVN&H!5m)xIaDj(wEbzW$j966vhG}MuqyD
z)>h&N+D*Bs2e<fm?5a*;-WPn|iPPzmFTR)#@&XqvO5)lrEGiK>$`n6bYdqlAY>d>}
ziooGR5w+?yMb4=)`59q1E2DA%HzdagC$Sb)5d0Wdakmg=L}~VQ!U)$`0JVZEgOCYZ
z34*^-egUir+!mh^ejcGxU_1Jn=w=YbU?R7aI7UhTjS&Lb15dHbkM#ot*)9SLWV$2y
zS^@X3JT*X+dK%)J2Es=Qb+}hD5}lUqM%!}K;sC4PEFx+qt&WFL;iqOIl^9u=Q4y?1
zkN*y+Q`!3o)LA#w`4~y8>ZPHUmU!8oTh_$f7b$6M%+Yl<J&nrbGgs%$$UIt23Txcy
zwY|x^6mWbPmW9TXdneL=_0lKOj9y&w-nCn4Ql}ap=u6RkS_}B%^1SZWIv=1zLyUSb
zR<koR>H77_bmQ`+)UA2^g!1;_!EE~B%z2F_*7QVVf7+>spe8iBICF4!I&@LfiR)7g
zG*mU{iD8s3irX%XrXCv`Jvu?yt*=qt(svwhrEi{l-9BjZ;!Dr!3B?H+C0`I^$D*ry
zhrP^|QPZrBhu^t<D_z#Y>AkymtuXn@)1cn1Fna8;ra{B$x#vEqBh$k&H!^-Qgp9P@
zd6`+*%8n4_mt6_wK=!<=I;FDUO)hxqKFDwpwl*kW#0{@V10KlmTj{e<$`Y5!LN9L-
z1?)6NSCdzZ18u<+o;tk6Ae7R{#C1|Yfe(1ZLw3L;{^UNKNNe?x5K_YqR7Ap1U=SFQ
zE>`H-&v$d*MZg$f07OD(<?fZ&2H0&db0Clz1|{SM!aFp2S;v+Q;cjkDg6sg2WU>Y3
zXAyLl)!hu|buT?cN17%BxTXi2YUG{TmK@TS9M2yt&E3<wf)?<&t1GVgf<_O#OF#w&
z5oTPJwku+~(&^9%eXd@;Zs|+9cSt2}22ttp5)uts(*1|?>DzB<VNTB-bnE3Jt2#tA
zr1u-VqhrW(dXn%9&!0-CpFX3x{6t#5cPCvwe<7W_bW8ktS<2XWx}^sTCYO~Si*}21
zY5Ce@dV24U^z>1^FJWRdJ*)RGUYOJqikwTx6=Y9iDs9SrP0uMz-aM!C3M=XDSKrVU
z>6~^XmTjx`@};{nK;O_wL?za#$FbLC43!>hBKGpv$-A0HXsV^WBHN~1T6gK~(buH3
zPICA9<@8XGPIKUCQ;Vv<@f%;YsfLw0g^vs0YQjP7t}5;}6y6Ona5#@ikKES$CLvtC
z?U@|ty)N)`qcE5*ncpx(+oWsYd_h*uOC4-F`Ax@DtB?`LuTsfD2O6e+DF$I1e4*VA
zA1Xd6KIlVmSUTXysQW<^zTpdz3YtzqC8z_JJ9kT^7(9;(?5<_=1+maT__v1Qoh#zN
z?1w&tYd&*ccm8%`77DGyYEjTSA!+IE1ec8*GQBk-$ztek??BKU&Q1_AC6MDRLbsk9
zfQ~O7ZEWa^&e{r;0`@ZxLIQG`&F0JRy!XDr$U1jp78$|YT~ZGYaZcfmUQ5PTm!3NF
zbh@hN0S=xzoxXhhaGLt?-E?1P1Kz(psqZYD(K8f-Hk!dM9Y1<Bb!Z)8rGG4q_l~6R
zfA~?_t=E(tSYOnek>1e=VLTnt6O!W?ggdk8+wWeHL7266&+`X7<AA!9%Z#=RzxVQg
zNJILN>#*KKIWfFD^=V6TRK|u6z21LtUmwT)NYgAn_$nS5GG0%=%E(J^YWn1hyz5{>
zc*<5bQyqU*FIHK7_#i!8)o1hOwP-oVVKCK47;P&RE?#C9Ex{5naH&<LS;E3pF+mN%
zB~xTCqD?>O<Wn&q%_lkHc-i+@^P20qqCsEiL+{{ijW@-7+*mOPp<_b;X-2vrTH_7k
zj~78yWTkLMS{V`L<=uo%O7#c{LIq}XGH-Db;W!&bKqVRzM~Ac#K%OGNZ=-AEp#)u5
z0eqOvZ;lL{j5#(*`v?JE`0NcxO3OO8@ER|eF6aXXpFy`>2IkZ}{U{huMy|3FZ;O)R
zL8OcbjhW8F8G$uzJF>OfsXMtFB_5g*Eh^dw$Fxo#>P~*?@@3;QgCxZ;TIk0XA!Wy-
z&^t9n`O4|z>D00PX}arZI-&O+9Mnru=lY*XeS@8P)6tCNGD^{l()IP~BS#LWU3xjn
z%<U<yCv>D;nra+<>VUTPI`pXWOgizEPp2~{4r{70rUAoz+BZ6!#`T7zYkE4->L(Y2
z8BpoM0_W7U9z2>DPD@%-k=fGjfu6*)FHCW#pO@TuEsScoF9SwC`9`I^QhsG2z4hZC
z=%X)`8=tq+fh!$!8qm;ZrxrOo_(p>kO{KWjOtgC<es@Y(DSaG=+QC8C9PP~mx+)xT
z^CMpQRu7`Xhn_lU@L3!XaJfj(V~Pp@j!G;JT90S0kRo`6gPd5<5O3$U!xw|F9YH%`
zz(UpS_zFG~lz0|M929-fToB}F-7`8-Q?y>Vx<-Lnp^DiAc_o-^>p225iB*T&WMrTM
zrgNF{*|#`yE$+StNeh<BN2eGe;4@EWXpfPAir0qI;aS|X{e616l4na191De)u3k+C
z4s4`dnv?hF48o>pF(y5FWf^l{KD(Z}SOnB}9%d$WjCnZi+Ic|yy7TE-G~}We7j`0E
zef70;Unlh#ma~w^8i_8-ug~FGKN!>S`tzrcXu)kbO?0iM1KL#Bv8jVYBHgV=o|EqQ
zx)1B2D7_t8D);I&>Z5udfHy%8YIT1>!}}o(`PJ>T#vn7NPrwc8Jq4rMp<sxf^eqP-
z;~LYGic%EqWV}Sjfu|hiiO@B@=Yf&K{N3C3y0wi3O&eqwS!i6-+yq@&@Z@8$Y<=?O
zY;B_2)+h^=>x<g`&?DSE%41LOP#V$^=A8!*NtbbZWPFF7;n=BDko)!@v~(BsuvFz-
z7uU|40Jy9!p^DT(wYUYj<exDq{0QG#Yv4n6Nz4S+6R)L>p5Vg|l<V&}T~$`NEGdW{
z>qGx2o?;M8Qe*(%ep!CRO%%8qoJffWJo_~dlE@O^h`03xG`JYdC$2Dkp155p5YrbE
z;RJ3hEG8PYY&A3=KE@p*bO7htSodObE_wEcT#=h0kXYM7ggPp~(iA}Q{bV9XWGlRl
zGNkO9?uc{<+j2A>gzBwC6MNHZ@19Ga&>iuphV6_BFbHl$pkW<>_XMt_pS=F#G^>%q
zKmUV&k#66;sD;Bmy+CAMZzZ1B8;57o<kVF9+F$*Z@tfLWkC6%;5*XieJgj#j{`T{y
z(;ltB^Er2(c;v}Jb|AEZsN=?(%c}$O(N&6)k&V6WSsijjuUX?<!=M)K?1@PhM75B}
zLs1(#K(wp}n%2dS4BH8yXp~=*Cz<*;<FGKVt<lR`{M44>3I;?5k<QQK*lVI+lyRjz
zyV(-mzh5tE9ZM@Z^DwKmfd?uNnIh#!$G!E?(ypg;I`Nrj)1JNi?D+^zi?V>LB^RBQ
zxMqeCHQ2r_^`^K~DUNnjj~9djerE>)6&}9dY#gRrlVINN9JgKETBm4pD|KHi-d0U|
z?Se)i-H(O%N>S3PIEjTLjG6|sNMJsm-!uqWXhVdhP(h*)t&9K%KKpUUFZj$_b!G?T
ztSj%{f$5APDzh{_kdZhTOF)1v3D%|PPN{`M_8F~VsGxlX96o-?^spHK0ipp}+(;mT
z%>4&<Z&`d;ukoU_uj#EroD4*JUIS*sMS6iCylI)U2&StVESgQ;yPpo9d@fzM`jNh}
zd_L_RAG7U7&i>n>CuC{0oe=?po5{&*>EHeF|E@=r2eq)qOGVbw-n|+zXt?~rxr^z}
zUA^5{j%fkLz|(SLK$!J|lRL+>#dsi%YMXC$Q}=RpMn>43dS~LYPF%7w&%$E|cT}zD
zcW5}Sp^Kd|<dNwiJr}_a#5!vl>U?CcL))YsYx=aib~$hhx^qvPQBXv9^2+DkBvvd+
zK^=Zh3!57|_oNPe9!>(&o-?1YLq?-Iy*TsWZhGUp-%H1zdp_}<$q#hM=$=0N&PmRG
zeOY@@FGM+V@=Q8&_7i$IYQ(b1Ga`K6?txy|a`n=MborwTGM3Bf`Ty}nrRpwP1NCEJ
z?kwg4lcRN5X}r+rXYr;V#=u&w@a^K3rf`vV@r~Y!iK1#a;tkDccXdE!FqK+qkyNK8
zo*m$Js8)Do5KuBW3RMo&;Lu<VO?-h@aYE5Yvo3|So_V9oN?IWZV0})$9ZQBFoH6QB
z6a-;hCfmuZN))U!g2^KVC-N&Ku;*z6344ck-zr%h31dZ*hMYUD`!0ejcO~Oh*zQIM
zl~G`tf;@IJ7|OG_$YLME_yINUnc3OYKfX6j&Mu~@ORuG8Kl^K@3Tx=)4zG^as|7v{
zpwo`M<Jz0oNj|;jU{-GrV%2|AhTx62-_>1P9S;4agYTl~uB>zgvX0xUbkFSFqqisz
z>W-`*9a<fnU5<^pPTTh56=)o)>d+KKJxmjRz2RBA32Pbw^y&Erj$e1N>!Gy;MlftU
z(!sHH7(MRn3!;Chbq0}ZsPFppijNT*BLQA4J0QKE{q?VEj<0toYT7ZTA^*vP2h!v%
z?Gk8bqf6VaAO867ln;$;w0L>&#4~BP4kqo>v|!h+z1me^Jw?w;XsR(ec_ZD?yC3fA
zMC0_`X*>HctP#*>Km9qCgcfO;%G8{-TMDV>N=qs2${}Th5bd0rk8q3ceIXlS(M8{g
z5rg|GHsO%&t*BDMVO5+^sA;xK1l~4-vb_(q)uAfzb~tDwD|NnN5Q52wf+B#%jf6nd
z!U4-Z#=wFB&n!_eA;CI~B8A>sGywg?OM^y41*SlWh06(q#YYgXkpbfRspB_C1_;-W
zMDnk05J;7VM~5d>yDH4xj$_Z$Q<G`O&b?`5d{3I6_O}^xmtEK0(%*i>of#P-mQMp?
zdyr1GZ~qbXV1408oncAC=O6utH$)>kZo5j$?(&wtzMn8YoW8j4v+^g>!TqNsN~aKY
z7k;R__)p$=H{I2gLE{4Bvve&@3<5)SAFl7y$l|2F(P-aLP)FwLQLNPSJ_hY;+A|3A
z3(IMAkR#PvL(nVFJK086N1xaHzE^7-y_@5zC&5@Fkrn9B`i3lmdj6{Ink>m6OlyQN
zC|X|Lx}X!2vPt@c+nCNe%-FErrYilz>Gav>^(Cl#TB}%2*Yr8}x4!doTGV-nCB5B<
z(NF)x&UE(0Pp6YQXf!ya*RG?JgmF$|YU+kwxbn6>-*!z?l_i^ctSP-CM~|ha&pwm(
z?%SuG4}aFgo*hxil=h(Vu(seAFqJE9#@mn^1ceRW;<vz@w!J|h!7u>$Uc<C5|5XZ9
z@h}3k8&tIsG-?qCP!V|C;B`qYVR%1=D+YnI8U;YcO&EUdC!m#y$io^IfDo`a94$-$
z0f$@2FUW{GBCEKd&RH+UqQo;r&^5RUump-cr;8LMEsR0<Bp_w11FO3DJ^}^;{d6@s
z^j9RSo$HRsoK}58{46MP!cbk=?wl;@amVC&208_IZ7Uz$A=MMpeRYOKeg9xsXAth+
z(+fuIX(u)KthSwF!1yTfmp=VPEtd7Bo0C`drr`;tp=TsU*3%W8^84}YZ^-zlyfs81
z8=O~Q+F*u_dQhD8gQI$P!5)2Ek&aA<<{1P#H=(=#s_wLGQQGK0(mS<QAnRjO2Midy
z8H;RJ4(f<9BZq#;(Out0J(?=9<+>s{GdeLirxC(FrE`B#pLpBkyAoP!(0rec$>@Mj
z%U`>AUawXAsYU}g)2%BPbrMovfKvX3w17FJ5x}h8mw58?UrC>P;YG^_ymJqy^*+YS
z>72gue0Nei9$K4W-DT&2!|Ckjp4F+x({>b_`e2)NfSnsT-u>8cDi6x3;V2}zG9s`V
zHUJlg8x73R=DH+YkHeSgqE8fGI8QeB4M}M@LuSSBNGAKVKg8lYoIvFutvllNUmdqS
zA~R*;Vi1b(9B@z9g2)^>UheFHw*ry!@(q;ZAt3S;^1|}PNFkIDy6^+Oy`L2*wOtfa
zQb_TizqU(Z6t|KltRH;(x3Gc27*qxUG-Mb9-0bv}w&afJt47mW@m7c0<Yk}gtRnJ}
z0medm;%e}=h9FH?58yHAk96#I>Y?`i&%LL`xP`Q@Ps4le)~1WnQMqwP^v|*Jy@LL9
z^pHjeSQix4DB;qTo9VJ1`r)o=QxWm7i04KO8b&B0mrgrb3{*qr1uES-2xJd#sdKMu
z{=d4Wj;!g+Wql%^tvX)JGA1Lzdke2#zLtix_;^5T59-}%Rd;&r_oWW$Ls_iLC@yOq
zVL{JkOlpC2Nrq-vy9|B8VTgR{v#GZ?k7)SLi%fdb<c+K8YybDZO^1#glA#;bGYb3C
z=}&$#oq6i0)>iJOZ@>H(Du8vJMwG$0c|F~}aZA&JTlS8HT{@L`=D8QsL%jz6BfW6t
z*qKx5Q+i{Pt$kRdBE!nEWnASiL+l;h;Sy~4#wEAWra=&$;07~%E&g!~f~BVxC>dxF
zT2RdqHy^bEV9F7}xxUsvg2q9P&SZ6vBcAk%fUVrcAW#U7uN8*T1F!ucQk=iAg3gD0
zptMJ>P3Q0mW^qL!rH~>(MR+0L1GoQ*QK4KGC0R#$+6_WQNC)RWS8+$8W(<&)C2|L~
z8e<Nw4yHcHXu-N-Br0kQ0&e%d13FA|E-iN~+Nr{@7-l@gOkP--#~9g3Ms?uNeBsyi
ziMN6D;QoDkrP=vczAoLAmj3(*wCEWjXjspepIJc%uP&|>S)5x>@9H4ZqMld4nZDVF
z%GE@1^<UA>=q`It2ag8yOaOg_sRNG}udU9f9-STFuJ_)BE9v6>nRG*ob5H5)!HwH@
z^jWp}^t8ffpMT!o?6jtqvZ#*QsqMZF>BX}Sb9%VxHs5KGp}0A-kiP%^6*M&C)T`IE
zQ6sD)Flu5QVO86PJ$fMN<fnfl_36Eo96vsB{8Snr8_=W8_tO5+fpp{bAErw`Sk-hz
z+oF1>!SS<a)2UOZ(wM^iT32{WBaEx(^-PAf3sRt5$S!{>Au3I7ftS~q%XLoJ8-eNN
zC<lZ=a37fD(njK^Jb8S(5kiKGFWNqJft<QQu)48}rB3DLz@xqB2bMu2g%A1iYu;m|
zWFDw${KkY3cf}w$NLK>cD*;D3M})WWDF8!Jm^BwF1Sm!rF;cL?5l<KckBb_{N4b(r
zPPazuDBuY3pH(a+jDF@TjBh`AW+dcu$5lQ1c>;WiK%jmz`Zx>j$f;-2-HUn;f$o-^
zoMS7EsRE9Uj7(qPW2P@Hgg<uTl&vMC<65`V!raB5Y7vbxV~CDgYT)S0u-xsHj1zID
z3nEz4o&9Z{67=&3VvuC`aPIkNVOgggnGRf<dYCTUxvzysPWN%%0O|V9!me>Ef}J~e
zq~HDGi+Ypt^>j@;ApdWBZx*!Kao+beX6BoH-!KCVfWZ!uAVFf`Dp8hXO0g4%vSgR#
zsC?x(6~{@XoLnT88^<@P%55qasfsU>N>XuLNhOX%v8-5>MJW_%0s;vT3$e|<@81k&
zU-JL`pMLuEIq&<;3@N32VfOdEr~6s@>8H2n^y$;x=eqVaJo@1F@|Dj$R~~)*2^|Ti
z!&~%xPbuD9c1s7D9M${-ry}3hLZgf2xD1D86v}zcLtM~r>w1<HYh<D~2OBiv;1%kE
zU<{EqLTgCBN^eZGPeGlV16j@-`LO)pJ0FyT@4T%&3wqShd5Syt>?tpO`gs|PClyz3
zZffqRGF6F3Vkl3QMA<~us3iPm19nbsa$UPrLIQYPYbgi>woe@ZSD&zcflEV>h9PLy
z#&Paq5G0X$Nn;%Y)G%IwPx|1CU3FS(GgJ&BVWUYu=yS41^v+ejT8bTEZm<~yGVeI8
z5C+&Zh|c`rM`20Fh7S>Bdg?%>YS0oUs`FkEJsgLiAU~v4FMv7Mq^A!{hQp^RNQ+Da
zq?M|HGzN4s<`LB5@M(D%hjgseyP~1>8Z8>)br`2Fb7x}7@iINrV+>$-r?n6gQ3KX+
z9|PfGt<u7Ptkko1R4NmXaKVfDU>+fO0|!xO4d`xvO7jquJx>v_s*i^2Bs`Cxke=PO
zkV&G>Y7f96efn&JzQD9%g`U~<zH!}p&P&je<m*}xr4IMt&TZxAH|lv``y4Q6+qQ4h
zbNza6HO7cw?5@dB+>()8rMozDAU*&^o2WQ0{?3&LwE9pBi!^>;r^kl%dc@eFNmERj
zglKO<Y~EsCg86`BAN{DTRl4WToGgE;iPd#FbY}DJy=B|eTgqck?k%5s>T%Bp_~xLz
zFh;{*QaTG-*|<WhB`G1Y3@#lfP2>2O3vYeGL8nY{HHJN1TxfX63OL#{<q4bypmz8v
z>^PxU$Wl$!ibw;HsRFCIq>6Nbr}x3%ha37y=I8E_lnNTobz}S>uNj137}%VzUR;tU
z{xBklbo0(XM2!d}nNi_PI7S2mBFic3F!_ix;}Gb)gk<Y1ICLM<t5l_*(o{XIQiLPX
zFx`qILm-%E_I7-l?uPVhX8>X1IeYR*d3f)$W%JJ6x=ZT$8rkCE^kHQC&ZyUf#?#XY
zNp3VWL`fULD|Dx{T!lGQB=Vz9X0>93!Gs|M{y6xAvl6{)Q|VxIn4h?zG#CZ2jrp?X
zE*wKLPwCYrrwm;e@9K4{v?EYkm(}SneXO*!`f#(1+A4i?X8ktpDOji7g6dS9s1#>8
z@Jdm6k?~-sBm1^CZ_+{~b^1$sWVt4pSEcCf^ZEjl4pCubuvKRk?2<uY>+u=wUsxmK
zz>3P-G5}<B@$BjH&a2;5xjkG~YenIgv=M2qPEo!kV|nD%MV+Xmt<W-*%8Fh3<e%50
z=XH=OD;cwrqhzDlR#k&=@e=zfl2QfP3tS@!v?&0gU&Kix033!O{TTy+*|)HWkF=>l
zNd4{W0^RMa`iuud`{0CzvsfqslfyX3iGcAZbVTL1lxqgT8dUBm7y%jEngBNj$xE0Z
z`0xo~4W};f12*CGlj4q&%|S%dvk<CWaCQwJ0XmV@O24wfpK-#ER4Tbr6-oJUr{&&e
zBM?5fV&HHH*KqmdQ5%F!di{7}-#a|Ks$+&Bq2bV@*^<mk#T9C(oPo4VGQRtrKPu-m
zsrbyZ&-%!87WQ!GWKxoj>N}g1q{D}<n1Rq&+Ig~UL5Ajvp4**QF|i4VM$1e-!)BIM
z`_-fLW(6VNVmzncRgGXC)+FOi?IgUQXa8eIE|gtsx0G$G^|d9<YusFOxvbRl{1xpN
zxUJcIjw53?;R)@AT()tc?0xPLN!J{QED#fg%u#Sy^CcOBv--5#YUPvB!FDYyI&k#3
zpW_)dU=YX)`Q%#+8}-Tdzwm2+U9SmumxuJ|!WW_z^)}<qZEaE#W39e&{KRqXmEinE
z;@;5-P#3jy`Lecj>r-&93`zvaTy^-X3<-`^oMQ)%M29CoVSLI?zJ8QpgzxRcPdl)$
zc*x-w1|c<yypSI<#eISH#Yxxh>7)&zb6}<}%Oj1&Ko>9UX+#tR%wO_N;l$7Ln?WGb
z$W=tcXQ29R81I5n%<8uhLlxF%H$^~dnIvlE?eU2+9}K;qBsP2mtb!B^zp2y;DANf)
zBS&K*QWyi0QiJG>f_j)o46X9j*-vXh3~r+gg6A3NiavV~tSVi1SvD8>)tn|4SEv)S
zPvP8&qx$&jmGWI3Hp(c151*i*w^9>RhJm*OAZeV|Rq46m2w113y&Q0QQEvx?cIU@<
zFtd*lxXC0a&k}O@bjA;kpDoYr-dgsbJg?8R>+8$X<(WqxD$B3yE`D%PA3D*dp#>cn
zt2iu9TCEYlT6JpNg7#lLqO%h>JhM%snPu8wbX9LGH0h^N2(LXqmf?8o@JXH0bi<#T
zXM6Vrt<5;6Hx(GIwVF6|xsnm(2ZOig(Z_ZA(H1}NGpFG^@;IUeQy4pUN;UHR`#<oU
z$98=m5@T{f9sLfY2aQB{n}cJ*mY|}m4C0YtQ6q$TF3Qp+%O%nwead-a4Dxkxj1FcE
zgd!-3`!@*ah{ovcr%)=7Fr!NFRpDA1&QnmVs(DBeUOQ(-p@x{?E7*G(rN>Rf%^<i|
z$fPq`*=FFxFX2z6-v`_>Spy_V;aMN~f#!;<xo=<u{7R9Ebv$*R`rKkzv78NjM95A3
zK9wP9tiGyA4TZbA_e2m8p~79dv{)APwqc`I+--g6v2tD=oqIWsMnr5z6}<CjZ2`L?
zxy!xsm7mjdwcavlsV>j)D>Q7U!|)1`#^6U44WD)2M}lP0SS6D`1z5JbT|@HYCr<cv
zB1Ad^N2C!~dymxVG}n)sl7KsWda)eQF2oIb=YLp6;jtYX%UT(M?K@W~{f%Yam4&ip
zL7RnkXsEBpiUo}#?#Osu)vLfO+U;~_E1#s(c?35#-=R^!bzU>-(S;AU9+2$s=<NbU
z&i5GDiFjJi`4|I#*i~i0vF%i<525Amt~m*`TdO@0UhJei#JYWyR>_GM6Sz(veZ8c|
zu^lo9%%^;;H3?T_j4o@90k1cy3#x;g&|2nV<S;~$a~Q&9IZ#%FZEzH@FHDqi_~xPB
z;FT^TgHZ9-5j~M6KEol|x<ty67GZaG0{VqvuSP*AM;knWXow?1grhXTRGID|W{L|c
zz}~wQ)8i}?#9X2|2ZK-}F3mb-pd4^HQV3}Fn)0Ul24`U5ai|6?yGFoE8MD$8LqUmC
zj2MH6ADt<S(fzmzvIjc>^9$gg_@ML)Uw3^iO;q)1m=~`Rqmdx{b~&_9o0LBHm9qVz
zCuI<Hgc<t}G>7nj#<&mA!4Xm&cZN0E*S~A;9^J(k$}`VA>gBfYzNI$?*Dm?7g1e`;
zO6x9*tZV96oUX(f3Rm>TfNvVU@y45;C-5pty(UG`d^}*Y5+e<N7f}`=R!wRmQcH?o
z*I_3QYC`a!micbfw&xWal`9=ca&yzIa(wwU4f)TP4Tny8RiS1owX|7sx9W|7z6!k{
zE2FMaZmNJdV*QdHd6=|3eeqiP)|>mvCB07Es$<WX!(jXJRdsk)ZQ{_ArO%f<(Wlj%
z((i&+CSKIU>}nlwa_zF{Dx1racU^lcu3oua78jMi;;q+X3~x9tvx-p_c!@I;^v2|t
z9(fpT@oLeNv`Uw+HQ{(%$a*!R)<LTZi24Eh>Q1kaMmxP>@LL`_J-m*i5|BX%7=P9v
zxWkH<_Cpwlv4)d*9t_=Wl_58PXjSs-5P=o25lf7sM|>oqCzQ@lM8(Vdb8|BW!IDXk
zU%Dxr_&<{$nVl7}6keRE6FnDK&0<<dDwygpm5Nls63I9r^Q}d~VGP7lOB*@8Q6Pz^
z_%H_UtZp0#yHgHm?f`?ZWv7PU>Woal#nNLn01aPRPoQ^<PS;;{<{6hp!Jp!<&|RHX
ze58-g%ps6IXCW}N|9k)9+ZuuF&{>7ob%fXjy)n3`jZF`i7e4o5dFMT?^i$^}x6Dz{
zVc3YorX@dPtHH8Z$!|0y`@`es${Slw2&X02r&ejQPg|Qc^xn8$I~Td#Zk7emNQO0-
z482)Luu6CEg;ko{@OlXCb<myuDxFyd=8{G?-~aGvdFSvcy;9_xkuro5!`lbu7ijcr
zHT-9C@e&)5WJLIg%xZl#_P|?jlxteUkZ)Yj8-s&=!<dpEgsszCj2&9O{jJ~s0~P49
zvQ@7=FDva8()*3qUe%fejN=NeW7tyuqrdxi{Wx+;UvYAQ>Y9$S#YM+fIx2f`BN&{G
zLyQWBusA(32qVypgN+3^OH#cdQ!T5?re0JW@pxb#BLFYhsPFK>AtsD~+pJ~47yPwF
z3y!#MBt%Ns;Xj{CGYFy9Pa||tJTow47kM=kb47PF2P;g=vYYyYkg2{6t^pf~TClDv
zi4tgs7j*neASn^R6KoD<_0rkKqlq;QkB=YOr_DEyYhV7}a_Yc`Zj@9Y4T>sWuC@3U
ztmbfClW%7<%f6_SeLTchLZ@^#z;+GOc{@SE%<hN1yQ5uvI(=9>8hN$IvgcdNua_Mw
zx0DxOeyM!p8{gEP27M-7(!HBdqX;s{#Nu_omXH>LZ#ay9yZk_-gw1PZpwz(Esk1+}
zbCXUcUR^e-6E5hHW~J`PE3^q}K|32gm!Y>FceJArBgd%YnjQnr>#NU9P;y+_4?jBW
zxdR>*7#&~?)<_;B8@|4@MmriA8L*j)Z$xO|;cqCc)*`8ulIO=H;W(|COrz=pHwaUL
z`X+;RN<FYaqXd2Coe9eg+c%Wc;$hPCn%;6eptmhIHI(_(D_?YVoz>(g)#dVzfFWZ9
zCkmgk>Fbm^3gadtg){~+ItU)$By13n6y;7E>x}^v<-{Wc&lxyJ7=>_yE((d!X}cII
zj66$7N#l6P#-*Hqe)22vdl}6jgs5pU31>nXwa0@4p66%0d44YgdWF*%q@Q?vSj^S}
z7Th|z&}flbX1Mo>K;?x`1VN;Q5X1(_bYCisp&k}~^rtw-4u?V5_1H7z_`&xrBfe2c
z<5B14&mCGrUacYc?Qi@e9h<KEu;ks)tpB6CA1vFy{AC*gRKOsGela(|IRu}7@k`~1
zWG`O1Sbp@*n`O_gtL}Jkq8@i+bZ11sO#3>u(VOa_O!_g3P_q=P^pUZ7R|lsq=x$4%
zX@q-q_$tebdCp&{-HfX?=(`B3^o3>#yseSSt?OEpq{+`4+PiR0CmtWt_Zi+ge7gM0
zclUWDfDA?<SC!6M86zCceuE}HInecjPGm+0uaK0EEA^UntMa^7^B~H;MoN0L(wm1{
zdStjEL$jcD4GVfx!6*u|@PI}Dt2EMBr9)#@>vW_G2ajnacC+l-vqxWl-lN2pm6t#N
ziqkzUV@sL1FpP<d%N2?PDqZ>cQ=o;1Q2}*Fd4=DMLNyw|#7kp<-;4qBL_v3597YRr
zgE4@HYrfin{>6(P!UL!gD5`i&XxRa02O8H90fJ5vm?<1w!?ov4?8G1>S}9qvgyma9
z@Cr+F+F<D00xpz};K)#yc9oh;7Ao$g{Amd&o->txm(Y;e3`HUdxjq#;jY0Y(ojlGg
zj7CynwbDAD$A)L0e?>d<G}*WNF}+1N;x`La>2fXewKUxwsbp?}?AJecf%oJw@pyYT
z%>-`DjT#zxRFZczyT4tFo(>&<zx>nx^M5a&cwBEYmai|XZ>}p>^enwnch6Y3gyG<2
zAW6kDI_m+}2**f)lbe~$W6c1Qip#{aPv3Cx1fO^q3GmAEferF?gwis-HOTGDOo-ml
zD2R!|vwAjvUk9sx|Gk6d{lmw~rnL*@tUka(*-$RtXeFQTAgtD5r<Wz?%%a|4C|^Da
zNq2aWb@<6c<*)wcZ<R-%c+!teJWJCFF6g!8Yd?HjyFnk+-UfAa;gNM@|NG^uPd-=P
z`_n)6=i*<{r{3Op^;MnGcupIyu9lZx(QZ&pv|f|ZTGV4mwm%G-T~;QE%W-uGSidw3
zGk%T~CO&2CjHFMUAxD4BC`1ZQDQZ-;OLA0g9U@o<I2<>8S^=<E?;_86fRmq1j4=XQ
z3N@DvhW2N1gF#Tm4z6lHK{frrhmK7%vnGBJR6{W1dVxJCe3DX+rF<CSZT!fUOE@53
zNp<>zklKuWpjzmzB+>~SF<e=WOVxuJ{2#ylYWdtNzgTuY{6sl_{IG}jYDbDMdAggh
zb=ac@-ANbpyt`?YzB{Niu8Fo@Cn!aO(%r}!C>kA9yce{Jk5`jhx9HBOA@X&t54a+O
za_j0XFAdg>UP+**w3By@1wfL^_YF5}SnG8H*JKp<v>NygnoN9X^V)L$(iKfEp7!Gn
z6OT-&J)*nr#!ZT=hR*y4D>H9v9^;A*OS!0y`J??u%J+V}zZ}*%3_G-{af?n;+IJ?t
z|G;p21+87OR_YGV;-+(2(tKUU2*X7&@~V<KlFJ$`9M!&w3%5ShdWVm#D@WI}M`PJC
zEq2lb>w%*>7)37}IdkD-Jq8>)c&J=>?+v|WxKOt5*i}CF$>+)sf4t8Vc7O3}UlVUB
zM~)F^zUw<(c6^sP^(@^Ix3nK41&nya3%?nM$q2z(<PBBDLdDt`5Tugv^@9`$g({EP
z6}E4N$_&5TBateh%1RIl4s?>{!A`4ZfT_A>5W*UPg;NPyqsoPsaOb!FQrV_(#wJR*
zAp}e#4p#%|C1EK)OJGV*y;CfHOCyk34oms4M+wm314?6%wB8s{!3REir#%1JujqV)
z?K)L>yO!jhQC$7esTdaPo&73J&cVBE?Izu=IZ26UXf5v1yn>%!1-o-=u7D27xdp3P
zV$2&lEqJ_k<yP6aYP()JLR+P?5Hu+#J{|*D9JE|RXP)!<ViF6LHfVUgOh=V%T3v_U
z%F8;vv3PXH=CW0Xp&mGSPMewZ9R+o|%X)?Q<c_W7ksX)Hc70umLs58~xhg|)RttvS
zKX$UbeeiHOtrL$P)cS-cce8e)u8fr7qQH1u*{HdY&Dz#|@bm>wIx=C(+ycXTfAtze
zr#d@!@Ezry?a4AwyPwe<!p(BxxV{j*TyGgJ?<sG-yI-Glf3d8%rB$4o#9Y)d>`!i8
zR}P;)UN&eQ#Fp(3l@Dcfo`2=#vSrH_j}B%g6QvW5dWb;vjSMUp*OT(ne8PA6QK`^f
zxt&jZMhM}cD^wc{%@oi-E*TcVX{qDjdxRm&k^Dp-TnMbuTeD7h;JbSW{=3C#24U!(
zRSjZ|H5#QfC5_>L;(klCc~sC7e8P!ta7Fa6QMx4W5E$usHy{fpeR!R1$;6_k=q!r#
z=gIs?cd%za^>TSgpCmhf`r8tq3YIZ=K%JB!v&Q=t$O%KYbmw$KU`WqVWc;bK_ztAI
z%^kn$Tvm4LP?T4`yj#O@9aeJXj6Q|-sGg<Sb8w>^(ZVJk4X(&g@aeWS3bQzgwETft
zk1}q0PGJK(9hJt~)eB{pX6+YrQZieWKR9+;9iBV+4UI-VE(bLX-=;f1v;2%U_-?`l
ztyKJ2dl%>cyLC3>)4R8qom<vvlyOZ4MmsX~hT(?t!xyV|ZrQAT3)&4TejZ7d@w!sR
zinkEtiA75n&mAf6zV#iCSa^GJ<%0HQEc;lyG0&IBAAO;myRlL$63>@o=l)Pfw`uG5
z_UE-8LMtqveyXhBsrd~pv%a~op*(zaWBKK;{fevNutx`3Ta(&RrBQGGsZLz(^Wb@W
z$=~@BU>W#>QK%_^n{+p{0-HW8)|57306!R#ufZT7IYMPO!svTnYW!rJfQcUY%^>7m
zu%#}xrSAACfjBKU%EbT&N5IKF_%(mEWGY^{9^(ZWk-k#OlBvAFu+VwK)j)$2KPC^@
z34aA6Cn+TStStO_zYpL4QF-E-&**T_oto@=sGK{lU4g1_?u>p;R%gIH_3YE-nm)F=
z+#PmVS$!kc-7_5Y+5+<E#2zSn_UtVWJ}g7RYdQ5SCfJtgGw-yc{qMhJd2~cZ2Gko1
zpm?dtoC1@Jm+r(tuj}}@tKx4^2iu?%m^W*pa+B6Xu=ao73GHxH=e@{bsp7e$rNJv1
zdFYRk3yEzPKb5gjaUWHu<aOy~txN=7yKtqP)8eWH>A{HQ(6JL<ki@`&IS#&(#Rpe-
zbe1%g&sH0tTN;6^*J$R<x&39s#^vRyJ=@B89rwOWuW!Hb*}tN<6t^{3@q6Xc@)PA5
z&C%?5=F{cDRqI_wyu#h}^ry?F%`rMS&8tSrt#^Qw<B|?yFi=kp%eTQ0Nd6-{_9+kZ
z6Q}$6<_E3Hq+!y3qKyXDDpj0iOXu)IW{eONrY#`*ULCN{o7jIEN3=d_GYAxDlws01
zcT)fWH{3}?K~&c<mq-CV8c2wOACdA+7{mu3yz^b7XJDoQ(>E;0QY)e2@hrW;nR3V<
z48tV76jRZ3cwEW@3S*-XND%(jaOEe?QjS^px8C@Z^4XVup*-^33*}qi`=(AR+NnG4
z4)y0a6M!=oUwY|f-R0I+@yp5uoh5kXm|iU^XS{m!k?qofRgQd7+8cQ^y70FK)WJN`
zQ0#SjHMm)mX?)m}&U{BFFL6}4?2JYZNYi76<{uc!FR0_=uh!ZEej9kzxKW#w)Ug-z
zcyLUQA2du13Hj%(0c#P~h<Cl#EAU#8SBl&83UJFN9k`+q1#vfOl5(|1CJ$WJC`jp@
z(isnoG^i!sg07YxajKF&^s3jKTBcFfX`=M@G8qWzu<fzO%i_n{C$ZwP@~7qC7Y>w9
z=|eIvKK~^>HhiNzv3+;he`<eOqmRI@T)$g#m6raNYw~l=8a=kieWX{tgQL<qmmr<X
zB@(_np@N3EKuwr1e})~3FfhFS1rTs_UO0m&PvK?^#6)|erNZIILLySuM!-ModXm!-
z3sL5}%8bV^-4t#a5rb(6w(ucVGYBXOTFt@AJBo89?8NuvM$1%W7bQa9LHJVo!wd6>
z-hdiNxGRMi#*0vCZG>Qfb7XdSg1u&l$j5@nw-A}80|`_gJqQ}CIDx%8wEw;G$YalH
z`|z&v<R@P)|Ko4}w;JMWFTm!9$|rX{R~~xsDR*?9_tWt;WA8nXNScfnKPeIN#tgj|
zH&sKxnTpJ$ai`@F(ogCH;y2%ZL(lp;&dl=%ile(alZvbu<k4b-9t~VoGDa)_BE1zd
z0-RO2u$hLcPO3)=4kW<<v7DG?z^lcxPOtygC`{YnII~Ua#5`(T(I?$FB8|mJvBa9i
zRNCNlK@*<RgY?Kp9QZ=%>ZgAmpH81RsqaJR1m!0lE?@uEzf}$#J6!(ckN-EF*nGJ>
zsIwGS>6Pb28Hs%--`7WL_j_dV(Sg^rpW^35+wSu4CNh=DS?!tN&4N3bQpvg@Mbf*c
zt32rI(kI|w!hjWLfz(jPQ+bK*E`nbZcH0tt7$HPiM`cjiiWOFaq{U~?D2t$C?&3%j
zmu%Jx1cG`;I-LU=W5$SP5HLR@Q2@l0kKQImE(HrAr1`r9BmR(Fz=~Vl2p$1FLnSo2
z0xb+*2P+t=RfZ8?mDzh8y=4iBRgMFeud)E?UuAGyF5r8i<M3N=e6M`<m%d)U_VZsa
z-+%pIlv9hx%GM1#eD0z<h$4rm5aKloO2;b-b<8<Kdl#uXz7Ipyf}!}NTTICD0TVhF
z!}FcmHvHL5KUd!S!E5EjNj?XEOG9{dY7OOij=!P_OD6ef)TGVQXp90Ha76loCLVVv
zZAKKAWDuBtz!+czSU6>)A=))P9$eA#Va__>gEBWH3pwa~llcR5k|DaTVL_xNgQbxJ
zhp3Pl);-+Pn-+}LF@2c!g)hHYKJoO+IuLc2<|$;jZZ9t<&T3-w(G40=+%9kJd$sKQ
z=v}41tZZMoy_`OCy8P(ve^T~7`WKXk_2r>mPssq?EC&xC80slX)s+$D>!fStOe-wf
zDAx#$>u`!s*!7YT3=l7<bV!UrkQG+I#z1^=%Y-65P^AWmeK(g$&<t@QdtUP!3k1rz
z8PA3d00+@}4KjnE`%MPu05s0IKN=CV-mlNV@rsPbQRx*wz=@ydtC5?(`nm%;jZCLc
zGj&T^`oc>&#Y6v}?B{rtcFX$^KWQNomZ(fTS4oZM3a&K5i;HK<z7OAavHttN^`Do$
zJDw~re?pHDJD-pY2G(*RB!=kHo4cvc3{XcS9hO1U;W=w@`3mh3kWs)m#90M8c}VjE
zyuw?d`Ggn0_@(moU;k@<B;bt$hlDUc;fX-C$_0k|y1U=jb2pC-Oc*i}@Hq<dSy{ME
zhokP)gyBwoqj8ruI6b&i6Nfs(aI;P@Ua3(6Zwl7R7;t(Lx--{6d$_12)jS%of`SId
z+YKBB1{C`qSRqLq_F3>qa#61l&wOyAJpas>yzKaqT@RNB^=NQTdl-&u^6)AjlGRy{
zpZ&~VF0VZG>-zTO)pF+eL*<y(DV#icxNP3YqeCgjPacy2WTCa{j6bSJ7yNpGZN7sC
zmwrI?N*>5hcq39pk<B270U(SEzq^XDgL<Y2-|d=0=kW9-!aY2&&r;^|jpKJC1T~V0
zXm<i|lmH_FB>F<K*gd@JCk)Om@d*#U<GJPrTnkMrNqnP>^zmkRo0KI2BT2R4bgU^G
zU%zNz)pw&K!P@8?E#OXqgCD&2gR*UhK4_|~(f`&j{bo6?ZM>8Qv+R6a!~-o#k2I>!
z-SYv_nT=;2fzGa;ug3$@!|18w(UH-O4KWP;<t=Eqzeb&Ri%vNDSn~;6Gy%xt!X>Q`
zq+>Dx=aGS;DZ1wdynjOJ@%Z5|ofQMCKa2)?X-uKjgE~Q(^#i)wuhjeoMu>?<49>a5
zE9K~!i^>nDFkvJVO(GdB@P+{+$36o_JgnE`a1-Vw7=^s^+IP$Mzx~h4r?muo_4;k)
zsi$7l{KJuQ^rTLq+ImD^WqQf!@8ADsxwTcAtiPc{Sg(|?e)eT8wO;4VPDk|-muR1%
zZ`6Upa=s21$(qzVAoPmHn{WsdxTMhqW?bS-OkjqqL%<U{cF21MQ*!Hi86)#hMZ!1w
z2{4Rb12IylB?5Aydou{x_{~7dVvKYYHY~4cG|&Q-aB4b%yE5p4V(y?Wm{RNuPeUa?
zuuLD3=pWGd-QA^x%4N9`FXVESLm(;Q^DjR}O=wX&WTm$<Gq0H)olf+lAAF~L{!717
zp44nO-#Ivb@Pl|9;O^=_rA-+tE@vk&q3CX?4o5n4DCqe|oKOhkKwjA5tckcI2g;H6
z-#2xu79(xccNi|{RU!wpZqR;$k7XEmT;T3Zm-pj<Mh!SdW9);#U#6XpVTfdCgu^ai
zL00Px1$t<okvg_Ir#{qrLkl0?KYB)c8e;1<TbFq}ATMrkipyhyAAc-{*N@uHtk<55
z6jo};@#-J^Gd<quYfcIu(m9Q*^>yj(+ji(gr%f_s@U79O=bk91cb%89I8;9Q#OHMs
z{Vu<?dH<syJ1x?)v&SXciE+~TzFb7>8c>yaUy;RhpUI>+*ysH+)ubhy@#gw4CnI6I
z7O3C=XDIyP+85Pe5PXM_3{%A{Khmmxi#3Z+ozl-zGCUxy-~<e%xy~gBsee?5Y`^kF
zc9x1K{ETZcOtCy&np}m#*kAx)!G|IIW)$+#rQWp>0K22q5YZMF&z2v*^IG}TXTGRU
zkbTOh3SYgV<IZIqY+oaSVjw>z{OE<;L2U?B-q-ayZ#iFoW)2^rx-+ZSdggxj)=g#a
z%bzJHw5sodYH_FF8#-Q{SAFNTXM)K@?)KNzfw}v$UqFxh-czuObqVV1j2;lnW5z8l
z5<(^3Nbr3F<_ElKO2x*J>o;ZO)aPZWbWWp=W&7aRdFd%5qx7!(l`4-uVvwW5GvRnc
zX=++SJax`OvUf<&bvm}~nif25S+~7>?&;@r*veJ?w4?LD8|8}jPaN0bGuL!7^dYVK
zJaztv^YWK|;WsS%qXQpk1f<X2DNj~DN>H>g2IQgDG=LmsjI*(FXvAfV>F_jqLk|In
zP56K&g>Z9;J>z|ck(5&J8A;5e8zqs!@r$7RK)4J<FwK5)L@I+pP{mpS-+k2S;ggV1
z%0R#qd@4QmlfPyviIJwSb5Ld;V!{?&T*2F~5fev2v~Xmbh$9zt7m4K{tCtt_+HB|{
za=kI2;Q^;nptJOFgcC>n_#HX)VcDXk$q(&$ygd2*%jM!9{c}&6^?9UW`wf9^!O^6d
zH_%X9m38dc!Lnwv9zFDt7HW{=!){&CC)9N!(9=3C`I0`x_Q1^@`oPI~ErvR!_5Ekd
zNo_##q9AEOI&42y*VkSBfpSjI;hc87pw8;~3FU*%x?Im54Ebp!9vv`3z=#NDw<BR5
zO>SwT^14=Cet7h(4Grrev{OPqbxs)r*`B%xNeRoXlmXKmXG~UVRI;EphE-XmM+`nV
zdzDv|j2vY2*69&x$1`8hyu_jwC7qCgxTHf|N_lwaBjs=ZwZCV1$8`wJd97S@J=8MB
ziyDI^O3;cMO9?FHvYwJB;mV(2l9v+muLwV*)>4QLpTY2>KhQ|1=X8TXP^Cw~RwE#;
z5$xurB6s8|tyYR6M4S{q3nyj7*8!bwVhxCEvZN(UKKgG9JH~9sAEZR;$jUf_yqW?6
zaTown#Rpe?KWk$=DKF!=Q^n8x#0qxD`SH82mkrv#utB>BU--%|mk$r_b6%W2Wvoug
z;w8$}6N!Qmp!xc;Uf*K8Ed#Jz9hd__ZfLtNwB?G&3^qFm*J!cPCap){F3u}Qwi+*p
zw#t)%I$MAlLCs6BQHY5~j%Qz`I2eL!SM@01w+Z@^v(mq%Q2=^5ALu4|el4oegBMt-
zgI|?FIC1{6-kRtz7ELNjx($I!Kyeuf$jFFK;^T2d*cCbxV%^$R+W(+E5S->LW+pn>
z=fOyYNmS%q*Q>|P`u644joXYzn_V)dYxs_ZPNzC_WPexgia{bc`_kHlny`RcxwYv-
zfLksYfijBG_qvRu--~+=Jq64m-3Kal^;<spGXqsD<quDcFbPEd$bXEEs!#g~#=sju
zpl%4^F%qRpv&ayQqfu1f@Em%NSEQ<2#m>S>81Z$0lS?KtqA=vdCo6RgZcGpU!~+fC
zfgkbUaf3ksl29iw_`Na6k-&6>K<DcDLI{HNY^~w#Yya{Ov_<z9%X%4xr=DEp52r+p
z(Dj_4Ks|#m<9VGEg%<st!|fUwtkQQ3m=s*2ZyelKNB&rMRfg}p_T!DgdVRp;qK*xF
zK#PU=k`(VTcur?zK!@WIgiS`gfmm3sU5FeoBHC)c;kZKQ6zDO7kGS&92n>QtMumeO
z%T)QC#lV}Ot6IX$yZ~<&c-45vZ%kyIYP<2N&o#VKBLF3*w3%e&aR+0kiA$Bb#zR_<
z@ld&{W!sy#Z!eql<I%;sVoVry2xipuh!!p_DF2+8v`-VWl<`p3QC${pgMj8ymQl8%
zFX7<I`X}7O21bY_gcv=K5!`*aY?#SDg`0?3Lh9~JWPJ0BQi<920~Q3Sk|PW*xWZUO
zg3TcKj#rh4G-~lmNF9h}ajRll(GR#$+yNNrThVy)@hCWU35VZZB>)+T!H+QUBb4-k
z7V-yJoK=yQquRLQuA?*zM~AmTP@|1UhZrHm^4yLte)HLn_^j-ELmy=M{FlF`JEc0d
zXeYFV`GS6TMB~i^=M1h@<G-krg}8fe-J<gi)frc4bg)vxZD#n<o39tqLFhp1H8MD<
zb^Iqak8oZKbQWbSSXIb(BbnF~i^lMLr$9zP_I`sV^_VZ<Ak$S^Ey;1~m+zdm@mQ(Z
zdw=s$iMWBtKrvWZu3oL6z5}U=N_|A-;^iZL{pqPu82~z{oeC12{9zS^+33WxKI<Tu
zeB`w%ZzaGz@#Itb9^-l)#=<f6v8Do5R|?0jM~vAP9dFM!Gx^f<yYKzT^Aq{V<|N}n
z0k_&Vib8S#$pCWItC|`lT+wE^=Vc~>5WZW=r-#|iFm-rnKbf=GPGsgZ^Vf1fBi6q=
zx{`25mrBv$0}nCqlu8!{-<3pX5H!q_uuPONF8tPAg6ChML7?c-$yK00R7GToa1_dr
zMdOmcW<BCeWdKW{GaSCUc7umbF0492z=NN6uEwXh{ohq>^?m*Of2eKJzu?*b70b4l
zZ~Z_2v>ZI}c6mZau$|QN|7Z2OZG%4hzDgaHAvp_!R_e!Hm>GK<j~Hup_y`Mlu1n_o
zIxywHp+n{L`9*cIwR(hD<Gbrs85P`BZIxz}vT>!(SJ3WB_Al^Rc}_UKy;3E?t4=+#
zFiOb7Iq2B51FtV2ZM}Y6tuHZiblO>MUB0Ak*sL+2a2PG|@t2QvNB40s7)-@wmE>}b
zB33IO3(IfRkFV;x4BEzhRil#KkL=ay(HlJaz;f|eq-Z*(ZJG8c=!9n(10GX8`0yPW
z8s30JS-Uf+!}HfVMjC*uSm%7WP^C+dj33beMhIf_`}1~VxtXkO3_vE?!V%zVmw5ZS
z@E=}PAA(#(0{I6IzX=R0t}_TKa3QG7)TLM1I9<lH%IgZUyhb<F@dtIdrkuc_-ZTU}
z?%08uhfjkbzlv%ZhP}#3TwqM-MhL*ly%ke)O9dSO9)1wV1_3yYL#0X9D2}9G(!rvy
zfB)Mu3SZT8@v8Dye)a3+AN<#UQ1<H3kUctrZL^Lh->gr+)A-MvI-&gr8{OgPEb%}m
zA<6__KfZG9LOJl>yXBkT{AM|H^n`XYYJY<6;5T$9KDVgv7idV%F3IcK!py-aOyoVd
zNzd>y8c1WW1X)}q1H_3)tSw*;<2F8z0}Kl|LQQ{~8PKGnb}Ak|Ru1TF#zlSMnK=yJ
zM%<LYYxBl(@XQ6jdgMSBHdZmBVM+Blt&Ko7hqbV;fxQtvb5Z%<zFUioqy*_wru^2g
z+oVS!ja)P`_~3)LJ<<sSO!=x5#6!6{qJ4)b7D#s42E-XKH2sFw<YF{!-lcCRjSg}t
zN5ZDxjcKXKv-lJ>%@3R{N6t{>3OsSBDf=n_clzFkZW!9^4;i>-5Ipo1B9$O1|G3mJ
zhzbVHDnQJlALtn=`3<L>1V(-oW?YjnRAJ(iYaX0KBw|C)AE6-}_~dE66djqus(6%#
z0P<LWLwI5YFbesXyd)r(jre07EB@+tf4@Bc!k5Z!t<w9i{)_*neDKx}^zjsZZ&C9B
z47pb_>32r5)R8!GnPbIxg-9-Pq;OKZDgV)b|KF9v`Y<a7guMlP!i<AR*yKcR*jK;`
z!?oU^^ngbu>)E*|SvNE%z}?7`dKxic1jsV0B6Sd?jloUbnZa?u3&)lnJgV)|7z4$p
zQ)4vP;B;Nag~`kH=peq2We6^6Df9*{b6(W3Xg+{eJT%fxI<5_)_3ZO6xa0F0b~*D4
z$}1DEbo$HE?VWeu5WgN<>d2s#J;n^JPz<MXrf%ax0B1}DCs!y*ZSfM(^Y)BA{-+G5
zxKul|pkqpZ5tR))>bQ1m!NeM3zyQY1ff_NxjfPzDy5moM>Opk1jovV1)MgNJ4gtkd
z1^fmZKkoQr8X}W!4IMdUWr9;U@ReUcgeojA;flEjTnnPfiTJ|Scqwm=UlnUc!Lahv
zd<FP70=xnH(O9R(fwCBQhO*(Xlgs6YuYS9{@bXu60?_WV`77JYp%32m1fOU1)hU=a
zU><-4MmO}Ho=1o56jv@^EdT6xf2SNfdCEH)In8)cqXO=%>`G)8<V7t=;x!)&k(kx@
zm!LHv$mAYJq_YEaxnA`x*SrOfA#On)Ik5alZvfP3`NEJJj_&Rp*7}haBeB_v)rm~{
zvGQ<(KHhRjyCpZWtXcWJB*TUw;zyd8nFW2@fthjEIIv9mrB^;*o_paX3R9;t-O$d(
zb(%EQ<AY=`YJ&8G4}Roy<E;zjn!mn0sYAg|)n2P(m%C6j_(1k8Ab5YOD~&K4A_6j;
z{!&7d9_mKC40mx*muA)bkmFWBgb<Wb8Knht<x)gA<{N^<iwC~$M_s0C2Enh2LavM1
z?Om`F*9G4Vvc?Q}Os|kQYE?;y<JUO7H^xUspa;If6p$kg^iX{cY(n4(24DEe-Qy5D
z7j}ZFo%{+@9@Lh7A!iJNakE2OM<X$dvM?aetpD)UKhmKpFX@9RyUXLB_;fjU@_1R)
z2V6*m#X}g5)oZj}Se@pYp1YY>;Q9W&H-AuGfBkjsF4W{A-*3<+rmdSd`PJb@P2zFV
zv5#U`r(UBtH&prTUi|RbDLv<_bFnItpH5hoMNm1YB=mUUbN@77pcjBn$F-=D1M3V<
zpE+CJ)tQRCUGSO(G9f+v5gK*a&3c`9Qu7O(eLyaG{kT@!r{N{cSakQ+4ds*1K2v__
zH-1ZxAbim&wnH<Yfjg!B3H!7Pkx>Edv7eWr0JAl@6r&=fxgp1oOV;WDCB}XO6i~Tj
z3vn1YQ7O?lkW08ErJrn5wJJWvr`TBis~Ql3u#aO`Twp8XNd<CWTX8(oniffBLc~=y
zLQ#M)K7Bo4aQX=`53cGBj|@3NpnOS!@*e!`2o)zvt&hqFXV5Ybn2Jll#JCt0IWi)G
z17ZXVNO<gbcoURaNy{Ih;7`8$@U2*<aLuR<fMhpAPz$PuTi9_ZquPY+cQT_0WE5_c
zw|?;5^6+C%>EM)4Yi50yzPh|gACf()4x??xSM)kje=Jnu%>xsKe7)#LZ~VYtZn`W(
z!D~e(_Ri?-1UnVkc*L-sg-zgDwtQVigEJWT+}d%Sn!HZ0Ke=PmPw!}+z^??=LEW4L
ztJUaDf*u`YG&C^qq~gB)hx{0DOPj5H;E9X?D;e3X_@GWuzM$2SoU*hIBOuwVg^*_D
z;q4nW=b^U@w^o$Bdv=#E|E0fL)@pe&ao2Cs<e}2xwc~+(@0ByBPe>P5Nyfscxg!I~
z&6buWnsuBNpAFu%EnNZ+7wsWn(75IYXjb!OG<eKd{Ti-}HP#%D_)?JmY(L}Sr{Xml
zI*_fwC&kK?3M#?C)HYrDs|b6r5;O9jzW9Y~OW_4%7(c?8k#KE<kOl$8sLJp|(V=07
znx+%qy!c>(2D;%B2XW$zLi_55V1!1nfW-EAGK#B36ot{C**F>ZUcNIQqT@<o$hpHu
zD8l61BzywZSI{K_y%mN-j%`K7gZ@N2qUE?3&Ymit`s^1qB3N5?J^G|x3mz}$_4Q=l
zCir`Yig{fNlg?`^@JAnh;Lgn!W>WG&sS<WwA2PWjW1umBzS6uwj|%Frn$>4i!QFP7
zPDwhfqt_mN<RKdzhKju6<Krken%n~#F@$15Fp5xXzNUj6Pw4B<tMnMNsC^8~AF$dH
zgTs!)HS(9M<@5C>wo0?Ffwd63w1biZSub4D9tzE6eBmo!)#*o{E9*2@uvU|qxR15!
za-U9rx}wpL9}#3|@>On*5L`%<C545v7f;%On19Xoku9M%5O)}GbR3*L1q0011i@rq
zy5NAkR|uKX6?KWvujZh^q)E2WB}NGNU5qNgS~-jqIfXk-10@pFS%W}c6Hl1AsPLJm
z$#Ou*9D@)I7oAYdJ`Dxfe~|%H28kauBe=k5d<_nOiE(lKnl~^J91tT|8AytKa%VTe
z*CKM}=h8Esj9vXYEK3_4*m{kOc6o4)m1h&eSI{L<d4m>ZW=iGlgjC^~4|NQ!BY5pk
zzEz&oNMYB*kCiPtUHFABZYswQA5g9|xhEO7^!o6$j(I<&CA{nxxTE<679Fv0iHSYF
z$H=>b6&m|LvTKKy`7Y{{X_`Eg1Um48>YS&}^6f)L6}(hbjxh)tp5y$wkzoS{f(EC@
z19+IjVA=D-+8({APqt%#Fh-O!D-Tylw+D4r<2kL8WOQ*y%cRk7o%ADz>`>e*BlIi3
z_M7FAC!SS$VStVu-d~O$+83jlIx>LfiA4D^LZBQe;QB*P>5q%6gT4%<Ip7+>L@rBm
zO(NX|%!KbtR5IU1UXqX}_SU=|RY(j0&clre#ua?m2Veyw0qz6#3D1KQAI2f2HiHmW
znR3rg9u0Z~D^|iN4yWr0X%$Yv;788%4uj^MgIy{%Ohk_yf=_W|G_oE14eyvW<0B3e
zI>}==QdB$(N@>9}x{fj=z6M7bn788GfL%5rk8+9($S1)-hxiJUM^+&I_{~4n*PsrT
zr=I(CS-)|!Hby;HF6(vWqDBxG^eQqpKW$jIrmU4AICn`a2h|C0^LZep&l`p{n!NkO
z(@&JQ-+j+R`70V(@EUNBKFV@N8<RYS;LQTh=`sKu?dIjM8ou+0p_NnW*YYI`1H&P%
zG^(B3HkP+eF8a}Ai$()S&z#rZ2CYMoE(cGZ*ISNjWzWuS&f-~pZvH$=rIo*5_{G0i
z{?>o+pOl9lf7*Gzpk>GhKlrgm1^V(-J|ZwOKo9BTHm1BpTcfaCf{sf|0MoUIY!1en
ziBMFm^#<2>3L*d}9_E0B0}aje4i18^j#w{!RT@QnTt@&EIuGJ$D%ME>eDdn3HC?wM
zg(IIS)RJc|Q2o<|=$5NMJPz<682M|Xf;u{Au-Z?$W)Mb|AZ4R6st?RxhX)WCIHXnB
z!FmY}06CbOL+b&hpk1&e6qzK4iH9;6$q8OG$E^G*g(AfzY@mY^pGG+8v%a)wd8h#j
z#4h0q8K1eI@YEQ1(Fl}}OuVvQ&=-ha{eOSI?AiNN+56Nd%UUfn=EpJb#||A(k#Ne<
zLb=4_gcb#@*OKQ&z2+k?q{<tLEjoadSB`9lW`Pf%YI{V_@K^R77MD0xP7KjqKD;$R
zAp{7|U0#+!pf)UN&BFyfx^TzetVa$WVRq`1@~1V@xTZA@SM-Q*TB8RJdflP9grEDu
z%jJ8ozu{59Ctv(R`FH=r|FnGW^It-`7Bk(@;jr&$lyfwUkwzkn0%qq7z$+(|WB!K1
zw=6DJwfT`Ja6yPpkevg622aOmL+2V63|}7)k+sOGj7$SG^~W`RnB|B>eOe(pd$!jI
z8*Oq>0&bC<zQ}NdM`$2doDh_c2$1~KC9;qPK{VrHBtX7+bv>F#AVPJ6LGTbQDk171
z8nmC|U>0(~*D%emHsbI**a=XfHKmak3XDib4T{0;qU-SRles8TID+5!5r0ympy0&y
z(r3a|nI0dprq^IJpMy0bY!z;0(V`}g{0xdl<*3A@m;5ZqF3w@C-#>O}zYW79k3XXc
z$Iaze|K{H=59zVu8~?{YF8}NQ{6AO*9cqUTKmAzG`b_wt8=IL}F1%59?~7W}%vylu
znmAmeO;4-znlHXNDIGM*ctDRB#EHC1qk6{xzOA<poT;#e6@)SfyfL_>LtPn3oM(PQ
zGZuXBft*~_nu9&sf3V@9C(1AX<$t?;`lT;8HyDCr2S3u|&q2rY$VA2<9}RNOAdP^1
z&xCY^<)AL1WYf06!qYamj5>3JAwdg2`Fg(+<yB#wpEyv#7d~o%v#)R%2Lgog(b+X@
zRbA4;wK%4Q&f=CM5}i5>2(81;vJ^@`1H?xjBwgY+7=ttpStg7MknOW7h+BV=NI!=l
zOO5WMN=X=Q5gW}QO*!(5Z@PU2@pTQnfh8_vqw+^kPzyws$zgRAW_{dOXo9aXJ@l<%
zq77UDC7eE3T;8Oo_@MUJ$lbsvI8Yr^ASkbSF0-^0J>o=MX5hK29^Uu948zlU27jh}
z`o+)t_xJv@e^7q!o4-^3@&EEal~=#_U5^%6CCFNY*M9hhA3^A>6auF<uYUZ6vh}(q
z{MN5mXOw*5vYu!dG^<Eecmf(IuxN;5*Eehafw_V;I)wGIUV&21YB75J;K|~4`S<?L
z-zm?0=B4tBzw&RCby_irvmrPjLm;EZ+J$&TiMI%&xdJ~b#Aso5-T+A`6Pf`vS1X}4
zYUxC{>lqFwJxI`lg@D^pMw!Bim*3)82r$HuK)LakqgQJRjR1V~9r+5m^Y(3&(V_A1
z+2Jc<2Pb7(0*OZeVQZm48i5=IAS#T&tT9M@q}>?=zk}*Ky~C)cKWWm80eDodzB7w7
zcq}#OJzUZDthqyEp>sn|ugFRdp+f;xKG4BY`IKwpDu0XCk{EFhYK&7`65qtsz({@q
zjVTa!@9<(qrHq@|s4%bWVDQ~rd1K=6zy~r6`qts@J$tn+c(1lqZ!W*_H-5{%g9i_k
zKmMa{m*4%J-_}aVKQ8;V%$O6B7uE4uAjA=7ix<w87yiw^S=Q*(<8tA6xpV2PHRi0x
zR71Vi%bHP)Bj0Ej8??}gquX!kl_bsgx*ij@?cx>Uua%d+@D**^`nmG(Bad1Z7an;|
z9Xq7oVLv+fv7k*FR)gRhkVXk^XSA{Sk#224p_?FF>mP<d#LwMKMCks>h(#FO{r^%x
z#z{DRr=vvE4>d?M6$*V?IW__q#ZvxomXF`T&~M8yz~TKP#8o~(_!|unBDw<MGTG)U
zVD0dg?=%K!95P?=h{T+exV!R6xiVH1Unzh1yZ@IfWm-YLhqOwQUKy5#k*D;bA*ohp
z%fJNA9FXaetFXKXP3S0Z{sBLN8+{NuaDvPDK_AmH&B0G8Q@+IGPia$lrWPlWtx=8S
zTBvz&l@JDLpTs(tlm)NW(0|Y4PnGRj0=-%@`MrDV%{R(x-}{qt{OF<b_M30&lj<kS
zfBg6VetG7VpV#AqMh!ABw=SPAw@x1@cNVo6N)0ep22x+@_UNTki&&Jzw;y;rvHrnF
z%D(g0%gbN=<+5}4!+mmIM0N7$!E#zgfJIao0gQ?7_<kH69ufSC8-pM`Bb9+ijfQwM
zq-ad?q9I}KYf)J@^rL**gjvG1p>uju43E=S`Q@{-eZ>@S44nzbZv;z*@jOBiu70P0
z%Ai^xg}C#hEt=XV8^Fp#WJzY;;dsjv;c66JMg!gDXWl4}C<g>05f|kVDFtRIlUg=e
z79zW>YW{m;kRya&|LebLA<ZCs`<wrFRUG9}EHe@?dN^ZJB>aT&krkPCsKQPGis6Lh
zXUz_QN(=%S3)cb$-9eJ1xD%@DsgY;sU9y#F9DhvjrBC@XjVXQ#QzkR6GDRK($oz%@
zh{{8oF<kLtwr)fsdX2nZ3z{}>*N0(r*1%?+O}La}7_XYL4E7ON1C0dkXy@de8&_jk
zubqz;F5<$b?Q=!3sA^Fofs1-$uz2o_Uz<|V{Mnx|2%=yB;Gyxm17I|GR1gjWVL##{
z12<~$h9k?)zAnR^Fv_dJ?(ERhAkeu3Za(p=A@KWnIt(zKf8vW^yvy5Vo`!&Wa7En1
zAdttQ!}o?E^PjkcDFedIr*vH|sz0G!ca%5fQq^$BH%#7YnKYO@1U}0t;otZh{|;hG
zn^eq1Lm8Ank5C}|3Rk62!+4~a&w)@cbc9ghP#uo3OU9%J9L*KZF&$~a$+gN>$Q=Z@
zvb%ozrj%k3*||iIQ;&kS4wW$Fiv}<Vniqed-YtY=HF<gHOnH)*%x9)MlHe#2PmGR;
zclpwye@C^*33w9+mg=npBL_wjtbk<W5-S6n>%;nH;!=*ze_87!SW10O$GDx>ib7t6
zx_(GZDKffnosgOO%T7M(^f@A^1|Z`Qg|L5<0*(5NdVxeE1{Z!b`abNDfenH>IK1x6
zwet(cNSGgd{^l5gW)vbZ$EgXU1q#gZg@U$(OG^6aC$lIgy>zW5AU{l@`E-f$Nnd#q
zW5{s9HMPhWa_m=w03Ycz1Ciw+g87v9bR&b16&b!*y2@>;TH{b+q@_@;i#kja$=5=e
z?vj3Fa+ZH7{E~v4c8yilSekbpg-Ds|Jo<g$=0%rS+EG+6466DHQ#s8jP~&E5#DL9=
zYQz<)`UZe&UN7qKl}q|j4AcvFj&{c|xSj;B)$U4`MVqN!uj}*g*EQr%cTsnLTum*}
zUO$lW5bk81I0=#-zqsp<3__*B)A$_Q5}JIcH(Z?E1}e{lDX(}YmQUEf+SwDXjelws
za)n-tmz`(oS2-vEFTQ_hK)CwD4Fnu6ee#vzA(Wke8HUS65jTcfEGn9W6<0`JHM_j3
zZ#7yv(S{-~JjB$pKsKq1Ie&vu2waX7EJ~MV5U4;BbfWSJj$k*cz`L@MU?x1_J2(I%
zxX76rL4!j91+vmzz_2HO<)aXAIq}%!1)bD;i4AIUBKrMb2f4&)va5bMAvEobDq<&r
zwhpy`(d~j-Au95f@ZbmD@`Q9c12Kw$vLF!}PLmAme`8!L6{e1ORd|s@N@3IGV}*mi
zi)0aSgyYSClSzbpQY8M6SPw%0MrQcK^Kil)Ewn+{Tu0iJm49gBaFld5^7MTd6r+s<
z9Xs!Y^4;*$I7~+fh9`yuIo%Hh^gk#QihywaK%(8@Tgm1HC2>JFlP?(~=~Ie}xf9`X
zN0-VNwI8~H3!THy&JNyXQ;l63h0Gtcbj=_nV(_iX91uJe3aR?hItI9sDicu4K!nsV
zjP39!)#OxSM$F_!aylLbQ=SuQz(63&Jvw7g@eQtlglE*7(yRO|+m==hz;0IqnbqWP
z<pO^uTBFSO2F7VxhLr&RV61EYXYg4URf@a_Rd{~l2o6e>H--@soxk}S7^jgiF0{+U
z(A4r=9t0H_l^K9=(>tCUb#3U`z+==<J9rv_iSNgTj5qa3yZ+RZLYIW)qemzkUMN~|
zP3wSdJcU#4&D=%?H7a*=C>WFQqa?f*q?Ms?PE%a9+=E-H=nrSL>{sI;#Qhos@|vz0
z1W=(eiG-_7YETtrszPu(s7vr?!-}|35LM7m?V(X>gOGc{nNa2=;d}Xg8t_izCq2?1
zv=~B>!W6z&x=YZj7)sPBC)~=u>eJvMbwYuT`awprP4Q$CI{!69puquDFoE<_C=zP?
zloKM63$6M_RyY__(u|+&GaD+ob%WPs@P`KPyPpVo=VM|p?ug@&K};A*#>hCROD3En
z1;gN#veP8p2q)}z362`FUzK!jz{|N@2y1jEzL+a8#fGhiEhk78m&F?*y53Yr$%8?N
zNY<pPB5kd2sNa=K%}bV3#DR{P3fBxmB6>fv(qm@B$%8*~J;J#X)i^gnRBr4M>X-&n
z;~4_AlVl~_qj3%KW<!w-*GzksCzOVsN+s_Ep6VlVa)i__$74d}OSx5t3g(@msYu)j
zYmH&gBswB&U8^!i$n-5F<y8JAX9^Dl>zZPlBFWzfP6!Q#U#3-MWfOO?K^p?C+~O`B
z<>;{4<}`4{HC;U*4MD)_hNAU`z<13w0P+nJKXDFMd0p802}T=aTC0(td5{l}u9<r<
zAnJA#8&DUO81Un#T_XxaomGDXSBdrU+2>zcEU8Gm$nhiX&@l}{lmYZ8AN>4f{w+k8
z!5|<ov7JB0Rfrt)gwQEsf$w3kJ?|_CN4N=JqNhF?|Np~H#ZKW&Gx5!@fhj!YzwdI$
zh)ep@0<MhIiyWRqG^j+}&4-4o@dKCx4}=Isaxi9sm7@}@2;uxiQ^+x;C(61)$?~IR
zXPCOqMhh+)cQ*LytL0~7hc^uXK6k@>tC0BY{E1IEe2hpKl7<&-o$%2NrTAsIYKso!
z6zyvX2wK|Z;{!MSEGk!lB0GM?BQXpGX@+F%0#Jhmgj%FdxbOTOO?YV2pGE1?3_=J`
z@k!1^2iPH)L$8jZN+3rLro>6y8F0eaz!s=62AGUDmwGhBB+&CtNCsU43Q<UN=zUtI
z>(cX4u(;$)TH;e=;zyB*mkblXWvl5|85&_6!RX{oo(5OMQm{l>579Gf!sApDN-n_;
zW*6tq22aw{@A8RY&`!V?BG@IAWk;E2!}Z-xkqo<&N7%-q!ZrqqL`P11cIuonm@xt~
zoj=p4Mxhx4D}x3o6~7Fp_CnW;8IusDL&=iu_z4y-Wz~L3Lq^5hCoSp)-?0O>3c{cZ
z6r6Dtrkq>`m1tPy)bQr7c_m_XGX`NGIY#nTpX|ty8#4kENc<QS^pm-kcngf<SM-P~
zAR1v+NinK6<G6Q$M)EqoET^O=oGb}9zY-E|d>NSdDR+XN1KuM?jofv}#M#$nDL+$7
z`ciP>?VGv7^l%N=N{Ox@Rx(>jt$Z?CMI@dk9^vq#VMn+%Xffooa2kRf0W^Fw3`6H8
zej15+BY}p44<$xESq|Lb!xA+~$IomU6KEpI^#B>~VKcP2jVcxwBYv<%0G%pq6_HjE
z&Yxin!k`=YgtI&mVg8IPxETb9xJ<|?WKRoH&=onX9e$^%sVysAjQa^@Zj!fYk%;h>
z_7W7+??xL7s!&z8#dDxRLm^l8D7QKE8ZRkb`OeWxT$M4rR@F_#P^;pTJf|**kmLw7
zs8L9R`WpMF05*Jic2ju3R)*f2(I@3qrbw{mH3E@BZPmTBC=$gXTHi>cAxGz=Tzj~6
zeA)%SW&rBlQE=kzx6uInOBsnwD|{4kebzLrG)m&^!_a_4f|$6d8(3#Y48lo1Me1b+
z@Q|nwvHpNK)j6%2q)>pc8jX&I(H(pTS9}_UC=bUnpU8I2Ai(g`I$~y3TZRyZTP~K6
z+>&g83F8DWu*anM0T-bGt{llYkv<ZZip!rCMV3tzZ%40;nO??AIOR8Zn*I{-lz%Dp
z`{+XlAL=6Fg)!)wR74|@N%2h6?d21`mmV|mjZmpo;}OH&t`55h5sZdRTG?Rnr;Rx8
za8rZO;A#lkh@p1=qz}e`^z>5#eR_SE#sJ)WDiyf-Ru+}zA{P<XH4ChvGXNpOjoTPg
zL~@bAQW0Zwn{}E}&@sYRO_K0kPKXzPsK{6P!9y(P4?ekO5GZug4(o+Np@N@vdc492
z58m(v8t#2~dbomPFPSWHObVzm1jhiH42T|sn=lN7`wT_F_3Bt+l(Ntvzk-yk<z}i`
zunDJ}1~)Ad<JxZ62xN}LV{!+NIBOG`k`o^B3Lr_#tAwS(kb7EYqAzLFGY?&a7Ow?r
zV&U~Ml90G8(^iH;L<9aa7z7M~8g>|vK8)-fAw)XVWv18riFYwbS?k-BCKq#&nLYWG
zg}CGqqCXKQ4S0?Wa?;Rrc;U0J03!v`>FU5@EQw1{DMRBMocQ35e8Dcfe~KH?BcN+D
z2r%5s!Qo6*#)JXEqnQ1AM?gEn(B`_DX7vV^8AN1sU}&LCw;>$JRI38B;>PR^iUKrP
z<AgT=3EQvetPrZBp%9Wll|KPHhSWDAMdRqmHU8YfMCdqrz{2|tmHeoVL{$C?x~Z8l
z<qUkiSm&*)*HkHd#lbZ>6%Oo7IrNC+%;x8YiYO5L%g+&kX~6Z4p7<GfIwHssgW`sa
zu`$3nxDFdV`K*9xNk=K`7Rot?dB4uQWVWOJg{9miyH$)UY~W6c&qlx!=-)-%`Awz+
zLpuW`zQrq)VdvAtfj9CFFL{WV_>mvryBGu*QOawol>wA>zQ8FWKb-x_+ry2)Tmydv
ztA{o-7$GLejwRDgRB$fMZ&6*OE|?<hkK_m#ORR<3@Rgb{1w1QdB&5a|r8yr!!{qM6
zJ$H}K9QASF1)lN+Pu!g{9CA}iKygh8J?_53cZnFON=gkRoQ=|r6|!4u_}TGI6Mn`3
zObi4a+;MVrkaG#tlYdi#AT4slAjL9mbc`@sQpZMc1q_FtcIj7e<UxzN$g;2FJBg_w
z$#H+HtcZ1g%cvuH0{}Tyu!cfdXXBxcRgL_U$DU#~U*?Vw;2kxPib#Aai`2{*%Ht9q
z3z*0Y*0^SFD$aT~`WON|(yQ@J16{nRhsLl}{4R!hrv(=DEXWi$z@|4LR88jujNnGf
zLJMk^9i@sJ?mT0y$M~!Rr6IQdj^Fq&=F%Xa<<Z6xyE}ToO|cd*-WQ=-T_vKi)j*fa
zam2>hIBFnaH&iDf4F5{YfB3qAyMu!<JRUWqfyl<51|;VY5<h)R81PPTlqPwF-u#-j
zGXma9Mz(<LTA;#NOvZBoG5Aq)<Z?_QwmEwO$aI}tSa9~ynXvW4uXu9=KJ)B2HFENU
zYX*TrB%Su`q5#b(M+Q0TnZwy;0BQt#NUQ<k-Q87f?#eXD(cO3_$u%&OX^6WCskD}C
zMvlVmi#N(VD!{QSYj|Behyz#?nD4>Xt2u?|#|rToua7eg6W@FyWc5tpOrw|AT5J;U
z$0u<j)`n8sXyCY--av77jT!yK;6M4g!B1dOpx57$27$YN9X%xP)X$Lty7sh$g%)0V
z;s|r8;gR3t2vdL=ufZUKFc^bstcADH?tBE)?uCRImwII~0apzv8^uT-B9p(=De=a2
zlAA$rVTgdbtuZJ*^@&oh*Yr`eGPTK&6q@)ZB?(hs!tTeV=J(=Fr7PbA95Qt;Ih8(6
zmc}xU7;tMIwV*pV<@C`~##FfuZ_*S_8Nx&F@AM{tHzDaYLgjB&A*CZ}T^&eR{Dy-{
zW-?SI&CnbEUV++BhVq+~rF7K4eibjq2nXDEQe*(<2q0-o!uK!+#HV8IJN*dvuqz%u
zYgIFA7!>%<4@jKg^y>?;her(LcD^w{fJJ0FDbMjEu?PkMNw{Pm`~eS7!-t3(D}ZJY
z7+%r2X>5p3%M`Pq!f{LCA8GKAM#2t+K;s<@CDL-_@HMz}t>o%8^blB@0uMTl+*0hx
zIH4yx1vPR8(sv?R)B-9#JY6Sn1xKni;I72rf~D!Ea7Ibo6i(T$WHBXQ`sVM1CVnco
z)mvjo$<?0<O7c?tNmr-rU39h~U)eg*AI`or8m9}m_yv7Q1JL*?|2%`BRC-wg43m1|
z(N}0t)(JQRpzX|{Q2G@;@*1<Sl+z3>1O^iw#L$lrGD06EWoMC3X-L7PN`@>ukid;r
z15+8zAh<9T!Fr1s<B*-7xaf^Ej|l7o!*4=FtnuXy&JiI`lCIzcJH(svcNBtIC=>K7
zxCCQE*Fe)F1L;?Z0qR=ujZERlC7gbZHs5PZHBigQ<?E6X9=&p0FX^GCuEuvTDP(UJ
zf2${_9I<LeRg48V+_OyUabTE+Qf9?Zz$tetm`b3X;f5lJW?a!Kg6x=;uY=)%J{W|6
z`#ARuE9KycxRg0C8ihZLhbMGSK7&LVxoJ_1$N)WqU{|mFtp1QEJ))9z?IVy>NX*)A
ziP!qCYBse-`5|^hZ~1KTD;~HRgr}eT<e*qpq$!%J4TwQi>pUnvgj#YxMWEC0r-(f_
z%Ka*KpGli7OL%UAfxItq^UBrHXO%Xlp<7@^gAlnieKta3BF;|`Gb7IRXYxNOvqrB0
zx<mXoguuip3B`vpG<K2|&g`8Z=oWXxQ)xX8)C}xoEm)-L2cvl%oT3|j9O$ZehA_XZ
zXU)OT>Bb@wny1QC?JT#9GxaqHm`0hh{0#nC3H+=C{xvCqf5-^oAO35S*`H<eXC?5n
i61YnVXgc7({Qm&<%8TIUIxPPH0000<MNUMnLSTYw1;y?F

literal 0
HcmV?d00001

diff --git a/oxAuth/Server/src/main/webapp/auth/bioid/js/bws.capture.js b/oxAuth/Server/src/main/webapp/auth/bioid/js/bws.capture.js
new file mode 100644
index 00000000..91fbad0a
--- /dev/null
+++ b/oxAuth/Server/src/main/webapp/auth/bioid/js/bws.capture.js
@@ -0,0 +1,596 @@
+/*! BioID Web Service - 2020-03-10
+*   image capture and recognition library - v3.0.0
+*   https://www.bioid.com
+*   Copyright (C) BioID GmbH.
+*/
+
+
+(function (bws, $, _undefined) {
+    // execute javascript in 'strict mode'
+    'use strict';
+
+    // init image capture and recognition library
+    bws.initcapture = function (canvasElement, videoElement, issuedToken, options) {
+        var defaults = {
+            apiurl: 'https://bws.bioid.com/extension/',
+            task: 'enrollment', // | identification | enrollment |
+								// livenessdetection
+            trait: 'Face,Periocular',
+            maxheight: 480,
+            recordings: 4,
+            maxupload: 20,
+            challengeResponse: false,
+            motionareaheight: 160,
+            threshold: 25,
+            mirror: true
+        };
+
+        // apply options to our default settings
+        var settings = $.extend({}, defaults, options);
+        // for backward compatibility apply host if it has been set
+        if (typeof settings.host !== 'undefined') { settings.apiurl = 'https://' + settings.host + '/extension/'; }
+
+        // the canvas to draw the image and overlays
+        var canvas = canvasElement;
+        if (!canvas) { // we can't do anything without a canvas
+            alert('Please provide a valid canvas element to initialize the BWS capture module!');
+        }
+
+        // the issued token
+        var token = issuedToken;
+
+        // private helper elements
+        // required for iOS 13 Safari
+        var video = videoElement;
+        video.setAttribute('playsinline', '');
+        var copycanvas = document.createElement('canvas');
+        var motioncanvas = document.createElement('canvas');
+
+        // template for motion detection
+        var template = null;
+
+        // we need to put some additional things into our closure
+        var videoStream;
+        var processInterval;
+
+        // timer for 'No Motion' and 'No Activity'
+        var noMotionTimer;
+        var noActivityTimer;
+
+        // possible status values:
+        // UserInstruction-NodYourHead, UserInstruction-FollowMe,
+		// UserInstruction-NoMovement, UserInstruction-PleaseWait
+        // Uploading, Uploaded, UploadProgress, DisplayTag,
+		// Perform-verification, Perform-identification, Perform-enrollment,
+		// Perform-livenessdetection,
+        // NoFaceFound, MultipleFacesFound, LiveDetectionFailed,
+		// ChallengeResponseFailed, NotRecognized, NoTemplateAvailable
+        var statusCallback; // arguments: status { message | tag } { dataURL }
+        var doneCallback; // arguments: error
+
+        var uploaded = 0, uploading = 0, captured = 0, capturing = false;
+        var tag = 'any'; // any, up, down, left, right
+        var tags = [];
+
+        /*
+		 * ----------------------- Public function for capturing
+		 * -------------------------
+		 */
+
+        // public method to start capturing. The functions
+        // onSuccess(), onFailure(error) and onDone(error) must be applied,
+        // onStatus(status, message, dataURL) is optional
+        var start = function (onSuccess, onFailure, onDone, onStatus) {
+            console.log('Starting capture...');
+            doneCallback = onDone;
+            statusCallback = onStatus;
+
+            if (videoStream) {
+                // we have been started already
+                return;
+            }
+
+            var constraints = { audio: false, video: { facingMode: "user" } };
+            navigator.mediaDevices.getUserMedia(constraints)
+                .then(function (mediaStream) {
+                    console.log('Video capture stream has been created with constraints:', constraints);
+                    videoStream = mediaStream;
+                    video.srcObject = mediaStream;
+                    video.onloadedmetadata = function (e) {
+                        video.play();
+                        console.log('Playing live media stream');
+                        // init the various canvases ...
+                        initializeCanvases();
+                        console.log('capture started');
+                        onSuccess();
+                    };
+                })
+                .catch(function (err) {
+                    console.log('getUserMedia failed with error:', err);
+                    onFailure(err);
+                });
+        };
+
+        // public method to pause capturing
+        var stop = function () {
+            console.log('Pausing capture...');
+            recording(false);
+            video.pause();
+            clearInterval(processInterval);
+            videoStream = null;
+        };
+
+        // public method to mirror the display of the captured image
+        var mirror = function () {
+            let copy = copycanvas.getContext('2d');
+            copy.translate(copycanvas.width, 0);
+            copy.scale(-1, 1);
+        };
+
+        // public method to start the biometric process
+        var startRecording = function (challenges) {
+            recording(false);
+            tags = challenges ? challenges : [];
+            initRecording();
+        };
+
+        /*
+		 * ------------------------ Private image capturing functions
+		 * ------------------
+		 */
+
+        // private method to init the size of the canvases
+        function initializeCanvases() {
+            canvas.width = canvas.clientWidth;
+            canvas.height = canvas.clientHeight;
+
+            // we prefer 3 : 4 face image resolution
+            let aspectratio = video.videoWidth / video.videoHeight < 3 / 4 ? video.videoWidth / video.videoHeight : 3 / 4;
+            copycanvas.height = video.videoHeight > settings.maxheight ? settings.maxheight : video.videoHeight;
+            copycanvas.width = copycanvas.height * aspectratio;
+            motioncanvas.height = settings.motionareaheight;
+            motioncanvas.width = motioncanvas.height * aspectratio;
+
+            // if mirroring required
+            if (settings.mirror) { mirror(); }
+
+            // set an interval-timer to grab about 20 frames per second
+            processInterval = setInterval(processFrame, 50);
+        }
+
+        function initRecording() {
+            if (statusCallback) { statusCallback('UserInstruction-Start'); }
+            recording(true);
+            startActivityTimer();
+        }
+
+        // start or stop recording
+        function recording(capture) {
+            clearInterval(noMotionTimer);
+            clearInterval(noActivityTimer);
+            uploaded = 0;
+            uploading = 0;
+            captured = 0;
+            template = null;
+            capturing = capture;
+        }
+
+        // private worker method for each frame
+        function processFrame() {
+            let w = copycanvas.width, h = copycanvas.height, aspectratio = w / h;
+            let cutoff = video.videoWidth - (video.videoHeight * aspectratio);
+            let draw = canvas.getContext('2d');
+            let copy = copycanvas.getContext('2d');
+
+            // we draw the frames manually using the private video element and
+			// the copy interim canvas
+            copy.drawImage(video, cutoff / 2, 0, video.videoWidth - cutoff, video.videoHeight, 0, 0, copycanvas.width, copycanvas.height);
+
+            // at first we need aspectration of the video - portrait or
+			// landscape size
+            let aspectrationvideo = video.videoWidth / video.videoHeight;
+            let offset = 0;
+            
+            if (aspectrationvideo > 1) { // e.g 640x480
+                if (window.innerWidth / window.innerHeight > 1) {
+                    canvas.height = window.innerHeight/3*1.7;
+                    canvas.width = canvas.height / aspectratio;
+                }
+                else {
+                    canvas.width = window.innerWidth - 20;
+                    canvas.height = canvas.width * aspectratio;
+                }
+            }
+            else { // 0.75 e.g. 480/640
+                offset = 10; // for circle
+                canvas.width = window.innerWidth - 20;
+                canvas.height = canvas.width / aspectrationvideo;
+            }
+           
+            draw.drawImage(video, 0, 0, canvas.width, canvas.height);
+            
+            // Drawing default white background e.g. Safari does not support
+			// canvas filter 'blur'!
+            w = canvas.height * aspectratio - offset;
+            let gradient = draw.createRadialGradient(canvas.width / 2, canvas.height / 2, 0, canvas.width / 2, canvas.height / 2, w * 0.5);
+            gradient.addColorStop(0.98, 'transparent');
+            gradient.addColorStop(0.99, 'rgba(255, 255, 255, 0.8)');
+            draw.fillStyle = gradient;
+            draw.setTransform(1, 0, 0, 1, 0, 0);
+            draw.fillRect(0, 0, canvas.width, canvas.height);
+           
+            // Drawing white circle into liveview
+            draw.filter = 'none';
+
+            draw.beginPath();
+            draw.arc(canvas.width / 2, canvas.height / 2, w * 0.5, 0, 2 * Math.PI);
+            draw.lineWidth = 5;
+            draw.strokeStyle = '#FFFFFF';
+            draw.stroke();
+            draw.closePath();
+            draw.clip();
+
+            draw.drawImage(video, 0, 0, canvas.width, canvas.height);
+            draw.restore();
+
+            // fire event for uuicanvas size change
+            var event = new Event('uuiresize');
+            document.dispatchEvent(event);
+         
+            if (capturing && uploaded < settings.recordings) {
+                // we may need to switch on the tags again ??????
+                // if (settings.challengeResponse && tag === 'any') { setTag();
+				// }
+
+                if (captured > settings.maxupload) {
+                    stop();
+                    doneCallback('The maximum number of uploads has been reached!');
+                }
+
+                // scale current image into the motion canvas
+                let motionctx = motioncanvas.getContext('2d');
+                motionctx.drawImage(copycanvas, copycanvas.width / 8, copycanvas.height / 8, copycanvas.width - copycanvas.width / 4, copycanvas.height - copycanvas.height / 4, 0, 0, motioncanvas.width, motioncanvas.height);
+                let currentImageData = motionctx.getImageData(0, 0, motioncanvas.width, motioncanvas.height);
+
+                let movement = 100;
+                if (template) {
+                    // calculate motion
+                    movement = motionDetection(currentImageData, template);
+                }
+
+                // trigger if movement is above threshold (default: when 20% of
+				// maximum movement is exceeded)
+                if (movement > settings.threshold) {
+                    if (uploaded + uploading < settings.recordings) {
+                        // in case we are not already bussy with some uploads
+						// start upload procedure
+                        upload();
+                        // current image is the new reference frame - create
+						// template
+                        template = createTemplate(currentImageData);
+                    }
+                }
+            }
+        }
+
+        /*
+		 * ------------------------ Timer functions
+		 * -----------------------------------
+		 */
+
+        // we give a NoMovement response every 5 seconds
+        function startMotionTimer() {
+            clearInterval(noMotionTimer);
+            noMotionTimer = setInterval(function () {
+                if (uploading + uploaded < settings.recordings) {
+                    if (statusCallback) { statusCallback('UserInstruction-NoMovement'); }
+                }
+            }, 5000);
+        }
+
+        // after a given time without activity from the user we abort the
+		// process
+        function startActivityTimer() {
+            clearInterval(noActivityTimer);
+            noActivityTimer = setInterval(function () {
+                if (uploading === 0) {
+                    stop();
+                    doneCallback('Activity time is over!');
+                }
+                else {
+                    startActivityTimer();
+                }
+            }, 30000);
+        }
+
+        /*
+		 * ------------------------ BWS Web Api calls
+		 * ---------------------------------
+		 */
+
+        // uploads an image to the BWS
+        function upload() {
+            startMotionTimer();
+
+            // start upload procedure, but only if we still have to
+            if (capturing && uploaded + uploading < settings.recordings) {
+                captured++;
+                uploading++;
+                let dataURL = copycanvas.toDataURL();
+                console.log('sizeof dataURL', dataURL.length);
+
+                if (statusCallback) {
+                    statusCallback('Uploading');
+                }
+
+                if (!$.support.cors) {
+                    // the call below typically requires Cross-Origin Resource
+					// Sharing!
+                    console.log('this browser does not support cors, e.g. IE8 or 9');
+                }
+                let jqxhr = $.ajax({
+                    type: 'POST',
+                    url: settings.apiurl + 'upload?tag=' + tag + '&index=' + captured + '&trait=' + settings.trait,
+                    data: dataURL,
+                    // don't forget the authentication header
+                    headers: { 'Authorization': 'Bearer ' + token },
+                    // upload progress
+                    xhr: function () {
+                        var xhr = new window.XMLHttpRequest();
+                        xhr.upload.id = captured;
+                        xhr.upload.addEventListener('progress', function (event) {
+                            let percent = 0;
+                            if (event.lengthComputable) {
+                                percent = Math.ceil(event.loaded / event.total * 100);
+                                let progressData = { id: this.id, progress: percent };
+                                if (statusCallback) { statusCallback('UploadProgress', progressData); }
+                            }
+                        }, false);
+                        return xhr;
+                    }
+                }).done(function (data) {
+                    uploading--;
+                    if (data.Accepted) {
+                        uploaded++;
+                        console.log('upload succeeded', data.Warnings);
+                        if (statusCallback) { statusCallback('Uploaded', data.Warnings.toString(), dataURL); }
+                        if (uploaded >= settings.recordings && uploading === 0) {
+                            // go for biometric task
+                            performTask();
+                        }
+                    } else {
+                        console.log('upload error', data.Error);
+                        if (statusCallback) { statusCallback(data.Error); } 
+                        
+                        if (uploaded < 1) {
+                            // restart process (retry)
+                            doneCallback('NoFaceFound', true);
+                        }
+                        else {
+                            // use performTask to cleanup already uploaded image
+                            // TODO: this is a dummy call!
+                            capturing = false;
+                            performTask();
+                        }
+                    }   
+                }).fail(function (jqXHR, textStatus, errorThrown) {
+                    // ups, call failed, typically due to
+                    // Unauthorized (invalid token) or
+                    // BadRequest (Invalid or unsupported sample format) or
+                    // InternalServerError (An exception occured)
+                    console.log('upload failed'+textStatus+errorThrown+jqXHR.responseText+textStatus+errorThrown+ jqXHR.responseText);
+                    stop();
+                    // redirect to caller with error response..
+                    doneCallback(errorThrown);
+                });
+                // show a new tag if neccessary
+                if (uploaded + uploading < settings.recordings) {
+                    setTag();
+                }
+            }
+        }
+
+        // perform biometric task enrollment, verification, identification or
+		// liveness detection with already uploaded images
+        function performTask() {
+            // we already have all images the motion timer is no longer required
+            clearInterval(noMotionTimer);
+            
+            stop();
+            doneCallback(); 
+            $(":input:submit[id='bioIDForm:enrollButton']").click();
+        }
+
+        /*
+		 * ------------------------ Set challenge response tag
+		 * -------------------------
+		 */
+
+        // generate a new challenge response tag or resets it to 'any'
+        function setTag() {
+            if (settings.challengeResponse) {
+                let currentRecording = uploaded + uploading;
+                if (currentRecording > 0 && currentRecording < settings.recordings) {
+                    if (tags.length >= currentRecording) {
+                        // use the preset (typically via the BWS access token)
+						// tags!
+                        tag = tags[currentRecording - 1];
+                    }
+                    else {
+                        let newtag = tag;
+                        if (currentRecording % 2 === 1) {
+                            // create a random tag
+                            let r = Math.random();
+                            if (currentRecording === 1) {
+                                if (r < 0.25) { newtag = 'up'; }
+                                else if (r < 0.5) { newtag = 'down'; }
+                                else if (r < 0.75) { newtag = 'left'; }
+                                else { newtag = 'right'; }
+                            }
+                            else {
+                                // create a tag in a direction different to the
+								// last movement axis
+                                if (tag === 'up' || tag === 'down') {
+                                    if (r < 0.5) { newtag = 'left'; }
+                                    else { newtag = 'right'; }
+                                }
+                                else {
+                                    if (r < 0.5) { newtag = 'up'; }
+                                    else { newtag = 'down'; }
+                                }
+                            }
+                        }
+                        else {
+                            // create a tag in the opposite direction of the
+							// last tag
+                            switch (tag) {
+                                case 'left':
+                                    newtag = 'right';
+                                    break;
+                                case 'right':
+                                    newtag = 'left';
+                                    break;
+                                case 'up':
+                                    newtag = 'down';
+                                    break;
+                                case 'down':
+                                    newtag = 'up';
+                                    break;
+                                default:
+                                    break;
+                            }
+                        }
+                        console.log('Switched tag for recording #' + currentRecording + ' from ' + tag + ' to ' + newtag);
+                        tag = newtag;
+                    }
+                }
+                else { tag = 'any'; }
+            }
+
+            if (statusCallback) { statusCallback('DisplayTag', tag); }
+
+            if (capturing) {
+                // give user some time to react!
+                capturing = false;
+                setTimeout(function () { if (template !== null) capturing = true; }, 1000);
+            }
+        }
+
+        /*
+		 * ------------------------ Motion Detection functions
+		 * ------------------------
+		 */
+
+        // template for cross-correlation
+        function createTemplate(imageData) {
+            // cut out the template
+            // we use a small width, quarter-size image around the center as
+			// template
+            var template = {
+                centerX: imageData.width / 2,
+                centerY: imageData.height / 2,
+                width: imageData.width / 4,
+                height: imageData.height / 4 + imageData.height / 8
+            };
+
+            template.xPos = template.centerX - template.width / 2;
+            template.yPos = template.centerY - template.height / 2;
+            template.buffer = new Uint8ClampedArray(template.width * template.height);
+
+            let counter = 0;
+            let p = imageData.data;
+            for (let y = template.yPos; y < template.yPos + template.height; y++) {
+                // we use only the green plane here
+                let bufferIndex = (y * imageData.width * 4) + template.xPos * 4 + 1;
+                for (let x = template.xPos; x < template.xPos + template.width; x++) {
+                    let templatepixel = p[bufferIndex];
+                    template.buffer[counter++] = templatepixel;
+                    // we use only the green plane here
+                    bufferIndex += 4;
+                }
+            }
+            console.log('Created new cross-correlation template', template);
+            return template;
+        }
+
+        // motion detection by a normalized cross-correlation
+        function motionDetection(imageData, template) {
+            // this is the major computing step: Perform a normalized
+			// cross-correlation between the template of the first image and
+			// each incoming image
+            // this algorithm is basically called "Template Matching" - we use
+			// the normalized cross correlation to be independent of lighting
+			// changes
+            // we calculate the correlation of template and image over the whole
+			// image area
+            let bestHitX = 0,
+                bestHitY = 0,
+                maxCorr = 0,
+                searchWidth = imageData.width / 4,
+                searchHeight = imageData.height / 4,
+                p = imageData.data;
+
+            for (let y = template.centerY - searchHeight; y <= template.centerY + searchHeight - template.height; y++) {
+                for (let x = template.centerX - searchWidth; x <= template.centerX + searchWidth - template.width; x++) {
+                    let nominator = 0, denominator = 0, templateIndex = 0;
+
+                    // Calculate the normalized cross-correlation coefficient
+					// for this position
+                    for (let ty = 0; ty < template.height; ty++) {
+                        // we use only the green plane here
+                        let bufferIndex = x * 4 + 1 + (y + ty) * imageData.width * 4;
+                        for (let tx = 0; tx < template.width; tx++) {
+                            let imagepixel = p[bufferIndex];
+                            nominator += template.buffer[templateIndex++] * imagepixel;
+                            denominator += imagepixel * imagepixel;
+                            // we use only the green plane here
+                            bufferIndex += 4;
+                        }
+                    }
+
+                    // The NCC coefficient is then (watch out for
+					// division-by-zero errors for pure black images)
+                    let ncc = 0.0;
+                    if (denominator > 0) {
+                        ncc = nominator * nominator / denominator;
+                    }
+                    // Is it higher than what we had before?
+                    if (ncc > maxCorr) {
+                        maxCorr = ncc;
+                        bestHitX = x;
+                        bestHitY = y;
+                    }
+                }
+            }
+            // now the most similar position of the template is (bestHitX,
+			// bestHitY). Calculate the difference from the origin
+            let distX = bestHitX - template.xPos,
+                distY = bestHitY - template.yPos,
+                movementDiff = Math.sqrt(distX * distX + distY * distY);
+            // the maximum movement possible is a complete shift into one of the
+			// corners, i.e
+            let maxDistX = searchWidth - template.width / 2,
+                maxDistY = searchHeight - template.height / 2,
+                maximumMovement = Math.sqrt(maxDistX * maxDistX + maxDistY * maxDistY);
+
+            // the percentage of the detected movement is therefore
+            var movementPercentage = movementDiff / maximumMovement * 100;
+            if (movementPercentage > 100) {
+                movementPercentage = 100;
+            }
+            // console.log('Calculated movement: ', movementPercentage);
+            return movementPercentage;
+        }
+
+        return {
+            start: start,
+            stop: stop,
+            startRecording: startRecording,
+            stopRecording: function () { recording(false); },
+            upload: upload,
+            mirror: mirror,
+            getUploading: function () { return uploading; },
+            getUploaded: function () { return uploaded; }
+        };
+    };
+}(window.bws = window.bws || {}, jQuery));
\ No newline at end of file
diff --git a/oxAuth/Server/src/main/webapp/auth/bioid/js/getUserMedia.js b/oxAuth/Server/src/main/webapp/auth/bioid/js/getUserMedia.js
new file mode 100644
index 00000000..b4db51da
--- /dev/null
+++ b/oxAuth/Server/src/main/webapp/auth/bioid/js/getUserMedia.js
@@ -0,0 +1,29 @@
+// mediaDevices - getUserMedia - polyfill
+// usage: navigator.mediaDevices.getUserMedia({ video: true }).then(function (mediaStream) { ... }).catch(function (err) { ... });
+'use strict';
+
+(function () {
+    var promisifiedOldGUM = function promisifiedOldGUM(constraints, successCallback, errorCallback) {
+        // First get ahold of getUserMedia, if present
+        var getUserMedia = navigator.getUserMedia || navigator.webkitGetUserMedia || navigator.mozGetUserMedia || navigator.msGetUserMedia;
+        // Some browsers just don't implement it - return a rejected promise with an error to keep a consistent interface
+        if (!getUserMedia) {
+            return Promise.reject(new Error('getUserMedia is not implemented in this browser'));
+        }
+        // Otherwise, wrap the call to the old navigator.getUserMedia with a Promise
+        return new Promise(function (successCallback, errorCallback) {
+            getUserMedia.call(navigator, constraints, successCallback, errorCallback);
+        });
+    };
+
+    // Older browsers might not implement mediaDevices at all, so we set an empty object first
+    if (navigator.mediaDevices === undefined) {
+        navigator.mediaDevices = {};
+    }
+    // Some browsers partially implement mediaDevices. We can't just assign an object
+    // with getUserMedia as it would overwrite existing properties.
+    // Here, we will just add the getUserMedia property if it's missing.
+    if (navigator.mediaDevices.getUserMedia === undefined) {
+        navigator.mediaDevices.getUserMedia = promisifiedOldGUM;
+    }
+})();
diff --git a/oxAuth/Server/src/main/webapp/auth/bioid/js/getUserMedia.min.js b/oxAuth/Server/src/main/webapp/auth/bioid/js/getUserMedia.min.js
new file mode 100644
index 00000000..f00ba86d
--- /dev/null
+++ b/oxAuth/Server/src/main/webapp/auth/bioid/js/getUserMedia.min.js
@@ -0,0 +1 @@
+"use strict";(function(){var n=function(n){var t=navigator.getUserMedia||navigator.webkitGetUserMedia||navigator.mozGetUserMedia||navigator.msGetUserMedia;return t?new Promise(function(i,r){t.call(navigator,n,i,r)}):Promise.reject(new Error("getUserMedia is not implemented in this browser"))};navigator.mediaDevices===undefined&&(navigator.mediaDevices={});navigator.mediaDevices.getUserMedia===undefined&&(navigator.mediaDevices.getUserMedia=n)})();
\ No newline at end of file
diff --git a/oxAuth/Server/src/main/webapp/auth/bioid/js/jquery-3.5.1.min.js b/oxAuth/Server/src/main/webapp/auth/bioid/js/jquery-3.5.1.min.js
new file mode 100644
index 00000000..b0614034
--- /dev/null
+++ b/oxAuth/Server/src/main/webapp/auth/bioid/js/jquery-3.5.1.min.js
@@ -0,0 +1,2 @@
+/*! jQuery v3.5.1 | (c) JS Foundation and other contributors | jquery.org/license */
+!function(e,t){"use strict";"object"==typeof module&&"object"==typeof module.exports?module.exports=e.document?t(e,!0):function(e){if(!e.document)throw new Error("jQuery requires a window with a document");return t(e)}:t(e)}("undefined"!=typeof window?window:this,function(C,e){"use strict";var t=[],r=Object.getPrototypeOf,s=t.slice,g=t.flat?function(e){return t.flat.call(e)}:function(e){return t.concat.apply([],e)},u=t.push,i=t.indexOf,n={},o=n.toString,v=n.hasOwnProperty,a=v.toString,l=a.call(Object),y={},m=function(e){return"function"==typeof e&&"number"!=typeof e.nodeType},x=function(e){return null!=e&&e===e.window},E=C.document,c={type:!0,src:!0,nonce:!0,noModule:!0};function b(e,t,n){var r,i,o=(n=n||E).createElement("script");if(o.text=e,t)for(r in c)(i=t[r]||t.getAttribute&&t.getAttribute(r))&&o.setAttribute(r,i);n.head.appendChild(o).parentNode.removeChild(o)}function w(e){return null==e?e+"":"object"==typeof e||"function"==typeof e?n[o.call(e)]||"object":typeof e}var f="3.5.1",S=function(e,t){return new S.fn.init(e,t)};function p(e){var t=!!e&&"length"in e&&e.length,n=w(e);return!m(e)&&!x(e)&&("array"===n||0===t||"number"==typeof t&&0<t&&t-1 in e)}S.fn=S.prototype={jquery:f,constructor:S,length:0,toArray:function(){return s.call(this)},get:function(e){return null==e?s.call(this):e<0?this[e+this.length]:this[e]},pushStack:function(e){var t=S.merge(this.constructor(),e);return t.prevObject=this,t},each:function(e){return S.each(this,e)},map:function(n){return this.pushStack(S.map(this,function(e,t){return n.call(e,t,e)}))},slice:function(){return this.pushStack(s.apply(this,arguments))},first:function(){return this.eq(0)},last:function(){return this.eq(-1)},even:function(){return this.pushStack(S.grep(this,function(e,t){return(t+1)%2}))},odd:function(){return this.pushStack(S.grep(this,function(e,t){return t%2}))},eq:function(e){var t=this.length,n=+e+(e<0?t:0);return this.pushStack(0<=n&&n<t?[this[n]]:[])},end:function(){return this.prevObject||this.constructor()},push:u,sort:t.sort,splice:t.splice},S.extend=S.fn.extend=function(){var e,t,n,r,i,o,a=arguments[0]||{},s=1,u=arguments.length,l=!1;for("boolean"==typeof a&&(l=a,a=arguments[s]||{},s++),"object"==typeof a||m(a)||(a={}),s===u&&(a=this,s--);s<u;s++)if(null!=(e=arguments[s]))for(t in e)r=e[t],"__proto__"!==t&&a!==r&&(l&&r&&(S.isPlainObject(r)||(i=Array.isArray(r)))?(n=a[t],o=i&&!Array.isArray(n)?[]:i||S.isPlainObject(n)?n:{},i=!1,a[t]=S.extend(l,o,r)):void 0!==r&&(a[t]=r));return a},S.extend({expando:"jQuery"+(f+Math.random()).replace(/\D/g,""),isReady:!0,error:function(e){throw new Error(e)},noop:function(){},isPlainObject:function(e){var t,n;return!(!e||"[object Object]"!==o.call(e))&&(!(t=r(e))||"function"==typeof(n=v.call(t,"constructor")&&t.constructor)&&a.call(n)===l)},isEmptyObject:function(e){var t;for(t in e)return!1;return!0},globalEval:function(e,t,n){b(e,{nonce:t&&t.nonce},n)},each:function(e,t){var n,r=0;if(p(e)){for(n=e.length;r<n;r++)if(!1===t.call(e[r],r,e[r]))break}else for(r in e)if(!1===t.call(e[r],r,e[r]))break;return e},makeArray:function(e,t){var n=t||[];return null!=e&&(p(Object(e))?S.merge(n,"string"==typeof e?[e]:e):u.call(n,e)),n},inArray:function(e,t,n){return null==t?-1:i.call(t,e,n)},merge:function(e,t){for(var n=+t.length,r=0,i=e.length;r<n;r++)e[i++]=t[r];return e.length=i,e},grep:function(e,t,n){for(var r=[],i=0,o=e.length,a=!n;i<o;i++)!t(e[i],i)!==a&&r.push(e[i]);return r},map:function(e,t,n){var r,i,o=0,a=[];if(p(e))for(r=e.length;o<r;o++)null!=(i=t(e[o],o,n))&&a.push(i);else for(o in e)null!=(i=t(e[o],o,n))&&a.push(i);return g(a)},guid:1,support:y}),"function"==typeof Symbol&&(S.fn[Symbol.iterator]=t[Symbol.iterator]),S.each("Boolean Number String Function Array Date RegExp Object Error Symbol".split(" "),function(e,t){n["[object "+t+"]"]=t.toLowerCase()});var d=function(n){var e,d,b,o,i,h,f,g,w,u,l,T,C,a,E,v,s,c,y,S="sizzle"+1*new Date,p=n.document,k=0,r=0,m=ue(),x=ue(),A=ue(),N=ue(),D=function(e,t){return e===t&&(l=!0),0},j={}.hasOwnProperty,t=[],q=t.pop,L=t.push,H=t.push,O=t.slice,P=function(e,t){for(var n=0,r=e.length;n<r;n++)if(e[n]===t)return n;return-1},R="checked|selected|async|autofocus|autoplay|controls|defer|disabled|hidden|ismap|loop|multiple|open|readonly|required|scoped",M="[\\x20\\t\\r\\n\\f]",I="(?:\\\\[\\da-fA-F]{1,6}"+M+"?|\\\\[^\\r\\n\\f]|[\\w-]|[^\0-\\x7f])+",W="\\["+M+"*("+I+")(?:"+M+"*([*^$|!~]?=)"+M+"*(?:'((?:\\\\.|[^\\\\'])*)'|\"((?:\\\\.|[^\\\\\"])*)\"|("+I+"))|)"+M+"*\\]",F=":("+I+")(?:\\((('((?:\\\\.|[^\\\\'])*)'|\"((?:\\\\.|[^\\\\\"])*)\")|((?:\\\\.|[^\\\\()[\\]]|"+W+")*)|.*)\\)|)",B=new RegExp(M+"+","g"),$=new RegExp("^"+M+"+|((?:^|[^\\\\])(?:\\\\.)*)"+M+"+$","g"),_=new RegExp("^"+M+"*,"+M+"*"),z=new RegExp("^"+M+"*([>+~]|"+M+")"+M+"*"),U=new RegExp(M+"|>"),X=new RegExp(F),V=new RegExp("^"+I+"$"),G={ID:new RegExp("^#("+I+")"),CLASS:new RegExp("^\\.("+I+")"),TAG:new RegExp("^("+I+"|[*])"),ATTR:new RegExp("^"+W),PSEUDO:new RegExp("^"+F),CHILD:new RegExp("^:(only|first|last|nth|nth-last)-(child|of-type)(?:\\("+M+"*(even|odd|(([+-]|)(\\d*)n|)"+M+"*(?:([+-]|)"+M+"*(\\d+)|))"+M+"*\\)|)","i"),bool:new RegExp("^(?:"+R+")$","i"),needsContext:new RegExp("^"+M+"*[>+~]|:(even|odd|eq|gt|lt|nth|first|last)(?:\\("+M+"*((?:-\\d)?\\d*)"+M+"*\\)|)(?=[^-]|$)","i")},Y=/HTML$/i,Q=/^(?:input|select|textarea|button)$/i,J=/^h\d$/i,K=/^[^{]+\{\s*\[native \w/,Z=/^(?:#([\w-]+)|(\w+)|\.([\w-]+))$/,ee=/[+~]/,te=new RegExp("\\\\[\\da-fA-F]{1,6}"+M+"?|\\\\([^\\r\\n\\f])","g"),ne=function(e,t){var n="0x"+e.slice(1)-65536;return t||(n<0?String.fromCharCode(n+65536):String.fromCharCode(n>>10|55296,1023&n|56320))},re=/([\0-\x1f\x7f]|^-?\d)|^-$|[^\0-\x1f\x7f-\uFFFF\w-]/g,ie=function(e,t){return t?"\0"===e?"\ufffd":e.slice(0,-1)+"\\"+e.charCodeAt(e.length-1).toString(16)+" ":"\\"+e},oe=function(){T()},ae=be(function(e){return!0===e.disabled&&"fieldset"===e.nodeName.toLowerCase()},{dir:"parentNode",next:"legend"});try{H.apply(t=O.call(p.childNodes),p.childNodes),t[p.childNodes.length].nodeType}catch(e){H={apply:t.length?function(e,t){L.apply(e,O.call(t))}:function(e,t){var n=e.length,r=0;while(e[n++]=t[r++]);e.length=n-1}}}function se(t,e,n,r){var i,o,a,s,u,l,c,f=e&&e.ownerDocument,p=e?e.nodeType:9;if(n=n||[],"string"!=typeof t||!t||1!==p&&9!==p&&11!==p)return n;if(!r&&(T(e),e=e||C,E)){if(11!==p&&(u=Z.exec(t)))if(i=u[1]){if(9===p){if(!(a=e.getElementById(i)))return n;if(a.id===i)return n.push(a),n}else if(f&&(a=f.getElementById(i))&&y(e,a)&&a.id===i)return n.push(a),n}else{if(u[2])return H.apply(n,e.getElementsByTagName(t)),n;if((i=u[3])&&d.getElementsByClassName&&e.getElementsByClassName)return H.apply(n,e.getElementsByClassName(i)),n}if(d.qsa&&!N[t+" "]&&(!v||!v.test(t))&&(1!==p||"object"!==e.nodeName.toLowerCase())){if(c=t,f=e,1===p&&(U.test(t)||z.test(t))){(f=ee.test(t)&&ye(e.parentNode)||e)===e&&d.scope||((s=e.getAttribute("id"))?s=s.replace(re,ie):e.setAttribute("id",s=S)),o=(l=h(t)).length;while(o--)l[o]=(s?"#"+s:":scope")+" "+xe(l[o]);c=l.join(",")}try{return H.apply(n,f.querySelectorAll(c)),n}catch(e){N(t,!0)}finally{s===S&&e.removeAttribute("id")}}}return g(t.replace($,"$1"),e,n,r)}function ue(){var r=[];return function e(t,n){return r.push(t+" ")>b.cacheLength&&delete e[r.shift()],e[t+" "]=n}}function le(e){return e[S]=!0,e}function ce(e){var t=C.createElement("fieldset");try{return!!e(t)}catch(e){return!1}finally{t.parentNode&&t.parentNode.removeChild(t),t=null}}function fe(e,t){var n=e.split("|"),r=n.length;while(r--)b.attrHandle[n[r]]=t}function pe(e,t){var n=t&&e,r=n&&1===e.nodeType&&1===t.nodeType&&e.sourceIndex-t.sourceIndex;if(r)return r;if(n)while(n=n.nextSibling)if(n===t)return-1;return e?1:-1}function de(t){return function(e){return"input"===e.nodeName.toLowerCase()&&e.type===t}}function he(n){return function(e){var t=e.nodeName.toLowerCase();return("input"===t||"button"===t)&&e.type===n}}function ge(t){return function(e){return"form"in e?e.parentNode&&!1===e.disabled?"label"in e?"label"in e.parentNode?e.parentNode.disabled===t:e.disabled===t:e.isDisabled===t||e.isDisabled!==!t&&ae(e)===t:e.disabled===t:"label"in e&&e.disabled===t}}function ve(a){return le(function(o){return o=+o,le(function(e,t){var n,r=a([],e.length,o),i=r.length;while(i--)e[n=r[i]]&&(e[n]=!(t[n]=e[n]))})})}function ye(e){return e&&"undefined"!=typeof e.getElementsByTagName&&e}for(e in d=se.support={},i=se.isXML=function(e){var t=e.namespaceURI,n=(e.ownerDocument||e).documentElement;return!Y.test(t||n&&n.nodeName||"HTML")},T=se.setDocument=function(e){var t,n,r=e?e.ownerDocument||e:p;return r!=C&&9===r.nodeType&&r.documentElement&&(a=(C=r).documentElement,E=!i(C),p!=C&&(n=C.defaultView)&&n.top!==n&&(n.addEventListener?n.addEventListener("unload",oe,!1):n.attachEvent&&n.attachEvent("onunload",oe)),d.scope=ce(function(e){return a.appendChild(e).appendChild(C.createElement("div")),"undefined"!=typeof e.querySelectorAll&&!e.querySelectorAll(":scope fieldset div").length}),d.attributes=ce(function(e){return e.className="i",!e.getAttribute("className")}),d.getElementsByTagName=ce(function(e){return e.appendChild(C.createComment("")),!e.getElementsByTagName("*").length}),d.getElementsByClassName=K.test(C.getElementsByClassName),d.getById=ce(function(e){return a.appendChild(e).id=S,!C.getElementsByName||!C.getElementsByName(S).length}),d.getById?(b.filter.ID=function(e){var t=e.replace(te,ne);return function(e){return e.getAttribute("id")===t}},b.find.ID=function(e,t){if("undefined"!=typeof t.getElementById&&E){var n=t.getElementById(e);return n?[n]:[]}}):(b.filter.ID=function(e){var n=e.replace(te,ne);return function(e){var t="undefined"!=typeof e.getAttributeNode&&e.getAttributeNode("id");return t&&t.value===n}},b.find.ID=function(e,t){if("undefined"!=typeof t.getElementById&&E){var n,r,i,o=t.getElementById(e);if(o){if((n=o.getAttributeNode("id"))&&n.value===e)return[o];i=t.getElementsByName(e),r=0;while(o=i[r++])if((n=o.getAttributeNode("id"))&&n.value===e)return[o]}return[]}}),b.find.TAG=d.getElementsByTagName?function(e,t){return"undefined"!=typeof t.getElementsByTagName?t.getElementsByTagName(e):d.qsa?t.querySelectorAll(e):void 0}:function(e,t){var n,r=[],i=0,o=t.getElementsByTagName(e);if("*"===e){while(n=o[i++])1===n.nodeType&&r.push(n);return r}return o},b.find.CLASS=d.getElementsByClassName&&function(e,t){if("undefined"!=typeof t.getElementsByClassName&&E)return t.getElementsByClassName(e)},s=[],v=[],(d.qsa=K.test(C.querySelectorAll))&&(ce(function(e){var t;a.appendChild(e).innerHTML="<a id='"+S+"'></a><select id='"+S+"-\r\\' msallowcapture=''><option selected=''></option></select>",e.querySelectorAll("[msallowcapture^='']").length&&v.push("[*^$]="+M+"*(?:''|\"\")"),e.querySelectorAll("[selected]").length||v.push("\\["+M+"*(?:value|"+R+")"),e.querySelectorAll("[id~="+S+"-]").length||v.push("~="),(t=C.createElement("input")).setAttribute("name",""),e.appendChild(t),e.querySelectorAll("[name='']").length||v.push("\\["+M+"*name"+M+"*="+M+"*(?:''|\"\")"),e.querySelectorAll(":checked").length||v.push(":checked"),e.querySelectorAll("a#"+S+"+*").length||v.push(".#.+[+~]"),e.querySelectorAll("\\\f"),v.push("[\\r\\n\\f]")}),ce(function(e){e.innerHTML="<a href='' disabled='disabled'></a><select disabled='disabled'><option/></select>";var t=C.createElement("input");t.setAttribute("type","hidden"),e.appendChild(t).setAttribute("name","D"),e.querySelectorAll("[name=d]").length&&v.push("name"+M+"*[*^$|!~]?="),2!==e.querySelectorAll(":enabled").length&&v.push(":enabled",":disabled"),a.appendChild(e).disabled=!0,2!==e.querySelectorAll(":disabled").length&&v.push(":enabled",":disabled"),e.querySelectorAll("*,:x"),v.push(",.*:")})),(d.matchesSelector=K.test(c=a.matches||a.webkitMatchesSelector||a.mozMatchesSelector||a.oMatchesSelector||a.msMatchesSelector))&&ce(function(e){d.disconnectedMatch=c.call(e,"*"),c.call(e,"[s!='']:x"),s.push("!=",F)}),v=v.length&&new RegExp(v.join("|")),s=s.length&&new RegExp(s.join("|")),t=K.test(a.compareDocumentPosition),y=t||K.test(a.contains)?function(e,t){var n=9===e.nodeType?e.documentElement:e,r=t&&t.parentNode;return e===r||!(!r||1!==r.nodeType||!(n.contains?n.contains(r):e.compareDocumentPosition&&16&e.compareDocumentPosition(r)))}:function(e,t){if(t)while(t=t.parentNode)if(t===e)return!0;return!1},D=t?function(e,t){if(e===t)return l=!0,0;var n=!e.compareDocumentPosition-!t.compareDocumentPosition;return n||(1&(n=(e.ownerDocument||e)==(t.ownerDocument||t)?e.compareDocumentPosition(t):1)||!d.sortDetached&&t.compareDocumentPosition(e)===n?e==C||e.ownerDocument==p&&y(p,e)?-1:t==C||t.ownerDocument==p&&y(p,t)?1:u?P(u,e)-P(u,t):0:4&n?-1:1)}:function(e,t){if(e===t)return l=!0,0;var n,r=0,i=e.parentNode,o=t.parentNode,a=[e],s=[t];if(!i||!o)return e==C?-1:t==C?1:i?-1:o?1:u?P(u,e)-P(u,t):0;if(i===o)return pe(e,t);n=e;while(n=n.parentNode)a.unshift(n);n=t;while(n=n.parentNode)s.unshift(n);while(a[r]===s[r])r++;return r?pe(a[r],s[r]):a[r]==p?-1:s[r]==p?1:0}),C},se.matches=function(e,t){return se(e,null,null,t)},se.matchesSelector=function(e,t){if(T(e),d.matchesSelector&&E&&!N[t+" "]&&(!s||!s.test(t))&&(!v||!v.test(t)))try{var n=c.call(e,t);if(n||d.disconnectedMatch||e.document&&11!==e.document.nodeType)return n}catch(e){N(t,!0)}return 0<se(t,C,null,[e]).length},se.contains=function(e,t){return(e.ownerDocument||e)!=C&&T(e),y(e,t)},se.attr=function(e,t){(e.ownerDocument||e)!=C&&T(e);var n=b.attrHandle[t.toLowerCase()],r=n&&j.call(b.attrHandle,t.toLowerCase())?n(e,t,!E):void 0;return void 0!==r?r:d.attributes||!E?e.getAttribute(t):(r=e.getAttributeNode(t))&&r.specified?r.value:null},se.escape=function(e){return(e+"").replace(re,ie)},se.error=function(e){throw new Error("Syntax error, unrecognized expression: "+e)},se.uniqueSort=function(e){var t,n=[],r=0,i=0;if(l=!d.detectDuplicates,u=!d.sortStable&&e.slice(0),e.sort(D),l){while(t=e[i++])t===e[i]&&(r=n.push(i));while(r--)e.splice(n[r],1)}return u=null,e},o=se.getText=function(e){var t,n="",r=0,i=e.nodeType;if(i){if(1===i||9===i||11===i){if("string"==typeof e.textContent)return e.textContent;for(e=e.firstChild;e;e=e.nextSibling)n+=o(e)}else if(3===i||4===i)return e.nodeValue}else while(t=e[r++])n+=o(t);return n},(b=se.selectors={cacheLength:50,createPseudo:le,match:G,attrHandle:{},find:{},relative:{">":{dir:"parentNode",first:!0}," ":{dir:"parentNode"},"+":{dir:"previousSibling",first:!0},"~":{dir:"previousSibling"}},preFilter:{ATTR:function(e){return e[1]=e[1].replace(te,ne),e[3]=(e[3]||e[4]||e[5]||"").replace(te,ne),"~="===e[2]&&(e[3]=" "+e[3]+" "),e.slice(0,4)},CHILD:function(e){return e[1]=e[1].toLowerCase(),"nth"===e[1].slice(0,3)?(e[3]||se.error(e[0]),e[4]=+(e[4]?e[5]+(e[6]||1):2*("even"===e[3]||"odd"===e[3])),e[5]=+(e[7]+e[8]||"odd"===e[3])):e[3]&&se.error(e[0]),e},PSEUDO:function(e){var t,n=!e[6]&&e[2];return G.CHILD.test(e[0])?null:(e[3]?e[2]=e[4]||e[5]||"":n&&X.test(n)&&(t=h(n,!0))&&(t=n.indexOf(")",n.length-t)-n.length)&&(e[0]=e[0].slice(0,t),e[2]=n.slice(0,t)),e.slice(0,3))}},filter:{TAG:function(e){var t=e.replace(te,ne).toLowerCase();return"*"===e?function(){return!0}:function(e){return e.nodeName&&e.nodeName.toLowerCase()===t}},CLASS:function(e){var t=m[e+" "];return t||(t=new RegExp("(^|"+M+")"+e+"("+M+"|$)"))&&m(e,function(e){return t.test("string"==typeof e.className&&e.className||"undefined"!=typeof e.getAttribute&&e.getAttribute("class")||"")})},ATTR:function(n,r,i){return function(e){var t=se.attr(e,n);return null==t?"!="===r:!r||(t+="","="===r?t===i:"!="===r?t!==i:"^="===r?i&&0===t.indexOf(i):"*="===r?i&&-1<t.indexOf(i):"$="===r?i&&t.slice(-i.length)===i:"~="===r?-1<(" "+t.replace(B," ")+" ").indexOf(i):"|="===r&&(t===i||t.slice(0,i.length+1)===i+"-"))}},CHILD:function(h,e,t,g,v){var y="nth"!==h.slice(0,3),m="last"!==h.slice(-4),x="of-type"===e;return 1===g&&0===v?function(e){return!!e.parentNode}:function(e,t,n){var r,i,o,a,s,u,l=y!==m?"nextSibling":"previousSibling",c=e.parentNode,f=x&&e.nodeName.toLowerCase(),p=!n&&!x,d=!1;if(c){if(y){while(l){a=e;while(a=a[l])if(x?a.nodeName.toLowerCase()===f:1===a.nodeType)return!1;u=l="only"===h&&!u&&"nextSibling"}return!0}if(u=[m?c.firstChild:c.lastChild],m&&p){d=(s=(r=(i=(o=(a=c)[S]||(a[S]={}))[a.uniqueID]||(o[a.uniqueID]={}))[h]||[])[0]===k&&r[1])&&r[2],a=s&&c.childNodes[s];while(a=++s&&a&&a[l]||(d=s=0)||u.pop())if(1===a.nodeType&&++d&&a===e){i[h]=[k,s,d];break}}else if(p&&(d=s=(r=(i=(o=(a=e)[S]||(a[S]={}))[a.uniqueID]||(o[a.uniqueID]={}))[h]||[])[0]===k&&r[1]),!1===d)while(a=++s&&a&&a[l]||(d=s=0)||u.pop())if((x?a.nodeName.toLowerCase()===f:1===a.nodeType)&&++d&&(p&&((i=(o=a[S]||(a[S]={}))[a.uniqueID]||(o[a.uniqueID]={}))[h]=[k,d]),a===e))break;return(d-=v)===g||d%g==0&&0<=d/g}}},PSEUDO:function(e,o){var t,a=b.pseudos[e]||b.setFilters[e.toLowerCase()]||se.error("unsupported pseudo: "+e);return a[S]?a(o):1<a.length?(t=[e,e,"",o],b.setFilters.hasOwnProperty(e.toLowerCase())?le(function(e,t){var n,r=a(e,o),i=r.length;while(i--)e[n=P(e,r[i])]=!(t[n]=r[i])}):function(e){return a(e,0,t)}):a}},pseudos:{not:le(function(e){var r=[],i=[],s=f(e.replace($,"$1"));return s[S]?le(function(e,t,n,r){var i,o=s(e,null,r,[]),a=e.length;while(a--)(i=o[a])&&(e[a]=!(t[a]=i))}):function(e,t,n){return r[0]=e,s(r,null,n,i),r[0]=null,!i.pop()}}),has:le(function(t){return function(e){return 0<se(t,e).length}}),contains:le(function(t){return t=t.replace(te,ne),function(e){return-1<(e.textContent||o(e)).indexOf(t)}}),lang:le(function(n){return V.test(n||"")||se.error("unsupported lang: "+n),n=n.replace(te,ne).toLowerCase(),function(e){var t;do{if(t=E?e.lang:e.getAttribute("xml:lang")||e.getAttribute("lang"))return(t=t.toLowerCase())===n||0===t.indexOf(n+"-")}while((e=e.parentNode)&&1===e.nodeType);return!1}}),target:function(e){var t=n.location&&n.location.hash;return t&&t.slice(1)===e.id},root:function(e){return e===a},focus:function(e){return e===C.activeElement&&(!C.hasFocus||C.hasFocus())&&!!(e.type||e.href||~e.tabIndex)},enabled:ge(!1),disabled:ge(!0),checked:function(e){var t=e.nodeName.toLowerCase();return"input"===t&&!!e.checked||"option"===t&&!!e.selected},selected:function(e){return e.parentNode&&e.parentNode.selectedIndex,!0===e.selected},empty:function(e){for(e=e.firstChild;e;e=e.nextSibling)if(e.nodeType<6)return!1;return!0},parent:function(e){return!b.pseudos.empty(e)},header:function(e){return J.test(e.nodeName)},input:function(e){return Q.test(e.nodeName)},button:function(e){var t=e.nodeName.toLowerCase();return"input"===t&&"button"===e.type||"button"===t},text:function(e){var t;return"input"===e.nodeName.toLowerCase()&&"text"===e.type&&(null==(t=e.getAttribute("type"))||"text"===t.toLowerCase())},first:ve(function(){return[0]}),last:ve(function(e,t){return[t-1]}),eq:ve(function(e,t,n){return[n<0?n+t:n]}),even:ve(function(e,t){for(var n=0;n<t;n+=2)e.push(n);return e}),odd:ve(function(e,t){for(var n=1;n<t;n+=2)e.push(n);return e}),lt:ve(function(e,t,n){for(var r=n<0?n+t:t<n?t:n;0<=--r;)e.push(r);return e}),gt:ve(function(e,t,n){for(var r=n<0?n+t:n;++r<t;)e.push(r);return e})}}).pseudos.nth=b.pseudos.eq,{radio:!0,checkbox:!0,file:!0,password:!0,image:!0})b.pseudos[e]=de(e);for(e in{submit:!0,reset:!0})b.pseudos[e]=he(e);function me(){}function xe(e){for(var t=0,n=e.length,r="";t<n;t++)r+=e[t].value;return r}function be(s,e,t){var u=e.dir,l=e.next,c=l||u,f=t&&"parentNode"===c,p=r++;return e.first?function(e,t,n){while(e=e[u])if(1===e.nodeType||f)return s(e,t,n);return!1}:function(e,t,n){var r,i,o,a=[k,p];if(n){while(e=e[u])if((1===e.nodeType||f)&&s(e,t,n))return!0}else while(e=e[u])if(1===e.nodeType||f)if(i=(o=e[S]||(e[S]={}))[e.uniqueID]||(o[e.uniqueID]={}),l&&l===e.nodeName.toLowerCase())e=e[u]||e;else{if((r=i[c])&&r[0]===k&&r[1]===p)return a[2]=r[2];if((i[c]=a)[2]=s(e,t,n))return!0}return!1}}function we(i){return 1<i.length?function(e,t,n){var r=i.length;while(r--)if(!i[r](e,t,n))return!1;return!0}:i[0]}function Te(e,t,n,r,i){for(var o,a=[],s=0,u=e.length,l=null!=t;s<u;s++)(o=e[s])&&(n&&!n(o,r,i)||(a.push(o),l&&t.push(s)));return a}function Ce(d,h,g,v,y,e){return v&&!v[S]&&(v=Ce(v)),y&&!y[S]&&(y=Ce(y,e)),le(function(e,t,n,r){var i,o,a,s=[],u=[],l=t.length,c=e||function(e,t,n){for(var r=0,i=t.length;r<i;r++)se(e,t[r],n);return n}(h||"*",n.nodeType?[n]:n,[]),f=!d||!e&&h?c:Te(c,s,d,n,r),p=g?y||(e?d:l||v)?[]:t:f;if(g&&g(f,p,n,r),v){i=Te(p,u),v(i,[],n,r),o=i.length;while(o--)(a=i[o])&&(p[u[o]]=!(f[u[o]]=a))}if(e){if(y||d){if(y){i=[],o=p.length;while(o--)(a=p[o])&&i.push(f[o]=a);y(null,p=[],i,r)}o=p.length;while(o--)(a=p[o])&&-1<(i=y?P(e,a):s[o])&&(e[i]=!(t[i]=a))}}else p=Te(p===t?p.splice(l,p.length):p),y?y(null,t,p,r):H.apply(t,p)})}function Ee(e){for(var i,t,n,r=e.length,o=b.relative[e[0].type],a=o||b.relative[" "],s=o?1:0,u=be(function(e){return e===i},a,!0),l=be(function(e){return-1<P(i,e)},a,!0),c=[function(e,t,n){var r=!o&&(n||t!==w)||((i=t).nodeType?u(e,t,n):l(e,t,n));return i=null,r}];s<r;s++)if(t=b.relative[e[s].type])c=[be(we(c),t)];else{if((t=b.filter[e[s].type].apply(null,e[s].matches))[S]){for(n=++s;n<r;n++)if(b.relative[e[n].type])break;return Ce(1<s&&we(c),1<s&&xe(e.slice(0,s-1).concat({value:" "===e[s-2].type?"*":""})).replace($,"$1"),t,s<n&&Ee(e.slice(s,n)),n<r&&Ee(e=e.slice(n)),n<r&&xe(e))}c.push(t)}return we(c)}return me.prototype=b.filters=b.pseudos,b.setFilters=new me,h=se.tokenize=function(e,t){var n,r,i,o,a,s,u,l=x[e+" "];if(l)return t?0:l.slice(0);a=e,s=[],u=b.preFilter;while(a){for(o in n&&!(r=_.exec(a))||(r&&(a=a.slice(r[0].length)||a),s.push(i=[])),n=!1,(r=z.exec(a))&&(n=r.shift(),i.push({value:n,type:r[0].replace($," ")}),a=a.slice(n.length)),b.filter)!(r=G[o].exec(a))||u[o]&&!(r=u[o](r))||(n=r.shift(),i.push({value:n,type:o,matches:r}),a=a.slice(n.length));if(!n)break}return t?a.length:a?se.error(e):x(e,s).slice(0)},f=se.compile=function(e,t){var n,v,y,m,x,r,i=[],o=[],a=A[e+" "];if(!a){t||(t=h(e)),n=t.length;while(n--)(a=Ee(t[n]))[S]?i.push(a):o.push(a);(a=A(e,(v=o,m=0<(y=i).length,x=0<v.length,r=function(e,t,n,r,i){var o,a,s,u=0,l="0",c=e&&[],f=[],p=w,d=e||x&&b.find.TAG("*",i),h=k+=null==p?1:Math.random()||.1,g=d.length;for(i&&(w=t==C||t||i);l!==g&&null!=(o=d[l]);l++){if(x&&o){a=0,t||o.ownerDocument==C||(T(o),n=!E);while(s=v[a++])if(s(o,t||C,n)){r.push(o);break}i&&(k=h)}m&&((o=!s&&o)&&u--,e&&c.push(o))}if(u+=l,m&&l!==u){a=0;while(s=y[a++])s(c,f,t,n);if(e){if(0<u)while(l--)c[l]||f[l]||(f[l]=q.call(r));f=Te(f)}H.apply(r,f),i&&!e&&0<f.length&&1<u+y.length&&se.uniqueSort(r)}return i&&(k=h,w=p),c},m?le(r):r))).selector=e}return a},g=se.select=function(e,t,n,r){var i,o,a,s,u,l="function"==typeof e&&e,c=!r&&h(e=l.selector||e);if(n=n||[],1===c.length){if(2<(o=c[0]=c[0].slice(0)).length&&"ID"===(a=o[0]).type&&9===t.nodeType&&E&&b.relative[o[1].type]){if(!(t=(b.find.ID(a.matches[0].replace(te,ne),t)||[])[0]))return n;l&&(t=t.parentNode),e=e.slice(o.shift().value.length)}i=G.needsContext.test(e)?0:o.length;while(i--){if(a=o[i],b.relative[s=a.type])break;if((u=b.find[s])&&(r=u(a.matches[0].replace(te,ne),ee.test(o[0].type)&&ye(t.parentNode)||t))){if(o.splice(i,1),!(e=r.length&&xe(o)))return H.apply(n,r),n;break}}}return(l||f(e,c))(r,t,!E,n,!t||ee.test(e)&&ye(t.parentNode)||t),n},d.sortStable=S.split("").sort(D).join("")===S,d.detectDuplicates=!!l,T(),d.sortDetached=ce(function(e){return 1&e.compareDocumentPosition(C.createElement("fieldset"))}),ce(function(e){return e.innerHTML="<a href='#'></a>","#"===e.firstChild.getAttribute("href")})||fe("type|href|height|width",function(e,t,n){if(!n)return e.getAttribute(t,"type"===t.toLowerCase()?1:2)}),d.attributes&&ce(function(e){return e.innerHTML="<input/>",e.firstChild.setAttribute("value",""),""===e.firstChild.getAttribute("value")})||fe("value",function(e,t,n){if(!n&&"input"===e.nodeName.toLowerCase())return e.defaultValue}),ce(function(e){return null==e.getAttribute("disabled")})||fe(R,function(e,t,n){var r;if(!n)return!0===e[t]?t.toLowerCase():(r=e.getAttributeNode(t))&&r.specified?r.value:null}),se}(C);S.find=d,S.expr=d.selectors,S.expr[":"]=S.expr.pseudos,S.uniqueSort=S.unique=d.uniqueSort,S.text=d.getText,S.isXMLDoc=d.isXML,S.contains=d.contains,S.escapeSelector=d.escape;var h=function(e,t,n){var r=[],i=void 0!==n;while((e=e[t])&&9!==e.nodeType)if(1===e.nodeType){if(i&&S(e).is(n))break;r.push(e)}return r},T=function(e,t){for(var n=[];e;e=e.nextSibling)1===e.nodeType&&e!==t&&n.push(e);return n},k=S.expr.match.needsContext;function A(e,t){return e.nodeName&&e.nodeName.toLowerCase()===t.toLowerCase()}var N=/^<([a-z][^\/\0>:\x20\t\r\n\f]*)[\x20\t\r\n\f]*\/?>(?:<\/\1>|)$/i;function D(e,n,r){return m(n)?S.grep(e,function(e,t){return!!n.call(e,t,e)!==r}):n.nodeType?S.grep(e,function(e){return e===n!==r}):"string"!=typeof n?S.grep(e,function(e){return-1<i.call(n,e)!==r}):S.filter(n,e,r)}S.filter=function(e,t,n){var r=t[0];return n&&(e=":not("+e+")"),1===t.length&&1===r.nodeType?S.find.matchesSelector(r,e)?[r]:[]:S.find.matches(e,S.grep(t,function(e){return 1===e.nodeType}))},S.fn.extend({find:function(e){var t,n,r=this.length,i=this;if("string"!=typeof e)return this.pushStack(S(e).filter(function(){for(t=0;t<r;t++)if(S.contains(i[t],this))return!0}));for(n=this.pushStack([]),t=0;t<r;t++)S.find(e,i[t],n);return 1<r?S.uniqueSort(n):n},filter:function(e){return this.pushStack(D(this,e||[],!1))},not:function(e){return this.pushStack(D(this,e||[],!0))},is:function(e){return!!D(this,"string"==typeof e&&k.test(e)?S(e):e||[],!1).length}});var j,q=/^(?:\s*(<[\w\W]+>)[^>]*|#([\w-]+))$/;(S.fn.init=function(e,t,n){var r,i;if(!e)return this;if(n=n||j,"string"==typeof e){if(!(r="<"===e[0]&&">"===e[e.length-1]&&3<=e.length?[null,e,null]:q.exec(e))||!r[1]&&t)return!t||t.jquery?(t||n).find(e):this.constructor(t).find(e);if(r[1]){if(t=t instanceof S?t[0]:t,S.merge(this,S.parseHTML(r[1],t&&t.nodeType?t.ownerDocument||t:E,!0)),N.test(r[1])&&S.isPlainObject(t))for(r in t)m(this[r])?this[r](t[r]):this.attr(r,t[r]);return this}return(i=E.getElementById(r[2]))&&(this[0]=i,this.length=1),this}return e.nodeType?(this[0]=e,this.length=1,this):m(e)?void 0!==n.ready?n.ready(e):e(S):S.makeArray(e,this)}).prototype=S.fn,j=S(E);var L=/^(?:parents|prev(?:Until|All))/,H={children:!0,contents:!0,next:!0,prev:!0};function O(e,t){while((e=e[t])&&1!==e.nodeType);return e}S.fn.extend({has:function(e){var t=S(e,this),n=t.length;return this.filter(function(){for(var e=0;e<n;e++)if(S.contains(this,t[e]))return!0})},closest:function(e,t){var n,r=0,i=this.length,o=[],a="string"!=typeof e&&S(e);if(!k.test(e))for(;r<i;r++)for(n=this[r];n&&n!==t;n=n.parentNode)if(n.nodeType<11&&(a?-1<a.index(n):1===n.nodeType&&S.find.matchesSelector(n,e))){o.push(n);break}return this.pushStack(1<o.length?S.uniqueSort(o):o)},index:function(e){return e?"string"==typeof e?i.call(S(e),this[0]):i.call(this,e.jquery?e[0]:e):this[0]&&this[0].parentNode?this.first().prevAll().length:-1},add:function(e,t){return this.pushStack(S.uniqueSort(S.merge(this.get(),S(e,t))))},addBack:function(e){return this.add(null==e?this.prevObject:this.prevObject.filter(e))}}),S.each({parent:function(e){var t=e.parentNode;return t&&11!==t.nodeType?t:null},parents:function(e){return h(e,"parentNode")},parentsUntil:function(e,t,n){return h(e,"parentNode",n)},next:function(e){return O(e,"nextSibling")},prev:function(e){return O(e,"previousSibling")},nextAll:function(e){return h(e,"nextSibling")},prevAll:function(e){return h(e,"previousSibling")},nextUntil:function(e,t,n){return h(e,"nextSibling",n)},prevUntil:function(e,t,n){return h(e,"previousSibling",n)},siblings:function(e){return T((e.parentNode||{}).firstChild,e)},children:function(e){return T(e.firstChild)},contents:function(e){return null!=e.contentDocument&&r(e.contentDocument)?e.contentDocument:(A(e,"template")&&(e=e.content||e),S.merge([],e.childNodes))}},function(r,i){S.fn[r]=function(e,t){var n=S.map(this,i,e);return"Until"!==r.slice(-5)&&(t=e),t&&"string"==typeof t&&(n=S.filter(t,n)),1<this.length&&(H[r]||S.uniqueSort(n),L.test(r)&&n.reverse()),this.pushStack(n)}});var P=/[^\x20\t\r\n\f]+/g;function R(e){return e}function M(e){throw e}function I(e,t,n,r){var i;try{e&&m(i=e.promise)?i.call(e).done(t).fail(n):e&&m(i=e.then)?i.call(e,t,n):t.apply(void 0,[e].slice(r))}catch(e){n.apply(void 0,[e])}}S.Callbacks=function(r){var e,n;r="string"==typeof r?(e=r,n={},S.each(e.match(P)||[],function(e,t){n[t]=!0}),n):S.extend({},r);var i,t,o,a,s=[],u=[],l=-1,c=function(){for(a=a||r.once,o=i=!0;u.length;l=-1){t=u.shift();while(++l<s.length)!1===s[l].apply(t[0],t[1])&&r.stopOnFalse&&(l=s.length,t=!1)}r.memory||(t=!1),i=!1,a&&(s=t?[]:"")},f={add:function(){return s&&(t&&!i&&(l=s.length-1,u.push(t)),function n(e){S.each(e,function(e,t){m(t)?r.unique&&f.has(t)||s.push(t):t&&t.length&&"string"!==w(t)&&n(t)})}(arguments),t&&!i&&c()),this},remove:function(){return S.each(arguments,function(e,t){var n;while(-1<(n=S.inArray(t,s,n)))s.splice(n,1),n<=l&&l--}),this},has:function(e){return e?-1<S.inArray(e,s):0<s.length},empty:function(){return s&&(s=[]),this},disable:function(){return a=u=[],s=t="",this},disabled:function(){return!s},lock:function(){return a=u=[],t||i||(s=t=""),this},locked:function(){return!!a},fireWith:function(e,t){return a||(t=[e,(t=t||[]).slice?t.slice():t],u.push(t),i||c()),this},fire:function(){return f.fireWith(this,arguments),this},fired:function(){return!!o}};return f},S.extend({Deferred:function(e){var o=[["notify","progress",S.Callbacks("memory"),S.Callbacks("memory"),2],["resolve","done",S.Callbacks("once memory"),S.Callbacks("once memory"),0,"resolved"],["reject","fail",S.Callbacks("once memory"),S.Callbacks("once memory"),1,"rejected"]],i="pending",a={state:function(){return i},always:function(){return s.done(arguments).fail(arguments),this},"catch":function(e){return a.then(null,e)},pipe:function(){var i=arguments;return S.Deferred(function(r){S.each(o,function(e,t){var n=m(i[t[4]])&&i[t[4]];s[t[1]](function(){var e=n&&n.apply(this,arguments);e&&m(e.promise)?e.promise().progress(r.notify).done(r.resolve).fail(r.reject):r[t[0]+"With"](this,n?[e]:arguments)})}),i=null}).promise()},then:function(t,n,r){var u=0;function l(i,o,a,s){return function(){var n=this,r=arguments,e=function(){var e,t;if(!(i<u)){if((e=a.apply(n,r))===o.promise())throw new TypeError("Thenable self-resolution");t=e&&("object"==typeof e||"function"==typeof e)&&e.then,m(t)?s?t.call(e,l(u,o,R,s),l(u,o,M,s)):(u++,t.call(e,l(u,o,R,s),l(u,o,M,s),l(u,o,R,o.notifyWith))):(a!==R&&(n=void 0,r=[e]),(s||o.resolveWith)(n,r))}},t=s?e:function(){try{e()}catch(e){S.Deferred.exceptionHook&&S.Deferred.exceptionHook(e,t.stackTrace),u<=i+1&&(a!==M&&(n=void 0,r=[e]),o.rejectWith(n,r))}};i?t():(S.Deferred.getStackHook&&(t.stackTrace=S.Deferred.getStackHook()),C.setTimeout(t))}}return S.Deferred(function(e){o[0][3].add(l(0,e,m(r)?r:R,e.notifyWith)),o[1][3].add(l(0,e,m(t)?t:R)),o[2][3].add(l(0,e,m(n)?n:M))}).promise()},promise:function(e){return null!=e?S.extend(e,a):a}},s={};return S.each(o,function(e,t){var n=t[2],r=t[5];a[t[1]]=n.add,r&&n.add(function(){i=r},o[3-e][2].disable,o[3-e][3].disable,o[0][2].lock,o[0][3].lock),n.add(t[3].fire),s[t[0]]=function(){return s[t[0]+"With"](this===s?void 0:this,arguments),this},s[t[0]+"With"]=n.fireWith}),a.promise(s),e&&e.call(s,s),s},when:function(e){var n=arguments.length,t=n,r=Array(t),i=s.call(arguments),o=S.Deferred(),a=function(t){return function(e){r[t]=this,i[t]=1<arguments.length?s.call(arguments):e,--n||o.resolveWith(r,i)}};if(n<=1&&(I(e,o.done(a(t)).resolve,o.reject,!n),"pending"===o.state()||m(i[t]&&i[t].then)))return o.then();while(t--)I(i[t],a(t),o.reject);return o.promise()}});var W=/^(Eval|Internal|Range|Reference|Syntax|Type|URI)Error$/;S.Deferred.exceptionHook=function(e,t){C.console&&C.console.warn&&e&&W.test(e.name)&&C.console.warn("jQuery.Deferred exception: "+e.message,e.stack,t)},S.readyException=function(e){C.setTimeout(function(){throw e})};var F=S.Deferred();function B(){E.removeEventListener("DOMContentLoaded",B),C.removeEventListener("load",B),S.ready()}S.fn.ready=function(e){return F.then(e)["catch"](function(e){S.readyException(e)}),this},S.extend({isReady:!1,readyWait:1,ready:function(e){(!0===e?--S.readyWait:S.isReady)||(S.isReady=!0)!==e&&0<--S.readyWait||F.resolveWith(E,[S])}}),S.ready.then=F.then,"complete"===E.readyState||"loading"!==E.readyState&&!E.documentElement.doScroll?C.setTimeout(S.ready):(E.addEventListener("DOMContentLoaded",B),C.addEventListener("load",B));var $=function(e,t,n,r,i,o,a){var s=0,u=e.length,l=null==n;if("object"===w(n))for(s in i=!0,n)$(e,t,s,n[s],!0,o,a);else if(void 0!==r&&(i=!0,m(r)||(a=!0),l&&(a?(t.call(e,r),t=null):(l=t,t=function(e,t,n){return l.call(S(e),n)})),t))for(;s<u;s++)t(e[s],n,a?r:r.call(e[s],s,t(e[s],n)));return i?e:l?t.call(e):u?t(e[0],n):o},_=/^-ms-/,z=/-([a-z])/g;function U(e,t){return t.toUpperCase()}function X(e){return e.replace(_,"ms-").replace(z,U)}var V=function(e){return 1===e.nodeType||9===e.nodeType||!+e.nodeType};function G(){this.expando=S.expando+G.uid++}G.uid=1,G.prototype={cache:function(e){var t=e[this.expando];return t||(t={},V(e)&&(e.nodeType?e[this.expando]=t:Object.defineProperty(e,this.expando,{value:t,configurable:!0}))),t},set:function(e,t,n){var r,i=this.cache(e);if("string"==typeof t)i[X(t)]=n;else for(r in t)i[X(r)]=t[r];return i},get:function(e,t){return void 0===t?this.cache(e):e[this.expando]&&e[this.expando][X(t)]},access:function(e,t,n){return void 0===t||t&&"string"==typeof t&&void 0===n?this.get(e,t):(this.set(e,t,n),void 0!==n?n:t)},remove:function(e,t){var n,r=e[this.expando];if(void 0!==r){if(void 0!==t){n=(t=Array.isArray(t)?t.map(X):(t=X(t))in r?[t]:t.match(P)||[]).length;while(n--)delete r[t[n]]}(void 0===t||S.isEmptyObject(r))&&(e.nodeType?e[this.expando]=void 0:delete e[this.expando])}},hasData:function(e){var t=e[this.expando];return void 0!==t&&!S.isEmptyObject(t)}};var Y=new G,Q=new G,J=/^(?:\{[\w\W]*\}|\[[\w\W]*\])$/,K=/[A-Z]/g;function Z(e,t,n){var r,i;if(void 0===n&&1===e.nodeType)if(r="data-"+t.replace(K,"-$&").toLowerCase(),"string"==typeof(n=e.getAttribute(r))){try{n="true"===(i=n)||"false"!==i&&("null"===i?null:i===+i+""?+i:J.test(i)?JSON.parse(i):i)}catch(e){}Q.set(e,t,n)}else n=void 0;return n}S.extend({hasData:function(e){return Q.hasData(e)||Y.hasData(e)},data:function(e,t,n){return Q.access(e,t,n)},removeData:function(e,t){Q.remove(e,t)},_data:function(e,t,n){return Y.access(e,t,n)},_removeData:function(e,t){Y.remove(e,t)}}),S.fn.extend({data:function(n,e){var t,r,i,o=this[0],a=o&&o.attributes;if(void 0===n){if(this.length&&(i=Q.get(o),1===o.nodeType&&!Y.get(o,"hasDataAttrs"))){t=a.length;while(t--)a[t]&&0===(r=a[t].name).indexOf("data-")&&(r=X(r.slice(5)),Z(o,r,i[r]));Y.set(o,"hasDataAttrs",!0)}return i}return"object"==typeof n?this.each(function(){Q.set(this,n)}):$(this,function(e){var t;if(o&&void 0===e)return void 0!==(t=Q.get(o,n))?t:void 0!==(t=Z(o,n))?t:void 0;this.each(function(){Q.set(this,n,e)})},null,e,1<arguments.length,null,!0)},removeData:function(e){return this.each(function(){Q.remove(this,e)})}}),S.extend({queue:function(e,t,n){var r;if(e)return t=(t||"fx")+"queue",r=Y.get(e,t),n&&(!r||Array.isArray(n)?r=Y.access(e,t,S.makeArray(n)):r.push(n)),r||[]},dequeue:function(e,t){t=t||"fx";var n=S.queue(e,t),r=n.length,i=n.shift(),o=S._queueHooks(e,t);"inprogress"===i&&(i=n.shift(),r--),i&&("fx"===t&&n.unshift("inprogress"),delete o.stop,i.call(e,function(){S.dequeue(e,t)},o)),!r&&o&&o.empty.fire()},_queueHooks:function(e,t){var n=t+"queueHooks";return Y.get(e,n)||Y.access(e,n,{empty:S.Callbacks("once memory").add(function(){Y.remove(e,[t+"queue",n])})})}}),S.fn.extend({queue:function(t,n){var e=2;return"string"!=typeof t&&(n=t,t="fx",e--),arguments.length<e?S.queue(this[0],t):void 0===n?this:this.each(function(){var e=S.queue(this,t,n);S._queueHooks(this,t),"fx"===t&&"inprogress"!==e[0]&&S.dequeue(this,t)})},dequeue:function(e){return this.each(function(){S.dequeue(this,e)})},clearQueue:function(e){return this.queue(e||"fx",[])},promise:function(e,t){var n,r=1,i=S.Deferred(),o=this,a=this.length,s=function(){--r||i.resolveWith(o,[o])};"string"!=typeof e&&(t=e,e=void 0),e=e||"fx";while(a--)(n=Y.get(o[a],e+"queueHooks"))&&n.empty&&(r++,n.empty.add(s));return s(),i.promise(t)}});var ee=/[+-]?(?:\d*\.|)\d+(?:[eE][+-]?\d+|)/.source,te=new RegExp("^(?:([+-])=|)("+ee+")([a-z%]*)$","i"),ne=["Top","Right","Bottom","Left"],re=E.documentElement,ie=function(e){return S.contains(e.ownerDocument,e)},oe={composed:!0};re.getRootNode&&(ie=function(e){return S.contains(e.ownerDocument,e)||e.getRootNode(oe)===e.ownerDocument});var ae=function(e,t){return"none"===(e=t||e).style.display||""===e.style.display&&ie(e)&&"none"===S.css(e,"display")};function se(e,t,n,r){var i,o,a=20,s=r?function(){return r.cur()}:function(){return S.css(e,t,"")},u=s(),l=n&&n[3]||(S.cssNumber[t]?"":"px"),c=e.nodeType&&(S.cssNumber[t]||"px"!==l&&+u)&&te.exec(S.css(e,t));if(c&&c[3]!==l){u/=2,l=l||c[3],c=+u||1;while(a--)S.style(e,t,c+l),(1-o)*(1-(o=s()/u||.5))<=0&&(a=0),c/=o;c*=2,S.style(e,t,c+l),n=n||[]}return n&&(c=+c||+u||0,i=n[1]?c+(n[1]+1)*n[2]:+n[2],r&&(r.unit=l,r.start=c,r.end=i)),i}var ue={};function le(e,t){for(var n,r,i,o,a,s,u,l=[],c=0,f=e.length;c<f;c++)(r=e[c]).style&&(n=r.style.display,t?("none"===n&&(l[c]=Y.get(r,"display")||null,l[c]||(r.style.display="")),""===r.style.display&&ae(r)&&(l[c]=(u=a=o=void 0,a=(i=r).ownerDocument,s=i.nodeName,(u=ue[s])||(o=a.body.appendChild(a.createElement(s)),u=S.css(o,"display"),o.parentNode.removeChild(o),"none"===u&&(u="block"),ue[s]=u)))):"none"!==n&&(l[c]="none",Y.set(r,"display",n)));for(c=0;c<f;c++)null!=l[c]&&(e[c].style.display=l[c]);return e}S.fn.extend({show:function(){return le(this,!0)},hide:function(){return le(this)},toggle:function(e){return"boolean"==typeof e?e?this.show():this.hide():this.each(function(){ae(this)?S(this).show():S(this).hide()})}});var ce,fe,pe=/^(?:checkbox|radio)$/i,de=/<([a-z][^\/\0>\x20\t\r\n\f]*)/i,he=/^$|^module$|\/(?:java|ecma)script/i;ce=E.createDocumentFragment().appendChild(E.createElement("div")),(fe=E.createElement("input")).setAttribute("type","radio"),fe.setAttribute("checked","checked"),fe.setAttribute("name","t"),ce.appendChild(fe),y.checkClone=ce.cloneNode(!0).cloneNode(!0).lastChild.checked,ce.innerHTML="<textarea>x</textarea>",y.noCloneChecked=!!ce.cloneNode(!0).lastChild.defaultValue,ce.innerHTML="<option></option>",y.option=!!ce.lastChild;var ge={thead:[1,"<table>","</table>"],col:[2,"<table><colgroup>","</colgroup></table>"],tr:[2,"<table><tbody>","</tbody></table>"],td:[3,"<table><tbody><tr>","</tr></tbody></table>"],_default:[0,"",""]};function ve(e,t){var n;return n="undefined"!=typeof e.getElementsByTagName?e.getElementsByTagName(t||"*"):"undefined"!=typeof e.querySelectorAll?e.querySelectorAll(t||"*"):[],void 0===t||t&&A(e,t)?S.merge([e],n):n}function ye(e,t){for(var n=0,r=e.length;n<r;n++)Y.set(e[n],"globalEval",!t||Y.get(t[n],"globalEval"))}ge.tbody=ge.tfoot=ge.colgroup=ge.caption=ge.thead,ge.th=ge.td,y.option||(ge.optgroup=ge.option=[1,"<select multiple='multiple'>","</select>"]);var me=/<|&#?\w+;/;function xe(e,t,n,r,i){for(var o,a,s,u,l,c,f=t.createDocumentFragment(),p=[],d=0,h=e.length;d<h;d++)if((o=e[d])||0===o)if("object"===w(o))S.merge(p,o.nodeType?[o]:o);else if(me.test(o)){a=a||f.appendChild(t.createElement("div")),s=(de.exec(o)||["",""])[1].toLowerCase(),u=ge[s]||ge._default,a.innerHTML=u[1]+S.htmlPrefilter(o)+u[2],c=u[0];while(c--)a=a.lastChild;S.merge(p,a.childNodes),(a=f.firstChild).textContent=""}else p.push(t.createTextNode(o));f.textContent="",d=0;while(o=p[d++])if(r&&-1<S.inArray(o,r))i&&i.push(o);else if(l=ie(o),a=ve(f.appendChild(o),"script"),l&&ye(a),n){c=0;while(o=a[c++])he.test(o.type||"")&&n.push(o)}return f}var be=/^key/,we=/^(?:mouse|pointer|contextmenu|drag|drop)|click/,Te=/^([^.]*)(?:\.(.+)|)/;function Ce(){return!0}function Ee(){return!1}function Se(e,t){return e===function(){try{return E.activeElement}catch(e){}}()==("focus"===t)}function ke(e,t,n,r,i,o){var a,s;if("object"==typeof t){for(s in"string"!=typeof n&&(r=r||n,n=void 0),t)ke(e,s,n,r,t[s],o);return e}if(null==r&&null==i?(i=n,r=n=void 0):null==i&&("string"==typeof n?(i=r,r=void 0):(i=r,r=n,n=void 0)),!1===i)i=Ee;else if(!i)return e;return 1===o&&(a=i,(i=function(e){return S().off(e),a.apply(this,arguments)}).guid=a.guid||(a.guid=S.guid++)),e.each(function(){S.event.add(this,t,i,r,n)})}function Ae(e,i,o){o?(Y.set(e,i,!1),S.event.add(e,i,{namespace:!1,handler:function(e){var t,n,r=Y.get(this,i);if(1&e.isTrigger&&this[i]){if(r.length)(S.event.special[i]||{}).delegateType&&e.stopPropagation();else if(r=s.call(arguments),Y.set(this,i,r),t=o(this,i),this[i](),r!==(n=Y.get(this,i))||t?Y.set(this,i,!1):n={},r!==n)return e.stopImmediatePropagation(),e.preventDefault(),n.value}else r.length&&(Y.set(this,i,{value:S.event.trigger(S.extend(r[0],S.Event.prototype),r.slice(1),this)}),e.stopImmediatePropagation())}})):void 0===Y.get(e,i)&&S.event.add(e,i,Ce)}S.event={global:{},add:function(t,e,n,r,i){var o,a,s,u,l,c,f,p,d,h,g,v=Y.get(t);if(V(t)){n.handler&&(n=(o=n).handler,i=o.selector),i&&S.find.matchesSelector(re,i),n.guid||(n.guid=S.guid++),(u=v.events)||(u=v.events=Object.create(null)),(a=v.handle)||(a=v.handle=function(e){return"undefined"!=typeof S&&S.event.triggered!==e.type?S.event.dispatch.apply(t,arguments):void 0}),l=(e=(e||"").match(P)||[""]).length;while(l--)d=g=(s=Te.exec(e[l])||[])[1],h=(s[2]||"").split(".").sort(),d&&(f=S.event.special[d]||{},d=(i?f.delegateType:f.bindType)||d,f=S.event.special[d]||{},c=S.extend({type:d,origType:g,data:r,handler:n,guid:n.guid,selector:i,needsContext:i&&S.expr.match.needsContext.test(i),namespace:h.join(".")},o),(p=u[d])||((p=u[d]=[]).delegateCount=0,f.setup&&!1!==f.setup.call(t,r,h,a)||t.addEventListener&&t.addEventListener(d,a)),f.add&&(f.add.call(t,c),c.handler.guid||(c.handler.guid=n.guid)),i?p.splice(p.delegateCount++,0,c):p.push(c),S.event.global[d]=!0)}},remove:function(e,t,n,r,i){var o,a,s,u,l,c,f,p,d,h,g,v=Y.hasData(e)&&Y.get(e);if(v&&(u=v.events)){l=(t=(t||"").match(P)||[""]).length;while(l--)if(d=g=(s=Te.exec(t[l])||[])[1],h=(s[2]||"").split(".").sort(),d){f=S.event.special[d]||{},p=u[d=(r?f.delegateType:f.bindType)||d]||[],s=s[2]&&new RegExp("(^|\\.)"+h.join("\\.(?:.*\\.|)")+"(\\.|$)"),a=o=p.length;while(o--)c=p[o],!i&&g!==c.origType||n&&n.guid!==c.guid||s&&!s.test(c.namespace)||r&&r!==c.selector&&("**"!==r||!c.selector)||(p.splice(o,1),c.selector&&p.delegateCount--,f.remove&&f.remove.call(e,c));a&&!p.length&&(f.teardown&&!1!==f.teardown.call(e,h,v.handle)||S.removeEvent(e,d,v.handle),delete u[d])}else for(d in u)S.event.remove(e,d+t[l],n,r,!0);S.isEmptyObject(u)&&Y.remove(e,"handle events")}},dispatch:function(e){var t,n,r,i,o,a,s=new Array(arguments.length),u=S.event.fix(e),l=(Y.get(this,"events")||Object.create(null))[u.type]||[],c=S.event.special[u.type]||{};for(s[0]=u,t=1;t<arguments.length;t++)s[t]=arguments[t];if(u.delegateTarget=this,!c.preDispatch||!1!==c.preDispatch.call(this,u)){a=S.event.handlers.call(this,u,l),t=0;while((i=a[t++])&&!u.isPropagationStopped()){u.currentTarget=i.elem,n=0;while((o=i.handlers[n++])&&!u.isImmediatePropagationStopped())u.rnamespace&&!1!==o.namespace&&!u.rnamespace.test(o.namespace)||(u.handleObj=o,u.data=o.data,void 0!==(r=((S.event.special[o.origType]||{}).handle||o.handler).apply(i.elem,s))&&!1===(u.result=r)&&(u.preventDefault(),u.stopPropagation()))}return c.postDispatch&&c.postDispatch.call(this,u),u.result}},handlers:function(e,t){var n,r,i,o,a,s=[],u=t.delegateCount,l=e.target;if(u&&l.nodeType&&!("click"===e.type&&1<=e.button))for(;l!==this;l=l.parentNode||this)if(1===l.nodeType&&("click"!==e.type||!0!==l.disabled)){for(o=[],a={},n=0;n<u;n++)void 0===a[i=(r=t[n]).selector+" "]&&(a[i]=r.needsContext?-1<S(i,this).index(l):S.find(i,this,null,[l]).length),a[i]&&o.push(r);o.length&&s.push({elem:l,handlers:o})}return l=this,u<t.length&&s.push({elem:l,handlers:t.slice(u)}),s},addProp:function(t,e){Object.defineProperty(S.Event.prototype,t,{enumerable:!0,configurable:!0,get:m(e)?function(){if(this.originalEvent)return e(this.originalEvent)}:function(){if(this.originalEvent)return this.originalEvent[t]},set:function(e){Object.defineProperty(this,t,{enumerable:!0,configurable:!0,writable:!0,value:e})}})},fix:function(e){return e[S.expando]?e:new S.Event(e)},special:{load:{noBubble:!0},click:{setup:function(e){var t=this||e;return pe.test(t.type)&&t.click&&A(t,"input")&&Ae(t,"click",Ce),!1},trigger:function(e){var t=this||e;return pe.test(t.type)&&t.click&&A(t,"input")&&Ae(t,"click"),!0},_default:function(e){var t=e.target;return pe.test(t.type)&&t.click&&A(t,"input")&&Y.get(t,"click")||A(t,"a")}},beforeunload:{postDispatch:function(e){void 0!==e.result&&e.originalEvent&&(e.originalEvent.returnValue=e.result)}}}},S.removeEvent=function(e,t,n){e.removeEventListener&&e.removeEventListener(t,n)},S.Event=function(e,t){if(!(this instanceof S.Event))return new S.Event(e,t);e&&e.type?(this.originalEvent=e,this.type=e.type,this.isDefaultPrevented=e.defaultPrevented||void 0===e.defaultPrevented&&!1===e.returnValue?Ce:Ee,this.target=e.target&&3===e.target.nodeType?e.target.parentNode:e.target,this.currentTarget=e.currentTarget,this.relatedTarget=e.relatedTarget):this.type=e,t&&S.extend(this,t),this.timeStamp=e&&e.timeStamp||Date.now(),this[S.expando]=!0},S.Event.prototype={constructor:S.Event,isDefaultPrevented:Ee,isPropagationStopped:Ee,isImmediatePropagationStopped:Ee,isSimulated:!1,preventDefault:function(){var e=this.originalEvent;this.isDefaultPrevented=Ce,e&&!this.isSimulated&&e.preventDefault()},stopPropagation:function(){var e=this.originalEvent;this.isPropagationStopped=Ce,e&&!this.isSimulated&&e.stopPropagation()},stopImmediatePropagation:function(){var e=this.originalEvent;this.isImmediatePropagationStopped=Ce,e&&!this.isSimulated&&e.stopImmediatePropagation(),this.stopPropagation()}},S.each({altKey:!0,bubbles:!0,cancelable:!0,changedTouches:!0,ctrlKey:!0,detail:!0,eventPhase:!0,metaKey:!0,pageX:!0,pageY:!0,shiftKey:!0,view:!0,"char":!0,code:!0,charCode:!0,key:!0,keyCode:!0,button:!0,buttons:!0,clientX:!0,clientY:!0,offsetX:!0,offsetY:!0,pointerId:!0,pointerType:!0,screenX:!0,screenY:!0,targetTouches:!0,toElement:!0,touches:!0,which:function(e){var t=e.button;return null==e.which&&be.test(e.type)?null!=e.charCode?e.charCode:e.keyCode:!e.which&&void 0!==t&&we.test(e.type)?1&t?1:2&t?3:4&t?2:0:e.which}},S.event.addProp),S.each({focus:"focusin",blur:"focusout"},function(e,t){S.event.special[e]={setup:function(){return Ae(this,e,Se),!1},trigger:function(){return Ae(this,e),!0},delegateType:t}}),S.each({mouseenter:"mouseover",mouseleave:"mouseout",pointerenter:"pointerover",pointerleave:"pointerout"},function(e,i){S.event.special[e]={delegateType:i,bindType:i,handle:function(e){var t,n=e.relatedTarget,r=e.handleObj;return n&&(n===this||S.contains(this,n))||(e.type=r.origType,t=r.handler.apply(this,arguments),e.type=i),t}}}),S.fn.extend({on:function(e,t,n,r){return ke(this,e,t,n,r)},one:function(e,t,n,r){return ke(this,e,t,n,r,1)},off:function(e,t,n){var r,i;if(e&&e.preventDefault&&e.handleObj)return r=e.handleObj,S(e.delegateTarget).off(r.namespace?r.origType+"."+r.namespace:r.origType,r.selector,r.handler),this;if("object"==typeof e){for(i in e)this.off(i,t,e[i]);return this}return!1!==t&&"function"!=typeof t||(n=t,t=void 0),!1===n&&(n=Ee),this.each(function(){S.event.remove(this,e,n,t)})}});var Ne=/<script|<style|<link/i,De=/checked\s*(?:[^=]|=\s*.checked.)/i,je=/^\s*<!(?:\[CDATA\[|--)|(?:\]\]|--)>\s*$/g;function qe(e,t){return A(e,"table")&&A(11!==t.nodeType?t:t.firstChild,"tr")&&S(e).children("tbody")[0]||e}function Le(e){return e.type=(null!==e.getAttribute("type"))+"/"+e.type,e}function He(e){return"true/"===(e.type||"").slice(0,5)?e.type=e.type.slice(5):e.removeAttribute("type"),e}function Oe(e,t){var n,r,i,o,a,s;if(1===t.nodeType){if(Y.hasData(e)&&(s=Y.get(e).events))for(i in Y.remove(t,"handle events"),s)for(n=0,r=s[i].length;n<r;n++)S.event.add(t,i,s[i][n]);Q.hasData(e)&&(o=Q.access(e),a=S.extend({},o),Q.set(t,a))}}function Pe(n,r,i,o){r=g(r);var e,t,a,s,u,l,c=0,f=n.length,p=f-1,d=r[0],h=m(d);if(h||1<f&&"string"==typeof d&&!y.checkClone&&De.test(d))return n.each(function(e){var t=n.eq(e);h&&(r[0]=d.call(this,e,t.html())),Pe(t,r,i,o)});if(f&&(t=(e=xe(r,n[0].ownerDocument,!1,n,o)).firstChild,1===e.childNodes.length&&(e=t),t||o)){for(s=(a=S.map(ve(e,"script"),Le)).length;c<f;c++)u=e,c!==p&&(u=S.clone(u,!0,!0),s&&S.merge(a,ve(u,"script"))),i.call(n[c],u,c);if(s)for(l=a[a.length-1].ownerDocument,S.map(a,He),c=0;c<s;c++)u=a[c],he.test(u.type||"")&&!Y.access(u,"globalEval")&&S.contains(l,u)&&(u.src&&"module"!==(u.type||"").toLowerCase()?S._evalUrl&&!u.noModule&&S._evalUrl(u.src,{nonce:u.nonce||u.getAttribute("nonce")},l):b(u.textContent.replace(je,""),u,l))}return n}function Re(e,t,n){for(var r,i=t?S.filter(t,e):e,o=0;null!=(r=i[o]);o++)n||1!==r.nodeType||S.cleanData(ve(r)),r.parentNode&&(n&&ie(r)&&ye(ve(r,"script")),r.parentNode.removeChild(r));return e}S.extend({htmlPrefilter:function(e){return e},clone:function(e,t,n){var r,i,o,a,s,u,l,c=e.cloneNode(!0),f=ie(e);if(!(y.noCloneChecked||1!==e.nodeType&&11!==e.nodeType||S.isXMLDoc(e)))for(a=ve(c),r=0,i=(o=ve(e)).length;r<i;r++)s=o[r],u=a[r],void 0,"input"===(l=u.nodeName.toLowerCase())&&pe.test(s.type)?u.checked=s.checked:"input"!==l&&"textarea"!==l||(u.defaultValue=s.defaultValue);if(t)if(n)for(o=o||ve(e),a=a||ve(c),r=0,i=o.length;r<i;r++)Oe(o[r],a[r]);else Oe(e,c);return 0<(a=ve(c,"script")).length&&ye(a,!f&&ve(e,"script")),c},cleanData:function(e){for(var t,n,r,i=S.event.special,o=0;void 0!==(n=e[o]);o++)if(V(n)){if(t=n[Y.expando]){if(t.events)for(r in t.events)i[r]?S.event.remove(n,r):S.removeEvent(n,r,t.handle);n[Y.expando]=void 0}n[Q.expando]&&(n[Q.expando]=void 0)}}}),S.fn.extend({detach:function(e){return Re(this,e,!0)},remove:function(e){return Re(this,e)},text:function(e){return $(this,function(e){return void 0===e?S.text(this):this.empty().each(function(){1!==this.nodeType&&11!==this.nodeType&&9!==this.nodeType||(this.textContent=e)})},null,e,arguments.length)},append:function(){return Pe(this,arguments,function(e){1!==this.nodeType&&11!==this.nodeType&&9!==this.nodeType||qe(this,e).appendChild(e)})},prepend:function(){return Pe(this,arguments,function(e){if(1===this.nodeType||11===this.nodeType||9===this.nodeType){var t=qe(this,e);t.insertBefore(e,t.firstChild)}})},before:function(){return Pe(this,arguments,function(e){this.parentNode&&this.parentNode.insertBefore(e,this)})},after:function(){return Pe(this,arguments,function(e){this.parentNode&&this.parentNode.insertBefore(e,this.nextSibling)})},empty:function(){for(var e,t=0;null!=(e=this[t]);t++)1===e.nodeType&&(S.cleanData(ve(e,!1)),e.textContent="");return this},clone:function(e,t){return e=null!=e&&e,t=null==t?e:t,this.map(function(){return S.clone(this,e,t)})},html:function(e){return $(this,function(e){var t=this[0]||{},n=0,r=this.length;if(void 0===e&&1===t.nodeType)return t.innerHTML;if("string"==typeof e&&!Ne.test(e)&&!ge[(de.exec(e)||["",""])[1].toLowerCase()]){e=S.htmlPrefilter(e);try{for(;n<r;n++)1===(t=this[n]||{}).nodeType&&(S.cleanData(ve(t,!1)),t.innerHTML=e);t=0}catch(e){}}t&&this.empty().append(e)},null,e,arguments.length)},replaceWith:function(){var n=[];return Pe(this,arguments,function(e){var t=this.parentNode;S.inArray(this,n)<0&&(S.cleanData(ve(this)),t&&t.replaceChild(e,this))},n)}}),S.each({appendTo:"append",prependTo:"prepend",insertBefore:"before",insertAfter:"after",replaceAll:"replaceWith"},function(e,a){S.fn[e]=function(e){for(var t,n=[],r=S(e),i=r.length-1,o=0;o<=i;o++)t=o===i?this:this.clone(!0),S(r[o])[a](t),u.apply(n,t.get());return this.pushStack(n)}});var Me=new RegExp("^("+ee+")(?!px)[a-z%]+$","i"),Ie=function(e){var t=e.ownerDocument.defaultView;return t&&t.opener||(t=C),t.getComputedStyle(e)},We=function(e,t,n){var r,i,o={};for(i in t)o[i]=e.style[i],e.style[i]=t[i];for(i in r=n.call(e),t)e.style[i]=o[i];return r},Fe=new RegExp(ne.join("|"),"i");function Be(e,t,n){var r,i,o,a,s=e.style;return(n=n||Ie(e))&&(""!==(a=n.getPropertyValue(t)||n[t])||ie(e)||(a=S.style(e,t)),!y.pixelBoxStyles()&&Me.test(a)&&Fe.test(t)&&(r=s.width,i=s.minWidth,o=s.maxWidth,s.minWidth=s.maxWidth=s.width=a,a=n.width,s.width=r,s.minWidth=i,s.maxWidth=o)),void 0!==a?a+"":a}function $e(e,t){return{get:function(){if(!e())return(this.get=t).apply(this,arguments);delete this.get}}}!function(){function e(){if(l){u.style.cssText="position:absolute;left:-11111px;width:60px;margin-top:1px;padding:0;border:0",l.style.cssText="position:relative;display:block;box-sizing:border-box;overflow:scroll;margin:auto;border:1px;padding:1px;width:60%;top:1%",re.appendChild(u).appendChild(l);var e=C.getComputedStyle(l);n="1%"!==e.top,s=12===t(e.marginLeft),l.style.right="60%",o=36===t(e.right),r=36===t(e.width),l.style.position="absolute",i=12===t(l.offsetWidth/3),re.removeChild(u),l=null}}function t(e){return Math.round(parseFloat(e))}var n,r,i,o,a,s,u=E.createElement("div"),l=E.createElement("div");l.style&&(l.style.backgroundClip="content-box",l.cloneNode(!0).style.backgroundClip="",y.clearCloneStyle="content-box"===l.style.backgroundClip,S.extend(y,{boxSizingReliable:function(){return e(),r},pixelBoxStyles:function(){return e(),o},pixelPosition:function(){return e(),n},reliableMarginLeft:function(){return e(),s},scrollboxSize:function(){return e(),i},reliableTrDimensions:function(){var e,t,n,r;return null==a&&(e=E.createElement("table"),t=E.createElement("tr"),n=E.createElement("div"),e.style.cssText="position:absolute;left:-11111px",t.style.height="1px",n.style.height="9px",re.appendChild(e).appendChild(t).appendChild(n),r=C.getComputedStyle(t),a=3<parseInt(r.height),re.removeChild(e)),a}}))}();var _e=["Webkit","Moz","ms"],ze=E.createElement("div").style,Ue={};function Xe(e){var t=S.cssProps[e]||Ue[e];return t||(e in ze?e:Ue[e]=function(e){var t=e[0].toUpperCase()+e.slice(1),n=_e.length;while(n--)if((e=_e[n]+t)in ze)return e}(e)||e)}var Ve=/^(none|table(?!-c[ea]).+)/,Ge=/^--/,Ye={position:"absolute",visibility:"hidden",display:"block"},Qe={letterSpacing:"0",fontWeight:"400"};function Je(e,t,n){var r=te.exec(t);return r?Math.max(0,r[2]-(n||0))+(r[3]||"px"):t}function Ke(e,t,n,r,i,o){var a="width"===t?1:0,s=0,u=0;if(n===(r?"border":"content"))return 0;for(;a<4;a+=2)"margin"===n&&(u+=S.css(e,n+ne[a],!0,i)),r?("content"===n&&(u-=S.css(e,"padding"+ne[a],!0,i)),"margin"!==n&&(u-=S.css(e,"border"+ne[a]+"Width",!0,i))):(u+=S.css(e,"padding"+ne[a],!0,i),"padding"!==n?u+=S.css(e,"border"+ne[a]+"Width",!0,i):s+=S.css(e,"border"+ne[a]+"Width",!0,i));return!r&&0<=o&&(u+=Math.max(0,Math.ceil(e["offset"+t[0].toUpperCase()+t.slice(1)]-o-u-s-.5))||0),u}function Ze(e,t,n){var r=Ie(e),i=(!y.boxSizingReliable()||n)&&"border-box"===S.css(e,"boxSizing",!1,r),o=i,a=Be(e,t,r),s="offset"+t[0].toUpperCase()+t.slice(1);if(Me.test(a)){if(!n)return a;a="auto"}return(!y.boxSizingReliable()&&i||!y.reliableTrDimensions()&&A(e,"tr")||"auto"===a||!parseFloat(a)&&"inline"===S.css(e,"display",!1,r))&&e.getClientRects().length&&(i="border-box"===S.css(e,"boxSizing",!1,r),(o=s in e)&&(a=e[s])),(a=parseFloat(a)||0)+Ke(e,t,n||(i?"border":"content"),o,r,a)+"px"}function et(e,t,n,r,i){return new et.prototype.init(e,t,n,r,i)}S.extend({cssHooks:{opacity:{get:function(e,t){if(t){var n=Be(e,"opacity");return""===n?"1":n}}}},cssNumber:{animationIterationCount:!0,columnCount:!0,fillOpacity:!0,flexGrow:!0,flexShrink:!0,fontWeight:!0,gridArea:!0,gridColumn:!0,gridColumnEnd:!0,gridColumnStart:!0,gridRow:!0,gridRowEnd:!0,gridRowStart:!0,lineHeight:!0,opacity:!0,order:!0,orphans:!0,widows:!0,zIndex:!0,zoom:!0},cssProps:{},style:function(e,t,n,r){if(e&&3!==e.nodeType&&8!==e.nodeType&&e.style){var i,o,a,s=X(t),u=Ge.test(t),l=e.style;if(u||(t=Xe(s)),a=S.cssHooks[t]||S.cssHooks[s],void 0===n)return a&&"get"in a&&void 0!==(i=a.get(e,!1,r))?i:l[t];"string"===(o=typeof n)&&(i=te.exec(n))&&i[1]&&(n=se(e,t,i),o="number"),null!=n&&n==n&&("number"!==o||u||(n+=i&&i[3]||(S.cssNumber[s]?"":"px")),y.clearCloneStyle||""!==n||0!==t.indexOf("background")||(l[t]="inherit"),a&&"set"in a&&void 0===(n=a.set(e,n,r))||(u?l.setProperty(t,n):l[t]=n))}},css:function(e,t,n,r){var i,o,a,s=X(t);return Ge.test(t)||(t=Xe(s)),(a=S.cssHooks[t]||S.cssHooks[s])&&"get"in a&&(i=a.get(e,!0,n)),void 0===i&&(i=Be(e,t,r)),"normal"===i&&t in Qe&&(i=Qe[t]),""===n||n?(o=parseFloat(i),!0===n||isFinite(o)?o||0:i):i}}),S.each(["height","width"],function(e,u){S.cssHooks[u]={get:function(e,t,n){if(t)return!Ve.test(S.css(e,"display"))||e.getClientRects().length&&e.getBoundingClientRect().width?Ze(e,u,n):We(e,Ye,function(){return Ze(e,u,n)})},set:function(e,t,n){var r,i=Ie(e),o=!y.scrollboxSize()&&"absolute"===i.position,a=(o||n)&&"border-box"===S.css(e,"boxSizing",!1,i),s=n?Ke(e,u,n,a,i):0;return a&&o&&(s-=Math.ceil(e["offset"+u[0].toUpperCase()+u.slice(1)]-parseFloat(i[u])-Ke(e,u,"border",!1,i)-.5)),s&&(r=te.exec(t))&&"px"!==(r[3]||"px")&&(e.style[u]=t,t=S.css(e,u)),Je(0,t,s)}}}),S.cssHooks.marginLeft=$e(y.reliableMarginLeft,function(e,t){if(t)return(parseFloat(Be(e,"marginLeft"))||e.getBoundingClientRect().left-We(e,{marginLeft:0},function(){return e.getBoundingClientRect().left}))+"px"}),S.each({margin:"",padding:"",border:"Width"},function(i,o){S.cssHooks[i+o]={expand:function(e){for(var t=0,n={},r="string"==typeof e?e.split(" "):[e];t<4;t++)n[i+ne[t]+o]=r[t]||r[t-2]||r[0];return n}},"margin"!==i&&(S.cssHooks[i+o].set=Je)}),S.fn.extend({css:function(e,t){return $(this,function(e,t,n){var r,i,o={},a=0;if(Array.isArray(t)){for(r=Ie(e),i=t.length;a<i;a++)o[t[a]]=S.css(e,t[a],!1,r);return o}return void 0!==n?S.style(e,t,n):S.css(e,t)},e,t,1<arguments.length)}}),((S.Tween=et).prototype={constructor:et,init:function(e,t,n,r,i,o){this.elem=e,this.prop=n,this.easing=i||S.easing._default,this.options=t,this.start=this.now=this.cur(),this.end=r,this.unit=o||(S.cssNumber[n]?"":"px")},cur:function(){var e=et.propHooks[this.prop];return e&&e.get?e.get(this):et.propHooks._default.get(this)},run:function(e){var t,n=et.propHooks[this.prop];return this.options.duration?this.pos=t=S.easing[this.easing](e,this.options.duration*e,0,1,this.options.duration):this.pos=t=e,this.now=(this.end-this.start)*t+this.start,this.options.step&&this.options.step.call(this.elem,this.now,this),n&&n.set?n.set(this):et.propHooks._default.set(this),this}}).init.prototype=et.prototype,(et.propHooks={_default:{get:function(e){var t;return 1!==e.elem.nodeType||null!=e.elem[e.prop]&&null==e.elem.style[e.prop]?e.elem[e.prop]:(t=S.css(e.elem,e.prop,""))&&"auto"!==t?t:0},set:function(e){S.fx.step[e.prop]?S.fx.step[e.prop](e):1!==e.elem.nodeType||!S.cssHooks[e.prop]&&null==e.elem.style[Xe(e.prop)]?e.elem[e.prop]=e.now:S.style(e.elem,e.prop,e.now+e.unit)}}}).scrollTop=et.propHooks.scrollLeft={set:function(e){e.elem.nodeType&&e.elem.parentNode&&(e.elem[e.prop]=e.now)}},S.easing={linear:function(e){return e},swing:function(e){return.5-Math.cos(e*Math.PI)/2},_default:"swing"},S.fx=et.prototype.init,S.fx.step={};var tt,nt,rt,it,ot=/^(?:toggle|show|hide)$/,at=/queueHooks$/;function st(){nt&&(!1===E.hidden&&C.requestAnimationFrame?C.requestAnimationFrame(st):C.setTimeout(st,S.fx.interval),S.fx.tick())}function ut(){return C.setTimeout(function(){tt=void 0}),tt=Date.now()}function lt(e,t){var n,r=0,i={height:e};for(t=t?1:0;r<4;r+=2-t)i["margin"+(n=ne[r])]=i["padding"+n]=e;return t&&(i.opacity=i.width=e),i}function ct(e,t,n){for(var r,i=(ft.tweeners[t]||[]).concat(ft.tweeners["*"]),o=0,a=i.length;o<a;o++)if(r=i[o].call(n,t,e))return r}function ft(o,e,t){var n,a,r=0,i=ft.prefilters.length,s=S.Deferred().always(function(){delete u.elem}),u=function(){if(a)return!1;for(var e=tt||ut(),t=Math.max(0,l.startTime+l.duration-e),n=1-(t/l.duration||0),r=0,i=l.tweens.length;r<i;r++)l.tweens[r].run(n);return s.notifyWith(o,[l,n,t]),n<1&&i?t:(i||s.notifyWith(o,[l,1,0]),s.resolveWith(o,[l]),!1)},l=s.promise({elem:o,props:S.extend({},e),opts:S.extend(!0,{specialEasing:{},easing:S.easing._default},t),originalProperties:e,originalOptions:t,startTime:tt||ut(),duration:t.duration,tweens:[],createTween:function(e,t){var n=S.Tween(o,l.opts,e,t,l.opts.specialEasing[e]||l.opts.easing);return l.tweens.push(n),n},stop:function(e){var t=0,n=e?l.tweens.length:0;if(a)return this;for(a=!0;t<n;t++)l.tweens[t].run(1);return e?(s.notifyWith(o,[l,1,0]),s.resolveWith(o,[l,e])):s.rejectWith(o,[l,e]),this}}),c=l.props;for(!function(e,t){var n,r,i,o,a;for(n in e)if(i=t[r=X(n)],o=e[n],Array.isArray(o)&&(i=o[1],o=e[n]=o[0]),n!==r&&(e[r]=o,delete e[n]),(a=S.cssHooks[r])&&"expand"in a)for(n in o=a.expand(o),delete e[r],o)n in e||(e[n]=o[n],t[n]=i);else t[r]=i}(c,l.opts.specialEasing);r<i;r++)if(n=ft.prefilters[r].call(l,o,c,l.opts))return m(n.stop)&&(S._queueHooks(l.elem,l.opts.queue).stop=n.stop.bind(n)),n;return S.map(c,ct,l),m(l.opts.start)&&l.opts.start.call(o,l),l.progress(l.opts.progress).done(l.opts.done,l.opts.complete).fail(l.opts.fail).always(l.opts.always),S.fx.timer(S.extend(u,{elem:o,anim:l,queue:l.opts.queue})),l}S.Animation=S.extend(ft,{tweeners:{"*":[function(e,t){var n=this.createTween(e,t);return se(n.elem,e,te.exec(t),n),n}]},tweener:function(e,t){m(e)?(t=e,e=["*"]):e=e.match(P);for(var n,r=0,i=e.length;r<i;r++)n=e[r],ft.tweeners[n]=ft.tweeners[n]||[],ft.tweeners[n].unshift(t)},prefilters:[function(e,t,n){var r,i,o,a,s,u,l,c,f="width"in t||"height"in t,p=this,d={},h=e.style,g=e.nodeType&&ae(e),v=Y.get(e,"fxshow");for(r in n.queue||(null==(a=S._queueHooks(e,"fx")).unqueued&&(a.unqueued=0,s=a.empty.fire,a.empty.fire=function(){a.unqueued||s()}),a.unqueued++,p.always(function(){p.always(function(){a.unqueued--,S.queue(e,"fx").length||a.empty.fire()})})),t)if(i=t[r],ot.test(i)){if(delete t[r],o=o||"toggle"===i,i===(g?"hide":"show")){if("show"!==i||!v||void 0===v[r])continue;g=!0}d[r]=v&&v[r]||S.style(e,r)}if((u=!S.isEmptyObject(t))||!S.isEmptyObject(d))for(r in f&&1===e.nodeType&&(n.overflow=[h.overflow,h.overflowX,h.overflowY],null==(l=v&&v.display)&&(l=Y.get(e,"display")),"none"===(c=S.css(e,"display"))&&(l?c=l:(le([e],!0),l=e.style.display||l,c=S.css(e,"display"),le([e]))),("inline"===c||"inline-block"===c&&null!=l)&&"none"===S.css(e,"float")&&(u||(p.done(function(){h.display=l}),null==l&&(c=h.display,l="none"===c?"":c)),h.display="inline-block")),n.overflow&&(h.overflow="hidden",p.always(function(){h.overflow=n.overflow[0],h.overflowX=n.overflow[1],h.overflowY=n.overflow[2]})),u=!1,d)u||(v?"hidden"in v&&(g=v.hidden):v=Y.access(e,"fxshow",{display:l}),o&&(v.hidden=!g),g&&le([e],!0),p.done(function(){for(r in g||le([e]),Y.remove(e,"fxshow"),d)S.style(e,r,d[r])})),u=ct(g?v[r]:0,r,p),r in v||(v[r]=u.start,g&&(u.end=u.start,u.start=0))}],prefilter:function(e,t){t?ft.prefilters.unshift(e):ft.prefilters.push(e)}}),S.speed=function(e,t,n){var r=e&&"object"==typeof e?S.extend({},e):{complete:n||!n&&t||m(e)&&e,duration:e,easing:n&&t||t&&!m(t)&&t};return S.fx.off?r.duration=0:"number"!=typeof r.duration&&(r.duration in S.fx.speeds?r.duration=S.fx.speeds[r.duration]:r.duration=S.fx.speeds._default),null!=r.queue&&!0!==r.queue||(r.queue="fx"),r.old=r.complete,r.complete=function(){m(r.old)&&r.old.call(this),r.queue&&S.dequeue(this,r.queue)},r},S.fn.extend({fadeTo:function(e,t,n,r){return this.filter(ae).css("opacity",0).show().end().animate({opacity:t},e,n,r)},animate:function(t,e,n,r){var i=S.isEmptyObject(t),o=S.speed(e,n,r),a=function(){var e=ft(this,S.extend({},t),o);(i||Y.get(this,"finish"))&&e.stop(!0)};return a.finish=a,i||!1===o.queue?this.each(a):this.queue(o.queue,a)},stop:function(i,e,o){var a=function(e){var t=e.stop;delete e.stop,t(o)};return"string"!=typeof i&&(o=e,e=i,i=void 0),e&&this.queue(i||"fx",[]),this.each(function(){var e=!0,t=null!=i&&i+"queueHooks",n=S.timers,r=Y.get(this);if(t)r[t]&&r[t].stop&&a(r[t]);else for(t in r)r[t]&&r[t].stop&&at.test(t)&&a(r[t]);for(t=n.length;t--;)n[t].elem!==this||null!=i&&n[t].queue!==i||(n[t].anim.stop(o),e=!1,n.splice(t,1));!e&&o||S.dequeue(this,i)})},finish:function(a){return!1!==a&&(a=a||"fx"),this.each(function(){var e,t=Y.get(this),n=t[a+"queue"],r=t[a+"queueHooks"],i=S.timers,o=n?n.length:0;for(t.finish=!0,S.queue(this,a,[]),r&&r.stop&&r.stop.call(this,!0),e=i.length;e--;)i[e].elem===this&&i[e].queue===a&&(i[e].anim.stop(!0),i.splice(e,1));for(e=0;e<o;e++)n[e]&&n[e].finish&&n[e].finish.call(this);delete t.finish})}}),S.each(["toggle","show","hide"],function(e,r){var i=S.fn[r];S.fn[r]=function(e,t,n){return null==e||"boolean"==typeof e?i.apply(this,arguments):this.animate(lt(r,!0),e,t,n)}}),S.each({slideDown:lt("show"),slideUp:lt("hide"),slideToggle:lt("toggle"),fadeIn:{opacity:"show"},fadeOut:{opacity:"hide"},fadeToggle:{opacity:"toggle"}},function(e,r){S.fn[e]=function(e,t,n){return this.animate(r,e,t,n)}}),S.timers=[],S.fx.tick=function(){var e,t=0,n=S.timers;for(tt=Date.now();t<n.length;t++)(e=n[t])()||n[t]!==e||n.splice(t--,1);n.length||S.fx.stop(),tt=void 0},S.fx.timer=function(e){S.timers.push(e),S.fx.start()},S.fx.interval=13,S.fx.start=function(){nt||(nt=!0,st())},S.fx.stop=function(){nt=null},S.fx.speeds={slow:600,fast:200,_default:400},S.fn.delay=function(r,e){return r=S.fx&&S.fx.speeds[r]||r,e=e||"fx",this.queue(e,function(e,t){var n=C.setTimeout(e,r);t.stop=function(){C.clearTimeout(n)}})},rt=E.createElement("input"),it=E.createElement("select").appendChild(E.createElement("option")),rt.type="checkbox",y.checkOn=""!==rt.value,y.optSelected=it.selected,(rt=E.createElement("input")).value="t",rt.type="radio",y.radioValue="t"===rt.value;var pt,dt=S.expr.attrHandle;S.fn.extend({attr:function(e,t){return $(this,S.attr,e,t,1<arguments.length)},removeAttr:function(e){return this.each(function(){S.removeAttr(this,e)})}}),S.extend({attr:function(e,t,n){var r,i,o=e.nodeType;if(3!==o&&8!==o&&2!==o)return"undefined"==typeof e.getAttribute?S.prop(e,t,n):(1===o&&S.isXMLDoc(e)||(i=S.attrHooks[t.toLowerCase()]||(S.expr.match.bool.test(t)?pt:void 0)),void 0!==n?null===n?void S.removeAttr(e,t):i&&"set"in i&&void 0!==(r=i.set(e,n,t))?r:(e.setAttribute(t,n+""),n):i&&"get"in i&&null!==(r=i.get(e,t))?r:null==(r=S.find.attr(e,t))?void 0:r)},attrHooks:{type:{set:function(e,t){if(!y.radioValue&&"radio"===t&&A(e,"input")){var n=e.value;return e.setAttribute("type",t),n&&(e.value=n),t}}}},removeAttr:function(e,t){var n,r=0,i=t&&t.match(P);if(i&&1===e.nodeType)while(n=i[r++])e.removeAttribute(n)}}),pt={set:function(e,t,n){return!1===t?S.removeAttr(e,n):e.setAttribute(n,n),n}},S.each(S.expr.match.bool.source.match(/\w+/g),function(e,t){var a=dt[t]||S.find.attr;dt[t]=function(e,t,n){var r,i,o=t.toLowerCase();return n||(i=dt[o],dt[o]=r,r=null!=a(e,t,n)?o:null,dt[o]=i),r}});var ht=/^(?:input|select|textarea|button)$/i,gt=/^(?:a|area)$/i;function vt(e){return(e.match(P)||[]).join(" ")}function yt(e){return e.getAttribute&&e.getAttribute("class")||""}function mt(e){return Array.isArray(e)?e:"string"==typeof e&&e.match(P)||[]}S.fn.extend({prop:function(e,t){return $(this,S.prop,e,t,1<arguments.length)},removeProp:function(e){return this.each(function(){delete this[S.propFix[e]||e]})}}),S.extend({prop:function(e,t,n){var r,i,o=e.nodeType;if(3!==o&&8!==o&&2!==o)return 1===o&&S.isXMLDoc(e)||(t=S.propFix[t]||t,i=S.propHooks[t]),void 0!==n?i&&"set"in i&&void 0!==(r=i.set(e,n,t))?r:e[t]=n:i&&"get"in i&&null!==(r=i.get(e,t))?r:e[t]},propHooks:{tabIndex:{get:function(e){var t=S.find.attr(e,"tabindex");return t?parseInt(t,10):ht.test(e.nodeName)||gt.test(e.nodeName)&&e.href?0:-1}}},propFix:{"for":"htmlFor","class":"className"}}),y.optSelected||(S.propHooks.selected={get:function(e){var t=e.parentNode;return t&&t.parentNode&&t.parentNode.selectedIndex,null},set:function(e){var t=e.parentNode;t&&(t.selectedIndex,t.parentNode&&t.parentNode.selectedIndex)}}),S.each(["tabIndex","readOnly","maxLength","cellSpacing","cellPadding","rowSpan","colSpan","useMap","frameBorder","contentEditable"],function(){S.propFix[this.toLowerCase()]=this}),S.fn.extend({addClass:function(t){var e,n,r,i,o,a,s,u=0;if(m(t))return this.each(function(e){S(this).addClass(t.call(this,e,yt(this)))});if((e=mt(t)).length)while(n=this[u++])if(i=yt(n),r=1===n.nodeType&&" "+vt(i)+" "){a=0;while(o=e[a++])r.indexOf(" "+o+" ")<0&&(r+=o+" ");i!==(s=vt(r))&&n.setAttribute("class",s)}return this},removeClass:function(t){var e,n,r,i,o,a,s,u=0;if(m(t))return this.each(function(e){S(this).removeClass(t.call(this,e,yt(this)))});if(!arguments.length)return this.attr("class","");if((e=mt(t)).length)while(n=this[u++])if(i=yt(n),r=1===n.nodeType&&" "+vt(i)+" "){a=0;while(o=e[a++])while(-1<r.indexOf(" "+o+" "))r=r.replace(" "+o+" "," ");i!==(s=vt(r))&&n.setAttribute("class",s)}return this},toggleClass:function(i,t){var o=typeof i,a="string"===o||Array.isArray(i);return"boolean"==typeof t&&a?t?this.addClass(i):this.removeClass(i):m(i)?this.each(function(e){S(this).toggleClass(i.call(this,e,yt(this),t),t)}):this.each(function(){var e,t,n,r;if(a){t=0,n=S(this),r=mt(i);while(e=r[t++])n.hasClass(e)?n.removeClass(e):n.addClass(e)}else void 0!==i&&"boolean"!==o||((e=yt(this))&&Y.set(this,"__className__",e),this.setAttribute&&this.setAttribute("class",e||!1===i?"":Y.get(this,"__className__")||""))})},hasClass:function(e){var t,n,r=0;t=" "+e+" ";while(n=this[r++])if(1===n.nodeType&&-1<(" "+vt(yt(n))+" ").indexOf(t))return!0;return!1}});var xt=/\r/g;S.fn.extend({val:function(n){var r,e,i,t=this[0];return arguments.length?(i=m(n),this.each(function(e){var t;1===this.nodeType&&(null==(t=i?n.call(this,e,S(this).val()):n)?t="":"number"==typeof t?t+="":Array.isArray(t)&&(t=S.map(t,function(e){return null==e?"":e+""})),(r=S.valHooks[this.type]||S.valHooks[this.nodeName.toLowerCase()])&&"set"in r&&void 0!==r.set(this,t,"value")||(this.value=t))})):t?(r=S.valHooks[t.type]||S.valHooks[t.nodeName.toLowerCase()])&&"get"in r&&void 0!==(e=r.get(t,"value"))?e:"string"==typeof(e=t.value)?e.replace(xt,""):null==e?"":e:void 0}}),S.extend({valHooks:{option:{get:function(e){var t=S.find.attr(e,"value");return null!=t?t:vt(S.text(e))}},select:{get:function(e){var t,n,r,i=e.options,o=e.selectedIndex,a="select-one"===e.type,s=a?null:[],u=a?o+1:i.length;for(r=o<0?u:a?o:0;r<u;r++)if(((n=i[r]).selected||r===o)&&!n.disabled&&(!n.parentNode.disabled||!A(n.parentNode,"optgroup"))){if(t=S(n).val(),a)return t;s.push(t)}return s},set:function(e,t){var n,r,i=e.options,o=S.makeArray(t),a=i.length;while(a--)((r=i[a]).selected=-1<S.inArray(S.valHooks.option.get(r),o))&&(n=!0);return n||(e.selectedIndex=-1),o}}}}),S.each(["radio","checkbox"],function(){S.valHooks[this]={set:function(e,t){if(Array.isArray(t))return e.checked=-1<S.inArray(S(e).val(),t)}},y.checkOn||(S.valHooks[this].get=function(e){return null===e.getAttribute("value")?"on":e.value})}),y.focusin="onfocusin"in C;var bt=/^(?:focusinfocus|focusoutblur)$/,wt=function(e){e.stopPropagation()};S.extend(S.event,{trigger:function(e,t,n,r){var i,o,a,s,u,l,c,f,p=[n||E],d=v.call(e,"type")?e.type:e,h=v.call(e,"namespace")?e.namespace.split("."):[];if(o=f=a=n=n||E,3!==n.nodeType&&8!==n.nodeType&&!bt.test(d+S.event.triggered)&&(-1<d.indexOf(".")&&(d=(h=d.split(".")).shift(),h.sort()),u=d.indexOf(":")<0&&"on"+d,(e=e[S.expando]?e:new S.Event(d,"object"==typeof e&&e)).isTrigger=r?2:3,e.namespace=h.join("."),e.rnamespace=e.namespace?new RegExp("(^|\\.)"+h.join("\\.(?:.*\\.|)")+"(\\.|$)"):null,e.result=void 0,e.target||(e.target=n),t=null==t?[e]:S.makeArray(t,[e]),c=S.event.special[d]||{},r||!c.trigger||!1!==c.trigger.apply(n,t))){if(!r&&!c.noBubble&&!x(n)){for(s=c.delegateType||d,bt.test(s+d)||(o=o.parentNode);o;o=o.parentNode)p.push(o),a=o;a===(n.ownerDocument||E)&&p.push(a.defaultView||a.parentWindow||C)}i=0;while((o=p[i++])&&!e.isPropagationStopped())f=o,e.type=1<i?s:c.bindType||d,(l=(Y.get(o,"events")||Object.create(null))[e.type]&&Y.get(o,"handle"))&&l.apply(o,t),(l=u&&o[u])&&l.apply&&V(o)&&(e.result=l.apply(o,t),!1===e.result&&e.preventDefault());return e.type=d,r||e.isDefaultPrevented()||c._default&&!1!==c._default.apply(p.pop(),t)||!V(n)||u&&m(n[d])&&!x(n)&&((a=n[u])&&(n[u]=null),S.event.triggered=d,e.isPropagationStopped()&&f.addEventListener(d,wt),n[d](),e.isPropagationStopped()&&f.removeEventListener(d,wt),S.event.triggered=void 0,a&&(n[u]=a)),e.result}},simulate:function(e,t,n){var r=S.extend(new S.Event,n,{type:e,isSimulated:!0});S.event.trigger(r,null,t)}}),S.fn.extend({trigger:function(e,t){return this.each(function(){S.event.trigger(e,t,this)})},triggerHandler:function(e,t){var n=this[0];if(n)return S.event.trigger(e,t,n,!0)}}),y.focusin||S.each({focus:"focusin",blur:"focusout"},function(n,r){var i=function(e){S.event.simulate(r,e.target,S.event.fix(e))};S.event.special[r]={setup:function(){var e=this.ownerDocument||this.document||this,t=Y.access(e,r);t||e.addEventListener(n,i,!0),Y.access(e,r,(t||0)+1)},teardown:function(){var e=this.ownerDocument||this.document||this,t=Y.access(e,r)-1;t?Y.access(e,r,t):(e.removeEventListener(n,i,!0),Y.remove(e,r))}}});var Tt=C.location,Ct={guid:Date.now()},Et=/\?/;S.parseXML=function(e){var t;if(!e||"string"!=typeof e)return null;try{t=(new C.DOMParser).parseFromString(e,"text/xml")}catch(e){t=void 0}return t&&!t.getElementsByTagName("parsererror").length||S.error("Invalid XML: "+e),t};var St=/\[\]$/,kt=/\r?\n/g,At=/^(?:submit|button|image|reset|file)$/i,Nt=/^(?:input|select|textarea|keygen)/i;function Dt(n,e,r,i){var t;if(Array.isArray(e))S.each(e,function(e,t){r||St.test(n)?i(n,t):Dt(n+"["+("object"==typeof t&&null!=t?e:"")+"]",t,r,i)});else if(r||"object"!==w(e))i(n,e);else for(t in e)Dt(n+"["+t+"]",e[t],r,i)}S.param=function(e,t){var n,r=[],i=function(e,t){var n=m(t)?t():t;r[r.length]=encodeURIComponent(e)+"="+encodeURIComponent(null==n?"":n)};if(null==e)return"";if(Array.isArray(e)||e.jquery&&!S.isPlainObject(e))S.each(e,function(){i(this.name,this.value)});else for(n in e)Dt(n,e[n],t,i);return r.join("&")},S.fn.extend({serialize:function(){return S.param(this.serializeArray())},serializeArray:function(){return this.map(function(){var e=S.prop(this,"elements");return e?S.makeArray(e):this}).filter(function(){var e=this.type;return this.name&&!S(this).is(":disabled")&&Nt.test(this.nodeName)&&!At.test(e)&&(this.checked||!pe.test(e))}).map(function(e,t){var n=S(this).val();return null==n?null:Array.isArray(n)?S.map(n,function(e){return{name:t.name,value:e.replace(kt,"\r\n")}}):{name:t.name,value:n.replace(kt,"\r\n")}}).get()}});var jt=/%20/g,qt=/#.*$/,Lt=/([?&])_=[^&]*/,Ht=/^(.*?):[ \t]*([^\r\n]*)$/gm,Ot=/^(?:GET|HEAD)$/,Pt=/^\/\//,Rt={},Mt={},It="*/".concat("*"),Wt=E.createElement("a");function Ft(o){return function(e,t){"string"!=typeof e&&(t=e,e="*");var n,r=0,i=e.toLowerCase().match(P)||[];if(m(t))while(n=i[r++])"+"===n[0]?(n=n.slice(1)||"*",(o[n]=o[n]||[]).unshift(t)):(o[n]=o[n]||[]).push(t)}}function Bt(t,i,o,a){var s={},u=t===Mt;function l(e){var r;return s[e]=!0,S.each(t[e]||[],function(e,t){var n=t(i,o,a);return"string"!=typeof n||u||s[n]?u?!(r=n):void 0:(i.dataTypes.unshift(n),l(n),!1)}),r}return l(i.dataTypes[0])||!s["*"]&&l("*")}function $t(e,t){var n,r,i=S.ajaxSettings.flatOptions||{};for(n in t)void 0!==t[n]&&((i[n]?e:r||(r={}))[n]=t[n]);return r&&S.extend(!0,e,r),e}Wt.href=Tt.href,S.extend({active:0,lastModified:{},etag:{},ajaxSettings:{url:Tt.href,type:"GET",isLocal:/^(?:about|app|app-storage|.+-extension|file|res|widget):$/.test(Tt.protocol),global:!0,processData:!0,async:!0,contentType:"application/x-www-form-urlencoded; charset=UTF-8",accepts:{"*":It,text:"text/plain",html:"text/html",xml:"application/xml, text/xml",json:"application/json, text/javascript"},contents:{xml:/\bxml\b/,html:/\bhtml/,json:/\bjson\b/},responseFields:{xml:"responseXML",text:"responseText",json:"responseJSON"},converters:{"* text":String,"text html":!0,"text json":JSON.parse,"text xml":S.parseXML},flatOptions:{url:!0,context:!0}},ajaxSetup:function(e,t){return t?$t($t(e,S.ajaxSettings),t):$t(S.ajaxSettings,e)},ajaxPrefilter:Ft(Rt),ajaxTransport:Ft(Mt),ajax:function(e,t){"object"==typeof e&&(t=e,e=void 0),t=t||{};var c,f,p,n,d,r,h,g,i,o,v=S.ajaxSetup({},t),y=v.context||v,m=v.context&&(y.nodeType||y.jquery)?S(y):S.event,x=S.Deferred(),b=S.Callbacks("once memory"),w=v.statusCode||{},a={},s={},u="canceled",T={readyState:0,getResponseHeader:function(e){var t;if(h){if(!n){n={};while(t=Ht.exec(p))n[t[1].toLowerCase()+" "]=(n[t[1].toLowerCase()+" "]||[]).concat(t[2])}t=n[e.toLowerCase()+" "]}return null==t?null:t.join(", ")},getAllResponseHeaders:function(){return h?p:null},setRequestHeader:function(e,t){return null==h&&(e=s[e.toLowerCase()]=s[e.toLowerCase()]||e,a[e]=t),this},overrideMimeType:function(e){return null==h&&(v.mimeType=e),this},statusCode:function(e){var t;if(e)if(h)T.always(e[T.status]);else for(t in e)w[t]=[w[t],e[t]];return this},abort:function(e){var t=e||u;return c&&c.abort(t),l(0,t),this}};if(x.promise(T),v.url=((e||v.url||Tt.href)+"").replace(Pt,Tt.protocol+"//"),v.type=t.method||t.type||v.method||v.type,v.dataTypes=(v.dataType||"*").toLowerCase().match(P)||[""],null==v.crossDomain){r=E.createElement("a");try{r.href=v.url,r.href=r.href,v.crossDomain=Wt.protocol+"//"+Wt.host!=r.protocol+"//"+r.host}catch(e){v.crossDomain=!0}}if(v.data&&v.processData&&"string"!=typeof v.data&&(v.data=S.param(v.data,v.traditional)),Bt(Rt,v,t,T),h)return T;for(i in(g=S.event&&v.global)&&0==S.active++&&S.event.trigger("ajaxStart"),v.type=v.type.toUpperCase(),v.hasContent=!Ot.test(v.type),f=v.url.replace(qt,""),v.hasContent?v.data&&v.processData&&0===(v.contentType||"").indexOf("application/x-www-form-urlencoded")&&(v.data=v.data.replace(jt,"+")):(o=v.url.slice(f.length),v.data&&(v.processData||"string"==typeof v.data)&&(f+=(Et.test(f)?"&":"?")+v.data,delete v.data),!1===v.cache&&(f=f.replace(Lt,"$1"),o=(Et.test(f)?"&":"?")+"_="+Ct.guid+++o),v.url=f+o),v.ifModified&&(S.lastModified[f]&&T.setRequestHeader("If-Modified-Since",S.lastModified[f]),S.etag[f]&&T.setRequestHeader("If-None-Match",S.etag[f])),(v.data&&v.hasContent&&!1!==v.contentType||t.contentType)&&T.setRequestHeader("Content-Type",v.contentType),T.setRequestHeader("Accept",v.dataTypes[0]&&v.accepts[v.dataTypes[0]]?v.accepts[v.dataTypes[0]]+("*"!==v.dataTypes[0]?", "+It+"; q=0.01":""):v.accepts["*"]),v.headers)T.setRequestHeader(i,v.headers[i]);if(v.beforeSend&&(!1===v.beforeSend.call(y,T,v)||h))return T.abort();if(u="abort",b.add(v.complete),T.done(v.success),T.fail(v.error),c=Bt(Mt,v,t,T)){if(T.readyState=1,g&&m.trigger("ajaxSend",[T,v]),h)return T;v.async&&0<v.timeout&&(d=C.setTimeout(function(){T.abort("timeout")},v.timeout));try{h=!1,c.send(a,l)}catch(e){if(h)throw e;l(-1,e)}}else l(-1,"No Transport");function l(e,t,n,r){var i,o,a,s,u,l=t;h||(h=!0,d&&C.clearTimeout(d),c=void 0,p=r||"",T.readyState=0<e?4:0,i=200<=e&&e<300||304===e,n&&(s=function(e,t,n){var r,i,o,a,s=e.contents,u=e.dataTypes;while("*"===u[0])u.shift(),void 0===r&&(r=e.mimeType||t.getResponseHeader("Content-Type"));if(r)for(i in s)if(s[i]&&s[i].test(r)){u.unshift(i);break}if(u[0]in n)o=u[0];else{for(i in n){if(!u[0]||e.converters[i+" "+u[0]]){o=i;break}a||(a=i)}o=o||a}if(o)return o!==u[0]&&u.unshift(o),n[o]}(v,T,n)),!i&&-1<S.inArray("script",v.dataTypes)&&(v.converters["text script"]=function(){}),s=function(e,t,n,r){var i,o,a,s,u,l={},c=e.dataTypes.slice();if(c[1])for(a in e.converters)l[a.toLowerCase()]=e.converters[a];o=c.shift();while(o)if(e.responseFields[o]&&(n[e.responseFields[o]]=t),!u&&r&&e.dataFilter&&(t=e.dataFilter(t,e.dataType)),u=o,o=c.shift())if("*"===o)o=u;else if("*"!==u&&u!==o){if(!(a=l[u+" "+o]||l["* "+o]))for(i in l)if((s=i.split(" "))[1]===o&&(a=l[u+" "+s[0]]||l["* "+s[0]])){!0===a?a=l[i]:!0!==l[i]&&(o=s[0],c.unshift(s[1]));break}if(!0!==a)if(a&&e["throws"])t=a(t);else try{t=a(t)}catch(e){return{state:"parsererror",error:a?e:"No conversion from "+u+" to "+o}}}return{state:"success",data:t}}(v,s,T,i),i?(v.ifModified&&((u=T.getResponseHeader("Last-Modified"))&&(S.lastModified[f]=u),(u=T.getResponseHeader("etag"))&&(S.etag[f]=u)),204===e||"HEAD"===v.type?l="nocontent":304===e?l="notmodified":(l=s.state,o=s.data,i=!(a=s.error))):(a=l,!e&&l||(l="error",e<0&&(e=0))),T.status=e,T.statusText=(t||l)+"",i?x.resolveWith(y,[o,l,T]):x.rejectWith(y,[T,l,a]),T.statusCode(w),w=void 0,g&&m.trigger(i?"ajaxSuccess":"ajaxError",[T,v,i?o:a]),b.fireWith(y,[T,l]),g&&(m.trigger("ajaxComplete",[T,v]),--S.active||S.event.trigger("ajaxStop")))}return T},getJSON:function(e,t,n){return S.get(e,t,n,"json")},getScript:function(e,t){return S.get(e,void 0,t,"script")}}),S.each(["get","post"],function(e,i){S[i]=function(e,t,n,r){return m(t)&&(r=r||n,n=t,t=void 0),S.ajax(S.extend({url:e,type:i,dataType:r,data:t,success:n},S.isPlainObject(e)&&e))}}),S.ajaxPrefilter(function(e){var t;for(t in e.headers)"content-type"===t.toLowerCase()&&(e.contentType=e.headers[t]||"")}),S._evalUrl=function(e,t,n){return S.ajax({url:e,type:"GET",dataType:"script",cache:!0,async:!1,global:!1,converters:{"text script":function(){}},dataFilter:function(e){S.globalEval(e,t,n)}})},S.fn.extend({wrapAll:function(e){var t;return this[0]&&(m(e)&&(e=e.call(this[0])),t=S(e,this[0].ownerDocument).eq(0).clone(!0),this[0].parentNode&&t.insertBefore(this[0]),t.map(function(){var e=this;while(e.firstElementChild)e=e.firstElementChild;return e}).append(this)),this},wrapInner:function(n){return m(n)?this.each(function(e){S(this).wrapInner(n.call(this,e))}):this.each(function(){var e=S(this),t=e.contents();t.length?t.wrapAll(n):e.append(n)})},wrap:function(t){var n=m(t);return this.each(function(e){S(this).wrapAll(n?t.call(this,e):t)})},unwrap:function(e){return this.parent(e).not("body").each(function(){S(this).replaceWith(this.childNodes)}),this}}),S.expr.pseudos.hidden=function(e){return!S.expr.pseudos.visible(e)},S.expr.pseudos.visible=function(e){return!!(e.offsetWidth||e.offsetHeight||e.getClientRects().length)},S.ajaxSettings.xhr=function(){try{return new C.XMLHttpRequest}catch(e){}};var _t={0:200,1223:204},zt=S.ajaxSettings.xhr();y.cors=!!zt&&"withCredentials"in zt,y.ajax=zt=!!zt,S.ajaxTransport(function(i){var o,a;if(y.cors||zt&&!i.crossDomain)return{send:function(e,t){var n,r=i.xhr();if(r.open(i.type,i.url,i.async,i.username,i.password),i.xhrFields)for(n in i.xhrFields)r[n]=i.xhrFields[n];for(n in i.mimeType&&r.overrideMimeType&&r.overrideMimeType(i.mimeType),i.crossDomain||e["X-Requested-With"]||(e["X-Requested-With"]="XMLHttpRequest"),e)r.setRequestHeader(n,e[n]);o=function(e){return function(){o&&(o=a=r.onload=r.onerror=r.onabort=r.ontimeout=r.onreadystatechange=null,"abort"===e?r.abort():"error"===e?"number"!=typeof r.status?t(0,"error"):t(r.status,r.statusText):t(_t[r.status]||r.status,r.statusText,"text"!==(r.responseType||"text")||"string"!=typeof r.responseText?{binary:r.response}:{text:r.responseText},r.getAllResponseHeaders()))}},r.onload=o(),a=r.onerror=r.ontimeout=o("error"),void 0!==r.onabort?r.onabort=a:r.onreadystatechange=function(){4===r.readyState&&C.setTimeout(function(){o&&a()})},o=o("abort");try{r.send(i.hasContent&&i.data||null)}catch(e){if(o)throw e}},abort:function(){o&&o()}}}),S.ajaxPrefilter(function(e){e.crossDomain&&(e.contents.script=!1)}),S.ajaxSetup({accepts:{script:"text/javascript, application/javascript, application/ecmascript, application/x-ecmascript"},contents:{script:/\b(?:java|ecma)script\b/},converters:{"text script":function(e){return S.globalEval(e),e}}}),S.ajaxPrefilter("script",function(e){void 0===e.cache&&(e.cache=!1),e.crossDomain&&(e.type="GET")}),S.ajaxTransport("script",function(n){var r,i;if(n.crossDomain||n.scriptAttrs)return{send:function(e,t){r=S("<script>").attr(n.scriptAttrs||{}).prop({charset:n.scriptCharset,src:n.url}).on("load error",i=function(e){r.remove(),i=null,e&&t("error"===e.type?404:200,e.type)}),E.head.appendChild(r[0])},abort:function(){i&&i()}}});var Ut,Xt=[],Vt=/(=)\?(?=&|$)|\?\?/;S.ajaxSetup({jsonp:"callback",jsonpCallback:function(){var e=Xt.pop()||S.expando+"_"+Ct.guid++;return this[e]=!0,e}}),S.ajaxPrefilter("json jsonp",function(e,t,n){var r,i,o,a=!1!==e.jsonp&&(Vt.test(e.url)?"url":"string"==typeof e.data&&0===(e.contentType||"").indexOf("application/x-www-form-urlencoded")&&Vt.test(e.data)&&"data");if(a||"jsonp"===e.dataTypes[0])return r=e.jsonpCallback=m(e.jsonpCallback)?e.jsonpCallback():e.jsonpCallback,a?e[a]=e[a].replace(Vt,"$1"+r):!1!==e.jsonp&&(e.url+=(Et.test(e.url)?"&":"?")+e.jsonp+"="+r),e.converters["script json"]=function(){return o||S.error(r+" was not called"),o[0]},e.dataTypes[0]="json",i=C[r],C[r]=function(){o=arguments},n.always(function(){void 0===i?S(C).removeProp(r):C[r]=i,e[r]&&(e.jsonpCallback=t.jsonpCallback,Xt.push(r)),o&&m(i)&&i(o[0]),o=i=void 0}),"script"}),y.createHTMLDocument=((Ut=E.implementation.createHTMLDocument("").body).innerHTML="<form></form><form></form>",2===Ut.childNodes.length),S.parseHTML=function(e,t,n){return"string"!=typeof e?[]:("boolean"==typeof t&&(n=t,t=!1),t||(y.createHTMLDocument?((r=(t=E.implementation.createHTMLDocument("")).createElement("base")).href=E.location.href,t.head.appendChild(r)):t=E),o=!n&&[],(i=N.exec(e))?[t.createElement(i[1])]:(i=xe([e],t,o),o&&o.length&&S(o).remove(),S.merge([],i.childNodes)));var r,i,o},S.fn.load=function(e,t,n){var r,i,o,a=this,s=e.indexOf(" ");return-1<s&&(r=vt(e.slice(s)),e=e.slice(0,s)),m(t)?(n=t,t=void 0):t&&"object"==typeof t&&(i="POST"),0<a.length&&S.ajax({url:e,type:i||"GET",dataType:"html",data:t}).done(function(e){o=arguments,a.html(r?S("<div>").append(S.parseHTML(e)).find(r):e)}).always(n&&function(e,t){a.each(function(){n.apply(this,o||[e.responseText,t,e])})}),this},S.expr.pseudos.animated=function(t){return S.grep(S.timers,function(e){return t===e.elem}).length},S.offset={setOffset:function(e,t,n){var r,i,o,a,s,u,l=S.css(e,"position"),c=S(e),f={};"static"===l&&(e.style.position="relative"),s=c.offset(),o=S.css(e,"top"),u=S.css(e,"left"),("absolute"===l||"fixed"===l)&&-1<(o+u).indexOf("auto")?(a=(r=c.position()).top,i=r.left):(a=parseFloat(o)||0,i=parseFloat(u)||0),m(t)&&(t=t.call(e,n,S.extend({},s))),null!=t.top&&(f.top=t.top-s.top+a),null!=t.left&&(f.left=t.left-s.left+i),"using"in t?t.using.call(e,f):("number"==typeof f.top&&(f.top+="px"),"number"==typeof f.left&&(f.left+="px"),c.css(f))}},S.fn.extend({offset:function(t){if(arguments.length)return void 0===t?this:this.each(function(e){S.offset.setOffset(this,t,e)});var e,n,r=this[0];return r?r.getClientRects().length?(e=r.getBoundingClientRect(),n=r.ownerDocument.defaultView,{top:e.top+n.pageYOffset,left:e.left+n.pageXOffset}):{top:0,left:0}:void 0},position:function(){if(this[0]){var e,t,n,r=this[0],i={top:0,left:0};if("fixed"===S.css(r,"position"))t=r.getBoundingClientRect();else{t=this.offset(),n=r.ownerDocument,e=r.offsetParent||n.documentElement;while(e&&(e===n.body||e===n.documentElement)&&"static"===S.css(e,"position"))e=e.parentNode;e&&e!==r&&1===e.nodeType&&((i=S(e).offset()).top+=S.css(e,"borderTopWidth",!0),i.left+=S.css(e,"borderLeftWidth",!0))}return{top:t.top-i.top-S.css(r,"marginTop",!0),left:t.left-i.left-S.css(r,"marginLeft",!0)}}},offsetParent:function(){return this.map(function(){var e=this.offsetParent;while(e&&"static"===S.css(e,"position"))e=e.offsetParent;return e||re})}}),S.each({scrollLeft:"pageXOffset",scrollTop:"pageYOffset"},function(t,i){var o="pageYOffset"===i;S.fn[t]=function(e){return $(this,function(e,t,n){var r;if(x(e)?r=e:9===e.nodeType&&(r=e.defaultView),void 0===n)return r?r[i]:e[t];r?r.scrollTo(o?r.pageXOffset:n,o?n:r.pageYOffset):e[t]=n},t,e,arguments.length)}}),S.each(["top","left"],function(e,n){S.cssHooks[n]=$e(y.pixelPosition,function(e,t){if(t)return t=Be(e,n),Me.test(t)?S(e).position()[n]+"px":t})}),S.each({Height:"height",Width:"width"},function(a,s){S.each({padding:"inner"+a,content:s,"":"outer"+a},function(r,o){S.fn[o]=function(e,t){var n=arguments.length&&(r||"boolean"!=typeof e),i=r||(!0===e||!0===t?"margin":"border");return $(this,function(e,t,n){var r;return x(e)?0===o.indexOf("outer")?e["inner"+a]:e.document.documentElement["client"+a]:9===e.nodeType?(r=e.documentElement,Math.max(e.body["scroll"+a],r["scroll"+a],e.body["offset"+a],r["offset"+a],r["client"+a])):void 0===n?S.css(e,t,i):S.style(e,t,n,i)},s,n?e:void 0,n)}})}),S.each(["ajaxStart","ajaxStop","ajaxComplete","ajaxError","ajaxSuccess","ajaxSend"],function(e,t){S.fn[t]=function(e){return this.on(t,e)}}),S.fn.extend({bind:function(e,t,n){return this.on(e,null,t,n)},unbind:function(e,t){return this.off(e,null,t)},delegate:function(e,t,n,r){return this.on(t,e,n,r)},undelegate:function(e,t,n){return 1===arguments.length?this.off(e,"**"):this.off(t,e||"**",n)},hover:function(e,t){return this.mouseenter(e).mouseleave(t||e)}}),S.each("blur focus focusin focusout resize scroll click dblclick mousedown mouseup mousemove mouseover mouseout mouseenter mouseleave change select submit keydown keypress keyup contextmenu".split(" "),function(e,n){S.fn[n]=function(e,t){return 0<arguments.length?this.on(n,null,e,t):this.trigger(n)}});var Gt=/^[\s\uFEFF\xA0]+|[\s\uFEFF\xA0]+$/g;S.proxy=function(e,t){var n,r,i;if("string"==typeof t&&(n=e[t],t=e,e=n),m(e))return r=s.call(arguments,2),(i=function(){return e.apply(t||this,r.concat(s.call(arguments)))}).guid=e.guid=e.guid||S.guid++,i},S.holdReady=function(e){e?S.readyWait++:S.ready(!0)},S.isArray=Array.isArray,S.parseJSON=JSON.parse,S.nodeName=A,S.isFunction=m,S.isWindow=x,S.camelCase=X,S.type=w,S.now=Date.now,S.isNumeric=function(e){var t=S.type(e);return("number"===t||"string"===t)&&!isNaN(e-parseFloat(e))},S.trim=function(e){return null==e?"":(e+"").replace(Gt,"")},"function"==typeof define&&define.amd&&define("jquery",[],function(){return S});var Yt=C.jQuery,Qt=C.$;return S.noConflict=function(e){return C.$===S&&(C.$=Qt),e&&C.jQuery===S&&(C.jQuery=Yt),S},"undefined"==typeof e&&(C.jQuery=C.$=S),S});
diff --git a/oxAuth/Server/src/main/webapp/auth/bioid/js/objLoader.js b/oxAuth/Server/src/main/webapp/auth/bioid/js/objLoader.js
new file mode 100644
index 00000000..67f23958
--- /dev/null
+++ b/oxAuth/Server/src/main/webapp/auth/bioid/js/objLoader.js
@@ -0,0 +1,791 @@
+/**
+ * @author mrdoob / http://mrdoob.com/
+ */
+
+THREE.OBJLoader = ( function () {
+
+	// o object_name | g group_name
+	var object_pattern = /^[og]\s*(.+)?/;
+	// mtllib file_reference
+	var material_library_pattern = /^mtllib /;
+	// usemtl material_name
+	var material_use_pattern = /^usemtl /;
+
+	function ParserState() {
+
+		var state = {
+			objects: [],
+			object: {},
+
+			vertices: [],
+			normals: [],
+			colors: [],
+			uvs: [],
+
+			materialLibraries: [],
+
+			startObject: function ( name, fromDeclaration ) {
+
+				// If the current object (initial from reset) is not from a g/o declaration in the parsed
+				// file. We need to use it for the first parsed g/o to keep things in sync.
+				if ( this.object && this.object.fromDeclaration === false ) {
+
+					this.object.name = name;
+					this.object.fromDeclaration = ( fromDeclaration !== false );
+					return;
+
+				}
+
+				var previousMaterial = ( this.object && typeof this.object.currentMaterial === 'function' ? this.object.currentMaterial() : undefined );
+
+				if ( this.object && typeof this.object._finalize === 'function' ) {
+
+					this.object._finalize( true );
+
+				}
+
+				this.object = {
+					name: name || '',
+					fromDeclaration: ( fromDeclaration !== false ),
+
+					geometry: {
+						vertices: [],
+						normals: [],
+						colors: [],
+						uvs: []
+					},
+					materials: [],
+					smooth: true,
+
+					startMaterial: function ( name, libraries ) {
+
+						var previous = this._finalize( false );
+
+						// New usemtl declaration overwrites an inherited material, except if faces were declared
+						// after the material, then it must be preserved for proper MultiMaterial continuation.
+						if ( previous && ( previous.inherited || previous.groupCount <= 0 ) ) {
+
+							this.materials.splice( previous.index, 1 );
+
+						}
+
+						var material = {
+							index: this.materials.length,
+							name: name || '',
+							mtllib: ( Array.isArray( libraries ) && libraries.length > 0 ? libraries[ libraries.length - 1 ] : '' ),
+							smooth: ( previous !== undefined ? previous.smooth : this.smooth ),
+							groupStart: ( previous !== undefined ? previous.groupEnd : 0 ),
+							groupEnd: - 1,
+							groupCount: - 1,
+							inherited: false,
+
+							clone: function ( index ) {
+
+								var cloned = {
+									index: ( typeof index === 'number' ? index : this.index ),
+									name: this.name,
+									mtllib: this.mtllib,
+									smooth: this.smooth,
+									groupStart: 0,
+									groupEnd: - 1,
+									groupCount: - 1,
+									inherited: false
+								};
+								cloned.clone = this.clone.bind( cloned );
+								return cloned;
+
+							}
+						};
+
+						this.materials.push( material );
+
+						return material;
+
+					},
+
+					currentMaterial: function () {
+
+						if ( this.materials.length > 0 ) {
+
+							return this.materials[ this.materials.length - 1 ];
+
+						}
+
+						return undefined;
+
+					},
+
+					_finalize: function ( end ) {
+
+						var lastMultiMaterial = this.currentMaterial();
+						if ( lastMultiMaterial && lastMultiMaterial.groupEnd === - 1 ) {
+
+							lastMultiMaterial.groupEnd = this.geometry.vertices.length / 3;
+							lastMultiMaterial.groupCount = lastMultiMaterial.groupEnd - lastMultiMaterial.groupStart;
+							lastMultiMaterial.inherited = false;
+
+						}
+
+						// Ignore objects tail materials if no face declarations followed them before a new o/g started.
+						if ( end && this.materials.length > 1 ) {
+
+							for ( var mi = this.materials.length - 1; mi >= 0; mi -- ) {
+
+								if ( this.materials[ mi ].groupCount <= 0 ) {
+
+									this.materials.splice( mi, 1 );
+
+								}
+
+							}
+
+						}
+
+						// Guarantee at least one empty material, this makes the creation later more straight forward.
+						if ( end && this.materials.length === 0 ) {
+
+							this.materials.push( {
+								name: '',
+								smooth: this.smooth
+							} );
+
+						}
+
+						return lastMultiMaterial;
+
+					}
+				};
+
+				// Inherit previous objects material.
+				// Spec tells us that a declared material must be set to all objects until a new material is declared.
+				// If a usemtl declaration is encountered while this new object is being parsed, it will
+				// overwrite the inherited material. Exception being that there was already face declarations
+				// to the inherited material, then it will be preserved for proper MultiMaterial continuation.
+
+				if ( previousMaterial && previousMaterial.name && typeof previousMaterial.clone === 'function' ) {
+
+					var declared = previousMaterial.clone( 0 );
+					declared.inherited = true;
+					this.object.materials.push( declared );
+
+				}
+
+				this.objects.push( this.object );
+
+			},
+
+			finalize: function () {
+
+				if ( this.object && typeof this.object._finalize === 'function' ) {
+
+					this.object._finalize( true );
+
+				}
+
+			},
+
+			parseVertexIndex: function ( value, len ) {
+
+				var index = parseInt( value, 10 );
+				return ( index >= 0 ? index - 1 : index + len / 3 ) * 3;
+
+			},
+
+			parseNormalIndex: function ( value, len ) {
+
+				var index = parseInt( value, 10 );
+				return ( index >= 0 ? index - 1 : index + len / 3 ) * 3;
+
+			},
+
+			parseUVIndex: function ( value, len ) {
+
+				var index = parseInt( value, 10 );
+				return ( index >= 0 ? index - 1 : index + len / 2 ) * 2;
+
+			},
+
+			addVertex: function ( a, b, c ) {
+
+				var src = this.vertices;
+				var dst = this.object.geometry.vertices;
+
+				dst.push( src[ a + 0 ], src[ a + 1 ], src[ a + 2 ] );
+				dst.push( src[ b + 0 ], src[ b + 1 ], src[ b + 2 ] );
+				dst.push( src[ c + 0 ], src[ c + 1 ], src[ c + 2 ] );
+
+			},
+
+			addVertexPoint: function ( a ) {
+
+				var src = this.vertices;
+				var dst = this.object.geometry.vertices;
+
+				dst.push( src[ a + 0 ], src[ a + 1 ], src[ a + 2 ] );
+
+			},
+
+			addVertexLine: function ( a ) {
+
+				var src = this.vertices;
+				var dst = this.object.geometry.vertices;
+
+				dst.push( src[ a + 0 ], src[ a + 1 ], src[ a + 2 ] );
+
+			},
+
+			addNormal: function ( a, b, c ) {
+
+				var src = this.normals;
+				var dst = this.object.geometry.normals;
+
+				dst.push( src[ a + 0 ], src[ a + 1 ], src[ a + 2 ] );
+				dst.push( src[ b + 0 ], src[ b + 1 ], src[ b + 2 ] );
+				dst.push( src[ c + 0 ], src[ c + 1 ], src[ c + 2 ] );
+
+			},
+
+			addColor: function ( a, b, c ) {
+
+				var src = this.colors;
+				var dst = this.object.geometry.colors;
+
+				dst.push( src[ a + 0 ], src[ a + 1 ], src[ a + 2 ] );
+				dst.push( src[ b + 0 ], src[ b + 1 ], src[ b + 2 ] );
+				dst.push( src[ c + 0 ], src[ c + 1 ], src[ c + 2 ] );
+
+			},
+
+			addUV: function ( a, b, c ) {
+
+				var src = this.uvs;
+				var dst = this.object.geometry.uvs;
+
+				dst.push( src[ a + 0 ], src[ a + 1 ] );
+				dst.push( src[ b + 0 ], src[ b + 1 ] );
+				dst.push( src[ c + 0 ], src[ c + 1 ] );
+
+			},
+
+			addUVLine: function ( a ) {
+
+				var src = this.uvs;
+				var dst = this.object.geometry.uvs;
+
+				dst.push( src[ a + 0 ], src[ a + 1 ] );
+
+			},
+
+			addFace: function ( a, b, c, ua, ub, uc, na, nb, nc ) {
+
+				var vLen = this.vertices.length;
+
+				var ia = this.parseVertexIndex( a, vLen );
+				var ib = this.parseVertexIndex( b, vLen );
+				var ic = this.parseVertexIndex( c, vLen );
+
+				this.addVertex( ia, ib, ic );
+
+				if ( ua !== undefined && ua !== '' ) {
+
+					var uvLen = this.uvs.length;
+					ia = this.parseUVIndex( ua, uvLen );
+					ib = this.parseUVIndex( ub, uvLen );
+					ic = this.parseUVIndex( uc, uvLen );
+					this.addUV( ia, ib, ic );
+
+				}
+
+				if ( na !== undefined && na !== '' ) {
+
+					// Normals are many times the same. If so, skip function call and parseInt.
+					var nLen = this.normals.length;
+					ia = this.parseNormalIndex( na, nLen );
+
+					ib = na === nb ? ia : this.parseNormalIndex( nb, nLen );
+					ic = na === nc ? ia : this.parseNormalIndex( nc, nLen );
+
+					this.addNormal( ia, ib, ic );
+
+				}
+
+				if ( this.colors.length > 0 ) {
+
+					this.addColor( ia, ib, ic );
+
+				}
+
+			},
+
+			addPointGeometry: function ( vertices ) {
+
+				this.object.geometry.type = 'Points';
+
+				var vLen = this.vertices.length;
+
+				for ( var vi = 0, l = vertices.length; vi < l; vi ++ ) {
+
+					this.addVertexPoint( this.parseVertexIndex( vertices[ vi ], vLen ) );
+
+				}
+
+			},
+
+			addLineGeometry: function ( vertices, uvs ) {
+
+				this.object.geometry.type = 'Line';
+
+				var vLen = this.vertices.length;
+				var uvLen = this.uvs.length;
+
+				for ( var vi = 0, l = vertices.length; vi < l; vi ++ ) {
+
+					this.addVertexLine( this.parseVertexIndex( vertices[ vi ], vLen ) );
+
+				}
+
+				for ( var uvi = 0, l = uvs.length; uvi < l; uvi ++ ) {
+
+					this.addUVLine( this.parseUVIndex( uvs[ uvi ], uvLen ) );
+
+				}
+
+			}
+
+		};
+
+		state.startObject( '', false );
+
+		return state;
+
+	}
+
+	//
+
+	function OBJLoader( manager ) {
+
+		this.manager = ( manager !== undefined ) ? manager : THREE.DefaultLoadingManager;
+
+		this.materials = null;
+
+	}
+
+	OBJLoader.prototype = {
+
+		constructor: OBJLoader,
+
+		load: function ( url, onLoad, onProgress, onError ) {
+
+			var scope = this;
+
+			var loader = new THREE.FileLoader( scope.manager );
+			loader.setPath( this.path );
+			loader.load( url, function ( text ) {
+
+				onLoad( scope.parse( text ) );
+
+			}, onProgress, onError );
+
+		},
+
+		setPath: function ( value ) {
+
+			this.path = value;
+
+		},
+
+		setMaterials: function ( materials ) {
+
+			this.materials = materials;
+
+			return this;
+
+		},
+
+		parse: function ( text ) {
+
+			console.time( 'OBJLoader' );
+
+			var state = new ParserState();
+
+			if ( text.indexOf( '\r\n' ) !== - 1 ) {
+
+				// This is faster than String.split with regex that splits on both
+				text = text.replace( /\r\n/g, '\n' );
+
+			}
+
+			if ( text.indexOf( '\\\n' ) !== - 1 ) {
+
+				// join lines separated by a line continuation character (\)
+				text = text.replace( /\\\n/g, '' );
+
+			}
+
+			var lines = text.split( '\n' );
+			var line = '', lineFirstChar = '';
+			var lineLength = 0;
+			var result = [];
+
+			// Faster to just trim left side of the line. Use if available.
+			var trimLeft = ( typeof ''.trimLeft === 'function' );
+
+			for ( var i = 0, l = lines.length; i < l; i ++ ) {
+
+				line = lines[ i ];
+
+				line = trimLeft ? line.trimLeft() : line.trim();
+
+				lineLength = line.length;
+
+				if ( lineLength === 0 ) continue;
+
+				lineFirstChar = line.charAt( 0 );
+
+				// @todo invoke passed in handler if any
+				if ( lineFirstChar === '#' ) continue;
+
+				if ( lineFirstChar === 'v' ) {
+
+					var data = line.split( /\s+/ );
+
+					switch ( data[ 0 ] ) {
+
+						case 'v':
+							state.vertices.push(
+								parseFloat( data[ 1 ] ),
+								parseFloat( data[ 2 ] ),
+								parseFloat( data[ 3 ] )
+							);
+							if ( data.length === 8 ) {
+
+								state.colors.push(
+									parseFloat( data[ 4 ] ),
+									parseFloat( data[ 5 ] ),
+									parseFloat( data[ 6 ] )
+
+								);
+
+							}
+							break;
+						case 'vn':
+							state.normals.push(
+								parseFloat( data[ 1 ] ),
+								parseFloat( data[ 2 ] ),
+								parseFloat( data[ 3 ] )
+							);
+							break;
+						case 'vt':
+							state.uvs.push(
+								parseFloat( data[ 1 ] ),
+								parseFloat( data[ 2 ] )
+							);
+							break;
+
+					}
+
+				} else if ( lineFirstChar === 'f' ) {
+
+					var lineData = line.substr( 1 ).trim();
+					var vertexData = lineData.split( /\s+/ );
+					var faceVertices = [];
+
+					// Parse the face vertex data into an easy to work with format
+
+					for ( var j = 0, jl = vertexData.length; j < jl; j ++ ) {
+
+						var vertex = vertexData[ j ];
+
+						if ( vertex.length > 0 ) {
+
+							var vertexParts = vertex.split( '/' );
+							faceVertices.push( vertexParts );
+
+						}
+
+					}
+
+					// Draw an edge between the first vertex and all subsequent vertices to form an n-gon
+
+					var v1 = faceVertices[ 0 ];
+
+					for ( var j = 1, jl = faceVertices.length - 1; j < jl; j ++ ) {
+
+						var v2 = faceVertices[ j ];
+						var v3 = faceVertices[ j + 1 ];
+
+						state.addFace(
+							v1[ 0 ], v2[ 0 ], v3[ 0 ],
+							v1[ 1 ], v2[ 1 ], v3[ 1 ],
+							v1[ 2 ], v2[ 2 ], v3[ 2 ]
+						);
+
+					}
+
+				} else if ( lineFirstChar === 'l' ) {
+
+					var lineParts = line.substring( 1 ).trim().split( " " );
+					var lineVertices = [], lineUVs = [];
+
+					if ( line.indexOf( "/" ) === - 1 ) {
+
+						lineVertices = lineParts;
+
+					} else {
+
+						for ( var li = 0, llen = lineParts.length; li < llen; li ++ ) {
+
+							var parts = lineParts[ li ].split( "/" );
+
+							if ( parts[ 0 ] !== "" ) lineVertices.push( parts[ 0 ] );
+							if ( parts[ 1 ] !== "" ) lineUVs.push( parts[ 1 ] );
+
+						}
+
+					}
+					state.addLineGeometry( lineVertices, lineUVs );
+
+				} else if ( lineFirstChar === 'p' ) {
+
+					var lineData = line.substr( 1 ).trim();
+					var pointData = lineData.split( " " );
+
+					state.addPointGeometry( pointData );
+
+				} else if ( ( result = object_pattern.exec( line ) ) !== null ) {
+
+					// o object_name
+					// or
+					// g group_name
+
+					// WORKAROUND: https://bugs.chromium.org/p/v8/issues/detail?id=2869
+					// var name = result[ 0 ].substr( 1 ).trim();
+					var name = ( " " + result[ 0 ].substr( 1 ).trim() ).substr( 1 );
+
+					state.startObject( name );
+
+				} else if ( material_use_pattern.test( line ) ) {
+
+					// material
+
+					state.object.startMaterial( line.substring( 7 ).trim(), state.materialLibraries );
+
+				} else if ( material_library_pattern.test( line ) ) {
+
+					// mtl file
+
+					state.materialLibraries.push( line.substring( 7 ).trim() );
+
+				} else if ( lineFirstChar === 's' ) {
+
+					result = line.split( ' ' );
+
+					// smooth shading
+
+					// @todo Handle files that have varying smooth values for a set of faces inside one geometry,
+					// but does not define a usemtl for each face set.
+					// This should be detected and a dummy material created (later MultiMaterial and geometry groups).
+					// This requires some care to not create extra material on each smooth value for "normal" obj files.
+					// where explicit usemtl defines geometry groups.
+					// Example asset: examples/models/obj/cerberus/Cerberus.obj
+
+					/*
+					 * http://paulbourke.net/dataformats/obj/
+					 * or
+					 * http://www.cs.utah.edu/~boulos/cs3505/obj_spec.pdf
+					 *
+					 * From chapter "Grouping" Syntax explanation "s group_number":
+					 * "group_number is the smoothing group number. To turn off smoothing groups, use a value of 0 or off.
+					 * Polygonal elements use group numbers to put elements in different smoothing groups. For free-form
+					 * surfaces, smoothing groups are either turned on or off; there is no difference between values greater
+					 * than 0."
+					 */
+					if ( result.length > 1 ) {
+
+						var value = result[ 1 ].trim().toLowerCase();
+						state.object.smooth = ( value !== '0' && value !== 'off' );
+
+					} else {
+
+						// ZBrush can produce "s" lines #11707
+						state.object.smooth = true;
+
+					}
+					var material = state.object.currentMaterial();
+					if ( material ) material.smooth = state.object.smooth;
+
+				} else {
+
+					// Handle null terminated files without exception
+					if ( line === '\0' ) continue;
+
+					throw new Error( 'THREE.OBJLoader: Unexpected line: "' + line + '"' );
+
+				}
+
+			}
+
+			state.finalize();
+
+			var container = new THREE.Group();
+			container.materialLibraries = [].concat( state.materialLibraries );
+
+			for ( var i = 0, l = state.objects.length; i < l; i ++ ) {
+
+				var object = state.objects[ i ];
+				var geometry = object.geometry;
+				var materials = object.materials;
+				var isLine = ( geometry.type === 'Line' );
+				var isPoints = ( geometry.type === 'Points' );
+				var hasVertexColors = false;
+
+				// Skip o/g line declarations that did not follow with any faces
+				if ( geometry.vertices.length === 0 ) continue;
+
+				var buffergeometry = new THREE.BufferGeometry();
+
+				buffergeometry.addAttribute( 'position', new THREE.Float32BufferAttribute( geometry.vertices, 3 ) );
+
+				if ( geometry.normals.length > 0 ) {
+
+					buffergeometry.addAttribute( 'normal', new THREE.Float32BufferAttribute( geometry.normals, 3 ) );
+
+				} else {
+
+					buffergeometry.computeVertexNormals();
+
+				}
+
+				if ( geometry.colors.length > 0 ) {
+
+					hasVertexColors = true;
+					buffergeometry.addAttribute( 'color', new THREE.Float32BufferAttribute( geometry.colors, 3 ) );
+
+				}
+
+				if ( geometry.uvs.length > 0 ) {
+
+					buffergeometry.addAttribute( 'uv', new THREE.Float32BufferAttribute( geometry.uvs, 2 ) );
+
+				}
+
+				// Create materials
+
+				var createdMaterials = [];
+
+				for ( var mi = 0, miLen = materials.length; mi < miLen; mi ++ ) {
+
+					var sourceMaterial = materials[ mi ];
+					var material = undefined;
+
+					if ( this.materials !== null ) {
+
+						material = this.materials.create( sourceMaterial.name );
+
+						// mtl etc. loaders probably can't create line materials correctly, copy properties to a line material.
+						if ( isLine && material && ! ( material instanceof THREE.LineBasicMaterial ) ) {
+
+							var materialLine = new THREE.LineBasicMaterial();
+							materialLine.copy( material );
+							materialLine.lights = false; // TOFIX
+							material = materialLine;
+
+						} else if ( isPoints && material && ! ( material instanceof THREE.PointsMaterial ) ) {
+
+							var materialPoints = new THREE.PointsMaterial( { size: 10, sizeAttenuation: false } );
+							materialLine.copy( material );
+							material = materialPoints;
+
+						}
+
+					}
+
+					if ( ! material ) {
+
+						if ( isLine ) {
+
+							material = new THREE.LineBasicMaterial();
+
+						} else if ( isPoints ) {
+
+							material = new THREE.PointsMaterial( { size: 1, sizeAttenuation: false } );
+
+						} else {
+
+							material = new THREE.MeshPhongMaterial();
+
+						}
+
+						material.name = sourceMaterial.name;
+
+					}
+
+					material.flatShading = sourceMaterial.smooth ? false : true;
+					material.vertexColors = hasVertexColors ? THREE.VertexColors : THREE.NoColors;
+
+					createdMaterials.push( material );
+
+				}
+
+				// Create mesh
+
+				var mesh;
+
+				if ( createdMaterials.length > 1 ) {
+
+					for ( var mi = 0, miLen = materials.length; mi < miLen; mi ++ ) {
+
+						var sourceMaterial = materials[ mi ];
+						buffergeometry.addGroup( sourceMaterial.groupStart, sourceMaterial.groupCount, mi );
+
+					}
+
+					if ( isLine ) {
+
+						mesh = new THREE.LineSegments( buffergeometry, createdMaterials );
+
+					} else if ( isPoints ) {
+
+						mesh = new THREE.Points( buffergeometry, createdMaterials );
+
+					} else {
+
+						mesh = new THREE.Mesh( buffergeometry, createdMaterials );
+
+					}
+
+				} else {
+
+					if ( isLine ) {
+
+						mesh = new THREE.LineSegments( buffergeometry, createdMaterials[ 0 ] );
+
+					} else if ( isPoints ) {
+
+						mesh = new THREE.Points( buffergeometry, createdMaterials[ 0 ] );
+
+					} else {
+
+						mesh = new THREE.Mesh( buffergeometry, createdMaterials[ 0 ] );
+
+					}
+
+				}
+
+				mesh.name = object.name;
+
+				container.add( mesh );
+
+			}
+
+			console.timeEnd( 'OBJLoader' );
+
+			return container;
+
+		}
+
+	};
+
+	return OBJLoader;
+
+} )();
\ No newline at end of file
diff --git a/oxAuth/Server/src/main/webapp/auth/bioid/js/objLoader.min.js b/oxAuth/Server/src/main/webapp/auth/bioid/js/objLoader.min.js
new file mode 100644
index 00000000..11db37d1
--- /dev/null
+++ b/oxAuth/Server/src/main/webapp/auth/bioid/js/objLoader.min.js
@@ -0,0 +1 @@
+THREE.OBJLoader=function(){var t=/^[og]\s*(.+)?/,e=/^mtllib /,r=/^usemtl /;function i(t){this.manager=void 0!==t?t:THREE.DefaultLoadingManager,this.materials=null}return i.prototype={constructor:i,load:function(t,e,r,i){var s=this,a=new THREE.FileLoader(s.manager);a.setPath(this.path),a.load(t,function(t){e(s.parse(t))},r,i)},setPath:function(t){this.path=t},setMaterials:function(t){return this.materials=t,this},parse:function(i){console.time("OBJLoader");var s=new function(){var t={objects:[],object:{},vertices:[],normals:[],colors:[],uvs:[],materialLibraries:[],startObject:function(t,e){if(this.object&&!1===this.object.fromDeclaration)return this.object.name=t,void(this.object.fromDeclaration=!1!==e);var r=this.object&&"function"==typeof this.object.currentMaterial?this.object.currentMaterial():void 0;if(this.object&&"function"==typeof this.object._finalize&&this.object._finalize(!0),this.object={name:t||"",fromDeclaration:!1!==e,geometry:{vertices:[],normals:[],colors:[],uvs:[]},materials:[],smooth:!0,startMaterial:function(t,e){var r=this._finalize(!1);r&&(r.inherited||r.groupCount<=0)&&this.materials.splice(r.index,1);var i={index:this.materials.length,name:t||"",mtllib:Array.isArray(e)&&e.length>0?e[e.length-1]:"",smooth:void 0!==r?r.smooth:this.smooth,groupStart:void 0!==r?r.groupEnd:0,groupEnd:-1,groupCount:-1,inherited:!1,clone:function(t){var e={index:"number"==typeof t?t:this.index,name:this.name,mtllib:this.mtllib,smooth:this.smooth,groupStart:0,groupEnd:-1,groupCount:-1,inherited:!1};return e.clone=this.clone.bind(e),e}};return this.materials.push(i),i},currentMaterial:function(){if(this.materials.length>0)return this.materials[this.materials.length-1]},_finalize:function(t){var e=this.currentMaterial();if(e&&-1===e.groupEnd&&(e.groupEnd=this.geometry.vertices.length/3,e.groupCount=e.groupEnd-e.groupStart,e.inherited=!1),t&&this.materials.length>1)for(var r=this.materials.length-1;r>=0;r--)this.materials[r].groupCount<=0&&this.materials.splice(r,1);return t&&0===this.materials.length&&this.materials.push({name:"",smooth:this.smooth}),e}},r&&r.name&&"function"==typeof r.clone){var i=r.clone(0);i.inherited=!0,this.object.materials.push(i)}this.objects.push(this.object)},finalize:function(){this.object&&"function"==typeof this.object._finalize&&this.object._finalize(!0)},parseVertexIndex:function(t,e){var r=parseInt(t,10);return 3*(r>=0?r-1:r+e/3)},parseNormalIndex:function(t,e){var r=parseInt(t,10);return 3*(r>=0?r-1:r+e/3)},parseUVIndex:function(t,e){var r=parseInt(t,10);return 2*(r>=0?r-1:r+e/2)},addVertex:function(t,e,r){var i=this.vertices,s=this.object.geometry.vertices;s.push(i[t+0],i[t+1],i[t+2]),s.push(i[e+0],i[e+1],i[e+2]),s.push(i[r+0],i[r+1],i[r+2])},addVertexPoint:function(t){var e=this.vertices;this.object.geometry.vertices.push(e[t+0],e[t+1],e[t+2])},addVertexLine:function(t){var e=this.vertices;this.object.geometry.vertices.push(e[t+0],e[t+1],e[t+2])},addNormal:function(t,e,r){var i=this.normals,s=this.object.geometry.normals;s.push(i[t+0],i[t+1],i[t+2]),s.push(i[e+0],i[e+1],i[e+2]),s.push(i[r+0],i[r+1],i[r+2])},addColor:function(t,e,r){var i=this.colors,s=this.object.geometry.colors;s.push(i[t+0],i[t+1],i[t+2]),s.push(i[e+0],i[e+1],i[e+2]),s.push(i[r+0],i[r+1],i[r+2])},addUV:function(t,e,r){var i=this.uvs,s=this.object.geometry.uvs;s.push(i[t+0],i[t+1]),s.push(i[e+0],i[e+1]),s.push(i[r+0],i[r+1])},addUVLine:function(t){var e=this.uvs;this.object.geometry.uvs.push(e[t+0],e[t+1])},addFace:function(t,e,r,i,s,a,n,o,h){var l=this.vertices.length,u=this.parseVertexIndex(t,l),c=this.parseVertexIndex(e,l),p=this.parseVertexIndex(r,l);if(this.addVertex(u,c,p),void 0!==i&&""!==i){var m=this.uvs.length;u=this.parseUVIndex(i,m),c=this.parseUVIndex(s,m),p=this.parseUVIndex(a,m),this.addUV(u,c,p)}if(void 0!==n&&""!==n){var f=this.normals.length;u=this.parseNormalIndex(n,f),c=n===o?u:this.parseNormalIndex(o,f),p=n===h?u:this.parseNormalIndex(h,f),this.addNormal(u,c,p)}this.colors.length>0&&this.addColor(u,c,p)},addPointGeometry:function(t){this.object.geometry.type="Points";for(var e=this.vertices.length,r=0,i=t.length;r<i;r++)this.addVertexPoint(this.parseVertexIndex(t[r],e))},addLineGeometry:function(t,e){this.object.geometry.type="Line";for(var r=this.vertices.length,i=this.uvs.length,s=0,a=t.length;s<a;s++)this.addVertexLine(this.parseVertexIndex(t[s],r));var n=0;for(a=e.length;n<a;n++)this.addUVLine(this.parseUVIndex(e[n],i))}};return t.startObject("",!1),t};-1!==i.indexOf("\r\n")&&(i=i.replace(/\r\n/g,"\n")),-1!==i.indexOf("\\\n")&&(i=i.replace(/\\\n/g,""));for(var a=i.split("\n"),n="",o="",h=[],l="function"==typeof"".trimLeft,u=0,c=a.length;u<c;u++)if(n=a[u],0!==(n=l?n.trimLeft():n.trim()).length&&"#"!==(o=n.charAt(0)))if("v"===o){var p=n.split(/\s+/);switch(p[0]){case"v":s.vertices.push(parseFloat(p[1]),parseFloat(p[2]),parseFloat(p[3])),8===p.length&&s.colors.push(parseFloat(p[4]),parseFloat(p[5]),parseFloat(p[6]));break;case"vn":s.normals.push(parseFloat(p[1]),parseFloat(p[2]),parseFloat(p[3]));break;case"vt":s.uvs.push(parseFloat(p[1]),parseFloat(p[2]))}}else if("f"===o){for(var m=n.substr(1).trim().split(/\s+/),f=[],d=0,v=m.length;d<v;d++){var g=m[d];if(g.length>0){var b=g.split("/");f.push(b)}}var E=f[0];for(d=1,v=f.length-1;d<v;d++){var x=f[d],j=f[d+1];s.addFace(E[0],x[0],j[0],E[1],x[1],j[1],E[2],x[2],j[2])}}else if("l"===o){var y=n.substring(1).trim().split(" "),L=[],H=[];if(-1===n.indexOf("/"))L=y;else for(var R=0,T=y.length;R<T;R++){var w=y[R].split("/");""!==w[0]&&L.push(w[0]),""!==w[1]&&H.push(w[1])}s.addLineGeometry(L,H)}else if("p"===o){var V=n.substr(1).trim().split(" ");s.addPointGeometry(V)}else if(null!==(h=t.exec(n))){var M=(" "+h[0].substr(1).trim()).substr(1);s.startObject(M)}else if(r.test(n))s.object.startMaterial(n.substring(7).trim(),s.materialLibraries);else if(e.test(n))s.materialLibraries.push(n.substring(7).trim());else{if("s"!==o){if("\0"===n)continue;throw new Error('THREE.OBJLoader: Unexpected line: "'+n+'"')}if((h=n.split(" ")).length>1){var F=h[1].trim().toLowerCase();s.object.smooth="0"!==F&&"off"!==F}else s.object.smooth=!0;(J=s.object.currentMaterial())&&(J.smooth=s.object.smooth)}s.finalize();var I=new THREE.Group;I.materialLibraries=[].concat(s.materialLibraries);for(u=0,c=s.objects.length;u<c;u++){var P=s.objects[u],A=P.geometry,z=P.materials,B="Line"===A.type,C="Points"===A.type,O=!1;if(0!==A.vertices.length){var U=new THREE.BufferGeometry;U.addAttribute("position",new THREE.Float32BufferAttribute(A.vertices,3)),A.normals.length>0?U.addAttribute("normal",new THREE.Float32BufferAttribute(A.normals,3)):U.computeVertexNormals(),A.colors.length>0&&(O=!0,U.addAttribute("color",new THREE.Float32BufferAttribute(A.colors,3))),A.uvs.length>0&&U.addAttribute("uv",new THREE.Float32BufferAttribute(A.uvs,2));for(var N,G=[],S=0,_=z.length;S<_;S++){var D=z[S],J=void 0;if(null!==this.materials)if(J=this.materials.create(D.name),!B||!J||J instanceof THREE.LineBasicMaterial){if(C&&J&&!(J instanceof THREE.PointsMaterial)){var k=new THREE.PointsMaterial({size:10,sizeAttenuation:!1});q.copy(J),J=k}}else{var q=new THREE.LineBasicMaterial;q.copy(J),q.lights=!1,J=q}J||((J=B?new THREE.LineBasicMaterial:C?new THREE.PointsMaterial({size:1,sizeAttenuation:!1}):new THREE.MeshPhongMaterial).name=D.name),J.flatShading=!D.smooth,J.vertexColors=O?THREE.VertexColors:THREE.NoColors,G.push(J)}if(G.length>1){for(S=0,_=z.length;S<_;S++){D=z[S];U.addGroup(D.groupStart,D.groupCount,S)}N=B?new THREE.LineSegments(U,G):C?new THREE.Points(U,G):new THREE.Mesh(U,G)}else N=B?new THREE.LineSegments(U,G[0]):C?new THREE.Points(U,G[0]):new THREE.Mesh(U,G[0]);N.name=P.name,I.add(N)}}return console.timeEnd("OBJLoader"),I}},i}();
\ No newline at end of file
diff --git a/oxAuth/Server/src/main/webapp/auth/bioid/js/three.min.js b/oxAuth/Server/src/main/webapp/auth/bioid/js/three.min.js
new file mode 100644
index 00000000..96fc18a6
--- /dev/null
+++ b/oxAuth/Server/src/main/webapp/auth/bioid/js/three.min.js
@@ -0,0 +1,927 @@
+// threejs.org/license
+(function(k,xa){"object"===typeof exports&&"undefined"!==typeof module?xa(exports):"function"===typeof define&&define.amd?define(["exports"],xa):xa(k.THREE={})})(this,function(k){function xa(){}function C(a,b){this.x=a||0;this.y=b||0}function M(){this.elements=[1,0,0,0,0,1,0,0,0,0,1,0,0,0,0,1];0<arguments.length&&console.error("THREE.Matrix4: the constructor no longer reads arguments. use .set() instead.")}function ja(a,b,c,d){this._x=a||0;this._y=b||0;this._z=c||0;this._w=void 0!==d?d:1}function p(a,
+b,c){this.x=a||0;this.y=b||0;this.z=c||0}function sa(){this.elements=[1,0,0,0,1,0,0,0,1];0<arguments.length&&console.error("THREE.Matrix3: the constructor no longer reads arguments. use .set() instead.")}function Y(a,b,c,d,e,f,g,h,l,m){Object.defineProperty(this,"id",{value:xf++});this.uuid=S.generateUUID();this.name="";this.image=void 0!==a?a:Y.DEFAULT_IMAGE;this.mipmaps=[];this.mapping=void 0!==b?b:Y.DEFAULT_MAPPING;this.wrapS=void 0!==c?c:1001;this.wrapT=void 0!==d?d:1001;this.magFilter=void 0!==
+e?e:1006;this.minFilter=void 0!==f?f:1008;this.anisotropy=void 0!==l?l:1;this.format=void 0!==g?g:1023;this.type=void 0!==h?h:1009;this.offset=new C(0,0);this.repeat=new C(1,1);this.center=new C(0,0);this.rotation=0;this.matrixAutoUpdate=!0;this.matrix=new sa;this.generateMipmaps=!0;this.premultiplyAlpha=!1;this.flipY=!0;this.unpackAlignment=4;this.encoding=void 0!==m?m:3E3;this.version=0;this.onUpdate=null}function ea(a,b,c,d){this.x=a||0;this.y=b||0;this.z=c||0;this.w=void 0!==d?d:1}function hb(a,
+b,c){this.width=a;this.height=b;this.scissor=new ea(0,0,a,b);this.scissorTest=!1;this.viewport=new ea(0,0,a,b);c=c||{};void 0===c.minFilter&&(c.minFilter=1006);this.texture=new Y(void 0,void 0,c.wrapS,c.wrapT,c.magFilter,c.minFilter,c.format,c.type,c.anisotropy,c.encoding);this.depthBuffer=void 0!==c.depthBuffer?c.depthBuffer:!0;this.stencilBuffer=void 0!==c.stencilBuffer?c.stencilBuffer:!0;this.depthTexture=void 0!==c.depthTexture?c.depthTexture:null}function Ib(a,b,c){hb.call(this,a,b,c);this.activeMipMapLevel=
+this.activeCubeFace=0}function ib(a,b,c,d,e,f,g,h,l,m,u,n){Y.call(this,null,f,g,h,l,m,d,e,u,n);this.image={data:a,width:b,height:c};this.magFilter=void 0!==l?l:1003;this.minFilter=void 0!==m?m:1003;this.flipY=this.generateMipmaps=!1;this.unpackAlignment=1}function Va(a,b){this.min=void 0!==a?a:new p(Infinity,Infinity,Infinity);this.max=void 0!==b?b:new p(-Infinity,-Infinity,-Infinity)}function Ea(a,b){this.center=void 0!==a?a:new p;this.radius=void 0!==b?b:0}function Fa(a,b){this.normal=void 0!==
+a?a:new p(1,0,0);this.constant=void 0!==b?b:0}function ld(a,b,c,d,e,f){this.planes=[void 0!==a?a:new Fa,void 0!==b?b:new Fa,void 0!==c?c:new Fa,void 0!==d?d:new Fa,void 0!==e?e:new Fa,void 0!==f?f:new Fa]}function I(a,b,c){return void 0===b&&void 0===c?this.set(a):this.setRGB(a,b,c)}function yf(a){function b(b,c){var d=b.array,e=b.dynamic?a.DYNAMIC_DRAW:a.STATIC_DRAW,h=a.createBuffer();a.bindBuffer(c,h);a.bufferData(c,d,e);b.onUploadCallback();c=a.FLOAT;d instanceof Float32Array?c=a.FLOAT:d instanceof
+Float64Array?console.warn("THREE.WebGLAttributes: Unsupported data buffer format: Float64Array."):d instanceof Uint16Array?c=a.UNSIGNED_SHORT:d instanceof Int16Array?c=a.SHORT:d instanceof Uint32Array?c=a.UNSIGNED_INT:d instanceof Int32Array?c=a.INT:d instanceof Int8Array?c=a.BYTE:d instanceof Uint8Array&&(c=a.UNSIGNED_BYTE);return{buffer:h,type:c,bytesPerElement:d.BYTES_PER_ELEMENT,version:b.version}}var c=new WeakMap;return{get:function(a){a.isInterleavedBufferAttribute&&(a=a.data);return c.get(a)},
+remove:function(b){b.isInterleavedBufferAttribute&&(b=b.data);var d=c.get(b);d&&(a.deleteBuffer(d.buffer),c.delete(b))},update:function(d,e){d.isInterleavedBufferAttribute&&(d=d.data);var f=c.get(d);if(void 0===f)c.set(d,b(d,e));else if(f.version<d.version){var g=d,h=g.array,l=g.updateRange;a.bindBuffer(e,f.buffer);!1===g.dynamic?a.bufferData(e,h,a.STATIC_DRAW):-1===l.count?a.bufferSubData(e,0,h):0===l.count?console.error("THREE.WebGLObjects.updateBuffer: dynamic THREE.BufferAttribute marked as needsUpdate but updateRange.count is 0, ensure you are using set methods or updating manually."):
+(a.bufferSubData(e,l.offset*h.BYTES_PER_ELEMENT,h.subarray(l.offset,l.offset+l.count)),l.count=-1);f.version=d.version}}}}function jb(a,b,c,d){this._x=a||0;this._y=b||0;this._z=c||0;this._order=d||jb.DefaultOrder}function Sd(){this.mask=1}function A(){Object.defineProperty(this,"id",{value:zf++});this.uuid=S.generateUUID();this.name="";this.type="Object3D";this.parent=null;this.children=[];this.up=A.DefaultUp.clone();var a=new p,b=new jb,c=new ja,d=new p(1,1,1);b.onChange(function(){c.setFromEuler(b,
+!1)});c.onChange(function(){b.setFromQuaternion(c,void 0,!1)});Object.defineProperties(this,{position:{enumerable:!0,value:a},rotation:{enumerable:!0,value:b},quaternion:{enumerable:!0,value:c},scale:{enumerable:!0,value:d},modelViewMatrix:{value:new M},normalMatrix:{value:new sa}});this.matrix=new M;this.matrixWorld=new M;this.matrixAutoUpdate=A.DefaultMatrixAutoUpdate;this.matrixWorldNeedsUpdate=!1;this.layers=new Sd;this.visible=!0;this.receiveShadow=this.castShadow=!1;this.frustumCulled=!0;this.renderOrder=
+0;this.userData={}}function Qa(){A.call(this);this.type="Camera";this.matrixWorldInverse=new M;this.projectionMatrix=new M}function Jb(a,b,c,d,e,f){Qa.call(this);this.type="OrthographicCamera";this.zoom=1;this.view=null;this.left=a;this.right=b;this.top=c;this.bottom=d;this.near=void 0!==e?e:.1;this.far=void 0!==f?f:2E3;this.updateProjectionMatrix()}function Wa(a,b,c,d,e,f){this.a=a;this.b=b;this.c=c;this.normal=d&&d.isVector3?d:new p;this.vertexNormals=Array.isArray(d)?d:[];this.color=e&&e.isColor?
+e:new I;this.vertexColors=Array.isArray(e)?e:[];this.materialIndex=void 0!==f?f:0}function N(){Object.defineProperty(this,"id",{value:Af+=2});this.uuid=S.generateUUID();this.name="";this.type="Geometry";this.vertices=[];this.colors=[];this.faces=[];this.faceVertexUvs=[[]];this.morphTargets=[];this.morphNormals=[];this.skinWeights=[];this.skinIndices=[];this.lineDistances=[];this.boundingSphere=this.boundingBox=null;this.groupsNeedUpdate=this.lineDistancesNeedUpdate=this.colorsNeedUpdate=this.normalsNeedUpdate=
+this.uvsNeedUpdate=this.verticesNeedUpdate=this.elementsNeedUpdate=!1}function T(a,b,c){if(Array.isArray(a))throw new TypeError("THREE.BufferAttribute: array should be a Typed Array.");this.name="";this.array=a;this.itemSize=b;this.count=void 0!==a?a.length/b:0;this.normalized=!0===c;this.dynamic=!1;this.updateRange={offset:0,count:-1};this.version=0}function rc(a,b,c){T.call(this,new Int8Array(a),b,c)}function sc(a,b,c){T.call(this,new Uint8Array(a),b,c)}function tc(a,b,c){T.call(this,new Uint8ClampedArray(a),
+b,c)}function uc(a,b,c){T.call(this,new Int16Array(a),b,c)}function kb(a,b,c){T.call(this,new Uint16Array(a),b,c)}function vc(a,b,c){T.call(this,new Int32Array(a),b,c)}function lb(a,b,c){T.call(this,new Uint32Array(a),b,c)}function z(a,b,c){T.call(this,new Float32Array(a),b,c)}function wc(a,b,c){T.call(this,new Float64Array(a),b,c)}function Ce(){this.vertices=[];this.normals=[];this.colors=[];this.uvs=[];this.uvs2=[];this.groups=[];this.morphTargets={};this.skinWeights=[];this.skinIndices=[];this.boundingSphere=
+this.boundingBox=null;this.groupsNeedUpdate=this.uvsNeedUpdate=this.colorsNeedUpdate=this.normalsNeedUpdate=this.verticesNeedUpdate=!1}function De(a){if(0===a.length)return-Infinity;for(var b=a[0],c=1,d=a.length;c<d;++c)a[c]>b&&(b=a[c]);return b}function F(){Object.defineProperty(this,"id",{value:Bf+=2});this.uuid=S.generateUUID();this.name="";this.type="BufferGeometry";this.index=null;this.attributes={};this.morphAttributes={};this.groups=[];this.boundingSphere=this.boundingBox=null;this.drawRange=
+{start:0,count:Infinity}}function Kb(a,b,c,d,e,f){N.call(this);this.type="BoxGeometry";this.parameters={width:a,height:b,depth:c,widthSegments:d,heightSegments:e,depthSegments:f};this.fromBufferGeometry(new mb(a,b,c,d,e,f));this.mergeVertices()}function mb(a,b,c,d,e,f){function g(a,b,c,d,e,f,g,k,P,H,ta){var q=f/P,v=g/H,x=f/2,K=g/2,w=k/2;g=P+1;var y=H+1,B=f=0,G,C,z=new p;for(C=0;C<y;C++){var A=C*v-K;for(G=0;G<g;G++)z[a]=(G*q-x)*d,z[b]=A*e,z[c]=w,m.push(z.x,z.y,z.z),z[a]=0,z[b]=0,z[c]=0<k?1:-1,u.push(z.x,
+z.y,z.z),n.push(G/P),n.push(1-C/H),f+=1}for(C=0;C<H;C++)for(G=0;G<P;G++)a=t+G+g*(C+1),b=t+(G+1)+g*(C+1),c=t+(G+1)+g*C,l.push(t+G+g*C,a,c),l.push(a,b,c),B+=6;h.addGroup(r,B,ta);r+=B;t+=f}F.call(this);this.type="BoxBufferGeometry";this.parameters={width:a,height:b,depth:c,widthSegments:d,heightSegments:e,depthSegments:f};var h=this;a=a||1;b=b||1;c=c||1;d=Math.floor(d)||1;e=Math.floor(e)||1;f=Math.floor(f)||1;var l=[],m=[],u=[],n=[],t=0,r=0;g("z","y","x",-1,-1,c,b,a,f,e,0);g("z","y","x",1,-1,c,b,-a,
+f,e,1);g("x","z","y",1,1,a,c,b,d,f,2);g("x","z","y",1,-1,a,c,-b,d,f,3);g("x","y","z",1,-1,a,b,c,d,e,4);g("x","y","z",-1,-1,a,b,-c,d,e,5);this.setIndex(l);this.addAttribute("position",new z(m,3));this.addAttribute("normal",new z(u,3));this.addAttribute("uv",new z(n,2))}function xc(a,b,c,d){N.call(this);this.type="PlaneGeometry";this.parameters={width:a,height:b,widthSegments:c,heightSegments:d};this.fromBufferGeometry(new pb(a,b,c,d));this.mergeVertices()}function pb(a,b,c,d){F.call(this);this.type=
+"PlaneBufferGeometry";this.parameters={width:a,height:b,widthSegments:c,heightSegments:d};a=a||1;b=b||1;var e=a/2,f=b/2;c=Math.floor(c)||1;d=Math.floor(d)||1;var g=c+1,h=d+1,l=a/c,m=b/d,u=[],n=[],t=[],r=[];for(a=0;a<h;a++){var q=a*m-f;for(b=0;b<g;b++)n.push(b*l-e,-q,0),t.push(0,0,1),r.push(b/c),r.push(1-a/d)}for(a=0;a<d;a++)for(b=0;b<c;b++)e=b+g*(a+1),f=b+1+g*(a+1),h=b+1+g*a,u.push(b+g*a,e,h),u.push(e,f,h);this.setIndex(u);this.addAttribute("position",new z(n,3));this.addAttribute("normal",new z(t,
+3));this.addAttribute("uv",new z(r,2))}function O(){Object.defineProperty(this,"id",{value:Cf++});this.uuid=S.generateUUID();this.name="";this.type="Material";this.lights=this.fog=!0;this.blending=1;this.side=0;this.flatShading=!1;this.vertexColors=0;this.opacity=1;this.transparent=!1;this.blendSrc=204;this.blendDst=205;this.blendEquation=100;this.blendEquationAlpha=this.blendDstAlpha=this.blendSrcAlpha=null;this.depthFunc=3;this.depthWrite=this.depthTest=!0;this.clippingPlanes=null;this.clipShadows=
+this.clipIntersection=!1;this.shadowSide=null;this.colorWrite=!0;this.precision=null;this.polygonOffset=!1;this.polygonOffsetUnits=this.polygonOffsetFactor=0;this.dithering=!1;this.alphaTest=0;this.premultipliedAlpha=!1;this.overdraw=0;this.visible=!0;this.userData={};this.needsUpdate=!0}function za(a){O.call(this);this.type="MeshBasicMaterial";this.color=new I(16777215);this.lightMap=this.map=null;this.lightMapIntensity=1;this.aoMap=null;this.aoMapIntensity=1;this.envMap=this.alphaMap=this.specularMap=
+null;this.combine=0;this.reflectivity=1;this.refractionRatio=.98;this.wireframe=!1;this.wireframeLinewidth=1;this.wireframeLinejoin=this.wireframeLinecap="round";this.lights=this.morphTargets=this.skinning=!1;this.setValues(a)}function va(a){O.call(this);this.type="ShaderMaterial";this.defines={};this.uniforms={};this.vertexShader="void main() {\n\tgl_Position = projectionMatrix * modelViewMatrix * vec4( position, 1.0 );\n}";this.fragmentShader="void main() {\n\tgl_FragColor = vec4( 1.0, 0.0, 0.0, 1.0 );\n}";
+this.linewidth=1;this.wireframe=!1;this.wireframeLinewidth=1;this.morphNormals=this.morphTargets=this.skinning=this.clipping=this.lights=this.fog=!1;this.extensions={derivatives:!1,fragDepth:!1,drawBuffers:!1,shaderTextureLOD:!1};this.defaultAttributeValues={color:[1,1,1],uv:[0,0],uv2:[0,0]};this.index0AttributeName=void 0;this.uniformsNeedUpdate=!1;void 0!==a&&(void 0!==a.attributes&&console.error("THREE.ShaderMaterial: attributes should now be defined in THREE.BufferGeometry instead."),this.setValues(a))}
+function qb(a,b){this.origin=void 0!==a?a:new p;this.direction=void 0!==b?b:new p}function Lb(a,b){this.start=void 0!==a?a:new p;this.end=void 0!==b?b:new p}function Aa(a,b,c){this.a=void 0!==a?a:new p;this.b=void 0!==b?b:new p;this.c=void 0!==c?c:new p}function oa(a,b){A.call(this);this.type="Mesh";this.geometry=void 0!==a?a:new F;this.material=void 0!==b?b:new za({color:16777215*Math.random()});this.drawMode=0;this.updateMorphTargets()}function Df(a,b,c,d){function e(a,c){b.buffers.color.setClear(a.r,
+a.g,a.b,c,d)}var f=new I(0),g=0,h,l,m;return{getClearColor:function(){return f},setClearColor:function(a,b){f.set(a);g=void 0!==b?b:1;e(f,g)},getClearAlpha:function(){return g},setClearAlpha:function(a){g=a;e(f,g)},render:function(b,d,t,r){d=d.background;null===d?e(f,g):d&&d.isColor&&(e(d,1),r=!0);(a.autoClear||r)&&a.clear(a.autoClearColor,a.autoClearDepth,a.autoClearStencil);d&&d.isCubeTexture?(void 0===m&&(m=new oa(new mb(1,1,1),new va({uniforms:rb.cube.uniforms,vertexShader:rb.cube.vertexShader,
+fragmentShader:rb.cube.fragmentShader,side:1,depthTest:!0,depthWrite:!1,fog:!1})),m.geometry.removeAttribute("normal"),m.geometry.removeAttribute("uv"),m.onBeforeRender=function(a,b,c){this.matrixWorld.copyPosition(c.matrixWorld)},c.update(m.geometry)),m.material.uniforms.tCube.value=d,b.push(m,m.geometry,m.material,0,null)):d&&d.isTexture&&(void 0===h&&(h=new Jb(-1,1,1,-1,0,1),l=new oa(new pb(2,2),new za({depthTest:!1,depthWrite:!1,fog:!1})),c.update(l.geometry)),l.material.map=d,a.renderBufferDirect(h,
+null,l.geometry,l.material,l,null))}}}function Ef(a,b,c){var d;this.setMode=function(a){d=a};this.render=function(b,f){a.drawArrays(d,b,f);c.update(f,d)};this.renderInstances=function(a,f,g){var e=b.get("ANGLE_instanced_arrays");if(null===e)console.error("THREE.WebGLBufferRenderer: using THREE.InstancedBufferGeometry but hardware does not support extension ANGLE_instanced_arrays.");else{var l=a.attributes.position;l.isInterleavedBufferAttribute?(g=l.data.count,e.drawArraysInstancedANGLE(d,0,g,a.maxInstancedCount)):
+e.drawArraysInstancedANGLE(d,f,g,a.maxInstancedCount);c.update(g,d,a.maxInstancedCount)}}}function Ff(a,b,c){function d(b){if("highp"===b){if(0<a.getShaderPrecisionFormat(a.VERTEX_SHADER,a.HIGH_FLOAT).precision&&0<a.getShaderPrecisionFormat(a.FRAGMENT_SHADER,a.HIGH_FLOAT).precision)return"highp";b="mediump"}return"mediump"===b&&0<a.getShaderPrecisionFormat(a.VERTEX_SHADER,a.MEDIUM_FLOAT).precision&&0<a.getShaderPrecisionFormat(a.FRAGMENT_SHADER,a.MEDIUM_FLOAT).precision?"mediump":"lowp"}var e,f=void 0!==
+c.precision?c.precision:"highp",g=d(f);g!==f&&(console.warn("THREE.WebGLRenderer:",f,"not supported, using",g,"instead."),f=g);c=!0===c.logarithmicDepthBuffer;g=a.getParameter(a.MAX_TEXTURE_IMAGE_UNITS);var h=a.getParameter(a.MAX_VERTEX_TEXTURE_IMAGE_UNITS),l=a.getParameter(a.MAX_TEXTURE_SIZE),m=a.getParameter(a.MAX_CUBE_MAP_TEXTURE_SIZE),u=a.getParameter(a.MAX_VERTEX_ATTRIBS),n=a.getParameter(a.MAX_VERTEX_UNIFORM_VECTORS),t=a.getParameter(a.MAX_VARYING_VECTORS),r=a.getParameter(a.MAX_FRAGMENT_UNIFORM_VECTORS),
+q=0<h,k=!!b.get("OES_texture_float");return{getMaxAnisotropy:function(){if(void 0!==e)return e;var c=b.get("EXT_texture_filter_anisotropic");return e=null!==c?a.getParameter(c.MAX_TEXTURE_MAX_ANISOTROPY_EXT):0},getMaxPrecision:d,precision:f,logarithmicDepthBuffer:c,maxTextures:g,maxVertexTextures:h,maxTextureSize:l,maxCubemapSize:m,maxAttributes:u,maxVertexUniforms:n,maxVaryings:t,maxFragmentUniforms:r,vertexTextures:q,floatFragmentTextures:k,floatVertexTextures:q&&k}}function Gf(){function a(){m.value!==
+d&&(m.value=d,m.needsUpdate=0<e);c.numPlanes=e;c.numIntersection=0}function b(a,b,d,e){var f=null!==a?a.length:0,g=null;if(0!==f){g=m.value;if(!0!==e||null===g){e=d+4*f;b=b.matrixWorldInverse;l.getNormalMatrix(b);if(null===g||g.length<e)g=new Float32Array(e);for(e=0;e!==f;++e,d+=4)h.copy(a[e]).applyMatrix4(b,l),h.normal.toArray(g,d),g[d+3]=h.constant}m.value=g;m.needsUpdate=!0}c.numPlanes=f;return g}var c=this,d=null,e=0,f=!1,g=!1,h=new Fa,l=new sa,m={value:null,needsUpdate:!1};this.uniform=m;this.numIntersection=
+this.numPlanes=0;this.init=function(a,c,g){var h=0!==a.length||c||0!==e||f;f=c;d=b(a,g,0);e=a.length;return h};this.beginShadows=function(){g=!0;b(null)};this.endShadows=function(){g=!1;a()};this.setState=function(c,h,l,r,q,k){if(!f||null===c||0===c.length||g&&!l)g?b(null):a();else{l=g?0:e;var n=4*l,u=q.clippingState||null;m.value=u;u=b(c,r,n,k);for(c=0;c!==n;++c)u[c]=d[c];q.clippingState=u;this.numIntersection=h?this.numPlanes:0;this.numPlanes+=l}}}function Hf(a){var b={};return{get:function(c){if(void 0!==
+b[c])return b[c];switch(c){case "WEBGL_depth_texture":var d=a.getExtension("WEBGL_depth_texture")||a.getExtension("MOZ_WEBGL_depth_texture")||a.getExtension("WEBKIT_WEBGL_depth_texture");break;case "EXT_texture_filter_anisotropic":d=a.getExtension("EXT_texture_filter_anisotropic")||a.getExtension("MOZ_EXT_texture_filter_anisotropic")||a.getExtension("WEBKIT_EXT_texture_filter_anisotropic");break;case "WEBGL_compressed_texture_s3tc":d=a.getExtension("WEBGL_compressed_texture_s3tc")||a.getExtension("MOZ_WEBGL_compressed_texture_s3tc")||
+a.getExtension("WEBKIT_WEBGL_compressed_texture_s3tc");break;case "WEBGL_compressed_texture_pvrtc":d=a.getExtension("WEBGL_compressed_texture_pvrtc")||a.getExtension("WEBKIT_WEBGL_compressed_texture_pvrtc");break;case "WEBGL_compressed_texture_etc1":d=a.getExtension("WEBGL_compressed_texture_etc1");break;default:d=a.getExtension(c)}null===d&&console.warn("THREE.WebGLRenderer: "+c+" extension not supported.");return b[c]=d}}}function If(a,b,c){function d(a){a=a.target;var g=e[a.id];null!==g.index&&
+b.remove(g.index);for(var l in g.attributes)b.remove(g.attributes[l]);a.removeEventListener("dispose",d);delete e[a.id];if(l=f[a.id])b.remove(l),delete f[a.id];if(l=f[g.id])b.remove(l),delete f[g.id];c.memory.geometries--}var e={},f={};return{get:function(a,b){var f=e[b.id];if(f)return f;b.addEventListener("dispose",d);b.isBufferGeometry?f=b:b.isGeometry&&(void 0===b._bufferGeometry&&(b._bufferGeometry=(new F).setFromObject(a)),f=b._bufferGeometry);e[b.id]=f;c.memory.geometries++;return f},update:function(c){var d=
+c.index,e=c.attributes;null!==d&&b.update(d,a.ELEMENT_ARRAY_BUFFER);for(var f in e)b.update(e[f],a.ARRAY_BUFFER);c=c.morphAttributes;for(f in c){d=c[f];e=0;for(var g=d.length;e<g;e++)b.update(d[e],a.ARRAY_BUFFER)}},getWireframeAttribute:function(c){var d=f[c.id];if(d)return d;d=[];var e=c.index,g=c.attributes;if(null!==e){e=e.array;g=0;for(var u=e.length;g<u;g+=3){var n=e[g+0],t=e[g+1],r=e[g+2];d.push(n,t,t,r,r,n)}}else for(e=g.position.array,g=0,u=e.length/3-1;g<u;g+=3)n=g+0,t=g+1,r=g+2,d.push(n,
+t,t,r,r,n);d=new (65535<De(d)?lb:kb)(d,1);b.update(d,a.ELEMENT_ARRAY_BUFFER);return f[c.id]=d}}}function Jf(a,b,c){var d,e,f;this.setMode=function(a){d=a};this.setIndex=function(a){e=a.type;f=a.bytesPerElement};this.render=function(b,h){a.drawElements(d,h,e,b*f);c.update(h,d)};this.renderInstances=function(a,h,l){var g=b.get("ANGLE_instanced_arrays");null===g?console.error("THREE.WebGLIndexedBufferRenderer: using THREE.InstancedBufferGeometry but hardware does not support extension ANGLE_instanced_arrays."):
+(g.drawElementsInstancedANGLE(d,l,e,h*f,a.maxInstancedCount),c.update(l,d,a.maxInstancedCount))}}function Kf(a){var b={frame:0,calls:0,triangles:0,points:0,lines:0};return{memory:{geometries:0,textures:0},render:b,programs:null,autoReset:!0,reset:function(){b.frame++;b.calls=0;b.triangles=0;b.points=0;b.lines=0},update:function(c,d,e){e=e||1;b.calls++;switch(d){case a.TRIANGLES:b.triangles+=c/3*e;break;case a.TRIANGLE_STRIP:case a.TRIANGLE_FAN:b.triangles+=e*(c-2);break;case a.LINES:b.lines+=c/2*
+e;break;case a.LINE_STRIP:b.lines+=e*(c-1);break;case a.LINE_LOOP:b.lines+=e*c;break;case a.POINTS:b.points+=e*c;break;default:console.error("THREE.WebGLInfo: Unknown draw mode:",d)}}}}function Lf(a,b){return Math.abs(b[1])-Math.abs(a[1])}function Mf(a){var b={},c=new Float32Array(8);return{update:function(d,e,f,g){var h=d.morphTargetInfluences,l=h.length;d=b[e.id];if(void 0===d){d=[];for(var m=0;m<l;m++)d[m]=[m,0];b[e.id]=d}var u=f.morphTargets&&e.morphAttributes.position;f=f.morphNormals&&e.morphAttributes.normal;
+for(m=0;m<l;m++){var n=d[m];0!==n[1]&&(u&&e.removeAttribute("morphTarget"+m),f&&e.removeAttribute("morphNormal"+m))}for(m=0;m<l;m++)n=d[m],n[0]=m,n[1]=h[m];d.sort(Lf);for(m=0;8>m;m++){if(n=d[m])if(h=n[0],l=n[1]){u&&e.addAttribute("morphTarget"+m,u[h]);f&&e.addAttribute("morphNormal"+m,f[h]);c[m]=l;continue}c[m]=0}g.getUniforms().setValue(a,"morphTargetInfluences",c)}}}function Nf(a,b){var c={};return{update:function(d){var e=b.render.frame,f=d.geometry,g=a.get(d,f);c[g.id]!==e&&(f.isGeometry&&g.updateFromObject(d),
+a.update(g),c[g.id]=e);return g},dispose:function(){c={}}}}function ab(a,b,c,d,e,f,g,h,l,m){a=void 0!==a?a:[];Y.call(this,a,void 0!==b?b:301,c,d,e,f,g,h,l,m);this.flipY=!1}function Mb(a,b,c){var d=a[0];if(0>=d||0<d)return a;var e=b*c,f=Ee[e];void 0===f&&(f=new Float32Array(e),Ee[e]=f);if(0!==b)for(d.toArray(f,0),d=1,e=0;d!==b;++d)e+=c,a[d].toArray(f,e);return f}function Fe(a,b){var c=Ge[b];void 0===c&&(c=new Int32Array(b),Ge[b]=c);for(var d=0;d!==b;++d)c[d]=a.allocTextureUnit();return c}function Of(a,
+b){a.uniform1f(this.addr,b)}function Pf(a,b){a.uniform1i(this.addr,b)}function Qf(a,b){void 0===b.x?a.uniform2fv(this.addr,b):a.uniform2f(this.addr,b.x,b.y)}function Rf(a,b){void 0!==b.x?a.uniform3f(this.addr,b.x,b.y,b.z):void 0!==b.r?a.uniform3f(this.addr,b.r,b.g,b.b):a.uniform3fv(this.addr,b)}function Sf(a,b){void 0===b.x?a.uniform4fv(this.addr,b):a.uniform4f(this.addr,b.x,b.y,b.z,b.w)}function Tf(a,b){a.uniformMatrix2fv(this.addr,!1,b.elements||b)}function Uf(a,b){void 0===b.elements?a.uniformMatrix3fv(this.addr,
+!1,b):(He.set(b.elements),a.uniformMatrix3fv(this.addr,!1,He))}function Vf(a,b){void 0===b.elements?a.uniformMatrix4fv(this.addr,!1,b):(Ie.set(b.elements),a.uniformMatrix4fv(this.addr,!1,Ie))}function Wf(a,b,c){var d=c.allocTextureUnit();a.uniform1i(this.addr,d);c.setTexture2D(b||Je,d)}function Xf(a,b,c){var d=c.allocTextureUnit();a.uniform1i(this.addr,d);c.setTextureCube(b||Ke,d)}function Le(a,b){a.uniform2iv(this.addr,b)}function Me(a,b){a.uniform3iv(this.addr,b)}function Ne(a,b){a.uniform4iv(this.addr,
+b)}function Yf(a){switch(a){case 5126:return Of;case 35664:return Qf;case 35665:return Rf;case 35666:return Sf;case 35674:return Tf;case 35675:return Uf;case 35676:return Vf;case 35678:case 36198:return Wf;case 35680:return Xf;case 5124:case 35670:return Pf;case 35667:case 35671:return Le;case 35668:case 35672:return Me;case 35669:case 35673:return Ne}}function Zf(a,b){a.uniform1fv(this.addr,b)}function $f(a,b){a.uniform1iv(this.addr,b)}function ag(a,b){a.uniform2fv(this.addr,Mb(b,this.size,2))}function bg(a,
+b){a.uniform3fv(this.addr,Mb(b,this.size,3))}function cg(a,b){a.uniform4fv(this.addr,Mb(b,this.size,4))}function dg(a,b){a.uniformMatrix2fv(this.addr,!1,Mb(b,this.size,4))}function eg(a,b){a.uniformMatrix3fv(this.addr,!1,Mb(b,this.size,9))}function fg(a,b){a.uniformMatrix4fv(this.addr,!1,Mb(b,this.size,16))}function gg(a,b,c){var d=b.length,e=Fe(c,d);a.uniform1iv(this.addr,e);for(a=0;a!==d;++a)c.setTexture2D(b[a]||Je,e[a])}function hg(a,b,c){var d=b.length,e=Fe(c,d);a.uniform1iv(this.addr,e);for(a=
+0;a!==d;++a)c.setTextureCube(b[a]||Ke,e[a])}function ig(a){switch(a){case 5126:return Zf;case 35664:return ag;case 35665:return bg;case 35666:return cg;case 35674:return dg;case 35675:return eg;case 35676:return fg;case 35678:return gg;case 35680:return hg;case 5124:case 35670:return $f;case 35667:case 35671:return Le;case 35668:case 35672:return Me;case 35669:case 35673:return Ne}}function jg(a,b,c){this.id=a;this.addr=c;this.setValue=Yf(b.type)}function kg(a,b,c){this.id=a;this.addr=c;this.size=
+b.size;this.setValue=ig(b.type)}function Oe(a){this.id=a;this.seq=[];this.map={}}function bb(a,b,c){this.seq=[];this.map={};this.renderer=c;c=a.getProgramParameter(b,a.ACTIVE_UNIFORMS);for(var d=0;d<c;++d){var e=a.getActiveUniform(b,d),f=a.getUniformLocation(b,e.name),g=this,h=e.name,l=h.length;for(Ud.lastIndex=0;;){var m=Ud.exec(h),u=Ud.lastIndex,n=m[1],t=m[3];"]"===m[2]&&(n|=0);if(void 0===t||"["===t&&u+2===l){h=g;e=void 0===t?new jg(n,e,f):new kg(n,e,f);h.seq.push(e);h.map[e.id]=e;break}else t=
+g.map[n],void 0===t&&(t=new Oe(n),n=g,g=t,n.seq.push(g),n.map[g.id]=g),g=t}}}function lg(a){a=a.split("\n");for(var b=0;b<a.length;b++)a[b]=b+1+": "+a[b];return a.join("\n")}function Pe(a,b,c){var d=a.createShader(b);a.shaderSource(d,c);a.compileShader(d);!1===a.getShaderParameter(d,a.COMPILE_STATUS)&&console.error("THREE.WebGLShader: Shader couldn't compile.");""!==a.getShaderInfoLog(d)&&console.warn("THREE.WebGLShader: gl.getShaderInfoLog()",b===a.VERTEX_SHADER?"vertex":"fragment",a.getShaderInfoLog(d),
+lg(c));return d}function Qe(a){switch(a){case 3E3:return["Linear","( value )"];case 3001:return["sRGB","( value )"];case 3002:return["RGBE","( value )"];case 3004:return["RGBM","( value, 7.0 )"];case 3005:return["RGBM","( value, 16.0 )"];case 3006:return["RGBD","( value, 256.0 )"];case 3007:return["Gamma","( value, float( GAMMA_FACTOR ) )"];default:throw Error("unsupported encoding: "+a);}}function Vd(a,b){b=Qe(b);return"vec4 "+a+"( vec4 value ) { return "+b[0]+"ToLinear"+b[1]+"; }"}function mg(a,
+b){b=Qe(b);return"vec4 "+a+"( vec4 value ) { return LinearTo"+b[0]+b[1]+"; }"}function ng(a,b){switch(b){case 1:b="Linear";break;case 2:b="Reinhard";break;case 3:b="Uncharted2";break;case 4:b="OptimizedCineon";break;default:throw Error("unsupported toneMapping: "+b);}return"vec3 "+a+"( vec3 color ) { return "+b+"ToneMapping( color ); }"}function og(a,b,c){a=a||{};return[a.derivatives||b.envMapCubeUV||b.bumpMap||b.normalMap||b.flatShading?"#extension GL_OES_standard_derivatives : enable":"",(a.fragDepth||
+b.logarithmicDepthBuffer)&&c.get("EXT_frag_depth")?"#extension GL_EXT_frag_depth : enable":"",a.drawBuffers&&c.get("WEBGL_draw_buffers")?"#extension GL_EXT_draw_buffers : require":"",(a.shaderTextureLOD||b.envMap)&&c.get("EXT_shader_texture_lod")?"#extension GL_EXT_shader_texture_lod : enable":""].filter(yc).join("\n")}function pg(a){var b=[],c;for(c in a){var d=a[c];!1!==d&&b.push("#define "+c+" "+d)}return b.join("\n")}function yc(a){return""!==a}function Re(a,b){return a.replace(/NUM_DIR_LIGHTS/g,
+b.numDirLights).replace(/NUM_SPOT_LIGHTS/g,b.numSpotLights).replace(/NUM_RECT_AREA_LIGHTS/g,b.numRectAreaLights).replace(/NUM_POINT_LIGHTS/g,b.numPointLights).replace(/NUM_HEMI_LIGHTS/g,b.numHemiLights)}function Se(a,b){return a.replace(/NUM_CLIPPING_PLANES/g,b.numClippingPlanes).replace(/UNION_CLIPPING_PLANES/g,b.numClippingPlanes-b.numClipIntersection)}function Wd(a){return a.replace(/^[ \t]*#include +<([\w\d.]+)>/gm,function(a,c){a=V[c];if(void 0===a)throw Error("Can not resolve #include <"+c+
+">");return Wd(a)})}function Te(a){return a.replace(/#pragma unroll_loop[\s]+?for \( int i = (\d+); i < (\d+); i \+\+ \) \{([\s\S]+?)(?=\})\}/g,function(a,c,d,e){a="";for(c=parseInt(c);c<parseInt(d);c++)a+=e.replace(/\[ i \]/g,"[ "+c+" ]");return a})}function qg(a,b,c,d,e,f){var g=a.context,h=d.defines,l=e.vertexShader,m=e.fragmentShader,u="SHADOWMAP_TYPE_BASIC";1===f.shadowMapType?u="SHADOWMAP_TYPE_PCF":2===f.shadowMapType&&(u="SHADOWMAP_TYPE_PCF_SOFT");var n="ENVMAP_TYPE_CUBE",t="ENVMAP_MODE_REFLECTION",
+r="ENVMAP_BLENDING_MULTIPLY";if(f.envMap){switch(d.envMap.mapping){case 301:case 302:n="ENVMAP_TYPE_CUBE";break;case 306:case 307:n="ENVMAP_TYPE_CUBE_UV";break;case 303:case 304:n="ENVMAP_TYPE_EQUIREC";break;case 305:n="ENVMAP_TYPE_SPHERE"}switch(d.envMap.mapping){case 302:case 304:t="ENVMAP_MODE_REFRACTION"}switch(d.combine){case 0:r="ENVMAP_BLENDING_MULTIPLY";break;case 1:r="ENVMAP_BLENDING_MIX";break;case 2:r="ENVMAP_BLENDING_ADD"}}var k=0<a.gammaFactor?a.gammaFactor:1,v=og(d.extensions,f,b),x=
+pg(h),p=g.createProgram();d.isRawShaderMaterial?(h=[x].filter(yc).join("\n"),0<h.length&&(h+="\n"),b=[v,x].filter(yc).join("\n"),0<b.length&&(b+="\n")):(h=["precision "+f.precision+" float;","precision "+f.precision+" int;","#define SHADER_NAME "+e.name,x,f.supportsVertexTextures?"#define VERTEX_TEXTURES":"","#define GAMMA_FACTOR "+k,"#define MAX_BONES "+f.maxBones,f.useFog&&f.fog?"#define USE_FOG":"",f.useFog&&f.fogExp?"#define FOG_EXP2":"",f.map?"#define USE_MAP":"",f.envMap?"#define USE_ENVMAP":
+"",f.envMap?"#define "+t:"",f.lightMap?"#define USE_LIGHTMAP":"",f.aoMap?"#define USE_AOMAP":"",f.emissiveMap?"#define USE_EMISSIVEMAP":"",f.bumpMap?"#define USE_BUMPMAP":"",f.normalMap?"#define USE_NORMALMAP":"",f.displacementMap&&f.supportsVertexTextures?"#define USE_DISPLACEMENTMAP":"",f.specularMap?"#define USE_SPECULARMAP":"",f.roughnessMap?"#define USE_ROUGHNESSMAP":"",f.metalnessMap?"#define USE_METALNESSMAP":"",f.alphaMap?"#define USE_ALPHAMAP":"",f.vertexColors?"#define USE_COLOR":"",f.flatShading?
+"#define FLAT_SHADED":"",f.skinning?"#define USE_SKINNING":"",f.useVertexTexture?"#define BONE_TEXTURE":"",f.morphTargets?"#define USE_MORPHTARGETS":"",f.morphNormals&&!1===f.flatShading?"#define USE_MORPHNORMALS":"",f.doubleSided?"#define DOUBLE_SIDED":"",f.flipSided?"#define FLIP_SIDED":"",f.shadowMapEnabled?"#define USE_SHADOWMAP":"",f.shadowMapEnabled?"#define "+u:"",f.sizeAttenuation?"#define USE_SIZEATTENUATION":"",f.logarithmicDepthBuffer?"#define USE_LOGDEPTHBUF":"",f.logarithmicDepthBuffer&&
+b.get("EXT_frag_depth")?"#define USE_LOGDEPTHBUF_EXT":"","uniform mat4 modelMatrix;","uniform mat4 modelViewMatrix;","uniform mat4 projectionMatrix;","uniform mat4 viewMatrix;","uniform mat3 normalMatrix;","uniform vec3 cameraPosition;","attribute vec3 position;","attribute vec3 normal;","attribute vec2 uv;","#ifdef USE_COLOR","\tattribute vec3 color;","#endif","#ifdef USE_MORPHTARGETS","\tattribute vec3 morphTarget0;","\tattribute vec3 morphTarget1;","\tattribute vec3 morphTarget2;","\tattribute vec3 morphTarget3;",
+"\t#ifdef USE_MORPHNORMALS","\t\tattribute vec3 morphNormal0;","\t\tattribute vec3 morphNormal1;","\t\tattribute vec3 morphNormal2;","\t\tattribute vec3 morphNormal3;","\t#else","\t\tattribute vec3 morphTarget4;","\t\tattribute vec3 morphTarget5;","\t\tattribute vec3 morphTarget6;","\t\tattribute vec3 morphTarget7;","\t#endif","#endif","#ifdef USE_SKINNING","\tattribute vec4 skinIndex;","\tattribute vec4 skinWeight;","#endif","\n"].filter(yc).join("\n"),b=[v,"precision "+f.precision+" float;","precision "+
+f.precision+" int;","#define SHADER_NAME "+e.name,x,f.alphaTest?"#define ALPHATEST "+f.alphaTest:"","#define GAMMA_FACTOR "+k,f.useFog&&f.fog?"#define USE_FOG":"",f.useFog&&f.fogExp?"#define FOG_EXP2":"",f.map?"#define USE_MAP":"",f.envMap?"#define USE_ENVMAP":"",f.envMap?"#define "+n:"",f.envMap?"#define "+t:"",f.envMap?"#define "+r:"",f.lightMap?"#define USE_LIGHTMAP":"",f.aoMap?"#define USE_AOMAP":"",f.emissiveMap?"#define USE_EMISSIVEMAP":"",f.bumpMap?"#define USE_BUMPMAP":"",f.normalMap?"#define USE_NORMALMAP":
+"",f.specularMap?"#define USE_SPECULARMAP":"",f.roughnessMap?"#define USE_ROUGHNESSMAP":"",f.metalnessMap?"#define USE_METALNESSMAP":"",f.alphaMap?"#define USE_ALPHAMAP":"",f.vertexColors?"#define USE_COLOR":"",f.gradientMap?"#define USE_GRADIENTMAP":"",f.flatShading?"#define FLAT_SHADED":"",f.doubleSided?"#define DOUBLE_SIDED":"",f.flipSided?"#define FLIP_SIDED":"",f.shadowMapEnabled?"#define USE_SHADOWMAP":"",f.shadowMapEnabled?"#define "+u:"",f.premultipliedAlpha?"#define PREMULTIPLIED_ALPHA":
+"",f.physicallyCorrectLights?"#define PHYSICALLY_CORRECT_LIGHTS":"",f.logarithmicDepthBuffer?"#define USE_LOGDEPTHBUF":"",f.logarithmicDepthBuffer&&b.get("EXT_frag_depth")?"#define USE_LOGDEPTHBUF_EXT":"",f.envMap&&b.get("EXT_shader_texture_lod")?"#define TEXTURE_LOD_EXT":"","uniform mat4 viewMatrix;","uniform vec3 cameraPosition;",0!==f.toneMapping?"#define TONE_MAPPING":"",0!==f.toneMapping?V.tonemapping_pars_fragment:"",0!==f.toneMapping?ng("toneMapping",f.toneMapping):"",f.dithering?"#define DITHERING":
+"",f.outputEncoding||f.mapEncoding||f.envMapEncoding||f.emissiveMapEncoding?V.encodings_pars_fragment:"",f.mapEncoding?Vd("mapTexelToLinear",f.mapEncoding):"",f.envMapEncoding?Vd("envMapTexelToLinear",f.envMapEncoding):"",f.emissiveMapEncoding?Vd("emissiveMapTexelToLinear",f.emissiveMapEncoding):"",f.outputEncoding?mg("linearToOutputTexel",f.outputEncoding):"",f.depthPacking?"#define DEPTH_PACKING "+d.depthPacking:"","\n"].filter(yc).join("\n"));l=Wd(l);l=Re(l,f);l=Se(l,f);m=Wd(m);m=Re(m,f);m=Se(m,
+f);l=Te(l);m=Te(m);m=b+m;l=Pe(g,g.VERTEX_SHADER,h+l);m=Pe(g,g.FRAGMENT_SHADER,m);g.attachShader(p,l);g.attachShader(p,m);void 0!==d.index0AttributeName?g.bindAttribLocation(p,0,d.index0AttributeName):!0===f.morphTargets&&g.bindAttribLocation(p,0,"position");g.linkProgram(p);f=g.getProgramInfoLog(p).trim();e=g.getShaderInfoLog(l).trim();u=g.getShaderInfoLog(m).trim();t=n=!0;if(!1===g.getProgramParameter(p,g.LINK_STATUS))n=!1,console.error("THREE.WebGLProgram: shader error: ",g.getError(),"gl.VALIDATE_STATUS",
+g.getProgramParameter(p,g.VALIDATE_STATUS),"gl.getProgramInfoLog",f,e,u);else if(""!==f)console.warn("THREE.WebGLProgram: gl.getProgramInfoLog()",f);else if(""===e||""===u)t=!1;t&&(this.diagnostics={runnable:n,material:d,programLog:f,vertexShader:{log:e,prefix:h},fragmentShader:{log:u,prefix:b}});g.deleteShader(l);g.deleteShader(m);var w;this.getUniforms=function(){void 0===w&&(w=new bb(g,p,a));return w};var B;this.getAttributes=function(){if(void 0===B){for(var a={},b=g.getProgramParameter(p,g.ACTIVE_ATTRIBUTES),
+c=0;c<b;c++){var d=g.getActiveAttrib(p,c).name;a[d]=g.getAttribLocation(p,d)}B=a}return B};this.destroy=function(){g.deleteProgram(p);this.program=void 0};Object.defineProperties(this,{uniforms:{get:function(){console.warn("THREE.WebGLProgram: .uniforms is now .getUniforms().");return this.getUniforms()}},attributes:{get:function(){console.warn("THREE.WebGLProgram: .attributes is now .getAttributes().");return this.getAttributes()}}});this.id=rg++;this.code=c;this.usedTimes=1;this.program=p;this.vertexShader=
+l;this.fragmentShader=m;return this}function sg(a,b,c){function d(a,b){if(a)a.isTexture?c=a.encoding:a.isWebGLRenderTarget&&(console.warn("THREE.WebGLPrograms.getTextureEncodingFromMap: don't use render targets as textures. Use their .texture property instead."),c=a.texture.encoding);else var c=3E3;3E3===c&&b&&(c=3007);return c}var e=[],f={MeshDepthMaterial:"depth",MeshDistanceMaterial:"distanceRGBA",MeshNormalMaterial:"normal",MeshBasicMaterial:"basic",MeshLambertMaterial:"lambert",MeshPhongMaterial:"phong",
+MeshToonMaterial:"phong",MeshStandardMaterial:"physical",MeshPhysicalMaterial:"physical",LineBasicMaterial:"basic",LineDashedMaterial:"dashed",PointsMaterial:"points",ShadowMaterial:"shadow"},g="precision supportsVertexTextures map mapEncoding envMap envMapMode envMapEncoding lightMap aoMap emissiveMap emissiveMapEncoding bumpMap normalMap displacementMap specularMap roughnessMap metalnessMap gradientMap alphaMap combine vertexColors fog useFog fogExp flatShading sizeAttenuation logarithmicDepthBuffer skinning maxBones useVertexTexture morphTargets morphNormals maxMorphTargets maxMorphNormals premultipliedAlpha numDirLights numPointLights numSpotLights numHemiLights numRectAreaLights shadowMapEnabled shadowMapType toneMapping physicallyCorrectLights alphaTest doubleSided flipSided numClippingPlanes numClipIntersection depthPacking dithering".split(" ");
+this.getParameters=function(b,e,g,u,n,t,r){var h=f[b.type];if(r.isSkinnedMesh){var l=r.skeleton.bones;if(c.floatVertexTextures)l=1024;else{var m=Math.min(Math.floor((c.maxVertexUniforms-20)/4),l.length);m<l.length?(console.warn("THREE.WebGLRenderer: Skeleton has "+l.length+" bones. This GPU supports "+m+"."),l=0):l=m}}else l=0;m=c.precision;null!==b.precision&&(m=c.getMaxPrecision(b.precision),m!==b.precision&&console.warn("THREE.WebGLProgram.getParameters:",b.precision,"not supported, using",m,"instead."));
+var k=a.getRenderTarget();return{shaderID:h,precision:m,supportsVertexTextures:c.vertexTextures,outputEncoding:d(k?k.texture:null,a.gammaOutput),map:!!b.map,mapEncoding:d(b.map,a.gammaInput),envMap:!!b.envMap,envMapMode:b.envMap&&b.envMap.mapping,envMapEncoding:d(b.envMap,a.gammaInput),envMapCubeUV:!!b.envMap&&(306===b.envMap.mapping||307===b.envMap.mapping),lightMap:!!b.lightMap,aoMap:!!b.aoMap,emissiveMap:!!b.emissiveMap,emissiveMapEncoding:d(b.emissiveMap,a.gammaInput),bumpMap:!!b.bumpMap,normalMap:!!b.normalMap,
+displacementMap:!!b.displacementMap,roughnessMap:!!b.roughnessMap,metalnessMap:!!b.metalnessMap,specularMap:!!b.specularMap,alphaMap:!!b.alphaMap,gradientMap:!!b.gradientMap,combine:b.combine,vertexColors:b.vertexColors,fog:!!u,useFog:b.fog,fogExp:u&&u.isFogExp2,flatShading:b.flatShading,sizeAttenuation:b.sizeAttenuation,logarithmicDepthBuffer:c.logarithmicDepthBuffer,skinning:b.skinning&&0<l,maxBones:l,useVertexTexture:c.floatVertexTextures,morphTargets:b.morphTargets,morphNormals:b.morphNormals,
+maxMorphTargets:a.maxMorphTargets,maxMorphNormals:a.maxMorphNormals,numDirLights:e.directional.length,numPointLights:e.point.length,numSpotLights:e.spot.length,numRectAreaLights:e.rectArea.length,numHemiLights:e.hemi.length,numClippingPlanes:n,numClipIntersection:t,dithering:b.dithering,shadowMapEnabled:a.shadowMap.enabled&&r.receiveShadow&&0<g.length,shadowMapType:a.shadowMap.type,toneMapping:a.toneMapping,physicallyCorrectLights:a.physicallyCorrectLights,premultipliedAlpha:b.premultipliedAlpha,
+alphaTest:b.alphaTest,doubleSided:2===b.side,flipSided:1===b.side,depthPacking:void 0!==b.depthPacking?b.depthPacking:!1}};this.getProgramCode=function(b,c){var d=[];c.shaderID?d.push(c.shaderID):(d.push(b.fragmentShader),d.push(b.vertexShader));if(void 0!==b.defines)for(var e in b.defines)d.push(e),d.push(b.defines[e]);for(e=0;e<g.length;e++)d.push(c[g[e]]);d.push(b.onBeforeCompile.toString());d.push(a.gammaOutput);return d.join()};this.acquireProgram=function(c,d,f,g){for(var h,l=0,m=e.length;l<
+m;l++){var u=e[l];if(u.code===g){h=u;++h.usedTimes;break}}void 0===h&&(h=new qg(a,b,g,c,d,f),e.push(h));return h};this.releaseProgram=function(a){if(0===--a.usedTimes){var b=e.indexOf(a);e[b]=e[e.length-1];e.pop();a.destroy()}};this.programs=e}function tg(){var a=new WeakMap;return{get:function(b){var c=a.get(b);void 0===c&&(c={},a.set(b,c));return c},remove:function(b){a.delete(b)},update:function(b,c,d){a.get(b)[c]=d},dispose:function(){a=new WeakMap}}}function ug(a,b){return a.renderOrder!==b.renderOrder?
+a.renderOrder-b.renderOrder:a.program&&b.program&&a.program!==b.program?a.program.id-b.program.id:a.material.id!==b.material.id?a.material.id-b.material.id:a.z!==b.z?a.z-b.z:a.id-b.id}function vg(a,b){return a.renderOrder!==b.renderOrder?a.renderOrder-b.renderOrder:a.z!==b.z?b.z-a.z:a.id-b.id}function wg(){var a=[],b=0,c=[],d=[];return{opaque:c,transparent:d,init:function(){b=0;c.length=0;d.length=0},push:function(e,f,g,h,l){var m=a[b];void 0===m?(m={id:e.id,object:e,geometry:f,material:g,program:g.program,
+renderOrder:e.renderOrder,z:h,group:l},a[b]=m):(m.id=e.id,m.object=e,m.geometry=f,m.material=g,m.program=g.program,m.renderOrder=e.renderOrder,m.z=h,m.group=l);(!0===g.transparent?d:c).push(m);b++},sort:function(){1<c.length&&c.sort(ug);1<d.length&&d.sort(vg)}}}function xg(){var a={};return{get:function(b,c){b=b.id+","+c.id;c=a[b];void 0===c&&(c=new wg,a[b]=c);return c},dispose:function(){a={}}}}function yg(){var a={};return{get:function(b){if(void 0!==a[b.id])return a[b.id];switch(b.type){case "DirectionalLight":var c=
+{direction:new p,color:new I,shadow:!1,shadowBias:0,shadowRadius:1,shadowMapSize:new C};break;case "SpotLight":c={position:new p,direction:new p,color:new I,distance:0,coneCos:0,penumbraCos:0,decay:0,shadow:!1,shadowBias:0,shadowRadius:1,shadowMapSize:new C};break;case "PointLight":c={position:new p,color:new I,distance:0,decay:0,shadow:!1,shadowBias:0,shadowRadius:1,shadowMapSize:new C,shadowCameraNear:1,shadowCameraFar:1E3};break;case "HemisphereLight":c={direction:new p,skyColor:new I,groundColor:new I};
+break;case "RectAreaLight":c={color:new I,position:new p,halfWidth:new p,halfHeight:new p}}return a[b.id]=c}}}function zg(){var a=new yg,b={id:Ag++,hash:"",ambient:[0,0,0],directional:[],directionalShadowMap:[],directionalShadowMatrix:[],spot:[],spotShadowMap:[],spotShadowMatrix:[],rectArea:[],point:[],pointShadowMap:[],pointShadowMatrix:[],hemi:[]},c=new p,d=new M,e=new M;return{setup:function(f,g,h){var l=0,m=0,u=0,n=0,t=0,r=0,k=0,v=0;h=h.matrixWorldInverse;for(var x=0,p=f.length;x<p;x++){var w=
+f[x],B=w.color,G=w.intensity,K=w.distance,P=w.shadow&&w.shadow.map?w.shadow.map.texture:null;if(w.isAmbientLight)l+=B.r*G,m+=B.g*G,u+=B.b*G;else if(w.isDirectionalLight){var H=a.get(w);H.color.copy(w.color).multiplyScalar(w.intensity);H.direction.setFromMatrixPosition(w.matrixWorld);c.setFromMatrixPosition(w.target.matrixWorld);H.direction.sub(c);H.direction.transformDirection(h);if(H.shadow=w.castShadow)B=w.shadow,H.shadowBias=B.bias,H.shadowRadius=B.radius,H.shadowMapSize=B.mapSize;b.directionalShadowMap[n]=
+P;b.directionalShadowMatrix[n]=w.shadow.matrix;b.directional[n]=H;n++}else if(w.isSpotLight){H=a.get(w);H.position.setFromMatrixPosition(w.matrixWorld);H.position.applyMatrix4(h);H.color.copy(B).multiplyScalar(G);H.distance=K;H.direction.setFromMatrixPosition(w.matrixWorld);c.setFromMatrixPosition(w.target.matrixWorld);H.direction.sub(c);H.direction.transformDirection(h);H.coneCos=Math.cos(w.angle);H.penumbraCos=Math.cos(w.angle*(1-w.penumbra));H.decay=0===w.distance?0:w.decay;if(H.shadow=w.castShadow)B=
+w.shadow,H.shadowBias=B.bias,H.shadowRadius=B.radius,H.shadowMapSize=B.mapSize;b.spotShadowMap[r]=P;b.spotShadowMatrix[r]=w.shadow.matrix;b.spot[r]=H;r++}else if(w.isRectAreaLight)H=a.get(w),H.color.copy(B).multiplyScalar(G),H.position.setFromMatrixPosition(w.matrixWorld),H.position.applyMatrix4(h),e.identity(),d.copy(w.matrixWorld),d.premultiply(h),e.extractRotation(d),H.halfWidth.set(.5*w.width,0,0),H.halfHeight.set(0,.5*w.height,0),H.halfWidth.applyMatrix4(e),H.halfHeight.applyMatrix4(e),b.rectArea[k]=
+H,k++;else if(w.isPointLight){H=a.get(w);H.position.setFromMatrixPosition(w.matrixWorld);H.position.applyMatrix4(h);H.color.copy(w.color).multiplyScalar(w.intensity);H.distance=w.distance;H.decay=0===w.distance?0:w.decay;if(H.shadow=w.castShadow)B=w.shadow,H.shadowBias=B.bias,H.shadowRadius=B.radius,H.shadowMapSize=B.mapSize,H.shadowCameraNear=B.camera.near,H.shadowCameraFar=B.camera.far;b.pointShadowMap[t]=P;b.pointShadowMatrix[t]=w.shadow.matrix;b.point[t]=H;t++}else w.isHemisphereLight&&(H=a.get(w),
+H.direction.setFromMatrixPosition(w.matrixWorld),H.direction.transformDirection(h),H.direction.normalize(),H.skyColor.copy(w.color).multiplyScalar(G),H.groundColor.copy(w.groundColor).multiplyScalar(G),b.hemi[v]=H,v++)}b.ambient[0]=l;b.ambient[1]=m;b.ambient[2]=u;b.directional.length=n;b.spot.length=r;b.rectArea.length=k;b.point.length=t;b.hemi.length=v;b.hash=b.id+","+n+","+t+","+r+","+k+","+v+","+g.length},state:b}}function Bg(){var a=new zg,b=[],c=[],d=[];return{init:function(){b.length=0;c.length=
+0;d.length=0},state:{lightsArray:b,shadowsArray:c,spritesArray:d,lights:a},setupLights:function(d){a.setup(b,c,d)},pushLight:function(a){b.push(a)},pushShadow:function(a){c.push(a)},pushSprite:function(a){d.push(a)}}}function Cg(){var a={};return{get:function(b,c){b=b.id+","+c.id;c=a[b];void 0===c&&(c=new Bg,a[b]=c);return c},dispose:function(){a={}}}}function cb(a){O.call(this);this.type="MeshDepthMaterial";this.depthPacking=3200;this.morphTargets=this.skinning=!1;this.displacementMap=this.alphaMap=
+this.map=null;this.displacementScale=1;this.displacementBias=0;this.wireframe=!1;this.wireframeLinewidth=1;this.lights=this.fog=!1;this.setValues(a)}function db(a){O.call(this);this.type="MeshDistanceMaterial";this.referencePosition=new p;this.nearDistance=1;this.farDistance=1E3;this.morphTargets=this.skinning=!1;this.displacementMap=this.alphaMap=this.map=null;this.displacementScale=1;this.displacementBias=0;this.lights=this.fog=!1;this.setValues(a)}function Ue(a,b,c){function d(b,c,d,e,f,g){var h=
+b.geometry;var l=n;var m=b.customDepthMaterial;d&&(l=t,m=b.customDistanceMaterial);m?l=m:(m=!1,c.morphTargets&&(h&&h.isBufferGeometry?m=h.morphAttributes&&h.morphAttributes.position&&0<h.morphAttributes.position.length:h&&h.isGeometry&&(m=h.morphTargets&&0<h.morphTargets.length)),b.isSkinnedMesh&&!1===c.skinning&&console.warn("THREE.WebGLShadowMap: THREE.SkinnedMesh with material.skinning set to false:",b),b=b.isSkinnedMesh&&c.skinning,h=0,m&&(h|=1),b&&(h|=2),l=l[h]);a.localClippingEnabled&&!0===
+c.clipShadows&&0!==c.clippingPlanes.length&&(h=l.uuid,m=c.uuid,b=r[h],void 0===b&&(b={},r[h]=b),h=b[m],void 0===h&&(h=l.clone(),b[m]=h),l=h);l.visible=c.visible;l.wireframe=c.wireframe;l.side=null!=c.shadowSide?c.shadowSide:k[c.side];l.clipShadows=c.clipShadows;l.clippingPlanes=c.clippingPlanes;l.clipIntersection=c.clipIntersection;l.wireframeLinewidth=c.wireframeLinewidth;l.linewidth=c.linewidth;d&&l.isMeshDistanceMaterial&&(l.referencePosition.copy(e),l.nearDistance=f,l.farDistance=g);return l}
+function e(c,g,h,l){if(!1!==c.visible){if(c.layers.test(g.layers)&&(c.isMesh||c.isLine||c.isPoints)&&c.castShadow&&(!c.frustumCulled||f.intersectsObject(c))){c.modelViewMatrix.multiplyMatrices(h.matrixWorldInverse,c.matrixWorld);var m=b.update(c),n=c.material;if(Array.isArray(n))for(var t=m.groups,r=0,k=t.length;r<k;r++){var q=t[r],v=n[q.materialIndex];v&&v.visible&&(v=d(c,v,l,u,h.near,h.far),a.renderBufferDirect(h,null,m,v,c,q))}else n.visible&&(v=d(c,n,l,u,h.near,h.far),a.renderBufferDirect(h,null,
+m,v,c,null))}c=c.children;m=0;for(n=c.length;m<n;m++)e(c[m],g,h,l)}}var f=new ld,g=new M,h=new C,l=new C(c,c),m=new p,u=new p,n=Array(4),t=Array(4),r={},k={0:1,1:0,2:2},v=[new p(1,0,0),new p(-1,0,0),new p(0,0,1),new p(0,0,-1),new p(0,1,0),new p(0,-1,0)],x=[new p(0,1,0),new p(0,1,0),new p(0,1,0),new p(0,1,0),new p(0,0,1),new p(0,0,-1)],y=[new ea,new ea,new ea,new ea,new ea,new ea];for(c=0;4!==c;++c){var w=0!==(c&1),B=0!==(c&2),G=new cb({depthPacking:3201,morphTargets:w,skinning:B});n[c]=G;w=new db({morphTargets:w,
+skinning:B});t[c]=w}var K=this;this.enabled=!1;this.autoUpdate=!0;this.needsUpdate=!1;this.type=1;this.render=function(b,c,d){if(!1!==K.enabled&&(!1!==K.autoUpdate||!1!==K.needsUpdate)&&0!==b.length){var n=a.state;n.disable(a.context.BLEND);n.buffers.color.setClear(1,1,1,1);n.buffers.depth.setTest(!0);n.setScissorTest(!1);for(var t,r=0,k=b.length;r<k;r++){var q=b[r];t=q.shadow;var p=q&&q.isPointLight;if(void 0===t)console.warn("THREE.WebGLShadowMap:",q,"has no shadow.");else{var w=t.camera;h.copy(t.mapSize);
+h.min(l);if(p){var P=h.x,H=h.y;y[0].set(2*P,H,P,H);y[1].set(0,H,P,H);y[2].set(3*P,H,P,H);y[3].set(P,H,P,H);y[4].set(3*P,0,P,H);y[5].set(P,0,P,H);h.x*=4;h.y*=2}null===t.map&&(t.map=new hb(h.x,h.y,{minFilter:1003,magFilter:1003,format:1023}),t.map.texture.name=q.name+".shadowMap",w.updateProjectionMatrix());t.isSpotLightShadow&&t.update(q);P=t.map;H=t.matrix;u.setFromMatrixPosition(q.matrixWorld);w.position.copy(u);p?(t=6,H.makeTranslation(-u.x,-u.y,-u.z)):(t=1,m.setFromMatrixPosition(q.target.matrixWorld),
+w.lookAt(m),w.updateMatrixWorld(),H.set(.5,0,0,.5,0,.5,0,.5,0,0,.5,.5,0,0,0,1),H.multiply(w.projectionMatrix),H.multiply(w.matrixWorldInverse));a.setRenderTarget(P);a.clear();for(q=0;q<t;q++)p&&(m.copy(w.position),m.add(v[q]),w.up.copy(x[q]),w.lookAt(m),w.updateMatrixWorld(),n.viewport(y[q])),g.multiplyMatrices(w.projectionMatrix,w.matrixWorldInverse),f.setFromMatrix(g),e(c,d,w,p)}}K.needsUpdate=!1}}}function zc(a,b,c,d,e,f,g,h,l){Y.call(this,a,b,c,d,e,f,g,h,l);this.needsUpdate=!0}function Dg(a,b,
+c,d,e){var f,g,h,l,m,u,n,t,r,k,v,x,y,w,B,G,K,P;function H(a,b){return a.renderOrder!==b.renderOrder?a.renderOrder-b.renderOrder:a.z!==b.z?b.z-a.z:b.id-a.id}var C,nb,Z,z,A=new p,F=new ja,I=new p;this.render=function(q,p,md){if(0!==q.length){if(void 0===Z){var ta=new Float32Array([-.5,-.5,0,0,.5,-.5,1,0,.5,.5,1,1,-.5,.5,0,1]),ya=new Uint16Array([0,1,2,0,2,3]);C=b.createBuffer();nb=b.createBuffer();b.bindBuffer(b.ARRAY_BUFFER,C);b.bufferData(b.ARRAY_BUFFER,ta,b.STATIC_DRAW);b.bindBuffer(b.ELEMENT_ARRAY_BUFFER,
+nb);b.bufferData(b.ELEMENT_ARRAY_BUFFER,ya,b.STATIC_DRAW);ta=b.createProgram();ya=b.createShader(b.VERTEX_SHADER);var Q=b.createShader(b.FRAGMENT_SHADER);b.shaderSource(ya,["precision "+e.precision+" float;","#define SHADER_NAME SpriteMaterial\nuniform mat4 modelViewMatrix;\nuniform mat4 projectionMatrix;\nuniform float rotation;\nuniform vec2 center;\nuniform vec2 scale;\nuniform vec2 uvOffset;\nuniform vec2 uvScale;\nattribute vec2 position;\nattribute vec2 uv;\nvarying vec2 vUV;\nvarying float fogDepth;\nvoid main() {\n\tvUV = uvOffset + uv * uvScale;\n\tvec2 alignedPosition = ( position - center ) * scale;\n\tvec2 rotatedPosition;\n\trotatedPosition.x = cos( rotation ) * alignedPosition.x - sin( rotation ) * alignedPosition.y;\n\trotatedPosition.y = sin( rotation ) * alignedPosition.x + cos( rotation ) * alignedPosition.y;\n\tvec4 mvPosition;\n\tmvPosition = modelViewMatrix * vec4( 0.0, 0.0, 0.0, 1.0 );\n\tmvPosition.xy += rotatedPosition;\n\tgl_Position = projectionMatrix * mvPosition;\n\tfogDepth = - mvPosition.z;\n}"].join("\n"));
+b.shaderSource(Q,["precision "+e.precision+" float;","#define SHADER_NAME SpriteMaterial\nuniform vec3 color;\nuniform sampler2D map;\nuniform float opacity;\nuniform int fogType;\nuniform vec3 fogColor;\nuniform float fogDensity;\nuniform float fogNear;\nuniform float fogFar;\nuniform float alphaTest;\nvarying vec2 vUV;\nvarying float fogDepth;\nvoid main() {\n\tvec4 texture = texture2D( map, vUV );\n\tgl_FragColor = vec4( color * texture.xyz, texture.a * opacity );\n\tif ( gl_FragColor.a < alphaTest ) discard;\n\tif ( fogType > 0 ) {\n\t\tfloat fogFactor = 0.0;\n\t\tif ( fogType == 1 ) {\n\t\t\tfogFactor = smoothstep( fogNear, fogFar, fogDepth );\n\t\t} else {\n\t\t\tconst float LOG2 = 1.442695;\n\t\t\tfogFactor = exp2( - fogDensity * fogDensity * fogDepth * fogDepth * LOG2 );\n\t\t\tfogFactor = 1.0 - clamp( fogFactor, 0.0, 1.0 );\n\t\t}\n\t\tgl_FragColor.rgb = mix( gl_FragColor.rgb, fogColor, fogFactor );\n\t}\n}"].join("\n"));
+b.compileShader(ya);b.compileShader(Q);b.attachShader(ta,ya);b.attachShader(ta,Q);b.linkProgram(ta);Z=ta;K=b.getAttribLocation(Z,"position");P=b.getAttribLocation(Z,"uv");f=b.getUniformLocation(Z,"uvOffset");g=b.getUniformLocation(Z,"uvScale");h=b.getUniformLocation(Z,"rotation");l=b.getUniformLocation(Z,"center");m=b.getUniformLocation(Z,"scale");u=b.getUniformLocation(Z,"color");n=b.getUniformLocation(Z,"map");t=b.getUniformLocation(Z,"opacity");r=b.getUniformLocation(Z,"modelViewMatrix");k=b.getUniformLocation(Z,
+"projectionMatrix");v=b.getUniformLocation(Z,"fogType");x=b.getUniformLocation(Z,"fogDensity");y=b.getUniformLocation(Z,"fogNear");w=b.getUniformLocation(Z,"fogFar");B=b.getUniformLocation(Z,"fogColor");b.getUniformLocation(Z,"fogDepth");G=b.getUniformLocation(Z,"alphaTest");ta=document.createElementNS("http://www.w3.org/1999/xhtml","canvas");ta.width=8;ta.height=8;ya=ta.getContext("2d");ya.fillStyle="white";ya.fillRect(0,0,8,8);z=new zc(ta)}c.useProgram(Z);c.initAttributes();c.enableAttribute(K);
+c.enableAttribute(P);c.disableUnusedAttributes();c.disable(b.CULL_FACE);c.enable(b.BLEND);b.bindBuffer(b.ARRAY_BUFFER,C);b.vertexAttribPointer(K,2,b.FLOAT,!1,16,0);b.vertexAttribPointer(P,2,b.FLOAT,!1,16,8);b.bindBuffer(b.ELEMENT_ARRAY_BUFFER,nb);b.uniformMatrix4fv(k,!1,md.projectionMatrix.elements);c.activeTexture(b.TEXTURE0);b.uniform1i(n,0);ya=ta=0;(Q=p.fog)?(b.uniform3f(B,Q.color.r,Q.color.g,Q.color.b),Q.isFog?(b.uniform1f(y,Q.near),b.uniform1f(w,Q.far),b.uniform1i(v,1),ya=ta=1):Q.isFogExp2&&
+(b.uniform1f(x,Q.density),b.uniform1i(v,2),ya=ta=2)):(b.uniform1i(v,0),ya=ta=0);Q=0;for(var L=q.length;Q<L;Q++){var E=q[Q];E.modelViewMatrix.multiplyMatrices(md.matrixWorldInverse,E.matrixWorld);E.z=-E.modelViewMatrix.elements[14]}q.sort(H);var J=[],Td=[];Q=0;for(L=q.length;Q<L;Q++){E=q[Q];var R=E.material;if(!1!==R.visible){E.onBeforeRender(a,p,md,void 0,R,void 0);b.uniform1f(G,R.alphaTest);b.uniformMatrix4fv(r,!1,E.modelViewMatrix.elements);E.matrixWorld.decompose(A,F,I);J[0]=I.x;J[1]=I.y;Td[0]=
+E.center.x-.5;Td[1]=E.center.y-.5;var nd=0;p.fog&&R.fog&&(nd=ya);ta!==nd&&(b.uniform1i(v,nd),ta=nd);null!==R.map?(b.uniform2f(f,R.map.offset.x,R.map.offset.y),b.uniform2f(g,R.map.repeat.x,R.map.repeat.y)):(b.uniform2f(f,0,0),b.uniform2f(g,1,1));b.uniform1f(t,R.opacity);b.uniform3f(u,R.color.r,R.color.g,R.color.b);b.uniform1f(h,R.rotation);b.uniform2fv(l,Td);b.uniform2fv(m,J);c.setBlending(R.blending,R.blendEquation,R.blendSrc,R.blendDst,R.blendEquationAlpha,R.blendSrcAlpha,R.blendDstAlpha,R.premultipliedAlpha);
+c.buffers.depth.setTest(R.depthTest);c.buffers.depth.setMask(R.depthWrite);c.buffers.color.setMask(R.colorWrite);d.setTexture2D(R.map||z,0);b.drawElements(b.TRIANGLES,6,b.UNSIGNED_SHORT,0);E.onAfterRender(a,p,md,void 0,R,void 0)}}c.enable(b.CULL_FACE);c.reset()}}}function Eg(a,b,c){function d(b,c,d){var e=new Uint8Array(4),f=a.createTexture();a.bindTexture(b,f);a.texParameteri(b,a.TEXTURE_MIN_FILTER,a.NEAREST);a.texParameteri(b,a.TEXTURE_MAG_FILTER,a.NEAREST);for(b=0;b<d;b++)a.texImage2D(c+b,0,a.RGBA,
+1,1,0,a.RGBA,a.UNSIGNED_BYTE,e);return f}function e(b){!0!==w[b]&&(a.enable(b),w[b]=!0)}function f(b){!1!==w[b]&&(a.disable(b),w[b]=!1)}function g(b,d,g,h,l,m,n,u){0!==b?e(a.BLEND):f(a.BLEND);if(5!==b){if(b!==K||u!==ya)switch(b){case 2:u?(a.blendEquationSeparate(a.FUNC_ADD,a.FUNC_ADD),a.blendFuncSeparate(a.ONE,a.ONE,a.ONE,a.ONE)):(a.blendEquation(a.FUNC_ADD),a.blendFunc(a.SRC_ALPHA,a.ONE));break;case 3:u?(a.blendEquationSeparate(a.FUNC_ADD,a.FUNC_ADD),a.blendFuncSeparate(a.ZERO,a.ZERO,a.ONE_MINUS_SRC_COLOR,
+a.ONE_MINUS_SRC_ALPHA)):(a.blendEquation(a.FUNC_ADD),a.blendFunc(a.ZERO,a.ONE_MINUS_SRC_COLOR));break;case 4:u?(a.blendEquationSeparate(a.FUNC_ADD,a.FUNC_ADD),a.blendFuncSeparate(a.ZERO,a.SRC_COLOR,a.ZERO,a.SRC_ALPHA)):(a.blendEquation(a.FUNC_ADD),a.blendFunc(a.ZERO,a.SRC_COLOR));break;default:u?(a.blendEquationSeparate(a.FUNC_ADD,a.FUNC_ADD),a.blendFuncSeparate(a.ONE,a.ONE_MINUS_SRC_ALPHA,a.ONE,a.ONE_MINUS_SRC_ALPHA)):(a.blendEquationSeparate(a.FUNC_ADD,a.FUNC_ADD),a.blendFuncSeparate(a.SRC_ALPHA,
+a.ONE_MINUS_SRC_ALPHA,a.ONE,a.ONE_MINUS_SRC_ALPHA))}z=Z=nb=C=H=P=null}else{l=l||d;m=m||g;n=n||h;if(d!==P||l!==nb)a.blendEquationSeparate(c.convert(d),c.convert(l)),P=d,nb=l;if(g!==H||h!==C||m!==Z||n!==z)a.blendFuncSeparate(c.convert(g),c.convert(h),c.convert(m),c.convert(n)),H=g,C=h,Z=m,z=n}K=b;ya=u}function h(b){A!==b&&(b?a.frontFace(a.CW):a.frontFace(a.CCW),A=b)}function l(b){0!==b?(e(a.CULL_FACE),b!==E&&(1===b?a.cullFace(a.BACK):2===b?a.cullFace(a.FRONT):a.cullFace(a.FRONT_AND_BACK))):f(a.CULL_FACE);
+E=b}function m(b,c,d){if(b){if(e(a.POLYGON_OFFSET_FILL),F!==c||I!==d)a.polygonOffset(c,d),F=c,I=d}else f(a.POLYGON_OFFSET_FILL)}function u(b){void 0===b&&(b=a.TEXTURE0+L-1);M!==b&&(a.activeTexture(b),M=b)}var n=new function(){var b=!1,c=new ea,d=null,e=new ea(0,0,0,0);return{setMask:function(c){d===c||b||(a.colorMask(c,c,c,c),d=c)},setLocked:function(a){b=a},setClear:function(b,d,f,g,h){!0===h&&(b*=g,d*=g,f*=g);c.set(b,d,f,g);!1===e.equals(c)&&(a.clearColor(b,d,f,g),e.copy(c))},reset:function(){b=
+!1;d=null;e.set(-1,0,0,0)}}},t=new function(){var b=!1,c=null,d=null,g=null;return{setTest:function(b){b?e(a.DEPTH_TEST):f(a.DEPTH_TEST)},setMask:function(d){c===d||b||(a.depthMask(d),c=d)},setFunc:function(b){if(d!==b){if(b)switch(b){case 0:a.depthFunc(a.NEVER);break;case 1:a.depthFunc(a.ALWAYS);break;case 2:a.depthFunc(a.LESS);break;case 3:a.depthFunc(a.LEQUAL);break;case 4:a.depthFunc(a.EQUAL);break;case 5:a.depthFunc(a.GEQUAL);break;case 6:a.depthFunc(a.GREATER);break;case 7:a.depthFunc(a.NOTEQUAL);
+break;default:a.depthFunc(a.LEQUAL)}else a.depthFunc(a.LEQUAL);d=b}},setLocked:function(a){b=a},setClear:function(b){g!==b&&(a.clearDepth(b),g=b)},reset:function(){b=!1;g=d=c=null}}},r=new function(){var b=!1,c=null,d=null,g=null,h=null,l=null,m=null,n=null,u=null;return{setTest:function(b){b?e(a.STENCIL_TEST):f(a.STENCIL_TEST)},setMask:function(d){c===d||b||(a.stencilMask(d),c=d)},setFunc:function(b,c,e){if(d!==b||g!==c||h!==e)a.stencilFunc(b,c,e),d=b,g=c,h=e},setOp:function(b,c,d){if(l!==b||m!==
+c||n!==d)a.stencilOp(b,c,d),l=b,m=c,n=d},setLocked:function(a){b=a},setClear:function(b){u!==b&&(a.clearStencil(b),u=b)},reset:function(){b=!1;u=n=m=l=h=g=d=c=null}}},k=a.getParameter(a.MAX_VERTEX_ATTRIBS),v=new Uint8Array(k),p=new Uint8Array(k),y=new Uint8Array(k),w={},B=null,G=null,K=null,P=null,H=null,C=null,nb=null,Z=null,z=null,ya=!1,A=null,E=null,Q=null,F=null,I=null,L=a.getParameter(a.MAX_COMBINED_TEXTURE_IMAGE_UNITS),N=!1;k=0;k=a.getParameter(a.VERSION);-1!==k.indexOf("WebGL")?(k=parseFloat(/^WebGL ([0-9])/.exec(k)[1]),
+N=1<=k):-1!==k.indexOf("OpenGL ES")&&(k=parseFloat(/^OpenGL ES ([0-9])/.exec(k)[1]),N=2<=k);var M=null,O={},T=new ea,J=new ea,W={};W[a.TEXTURE_2D]=d(a.TEXTURE_2D,a.TEXTURE_2D,1);W[a.TEXTURE_CUBE_MAP]=d(a.TEXTURE_CUBE_MAP,a.TEXTURE_CUBE_MAP_POSITIVE_X,6);n.setClear(0,0,0,1);t.setClear(1);r.setClear(0);e(a.DEPTH_TEST);t.setFunc(3);h(!1);l(1);e(a.CULL_FACE);e(a.BLEND);g(1);return{buffers:{color:n,depth:t,stencil:r},initAttributes:function(){for(var a=0,b=v.length;a<b;a++)v[a]=0},enableAttribute:function(c){v[c]=
+1;0===p[c]&&(a.enableVertexAttribArray(c),p[c]=1);0!==y[c]&&(b.get("ANGLE_instanced_arrays").vertexAttribDivisorANGLE(c,0),y[c]=0)},enableAttributeAndDivisor:function(c,d){v[c]=1;0===p[c]&&(a.enableVertexAttribArray(c),p[c]=1);y[c]!==d&&(b.get("ANGLE_instanced_arrays").vertexAttribDivisorANGLE(c,d),y[c]=d)},disableUnusedAttributes:function(){for(var b=0,c=p.length;b!==c;++b)p[b]!==v[b]&&(a.disableVertexAttribArray(b),p[b]=0)},enable:e,disable:f,getCompressedTextureFormats:function(){if(null===B&&
+(B=[],b.get("WEBGL_compressed_texture_pvrtc")||b.get("WEBGL_compressed_texture_s3tc")||b.get("WEBGL_compressed_texture_etc1")||b.get("WEBGL_compressed_texture_astc")))for(var c=a.getParameter(a.COMPRESSED_TEXTURE_FORMATS),d=0;d<c.length;d++)B.push(c[d]);return B},useProgram:function(b){return G!==b?(a.useProgram(b),G=b,!0):!1},setBlending:g,setMaterial:function(b,c){2===b.side?f(a.CULL_FACE):e(a.CULL_FACE);var d=1===b.side;c&&(d=!d);h(d);!0===b.transparent?g(b.blending,b.blendEquation,b.blendSrc,
+b.blendDst,b.blendEquationAlpha,b.blendSrcAlpha,b.blendDstAlpha,b.premultipliedAlpha):g(0);t.setFunc(b.depthFunc);t.setTest(b.depthTest);t.setMask(b.depthWrite);n.setMask(b.colorWrite);m(b.polygonOffset,b.polygonOffsetFactor,b.polygonOffsetUnits)},setFlipSided:h,setCullFace:l,setLineWidth:function(b){b!==Q&&(N&&a.lineWidth(b),Q=b)},setPolygonOffset:m,setScissorTest:function(b){b?e(a.SCISSOR_TEST):f(a.SCISSOR_TEST)},activeTexture:u,bindTexture:function(b,c){null===M&&u();var d=O[M];void 0===d&&(d=
+{type:void 0,texture:void 0},O[M]=d);if(d.type!==b||d.texture!==c)a.bindTexture(b,c||W[b]),d.type=b,d.texture=c},compressedTexImage2D:function(){try{a.compressedTexImage2D.apply(a,arguments)}catch(R){console.error("THREE.WebGLState:",R)}},texImage2D:function(){try{a.texImage2D.apply(a,arguments)}catch(R){console.error("THREE.WebGLState:",R)}},scissor:function(b){!1===T.equals(b)&&(a.scissor(b.x,b.y,b.z,b.w),T.copy(b))},viewport:function(b){!1===J.equals(b)&&(a.viewport(b.x,b.y,b.z,b.w),J.copy(b))},
+reset:function(){for(var b=0;b<p.length;b++)1===p[b]&&(a.disableVertexAttribArray(b),p[b]=0);w={};M=B=null;O={};E=A=K=G=null;n.reset();t.reset();r.reset()}}}function Fg(a,b,c,d,e,f,g){function h(a,b){if(a.width>b||a.height>b){if("data"in a){console.warn("THREE.WebGLRenderer: image in DataTexture is too big ("+a.width+"x"+a.height+").");return}b/=Math.max(a.width,a.height);var c=document.createElementNS("http://www.w3.org/1999/xhtml","canvas");c.width=Math.floor(a.width*b);c.height=Math.floor(a.height*
+b);c.getContext("2d").drawImage(a,0,0,a.width,a.height,0,0,c.width,c.height);console.warn("THREE.WebGLRenderer: image is too big ("+a.width+"x"+a.height+"). Resized to "+c.width+"x"+c.height,a);return c}return a}function l(a){return S.isPowerOfTwo(a.width)&&S.isPowerOfTwo(a.height)}function m(a,b){return a.generateMipmaps&&b&&1003!==a.minFilter&&1006!==a.minFilter}function u(b,c,e,f){a.generateMipmap(b);d.get(c).__maxMipLevel=Math.log2(Math.max(e,f))}function n(b){return 1003===b||1004===b||1005===
+b?a.NEAREST:a.LINEAR}function t(b){b=b.target;b.removeEventListener("dispose",t);a:{var c=d.get(b);if(b.image&&c.__image__webglTextureCube)a.deleteTexture(c.__image__webglTextureCube);else{if(void 0===c.__webglInit)break a;a.deleteTexture(c.__webglTexture)}d.remove(b)}b.isVideoTexture&&delete B[b.id];g.memory.textures--}function k(b){b=b.target;b.removeEventListener("dispose",k);var c=d.get(b),e=d.get(b.texture);if(b){void 0!==e.__webglTexture&&a.deleteTexture(e.__webglTexture);b.depthTexture&&b.depthTexture.dispose();
+if(b.isWebGLRenderTargetCube)for(e=0;6>e;e++)a.deleteFramebuffer(c.__webglFramebuffer[e]),c.__webglDepthbuffer&&a.deleteRenderbuffer(c.__webglDepthbuffer[e]);else a.deleteFramebuffer(c.__webglFramebuffer),c.__webglDepthbuffer&&a.deleteRenderbuffer(c.__webglDepthbuffer);d.remove(b.texture);d.remove(b)}g.memory.textures--}function q(b,n){var k=d.get(b);if(b.isVideoTexture){var r=b.id,q=g.render.frame;B[r]!==q&&(B[r]=q,b.update())}if(0<b.version&&k.__version!==b.version)if(r=b.image,void 0===r)console.warn("THREE.WebGLRenderer: Texture marked for update but image is undefined",
+b);else if(!1===r.complete)console.warn("THREE.WebGLRenderer: Texture marked for update but image is incomplete",b);else{void 0===k.__webglInit&&(k.__webglInit=!0,b.addEventListener("dispose",t),k.__webglTexture=a.createTexture(),g.memory.textures++);c.activeTexture(a.TEXTURE0+n);c.bindTexture(a.TEXTURE_2D,k.__webglTexture);a.pixelStorei(a.UNPACK_FLIP_Y_WEBGL,b.flipY);a.pixelStorei(a.UNPACK_PREMULTIPLY_ALPHA_WEBGL,b.premultiplyAlpha);a.pixelStorei(a.UNPACK_ALIGNMENT,b.unpackAlignment);n=h(b.image,
+e.maxTextureSize);(1001!==b.wrapS||1001!==b.wrapT||1003!==b.minFilter&&1006!==b.minFilter)&&!1===l(n)&&(n instanceof HTMLImageElement||n instanceof HTMLCanvasElement||n instanceof ImageBitmap)&&(void 0===G&&(G=document.createElementNS("http://www.w3.org/1999/xhtml","canvas")),G.width=S.floorPowerOfTwo(n.width),G.height=S.floorPowerOfTwo(n.height),G.getContext("2d").drawImage(n,0,0,G.width,G.height),console.warn("THREE.WebGLRenderer: image is not power of two ("+n.width+"x"+n.height+"). Resized to "+
+G.width+"x"+G.height,n),n=G);r=l(n);q=f.convert(b.format);var p=f.convert(b.type);v(a.TEXTURE_2D,b,r);var x=b.mipmaps;if(b.isDepthTexture){var K=a.DEPTH_COMPONENT;if(1015===b.type){if(!w)throw Error("Float Depth Texture only supported in WebGL2.0");K=a.DEPTH_COMPONENT32F}else w&&(K=a.DEPTH_COMPONENT16);1026===b.format&&K===a.DEPTH_COMPONENT&&1012!==b.type&&1014!==b.type&&(console.warn("THREE.WebGLRenderer: Use UnsignedShortType or UnsignedIntType for DepthFormat DepthTexture."),b.type=1012,p=f.convert(b.type));
+1027===b.format&&(K=a.DEPTH_STENCIL,1020!==b.type&&(console.warn("THREE.WebGLRenderer: Use UnsignedInt248Type for DepthStencilFormat DepthTexture."),b.type=1020,p=f.convert(b.type)));c.texImage2D(a.TEXTURE_2D,0,K,n.width,n.height,0,q,p,null)}else if(b.isDataTexture)if(0<x.length&&r){for(var P=0,y=x.length;P<y;P++)K=x[P],c.texImage2D(a.TEXTURE_2D,P,q,K.width,K.height,0,q,p,K.data);b.generateMipmaps=!1;k.__maxMipLevel=x.length-1}else c.texImage2D(a.TEXTURE_2D,0,q,n.width,n.height,0,q,p,n.data),k.__maxMipLevel=
+0;else if(b.isCompressedTexture){P=0;for(y=x.length;P<y;P++)K=x[P],1023!==b.format&&1022!==b.format?-1<c.getCompressedTextureFormats().indexOf(q)?c.compressedTexImage2D(a.TEXTURE_2D,P,q,K.width,K.height,0,K.data):console.warn("THREE.WebGLRenderer: Attempt to load unsupported compressed texture format in .uploadTexture()"):c.texImage2D(a.TEXTURE_2D,P,q,K.width,K.height,0,q,p,K.data);k.__maxMipLevel=x.length-1}else if(0<x.length&&r){P=0;for(y=x.length;P<y;P++)K=x[P],c.texImage2D(a.TEXTURE_2D,P,q,q,
+p,K);b.generateMipmaps=!1;k.__maxMipLevel=x.length-1}else c.texImage2D(a.TEXTURE_2D,0,q,q,p,n),k.__maxMipLevel=0;m(b,r)&&u(a.TEXTURE_2D,b,n.width,n.height);k.__version=b.version;if(b.onUpdate)b.onUpdate(b);return}c.activeTexture(a.TEXTURE0+n);c.bindTexture(a.TEXTURE_2D,k.__webglTexture)}function v(c,g,h){h?(a.texParameteri(c,a.TEXTURE_WRAP_S,f.convert(g.wrapS)),a.texParameteri(c,a.TEXTURE_WRAP_T,f.convert(g.wrapT)),a.texParameteri(c,a.TEXTURE_MAG_FILTER,f.convert(g.magFilter)),a.texParameteri(c,a.TEXTURE_MIN_FILTER,
+f.convert(g.minFilter))):(a.texParameteri(c,a.TEXTURE_WRAP_S,a.CLAMP_TO_EDGE),a.texParameteri(c,a.TEXTURE_WRAP_T,a.CLAMP_TO_EDGE),1001===g.wrapS&&1001===g.wrapT||console.warn("THREE.WebGLRenderer: Texture is not power of two. Texture.wrapS and Texture.wrapT should be set to THREE.ClampToEdgeWrapping.",g),a.texParameteri(c,a.TEXTURE_MAG_FILTER,n(g.magFilter)),a.texParameteri(c,a.TEXTURE_MIN_FILTER,n(g.minFilter)),1003!==g.minFilter&&1006!==g.minFilter&&console.warn("THREE.WebGLRenderer: Texture is not power of two. Texture.minFilter should be set to THREE.NearestFilter or THREE.LinearFilter.",
+g));!(h=b.get("EXT_texture_filter_anisotropic"))||1015===g.type&&null===b.get("OES_texture_float_linear")||1016===g.type&&null===b.get("OES_texture_half_float_linear")||!(1<g.anisotropy||d.get(g).__currentAnisotropy)||(a.texParameterf(c,h.TEXTURE_MAX_ANISOTROPY_EXT,Math.min(g.anisotropy,e.getMaxAnisotropy())),d.get(g).__currentAnisotropy=g.anisotropy)}function p(b,e,g,h){var l=f.convert(e.texture.format),m=f.convert(e.texture.type);c.texImage2D(h,0,l,e.width,e.height,0,l,m,null);a.bindFramebuffer(a.FRAMEBUFFER,
+b);a.framebufferTexture2D(a.FRAMEBUFFER,g,h,d.get(e.texture).__webglTexture,0);a.bindFramebuffer(a.FRAMEBUFFER,null)}function y(b,c){a.bindRenderbuffer(a.RENDERBUFFER,b);c.depthBuffer&&!c.stencilBuffer?(a.renderbufferStorage(a.RENDERBUFFER,a.DEPTH_COMPONENT16,c.width,c.height),a.framebufferRenderbuffer(a.FRAMEBUFFER,a.DEPTH_ATTACHMENT,a.RENDERBUFFER,b)):c.depthBuffer&&c.stencilBuffer?(a.renderbufferStorage(a.RENDERBUFFER,a.DEPTH_STENCIL,c.width,c.height),a.framebufferRenderbuffer(a.FRAMEBUFFER,a.DEPTH_STENCIL_ATTACHMENT,
+a.RENDERBUFFER,b)):a.renderbufferStorage(a.RENDERBUFFER,a.RGBA4,c.width,c.height);a.bindRenderbuffer(a.RENDERBUFFER,null)}var w="undefined"!==typeof WebGL2RenderingContext&&a instanceof WebGL2RenderingContext,B={},G;this.setTexture2D=q;this.setTextureCube=function(b,n){var k=d.get(b);if(6===b.image.length)if(0<b.version&&k.__version!==b.version){k.__image__webglTextureCube||(b.addEventListener("dispose",t),k.__image__webglTextureCube=a.createTexture(),g.memory.textures++);c.activeTexture(a.TEXTURE0+
+n);c.bindTexture(a.TEXTURE_CUBE_MAP,k.__image__webglTextureCube);a.pixelStorei(a.UNPACK_FLIP_Y_WEBGL,b.flipY);n=b&&b.isCompressedTexture;for(var r=b.image[0]&&b.image[0].isDataTexture,q=[],p=0;6>p;p++)q[p]=n||r?r?b.image[p].image:b.image[p]:h(b.image[p],e.maxCubemapSize);var x=q[0],w=l(x),K=f.convert(b.format),y=f.convert(b.type);v(a.TEXTURE_CUBE_MAP,b,w);for(p=0;6>p;p++)if(n)for(var B,G=q[p].mipmaps,P=0,C=G.length;P<C;P++)B=G[P],1023!==b.format&&1022!==b.format?-1<c.getCompressedTextureFormats().indexOf(K)?
+c.compressedTexImage2D(a.TEXTURE_CUBE_MAP_POSITIVE_X+p,P,K,B.width,B.height,0,B.data):console.warn("THREE.WebGLRenderer: Attempt to load unsupported compressed texture format in .setTextureCube()"):c.texImage2D(a.TEXTURE_CUBE_MAP_POSITIVE_X+p,P,K,B.width,B.height,0,K,y,B.data);else r?c.texImage2D(a.TEXTURE_CUBE_MAP_POSITIVE_X+p,0,K,q[p].width,q[p].height,0,K,y,q[p].data):c.texImage2D(a.TEXTURE_CUBE_MAP_POSITIVE_X+p,0,K,K,y,q[p]);k.__maxMipLevel=n?G.length-1:0;m(b,w)&&u(a.TEXTURE_CUBE_MAP,b,x.width,
+x.height);k.__version=b.version;if(b.onUpdate)b.onUpdate(b)}else c.activeTexture(a.TEXTURE0+n),c.bindTexture(a.TEXTURE_CUBE_MAP,k.__image__webglTextureCube)};this.setTextureCubeDynamic=function(b,e){c.activeTexture(a.TEXTURE0+e);c.bindTexture(a.TEXTURE_CUBE_MAP,d.get(b).__webglTexture)};this.setupRenderTarget=function(b){var e=d.get(b),f=d.get(b.texture);b.addEventListener("dispose",k);f.__webglTexture=a.createTexture();g.memory.textures++;var h=!0===b.isWebGLRenderTargetCube,n=l(b);if(h){e.__webglFramebuffer=
+[];for(var t=0;6>t;t++)e.__webglFramebuffer[t]=a.createFramebuffer()}else e.__webglFramebuffer=a.createFramebuffer();if(h){c.bindTexture(a.TEXTURE_CUBE_MAP,f.__webglTexture);v(a.TEXTURE_CUBE_MAP,b.texture,n);for(t=0;6>t;t++)p(e.__webglFramebuffer[t],b,a.COLOR_ATTACHMENT0,a.TEXTURE_CUBE_MAP_POSITIVE_X+t);m(b.texture,n)&&u(a.TEXTURE_CUBE_MAP,b.texture,b.width,b.height);c.bindTexture(a.TEXTURE_CUBE_MAP,null)}else c.bindTexture(a.TEXTURE_2D,f.__webglTexture),v(a.TEXTURE_2D,b.texture,n),p(e.__webglFramebuffer,
+b,a.COLOR_ATTACHMENT0,a.TEXTURE_2D),m(b.texture,n)&&u(a.TEXTURE_2D,b.texture,b.width,b.height),c.bindTexture(a.TEXTURE_2D,null);if(b.depthBuffer){e=d.get(b);f=!0===b.isWebGLRenderTargetCube;if(b.depthTexture){if(f)throw Error("target.depthTexture not supported in Cube render targets");if(b&&b.isWebGLRenderTargetCube)throw Error("Depth Texture with cube render targets is not supported");a.bindFramebuffer(a.FRAMEBUFFER,e.__webglFramebuffer);if(!b.depthTexture||!b.depthTexture.isDepthTexture)throw Error("renderTarget.depthTexture must be an instance of THREE.DepthTexture");
+d.get(b.depthTexture).__webglTexture&&b.depthTexture.image.width===b.width&&b.depthTexture.image.height===b.height||(b.depthTexture.image.width=b.width,b.depthTexture.image.height=b.height,b.depthTexture.needsUpdate=!0);q(b.depthTexture,0);e=d.get(b.depthTexture).__webglTexture;if(1026===b.depthTexture.format)a.framebufferTexture2D(a.FRAMEBUFFER,a.DEPTH_ATTACHMENT,a.TEXTURE_2D,e,0);else if(1027===b.depthTexture.format)a.framebufferTexture2D(a.FRAMEBUFFER,a.DEPTH_STENCIL_ATTACHMENT,a.TEXTURE_2D,e,
+0);else throw Error("Unknown depthTexture format");}else if(f)for(e.__webglDepthbuffer=[],f=0;6>f;f++)a.bindFramebuffer(a.FRAMEBUFFER,e.__webglFramebuffer[f]),e.__webglDepthbuffer[f]=a.createRenderbuffer(),y(e.__webglDepthbuffer[f],b);else a.bindFramebuffer(a.FRAMEBUFFER,e.__webglFramebuffer),e.__webglDepthbuffer=a.createRenderbuffer(),y(e.__webglDepthbuffer,b);a.bindFramebuffer(a.FRAMEBUFFER,null)}};this.updateRenderTargetMipmap=function(b){var e=b.texture,f=l(b);if(m(e,f)){f=b.isWebGLRenderTargetCube?
+a.TEXTURE_CUBE_MAP:a.TEXTURE_2D;var g=d.get(e).__webglTexture;c.bindTexture(f,g);u(f,e,b.width,b.height);c.bindTexture(f,null)}}}function Ve(a,b){return{convert:function(c){if(1E3===c)return a.REPEAT;if(1001===c)return a.CLAMP_TO_EDGE;if(1002===c)return a.MIRRORED_REPEAT;if(1003===c)return a.NEAREST;if(1004===c)return a.NEAREST_MIPMAP_NEAREST;if(1005===c)return a.NEAREST_MIPMAP_LINEAR;if(1006===c)return a.LINEAR;if(1007===c)return a.LINEAR_MIPMAP_NEAREST;if(1008===c)return a.LINEAR_MIPMAP_LINEAR;
+if(1009===c)return a.UNSIGNED_BYTE;if(1017===c)return a.UNSIGNED_SHORT_4_4_4_4;if(1018===c)return a.UNSIGNED_SHORT_5_5_5_1;if(1019===c)return a.UNSIGNED_SHORT_5_6_5;if(1010===c)return a.BYTE;if(1011===c)return a.SHORT;if(1012===c)return a.UNSIGNED_SHORT;if(1013===c)return a.INT;if(1014===c)return a.UNSIGNED_INT;if(1015===c)return a.FLOAT;if(1016===c){var d=b.get("OES_texture_half_float");if(null!==d)return d.HALF_FLOAT_OES}if(1021===c)return a.ALPHA;if(1022===c)return a.RGB;if(1023===c)return a.RGBA;
+if(1024===c)return a.LUMINANCE;if(1025===c)return a.LUMINANCE_ALPHA;if(1026===c)return a.DEPTH_COMPONENT;if(1027===c)return a.DEPTH_STENCIL;if(100===c)return a.FUNC_ADD;if(101===c)return a.FUNC_SUBTRACT;if(102===c)return a.FUNC_REVERSE_SUBTRACT;if(200===c)return a.ZERO;if(201===c)return a.ONE;if(202===c)return a.SRC_COLOR;if(203===c)return a.ONE_MINUS_SRC_COLOR;if(204===c)return a.SRC_ALPHA;if(205===c)return a.ONE_MINUS_SRC_ALPHA;if(206===c)return a.DST_ALPHA;if(207===c)return a.ONE_MINUS_DST_ALPHA;
+if(208===c)return a.DST_COLOR;if(209===c)return a.ONE_MINUS_DST_COLOR;if(210===c)return a.SRC_ALPHA_SATURATE;if(33776===c||33777===c||33778===c||33779===c)if(d=b.get("WEBGL_compressed_texture_s3tc"),null!==d){if(33776===c)return d.COMPRESSED_RGB_S3TC_DXT1_EXT;if(33777===c)return d.COMPRESSED_RGBA_S3TC_DXT1_EXT;if(33778===c)return d.COMPRESSED_RGBA_S3TC_DXT3_EXT;if(33779===c)return d.COMPRESSED_RGBA_S3TC_DXT5_EXT}if(35840===c||35841===c||35842===c||35843===c)if(d=b.get("WEBGL_compressed_texture_pvrtc"),
+null!==d){if(35840===c)return d.COMPRESSED_RGB_PVRTC_4BPPV1_IMG;if(35841===c)return d.COMPRESSED_RGB_PVRTC_2BPPV1_IMG;if(35842===c)return d.COMPRESSED_RGBA_PVRTC_4BPPV1_IMG;if(35843===c)return d.COMPRESSED_RGBA_PVRTC_2BPPV1_IMG}if(36196===c&&(d=b.get("WEBGL_compressed_texture_etc1"),null!==d))return d.COMPRESSED_RGB_ETC1_WEBGL;if(37808===c||37809===c||37810===c||37811===c||37812===c||37813===c||37814===c||37815===c||37816===c||37817===c||37818===c||37819===c||37820===c||37821===c)if(d=b.get("WEBGL_compressed_texture_astc"),
+null!==d)return c;if(103===c||104===c)if(d=b.get("EXT_blend_minmax"),null!==d){if(103===c)return d.MIN_EXT;if(104===c)return d.MAX_EXT}return 1020===c&&(d=b.get("WEBGL_depth_texture"),null!==d)?d.UNSIGNED_INT_24_8_WEBGL:0}}}function la(a,b,c,d){Qa.call(this);this.type="PerspectiveCamera";this.fov=void 0!==a?a:50;this.zoom=1;this.near=void 0!==c?c:.1;this.far=void 0!==d?d:2E3;this.focus=10;this.aspect=void 0!==b?b:1;this.view=null;this.filmGauge=35;this.filmOffset=0;this.updateProjectionMatrix()}function qd(a){la.call(this);
+this.cameras=a||[]}function We(a){function b(){if(null!==d&&d.isPresenting){var b=d.getEyeParameters("left"),e=b.renderWidth;b=b.renderHeight;v=a.getPixelRatio();q=a.getSize();a.setDrawingBufferSize(2*e,b,1)}else c.enabled&&a.setDrawingBufferSize(q.width,q.height,v)}var c=this,d=null,e=null,f=null,g=new M,h=new M;"undefined"!==typeof window&&"VRFrameData"in window&&(e=new window.VRFrameData);var l=new M,m=new ja,u=new p,n=new la;n.bounds=new ea(0,0,.5,1);n.layers.enable(1);var t=new la;t.bounds=new ea(.5,
+0,.5,1);t.layers.enable(2);var k=new qd([n,t]);k.layers.enable(1);k.layers.enable(2);var q,v;"undefined"!==typeof window&&window.addEventListener("vrdisplaypresentchange",b,!1);this.enabled=!1;this.userHeight=1.6;this.getDevice=function(){return d};this.setDevice=function(a){void 0!==a&&(d=a)};this.setPoseTarget=function(a){void 0!==a&&(f=a)};this.getCamera=function(a){if(null===d)return a;d.depthNear=a.near;d.depthFar=a.far;d.getFrameData(e);var b=d.stageParameters;b?g.fromArray(b.sittingToStandingTransform):
+g.makeTranslation(0,c.userHeight,0);b=e.pose;var r=null!==f?f:a;r.matrix.copy(g);r.matrix.decompose(r.position,r.quaternion,r.scale);null!==b.orientation&&(m.fromArray(b.orientation),r.quaternion.multiply(m));null!==b.position&&(m.setFromRotationMatrix(g),u.fromArray(b.position),u.applyQuaternion(m),r.position.add(u));r.updateMatrixWorld();if(!1===d.isPresenting)return a;n.near=a.near;t.near=a.near;n.far=a.far;t.far=a.far;k.matrixWorld.copy(a.matrixWorld);k.matrixWorldInverse.copy(a.matrixWorldInverse);
+n.matrixWorldInverse.fromArray(e.leftViewMatrix);t.matrixWorldInverse.fromArray(e.rightViewMatrix);h.getInverse(g);n.matrixWorldInverse.multiply(h);t.matrixWorldInverse.multiply(h);a=r.parent;null!==a&&(l.getInverse(a.matrixWorld),n.matrixWorldInverse.multiply(l),t.matrixWorldInverse.multiply(l));n.matrixWorld.getInverse(n.matrixWorldInverse);t.matrixWorld.getInverse(t.matrixWorldInverse);n.projectionMatrix.fromArray(e.leftProjectionMatrix);t.projectionMatrix.fromArray(e.rightProjectionMatrix);k.projectionMatrix.copy(n.projectionMatrix);
+a=d.getLayers();a.length&&(a=a[0],null!==a.leftBounds&&4===a.leftBounds.length&&n.bounds.fromArray(a.leftBounds),null!==a.rightBounds&&4===a.rightBounds.length&&t.bounds.fromArray(a.rightBounds));return k};this.getStandingMatrix=function(){return g};this.submitFrame=function(){d&&d.isPresenting&&d.submitFrame()};this.dispose=function(){"undefined"!==typeof window&&window.removeEventListener("vrdisplaypresentchange",b)}}function Xd(a){function b(){ka=new Hf(D);ka.get("WEBGL_depth_texture");ka.get("OES_texture_float");
+ka.get("OES_texture_float_linear");ka.get("OES_texture_half_float");ka.get("OES_texture_half_float_linear");ka.get("OES_standard_derivatives");ka.get("OES_element_index_uint");ka.get("ANGLE_instanced_arrays");ia=new Ve(D,ka);Ra=new Ff(D,ka,a);ba=new Eg(D,ka,ia);ba.scissor(V.copy(ca).multiplyScalar(R));ba.viewport(ob.copy(Y).multiplyScalar(R));da=new Kf(D);X=new tg;fa=new Fg(D,ka,ba,X,Ra,ia,da);qa=new yf(D);ra=new If(D,qa,da);sa=new Nf(ra,da);wa=new Mf(D);oa=new sg(A,ka,Ra);ua=new xg;pa=new Cg;ma=
+new Df(A,ba,ra,P);xa=new Ef(D,ka,da);za=new Jf(D,ka,da);Aa=new Dg(A,D,ba,fa,Ra);da.programs=oa.programs;A.context=D;A.capabilities=Ra;A.extensions=ka;A.properties=X;A.renderLists=ua;A.state=ba;A.info=da}function c(a){a.preventDefault();console.log("THREE.WebGLRenderer: Context Lost.");E=!0}function d(){console.log("THREE.WebGLRenderer: Context Restored.");E=!1;b()}function e(a){a=a.target;a.removeEventListener("dispose",e);f(a);X.remove(a)}function f(a){var b=X.get(a).program;a.program=void 0;void 0!==
+b&&oa.releaseProgram(b)}function g(a,b,c){a.render(function(a){A.renderBufferImmediate(a,b,c)})}function h(){var a=na.getDevice();a&&a.isPresenting?a.requestAnimationFrame(l):window.requestAnimationFrame(l)}function l(a){!1!==va&&(Ba(a),h())}function m(a,b,c){if(!1!==a.visible){if(a.layers.test(b.layers))if(a.isLight)Z.pushLight(a),a.castShadow&&Z.pushShadow(a);else if(a.isSprite)a.frustumCulled&&!ha.intersectsSprite(a)||Z.pushSprite(a);else if(a.isImmediateRenderObject)c&&Nb.setFromMatrixPosition(a.matrixWorld).applyMatrix4(pd),
+z.push(a,null,a.material,Nb.z,null);else if(a.isMesh||a.isLine||a.isPoints)if(a.isSkinnedMesh&&a.skeleton.update(),!a.frustumCulled||ha.intersectsObject(a)){c&&Nb.setFromMatrixPosition(a.matrixWorld).applyMatrix4(pd);var d=sa.update(a),e=a.material;if(Array.isArray(e))for(var f=d.groups,g=0,h=f.length;g<h;g++){var l=f[g],n=e[l.materialIndex];n&&n.visible&&z.push(a,d,n,Nb.z,l)}else e.visible&&z.push(a,d,e,Nb.z,null)}a=a.children;g=0;for(h=a.length;g<h;g++)m(a[g],b,c)}}function u(a,b,c,d){for(var e=
+0,f=a.length;e<f;e++){var g=a[e],h=g.object,l=g.geometry,m=void 0===d?g.material:d;g=g.group;if(c.isArrayCamera){T=c;for(var u=c.cameras,t=0,k=u.length;t<k;t++){var r=u[t];if(h.layers.test(r.layers)){var q=r.bounds;ba.viewport(ob.set(q.x*J,q.y*W,q.z*J,q.w*W).multiplyScalar(R));n(h,b,r,l,m,g)}}}else T=null,n(h,b,c,l,m,g)}}function n(a,b,c,d,e,f){a.onBeforeRender(A,b,c,d,e,f);Z=pa.get(b,T||c);a.modelViewMatrix.multiplyMatrices(c.matrixWorldInverse,a.matrixWorld);a.normalMatrix.getNormalMatrix(a.modelViewMatrix);
+if(a.isImmediateRenderObject){var h=a.isMesh&&0>a.matrixWorld.determinant();ba.setMaterial(e,h);h=k(c,b.fog,e,a);N="";g(a,h,e)}else A.renderBufferDirect(c,b.fog,d,e,a,f);a.onAfterRender(A,b,c,d,e,f);Z=pa.get(b,T||c)}function t(a,b,c){var d=X.get(a),g=Z.state.lights;c=oa.getParameters(a,g.state,Z.state.shadowsArray,b,Ga.numPlanes,Ga.numIntersection,c);var h=oa.getProgramCode(a,c),l=d.program,m=!0;if(void 0===l)a.addEventListener("dispose",e);else if(l.code!==h)f(a);else{if(d.lightsHash!==g.state.hash)X.update(a,
+"lightsHash",g.state.hash);else if(void 0!==c.shaderID)return;m=!1}m&&(c.shaderID?(l=rb[c.shaderID],d.shader={name:a.type,uniforms:Da.clone(l.uniforms),vertexShader:l.vertexShader,fragmentShader:l.fragmentShader}):d.shader={name:a.type,uniforms:a.uniforms,vertexShader:a.vertexShader,fragmentShader:a.fragmentShader},a.onBeforeCompile(d.shader,A),l=oa.acquireProgram(a,d.shader,c,h),d.program=l,a.program=l);c=l.getAttributes();if(a.morphTargets)for(h=a.numSupportedMorphTargets=0;h<A.maxMorphTargets;h++)0<=
+c["morphTarget"+h]&&a.numSupportedMorphTargets++;if(a.morphNormals)for(h=a.numSupportedMorphNormals=0;h<A.maxMorphNormals;h++)0<=c["morphNormal"+h]&&a.numSupportedMorphNormals++;c=d.shader.uniforms;if(!a.isShaderMaterial&&!a.isRawShaderMaterial||!0===a.clipping)d.numClippingPlanes=Ga.numPlanes,d.numIntersection=Ga.numIntersection,c.clippingPlanes=Ga.uniform;d.fog=b;d.lightsHash=g.state.hash;a.lights&&(c.ambientLightColor.value=g.state.ambient,c.directionalLights.value=g.state.directional,c.spotLights.value=
+g.state.spot,c.rectAreaLights.value=g.state.rectArea,c.pointLights.value=g.state.point,c.hemisphereLights.value=g.state.hemi,c.directionalShadowMap.value=g.state.directionalShadowMap,c.directionalShadowMatrix.value=g.state.directionalShadowMatrix,c.spotShadowMap.value=g.state.spotShadowMap,c.spotShadowMatrix.value=g.state.spotShadowMatrix,c.pointShadowMap.value=g.state.pointShadowMap,c.pointShadowMatrix.value=g.state.pointShadowMatrix);a=d.program.getUniforms();a=bb.seqWithValue(a.seq,c);d.uniformsList=
+a}function k(a,b,c,d){aa=0;var e=X.get(c),f=Z.state.lights;od&&(la||a!==O)&&Ga.setState(c.clippingPlanes,c.clipIntersection,c.clipShadows,a,e,a===O&&c.id===Q);!1===c.needsUpdate&&(void 0===e.program?c.needsUpdate=!0:c.fog&&e.fog!==b?c.needsUpdate=!0:c.lights&&e.lightsHash!==f.state.hash?c.needsUpdate=!0:void 0===e.numClippingPlanes||e.numClippingPlanes===Ga.numPlanes&&e.numIntersection===Ga.numIntersection||(c.needsUpdate=!0));c.needsUpdate&&(t(c,b,d),c.needsUpdate=!1);var g=!1,h=!1,l=!1;f=e.program;
+var m=f.getUniforms(),n=e.shader.uniforms;ba.useProgram(f.program)&&(l=h=g=!0);c.id!==Q&&(Q=c.id,h=!0);if(g||a!==O){m.setValue(D,"projectionMatrix",a.projectionMatrix);Ra.logarithmicDepthBuffer&&m.setValue(D,"logDepthBufFC",2/(Math.log(a.far+1)/Math.LN2));O!==(T||a)&&(O=T||a,l=h=!0);if(c.isShaderMaterial||c.isMeshPhongMaterial||c.isMeshStandardMaterial||c.envMap)g=m.map.cameraPosition,void 0!==g&&g.setValue(D,Nb.setFromMatrixPosition(a.matrixWorld));(c.isMeshPhongMaterial||c.isMeshLambertMaterial||
+c.isMeshBasicMaterial||c.isMeshStandardMaterial||c.isShaderMaterial||c.skinning)&&m.setValue(D,"viewMatrix",a.matrixWorldInverse)}if(c.skinning&&(m.setOptional(D,d,"bindMatrix"),m.setOptional(D,d,"bindMatrixInverse"),a=d.skeleton))if(g=a.bones,Ra.floatVertexTextures){if(void 0===a.boneTexture){g=Math.sqrt(4*g.length);g=S.ceilPowerOfTwo(g);g=Math.max(g,4);var u=new Float32Array(g*g*4);u.set(a.boneMatrices);var k=new ib(u,g,g,1023,1015);k.needsUpdate=!0;a.boneMatrices=u;a.boneTexture=k;a.boneTextureSize=
+g}m.setValue(D,"boneTexture",a.boneTexture);m.setValue(D,"boneTextureSize",a.boneTextureSize)}else m.setOptional(D,a,"boneMatrices");h&&(m.setValue(D,"toneMappingExposure",A.toneMappingExposure),m.setValue(D,"toneMappingWhitePoint",A.toneMappingWhitePoint),c.lights&&(h=l,n.ambientLightColor.needsUpdate=h,n.directionalLights.needsUpdate=h,n.pointLights.needsUpdate=h,n.spotLights.needsUpdate=h,n.rectAreaLights.needsUpdate=h,n.hemisphereLights.needsUpdate=h),b&&c.fog&&(n.fogColor.value=b.color,b.isFog?
+(n.fogNear.value=b.near,n.fogFar.value=b.far):b.isFogExp2&&(n.fogDensity.value=b.density)),c.isMeshBasicMaterial?q(n,c):c.isMeshLambertMaterial?(q(n,c),c.emissiveMap&&(n.emissiveMap.value=c.emissiveMap)):c.isMeshPhongMaterial?(q(n,c),c.isMeshToonMaterial?(v(n,c),c.gradientMap&&(n.gradientMap.value=c.gradientMap)):v(n,c)):c.isMeshStandardMaterial?(q(n,c),c.isMeshPhysicalMaterial&&(n.clearCoat.value=c.clearCoat,n.clearCoatRoughness.value=c.clearCoatRoughness),n.roughness.value=c.roughness,n.metalness.value=
+c.metalness,c.roughnessMap&&(n.roughnessMap.value=c.roughnessMap),c.metalnessMap&&(n.metalnessMap.value=c.metalnessMap),c.emissiveMap&&(n.emissiveMap.value=c.emissiveMap),c.bumpMap&&(n.bumpMap.value=c.bumpMap,n.bumpScale.value=c.bumpScale),c.normalMap&&(n.normalMap.value=c.normalMap,n.normalScale.value.copy(c.normalScale)),c.displacementMap&&(n.displacementMap.value=c.displacementMap,n.displacementScale.value=c.displacementScale,n.displacementBias.value=c.displacementBias),c.envMap&&(n.envMapIntensity.value=
+c.envMapIntensity)):c.isMeshDepthMaterial?(q(n,c),c.displacementMap&&(n.displacementMap.value=c.displacementMap,n.displacementScale.value=c.displacementScale,n.displacementBias.value=c.displacementBias)):c.isMeshDistanceMaterial?(q(n,c),c.displacementMap&&(n.displacementMap.value=c.displacementMap,n.displacementScale.value=c.displacementScale,n.displacementBias.value=c.displacementBias),n.referencePosition.value.copy(c.referencePosition),n.nearDistance.value=c.nearDistance,n.farDistance.value=c.farDistance):
+c.isMeshNormalMaterial?(q(n,c),c.bumpMap&&(n.bumpMap.value=c.bumpMap,n.bumpScale.value=c.bumpScale),c.normalMap&&(n.normalMap.value=c.normalMap,n.normalScale.value.copy(c.normalScale)),c.displacementMap&&(n.displacementMap.value=c.displacementMap,n.displacementScale.value=c.displacementScale,n.displacementBias.value=c.displacementBias)):c.isLineBasicMaterial?(n.diffuse.value=c.color,n.opacity.value=c.opacity,c.isLineDashedMaterial&&(n.dashSize.value=c.dashSize,n.totalSize.value=c.dashSize+c.gapSize,
+n.scale.value=c.scale)):c.isPointsMaterial?(n.diffuse.value=c.color,n.opacity.value=c.opacity,n.size.value=c.size*R,n.scale.value=.5*W,n.map.value=c.map,null!==c.map&&(!0===c.map.matrixAutoUpdate&&(b=c.map.offset,h=c.map.repeat,l=c.map.center,c.map.matrix.setUvTransform(b.x,b.y,h.x,h.y,c.map.rotation,l.x,l.y)),n.uvTransform.value.copy(c.map.matrix))):c.isShadowMaterial&&(n.color.value=c.color,n.opacity.value=c.opacity),void 0!==n.ltc_1&&(n.ltc_1.value=L.LTC_1),void 0!==n.ltc_2&&(n.ltc_2.value=L.LTC_2),
+bb.upload(D,e.uniformsList,n,A));c.isShaderMaterial&&!0===c.uniformsNeedUpdate&&(bb.upload(D,e.uniformsList,n,A),c.uniformsNeedUpdate=!1);m.setValue(D,"modelViewMatrix",d.modelViewMatrix);m.setValue(D,"normalMatrix",d.normalMatrix);m.setValue(D,"modelMatrix",d.matrixWorld);return f}function q(a,b){a.opacity.value=b.opacity;b.color&&(a.diffuse.value=b.color);b.emissive&&a.emissive.value.copy(b.emissive).multiplyScalar(b.emissiveIntensity);b.map&&(a.map.value=b.map);b.alphaMap&&(a.alphaMap.value=b.alphaMap);
+b.specularMap&&(a.specularMap.value=b.specularMap);b.envMap&&(a.envMap.value=b.envMap,a.flipEnvMap.value=b.envMap&&b.envMap.isCubeTexture?-1:1,a.reflectivity.value=b.reflectivity,a.refractionRatio.value=b.refractionRatio,a.maxMipLevel.value=X.get(b.envMap).__maxMipLevel);b.lightMap&&(a.lightMap.value=b.lightMap,a.lightMapIntensity.value=b.lightMapIntensity);b.aoMap&&(a.aoMap.value=b.aoMap,a.aoMapIntensity.value=b.aoMapIntensity);if(b.map)var c=b.map;else b.specularMap?c=b.specularMap:b.displacementMap?
+c=b.displacementMap:b.normalMap?c=b.normalMap:b.bumpMap?c=b.bumpMap:b.roughnessMap?c=b.roughnessMap:b.metalnessMap?c=b.metalnessMap:b.alphaMap?c=b.alphaMap:b.emissiveMap&&(c=b.emissiveMap);if(void 0!==c){c.isWebGLRenderTarget&&(c=c.texture);if(!0===c.matrixAutoUpdate){b=c.offset;var d=c.repeat,e=c.center;c.matrix.setUvTransform(b.x,b.y,d.x,d.y,c.rotation,e.x,e.y)}a.uvTransform.value.copy(c.matrix)}}function v(a,b){a.specular.value=b.specular;a.shininess.value=Math.max(b.shininess,1E-4);b.emissiveMap&&
+(a.emissiveMap.value=b.emissiveMap);b.bumpMap&&(a.bumpMap.value=b.bumpMap,a.bumpScale.value=b.bumpScale);b.normalMap&&(a.normalMap.value=b.normalMap,a.normalScale.value.copy(b.normalScale));b.displacementMap&&(a.displacementMap.value=b.displacementMap,a.displacementScale.value=b.displacementScale,a.displacementBias.value=b.displacementBias)}console.log("THREE.WebGLRenderer","91");a=a||{};var x=void 0!==a.canvas?a.canvas:document.createElementNS("http://www.w3.org/1999/xhtml","canvas"),y=void 0!==
+a.context?a.context:null,w=void 0!==a.alpha?a.alpha:!1,B=void 0!==a.depth?a.depth:!0,G=void 0!==a.stencil?a.stencil:!0,K=void 0!==a.antialias?a.antialias:!1,P=void 0!==a.premultipliedAlpha?a.premultipliedAlpha:!0,H=void 0!==a.preserveDrawingBuffer?a.preserveDrawingBuffer:!1,C=void 0!==a.powerPreference?a.powerPreference:"default",z=null,Z=null;this.domElement=x;this.context=null;this.sortObjects=this.autoClearStencil=this.autoClearDepth=this.autoClearColor=this.autoClear=!0;this.clippingPlanes=[];
+this.localClippingEnabled=!1;this.gammaFactor=2;this.physicallyCorrectLights=this.gammaOutput=this.gammaInput=!1;this.toneMappingWhitePoint=this.toneMappingExposure=this.toneMapping=1;this.maxMorphTargets=8;this.maxMorphNormals=4;var A=this,E=!1,F=null,I=null,Q=-1,N="",O=null,T=null,ob=new ea,V=new ea,U=null,aa=0,J=x.width,W=x.height,R=1,Y=new ea(0,0,J,W),ca=new ea(0,0,J,W),ja=!1,ha=new ld,Ga=new Gf,od=!1,la=!1,pd=new M,Nb=new p;try{w={alpha:w,depth:B,stencil:G,antialias:K,premultipliedAlpha:P,preserveDrawingBuffer:H,
+powerPreference:C};x.addEventListener("webglcontextlost",c,!1);x.addEventListener("webglcontextrestored",d,!1);var D=y||x.getContext("webgl",w)||x.getContext("experimental-webgl",w);if(null===D){if(null!==x.getContext("webgl"))throw Error("Error creating WebGL context with your selected attributes.");throw Error("Error creating WebGL context.");}void 0===D.getShaderPrecisionFormat&&(D.getShaderPrecisionFormat=function(){return{rangeMin:1,rangeMax:1,precision:1}})}catch(Gg){console.error("THREE.WebGLRenderer: "+
+Gg.message)}var ka,Ra,ba,da,X,fa,qa,ra,sa,oa,ua,pa,ma,wa,xa,za,Aa,ia;b();var na=new We(A);this.vr=na;var Ca=new Ue(A,sa,Ra.maxTextureSize);this.shadowMap=Ca;this.getContext=function(){return D};this.getContextAttributes=function(){return D.getContextAttributes()};this.forceContextLoss=function(){var a=ka.get("WEBGL_lose_context");a&&a.loseContext()};this.forceContextRestore=function(){var a=ka.get("WEBGL_lose_context");a&&a.restoreContext()};this.getPixelRatio=function(){return R};this.setPixelRatio=
+function(a){void 0!==a&&(R=a,this.setSize(J,W,!1))};this.getSize=function(){return{width:J,height:W}};this.setSize=function(a,b,c){var d=na.getDevice();d&&d.isPresenting?console.warn("THREE.WebGLRenderer: Can't change size while VR device is presenting."):(J=a,W=b,x.width=a*R,x.height=b*R,!1!==c&&(x.style.width=a+"px",x.style.height=b+"px"),this.setViewport(0,0,a,b))};this.getDrawingBufferSize=function(){return{width:J*R,height:W*R}};this.setDrawingBufferSize=function(a,b,c){J=a;W=b;R=c;x.width=a*
+c;x.height=b*c;this.setViewport(0,0,a,b)};this.getCurrentViewport=function(){return ob};this.setViewport=function(a,b,c,d){Y.set(a,W-b-d,c,d);ba.viewport(ob.copy(Y).multiplyScalar(R))};this.setScissor=function(a,b,c,d){ca.set(a,W-b-d,c,d);ba.scissor(V.copy(ca).multiplyScalar(R))};this.setScissorTest=function(a){ba.setScissorTest(ja=a)};this.getClearColor=function(){return ma.getClearColor()};this.setClearColor=function(){ma.setClearColor.apply(ma,arguments)};this.getClearAlpha=function(){return ma.getClearAlpha()};
+this.setClearAlpha=function(){ma.setClearAlpha.apply(ma,arguments)};this.clear=function(a,b,c){var d=0;if(void 0===a||a)d|=D.COLOR_BUFFER_BIT;if(void 0===b||b)d|=D.DEPTH_BUFFER_BIT;if(void 0===c||c)d|=D.STENCIL_BUFFER_BIT;D.clear(d)};this.clearColor=function(){this.clear(!0,!1,!1)};this.clearDepth=function(){this.clear(!1,!0,!1)};this.clearStencil=function(){this.clear(!1,!1,!0)};this.clearTarget=function(a,b,c,d){this.setRenderTarget(a);this.clear(b,c,d)};this.dispose=function(){x.removeEventListener("webglcontextlost",
+c,!1);x.removeEventListener("webglcontextrestored",d,!1);ua.dispose();pa.dispose();X.dispose();sa.dispose();na.dispose();va=!1};this.renderBufferImmediate=function(a,b,c){ba.initAttributes();var d=X.get(a);a.hasPositions&&!d.position&&(d.position=D.createBuffer());a.hasNormals&&!d.normal&&(d.normal=D.createBuffer());a.hasUvs&&!d.uv&&(d.uv=D.createBuffer());a.hasColors&&!d.color&&(d.color=D.createBuffer());b=b.getAttributes();a.hasPositions&&(D.bindBuffer(D.ARRAY_BUFFER,d.position),D.bufferData(D.ARRAY_BUFFER,
+a.positionArray,D.DYNAMIC_DRAW),ba.enableAttribute(b.position),D.vertexAttribPointer(b.position,3,D.FLOAT,!1,0,0));if(a.hasNormals){D.bindBuffer(D.ARRAY_BUFFER,d.normal);if(!c.isMeshPhongMaterial&&!c.isMeshStandardMaterial&&!c.isMeshNormalMaterial&&!0===c.flatShading)for(var e=0,f=3*a.count;e<f;e+=9){var g=a.normalArray,h=(g[e+0]+g[e+3]+g[e+6])/3,l=(g[e+1]+g[e+4]+g[e+7])/3,m=(g[e+2]+g[e+5]+g[e+8])/3;g[e+0]=h;g[e+1]=l;g[e+2]=m;g[e+3]=h;g[e+4]=l;g[e+5]=m;g[e+6]=h;g[e+7]=l;g[e+8]=m}D.bufferData(D.ARRAY_BUFFER,
+a.normalArray,D.DYNAMIC_DRAW);ba.enableAttribute(b.normal);D.vertexAttribPointer(b.normal,3,D.FLOAT,!1,0,0)}a.hasUvs&&c.map&&(D.bindBuffer(D.ARRAY_BUFFER,d.uv),D.bufferData(D.ARRAY_BUFFER,a.uvArray,D.DYNAMIC_DRAW),ba.enableAttribute(b.uv),D.vertexAttribPointer(b.uv,2,D.FLOAT,!1,0,0));a.hasColors&&0!==c.vertexColors&&(D.bindBuffer(D.ARRAY_BUFFER,d.color),D.bufferData(D.ARRAY_BUFFER,a.colorArray,D.DYNAMIC_DRAW),ba.enableAttribute(b.color),D.vertexAttribPointer(b.color,3,D.FLOAT,!1,0,0));ba.disableUnusedAttributes();
+D.drawArrays(D.TRIANGLES,0,a.count);a.count=0};this.renderBufferDirect=function(a,b,c,d,e,f){var g=e.isMesh&&0>e.matrixWorld.determinant();ba.setMaterial(d,g);var h=k(a,b,d,e);a=c.id+"_"+h.id+"_"+(!0===d.wireframe);var l=!1;a!==N&&(N=a,l=!0);e.morphTargetInfluences&&(wa.update(e,c,d,h),l=!0);g=c.index;var m=c.attributes.position;b=1;!0===d.wireframe&&(g=ra.getWireframeAttribute(c),b=2);a=xa;if(null!==g){var n=qa.get(g);a=za;a.setIndex(n)}if(l){l=void 0;if(c&&c.isInstancedBufferGeometry&&null===ka.get("ANGLE_instanced_arrays"))console.error("THREE.WebGLRenderer.setupVertexAttributes: using THREE.InstancedBufferGeometry but hardware does not support extension ANGLE_instanced_arrays.");
+else{void 0===l&&(l=0);ba.initAttributes();var u=c.attributes;h=h.getAttributes();var t=d.defaultAttributeValues;for(K in h){var r=h[K];if(0<=r){var q=u[K];if(void 0!==q){var p=q.normalized,v=q.itemSize,x=qa.get(q);if(void 0!==x){var w=x.buffer,B=x.type;x=x.bytesPerElement;if(q.isInterleavedBufferAttribute){var y=q.data,G=y.stride;q=q.offset;y&&y.isInstancedInterleavedBuffer?(ba.enableAttributeAndDivisor(r,y.meshPerAttribute),void 0===c.maxInstancedCount&&(c.maxInstancedCount=y.meshPerAttribute*y.count)):
+ba.enableAttribute(r);D.bindBuffer(D.ARRAY_BUFFER,w);D.vertexAttribPointer(r,v,B,p,G*x,(l*G+q)*x)}else q.isInstancedBufferAttribute?(ba.enableAttributeAndDivisor(r,q.meshPerAttribute),void 0===c.maxInstancedCount&&(c.maxInstancedCount=q.meshPerAttribute*q.count)):ba.enableAttribute(r),D.bindBuffer(D.ARRAY_BUFFER,w),D.vertexAttribPointer(r,v,B,p,0,l*v*x)}}else if(void 0!==t&&(p=t[K],void 0!==p))switch(p.length){case 2:D.vertexAttrib2fv(r,p);break;case 3:D.vertexAttrib3fv(r,p);break;case 4:D.vertexAttrib4fv(r,
+p);break;default:D.vertexAttrib1fv(r,p)}}}ba.disableUnusedAttributes()}null!==g&&D.bindBuffer(D.ELEMENT_ARRAY_BUFFER,n.buffer)}n=Infinity;null!==g?n=g.count:void 0!==m&&(n=m.count);g=c.drawRange.start*b;m=null!==f?f.start*b:0;var K=Math.max(g,m);f=Math.max(0,Math.min(n,g+c.drawRange.count*b,m+(null!==f?f.count*b:Infinity))-1-K+1);if(0!==f){if(e.isMesh)if(!0===d.wireframe)ba.setLineWidth(d.wireframeLinewidth*(null===F?R:1)),a.setMode(D.LINES);else switch(e.drawMode){case 0:a.setMode(D.TRIANGLES);break;
+case 1:a.setMode(D.TRIANGLE_STRIP);break;case 2:a.setMode(D.TRIANGLE_FAN)}else e.isLine?(d=d.linewidth,void 0===d&&(d=1),ba.setLineWidth(d*(null===F?R:1)),e.isLineSegments?a.setMode(D.LINES):e.isLineLoop?a.setMode(D.LINE_LOOP):a.setMode(D.LINE_STRIP)):e.isPoints&&a.setMode(D.POINTS);c&&c.isInstancedBufferGeometry?0<c.maxInstancedCount&&a.renderInstances(c,K,f):a.render(K,f)}};this.compile=function(a,b){Z=pa.get(a,b);Z.init();a.traverse(function(a){a.isLight&&(Z.pushLight(a),a.castShadow&&Z.pushShadow(a))});
+Z.setupLights(b);a.traverse(function(b){if(b.material)if(Array.isArray(b.material))for(var c=0;c<b.material.length;c++)t(b.material[c],a.fog,b);else t(b.material,a.fog,b)})};var va=!1,Ba=null;this.animate=function(a){Ba=a;null!==Ba?va||(h(),va=!0):va=!1};this.render=function(a,b,c,d){if(!b||!b.isCamera)console.error("THREE.WebGLRenderer.render: camera is not an instance of THREE.Camera.");else if(!E){N="";Q=-1;O=null;!0===a.autoUpdate&&a.updateMatrixWorld();null===b.parent&&b.updateMatrixWorld();
+na.enabled&&(b=na.getCamera(b));Z=pa.get(a,b);Z.init();a.onBeforeRender(A,a,b,c);pd.multiplyMatrices(b.projectionMatrix,b.matrixWorldInverse);ha.setFromMatrix(pd);la=this.localClippingEnabled;od=Ga.init(this.clippingPlanes,la,b);z=ua.get(a,b);z.init();m(a,b,A.sortObjects);!0===A.sortObjects&&z.sort();od&&Ga.beginShadows();Ca.render(Z.state.shadowsArray,a,b);Z.setupLights(b);od&&Ga.endShadows();this.info.autoReset&&this.info.reset();void 0===c&&(c=null);this.setRenderTarget(c);ma.render(z,a,b,d);d=
+z.opaque;var e=z.transparent;if(a.overrideMaterial){var f=a.overrideMaterial;d.length&&u(d,a,b,f);e.length&&u(e,a,b,f)}else d.length&&u(d,a,b),e.length&&u(e,a,b);Aa.render(Z.state.spritesArray,a,b);c&&fa.updateRenderTargetMipmap(c);ba.buffers.depth.setTest(!0);ba.buffers.depth.setMask(!0);ba.buffers.color.setMask(!0);ba.setPolygonOffset(!1);a.onAfterRender(A,a,b);na.enabled&&na.submitFrame();Z=z=null}};this.allocTextureUnit=function(){var a=aa;a>=Ra.maxTextures&&console.warn("THREE.WebGLRenderer: Trying to use "+
+a+" texture units while this GPU supports only "+Ra.maxTextures);aa+=1;return a};this.setTexture2D=function(){var a=!1;return function(b,c){b&&b.isWebGLRenderTarget&&(a||(console.warn("THREE.WebGLRenderer.setTexture2D: don't use render targets as textures. Use their .texture property instead."),a=!0),b=b.texture);fa.setTexture2D(b,c)}}();this.setTexture=function(){var a=!1;return function(b,c){a||(console.warn("THREE.WebGLRenderer: .setTexture is deprecated, use setTexture2D instead."),a=!0);fa.setTexture2D(b,
+c)}}();this.setTextureCube=function(){var a=!1;return function(b,c){b&&b.isWebGLRenderTargetCube&&(a||(console.warn("THREE.WebGLRenderer.setTextureCube: don't use cube render targets as textures. Use their .texture property instead."),a=!0),b=b.texture);b&&b.isCubeTexture||Array.isArray(b.image)&&6===b.image.length?fa.setTextureCube(b,c):fa.setTextureCubeDynamic(b,c)}}();this.getRenderTarget=function(){return F};this.setRenderTarget=function(a){(F=a)&&void 0===X.get(a).__webglFramebuffer&&fa.setupRenderTarget(a);
+var b=null,c=!1;a?(b=X.get(a).__webglFramebuffer,a.isWebGLRenderTargetCube&&(b=b[a.activeCubeFace],c=!0),ob.copy(a.viewport),V.copy(a.scissor),U=a.scissorTest):(ob.copy(Y).multiplyScalar(R),V.copy(ca).multiplyScalar(R),U=ja);I!==b&&(D.bindFramebuffer(D.FRAMEBUFFER,b),I=b);ba.viewport(ob);ba.scissor(V);ba.setScissorTest(U);c&&(c=X.get(a.texture),D.framebufferTexture2D(D.FRAMEBUFFER,D.COLOR_ATTACHMENT0,D.TEXTURE_CUBE_MAP_POSITIVE_X+a.activeCubeFace,c.__webglTexture,a.activeMipMapLevel))};this.readRenderTargetPixels=
+function(a,b,c,d,e,f){if(a&&a.isWebGLRenderTarget){var g=X.get(a).__webglFramebuffer;if(g){var h=!1;g!==I&&(D.bindFramebuffer(D.FRAMEBUFFER,g),h=!0);try{var l=a.texture,m=l.format,n=l.type;1023!==m&&ia.convert(m)!==D.getParameter(D.IMPLEMENTATION_COLOR_READ_FORMAT)?console.error("THREE.WebGLRenderer.readRenderTargetPixels: renderTarget is not in RGBA or implementation defined format."):1009===n||ia.convert(n)===D.getParameter(D.IMPLEMENTATION_COLOR_READ_TYPE)||1015===n&&(ka.get("OES_texture_float")||
+ka.get("WEBGL_color_buffer_float"))||1016===n&&ka.get("EXT_color_buffer_half_float")?D.checkFramebufferStatus(D.FRAMEBUFFER)===D.FRAMEBUFFER_COMPLETE?0<=b&&b<=a.width-d&&0<=c&&c<=a.height-e&&D.readPixels(b,c,d,e,ia.convert(m),ia.convert(n),f):console.error("THREE.WebGLRenderer.readRenderTargetPixels: readPixels from renderTarget failed. Framebuffer not complete."):console.error("THREE.WebGLRenderer.readRenderTargetPixels: renderTarget is not in UnsignedByteType or implementation defined type.")}finally{h&&
+D.bindFramebuffer(D.FRAMEBUFFER,I)}}}else console.error("THREE.WebGLRenderer.readRenderTargetPixels: renderTarget is not THREE.WebGLRenderTarget.")};this.copyFramebufferToTexture=function(a,b,c){var d=b.image.width,e=b.image.height,f=ia.convert(b.format);this.setTexture2D(b,0);D.copyTexImage2D(D.TEXTURE_2D,c||0,f,a.x,a.y,d,e,0)};this.copyTextureToTexture=function(a,b,c,d){var e=b.image.width,f=b.image.height,g=ia.convert(c.format),h=ia.convert(c.type);b=b.isDataTexture?b.image.data:b.image;this.setTexture2D(c,
+0);D.texSubImage2D(D.TEXTURE_2D,d||0,a.x,a.y,e,f,g,h,b)}}function Ob(a,b){this.name="";this.color=new I(a);this.density=void 0!==b?b:2.5E-4}function Pb(a,b,c){this.name="";this.color=new I(a);this.near=void 0!==b?b:1;this.far=void 0!==c?c:1E3}function rd(){A.call(this);this.type="Scene";this.overrideMaterial=this.fog=this.background=null;this.autoUpdate=!0}function eb(a){O.call(this);this.type="SpriteMaterial";this.color=new I(16777215);this.map=null;this.rotation=0;this.lights=this.fog=!1;this.setValues(a)}
+function Ac(a){A.call(this);this.type="Sprite";this.material=void 0!==a?a:new eb;this.center=new C(.5,.5)}function Bc(){A.call(this);this.type="LOD";Object.defineProperties(this,{levels:{enumerable:!0,value:[]}})}function Cc(a,b){a=a||[];this.bones=a.slice(0);this.boneMatrices=new Float32Array(16*this.bones.length);if(void 0===b)this.calculateInverses();else if(this.bones.length===b.length)this.boneInverses=b.slice(0);else for(console.warn("THREE.Skeleton boneInverses is the wrong length."),this.boneInverses=
+[],a=0,b=this.bones.length;a<b;a++)this.boneInverses.push(new M)}function sd(){A.call(this);this.type="Bone"}function td(a,b){oa.call(this,a,b);this.type="SkinnedMesh";this.bindMode="attached";this.bindMatrix=new M;this.bindMatrixInverse=new M;a=this.initBones();a=new Cc(a);this.bind(a,this.matrixWorld);this.normalizeSkinWeights()}function U(a){O.call(this);this.type="LineBasicMaterial";this.color=new I(16777215);this.linewidth=1;this.linejoin=this.linecap="round";this.lights=!1;this.setValues(a)}
+function ua(a,b,c){if(1===c)return console.warn("THREE.Line: parameter THREE.LinePieces no longer supported. Created THREE.LineSegments instead."),new aa(a,b);A.call(this);this.type="Line";this.geometry=void 0!==a?a:new F;this.material=void 0!==b?b:new U({color:16777215*Math.random()})}function aa(a,b){ua.call(this,a,b);this.type="LineSegments"}function ud(a,b){ua.call(this,a,b);this.type="LineLoop"}function Ha(a){O.call(this);this.type="PointsMaterial";this.color=new I(16777215);this.map=null;this.size=
+1;this.sizeAttenuation=!0;this.lights=!1;this.setValues(a)}function Qb(a,b){A.call(this);this.type="Points";this.geometry=void 0!==a?a:new F;this.material=void 0!==b?b:new Ha({color:16777215*Math.random()})}function vd(){A.call(this);this.type="Group"}function Yd(a,b,c,d,e,f,g,h,l){Y.call(this,a,b,c,d,e,f,g,h,l);this.generateMipmaps=!1}function Rb(a,b,c,d,e,f,g,h,l,m,u,n){Y.call(this,null,f,g,h,l,m,d,e,u,n);this.image={width:b,height:c};this.mipmaps=a;this.generateMipmaps=this.flipY=!1}function Dc(a,
+b,c,d,e,f,g,h,l,m){m=void 0!==m?m:1026;if(1026!==m&&1027!==m)throw Error("DepthTexture format must be either THREE.DepthFormat or THREE.DepthStencilFormat");void 0===c&&1026===m&&(c=1012);void 0===c&&1027===m&&(c=1020);Y.call(this,null,d,e,f,g,h,m,c,l);this.image={width:a,height:b};this.magFilter=void 0!==g?g:1003;this.minFilter=void 0!==h?h:1003;this.generateMipmaps=this.flipY=!1}function Sb(a){F.call(this);this.type="WireframeGeometry";var b=[],c,d,e,f=[0,0],g={},h=["a","b","c"];if(a&&a.isGeometry){var l=
+a.faces;var m=0;for(d=l.length;m<d;m++){var u=l[m];for(c=0;3>c;c++){var n=u[h[c]];var t=u[h[(c+1)%3]];f[0]=Math.min(n,t);f[1]=Math.max(n,t);n=f[0]+","+f[1];void 0===g[n]&&(g[n]={index1:f[0],index2:f[1]})}}for(n in g)m=g[n],h=a.vertices[m.index1],b.push(h.x,h.y,h.z),h=a.vertices[m.index2],b.push(h.x,h.y,h.z)}else if(a&&a.isBufferGeometry)if(h=new p,null!==a.index){l=a.attributes.position;u=a.index;var k=a.groups;0===k.length&&(k=[{start:0,count:u.count,materialIndex:0}]);a=0;for(e=k.length;a<e;++a)for(m=
+k[a],c=m.start,d=m.count,m=c,d=c+d;m<d;m+=3)for(c=0;3>c;c++)n=u.getX(m+c),t=u.getX(m+(c+1)%3),f[0]=Math.min(n,t),f[1]=Math.max(n,t),n=f[0]+","+f[1],void 0===g[n]&&(g[n]={index1:f[0],index2:f[1]});for(n in g)m=g[n],h.fromBufferAttribute(l,m.index1),b.push(h.x,h.y,h.z),h.fromBufferAttribute(l,m.index2),b.push(h.x,h.y,h.z)}else for(l=a.attributes.position,m=0,d=l.count/3;m<d;m++)for(c=0;3>c;c++)g=3*m+c,h.fromBufferAttribute(l,g),b.push(h.x,h.y,h.z),g=3*m+(c+1)%3,h.fromBufferAttribute(l,g),b.push(h.x,
+h.y,h.z);this.addAttribute("position",new z(b,3))}function Ec(a,b,c){N.call(this);this.type="ParametricGeometry";this.parameters={func:a,slices:b,stacks:c};this.fromBufferGeometry(new Tb(a,b,c));this.mergeVertices()}function Tb(a,b,c){F.call(this);this.type="ParametricBufferGeometry";this.parameters={func:a,slices:b,stacks:c};var d=[],e=[],f=[],g=[],h=new p,l=new p,m=new p,u=new p,n=new p,t,k,q=b+1;for(t=0;t<=c;t++){var v=t/c;for(k=0;k<=b;k++){var x=k/b;a(x,v,l);e.push(l.x,l.y,l.z);0<=x-1E-5?(a(x-
+1E-5,v,m),u.subVectors(l,m)):(a(x+1E-5,v,m),u.subVectors(m,l));0<=v-1E-5?(a(x,v-1E-5,m),n.subVectors(l,m)):(a(x,v+1E-5,m),n.subVectors(m,l));h.crossVectors(u,n).normalize();f.push(h.x,h.y,h.z);g.push(x,v)}}for(t=0;t<c;t++)for(k=0;k<b;k++)a=t*q+k+1,h=(t+1)*q+k+1,l=(t+1)*q+k,d.push(t*q+k,a,l),d.push(a,h,l);this.setIndex(d);this.addAttribute("position",new z(e,3));this.addAttribute("normal",new z(f,3));this.addAttribute("uv",new z(g,2))}function Fc(a,b,c,d){N.call(this);this.type="PolyhedronGeometry";
+this.parameters={vertices:a,indices:b,radius:c,detail:d};this.fromBufferGeometry(new pa(a,b,c,d));this.mergeVertices()}function pa(a,b,c,d){function e(a){h.push(a.x,a.y,a.z)}function f(b,c){b*=3;c.x=a[b+0];c.y=a[b+1];c.z=a[b+2]}function g(a,b,c,d){0>d&&1===a.x&&(l[b]=a.x-1);0===c.x&&0===c.z&&(l[b]=d/2/Math.PI+.5)}F.call(this);this.type="PolyhedronBufferGeometry";this.parameters={vertices:a,indices:b,radius:c,detail:d};c=c||1;d=d||0;var h=[],l=[];(function(a){for(var c=new p,d=new p,g=new p,h=0;h<
+b.length;h+=3){f(b[h+0],c);f(b[h+1],d);f(b[h+2],g);var l,m,k=c,y=d,w=g,B=Math.pow(2,a),G=[];for(m=0;m<=B;m++){G[m]=[];var K=k.clone().lerp(w,m/B),P=y.clone().lerp(w,m/B),H=B-m;for(l=0;l<=H;l++)G[m][l]=0===l&&m===B?K:K.clone().lerp(P,l/H)}for(m=0;m<B;m++)for(l=0;l<2*(B-m)-1;l++)k=Math.floor(l/2),0===l%2?(e(G[m][k+1]),e(G[m+1][k]),e(G[m][k])):(e(G[m][k+1]),e(G[m+1][k+1]),e(G[m+1][k]))}})(d);(function(a){for(var b=new p,c=0;c<h.length;c+=3)b.x=h[c+0],b.y=h[c+1],b.z=h[c+2],b.normalize().multiplyScalar(a),
+h[c+0]=b.x,h[c+1]=b.y,h[c+2]=b.z})(c);(function(){for(var a=new p,b=0;b<h.length;b+=3)a.x=h[b+0],a.y=h[b+1],a.z=h[b+2],l.push(Math.atan2(a.z,-a.x)/2/Math.PI+.5,1-(Math.atan2(-a.y,Math.sqrt(a.x*a.x+a.z*a.z))/Math.PI+.5));a=new p;b=new p;for(var c=new p,d=new p,e=new C,f=new C,k=new C,x=0,y=0;x<h.length;x+=9,y+=6){a.set(h[x+0],h[x+1],h[x+2]);b.set(h[x+3],h[x+4],h[x+5]);c.set(h[x+6],h[x+7],h[x+8]);e.set(l[y+0],l[y+1]);f.set(l[y+2],l[y+3]);k.set(l[y+4],l[y+5]);d.copy(a).add(b).add(c).divideScalar(3);
+var w=Math.atan2(d.z,-d.x);g(e,y+0,a,w);g(f,y+2,b,w);g(k,y+4,c,w)}for(a=0;a<l.length;a+=6)b=l[a+0],c=l[a+2],d=l[a+4],e=Math.min(b,c,d),.9<Math.max(b,c,d)&&.1>e&&(.2>b&&(l[a+0]+=1),.2>c&&(l[a+2]+=1),.2>d&&(l[a+4]+=1))})();this.addAttribute("position",new z(h,3));this.addAttribute("normal",new z(h.slice(),3));this.addAttribute("uv",new z(l,2));0===d?this.computeVertexNormals():this.normalizeNormals()}function Gc(a,b){N.call(this);this.type="TetrahedronGeometry";this.parameters={radius:a,detail:b};this.fromBufferGeometry(new Ub(a,
+b));this.mergeVertices()}function Ub(a,b){pa.call(this,[1,1,1,-1,-1,1,-1,1,-1,1,-1,-1],[2,1,0,0,3,2,1,3,0,2,3,1],a,b);this.type="TetrahedronBufferGeometry";this.parameters={radius:a,detail:b}}function Hc(a,b){N.call(this);this.type="OctahedronGeometry";this.parameters={radius:a,detail:b};this.fromBufferGeometry(new sb(a,b));this.mergeVertices()}function sb(a,b){pa.call(this,[1,0,0,-1,0,0,0,1,0,0,-1,0,0,0,1,0,0,-1],[0,2,4,0,4,3,0,3,5,0,5,2,1,2,5,1,5,3,1,3,4,1,4,2],a,b);this.type="OctahedronBufferGeometry";
+this.parameters={radius:a,detail:b}}function Ic(a,b){N.call(this);this.type="IcosahedronGeometry";this.parameters={radius:a,detail:b};this.fromBufferGeometry(new Vb(a,b));this.mergeVertices()}function Vb(a,b){var c=(1+Math.sqrt(5))/2;pa.call(this,[-1,c,0,1,c,0,-1,-c,0,1,-c,0,0,-1,c,0,1,c,0,-1,-c,0,1,-c,c,0,-1,c,0,1,-c,0,-1,-c,0,1],[0,11,5,0,5,1,0,1,7,0,7,10,0,10,11,1,5,9,5,11,4,11,10,2,10,7,6,7,1,8,3,9,4,3,4,2,3,2,6,3,6,8,3,8,9,4,9,5,2,4,11,6,2,10,8,6,7,9,8,1],a,b);this.type="IcosahedronBufferGeometry";
+this.parameters={radius:a,detail:b}}function Jc(a,b){N.call(this);this.type="DodecahedronGeometry";this.parameters={radius:a,detail:b};this.fromBufferGeometry(new Wb(a,b));this.mergeVertices()}function Wb(a,b){var c=(1+Math.sqrt(5))/2,d=1/c;pa.call(this,[-1,-1,-1,-1,-1,1,-1,1,-1,-1,1,1,1,-1,-1,1,-1,1,1,1,-1,1,1,1,0,-d,-c,0,-d,c,0,d,-c,0,d,c,-d,-c,0,-d,c,0,d,-c,0,d,c,0,-c,0,-d,c,0,-d,-c,0,d,c,0,d],[3,11,7,3,7,15,3,15,13,7,19,17,7,17,6,7,6,15,17,4,8,17,8,10,17,10,6,8,0,16,8,16,2,8,2,10,0,12,1,0,1,18,
+0,18,16,6,10,2,6,2,13,6,13,15,2,16,18,2,18,3,2,3,13,18,1,9,18,9,11,18,11,3,4,14,12,4,12,0,4,0,8,11,9,5,11,5,19,11,19,7,19,5,14,19,14,4,19,4,17,1,12,14,1,14,5,1,5,9],a,b);this.type="DodecahedronBufferGeometry";this.parameters={radius:a,detail:b}}function Kc(a,b,c,d,e,f){N.call(this);this.type="TubeGeometry";this.parameters={path:a,tubularSegments:b,radius:c,radialSegments:d,closed:e};void 0!==f&&console.warn("THREE.TubeGeometry: taper has been removed.");a=new Xb(a,b,c,d,e);this.tangents=a.tangents;
+this.normals=a.normals;this.binormals=a.binormals;this.fromBufferGeometry(a);this.mergeVertices()}function Xb(a,b,c,d,e){function f(e){u=a.getPointAt(e/b,u);var f=g.normals[e];e=g.binormals[e];for(k=0;k<=d;k++){var m=k/d*Math.PI*2,n=Math.sin(m);m=-Math.cos(m);l.x=m*f.x+n*e.x;l.y=m*f.y+n*e.y;l.z=m*f.z+n*e.z;l.normalize();q.push(l.x,l.y,l.z);h.x=u.x+c*l.x;h.y=u.y+c*l.y;h.z=u.z+c*l.z;r.push(h.x,h.y,h.z)}}F.call(this);this.type="TubeBufferGeometry";this.parameters={path:a,tubularSegments:b,radius:c,radialSegments:d,
+closed:e};b=b||64;c=c||1;d=d||8;e=e||!1;var g=a.computeFrenetFrames(b,e);this.tangents=g.tangents;this.normals=g.normals;this.binormals=g.binormals;var h=new p,l=new p,m=new C,u=new p,n,k,r=[],q=[],v=[],x=[];for(n=0;n<b;n++)f(n);f(!1===e?b:0);for(n=0;n<=b;n++)for(k=0;k<=d;k++)m.x=n/b,m.y=k/d,v.push(m.x,m.y);(function(){for(k=1;k<=b;k++)for(n=1;n<=d;n++){var a=(d+1)*k+(n-1),c=(d+1)*k+n,e=(d+1)*(k-1)+n;x.push((d+1)*(k-1)+(n-1),a,e);x.push(a,c,e)}})();this.setIndex(x);this.addAttribute("position",new z(r,
+3));this.addAttribute("normal",new z(q,3));this.addAttribute("uv",new z(v,2))}function Lc(a,b,c,d,e,f,g){N.call(this);this.type="TorusKnotGeometry";this.parameters={radius:a,tube:b,tubularSegments:c,radialSegments:d,p:e,q:f};void 0!==g&&console.warn("THREE.TorusKnotGeometry: heightScale has been deprecated. Use .scale( x, y, z ) instead.");this.fromBufferGeometry(new Yb(a,b,c,d,e,f));this.mergeVertices()}function Yb(a,b,c,d,e,f){function g(a,b,c,d,e){var f=Math.sin(a);b=c/b*a;c=Math.cos(b);e.x=d*
+(2+c)*.5*Math.cos(a);e.y=d*(2+c)*f*.5;e.z=d*Math.sin(b)*.5}F.call(this);this.type="TorusKnotBufferGeometry";this.parameters={radius:a,tube:b,tubularSegments:c,radialSegments:d,p:e,q:f};a=a||1;b=b||.4;c=Math.floor(c)||64;d=Math.floor(d)||8;e=e||2;f=f||3;var h=[],l=[],m=[],u=[],n,k=new p,r=new p,q=new p,v=new p,x=new p,y=new p,w=new p;for(n=0;n<=c;++n){var B=n/c*e*Math.PI*2;g(B,e,f,a,q);g(B+.01,e,f,a,v);y.subVectors(v,q);w.addVectors(v,q);x.crossVectors(y,w);w.crossVectors(x,y);x.normalize();w.normalize();
+for(B=0;B<=d;++B){var G=B/d*Math.PI*2,K=-b*Math.cos(G);G=b*Math.sin(G);k.x=q.x+(K*w.x+G*x.x);k.y=q.y+(K*w.y+G*x.y);k.z=q.z+(K*w.z+G*x.z);l.push(k.x,k.y,k.z);r.subVectors(k,q).normalize();m.push(r.x,r.y,r.z);u.push(n/c);u.push(B/d)}}for(B=1;B<=c;B++)for(n=1;n<=d;n++)a=(d+1)*B+(n-1),b=(d+1)*B+n,e=(d+1)*(B-1)+n,h.push((d+1)*(B-1)+(n-1),a,e),h.push(a,b,e);this.setIndex(h);this.addAttribute("position",new z(l,3));this.addAttribute("normal",new z(m,3));this.addAttribute("uv",new z(u,2))}function Mc(a,b,
+c,d,e){N.call(this);this.type="TorusGeometry";this.parameters={radius:a,tube:b,radialSegments:c,tubularSegments:d,arc:e};this.fromBufferGeometry(new Zb(a,b,c,d,e));this.mergeVertices()}function Zb(a,b,c,d,e){F.call(this);this.type="TorusBufferGeometry";this.parameters={radius:a,tube:b,radialSegments:c,tubularSegments:d,arc:e};a=a||1;b=b||.4;c=Math.floor(c)||8;d=Math.floor(d)||6;e=e||2*Math.PI;var f=[],g=[],h=[],l=[],m=new p,u=new p,n=new p,k,r;for(k=0;k<=c;k++)for(r=0;r<=d;r++){var q=r/d*e,v=k/c*
+Math.PI*2;u.x=(a+b*Math.cos(v))*Math.cos(q);u.y=(a+b*Math.cos(v))*Math.sin(q);u.z=b*Math.sin(v);g.push(u.x,u.y,u.z);m.x=a*Math.cos(q);m.y=a*Math.sin(q);n.subVectors(u,m).normalize();h.push(n.x,n.y,n.z);l.push(r/d);l.push(k/c)}for(k=1;k<=c;k++)for(r=1;r<=d;r++)a=(d+1)*(k-1)+r-1,b=(d+1)*(k-1)+r,e=(d+1)*k+r,f.push((d+1)*k+r-1,a,e),f.push(a,b,e);this.setIndex(f);this.addAttribute("position",new z(g,3));this.addAttribute("normal",new z(h,3));this.addAttribute("uv",new z(l,2))}function Xe(a,b,c,d,e){for(var f,
+g=0,h=b,l=c-d;h<c;h+=d)g+=(a[l]-a[h])*(a[h+1]+a[l+1]),l=h;if(e===0<g)for(e=b;e<c;e+=d)f=Ye(e,a[e],a[e+1],f);else for(e=c-d;e>=b;e-=d)f=Ye(e,a[e],a[e+1],f);f&&tb(f,f.next)&&(Nc(f),f=f.next);return f}function Oc(a,b){if(!a)return a;b||(b=a);do{var c=!1;if(a.steiner||!tb(a,a.next)&&0!==ra(a.prev,a,a.next))a=a.next;else{Nc(a);a=b=a.prev;if(a===a.next)break;c=!0}}while(c||a!==b);return b}function Pc(a,b,c,d,e,f,g){if(a){if(!g&&f){var h=a,l=h;do null===l.z&&(l.z=Zd(l.x,l.y,d,e,f)),l.prevZ=l.prev,l=l.nextZ=
+l.next;while(l!==h);l.prevZ.nextZ=null;l.prevZ=null;h=l;var m,u,n,k,r=1;do{l=h;var q=h=null;for(u=0;l;){u++;var p=l;for(m=n=0;m<r&&(n++,p=p.nextZ,p);m++);for(k=r;0<n||0<k&&p;)0!==n&&(0===k||!p||l.z<=p.z)?(m=l,l=l.nextZ,n--):(m=p,p=p.nextZ,k--),q?q.nextZ=m:h=m,m.prevZ=q,q=m;l=p}q.nextZ=null;r*=2}while(1<u)}for(h=a;a.prev!==a.next;){l=a.prev;p=a.next;if(f)a:{q=a;k=d;var x=e,y=f;u=q.prev;n=q;r=q.next;if(0<=ra(u,n,r))q=!1;else{var w=u.x>n.x?u.x>r.x?u.x:r.x:n.x>r.x?n.x:r.x,B=u.y>n.y?u.y>r.y?u.y:r.y:n.y>
+r.y?n.y:r.y;m=Zd(u.x<n.x?u.x<r.x?u.x:r.x:n.x<r.x?n.x:r.x,u.y<n.y?u.y<r.y?u.y:r.y:n.y<r.y?n.y:r.y,k,x,y);k=Zd(w,B,k,x,y);for(x=q.nextZ;x&&x.z<=k;){if(x!==q.prev&&x!==q.next&&wd(u.x,u.y,n.x,n.y,r.x,r.y,x.x,x.y)&&0<=ra(x.prev,x,x.next)){q=!1;break a}x=x.nextZ}for(x=q.prevZ;x&&x.z>=m;){if(x!==q.prev&&x!==q.next&&wd(u.x,u.y,n.x,n.y,r.x,r.y,x.x,x.y)&&0<=ra(x.prev,x,x.next)){q=!1;break a}x=x.prevZ}q=!0}}else a:if(q=a,u=q.prev,n=q,r=q.next,0<=ra(u,n,r))q=!1;else{for(m=q.next.next;m!==q.prev;){if(wd(u.x,u.y,
+n.x,n.y,r.x,r.y,m.x,m.y)&&0<=ra(m.prev,m,m.next)){q=!1;break a}m=m.next}q=!0}if(q)b.push(l.i/c),b.push(a.i/c),b.push(p.i/c),Nc(a),h=a=p.next;else if(a=p,a===h){if(!g)Pc(Oc(a),b,c,d,e,f,1);else if(1===g){g=b;h=c;l=a;do p=l.prev,q=l.next.next,!tb(p,q)&&Ze(p,l,l.next,q)&&Qc(p,q)&&Qc(q,p)&&(g.push(p.i/h),g.push(l.i/h),g.push(q.i/h),Nc(l),Nc(l.next),l=a=q),l=l.next;while(l!==a);a=l;Pc(a,b,c,d,e,f,2)}else if(2===g)a:{g=a;do{for(h=g.next.next;h!==g.prev;){if(l=g.i!==h.i){l=g;p=h;if(q=l.next.i!==p.i&&l.prev.i!==
+p.i){b:{q=l;do{if(q.i!==l.i&&q.next.i!==l.i&&q.i!==p.i&&q.next.i!==p.i&&Ze(q,q.next,l,p)){q=!0;break b}q=q.next}while(q!==l);q=!1}q=!q}if(q=q&&Qc(l,p)&&Qc(p,l)){q=l;u=!1;n=(l.x+p.x)/2;p=(l.y+p.y)/2;do q.y>p!==q.next.y>p&&q.next.y!==q.y&&n<(q.next.x-q.x)*(p-q.y)/(q.next.y-q.y)+q.x&&(u=!u),q=q.next;while(q!==l);q=u}l=q}if(l){a=$e(g,h);g=Oc(g,g.next);a=Oc(a,a.next);Pc(g,b,c,d,e,f);Pc(a,b,c,d,e,f);break a}h=h.next}g=g.next}while(g!==a)}break}}}}function Hg(a,b){return a.x-b.x}function Ig(a,b){var c=b,
+d=a.x,e=a.y,f=-Infinity;do{if(e<=c.y&&e>=c.next.y&&c.next.y!==c.y){var g=c.x+(e-c.y)*(c.next.x-c.x)/(c.next.y-c.y);if(g<=d&&g>f){f=g;if(g===d){if(e===c.y)return c;if(e===c.next.y)return c.next}var h=c.x<c.next.x?c:c.next}}c=c.next}while(c!==b);if(!h)return null;if(d===f)return h.prev;b=h;g=h.x;var l=h.y,m=Infinity;for(c=h.next;c!==b;){if(d>=c.x&&c.x>=g&&d!==c.x&&wd(e<l?d:f,e,g,l,e<l?f:d,e,c.x,c.y)){var u=Math.abs(e-c.y)/(d-c.x);(u<m||u===m&&c.x>h.x)&&Qc(c,a)&&(h=c,m=u)}c=c.next}return h}function Zd(a,
+b,c,d,e){a=32767*(a-c)*e;b=32767*(b-d)*e;a=(a|a<<8)&16711935;a=(a|a<<4)&252645135;a=(a|a<<2)&858993459;b=(b|b<<8)&16711935;b=(b|b<<4)&252645135;b=(b|b<<2)&858993459;return(a|a<<1)&1431655765|((b|b<<1)&1431655765)<<1}function Jg(a){var b=a,c=a;do b.x<c.x&&(c=b),b=b.next;while(b!==a);return c}function wd(a,b,c,d,e,f,g,h){return 0<=(e-g)*(b-h)-(a-g)*(f-h)&&0<=(a-g)*(d-h)-(c-g)*(b-h)&&0<=(c-g)*(f-h)-(e-g)*(d-h)}function ra(a,b,c){return(b.y-a.y)*(c.x-b.x)-(b.x-a.x)*(c.y-b.y)}function tb(a,b){return a.x===
+b.x&&a.y===b.y}function Ze(a,b,c,d){return tb(a,b)&&tb(c,d)||tb(a,d)&&tb(c,b)?!0:0<ra(a,b,c)!==0<ra(a,b,d)&&0<ra(c,d,a)!==0<ra(c,d,b)}function Qc(a,b){return 0>ra(a.prev,a,a.next)?0<=ra(a,b,a.next)&&0<=ra(a,a.prev,b):0>ra(a,b,a.prev)||0>ra(a,a.next,b)}function $e(a,b){var c=new $d(a.i,a.x,a.y),d=new $d(b.i,b.x,b.y),e=a.next,f=b.prev;a.next=b;b.prev=a;c.next=e;e.prev=c;d.next=c;c.prev=d;f.next=d;d.prev=f;return d}function Ye(a,b,c,d){a=new $d(a,b,c);d?(a.next=d.next,a.prev=d,d.next.prev=a,d.next=a):
+(a.prev=a,a.next=a);return a}function Nc(a){a.next.prev=a.prev;a.prev.next=a.next;a.prevZ&&(a.prevZ.nextZ=a.nextZ);a.nextZ&&(a.nextZ.prevZ=a.prevZ)}function $d(a,b,c){this.i=a;this.x=b;this.y=c;this.nextZ=this.prevZ=this.z=this.next=this.prev=null;this.steiner=!1}function af(a){var b=a.length;2<b&&a[b-1].equals(a[0])&&a.pop()}function bf(a,b){for(var c=0;c<b.length;c++)a.push(b[c].x),a.push(b[c].y)}function fb(a,b){N.call(this);this.type="ExtrudeGeometry";this.parameters={shapes:a,options:b};this.fromBufferGeometry(new Ia(a,
+b));this.mergeVertices()}function Ia(a,b){"undefined"!==typeof a&&(F.call(this),this.type="ExtrudeBufferGeometry",a=Array.isArray(a)?a:[a],this.addShapeList(a,b),this.computeVertexNormals())}function Rc(a,b){N.call(this);this.type="TextGeometry";this.parameters={text:a,parameters:b};this.fromBufferGeometry(new $b(a,b));this.mergeVertices()}function $b(a,b){b=b||{};var c=b.font;if(!c||!c.isFont)return console.error("THREE.TextGeometry: font parameter is not an instance of THREE.Font."),new N;a=c.generateShapes(a,
+b.size,b.curveSegments);b.amount=void 0!==b.height?b.height:50;void 0===b.bevelThickness&&(b.bevelThickness=10);void 0===b.bevelSize&&(b.bevelSize=8);void 0===b.bevelEnabled&&(b.bevelEnabled=!1);Ia.call(this,a,b);this.type="TextBufferGeometry"}function Sc(a,b,c,d,e,f,g){N.call(this);this.type="SphereGeometry";this.parameters={radius:a,widthSegments:b,heightSegments:c,phiStart:d,phiLength:e,thetaStart:f,thetaLength:g};this.fromBufferGeometry(new ub(a,b,c,d,e,f,g));this.mergeVertices()}function ub(a,
+b,c,d,e,f,g){F.call(this);this.type="SphereBufferGeometry";this.parameters={radius:a,widthSegments:b,heightSegments:c,phiStart:d,phiLength:e,thetaStart:f,thetaLength:g};a=a||1;b=Math.max(3,Math.floor(b)||8);c=Math.max(2,Math.floor(c)||6);d=void 0!==d?d:0;e=void 0!==e?e:2*Math.PI;f=void 0!==f?f:0;g=void 0!==g?g:Math.PI;var h=f+g,l,m,u=0,n=[],k=new p,r=new p,q=[],v=[],x=[],y=[];for(m=0;m<=c;m++){var w=[],B=m/c;for(l=0;l<=b;l++){var G=l/b;k.x=-a*Math.cos(d+G*e)*Math.sin(f+B*g);k.y=a*Math.cos(f+B*g);
+k.z=a*Math.sin(d+G*e)*Math.sin(f+B*g);v.push(k.x,k.y,k.z);r.set(k.x,k.y,k.z).normalize();x.push(r.x,r.y,r.z);y.push(G,1-B);w.push(u++)}n.push(w)}for(m=0;m<c;m++)for(l=0;l<b;l++)a=n[m][l+1],d=n[m][l],e=n[m+1][l],g=n[m+1][l+1],(0!==m||0<f)&&q.push(a,d,g),(m!==c-1||h<Math.PI)&&q.push(d,e,g);this.setIndex(q);this.addAttribute("position",new z(v,3));this.addAttribute("normal",new z(x,3));this.addAttribute("uv",new z(y,2))}function Tc(a,b,c,d,e,f){N.call(this);this.type="RingGeometry";this.parameters={innerRadius:a,
+outerRadius:b,thetaSegments:c,phiSegments:d,thetaStart:e,thetaLength:f};this.fromBufferGeometry(new ac(a,b,c,d,e,f));this.mergeVertices()}function ac(a,b,c,d,e,f){F.call(this);this.type="RingBufferGeometry";this.parameters={innerRadius:a,outerRadius:b,thetaSegments:c,phiSegments:d,thetaStart:e,thetaLength:f};a=a||.5;b=b||1;e=void 0!==e?e:0;f=void 0!==f?f:2*Math.PI;c=void 0!==c?Math.max(3,c):8;d=void 0!==d?Math.max(1,d):1;var g=[],h=[],l=[],m=[],k=a,n=(b-a)/d,t=new p,r=new C,q,v;for(q=0;q<=d;q++){for(v=
+0;v<=c;v++)a=e+v/c*f,t.x=k*Math.cos(a),t.y=k*Math.sin(a),h.push(t.x,t.y,t.z),l.push(0,0,1),r.x=(t.x/b+1)/2,r.y=(t.y/b+1)/2,m.push(r.x,r.y);k+=n}for(q=0;q<d;q++)for(b=q*(c+1),v=0;v<c;v++)a=v+b,e=a+c+1,f=a+c+2,k=a+1,g.push(a,e,k),g.push(e,f,k);this.setIndex(g);this.addAttribute("position",new z(h,3));this.addAttribute("normal",new z(l,3));this.addAttribute("uv",new z(m,2))}function Uc(a,b,c,d){N.call(this);this.type="LatheGeometry";this.parameters={points:a,segments:b,phiStart:c,phiLength:d};this.fromBufferGeometry(new bc(a,
+b,c,d));this.mergeVertices()}function bc(a,b,c,d){F.call(this);this.type="LatheBufferGeometry";this.parameters={points:a,segments:b,phiStart:c,phiLength:d};b=Math.floor(b)||12;c=c||0;d=d||2*Math.PI;d=S.clamp(d,0,2*Math.PI);var e=[],f=[],g=[],h=1/b,l=new p,m=new C,k;for(k=0;k<=b;k++){var n=c+k*h*d;var t=Math.sin(n),r=Math.cos(n);for(n=0;n<=a.length-1;n++)l.x=a[n].x*t,l.y=a[n].y,l.z=a[n].x*r,f.push(l.x,l.y,l.z),m.x=k/b,m.y=n/(a.length-1),g.push(m.x,m.y)}for(k=0;k<b;k++)for(n=0;n<a.length-1;n++)c=n+
+k*a.length,h=c+a.length,l=c+a.length+1,m=c+1,e.push(c,h,m),e.push(h,l,m);this.setIndex(e);this.addAttribute("position",new z(f,3));this.addAttribute("uv",new z(g,2));this.computeVertexNormals();if(d===2*Math.PI)for(d=this.attributes.normal.array,e=new p,f=new p,g=new p,c=b*a.length*3,n=k=0;k<a.length;k++,n+=3)e.x=d[n+0],e.y=d[n+1],e.z=d[n+2],f.x=d[c+n+0],f.y=d[c+n+1],f.z=d[c+n+2],g.addVectors(e,f).normalize(),d[n+0]=d[c+n+0]=g.x,d[n+1]=d[c+n+1]=g.y,d[n+2]=d[c+n+2]=g.z}function vb(a,b){N.call(this);
+this.type="ShapeGeometry";"object"===typeof b&&(console.warn("THREE.ShapeGeometry: Options parameter has been removed."),b=b.curveSegments);this.parameters={shapes:a,curveSegments:b};this.fromBufferGeometry(new wb(a,b));this.mergeVertices()}function wb(a,b){function c(a){var c,h=e.length/3;a=a.extractPoints(b);var m=a.shape,k=a.holes;if(!1===Xa.isClockWise(m))for(m=m.reverse(),a=0,c=k.length;a<c;a++){var u=k[a];!0===Xa.isClockWise(u)&&(k[a]=u.reverse())}var p=Xa.triangulateShape(m,k);a=0;for(c=k.length;a<
+c;a++)u=k[a],m=m.concat(u);a=0;for(c=m.length;a<c;a++)u=m[a],e.push(u.x,u.y,0),f.push(0,0,1),g.push(u.x,u.y);a=0;for(c=p.length;a<c;a++)m=p[a],d.push(m[0]+h,m[1]+h,m[2]+h),l+=3}F.call(this);this.type="ShapeBufferGeometry";this.parameters={shapes:a,curveSegments:b};b=b||12;var d=[],e=[],f=[],g=[],h=0,l=0;if(!1===Array.isArray(a))c(a);else for(var m=0;m<a.length;m++)c(a[m]),this.addGroup(h,l,m),h+=l,l=0;this.setIndex(d);this.addAttribute("position",new z(e,3));this.addAttribute("normal",new z(f,3));
+this.addAttribute("uv",new z(g,2))}function cf(a,b){b.shapes=[];if(Array.isArray(a))for(var c=0,d=a.length;c<d;c++)b.shapes.push(a[c].uuid);else b.shapes.push(a.uuid);return b}function cc(a,b){F.call(this);this.type="EdgesGeometry";this.parameters={thresholdAngle:b};var c=[];b=Math.cos(S.DEG2RAD*(void 0!==b?b:1));var d=[0,0],e={},f=["a","b","c"];if(a.isBufferGeometry){var g=new N;g.fromBufferGeometry(a)}else g=a.clone();g.mergeVertices();g.computeFaceNormals();a=g.vertices;g=g.faces;for(var h=0,l=
+g.length;h<l;h++)for(var m=g[h],k=0;3>k;k++){var n=m[f[k]];var t=m[f[(k+1)%3]];d[0]=Math.min(n,t);d[1]=Math.max(n,t);n=d[0]+","+d[1];void 0===e[n]?e[n]={index1:d[0],index2:d[1],face1:h,face2:void 0}:e[n].face2=h}for(n in e)if(d=e[n],void 0===d.face2||g[d.face1].normal.dot(g[d.face2].normal)<=b)f=a[d.index1],c.push(f.x,f.y,f.z),f=a[d.index2],c.push(f.x,f.y,f.z);this.addAttribute("position",new z(c,3))}function xb(a,b,c,d,e,f,g,h){N.call(this);this.type="CylinderGeometry";this.parameters={radiusTop:a,
+radiusBottom:b,height:c,radialSegments:d,heightSegments:e,openEnded:f,thetaStart:g,thetaLength:h};this.fromBufferGeometry(new Ya(a,b,c,d,e,f,g,h));this.mergeVertices()}function Ya(a,b,c,d,e,f,g,h){function l(c){var e,f=new C,l=new p,u=0,v=!0===c?a:b,w=!0===c?1:-1;var A=q;for(e=1;e<=d;e++)n.push(0,x*w,0),t.push(0,w,0),r.push(.5,.5),q++;var z=q;for(e=0;e<=d;e++){var E=e/d*h+g,F=Math.cos(E);E=Math.sin(E);l.x=v*E;l.y=x*w;l.z=v*F;n.push(l.x,l.y,l.z);t.push(0,w,0);f.x=.5*F+.5;f.y=.5*E*w+.5;r.push(f.x,f.y);
+q++}for(e=0;e<d;e++)f=A+e,l=z+e,!0===c?k.push(l,l+1,f):k.push(l+1,l,f),u+=3;m.addGroup(y,u,!0===c?1:2);y+=u}F.call(this);this.type="CylinderBufferGeometry";this.parameters={radiusTop:a,radiusBottom:b,height:c,radialSegments:d,heightSegments:e,openEnded:f,thetaStart:g,thetaLength:h};var m=this;a=void 0!==a?a:1;b=void 0!==b?b:1;c=c||1;d=Math.floor(d)||8;e=Math.floor(e)||1;f=void 0!==f?f:!1;g=void 0!==g?g:0;h=void 0!==h?h:2*Math.PI;var k=[],n=[],t=[],r=[],q=0,v=[],x=c/2,y=0;(function(){var f,l,u=new p,
+K=new p,P=0,H=(b-a)/c;for(l=0;l<=e;l++){var C=[],A=l/e,z=A*(b-a)+a;for(f=0;f<=d;f++){var E=f/d,F=E*h+g,I=Math.sin(F);F=Math.cos(F);K.x=z*I;K.y=-A*c+x;K.z=z*F;n.push(K.x,K.y,K.z);u.set(I,H,F).normalize();t.push(u.x,u.y,u.z);r.push(E,1-A);C.push(q++)}v.push(C)}for(f=0;f<d;f++)for(l=0;l<e;l++)u=v[l+1][f],K=v[l+1][f+1],H=v[l][f+1],k.push(v[l][f],u,H),k.push(u,K,H),P+=6;m.addGroup(y,P,0);y+=P})();!1===f&&(0<a&&l(!0),0<b&&l(!1));this.setIndex(k);this.addAttribute("position",new z(n,3));this.addAttribute("normal",
+new z(t,3));this.addAttribute("uv",new z(r,2))}function Vc(a,b,c,d,e,f,g){xb.call(this,0,a,b,c,d,e,f,g);this.type="ConeGeometry";this.parameters={radius:a,height:b,radialSegments:c,heightSegments:d,openEnded:e,thetaStart:f,thetaLength:g}}function Wc(a,b,c,d,e,f,g){Ya.call(this,0,a,b,c,d,e,f,g);this.type="ConeBufferGeometry";this.parameters={radius:a,height:b,radialSegments:c,heightSegments:d,openEnded:e,thetaStart:f,thetaLength:g}}function Xc(a,b,c,d){N.call(this);this.type="CircleGeometry";this.parameters=
+{radius:a,segments:b,thetaStart:c,thetaLength:d};this.fromBufferGeometry(new dc(a,b,c,d));this.mergeVertices()}function dc(a,b,c,d){F.call(this);this.type="CircleBufferGeometry";this.parameters={radius:a,segments:b,thetaStart:c,thetaLength:d};a=a||1;b=void 0!==b?Math.max(3,b):8;c=void 0!==c?c:0;d=void 0!==d?d:2*Math.PI;var e=[],f=[],g=[],h=[],l,m=new p,k=new C;f.push(0,0,0);g.push(0,0,1);h.push(.5,.5);var n=0;for(l=3;n<=b;n++,l+=3){var t=c+n/b*d;m.x=a*Math.cos(t);m.y=a*Math.sin(t);f.push(m.x,m.y,
+m.z);g.push(0,0,1);k.x=(f[l]/a+1)/2;k.y=(f[l+1]/a+1)/2;h.push(k.x,k.y)}for(l=1;l<=b;l++)e.push(l,l+1,0);this.setIndex(e);this.addAttribute("position",new z(f,3));this.addAttribute("normal",new z(g,3));this.addAttribute("uv",new z(h,2))}function yb(a){O.call(this);this.type="ShadowMaterial";this.color=new I(0);this.transparent=!0;this.setValues(a)}function ec(a){va.call(this,a);this.type="RawShaderMaterial"}function Sa(a){O.call(this);this.defines={STANDARD:""};this.type="MeshStandardMaterial";this.color=
+new I(16777215);this.metalness=this.roughness=.5;this.lightMap=this.map=null;this.lightMapIntensity=1;this.aoMap=null;this.aoMapIntensity=1;this.emissive=new I(0);this.emissiveIntensity=1;this.bumpMap=this.emissiveMap=null;this.bumpScale=1;this.normalMap=null;this.normalScale=new C(1,1);this.displacementMap=null;this.displacementScale=1;this.displacementBias=0;this.envMap=this.alphaMap=this.metalnessMap=this.roughnessMap=null;this.envMapIntensity=1;this.refractionRatio=.98;this.wireframe=!1;this.wireframeLinewidth=
+1;this.wireframeLinejoin=this.wireframeLinecap="round";this.morphNormals=this.morphTargets=this.skinning=!1;this.setValues(a)}function zb(a){Sa.call(this);this.defines={PHYSICAL:""};this.type="MeshPhysicalMaterial";this.reflectivity=.5;this.clearCoatRoughness=this.clearCoat=0;this.setValues(a)}function Ja(a){O.call(this);this.type="MeshPhongMaterial";this.color=new I(16777215);this.specular=new I(1118481);this.shininess=30;this.lightMap=this.map=null;this.lightMapIntensity=1;this.aoMap=null;this.aoMapIntensity=
+1;this.emissive=new I(0);this.emissiveIntensity=1;this.bumpMap=this.emissiveMap=null;this.bumpScale=1;this.normalMap=null;this.normalScale=new C(1,1);this.displacementMap=null;this.displacementScale=1;this.displacementBias=0;this.envMap=this.alphaMap=this.specularMap=null;this.combine=0;this.reflectivity=1;this.refractionRatio=.98;this.wireframe=!1;this.wireframeLinewidth=1;this.wireframeLinejoin=this.wireframeLinecap="round";this.morphNormals=this.morphTargets=this.skinning=!1;this.setValues(a)}
+function Ab(a){Ja.call(this);this.defines={TOON:""};this.type="MeshToonMaterial";this.gradientMap=null;this.setValues(a)}function Bb(a){O.call(this);this.type="MeshNormalMaterial";this.bumpMap=null;this.bumpScale=1;this.normalMap=null;this.normalScale=new C(1,1);this.displacementMap=null;this.displacementScale=1;this.displacementBias=0;this.wireframe=!1;this.wireframeLinewidth=1;this.morphNormals=this.morphTargets=this.skinning=this.lights=this.fog=!1;this.setValues(a)}function Cb(a){O.call(this);
+this.type="MeshLambertMaterial";this.color=new I(16777215);this.lightMap=this.map=null;this.lightMapIntensity=1;this.aoMap=null;this.aoMapIntensity=1;this.emissive=new I(0);this.emissiveIntensity=1;this.envMap=this.alphaMap=this.specularMap=this.emissiveMap=null;this.combine=0;this.reflectivity=1;this.refractionRatio=.98;this.wireframe=!1;this.wireframeLinewidth=1;this.wireframeLinejoin=this.wireframeLinecap="round";this.morphNormals=this.morphTargets=this.skinning=!1;this.setValues(a)}function Db(a){U.call(this);
+this.type="LineDashedMaterial";this.scale=1;this.dashSize=3;this.gapSize=1;this.setValues(a)}function ae(a,b,c){var d=this,e=!1,f=0,g=0,h=void 0;this.onStart=void 0;this.onLoad=a;this.onProgress=b;this.onError=c;this.itemStart=function(a){g++;if(!1===e&&void 0!==d.onStart)d.onStart(a,f,g);e=!0};this.itemEnd=function(a){f++;if(void 0!==d.onProgress)d.onProgress(a,f,g);if(f===g&&(e=!1,void 0!==d.onLoad))d.onLoad()};this.itemError=function(a){if(void 0!==d.onError)d.onError(a)};this.resolveURL=function(a){return h?
+h(a):a};this.setURLModifier=function(a){h=a;return this}}function Ka(a){this.manager=void 0!==a?a:ma}function df(a){this.manager=void 0!==a?a:ma;this._parser=null}function be(a){this.manager=void 0!==a?a:ma;this._parser=null}function Yc(a){this.manager=void 0!==a?a:ma}function ce(a){this.manager=void 0!==a?a:ma}function xd(a){this.manager=void 0!==a?a:ma}function E(){this.type="Curve";this.arcLengthDivisions=200}function ia(a,b,c,d,e,f,g,h){E.call(this);this.type="EllipseCurve";this.aX=a||0;this.aY=
+b||0;this.xRadius=c||1;this.yRadius=d||1;this.aStartAngle=e||0;this.aEndAngle=f||2*Math.PI;this.aClockwise=g||!1;this.aRotation=h||0}function fc(a,b,c,d,e,f){ia.call(this,a,b,c,c,d,e,f);this.type="ArcCurve"}function de(){var a=0,b=0,c=0,d=0;return{initCatmullRom:function(e,f,g,h,l){e=l*(g-e);h=l*(h-f);a=f;b=e;c=-3*f+3*g-2*e-h;d=2*f-2*g+e+h},initNonuniformCatmullRom:function(e,f,g,h,l,m,k){e=((f-e)/l-(g-e)/(l+m)+(g-f)/m)*m;h=((g-f)/m-(h-f)/(m+k)+(h-g)/k)*m;a=f;b=e;c=-3*f+3*g-2*e-h;d=2*f-2*g+e+h},calc:function(e){var f=
+e*e;return a+b*e+c*f+d*f*e}}}function X(a,b,c,d){E.call(this);this.type="CatmullRomCurve3";this.points=a||[];this.closed=b||!1;this.curveType=c||"centripetal";this.tension=d||.5}function ef(a,b,c,d,e){b=.5*(d-b);e=.5*(e-c);var f=a*a;return(2*c-2*d+b+e)*a*f+(-3*c+3*d-2*b-e)*f+b*a+c}function Zc(a,b,c,d){var e=1-a;return e*e*b+2*(1-a)*a*c+a*a*d}function $c(a,b,c,d,e){var f=1-a,g=1-a;return f*f*f*b+3*g*g*a*c+3*(1-a)*a*a*d+a*a*a*e}function La(a,b,c,d){E.call(this);this.type="CubicBezierCurve";this.v0=
+a||new C;this.v1=b||new C;this.v2=c||new C;this.v3=d||new C}function Ta(a,b,c,d){E.call(this);this.type="CubicBezierCurve3";this.v0=a||new p;this.v1=b||new p;this.v2=c||new p;this.v3=d||new p}function wa(a,b){E.call(this);this.type="LineCurve";this.v1=a||new C;this.v2=b||new C}function Ma(a,b){E.call(this);this.type="LineCurve3";this.v1=a||new p;this.v2=b||new p}function Na(a,b,c){E.call(this);this.type="QuadraticBezierCurve";this.v0=a||new C;this.v1=b||new C;this.v2=c||new C}function Ua(a,b,c){E.call(this);
+this.type="QuadraticBezierCurve3";this.v0=a||new p;this.v1=b||new p;this.v2=c||new p}function Oa(a){E.call(this);this.type="SplineCurve";this.points=a||[]}function Za(){E.call(this);this.type="CurvePath";this.curves=[];this.autoClose=!1}function Pa(a){Za.call(this);this.type="Path";this.currentPoint=new C;a&&this.setFromPoints(a)}function gb(a){Pa.call(this,a);this.uuid=S.generateUUID();this.type="Shape";this.holes=[]}function ca(a,b){A.call(this);this.type="Light";this.color=new I(a);this.intensity=
+void 0!==b?b:1;this.receiveShadow=void 0}function yd(a,b,c){ca.call(this,a,c);this.type="HemisphereLight";this.castShadow=void 0;this.position.copy(A.DefaultUp);this.updateMatrix();this.groundColor=new I(b)}function Eb(a){this.camera=a;this.bias=0;this.radius=1;this.mapSize=new C(512,512);this.map=null;this.matrix=new M}function zd(){Eb.call(this,new la(50,1,.5,500))}function Ad(a,b,c,d,e,f){ca.call(this,a,b);this.type="SpotLight";this.position.copy(A.DefaultUp);this.updateMatrix();this.target=new A;
+Object.defineProperty(this,"power",{get:function(){return this.intensity*Math.PI},set:function(a){this.intensity=a/Math.PI}});this.distance=void 0!==c?c:0;this.angle=void 0!==d?d:Math.PI/3;this.penumbra=void 0!==e?e:0;this.decay=void 0!==f?f:1;this.shadow=new zd}function Bd(a,b,c,d){ca.call(this,a,b);this.type="PointLight";Object.defineProperty(this,"power",{get:function(){return 4*this.intensity*Math.PI},set:function(a){this.intensity=a/(4*Math.PI)}});this.distance=void 0!==c?c:0;this.decay=void 0!==
+d?d:1;this.shadow=new Eb(new la(90,1,.5,500))}function Cd(){Eb.call(this,new Jb(-5,5,5,-5,.5,500))}function Dd(a,b){ca.call(this,a,b);this.type="DirectionalLight";this.position.copy(A.DefaultUp);this.updateMatrix();this.target=new A;this.shadow=new Cd}function Ed(a,b){ca.call(this,a,b);this.type="AmbientLight";this.castShadow=void 0}function Fd(a,b,c,d){ca.call(this,a,b);this.type="RectAreaLight";this.width=void 0!==c?c:10;this.height=void 0!==d?d:10}function Gd(a,b,c,d){da.call(this,a,b,c,d)}function Hd(a,
+b,c){da.call(this,a,b,c)}function na(a,b,c,d){this.parameterPositions=a;this._cachedIndex=0;this.resultBuffer=void 0!==d?d:new b.constructor(c);this.sampleValues=b;this.valueSize=c}function Id(a,b,c,d){na.call(this,a,b,c,d)}function ad(a,b,c,d){da.call(this,a,b,c,d)}function Jd(a,b,c,d){da.call(this,a,b,c,d)}function gc(a,b,c,d){da.call(this,a,b,c,d)}function Kd(a,b,c,d){na.call(this,a,b,c,d);this._offsetNext=this._weightNext=this._offsetPrev=this._weightPrev=-0}function bd(a,b,c,d){na.call(this,
+a,b,c,d)}function Ld(a,b,c,d){na.call(this,a,b,c,d)}function da(a,b,c,d){if(void 0===a)throw Error("THREE.KeyframeTrack: track name is undefined");if(void 0===b||0===b.length)throw Error("THREE.KeyframeTrack: no keyframes in track named "+a);this.name=a;this.times=fa.convertArray(b,this.TimeBufferType);this.values=fa.convertArray(c,this.ValueBufferType);this.setInterpolation(d||this.DefaultInterpolation);this.validate();this.optimize()}function hc(a,b,c,d){da.call(this,a,b,c,d)}function Ba(a,b,c){this.name=
+a;this.tracks=c;this.duration=void 0!==b?b:-1;this.uuid=S.generateUUID();0>this.duration&&this.resetDuration();this.optimize()}function Md(a){this.manager=void 0!==a?a:ma;this.textures={}}function ee(a){this.manager=void 0!==a?a:ma}function ic(){}function fe(a){"boolean"===typeof a&&(console.warn("THREE.JSONLoader: showStatus parameter has been removed from constructor."),a=void 0);this.manager=void 0!==a?a:ma;this.withCredentials=!1}function ff(a){this.manager=void 0!==a?a:ma;this.texturePath=""}
+function ge(a){"undefined"===typeof createImageBitmap&&console.warn("THREE.ImageBitmapLoader: createImageBitmap() not supported.");"undefined"===typeof fetch&&console.warn("THREE.ImageBitmapLoader: fetch() not supported.");this.manager=void 0!==a?a:ma;this.options=void 0}function he(){this.type="ShapePath";this.subPaths=[];this.currentPath=null}function ie(a){this.type="Font";this.data=a}function gf(a){this.manager=void 0!==a?a:ma}function je(a){this.manager=void 0!==a?a:ma}function hf(){this.type=
+"StereoCamera";this.aspect=1;this.eyeSep=.064;this.cameraL=new la;this.cameraL.layers.enable(1);this.cameraL.matrixAutoUpdate=!1;this.cameraR=new la;this.cameraR.layers.enable(2);this.cameraR.matrixAutoUpdate=!1}function cd(a,b,c){A.call(this);this.type="CubeCamera";var d=new la(90,1,a,b);d.up.set(0,-1,0);d.lookAt(new p(1,0,0));this.add(d);var e=new la(90,1,a,b);e.up.set(0,-1,0);e.lookAt(new p(-1,0,0));this.add(e);var f=new la(90,1,a,b);f.up.set(0,0,1);f.lookAt(new p(0,1,0));this.add(f);var g=new la(90,
+1,a,b);g.up.set(0,0,-1);g.lookAt(new p(0,-1,0));this.add(g);var h=new la(90,1,a,b);h.up.set(0,-1,0);h.lookAt(new p(0,0,1));this.add(h);var l=new la(90,1,a,b);l.up.set(0,-1,0);l.lookAt(new p(0,0,-1));this.add(l);this.renderTarget=new Ib(c,c,{format:1022,magFilter:1006,minFilter:1006});this.renderTarget.texture.name="CubeCamera";this.update=function(a,b){null===this.parent&&this.updateMatrixWorld();var c=this.renderTarget,m=c.texture.generateMipmaps;c.texture.generateMipmaps=!1;c.activeCubeFace=0;a.render(b,
+d,c);c.activeCubeFace=1;a.render(b,e,c);c.activeCubeFace=2;a.render(b,f,c);c.activeCubeFace=3;a.render(b,g,c);c.activeCubeFace=4;a.render(b,h,c);c.texture.generateMipmaps=m;c.activeCubeFace=5;a.render(b,l,c);a.setRenderTarget(null)};this.clear=function(a,b,c,d){for(var e=this.renderTarget,f=0;6>f;f++)e.activeCubeFace=f,a.setRenderTarget(e),a.clear(b,c,d);a.setRenderTarget(null)}}function ke(){A.call(this);this.type="AudioListener";this.context=le.getContext();this.gain=this.context.createGain();this.gain.connect(this.context.destination);
+this.filter=null}function jc(a){A.call(this);this.type="Audio";this.context=a.context;this.gain=this.context.createGain();this.gain.connect(a.getInput());this.autoplay=!1;this.buffer=null;this.loop=!1;this.offset=this.startTime=0;this.playbackRate=1;this.isPlaying=!1;this.hasPlaybackControl=!0;this.sourceType="empty";this.filters=[]}function me(a){jc.call(this,a);this.panner=this.context.createPanner();this.panner.connect(this.gain)}function ne(a,b){this.analyser=a.context.createAnalyser();this.analyser.fftSize=
+void 0!==b?b:2048;this.data=new Uint8Array(this.analyser.frequencyBinCount);a.getOutput().connect(this.analyser)}function oe(a,b,c){this.binding=a;this.valueSize=c;a=Float64Array;switch(b){case "quaternion":b=this._slerp;break;case "string":case "bool":a=Array;b=this._select;break;default:b=this._lerp}this.buffer=new a(4*c);this._mixBufferRegion=b;this.referenceCount=this.useCount=this.cumulativeWeight=0}function jf(a,b,c){c=c||qa.parseTrackName(b);this._targetGroup=a;this._bindings=a.subscribe_(b,
+c)}function qa(a,b,c){this.path=b;this.parsedPath=c||qa.parseTrackName(b);this.node=qa.findNode(a,this.parsedPath.nodeName)||a;this.rootNode=a}function kf(){this.uuid=S.generateUUID();this._objects=Array.prototype.slice.call(arguments);this.nCachedObjects_=0;var a={};this._indicesByUUID=a;for(var b=0,c=arguments.length;b!==c;++b)a[arguments[b].uuid]=b;this._paths=[];this._parsedPaths=[];this._bindings=[];this._bindingsIndicesByPath={};var d=this;this.stats={objects:{get total(){return d._objects.length},
+get inUse(){return this.total-d.nCachedObjects_}},get bindingsPerObject(){return d._bindings.length}}}function lf(a,b,c){this._mixer=a;this._clip=b;this._localRoot=c||null;a=b.tracks;b=a.length;c=Array(b);for(var d={endingStart:2400,endingEnd:2400},e=0;e!==b;++e){var f=a[e].createInterpolant(null);c[e]=f;f.settings=d}this._interpolantSettings=d;this._interpolants=c;this._propertyBindings=Array(b);this._weightInterpolant=this._timeScaleInterpolant=this._byClipCacheIndex=this._cacheIndex=null;this.loop=
+2201;this._loopCount=-1;this._startTime=null;this.time=0;this._effectiveWeight=this.weight=this._effectiveTimeScale=this.timeScale=1;this.repetitions=Infinity;this.paused=!1;this.enabled=!0;this.clampWhenFinished=!1;this.zeroSlopeAtEnd=this.zeroSlopeAtStart=!0}function pe(a){this._root=a;this._initMemoryManager();this.time=this._accuIndex=0;this.timeScale=1}function Nd(a,b){"string"===typeof a&&(console.warn("THREE.Uniform: Type parameter is no longer needed."),a=b);this.value=a}function qe(){F.call(this);
+this.type="InstancedBufferGeometry";this.maxInstancedCount=void 0}function re(a,b,c,d){this.data=a;this.itemSize=b;this.offset=c;this.normalized=!0===d}function kc(a,b){this.array=a;this.stride=b;this.count=void 0!==a?a.length/b:0;this.dynamic=!1;this.updateRange={offset:0,count:-1};this.version=0}function se(a,b,c){kc.call(this,a,b);this.meshPerAttribute=c||1}function te(a,b,c){T.call(this,a,b);this.meshPerAttribute=c||1}function mf(a,b,c,d){this.ray=new qb(a,b);this.near=c||0;this.far=d||Infinity;
+this.params={Mesh:{},Line:{},LOD:{},Points:{threshold:1},Sprite:{}};Object.defineProperties(this.params,{PointCloud:{get:function(){console.warn("THREE.Raycaster: params.PointCloud has been renamed to params.Points.");return this.Points}}})}function nf(a,b){return a.distance-b.distance}function ue(a,b,c,d){if(!1!==a.visible&&(a.raycast(b,c),!0===d)){a=a.children;d=0;for(var e=a.length;d<e;d++)ue(a[d],b,c,!0)}}function of(a){this.autoStart=void 0!==a?a:!0;this.elapsedTime=this.oldTime=this.startTime=
+0;this.running=!1}function pf(a,b,c){this.radius=void 0!==a?a:1;this.phi=void 0!==b?b:0;this.theta=void 0!==c?c:0;return this}function qf(a,b,c){this.radius=void 0!==a?a:1;this.theta=void 0!==b?b:0;this.y=void 0!==c?c:0;return this}function ve(a,b){this.min=void 0!==a?a:new C(Infinity,Infinity);this.max=void 0!==b?b:new C(-Infinity,-Infinity)}function dd(a){A.call(this);this.material=a;this.render=function(){}}function ed(a,b,c,d){this.object=a;this.size=void 0!==b?b:1;a=void 0!==c?c:16711680;d=void 0!==
+d?d:1;b=0;(c=this.object.geometry)&&c.isGeometry?b=3*c.faces.length:c&&c.isBufferGeometry&&(b=c.attributes.normal.count);c=new F;b=new z(6*b,3);c.addAttribute("position",b);aa.call(this,c,new U({color:a,linewidth:d}));this.matrixAutoUpdate=!1;this.update()}function lc(a,b){A.call(this);this.light=a;this.light.updateMatrixWorld();this.matrix=a.matrixWorld;this.matrixAutoUpdate=!1;this.color=b;a=new F;b=[0,0,0,0,0,1,0,0,0,1,0,1,0,0,0,-1,0,1,0,0,0,0,1,1,0,0,0,0,-1,1];for(var c=0,d=1;32>c;c++,d++){var e=
+c/32*Math.PI*2,f=d/32*Math.PI*2;b.push(Math.cos(e),Math.sin(e),1,Math.cos(f),Math.sin(f),1)}a.addAttribute("position",new z(b,3));b=new U({fog:!1});this.cone=new aa(a,b);this.add(this.cone);this.update()}function rf(a){var b=[];a&&a.isBone&&b.push(a);for(var c=0;c<a.children.length;c++)b.push.apply(b,rf(a.children[c]));return b}function mc(a){for(var b=rf(a),c=new F,d=[],e=[],f=new I(0,0,1),g=new I(0,1,0),h=0;h<b.length;h++){var l=b[h];l.parent&&l.parent.isBone&&(d.push(0,0,0),d.push(0,0,0),e.push(f.r,
+f.g,f.b),e.push(g.r,g.g,g.b))}c.addAttribute("position",new z(d,3));c.addAttribute("color",new z(e,3));d=new U({vertexColors:2,depthTest:!1,depthWrite:!1,transparent:!0});aa.call(this,c,d);this.root=a;this.bones=b;this.matrix=a.matrixWorld;this.matrixAutoUpdate=!1}function nc(a,b,c){this.light=a;this.light.updateMatrixWorld();this.color=c;a=new ub(b,4,2);b=new za({wireframe:!0,fog:!1});oa.call(this,a,b);this.matrix=this.light.matrixWorld;this.matrixAutoUpdate=!1;this.update()}function oc(a,b){A.call(this);
+this.light=a;this.light.updateMatrixWorld();this.matrix=a.matrixWorld;this.matrixAutoUpdate=!1;this.color=b;a=new U({fog:!1});b=new F;b.addAttribute("position",new T(new Float32Array(15),3));this.line=new ua(b,a);this.add(this.line);this.update()}function pc(a,b,c){A.call(this);this.light=a;this.light.updateMatrixWorld();this.matrix=a.matrixWorld;this.matrixAutoUpdate=!1;this.color=c;a=new sb(b);a.rotateY(.5*Math.PI);this.material=new za({wireframe:!0,fog:!1});void 0===this.color&&(this.material.vertexColors=
+2);b=a.getAttribute("position");b=new Float32Array(3*b.count);a.addAttribute("color",new T(b,3));this.add(new oa(a,this.material));this.update()}function fd(a,b,c,d){a=a||10;b=b||10;c=new I(void 0!==c?c:4473924);d=new I(void 0!==d?d:8947848);var e=b/2,f=a/b,g=a/2;a=[];for(var h=[],l=0,m=0,k=-g;l<=b;l++,k+=f){a.push(-g,0,k,g,0,k);a.push(k,0,-g,k,0,g);var n=l===e?c:d;n.toArray(h,m);m+=3;n.toArray(h,m);m+=3;n.toArray(h,m);m+=3;n.toArray(h,m);m+=3}b=new F;b.addAttribute("position",new z(a,3));b.addAttribute("color",
+new z(h,3));c=new U({vertexColors:2});aa.call(this,b,c)}function Od(a,b,c,d,e,f){a=a||10;b=b||16;c=c||8;d=d||64;e=new I(void 0!==e?e:4473924);f=new I(void 0!==f?f:8947848);var g=[],h=[],l;for(l=0;l<=b;l++){var m=l/b*2*Math.PI;var k=Math.sin(m)*a;m=Math.cos(m)*a;g.push(0,0,0);g.push(k,0,m);var n=l&1?e:f;h.push(n.r,n.g,n.b);h.push(n.r,n.g,n.b)}for(l=0;l<=c;l++){n=l&1?e:f;var t=a-a/c*l;for(b=0;b<d;b++)m=b/d*2*Math.PI,k=Math.sin(m)*t,m=Math.cos(m)*t,g.push(k,0,m),h.push(n.r,n.g,n.b),m=(b+1)/d*2*Math.PI,
+k=Math.sin(m)*t,m=Math.cos(m)*t,g.push(k,0,m),h.push(n.r,n.g,n.b)}a=new F;a.addAttribute("position",new z(g,3));a.addAttribute("color",new z(h,3));g=new U({vertexColors:2});aa.call(this,a,g)}function gd(a,b,c,d){this.object=a;this.size=void 0!==b?b:1;a=void 0!==c?c:16776960;d=void 0!==d?d:1;b=0;(c=this.object.geometry)&&c.isGeometry?b=c.faces.length:console.warn("THREE.FaceNormalsHelper: only THREE.Geometry is supported. Use THREE.VertexNormalsHelper, instead.");c=new F;b=new z(6*b,3);c.addAttribute("position",
+b);aa.call(this,c,new U({color:a,linewidth:d}));this.matrixAutoUpdate=!1;this.update()}function qc(a,b,c){A.call(this);this.light=a;this.light.updateMatrixWorld();this.matrix=a.matrixWorld;this.matrixAutoUpdate=!1;this.color=c;void 0===b&&(b=1);a=new F;a.addAttribute("position",new z([-b,b,0,b,b,0,b,-b,0,-b,-b,0,-b,b,0],3));b=new U({fog:!1});this.lightPlane=new ua(a,b);this.add(this.lightPlane);a=new F;a.addAttribute("position",new z([0,0,0,0,0,1],3));this.targetLine=new ua(a,b);this.add(this.targetLine);
+this.update()}function hd(a){function b(a,b,d){c(a,d);c(b,d)}function c(a,b){f.push(0,0,0);g.push(b.r,b.g,b.b);void 0===h[a]&&(h[a]=[]);h[a].push(f.length/3-1)}var d=new F,e=new U({color:16777215,vertexColors:1}),f=[],g=[],h={},l=new I(16755200),m=new I(16711680),k=new I(43775),n=new I(16777215),t=new I(3355443);b("n1","n2",l);b("n2","n4",l);b("n4","n3",l);b("n3","n1",l);b("f1","f2",l);b("f2","f4",l);b("f4","f3",l);b("f3","f1",l);b("n1","f1",l);b("n2","f2",l);b("n3","f3",l);b("n4","f4",l);b("p","n1",
+m);b("p","n2",m);b("p","n3",m);b("p","n4",m);b("u1","u2",k);b("u2","u3",k);b("u3","u1",k);b("c","t",n);b("p","c",t);b("cn1","cn2",t);b("cn3","cn4",t);b("cf1","cf2",t);b("cf3","cf4",t);d.addAttribute("position",new z(f,3));d.addAttribute("color",new z(g,3));aa.call(this,d,e);this.camera=a;this.camera.updateProjectionMatrix&&this.camera.updateProjectionMatrix();this.matrix=a.matrixWorld;this.matrixAutoUpdate=!1;this.pointMap=h;this.update()}function Fb(a,b){this.object=a;void 0===b&&(b=16776960);a=
+new Uint16Array([0,1,1,2,2,3,3,0,4,5,5,6,6,7,7,4,0,4,1,5,2,6,3,7]);var c=new Float32Array(24),d=new F;d.setIndex(new T(a,1));d.addAttribute("position",new T(c,3));aa.call(this,d,new U({color:b}));this.matrixAutoUpdate=!1;this.update()}function id(a,b){this.type="Box3Helper";this.box=a;a=void 0!==b?b:16776960;b=new Uint16Array([0,1,1,2,2,3,3,0,4,5,5,6,6,7,7,4,0,4,1,5,2,6,3,7]);var c=new F;c.setIndex(new T(b,1));c.addAttribute("position",new z([1,1,1,-1,1,1,-1,-1,1,1,-1,1,1,1,-1,-1,1,-1,-1,-1,-1,1,
+-1,-1],3));aa.call(this,c,new U({color:a}));this.geometry.computeBoundingSphere()}function jd(a,b,c){this.type="PlaneHelper";this.plane=a;this.size=void 0===b?1:b;a=void 0!==c?c:16776960;b=new F;b.addAttribute("position",new z([1,-1,1,-1,1,1,-1,-1,1,1,1,1,-1,1,1,-1,-1,1,1,-1,1,1,1,1,0,0,1,0,0,0],3));b.computeBoundingSphere();ua.call(this,b,new U({color:a}));b=new F;b.addAttribute("position",new z([1,1,1,-1,1,1,-1,-1,1,1,1,1,-1,-1,1,1,-1,1],3));b.computeBoundingSphere();this.add(new oa(b,new za({color:a,
+opacity:.2,transparent:!0,depthWrite:!1})))}function Gb(a,b,c,d,e,f){A.call(this);void 0===d&&(d=16776960);void 0===c&&(c=1);void 0===e&&(e=.2*c);void 0===f&&(f=.2*e);void 0===Pd&&(Pd=new F,Pd.addAttribute("position",new z([0,0,0,0,1,0],3)),we=new Ya(0,.5,1,5,1),we.translate(0,-.5,0));this.position.copy(b);this.line=new ua(Pd,new U({color:d}));this.line.matrixAutoUpdate=!1;this.add(this.line);this.cone=new oa(we,new za({color:d}));this.cone.matrixAutoUpdate=!1;this.add(this.cone);this.setDirection(a);
+this.setLength(c,e,f)}function kd(a){a=a||1;var b=[0,0,0,a,0,0,0,0,0,0,a,0,0,0,0,0,0,a];a=new F;a.addAttribute("position",new z(b,3));a.addAttribute("color",new z([1,0,0,1,.6,0,0,1,0,.6,1,0,0,0,1,0,.6,1],3));b=new U({vertexColors:2});aa.call(this,a,b)}function sf(a){console.warn("THREE.ClosedSplineCurve3 has been deprecated. Use THREE.CatmullRomCurve3 instead.");X.call(this,a);this.type="catmullrom";this.closed=!0}function tf(a){console.warn("THREE.SplineCurve3 has been deprecated. Use THREE.CatmullRomCurve3 instead.");
+X.call(this,a);this.type="catmullrom"}function xe(a){console.warn("THREE.Spline has been removed. Use THREE.CatmullRomCurve3 instead.");X.call(this,a);this.type="catmullrom"}void 0===Number.EPSILON&&(Number.EPSILON=Math.pow(2,-52));void 0===Number.isInteger&&(Number.isInteger=function(a){return"number"===typeof a&&isFinite(a)&&Math.floor(a)===a});void 0===Math.sign&&(Math.sign=function(a){return 0>a?-1:0<a?1:+a});!1==="name"in Function.prototype&&Object.defineProperty(Function.prototype,"name",{get:function(){return this.toString().match(/^\s*function\s*([^\(\s]*)/)[1]}});
+void 0===Object.assign&&function(){Object.assign=function(a){if(void 0===a||null===a)throw new TypeError("Cannot convert undefined or null to object");for(var b=Object(a),c=1;c<arguments.length;c++){var d=arguments[c];if(void 0!==d&&null!==d)for(var e in d)Object.prototype.hasOwnProperty.call(d,e)&&(b[e]=d[e])}return b}}();Object.assign(xa.prototype,{addEventListener:function(a,b){void 0===this._listeners&&(this._listeners={});var c=this._listeners;void 0===c[a]&&(c[a]=[]);-1===c[a].indexOf(b)&&c[a].push(b)},
+hasEventListener:function(a,b){if(void 0===this._listeners)return!1;var c=this._listeners;return void 0!==c[a]&&-1!==c[a].indexOf(b)},removeEventListener:function(a,b){void 0!==this._listeners&&(a=this._listeners[a],void 0!==a&&(b=a.indexOf(b),-1!==b&&a.splice(b,1)))},dispatchEvent:function(a){if(void 0!==this._listeners){var b=this._listeners[a.type];if(void 0!==b){a.target=this;b=b.slice(0);for(var c=0,d=b.length;c<d;c++)b[c].call(this,a)}}}});var S={DEG2RAD:Math.PI/180,RAD2DEG:180/Math.PI,generateUUID:function(){for(var a=
+[],b=0;256>b;b++)a[b]=(16>b?"0":"")+b.toString(16).toUpperCase();return function(){var b=4294967295*Math.random()|0,d=4294967295*Math.random()|0,e=4294967295*Math.random()|0,f=4294967295*Math.random()|0;return a[b&255]+a[b>>8&255]+a[b>>16&255]+a[b>>24&255]+"-"+a[d&255]+a[d>>8&255]+"-"+a[d>>16&15|64]+a[d>>24&255]+"-"+a[e&63|128]+a[e>>8&255]+"-"+a[e>>16&255]+a[e>>24&255]+a[f&255]+a[f>>8&255]+a[f>>16&255]+a[f>>24&255]}}(),clamp:function(a,b,c){return Math.max(b,Math.min(c,a))},euclideanModulo:function(a,
+b){return(a%b+b)%b},mapLinear:function(a,b,c,d,e){return d+(a-b)*(e-d)/(c-b)},lerp:function(a,b,c){return(1-c)*a+c*b},smoothstep:function(a,b,c){if(a<=b)return 0;if(a>=c)return 1;a=(a-b)/(c-b);return a*a*(3-2*a)},smootherstep:function(a,b,c){if(a<=b)return 0;if(a>=c)return 1;a=(a-b)/(c-b);return a*a*a*(a*(6*a-15)+10)},randInt:function(a,b){return a+Math.floor(Math.random()*(b-a+1))},randFloat:function(a,b){return a+Math.random()*(b-a)},randFloatSpread:function(a){return a*(.5-Math.random())},degToRad:function(a){return a*
+S.DEG2RAD},radToDeg:function(a){return a*S.RAD2DEG},isPowerOfTwo:function(a){return 0===(a&a-1)&&0!==a},ceilPowerOfTwo:function(a){return Math.pow(2,Math.ceil(Math.log(a)/Math.LN2))},floorPowerOfTwo:function(a){return Math.pow(2,Math.floor(Math.log(a)/Math.LN2))}};Object.defineProperties(C.prototype,{width:{get:function(){return this.x},set:function(a){this.x=a}},height:{get:function(){return this.y},set:function(a){this.y=a}}});Object.assign(C.prototype,{isVector2:!0,set:function(a,b){this.x=a;this.y=
+b;return this},setScalar:function(a){this.y=this.x=a;return this},setX:function(a){this.x=a;return this},setY:function(a){this.y=a;return this},setComponent:function(a,b){switch(a){case 0:this.x=b;break;case 1:this.y=b;break;default:throw Error("index is out of range: "+a);}return this},getComponent:function(a){switch(a){case 0:return this.x;case 1:return this.y;default:throw Error("index is out of range: "+a);}},clone:function(){return new this.constructor(this.x,this.y)},copy:function(a){this.x=
+a.x;this.y=a.y;return this},add:function(a,b){if(void 0!==b)return console.warn("THREE.Vector2: .add() now only accepts one argument. Use .addVectors( a, b ) instead."),this.addVectors(a,b);this.x+=a.x;this.y+=a.y;return this},addScalar:function(a){this.x+=a;this.y+=a;return this},addVectors:function(a,b){this.x=a.x+b.x;this.y=a.y+b.y;return this},addScaledVector:function(a,b){this.x+=a.x*b;this.y+=a.y*b;return this},sub:function(a,b){if(void 0!==b)return console.warn("THREE.Vector2: .sub() now only accepts one argument. Use .subVectors( a, b ) instead."),
+this.subVectors(a,b);this.x-=a.x;this.y-=a.y;return this},subScalar:function(a){this.x-=a;this.y-=a;return this},subVectors:function(a,b){this.x=a.x-b.x;this.y=a.y-b.y;return this},multiply:function(a){this.x*=a.x;this.y*=a.y;return this},multiplyScalar:function(a){this.x*=a;this.y*=a;return this},divide:function(a){this.x/=a.x;this.y/=a.y;return this},divideScalar:function(a){return this.multiplyScalar(1/a)},applyMatrix3:function(a){var b=this.x,c=this.y;a=a.elements;this.x=a[0]*b+a[3]*c+a[6];this.y=
+a[1]*b+a[4]*c+a[7];return this},min:function(a){this.x=Math.min(this.x,a.x);this.y=Math.min(this.y,a.y);return this},max:function(a){this.x=Math.max(this.x,a.x);this.y=Math.max(this.y,a.y);return this},clamp:function(a,b){this.x=Math.max(a.x,Math.min(b.x,this.x));this.y=Math.max(a.y,Math.min(b.y,this.y));return this},clampScalar:function(){var a=new C,b=new C;return function(c,d){a.set(c,c);b.set(d,d);return this.clamp(a,b)}}(),clampLength:function(a,b){var c=this.length();return this.divideScalar(c||
+1).multiplyScalar(Math.max(a,Math.min(b,c)))},floor:function(){this.x=Math.floor(this.x);this.y=Math.floor(this.y);return this},ceil:function(){this.x=Math.ceil(this.x);this.y=Math.ceil(this.y);return this},round:function(){this.x=Math.round(this.x);this.y=Math.round(this.y);return this},roundToZero:function(){this.x=0>this.x?Math.ceil(this.x):Math.floor(this.x);this.y=0>this.y?Math.ceil(this.y):Math.floor(this.y);return this},negate:function(){this.x=-this.x;this.y=-this.y;return this},dot:function(a){return this.x*
+a.x+this.y*a.y},lengthSq:function(){return this.x*this.x+this.y*this.y},length:function(){return Math.sqrt(this.x*this.x+this.y*this.y)},manhattanLength:function(){return Math.abs(this.x)+Math.abs(this.y)},normalize:function(){return this.divideScalar(this.length()||1)},angle:function(){var a=Math.atan2(this.y,this.x);0>a&&(a+=2*Math.PI);return a},distanceTo:function(a){return Math.sqrt(this.distanceToSquared(a))},distanceToSquared:function(a){var b=this.x-a.x;a=this.y-a.y;return b*b+a*a},manhattanDistanceTo:function(a){return Math.abs(this.x-
+a.x)+Math.abs(this.y-a.y)},setLength:function(a){return this.normalize().multiplyScalar(a)},lerp:function(a,b){this.x+=(a.x-this.x)*b;this.y+=(a.y-this.y)*b;return this},lerpVectors:function(a,b,c){return this.subVectors(b,a).multiplyScalar(c).add(a)},equals:function(a){return a.x===this.x&&a.y===this.y},fromArray:function(a,b){void 0===b&&(b=0);this.x=a[b];this.y=a[b+1];return this},toArray:function(a,b){void 0===a&&(a=[]);void 0===b&&(b=0);a[b]=this.x;a[b+1]=this.y;return a},fromBufferAttribute:function(a,
+b,c){void 0!==c&&console.warn("THREE.Vector2: offset has been removed from .fromBufferAttribute().");this.x=a.getX(b);this.y=a.getY(b);return this},rotateAround:function(a,b){var c=Math.cos(b);b=Math.sin(b);var d=this.x-a.x,e=this.y-a.y;this.x=d*c-e*b+a.x;this.y=d*b+e*c+a.y;return this}});Object.assign(M.prototype,{isMatrix4:!0,set:function(a,b,c,d,e,f,g,h,l,m,k,n,t,r,q,p){var u=this.elements;u[0]=a;u[4]=b;u[8]=c;u[12]=d;u[1]=e;u[5]=f;u[9]=g;u[13]=h;u[2]=l;u[6]=m;u[10]=k;u[14]=n;u[3]=t;u[7]=r;u[11]=
+q;u[15]=p;return this},identity:function(){this.set(1,0,0,0,0,1,0,0,0,0,1,0,0,0,0,1);return this},clone:function(){return(new M).fromArray(this.elements)},copy:function(a){var b=this.elements;a=a.elements;b[0]=a[0];b[1]=a[1];b[2]=a[2];b[3]=a[3];b[4]=a[4];b[5]=a[5];b[6]=a[6];b[7]=a[7];b[8]=a[8];b[9]=a[9];b[10]=a[10];b[11]=a[11];b[12]=a[12];b[13]=a[13];b[14]=a[14];b[15]=a[15];return this},copyPosition:function(a){var b=this.elements;a=a.elements;b[12]=a[12];b[13]=a[13];b[14]=a[14];return this},extractBasis:function(a,
+b,c){a.setFromMatrixColumn(this,0);b.setFromMatrixColumn(this,1);c.setFromMatrixColumn(this,2);return this},makeBasis:function(a,b,c){this.set(a.x,b.x,c.x,0,a.y,b.y,c.y,0,a.z,b.z,c.z,0,0,0,0,1);return this},extractRotation:function(){var a=new p;return function(b){var c=this.elements,d=b.elements,e=1/a.setFromMatrixColumn(b,0).length(),f=1/a.setFromMatrixColumn(b,1).length();b=1/a.setFromMatrixColumn(b,2).length();c[0]=d[0]*e;c[1]=d[1]*e;c[2]=d[2]*e;c[4]=d[4]*f;c[5]=d[5]*f;c[6]=d[6]*f;c[8]=d[8]*b;
+c[9]=d[9]*b;c[10]=d[10]*b;return this}}(),makeRotationFromEuler:function(a){a&&a.isEuler||console.error("THREE.Matrix4: .makeRotationFromEuler() now expects a Euler rotation rather than a Vector3 and order.");var b=this.elements,c=a.x,d=a.y,e=a.z,f=Math.cos(c);c=Math.sin(c);var g=Math.cos(d);d=Math.sin(d);var h=Math.cos(e);e=Math.sin(e);if("XYZ"===a.order){a=f*h;var l=f*e,m=c*h,k=c*e;b[0]=g*h;b[4]=-g*e;b[8]=d;b[1]=l+m*d;b[5]=a-k*d;b[9]=-c*g;b[2]=k-a*d;b[6]=m+l*d;b[10]=f*g}else"YXZ"===a.order?(a=g*
+h,l=g*e,m=d*h,k=d*e,b[0]=a+k*c,b[4]=m*c-l,b[8]=f*d,b[1]=f*e,b[5]=f*h,b[9]=-c,b[2]=l*c-m,b[6]=k+a*c,b[10]=f*g):"ZXY"===a.order?(a=g*h,l=g*e,m=d*h,k=d*e,b[0]=a-k*c,b[4]=-f*e,b[8]=m+l*c,b[1]=l+m*c,b[5]=f*h,b[9]=k-a*c,b[2]=-f*d,b[6]=c,b[10]=f*g):"ZYX"===a.order?(a=f*h,l=f*e,m=c*h,k=c*e,b[0]=g*h,b[4]=m*d-l,b[8]=a*d+k,b[1]=g*e,b[5]=k*d+a,b[9]=l*d-m,b[2]=-d,b[6]=c*g,b[10]=f*g):"YZX"===a.order?(a=f*g,l=f*d,m=c*g,k=c*d,b[0]=g*h,b[4]=k-a*e,b[8]=m*e+l,b[1]=e,b[5]=f*h,b[9]=-c*h,b[2]=-d*h,b[6]=l*e+m,b[10]=a-k*
+e):"XZY"===a.order&&(a=f*g,l=f*d,m=c*g,k=c*d,b[0]=g*h,b[4]=-e,b[8]=d*h,b[1]=a*e+k,b[5]=f*h,b[9]=l*e-m,b[2]=m*e-l,b[6]=c*h,b[10]=k*e+a);b[3]=0;b[7]=0;b[11]=0;b[12]=0;b[13]=0;b[14]=0;b[15]=1;return this},makeRotationFromQuaternion:function(a){var b=this.elements,c=a._x,d=a._y,e=a._z,f=a._w,g=c+c,h=d+d,l=e+e;a=c*g;var m=c*h;c*=l;var k=d*h;d*=l;e*=l;g*=f;h*=f;f*=l;b[0]=1-(k+e);b[4]=m-f;b[8]=c+h;b[1]=m+f;b[5]=1-(a+e);b[9]=d-g;b[2]=c-h;b[6]=d+g;b[10]=1-(a+k);b[3]=0;b[7]=0;b[11]=0;b[12]=0;b[13]=0;b[14]=
+0;b[15]=1;return this},lookAt:function(){var a=new p,b=new p,c=new p;return function(d,e,f){var g=this.elements;c.subVectors(d,e);0===c.lengthSq()&&(c.z=1);c.normalize();a.crossVectors(f,c);0===a.lengthSq()&&(1===Math.abs(f.z)?c.x+=1E-4:c.z+=1E-4,c.normalize(),a.crossVectors(f,c));a.normalize();b.crossVectors(c,a);g[0]=a.x;g[4]=b.x;g[8]=c.x;g[1]=a.y;g[5]=b.y;g[9]=c.y;g[2]=a.z;g[6]=b.z;g[10]=c.z;return this}}(),multiply:function(a,b){return void 0!==b?(console.warn("THREE.Matrix4: .multiply() now only accepts one argument. Use .multiplyMatrices( a, b ) instead."),
+this.multiplyMatrices(a,b)):this.multiplyMatrices(this,a)},premultiply:function(a){return this.multiplyMatrices(a,this)},multiplyMatrices:function(a,b){var c=a.elements,d=b.elements;b=this.elements;a=c[0];var e=c[4],f=c[8],g=c[12],h=c[1],l=c[5],m=c[9],k=c[13],n=c[2],t=c[6],r=c[10],q=c[14],p=c[3],x=c[7],y=c[11];c=c[15];var w=d[0],B=d[4],G=d[8],K=d[12],P=d[1],H=d[5],C=d[9],A=d[13],z=d[2],E=d[6],F=d[10],I=d[14],L=d[3],Q=d[7],N=d[11];d=d[15];b[0]=a*w+e*P+f*z+g*L;b[4]=a*B+e*H+f*E+g*Q;b[8]=a*G+e*C+f*F+
+g*N;b[12]=a*K+e*A+f*I+g*d;b[1]=h*w+l*P+m*z+k*L;b[5]=h*B+l*H+m*E+k*Q;b[9]=h*G+l*C+m*F+k*N;b[13]=h*K+l*A+m*I+k*d;b[2]=n*w+t*P+r*z+q*L;b[6]=n*B+t*H+r*E+q*Q;b[10]=n*G+t*C+r*F+q*N;b[14]=n*K+t*A+r*I+q*d;b[3]=p*w+x*P+y*z+c*L;b[7]=p*B+x*H+y*E+c*Q;b[11]=p*G+x*C+y*F+c*N;b[15]=p*K+x*A+y*I+c*d;return this},multiplyScalar:function(a){var b=this.elements;b[0]*=a;b[4]*=a;b[8]*=a;b[12]*=a;b[1]*=a;b[5]*=a;b[9]*=a;b[13]*=a;b[2]*=a;b[6]*=a;b[10]*=a;b[14]*=a;b[3]*=a;b[7]*=a;b[11]*=a;b[15]*=a;return this},applyToBufferAttribute:function(){var a=
+new p;return function(b){for(var c=0,d=b.count;c<d;c++)a.x=b.getX(c),a.y=b.getY(c),a.z=b.getZ(c),a.applyMatrix4(this),b.setXYZ(c,a.x,a.y,a.z);return b}}(),determinant:function(){var a=this.elements,b=a[0],c=a[4],d=a[8],e=a[12],f=a[1],g=a[5],h=a[9],l=a[13],m=a[2],k=a[6],n=a[10],t=a[14];return a[3]*(+e*h*k-d*l*k-e*g*n+c*l*n+d*g*t-c*h*t)+a[7]*(+b*h*t-b*l*n+e*f*n-d*f*t+d*l*m-e*h*m)+a[11]*(+b*l*k-b*g*t-e*f*k+c*f*t+e*g*m-c*l*m)+a[15]*(-d*g*m-b*h*k+b*g*n+d*f*k-c*f*n+c*h*m)},transpose:function(){var a=this.elements;
+var b=a[1];a[1]=a[4];a[4]=b;b=a[2];a[2]=a[8];a[8]=b;b=a[6];a[6]=a[9];a[9]=b;b=a[3];a[3]=a[12];a[12]=b;b=a[7];a[7]=a[13];a[13]=b;b=a[11];a[11]=a[14];a[14]=b;return this},setPosition:function(a){var b=this.elements;b[12]=a.x;b[13]=a.y;b[14]=a.z;return this},getInverse:function(a,b){var c=this.elements,d=a.elements;a=d[0];var e=d[1],f=d[2],g=d[3],h=d[4],l=d[5],m=d[6],k=d[7],n=d[8],t=d[9],r=d[10],q=d[11],p=d[12],x=d[13],y=d[14];d=d[15];var w=t*y*k-x*r*k+x*m*q-l*y*q-t*m*d+l*r*d,B=p*r*k-n*y*k-p*m*q+h*y*
+q+n*m*d-h*r*d,G=n*x*k-p*t*k+p*l*q-h*x*q-n*l*d+h*t*d,K=p*t*m-n*x*m-p*l*r+h*x*r+n*l*y-h*t*y,P=a*w+e*B+f*G+g*K;if(0===P){if(!0===b)throw Error("THREE.Matrix4: .getInverse() can't invert matrix, determinant is 0");console.warn("THREE.Matrix4: .getInverse() can't invert matrix, determinant is 0");return this.identity()}b=1/P;c[0]=w*b;c[1]=(x*r*g-t*y*g-x*f*q+e*y*q+t*f*d-e*r*d)*b;c[2]=(l*y*g-x*m*g+x*f*k-e*y*k-l*f*d+e*m*d)*b;c[3]=(t*m*g-l*r*g-t*f*k+e*r*k+l*f*q-e*m*q)*b;c[4]=B*b;c[5]=(n*y*g-p*r*g+p*f*q-a*
+y*q-n*f*d+a*r*d)*b;c[6]=(p*m*g-h*y*g-p*f*k+a*y*k+h*f*d-a*m*d)*b;c[7]=(h*r*g-n*m*g+n*f*k-a*r*k-h*f*q+a*m*q)*b;c[8]=G*b;c[9]=(p*t*g-n*x*g-p*e*q+a*x*q+n*e*d-a*t*d)*b;c[10]=(h*x*g-p*l*g+p*e*k-a*x*k-h*e*d+a*l*d)*b;c[11]=(n*l*g-h*t*g-n*e*k+a*t*k+h*e*q-a*l*q)*b;c[12]=K*b;c[13]=(n*x*f-p*t*f+p*e*r-a*x*r-n*e*y+a*t*y)*b;c[14]=(p*l*f-h*x*f-p*e*m+a*x*m+h*e*y-a*l*y)*b;c[15]=(h*t*f-n*l*f+n*e*m-a*t*m-h*e*r+a*l*r)*b;return this},scale:function(a){var b=this.elements,c=a.x,d=a.y;a=a.z;b[0]*=c;b[4]*=d;b[8]*=a;b[1]*=
+c;b[5]*=d;b[9]*=a;b[2]*=c;b[6]*=d;b[10]*=a;b[3]*=c;b[7]*=d;b[11]*=a;return this},getMaxScaleOnAxis:function(){var a=this.elements;return Math.sqrt(Math.max(a[0]*a[0]+a[1]*a[1]+a[2]*a[2],a[4]*a[4]+a[5]*a[5]+a[6]*a[6],a[8]*a[8]+a[9]*a[9]+a[10]*a[10]))},makeTranslation:function(a,b,c){this.set(1,0,0,a,0,1,0,b,0,0,1,c,0,0,0,1);return this},makeRotationX:function(a){var b=Math.cos(a);a=Math.sin(a);this.set(1,0,0,0,0,b,-a,0,0,a,b,0,0,0,0,1);return this},makeRotationY:function(a){var b=Math.cos(a);a=Math.sin(a);
+this.set(b,0,a,0,0,1,0,0,-a,0,b,0,0,0,0,1);return this},makeRotationZ:function(a){var b=Math.cos(a);a=Math.sin(a);this.set(b,-a,0,0,a,b,0,0,0,0,1,0,0,0,0,1);return this},makeRotationAxis:function(a,b){var c=Math.cos(b);b=Math.sin(b);var d=1-c,e=a.x,f=a.y;a=a.z;var g=d*e,h=d*f;this.set(g*e+c,g*f-b*a,g*a+b*f,0,g*f+b*a,h*f+c,h*a-b*e,0,g*a-b*f,h*a+b*e,d*a*a+c,0,0,0,0,1);return this},makeScale:function(a,b,c){this.set(a,0,0,0,0,b,0,0,0,0,c,0,0,0,0,1);return this},makeShear:function(a,b,c){this.set(1,b,
+c,0,a,1,c,0,a,b,1,0,0,0,0,1);return this},compose:function(a,b,c){this.makeRotationFromQuaternion(b);this.scale(c);this.setPosition(a);return this},decompose:function(){var a=new p,b=new M;return function(c,d,e){var f=this.elements,g=a.set(f[0],f[1],f[2]).length(),h=a.set(f[4],f[5],f[6]).length(),l=a.set(f[8],f[9],f[10]).length();0>this.determinant()&&(g=-g);c.x=f[12];c.y=f[13];c.z=f[14];b.copy(this);c=1/g;f=1/h;var m=1/l;b.elements[0]*=c;b.elements[1]*=c;b.elements[2]*=c;b.elements[4]*=f;b.elements[5]*=
+f;b.elements[6]*=f;b.elements[8]*=m;b.elements[9]*=m;b.elements[10]*=m;d.setFromRotationMatrix(b);e.x=g;e.y=h;e.z=l;return this}}(),makePerspective:function(a,b,c,d,e,f){void 0===f&&console.warn("THREE.Matrix4: .makePerspective() has been redefined and has a new signature. Please check the docs.");var g=this.elements;g[0]=2*e/(b-a);g[4]=0;g[8]=(b+a)/(b-a);g[12]=0;g[1]=0;g[5]=2*e/(c-d);g[9]=(c+d)/(c-d);g[13]=0;g[2]=0;g[6]=0;g[10]=-(f+e)/(f-e);g[14]=-2*f*e/(f-e);g[3]=0;g[7]=0;g[11]=-1;g[15]=0;return this},
+makeOrthographic:function(a,b,c,d,e,f){var g=this.elements,h=1/(b-a),l=1/(c-d),m=1/(f-e);g[0]=2*h;g[4]=0;g[8]=0;g[12]=-((b+a)*h);g[1]=0;g[5]=2*l;g[9]=0;g[13]=-((c+d)*l);g[2]=0;g[6]=0;g[10]=-2*m;g[14]=-((f+e)*m);g[3]=0;g[7]=0;g[11]=0;g[15]=1;return this},equals:function(a){var b=this.elements;a=a.elements;for(var c=0;16>c;c++)if(b[c]!==a[c])return!1;return!0},fromArray:function(a,b){void 0===b&&(b=0);for(var c=0;16>c;c++)this.elements[c]=a[c+b];return this},toArray:function(a,b){void 0===a&&(a=[]);
+void 0===b&&(b=0);var c=this.elements;a[b]=c[0];a[b+1]=c[1];a[b+2]=c[2];a[b+3]=c[3];a[b+4]=c[4];a[b+5]=c[5];a[b+6]=c[6];a[b+7]=c[7];a[b+8]=c[8];a[b+9]=c[9];a[b+10]=c[10];a[b+11]=c[11];a[b+12]=c[12];a[b+13]=c[13];a[b+14]=c[14];a[b+15]=c[15];return a}});Object.assign(ja,{slerp:function(a,b,c,d){return c.copy(a).slerp(b,d)},slerpFlat:function(a,b,c,d,e,f,g){var h=c[d+0],l=c[d+1],m=c[d+2];c=c[d+3];d=e[f+0];var k=e[f+1],n=e[f+2];e=e[f+3];if(c!==e||h!==d||l!==k||m!==n){f=1-g;var p=h*d+l*k+m*n+c*e,r=0<=
+p?1:-1,q=1-p*p;q>Number.EPSILON&&(q=Math.sqrt(q),p=Math.atan2(q,p*r),f=Math.sin(f*p)/q,g=Math.sin(g*p)/q);r*=g;h=h*f+d*r;l=l*f+k*r;m=m*f+n*r;c=c*f+e*r;f===1-g&&(g=1/Math.sqrt(h*h+l*l+m*m+c*c),h*=g,l*=g,m*=g,c*=g)}a[b]=h;a[b+1]=l;a[b+2]=m;a[b+3]=c}});Object.defineProperties(ja.prototype,{x:{get:function(){return this._x},set:function(a){this._x=a;this.onChangeCallback()}},y:{get:function(){return this._y},set:function(a){this._y=a;this.onChangeCallback()}},z:{get:function(){return this._z},set:function(a){this._z=
+a;this.onChangeCallback()}},w:{get:function(){return this._w},set:function(a){this._w=a;this.onChangeCallback()}}});Object.assign(ja.prototype,{set:function(a,b,c,d){this._x=a;this._y=b;this._z=c;this._w=d;this.onChangeCallback();return this},clone:function(){return new this.constructor(this._x,this._y,this._z,this._w)},copy:function(a){this._x=a.x;this._y=a.y;this._z=a.z;this._w=a.w;this.onChangeCallback();return this},setFromEuler:function(a,b){if(!a||!a.isEuler)throw Error("THREE.Quaternion: .setFromEuler() now expects an Euler rotation rather than a Vector3 and order.");
+var c=a._x,d=a._y,e=a._z;a=a.order;var f=Math.cos,g=Math.sin,h=f(c/2),l=f(d/2);f=f(e/2);c=g(c/2);d=g(d/2);e=g(e/2);"XYZ"===a?(this._x=c*l*f+h*d*e,this._y=h*d*f-c*l*e,this._z=h*l*e+c*d*f,this._w=h*l*f-c*d*e):"YXZ"===a?(this._x=c*l*f+h*d*e,this._y=h*d*f-c*l*e,this._z=h*l*e-c*d*f,this._w=h*l*f+c*d*e):"ZXY"===a?(this._x=c*l*f-h*d*e,this._y=h*d*f+c*l*e,this._z=h*l*e+c*d*f,this._w=h*l*f-c*d*e):"ZYX"===a?(this._x=c*l*f-h*d*e,this._y=h*d*f+c*l*e,this._z=h*l*e-c*d*f,this._w=h*l*f+c*d*e):"YZX"===a?(this._x=
+c*l*f+h*d*e,this._y=h*d*f+c*l*e,this._z=h*l*e-c*d*f,this._w=h*l*f-c*d*e):"XZY"===a&&(this._x=c*l*f-h*d*e,this._y=h*d*f-c*l*e,this._z=h*l*e+c*d*f,this._w=h*l*f+c*d*e);if(!1!==b)this.onChangeCallback();return this},setFromAxisAngle:function(a,b){b/=2;var c=Math.sin(b);this._x=a.x*c;this._y=a.y*c;this._z=a.z*c;this._w=Math.cos(b);this.onChangeCallback();return this},setFromRotationMatrix:function(a){var b=a.elements,c=b[0];a=b[4];var d=b[8],e=b[1],f=b[5],g=b[9],h=b[2],l=b[6];b=b[10];var m=c+f+b;0<m?
+(c=.5/Math.sqrt(m+1),this._w=.25/c,this._x=(l-g)*c,this._y=(d-h)*c,this._z=(e-a)*c):c>f&&c>b?(c=2*Math.sqrt(1+c-f-b),this._w=(l-g)/c,this._x=.25*c,this._y=(a+e)/c,this._z=(d+h)/c):f>b?(c=2*Math.sqrt(1+f-c-b),this._w=(d-h)/c,this._x=(a+e)/c,this._y=.25*c,this._z=(g+l)/c):(c=2*Math.sqrt(1+b-c-f),this._w=(e-a)/c,this._x=(d+h)/c,this._y=(g+l)/c,this._z=.25*c);this.onChangeCallback();return this},setFromUnitVectors:function(){var a=new p,b;return function(c,d){void 0===a&&(a=new p);b=c.dot(d)+1;1E-6>b?
+(b=0,Math.abs(c.x)>Math.abs(c.z)?a.set(-c.y,c.x,0):a.set(0,-c.z,c.y)):a.crossVectors(c,d);this._x=a.x;this._y=a.y;this._z=a.z;this._w=b;return this.normalize()}}(),inverse:function(){return this.conjugate()},conjugate:function(){this._x*=-1;this._y*=-1;this._z*=-1;this.onChangeCallback();return this},dot:function(a){return this._x*a._x+this._y*a._y+this._z*a._z+this._w*a._w},lengthSq:function(){return this._x*this._x+this._y*this._y+this._z*this._z+this._w*this._w},length:function(){return Math.sqrt(this._x*
+this._x+this._y*this._y+this._z*this._z+this._w*this._w)},normalize:function(){var a=this.length();0===a?(this._z=this._y=this._x=0,this._w=1):(a=1/a,this._x*=a,this._y*=a,this._z*=a,this._w*=a);this.onChangeCallback();return this},multiply:function(a,b){return void 0!==b?(console.warn("THREE.Quaternion: .multiply() now only accepts one argument. Use .multiplyQuaternions( a, b ) instead."),this.multiplyQuaternions(a,b)):this.multiplyQuaternions(this,a)},premultiply:function(a){return this.multiplyQuaternions(a,
+this)},multiplyQuaternions:function(a,b){var c=a._x,d=a._y,e=a._z;a=a._w;var f=b._x,g=b._y,h=b._z;b=b._w;this._x=c*b+a*f+d*h-e*g;this._y=d*b+a*g+e*f-c*h;this._z=e*b+a*h+c*g-d*f;this._w=a*b-c*f-d*g-e*h;this.onChangeCallback();return this},slerp:function(a,b){if(0===b)return this;if(1===b)return this.copy(a);var c=this._x,d=this._y,e=this._z,f=this._w,g=f*a._w+c*a._x+d*a._y+e*a._z;0>g?(this._w=-a._w,this._x=-a._x,this._y=-a._y,this._z=-a._z,g=-g):this.copy(a);if(1<=g)return this._w=f,this._x=c,this._y=
+d,this._z=e,this;a=Math.sqrt(1-g*g);if(.001>Math.abs(a))return this._w=.5*(f+this._w),this._x=.5*(c+this._x),this._y=.5*(d+this._y),this._z=.5*(e+this._z),this;var h=Math.atan2(a,g);g=Math.sin((1-b)*h)/a;b=Math.sin(b*h)/a;this._w=f*g+this._w*b;this._x=c*g+this._x*b;this._y=d*g+this._y*b;this._z=e*g+this._z*b;this.onChangeCallback();return this},equals:function(a){return a._x===this._x&&a._y===this._y&&a._z===this._z&&a._w===this._w},fromArray:function(a,b){void 0===b&&(b=0);this._x=a[b];this._y=a[b+
+1];this._z=a[b+2];this._w=a[b+3];this.onChangeCallback();return this},toArray:function(a,b){void 0===a&&(a=[]);void 0===b&&(b=0);a[b]=this._x;a[b+1]=this._y;a[b+2]=this._z;a[b+3]=this._w;return a},onChange:function(a){this.onChangeCallback=a;return this},onChangeCallback:function(){}});Object.assign(p.prototype,{isVector3:!0,set:function(a,b,c){this.x=a;this.y=b;this.z=c;return this},setScalar:function(a){this.z=this.y=this.x=a;return this},setX:function(a){this.x=a;return this},setY:function(a){this.y=
+a;return this},setZ:function(a){this.z=a;return this},setComponent:function(a,b){switch(a){case 0:this.x=b;break;case 1:this.y=b;break;case 2:this.z=b;break;default:throw Error("index is out of range: "+a);}return this},getComponent:function(a){switch(a){case 0:return this.x;case 1:return this.y;case 2:return this.z;default:throw Error("index is out of range: "+a);}},clone:function(){return new this.constructor(this.x,this.y,this.z)},copy:function(a){this.x=a.x;this.y=a.y;this.z=a.z;return this},
+add:function(a,b){if(void 0!==b)return console.warn("THREE.Vector3: .add() now only accepts one argument. Use .addVectors( a, b ) instead."),this.addVectors(a,b);this.x+=a.x;this.y+=a.y;this.z+=a.z;return this},addScalar:function(a){this.x+=a;this.y+=a;this.z+=a;return this},addVectors:function(a,b){this.x=a.x+b.x;this.y=a.y+b.y;this.z=a.z+b.z;return this},addScaledVector:function(a,b){this.x+=a.x*b;this.y+=a.y*b;this.z+=a.z*b;return this},sub:function(a,b){if(void 0!==b)return console.warn("THREE.Vector3: .sub() now only accepts one argument. Use .subVectors( a, b ) instead."),
+this.subVectors(a,b);this.x-=a.x;this.y-=a.y;this.z-=a.z;return this},subScalar:function(a){this.x-=a;this.y-=a;this.z-=a;return this},subVectors:function(a,b){this.x=a.x-b.x;this.y=a.y-b.y;this.z=a.z-b.z;return this},multiply:function(a,b){if(void 0!==b)return console.warn("THREE.Vector3: .multiply() now only accepts one argument. Use .multiplyVectors( a, b ) instead."),this.multiplyVectors(a,b);this.x*=a.x;this.y*=a.y;this.z*=a.z;return this},multiplyScalar:function(a){this.x*=a;this.y*=a;this.z*=
+a;return this},multiplyVectors:function(a,b){this.x=a.x*b.x;this.y=a.y*b.y;this.z=a.z*b.z;return this},applyEuler:function(){var a=new ja;return function(b){b&&b.isEuler||console.error("THREE.Vector3: .applyEuler() now expects an Euler rotation rather than a Vector3 and order.");return this.applyQuaternion(a.setFromEuler(b))}}(),applyAxisAngle:function(){var a=new ja;return function(b,c){return this.applyQuaternion(a.setFromAxisAngle(b,c))}}(),applyMatrix3:function(a){var b=this.x,c=this.y,d=this.z;
+a=a.elements;this.x=a[0]*b+a[3]*c+a[6]*d;this.y=a[1]*b+a[4]*c+a[7]*d;this.z=a[2]*b+a[5]*c+a[8]*d;return this},applyMatrix4:function(a){var b=this.x,c=this.y,d=this.z;a=a.elements;var e=1/(a[3]*b+a[7]*c+a[11]*d+a[15]);this.x=(a[0]*b+a[4]*c+a[8]*d+a[12])*e;this.y=(a[1]*b+a[5]*c+a[9]*d+a[13])*e;this.z=(a[2]*b+a[6]*c+a[10]*d+a[14])*e;return this},applyQuaternion:function(a){var b=this.x,c=this.y,d=this.z,e=a.x,f=a.y,g=a.z;a=a.w;var h=a*b+f*d-g*c,l=a*c+g*b-e*d,m=a*d+e*c-f*b;b=-e*b-f*c-g*d;this.x=h*a+b*
+-e+l*-g-m*-f;this.y=l*a+b*-f+m*-e-h*-g;this.z=m*a+b*-g+h*-f-l*-e;return this},project:function(){var a=new M;return function(b){a.multiplyMatrices(b.projectionMatrix,a.getInverse(b.matrixWorld));return this.applyMatrix4(a)}}(),unproject:function(){var a=new M;return function(b){a.multiplyMatrices(b.matrixWorld,a.getInverse(b.projectionMatrix));return this.applyMatrix4(a)}}(),transformDirection:function(a){var b=this.x,c=this.y,d=this.z;a=a.elements;this.x=a[0]*b+a[4]*c+a[8]*d;this.y=a[1]*b+a[5]*c+
+a[9]*d;this.z=a[2]*b+a[6]*c+a[10]*d;return this.normalize()},divide:function(a){this.x/=a.x;this.y/=a.y;this.z/=a.z;return this},divideScalar:function(a){return this.multiplyScalar(1/a)},min:function(a){this.x=Math.min(this.x,a.x);this.y=Math.min(this.y,a.y);this.z=Math.min(this.z,a.z);return this},max:function(a){this.x=Math.max(this.x,a.x);this.y=Math.max(this.y,a.y);this.z=Math.max(this.z,a.z);return this},clamp:function(a,b){this.x=Math.max(a.x,Math.min(b.x,this.x));this.y=Math.max(a.y,Math.min(b.y,
+this.y));this.z=Math.max(a.z,Math.min(b.z,this.z));return this},clampScalar:function(){var a=new p,b=new p;return function(c,d){a.set(c,c,c);b.set(d,d,d);return this.clamp(a,b)}}(),clampLength:function(a,b){var c=this.length();return this.divideScalar(c||1).multiplyScalar(Math.max(a,Math.min(b,c)))},floor:function(){this.x=Math.floor(this.x);this.y=Math.floor(this.y);this.z=Math.floor(this.z);return this},ceil:function(){this.x=Math.ceil(this.x);this.y=Math.ceil(this.y);this.z=Math.ceil(this.z);return this},
+round:function(){this.x=Math.round(this.x);this.y=Math.round(this.y);this.z=Math.round(this.z);return this},roundToZero:function(){this.x=0>this.x?Math.ceil(this.x):Math.floor(this.x);this.y=0>this.y?Math.ceil(this.y):Math.floor(this.y);this.z=0>this.z?Math.ceil(this.z):Math.floor(this.z);return this},negate:function(){this.x=-this.x;this.y=-this.y;this.z=-this.z;return this},dot:function(a){return this.x*a.x+this.y*a.y+this.z*a.z},lengthSq:function(){return this.x*this.x+this.y*this.y+this.z*this.z},
+length:function(){return Math.sqrt(this.x*this.x+this.y*this.y+this.z*this.z)},manhattanLength:function(){return Math.abs(this.x)+Math.abs(this.y)+Math.abs(this.z)},normalize:function(){return this.divideScalar(this.length()||1)},setLength:function(a){return this.normalize().multiplyScalar(a)},lerp:function(a,b){this.x+=(a.x-this.x)*b;this.y+=(a.y-this.y)*b;this.z+=(a.z-this.z)*b;return this},lerpVectors:function(a,b,c){return this.subVectors(b,a).multiplyScalar(c).add(a)},cross:function(a,b){return void 0!==
+b?(console.warn("THREE.Vector3: .cross() now only accepts one argument. Use .crossVectors( a, b ) instead."),this.crossVectors(a,b)):this.crossVectors(this,a)},crossVectors:function(a,b){var c=a.x,d=a.y;a=a.z;var e=b.x,f=b.y;b=b.z;this.x=d*b-a*f;this.y=a*e-c*b;this.z=c*f-d*e;return this},projectOnVector:function(a){var b=a.dot(this)/a.lengthSq();return this.copy(a).multiplyScalar(b)},projectOnPlane:function(){var a=new p;return function(b){a.copy(this).projectOnVector(b);return this.sub(a)}}(),reflect:function(){var a=
+new p;return function(b){return this.sub(a.copy(b).multiplyScalar(2*this.dot(b)))}}(),angleTo:function(a){a=this.dot(a)/Math.sqrt(this.lengthSq()*a.lengthSq());return Math.acos(S.clamp(a,-1,1))},distanceTo:function(a){return Math.sqrt(this.distanceToSquared(a))},distanceToSquared:function(a){var b=this.x-a.x,c=this.y-a.y;a=this.z-a.z;return b*b+c*c+a*a},manhattanDistanceTo:function(a){return Math.abs(this.x-a.x)+Math.abs(this.y-a.y)+Math.abs(this.z-a.z)},setFromSpherical:function(a){var b=Math.sin(a.phi)*
+a.radius;this.x=b*Math.sin(a.theta);this.y=Math.cos(a.phi)*a.radius;this.z=b*Math.cos(a.theta);return this},setFromCylindrical:function(a){this.x=a.radius*Math.sin(a.theta);this.y=a.y;this.z=a.radius*Math.cos(a.theta);return this},setFromMatrixPosition:function(a){a=a.elements;this.x=a[12];this.y=a[13];this.z=a[14];return this},setFromMatrixScale:function(a){var b=this.setFromMatrixColumn(a,0).length(),c=this.setFromMatrixColumn(a,1).length();a=this.setFromMatrixColumn(a,2).length();this.x=b;this.y=
+c;this.z=a;return this},setFromMatrixColumn:function(a,b){return this.fromArray(a.elements,4*b)},equals:function(a){return a.x===this.x&&a.y===this.y&&a.z===this.z},fromArray:function(a,b){void 0===b&&(b=0);this.x=a[b];this.y=a[b+1];this.z=a[b+2];return this},toArray:function(a,b){void 0===a&&(a=[]);void 0===b&&(b=0);a[b]=this.x;a[b+1]=this.y;a[b+2]=this.z;return a},fromBufferAttribute:function(a,b,c){void 0!==c&&console.warn("THREE.Vector3: offset has been removed from .fromBufferAttribute().");
+this.x=a.getX(b);this.y=a.getY(b);this.z=a.getZ(b);return this}});Object.assign(sa.prototype,{isMatrix3:!0,set:function(a,b,c,d,e,f,g,h,l){var m=this.elements;m[0]=a;m[1]=d;m[2]=g;m[3]=b;m[4]=e;m[5]=h;m[6]=c;m[7]=f;m[8]=l;return this},identity:function(){this.set(1,0,0,0,1,0,0,0,1);return this},clone:function(){return(new this.constructor).fromArray(this.elements)},copy:function(a){var b=this.elements;a=a.elements;b[0]=a[0];b[1]=a[1];b[2]=a[2];b[3]=a[3];b[4]=a[4];b[5]=a[5];b[6]=a[6];b[7]=a[7];b[8]=
+a[8];return this},setFromMatrix4:function(a){a=a.elements;this.set(a[0],a[4],a[8],a[1],a[5],a[9],a[2],a[6],a[10]);return this},applyToBufferAttribute:function(){var a=new p;return function(b){for(var c=0,d=b.count;c<d;c++)a.x=b.getX(c),a.y=b.getY(c),a.z=b.getZ(c),a.applyMatrix3(this),b.setXYZ(c,a.x,a.y,a.z);return b}}(),multiply:function(a){return this.multiplyMatrices(this,a)},premultiply:function(a){return this.multiplyMatrices(a,this)},multiplyMatrices:function(a,b){var c=a.elements,d=b.elements;
+b=this.elements;a=c[0];var e=c[3],f=c[6],g=c[1],h=c[4],l=c[7],m=c[2],k=c[5];c=c[8];var n=d[0],p=d[3],r=d[6],q=d[1],v=d[4],x=d[7],y=d[2],w=d[5];d=d[8];b[0]=a*n+e*q+f*y;b[3]=a*p+e*v+f*w;b[6]=a*r+e*x+f*d;b[1]=g*n+h*q+l*y;b[4]=g*p+h*v+l*w;b[7]=g*r+h*x+l*d;b[2]=m*n+k*q+c*y;b[5]=m*p+k*v+c*w;b[8]=m*r+k*x+c*d;return this},multiplyScalar:function(a){var b=this.elements;b[0]*=a;b[3]*=a;b[6]*=a;b[1]*=a;b[4]*=a;b[7]*=a;b[2]*=a;b[5]*=a;b[8]*=a;return this},determinant:function(){var a=this.elements,b=a[0],c=a[1],
+d=a[2],e=a[3],f=a[4],g=a[5],h=a[6],l=a[7];a=a[8];return b*f*a-b*g*l-c*e*a+c*g*h+d*e*l-d*f*h},getInverse:function(a,b){a&&a.isMatrix4&&console.error("THREE.Matrix3: .getInverse() no longer takes a Matrix4 argument.");var c=a.elements;a=this.elements;var d=c[0],e=c[1],f=c[2],g=c[3],h=c[4],l=c[5],m=c[6],k=c[7];c=c[8];var n=c*h-l*k,p=l*m-c*g,r=k*g-h*m,q=d*n+e*p+f*r;if(0===q){if(!0===b)throw Error("THREE.Matrix3: .getInverse() can't invert matrix, determinant is 0");console.warn("THREE.Matrix3: .getInverse() can't invert matrix, determinant is 0");
+return this.identity()}b=1/q;a[0]=n*b;a[1]=(f*k-c*e)*b;a[2]=(l*e-f*h)*b;a[3]=p*b;a[4]=(c*d-f*m)*b;a[5]=(f*g-l*d)*b;a[6]=r*b;a[7]=(e*m-k*d)*b;a[8]=(h*d-e*g)*b;return this},transpose:function(){var a=this.elements;var b=a[1];a[1]=a[3];a[3]=b;b=a[2];a[2]=a[6];a[6]=b;b=a[5];a[5]=a[7];a[7]=b;return this},getNormalMatrix:function(a){return this.setFromMatrix4(a).getInverse(this).transpose()},transposeIntoArray:function(a){var b=this.elements;a[0]=b[0];a[1]=b[3];a[2]=b[6];a[3]=b[1];a[4]=b[4];a[5]=b[7];a[6]=
+b[2];a[7]=b[5];a[8]=b[8];return this},setUvTransform:function(a,b,c,d,e,f,g){var h=Math.cos(e);e=Math.sin(e);this.set(c*h,c*e,-c*(h*f+e*g)+f+a,-d*e,d*h,-d*(-e*f+h*g)+g+b,0,0,1)},scale:function(a,b){var c=this.elements;c[0]*=a;c[3]*=a;c[6]*=a;c[1]*=b;c[4]*=b;c[7]*=b;return this},rotate:function(a){var b=Math.cos(a);a=Math.sin(a);var c=this.elements,d=c[0],e=c[3],f=c[6],g=c[1],h=c[4],l=c[7];c[0]=b*d+a*g;c[3]=b*e+a*h;c[6]=b*f+a*l;c[1]=-a*d+b*g;c[4]=-a*e+b*h;c[7]=-a*f+b*l;return this},translate:function(a,
+b){var c=this.elements;c[0]+=a*c[2];c[3]+=a*c[5];c[6]+=a*c[8];c[1]+=b*c[2];c[4]+=b*c[5];c[7]+=b*c[8];return this},equals:function(a){var b=this.elements;a=a.elements;for(var c=0;9>c;c++)if(b[c]!==a[c])return!1;return!0},fromArray:function(a,b){void 0===b&&(b=0);for(var c=0;9>c;c++)this.elements[c]=a[c+b];return this},toArray:function(a,b){void 0===a&&(a=[]);void 0===b&&(b=0);var c=this.elements;a[b]=c[0];a[b+1]=c[1];a[b+2]=c[2];a[b+3]=c[3];a[b+4]=c[4];a[b+5]=c[5];a[b+6]=c[6];a[b+7]=c[7];a[b+8]=c[8];
+return a}});var xf=0;Y.DEFAULT_IMAGE=void 0;Y.DEFAULT_MAPPING=300;Y.prototype=Object.assign(Object.create(xa.prototype),{constructor:Y,isTexture:!0,clone:function(){return(new this.constructor).copy(this)},copy:function(a){this.name=a.name;this.image=a.image;this.mipmaps=a.mipmaps.slice(0);this.mapping=a.mapping;this.wrapS=a.wrapS;this.wrapT=a.wrapT;this.magFilter=a.magFilter;this.minFilter=a.minFilter;this.anisotropy=a.anisotropy;this.format=a.format;this.type=a.type;this.offset.copy(a.offset);this.repeat.copy(a.repeat);
+this.center.copy(a.center);this.rotation=a.rotation;this.matrixAutoUpdate=a.matrixAutoUpdate;this.matrix.copy(a.matrix);this.generateMipmaps=a.generateMipmaps;this.premultiplyAlpha=a.premultiplyAlpha;this.flipY=a.flipY;this.unpackAlignment=a.unpackAlignment;this.encoding=a.encoding;return this},toJSON:function(a){var b=void 0===a||"string"===typeof a;if(!b&&void 0!==a.textures[this.uuid])return a.textures[this.uuid];var c={metadata:{version:4.5,type:"Texture",generator:"Texture.toJSON"},uuid:this.uuid,
+name:this.name,mapping:this.mapping,repeat:[this.repeat.x,this.repeat.y],offset:[this.offset.x,this.offset.y],center:[this.center.x,this.center.y],rotation:this.rotation,wrap:[this.wrapS,this.wrapT],format:this.format,minFilter:this.minFilter,magFilter:this.magFilter,anisotropy:this.anisotropy,flipY:this.flipY};if(void 0!==this.image){var d=this.image;void 0===d.uuid&&(d.uuid=S.generateUUID());if(!b&&void 0===a.images[d.uuid]){var e=a.images,f=d.uuid,g=d.uuid;if(d instanceof HTMLCanvasElement)var h=
+d;else{h=document.createElementNS("http://www.w3.org/1999/xhtml","canvas");h.width=d.width;h.height=d.height;var l=h.getContext("2d");d instanceof ImageData?l.putImageData(d,0,0):l.drawImage(d,0,0,d.width,d.height)}h=2048<h.width||2048<h.height?h.toDataURL("image/jpeg",.6):h.toDataURL("image/png");e[f]={uuid:g,url:h}}c.image=d.uuid}b||(a.textures[this.uuid]=c);return c},dispose:function(){this.dispatchEvent({type:"dispose"})},transformUv:function(a){if(300===this.mapping){a.applyMatrix3(this.matrix);
+if(0>a.x||1<a.x)switch(this.wrapS){case 1E3:a.x-=Math.floor(a.x);break;case 1001:a.x=0>a.x?0:1;break;case 1002:a.x=1===Math.abs(Math.floor(a.x)%2)?Math.ceil(a.x)-a.x:a.x-Math.floor(a.x)}if(0>a.y||1<a.y)switch(this.wrapT){case 1E3:a.y-=Math.floor(a.y);break;case 1001:a.y=0>a.y?0:1;break;case 1002:a.y=1===Math.abs(Math.floor(a.y)%2)?Math.ceil(a.y)-a.y:a.y-Math.floor(a.y)}this.flipY&&(a.y=1-a.y)}}});Object.defineProperty(Y.prototype,"needsUpdate",{set:function(a){!0===a&&this.version++}});Object.assign(ea.prototype,
+{isVector4:!0,set:function(a,b,c,d){this.x=a;this.y=b;this.z=c;this.w=d;return this},setScalar:function(a){this.w=this.z=this.y=this.x=a;return this},setX:function(a){this.x=a;return this},setY:function(a){this.y=a;return this},setZ:function(a){this.z=a;return this},setW:function(a){this.w=a;return this},setComponent:function(a,b){switch(a){case 0:this.x=b;break;case 1:this.y=b;break;case 2:this.z=b;break;case 3:this.w=b;break;default:throw Error("index is out of range: "+a);}return this},getComponent:function(a){switch(a){case 0:return this.x;
+case 1:return this.y;case 2:return this.z;case 3:return this.w;default:throw Error("index is out of range: "+a);}},clone:function(){return new this.constructor(this.x,this.y,this.z,this.w)},copy:function(a){this.x=a.x;this.y=a.y;this.z=a.z;this.w=void 0!==a.w?a.w:1;return this},add:function(a,b){if(void 0!==b)return console.warn("THREE.Vector4: .add() now only accepts one argument. Use .addVectors( a, b ) instead."),this.addVectors(a,b);this.x+=a.x;this.y+=a.y;this.z+=a.z;this.w+=a.w;return this},
+addScalar:function(a){this.x+=a;this.y+=a;this.z+=a;this.w+=a;return this},addVectors:function(a,b){this.x=a.x+b.x;this.y=a.y+b.y;this.z=a.z+b.z;this.w=a.w+b.w;return this},addScaledVector:function(a,b){this.x+=a.x*b;this.y+=a.y*b;this.z+=a.z*b;this.w+=a.w*b;return this},sub:function(a,b){if(void 0!==b)return console.warn("THREE.Vector4: .sub() now only accepts one argument. Use .subVectors( a, b ) instead."),this.subVectors(a,b);this.x-=a.x;this.y-=a.y;this.z-=a.z;this.w-=a.w;return this},subScalar:function(a){this.x-=
+a;this.y-=a;this.z-=a;this.w-=a;return this},subVectors:function(a,b){this.x=a.x-b.x;this.y=a.y-b.y;this.z=a.z-b.z;this.w=a.w-b.w;return this},multiplyScalar:function(a){this.x*=a;this.y*=a;this.z*=a;this.w*=a;return this},applyMatrix4:function(a){var b=this.x,c=this.y,d=this.z,e=this.w;a=a.elements;this.x=a[0]*b+a[4]*c+a[8]*d+a[12]*e;this.y=a[1]*b+a[5]*c+a[9]*d+a[13]*e;this.z=a[2]*b+a[6]*c+a[10]*d+a[14]*e;this.w=a[3]*b+a[7]*c+a[11]*d+a[15]*e;return this},divideScalar:function(a){return this.multiplyScalar(1/
+a)},setAxisAngleFromQuaternion:function(a){this.w=2*Math.acos(a.w);var b=Math.sqrt(1-a.w*a.w);1E-4>b?(this.x=1,this.z=this.y=0):(this.x=a.x/b,this.y=a.y/b,this.z=a.z/b);return this},setAxisAngleFromRotationMatrix:function(a){a=a.elements;var b=a[0];var c=a[4];var d=a[8],e=a[1],f=a[5],g=a[9];var h=a[2];var l=a[6];var m=a[10];if(.01>Math.abs(c-e)&&.01>Math.abs(d-h)&&.01>Math.abs(g-l)){if(.1>Math.abs(c+e)&&.1>Math.abs(d+h)&&.1>Math.abs(g+l)&&.1>Math.abs(b+f+m-3))return this.set(1,0,0,0),this;a=Math.PI;
+b=(b+1)/2;f=(f+1)/2;m=(m+1)/2;c=(c+e)/4;d=(d+h)/4;g=(g+l)/4;b>f&&b>m?.01>b?(l=0,c=h=.707106781):(l=Math.sqrt(b),h=c/l,c=d/l):f>m?.01>f?(l=.707106781,h=0,c=.707106781):(h=Math.sqrt(f),l=c/h,c=g/h):.01>m?(h=l=.707106781,c=0):(c=Math.sqrt(m),l=d/c,h=g/c);this.set(l,h,c,a);return this}a=Math.sqrt((l-g)*(l-g)+(d-h)*(d-h)+(e-c)*(e-c));.001>Math.abs(a)&&(a=1);this.x=(l-g)/a;this.y=(d-h)/a;this.z=(e-c)/a;this.w=Math.acos((b+f+m-1)/2);return this},min:function(a){this.x=Math.min(this.x,a.x);this.y=Math.min(this.y,
+a.y);this.z=Math.min(this.z,a.z);this.w=Math.min(this.w,a.w);return this},max:function(a){this.x=Math.max(this.x,a.x);this.y=Math.max(this.y,a.y);this.z=Math.max(this.z,a.z);this.w=Math.max(this.w,a.w);return this},clamp:function(a,b){this.x=Math.max(a.x,Math.min(b.x,this.x));this.y=Math.max(a.y,Math.min(b.y,this.y));this.z=Math.max(a.z,Math.min(b.z,this.z));this.w=Math.max(a.w,Math.min(b.w,this.w));return this},clampScalar:function(){var a,b;return function(c,d){void 0===a&&(a=new ea,b=new ea);a.set(c,
+c,c,c);b.set(d,d,d,d);return this.clamp(a,b)}}(),clampLength:function(a,b){var c=this.length();return this.divideScalar(c||1).multiplyScalar(Math.max(a,Math.min(b,c)))},floor:function(){this.x=Math.floor(this.x);this.y=Math.floor(this.y);this.z=Math.floor(this.z);this.w=Math.floor(this.w);return this},ceil:function(){this.x=Math.ceil(this.x);this.y=Math.ceil(this.y);this.z=Math.ceil(this.z);this.w=Math.ceil(this.w);return this},round:function(){this.x=Math.round(this.x);this.y=Math.round(this.y);
+this.z=Math.round(this.z);this.w=Math.round(this.w);return this},roundToZero:function(){this.x=0>this.x?Math.ceil(this.x):Math.floor(this.x);this.y=0>this.y?Math.ceil(this.y):Math.floor(this.y);this.z=0>this.z?Math.ceil(this.z):Math.floor(this.z);this.w=0>this.w?Math.ceil(this.w):Math.floor(this.w);return this},negate:function(){this.x=-this.x;this.y=-this.y;this.z=-this.z;this.w=-this.w;return this},dot:function(a){return this.x*a.x+this.y*a.y+this.z*a.z+this.w*a.w},lengthSq:function(){return this.x*
+this.x+this.y*this.y+this.z*this.z+this.w*this.w},length:function(){return Math.sqrt(this.x*this.x+this.y*this.y+this.z*this.z+this.w*this.w)},manhattanLength:function(){return Math.abs(this.x)+Math.abs(this.y)+Math.abs(this.z)+Math.abs(this.w)},normalize:function(){return this.divideScalar(this.length()||1)},setLength:function(a){return this.normalize().multiplyScalar(a)},lerp:function(a,b){this.x+=(a.x-this.x)*b;this.y+=(a.y-this.y)*b;this.z+=(a.z-this.z)*b;this.w+=(a.w-this.w)*b;return this},lerpVectors:function(a,
+b,c){return this.subVectors(b,a).multiplyScalar(c).add(a)},equals:function(a){return a.x===this.x&&a.y===this.y&&a.z===this.z&&a.w===this.w},fromArray:function(a,b){void 0===b&&(b=0);this.x=a[b];this.y=a[b+1];this.z=a[b+2];this.w=a[b+3];return this},toArray:function(a,b){void 0===a&&(a=[]);void 0===b&&(b=0);a[b]=this.x;a[b+1]=this.y;a[b+2]=this.z;a[b+3]=this.w;return a},fromBufferAttribute:function(a,b,c){void 0!==c&&console.warn("THREE.Vector4: offset has been removed from .fromBufferAttribute().");
+this.x=a.getX(b);this.y=a.getY(b);this.z=a.getZ(b);this.w=a.getW(b);return this}});hb.prototype=Object.assign(Object.create(xa.prototype),{constructor:hb,isWebGLRenderTarget:!0,setSize:function(a,b){if(this.width!==a||this.height!==b)this.width=a,this.height=b,this.dispose();this.viewport.set(0,0,a,b);this.scissor.set(0,0,a,b)},clone:function(){return(new this.constructor).copy(this)},copy:function(a){this.width=a.width;this.height=a.height;this.viewport.copy(a.viewport);this.texture=a.texture.clone();
+this.depthBuffer=a.depthBuffer;this.stencilBuffer=a.stencilBuffer;this.depthTexture=a.depthTexture;return this},dispose:function(){this.dispatchEvent({type:"dispose"})}});Ib.prototype=Object.create(hb.prototype);Ib.prototype.constructor=Ib;Ib.prototype.isWebGLRenderTargetCube=!0;ib.prototype=Object.create(Y.prototype);ib.prototype.constructor=ib;ib.prototype.isDataTexture=!0;Object.assign(Va.prototype,{isBox3:!0,set:function(a,b){this.min.copy(a);this.max.copy(b);return this},setFromArray:function(a){for(var b=
+Infinity,c=Infinity,d=Infinity,e=-Infinity,f=-Infinity,g=-Infinity,h=0,l=a.length;h<l;h+=3){var m=a[h],k=a[h+1],n=a[h+2];m<b&&(b=m);k<c&&(c=k);n<d&&(d=n);m>e&&(e=m);k>f&&(f=k);n>g&&(g=n)}this.min.set(b,c,d);this.max.set(e,f,g);return this},setFromBufferAttribute:function(a){for(var b=Infinity,c=Infinity,d=Infinity,e=-Infinity,f=-Infinity,g=-Infinity,h=0,l=a.count;h<l;h++){var m=a.getX(h),k=a.getY(h),n=a.getZ(h);m<b&&(b=m);k<c&&(c=k);n<d&&(d=n);m>e&&(e=m);k>f&&(f=k);n>g&&(g=n)}this.min.set(b,c,d);
+this.max.set(e,f,g);return this},setFromPoints:function(a){this.makeEmpty();for(var b=0,c=a.length;b<c;b++)this.expandByPoint(a[b]);return this},setFromCenterAndSize:function(){var a=new p;return function(b,c){c=a.copy(c).multiplyScalar(.5);this.min.copy(b).sub(c);this.max.copy(b).add(c);return this}}(),setFromObject:function(a){this.makeEmpty();return this.expandByObject(a)},clone:function(){return(new this.constructor).copy(this)},copy:function(a){this.min.copy(a.min);this.max.copy(a.max);return this},
+makeEmpty:function(){this.min.x=this.min.y=this.min.z=Infinity;this.max.x=this.max.y=this.max.z=-Infinity;return this},isEmpty:function(){return this.max.x<this.min.x||this.max.y<this.min.y||this.max.z<this.min.z},getCenter:function(a){void 0===a&&(console.warn("THREE.Box3: .getCenter() target is now required"),a=new p);return this.isEmpty()?a.set(0,0,0):a.addVectors(this.min,this.max).multiplyScalar(.5)},getSize:function(a){void 0===a&&(console.warn("THREE.Box3: .getSize() target is now required"),
+a=new p);return this.isEmpty()?a.set(0,0,0):a.subVectors(this.max,this.min)},expandByPoint:function(a){this.min.min(a);this.max.max(a);return this},expandByVector:function(a){this.min.sub(a);this.max.add(a);return this},expandByScalar:function(a){this.min.addScalar(-a);this.max.addScalar(a);return this},expandByObject:function(){function a(a){var f=a.geometry;if(void 0!==f)if(f.isGeometry)for(f=f.vertices,c=0,d=f.length;c<d;c++)e.copy(f[c]),e.applyMatrix4(a.matrixWorld),b.expandByPoint(e);else if(f.isBufferGeometry&&
+(f=f.attributes.position,void 0!==f))for(c=0,d=f.count;c<d;c++)e.fromBufferAttribute(f,c).applyMatrix4(a.matrixWorld),b.expandByPoint(e)}var b,c,d,e=new p;return function(c){b=this;c.updateMatrixWorld(!0);c.traverse(a);return this}}(),containsPoint:function(a){return a.x<this.min.x||a.x>this.max.x||a.y<this.min.y||a.y>this.max.y||a.z<this.min.z||a.z>this.max.z?!1:!0},containsBox:function(a){return this.min.x<=a.min.x&&a.max.x<=this.max.x&&this.min.y<=a.min.y&&a.max.y<=this.max.y&&this.min.z<=a.min.z&&
+a.max.z<=this.max.z},getParameter:function(a,b){void 0===b&&(console.warn("THREE.Box3: .getParameter() target is now required"),b=new p);return b.set((a.x-this.min.x)/(this.max.x-this.min.x),(a.y-this.min.y)/(this.max.y-this.min.y),(a.z-this.min.z)/(this.max.z-this.min.z))},intersectsBox:function(a){return a.max.x<this.min.x||a.min.x>this.max.x||a.max.y<this.min.y||a.min.y>this.max.y||a.max.z<this.min.z||a.min.z>this.max.z?!1:!0},intersectsSphere:function(){var a=new p;return function(b){this.clampPoint(b.center,
+a);return a.distanceToSquared(b.center)<=b.radius*b.radius}}(),intersectsPlane:function(a){if(0<a.normal.x){var b=a.normal.x*this.min.x;var c=a.normal.x*this.max.x}else b=a.normal.x*this.max.x,c=a.normal.x*this.min.x;0<a.normal.y?(b+=a.normal.y*this.min.y,c+=a.normal.y*this.max.y):(b+=a.normal.y*this.max.y,c+=a.normal.y*this.min.y);0<a.normal.z?(b+=a.normal.z*this.min.z,c+=a.normal.z*this.max.z):(b+=a.normal.z*this.max.z,c+=a.normal.z*this.min.z);return b<=a.constant&&c>=a.constant},intersectsTriangle:function(){function a(a){var e;
+var f=0;for(e=a.length-3;f<=e;f+=3){h.fromArray(a,f);var g=m.x*Math.abs(h.x)+m.y*Math.abs(h.y)+m.z*Math.abs(h.z),l=b.dot(h),k=c.dot(h),n=d.dot(h);if(Math.max(-Math.max(l,k,n),Math.min(l,k,n))>g)return!1}return!0}var b=new p,c=new p,d=new p,e=new p,f=new p,g=new p,h=new p,l=new p,m=new p,k=new p;return function(h){if(this.isEmpty())return!1;this.getCenter(l);m.subVectors(this.max,l);b.subVectors(h.a,l);c.subVectors(h.b,l);d.subVectors(h.c,l);e.subVectors(c,b);f.subVectors(d,c);g.subVectors(b,d);h=
+[0,-e.z,e.y,0,-f.z,f.y,0,-g.z,g.y,e.z,0,-e.x,f.z,0,-f.x,g.z,0,-g.x,-e.y,e.x,0,-f.y,f.x,0,-g.y,g.x,0];if(!a(h))return!1;h=[1,0,0,0,1,0,0,0,1];if(!a(h))return!1;k.crossVectors(e,f);h=[k.x,k.y,k.z];return a(h)}}(),clampPoint:function(a,b){void 0===b&&(console.warn("THREE.Box3: .clampPoint() target is now required"),b=new p);return b.copy(a).clamp(this.min,this.max)},distanceToPoint:function(){var a=new p;return function(b){return a.copy(b).clamp(this.min,this.max).sub(b).length()}}(),getBoundingSphere:function(){var a=
+new p;return function(b){void 0===b&&(console.warn("THREE.Box3: .getBoundingSphere() target is now required"),b=new Ea);this.getCenter(b.center);b.radius=.5*this.getSize(a).length();return b}}(),intersect:function(a){this.min.max(a.min);this.max.min(a.max);this.isEmpty()&&this.makeEmpty();return this},union:function(a){this.min.min(a.min);this.max.max(a.max);return this},applyMatrix4:function(){var a=[new p,new p,new p,new p,new p,new p,new p,new p];return function(b){if(this.isEmpty())return this;
+a[0].set(this.min.x,this.min.y,this.min.z).applyMatrix4(b);a[1].set(this.min.x,this.min.y,this.max.z).applyMatrix4(b);a[2].set(this.min.x,this.max.y,this.min.z).applyMatrix4(b);a[3].set(this.min.x,this.max.y,this.max.z).applyMatrix4(b);a[4].set(this.max.x,this.min.y,this.min.z).applyMatrix4(b);a[5].set(this.max.x,this.min.y,this.max.z).applyMatrix4(b);a[6].set(this.max.x,this.max.y,this.min.z).applyMatrix4(b);a[7].set(this.max.x,this.max.y,this.max.z).applyMatrix4(b);this.setFromPoints(a);return this}}(),
+translate:function(a){this.min.add(a);this.max.add(a);return this},equals:function(a){return a.min.equals(this.min)&&a.max.equals(this.max)}});Object.assign(Ea.prototype,{set:function(a,b){this.center.copy(a);this.radius=b;return this},setFromPoints:function(){var a=new Va;return function(b,c){var d=this.center;void 0!==c?d.copy(c):a.setFromPoints(b).getCenter(d);for(var e=c=0,f=b.length;e<f;e++)c=Math.max(c,d.distanceToSquared(b[e]));this.radius=Math.sqrt(c);return this}}(),clone:function(){return(new this.constructor).copy(this)},
+copy:function(a){this.center.copy(a.center);this.radius=a.radius;return this},empty:function(){return 0>=this.radius},containsPoint:function(a){return a.distanceToSquared(this.center)<=this.radius*this.radius},distanceToPoint:function(a){return a.distanceTo(this.center)-this.radius},intersectsSphere:function(a){var b=this.radius+a.radius;return a.center.distanceToSquared(this.center)<=b*b},intersectsBox:function(a){return a.intersectsSphere(this)},intersectsPlane:function(a){return Math.abs(a.distanceToPoint(this.center))<=
+this.radius},clampPoint:function(a,b){var c=this.center.distanceToSquared(a);void 0===b&&(console.warn("THREE.Sphere: .clampPoint() target is now required"),b=new p);b.copy(a);c>this.radius*this.radius&&(b.sub(this.center).normalize(),b.multiplyScalar(this.radius).add(this.center));return b},getBoundingBox:function(a){void 0===a&&(console.warn("THREE.Sphere: .getBoundingBox() target is now required"),a=new Va);a.set(this.center,this.center);a.expandByScalar(this.radius);return a},applyMatrix4:function(a){this.center.applyMatrix4(a);
+this.radius*=a.getMaxScaleOnAxis();return this},translate:function(a){this.center.add(a);return this},equals:function(a){return a.center.equals(this.center)&&a.radius===this.radius}});Object.assign(Fa.prototype,{set:function(a,b){this.normal.copy(a);this.constant=b;return this},setComponents:function(a,b,c,d){this.normal.set(a,b,c);this.constant=d;return this},setFromNormalAndCoplanarPoint:function(a,b){this.normal.copy(a);this.constant=-b.dot(this.normal);return this},setFromCoplanarPoints:function(){var a=
+new p,b=new p;return function(c,d,e){d=a.subVectors(e,d).cross(b.subVectors(c,d)).normalize();this.setFromNormalAndCoplanarPoint(d,c);return this}}(),clone:function(){return(new this.constructor).copy(this)},copy:function(a){this.normal.copy(a.normal);this.constant=a.constant;return this},normalize:function(){var a=1/this.normal.length();this.normal.multiplyScalar(a);this.constant*=a;return this},negate:function(){this.constant*=-1;this.normal.negate();return this},distanceToPoint:function(a){return this.normal.dot(a)+
+this.constant},distanceToSphere:function(a){return this.distanceToPoint(a.center)-a.radius},projectPoint:function(a,b){void 0===b&&(console.warn("THREE.Plane: .projectPoint() target is now required"),b=new p);return b.copy(this.normal).multiplyScalar(-this.distanceToPoint(a)).add(a)},intersectLine:function(){var a=new p;return function(b,c){void 0===c&&(console.warn("THREE.Plane: .intersectLine() target is now required"),c=new p);var d=b.delta(a),e=this.normal.dot(d);if(0===e){if(0===this.distanceToPoint(b.start))return c.copy(b.start)}else if(e=
+-(b.start.dot(this.normal)+this.constant)/e,!(0>e||1<e))return c.copy(d).multiplyScalar(e).add(b.start)}}(),intersectsLine:function(a){var b=this.distanceToPoint(a.start);a=this.distanceToPoint(a.end);return 0>b&&0<a||0>a&&0<b},intersectsBox:function(a){return a.intersectsPlane(this)},intersectsSphere:function(a){return a.intersectsPlane(this)},coplanarPoint:function(a){void 0===a&&(console.warn("THREE.Plane: .coplanarPoint() target is now required"),a=new p);return a.copy(this.normal).multiplyScalar(-this.constant)},
+applyMatrix4:function(){var a=new p,b=new sa;return function(c,d){d=d||b.getNormalMatrix(c);c=this.coplanarPoint(a).applyMatrix4(c);d=this.normal.applyMatrix3(d).normalize();this.constant=-c.dot(d);return this}}(),translate:function(a){this.constant-=a.dot(this.normal);return this},equals:function(a){return a.normal.equals(this.normal)&&a.constant===this.constant}});Object.assign(ld.prototype,{set:function(a,b,c,d,e,f){var g=this.planes;g[0].copy(a);g[1].copy(b);g[2].copy(c);g[3].copy(d);g[4].copy(e);
+g[5].copy(f);return this},clone:function(){return(new this.constructor).copy(this)},copy:function(a){for(var b=this.planes,c=0;6>c;c++)b[c].copy(a.planes[c]);return this},setFromMatrix:function(a){var b=this.planes,c=a.elements;a=c[0];var d=c[1],e=c[2],f=c[3],g=c[4],h=c[5],l=c[6],m=c[7],k=c[8],n=c[9],p=c[10],r=c[11],q=c[12],v=c[13],x=c[14];c=c[15];b[0].setComponents(f-a,m-g,r-k,c-q).normalize();b[1].setComponents(f+a,m+g,r+k,c+q).normalize();b[2].setComponents(f+d,m+h,r+n,c+v).normalize();b[3].setComponents(f-
+d,m-h,r-n,c-v).normalize();b[4].setComponents(f-e,m-l,r-p,c-x).normalize();b[5].setComponents(f+e,m+l,r+p,c+x).normalize();return this},intersectsObject:function(){var a=new Ea;return function(b){var c=b.geometry;null===c.boundingSphere&&c.computeBoundingSphere();a.copy(c.boundingSphere).applyMatrix4(b.matrixWorld);return this.intersectsSphere(a)}}(),intersectsSprite:function(){var a=new Ea;return function(b){a.center.set(0,0,0);a.radius=.7071067811865476;a.applyMatrix4(b.matrixWorld);return this.intersectsSphere(a)}}(),
+intersectsSphere:function(a){var b=this.planes,c=a.center;a=-a.radius;for(var d=0;6>d;d++)if(b[d].distanceToPoint(c)<a)return!1;return!0},intersectsBox:function(){var a=new p,b=new p;return function(c){for(var d=this.planes,e=0;6>e;e++){var f=d[e];a.x=0<f.normal.x?c.min.x:c.max.x;b.x=0<f.normal.x?c.max.x:c.min.x;a.y=0<f.normal.y?c.min.y:c.max.y;b.y=0<f.normal.y?c.max.y:c.min.y;a.z=0<f.normal.z?c.min.z:c.max.z;b.z=0<f.normal.z?c.max.z:c.min.z;var g=f.distanceToPoint(a);f=f.distanceToPoint(b);if(0>
+g&&0>f)return!1}return!0}}(),containsPoint:function(a){for(var b=this.planes,c=0;6>c;c++)if(0>b[c].distanceToPoint(a))return!1;return!0}});var V={alphamap_fragment:"#ifdef USE_ALPHAMAP\n\tdiffuseColor.a *= texture2D( alphaMap, vUv ).g;\n#endif\n",alphamap_pars_fragment:"#ifdef USE_ALPHAMAP\n\tuniform sampler2D alphaMap;\n#endif\n",alphatest_fragment:"#ifdef ALPHATEST\n\tif ( diffuseColor.a < ALPHATEST ) discard;\n#endif\n",aomap_fragment:"#ifdef USE_AOMAP\n\tfloat ambientOcclusion = ( texture2D( aoMap, vUv2 ).r - 1.0 ) * aoMapIntensity + 1.0;\n\treflectedLight.indirectDiffuse *= ambientOcclusion;\n\t#if defined( USE_ENVMAP ) && defined( PHYSICAL )\n\t\tfloat dotNV = saturate( dot( geometry.normal, geometry.viewDir ) );\n\t\treflectedLight.indirectSpecular *= computeSpecularOcclusion( dotNV, ambientOcclusion, material.specularRoughness );\n\t#endif\n#endif\n",
+aomap_pars_fragment:"#ifdef USE_AOMAP\n\tuniform sampler2D aoMap;\n\tuniform float aoMapIntensity;\n#endif",begin_vertex:"\nvec3 transformed = vec3( position );\n",beginnormal_vertex:"\nvec3 objectNormal = vec3( normal );\n",bsdfs:"float punctualLightIntensityToIrradianceFactor( const in float lightDistance, const in float cutoffDistance, const in float decayExponent ) {\n\tif( decayExponent > 0.0 ) {\n#if defined ( PHYSICALLY_CORRECT_LIGHTS )\n\t\tfloat distanceFalloff = 1.0 / max( pow( lightDistance, decayExponent ), 0.01 );\n\t\tfloat maxDistanceCutoffFactor = pow2( saturate( 1.0 - pow4( lightDistance / cutoffDistance ) ) );\n\t\treturn distanceFalloff * maxDistanceCutoffFactor;\n#else\n\t\treturn pow( saturate( -lightDistance / cutoffDistance + 1.0 ), decayExponent );\n#endif\n\t}\n\treturn 1.0;\n}\nvec3 BRDF_Diffuse_Lambert( const in vec3 diffuseColor ) {\n\treturn RECIPROCAL_PI * diffuseColor;\n}\nvec3 F_Schlick( const in vec3 specularColor, const in float dotLH ) {\n\tfloat fresnel = exp2( ( -5.55473 * dotLH - 6.98316 ) * dotLH );\n\treturn ( 1.0 - specularColor ) * fresnel + specularColor;\n}\nfloat G_GGX_Smith( const in float alpha, const in float dotNL, const in float dotNV ) {\n\tfloat a2 = pow2( alpha );\n\tfloat gl = dotNL + sqrt( a2 + ( 1.0 - a2 ) * pow2( dotNL ) );\n\tfloat gv = dotNV + sqrt( a2 + ( 1.0 - a2 ) * pow2( dotNV ) );\n\treturn 1.0 / ( gl * gv );\n}\nfloat G_GGX_SmithCorrelated( const in float alpha, const in float dotNL, const in float dotNV ) {\n\tfloat a2 = pow2( alpha );\n\tfloat gv = dotNL * sqrt( a2 + ( 1.0 - a2 ) * pow2( dotNV ) );\n\tfloat gl = dotNV * sqrt( a2 + ( 1.0 - a2 ) * pow2( dotNL ) );\n\treturn 0.5 / max( gv + gl, EPSILON );\n}\nfloat D_GGX( const in float alpha, const in float dotNH ) {\n\tfloat a2 = pow2( alpha );\n\tfloat denom = pow2( dotNH ) * ( a2 - 1.0 ) + 1.0;\n\treturn RECIPROCAL_PI * a2 / pow2( denom );\n}\nvec3 BRDF_Specular_GGX( const in IncidentLight incidentLight, const in GeometricContext geometry, const in vec3 specularColor, const in float roughness ) {\n\tfloat alpha = pow2( roughness );\n\tvec3 halfDir = normalize( incidentLight.direction + geometry.viewDir );\n\tfloat dotNL = saturate( dot( geometry.normal, incidentLight.direction ) );\n\tfloat dotNV = saturate( dot( geometry.normal, geometry.viewDir ) );\n\tfloat dotNH = saturate( dot( geometry.normal, halfDir ) );\n\tfloat dotLH = saturate( dot( incidentLight.direction, halfDir ) );\n\tvec3 F = F_Schlick( specularColor, dotLH );\n\tfloat G = G_GGX_SmithCorrelated( alpha, dotNL, dotNV );\n\tfloat D = D_GGX( alpha, dotNH );\n\treturn F * ( G * D );\n}\nvec2 LTC_Uv( const in vec3 N, const in vec3 V, const in float roughness ) {\n\tconst float LUT_SIZE  = 64.0;\n\tconst float LUT_SCALE = ( LUT_SIZE - 1.0 ) / LUT_SIZE;\n\tconst float LUT_BIAS  = 0.5 / LUT_SIZE;\n\tfloat dotNV = saturate( dot( N, V ) );\n\tvec2 uv = vec2( roughness, sqrt( 1.0 - dotNV ) );\n\tuv = uv * LUT_SCALE + LUT_BIAS;\n\treturn uv;\n}\nfloat LTC_ClippedSphereFormFactor( const in vec3 f ) {\n\tfloat l = length( f );\n\treturn max( ( l * l + f.z ) / ( l + 1.0 ), 0.0 );\n}\nvec3 LTC_EdgeVectorFormFactor( const in vec3 v1, const in vec3 v2 ) {\n\tfloat x = dot( v1, v2 );\n\tfloat y = abs( x );\n\tfloat a = 0.8543985 + ( 0.4965155 + 0.0145206 * y ) * y;\n\tfloat b = 3.4175940 + ( 4.1616724 + y ) * y;\n\tfloat v = a / b;\n\tfloat theta_sintheta = ( x > 0.0 ) ? v : 0.5 * inversesqrt( max( 1.0 - x * x, 1e-7 ) ) - v;\n\treturn cross( v1, v2 ) * theta_sintheta;\n}\nvec3 LTC_Evaluate( const in vec3 N, const in vec3 V, const in vec3 P, const in mat3 mInv, const in vec3 rectCoords[ 4 ] ) {\n\tvec3 v1 = rectCoords[ 1 ] - rectCoords[ 0 ];\n\tvec3 v2 = rectCoords[ 3 ] - rectCoords[ 0 ];\n\tvec3 lightNormal = cross( v1, v2 );\n\tif( dot( lightNormal, P - rectCoords[ 0 ] ) < 0.0 ) return vec3( 0.0 );\n\tvec3 T1, T2;\n\tT1 = normalize( V - N * dot( V, N ) );\n\tT2 = - cross( N, T1 );\n\tmat3 mat = mInv * transposeMat3( mat3( T1, T2, N ) );\n\tvec3 coords[ 4 ];\n\tcoords[ 0 ] = mat * ( rectCoords[ 0 ] - P );\n\tcoords[ 1 ] = mat * ( rectCoords[ 1 ] - P );\n\tcoords[ 2 ] = mat * ( rectCoords[ 2 ] - P );\n\tcoords[ 3 ] = mat * ( rectCoords[ 3 ] - P );\n\tcoords[ 0 ] = normalize( coords[ 0 ] );\n\tcoords[ 1 ] = normalize( coords[ 1 ] );\n\tcoords[ 2 ] = normalize( coords[ 2 ] );\n\tcoords[ 3 ] = normalize( coords[ 3 ] );\n\tvec3 vectorFormFactor = vec3( 0.0 );\n\tvectorFormFactor += LTC_EdgeVectorFormFactor( coords[ 0 ], coords[ 1 ] );\n\tvectorFormFactor += LTC_EdgeVectorFormFactor( coords[ 1 ], coords[ 2 ] );\n\tvectorFormFactor += LTC_EdgeVectorFormFactor( coords[ 2 ], coords[ 3 ] );\n\tvectorFormFactor += LTC_EdgeVectorFormFactor( coords[ 3 ], coords[ 0 ] );\n\tfloat result = LTC_ClippedSphereFormFactor( vectorFormFactor );\n\treturn vec3( result );\n}\nvec3 BRDF_Specular_GGX_Environment( const in GeometricContext geometry, const in vec3 specularColor, const in float roughness ) {\n\tfloat dotNV = saturate( dot( geometry.normal, geometry.viewDir ) );\n\tconst vec4 c0 = vec4( - 1, - 0.0275, - 0.572, 0.022 );\n\tconst vec4 c1 = vec4( 1, 0.0425, 1.04, - 0.04 );\n\tvec4 r = roughness * c0 + c1;\n\tfloat a004 = min( r.x * r.x, exp2( - 9.28 * dotNV ) ) * r.x + r.y;\n\tvec2 AB = vec2( -1.04, 1.04 ) * a004 + r.zw;\n\treturn specularColor * AB.x + AB.y;\n}\nfloat G_BlinnPhong_Implicit( ) {\n\treturn 0.25;\n}\nfloat D_BlinnPhong( const in float shininess, const in float dotNH ) {\n\treturn RECIPROCAL_PI * ( shininess * 0.5 + 1.0 ) * pow( dotNH, shininess );\n}\nvec3 BRDF_Specular_BlinnPhong( const in IncidentLight incidentLight, const in GeometricContext geometry, const in vec3 specularColor, const in float shininess ) {\n\tvec3 halfDir = normalize( incidentLight.direction + geometry.viewDir );\n\tfloat dotNH = saturate( dot( geometry.normal, halfDir ) );\n\tfloat dotLH = saturate( dot( incidentLight.direction, halfDir ) );\n\tvec3 F = F_Schlick( specularColor, dotLH );\n\tfloat G = G_BlinnPhong_Implicit( );\n\tfloat D = D_BlinnPhong( shininess, dotNH );\n\treturn F * ( G * D );\n}\nfloat GGXRoughnessToBlinnExponent( const in float ggxRoughness ) {\n\treturn ( 2.0 / pow2( ggxRoughness + 0.0001 ) - 2.0 );\n}\nfloat BlinnExponentToGGXRoughness( const in float blinnExponent ) {\n\treturn sqrt( 2.0 / ( blinnExponent + 2.0 ) );\n}\n",
+bumpmap_pars_fragment:"#ifdef USE_BUMPMAP\n\tuniform sampler2D bumpMap;\n\tuniform float bumpScale;\n\tvec2 dHdxy_fwd() {\n\t\tvec2 dSTdx = dFdx( vUv );\n\t\tvec2 dSTdy = dFdy( vUv );\n\t\tfloat Hll = bumpScale * texture2D( bumpMap, vUv ).x;\n\t\tfloat dBx = bumpScale * texture2D( bumpMap, vUv + dSTdx ).x - Hll;\n\t\tfloat dBy = bumpScale * texture2D( bumpMap, vUv + dSTdy ).x - Hll;\n\t\treturn vec2( dBx, dBy );\n\t}\n\tvec3 perturbNormalArb( vec3 surf_pos, vec3 surf_norm, vec2 dHdxy ) {\n\t\tvec3 vSigmaX = vec3( dFdx( surf_pos.x ), dFdx( surf_pos.y ), dFdx( surf_pos.z ) );\n\t\tvec3 vSigmaY = vec3( dFdy( surf_pos.x ), dFdy( surf_pos.y ), dFdy( surf_pos.z ) );\n\t\tvec3 vN = surf_norm;\n\t\tvec3 R1 = cross( vSigmaY, vN );\n\t\tvec3 R2 = cross( vN, vSigmaX );\n\t\tfloat fDet = dot( vSigmaX, R1 );\n\t\tvec3 vGrad = sign( fDet ) * ( dHdxy.x * R1 + dHdxy.y * R2 );\n\t\treturn normalize( abs( fDet ) * surf_norm - vGrad );\n\t}\n#endif\n",
+clipping_planes_fragment:"#if NUM_CLIPPING_PLANES > 0\n\tvec4 plane;\n\t#pragma unroll_loop\n\tfor ( int i = 0; i < UNION_CLIPPING_PLANES; i ++ ) {\n\t\tplane = clippingPlanes[ i ];\n\t\tif ( dot( vViewPosition, plane.xyz ) > plane.w ) discard;\n\t}\n\t#if UNION_CLIPPING_PLANES < NUM_CLIPPING_PLANES\n\t\tbool clipped = true;\n\t\t#pragma unroll_loop\n\t\tfor ( int i = UNION_CLIPPING_PLANES; i < NUM_CLIPPING_PLANES; i ++ ) {\n\t\t\tplane = clippingPlanes[ i ];\n\t\t\tclipped = ( dot( vViewPosition, plane.xyz ) > plane.w ) && clipped;\n\t\t}\n\t\tif ( clipped ) discard;\n\t#endif\n#endif\n",
+clipping_planes_pars_fragment:"#if NUM_CLIPPING_PLANES > 0\n\t#if ! defined( PHYSICAL ) && ! defined( PHONG )\n\t\tvarying vec3 vViewPosition;\n\t#endif\n\tuniform vec4 clippingPlanes[ NUM_CLIPPING_PLANES ];\n#endif\n",clipping_planes_pars_vertex:"#if NUM_CLIPPING_PLANES > 0 && ! defined( PHYSICAL ) && ! defined( PHONG )\n\tvarying vec3 vViewPosition;\n#endif\n",clipping_planes_vertex:"#if NUM_CLIPPING_PLANES > 0 && ! defined( PHYSICAL ) && ! defined( PHONG )\n\tvViewPosition = - mvPosition.xyz;\n#endif\n",
+color_fragment:"#ifdef USE_COLOR\n\tdiffuseColor.rgb *= vColor;\n#endif",color_pars_fragment:"#ifdef USE_COLOR\n\tvarying vec3 vColor;\n#endif\n",color_pars_vertex:"#ifdef USE_COLOR\n\tvarying vec3 vColor;\n#endif",color_vertex:"#ifdef USE_COLOR\n\tvColor.xyz = color.xyz;\n#endif",common:"#define PI 3.14159265359\n#define PI2 6.28318530718\n#define PI_HALF 1.5707963267949\n#define RECIPROCAL_PI 0.31830988618\n#define RECIPROCAL_PI2 0.15915494\n#define LOG2 1.442695\n#define EPSILON 1e-6\n#define saturate(a) clamp( a, 0.0, 1.0 )\n#define whiteCompliment(a) ( 1.0 - saturate( a ) )\nfloat pow2( const in float x ) { return x*x; }\nfloat pow3( const in float x ) { return x*x*x; }\nfloat pow4( const in float x ) { float x2 = x*x; return x2*x2; }\nfloat average( const in vec3 color ) { return dot( color, vec3( 0.3333 ) ); }\nhighp float rand( const in vec2 uv ) {\n\tconst highp float a = 12.9898, b = 78.233, c = 43758.5453;\n\thighp float dt = dot( uv.xy, vec2( a,b ) ), sn = mod( dt, PI );\n\treturn fract(sin(sn) * c);\n}\nstruct IncidentLight {\n\tvec3 color;\n\tvec3 direction;\n\tbool visible;\n};\nstruct ReflectedLight {\n\tvec3 directDiffuse;\n\tvec3 directSpecular;\n\tvec3 indirectDiffuse;\n\tvec3 indirectSpecular;\n};\nstruct GeometricContext {\n\tvec3 position;\n\tvec3 normal;\n\tvec3 viewDir;\n};\nvec3 transformDirection( in vec3 dir, in mat4 matrix ) {\n\treturn normalize( ( matrix * vec4( dir, 0.0 ) ).xyz );\n}\nvec3 inverseTransformDirection( in vec3 dir, in mat4 matrix ) {\n\treturn normalize( ( vec4( dir, 0.0 ) * matrix ).xyz );\n}\nvec3 projectOnPlane(in vec3 point, in vec3 pointOnPlane, in vec3 planeNormal ) {\n\tfloat distance = dot( planeNormal, point - pointOnPlane );\n\treturn - distance * planeNormal + point;\n}\nfloat sideOfPlane( in vec3 point, in vec3 pointOnPlane, in vec3 planeNormal ) {\n\treturn sign( dot( point - pointOnPlane, planeNormal ) );\n}\nvec3 linePlaneIntersect( in vec3 pointOnLine, in vec3 lineDirection, in vec3 pointOnPlane, in vec3 planeNormal ) {\n\treturn lineDirection * ( dot( planeNormal, pointOnPlane - pointOnLine ) / dot( planeNormal, lineDirection ) ) + pointOnLine;\n}\nmat3 transposeMat3( const in mat3 m ) {\n\tmat3 tmp;\n\ttmp[ 0 ] = vec3( m[ 0 ].x, m[ 1 ].x, m[ 2 ].x );\n\ttmp[ 1 ] = vec3( m[ 0 ].y, m[ 1 ].y, m[ 2 ].y );\n\ttmp[ 2 ] = vec3( m[ 0 ].z, m[ 1 ].z, m[ 2 ].z );\n\treturn tmp;\n}\nfloat linearToRelativeLuminance( const in vec3 color ) {\n\tvec3 weights = vec3( 0.2126, 0.7152, 0.0722 );\n\treturn dot( weights, color.rgb );\n}\n",
+cube_uv_reflection_fragment:"#ifdef ENVMAP_TYPE_CUBE_UV\n#define cubeUV_textureSize (1024.0)\nint getFaceFromDirection(vec3 direction) {\n\tvec3 absDirection = abs(direction);\n\tint face = -1;\n\tif( absDirection.x > absDirection.z ) {\n\t\tif(absDirection.x > absDirection.y )\n\t\t\tface = direction.x > 0.0 ? 0 : 3;\n\t\telse\n\t\t\tface = direction.y > 0.0 ? 1 : 4;\n\t}\n\telse {\n\t\tif(absDirection.z > absDirection.y )\n\t\t\tface = direction.z > 0.0 ? 2 : 5;\n\t\telse\n\t\t\tface = direction.y > 0.0 ? 1 : 4;\n\t}\n\treturn face;\n}\n#define cubeUV_maxLods1  (log2(cubeUV_textureSize*0.25) - 1.0)\n#define cubeUV_rangeClamp (exp2((6.0 - 1.0) * 2.0))\nvec2 MipLevelInfo( vec3 vec, float roughnessLevel, float roughness ) {\n\tfloat scale = exp2(cubeUV_maxLods1 - roughnessLevel);\n\tfloat dxRoughness = dFdx(roughness);\n\tfloat dyRoughness = dFdy(roughness);\n\tvec3 dx = dFdx( vec * scale * dxRoughness );\n\tvec3 dy = dFdy( vec * scale * dyRoughness );\n\tfloat d = max( dot( dx, dx ), dot( dy, dy ) );\n\td = clamp(d, 1.0, cubeUV_rangeClamp);\n\tfloat mipLevel = 0.5 * log2(d);\n\treturn vec2(floor(mipLevel), fract(mipLevel));\n}\n#define cubeUV_maxLods2 (log2(cubeUV_textureSize*0.25) - 2.0)\n#define cubeUV_rcpTextureSize (1.0 / cubeUV_textureSize)\nvec2 getCubeUV(vec3 direction, float roughnessLevel, float mipLevel) {\n\tmipLevel = roughnessLevel > cubeUV_maxLods2 - 3.0 ? 0.0 : mipLevel;\n\tfloat a = 16.0 * cubeUV_rcpTextureSize;\n\tvec2 exp2_packed = exp2( vec2( roughnessLevel, mipLevel ) );\n\tvec2 rcp_exp2_packed = vec2( 1.0 ) / exp2_packed;\n\tfloat powScale = exp2_packed.x * exp2_packed.y;\n\tfloat scale = rcp_exp2_packed.x * rcp_exp2_packed.y * 0.25;\n\tfloat mipOffset = 0.75*(1.0 - rcp_exp2_packed.y) * rcp_exp2_packed.x;\n\tbool bRes = mipLevel == 0.0;\n\tscale =  bRes && (scale < a) ? a : scale;\n\tvec3 r;\n\tvec2 offset;\n\tint face = getFaceFromDirection(direction);\n\tfloat rcpPowScale = 1.0 / powScale;\n\tif( face == 0) {\n\t\tr = vec3(direction.x, -direction.z, direction.y);\n\t\toffset = vec2(0.0+mipOffset,0.75 * rcpPowScale);\n\t\toffset.y = bRes && (offset.y < 2.0*a) ? a : offset.y;\n\t}\n\telse if( face == 1) {\n\t\tr = vec3(direction.y, direction.x, direction.z);\n\t\toffset = vec2(scale+mipOffset, 0.75 * rcpPowScale);\n\t\toffset.y = bRes && (offset.y < 2.0*a) ? a : offset.y;\n\t}\n\telse if( face == 2) {\n\t\tr = vec3(direction.z, direction.x, direction.y);\n\t\toffset = vec2(2.0*scale+mipOffset, 0.75 * rcpPowScale);\n\t\toffset.y = bRes && (offset.y < 2.0*a) ? a : offset.y;\n\t}\n\telse if( face == 3) {\n\t\tr = vec3(direction.x, direction.z, direction.y);\n\t\toffset = vec2(0.0+mipOffset,0.5 * rcpPowScale);\n\t\toffset.y = bRes && (offset.y < 2.0*a) ? 0.0 : offset.y;\n\t}\n\telse if( face == 4) {\n\t\tr = vec3(direction.y, direction.x, -direction.z);\n\t\toffset = vec2(scale+mipOffset, 0.5 * rcpPowScale);\n\t\toffset.y = bRes && (offset.y < 2.0*a) ? 0.0 : offset.y;\n\t}\n\telse {\n\t\tr = vec3(direction.z, -direction.x, direction.y);\n\t\toffset = vec2(2.0*scale+mipOffset, 0.5 * rcpPowScale);\n\t\toffset.y = bRes && (offset.y < 2.0*a) ? 0.0 : offset.y;\n\t}\n\tr = normalize(r);\n\tfloat texelOffset = 0.5 * cubeUV_rcpTextureSize;\n\tvec2 s = ( r.yz / abs( r.x ) + vec2( 1.0 ) ) * 0.5;\n\tvec2 base = offset + vec2( texelOffset );\n\treturn base + s * ( scale - 2.0 * texelOffset );\n}\n#define cubeUV_maxLods3 (log2(cubeUV_textureSize*0.25) - 3.0)\nvec4 textureCubeUV(vec3 reflectedDirection, float roughness ) {\n\tfloat roughnessVal = roughness* cubeUV_maxLods3;\n\tfloat r1 = floor(roughnessVal);\n\tfloat r2 = r1 + 1.0;\n\tfloat t = fract(roughnessVal);\n\tvec2 mipInfo = MipLevelInfo(reflectedDirection, r1, roughness);\n\tfloat s = mipInfo.y;\n\tfloat level0 = mipInfo.x;\n\tfloat level1 = level0 + 1.0;\n\tlevel1 = level1 > 5.0 ? 5.0 : level1;\n\tlevel0 += min( floor( s + 0.5 ), 5.0 );\n\tvec2 uv_10 = getCubeUV(reflectedDirection, r1, level0);\n\tvec4 color10 = envMapTexelToLinear(texture2D(envMap, uv_10));\n\tvec2 uv_20 = getCubeUV(reflectedDirection, r2, level0);\n\tvec4 color20 = envMapTexelToLinear(texture2D(envMap, uv_20));\n\tvec4 result = mix(color10, color20, t);\n\treturn vec4(result.rgb, 1.0);\n}\n#endif\n",
+defaultnormal_vertex:"vec3 transformedNormal = normalMatrix * objectNormal;\n#ifdef FLIP_SIDED\n\ttransformedNormal = - transformedNormal;\n#endif\n",displacementmap_pars_vertex:"#ifdef USE_DISPLACEMENTMAP\n\tuniform sampler2D displacementMap;\n\tuniform float displacementScale;\n\tuniform float displacementBias;\n#endif\n",displacementmap_vertex:"#ifdef USE_DISPLACEMENTMAP\n\ttransformed += normalize( objectNormal ) * ( texture2D( displacementMap, uv ).x * displacementScale + displacementBias );\n#endif\n",
+emissivemap_fragment:"#ifdef USE_EMISSIVEMAP\n\tvec4 emissiveColor = texture2D( emissiveMap, vUv );\n\temissiveColor.rgb = emissiveMapTexelToLinear( emissiveColor ).rgb;\n\ttotalEmissiveRadiance *= emissiveColor.rgb;\n#endif\n",emissivemap_pars_fragment:"#ifdef USE_EMISSIVEMAP\n\tuniform sampler2D emissiveMap;\n#endif\n",encodings_fragment:"  gl_FragColor = linearToOutputTexel( gl_FragColor );\n",encodings_pars_fragment:"\nvec4 LinearToLinear( in vec4 value ) {\n\treturn value;\n}\nvec4 GammaToLinear( in vec4 value, in float gammaFactor ) {\n\treturn vec4( pow( value.xyz, vec3( gammaFactor ) ), value.w );\n}\nvec4 LinearToGamma( in vec4 value, in float gammaFactor ) {\n\treturn vec4( pow( value.xyz, vec3( 1.0 / gammaFactor ) ), value.w );\n}\nvec4 sRGBToLinear( in vec4 value ) {\n\treturn vec4( mix( pow( value.rgb * 0.9478672986 + vec3( 0.0521327014 ), vec3( 2.4 ) ), value.rgb * 0.0773993808, vec3( lessThanEqual( value.rgb, vec3( 0.04045 ) ) ) ), value.w );\n}\nvec4 LinearTosRGB( in vec4 value ) {\n\treturn vec4( mix( pow( value.rgb, vec3( 0.41666 ) ) * 1.055 - vec3( 0.055 ), value.rgb * 12.92, vec3( lessThanEqual( value.rgb, vec3( 0.0031308 ) ) ) ), value.w );\n}\nvec4 RGBEToLinear( in vec4 value ) {\n\treturn vec4( value.rgb * exp2( value.a * 255.0 - 128.0 ), 1.0 );\n}\nvec4 LinearToRGBE( in vec4 value ) {\n\tfloat maxComponent = max( max( value.r, value.g ), value.b );\n\tfloat fExp = clamp( ceil( log2( maxComponent ) ), -128.0, 127.0 );\n\treturn vec4( value.rgb / exp2( fExp ), ( fExp + 128.0 ) / 255.0 );\n}\nvec4 RGBMToLinear( in vec4 value, in float maxRange ) {\n\treturn vec4( value.xyz * value.w * maxRange, 1.0 );\n}\nvec4 LinearToRGBM( in vec4 value, in float maxRange ) {\n\tfloat maxRGB = max( value.x, max( value.g, value.b ) );\n\tfloat M      = clamp( maxRGB / maxRange, 0.0, 1.0 );\n\tM            = ceil( M * 255.0 ) / 255.0;\n\treturn vec4( value.rgb / ( M * maxRange ), M );\n}\nvec4 RGBDToLinear( in vec4 value, in float maxRange ) {\n\treturn vec4( value.rgb * ( ( maxRange / 255.0 ) / value.a ), 1.0 );\n}\nvec4 LinearToRGBD( in vec4 value, in float maxRange ) {\n\tfloat maxRGB = max( value.x, max( value.g, value.b ) );\n\tfloat D      = max( maxRange / maxRGB, 1.0 );\n\tD            = min( floor( D ) / 255.0, 1.0 );\n\treturn vec4( value.rgb * ( D * ( 255.0 / maxRange ) ), D );\n}\nconst mat3 cLogLuvM = mat3( 0.2209, 0.3390, 0.4184, 0.1138, 0.6780, 0.7319, 0.0102, 0.1130, 0.2969 );\nvec4 LinearToLogLuv( in vec4 value )  {\n\tvec3 Xp_Y_XYZp = value.rgb * cLogLuvM;\n\tXp_Y_XYZp = max(Xp_Y_XYZp, vec3(1e-6, 1e-6, 1e-6));\n\tvec4 vResult;\n\tvResult.xy = Xp_Y_XYZp.xy / Xp_Y_XYZp.z;\n\tfloat Le = 2.0 * log2(Xp_Y_XYZp.y) + 127.0;\n\tvResult.w = fract(Le);\n\tvResult.z = (Le - (floor(vResult.w*255.0))/255.0)/255.0;\n\treturn vResult;\n}\nconst mat3 cLogLuvInverseM = mat3( 6.0014, -2.7008, -1.7996, -1.3320, 3.1029, -5.7721, 0.3008, -1.0882, 5.6268 );\nvec4 LogLuvToLinear( in vec4 value ) {\n\tfloat Le = value.z * 255.0 + value.w;\n\tvec3 Xp_Y_XYZp;\n\tXp_Y_XYZp.y = exp2((Le - 127.0) / 2.0);\n\tXp_Y_XYZp.z = Xp_Y_XYZp.y / value.y;\n\tXp_Y_XYZp.x = value.x * Xp_Y_XYZp.z;\n\tvec3 vRGB = Xp_Y_XYZp.rgb * cLogLuvInverseM;\n\treturn vec4( max(vRGB, 0.0), 1.0 );\n}\n",
+envmap_fragment:"#ifdef USE_ENVMAP\n\t#if defined( USE_BUMPMAP ) || defined( USE_NORMALMAP ) || defined( PHONG )\n\t\tvec3 cameraToVertex = normalize( vWorldPosition - cameraPosition );\n\t\tvec3 worldNormal = inverseTransformDirection( normal, viewMatrix );\n\t\t#ifdef ENVMAP_MODE_REFLECTION\n\t\t\tvec3 reflectVec = reflect( cameraToVertex, worldNormal );\n\t\t#else\n\t\t\tvec3 reflectVec = refract( cameraToVertex, worldNormal, refractionRatio );\n\t\t#endif\n\t#else\n\t\tvec3 reflectVec = vReflect;\n\t#endif\n\t#ifdef ENVMAP_TYPE_CUBE\n\t\tvec4 envColor = textureCube( envMap, vec3( flipEnvMap * reflectVec.x, reflectVec.yz ) );\n\t#elif defined( ENVMAP_TYPE_EQUIREC )\n\t\tvec2 sampleUV;\n\t\treflectVec = normalize( reflectVec );\n\t\tsampleUV.y = asin( clamp( reflectVec.y, - 1.0, 1.0 ) ) * RECIPROCAL_PI + 0.5;\n\t\tsampleUV.x = atan( reflectVec.z, reflectVec.x ) * RECIPROCAL_PI2 + 0.5;\n\t\tvec4 envColor = texture2D( envMap, sampleUV );\n\t#elif defined( ENVMAP_TYPE_SPHERE )\n\t\treflectVec = normalize( reflectVec );\n\t\tvec3 reflectView = normalize( ( viewMatrix * vec4( reflectVec, 0.0 ) ).xyz + vec3( 0.0, 0.0, 1.0 ) );\n\t\tvec4 envColor = texture2D( envMap, reflectView.xy * 0.5 + 0.5 );\n\t#else\n\t\tvec4 envColor = vec4( 0.0 );\n\t#endif\n\tenvColor = envMapTexelToLinear( envColor );\n\t#ifdef ENVMAP_BLENDING_MULTIPLY\n\t\toutgoingLight = mix( outgoingLight, outgoingLight * envColor.xyz, specularStrength * reflectivity );\n\t#elif defined( ENVMAP_BLENDING_MIX )\n\t\toutgoingLight = mix( outgoingLight, envColor.xyz, specularStrength * reflectivity );\n\t#elif defined( ENVMAP_BLENDING_ADD )\n\t\toutgoingLight += envColor.xyz * specularStrength * reflectivity;\n\t#endif\n#endif\n",
+envmap_pars_fragment:"#if defined( USE_ENVMAP ) || defined( PHYSICAL )\n\tuniform float reflectivity;\n\tuniform float envMapIntensity;\n#endif\n#ifdef USE_ENVMAP\n\t#if ! defined( PHYSICAL ) && ( defined( USE_BUMPMAP ) || defined( USE_NORMALMAP ) || defined( PHONG ) )\n\t\tvarying vec3 vWorldPosition;\n\t#endif\n\t#ifdef ENVMAP_TYPE_CUBE\n\t\tuniform samplerCube envMap;\n\t#else\n\t\tuniform sampler2D envMap;\n\t#endif\n\tuniform float flipEnvMap;\n\tuniform int maxMipLevel;\n\t#if defined( USE_BUMPMAP ) || defined( USE_NORMALMAP ) || defined( PHONG ) || defined( PHYSICAL )\n\t\tuniform float refractionRatio;\n\t#else\n\t\tvarying vec3 vReflect;\n\t#endif\n#endif\n",
+envmap_pars_vertex:"#ifdef USE_ENVMAP\n\t#if defined( USE_BUMPMAP ) || defined( USE_NORMALMAP ) || defined( PHONG )\n\t\tvarying vec3 vWorldPosition;\n\t#else\n\t\tvarying vec3 vReflect;\n\t\tuniform float refractionRatio;\n\t#endif\n#endif\n",envmap_vertex:"#ifdef USE_ENVMAP\n\t#if defined( USE_BUMPMAP ) || defined( USE_NORMALMAP ) || defined( PHONG )\n\t\tvWorldPosition = worldPosition.xyz;\n\t#else\n\t\tvec3 cameraToVertex = normalize( worldPosition.xyz - cameraPosition );\n\t\tvec3 worldNormal = inverseTransformDirection( transformedNormal, viewMatrix );\n\t\t#ifdef ENVMAP_MODE_REFLECTION\n\t\t\tvReflect = reflect( cameraToVertex, worldNormal );\n\t\t#else\n\t\t\tvReflect = refract( cameraToVertex, worldNormal, refractionRatio );\n\t\t#endif\n\t#endif\n#endif\n",
+fog_vertex:"\n#ifdef USE_FOG\nfogDepth = -mvPosition.z;\n#endif",fog_pars_vertex:"#ifdef USE_FOG\n  varying float fogDepth;\n#endif\n",fog_fragment:"#ifdef USE_FOG\n\t#ifdef FOG_EXP2\n\t\tfloat fogFactor = whiteCompliment( exp2( - fogDensity * fogDensity * fogDepth * fogDepth * LOG2 ) );\n\t#else\n\t\tfloat fogFactor = smoothstep( fogNear, fogFar, fogDepth );\n\t#endif\n\tgl_FragColor.rgb = mix( gl_FragColor.rgb, fogColor, fogFactor );\n#endif\n",fog_pars_fragment:"#ifdef USE_FOG\n\tuniform vec3 fogColor;\n\tvarying float fogDepth;\n\t#ifdef FOG_EXP2\n\t\tuniform float fogDensity;\n\t#else\n\t\tuniform float fogNear;\n\t\tuniform float fogFar;\n\t#endif\n#endif\n",
+gradientmap_pars_fragment:"#ifdef TOON\n\tuniform sampler2D gradientMap;\n\tvec3 getGradientIrradiance( vec3 normal, vec3 lightDirection ) {\n\t\tfloat dotNL = dot( normal, lightDirection );\n\t\tvec2 coord = vec2( dotNL * 0.5 + 0.5, 0.0 );\n\t\t#ifdef USE_GRADIENTMAP\n\t\t\treturn texture2D( gradientMap, coord ).rgb;\n\t\t#else\n\t\t\treturn ( coord.x < 0.7 ) ? vec3( 0.7 ) : vec3( 1.0 );\n\t\t#endif\n\t}\n#endif\n",lightmap_fragment:"#ifdef USE_LIGHTMAP\n\treflectedLight.indirectDiffuse += PI * texture2D( lightMap, vUv2 ).xyz * lightMapIntensity;\n#endif\n",
+lightmap_pars_fragment:"#ifdef USE_LIGHTMAP\n\tuniform sampler2D lightMap;\n\tuniform float lightMapIntensity;\n#endif",lights_lambert_vertex:"vec3 diffuse = vec3( 1.0 );\nGeometricContext geometry;\ngeometry.position = mvPosition.xyz;\ngeometry.normal = normalize( transformedNormal );\ngeometry.viewDir = normalize( -mvPosition.xyz );\nGeometricContext backGeometry;\nbackGeometry.position = geometry.position;\nbackGeometry.normal = -geometry.normal;\nbackGeometry.viewDir = geometry.viewDir;\nvLightFront = vec3( 0.0 );\n#ifdef DOUBLE_SIDED\n\tvLightBack = vec3( 0.0 );\n#endif\nIncidentLight directLight;\nfloat dotNL;\nvec3 directLightColor_Diffuse;\n#if NUM_POINT_LIGHTS > 0\n\t#pragma unroll_loop\n\tfor ( int i = 0; i < NUM_POINT_LIGHTS; i ++ ) {\n\t\tgetPointDirectLightIrradiance( pointLights[ i ], geometry, directLight );\n\t\tdotNL = dot( geometry.normal, directLight.direction );\n\t\tdirectLightColor_Diffuse = PI * directLight.color;\n\t\tvLightFront += saturate( dotNL ) * directLightColor_Diffuse;\n\t\t#ifdef DOUBLE_SIDED\n\t\t\tvLightBack += saturate( -dotNL ) * directLightColor_Diffuse;\n\t\t#endif\n\t}\n#endif\n#if NUM_SPOT_LIGHTS > 0\n\t#pragma unroll_loop\n\tfor ( int i = 0; i < NUM_SPOT_LIGHTS; i ++ ) {\n\t\tgetSpotDirectLightIrradiance( spotLights[ i ], geometry, directLight );\n\t\tdotNL = dot( geometry.normal, directLight.direction );\n\t\tdirectLightColor_Diffuse = PI * directLight.color;\n\t\tvLightFront += saturate( dotNL ) * directLightColor_Diffuse;\n\t\t#ifdef DOUBLE_SIDED\n\t\t\tvLightBack += saturate( -dotNL ) * directLightColor_Diffuse;\n\t\t#endif\n\t}\n#endif\n#if NUM_DIR_LIGHTS > 0\n\t#pragma unroll_loop\n\tfor ( int i = 0; i < NUM_DIR_LIGHTS; i ++ ) {\n\t\tgetDirectionalDirectLightIrradiance( directionalLights[ i ], geometry, directLight );\n\t\tdotNL = dot( geometry.normal, directLight.direction );\n\t\tdirectLightColor_Diffuse = PI * directLight.color;\n\t\tvLightFront += saturate( dotNL ) * directLightColor_Diffuse;\n\t\t#ifdef DOUBLE_SIDED\n\t\t\tvLightBack += saturate( -dotNL ) * directLightColor_Diffuse;\n\t\t#endif\n\t}\n#endif\n#if NUM_HEMI_LIGHTS > 0\n\t#pragma unroll_loop\n\tfor ( int i = 0; i < NUM_HEMI_LIGHTS; i ++ ) {\n\t\tvLightFront += getHemisphereLightIrradiance( hemisphereLights[ i ], geometry );\n\t\t#ifdef DOUBLE_SIDED\n\t\t\tvLightBack += getHemisphereLightIrradiance( hemisphereLights[ i ], backGeometry );\n\t\t#endif\n\t}\n#endif\n",
+lights_pars_begin:"uniform vec3 ambientLightColor;\nvec3 getAmbientLightIrradiance( const in vec3 ambientLightColor ) {\n\tvec3 irradiance = ambientLightColor;\n\t#ifndef PHYSICALLY_CORRECT_LIGHTS\n\t\tirradiance *= PI;\n\t#endif\n\treturn irradiance;\n}\n#if NUM_DIR_LIGHTS > 0\n\tstruct DirectionalLight {\n\t\tvec3 direction;\n\t\tvec3 color;\n\t\tint shadow;\n\t\tfloat shadowBias;\n\t\tfloat shadowRadius;\n\t\tvec2 shadowMapSize;\n\t};\n\tuniform DirectionalLight directionalLights[ NUM_DIR_LIGHTS ];\n\tvoid getDirectionalDirectLightIrradiance( const in DirectionalLight directionalLight, const in GeometricContext geometry, out IncidentLight directLight ) {\n\t\tdirectLight.color = directionalLight.color;\n\t\tdirectLight.direction = directionalLight.direction;\n\t\tdirectLight.visible = true;\n\t}\n#endif\n#if NUM_POINT_LIGHTS > 0\n\tstruct PointLight {\n\t\tvec3 position;\n\t\tvec3 color;\n\t\tfloat distance;\n\t\tfloat decay;\n\t\tint shadow;\n\t\tfloat shadowBias;\n\t\tfloat shadowRadius;\n\t\tvec2 shadowMapSize;\n\t\tfloat shadowCameraNear;\n\t\tfloat shadowCameraFar;\n\t};\n\tuniform PointLight pointLights[ NUM_POINT_LIGHTS ];\n\tvoid getPointDirectLightIrradiance( const in PointLight pointLight, const in GeometricContext geometry, out IncidentLight directLight ) {\n\t\tvec3 lVector = pointLight.position - geometry.position;\n\t\tdirectLight.direction = normalize( lVector );\n\t\tfloat lightDistance = length( lVector );\n\t\tdirectLight.color = pointLight.color;\n\t\tdirectLight.color *= punctualLightIntensityToIrradianceFactor( lightDistance, pointLight.distance, pointLight.decay );\n\t\tdirectLight.visible = ( directLight.color != vec3( 0.0 ) );\n\t}\n#endif\n#if NUM_SPOT_LIGHTS > 0\n\tstruct SpotLight {\n\t\tvec3 position;\n\t\tvec3 direction;\n\t\tvec3 color;\n\t\tfloat distance;\n\t\tfloat decay;\n\t\tfloat coneCos;\n\t\tfloat penumbraCos;\n\t\tint shadow;\n\t\tfloat shadowBias;\n\t\tfloat shadowRadius;\n\t\tvec2 shadowMapSize;\n\t};\n\tuniform SpotLight spotLights[ NUM_SPOT_LIGHTS ];\n\tvoid getSpotDirectLightIrradiance( const in SpotLight spotLight, const in GeometricContext geometry, out IncidentLight directLight  ) {\n\t\tvec3 lVector = spotLight.position - geometry.position;\n\t\tdirectLight.direction = normalize( lVector );\n\t\tfloat lightDistance = length( lVector );\n\t\tfloat angleCos = dot( directLight.direction, spotLight.direction );\n\t\tif ( angleCos > spotLight.coneCos ) {\n\t\t\tfloat spotEffect = smoothstep( spotLight.coneCos, spotLight.penumbraCos, angleCos );\n\t\t\tdirectLight.color = spotLight.color;\n\t\t\tdirectLight.color *= spotEffect * punctualLightIntensityToIrradianceFactor( lightDistance, spotLight.distance, spotLight.decay );\n\t\t\tdirectLight.visible = true;\n\t\t} else {\n\t\t\tdirectLight.color = vec3( 0.0 );\n\t\t\tdirectLight.visible = false;\n\t\t}\n\t}\n#endif\n#if NUM_RECT_AREA_LIGHTS > 0\n\tstruct RectAreaLight {\n\t\tvec3 color;\n\t\tvec3 position;\n\t\tvec3 halfWidth;\n\t\tvec3 halfHeight;\n\t};\n\tuniform sampler2D ltc_1;\tuniform sampler2D ltc_2;\n\tuniform RectAreaLight rectAreaLights[ NUM_RECT_AREA_LIGHTS ];\n#endif\n#if NUM_HEMI_LIGHTS > 0\n\tstruct HemisphereLight {\n\t\tvec3 direction;\n\t\tvec3 skyColor;\n\t\tvec3 groundColor;\n\t};\n\tuniform HemisphereLight hemisphereLights[ NUM_HEMI_LIGHTS ];\n\tvec3 getHemisphereLightIrradiance( const in HemisphereLight hemiLight, const in GeometricContext geometry ) {\n\t\tfloat dotNL = dot( geometry.normal, hemiLight.direction );\n\t\tfloat hemiDiffuseWeight = 0.5 * dotNL + 0.5;\n\t\tvec3 irradiance = mix( hemiLight.groundColor, hemiLight.skyColor, hemiDiffuseWeight );\n\t\t#ifndef PHYSICALLY_CORRECT_LIGHTS\n\t\t\tirradiance *= PI;\n\t\t#endif\n\t\treturn irradiance;\n\t}\n#endif\n",
+lights_pars_maps:"#if defined( USE_ENVMAP ) && defined( PHYSICAL )\n\tvec3 getLightProbeIndirectIrradiance( const in GeometricContext geometry, const in int maxMIPLevel ) {\n\t\tvec3 worldNormal = inverseTransformDirection( geometry.normal, viewMatrix );\n\t\t#ifdef ENVMAP_TYPE_CUBE\n\t\t\tvec3 queryVec = vec3( flipEnvMap * worldNormal.x, worldNormal.yz );\n\t\t\t#ifdef TEXTURE_LOD_EXT\n\t\t\t\tvec4 envMapColor = textureCubeLodEXT( envMap, queryVec, float( maxMIPLevel ) );\n\t\t\t#else\n\t\t\t\tvec4 envMapColor = textureCube( envMap, queryVec, float( maxMIPLevel ) );\n\t\t\t#endif\n\t\t\tenvMapColor.rgb = envMapTexelToLinear( envMapColor ).rgb;\n\t\t#elif defined( ENVMAP_TYPE_CUBE_UV )\n\t\t\tvec3 queryVec = vec3( flipEnvMap * worldNormal.x, worldNormal.yz );\n\t\t\tvec4 envMapColor = textureCubeUV( queryVec, 1.0 );\n\t\t#else\n\t\t\tvec4 envMapColor = vec4( 0.0 );\n\t\t#endif\n\t\treturn PI * envMapColor.rgb * envMapIntensity;\n\t}\n\tfloat getSpecularMIPLevel( const in float blinnShininessExponent, const in int maxMIPLevel ) {\n\t\tfloat maxMIPLevelScalar = float( maxMIPLevel );\n\t\tfloat desiredMIPLevel = maxMIPLevelScalar + 0.79248 - 0.5 * log2( pow2( blinnShininessExponent ) + 1.0 );\n\t\treturn clamp( desiredMIPLevel, 0.0, maxMIPLevelScalar );\n\t}\n\tvec3 getLightProbeIndirectRadiance( const in GeometricContext geometry, const in float blinnShininessExponent, const in int maxMIPLevel ) {\n\t\t#ifdef ENVMAP_MODE_REFLECTION\n\t\t\tvec3 reflectVec = reflect( -geometry.viewDir, geometry.normal );\n\t\t#else\n\t\t\tvec3 reflectVec = refract( -geometry.viewDir, geometry.normal, refractionRatio );\n\t\t#endif\n\t\treflectVec = inverseTransformDirection( reflectVec, viewMatrix );\n\t\tfloat specularMIPLevel = getSpecularMIPLevel( blinnShininessExponent, maxMIPLevel );\n\t\t#ifdef ENVMAP_TYPE_CUBE\n\t\t\tvec3 queryReflectVec = vec3( flipEnvMap * reflectVec.x, reflectVec.yz );\n\t\t\t#ifdef TEXTURE_LOD_EXT\n\t\t\t\tvec4 envMapColor = textureCubeLodEXT( envMap, queryReflectVec, specularMIPLevel );\n\t\t\t#else\n\t\t\t\tvec4 envMapColor = textureCube( envMap, queryReflectVec, specularMIPLevel );\n\t\t\t#endif\n\t\t\tenvMapColor.rgb = envMapTexelToLinear( envMapColor ).rgb;\n\t\t#elif defined( ENVMAP_TYPE_CUBE_UV )\n\t\t\tvec3 queryReflectVec = vec3( flipEnvMap * reflectVec.x, reflectVec.yz );\n\t\t\tvec4 envMapColor = textureCubeUV(queryReflectVec, BlinnExponentToGGXRoughness(blinnShininessExponent));\n\t\t#elif defined( ENVMAP_TYPE_EQUIREC )\n\t\t\tvec2 sampleUV;\n\t\t\tsampleUV.y = asin( clamp( reflectVec.y, - 1.0, 1.0 ) ) * RECIPROCAL_PI + 0.5;\n\t\t\tsampleUV.x = atan( reflectVec.z, reflectVec.x ) * RECIPROCAL_PI2 + 0.5;\n\t\t\t#ifdef TEXTURE_LOD_EXT\n\t\t\t\tvec4 envMapColor = texture2DLodEXT( envMap, sampleUV, specularMIPLevel );\n\t\t\t#else\n\t\t\t\tvec4 envMapColor = texture2D( envMap, sampleUV, specularMIPLevel );\n\t\t\t#endif\n\t\t\tenvMapColor.rgb = envMapTexelToLinear( envMapColor ).rgb;\n\t\t#elif defined( ENVMAP_TYPE_SPHERE )\n\t\t\tvec3 reflectView = normalize( ( viewMatrix * vec4( reflectVec, 0.0 ) ).xyz + vec3( 0.0,0.0,1.0 ) );\n\t\t\t#ifdef TEXTURE_LOD_EXT\n\t\t\t\tvec4 envMapColor = texture2DLodEXT( envMap, reflectView.xy * 0.5 + 0.5, specularMIPLevel );\n\t\t\t#else\n\t\t\t\tvec4 envMapColor = texture2D( envMap, reflectView.xy * 0.5 + 0.5, specularMIPLevel );\n\t\t\t#endif\n\t\t\tenvMapColor.rgb = envMapTexelToLinear( envMapColor ).rgb;\n\t\t#endif\n\t\treturn envMapColor.rgb * envMapIntensity;\n\t}\n#endif\n",
+lights_phong_fragment:"BlinnPhongMaterial material;\nmaterial.diffuseColor = diffuseColor.rgb;\nmaterial.specularColor = specular;\nmaterial.specularShininess = shininess;\nmaterial.specularStrength = specularStrength;\n",lights_phong_pars_fragment:"varying vec3 vViewPosition;\n#ifndef FLAT_SHADED\n\tvarying vec3 vNormal;\n#endif\nstruct BlinnPhongMaterial {\n\tvec3\tdiffuseColor;\n\tvec3\tspecularColor;\n\tfloat\tspecularShininess;\n\tfloat\tspecularStrength;\n};\nvoid RE_Direct_BlinnPhong( const in IncidentLight directLight, const in GeometricContext geometry, const in BlinnPhongMaterial material, inout ReflectedLight reflectedLight ) {\n\t#ifdef TOON\n\t\tvec3 irradiance = getGradientIrradiance( geometry.normal, directLight.direction ) * directLight.color;\n\t#else\n\t\tfloat dotNL = saturate( dot( geometry.normal, directLight.direction ) );\n\t\tvec3 irradiance = dotNL * directLight.color;\n\t#endif\n\t#ifndef PHYSICALLY_CORRECT_LIGHTS\n\t\tirradiance *= PI;\n\t#endif\n\treflectedLight.directDiffuse += irradiance * BRDF_Diffuse_Lambert( material.diffuseColor );\n\treflectedLight.directSpecular += irradiance * BRDF_Specular_BlinnPhong( directLight, geometry, material.specularColor, material.specularShininess ) * material.specularStrength;\n}\nvoid RE_IndirectDiffuse_BlinnPhong( const in vec3 irradiance, const in GeometricContext geometry, const in BlinnPhongMaterial material, inout ReflectedLight reflectedLight ) {\n\treflectedLight.indirectDiffuse += irradiance * BRDF_Diffuse_Lambert( material.diffuseColor );\n}\n#define RE_Direct\t\t\t\tRE_Direct_BlinnPhong\n#define RE_IndirectDiffuse\t\tRE_IndirectDiffuse_BlinnPhong\n#define Material_LightProbeLOD( material )\t(0)\n",
+lights_physical_fragment:"PhysicalMaterial material;\nmaterial.diffuseColor = diffuseColor.rgb * ( 1.0 - metalnessFactor );\nmaterial.specularRoughness = clamp( roughnessFactor, 0.04, 1.0 );\n#ifdef STANDARD\n\tmaterial.specularColor = mix( vec3( DEFAULT_SPECULAR_COEFFICIENT ), diffuseColor.rgb, metalnessFactor );\n#else\n\tmaterial.specularColor = mix( vec3( MAXIMUM_SPECULAR_COEFFICIENT * pow2( reflectivity ) ), diffuseColor.rgb, metalnessFactor );\n\tmaterial.clearCoat = saturate( clearCoat );\tmaterial.clearCoatRoughness = clamp( clearCoatRoughness, 0.04, 1.0 );\n#endif\n",
+lights_physical_pars_fragment:"struct PhysicalMaterial {\n\tvec3\tdiffuseColor;\n\tfloat\tspecularRoughness;\n\tvec3\tspecularColor;\n\t#ifndef STANDARD\n\t\tfloat clearCoat;\n\t\tfloat clearCoatRoughness;\n\t#endif\n};\n#define MAXIMUM_SPECULAR_COEFFICIENT 0.16\n#define DEFAULT_SPECULAR_COEFFICIENT 0.04\nfloat clearCoatDHRApprox( const in float roughness, const in float dotNL ) {\n\treturn DEFAULT_SPECULAR_COEFFICIENT + ( 1.0 - DEFAULT_SPECULAR_COEFFICIENT ) * ( pow( 1.0 - dotNL, 5.0 ) * pow( 1.0 - roughness, 2.0 ) );\n}\n#if NUM_RECT_AREA_LIGHTS > 0\n\tvoid RE_Direct_RectArea_Physical( const in RectAreaLight rectAreaLight, const in GeometricContext geometry, const in PhysicalMaterial material, inout ReflectedLight reflectedLight ) {\n\t\tvec3 normal = geometry.normal;\n\t\tvec3 viewDir = geometry.viewDir;\n\t\tvec3 position = geometry.position;\n\t\tvec3 lightPos = rectAreaLight.position;\n\t\tvec3 halfWidth = rectAreaLight.halfWidth;\n\t\tvec3 halfHeight = rectAreaLight.halfHeight;\n\t\tvec3 lightColor = rectAreaLight.color;\n\t\tfloat roughness = material.specularRoughness;\n\t\tvec3 rectCoords[ 4 ];\n\t\trectCoords[ 0 ] = lightPos - halfWidth - halfHeight;\t\trectCoords[ 1 ] = lightPos + halfWidth - halfHeight;\n\t\trectCoords[ 2 ] = lightPos + halfWidth + halfHeight;\n\t\trectCoords[ 3 ] = lightPos - halfWidth + halfHeight;\n\t\tvec2 uv = LTC_Uv( normal, viewDir, roughness );\n\t\tvec4 t1 = texture2D( ltc_1, uv );\n\t\tvec4 t2 = texture2D( ltc_2, uv );\n\t\tmat3 mInv = mat3(\n\t\t\tvec3( t1.x, 0, t1.y ),\n\t\t\tvec3(    0, 1,    0 ),\n\t\t\tvec3( t1.z, 0, t1.w )\n\t\t);\n\t\tvec3 fresnel = ( material.specularColor * t2.x + ( vec3( 1.0 ) - material.specularColor ) * t2.y );\n\t\treflectedLight.directSpecular += lightColor * fresnel * LTC_Evaluate( normal, viewDir, position, mInv, rectCoords );\n\t\treflectedLight.directDiffuse += lightColor * material.diffuseColor * LTC_Evaluate( normal, viewDir, position, mat3( 1.0 ), rectCoords );\n\t}\n#endif\nvoid RE_Direct_Physical( const in IncidentLight directLight, const in GeometricContext geometry, const in PhysicalMaterial material, inout ReflectedLight reflectedLight ) {\n\tfloat dotNL = saturate( dot( geometry.normal, directLight.direction ) );\n\tvec3 irradiance = dotNL * directLight.color;\n\t#ifndef PHYSICALLY_CORRECT_LIGHTS\n\t\tirradiance *= PI;\n\t#endif\n\t#ifndef STANDARD\n\t\tfloat clearCoatDHR = material.clearCoat * clearCoatDHRApprox( material.clearCoatRoughness, dotNL );\n\t#else\n\t\tfloat clearCoatDHR = 0.0;\n\t#endif\n\treflectedLight.directSpecular += ( 1.0 - clearCoatDHR ) * irradiance * BRDF_Specular_GGX( directLight, geometry, material.specularColor, material.specularRoughness );\n\treflectedLight.directDiffuse += ( 1.0 - clearCoatDHR ) * irradiance * BRDF_Diffuse_Lambert( material.diffuseColor );\n\t#ifndef STANDARD\n\t\treflectedLight.directSpecular += irradiance * material.clearCoat * BRDF_Specular_GGX( directLight, geometry, vec3( DEFAULT_SPECULAR_COEFFICIENT ), material.clearCoatRoughness );\n\t#endif\n}\nvoid RE_IndirectDiffuse_Physical( const in vec3 irradiance, const in GeometricContext geometry, const in PhysicalMaterial material, inout ReflectedLight reflectedLight ) {\n\treflectedLight.indirectDiffuse += irradiance * BRDF_Diffuse_Lambert( material.diffuseColor );\n}\nvoid RE_IndirectSpecular_Physical( const in vec3 radiance, const in vec3 clearCoatRadiance, const in GeometricContext geometry, const in PhysicalMaterial material, inout ReflectedLight reflectedLight ) {\n\t#ifndef STANDARD\n\t\tfloat dotNV = saturate( dot( geometry.normal, geometry.viewDir ) );\n\t\tfloat dotNL = dotNV;\n\t\tfloat clearCoatDHR = material.clearCoat * clearCoatDHRApprox( material.clearCoatRoughness, dotNL );\n\t#else\n\t\tfloat clearCoatDHR = 0.0;\n\t#endif\n\treflectedLight.indirectSpecular += ( 1.0 - clearCoatDHR ) * radiance * BRDF_Specular_GGX_Environment( geometry, material.specularColor, material.specularRoughness );\n\t#ifndef STANDARD\n\t\treflectedLight.indirectSpecular += clearCoatRadiance * material.clearCoat * BRDF_Specular_GGX_Environment( geometry, vec3( DEFAULT_SPECULAR_COEFFICIENT ), material.clearCoatRoughness );\n\t#endif\n}\n#define RE_Direct\t\t\t\tRE_Direct_Physical\n#define RE_Direct_RectArea\t\tRE_Direct_RectArea_Physical\n#define RE_IndirectDiffuse\t\tRE_IndirectDiffuse_Physical\n#define RE_IndirectSpecular\t\tRE_IndirectSpecular_Physical\n#define Material_BlinnShininessExponent( material )   GGXRoughnessToBlinnExponent( material.specularRoughness )\n#define Material_ClearCoat_BlinnShininessExponent( material )   GGXRoughnessToBlinnExponent( material.clearCoatRoughness )\nfloat computeSpecularOcclusion( const in float dotNV, const in float ambientOcclusion, const in float roughness ) {\n\treturn saturate( pow( dotNV + ambientOcclusion, exp2( - 16.0 * roughness - 1.0 ) ) - 1.0 + ambientOcclusion );\n}\n",
+lights_fragment_begin:"\nGeometricContext geometry;\ngeometry.position = - vViewPosition;\ngeometry.normal = normal;\ngeometry.viewDir = normalize( vViewPosition );\nIncidentLight directLight;\n#if ( NUM_POINT_LIGHTS > 0 ) && defined( RE_Direct )\n\tPointLight pointLight;\n\t#pragma unroll_loop\n\tfor ( int i = 0; i < NUM_POINT_LIGHTS; i ++ ) {\n\t\tpointLight = pointLights[ i ];\n\t\tgetPointDirectLightIrradiance( pointLight, geometry, directLight );\n\t\t#ifdef USE_SHADOWMAP\n\t\tdirectLight.color *= all( bvec2( pointLight.shadow, directLight.visible ) ) ? getPointShadow( pointShadowMap[ i ], pointLight.shadowMapSize, pointLight.shadowBias, pointLight.shadowRadius, vPointShadowCoord[ i ], pointLight.shadowCameraNear, pointLight.shadowCameraFar ) : 1.0;\n\t\t#endif\n\t\tRE_Direct( directLight, geometry, material, reflectedLight );\n\t}\n#endif\n#if ( NUM_SPOT_LIGHTS > 0 ) && defined( RE_Direct )\n\tSpotLight spotLight;\n\t#pragma unroll_loop\n\tfor ( int i = 0; i < NUM_SPOT_LIGHTS; i ++ ) {\n\t\tspotLight = spotLights[ i ];\n\t\tgetSpotDirectLightIrradiance( spotLight, geometry, directLight );\n\t\t#ifdef USE_SHADOWMAP\n\t\tdirectLight.color *= all( bvec2( spotLight.shadow, directLight.visible ) ) ? getShadow( spotShadowMap[ i ], spotLight.shadowMapSize, spotLight.shadowBias, spotLight.shadowRadius, vSpotShadowCoord[ i ] ) : 1.0;\n\t\t#endif\n\t\tRE_Direct( directLight, geometry, material, reflectedLight );\n\t}\n#endif\n#if ( NUM_DIR_LIGHTS > 0 ) && defined( RE_Direct )\n\tDirectionalLight directionalLight;\n\t#pragma unroll_loop\n\tfor ( int i = 0; i < NUM_DIR_LIGHTS; i ++ ) {\n\t\tdirectionalLight = directionalLights[ i ];\n\t\tgetDirectionalDirectLightIrradiance( directionalLight, geometry, directLight );\n\t\t#ifdef USE_SHADOWMAP\n\t\tdirectLight.color *= all( bvec2( directionalLight.shadow, directLight.visible ) ) ? getShadow( directionalShadowMap[ i ], directionalLight.shadowMapSize, directionalLight.shadowBias, directionalLight.shadowRadius, vDirectionalShadowCoord[ i ] ) : 1.0;\n\t\t#endif\n\t\tRE_Direct( directLight, geometry, material, reflectedLight );\n\t}\n#endif\n#if ( NUM_RECT_AREA_LIGHTS > 0 ) && defined( RE_Direct_RectArea )\n\tRectAreaLight rectAreaLight;\n\t#pragma unroll_loop\n\tfor ( int i = 0; i < NUM_RECT_AREA_LIGHTS; i ++ ) {\n\t\trectAreaLight = rectAreaLights[ i ];\n\t\tRE_Direct_RectArea( rectAreaLight, geometry, material, reflectedLight );\n\t}\n#endif\n#if defined( RE_IndirectDiffuse )\n\tvec3 irradiance = getAmbientLightIrradiance( ambientLightColor );\n\t#if ( NUM_HEMI_LIGHTS > 0 )\n\t\t#pragma unroll_loop\n\t\tfor ( int i = 0; i < NUM_HEMI_LIGHTS; i ++ ) {\n\t\t\tirradiance += getHemisphereLightIrradiance( hemisphereLights[ i ], geometry );\n\t\t}\n\t#endif\n#endif\n#if defined( RE_IndirectSpecular )\n\tvec3 radiance = vec3( 0.0 );\n\tvec3 clearCoatRadiance = vec3( 0.0 );\n#endif\n",
+lights_fragment_maps:"#if defined( RE_IndirectDiffuse )\n\t#ifdef USE_LIGHTMAP\n\t\tvec3 lightMapIrradiance = texture2D( lightMap, vUv2 ).xyz * lightMapIntensity;\n\t\t#ifndef PHYSICALLY_CORRECT_LIGHTS\n\t\t\tlightMapIrradiance *= PI;\n\t\t#endif\n\t\tirradiance += lightMapIrradiance;\n\t#endif\n\t#if defined( USE_ENVMAP ) && defined( PHYSICAL ) && defined( ENVMAP_TYPE_CUBE_UV )\n\t\tirradiance += getLightProbeIndirectIrradiance( geometry, maxMipLevel );\n\t#endif\n#endif\n#if defined( USE_ENVMAP ) && defined( RE_IndirectSpecular )\n\tradiance += getLightProbeIndirectRadiance( geometry, Material_BlinnShininessExponent( material ), maxMipLevel );\n\t#ifndef STANDARD\n\t\tclearCoatRadiance += getLightProbeIndirectRadiance( geometry, Material_ClearCoat_BlinnShininessExponent( material ), maxMipLevel );\n\t#endif\n#endif\n",
+lights_fragment_end:"#if defined( RE_IndirectDiffuse )\n\tRE_IndirectDiffuse( irradiance, geometry, material, reflectedLight );\n#endif\n#if defined( RE_IndirectSpecular )\n\tRE_IndirectSpecular( radiance, clearCoatRadiance, geometry, material, reflectedLight );\n#endif\n",logdepthbuf_fragment:"#if defined( USE_LOGDEPTHBUF ) && defined( USE_LOGDEPTHBUF_EXT )\n\tgl_FragDepthEXT = log2( vFragDepth ) * logDepthBufFC * 0.5;\n#endif",logdepthbuf_pars_fragment:"#ifdef USE_LOGDEPTHBUF\n\tuniform float logDepthBufFC;\n\t#ifdef USE_LOGDEPTHBUF_EXT\n\t\tvarying float vFragDepth;\n\t#endif\n#endif\n",
+logdepthbuf_pars_vertex:"#ifdef USE_LOGDEPTHBUF\n\t#ifdef USE_LOGDEPTHBUF_EXT\n\t\tvarying float vFragDepth;\n\t#endif\n\tuniform float logDepthBufFC;\n#endif",logdepthbuf_vertex:"#ifdef USE_LOGDEPTHBUF\n\t#ifdef USE_LOGDEPTHBUF_EXT\n\t\tvFragDepth = 1.0 + gl_Position.w;\n\t#else\n\t\tgl_Position.z = log2( max( EPSILON, gl_Position.w + 1.0 ) ) * logDepthBufFC - 1.0;\n\t\tgl_Position.z *= gl_Position.w;\n\t#endif\n#endif\n",map_fragment:"#ifdef USE_MAP\n\tvec4 texelColor = texture2D( map, vUv );\n\ttexelColor = mapTexelToLinear( texelColor );\n\tdiffuseColor *= texelColor;\n#endif\n",
+map_pars_fragment:"#ifdef USE_MAP\n\tuniform sampler2D map;\n#endif\n",map_particle_fragment:"#ifdef USE_MAP\n\tvec2 uv = ( uvTransform * vec3( gl_PointCoord.x, 1.0 - gl_PointCoord.y, 1 ) ).xy;\n\tvec4 mapTexel = texture2D( map, uv );\n\tdiffuseColor *= mapTexelToLinear( mapTexel );\n#endif\n",map_particle_pars_fragment:"#ifdef USE_MAP\n\tuniform mat3 uvTransform;\n\tuniform sampler2D map;\n#endif\n",metalnessmap_fragment:"float metalnessFactor = metalness;\n#ifdef USE_METALNESSMAP\n\tvec4 texelMetalness = texture2D( metalnessMap, vUv );\n\tmetalnessFactor *= texelMetalness.b;\n#endif\n",
+metalnessmap_pars_fragment:"#ifdef USE_METALNESSMAP\n\tuniform sampler2D metalnessMap;\n#endif",morphnormal_vertex:"#ifdef USE_MORPHNORMALS\n\tobjectNormal += ( morphNormal0 - normal ) * morphTargetInfluences[ 0 ];\n\tobjectNormal += ( morphNormal1 - normal ) * morphTargetInfluences[ 1 ];\n\tobjectNormal += ( morphNormal2 - normal ) * morphTargetInfluences[ 2 ];\n\tobjectNormal += ( morphNormal3 - normal ) * morphTargetInfluences[ 3 ];\n#endif\n",morphtarget_pars_vertex:"#ifdef USE_MORPHTARGETS\n\t#ifndef USE_MORPHNORMALS\n\tuniform float morphTargetInfluences[ 8 ];\n\t#else\n\tuniform float morphTargetInfluences[ 4 ];\n\t#endif\n#endif",
+morphtarget_vertex:"#ifdef USE_MORPHTARGETS\n\ttransformed += ( morphTarget0 - position ) * morphTargetInfluences[ 0 ];\n\ttransformed += ( morphTarget1 - position ) * morphTargetInfluences[ 1 ];\n\ttransformed += ( morphTarget2 - position ) * morphTargetInfluences[ 2 ];\n\ttransformed += ( morphTarget3 - position ) * morphTargetInfluences[ 3 ];\n\t#ifndef USE_MORPHNORMALS\n\ttransformed += ( morphTarget4 - position ) * morphTargetInfluences[ 4 ];\n\ttransformed += ( morphTarget5 - position ) * morphTargetInfluences[ 5 ];\n\ttransformed += ( morphTarget6 - position ) * morphTargetInfluences[ 6 ];\n\ttransformed += ( morphTarget7 - position ) * morphTargetInfluences[ 7 ];\n\t#endif\n#endif\n",
+normal_fragment_begin:"#ifdef FLAT_SHADED\n\tvec3 fdx = vec3( dFdx( vViewPosition.x ), dFdx( vViewPosition.y ), dFdx( vViewPosition.z ) );\n\tvec3 fdy = vec3( dFdy( vViewPosition.x ), dFdy( vViewPosition.y ), dFdy( vViewPosition.z ) );\n\tvec3 normal = normalize( cross( fdx, fdy ) );\n#else\n\tvec3 normal = normalize( vNormal );\n\t#ifdef DOUBLE_SIDED\n\t\tnormal = normal * ( float( gl_FrontFacing ) * 2.0 - 1.0 );\n\t#endif\n#endif\n",normal_fragment_maps:"#ifdef USE_NORMALMAP\n\tnormal = perturbNormal2Arb( -vViewPosition, normal );\n#elif defined( USE_BUMPMAP )\n\tnormal = perturbNormalArb( -vViewPosition, normal, dHdxy_fwd() );\n#endif\n",
+normalmap_pars_fragment:"#ifdef USE_NORMALMAP\n\tuniform sampler2D normalMap;\n\tuniform vec2 normalScale;\n\tvec3 perturbNormal2Arb( vec3 eye_pos, vec3 surf_norm ) {\n\t\tvec3 q0 = vec3( dFdx( eye_pos.x ), dFdx( eye_pos.y ), dFdx( eye_pos.z ) );\n\t\tvec3 q1 = vec3( dFdy( eye_pos.x ), dFdy( eye_pos.y ), dFdy( eye_pos.z ) );\n\t\tvec2 st0 = dFdx( vUv.st );\n\t\tvec2 st1 = dFdy( vUv.st );\n\t\tvec3 S = normalize( q0 * st1.t - q1 * st0.t );\n\t\tvec3 T = normalize( -q0 * st1.s + q1 * st0.s );\n\t\tvec3 N = normalize( surf_norm );\n\t\tvec3 mapN = texture2D( normalMap, vUv ).xyz * 2.0 - 1.0;\n\t\tmapN.xy = normalScale * mapN.xy;\n\t\tmat3 tsn = mat3( S, T, N );\n\t\treturn normalize( tsn * mapN );\n\t}\n#endif\n",
+packing:"vec3 packNormalToRGB( const in vec3 normal ) {\n\treturn normalize( normal ) * 0.5 + 0.5;\n}\nvec3 unpackRGBToNormal( const in vec3 rgb ) {\n\treturn 2.0 * rgb.xyz - 1.0;\n}\nconst float PackUpscale = 256. / 255.;const float UnpackDownscale = 255. / 256.;\nconst vec3 PackFactors = vec3( 256. * 256. * 256., 256. * 256.,  256. );\nconst vec4 UnpackFactors = UnpackDownscale / vec4( PackFactors, 1. );\nconst float ShiftRight8 = 1. / 256.;\nvec4 packDepthToRGBA( const in float v ) {\n\tvec4 r = vec4( fract( v * PackFactors ), v );\n\tr.yzw -= r.xyz * ShiftRight8;\treturn r * PackUpscale;\n}\nfloat unpackRGBAToDepth( const in vec4 v ) {\n\treturn dot( v, UnpackFactors );\n}\nfloat viewZToOrthographicDepth( const in float viewZ, const in float near, const in float far ) {\n\treturn ( viewZ + near ) / ( near - far );\n}\nfloat orthographicDepthToViewZ( const in float linearClipZ, const in float near, const in float far ) {\n\treturn linearClipZ * ( near - far ) - near;\n}\nfloat viewZToPerspectiveDepth( const in float viewZ, const in float near, const in float far ) {\n\treturn (( near + viewZ ) * far ) / (( far - near ) * viewZ );\n}\nfloat perspectiveDepthToViewZ( const in float invClipZ, const in float near, const in float far ) {\n\treturn ( near * far ) / ( ( far - near ) * invClipZ - far );\n}\n",
+premultiplied_alpha_fragment:"#ifdef PREMULTIPLIED_ALPHA\n\tgl_FragColor.rgb *= gl_FragColor.a;\n#endif\n",project_vertex:"vec4 mvPosition = modelViewMatrix * vec4( transformed, 1.0 );\ngl_Position = projectionMatrix * mvPosition;\n",dithering_fragment:"#if defined( DITHERING )\n  gl_FragColor.rgb = dithering( gl_FragColor.rgb );\n#endif\n",dithering_pars_fragment:"#if defined( DITHERING )\n\tvec3 dithering( vec3 color ) {\n\t\tfloat grid_position = rand( gl_FragCoord.xy );\n\t\tvec3 dither_shift_RGB = vec3( 0.25 / 255.0, -0.25 / 255.0, 0.25 / 255.0 );\n\t\tdither_shift_RGB = mix( 2.0 * dither_shift_RGB, -2.0 * dither_shift_RGB, grid_position );\n\t\treturn color + dither_shift_RGB;\n\t}\n#endif\n",
+roughnessmap_fragment:"float roughnessFactor = roughness;\n#ifdef USE_ROUGHNESSMAP\n\tvec4 texelRoughness = texture2D( roughnessMap, vUv );\n\troughnessFactor *= texelRoughness.g;\n#endif\n",roughnessmap_pars_fragment:"#ifdef USE_ROUGHNESSMAP\n\tuniform sampler2D roughnessMap;\n#endif",shadowmap_pars_fragment:"#ifdef USE_SHADOWMAP\n\t#if NUM_DIR_LIGHTS > 0\n\t\tuniform sampler2D directionalShadowMap[ NUM_DIR_LIGHTS ];\n\t\tvarying vec4 vDirectionalShadowCoord[ NUM_DIR_LIGHTS ];\n\t#endif\n\t#if NUM_SPOT_LIGHTS > 0\n\t\tuniform sampler2D spotShadowMap[ NUM_SPOT_LIGHTS ];\n\t\tvarying vec4 vSpotShadowCoord[ NUM_SPOT_LIGHTS ];\n\t#endif\n\t#if NUM_POINT_LIGHTS > 0\n\t\tuniform sampler2D pointShadowMap[ NUM_POINT_LIGHTS ];\n\t\tvarying vec4 vPointShadowCoord[ NUM_POINT_LIGHTS ];\n\t#endif\n\tfloat texture2DCompare( sampler2D depths, vec2 uv, float compare ) {\n\t\treturn step( compare, unpackRGBAToDepth( texture2D( depths, uv ) ) );\n\t}\n\tfloat texture2DShadowLerp( sampler2D depths, vec2 size, vec2 uv, float compare ) {\n\t\tconst vec2 offset = vec2( 0.0, 1.0 );\n\t\tvec2 texelSize = vec2( 1.0 ) / size;\n\t\tvec2 centroidUV = floor( uv * size + 0.5 ) / size;\n\t\tfloat lb = texture2DCompare( depths, centroidUV + texelSize * offset.xx, compare );\n\t\tfloat lt = texture2DCompare( depths, centroidUV + texelSize * offset.xy, compare );\n\t\tfloat rb = texture2DCompare( depths, centroidUV + texelSize * offset.yx, compare );\n\t\tfloat rt = texture2DCompare( depths, centroidUV + texelSize * offset.yy, compare );\n\t\tvec2 f = fract( uv * size + 0.5 );\n\t\tfloat a = mix( lb, lt, f.y );\n\t\tfloat b = mix( rb, rt, f.y );\n\t\tfloat c = mix( a, b, f.x );\n\t\treturn c;\n\t}\n\tfloat getShadow( sampler2D shadowMap, vec2 shadowMapSize, float shadowBias, float shadowRadius, vec4 shadowCoord ) {\n\t\tfloat shadow = 1.0;\n\t\tshadowCoord.xyz /= shadowCoord.w;\n\t\tshadowCoord.z += shadowBias;\n\t\tbvec4 inFrustumVec = bvec4 ( shadowCoord.x >= 0.0, shadowCoord.x <= 1.0, shadowCoord.y >= 0.0, shadowCoord.y <= 1.0 );\n\t\tbool inFrustum = all( inFrustumVec );\n\t\tbvec2 frustumTestVec = bvec2( inFrustum, shadowCoord.z <= 1.0 );\n\t\tbool frustumTest = all( frustumTestVec );\n\t\tif ( frustumTest ) {\n\t\t#if defined( SHADOWMAP_TYPE_PCF )\n\t\t\tvec2 texelSize = vec2( 1.0 ) / shadowMapSize;\n\t\t\tfloat dx0 = - texelSize.x * shadowRadius;\n\t\t\tfloat dy0 = - texelSize.y * shadowRadius;\n\t\t\tfloat dx1 = + texelSize.x * shadowRadius;\n\t\t\tfloat dy1 = + texelSize.y * shadowRadius;\n\t\t\tshadow = (\n\t\t\t\ttexture2DCompare( shadowMap, shadowCoord.xy + vec2( dx0, dy0 ), shadowCoord.z ) +\n\t\t\t\ttexture2DCompare( shadowMap, shadowCoord.xy + vec2( 0.0, dy0 ), shadowCoord.z ) +\n\t\t\t\ttexture2DCompare( shadowMap, shadowCoord.xy + vec2( dx1, dy0 ), shadowCoord.z ) +\n\t\t\t\ttexture2DCompare( shadowMap, shadowCoord.xy + vec2( dx0, 0.0 ), shadowCoord.z ) +\n\t\t\t\ttexture2DCompare( shadowMap, shadowCoord.xy, shadowCoord.z ) +\n\t\t\t\ttexture2DCompare( shadowMap, shadowCoord.xy + vec2( dx1, 0.0 ), shadowCoord.z ) +\n\t\t\t\ttexture2DCompare( shadowMap, shadowCoord.xy + vec2( dx0, dy1 ), shadowCoord.z ) +\n\t\t\t\ttexture2DCompare( shadowMap, shadowCoord.xy + vec2( 0.0, dy1 ), shadowCoord.z ) +\n\t\t\t\ttexture2DCompare( shadowMap, shadowCoord.xy + vec2( dx1, dy1 ), shadowCoord.z )\n\t\t\t) * ( 1.0 / 9.0 );\n\t\t#elif defined( SHADOWMAP_TYPE_PCF_SOFT )\n\t\t\tvec2 texelSize = vec2( 1.0 ) / shadowMapSize;\n\t\t\tfloat dx0 = - texelSize.x * shadowRadius;\n\t\t\tfloat dy0 = - texelSize.y * shadowRadius;\n\t\t\tfloat dx1 = + texelSize.x * shadowRadius;\n\t\t\tfloat dy1 = + texelSize.y * shadowRadius;\n\t\t\tshadow = (\n\t\t\t\ttexture2DShadowLerp( shadowMap, shadowMapSize, shadowCoord.xy + vec2( dx0, dy0 ), shadowCoord.z ) +\n\t\t\t\ttexture2DShadowLerp( shadowMap, shadowMapSize, shadowCoord.xy + vec2( 0.0, dy0 ), shadowCoord.z ) +\n\t\t\t\ttexture2DShadowLerp( shadowMap, shadowMapSize, shadowCoord.xy + vec2( dx1, dy0 ), shadowCoord.z ) +\n\t\t\t\ttexture2DShadowLerp( shadowMap, shadowMapSize, shadowCoord.xy + vec2( dx0, 0.0 ), shadowCoord.z ) +\n\t\t\t\ttexture2DShadowLerp( shadowMap, shadowMapSize, shadowCoord.xy, shadowCoord.z ) +\n\t\t\t\ttexture2DShadowLerp( shadowMap, shadowMapSize, shadowCoord.xy + vec2( dx1, 0.0 ), shadowCoord.z ) +\n\t\t\t\ttexture2DShadowLerp( shadowMap, shadowMapSize, shadowCoord.xy + vec2( dx0, dy1 ), shadowCoord.z ) +\n\t\t\t\ttexture2DShadowLerp( shadowMap, shadowMapSize, shadowCoord.xy + vec2( 0.0, dy1 ), shadowCoord.z ) +\n\t\t\t\ttexture2DShadowLerp( shadowMap, shadowMapSize, shadowCoord.xy + vec2( dx1, dy1 ), shadowCoord.z )\n\t\t\t) * ( 1.0 / 9.0 );\n\t\t#else\n\t\t\tshadow = texture2DCompare( shadowMap, shadowCoord.xy, shadowCoord.z );\n\t\t#endif\n\t\t}\n\t\treturn shadow;\n\t}\n\tvec2 cubeToUV( vec3 v, float texelSizeY ) {\n\t\tvec3 absV = abs( v );\n\t\tfloat scaleToCube = 1.0 / max( absV.x, max( absV.y, absV.z ) );\n\t\tabsV *= scaleToCube;\n\t\tv *= scaleToCube * ( 1.0 - 2.0 * texelSizeY );\n\t\tvec2 planar = v.xy;\n\t\tfloat almostATexel = 1.5 * texelSizeY;\n\t\tfloat almostOne = 1.0 - almostATexel;\n\t\tif ( absV.z >= almostOne ) {\n\t\t\tif ( v.z > 0.0 )\n\t\t\t\tplanar.x = 4.0 - v.x;\n\t\t} else if ( absV.x >= almostOne ) {\n\t\t\tfloat signX = sign( v.x );\n\t\t\tplanar.x = v.z * signX + 2.0 * signX;\n\t\t} else if ( absV.y >= almostOne ) {\n\t\t\tfloat signY = sign( v.y );\n\t\t\tplanar.x = v.x + 2.0 * signY + 2.0;\n\t\t\tplanar.y = v.z * signY - 2.0;\n\t\t}\n\t\treturn vec2( 0.125, 0.25 ) * planar + vec2( 0.375, 0.75 );\n\t}\n\tfloat getPointShadow( sampler2D shadowMap, vec2 shadowMapSize, float shadowBias, float shadowRadius, vec4 shadowCoord, float shadowCameraNear, float shadowCameraFar ) {\n\t\tvec2 texelSize = vec2( 1.0 ) / ( shadowMapSize * vec2( 4.0, 2.0 ) );\n\t\tvec3 lightToPosition = shadowCoord.xyz;\n\t\tfloat dp = ( length( lightToPosition ) - shadowCameraNear ) / ( shadowCameraFar - shadowCameraNear );\t\tdp += shadowBias;\n\t\tvec3 bd3D = normalize( lightToPosition );\n\t\t#if defined( SHADOWMAP_TYPE_PCF ) || defined( SHADOWMAP_TYPE_PCF_SOFT )\n\t\t\tvec2 offset = vec2( - 1, 1 ) * shadowRadius * texelSize.y;\n\t\t\treturn (\n\t\t\t\ttexture2DCompare( shadowMap, cubeToUV( bd3D + offset.xyy, texelSize.y ), dp ) +\n\t\t\t\ttexture2DCompare( shadowMap, cubeToUV( bd3D + offset.yyy, texelSize.y ), dp ) +\n\t\t\t\ttexture2DCompare( shadowMap, cubeToUV( bd3D + offset.xyx, texelSize.y ), dp ) +\n\t\t\t\ttexture2DCompare( shadowMap, cubeToUV( bd3D + offset.yyx, texelSize.y ), dp ) +\n\t\t\t\ttexture2DCompare( shadowMap, cubeToUV( bd3D, texelSize.y ), dp ) +\n\t\t\t\ttexture2DCompare( shadowMap, cubeToUV( bd3D + offset.xxy, texelSize.y ), dp ) +\n\t\t\t\ttexture2DCompare( shadowMap, cubeToUV( bd3D + offset.yxy, texelSize.y ), dp ) +\n\t\t\t\ttexture2DCompare( shadowMap, cubeToUV( bd3D + offset.xxx, texelSize.y ), dp ) +\n\t\t\t\ttexture2DCompare( shadowMap, cubeToUV( bd3D + offset.yxx, texelSize.y ), dp )\n\t\t\t) * ( 1.0 / 9.0 );\n\t\t#else\n\t\t\treturn texture2DCompare( shadowMap, cubeToUV( bd3D, texelSize.y ), dp );\n\t\t#endif\n\t}\n#endif\n",
+shadowmap_pars_vertex:"#ifdef USE_SHADOWMAP\n\t#if NUM_DIR_LIGHTS > 0\n\t\tuniform mat4 directionalShadowMatrix[ NUM_DIR_LIGHTS ];\n\t\tvarying vec4 vDirectionalShadowCoord[ NUM_DIR_LIGHTS ];\n\t#endif\n\t#if NUM_SPOT_LIGHTS > 0\n\t\tuniform mat4 spotShadowMatrix[ NUM_SPOT_LIGHTS ];\n\t\tvarying vec4 vSpotShadowCoord[ NUM_SPOT_LIGHTS ];\n\t#endif\n\t#if NUM_POINT_LIGHTS > 0\n\t\tuniform mat4 pointShadowMatrix[ NUM_POINT_LIGHTS ];\n\t\tvarying vec4 vPointShadowCoord[ NUM_POINT_LIGHTS ];\n\t#endif\n#endif\n",
+shadowmap_vertex:"#ifdef USE_SHADOWMAP\n\t#if NUM_DIR_LIGHTS > 0\n\t#pragma unroll_loop\n\tfor ( int i = 0; i < NUM_DIR_LIGHTS; i ++ ) {\n\t\tvDirectionalShadowCoord[ i ] = directionalShadowMatrix[ i ] * worldPosition;\n\t}\n\t#endif\n\t#if NUM_SPOT_LIGHTS > 0\n\t#pragma unroll_loop\n\tfor ( int i = 0; i < NUM_SPOT_LIGHTS; i ++ ) {\n\t\tvSpotShadowCoord[ i ] = spotShadowMatrix[ i ] * worldPosition;\n\t}\n\t#endif\n\t#if NUM_POINT_LIGHTS > 0\n\t#pragma unroll_loop\n\tfor ( int i = 0; i < NUM_POINT_LIGHTS; i ++ ) {\n\t\tvPointShadowCoord[ i ] = pointShadowMatrix[ i ] * worldPosition;\n\t}\n\t#endif\n#endif\n",
+shadowmask_pars_fragment:"float getShadowMask() {\n\tfloat shadow = 1.0;\n\t#ifdef USE_SHADOWMAP\n\t#if NUM_DIR_LIGHTS > 0\n\tDirectionalLight directionalLight;\n\t#pragma unroll_loop\n\tfor ( int i = 0; i < NUM_DIR_LIGHTS; i ++ ) {\n\t\tdirectionalLight = directionalLights[ i ];\n\t\tshadow *= bool( directionalLight.shadow ) ? getShadow( directionalShadowMap[ i ], directionalLight.shadowMapSize, directionalLight.shadowBias, directionalLight.shadowRadius, vDirectionalShadowCoord[ i ] ) : 1.0;\n\t}\n\t#endif\n\t#if NUM_SPOT_LIGHTS > 0\n\tSpotLight spotLight;\n\t#pragma unroll_loop\n\tfor ( int i = 0; i < NUM_SPOT_LIGHTS; i ++ ) {\n\t\tspotLight = spotLights[ i ];\n\t\tshadow *= bool( spotLight.shadow ) ? getShadow( spotShadowMap[ i ], spotLight.shadowMapSize, spotLight.shadowBias, spotLight.shadowRadius, vSpotShadowCoord[ i ] ) : 1.0;\n\t}\n\t#endif\n\t#if NUM_POINT_LIGHTS > 0\n\tPointLight pointLight;\n\t#pragma unroll_loop\n\tfor ( int i = 0; i < NUM_POINT_LIGHTS; i ++ ) {\n\t\tpointLight = pointLights[ i ];\n\t\tshadow *= bool( pointLight.shadow ) ? getPointShadow( pointShadowMap[ i ], pointLight.shadowMapSize, pointLight.shadowBias, pointLight.shadowRadius, vPointShadowCoord[ i ], pointLight.shadowCameraNear, pointLight.shadowCameraFar ) : 1.0;\n\t}\n\t#endif\n\t#endif\n\treturn shadow;\n}\n",
+skinbase_vertex:"#ifdef USE_SKINNING\n\tmat4 boneMatX = getBoneMatrix( skinIndex.x );\n\tmat4 boneMatY = getBoneMatrix( skinIndex.y );\n\tmat4 boneMatZ = getBoneMatrix( skinIndex.z );\n\tmat4 boneMatW = getBoneMatrix( skinIndex.w );\n#endif",skinning_pars_vertex:"#ifdef USE_SKINNING\n\tuniform mat4 bindMatrix;\n\tuniform mat4 bindMatrixInverse;\n\t#ifdef BONE_TEXTURE\n\t\tuniform sampler2D boneTexture;\n\t\tuniform int boneTextureSize;\n\t\tmat4 getBoneMatrix( const in float i ) {\n\t\t\tfloat j = i * 4.0;\n\t\t\tfloat x = mod( j, float( boneTextureSize ) );\n\t\t\tfloat y = floor( j / float( boneTextureSize ) );\n\t\t\tfloat dx = 1.0 / float( boneTextureSize );\n\t\t\tfloat dy = 1.0 / float( boneTextureSize );\n\t\t\ty = dy * ( y + 0.5 );\n\t\t\tvec4 v1 = texture2D( boneTexture, vec2( dx * ( x + 0.5 ), y ) );\n\t\t\tvec4 v2 = texture2D( boneTexture, vec2( dx * ( x + 1.5 ), y ) );\n\t\t\tvec4 v3 = texture2D( boneTexture, vec2( dx * ( x + 2.5 ), y ) );\n\t\t\tvec4 v4 = texture2D( boneTexture, vec2( dx * ( x + 3.5 ), y ) );\n\t\t\tmat4 bone = mat4( v1, v2, v3, v4 );\n\t\t\treturn bone;\n\t\t}\n\t#else\n\t\tuniform mat4 boneMatrices[ MAX_BONES ];\n\t\tmat4 getBoneMatrix( const in float i ) {\n\t\t\tmat4 bone = boneMatrices[ int(i) ];\n\t\t\treturn bone;\n\t\t}\n\t#endif\n#endif\n",
+skinning_vertex:"#ifdef USE_SKINNING\n\tvec4 skinVertex = bindMatrix * vec4( transformed, 1.0 );\n\tvec4 skinned = vec4( 0.0 );\n\tskinned += boneMatX * skinVertex * skinWeight.x;\n\tskinned += boneMatY * skinVertex * skinWeight.y;\n\tskinned += boneMatZ * skinVertex * skinWeight.z;\n\tskinned += boneMatW * skinVertex * skinWeight.w;\n\ttransformed = ( bindMatrixInverse * skinned ).xyz;\n#endif\n",skinnormal_vertex:"#ifdef USE_SKINNING\n\tmat4 skinMatrix = mat4( 0.0 );\n\tskinMatrix += skinWeight.x * boneMatX;\n\tskinMatrix += skinWeight.y * boneMatY;\n\tskinMatrix += skinWeight.z * boneMatZ;\n\tskinMatrix += skinWeight.w * boneMatW;\n\tskinMatrix  = bindMatrixInverse * skinMatrix * bindMatrix;\n\tobjectNormal = vec4( skinMatrix * vec4( objectNormal, 0.0 ) ).xyz;\n#endif\n",
+specularmap_fragment:"float specularStrength;\n#ifdef USE_SPECULARMAP\n\tvec4 texelSpecular = texture2D( specularMap, vUv );\n\tspecularStrength = texelSpecular.r;\n#else\n\tspecularStrength = 1.0;\n#endif",specularmap_pars_fragment:"#ifdef USE_SPECULARMAP\n\tuniform sampler2D specularMap;\n#endif",tonemapping_fragment:"#if defined( TONE_MAPPING )\n  gl_FragColor.rgb = toneMapping( gl_FragColor.rgb );\n#endif\n",tonemapping_pars_fragment:"#ifndef saturate\n\t#define saturate(a) clamp( a, 0.0, 1.0 )\n#endif\nuniform float toneMappingExposure;\nuniform float toneMappingWhitePoint;\nvec3 LinearToneMapping( vec3 color ) {\n\treturn toneMappingExposure * color;\n}\nvec3 ReinhardToneMapping( vec3 color ) {\n\tcolor *= toneMappingExposure;\n\treturn saturate( color / ( vec3( 1.0 ) + color ) );\n}\n#define Uncharted2Helper( x ) max( ( ( x * ( 0.15 * x + 0.10 * 0.50 ) + 0.20 * 0.02 ) / ( x * ( 0.15 * x + 0.50 ) + 0.20 * 0.30 ) ) - 0.02 / 0.30, vec3( 0.0 ) )\nvec3 Uncharted2ToneMapping( vec3 color ) {\n\tcolor *= toneMappingExposure;\n\treturn saturate( Uncharted2Helper( color ) / Uncharted2Helper( vec3( toneMappingWhitePoint ) ) );\n}\nvec3 OptimizedCineonToneMapping( vec3 color ) {\n\tcolor *= toneMappingExposure;\n\tcolor = max( vec3( 0.0 ), color - 0.004 );\n\treturn pow( ( color * ( 6.2 * color + 0.5 ) ) / ( color * ( 6.2 * color + 1.7 ) + 0.06 ), vec3( 2.2 ) );\n}\n",
+uv_pars_fragment:"#if defined( USE_MAP ) || defined( USE_BUMPMAP ) || defined( USE_NORMALMAP ) || defined( USE_SPECULARMAP ) || defined( USE_ALPHAMAP ) || defined( USE_EMISSIVEMAP ) || defined( USE_ROUGHNESSMAP ) || defined( USE_METALNESSMAP )\n\tvarying vec2 vUv;\n#endif",uv_pars_vertex:"#if defined( USE_MAP ) || defined( USE_BUMPMAP ) || defined( USE_NORMALMAP ) || defined( USE_SPECULARMAP ) || defined( USE_ALPHAMAP ) || defined( USE_EMISSIVEMAP ) || defined( USE_ROUGHNESSMAP ) || defined( USE_METALNESSMAP )\n\tvarying vec2 vUv;\n\tuniform mat3 uvTransform;\n#endif\n",
+uv_vertex:"#if defined( USE_MAP ) || defined( USE_BUMPMAP ) || defined( USE_NORMALMAP ) || defined( USE_SPECULARMAP ) || defined( USE_ALPHAMAP ) || defined( USE_EMISSIVEMAP ) || defined( USE_ROUGHNESSMAP ) || defined( USE_METALNESSMAP )\n\tvUv = ( uvTransform * vec3( uv, 1 ) ).xy;\n#endif",uv2_pars_fragment:"#if defined( USE_LIGHTMAP ) || defined( USE_AOMAP )\n\tvarying vec2 vUv2;\n#endif",uv2_pars_vertex:"#if defined( USE_LIGHTMAP ) || defined( USE_AOMAP )\n\tattribute vec2 uv2;\n\tvarying vec2 vUv2;\n#endif",
+uv2_vertex:"#if defined( USE_LIGHTMAP ) || defined( USE_AOMAP )\n\tvUv2 = uv2;\n#endif",worldpos_vertex:"#if defined( USE_ENVMAP ) || defined( DISTANCE ) || defined ( USE_SHADOWMAP )\n\tvec4 worldPosition = modelMatrix * vec4( transformed, 1.0 );\n#endif\n",cube_frag:"uniform samplerCube tCube;\nuniform float tFlip;\nuniform float opacity;\nvarying vec3 vWorldPosition;\nvoid main() {\n\tgl_FragColor = textureCube( tCube, vec3( tFlip * vWorldPosition.x, vWorldPosition.yz ) );\n\tgl_FragColor.a *= opacity;\n}\n",
+cube_vert:"varying vec3 vWorldPosition;\n#include <common>\nvoid main() {\n\tvWorldPosition = transformDirection( position, modelMatrix );\n\t#include <begin_vertex>\n\t#include <project_vertex>\n\tgl_Position.z = gl_Position.w;\n}\n",depth_frag:"#if DEPTH_PACKING == 3200\n\tuniform float opacity;\n#endif\n#include <common>\n#include <packing>\n#include <uv_pars_fragment>\n#include <map_pars_fragment>\n#include <alphamap_pars_fragment>\n#include <logdepthbuf_pars_fragment>\n#include <clipping_planes_pars_fragment>\nvoid main() {\n\t#include <clipping_planes_fragment>\n\tvec4 diffuseColor = vec4( 1.0 );\n\t#if DEPTH_PACKING == 3200\n\t\tdiffuseColor.a = opacity;\n\t#endif\n\t#include <map_fragment>\n\t#include <alphamap_fragment>\n\t#include <alphatest_fragment>\n\t#include <logdepthbuf_fragment>\n\t#if DEPTH_PACKING == 3200\n\t\tgl_FragColor = vec4( vec3( 1.0 - gl_FragCoord.z ), opacity );\n\t#elif DEPTH_PACKING == 3201\n\t\tgl_FragColor = packDepthToRGBA( gl_FragCoord.z );\n\t#endif\n}\n",
+depth_vert:"#include <common>\n#include <uv_pars_vertex>\n#include <displacementmap_pars_vertex>\n#include <morphtarget_pars_vertex>\n#include <skinning_pars_vertex>\n#include <logdepthbuf_pars_vertex>\n#include <clipping_planes_pars_vertex>\nvoid main() {\n\t#include <uv_vertex>\n\t#include <skinbase_vertex>\n\t#ifdef USE_DISPLACEMENTMAP\n\t\t#include <beginnormal_vertex>\n\t\t#include <morphnormal_vertex>\n\t\t#include <skinnormal_vertex>\n\t#endif\n\t#include <begin_vertex>\n\t#include <morphtarget_vertex>\n\t#include <skinning_vertex>\n\t#include <displacementmap_vertex>\n\t#include <project_vertex>\n\t#include <logdepthbuf_vertex>\n\t#include <clipping_planes_vertex>\n}\n",
+distanceRGBA_frag:"#define DISTANCE\nuniform vec3 referencePosition;\nuniform float nearDistance;\nuniform float farDistance;\nvarying vec3 vWorldPosition;\n#include <common>\n#include <packing>\n#include <uv_pars_fragment>\n#include <map_pars_fragment>\n#include <alphamap_pars_fragment>\n#include <clipping_planes_pars_fragment>\nvoid main () {\n\t#include <clipping_planes_fragment>\n\tvec4 diffuseColor = vec4( 1.0 );\n\t#include <map_fragment>\n\t#include <alphamap_fragment>\n\t#include <alphatest_fragment>\n\tfloat dist = length( vWorldPosition - referencePosition );\n\tdist = ( dist - nearDistance ) / ( farDistance - nearDistance );\n\tdist = saturate( dist );\n\tgl_FragColor = packDepthToRGBA( dist );\n}\n",
+distanceRGBA_vert:"#define DISTANCE\nvarying vec3 vWorldPosition;\n#include <common>\n#include <uv_pars_vertex>\n#include <displacementmap_pars_vertex>\n#include <morphtarget_pars_vertex>\n#include <skinning_pars_vertex>\n#include <clipping_planes_pars_vertex>\nvoid main() {\n\t#include <uv_vertex>\n\t#include <skinbase_vertex>\n\t#ifdef USE_DISPLACEMENTMAP\n\t\t#include <beginnormal_vertex>\n\t\t#include <morphnormal_vertex>\n\t\t#include <skinnormal_vertex>\n\t#endif\n\t#include <begin_vertex>\n\t#include <morphtarget_vertex>\n\t#include <skinning_vertex>\n\t#include <displacementmap_vertex>\n\t#include <project_vertex>\n\t#include <worldpos_vertex>\n\t#include <clipping_planes_vertex>\n\tvWorldPosition = worldPosition.xyz;\n}\n",
+equirect_frag:"uniform sampler2D tEquirect;\nvarying vec3 vWorldPosition;\n#include <common>\nvoid main() {\n\tvec3 direction = normalize( vWorldPosition );\n\tvec2 sampleUV;\n\tsampleUV.y = asin( clamp( direction.y, - 1.0, 1.0 ) ) * RECIPROCAL_PI + 0.5;\n\tsampleUV.x = atan( direction.z, direction.x ) * RECIPROCAL_PI2 + 0.5;\n\tgl_FragColor = texture2D( tEquirect, sampleUV );\n}\n",equirect_vert:"varying vec3 vWorldPosition;\n#include <common>\nvoid main() {\n\tvWorldPosition = transformDirection( position, modelMatrix );\n\t#include <begin_vertex>\n\t#include <project_vertex>\n}\n",
+linedashed_frag:"uniform vec3 diffuse;\nuniform float opacity;\nuniform float dashSize;\nuniform float totalSize;\nvarying float vLineDistance;\n#include <common>\n#include <color_pars_fragment>\n#include <fog_pars_fragment>\n#include <logdepthbuf_pars_fragment>\n#include <clipping_planes_pars_fragment>\nvoid main() {\n\t#include <clipping_planes_fragment>\n\tif ( mod( vLineDistance, totalSize ) > dashSize ) {\n\t\tdiscard;\n\t}\n\tvec3 outgoingLight = vec3( 0.0 );\n\tvec4 diffuseColor = vec4( diffuse, opacity );\n\t#include <logdepthbuf_fragment>\n\t#include <color_fragment>\n\toutgoingLight = diffuseColor.rgb;\n\tgl_FragColor = vec4( outgoingLight, diffuseColor.a );\n\t#include <premultiplied_alpha_fragment>\n\t#include <tonemapping_fragment>\n\t#include <encodings_fragment>\n\t#include <fog_fragment>\n}\n",
+linedashed_vert:"uniform float scale;\nattribute float lineDistance;\nvarying float vLineDistance;\n#include <common>\n#include <color_pars_vertex>\n#include <fog_pars_vertex>\n#include <logdepthbuf_pars_vertex>\n#include <clipping_planes_pars_vertex>\nvoid main() {\n\t#include <color_vertex>\n\tvLineDistance = scale * lineDistance;\n\tvec4 mvPosition = modelViewMatrix * vec4( position, 1.0 );\n\tgl_Position = projectionMatrix * mvPosition;\n\t#include <logdepthbuf_vertex>\n\t#include <clipping_planes_vertex>\n\t#include <fog_vertex>\n}\n",
+meshbasic_frag:"uniform vec3 diffuse;\nuniform float opacity;\n#ifndef FLAT_SHADED\n\tvarying vec3 vNormal;\n#endif\n#include <common>\n#include <color_pars_fragment>\n#include <uv_pars_fragment>\n#include <uv2_pars_fragment>\n#include <map_pars_fragment>\n#include <alphamap_pars_fragment>\n#include <aomap_pars_fragment>\n#include <lightmap_pars_fragment>\n#include <envmap_pars_fragment>\n#include <fog_pars_fragment>\n#include <specularmap_pars_fragment>\n#include <logdepthbuf_pars_fragment>\n#include <clipping_planes_pars_fragment>\nvoid main() {\n\t#include <clipping_planes_fragment>\n\tvec4 diffuseColor = vec4( diffuse, opacity );\n\t#include <logdepthbuf_fragment>\n\t#include <map_fragment>\n\t#include <color_fragment>\n\t#include <alphamap_fragment>\n\t#include <alphatest_fragment>\n\t#include <specularmap_fragment>\n\tReflectedLight reflectedLight = ReflectedLight( vec3( 0.0 ), vec3( 0.0 ), vec3( 0.0 ), vec3( 0.0 ) );\n\t#ifdef USE_LIGHTMAP\n\t\treflectedLight.indirectDiffuse += texture2D( lightMap, vUv2 ).xyz * lightMapIntensity;\n\t#else\n\t\treflectedLight.indirectDiffuse += vec3( 1.0 );\n\t#endif\n\t#include <aomap_fragment>\n\treflectedLight.indirectDiffuse *= diffuseColor.rgb;\n\tvec3 outgoingLight = reflectedLight.indirectDiffuse;\n\t#include <envmap_fragment>\n\tgl_FragColor = vec4( outgoingLight, diffuseColor.a );\n\t#include <premultiplied_alpha_fragment>\n\t#include <tonemapping_fragment>\n\t#include <encodings_fragment>\n\t#include <fog_fragment>\n}\n",
+meshbasic_vert:"#include <common>\n#include <uv_pars_vertex>\n#include <uv2_pars_vertex>\n#include <envmap_pars_vertex>\n#include <color_pars_vertex>\n#include <fog_pars_vertex>\n#include <morphtarget_pars_vertex>\n#include <skinning_pars_vertex>\n#include <logdepthbuf_pars_vertex>\n#include <clipping_planes_pars_vertex>\nvoid main() {\n\t#include <uv_vertex>\n\t#include <uv2_vertex>\n\t#include <color_vertex>\n\t#include <skinbase_vertex>\n\t#ifdef USE_ENVMAP\n\t#include <beginnormal_vertex>\n\t#include <morphnormal_vertex>\n\t#include <skinnormal_vertex>\n\t#include <defaultnormal_vertex>\n\t#endif\n\t#include <begin_vertex>\n\t#include <morphtarget_vertex>\n\t#include <skinning_vertex>\n\t#include <project_vertex>\n\t#include <logdepthbuf_vertex>\n\t#include <worldpos_vertex>\n\t#include <clipping_planes_vertex>\n\t#include <envmap_vertex>\n\t#include <fog_vertex>\n}\n",
+meshlambert_frag:"uniform vec3 diffuse;\nuniform vec3 emissive;\nuniform float opacity;\nvarying vec3 vLightFront;\n#ifdef DOUBLE_SIDED\n\tvarying vec3 vLightBack;\n#endif\n#include <common>\n#include <packing>\n#include <dithering_pars_fragment>\n#include <color_pars_fragment>\n#include <uv_pars_fragment>\n#include <uv2_pars_fragment>\n#include <map_pars_fragment>\n#include <alphamap_pars_fragment>\n#include <aomap_pars_fragment>\n#include <lightmap_pars_fragment>\n#include <emissivemap_pars_fragment>\n#include <envmap_pars_fragment>\n#include <bsdfs>\n#include <lights_pars_begin>\n#include <lights_pars_maps>\n#include <fog_pars_fragment>\n#include <shadowmap_pars_fragment>\n#include <shadowmask_pars_fragment>\n#include <specularmap_pars_fragment>\n#include <logdepthbuf_pars_fragment>\n#include <clipping_planes_pars_fragment>\nvoid main() {\n\t#include <clipping_planes_fragment>\n\tvec4 diffuseColor = vec4( diffuse, opacity );\n\tReflectedLight reflectedLight = ReflectedLight( vec3( 0.0 ), vec3( 0.0 ), vec3( 0.0 ), vec3( 0.0 ) );\n\tvec3 totalEmissiveRadiance = emissive;\n\t#include <logdepthbuf_fragment>\n\t#include <map_fragment>\n\t#include <color_fragment>\n\t#include <alphamap_fragment>\n\t#include <alphatest_fragment>\n\t#include <specularmap_fragment>\n\t#include <emissivemap_fragment>\n\treflectedLight.indirectDiffuse = getAmbientLightIrradiance( ambientLightColor );\n\t#include <lightmap_fragment>\n\treflectedLight.indirectDiffuse *= BRDF_Diffuse_Lambert( diffuseColor.rgb );\n\t#ifdef DOUBLE_SIDED\n\t\treflectedLight.directDiffuse = ( gl_FrontFacing ) ? vLightFront : vLightBack;\n\t#else\n\t\treflectedLight.directDiffuse = vLightFront;\n\t#endif\n\treflectedLight.directDiffuse *= BRDF_Diffuse_Lambert( diffuseColor.rgb ) * getShadowMask();\n\t#include <aomap_fragment>\n\tvec3 outgoingLight = reflectedLight.directDiffuse + reflectedLight.indirectDiffuse + totalEmissiveRadiance;\n\t#include <envmap_fragment>\n\tgl_FragColor = vec4( outgoingLight, diffuseColor.a );\n\t#include <tonemapping_fragment>\n\t#include <encodings_fragment>\n\t#include <fog_fragment>\n\t#include <premultiplied_alpha_fragment>\n\t#include <dithering_fragment>\n}\n",
+meshlambert_vert:"#define LAMBERT\nvarying vec3 vLightFront;\n#ifdef DOUBLE_SIDED\n\tvarying vec3 vLightBack;\n#endif\n#include <common>\n#include <uv_pars_vertex>\n#include <uv2_pars_vertex>\n#include <envmap_pars_vertex>\n#include <bsdfs>\n#include <lights_pars_begin>\n#include <lights_pars_maps>\n#include <color_pars_vertex>\n#include <fog_pars_vertex>\n#include <morphtarget_pars_vertex>\n#include <skinning_pars_vertex>\n#include <shadowmap_pars_vertex>\n#include <logdepthbuf_pars_vertex>\n#include <clipping_planes_pars_vertex>\nvoid main() {\n\t#include <uv_vertex>\n\t#include <uv2_vertex>\n\t#include <color_vertex>\n\t#include <beginnormal_vertex>\n\t#include <morphnormal_vertex>\n\t#include <skinbase_vertex>\n\t#include <skinnormal_vertex>\n\t#include <defaultnormal_vertex>\n\t#include <begin_vertex>\n\t#include <morphtarget_vertex>\n\t#include <skinning_vertex>\n\t#include <project_vertex>\n\t#include <logdepthbuf_vertex>\n\t#include <clipping_planes_vertex>\n\t#include <worldpos_vertex>\n\t#include <envmap_vertex>\n\t#include <lights_lambert_vertex>\n\t#include <shadowmap_vertex>\n\t#include <fog_vertex>\n}\n",
+meshphong_frag:"#define PHONG\nuniform vec3 diffuse;\nuniform vec3 emissive;\nuniform vec3 specular;\nuniform float shininess;\nuniform float opacity;\n#include <common>\n#include <packing>\n#include <dithering_pars_fragment>\n#include <color_pars_fragment>\n#include <uv_pars_fragment>\n#include <uv2_pars_fragment>\n#include <map_pars_fragment>\n#include <alphamap_pars_fragment>\n#include <aomap_pars_fragment>\n#include <lightmap_pars_fragment>\n#include <emissivemap_pars_fragment>\n#include <envmap_pars_fragment>\n#include <gradientmap_pars_fragment>\n#include <fog_pars_fragment>\n#include <bsdfs>\n#include <lights_pars_begin>\n#include <lights_pars_maps>\n#include <lights_phong_pars_fragment>\n#include <shadowmap_pars_fragment>\n#include <bumpmap_pars_fragment>\n#include <normalmap_pars_fragment>\n#include <specularmap_pars_fragment>\n#include <logdepthbuf_pars_fragment>\n#include <clipping_planes_pars_fragment>\nvoid main() {\n\t#include <clipping_planes_fragment>\n\tvec4 diffuseColor = vec4( diffuse, opacity );\n\tReflectedLight reflectedLight = ReflectedLight( vec3( 0.0 ), vec3( 0.0 ), vec3( 0.0 ), vec3( 0.0 ) );\n\tvec3 totalEmissiveRadiance = emissive;\n\t#include <logdepthbuf_fragment>\n\t#include <map_fragment>\n\t#include <color_fragment>\n\t#include <alphamap_fragment>\n\t#include <alphatest_fragment>\n\t#include <specularmap_fragment>\n\t#include <normal_fragment_begin>\n\t#include <normal_fragment_maps>\n\t#include <emissivemap_fragment>\n\t#include <lights_phong_fragment>\n\t#include <lights_fragment_begin>\n\t#include <lights_fragment_maps>\n\t#include <lights_fragment_end>\n\t#include <aomap_fragment>\n\tvec3 outgoingLight = reflectedLight.directDiffuse + reflectedLight.indirectDiffuse + reflectedLight.directSpecular + reflectedLight.indirectSpecular + totalEmissiveRadiance;\n\t#include <envmap_fragment>\n\tgl_FragColor = vec4( outgoingLight, diffuseColor.a );\n\t#include <tonemapping_fragment>\n\t#include <encodings_fragment>\n\t#include <fog_fragment>\n\t#include <premultiplied_alpha_fragment>\n\t#include <dithering_fragment>\n}\n",
+meshphong_vert:"#define PHONG\nvarying vec3 vViewPosition;\n#ifndef FLAT_SHADED\n\tvarying vec3 vNormal;\n#endif\n#include <common>\n#include <uv_pars_vertex>\n#include <uv2_pars_vertex>\n#include <displacementmap_pars_vertex>\n#include <envmap_pars_vertex>\n#include <color_pars_vertex>\n#include <fog_pars_vertex>\n#include <morphtarget_pars_vertex>\n#include <skinning_pars_vertex>\n#include <shadowmap_pars_vertex>\n#include <logdepthbuf_pars_vertex>\n#include <clipping_planes_pars_vertex>\nvoid main() {\n\t#include <uv_vertex>\n\t#include <uv2_vertex>\n\t#include <color_vertex>\n\t#include <beginnormal_vertex>\n\t#include <morphnormal_vertex>\n\t#include <skinbase_vertex>\n\t#include <skinnormal_vertex>\n\t#include <defaultnormal_vertex>\n#ifndef FLAT_SHADED\n\tvNormal = normalize( transformedNormal );\n#endif\n\t#include <begin_vertex>\n\t#include <morphtarget_vertex>\n\t#include <skinning_vertex>\n\t#include <displacementmap_vertex>\n\t#include <project_vertex>\n\t#include <logdepthbuf_vertex>\n\t#include <clipping_planes_vertex>\n\tvViewPosition = - mvPosition.xyz;\n\t#include <worldpos_vertex>\n\t#include <envmap_vertex>\n\t#include <shadowmap_vertex>\n\t#include <fog_vertex>\n}\n",
+meshphysical_frag:"#define PHYSICAL\nuniform vec3 diffuse;\nuniform vec3 emissive;\nuniform float roughness;\nuniform float metalness;\nuniform float opacity;\n#ifndef STANDARD\n\tuniform float clearCoat;\n\tuniform float clearCoatRoughness;\n#endif\nvarying vec3 vViewPosition;\n#ifndef FLAT_SHADED\n\tvarying vec3 vNormal;\n#endif\n#include <common>\n#include <packing>\n#include <dithering_pars_fragment>\n#include <color_pars_fragment>\n#include <uv_pars_fragment>\n#include <uv2_pars_fragment>\n#include <map_pars_fragment>\n#include <alphamap_pars_fragment>\n#include <aomap_pars_fragment>\n#include <lightmap_pars_fragment>\n#include <emissivemap_pars_fragment>\n#include <envmap_pars_fragment>\n#include <fog_pars_fragment>\n#include <bsdfs>\n#include <cube_uv_reflection_fragment>\n#include <lights_pars_begin>\n#include <lights_pars_maps>\n#include <lights_physical_pars_fragment>\n#include <shadowmap_pars_fragment>\n#include <bumpmap_pars_fragment>\n#include <normalmap_pars_fragment>\n#include <roughnessmap_pars_fragment>\n#include <metalnessmap_pars_fragment>\n#include <logdepthbuf_pars_fragment>\n#include <clipping_planes_pars_fragment>\nvoid main() {\n\t#include <clipping_planes_fragment>\n\tvec4 diffuseColor = vec4( diffuse, opacity );\n\tReflectedLight reflectedLight = ReflectedLight( vec3( 0.0 ), vec3( 0.0 ), vec3( 0.0 ), vec3( 0.0 ) );\n\tvec3 totalEmissiveRadiance = emissive;\n\t#include <logdepthbuf_fragment>\n\t#include <map_fragment>\n\t#include <color_fragment>\n\t#include <alphamap_fragment>\n\t#include <alphatest_fragment>\n\t#include <roughnessmap_fragment>\n\t#include <metalnessmap_fragment>\n\t#include <normal_fragment_begin>\n\t#include <normal_fragment_maps>\n\t#include <emissivemap_fragment>\n\t#include <lights_physical_fragment>\n\t#include <lights_fragment_begin>\n\t#include <lights_fragment_maps>\n\t#include <lights_fragment_end>\n\t#include <aomap_fragment>\n\tvec3 outgoingLight = reflectedLight.directDiffuse + reflectedLight.indirectDiffuse + reflectedLight.directSpecular + reflectedLight.indirectSpecular + totalEmissiveRadiance;\n\tgl_FragColor = vec4( outgoingLight, diffuseColor.a );\n\t#include <tonemapping_fragment>\n\t#include <encodings_fragment>\n\t#include <fog_fragment>\n\t#include <premultiplied_alpha_fragment>\n\t#include <dithering_fragment>\n}\n",
+meshphysical_vert:"#define PHYSICAL\nvarying vec3 vViewPosition;\n#ifndef FLAT_SHADED\n\tvarying vec3 vNormal;\n#endif\n#include <common>\n#include <uv_pars_vertex>\n#include <uv2_pars_vertex>\n#include <displacementmap_pars_vertex>\n#include <color_pars_vertex>\n#include <fog_pars_vertex>\n#include <morphtarget_pars_vertex>\n#include <skinning_pars_vertex>\n#include <shadowmap_pars_vertex>\n#include <logdepthbuf_pars_vertex>\n#include <clipping_planes_pars_vertex>\nvoid main() {\n\t#include <uv_vertex>\n\t#include <uv2_vertex>\n\t#include <color_vertex>\n\t#include <beginnormal_vertex>\n\t#include <morphnormal_vertex>\n\t#include <skinbase_vertex>\n\t#include <skinnormal_vertex>\n\t#include <defaultnormal_vertex>\n#ifndef FLAT_SHADED\n\tvNormal = normalize( transformedNormal );\n#endif\n\t#include <begin_vertex>\n\t#include <morphtarget_vertex>\n\t#include <skinning_vertex>\n\t#include <displacementmap_vertex>\n\t#include <project_vertex>\n\t#include <logdepthbuf_vertex>\n\t#include <clipping_planes_vertex>\n\tvViewPosition = - mvPosition.xyz;\n\t#include <worldpos_vertex>\n\t#include <shadowmap_vertex>\n\t#include <fog_vertex>\n}\n",
+normal_frag:"#define NORMAL\nuniform float opacity;\n#if defined( FLAT_SHADED ) || defined( USE_BUMPMAP ) || defined( USE_NORMALMAP )\n\tvarying vec3 vViewPosition;\n#endif\n#ifndef FLAT_SHADED\n\tvarying vec3 vNormal;\n#endif\n#include <packing>\n#include <uv_pars_fragment>\n#include <bumpmap_pars_fragment>\n#include <normalmap_pars_fragment>\n#include <logdepthbuf_pars_fragment>\nvoid main() {\n\t#include <logdepthbuf_fragment>\n\t#include <normal_fragment_begin>\n\t#include <normal_fragment_maps>\n\tgl_FragColor = vec4( packNormalToRGB( normal ), opacity );\n}\n",
+normal_vert:"#define NORMAL\n#if defined( FLAT_SHADED ) || defined( USE_BUMPMAP ) || defined( USE_NORMALMAP )\n\tvarying vec3 vViewPosition;\n#endif\n#ifndef FLAT_SHADED\n\tvarying vec3 vNormal;\n#endif\n#include <uv_pars_vertex>\n#include <displacementmap_pars_vertex>\n#include <morphtarget_pars_vertex>\n#include <skinning_pars_vertex>\n#include <logdepthbuf_pars_vertex>\nvoid main() {\n\t#include <uv_vertex>\n\t#include <beginnormal_vertex>\n\t#include <morphnormal_vertex>\n\t#include <skinbase_vertex>\n\t#include <skinnormal_vertex>\n\t#include <defaultnormal_vertex>\n#ifndef FLAT_SHADED\n\tvNormal = normalize( transformedNormal );\n#endif\n\t#include <begin_vertex>\n\t#include <morphtarget_vertex>\n\t#include <skinning_vertex>\n\t#include <displacementmap_vertex>\n\t#include <project_vertex>\n\t#include <logdepthbuf_vertex>\n#if defined( FLAT_SHADED ) || defined( USE_BUMPMAP ) || defined( USE_NORMALMAP )\n\tvViewPosition = - mvPosition.xyz;\n#endif\n}\n",
+points_frag:"uniform vec3 diffuse;\nuniform float opacity;\n#include <common>\n#include <packing>\n#include <color_pars_fragment>\n#include <map_particle_pars_fragment>\n#include <fog_pars_fragment>\n#include <shadowmap_pars_fragment>\n#include <logdepthbuf_pars_fragment>\n#include <clipping_planes_pars_fragment>\nvoid main() {\n\t#include <clipping_planes_fragment>\n\tvec3 outgoingLight = vec3( 0.0 );\n\tvec4 diffuseColor = vec4( diffuse, opacity );\n\t#include <logdepthbuf_fragment>\n\t#include <map_particle_fragment>\n\t#include <color_fragment>\n\t#include <alphatest_fragment>\n\toutgoingLight = diffuseColor.rgb;\n\tgl_FragColor = vec4( outgoingLight, diffuseColor.a );\n\t#include <premultiplied_alpha_fragment>\n\t#include <tonemapping_fragment>\n\t#include <encodings_fragment>\n\t#include <fog_fragment>\n}\n",
+points_vert:"uniform float size;\nuniform float scale;\n#include <common>\n#include <color_pars_vertex>\n#include <fog_pars_vertex>\n#include <shadowmap_pars_vertex>\n#include <logdepthbuf_pars_vertex>\n#include <clipping_planes_pars_vertex>\nvoid main() {\n\t#include <color_vertex>\n\t#include <begin_vertex>\n\t#include <project_vertex>\n\t#ifdef USE_SIZEATTENUATION\n\t\tgl_PointSize = size * ( scale / - mvPosition.z );\n\t#else\n\t\tgl_PointSize = size;\n\t#endif\n\t#include <logdepthbuf_vertex>\n\t#include <clipping_planes_vertex>\n\t#include <worldpos_vertex>\n\t#include <shadowmap_vertex>\n\t#include <fog_vertex>\n}\n",
+shadow_frag:"uniform vec3 color;\nuniform float opacity;\n#include <common>\n#include <packing>\n#include <fog_pars_fragment>\n#include <bsdfs>\n#include <lights_pars_begin>\n#include <shadowmap_pars_fragment>\n#include <shadowmask_pars_fragment>\nvoid main() {\n\tgl_FragColor = vec4( color, opacity * ( 1.0 - getShadowMask() ) );\n\t#include <fog_fragment>\n}\n",shadow_vert:"#include <fog_pars_vertex>\n#include <shadowmap_pars_vertex>\nvoid main() {\n\t#include <begin_vertex>\n\t#include <project_vertex>\n\t#include <worldpos_vertex>\n\t#include <shadowmap_vertex>\n\t#include <fog_vertex>\n}\n"},
+Da={merge:function(a){for(var b={},c=0;c<a.length;c++){var d=this.clone(a[c]),e;for(e in d)b[e]=d[e]}return b},clone:function(a){var b={},c;for(c in a){b[c]={};for(var d in a[c]){var e=a[c][d];e&&(e.isColor||e.isMatrix3||e.isMatrix4||e.isVector2||e.isVector3||e.isVector4||e.isTexture)?b[c][d]=e.clone():Array.isArray(e)?b[c][d]=e.slice():b[c][d]=e}}return b}},Kg={aliceblue:15792383,antiquewhite:16444375,aqua:65535,aquamarine:8388564,azure:15794175,beige:16119260,bisque:16770244,black:0,blanchedalmond:16772045,
+blue:255,blueviolet:9055202,brown:10824234,burlywood:14596231,cadetblue:6266528,chartreuse:8388352,chocolate:13789470,coral:16744272,cornflowerblue:6591981,cornsilk:16775388,crimson:14423100,cyan:65535,darkblue:139,darkcyan:35723,darkgoldenrod:12092939,darkgray:11119017,darkgreen:25600,darkgrey:11119017,darkkhaki:12433259,darkmagenta:9109643,darkolivegreen:5597999,darkorange:16747520,darkorchid:10040012,darkred:9109504,darksalmon:15308410,darkseagreen:9419919,darkslateblue:4734347,darkslategray:3100495,
+darkslategrey:3100495,darkturquoise:52945,darkviolet:9699539,deeppink:16716947,deepskyblue:49151,dimgray:6908265,dimgrey:6908265,dodgerblue:2003199,firebrick:11674146,floralwhite:16775920,forestgreen:2263842,fuchsia:16711935,gainsboro:14474460,ghostwhite:16316671,gold:16766720,goldenrod:14329120,gray:8421504,green:32768,greenyellow:11403055,grey:8421504,honeydew:15794160,hotpink:16738740,indianred:13458524,indigo:4915330,ivory:16777200,khaki:15787660,lavender:15132410,lavenderblush:16773365,lawngreen:8190976,
+lemonchiffon:16775885,lightblue:11393254,lightcoral:15761536,lightcyan:14745599,lightgoldenrodyellow:16448210,lightgray:13882323,lightgreen:9498256,lightgrey:13882323,lightpink:16758465,lightsalmon:16752762,lightseagreen:2142890,lightskyblue:8900346,lightslategray:7833753,lightslategrey:7833753,lightsteelblue:11584734,lightyellow:16777184,lime:65280,limegreen:3329330,linen:16445670,magenta:16711935,maroon:8388608,mediumaquamarine:6737322,mediumblue:205,mediumorchid:12211667,mediumpurple:9662683,mediumseagreen:3978097,
+mediumslateblue:8087790,mediumspringgreen:64154,mediumturquoise:4772300,mediumvioletred:13047173,midnightblue:1644912,mintcream:16121850,mistyrose:16770273,moccasin:16770229,navajowhite:16768685,navy:128,oldlace:16643558,olive:8421376,olivedrab:7048739,orange:16753920,orangered:16729344,orchid:14315734,palegoldenrod:15657130,palegreen:10025880,paleturquoise:11529966,palevioletred:14381203,papayawhip:16773077,peachpuff:16767673,peru:13468991,pink:16761035,plum:14524637,powderblue:11591910,purple:8388736,
+rebeccapurple:6697881,red:16711680,rosybrown:12357519,royalblue:4286945,saddlebrown:9127187,salmon:16416882,sandybrown:16032864,seagreen:3050327,seashell:16774638,sienna:10506797,silver:12632256,skyblue:8900331,slateblue:6970061,slategray:7372944,slategrey:7372944,snow:16775930,springgreen:65407,steelblue:4620980,tan:13808780,teal:32896,thistle:14204888,tomato:16737095,turquoise:4251856,violet:15631086,wheat:16113331,white:16777215,whitesmoke:16119285,yellow:16776960,yellowgreen:10145074};Object.assign(I.prototype,
+{isColor:!0,r:1,g:1,b:1,set:function(a){a&&a.isColor?this.copy(a):"number"===typeof a?this.setHex(a):"string"===typeof a&&this.setStyle(a);return this},setScalar:function(a){this.b=this.g=this.r=a;return this},setHex:function(a){a=Math.floor(a);this.r=(a>>16&255)/255;this.g=(a>>8&255)/255;this.b=(a&255)/255;return this},setRGB:function(a,b,c){this.r=a;this.g=b;this.b=c;return this},setHSL:function(){function a(a,c,d){0>d&&(d+=1);1<d&&--d;return d<1/6?a+6*(c-a)*d:.5>d?c:d<2/3?a+6*(c-a)*(2/3-d):a}return function(b,
+c,d){b=S.euclideanModulo(b,1);c=S.clamp(c,0,1);d=S.clamp(d,0,1);0===c?this.r=this.g=this.b=d:(c=.5>=d?d*(1+c):d+c-d*c,d=2*d-c,this.r=a(d,c,b+1/3),this.g=a(d,c,b),this.b=a(d,c,b-1/3));return this}}(),setStyle:function(a){function b(b){void 0!==b&&1>parseFloat(b)&&console.warn("THREE.Color: Alpha component of "+a+" will be ignored.")}var c;if(c=/^((?:rgb|hsl)a?)\(\s*([^\)]*)\)/.exec(a)){var d=c[2];switch(c[1]){case "rgb":case "rgba":if(c=/^(\d+)\s*,\s*(\d+)\s*,\s*(\d+)\s*(,\s*([0-9]*\.?[0-9]+)\s*)?$/.exec(d))return this.r=
+Math.min(255,parseInt(c[1],10))/255,this.g=Math.min(255,parseInt(c[2],10))/255,this.b=Math.min(255,parseInt(c[3],10))/255,b(c[5]),this;if(c=/^(\d+)%\s*,\s*(\d+)%\s*,\s*(\d+)%\s*(,\s*([0-9]*\.?[0-9]+)\s*)?$/.exec(d))return this.r=Math.min(100,parseInt(c[1],10))/100,this.g=Math.min(100,parseInt(c[2],10))/100,this.b=Math.min(100,parseInt(c[3],10))/100,b(c[5]),this;break;case "hsl":case "hsla":if(c=/^([0-9]*\.?[0-9]+)\s*,\s*(\d+)%\s*,\s*(\d+)%\s*(,\s*([0-9]*\.?[0-9]+)\s*)?$/.exec(d)){d=parseFloat(c[1])/
+360;var e=parseInt(c[2],10)/100,f=parseInt(c[3],10)/100;b(c[5]);return this.setHSL(d,e,f)}}}else if(c=/^#([A-Fa-f0-9]+)$/.exec(a)){c=c[1];d=c.length;if(3===d)return this.r=parseInt(c.charAt(0)+c.charAt(0),16)/255,this.g=parseInt(c.charAt(1)+c.charAt(1),16)/255,this.b=parseInt(c.charAt(2)+c.charAt(2),16)/255,this;if(6===d)return this.r=parseInt(c.charAt(0)+c.charAt(1),16)/255,this.g=parseInt(c.charAt(2)+c.charAt(3),16)/255,this.b=parseInt(c.charAt(4)+c.charAt(5),16)/255,this}a&&0<a.length&&(c=Kg[a],
+void 0!==c?this.setHex(c):console.warn("THREE.Color: Unknown color "+a));return this},clone:function(){return new this.constructor(this.r,this.g,this.b)},copy:function(a){this.r=a.r;this.g=a.g;this.b=a.b;return this},copyGammaToLinear:function(a,b){void 0===b&&(b=2);this.r=Math.pow(a.r,b);this.g=Math.pow(a.g,b);this.b=Math.pow(a.b,b);return this},copyLinearToGamma:function(a,b){void 0===b&&(b=2);b=0<b?1/b:1;this.r=Math.pow(a.r,b);this.g=Math.pow(a.g,b);this.b=Math.pow(a.b,b);return this},convertGammaToLinear:function(){var a=
+this.r,b=this.g,c=this.b;this.r=a*a;this.g=b*b;this.b=c*c;return this},convertLinearToGamma:function(){this.r=Math.sqrt(this.r);this.g=Math.sqrt(this.g);this.b=Math.sqrt(this.b);return this},getHex:function(){return 255*this.r<<16^255*this.g<<8^255*this.b<<0},getHexString:function(){return("000000"+this.getHex().toString(16)).slice(-6)},getHSL:function(a){void 0===a&&(console.warn("THREE.Color: .getHSL() target is now required"),a={h:0,s:0,l:0});var b=this.r,c=this.g,d=this.b,e=Math.max(b,c,d),f=
+Math.min(b,c,d),g,h=(f+e)/2;if(f===e)f=g=0;else{var l=e-f;f=.5>=h?l/(e+f):l/(2-e-f);switch(e){case b:g=(c-d)/l+(c<d?6:0);break;case c:g=(d-b)/l+2;break;case d:g=(b-c)/l+4}g/=6}a.h=g;a.s=f;a.l=h;return a},getStyle:function(){return"rgb("+(255*this.r|0)+","+(255*this.g|0)+","+(255*this.b|0)+")"},offsetHSL:function(){var a={};return function(b,c,d){this.getHSL(a);a.h+=b;a.s+=c;a.l+=d;this.setHSL(a.h,a.s,a.l);return this}}(),add:function(a){this.r+=a.r;this.g+=a.g;this.b+=a.b;return this},addColors:function(a,
+b){this.r=a.r+b.r;this.g=a.g+b.g;this.b=a.b+b.b;return this},addScalar:function(a){this.r+=a;this.g+=a;this.b+=a;return this},sub:function(a){this.r=Math.max(0,this.r-a.r);this.g=Math.max(0,this.g-a.g);this.b=Math.max(0,this.b-a.b);return this},multiply:function(a){this.r*=a.r;this.g*=a.g;this.b*=a.b;return this},multiplyScalar:function(a){this.r*=a;this.g*=a;this.b*=a;return this},lerp:function(a,b){this.r+=(a.r-this.r)*b;this.g+=(a.g-this.g)*b;this.b+=(a.b-this.b)*b;return this},equals:function(a){return a.r===
+this.r&&a.g===this.g&&a.b===this.b},fromArray:function(a,b){void 0===b&&(b=0);this.r=a[b];this.g=a[b+1];this.b=a[b+2];return this},toArray:function(a,b){void 0===a&&(a=[]);void 0===b&&(b=0);a[b]=this.r;a[b+1]=this.g;a[b+2]=this.b;return a},toJSON:function(){return this.getHex()}});var L={common:{diffuse:{value:new I(15658734)},opacity:{value:1},map:{value:null},uvTransform:{value:new sa},alphaMap:{value:null}},specularmap:{specularMap:{value:null}},envmap:{envMap:{value:null},flipEnvMap:{value:-1},
+reflectivity:{value:1},refractionRatio:{value:.98},maxMipLevel:{value:0}},aomap:{aoMap:{value:null},aoMapIntensity:{value:1}},lightmap:{lightMap:{value:null},lightMapIntensity:{value:1}},emissivemap:{emissiveMap:{value:null}},bumpmap:{bumpMap:{value:null},bumpScale:{value:1}},normalmap:{normalMap:{value:null},normalScale:{value:new C(1,1)}},displacementmap:{displacementMap:{value:null},displacementScale:{value:1},displacementBias:{value:0}},roughnessmap:{roughnessMap:{value:null}},metalnessmap:{metalnessMap:{value:null}},
+gradientmap:{gradientMap:{value:null}},fog:{fogDensity:{value:2.5E-4},fogNear:{value:1},fogFar:{value:2E3},fogColor:{value:new I(16777215)}},lights:{ambientLightColor:{value:[]},directionalLights:{value:[],properties:{direction:{},color:{},shadow:{},shadowBias:{},shadowRadius:{},shadowMapSize:{}}},directionalShadowMap:{value:[]},directionalShadowMatrix:{value:[]},spotLights:{value:[],properties:{color:{},position:{},direction:{},distance:{},coneCos:{},penumbraCos:{},decay:{},shadow:{},shadowBias:{},
+shadowRadius:{},shadowMapSize:{}}},spotShadowMap:{value:[]},spotShadowMatrix:{value:[]},pointLights:{value:[],properties:{color:{},position:{},decay:{},distance:{},shadow:{},shadowBias:{},shadowRadius:{},shadowMapSize:{},shadowCameraNear:{},shadowCameraFar:{}}},pointShadowMap:{value:[]},pointShadowMatrix:{value:[]},hemisphereLights:{value:[],properties:{direction:{},skyColor:{},groundColor:{}}},rectAreaLights:{value:[],properties:{color:{},position:{},width:{},height:{}}}},points:{diffuse:{value:new I(15658734)},
+opacity:{value:1},size:{value:1},scale:{value:1},map:{value:null},uvTransform:{value:new sa}}},rb={basic:{uniforms:Da.merge([L.common,L.specularmap,L.envmap,L.aomap,L.lightmap,L.fog]),vertexShader:V.meshbasic_vert,fragmentShader:V.meshbasic_frag},lambert:{uniforms:Da.merge([L.common,L.specularmap,L.envmap,L.aomap,L.lightmap,L.emissivemap,L.fog,L.lights,{emissive:{value:new I(0)}}]),vertexShader:V.meshlambert_vert,fragmentShader:V.meshlambert_frag},phong:{uniforms:Da.merge([L.common,L.specularmap,
+L.envmap,L.aomap,L.lightmap,L.emissivemap,L.bumpmap,L.normalmap,L.displacementmap,L.gradientmap,L.fog,L.lights,{emissive:{value:new I(0)},specular:{value:new I(1118481)},shininess:{value:30}}]),vertexShader:V.meshphong_vert,fragmentShader:V.meshphong_frag},standard:{uniforms:Da.merge([L.common,L.envmap,L.aomap,L.lightmap,L.emissivemap,L.bumpmap,L.normalmap,L.displacementmap,L.roughnessmap,L.metalnessmap,L.fog,L.lights,{emissive:{value:new I(0)},roughness:{value:.5},metalness:{value:.5},envMapIntensity:{value:1}}]),
+vertexShader:V.meshphysical_vert,fragmentShader:V.meshphysical_frag},points:{uniforms:Da.merge([L.points,L.fog]),vertexShader:V.points_vert,fragmentShader:V.points_frag},dashed:{uniforms:Da.merge([L.common,L.fog,{scale:{value:1},dashSize:{value:1},totalSize:{value:2}}]),vertexShader:V.linedashed_vert,fragmentShader:V.linedashed_frag},depth:{uniforms:Da.merge([L.common,L.displacementmap]),vertexShader:V.depth_vert,fragmentShader:V.depth_frag},normal:{uniforms:Da.merge([L.common,L.bumpmap,L.normalmap,
+L.displacementmap,{opacity:{value:1}}]),vertexShader:V.normal_vert,fragmentShader:V.normal_frag},cube:{uniforms:{tCube:{value:null},tFlip:{value:-1},opacity:{value:1}},vertexShader:V.cube_vert,fragmentShader:V.cube_frag},equirect:{uniforms:{tEquirect:{value:null}},vertexShader:V.equirect_vert,fragmentShader:V.equirect_frag},distanceRGBA:{uniforms:Da.merge([L.common,L.displacementmap,{referencePosition:{value:new p},nearDistance:{value:1},farDistance:{value:1E3}}]),vertexShader:V.distanceRGBA_vert,
+fragmentShader:V.distanceRGBA_frag},shadow:{uniforms:Da.merge([L.lights,L.fog,{color:{value:new I(0)},opacity:{value:1}}]),vertexShader:V.shadow_vert,fragmentShader:V.shadow_frag}};rb.physical={uniforms:Da.merge([rb.standard.uniforms,{clearCoat:{value:0},clearCoatRoughness:{value:0}}]),vertexShader:V.meshphysical_vert,fragmentShader:V.meshphysical_frag};jb.RotationOrders="XYZ YZX ZXY XZY YXZ ZYX".split(" ");jb.DefaultOrder="XYZ";Object.defineProperties(jb.prototype,{x:{get:function(){return this._x},
+set:function(a){this._x=a;this.onChangeCallback()}},y:{get:function(){return this._y},set:function(a){this._y=a;this.onChangeCallback()}},z:{get:function(){return this._z},set:function(a){this._z=a;this.onChangeCallback()}},order:{get:function(){return this._order},set:function(a){this._order=a;this.onChangeCallback()}}});Object.assign(jb.prototype,{isEuler:!0,set:function(a,b,c,d){this._x=a;this._y=b;this._z=c;this._order=d||this._order;this.onChangeCallback();return this},clone:function(){return new this.constructor(this._x,
+this._y,this._z,this._order)},copy:function(a){this._x=a._x;this._y=a._y;this._z=a._z;this._order=a._order;this.onChangeCallback();return this},setFromRotationMatrix:function(a,b,c){var d=S.clamp,e=a.elements;a=e[0];var f=e[4],g=e[8],h=e[1],l=e[5],m=e[9],k=e[2],n=e[6];e=e[10];b=b||this._order;"XYZ"===b?(this._y=Math.asin(d(g,-1,1)),.99999>Math.abs(g)?(this._x=Math.atan2(-m,e),this._z=Math.atan2(-f,a)):(this._x=Math.atan2(n,l),this._z=0)):"YXZ"===b?(this._x=Math.asin(-d(m,-1,1)),.99999>Math.abs(m)?
+(this._y=Math.atan2(g,e),this._z=Math.atan2(h,l)):(this._y=Math.atan2(-k,a),this._z=0)):"ZXY"===b?(this._x=Math.asin(d(n,-1,1)),.99999>Math.abs(n)?(this._y=Math.atan2(-k,e),this._z=Math.atan2(-f,l)):(this._y=0,this._z=Math.atan2(h,a))):"ZYX"===b?(this._y=Math.asin(-d(k,-1,1)),.99999>Math.abs(k)?(this._x=Math.atan2(n,e),this._z=Math.atan2(h,a)):(this._x=0,this._z=Math.atan2(-f,l))):"YZX"===b?(this._z=Math.asin(d(h,-1,1)),.99999>Math.abs(h)?(this._x=Math.atan2(-m,l),this._y=Math.atan2(-k,a)):(this._x=
+0,this._y=Math.atan2(g,e))):"XZY"===b?(this._z=Math.asin(-d(f,-1,1)),.99999>Math.abs(f)?(this._x=Math.atan2(n,l),this._y=Math.atan2(g,a)):(this._x=Math.atan2(-m,e),this._y=0)):console.warn("THREE.Euler: .setFromRotationMatrix() given unsupported order: "+b);this._order=b;if(!1!==c)this.onChangeCallback();return this},setFromQuaternion:function(){var a=new M;return function(b,c,d){a.makeRotationFromQuaternion(b);return this.setFromRotationMatrix(a,c,d)}}(),setFromVector3:function(a,b){return this.set(a.x,
+a.y,a.z,b||this._order)},reorder:function(){var a=new ja;return function(b){a.setFromEuler(this);return this.setFromQuaternion(a,b)}}(),equals:function(a){return a._x===this._x&&a._y===this._y&&a._z===this._z&&a._order===this._order},fromArray:function(a){this._x=a[0];this._y=a[1];this._z=a[2];void 0!==a[3]&&(this._order=a[3]);this.onChangeCallback();return this},toArray:function(a,b){void 0===a&&(a=[]);void 0===b&&(b=0);a[b]=this._x;a[b+1]=this._y;a[b+2]=this._z;a[b+3]=this._order;return a},toVector3:function(a){return a?
+a.set(this._x,this._y,this._z):new p(this._x,this._y,this._z)},onChange:function(a){this.onChangeCallback=a;return this},onChangeCallback:function(){}});Object.assign(Sd.prototype,{set:function(a){this.mask=1<<a|0},enable:function(a){this.mask=this.mask|1<<a|0},toggle:function(a){this.mask^=1<<a|0},disable:function(a){this.mask&=~(1<<a|0)},test:function(a){return 0!==(this.mask&a.mask)}});var zf=0;A.DefaultUp=new p(0,1,0);A.DefaultMatrixAutoUpdate=!0;A.prototype=Object.assign(Object.create(xa.prototype),
+{constructor:A,isObject3D:!0,onBeforeRender:function(){},onAfterRender:function(){},applyMatrix:function(a){this.matrix.multiplyMatrices(a,this.matrix);this.matrix.decompose(this.position,this.quaternion,this.scale)},applyQuaternion:function(a){this.quaternion.premultiply(a);return this},setRotationFromAxisAngle:function(a,b){this.quaternion.setFromAxisAngle(a,b)},setRotationFromEuler:function(a){this.quaternion.setFromEuler(a,!0)},setRotationFromMatrix:function(a){this.quaternion.setFromRotationMatrix(a)},
+setRotationFromQuaternion:function(a){this.quaternion.copy(a)},rotateOnAxis:function(){var a=new ja;return function(b,c){a.setFromAxisAngle(b,c);this.quaternion.multiply(a);return this}}(),rotateOnWorldAxis:function(){var a=new ja;return function(b,c){a.setFromAxisAngle(b,c);this.quaternion.premultiply(a);return this}}(),rotateX:function(){var a=new p(1,0,0);return function(b){return this.rotateOnAxis(a,b)}}(),rotateY:function(){var a=new p(0,1,0);return function(b){return this.rotateOnAxis(a,b)}}(),
+rotateZ:function(){var a=new p(0,0,1);return function(b){return this.rotateOnAxis(a,b)}}(),translateOnAxis:function(){var a=new p;return function(b,c){a.copy(b).applyQuaternion(this.quaternion);this.position.add(a.multiplyScalar(c));return this}}(),translateX:function(){var a=new p(1,0,0);return function(b){return this.translateOnAxis(a,b)}}(),translateY:function(){var a=new p(0,1,0);return function(b){return this.translateOnAxis(a,b)}}(),translateZ:function(){var a=new p(0,0,1);return function(b){return this.translateOnAxis(a,
+b)}}(),localToWorld:function(a){return a.applyMatrix4(this.matrixWorld)},worldToLocal:function(){var a=new M;return function(b){return b.applyMatrix4(a.getInverse(this.matrixWorld))}}(),lookAt:function(){var a=new M,b=new p;return function(c,d,e){c.isVector3?b.copy(c):b.set(c,d,e);this.isCamera?a.lookAt(this.position,b,this.up):a.lookAt(b,this.position,this.up);this.quaternion.setFromRotationMatrix(a)}}(),add:function(a){if(1<arguments.length){for(var b=0;b<arguments.length;b++)this.add(arguments[b]);
+return this}if(a===this)return console.error("THREE.Object3D.add: object can't be added as a child of itself.",a),this;a&&a.isObject3D?(null!==a.parent&&a.parent.remove(a),a.parent=this,a.dispatchEvent({type:"added"}),this.children.push(a)):console.error("THREE.Object3D.add: object not an instance of THREE.Object3D.",a);return this},remove:function(a){if(1<arguments.length){for(var b=0;b<arguments.length;b++)this.remove(arguments[b]);return this}b=this.children.indexOf(a);-1!==b&&(a.parent=null,a.dispatchEvent({type:"removed"}),
+this.children.splice(b,1));return this},getObjectById:function(a){return this.getObjectByProperty("id",a)},getObjectByName:function(a){return this.getObjectByProperty("name",a)},getObjectByProperty:function(a,b){if(this[a]===b)return this;for(var c=0,d=this.children.length;c<d;c++){var e=this.children[c].getObjectByProperty(a,b);if(void 0!==e)return e}},getWorldPosition:function(a){void 0===a&&(console.warn("THREE.Object3D: .getWorldPosition() target is now required"),a=new p);this.updateMatrixWorld(!0);
+return a.setFromMatrixPosition(this.matrixWorld)},getWorldQuaternion:function(){var a=new p,b=new p;return function(c){void 0===c&&(console.warn("THREE.Object3D: .getWorldQuaternion() target is now required"),c=new ja);this.updateMatrixWorld(!0);this.matrixWorld.decompose(a,c,b);return c}}(),getWorldScale:function(){var a=new p,b=new ja;return function(c){void 0===c&&(console.warn("THREE.Object3D: .getWorldScale() target is now required"),c=new p);this.updateMatrixWorld(!0);this.matrixWorld.decompose(a,
+b,c);return c}}(),getWorldDirection:function(){var a=new ja;return function(b){void 0===b&&(console.warn("THREE.Object3D: .getWorldDirection() target is now required"),b=new p);this.getWorldQuaternion(a);return b.set(0,0,1).applyQuaternion(a)}}(),raycast:function(){},traverse:function(a){a(this);for(var b=this.children,c=0,d=b.length;c<d;c++)b[c].traverse(a)},traverseVisible:function(a){if(!1!==this.visible){a(this);for(var b=this.children,c=0,d=b.length;c<d;c++)b[c].traverseVisible(a)}},traverseAncestors:function(a){var b=
+this.parent;null!==b&&(a(b),b.traverseAncestors(a))},updateMatrix:function(){this.matrix.compose(this.position,this.quaternion,this.scale);this.matrixWorldNeedsUpdate=!0},updateMatrixWorld:function(a){this.matrixAutoUpdate&&this.updateMatrix();if(this.matrixWorldNeedsUpdate||a)null===this.parent?this.matrixWorld.copy(this.matrix):this.matrixWorld.multiplyMatrices(this.parent.matrixWorld,this.matrix),this.matrixWorldNeedsUpdate=!1,a=!0;for(var b=this.children,c=0,d=b.length;c<d;c++)b[c].updateMatrixWorld(a)},
+toJSON:function(a){function b(b,c){void 0===b[c.uuid]&&(b[c.uuid]=c.toJSON(a));return c.uuid}function c(a){var b=[],c;for(c in a){var d=a[c];delete d.metadata;b.push(d)}return b}var d=void 0===a||"string"===typeof a,e={};d&&(a={geometries:{},materials:{},textures:{},images:{},shapes:{}},e.metadata={version:4.5,type:"Object",generator:"Object3D.toJSON"});var f={};f.uuid=this.uuid;f.type=this.type;""!==this.name&&(f.name=this.name);!0===this.castShadow&&(f.castShadow=!0);!0===this.receiveShadow&&(f.receiveShadow=
+!0);!1===this.visible&&(f.visible=!1);!1===this.frustumCulled&&(f.frustumCulled=!1);0!==this.renderOrder&&(f.renderOrder=this.renderOrder);"{}"!==JSON.stringify(this.userData)&&(f.userData=this.userData);f.matrix=this.matrix.toArray();if(void 0!==this.geometry){f.geometry=b(a.geometries,this.geometry);var g=this.geometry.parameters;if(void 0!==g&&void 0!==g.shapes)if(g=g.shapes,Array.isArray(g))for(var h=0,l=g.length;h<l;h++)b(a.shapes,g[h]);else b(a.shapes,g)}if(void 0!==this.material)if(Array.isArray(this.material)){g=
+[];h=0;for(l=this.material.length;h<l;h++)g.push(b(a.materials,this.material[h]));f.material=g}else f.material=b(a.materials,this.material);if(0<this.children.length)for(f.children=[],h=0;h<this.children.length;h++)f.children.push(this.children[h].toJSON(a).object);if(d){d=c(a.geometries);h=c(a.materials);l=c(a.textures);var m=c(a.images);g=c(a.shapes);0<d.length&&(e.geometries=d);0<h.length&&(e.materials=h);0<l.length&&(e.textures=l);0<m.length&&(e.images=m);0<g.length&&(e.shapes=g)}e.object=f;return e},
+clone:function(a){return(new this.constructor).copy(this,a)},copy:function(a,b){void 0===b&&(b=!0);this.name=a.name;this.up.copy(a.up);this.position.copy(a.position);this.quaternion.copy(a.quaternion);this.scale.copy(a.scale);this.matrix.copy(a.matrix);this.matrixWorld.copy(a.matrixWorld);this.matrixAutoUpdate=a.matrixAutoUpdate;this.matrixWorldNeedsUpdate=a.matrixWorldNeedsUpdate;this.layers.mask=a.layers.mask;this.visible=a.visible;this.castShadow=a.castShadow;this.receiveShadow=a.receiveShadow;
+this.frustumCulled=a.frustumCulled;this.renderOrder=a.renderOrder;this.userData=JSON.parse(JSON.stringify(a.userData));if(!0===b)for(b=0;b<a.children.length;b++)this.add(a.children[b].clone());return this}});Qa.prototype=Object.assign(Object.create(A.prototype),{constructor:Qa,isCamera:!0,copy:function(a,b){A.prototype.copy.call(this,a,b);this.matrixWorldInverse.copy(a.matrixWorldInverse);this.projectionMatrix.copy(a.projectionMatrix);return this},getWorldDirection:function(){var a=new ja;return function(b){void 0===
+b&&(console.warn("THREE.Camera: .getWorldDirection() target is now required"),b=new p);this.getWorldQuaternion(a);return b.set(0,0,-1).applyQuaternion(a)}}(),updateMatrixWorld:function(a){A.prototype.updateMatrixWorld.call(this,a);this.matrixWorldInverse.getInverse(this.matrixWorld)},clone:function(){return(new this.constructor).copy(this)}});Jb.prototype=Object.assign(Object.create(Qa.prototype),{constructor:Jb,isOrthographicCamera:!0,copy:function(a,b){Qa.prototype.copy.call(this,a,b);this.left=
+a.left;this.right=a.right;this.top=a.top;this.bottom=a.bottom;this.near=a.near;this.far=a.far;this.zoom=a.zoom;this.view=null===a.view?null:Object.assign({},a.view);return this},setViewOffset:function(a,b,c,d,e,f){null===this.view&&(this.view={enabled:!0,fullWidth:1,fullHeight:1,offsetX:0,offsetY:0,width:1,height:1});this.view.enabled=!0;this.view.fullWidth=a;this.view.fullHeight=b;this.view.offsetX=c;this.view.offsetY=d;this.view.width=e;this.view.height=f;this.updateProjectionMatrix()},clearViewOffset:function(){null!==
+this.view&&(this.view.enabled=!1);this.updateProjectionMatrix()},updateProjectionMatrix:function(){var a=(this.right-this.left)/(2*this.zoom),b=(this.top-this.bottom)/(2*this.zoom),c=(this.right+this.left)/2,d=(this.top+this.bottom)/2,e=c-a;c+=a;a=d+b;b=d-b;if(null!==this.view&&this.view.enabled){c=this.zoom/(this.view.width/this.view.fullWidth);b=this.zoom/(this.view.height/this.view.fullHeight);var f=(this.right-this.left)/this.view.width;d=(this.top-this.bottom)/this.view.height;e+=this.view.offsetX/
+c*f;c=e+this.view.width/c*f;a-=this.view.offsetY/b*d;b=a-this.view.height/b*d}this.projectionMatrix.makeOrthographic(e,c,a,b,this.near,this.far)},toJSON:function(a){a=A.prototype.toJSON.call(this,a);a.object.zoom=this.zoom;a.object.left=this.left;a.object.right=this.right;a.object.top=this.top;a.object.bottom=this.bottom;a.object.near=this.near;a.object.far=this.far;null!==this.view&&(a.object.view=Object.assign({},this.view));return a}});Object.assign(Wa.prototype,{clone:function(){return(new this.constructor).copy(this)},
+copy:function(a){this.a=a.a;this.b=a.b;this.c=a.c;this.normal.copy(a.normal);this.color.copy(a.color);this.materialIndex=a.materialIndex;for(var b=0,c=a.vertexNormals.length;b<c;b++)this.vertexNormals[b]=a.vertexNormals[b].clone();b=0;for(c=a.vertexColors.length;b<c;b++)this.vertexColors[b]=a.vertexColors[b].clone();return this}});var Af=0;N.prototype=Object.assign(Object.create(xa.prototype),{constructor:N,isGeometry:!0,applyMatrix:function(a){for(var b=(new sa).getNormalMatrix(a),c=0,d=this.vertices.length;c<
+d;c++)this.vertices[c].applyMatrix4(a);c=0;for(d=this.faces.length;c<d;c++){a=this.faces[c];a.normal.applyMatrix3(b).normalize();for(var e=0,f=a.vertexNormals.length;e<f;e++)a.vertexNormals[e].applyMatrix3(b).normalize()}null!==this.boundingBox&&this.computeBoundingBox();null!==this.boundingSphere&&this.computeBoundingSphere();this.normalsNeedUpdate=this.verticesNeedUpdate=!0;return this},rotateX:function(){var a=new M;return function(b){a.makeRotationX(b);this.applyMatrix(a);return this}}(),rotateY:function(){var a=
+new M;return function(b){a.makeRotationY(b);this.applyMatrix(a);return this}}(),rotateZ:function(){var a=new M;return function(b){a.makeRotationZ(b);this.applyMatrix(a);return this}}(),translate:function(){var a=new M;return function(b,c,d){a.makeTranslation(b,c,d);this.applyMatrix(a);return this}}(),scale:function(){var a=new M;return function(b,c,d){a.makeScale(b,c,d);this.applyMatrix(a);return this}}(),lookAt:function(){var a=new A;return function(b){a.lookAt(b);a.updateMatrix();this.applyMatrix(a.matrix)}}(),
+fromBufferGeometry:function(a){function b(a,b,d,e){var f=void 0!==g?[k[a].clone(),k[b].clone(),k[d].clone()]:[],p=void 0!==h?[c.colors[a].clone(),c.colors[b].clone(),c.colors[d].clone()]:[];e=new Wa(a,b,d,f,p,e);c.faces.push(e);void 0!==l&&c.faceVertexUvs[0].push([n[a].clone(),n[b].clone(),n[d].clone()]);void 0!==m&&c.faceVertexUvs[1].push([t[a].clone(),t[b].clone(),t[d].clone()])}var c=this,d=null!==a.index?a.index.array:void 0,e=a.attributes,f=e.position.array,g=void 0!==e.normal?e.normal.array:
+void 0,h=void 0!==e.color?e.color.array:void 0,l=void 0!==e.uv?e.uv.array:void 0,m=void 0!==e.uv2?e.uv2.array:void 0;void 0!==m&&(this.faceVertexUvs[1]=[]);for(var k=[],n=[],t=[],r=e=0;e<f.length;e+=3,r+=2)c.vertices.push(new p(f[e],f[e+1],f[e+2])),void 0!==g&&k.push(new p(g[e],g[e+1],g[e+2])),void 0!==h&&c.colors.push(new I(h[e],h[e+1],h[e+2])),void 0!==l&&n.push(new C(l[r],l[r+1])),void 0!==m&&t.push(new C(m[r],m[r+1]));var q=a.groups;if(0<q.length)for(e=0;e<q.length;e++){f=q[e];var v=f.start,x=
+f.count;r=v;for(v+=x;r<v;r+=3)void 0!==d?b(d[r],d[r+1],d[r+2],f.materialIndex):b(r,r+1,r+2,f.materialIndex)}else if(void 0!==d)for(e=0;e<d.length;e+=3)b(d[e],d[e+1],d[e+2]);else for(e=0;e<f.length/3;e+=3)b(e,e+1,e+2);this.computeFaceNormals();null!==a.boundingBox&&(this.boundingBox=a.boundingBox.clone());null!==a.boundingSphere&&(this.boundingSphere=a.boundingSphere.clone());return this},center:function(){var a=new p;return function(){this.computeBoundingBox();this.boundingBox.getCenter(a).negate();
+this.translate(a.x,a.y,a.z);return this}}(),normalize:function(){this.computeBoundingSphere();var a=this.boundingSphere.center,b=this.boundingSphere.radius;b=0===b?1:1/b;var c=new M;c.set(b,0,0,-b*a.x,0,b,0,-b*a.y,0,0,b,-b*a.z,0,0,0,1);this.applyMatrix(c);return this},computeFaceNormals:function(){for(var a=new p,b=new p,c=0,d=this.faces.length;c<d;c++){var e=this.faces[c],f=this.vertices[e.a],g=this.vertices[e.b];a.subVectors(this.vertices[e.c],g);b.subVectors(f,g);a.cross(b);a.normalize();e.normal.copy(a)}},
+computeVertexNormals:function(a){void 0===a&&(a=!0);var b;var c=Array(this.vertices.length);var d=0;for(b=this.vertices.length;d<b;d++)c[d]=new p;if(a){var e=new p,f=new p;a=0;for(d=this.faces.length;a<d;a++){b=this.faces[a];var g=this.vertices[b.a];var h=this.vertices[b.b];var l=this.vertices[b.c];e.subVectors(l,h);f.subVectors(g,h);e.cross(f);c[b.a].add(e);c[b.b].add(e);c[b.c].add(e)}}else for(this.computeFaceNormals(),a=0,d=this.faces.length;a<d;a++)b=this.faces[a],c[b.a].add(b.normal),c[b.b].add(b.normal),
+c[b.c].add(b.normal);d=0;for(b=this.vertices.length;d<b;d++)c[d].normalize();a=0;for(d=this.faces.length;a<d;a++)b=this.faces[a],g=b.vertexNormals,3===g.length?(g[0].copy(c[b.a]),g[1].copy(c[b.b]),g[2].copy(c[b.c])):(g[0]=c[b.a].clone(),g[1]=c[b.b].clone(),g[2]=c[b.c].clone());0<this.faces.length&&(this.normalsNeedUpdate=!0)},computeFlatVertexNormals:function(){var a;this.computeFaceNormals();var b=0;for(a=this.faces.length;b<a;b++){var c=this.faces[b];var d=c.vertexNormals;3===d.length?(d[0].copy(c.normal),
+d[1].copy(c.normal),d[2].copy(c.normal)):(d[0]=c.normal.clone(),d[1]=c.normal.clone(),d[2]=c.normal.clone())}0<this.faces.length&&(this.normalsNeedUpdate=!0)},computeMorphNormals:function(){var a,b;var c=0;for(b=this.faces.length;c<b;c++){var d=this.faces[c];d.__originalFaceNormal?d.__originalFaceNormal.copy(d.normal):d.__originalFaceNormal=d.normal.clone();d.__originalVertexNormals||(d.__originalVertexNormals=[]);var e=0;for(a=d.vertexNormals.length;e<a;e++)d.__originalVertexNormals[e]?d.__originalVertexNormals[e].copy(d.vertexNormals[e]):
+d.__originalVertexNormals[e]=d.vertexNormals[e].clone()}var f=new N;f.faces=this.faces;e=0;for(a=this.morphTargets.length;e<a;e++){if(!this.morphNormals[e]){this.morphNormals[e]={};this.morphNormals[e].faceNormals=[];this.morphNormals[e].vertexNormals=[];d=this.morphNormals[e].faceNormals;var g=this.morphNormals[e].vertexNormals;c=0;for(b=this.faces.length;c<b;c++){var h=new p;var l={a:new p,b:new p,c:new p};d.push(h);g.push(l)}}g=this.morphNormals[e];f.vertices=this.morphTargets[e].vertices;f.computeFaceNormals();
+f.computeVertexNormals();c=0;for(b=this.faces.length;c<b;c++)d=this.faces[c],h=g.faceNormals[c],l=g.vertexNormals[c],h.copy(d.normal),l.a.copy(d.vertexNormals[0]),l.b.copy(d.vertexNormals[1]),l.c.copy(d.vertexNormals[2])}c=0;for(b=this.faces.length;c<b;c++)d=this.faces[c],d.normal=d.__originalFaceNormal,d.vertexNormals=d.__originalVertexNormals},computeBoundingBox:function(){null===this.boundingBox&&(this.boundingBox=new Va);this.boundingBox.setFromPoints(this.vertices)},computeBoundingSphere:function(){null===
+this.boundingSphere&&(this.boundingSphere=new Ea);this.boundingSphere.setFromPoints(this.vertices)},merge:function(a,b,c){if(a&&a.isGeometry){var d,e=this.vertices.length,f=this.vertices,g=a.vertices,h=this.faces,l=a.faces,m=this.faceVertexUvs[0],k=a.faceVertexUvs[0],n=this.colors,p=a.colors;void 0===c&&(c=0);void 0!==b&&(d=(new sa).getNormalMatrix(b));a=0;for(var r=g.length;a<r;a++){var q=g[a].clone();void 0!==b&&q.applyMatrix4(b);f.push(q)}a=0;for(r=p.length;a<r;a++)n.push(p[a].clone());a=0;for(r=
+l.length;a<r;a++){g=l[a];var v=g.vertexNormals;p=g.vertexColors;n=new Wa(g.a+e,g.b+e,g.c+e);n.normal.copy(g.normal);void 0!==d&&n.normal.applyMatrix3(d).normalize();b=0;for(f=v.length;b<f;b++)q=v[b].clone(),void 0!==d&&q.applyMatrix3(d).normalize(),n.vertexNormals.push(q);n.color.copy(g.color);b=0;for(f=p.length;b<f;b++)q=p[b],n.vertexColors.push(q.clone());n.materialIndex=g.materialIndex+c;h.push(n)}a=0;for(r=k.length;a<r;a++)if(c=k[a],d=[],void 0!==c){b=0;for(f=c.length;b<f;b++)d.push(c[b].clone());
+m.push(d)}}else console.error("THREE.Geometry.merge(): geometry not an instance of THREE.Geometry.",a)},mergeMesh:function(a){a&&a.isMesh?(a.matrixAutoUpdate&&a.updateMatrix(),this.merge(a.geometry,a.matrix)):console.error("THREE.Geometry.mergeMesh(): mesh not an instance of THREE.Mesh.",a)},mergeVertices:function(){var a={},b=[],c=[],d=Math.pow(10,4),e;var f=0;for(e=this.vertices.length;f<e;f++){var g=this.vertices[f];g=Math.round(g.x*d)+"_"+Math.round(g.y*d)+"_"+Math.round(g.z*d);void 0===a[g]?
+(a[g]=f,b.push(this.vertices[f]),c[f]=b.length-1):c[f]=c[a[g]]}a=[];f=0;for(e=this.faces.length;f<e;f++)for(d=this.faces[f],d.a=c[d.a],d.b=c[d.b],d.c=c[d.c],d=[d.a,d.b,d.c],g=0;3>g;g++)if(d[g]===d[(g+1)%3]){a.push(f);break}for(f=a.length-1;0<=f;f--)for(d=a[f],this.faces.splice(d,1),c=0,e=this.faceVertexUvs.length;c<e;c++)this.faceVertexUvs[c].splice(d,1);f=this.vertices.length-b.length;this.vertices=b;return f},setFromPoints:function(a){this.vertices=[];for(var b=0,c=a.length;b<c;b++){var d=a[b];
+this.vertices.push(new p(d.x,d.y,d.z||0))}return this},sortFacesByMaterialIndex:function(){for(var a=this.faces,b=a.length,c=0;c<b;c++)a[c]._id=c;a.sort(function(a,b){return a.materialIndex-b.materialIndex});var d=this.faceVertexUvs[0],e=this.faceVertexUvs[1],f,g;d&&d.length===b&&(f=[]);e&&e.length===b&&(g=[]);for(c=0;c<b;c++){var h=a[c]._id;f&&f.push(d[h]);g&&g.push(e[h])}f&&(this.faceVertexUvs[0]=f);g&&(this.faceVertexUvs[1]=g)},toJSON:function(){function a(a,b,c){return c?a|1<<b:a&~(1<<b)}function b(a){var b=
+a.x.toString()+a.y.toString()+a.z.toString();if(void 0!==m[b])return m[b];m[b]=l.length/3;l.push(a.x,a.y,a.z);return m[b]}function c(a){var b=a.r.toString()+a.g.toString()+a.b.toString();if(void 0!==n[b])return n[b];n[b]=k.length;k.push(a.getHex());return n[b]}function d(a){var b=a.x.toString()+a.y.toString();if(void 0!==r[b])return r[b];r[b]=p.length/2;p.push(a.x,a.y);return r[b]}var e={metadata:{version:4.5,type:"Geometry",generator:"Geometry.toJSON"}};e.uuid=this.uuid;e.type=this.type;""!==this.name&&
+(e.name=this.name);if(void 0!==this.parameters){var f=this.parameters,g;for(g in f)void 0!==f[g]&&(e[g]=f[g]);return e}f=[];for(g=0;g<this.vertices.length;g++){var h=this.vertices[g];f.push(h.x,h.y,h.z)}h=[];var l=[],m={},k=[],n={},p=[],r={};for(g=0;g<this.faces.length;g++){var q=this.faces[g],v=void 0!==this.faceVertexUvs[0][g],x=0<q.normal.length(),y=0<q.vertexNormals.length,w=1!==q.color.r||1!==q.color.g||1!==q.color.b,B=0<q.vertexColors.length,G=0;G=a(G,0,0);G=a(G,1,!0);G=a(G,2,!1);G=a(G,3,v);
+G=a(G,4,x);G=a(G,5,y);G=a(G,6,w);G=a(G,7,B);h.push(G);h.push(q.a,q.b,q.c);h.push(q.materialIndex);v&&(v=this.faceVertexUvs[0][g],h.push(d(v[0]),d(v[1]),d(v[2])));x&&h.push(b(q.normal));y&&(x=q.vertexNormals,h.push(b(x[0]),b(x[1]),b(x[2])));w&&h.push(c(q.color));B&&(q=q.vertexColors,h.push(c(q[0]),c(q[1]),c(q[2])))}e.data={};e.data.vertices=f;e.data.normals=l;0<k.length&&(e.data.colors=k);0<p.length&&(e.data.uvs=[p]);e.data.faces=h;return e},clone:function(){return(new N).copy(this)},copy:function(a){var b,
+c,d;this.vertices=[];this.colors=[];this.faces=[];this.faceVertexUvs=[[]];this.morphTargets=[];this.morphNormals=[];this.skinWeights=[];this.skinIndices=[];this.lineDistances=[];this.boundingSphere=this.boundingBox=null;this.name=a.name;var e=a.vertices;var f=0;for(b=e.length;f<b;f++)this.vertices.push(e[f].clone());e=a.colors;f=0;for(b=e.length;f<b;f++)this.colors.push(e[f].clone());e=a.faces;f=0;for(b=e.length;f<b;f++)this.faces.push(e[f].clone());f=0;for(b=a.faceVertexUvs.length;f<b;f++){var g=
+a.faceVertexUvs[f];void 0===this.faceVertexUvs[f]&&(this.faceVertexUvs[f]=[]);e=0;for(c=g.length;e<c;e++){var h=g[e],l=[];var m=0;for(d=h.length;m<d;m++)l.push(h[m].clone());this.faceVertexUvs[f].push(l)}}m=a.morphTargets;f=0;for(b=m.length;f<b;f++){d={};d.name=m[f].name;if(void 0!==m[f].vertices)for(d.vertices=[],e=0,c=m[f].vertices.length;e<c;e++)d.vertices.push(m[f].vertices[e].clone());if(void 0!==m[f].normals)for(d.normals=[],e=0,c=m[f].normals.length;e<c;e++)d.normals.push(m[f].normals[e].clone());
+this.morphTargets.push(d)}m=a.morphNormals;f=0;for(b=m.length;f<b;f++){d={};if(void 0!==m[f].vertexNormals)for(d.vertexNormals=[],e=0,c=m[f].vertexNormals.length;e<c;e++)g=m[f].vertexNormals[e],h={},h.a=g.a.clone(),h.b=g.b.clone(),h.c=g.c.clone(),d.vertexNormals.push(h);if(void 0!==m[f].faceNormals)for(d.faceNormals=[],e=0,c=m[f].faceNormals.length;e<c;e++)d.faceNormals.push(m[f].faceNormals[e].clone());this.morphNormals.push(d)}e=a.skinWeights;f=0;for(b=e.length;f<b;f++)this.skinWeights.push(e[f].clone());
+e=a.skinIndices;f=0;for(b=e.length;f<b;f++)this.skinIndices.push(e[f].clone());e=a.lineDistances;f=0;for(b=e.length;f<b;f++)this.lineDistances.push(e[f]);f=a.boundingBox;null!==f&&(this.boundingBox=f.clone());f=a.boundingSphere;null!==f&&(this.boundingSphere=f.clone());this.elementsNeedUpdate=a.elementsNeedUpdate;this.verticesNeedUpdate=a.verticesNeedUpdate;this.uvsNeedUpdate=a.uvsNeedUpdate;this.normalsNeedUpdate=a.normalsNeedUpdate;this.colorsNeedUpdate=a.colorsNeedUpdate;this.lineDistancesNeedUpdate=
+a.lineDistancesNeedUpdate;this.groupsNeedUpdate=a.groupsNeedUpdate;return this},dispose:function(){this.dispatchEvent({type:"dispose"})}});Object.defineProperty(T.prototype,"needsUpdate",{set:function(a){!0===a&&this.version++}});Object.assign(T.prototype,{isBufferAttribute:!0,onUploadCallback:function(){},setArray:function(a){if(Array.isArray(a))throw new TypeError("THREE.BufferAttribute: array should be a Typed Array.");this.count=void 0!==a?a.length/this.itemSize:0;this.array=a},setDynamic:function(a){this.dynamic=
+a;return this},copy:function(a){this.array=new a.array.constructor(a.array);this.itemSize=a.itemSize;this.count=a.count;this.normalized=a.normalized;this.dynamic=a.dynamic;return this},copyAt:function(a,b,c){a*=this.itemSize;c*=b.itemSize;for(var d=0,e=this.itemSize;d<e;d++)this.array[a+d]=b.array[c+d];return this},copyArray:function(a){this.array.set(a);return this},copyColorsArray:function(a){for(var b=this.array,c=0,d=0,e=a.length;d<e;d++){var f=a[d];void 0===f&&(console.warn("THREE.BufferAttribute.copyColorsArray(): color is undefined",
+d),f=new I);b[c++]=f.r;b[c++]=f.g;b[c++]=f.b}return this},copyVector2sArray:function(a){for(var b=this.array,c=0,d=0,e=a.length;d<e;d++){var f=a[d];void 0===f&&(console.warn("THREE.BufferAttribute.copyVector2sArray(): vector is undefined",d),f=new C);b[c++]=f.x;b[c++]=f.y}return this},copyVector3sArray:function(a){for(var b=this.array,c=0,d=0,e=a.length;d<e;d++){var f=a[d];void 0===f&&(console.warn("THREE.BufferAttribute.copyVector3sArray(): vector is undefined",d),f=new p);b[c++]=f.x;b[c++]=f.y;
+b[c++]=f.z}return this},copyVector4sArray:function(a){for(var b=this.array,c=0,d=0,e=a.length;d<e;d++){var f=a[d];void 0===f&&(console.warn("THREE.BufferAttribute.copyVector4sArray(): vector is undefined",d),f=new ea);b[c++]=f.x;b[c++]=f.y;b[c++]=f.z;b[c++]=f.w}return this},set:function(a,b){void 0===b&&(b=0);this.array.set(a,b);return this},getX:function(a){return this.array[a*this.itemSize]},setX:function(a,b){this.array[a*this.itemSize]=b;return this},getY:function(a){return this.array[a*this.itemSize+
+1]},setY:function(a,b){this.array[a*this.itemSize+1]=b;return this},getZ:function(a){return this.array[a*this.itemSize+2]},setZ:function(a,b){this.array[a*this.itemSize+2]=b;return this},getW:function(a){return this.array[a*this.itemSize+3]},setW:function(a,b){this.array[a*this.itemSize+3]=b;return this},setXY:function(a,b,c){a*=this.itemSize;this.array[a+0]=b;this.array[a+1]=c;return this},setXYZ:function(a,b,c,d){a*=this.itemSize;this.array[a+0]=b;this.array[a+1]=c;this.array[a+2]=d;return this},
+setXYZW:function(a,b,c,d,e){a*=this.itemSize;this.array[a+0]=b;this.array[a+1]=c;this.array[a+2]=d;this.array[a+3]=e;return this},onUpload:function(a){this.onUploadCallback=a;return this},clone:function(){return(new this.constructor(this.array,this.itemSize)).copy(this)}});rc.prototype=Object.create(T.prototype);rc.prototype.constructor=rc;sc.prototype=Object.create(T.prototype);sc.prototype.constructor=sc;tc.prototype=Object.create(T.prototype);tc.prototype.constructor=tc;uc.prototype=Object.create(T.prototype);
+uc.prototype.constructor=uc;kb.prototype=Object.create(T.prototype);kb.prototype.constructor=kb;vc.prototype=Object.create(T.prototype);vc.prototype.constructor=vc;lb.prototype=Object.create(T.prototype);lb.prototype.constructor=lb;z.prototype=Object.create(T.prototype);z.prototype.constructor=z;wc.prototype=Object.create(T.prototype);wc.prototype.constructor=wc;Object.assign(Ce.prototype,{computeGroups:function(a){var b=[],c=void 0;a=a.faces;for(var d=0;d<a.length;d++){var e=a[d];if(e.materialIndex!==
+c){c=e.materialIndex;void 0!==f&&(f.count=3*d-f.start,b.push(f));var f={start:3*d,materialIndex:c}}}void 0!==f&&(f.count=3*d-f.start,b.push(f));this.groups=b},fromGeometry:function(a){var b=a.faces,c=a.vertices,d=a.faceVertexUvs,e=d[0]&&0<d[0].length,f=d[1]&&0<d[1].length,g=a.morphTargets,h=g.length;if(0<h){var l=[];for(var m=0;m<h;m++)l[m]=[];this.morphTargets.position=l}var k=a.morphNormals,n=k.length;if(0<n){var p=[];for(m=0;m<n;m++)p[m]=[];this.morphTargets.normal=p}var r=a.skinIndices,q=a.skinWeights,
+v=r.length===c.length,x=q.length===c.length;for(m=0;m<b.length;m++){var y=b[m];this.vertices.push(c[y.a],c[y.b],c[y.c]);var w=y.vertexNormals;3===w.length?this.normals.push(w[0],w[1],w[2]):(w=y.normal,this.normals.push(w,w,w));w=y.vertexColors;3===w.length?this.colors.push(w[0],w[1],w[2]):(w=y.color,this.colors.push(w,w,w));!0===e&&(w=d[0][m],void 0!==w?this.uvs.push(w[0],w[1],w[2]):(console.warn("THREE.DirectGeometry.fromGeometry(): Undefined vertexUv ",m),this.uvs.push(new C,new C,new C)));!0===
+f&&(w=d[1][m],void 0!==w?this.uvs2.push(w[0],w[1],w[2]):(console.warn("THREE.DirectGeometry.fromGeometry(): Undefined vertexUv2 ",m),this.uvs2.push(new C,new C,new C)));for(w=0;w<h;w++){var B=g[w].vertices;l[w].push(B[y.a],B[y.b],B[y.c])}for(w=0;w<n;w++)B=k[w].vertexNormals[m],p[w].push(B.a,B.b,B.c);v&&this.skinIndices.push(r[y.a],r[y.b],r[y.c]);x&&this.skinWeights.push(q[y.a],q[y.b],q[y.c])}this.computeGroups(a);this.verticesNeedUpdate=a.verticesNeedUpdate;this.normalsNeedUpdate=a.normalsNeedUpdate;
+this.colorsNeedUpdate=a.colorsNeedUpdate;this.uvsNeedUpdate=a.uvsNeedUpdate;this.groupsNeedUpdate=a.groupsNeedUpdate;return this}});var Bf=1;F.prototype=Object.assign(Object.create(xa.prototype),{constructor:F,isBufferGeometry:!0,getIndex:function(){return this.index},setIndex:function(a){Array.isArray(a)?this.index=new (65535<De(a)?lb:kb)(a,1):this.index=a},addAttribute:function(a,b,c){if(b&&b.isBufferAttribute||b&&b.isInterleavedBufferAttribute)if("index"===a)console.warn("THREE.BufferGeometry.addAttribute: Use .setIndex() for index attribute."),
+this.setIndex(b);else return this.attributes[a]=b,this;else console.warn("THREE.BufferGeometry: .addAttribute() now expects ( name, attribute )."),this.addAttribute(a,new T(b,c))},getAttribute:function(a){return this.attributes[a]},removeAttribute:function(a){delete this.attributes[a];return this},addGroup:function(a,b,c){this.groups.push({start:a,count:b,materialIndex:void 0!==c?c:0})},clearGroups:function(){this.groups=[]},setDrawRange:function(a,b){this.drawRange.start=a;this.drawRange.count=b},
+applyMatrix:function(a){var b=this.attributes.position;void 0!==b&&(a.applyToBufferAttribute(b),b.needsUpdate=!0);b=this.attributes.normal;void 0!==b&&((new sa).getNormalMatrix(a).applyToBufferAttribute(b),b.needsUpdate=!0);null!==this.boundingBox&&this.computeBoundingBox();null!==this.boundingSphere&&this.computeBoundingSphere();return this},rotateX:function(){var a=new M;return function(b){a.makeRotationX(b);this.applyMatrix(a);return this}}(),rotateY:function(){var a=new M;return function(b){a.makeRotationY(b);
+this.applyMatrix(a);return this}}(),rotateZ:function(){var a=new M;return function(b){a.makeRotationZ(b);this.applyMatrix(a);return this}}(),translate:function(){var a=new M;return function(b,c,d){a.makeTranslation(b,c,d);this.applyMatrix(a);return this}}(),scale:function(){var a=new M;return function(b,c,d){a.makeScale(b,c,d);this.applyMatrix(a);return this}}(),lookAt:function(){var a=new A;return function(b){a.lookAt(b);a.updateMatrix();this.applyMatrix(a.matrix)}}(),center:function(){var a=new p;
+return function(){this.computeBoundingBox();this.boundingBox.getCenter(a).negate();this.translate(a.x,a.y,a.z);return this}}(),setFromObject:function(a){var b=a.geometry;if(a.isPoints||a.isLine){a=new z(3*b.vertices.length,3);var c=new z(3*b.colors.length,3);this.addAttribute("position",a.copyVector3sArray(b.vertices));this.addAttribute("color",c.copyColorsArray(b.colors));b.lineDistances&&b.lineDistances.length===b.vertices.length&&(a=new z(b.lineDistances.length,1),this.addAttribute("lineDistance",
+a.copyArray(b.lineDistances)));null!==b.boundingSphere&&(this.boundingSphere=b.boundingSphere.clone());null!==b.boundingBox&&(this.boundingBox=b.boundingBox.clone())}else a.isMesh&&b&&b.isGeometry&&this.fromGeometry(b);return this},setFromPoints:function(a){for(var b=[],c=0,d=a.length;c<d;c++){var e=a[c];b.push(e.x,e.y,e.z||0)}this.addAttribute("position",new z(b,3));return this},updateFromObject:function(a){var b=a.geometry;if(a.isMesh){var c=b.__directGeometry;!0===b.elementsNeedUpdate&&(c=void 0,
+b.elementsNeedUpdate=!1);if(void 0===c)return this.fromGeometry(b);c.verticesNeedUpdate=b.verticesNeedUpdate;c.normalsNeedUpdate=b.normalsNeedUpdate;c.colorsNeedUpdate=b.colorsNeedUpdate;c.uvsNeedUpdate=b.uvsNeedUpdate;c.groupsNeedUpdate=b.groupsNeedUpdate;b.verticesNeedUpdate=!1;b.normalsNeedUpdate=!1;b.colorsNeedUpdate=!1;b.uvsNeedUpdate=!1;b.groupsNeedUpdate=!1;b=c}!0===b.verticesNeedUpdate&&(c=this.attributes.position,void 0!==c&&(c.copyVector3sArray(b.vertices),c.needsUpdate=!0),b.verticesNeedUpdate=
+!1);!0===b.normalsNeedUpdate&&(c=this.attributes.normal,void 0!==c&&(c.copyVector3sArray(b.normals),c.needsUpdate=!0),b.normalsNeedUpdate=!1);!0===b.colorsNeedUpdate&&(c=this.attributes.color,void 0!==c&&(c.copyColorsArray(b.colors),c.needsUpdate=!0),b.colorsNeedUpdate=!1);b.uvsNeedUpdate&&(c=this.attributes.uv,void 0!==c&&(c.copyVector2sArray(b.uvs),c.needsUpdate=!0),b.uvsNeedUpdate=!1);b.lineDistancesNeedUpdate&&(c=this.attributes.lineDistance,void 0!==c&&(c.copyArray(b.lineDistances),c.needsUpdate=
+!0),b.lineDistancesNeedUpdate=!1);b.groupsNeedUpdate&&(b.computeGroups(a.geometry),this.groups=b.groups,b.groupsNeedUpdate=!1);return this},fromGeometry:function(a){a.__directGeometry=(new Ce).fromGeometry(a);return this.fromDirectGeometry(a.__directGeometry)},fromDirectGeometry:function(a){var b=new Float32Array(3*a.vertices.length);this.addAttribute("position",(new T(b,3)).copyVector3sArray(a.vertices));0<a.normals.length&&(b=new Float32Array(3*a.normals.length),this.addAttribute("normal",(new T(b,
+3)).copyVector3sArray(a.normals)));0<a.colors.length&&(b=new Float32Array(3*a.colors.length),this.addAttribute("color",(new T(b,3)).copyColorsArray(a.colors)));0<a.uvs.length&&(b=new Float32Array(2*a.uvs.length),this.addAttribute("uv",(new T(b,2)).copyVector2sArray(a.uvs)));0<a.uvs2.length&&(b=new Float32Array(2*a.uvs2.length),this.addAttribute("uv2",(new T(b,2)).copyVector2sArray(a.uvs2)));this.groups=a.groups;for(var c in a.morphTargets){b=[];for(var d=a.morphTargets[c],e=0,f=d.length;e<f;e++){var g=
+d[e],h=new z(3*g.length,3);b.push(h.copyVector3sArray(g))}this.morphAttributes[c]=b}0<a.skinIndices.length&&(c=new z(4*a.skinIndices.length,4),this.addAttribute("skinIndex",c.copyVector4sArray(a.skinIndices)));0<a.skinWeights.length&&(c=new z(4*a.skinWeights.length,4),this.addAttribute("skinWeight",c.copyVector4sArray(a.skinWeights)));null!==a.boundingSphere&&(this.boundingSphere=a.boundingSphere.clone());null!==a.boundingBox&&(this.boundingBox=a.boundingBox.clone());return this},computeBoundingBox:function(){null===
+this.boundingBox&&(this.boundingBox=new Va);var a=this.attributes.position;void 0!==a?this.boundingBox.setFromBufferAttribute(a):this.boundingBox.makeEmpty();(isNaN(this.boundingBox.min.x)||isNaN(this.boundingBox.min.y)||isNaN(this.boundingBox.min.z))&&console.error('THREE.BufferGeometry.computeBoundingBox: Computed min/max have NaN values. The "position" attribute is likely to have NaN values.',this)},computeBoundingSphere:function(){var a=new Va,b=new p;return function(){null===this.boundingSphere&&
+(this.boundingSphere=new Ea);var c=this.attributes.position;if(c){var d=this.boundingSphere.center;a.setFromBufferAttribute(c);a.getCenter(d);for(var e=0,f=0,g=c.count;f<g;f++)b.x=c.getX(f),b.y=c.getY(f),b.z=c.getZ(f),e=Math.max(e,d.distanceToSquared(b));this.boundingSphere.radius=Math.sqrt(e);isNaN(this.boundingSphere.radius)&&console.error('THREE.BufferGeometry.computeBoundingSphere(): Computed radius is NaN. The "position" attribute is likely to have NaN values.',this)}}}(),computeFaceNormals:function(){},
+computeVertexNormals:function(){var a=this.index,b=this.attributes,c=this.groups;if(b.position){var d=b.position.array;if(void 0===b.normal)this.addAttribute("normal",new T(new Float32Array(d.length),3));else for(var e=b.normal.array,f=0,g=e.length;f<g;f++)e[f]=0;e=b.normal.array;var h=new p,l=new p,m=new p,k=new p,n=new p;if(a){a=a.array;0===c.length&&this.addGroup(0,a.length);for(var t=0,r=c.length;t<r;++t){f=c[t];g=f.start;var q=f.count;f=g;for(g+=q;f<g;f+=3){q=3*a[f+0];var v=3*a[f+1];var x=3*
+a[f+2];h.fromArray(d,q);l.fromArray(d,v);m.fromArray(d,x);k.subVectors(m,l);n.subVectors(h,l);k.cross(n);e[q]+=k.x;e[q+1]+=k.y;e[q+2]+=k.z;e[v]+=k.x;e[v+1]+=k.y;e[v+2]+=k.z;e[x]+=k.x;e[x+1]+=k.y;e[x+2]+=k.z}}}else for(f=0,g=d.length;f<g;f+=9)h.fromArray(d,f),l.fromArray(d,f+3),m.fromArray(d,f+6),k.subVectors(m,l),n.subVectors(h,l),k.cross(n),e[f]=k.x,e[f+1]=k.y,e[f+2]=k.z,e[f+3]=k.x,e[f+4]=k.y,e[f+5]=k.z,e[f+6]=k.x,e[f+7]=k.y,e[f+8]=k.z;this.normalizeNormals();b.normal.needsUpdate=!0}},merge:function(a,
+b){if(a&&a.isBufferGeometry){void 0===b&&(b=0,console.warn("THREE.BufferGeometry.merge(): Overwriting original geometry, starting at offset=0. Use BufferGeometryUtils.mergeBufferGeometries() for lossless merge."));var c=this.attributes,d;for(d in c)if(void 0!==a.attributes[d]){var e=c[d].array,f=a.attributes[d],g=f.array,h=0;for(f=f.itemSize*b;h<g.length;h++,f++)e[f]=g[h]}return this}console.error("THREE.BufferGeometry.merge(): geometry not an instance of THREE.BufferGeometry.",a)},normalizeNormals:function(){var a=
+new p;return function(){for(var b=this.attributes.normal,c=0,d=b.count;c<d;c++)a.x=b.getX(c),a.y=b.getY(c),a.z=b.getZ(c),a.normalize(),b.setXYZ(c,a.x,a.y,a.z)}}(),toNonIndexed:function(){if(null===this.index)return console.warn("THREE.BufferGeometry.toNonIndexed(): Geometry is already non-indexed."),this;var a=new F,b=this.index.array,c=this.attributes,d;for(d in c){var e=c[d],f=e.array,g=e.itemSize,h=new f.constructor(b.length*g),l=0;e=0;for(var m=b.length;e<m;e++){var k=b[e]*g;for(var n=0;n<g;n++)h[l++]=
+f[k++]}a.addAttribute(d,new T(h,g))}b=this.groups;e=0;for(m=b.length;e<m;e++)c=b[e],a.addGroup(c.start,c.count,c.materialIndex);return a},toJSON:function(){var a={metadata:{version:4.5,type:"BufferGeometry",generator:"BufferGeometry.toJSON"}};a.uuid=this.uuid;a.type=this.type;""!==this.name&&(a.name=this.name);if(void 0!==this.parameters){var b=this.parameters;for(e in b)void 0!==b[e]&&(a[e]=b[e]);return a}a.data={attributes:{}};var c=this.index;null!==c&&(b=Array.prototype.slice.call(c.array),a.data.index=
+{type:c.array.constructor.name,array:b});c=this.attributes;for(e in c){var d=c[e];b=Array.prototype.slice.call(d.array);a.data.attributes[e]={itemSize:d.itemSize,type:d.array.constructor.name,array:b,normalized:d.normalized}}var e=this.groups;0<e.length&&(a.data.groups=JSON.parse(JSON.stringify(e)));e=this.boundingSphere;null!==e&&(a.data.boundingSphere={center:e.center.toArray(),radius:e.radius});return a},clone:function(){return(new F).copy(this)},copy:function(a){var b;this.index=null;this.attributes=
+{};this.morphAttributes={};this.groups=[];this.boundingSphere=this.boundingBox=null;this.name=a.name;var c=a.index;null!==c&&this.setIndex(c.clone());c=a.attributes;for(g in c)this.addAttribute(g,c[g].clone());var d=a.morphAttributes;for(g in d){var e=[],f=d[g];c=0;for(b=f.length;c<b;c++)e.push(f[c].clone());this.morphAttributes[g]=e}var g=a.groups;c=0;for(b=g.length;c<b;c++)d=g[c],this.addGroup(d.start,d.count,d.materialIndex);g=a.boundingBox;null!==g&&(this.boundingBox=g.clone());g=a.boundingSphere;
+null!==g&&(this.boundingSphere=g.clone());this.drawRange.start=a.drawRange.start;this.drawRange.count=a.drawRange.count;return this},dispose:function(){this.dispatchEvent({type:"dispose"})}});Kb.prototype=Object.create(N.prototype);Kb.prototype.constructor=Kb;mb.prototype=Object.create(F.prototype);mb.prototype.constructor=mb;xc.prototype=Object.create(N.prototype);xc.prototype.constructor=xc;pb.prototype=Object.create(F.prototype);pb.prototype.constructor=pb;var Cf=0;O.prototype=Object.assign(Object.create(xa.prototype),
+{constructor:O,isMaterial:!0,onBeforeCompile:function(){},setValues:function(a){if(void 0!==a)for(var b in a){var c=a[b];if(void 0===c)console.warn("THREE.Material: '"+b+"' parameter is undefined.");else if("shading"===b)console.warn("THREE."+this.type+": .shading has been removed. Use the boolean .flatShading instead."),this.flatShading=1===c?!0:!1;else{var d=this[b];void 0===d?console.warn("THREE."+this.type+": '"+b+"' is not a property of this material."):d&&d.isColor?d.set(c):d&&d.isVector3&&
+c&&c.isVector3?d.copy(c):this[b]="overdraw"===b?Number(c):c}}},toJSON:function(a){function b(a){var b=[],c;for(c in a){var d=a[c];delete d.metadata;b.push(d)}return b}var c=void 0===a||"string"===typeof a;c&&(a={textures:{},images:{}});var d={metadata:{version:4.5,type:"Material",generator:"Material.toJSON"}};d.uuid=this.uuid;d.type=this.type;""!==this.name&&(d.name=this.name);this.color&&this.color.isColor&&(d.color=this.color.getHex());void 0!==this.roughness&&(d.roughness=this.roughness);void 0!==
+this.metalness&&(d.metalness=this.metalness);this.emissive&&this.emissive.isColor&&(d.emissive=this.emissive.getHex());1!==this.emissiveIntensity&&(d.emissiveIntensity=this.emissiveIntensity);this.specular&&this.specular.isColor&&(d.specular=this.specular.getHex());void 0!==this.shininess&&(d.shininess=this.shininess);void 0!==this.clearCoat&&(d.clearCoat=this.clearCoat);void 0!==this.clearCoatRoughness&&(d.clearCoatRoughness=this.clearCoatRoughness);this.map&&this.map.isTexture&&(d.map=this.map.toJSON(a).uuid);
+this.alphaMap&&this.alphaMap.isTexture&&(d.alphaMap=this.alphaMap.toJSON(a).uuid);this.lightMap&&this.lightMap.isTexture&&(d.lightMap=this.lightMap.toJSON(a).uuid);this.bumpMap&&this.bumpMap.isTexture&&(d.bumpMap=this.bumpMap.toJSON(a).uuid,d.bumpScale=this.bumpScale);this.normalMap&&this.normalMap.isTexture&&(d.normalMap=this.normalMap.toJSON(a).uuid,d.normalScale=this.normalScale.toArray());this.displacementMap&&this.displacementMap.isTexture&&(d.displacementMap=this.displacementMap.toJSON(a).uuid,
+d.displacementScale=this.displacementScale,d.displacementBias=this.displacementBias);this.roughnessMap&&this.roughnessMap.isTexture&&(d.roughnessMap=this.roughnessMap.toJSON(a).uuid);this.metalnessMap&&this.metalnessMap.isTexture&&(d.metalnessMap=this.metalnessMap.toJSON(a).uuid);this.emissiveMap&&this.emissiveMap.isTexture&&(d.emissiveMap=this.emissiveMap.toJSON(a).uuid);this.specularMap&&this.specularMap.isTexture&&(d.specularMap=this.specularMap.toJSON(a).uuid);this.envMap&&this.envMap.isTexture&&
+(d.envMap=this.envMap.toJSON(a).uuid,d.reflectivity=this.reflectivity);this.gradientMap&&this.gradientMap.isTexture&&(d.gradientMap=this.gradientMap.toJSON(a).uuid);void 0!==this.size&&(d.size=this.size);void 0!==this.sizeAttenuation&&(d.sizeAttenuation=this.sizeAttenuation);1!==this.blending&&(d.blending=this.blending);!0===this.flatShading&&(d.flatShading=this.flatShading);0!==this.side&&(d.side=this.side);0!==this.vertexColors&&(d.vertexColors=this.vertexColors);1>this.opacity&&(d.opacity=this.opacity);
+!0===this.transparent&&(d.transparent=this.transparent);d.depthFunc=this.depthFunc;d.depthTest=this.depthTest;d.depthWrite=this.depthWrite;0!==this.rotation&&(d.rotation=this.rotation);1!==this.linewidth&&(d.linewidth=this.linewidth);void 0!==this.dashSize&&(d.dashSize=this.dashSize);void 0!==this.gapSize&&(d.gapSize=this.gapSize);void 0!==this.scale&&(d.scale=this.scale);!0===this.dithering&&(d.dithering=!0);0<this.alphaTest&&(d.alphaTest=this.alphaTest);!0===this.premultipliedAlpha&&(d.premultipliedAlpha=
+this.premultipliedAlpha);!0===this.wireframe&&(d.wireframe=this.wireframe);1<this.wireframeLinewidth&&(d.wireframeLinewidth=this.wireframeLinewidth);"round"!==this.wireframeLinecap&&(d.wireframeLinecap=this.wireframeLinecap);"round"!==this.wireframeLinejoin&&(d.wireframeLinejoin=this.wireframeLinejoin);!0===this.morphTargets&&(d.morphTargets=!0);!0===this.skinning&&(d.skinning=!0);!1===this.visible&&(d.visible=!1);"{}"!==JSON.stringify(this.userData)&&(d.userData=this.userData);c&&(c=b(a.textures),
+a=b(a.images),0<c.length&&(d.textures=c),0<a.length&&(d.images=a));return d},clone:function(){return(new this.constructor).copy(this)},copy:function(a){this.name=a.name;this.fog=a.fog;this.lights=a.lights;this.blending=a.blending;this.side=a.side;this.flatShading=a.flatShading;this.vertexColors=a.vertexColors;this.opacity=a.opacity;this.transparent=a.transparent;this.blendSrc=a.blendSrc;this.blendDst=a.blendDst;this.blendEquation=a.blendEquation;this.blendSrcAlpha=a.blendSrcAlpha;this.blendDstAlpha=
+a.blendDstAlpha;this.blendEquationAlpha=a.blendEquationAlpha;this.depthFunc=a.depthFunc;this.depthTest=a.depthTest;this.depthWrite=a.depthWrite;this.colorWrite=a.colorWrite;this.precision=a.precision;this.polygonOffset=a.polygonOffset;this.polygonOffsetFactor=a.polygonOffsetFactor;this.polygonOffsetUnits=a.polygonOffsetUnits;this.dithering=a.dithering;this.alphaTest=a.alphaTest;this.premultipliedAlpha=a.premultipliedAlpha;this.overdraw=a.overdraw;this.visible=a.visible;this.userData=JSON.parse(JSON.stringify(a.userData));
+this.clipShadows=a.clipShadows;this.clipIntersection=a.clipIntersection;var b=a.clippingPlanes,c=null;if(null!==b){var d=b.length;c=Array(d);for(var e=0;e!==d;++e)c[e]=b[e].clone()}this.clippingPlanes=c;this.shadowSide=a.shadowSide;return this},dispose:function(){this.dispatchEvent({type:"dispose"})}});za.prototype=Object.create(O.prototype);za.prototype.constructor=za;za.prototype.isMeshBasicMaterial=!0;za.prototype.copy=function(a){O.prototype.copy.call(this,a);this.color.copy(a.color);this.map=
+a.map;this.lightMap=a.lightMap;this.lightMapIntensity=a.lightMapIntensity;this.aoMap=a.aoMap;this.aoMapIntensity=a.aoMapIntensity;this.specularMap=a.specularMap;this.alphaMap=a.alphaMap;this.envMap=a.envMap;this.combine=a.combine;this.reflectivity=a.reflectivity;this.refractionRatio=a.refractionRatio;this.wireframe=a.wireframe;this.wireframeLinewidth=a.wireframeLinewidth;this.wireframeLinecap=a.wireframeLinecap;this.wireframeLinejoin=a.wireframeLinejoin;this.skinning=a.skinning;this.morphTargets=
+a.morphTargets;return this};va.prototype=Object.create(O.prototype);va.prototype.constructor=va;va.prototype.isShaderMaterial=!0;va.prototype.copy=function(a){O.prototype.copy.call(this,a);this.fragmentShader=a.fragmentShader;this.vertexShader=a.vertexShader;this.uniforms=Da.clone(a.uniforms);this.defines=a.defines;this.wireframe=a.wireframe;this.wireframeLinewidth=a.wireframeLinewidth;this.lights=a.lights;this.clipping=a.clipping;this.skinning=a.skinning;this.morphTargets=a.morphTargets;this.morphNormals=
+a.morphNormals;this.extensions=a.extensions;return this};va.prototype.toJSON=function(a){a=O.prototype.toJSON.call(this,a);a.uniforms=this.uniforms;a.vertexShader=this.vertexShader;a.fragmentShader=this.fragmentShader;return a};Object.assign(qb.prototype,{set:function(a,b){this.origin.copy(a);this.direction.copy(b);return this},clone:function(){return(new this.constructor).copy(this)},copy:function(a){this.origin.copy(a.origin);this.direction.copy(a.direction);return this},at:function(a,b){void 0===
+b&&(console.warn("THREE.Ray: .at() target is now required"),b=new p);return b.copy(this.direction).multiplyScalar(a).add(this.origin)},lookAt:function(a){this.direction.copy(a).sub(this.origin).normalize();return this},recast:function(){var a=new p;return function(b){this.origin.copy(this.at(b,a));return this}}(),closestPointToPoint:function(a,b){void 0===b&&(console.warn("THREE.Ray: .closestPointToPoint() target is now required"),b=new p);b.subVectors(a,this.origin);a=b.dot(this.direction);return 0>
+a?b.copy(this.origin):b.copy(this.direction).multiplyScalar(a).add(this.origin)},distanceToPoint:function(a){return Math.sqrt(this.distanceSqToPoint(a))},distanceSqToPoint:function(){var a=new p;return function(b){var c=a.subVectors(b,this.origin).dot(this.direction);if(0>c)return this.origin.distanceToSquared(b);a.copy(this.direction).multiplyScalar(c).add(this.origin);return a.distanceToSquared(b)}}(),distanceSqToSegment:function(){var a=new p,b=new p,c=new p;return function(d,e,f,g){a.copy(d).add(e).multiplyScalar(.5);
+b.copy(e).sub(d).normalize();c.copy(this.origin).sub(a);var h=.5*d.distanceTo(e),l=-this.direction.dot(b),m=c.dot(this.direction),k=-c.dot(b),n=c.lengthSq(),p=Math.abs(1-l*l);if(0<p){d=l*k-m;e=l*m-k;var r=h*p;0<=d?e>=-r?e<=r?(h=1/p,d*=h,e*=h,l=d*(d+l*e+2*m)+e*(l*d+e+2*k)+n):(e=h,d=Math.max(0,-(l*e+m)),l=-d*d+e*(e+2*k)+n):(e=-h,d=Math.max(0,-(l*e+m)),l=-d*d+e*(e+2*k)+n):e<=-r?(d=Math.max(0,-(-l*h+m)),e=0<d?-h:Math.min(Math.max(-h,-k),h),l=-d*d+e*(e+2*k)+n):e<=r?(d=0,e=Math.min(Math.max(-h,-k),h),l=
+e*(e+2*k)+n):(d=Math.max(0,-(l*h+m)),e=0<d?h:Math.min(Math.max(-h,-k),h),l=-d*d+e*(e+2*k)+n)}else e=0<l?-h:h,d=Math.max(0,-(l*e+m)),l=-d*d+e*(e+2*k)+n;f&&f.copy(this.direction).multiplyScalar(d).add(this.origin);g&&g.copy(b).multiplyScalar(e).add(a);return l}}(),intersectSphere:function(){var a=new p;return function(b,c){a.subVectors(b.center,this.origin);var d=a.dot(this.direction),e=a.dot(a)-d*d;b=b.radius*b.radius;if(e>b)return null;b=Math.sqrt(b-e);e=d-b;d+=b;return 0>e&&0>d?null:0>e?this.at(d,
+c):this.at(e,c)}}(),intersectsSphere:function(a){return this.distanceToPoint(a.center)<=a.radius},distanceToPlane:function(a){var b=a.normal.dot(this.direction);if(0===b)return 0===a.distanceToPoint(this.origin)?0:null;a=-(this.origin.dot(a.normal)+a.constant)/b;return 0<=a?a:null},intersectPlane:function(a,b){a=this.distanceToPlane(a);return null===a?null:this.at(a,b)},intersectsPlane:function(a){var b=a.distanceToPoint(this.origin);return 0===b||0>a.normal.dot(this.direction)*b?!0:!1},intersectBox:function(a,
+b){var c=1/this.direction.x;var d=1/this.direction.y;var e=1/this.direction.z,f=this.origin;if(0<=c){var g=(a.min.x-f.x)*c;c*=a.max.x-f.x}else g=(a.max.x-f.x)*c,c*=a.min.x-f.x;if(0<=d){var h=(a.min.y-f.y)*d;d*=a.max.y-f.y}else h=(a.max.y-f.y)*d,d*=a.min.y-f.y;if(g>d||h>c)return null;if(h>g||g!==g)g=h;if(d<c||c!==c)c=d;0<=e?(h=(a.min.z-f.z)*e,a=(a.max.z-f.z)*e):(h=(a.max.z-f.z)*e,a=(a.min.z-f.z)*e);if(g>a||h>c)return null;if(h>g||g!==g)g=h;if(a<c||c!==c)c=a;return 0>c?null:this.at(0<=g?g:c,b)},intersectsBox:function(){var a=
+new p;return function(b){return null!==this.intersectBox(b,a)}}(),intersectTriangle:function(){var a=new p,b=new p,c=new p,d=new p;return function(e,f,g,h,l){b.subVectors(f,e);c.subVectors(g,e);d.crossVectors(b,c);f=this.direction.dot(d);if(0<f){if(h)return null;h=1}else if(0>f)h=-1,f=-f;else return null;a.subVectors(this.origin,e);e=h*this.direction.dot(c.crossVectors(a,c));if(0>e)return null;g=h*this.direction.dot(b.cross(a));if(0>g||e+g>f)return null;e=-h*a.dot(d);return 0>e?null:this.at(e/f,l)}}(),
+applyMatrix4:function(a){this.origin.applyMatrix4(a);this.direction.transformDirection(a);return this},equals:function(a){return a.origin.equals(this.origin)&&a.direction.equals(this.direction)}});Object.assign(Lb.prototype,{set:function(a,b){this.start.copy(a);this.end.copy(b);return this},clone:function(){return(new this.constructor).copy(this)},copy:function(a){this.start.copy(a.start);this.end.copy(a.end);return this},getCenter:function(a){void 0===a&&(console.warn("THREE.Line3: .getCenter() target is now required"),
+a=new p);return a.addVectors(this.start,this.end).multiplyScalar(.5)},delta:function(a){void 0===a&&(console.warn("THREE.Line3: .delta() target is now required"),a=new p);return a.subVectors(this.end,this.start)},distanceSq:function(){return this.start.distanceToSquared(this.end)},distance:function(){return this.start.distanceTo(this.end)},at:function(a,b){void 0===b&&(console.warn("THREE.Line3: .at() target is now required"),b=new p);return this.delta(b).multiplyScalar(a).add(this.start)},closestPointToPointParameter:function(){var a=
+new p,b=new p;return function(c,d){a.subVectors(c,this.start);b.subVectors(this.end,this.start);c=b.dot(b);c=b.dot(a)/c;d&&(c=S.clamp(c,0,1));return c}}(),closestPointToPoint:function(a,b,c){a=this.closestPointToPointParameter(a,b);void 0===c&&(console.warn("THREE.Line3: .closestPointToPoint() target is now required"),c=new p);return this.delta(c).multiplyScalar(a).add(this.start)},applyMatrix4:function(a){this.start.applyMatrix4(a);this.end.applyMatrix4(a);return this},equals:function(a){return a.start.equals(this.start)&&
+a.end.equals(this.end)}});Object.assign(Aa,{getNormal:function(){var a=new p;return function(b,c,d,e){void 0===e&&(console.warn("THREE.Triangle: .getNormal() target is now required"),e=new p);e.subVectors(d,c);a.subVectors(b,c);e.cross(a);b=e.lengthSq();return 0<b?e.multiplyScalar(1/Math.sqrt(b)):e.set(0,0,0)}}(),getBarycoord:function(){var a=new p,b=new p,c=new p;return function(d,e,f,g,h){a.subVectors(g,e);b.subVectors(f,e);c.subVectors(d,e);d=a.dot(a);e=a.dot(b);f=a.dot(c);var l=b.dot(b);g=b.dot(c);
+var m=d*l-e*e;void 0===h&&(console.warn("THREE.Triangle: .getBarycoord() target is now required"),h=new p);if(0===m)return h.set(-2,-1,-1);m=1/m;l=(l*f-e*g)*m;d=(d*g-e*f)*m;return h.set(1-l-d,d,l)}}(),containsPoint:function(){var a=new p;return function(b,c,d,e){Aa.getBarycoord(b,c,d,e,a);return 0<=a.x&&0<=a.y&&1>=a.x+a.y}}()});Object.assign(Aa.prototype,{set:function(a,b,c){this.a.copy(a);this.b.copy(b);this.c.copy(c);return this},setFromPointsAndIndices:function(a,b,c,d){this.a.copy(a[b]);this.b.copy(a[c]);
+this.c.copy(a[d]);return this},clone:function(){return(new this.constructor).copy(this)},copy:function(a){this.a.copy(a.a);this.b.copy(a.b);this.c.copy(a.c);return this},getArea:function(){var a=new p,b=new p;return function(){a.subVectors(this.c,this.b);b.subVectors(this.a,this.b);return.5*a.cross(b).length()}}(),getMidpoint:function(a){void 0===a&&(console.warn("THREE.Triangle: .getMidpoint() target is now required"),a=new p);return a.addVectors(this.a,this.b).add(this.c).multiplyScalar(1/3)},getNormal:function(a){return Aa.getNormal(this.a,
+this.b,this.c,a)},getPlane:function(a){void 0===a&&(console.warn("THREE.Triangle: .getPlane() target is now required"),a=new p);return a.setFromCoplanarPoints(this.a,this.b,this.c)},getBarycoord:function(a,b){return Aa.getBarycoord(a,this.a,this.b,this.c,b)},containsPoint:function(a){return Aa.containsPoint(a,this.a,this.b,this.c)},intersectsBox:function(a){return a.intersectsTriangle(this)},closestPointToPoint:function(){var a=new Fa,b=[new Lb,new Lb,new Lb],c=new p,d=new p;return function(e,f){void 0===
+f&&(console.warn("THREE.Triangle: .closestPointToPoint() target is now required"),f=new p);var g=Infinity;a.setFromCoplanarPoints(this.a,this.b,this.c);a.projectPoint(e,c);if(!0===this.containsPoint(c))f.copy(c);else for(b[0].set(this.a,this.b),b[1].set(this.b,this.c),b[2].set(this.c,this.a),e=0;e<b.length;e++){b[e].closestPointToPoint(c,!0,d);var h=c.distanceToSquared(d);h<g&&(g=h,f.copy(d))}return f}}(),equals:function(a){return a.a.equals(this.a)&&a.b.equals(this.b)&&a.c.equals(this.c)}});oa.prototype=
+Object.assign(Object.create(A.prototype),{constructor:oa,isMesh:!0,setDrawMode:function(a){this.drawMode=a},copy:function(a){A.prototype.copy.call(this,a);this.drawMode=a.drawMode;void 0!==a.morphTargetInfluences&&(this.morphTargetInfluences=a.morphTargetInfluences.slice());void 0!==a.morphTargetDictionary&&(this.morphTargetDictionary=Object.assign({},a.morphTargetDictionary));return this},updateMorphTargets:function(){var a=this.geometry;if(a.isBufferGeometry){a=a.morphAttributes;var b=Object.keys(a);
+if(0<b.length){var c=a[b[0]];if(void 0!==c)for(this.morphTargetInfluences=[],this.morphTargetDictionary={},a=0,b=c.length;a<b;a++){var d=c[a].name||String(a);this.morphTargetInfluences.push(0);this.morphTargetDictionary[d]=a}}}else if(c=a.morphTargets,void 0!==c&&0<c.length)for(this.morphTargetInfluences=[],this.morphTargetDictionary={},a=0,b=c.length;a<b;a++)d=c[a].name||String(a),this.morphTargetInfluences.push(0),this.morphTargetDictionary[d]=a},raycast:function(){function a(a,b,c,d,e,f,g){Aa.getBarycoord(a,
+b,c,d,v);e.multiplyScalar(v.x);f.multiplyScalar(v.y);g.multiplyScalar(v.z);e.add(f).add(g);return e.clone()}function b(a,b,c,d,e,f,g,h){if(null===(1===b.side?d.intersectTriangle(g,f,e,!0,h):d.intersectTriangle(e,f,g,2!==b.side,h)))return null;y.copy(h);y.applyMatrix4(a.matrixWorld);b=c.ray.origin.distanceTo(y);return b<c.near||b>c.far?null:{distance:b,point:y.clone(),object:a}}function c(c,d,e,f,m,k,n,p){g.fromBufferAttribute(f,k);h.fromBufferAttribute(f,n);l.fromBufferAttribute(f,p);if(c=b(c,c.material,
+d,e,g,h,l,x))m&&(t.fromBufferAttribute(m,k),r.fromBufferAttribute(m,n),q.fromBufferAttribute(m,p),c.uv=a(x,g,h,l,t,r,q)),m=new Wa(k,n,p),Aa.getNormal(g,h,l,m.normal),c.face=m,c.faceIndex=k;return c}var d=new M,e=new qb,f=new Ea,g=new p,h=new p,l=new p,m=new p,k=new p,n=new p,t=new C,r=new C,q=new C,v=new p,x=new p,y=new p;return function(p,u){var v=this.geometry,w=this.material,y=this.matrixWorld;if(void 0!==w&&(null===v.boundingSphere&&v.computeBoundingSphere(),f.copy(v.boundingSphere),f.applyMatrix4(y),
+!1!==p.ray.intersectsSphere(f)&&(d.getInverse(y),e.copy(p.ray).applyMatrix4(d),null===v.boundingBox||!1!==e.intersectsBox(v.boundingBox)))){var B;if(v.isBufferGeometry){w=v.index;var C=v.attributes.position;y=v.attributes.uv;var A;if(null!==w){var z=0;for(A=w.count;z<A;z+=3){v=w.getX(z);var E=w.getX(z+1);var F=w.getX(z+2);if(B=c(this,p,e,C,y,v,E,F))B.faceIndex=Math.floor(z/3),u.push(B)}}else if(void 0!==C)for(z=0,A=C.count;z<A;z+=3)if(v=z,E=z+1,F=z+2,B=c(this,p,e,C,y,v,E,F))B.index=v,u.push(B)}else if(v.isGeometry){y=
+Array.isArray(w);z=v.vertices;A=v.faces;E=v.faceVertexUvs[0];0<E.length&&(C=E);for(var I=0,L=A.length;I<L;I++){var Q=A[I];B=y?w[Q.materialIndex]:w;if(void 0!==B){E=z[Q.a];F=z[Q.b];var N=z[Q.c];if(!0===B.morphTargets){var M=v.morphTargets,O=this.morphTargetInfluences;g.set(0,0,0);h.set(0,0,0);l.set(0,0,0);for(var T=0,S=M.length;T<S;T++){var V=O[T];if(0!==V){var X=M[T].vertices;g.addScaledVector(m.subVectors(X[Q.a],E),V);h.addScaledVector(k.subVectors(X[Q.b],F),V);l.addScaledVector(n.subVectors(X[Q.c],
+N),V)}}g.add(E);h.add(F);l.add(N);E=g;F=h;N=l}if(B=b(this,B,p,e,E,F,N,x))C&&C[I]&&(M=C[I],t.copy(M[0]),r.copy(M[1]),q.copy(M[2]),B.uv=a(x,E,F,N,t,r,q)),B.face=Q,B.faceIndex=I,u.push(B)}}}}}}(),clone:function(){return(new this.constructor(this.geometry,this.material)).copy(this)}});ab.prototype=Object.create(Y.prototype);ab.prototype.constructor=ab;ab.prototype.isCubeTexture=!0;Object.defineProperty(ab.prototype,"images",{get:function(){return this.image},set:function(a){this.image=a}});var Je=new Y,
+Ke=new ab,Ee=[],Ge=[],Ie=new Float32Array(16),He=new Float32Array(9);Oe.prototype.setValue=function(a,b){for(var c=this.seq,d=0,e=c.length;d!==e;++d){var f=c[d];f.setValue(a,b[f.id])}};var Ud=/([\w\d_]+)(\])?(\[|\.)?/g;bb.prototype.setValue=function(a,b,c){b=this.map[b];void 0!==b&&b.setValue(a,c,this.renderer)};bb.prototype.setOptional=function(a,b,c){b=b[c];void 0!==b&&this.setValue(a,c,b)};bb.upload=function(a,b,c,d){for(var e=0,f=b.length;e!==f;++e){var g=b[e],h=c[g.id];!1!==h.needsUpdate&&g.setValue(a,
+h.value,d)}};bb.seqWithValue=function(a,b){for(var c=[],d=0,e=a.length;d!==e;++d){var f=a[d];f.id in b&&c.push(f)}return c};var rg=0,Ag=0;cb.prototype=Object.create(O.prototype);cb.prototype.constructor=cb;cb.prototype.isMeshDepthMaterial=!0;cb.prototype.copy=function(a){O.prototype.copy.call(this,a);this.depthPacking=a.depthPacking;this.skinning=a.skinning;this.morphTargets=a.morphTargets;this.map=a.map;this.alphaMap=a.alphaMap;this.displacementMap=a.displacementMap;this.displacementScale=a.displacementScale;
+this.displacementBias=a.displacementBias;this.wireframe=a.wireframe;this.wireframeLinewidth=a.wireframeLinewidth;return this};db.prototype=Object.create(O.prototype);db.prototype.constructor=db;db.prototype.isMeshDistanceMaterial=!0;db.prototype.copy=function(a){O.prototype.copy.call(this,a);this.referencePosition.copy(a.referencePosition);this.nearDistance=a.nearDistance;this.farDistance=a.farDistance;this.skinning=a.skinning;this.morphTargets=a.morphTargets;this.map=a.map;this.alphaMap=a.alphaMap;
+this.displacementMap=a.displacementMap;this.displacementScale=a.displacementScale;this.displacementBias=a.displacementBias;return this};zc.prototype=Object.create(Y.prototype);zc.prototype.constructor=zc;la.prototype=Object.assign(Object.create(Qa.prototype),{constructor:la,isPerspectiveCamera:!0,copy:function(a,b){Qa.prototype.copy.call(this,a,b);this.fov=a.fov;this.zoom=a.zoom;this.near=a.near;this.far=a.far;this.focus=a.focus;this.aspect=a.aspect;this.view=null===a.view?null:Object.assign({},a.view);
+this.filmGauge=a.filmGauge;this.filmOffset=a.filmOffset;return this},setFocalLength:function(a){a=.5*this.getFilmHeight()/a;this.fov=2*S.RAD2DEG*Math.atan(a);this.updateProjectionMatrix()},getFocalLength:function(){var a=Math.tan(.5*S.DEG2RAD*this.fov);return.5*this.getFilmHeight()/a},getEffectiveFOV:function(){return 2*S.RAD2DEG*Math.atan(Math.tan(.5*S.DEG2RAD*this.fov)/this.zoom)},getFilmWidth:function(){return this.filmGauge*Math.min(this.aspect,1)},getFilmHeight:function(){return this.filmGauge/
+Math.max(this.aspect,1)},setViewOffset:function(a,b,c,d,e,f){this.aspect=a/b;null===this.view&&(this.view={enabled:!0,fullWidth:1,fullHeight:1,offsetX:0,offsetY:0,width:1,height:1});this.view.enabled=!0;this.view.fullWidth=a;this.view.fullHeight=b;this.view.offsetX=c;this.view.offsetY=d;this.view.width=e;this.view.height=f;this.updateProjectionMatrix()},clearViewOffset:function(){null!==this.view&&(this.view.enabled=!1);this.updateProjectionMatrix()},updateProjectionMatrix:function(){var a=this.near,
+b=a*Math.tan(.5*S.DEG2RAD*this.fov)/this.zoom,c=2*b,d=this.aspect*c,e=-.5*d,f=this.view;if(null!==this.view&&this.view.enabled){var g=f.fullWidth,h=f.fullHeight;e+=f.offsetX*d/g;b-=f.offsetY*c/h;d*=f.width/g;c*=f.height/h}f=this.filmOffset;0!==f&&(e+=a*f/this.getFilmWidth());this.projectionMatrix.makePerspective(e,e+d,b,b-c,a,this.far)},toJSON:function(a){a=A.prototype.toJSON.call(this,a);a.object.fov=this.fov;a.object.zoom=this.zoom;a.object.near=this.near;a.object.far=this.far;a.object.focus=this.focus;
+a.object.aspect=this.aspect;null!==this.view&&(a.object.view=Object.assign({},this.view));a.object.filmGauge=this.filmGauge;a.object.filmOffset=this.filmOffset;return a}});qd.prototype=Object.assign(Object.create(la.prototype),{constructor:qd,isArrayCamera:!0});Ob.prototype.isFogExp2=!0;Ob.prototype.clone=function(){return new Ob(this.color.getHex(),this.density)};Ob.prototype.toJSON=function(){return{type:"FogExp2",color:this.color.getHex(),density:this.density}};Pb.prototype.isFog=!0;Pb.prototype.clone=
+function(){return new Pb(this.color.getHex(),this.near,this.far)};Pb.prototype.toJSON=function(){return{type:"Fog",color:this.color.getHex(),near:this.near,far:this.far}};rd.prototype=Object.assign(Object.create(A.prototype),{constructor:rd,copy:function(a,b){A.prototype.copy.call(this,a,b);null!==a.background&&(this.background=a.background.clone());null!==a.fog&&(this.fog=a.fog.clone());null!==a.overrideMaterial&&(this.overrideMaterial=a.overrideMaterial.clone());this.autoUpdate=a.autoUpdate;this.matrixAutoUpdate=
+a.matrixAutoUpdate;return this},toJSON:function(a){var b=A.prototype.toJSON.call(this,a);null!==this.background&&(b.object.background=this.background.toJSON(a));null!==this.fog&&(b.object.fog=this.fog.toJSON());return b}});eb.prototype=Object.create(O.prototype);eb.prototype.constructor=eb;eb.prototype.isSpriteMaterial=!0;eb.prototype.copy=function(a){O.prototype.copy.call(this,a);this.color.copy(a.color);this.map=a.map;this.rotation=a.rotation;return this};Ac.prototype=Object.assign(Object.create(A.prototype),
+{constructor:Ac,isSprite:!0,raycast:function(){var a=new p,b=new p,c=new p;return function(d,e){b.setFromMatrixPosition(this.matrixWorld);d.ray.closestPointToPoint(b,a);c.setFromMatrixScale(this.matrixWorld);var f=c.x*c.y/4;b.distanceToSquared(a)>f||(f=d.ray.origin.distanceTo(a),f<d.near||f>d.far||e.push({distance:f,point:a.clone(),face:null,object:this}))}}(),clone:function(){return(new this.constructor(this.material)).copy(this)},copy:function(a){A.prototype.copy.call(this,a);void 0!==a.center&&
+this.center.copy(a.center);return this}});Bc.prototype=Object.assign(Object.create(A.prototype),{constructor:Bc,copy:function(a){A.prototype.copy.call(this,a,!1);a=a.levels;for(var b=0,c=a.length;b<c;b++){var d=a[b];this.addLevel(d.object.clone(),d.distance)}return this},addLevel:function(a,b){void 0===b&&(b=0);b=Math.abs(b);for(var c=this.levels,d=0;d<c.length&&!(b<c[d].distance);d++);c.splice(d,0,{distance:b,object:a});this.add(a)},getObjectForDistance:function(a){for(var b=this.levels,c=1,d=b.length;c<
+d&&!(a<b[c].distance);c++);return b[c-1].object},raycast:function(){var a=new p;return function(b,c){a.setFromMatrixPosition(this.matrixWorld);var d=b.ray.origin.distanceTo(a);this.getObjectForDistance(d).raycast(b,c)}}(),update:function(){var a=new p,b=new p;return function(c){var d=this.levels;if(1<d.length){a.setFromMatrixPosition(c.matrixWorld);b.setFromMatrixPosition(this.matrixWorld);c=a.distanceTo(b);d[0].object.visible=!0;for(var e=1,f=d.length;e<f;e++)if(c>=d[e].distance)d[e-1].object.visible=
+!1,d[e].object.visible=!0;else break;for(;e<f;e++)d[e].object.visible=!1}}}(),toJSON:function(a){a=A.prototype.toJSON.call(this,a);a.object.levels=[];for(var b=this.levels,c=0,d=b.length;c<d;c++){var e=b[c];a.object.levels.push({object:e.object.uuid,distance:e.distance})}return a}});Object.assign(Cc.prototype,{calculateInverses:function(){this.boneInverses=[];for(var a=0,b=this.bones.length;a<b;a++){var c=new M;this.bones[a]&&c.getInverse(this.bones[a].matrixWorld);this.boneInverses.push(c)}},pose:function(){var a,
+b;var c=0;for(b=this.bones.length;c<b;c++)(a=this.bones[c])&&a.matrixWorld.getInverse(this.boneInverses[c]);c=0;for(b=this.bones.length;c<b;c++)if(a=this.bones[c])a.parent&&a.parent.isBone?(a.matrix.getInverse(a.parent.matrixWorld),a.matrix.multiply(a.matrixWorld)):a.matrix.copy(a.matrixWorld),a.matrix.decompose(a.position,a.quaternion,a.scale)},update:function(){var a=new M,b=new M;return function(){for(var c=this.bones,d=this.boneInverses,e=this.boneMatrices,f=this.boneTexture,g=0,h=c.length;g<
+h;g++)a.multiplyMatrices(c[g]?c[g].matrixWorld:b,d[g]),a.toArray(e,16*g);void 0!==f&&(f.needsUpdate=!0)}}(),clone:function(){return new Cc(this.bones,this.boneInverses)},getBoneByName:function(a){for(var b=0,c=this.bones.length;b<c;b++){var d=this.bones[b];if(d.name===a)return d}}});sd.prototype=Object.assign(Object.create(A.prototype),{constructor:sd,isBone:!0});td.prototype=Object.assign(Object.create(oa.prototype),{constructor:td,isSkinnedMesh:!0,initBones:function(){var a=[],b;if(this.geometry&&
+void 0!==this.geometry.bones){var c=0;for(b=this.geometry.bones.length;c<b;c++){var d=this.geometry.bones[c];var e=new sd;a.push(e);e.name=d.name;e.position.fromArray(d.pos);e.quaternion.fromArray(d.rotq);void 0!==d.scl&&e.scale.fromArray(d.scl)}c=0;for(b=this.geometry.bones.length;c<b;c++)d=this.geometry.bones[c],-1!==d.parent&&null!==d.parent&&void 0!==a[d.parent]?a[d.parent].add(a[c]):this.add(a[c])}this.updateMatrixWorld(!0);return a},bind:function(a,b){this.skeleton=a;void 0===b&&(this.updateMatrixWorld(!0),
+this.skeleton.calculateInverses(),b=this.matrixWorld);this.bindMatrix.copy(b);this.bindMatrixInverse.getInverse(b)},pose:function(){this.skeleton.pose()},normalizeSkinWeights:function(){var a;if(this.geometry&&this.geometry.isGeometry)for(a=0;a<this.geometry.skinWeights.length;a++){var b=this.geometry.skinWeights[a];var c=1/b.manhattanLength();Infinity!==c?b.multiplyScalar(c):b.set(1,0,0,0)}else if(this.geometry&&this.geometry.isBufferGeometry){b=new ea;var d=this.geometry.attributes.skinWeight;for(a=
+0;a<d.count;a++)b.x=d.getX(a),b.y=d.getY(a),b.z=d.getZ(a),b.w=d.getW(a),c=1/b.manhattanLength(),Infinity!==c?b.multiplyScalar(c):b.set(1,0,0,0),d.setXYZW(a,b.x,b.y,b.z,b.w)}},updateMatrixWorld:function(a){oa.prototype.updateMatrixWorld.call(this,a);"attached"===this.bindMode?this.bindMatrixInverse.getInverse(this.matrixWorld):"detached"===this.bindMode?this.bindMatrixInverse.getInverse(this.bindMatrix):console.warn("THREE.SkinnedMesh: Unrecognized bindMode: "+this.bindMode)},clone:function(){return(new this.constructor(this.geometry,
+this.material)).copy(this)}});U.prototype=Object.create(O.prototype);U.prototype.constructor=U;U.prototype.isLineBasicMaterial=!0;U.prototype.copy=function(a){O.prototype.copy.call(this,a);this.color.copy(a.color);this.linewidth=a.linewidth;this.linecap=a.linecap;this.linejoin=a.linejoin;return this};ua.prototype=Object.assign(Object.create(A.prototype),{constructor:ua,isLine:!0,computeLineDistances:function(){var a=new p,b=new p;return function(){var c=this.geometry;if(c.isBufferGeometry)if(null===
+c.index){for(var d=c.attributes.position,e=[0],f=1,g=d.count;f<g;f++)a.fromBufferAttribute(d,f-1),b.fromBufferAttribute(d,f),e[f]=e[f-1],e[f]+=a.distanceTo(b);c.addAttribute("lineDistance",new THREE.Float32BufferAttribute(e,1))}else console.warn("THREE.Line.computeLineDistances(): Computation only possible with non-indexed BufferGeometry.");else if(c.isGeometry)for(d=c.vertices,e=c.lineDistances,e[0]=0,f=1,g=d.length;f<g;f++)e[f]=e[f-1],e[f]+=d[f-1].distanceTo(d[f]);return this}}(),raycast:function(){var a=
+new M,b=new qb,c=new Ea;return function(d,e){var f=d.linePrecision;f*=f;var g=this.geometry,h=this.matrixWorld;null===g.boundingSphere&&g.computeBoundingSphere();c.copy(g.boundingSphere);c.applyMatrix4(h);if(!1!==d.ray.intersectsSphere(c)){a.getInverse(h);b.copy(d.ray).applyMatrix4(a);var l=new p,m=new p;h=new p;var k=new p,n=this&&this.isLineSegments?2:1;if(g.isBufferGeometry){var t=g.index,r=g.attributes.position.array;if(null!==t){t=t.array;g=0;for(var q=t.length-1;g<q;g+=n){var v=t[g+1];l.fromArray(r,
+3*t[g]);m.fromArray(r,3*v);v=b.distanceSqToSegment(l,m,k,h);v>f||(k.applyMatrix4(this.matrixWorld),v=d.ray.origin.distanceTo(k),v<d.near||v>d.far||e.push({distance:v,point:h.clone().applyMatrix4(this.matrixWorld),index:g,face:null,faceIndex:null,object:this}))}}else for(g=0,q=r.length/3-1;g<q;g+=n)l.fromArray(r,3*g),m.fromArray(r,3*g+3),v=b.distanceSqToSegment(l,m,k,h),v>f||(k.applyMatrix4(this.matrixWorld),v=d.ray.origin.distanceTo(k),v<d.near||v>d.far||e.push({distance:v,point:h.clone().applyMatrix4(this.matrixWorld),
+index:g,face:null,faceIndex:null,object:this}))}else if(g.isGeometry)for(l=g.vertices,m=l.length,g=0;g<m-1;g+=n)v=b.distanceSqToSegment(l[g],l[g+1],k,h),v>f||(k.applyMatrix4(this.matrixWorld),v=d.ray.origin.distanceTo(k),v<d.near||v>d.far||e.push({distance:v,point:h.clone().applyMatrix4(this.matrixWorld),index:g,face:null,faceIndex:null,object:this}))}}}(),clone:function(){return(new this.constructor(this.geometry,this.material)).copy(this)}});aa.prototype=Object.assign(Object.create(ua.prototype),
+{constructor:aa,isLineSegments:!0,computeLineDistances:function(){var a=new p,b=new p;return function(){var c=this.geometry;if(c.isBufferGeometry)if(null===c.index){for(var d=c.attributes.position,e=[],f=0,g=d.count;f<g;f+=2)a.fromBufferAttribute(d,f),b.fromBufferAttribute(d,f+1),e[f]=0===f?0:e[f-1],e[f+1]=e[f]+a.distanceTo(b);c.addAttribute("lineDistance",new THREE.Float32BufferAttribute(e,1))}else console.warn("THREE.LineSegments.computeLineDistances(): Computation only possible with non-indexed BufferGeometry.");
+else if(c.isGeometry)for(d=c.vertices,e=c.lineDistances,f=0,g=d.length;f<g;f+=2)a.copy(d[f]),b.copy(d[f+1]),e[f]=0===f?0:e[f-1],e[f+1]=e[f]+a.distanceTo(b);return this}}()});ud.prototype=Object.assign(Object.create(ua.prototype),{constructor:ud,isLineLoop:!0});Ha.prototype=Object.create(O.prototype);Ha.prototype.constructor=Ha;Ha.prototype.isPointsMaterial=!0;Ha.prototype.copy=function(a){O.prototype.copy.call(this,a);this.color.copy(a.color);this.map=a.map;this.size=a.size;this.sizeAttenuation=a.sizeAttenuation;
+return this};Qb.prototype=Object.assign(Object.create(A.prototype),{constructor:Qb,isPoints:!0,raycast:function(){var a=new M,b=new qb,c=new Ea;return function(d,e){function f(a,c){var f=b.distanceSqToPoint(a);f<k&&(b.closestPointToPoint(a,n),n.applyMatrix4(l),a=d.ray.origin.distanceTo(n),a<d.near||a>d.far||e.push({distance:a,distanceToRay:Math.sqrt(f),point:n.clone(),index:c,face:null,object:g}))}var g=this,h=this.geometry,l=this.matrixWorld,m=d.params.Points.threshold;null===h.boundingSphere&&h.computeBoundingSphere();
+c.copy(h.boundingSphere);c.applyMatrix4(l);c.radius+=m;if(!1!==d.ray.intersectsSphere(c)){a.getInverse(l);b.copy(d.ray).applyMatrix4(a);m/=(this.scale.x+this.scale.y+this.scale.z)/3;var k=m*m;m=new p;var n=new p;if(h.isBufferGeometry){var t=h.index;h=h.attributes.position.array;if(null!==t){var r=t.array;t=0;for(var q=r.length;t<q;t++){var v=r[t];m.fromArray(h,3*v);f(m,v)}}else for(t=0,r=h.length/3;t<r;t++)m.fromArray(h,3*t),f(m,t)}else for(m=h.vertices,t=0,r=m.length;t<r;t++)f(m[t],t)}}}(),clone:function(){return(new this.constructor(this.geometry,
+this.material)).copy(this)}});vd.prototype=Object.assign(Object.create(A.prototype),{constructor:vd,isGroup:!0});Yd.prototype=Object.assign(Object.create(Y.prototype),{constructor:Yd,isVideoTexture:!0,update:function(){var a=this.image;a.readyState>=a.HAVE_CURRENT_DATA&&(this.needsUpdate=!0)}});Rb.prototype=Object.create(Y.prototype);Rb.prototype.constructor=Rb;Rb.prototype.isCompressedTexture=!0;Dc.prototype=Object.create(Y.prototype);Dc.prototype.constructor=Dc;Dc.prototype.isDepthTexture=!0;Sb.prototype=
+Object.create(F.prototype);Sb.prototype.constructor=Sb;Ec.prototype=Object.create(N.prototype);Ec.prototype.constructor=Ec;Tb.prototype=Object.create(F.prototype);Tb.prototype.constructor=Tb;Fc.prototype=Object.create(N.prototype);Fc.prototype.constructor=Fc;pa.prototype=Object.create(F.prototype);pa.prototype.constructor=pa;Gc.prototype=Object.create(N.prototype);Gc.prototype.constructor=Gc;Ub.prototype=Object.create(pa.prototype);Ub.prototype.constructor=Ub;Hc.prototype=Object.create(N.prototype);
+Hc.prototype.constructor=Hc;sb.prototype=Object.create(pa.prototype);sb.prototype.constructor=sb;Ic.prototype=Object.create(N.prototype);Ic.prototype.constructor=Ic;Vb.prototype=Object.create(pa.prototype);Vb.prototype.constructor=Vb;Jc.prototype=Object.create(N.prototype);Jc.prototype.constructor=Jc;Wb.prototype=Object.create(pa.prototype);Wb.prototype.constructor=Wb;Kc.prototype=Object.create(N.prototype);Kc.prototype.constructor=Kc;Xb.prototype=Object.create(F.prototype);Xb.prototype.constructor=
+Xb;Lc.prototype=Object.create(N.prototype);Lc.prototype.constructor=Lc;Yb.prototype=Object.create(F.prototype);Yb.prototype.constructor=Yb;Mc.prototype=Object.create(N.prototype);Mc.prototype.constructor=Mc;Zb.prototype=Object.create(F.prototype);Zb.prototype.constructor=Zb;var Lg={triangulate:function(a,b,c){c=c||2;var d=b&&b.length,e=d?b[0]*c:a.length,f=Xe(a,0,e,c,!0),g=[];if(!f)return g;var h;if(d){var l=c;d=[];var m;var k=0;for(m=b.length;k<m;k++){var n=b[k]*l;var p=k<m-1?b[k+1]*l:a.length;n=
+Xe(a,n,p,l,!1);n===n.next&&(n.steiner=!0);d.push(Jg(n))}d.sort(Hg);for(k=0;k<d.length;k++){b=d[k];l=f;if(l=Ig(b,l))b=$e(l,b),Oc(b,b.next);f=Oc(f,f.next)}}if(a.length>80*c){var r=h=a[0];var q=d=a[1];for(l=c;l<e;l+=c)k=a[l],b=a[l+1],k<r&&(r=k),b<q&&(q=b),k>h&&(h=k),b>d&&(d=b);h=Math.max(h-r,d-q);h=0!==h?1/h:0}Pc(f,g,c,r,q,h);return g}},Xa={area:function(a){for(var b=a.length,c=0,d=b-1,e=0;e<b;d=e++)c+=a[d].x*a[e].y-a[e].x*a[d].y;return.5*c},isClockWise:function(a){return 0>Xa.area(a)},triangulateShape:function(a,
+b){var c=[],d=[],e=[];af(a);bf(c,a);var f=a.length;b.forEach(af);for(a=0;a<b.length;a++)d.push(f),f+=b[a].length,bf(c,b[a]);b=Lg.triangulate(c,d);for(a=0;a<b.length;a+=3)e.push(b.slice(a,a+3));return e}};fb.prototype=Object.create(N.prototype);fb.prototype.constructor=fb;Ia.prototype=Object.create(F.prototype);Ia.prototype.constructor=Ia;Ia.prototype.getArrays=function(){var a=this.getAttribute("position");a=a?Array.prototype.slice.call(a.array):[];var b=this.getAttribute("uv");b=b?Array.prototype.slice.call(b.array):
+[];var c=this.index;c=c?Array.prototype.slice.call(c.array):[];return{position:a,uv:b,index:c}};Ia.prototype.addShapeList=function(a,b){var c=a.length;b.arrays=this.getArrays();for(var d=0;d<c;d++)this.addShape(a[d],b);this.setIndex(b.arrays.index);this.addAttribute("position",new z(b.arrays.position,3));this.addAttribute("uv",new z(b.arrays.uv,2))};Ia.prototype.addShape=function(a,b){function c(a,b,c){b||console.error("THREE.ExtrudeGeometry: vec does not exist");return b.clone().multiplyScalar(c).add(a)}
+function d(a,b,c){var d=a.x-b.x;var e=a.y-b.y;var f=c.x-a.x;var g=c.y-a.y,h=d*d+e*e;if(Math.abs(d*g-e*f)>Number.EPSILON){var l=Math.sqrt(h),m=Math.sqrt(f*f+g*g);h=b.x-e/l;b=b.y+d/l;g=((c.x-g/m-h)*g-(c.y+f/m-b)*f)/(d*g-e*f);f=h+d*g-a.x;d=b+e*g-a.y;e=f*f+d*d;if(2>=e)return new C(f,d);e=Math.sqrt(e/2)}else a=!1,d>Number.EPSILON?f>Number.EPSILON&&(a=!0):d<-Number.EPSILON?f<-Number.EPSILON&&(a=!0):Math.sign(e)===Math.sign(g)&&(a=!0),a?(f=-e,e=Math.sqrt(h)):(f=d,d=e,e=Math.sqrt(h/2));return new C(f/e,d/
+e)}function e(a,b){for(J=a.length;0<=--J;){var c=J;var d=J-1;0>d&&(d=a.length-1);var e,f=B+2*x;for(e=0;e<f;e++){var g=aa*e,m=aa*(e+1),n=b+d+g,p=b+d+m;m=b+c+m;h(b+c+g);h(n);h(m);h(n);h(p);h(m);g=k.length/3;g=E.generateSideWallUV(T,k,g-6,g-3,g-2,g-1);l(g[0]);l(g[1]);l(g[3]);l(g[1]);l(g[2]);l(g[3])}}}function f(a,b,c){r.push(a);r.push(b);r.push(c)}function g(a,b,c){h(a);h(b);h(c);a=k.length/3;a=E.generateTopUV(T,k,a-3,a-2,a-1);l(a[0]);l(a[1]);l(a[2])}function h(a){n.push(k.length/3);k.push(r[3*a]);k.push(r[3*
+a+1]);k.push(r[3*a+2])}function l(a){t.push(a.x);t.push(a.y)}var m=b.arrays?b.arrays:this.getArrays(),k=m.position,n=m.index,t=m.uv,r=[];m=void 0!==b.amount?b.amount:100;var q=void 0!==b.bevelThickness?b.bevelThickness:6,v=void 0!==b.bevelSize?b.bevelSize:q-2,x=void 0!==b.bevelSegments?b.bevelSegments:3,y=void 0!==b.bevelEnabled?b.bevelEnabled:!0,w=void 0!==b.curveSegments?b.curveSegments:12,B=void 0!==b.steps?b.steps:1,G=b.extrudePath,A=!1,E=void 0!==b.UVGenerator?b.UVGenerator:fb.WorldUVGenerator;
+if(G){var H=G.getSpacedPoints(B);A=!0;y=!1;var F=void 0!==b.frames?b.frames:G.computeFrenetFrames(B,!1);var I=new p;var N=new p;var L=new p}y||(v=q=x=0);var M,T=this;w=a.extractPoints(w);a=w.shape;var O=w.holes;if(!Xa.isClockWise(a)){a=a.reverse();var Q=0;for(M=O.length;Q<M;Q++){var S=O[Q];Xa.isClockWise(S)&&(O[Q]=S.reverse())}}var V=Xa.triangulateShape(a,O),X=a;Q=0;for(M=O.length;Q<M;Q++)S=O[Q],a=a.concat(S);var U,aa=a.length,Y,da=V.length;w=[];var J=0;var W=X.length;var R=W-1;for(U=J+1;J<W;J++,
+R++,U++)R===W&&(R=0),U===W&&(U=0),w[J]=d(X[J],X[R],X[U]);G=[];var ea=w.concat();Q=0;for(M=O.length;Q<M;Q++){S=O[Q];var ca=[];J=0;W=S.length;R=W-1;for(U=J+1;J<W;J++,R++,U++)R===W&&(R=0),U===W&&(U=0),ca[J]=d(S[J],S[R],S[U]);G.push(ca);ea=ea.concat(ca)}for(R=0;R<x;R++){W=R/x;var fa=q*Math.cos(W*Math.PI/2);U=v*Math.sin(W*Math.PI/2);J=0;for(W=X.length;J<W;J++){var ha=c(X[J],w[J],U);f(ha.x,ha.y,-fa)}Q=0;for(M=O.length;Q<M;Q++)for(S=O[Q],ca=G[Q],J=0,W=S.length;J<W;J++)ha=c(S[J],ca[J],U),f(ha.x,ha.y,-fa)}U=
+v;for(J=0;J<aa;J++)ha=y?c(a[J],ea[J],U):a[J],A?(N.copy(F.normals[0]).multiplyScalar(ha.x),I.copy(F.binormals[0]).multiplyScalar(ha.y),L.copy(H[0]).add(N).add(I),f(L.x,L.y,L.z)):f(ha.x,ha.y,0);for(W=1;W<=B;W++)for(J=0;J<aa;J++)ha=y?c(a[J],ea[J],U):a[J],A?(N.copy(F.normals[W]).multiplyScalar(ha.x),I.copy(F.binormals[W]).multiplyScalar(ha.y),L.copy(H[W]).add(N).add(I),f(L.x,L.y,L.z)):f(ha.x,ha.y,m/B*W);for(R=x-1;0<=R;R--){W=R/x;fa=q*Math.cos(W*Math.PI/2);U=v*Math.sin(W*Math.PI/2);J=0;for(W=X.length;J<
+W;J++)ha=c(X[J],w[J],U),f(ha.x,ha.y,m+fa);Q=0;for(M=O.length;Q<M;Q++)for(S=O[Q],ca=G[Q],J=0,W=S.length;J<W;J++)ha=c(S[J],ca[J],U),A?f(ha.x,ha.y+H[B-1].y,H[B-1].x+fa):f(ha.x,ha.y,m+fa)}(function(){var a=k.length/3;if(y){var b=0*aa;for(J=0;J<da;J++)Y=V[J],g(Y[2]+b,Y[1]+b,Y[0]+b);b=aa*(B+2*x);for(J=0;J<da;J++)Y=V[J],g(Y[0]+b,Y[1]+b,Y[2]+b)}else{for(J=0;J<da;J++)Y=V[J],g(Y[2],Y[1],Y[0]);for(J=0;J<da;J++)Y=V[J],g(Y[0]+aa*B,Y[1]+aa*B,Y[2]+aa*B)}T.addGroup(a,k.length/3-a,0)})();(function(){var a=k.length/
+3,b=0;e(X,b);b+=X.length;Q=0;for(M=O.length;Q<M;Q++)S=O[Q],e(S,b),b+=S.length;T.addGroup(a,k.length/3-a,1)})();b.arrays||(this.setIndex(n),this.addAttribute("position",new z(k,3)),this.addAttribute("uv",new z(t,2)))};fb.WorldUVGenerator={generateTopUV:function(a,b,c,d,e){a=b[3*d];d=b[3*d+1];var f=b[3*e];e=b[3*e+1];return[new C(b[3*c],b[3*c+1]),new C(a,d),new C(f,e)]},generateSideWallUV:function(a,b,c,d,e,f){a=b[3*c];var g=b[3*c+1];c=b[3*c+2];var h=b[3*d],l=b[3*d+1];d=b[3*d+2];var m=b[3*e],k=b[3*e+
+1];e=b[3*e+2];var n=b[3*f],p=b[3*f+1];b=b[3*f+2];return.01>Math.abs(g-l)?[new C(a,1-c),new C(h,1-d),new C(m,1-e),new C(n,1-b)]:[new C(g,1-c),new C(l,1-d),new C(k,1-e),new C(p,1-b)]}};Rc.prototype=Object.create(N.prototype);Rc.prototype.constructor=Rc;$b.prototype=Object.create(Ia.prototype);$b.prototype.constructor=$b;Sc.prototype=Object.create(N.prototype);Sc.prototype.constructor=Sc;ub.prototype=Object.create(F.prototype);ub.prototype.constructor=ub;Tc.prototype=Object.create(N.prototype);Tc.prototype.constructor=
+Tc;ac.prototype=Object.create(F.prototype);ac.prototype.constructor=ac;Uc.prototype=Object.create(N.prototype);Uc.prototype.constructor=Uc;bc.prototype=Object.create(F.prototype);bc.prototype.constructor=bc;vb.prototype=Object.create(N.prototype);vb.prototype.constructor=vb;vb.prototype.toJSON=function(){var a=N.prototype.toJSON.call(this);return cf(this.parameters.shapes,a)};wb.prototype=Object.create(F.prototype);wb.prototype.constructor=wb;wb.prototype.toJSON=function(){var a=F.prototype.toJSON.call(this);
+return cf(this.parameters.shapes,a)};cc.prototype=Object.create(F.prototype);cc.prototype.constructor=cc;xb.prototype=Object.create(N.prototype);xb.prototype.constructor=xb;Ya.prototype=Object.create(F.prototype);Ya.prototype.constructor=Ya;Vc.prototype=Object.create(xb.prototype);Vc.prototype.constructor=Vc;Wc.prototype=Object.create(Ya.prototype);Wc.prototype.constructor=Wc;Xc.prototype=Object.create(N.prototype);Xc.prototype.constructor=Xc;dc.prototype=Object.create(F.prototype);dc.prototype.constructor=
+dc;var Ca=Object.freeze({WireframeGeometry:Sb,ParametricGeometry:Ec,ParametricBufferGeometry:Tb,TetrahedronGeometry:Gc,TetrahedronBufferGeometry:Ub,OctahedronGeometry:Hc,OctahedronBufferGeometry:sb,IcosahedronGeometry:Ic,IcosahedronBufferGeometry:Vb,DodecahedronGeometry:Jc,DodecahedronBufferGeometry:Wb,PolyhedronGeometry:Fc,PolyhedronBufferGeometry:pa,TubeGeometry:Kc,TubeBufferGeometry:Xb,TorusKnotGeometry:Lc,TorusKnotBufferGeometry:Yb,TorusGeometry:Mc,TorusBufferGeometry:Zb,TextGeometry:Rc,TextBufferGeometry:$b,
+SphereGeometry:Sc,SphereBufferGeometry:ub,RingGeometry:Tc,RingBufferGeometry:ac,PlaneGeometry:xc,PlaneBufferGeometry:pb,LatheGeometry:Uc,LatheBufferGeometry:bc,ShapeGeometry:vb,ShapeBufferGeometry:wb,ExtrudeGeometry:fb,ExtrudeBufferGeometry:Ia,EdgesGeometry:cc,ConeGeometry:Vc,ConeBufferGeometry:Wc,CylinderGeometry:xb,CylinderBufferGeometry:Ya,CircleGeometry:Xc,CircleBufferGeometry:dc,BoxGeometry:Kb,BoxBufferGeometry:mb});yb.prototype=Object.create(O.prototype);yb.prototype.constructor=yb;yb.prototype.isShadowMaterial=
+!0;yb.prototype.copy=function(a){O.prototype.copy.call(this,a);this.color.copy(a.color);return this};ec.prototype=Object.create(va.prototype);ec.prototype.constructor=ec;ec.prototype.isRawShaderMaterial=!0;Sa.prototype=Object.create(O.prototype);Sa.prototype.constructor=Sa;Sa.prototype.isMeshStandardMaterial=!0;Sa.prototype.copy=function(a){O.prototype.copy.call(this,a);this.defines={STANDARD:""};this.color.copy(a.color);this.roughness=a.roughness;this.metalness=a.metalness;this.map=a.map;this.lightMap=
+a.lightMap;this.lightMapIntensity=a.lightMapIntensity;this.aoMap=a.aoMap;this.aoMapIntensity=a.aoMapIntensity;this.emissive.copy(a.emissive);this.emissiveMap=a.emissiveMap;this.emissiveIntensity=a.emissiveIntensity;this.bumpMap=a.bumpMap;this.bumpScale=a.bumpScale;this.normalMap=a.normalMap;this.normalScale.copy(a.normalScale);this.displacementMap=a.displacementMap;this.displacementScale=a.displacementScale;this.displacementBias=a.displacementBias;this.roughnessMap=a.roughnessMap;this.metalnessMap=
+a.metalnessMap;this.alphaMap=a.alphaMap;this.envMap=a.envMap;this.envMapIntensity=a.envMapIntensity;this.refractionRatio=a.refractionRatio;this.wireframe=a.wireframe;this.wireframeLinewidth=a.wireframeLinewidth;this.wireframeLinecap=a.wireframeLinecap;this.wireframeLinejoin=a.wireframeLinejoin;this.skinning=a.skinning;this.morphTargets=a.morphTargets;this.morphNormals=a.morphNormals;return this};zb.prototype=Object.create(Sa.prototype);zb.prototype.constructor=zb;zb.prototype.isMeshPhysicalMaterial=
+!0;zb.prototype.copy=function(a){Sa.prototype.copy.call(this,a);this.defines={PHYSICAL:""};this.reflectivity=a.reflectivity;this.clearCoat=a.clearCoat;this.clearCoatRoughness=a.clearCoatRoughness;return this};Ja.prototype=Object.create(O.prototype);Ja.prototype.constructor=Ja;Ja.prototype.isMeshPhongMaterial=!0;Ja.prototype.copy=function(a){O.prototype.copy.call(this,a);this.color.copy(a.color);this.specular.copy(a.specular);this.shininess=a.shininess;this.map=a.map;this.lightMap=a.lightMap;this.lightMapIntensity=
+a.lightMapIntensity;this.aoMap=a.aoMap;this.aoMapIntensity=a.aoMapIntensity;this.emissive.copy(a.emissive);this.emissiveMap=a.emissiveMap;this.emissiveIntensity=a.emissiveIntensity;this.bumpMap=a.bumpMap;this.bumpScale=a.bumpScale;this.normalMap=a.normalMap;this.normalScale.copy(a.normalScale);this.displacementMap=a.displacementMap;this.displacementScale=a.displacementScale;this.displacementBias=a.displacementBias;this.specularMap=a.specularMap;this.alphaMap=a.alphaMap;this.envMap=a.envMap;this.combine=
+a.combine;this.reflectivity=a.reflectivity;this.refractionRatio=a.refractionRatio;this.wireframe=a.wireframe;this.wireframeLinewidth=a.wireframeLinewidth;this.wireframeLinecap=a.wireframeLinecap;this.wireframeLinejoin=a.wireframeLinejoin;this.skinning=a.skinning;this.morphTargets=a.morphTargets;this.morphNormals=a.morphNormals;return this};Ab.prototype=Object.create(Ja.prototype);Ab.prototype.constructor=Ab;Ab.prototype.isMeshToonMaterial=!0;Ab.prototype.copy=function(a){Ja.prototype.copy.call(this,
+a);this.gradientMap=a.gradientMap;return this};Bb.prototype=Object.create(O.prototype);Bb.prototype.constructor=Bb;Bb.prototype.isMeshNormalMaterial=!0;Bb.prototype.copy=function(a){O.prototype.copy.call(this,a);this.bumpMap=a.bumpMap;this.bumpScale=a.bumpScale;this.normalMap=a.normalMap;this.normalScale.copy(a.normalScale);this.displacementMap=a.displacementMap;this.displacementScale=a.displacementScale;this.displacementBias=a.displacementBias;this.wireframe=a.wireframe;this.wireframeLinewidth=a.wireframeLinewidth;
+this.skinning=a.skinning;this.morphTargets=a.morphTargets;this.morphNormals=a.morphNormals;return this};Cb.prototype=Object.create(O.prototype);Cb.prototype.constructor=Cb;Cb.prototype.isMeshLambertMaterial=!0;Cb.prototype.copy=function(a){O.prototype.copy.call(this,a);this.color.copy(a.color);this.map=a.map;this.lightMap=a.lightMap;this.lightMapIntensity=a.lightMapIntensity;this.aoMap=a.aoMap;this.aoMapIntensity=a.aoMapIntensity;this.emissive.copy(a.emissive);this.emissiveMap=a.emissiveMap;this.emissiveIntensity=
+a.emissiveIntensity;this.specularMap=a.specularMap;this.alphaMap=a.alphaMap;this.envMap=a.envMap;this.combine=a.combine;this.reflectivity=a.reflectivity;this.refractionRatio=a.refractionRatio;this.wireframe=a.wireframe;this.wireframeLinewidth=a.wireframeLinewidth;this.wireframeLinecap=a.wireframeLinecap;this.wireframeLinejoin=a.wireframeLinejoin;this.skinning=a.skinning;this.morphTargets=a.morphTargets;this.morphNormals=a.morphNormals;return this};Db.prototype=Object.create(U.prototype);Db.prototype.constructor=
+Db;Db.prototype.isLineDashedMaterial=!0;Db.prototype.copy=function(a){U.prototype.copy.call(this,a);this.scale=a.scale;this.dashSize=a.dashSize;this.gapSize=a.gapSize;return this};var Mg=Object.freeze({ShadowMaterial:yb,SpriteMaterial:eb,RawShaderMaterial:ec,ShaderMaterial:va,PointsMaterial:Ha,MeshPhysicalMaterial:zb,MeshStandardMaterial:Sa,MeshPhongMaterial:Ja,MeshToonMaterial:Ab,MeshNormalMaterial:Bb,MeshLambertMaterial:Cb,MeshDepthMaterial:cb,MeshDistanceMaterial:db,MeshBasicMaterial:za,LineDashedMaterial:Db,
+LineBasicMaterial:U,Material:O}),Hb={enabled:!1,files:{},add:function(a,b){!1!==this.enabled&&(this.files[a]=b)},get:function(a){if(!1!==this.enabled)return this.files[a]},remove:function(a){delete this.files[a]},clear:function(){this.files={}}},ma=new ae,$a={};Object.assign(Ka.prototype,{load:function(a,b,c,d){void 0===a&&(a="");void 0!==this.path&&(a=this.path+a);a=this.manager.resolveURL(a);var e=this,f=Hb.get(a);if(void 0!==f)return e.manager.itemStart(a),setTimeout(function(){b&&b(f);e.manager.itemEnd(a)},
+0),f;if(void 0!==$a[a])$a[a].push({onLoad:b,onProgress:c,onError:d});else{var g=a.match(/^data:(.*?)(;base64)?,(.*)$/);if(g){c=g[1];var h=!!g[2];g=g[3];g=window.decodeURIComponent(g);h&&(g=window.atob(g));try{var l=(this.responseType||"").toLowerCase();switch(l){case "arraybuffer":case "blob":var m=new Uint8Array(g.length);for(h=0;h<g.length;h++)m[h]=g.charCodeAt(h);var k="blob"===l?new Blob([m.buffer],{type:c}):m.buffer;break;case "document":k=(new DOMParser).parseFromString(g,c);break;case "json":k=
+JSON.parse(g);break;default:k=g}window.setTimeout(function(){b&&b(k);e.manager.itemEnd(a)},0)}catch(t){window.setTimeout(function(){d&&d(t);e.manager.itemEnd(a);e.manager.itemError(a)},0)}}else{$a[a]=[];$a[a].push({onLoad:b,onProgress:c,onError:d});var n=new XMLHttpRequest;n.open("GET",a,!0);n.addEventListener("load",function(b){var c=this.response;Hb.add(a,c);var d=$a[a];delete $a[a];if(200===this.status){for(var f=0,g=d.length;f<g;f++){var h=d[f];if(h.onLoad)h.onLoad(c)}e.manager.itemEnd(a)}else if(0===
+this.status){console.warn("THREE.FileLoader: HTTP Status 0 received.");f=0;for(g=d.length;f<g;f++)if(h=d[f],h.onLoad)h.onLoad(c);e.manager.itemEnd(a)}else{f=0;for(g=d.length;f<g;f++)if(h=d[f],h.onError)h.onError(b);e.manager.itemEnd(a);e.manager.itemError(a)}},!1);n.addEventListener("progress",function(b){for(var c=$a[a],d=0,e=c.length;d<e;d++){var f=c[d];if(f.onProgress)f.onProgress(b)}},!1);n.addEventListener("error",function(b){var c=$a[a];delete $a[a];for(var d=0,f=c.length;d<f;d++){var g=c[d];
+if(g.onError)g.onError(b)}e.manager.itemEnd(a);e.manager.itemError(a)},!1);void 0!==this.responseType&&(n.responseType=this.responseType);void 0!==this.withCredentials&&(n.withCredentials=this.withCredentials);n.overrideMimeType&&n.overrideMimeType(void 0!==this.mimeType?this.mimeType:"text/plain");for(h in this.requestHeader)n.setRequestHeader(h,this.requestHeader[h]);n.send(null)}e.manager.itemStart(a);return n}},setPath:function(a){this.path=a;return this},setResponseType:function(a){this.responseType=
+a;return this},setWithCredentials:function(a){this.withCredentials=a;return this},setMimeType:function(a){this.mimeType=a;return this},setRequestHeader:function(a){this.requestHeader=a;return this}});Object.assign(df.prototype,{load:function(a,b,c,d){function e(e){l.load(a[e],function(a){a=f._parser(a,!0);g[e]={width:a.width,height:a.height,format:a.format,mipmaps:a.mipmaps};m+=1;6===m&&(1===a.mipmapCount&&(h.minFilter=1006),h.format=a.format,h.needsUpdate=!0,b&&b(h))},c,d)}var f=this,g=[],h=new Rb;
+h.image=g;var l=new Ka(this.manager);l.setPath(this.path);l.setResponseType("arraybuffer");if(Array.isArray(a))for(var m=0,k=0,n=a.length;k<n;++k)e(k);else l.load(a,function(a){a=f._parser(a,!0);if(a.isCubemap)for(var c=a.mipmaps.length/a.mipmapCount,d=0;d<c;d++){g[d]={mipmaps:[]};for(var e=0;e<a.mipmapCount;e++)g[d].mipmaps.push(a.mipmaps[d*a.mipmapCount+e]),g[d].format=a.format,g[d].width=a.width,g[d].height=a.height}else h.image.width=a.width,h.image.height=a.height,h.mipmaps=a.mipmaps;1===a.mipmapCount&&
+(h.minFilter=1006);h.format=a.format;h.needsUpdate=!0;b&&b(h)},c,d);return h},setPath:function(a){this.path=a;return this}});Object.assign(be.prototype,{load:function(a,b,c,d){var e=this,f=new ib,g=new Ka(this.manager);g.setResponseType("arraybuffer");g.load(a,function(a){if(a=e._parser(a))void 0!==a.image?f.image=a.image:void 0!==a.data&&(f.image.width=a.width,f.image.height=a.height,f.image.data=a.data),f.wrapS=void 0!==a.wrapS?a.wrapS:1001,f.wrapT=void 0!==a.wrapT?a.wrapT:1001,f.magFilter=void 0!==
+a.magFilter?a.magFilter:1006,f.minFilter=void 0!==a.minFilter?a.minFilter:1008,f.anisotropy=void 0!==a.anisotropy?a.anisotropy:1,void 0!==a.format&&(f.format=a.format),void 0!==a.type&&(f.type=a.type),void 0!==a.mipmaps&&(f.mipmaps=a.mipmaps),1===a.mipmapCount&&(f.minFilter=1006),f.needsUpdate=!0,b&&b(f,a)},c,d);return f}});Object.assign(Yc.prototype,{crossOrigin:"Anonymous",load:function(a,b,c,d){void 0===a&&(a="");void 0!==this.path&&(a=this.path+a);a=this.manager.resolveURL(a);var e=this,f=Hb.get(a);
+if(void 0!==f)return e.manager.itemStart(a),setTimeout(function(){b&&b(f);e.manager.itemEnd(a)},0),f;c=document.createElementNS("http://www.w3.org/1999/xhtml","img");c.addEventListener("load",function(){Hb.add(a,this);b&&b(this);e.manager.itemEnd(a)},!1);c.addEventListener("error",function(b){d&&d(b);e.manager.itemEnd(a);e.manager.itemError(a)},!1);"data:"!==a.substr(0,5)&&void 0!==this.crossOrigin&&(c.crossOrigin=this.crossOrigin);e.manager.itemStart(a);c.src=a;return c},setCrossOrigin:function(a){this.crossOrigin=
+a;return this},setPath:function(a){this.path=a;return this}});Object.assign(ce.prototype,{crossOrigin:"Anonymous",load:function(a,b,c,d){function e(c){g.load(a[c],function(a){f.images[c]=a;h++;6===h&&(f.needsUpdate=!0,b&&b(f))},void 0,d)}var f=new ab,g=new Yc(this.manager);g.setCrossOrigin(this.crossOrigin);g.setPath(this.path);var h=0;for(c=0;c<a.length;++c)e(c);return f},setCrossOrigin:function(a){this.crossOrigin=a;return this},setPath:function(a){this.path=a;return this}});Object.assign(xd.prototype,
+{crossOrigin:"Anonymous",load:function(a,b,c,d){var e=new Y,f=new Yc(this.manager);f.setCrossOrigin(this.crossOrigin);f.setPath(this.path);f.load(a,function(c){e.image=c;c=0<a.search(/\.(jpg|jpeg)$/)||0===a.search(/^data:image\/jpeg/);e.format=c?1022:1023;e.needsUpdate=!0;void 0!==b&&b(e)},c,d);return e},setCrossOrigin:function(a){this.crossOrigin=a;return this},setPath:function(a){this.path=a;return this}});Object.assign(E.prototype,{getPoint:function(){console.warn("THREE.Curve: .getPoint() not implemented.");
+return null},getPointAt:function(a,b){a=this.getUtoTmapping(a);return this.getPoint(a,b)},getPoints:function(a){void 0===a&&(a=5);for(var b=[],c=0;c<=a;c++)b.push(this.getPoint(c/a));return b},getSpacedPoints:function(a){void 0===a&&(a=5);for(var b=[],c=0;c<=a;c++)b.push(this.getPointAt(c/a));return b},getLength:function(){var a=this.getLengths();return a[a.length-1]},getLengths:function(a){void 0===a&&(a=this.arcLengthDivisions);if(this.cacheArcLengths&&this.cacheArcLengths.length===a+1&&!this.needsUpdate)return this.cacheArcLengths;
+this.needsUpdate=!1;var b=[],c=this.getPoint(0),d,e=0;b.push(0);for(d=1;d<=a;d++){var f=this.getPoint(d/a);e+=f.distanceTo(c);b.push(e);c=f}return this.cacheArcLengths=b},updateArcLengths:function(){this.needsUpdate=!0;this.getLengths()},getUtoTmapping:function(a,b){var c=this.getLengths(),d=c.length;b=b?b:a*c[d-1];for(var e=0,f=d-1,g;e<=f;)if(a=Math.floor(e+(f-e)/2),g=c[a]-b,0>g)e=a+1;else if(0<g)f=a-1;else{f=a;break}a=f;if(c[a]===b)return a/(d-1);e=c[a];return(a+(b-e)/(c[a+1]-e))/(d-1)},getTangent:function(a){var b=
+a-1E-4;a+=1E-4;0>b&&(b=0);1<a&&(a=1);b=this.getPoint(b);return this.getPoint(a).clone().sub(b).normalize()},getTangentAt:function(a){a=this.getUtoTmapping(a);return this.getTangent(a)},computeFrenetFrames:function(a,b){var c=new p,d=[],e=[],f=[],g=new p,h=new M,l;for(l=0;l<=a;l++){var m=l/a;d[l]=this.getTangentAt(m);d[l].normalize()}e[0]=new p;f[0]=new p;l=Number.MAX_VALUE;m=Math.abs(d[0].x);var k=Math.abs(d[0].y),n=Math.abs(d[0].z);m<=l&&(l=m,c.set(1,0,0));k<=l&&(l=k,c.set(0,1,0));n<=l&&c.set(0,
+0,1);g.crossVectors(d[0],c).normalize();e[0].crossVectors(d[0],g);f[0].crossVectors(d[0],e[0]);for(l=1;l<=a;l++)e[l]=e[l-1].clone(),f[l]=f[l-1].clone(),g.crossVectors(d[l-1],d[l]),g.length()>Number.EPSILON&&(g.normalize(),c=Math.acos(S.clamp(d[l-1].dot(d[l]),-1,1)),e[l].applyMatrix4(h.makeRotationAxis(g,c))),f[l].crossVectors(d[l],e[l]);if(!0===b)for(c=Math.acos(S.clamp(e[0].dot(e[a]),-1,1)),c/=a,0<d[0].dot(g.crossVectors(e[0],e[a]))&&(c=-c),l=1;l<=a;l++)e[l].applyMatrix4(h.makeRotationAxis(d[l],
+c*l)),f[l].crossVectors(d[l],e[l]);return{tangents:d,normals:e,binormals:f}},clone:function(){return(new this.constructor).copy(this)},copy:function(a){this.arcLengthDivisions=a.arcLengthDivisions;return this},toJSON:function(){var a={metadata:{version:4.5,type:"Curve",generator:"Curve.toJSON"}};a.arcLengthDivisions=this.arcLengthDivisions;a.type=this.type;return a},fromJSON:function(a){this.arcLengthDivisions=a.arcLengthDivisions;return this}});ia.prototype=Object.create(E.prototype);ia.prototype.constructor=
+ia;ia.prototype.isEllipseCurve=!0;ia.prototype.getPoint=function(a,b){b=b||new C;for(var c=2*Math.PI,d=this.aEndAngle-this.aStartAngle,e=Math.abs(d)<Number.EPSILON;0>d;)d+=c;for(;d>c;)d-=c;d<Number.EPSILON&&(d=e?0:c);!0!==this.aClockwise||e||(d=d===c?-c:d-c);c=this.aStartAngle+a*d;a=this.aX+this.xRadius*Math.cos(c);var f=this.aY+this.yRadius*Math.sin(c);0!==this.aRotation&&(c=Math.cos(this.aRotation),d=Math.sin(this.aRotation),e=a-this.aX,f-=this.aY,a=e*c-f*d+this.aX,f=e*d+f*c+this.aY);return b.set(a,
+f)};ia.prototype.copy=function(a){E.prototype.copy.call(this,a);this.aX=a.aX;this.aY=a.aY;this.xRadius=a.xRadius;this.yRadius=a.yRadius;this.aStartAngle=a.aStartAngle;this.aEndAngle=a.aEndAngle;this.aClockwise=a.aClockwise;this.aRotation=a.aRotation;return this};ia.prototype.toJSON=function(){var a=E.prototype.toJSON.call(this);a.aX=this.aX;a.aY=this.aY;a.xRadius=this.xRadius;a.yRadius=this.yRadius;a.aStartAngle=this.aStartAngle;a.aEndAngle=this.aEndAngle;a.aClockwise=this.aClockwise;a.aRotation=
+this.aRotation;return a};ia.prototype.fromJSON=function(a){E.prototype.fromJSON.call(this,a);this.aX=a.aX;this.aY=a.aY;this.xRadius=a.xRadius;this.yRadius=a.yRadius;this.aStartAngle=a.aStartAngle;this.aEndAngle=a.aEndAngle;this.aClockwise=a.aClockwise;this.aRotation=a.aRotation;return this};fc.prototype=Object.create(ia.prototype);fc.prototype.constructor=fc;fc.prototype.isArcCurve=!0;var Qd=new p,ye=new de,ze=new de,Ae=new de;X.prototype=Object.create(E.prototype);X.prototype.constructor=X;X.prototype.isCatmullRomCurve3=
+!0;X.prototype.getPoint=function(a,b){b=b||new p;var c=this.points,d=c.length;a*=d-(this.closed?0:1);var e=Math.floor(a);a-=e;this.closed?e+=0<e?0:(Math.floor(Math.abs(e)/c.length)+1)*c.length:0===a&&e===d-1&&(e=d-2,a=1);if(this.closed||0<e)var f=c[(e-1)%d];else Qd.subVectors(c[0],c[1]).add(c[0]),f=Qd;var g=c[e%d];var h=c[(e+1)%d];this.closed||e+2<d?c=c[(e+2)%d]:(Qd.subVectors(c[d-1],c[d-2]).add(c[d-1]),c=Qd);if("centripetal"===this.curveType||"chordal"===this.curveType){var l="chordal"===this.curveType?
+.5:.25;d=Math.pow(f.distanceToSquared(g),l);e=Math.pow(g.distanceToSquared(h),l);l=Math.pow(h.distanceToSquared(c),l);1E-4>e&&(e=1);1E-4>d&&(d=e);1E-4>l&&(l=e);ye.initNonuniformCatmullRom(f.x,g.x,h.x,c.x,d,e,l);ze.initNonuniformCatmullRom(f.y,g.y,h.y,c.y,d,e,l);Ae.initNonuniformCatmullRom(f.z,g.z,h.z,c.z,d,e,l)}else"catmullrom"===this.curveType&&(ye.initCatmullRom(f.x,g.x,h.x,c.x,this.tension),ze.initCatmullRom(f.y,g.y,h.y,c.y,this.tension),Ae.initCatmullRom(f.z,g.z,h.z,c.z,this.tension));b.set(ye.calc(a),
+ze.calc(a),Ae.calc(a));return b};X.prototype.copy=function(a){E.prototype.copy.call(this,a);this.points=[];for(var b=0,c=a.points.length;b<c;b++)this.points.push(a.points[b].clone());this.closed=a.closed;this.curveType=a.curveType;this.tension=a.tension;return this};X.prototype.toJSON=function(){var a=E.prototype.toJSON.call(this);a.points=[];for(var b=0,c=this.points.length;b<c;b++)a.points.push(this.points[b].toArray());a.closed=this.closed;a.curveType=this.curveType;a.tension=this.tension;return a};
+X.prototype.fromJSON=function(a){E.prototype.fromJSON.call(this,a);this.points=[];for(var b=0,c=a.points.length;b<c;b++){var d=a.points[b];this.points.push((new p).fromArray(d))}this.closed=a.closed;this.curveType=a.curveType;this.tension=a.tension;return this};La.prototype=Object.create(E.prototype);La.prototype.constructor=La;La.prototype.isCubicBezierCurve=!0;La.prototype.getPoint=function(a,b){b=b||new C;var c=this.v0,d=this.v1,e=this.v2,f=this.v3;b.set($c(a,c.x,d.x,e.x,f.x),$c(a,c.y,d.y,e.y,
+f.y));return b};La.prototype.copy=function(a){E.prototype.copy.call(this,a);this.v0.copy(a.v0);this.v1.copy(a.v1);this.v2.copy(a.v2);this.v3.copy(a.v3);return this};La.prototype.toJSON=function(){var a=E.prototype.toJSON.call(this);a.v0=this.v0.toArray();a.v1=this.v1.toArray();a.v2=this.v2.toArray();a.v3=this.v3.toArray();return a};La.prototype.fromJSON=function(a){E.prototype.fromJSON.call(this,a);this.v0.fromArray(a.v0);this.v1.fromArray(a.v1);this.v2.fromArray(a.v2);this.v3.fromArray(a.v3);return this};
+Ta.prototype=Object.create(E.prototype);Ta.prototype.constructor=Ta;Ta.prototype.isCubicBezierCurve3=!0;Ta.prototype.getPoint=function(a,b){b=b||new p;var c=this.v0,d=this.v1,e=this.v2,f=this.v3;b.set($c(a,c.x,d.x,e.x,f.x),$c(a,c.y,d.y,e.y,f.y),$c(a,c.z,d.z,e.z,f.z));return b};Ta.prototype.copy=function(a){E.prototype.copy.call(this,a);this.v0.copy(a.v0);this.v1.copy(a.v1);this.v2.copy(a.v2);this.v3.copy(a.v3);return this};Ta.prototype.toJSON=function(){var a=E.prototype.toJSON.call(this);a.v0=this.v0.toArray();
+a.v1=this.v1.toArray();a.v2=this.v2.toArray();a.v3=this.v3.toArray();return a};Ta.prototype.fromJSON=function(a){E.prototype.fromJSON.call(this,a);this.v0.fromArray(a.v0);this.v1.fromArray(a.v1);this.v2.fromArray(a.v2);this.v3.fromArray(a.v3);return this};wa.prototype=Object.create(E.prototype);wa.prototype.constructor=wa;wa.prototype.isLineCurve=!0;wa.prototype.getPoint=function(a,b){b=b||new C;1===a?b.copy(this.v2):(b.copy(this.v2).sub(this.v1),b.multiplyScalar(a).add(this.v1));return b};wa.prototype.getPointAt=
+function(a,b){return this.getPoint(a,b)};wa.prototype.getTangent=function(){return this.v2.clone().sub(this.v1).normalize()};wa.prototype.copy=function(a){E.prototype.copy.call(this,a);this.v1.copy(a.v1);this.v2.copy(a.v2);return this};wa.prototype.toJSON=function(){var a=E.prototype.toJSON.call(this);a.v1=this.v1.toArray();a.v2=this.v2.toArray();return a};wa.prototype.fromJSON=function(a){E.prototype.fromJSON.call(this,a);this.v1.fromArray(a.v1);this.v2.fromArray(a.v2);return this};Ma.prototype=
+Object.create(E.prototype);Ma.prototype.constructor=Ma;Ma.prototype.isLineCurve3=!0;Ma.prototype.getPoint=function(a,b){b=b||new p;1===a?b.copy(this.v2):(b.copy(this.v2).sub(this.v1),b.multiplyScalar(a).add(this.v1));return b};Ma.prototype.getPointAt=function(a,b){return this.getPoint(a,b)};Ma.prototype.copy=function(a){E.prototype.copy.call(this,a);this.v1.copy(a.v1);this.v2.copy(a.v2);return this};Ma.prototype.toJSON=function(){var a=E.prototype.toJSON.call(this);a.v1=this.v1.toArray();a.v2=this.v2.toArray();
+return a};Ma.prototype.fromJSON=function(a){E.prototype.fromJSON.call(this,a);this.v1.fromArray(a.v1);this.v2.fromArray(a.v2);return this};Na.prototype=Object.create(E.prototype);Na.prototype.constructor=Na;Na.prototype.isQuadraticBezierCurve=!0;Na.prototype.getPoint=function(a,b){b=b||new C;var c=this.v0,d=this.v1,e=this.v2;b.set(Zc(a,c.x,d.x,e.x),Zc(a,c.y,d.y,e.y));return b};Na.prototype.copy=function(a){E.prototype.copy.call(this,a);this.v0.copy(a.v0);this.v1.copy(a.v1);this.v2.copy(a.v2);return this};
+Na.prototype.toJSON=function(){var a=E.prototype.toJSON.call(this);a.v0=this.v0.toArray();a.v1=this.v1.toArray();a.v2=this.v2.toArray();return a};Na.prototype.fromJSON=function(a){E.prototype.fromJSON.call(this,a);this.v0.fromArray(a.v0);this.v1.fromArray(a.v1);this.v2.fromArray(a.v2);return this};Ua.prototype=Object.create(E.prototype);Ua.prototype.constructor=Ua;Ua.prototype.isQuadraticBezierCurve3=!0;Ua.prototype.getPoint=function(a,b){b=b||new p;var c=this.v0,d=this.v1,e=this.v2;b.set(Zc(a,c.x,
+d.x,e.x),Zc(a,c.y,d.y,e.y),Zc(a,c.z,d.z,e.z));return b};Ua.prototype.copy=function(a){E.prototype.copy.call(this,a);this.v0.copy(a.v0);this.v1.copy(a.v1);this.v2.copy(a.v2);return this};Ua.prototype.toJSON=function(){var a=E.prototype.toJSON.call(this);a.v0=this.v0.toArray();a.v1=this.v1.toArray();a.v2=this.v2.toArray();return a};Ua.prototype.fromJSON=function(a){E.prototype.fromJSON.call(this,a);this.v0.fromArray(a.v0);this.v1.fromArray(a.v1);this.v2.fromArray(a.v2);return this};Oa.prototype=Object.create(E.prototype);
+Oa.prototype.constructor=Oa;Oa.prototype.isSplineCurve=!0;Oa.prototype.getPoint=function(a,b){b=b||new C;var c=this.points,d=(c.length-1)*a;a=Math.floor(d);d-=a;var e=c[0===a?a:a-1],f=c[a],g=c[a>c.length-2?c.length-1:a+1];c=c[a>c.length-3?c.length-1:a+2];b.set(ef(d,e.x,f.x,g.x,c.x),ef(d,e.y,f.y,g.y,c.y));return b};Oa.prototype.copy=function(a){E.prototype.copy.call(this,a);this.points=[];for(var b=0,c=a.points.length;b<c;b++)this.points.push(a.points[b].clone());return this};Oa.prototype.toJSON=function(){var a=
+E.prototype.toJSON.call(this);a.points=[];for(var b=0,c=this.points.length;b<c;b++)a.points.push(this.points[b].toArray());return a};Oa.prototype.fromJSON=function(a){E.prototype.fromJSON.call(this,a);this.points=[];for(var b=0,c=a.points.length;b<c;b++){var d=a.points[b];this.points.push((new C).fromArray(d))}return this};var Ng=Object.freeze({ArcCurve:fc,CatmullRomCurve3:X,CubicBezierCurve:La,CubicBezierCurve3:Ta,EllipseCurve:ia,LineCurve:wa,LineCurve3:Ma,QuadraticBezierCurve:Na,QuadraticBezierCurve3:Ua,
+SplineCurve:Oa});Za.prototype=Object.assign(Object.create(E.prototype),{constructor:Za,add:function(a){this.curves.push(a)},closePath:function(){var a=this.curves[0].getPoint(0),b=this.curves[this.curves.length-1].getPoint(1);a.equals(b)||this.curves.push(new wa(b,a))},getPoint:function(a){var b=a*this.getLength(),c=this.getCurveLengths();for(a=0;a<c.length;){if(c[a]>=b)return b=c[a]-b,a=this.curves[a],c=a.getLength(),a.getPointAt(0===c?0:1-b/c);a++}return null},getLength:function(){var a=this.getCurveLengths();
+return a[a.length-1]},updateArcLengths:function(){this.needsUpdate=!0;this.cacheLengths=null;this.getCurveLengths()},getCurveLengths:function(){if(this.cacheLengths&&this.cacheLengths.length===this.curves.length)return this.cacheLengths;for(var a=[],b=0,c=0,d=this.curves.length;c<d;c++)b+=this.curves[c].getLength(),a.push(b);return this.cacheLengths=a},getSpacedPoints:function(a){void 0===a&&(a=40);for(var b=[],c=0;c<=a;c++)b.push(this.getPoint(c/a));this.autoClose&&b.push(b[0]);return b},getPoints:function(a){a=
+a||12;for(var b=[],c,d=0,e=this.curves;d<e.length;d++){var f=e[d];f=f.getPoints(f&&f.isEllipseCurve?2*a:f&&f.isLineCurve?1:f&&f.isSplineCurve?a*f.points.length:a);for(var g=0;g<f.length;g++){var h=f[g];c&&c.equals(h)||(b.push(h),c=h)}}this.autoClose&&1<b.length&&!b[b.length-1].equals(b[0])&&b.push(b[0]);return b},copy:function(a){E.prototype.copy.call(this,a);this.curves=[];for(var b=0,c=a.curves.length;b<c;b++)this.curves.push(a.curves[b].clone());this.autoClose=a.autoClose;return this},toJSON:function(){var a=
+E.prototype.toJSON.call(this);a.autoClose=this.autoClose;a.curves=[];for(var b=0,c=this.curves.length;b<c;b++)a.curves.push(this.curves[b].toJSON());return a},fromJSON:function(a){E.prototype.fromJSON.call(this,a);this.autoClose=a.autoClose;this.curves=[];for(var b=0,c=a.curves.length;b<c;b++){var d=a.curves[b];this.curves.push((new Ng[d.type]).fromJSON(d))}return this}});Pa.prototype=Object.assign(Object.create(Za.prototype),{constructor:Pa,setFromPoints:function(a){this.moveTo(a[0].x,a[0].y);for(var b=
+1,c=a.length;b<c;b++)this.lineTo(a[b].x,a[b].y)},moveTo:function(a,b){this.currentPoint.set(a,b)},lineTo:function(a,b){var c=new wa(this.currentPoint.clone(),new C(a,b));this.curves.push(c);this.currentPoint.set(a,b)},quadraticCurveTo:function(a,b,c,d){a=new Na(this.currentPoint.clone(),new C(a,b),new C(c,d));this.curves.push(a);this.currentPoint.set(c,d)},bezierCurveTo:function(a,b,c,d,e,f){a=new La(this.currentPoint.clone(),new C(a,b),new C(c,d),new C(e,f));this.curves.push(a);this.currentPoint.set(e,
+f)},splineThru:function(a){var b=[this.currentPoint.clone()].concat(a);b=new Oa(b);this.curves.push(b);this.currentPoint.copy(a[a.length-1])},arc:function(a,b,c,d,e,f){this.absarc(a+this.currentPoint.x,b+this.currentPoint.y,c,d,e,f)},absarc:function(a,b,c,d,e,f){this.absellipse(a,b,c,c,d,e,f)},ellipse:function(a,b,c,d,e,f,g,h){this.absellipse(a+this.currentPoint.x,b+this.currentPoint.y,c,d,e,f,g,h)},absellipse:function(a,b,c,d,e,f,g,h){a=new ia(a,b,c,d,e,f,g,h);0<this.curves.length&&(b=a.getPoint(0),
+b.equals(this.currentPoint)||this.lineTo(b.x,b.y));this.curves.push(a);a=a.getPoint(1);this.currentPoint.copy(a)},copy:function(a){Za.prototype.copy.call(this,a);this.currentPoint.copy(a.currentPoint);return this},toJSON:function(){var a=Za.prototype.toJSON.call(this);a.currentPoint=this.currentPoint.toArray();return a},fromJSON:function(a){Za.prototype.fromJSON.call(this,a);this.currentPoint.fromArray(a.currentPoint);return this}});gb.prototype=Object.assign(Object.create(Pa.prototype),{constructor:gb,
+getPointsHoles:function(a){for(var b=[],c=0,d=this.holes.length;c<d;c++)b[c]=this.holes[c].getPoints(a);return b},extractPoints:function(a){return{shape:this.getPoints(a),holes:this.getPointsHoles(a)}},copy:function(a){Pa.prototype.copy.call(this,a);this.holes=[];for(var b=0,c=a.holes.length;b<c;b++)this.holes.push(a.holes[b].clone());return this},toJSON:function(){var a=Pa.prototype.toJSON.call(this);a.uuid=this.uuid;a.holes=[];for(var b=0,c=this.holes.length;b<c;b++)a.holes.push(this.holes[b].toJSON());
+return a},fromJSON:function(a){Pa.prototype.fromJSON.call(this,a);this.uuid=a.uuid;this.holes=[];for(var b=0,c=a.holes.length;b<c;b++){var d=a.holes[b];this.holes.push((new Pa).fromJSON(d))}return this}});ca.prototype=Object.assign(Object.create(A.prototype),{constructor:ca,isLight:!0,copy:function(a){A.prototype.copy.call(this,a);this.color.copy(a.color);this.intensity=a.intensity;return this},toJSON:function(a){a=A.prototype.toJSON.call(this,a);a.object.color=this.color.getHex();a.object.intensity=
+this.intensity;void 0!==this.groundColor&&(a.object.groundColor=this.groundColor.getHex());void 0!==this.distance&&(a.object.distance=this.distance);void 0!==this.angle&&(a.object.angle=this.angle);void 0!==this.decay&&(a.object.decay=this.decay);void 0!==this.penumbra&&(a.object.penumbra=this.penumbra);void 0!==this.shadow&&(a.object.shadow=this.shadow.toJSON());return a}});yd.prototype=Object.assign(Object.create(ca.prototype),{constructor:yd,isHemisphereLight:!0,copy:function(a){ca.prototype.copy.call(this,
+a);this.groundColor.copy(a.groundColor);return this}});Object.assign(Eb.prototype,{copy:function(a){this.camera=a.camera.clone();this.bias=a.bias;this.radius=a.radius;this.mapSize.copy(a.mapSize);return this},clone:function(){return(new this.constructor).copy(this)},toJSON:function(){var a={};0!==this.bias&&(a.bias=this.bias);1!==this.radius&&(a.radius=this.radius);if(512!==this.mapSize.x||512!==this.mapSize.y)a.mapSize=this.mapSize.toArray();a.camera=this.camera.toJSON(!1).object;delete a.camera.matrix;
+return a}});zd.prototype=Object.assign(Object.create(Eb.prototype),{constructor:zd,isSpotLightShadow:!0,update:function(a){var b=this.camera,c=2*S.RAD2DEG*a.angle,d=this.mapSize.width/this.mapSize.height;a=a.distance||b.far;if(c!==b.fov||d!==b.aspect||a!==b.far)b.fov=c,b.aspect=d,b.far=a,b.updateProjectionMatrix()}});Ad.prototype=Object.assign(Object.create(ca.prototype),{constructor:Ad,isSpotLight:!0,copy:function(a){ca.prototype.copy.call(this,a);this.distance=a.distance;this.angle=a.angle;this.penumbra=
+a.penumbra;this.decay=a.decay;this.target=a.target.clone();this.shadow=a.shadow.clone();return this}});Bd.prototype=Object.assign(Object.create(ca.prototype),{constructor:Bd,isPointLight:!0,copy:function(a){ca.prototype.copy.call(this,a);this.distance=a.distance;this.decay=a.decay;this.shadow=a.shadow.clone();return this}});Cd.prototype=Object.assign(Object.create(Eb.prototype),{constructor:Cd});Dd.prototype=Object.assign(Object.create(ca.prototype),{constructor:Dd,isDirectionalLight:!0,copy:function(a){ca.prototype.copy.call(this,
+a);this.target=a.target.clone();this.shadow=a.shadow.clone();return this}});Ed.prototype=Object.assign(Object.create(ca.prototype),{constructor:Ed,isAmbientLight:!0});Fd.prototype=Object.assign(Object.create(ca.prototype),{constructor:Fd,isRectAreaLight:!0,copy:function(a){ca.prototype.copy.call(this,a);this.width=a.width;this.height=a.height;return this},toJSON:function(a){a=ca.prototype.toJSON.call(this,a);a.object.width=this.width;a.object.height=this.height;return a}});Gd.prototype=Object.assign(Object.create(da.prototype),
+{constructor:Gd,ValueTypeName:"string",ValueBufferType:Array,DefaultInterpolation:2300,InterpolantFactoryMethodLinear:void 0,InterpolantFactoryMethodSmooth:void 0});Hd.prototype=Object.assign(Object.create(da.prototype),{constructor:Hd,ValueTypeName:"bool",ValueBufferType:Array,DefaultInterpolation:2300,InterpolantFactoryMethodLinear:void 0,InterpolantFactoryMethodSmooth:void 0});Object.assign(na.prototype,{evaluate:function(a){var b=this.parameterPositions,c=this._cachedIndex,d=b[c],e=b[c-1];a:{b:{c:{d:if(!(a<
+d)){for(var f=c+2;;){if(void 0===d){if(a<e)break d;this._cachedIndex=c=b.length;return this.afterEnd_(c-1,a,e)}if(c===f)break;e=d;d=b[++c];if(a<d)break b}d=b.length;break c}if(a>=e)break a;else{f=b[1];a<f&&(c=2,e=f);for(f=c-2;;){if(void 0===e)return this._cachedIndex=0,this.beforeStart_(0,a,d);if(c===f)break;d=e;e=b[--c-1];if(a>=e)break b}d=c;c=0}}for(;c<d;)e=c+d>>>1,a<b[e]?d=e:c=e+1;d=b[c];e=b[c-1];if(void 0===e)return this._cachedIndex=0,this.beforeStart_(0,a,d);if(void 0===d)return this._cachedIndex=
+c=b.length,this.afterEnd_(c-1,e,a)}this._cachedIndex=c;this.intervalChanged_(c,e,d)}return this.interpolate_(c,e,a,d)},settings:null,DefaultSettings_:{},getSettings_:function(){return this.settings||this.DefaultSettings_},copySampleValue_:function(a){var b=this.resultBuffer,c=this.sampleValues,d=this.valueSize;a*=d;for(var e=0;e!==d;++e)b[e]=c[a+e];return b},interpolate_:function(){throw Error("call to abstract method");},intervalChanged_:function(){}});Object.assign(na.prototype,{beforeStart_:na.prototype.copySampleValue_,
+afterEnd_:na.prototype.copySampleValue_});Id.prototype=Object.assign(Object.create(na.prototype),{constructor:Id,interpolate_:function(a,b,c,d){var e=this.resultBuffer,f=this.sampleValues,g=this.valueSize;a*=g;b=(c-b)/(d-b);for(c=a+g;a!==c;a+=4)ja.slerpFlat(e,0,f,a-g,f,a,b);return e}});ad.prototype=Object.assign(Object.create(da.prototype),{constructor:ad,ValueTypeName:"quaternion",DefaultInterpolation:2301,InterpolantFactoryMethodLinear:function(a){return new Id(this.times,this.values,this.getValueSize(),
+a)},InterpolantFactoryMethodSmooth:void 0});Jd.prototype=Object.assign(Object.create(da.prototype),{constructor:Jd,ValueTypeName:"color"});gc.prototype=Object.assign(Object.create(da.prototype),{constructor:gc,ValueTypeName:"number"});Kd.prototype=Object.assign(Object.create(na.prototype),{constructor:Kd,DefaultSettings_:{endingStart:2400,endingEnd:2400},intervalChanged_:function(a,b,c){var d=this.parameterPositions,e=a-2,f=a+1,g=d[e],h=d[f];if(void 0===g)switch(this.getSettings_().endingStart){case 2401:e=
+a;g=2*b-c;break;case 2402:e=d.length-2;g=b+d[e]-d[e+1];break;default:e=a,g=c}if(void 0===h)switch(this.getSettings_().endingEnd){case 2401:f=a;h=2*c-b;break;case 2402:f=1;h=c+d[1]-d[0];break;default:f=a-1,h=b}a=.5*(c-b);d=this.valueSize;this._weightPrev=a/(b-g);this._weightNext=a/(h-c);this._offsetPrev=e*d;this._offsetNext=f*d},interpolate_:function(a,b,c,d){var e=this.resultBuffer,f=this.sampleValues,g=this.valueSize;a*=g;var h=a-g,l=this._offsetPrev,m=this._offsetNext,k=this._weightPrev,n=this._weightNext,
+p=(c-b)/(d-b);c=p*p;d=c*p;b=-k*d+2*k*c-k*p;k=(1+k)*d+(-1.5-2*k)*c+(-.5+k)*p+1;p=(-1-n)*d+(1.5+n)*c+.5*p;n=n*d-n*c;for(c=0;c!==g;++c)e[c]=b*f[l+c]+k*f[h+c]+p*f[a+c]+n*f[m+c];return e}});bd.prototype=Object.assign(Object.create(na.prototype),{constructor:bd,interpolate_:function(a,b,c,d){var e=this.resultBuffer,f=this.sampleValues,g=this.valueSize;a*=g;var h=a-g;b=(c-b)/(d-b);c=1-b;for(d=0;d!==g;++d)e[d]=f[h+d]*c+f[a+d]*b;return e}});Ld.prototype=Object.assign(Object.create(na.prototype),{constructor:Ld,
+interpolate_:function(a){return this.copySampleValue_(a-1)}});var fa={arraySlice:function(a,b,c){return fa.isTypedArray(a)?new a.constructor(a.subarray(b,void 0!==c?c:a.length)):a.slice(b,c)},convertArray:function(a,b,c){return!a||!c&&a.constructor===b?a:"number"===typeof b.BYTES_PER_ELEMENT?new b(a):Array.prototype.slice.call(a)},isTypedArray:function(a){return ArrayBuffer.isView(a)&&!(a instanceof DataView)},getKeyframeOrder:function(a){for(var b=a.length,c=Array(b),d=0;d!==b;++d)c[d]=d;c.sort(function(b,
+c){return a[b]-a[c]});return c},sortedArray:function(a,b,c){for(var d=a.length,e=new a.constructor(d),f=0,g=0;g!==d;++f)for(var h=c[f]*b,l=0;l!==b;++l)e[g++]=a[h+l];return e},flattenJSON:function(a,b,c,d){for(var e=1,f=a[0];void 0!==f&&void 0===f[d];)f=a[e++];if(void 0!==f){var g=f[d];if(void 0!==g)if(Array.isArray(g)){do g=f[d],void 0!==g&&(b.push(f.time),c.push.apply(c,g)),f=a[e++];while(void 0!==f)}else if(void 0!==g.toArray){do g=f[d],void 0!==g&&(b.push(f.time),g.toArray(c,c.length)),f=a[e++];
+while(void 0!==f)}else{do g=f[d],void 0!==g&&(b.push(f.time),c.push(g)),f=a[e++];while(void 0!==f)}}}};Object.assign(da,{parse:function(a){if(void 0===a.type)throw Error("THREE.KeyframeTrack: track type undefined, can not parse");var b=da._getTrackTypeForValueTypeName(a.type);if(void 0===a.times){var c=[],d=[];fa.flattenJSON(a.keys,c,d,"value");a.times=c;a.values=d}return void 0!==b.parse?b.parse(a):new b(a.name,a.times,a.values,a.interpolation)},toJSON:function(a){var b=a.constructor;if(void 0!==
+b.toJSON)b=b.toJSON(a);else{b={name:a.name,times:fa.convertArray(a.times,Array),values:fa.convertArray(a.values,Array)};var c=a.getInterpolation();c!==a.DefaultInterpolation&&(b.interpolation=c)}b.type=a.ValueTypeName;return b},_getTrackTypeForValueTypeName:function(a){switch(a.toLowerCase()){case "scalar":case "double":case "float":case "number":case "integer":return gc;case "vector":case "vector2":case "vector3":case "vector4":return hc;case "color":return Jd;case "quaternion":return ad;case "bool":case "boolean":return Hd;
+case "string":return Gd}throw Error("THREE.KeyframeTrack: Unsupported typeName: "+a);}});Object.assign(da.prototype,{constructor:da,TimeBufferType:Float32Array,ValueBufferType:Float32Array,DefaultInterpolation:2301,InterpolantFactoryMethodDiscrete:function(a){return new Ld(this.times,this.values,this.getValueSize(),a)},InterpolantFactoryMethodLinear:function(a){return new bd(this.times,this.values,this.getValueSize(),a)},InterpolantFactoryMethodSmooth:function(a){return new Kd(this.times,this.values,
+this.getValueSize(),a)},setInterpolation:function(a){switch(a){case 2300:var b=this.InterpolantFactoryMethodDiscrete;break;case 2301:b=this.InterpolantFactoryMethodLinear;break;case 2302:b=this.InterpolantFactoryMethodSmooth}if(void 0===b){b="unsupported interpolation for "+this.ValueTypeName+" keyframe track named "+this.name;if(void 0===this.createInterpolant)if(a!==this.DefaultInterpolation)this.setInterpolation(this.DefaultInterpolation);else throw Error(b);console.warn("THREE.KeyframeTrack:",
+b)}else this.createInterpolant=b},getInterpolation:function(){switch(this.createInterpolant){case this.InterpolantFactoryMethodDiscrete:return 2300;case this.InterpolantFactoryMethodLinear:return 2301;case this.InterpolantFactoryMethodSmooth:return 2302}},getValueSize:function(){return this.values.length/this.times.length},shift:function(a){if(0!==a)for(var b=this.times,c=0,d=b.length;c!==d;++c)b[c]+=a;return this},scale:function(a){if(1!==a)for(var b=this.times,c=0,d=b.length;c!==d;++c)b[c]*=a;return this},
+trim:function(a,b){for(var c=this.times,d=c.length,e=0,f=d-1;e!==d&&c[e]<a;)++e;for(;-1!==f&&c[f]>b;)--f;++f;if(0!==e||f!==d)e>=f&&(f=Math.max(f,1),e=f-1),a=this.getValueSize(),this.times=fa.arraySlice(c,e,f),this.values=fa.arraySlice(this.values,e*a,f*a);return this},validate:function(){var a=!0,b=this.getValueSize();0!==b-Math.floor(b)&&(console.error("THREE.KeyframeTrack: Invalid value size in track.",this),a=!1);var c=this.times;b=this.values;var d=c.length;0===d&&(console.error("THREE.KeyframeTrack: Track is empty.",
+this),a=!1);for(var e=null,f=0;f!==d;f++){var g=c[f];if("number"===typeof g&&isNaN(g)){console.error("THREE.KeyframeTrack: Time is not a valid number.",this,f,g);a=!1;break}if(null!==e&&e>g){console.error("THREE.KeyframeTrack: Out of order keys.",this,f,g,e);a=!1;break}e=g}if(void 0!==b&&fa.isTypedArray(b))for(f=0,c=b.length;f!==c;++f)if(d=b[f],isNaN(d)){console.error("THREE.KeyframeTrack: Value is not a valid number.",this,f,d);a=!1;break}return a},optimize:function(){for(var a=this.times,b=this.values,
+c=this.getValueSize(),d=2302===this.getInterpolation(),e=1,f=a.length-1,g=1;g<f;++g){var h=!1,l=a[g];if(l!==a[g+1]&&(1!==g||l!==l[0]))if(d)h=!0;else{var k=g*c,p=k-c,n=k+c;for(l=0;l!==c;++l){var t=b[k+l];if(t!==b[p+l]||t!==b[n+l]){h=!0;break}}}if(h){if(g!==e)for(a[e]=a[g],h=g*c,k=e*c,l=0;l!==c;++l)b[k+l]=b[h+l];++e}}if(0<f){a[e]=a[f];h=f*c;k=e*c;for(l=0;l!==c;++l)b[k+l]=b[h+l];++e}e!==a.length&&(this.times=fa.arraySlice(a,0,e),this.values=fa.arraySlice(b,0,e*c));return this}});hc.prototype=Object.assign(Object.create(da.prototype),
+{constructor:hc,ValueTypeName:"vector"});Object.assign(Ba,{parse:function(a){for(var b=[],c=a.tracks,d=1/(a.fps||1),e=0,f=c.length;e!==f;++e)b.push(da.parse(c[e]).scale(d));return new Ba(a.name,a.duration,b)},toJSON:function(a){var b=[],c=a.tracks;a={name:a.name,duration:a.duration,tracks:b};for(var d=0,e=c.length;d!==e;++d)b.push(da.toJSON(c[d]));return a},CreateFromMorphTargetSequence:function(a,b,c,d){for(var e=b.length,f=[],g=0;g<e;g++){var h=[],l=[];h.push((g+e-1)%e,g,(g+1)%e);l.push(0,1,0);
+var k=fa.getKeyframeOrder(h);h=fa.sortedArray(h,1,k);l=fa.sortedArray(l,1,k);d||0!==h[0]||(h.push(e),l.push(l[0]));f.push((new gc(".morphTargetInfluences["+b[g].name+"]",h,l)).scale(1/c))}return new Ba(a,-1,f)},findByName:function(a,b){var c=a;Array.isArray(a)||(c=a.geometry&&a.geometry.animations||a.animations);for(a=0;a<c.length;a++)if(c[a].name===b)return c[a];return null},CreateClipsFromMorphTargetSequences:function(a,b,c){for(var d={},e=/^([\w-]*?)([\d]+)$/,f=0,g=a.length;f<g;f++){var h=a[f],
+l=h.name.match(e);if(l&&1<l.length){var k=l[1];(l=d[k])||(d[k]=l=[]);l.push(h)}}a=[];for(k in d)a.push(Ba.CreateFromMorphTargetSequence(k,d[k],b,c));return a},parseAnimation:function(a,b){if(!a)return console.error("THREE.AnimationClip: No animation in JSONLoader data."),null;var c=function(a,b,c,d,e){if(0!==c.length){var f=[],g=[];fa.flattenJSON(c,f,g,d);0!==f.length&&e.push(new a(b,f,g))}},d=[],e=a.name||"default",f=a.length||-1,g=a.fps||30;a=a.hierarchy||[];for(var h=0;h<a.length;h++){var l=a[h].keys;
+if(l&&0!==l.length)if(l[0].morphTargets){f={};for(var k=0;k<l.length;k++)if(l[k].morphTargets)for(var p=0;p<l[k].morphTargets.length;p++)f[l[k].morphTargets[p]]=-1;for(var n in f){var t=[],r=[];for(p=0;p!==l[k].morphTargets.length;++p){var q=l[k];t.push(q.time);r.push(q.morphTarget===n?1:0)}d.push(new gc(".morphTargetInfluence["+n+"]",t,r))}f=f.length*(g||1)}else k=".bones["+b[h].name+"]",c(hc,k+".position",l,"pos",d),c(ad,k+".quaternion",l,"rot",d),c(hc,k+".scale",l,"scl",d)}return 0===d.length?
+null:new Ba(e,f,d)}});Object.assign(Ba.prototype,{resetDuration:function(){for(var a=0,b=0,c=this.tracks.length;b!==c;++b){var d=this.tracks[b];a=Math.max(a,d.times[d.times.length-1])}this.duration=a},trim:function(){for(var a=0;a<this.tracks.length;a++)this.tracks[a].trim(0,this.duration);return this},optimize:function(){for(var a=0;a<this.tracks.length;a++)this.tracks[a].optimize();return this}});Object.assign(Md.prototype,{load:function(a,b,c,d){var e=this;(new Ka(e.manager)).load(a,function(a){b(e.parse(JSON.parse(a)))},
+c,d)},setTextures:function(a){this.textures=a},parse:function(a){function b(a){void 0===c[a]&&console.warn("THREE.MaterialLoader: Undefined texture",a);return c[a]}var c=this.textures,d=new Mg[a.type];void 0!==a.uuid&&(d.uuid=a.uuid);void 0!==a.name&&(d.name=a.name);void 0!==a.color&&d.color.setHex(a.color);void 0!==a.roughness&&(d.roughness=a.roughness);void 0!==a.metalness&&(d.metalness=a.metalness);void 0!==a.emissive&&d.emissive.setHex(a.emissive);void 0!==a.specular&&d.specular.setHex(a.specular);
+void 0!==a.shininess&&(d.shininess=a.shininess);void 0!==a.clearCoat&&(d.clearCoat=a.clearCoat);void 0!==a.clearCoatRoughness&&(d.clearCoatRoughness=a.clearCoatRoughness);void 0!==a.uniforms&&(d.uniforms=a.uniforms);void 0!==a.vertexShader&&(d.vertexShader=a.vertexShader);void 0!==a.fragmentShader&&(d.fragmentShader=a.fragmentShader);void 0!==a.vertexColors&&(d.vertexColors=a.vertexColors);void 0!==a.fog&&(d.fog=a.fog);void 0!==a.flatShading&&(d.flatShading=a.flatShading);void 0!==a.blending&&(d.blending=
+a.blending);void 0!==a.side&&(d.side=a.side);void 0!==a.opacity&&(d.opacity=a.opacity);void 0!==a.transparent&&(d.transparent=a.transparent);void 0!==a.alphaTest&&(d.alphaTest=a.alphaTest);void 0!==a.depthTest&&(d.depthTest=a.depthTest);void 0!==a.depthWrite&&(d.depthWrite=a.depthWrite);void 0!==a.colorWrite&&(d.colorWrite=a.colorWrite);void 0!==a.wireframe&&(d.wireframe=a.wireframe);void 0!==a.wireframeLinewidth&&(d.wireframeLinewidth=a.wireframeLinewidth);void 0!==a.wireframeLinecap&&(d.wireframeLinecap=
+a.wireframeLinecap);void 0!==a.wireframeLinejoin&&(d.wireframeLinejoin=a.wireframeLinejoin);void 0!==a.rotation&&(d.rotation=a.rotation);1!==a.linewidth&&(d.linewidth=a.linewidth);void 0!==a.dashSize&&(d.dashSize=a.dashSize);void 0!==a.gapSize&&(d.gapSize=a.gapSize);void 0!==a.scale&&(d.scale=a.scale);void 0!==a.polygonOffset&&(d.polygonOffset=a.polygonOffset);void 0!==a.polygonOffsetFactor&&(d.polygonOffsetFactor=a.polygonOffsetFactor);void 0!==a.polygonOffsetUnits&&(d.polygonOffsetUnits=a.polygonOffsetUnits);
+void 0!==a.skinning&&(d.skinning=a.skinning);void 0!==a.morphTargets&&(d.morphTargets=a.morphTargets);void 0!==a.dithering&&(d.dithering=a.dithering);void 0!==a.visible&&(d.visible=a.visible);void 0!==a.userData&&(d.userData=a.userData);void 0!==a.shading&&(d.flatShading=1===a.shading);void 0!==a.size&&(d.size=a.size);void 0!==a.sizeAttenuation&&(d.sizeAttenuation=a.sizeAttenuation);void 0!==a.map&&(d.map=b(a.map));void 0!==a.alphaMap&&(d.alphaMap=b(a.alphaMap),d.transparent=!0);void 0!==a.bumpMap&&
+(d.bumpMap=b(a.bumpMap));void 0!==a.bumpScale&&(d.bumpScale=a.bumpScale);void 0!==a.normalMap&&(d.normalMap=b(a.normalMap));if(void 0!==a.normalScale){var e=a.normalScale;!1===Array.isArray(e)&&(e=[e,e]);d.normalScale=(new C).fromArray(e)}void 0!==a.displacementMap&&(d.displacementMap=b(a.displacementMap));void 0!==a.displacementScale&&(d.displacementScale=a.displacementScale);void 0!==a.displacementBias&&(d.displacementBias=a.displacementBias);void 0!==a.roughnessMap&&(d.roughnessMap=b(a.roughnessMap));
+void 0!==a.metalnessMap&&(d.metalnessMap=b(a.metalnessMap));void 0!==a.emissiveMap&&(d.emissiveMap=b(a.emissiveMap));void 0!==a.emissiveIntensity&&(d.emissiveIntensity=a.emissiveIntensity);void 0!==a.specularMap&&(d.specularMap=b(a.specularMap));void 0!==a.envMap&&(d.envMap=b(a.envMap));void 0!==a.reflectivity&&(d.reflectivity=a.reflectivity);void 0!==a.lightMap&&(d.lightMap=b(a.lightMap));void 0!==a.lightMapIntensity&&(d.lightMapIntensity=a.lightMapIntensity);void 0!==a.aoMap&&(d.aoMap=b(a.aoMap));
+void 0!==a.aoMapIntensity&&(d.aoMapIntensity=a.aoMapIntensity);void 0!==a.gradientMap&&(d.gradientMap=b(a.gradientMap));return d}});Object.assign(ee.prototype,{load:function(a,b,c,d){var e=this;(new Ka(e.manager)).load(a,function(a){b(e.parse(JSON.parse(a)))},c,d)},parse:function(a){var b=new F,c=a.data.index;void 0!==c&&(c=new uf[c.type](c.array),b.setIndex(new T(c,1)));var d=a.data.attributes;for(f in d){var e=d[f];c=new uf[e.type](e.array);b.addAttribute(f,new T(c,e.itemSize,e.normalized))}var f=
+a.data.groups||a.data.drawcalls||a.data.offsets;if(void 0!==f)for(c=0,d=f.length;c!==d;++c)e=f[c],b.addGroup(e.start,e.count,e.materialIndex);a=a.data.boundingSphere;void 0!==a&&(f=new p,void 0!==a.center&&f.fromArray(a.center),b.boundingSphere=new Ea(f,a.radius));return b}});var uf={Int8Array:Int8Array,Uint8Array:Uint8Array,Uint8ClampedArray:"undefined"!==typeof Uint8ClampedArray?Uint8ClampedArray:Uint8Array,Int16Array:Int16Array,Uint16Array:Uint16Array,Int32Array:Int32Array,Uint32Array:Uint32Array,
+Float32Array:Float32Array,Float64Array:Float64Array};ic.Handlers={handlers:[],add:function(a,b){this.handlers.push(a,b)},get:function(a){for(var b=this.handlers,c=0,d=b.length;c<d;c+=2){var e=b[c+1];if(b[c].test(a))return e}return null}};Object.assign(ic.prototype,{crossOrigin:void 0,onLoadStart:function(){},onLoadProgress:function(){},onLoadComplete:function(){},initMaterials:function(a,b,c){for(var d=[],e=0;e<a.length;++e)d[e]=this.createMaterial(a[e],b,c);return d},createMaterial:function(){var a=
+{NoBlending:0,NormalBlending:1,AdditiveBlending:2,SubtractiveBlending:3,MultiplyBlending:4,CustomBlending:5},b=new I,c=new xd,d=new Md;return function(e,f,g){function h(a,b,d,e,h){a=f+a;var k=ic.Handlers.get(a);null!==k?a=k.load(a):(c.setCrossOrigin(g),a=c.load(a));void 0!==b&&(a.repeat.fromArray(b),1!==b[0]&&(a.wrapS=1E3),1!==b[1]&&(a.wrapT=1E3));void 0!==d&&a.offset.fromArray(d);void 0!==e&&("repeat"===e[0]&&(a.wrapS=1E3),"mirror"===e[0]&&(a.wrapS=1002),"repeat"===e[1]&&(a.wrapT=1E3),"mirror"===
+e[1]&&(a.wrapT=1002));void 0!==h&&(a.anisotropy=h);b=S.generateUUID();l[b]=a;return b}var l={},k={uuid:S.generateUUID(),type:"MeshLambertMaterial"},p;for(p in e){var n=e[p];switch(p){case "DbgColor":case "DbgIndex":case "opticalDensity":case "illumination":break;case "DbgName":k.name=n;break;case "blending":k.blending=a[n];break;case "colorAmbient":case "mapAmbient":console.warn("THREE.Loader.createMaterial:",p,"is no longer supported.");break;case "colorDiffuse":k.color=b.fromArray(n).getHex();break;
+case "colorSpecular":k.specular=b.fromArray(n).getHex();break;case "colorEmissive":k.emissive=b.fromArray(n).getHex();break;case "specularCoef":k.shininess=n;break;case "shading":"basic"===n.toLowerCase()&&(k.type="MeshBasicMaterial");"phong"===n.toLowerCase()&&(k.type="MeshPhongMaterial");"standard"===n.toLowerCase()&&(k.type="MeshStandardMaterial");break;case "mapDiffuse":k.map=h(n,e.mapDiffuseRepeat,e.mapDiffuseOffset,e.mapDiffuseWrap,e.mapDiffuseAnisotropy);break;case "mapDiffuseRepeat":case "mapDiffuseOffset":case "mapDiffuseWrap":case "mapDiffuseAnisotropy":break;
+case "mapEmissive":k.emissiveMap=h(n,e.mapEmissiveRepeat,e.mapEmissiveOffset,e.mapEmissiveWrap,e.mapEmissiveAnisotropy);break;case "mapEmissiveRepeat":case "mapEmissiveOffset":case "mapEmissiveWrap":case "mapEmissiveAnisotropy":break;case "mapLight":k.lightMap=h(n,e.mapLightRepeat,e.mapLightOffset,e.mapLightWrap,e.mapLightAnisotropy);break;case "mapLightRepeat":case "mapLightOffset":case "mapLightWrap":case "mapLightAnisotropy":break;case "mapAO":k.aoMap=h(n,e.mapAORepeat,e.mapAOOffset,e.mapAOWrap,
+e.mapAOAnisotropy);break;case "mapAORepeat":case "mapAOOffset":case "mapAOWrap":case "mapAOAnisotropy":break;case "mapBump":k.bumpMap=h(n,e.mapBumpRepeat,e.mapBumpOffset,e.mapBumpWrap,e.mapBumpAnisotropy);break;case "mapBumpScale":k.bumpScale=n;break;case "mapBumpRepeat":case "mapBumpOffset":case "mapBumpWrap":case "mapBumpAnisotropy":break;case "mapNormal":k.normalMap=h(n,e.mapNormalRepeat,e.mapNormalOffset,e.mapNormalWrap,e.mapNormalAnisotropy);break;case "mapNormalFactor":k.normalScale=n;break;
+case "mapNormalRepeat":case "mapNormalOffset":case "mapNormalWrap":case "mapNormalAnisotropy":break;case "mapSpecular":k.specularMap=h(n,e.mapSpecularRepeat,e.mapSpecularOffset,e.mapSpecularWrap,e.mapSpecularAnisotropy);break;case "mapSpecularRepeat":case "mapSpecularOffset":case "mapSpecularWrap":case "mapSpecularAnisotropy":break;case "mapMetalness":k.metalnessMap=h(n,e.mapMetalnessRepeat,e.mapMetalnessOffset,e.mapMetalnessWrap,e.mapMetalnessAnisotropy);break;case "mapMetalnessRepeat":case "mapMetalnessOffset":case "mapMetalnessWrap":case "mapMetalnessAnisotropy":break;
+case "mapRoughness":k.roughnessMap=h(n,e.mapRoughnessRepeat,e.mapRoughnessOffset,e.mapRoughnessWrap,e.mapRoughnessAnisotropy);break;case "mapRoughnessRepeat":case "mapRoughnessOffset":case "mapRoughnessWrap":case "mapRoughnessAnisotropy":break;case "mapAlpha":k.alphaMap=h(n,e.mapAlphaRepeat,e.mapAlphaOffset,e.mapAlphaWrap,e.mapAlphaAnisotropy);break;case "mapAlphaRepeat":case "mapAlphaOffset":case "mapAlphaWrap":case "mapAlphaAnisotropy":break;case "flipSided":k.side=1;break;case "doubleSided":k.side=
+2;break;case "transparency":console.warn("THREE.Loader.createMaterial: transparency has been renamed to opacity");k.opacity=n;break;case "depthTest":case "depthWrite":case "colorWrite":case "opacity":case "reflectivity":case "transparent":case "visible":case "wireframe":k[p]=n;break;case "vertexColors":!0===n&&(k.vertexColors=2);"face"===n&&(k.vertexColors=1);break;default:console.error("THREE.Loader.createMaterial: Unsupported",p,n)}}"MeshBasicMaterial"===k.type&&delete k.emissive;"MeshPhongMaterial"!==
+k.type&&delete k.specular;1>k.opacity&&(k.transparent=!0);d.setTextures(l);return d.parse(k)}}()});var Be={decodeText:function(a){if("undefined"!==typeof TextDecoder)return(new TextDecoder).decode(a);for(var b="",c=0,d=a.length;c<d;c++)b+=String.fromCharCode(a[c]);return decodeURIComponent(escape(b))},extractUrlBase:function(a){a=a.split("/");if(1===a.length)return"./";a.pop();return a.join("/")+"/"}};Object.assign(fe.prototype,{load:function(a,b,c,d){var e=this,f=this.texturePath&&"string"===typeof this.texturePath?
+this.texturePath:Be.extractUrlBase(a),g=new Ka(this.manager);g.setWithCredentials(this.withCredentials);g.load(a,function(c){c=JSON.parse(c);var d=c.metadata;if(void 0!==d&&(d=d.type,void 0!==d&&"object"===d.toLowerCase())){console.error("THREE.JSONLoader: "+a+" should be loaded with THREE.ObjectLoader instead.");return}c=e.parse(c,f);b(c.geometry,c.materials)},c,d)},setTexturePath:function(a){this.texturePath=a},parse:function(){return function(a,b){void 0!==a.data&&(a=a.data);a.scale=void 0!==a.scale?
+1/a.scale:1;var c=new N,d=a,e,f,g,h=d.faces;var l=d.vertices;var k=d.normals,u=d.colors;var n=d.scale;var t=0;if(void 0!==d.uvs){for(e=0;e<d.uvs.length;e++)d.uvs[e].length&&t++;for(e=0;e<t;e++)c.faceVertexUvs[e]=[]}var r=0;for(g=l.length;r<g;)e=new p,e.x=l[r++]*n,e.y=l[r++]*n,e.z=l[r++]*n,c.vertices.push(e);r=0;for(g=h.length;r<g;){l=h[r++];var q=l&1;var v=l&2;e=l&8;var x=l&16;var y=l&32;n=l&64;l&=128;if(q){q=new Wa;q.a=h[r];q.b=h[r+1];q.c=h[r+3];var w=new Wa;w.a=h[r+1];w.b=h[r+2];w.c=h[r+3];r+=4;
+v&&(v=h[r++],q.materialIndex=v,w.materialIndex=v);v=c.faces.length;if(e)for(e=0;e<t;e++){var B=d.uvs[e];c.faceVertexUvs[e][v]=[];c.faceVertexUvs[e][v+1]=[];for(f=0;4>f;f++){var z=h[r++];var A=B[2*z];z=B[2*z+1];A=new C(A,z);2!==f&&c.faceVertexUvs[e][v].push(A);0!==f&&c.faceVertexUvs[e][v+1].push(A)}}x&&(x=3*h[r++],q.normal.set(k[x++],k[x++],k[x]),w.normal.copy(q.normal));if(y)for(e=0;4>e;e++)x=3*h[r++],y=new p(k[x++],k[x++],k[x]),2!==e&&q.vertexNormals.push(y),0!==e&&w.vertexNormals.push(y);n&&(n=
+h[r++],n=u[n],q.color.setHex(n),w.color.setHex(n));if(l)for(e=0;4>e;e++)n=h[r++],n=u[n],2!==e&&q.vertexColors.push(new I(n)),0!==e&&w.vertexColors.push(new I(n));c.faces.push(q);c.faces.push(w)}else{q=new Wa;q.a=h[r++];q.b=h[r++];q.c=h[r++];v&&(v=h[r++],q.materialIndex=v);v=c.faces.length;if(e)for(e=0;e<t;e++)for(B=d.uvs[e],c.faceVertexUvs[e][v]=[],f=0;3>f;f++)z=h[r++],A=B[2*z],z=B[2*z+1],A=new C(A,z),c.faceVertexUvs[e][v].push(A);x&&(x=3*h[r++],q.normal.set(k[x++],k[x++],k[x]));if(y)for(e=0;3>e;e++)x=
+3*h[r++],y=new p(k[x++],k[x++],k[x]),q.vertexNormals.push(y);n&&(n=h[r++],q.color.setHex(u[n]));if(l)for(e=0;3>e;e++)n=h[r++],q.vertexColors.push(new I(u[n]));c.faces.push(q)}}d=a;r=void 0!==d.influencesPerVertex?d.influencesPerVertex:2;if(d.skinWeights)for(g=0,h=d.skinWeights.length;g<h;g+=r)c.skinWeights.push(new ea(d.skinWeights[g],1<r?d.skinWeights[g+1]:0,2<r?d.skinWeights[g+2]:0,3<r?d.skinWeights[g+3]:0));if(d.skinIndices)for(g=0,h=d.skinIndices.length;g<h;g+=r)c.skinIndices.push(new ea(d.skinIndices[g],
+1<r?d.skinIndices[g+1]:0,2<r?d.skinIndices[g+2]:0,3<r?d.skinIndices[g+3]:0));c.bones=d.bones;c.bones&&0<c.bones.length&&(c.skinWeights.length!==c.skinIndices.length||c.skinIndices.length!==c.vertices.length)&&console.warn("When skinning, number of vertices ("+c.vertices.length+"), skinIndices ("+c.skinIndices.length+"), and skinWeights ("+c.skinWeights.length+") should match.");g=a;h=g.scale;if(void 0!==g.morphTargets)for(d=0,r=g.morphTargets.length;d<r;d++)for(c.morphTargets[d]={},c.morphTargets[d].name=
+g.morphTargets[d].name,c.morphTargets[d].vertices=[],k=c.morphTargets[d].vertices,u=g.morphTargets[d].vertices,t=0,l=u.length;t<l;t+=3)n=new p,n.x=u[t]*h,n.y=u[t+1]*h,n.z=u[t+2]*h,k.push(n);if(void 0!==g.morphColors&&0<g.morphColors.length)for(console.warn('THREE.JSONLoader: "morphColors" no longer supported. Using them as face colors.'),h=c.faces,g=g.morphColors[0].colors,d=0,r=h.length;d<r;d++)h[d].color.fromArray(g,3*d);g=a;d=[];r=[];void 0!==g.animation&&r.push(g.animation);void 0!==g.animations&&
+(g.animations.length?r=r.concat(g.animations):r.push(g.animations));for(g=0;g<r.length;g++)(h=Ba.parseAnimation(r[g],c.bones))&&d.push(h);c.morphTargets&&(r=Ba.CreateClipsFromMorphTargetSequences(c.morphTargets,10),d=d.concat(r));0<d.length&&(c.animations=d);c.computeFaceNormals();c.computeBoundingSphere();if(void 0===a.materials||0===a.materials.length)return{geometry:c};a=ic.prototype.initMaterials(a.materials,b,this.crossOrigin);return{geometry:c,materials:a}}}()});Object.assign(ff.prototype,{load:function(a,
+b,c,d){""===this.texturePath&&(this.texturePath=a.substring(0,a.lastIndexOf("/")+1));var e=this;(new Ka(e.manager)).load(a,function(c){var f=null;try{f=JSON.parse(c)}catch(h){void 0!==d&&d(h);console.error("THREE:ObjectLoader: Can't parse "+a+".",h.message);return}c=f.metadata;void 0===c||void 0===c.type||"geometry"===c.type.toLowerCase()?console.error("THREE.ObjectLoader: Can't load "+a+". Use THREE.JSONLoader instead."):e.parse(f,b)},c,d)},setTexturePath:function(a){this.texturePath=a},setCrossOrigin:function(a){this.crossOrigin=
+a},parse:function(a,b){var c=this.parseShape(a.shapes);c=this.parseGeometries(a.geometries,c);var d=this.parseImages(a.images,function(){void 0!==b&&b(e)});d=this.parseTextures(a.textures,d);d=this.parseMaterials(a.materials,d);var e=this.parseObject(a.object,c,d);a.animations&&(e.animations=this.parseAnimations(a.animations));void 0!==a.images&&0!==a.images.length||void 0===b||b(e);return e},parseShape:function(a){var b={};if(void 0!==a)for(var c=0,d=a.length;c<d;c++){var e=(new gb).fromJSON(a[c]);
+b[e.uuid]=e}return b},parseGeometries:function(a,b){var c={};if(void 0!==a)for(var d=new fe,e=new ee,f=0,g=a.length;f<g;f++){var h=a[f];switch(h.type){case "PlaneGeometry":case "PlaneBufferGeometry":var l=new Ca[h.type](h.width,h.height,h.widthSegments,h.heightSegments);break;case "BoxGeometry":case "BoxBufferGeometry":case "CubeGeometry":l=new Ca[h.type](h.width,h.height,h.depth,h.widthSegments,h.heightSegments,h.depthSegments);break;case "CircleGeometry":case "CircleBufferGeometry":l=new Ca[h.type](h.radius,
+h.segments,h.thetaStart,h.thetaLength);break;case "CylinderGeometry":case "CylinderBufferGeometry":l=new Ca[h.type](h.radiusTop,h.radiusBottom,h.height,h.radialSegments,h.heightSegments,h.openEnded,h.thetaStart,h.thetaLength);break;case "ConeGeometry":case "ConeBufferGeometry":l=new Ca[h.type](h.radius,h.height,h.radialSegments,h.heightSegments,h.openEnded,h.thetaStart,h.thetaLength);break;case "SphereGeometry":case "SphereBufferGeometry":l=new Ca[h.type](h.radius,h.widthSegments,h.heightSegments,
+h.phiStart,h.phiLength,h.thetaStart,h.thetaLength);break;case "DodecahedronGeometry":case "DodecahedronBufferGeometry":case "IcosahedronGeometry":case "IcosahedronBufferGeometry":case "OctahedronGeometry":case "OctahedronBufferGeometry":case "TetrahedronGeometry":case "TetrahedronBufferGeometry":l=new Ca[h.type](h.radius,h.detail);break;case "RingGeometry":case "RingBufferGeometry":l=new Ca[h.type](h.innerRadius,h.outerRadius,h.thetaSegments,h.phiSegments,h.thetaStart,h.thetaLength);break;case "TorusGeometry":case "TorusBufferGeometry":l=
+new Ca[h.type](h.radius,h.tube,h.radialSegments,h.tubularSegments,h.arc);break;case "TorusKnotGeometry":case "TorusKnotBufferGeometry":l=new Ca[h.type](h.radius,h.tube,h.tubularSegments,h.radialSegments,h.p,h.q);break;case "LatheGeometry":case "LatheBufferGeometry":l=new Ca[h.type](h.points,h.segments,h.phiStart,h.phiLength);break;case "PolyhedronGeometry":case "PolyhedronBufferGeometry":l=new Ca[h.type](h.vertices,h.indices,h.radius,h.details);break;case "ShapeGeometry":case "ShapeBufferGeometry":l=
+[];f=0;for(g=h.shapes.length;f<g;f++)l.push(b[h.shapes[f]]);l=new Ca[h.type](l,h.curveSegments);break;case "BufferGeometry":l=e.parse(h);break;case "Geometry":l=d.parse(h,this.texturePath).geometry;break;default:console.warn('THREE.ObjectLoader: Unsupported geometry type "'+h.type+'"');continue}l.uuid=h.uuid;void 0!==h.name&&(l.name=h.name);c[h.uuid]=l}return c},parseMaterials:function(a,b){var c={};if(void 0!==a){var d=new Md;d.setTextures(b);b=0;for(var e=a.length;b<e;b++){var f=a[b];if("MultiMaterial"===
+f.type){for(var g=[],h=0;h<f.materials.length;h++)g.push(d.parse(f.materials[h]));c[f.uuid]=g}else c[f.uuid]=d.parse(f)}}return c},parseAnimations:function(a){for(var b=[],c=0;c<a.length;c++){var d=Ba.parse(a[c]);b.push(d)}return b},parseImages:function(a,b){function c(a){d.manager.itemStart(a);return f.load(a,function(){d.manager.itemEnd(a)},void 0,function(){d.manager.itemEnd(a);d.manager.itemError(a)})}var d=this,e={};if(void 0!==a&&0<a.length){b=new ae(b);var f=new Yc(b);f.setCrossOrigin(this.crossOrigin);
+b=0;for(var g=a.length;b<g;b++){var h=a[b],l=/^(\/\/)|([a-z]+:(\/\/)?)/i.test(h.url)?h.url:d.texturePath+h.url;e[h.uuid]=c(l)}}return e},parseTextures:function(a,b){function c(a,b){if("number"===typeof a)return a;console.warn("THREE.ObjectLoader.parseTexture: Constant should be in numeric form.",a);return b[a]}var d={};if(void 0!==a)for(var e=0,f=a.length;e<f;e++){var g=a[e];void 0===g.image&&console.warn('THREE.ObjectLoader: No "image" specified for',g.uuid);void 0===b[g.image]&&console.warn("THREE.ObjectLoader: Undefined image",
+g.image);var h=new Y(b[g.image]);h.needsUpdate=!0;h.uuid=g.uuid;void 0!==g.name&&(h.name=g.name);void 0!==g.mapping&&(h.mapping=c(g.mapping,Og));void 0!==g.offset&&h.offset.fromArray(g.offset);void 0!==g.repeat&&h.repeat.fromArray(g.repeat);void 0!==g.center&&h.center.fromArray(g.center);void 0!==g.rotation&&(h.rotation=g.rotation);void 0!==g.wrap&&(h.wrapS=c(g.wrap[0],vf),h.wrapT=c(g.wrap[1],vf));void 0!==g.format&&(h.format=g.format);void 0!==g.minFilter&&(h.minFilter=c(g.minFilter,wf));void 0!==
+g.magFilter&&(h.magFilter=c(g.magFilter,wf));void 0!==g.anisotropy&&(h.anisotropy=g.anisotropy);void 0!==g.flipY&&(h.flipY=g.flipY);d[g.uuid]=h}return d},parseObject:function(a,b,c){function d(a){void 0===b[a]&&console.warn("THREE.ObjectLoader: Undefined geometry",a);return b[a]}function e(a){if(void 0!==a){if(Array.isArray(a)){for(var b=[],d=0,e=a.length;d<e;d++){var f=a[d];void 0===c[f]&&console.warn("THREE.ObjectLoader: Undefined material",f);b.push(c[f])}return b}void 0===c[a]&&console.warn("THREE.ObjectLoader: Undefined material",
+a);return c[a]}}switch(a.type){case "Scene":var f=new rd;void 0!==a.background&&Number.isInteger(a.background)&&(f.background=new I(a.background));void 0!==a.fog&&("Fog"===a.fog.type?f.fog=new Pb(a.fog.color,a.fog.near,a.fog.far):"FogExp2"===a.fog.type&&(f.fog=new Ob(a.fog.color,a.fog.density)));break;case "PerspectiveCamera":f=new la(a.fov,a.aspect,a.near,a.far);void 0!==a.focus&&(f.focus=a.focus);void 0!==a.zoom&&(f.zoom=a.zoom);void 0!==a.filmGauge&&(f.filmGauge=a.filmGauge);void 0!==a.filmOffset&&
+(f.filmOffset=a.filmOffset);void 0!==a.view&&(f.view=Object.assign({},a.view));break;case "OrthographicCamera":f=new Jb(a.left,a.right,a.top,a.bottom,a.near,a.far);void 0!==a.zoom&&(f.zoom=a.zoom);void 0!==a.view&&(f.view=Object.assign({},a.view));break;case "AmbientLight":f=new Ed(a.color,a.intensity);break;case "DirectionalLight":f=new Dd(a.color,a.intensity);break;case "PointLight":f=new Bd(a.color,a.intensity,a.distance,a.decay);break;case "RectAreaLight":f=new Fd(a.color,a.intensity,a.width,
+a.height);break;case "SpotLight":f=new Ad(a.color,a.intensity,a.distance,a.angle,a.penumbra,a.decay);break;case "HemisphereLight":f=new yd(a.color,a.groundColor,a.intensity);break;case "SkinnedMesh":console.warn("THREE.ObjectLoader.parseObject() does not support SkinnedMesh yet.");case "Mesh":f=d(a.geometry);var g=e(a.material);f=f.bones&&0<f.bones.length?new td(f,g):new oa(f,g);break;case "LOD":f=new Bc;break;case "Line":f=new ua(d(a.geometry),e(a.material),a.mode);break;case "LineLoop":f=new ud(d(a.geometry),
+e(a.material));break;case "LineSegments":f=new aa(d(a.geometry),e(a.material));break;case "PointCloud":case "Points":f=new Qb(d(a.geometry),e(a.material));break;case "Sprite":f=new Ac(e(a.material));break;case "Group":f=new vd;break;default:f=new A}f.uuid=a.uuid;void 0!==a.name&&(f.name=a.name);void 0!==a.matrix?(f.matrix.fromArray(a.matrix),f.matrix.decompose(f.position,f.quaternion,f.scale)):(void 0!==a.position&&f.position.fromArray(a.position),void 0!==a.rotation&&f.rotation.fromArray(a.rotation),
+void 0!==a.quaternion&&f.quaternion.fromArray(a.quaternion),void 0!==a.scale&&f.scale.fromArray(a.scale));void 0!==a.castShadow&&(f.castShadow=a.castShadow);void 0!==a.receiveShadow&&(f.receiveShadow=a.receiveShadow);a.shadow&&(void 0!==a.shadow.bias&&(f.shadow.bias=a.shadow.bias),void 0!==a.shadow.radius&&(f.shadow.radius=a.shadow.radius),void 0!==a.shadow.mapSize&&f.shadow.mapSize.fromArray(a.shadow.mapSize),void 0!==a.shadow.camera&&(f.shadow.camera=this.parseObject(a.shadow.camera)));void 0!==
+a.visible&&(f.visible=a.visible);void 0!==a.frustumCulled&&(f.frustumCulled=a.frustumCulled);void 0!==a.renderOrder&&(f.renderOrder=a.renderOrder);void 0!==a.userData&&(f.userData=a.userData);if(void 0!==a.children){g=a.children;for(var h=0;h<g.length;h++)f.add(this.parseObject(g[h],b,c))}if("LOD"===a.type)for(a=a.levels,g=0;g<a.length;g++){h=a[g];var l=f.getObjectByProperty("uuid",h.object);void 0!==l&&f.addLevel(l,h.distance)}return f}});var Og={UVMapping:300,CubeReflectionMapping:301,CubeRefractionMapping:302,
+EquirectangularReflectionMapping:303,EquirectangularRefractionMapping:304,SphericalReflectionMapping:305,CubeUVReflectionMapping:306,CubeUVRefractionMapping:307},vf={RepeatWrapping:1E3,ClampToEdgeWrapping:1001,MirroredRepeatWrapping:1002},wf={NearestFilter:1003,NearestMipMapNearestFilter:1004,NearestMipMapLinearFilter:1005,LinearFilter:1006,LinearMipMapNearestFilter:1007,LinearMipMapLinearFilter:1008};ge.prototype={constructor:ge,setOptions:function(a){this.options=a;return this},load:function(a,
+b,c,d){void 0===a&&(a="");void 0!==this.path&&(a=this.path+a);var e=this,f=Hb.get(a);if(void 0!==f)return e.manager.itemStart(a),setTimeout(function(){b&&b(f);e.manager.itemEnd(a)},0),f;fetch(a).then(function(a){return a.blob()}).then(function(a){return createImageBitmap(a,e.options)}).then(function(c){Hb.add(a,c);b&&b(c);e.manager.itemEnd(a)}).catch(function(b){d&&d(b);e.manager.itemEnd(a);e.manager.itemError(a)})},setCrossOrigin:function(){return this},setPath:function(a){this.path=a;return this}};
+Object.assign(he.prototype,{moveTo:function(a,b){this.currentPath=new Pa;this.subPaths.push(this.currentPath);this.currentPath.moveTo(a,b)},lineTo:function(a,b){this.currentPath.lineTo(a,b)},quadraticCurveTo:function(a,b,c,d){this.currentPath.quadraticCurveTo(a,b,c,d)},bezierCurveTo:function(a,b,c,d,e,f){this.currentPath.bezierCurveTo(a,b,c,d,e,f)},splineThru:function(a){this.currentPath.splineThru(a)},toShapes:function(a,b){function c(a){for(var b=[],c=0,d=a.length;c<d;c++){var e=a[c],f=new gb;f.curves=
+e.curves;b.push(f)}return b}function d(a,b){for(var c=b.length,d=!1,e=c-1,f=0;f<c;e=f++){var g=b[e],h=b[f],l=h.x-g.x,k=h.y-g.y;if(Math.abs(k)>Number.EPSILON){if(0>k&&(g=b[f],l=-l,h=b[e],k=-k),!(a.y<g.y||a.y>h.y))if(a.y===g.y){if(a.x===g.x)return!0}else{e=k*(a.x-g.x)-l*(a.y-g.y);if(0===e)return!0;0>e||(d=!d)}}else if(a.y===g.y&&(h.x<=a.x&&a.x<=g.x||g.x<=a.x&&a.x<=h.x))return!0}return d}var e=Xa.isClockWise,f=this.subPaths;if(0===f.length)return[];if(!0===b)return c(f);b=[];if(1===f.length){var g=f[0];
+var h=new gb;h.curves=g.curves;b.push(h);return b}var l=!e(f[0].getPoints());l=a?!l:l;h=[];var k=[],p=[],n=0;k[n]=void 0;p[n]=[];for(var t=0,r=f.length;t<r;t++){g=f[t];var q=g.getPoints();var v=e(q);(v=a?!v:v)?(!l&&k[n]&&n++,k[n]={s:new gb,p:q},k[n].s.curves=g.curves,l&&n++,p[n]=[]):p[n].push({h:g,p:q[0]})}if(!k[0])return c(f);if(1<k.length){t=!1;a=[];e=0;for(f=k.length;e<f;e++)h[e]=[];e=0;for(f=k.length;e<f;e++)for(g=p[e],v=0;v<g.length;v++){l=g[v];n=!0;for(q=0;q<k.length;q++)d(l.p,k[q].p)&&(e!==
+q&&a.push({froms:e,tos:q,hole:v}),n?(n=!1,h[q].push(l)):t=!0);n&&h[e].push(l)}0<a.length&&(t||(p=h))}t=0;for(e=k.length;t<e;t++)for(h=k[t].s,b.push(h),a=p[t],f=0,g=a.length;f<g;f++)h.holes.push(a[f].h);return b}});Object.assign(ie.prototype,{isFont:!0,generateShapes:function(a,b,c){void 0===b&&(b=100);c=[];var d=b;b=this.data;var e=String(a).split("");d/=b.resolution;var f=(b.boundingBox.yMax-b.boundingBox.yMin+b.underlineThickness)*d;a=[];for(var g=0,h=0,l=0;l<e.length;l++){var k=e[l];if("\n"===
+k)g=0,h-=f;else{var p=d;var n=g,t=h;if(k=b.glyphs[k]||b.glyphs["?"]){var r=new he;if(k.o)for(var q=k._cachedOutline||(k._cachedOutline=k.o.split(" ")),v=0,x=q.length;v<x;)switch(q[v++]){case "m":var y=q[v++]*p+n;var w=q[v++]*p+t;r.moveTo(y,w);break;case "l":y=q[v++]*p+n;w=q[v++]*p+t;r.lineTo(y,w);break;case "q":var z=q[v++]*p+n;var A=q[v++]*p+t;var C=q[v++]*p+n;var E=q[v++]*p+t;r.quadraticCurveTo(C,E,z,A);break;case "b":z=q[v++]*p+n,A=q[v++]*p+t,C=q[v++]*p+n,E=q[v++]*p+t,y=q[v++]*p+n,w=q[v++]*p+t,
+r.bezierCurveTo(C,E,y,w,z,A)}p={offsetX:k.ha*p,path:r}}else p=void 0;g+=p.offsetX;a.push(p.path)}}b=0;for(e=a.length;b<e;b++)Array.prototype.push.apply(c,a[b].toShapes());return c}});Object.assign(gf.prototype,{load:function(a,b,c,d){var e=this,f=new Ka(this.manager);f.setPath(this.path);f.load(a,function(a){try{var c=JSON.parse(a)}catch(l){console.warn("THREE.FontLoader: typeface.js support is being deprecated. Use typeface.json instead."),c=JSON.parse(a.substring(65,a.length-2))}a=e.parse(c);b&&
+b(a)},c,d)},parse:function(a){return new ie(a)},setPath:function(a){this.path=a;return this}});var Rd,le={getContext:function(){void 0===Rd&&(Rd=new (window.AudioContext||window.webkitAudioContext));return Rd},setContext:function(a){Rd=a}};Object.assign(je.prototype,{load:function(a,b,c,d){var e=new Ka(this.manager);e.setResponseType("arraybuffer");e.load(a,function(a){le.getContext().decodeAudioData(a,function(a){b(a)})},c,d)}});Object.assign(hf.prototype,{update:function(){var a,b,c,d,e,f,g,h,l=
+new M,k=new M;return function(m){if(a!==this||b!==m.focus||c!==m.fov||d!==m.aspect*this.aspect||e!==m.near||f!==m.far||g!==m.zoom||h!==this.eyeSep){a=this;b=m.focus;c=m.fov;d=m.aspect*this.aspect;e=m.near;f=m.far;g=m.zoom;var n=m.projectionMatrix.clone();h=this.eyeSep/2;var p=h*e/b,r=e*Math.tan(S.DEG2RAD*c*.5)/g;k.elements[12]=-h;l.elements[12]=h;var q=-r*d+p;var u=r*d+p;n.elements[0]=2*e/(u-q);n.elements[8]=(u+q)/(u-q);this.cameraL.projectionMatrix.copy(n);q=-r*d-p;u=r*d-p;n.elements[0]=2*e/(u-q);
+n.elements[8]=(u+q)/(u-q);this.cameraR.projectionMatrix.copy(n)}this.cameraL.matrixWorld.copy(m.matrixWorld).multiply(k);this.cameraR.matrixWorld.copy(m.matrixWorld).multiply(l)}}()});cd.prototype=Object.create(A.prototype);cd.prototype.constructor=cd;ke.prototype=Object.assign(Object.create(A.prototype),{constructor:ke,getInput:function(){return this.gain},removeFilter:function(){null!==this.filter&&(this.gain.disconnect(this.filter),this.filter.disconnect(this.context.destination),this.gain.connect(this.context.destination),
+this.filter=null)},getFilter:function(){return this.filter},setFilter:function(a){null!==this.filter?(this.gain.disconnect(this.filter),this.filter.disconnect(this.context.destination)):this.gain.disconnect(this.context.destination);this.filter=a;this.gain.connect(this.filter);this.filter.connect(this.context.destination)},getMasterVolume:function(){return this.gain.gain.value},setMasterVolume:function(a){this.gain.gain.value=a},updateMatrixWorld:function(){var a=new p,b=new ja,c=new p,d=new p;return function(e){A.prototype.updateMatrixWorld.call(this,
+e);e=this.context.listener;var f=this.up;this.matrixWorld.decompose(a,b,c);d.set(0,0,-1).applyQuaternion(b);e.positionX?(e.positionX.setValueAtTime(a.x,this.context.currentTime),e.positionY.setValueAtTime(a.y,this.context.currentTime),e.positionZ.setValueAtTime(a.z,this.context.currentTime),e.forwardX.setValueAtTime(d.x,this.context.currentTime),e.forwardY.setValueAtTime(d.y,this.context.currentTime),e.forwardZ.setValueAtTime(d.z,this.context.currentTime),e.upX.setValueAtTime(f.x,this.context.currentTime),
+e.upY.setValueAtTime(f.y,this.context.currentTime),e.upZ.setValueAtTime(f.z,this.context.currentTime)):(e.setPosition(a.x,a.y,a.z),e.setOrientation(d.x,d.y,d.z,f.x,f.y,f.z))}}()});jc.prototype=Object.assign(Object.create(A.prototype),{constructor:jc,getOutput:function(){return this.gain},setNodeSource:function(a){this.hasPlaybackControl=!1;this.sourceType="audioNode";this.source=a;this.connect();return this},setBuffer:function(a){this.buffer=a;this.sourceType="buffer";this.autoplay&&this.play();return this},
+play:function(){if(!0===this.isPlaying)console.warn("THREE.Audio: Audio is already playing.");else if(!1===this.hasPlaybackControl)console.warn("THREE.Audio: this Audio has no playback control.");else{var a=this.context.createBufferSource();a.buffer=this.buffer;a.loop=this.loop;a.onended=this.onEnded.bind(this);a.playbackRate.setValueAtTime(this.playbackRate,this.startTime);this.startTime=this.context.currentTime;a.start(this.startTime,this.offset);this.isPlaying=!0;this.source=a;return this.connect()}},
+pause:function(){if(!1===this.hasPlaybackControl)console.warn("THREE.Audio: this Audio has no playback control.");else return!0===this.isPlaying&&(this.source.stop(),this.offset+=(this.context.currentTime-this.startTime)*this.playbackRate,this.isPlaying=!1),this},stop:function(){if(!1===this.hasPlaybackControl)console.warn("THREE.Audio: this Audio has no playback control.");else return this.source.stop(),this.offset=0,this.isPlaying=!1,this},connect:function(){if(0<this.filters.length){this.source.connect(this.filters[0]);
+for(var a=1,b=this.filters.length;a<b;a++)this.filters[a-1].connect(this.filters[a]);this.filters[this.filters.length-1].connect(this.getOutput())}else this.source.connect(this.getOutput());return this},disconnect:function(){if(0<this.filters.length){this.source.disconnect(this.filters[0]);for(var a=1,b=this.filters.length;a<b;a++)this.filters[a-1].disconnect(this.filters[a]);this.filters[this.filters.length-1].disconnect(this.getOutput())}else this.source.disconnect(this.getOutput());return this},
+getFilters:function(){return this.filters},setFilters:function(a){a||(a=[]);!0===this.isPlaying?(this.disconnect(),this.filters=a,this.connect()):this.filters=a;return this},getFilter:function(){return this.getFilters()[0]},setFilter:function(a){return this.setFilters(a?[a]:[])},setPlaybackRate:function(a){if(!1===this.hasPlaybackControl)console.warn("THREE.Audio: this Audio has no playback control.");else return this.playbackRate=a,!0===this.isPlaying&&this.source.playbackRate.setValueAtTime(this.playbackRate,
+this.context.currentTime),this},getPlaybackRate:function(){return this.playbackRate},onEnded:function(){this.isPlaying=!1},getLoop:function(){return!1===this.hasPlaybackControl?(console.warn("THREE.Audio: this Audio has no playback control."),!1):this.loop},setLoop:function(a){if(!1===this.hasPlaybackControl)console.warn("THREE.Audio: this Audio has no playback control.");else return this.loop=a,!0===this.isPlaying&&(this.source.loop=this.loop),this},getVolume:function(){return this.gain.gain.value},
+setVolume:function(a){this.gain.gain.value=a;return this}});me.prototype=Object.assign(Object.create(jc.prototype),{constructor:me,getOutput:function(){return this.panner},getRefDistance:function(){return this.panner.refDistance},setRefDistance:function(a){this.panner.refDistance=a},getRolloffFactor:function(){return this.panner.rolloffFactor},setRolloffFactor:function(a){this.panner.rolloffFactor=a},getDistanceModel:function(){return this.panner.distanceModel},setDistanceModel:function(a){this.panner.distanceModel=
+a},getMaxDistance:function(){return this.panner.maxDistance},setMaxDistance:function(a){this.panner.maxDistance=a},updateMatrixWorld:function(){var a=new p;return function(b){A.prototype.updateMatrixWorld.call(this,b);a.setFromMatrixPosition(this.matrixWorld);this.panner.setPosition(a.x,a.y,a.z)}}()});Object.assign(ne.prototype,{getFrequencyData:function(){this.analyser.getByteFrequencyData(this.data);return this.data},getAverageFrequency:function(){for(var a=0,b=this.getFrequencyData(),c=0;c<b.length;c++)a+=
+b[c];return a/b.length}});Object.assign(oe.prototype,{accumulate:function(a,b){var c=this.buffer,d=this.valueSize;a=a*d+d;var e=this.cumulativeWeight;if(0===e){for(e=0;e!==d;++e)c[a+e]=c[e];e=b}else e+=b,this._mixBufferRegion(c,a,0,b/e,d);this.cumulativeWeight=e},apply:function(a){var b=this.valueSize,c=this.buffer;a=a*b+b;var d=this.cumulativeWeight,e=this.binding;this.cumulativeWeight=0;1>d&&this._mixBufferRegion(c,a,3*b,1-d,b);d=b;for(var f=b+b;d!==f;++d)if(c[d]!==c[d+b]){e.setValue(c,a);break}},
+saveOriginalState:function(){var a=this.buffer,b=this.valueSize,c=3*b;this.binding.getValue(a,c);for(var d=b;d!==c;++d)a[d]=a[c+d%b];this.cumulativeWeight=0},restoreOriginalState:function(){this.binding.setValue(this.buffer,3*this.valueSize)},_select:function(a,b,c,d,e){if(.5<=d)for(d=0;d!==e;++d)a[b+d]=a[c+d]},_slerp:function(a,b,c,d){ja.slerpFlat(a,b,a,b,a,c,d)},_lerp:function(a,b,c,d,e){for(var f=1-d,g=0;g!==e;++g){var h=b+g;a[h]=a[h]*f+a[c+g]*d}}});Object.assign(jf.prototype,{getValue:function(a,
+b){this.bind();var c=this._bindings[this._targetGroup.nCachedObjects_];void 0!==c&&c.getValue(a,b)},setValue:function(a,b){for(var c=this._bindings,d=this._targetGroup.nCachedObjects_,e=c.length;d!==e;++d)c[d].setValue(a,b)},bind:function(){for(var a=this._bindings,b=this._targetGroup.nCachedObjects_,c=a.length;b!==c;++b)a[b].bind()},unbind:function(){for(var a=this._bindings,b=this._targetGroup.nCachedObjects_,c=a.length;b!==c;++b)a[b].unbind()}});Object.assign(qa,{Composite:jf,create:function(a,
+b,c){return a&&a.isAnimationObjectGroup?new qa.Composite(a,b,c):new qa(a,b,c)},sanitizeNodeName:function(){var a=/[\[\]\.:\/]/g;return function(b){return b.replace(/\s/g,"_").replace(a,"")}}(),parseTrackName:function(){var a="[^"+"\\[\\]\\.:\\/".replace("\\.","")+"]",b=/((?:WC+[\/:])*)/.source.replace("WC","[^\\[\\]\\.:\\/]");a=/(WCOD+)?/.source.replace("WCOD",a);var c=/(?:\.(WC+)(?:\[(.+)\])?)?/.source.replace("WC","[^\\[\\]\\.:\\/]"),d=/\.(WC+)(?:\[(.+)\])?/.source.replace("WC","[^\\[\\]\\.:\\/]"),
+e=new RegExp("^"+b+a+c+d+"$"),f=["material","materials","bones"];return function(a){var b=e.exec(a);if(!b)throw Error("PropertyBinding: Cannot parse trackName: "+a);b={nodeName:b[2],objectName:b[3],objectIndex:b[4],propertyName:b[5],propertyIndex:b[6]};var c=b.nodeName&&b.nodeName.lastIndexOf(".");if(void 0!==c&&-1!==c){var d=b.nodeName.substring(c+1);-1!==f.indexOf(d)&&(b.nodeName=b.nodeName.substring(0,c),b.objectName=d)}if(null===b.propertyName||0===b.propertyName.length)throw Error("PropertyBinding: can not parse propertyName from trackName: "+
+a);return b}}(),findNode:function(a,b){if(!b||""===b||"root"===b||"."===b||-1===b||b===a.name||b===a.uuid)return a;if(a.skeleton){var c=a.skeleton.getBoneByName(b);if(void 0!==c)return c}if(a.children){var d=function(a){for(var c=0;c<a.length;c++){var e=a[c];if(e.name===b||e.uuid===b||(e=d(e.children)))return e}return null};if(a=d(a.children))return a}return null}});Object.assign(qa.prototype,{_getValue_unavailable:function(){},_setValue_unavailable:function(){},BindingType:{Direct:0,EntireArray:1,
+ArrayElement:2,HasFromToArray:3},Versioning:{None:0,NeedsUpdate:1,MatrixWorldNeedsUpdate:2},GetterByBindingType:[function(a,b){a[b]=this.node[this.propertyName]},function(a,b){for(var c=this.resolvedProperty,d=0,e=c.length;d!==e;++d)a[b++]=c[d]},function(a,b){a[b]=this.resolvedProperty[this.propertyIndex]},function(a,b){this.resolvedProperty.toArray(a,b)}],SetterByBindingTypeAndVersioning:[[function(a,b){this.targetObject[this.propertyName]=a[b]},function(a,b){this.targetObject[this.propertyName]=
+a[b];this.targetObject.needsUpdate=!0},function(a,b){this.targetObject[this.propertyName]=a[b];this.targetObject.matrixWorldNeedsUpdate=!0}],[function(a,b){for(var c=this.resolvedProperty,d=0,e=c.length;d!==e;++d)c[d]=a[b++]},function(a,b){for(var c=this.resolvedProperty,d=0,e=c.length;d!==e;++d)c[d]=a[b++];this.targetObject.needsUpdate=!0},function(a,b){for(var c=this.resolvedProperty,d=0,e=c.length;d!==e;++d)c[d]=a[b++];this.targetObject.matrixWorldNeedsUpdate=!0}],[function(a,b){this.resolvedProperty[this.propertyIndex]=
+a[b]},function(a,b){this.resolvedProperty[this.propertyIndex]=a[b];this.targetObject.needsUpdate=!0},function(a,b){this.resolvedProperty[this.propertyIndex]=a[b];this.targetObject.matrixWorldNeedsUpdate=!0}],[function(a,b){this.resolvedProperty.fromArray(a,b)},function(a,b){this.resolvedProperty.fromArray(a,b);this.targetObject.needsUpdate=!0},function(a,b){this.resolvedProperty.fromArray(a,b);this.targetObject.matrixWorldNeedsUpdate=!0}]],getValue:function(a,b){this.bind();this.getValue(a,b)},setValue:function(a,
+b){this.bind();this.setValue(a,b)},bind:function(){var a=this.node,b=this.parsedPath,c=b.objectName,d=b.propertyName,e=b.propertyIndex;a||(this.node=a=qa.findNode(this.rootNode,b.nodeName)||this.rootNode);this.getValue=this._getValue_unavailable;this.setValue=this._setValue_unavailable;if(a){if(c){var f=b.objectIndex;switch(c){case "materials":if(!a.material){console.error("THREE.PropertyBinding: Can not bind to material as node does not have a material.",this);return}if(!a.material.materials){console.error("THREE.PropertyBinding: Can not bind to material.materials as node.material does not have a materials array.",
+this);return}a=a.material.materials;break;case "bones":if(!a.skeleton){console.error("THREE.PropertyBinding: Can not bind to bones as node does not have a skeleton.",this);return}a=a.skeleton.bones;for(c=0;c<a.length;c++)if(a[c].name===f){f=c;break}break;default:if(void 0===a[c]){console.error("THREE.PropertyBinding: Can not bind to objectName of node undefined.",this);return}a=a[c]}if(void 0!==f){if(void 0===a[f]){console.error("THREE.PropertyBinding: Trying to bind to objectIndex of objectName, but is undefined.",
+this,a);return}a=a[f]}}f=a[d];if(void 0===f)console.error("THREE.PropertyBinding: Trying to update property for track: "+b.nodeName+"."+d+" but it wasn't found.",a);else{b=this.Versioning.None;void 0!==a.needsUpdate?(b=this.Versioning.NeedsUpdate,this.targetObject=a):void 0!==a.matrixWorldNeedsUpdate&&(b=this.Versioning.MatrixWorldNeedsUpdate,this.targetObject=a);c=this.BindingType.Direct;if(void 0!==e){if("morphTargetInfluences"===d){if(!a.geometry){console.error("THREE.PropertyBinding: Can not bind to morphTargetInfluences because node does not have a geometry.",
+this);return}if(a.geometry.isBufferGeometry){if(!a.geometry.morphAttributes){console.error("THREE.PropertyBinding: Can not bind to morphTargetInfluences because node does not have a geometry.morphAttributes.",this);return}for(c=0;c<this.node.geometry.morphAttributes.position.length;c++)if(a.geometry.morphAttributes.position[c].name===e){e=c;break}}else{if(!a.geometry.morphTargets){console.error("THREE.PropertyBinding: Can not bind to morphTargetInfluences because node does not have a geometry.morphTargets.",
+this);return}for(c=0;c<this.node.geometry.morphTargets.length;c++)if(a.geometry.morphTargets[c].name===e){e=c;break}}}c=this.BindingType.ArrayElement;this.resolvedProperty=f;this.propertyIndex=e}else void 0!==f.fromArray&&void 0!==f.toArray?(c=this.BindingType.HasFromToArray,this.resolvedProperty=f):Array.isArray(f)?(c=this.BindingType.EntireArray,this.resolvedProperty=f):this.propertyName=d;this.getValue=this.GetterByBindingType[c];this.setValue=this.SetterByBindingTypeAndVersioning[c][b]}}else console.error("THREE.PropertyBinding: Trying to update node for track: "+
+this.path+" but it wasn't found.")},unbind:function(){this.node=null;this.getValue=this._getValue_unbound;this.setValue=this._setValue_unbound}});Object.assign(qa.prototype,{_getValue_unbound:qa.prototype.getValue,_setValue_unbound:qa.prototype.setValue});Object.assign(kf.prototype,{isAnimationObjectGroup:!0,add:function(){for(var a=this._objects,b=a.length,c=this.nCachedObjects_,d=this._indicesByUUID,e=this._paths,f=this._parsedPaths,g=this._bindings,h=g.length,k=void 0,m=0,p=arguments.length;m!==
+p;++m){var n=arguments[m],t=n.uuid,r=d[t];if(void 0===r){r=b++;d[t]=r;a.push(n);t=0;for(var q=h;t!==q;++t)g[t].push(new qa(n,e[t],f[t]))}else if(r<c){k=a[r];var v=--c;q=a[v];d[q.uuid]=r;a[r]=q;d[t]=v;a[v]=n;t=0;for(q=h;t!==q;++t){var x=g[t],y=x[r];x[r]=x[v];void 0===y&&(y=new qa(n,e[t],f[t]));x[v]=y}}else a[r]!==k&&console.error("THREE.AnimationObjectGroup: Different objects with the same UUID detected. Clean the caches or recreate your infrastructure when reloading scenes.")}this.nCachedObjects_=
+c},remove:function(){for(var a=this._objects,b=this.nCachedObjects_,c=this._indicesByUUID,d=this._bindings,e=d.length,f=0,g=arguments.length;f!==g;++f){var h=arguments[f],k=h.uuid,m=c[k];if(void 0!==m&&m>=b){var p=b++,n=a[p];c[n.uuid]=m;a[m]=n;c[k]=p;a[p]=h;h=0;for(k=e;h!==k;++h){n=d[h];var t=n[m];n[m]=n[p];n[p]=t}}}this.nCachedObjects_=b},uncache:function(){for(var a=this._objects,b=a.length,c=this.nCachedObjects_,d=this._indicesByUUID,e=this._bindings,f=e.length,g=0,h=arguments.length;g!==h;++g){var k=
+arguments[g].uuid,m=d[k];if(void 0!==m)if(delete d[k],m<c){k=--c;var p=a[k],n=--b,t=a[n];d[p.uuid]=m;a[m]=p;d[t.uuid]=k;a[k]=t;a.pop();p=0;for(t=f;p!==t;++p){var r=e[p],q=r[n];r[m]=r[k];r[k]=q;r.pop()}}else for(n=--b,t=a[n],d[t.uuid]=m,a[m]=t,a.pop(),p=0,t=f;p!==t;++p)r=e[p],r[m]=r[n],r.pop()}this.nCachedObjects_=c},subscribe_:function(a,b){var c=this._bindingsIndicesByPath,d=c[a],e=this._bindings;if(void 0!==d)return e[d];var f=this._paths,g=this._parsedPaths,h=this._objects,k=this.nCachedObjects_,
+m=Array(h.length);d=e.length;c[a]=d;f.push(a);g.push(b);e.push(m);c=k;for(d=h.length;c!==d;++c)m[c]=new qa(h[c],a,b);return m},unsubscribe_:function(a){var b=this._bindingsIndicesByPath,c=b[a];if(void 0!==c){var d=this._paths,e=this._parsedPaths,f=this._bindings,g=f.length-1,h=f[g];b[a[g]]=c;f[c]=h;f.pop();e[c]=e[g];e.pop();d[c]=d[g];d.pop()}}});Object.assign(lf.prototype,{play:function(){this._mixer._activateAction(this);return this},stop:function(){this._mixer._deactivateAction(this);return this.reset()},
+reset:function(){this.paused=!1;this.enabled=!0;this.time=0;this._loopCount=-1;this._startTime=null;return this.stopFading().stopWarping()},isRunning:function(){return this.enabled&&!this.paused&&0!==this.timeScale&&null===this._startTime&&this._mixer._isActiveAction(this)},isScheduled:function(){return this._mixer._isActiveAction(this)},startAt:function(a){this._startTime=a;return this},setLoop:function(a,b){this.loop=a;this.repetitions=b;return this},setEffectiveWeight:function(a){this.weight=a;
+this._effectiveWeight=this.enabled?a:0;return this.stopFading()},getEffectiveWeight:function(){return this._effectiveWeight},fadeIn:function(a){return this._scheduleFading(a,0,1)},fadeOut:function(a){return this._scheduleFading(a,1,0)},crossFadeFrom:function(a,b,c){a.fadeOut(b);this.fadeIn(b);if(c){c=this._clip.duration;var d=a._clip.duration,e=c/d;a.warp(1,d/c,b);this.warp(e,1,b)}return this},crossFadeTo:function(a,b,c){return a.crossFadeFrom(this,b,c)},stopFading:function(){var a=this._weightInterpolant;
+null!==a&&(this._weightInterpolant=null,this._mixer._takeBackControlInterpolant(a));return this},setEffectiveTimeScale:function(a){this.timeScale=a;this._effectiveTimeScale=this.paused?0:a;return this.stopWarping()},getEffectiveTimeScale:function(){return this._effectiveTimeScale},setDuration:function(a){this.timeScale=this._clip.duration/a;return this.stopWarping()},syncWith:function(a){this.time=a.time;this.timeScale=a.timeScale;return this.stopWarping()},halt:function(a){return this.warp(this._effectiveTimeScale,
+0,a)},warp:function(a,b,c){var d=this._mixer,e=d.time,f=this._timeScaleInterpolant,g=this.timeScale;null===f&&(this._timeScaleInterpolant=f=d._lendControlInterpolant());d=f.parameterPositions;f=f.sampleValues;d[0]=e;d[1]=e+c;f[0]=a/g;f[1]=b/g;return this},stopWarping:function(){var a=this._timeScaleInterpolant;null!==a&&(this._timeScaleInterpolant=null,this._mixer._takeBackControlInterpolant(a));return this},getMixer:function(){return this._mixer},getClip:function(){return this._clip},getRoot:function(){return this._localRoot||
+this._mixer._root},_update:function(a,b,c,d){if(this.enabled){var e=this._startTime;if(null!==e){b=(a-e)*c;if(0>b||0===c)return;this._startTime=null;b*=c}b*=this._updateTimeScale(a);c=this._updateTime(b);a=this._updateWeight(a);if(0<a){b=this._interpolants;e=this._propertyBindings;for(var f=0,g=b.length;f!==g;++f)b[f].evaluate(c),e[f].accumulate(d,a)}}else this._updateWeight(a)},_updateWeight:function(a){var b=0;if(this.enabled){b=this.weight;var c=this._weightInterpolant;if(null!==c){var d=c.evaluate(a)[0];
+b*=d;a>c.parameterPositions[1]&&(this.stopFading(),0===d&&(this.enabled=!1))}}return this._effectiveWeight=b},_updateTimeScale:function(a){var b=0;if(!this.paused){b=this.timeScale;var c=this._timeScaleInterpolant;if(null!==c){var d=c.evaluate(a)[0];b*=d;a>c.parameterPositions[1]&&(this.stopWarping(),0===b?this.paused=!0:this.timeScale=b)}}return this._effectiveTimeScale=b},_updateTime:function(a){var b=this.time+a;if(0===a)return b;var c=this._clip.duration,d=this.loop,e=this._loopCount;if(2200===
+d)a:{if(-1===e&&(this._loopCount=0,this._setEndings(!0,!0,!1)),b>=c)b=c;else if(0>b)b=0;else break a;this.clampWhenFinished?this.paused=!0:this.enabled=!1;this._mixer.dispatchEvent({type:"finished",action:this,direction:0>a?-1:1})}else{d=2202===d;-1===e&&(0<=a?(e=0,this._setEndings(!0,0===this.repetitions,d)):this._setEndings(0===this.repetitions,!0,d));if(b>=c||0>b){var f=Math.floor(b/c);b-=c*f;e+=Math.abs(f);var g=this.repetitions-e;0>=g?(this.clampWhenFinished?this.paused=!0:this.enabled=!1,b=
+0<a?c:0,this._mixer.dispatchEvent({type:"finished",action:this,direction:0<a?1:-1})):(1===g?(a=0>a,this._setEndings(a,!a,d)):this._setEndings(!1,!1,d),this._loopCount=e,this._mixer.dispatchEvent({type:"loop",action:this,loopDelta:f}))}if(d&&1===(e&1))return this.time=b,c-b}return this.time=b},_setEndings:function(a,b,c){var d=this._interpolantSettings;c?(d.endingStart=2401,d.endingEnd=2401):(d.endingStart=a?this.zeroSlopeAtStart?2401:2400:2402,d.endingEnd=b?this.zeroSlopeAtEnd?2401:2400:2402)},_scheduleFading:function(a,
+b,c){var d=this._mixer,e=d.time,f=this._weightInterpolant;null===f&&(this._weightInterpolant=f=d._lendControlInterpolant());d=f.parameterPositions;f=f.sampleValues;d[0]=e;f[0]=b;d[1]=e+a;f[1]=c;return this}});pe.prototype=Object.assign(Object.create(xa.prototype),{constructor:pe,_bindAction:function(a,b){var c=a._localRoot||this._root,d=a._clip.tracks,e=d.length,f=a._propertyBindings;a=a._interpolants;var g=c.uuid,h=this._bindingsByRootAndName,k=h[g];void 0===k&&(k={},h[g]=k);for(h=0;h!==e;++h){var m=
+d[h],p=m.name,n=k[p];if(void 0===n){n=f[h];if(void 0!==n){null===n._cacheIndex&&(++n.referenceCount,this._addInactiveBinding(n,g,p));continue}n=new oe(qa.create(c,p,b&&b._propertyBindings[h].binding.parsedPath),m.ValueTypeName,m.getValueSize());++n.referenceCount;this._addInactiveBinding(n,g,p)}f[h]=n;a[h].resultBuffer=n.buffer}},_activateAction:function(a){if(!this._isActiveAction(a)){if(null===a._cacheIndex){var b=(a._localRoot||this._root).uuid,c=a._clip.uuid,d=this._actionsByClip[c];this._bindAction(a,
+d&&d.knownActions[0]);this._addInactiveAction(a,c,b)}b=a._propertyBindings;c=0;for(d=b.length;c!==d;++c){var e=b[c];0===e.useCount++&&(this._lendBinding(e),e.saveOriginalState())}this._lendAction(a)}},_deactivateAction:function(a){if(this._isActiveAction(a)){for(var b=a._propertyBindings,c=0,d=b.length;c!==d;++c){var e=b[c];0===--e.useCount&&(e.restoreOriginalState(),this._takeBackBinding(e))}this._takeBackAction(a)}},_initMemoryManager:function(){this._actions=[];this._nActiveActions=0;this._actionsByClip=
+{};this._bindings=[];this._nActiveBindings=0;this._bindingsByRootAndName={};this._controlInterpolants=[];this._nActiveControlInterpolants=0;var a=this;this.stats={actions:{get total(){return a._actions.length},get inUse(){return a._nActiveActions}},bindings:{get total(){return a._bindings.length},get inUse(){return a._nActiveBindings}},controlInterpolants:{get total(){return a._controlInterpolants.length},get inUse(){return a._nActiveControlInterpolants}}}},_isActiveAction:function(a){a=a._cacheIndex;
+return null!==a&&a<this._nActiveActions},_addInactiveAction:function(a,b,c){var d=this._actions,e=this._actionsByClip,f=e[b];void 0===f?(f={knownActions:[a],actionByRoot:{}},a._byClipCacheIndex=0,e[b]=f):(b=f.knownActions,a._byClipCacheIndex=b.length,b.push(a));a._cacheIndex=d.length;d.push(a);f.actionByRoot[c]=a},_removeInactiveAction:function(a){var b=this._actions,c=b[b.length-1],d=a._cacheIndex;c._cacheIndex=d;b[d]=c;b.pop();a._cacheIndex=null;b=a._clip.uuid;c=this._actionsByClip;d=c[b];var e=
+d.knownActions,f=e[e.length-1],g=a._byClipCacheIndex;f._byClipCacheIndex=g;e[g]=f;e.pop();a._byClipCacheIndex=null;delete d.actionByRoot[(a._localRoot||this._root).uuid];0===e.length&&delete c[b];this._removeInactiveBindingsForAction(a)},_removeInactiveBindingsForAction:function(a){a=a._propertyBindings;for(var b=0,c=a.length;b!==c;++b){var d=a[b];0===--d.referenceCount&&this._removeInactiveBinding(d)}},_lendAction:function(a){var b=this._actions,c=a._cacheIndex,d=this._nActiveActions++,e=b[d];a._cacheIndex=
+d;b[d]=a;e._cacheIndex=c;b[c]=e},_takeBackAction:function(a){var b=this._actions,c=a._cacheIndex,d=--this._nActiveActions,e=b[d];a._cacheIndex=d;b[d]=a;e._cacheIndex=c;b[c]=e},_addInactiveBinding:function(a,b,c){var d=this._bindingsByRootAndName,e=d[b],f=this._bindings;void 0===e&&(e={},d[b]=e);e[c]=a;a._cacheIndex=f.length;f.push(a)},_removeInactiveBinding:function(a){var b=this._bindings,c=a.binding,d=c.rootNode.uuid;c=c.path;var e=this._bindingsByRootAndName,f=e[d],g=b[b.length-1];a=a._cacheIndex;
+g._cacheIndex=a;b[a]=g;b.pop();delete f[c];a:{for(var h in f)break a;delete e[d]}},_lendBinding:function(a){var b=this._bindings,c=a._cacheIndex,d=this._nActiveBindings++,e=b[d];a._cacheIndex=d;b[d]=a;e._cacheIndex=c;b[c]=e},_takeBackBinding:function(a){var b=this._bindings,c=a._cacheIndex,d=--this._nActiveBindings,e=b[d];a._cacheIndex=d;b[d]=a;e._cacheIndex=c;b[c]=e},_lendControlInterpolant:function(){var a=this._controlInterpolants,b=this._nActiveControlInterpolants++,c=a[b];void 0===c&&(c=new bd(new Float32Array(2),
+new Float32Array(2),1,this._controlInterpolantsResultBuffer),c.__cacheIndex=b,a[b]=c);return c},_takeBackControlInterpolant:function(a){var b=this._controlInterpolants,c=a.__cacheIndex,d=--this._nActiveControlInterpolants,e=b[d];a.__cacheIndex=d;b[d]=a;e.__cacheIndex=c;b[c]=e},_controlInterpolantsResultBuffer:new Float32Array(1),clipAction:function(a,b){var c=b||this._root,d=c.uuid;c="string"===typeof a?Ba.findByName(c,a):a;a=null!==c?c.uuid:a;var e=this._actionsByClip[a],f=null;if(void 0!==e){f=
+e.actionByRoot[d];if(void 0!==f)return f;f=e.knownActions[0];null===c&&(c=f._clip)}if(null===c)return null;b=new lf(this,c,b);this._bindAction(b,f);this._addInactiveAction(b,a,d);return b},existingAction:function(a,b){var c=b||this._root;b=c.uuid;c="string"===typeof a?Ba.findByName(c,a):a;a=this._actionsByClip[c?c.uuid:a];return void 0!==a?a.actionByRoot[b]||null:null},stopAllAction:function(){for(var a=this._actions,b=this._nActiveActions,c=this._bindings,d=this._nActiveBindings,e=this._nActiveBindings=
+this._nActiveActions=0;e!==b;++e)a[e].reset();for(e=0;e!==d;++e)c[e].useCount=0;return this},update:function(a){a*=this.timeScale;for(var b=this._actions,c=this._nActiveActions,d=this.time+=a,e=Math.sign(a),f=this._accuIndex^=1,g=0;g!==c;++g)b[g]._update(d,a,e,f);a=this._bindings;b=this._nActiveBindings;for(g=0;g!==b;++g)a[g].apply(f);return this},getRoot:function(){return this._root},uncacheClip:function(a){var b=this._actions;a=a.uuid;var c=this._actionsByClip,d=c[a];if(void 0!==d){d=d.knownActions;
+for(var e=0,f=d.length;e!==f;++e){var g=d[e];this._deactivateAction(g);var h=g._cacheIndex,k=b[b.length-1];g._cacheIndex=null;g._byClipCacheIndex=null;k._cacheIndex=h;b[h]=k;b.pop();this._removeInactiveBindingsForAction(g)}delete c[a]}},uncacheRoot:function(a){a=a.uuid;var b=this._actionsByClip;for(d in b){var c=b[d].actionByRoot[a];void 0!==c&&(this._deactivateAction(c),this._removeInactiveAction(c))}var d=this._bindingsByRootAndName[a];if(void 0!==d)for(var e in d)a=d[e],a.restoreOriginalState(),
+this._removeInactiveBinding(a)},uncacheAction:function(a,b){a=this.existingAction(a,b);null!==a&&(this._deactivateAction(a),this._removeInactiveAction(a))}});Nd.prototype.clone=function(){return new Nd(void 0===this.value.clone?this.value:this.value.clone())};qe.prototype=Object.assign(Object.create(F.prototype),{constructor:qe,isInstancedBufferGeometry:!0,copy:function(a){F.prototype.copy.call(this,a);this.maxInstancedCount=a.maxInstancedCount;return this},clone:function(){return(new this.constructor).copy(this)}});
+Object.defineProperties(re.prototype,{count:{get:function(){return this.data.count}},array:{get:function(){return this.data.array}}});Object.assign(re.prototype,{isInterleavedBufferAttribute:!0,setX:function(a,b){this.data.array[a*this.data.stride+this.offset]=b;return this},setY:function(a,b){this.data.array[a*this.data.stride+this.offset+1]=b;return this},setZ:function(a,b){this.data.array[a*this.data.stride+this.offset+2]=b;return this},setW:function(a,b){this.data.array[a*this.data.stride+this.offset+
+3]=b;return this},getX:function(a){return this.data.array[a*this.data.stride+this.offset]},getY:function(a){return this.data.array[a*this.data.stride+this.offset+1]},getZ:function(a){return this.data.array[a*this.data.stride+this.offset+2]},getW:function(a){return this.data.array[a*this.data.stride+this.offset+3]},setXY:function(a,b,c){a=a*this.data.stride+this.offset;this.data.array[a+0]=b;this.data.array[a+1]=c;return this},setXYZ:function(a,b,c,d){a=a*this.data.stride+this.offset;this.data.array[a+
+0]=b;this.data.array[a+1]=c;this.data.array[a+2]=d;return this},setXYZW:function(a,b,c,d,e){a=a*this.data.stride+this.offset;this.data.array[a+0]=b;this.data.array[a+1]=c;this.data.array[a+2]=d;this.data.array[a+3]=e;return this}});Object.defineProperty(kc.prototype,"needsUpdate",{set:function(a){!0===a&&this.version++}});Object.assign(kc.prototype,{isInterleavedBuffer:!0,onUploadCallback:function(){},setArray:function(a){if(Array.isArray(a))throw new TypeError("THREE.BufferAttribute: array should be a Typed Array.");
+this.count=void 0!==a?a.length/this.stride:0;this.array=a},setDynamic:function(a){this.dynamic=a;return this},copy:function(a){this.array=new a.array.constructor(a.array);this.count=a.count;this.stride=a.stride;this.dynamic=a.dynamic;return this},copyAt:function(a,b,c){a*=this.stride;c*=b.stride;for(var d=0,e=this.stride;d<e;d++)this.array[a+d]=b.array[c+d];return this},set:function(a,b){void 0===b&&(b=0);this.array.set(a,b);return this},clone:function(){return(new this.constructor).copy(this)},onUpload:function(a){this.onUploadCallback=
+a;return this}});se.prototype=Object.assign(Object.create(kc.prototype),{constructor:se,isInstancedInterleavedBuffer:!0,copy:function(a){kc.prototype.copy.call(this,a);this.meshPerAttribute=a.meshPerAttribute;return this}});te.prototype=Object.assign(Object.create(T.prototype),{constructor:te,isInstancedBufferAttribute:!0,copy:function(a){T.prototype.copy.call(this,a);this.meshPerAttribute=a.meshPerAttribute;return this}});Object.assign(mf.prototype,{linePrecision:1,set:function(a,b){this.ray.set(a,
+b)},setFromCamera:function(a,b){b&&b.isPerspectiveCamera?(this.ray.origin.setFromMatrixPosition(b.matrixWorld),this.ray.direction.set(a.x,a.y,.5).unproject(b).sub(this.ray.origin).normalize()):b&&b.isOrthographicCamera?(this.ray.origin.set(a.x,a.y,(b.near+b.far)/(b.near-b.far)).unproject(b),this.ray.direction.set(0,0,-1).transformDirection(b.matrixWorld)):console.error("THREE.Raycaster: Unsupported camera type.")},intersectObject:function(a,b,c){c=c||[];ue(a,this,c,b);c.sort(nf);return c},intersectObjects:function(a,
+b,c){c=c||[];if(!1===Array.isArray(a))return console.warn("THREE.Raycaster.intersectObjects: objects is not an Array."),c;for(var d=0,e=a.length;d<e;d++)ue(a[d],this,c,b);c.sort(nf);return c}});Object.assign(of.prototype,{start:function(){this.oldTime=this.startTime=("undefined"===typeof performance?Date:performance).now();this.elapsedTime=0;this.running=!0},stop:function(){this.getElapsedTime();this.autoStart=this.running=!1},getElapsedTime:function(){this.getDelta();return this.elapsedTime},getDelta:function(){var a=
+0;if(this.autoStart&&!this.running)return this.start(),0;if(this.running){var b=("undefined"===typeof performance?Date:performance).now();a=(b-this.oldTime)/1E3;this.oldTime=b;this.elapsedTime+=a}return a}});Object.assign(pf.prototype,{set:function(a,b,c){this.radius=a;this.phi=b;this.theta=c;return this},clone:function(){return(new this.constructor).copy(this)},copy:function(a){this.radius=a.radius;this.phi=a.phi;this.theta=a.theta;return this},makeSafe:function(){this.phi=Math.max(1E-6,Math.min(Math.PI-
+1E-6,this.phi));return this},setFromVector3:function(a){this.radius=a.length();0===this.radius?this.phi=this.theta=0:(this.theta=Math.atan2(a.x,a.z),this.phi=Math.acos(S.clamp(a.y/this.radius,-1,1)));return this}});Object.assign(qf.prototype,{set:function(a,b,c){this.radius=a;this.theta=b;this.y=c;return this},clone:function(){return(new this.constructor).copy(this)},copy:function(a){this.radius=a.radius;this.theta=a.theta;this.y=a.y;return this},setFromVector3:function(a){this.radius=Math.sqrt(a.x*
+a.x+a.z*a.z);this.theta=Math.atan2(a.x,a.z);this.y=a.y;return this}});Object.assign(ve.prototype,{set:function(a,b){this.min.copy(a);this.max.copy(b);return this},setFromPoints:function(a){this.makeEmpty();for(var b=0,c=a.length;b<c;b++)this.expandByPoint(a[b]);return this},setFromCenterAndSize:function(){var a=new C;return function(b,c){c=a.copy(c).multiplyScalar(.5);this.min.copy(b).sub(c);this.max.copy(b).add(c);return this}}(),clone:function(){return(new this.constructor).copy(this)},copy:function(a){this.min.copy(a.min);
+this.max.copy(a.max);return this},makeEmpty:function(){this.min.x=this.min.y=Infinity;this.max.x=this.max.y=-Infinity;return this},isEmpty:function(){return this.max.x<this.min.x||this.max.y<this.min.y},getCenter:function(a){void 0===a&&(console.warn("THREE.Box2: .getCenter() target is now required"),a=new C);return this.isEmpty()?a.set(0,0):a.addVectors(this.min,this.max).multiplyScalar(.5)},getSize:function(a){void 0===a&&(console.warn("THREE.Box2: .getSize() target is now required"),a=new C);return this.isEmpty()?
+a.set(0,0):a.subVectors(this.max,this.min)},expandByPoint:function(a){this.min.min(a);this.max.max(a);return this},expandByVector:function(a){this.min.sub(a);this.max.add(a);return this},expandByScalar:function(a){this.min.addScalar(-a);this.max.addScalar(a);return this},containsPoint:function(a){return a.x<this.min.x||a.x>this.max.x||a.y<this.min.y||a.y>this.max.y?!1:!0},containsBox:function(a){return this.min.x<=a.min.x&&a.max.x<=this.max.x&&this.min.y<=a.min.y&&a.max.y<=this.max.y},getParameter:function(a,
+b){void 0===b&&(console.warn("THREE.Box2: .getParameter() target is now required"),b=new C);return b.set((a.x-this.min.x)/(this.max.x-this.min.x),(a.y-this.min.y)/(this.max.y-this.min.y))},intersectsBox:function(a){return a.max.x<this.min.x||a.min.x>this.max.x||a.max.y<this.min.y||a.min.y>this.max.y?!1:!0},clampPoint:function(a,b){void 0===b&&(console.warn("THREE.Box2: .clampPoint() target is now required"),b=new C);return b.copy(a).clamp(this.min,this.max)},distanceToPoint:function(){var a=new C;
+return function(b){return a.copy(b).clamp(this.min,this.max).sub(b).length()}}(),intersect:function(a){this.min.max(a.min);this.max.min(a.max);return this},union:function(a){this.min.min(a.min);this.max.max(a.max);return this},translate:function(a){this.min.add(a);this.max.add(a);return this},equals:function(a){return a.min.equals(this.min)&&a.max.equals(this.max)}});dd.prototype=Object.create(A.prototype);dd.prototype.constructor=dd;dd.prototype.isImmediateRenderObject=!0;ed.prototype=Object.create(aa.prototype);
+ed.prototype.constructor=ed;ed.prototype.update=function(){var a=new p,b=new p,c=new sa;return function(){var d=["a","b","c"];this.object.updateMatrixWorld(!0);c.getNormalMatrix(this.object.matrixWorld);var e=this.object.matrixWorld,f=this.geometry.attributes.position,g=this.object.geometry;if(g&&g.isGeometry)for(var h=g.vertices,k=g.faces,m=g=0,p=k.length;m<p;m++)for(var n=k[m],t=0,r=n.vertexNormals.length;t<r;t++){var q=n.vertexNormals[t];a.copy(h[n[d[t]]]).applyMatrix4(e);b.copy(q).applyMatrix3(c).normalize().multiplyScalar(this.size).add(a);
+f.setXYZ(g,a.x,a.y,a.z);g+=1;f.setXYZ(g,b.x,b.y,b.z);g+=1}else if(g&&g.isBufferGeometry)for(d=g.attributes.position,h=g.attributes.normal,t=g=0,r=d.count;t<r;t++)a.set(d.getX(t),d.getY(t),d.getZ(t)).applyMatrix4(e),b.set(h.getX(t),h.getY(t),h.getZ(t)),b.applyMatrix3(c).normalize().multiplyScalar(this.size).add(a),f.setXYZ(g,a.x,a.y,a.z),g+=1,f.setXYZ(g,b.x,b.y,b.z),g+=1;f.needsUpdate=!0}}();lc.prototype=Object.create(A.prototype);lc.prototype.constructor=lc;lc.prototype.dispose=function(){this.cone.geometry.dispose();
+this.cone.material.dispose()};lc.prototype.update=function(){var a=new p,b=new p;return function(){this.light.updateMatrixWorld();var c=this.light.distance?this.light.distance:1E3,d=c*Math.tan(this.light.angle);this.cone.scale.set(d,d,c);a.setFromMatrixPosition(this.light.matrixWorld);b.setFromMatrixPosition(this.light.target.matrixWorld);this.cone.lookAt(b.sub(a));void 0!==this.color?this.cone.material.color.set(this.color):this.cone.material.color.copy(this.light.color)}}();mc.prototype=Object.create(aa.prototype);
+mc.prototype.constructor=mc;mc.prototype.updateMatrixWorld=function(){var a=new p,b=new M,c=new M;return function(d){var e=this.bones,f=this.geometry,g=f.getAttribute("position");c.getInverse(this.root.matrixWorld);for(var h=0,k=0;h<e.length;h++){var m=e[h];m.parent&&m.parent.isBone&&(b.multiplyMatrices(c,m.matrixWorld),a.setFromMatrixPosition(b),g.setXYZ(k,a.x,a.y,a.z),b.multiplyMatrices(c,m.parent.matrixWorld),a.setFromMatrixPosition(b),g.setXYZ(k+1,a.x,a.y,a.z),k+=2)}f.getAttribute("position").needsUpdate=
+!0;A.prototype.updateMatrixWorld.call(this,d)}}();nc.prototype=Object.create(oa.prototype);nc.prototype.constructor=nc;nc.prototype.dispose=function(){this.geometry.dispose();this.material.dispose()};nc.prototype.update=function(){void 0!==this.color?this.material.color.set(this.color):this.material.color.copy(this.light.color)};oc.prototype=Object.create(A.prototype);oc.prototype.constructor=oc;oc.prototype.dispose=function(){this.children[0].geometry.dispose();this.children[0].material.dispose()};
+oc.prototype.update=function(){var a=.5*this.light.width,b=.5*this.light.height,c=this.line.geometry.attributes.position,d=c.array;d[0]=a;d[1]=-b;d[2]=0;d[3]=a;d[4]=b;d[5]=0;d[6]=-a;d[7]=b;d[8]=0;d[9]=-a;d[10]=-b;d[11]=0;d[12]=a;d[13]=-b;d[14]=0;c.needsUpdate=!0;void 0!==this.color?this.line.material.color.set(this.color):this.line.material.color.copy(this.light.color)};pc.prototype=Object.create(A.prototype);pc.prototype.constructor=pc;pc.prototype.dispose=function(){this.children[0].geometry.dispose();
+this.children[0].material.dispose()};pc.prototype.update=function(){var a=new p,b=new I,c=new I;return function(){var d=this.children[0];if(void 0!==this.color)this.material.color.set(this.color);else{var e=d.geometry.getAttribute("color");b.copy(this.light.color);c.copy(this.light.groundColor);for(var f=0,g=e.count;f<g;f++){var h=f<g/2?b:c;e.setXYZ(f,h.r,h.g,h.b)}e.needsUpdate=!0}d.lookAt(a.setFromMatrixPosition(this.light.matrixWorld).negate())}}();fd.prototype=Object.create(aa.prototype);fd.prototype.constructor=
+fd;Od.prototype=Object.create(aa.prototype);Od.prototype.constructor=Od;gd.prototype=Object.create(aa.prototype);gd.prototype.constructor=gd;gd.prototype.update=function(){var a=new p,b=new p,c=new sa;return function(){this.object.updateMatrixWorld(!0);c.getNormalMatrix(this.object.matrixWorld);var d=this.object.matrixWorld,e=this.geometry.attributes.position,f=this.object.geometry,g=f.vertices;f=f.faces;for(var h=0,k=0,m=f.length;k<m;k++){var p=f[k],n=p.normal;a.copy(g[p.a]).add(g[p.b]).add(g[p.c]).divideScalar(3).applyMatrix4(d);
+b.copy(n).applyMatrix3(c).normalize().multiplyScalar(this.size).add(a);e.setXYZ(h,a.x,a.y,a.z);h+=1;e.setXYZ(h,b.x,b.y,b.z);h+=1}e.needsUpdate=!0}}();qc.prototype=Object.create(A.prototype);qc.prototype.constructor=qc;qc.prototype.dispose=function(){this.lightPlane.geometry.dispose();this.lightPlane.material.dispose();this.targetLine.geometry.dispose();this.targetLine.material.dispose()};qc.prototype.update=function(){var a=new p,b=new p,c=new p;return function(){a.setFromMatrixPosition(this.light.matrixWorld);
+b.setFromMatrixPosition(this.light.target.matrixWorld);c.subVectors(b,a);this.lightPlane.lookAt(c);void 0!==this.color?(this.lightPlane.material.color.set(this.color),this.targetLine.material.color.set(this.color)):(this.lightPlane.material.color.copy(this.light.color),this.targetLine.material.color.copy(this.light.color));this.targetLine.lookAt(c);this.targetLine.scale.z=c.length()}}();hd.prototype=Object.create(aa.prototype);hd.prototype.constructor=hd;hd.prototype.update=function(){function a(a,
+g,h,k){d.set(g,h,k).unproject(e);a=c[a];if(void 0!==a)for(g=b.getAttribute("position"),h=0,k=a.length;h<k;h++)g.setXYZ(a[h],d.x,d.y,d.z)}var b,c,d=new p,e=new Qa;return function(){b=this.geometry;c=this.pointMap;e.projectionMatrix.copy(this.camera.projectionMatrix);a("c",0,0,-1);a("t",0,0,1);a("n1",-1,-1,-1);a("n2",1,-1,-1);a("n3",-1,1,-1);a("n4",1,1,-1);a("f1",-1,-1,1);a("f2",1,-1,1);a("f3",-1,1,1);a("f4",1,1,1);a("u1",.7,1.1,-1);a("u2",-.7,1.1,-1);a("u3",0,2,-1);a("cf1",-1,0,1);a("cf2",1,0,1);a("cf3",
+0,-1,1);a("cf4",0,1,1);a("cn1",-1,0,-1);a("cn2",1,0,-1);a("cn3",0,-1,-1);a("cn4",0,1,-1);b.getAttribute("position").needsUpdate=!0}}();Fb.prototype=Object.create(aa.prototype);Fb.prototype.constructor=Fb;Fb.prototype.update=function(){var a=new Va;return function(b){void 0!==b&&console.warn("THREE.BoxHelper: .update() has no longer arguments.");void 0!==this.object&&a.setFromObject(this.object);if(!a.isEmpty()){b=a.min;var c=a.max,d=this.geometry.attributes.position,e=d.array;e[0]=c.x;e[1]=c.y;e[2]=
+c.z;e[3]=b.x;e[4]=c.y;e[5]=c.z;e[6]=b.x;e[7]=b.y;e[8]=c.z;e[9]=c.x;e[10]=b.y;e[11]=c.z;e[12]=c.x;e[13]=c.y;e[14]=b.z;e[15]=b.x;e[16]=c.y;e[17]=b.z;e[18]=b.x;e[19]=b.y;e[20]=b.z;e[21]=c.x;e[22]=b.y;e[23]=b.z;d.needsUpdate=!0;this.geometry.computeBoundingSphere()}}}();Fb.prototype.setFromObject=function(a){this.object=a;this.update();return this};id.prototype=Object.create(aa.prototype);id.prototype.constructor=id;id.prototype.updateMatrixWorld=function(a){var b=this.box;b.isEmpty()||(b.getCenter(this.position),
+b.getSize(this.scale),this.scale.multiplyScalar(.5),A.prototype.updateMatrixWorld.call(this,a))};jd.prototype=Object.create(ua.prototype);jd.prototype.constructor=jd;jd.prototype.updateMatrixWorld=function(a){var b=-this.plane.constant;1E-8>Math.abs(b)&&(b=1E-8);this.scale.set(.5*this.size,.5*this.size,b);this.lookAt(this.plane.normal);A.prototype.updateMatrixWorld.call(this,a)};var Pd,we;Gb.prototype=Object.create(A.prototype);Gb.prototype.constructor=Gb;Gb.prototype.setDirection=function(){var a=
+new p,b;return function(c){.99999<c.y?this.quaternion.set(0,0,0,1):-.99999>c.y?this.quaternion.set(1,0,0,0):(a.set(c.z,0,-c.x).normalize(),b=Math.acos(c.y),this.quaternion.setFromAxisAngle(a,b))}}();Gb.prototype.setLength=function(a,b,c){void 0===b&&(b=.2*a);void 0===c&&(c=.2*b);this.line.scale.set(1,Math.max(0,a-b),1);this.line.updateMatrix();this.cone.scale.set(c,b,c);this.cone.position.y=a;this.cone.updateMatrix()};Gb.prototype.setColor=function(a){this.line.material.color.copy(a);this.cone.material.color.copy(a)};
+kd.prototype=Object.create(aa.prototype);kd.prototype.constructor=kd;E.create=function(a,b){console.log("THREE.Curve.create() has been deprecated");a.prototype=Object.create(E.prototype);a.prototype.constructor=a;a.prototype.getPoint=b;return a};Object.assign(Za.prototype,{createPointsGeometry:function(a){console.warn("THREE.CurvePath: .createPointsGeometry() has been removed. Use new THREE.Geometry().setFromPoints( points ) instead.");a=this.getPoints(a);return this.createGeometry(a)},createSpacedPointsGeometry:function(a){console.warn("THREE.CurvePath: .createSpacedPointsGeometry() has been removed. Use new THREE.Geometry().setFromPoints( points ) instead.");
+a=this.getSpacedPoints(a);return this.createGeometry(a)},createGeometry:function(a){console.warn("THREE.CurvePath: .createGeometry() has been removed. Use new THREE.Geometry().setFromPoints( points ) instead.");for(var b=new N,c=0,d=a.length;c<d;c++){var e=a[c];b.vertices.push(new p(e.x,e.y,e.z||0))}return b}});Object.assign(Pa.prototype,{fromPoints:function(a){console.warn("THREE.Path: .fromPoints() has been renamed to .setFromPoints().");this.setFromPoints(a)}});sf.prototype=Object.create(X.prototype);
+tf.prototype=Object.create(X.prototype);xe.prototype=Object.create(X.prototype);Object.assign(xe.prototype,{initFromArray:function(){console.error("THREE.Spline: .initFromArray() has been removed.")},getControlPointsArray:function(){console.error("THREE.Spline: .getControlPointsArray() has been removed.")},reparametrizeByArcLength:function(){console.error("THREE.Spline: .reparametrizeByArcLength() has been removed.")}});fd.prototype.setColors=function(){console.error("THREE.GridHelper: setColors() has been deprecated, pass them in the constructor instead.")};
+mc.prototype.update=function(){console.error("THREE.SkeletonHelper: update() no longer needs to be called.")};Object.assign(ic.prototype,{extractUrlBase:function(a){console.warn("THREE.Loader: .extractUrlBase() has been deprecated. Use THREE.LoaderUtils.extractUrlBase() instead.");return Be.extractUrlBase(a)}});Object.assign(ve.prototype,{center:function(a){console.warn("THREE.Box2: .center() has been renamed to .getCenter().");return this.getCenter(a)},empty:function(){console.warn("THREE.Box2: .empty() has been renamed to .isEmpty().");
+return this.isEmpty()},isIntersectionBox:function(a){console.warn("THREE.Box2: .isIntersectionBox() has been renamed to .intersectsBox().");return this.intersectsBox(a)},size:function(a){console.warn("THREE.Box2: .size() has been renamed to .getSize().");return this.getSize(a)}});Object.assign(Va.prototype,{center:function(a){console.warn("THREE.Box3: .center() has been renamed to .getCenter().");return this.getCenter(a)},empty:function(){console.warn("THREE.Box3: .empty() has been renamed to .isEmpty().");
+return this.isEmpty()},isIntersectionBox:function(a){console.warn("THREE.Box3: .isIntersectionBox() has been renamed to .intersectsBox().");return this.intersectsBox(a)},isIntersectionSphere:function(a){console.warn("THREE.Box3: .isIntersectionSphere() has been renamed to .intersectsSphere().");return this.intersectsSphere(a)},size:function(a){console.warn("THREE.Box3: .size() has been renamed to .getSize().");return this.getSize(a)}});Lb.prototype.center=function(a){console.warn("THREE.Line3: .center() has been renamed to .getCenter().");
+return this.getCenter(a)};Object.assign(S,{random16:function(){console.warn("THREE.Math: .random16() has been deprecated. Use Math.random() instead.");return Math.random()},nearestPowerOfTwo:function(a){console.warn("THREE.Math: .nearestPowerOfTwo() has been renamed to .floorPowerOfTwo().");return S.floorPowerOfTwo(a)},nextPowerOfTwo:function(a){console.warn("THREE.Math: .nextPowerOfTwo() has been renamed to .ceilPowerOfTwo().");return S.ceilPowerOfTwo(a)}});Object.assign(sa.prototype,{flattenToArrayOffset:function(a,
+b){console.warn("THREE.Matrix3: .flattenToArrayOffset() has been deprecated. Use .toArray() instead.");return this.toArray(a,b)},multiplyVector3:function(a){console.warn("THREE.Matrix3: .multiplyVector3() has been removed. Use vector.applyMatrix3( matrix ) instead.");return a.applyMatrix3(this)},multiplyVector3Array:function(){console.error("THREE.Matrix3: .multiplyVector3Array() has been removed.")},applyToBuffer:function(a){console.warn("THREE.Matrix3: .applyToBuffer() has been removed. Use matrix.applyToBufferAttribute( attribute ) instead.");
+return this.applyToBufferAttribute(a)},applyToVector3Array:function(){console.error("THREE.Matrix3: .applyToVector3Array() has been removed.")}});Object.assign(M.prototype,{extractPosition:function(a){console.warn("THREE.Matrix4: .extractPosition() has been renamed to .copyPosition().");return this.copyPosition(a)},flattenToArrayOffset:function(a,b){console.warn("THREE.Matrix4: .flattenToArrayOffset() has been deprecated. Use .toArray() instead.");return this.toArray(a,b)},getPosition:function(){var a;
+return function(){void 0===a&&(a=new p);console.warn("THREE.Matrix4: .getPosition() has been removed. Use Vector3.setFromMatrixPosition( matrix ) instead.");return a.setFromMatrixColumn(this,3)}}(),setRotationFromQuaternion:function(a){console.warn("THREE.Matrix4: .setRotationFromQuaternion() has been renamed to .makeRotationFromQuaternion().");return this.makeRotationFromQuaternion(a)},multiplyToArray:function(){console.warn("THREE.Matrix4: .multiplyToArray() has been removed.")},multiplyVector3:function(a){console.warn("THREE.Matrix4: .multiplyVector3() has been removed. Use vector.applyMatrix4( matrix ) instead.");
+return a.applyMatrix4(this)},multiplyVector4:function(a){console.warn("THREE.Matrix4: .multiplyVector4() has been removed. Use vector.applyMatrix4( matrix ) instead.");return a.applyMatrix4(this)},multiplyVector3Array:function(){console.error("THREE.Matrix4: .multiplyVector3Array() has been removed.")},rotateAxis:function(a){console.warn("THREE.Matrix4: .rotateAxis() has been removed. Use Vector3.transformDirection( matrix ) instead.");a.transformDirection(this)},crossVector:function(a){console.warn("THREE.Matrix4: .crossVector() has been removed. Use vector.applyMatrix4( matrix ) instead.");
+return a.applyMatrix4(this)},translate:function(){console.error("THREE.Matrix4: .translate() has been removed.")},rotateX:function(){console.error("THREE.Matrix4: .rotateX() has been removed.")},rotateY:function(){console.error("THREE.Matrix4: .rotateY() has been removed.")},rotateZ:function(){console.error("THREE.Matrix4: .rotateZ() has been removed.")},rotateByAxis:function(){console.error("THREE.Matrix4: .rotateByAxis() has been removed.")},applyToBuffer:function(a){console.warn("THREE.Matrix4: .applyToBuffer() has been removed. Use matrix.applyToBufferAttribute( attribute ) instead.");
+return this.applyToBufferAttribute(a)},applyToVector3Array:function(){console.error("THREE.Matrix4: .applyToVector3Array() has been removed.")},makeFrustum:function(a,b,c,d,e,f){console.warn("THREE.Matrix4: .makeFrustum() has been removed. Use .makePerspective( left, right, top, bottom, near, far ) instead.");return this.makePerspective(a,b,d,c,e,f)}});Fa.prototype.isIntersectionLine=function(a){console.warn("THREE.Plane: .isIntersectionLine() has been renamed to .intersectsLine().");return this.intersectsLine(a)};
+ja.prototype.multiplyVector3=function(a){console.warn("THREE.Quaternion: .multiplyVector3() has been removed. Use is now vector.applyQuaternion( quaternion ) instead.");return a.applyQuaternion(this)};Object.assign(qb.prototype,{isIntersectionBox:function(a){console.warn("THREE.Ray: .isIntersectionBox() has been renamed to .intersectsBox().");return this.intersectsBox(a)},isIntersectionPlane:function(a){console.warn("THREE.Ray: .isIntersectionPlane() has been renamed to .intersectsPlane().");return this.intersectsPlane(a)},
+isIntersectionSphere:function(a){console.warn("THREE.Ray: .isIntersectionSphere() has been renamed to .intersectsSphere().");return this.intersectsSphere(a)}});Object.assign(Aa.prototype,{area:function(){console.warn("THREE.Triangle: .area() has been renamed to .getArea().");return this.getArea()},barycoordFromPoint:function(a,b){console.warn("THREE.Triangle: .barycoordFromPoint() has been renamed to .getBarycoord().");return this.getBarycoord(a,b)},midpoint:function(a){console.warn("THREE.Triangle: .midpoint() has been renamed to .getMidpoint().");
+return this.getMidpoint(a)},normal:function(a){console.warn("THREE.Triangle: .normal() has been renamed to .getNormal().");return this.getNormal(a)},plane:function(a){console.warn("THREE.Triangle: .plane() has been renamed to .getPlane().");return this.getPlane(a)}});Object.assign(Aa,{barycoordFromPoint:function(a,b,c,d,e){console.warn("THREE.Triangle: .barycoordFromPoint() has been renamed to .getBarycoord().");return Aa.getBarycoord(a,b,c,d,e)},normal:function(a,b,c,d){console.warn("THREE.Triangle: .normal() has been renamed to .getNormal().");
+return Aa.getNormal(a,b,c,d)}});Object.assign(gb.prototype,{extractAllPoints:function(a){console.warn("THREE.Shape: .extractAllPoints() has been removed. Use .extractPoints() instead.");return this.extractPoints(a)},extrude:function(a){console.warn("THREE.Shape: .extrude() has been removed. Use ExtrudeGeometry() instead.");return new fb(this,a)},makeGeometry:function(a){console.warn("THREE.Shape: .makeGeometry() has been removed. Use ShapeGeometry() instead.");return new vb(this,a)}});Object.assign(C.prototype,
+{fromAttribute:function(a,b,c){console.warn("THREE.Vector2: .fromAttribute() has been renamed to .fromBufferAttribute().");return this.fromBufferAttribute(a,b,c)},distanceToManhattan:function(a){console.warn("THREE.Vector2: .distanceToManhattan() has been renamed to .manhattanDistanceTo().");return this.manhattanDistanceTo(a)},lengthManhattan:function(){console.warn("THREE.Vector2: .lengthManhattan() has been renamed to .manhattanLength().");return this.manhattanLength()}});Object.assign(p.prototype,
+{setEulerFromRotationMatrix:function(){console.error("THREE.Vector3: .setEulerFromRotationMatrix() has been removed. Use Euler.setFromRotationMatrix() instead.")},setEulerFromQuaternion:function(){console.error("THREE.Vector3: .setEulerFromQuaternion() has been removed. Use Euler.setFromQuaternion() instead.")},getPositionFromMatrix:function(a){console.warn("THREE.Vector3: .getPositionFromMatrix() has been renamed to .setFromMatrixPosition().");return this.setFromMatrixPosition(a)},getScaleFromMatrix:function(a){console.warn("THREE.Vector3: .getScaleFromMatrix() has been renamed to .setFromMatrixScale().");
+return this.setFromMatrixScale(a)},getColumnFromMatrix:function(a,b){console.warn("THREE.Vector3: .getColumnFromMatrix() has been renamed to .setFromMatrixColumn().");return this.setFromMatrixColumn(b,a)},applyProjection:function(a){console.warn("THREE.Vector3: .applyProjection() has been removed. Use .applyMatrix4( m ) instead.");return this.applyMatrix4(a)},fromAttribute:function(a,b,c){console.warn("THREE.Vector3: .fromAttribute() has been renamed to .fromBufferAttribute().");return this.fromBufferAttribute(a,
+b,c)},distanceToManhattan:function(a){console.warn("THREE.Vector3: .distanceToManhattan() has been renamed to .manhattanDistanceTo().");return this.manhattanDistanceTo(a)},lengthManhattan:function(){console.warn("THREE.Vector3: .lengthManhattan() has been renamed to .manhattanLength().");return this.manhattanLength()}});Object.assign(ea.prototype,{fromAttribute:function(a,b,c){console.warn("THREE.Vector4: .fromAttribute() has been renamed to .fromBufferAttribute().");return this.fromBufferAttribute(a,
+b,c)},lengthManhattan:function(){console.warn("THREE.Vector4: .lengthManhattan() has been renamed to .manhattanLength().");return this.manhattanLength()}});Object.assign(N.prototype,{computeTangents:function(){console.error("THREE.Geometry: .computeTangents() has been removed.")},computeLineDistances:function(){console.error("THREE.Geometry: .computeLineDistances() has been removed. Use THREE.Line.computeLineDistances() instead.")}});Object.assign(A.prototype,{getChildByName:function(a){console.warn("THREE.Object3D: .getChildByName() has been renamed to .getObjectByName().");
+return this.getObjectByName(a)},renderDepth:function(){console.warn("THREE.Object3D: .renderDepth has been removed. Use .renderOrder, instead.")},translate:function(a,b){console.warn("THREE.Object3D: .translate() has been removed. Use .translateOnAxis( axis, distance ) instead.");return this.translateOnAxis(b,a)},getWorldRotation:function(){console.error("THREE.Object3D: .getWorldRotation() has been removed. Use THREE.Object3D.getWorldQuaternion( target ) instead.")}});Object.defineProperties(A.prototype,
+{eulerOrder:{get:function(){console.warn("THREE.Object3D: .eulerOrder is now .rotation.order.");return this.rotation.order},set:function(a){console.warn("THREE.Object3D: .eulerOrder is now .rotation.order.");this.rotation.order=a}},useQuaternion:{get:function(){console.warn("THREE.Object3D: .useQuaternion has been removed. The library now uses quaternions by default.")},set:function(){console.warn("THREE.Object3D: .useQuaternion has been removed. The library now uses quaternions by default.")}}});
+Object.defineProperties(Bc.prototype,{objects:{get:function(){console.warn("THREE.LOD: .objects has been renamed to .levels.");return this.levels}}});Object.defineProperty(Cc.prototype,"useVertexTexture",{get:function(){console.warn("THREE.Skeleton: useVertexTexture has been removed.")},set:function(){console.warn("THREE.Skeleton: useVertexTexture has been removed.")}});Object.defineProperty(E.prototype,"__arcLengthDivisions",{get:function(){console.warn("THREE.Curve: .__arcLengthDivisions is now .arcLengthDivisions.");
+return this.arcLengthDivisions},set:function(a){console.warn("THREE.Curve: .__arcLengthDivisions is now .arcLengthDivisions.");this.arcLengthDivisions=a}});la.prototype.setLens=function(a,b){console.warn("THREE.PerspectiveCamera.setLens is deprecated. Use .setFocalLength and .filmGauge for a photographic setup.");void 0!==b&&(this.filmGauge=b);this.setFocalLength(a)};Object.defineProperties(ca.prototype,{onlyShadow:{set:function(){console.warn("THREE.Light: .onlyShadow has been removed.")}},shadowCameraFov:{set:function(a){console.warn("THREE.Light: .shadowCameraFov is now .shadow.camera.fov.");
+this.shadow.camera.fov=a}},shadowCameraLeft:{set:function(a){console.warn("THREE.Light: .shadowCameraLeft is now .shadow.camera.left.");this.shadow.camera.left=a}},shadowCameraRight:{set:function(a){console.warn("THREE.Light: .shadowCameraRight is now .shadow.camera.right.");this.shadow.camera.right=a}},shadowCameraTop:{set:function(a){console.warn("THREE.Light: .shadowCameraTop is now .shadow.camera.top.");this.shadow.camera.top=a}},shadowCameraBottom:{set:function(a){console.warn("THREE.Light: .shadowCameraBottom is now .shadow.camera.bottom.");
+this.shadow.camera.bottom=a}},shadowCameraNear:{set:function(a){console.warn("THREE.Light: .shadowCameraNear is now .shadow.camera.near.");this.shadow.camera.near=a}},shadowCameraFar:{set:function(a){console.warn("THREE.Light: .shadowCameraFar is now .shadow.camera.far.");this.shadow.camera.far=a}},shadowCameraVisible:{set:function(){console.warn("THREE.Light: .shadowCameraVisible has been removed. Use new THREE.CameraHelper( light.shadow.camera ) instead.")}},shadowBias:{set:function(a){console.warn("THREE.Light: .shadowBias is now .shadow.bias.");
+this.shadow.bias=a}},shadowDarkness:{set:function(){console.warn("THREE.Light: .shadowDarkness has been removed.")}},shadowMapWidth:{set:function(a){console.warn("THREE.Light: .shadowMapWidth is now .shadow.mapSize.width.");this.shadow.mapSize.width=a}},shadowMapHeight:{set:function(a){console.warn("THREE.Light: .shadowMapHeight is now .shadow.mapSize.height.");this.shadow.mapSize.height=a}}});Object.defineProperties(T.prototype,{length:{get:function(){console.warn("THREE.BufferAttribute: .length has been deprecated. Use .count instead.");
+return this.array.length}},copyIndicesArray:function(){console.error("THREE.BufferAttribute: .copyIndicesArray() has been removed.")}});Object.assign(F.prototype,{addIndex:function(a){console.warn("THREE.BufferGeometry: .addIndex() has been renamed to .setIndex().");this.setIndex(a)},addDrawCall:function(a,b,c){void 0!==c&&console.warn("THREE.BufferGeometry: .addDrawCall() no longer supports indexOffset.");console.warn("THREE.BufferGeometry: .addDrawCall() is now .addGroup().");this.addGroup(a,b)},
+clearDrawCalls:function(){console.warn("THREE.BufferGeometry: .clearDrawCalls() is now .clearGroups().");this.clearGroups()},computeTangents:function(){console.warn("THREE.BufferGeometry: .computeTangents() has been removed.")},computeOffsets:function(){console.warn("THREE.BufferGeometry: .computeOffsets() has been removed.")}});Object.defineProperties(F.prototype,{drawcalls:{get:function(){console.error("THREE.BufferGeometry: .drawcalls has been renamed to .groups.");return this.groups}},offsets:{get:function(){console.warn("THREE.BufferGeometry: .offsets has been renamed to .groups.");
+return this.groups}}});Object.defineProperties(Nd.prototype,{dynamic:{set:function(){console.warn("THREE.Uniform: .dynamic has been removed. Use object.onBeforeRender() instead.")}},onUpdate:{value:function(){console.warn("THREE.Uniform: .onUpdate() has been removed. Use object.onBeforeRender() instead.");return this}}});Object.defineProperties(O.prototype,{wrapAround:{get:function(){console.warn("THREE.Material: .wrapAround has been removed.")},set:function(){console.warn("THREE.Material: .wrapAround has been removed.")}},
+wrapRGB:{get:function(){console.warn("THREE.Material: .wrapRGB has been removed.");return new I}},shading:{get:function(){console.error("THREE."+this.type+": .shading has been removed. Use the boolean .flatShading instead.")},set:function(a){console.warn("THREE."+this.type+": .shading has been removed. Use the boolean .flatShading instead.");this.flatShading=1===a}}});Object.defineProperties(Ja.prototype,{metal:{get:function(){console.warn("THREE.MeshPhongMaterial: .metal has been removed. Use THREE.MeshStandardMaterial instead.");
+return!1},set:function(){console.warn("THREE.MeshPhongMaterial: .metal has been removed. Use THREE.MeshStandardMaterial instead")}}});Object.defineProperties(va.prototype,{derivatives:{get:function(){console.warn("THREE.ShaderMaterial: .derivatives has been moved to .extensions.derivatives.");return this.extensions.derivatives},set:function(a){console.warn("THREE. ShaderMaterial: .derivatives has been moved to .extensions.derivatives.");this.extensions.derivatives=a}}});Object.assign(Xd.prototype,
+{getCurrentRenderTarget:function(){console.warn("THREE.WebGLRenderer: .getCurrentRenderTarget() is now .getRenderTarget().");return this.getRenderTarget()},getMaxAnisotropy:function(){console.warn("THREE.WebGLRenderer: .getMaxAnisotropy() is now .capabilities.getMaxAnisotropy().");return this.capabilities.getMaxAnisotropy()},getPrecision:function(){console.warn("THREE.WebGLRenderer: .getPrecision() is now .capabilities.precision.");return this.capabilities.precision},resetGLState:function(){console.warn("THREE.WebGLRenderer: .resetGLState() is now .state.reset().");
+return this.state.reset()},supportsFloatTextures:function(){console.warn("THREE.WebGLRenderer: .supportsFloatTextures() is now .extensions.get( 'OES_texture_float' ).");return this.extensions.get("OES_texture_float")},supportsHalfFloatTextures:function(){console.warn("THREE.WebGLRenderer: .supportsHalfFloatTextures() is now .extensions.get( 'OES_texture_half_float' ).");return this.extensions.get("OES_texture_half_float")},supportsStandardDerivatives:function(){console.warn("THREE.WebGLRenderer: .supportsStandardDerivatives() is now .extensions.get( 'OES_standard_derivatives' ).");
+return this.extensions.get("OES_standard_derivatives")},supportsCompressedTextureS3TC:function(){console.warn("THREE.WebGLRenderer: .supportsCompressedTextureS3TC() is now .extensions.get( 'WEBGL_compressed_texture_s3tc' ).");return this.extensions.get("WEBGL_compressed_texture_s3tc")},supportsCompressedTexturePVRTC:function(){console.warn("THREE.WebGLRenderer: .supportsCompressedTexturePVRTC() is now .extensions.get( 'WEBGL_compressed_texture_pvrtc' ).");return this.extensions.get("WEBGL_compressed_texture_pvrtc")},
+supportsBlendMinMax:function(){console.warn("THREE.WebGLRenderer: .supportsBlendMinMax() is now .extensions.get( 'EXT_blend_minmax' ).");return this.extensions.get("EXT_blend_minmax")},supportsVertexTextures:function(){console.warn("THREE.WebGLRenderer: .supportsVertexTextures() is now .capabilities.vertexTextures.");return this.capabilities.vertexTextures},supportsInstancedArrays:function(){console.warn("THREE.WebGLRenderer: .supportsInstancedArrays() is now .extensions.get( 'ANGLE_instanced_arrays' ).");
+return this.extensions.get("ANGLE_instanced_arrays")},enableScissorTest:function(a){console.warn("THREE.WebGLRenderer: .enableScissorTest() is now .setScissorTest().");this.setScissorTest(a)},initMaterial:function(){console.warn("THREE.WebGLRenderer: .initMaterial() has been removed.")},addPrePlugin:function(){console.warn("THREE.WebGLRenderer: .addPrePlugin() has been removed.")},addPostPlugin:function(){console.warn("THREE.WebGLRenderer: .addPostPlugin() has been removed.")},updateShadowMap:function(){console.warn("THREE.WebGLRenderer: .updateShadowMap() has been removed.")},
+setFaceCulling:function(){console.warn("THREE.WebGLRenderer: .setFaceCulling() has been removed.")}});Object.defineProperties(Xd.prototype,{shadowMapEnabled:{get:function(){return this.shadowMap.enabled},set:function(a){console.warn("THREE.WebGLRenderer: .shadowMapEnabled is now .shadowMap.enabled.");this.shadowMap.enabled=a}},shadowMapType:{get:function(){return this.shadowMap.type},set:function(a){console.warn("THREE.WebGLRenderer: .shadowMapType is now .shadowMap.type.");this.shadowMap.type=a}},
+shadowMapCullFace:{get:function(){console.warn("THREE.WebGLRenderer: .shadowMapCullFace has been removed. Set Material.shadowSide instead.")},set:function(){console.warn("THREE.WebGLRenderer: .shadowMapCullFace has been removed. Set Material.shadowSide instead.")}}});Object.defineProperties(Ue.prototype,{cullFace:{get:function(){console.warn("THREE.WebGLRenderer: .shadowMap.cullFace has been removed. Set Material.shadowSide instead.")},set:function(){console.warn("THREE.WebGLRenderer: .shadowMap.cullFace has been removed. Set Material.shadowSide instead.")}},
+renderReverseSided:{get:function(){console.warn("THREE.WebGLRenderer: .shadowMap.renderReverseSided has been removed. Set Material.shadowSide instead.")},set:function(){console.warn("THREE.WebGLRenderer: .shadowMap.renderReverseSided has been removed. Set Material.shadowSide instead.")}},renderSingleSided:{get:function(){console.warn("THREE.WebGLRenderer: .shadowMap.renderSingleSided has been removed. Set Material.shadowSide instead.")},set:function(){console.warn("THREE.WebGLRenderer: .shadowMap.renderSingleSided has been removed. Set Material.shadowSide instead.")}}});
+Object.defineProperties(hb.prototype,{wrapS:{get:function(){console.warn("THREE.WebGLRenderTarget: .wrapS is now .texture.wrapS.");return this.texture.wrapS},set:function(a){console.warn("THREE.WebGLRenderTarget: .wrapS is now .texture.wrapS.");this.texture.wrapS=a}},wrapT:{get:function(){console.warn("THREE.WebGLRenderTarget: .wrapT is now .texture.wrapT.");return this.texture.wrapT},set:function(a){console.warn("THREE.WebGLRenderTarget: .wrapT is now .texture.wrapT.");this.texture.wrapT=a}},magFilter:{get:function(){console.warn("THREE.WebGLRenderTarget: .magFilter is now .texture.magFilter.");
+return this.texture.magFilter},set:function(a){console.warn("THREE.WebGLRenderTarget: .magFilter is now .texture.magFilter.");this.texture.magFilter=a}},minFilter:{get:function(){console.warn("THREE.WebGLRenderTarget: .minFilter is now .texture.minFilter.");return this.texture.minFilter},set:function(a){console.warn("THREE.WebGLRenderTarget: .minFilter is now .texture.minFilter.");this.texture.minFilter=a}},anisotropy:{get:function(){console.warn("THREE.WebGLRenderTarget: .anisotropy is now .texture.anisotropy.");
+return this.texture.anisotropy},set:function(a){console.warn("THREE.WebGLRenderTarget: .anisotropy is now .texture.anisotropy.");this.texture.anisotropy=a}},offset:{get:function(){console.warn("THREE.WebGLRenderTarget: .offset is now .texture.offset.");return this.texture.offset},set:function(a){console.warn("THREE.WebGLRenderTarget: .offset is now .texture.offset.");this.texture.offset=a}},repeat:{get:function(){console.warn("THREE.WebGLRenderTarget: .repeat is now .texture.repeat.");return this.texture.repeat},
+set:function(a){console.warn("THREE.WebGLRenderTarget: .repeat is now .texture.repeat.");this.texture.repeat=a}},format:{get:function(){console.warn("THREE.WebGLRenderTarget: .format is now .texture.format.");return this.texture.format},set:function(a){console.warn("THREE.WebGLRenderTarget: .format is now .texture.format.");this.texture.format=a}},type:{get:function(){console.warn("THREE.WebGLRenderTarget: .type is now .texture.type.");return this.texture.type},set:function(a){console.warn("THREE.WebGLRenderTarget: .type is now .texture.type.");
+this.texture.type=a}},generateMipmaps:{get:function(){console.warn("THREE.WebGLRenderTarget: .generateMipmaps is now .texture.generateMipmaps.");return this.texture.generateMipmaps},set:function(a){console.warn("THREE.WebGLRenderTarget: .generateMipmaps is now .texture.generateMipmaps.");this.texture.generateMipmaps=a}}});Object.defineProperties(We.prototype,{standing:{set:function(){console.warn("THREE.WebVRManager: .standing has been removed.")}}});jc.prototype.load=function(a){console.warn("THREE.Audio: .load has been deprecated. Use THREE.AudioLoader instead.");
+var b=this;(new je).load(a,function(a){b.setBuffer(a)});return this};ne.prototype.getData=function(){console.warn("THREE.AudioAnalyser: .getData() is now .getFrequencyData().");return this.getFrequencyData()};cd.prototype.updateCubeMap=function(a,b){console.warn("THREE.CubeCamera: .updateCubeMap() is now .update().");return this.update(a,b)};k.WebGLRenderTargetCube=Ib;k.WebGLRenderTarget=hb;k.WebGLRenderer=Xd;k.ShaderLib=rb;k.UniformsLib=L;k.UniformsUtils=Da;k.ShaderChunk=V;k.FogExp2=Ob;k.Fog=Pb;
+k.Scene=rd;k.Sprite=Ac;k.LOD=Bc;k.SkinnedMesh=td;k.Skeleton=Cc;k.Bone=sd;k.Mesh=oa;k.LineSegments=aa;k.LineLoop=ud;k.Line=ua;k.Points=Qb;k.Group=vd;k.VideoTexture=Yd;k.DataTexture=ib;k.CompressedTexture=Rb;k.CubeTexture=ab;k.CanvasTexture=zc;k.DepthTexture=Dc;k.Texture=Y;k.CompressedTextureLoader=df;k.DataTextureLoader=be;k.CubeTextureLoader=ce;k.TextureLoader=xd;k.ObjectLoader=ff;k.MaterialLoader=Md;k.BufferGeometryLoader=ee;k.DefaultLoadingManager=ma;k.LoadingManager=ae;k.JSONLoader=fe;k.ImageLoader=
+Yc;k.ImageBitmapLoader=ge;k.FontLoader=gf;k.FileLoader=Ka;k.Loader=ic;k.LoaderUtils=Be;k.Cache=Hb;k.AudioLoader=je;k.SpotLightShadow=zd;k.SpotLight=Ad;k.PointLight=Bd;k.RectAreaLight=Fd;k.HemisphereLight=yd;k.DirectionalLightShadow=Cd;k.DirectionalLight=Dd;k.AmbientLight=Ed;k.LightShadow=Eb;k.Light=ca;k.StereoCamera=hf;k.PerspectiveCamera=la;k.OrthographicCamera=Jb;k.CubeCamera=cd;k.ArrayCamera=qd;k.Camera=Qa;k.AudioListener=ke;k.PositionalAudio=me;k.AudioContext=le;k.AudioAnalyser=ne;k.Audio=jc;
+k.VectorKeyframeTrack=hc;k.StringKeyframeTrack=Gd;k.QuaternionKeyframeTrack=ad;k.NumberKeyframeTrack=gc;k.ColorKeyframeTrack=Jd;k.BooleanKeyframeTrack=Hd;k.PropertyMixer=oe;k.PropertyBinding=qa;k.KeyframeTrack=da;k.AnimationUtils=fa;k.AnimationObjectGroup=kf;k.AnimationMixer=pe;k.AnimationClip=Ba;k.Uniform=Nd;k.InstancedBufferGeometry=qe;k.BufferGeometry=F;k.Geometry=N;k.InterleavedBufferAttribute=re;k.InstancedInterleavedBuffer=se;k.InterleavedBuffer=kc;k.InstancedBufferAttribute=te;k.Face3=Wa;k.Object3D=
+A;k.Raycaster=mf;k.Layers=Sd;k.EventDispatcher=xa;k.Clock=of;k.QuaternionLinearInterpolant=Id;k.LinearInterpolant=bd;k.DiscreteInterpolant=Ld;k.CubicInterpolant=Kd;k.Interpolant=na;k.Triangle=Aa;k.Math=S;k.Spherical=pf;k.Cylindrical=qf;k.Plane=Fa;k.Frustum=ld;k.Sphere=Ea;k.Ray=qb;k.Matrix4=M;k.Matrix3=sa;k.Box3=Va;k.Box2=ve;k.Line3=Lb;k.Euler=jb;k.Vector4=ea;k.Vector3=p;k.Vector2=C;k.Quaternion=ja;k.Color=I;k.ImmediateRenderObject=dd;k.VertexNormalsHelper=ed;k.SpotLightHelper=lc;k.SkeletonHelper=
+mc;k.PointLightHelper=nc;k.RectAreaLightHelper=oc;k.HemisphereLightHelper=pc;k.GridHelper=fd;k.PolarGridHelper=Od;k.FaceNormalsHelper=gd;k.DirectionalLightHelper=qc;k.CameraHelper=hd;k.BoxHelper=Fb;k.Box3Helper=id;k.PlaneHelper=jd;k.ArrowHelper=Gb;k.AxesHelper=kd;k.Shape=gb;k.Path=Pa;k.ShapePath=he;k.Font=ie;k.CurvePath=Za;k.Curve=E;k.ShapeUtils=Xa;k.WebGLUtils=Ve;k.WireframeGeometry=Sb;k.ParametricGeometry=Ec;k.ParametricBufferGeometry=Tb;k.TetrahedronGeometry=Gc;k.TetrahedronBufferGeometry=Ub;k.OctahedronGeometry=
+Hc;k.OctahedronBufferGeometry=sb;k.IcosahedronGeometry=Ic;k.IcosahedronBufferGeometry=Vb;k.DodecahedronGeometry=Jc;k.DodecahedronBufferGeometry=Wb;k.PolyhedronGeometry=Fc;k.PolyhedronBufferGeometry=pa;k.TubeGeometry=Kc;k.TubeBufferGeometry=Xb;k.TorusKnotGeometry=Lc;k.TorusKnotBufferGeometry=Yb;k.TorusGeometry=Mc;k.TorusBufferGeometry=Zb;k.TextGeometry=Rc;k.TextBufferGeometry=$b;k.SphereGeometry=Sc;k.SphereBufferGeometry=ub;k.RingGeometry=Tc;k.RingBufferGeometry=ac;k.PlaneGeometry=xc;k.PlaneBufferGeometry=
+pb;k.LatheGeometry=Uc;k.LatheBufferGeometry=bc;k.ShapeGeometry=vb;k.ShapeBufferGeometry=wb;k.ExtrudeGeometry=fb;k.ExtrudeBufferGeometry=Ia;k.EdgesGeometry=cc;k.ConeGeometry=Vc;k.ConeBufferGeometry=Wc;k.CylinderGeometry=xb;k.CylinderBufferGeometry=Ya;k.CircleGeometry=Xc;k.CircleBufferGeometry=dc;k.BoxGeometry=Kb;k.BoxBufferGeometry=mb;k.ShadowMaterial=yb;k.SpriteMaterial=eb;k.RawShaderMaterial=ec;k.ShaderMaterial=va;k.PointsMaterial=Ha;k.MeshPhysicalMaterial=zb;k.MeshStandardMaterial=Sa;k.MeshPhongMaterial=
+Ja;k.MeshToonMaterial=Ab;k.MeshNormalMaterial=Bb;k.MeshLambertMaterial=Cb;k.MeshDepthMaterial=cb;k.MeshDistanceMaterial=db;k.MeshBasicMaterial=za;k.LineDashedMaterial=Db;k.LineBasicMaterial=U;k.Material=O;k.Float64BufferAttribute=wc;k.Float32BufferAttribute=z;k.Uint32BufferAttribute=lb;k.Int32BufferAttribute=vc;k.Uint16BufferAttribute=kb;k.Int16BufferAttribute=uc;k.Uint8ClampedBufferAttribute=tc;k.Uint8BufferAttribute=sc;k.Int8BufferAttribute=rc;k.BufferAttribute=T;k.ArcCurve=fc;k.CatmullRomCurve3=
+X;k.CubicBezierCurve=La;k.CubicBezierCurve3=Ta;k.EllipseCurve=ia;k.LineCurve=wa;k.LineCurve3=Ma;k.QuadraticBezierCurve=Na;k.QuadraticBezierCurve3=Ua;k.SplineCurve=Oa;k.REVISION="91";k.MOUSE={LEFT:0,MIDDLE:1,RIGHT:2};k.CullFaceNone=0;k.CullFaceBack=1;k.CullFaceFront=2;k.CullFaceFrontBack=3;k.FrontFaceDirectionCW=0;k.FrontFaceDirectionCCW=1;k.BasicShadowMap=0;k.PCFShadowMap=1;k.PCFSoftShadowMap=2;k.FrontSide=0;k.BackSide=1;k.DoubleSide=2;k.FlatShading=1;k.SmoothShading=2;k.NoColors=0;k.FaceColors=1;
+k.VertexColors=2;k.NoBlending=0;k.NormalBlending=1;k.AdditiveBlending=2;k.SubtractiveBlending=3;k.MultiplyBlending=4;k.CustomBlending=5;k.AddEquation=100;k.SubtractEquation=101;k.ReverseSubtractEquation=102;k.MinEquation=103;k.MaxEquation=104;k.ZeroFactor=200;k.OneFactor=201;k.SrcColorFactor=202;k.OneMinusSrcColorFactor=203;k.SrcAlphaFactor=204;k.OneMinusSrcAlphaFactor=205;k.DstAlphaFactor=206;k.OneMinusDstAlphaFactor=207;k.DstColorFactor=208;k.OneMinusDstColorFactor=209;k.SrcAlphaSaturateFactor=
+210;k.NeverDepth=0;k.AlwaysDepth=1;k.LessDepth=2;k.LessEqualDepth=3;k.EqualDepth=4;k.GreaterEqualDepth=5;k.GreaterDepth=6;k.NotEqualDepth=7;k.MultiplyOperation=0;k.MixOperation=1;k.AddOperation=2;k.NoToneMapping=0;k.LinearToneMapping=1;k.ReinhardToneMapping=2;k.Uncharted2ToneMapping=3;k.CineonToneMapping=4;k.UVMapping=300;k.CubeReflectionMapping=301;k.CubeRefractionMapping=302;k.EquirectangularReflectionMapping=303;k.EquirectangularRefractionMapping=304;k.SphericalReflectionMapping=305;k.CubeUVReflectionMapping=
+306;k.CubeUVRefractionMapping=307;k.RepeatWrapping=1E3;k.ClampToEdgeWrapping=1001;k.MirroredRepeatWrapping=1002;k.NearestFilter=1003;k.NearestMipMapNearestFilter=1004;k.NearestMipMapLinearFilter=1005;k.LinearFilter=1006;k.LinearMipMapNearestFilter=1007;k.LinearMipMapLinearFilter=1008;k.UnsignedByteType=1009;k.ByteType=1010;k.ShortType=1011;k.UnsignedShortType=1012;k.IntType=1013;k.UnsignedIntType=1014;k.FloatType=1015;k.HalfFloatType=1016;k.UnsignedShort4444Type=1017;k.UnsignedShort5551Type=1018;
+k.UnsignedShort565Type=1019;k.UnsignedInt248Type=1020;k.AlphaFormat=1021;k.RGBFormat=1022;k.RGBAFormat=1023;k.LuminanceFormat=1024;k.LuminanceAlphaFormat=1025;k.RGBEFormat=1023;k.DepthFormat=1026;k.DepthStencilFormat=1027;k.RGB_S3TC_DXT1_Format=33776;k.RGBA_S3TC_DXT1_Format=33777;k.RGBA_S3TC_DXT3_Format=33778;k.RGBA_S3TC_DXT5_Format=33779;k.RGB_PVRTC_4BPPV1_Format=35840;k.RGB_PVRTC_2BPPV1_Format=35841;k.RGBA_PVRTC_4BPPV1_Format=35842;k.RGBA_PVRTC_2BPPV1_Format=35843;k.RGB_ETC1_Format=36196;k.RGBA_ASTC_4x4_Format=
+37808;k.RGBA_ASTC_5x4_Format=37809;k.RGBA_ASTC_5x5_Format=37810;k.RGBA_ASTC_6x5_Format=37811;k.RGBA_ASTC_6x6_Format=37812;k.RGBA_ASTC_8x5_Format=37813;k.RGBA_ASTC_8x6_Format=37814;k.RGBA_ASTC_8x8_Format=37815;k.RGBA_ASTC_10x5_Format=37816;k.RGBA_ASTC_10x6_Format=37817;k.RGBA_ASTC_10x8_Format=37818;k.RGBA_ASTC_10x10_Format=37819;k.RGBA_ASTC_12x10_Format=37820;k.RGBA_ASTC_12x12_Format=37821;k.LoopOnce=2200;k.LoopRepeat=2201;k.LoopPingPong=2202;k.InterpolateDiscrete=2300;k.InterpolateLinear=2301;k.InterpolateSmooth=
+2302;k.ZeroCurvatureEnding=2400;k.ZeroSlopeEnding=2401;k.WrapAroundEnding=2402;k.TrianglesDrawMode=0;k.TriangleStripDrawMode=1;k.TriangleFanDrawMode=2;k.LinearEncoding=3E3;k.sRGBEncoding=3001;k.GammaEncoding=3007;k.RGBEEncoding=3002;k.LogLuvEncoding=3003;k.RGBM7Encoding=3004;k.RGBM16Encoding=3005;k.RGBDEncoding=3006;k.BasicDepthPacking=3200;k.RGBADepthPacking=3201;k.CubeGeometry=Kb;k.Face4=function(a,b,c,d,e,f,g){console.warn("THREE.Face4 has been removed. A THREE.Face3 will be created instead.");
+return new Wa(a,b,c,e,f,g)};k.LineStrip=0;k.LinePieces=1;k.MeshFaceMaterial=function(a){console.warn("THREE.MeshFaceMaterial has been removed. Use an Array instead.");return a};k.MultiMaterial=function(a){void 0===a&&(a=[]);console.warn("THREE.MultiMaterial has been removed. Use an Array instead.");a.isMultiMaterial=!0;a.materials=a;a.clone=function(){return a.slice()};return a};k.PointCloud=function(a,b){console.warn("THREE.PointCloud has been renamed to THREE.Points.");return new Qb(a,b)};k.Particle=
+function(a){console.warn("THREE.Particle has been renamed to THREE.Sprite.");return new Ac(a)};k.ParticleSystem=function(a,b){console.warn("THREE.ParticleSystem has been renamed to THREE.Points.");return new Qb(a,b)};k.PointCloudMaterial=function(a){console.warn("THREE.PointCloudMaterial has been renamed to THREE.PointsMaterial.");return new Ha(a)};k.ParticleBasicMaterial=function(a){console.warn("THREE.ParticleBasicMaterial has been renamed to THREE.PointsMaterial.");return new Ha(a)};k.ParticleSystemMaterial=
+function(a){console.warn("THREE.ParticleSystemMaterial has been renamed to THREE.PointsMaterial.");return new Ha(a)};k.Vertex=function(a,b,c){console.warn("THREE.Vertex has been removed. Use THREE.Vector3 instead.");return new p(a,b,c)};k.DynamicBufferAttribute=function(a,b){console.warn("THREE.DynamicBufferAttribute has been removed. Use new THREE.BufferAttribute().setDynamic( true ) instead.");return(new T(a,b)).setDynamic(!0)};k.Int8Attribute=function(a,b){console.warn("THREE.Int8Attribute has been removed. Use new THREE.Int8BufferAttribute() instead.");
+return new rc(a,b)};k.Uint8Attribute=function(a,b){console.warn("THREE.Uint8Attribute has been removed. Use new THREE.Uint8BufferAttribute() instead.");return new sc(a,b)};k.Uint8ClampedAttribute=function(a,b){console.warn("THREE.Uint8ClampedAttribute has been removed. Use new THREE.Uint8ClampedBufferAttribute() instead.");return new tc(a,b)};k.Int16Attribute=function(a,b){console.warn("THREE.Int16Attribute has been removed. Use new THREE.Int16BufferAttribute() instead.");return new uc(a,b)};k.Uint16Attribute=
+function(a,b){console.warn("THREE.Uint16Attribute has been removed. Use new THREE.Uint16BufferAttribute() instead.");return new kb(a,b)};k.Int32Attribute=function(a,b){console.warn("THREE.Int32Attribute has been removed. Use new THREE.Int32BufferAttribute() instead.");return new vc(a,b)};k.Uint32Attribute=function(a,b){console.warn("THREE.Uint32Attribute has been removed. Use new THREE.Uint32BufferAttribute() instead.");return new lb(a,b)};k.Float32Attribute=function(a,b){console.warn("THREE.Float32Attribute has been removed. Use new THREE.Float32BufferAttribute() instead.");
+return new z(a,b)};k.Float64Attribute=function(a,b){console.warn("THREE.Float64Attribute has been removed. Use new THREE.Float64BufferAttribute() instead.");return new wc(a,b)};k.ClosedSplineCurve3=sf;k.SplineCurve3=tf;k.Spline=xe;k.AxisHelper=function(a){console.warn("THREE.AxisHelper has been renamed to THREE.AxesHelper.");return new kd(a)};k.BoundingBoxHelper=function(a,b){console.warn("THREE.BoundingBoxHelper has been deprecated. Creating a THREE.BoxHelper instead.");return new Fb(a,b)};k.EdgesHelper=
+function(a,b){console.warn("THREE.EdgesHelper has been removed. Use THREE.EdgesGeometry instead.");return new aa(new cc(a.geometry),new U({color:void 0!==b?b:16777215}))};k.WireframeHelper=function(a,b){console.warn("THREE.WireframeHelper has been removed. Use THREE.WireframeGeometry instead.");return new aa(new Sb(a.geometry),new U({color:void 0!==b?b:16777215}))};k.XHRLoader=function(a){console.warn("THREE.XHRLoader has been renamed to THREE.FileLoader.");return new Ka(a)};k.BinaryTextureLoader=
+function(a){console.warn("THREE.BinaryTextureLoader has been renamed to THREE.DataTextureLoader.");return new be(a)};k.GeometryUtils={merge:function(a,b,c){console.warn("THREE.GeometryUtils: .merge() has been moved to Geometry. Use geometry.merge( geometry2, matrix, materialIndexOffset ) instead.");if(b.isMesh){b.matrixAutoUpdate&&b.updateMatrix();var d=b.matrix;b=b.geometry}a.merge(b,d,c)},center:function(a){console.warn("THREE.GeometryUtils: .center() has been moved to Geometry. Use geometry.center() instead.");
+return a.center()}};k.ImageUtils={crossOrigin:void 0,loadTexture:function(a,b,c,d){console.warn("THREE.ImageUtils.loadTexture has been deprecated. Use THREE.TextureLoader() instead.");var e=new xd;e.setCrossOrigin(this.crossOrigin);a=e.load(a,c,void 0,d);b&&(a.mapping=b);return a},loadTextureCube:function(a,b,c,d){console.warn("THREE.ImageUtils.loadTextureCube has been deprecated. Use THREE.CubeTextureLoader() instead.");var e=new ce;e.setCrossOrigin(this.crossOrigin);a=e.load(a,c,void 0,d);b&&(a.mapping=
+b);return a},loadCompressedTexture:function(){console.error("THREE.ImageUtils.loadCompressedTexture has been removed. Use THREE.DDSLoader instead.")},loadCompressedTextureCube:function(){console.error("THREE.ImageUtils.loadCompressedTextureCube has been removed. Use THREE.DDSLoader instead.")}};k.Projector=function(){console.error("THREE.Projector has been moved to /examples/js/renderers/Projector.js.");this.projectVector=function(a,b){console.warn("THREE.Projector: .projectVector() is now vector.project().");
+a.project(b)};this.unprojectVector=function(a,b){console.warn("THREE.Projector: .unprojectVector() is now vector.unproject().");a.unproject(b)};this.pickingRay=function(){console.error("THREE.Projector: .pickingRay() is now raycaster.setFromCamera().")}};k.CanvasRenderer=function(){console.error("THREE.CanvasRenderer has been moved to /examples/js/renderers/CanvasRenderer.js");this.domElement=document.createElementNS("http://www.w3.org/1999/xhtml","canvas");this.clear=function(){};this.render=function(){};
+this.setClearColor=function(){};this.setSize=function(){}};k.SceneUtils={createMultiMaterialObject:function(){console.error("THREE.SceneUtils has been moved to /examples/js/utils/SceneUtils.js")},detach:function(){console.error("THREE.SceneUtils has been moved to /examples/js/utils/SceneUtils.js")},attach:function(){console.error("THREE.SceneUtils has been moved to /examples/js/utils/SceneUtils.js")}};k.LensFlare=function(){console.error("THREE.LensFlare has been moved to /examples/js/objects/Lensflare.js")};
+Object.defineProperty(k,"__esModule",{value:!0})});
diff --git a/oxAuth/Server/src/main/webapp/auth/bioid/js/uui.js b/oxAuth/Server/src/main/webapp/auth/bioid/js/uui.js
new file mode 100644
index 00000000..4e93ecb0
--- /dev/null
+++ b/oxAuth/Server/src/main/webapp/auth/bioid/js/uui.js
@@ -0,0 +1,772 @@
+
+
+
+            // BWS capture jQuery plugin
+        var bwsCapture = null;
+
+        // counter for current execution
+        var currentExecution = 0;
+
+        var currentTag = '';
+        var parentTag = '';
+
+        // enrollment without challenge response
+        var enrollmentTags = ['left', 'right', 'right', 'left', 'up', 'down', 'down', 'up'];
+        var predefinedTags = ['left', 'right', 'up', 'down'];
+
+        // map for the compact upload
+        var progressMap = new Map();
+
+        // localized messages (english defaults, might get overloaded in
+		// initialize())
+        var localizedData = {
+              "titleEnrollment": "Enrollment",
+              "titleVerification": "Verification",
+              "titleIdentification": "Identification",
+              "titleLiveDetection": "Liveness Detection",
+
+              "introductionTitle": "How it works",
+              "introductionStep1": "Step 1",
+              "introductionStep1Desc1": "Before you start",
+              "introductionStep1Desc2": "come closer to the camera",
+              "introductionTooFarAway": "Too far away!",
+              "introductionTooClose": "Too close!",
+              "introductionPerfect": "Perfect!",
+              "introductionStep2": "Step 2",
+              "introductionStep2Desc1": "For Liveness Detection",
+              "introductionStep2Desc2": "nod your head slightly",
+              "introductionDontMoveDevice": "Please don't move the device!",
+              "introductionDontShowAgain": "GOT IT! Don't show the instruction again",
+
+              "buttonCancel": "back",
+              "buttonCancel.title": "Abort and navigate back to caller",
+              "buttonReadyToStart": "I'm ready to start",
+              "buttonContinue": "Skip biometrics",
+              "buttonMobileApp": "Start BioID app",
+
+              "prompt": "It seems like we don't have access to the camera. For performing biometric operations, please try the following:<br/>- Grant access to the camera.<br/>- Use a different browser (e.g. the most recent versions of Opera, Firefox, Chrome or Edge).",
+              "mobileapp": "If you have installed the BioID App on your mobile device, you can use this app for enrollment or verification.",
+
+              "uploadInfo": "Uploading...",
+
+              "capture-error": "We could not capture an image.<br />Sorry, but without access to the camera, facial recognition and liveness detection aren't possible!",
+              "nogetUserMedia": "Your browser does not support the HTML5 Media Capture and Streams API. Please use a different browser or the BioID mobile app.",
+              "permissionDenied": "Permission Denied!",
+              "webgl-error": "WebGL is disabled or unavailable. If possible activate WebGL or use another browser.",
+
+              "UserInstruction-CloseUp": "Come close before you start",
+              "UserInstruction-NodYourHead": "Please nod your head",
+              "UserInstruction-FollowMe": "Follow the blue head",
+              "UserInstruction-NoMovement": "Follow the head's movement",
+              "UserInstruction-PleaseWait": "Please wait",
+
+              "Perform-enrollment": "Training...",
+              "Perform-verification": "Verifying...",
+              "Perform-identification": "Identifying...",
+              "Perform-livenessdetection": "Processing...",
+
+              "NoMotionDetected": "We could not detect any motion.<br/>For Liveness Detection please nod your head slightly.",
+              "NoFaceFound": "We could not find a suitable face.<br/>Come close and look straight before you start.",
+              "MultipleFacesFound": "We found multiple faces or a strongly uneven background distracted us.<br/>Your face should fill the circle completely.",
+              "LiveDetectionFailed": "Liveness Detection failed.<br/>Look straight into the camera, then nod your head slightly.<br/>Please ensure constant lighting.",
+              "ChallengeResponseFailed": "Challenge-Response failed!<br/>Slowly follow the head's movement.",
+              "NotRecognized": "You have not been recognized!<br/>Please ensure constant lighting. For improving recognition, please enroll again."
+        };
+
+        /*
+		 * ----------------- Set button functionality
+		 * ------------------------------------------
+		 */
+
+
+        // jQuery - shortcut for $(document).ready()
+        // Document Object Model (DOM) is ready
+        
+
+        function showIntroduction(show) {
+            if (show) {
+                $('#uuiintroduction').show();
+            }
+            else {
+                $('#uuiintroduction').hide();
+                $('#uuiwepapp').show();
+                initCapture();
+
+                let checked = $('#introskip').prop("checked");
+                if (checked) {
+                    skipIntro = true;
+                    // set cookie (1 year) to skip the introduction for the next
+					// time
+                    // document.cookie =
+					// "BioIDSkipIntro=true;max-age=31536000;path=/";
+                }
+            }
+        }
+
+        function initCapture() {
+            // init BWS capture jQuery plugin (see bws.capture.js)
+            bwsCapture = bws.initcapture(document.getElementById('uuicanvas'), document.getElementById('livevideo'), token, {
+                apiurl: apiurl,
+                task: task,
+                trait: trait,
+                threshold: threshold,
+                challengeResponse: challengeResponse,
+                recordings: recordings,
+                maxheight: maxHeight
+            });
+            let success = initHead();
+            if (!success) {
+                $('#uuierror').html(formatText('webgl-error'));
+                $('#uuiskip').show();
+            }
+            else {
+                // and start everything
+                onStart();
+            }
+        }
+
+        // called from Start button and onStart to initiate a new recording
+        function startRecording() {
+          $('#uuistart').attr('disabled', 'disabled');
+          var tags = challengeResponse && challenges.length > currentExecution && challenges[currentExecution].length > 0 ? challenges[currentExecution] : [];
+          bwsCapture.startRecording(tags);
+        }
+
+        // called from Mirror button to mirror the captured image
+        function mirror() {
+            bwsCapture.mirror();
+        }
+
+
+        /*
+		 * ---------------- Localization of strings
+		 * ----------------------------------------------
+		 */
+
+
+        // localization of displayed strings
+        function localize() {
+            // loops through all HTML elements that must be localized.
+            let resourceElements = $('[data-res]');
+            for (let i = 0; i < resourceElements.length; i++) {
+                let element = resourceElements[i];
+                let resourceKey = $(element).attr('data-res');
+                if (resourceKey) {
+                    // Get all the resources that start with the key.
+                    for (let key in localizedData) {
+                        if (key.indexOf(resourceKey) === 0) {
+                            let value = localizedData[key];
+                            // Dot notation in resource key - assign the
+							// resource value to the elements property
+                            if (key.indexOf('.') > -1) {
+                                let attrKey = key.substring(key.indexOf('.') + 1);
+                                $(element).attr(attrKey, value);
+                            }
+                            // No dot notation in resource key, assign the
+							// resource value to the element's innerHTML.
+                            else if (key === resourceKey) {
+                                $(element).html(value);
+                            }
+                        }
+                    }
+                }
+            }
+        }
+
+        // localization and string formatting (additional arguments replace {0},
+		// {1}, etc. in localizedData[key])
+        function formatText(key) {
+            var formatted = key;
+            if (localizedData[key] !== undefined) {
+                formatted = localizedData[key];
+            }
+            for (let i = 1; i < arguments.length; i++) {
+                formatted = formatted.replace('{' + (i - 1) + '}', arguments[i]);
+            }
+            return formatted;
+        }
+        // jQuery - shortcut for $(document).ready()
+        // Document Object Model (DOM) is ready
+        $(function () {
+            initialize();
+
+            // set navigation for the buttons
+            $('#uuicancel').attr('href', returnURL + '?error=user_abort&access_token=' + token + '&state=' + state);
+            $('#uuiskip').attr('href', returnURL + '?error=user_skip&access_token=' + token + '&state=' + state);
+
+            // set url for the BioID mobile app
+            if (task === 'verification') {
+                $('#uuimobileapp').attr('href', 'bioid-verify://?access_token=' + token + '&return_url=' + returnURL + '&state=' + state);
+            }
+            else if (task === 'enrollment') {
+                $('#uuimobileapp').attr('href', 'bioid-enroll://?access_token=' + token + '&return_url=' + returnURL + '&state=' + state);
+            }
+
+            $('#uuiinstruction').attr('data-res', 'UserInstruction-CloseUp');
+
+            // hide button after first click
+            $('#uuimobileapp').click(function () {
+                $('#uuimobileapp').hide();
+            });
+
+            // Check if cookie is set
+            // let skipCookie = false;
+            // var cookie = document.cookie;
+            // if (cookie != "") {
+            // skipCookie = cookie.includes('true');
+            // }
+
+            if (skipIntro /* || skipCookie */) {
+                showIntroduction(false);
+            }
+            else {
+                showIntroduction(true);
+            }
+        });
+
+        /*
+		 * ----------------- Initialize BWS capture jQuery plugin
+		 * --------------------------------
+		 */
+
+
+        // initialize - load content in specific language and initialize bws
+		// capture
+        function initialize() {
+            // change title if task is enrollment
+            if (task === 'enrollment') {
+                $('#uuititle').attr('data-res', 'titleEnrollment');
+            }
+            // change title if task is identification
+            else if (task === 'identification') {
+                $('#uuititle').attr('data-res', 'titleIdentification');
+            }
+            else if (task === 'livenessdetection') {
+                $('#uuititle').attr('data-res', 'titleLiveDetection');
+            }
+
+            // try to get language info from the browser.
+            let userLangAttribute = navigator.language || navigator.userLanguage || navigator.browserLanguage || 'en';
+            let userLang = userLangAttribute.slice(0, 2);
+            // let userLocation = userLangAttribute.slice(-2) || 'us';
+
+            $.getJSON('./language/' + userLang + '.json').
+            done(function (data) {
+                console.log('Loaded the language-specific resource successfully');
+                localizedData = data;
+            }).fail(function (textStatus, error) {
+                console.log('Loading of language-specific resource failed with: ' + textStatus + ', ' + error);
+            }).always(function () {
+                localize();
+            });
+        }
+
+        /*
+		 * ------------------ Start BWS capture jQuery plugin
+		 * -----------------------------------
+		 */
+
+        // startup code
+        function onStart() {
+            bwsCapture.start(function () {
+                captureStarted();
+                $('#uuicanvas').show();
+            }, function (error) {
+
+                // hide uuiwebapp
+                $('#uuiwebapp').hide();
+
+                // show default information about general issues
+                $('#uuisplash').show();
+
+                // show button for continue without biometrics (skip biometric
+				// task)
+                $('#uuiskip').show();
+                // show button for BioID app (interapp communication)
+                if (task === 'verification' || task === 'enrollment') {
+                    $('#uuimobileapp').show();
+                }
+                if (error !== undefined) {
+                    // different browsers use different errors
+                    if (error.code === 1 || error.name === 'PermissionDeniedError') {
+                        // in the spec we find code == 1 and name ==
+						// PermissionDeniedError for the permission denied error
+                        $('#uuierror').html(formatText('capture-error', formatText('PermissionDenied')));
+                    } else {
+                        // otherwise try to print the error
+                        $('#uuierror').html(formatText('capture-error', error));
+                    }
+                } else {
+                    // no error info typically says that browser doesn't support
+					// getUserMedia
+                    $('#uuierror').html(formatText('nogetUserMedia'));
+                }
+            }, function (error, retry) {
+                // done
+                stopRecording();
+                currentExecution++;
+
+                if (error !== undefined && retry && currentExecution < executions) {
+                    console.log('Current Execution: ' + currentExecution);
+                } else {
+                    // done: redirect to caller ...
+                    let url = returnURL + '?access_token=' + token;
+                    if (error !== undefined) {
+                        url = url + '&error=' + error;
+                    }
+                    url = url + '&state=' + state + '&skipintro=' + skipIntro;
+                    window.location.replace(url);
+                }
+            }, function (status, message, dataURL) {
+                let $msg;
+                if (status === 'UploadProgress') {
+                        // for single upload status
+                        let id = message.id;
+                        let modId = ((id - 1) % 4) + 1;
+                        // for compact upload status
+                        let progresscompact = 0;
+                        progressMap.set(id, message.progress);
+                        progressMap.forEach(function (value) { return progresscompact += value });
+                        progresscompact = Math.ceil(progresscompact / recordings);
+                
+                        if (progresscompact > 100) {
+                            progresscompact = 100;
+                        }
+
+                        // css media query decision
+                        if ($('#uuisingleupload').is(':visible') == true) {
+                            $('#uuiprogress' + modId).show();
+                            $('#uuiprogressbar' + modId).width(message.progress + '%');
+                            // if the window size changed
+                            $('#uuiprogresscompact').hide();
+                        }
+                        else {
+                            $('#uuiprogresscompact').show();
+                            $('#uuiprogressbarcompact').width(progresscompact + '%');
+                        }
+                }
+                else if (status === 'DisplayTag') {
+                    setCurrentTag(message);
+                    $msg = $('#uuiinstruction');
+                    if (challengeResponse || task === 'enrollment') {
+                        $msg.html(formatText('UserInstruction-FollowMe'));
+                    }
+                    else {
+                        $msg.html(formatText('UserInstruction-NodYourHead'));
+                    }
+                    $msg.stop(true).fadeIn();
+                } else {
+                    // report a message on the screen
+                    let msg = formatText(status);
+
+                    // user instructions
+                    if (status.indexOf('UserInstruction') > -1) {
+                        $msg = $('#uuiinstruction');
+                        if (status === 'UserInstruction-Start') {
+                          let counter = recordings;
+                          if (counter > 4) {
+                            counter = 4;
+                          }
+                          for (let i = 1; i <= counter; i++) {
+                            $('#uuiuploaded' + i).hide();
+                            $('#uuiupload' + i).hide();
+                            $('#uuiwait' + i).show();
+                            $('#uuiimage' + i).show();
+                            $('#uuiprogress' + i).hide();
+                            $('#uuiprogressbar' + i).width(0);
+                          }
+                          progressMap.clear();
+                          $('#uuiprogresscompact').hide();
+                          $('#uuiprogressbarcompact').width(0);
+                          resetHeadDisplay();
+                        }
+                        else {
+                            $msg.html(msg);
+                            $msg.stop(true).fadeIn();
+                        }
+                    }
+
+                    // perform tasks
+                    if (status.indexOf('Perform') > -1 || status.indexOf('Retry') > -1) {
+                        // hide compact upload progress
+                        $('#uuiprogresscompact').hide();
+                    }
+
+                    // results of uploading or perform task
+                    if (status.indexOf('Failed') > -1 ||
+                        status.indexOf('NotRecognized') > -1 ||
+                        status.indexOf('NoFaceFound') > -1 ||
+                        status.indexOf('MultiFacesFound') > - 1) {
+
+                        changeLiveView(true);
+
+                        // show message
+                        $('#uuiinstruction').text('');
+                        $('#uuistatus').show();
+                        $msg = $('#uuimessage');
+                        $msg.html(formatText(msg));
+                        $msg.stop(true).fadeIn();
+                    }
+
+                    // display some animations/images depending on the status
+                    let uploaded = bwsCapture.getUploaded();
+                    let recording = uploaded + bwsCapture.getUploading();
+                    // use modulo calculation for images more than 4
+                    let modRecording = ((recording-1) % 4) + 1;
+                    let modUploaded = ((uploaded-1) % 4) + 1;
+
+                    if (status === 'Uploading') {
+                        // begin an upload - current image
+                        $('#uuiwait' + modRecording).hide();
+                        $('#uuiupload' + modRecording).show();
+                        $('#uuiuploaded' + modRecording).hide();
+
+                        // if uuiuploaded is not visible -> mobile view
+                        if (recording >= recordings) {
+                            $('#uuiinstruction').html(formatText('UserInstruction-PleaseWait'));
+                            changeLiveView(true);
+                        }
+                    } else if (status === 'Uploaded') {
+                        // successfull upload (we should have a dataURL)
+                        if (dataURL) {
+                            $('#uuiupload' + modUploaded).hide();
+                            $('#uuiprogress' + modUploaded).hide();
+                            let $image = $('#uuiuploaded' + modUploaded);
+                            $image.attr('src', dataURL);
+                            $image.show();
+                        }
+                    } else if (status === 'NoFaceFound' || status === 'MultipleFacesFound') {
+                        // upload failed
+                        recording++;
+                        modRecording = ((recording-1) % 4) + 1;
+                        $('#uuiupload' + modRecording).hide();
+                        $('#uuiwait' + modRecording).show();
+                    }
+                }
+            });
+        }
+
+        // switch between liveview and displayed messages
+        function changeLiveView(blur) {
+            if (blur) {
+                // hide head and blur canvas
+                hideHead();
+                $('#uuicanvas').css('filter', 'blur(10px)');
+                $('#uuiprogresscompact').hide();
+            }
+            else {
+                $('#uuicanvas').css('filter', 'none');
+                showHead();
+            }
+        }
+
+        // called by onStart to update GUI
+        function captureStarted() {
+            $('#uuiwebapp').show();
+            $('#uuimessage').show();
+            $('#uuiinstruction').show();
+
+            // Currently not neccessary - therefore the button is not shown!
+            // $('#uuimirror').show().click(mirror);
+
+            $('#uuistart').show().click(function () { startRecording(task === 'enrollment'); });
+
+
+            $('#uuiok').show().click(function () {
+                $('#uuistatus').hide();
+                $('#uuistart').prop('disabled', false);
+                $('#uuiinstruction').html(formatText('UserInstruction-CloseUp'));
+                changeLiveView(false);
+            });
+
+            setTimeout(function () { console.log('triggered showHead'); showHead(); }, 50);
+
+        }
+
+        // called from onStart when recording is done
+        function stopRecording() {
+            hideHead();
+
+            bwsCapture.stopRecording();
+
+            for (let i = 1; i <= 4; i++) {
+                $('#uuiimage' + i).hide();
+            }
+        }
+
+        /*
+		 * -------------------- Displaying head
+		 * ---------------------------------------------------
+		 */
+
+        var camera, scene, renderer, id;
+        var startTime;
+        var resetHead = false;
+        const maxVertical = 0.20;
+        const maxHorizontal = 0.25;
+
+        function initHead() {
+            // renderer
+            try {
+                renderer = new THREE.WebGLRenderer({ alpha: true });
+            }
+            catch (e) {
+                return false;
+            }
+
+            let container = document.getElementById('uuihead');
+            document.body.appendChild(container);
+
+            let width = $('#uuihead').width();
+            let height = $('#uuihead').height();
+            let uuihead = $('#uuihead');
+            $('#uuiliveview').append(uuihead);
+
+            // camera
+            camera = new THREE.PerspectiveCamera(20, width / height, 1, 1000);
+            camera.position.set(0, 0, 5.5);
+
+            // scene
+            scene = new THREE.Scene();
+            let ambientLight = new THREE.AmbientLight(0x4953FF, 0.4);
+            scene.add(ambientLight);
+            let pointLight = new THREE.PointLight(0x3067FF, 0.8);
+            camera.add(pointLight);
+            scene.add(camera);
+
+            // texture
+            let manager = new THREE.LoadingManager();
+            manager.onProgress = function (item, loaded, total) {
+                console.log(item, loaded, total);
+            };
+
+            // model
+            let onProgress = function (xhr) {
+                if (xhr.lengthComputable) {
+                    let percentComplete = xhr.loaded / xhr.total * 100;
+                    console.log(Math.round(percentComplete, 2) + '% downloaded');
+                }
+            };
+            let onError = function (xhr) {};
+            let loader = new THREE.OBJLoader(manager);
+            let material = new THREE.MeshLambertMaterial({ transparent: false, opacity: 0.8 });
+
+            loader.load('./model/head.obj', function (head) {
+                head.traverse(function (child) {
+                    if (child instanceof THREE.Mesh) {
+                     // child.material = material;
+                    }
+                });
+                head.name = 'BioIDHead';
+                head.position.y = 0;
+                scene.add(head);
+            }, onProgress, onError);
+
+            renderer.setClearColor(0x000000, 0); // the default
+            renderer.setPixelRatio(window.devicePixelRatio);
+            renderer.setSize(width, height);
+
+            container.appendChild(renderer.domElement);
+            document.addEventListener('uuiresize', onHeadResize, false);
+
+            return true;
+        }
+
+        function onHeadResize() {
+          
+            let canvasWidth = parseInt($('#uuicanvas').width());
+            let canvasHeight = parseInt($('#uuicanvas').height());
+
+            $('#uuihead').css({ 'margin-top': -canvasHeight, 'margin-left': '0' });
+            $('#uuihead').attr('width', canvasWidth);
+            $('#uuihead').attr('height', canvasHeight + 50);
+			
+            camera.aspect = canvasWidth / canvasHeight;
+            camera.updateProjectionMatrix();
+            renderer.setSize(canvasWidth, canvasHeight);
+            renderer.render(scene, camera);
+        }
+
+        function resetHeadDisplay() {
+            currentTag = '';
+            parentTag = '';
+            resetHead = true;
+            cancelAnimationFrame(id);
+            $('.head').css('opacity', '0.6');
+        }
+
+        function setCurrentTag(tag) {
+            if (currentTag !== '') {
+                parentTag = currentTag;
+            }
+
+            currentTag = tag;
+            startTime = new Date().getTime();
+
+            if (currentTag === 'any' && task !== 'enrollment') {
+                constantAnimation();
+            }
+            else {
+                animateHead();
+                console.log('DisplayTag: ' + tag);
+            }
+        }
+
+        function constantAnimation() {
+            // change css class 'head'
+            $('.head').css('opacity', '0.8');
+
+            // animation time
+            let delta = 0.005;
+            let head = scene.getObjectByName('BioIDHead');
+            showHead();
+
+            let direction = 'down';
+            var animate = function () {
+
+                if (direction === 'up') {
+                    if (head.rotation.x >= -maxVertical) {
+                        head.rotation.x -= delta;
+                    }
+                    else {
+                        direction = 'down';
+                    }
+                }
+
+                if (direction === 'down') {
+                    if (head.rotation.x <= maxVertical) {
+                        head.rotation.x += delta;
+                    }
+                    else {
+                        direction = 'up';
+                    }
+                }
+
+                id = requestAnimationFrame(animate);
+                renderer.render(scene, camera);
+            };
+            animate();
+        }
+
+        function animateHead() {
+            // animation time
+            let speed = 0.000005;
+            let endTime = new Date().getTime();
+            let deltaTime = (endTime - startTime);
+            let delta = deltaTime * speed;
+
+            let head = scene.getObjectByName('BioIDHead');
+            let doAnimation = false;
+
+            if (head) {
+                if (resetHead) {
+                    // reset head rotation to center
+                    head.rotation.x = 0;
+                    head.rotation.y = 0;
+                    resetHead = false;
+                    doAnimation = true;
+                    // change css class 'head'
+                    $('.head').css('opacity', '0.8');
+                    showHead();
+                }
+                else {
+                    if (currentTag === 'any') {
+                        if (task === 'enrollment') {
+                            // get predefined direction for better enrollment
+                            let recording = bwsCapture.getUploaded() + bwsCapture.getUploading() - 1;
+                            currentTag = enrollmentTags[recording];
+                        }
+                        else {
+                            if (head.rotation.x >= -maxVertical && head.rotation.x <= 0) {
+                                head.rotation.x -= delta;
+                                doAnimation = true;
+                            }
+                            else {
+                                head.rotation.x += delta;
+                                doAnimation = true;
+                            }
+                        }
+                    }
+
+                    if (currentTag === 'down') {
+                        head.rotation.y = 0;
+                        if (parentTag === 'up') {
+                            if (head.rotation.x <= 0) {
+                                head.rotation.x += delta;
+                                doAnimation = true;
+                            }
+                        }
+                        else {
+                            if (head.rotation.x >= 0 && head.rotation.x < maxVertical) {
+                                head.rotation.x += delta;
+                                doAnimation = true;
+                            }
+                        }
+                    }
+                    else if (currentTag === 'up') {
+                        head.rotation.y = 0;
+                        if (parentTag === 'down') {
+                            if (head.rotation.x >= 0) {
+                                head.rotation.x -= delta;
+                                doAnimation = true;
+                            }
+                        }
+                        else {
+                            if (head.rotation.x >= -maxVertical && head.rotation.x <= 0) {
+                                head.rotation.x -= delta;
+                                doAnimation = true;
+                            }
+                        }
+                    }
+                    else if (currentTag === 'left') {
+                        head.rotation.x = 0;
+                        if (parentTag === 'right') {
+                            if (head.rotation.y >= 0) {
+                                head.rotation.y -= delta;
+                                doAnimation = true;
+                            }
+                        }
+                        else {
+                            if (head.rotation.y >= -maxHorizontal && head.rotation.y <= 0) {
+                                head.rotation.y -= delta;
+                                doAnimation = true;
+                            }
+                        }
+                    }
+                    else if (currentTag === 'right') {
+                        head.rotation.x = 0;
+                        if (parentTag === 'left') {
+                            if (head.rotation.y <= 0) {
+                                head.rotation.y += delta;
+                                doAnimation = true;
+                            }
+                        }
+                        else {
+                            if (head.rotation.y >= 0 && head.rotation.y <= maxHorizontal) {
+                                head.rotation.y += delta;
+                                doAnimation = true;
+                            }
+                        }
+                    }
+                }
+
+                if (doAnimation) {
+                    id = requestAnimationFrame(animateHead);
+                }
+                renderer.render(scene, camera);
+            }
+        }
+
+        function showHead() {
+
+            $('#uuihead').show();
+            onHeadResize();
+            console.log('showHead')
+        }
+
+        function hideHead() {
+            $('#uuihead').hide();
+            resetHeadDisplay();
+            console.log('hideHead');
+        }
+
diff --git a/oxAuth/Server/src/main/webapp/auth/bioid/language/de.json b/oxAuth/Server/src/main/webapp/auth/bioid/language/de.json
new file mode 100644
index 00000000..0048a4de
--- /dev/null
+++ b/oxAuth/Server/src/main/webapp/auth/bioid/language/de.json
@@ -0,0 +1,53 @@
+{
+  "titleEnrollment": "Einlernen",
+  "titleVerification": "Verifikation",
+  "titleIdentification": "Identifikation",
+  "titleLiveDetection": "Lebenderkennung",
+
+  "introductionTitle": "So geht's",
+  "introductionStep1": "Schritt 1",
+  "introductionStep1Desc1": "Kommen Sie näher zur Kamera,",
+  "introductionStep1Desc2": "bevor Sie starten",
+  "introductionTooFarAway": "Zu weit entfernt!",
+  "introductionTooClose": "Zu nah!",
+  "introductionPerfect": "Perfekt!",
+  "introductionStep2": "Schritt 2",
+  "introductionStep2Desc1": "Für Lebenderkennung",
+  "introductionStep2Desc2": "bitte leicht nicken",
+  "introductionDontMoveDevice": "Bitte nicht das Gerät bewegen!",
+  "introductionDontShowAgain": "Verstanden! Diese Anleitung nicht wieder anzeigen",
+
+  "buttonCancel": "zurück",
+  "buttonCancel.title": "Abbruch und zurück zum Aufrufer",
+  "buttonReadyToStart": "Ich bin bereit",
+  "buttonContinue": "Fortfahren ohne Biometrie",
+  "buttonMobileApp": "Starte BioID app",
+
+  "prompt": "Es scheint, als hätten wir keinen Kamerazugriff. Um unsere biometrischen Anwendungen durchzuführen, versuchen Sie bitte Folgendes:<br />- Erlauben Sie Zugriff zur Kamera.<br />- Benutzen Sie einen anderen Browser (z.B. die aktuellste Version von Opera, Firefox, Chrome oder Edge).",
+  "mobileapp": "Wenn Sie die BioID app auf Ihrem Mobilgerät installiert haben, können Sie diese verwenden.",
+
+  "uploadInfo": "Uploading...",
+
+  "capture-error": "Die Bildaufnahme ist fehlgeschlagen.<br />Scheinbar ist der Kamerazugriff nicht erlaubt.<br />Leider ist dadurch keine Gesichts- und Lebenderkennung möglich.",
+  "nogetUserMedia": "Ihr Browser unterstützt das HTML5 Feature Media Capture und Streams API nicht. Bitte nutzen Sie einen anderen Browser oder die BioID App für Mobilgeräte.",
+  "permissionDenied": "Zugriff verweigert!",
+  "webgl-error": "WebGL ist deaktiviert oder nicht verfügbar. Wenn möglich aktivieren sie WebGL oder benutzen sie einen anderen Browser.",
+
+  "UserInstruction-CloseUp": "Vor dem Start bitte näherkommen<br />und das Gesicht im blauen Kopf positionieren",
+  "UserInstruction-NodYourHead": "Nicken Sie mit dem Kopf",
+  "UserInstruction-FollowMe": "Folgen Sie dem blauen Kopf",
+  "UserInstruction-NoMovement": "Folgen Sie der Kopfbewegung",
+  "UserInstruction-PleaseWait": "Bitte warten",
+
+  "Perform-enrollment": "Einlernen...",
+  "Perform-verification": "Verifikation...",
+  "Perform-identification": "Identifikation...",
+  "Perform-livenessdetection": "In Bearbeitung...",
+
+  "NoMotionDetected": "Wir haben keine Bewegung erkannt.<br/>Für Lebenderkennung bitte den Kopf leicht bewegen.",
+  "NoFaceFound": "Es wurde kein geeignetes Gesicht gefunden.<br/>Bitte näherkommen und direkt in die Kamera blicken.",
+  "MultipleFacesFound": "Es wurde mehr als ein Gesicht gefunden oder der Hintergrund ist zu unruhig.<br/>Ihr Gesicht soll den Kreis ganz ausfüllen.",
+  "LiveDetectionFailed": "Lebenderkennung fehlgeschlagen.<br/>Gerade in die Kamera blicken, dann den Kopf langsam bewegen.<br/>Achten Sie auf gleichmäßige Beleuchtung.",
+  "ChallengeResponseFailed": "Challenge-Response Erkennung fehlgeschlagen!<br/>Folgen Sie langsam der Bewegung des Kopfes.",
+  "NotRecognized": "Erkennung fehlgeschlagen.<br/>Sorgen Sie für gleichmäßige Beleuchtung. Für bessere Erkennung bitte nochmals einlernen (enrollment)."
+}
\ No newline at end of file
diff --git a/oxAuth/Server/src/main/webapp/auth/bioid/language/en.json b/oxAuth/Server/src/main/webapp/auth/bioid/language/en.json
new file mode 100644
index 00000000..a7ed4cf5
--- /dev/null
+++ b/oxAuth/Server/src/main/webapp/auth/bioid/language/en.json
@@ -0,0 +1,53 @@
+{
+  "titleEnrollment": "Enrollment",
+  "titleVerification": "Verification",
+  "titleIdentification": "Identification",
+  "titleLiveDetection": "Liveness Detection",
+
+  "introductionTitle": "How it works",
+  "introductionStep1": "Step 1",
+  "introductionStep1Desc1": "Before you start",
+  "introductionStep1Desc2": "come closer to the camera",
+  "introductionTooFarAway": "Too far away!",
+  "introductionTooClose": "Too close!",
+  "introductionPerfect": "Perfect!",
+  "introductionStep2": "Step 2",
+  "introductionStep2Desc1": "For Liveness Detection",
+  "introductionStep2Desc2": "nod your head slightly",
+  "introductionDontMoveDevice": "Please don't move the device!",
+  "introductionDontShowAgain": "GOT IT! Don't show the instruction again",
+
+  "buttonCancel": "back",
+  "buttonCancel.title": "Abort and navigate back to caller",
+  "buttonReadyToStart": "I'm ready to start",
+  "buttonContinue": "Skip biometrics",
+  "buttonMobileApp": "Start BioID app",
+
+  "prompt": "It seems like we don't have access to the camera. For performing biometric operations, please try the following:<br/>- Grant access to the camera.<br/>- Use a different browser (e.g. the most recent versions of Opera, Firefox, Chrome or Edge).",
+  "mobileapp": "If you have installed the BioID App on your mobile device, you can use this app for enrollment or verification.",
+
+  "uploadInfo": "Uploading...",
+
+  "capture-error": "We could not capture an image.<br />Sorry, but without access to the camera, facial recognition and liveness detection aren't possible!",
+  "nogetUserMedia": "Your browser does not support the HTML5 Media Capture and Streams API. Please use a different browser or the BioID mobile app.",
+  "permissionDenied": "Permission Denied!",
+  "webgl-error": "WebGL is disabled or unavailable. If possible activate WebGL or use another browser.",
+
+  "UserInstruction-CloseUp": "Come close and position your face<br />within the blue head before you start",
+  "UserInstruction-NodYourHead": "Please nod your head",
+  "UserInstruction-FollowMe": "Follow the blue head",
+  "UserInstruction-NoMovement": "Follow the head's movement",
+  "UserInstruction-PleaseWait": "Please wait",
+
+  "Perform-enrollment": "Training...",
+  "Perform-verification": "Verifying...",
+  "Perform-identification": "Identifying...",
+  "Perform-livenessdetection": "Processing...",
+
+  "NoMotionDetected": "We could not detect any motion.<br/>For Liveness Detection please nod your head slightly.",
+  "NoFaceFound": "We could not find a suitable face.<br/>Come close and look straight before you start.",
+  "MultipleFacesFound": "We found multiple faces or a strongly uneven background distracted us.<br/>Your face should fill the circle completely.",
+  "LiveDetectionFailed": "Liveness Detection failed.<br/>Look straight into the camera, then nod your head slightly.<br/>Please ensure constant lighting.",
+  "ChallengeResponseFailed": "Challenge-Response failed!<br/>Slowly follow the head's movement.",
+  "NotRecognized": "You have not been recognized!<br/>Please ensure constant lighting. For improving recognition, please enroll again."
+}
\ No newline at end of file
diff --git a/oxAuth/Server/src/main/webapp/auth/bioid/model/head.obj b/oxAuth/Server/src/main/webapp/auth/bioid/model/head.obj
new file mode 100644
index 00000000..dcbb7e44
--- /dev/null
+++ b/oxAuth/Server/src/main/webapp/auth/bioid/model/head.obj
@@ -0,0 +1,9857 @@
+# Blender v2.79 (sub 0) OBJ File: ''
+# www.blender.org
+mtllib head-0.2.mtl
+o BioID-Head_Head
+v -0.238778 -0.574189 -0.057439
+v -0.269509 -0.029791 0.070056
+v -0.161132 -0.585171 -0.136370
+v -0.124196 -0.584606 -0.251022
+v 0.126876 -0.584514 -0.253200
+v 0.040831 -0.584408 -0.064242
+v 0.368518 -0.557374 -0.023321
+v 0.344881 -0.565595 -0.066060
+v -0.013300 0.043919 0.508456
+v -0.025485 0.057428 0.518716
+v -0.000020 0.053811 0.529351
+v -0.000020 0.044110 0.512199
+v -0.064614 0.040374 0.467087
+v -0.040768 0.039002 0.479601
+v -0.052824 0.053517 0.492349
+v -0.067772 0.053374 0.475130
+v -0.083389 0.066586 0.453850
+v -0.087057 0.030386 0.454392
+v -0.067712 0.015048 0.462634
+v -0.044683 0.026180 0.470742
+v -0.038424 -0.185044 0.454327
+v -0.059393 -0.180661 0.447551
+v -0.043891 -0.201682 0.449983
+v -0.026252 -0.210006 0.450625
+v -0.135126 -0.260507 0.213517
+v -0.132204 -0.237107 0.241683
+v -0.154765 -0.217881 0.225959
+v -0.154207 -0.257129 0.190788
+v -0.113239 -0.272372 0.227279
+v -0.036271 -0.480126 0.189528
+v 0.007611 -0.491502 0.188892
+v -0.014212 -0.511218 0.181508
+v -0.266722 0.471345 0.207867
+v -0.325786 0.221899 0.059753
+v -0.312471 0.092007 -0.005832
+v -0.316313 0.103905 -0.018106
+v -0.361286 0.234614 -0.045583
+v -0.343348 0.124163 -0.044001
+v -0.346138 0.107439 -0.043493
+v -0.325220 0.113888 -0.029715
+v -0.355827 0.260678 -0.048804
+v -0.349485 0.262322 -0.063447
+v -0.364781 0.251618 -0.059154
+v -0.342604 0.270559 -0.041874
+v -0.357920 0.256988 -0.039294
+v -0.364047 0.243196 -0.052483
+v -0.338922 0.264925 -0.075894
+v -0.339969 -0.579252 -0.213601
+v -0.388418 -0.489811 -0.267966
+v -0.354293 -0.448976 -0.247272
+v -0.220451 -0.376333 -0.245096
+v -0.178638 -0.387940 -0.270320
+v -0.183052 -0.424439 -0.296285
+v -0.250211 -0.439819 -0.292907
+v -0.027912 -0.530848 -0.348232
+v -0.007572 -0.516692 -0.350556
+v -0.066074 0.059883 0.487609
+v -0.074619 0.067598 0.466671
+v -0.000295 -0.193899 0.457578
+v -0.008334 -0.175371 0.456849
+v -0.000020 -0.211973 0.452893
+v -0.010703 -0.292655 0.255346
+v 0.010001 -0.274465 0.277127
+v -0.015283 -0.270798 0.282514
+v -0.012027 -0.090150 -0.253173
+v -0.019492 -0.053692 -0.268976
+v -0.021836 -0.414495 -0.309315
+v -0.006282 -0.388653 -0.296859
+v -0.050539 -0.350899 -0.277154
+v -0.008733 -0.348413 -0.280051
+v -0.007444 -0.276997 -0.256889
+v -0.006634 -0.214646 -0.242655
+v -0.000013 -0.183691 -0.239443
+v -0.016306 -0.161361 -0.238363
+v -0.027688 -0.140200 -0.239353
+v -0.019614 -0.118820 -0.244102
+v -0.052615 -0.098553 -0.247771
+v -0.085659 -0.071208 -0.254493
+v -0.101897 -0.029025 -0.272699
+v -0.148729 0.058172 -0.308043
+v -0.174649 0.052933 -0.295150
+v -0.203982 0.099704 -0.301980
+v -0.227958 0.145500 -0.302541
+v -0.261130 0.170131 -0.275118
+v -0.263975 0.217036 -0.284036
+v -0.278364 0.202076 -0.259655
+v -0.292376 0.255284 -0.245255
+v -0.322285 0.305912 -0.166686
+v -0.328427 0.311248 -0.130919
+v -0.332234 0.318194 -0.097389
+v -0.335014 0.286268 -0.074862
+v -0.337329 0.276315 -0.060362
+v -0.362927 0.250962 -0.074044
+v -0.364564 0.238672 -0.084858
+v -0.369293 0.236479 -0.069839
+v -0.370301 0.217444 -0.085730
+v -0.369865 0.207067 -0.077110
+v -0.367475 0.206273 -0.065557
+v -0.362148 0.182393 -0.058797
+v -0.338132 0.170059 -0.026177
+v -0.337689 0.201670 -0.015129
+v -0.329099 0.170407 -0.008835
+v -0.310565 0.144079 -0.002028
+v -0.322251 0.128580 -0.027073
+v -0.306463 0.126404 -0.006450
+v -0.303954 0.104815 -0.001866
+v -0.328514 0.084015 -0.020212
+v -0.338228 0.089276 -0.032216
+v -0.319869 0.066033 0.000629
+v -0.307730 0.083132 0.011951
+v -0.300432 0.109884 0.008915
+v -0.302488 0.133766 0.010795
+v -0.307582 0.139338 0.049794
+v -0.311696 0.162073 0.059692
+v -0.324529 0.181816 0.013942
+v -0.329461 0.205587 0.028151
+v -0.331826 0.193359 0.001949
+v -0.341128 0.234753 0.007004
+v -0.338255 0.222493 -0.008103
+v -0.350389 0.248832 -0.018892
+v -0.349722 0.234059 -0.027022
+v -0.345859 0.253774 -0.008352
+v -0.340808 0.271632 -0.021184
+v -0.341354 0.264531 -0.009926
+v -0.336148 0.286524 -0.026986
+v -0.336063 0.285875 -0.044668
+v -0.330351 0.355419 -0.062441
+v -0.323003 0.360757 -0.137042
+v -0.310106 0.332223 -0.203223
+v -0.292322 0.312805 -0.246366
+v -0.271096 0.313278 -0.277727
+v -0.280921 0.260442 -0.265596
+v -0.252103 0.267871 -0.303014
+v -0.242710 0.210261 -0.306979
+v -0.225124 0.194980 -0.319427
+v -0.194298 0.184749 -0.338299
+v -0.191571 0.148441 -0.329259
+v -0.162803 0.107366 -0.327539
+v -0.115678 0.101780 -0.339140
+v -0.101144 0.049118 -0.315871
+v -0.088250 0.023252 -0.303968
+v -0.036861 0.025448 -0.310559
+v 0.000000 0.061788 -0.329979
+v -0.048320 0.095921 -0.344176
+v -0.021919 0.144392 -0.362840
+v -0.037736 0.278456 -0.383181
+v 0.001149 0.401888 -0.369721
+v -0.077138 0.426059 -0.362815
+v 0.000000 0.472437 -0.347332
+v 0.000000 0.568417 -0.284289
+v -0.058738 0.594600 -0.257755
+v 0.058738 0.594600 -0.257755
+v -0.044716 0.647034 -0.180103
+v -0.012165 0.667525 -0.137181
+v -0.011454 0.677489 -0.109856
+v 0.022194 0.684347 -0.082743
+v -0.049385 0.682986 -0.079583
+v -0.010653 0.689794 -0.054735
+v 0.022666 0.691478 -0.039694
+v -0.029669 0.692146 -0.012468
+v 0.020676 0.692090 0.012500
+v -0.030067 0.688079 0.043428
+v 0.000000 0.684158 0.073487
+v -0.029904 0.677520 0.100432
+v 0.000000 0.672327 0.123942
+v -0.019744 0.662010 0.156705
+v 0.024403 0.654589 0.177074
+v -0.018312 0.638636 0.217532
+v -0.006151 0.622123 0.251714
+v -0.010036 0.603978 0.279368
+v -0.009936 0.587744 0.299458
+v -0.010362 0.569254 0.318459
+v -0.010887 0.549038 0.335967
+v -0.013129 0.517236 0.358831
+v -0.018535 0.471869 0.383218
+v 0.013271 0.420084 0.403055
+v -0.037567 0.421469 0.401983
+v -0.020749 0.340771 0.423014
+v 0.019341 0.341696 0.422753
+v -0.000344 0.264274 0.435974
+v -0.020180 0.260659 0.435750
+v -0.012446 0.219520 0.452097
+v -0.016694 0.192423 0.468800
+v 0.014129 0.172623 0.485069
+v -0.000020 0.140911 0.511272
+v -0.018743 0.114171 0.528157
+v -0.000020 0.098773 0.541440
+v -0.022392 0.079998 0.533809
+v -0.000020 0.080638 0.546372
+v -0.000162 0.066557 0.540980
+v -0.021837 0.031528 0.480623
+v -0.000021 0.028137 0.476687
+v -0.023168 0.017274 0.470789
+v -0.000020 0.015476 0.468199
+v -0.016877 -0.004071 0.467560
+v -0.044307 -0.025355 0.470577
+v -0.000020 -0.029129 0.473190
+v -0.044479 -0.040431 0.468481
+v -0.000020 -0.043465 0.472256
+v -0.026936 -0.054529 0.463954
+v -0.020351 -0.069069 0.459581
+v -0.008952 -0.098405 0.461968
+v -0.016479 -0.117799 0.459101
+v -0.015454 -0.142627 0.456105
+v -0.061984 -0.137350 0.449619
+v -0.082476 -0.161150 0.436839
+v -0.052322 -0.213877 0.439866
+v -0.073312 -0.197362 0.428872
+v -0.035250 -0.221489 0.441771
+v -0.062256 -0.225295 0.413039
+v -0.038046 -0.231151 0.428887
+v -0.040120 -0.237614 0.413302
+v -0.042004 -0.241486 0.395405
+v -0.008284 -0.244573 0.406516
+v -0.019317 -0.251460 0.338479
+v 0.011977 -0.252061 0.338021
+v -0.016604 -0.258921 0.307451
+v -0.052063 -0.259413 0.293300
+v -0.043733 -0.275367 0.268868
+v -0.074838 -0.259163 0.276612
+v -0.066796 -0.280176 0.253296
+v -0.045829 -0.294824 0.247291
+v -0.095793 -0.263707 0.252487
+v -0.090835 -0.282773 0.236620
+v -0.069103 -0.303157 0.233241
+v -0.092625 -0.308469 0.220010
+v -0.114252 -0.317342 0.201947
+v -0.131845 -0.311124 0.189739
+v -0.150688 -0.328402 0.164235
+v -0.164653 -0.302034 0.153479
+v -0.176864 -0.321954 0.131655
+v -0.179800 -0.347212 0.128409
+v -0.154251 -0.368336 0.155928
+v -0.185005 -0.387504 0.127672
+v -0.202603 -0.360381 0.100667
+v -0.213386 -0.397138 0.101655
+v -0.194627 -0.426702 0.130030
+v -0.235519 -0.409584 0.085779
+v -0.233137 -0.441516 0.108296
+v -0.261995 -0.428857 0.075959
+v -0.276478 -0.471890 0.102240
+v -0.229738 -0.469168 0.126851
+v -0.286509 -0.449592 0.074469
+v -0.262696 -0.492416 0.125971
+v -0.313657 -0.476309 0.082433
+v -0.313639 -0.504259 0.110846
+v -0.361796 -0.505679 0.081714
+v -0.383902 -0.501333 0.059620
+v -0.400382 -0.495317 0.035224
+v -0.412893 -0.513516 0.044171
+v -0.433144 -0.506795 0.009781
+v -0.440150 -0.520238 0.007607
+v -0.453347 -0.501001 -0.037857
+v -0.459502 -0.516317 -0.034208
+v -0.467745 -0.525675 -0.054686
+v -0.470886 -0.513571 -0.071272
+v -0.457746 -0.538663 -0.048806
+v -0.474117 -0.537907 -0.114772
+v -0.466193 -0.548196 -0.131130
+v -0.461043 -0.551140 -0.182674
+v -0.443686 -0.560358 -0.171073
+v -0.397679 -0.571370 -0.166325
+v -0.390601 -0.572971 -0.222120
+v -0.337821 -0.575900 -0.276337
+v -0.338025 -0.578860 -0.161443
+v -0.430306 -0.561483 -0.124718
+v -0.411053 -0.561575 -0.094799
+v -0.447617 -0.551867 -0.092283
+v -0.436517 -0.549670 -0.053318
+v -0.439644 -0.539730 -0.010156
+v -0.441812 -0.530725 0.000669
+v -0.395223 -0.530633 0.073093
+v -0.415855 -0.524929 0.045562
+v -0.392336 -0.519134 0.069858
+v -0.355503 -0.523593 0.099319
+v -0.298011 -0.519120 0.128479
+v -0.241463 -0.510818 0.144599
+v -0.202829 -0.455008 0.134334
+v -0.188369 -0.465813 0.145036
+v -0.158882 -0.441183 0.155595
+v -0.162631 -0.405811 0.149110
+v -0.123618 -0.368009 0.180142
+v -0.093309 -0.351521 0.202687
+v -0.069476 -0.336206 0.216693
+v -0.038128 -0.324355 0.228921
+v -0.010916 -0.315836 0.236701
+v -0.009458 -0.349644 0.218894
+v -0.011336 -0.390104 0.204434
+v -0.010189 -0.429290 0.196430
+v -0.054615 -0.430064 0.192697
+v -0.107282 -0.504492 0.173637
+v -0.075241 -0.512387 0.176475
+v -0.118634 -0.531503 0.168961
+v -0.099213 -0.547068 0.162945
+v -0.160747 -0.546370 0.162446
+v -0.154097 -0.553459 0.157255
+v -0.171641 -0.533154 0.164328
+v -0.144012 -0.558488 0.149375
+v -0.134497 -0.561094 0.138386
+v -0.231179 -0.552837 0.144090
+v -0.225757 -0.557922 0.133250
+v -0.313153 -0.551534 0.055374
+v -0.265179 -0.557261 0.050448
+v -0.169789 -0.570781 0.027630
+v -0.197070 -0.579827 -0.081782
+v -0.376632 -0.572407 -0.135990
+v -0.243854 -0.583637 -0.166024
+v -0.408711 -0.552878 -0.032261
+v -0.410578 -0.542448 0.017991
+v -0.393102 -0.536673 0.061691
+v -0.336729 -0.544166 0.104675
+v -0.340994 -0.539962 0.110712
+v -0.296136 -0.543404 0.131717
+v -0.327324 -0.533636 0.117847
+v -0.277915 -0.531930 0.140633
+v -0.239452 -0.536850 0.152034
+v -0.229514 -0.526185 0.152984
+v -0.197170 -0.504522 0.154977
+v -0.163137 -0.483834 0.159326
+v -0.138944 -0.457765 0.165619
+v -0.124975 -0.422529 0.172314
+v -0.117076 -0.393538 0.179575
+v -0.090193 -0.412759 0.187913
+v -0.064376 -0.393245 0.199685
+v -0.047598 -0.346516 0.216992
+v -0.106320 -0.456042 0.177352
+v -0.139328 -0.500311 0.167656
+v -0.241345 -0.545939 0.148702
+v -0.276629 -0.551313 0.132177
+v -0.280693 -0.553661 0.120189
+v -0.327316 -0.548877 0.070319
+v -0.378701 -0.547177 0.025320
+v -0.368546 -0.557375 -0.023323
+v -0.344912 -0.565594 -0.066060
+v -0.205742 -0.559883 0.075974
+v -0.059269 -0.557864 0.150445
+v -0.056797 -0.531272 0.170727
+v -0.000017 -0.544690 0.161195
+v -0.012266 -0.556040 0.151277
+v -0.000020 -0.563241 0.138899
+v -0.000143 -0.564505 0.122341
+v 0.011273 -0.567438 0.090192
+v -0.024969 -0.569122 0.080798
+v -0.000038 -0.577132 0.052214
+v -0.000350 -0.581804 0.024023
+v -0.047596 -0.584314 -0.066265
+v -0.000017 -0.587631 -0.141409
+v -0.000020 -0.584051 -0.273223
+v -0.052941 -0.567216 -0.328012
+v 0.037227 -0.552937 -0.338939
+v -0.049032 -0.541233 -0.344565
+v -0.055568 -0.555445 -0.338026
+v -0.073443 -0.527766 -0.347634
+v -0.059958 -0.511595 -0.348638
+v -0.161818 -0.502486 -0.343170
+v -0.137191 -0.482289 -0.337543
+v -0.108784 -0.459953 -0.327771
+v -0.293185 -0.466104 -0.300121
+v -0.283817 -0.431658 -0.272963
+v -0.318711 -0.445924 -0.270504
+v -0.318123 -0.426686 -0.246920
+v -0.391078 -0.515362 -0.291269
+v -0.367889 -0.515143 -0.304555
+v -0.417754 -0.523582 -0.278450
+v -0.435596 -0.521354 -0.259001
+v -0.402644 -0.469153 -0.224097
+v -0.437589 -0.497915 -0.221945
+v -0.365024 -0.441168 -0.222251
+v -0.356567 -0.424947 -0.196234
+v -0.305391 -0.407574 -0.226658
+v -0.285240 -0.388092 -0.209751
+v -0.248711 -0.379277 -0.231027
+v -0.215008 -0.345405 -0.217857
+v -0.184715 -0.351085 -0.242315
+v -0.175851 -0.319178 -0.226925
+v -0.155676 -0.345481 -0.250955
+v -0.137975 -0.394155 -0.283597
+v -0.074381 -0.413774 -0.303918
+v -0.016367 -0.479542 -0.343747
+v -0.104110 -0.365415 -0.274415
+v -0.036150 -0.305102 -0.263013
+v -0.048531 -0.265491 -0.250343
+v -0.047695 -0.214354 -0.239528
+v -0.080095 -0.189091 -0.234211
+v -0.088431 -0.118052 -0.237505
+v -0.082793 -0.150329 -0.233041
+v -0.108939 -0.097931 -0.239393
+v -0.142332 -0.036940 -0.259230
+v -0.197757 0.044262 -0.278023
+v -0.222354 0.075436 -0.276668
+v -0.246049 0.101710 -0.265213
+v -0.266725 0.105299 -0.238427
+v -0.280629 0.133695 -0.229438
+v -0.293862 0.180541 -0.222002
+v -0.308905 0.279005 -0.210190
+v -0.317157 0.256980 -0.176318
+v -0.328337 0.230058 -0.121435
+v -0.334508 0.269494 -0.090185
+v -0.343367 0.249947 -0.089246
+v -0.332821 0.252801 -0.103182
+v -0.343746 0.230762 -0.099177
+v -0.355101 0.225586 -0.097820
+v -0.366191 0.216996 -0.096627
+v -0.357086 0.204434 -0.103791
+v -0.369793 0.187884 -0.091372
+v -0.354620 0.175887 -0.048556
+v -0.336726 0.155506 -0.031791
+v -0.349189 0.143968 -0.047867
+v -0.328279 0.061322 -0.012112
+v -0.308013 0.061856 0.026219
+v -0.304996 0.077595 0.031571
+v -0.303878 0.092778 0.041687
+v -0.319591 0.186081 0.042985
+v -0.333174 0.242911 0.031359
+v -0.335926 0.272370 0.006185
+v -0.332851 0.323761 0.024227
+v -0.325484 0.395842 -0.033341
+v -0.324129 0.394003 -0.082014
+v -0.314174 0.440595 -0.099223
+v -0.315703 0.398776 -0.142873
+v -0.308061 0.405926 -0.171197
+v -0.310580 0.364991 -0.189472
+v -0.291182 0.422350 -0.207381
+v -0.293002 0.363935 -0.233570
+v -0.271974 0.364740 -0.266003
+v -0.249257 0.335840 -0.299270
+v -0.217510 0.271087 -0.333150
+v -0.213770 0.235026 -0.334269
+v -0.185328 0.270568 -0.353153
+v -0.193817 0.221720 -0.345860
+v -0.162590 0.197302 -0.356686
+v -0.149049 0.152110 -0.350229
+v -0.116214 0.152369 -0.358851
+v -0.086931 0.132548 -0.355821
+v -0.104755 0.198417 -0.371585
+v -0.134134 0.197974 -0.365784
+v -0.124929 0.237370 -0.373007
+v -0.161600 0.250590 -0.363547
+v -0.166017 0.329470 -0.358809
+v -0.199929 0.324996 -0.340731
+v -0.225683 0.328235 -0.321492
+v -0.199425 0.377512 -0.331902
+v -0.222615 0.377692 -0.314014
+v -0.246420 0.395424 -0.285197
+v -0.271758 0.416095 -0.245054
+v -0.271695 0.449299 -0.224542
+v -0.292270 0.460993 -0.171087
+v -0.306353 0.444958 -0.140363
+v -0.316788 0.447398 -0.055372
+v -0.328130 0.317569 0.073177
+v -0.330638 0.283180 0.059971
+v -0.317380 0.357753 0.108674
+v -0.323205 0.374061 0.054046
+v -0.320437 0.422916 0.003327
+v -0.303968 0.498306 -0.065438
+v -0.299286 0.488718 -0.112560
+v -0.287494 0.511631 -0.121354
+v -0.272701 0.509149 -0.164125
+v -0.272391 0.482245 -0.195421
+v -0.243865 0.500232 -0.226402
+v -0.243134 0.453280 -0.262173
+v -0.219921 0.479624 -0.271628
+v -0.212805 0.428522 -0.304817
+v -0.165263 0.385818 -0.351090
+v -0.139177 0.328167 -0.368484
+v -0.129084 0.282221 -0.373086
+v -0.086549 0.278571 -0.379592
+v -0.058921 0.229581 -0.380592
+v -0.056478 0.180247 -0.371966
+v -0.059615 0.335282 -0.378254
+v -0.114448 0.347635 -0.372517
+v -0.098298 0.393586 -0.368764
+v -0.132182 0.394788 -0.363054
+v -0.156293 0.434417 -0.342582
+v -0.181995 0.432199 -0.327739
+v -0.192857 0.469851 -0.302023
+v -0.179867 0.511619 -0.286869
+v -0.213992 0.518188 -0.249494
+v -0.236890 0.538999 -0.198187
+v -0.259492 0.549311 -0.137185
+v -0.287430 0.538151 -0.067220
+v -0.311238 0.478297 -0.023132
+v -0.307144 0.449001 0.078125
+v -0.310174 0.332833 0.155844
+v -0.304009 0.393682 0.142874
+v -0.307616 0.485338 0.020191
+v -0.299902 0.518500 -0.012238
+v -0.292373 0.536035 -0.033927
+v -0.267311 0.562542 -0.090928
+v -0.230658 0.588163 -0.134998
+v -0.227685 0.563057 -0.181752
+v -0.200444 0.578110 -0.201323
+v -0.194031 0.550801 -0.240626
+v -0.163566 0.559903 -0.256853
+v -0.148723 0.519945 -0.300364
+v -0.157661 0.478340 -0.322243
+v -0.127243 0.494630 -0.325852
+v -0.128970 0.455237 -0.345443
+v -0.130261 0.427327 -0.355634
+v -0.074436 0.455778 -0.353690
+v -0.073864 0.483019 -0.342093
+v -0.070552 0.510736 -0.327043
+v -0.072400 0.563751 -0.288188
+v -0.125271 0.569909 -0.267300
+v -0.165331 0.587895 -0.223185
+v -0.166105 0.612269 -0.185392
+v -0.200327 0.602241 -0.163268
+v -0.234558 0.604366 -0.086229
+v -0.262273 0.583144 -0.048911
+v -0.287510 0.548522 -0.007775
+v -0.263614 0.586335 -0.005684
+v -0.279907 0.557082 0.032760
+v -0.290910 0.527862 0.051570
+v -0.297579 0.496269 0.069845
+v -0.290062 0.463646 0.141185
+v -0.284077 0.444759 0.178223
+v -0.279501 0.516495 0.119851
+v -0.270066 0.546685 0.105833
+v -0.261708 0.583926 0.038167
+v -0.245074 0.607041 -0.024302
+v -0.222567 0.625942 -0.018543
+v -0.217844 0.621718 -0.076443
+v -0.187010 0.640582 -0.076326
+v -0.185418 0.626686 -0.129421
+v -0.146373 0.637124 -0.151670
+v -0.128682 0.623215 -0.195657
+v -0.128183 0.598250 -0.233572
+v -0.089110 0.613064 -0.230465
+v -0.087221 0.584522 -0.265382
+v -0.059074 0.531366 -0.314238
+v -0.050112 0.624419 -0.219054
+v -0.091878 0.642638 -0.177466
+v -0.116050 0.650756 -0.144315
+v -0.148997 0.649450 -0.111501
+v -0.149527 0.660495 -0.055828
+v -0.186523 0.647210 -0.025034
+v -0.220988 0.625265 0.029313
+v -0.242778 0.603518 0.050827
+v -0.257704 0.576807 0.082576
+v -0.251588 0.568191 0.125027
+v -0.266651 0.406275 0.254340
+v -0.247972 0.505373 0.222461
+v -0.262797 0.515617 0.173831
+v -0.249655 0.542528 0.173602
+v -0.234654 0.570184 0.166802
+v -0.227126 0.597328 0.126412
+v -0.216691 0.620073 0.078571
+v -0.182599 0.642047 0.076935
+v -0.184938 0.647318 0.026225
+v -0.148142 0.664400 -0.003205
+v -0.108680 0.674640 -0.047302
+v -0.109079 0.668080 -0.088638
+v -0.070542 0.668576 -0.121122
+v -0.056987 0.686196 -0.052035
+v -0.066817 0.687134 -0.010137
+v -0.107138 0.677614 -0.006661
+v -0.107470 0.674354 0.047111
+v -0.146611 0.661874 0.049464
+v -0.140409 0.656507 0.097121
+v -0.165422 0.638673 0.128341
+v -0.197140 0.621700 0.126452
+v -0.208356 0.596413 0.170930
+v -0.229721 0.552285 0.205367
+v -0.223966 0.518578 0.254700
+v -0.244368 0.449735 0.275459
+v -0.288814 0.359594 0.218197
+v -0.298744 0.338078 0.197230
+v -0.305586 0.291054 0.186211
+v -0.319041 0.301043 0.129367
+v -0.324555 0.265806 0.101673
+v -0.313414 0.201656 0.145066
+v -0.314271 0.178676 0.110358
+v -0.307583 0.130067 0.147188
+v -0.308510 0.115767 0.087538
+v -0.305331 0.101235 0.128188
+v -0.303045 0.080385 0.065075
+v -0.300648 0.062238 0.058247
+v -0.291765 0.034151 0.070269
+v -0.299409 0.038637 0.043456
+v -0.307836 0.046449 0.026193
+v -0.305036 0.035969 0.021835
+v -0.284571 0.006273 0.026032
+v -0.295247 0.020424 0.006120
+v -0.289406 0.012958 -0.000944
+v -0.329305 0.049081 -0.022988
+v -0.303862 0.034543 -0.032795
+v -0.282065 0.002649 -0.013692
+v -0.300317 0.049163 -0.072331
+v -0.278960 0.003857 -0.048736
+v -0.310685 0.058369 -0.066293
+v -0.320941 0.060812 -0.059740
+v -0.344199 0.074688 -0.061263
+v -0.350999 0.089492 -0.073055
+v -0.357299 0.108161 -0.085610
+v -0.363442 0.109434 -0.077941
+v -0.364235 0.112367 -0.071641
+v -0.361641 0.114277 -0.063177
+v -0.358747 0.137455 -0.059092
+v -0.345620 0.081283 -0.040914
+v -0.350507 0.081163 -0.053725
+v -0.327418 0.051877 -0.011069
+v -0.321674 0.042554 -0.009275
+v -0.327289 0.052526 -0.040213
+v -0.368725 0.161252 -0.080909
+v -0.368551 0.152686 -0.089882
+v -0.361211 0.122097 -0.089815
+v -0.355514 0.126263 -0.095640
+v -0.334911 0.095965 -0.086699
+v -0.322433 0.091165 -0.092483
+v -0.314313 0.093231 -0.103930
+v -0.300469 0.068841 -0.109301
+v -0.255265 -0.026358 -0.123706
+v -0.226251 -0.084429 -0.145677
+v -0.233814 -0.095338 -0.108211
+v -0.219490 -0.139762 -0.115727
+v -0.214741 -0.076874 -0.179410
+v -0.211297 -0.123688 -0.149836
+v -0.205238 -0.164823 -0.140552
+v -0.201150 -0.106522 -0.180918
+v -0.193185 -0.143419 -0.172828
+v -0.188940 -0.174121 -0.170368
+v -0.187853 -0.206836 -0.169845
+v -0.173337 -0.148348 -0.195736
+v -0.170547 -0.176468 -0.193638
+v -0.177648 -0.219625 -0.185960
+v -0.158848 -0.207817 -0.204640
+v -0.162908 -0.242279 -0.206956
+v -0.179852 -0.272177 -0.201160
+v -0.137193 -0.226514 -0.221206
+v -0.156860 -0.278195 -0.221375
+v -0.132664 -0.276161 -0.232868
+v -0.111400 -0.255323 -0.236433
+v -0.144074 -0.315602 -0.241717
+v -0.111185 -0.327140 -0.256262
+v -0.095853 -0.303583 -0.252230
+v -0.083954 -0.240797 -0.239839
+v -0.120014 -0.126333 -0.228442
+v -0.135806 -0.090837 -0.234639
+v -0.153607 -0.064738 -0.239808
+v -0.181632 -0.046560 -0.234854
+v -0.211598 -0.016226 -0.230623
+v -0.236006 0.048670 -0.247262
+v -0.303261 0.132782 -0.179492
+v -0.323813 0.204681 -0.133068
+v -0.334758 0.222040 -0.109448
+v -0.346014 0.207751 -0.105348
+v -0.336190 0.193121 -0.110764
+v -0.339323 0.169116 -0.108759
+v -0.365327 0.167086 -0.099909
+v -0.357904 0.158294 -0.103060
+v -0.338193 0.132529 -0.103156
+v -0.328612 0.134239 -0.110628
+v -0.320012 0.130744 -0.120634
+v -0.309017 0.101313 -0.124493
+v -0.285965 0.057214 -0.159544
+v -0.235770 -0.029191 -0.181316
+v -0.242197 -0.029792 -0.165060
+v -0.189848 -0.088837 -0.204734
+v -0.154002 -0.129278 -0.214048
+v -0.146904 -0.161389 -0.212721
+v -0.142114 -0.191884 -0.214938
+v -0.116385 -0.159975 -0.226078
+v -0.109887 -0.191906 -0.228856
+v -0.172625 -0.088939 -0.218147
+v -0.213071 -0.055436 -0.199149
+v -0.262720 0.045925 -0.203546
+v -0.288733 0.096458 -0.192003
+v -0.295985 0.085930 -0.162132
+v -0.313148 0.131324 -0.135931
+v -0.318483 0.157017 -0.132221
+v -0.328682 0.189186 -0.118966
+v -0.194020 -0.312743 -0.208926
+v -0.197110 -0.269767 -0.177452
+v -0.199254 -0.248499 -0.160916
+v -0.201824 -0.205148 -0.141017
+v -0.213097 -0.183190 -0.111542
+v -0.249347 -0.067128 -0.075009
+v -0.264878 -0.040059 -0.018182
+v -0.285650 0.044096 0.169163
+v -0.295318 0.148975 0.226336
+v -0.310596 0.230138 0.167388
+v -0.289666 0.294892 0.241357
+v -0.276085 0.350453 0.261502
+v -0.260394 0.345639 0.301381
+v -0.249147 0.385657 0.305471
+v -0.229455 0.448833 0.300938
+v -0.209787 0.481127 0.304334
+v -0.196663 0.524553 0.284384
+v -0.199739 0.553728 0.250696
+v -0.203963 0.577583 0.212756
+v -0.175737 0.588627 0.231282
+v -0.178199 0.616952 0.172883
+v -0.139393 0.639549 0.160084
+v -0.098417 0.667644 0.099914
+v -0.067639 0.683339 0.044670
+v -0.055848 0.671601 0.115283
+v -0.098731 0.653706 0.150647
+v -0.135621 0.625400 0.198316
+v -0.160244 0.602779 0.222088
+v -0.137527 0.586314 0.265116
+v -0.168407 0.557356 0.278625
+v -0.133746 0.554501 0.305261
+v -0.160096 0.523840 0.317440
+v -0.188173 0.494368 0.316918
+v -0.181249 0.471216 0.338312
+v -0.211279 0.443952 0.326853
+v -0.227165 0.397688 0.332775
+v -0.246617 0.356244 0.322498
+v -0.269761 0.304665 0.292591
+v -0.295921 0.110349 0.197556
+v -0.290146 0.042926 0.130103
+v -0.267327 -0.040353 0.027189
+v -0.243125 -0.122672 0.023796
+v -0.238995 -0.130386 -0.023753
+v -0.228958 -0.141579 -0.076439
+v -0.220704 -0.184112 -0.078258
+v -0.220084 -0.211324 -0.073241
+v -0.214891 -0.229397 -0.104293
+v -0.207761 -0.234907 -0.133005
+v -0.217103 -0.257970 -0.119896
+v -0.213883 -0.278543 -0.150187
+v -0.217326 -0.303519 -0.169726
+v -0.207200 -0.306959 -0.189475
+v -0.225325 -0.336620 -0.196563
+v -0.247730 -0.356093 -0.196601
+v -0.235295 -0.330059 -0.168639
+v -0.224625 -0.287687 -0.128352
+v -0.226561 -0.186054 -0.028514
+v -0.227293 -0.186757 0.014408
+v -0.236350 -0.138422 0.059099
+v -0.253767 -0.068833 0.106922
+v -0.262694 -0.023837 0.171401
+v -0.282086 0.130518 0.280146
+v -0.284207 0.162946 0.276699
+v -0.280043 0.239674 0.277724
+v -0.271260 0.218030 0.299914
+v -0.260079 0.286993 0.316344
+v -0.240313 0.300827 0.345659
+v -0.229868 0.326295 0.353394
+v -0.214929 0.368497 0.356242
+v -0.199151 0.415258 0.352231
+v -0.167013 0.439348 0.363422
+v -0.151101 0.494079 0.344351
+v -0.132494 0.477144 0.362992
+v -0.124249 0.519603 0.340183
+v -0.099481 0.525968 0.344175
+v -0.099504 0.564524 0.309790
+v -0.101261 0.596843 0.269186
+v -0.115486 0.620082 0.223016
+v -0.069703 0.645167 0.190119
+v -0.066200 0.620006 0.245264
+v -0.064453 0.589303 0.291222
+v -0.065279 0.552720 0.329127
+v -0.066535 0.510841 0.360279
+v -0.099758 0.484241 0.370058
+v -0.135365 0.439000 0.377421
+v -0.152543 0.385944 0.387401
+v -0.185172 0.378379 0.374499
+v -0.202036 0.331839 0.375838
+v -0.221402 0.285028 0.366994
+v -0.233282 0.267805 0.354862
+v -0.244688 0.262484 0.341116
+v -0.255999 0.251779 0.324746
+v -0.263210 0.212764 0.314153
+v -0.269740 0.145336 0.316810
+v -0.277103 0.096018 0.275521
+v -0.266354 0.083878 0.303775
+v -0.268518 0.042767 0.244747
+v -0.256235 -0.025916 0.204919
+v -0.235106 -0.113888 0.130874
+v -0.224291 -0.209342 -0.022711
+v -0.224185 -0.234068 -0.037685
+v -0.226169 -0.257076 -0.060003
+v -0.231294 -0.280798 -0.077088
+v -0.237535 -0.299408 -0.089473
+v -0.243531 -0.316803 -0.109299
+v -0.248210 -0.332439 -0.135141
+v -0.273909 -0.355841 -0.120067
+v -0.263664 -0.354239 -0.158477
+v -0.283509 -0.375744 -0.179819
+v -0.299244 -0.380446 -0.153683
+v -0.376282 -0.428712 -0.157919
+v -0.394150 -0.449650 -0.193263
+v -0.414982 -0.455609 -0.154054
+v -0.460836 -0.501770 -0.179055
+v -0.440905 -0.481631 -0.177232
+v -0.453959 -0.519754 -0.228238
+v -0.458085 -0.534023 -0.229834
+v -0.439039 -0.537727 -0.263701
+v -0.418950 -0.545333 -0.284839
+v -0.443063 -0.548383 -0.256256
+v -0.394991 -0.535829 -0.301430
+v -0.389013 -0.550475 -0.307070
+v -0.366683 -0.533371 -0.315064
+v -0.391087 -0.561377 -0.299053
+v -0.425618 -0.557456 -0.268372
+v -0.411358 -0.565471 -0.264311
+v -0.433261 -0.563137 -0.220820
+v -0.449120 -0.554672 -0.226436
+v -0.466970 -0.542746 -0.197554
+v -0.471636 -0.530082 -0.185971
+v -0.469567 -0.516655 -0.181488
+v -0.467585 -0.500179 -0.141752
+v -0.455966 -0.486591 -0.133683
+v -0.439303 -0.472230 -0.106969
+v -0.400551 -0.442303 -0.114558
+v -0.313604 -0.385634 -0.115480
+v -0.288017 -0.366126 -0.092646
+v -0.260644 -0.338749 -0.093124
+v -0.266695 -0.345527 -0.054207
+v -0.246759 -0.316594 -0.037941
+v -0.231962 -0.281575 -0.015700
+v -0.243265 -0.318172 -0.008588
+v -0.226063 -0.255745 -0.002917
+v -0.221613 -0.228247 0.022212
+v -0.222835 -0.203923 0.030685
+v -0.216595 -0.213696 0.059784
+v -0.221143 -0.171986 0.092307
+v -0.206784 -0.187653 0.134381
+v -0.223007 -0.129753 0.166403
+v -0.243220 -0.059097 0.211611
+v -0.266146 0.111345 0.321553
+v -0.250113 0.136292 0.349847
+v -0.244749 0.193724 0.339658
+v -0.235231 0.223096 0.345849
+v -0.206987 0.227582 0.364879
+v -0.217980 0.260134 0.366546
+v -0.195194 0.263452 0.380595
+v -0.207800 0.286139 0.377597
+v -0.183773 0.306600 0.390466
+v -0.169367 0.340169 0.392175
+v -0.146843 0.323058 0.403888
+v -0.118393 0.378900 0.400195
+v -0.105901 0.443848 0.385229
+v -0.079758 0.407667 0.401533
+v -0.066223 0.468000 0.382901
+v -0.101528 0.327827 0.414658
+v -0.166983 0.289490 0.398634
+v -0.163352 0.270358 0.395625
+v -0.173028 0.249435 0.383496
+v -0.182459 0.202920 0.376372
+v -0.214785 0.196261 0.361336
+v -0.227496 0.144505 0.370745
+v -0.245287 0.100579 0.356687
+v -0.250490 0.068605 0.333491
+v -0.239923 0.011203 0.306542
+v -0.213676 -0.101798 0.259972
+v -0.210936 -0.140976 0.195631
+v -0.201629 -0.177732 0.165867
+v -0.203717 -0.232635 0.095673
+v -0.216335 -0.239026 0.045535
+v -0.224147 -0.277113 0.026626
+v -0.231492 -0.302878 0.019231
+v -0.251250 -0.344748 0.008125
+v -0.264819 -0.350521 -0.020876
+v -0.272056 -0.366433 -0.006739
+v -0.290855 -0.371530 -0.051320
+v -0.321078 -0.391916 -0.082976
+v -0.345235 -0.411284 -0.065643
+v -0.329833 -0.404425 -0.048276
+v -0.419141 -0.463177 -0.063140
+v -0.422831 -0.478383 -0.026178
+v -0.463392 -0.498518 -0.075848
+v -0.477547 -0.512737 -0.129107
+v -0.479656 -0.527036 -0.126005
+v -0.474912 -0.538969 -0.145754
+v -0.365860 -0.570606 -0.292545
+v -0.294481 -0.574643 -0.307220
+v -0.237667 -0.584088 -0.203976
+v -0.113617 -0.566963 0.070920
+v -0.110010 -0.564012 0.101703
+v -0.024083 -0.562556 0.136779
+v -0.151125 -0.574753 0.012146
+v -0.254056 -0.581210 -0.267839
+v -0.198307 -0.578476 -0.305639
+v -0.306986 -0.570067 -0.319534
+v -0.304261 -0.563397 -0.328133
+v -0.354141 -0.565509 -0.312039
+v -0.353211 -0.557400 -0.320072
+v -0.337309 -0.544642 -0.327862
+v -0.300514 -0.552291 -0.333242
+v -0.341780 -0.529427 -0.323620
+v -0.292713 -0.525496 -0.333658
+v -0.266556 -0.534675 -0.339205
+v -0.296842 -0.492211 -0.315519
+v -0.255115 -0.518566 -0.336534
+v -0.242306 -0.558458 -0.337518
+v -0.213083 -0.569267 -0.335052
+v -0.183083 -0.573860 -0.327988
+v -0.100966 -0.582825 -0.282112
+v -0.056960 -0.580059 0.027888
+v -0.118712 -0.580367 -0.033307
+v -0.069773 -0.586184 -0.115038
+v -0.076459 -0.587024 -0.157350
+v -0.062984 -0.580591 -0.299175
+v -0.134112 -0.577268 -0.315763
+v -0.159497 -0.553281 -0.342553
+v -0.216525 -0.546106 -0.343112
+v -0.177573 -0.524057 -0.345261
+v -0.209861 -0.493363 -0.334296
+v -0.189871 -0.464466 -0.322641
+v -0.242930 -0.477580 -0.320817
+v -0.144147 -0.563944 -0.337430
+v -0.058364 -0.575482 -0.315187
+v -0.413180 -0.486826 0.006008
+v -0.347594 -0.433848 -0.008320
+v -0.314713 -0.403226 -0.017935
+v -0.297366 -0.386111 -0.021439
+v -0.290588 -0.402286 0.015203
+v -0.268969 -0.380246 0.017306
+v -0.247790 -0.364694 0.034526
+v -0.237501 -0.335565 0.029337
+v -0.220215 -0.334581 0.062144
+v -0.208123 -0.291222 0.071891
+v -0.200259 -0.270069 0.089223
+v -0.191012 -0.245276 0.125391
+v -0.184077 -0.222029 0.163995
+v -0.183384 -0.195388 0.194901
+v -0.185655 -0.171740 0.223599
+v -0.195341 -0.127777 0.276094
+v -0.214812 -0.081114 0.288925
+v -0.211648 -0.060611 0.318425
+v -0.225032 0.015568 0.346733
+v -0.234793 0.067700 0.361446
+v -0.212895 0.071405 0.389297
+v -0.219340 0.111305 0.384599
+v -0.201933 0.140568 0.389756
+v -0.149349 0.215024 0.386627
+v -0.154774 0.232608 0.385272
+v -0.121555 0.254813 0.398842
+v -0.107428 0.277934 0.411823
+v -0.107500 0.296789 0.414964
+v -0.073285 0.282518 0.424841
+v -0.056831 0.349481 0.418615
+v -0.060398 0.299589 0.426155
+v -0.074580 0.263904 0.420558
+v -0.069564 0.244223 0.417429
+v -0.101362 0.233419 0.397543
+v -0.104085 0.214051 0.395573
+v -0.146183 0.192298 0.393826
+v -0.145091 0.150385 0.410556
+v -0.175781 0.139942 0.404282
+v -0.196223 0.100895 0.402066
+v -0.182751 0.024021 0.404957
+v -0.205312 0.001926 0.371715
+v -0.193859 0.008226 0.389565
+v -0.175261 -0.136813 0.316567
+v -0.159689 -0.129498 0.361984
+v -0.164220 -0.194907 0.239136
+v -0.169170 -0.251129 0.171779
+v -0.178267 -0.276858 0.139010
+v -0.187661 -0.296615 0.114807
+v -0.202803 -0.322305 0.089722
+v -0.225943 -0.368099 0.070520
+v -0.260623 -0.400656 0.050328
+v -0.322248 -0.435386 0.023309
+v -0.315842 -0.452294 0.052365
+v -0.123028 -0.227433 0.269189
+v -0.127483 -0.206464 0.300399
+v -0.196029 -0.071830 0.344150
+v -0.178639 -0.071043 0.375065
+v -0.178255 0.039927 0.410853
+v -0.158211 0.043323 0.422180
+v -0.162336 0.076889 0.418754
+v -0.158936 0.114917 0.414905
+v -0.139000 0.073508 0.428675
+v -0.104341 0.147245 0.422765
+v -0.098385 0.189498 0.403556
+v -0.082630 0.193656 0.408069
+v -0.067556 0.194508 0.418975
+v -0.082235 0.215159 0.403654
+v -0.045653 0.212705 0.436476
+v -0.049487 0.230905 0.430095
+v -0.045231 0.255647 0.431346
+v -0.029763 0.223330 0.444531
+v -0.033747 0.193772 0.457780
+v -0.071621 0.131199 0.450271
+v -0.097059 0.130510 0.431975
+v -0.092845 0.095370 0.443921
+v -0.105793 0.078038 0.440669
+v -0.150508 -0.012360 0.426172
+v -0.166137 -0.029747 0.408448
+v -0.171520 -0.060149 0.390612
+v -0.155092 -0.116424 0.380619
+v -0.127824 -0.132839 0.402015
+v -0.140054 -0.163920 0.355236
+v -0.127081 -0.186917 0.343599
+v -0.100327 -0.228556 0.307764
+v -0.099429 -0.245471 0.273196
+v -0.078366 -0.243294 0.306790
+v -0.094467 -0.209894 0.373048
+v -0.092675 -0.198340 0.396079
+v -0.109149 -0.169733 0.399147
+v -0.117895 -0.132226 0.411774
+v -0.119916 -0.107236 0.416569
+v -0.134553 -0.088151 0.411164
+v -0.130515 -0.060574 0.420325
+v -0.148619 -0.031176 0.422208
+v -0.103138 0.003779 0.450625
+v -0.079108 -0.023025 0.460619
+v -0.076684 -0.037262 0.457476
+v -0.108518 -0.057587 0.429386
+v -0.107635 -0.076415 0.427892
+v -0.070682 -0.053008 0.451876
+v -0.082656 -0.122756 0.442714
+v -0.071391 -0.095537 0.451737
+v -0.066812 -0.068291 0.451004
+v -0.081072 -0.222575 0.375141
+v -0.071241 -0.234685 0.358179
+v -0.058435 -0.246273 0.328267
+v -0.039301 -0.250625 0.329364
+v -0.040876 -0.095611 0.459919
+v -0.056198 -0.094290 0.457053
+v -0.046152 0.004898 0.466934
+v -0.038154 -0.132060 0.453681
+v -0.078536 0.093472 0.458760
+v -0.068660 0.085006 0.481844
+v -0.071014 0.115982 0.459043
+v -0.052470 0.154264 0.456557
+v -0.030899 0.156728 0.485232
+v -0.034077 0.113160 0.515602
+v -0.070032 0.070830 0.485025
+v -0.021207 0.095814 0.535572
+v -0.003807 -0.235680 0.429478
+v -0.000237 -0.225592 0.442942
+v 0.013273 0.043920 0.508457
+v 0.019567 0.053857 0.518606
+v 0.064586 0.040374 0.467087
+v 0.040741 0.039002 0.479601
+v 0.044656 0.026180 0.470742
+v 0.083361 0.066583 0.453851
+v 0.067745 0.053374 0.475130
+v 0.087028 0.030383 0.454393
+v 0.067684 0.015048 0.462634
+v 0.041383 -0.197634 0.452144
+v 0.059366 -0.180661 0.447551
+v 0.053519 -0.164688 0.452153
+v 0.026226 -0.210007 0.450625
+v 0.029310 -0.178031 0.455478
+v 0.135099 -0.260502 0.213519
+v 0.129059 -0.234078 0.249791
+v 0.154176 -0.257122 0.190796
+v 0.113212 -0.272372 0.227278
+v 0.036243 -0.480125 0.189528
+v 0.269436 0.470019 0.201642
+v 0.325762 0.221918 0.059754
+v 0.314242 0.178676 0.110382
+v 0.312447 0.092002 -0.005832
+v 0.307615 0.106611 -0.008497
+v 0.366210 0.218476 -0.058008
+v 0.354645 0.242650 -0.032568
+v 0.343350 0.124173 -0.044023
+v 0.325177 0.113870 -0.029700
+v 0.355799 0.260678 -0.048804
+v 0.349458 0.262317 -0.063448
+v 0.342576 0.270559 -0.041873
+v 0.357893 0.256988 -0.039294
+v 0.364020 0.243196 -0.052483
+v 0.364753 0.251618 -0.059154
+v 0.338894 0.264927 -0.075892
+v 0.238777 -0.574189 -0.057458
+v 0.278935 0.003864 -0.048739
+v 0.344588 -0.578928 -0.212439
+v 0.388383 -0.489806 -0.267965
+v 0.354242 -0.448999 -0.247322
+v 0.178611 -0.387940 -0.270319
+v 0.220429 -0.376333 -0.245094
+v 0.183022 -0.424437 -0.296285
+v 0.250181 -0.439819 -0.292908
+v 0.040452 -0.524916 -0.348658
+v 0.033363 -0.538652 -0.345479
+v -0.000015 -0.497699 -0.349797
+v 0.074592 0.067596 0.466670
+v 0.066046 0.059883 0.487609
+v 0.034916 -0.280712 0.264729
+v 0.043761 -0.098820 -0.248682
+v 0.036615 -0.070814 -0.259868
+v 0.033156 -0.383970 -0.293190
+v 0.032331 -0.322290 -0.268910
+v 0.017296 -0.277783 -0.256512
+v 0.030066 -0.212157 -0.240898
+v 0.026193 -0.161811 -0.237676
+v 0.036584 -0.133565 -0.239566
+v 0.030999 -0.041063 -0.274811
+v 0.072527 -0.032900 -0.274933
+v 0.098543 -0.072026 -0.251824
+v 0.112040 -0.024412 -0.273044
+v 0.169832 0.053314 -0.297595
+v 0.203957 0.099728 -0.301990
+v 0.227921 0.145516 -0.302556
+v 0.261100 0.170144 -0.275126
+v 0.263948 0.217039 -0.284035
+v 0.278333 0.202053 -0.259653
+v 0.292346 0.255281 -0.245260
+v 0.321720 0.298788 -0.168189
+v 0.328928 0.311101 -0.127557
+v 0.331968 0.324242 -0.093040
+v 0.334984 0.286292 -0.074825
+v 0.337301 0.276319 -0.060356
+v 0.362899 0.250965 -0.074041
+v 0.364535 0.238671 -0.084859
+v 0.369266 0.236476 -0.069838
+v 0.370273 0.217444 -0.085730
+v 0.369837 0.207084 -0.077105
+v 0.354603 0.178743 -0.048102
+v 0.337667 0.201675 -0.015137
+v 0.339388 0.168212 -0.029437
+v 0.329074 0.170415 -0.008831
+v 0.310539 0.144077 -0.002031
+v 0.322220 0.128570 -0.027071
+v 0.306439 0.126406 -0.006455
+v 0.323570 0.101845 -0.024086
+v 0.326204 0.073330 -0.012484
+v 0.338196 0.089284 -0.032212
+v 0.317504 0.064949 0.005474
+v 0.305726 0.092791 0.006873
+v 0.300396 0.109939 0.008887
+v 0.302458 0.133753 0.010794
+v 0.307551 0.139343 0.049742
+v 0.311670 0.162081 0.059732
+v 0.324516 0.181829 0.013919
+v 0.329449 0.205597 0.028105
+v 0.331777 0.193365 0.002015
+v 0.341111 0.234773 0.006978
+v 0.338238 0.222519 -0.008113
+v 0.350361 0.248831 -0.018893
+v 0.340782 0.271632 -0.021186
+v 0.345831 0.253772 -0.008349
+v 0.341326 0.264532 -0.009927
+v 0.336121 0.286525 -0.026996
+v 0.336035 0.285874 -0.044665
+v 0.330325 0.355402 -0.062467
+v 0.323418 0.352072 -0.142348
+v 0.311220 0.332967 -0.200085
+v 0.292298 0.312813 -0.246358
+v 0.271072 0.313269 -0.277723
+v 0.280889 0.260426 -0.265602
+v 0.252075 0.267869 -0.303015
+v 0.242685 0.210269 -0.306977
+v 0.225095 0.194980 -0.319429
+v 0.194245 0.184759 -0.338317
+v 0.191498 0.148529 -0.329313
+v 0.162782 0.107374 -0.327540
+v 0.131972 0.075779 -0.322398
+v 0.107706 0.070046 -0.325450
+v 0.036861 0.025448 -0.310559
+v 0.048320 0.095921 -0.344176
+v 0.040484 0.278202 -0.383049
+v 0.039217 0.682784 0.072578
+v 0.040285 0.632665 0.227104
+v 0.019205 0.259826 0.436133
+v 0.017271 0.216273 0.452566
+v 0.018715 0.114171 0.528157
+v 0.022361 0.079999 0.533812
+v 0.021180 0.095814 0.535573
+v 0.027625 0.062534 0.520806
+v 0.052796 0.053518 0.492350
+v 0.021810 0.031528 0.480623
+v 0.023140 0.017274 0.470789
+v 0.021247 -0.002949 0.467801
+v 0.044279 -0.025356 0.470577
+v 0.044453 -0.040430 0.468481
+v 0.030690 -0.054721 0.463112
+v 0.021011 -0.068494 0.460132
+v 0.015473 -0.100958 0.461641
+v 0.017093 -0.143245 0.456012
+v 0.082445 -0.161157 0.436840
+v 0.051661 -0.210865 0.441978
+v 0.073280 -0.197364 0.428876
+v 0.049014 -0.224632 0.430967
+v 0.033282 -0.222629 0.441554
+v 0.062227 -0.225297 0.413038
+v 0.044840 -0.238084 0.406888
+v 0.024064 -0.234350 0.428583
+v 0.025102 -0.240932 0.412811
+v 0.025759 -0.244971 0.393735
+v 0.020819 -0.258606 0.307479
+v 0.052037 -0.259413 0.293299
+v 0.074812 -0.259157 0.276620
+v 0.037106 -0.300397 0.244886
+v 0.066768 -0.280151 0.253320
+v 0.069075 -0.303157 0.233242
+v 0.095758 -0.263710 0.252491
+v 0.090808 -0.282777 0.236618
+v 0.092597 -0.308470 0.220010
+v 0.114225 -0.317401 0.201921
+v 0.131809 -0.311132 0.189744
+v 0.150660 -0.328397 0.164237
+v 0.164625 -0.302031 0.153480
+v 0.176858 -0.321970 0.131624
+v 0.179770 -0.347211 0.128412
+v 0.154226 -0.368336 0.155925
+v 0.184985 -0.387507 0.127665
+v 0.202576 -0.360382 0.100666
+v 0.213359 -0.397133 0.101653
+v 0.194601 -0.426699 0.130027
+v 0.233102 -0.441505 0.108296
+v 0.235495 -0.409581 0.085773
+v 0.261971 -0.428852 0.075952
+v 0.276428 -0.471879 0.102241
+v 0.229716 -0.469168 0.126848
+v 0.286466 -0.449562 0.074451
+v 0.262687 -0.492426 0.125969
+v 0.313601 -0.476271 0.082411
+v 0.313614 -0.504259 0.110845
+v 0.361776 -0.505682 0.081712
+v 0.383875 -0.501331 0.059617
+v 0.400359 -0.495323 0.035227
+v 0.412864 -0.513515 0.044171
+v 0.433114 -0.506794 0.009784
+v 0.440123 -0.520237 0.007606
+v 0.453319 -0.501003 -0.037852
+v 0.459474 -0.516317 -0.034208
+v 0.467716 -0.525676 -0.054682
+v 0.470861 -0.513571 -0.071283
+v 0.457717 -0.538665 -0.048805
+v 0.474092 -0.537905 -0.114779
+v 0.466158 -0.548203 -0.131189
+v 0.461015 -0.551140 -0.182676
+v 0.443659 -0.560358 -0.171057
+v 0.397655 -0.571369 -0.166321
+v 0.394533 -0.572528 -0.208781
+v 0.352435 -0.572883 -0.292773
+v 0.382511 -0.570016 -0.279228
+v 0.299215 -0.580051 -0.257065
+v 0.338002 -0.578859 -0.161444
+v 0.430264 -0.561475 -0.124625
+v 0.411021 -0.561576 -0.094799
+v 0.447594 -0.551866 -0.092281
+v 0.436490 -0.549670 -0.053319
+v 0.439615 -0.539731 -0.010155
+v 0.441780 -0.530725 0.000677
+v 0.395195 -0.530633 0.073093
+v 0.415828 -0.524929 0.045562
+v 0.392308 -0.519133 0.069858
+v 0.355468 -0.523592 0.099323
+v 0.297981 -0.519118 0.128479
+v 0.241434 -0.510820 0.144600
+v 0.202797 -0.455007 0.134337
+v 0.188341 -0.465812 0.145036
+v 0.158862 -0.441196 0.155593
+v 0.162612 -0.405839 0.149100
+v 0.123597 -0.368033 0.180133
+v 0.093280 -0.351516 0.202690
+v 0.069448 -0.336207 0.216693
+v 0.046212 -0.319358 0.229972
+v 0.022396 -0.342562 0.220996
+v 0.038880 -0.388936 0.203703
+v 0.032925 -0.424204 0.195895
+v 0.061722 -0.431988 0.191052
+v 0.107256 -0.504493 0.173636
+v 0.075211 -0.512387 0.176475
+v 0.118607 -0.531503 0.168961
+v 0.099186 -0.547068 0.162945
+v 0.160719 -0.546370 0.162446
+v 0.154069 -0.553459 0.157255
+v 0.171612 -0.533154 0.164328
+v 0.143984 -0.558488 0.149375
+v 0.134470 -0.561094 0.138386
+v 0.225731 -0.557922 0.133250
+v 0.231150 -0.552837 0.144090
+v 0.313127 -0.551534 0.055375
+v 0.265151 -0.557261 0.050448
+v 0.169759 -0.570781 0.027630
+v 0.197039 -0.579827 -0.081780
+v 0.376615 -0.572407 -0.135997
+v 0.243821 -0.583638 -0.166022
+v 0.408665 -0.552884 -0.032279
+v 0.410553 -0.542449 0.017985
+v 0.393075 -0.536674 0.061689
+v 0.336702 -0.544166 0.104674
+v 0.340966 -0.539962 0.110712
+v 0.327296 -0.533636 0.117847
+v 0.296106 -0.543404 0.131718
+v 0.277889 -0.531932 0.140633
+v 0.239426 -0.536850 0.152033
+v 0.229485 -0.526184 0.152984
+v 0.197150 -0.504528 0.154977
+v 0.163117 -0.483834 0.159324
+v 0.138920 -0.457769 0.165618
+v 0.124971 -0.422540 0.172302
+v 0.117055 -0.393521 0.179575
+v 0.090166 -0.412762 0.187912
+v 0.069987 -0.394646 0.198018
+v 0.047571 -0.346517 0.216991
+v 0.106288 -0.456042 0.177353
+v 0.139286 -0.500324 0.167659
+v 0.241320 -0.545939 0.148701
+v 0.276602 -0.551313 0.132177
+v 0.280666 -0.553661 0.120188
+v 0.327288 -0.548877 0.070318
+v 0.378678 -0.547178 0.025313
+v 0.234906 -0.584187 -0.197848
+v 0.205709 -0.559883 0.075971
+v 0.024886 -0.557365 0.149745
+v 0.054985 -0.530301 0.171153
+v 0.053497 -0.567436 -0.327788
+v 0.059936 -0.511594 -0.348637
+v 0.161795 -0.502487 -0.343170
+v 0.027978 -0.477535 -0.342111
+v 0.137942 -0.477485 -0.335398
+v 0.293157 -0.466104 -0.300122
+v 0.283789 -0.431654 -0.272959
+v 0.318145 -0.426718 -0.246927
+v 0.318688 -0.445926 -0.270503
+v 0.391055 -0.515359 -0.291263
+v 0.367859 -0.515144 -0.304558
+v 0.417726 -0.523581 -0.278449
+v 0.435568 -0.521352 -0.259000
+v 0.402683 -0.469191 -0.224067
+v 0.437561 -0.497917 -0.221949
+v 0.365011 -0.441167 -0.222229
+v 0.356586 -0.424986 -0.196261
+v 0.305369 -0.407578 -0.226659
+v 0.285199 -0.388082 -0.209749
+v 0.248694 -0.379287 -0.231033
+v 0.215004 -0.345441 -0.217870
+v 0.184691 -0.351084 -0.242313
+v 0.175785 -0.319132 -0.226920
+v 0.155645 -0.345480 -0.250955
+v 0.137948 -0.394154 -0.283596
+v 0.074348 -0.413779 -0.303921
+v 0.104079 -0.365415 -0.274415
+v 0.095640 -0.327316 -0.260171
+v 0.048501 -0.265489 -0.250343
+v 0.080069 -0.189093 -0.234211
+v 0.088401 -0.118052 -0.237506
+v 0.082742 -0.150340 -0.233043
+v 0.108915 -0.097933 -0.239392
+v 0.142305 -0.036940 -0.259230
+v 0.197747 0.044292 -0.278027
+v 0.222342 0.075424 -0.276649
+v 0.246025 0.101700 -0.265205
+v 0.266697 0.105301 -0.238428
+v 0.280593 0.133678 -0.229445
+v 0.293834 0.180571 -0.222015
+v 0.308878 0.279007 -0.210190
+v 0.317123 0.256969 -0.176339
+v 0.328309 0.230062 -0.121438
+v 0.334437 0.269584 -0.090245
+v 0.343339 0.249947 -0.089246
+v 0.332793 0.252802 -0.103181
+v 0.343718 0.230760 -0.099178
+v 0.355073 0.225584 -0.097821
+v 0.366164 0.216997 -0.096627
+v 0.357057 0.204433 -0.103792
+v 0.369765 0.187889 -0.091372
+v 0.363288 0.171773 -0.063254
+v 0.336692 0.155518 -0.031784
+v 0.349160 0.143983 -0.047864
+v 0.346110 0.107439 -0.043492
+v 0.327795 0.053456 -0.010845
+v 0.312177 0.058488 0.017904
+v 0.304968 0.077599 0.031568
+v 0.303850 0.092800 0.041668
+v 0.319584 0.186194 0.043074
+v 0.333152 0.242916 0.031337
+v 0.335898 0.272379 0.006174
+v 0.323872 0.406676 -0.019006
+v 0.324096 0.394048 -0.081990
+v 0.314134 0.440611 -0.099283
+v 0.315679 0.398779 -0.142852
+v 0.308037 0.406091 -0.171035
+v 0.310552 0.365047 -0.189446
+v 0.291165 0.422336 -0.207366
+v 0.292975 0.363949 -0.233564
+v 0.271948 0.364740 -0.266002
+v 0.249225 0.335845 -0.299273
+v 0.217480 0.271101 -0.333153
+v 0.213748 0.235023 -0.334266
+v 0.185262 0.270497 -0.353171
+v 0.193778 0.221713 -0.345866
+v 0.162530 0.197339 -0.356705
+v 0.155494 0.148426 -0.346390
+v 0.127689 0.179639 -0.363691
+v 0.116617 0.132901 -0.352097
+v 0.098632 0.176701 -0.368140
+v 0.105644 0.228097 -0.375428
+v 0.136369 0.227709 -0.369470
+v 0.161575 0.250589 -0.363546
+v 0.166001 0.329440 -0.358807
+v 0.199836 0.325121 -0.340755
+v 0.225638 0.328241 -0.321506
+v 0.199320 0.377579 -0.331937
+v 0.222602 0.377712 -0.313995
+v 0.271715 0.416067 -0.245090
+v 0.271626 0.449444 -0.224498
+v 0.292244 0.460975 -0.171101
+v 0.306325 0.444943 -0.140383
+v 0.316755 0.447452 -0.055261
+v 0.332817 0.323812 0.024257
+v 0.329196 0.312869 0.066966
+v 0.325887 0.335752 0.075222
+v 0.330609 0.283106 0.059971
+v 0.317446 0.357569 0.108331
+v 0.317304 0.424526 0.035019
+v 0.303954 0.498206 -0.065575
+v 0.295535 0.497418 -0.115597
+v 0.273315 0.522997 -0.144831
+v 0.272363 0.482244 -0.195421
+v 0.245236 0.474793 -0.245319
+v 0.245594 0.408781 -0.281285
+v 0.219892 0.479630 -0.271625
+v 0.212766 0.428529 -0.304823
+v 0.165230 0.385820 -0.351092
+v 0.130030 0.347095 -0.369645
+v 0.129054 0.282229 -0.373087
+v 0.086531 0.278589 -0.379590
+v 0.057867 0.231358 -0.380848
+v 0.055374 0.177048 -0.371147
+v 0.086944 0.328715 -0.377172
+v 0.111075 0.397389 -0.366974
+v 0.139114 0.388704 -0.361711
+v 0.156263 0.434424 -0.342581
+v 0.181964 0.432198 -0.327742
+v 0.192838 0.469848 -0.302017
+v 0.179838 0.511623 -0.286867
+v 0.213966 0.518189 -0.249491
+v 0.244888 0.519261 -0.206412
+v 0.243188 0.550354 -0.171146
+v 0.282937 0.541680 -0.081902
+v 0.311259 0.478079 -0.023317
+v 0.306343 0.445192 0.086505
+v 0.303086 0.347970 0.177022
+v 0.303682 0.391670 0.145515
+v 0.309673 0.471806 0.027723
+v 0.302487 0.510947 -0.002534
+v 0.292347 0.536208 -0.033506
+v 0.276420 0.562243 -0.049581
+v 0.244574 0.576084 -0.126343
+v 0.212400 0.573485 -0.191563
+v 0.212783 0.547836 -0.222313
+v 0.188691 0.550549 -0.245771
+v 0.163540 0.559905 -0.256850
+v 0.148695 0.519940 -0.300367
+v 0.157633 0.478340 -0.322243
+v 0.127200 0.494627 -0.325859
+v 0.128935 0.455248 -0.345440
+v 0.130235 0.427325 -0.355634
+v 0.061439 0.346228 -0.376948
+v 0.083490 0.425205 -0.362580
+v 0.074411 0.455784 -0.353688
+v 0.073791 0.483016 -0.342096
+v 0.096143 0.523358 -0.315199
+v 0.125241 0.569908 -0.267301
+v 0.176659 0.588254 -0.213904
+v 0.166068 0.612224 -0.185476
+v 0.200725 0.602222 -0.161573
+v 0.224151 0.592630 -0.139083
+v 0.218711 0.612406 -0.105358
+v 0.248523 0.591857 -0.079141
+v 0.257802 0.591933 -0.030916
+v 0.277096 0.566973 -0.007563
+v 0.288897 0.539976 0.031777
+v 0.276273 0.563507 0.034661
+v 0.294058 0.518843 0.051805
+v 0.288733 0.493136 0.115476
+v 0.285252 0.436156 0.180461
+v 0.288744 0.468887 0.140831
+v 0.273971 0.537453 0.109612
+v 0.250720 0.600472 0.020850
+v 0.244458 0.608031 -0.012245
+v 0.236499 0.611439 -0.050428
+v 0.222597 0.626122 -0.018612
+v 0.211815 0.626871 -0.070239
+v 0.187009 0.640670 -0.076409
+v 0.185402 0.626781 -0.129256
+v 0.146314 0.637139 -0.151706
+v 0.128658 0.623152 -0.195759
+v 0.128154 0.598249 -0.233572
+v 0.089083 0.613059 -0.230471
+v 0.087186 0.584523 -0.265383
+v 0.072400 0.563751 -0.288188
+v 0.061014 0.538145 -0.309111
+v 0.048970 0.511042 -0.327323
+v 0.050112 0.624419 -0.219054
+v 0.091829 0.642741 -0.177280
+v 0.116137 0.650756 -0.144347
+v 0.149120 0.649464 -0.111439
+v 0.149536 0.660601 -0.055765
+v 0.186503 0.647376 -0.025050
+v 0.221269 0.625324 0.029354
+v 0.247398 0.594851 0.066656
+v 0.255282 0.570418 0.109891
+v 0.276735 0.378663 0.243988
+v 0.255034 0.460998 0.244484
+v 0.247153 0.508272 0.221578
+v 0.264356 0.519247 0.165013
+v 0.243904 0.551660 0.175890
+v 0.227357 0.597447 0.126513
+v 0.216762 0.620255 0.078741
+v 0.182685 0.642204 0.077092
+v 0.184864 0.647538 0.026254
+v 0.148041 0.664573 -0.003062
+v 0.108944 0.674650 -0.047246
+v 0.109154 0.668121 -0.088593
+v 0.061737 0.670307 -0.120608
+v 0.044716 0.647034 -0.180103
+v 0.066300 0.682921 -0.064153
+v 0.057144 0.688575 -0.023925
+v 0.107010 0.677752 -0.006718
+v 0.107501 0.674461 0.047111
+v 0.146652 0.662020 0.049503
+v 0.140986 0.656775 0.096022
+v 0.165452 0.638960 0.128277
+v 0.197315 0.621917 0.126442
+v 0.201162 0.602416 0.171127
+v 0.222077 0.584312 0.169239
+v 0.217076 0.566117 0.209729
+v 0.231581 0.524125 0.236246
+v 0.212964 0.542943 0.245751
+v 0.210335 0.514943 0.277141
+v 0.235180 0.459998 0.284906
+v 0.255994 0.410470 0.277253
+v 0.288630 0.308566 0.241327
+v 0.302874 0.288746 0.196771
+v 0.319011 0.301039 0.129379
+v 0.324552 0.265929 0.101532
+v 0.313415 0.201740 0.144905
+v 0.307550 0.129984 0.147155
+v 0.308474 0.115691 0.087587
+v 0.305301 0.101231 0.128203
+v 0.303017 0.080384 0.065071
+v 0.300619 0.062236 0.058255
+v 0.291720 0.034112 0.070299
+v 0.303668 0.051966 0.039923
+v 0.293973 0.027296 0.041766
+v 0.307029 0.044353 0.026478
+v 0.305020 0.035977 0.021816
+v 0.284076 0.005358 0.025890
+v 0.295224 0.020429 0.006125
+v 0.289378 0.012958 -0.000947
+v 0.329278 0.049084 -0.022988
+v 0.303836 0.034541 -0.032789
+v 0.282044 0.002663 -0.013703
+v 0.300290 0.049165 -0.072332
+v 0.310659 0.058374 -0.066298
+v 0.320913 0.060811 -0.059739
+v 0.344174 0.074692 -0.061266
+v 0.350972 0.089491 -0.073055
+v 0.357271 0.108162 -0.085610
+v 0.363415 0.109437 -0.077942
+v 0.364207 0.112366 -0.071640
+v 0.361612 0.114283 -0.063172
+v 0.358731 0.137431 -0.059114
+v 0.345596 0.081288 -0.040917
+v 0.350483 0.081170 -0.053732
+v 0.321645 0.042552 -0.009279
+v 0.327262 0.052527 -0.040213
+v 0.368697 0.161236 -0.080907
+v 0.368524 0.152692 -0.089883
+v 0.361183 0.122095 -0.089814
+v 0.355486 0.126261 -0.095640
+v 0.334882 0.095964 -0.086699
+v 0.322405 0.091163 -0.092482
+v 0.314288 0.093237 -0.103932
+v 0.293075 0.048156 -0.096374
+v 0.255417 -0.026872 -0.121948
+v 0.233260 -0.090978 -0.116606
+v 0.229631 -0.073429 -0.148107
+v 0.212165 -0.122392 -0.148729
+v 0.219456 -0.139770 -0.115740
+v 0.214733 -0.076796 -0.179439
+v 0.205206 -0.164822 -0.140563
+v 0.201120 -0.106544 -0.180907
+v 0.193152 -0.143400 -0.172845
+v 0.188910 -0.174121 -0.170371
+v 0.187825 -0.206847 -0.169847
+v 0.173293 -0.148284 -0.195766
+v 0.170516 -0.176464 -0.193641
+v 0.177623 -0.219629 -0.185957
+v 0.158823 -0.207812 -0.204637
+v 0.162873 -0.242278 -0.206964
+v 0.179829 -0.272177 -0.201155
+v 0.156820 -0.278191 -0.221382
+v 0.137164 -0.226591 -0.221216
+v 0.132599 -0.276191 -0.232888
+v 0.144056 -0.315590 -0.241709
+v 0.111380 -0.255314 -0.236430
+v 0.095784 -0.303587 -0.252240
+v 0.083937 -0.240788 -0.239835
+v 0.119986 -0.126331 -0.228442
+v 0.135779 -0.090835 -0.234640
+v 0.153580 -0.064654 -0.239850
+v 0.181615 -0.046511 -0.234876
+v 0.206945 -0.017344 -0.233983
+v 0.236028 0.048794 -0.247277
+v 0.300962 0.122963 -0.179987
+v 0.304682 0.148860 -0.181671
+v 0.323786 0.204671 -0.133065
+v 0.334731 0.222043 -0.109446
+v 0.345986 0.207746 -0.105349
+v 0.336162 0.193129 -0.110765
+v 0.339304 0.169103 -0.108752
+v 0.365299 0.167079 -0.099908
+v 0.357876 0.158290 -0.103060
+v 0.338165 0.132528 -0.103156
+v 0.328585 0.134238 -0.110627
+v 0.319983 0.130744 -0.120636
+v 0.308989 0.101313 -0.124492
+v 0.302028 0.076481 -0.115831
+v 0.282574 0.049400 -0.158807
+v 0.242186 -0.029763 -0.165052
+v 0.270067 0.052138 -0.193851
+v 0.189833 -0.088797 -0.204746
+v 0.153973 -0.129276 -0.214049
+v 0.146875 -0.161386 -0.212722
+v 0.142087 -0.191895 -0.214938
+v 0.116354 -0.159977 -0.226080
+v 0.109858 -0.191911 -0.228857
+v 0.172606 -0.088930 -0.218147
+v 0.207377 -0.054520 -0.207524
+v 0.227147 -0.028000 -0.200078
+v 0.253964 0.041069 -0.214883
+v 0.288335 0.088992 -0.187136
+v 0.295958 0.085931 -0.162130
+v 0.313120 0.131326 -0.135932
+v 0.318456 0.157022 -0.132221
+v 0.328654 0.189186 -0.118966
+v 0.193990 -0.312744 -0.208929
+v 0.197058 -0.269810 -0.177510
+v 0.199220 -0.248474 -0.160918
+v 0.201792 -0.205145 -0.141027
+v 0.213054 -0.183106 -0.111608
+v 0.249349 -0.067041 -0.074997
+v 0.264857 -0.040000 -0.018308
+v 0.269322 -0.033051 0.050681
+v 0.285616 0.044076 0.169166
+v 0.295341 0.149068 0.226119
+v 0.310583 0.230121 0.167324
+v 0.271088 0.329998 0.283366
+v 0.258671 0.350820 0.302957
+v 0.236817 0.412737 0.311985
+v 0.209709 0.481045 0.304748
+v 0.182957 0.542574 0.282036
+v 0.186914 0.571437 0.244702
+v 0.184944 0.593501 0.213991
+v 0.178359 0.617240 0.172856
+v 0.144135 0.627956 0.186483
+v 0.127549 0.653975 0.124936
+v 0.077386 0.677423 0.073115
+v 0.067242 0.686226 0.016905
+v 0.049475 0.669378 0.125478
+v 0.088247 0.663570 0.125022
+v 0.117984 0.640579 0.175174
+v 0.151624 0.594127 0.244721
+v 0.152274 0.565081 0.282662
+v 0.133153 0.546184 0.313803
+v 0.167646 0.526149 0.310013
+v 0.148796 0.511938 0.333952
+v 0.181790 0.484948 0.329677
+v 0.183632 0.456307 0.344868
+v 0.211375 0.443841 0.327030
+v 0.213957 0.408677 0.342399
+v 0.246625 0.356493 0.322457
+v 0.295895 0.110355 0.197560
+v 0.290192 0.043255 0.130323
+v 0.263493 -0.051311 0.014634
+v 0.243102 -0.122654 0.023789
+v 0.228858 -0.140971 -0.077542
+v 0.220666 -0.184118 -0.078310
+v 0.220057 -0.211323 -0.073234
+v 0.214862 -0.229402 -0.104298
+v 0.207730 -0.234904 -0.133016
+v 0.217078 -0.257973 -0.119887
+v 0.213841 -0.278538 -0.150223
+v 0.217301 -0.303521 -0.169723
+v 0.207176 -0.306965 -0.189476
+v 0.225297 -0.336620 -0.196563
+v 0.235266 -0.330059 -0.168641
+v 0.247698 -0.356088 -0.196601
+v 0.224597 -0.287686 -0.128350
+v 0.226532 -0.186059 -0.028519
+v 0.238986 -0.130312 -0.023690
+v 0.227271 -0.186733 0.014424
+v 0.236319 -0.138424 0.059118
+v 0.255546 -0.063452 0.106707
+v 0.262677 -0.023821 0.171369
+v 0.282057 0.130537 0.280156
+v 0.284164 0.162954 0.276745
+v 0.280016 0.239683 0.277723
+v 0.271233 0.218029 0.299914
+v 0.260066 0.286855 0.316332
+v 0.240332 0.300632 0.345623
+v 0.235305 0.363460 0.336015
+v 0.214917 0.368193 0.356436
+v 0.183473 0.421572 0.360807
+v 0.149607 0.472245 0.357754
+v 0.115691 0.522110 0.342220
+v 0.117942 0.576775 0.288731
+v 0.089909 0.549387 0.327804
+v 0.115530 0.620212 0.223177
+v 0.094747 0.612805 0.247359
+v 0.069607 0.645268 0.190152
+v 0.053097 0.607502 0.269392
+v 0.082250 0.585900 0.291119
+v 0.046960 0.574826 0.310638
+v 0.048679 0.534474 0.345678
+v 0.083377 0.508293 0.359866
+v 0.115930 0.481143 0.367320
+v 0.115349 0.441540 0.383348
+v 0.151165 0.431953 0.373703
+v 0.152419 0.386213 0.387418
+v 0.185042 0.378646 0.374568
+v 0.202058 0.331807 0.375852
+v 0.223036 0.322842 0.360582
+v 0.221393 0.284974 0.366976
+v 0.233254 0.267805 0.354863
+v 0.244660 0.262483 0.341117
+v 0.255971 0.251788 0.324747
+v 0.263183 0.212753 0.314153
+v 0.269725 0.145289 0.316781
+v 0.277109 0.095941 0.275282
+v 0.266321 0.083869 0.303781
+v 0.268495 0.042738 0.244693
+v 0.256157 -0.026040 0.204959
+v 0.235123 -0.113766 0.130876
+v 0.224263 -0.209341 -0.022702
+v 0.224158 -0.234068 -0.037691
+v 0.226141 -0.257078 -0.060007
+v 0.231269 -0.280791 -0.077046
+v 0.236305 -0.298835 -0.095619
+v 0.243501 -0.316803 -0.109314
+v 0.248182 -0.332440 -0.135141
+v 0.273883 -0.355844 -0.120080
+v 0.263635 -0.354239 -0.158479
+v 0.283479 -0.375741 -0.179815
+v 0.299202 -0.380438 -0.153693
+v 0.376237 -0.428702 -0.157934
+v 0.394122 -0.449648 -0.193259
+v 0.414951 -0.455608 -0.154062
+v 0.440883 -0.481635 -0.177228
+v 0.460807 -0.501771 -0.179063
+v 0.453931 -0.519755 -0.228240
+v 0.458057 -0.534023 -0.229835
+v 0.439011 -0.537727 -0.263701
+v 0.418923 -0.545333 -0.284838
+v 0.443035 -0.548384 -0.256256
+v 0.394965 -0.535829 -0.301429
+v 0.388981 -0.550474 -0.307073
+v 0.366650 -0.533374 -0.315068
+v 0.391061 -0.561377 -0.299053
+v 0.425593 -0.557456 -0.268370
+v 0.411329 -0.565472 -0.264310
+v 0.433232 -0.563137 -0.220819
+v 0.449090 -0.554672 -0.226440
+v 0.466942 -0.542746 -0.197555
+v 0.471608 -0.530082 -0.185968
+v 0.469541 -0.516653 -0.181479
+v 0.467553 -0.500173 -0.141746
+v 0.455951 -0.486610 -0.133744
+v 0.439207 -0.472176 -0.106943
+v 0.400488 -0.442279 -0.114587
+v 0.313571 -0.385630 -0.115480
+v 0.287989 -0.366126 -0.092644
+v 0.260613 -0.338746 -0.093126
+v 0.266665 -0.345523 -0.054217
+v 0.246823 -0.316387 -0.053638
+v 0.240229 -0.307614 -0.012553
+v 0.231931 -0.281558 -0.015701
+v 0.226035 -0.255747 -0.002910
+v 0.221587 -0.228256 0.022201
+v 0.222796 -0.203979 0.030641
+v 0.216584 -0.213665 0.059736
+v 0.221340 -0.169233 0.095356
+v 0.218040 -0.154217 0.140160
+v 0.216810 -0.136301 0.180951
+v 0.240553 -0.065504 0.212612
+v 0.266125 0.111332 0.321537
+v 0.250089 0.136303 0.349841
+v 0.244720 0.193719 0.339661
+v 0.235205 0.223101 0.345848
+v 0.206961 0.227581 0.364878
+v 0.217952 0.260134 0.366546
+v 0.195167 0.263451 0.380595
+v 0.207772 0.286072 0.377590
+v 0.183772 0.306572 0.390469
+v 0.169472 0.340414 0.392123
+v 0.146754 0.323152 0.403939
+v 0.118129 0.378848 0.400300
+v 0.067728 0.410577 0.402710
+v 0.082671 0.466249 0.381731
+v 0.050309 0.491180 0.372870
+v 0.049075 0.448302 0.392101
+v 0.084013 0.356235 0.413066
+v 0.167006 0.289469 0.398612
+v 0.163342 0.270348 0.395616
+v 0.172998 0.249435 0.383496
+v 0.182426 0.202920 0.376374
+v 0.214752 0.196259 0.361339
+v 0.227467 0.144501 0.370747
+v 0.245255 0.100577 0.356693
+v 0.250461 0.068608 0.333497
+v 0.239790 0.010946 0.306585
+v 0.213652 -0.101810 0.259941
+v 0.194905 -0.165022 0.208197
+v 0.204481 -0.187023 0.143228
+v 0.203689 -0.232632 0.095680
+v 0.216309 -0.239023 0.045538
+v 0.224117 -0.277114 0.026635
+v 0.231463 -0.302876 0.019231
+v 0.250611 -0.337958 0.000876
+v 0.255197 -0.334029 -0.027192
+v 0.272039 -0.366443 -0.006741
+v 0.272931 -0.357295 -0.031171
+v 0.290827 -0.371529 -0.051321
+v 0.321049 -0.391915 -0.082982
+v 0.329803 -0.404424 -0.048277
+v 0.345208 -0.411284 -0.065645
+v 0.419126 -0.463185 -0.063146
+v 0.422805 -0.478382 -0.026181
+v 0.463367 -0.498519 -0.075859
+v 0.477518 -0.512736 -0.129106
+v 0.479628 -0.527036 -0.126001
+v 0.474885 -0.538969 -0.145755
+v 0.303059 -0.574051 -0.307404
+v 0.113588 -0.566963 0.070920
+v 0.109988 -0.564012 0.101700
+v 0.024060 -0.562556 0.136780
+v 0.151087 -0.574754 0.012147
+v 0.161083 -0.585171 -0.136359
+v 0.246741 -0.581175 -0.271706
+v 0.198282 -0.578476 -0.305640
+v 0.306959 -0.570067 -0.319534
+v 0.304238 -0.563398 -0.328132
+v 0.354129 -0.565508 -0.312032
+v 0.353188 -0.557398 -0.320071
+v 0.300487 -0.552290 -0.333243
+v 0.337256 -0.544638 -0.327866
+v 0.341756 -0.529432 -0.323621
+v 0.292685 -0.525496 -0.333658
+v 0.266528 -0.534675 -0.339205
+v 0.296813 -0.492208 -0.315518
+v 0.255088 -0.518565 -0.336534
+v 0.242277 -0.558458 -0.337518
+v 0.213056 -0.569268 -0.335052
+v 0.183058 -0.573860 -0.327988
+v 0.095138 -0.581563 -0.294443
+v 0.056934 -0.580059 0.027888
+v 0.118684 -0.580367 -0.033307
+v 0.069750 -0.586184 -0.115039
+v 0.076434 -0.587024 -0.157351
+v 0.134083 -0.577268 -0.315763
+v 0.159472 -0.553281 -0.342553
+v 0.216496 -0.546106 -0.343112
+v 0.177543 -0.524056 -0.345261
+v 0.209829 -0.493362 -0.334296
+v 0.189851 -0.464462 -0.322637
+v 0.242904 -0.477581 -0.320817
+v 0.144119 -0.563944 -0.337430
+v 0.068560 -0.575910 -0.314816
+v 0.413151 -0.486825 0.006007
+v 0.347630 -0.433884 -0.008341
+v 0.314683 -0.403224 -0.017933
+v 0.297338 -0.386110 -0.021441
+v 0.290614 -0.402307 0.015160
+v 0.268955 -0.380266 0.017309
+v 0.247773 -0.364699 0.034513
+v 0.237473 -0.335565 0.029337
+v 0.220189 -0.334591 0.062146
+v 0.208030 -0.291179 0.072027
+v 0.200225 -0.270062 0.089246
+v 0.190984 -0.245274 0.125392
+v 0.188619 -0.215663 0.158029
+v 0.171829 -0.238013 0.175503
+v 0.183345 -0.195425 0.194883
+v 0.190944 -0.141216 0.265059
+v 0.219699 -0.064698 0.291962
+v 0.224966 0.015475 0.346745
+v 0.234773 0.067807 0.361479
+v 0.212865 0.071403 0.389299
+v 0.219312 0.111310 0.384599
+v 0.201906 0.140565 0.389757
+v 0.149318 0.215023 0.386628
+v 0.154746 0.232608 0.385272
+v 0.121549 0.254816 0.398837
+v 0.107351 0.277953 0.411845
+v 0.107418 0.296738 0.414993
+v 0.075936 0.304747 0.423172
+v 0.050563 0.322358 0.424182
+v 0.072234 0.280741 0.424990
+v 0.074544 0.263887 0.420558
+v 0.069528 0.244224 0.417435
+v 0.101335 0.233419 0.397543
+v 0.104057 0.214051 0.395573
+v 0.146124 0.192323 0.393825
+v 0.145035 0.150373 0.410567
+v 0.175749 0.139937 0.404285
+v 0.196187 0.100891 0.402072
+v 0.182700 0.024005 0.404972
+v 0.205209 0.001740 0.371733
+v 0.193851 0.008252 0.389551
+v 0.198963 -0.069801 0.339964
+v 0.201492 -0.104751 0.295440
+v 0.159641 -0.129543 0.361969
+v 0.171445 -0.141800 0.317655
+v 0.170174 -0.185078 0.241395
+v 0.156836 -0.215672 0.224996
+v 0.178237 -0.276928 0.138981
+v 0.187625 -0.296581 0.114813
+v 0.202778 -0.322308 0.089718
+v 0.225918 -0.368106 0.070522
+v 0.260601 -0.400656 0.050322
+v 0.322252 -0.435422 0.023329
+v 0.315843 -0.452317 0.052371
+v 0.143762 -0.197668 0.281589
+v 0.178618 -0.070897 0.375132
+v 0.178225 0.039923 0.410854
+v 0.158182 0.043324 0.422181
+v 0.162318 0.076903 0.418749
+v 0.158880 0.114912 0.414914
+v 0.138968 0.073507 0.428677
+v 0.104316 0.147246 0.422764
+v 0.098356 0.189498 0.403556
+v 0.082603 0.193657 0.408068
+v 0.067529 0.194511 0.418973
+v 0.082205 0.215159 0.403655
+v 0.045628 0.212703 0.436473
+v 0.049459 0.230906 0.430095
+v 0.045223 0.255666 0.431337
+v 0.029738 0.223333 0.444529
+v 0.033719 0.193780 0.457777
+v 0.071597 0.131199 0.450268
+v 0.097030 0.130514 0.431975
+v 0.092816 0.095370 0.443921
+v 0.105766 0.078039 0.440669
+v 0.150484 -0.012353 0.426171
+v 0.166110 -0.029707 0.408461
+v 0.171464 -0.060270 0.390591
+v 0.155093 -0.116398 0.380600
+v 0.127796 -0.132839 0.402016
+v 0.140037 -0.163906 0.355235
+v 0.127049 -0.186955 0.343536
+v 0.120163 -0.217447 0.292195
+v 0.100305 -0.228552 0.307765
+v 0.099402 -0.245467 0.273201
+v 0.078339 -0.243293 0.306793
+v 0.094430 -0.209902 0.373055
+v 0.092648 -0.198337 0.396083
+v 0.109126 -0.169725 0.399148
+v 0.117860 -0.132229 0.411780
+v 0.119880 -0.107221 0.416579
+v 0.134535 -0.088148 0.411160
+v 0.148599 -0.031165 0.422206
+v 0.130465 -0.060557 0.420338
+v 0.103111 0.003784 0.450625
+v 0.079082 -0.023024 0.460619
+v 0.076653 -0.037265 0.457478
+v 0.108490 -0.057587 0.429386
+v 0.070655 -0.053008 0.451876
+v 0.107566 -0.076395 0.427917
+v 0.071369 -0.095546 0.451734
+v 0.082634 -0.122732 0.442713
+v 0.066786 -0.068292 0.451003
+v 0.081041 -0.222574 0.375151
+v 0.071214 -0.234686 0.358171
+v 0.058408 -0.246274 0.328264
+v 0.039274 -0.250625 0.329364
+v 0.040851 -0.095612 0.459919
+v 0.056155 -0.094304 0.457056
+v 0.046124 0.004898 0.466934
+v 0.057958 -0.132083 0.450846
+v 0.078508 0.093472 0.458760
+v 0.068632 0.085008 0.481843
+v 0.070988 0.115981 0.459042
+v 0.052447 0.154259 0.456555
+v 0.030871 0.156721 0.485238
+v 0.034049 0.113160 0.515603
+v 0.070004 0.070829 0.485024
+vn 0.0293 -0.9965 0.0782
+vn 0.0006 -0.9996 -0.0271
+vn -0.0029 -0.9997 -0.0244
+vn -0.0004 -0.9996 -0.0271
+vn 0.0028 -0.9997 -0.0247
+vn -0.3445 -0.7448 0.5715
+vn -0.3341 -0.7632 0.5530
+vn -0.8359 -0.4209 0.3522
+vn -0.5130 0.0648 0.8559
+vn -0.4559 -0.0997 0.8844
+vn -0.2706 -0.1345 0.9532
+vn -0.3302 -0.1354 0.9342
+vn -0.1309 -0.2076 0.9694
+vn -0.7387 -0.4788 0.4744
+vn -0.7065 -0.4779 0.5221
+vn -0.6369 -0.5593 0.5307
+vn -0.0613 -0.2899 0.9551
+vn -0.9885 -0.0890 0.1222
+vn -0.5716 0.1200 0.8117
+vn -0.5966 0.7842 -0.1703
+vn -0.6412 0.7524 0.1508
+vn -0.9020 0.4307 -0.0314
+vn -0.2490 0.6544 -0.7140
+vn -0.1738 0.5847 -0.7924
+vn -0.9203 -0.2813 0.2719
+vn 0.0213 -0.7772 0.6289
+vn -0.0202 0.4439 -0.8958
+vn -0.0864 0.3795 -0.9211
+vn -0.0896 -0.4115 -0.9070
+vn -0.1571 -0.4764 -0.8651
+vn -0.2295 -0.4690 -0.8529
+vn -0.3317 -0.4281 -0.8407
+vn -0.4322 -0.3898 -0.8132
+vn -0.7103 -0.2079 -0.6725
+vn -0.7472 -0.1676 -0.6431
+vn -0.8051 -0.1576 -0.5718
+vn -0.8318 -0.0922 -0.5474
+vn -0.8580 -0.0891 -0.5058
+vn -0.9974 0.0630 -0.0338
+vn -0.9827 0.1823 -0.0317
+vn -0.9189 0.3654 -0.1485
+vn -0.9210 0.3669 -0.1308
+vn -0.9308 0.2620 -0.2549
+vn -0.9624 0.1122 0.2475
+vn -0.9498 -0.0129 0.3126
+vn -0.9494 -0.0569 0.3090
+vn -0.9095 -0.0878 0.4064
+vn -0.8220 -0.1416 0.5516
+vn -0.8705 -0.1515 0.4683
+vn -0.8551 -0.2564 0.4506
+vn -0.7694 -0.3164 0.5548
+vn -0.7962 0.0280 0.6044
+vn -0.7153 0.3764 0.5888
+vn -0.8517 0.3415 0.3975
+vn -0.9370 0.2794 0.2095
+vn -0.9441 0.2777 0.1778
+vn -0.9586 -0.1034 0.2651
+vn -0.9512 -0.2378 0.1968
+vn -0.9554 -0.1174 0.2709
+vn -0.9196 -0.3717 0.1268
+vn -0.8854 -0.1701 0.4327
+vn -0.8961 0.3966 0.1991
+vn -0.9322 0.0391 0.3598
+vn -0.6613 0.7499 0.0185
+vn -0.9142 0.4011 0.0585
+vn -0.9968 0.0751 -0.0263
+vn -0.9871 0.0919 -0.1311
+vn -0.9798 0.0850 -0.1809
+vn -0.9694 0.1068 -0.2211
+vn -0.9192 0.0307 -0.3927
+vn -0.9064 -0.0073 -0.4223
+vn -0.8704 -0.0087 -0.4924
+vn -0.7930 0.0076 -0.6092
+vn -0.7423 -0.0752 -0.6658
+vn -0.7870 -0.0459 -0.6152
+vn -0.5623 -0.2381 -0.7920
+vn -0.2636 -0.4196 -0.8686
+vn -0.2272 -0.4454 -0.8660
+vn -0.0942 -0.4545 -0.8857
+vn -0.0915 -0.4789 -0.8731
+vn -0.0438 -0.4359 -0.8989
+vn 0.0000 -0.3841 -0.9233
+vn -0.0014 -0.0523 -0.9986
+vn -0.0091 0.3919 -0.9200
+vn 0.0059 0.4766 -0.8791
+vn 0.0000 0.7118 -0.7024
+vn 0.0000 0.7921 -0.6103
+vn -0.0284 0.9745 -0.2228
+vn 0.0068 0.9999 -0.0115
+vn 0.0003 0.9916 0.1291
+vn -0.0104 0.9735 0.2283
+vn -0.0136 0.2495 0.9683
+vn 0.0025 0.1677 0.9858
+vn -0.0754 0.3559 0.9315
+vn -0.1006 0.5335 0.8398
+vn 0.0018 0.6365 0.7713
+vn -0.0976 0.5793 0.8092
+vn -0.4815 0.2300 0.8457
+vn -0.4581 -0.3138 0.8317
+vn -0.5027 -0.4319 0.7488
+vn -0.3963 -0.7546 0.5229
+vn -0.0644 -0.9042 0.4223
+vn 0.0496 -0.5562 0.8296
+vn -0.0415 0.1924 0.9804
+vn -0.0888 -0.0648 0.9939
+vn -0.0849 0.0042 0.9964
+vn -0.0844 0.0026 0.9964
+vn -0.1004 0.0127 0.9949
+vn -0.3190 -0.0642 0.9456
+vn -0.5270 -0.2965 0.7965
+vn -0.4940 -0.7190 0.4889
+vn -0.4749 -0.8485 0.2336
+vn -0.1621 -0.9608 0.2249
+vn -0.1299 -0.9842 0.1207
+vn -0.0153 -0.9725 0.2325
+vn -0.3283 -0.8382 0.4354
+vn -0.1630 -0.7820 0.6016
+vn -0.2975 -0.6945 0.6551
+vn -0.3860 -0.6473 0.6573
+vn -0.4257 -0.5703 0.7025
+vn -0.5121 -0.4409 0.7372
+vn -0.6144 -0.3677 0.6981
+vn -0.6658 -0.2891 0.6878
+vn -0.7843 -0.1723 0.5960
+vn -0.7566 -0.0678 0.6504
+vn -0.6716 0.3929 0.6282
+vn -0.4336 0.4648 0.7720
+vn -0.4167 0.6479 0.6376
+vn -0.4297 0.6901 0.5824
+vn -0.4068 0.6511 0.6408
+vn -0.5529 0.6415 0.5317
+vn -0.5967 0.6450 0.4774
+vn -0.8312 0.3654 0.4190
+vn -0.9066 -0.0992 0.4103
+vn -0.8602 0.4160 0.2950
+vn -0.8179 -0.5406 0.1968
+vn -0.6504 -0.7440 0.1529
+vn -0.4831 -0.8627 0.1495
+vn -0.3591 -0.9295 0.0839
+vn -0.4708 -0.8822 0.0034
+vn -0.2247 -0.9744 -0.0005
+vn -0.1251 -0.9921 0.0121
+vn -0.1801 -0.9794 0.0915
+vn -0.2466 -0.9611 0.1244
+vn -0.4208 -0.8906 0.1725
+vn -0.7444 -0.5791 0.3326
+vn -0.6393 -0.6492 0.4121
+vn -0.8357 -0.2047 0.5096
+vn -0.7236 0.2655 0.6371
+vn -0.7948 0.2724 0.5424
+vn -0.5584 0.3516 0.7514
+vn -0.4975 0.5128 0.6996
+vn -0.4286 0.4670 0.7734
+vn -0.4465 0.5425 0.7116
+vn -0.3527 0.5966 0.7209
+vn -0.3380 0.4479 0.8277
+vn -0.4034 0.3121 0.8602
+vn -0.4422 0.2587 0.8588
+vn -0.4535 0.4575 0.7649
+vn -0.5540 0.0929 0.8273
+vn -0.5922 0.1924 0.7824
+vn -0.7003 0.0775 0.7096
+vn -0.6158 -0.1074 0.7805
+vn -0.6071 -0.2168 0.7645
+vn -0.7098 -0.2158 0.6706
+vn -0.4744 -0.2726 0.8371
+vn -0.2952 -0.3526 0.8880
+vn -0.5319 -0.3088 0.7885
+vn -0.1776 -0.4390 0.8808
+vn -0.3743 -0.4118 0.8308
+vn -0.0707 -0.5401 0.8386
+vn -0.0181 -0.1254 0.9919
+vn -0.0818 -0.0928 0.9923
+vn -0.1753 -0.1260 0.9764
+vn -0.1400 -0.2213 0.9651
+vn -0.1172 -0.1214 0.9857
+vn -0.0133 -0.5989 0.8007
+vn -0.0831 -0.9175 0.3889
+vn -0.1041 -0.9836 0.1474
+vn -0.1032 -0.9836 0.1481
+vn -0.1035 -0.9836 0.1476
+vn -0.1008 -0.9859 0.1339
+vn -0.1289 -0.9901 0.0555
+vn -0.1210 -0.9826 0.1412
+vn -0.2192 -0.9652 0.1424
+vn -0.2517 -0.9494 0.1877
+vn -0.3950 -0.8401 0.3716
+vn -0.2630 -0.8689 0.4193
+vn -0.4280 -0.0895 0.8993
+vn -0.5298 0.2215 0.8187
+vn -0.4172 -0.0429 0.9078
+vn -0.4166 0.1900 0.8890
+vn -0.2579 0.3005 0.9182
+vn -0.2984 0.3005 0.9059
+vn -0.2637 0.4400 0.8584
+vn -0.3942 0.0795 0.9156
+vn -0.4450 0.0063 0.8955
+vn -0.4866 0.1074 0.8670
+vn -0.5208 -0.1521 0.8400
+vn -0.5338 -0.1552 0.8312
+vn -0.2474 -0.2391 0.9389
+vn -0.1518 -0.2949 0.9434
+vn -0.0735 -0.3230 0.9435
+vn -0.2444 -0.2430 0.9387
+vn -0.3316 -0.1052 0.9375
+vn -0.3412 0.0908 0.9356
+vn -0.2209 0.1192 0.9680
+vn -0.1705 0.1652 0.9714
+vn -0.2974 -0.2448 0.9228
+vn -0.2618 -0.6018 0.7546
+vn -0.3315 -0.7874 0.5198
+vn -0.2313 -0.9370 0.2619
+vn -0.1887 -0.9786 0.0825
+vn -0.1220 -0.9873 0.1020
+vn -0.1023 -0.9916 0.0794
+vn -0.1445 -0.9741 0.1740
+vn -0.0910 -0.9863 0.1374
+vn -0.0789 -0.9969 0.0065
+vn -0.1301 -0.9638 0.2329
+vn -0.3139 0.0262 0.9491
+vn -0.2518 -0.0690 0.9653
+vn -0.0752 -0.2052 0.9758
+vn -0.0471 -0.9963 0.0712
+vn -0.0886 -0.9907 0.1036
+vn -0.0478 -0.9987 0.0175
+vn 0.0148 -0.7328 0.6802
+vn -0.0728 -0.2972 0.9520
+vn -0.0351 -0.9965 0.0763
+vn 0.0127 -0.3557 -0.9345
+vn 0.0100 -0.6467 -0.7627
+vn -0.0313 -0.2756 -0.9608
+vn -0.0164 -0.0483 -0.9987
+vn -0.0821 0.4853 -0.8705
+vn -0.0829 0.5299 -0.8440
+vn -0.1694 0.5620 -0.8096
+vn -0.3410 0.7326 -0.5891
+vn -0.4291 0.7051 -0.5645
+vn -0.4229 0.6343 -0.6472
+vn -0.4873 0.6156 -0.6193
+vn -0.5459 0.6758 -0.4953
+vn -0.5260 0.6909 -0.4959
+vn -0.5189 0.7272 -0.4495
+vn -0.4797 0.8061 -0.3466
+vn -0.4663 0.7708 -0.4340
+vn -0.3523 0.7173 -0.6011
+vn -0.4924 0.4853 -0.7226
+vn -0.2006 0.4943 -0.8458
+vn -0.0546 0.4635 -0.8844
+vn -0.0560 0.4591 -0.8866
+vn -0.0559 0.3306 -0.9421
+vn -0.0438 0.1062 -0.9934
+vn -0.0830 0.4813 -0.8726
+vn -0.0843 0.3181 -0.9443
+vn -0.0731 0.2830 -0.9563
+vn -0.0922 0.2228 -0.9705
+vn -0.0745 0.1187 -0.9901
+vn -0.0652 0.0007 -0.9979
+vn -0.0939 -0.3233 -0.9416
+vn -0.7817 -0.2547 -0.5693
+vn -0.8149 -0.2306 -0.5318
+vn -0.8333 -0.2001 -0.5153
+vn -0.8718 -0.1736 -0.4581
+vn -0.9753 -0.0604 -0.2123
+vn -0.9902 0.0083 -0.1393
+vn -0.9540 0.1860 -0.2352
+vn -0.4612 0.6200 -0.6348
+vn -0.4349 0.6677 -0.6042
+vn -0.7902 0.2940 -0.5378
+vn -0.3960 0.4283 -0.8123
+vn -0.4356 0.4546 -0.7769
+vn -0.9995 -0.0218 0.0243
+vn -0.7446 -0.1125 0.6580
+vn -0.6756 -0.2411 0.6967
+vn -0.6410 0.2656 0.7202
+vn -0.8502 0.1692 0.4986
+vn -0.9766 0.1286 0.1724
+vn -0.9932 0.1059 -0.0492
+vn -0.9271 -0.2780 0.2513
+vn -0.9787 -0.1121 0.1717
+vn -0.9307 -0.1222 0.3449
+vn -0.8334 0.4042 0.3768
+vn -0.9516 0.0112 0.3070
+vn -0.9298 0.3362 0.1497
+vn -0.9966 0.0822 0.0013
+vn -0.9897 0.1212 -0.0757
+vn -0.9775 0.1682 -0.1269
+vn -0.9627 0.1575 -0.2200
+vn -0.9193 0.2062 -0.3352
+vn -0.8353 0.1085 -0.5389
+vn -0.7617 0.1315 -0.6344
+vn -0.7353 0.0679 -0.6743
+vn -0.6589 0.0689 -0.7490
+vn -0.6539 -0.0444 -0.7553
+vn -0.5203 -0.0370 -0.8532
+vn -0.4414 -0.1743 -0.8802
+vn -0.4105 -0.2484 -0.8774
+vn -0.2348 -0.3550 -0.9049
+vn -0.1486 -0.3604 -0.9209
+vn -0.1028 -0.3982 -0.9115
+vn -0.0884 -0.4405 -0.8934
+vn -0.1042 -0.4259 -0.8987
+vn -0.0394 -0.3403 -0.9395
+vn -0.0501 -0.2914 -0.9553
+vn -0.0841 -0.2709 -0.9589
+vn -0.0988 -0.2423 -0.9652
+vn -0.1859 -0.2187 -0.9579
+vn -0.1900 -0.1339 -0.9726
+vn -0.2847 -0.1081 -0.9525
+vn -0.5266 0.0524 -0.8485
+vn -0.5901 0.0795 -0.8034
+vn -0.5812 0.1403 -0.8016
+vn -0.6513 0.1528 -0.7432
+vn -0.6930 0.1968 -0.6936
+vn -0.7256 0.1907 -0.6612
+vn -0.7554 0.2502 -0.6056
+vn -0.8282 0.2957 -0.4761
+vn -0.9146 0.2629 -0.3073
+vn -0.9568 0.2049 -0.2064
+vn -0.9803 0.1777 -0.0860
+vn -0.9892 0.1428 -0.0329
+vn -0.9937 0.1111 0.0119
+vn -0.9905 0.1322 0.0387
+vn -0.9858 0.0235 0.1664
+vn -0.9777 0.0967 0.1866
+vn -0.9803 0.1345 0.1447
+vn -0.9867 0.1408 0.0817
+vn -0.9855 0.1694 0.0073
+vn -0.9878 0.1524 -0.0333
+vn -0.8937 0.3544 -0.2750
+vn -0.8497 0.3957 -0.3486
+vn -0.8517 0.3458 -0.3937
+vn -0.7524 0.3918 -0.5296
+vn -0.7664 0.3387 -0.5458
+vn -0.6849 0.3027 -0.6628
+vn -0.6624 0.2553 -0.7043
+vn -0.5897 0.2526 -0.7671
+vn -0.5113 0.1472 -0.8467
+vn -0.3373 0.0376 -0.9407
+vn -0.1195 -0.0472 -0.9917
+vn -0.1253 -0.1009 -0.9870
+vn -0.0737 -0.1753 -0.9817
+vn -0.1476 0.0416 -0.9882
+vn -0.2017 0.0536 -0.9780
+vn -0.3684 0.1310 -0.9204
+vn -0.3852 0.2276 -0.8943
+vn -0.5011 0.2381 -0.8320
+vn -0.5880 0.3336 -0.7368
+vn -0.6388 0.3545 -0.6828
+vn -0.7125 0.4284 -0.5556
+vn -0.7701 0.4602 -0.4419
+vn -0.9007 0.3905 -0.1902
+vn -0.9708 0.2333 -0.0565
+vn -0.9809 0.1876 0.0515
+vn -0.9783 0.1732 0.1135
+vn -0.9644 0.2616 0.0381
+vn -0.9405 0.3353 -0.0554
+vn -0.8489 0.4750 -0.2317
+vn -0.7416 0.5702 -0.3534
+vn -0.7541 0.5420 -0.3710
+vn -0.6527 0.5681 -0.5012
+vn -0.6610 0.5448 -0.5160
+vn -0.6130 0.4621 -0.6409
+vn -0.4536 0.4892 -0.7449
+vn -0.3775 0.3794 -0.8447
+vn -0.3475 0.3358 -0.8755
+vn -0.1437 0.3453 -0.9274
+vn -0.1251 0.2276 -0.9657
+vn -0.1600 0.1361 -0.9777
+vn -0.0217 0.1465 -0.9890
+vn -0.0792 0.1088 -0.9909
+vn -0.1708 0.4447 -0.8792
+vn -0.1561 0.4857 -0.8601
+vn -0.1807 0.5773 -0.7963
+vn -0.2288 0.6096 -0.7589
+vn -0.4986 0.6535 -0.5695
+vn -0.4987 0.7238 -0.4770
+vn -0.6480 0.6441 -0.4065
+vn -0.7595 0.5802 -0.2943
+vn -0.7450 0.6130 -0.2632
+vn -0.8419 0.5357 -0.0656
+vn -0.9570 0.1959 0.2137
+vn -0.9518 0.2285 0.2048
+vn -0.8761 0.4467 0.1815
+vn -0.9126 0.3995 0.0868
+vn -0.8456 0.5318 0.0463
+vn -0.7738 0.6295 -0.0705
+vn -0.6231 0.7747 -0.1073
+vn -0.6704 0.7277 -0.1453
+vn -0.5069 0.8301 -0.2324
+vn -0.5867 0.7568 -0.2881
+vn -0.5996 0.7439 -0.2951
+vn -0.3673 0.7782 -0.5094
+vn -0.3663 0.7060 -0.6062
+vn -0.2537 0.7421 -0.6204
+vn -0.1518 0.5808 -0.7997
+vn -0.0670 0.7156 -0.6953
+vn -0.0560 0.7969 -0.6015
+vn -0.2626 0.8043 -0.5331
+vn -0.2086 0.8494 -0.4848
+vn -0.3811 0.9062 -0.1834
+vn -0.5187 0.8485 -0.1047
+vn -0.6476 0.7613 0.0321
+vn -0.7393 0.6698 0.0689
+vn -0.8510 0.4917 0.1846
+vn -0.8289 0.5128 0.2235
+vn -0.8998 0.3804 0.2137
+vn -0.9114 0.2971 0.2847
+vn -0.9158 0.2328 0.3274
+vn -0.8779 0.3384 0.3389
+vn -0.9097 0.3008 0.2864
+vn -0.8603 0.4226 0.2850
+vn -0.7501 0.6187 0.2336
+vn -0.6660 0.7195 0.1968
+vn -0.5115 0.8519 0.1121
+vn -0.5198 0.8538 0.0292
+vn -0.4175 0.9017 -0.1126
+vn -0.2962 0.9438 -0.1469
+vn -0.3255 0.9269 -0.1870
+vn -0.1785 0.9177 -0.3549
+vn -0.1069 0.9179 -0.3821
+vn -0.1080 0.8657 -0.4887
+vn -0.0766 0.9374 -0.3398
+vn -0.0895 0.9542 -0.2854
+vn -0.2142 0.9617 -0.1711
+vn -0.2240 0.9717 -0.0743
+vn -0.3109 0.9484 -0.0622
+vn -0.3020 0.9517 0.0558
+vn -0.3850 0.9102 0.1526
+vn -0.5259 0.8298 0.1865
+vn -0.6147 0.7559 0.2253
+vn -0.6073 0.7467 0.2714
+vn -0.7898 0.5116 0.3385
+vn -0.8425 0.4144 0.3441
+vn -0.7932 0.4558 0.4039
+vn -0.9285 0.1973 0.3146
+vn -0.9634 0.0802 0.2559
+vn -0.9727 0.0084 0.2317
+vn -0.9819 -0.0465 0.1833
+vn -0.9939 -0.0787 0.0766
+vn -0.9963 -0.0827 -0.0235
+vn -0.9936 -0.1058 0.0408
+vn -0.9937 -0.1043 0.0404
+vn -0.9909 -0.1340 0.0084
+vn -0.9656 -0.2490 0.0742
+vn -0.9592 -0.2750 0.0663
+vn -0.8936 -0.3537 0.2762
+vn -0.8094 -0.5190 0.2747
+vn -0.5393 -0.8229 -0.1792
+vn -0.8039 -0.5936 -0.0374
+vn -0.8219 -0.5694 -0.0128
+vn -0.8807 -0.4642 -0.0940
+vn -0.4674 -0.7626 -0.4472
+vn -0.3618 -0.6768 -0.6411
+vn -0.6950 -0.5478 -0.4658
+vn -0.9537 -0.0309 0.2992
+vn -0.9508 -0.0269 0.3086
+vn -0.8235 -0.0660 0.5634
+vn -0.7249 -0.1087 0.6803
+vn -0.7338 -0.0848 0.6740
+vn -0.6350 0.1291 0.7616
+vn -0.7238 0.0535 0.6880
+vn -0.9134 -0.2071 0.3503
+vn -0.8986 -0.3737 0.2299
+vn -0.9129 -0.2097 0.3502
+vn -0.8494 0.1416 0.5083
+vn -0.9564 -0.1895 0.2222
+vn -0.9852 -0.1566 0.0704
+vn -0.9689 0.1105 0.2215
+vn -0.9978 0.0368 0.0550
+vn -0.9855 -0.1319 -0.1066
+vn -0.9863 -0.1641 0.0185
+vn -0.8265 -0.4422 0.3484
+vn -0.7003 -0.6752 0.2317
+vn -0.9997 -0.0253 0.0047
+vn -0.8923 -0.2150 -0.3969
+vn -0.9926 -0.0970 0.0733
+vn -0.6107 -0.2261 -0.7589
+vn -0.5131 -0.3767 -0.7712
+vn -0.2829 -0.4434 -0.8505
+vn -0.8671 -0.4412 -0.2313
+vn -0.8063 -0.5235 -0.2753
+vn -0.9037 -0.4110 -0.1200
+vn -0.9320 -0.3256 -0.1593
+vn -0.8969 -0.3419 -0.2806
+vn -0.8815 -0.2969 -0.3672
+vn -0.8562 -0.2800 -0.4342
+vn -0.8509 -0.2317 -0.4714
+vn -0.7845 -0.1232 -0.6077
+vn -0.7858 -0.0360 -0.6175
+vn -0.7012 -0.0115 -0.7129
+vn -0.5727 0.2205 -0.7895
+vn -0.4288 0.3141 -0.8471
+vn -0.2999 0.2906 -0.9086
+vn -0.2625 0.3735 -0.8897
+vn -0.2063 0.2940 -0.9333
+vn -0.1657 0.2531 -0.9531
+vn -0.0955 -0.0977 -0.9906
+vn -0.1779 -0.0880 -0.9801
+vn -0.2296 -0.1726 -0.9579
+vn -0.3791 -0.4217 -0.8237
+vn -0.4296 -0.4487 -0.7836
+vn -0.5436 -0.4371 -0.7165
+vn -0.5721 -0.4208 -0.7040
+vn -0.6294 -0.4065 -0.6622
+vn -0.7679 -0.3310 -0.5484
+vn -0.8934 -0.1876 -0.4083
+vn -0.9398 -0.1046 -0.3253
+vn -0.9502 -0.0988 -0.2957
+vn -0.9707 -0.0673 -0.2307
+vn -0.6529 0.1904 -0.7331
+vn -0.2361 0.2733 -0.9325
+vn -0.8676 0.0176 -0.4969
+vn -0.2878 -0.0101 -0.9576
+vn -0.3135 -0.2364 -0.9197
+vn -0.5933 -0.1397 -0.7928
+vn -0.7688 -0.3388 -0.5424
+vn -0.5205 -0.3938 -0.7576
+vn -0.8936 -0.2888 -0.3436
+vn -0.7253 -0.3690 -0.5811
+vn -0.8401 -0.3950 -0.3716
+vn -0.8731 -0.4240 -0.2407
+vn -0.9001 -0.3532 -0.2551
+vn -0.8463 -0.3796 -0.3738
+vn -0.8158 -0.3506 -0.4600
+vn -0.7623 -0.2913 -0.5780
+vn -0.5890 -0.1629 -0.7916
+vn -0.5772 -0.1176 -0.8081
+vn -0.6396 0.0309 -0.7681
+vn -0.5116 -0.0179 -0.8591
+vn -0.4860 0.0883 -0.8695
+vn -0.4038 0.1180 -0.9072
+vn -0.3371 0.1860 -0.9229
+vn -0.1929 0.1366 -0.9717
+vn -0.1845 0.1199 -0.9755
+vn -0.1785 0.0173 -0.9838
+vn -0.3480 -0.3093 -0.8850
+vn -0.4048 -0.2755 -0.8719
+vn -0.3880 -0.4264 -0.8171
+vn -0.4092 -0.4086 -0.8158
+vn -0.5180 -0.4067 -0.7525
+vn -0.7265 -0.4133 -0.5489
+vn -0.8599 -0.3600 -0.3619
+vn -0.8807 -0.3373 -0.3327
+vn -0.9603 -0.1671 -0.2235
+vn -0.8971 -0.1079 -0.4283
+vn -0.9084 -0.1233 -0.3996
+vn -0.9030 -0.1283 -0.4101
+vn -0.9445 -0.2326 -0.2320
+vn -0.7999 -0.3716 -0.4713
+vn -0.4790 -0.3048 -0.8232
+vn -0.4011 0.0036 -0.9160
+vn -0.2963 0.0227 -0.9548
+vn -0.7197 0.0671 -0.6910
+vn -0.4295 0.3137 -0.8468
+vn -0.5849 0.3689 -0.7223
+vn -0.7816 0.2033 -0.5897
+vn -0.8052 0.0949 -0.5853
+vn -0.8864 0.1486 -0.4383
+vn -0.9001 -0.0368 -0.4341
+vn -0.9242 -0.2084 -0.3202
+vn -0.9355 -0.2615 -0.2376
+vn -0.8136 -0.5815 0.0017
+vn -0.7919 -0.6106 -0.0094
+vn -0.9430 -0.3284 0.0536
+vn -0.9619 -0.2466 0.1181
+vn -0.9717 -0.1782 0.1552
+vn -0.9422 0.1368 0.3058
+vn -0.9030 0.2013 0.3796
+vn -0.7528 0.4039 0.5198
+vn -0.6970 0.4624 0.5480
+vn -0.7095 0.5405 0.4521
+vn -0.7026 0.6069 0.3715
+vn -0.5361 0.7504 0.3866
+vn -0.5496 0.7782 0.3038
+vn -0.3992 0.8965 0.1922
+vn -0.2163 0.9746 0.0577
+vn -0.1368 0.9891 -0.0543
+vn -0.0824 0.9923 -0.0923
+vn -0.0847 0.9868 -0.1383
+vn -0.1290 0.9891 0.0710
+vn -0.1172 0.9764 0.1812
+vn -0.1818 0.9485 0.2595
+vn -0.2319 0.9046 0.3577
+vn -0.3808 0.8543 0.3537
+vn -0.4775 0.7825 0.3996
+vn -0.4000 0.7654 0.5041
+vn -0.5249 0.4877 0.6976
+vn -0.6413 0.4718 0.6051
+vn -0.6339 0.4140 0.6532
+vn -0.7426 0.3296 0.5830
+vn -0.8211 0.2912 0.4909
+vn -0.8039 0.2879 0.5204
+vn -0.8954 0.2116 0.3918
+vn -0.9174 0.1290 0.3765
+vn -0.9608 0.0339 0.2750
+vn -0.9766 -0.1186 0.1797
+vn -0.9630 -0.2175 0.1592
+vn -0.9373 -0.3473 -0.0274
+vn -0.9590 -0.2828 0.0209
+vn -0.9608 -0.1630 -0.2241
+vn -0.9725 -0.0635 -0.2240
+vn -0.9577 0.1208 -0.2610
+vn -0.9378 0.0974 -0.3333
+vn -0.9176 0.1666 -0.3608
+vn -0.8929 0.3226 -0.3140
+vn -0.8297 0.4104 -0.3784
+vn -0.7171 0.3642 -0.5942
+vn -0.6265 0.5213 -0.5795
+vn -0.6063 0.6983 -0.3805
+vn -0.7401 0.5460 -0.3925
+vn -0.5547 0.6393 -0.5325
+vn -0.7860 0.5183 -0.3370
+vn -0.9920 -0.0445 -0.1185
+vn -0.9753 -0.1841 -0.1220
+vn -0.9713 -0.2331 -0.0465
+vn -0.9581 -0.2802 0.0588
+vn -0.9481 -0.3083 0.0783
+vn -0.9396 -0.2718 0.2082
+vn -0.9551 -0.2288 0.1885
+vn -0.9723 -0.1298 0.1946
+vn -0.9734 -0.0397 0.2258
+vn -0.9457 0.0470 0.3216
+vn -0.9111 0.0506 0.4090
+vn -0.8571 0.1126 0.5027
+vn -0.8634 0.1951 0.4653
+vn -0.6604 0.2825 0.6958
+vn -0.6668 0.3154 0.6752
+vn -0.4672 0.4090 0.7839
+vn -0.5109 0.4865 0.7088
+vn -0.3756 0.6025 0.7042
+vn -0.2816 0.6385 0.7162
+vn -0.2958 0.7349 0.6102
+vn -0.2927 0.8148 0.5003
+vn -0.3304 0.8306 0.4482
+vn -0.2262 0.9043 0.3620
+vn -0.1085 0.9018 0.4183
+vn -0.1871 0.8892 0.4176
+vn -0.1632 0.8175 0.5524
+vn -0.1413 0.7139 0.6859
+vn -0.1155 0.5951 0.7953
+vn -0.2630 0.5098 0.8191
+vn -0.4350 0.4064 0.8035
+vn -0.3753 0.3525 0.8572
+vn -0.5052 0.2976 0.8101
+vn -0.5661 0.2581 0.7829
+vn -0.5629 0.2269 0.7948
+vn -0.7148 0.0822 0.6945
+vn -0.8353 0.0303 0.5489
+vn -0.8095 0.2268 0.5416
+vn -0.8965 0.0824 0.4352
+vn -0.9352 -0.2873 0.2069
+vn -0.9366 -0.3112 0.1612
+vn -0.9371 -0.3334 0.1029
+vn -0.9425 -0.3142 0.1140
+vn -0.9686 -0.2350 0.0810
+vn -0.9761 -0.2163 -0.0202
+vn -0.9946 -0.1016 -0.0186
+vn -0.9902 -0.1159 -0.0779
+vn -0.9953 0.0471 -0.0847
+vn -0.8335 0.5264 -0.1676
+vn -0.7018 0.7051 -0.1018
+vn -0.7147 0.6804 -0.1622
+vn -0.5612 0.7761 -0.2877
+vn -0.4622 0.7416 -0.4863
+vn -0.5250 0.8348 -0.1658
+vn -0.4821 0.8194 -0.3101
+vn -0.5148 0.8377 -0.1826
+vn -0.5490 0.8108 -0.2028
+vn -0.5990 0.7753 -0.2004
+vn -0.6065 0.7368 -0.2990
+vn -0.6156 0.7247 -0.3096
+vn -0.6647 0.6848 -0.2987
+vn -0.8146 0.2917 -0.5014
+vn -0.6761 0.3311 -0.6582
+vn -0.7442 -0.1703 -0.6459
+vn -0.5586 -0.5437 -0.6264
+vn -0.3898 -0.8602 -0.3288
+vn -0.4153 -0.8930 -0.1734
+vn -0.5887 -0.7585 -0.2795
+vn -0.8006 -0.5325 -0.2749
+vn -0.8878 -0.3200 -0.3308
+vn -0.9539 -0.0893 -0.2866
+vn -0.9048 0.2959 -0.3061
+vn -0.8368 0.5192 -0.1735
+vn -0.7027 0.6940 -0.1567
+vn -0.6150 0.7875 -0.0397
+vn -0.6393 0.7570 -0.1349
+vn -0.6157 0.7870 -0.0402
+vn -0.5458 0.8368 -0.0432
+vn -0.6048 0.7872 -0.1204
+vn -0.8014 0.5969 -0.0380
+vn -0.9284 0.3691 -0.0431
+vn -0.9200 0.3919 -0.0050
+vn -0.9360 0.3481 -0.0514
+vn -0.9762 0.2166 -0.0079
+vn -0.9963 0.0861 -0.0001
+vn -0.9906 0.1333 0.0296
+vn -0.9984 -0.0321 0.0460
+vn -0.9769 -0.2084 0.0478
+vn -0.9202 -0.3445 0.1858
+vn -0.9241 -0.3472 0.1596
+vn -0.9264 -0.3483 0.1432
+vn -0.9303 -0.2840 0.2319
+vn -0.9433 -0.1741 0.2825
+vn -0.9440 -0.0268 0.3287
+vn -0.8491 0.1027 0.5181
+vn -0.6690 0.0606 0.7408
+vn -0.6650 -0.2604 0.7000
+vn -0.5878 -0.2238 0.7775
+vn -0.7362 0.0316 0.6760
+vn -0.4565 -0.0234 0.8894
+vn -0.5345 0.0997 0.8393
+vn -0.6162 0.1296 0.7769
+vn -0.4737 0.1592 0.8662
+vn -0.4783 0.1979 0.8556
+vn -0.2894 0.2666 0.9193
+vn -0.2938 0.3575 0.8865
+vn -0.1702 0.5203 0.8369
+vn -0.0498 0.5971 0.8006
+vn -0.0819 0.7180 0.6912
+vn -0.1016 0.8254 0.5553
+vn -0.0332 0.4763 0.8787
+vn -0.0354 0.3604 0.9321
+vn -0.2259 0.2598 0.9389
+vn -0.3032 0.2159 0.9282
+vn -0.3855 0.1189 0.9150
+vn -0.3710 0.0777 0.9254
+vn -0.3363 -0.3511 0.8739
+vn -0.3292 -0.2614 0.9074
+vn -0.5633 0.0469 0.8249
+vn -0.5871 0.0197 0.8093
+vn -0.5780 0.2812 0.7661
+vn -0.7025 0.1874 0.6866
+vn -0.8620 -0.0204 0.5065
+vn -0.8623 -0.0196 0.5060
+vn -0.9027 -0.2289 0.3642
+vn -0.8952 -0.3135 0.3167
+vn -0.9148 -0.3003 0.2699
+vn -0.8885 -0.4077 0.2104
+vn -0.9792 -0.1088 0.1713
+vn -0.9922 0.0613 0.1086
+vn -0.9793 0.1668 0.1149
+vn -0.8471 0.5156 0.1285
+vn -0.8484 0.5144 0.1248
+vn -0.7299 0.6825 0.0391
+vn -0.6129 0.7901 0.0118
+vn -0.5456 0.8228 0.1590
+vn -0.5679 0.8145 0.1186
+vn -0.5664 0.8145 0.1259
+vn -0.5469 0.7920 0.2712
+vn -0.6421 0.7538 0.1397
+vn -0.7020 0.7099 0.0563
+vn -0.8765 0.4691 0.1077
+vn -0.9788 0.1693 0.1152
+vn -0.9838 0.1153 -0.1374
+vn -0.9631 -0.2355 -0.1305
+vn -0.7542 -0.6531 -0.0680
+vn -0.6872 -0.7148 -0.1295
+vn -0.4430 -0.8952 -0.0485
+vn -0.2260 -0.9722 -0.0616
+vn -0.1678 -0.9815 -0.0919
+vn -0.1058 -0.9624 -0.2501
+vn -0.0896 -0.9821 -0.1658
+vn -0.0515 -0.9923 -0.1126
+vn -0.0432 -0.9967 0.0691
+vn -0.0706 -0.9921 0.1034
+vn -0.0097 -0.9748 0.2229
+vn 0.0288 -0.9203 0.3902
+vn 0.0163 -0.7304 0.6828
+vn 0.0273 -0.4997 0.8658
+vn -0.0172 -0.9975 0.0678
+vn -0.0809 -0.9782 0.1912
+vn -0.0575 -0.9950 0.0819
+vn -0.0800 -0.9925 0.0928
+vn -0.0301 -0.9965 0.0784
+vn -0.0284 -0.9966 0.0778
+vn -0.0309 -0.9965 0.0778
+vn -0.0207 -0.9998 0.0085
+vn -0.0205 -0.9998 0.0055
+vn -0.0210 -0.9990 -0.0396
+vn -0.0374 -0.9912 -0.1269
+vn -0.1996 -0.6779 -0.7075
+vn -0.1426 -0.9332 -0.3297
+vn -0.2319 -0.8979 -0.3742
+vn -0.3158 -0.6492 -0.6920
+vn -0.3590 -0.1178 -0.9259
+vn -0.3431 0.1573 -0.9260
+vn -0.1716 0.1031 -0.9798
+vn -0.2135 0.4469 -0.8687
+vn -0.2965 0.5239 -0.7985
+vn -0.4434 0.4651 -0.7662
+vn -0.2819 0.5164 -0.8086
+vn -0.1515 0.4584 -0.8757
+vn -0.1186 0.2438 -0.9625
+vn -0.0961 -0.2371 -0.9667
+vn -0.1321 -0.5458 -0.8274
+vn -0.0311 -0.7850 -0.6187
+vn -0.0595 -0.9333 -0.3542
+vn -0.0430 -0.9500 -0.3093
+vn -0.0351 -0.9737 -0.2250
+vn -0.0684 -0.9949 0.0741
+vn -0.0813 -0.9846 0.1546
+vn -0.0484 -0.9719 0.2302
+vn -0.0311 -0.9981 0.0524
+vn -0.0163 -0.9996 0.0224
+vn 0.0363 -0.7603 -0.6486
+vn 0.0021 -0.4306 -0.9025
+vn -0.0377 -0.3181 -0.9473
+vn -0.0986 0.1671 -0.9810
+vn -0.1186 0.2971 -0.9475
+vn -0.1423 0.4533 -0.8799
+vn -0.2048 0.5559 -0.8056
+vn -0.1061 0.4342 -0.8945
+vn 0.0389 -0.7650 -0.6428
+vn 0.0240 -0.8449 -0.5344
+vn 0.0458 -0.8995 -0.4344
+vn 0.0248 -0.9544 -0.2974
+vn -0.0005 -0.9914 -0.1309
+vn 0.0304 -0.4293 -0.9027
+vn 0.0054 -0.2128 -0.9771
+vn -0.0106 -0.1609 -0.9869
+vn -0.0242 -0.0417 -0.9988
+vn -0.0419 0.1267 -0.9911
+vn -0.0202 -0.9963 0.0837
+vn -0.2698 -0.9253 -0.2665
+vn -0.6355 0.7343 0.2386
+vn -0.5370 0.7624 0.3610
+vn -0.6109 0.7424 0.2751
+vn -0.6413 0.7097 0.2915
+vn -0.5955 0.6884 0.4141
+vn -0.7785 0.5759 0.2496
+vn -0.8232 0.4582 0.3352
+vn -0.9196 0.1591 0.3592
+vn -0.9400 0.0239 0.3402
+vn -0.9530 -0.1559 0.2597
+vn -0.9178 -0.2930 0.2678
+vn -0.8728 -0.3598 0.3297
+vn -0.8519 -0.4353 0.2913
+vn -0.8391 -0.2875 0.4619
+vn -0.7250 -0.0361 0.6878
+vn -0.7377 0.0295 0.6745
+vn -0.5657 0.1953 0.8011
+vn -0.2905 -0.0159 0.9567
+vn -0.2629 -0.1853 0.9469
+vn -0.1993 -0.4209 0.8850
+vn -0.2430 -0.1603 0.9567
+vn -0.2482 -0.1963 0.9486
+vn -0.2657 0.0085 0.9640
+vn -0.1861 0.2086 0.9601
+vn -0.2131 0.0859 0.9733
+vn -0.3335 -0.1562 0.9297
+vn -0.3274 -0.1902 0.9256
+vn -0.3412 -0.2318 0.9109
+vn -0.1949 -0.0721 0.9782
+vn -0.1808 0.2740 0.9446
+vn -0.2997 0.3469 0.8887
+vn -0.5413 0.1771 0.8220
+vn -0.7793 -0.2323 0.5820
+vn -0.8218 -0.2920 0.4893
+vn -0.8365 -0.4182 0.3542
+vn -0.7929 -0.4996 0.3489
+vn -0.7820 -0.5194 0.3445
+vn -0.8274 -0.4161 0.3773
+vn -0.9207 -0.2383 0.3089
+vn -0.9361 -0.1286 0.3275
+vn -0.9033 -0.0155 0.4288
+vn -0.8661 0.2186 0.4495
+vn -0.8497 0.2920 0.4390
+vn -0.8580 0.2577 0.4444
+vn -0.6606 0.5223 0.5393
+vn -0.5581 0.6578 0.5058
+vn -0.6025 0.6790 0.4194
+vn -0.4871 0.6659 0.5650
+vn -0.5160 0.7296 0.4489
+vn -0.6110 0.5485 0.5708
+vn -0.6496 0.4880 0.5830
+vn -0.7957 0.2483 0.5525
+vn -0.7934 0.2717 0.5447
+vn -0.8582 0.0047 0.5133
+vn -0.8982 -0.0978 0.4285
+vn -0.8730 -0.1525 0.4633
+vn -0.8287 -0.2309 0.5099
+vn -0.8679 -0.2997 0.3962
+vn -0.8219 -0.2873 0.4919
+vn -0.6833 -0.2029 0.7014
+vn -0.4895 -0.0186 0.8718
+vn -0.6021 -0.1223 0.7890
+vn -0.3726 0.1264 0.9194
+vn -0.2646 0.2185 0.9393
+vn -0.3514 0.4281 0.8326
+vn -0.3175 0.1963 0.9277
+vn -0.6583 0.1217 0.7428
+vn -0.5868 -0.1235 0.8003
+vn -0.5117 0.0446 0.8580
+vn -0.3939 -0.2414 0.8869
+vn -0.1831 0.0527 0.9817
+vn -0.3839 -0.1816 0.9053
+vn -0.0839 0.1559 0.9842
+vn -0.3272 0.2952 0.8977
+vn -0.6106 0.3910 0.6887
+vn -0.7119 0.3180 0.6262
+vn -0.6580 0.3672 0.6574
+vn -0.5422 0.4001 0.7389
+vn -0.2307 0.3902 0.8914
+vn -0.5756 0.2005 0.7928
+vn -0.5068 0.2224 0.8329
+vn -0.3574 0.2103 0.9100
+vn -0.6285 -0.1079 0.7703
+vn -0.7055 -0.1734 0.6871
+vn -0.6614 -0.2890 0.6922
+vn -0.7550 -0.3219 0.5713
+vn -0.8083 -0.3626 0.4639
+vn -0.6963 -0.3176 0.6437
+vn -0.6455 -0.6734 0.3603
+vn -0.5835 -0.6576 0.4766
+vn -0.4904 -0.7878 0.3727
+vn -0.6073 -0.7198 0.3364
+vn -0.4661 -0.7030 0.5372
+vn -0.7136 -0.6357 0.2943
+vn -0.7295 -0.5882 0.3490
+vn -0.7463 -0.4793 0.4618
+vn -0.7349 -0.5074 0.4500
+vn -0.7026 -0.4013 0.5876
+vn -0.3208 -0.2560 0.9119
+vn -0.5247 -0.2459 0.8150
+vn -0.4588 0.0002 0.8886
+vn -0.3350 0.0505 0.9409
+vn -0.3410 0.0734 0.9372
+vn -0.4385 -0.3237 0.8384
+vn -0.2036 -0.6690 0.7148
+vn -0.5006 -0.0918 0.8608
+vn -0.4183 -0.4417 0.7937
+vn -0.4422 -0.2238 0.8686
+vn -0.5639 -0.0401 0.8249
+vn -0.5382 -0.8159 0.2113
+vn -0.3542 -0.9131 0.2021
+vn -0.2278 -0.9244 0.3059
+vn -0.1406 -0.9654 0.2198
+vn -0.2268 -0.9660 0.1244
+vn -0.5741 -0.7862 0.2286
+vn -0.7217 -0.6168 0.3140
+vn -0.7068 -0.3179 0.6319
+vn -0.5073 -0.1327 0.8515
+vn -0.2578 -0.1066 0.9603
+vn -0.3351 0.0816 0.9386
+vn -0.2681 -0.1224 0.9556
+vn -0.3298 -0.4255 0.8427
+vn -0.2818 -0.2523 0.9257
+vn 0.0157 0.1205 0.9926
+vn -0.2676 0.0991 0.9584
+vn -0.1771 0.1493 0.9728
+vn -0.1279 -0.1766 0.9759
+vn -0.1271 -0.1766 0.9760
+vn -0.3523 0.1284 0.9270
+vn -0.7197 0.0031 0.6943
+vn -0.8430 0.2759 0.4618
+vn -0.6878 0.2211 0.6914
+vn -0.7094 0.3821 0.5923
+vn -0.6518 0.3591 0.6680
+vn -0.7640 0.3452 0.5451
+vn -0.5346 0.5196 0.6665
+vn -0.7427 0.4186 0.5227
+vn -0.7853 0.3659 0.4994
+vn -0.7129 -0.0247 0.7008
+vn -0.7532 0.2125 0.6225
+vn -0.5726 -0.4001 0.7156
+vn -0.9659 0.1420 0.2164
+vn -0.4711 0.4129 0.7795
+vn -0.5819 0.6728 -0.4569
+vn -0.9789 -0.0072 0.2040
+vn -0.9470 0.1741 0.2698
+vn -0.9950 -0.0080 0.0994
+vn -0.9954 0.0271 0.0924
+vn -0.9944 0.0340 0.1002
+vn 0.0000 -0.3593 -0.9332
+vn -0.9788 -0.1264 0.1611
+vn -0.1696 0.5848 -0.7932
+vn -0.2611 0.6558 -0.7083
+vn -0.5293 -0.6198 0.5794
+vn -0.1141 -0.7827 0.6118
+vn -0.1277 -0.9162 0.3797
+vn -0.0933 -0.5611 0.8225
+vn -0.2883 -0.4328 0.8542
+vn -0.0731 -0.1702 0.9827
+vn -0.2249 -0.5390 0.8117
+vn -0.9167 0.0258 0.3988
+vn -0.6482 -0.5083 0.5670
+vn 0.1251 -0.8636 0.4884
+vn 0.4414 -0.4149 0.7956
+vn 0.8359 -0.4210 0.3521
+vn 0.5130 0.0648 0.8559
+vn 0.4559 -0.0998 0.8844
+vn 0.2706 -0.1345 0.9532
+vn 0.3617 -0.1335 0.9227
+vn 0.7069 -0.4766 0.5226
+vn 0.6361 -0.5694 0.5207
+vn 0.9850 -0.1317 0.1116
+vn 0.9885 -0.0889 0.1223
+vn 0.5434 0.8273 -0.1427
+vn 0.6412 0.7524 0.1507
+vn 0.8351 0.2950 0.4642
+vn 0.9306 -0.3287 -0.1609
+vn 0.2490 0.6544 -0.7139
+vn 0.1738 0.5847 -0.7924
+vn -0.0001 -0.2254 -0.9743
+vn 0.0434 0.0227 -0.9988
+vn 0.9203 -0.2813 0.2720
+vn 0.0901 -0.8049 0.5866
+vn 0.0295 -0.3924 -0.9193
+vn -0.0246 0.4460 -0.8947
+vn 0.0398 0.3867 -0.9213
+vn 0.0430 0.3664 -0.9294
+vn 0.0243 0.3080 -0.9511
+vn 0.0219 0.2222 -0.9747
+vn 0.0412 0.0944 -0.9947
+vn 0.0157 -0.0383 -0.9991
+vn 0.0199 -0.2239 -0.9744
+vn -0.0021 -0.3012 -0.9536
+vn 0.1062 -0.4524 -0.8855
+vn 0.1435 -0.4751 -0.8682
+vn 0.4370 -0.3977 -0.8068
+vn 0.5941 -0.3201 -0.7380
+vn 0.7472 -0.1675 -0.6431
+vn 0.8051 -0.1575 -0.5718
+vn 0.8318 -0.0922 -0.5474
+vn 0.9617 -0.0533 -0.2689
+vn 0.9939 0.0396 -0.1026
+vn 0.9960 0.0409 -0.0797
+vn 0.9974 0.0630 -0.0339
+vn 0.7539 0.6569 -0.0105
+vn 0.6423 0.6480 -0.4093
+vn 0.5901 0.8000 -0.1086
+vn 0.9126 0.3317 -0.2389
+vn 0.9308 0.2621 -0.2548
+vn 0.9984 0.0053 0.0569
+vn 0.9783 -0.0316 0.2047
+vn 0.9593 0.0221 0.2814
+vn 0.8540 -0.1234 0.5055
+vn 0.8434 -0.1274 0.5220
+vn 0.8111 -0.1941 0.5517
+vn 0.8777 -0.1494 0.4553
+vn 0.8507 -0.2646 0.4541
+vn 0.7695 -0.3162 0.5548
+vn 0.7688 -0.3173 0.5552
+vn 0.7947 -0.0154 0.6067
+vn 0.7146 0.2152 0.6656
+vn 0.7065 0.3462 0.6172
+vn 0.6607 0.3345 0.6721
+vn 0.7584 0.3669 0.5387
+vn 0.8414 0.3346 0.4243
+vn 0.9112 0.2443 0.3316
+vn 0.8359 0.3531 0.4202
+vn 0.9900 -0.0762 -0.1185
+vn 0.9135 -0.3309 0.2367
+vn 0.9512 -0.2380 0.1965
+vn 0.9757 -0.2190 -0.0079
+vn 0.9196 -0.3718 0.1268
+vn 0.8865 -0.2487 0.3901
+vn 0.8781 -0.1742 0.4457
+vn 0.8962 0.3965 0.1992
+vn 0.8058 0.3839 0.4510
+vn 0.9559 0.2932 -0.0154
+vn 0.9968 0.0758 -0.0237
+vn 0.9886 0.0893 -0.1210
+vn 0.9665 0.0987 -0.2368
+vn 0.9064 -0.0073 -0.4223
+vn 0.8281 0.0254 -0.5600
+vn 0.8703 -0.0087 -0.4924
+vn 0.7930 0.0076 -0.6092
+vn 0.7870 -0.0459 -0.6153
+vn 0.5634 -0.2393 -0.7908
+vn 0.4067 -0.3206 -0.8555
+vn 0.1103 -0.4680 -0.8768
+vn 0.0913 -0.4777 -0.8738
+vn 0.0086 -0.4475 -0.8942
+vn 0.0046 -0.4677 -0.8839
+vn 0.0000 -0.2466 -0.9691
+vn 0.0005 -0.1722 -0.9851
+vn 0.0015 -0.0464 -0.9989
+vn 0.0020 0.0871 -0.9962
+vn -0.0074 0.3277 -0.9448
+vn -0.0168 0.4768 -0.8789
+vn -0.0025 0.6310 -0.7757
+vn 0.0000 0.8648 -0.5021
+vn 0.0000 0.9024 -0.4308
+vn 0.0220 0.9033 0.4285
+vn 0.0657 0.3224 0.9443
+vn 0.0522 0.5940 0.8028
+vn 0.0976 0.5793 0.8092
+vn 0.2542 -0.0882 0.9631
+vn 0.4563 -0.3222 0.8294
+vn 0.4034 -0.6143 0.6782
+vn 0.0643 -0.9042 0.4223
+vn 0.3311 -0.7628 0.5554
+vn -0.0590 -0.5706 0.8191
+vn -0.0996 -0.1363 0.9856
+vn -0.0096 0.1132 0.9935
+vn 0.0699 -0.1366 0.9882
+vn 0.1057 -0.4373 0.8931
+vn 0.0135 -0.2205 0.9753
+vn -0.0140 0.0488 0.9987
+vn -0.0091 -0.1323 0.9912
+vn -0.0108 0.0346 0.9993
+vn 0.1204 -0.0939 0.9883
+vn 0.1236 0.0230 0.9921
+vn 0.6281 -0.3155 0.7113
+vn 0.6622 -0.5503 0.5085
+vn 0.2444 -0.8891 0.3871
+vn 0.0073 -0.9027 0.4303
+vn 0.1633 -0.8971 0.4105
+vn 0.2605 -0.6709 0.6943
+vn 0.2174 -0.6293 0.7461
+vn 0.4257 -0.5704 0.7025
+vn 0.3388 -0.4940 0.8007
+vn 0.5120 -0.4409 0.7372
+vn 0.6300 -0.3703 0.6827
+vn 0.7843 -0.1722 0.5961
+vn 0.7901 0.0910 0.6062
+vn 0.6985 0.2126 0.6833
+vn 0.5598 0.3607 0.7460
+vn 0.6716 0.3929 0.6282
+vn 0.5765 0.4417 0.6874
+vn 0.5178 0.5660 0.6415
+vn 0.4235 0.6255 0.6553
+vn 0.5529 0.6415 0.5317
+vn 0.5866 0.6719 0.4522
+vn 0.8150 0.4220 0.3970
+vn 0.9066 -0.0991 0.4102
+vn 0.8602 0.4159 0.2950
+vn 0.9387 0.1686 0.3008
+vn 0.4833 -0.8626 0.1494
+vn 0.3590 -0.9296 0.0838
+vn 0.3587 -0.9299 0.0811
+vn 0.2333 -0.9724 0.0054
+vn 0.2384 -0.9711 0.0090
+vn 0.1226 -0.9905 -0.0626
+vn 0.0895 -0.9938 -0.0660
+vn 0.1258 -0.9919 0.0176
+vn 0.1802 -0.9794 0.0915
+vn 0.2436 -0.9576 0.1540
+vn 0.2466 -0.9611 0.1244
+vn 0.4310 -0.8856 0.1727
+vn 0.7444 -0.5790 0.3327
+vn 0.6393 -0.6493 0.4121
+vn 0.7729 -0.3936 0.4977
+vn 0.7134 0.3499 0.6071
+vn 0.7947 0.2725 0.5424
+vn 0.5584 0.3516 0.7514
+vn 0.4975 0.5128 0.6997
+vn 0.4286 0.4670 0.7735
+vn 0.4465 0.5425 0.7116
+vn 0.3524 0.5380 0.7658
+vn 0.3049 0.4805 0.8223
+vn 0.4122 0.5570 0.7210
+vn 0.5512 0.2793 0.7862
+vn 0.5921 0.1924 0.7826
+vn 0.7098 -0.2157 0.6706
+vn 0.4744 -0.2724 0.8371
+vn 0.5319 -0.3088 0.7885
+vn 0.1848 -0.4383 0.8796
+vn 0.3744 -0.4118 0.8308
+vn 0.2522 -0.5205 0.8158
+vn 0.0399 -0.7072 0.7059
+vn 0.0448 -0.4641 0.8847
+vn 0.0216 -0.3426 0.9392
+vn 0.0193 -0.2192 0.9755
+vn 0.0255 -0.1116 0.9934
+vn 0.0231 -0.1137 0.9932
+vn 0.1375 -0.1040 0.9850
+vn 0.1760 -0.1241 0.9765
+vn 0.1400 -0.2214 0.9651
+vn 0.0789 -0.2040 0.9758
+vn 0.0450 -0.9801 0.1936
+vn 0.0851 -0.8857 0.4564
+vn 0.0938 -0.9917 0.0874
+vn 0.1032 -0.9836 0.1481
+vn 0.1041 -0.9836 0.1474
+vn 0.1033 -0.9836 0.1477
+vn 0.1008 -0.9859 0.1339
+vn 0.0799 -0.9884 0.1294
+vn 0.1259 -0.9802 0.1526
+vn 0.1210 -0.9826 0.1412
+vn 0.3950 -0.8402 0.3716
+vn 0.4280 -0.0895 0.8993
+vn 0.5298 0.2215 0.8187
+vn 0.4166 0.1901 0.8890
+vn 0.4506 0.2920 0.8436
+vn 0.2689 0.2918 0.9179
+vn 0.2579 0.3005 0.9183
+vn 0.2984 0.3005 0.9059
+vn 0.4034 0.3126 0.8600
+vn 0.4012 0.1544 0.9029
+vn 0.4986 0.2398 0.8330
+vn 0.4867 0.1076 0.8669
+vn 0.5208 -0.1521 0.8400
+vn 0.4357 -0.2320 0.8697
+vn 0.2547 -0.2390 0.9370
+vn 0.3443 -0.2829 0.8952
+vn 0.1540 -0.2995 0.9416
+vn 0.1004 -0.3161 0.9434
+vn 0.1381 -0.2111 0.9677
+vn 0.4063 -0.0125 0.9137
+vn 0.3412 0.0909 0.9356
+vn 0.2208 0.1192 0.9680
+vn 0.1821 0.0824 0.9798
+vn 0.1614 -0.3099 0.9370
+vn 0.2618 0.1591 0.9519
+vn 0.1965 -0.7284 0.6564
+vn 0.3052 -0.2710 0.9129
+vn 0.2617 -0.6018 0.7546
+vn 0.2313 -0.9370 0.2619
+vn 0.1887 -0.9786 0.0825
+vn 0.1219 -0.9873 0.1020
+vn 0.1023 -0.9916 0.0794
+vn 0.1445 -0.9741 0.1740
+vn 0.0896 -0.9959 -0.0118
+vn 0.1301 -0.9638 0.2328
+vn 0.1312 -0.6630 0.7371
+vn 0.1740 0.0716 0.9821
+vn 0.1919 -0.0713 0.9788
+vn 0.2590 -0.0687 0.9634
+vn 0.2122 -0.1563 0.9647
+vn 0.0886 -0.9907 0.1036
+vn 0.1000 -0.9861 0.1324
+vn 0.0478 -0.9987 0.0175
+vn 0.0377 -0.9978 0.0542
+vn -0.0062 -0.8393 0.5436
+vn 0.0895 -0.2788 0.9562
+vn 0.0328 -0.3822 0.9235
+vn 0.0019 -0.5739 0.8189
+vn 0.0073 -0.6624 0.7491
+vn -0.0106 -0.8688 0.4950
+vn 0.0350 -0.9965 0.0758
+vn 0.0004 -0.6093 -0.7929
+vn 0.1479 0.5613 -0.8143
+vn 0.1694 0.5620 -0.8096
+vn 0.4445 0.6717 -0.5927
+vn 0.4229 0.6343 -0.6472
+vn 0.5313 0.6355 -0.5603
+vn 0.5389 0.7822 -0.3126
+vn 0.4664 0.7708 -0.4340
+vn 0.4815 0.8029 -0.3514
+vn 0.4042 0.6437 -0.6499
+vn 0.4923 0.4853 -0.7226
+vn 0.3340 0.4830 -0.8094
+vn 0.3341 0.5347 -0.7762
+vn 0.1079 0.5249 -0.8443
+vn 0.0827 0.5066 -0.8582
+vn 0.0198 0.3320 -0.9431
+vn 0.0114 0.4686 -0.8834
+vn 0.1099 0.4676 -0.8771
+vn 0.1556 0.3636 -0.9185
+vn 0.0741 0.2907 -0.9539
+vn 0.0654 0.0023 -0.9979
+vn 0.0843 -0.1509 -0.9849
+vn 0.1355 -0.3840 -0.9133
+vn 0.1360 -0.4352 -0.8900
+vn 0.2115 -0.4473 -0.8690
+vn 0.6906 -0.3458 -0.6352
+vn 0.7817 -0.2547 -0.5693
+vn 0.8333 -0.2001 -0.5153
+vn 0.9773 -0.0236 -0.2107
+vn 0.7843 0.3288 -0.5262
+vn 0.4349 0.6677 -0.6042
+vn 0.3960 0.4283 -0.8123
+vn 0.4356 0.4546 -0.7769
+vn 0.3181 0.2851 -0.9042
+vn 0.9995 -0.0218 0.0243
+vn 0.8389 -0.1123 0.5325
+vn 0.7447 -0.1121 0.6579
+vn 0.6756 -0.2410 0.6967
+vn 0.8058 0.1128 0.5814
+vn 0.8737 0.1091 0.4741
+vn 0.9560 0.2359 0.1745
+vn 0.9955 -0.0676 -0.0665
+vn 0.9854 -0.1301 -0.1102
+vn 0.9504 -0.3111 0.0012
+vn 0.9652 -0.2273 0.1295
+vn 0.9273 -0.2776 0.2512
+vn 0.9272 -0.3141 0.2039
+vn 0.9787 -0.1120 0.1718
+vn 0.9306 -0.1222 0.3449
+vn 0.9570 0.1316 0.2585
+vn 0.9516 0.0113 0.3071
+vn 0.9950 0.0998 -0.0085
+vn 0.9898 0.1230 -0.0722
+vn 0.9787 0.1632 -0.1245
+vn 0.9626 0.1577 -0.2201
+vn 0.9194 0.2065 -0.3347
+vn 0.9099 0.1930 -0.3673
+vn 0.8354 0.1085 -0.5389
+vn 0.7617 0.1315 -0.6344
+vn 0.7353 0.0679 -0.6743
+vn 0.6589 0.0689 -0.7490
+vn 0.6539 -0.0443 -0.7553
+vn 0.5279 -0.0284 -0.8488
+vn 0.4120 -0.2444 -0.8778
+vn 0.3059 -0.2384 -0.9217
+vn 0.2509 -0.2886 -0.9240
+vn 0.1118 -0.4013 -0.9091
+vn 0.0897 -0.4406 -0.8932
+vn 0.0637 -0.3201 -0.9452
+vn 0.1652 -0.1605 -0.9731
+vn 0.2730 -0.1633 -0.9480
+vn 0.3248 -0.1148 -0.9388
+vn 0.4405 -0.0573 -0.8959
+vn 0.4766 0.0720 -0.8761
+vn 0.5263 0.0525 -0.8487
+vn 0.6024 0.1558 -0.7829
+vn 0.6993 0.2038 -0.6851
+vn 0.7196 0.1998 -0.6650
+vn 0.7613 0.2476 -0.5993
+vn 0.9146 0.2628 -0.3072
+vn 0.9568 0.2049 -0.2063
+vn 0.9803 0.1778 -0.0860
+vn 0.9814 0.0787 0.1751
+vn 0.9885 0.1032 0.1102
+vn 0.9849 0.1409 0.1009
+vn 0.9698 0.2257 -0.0928
+vn 0.9481 0.2724 -0.1639
+vn 0.9152 0.3099 -0.2578
+vn 0.8643 0.3955 -0.3109
+vn 0.8425 0.3466 -0.4124
+vn 0.7742 0.4100 -0.4821
+vn 0.7621 0.3415 -0.5502
+vn 0.7075 0.3411 -0.6189
+vn 0.7333 0.3283 -0.5953
+vn 0.6737 0.3343 -0.6591
+vn 0.6601 0.2553 -0.7065
+vn 0.5897 0.2526 -0.7671
+vn 0.5113 0.1474 -0.8466
+vn 0.3062 0.0400 -0.9511
+vn 0.3765 0.0345 -0.9258
+vn 0.1531 -0.0235 -0.9879
+vn 0.1099 -0.0403 -0.9931
+vn 0.1011 -0.1532 -0.9830
+vn 0.0750 -0.0190 -0.9970
+vn 0.0744 0.0475 -0.9961
+vn 0.1471 0.0465 -0.9880
+vn 0.1292 0.1011 -0.9865
+vn 0.2231 0.1354 -0.9653
+vn 0.3341 0.1057 -0.9366
+vn 0.3882 0.2280 -0.8929
+vn 0.6006 0.4311 -0.6734
+vn 0.6861 0.4386 -0.5804
+vn 0.7141 0.4642 -0.5241
+vn 0.7665 0.4263 -0.4804
+vn 0.9109 0.3805 -0.1593
+vn 0.9707 0.2333 -0.0567
+vn 0.9829 0.1768 0.0523
+vn 0.9766 0.1596 0.1439
+vn 0.9639 0.1469 0.2220
+vn 0.9700 0.1080 0.2179
+vn 0.9647 0.1719 0.1994
+vn 0.9745 0.1783 0.1359
+vn 0.9445 0.3254 -0.0438
+vn 0.9601 0.2776 -0.0338
+vn 0.8779 0.4641 -0.1182
+vn 0.9110 0.3904 -0.1330
+vn 0.8567 0.4439 -0.2628
+vn 0.8001 0.5306 -0.2799
+vn 0.7076 0.5466 -0.4478
+vn 0.6982 0.4987 -0.5136
+vn 0.6153 0.5459 -0.5687
+vn 0.4994 0.5727 -0.6501
+vn 0.4536 0.4892 -0.7450
+vn 0.5255 0.4298 -0.7342
+vn 0.3583 0.4937 -0.7924
+vn 0.3308 0.4318 -0.8391
+vn 0.3475 0.3358 -0.8755
+vn 0.1259 0.3113 -0.9420
+vn 0.1288 0.2781 -0.9519
+vn 0.0313 0.1619 -0.9863
+vn 0.0743 0.1209 -0.9899
+vn 0.1414 0.3905 -0.9097
+vn 0.1554 0.4869 -0.8595
+vn 0.4497 0.5761 -0.6825
+vn 0.4958 0.6474 -0.5788
+vn 0.5790 0.6261 -0.5222
+vn 0.7031 0.6028 -0.3773
+vn 0.6990 0.6587 -0.2786
+vn 0.7915 0.5567 -0.2522
+vn 0.8694 0.4892 -0.0691
+vn 0.9166 0.3991 0.0254
+vn 0.9185 0.3340 0.2117
+vn 0.8096 0.5835 0.0637
+vn 0.7699 0.6382 0.0001
+vn 0.6477 0.7589 -0.0673
+vn 0.6252 0.7572 -0.1891
+vn 0.5167 0.8226 -0.2374
+vn 0.4273 0.8287 -0.3615
+vn 0.3678 0.7739 -0.5155
+vn 0.3523 0.7013 -0.6197
+vn 0.2282 0.7356 -0.6378
+vn 0.0824 0.5208 -0.8497
+vn 0.2086 0.8494 -0.4848
+vn 0.2618 0.8754 -0.4063
+vn 0.3316 0.8954 -0.2972
+vn 0.3578 0.8391 -0.4098
+vn 0.3989 0.8687 -0.2937
+vn 0.5035 0.8573 -0.1070
+vn 0.5896 0.7999 -0.1115
+vn 0.6320 0.7744 0.0304
+vn 0.7920 0.5963 0.1306
+vn 0.8798 0.3388 0.3333
+vn 0.9031 0.3362 0.2672
+vn 0.8501 0.4385 0.2916
+vn 0.6616 0.7374 0.1361
+vn 0.5320 0.8360 0.1344
+vn 0.5056 0.8627 0.0134
+vn 0.4131 0.9106 0.0103
+vn 0.3253 0.9268 -0.1878
+vn 0.2874 0.9241 -0.2518
+vn 0.2219 0.9385 -0.2645
+vn 0.1759 0.9188 -0.3535
+vn 0.1096 0.8661 -0.4877
+vn 0.0495 0.9253 -0.3761
+vn 0.1265 0.9659 -0.2260
+vn 0.1985 0.9530 -0.2290
+vn 0.2324 0.9706 -0.0632
+vn 0.3157 0.9471 -0.0574
+vn 0.2994 0.9526 0.0542
+vn 0.3829 0.9222 0.0549
+vn 0.4704 0.8565 0.2126
+vn 0.5258 0.8302 0.1854
+vn 0.6401 0.7085 0.2969
+vn 0.7483 0.6024 0.2777
+vn 0.8107 0.4523 0.3719
+vn 0.7665 0.5107 0.3895
+vn 0.8395 0.3438 0.4208
+vn 0.9099 0.2378 0.3400
+vn 0.9594 0.0861 0.2684
+vn 0.9720 0.0100 0.2346
+vn 0.9820 -0.0466 0.1831
+vn 0.9939 -0.0788 0.0765
+vn 0.9936 -0.1057 0.0408
+vn 0.9937 -0.1044 0.0405
+vn 0.9657 -0.2489 0.0742
+vn 0.9466 -0.1872 0.2623
+vn 0.8656 -0.3109 0.3924
+vn 0.8272 -0.5606 0.0391
+vn 0.8039 -0.5936 -0.0374
+vn 0.7247 -0.6226 -0.2952
+vn 0.4674 -0.7626 -0.4472
+vn 0.3618 -0.6768 -0.6411
+vn 0.9537 -0.0309 0.2993
+vn 0.7546 -0.0211 0.6558
+vn 0.8560 -0.0516 0.5143
+vn 0.7249 -0.1089 0.6802
+vn 0.8125 -0.0011 0.5830
+vn 0.9135 -0.2071 0.3503
+vn 0.9137 -0.2059 0.3503
+vn 0.8763 -0.0274 0.4809
+vn 0.9852 -0.1566 0.0704
+vn 0.9855 -0.1318 -0.1064
+vn 0.9730 -0.2292 0.0257
+vn 0.8373 -0.4051 0.3671
+vn 0.6379 -0.7700 -0.0117
+vn 0.5474 -0.8060 -0.2252
+vn 0.6630 -0.7154 -0.2206
+vn 0.7749 -0.6217 -0.1144
+vn 0.9997 -0.0253 0.0048
+vn 0.8152 -0.1968 -0.5447
+vn 0.9926 -0.0970 0.0732
+vn 0.6107 -0.2262 -0.7589
+vn 0.5132 -0.3767 -0.7712
+vn 0.2829 -0.4434 -0.8505
+vn 0.6112 -0.5801 -0.5384
+vn 0.8623 -0.4460 -0.2401
+vn 0.8297 -0.5097 -0.2276
+vn 0.9030 -0.4135 -0.1165
+vn 0.9030 -0.3988 -0.1598
+vn 0.9276 -0.3345 -0.1663
+vn 0.8970 -0.3341 -0.2895
+vn 0.8721 -0.3062 -0.3817
+vn 0.8516 -0.2303 -0.4708
+vn 0.8863 -0.1575 -0.4354
+vn 0.7627 -0.1559 -0.6276
+vn 0.7858 -0.0359 -0.6175
+vn 0.7391 0.1314 -0.6607
+vn 0.6164 0.2017 -0.7612
+vn 0.5361 0.1194 -0.8357
+vn 0.5724 0.2206 -0.7897
+vn 0.4343 0.1683 -0.8849
+vn 0.2800 0.2866 -0.9162
+vn 0.2453 0.3867 -0.8890
+vn 0.1725 0.2613 -0.9497
+vn 0.1348 0.2178 -0.9666
+vn 0.2296 -0.1726 -0.9579
+vn 0.1404 -0.2334 -0.9622
+vn 0.1943 -0.2861 -0.9383
+vn 0.1924 -0.4265 -0.8838
+vn 0.4294 -0.4487 -0.7837
+vn 0.5309 -0.4388 -0.7250
+vn 0.5705 -0.4194 -0.7061
+vn 0.6801 -0.4199 -0.6010
+vn 0.7840 -0.3447 -0.5163
+vn 0.8512 -0.2754 -0.4467
+vn 0.9372 -0.1032 -0.3331
+vn 0.9512 -0.0950 -0.2935
+vn 0.9592 -0.0973 -0.2653
+vn 0.9707 -0.0673 -0.2307
+vn 0.9085 0.1376 -0.3945
+vn 0.4098 0.0618 -0.9101
+vn 0.2164 0.2840 -0.9341
+vn 0.1566 0.0597 -0.9859
+vn 0.5800 0.0434 -0.8134
+vn 0.3983 -0.0075 -0.9172
+vn 0.2877 -0.0101 -0.9577
+vn 0.2064 -0.1543 -0.9662
+vn 0.5933 -0.1398 -0.7927
+vn 0.5206 -0.3938 -0.7576
+vn 0.7254 -0.3689 -0.5811
+vn 0.8557 -0.3671 -0.3647
+vn 0.8497 -0.4071 -0.3351
+vn 0.8996 -0.3565 -0.2522
+vn 0.8444 -0.3762 -0.3815
+vn 0.7625 -0.2912 -0.5778
+vn 0.5910 -0.2786 -0.7570
+vn 0.5771 -0.1178 -0.8081
+vn 0.5117 -0.0179 -0.8590
+vn 0.5688 0.0676 -0.8197
+vn 0.3372 0.1861 -0.9229
+vn 0.1929 0.1366 -0.9717
+vn 0.1845 0.1199 -0.9755
+vn 0.0800 0.1137 -0.9903
+vn 0.2140 0.0413 -0.9760
+vn 0.3781 -0.1215 -0.9177
+vn 0.3480 -0.3093 -0.8850
+vn 0.2361 -0.2681 -0.9340
+vn 0.3880 -0.4264 -0.8171
+vn 0.4092 -0.4087 -0.8158
+vn 0.5578 -0.4252 -0.7128
+vn 0.7029 -0.4070 -0.5834
+vn 0.9104 -0.2730 -0.3109
+vn 0.9569 -0.1641 -0.2395
+vn 0.4924 -0.0085 -0.8703
+vn 0.9084 -0.1234 -0.3995
+vn 0.9030 -0.1283 -0.4100
+vn 0.9437 -0.2382 -0.2294
+vn 0.8826 -0.3517 -0.3121
+vn 0.8163 -0.4052 -0.4117
+vn 0.7196 0.0671 -0.6911
+vn 0.4222 0.4133 -0.8068
+vn 0.4297 0.3136 -0.8468
+vn 0.5847 0.3686 -0.7226
+vn 0.7815 0.2034 -0.5898
+vn 0.6584 0.2345 -0.7152
+vn 0.8584 0.2578 -0.4434
+vn 0.8053 0.0949 -0.5853
+vn 0.8843 -0.0695 -0.4618
+vn 0.9490 -0.0768 -0.3057
+vn 0.9423 -0.2536 -0.2184
+vn 0.9269 -0.3632 -0.0947
+vn 0.8159 -0.5781 -0.0025
+vn 0.8366 -0.5141 0.1889
+vn 0.9619 -0.2463 0.1185
+vn 0.9826 -0.0750 0.1700
+vn 0.9372 0.1471 0.3161
+vn 0.9415 0.1483 0.3025
+vn 0.9086 0.1938 0.3699
+vn 0.6444 0.5431 0.5384
+vn 0.6452 0.6069 0.4641
+vn 0.6282 0.6777 0.3821
+vn 0.3938 0.8661 0.3080
+vn 0.3383 0.9085 0.2452
+vn 0.2459 0.9531 0.1763
+vn 0.2404 0.9690 0.0570
+vn 0.2107 0.9775 0.0041
+vn 0.1224 0.9921 0.0268
+vn 0.1007 0.9814 -0.1637
+vn 0.1131 0.9866 0.1179
+vn 0.1469 0.9629 0.2262
+vn 0.2349 0.9503 0.2045
+vn 0.3301 0.8981 0.2907
+vn 0.4568 0.7101 0.5358
+vn 0.4349 0.6263 0.6470
+vn 0.4705 0.6241 0.6239
+vn 0.6115 0.4968 0.6159
+vn 0.6169 0.4245 0.6627
+vn 0.7415 0.3689 0.5605
+vn 0.8024 0.2415 0.5458
+vn 0.8574 0.2348 0.4580
+vn 0.9328 0.0701 0.3535
+vn 0.9766 -0.1186 0.1796
+vn 0.9436 -0.3233 0.0717
+vn 0.9436 -0.3226 0.0741
+vn 0.9437 -0.3226 0.0732
+vn 0.9471 -0.3207 0.0093
+vn 0.9609 -0.2766 -0.0153
+vn 0.9595 -0.2791 -0.0382
+vn 0.9608 -0.2720 -0.0536
+vn 0.9568 -0.2608 -0.1283
+vn 0.9544 -0.1769 -0.2405
+vn 0.9851 0.0114 -0.1714
+vn 0.9382 -0.0180 -0.3457
+vn 0.9577 0.1208 -0.2610
+vn 0.9176 0.1665 -0.3609
+vn 0.7285 0.3816 -0.5690
+vn 0.6354 0.5551 -0.5368
+vn 0.6063 0.6983 -0.3805
+vn 0.7401 0.5460 -0.3925
+vn 0.5547 0.6393 -0.5326
+vn 0.8901 0.3505 -0.2911
+vn 0.8972 0.3152 -0.3094
+vn 0.9353 0.2226 -0.2749
+vn 0.9891 -0.0420 -0.1410
+vn 0.9686 -0.2041 -0.1418
+vn 0.9402 -0.3266 0.0965
+vn 0.9420 -0.3144 0.1176
+vn 0.9734 -0.0395 0.2257
+vn 0.9749 -0.0227 0.2215
+vn 0.9171 0.0661 0.3931
+vn 0.8492 0.1258 0.5129
+vn 0.5891 0.3596 0.7237
+vn 0.4895 0.4330 0.7569
+vn 0.3616 0.5899 0.7220
+vn 0.4209 0.5951 0.6847
+vn 0.2694 0.6870 0.6748
+vn 0.3475 0.6917 0.6331
+vn 0.2911 0.8157 0.5000
+vn 0.1018 0.9421 0.3195
+vn 0.0505 0.9704 0.2361
+vn 0.0806 0.9221 0.3785
+vn 0.2268 0.7136 0.6629
+vn 0.1520 0.7162 0.6811
+vn 0.1799 0.5872 0.7892
+vn 0.2347 0.5088 0.8283
+vn 0.3501 0.4908 0.7978
+vn 0.3310 0.3583 0.8729
+vn 0.4683 0.3408 0.8152
+vn 0.4084 0.2922 0.8648
+vn 0.5786 0.2681 0.7703
+vn 0.7165 0.1896 0.6714
+vn 0.7959 0.1533 0.5857
+vn 0.7719 0.0125 0.6356
+vn 0.8354 0.0299 0.5488
+vn 0.9003 0.0251 0.4345
+vn 0.8966 0.0823 0.4352
+vn 0.9331 0.0459 0.3568
+vn 0.9650 -0.1666 0.2024
+vn 0.9352 -0.2873 0.2069
+vn 0.9378 -0.3324 0.1003
+vn 0.9686 -0.2350 0.0811
+vn 0.9953 0.0471 -0.0847
+vn 0.7017 0.7051 -0.1018
+vn 0.5580 0.7842 -0.2713
+vn 0.5612 0.7761 -0.2877
+vn 0.4622 0.7416 -0.4863
+vn 0.4325 0.8030 -0.4100
+vn 0.4822 0.8194 -0.3101
+vn 0.5490 0.8109 -0.2029
+vn 0.5990 0.7752 -0.2005
+vn 0.6156 0.7247 -0.3096
+vn 0.6647 0.6848 -0.2987
+vn 0.7082 0.6253 -0.3277
+vn 0.6605 0.6180 -0.4264
+vn 0.8131 0.3120 -0.4914
+vn 0.6761 0.3311 -0.6582
+vn 0.6166 0.2529 -0.7455
+vn 0.4396 0.1609 -0.8837
+vn 0.6397 -0.3725 -0.6723
+vn 0.3898 -0.8602 -0.3288
+vn 0.4437 -0.8787 -0.1763
+vn 0.5886 -0.7585 -0.2795
+vn 0.8878 -0.3200 -0.3308
+vn 0.8721 -0.0124 -0.4891
+vn 0.9048 0.2959 -0.3061
+vn 0.8001 0.5186 -0.3015
+vn 0.8368 0.5193 -0.1735
+vn 0.7029 0.6938 -0.1568
+vn 0.6393 0.7570 -0.1349
+vn 0.6156 0.7870 -0.0402
+vn 0.5458 0.8368 -0.0433
+vn 0.6009 0.7992 -0.0094
+vn 0.6048 0.7872 -0.1205
+vn 0.7046 0.7027 -0.0989
+vn 0.8259 0.5630 -0.0304
+vn 0.9463 0.3117 0.0853
+vn 0.9984 -0.0321 0.0460
+vn 0.9514 -0.2481 0.1824
+vn 0.9199 -0.3463 0.1838
+vn 0.9228 -0.3556 0.1487
+vn 0.7251 0.1854 0.6632
+vn 0.6690 0.0606 0.7408
+vn 0.8128 -0.0079 0.5824
+vn 0.7811 -0.1137 0.6140
+vn 0.5371 -0.1442 0.8311
+vn 0.5138 -0.0860 0.8536
+vn 0.5347 0.0987 0.8393
+vn 0.6145 0.1065 0.7817
+vn 0.3183 0.2134 0.9237
+vn 0.2836 0.2826 0.9164
+vn 0.2292 0.3623 0.9034
+vn 0.1766 0.4518 0.8745
+vn 0.1105 0.4571 0.8825
+vn 0.0375 0.6561 0.7537
+vn 0.0540 0.7788 0.6250
+vn 0.0659 0.8662 0.4954
+vn 0.0315 0.5325 0.8459
+vn 0.0225 0.4086 0.9124
+vn 0.0639 0.4069 0.9113
+vn 0.1966 0.2401 0.9506
+vn 0.2356 0.1834 0.9544
+vn 0.3711 0.0768 0.9254
+vn 0.4457 -0.1308 0.8856
+vn 0.4910 -0.2091 0.8457
+vn 0.4222 0.0026 0.9065
+vn 0.5633 0.0469 0.8249
+vn 0.7025 0.1874 0.6866
+vn 0.8624 -0.0196 0.5059
+vn 0.8686 -0.1904 0.4574
+vn 0.9027 -0.2290 0.3642
+vn 0.9112 -0.3216 0.2574
+vn 0.9149 -0.3121 0.2561
+vn 0.8715 -0.4108 0.2676
+vn 0.9141 -0.3604 0.1859
+vn 0.9138 -0.3601 0.1880
+vn 0.9370 -0.2597 0.2335
+vn 0.9790 -0.1076 0.1732
+vn 0.9539 0.2104 0.2141
+vn 0.9793 0.1667 0.1149
+vn 0.9246 0.3195 0.2074
+vn 0.7915 0.5623 0.2394
+vn 0.7994 0.5946 0.0864
+vn 0.7153 0.6817 0.1538
+vn 0.7299 0.6825 0.0391
+vn 0.6024 0.7957 0.0627
+vn 0.6129 0.7901 0.0118
+vn 0.5679 0.8145 0.1186
+vn 0.9788 0.1694 0.1151
+vn 0.9838 0.1153 -0.1374
+vn 0.9748 -0.1874 -0.1209
+vn 0.4430 -0.8952 -0.0484
+vn 0.2184 -0.9741 -0.0577
+vn 0.0572 -0.9919 -0.1138
+vn 0.0451 -0.9988 -0.0208
+vn 0.0432 -0.9967 0.0691
+vn -0.0076 -0.9281 0.3721
+vn 0.0230 -0.9948 0.0989
+vn 0.0172 -0.9975 0.0679
+vn 0.0575 -0.9950 0.0819
+vn 0.0800 -0.9925 0.0928
+vn 0.0205 -0.9998 0.0055
+vn 0.0221 -0.9991 -0.0372
+vn 0.0395 -0.9900 -0.1352
+vn 0.1739 -0.7507 -0.6373
+vn 0.1996 -0.6780 -0.7074
+vn 0.2355 -0.9144 -0.3294
+vn 0.3158 -0.6492 -0.6919
+vn 0.2012 -0.3153 -0.9274
+vn 0.3590 -0.1174 -0.9259
+vn 0.3783 0.0622 -0.9236
+vn 0.4215 0.4318 -0.7974
+vn 0.4957 0.4604 -0.7364
+vn 0.2819 0.5164 -0.8086
+vn 0.1969 0.4015 -0.8944
+vn 0.1186 0.2438 -0.9625
+vn 0.0961 -0.2371 -0.9667
+vn 0.0312 -0.7850 -0.6188
+vn 0.0414 -0.9531 -0.2998
+vn 0.0373 -0.9733 -0.2264
+vn 0.0150 -0.9965 -0.0828
+vn 0.0684 -0.9949 0.0741
+vn 0.0163 -0.9996 0.0224
+vn 0.0129 -0.9997 -0.0194
+vn -0.0021 -0.4306 -0.9025
+vn 0.0377 -0.3181 -0.9473
+vn 0.0350 -0.3508 -0.9358
+vn 0.0930 0.2268 -0.9695
+vn 0.1186 0.2971 -0.9475
+vn 0.2218 0.5182 -0.8260
+vn 0.1101 0.4363 -0.8930
+vn 0.0979 0.3794 -0.9200
+vn -0.0453 -0.9005 -0.4326
+vn -0.0236 -0.9708 -0.2386
+vn 0.0087 -0.9969 -0.0780
+vn -0.0034 -0.2238 -0.9746
+vn 0.0112 -0.1654 -0.9862
+vn 0.0251 -0.0530 -0.9983
+vn 0.0419 0.1267 -0.9911
+vn -0.0012 -0.8379 -0.5459
+vn -0.0023 -0.9525 -0.3046
+vn 0.2874 -0.9173 -0.2758
+vn 0.5052 0.7439 0.4375
+vn 0.5370 0.7624 0.3610
+vn 0.6108 0.7425 0.2750
+vn 0.6413 0.7097 0.2915
+vn 0.5955 0.6884 0.4140
+vn 0.6958 0.6008 0.3937
+vn 0.6631 0.6091 0.4351
+vn 0.7371 0.4973 0.4575
+vn 0.9438 0.2428 0.2241
+vn 0.9400 0.0237 0.3405
+vn 0.9279 0.0409 0.3705
+vn 0.9176 -0.2944 0.2671
+vn 0.8850 -0.3111 0.3464
+vn 0.8905 -0.3329 0.3102
+vn 0.8519 -0.4449 0.2762
+vn 0.8549 -0.4620 0.2359
+vn 0.9032 -0.3551 0.2410
+vn 0.8563 -0.2046 0.4742
+vn 0.7665 -0.1541 0.6235
+vn 0.6973 0.1234 0.7061
+vn 0.5657 0.1953 0.8011
+vn 0.4530 0.3201 0.8321
+vn 0.5454 0.2777 0.7908
+vn 0.2905 -0.0159 0.9567
+vn 0.3685 0.0657 0.9273
+vn 0.2629 -0.1853 0.9468
+vn 0.2307 -0.3654 0.9018
+vn 0.2483 -0.1962 0.9486
+vn 0.2214 0.1543 0.9629
+vn 0.2592 0.0331 0.9653
+vn 0.3299 -0.1975 0.9231
+vn 0.4181 -0.3285 0.8469
+vn 0.2895 -0.3279 0.8993
+vn 0.1808 0.2740 0.9446
+vn 0.3186 0.3556 0.8787
+vn 0.4722 0.1985 0.8588
+vn 0.8680 -0.3654 0.3361
+vn 0.7955 -0.5326 0.2890
+vn 0.8017 -0.5294 0.2775
+vn 0.7829 -0.5224 0.3379
+vn 0.8036 -0.4086 0.4327
+vn 0.8089 -0.4103 0.4210
+vn 0.8465 -0.2836 0.4507
+vn 0.9242 -0.2472 0.2912
+vn 0.9382 0.0372 0.3440
+vn 0.8580 0.2577 0.4444
+vn 0.7382 0.4743 0.4797
+vn 0.6025 0.6791 0.4194
+vn 0.5298 0.7130 0.4592
+vn 0.4871 0.6660 0.5649
+vn 0.4622 0.7184 0.5199
+vn 0.5160 0.7296 0.4489
+vn 0.4573 0.7411 0.4916
+vn 0.7795 0.3667 0.5078
+vn 0.7934 0.2718 0.5447
+vn 0.8638 0.1350 0.4853
+vn 0.8933 0.0985 0.4385
+vn 0.7833 -0.2792 0.5554
+vn 0.8172 -0.1172 0.5643
+vn 0.8254 0.0235 0.5641
+vn 0.7987 0.1624 0.5794
+vn 0.6712 0.3874 0.6320
+vn 0.7452 -0.5936 0.3037
+vn 0.7657 -0.5648 0.3077
+vn 0.4895 -0.0186 0.8718
+vn 0.5566 -0.0445 0.8296
+vn 0.3725 0.1265 0.9194
+vn 0.2287 0.4294 0.8737
+vn 0.3515 0.4281 0.8326
+vn 0.5837 0.1736 0.7932
+vn 0.3175 0.1963 0.9277
+vn 0.6626 0.0814 0.7446
+vn 0.5868 -0.1235 0.8003
+vn 0.4686 -0.2032 0.8597
+vn 0.3937 -0.2413 0.8870
+vn 0.1881 0.0455 0.9811
+vn 0.1886 0.0452 0.9810
+vn 0.2169 0.2779 0.9358
+vn 0.7119 0.3180 0.6262
+vn 0.6580 0.3672 0.6574
+vn 0.5514 0.4026 0.7306
+vn 0.2307 0.3902 0.8914
+vn 0.5756 0.2005 0.7928
+vn 0.5068 0.2224 0.8329
+vn 0.3851 0.0468 0.9217
+vn 0.4913 -0.0055 0.8710
+vn 0.6598 -0.1560 0.7351
+vn 0.7055 -0.1733 0.6872
+vn 0.7748 -0.2443 0.5831
+vn 0.8110 -0.3643 0.4578
+vn 0.6963 -0.3177 0.6436
+vn 0.7822 -0.5150 0.3508
+vn 0.7537 -0.5808 0.3075
+vn 0.6890 -0.6294 0.3594
+vn 0.5860 -0.7050 0.3994
+vn 0.4904 -0.7878 0.3727
+vn 0.4661 -0.7030 0.5372
+vn 0.4337 -0.7388 0.5159
+vn 0.7348 -0.5074 0.4500
+vn 0.7027 -0.4013 0.5875
+vn 0.7337 -0.4578 0.5021
+vn 0.6014 -0.2462 0.7600
+vn 0.3210 -0.2560 0.9118
+vn 0.6053 -0.2929 0.7401
+vn 0.6135 -0.2212 0.7581
+vn 0.4505 -0.2271 0.8634
+vn 0.3760 0.0967 0.9216
+vn 0.4173 0.0706 0.9060
+vn 0.3350 0.0505 0.9409
+vn 0.4412 -0.0616 0.8953
+vn 0.4425 -0.2645 0.8569
+vn 0.2041 -0.6686 0.7150
+vn 0.5006 -0.0918 0.8608
+vn 0.4183 -0.4418 0.7936
+vn 0.3687 -0.0904 0.9251
+vn 0.5639 -0.0400 0.8249
+vn 0.5059 0.1080 0.8558
+vn 0.6039 -0.1233 0.7875
+vn 0.6379 -0.3752 0.6726
+vn 0.7293 -0.5871 0.3513
+vn 0.6853 -0.6816 0.2564
+vn 0.5695 -0.7884 0.2327
+vn 0.3542 -0.9131 0.2021
+vn 0.4065 -0.8772 0.2556
+vn 0.2278 -0.9244 0.3059
+vn 0.2272 -0.9638 0.1396
+vn 0.4206 -0.8920 0.1655
+vn 0.5239 -0.8212 0.2263
+vn 0.5741 -0.7862 0.2286
+vn 0.7217 -0.6168 0.3141
+vn 0.7489 -0.4802 0.4566
+vn 0.7068 -0.3179 0.6319
+vn 0.7445 -0.3623 0.5608
+vn 0.3618 -0.1551 0.9193
+vn 0.2575 -0.1178 0.9591
+vn 0.1901 -0.6852 0.7031
+vn 0.1686 0.1575 0.9730
+vn 0.3350 0.0815 0.9387
+vn 0.2490 -0.5414 0.8030
+vn 0.3318 -0.1262 0.9349
+vn 0.2676 0.0991 0.9584
+vn 0.1932 0.1337 0.9720
+vn 0.1068 -0.1926 0.9755
+vn 0.1578 -0.1244 0.9796
+vn 0.3311 -0.0543 0.9420
+vn 0.0969 -0.9586 0.2679
+vn 0.4379 0.1612 0.8844
+vn 0.8262 0.0466 0.5615
+vn 0.9220 -0.0213 0.3866
+vn 0.6878 0.2211 0.6914
+vn 0.7640 0.3452 0.5451
+vn 0.4696 0.5021 0.7263
+vn 0.5688 0.4979 0.6547
+vn 0.7427 0.4186 0.5227
+vn 0.7532 0.2125 0.6225
+vn 0.5073 -0.5840 0.6338
+vn 0.3092 0.4234 0.8516
+vn 0.9767 -0.0417 0.2104
+vn 0.9339 -0.0971 0.3441
+vn 0.9790 -0.0072 0.2039
+vn 0.9662 0.0784 0.2457
+vn 0.9407 0.1790 0.2881
+vn 0.8752 0.3212 0.3618
+vn 0.9950 -0.0078 0.0994
+vn 0.9953 0.0271 0.0925
+vn 0.6216 -0.0306 0.7827
+vn 0.1696 0.5848 -0.7932
+vn 0.2611 0.6558 -0.7083
+vn 0.0503 -0.9987 0.0078
+vn 0.0559 -0.9347 0.3511
+vn 0.0571 -0.7606 0.6467
+vn 0.0831 -0.5505 0.8307
+vn 0.2726 -0.4564 0.8470
+vn 0.0826 -0.1532 0.9847
+vn 0.2249 -0.5390 0.8117
+vn 0.9048 -0.0052 0.4258
+vn 0.6482 -0.5083 0.5670
+vn -0.1253 -0.8636 0.4884
+vn -0.4414 -0.4149 0.7956
+vn -0.8218 -0.0585 0.5668
+vn -0.4824 0.0619 0.8738
+vn -0.2619 -0.1524 0.9530
+vn -0.1339 -0.2089 0.9687
+vn -0.5821 -0.5555 0.5938
+vn -0.9850 -0.1318 0.1116
+vn -0.5435 0.8272 -0.1425
+vn -0.8351 0.2950 0.4643
+vn -0.9306 -0.3283 -0.1618
+vn -0.9225 -0.2680 0.2777
+vn -0.1020 -0.2511 0.9626
+vn -0.0684 -0.2845 -0.9562
+vn -0.0624 -0.3087 -0.9491
+vn -0.0857 -0.4224 -0.9023
+vn -0.1989 -0.4580 -0.8664
+vn -0.4458 -0.3968 -0.8024
+vn -0.5494 -0.2972 -0.7809
+vn -0.5940 -0.3200 -0.7380
+vn -0.6666 -0.3046 -0.6804
+vn -0.6770 -0.2027 -0.7075
+vn -0.7209 -0.2523 -0.6454
+vn -0.8929 -0.1175 -0.4347
+vn -0.9627 -0.0485 -0.2661
+vn -0.9524 0.0183 -0.3043
+vn -0.9857 -0.0058 -0.1684
+vn -0.9925 0.0288 -0.1186
+vn -0.9829 0.1815 -0.0323
+vn -0.7537 0.6571 -0.0105
+vn -0.6421 0.6481 -0.4094
+vn -0.5903 0.7999 -0.1087
+vn -0.9126 0.3318 -0.2390
+vn -0.9005 0.2578 -0.3502
+vn -0.9984 0.0053 0.0569
+vn -0.9792 -0.0305 0.2005
+vn -0.8444 -0.1183 0.5225
+vn -0.8759 -0.1482 0.4592
+vn -0.9509 -0.2168 0.2210
+vn -0.7588 -0.4016 0.5128
+vn -0.7689 -0.3173 0.5551
+vn -0.8975 -0.2911 0.3312
+vn -0.7916 0.0375 0.6099
+vn -0.9441 -0.0402 0.3273
+vn -0.7745 0.0430 0.6312
+vn -0.6571 0.3314 0.6770
+vn -0.7159 0.3537 0.6021
+vn -0.8103 0.4087 0.4200
+vn -0.7595 0.3318 0.5594
+vn -0.9901 -0.0759 -0.1185
+vn -0.8815 -0.4187 0.2185
+vn -0.8830 -0.4189 0.2116
+vn -0.7973 -0.4603 0.3905
+vn -0.9133 -0.3311 0.2370
+vn -0.9154 -0.2551 0.3114
+vn -0.9759 -0.2183 -0.0085
+vn -0.9276 0.0661 0.3676
+vn -0.8882 -0.2517 0.3845
+vn -0.8111 -0.3097 0.4961
+vn -0.8901 0.4038 0.2115
+vn -0.8058 0.3839 0.4509
+vn -0.9163 0.3572 0.1809
+vn -0.9559 0.2932 -0.0154
+vn -0.9875 0.1250 -0.0957
+vn -0.9627 0.0927 -0.2541
+vn -0.9054 0.0917 -0.4145
+vn -0.8280 0.0254 -0.5601
+vn -0.6335 -0.1045 -0.7666
+vn -0.5535 -0.1600 -0.8174
+vn -0.5635 -0.2392 -0.7907
+vn -0.3979 -0.3147 -0.8618
+vn -0.4469 -0.3475 -0.8243
+vn -0.1074 -0.4895 -0.8653
+vn -0.0064 -0.4662 -0.8846
+vn 0.0163 0.2921 -0.9562
+vn 0.0325 0.5140 -0.8572
+vn 0.0015 0.6272 -0.7789
+vn -0.0071 0.7039 -0.7103
+vn -0.0279 0.9768 -0.2124
+vn -0.0211 0.9977 -0.0650
+vn -0.0347 0.9968 0.0723
+vn -0.0539 0.9818 0.1820
+vn -0.0482 0.9607 0.2735
+vn -0.0087 0.9333 0.3589
+vn -0.0101 0.3523 0.9358
+vn -0.0396 0.1566 0.9869
+vn -0.1482 0.6001 0.7861
+vn -0.2960 0.3917 0.8712
+vn -0.2544 -0.0883 0.9631
+vn -0.3743 -0.6273 0.6829
+vn -0.3848 -0.7936 0.4713
+vn -0.1020 -0.9072 0.4081
+vn -0.3311 -0.7628 0.5554
+vn 0.0591 -0.5706 0.8191
+vn 0.1012 -0.1196 0.9877
+vn -0.0699 -0.1366 0.9882
+vn -0.1052 -0.4203 0.9013
+vn -0.1708 0.0129 0.9852
+vn -0.5980 -0.2993 0.7435
+vn -0.6230 -0.3152 0.7159
+vn -0.3793 -0.6989 0.6064
+vn -0.6833 -0.5455 0.4852
+vn -0.4508 -0.8017 0.3924
+vn -0.1015 -0.9860 0.1323
+vn -0.0176 -0.9945 0.1035
+vn -0.1544 -0.8951 0.4182
+vn -0.1114 -0.8491 0.5164
+vn -0.2468 -0.7607 0.6004
+vn -0.1087 -0.7330 0.6715
+vn -0.2251 -0.6277 0.7452
+vn -0.3388 -0.4940 0.8007
+vn -0.4713 -0.4248 0.7730
+vn -0.6300 -0.3703 0.6826
+vn -0.7786 0.0099 0.6275
+vn -0.7901 0.0910 0.6062
+vn -0.6988 0.2233 0.6796
+vn -0.6985 0.2126 0.6833
+vn -0.5598 0.3608 0.7460
+vn -0.5765 0.4417 0.6874
+vn -0.4906 0.5685 0.6604
+vn -0.5178 0.5660 0.6415
+vn -0.4234 0.6256 0.6552
+vn -0.5581 0.5963 0.5771
+vn -0.5866 0.6719 0.4522
+vn -0.6219 0.6913 0.3678
+vn -0.8150 0.4221 0.3970
+vn -0.9025 -0.1289 0.4110
+vn -0.8334 0.4917 0.2525
+vn -0.9387 0.1686 0.3008
+vn -0.9369 -0.3096 0.1624
+vn -0.7584 -0.6505 0.0418
+vn -0.3588 -0.9299 0.0810
+vn -0.2333 -0.9724 0.0054
+vn -0.1135 -0.9919 -0.0569
+vn -0.0576 -0.9968 -0.0552
+vn -0.1256 -0.9920 0.0125
+vn -0.2369 -0.9705 0.0448
+vn -0.2436 -0.9576 0.1539
+vn -0.4311 -0.8856 0.1727
+vn -0.8135 -0.4733 0.3379
+vn -0.4742 -0.8114 0.3417
+vn -0.7729 -0.3935 0.4977
+vn -0.7134 0.3499 0.6071
+vn -0.7860 0.3245 0.5263
+vn -0.5050 0.5975 0.6229
+vn -0.3524 0.5380 0.7658
+vn -0.3049 0.4805 0.8223
+vn -0.4121 0.5570 0.7211
+vn -0.5512 0.2793 0.7863
+vn -0.6831 0.0200 0.7300
+vn -0.1994 -0.3971 0.8959
+vn -0.2729 -0.5585 0.7833
+vn -0.1388 -0.6199 0.7723
+vn -0.1048 -0.4670 0.8780
+vn -0.0259 -0.3142 0.9490
+vn -0.0117 -0.3732 0.9277
+vn -0.0789 -0.2040 0.9758
+vn -0.0450 -0.9801 0.1936
+vn -0.0851 -0.8857 0.4564
+vn -0.0938 -0.9917 0.0874
+vn -0.0727 -0.9918 0.1051
+vn -0.0799 -0.9884 0.1294
+vn -0.1259 -0.9802 0.1526
+vn -0.1759 -0.9782 0.1102
+vn -0.1873 -0.9632 0.1930
+vn -0.2781 -0.9403 0.1964
+vn -0.1891 -0.9608 0.2026
+vn -0.3290 -0.9101 0.2518
+vn -0.3795 -0.8632 0.3330
+vn -0.5505 -0.0043 0.8348
+vn -0.4506 0.2920 0.8436
+vn -0.3043 0.3596 0.8821
+vn -0.2689 0.2918 0.9179
+vn -0.4034 0.3126 0.8600
+vn -0.4012 0.1543 0.9029
+vn -0.4986 0.2398 0.8330
+vn -0.5433 -0.0617 0.8373
+vn -0.6201 -0.0041 0.7845
+vn -0.4356 -0.2320 0.8697
+vn -0.3350 -0.2966 0.8943
+vn -0.0810 -0.4454 0.8917
+vn -0.0645 -0.3332 0.9407
+vn -0.3758 -0.1275 0.9179
+vn -0.4062 -0.0125 0.9137
+vn -0.2226 0.1642 0.9610
+vn -0.1821 0.0824 0.9798
+vn -0.1614 -0.3098 0.9370
+vn -0.2618 0.1591 0.9519
+vn -0.1965 -0.7284 0.6564
+vn -0.3052 -0.2711 0.9129
+vn -0.2578 -0.9507 0.1725
+vn -0.1476 -0.9737 0.1733
+vn -0.1356 -0.9841 0.1143
+vn -0.1026 -0.9841 0.1452
+vn -0.0896 -0.9959 -0.0118
+vn -0.1274 -0.9209 0.3683
+vn -0.1276 -0.6743 0.7273
+vn -0.1312 -0.6630 0.7371
+vn -0.1580 -0.2656 0.9511
+vn -0.0820 -0.1364 0.9872
+vn -0.1739 0.0716 0.9822
+vn -0.1920 -0.0712 0.9788
+vn -0.2069 -0.1585 0.9654
+vn -0.0785 -0.2017 0.9763
+vn -0.0476 -0.9989 0.0041
+vn -0.1000 -0.9861 0.1324
+vn -0.0728 -0.9951 0.0673
+vn -0.1033 -0.9848 0.1393
+vn -0.0377 -0.9978 0.0542
+vn -0.0006 -0.8433 0.5375
+vn -0.0249 -0.3873 0.9216
+vn -0.0702 -0.3526 0.9332
+vn -0.0652 -0.8892 0.4528
+vn -0.0001 -0.9996 0.0288
+vn -0.0017 -0.9996 0.0287
+vn 0.0024 -0.4189 -0.9080
+vn -0.1479 0.5613 -0.8143
+vn -0.1674 0.5649 -0.8080
+vn -0.2710 0.6403 -0.7187
+vn -0.3109 0.6392 -0.7034
+vn -0.4445 0.6718 -0.5926
+vn -0.3636 0.5937 -0.7179
+vn -0.3844 0.6452 -0.6602
+vn -0.5313 0.6355 -0.5603
+vn -0.5389 0.7822 -0.3126
+vn -0.4680 0.7664 -0.4399
+vn -0.4815 0.8029 -0.3514
+vn -0.4236 0.7766 -0.4663
+vn -0.3684 0.7189 -0.5895
+vn -0.3932 0.6457 -0.6546
+vn -0.4041 0.6436 -0.6500
+vn -0.5049 0.5140 -0.6934
+vn -0.3340 0.4831 -0.8093
+vn -0.3203 0.5391 -0.7790
+vn -0.3341 0.5347 -0.7762
+vn -0.1926 0.4973 -0.8459
+vn -0.1103 0.5198 -0.8471
+vn -0.0814 0.5046 -0.8595
+vn -0.0475 0.2770 -0.9597
+vn -0.0315 0.0524 -0.9981
+vn -0.1522 0.3904 -0.9080
+vn -0.1003 0.3086 -0.9459
+vn -0.0728 0.2075 -0.9755
+vn -0.0725 0.1155 -0.9907
+vn -0.0958 -0.1812 -0.9788
+vn -0.0850 -0.1511 -0.9849
+vn -0.1396 -0.3922 -0.9092
+vn -0.2009 -0.4524 -0.8689
+vn -0.3252 -0.4495 -0.8320
+vn -0.3235 -0.4492 -0.8328
+vn -0.5305 -0.3857 -0.7549
+vn -0.6905 -0.3458 -0.6353
+vn -0.9239 -0.0968 -0.3701
+vn -0.9773 -0.0236 -0.2107
+vn -0.9967 0.0359 -0.0722
+vn -0.9032 0.4021 -0.1504
+vn -0.7840 0.3301 -0.5257
+vn -0.5010 0.8279 -0.2520
+vn -0.3347 0.5299 -0.7793
+vn -0.3181 0.2851 -0.9042
+vn -0.9337 0.0516 -0.3542
+vn -0.8047 0.0035 0.5937
+vn -0.8064 -0.2791 0.5214
+vn -0.6239 -0.0144 0.7813
+vn -0.5837 0.2294 0.7789
+vn -0.7816 0.0459 0.6221
+vn -0.8096 0.1244 0.5737
+vn -0.7038 0.2324 0.6714
+vn -0.8435 0.3069 0.4409
+vn -0.9896 -0.0556 -0.1330
+vn -0.9955 -0.0676 -0.0667
+vn -0.9853 -0.1304 -0.1101
+vn -0.9502 -0.3115 0.0014
+vn -0.9652 -0.2275 0.1293
+vn -0.9272 -0.3142 0.2038
+vn -0.9570 0.1315 0.2585
+vn -0.9984 0.0499 0.0280
+vn -0.9950 0.0997 -0.0085
+vn -0.9790 0.1650 -0.1197
+vn -0.9644 0.1520 -0.2162
+vn -0.9099 0.1930 -0.3673
+vn -0.9184 0.1418 -0.3695
+vn -0.8213 0.2185 -0.5271
+vn -0.8222 0.1279 -0.5546
+vn -0.6758 0.0533 -0.7352
+vn -0.6593 -0.0559 -0.7498
+vn -0.5280 -0.0284 -0.8488
+vn -0.5658 -0.1407 -0.8125
+vn -0.4010 -0.1096 -0.9095
+vn -0.4110 -0.2492 -0.8769
+vn -0.2923 -0.2205 -0.9306
+vn -0.2632 -0.3708 -0.8907
+vn -0.2448 -0.2391 -0.9396
+vn -0.3000 -0.1163 -0.9468
+vn -0.2584 -0.0256 -0.9657
+vn -0.4406 -0.0572 -0.8959
+vn -0.4766 0.0721 -0.8762
+vn -0.6026 0.1557 -0.7827
+vn -0.7372 0.2856 -0.6124
+vn -0.8461 0.2398 -0.4761
+vn -0.9215 0.2648 -0.2842
+vn -0.9654 0.2043 -0.1619
+vn -0.9886 0.0144 0.1502
+vn -0.9862 0.1235 0.1107
+vn -0.9856 0.1689 0.0109
+vn -0.9697 0.2258 -0.0929
+vn -0.9536 0.2587 -0.1539
+vn -0.9580 0.2471 -0.1455
+vn -0.9150 0.3111 -0.2571
+vn -0.8605 0.3960 -0.3206
+vn -0.8425 0.3467 -0.4123
+vn -0.7774 0.4073 -0.4793
+vn -0.6605 0.3421 -0.6684
+vn -0.5971 0.2484 -0.7627
+vn -0.4795 0.1254 -0.8685
+vn -0.3064 0.0280 -0.9515
+vn -0.3765 0.0345 -0.9258
+vn -0.1525 -0.0159 -0.9882
+vn -0.0734 -0.0210 -0.9971
+vn -0.0731 0.0582 -0.9956
+vn -0.0892 0.0658 -0.9938
+vn -0.2392 0.1038 -0.9654
+vn -0.3322 0.1112 -0.9366
+vn -0.3865 0.2267 -0.8940
+vn -0.5184 0.2280 -0.8242
+vn -0.5283 0.3697 -0.7644
+vn -0.6006 0.4311 -0.6734
+vn -0.6996 0.4261 -0.5736
+vn -0.7818 0.4690 -0.4109
+vn -0.8207 0.4790 -0.3116
+vn -0.9133 0.3717 -0.1664
+vn -0.9753 0.1602 0.1518
+vn -0.9637 0.1454 0.2240
+vn -0.9738 0.1026 0.2029
+vn -0.9578 0.1494 0.2456
+vn -0.9653 0.1736 0.1950
+vn -0.9787 0.1701 0.1146
+vn -0.9596 0.2794 -0.0327
+vn -0.9195 0.3766 -0.1126
+vn -0.8231 0.4939 -0.2804
+vn -0.7773 0.5062 -0.3736
+vn -0.6620 0.5787 -0.4763
+vn -0.6975 0.4995 -0.5139
+vn -0.5807 0.5247 -0.6225
+vn -0.5122 0.5715 -0.6411
+vn -0.5255 0.4298 -0.7342
+vn -0.3584 0.4937 -0.7924
+vn -0.3308 0.4318 -0.8391
+vn -0.4905 0.3536 -0.7965
+vn -0.1207 0.3014 -0.9458
+vn -0.1505 0.2722 -0.9504
+vn -0.0258 0.1964 -0.9802
+vn -0.1415 0.3903 -0.9098
+vn -0.2178 0.5945 -0.7740
+vn -0.3532 0.6259 -0.6953
+vn -0.4498 0.5761 -0.6825
+vn -0.5214 0.6586 -0.5426
+vn -0.5101 0.7271 -0.4595
+vn -0.6600 0.6436 -0.3876
+vn -0.7578 0.6172 -0.2118
+vn -0.8323 0.5306 -0.1604
+vn -0.8530 0.5139 -0.0908
+vn -0.8470 0.5235 -0.0925
+vn -0.9237 0.3829 -0.0111
+vn -0.9256 0.3708 0.0761
+vn -0.9476 0.3070 0.0885
+vn -0.9519 0.2770 0.1314
+vn -0.9643 0.2208 0.1463
+vn -0.9452 0.1804 0.2723
+vn -0.9477 0.1950 0.2526
+vn -0.9339 0.2776 0.2253
+vn -0.9261 0.3154 0.2072
+vn -0.8320 0.5507 0.0664
+vn -0.7215 0.6755 -0.1517
+vn -0.6111 0.7371 -0.2886
+vn -0.4731 0.7999 -0.3693
+vn -0.4273 0.8289 -0.3610
+vn -0.3608 0.7767 -0.5162
+vn -0.3523 0.7013 -0.6197
+vn -0.2282 0.7356 -0.6378
+vn -0.2127 0.6496 -0.7299
+vn -0.1021 0.7675 -0.6329
+vn -0.2618 0.8758 -0.4054
+vn -0.2957 0.8702 -0.3941
+vn -0.3309 0.8959 -0.2965
+vn -0.3578 0.8393 -0.4093
+vn -0.3991 0.8689 -0.2927
+vn -0.4264 0.8719 -0.2410
+vn -0.5193 0.8482 -0.1042
+vn -0.6776 0.7334 0.0551
+vn -0.7191 0.6928 0.0545
+vn -0.7611 0.6262 0.1690
+vn -0.8317 0.5316 0.1602
+vn -0.9166 0.2762 0.2889
+vn -0.8374 0.4688 0.2810
+vn -0.8731 0.4013 0.2767
+vn -0.8049 0.5108 0.3019
+vn -0.7306 0.6515 0.2046
+vn -0.6296 0.7650 0.1356
+vn -0.5323 0.8358 0.1345
+vn -0.5063 0.8623 0.0138
+vn -0.4139 0.9103 0.0109
+vn -0.3801 0.9231 -0.0585
+vn -0.2872 0.9242 -0.2516
+vn -0.2331 0.9364 -0.2622
+vn -0.1095 0.8661 -0.4877
+vn -0.0865 0.9230 -0.3750
+vn -0.2034 0.9525 -0.2268
+vn -0.2288 0.9618 -0.1504
+vn -0.2344 0.9702 -0.0621
+vn -0.3160 0.9470 -0.0573
+vn -0.3003 0.9523 0.0544
+vn -0.3837 0.9218 0.0553
+vn -0.4119 0.9042 0.1130
+vn -0.4708 0.8560 0.2135
+vn -0.6959 0.6494 0.3067
+vn -0.7433 0.6111 0.2722
+vn -0.8118 0.4510 0.3709
+vn -0.8104 0.3757 0.4496
+vn -0.8677 0.3122 0.3868
+vn -0.8852 0.2697 0.3790
+vn -0.9507 -0.1989 0.2378
+vn -0.8255 -0.5628 0.0426
+vn -0.6917 -0.6550 -0.3042
+vn -0.7247 -0.6226 -0.2952
+vn -0.5163 -0.6397 -0.5694
+vn -0.3193 -0.6533 -0.6865
+vn -0.4301 -0.7723 -0.4675
+vn -0.8030 -0.5545 -0.2185
+vn -0.7530 -0.3746 -0.5410
+vn -0.6449 -0.0538 0.7624
+vn -0.8126 -0.0012 0.5829
+vn -0.9192 -0.2148 0.3301
+vn -0.8634 -0.0230 0.5039
+vn -0.8866 -0.0298 0.4616
+vn -0.9080 -0.0111 0.4189
+vn -0.9005 -0.0111 0.4346
+vn -0.9908 -0.1313 -0.0343
+vn -0.9730 -0.2292 0.0257
+vn -0.8391 -0.3843 0.3850
+vn -0.6381 -0.7699 -0.0114
+vn -0.4400 -0.7663 -0.4682
+vn -0.5474 -0.8060 -0.2252
+vn -0.6629 -0.7154 -0.2207
+vn -0.7749 -0.6217 -0.1144
+vn -0.8458 -0.4740 0.2450
+vn -0.8122 -0.5430 -0.2133
+vn -0.9256 -0.3741 0.0577
+vn -0.9986 -0.0335 0.0401
+vn -0.8152 -0.1968 -0.5448
+vn -0.9915 -0.1054 -0.0757
+vn -0.5931 -0.2234 -0.7735
+vn -0.2309 -0.4165 -0.8793
+vn -0.3622 -0.6012 -0.7123
+vn -0.6113 -0.5801 -0.5383
+vn -0.5117 -0.6416 -0.5714
+vn -0.7279 -0.5677 -0.3844
+vn -0.8858 -0.2999 -0.3541
+vn -0.8864 -0.1575 -0.4354
+vn -0.7629 -0.1558 -0.6275
+vn -0.8304 0.0377 -0.5559
+vn -0.7391 0.1315 -0.6607
+vn -0.6164 0.2018 -0.7612
+vn -0.5362 0.1193 -0.8356
+vn -0.4344 0.1682 -0.8849
+vn -0.2459 0.3168 -0.9161
+vn -0.2595 0.3758 -0.8896
+vn -0.1546 0.3999 -0.9034
+vn -0.1591 0.3366 -0.9281
+vn -0.1427 0.2070 -0.9679
+vn -0.0757 0.0248 -0.9968
+vn -0.1455 -0.2384 -0.9602
+vn -0.1943 -0.2861 -0.9383
+vn -0.2439 -0.3073 -0.9198
+vn -0.1838 -0.4264 -0.8857
+vn -0.4184 -0.4467 -0.7908
+vn -0.7258 -0.4139 -0.5495
+vn -0.7895 -0.3496 -0.5044
+vn -0.8298 -0.3232 -0.4549
+vn -0.8485 -0.2718 -0.4540
+vn -0.8880 -0.2152 -0.4063
+vn -0.9612 -0.1120 -0.2521
+vn -0.9580 -0.1003 -0.2687
+vn -0.9408 -0.0125 -0.3386
+vn -0.9085 0.1376 -0.3946
+vn -0.6054 0.2613 -0.7518
+vn -0.4098 0.0617 -0.9101
+vn -0.2165 0.2840 -0.9341
+vn -0.1566 0.0599 -0.9858
+vn -0.5801 0.0434 -0.8134
+vn -0.3983 -0.0075 -0.9172
+vn -0.9286 -0.0483 -0.3680
+vn -0.2065 -0.1543 -0.9662
+vn -0.5530 -0.1257 -0.8236
+vn -0.5066 -0.3913 -0.7683
+vn -0.8736 -0.2736 -0.4024
+vn -0.9255 -0.3304 -0.1854
+vn -0.9220 -0.3386 -0.1878
+vn -0.9002 -0.4022 -0.1668
+vn -0.8471 -0.4056 -0.3435
+vn -0.8458 -0.4033 -0.3493
+vn -0.8515 -0.3895 -0.3511
+vn -0.8192 -0.3526 -0.4523
+vn -0.7523 -0.2976 -0.5878
+vn -0.5911 -0.2785 -0.7570
+vn -0.5688 0.0676 -0.8197
+vn -0.3416 0.1911 -0.9202
+vn -0.1689 0.2570 -0.9515
+vn -0.1867 0.1210 -0.9749
+vn -0.0742 0.1134 -0.9908
+vn -0.2142 0.0413 -0.9759
+vn -0.3945 -0.1067 -0.9127
+vn -0.3781 -0.1215 -0.9177
+vn -0.2361 -0.2681 -0.9340
+vn -0.5586 -0.4219 -0.7141
+vn -0.8080 -0.4140 -0.4192
+vn -0.7710 -0.3992 -0.4962
+vn -0.9141 -0.2579 -0.3128
+vn -0.9506 -0.2158 -0.2230
+vn -0.7280 0.0378 -0.6846
+vn -0.4924 -0.0084 -0.8703
+vn -0.7713 -0.0965 -0.6292
+vn -0.6939 -0.3802 -0.6115
+vn -0.8752 -0.0218 -0.4833
+vn -0.4221 0.4133 -0.8068
+vn -0.5685 0.3418 -0.7483
+vn -0.6584 0.2345 -0.7152
+vn -0.8585 0.2580 -0.4432
+vn -0.8843 -0.0696 -0.4617
+vn -0.9490 -0.0768 -0.3057
+vn -0.9189 -0.1696 -0.3563
+vn -0.9305 -0.2557 -0.2623
+vn -0.9409 -0.2533 -0.2249
+vn -0.9547 -0.2653 -0.1346
+vn -0.9303 -0.3569 -0.0843
+vn -0.9269 -0.3631 -0.0946
+vn -0.8601 -0.4829 0.1644
+vn -0.9826 -0.0750 0.1702
+vn -0.9812 -0.0492 0.1866
+vn -0.9594 0.0759 0.2717
+vn -0.9434 0.1183 0.3098
+vn -0.8789 0.2545 0.4035
+vn -0.7928 0.3789 0.4774
+vn -0.6764 0.5251 0.5165
+vn -0.6906 0.5751 0.4385
+vn -0.6872 0.6327 0.3570
+vn -0.5464 0.7407 0.3909
+vn -0.4662 0.8405 0.2761
+vn -0.4018 0.8632 0.3057
+vn -0.3355 0.9083 0.2500
+vn -0.2927 0.9452 0.1445
+vn -0.2631 0.9504 0.1659
+vn -0.2241 0.9725 0.0640
+vn -0.1227 0.9902 0.0667
+vn -0.1185 0.9761 0.1820
+vn -0.1578 0.9695 0.1875
+vn -0.2080 0.9652 0.1583
+vn -0.2649 0.9302 0.2539
+vn -0.2637 0.9303 0.2548
+vn -0.3952 0.8342 0.3845
+vn -0.5746 0.6625 0.4805
+vn -0.4364 0.7182 0.5420
+vn -0.5404 0.6612 0.5204
+vn -0.5730 0.5929 0.5658
+vn -0.4392 0.6313 0.6392
+vn -0.3977 0.7005 0.5926
+vn -0.5425 0.5749 0.6125
+vn -0.5645 0.5265 0.6358
+vn -0.6306 0.4205 0.6523
+vn -0.7225 0.3792 0.5781
+vn -0.8051 0.2438 0.5408
+vn -0.9336 0.1039 0.3429
+vn -0.9343 0.0677 0.3501
+vn -0.9712 0.0062 0.2383
+vn -0.9417 -0.3287 0.0718
+vn -0.9418 -0.3280 0.0736
+vn -0.9417 -0.3281 0.0747
+vn -0.9376 -0.3458 0.0375
+vn -0.9283 -0.3681 -0.0525
+vn -0.9591 -0.2804 -0.0378
+vn -0.9608 -0.2720 -0.0536
+vn -0.9573 -0.2597 -0.1272
+vn -0.9553 -0.1752 -0.2383
+vn -0.9851 0.0114 -0.1714
+vn -0.9382 -0.0178 -0.3456
+vn -0.8576 0.2590 -0.4443
+vn -0.7989 0.3700 -0.4741
+vn -0.7284 0.3816 -0.5690
+vn -0.6354 0.5551 -0.5368
+vn -0.7420 0.4833 -0.4646
+vn -0.6785 0.6633 -0.3158
+vn -0.8775 0.4276 -0.2173
+vn -0.8902 0.3505 -0.2912
+vn -0.8972 0.3152 -0.3094
+vn -0.9449 0.2851 -0.1612
+vn -0.9353 0.2225 -0.2750
+vn -0.9760 0.1575 -0.1501
+vn -0.9891 -0.0420 -0.1410
+vn -0.9687 -0.2043 -0.1411
+vn -0.9450 -0.3208 0.0637
+vn -0.9449 -0.3211 0.0641
+vn -0.9402 -0.3263 0.0975
+vn -0.9419 -0.3144 0.1178
+vn -0.9749 -0.0227 0.2214
+vn -0.8898 0.1083 0.4433
+vn -0.8491 0.1263 0.5129
+vn -0.7627 0.2059 0.6131
+vn -0.7305 0.2149 0.6482
+vn -0.6044 0.3690 0.7061
+vn -0.5364 0.3613 0.7627
+vn -0.4028 0.5439 0.7362
+vn -0.2798 0.6400 0.7156
+vn -0.2839 0.7442 0.6046
+vn -0.3245 0.8135 0.4826
+vn -0.2231 0.8996 0.3755
+vn -0.1400 0.9415 0.3066
+vn -0.1086 0.9435 0.3132
+vn -0.0612 0.9594 0.2755
+vn -0.0734 0.9304 0.3592
+vn -0.2208 0.8422 0.4919
+vn -0.2120 0.7601 0.6142
+vn -0.1887 0.6536 0.7330
+vn -0.2846 0.4960 0.8204
+vn -0.3471 0.4952 0.7964
+vn -0.4084 0.2795 0.8690
+vn -0.6389 0.1756 0.7489
+vn -0.7999 0.1517 0.5807
+vn -0.7719 0.0128 0.6356
+vn -0.8328 0.0353 0.5524
+vn -0.8613 0.0213 0.5077
+vn -0.9003 0.0251 0.4346
+vn -0.9331 0.0459 0.3567
+vn -0.9651 -0.1665 0.2023
+vn -0.9704 -0.2414 0.0112
+vn -0.9719 0.2016 -0.1215
+vn -0.9397 0.3088 -0.1469
+vn -0.8938 0.4142 -0.1719
+vn -0.8709 0.4687 -0.1479
+vn -0.7436 0.6231 -0.2424
+vn -0.6767 0.7054 -0.2108
+vn -0.5975 0.7708 -0.2210
+vn -0.5580 0.7842 -0.2713
+vn -0.4325 0.8031 -0.4099
+vn -0.5321 0.7092 -0.4625
+vn -0.5733 0.7986 -0.1832
+vn -0.7083 0.6253 -0.3277
+vn -0.6605 0.6180 -0.4264
+vn -0.8131 0.3120 -0.4914
+vn -0.6570 0.2455 -0.7128
+vn -0.6166 0.2529 -0.7455
+vn -0.5868 0.0711 -0.8066
+vn -0.4396 0.1609 -0.8837
+vn -0.3794 -0.5002 -0.7784
+vn -0.6396 -0.3727 -0.6723
+vn -0.6554 -0.4567 -0.6016
+vn -0.4437 -0.8787 -0.1763
+vn -0.8721 -0.0124 -0.4891
+vn -0.9138 0.2481 -0.3215
+vn -0.8001 0.5186 -0.3015
+vn -0.8473 0.5042 -0.1668
+vn -0.7683 0.6394 0.0297
+vn -0.6943 0.7016 -0.1602
+vn -0.5739 0.8163 -0.0653
+vn -0.5258 0.8466 -0.0827
+vn -0.6009 0.7992 -0.0094
+vn -0.5993 0.7904 -0.1269
+vn -0.7046 0.7027 -0.0989
+vn -0.8162 0.5772 -0.0264
+vn -0.9402 0.3154 0.1288
+vn -0.9745 0.2243 -0.0034
+vn -0.9975 -0.0617 0.0335
+vn -0.9603 -0.2509 0.1216
+vn -0.9510 -0.2479 0.1849
+vn -0.9388 -0.3163 0.1365
+vn -0.9202 -0.3607 0.1523
+vn -0.9296 -0.3327 0.1585
+vn -0.9428 -0.1761 0.2831
+vn -0.9398 -0.0522 0.3376
+vn -0.8426 0.1024 0.5286
+vn -0.7251 0.1854 0.6632
+vn -0.8128 -0.0079 0.5824
+vn -0.7463 -0.1001 0.6580
+vn -0.7810 -0.1137 0.6140
+vn -0.5371 -0.1441 0.8311
+vn -0.6353 -0.1011 0.7656
+vn -0.5138 -0.0860 0.8536
+vn -0.6371 0.1097 0.7629
+vn -0.4047 0.2407 0.8822
+vn -0.3183 0.2133 0.9237
+vn -0.2877 0.2673 0.9197
+vn -0.3845 0.2894 0.8766
+vn -0.2725 0.3743 0.8864
+vn -0.1711 0.3691 0.9135
+vn -0.1122 0.4634 0.8790
+vn -0.0620 0.5855 0.8083
+vn -0.0506 0.6546 0.7543
+vn -0.0844 0.7151 0.6939
+vn -0.0726 0.7756 0.6271
+vn -0.0873 0.8385 0.5379
+vn -0.0803 0.8861 0.4566
+vn -0.0437 0.4662 0.8836
+vn -0.1135 0.3163 0.9418
+vn -0.1403 0.3207 0.9367
+vn -0.2458 0.1881 0.9509
+vn -0.3788 -0.2135 0.9005
+vn -0.4457 -0.1306 0.8856
+vn -0.3056 -0.2960 0.9050
+vn -0.4910 -0.2091 0.8457
+vn -0.4222 0.0026 0.9065
+vn -0.8686 -0.1904 0.4574
+vn -0.9112 -0.3216 0.2574
+vn -0.9178 -0.3090 0.2492
+vn -0.9174 -0.3093 0.2505
+vn -0.8982 -0.3885 0.2057
+vn -0.8912 -0.3995 0.2147
+vn -0.8788 -0.3946 0.2682
+vn -0.9397 -0.2575 0.2248
+vn -0.9443 -0.2601 0.2016
+vn -0.9789 -0.1078 0.1737
+vn -0.9650 0.0728 0.2520
+vn -0.9539 0.2105 0.2141
+vn -0.9216 0.3257 0.2110
+vn -0.8419 0.4450 0.3053
+vn -0.7716 0.5810 0.2590
+vn -0.7172 0.6822 0.1426
+vn -0.7070 0.7071 0.0132
+vn -0.6354 0.7636 0.1149
+vn -0.6024 0.7957 0.0627
+vn -0.5796 0.7893 0.2024
+vn -0.5454 0.8374 0.0364
+vn -0.6465 0.7309 0.2187
+vn -0.5942 0.7969 0.1087
+vn -0.7679 0.6397 0.0333
+vn -0.9858 -0.0295 0.1652
+vn -0.9056 -0.4224 0.0377
+vn -0.9656 0.2030 -0.1623
+vn -0.9748 -0.1875 -0.1208
+vn -0.7027 -0.7109 -0.0296
+vn -0.4576 -0.8880 -0.0463
+vn -0.1390 -0.9869 -0.0820
+vn -0.0440 -0.9985 -0.0337
+vn -0.0898 -0.9752 0.2025
+vn 0.0028 -0.9436 0.3311
+vn 0.0292 -0.6754 0.7369
+vn -0.0115 -0.9933 0.1150
+vn -0.0353 -0.9944 0.0995
+vn -0.1739 -0.7507 -0.6374
+vn -0.1941 -0.3552 -0.9144
+vn -0.1527 -0.0399 -0.9875
+vn -0.2012 -0.3155 -0.9274
+vn -0.2119 0.2042 -0.9557
+vn -0.3784 0.0624 -0.9235
+vn -0.3531 0.4496 -0.8205
+vn -0.4216 0.4318 -0.7974
+vn -0.4958 0.4604 -0.7364
+vn -0.1969 0.4015 -0.8944
+vn -0.1064 -0.1287 -0.9860
+vn -0.1081 -0.3852 -0.9165
+vn -0.0199 -0.9947 -0.1013
+vn -0.0371 -0.9981 0.0488
+vn -0.0494 -0.9718 0.2307
+vn -0.0080 -0.9784 0.2064
+vn -0.0192 -0.9863 0.1636
+vn -0.0362 -0.9985 0.0415
+vn -0.0126 -0.9997 -0.0194
+vn -0.0084 -0.9889 -0.1481
+vn -0.0170 -0.9974 -0.0699
+vn -0.0075 -0.9862 -0.1653
+vn -0.0151 -0.9771 -0.2121
+vn -0.0350 -0.3508 -0.9358
+vn -0.0713 0.0288 -0.9970
+vn -0.0930 0.2268 -0.9695
+vn -0.1770 0.3979 -0.9002
+vn -0.2218 0.5182 -0.8260
+vn -0.0986 0.3768 -0.9210
+vn 0.0562 -0.6397 -0.7666
+vn -0.0125 -0.9997 0.0218
+vn -0.0279 -0.9987 0.0424
+vn -0.0053 -0.9992 0.0407
+vn -0.0066 -0.9980 -0.0621
+vn 0.0318 -0.3954 -0.9180
+vn -0.0247 -0.0537 -0.9983
+vn -0.6406 0.6812 0.3545
+vn -0.5053 0.7438 0.4375
+vn -0.5376 0.7752 0.3318
+vn -0.6166 0.7521 0.2327
+vn -0.6958 0.6007 0.3939
+vn -0.6715 0.7130 0.2016
+vn -0.6632 0.6090 0.4350
+vn -0.7836 0.4899 0.3821
+vn -0.7377 0.4887 0.4659
+vn -0.8449 0.3677 0.3885
+vn -0.9332 0.2510 0.2570
+vn -0.9278 0.0412 0.3707
+vn -0.9570 -0.1328 0.2578
+vn -0.8925 -0.2972 0.3393
+vn -0.8935 -0.3651 0.2613
+vn -0.8569 -0.4376 0.2724
+vn -0.8459 -0.4752 0.2419
+vn -0.8571 -0.4554 0.2408
+vn -0.8576 -0.4338 0.2763
+vn -0.9021 -0.3671 0.2269
+vn -0.9015 -0.3040 0.3080
+vn -0.8732 -0.3294 0.3593
+vn -0.8563 -0.2047 0.4742
+vn -0.7666 -0.1545 0.6233
+vn -0.6972 0.1234 0.7061
+vn -0.4541 0.3203 0.8314
+vn -0.4530 0.3201 0.8321
+vn -0.5454 0.2777 0.7908
+vn -0.3648 0.2346 0.9010
+vn -0.3685 0.0656 0.9273
+vn -0.2126 -0.2579 0.9425
+vn -0.2307 -0.3654 0.9018
+vn -0.2364 0.0551 0.9701
+vn -0.2543 0.0585 0.9654
+vn -0.1890 0.2093 0.9594
+vn -0.0912 0.2473 0.9646
+vn -0.0602 0.2400 0.9689
+vn -0.0827 0.1547 0.9845
+vn -0.1632 0.1588 0.9737
+vn -0.4180 -0.3286 0.8469
+vn -0.2896 -0.3279 0.8992
+vn -0.3444 -0.0470 0.9376
+vn -0.1772 0.2669 0.9473
+vn -0.2240 0.0060 0.9746
+vn -0.3186 0.3556 0.8786
+vn -0.3694 0.1413 0.9185
+vn -0.4723 0.1985 0.8588
+vn -0.6039 -0.0037 0.7970
+vn -0.7478 -0.2384 0.6197
+vn -0.8869 -0.2896 0.3600
+vn -0.8553 -0.3780 0.3544
+vn -0.8403 -0.4383 0.3190
+vn -0.8366 -0.4175 0.3547
+vn -0.8068 -0.5177 0.2847
+vn -0.7994 -0.4072 0.4417
+vn -0.7967 -0.2625 0.5443
+vn -0.8314 -0.3010 0.4671
+vn -0.9306 -0.1440 0.3366
+vn -0.9384 0.0365 0.3436
+vn -0.7798 0.3659 0.5079
+vn -0.7382 0.4742 0.4797
+vn -0.6357 0.5744 0.5157
+vn -0.5298 0.7131 0.4592
+vn -0.5628 0.6267 0.5390
+vn -0.4878 0.6644 0.5662
+vn -0.4622 0.7184 0.5199
+vn -0.4376 0.6922 0.5740
+vn -0.4573 0.7410 0.4916
+vn -0.7795 0.3667 0.5078
+vn -0.8639 0.1350 0.4853
+vn -0.8934 0.0986 0.4384
+vn -0.8760 -0.2301 0.4238
+vn -0.7965 -0.2659 0.5431
+vn -0.8171 -0.1175 0.5644
+vn -0.8253 0.0234 0.5642
+vn -0.7987 0.1623 0.5794
+vn -0.6712 0.3874 0.6320
+vn -0.7402 -0.5177 0.4290
+vn -0.7700 -0.5249 0.3627
+vn -0.7916 -0.5376 0.2905
+vn -0.7697 -0.5585 0.3093
+vn -0.8329 -0.2826 0.4757
+vn -0.4177 0.0413 0.9076
+vn -0.5567 -0.0445 0.8296
+vn -0.3650 0.1260 0.9224
+vn -0.2664 0.2191 0.9386
+vn -0.3289 0.3414 0.8805
+vn -0.2287 0.4294 0.8737
+vn -0.1655 0.3619 0.9174
+vn -0.5837 0.1736 0.7932
+vn -0.3483 0.2157 0.9122
+vn -0.6626 0.0814 0.7446
+vn -0.4686 -0.2032 0.8597
+vn -0.1744 0.0560 0.9831
+vn -0.2198 0.2765 0.9355
+vn -0.5751 0.0577 0.8160
+vn -0.5363 0.1764 0.8254
+vn -0.7255 0.2606 0.6370
+vn -0.5514 0.4026 0.7307
+vn -0.7254 0.3218 0.6085
+vn -0.3011 0.1672 0.9388
+vn -0.3851 0.0468 0.9217
+vn -0.4913 -0.0055 0.8710
+vn -0.6598 -0.1562 0.7350
+vn -0.7456 -0.2340 0.6239
+vn -0.7747 -0.2442 0.5833
+vn -0.7931 -0.2647 0.5486
+vn -0.8091 -0.3683 0.4580
+vn -0.7821 -0.5149 0.3511
+vn -0.7514 -0.5816 0.3116
+vn -0.7020 -0.6464 0.2990
+vn -0.6693 -0.6574 0.3461
+vn -0.6116 -0.6601 0.4362
+vn -0.5106 -0.7842 0.3527
+vn -0.4339 -0.7386 0.5160
+vn -0.6508 -0.7126 0.2621
+vn -0.7337 -0.4578 0.5022
+vn -0.6821 -0.1906 0.7060
+vn -0.6016 -0.2462 0.7599
+vn -0.6053 -0.2929 0.7402
+vn -0.6135 -0.2213 0.7581
+vn -0.4505 -0.2271 0.8634
+vn -0.3760 0.0967 0.9216
+vn -0.4173 0.0706 0.9060
+vn -0.4412 -0.0617 0.8953
+vn -0.4425 -0.2645 0.8569
+vn -0.4605 -0.1663 0.8719
+vn -0.3688 -0.0907 0.9251
+vn -0.4836 -0.1255 0.8662
+vn -0.5060 0.1080 0.8557
+vn -0.5901 -0.0606 0.8050
+vn -0.6039 -0.1233 0.7875
+vn -0.6666 -0.1921 0.7203
+vn -0.6379 -0.3752 0.6726
+vn -0.7293 -0.5871 0.3513
+vn -0.6853 -0.6816 0.2564
+vn -0.5695 -0.7883 0.2327
+vn -0.4065 -0.8772 0.2556
+vn -0.3122 -0.8554 0.4133
+vn -0.4193 -0.8925 0.1663
+vn -0.4822 -0.8470 0.2239
+vn -0.7203 -0.5352 0.4413
+vn -0.6676 -0.6433 0.3747
+vn -0.7489 -0.4803 0.4565
+vn -0.7445 -0.3624 0.5608
+vn -0.3988 -0.1356 0.9070
+vn -0.1908 -0.6826 0.7055
+vn -0.1684 0.1576 0.9730
+vn -0.2394 -0.5540 0.7974
+vn -0.3319 -0.1262 0.9349
+vn -0.1930 0.0058 0.9812
+vn -0.1754 -0.3555 0.9181
+vn -0.0589 0.0582 0.9966
+vn -0.0739 -0.1178 0.9903
+vn -0.1626 -0.1248 0.9788
+vn -0.3577 -0.0659 0.9315
+vn -0.0931 -0.9593 0.2667
+vn -0.4379 0.1612 0.8844
+vn -0.8262 0.0466 0.5615
+vn -0.9220 -0.0214 0.3866
+vn -0.4366 0.5137 0.7385
+vn -0.5688 0.4978 0.6547
+vn -0.7554 0.1686 0.6332
+vn -0.7043 -0.0883 0.7044
+vn -0.5091 -0.6002 0.6169
+vn -0.6037 0.3670 0.7078
+vn -0.2360 0.5365 0.8103
+vn -0.5526 0.7647 -0.3315
+vn -0.9790 -0.0409 0.1997
+vn -0.9231 -0.1009 0.3710
+vn -0.9680 0.0690 0.2413
+vn -0.9287 0.1986 0.3130
+vn -0.9908 -0.0311 0.1316
+vn -0.6216 -0.0305 0.7827
+vn -0.1429 0.4500 -0.8815
+vn -0.0459 -0.0973 -0.9942
+vn -0.0502 -0.9987 0.0094
+vn -0.7483 -0.3212 0.5805
+vn -0.1121 -0.7808 0.6147
+vn -0.1155 -0.9120 0.3936
+vn -0.1133 -0.5850 0.8031
+vn -0.2659 -0.5000 0.8242
+vn -0.0728 -0.1708 0.9826
+vn -0.2424 -0.5003 0.8312
+vn -0.5124 -0.7308 0.4509
+vn 0.3092 -0.7683 0.5604
+vn 0.3341 -0.7632 0.5530
+vn 0.8218 -0.0585 0.5668
+vn 0.4824 0.0619 0.8738
+vn 0.2619 -0.1524 0.9530
+vn 0.1697 -0.0628 0.9835
+vn 0.7395 -0.4795 0.4725
+vn 0.5633 -0.5794 0.5890
+vn 0.5717 0.1201 0.8117
+vn 0.5965 0.7843 -0.1705
+vn 0.9019 0.4308 -0.0315
+vn 0.0199 -0.1898 -0.9816
+vn 0.9225 -0.2680 0.2778
+vn 0.1018 -0.2482 0.9633
+vn 0.0179 -0.3669 -0.9301
+vn 0.0050 0.3857 -0.9226
+vn 0.0739 0.2907 -0.9540
+vn 0.0313 0.2256 -0.9737
+vn 0.0168 0.0605 -0.9980
+vn 0.0037 -0.0681 -0.9977
+vn 0.0371 -0.2608 -0.9647
+vn 0.0828 -0.4348 -0.8967
+vn 0.2012 -0.4648 -0.8623
+vn 0.2179 -0.4658 -0.8576
+vn 0.2887 -0.4478 -0.8463
+vn 0.4308 -0.3936 -0.8121
+vn 0.5492 -0.2971 -0.7811
+vn 0.6666 -0.3045 -0.6803
+vn 0.6770 -0.2027 -0.7075
+vn 0.7209 -0.2523 -0.6455
+vn 0.7103 -0.2079 -0.6725
+vn 0.8928 -0.1175 -0.4348
+vn 0.8580 -0.0891 -0.5058
+vn 0.9543 0.0145 -0.2986
+vn 0.9793 0.0622 -0.1926
+vn 0.9850 -0.0069 -0.1727
+vn 0.9829 0.1815 -0.0323
+vn 0.9827 0.1823 -0.0317
+vn 0.9189 0.3654 -0.1484
+vn 0.9211 0.3668 -0.1308
+vn 0.9005 0.2578 -0.3502
+vn 0.9624 0.1122 0.2475
+vn 0.9508 -0.2167 0.2215
+vn 0.7589 -0.4017 0.5126
+vn 0.8975 -0.2911 0.3312
+vn 0.9245 0.0156 0.3809
+vn 0.7631 0.0381 0.6451
+vn 0.7249 0.3160 0.6121
+vn 0.9428 0.2702 0.1952
+vn 0.9584 -0.1043 0.2656
+vn 0.8815 -0.4186 0.2184
+vn 0.8829 -0.4189 0.2120
+vn 0.7973 -0.4602 0.3906
+vn 0.9154 -0.2550 0.3114
+vn 0.9553 -0.1175 0.2711
+vn 0.9276 0.0661 0.3676
+vn 0.8901 0.4037 0.2116
+vn 0.9441 -0.0619 0.3238
+vn 0.9162 0.3574 0.1811
+vn 0.6613 0.7499 0.0185
+vn 0.9142 0.4011 0.0585
+vn 0.9869 0.1270 -0.0994
+vn 0.9694 0.0815 -0.2318
+vn 0.9073 0.0907 -0.4105
+vn 0.9199 0.0332 -0.3906
+vn 0.7423 -0.0752 -0.6658
+vn 0.6335 -0.1045 -0.7666
+vn 0.5535 -0.1600 -0.8174
+vn 0.5621 -0.2381 -0.7920
+vn 0.4470 -0.3474 -0.8243
+vn 0.2539 -0.3916 -0.8844
+vn 0.3009 -0.4318 -0.8503
+vn 0.0170 -0.4745 -0.8801
+vn 0.0438 -0.4359 -0.8989
+vn 0.0022 -0.1760 -0.9844
+vn 0.0027 0.0885 -0.9961
+vn -0.0009 0.1278 -0.9918
+vn 0.0091 0.3918 -0.9200
+vn -0.0036 0.4638 -0.8859
+vn 0.0041 0.5565 -0.8308
+vn -0.0009 0.6330 -0.7742
+vn 0.0071 0.7039 -0.7103
+vn 0.0240 0.9862 -0.1636
+vn 0.0379 0.9892 0.1415
+vn 0.0170 0.9507 0.3096
+vn 0.0294 0.9189 0.3934
+vn 0.0007 0.2438 0.9698
+vn 0.0237 0.3520 0.9357
+vn 0.1347 0.5948 0.7925
+vn 0.2958 0.3917 0.8713
+vn 0.4813 0.2301 0.8459
+vn 0.4929 -0.4192 0.7625
+vn 0.4006 -0.5566 0.7279
+vn 0.4871 -0.6107 0.6243
+vn 0.3930 -0.7670 0.5072
+vn 0.3848 -0.7936 0.4713
+vn 0.1019 -0.9072 0.4081
+vn -0.0496 -0.5562 0.8296
+vn -0.0055 -0.0279 0.9996
+vn 0.0365 0.2424 0.9695
+vn 0.0888 -0.0648 0.9939
+vn 0.0095 -0.6148 0.7886
+vn -0.0087 -0.2916 0.9565
+vn 0.0227 0.0898 0.9957
+vn -0.0020 -0.1455 0.9894
+vn 0.0006 -0.1198 0.9928
+vn 0.0033 0.0234 0.9997
+vn 0.0665 0.0080 0.9978
+vn 0.1183 0.0263 0.9926
+vn 0.5935 -0.2899 0.7508
+vn 0.4735 -0.2752 0.8367
+vn 0.6564 -0.5441 0.5225
+vn 0.3817 -0.6210 0.6846
+vn 0.4618 -0.8060 0.3703
+vn 0.2924 -0.8555 0.4273
+vn 0.2009 -0.9569 0.2095
+vn 0.0854 -0.9908 0.1050
+vn 0.0328 -0.9924 0.1182
+vn 0.0080 -0.9773 0.2118
+vn -0.0276 -0.8819 0.4706
+vn 0.0760 -0.8207 0.5663
+vn 0.3257 -0.8411 0.4318
+vn 0.2305 -0.7612 0.6062
+vn 0.3859 -0.6474 0.6573
+vn 0.4712 -0.4247 0.7731
+vn 0.6145 -0.3677 0.6980
+vn 0.6658 -0.2891 0.6878
+vn 0.7786 0.0100 0.6274
+vn 0.7566 -0.0678 0.6504
+vn 0.6988 0.2233 0.6796
+vn 0.4907 0.5684 0.6604
+vn 0.4337 0.4647 0.7720
+vn 0.4167 0.6480 0.6376
+vn 0.4297 0.6901 0.5823
+vn 0.4068 0.6511 0.6407
+vn 0.5581 0.5963 0.5770
+vn 0.5967 0.6449 0.4775
+vn 0.6219 0.6913 0.3678
+vn 0.8312 0.3655 0.4189
+vn 0.9024 -0.1290 0.4110
+vn 0.8334 0.4917 0.2525
+vn 0.8179 -0.5406 0.1968
+vn 0.9369 -0.3096 0.1624
+vn 0.6501 -0.7443 0.1528
+vn 0.7582 -0.6507 0.0418
+vn 0.4708 -0.8822 0.0033
+vn 0.1310 -0.9897 -0.0576
+vn 0.1260 -0.9919 0.0178
+vn 0.2369 -0.9705 0.0450
+vn 0.4207 -0.8906 0.1725
+vn 0.8135 -0.4733 0.3380
+vn 0.4741 -0.8114 0.3417
+vn 0.8357 -0.2047 0.5096
+vn 0.7236 0.2655 0.6371
+vn 0.7860 0.3245 0.5263
+vn 0.5050 0.5975 0.6228
+vn 0.3527 0.5966 0.7209
+vn 0.3380 0.4479 0.8277
+vn 0.4034 0.3120 0.8602
+vn 0.4422 0.2588 0.8588
+vn 0.4535 0.4575 0.7649
+vn 0.5540 0.0932 0.8273
+vn 0.6831 0.0199 0.7300
+vn 0.7003 0.0775 0.7097
+vn 0.6158 -0.1075 0.7805
+vn 0.6068 -0.2167 0.7647
+vn 0.2953 -0.3526 0.8880
+vn 0.2069 -0.4134 0.8867
+vn 0.2163 -0.5373 0.8152
+vn 0.0687 -0.6256 0.7771
+vn 0.0115 -0.4959 0.8683
+vn 0.0128 -0.3370 0.9414
+vn 0.0356 -0.1990 0.9794
+vn 0.1172 -0.1214 0.9857
+vn 0.0268 -0.3124 0.9496
+vn 0.0117 -0.3732 0.9277
+vn 0.0133 -0.5989 0.8007
+vn 0.0831 -0.9175 0.3889
+vn 0.0727 -0.9918 0.1051
+vn 0.1289 -0.9901 0.0555
+vn 0.1760 -0.9782 0.1102
+vn 0.2192 -0.9652 0.1425
+vn 0.1872 -0.9632 0.1929
+vn 0.2515 -0.9495 0.1877
+vn 0.2781 -0.9403 0.1964
+vn 0.1891 -0.9608 0.2026
+vn 0.3290 -0.9101 0.2518
+vn 0.3795 -0.8632 0.3330
+vn 0.2630 -0.8689 0.4193
+vn 0.5505 -0.0043 0.8349
+vn 0.4172 -0.0430 0.9078
+vn 0.3043 0.3596 0.8821
+vn 0.2637 0.4400 0.8584
+vn 0.3942 0.0795 0.9156
+vn 0.4450 0.0063 0.8955
+vn 0.5434 -0.0616 0.8372
+vn 0.6200 -0.0041 0.7846
+vn 0.5339 -0.1552 0.8312
+vn 0.1136 -0.3181 0.9412
+vn 0.1002 -0.2312 0.9677
+vn 0.2606 -0.2325 0.9370
+vn 0.3758 -0.1275 0.9179
+vn 0.3316 -0.1052 0.9375
+vn 0.2225 0.1642 0.9610
+vn 0.1705 0.1652 0.9714
+vn 0.2974 -0.2448 0.9228
+vn 0.3315 -0.7874 0.5198
+vn 0.2579 -0.9507 0.1725
+vn 0.1476 -0.9737 0.1733
+vn 0.1356 -0.9842 0.1143
+vn 0.0910 -0.9863 0.1374
+vn 0.1026 -0.9841 0.1452
+vn 0.0789 -0.9969 0.0066
+vn 0.1274 -0.9209 0.3683
+vn 0.1276 -0.6743 0.7273
+vn 0.1580 -0.2656 0.9511
+vn 0.0820 -0.1364 0.9872
+vn 0.3139 0.0261 0.9491
+vn 0.0484 -0.9988 0.0037
+vn 0.0471 -0.9963 0.0712
+vn 0.0728 -0.9951 0.0673
+vn 0.1033 -0.9848 0.1393
+vn -0.0166 -0.7408 0.6715
+vn 0.0245 -0.3868 0.9218
+vn 0.0637 -0.3496 0.9347
+vn 0.0008 -0.4748 0.8801
+vn 0.0588 -0.9280 0.3679
+vn -0.0206 -0.9672 0.2531
+vn -0.0020 -0.9991 0.0428
+vn -0.0006 -0.8404 -0.5420
+vn -0.0126 -0.4190 -0.9079
+vn 0.0570 0.3456 -0.9367
+vn 0.0761 0.5264 -0.8468
+vn 0.1674 0.5649 -0.8080
+vn 0.2710 0.6404 -0.7187
+vn 0.3411 0.7326 -0.5890
+vn 0.3109 0.6392 -0.7034
+vn 0.4291 0.7051 -0.5646
+vn 0.3636 0.5936 -0.7179
+vn 0.3844 0.6452 -0.6602
+vn 0.4873 0.6156 -0.6193
+vn 0.5459 0.6758 -0.4952
+vn 0.5261 0.6910 -0.4958
+vn 0.5189 0.7270 -0.4496
+vn 0.4682 0.7663 -0.4401
+vn 0.4797 0.8061 -0.3466
+vn 0.4236 0.7766 -0.4663
+vn 0.3684 0.7189 -0.5895
+vn 0.3524 0.7174 -0.6010
+vn 0.3931 0.6458 -0.6545
+vn 0.5049 0.5141 -0.6934
+vn 0.3203 0.5391 -0.7790
+vn 0.2006 0.4943 -0.8458
+vn 0.1926 0.4973 -0.8459
+vn 0.0536 0.4694 -0.8814
+vn 0.0478 0.2971 -0.9537
+vn 0.0147 -0.0200 -0.9997
+vn 0.0438 0.1062 -0.9934
+vn 0.1445 0.3744 -0.9159
+vn 0.1094 0.2099 -0.9716
+vn 0.0733 0.1279 -0.9891
+vn 0.1203 -0.2751 -0.9539
+vn 0.1144 -0.3432 -0.9323
+vn 0.3207 -0.4517 -0.8325
+vn 0.5305 -0.3857 -0.7548
+vn 0.8148 -0.2307 -0.5318
+vn 0.8718 -0.1736 -0.4581
+vn 0.9239 -0.0967 -0.3701
+vn 0.9749 -0.0657 -0.2126
+vn 0.9906 0.0085 -0.1368
+vn 0.9033 0.4019 -0.1501
+vn 0.9538 0.1863 -0.2357
+vn 0.4612 0.6200 -0.6348
+vn 0.5010 0.8280 -0.2516
+vn 0.7902 0.2940 -0.5378
+vn 0.3347 0.5298 -0.7793
+vn 0.9337 0.0516 -0.3542
+vn 0.8152 -0.2680 0.5134
+vn 0.6239 -0.0142 0.7814
+vn 0.5837 0.2295 0.7789
+vn 0.6291 0.2582 0.7331
+vn 0.7815 0.0459 0.6222
+vn 0.8061 0.1125 0.5809
+vn 0.8026 0.3140 0.5072
+vn 0.9222 0.0768 0.3791
+vn 0.9895 -0.0555 -0.1333
+vn 0.9932 0.1058 -0.0493
+vn 0.8334 0.4042 0.3768
+vn 0.9298 0.3362 0.1496
+vn 0.9984 0.0500 0.0280
+vn 0.9966 0.0822 0.0013
+vn 0.9796 0.1610 -0.1199
+vn 0.9628 0.1572 -0.2197
+vn 0.9184 0.1416 -0.3694
+vn 0.8213 0.2185 -0.5271
+vn 0.8222 0.1279 -0.5546
+vn 0.6758 0.0534 -0.7352
+vn 0.6593 -0.0559 -0.7498
+vn 0.5203 -0.0369 -0.8532
+vn 0.5658 -0.1407 -0.8125
+vn 0.4010 -0.1097 -0.9095
+vn 0.4413 -0.1743 -0.8803
+vn 0.4156 -0.2489 -0.8748
+vn 0.1726 -0.2755 -0.9457
+vn 0.2748 -0.3605 -0.8914
+vn 0.2080 -0.4066 -0.8896
+vn 0.0631 -0.3198 -0.9454
+vn 0.1864 -0.1504 -0.9709
+vn 0.2544 -0.0300 -0.9666
+vn 0.5899 0.0796 -0.8036
+vn 0.5811 0.1405 -0.8016
+vn 0.6513 0.1528 -0.7433
+vn 0.8461 0.2398 -0.4761
+vn 0.8281 0.2960 -0.4761
+vn 0.9215 0.2648 -0.2842
+vn 0.9654 0.2043 -0.1619
+vn 0.9889 0.1463 -0.0258
+vn 0.9934 0.1140 0.0130
+vn 0.9888 0.0119 0.1490
+vn 0.9859 0.0243 0.1655
+vn 0.9778 0.0963 0.1859
+vn 0.9869 0.1443 0.0723
+vn 0.9847 0.1741 0.0025
+vn 0.9885 0.1491 -0.0264
+vn 0.9536 0.2587 -0.1539
+vn 0.8490 0.4036 -0.3411
+vn 0.8517 0.3458 -0.3938
+vn 0.5971 0.2483 -0.7628
+vn 0.4794 0.1254 -0.8686
+vn 0.3216 0.0453 -0.9458
+vn 0.1897 -0.0396 -0.9810
+vn 0.0668 -0.1784 -0.9817
+vn 0.0325 -0.3178 -0.9476
+vn 0.1511 0.0501 -0.9873
+vn 0.3858 0.1303 -0.9134
+vn 0.3856 0.2293 -0.8937
+vn 0.5010 0.2381 -0.8320
+vn 0.5183 0.2280 -0.8243
+vn 0.5283 0.3697 -0.7644
+vn 0.5880 0.3336 -0.7369
+vn 0.6389 0.3545 -0.6828
+vn 0.7903 0.4698 -0.3933
+vn 0.7821 0.4856 -0.3905
+vn 0.9836 0.1686 0.0639
+vn 0.9731 0.2232 0.0577
+vn 0.7764 0.5359 -0.3318
+vn 0.7080 0.5466 -0.4471
+vn 0.5806 0.5250 -0.6223
+vn 0.6130 0.4621 -0.6409
+vn 0.3775 0.3794 -0.8447
+vn 0.4905 0.3536 -0.7965
+vn 0.1437 0.3453 -0.9274
+vn 0.2415 0.2048 -0.9486
+vn 0.0434 0.0760 -0.9962
+vn 0.0029 0.2834 -0.9590
+vn 0.0322 0.1870 -0.9818
+vn 0.1706 0.4447 -0.8793
+vn 0.2575 0.5683 -0.7815
+vn 0.2512 0.6134 -0.7487
+vn 0.3532 0.6259 -0.6953
+vn 0.5823 0.6279 -0.5165
+vn 0.5653 0.6944 -0.4453
+vn 0.6417 0.6630 -0.3856
+vn 0.6090 0.7232 -0.3258
+vn 0.7129 0.5984 -0.3657
+vn 0.7025 0.6575 -0.2723
+vn 0.8037 0.5620 -0.1955
+vn 0.7910 0.5923 -0.1531
+vn 0.9033 0.4284 0.0230
+vn 0.8827 0.4667 0.0555
+vn 0.9410 0.3236 0.0989
+vn 0.9588 0.2616 0.1107
+vn 0.9539 0.2495 0.1670
+vn 0.9461 0.1809 0.2687
+vn 0.9483 0.1985 0.2475
+vn 0.9519 0.2217 0.2116
+vn 0.9545 0.1982 0.2228
+vn 0.8996 0.3953 0.1853
+vn 0.9578 0.2295 0.1728
+vn 0.8755 0.4474 0.1824
+vn 0.7883 0.6153 0.0063
+vn 0.7150 0.6937 -0.0871
+vn 0.8223 0.5639 -0.0767
+vn 0.6712 0.7124 -0.2048
+vn 0.7363 0.6614 -0.1427
+vn 0.5208 0.8216 -0.2318
+vn 0.4848 0.7917 -0.3717
+vn 0.5585 0.7663 -0.3175
+vn 0.5129 0.7409 -0.4336
+vn 0.3683 0.7742 -0.5148
+vn 0.3849 0.7118 -0.5875
+vn 0.2537 0.7421 -0.6204
+vn 0.2127 0.6497 -0.7298
+vn 0.1141 0.5977 -0.7936
+vn 0.2214 0.6287 -0.7455
+vn 0.0778 0.5320 -0.8432
+vn 0.0671 0.7156 -0.6953
+vn 0.1022 0.7675 -0.6329
+vn 0.0561 0.7969 -0.6015
+vn 0.2625 0.8042 -0.5332
+vn 0.2962 0.8697 -0.3948
+vn 0.4261 0.8717 -0.2421
+vn 0.3806 0.9062 -0.1841
+vn 0.5177 0.8502 -0.0958
+vn 0.6524 0.7563 0.0493
+vn 0.8060 0.5660 0.1729
+vn 0.8541 0.4826 0.1940
+vn 0.9116 0.2973 0.2839
+vn 0.9239 0.2510 0.2887
+vn 0.9181 0.2247 0.3264
+vn 0.9082 0.3062 0.2855
+vn 0.8366 0.4719 0.2784
+vn 0.7431 0.6315 0.2214
+vn 0.6703 0.7164 0.1934
+vn 0.6639 0.7349 0.1383
+vn 0.5107 0.8525 0.1113
+vn 0.5189 0.8544 0.0286
+vn 0.3792 0.9234 -0.0588
+vn 0.4170 0.9018 -0.1136
+vn 0.2957 0.9438 -0.1475
+vn 0.1067 0.9152 -0.3885
+vn 0.1082 0.8657 -0.4887
+vn 0.0417 0.9383 -0.3432
+vn 0.2452 0.9578 -0.1500
+vn 0.2224 0.9712 -0.0859
+vn 0.3103 0.9486 -0.0627
+vn 0.3009 0.9521 0.0555
+vn 0.4113 0.9045 0.1125
+vn 0.3860 0.9103 0.1497
+vn 0.6151 0.7558 0.2244
+vn 0.6071 0.7461 0.2733
+vn 0.7657 0.5718 0.2945
+vn 0.7452 0.5690 0.3477
+vn 0.8430 0.4187 0.3376
+vn 0.7422 0.5219 0.4205
+vn 0.7313 0.4774 0.4871
+vn 0.8093 0.3832 0.4451
+vn 0.9049 0.2364 0.3540
+vn 0.9963 -0.0827 -0.0235
+vn 0.9909 -0.1341 0.0084
+vn 0.9591 -0.2751 0.0663
+vn 0.9231 -0.3511 0.1568
+vn 0.8686 -0.3832 0.3142
+vn 0.8182 -0.5301 0.2224
+vn 0.5393 -0.8228 -0.1790
+vn 0.8219 -0.5695 -0.0129
+vn 0.6917 -0.6550 -0.3043
+vn 0.8807 -0.4642 -0.0941
+vn 0.5163 -0.6397 -0.5694
+vn 0.3193 -0.6533 -0.6865
+vn 0.4301 -0.7723 -0.4675
+vn 0.8030 -0.5545 -0.2185
+vn 0.6950 -0.5477 -0.4658
+vn 0.7530 -0.3746 -0.5410
+vn 0.9511 -0.0273 0.3077
+vn 0.7340 -0.0847 0.6738
+vn 0.6356 0.1290 0.7612
+vn 0.7240 0.0535 0.6877
+vn 0.9191 -0.2147 0.3303
+vn 0.8998 -0.3639 0.2409
+vn 0.8798 0.1452 0.4526
+vn 0.9364 -0.1481 0.3180
+vn 0.9867 0.0029 0.1624
+vn 0.9908 -0.1312 -0.0343
+vn 0.9978 0.0368 0.0550
+vn 0.9862 -0.1643 0.0186
+vn 0.8345 -0.4193 0.3575
+vn 0.7004 -0.6751 0.2317
+vn 0.4400 -0.7663 -0.4682
+vn 0.8557 -0.4447 0.2646
+vn 0.8122 -0.5430 -0.2133
+vn 0.9256 -0.3741 0.0576
+vn 0.9986 -0.0335 0.0401
+vn 0.8923 -0.2150 -0.3970
+vn 0.9916 -0.1054 -0.0756
+vn 0.5930 -0.2235 -0.7736
+vn 0.2309 -0.4165 -0.8793
+vn 0.3622 -0.6012 -0.7123
+vn 0.5117 -0.6416 -0.5714
+vn 0.8577 -0.4464 -0.2551
+vn 0.7279 -0.5677 -0.3844
+vn 0.9048 -0.3192 -0.2820
+vn 0.9041 -0.2618 -0.3377
+vn 0.8573 -0.2799 -0.4321
+vn 0.7845 -0.1231 -0.6077
+vn 0.8304 0.0378 -0.5559
+vn 0.7012 -0.0115 -0.7129
+vn 0.4284 0.3143 -0.8472
+vn 0.2552 0.3051 -0.9175
+vn 0.2595 0.3758 -0.8896
+vn 0.1542 0.3124 -0.9374
+vn 0.0766 0.0248 -0.9968
+vn 0.1021 -0.1037 -0.9893
+vn 0.1778 -0.0880 -0.9801
+vn 0.2494 -0.3360 -0.9082
+vn 0.3792 -0.4217 -0.8236
+vn 0.4128 -0.4457 -0.7943
+vn 0.6271 -0.4090 -0.6630
+vn 0.7464 -0.4090 -0.5250
+vn 0.7680 -0.3309 -0.5484
+vn 0.8252 -0.3313 -0.4575
+vn 0.8285 -0.3280 -0.4538
+vn 0.8933 -0.1875 -0.4085
+vn 0.9164 -0.1556 -0.3687
+vn 0.9619 -0.1120 -0.2495
+vn 0.9408 -0.0125 -0.3387
+vn 0.6055 0.2612 -0.7518
+vn 0.6529 0.1904 -0.7331
+vn 0.2361 0.2733 -0.9325
+vn 0.8676 0.0176 -0.4969
+vn 0.9286 -0.0483 -0.3680
+vn 0.3135 -0.2364 -0.9197
+vn 0.5529 -0.1257 -0.8237
+vn 0.7687 -0.3388 -0.5424
+vn 0.5066 -0.3913 -0.7683
+vn 0.8736 -0.2736 -0.4024
+vn 0.8936 -0.2888 -0.3437
+vn 0.9267 -0.3253 -0.1879
+vn 0.9157 -0.3530 -0.1921
+vn 0.9043 -0.3957 -0.1600
+vn 0.8724 -0.4262 -0.2392
+vn 0.8490 -0.3847 -0.3623
+vn 0.8183 -0.3521 -0.4543
+vn 0.8046 -0.3443 -0.4839
+vn 0.7520 -0.2979 -0.5881
+vn 0.5889 -0.1629 -0.7916
+vn 0.6396 0.0309 -0.7681
+vn 0.4860 0.0884 -0.8695
+vn 0.4038 0.1181 -0.9072
+vn 0.3416 0.1910 -0.9202
+vn 0.1689 0.2570 -0.9515
+vn 0.1867 0.1209 -0.9749
+vn 0.1785 0.0173 -0.9838
+vn 0.3945 -0.1067 -0.9127
+vn 0.4048 -0.2755 -0.8719
+vn 0.4965 -0.4077 -0.7664
+vn 0.7561 -0.4039 -0.5150
+vn 0.8663 -0.3678 -0.3379
+vn 0.8784 -0.2395 -0.4136
+vn 0.9511 -0.2154 -0.2216
+vn 0.9597 -0.1532 -0.2358
+vn 0.8971 -0.1079 -0.4283
+vn 0.7279 0.0379 -0.6846
+vn 0.7712 -0.0964 -0.6292
+vn 0.8285 -0.4145 -0.3766
+vn 0.7476 -0.4109 -0.5217
+vn 0.6789 -0.3975 -0.6173
+vn 0.4790 -0.3048 -0.8232
+vn 0.4011 0.0036 -0.9160
+vn 0.2961 0.0228 -0.9549
+vn 0.8752 -0.0218 -0.4833
+vn 0.5685 0.3418 -0.7483
+vn 0.8864 0.1486 -0.4384
+vn 0.9001 -0.0368 -0.4341
+vn 0.9189 -0.1697 -0.3562
+vn 0.9246 -0.2125 -0.3163
+vn 0.9334 -0.2683 -0.2382
+vn 0.9547 -0.2655 -0.1345
+vn 0.9303 -0.3570 -0.0842
+vn 0.7943 -0.6073 -0.0151
+vn 0.9717 -0.1783 0.1552
+vn 0.9812 -0.0493 0.1864
+vn 0.9060 0.2012 0.3725
+vn 0.8465 0.2864 0.4487
+vn 0.8552 0.2934 0.4273
+vn 0.7469 0.4115 0.5223
+vn 0.7656 0.4156 0.4911
+vn 0.6210 0.5869 0.5195
+vn 0.6174 0.6571 0.4325
+vn 0.6251 0.6826 0.3785
+vn 0.5276 0.7696 0.3597
+vn 0.4657 0.8411 0.2750
+vn 0.5360 0.7897 0.2985
+vn 0.4001 0.8962 0.1915
+vn 0.2919 0.9458 0.1422
+vn 0.1967 0.9735 0.1170
+vn 0.1325 0.9853 -0.1083
+vn 0.0877 0.9961 -0.0083
+vn 0.1362 0.9822 0.1293
+vn 0.1327 0.9666 0.2192
+vn 0.2328 0.9517 0.2003
+vn 0.2275 0.9292 0.2911
+vn 0.3067 0.9035 0.2993
+vn 0.4159 0.8149 0.4037
+vn 0.4030 0.8129 0.4204
+vn 0.4701 0.7308 0.4949
+vn 0.4961 0.6607 0.5634
+vn 0.5989 0.5030 0.6231
+vn 0.6178 0.4897 0.6152
+vn 0.6429 0.3908 0.6588
+vn 0.7536 0.3462 0.5587
+vn 0.7380 0.3150 0.5968
+vn 0.8559 0.2366 0.4599
+vn 0.9562 0.0340 0.2906
+vn 0.9710 0.0076 0.2391
+vn 0.9630 -0.2175 0.1592
+vn 0.9427 -0.3298 0.0514
+vn 0.9425 -0.3302 0.0516
+vn 0.9423 -0.3309 0.0506
+vn 0.9283 -0.3711 -0.0224
+vn 0.9273 -0.3642 -0.0867
+vn 0.9607 -0.1633 -0.2246
+vn 0.9725 -0.0636 -0.2242
+vn 0.9378 0.0974 -0.3334
+vn 0.8930 0.3226 -0.3140
+vn 0.8575 0.2589 -0.4446
+vn 0.8294 0.4106 -0.3788
+vn 0.7989 0.3702 -0.4740
+vn 0.7171 0.3642 -0.5943
+vn 0.6265 0.5213 -0.5795
+vn 0.7420 0.4833 -0.4646
+vn 0.6785 0.6633 -0.3158
+vn 0.7860 0.5183 -0.3370
+vn 0.8775 0.4276 -0.2173
+vn 0.9449 0.2850 -0.1612
+vn 0.9760 0.1576 -0.1501
+vn 0.9920 -0.0443 -0.1186
+vn 0.9755 -0.1830 -0.1221
+vn 0.9713 -0.2332 -0.0466
+vn 0.9576 -0.2823 0.0578
+vn 0.9513 -0.2998 0.0713
+vn 0.9434 -0.3273 0.0544
+vn 0.9396 -0.2718 0.2082
+vn 0.9551 -0.2288 0.1884
+vn 0.9723 -0.1296 0.1946
+vn 0.9533 0.0477 0.2981
+vn 0.8889 0.1122 0.4441
+vn 0.8596 0.1101 0.4990
+vn 0.7139 0.2444 0.6562
+vn 0.7520 0.2701 0.6013
+vn 0.6108 0.3279 0.7207
+vn 0.4736 0.4600 0.7510
+vn 0.5051 0.5068 0.6986
+vn 0.2789 0.6414 0.7147
+vn 0.2862 0.7962 0.5330
+vn 0.3538 0.7456 0.5647
+vn 0.3387 0.8319 0.4396
+vn 0.2080 0.8966 0.3910
+vn 0.2589 0.8843 0.3885
+vn 0.1446 0.9411 0.3058
+vn 0.1877 0.9303 0.3152
+vn 0.0394 0.9728 0.2281
+vn 0.0476 0.9538 0.2966
+vn 0.1629 0.8871 0.4318
+vn 0.1404 0.8690 0.4745
+vn 0.1784 0.8874 0.4251
+vn 0.1892 0.8115 0.5529
+vn 0.2405 0.7947 0.5573
+vn 0.1046 0.7719 0.6271
+vn 0.0882 0.6552 0.7503
+vn 0.3552 0.4861 0.7985
+vn 0.3402 0.3485 0.8734
+vn 0.4447 0.3719 0.8148
+vn 0.4305 0.2700 0.8612
+vn 0.5679 0.2816 0.7734
+vn 0.5620 0.2260 0.7957
+vn 0.6283 0.1816 0.7565
+vn 0.7541 0.1578 0.6376
+vn 0.7130 0.0866 0.6958
+vn 0.8328 0.0353 0.5524
+vn 0.8612 0.0213 0.5078
+vn 0.8094 0.2268 0.5417
+vn 0.9366 -0.3112 0.1612
+vn 0.9390 -0.3178 0.1319
+vn 0.9409 -0.3171 0.1194
+vn 0.9704 -0.2414 0.0111
+vn 0.9761 -0.2163 -0.0202
+vn 0.9946 -0.1016 -0.0187
+vn 0.9902 -0.1160 -0.0779
+vn 0.9719 0.2016 -0.1215
+vn 0.9326 0.3501 -0.0873
+vn 0.9397 0.3087 -0.1469
+vn 0.8882 0.4257 -0.1727
+vn 0.8716 0.4658 -0.1531
+vn 0.8336 0.5264 -0.1676
+vn 0.7437 0.6231 -0.2424
+vn 0.7147 0.6804 -0.1623
+vn 0.6767 0.7054 -0.2108
+vn 0.5975 0.7708 -0.2211
+vn 0.5319 0.7093 -0.4625
+vn 0.5250 0.8348 -0.1659
+vn 0.5147 0.8376 -0.1827
+vn 0.5733 0.7986 -0.1833
+vn 0.6065 0.7368 -0.2989
+vn 0.8146 0.2916 -0.5014
+vn 0.6570 0.2455 -0.7128
+vn 0.7442 -0.1702 -0.6459
+vn 0.5868 0.0711 -0.8066
+vn 0.3794 -0.5002 -0.7784
+vn 0.5585 -0.5437 -0.6264
+vn 0.6553 -0.4567 -0.6016
+vn 0.4152 -0.8930 -0.1734
+vn 0.8005 -0.5325 -0.2749
+vn 0.9539 -0.0892 -0.2867
+vn 0.9138 0.2481 -0.3215
+vn 0.8473 0.5043 -0.1668
+vn 0.7682 0.6395 0.0299
+vn 0.6943 0.7016 -0.1603
+vn 0.6151 0.7874 -0.0398
+vn 0.5739 0.8163 -0.0654
+vn 0.5258 0.8466 -0.0827
+vn 0.5993 0.7904 -0.1269
+vn 0.8059 0.5897 -0.0525
+vn 0.9109 0.4086 -0.0574
+vn 0.8786 0.4760 0.0394
+vn 0.9175 0.3977 -0.0049
+vn 0.9745 0.2243 -0.0034
+vn 0.9762 0.2167 -0.0078
+vn 0.9963 0.0860 -0.0002
+vn 0.9906 0.1333 0.0296
+vn 0.9975 -0.0614 0.0336
+vn 0.9768 -0.2085 0.0478
+vn 0.9604 -0.2509 0.1215
+vn 0.8990 -0.3903 0.1986
+vn 0.9284 -0.3364 0.1580
+vn 0.9261 -0.3487 0.1444
+vn 0.9304 -0.2839 0.2319
+vn 0.9430 -0.1759 0.2824
+vn 0.9399 -0.0524 0.3375
+vn 0.9433 -0.1747 0.2821
+vn 0.9441 -0.0268 0.3287
+vn 0.8428 0.1023 0.5284
+vn 0.8492 0.1025 0.5181
+vn 0.7463 -0.1001 0.6580
+vn 0.6650 -0.2604 0.7000
+vn 0.6353 -0.1013 0.7656
+vn 0.5877 -0.2242 0.7774
+vn 0.7361 0.0316 0.6761
+vn 0.4566 -0.0242 0.8894
+vn 0.6165 0.1050 0.7803
+vn 0.4742 0.1580 0.8661
+vn 0.4036 0.2409 0.8827
+vn 0.4792 0.1975 0.8552
+vn 0.3155 0.2607 0.9124
+vn 0.1830 0.3033 0.9352
+vn 0.0565 0.5326 0.8445
+vn 0.1271 0.5975 0.7917
+vn 0.0102 0.5832 0.8122
+vn 0.0396 0.6536 0.7558
+vn 0.0255 0.7162 0.6975
+vn 0.0558 0.7767 0.6274
+vn 0.0408 0.8328 0.5521
+vn -0.0004 0.4735 0.8808
+vn 0.1177 0.3223 0.9393
+vn 0.2111 0.2639 0.9412
+vn 0.3024 0.2161 0.9284
+vn 0.3859 0.1184 0.9149
+vn 0.3787 -0.2136 0.9005
+vn 0.3364 -0.3511 0.8738
+vn 0.3056 -0.2960 0.9050
+vn 0.3292 -0.2614 0.9074
+vn 0.5871 0.0197 0.8093
+vn 0.5780 0.2812 0.7661
+vn 0.8620 -0.0205 0.5065
+vn 0.8952 -0.3135 0.3168
+vn 0.9155 -0.2959 0.2726
+vn 0.9188 -0.3097 0.2446
+vn 0.8957 -0.3932 0.2075
+vn 0.9441 -0.2618 0.2005
+vn 0.9792 -0.1084 0.1715
+vn 0.9650 0.0728 0.2518
+vn 0.9922 0.0613 0.1087
+vn 0.8959 0.3958 0.2018
+vn 0.8075 0.5515 0.2091
+vn 0.8224 0.5579 0.1117
+vn 0.7601 0.5989 0.2520
+vn 0.7070 0.7071 0.0132
+vn 0.6354 0.7636 0.1149
+vn 0.5456 0.8228 0.1589
+vn 0.5796 0.7893 0.2024
+vn 0.5454 0.8374 0.0364
+vn 0.5664 0.8145 0.1258
+vn 0.5469 0.7920 0.2712
+vn 0.6466 0.7308 0.2187
+vn 0.5940 0.7971 0.1087
+vn 0.6421 0.7538 0.1397
+vn 0.7019 0.7100 0.0561
+vn 0.7678 0.6398 0.0332
+vn 0.8765 0.4691 0.1077
+vn 0.9858 -0.0295 0.1652
+vn 0.9056 -0.4224 0.0377
+vn 0.9657 0.2029 -0.1623
+vn 0.7027 -0.7109 -0.0297
+vn 0.9631 -0.2354 -0.1305
+vn 0.7542 -0.6532 -0.0680
+vn 0.6872 -0.7149 -0.1295
+vn 0.4576 -0.8880 -0.0463
+vn 0.1893 -0.9796 -0.0672
+vn 0.1054 -0.9543 -0.2796
+vn 0.0531 -0.9920 -0.1142
+vn 0.0314 -0.9989 -0.0357
+vn 0.0898 -0.9752 0.2025
+vn 0.0706 -0.9921 0.1034
+vn 0.0097 -0.9748 0.2229
+vn -0.0294 -0.7012 0.7123
+vn -0.0272 -0.4965 0.8676
+vn 0.0115 -0.9933 0.1148
+vn 0.0231 -0.9949 0.0981
+vn 0.0809 -0.9782 0.1912
+vn 0.0208 -0.9997 0.0114
+vn 0.1941 -0.3552 -0.9144
+vn 0.1442 -0.9283 -0.3428
+vn 0.2131 -0.9260 -0.3116
+vn 0.1527 -0.0399 -0.9875
+vn 0.2119 0.2041 -0.9558
+vn 0.3431 0.1570 -0.9261
+vn 0.1716 0.1031 -0.9798
+vn 0.2135 0.4469 -0.8687
+vn 0.3531 0.4496 -0.8205
+vn 0.2965 0.5238 -0.7986
+vn 0.4434 0.4652 -0.7662
+vn 0.1515 0.4584 -0.8757
+vn 0.1064 -0.1287 -0.9860
+vn 0.1081 -0.3852 -0.9165
+vn 0.1321 -0.5458 -0.8274
+vn 0.0594 -0.9331 -0.3547
+vn 0.0183 -0.9943 -0.1052
+vn 0.0371 -0.9981 0.0488
+vn 0.0386 -0.9980 0.0496
+vn 0.0813 -0.9846 0.1546
+vn 0.0482 -0.9715 0.2321
+vn 0.0496 -0.9712 0.2331
+vn 0.0190 -0.9864 0.1632
+vn 0.0356 -0.9985 0.0409
+vn 0.0305 -0.9982 0.0522
+vn 0.0311 -0.9981 0.0522
+vn 0.0309 -0.9981 0.0525
+vn 0.0099 -0.9836 -0.1801
+vn 0.0151 -0.9771 -0.2121
+vn -0.0363 -0.7603 -0.6486
+vn 0.0713 0.0288 -0.9970
+vn 0.0986 0.1671 -0.9810
+vn 0.1423 0.4533 -0.8799
+vn 0.1770 0.3979 -0.9002
+vn 0.2048 0.5559 -0.8056
+vn -0.0389 -0.7650 -0.6429
+vn -0.0559 -0.6473 -0.7601
+vn -0.0252 -0.8501 -0.5260
+vn 0.0125 -0.9997 0.0218
+vn 0.0276 -0.9987 0.0423
+vn 0.0062 -0.9992 0.0385
+vn -0.0023 -0.9919 -0.1266
+vn -0.0280 -0.4223 -0.9060
+vn -0.0282 -0.3996 -0.9162
+vn 0.0250 -0.0350 -0.9991
+vn 0.0022 -0.9629 -0.2700
+vn 0.6406 0.6812 0.3545
+vn 0.6356 0.7342 0.2386
+vn 0.5376 0.7752 0.3318
+vn 0.6166 0.7521 0.2327
+vn 0.6715 0.7131 0.2016
+vn 0.7849 0.4884 0.3814
+vn 0.8558 0.3673 0.3642
+vn 0.8300 0.4373 0.3464
+vn 0.9196 0.1590 0.3591
+vn 0.9570 -0.1329 0.2578
+vn 0.9530 -0.1557 0.2597
+vn 0.8603 -0.3848 0.3344
+vn 0.8684 -0.4329 0.2418
+vn 0.8519 -0.4580 0.2539
+vn 0.8731 -0.3293 0.3594
+vn 0.8390 -0.2873 0.4621
+vn 0.7250 -0.0361 0.6878
+vn 0.7377 0.0295 0.6745
+vn 0.4541 0.3203 0.8314
+vn 0.3648 0.2343 0.9011
+vn 0.2126 -0.2579 0.9425
+vn 0.1993 -0.4208 0.8850
+vn 0.2433 -0.1612 0.9565
+vn 0.2567 0.0221 0.9662
+vn 0.2659 0.0074 0.9640
+vn 0.1038 0.2161 0.9708
+vn 0.0578 0.2967 0.9532
+vn 0.0493 0.2470 0.9678
+vn 0.0910 0.2188 0.9715
+vn 0.1546 0.1669 0.9738
+vn 0.3353 -0.1569 0.9290
+vn 0.3413 -0.2318 0.9109
+vn 0.3444 -0.0470 0.9376
+vn 0.1949 -0.0721 0.9782
+vn 0.1772 0.2669 0.9473
+vn 0.2240 0.0060 0.9746
+vn 0.2996 0.3469 0.8887
+vn 0.3693 0.1412 0.9185
+vn 0.5413 0.1771 0.8220
+vn 0.6039 -0.0037 0.7971
+vn 0.7478 -0.2384 0.6197
+vn 0.7795 -0.2324 0.5818
+vn 0.8218 -0.2918 0.4894
+vn 0.8821 -0.3039 0.3599
+vn 0.8873 -0.2985 0.3516
+vn 0.8848 -0.3786 0.2717
+vn 0.8327 -0.4116 0.3704
+vn 0.8209 -0.4865 0.2989
+vn 0.8225 -0.4595 0.3351
+vn 0.9306 -0.1440 0.3367
+vn 0.9360 -0.1288 0.3277
+vn 0.9033 -0.0158 0.4288
+vn 0.8661 0.2185 0.4495
+vn 0.8497 0.2920 0.4390
+vn 0.7798 0.3659 0.5079
+vn 0.6357 0.5744 0.5157
+vn 0.6606 0.5223 0.5393
+vn 0.5580 0.6579 0.5059
+vn 0.5629 0.6267 0.5389
+vn 0.4879 0.6644 0.5662
+vn 0.4376 0.6922 0.5740
+vn 0.6110 0.5485 0.5708
+vn 0.6496 0.4880 0.5829
+vn 0.7957 0.2483 0.5525
+vn 0.8582 0.0047 0.5133
+vn 0.8984 -0.0975 0.4282
+vn 0.8798 -0.2401 0.4102
+vn 0.8730 -0.1527 0.4633
+vn 0.8287 -0.2309 0.5099
+vn 0.7775 -0.5247 0.3465
+vn 0.8195 -0.4578 0.3449
+vn 0.8340 -0.2831 0.4736
+vn 0.8218 -0.2896 0.4906
+vn 0.6833 -0.2029 0.7014
+vn 0.4177 0.0413 0.9077
+vn 0.6021 -0.1223 0.7890
+vn 0.3649 0.1261 0.9225
+vn 0.2646 0.2185 0.9393
+vn 0.2664 0.2191 0.9386
+vn 0.3290 0.3414 0.8805
+vn 0.1655 0.3618 0.9174
+vn 0.3483 0.2157 0.9122
+vn 0.6583 0.1218 0.7428
+vn 0.5117 0.0445 0.8580
+vn 0.1259 0.1249 0.9841
+vn 0.3844 -0.1851 0.9044
+vn 0.0312 0.1725 0.9845
+vn 0.0511 0.1555 0.9865
+vn 0.5752 0.0575 0.8160
+vn 0.3843 0.3109 0.8693
+vn 0.5364 0.1763 0.8254
+vn 0.6107 0.3910 0.6887
+vn 0.7255 0.2606 0.6370
+vn 0.5422 0.4001 0.7389
+vn 0.7254 0.3218 0.6085
+vn 0.3011 0.1672 0.9388
+vn 0.3574 0.2103 0.9100
+vn 0.6286 -0.1079 0.7702
+vn 0.7456 -0.2342 0.6238
+vn 0.7930 -0.2646 0.5488
+vn 0.6613 -0.2889 0.6923
+vn 0.7553 -0.3219 0.5708
+vn 0.8112 -0.3659 0.4562
+vn 0.6883 -0.6605 0.2999
+vn 0.7218 -0.5793 0.3786
+vn 0.6107 -0.6444 0.4602
+vn 0.5106 -0.7842 0.3526
+vn 0.6422 -0.6950 0.3234
+vn 0.6211 -0.7371 0.2664
+vn 0.7109 -0.6424 0.2862
+vn 0.7296 -0.5882 0.3489
+vn 0.7463 -0.4793 0.4618
+vn 0.6821 -0.1906 0.7060
+vn 0.5247 -0.2459 0.8150
+vn 0.4588 0.0002 0.8886
+vn 0.3410 0.0734 0.9372
+vn 0.4385 -0.3238 0.8384
+vn 0.4606 -0.1663 0.8719
+vn 0.4422 -0.2237 0.8686
+vn 0.4836 -0.1255 0.8663
+vn 0.5901 -0.0604 0.8051
+vn 0.6666 -0.1921 0.7203
+vn 0.5382 -0.8159 0.2113
+vn 0.3123 -0.8554 0.4133
+vn 0.1277 -0.9616 0.2430
+vn 0.2514 -0.9581 0.1369
+vn 0.7203 -0.5352 0.4413
+vn 0.6676 -0.6433 0.3748
+vn 0.5073 -0.1326 0.8515
+vn 0.2735 -0.1237 0.9539
+vn 0.3298 -0.4255 0.8427
+vn 0.2818 -0.2522 0.9257
+vn -0.0032 0.1197 0.9928
+vn 0.1930 0.0058 0.9812
+vn 0.1860 -0.3309 0.9252
+vn 0.0601 0.0361 0.9975
+vn 0.5467 -0.0409 0.8364
+vn 0.3524 0.1284 0.9270
+vn 0.7197 0.0031 0.6943
+vn 0.8430 0.2759 0.4618
+vn 0.7094 0.3821 0.5923
+vn 0.6517 0.3591 0.6680
+vn 0.4638 0.5074 0.7262
+vn 0.5040 0.5378 0.6759
+vn 0.7853 0.3659 0.4994
+vn 0.7129 -0.0248 0.7008
+vn 0.7554 0.1686 0.6332
+vn 0.7043 -0.0883 0.7044
+vn 0.5969 -0.3556 0.7192
+vn 0.6036 0.3670 0.7078
+vn 0.9659 0.1420 0.2164
+vn 0.0025 0.3591 0.9333
+vn 0.5819 0.6728 -0.4569
+vn 0.5526 0.7647 -0.3315
+vn 0.0491 0.9521 -0.3018
+vn 0.0029 0.2800 -0.9600
+vn 0.9908 -0.0310 0.1316
+vn 0.9955 0.0259 0.0910
+vn 0.9788 -0.1262 0.1613
+vn 0.1429 0.4500 -0.8815
+vn 0.0763 -0.4269 0.9011
+vn 0.7483 -0.3212 0.5804
+vn 0.5293 -0.6198 0.5794
+vn 0.0670 -0.9756 0.2089
+vn 0.0277 -0.9219 0.3865
+vn 0.0955 -0.8086 0.5805
+vn 0.2606 -0.8011 0.5388
+vn 0.1037 -0.2454 0.9639
+vn 0.1132 -0.5873 0.8014
+vn 0.2753 -0.4421 0.8537
+vn 0.0728 -0.1708 0.9826
+vn 0.2424 -0.5003 0.8312
+vn 0.9048 -0.0150 0.4255
+vn 0.5124 -0.7308 0.4510
+usemtl BioID-Blue
+s off
+f 1265//1 1841//1 1821//1
+f 347//2 348//2 5//2
+f 4//3 347//3 894//3
+f 347//4 4//4 348//4
+f 1842//5 347//5 5//5
+f 9//6 11//6 10//6
+f 13//7 14//7 15//7
+f 16//8 17//8 13//8
+f 17//9 18//9 13//9
+f 18//10 19//10 13//10
+f 19//11 20//11 13//11
+f 21//12 22//12 23//12
+f 21//13 24//13 59//13
+f 25//14 26//14 27//14
+f 27//15 28//15 25//15
+f 29//16 26//16 25//16
+f 32//17 31//17 30//17
+f 571//18 570//18 34//18
+f 38//19 39//19 40//19
+f 41//20 42//20 43//20
+f 44//21 41//21 45//21
+f 41//22 46//22 45//22
+f 54//23 51//23 52//23
+f 53//24 54//24 52//24
+f 57//25 58//25 16//25
+f 63//26 64//26 62//26
+f 69//27 68//27 67//27
+f 68//28 69//28 70//28
+f 78//29 66//29 65//29
+f 140//30 141//30 79//30
+f 79//31 80//31 140//31
+f 138//32 80//32 81//32
+f 81//33 82//33 138//33
+f 83//34 84//34 134//34
+f 85//35 134//35 84//35
+f 84//36 86//36 85//36
+f 132//37 85//37 86//37
+f 86//38 87//38 132//38
+f 126//39 90//39 91//39
+f 91//40 92//40 126//40
+f 92//41 44//41 126//41
+f 93//42 95//42 43//42
+f 94//43 96//43 95//43
+f 95//44 46//44 43//44
+f 95//45 98//45 37//45
+f 37//46 46//46 95//46
+f 99//47 37//47 98//47
+f 99//48 100//48 121//48
+f 101//49 121//49 100//49
+f 100//50 407//50 102//50
+f 407//51 104//51 103//51
+f 104//52 36//52 106//52
+f 107//53 35//53 36//53
+f 110//54 35//54 109//54
+f 110//55 411//55 111//55
+f 111//56 106//56 110//56
+f 112//57 105//57 111//57
+f 116//58 118//58 117//58
+f 117//59 119//59 101//59
+f 118//60 120//60 119//60
+f 121//61 101//61 119//61
+f 122//62 123//62 120//62
+f 120//63 45//63 37//63
+f 123//64 44//64 45//64
+f 123//65 126//65 44//65
+f 90//66 126//66 127//66
+f 89//67 90//67 128//67
+f 88//68 89//68 128//68
+f 128//69 422//69 88//69
+f 129//70 130//70 395//70
+f 87//71 395//71 130//71
+f 132//72 87//72 130//72
+f 131//73 133//73 132//73
+f 133//74 134//74 85//74
+f 85//75 132//75 133//75
+f 135//76 137//76 83//76
+f 138//77 139//77 80//77
+f 140//78 80//78 139//78
+f 140//79 142//79 141//79
+f 66//80 141//80 142//80
+f 144//81 143//81 142//81
+f 1147//82 143//82 144//82
+f 146//83 1409//83 468//83
+f 501//84 149//84 500//84
+f 502//85 149//85 501//85
+f 151//86 152//86 150//86
+f 151//87 531//87 152//87
+f 157//88 158//88 156//88
+f 160//89 161//89 159//89
+f 162//90 163//90 161//90
+f 164//91 165//91 163//91
+f 177//92 178//92 176//92
+f 178//93 180//93 179//93
+f 181//94 182//94 180//94
+f 183//95 184//95 182//95
+f 183//96 185//96 184//96
+f 186//97 187//97 185//97
+f 187//98 188//98 189//98
+f 188//99 190//99 189//99
+f 190//100 188//100 10//100
+f 15//101 9//101 10//101
+f 192//102 9//102 191//102
+f 192//103 193//103 194//103
+f 195//104 196//104 197//104
+f 197//105 198//105 199//105
+f 204//106 21//106 60//106
+f 59//107 60//107 21//107
+f 21//108 204//108 1015//108
+f 205//109 22//109 21//109
+f 207//110 23//110 22//110
+f 210//111 211//111 207//111
+f 212//112 210//112 213//112
+f 214//113 212//113 213//113
+f 213//114 215//114 214//114
+f 215//115 217//115 216//115
+f 219//116 218//116 220//116
+f 219//117 62//117 64//117
+f 221//118 222//118 219//118
+f 221//119 223//119 224//119
+f 224//120 225//120 221//120
+f 29//121 226//121 224//121
+f 227//122 25//122 228//122
+f 228//123 28//123 229//123
+f 231//124 229//124 230//124
+f 232//125 233//125 229//125
+f 238//126 239//126 236//126
+f 241//127 242//127 239//127
+f 245//128 246//128 241//128
+f 245//129 957//129 247//129
+f 245//130 247//130 246//130
+f 250//131 248//131 249//131
+f 249//132 251//132 250//132
+f 251//133 254//133 252//133
+f 255//134 252//134 254//134
+f 253//135 256//135 254//135
+f 255//136 258//136 257//136
+f 258//137 259//137 257//137
+f 268//138 257//138 259//138
+f 266//139 268//139 259//139
+f 259//140 260//140 261//140
+f 798//141 263//141 262//141
+f 265//142 263//142 48//142
+f 266//143 262//143 306//143
+f 267//144 269//144 268//144
+f 268//145 270//145 257//145
+f 271//146 257//146 270//146
+f 270//147 272//147 271//147
+f 271//148 273//148 252//148
+f 273//149 274//149 250//149
+f 250//150 252//150 273//150
+f 272//151 275//151 274//151
+f 247//152 274//152 275//152
+f 276//153 246//153 275//153
+f 246//154 247//154 275//154
+f 244//155 241//155 246//155
+f 244//156 277//156 242//156
+f 242//157 279//157 278//157
+f 278//158 279//158 237//158
+f 278//159 239//159 242//159
+f 237//160 280//160 281//160
+f 281//161 234//161 237//161
+f 233//162 232//162 234//162
+f 233//163 282//163 229//163
+f 282//164 227//164 228//164
+f 228//165 229//165 282//165
+f 282//166 283//166 227//166
+f 283//167 284//167 226//167
+f 226//168 227//168 283//168
+f 285//169 225//169 284//169
+f 225//170 226//170 284//170
+f 286//171 222//171 285//171
+f 30//172 31//172 289//172
+f 289//173 290//173 30//173
+f 290//174 291//174 30//174
+f 292//175 30//175 291//175
+f 291//176 293//176 292//176
+f 295//177 296//177 294//177
+f 298//178 300//178 301//178
+f 304//179 303//180 333//181
+f 333//182 334//182 304//182
+f 306//183 262//183 265//183
+f 334//184 308//184 267//184
+f 267//185 308//185 269//185
+f 308//186 309//186 269//186
+f 272//187 310//187 311//187
+f 312//188 311//188 313//188
+f 313//189 314//189 312//189
+f 314//190 272//190 312//190
+f 314//191 313//191 315//191
+f 315//192 276//192 314//192
+f 317//193 318//193 277//193
+f 319//194 279//194 318//194
+f 318//195 242//195 277//195
+f 279//196 320//196 280//196
+f 280//197 320//197 321//197
+f 321//198 281//198 280//198
+f 282//199 281//199 322//199
+f 322//200 283//200 282//200
+f 323//201 324//201 283//201
+f 324//202 325//202 284//202
+f 324//203 287//203 325//203
+f 324//204 323//204 290//204
+f 323//205 320//205 326//205
+f 319//206 326//206 320//206
+f 297//207 327//207 318//207
+f 318//208 317//208 297//208
+f 328//209 315//209 313//209
+f 313//210 329//210 328//210
+f 329//211 313//211 311//211
+f 311//212 330//212 329//212
+f 331//213 330//213 311//213
+f 311//214 332//214 331//214
+f 302//215 331//215 332//215
+f 333//216 302//216 332//216
+f 306//217 1//217 334//217
+f 330//218 335//218 301//218
+f 301//219 329//219 330//219
+f 327//220 326//220 319//220
+f 291//221 290//221 326//221
+f 290//222 288//222 324//222
+f 307//223 305//223 265//223
+f 1//224 873//224 334//224
+f 871//225 301//225 335//225
+f 296//226 336//226 294//226
+f 30//227 292//227 32//227
+f 872//228 341//228 340//228
+f 350//229 351//229 55//229
+f 349//230 352//230 350//230
+f 351//231 353//231 55//231
+f 354//232 55//232 353//232
+f 356//233 901//233 357//233
+f 901//234 377//234 357//234
+f 901//235 54//235 53//235
+f 360//236 361//236 359//236
+f 50//237 361//237 360//237
+f 360//238 362//238 49//238
+f 362//239 364//239 49//239
+f 49//240 365//240 366//240
+f 366//241 50//241 49//241
+f 366//242 368//242 50//242
+f 368//243 369//243 370//243
+f 370//244 361//244 368//244
+f 372//245 359//245 361//245
+f 373//246 375//246 374//246
+f 376//247 377//247 52//247
+f 357//248 67//248 379//248
+f 379//249 356//249 357//249
+f 379//250 355//250 356//250
+f 1072//251 354//251 355//251
+f 380//252 67//252 378//252
+f 381//253 70//253 69//253
+f 382//254 71//254 381//254
+f 382//255 72//255 71//255
+f 383//256 73//256 72//256
+f 384//257 74//257 73//257
+f 385//258 77//258 76//258
+f 84//259 391//259 392//259
+f 392//260 393//260 84//260
+f 86//261 84//261 393//261
+f 393//262 394//262 86//262
+f 396//263 400//263 88//263
+f 400//264 398//264 89//264
+f 398//265 47//265 91//265
+f 399//266 94//266 93//266
+f 93//267 47//267 399//267
+f 399//268 400//268 401//268
+f 401//269 94//269 399//269
+f 403//270 94//270 402//270
+f 405//271 97//271 96//271
+f 406//272 408//272 407//272
+f 408//273 104//273 407//273
+f 40//274 108//274 36//274
+f 109//275 107//275 409//275
+f 411//276 110//276 410//276
+f 412//277 111//277 411//277
+f 34//278 116//278 413//278
+f 34//279 414//279 116//279
+f 118//280 116//280 414//280
+f 414//281 124//281 122//281
+f 122//282 118//282 414//282
+f 415//283 125//283 124//283
+f 416//284 127//284 126//284
+f 418//285 90//285 127//285
+f 128//286 419//286 420//286
+f 422//287 420//287 421//287
+f 421//288 423//288 422//288
+f 131//289 424//289 425//289
+f 425//290 426//290 131//290
+f 133//291 131//291 426//291
+f 426//292 427//292 133//292
+f 428//293 133//293 427//293
+f 428//294 429//294 430//294
+f 430//295 431//295 136//295
+f 432//296 136//296 431//296
+f 139//297 432//297 433//297
+f 433//298 434//298 139//298
+f 434//299 144//299 139//299
+f 144//300 142//300 140//300
+f 140//301 139//301 144//301
+f 144//302 434//302 145//302
+f 469//303 145//303 434//303
+f 434//304 433//304 469//304
+f 435//305 469//305 433//305
+f 433//306 436//306 435//306
+f 437//307 435//307 436//307
+f 436//308 438//308 437//308
+f 427//309 440//309 429//309
+f 440//310 427//310 441//310
+f 441//311 442//311 440//311
+f 441//312 426//312 443//312
+f 444//313 443//313 426//313
+f 426//314 425//314 444//314
+f 445//315 444//315 425//315
+f 445//316 423//316 446//316
+f 421//317 447//317 423//317
+f 421//318 420//318 448//318
+f 418//319 449//319 419//319
+f 127//320 417//320 418//320
+f 417//321 127//321 416//321
+f 416//322 454//322 417//322
+f 570//323 569//323 450//323
+f 569//324 452//324 450//324
+f 450//325 452//325 453//325
+f 416//326 453//326 454//326
+f 417//327 482//327 449//327
+f 449//328 418//328 417//328
+f 457//329 447//329 456//329
+f 447//330 458//330 459//330
+f 459//331 423//331 447//331
+f 446//332 460//332 461//332
+f 461//333 445//333 446//333
+f 461//334 463//334 444//334
+f 443//335 444//335 463//335
+f 463//336 442//336 443//336
+f 464//337 440//337 442//337
+f 465//338 438//338 439//338
+f 467//339 468//339 437//339
+f 437//340 468//340 435//340
+f 469//341 435//341 468//341
+f 467//342 466//342 471//342
+f 465//343 471//343 466//343
+f 473//344 439//344 464//344
+f 474//345 473//345 464//345
+f 464//346 475//346 474//346
+f 476//347 475//347 463//347
+f 476//348 463//348 462//348
+f 461//349 478//349 462//349
+f 459//350 479//350 460//350
+f 456//351 481//351 457//351
+f 449//352 482//352 455//352
+f 454//353 486//353 482//353
+f 453//354 483//354 454//354
+f 487//355 482//355 486//355
+f 488//356 455//356 487//356
+f 489//357 457//357 481//357
+f 480//358 490//358 491//358
+f 491//359 479//359 480//359
+f 479//360 492//360 493//360
+f 493//361 478//361 479//361
+f 477//362 462//362 478//362
+f 495//363 496//363 477//363
+f 496//364 498//364 474//364
+f 499//365 474//365 498//365
+f 500//366 499//366 498//366
+f 148//367 473//367 499//367
+f 472//368 471//368 473//368
+f 472//369 147//369 470//369
+f 471//370 472//370 470//370
+f 501//371 498//371 497//371
+f 497//372 502//372 501//372
+f 497//373 503//373 502//373
+f 495//374 504//374 503//374
+f 493//375 505//375 494//375
+f 492//376 506//376 505//376
+f 491//377 507//377 492//377
+f 490//378 480//378 489//378
+f 489//379 508//379 490//379
+f 510//380 511//380 509//380
+f 515//381 483//381 485//381
+f 514//382 483//382 515//382
+f 513//383 518//383 512//383
+f 512//384 510//384 513//384
+f 511//385 510//385 512//385
+f 520//386 509//386 511//386
+f 520//387 521//387 522//387
+f 522//388 508//388 520//388
+f 522//389 523//389 524//389
+f 524//390 507//390 522//390
+f 522//391 490//391 508//391
+f 526//392 505//392 506//392
+f 527//393 494//393 505//393
+f 504//394 528//394 529//394
+f 530//395 502//395 503//395
+f 151//396 503//396 529//396
+f 528//397 531//397 151//397
+f 528//398 527//398 526//398
+f 526//399 532//399 528//399
+f 523//400 535//400 534//400
+f 522//401 536//401 523//401
+f 520//402 537//402 521//402
+f 538//403 511//403 519//403
+f 539//404 512//404 518//404
+f 518//405 540//405 539//405
+f 518//406 513//406 517//406
+f 515//407 33//407 517//407
+f 33//408 516//408 541//408
+f 542//409 543//409 33//409
+f 543//410 517//410 33//410
+f 544//411 518//411 543//411
+f 546//412 539//412 540//412
+f 538//413 546//413 547//413
+f 537//414 548//414 549//414
+f 549//415 521//415 537//415
+f 535//416 523//416 536//416
+f 535//417 551//417 552//417
+f 552//418 534//418 535//418
+f 553//419 532//419 533//419
+f 532//420 553//420 153//420
+f 153//421 528//421 532//421
+f 553//422 155//422 154//422
+f 553//423 157//423 155//423
+f 552//424 554//424 157//424
+f 551//425 555//425 554//425
+f 556//426 535//426 550//426
+f 550//427 557//427 556//427
+f 548//428 559//428 558//428
+f 547//429 561//429 548//429
+f 561//430 547//430 546//430
+f 546//431 562//431 561//431
+f 544//432 563//432 545//432
+f 544//433 543//433 542//433
+f 542//434 564//434 563//434
+f 541//435 566//435 683//435
+f 568//436 567//436 484//436
+f 681//437 568//437 569//437
+f 571//438 681//438 570//438
+f 572//439 573//439 571//439
+f 572//440 114//440 574//440
+f 574//441 573//441 572//441
+f 574//442 575//442 573//442
+f 575//443 576//443 577//443
+f 577//444 711//444 575//444
+f 577//445 578//445 711//445
+f 579//446 580//446 581//446
+f 581//447 582//447 579//447
+f 583//448 585//448 586//448
+f 586//449 584//449 583//449
+f 586//450 587//450 584//450
+f 588//451 589//451 587//451
+f 586//452 591//452 590//452
+f 593//453 591//453 592//453
+f 593//454 595//454 594//454
+f 604//455 596//455 597//455
+f 597//456 99//456 604//456
+f 598//457 406//457 99//457
+f 598//458 408//458 406//458
+f 408//459 598//459 38//459
+f 38//460 598//460 39//460
+f 598//461 599//461 39//461
+f 597//462 600//462 599//462
+f 600//463 585//463 601//463
+f 601//464 599//464 600//464
+f 580//465 109//465 409//465
+f 410//466 579//466 577//466
+f 576//467 411//467 577//467
+f 577//468 411//468 410//468
+f 576//469 412//469 411//469
+f 114//470 113//470 574//470
+f 576//471 575//471 574//471
+f 581//472 601//472 602//472
+f 602//473 583//473 581//473
+f 97//474 605//474 604//474
+f 605//475 606//475 595//475
+f 595//476 604//476 605//476
+f 649//477 607//477 606//477
+f 594//478 606//478 607//478
+f 607//479 608//479 594//479
+f 610//480 611//480 588//480
+f 589//481 588//481 611//481
+f 611//482 612//482 589//482
+f 614//483 677//483 612//483
+f 612//484 613//484 614//484
+f 613//485 616//485 617//485
+f 617//486 619//486 620//486
+f 620//487 618//487 617//487
+f 621//488 623//488 624//488
+f 624//489 622//489 621//489
+f 625//490 624//490 626//490
+f 629//491 630//491 627//491
+f 631//492 633//492 630//492
+f 631//493 634//493 633//493
+f 380//494 633//494 634//494
+f 69//495 634//495 635//495
+f 382//496 381//496 635//496
+f 386//497 75//497 74//497
+f 386//498 662//498 637//498
+f 637//499 385//499 386//499
+f 639//500 388//500 638//500
+f 389//501 639//501 640//501
+f 640//502 641//502 389//502
+f 390//503 389//503 641//503
+f 641//504 642//504 390//504
+f 642//505 392//505 391//505
+f 393//506 643//506 394//506
+f 395//507 394//507 643//507
+f 396//508 395//508 643//508
+f 397//509 396//509 644//509
+f 645//510 401//510 400//510
+f 646//511 402//511 401//511
+f 649//512 405//512 403//512
+f 404//513 648//513 650//513
+f 650//514 651//514 607//514
+f 648//515 652//515 651//515
+f 652//516 653//516 609//516
+f 609//517 651//517 652//517
+f 653//518 654//518 610//518
+f 610//519 609//519 653//519
+f 611//520 610//520 654//520
+f 655//521 657//521 612//521
+f 613//522 612//522 657//522
+f 657//523 616//523 613//523
+f 619//524 617//524 616//524
+f 658//525 620//525 619//525
+f 623//526 659//526 660//526
+f 660//527 624//527 623//527
+f 660//528 626//528 624//528
+f 661//529 626//529 660//529
+f 661//530 662//530 629//530
+f 629//531 663//531 632//531
+f 632//532 631//532 629//532
+f 636//533 382//533 632//533
+f 632//534 384//534 636//534
+f 663//535 386//535 384//535
+f 659//536 638//536 637//536
+f 638//537 659//537 664//537
+f 664//538 639//538 638//538
+f 640//539 639//539 664//539
+f 664//540 641//540 640//540
+f 658//541 665//541 641//541
+f 666//542 655//542 667//542
+f 655//543 668//543 667//543
+f 670//544 643//544 669//544
+f 670//545 671//545 644//545
+f 653//546 671//546 670//546
+f 669//547 653//547 670//547
+f 668//548 654//548 643//548
+f 616//549 656//549 665//549
+f 659//550 623//550 664//550
+f 662//551 661//551 660//551
+f 663//552 629//552 662//552
+f 645//553 671//553 647//553
+f 375//554 630//554 633//554
+f 672//555 630//555 375//555
+f 673//556 625//556 628//556
+f 674//557 622//557 625//557
+f 622//558 674//558 675//558
+f 675//559 621//559 622//559
+f 615//560 617//560 618//560
+f 615//561 715//561 614//561
+f 582//562 584//562 587//562
+f 582//563 583//563 584//563
+f 582//564 2//564 578//564
+f 679//565 575//565 711//565
+f 575//566 710//566 573//566
+f 683//567 566//567 567//567
+f 683//568 684//568 541//568
+f 687//569 564//569 686//569
+f 564//570 687//570 688//570
+f 689//571 563//571 564//571
+f 690//572 545//572 563//572
+f 562//573 691//573 692//573
+f 692//574 561//574 562//574
+f 559//575 548//575 560//575
+f 695//576 556//576 557//576
+f 160//577 554//577 555//577
+f 554//578 160//578 158//578
+f 158//579 157//579 554//579
+f 555//580 162//580 160//580
+f 695//581 164//581 162//581
+f 694//582 697//582 696//582
+f 693//583 698//583 697//583
+f 692//584 698//584 693//584
+f 699//585 692//585 691//585
+f 700//586 699//586 691//586
+f 704//587 705//587 703//587
+f 704//588 688//588 687//588
+f 687//589 705//589 704//589
+f 686//590 707//590 706//590
+f 686//591 565//591 685//591
+f 685//592 707//592 686//592
+f 685//593 541//593 684//593
+f 683//594 709//594 684//594
+f 734//595 682//595 568//595
+f 573//596 710//596 680//596
+f 710//597 575//597 679//597
+f 712//598 582//598 587//598
+f 712//599 713//599 2//599
+f 716//600 615//600 676//600
+f 676//601 717//601 716//601
+f 675//602 719//602 718//602
+f 719//603 675//603 674//603
+f 674//604 720//604 719//604
+f 674//605 721//605 720//605
+f 673//606 722//606 721//606
+f 723//607 628//607 672//607
+f 672//608 724//608 723//608
+f 725//609 726//609 724//609
+f 726//610 723//610 724//610
+f 373//611 725//611 724//611
+f 726//612 727//612 722//612
+f 716//613 717//613 728//613
+f 728//614 715//614 716//614
+f 714//615 729//615 713//615
+f 713//616 730//616 731//616
+f 731//617 2//617 713//617
+f 679//618 768//618 766//618
+f 766//619 710//619 679//619
+f 733//620 680//620 710//620
+f 733//621 734//621 680//621
+f 734//622 735//622 682//622
+f 737//623 709//623 735//623
+f 684//624 738//624 708//624
+f 708//625 685//625 684//625
+f 707//626 740//626 741//626
+f 741//627 706//627 707//627
+f 705//628 742//628 743//628
+f 743//629 703//629 705//629
+f 745//630 702//630 703//630
+f 702//631 746//631 747//631
+f 747//632 700//632 702//632
+f 748//633 749//633 700//633
+f 749//634 698//634 699//634
+f 750//635 697//635 698//635
+f 750//636 751//636 168//636
+f 749//637 751//637 750//637
+f 748//638 752//638 751//638
+f 747//639 753//639 752//639
+f 746//640 754//640 753//640
+f 745//641 755//641 746//641
+f 744//642 743//642 742//642
+f 742//643 756//643 744//643
+f 741//644 758//644 742//644
+f 758//645 741//645 740//645
+f 740//646 759//646 758//646
+f 738//647 760//647 739//647
+f 737//648 762//648 738//648
+f 764//649 735//649 736//649
+f 765//650 736//650 735//650
+f 679//651 769//651 768//651
+f 769//652 679//652 732//652
+f 731//653 770//653 732//653
+f 730//654 818//654 731//654
+f 713//655 816//655 730//655
+f 729//656 714//656 728//656
+f 728//657 771//657 729//657
+f 771//658 728//658 717//658
+f 717//659 772//659 771//659
+f 776//660 777//660 809//660
+f 778//661 809//661 777//661
+f 777//662 779//662 778//662
+f 725//663 371//663 780//663
+f 725//664 372//664 371//664
+f 780//665 369//665 781//665
+f 780//666 371//666 369//666
+f 781//667 369//667 782//667
+f 783//668 782//668 369//668
+f 786//669 784//669 783//669
+f 783//670 366//670 786//670
+f 367//671 786//671 366//671
+f 367//672 785//672 786//672
+f 365//673 788//673 787//673
+f 364//674 789//674 365//674
+f 790//675 791//675 789//675
+f 793//676 796//676 790//676
+f 795//677 797//677 796//677
+f 796//678 798//678 799//678
+f 799//679 791//679 796//679
+f 791//680 799//680 800//680
+f 800//681 788//681 791//681
+f 788//682 800//682 801//682
+f 801//683 787//683 788//683
+f 802//684 803//684 785//684
+f 804//685 785//685 803//685
+f 804//686 805//686 784//686
+f 784//687 786//687 804//687
+f 806//688 784//688 805//688
+f 807//689 782//689 806//689
+f 778//690 781//690 807//690
+f 809//691 811//691 776//691
+f 775//692 776//692 811//692
+f 811//693 812//693 774//693
+f 774//694 775//694 811//694
+f 812//695 773//695 774//695
+f 814//696 772//696 773//696
+f 772//697 814//697 815//697
+f 815//698 771//698 772//698
+f 816//699 729//699 771//699
+f 819//700 770//700 818//700
+f 820//701 770//701 819//701
+f 821//702 732//702 770//702
+f 767//703 766//703 768//703
+f 822//704 733//704 766//704
+f 765//705 734//705 733//705
+f 764//706 736//706 765//706
+f 825//707 763//707 824//707
+f 761//708 826//708 827//708
+f 760//709 828//709 829//709
+f 760//710 738//710 761//710
+f 829//711 838//711 830//711
+f 830//712 759//712 829//712
+f 829//713 739//713 760//713
+f 759//714 830//714 831//714
+f 831//715 758//715 759//715
+f 833//716 756//716 757//716
+f 834//717 744//717 756//717
+f 754//718 746//718 755//718
+f 174//719 753//719 754//719
+f 172//720 752//720 753//720
+f 170//721 751//721 752//721
+f 754//722 175//722 174//722
+f 836//723 177//723 175//723
+f 835//724 834//724 833//724
+f 833//725 757//725 832//725
+f 832//726 831//726 830//726
+f 830//727 838//727 832//727
+f 828//728 840//728 839//728
+f 826//729 929//729 840//729
+f 825//730 842//730 826//730
+f 842//731 825//731 824//731
+f 824//732 843//732 842//732
+f 823//733 843//733 824//733
+f 823//734 765//734 822//734
+f 822//735 844//735 823//735
+f 767//736 845//736 822//736
+f 767//737 846//737 845//737
+f 768//738 921//738 846//738
+f 820//739 848//739 847//739
+f 851//740 816//740 815//740
+f 852//741 815//741 814//741
+f 812//742 853//742 814//742
+f 811//743 855//743 813//743
+f 811//744 810//744 855//744
+f 810//745 808//745 857//745
+f 808//746 807//746 858//746
+f 859//747 860//747 858//747
+f 861//748 859//748 858//748
+f 858//749 806//749 861//749
+f 861//750 862//750 859//750
+f 861//751 805//751 863//751
+f 805//752 804//752 863//752
+f 863//753 864//753 256//753
+f 865//754 256//754 864//754
+f 864//755 801//755 865//755
+f 866//756 801//756 800//756
+f 260//757 866//757 800//757
+f 260//758 800//758 799//758
+f 799//759 261//759 260//759
+f 263//760 798//760 797//760
+f 797//761 867//761 263//761
+f 867//762 876//762 868//762
+f 868//763 264//763 867//763
+f 868//764 874//764 264//764
+f 3//765 305//765 307//765
+f 870//766 871//766 335//766
+f 872//767 298//767 299//767
+f 336//768 872//768 339//768
+f 339//769 294//769 336//769
+f 338//770 337//770 294//770
+f 299//771 871//771 341//771
+f 870//772 304//772 891//772
+f 305//773 892//773 873//773
+f 1//774 305//774 873//774
+f 893//775 305//776 3//777
+f 307//778 869//778 894//778
+f 894//779 3//779 307//779
+f 869//780 874//780 4//780
+f 875//781 874//781 868//781
+f 879//782 877//782 878//782
+f 867//783 878//783 876//783
+f 878//784 867//784 795//784
+f 795//785 879//785 878//785
+f 879//786 793//786 880//786
+f 880//787 794//787 882//787
+f 883//788 884//788 880//788
+f 882//789 885//789 883//789
+f 363//790 358//790 882//790
+f 363//791 792//791 362//791
+f 882//792 358//792 885//792
+f 885//793 886//793 883//793
+f 886//794 884//794 883//794
+f 887//795 881//795 898//795
+f 887//796 888//796 876//796
+f 876//797 877//797 887//797
+f 888//798 889//798 868//798
+f 868//799 876//799 888//799
+f 875//800 868//800 889//800
+f 892//801 891//801 873//801
+f 873//802 891//802 304//802
+f 891//803 344//803 343//803
+f 892//804 893//804 346//804
+f 3//805 894//805 893//805
+f 889//806 888//806 903//806
+f 897//807 903//807 888//807
+f 888//808 887//808 897//808
+f 899//809 886//809 355//809
+f 900//810 355//810 886//810
+f 900//811 902//811 901//811
+f 902//812 358//812 54//812
+f 901//813 356//813 900//813
+f 903//814 349//814 889//814
+f 349//815 904//815 896//815
+f 896//816 889//816 349//816
+f 904//817 895//817 896//817
+f 895//818 348//818 890//818
+f 352//819 897//819 351//819
+f 353//820 351//820 897//820
+f 897//821 898//821 353//821
+f 353//822 899//822 354//822
+f 355//823 354//823 899//823
+f 342//824 341//824 871//824
+f 797//825 795//825 867//825
+f 253//826 862//826 861//826
+f 906//827 862//827 905//827
+f 907//828 860//828 906//828
+f 908//829 860//829 907//829
+f 907//830 909//830 908//830
+f 854//831 855//831 856//831
+f 912//832 813//832 854//832
+f 853//833 913//833 852//833
+f 914//834 851//834 852//834
+f 850//835 817//835 851//835
+f 916//836 819//836 850//836
+f 849//837 917//837 918//837
+f 919//838 848//838 918//838
+f 845//839 923//839 924//839
+f 844//840 925//840 926//840
+f 926//841 823//841 844//841
+f 926//842 927//842 843//842
+f 928//843 929//843 841//843
+f 929//844 930//844 840//844
+f 840//845 931//845 839//845
+f 931//846 932//846 838//846
+f 838//847 839//847 931//847
+f 932//848 832//848 838//848
+f 934//849 835//849 837//849
+f 935//850 837//850 933//850
+f 933//851 932//851 931//851
+f 931//852 936//852 933//852
+f 931//853 937//853 936//853
+f 938//854 928//854 939//854
+f 940//855 939//855 928//855
+f 940//856 942//856 941//856
+f 926//857 943//857 927//857
+f 945//858 946//858 925//858
+f 945//859 924//859 923//859
+f 948//860 921//860 947//860
+f 949//861 919//861 918//861
+f 918//862 27//862 949//862
+f 917//863 28//863 918//863
+f 916//864 951//864 917//864
+f 915//865 952//865 916//865
+f 914//866 952//866 915//866
+f 953//867 852//867 913//867
+f 913//868 853//868 912//868
+f 912//869 954//869 913//869
+f 909//870 240//870 955//870
+f 956//871 957//871 909//871
+f 909//872 907//872 956//872
+f 243//873 909//873 957//873
+f 956//874 906//874 248//874
+f 955//875 240//875 238//875
+f 238//876 911//876 955//876
+f 954//877 236//877 235//877
+f 235//878 913//878 954//878
+f 953//879 232//879 952//879
+f 952//880 231//880 951//880
+f 951//881 916//881 952//881
+f 230//882 229//882 28//882
+f 960//883 923//883 922//883
+f 945//884 923//884 960//884
+f 944//885 925//885 946//885
+f 963//886 943//886 962//886
+f 962//887 925//887 944//887
+f 964//888 966//888 965//888
+f 965//889 967//889 941//889
+f 967//890 969//890 968//890
+f 971//891 968//891 969//891
+f 971//892 972//892 973//892
+f 973//893 937//893 971//893
+f 937//894 973//894 974//894
+f 974//895 936//895 937//895
+f 181//896 935//896 974//896
+f 974//897 933//897 936//897
+f 181//898 178//898 935//898
+f 975//899 182//899 181//899
+f 972//900 976//900 975//900
+f 1019//901 976//901 970//901
+f 977//902 1019//902 970//902
+f 970//903 978//903 977//903
+f 969//904 967//904 978//904
+f 979//905 977//905 978//905
+f 980//906 979//906 978//906
+f 978//907 966//907 980//907
+f 981//908 962//908 944//908
+f 946//909 982//909 944//909
+f 983//910 985//910 982//910
+f 961//911 984//911 983//911
+f 960//912 984//912 961//912
+f 985//913 983//913 984//913
+f 958//914 988//914 959//914
+f 958//915 223//915 989//915
+f 220//916 988//916 989//916
+f 989//917 988//917 958//917
+f 989//918 223//918 220//918
+f 991//919 987//919 959//919
+f 987//920 991//920 986//920
+f 986//921 992//921 993//921
+f 993//922 948//922 986//922
+f 985//923 984//923 993//923
+f 997//924 998//924 996//924
+f 996//925 982//925 985//925
+f 999//926 963//926 981//926
+f 1000//927 19//927 999//927
+f 999//928 19//928 18//928
+f 1001//929 998//929 997//929
+f 997//930 1002//930 1001//930
+f 1003//931 1004//931 1002//931
+f 1004//932 1001//932 1002//932
+f 1003//933 997//933 996//933
+f 1005//934 1006//934 1003//934
+f 1009//935 988//935 990//935
+f 990//936 1010//936 1009//936
+f 218//937 1011//937 1010//937
+f 1011//938 217//938 215//938
+f 1011//939 213//939 1010//939
+f 210//940 1008//940 1009//940
+f 992//941 1008//941 210//941
+f 206//942 994//942 208//942
+f 206//943 22//943 1005//943
+f 205//944 1012//944 1006//944
+f 1007//945 1006//945 1013//945
+f 1007//946 200//946 1004//946
+f 1004//947 198//947 1001//947
+f 1001//948 196//948 1000//948
+f 196//949 195//949 1014//949
+f 1014//950 1000//950 196//950
+f 1012//951 201//951 1007//951
+f 1015//952 203//952 1012//952
+f 1012//953 205//953 1015//953
+f 18//954 980//954 966//954
+f 17//955 1016//955 979//955
+f 1016//956 1017//956 1018//956
+f 1018//957 979//957 1016//957
+f 1018//958 1017//958 1019//958
+f 1018//959 1019//959 977//959
+f 976//960 1019//960 1020//960
+f 1020//961 186//961 183//961
+f 1019//962 1021//962 1020//962
+f 1021//963 1019//963 1017//963
+f 1022//964 188//964 1023//964
+f 1023//965 1017//965 1022//965
+f 57//966 10//966 188//966
+f 1017//967 58//967 1022//967
+f 183//968 975//968 976//968
+f 367//969 366//969 365//969
+f 569//970 570//970 681//970
+f 567//971 566//971 485//971
+f 415//972 414//972 451//972
+f 451//973 416//973 415//973
+f 451//974 450//974 416//974
+f 145//975 1147//975 144//975
+f 414//976 34//976 570//976
+f 53//977 52//977 377//977
+f 51//978 54//978 359//978
+f 224//979 223//979 29//979
+f 1024//980 209//980 211//980
+f 211//981 214//981 1024//981
+f 1025//982 24//982 209//982
+f 24//983 207//983 209//983
+f 193//984 1014//984 195//984
+f 191//985 20//985 193//985
+f 46//986 37//986 45//986
+f 15//987 16//987 13//987
+f 1026//988 11//988 12//988
+f 1028//989 1029//989 1030//989
+f 1031//990 1032//990 1028//990
+f 1033//991 1031//991 1028//991
+f 1034//992 1033//992 1028//992
+f 1030//993 1034//993 1028//993
+f 1035//994 1036//994 1037//994
+f 1042//995 1898//995 1040//995
+f 1041//996 1043//996 1040//996
+f 1046//997 1519//997 1047//997
+f 1518//998 1519//998 1046//998
+f 1054//999 1055//999 1056//999
+f 1054//1000 1056//1000 1057//1000
+f 1054//1001 1058//1001 1059//1001
+f 1062//1002 1625//1002 1558//1002
+f 1067//1003 1069//1003 1066//1003
+f 1069//1004 1068//1004 1066//1004
+f 1071//1005 56//1005 1070//1005
+f 56//1006 1072//1006 1070//1006
+f 1073//1007 1074//1007 1032//1007
+f 62//1008 1075//1008 63//1008
+f 66//1009 1077//1009 65//1009
+f 1300//1010 67//1010 68//1010
+f 1078//1011 1322//1011 68//1011
+f 68//1012 1079//1012 1078//1012
+f 1080//1013 70//1013 71//1013
+f 72//1014 1080//1014 71//1014
+f 73//1015 1081//1015 72//1015
+f 75//1016 1082//1016 74//1016
+f 76//1017 1083//1017 75//1017
+f 65//1018 1083//1018 76//1018
+f 1085//1019 1086//1019 1077//1019
+f 1085//1020 1145//1020 1087//1020
+f 1088//1021 1089//1021 1331//1021
+f 1089//1022 1090//1022 1332//1022
+f 1139//1023 1092//1023 1091//1023
+f 1093//1024 1091//1024 1092//1024
+f 1092//1025 1137//1025 1093//1025
+f 1337//1026 1095//1026 1338//1026
+f 1096//1027 1097//1027 1340//1027
+f 1098//1028 1340//1028 1097//1028
+f 1097//1029 1131//1029 1098//1029
+f 1099//1030 1056//1030 1055//1030
+f 1055//1031 1060//1031 1099//1031
+f 1055//1032 1059//1032 1100//1032
+f 1100//1033 1102//1033 1101//1033
+f 1103//1034 1101//1034 1102//1034
+f 1102//1035 1104//1035 1103//1035
+f 1102//1036 1050//1036 1104//1036
+f 1058//1037 1050//1037 1102//1037
+f 1051//1038 1105//1038 1050//1038
+f 1051//1039 1106//1039 1105//1039
+f 1107//1040 1105//1040 1106//1040
+f 1106//1041 1108//1041 1107//1041
+f 1349//1042 1107//1042 1108//1042
+f 1110//1043 1349//1043 1109//1043
+f 1109//1044 1111//1044 1110//1044
+f 1111//1045 1049//1045 1110//1045
+f 1112//1046 1053//1046 1049//1046
+f 1049//1047 1048//1047 1112//1047
+f 1113//1048 1114//1048 1112//1048
+f 1048//1049 1115//1049 1113//1049
+f 1048//1050 1116//1050 1115//1050
+f 1049//1051 1117//1051 1116//1051
+f 1048//1052 1049//1052 1116//1052
+f 1118//1053 1119//1053 1117//1053
+f 1121//1054 1123//1054 1122//1054
+f 1124//1055 1122//1055 1123//1055
+f 1123//1056 1125//1056 1124//1056
+f 1126//1057 1124//1057 1125//1057
+f 1125//1058 1051//1058 1126//1058
+f 1106//1059 1051//1059 1125//1059
+f 1127//1060 1128//1060 1126//1060
+f 1126//1061 1057//1061 1127//1061
+f 1127//1062 1131//1062 1130//1062
+f 1131//1063 1097//1063 1132//1063
+f 1097//1064 1096//1064 1133//1064
+f 1133//1065 1134//1065 1364//1065
+f 1337//1066 1094//1066 1135//1066
+f 1135//1067 1137//1067 1136//1067
+f 1094//1068 1137//1068 1135//1068
+f 1138//1069 1136//1069 1137//1069
+f 1137//1070 1092//1070 1138//1070
+f 1140//1071 1142//1071 1141//1071
+f 1142//1072 1143//1072 1374//1072
+f 1145//1073 1085//1073 1146//1073
+f 1085//1074 1084//1074 1146//1074
+f 1077//1075 66//1075 1084//1075
+f 1146//1076 66//1076 143//1076
+f 1410//1077 145//1077 469//1077
+f 1409//1078 469//1078 468//1078
+f 1148//1079 1409//1079 146//1079
+f 470//1080 1148//1080 146//1080
+f 1442//1081 148//1081 149//1081
+f 1475//1082 149//1082 530//1082
+f 150//1083 1474//1083 530//1083
+f 153//1084 1476//1084 531//1084
+f 154//1085 1498//1085 153//1085
+f 169//1086 1150//1086 168//1086
+f 182//1087 1151//1087 180//1087
+f 184//1088 1152//1088 182//1088
+f 187//1089 1153//1089 185//1089
+f 187//1090 1154//1090 1155//1090
+f 190//1091 1154//1091 189//1091
+f 11//1092 1156//1092 190//1092
+f 1026//1093 192//1093 1158//1093
+f 1158//1094 1029//1094 1157//1094
+f 192//1095 1159//1095 1158//1095
+f 194//1096 1160//1096 1159//1096
+f 195//1097 1161//1097 1160//1097
+f 197//1098 1162//1098 1161//1098
+f 199//1099 1163//1099 1162//1099
+f 200//1100 1164//1100 1163//1100
+f 201//1101 1165//1101 1164//1101
+f 203//1102 1166//1102 1165//1102
+f 60//1103 59//1103 1166//1103
+f 59//1104 1035//1104 1039//1104
+f 1037//1105 1962//1105 1039//1105
+f 1168//1106 1169//1106 1167//1106
+f 1170//1107 1172//1107 1169//1107
+f 1173//1108 1174//1108 1175//1108
+f 64//1109 1177//1109 217//1109
+f 63//1110 1178//1110 1177//1110
+f 1180//1111 1181//1111 1075//1111
+f 1181//1112 1180//1112 1182//1112
+f 1182//1113 1184//1113 1181//1113
+f 1184//1114 1182//1114 1185//1114
+f 1185//1115 1043//1115 1184//1115
+f 1186//1116 1040//1116 1043//1116
+f 1188//1117 1190//1117 1189//1117
+f 1193//1118 1194//1118 1191//1118
+f 1195//1119 1193//1119 1196//1119
+f 1195//1120 1196//1120 1197//1120
+f 1197//1121 1198//1121 1195//1121
+f 1197//1122 1199//1122 1198//1122
+f 1200//1123 1202//1123 1199//1123
+f 1200//1124 1204//1124 1202//1124
+f 1207//1125 1209//1125 1208//1125
+f 1208//1126 1210//1126 1852//1126
+f 1210//1127 1213//1127 1212//1127
+f 1211//1128 1214//1128 1213//1128
+f 1215//1129 1212//1129 1213//1129
+f 1213//1130 1214//1130 1215//1130
+f 1216//1131 1229//1131 1218//1131
+f 1229//1132 1227//1132 1218//1132
+f 1220//1133 1218//1133 1227//1133
+f 1220//1134 1221//1134 1745//1134
+f 1222//1135 1745//1135 1221//1135
+f 1223//1136 1224//1136 1063//1136
+f 1063//1137 1225//1137 1223//1137
+f 1222//1138 1226//1138 1063//1138
+f 1221//1139 1227//1139 1266//1139
+f 1227//1140 1229//1140 1228//1140
+f 1230//1141 1228//1141 1229//1141
+f 1229//1142 1231//1142 1230//1142
+f 1216//1143 1232//1143 1231//1143
+f 1233//1144 1231//1144 1232//1144
+f 1232//1145 1234//1145 1233//1145
+f 1234//1146 1235//1146 1233//1146
+f 1211//1147 1209//1147 1234//1147
+f 1236//1148 1233//1148 1235//1148
+f 1235//1149 1206//1149 1236//1149
+f 1205//1150 1237//1150 1236//1150
+f 1206//1151 1205//1151 1236//1151
+f 1205//1152 1203//1152 1237//1152
+f 1203//1153 1238//1153 1237//1153
+f 1203//1154 1200//1154 1201//1154
+f 1239//1155 1197//1155 1196//1155
+f 1193//1156 1242//1156 1196//1156
+f 1188//1157 1187//1157 1243//1157
+f 1244//1158 1243//1158 1186//1158
+f 1186//1159 1185//1159 1244//1159
+f 1182//1160 1246//1160 1245//1160
+f 1185//1161 1182//1161 1245//1161
+f 1246//1162 1182//1162 1180//1162
+f 1075//1163 62//1163 1180//1163
+f 1247//1164 286//1164 287//1164
+f 288//1165 1248//1165 1247//1165
+f 288//1166 1249//1166 1248//1166
+f 289//1167 1044//1167 1249//1167
+f 31//1168 1044//1168 289//1168
+f 1249//1169 1044//1169 1250//1169
+f 1251//1170 1250//1170 1044//1170
+f 1044//1171 1252//1171 1251//1171
+f 1255//1172 1257//1172 1253//1172
+f 1258//1173 1259//1173 1260//1173
+f 1258//1174 1261//1174 1256//1174
+f 1294//1175 1262//1175 1291//1175
+f 1263//1176 1264//1177 7//1178
+f 8//1179 7//1179 1264//1179
+f 1265//1180 1226//1180 1266//1180
+f 1266//1181 1228//1181 8//1181
+f 1268//1182 8//1182 1228//1182
+f 1270//1183 1233//1183 1271//1183
+f 1273//1184 1274//1184 1272//1184
+f 1233//1185 1273//1185 1272//1185
+f 1237//1186 1275//1186 1273//1186
+f 1273//1187 1236//1187 1237//1187
+f 1238//1188 1277//1188 1275//1188
+f 1278//1189 1277//1189 1238//1189
+f 1240//1190 1279//1190 1278//1190
+f 1278//1191 1201//1191 1240//1191
+f 1240//1192 1280//1192 1279//1192
+f 1240//1193 1196//1193 1241//1193
+f 1242//1194 1281//1194 1241//1194
+f 1242//1195 1243//1195 1282//1195
+f 1282//1196 1244//1196 1283//1196
+f 1284//1197 1283//1197 1244//1197
+f 1244//1198 1245//1198 1284//1198
+f 1285//1199 1284//1199 1245//1199
+f 1247//1200 1248//1200 1285//1200
+f 1248//1201 1250//1201 1284//1201
+f 1283//1202 1280//1202 1281//1202
+f 1286//1203 1279//1203 1280//1203
+f 1287//1204 1257//1204 1278//1204
+f 1277//1205 1257//1205 1276//1205
+f 1276//1206 1255//1206 1288//1206
+f 1276//1207 1275//1207 1277//1207
+f 1288//1208 1261//1208 1289//1208
+f 1288//1209 1275//1209 1276//1209
+f 1289//1210 1274//1210 1288//1210
+f 1290//1211 1271//1211 1289//1211
+f 1290//1212 1291//1212 1271//1212
+f 1292//1213 1271//1213 1291//1213
+f 1291//1214 1262//1214 1292//1214
+f 1262//1215 7//1215 1292//1215
+f 1290//1216 1294//1216 1291//1216
+f 1289//1217 1260//1217 1290//1217
+f 1255//1218 1256//1218 1261//1218
+f 1257//1219 1287//1219 1251//1219
+f 1287//1220 1286//1220 1251//1220
+f 1250//1221 1251//1221 1286//1221
+f 1286//1222 1283//1222 1250//1222
+f 1820//1223 1061//1223 8//1223
+f 8//1224 1264//1224 1820//1224
+f 1260//1225 1818//1225 1294//1225
+f 1818//1226 1260//1226 1259//1226
+f 1256//1227 1295//1227 1258//1227
+f 1252//1228 1044//1228 31//1228
+f 31//1229 32//1229 1296//1229
+f 338//1230 1296//1230 337//1230
+f 1295//1231 338//1231 339//1231
+f 340//1232 1295//1232 339//1232
+f 341//1233 1819//1233 340//1233
+f 349//1234 350//1234 1297//1234
+f 1848//1235 1321//1235 1068//1235
+f 1069//1236 1848//1236 1068//1236
+f 1065//1237 1064//1237 1305//1237
+f 1306//1238 1305//1238 1064//1238
+f 1064//1239 1309//1239 1308//1239
+f 1312//1240 1313//1240 1730//1240
+f 1304//1241 1314//1241 1312//1241
+f 1314//1242 1315//1242 1313//1242
+f 1067//1243 1318//1243 1317//1243
+f 1319//1244 1317//1244 1318//1244
+f 1318//1245 1320//1245 1319//1245
+f 1318//1246 1066//1246 1320//1246
+f 1321//1247 1301//1247 1322//1247
+f 1301//1248 68//1248 1322//1248
+f 1072//1249 379//1249 1300//1249
+f 67//1250 1300//1250 379//1250
+f 1078//1251 1323//1251 1322//1251
+f 1078//1252 1079//1252 1324//1252
+f 1080//1253 1325//1253 1079//1253
+f 1082//1254 1326//1254 73//1254
+f 1327//1255 1328//1255 1083//1255
+f 1086//1256 1329//1256 1076//1256
+f 1086//1257 1085//1257 1087//1257
+f 1087//1258 1330//1258 1086//1258
+f 1332//1259 1333//1259 1587//1259
+f 1333//1260 1091//1260 1334//1260
+f 1091//1261 1093//1261 1335//1261
+f 1338//1262 1342//1262 1339//1262
+f 1341//1263 1342//1263 1340//1263
+f 1060//1264 1100//1264 1341//1264
+f 1101//1265 1343//1265 1341//1265
+f 1101//1266 1345//1266 1344//1266
+f 1345//1267 1346//1267 1344//1267
+f 1104//1268 1347//1268 1103//1268
+f 1050//1269 1105//1269 1348//1269
+f 1350//1270 1105//1270 1349//1270
+f 1110//1271 1350//1271 1349//1271
+f 1114//1272 1352//1272 1546//1272
+f 1113//1273 1115//1273 1352//1273
+f 1116//1274 1354//1274 1353//1274
+f 1119//1275 1521//1275 1355//1275
+f 1119//1276 1118//1276 1120//1276
+f 1120//1277 1118//1277 1356//1277
+f 1356//1278 1046//1278 1120//1278
+f 1122//1279 1046//1279 1356//1279
+f 1356//1280 1121//1280 1122//1280
+f 1357//1281 1046//1281 1122//1281
+f 1122//1282 1124//1282 1357//1282
+f 1357//1283 1129//1283 1358//1283
+f 1124//1284 1128//1284 1357//1284
+f 1130//1285 1131//1285 1391//1285
+f 1097//1286 1360//1286 1132//1286
+f 1133//1287 1361//1287 1360//1287
+f 1362//1288 1364//1288 1363//1288
+f 1365//1289 1363//1289 1364//1289
+f 1364//1290 1366//1290 1365//1290
+f 1366//1291 1136//1291 1367//1291
+f 1368//1292 1367//1292 1136//1292
+f 1136//1293 1138//1293 1368//1293
+f 1369//1294 1368//1294 1138//1294
+f 1138//1295 1370//1295 1369//1295
+f 1370//1296 1371//1296 1369//1296
+f 1141//1297 1374//1297 1373//1297
+f 1375//1298 1373//1298 1374//1298
+f 1374//1299 1376//1299 1375//1299
+f 1147//1300 1376//1300 1145//1300
+f 1145//1301 1146//1301 1147//1301
+f 1147//1302 1377//1302 1376//1302
+f 1377//1303 1378//1303 1375//1303
+f 1373//1304 1375//1304 1379//1304
+f 1379//1305 1380//1305 1373//1305
+f 1371//1306 1372//1306 1380//1306
+f 1371//1307 1381//1307 1382//1307
+f 1382//1308 1369//1308 1371//1308
+f 1383//1309 1384//1309 1385//1309
+f 1385//1310 1402//1310 1368//1310
+f 1367//1311 1368//1311 1402//1311
+f 1402//1312 1386//1312 1367//1312
+f 1388//1313 1363//1313 1365//1313
+f 1362//1314 1363//1314 1389//1314
+f 1390//1315 1360//1315 1361//1315
+f 1392//1316 1393//1316 1517//1316
+f 1393//1317 1392//1317 1391//1317
+f 1391//1318 1396//1318 1393//1318
+f 1361//1319 1397//1319 1390//1319
+f 1389//1320 1398//1320 1397//1320
+f 1398//1321 1389//1321 1388//1321
+f 1388//1322 1399//1322 1398//1322
+f 1400//1323 1365//1323 1387//1323
+f 1387//1324 1401//1324 1400//1324
+f 1386//1325 1401//1325 1387//1325
+f 1401//1326 1402//1326 1403//1326
+f 1386//1327 1402//1327 1401//1327
+f 1403//1328 1402//1328 1404//1328
+f 1402//1329 1385//1329 1404//1329
+f 1384//1330 1404//1330 1385//1330
+f 1382//1331 1405//1331 1384//1331
+f 1380//1332 1406//1332 1381//1332
+f 1381//1333 1371//1333 1380//1333
+f 1407//1334 1378//1334 1408//1334
+f 1409//1335 1408//1335 1378//1335
+f 1378//1336 1377//1336 1409//1336
+f 1409//1337 1148//1337 1408//1337
+f 1411//1338 1408//1338 1148//1338
+f 1407//1339 1408//1339 1411//1339
+f 1412//1340 1406//1340 1411//1340
+f 1412//1341 1413//1341 1406//1341
+f 1413//1342 1381//1342 1406//1342
+f 1413//1343 1414//1343 1405//1343
+f 1416//1344 1417//1344 1403//1344
+f 1418//1345 1401//1345 1403//1345
+f 1401//1346 1418//1346 1419//1346
+f 1419//1347 1400//1347 1401//1347
+f 1398//1348 1421//1348 1397//1348
+f 1422//1349 1390//1349 1397//1349
+f 1426//1350 1359//1350 1422//1350
+f 1423//1351 1393//1351 1396//1351
+f 1395//1352 1425//1352 1424//1352
+f 1424//1353 1517//1353 1395//1353
+f 1425//1354 1395//1354 1423//1354
+f 1396//1355 1426//1355 1423//1355
+f 1397//1356 1428//1356 1427//1356
+f 1427//1357 1422//1357 1397//1357
+f 1421//1358 1429//1358 1428//1358
+f 1428//1359 1397//1359 1421//1359
+f 1421//1360 1398//1360 1399//1360
+f 1399//1361 1430//1361 1421//1361
+f 1419//1362 1431//1362 1420//1362
+f 1432//1363 1419//1363 1418//1363
+f 1418//1364 1433//1364 1432//1364
+f 1417//1365 1434//1365 1433//1365
+f 1436//1366 1435//1366 1417//1366
+f 1417//1367 1416//1367 1436//1367
+f 1436//1368 1437//1368 1435//1368
+f 1436//1369 1438//1369 1437//1369
+f 1414//1370 1439//1370 1438//1370
+f 1442//1371 1439//1371 1441//1371
+f 1412//1372 1441//1372 1439//1372
+f 1440//1373 147//1373 1412//1373
+f 1411//1374 1440//1374 1412//1374
+f 1443//1375 1438//1375 1442//1375
+f 1444//1376 1437//1376 1443//1376
+f 1434//1377 1417//1377 1435//1377
+f 1446//1378 1433//1378 1434//1378
+f 1446//1379 1432//1379 1433//1379
+f 1449//1380 1420//1380 1431//1380
+f 1430//1381 1450//1381 1451//1381
+f 1451//1382 1421//1382 1430//1382
+f 1453//1383 1428//1383 1429//1383
+f 1454//1384 1427//1384 1428//1384
+f 1456//1385 1460//1385 1457//1385
+f 1453//1386 1461//1386 1455//1386
+f 1452//1387 1462//1387 1461//1387
+f 1463//1388 1464//1388 1462//1388
+f 1450//1389 1465//1389 1463//1389
+f 1450//1390 1466//1390 1465//1390
+f 1447//1391 1468//1391 1467//1391
+f 1446//1392 1469//1392 1447//1392
+f 1470//1393 1434//1393 1445//1393
+f 1445//1394 1471//1394 1470//1394
+f 1443//1395 1475//1395 1444//1395
+f 1477//1396 1469//1396 1471//1396
+f 1469//1397 1477//1397 1478//1397
+f 1468//1398 1478//1398 1479//1398
+f 1468//1399 1447//1399 1469//1399
+f 1479//1400 1467//1400 1468//1400
+f 1481//1401 1465//1401 1466//1401
+f 1464//1402 1463//1402 1465//1402
+f 1482//1403 1462//1403 1464//1403
+f 1483//1404 1455//1404 1461//1404
+f 1488//1405 1487//1405 1045//1405
+f 1488//1406 1457//1406 1460//1406
+f 1460//1407 1489//1407 1488//1407
+f 1491//1408 1461//1408 1482//1408
+f 1482//1409 1492//1409 1491//1409
+f 1493//1410 1464//1410 1481//1410
+f 1481//1411 1494//1411 1493//1411
+f 1479//1412 1496//1412 1480//1412
+f 1496//1413 1479//1413 1478//1413
+f 1478//1414 1497//1414 1496//1414
+f 1477//1415 1497//1415 1478//1415
+f 1498//1416 1471//1416 1476//1416
+f 1498//1417 154//1417 1497//1417
+f 1497//1418 156//1418 1499//1418
+f 1499//1419 1496//1419 1497//1419
+f 1495//1420 1500//1420 1501//1420
+f 1501//1421 1480//1421 1495//1421
+f 1494//1422 1502//1422 1503//1422
+f 1503//1423 1493//1423 1494//1423
+f 1492//1424 1505//1424 1506//1424
+f 1506//1425 1491//1425 1492//1425
+f 1490//1426 1507//1426 1508//1426
+f 1508//1427 1484//1427 1490//1427
+f 1489//1428 1510//1428 1487//1428
+f 1489//1429 1509//1429 1510//1429
+f 1513//1430 1486//1430 1487//1430
+f 1514//1431 1485//1431 1486//1431
+f 1516//1432 1424//1432 1515//1432
+f 1516//1433 1630//1433 1517//1433
+f 1630//1434 1519//1434 1518//1434
+f 1520//1435 1047//1435 1519//1435
+f 1520//1436 1521//1436 1047//1436
+f 1522//1437 1521//1437 1520//1437
+f 1657//1438 1524//1438 1522//1438
+f 1525//1439 1526//1439 1524//1439
+f 1527//1440 1528//1440 1526//1440
+f 1529//1441 1530//1441 1531//1441
+f 1532//1442 1534//1442 1531//1442
+f 1536//1443 1537//1443 1534//1443
+f 1538//1444 1534//1444 1537//1444
+f 1538//1445 1540//1445 1539//1445
+f 1543//1446 1550//1446 1544//1446
+f 1544//1447 1348//1447 1545//1447
+f 1105//1448 1545//1448 1348//1448
+f 1350//1449 1545//1449 1105//1449
+f 1545//1450 1546//1450 1544//1450
+f 1547//1451 1544//1451 1546//1451
+f 1546//1452 1352//1452 1547//1452
+f 1353//1453 1528//1453 1352//1453
+f 1354//1454 1523//1454 1524//1454
+f 1119//1455 1120//1455 1521//1455
+f 1047//1456 1120//1456 1046//1456
+f 1529//1457 1352//1457 1528//1457
+f 1548//1458 1531//1458 1533//1458
+f 1534//1459 1549//1459 1533//1459
+f 1549//1460 1539//1460 1533//1460
+f 1539//1461 1547//1461 1533//1461
+f 1551//1462 1104//1462 1550//1462
+f 1551//1463 1552//1463 1595//1463
+f 1550//1464 1542//1464 1551//1464
+f 1553//1465 1595//1465 1552//1465
+f 1552//1466 1541//1466 1553//1466
+f 1554//1467 1553//1467 1541//1467
+f 1555//1468 1536//1468 1556//1468
+f 1557//1469 1556//1469 1536//1469
+f 1536//1470 1062//1470 1557//1470
+f 1062//1471 1558//1471 1557//1471
+f 1558//1472 1602//1472 1557//1472
+f 1625//1473 1559//1473 1558//1473
+f 1560//1474 1558//1474 1559//1474
+f 1561//1475 1563//1475 1560//1475
+f 1564//1476 1566//1476 1561//1476
+f 1566//1477 1564//1477 1567//1477
+f 1567//1478 1569//1478 1566//1478
+f 1568//1479 1570//1479 1567//1479
+f 1572//1480 1571//1480 1573//1480
+f 1573//1481 1574//1481 1575//1481
+f 1573//1482 1576//1482 1572//1482
+f 1575//1483 1576//1483 1573//1483
+f 1575//1484 1577//1484 1576//1484
+f 1324//1485 1577//1485 1578//1485
+f 1578//1486 1323//1486 1324//1486
+f 1079//1487 1325//1487 1580//1487
+f 1325//1488 1081//1488 1581//1488
+f 1327//1489 1582//1489 1328//1489
+f 1327//1490 1076//1490 1329//1490
+f 1329//1491 1582//1491 1327//1491
+f 1583//1492 1086//1492 1330//1492
+f 1584//1493 1331//1493 1585//1493
+f 1586//1494 1585//1494 1331//1494
+f 1331//1495 1332//1495 1586//1495
+f 1586//1496 1587//1496 1612//1496
+f 1587//1497 1334//1497 1614//1497
+f 1334//1498 1335//1498 1615//1498
+f 1336//1499 1337//1499 1589//1499
+f 1337//1500 1338//1500 1589//1500
+f 1589//1501 1338//1501 1590//1501
+f 1338//1502 1339//1502 1590//1502
+f 1339//1503 1342//1503 1591//1503
+f 1592//1504 1593//1504 1591//1504
+f 1592//1505 1344//1505 1346//1505
+f 1346//1506 1594//1506 1592//1506
+f 1346//1507 1345//1507 1595//1507
+f 1595//1508 1596//1508 1346//1508
+f 1594//1509 1346//1509 1596//1509
+f 1596//1510 1597//1510 1594//1510
+f 1598//1511 1594//1511 1597//1511
+f 1597//1512 1555//1512 1598//1512
+f 1555//1513 1556//1513 1599//1513
+f 1556//1514 1601//1514 1600//1514
+f 1604//1515 1602//1515 1603//1515
+f 1558//1516 1560//1516 1603//1516
+f 1603//1517 1563//1517 1613//1517
+f 1566//1518 1605//1518 1565//1518
+f 1569//1519 1611//1519 1605//1519
+f 1570//1520 1607//1520 1569//1520
+f 1572//1521 1608//1521 1607//1521
+f 1608//1522 1572//1522 1576//1522
+f 1577//1523 1579//1523 1576//1523
+f 1325//1524 1581//1524 1579//1524
+f 1326//1525 1579//1525 1581//1525
+f 1581//1526 1081//1526 1326//1526
+f 1610//1527 1328//1527 1609//1527
+f 1582//1528 1606//1528 1607//1528
+f 1583//1529 1606//1529 1582//1529
+f 1582//1530 1329//1530 1583//1530
+f 1584//1531 1611//1531 1583//1531
+f 1584//1532 1585//1532 1611//1532
+f 1611//1533 1586//1533 1605//1533
+f 1612//1534 1605//1534 1586//1534
+f 1615//1535 1588//1535 1616//1535
+f 1589//1536 1618//1536 1617//1536
+f 1593//1537 1592//1537 1594//1537
+f 1619//1538 1599//1538 1618//1538
+f 1599//1539 1617//1539 1618//1539
+f 1600//1540 1616//1540 1588//1540
+f 1616//1541 1602//1541 1615//1541
+f 1604//1542 1613//1542 1614//1542
+f 1619//1543 1591//1543 1593//1543
+f 1578//1544 1319//1544 1320//1544
+f 1575//1545 1319//1545 1578//1545
+f 1575//1546 1620//1546 1319//1546
+f 1571//1547 1621//1547 1574//1547
+f 1574//1548 1573//1548 1571//1548
+f 1571//1549 1622//1549 1621//1549
+f 1568//1550 1622//1550 1571//1550
+f 1623//1551 1567//1551 1564//1551
+f 1564//1552 1624//1552 1623//1552
+f 1625//1553 1660//1553 1559//1553
+f 1626//1554 1062//1554 1535//1554
+f 1532//1555 1530//1555 1535//1555
+f 1530//1556 1527//1556 1525//1556
+f 1522//1557 1628//1557 1657//1557
+f 1519//1558 1629//1558 1520//1558
+f 1485//1559 1631//1559 1515//1559
+f 1515//1560 1424//1560 1485//1560
+f 1485//1561 1632//1561 1631//1561
+f 1511//1562 1635//1562 1512//1562
+f 1509//1563 1636//1563 1511//1563
+f 1508//1564 1637//1564 1509//1564
+f 1505//1565 1639//1565 1638//1565
+f 1504//1566 1640//1566 1505//1566
+f 1502//1567 1641//1567 1504//1567
+f 1501//1568 1642//1568 1502//1568
+f 1642//1569 1501//1569 1500//1569
+f 1500//1570 161//1570 1642//1570
+f 159//1571 1499//1571 156//1571
+f 1149//1572 1642//1572 161//1572
+f 1641//1573 1643//1573 1644//1573
+f 1644//1574 1504//1574 1641//1574
+f 1639//1575 1505//1575 1640//1575
+f 1647//1576 1636//1576 1646//1576
+f 1647//1577 1648//1577 1649//1577
+f 1649//1578 1635//1578 1647//1578
+f 1651//1579 1512//1579 1635//1579
+f 1634//1580 1652//1580 1653//1580
+f 1653//1581 1513//1581 1634//1581
+f 1633//1582 1685//1582 1655//1582
+f 1655//1583 1514//1583 1633//1583
+f 1515//1584 1631//1584 1681//1584
+f 1656//1585 1520//1585 1629//1585
+f 1677//1586 1525//1587 1657//1588
+f 1658//1589 1535//1589 1627//1589
+f 1659//1590 1658//1590 1627//1590
+f 1658//1591 1659//1591 1674//1591
+f 1658//1592 1674//1592 1626//1592
+f 1674//1593 1660//1593 1625//1593
+f 1661//1594 1562//1594 1660//1594
+f 1624//1595 1662//1595 1663//1595
+f 1663//1596 1623//1596 1624//1596
+f 1664//1597 1623//1597 1663//1597
+f 1665//1598 1622//1598 1664//1598
+f 1668//1599 1574//1599 1621//1599
+f 1620//1600 1669//1600 1317//1600
+f 1670//1601 1671//1601 1669//1601
+f 1668//1602 1670//1602 1669//1602
+f 1671//1603 1317//1603 1669//1603
+f 1666//1604 1672//1604 1667//1604
+f 1665//1605 1672//1605 1666//1605
+f 1665//1606 1664//1606 1663//1606
+f 1662//1607 1719//1607 1663//1607
+f 1673//1608 1660//1608 1674//1608
+f 1657//1609 1678//1609 1677//1609
+f 1678//1610 1657//1610 1628//1610
+f 1680//1611 1679//1611 1629//1611
+f 1629//1612 1630//1612 1680//1612
+f 1631//1613 1683//1613 1681//1613
+f 1632//1614 1684//1614 1683//1614
+f 1653//1615 1687//1615 1654//1615
+f 1651//1616 1688//1616 1652//1616
+f 1648//1617 1689//1617 1650//1617
+f 1650//1618 1649//1618 1648//1618
+f 1690//1619 1691//1619 1648//1619
+f 1648//1620 1647//1620 1690//1620
+f 1692//1621 1693//1621 1646//1621
+f 1643//1622 167//1622 1694//1622
+f 1149//1623 165//1623 1643//1623
+f 1150//1624 1694//1624 167//1624
+f 1691//1625 1690//1625 1696//1625
+f 1696//1626 1697//1626 1691//1626
+f 1699//1627 1689//1627 1691//1627
+f 1689//1628 1699//1628 1700//1628
+f 1700//1629 1650//1629 1689//1629
+f 1688//1630 1701//1630 1702//1630
+f 1702//1631 1652//1631 1688//1631
+f 1687//1632 1703//1632 1704//1632
+f 1704//1633 1654//1633 1687//1633
+f 1706//1634 1685//1634 1686//1634
+f 1684//1635 1655//1635 1685//1635
+f 1684//1636 1708//1636 1709//1636
+f 1709//1637 1683//1637 1684//1637
+f 1711//1638 1681//1638 1683//1638
+f 1682//1639 1712//1639 1681//1639
+f 1680//1640 1681//1640 1712//1640
+f 1713//1641 1656//1641 1679//1641
+f 1716//1642 1628//1642 1715//1642
+f 1717//1643 1677//1643 1678//1643
+f 1763//1644 1659//1644 1676//1644
+f 1719//1645 1662//1645 1718//1645
+f 1756//1646 1725//1646 1724//1646
+f 1726//1647 1727//1647 1671//1647
+f 1315//1648 1671//1648 1727//1648
+f 1316//1649 1671//1649 1315//1649
+f 1315//1650 1314//1650 1316//1650
+f 1315//1651 1727//1651 1313//1651
+f 1729//1652 1730//1652 1313//1652
+f 1731//1653 1732//1653 1730//1653
+f 1732//1654 1311//1654 1310//1654
+f 1733//1655 1311//1655 1732//1655
+f 1311//1656 1733//1656 1734//1656
+f 1734//1657 1309//1657 1311//1657
+f 1309//1658 1735//1658 1736//1658
+f 1736//1659 1308//1659 1309//1659
+f 1737//1660 1739//1660 1308//1660
+f 1740//1661 1741//1661 1739//1661
+f 1740//1662 1743//1662 1742//1662
+f 1744//1663 1742//1663 1743//1663
+f 1743//1664 1745//1664 1744//1664
+f 1738//1665 1746//1665 1743//1665
+f 1735//1666 1747//1666 1738//1666
+f 1738//1667 1736//1667 1735//1667
+f 1734//1668 1748//1668 1735//1668
+f 1749//1669 1734//1669 1733//1669
+f 1750//1670 1749//1670 1733//1670
+f 1733//1671 1751//1671 1750//1671
+f 1732//1672 1731//1672 1751//1672
+f 1731//1673 1753//1673 1752//1673
+f 1729//1674 1754//1674 1753//1674
+f 1754//1675 1725//1675 1755//1675
+f 1728//1676 1725//1676 1754//1676
+f 1725//1677 1756//1677 1755//1677
+f 1756//1678 1758//1678 1757//1678
+f 1758//1679 1760//1679 1759//1679
+f 1718//1680 1762//1680 1719//1680
+f 1676//1681 1765//1681 1764//1681
+f 1717//1682 1766//1682 1765//1682
+f 1766//1683 1717//1683 1768//1683
+f 1770//1684 1711//1684 1771//1684
+f 1710//1685 1772//1685 1771//1685
+f 1771//1686 1711//1686 1710//1686
+f 1772//1687 1710//1687 1709//1687
+f 1708//1688 1773//1688 1772//1688
+f 1707//1689 1775//1689 1774//1689
+f 1705//1690 1777//1690 1776//1690
+f 1776//1691 1706//1691 1705//1691
+f 1703//1692 1779//1692 1778//1692
+f 1702//1693 1780//1693 1703//1693
+f 1700//1694 1782//1694 1701//1694
+f 1782//1695 1700//1695 1699//1695
+f 1699//1696 1783//1696 1782//1696
+f 1697//1697 173//1697 1698//1697
+f 1695//1698 171//1698 1697//1698
+f 1150//1699 169//1699 1695//1699
+f 1698//1700 174//1700 1783//1700
+f 1783//1701 175//1701 1784//1701
+f 1784//1702 1782//1702 1783//1702
+f 1785//1703 1780//1703 1781//1703
+f 1780//1704 1785//1704 1779//1704
+f 1786//1705 1777//1705 1779//1705
+f 1775//1706 1776//1706 1786//1706
+f 1773//1707 1774//1707 1775//1707
+f 1773//1708 1789//1708 1790//1708
+f 1790//1709 1772//1709 1773//1709
+f 1791//1710 1770//1710 1771//1710
+f 1792//1711 1769//1711 1770//1711
+f 1769//1712 1792//1712 1793//1712
+f 1793//1713 1714//1713 1769//1713
+f 1794//1714 1715//1714 1714//1714
+f 1768//1715 1716//1715 1715//1715
+f 1767//1716 1796//1716 1797//1716
+f 1797//1717 1766//1717 1767//1717
+f 1797//1718 1765//1718 1766//1718
+f 1765//1719 1797//1719 1798//1719
+f 1799//1720 1763//1720 1764//1720
+f 1761//1721 1800//1721 1801//1721
+f 1801//1722 1760//1722 1761//1722
+f 1760//1723 1801//1723 1759//1723
+f 1803//1724 1804//1724 1805//1724
+f 1803//1725 1805//1725 1757//1725
+f 1805//1726 1806//1726 1757//1726
+f 1755//1727 1757//1727 1806//1727
+f 1806//1728 1807//1728 1755//1728
+f 1754//1729 1755//1729 1807//1729
+f 1809//1730 1810//1730 1807//1730
+f 1215//1731 1814//1731 1813//1731
+f 1748//1732 1813//1732 1814//1732
+f 1814//1733 1815//1733 1748//1733
+f 1220//1734 1746//1734 1219//1734
+f 1745//1735 1222//1735 1744//1735
+f 1816//1736 1223//1736 1225//1736
+f 1063//1737 1293//1737 1225//1737
+f 1265//1738 1821//1738 1267//1738
+f 1819//1739 1258//1739 1295//1739
+f 341//1740 342//1740 1818//1740
+f 1818//1741 1259//1741 341//1741
+f 1840//1742 1265//1742 1820//1742
+f 1265//1743 1061//1743 1820//1743
+f 1821//1744 1842//1744 1267//1744
+f 1822//1745 1293//1745 5//1745
+f 1823//1746 1816//1746 1822//1746
+f 1826//1747 1824//1747 1825//1747
+f 1825//1748 1827//1748 1826//1748
+f 1826//1749 1224//1749 1223//1749
+f 1827//1750 1742//1750 1826//1750
+f 1828//1751 1829//1751 1827//1751
+f 1740//1752 1827//1752 1829//1752
+f 1829//1753 1741//1753 1740//1753
+f 1307//1754 1739//1754 1741//1754
+f 1306//1755 1308//1755 1739//1755
+f 1302//1756 1830//1756 1833//1756
+f 1833//1757 1834//1757 1849//1757
+f 1832//1758 1834//1758 1831//1758
+f 1828//1759 1835//1759 1845//1759
+f 1825//1760 1824//1760 1835//1760
+f 1824//1761 1816//1761 1836//1761
+f 1816//1762 1823//1762 1837//1762
+f 5//1763 1838//1763 1822//1763
+f 1839//1764 1840//1764 1820//1764
+f 1842//1765 1821//1765 1841//1765
+f 5//1766 1293//1766 1842//1766
+f 1850//1767 1844//1767 1836//1767
+f 1835//1768 1836//1768 1844//1768
+f 1844//1769 1845//1769 1835//1769
+f 1846//1770 1834//1770 1832//1770
+f 1299//1771 1847//1771 1834//1771
+f 1849//1772 1302//1772 1833//1772
+f 1301//1773 1848//1773 1847//1773
+f 1847//1774 1299//1774 1301//1774
+f 1837//1775 1843//1775 1297//1775
+f 1838//1776 1851//1776 1843//1776
+f 1838//1777 5//1777 348//1777
+f 1071//1778 1070//1778 1844//1778
+f 1845//1779 1844//1779 1070//1779
+f 1070//1780 1846//1780 1845//1780
+f 1298//1781 1299//1781 1846//1781
+f 904//1782 1297//1782 1851//1782
+f 1851//1783 895//1783 904//1783
+f 1742//1784 1744//1784 1224//1784
+f 1852//1785 1853//1785 1208//1785
+f 1811//1786 1853//1786 1852//1786
+f 1808//1787 1854//1787 1853//1787
+f 1808//1788 1855//1788 1854//1788
+f 1856//1789 1854//1789 1855//1789
+f 1855//1790 1804//1790 1856//1790
+f 1804//1791 1857//1791 1856//1791
+f 1802//1792 1858//1792 1857//1792
+f 1859//1793 1759//1793 1801//1793
+f 1799//1794 1861//1794 1800//1794
+f 1799//1795 1862//1795 1861//1795
+f 1797//1796 1863//1796 1798//1796
+f 1797//1797 1864//1797 1863//1797
+f 1797//1798 1866//1798 1864//1798
+f 1866//1799 1797//1799 1796//1799
+f 1867//1800 1767//1800 1795//1800
+f 1795//1801 1768//1801 1868//1801
+f 1870//1802 1793//1802 1792//1802
+f 1792//1803 1871//1803 1870//1803
+f 1872//1804 1770//1804 1791//1804
+f 1873//1805 1872//1805 1791//1805
+f 1789//1806 1873//1806 1790//1806
+f 1790//1807 1873//1807 1791//1807
+f 1875//1808 1874//1808 1789//1808
+f 1789//1809 1773//1809 1875//1809
+f 1876//1810 1875//1810 1788//1810
+f 1788//1811 1877//1811 1876//1811
+f 1787//1812 1786//1812 1877//1812
+f 1879//1813 1779//1813 1785//1813
+f 1881//1814 1878//1814 1879//1814
+f 1882//1815 1877//1815 1881//1815
+f 1877//1816 1883//1816 1884//1816
+f 1877//1817 1884//1817 1876//1817
+f 1885//1818 1886//1818 1874//1818
+f 1886//1819 1888//1819 1789//1819
+f 1888//1820 1889//1820 1873//1820
+f 1868//1821 1893//1821 1894//1821
+f 1867//1822 1896//1822 1897//1822
+f 1897//1823 1796//1823 1867//1823
+f 1898//1824 1866//1824 1897//1824
+f 1866//1825 1898//1825 1042//1825
+f 1042//1826 1865//1826 1866//1826
+f 1864//1827 1865//1827 1899//1827
+f 1899//1828 1863//1828 1864//1828
+f 1901//1829 1800//1829 1861//1829
+f 1902//1830 1859//1830 1860//1830
+f 1903//1831 1857//1831 1858//1831
+f 1854//1832 1856//1832 1904//1832
+f 1904//1833 1853//1833 1854//1833
+f 1856//1834 1202//1834 1905//1834
+f 1905//1835 1207//1835 1904//1835
+f 1853//1836 1904//1836 1207//1836
+f 1207//1837 1208//1837 1853//1837
+f 1198//1838 1858//1838 1902//1838
+f 1860//1839 1194//1839 1902//1839
+f 1194//1840 1860//1840 1901//1840
+f 1901//1841 1861//1841 1900//1841
+f 1865//1842 1042//1842 1189//1842
+f 1899//1843 1189//1843 1190//1843
+f 1900//1844 1190//1844 1191//1844
+f 1901//1845 1191//1845 1194//1845
+f 1902//1846 1195//1846 1198//1846
+f 1897//1847 1933//1847 1906//1847
+f 1896//1848 1932//1848 1897//1848
+f 1889//1849 1909//1849 1908//1849
+f 1908//1850 1871//1850 1889//1850
+f 1912//1851 1910//1851 1911//1851
+f 1887//1852 1914//1852 1913//1852
+f 1915//1853 1913//1853 1914//1853
+f 1915//1854 1917//1854 1916//1854
+f 1914//1855 1917//1855 1915//1855
+f 1917//1856 1918//1856 1916//1856
+f 1883//1857 1919//1857 1917//1857
+f 1917//1858 1884//1858 1883//1858
+f 1882//1859 1920//1859 1883//1859
+f 1879//1860 1151//1860 1920//1860
+f 1920//1861 1881//1861 1879//1861
+f 1920//1862 1151//1862 1921//1862
+f 1922//1863 1966//1863 1916//1863
+f 1966//1864 1923//1864 1916//1864
+f 1916//1865 1924//1865 1915//1865
+f 1913//1866 1915//1866 1924//1866
+f 1923//1867 1925//1867 1924//1867
+f 1925//1868 1926//1868 1924//1868
+f 1912//1869 1909//1869 1910//1869
+f 1927//1870 1908//1870 1909//1870
+f 1890//1871 1927//1871 1928//1871
+f 1928//1872 1892//1872 1890//1872
+f 1929//1873 1891//1873 1892//1873
+f 1930//1874 1893//1874 1907//1874
+f 1929//1875 1931//1875 1930//1875
+f 1932//1876 1896//1876 1895//1876
+f 1933//1877 1897//1877 1932//1877
+f 1934//1878 1898//1878 1906//1878
+f 1934//1879 1936//1879 1041//1879
+f 1935//1880 1179//1880 1936//1880
+f 1183//1881 1936//1881 1179//1881
+f 1179//1882 1181//1882 1183//1882
+f 1895//1883 1940//1883 1932//1883
+f 1930//1884 1931//1884 1940//1884
+f 1940//1885 1895//1885 1930//1885
+f 1942//1886 1931//1886 1943//1886
+f 1944//1887 1945//1887 1943//1887
+f 1943//1888 1928//1888 1944//1888
+f 1944//1889 1928//1889 1927//1889
+f 1927//1890 1947//1890 1944//1890
+f 1033//1891 1946//1891 1912//1891
+f 1946//1892 1909//1892 1912//1892
+f 1034//1893 1947//1893 1946//1893
+f 1947//1894 1927//1894 1946//1894
+f 1948//1895 1944//1895 1947//1895
+f 1949//1896 1945//1896 1948//1896
+f 1950//1897 1951//1897 1949//1897
+f 1948//1898 1950//1898 1949//1898
+f 1951//1899 1945//1899 1949//1899
+f 1952//1900 1953//1900 1951//1900
+f 1951//1901 1954//1901 1952//1901
+f 1942//1902 1953//1902 1167//1902
+f 1931//1903 1941//1903 1940//1903
+f 1932//1904 1939//1904 1938//1904
+f 1955//1905 1935//1905 1938//1905
+f 1956//1906 1935//1906 1955//1906
+f 1957//1907 1937//1907 1956//1907
+f 1937//1908 1957//1908 1178//1908
+f 1958//1909 1178//1909 1957//1909
+f 1173//1910 1958//1910 1957//1910
+f 1957//1911 1956//1911 1173//1911
+f 1173//1912 1956//1912 1172//1912
+f 1955//1913 1172//1913 1956//1913
+f 1955//1914 1939//1914 1172//1914
+f 1169//1915 1939//1915 1940//1915
+f 1941//1916 1167//1916 1169//1916
+f 1169//1917 1940//1917 1941//1917
+f 1953//1918 1952//1918 1962//1918
+f 1959//1919 1962//1919 1952//1919
+f 1952//1920 1960//1920 1959//1920
+f 1960//1921 1954//1921 1959//1921
+f 1952//1922 1954//1922 1960//1922
+f 1950//1923 1162//1923 1163//1923
+f 1948//1924 1161//1924 1162//1924
+f 1947//1925 1961//1925 1161//1925
+f 1164//1926 1959//1926 1954//1926
+f 1165//1927 1962//1927 1959//1927
+f 1165//1928 1166//1928 1962//1928
+f 1962//1929 1036//1929 1953//1929
+f 1958//1930 1177//1930 1178//1930
+f 1926//1931 1925//1931 1031//1931
+f 1031//1932 1963//1932 1073//1932
+f 1963//1933 1964//1933 1073//1933
+f 1925//1934 1965//1934 1963//1934
+f 1966//1935 1922//1935 1967//1935
+f 1922//1936 184//1936 1967//1936
+f 1967//1937 1153//1937 1968//1937
+f 1968//1938 1966//1938 1967//1938
+f 1964//1939 1155//1939 1969//1939
+f 1074//1940 1156//1940 1157//1940
+f 1921//1941 1152//1941 1922//1941
+f 1104//1942 1050//1942 1550//1942
+f 1348//1943 1550//1943 1050//1943
+f 1518//1944 1517//1944 1630//1944
+f 1517//1945 1424//1945 1516//1945
+f 1424//1946 1458//1946 1485//1946
+f 1486//1947 1045//1947 1487//1947
+f 1357//1948 1358//1948 1394//1948
+f 1391//1949 1394//1949 1358//1949
+f 1110//1950 1052//1950 1350//1950
+f 1066//1951 1068//1951 1321//1951
+f 1069//1952 1067//1952 1303//1952
+f 1267//1953 1063//1953 1226//1953
+f 214//1954 1174//1954 1024//1954
+f 1171//1955 1024//1955 1174//1955
+f 1038//1956 1025//1956 1171//1956
+f 1168//1957 1038//1957 1171//1957
+f 1961//1958 1159//1958 1160//1958
+f 1030//1959 1158//1959 1159//1959
+f 1051//1960 1058//1960 1057//1960
+f 1032//1961 1157//1961 1028//1961
+f 9//1962 12//1962 11//1962
+f 13//1963 20//1963 14//1963
+f 16//1964 58//1964 17//1964
+f 17//1965 980//1965 18//1965
+f 19//1966 1014//1966 20//1966
+f 21//1967 23//1967 24//1967
+f 29//1968 223//1968 26//1968
+f 34//1969 572//1969 571//1969
+f 41//1970 44//1970 42//1970
+f 41//1971 43//1971 46//1971
+f 589//1972 612//1972 677//1972
+f 57//1973 1022//1973 58//1973
+f 59//1974 24//1974 61//1974
+f 76//1975 77//1975 65//1975
+f 77//1976 78//1976 65//1976
+f 78//1977 79//1977 66//1977
+f 79//1978 388//1978 80//1978
+f 81//1979 389//1979 82//1979
+f 83//1980 137//1980 82//1980
+f 82//1981 390//1981 83//1981
+f 390//1982 391//1982 83//1982
+f 134//1983 135//1983 83//1983
+f 83//1984 391//1984 84//1984
+f 86//1985 394//1985 87//1985
+f 395//1986 396//1986 88//1986
+f 88//1987 129//1987 395//1987
+f 88//1988 400//1988 89//1988
+f 89//1989 398//1989 90//1989
+f 91//1990 47//1990 92//1990
+f 92//1991 42//1991 44//1991
+f 42//1992 92//1992 47//1992
+f 42//1993 93//1993 43//1993
+f 93//1994 94//1994 95//1994
+f 94//1995 403//1995 96//1995
+f 95//1996 96//1996 97//1996
+f 95//1997 97//1997 98//1997
+f 99//1998 121//1998 37//1998
+f 101//1999 100//1999 102//1999
+f 102//2000 117//2000 101//2000
+f 407//2001 103//2001 102//2001
+f 103//2002 104//2002 105//2002
+f 105//2003 112//2003 103//2003
+f 105//2004 104//2004 106//2004
+f 106//2005 111//2005 105//2005
+f 104//2006 40//2006 36//2006
+f 36//2007 108//2007 107//2007
+f 107//2008 109//2008 35//2008
+f 110//2009 106//2009 35//2009
+f 106//2010 36//2010 35//2010
+f 112//2011 111//2011 113//2011
+f 112//2012 115//2012 103//2012
+f 112//2013 413//2013 115//2013
+f 115//2014 102//2014 103//2014
+f 115//2015 116//2015 117//2015
+f 117//2016 102//2016 115//2016
+f 117//2017 118//2017 119//2017
+f 118//2018 122//2018 120//2018
+f 119//2019 120//2019 121//2019
+f 121//2020 120//2020 37//2020
+f 122//2021 124//2021 123//2021
+f 120//2022 123//2022 45//2022
+f 124//2023 125//2023 123//2023
+f 123//2024 125//2024 126//2024
+f 90//2025 418//2025 128//2025
+f 88//2026 422//2026 129//2026
+f 129//2027 424//2027 130//2027
+f 130//2028 131//2028 132//2028
+f 134//2029 428//2029 135//2029
+f 135//2030 430//2030 136//2030
+f 135//2031 136//2031 137//2031
+f 137//2032 432//2032 138//2032
+f 138//2033 82//2033 137//2033
+f 66//2034 79//2034 141//2034
+f 142//2035 143//2035 66//2035
+f 500//2036 149//2036 148//2036
+f 502//2037 530//2037 149//2037
+f 530//2038 503//2038 150//2038
+f 503//2039 151//2039 150//2039
+f 155//2040 157//2040 156//2040
+f 158//2041 160//2041 159//2041
+f 160//2042 162//2042 161//2042
+f 162//2043 164//2043 163//2043
+f 164//2044 166//2044 165//2044
+f 166//2045 168//2045 167//2045
+f 175//2046 177//2046 176//2046
+f 178//2047 181//2047 180//2047
+f 183//2048 186//2048 185//2048
+f 186//2049 1023//2049 187//2049
+f 187//2050 1023//2050 188//2050
+f 190//2051 10//2051 11//2051
+f 15//2052 191//2052 9//2052
+f 192//2053 12//2053 9//2053
+f 191//2054 15//2054 14//2054
+f 192//2055 191//2055 193//2055
+f 194//2056 193//2056 195//2056
+f 197//2057 196//2057 198//2057
+f 199//2058 198//2058 200//2058
+f 1015//2059 205//2059 21//2059
+f 206//2060 207//2060 22//2060
+f 207//2061 206//2061 208//2061
+f 207//2062 211//2062 209//2062
+f 207//2063 208//2063 210//2063
+f 210//2064 212//2064 211//2064
+f 213//2065 1011//2065 215//2065
+f 214//2066 215//2066 216//2066
+f 64//2067 217//2067 218//2067
+f 218//2068 219//2068 64//2068
+f 220//2069 221//2069 219//2069
+f 219//2070 222//2070 62//2070
+f 221//2071 225//2071 222//2071
+f 224//2072 226//2072 225//2072
+f 29//2073 227//2073 226//2073
+f 227//2074 29//2074 25//2074
+f 231//2075 232//2075 229//2075
+f 234//2076 232//2076 235//2076
+f 235//2077 236//2077 234//2077
+f 236//2078 237//2078 234//2078
+f 236//2079 239//2079 237//2079
+f 239//2080 238//2080 240//2080
+f 240//2081 241//2081 239//2081
+f 241//2082 240//2082 243//2082
+f 241//2083 243//2083 245//2083
+f 250//2084 274//2084 248//2084
+f 249//2085 905//2085 251//2085
+f 905//2086 862//2086 251//2086
+f 251//2087 253//2087 254//2087
+f 255//2088 271//2088 252//2088
+f 253//2089 863//2089 256//2089
+f 254//2090 256//2090 255//2090
+f 255//2091 865//2091 258//2091
+f 258//2092 866//2092 259//2092
+f 261//2093 266//2093 259//2093
+f 261//2094 798//2094 262//2094
+f 263//2095 264//2095 48//2095
+f 264//2096 874//2096 48//2096
+f 265//2097 262//2097 263//2097
+f 266//2098 261//2098 262//2098
+f 266//2099 267//2099 268//2099
+f 268//2100 269//2100 270//2100
+f 271//2101 255//2101 257//2101
+f 270//2102 310//2102 272//2102
+f 271//2103 272//2103 273//2103
+f 273//2104 272//2104 274//2104
+f 250//2105 251//2105 252//2105
+f 247//2106 248//2106 274//2106
+f 246//2107 276//2107 244//2107
+f 244//2108 276//2108 277//2108
+f 244//2109 242//2109 241//2109
+f 278//2110 237//2110 239//2110
+f 281//2111 233//2111 234//2111
+f 284//2112 325//2112 285//2112
+f 285//2113 222//2113 225//2113
+f 286//2114 62//2114 222//2114
+f 285//2115 287//2115 286//2115
+f 293//2116 337//2116 292//2116
+f 293//2117 295//2117 294//2117
+f 295//2118 293//2118 297//2118
+f 298//2119 301//2119 299//2119
+f 298//2120 296//2120 300//2120
+f 335//2121 331//2121 302//2121
+f 305//2122 1//2122 306//2122
+f 305//2123 306//2123 265//2123
+f 306//2124 334//2124 267//2124
+f 267//2125 266//2125 306//2125
+f 308//2126 332//2126 309//2126
+f 309//2127 270//2127 269//2127
+f 309//2128 332//2128 310//2128
+f 310//2129 270//2129 309//2129
+f 311//2130 312//2130 272//2130
+f 314//2131 275//2131 272//2131
+f 314//2132 276//2132 275//2132
+f 315//2133 277//2133 276//2133
+f 277//2134 315//2134 317//2134
+f 318//2135 279//2135 242//2135
+f 279//2136 319//2136 320//2136
+f 279//2137 280//2137 237//2137
+f 321//2138 322//2138 281//2138
+f 282//2139 233//2139 281//2139
+f 322//2140 323//2140 283//2140
+f 283//2141 324//2141 284//2141
+f 325//2142 287//2142 285//2142
+f 324//2143 288//2143 287//2143
+f 323//2144 322//2144 321//2144
+f 323//2145 321//2145 320//2145
+f 319//2146 318//2146 327//2146
+f 317//2147 316//2147 297//2147
+f 316//2148 328//2148 295//2148
+f 316//2149 317//2149 315//2149
+f 328//2150 329//2150 300//2150
+f 328//2151 316//2151 315//2151
+f 311//2152 310//2152 332//2152
+f 332//2153 308//2153 333//2153
+f 333//2154 308//2154 334//2154
+f 333//2155 303//2155 302//2155
+f 330//2156 331//2156 335//2156
+f 301//2157 300//2157 329//2157
+f 300//2158 295//2158 328//2158
+f 295//2159 300//2159 296//2159
+f 295//2160 297//2160 316//2160
+f 297//2161 293//2161 291//2161
+f 297//2162 291//2162 327//2162
+f 327//2163 291//2163 326//2163
+f 326//2164 290//2164 323//2164
+f 290//2165 289//2165 288//2165
+f 48//2166 869//2166 307//2166
+f 334//2167 873//2167 304//2167
+f 303//2168 870//2168 335//2168
+f 335//2169 302//2169 303//2169
+f 871//2170 299//2170 301//2170
+f 296//2171 298//2171 336//2171
+f 337//2172 293//2172 294//2172
+f 337//2173 32//2173 292//2173
+f 339//2174 872//2174 340//2174
+f 346//2175 6//2176 345//2176
+f 350//2177 352//2177 351//2177
+f 901//2178 53//2178 377//2178
+f 901//2179 902//2179 54//2179
+f 358//2180 359//2180 54//2180
+f 359//2181 358//2181 360//2181
+f 50//2182 360//2182 49//2182
+f 360//2183 358//2183 362//2183
+f 362//2184 358//2184 363//2184
+f 49//2185 364//2185 365//2185
+f 368//2186 783//2186 369//2186
+f 368//2187 361//2187 50//2187
+f 370//2188 369//2188 371//2188
+f 370//2189 372//2189 361//2189
+f 372//2190 51//2190 359//2190
+f 372//2191 373//2191 51//2191
+f 51//2192 373//2192 374//2192
+f 373//2193 672//2193 375//2193
+f 374//2194 375//2194 376//2194
+f 374//2195 52//2195 51//2195
+f 374//2196 376//2196 52//2196
+f 376//2197 380//2197 377//2197
+f 377//2198 378//2198 357//2198
+f 357//2199 378//2199 67//2199
+f 379//2200 1072//2200 355//2200
+f 1072//2201 56//2201 354//2201
+f 380//2202 69//2202 67//2202
+f 381//2203 71//2203 70//2203
+f 382//2204 383//2204 72//2204
+f 383//2205 384//2205 73//2205
+f 75//2206 385//2206 76//2206
+f 385//2207 75//2207 386//2207
+f 78//2208 77//2208 387//2208
+f 79//2209 78//2209 388//2209
+f 388//2210 639//2210 81//2210
+f 81//2211 80//2211 388//2211
+f 390//2212 82//2212 389//2212
+f 390//2213 642//2213 391//2213
+f 395//2214 87//2214 394//2214
+f 396//2215 397//2215 400//2215
+f 91//2216 90//2216 398//2216
+f 398//2217 399//2217 47//2217
+f 399//2218 398//2218 400//2218
+f 93//2219 42//2219 47//2219
+f 401//2220 402//2220 94//2220
+f 403//2221 402//2221 404//2221
+f 403//2222 405//2222 96//2222
+f 406//2223 100//2223 99//2223
+f 407//2224 100//2224 406//2224
+f 38//2225 40//2225 104//2225
+f 40//2226 39//2226 108//2226
+f 39//2227 599//2227 108//2227
+f 108//2228 599//2228 409//2228
+f 409//2229 107//2229 108//2229
+f 410//2230 110//2230 109//2230
+f 412//2231 113//2231 111//2231
+f 113//2232 412//2232 574//2232
+f 113//2233 114//2233 112//2233
+f 114//2234 413//2234 112//2234
+f 413//2235 114//2235 34//2235
+f 413//2236 116//2236 115//2236
+f 414//2237 415//2237 124//2237
+f 415//2238 416//2238 125//2238
+f 125//2239 416//2239 126//2239
+f 128//2240 418//2240 419//2240
+f 422//2241 128//2241 420//2241
+f 422//2242 423//2242 424//2242
+f 424//2243 129//2243 422//2243
+f 424//2244 445//2244 425//2244
+f 131//2245 130//2245 424//2245
+f 426//2246 441//2246 427//2246
+f 428//2247 134//2247 133//2247
+f 428//2248 427//2248 429//2248
+f 430//2249 135//2249 428//2249
+f 430//2250 438//2250 431//2250
+f 432//2251 137//2251 136//2251
+f 431//2252 436//2252 432//2252
+f 139//2253 138//2253 432//2253
+f 433//2254 432//2254 436//2254
+f 436//2255 431//2255 438//2255
+f 438//2256 466//2256 437//2256
+f 429//2257 438//2257 430//2257
+f 429//2258 440//2258 439//2258
+f 441//2259 443//2259 442//2259
+f 445//2260 461//2260 444//2260
+f 445//2261 424//2261 423//2261
+f 421//2262 448//2262 447//2262
+f 420//2263 419//2263 448//2263
+f 451//2264 570//2264 450//2264
+f 453//2265 416//2265 450//2265
+f 417//2266 454//2266 482//2266
+f 419//2267 449//2267 455//2267
+f 455//2268 448//2268 419//2268
+f 448//2269 455//2269 456//2269
+f 456//2270 447//2270 448//2270
+f 447//2271 457//2271 458//2271
+f 459//2272 446//2272 423//2272
+f 446//2273 459//2273 460//2273
+f 462//2274 463//2274 461//2274
+f 463//2275 475//2275 442//2275
+f 464//2276 439//2276 440//2276
+f 465//2277 466//2277 438//2277
+f 439//2278 438//2278 429//2278
+f 466//2279 467//2279 437//2279
+f 468//2280 467//2280 146//2280
+f 470//2281 146//2281 467//2281
+f 471//2282 470//2282 467//2282
+f 465//2283 473//2283 471//2283
+f 473//2284 465//2284 439//2284
+f 474//2285 499//2285 473//2285
+f 464//2286 442//2286 475//2286
+f 476//2287 496//2287 475//2287
+f 476//2288 462//2288 477//2288
+f 461//2289 460//2289 478//2289
+f 459//2290 458//2290 479//2290
+f 458//2291 457//2291 480//2291
+f 456//2292 455//2292 481//2292
+f 453//2293 452//2293 483//2293
+f 452//2294 484//2294 485//2294
+f 484//2295 452//2295 569//2295
+f 484//2296 567//2296 485//2296
+f 485//2297 483//2297 452//2297
+f 483//2298 486//2298 454//2298
+f 487//2299 455//2299 482//2299
+f 488//2300 481//2300 455//2300
+f 489//2301 480//2301 457//2301
+f 480//2302 479//2302 458//2302
+f 479//2303 491//2303 492//2303
+f 479//2304 478//2304 460//2304
+f 493//2305 477//2305 478//2305
+f 477//2306 493//2306 494//2306
+f 477//2307 496//2307 476//2307
+f 496//2308 495//2308 497//2308
+f 496//2309 497//2309 498//2309
+f 474//2310 475//2310 496//2310
+f 500//2311 148//2311 499//2311
+f 148//2312 472//2312 473//2312
+f 147//2313 472//2313 148//2313
+f 501//2314 500//2314 498//2314
+f 497//2315 495//2315 503//2315
+f 495//2316 494//2316 504//2316
+f 494//2317 495//2317 477//2317
+f 493//2318 492//2318 505//2318
+f 492//2319 507//2319 506//2319
+f 491//2320 490//2320 507//2320
+f 489//2321 509//2321 508//2321
+f 509//2322 489//2322 481//2322
+f 481//2323 510//2323 509//2323
+f 510//2324 481//2324 488//2324
+f 510//2325 488//2325 487//2325
+f 487//2326 513//2326 510//2326
+f 513//2327 487//2327 486//2327
+f 486//2328 514//2328 513//2328
+f 486//2329 483//2329 514//2329
+f 485//2330 566//2330 516//2330
+f 516//2331 515//2331 485//2331
+f 514//2332 515//2332 517//2332
+f 517//2333 513//2333 514//2333
+f 519//2334 511//2334 512//2334
+f 520//2335 508//2335 509//2335
+f 522//2336 507//2336 490//2336
+f 524//2337 506//2337 507//2337
+f 506//2338 524//2338 525//2338
+f 526//2339 527//2339 505//2339
+f 527//2340 504//2340 494//2340
+f 504//2341 527//2341 528//2341
+f 529//2342 503//2342 504//2342
+f 529//2343 528//2343 151//2343
+f 526//2344 533//2344 532//2344
+f 526//2345 525//2345 533//2345
+f 525//2346 534//2346 533//2346
+f 525//2347 526//2347 506//2347
+f 534//2348 525//2348 524//2348
+f 524//2349 523//2349 534//2349
+f 522//2350 521//2350 536//2350
+f 520//2351 538//2351 537//2351
+f 538//2352 520//2352 511//2352
+f 519//2353 539//2353 538//2353
+f 539//2354 519//2354 512//2354
+f 515//2355 516//2355 33//2355
+f 544//2356 540//2356 518//2356
+f 543//2357 518//2357 517//2357
+f 540//2358 544//2358 545//2358
+f 546//2359 538//2359 539//2359
+f 547//2360 537//2360 538//2360
+f 537//2361 547//2361 548//2361
+f 549//2362 536//2362 521//2362
+f 536//2363 549//2363 550//2363
+f 550//2364 535//2364 536//2364
+f 552//2365 533//2365 534//2365
+f 533//2366 552//2366 553//2366
+f 153//2367 531//2367 528//2367
+f 153//2368 553//2368 154//2368
+f 157//2369 553//2369 552//2369
+f 552//2370 551//2370 554//2370
+f 551//2371 556//2371 555//2371
+f 556//2372 551//2372 535//2372
+f 550//2373 558//2373 557//2373
+f 558//2374 550//2374 549//2374
+f 549//2375 548//2375 558//2375
+f 548//2376 561//2376 560//2376
+f 546//2377 545//2377 562//2377
+f 545//2378 546//2378 540//2378
+f 544//2379 542//2379 563//2379
+f 542//2380 565//2380 564//2380
+f 565//2381 542//2381 33//2381
+f 33//2382 541//2382 565//2382
+f 578//2383 577//2383 579//2383
+f 581//2384 583//2384 582//2384
+f 586//2385 588//2385 587//2385
+f 588//2386 586//2386 590//2386
+f 591//2387 609//2387 590//2387
+f 593//2388 608//2388 591//2388
+f 591//2389 603//2389 592//2389
+f 593//2390 600//2390 595//2390
+f 595//2391 606//2391 594//2391
+f 597//2392 598//2392 99//2392
+f 598//2393 597//2393 599//2393
+f 597//2394 596//2394 600//2394
+f 601//2395 409//2395 599//2395
+f 409//2396 601//2396 580//2396
+f 580//2397 410//2397 109//2397
+f 410//2398 580//2398 579//2398
+f 576//2399 574//2399 412//2399
+f 572//2400 34//2400 114//2400
+f 581//2401 580//2401 601//2401
+f 602//2402 585//2402 583//2402
+f 603//2403 591//2403 586//2403
+f 586//2404 585//2404 603//2404
+f 603//2405 585//2405 592//2405
+f 592//2406 585//2406 600//2406
+f 602//2407 601//2407 585//2407
+f 600//2408 593//2408 592//2408
+f 596//2409 595//2409 600//2409
+f 97//2410 405//2410 605//2410
+f 605//2411 649//2411 606//2411
+f 595//2412 596//2412 604//2412
+f 649//2413 650//2413 607//2413
+f 607//2414 651//2414 608//2414
+f 608//2415 593//2415 594//2415
+f 609//2416 610//2416 588//2416
+f 609//2417 591//2417 608//2417
+f 588//2418 590//2418 609//2418
+f 613//2419 617//2419 615//2419
+f 620//2420 621//2420 618//2420
+f 621//2421 620//2421 623//2421
+f 624//2422 625//2422 622//2422
+f 626//2423 627//2423 625//2423
+f 627//2424 630//2424 628//2424
+f 627//2425 626//2425 629//2425
+f 630//2426 629//2426 631//2426
+f 631//2427 635//2427 634//2427
+f 380//2428 376//2428 633//2428
+f 634//2429 69//2429 380//2429
+f 635//2430 381//2430 69//2430
+f 382//2431 636//2431 383//2431
+f 384//2432 386//2432 74//2432
+f 385//2433 387//2433 77//2433
+f 387//2434 385//2434 637//2434
+f 387//2435 638//2435 78//2435
+f 638//2436 388//2436 78//2436
+f 389//2437 81//2437 639//2437
+f 641//2438 665//2438 642//2438
+f 642//2439 666//2439 392//2439
+f 392//2440 666//2440 667//2440
+f 392//2441 667//2441 393//2441
+f 393//2442 667//2442 643//2442
+f 643//2443 670//2443 644//2443
+f 643//2444 644//2444 396//2444
+f 644//2445 671//2445 397//2445
+f 397//2446 645//2446 400//2446
+f 645//2447 646//2447 401//2447
+f 646//2448 645//2448 647//2448
+f 646//2449 404//2449 402//2449
+f 404//2450 646//2450 648//2450
+f 404//2451 649//2451 403//2451
+f 649//2452 404//2452 650//2452
+f 649//2453 605//2453 405//2453
+f 650//2454 648//2454 651//2454
+f 648//2455 671//2455 652//2455
+f 609//2456 608//2456 651//2456
+f 653//2457 669//2457 654//2457
+f 654//2458 668//2458 611//2458
+f 611//2459 668//2459 655//2459
+f 655//2460 612//2460 611//2460
+f 655//2461 666//2461 656//2461
+f 655//2462 656//2462 657//2462
+f 657//2463 656//2463 616//2463
+f 616//2464 665//2464 619//2464
+f 658//2465 623//2465 620//2465
+f 623//2466 658//2466 664//2466
+f 661//2467 629//2467 626//2467
+f 635//2468 631//2468 632//2468
+f 632//2469 382//2469 635//2469
+f 632//2470 663//2470 384//2470
+f 636//2471 384//2471 383//2471
+f 663//2472 662//2472 386//2472
+f 662//2473 660//2473 637//2473
+f 637//2474 660//2474 659//2474
+f 637//2475 638//2475 387//2475
+f 664//2476 658//2476 641//2476
+f 665//2477 656//2477 666//2477
+f 666//2478 642//2478 665//2478
+f 667//2479 668//2479 643//2479
+f 643//2480 654//2480 669//2480
+f 671//2481 648//2481 647//2481
+f 647//2482 648//2482 646//2482
+f 653//2483 652//2483 671//2483
+f 658//2484 619//2484 665//2484
+f 645//2485 397//2485 671//2485
+f 633//2486 376//2486 375//2486
+f 672//2487 628//2487 630//2487
+f 628//2488 625//2488 627//2488
+f 625//2489 673//2489 674//2489
+f 675//2490 618//2490 621//2490
+f 618//2491 675//2491 676//2491
+f 676//2492 615//2492 618//2492
+f 615//2493 614//2493 613//2493
+f 614//2494 715//2494 677//2494
+f 677//2495 714//2495 678//2495
+f 678//2496 589//2496 677//2496
+f 678//2497 587//2497 589//2497
+f 582//2498 578//2498 579//2498
+f 571//2499 573//2499 680//2499
+f 680//2500 681//2500 571//2500
+f 682//2501 567//2501 568//2501
+f 682//2502 683//2502 567//2502
+f 685//2503 565//2503 541//2503
+f 686//2504 564//2504 565//2504
+f 688//2505 689//2505 564//2505
+f 689//2506 690//2506 563//2506
+f 690//2507 562//2507 545//2507
+f 562//2508 690//2508 691//2508
+f 692//2509 560//2509 561//2509
+f 560//2510 692//2510 693//2510
+f 559//2511 560//2511 693//2511
+f 559//2512 557//2512 558//2512
+f 557//2513 559//2513 694//2513
+f 695//2514 555//2514 556//2514
+f 555//2515 695//2515 162//2515
+f 695//2516 696//2516 164//2516
+f 695//2517 694//2517 696//2517
+f 694//2518 695//2518 557//2518
+f 694//2519 693//2519 697//2519
+f 693//2520 694//2520 559//2520
+f 692//2521 699//2521 698//2521
+f 690//2522 689//2522 691//2522
+f 691//2523 701//2523 700//2523
+f 701//2524 691//2524 689//2524
+f 689//2525 688//2525 701//2525
+f 701//2526 703//2526 702//2526
+f 702//2527 700//2527 701//2527
+f 703//2528 701//2528 688//2528
+f 688//2529 704//2529 703//2529
+f 687//2530 706//2530 705//2530
+f 706//2531 687//2531 686//2531
+f 685//2532 708//2532 707//2532
+f 683//2533 682//2533 709//2533
+f 682//2534 735//2534 709//2534
+f 568//2535 681//2535 734//2535
+f 2//2536 711//2537 578//2538
+f 712//2539 2//2539 582//2539
+f 587//2540 678//2540 712//2540
+f 712//2541 714//2541 713//2541
+f 712//2542 678//2542 714//2542
+f 714//2543 677//2543 715//2543
+f 716//2544 715//2544 615//2544
+f 676//2545 718//2545 717//2545
+f 718//2546 676//2546 675//2546
+f 674//2547 673//2547 721//2547
+f 673//2548 723//2548 722//2548
+f 723//2549 673//2549 628//2549
+f 672//2550 373//2550 724//2550
+f 726//2551 722//2551 723//2551
+f 725//2552 779//2552 726//2552
+f 726//2553 776//2553 727//2553
+f 721//2554 722//2554 727//2554
+f 720//2555 721//2555 727//2555
+f 727//2556 774//2556 720//2556
+f 720//2557 718//2557 719//2557
+f 720//2558 773//2558 718//2558
+f 717//2559 718//2559 772//2559
+f 728//2560 714//2560 715//2560
+f 731//2561 711//2561 2//2562
+f 711//2563 731//2563 732//2563
+f 732//2564 679//2564 711//2564
+f 680//2565 734//2565 681//2565
+f 737//2566 684//2566 709//2566
+f 684//2567 737//2567 738//2567
+f 739//2568 707//2568 708//2568
+f 707//2569 739//2569 740//2569
+f 741//2570 705//2570 706//2570
+f 705//2571 741//2571 742//2571
+f 703//2572 743//2572 745//2572
+f 702//2573 745//2573 746//2573
+f 747//2574 748//2574 700//2574
+f 700//2575 749//2575 699//2575
+f 749//2576 750//2576 698//2576
+f 750//2577 696//2577 697//2577
+f 696//2578 750//2578 166//2578
+f 164//2579 696//2579 166//2579
+f 166//2580 750//2580 168//2580
+f 748//2581 751//2581 749//2581
+f 748//2582 747//2582 752//2582
+f 747//2583 746//2583 753//2583
+f 745//2584 744//2584 755//2584
+f 744//2585 745//2585 743//2585
+f 742//2586 758//2586 757//2586
+f 740//2587 739//2587 759//2587
+f 738//2588 739//2588 708//2588
+f 738//2589 762//2589 761//2589
+f 737//2590 763//2590 762//2590
+f 737//2591 764//2591 763//2591
+f 764//2592 737//2592 735//2592
+f 734//2593 765//2593 735//2593
+f 766//2594 733//2594 710//2594
+f 713//2595 729//2595 816//2595
+f 772//2596 718//2596 773//2596
+f 773//2597 720//2597 774//2597
+f 774//2598 727//2598 775//2598
+f 775//2599 727//2599 776//2599
+f 776//2600 726//2600 777//2600
+f 777//2601 726//2601 779//2601
+f 780//2602 781//2602 779//2602
+f 779//2603 725//2603 780//2603
+f 371//2604 372//2604 370//2604
+f 725//2605 373//2605 372//2605
+f 783//2606 784//2606 782//2606
+f 367//2607 787//2607 785//2607
+f 787//2608 367//2608 365//2608
+f 365//2609 789//2609 788//2609
+f 364//2610 790//2610 789//2610
+f 790//2611 364//2611 792//2611
+f 792//2612 793//2612 790//2612
+f 793//2613 792//2613 794//2613
+f 793//2614 879//2614 795//2614
+f 793//2615 795//2615 796//2615
+f 796//2616 791//2616 790//2616
+f 796//2617 797//2617 798//2617
+f 791//2618 788//2618 789//2618
+f 801//2619 802//2619 787//2619
+f 802//2620 785//2620 787//2620
+f 802//2621 864//2621 803//2621
+f 803//2622 864//2622 804//2622
+f 804//2623 786//2623 785//2623
+f 806//2624 782//2624 784//2624
+f 807//2625 781//2625 782//2625
+f 807//2626 808//2626 778//2626
+f 778//2627 779//2627 781//2627
+f 778//2628 808//2628 809//2628
+f 809//2629 810//2629 811//2629
+f 812//2630 811//2630 813//2630
+f 812//2631 814//2631 773//2631
+f 815//2632 816//2632 771//2632
+f 817//2633 730//2633 816//2633
+f 730//2634 817//2634 818//2634
+f 818//2635 770//2635 731//2635
+f 820//2636 821//2636 770//2636
+f 821//2637 769//2637 732//2637
+f 767//2638 822//2638 766//2638
+f 822//2639 765//2639 733//2639
+f 823//2640 764//2640 765//2640
+f 823//2641 824//2641 764//2641
+f 824//2642 763//2642 764//2642
+f 825//2643 761//2643 762//2643
+f 825//2644 762//2644 763//2644
+f 761//2645 825//2645 826//2645
+f 827//2646 760//2646 761//2646
+f 760//2647 827//2647 828//2647
+f 829//2648 759//2648 739//2648
+f 831//2649 757//2649 758//2649
+f 757//2650 831//2650 832//2650
+f 833//2651 834//2651 756//2651
+f 757//2652 756//2652 742//2652
+f 834//2653 755//2653 744//2653
+f 755//2654 834//2654 836//2654
+f 836//2655 754//2655 755//2655
+f 174//2656 173//2656 753//2656
+f 173//2657 172//2657 753//2657
+f 172//2658 171//2658 752//2658
+f 171//2659 170//2659 752//2659
+f 170//2660 169//2660 751//2660
+f 169//2661 168//2661 751//2661
+f 754//2662 836//2662 175//2662
+f 836//2663 835//2663 177//2663
+f 835//2664 836//2664 834//2664
+f 833//2665 832//2665 837//2665
+f 838//2666 828//2666 839//2666
+f 828//2667 838//2667 829//2667
+f 828//2668 826//2668 840//2668
+f 826//2669 828//2669 827//2669
+f 826//2670 842//2670 841//2670
+f 822//2671 845//2671 844//2671
+f 846//2672 767//2672 768//2672
+f 768//2673 821//2673 921//2673
+f 821//2674 768//2674 769//2674
+f 821//2675 820//2675 847//2675
+f 820//2676 849//2676 848//2676
+f 820//2677 819//2677 849//2677
+f 818//2678 850//2678 819//2678
+f 818//2679 817//2679 850//2679
+f 851//2680 817//2680 816//2680
+f 815//2681 852//2681 851//2681
+f 814//2682 853//2682 852//2682
+f 812//2683 813//2683 853//2683
+f 813//2684 855//2684 854//2684
+f 857//2685 856//2685 855//2685
+f 855//2686 810//2686 857//2686
+f 810//2687 809//2687 808//2687
+f 858//2688 860//2688 857//2688
+f 857//2689 808//2689 858//2689
+f 859//2690 862//2690 860//2690
+f 858//2691 807//2691 806//2691
+f 863//2692 253//2692 861//2692
+f 861//2693 806//2693 805//2693
+f 863//2694 804//2694 864//2694
+f 865//2695 255//2695 256//2695
+f 866//2696 258//2696 865//2696
+f 864//2697 802//2697 801//2697
+f 865//2698 801//2698 866//2698
+f 260//2699 259//2699 866//2699
+f 799//2700 798//2700 261//2700
+f 263//2701 867//2701 264//2701
+f 869//2702 48//2702 874//2702
+f 870//2703 303//2703 304//2703
+f 872//2704 336//2704 298//2704
+f 339//2705 338//2705 294//2705
+f 872//2706 299//2706 341//2706
+f 870//2707 343//2707 871//2707
+f 878//2708 877//2708 876//2708
+f 879//2709 881//2709 877//2709
+f 880//2710 884//2710 881//2710
+f 881//2711 879//2711 880//2711
+f 882//2712 883//2712 880//2712
+f 880//2713 793//2713 794//2713
+f 794//2714 363//2714 882//2714
+f 363//2715 794//2715 792//2715
+f 362//2716 792//2716 364//2716
+f 885//2717 902//2717 886//2717
+f 898//2718 881//2718 884//2718
+f 887//2719 877//2719 881//2719
+f 875//2720 890//2720 874//2720
+f 893//2721 892//2721 305//2721
+f 343//2722 870//2722 891//2722
+f 342//2723 871//2723 343//2723
+f 891//2724 345//2724 344//2724
+f 892//2725 346//2725 891//2725
+f 4//2726 894//2726 869//2726
+f 890//2727 875//2727 895//2727
+f 890//2728 4//2728 874//2728
+f 896//2729 895//2729 875//2729
+f 896//2730 875//2730 889//2730
+f 897//2731 887//2731 898//2731
+f 884//2732 899//2732 898//2732
+f 899//2733 884//2733 886//2733
+f 900//2734 886//2734 902//2734
+f 902//2735 885//2735 358//2735
+f 900//2736 356//2736 355//2736
+f 903//2737 352//2737 349//2737
+f 894//2738 347//2738 893//2738
+f 345//2739 891//2739 346//2739
+f 893//2740 347//2740 346//2740
+f 890//2741 348//2741 4//2741
+f 352//2742 903//2742 897//2742
+f 353//2743 898//2743 899//2743
+f 253//2744 251//2744 862//2744
+f 905//2745 249//2745 906//2745
+f 906//2746 860//2746 862//2746
+f 908//2747 857//2747 860//2747
+f 908//2748 909//2748 856//2748
+f 856//2749 857//2749 908//2749
+f 856//2750 909//2750 910//2750
+f 910//2751 854//2751 856//2751
+f 854//2752 910//2752 911//2752
+f 911//2753 912//2753 854//2753
+f 912//2754 853//2754 813//2754
+f 851//2755 914//2755 915//2755
+f 915//2756 850//2756 851//2756
+f 819//2757 916//2757 917//2757
+f 917//2758 849//2758 819//2758
+f 918//2759 848//2759 849//2759
+f 919//2760 920//2760 848//2760
+f 920//2761 847//2761 848//2761
+f 920//2762 921//2762 847//2762
+f 847//2763 921//2763 821//2763
+f 846//2764 921//2764 922//2764
+f 923//2765 845//2765 846//2765
+f 924//2766 844//2766 845//2766
+f 844//2767 924//2767 925//2767
+f 926//2768 843//2768 823//2768
+f 927//2769 942//2769 841//2769
+f 841//2770 842//2770 927//2770
+f 842//2771 843//2771 927//2771
+f 841//2772 940//2772 928//2772
+f 841//2773 929//2773 826//2773
+f 929//2774 938//2774 930//2774
+f 840//2775 930//2775 931//2775
+f 932//2776 837//2776 832//2776
+f 837//2777 932//2777 933//2777
+f 837//2778 835//2778 833//2778
+f 934//2779 177//2779 835//2779
+f 177//2780 934//2780 178//2780
+f 934//2781 935//2781 178//2781
+f 935//2782 934//2782 837//2782
+f 931//2783 938//2783 937//2783
+f 931//2784 930//2784 938//2784
+f 939//2785 971//2785 938//2785
+f 940//2786 968//2786 939//2786
+f 938//2787 929//2787 928//2787
+f 940//2788 841//2788 942//2788
+f 943//2789 965//2789 942//2789
+f 942//2790 927//2790 943//2790
+f 926//2791 925//2791 943//2791
+f 924//2792 945//2792 925//2792
+f 846//2793 922//2793 923//2793
+f 922//2794 921//2794 960//2794
+f 921//2795 920//2795 947//2795
+f 948//2796 960//2796 921//2796
+f 920//2797 919//2797 947//2797
+f 918//2798 28//2798 27//2798
+f 917//2799 950//2799 28//2799
+f 917//2800 951//2800 950//2800
+f 850//2801 915//2801 916//2801
+f 953//2802 914//2802 852//2802
+f 912//2803 911//2803 954//2803
+f 955//2804 911//2804 910//2804
+f 910//2805 909//2805 955//2805
+f 956//2806 907//2806 906//2806
+f 243//2807 240//2807 909//2807
+f 245//2808 243//2808 957//2808
+f 957//2809 956//2809 248//2809
+f 248//2810 247//2810 957//2810
+f 248//2811 906//2811 249//2811
+f 238//2812 954//2812 911//2812
+f 235//2813 953//2813 913//2813
+f 953//2814 952//2814 914//2814
+f 230//2815 950//2815 951//2815
+f 950//2816 230//2816 28//2816
+f 951//2817 231//2817 230//2817
+f 952//2818 232//2818 231//2818
+f 953//2819 235//2819 232//2819
+f 954//2820 238//2820 236//2820
+f 27//2821 26//2821 958//2821
+f 949//2822 27//2822 959//2822
+f 949//2823 947//2823 919//2823
+f 947//2824 949//2824 986//2824
+f 961//2825 945//2825 960//2825
+f 963//2826 964//2826 943//2826
+f 962//2827 943//2827 925//2827
+f 965//2828 943//2828 964//2828
+f 941//2829 942//2829 965//2829
+f 965//2830 978//2830 967//2830
+f 941//2831 967//2831 968//2831
+f 968//2832 940//2832 941//2832
+f 969//2833 970//2833 971//2833
+f 971//2834 939//2834 968//2834
+f 971//2835 970//2835 972//2835
+f 971//2836 937//2836 938//2836
+f 974//2837 935//2837 933//2837
+f 974//2838 975//2838 181//2838
+f 974//2839 973//2839 975//2839
+f 973//2840 972//2840 975//2840
+f 972//2841 970//2841 976//2841
+f 970//2842 969//2842 978//2842
+f 979//2843 1018//2843 977//2843
+f 978//2844 965//2844 966//2844
+f 966//2845 964//2845 963//2845
+f 981//2846 963//2846 962//2846
+f 944//2847 982//2847 981//2847
+f 946//2848 983//2848 982//2848
+f 983//2849 946//2849 945//2849
+f 945//2850 961//2850 983//2850
+f 960//2851 948//2851 984//2851
+f 986//2852 948//2852 947//2852
+f 987//2853 986//2853 949//2853
+f 959//2854 987//2854 949//2854
+f 958//2855 959//2855 27//2855
+f 958//2856 26//2856 223//2856
+f 220//2857 990//2857 988//2857
+f 220//2858 223//2858 221//2858
+f 988//2859 991//2859 959//2859
+f 993//2860 984//2860 948//2860
+f 994//2861 995//2861 985//2861
+f 995//2862 996//2862 985//2862
+f 996//2863 998//2863 982//2863
+f 998//2864 981//2864 982//2864
+f 981//2865 998//2865 1000//2865
+f 18//2866 966//2866 999//2866
+f 999//2867 966//2867 963//2867
+f 1000//2868 999//2868 981//2868
+f 1001//2869 1000//2869 998//2869
+f 1003//2870 1007//2870 1004//2870
+f 1003//2871 1002//2871 997//2871
+f 996//2872 995//2872 1003//2872
+f 1003//2873 1006//2873 1007//2873
+f 1003//2874 995//2874 1005//2874
+f 995//2875 206//2875 1005//2875
+f 995//2876 994//2876 206//2876
+f 985//2877 993//2877 994//2877
+f 986//2878 991//2878 992//2878
+f 1008//2879 991//2879 988//2879
+f 1009//2880 1008//2880 988//2880
+f 990//2881 218//2881 1010//2881
+f 990//2882 220//2882 218//2882
+f 1010//2883 213//2883 1009//2883
+f 213//2884 210//2884 1009//2884
+f 210//2885 208//2885 992//2885
+f 992//2886 991//2886 1008//2886
+f 208//2887 993//2887 992//2887
+f 208//2888 994//2888 993//2888
+f 1005//2889 205//2889 1006//2889
+f 1006//2890 1012//2890 1013//2890
+f 1013//2891 1012//2891 1007//2891
+f 1004//2892 200//2892 198//2892
+f 1001//2893 198//2893 196//2893
+f 1014//2894 19//2894 1000//2894
+f 1007//2895 201//2895 200//2895
+f 1012//2896 202//2896 201//2896
+f 1012//2897 203//2897 202//2897
+f 1015//2898 204//2898 203//2898
+f 205//2899 1005//2899 22//2899
+f 1011//2900 218//2900 217//2900
+f 980//2901 17//2901 979//2901
+f 17//2902 58//2902 1016//2902
+f 1016//2903 58//2903 1017//2903
+f 976//2904 1020//2904 183//2904
+f 1020//2905 1021//2905 186//2905
+f 1023//2906 1021//2906 1017//2906
+f 1022//2907 57//2907 188//2907
+f 57//2908 15//2908 10//2908
+f 1023//2909 186//2909 1021//2909
+f 183//2910 182//2910 975//2910
+f 783//2911 368//2911 366//2911
+f 97//2912 604//2912 98//2912
+f 99//2913 98//2913 604//2913
+f 569//2914 568//2914 484//2914
+f 541//2915 516//2915 566//2915
+f 451//2916 414//2916 570//2916
+f 104//2917 408//2917 38//2917
+f 378//2918 377//2918 380//2918
+f 354//2919 56//2919 55//2919
+f 307//2920 265//2920 48//2920
+f 228//2921 25//2921 28//2921
+f 1024//2922 1025//2922 209//2922
+f 211//2923 212//2923 214//2923
+f 1025//2924 61//2924 24//2924
+f 24//2925 23//2925 207//2925
+f 193//2926 20//2926 1014//2926
+f 191//2927 14//2927 20//2927
+f 15//2928 57//2928 16//2928
+f 1026//2929 1027//2929 11//2929
+f 1028//2930 1157//2930 1029//2930
+f 1031//2931 1073//2931 1032//2931
+f 1033//2932 1926//2932 1031//2932
+f 1030//2933 1961//2933 1034//2933
+f 1035//2934 1037//2934 1039//2934
+f 1040//2935 1898//2935 1041//2935
+f 1041//2936 1183//2936 1043//2936
+f 1052//2937 1053//2937 1351//2937
+f 1054//2938 1059//2938 1055//2938
+f 1054//2939 1057//2939 1058//2939
+f 1071//2940 55//2940 56//2940
+f 1073//2941 1969//2941 1074//2941
+f 61//2942 1038//2942 59//2942
+f 65//2943 1077//2943 1076//2943
+f 68//2944 70//2944 1079//2944
+f 1080//2945 1079//2945 70//2945
+f 72//2946 1081//2946 1080//2946
+f 74//2947 1082//2947 73//2947
+f 75//2948 1083//2948 1082//2948
+f 65//2949 1076//2949 1083//2949
+f 1084//2950 1085//2950 1077//2950
+f 1144//2951 1330//2951 1087//2951
+f 1087//2952 1145//2952 1144//2952
+f 1088//2953 1330//2953 1144//2953
+f 1088//2954 1143//2954 1089//2954
+f 1089//2955 1142//2955 1090//2955
+f 1090//2956 1333//2956 1332//2956
+f 1090//2957 1140//2957 1139//2957
+f 1091//2958 1333//2958 1090//2958
+f 1090//2959 1139//2959 1091//2959
+f 1094//2960 1336//2960 1093//2960
+f 1093//2961 1137//2961 1094//2961
+f 1337//2962 1134//2962 1095//2962
+f 1095//2963 1133//2963 1096//2963
+f 1096//2964 1342//2964 1095//2964
+f 1099//2965 1060//2965 1098//2965
+f 1098//2966 1131//2966 1099//2966
+f 1099//2967 1131//2967 1056//2967
+f 1100//2968 1059//2968 1102//2968
+f 1103//2969 1345//2969 1101//2969
+f 1102//2970 1059//2970 1058//2970
+f 1106//2971 1123//2971 1108//2971
+f 1108//2972 1109//2972 1349//2972
+f 1109//2973 1118//2973 1111//2973
+f 1111//2974 1117//2974 1049//2974
+f 1049//2975 1053//2975 1110//2975
+f 1048//2976 1113//2976 1112//2976
+f 1116//2977 1117//2977 1354//2977
+f 1118//2978 1117//2978 1111//2978
+f 1109//2979 1121//2979 1118//2979
+f 1121//2980 1356//2980 1118//2980
+f 1109//2981 1108//2981 1121//2981
+f 1121//2982 1108//2982 1123//2982
+f 1123//2983 1106//2983 1125//2983
+f 1126//2984 1128//2984 1124//2984
+f 1127//2985 1129//2985 1128//2985
+f 1126//2986 1051//2986 1057//2986
+f 1127//2987 1130//2987 1129//2987
+f 1127//2988 1057//2988 1056//2988
+f 1127//2989 1056//2989 1131//2989
+f 1133//2990 1360//2990 1097//2990
+f 1133//2991 1095//2991 1134//2991
+f 1135//2992 1366//2992 1134//2992
+f 1134//2993 1337//2993 1135//2993
+f 1138//2994 1092//2994 1139//2994
+f 1140//2995 1370//2995 1139//2995
+f 1141//2996 1372//2996 1140//2996
+f 1140//2997 1090//2997 1142//2997
+f 1142//2998 1089//2998 1143//2998
+f 1144//2999 1376//2999 1143//2999
+f 1143//3000 1088//3000 1144//3000
+f 66//3001 1146//3001 1084//3001
+f 1147//3002 1146//3002 143//3002
+f 1409//3003 1410//3003 469//3003
+f 470//3004 1440//3004 1148//3004
+f 147//3005 1440//3005 470//3005
+f 1443//3006 1442//3006 149//3006
+f 1475//3007 1443//3007 149//3007
+f 530//3008 1474//3008 1475//3008
+f 150//3009 1473//3009 1474//3009
+f 150//3010 152//3010 1473//3010
+f 531//87 1476//87 152//87
+f 153//1084 1498//1084 1476//1084
+f 158//3011 159//3011 156//3011
+f 163//3012 1149//3012 161//3012
+f 166//3013 167//3013 165//3013
+f 168//3014 1150//3014 167//3014
+f 178//3015 179//3015 176//3015
+f 182//3016 1152//3016 1151//3016
+f 185//3017 1153//3017 184//3017
+f 187//3018 1155//3018 1153//3018
+f 187//3019 189//3019 1154//3019
+f 190//3020 1156//3020 1154//3020
+f 11//3021 1027//3021 1156//3021
+f 1027//3022 1157//3022 1156//3022
+f 1157//3023 1027//3023 1026//3023
+f 1026//3024 1158//3024 1157//3024
+f 1026//3025 12//3025 192//3025
+f 192//3026 194//3026 1159//3026
+f 194//3027 195//3027 1160//3027
+f 195//3028 197//3028 1161//3028
+f 197//3029 199//3029 1162//3029
+f 199//3030 200//3030 1163//3030
+f 200//3031 201//3031 1164//3031
+f 201//3032 202//3032 1165//3032
+f 202//3033 203//3033 1165//3033
+f 203//3034 204//3034 1166//3034
+f 204//3035 60//3035 1166//3035
+f 1166//3036 59//3036 1039//3036
+f 1039//3037 1962//3037 1166//3037
+f 1036//3038 1168//3038 1167//3038
+f 1168//3039 1036//3039 1035//3039
+f 1168//3040 1170//3040 1169//3040
+f 1170//3041 1168//3041 1171//3041
+f 1170//3042 1173//3042 1172//3042
+f 1173//3043 1170//3043 1174//3043
+f 1175//3044 1176//3044 1173//3044
+f 216//3045 1958//3045 1176//3045
+f 1176//3046 214//3046 216//3046
+f 217//3047 1177//3047 216//3047
+f 64//3048 63//3048 1177//3048
+f 63//3049 1075//3049 1178//3049
+f 1075//3050 1179//3050 1178//3050
+f 1075//3051 1181//3051 1179//3051
+f 1181//3052 1184//3052 1183//3052
+f 1185//3053 1186//3053 1043//3053
+f 1186//3054 1187//3054 1040//3054
+f 1187//3055 1188//3055 1042//3055
+f 1188//3056 1191//3056 1190//3056
+f 1191//3057 1188//3057 1192//3057
+f 1193//3058 1195//3058 1194//3058
+f 1197//3059 1200//3059 1199//3059
+f 1200//3060 1197//3060 1201//3060
+f 1204//3061 1200//3061 1205//3061
+f 1204//3062 1206//3062 1905//3062
+f 1204//3063 1205//3063 1206//3063
+f 1207//3064 1235//3064 1209//3064
+f 1208//3065 1209//3065 1210//3065
+f 1210//3066 1811//3066 1852//3066
+f 1210//3067 1211//3067 1213//3067
+f 1211//3068 1232//3068 1214//3068
+f 1215//3069 1812//3069 1212//3069
+f 1214//3070 1216//3070 1217//3070
+f 1217//3071 1814//3071 1214//3071
+f 1217//3072 1216//3072 1218//3072
+f 1218//3073 1815//3073 1217//3073
+f 1218//3074 1220//3074 1219//3074
+f 1063//3075 1224//3075 1222//3075
+f 1222//3076 1221//3076 1226//3076
+f 1221//3077 1220//3077 1227//3077
+f 1229//3078 1216//3078 1231//3078
+f 1216//3079 1214//3079 1232//3079
+f 1233//3080 1270//3080 1231//3080
+f 1232//3081 1211//3081 1234//3081
+f 1234//3082 1209//3082 1235//3082
+f 1211//3083 1210//3083 1209//3083
+f 1235//3084 1207//3084 1206//3084
+f 1203//3085 1205//3085 1200//3085
+f 1203//3086 1201//3086 1238//3086
+f 1201//3087 1239//3087 1240//3087
+f 1239//3088 1196//3088 1240//3088
+f 1239//3089 1201//3089 1197//3089
+f 1196//3090 1242//3090 1241//3090
+f 1193//3091 1192//3091 1242//3091
+f 1192//3092 1193//3092 1191//3092
+f 1192//3093 1188//3093 1243//3093
+f 1243//3094 1187//3094 1186//3094
+f 1244//3095 1185//3095 1245//3095
+f 1246//3096 1285//3096 1245//3096
+f 1246//3097 1180//3097 1247//3097
+f 1180//3098 62//3098 286//3098
+f 286//3099 1247//3099 1180//3099
+f 287//3100 288//3100 1247//3100
+f 288//3101 289//3101 1249//3101
+f 1251//3102 1252//3102 1253//3102
+f 1252//3103 1296//3103 1253//3103
+f 1254//3104 1255//3104 1253//3104
+f 1255//3105 1254//3105 1256//3105
+f 1258//3106 1260//3106 1261//3106
+f 1266//3107 1061//3107 1265//3107
+f 1266//3108 1226//3108 1221//3108
+f 1266//3109 1227//3109 1228//3109
+f 1228//3110 1230//3110 1268//3110
+f 1269//3111 1292//3111 1268//3111
+f 1268//3112 1230//3112 1269//3112
+f 1230//3113 1231//3113 1269//3113
+f 1270//3114 1292//3114 1269//3114
+f 1269//3115 1231//3115 1270//3115
+f 1233//3116 1272//3116 1271//3116
+f 1272//3117 1274//3117 1271//3117
+f 1233//3118 1236//3118 1273//3118
+f 1273//3119 1275//3119 1274//3119
+f 1237//3120 1238//3120 1275//3120
+f 1278//3121 1238//3121 1201//3121
+f 1240//3122 1241//3122 1280//3122
+f 1241//3123 1281//3123 1280//3123
+f 1242//3124 1282//3124 1281//3124
+f 1242//3125 1192//3125 1243//3125
+f 1282//3126 1243//3126 1244//3126
+f 1285//3127 1248//3127 1284//3127
+f 1248//3128 1249//3128 1250//3128
+f 1284//3129 1250//3129 1283//3129
+f 1281//3130 1282//3130 1283//3130
+f 1283//3131 1286//3131 1280//3131
+f 1287//3132 1278//3132 1279//3132
+f 1278//3133 1257//3133 1277//3133
+f 1288//3134 1274//3134 1275//3134
+f 1289//3135 1271//3135 1274//3135
+f 1292//3136 1270//3136 1271//3136
+f 7//3137 1268//3137 1292//3137
+f 8//3138 1268//3138 7//3138
+f 1266//3139 8//3139 1061//3139
+f 1262//3140 1263//3140 7//3140
+f 1290//3141 1260//3141 1294//3141
+f 1289//3142 1261//3142 1260//3142
+f 1288//3143 1255//3143 1261//3143
+f 1276//3144 1257//3144 1255//3144
+f 1251//3145 1253//3145 1257//3145
+f 1287//3146 1279//3146 1286//3146
+f 1267//3147 1293//3147 1063//3147
+f 1267//3148 1226//3148 1265//3148
+f 1294//3149 1817//3149 1263//3149
+f 1263//3150 1262//3150 1294//3150
+f 1256//3151 1254//3151 1295//3151
+f 1254//3152 1253//3152 1296//3152
+f 1252//3153 31//3153 1296//3153
+f 1296//3154 32//3154 337//3154
+f 340//3155 1819//3155 1295//3155
+f 343//3156 344//3156 342//3156
+f 347//3157 6//3157 346//3157
+f 904//3158 349//3158 1297//3158
+f 350//3159 55//3159 1071//3159
+f 1299//3160 1300//3160 1301//3160
+f 1848//3161 1301//3161 1321//3161
+f 1069//3162 1849//3162 1848//3162
+f 1069//3163 1303//3163 1302//3163
+f 1305//3164 1303//3164 1304//3164
+f 1305//3165 1302//3165 1303//3165
+f 1065//3166 1305//3166 1304//3166
+f 1306//3167 1302//3167 1305//3167
+f 1307//3168 1302//3168 1306//3168
+f 1306//3169 1064//3169 1308//3169
+f 1064//3170 1310//3170 1309//3170
+f 1310//3171 1064//3171 1065//3171
+f 1310//3172 1065//3172 1312//3172
+f 1065//3173 1304//3173 1312//3173
+f 1312//3174 1314//3174 1313//3174
+f 1304//3175 1316//3175 1314//3175
+f 1303//3176 1067//3176 1316//3176
+f 1316//3177 1304//3177 1303//3177
+f 1067//3178 1317//3178 1316//3178
+f 1319//3179 1620//3179 1317//3179
+f 1067//3180 1066//3180 1318//3180
+f 1320//3181 1066//3181 1321//3181
+f 1321//3182 1323//3182 1320//3182
+f 1301//3183 1300//3183 68//3183
+f 1299//3184 1072//3184 1300//3184
+f 1298//3185 1070//3185 1072//3185
+f 1072//3186 1299//3186 1298//3186
+f 1078//3187 1324//3187 1323//3187
+f 1325//3188 1080//3188 1081//3188
+f 73//3189 1326//3189 1081//3189
+f 1327//3190 1083//3190 1076//3190
+f 1077//3191 1086//3191 1076//3191
+f 1088//3192 1584//3192 1330//3192
+f 1331//3193 1089//3193 1332//3193
+f 1334//3194 1091//3194 1335//3194
+f 1335//3195 1093//3195 1336//3195
+f 1336//3196 1094//3196 1337//3196
+f 1338//3197 1095//3197 1342//3197
+f 1342//3198 1096//3198 1340//3198
+f 1060//3199 1341//3199 1340//3199
+f 1340//3200 1098//3200 1060//3200
+f 1341//3201 1100//3201 1101//3201
+f 1060//3202 1055//3202 1100//3202
+f 1341//3203 1343//3203 1342//3203
+f 1101//3204 1344//3204 1343//3204
+f 1103//3205 1347//3205 1345//3205
+f 1105//3206 1107//3206 1349//3206
+f 1110//3207 1053//3207 1052//3207
+f 1114//3208 1351//3208 1053//3208
+f 1053//3209 1112//3209 1114//3209
+f 1114//3210 1546//3210 1351//3210
+f 1114//3211 1113//3211 1352//3211
+f 1115//3212 1116//3212 1353//3212
+f 1353//3213 1354//3213 1526//3213
+f 1117//3214 1119//3214 1355//3214
+f 1355//3215 1354//3215 1117//3215
+f 1357//3216 1128//3216 1129//3216
+f 1358//3217 1129//3217 1130//3217
+f 1130//3218 1391//3218 1358//3218
+f 1391//3219 1131//3219 1132//3219
+f 1133//3220 1362//3220 1361//3220
+f 1362//3221 1133//3221 1364//3221
+f 1364//3222 1134//3222 1366//3222
+f 1367//3223 1386//3223 1366//3223
+f 1366//3224 1135//3224 1136//3224
+f 1369//3225 1383//3225 1368//3225
+f 1138//3226 1139//3226 1370//3226
+f 1370//3227 1372//3227 1371//3227
+f 1370//3228 1140//3228 1372//3228
+f 1373//3229 1380//3229 1372//3229
+f 1372//3230 1141//3230 1373//3230
+f 1141//3231 1142//3231 1374//3231
+f 1376//3232 1377//3232 1375//3232
+f 1374//3233 1143//3233 1376//3233
+f 1376//3234 1144//3234 1145//3234
+f 1147//3235 1410//3235 1377//3235
+f 1375//3236 1378//3236 1379//3236
+f 1379//3237 1407//3237 1380//3237
+f 1382//3238 1383//3238 1369//3238
+f 1383//3239 1382//3239 1384//3239
+f 1383//3240 1385//3240 1368//3240
+f 1365//3241 1366//3241 1386//3241
+f 1386//3242 1387//3242 1365//3242
+f 1388//3243 1389//3243 1363//3243
+f 1389//3244 1361//3244 1362//3244
+f 1132//3245 1360//3245 1359//3245
+f 1359//3246 1391//3246 1132//3246
+f 1392//3247 1518//3247 1394//3247
+f 1518//3248 1392//3248 1517//3248
+f 1517//3249 1393//3249 1395//3249
+f 1391//3250 1359//3250 1396//3250
+f 1359//3251 1390//3251 1422//3251
+f 1390//3252 1359//3252 1360//3252
+f 1361//3253 1389//3253 1397//3253
+f 1388//3254 1400//3254 1399//3254
+f 1400//3255 1388//3255 1365//3255
+f 1384//3256 1415//3256 1404//3256
+f 1382//3257 1381//3257 1405//3257
+f 1380//3258 1407//3258 1406//3258
+f 1407//3259 1379//3259 1378//3259
+f 1409//3260 1377//3260 1410//3260
+f 1410//3261 1147//3261 145//3261
+f 1406//3262 1407//3262 1411//3262
+f 1413//3263 1405//3263 1381//3263
+f 1413//3264 1439//3264 1414//3264
+f 1405//3265 1414//3265 1415//3265
+f 1415//3266 1384//3266 1405//3266
+f 1415//3267 1436//3267 1416//3267
+f 1416//3268 1404//3268 1415//3268
+f 1416//3269 1403//3269 1404//3269
+f 1419//3270 1399//3270 1400//3270
+f 1399//3271 1419//3271 1420//3271
+f 1426//3272 1396//3272 1359//3272
+f 1423//1351 1395//1351 1393//1351
+f 1427//3273 1426//3273 1422//3273
+f 1399//3274 1420//3274 1430//3274
+f 1419//3275 1432//3275 1431//3275
+f 1418//3276 1417//3276 1433//3276
+f 1417//3277 1418//3277 1403//3277
+f 1436//3278 1414//3278 1438//3278
+f 1436//3279 1415//3279 1414//3279
+f 1442//3280 1438//3280 1439//3280
+f 1439//3281 1413//3281 1412//3281
+f 1440//3282 1411//3282 1148//3282
+f 147//3283 148//3283 1441//3283
+f 1441//3284 1412//3284 147//3284
+f 1443//3285 1437//3285 1438//3285
+f 1444//3286 1435//3286 1437//3286
+f 1435//3287 1444//3287 1445//3287
+f 1445//3288 1434//3288 1435//3288
+f 1446//3289 1431//3289 1432//3289
+f 1431//3290 1446//3290 1448//3290
+f 1448//3291 1449//3291 1431//3291
+f 1449//3292 1448//3292 1450//3292
+f 1449//3293 1430//3293 1420//3293
+f 1430//3294 1449//3294 1450//3294
+f 1451//3295 1429//3295 1421//3295
+f 1429//3296 1451//3296 1452//3296
+f 1453//3297 1454//3297 1428//3297
+f 1454//3298 1453//3298 1455//3298
+f 1454//3299 1456//3299 1427//3299
+f 1456//3300 1426//3300 1427//3300
+f 1423//3301 1426//3301 1457//3301
+f 1424//3302 1425//3302 1458//3302
+f 1425//3303 1459//3303 1458//3303
+f 1423//3304 1457//3304 1459//3304
+f 1459//3305 1425//3305 1423//3305
+f 1456//3306 1454//3306 1460//3306
+f 1456//3307 1457//3307 1426//3307
+f 1454//3308 1455//3308 1460//3308
+f 1453//3309 1452//3309 1461//3309
+f 1452//3310 1463//3310 1462//3310
+f 1452//3311 1453//3311 1429//3311
+f 1451//3312 1450//3312 1463//3312
+f 1463//3313 1452//3313 1451//3313
+f 1450//3314 1467//3314 1466//3314
+f 1448//3315 1447//3315 1467//3315
+f 1467//3316 1450//3316 1448//3316
+f 1447//3317 1448//3317 1446//3317
+f 1446//3318 1470//3318 1469//3318
+f 1470//3319 1446//3319 1434//3319
+f 1445//3320 1472//3320 1471//3320
+f 1445//3321 1473//3321 1472//3321
+f 1444//3322 1474//3322 1473//3322
+f 1473//3323 1445//3323 1444//3323
+f 1444//3324 1475//3324 1474//3324
+f 152//3325 1472//3325 1473//3325
+f 152//3326 1471//3326 1472//3326
+f 1471//3327 152//3327 1476//3327
+f 1471//3328 1469//3328 1470//3328
+f 1478//3329 1468//3329 1469//3329
+f 1479//3330 1466//3330 1467//3330
+f 1466//3331 1479//3331 1480//3331
+f 1481//3332 1464//3332 1465//3332
+f 1482//3333 1461//3333 1462//3333
+f 1483//3334 1484//3334 1455//3334
+f 1484//3335 1460//3335 1455//3335
+f 1459//3336 1457//3336 1045//3336
+f 1458//3337 1459//3337 1045//3337
+f 1045//3338 1485//3338 1458//3338
+f 1488//3339 1045//3339 1457//3339
+f 1460//3340 1484//3340 1489//3340
+f 1484//3341 1483//3341 1490//3341
+f 1483//3342 1491//3342 1490//3342
+f 1491//3343 1483//3343 1461//3343
+f 1482//3344 1493//3344 1492//3344
+f 1493//3345 1482//3345 1464//3345
+f 1481//3346 1480//3346 1494//3346
+f 1480//3347 1481//3347 1466//3347
+f 1480//3348 1496//3348 1495//3348
+f 1477//3349 1498//3349 1497//3349
+f 1498//3350 1477//3350 1471//3350
+f 1497//3351 154//3351 155//3351
+f 1499//3352 1495//3352 1496//3352
+f 1495//3353 1499//3353 1500//3353
+f 1501//3354 1494//3354 1480//3354
+f 1494//3355 1501//3355 1502//3355
+f 1503//3356 1492//3356 1493//3356
+f 1492//3357 1503//3357 1504//3357
+f 1506//3358 1490//3358 1491//3358
+f 1490//3359 1506//3359 1507//3359
+f 1508//3360 1489//3360 1484//3360
+f 1489//3361 1508//3361 1509//3361
+f 1489//3362 1487//3362 1488//3362
+f 1510//3363 1509//3363 1511//3363
+f 1510//3364 1511//3364 1512//3364
+f 1487//3365 1510//3365 1513//3365
+f 1486//3366 1485//3366 1045//3366
+f 1047//3367 1521//3367 1120//3367
+f 1522//3368 1524//3368 1523//3368
+f 1524//3369 1657//3369 1525//3369
+f 1525//3370 1527//3370 1526//3370
+f 1527//3371 1529//3371 1528//3371
+f 1529//3372 1527//3372 1530//3372
+f 1531//3373 1534//3373 1533//3373
+f 1534//3374 1532//3374 1535//3374
+f 1535//3375 1536//3375 1534//3375
+f 1536//3376 1535//3376 1062//3376
+f 1537//3377 1555//3377 1538//3377
+f 1538//3378 1554//3378 1540//3378
+f 1539//3379 1549//3379 1538//3379
+f 1542//3380 1547//3380 1540//3380
+f 1540//3381 1541//3381 1542//3381
+f 1541//3382 1552//3382 1542//3382
+f 1544//3383 1550//3383 1348//3383
+f 1350//3384 1052//3384 1545//3384
+f 1052//3385 1351//3385 1545//3385
+f 1545//3386 1351//3386 1546//3386
+f 1547//3387 1543//3387 1544//3387
+f 1547//3388 1352//3388 1533//3388
+f 1352//3389 1115//3389 1353//3389
+f 1353//3390 1526//3390 1528//3390
+f 1524//3391 1526//3391 1354//3391
+f 1355//3392 1521//3392 1523//3392
+f 1523//3393 1354//3393 1355//3393
+f 1523//3394 1521//3394 1522//3394
+f 1529//3395 1548//3395 1352//3395
+f 1548//3396 1529//3396 1531//3396
+f 1534//3397 1538//3397 1549//3397
+f 1533//3398 1352//3398 1548//3398
+f 1539//3399 1540//3399 1547//3399
+f 1547//3400 1542//3400 1543//3400
+f 1551//3401 1347//3401 1104//3401
+f 1551//3402 1542//3402 1552//3402
+f 1550//3403 1543//3403 1542//3403
+f 1553//3404 1596//3404 1595//3404
+f 1554//3405 1597//3405 1553//3405
+f 1541//3406 1540//3406 1554//3406
+f 1554//3407 1538//3407 1555//3407
+f 1557//3408 1601//3408 1556//3408
+f 1555//3409 1537//3409 1536//3409
+f 1559//3410 1561//3410 1560//3410
+f 1561//3411 1559//3411 1562//3411
+f 1561//3412 1566//3412 1565//3412
+f 1567//3413 1570//3413 1569//3413
+f 1568//3414 1571//3414 1570//3414
+f 1571//3415 1572//3415 1570//3415
+f 1577//3416 1575//3416 1578//3416
+f 1324//3417 1580//3417 1577//3417
+f 1578//3418 1320//3418 1323//3418
+f 1580//3419 1324//3419 1079//3419
+f 1082//3420 1328//3420 1326//3420
+f 1328//3421 1082//3421 1083//3421
+f 1328//3422 1582//3422 1609//3422
+f 1086//3423 1583//3423 1329//3423
+f 1584//3424 1583//3424 1330//3424
+f 1584//3425 1088//3425 1331//3425
+f 1586//3426 1332//3426 1587//3426
+f 1587//3427 1613//3427 1612//3427
+f 1587//3428 1333//3428 1334//3428
+f 1334//3429 1604//3429 1614//3429
+f 1615//3430 1604//3430 1334//3430
+f 1335//3431 1336//3431 1588//3431
+f 1588//3432 1336//3432 1589//3432
+f 1590//3433 1618//3433 1589//3433
+f 1339//3434 1619//3434 1590//3434
+f 1343//3435 1592//3435 1591//3435
+f 1591//3436 1342//3436 1343//3436
+f 1592//3437 1343//3437 1344//3437
+f 1595//3438 1345//3438 1347//3438
+f 1347//3439 1551//3439 1595//3439
+f 1596//3440 1553//3440 1597//3440
+f 1598//3441 1619//3441 1594//3441
+f 1598//3442 1555//3442 1599//3442
+f 1597//3443 1554//3443 1555//3443
+f 1600//3444 1617//3444 1599//3444
+f 1599//3445 1556//3445 1600//3445
+f 1601//3446 1616//3446 1600//3446
+f 1602//3447 1616//3447 1601//3447
+f 1601//3448 1557//3448 1602//3448
+f 1602//3449 1558//3449 1603//3449
+f 1603//3450 1560//3450 1563//3450
+f 1565//3451 1563//3451 1561//3451
+f 1565//3452 1612//3452 1563//3452
+f 1566//3453 1569//3453 1605//3453
+f 1569//3454 1607//3454 1606//3454
+f 1607//3455 1570//3455 1572//3455
+f 1608//3456 1576//3456 1609//3456
+f 1576//3457 1579//3457 1610//3457
+f 1579//3458 1577//3458 1580//3458
+f 1580//3459 1325//3459 1579//3459
+f 1326//3460 1610//3460 1579//3460
+f 1610//3461 1326//3461 1328//3461
+f 1582//3462 1607//3462 1609//3462
+f 1583//3463 1611//3463 1606//3463
+f 1611//3464 1585//3464 1586//3464
+f 1613//3465 1587//3465 1614//3465
+f 1615//3466 1602//3466 1604//3466
+f 1615//3467 1335//3467 1588//3467
+f 1617//3468 1600//3468 1588//3468
+f 1588//3469 1589//3469 1617//3469
+f 1618//3470 1590//3470 1619//3470
+f 1593//3471 1594//3471 1619//3471
+f 1619//3472 1598//3472 1599//3472
+f 1604//3473 1603//3473 1613//3473
+f 1613//3474 1563//3474 1612//3474
+f 1612//3475 1565//3475 1605//3475
+f 1606//3476 1611//3476 1569//3476
+f 1609//3477 1607//3477 1608//3477
+f 1610//3478 1609//3478 1576//3478
+f 1619//3479 1339//3479 1591//3479
+f 1575//3480 1574//3480 1620//3480
+f 1568//3481 1623//3481 1622//3481
+f 1623//3482 1568//3482 1567//3482
+f 1564//3483 1562//3483 1624//3483
+f 1562//3484 1564//3484 1561//3484
+f 1559//3485 1660//3485 1562//3485
+f 1626//3486 1674//3486 1625//3486
+f 1625//3487 1062//3487 1626//3487
+f 1530//3488 1532//3488 1531//3488
+f 1522//3489 1520//3489 1656//3489
+f 1519//3490 1630//3490 1629//3490
+f 1485//3491 1514//3491 1632//3491
+f 1514//3492 1513//3492 1633//3492
+f 1513//3493 1514//3493 1486//3493
+f 1513//3494 1512//3494 1634//3494
+f 1512//3495 1513//3495 1510//3495
+f 1511//3496 1636//3496 1635//3496
+f 1509//3497 1637//3497 1636//3497
+f 1508//3498 1507//3498 1637//3498
+f 1507//3499 1638//3499 1637//3499
+f 1506//3500 1505//3500 1638//3500
+f 1638//3501 1507//3501 1506//3501
+f 1504//3502 1505//3502 1492//3502
+f 1503//3503 1502//3503 1504//3503
+f 1502//3504 1642//3504 1641//3504
+f 1499//3505 159//3505 1500//3505
+f 1500//3506 159//3506 161//3506
+f 1149//3507 1641//3507 1642//3507
+f 1641//3508 1149//3508 1643//3508
+f 1644//3509 1640//3509 1504//3509
+f 1640//3510 1644//3510 1645//3510
+f 1645//3511 1639//3511 1640//3511
+f 1639//3512 1637//3512 1638//3512
+f 1637//3513 1639//3513 1646//3513
+f 1646//3514 1636//3514 1637//3514
+f 1647//3515 1635//3515 1636//3515
+f 1649//3516 1651//3516 1635//3516
+f 1651//3517 1634//3517 1512//3517
+f 1634//3518 1651//3518 1652//3518
+f 1653//3519 1633//3519 1513//3519
+f 1633//3520 1653//3520 1654//3520
+f 1655//3521 1632//3521 1514//3521
+f 1515//3522 1681//3522 1516//3522
+f 1680//3523 1630//3523 1516//3523
+f 1656//3524 1628//3524 1522//3524
+f 1677//3525 1530//3526 1525//3527
+f 1627//3528 1535//3528 1530//3528
+f 1658//3529 1626//3529 1535//3529
+f 1661//3530 1624//3530 1562//3530
+f 1624//3531 1661//3531 1662//3531
+f 1664//3532 1622//3532 1623//3532
+f 1622//3533 1665//3533 1666//3533
+f 1666//3534 1621//3534 1622//3534
+f 1621//3535 1666//3535 1667//3535
+f 1667//3536 1668//3536 1621//3536
+f 1668//3537 1620//3537 1574//3537
+f 1620//3538 1668//3538 1669//3538
+f 1668//3539 1667//3539 1670//3539
+f 1670//3540 1726//3540 1671//3540
+f 1670//3541 1667//3541 1672//3541
+f 1672//3542 1723//3542 1670//3542
+f 1665//3543 1721//3543 1672//3543
+f 1663//3544 1720//3544 1665//3544
+f 1661//3545 1673//3545 1662//3545
+f 1673//3546 1661//3546 1660//3546
+f 1674//3547 1659//3547 1675//3547
+f 1659//3548 1677//3548 1676//3548
+f 1677//3549 1659//3549 1627//3549
+f 1677//3550 1627//3550 1530//3550
+f 1628//3551 1713//3551 1715//3551
+f 1713//3552 1628//3552 1656//3552
+f 1679//3553 1656//3553 1629//3553
+f 1680//3554 1516//3554 1681//3554
+f 1631//3555 1632//3555 1683//3555
+f 1632//3556 1655//3556 1684//3556
+f 1685//3557 1654//3557 1686//3557
+f 1654//3558 1685//3558 1633//3558
+f 1653//3559 1652//3559 1687//3559
+f 1651//3560 1650//3560 1688//3560
+f 1650//3561 1651//3561 1649//3561
+f 1648//3562 1691//3562 1689//3562
+f 1646//3563 1693//3563 1690//3563
+f 1690//3564 1647//3564 1646//3564
+f 1692//3565 1646//3565 1639//3565
+f 1645//3566 1694//3566 1692//3566
+f 1692//3567 1639//3567 1645//3567
+f 1644//3568 1643//3568 1694//3568
+f 1694//3569 1645//3569 1644//3569
+f 1149//3570 163//3570 165//3570
+f 1643//3571 165//3571 167//3571
+f 1150//3572 1693//3572 1694//3572
+f 1693//3573 1150//3573 1695//3573
+f 1692//3574 1694//3574 1693//3574
+f 1693//3575 1695//3575 1696//3575
+f 1696//3576 1690//3576 1693//3576
+f 1696//3577 1695//3577 1697//3577
+f 1691//3578 1697//3578 1698//3578
+f 1700//3579 1688//3579 1650//3579
+f 1688//3580 1700//3580 1701//3580
+f 1702//3581 1687//3581 1652//3581
+f 1687//3582 1702//3582 1703//3582
+f 1704//3583 1686//3583 1654//3583
+f 1686//3584 1704//3584 1705//3584
+f 1705//3585 1706//3585 1686//3585
+f 1706//3586 1684//3586 1685//3586
+f 1684//3587 1706//3587 1707//3587
+f 1709//3588 1710//3588 1683//3588
+f 1710//3589 1711//3589 1683//3589
+f 1711//3590 1682//3590 1681//3590
+f 1716//3591 1678//3591 1628//3591
+f 1717//3592 1765//3592 1677//3592
+f 1765//3593 1676//3593 1677//3593
+f 1763//3594 1675//3594 1659//3594
+f 1675//3595 1673//3595 1674//3595
+f 1673//3596 1675//3596 1718//3596
+f 1718//3597 1662//3597 1673//3597
+f 1720//3598 1663//3598 1719//3598
+f 1721//3599 1758//3599 1722//3599
+f 1721//3600 1665//3600 1720//3600
+f 1722//3601 1672//3601 1721//3601
+f 1723//3602 1672//3602 1722//3602
+f 1723//3603 1756//3603 1724//3603
+f 1724//3604 1670//3604 1723//3604
+f 1724//3605 1725//3605 1726//3605
+f 1726//3606 1670//3606 1724//3606
+f 1726//3607 1728//3607 1727//3607
+f 1316//3608 1317//3608 1671//3608
+f 1727//3609 1728//3609 1313//3609
+f 1728//3610 1729//3610 1313//3610
+f 1729//3611 1731//3611 1730//3611
+f 1730//3612 1732//3612 1310//3612
+f 1309//3613 1734//3613 1735//3613
+f 1736//3614 1737//3614 1308//3614
+f 1737//3615 1736//3615 1738//3615
+f 1737//3616 1740//3616 1739//3616
+f 1742//3617 1827//3617 1740//3617
+f 1740//3618 1737//3618 1743//3618
+f 1737//3619 1738//3619 1743//3619
+f 1743//3620 1746//3620 1745//3620
+f 1738//3621 1747//3621 1746//3621
+f 1735//3622 1748//3622 1747//3622
+f 1734//3623 1749//3623 1748//3623
+f 1750//3624 1813//3624 1749//3624
+f 1751//3625 1813//3625 1750//3625
+f 1733//3626 1732//3626 1751//3626
+f 1751//3627 1731//3627 1752//3627
+f 1731//3628 1729//3628 1753//3628
+f 1729//3629 1728//3629 1754//3629
+f 1728//3630 1726//3630 1725//3630
+f 1756//3631 1723//3631 1758//3631
+f 1723//3632 1722//3632 1758//3632
+f 1759//3633 1803//3633 1758//3633
+f 1758//3634 1721//3634 1760//3634
+f 1720//3635 1761//3635 1760//3635
+f 1760//3636 1721//3636 1720//3636
+f 1761//3637 1720//3637 1719//3637
+f 1719//3638 1762//3638 1761//3638
+f 1718//3639 1763//3639 1762//3639
+f 1763//3640 1718//3640 1675//3640
+f 1763//3641 1676//3641 1764//3641
+f 1766//3642 1768//3642 1767//3642
+f 1678//3643 1716//3643 1768//3643
+f 1768//3644 1717//3644 1678//3644
+f 1714//3645 1715//3645 1713//3645
+f 1713//3646 1769//3646 1714//3646
+f 1679//3647 1712//3647 1769//3647
+f 1769//3648 1713//3648 1679//3648
+f 1712//3649 1679//3649 1680//3649
+f 1712//3650 1711//3650 1770//3650
+f 1711//3651 1712//3651 1682//3651
+f 1709//3652 1708//3652 1772//3652
+f 1708//3653 1774//3653 1773//3653
+f 1708//3654 1707//3654 1774//3654
+f 1707//3655 1776//3655 1775//3655
+f 1707//3656 1708//3656 1684//3656
+f 1776//3657 1777//3657 1786//3657
+f 1776//3658 1707//3658 1706//3658
+f 1705//3659 1778//3659 1777//3659
+f 1704//3660 1703//3660 1778//3660
+f 1778//3661 1705//3661 1704//3661
+f 1702//3662 1701//3662 1780//3662
+f 1701//3663 1782//3663 1781//3663
+f 1699//3664 1698//3664 1783//3664
+f 1698//3665 1699//3665 1691//3665
+f 1698//3666 173//3666 174//3666
+f 1697//3667 172//3667 173//3667
+f 1697//3668 171//3668 172//3668
+f 1695//3669 170//3669 171//3669
+f 1695//3670 169//3670 170//3670
+f 1783//3671 174//3671 175//3671
+f 1784//3672 1781//3672 1782//3672
+f 1781//3673 1780//3673 1701//3673
+f 1780//3674 1779//3674 1703//3674
+f 1779//3675 1777//3675 1778//3675
+f 1787//3676 1775//3676 1786//3676
+f 1775//3677 1787//3677 1788//3677
+f 1788//3678 1773//3678 1775//3678
+f 1773//3679 1788//3679 1875//3679
+f 1790//3680 1771//3680 1772//3680
+f 1771//3681 1790//3681 1791//3681
+f 1770//3682 1769//3682 1712//3682
+f 1714//3683 1793//3683 1794//3683
+f 1715//3684 1794//3684 1868//3684
+f 1868//3685 1768//3685 1715//3685
+f 1768//3686 1795//3686 1767//3686
+f 1798//3687 1764//3687 1765//3687
+f 1799//3688 1762//3688 1763//3688
+f 1799//3689 1800//3689 1762//3689
+f 1800//3690 1761//3690 1762//3690
+f 1802//3691 1803//3691 1759//3691
+f 1803//3692 1802//3692 1804//3692
+f 1757//3693 1758//3693 1803//3693
+f 1805//3694 1804//3694 1806//3694
+f 1755//3695 1756//3695 1757//3695
+f 1806//3696 1808//3696 1807//3696
+f 1809//3697 1807//3697 1808//3697
+f 1808//3698 1811//3698 1809//3698
+f 1753//3699 1754//3699 1807//3699
+f 1807//3700 1810//3700 1753//3700
+f 1810//3701 1809//3701 1811//3701
+f 1810//3702 1212//3702 1812//3702
+f 1752//3703 1753//3703 1810//3703
+f 1810//3704 1812//3704 1752//3704
+f 1752//3705 1812//3705 1751//3705
+f 1813//3706 1751//3706 1812//3706
+f 1812//3707 1215//3707 1813//3707
+f 1215//3708 1214//3708 1814//3708
+f 1814//3709 1217//3709 1815//3709
+f 1748//3710 1749//3710 1813//3710
+f 1815//3711 1218//3711 1219//3711
+f 1815//3712 1747//3712 1748//3712
+f 1219//3713 1747//3713 1815//3713
+f 1219//3714 1746//3714 1747//3714
+f 1220//3715 1745//3715 1746//3715
+f 1744//3716 1222//3716 1224//3716
+f 1223//3717 1816//3717 1824//3717
+f 1225//3718 1822//3718 1816//3718
+f 1225//3719 1293//3719 1822//3719
+f 1264//3720 1263//3720 1817//3720
+f 1817//3721 1294//3721 1818//3721
+f 1819//3722 1259//3722 1258//3722
+f 1254//3723 338//3723 1295//3723
+f 338//3724 1254//3724 1296//3724
+f 341//3725 1259//3725 1819//3725
+f 1818//3726 342//3726 1817//3726
+f 1817//3727 1839//3727 1264//3727
+f 1267//3728 1842//3728 1293//3728
+f 1825//3729 1828//3729 1827//3729
+f 1223//3730 1824//3730 1826//3730
+f 1826//3731 1742//3731 1224//3731
+f 1828//3732 1832//3732 1829//3732
+f 1829//3733 1831//3733 1830//3733
+f 1829//3734 1830//3734 1741//3734
+f 1831//3735 1829//3735 1832//3735
+f 1830//3736 1831//3736 1833//3736
+f 1830//3737 1307//3737 1741//3737
+f 1307//3738 1830//3738 1302//3738
+f 1307//3739 1306//3739 1739//3739
+f 1833//3740 1831//3740 1834//3740
+f 1832//3741 1828//3741 1845//3741
+f 1828//3742 1825//3742 1835//3742
+f 1835//3743 1824//3743 1836//3743
+f 1836//3744 1816//3744 1837//3744
+f 1822//3745 1838//3745 1823//3745
+f 1265//3746 1840//3746 1841//3747
+f 1820//3748 1264//3748 1839//3748
+f 1839//3749 1817//3749 342//3749
+f 342//3750 344//3750 1839//3750
+f 344//3751 345//3751 1839//3751
+f 1839//3752 6//3752 1840//3752
+f 1840//3753 6//3754 1841//3755
+f 1823//3756 1838//3756 1843//3756
+f 1837//3757 1823//3757 1843//3757
+f 1837//3758 1850//3758 1836//3758
+f 1845//3759 1846//3759 1832//3759
+f 1846//3760 1299//3760 1834//3760
+f 1847//3761 1848//3761 1849//3761
+f 1849//3762 1834//3762 1847//3762
+f 1849//3763 1069//3763 1302//3763
+f 1850//3764 1837//3764 1297//3764
+f 1297//3765 350//3765 1850//3765
+f 1297//3766 1843//3766 1851//3766
+f 1841//3767 347//3767 1842//3767
+f 6//3768 1839//3768 345//3768
+f 6//3769 347//3769 1841//3769
+f 348//3770 895//3770 1838//3770
+f 350//3771 1071//3771 1844//3771
+f 1844//3772 1850//3772 350//3772
+f 1070//3773 1298//3773 1846//3773
+f 1851//3774 1838//3774 895//3774
+f 1811//3775 1210//3775 1212//3775
+f 1212//3776 1810//3776 1811//3776
+f 1811//3777 1808//3777 1853//3777
+f 1808//3778 1806//3778 1855//3778
+f 1855//3779 1806//3779 1804//3779
+f 1804//3780 1802//3780 1857//3780
+f 1802//3781 1859//3781 1858//3781
+f 1859//3782 1802//3782 1759//3782
+f 1801//3783 1800//3783 1860//3783
+f 1799//3784 1798//3784 1862//3784
+f 1798//3785 1799//3785 1764//3785
+f 1864//3786 1866//3786 1865//3786
+f 1867//3787 1796//3787 1767//3787
+f 1795//3788 1894//3788 1867//3788
+f 1794//3789 1793//3789 1869//3789
+f 1793//3790 1870//3790 1869//3790
+f 1792//3791 1872//3791 1871//3791
+f 1872//3792 1792//3792 1770//3792
+f 1789//3793 1888//3793 1873//3793
+f 1874//3794 1886//3794 1789//3794
+f 1876//3795 1884//3795 1875//3795
+f 1788//3796 1787//3796 1877//3796
+f 1877//3797 1786//3797 1878//3797
+f 1779//3798 1879//3798 1878//3798
+f 1878//3799 1786//3799 1779//3799
+f 1785//3800 1781//3800 1880//3800
+f 176//3801 1781//3801 1784//3801
+f 1781//3802 176//3802 179//3802
+f 179//3803 1880//3803 1781//3803
+f 1880//3804 1879//3804 1785//3804
+f 1881//3805 1877//3805 1878//3805
+f 1877//3806 1882//3806 1883//3806
+f 1884//3807 1917//3807 1885//3807
+f 1884//3808 1885//3808 1874//3808
+f 1885//3809 1914//3809 1886//3809
+f 1874//3810 1875//3810 1884//3810
+f 1886//3811 1887//3811 1888//3811
+f 1888//3812 1911//3812 1889//3812
+f 1872//3813 1873//3813 1889//3813
+f 1889//3814 1871//3814 1872//3814
+f 1871//3815 1891//3815 1870//3815
+f 1891//3816 1871//3816 1892//3816
+f 1891//3817 1869//3817 1870//3817
+f 1869//3818 1868//3818 1794//3818
+f 1868//3819 1869//3819 1893//3819
+f 1894//3820 1795//3820 1868//3820
+f 1894//3821 1893//3821 1895//3821
+f 1867//3822 1894//3822 1896//3822
+f 1897//3823 1866//3823 1796//3823
+f 1863//3824 1862//3824 1798//3824
+f 1862//3825 1863//3825 1900//3825
+f 1861//3826 1862//3826 1900//3826
+f 1901//3827 1860//3827 1800//3827
+f 1860//3828 1859//3828 1801//3828
+f 1902//3829 1858//3829 1859//3829
+f 1903//3830 1856//3830 1857//3830
+f 1856//3831 1903//3831 1199//3831
+f 1904//3832 1856//3832 1905//3832
+f 1856//3833 1199//3833 1202//3833
+f 1905//3834 1202//3834 1204//3834
+f 1905//3835 1206//3835 1207//3835
+f 1903//3836 1198//3836 1199//3836
+f 1198//3837 1903//3837 1858//3837
+f 1902//3838 1194//3838 1195//3838
+f 1901//3839 1900//3839 1191//3839
+f 1900//3840 1899//3840 1190//3840
+f 1899//3841 1865//3841 1189//3841
+f 1899//3842 1900//3842 1863//3842
+f 1189//3843 1042//3843 1188//3843
+f 1906//3844 1898//3844 1897//3844
+f 1894//3845 1895//3845 1896//3845
+f 1893//3846 1891//3846 1907//3846
+f 1891//3847 1893//3847 1869//3847
+f 1890//3848 1892//3848 1871//3848
+f 1889//3849 1910//3849 1909//3849
+f 1908//3850 1890//3850 1871//3850
+f 1910//3851 1889//3851 1911//3851
+f 1911//3852 1887//3852 1913//3852
+f 1911//3853 1888//3853 1887//3853
+f 1913//3854 1924//3854 1911//3854
+f 1887//3855 1886//3855 1914//3855
+f 1914//3856 1885//3856 1917//3856
+f 1917//3857 1919//3857 1918//3857
+f 1883//3858 1920//3858 1919//3858
+f 1879//3859 1880//3859 1151//3859
+f 1920//3860 1882//3860 1881//3860
+f 1880//3861 180//3861 1151//3861
+f 1880//3862 179//3862 180//3862
+f 1921//3863 1919//3863 1920//3863
+f 1921//3864 1151//3864 1152//3864
+f 1921//3865 1918//3865 1919//3865
+f 1918//3866 1921//3866 1922//3866
+f 1922//3867 1916//3867 1918//3867
+f 1916//3868 1923//3868 1924//3868
+f 1923//3869 1965//3869 1925//3869
+f 1912//3870 1911//3870 1924//3870
+f 1924//3871 1926//3871 1912//3871
+f 1927//3872 1890//3872 1908//3872
+f 1928//3873 1929//3873 1892//3873
+f 1929//3874 1907//3874 1891//3874
+f 1929//3875 1928//3875 1931//3875
+f 1907//3876 1929//3876 1930//3876
+f 1930//3877 1895//3877 1893//3877
+f 1906//3878 1933//3878 1934//3878
+f 1934//3879 1041//3879 1898//3879
+f 1041//3880 1936//3880 1183//3880
+f 1935//3881 1937//3881 1179//3881
+f 1936//3882 1934//3882 1935//3882
+f 1934//3883 1938//3883 1935//3883
+f 1938//3884 1934//3884 1933//3884
+f 1933//3885 1932//3885 1938//3885
+f 1932//3886 1940//3886 1939//3886
+f 1931//3887 1942//3887 1941//3887
+f 1943//3888 1931//3888 1928//3888
+f 1946//3889 1927//3889 1909//3889
+f 1946//3890 1033//3890 1034//3890
+f 1948//3891 1945//3891 1944//3891
+f 1950//3892 1954//3892 1951//3892
+f 1951//3893 1943//3893 1945//3893
+f 1951//3894 1942//3894 1943//3894
+f 1953//3895 1942//3895 1951//3895
+f 1167//3896 1941//3896 1942//3896
+f 1956//3897 1937//3897 1935//3897
+f 1178//3898 1179//3898 1937//3898
+f 1958//3899 216//3899 1177//3899
+f 1173//3900 1176//3900 1958//3900
+f 1939//3901 1169//3901 1172//3901
+f 1955//3902 1938//3902 1939//3902
+f 1167//3903 1953//3903 1036//3903
+f 1954//3904 1950//3904 1163//3904
+f 1950//3905 1948//3905 1162//3905
+f 1948//3906 1947//3906 1161//3906
+f 1161//3907 1961//3907 1160//3907
+f 1947//3908 1034//3908 1961//3908
+f 1163//3909 1164//3909 1954//3909
+f 1164//3910 1165//3910 1959//3910
+f 1962//3911 1037//3911 1036//3911
+f 1033//3912 1912//3912 1926//3912
+f 1031//3913 1925//3913 1963//3913
+f 1963//3914 1965//3914 1964//3914
+f 1965//3915 1966//3915 1964//3915
+f 1965//3916 1923//3916 1966//3916
+f 1922//3917 1152//3917 184//3917
+f 1967//3918 184//3918 1153//3918
+f 1968//3919 1964//3919 1966//3919
+f 1969//3920 1155//3920 1154//3920
+f 1964//3921 1968//3921 1155//3921
+f 1154//3922 1074//3922 1969//3922
+f 1074//3923 1154//3923 1156//3923
+f 1968//3924 1153//3924 1155//3924
+f 1964//3925 1969//3925 1073//3925
+f 1784//3926 175//3926 176//3926
+f 1311//3927 1309//3927 1310//3927
+f 1310//3928 1312//3928 1730//3928
+f 1497//3929 155//3929 156//3929
+f 1442//3930 1441//3930 148//3930
+f 1518//3931 1357//3931 1394//3931
+f 1394//3932 1391//3932 1392//3932
+f 1357//3933 1518//3933 1046//3933
+f 1323//3934 1321//3934 1322//3934
+f 1285//3935 1246//3935 1247//3935
+f 1042//3936 1040//3936 1187//3936
+f 1184//3937 1043//3937 1183//3937
+f 214//3938 1176//3938 1175//3938
+f 214//3939 1175//3939 1174//3939
+f 1171//3940 1025//3940 1024//3940
+f 1171//3941 1174//3941 1170//3941
+f 1035//3942 59//3942 1038//3942
+f 1038//3943 61//3943 1025//3943
+f 1168//3944 1035//3944 1038//3944
+f 1961//3945 1030//3945 1159//3945
+f 1030//3946 1029//3946 1158//3946
+f 1051//3947 1050//3947 1058//3947
+f 1032//3948 1074//3948 1157//3948
diff --git a/oxAuth/Server/src/main/webapp/auth/bioid/video/nodyourhead.mp4 b/oxAuth/Server/src/main/webapp/auth/bioid/video/nodyourhead.mp4
new file mode 100644
index 0000000000000000000000000000000000000000..a76bf619cfab31f1e1c24e86b4422ec141f4cc2d
GIT binary patch
literal 2025294
zcmeGF2|&!>_dkw5qZCD(WC<fFEmN~EskARDQmL$&wI(yon3+~23Z)`s%@$b_LUt-k
z5@ky$g`&-#6cP2i&zYvp@Z$A(y}$3*`~RPLy{LIU&pr3t$36F)bI)Bs5Hy@AjNoy2
zI1B_n@K5ju4M8e}94<E$JYsV~1L^R)$3sf4fIo$hoPRPT?@$fNLGb_GpI%?U<38W5
zyD6pp)*pft1BHCb0`PK<aDk{!IZ)qK_z!p{<|a=-{7|@0J<{q`jD{e2lBlE}gDw<+
z-*gykfv}U893<k~zd>AfKoy71qJVb@4!x`GopOYrAi03~TGvG-tpn+7ekTtoltpJq
zeusaKb*Hd`Y208MgC|7zfR|i^I|J}VI8%b@Yz8PdAe_SrW&+Zop&W60dz8oa<V|6-
zV41r<Hf$C}fUu_sdvJpwJ-V2k4xP_{*}@+f9F-708zKIEfPz3sWrN?h3WNetw~C)b
z@sv;+=yuVkFQAZOGyu;Tyo3M1AGtv`K6VH@E~qd-{G{*S!#g^_BP`%*C+7|sc2q+;
z2H<CW!h8!k&88}(wY9aI3Z%`06e_iI8a+S{Onf&M0g4P42u1w^GlT`113{o)M9&2h
z4ElAxvjjf_1#}?~`~)ARzy04|l?BWv0>EgZY9L5b{~+)kmJ$Bh`AjYr&_#CA!9Rff
zr|$#Zwg99%Ajql;f)s{8&{IRu|1J=;BOii{hC<M$ZxEzv0zp|i5M*itL5v5W-^dWO
zv;=~5UBP$obI@1_S`-37;{XrpKJa}i1Z5_G@1Wc~@Vg2auUVku#{<5hA0cRPJOm{e
zf%oGfhzrKm5PJw(26!U&LQojcKUEb7I!=TjeIVP6fuQ_E2ucLXq4NfU!goQCW&s5G
zBOnN^4(LHYBQhW;7|?6hL(od_6Y&UwmVmmnK10y9)evMD2tnHWp?<FOL9?wveODmJ
zDGIdnDFm&L1@u@5;(<O>-U&g;?Lc2&f_lL7LAnsM@d5-**bG4tN5Ff4W$G~?*B1zi
z0_`273_-iVST(o=LCZl~27$KiSOUIl1GyBy_a+Ehn+f;>mDBTrAc!Oo(zxI!`~iK_
zNP^_ugpi_J6f|hz4QTMDJCGVT8q&0khlXnvK%+cq(3tI0Ko>U9x^-_hC=2>lq<i3}
z;$87~m?ivN_Wget51?QF|Jtu`yX8+v@w3-}pS=e96kr2Bef%s?c(J8}e@Z^0hmtQ4
zWZnHM{M#@5EO;v_D{myl&vwdj*dFRP9P0G5_C0-}fEyCrv#Rku{j9qO4&em|=zV={
z|J+Vrt0oZpS_zB)jGyg4t<%rW?&D`&L3l;!th*b)evlgc3^W@47%&8M0sKq<5fG#%
zuWqdc4FHh6HizV1ZB*!|p*BDc?xnt-awX_CxD>C4r&0pn;c8Snf5PQ}_Ypno-{U!4
zQ1Tqq)kUw^<2mpUUC)746;%d!_cQ6^@qiq1oX$VMn}~k@PyK}J`A_kd@cn;L$N$T^
z{)_GD<C*1&!y!e|8feg*U}*62XOP<Lb&%#nBs5&^5j4t52#s0!4jNOv9q5{Q2weyd
z8|@5l7k3E611OZa<bUvZNQSqU9c;R=DDZ7C_%;hxaS+f34Galk(Q_m36m8D1ZP>nW
zYs$J8S%)nqhw~`31q>mA$_QWuTk5{Qkf)1a(Jgg-@$M*ho*g5Q<s8XpctuY2rbRBG
zk?FdVtp-_yn}>6F9EOmB2<Nba1?J(Fx)eH>$}k7N!;j5$5h4=d0!v*R_yxkx-2;Tl
zd<Ft<N<h-kI1++LHboO~C@jGQfkC0kW+;*w8jD1s%~1q%JQ30P(X|?cu;9~~=AQPB
zot1%amb!sLA<x{*EG#U{Gz@FX<p-Fd$z;F;V}`*X0R>VJ5iF#HBZCFwVHRQ@_6z}y
z&*BML++YOElS1W&2rYGW!Fz<HB^+KC^I(Cgs8yykF2^jK!ZSmgqRjdb+q?gSoFgW;
zj|ir4STxaur&n2l(4NKlN!iY-1l|!mh8ZAZ1Pg%3pd~#76|$J!F!YiXej`m(_n(Q{
zSsjPdM?i;A08S^+y=stPAr{b+0Xz|(#&8H_1Pgn~C=hxwej=oF7J$4L13Ils03MjT
ziTasNGh?tB0284Av=ZG*W=aUqL}?N;!dYTW07b77yg;syD+uKNq}RJ%{{SeBFOXgp
zjlyB@DM&sg3@Km;g<xU`%h_9TU~#0E?h>?TU&9X_{JILzSUiep5YJ31Esf8h2)TS4
zA@?WR)q|j0E-;+U?ckCOFqdXn>cS%uiN+vNcyBbp976_!(ik3^D3Mq&wL6&eG9!LM
zjmGq)21bDnX6e64Z|`mnXA!uLd;q4WNFprC6eapdB<P}HG1&BJd^&?~sq4Y#2JjgI
z0V|Zzm&}6|&S2XJcnq2lFl2Epb<t+%9z>K7I*aQ?;qcg<72<H{?&gBZdJw?l5|k&n
z1Pl9eunVLF2Q%1W3NImp&*1hT5eO-Kp*I-NUNj0Du)ucV2`cD*DU!mA6$w`&Dh&^5
z^J#n*P<mK)V5hr8cXu~;2?j+$dd0=wQWtcMDT_rnCt)Z=0-8ccGKn-I5{Dwwkt7_I
zhGbIEWEz=3ppq#RiC}<*J(m^&4=I=h4Z}d8iF5*z#6(e%fC~|cAyUXlA|6c^cL5RG
zqbLvycn%7?Ckt2#I*@`!!BH4k0v<`jQqV{ogFrx%nK&#GL!goH3<8;qMqxy(=rnUC
zm(QU9gX3(9A>c$d8({(X0AT1Ld{L`Atsnd-l)?^y)s%!nVa37#`whPkh=E0$iA2>k
zgKfWr50B3cg1eu=?7;~n{Qx5lH<ZQbP2H`4a8HOzh-|ib7(kzl5%(NI{3sASLXmns
z3JGR`#_(XR>&>^Tn`vCSn5|fHAy5m)P7JUpSV>?45jvf1gDHH(4VSolctrMUBZV!}
zFDbmGl<WzE^xC_510`{034mpZ5J4(-s9ubP;&0-wY?g>40-yqXhdG5N)>Q!|ltC9a
zMDmK&LuJtf5*3FhP>~os3Xen+m=q+I0F;(aC*Z~UM(IRWQaUV<0fxX2HmaA^0o^W^
zf(Axp00TrcW}QfN1_M74R%9N3B`&Pn@Cc(589)sfAetdkQAiw>Nk>xfR4NjML8EbK
zA|6km;CnavCt{=UoyJlO_OHeJ3oIqVQ89D|n#lmt5O84l(|}xHD58--WGW7WB~a+h
z-xKa1!SpwU{%xDp)we%E^sj`5LsZxsNfg4u42}jR%4}f<Q0$}buq6^%THs#juo)Kg
z7zMVJfS-&4U~0^Js=B0mPz*eYPDc}vR4N&Z#4)K9BozY`2+t%j@k|<;N}v$BbqD4`
z?_r=}F0gg|b1qCim*W9kkfkncOUzMp3>j!EiA=&_FjyuAk3*peJ-n<4XSjADw^u1F
ziHswo$wU&Ffcr%$CX3DRpa_9+6c1H2(w4<_u}6BaDG>pDI5`170G+{S(FFdm7vqPB
zOol0i!Ry_84n?rQox)$hfTOOd++c~V{&BGU%OM9|m_Wp!31n<<<o;Gq{InnFKYi01
zRvyp=cM6XOf>cXgHY=Dx;UoEsP=Inz3kXB{|DrF&!%#AsB*V}pxc8Xr9Eu*4U|}y`
zBq`UW5}jl6hpAtukAj_Q-<X$#MB$JqqBk024*tiIXG!1^5&tse?Xu!M*}MNb?ERt4
z&*D5V5Mc>K7N|ScW6+ok0+mEXlITn(lE6TtkW37Lh{R(lATEMGWN~!WUA$+Ih9bZ^
zNW>v2bTS6mA2b?CVc<|mBAqHOjUsgUh|b!773&dbR6HI_q$24Q3Iz!a3K2<VqJS?)
zk#QJ29Y>@yJHt94j<m>5+{W(U4vQw?F=%4XF6bHH;ovq(EV!6sAEOO7Ta-JHSa$e9
zpGXBf_(ibN^|q%G|0CEX?0@2^e$W63y@1OUhEezon*iW!BuNw-CYVql9GFZH#R@>y
z1cO3Mbf?f*!SEE;unQ;&4=IrkXnrqW2jd~d-H9H<KCwr}MB?H^<=HIBSD32n+fT<@
zkN6&#8#aq33h2#3gXx_q77E-nhPY*>oq>8+gStj4m+#Hxvi}f{uF_KGwit69$sB|0
zF<S*q7Z3J79J+8Ve{3N73~0bZ6k7g?WA7Z9JqI?-=1=2;-x%Ob5(Y&F5dv^wWD*jD
zxFDt^Q9(?JrJ+d-6oW}c6U6g2SbcyH|HN?Y6OIGU;^EqJKuTcyEdeFwS;FYYfhk=l
zB=mo0U`hge7#Hz)=_`fQsnRbSOC<pNO#st+EC?NtI64YUKgdKd%Lf5Jk-)^$Xr!(=
zR~Mrn8;dhXqs%dq8AxBT{!U~2^60igU=N58ShH@M{SU%HM={Ab1_O&E5osXPfMwv3
zBrFYJLZHy-L?XyS5UE}EMADbi;K1R{apXSsKtlh&1IHg(5J~fXghQPA`+uVyJ=Eg2
zeU#Y9^o<aKx{JqIcStCC(lzN94T+!46{vJDJ;pFeNGh0`A#os9N0Lx9GSDa#fl0#Q
zi3CYv2CfQNBvFLicW#BokWm;M6N@5Bl0`kJ`^>0*N&EB34``>z9rtLc#GOk4rPC(c
zGx#7sN_PbEO2(?V1=4KlAB`(98);M3KQhf?Hr!w26@QCem(>+x^xp|(z*LvP?=n0R
zeeI6nCB6$7EII`TlCDHL4LDZ{5hx#nN=A|i3_Kc5!Qe<le7AE2;gpaiWHTgF9I?9F
zu!UU@B#s97b+$PhWWYdb7)fU^DIsj3u9a6Hg~vd+!LlJRVtBe^xK5qw!Og;~Z-xI&
zNWp4cS9YK?Y=LtJeKX)VJOd;UK?;n<AOep-01lGMAOV1JbTC1pVK8`nkNHU72L36c
zzAjV!L6(Dr!l8)%Xq-P9<BuizgY^hgu+IUkd~$dQ^xpznqB6ZF!LTI}g%UkRzEp4e
zGZP2w7@bLBg3LUyaUhtZGC(d0MMN^GbQB6rCxg6{czr-*v!t6iG(ZrC#fU8&{g)=J
zm%00ca=$Wt5*3#iF^M6TYQ~5lKT9Rykszf^0LfZ7JfP7rNDL64#-I@xWNc@uy@!qN
zlP&uLvHugz6>CqA{{EGv7kPz$x5fJ{4V2h3i~s2O{5K5DKh7$^BfF=o{iAe_WUTy`
zRosRxSsW7?v_FYu{s%Oij3QBhuc0FeAOi-bXdp>P!4b(w8i9_(qrn;%jY0b7e7dcR
zo4vn1gTux6J3E2x0RjI8t(Js0OppWw`8*twO2C8JD#$p3gd_M3m|r{zOQ+E&^sWUD
zpb9?*lH%<}K;OZ-N7tqdb0UrjRt_=1vtw}}dx^ynkQ5^DVi*#Uj3t2&1&8Yjz9ek>
z=sfBVJl9{)_VQN$Kd##h0vbaBc_2Cy1y(=dody&vSPTWLo<t@NEI-o!$#}JwZvUI~
znnJ~+aZDl#Y-uBag**(E1ZIk8u!aDZ(SUwam?&EBEX@DNO!0rfx>Cqk6j)fmgR~ck
z4)&Iiut+L}K|vD0dM25GB@*!{>OW^)|JUOC-<tjOjhy>fMp?iMwzdBCYQ=BPM}Nyy
z{A2O%zt&>@R#5a8iuo6AxYz9KFKBzY>|PrS{xG-pU$mINser$g)%?d4@DI0qAlz8N
z3m9~9rUdn`N|pRpYVO~mv44^hA^%PU_rKSy-wF%<qFH~}@%<lc&7brfox#8`&>-l9
zH+Ud%BoYlt#nWjZx5dC?C>Sh}$?V({`}1VhUx@lonb1FJ7L!6^f>|3LNhHH7niP0L
zB@PV&Y9^7yAcDjym^1&kCUgIzp5b>_ALzf69{tB$gAF|>L?DE>oByvaLHstZzcW(*
zF<g7D>ij(q`i}-NAopVqAGLtjo_g&=`{_Ozuo(fI{X+FweTVt<Ih#U6qDV*#&KnID
z>+$CJUfa~nf4=GNFZlP~UF0D-8HB)q<2zC}T7knvVAn98MPW}3;ZWfNC@4G@tofo)
z1Tg*VvQ;pd8#u$|63hh0PB1t#G=hi%f1%7!@Sh*(EOi|mF*qa<#o-{BW*AeF8^Xl}
zF~iIK2TJ(329Eq=O?`wSft~dz3<*u@#lVF_31D;y-s_bO4{X5-XMyt=;79^3L|_kg
z{=@5Q;FtrNXeK!q1A7;^ZH{b;AP`>S0&VO(o&uWJi=iWn&w;nI0S2aM({3}~oyvnx
z28nwaY}E(BW8W?|1?IntWp^<*MgWBt;o{+KXU_^?2;i-9SPXC?B&;3C$T*Pg$@VsO
zcr+1>vcuXqk}&A*d|)>dJ1(2c2b;Hmc+y03v9kjUdGHQc(Fr4wVjw)7Y`eq}uhI3~
zg7puiE5%Hu?YP9FQMM=tTPzu*IEc0mWCt|H7K5@Qp~z^ET}AgAYd_gx_DA_xu=XN3
zoC8!MfMFKIV+3?H9vp-N!#vCpz%vz`*0R)fad+}35eRrwJI`)WU@9N5uUK?=37q`w
z{RY5G1IM<y2neR#+dkovzJV+u!<GWpv0)vw5g@$4;Or%VHv_02I3^SV>lgut?;cff
zd2g^q(o)wL>`#+Ke(+N-m|UW;z25{<_`F~s5m3eM(FK=r3jxRHVKKbGwLro^k#Xx?
zmq?kWa#;d~Cxb5D&;A1!A67sxI2*{Y;ecK6K(gK(fE}lE!^AT8egil<!{?rUc>43E
zIPn>bU@3(}&wpOb7M!n=QVM?j^Flr>Dqq}1y#)k}x_v%qL*EAUdOr=Y2>79my+~#<
z*laF1hV_eDM9upph0Vec$}b7vw*Hd9BZLo53;vSC9Sj$6X0I<zH-x{$MH-oOc%)HE
zM@br`RIsEGO2bSVoiymA(Md;88s$%b>>7^0#8C>BbQq-&N=H!&p;Qp1&`HBk3Yjzr
zrI1NSPzvEs0Q3Tzv4!5;U|`6^W=G1P|AD5vgMLu#Zg$SBfIv3*Bm6bTF0$WZ+T{a!
z4}EYt3Ai5k9Fe#Yz;6GHz#g0;`o(KESmIy2?-KVHG-4S<sQqC1yCrpJ(S_h3Qzuy;
zht*BiRbeM#kGN9g!(dOv2==7VSs_3qV-TwT=*bwt_Fy+V3v8V4<IRAiaA^m60K*-e
zu#)1<Jh%d(9iPklwa0SegDc*oJ2NTnP$Ep9HcO!tJ6W+K?n4a+)SXe8LokK<qaB6`
z+$q5!;AFDs+$ww)Rl0~CATEK=g@av@AOaDB!wCSX-Z1tcaRwU`Bf(DQUlMt8!9i`<
zHT3C@9(+2FfcFfh;STLVAwI4C3sGk9z#hrKAL54|EWo7!@VWV3D$(QhOewEzLWEp5
zAUvPKwzKJ5xkEUQD*!PT2+%Q7%Gv>3_!NP#^L4LkyA)X<?QQ3{mG(*${7Efj%LaFs
zNPT0+rtn$92x;u>8B9J<bcWb+O4o?qG{Atlfr(q^VSRYk19#L9G|ntbU1D#jB{U-6
z@aw8XB%L+ke!&Hhz!eetk_1xV>jHW|1$G^bYo3>o&j=2H&tdj{4SEY4^#j%)4Bv>(
zgY%9QwxD|_9NbQriCqXkv@^PgZ!!ttfIPjpr+amAFH$k~AgvD$751XC6J3zeHKVc-
z-4Ejh=9hE|zk9J9uDTbcWPV2`+1j9O9Bt4bOKXq9fz8zflC3SCXb<igz=J7Kuey3z
z2``2)1l;lgKLOnW?}HWeBJCVZU2_mLNH>y5;5@7}DmxI>F*>J=zaW?j&hv|gU~j29
zs}eJTX++~tDh-%^Q`q9EsnmKz??IbD_hRuJaODS9DjN@Qs*}Y4A@h&@+bN7U2)hOF
zG|x^vCFwm?>LhXm7rl5f0z{Xubkg;f%9$bnIEyYlvDEeEhxAq@*pYa{SFQ9e1V46T
zFn_RP@N-+PP;`??_uOBk7~qYk*!2DQ!X`N2M{fZ00y+zh7z0n`&GiL-udf(Dc9=?v
z+%{}*H3~ffWJTC4c=pn(VWKmeqFjnE@aSNW;ek$e=}h-qaVLQeBH+67FrwFR>O^#F
zN%zGbu#pkH6D1qOp$)igguw@dk}E*^R01*u@KmGc^&nkb#P^yAfaMomgVHn2A+80?
ztSNke50e$pH6`vwRz%|m-}A!`5%Y(0T;Kzzf_iut5#7w+r0XV|A-XD~PjlQU3xGYd
zqXct<dxHrN2H>AXZx9aCybuKYE&}*Q9CJ||;RUX>0_A~8=rJHfuSE#>b=|7er@y*M
zX7(WI)n_6Si6eyX=>SPBGjxy0N<`o&$*h5NUvK#&MS%qj0AVXA-TS>)U<gPJ@V$5p
z2EFsr4g#5gCz1ds815c`i)ymr0V584awqLi>$3${<w`CA=_`{vCA<$C><=UiAQW(%
zVq?^8WyGz8&6GsL2|tt-St)SrKbX-=i@-TT6cI~6nPD+RLieEP<|r!COQC+RNMGIR
z&gzMH+kxc=F2|D*3@#1oosAH^mUNJ~rG0v*cPgsSOD`G&I7<o-?hf%4K;4#3#2U_W
z!YU(4>w$<|N~*I*rn6HZ7PHGQp)frH5%{%(pSdlU9?>V~D=iV-Ne#Qe&QbJNiRK<9
z`tbiTr`$>F1-P?7EDgdhF$CQMyOY8b+-$=EK7`JoOQ3cEU%=H}J!1S$T9N$&!-N+I
z=62njMWkH|C*7G`Ne<QqWa!|_YC5m!0EY0VrzNcH?a*Xfdk3;3*~Zo$kHXp!K{l0S
zi*Z1cFeE!i#~=0^N)|P(q-S|?I0lsfjv*rHBygSwB+MyD5*33*(#YWK0STNR13Lc$
zPw|6ZyZe8mRsYl}TQCmbBVk>32;M3S-{1r8hk)nRqFXm;;%E`<(SWy!A;g*Ba3l@3
z&`25|gAj5%AHr^+$7wzZT$0qQg!$h%^NJyW#6AH7PDNqBksb_+hNLiY3?zz<VqkGJ
z8XisWwjz>hx=uBM6$Nmo8P*#`G{>Sv%S;%_g=Vm$l+a5(<S9}^_?kF`I3`7aj5h*K
zV@q8ZlCbJN`uZP%14qFTm`n_~{{h1Um;4aGF((ocT%kk(i%&Q-I5>u)cE?{5nY!TU
zy5CLus+ffSFW~s;+L)yL-@>3v*M6yyJ@gP(xo!m%txt3v|C4$ys^|Swe_Q+iPqp^C
z6sb%5q#a)Rqs1Bt?*EE@7F)F**KbJ9EcLod40KTE3fiBXO#LJ6|J?%xIB>F*2##VR
z(M({r;rmIE6kt}6WIT<DrjjvKBBeW)`1v{2zg(f~QcjCrQ*4Px6PwH)xOM5U70LvG
z`oVihOso|a18!6O@kD3Wdjie`fhYXDJQ_nXL4d!0K|uyppvk}B0rq4AA@KMgc!(eL
zXqAPT)YkXL1gsbRpJDmiBK4@ew^X8Z&3{j>Ue))O3|=_+?+Mnk_TF-N_`n&V|DI&M
z>z5{5kIw$v1MqKanpnIZB1n_4SGWJSWb7q`G%0)Pz<*1~o-$a7@)EWzA)Ejar$T;1
z4bi_aaew$uisAdYNEYzS$K1thnkWGv-ayr78q>psb~^_Ak8VLqy}x2Eu35C3M-r=x
z$ie0vc$VBdbtrn{3394@a202tS+02E+<V?<?ido>c^{}$Ms$Y=hPa&gb+?CvYXWmz
zc-9Iap|O~qw@3X(AHsXBesDuw&Jf;&_4Bu2XV#y+{0Z8>5?x&6-+fN|x3=X<`r`k5
zPP=;@zjJTsk3A#??H{<FLd-}q=az(~JuVjfNmwe5`=mwczkes}j{zwNfkn4={V5Ny
z9Qo7xmw$_wc%%VC-gR-fc^E4g>_8I0mxzljLC<%LaBzu}cpn$IsEr5iR2EOtdeX3h
zLqS3iP89=d5&+hv&D=U?z`d&BP-s%C=yB-EPP8izjl~ghI5JMM(^Gm~aDHBV3q8C~
z5ktliz*)@Bgh0;{U<s2I4zjQCWzgdLNzG;mK#s%AhqVCYj93vAGcY8<uRJplvXGIs
zF4MrRrK0OcgQ+YwJtR25%-6xz%f;J4OaN|9{Kd_t;Mx%ipUMC`*n-V`T<jgD{Z64?
z*P(X8Eb1s}CPVxT{0j--pJp)Y`nMS*V^Wmc_>cW1@f82D3Sh>vO8y958C){B{s@6T
zB9>{F46Z*y;E#x9+VzjYHK_YvcLIxTmbzi!-);i`u;gSW*b)x@btu_KhJXwK83Hl{
zWC+L*kRc#LK!$(}0T}`^1Y`)v5Rf4tLqLXr3;`JeG6ZA@$PkbrAVWZgfD8c{0x|?-
z2*?nSAs|CQhJXwK83Hl{WC+L*kRc#LK!$(}0T}`^1Y`)v5Rf4tLqLXr3;`JeG6ZA@
z$PkbrAVWZgfD8c{0x|?-2*?nSAs|CQhJXwK83Hl{WC+L*kRc#LK!$(}0T}`^1Y`)v
z5Rf78??Par68QI#dH*h%WYWkGkRc#LK!$(}0T}`^1Y`)v5Rf4tLqLXr3;`JeG6ZA@
z$PkbrAVWZgfD8c{0x|?-2*?nSAs|CQhJXwK83Hl{WC+L*kRc#LK!$(}0T}|niGUo3
zP7#V|M}O7_KZg!bP&@bb9BS@3*M%_)P1N=dy<iv(L8s45I15=r${nu<RCM6?aTA{<
z=PG4~E43jut-j5U`=}h_t6F+}Yt+yIE_b{HEtyMie=8iZh+;jo%Eb4ZCHIzj$}scS
zIs3!<WmGs@oLkdGmA{b4!6WS3H(UsRKs{wVV!D#mI@3M(Y#@VrSC1QazwSKhMtXVz
ze?$1Z2(vQMVZu4Hk#oqXM)x%OYv+2UM!QF93+2*z^H2L-KA$=<@sjfH*v%V~Panp5
zd2VYvZl9>AJ0Nv!`J&1q73SLFaRnP2#!hL;N}(_&-#PwiX4xROd&`%opV}$^aoE9J
zooBdXvuCOW8>)X_K5n3Vo{i&%#qp!AVrN$jEt?uSJN@FxCoMMH+8vfZuezh^^lD=h
zl*?9KoINe+l2**pGu$=CrVHj3^k2Br{>VXWL6)PY*V5oKMVtv|T6quV6*k;QCQnW*
zEM9NCDDK?pZB`LCCL(jmySxg|ym~p&@`&@RF$*_qgoeytav2f4m{K~0);6S~<@lJr
ztPAhh>)QOQrh6BRxLQQoSa9a!6`xP-15p`*%@+6WJv^>tu$FQo-DuFneGSo{w!S*Z
z&apZ(gYij-F=%bG8J93=a-|l*9TB{_JcPDWyXd^00%7>-^;cFTT`HSvyu<U(iRWWq
zmE#v($n)EA;=q_g`{M7<S+r~(S}Aks*-X#p*|USViy)fug;UQ4y!qy;xnFQ`{L#?C
zv}65EKQ6Jcu~VKu8lg+5#I1-v8HqBOjIUN3-Osq5;O5LYx14&YJ_Wn`-o~ruq;zAu
zI{o@N)2-GqYLu@ODn5O0s`sJE_~wM~qvcxmXm7q#bz8e-zQ@6FRPv*dHY0={Q*A9j
zUC6sT?cLdV#rcQEd>Q&G<8HzsL-o<k$_LfI?h-6qH(2n*x1pc9Rn6ISdHv1kiX)0|
zuWWlF4A~Q7>ilf&%0+V(Z)Bf26!FS1_esMCRiaUIW8u7pHKB7#>=T!8=-yeSC9HAF
zhH91)bng49WuIF}Uldhq6{eG`vE;E8A#lm5BL8el2a4(n(%JJ#GxFA4U!1<F<dU`0
zB)xF0RUHY|DpzhyY~;H&Sd@Hme^y$wv9Rj3FZIipz^t9~(oT*Ud5e!cquaJ=<NgvC
zNb_+&PBFzf{n*6q?@e3gPHCKB`e9A{^D_;RUK^8356$K0M7uO92y<s?s1>hQ#XaSX
z+VCJbd+mt1)eEbKY_VFFsW2)ubG+Bt@}o)A-~hW7g#MY!99Ov6>_yxf92H2r7j%X9
z@}s=<W=q@IqYh@d4Ihr_*u=@*bnii3%*}x*C(CM*_97#Ld|y0dq3Z8ludEe7`3G*~
z&U)a>rI`)d*)&P<^R3Hg1befBFm;FLDIPr@U9x}9s+^sU#_JfhUIWO6#e@SDTK)&O
zZ7o=R>hk^8O&4rGFEMcAY<nM&wTN#%eAk`5JZMwX>7+gV+*ik26k46qd~eE8*0Va4
zAGL5#w4WErg+1v@Grqn&>0Qcg;pt<qBZw(g=3AZOW9KL?J#V*N`Ps4H-S4%Gl8Tgq
z-$&}!*XSKzyGplW^m+LXQqZm?^#15!J1t+N>OM#*#Wcj-3K-S#SaDeV^`^j0RZe5V
zckeUYvtjbB<~`naKG*zwM<y(`A=P~Q%ur_ObM5%5tKT%#D{oLA4&9ybZ1-dZ?GriY
zH+V0;xT3Q1kXrwJv#lz)i#9l^)R_jTy&qB?gG?Iq1+}w$&ho*fympI#qfzqLD`QGd
z$6a8Rn3gTOwQ}-a;eaoL%O<*x4ZQtg*xmZW>)&3EEj(tTz^d?kA9{NGb0{%q`qBHG
zh59dRbhPwle|uN-O5dQ!3{@y7wNATJccQ&^*XIyH1SO|1Ki+rrz#Sgb9MThpC)6LT
z+izYl=UID<Ay!AJY^m3@O{SkRqIsu>9bNYJ(&_xsbgwHa#+TBk7ay+YufH1jsipKn
zQOQyKuK7uCRy}mC7!dc?u6VfB6Pxc?oC7Uy<gIh(5>A#n9m9JWj*oeo#d>`7wNuE`
zaVst^e94`?J8Z$&6?q#42iBW?pQShd#-rP{S5%bx50vK$$;abNlct_+6gG~GW)*4V
zuko;aQX6)~?&~(SR~c6?*-csJVoNUHZv0^WqXSE4rL`})=v3=_>D}w2tTmq=SDgH=
zx_Lx+W?|(03v>GqYVhZK-Zj4RVe10_er|)KFPG<Nt$psZ!s(3A;8oC^^cu}k9i+29
zmoC`GIIn;THyx_j>zwTVWr=O$b@heu{Zy5;$364kcgu9DNnUPf>E+ffdl$U3So7q2
z^MM7ItTrb#BWp-6NMj50BL)`g$l16TeUD6CZt-S=qpj=a(4w#8L2{1+6N2gUzU_bV
zB1LDkBQdaaLClet0nYNRx~_&6hvm;8b{s!k{;<3bDxi!LUb}jFSemoR3Af^hgO7YV
z_g$T;TQR|Lw7_TgBn__-F_U=bzK!tZIz8(53V9<p`0ncK%f2ZEjjMfP{@lW2D9t|F
zp>@f|tPj`f)AZ_RdQV=n<<eTg62Zvx?}PGPt0uLqjc|Uu+0<@m>H34-7o0ElKW0T9
zPA=MH+F&)<ZP4)f9~M1)Z8XVgzSfoj>2~cZ0XgH>-8rxCz5C#GpBu_A-O{dR3@cb$
zqN&9Xo2ux|rfLidKZSN;vUd-b_iCJ(pXcQo)!gQ2IO4MB2kYF1RVL-T2gjXuJ%^h9
zX3y6x?@b1Eu+moej8?uoX{_bOnV22)4f_hK>`-o&Uwj{WZ*6)KotL)3KRe^(+nh<-
zkEben4*FJL_4VUZOaneFD3gU(iaHU*OLID-G`@v8KW8YK`{H%Xc<OS6ZH3Ke`mOss
z-#}?oM%#o{n_A^o-sy<ovNJuBZY2A+u38aw@b0#a>~V8SK5cnv&dz0;9=?&XKK{TY
zU-{&R8?T+HFg$HBTx&<^07RNsgA=|$hl<^q>8?7lt+ok&L$Cz7?Aef-86y%HDjf4e
z8|`;Hh3&OEoIam;SgW|IRJ*8IZQ@t<IR2r#3zxj!xxDVcuuCV--g=g};MRxCFM{#a
zbDmc7@a;F7Zf>3@+}_l<cAsx^yHHusz9sW>N&lz2!<N7FR~!|loNnX&bg?&L)Ci@s
zQSaZ5^w{S>GNqmVP(G>O`7>?%o&?!_nlcw!lR}CJ(cZTO@s9SQ^y?DKEplhPYxkqJ
z+kM%_Tk-0I@r7|a?tZ#K*2}3G@l|C}3H8Gch3Q!ysvfQ?Gd6$q**53Jy;<Hl>0Eb>
zhdV3AuizY07_r$m@Svt^W`PEZ%+rl!_{xXH&&l7rt$MMJp80}dgJLZ450+(q7}Q!2
zNmyI9tUT8+nwHGpzjVXY?}8;YMpYjf@00KDc#~I~;xbB0WyqKfN{sXeUkY3F_!k*F
z675Hyi67pwVy-cE(W_ze%RLOgB`n5xB1h^GpiyXRdvdGyrJF6u1=W+j%*FE+j-p>_
zk>mCoD3d4HU)gY@^xLH8Z8zg`-^L0CQJeIg)cp^c%=Zf3`P^ppo2=Hor|wN~xkB#9
zyX81;e)ZH#=+AQ=c(w$%dL;0Y+T<44&FHVdP5TsItX#!yzI55Tja}kTv8ztq-+snD
zcE~B}YmKBA!v%GjXXP}eQSRp#hiw=Zf3p7@?k>mKk#V$B8=eh67wfn;a{0yWYY)#i
zqn^;zd!4y4d5q!YV+PA+oiO9D{7Z)zppVvgFTA}`_<VPPBk#if>?zf^j-AW?Z161J
zq#%y{eT~tv!0QvDW^di1QcAnu7@WFAVV`ng|F>Azv$s}FO>HX+d-|eZ=q077^7WYP
zy6^>eZS|gP4I8xn{&Tw`%|@SBf{R~nATMzJ5Qq1#jYGFiArNmGZhD?OB9Xz?kL2#>
z8}9ugkV6?KtUU2OFvC}VN36D=Z3^=SXR(9*`yIzmarMT@wP-I}8nk`N!KdZ@>|fbc
z`4}RvUeP1JjkDQ-+p?R3JMp^W{))Z(tVi4qG+k0nw;aFRYxe#1t{wMEck51y$cXVg
zTYcNo*ju$(9j*5jYi#87a^V-VEvK#KzGGC5uSk14I)Z6PRiqzD&qucvSuDDFnN}NE
zyyxYBRqmDt1*<57=Q1d-c!}%1=Nm4(iyR`jC%2CnMLRKR?MRh2qc8j3%sounZ@H)?
zYv7`D<8*6N+NL1=1Dgz&$PHK1xq7<(%&x`qb@&0z8}@W~M=7q?+<Lx#@LkH)utV(A
zBw|ULllq{2XtnRI%H@})aIU(u7uoF2DhqF&$KQGqvtWLNbqlTNTC>9?w@U%<1eKvf
z9mB357;3W;(`<`bejceC%;bpz`#c-IU6R77h-}64_U<S5J)Bg_dsGtZkJSD&(oc0o
z`Q2raIPIMtp8MaH%=}(yNEu3*nagZV&lz*&jvqbDv7gD8W_73iwa+G;G~Z*Q6{E3m
z_OyT$*XpHtAM^G(yVs{#?T$H{{r19&m?`o32$EjzUVGPqkKBm%?`u{+nGlhdvOUKk
zfiP}h&Y>gIs}URO`1y;qZ9+9?9J-VLd6XkJViRkEc|>`rh2uPfiq|il+ula)R<<>s
zxbmFy#oHw{$_jjb^~mr8f!H-;Cj>k<n3`vvRu>mQNXXAK`2;29Y`*;>WqQf&<cFi#
z4_X?_IakPP$t3Q<yf5Rv_WM{k%W&0|o!r?UHJpbgxABK<fBag%c!P$X7im)4wBR=7
z)Fb0@hNVT@tA{xDYbzwqUS<|W_X^4r9CAL7tqe_zKj`?mE~ekXFG<rY=W#ZTyV`%d
z!%f58MwC6)6Z^R;-WZsOKc4A)scc>ZB7nEI|9%6b9n`2tlisWQ8j<t1`g<6bs@^uE
zt*9NdE3Scc<8#@yi5ouUHwI8vepu-}vGBo^apMDzJRRt5Sor8=wE2TmLo%n0-@0A-
zJuP5~aaQe#@EO?;$8KHh*x&flh7sdt-F<HkJ;e;UaLlaq;DqMqH@CYzy0}a0(1AU1
z{T40EZd|vYwVSROF?<UqqR2(XHA0i`=(YZi)s=@se1bLheTlifIhBslHo%-N8G5>`
ziOztU&ws5A7@1r7G55}Sq5l@mi<#MhBXvfVA)d3oXST#{+vhs+x{uBmo1uF{t@LO5
zjZx9vqmiNlo!g!Ja#k*>gsJ5?G=pj9Ugmhj<8rQCCUw!h{Oruc-9a-0<D=U{)RHWV
zaR#2c^plLea|bm=KKCC*h&O0$ag3O**oJjkabTPLjCym%{4&bKuS&+x)bPw%3zr{5
zMeDj<SybsXZJE(vpW0*UwkHP;!Zx;i4yy9WI6dSxXZsO<EzT#y%w^mc<XzPdl=ZUZ
z)3<q8w-~*}9M5TG#9Z-sdwCnLVp)AGZ*+6jsUtTl6F1c;Ddd~n_ZW(s*0|Eh-j9?K
z)1tFVCp2zKwK_%aT@=s1qyN1%oVpvOvvLupx}5VI1&W=?%G~Se3!kbDd2)5e_I#tD
zt-(2d4szG#*O?>_M<mepP0rVe+W&pcjnG5R%MKn`n530HX1+dZo2uUQ@k(ByC@%$*
zrVh6Gq$yFHnECBiO%_UYOz3I9@RZb+<&!1~D%dT1bjx*={mTW%9zSDHQfK6Dcb{E(
zUwAg3U8U#AJZDnaV)SJ1t^GPB+{Ct}l|zj#G1eEZAipPZs20>42S<+H*;+c!aAoze
zoplpN-HWid96jRQaE1Q&3lE&wc))AVRZ2*zIsUtS>CG+1?`K?ndgJK2xq_3aTYaJv
z8m%WRQjNY}(SaQG@G&ix9du8@dOaiiqei2gv)qO4!`pPn%y4!z5c;4)Rvxe3xhji=
zZ%mgPWu1fFS~o67k2%(VjFBq)u*LY#7xUO*7mr@O`Ta(?!tt5~rikei&sI4PV!3`?
zqG}nwpR~X>YJgf~fytZ~X1M|TE@p7z1bfbJRF7^Rw$|^i_uj?r+gt}|u6?)H*cI8X
z`To8JDy~W~`R!5MH}^7hPIdkH+dHOlSd82gUZp&fPqZBS*|AMV(;b?E=CY^n&P|^_
zFPNEYZbTYZpU9}cP;+LRSAX?HO*!>yX7soB_on2#ZFu`Md<N$F=jxnY-^M*#HZt`}
zy8imjtM$L1tiz8!QeJ~@5X5Zr7>Oo)zMuA)QE`P@bB@$;=K+4}-5KXE6Ze*m!reJG
zCwav2Y2K4t7vxT^TVs1rx3OlQ@!>CvOREnb(p|%tw=;4T!XeRh%$7T)cOtJuH<qlX
z#FyFNb21j4h!)rzx!ylotn0X(<J>-N9%5mZ_r5RVChC15IKR`=JxP65)VOQiH3yc)
zc*mu+{DQeAD7ATQ`<Fh@y4+vc5o(oxuk4V-su(#z<4eb6$EfTTdhC}MEn3p1yd|{F
z%=C5%dcqUXYD}sw#vOQe{Mw!RBzOJ7*IN>A<+JM_pVI1gsPqnfif)bDJmWeA+i&4(
zl2WE1p8JQlf0=*^eGpW65U1&)S6DdfrEp{X6{ME(a>HpUl`}KQ4{UcAuDBLeS#dUC
zgwy)*&F^0N^gkA2wb{C$nrCY2Fh%nabU$6~PFvjtMGJvHV);!Jd&&*G{-J$ZU$gW^
z@SKc}O+VB68qeR8Zr|Y3|ISjIODen>0}odks?2hlJ-=yb+}W*8r*Bq$lD~V?&vd|m
zaYtW!Wlh_7;E0{WrK7t`(Oc%pWyZB4?^s{PE|Ie;dRo;{7s>ZqKP<t4x9Ib_jV@*T
zCOq0aU|(qT;=Nx+xs;pa%iDNtxp6<{$SX~)We;a>^>E6yn~K>qJ8wfSvu($Fdw#f!
z-^LxxTc5lHDIcPr#1>Nb;!=*D?AUhh)U-*hTMuoW`?C1R#IO5D=6;Xq=RNQm>!|~4
zqI>YU{o&d(uFsn{$!GKA%ex!r>`zX!AA!4~my>uAy>U<i<@jBe_n@@<b2mS&Sd29c
z`<DAAOGoR&EAQq3RP~vIFMA{Q8^`+X3<w(Pr5@NodY&+L;pc-WjMF3aBg<U`Z->pL
z?2ub>twzCKbJWDcPqW;gZ(UP%d$!5t))bf6z@@IW_5xKctGKmyEsEFJ@70-j+(^+W
z(P`HJ;{d+lvDR10(_TMR@R}=Fj-7srJ=J0@Ca~pU!hpw`Tl`Li9C00X^<y}Fqi<=y
z*)O&m`ziV#eYA1CVZ=9sZAH#|4!hqz#LaIG4xD+!>V{v{^MWyFd>@47e`0*<zf^b9
z3&Y}vH3{Rgm#9r2bMrEDp}}N!g}?m$Ezr1*d^beShVjQ9f7{hI?{@f`8D@SHJ(sZ;
zly5~?h2_>C{+imb_CoIQh@owlOU9_5$~s{i^v!kc=q2V0V#bpirnU^o|Dtc)$YX?G
zC#Vi*628xGKIT2@aPT9CZ2R0h4L+q>^b^sycdvczvC?W)MbkKhY4XJ-7h7*1fzltE
zb54F>)TB~2v};X7ejXgcQ2vOEsI+#<@p-4N<b8xQw|V~%uf->BehX2~exPygNbaKj
zET`n+sbS5|YZIPa&9_)JHHbOfZnN!-T{!eZuVY`wDW&i7unN4&Ty*FTljov%#nf1R
zNBva!x@t>(qqz-jZ&XSepO+uMe|D$(2-4Ndt`}|(**;_h^JGwMV<MK7ma@j{T+`YK
z)1j<Zl^47M2c7XzfxE9%f2S;+=U|Irr`5kOa2q{5C1B^+V{3Diwg+U4U$5EJ^l=#p
zQ+zPcuc=XMQOd=qhFLMZWM<v&<7a0r6tt{rom4Z!CU(hDi}}i4kpWv4h27BU_gqW;
z;r<Rp*<{^shR7AQ9y8e|Y`ktbU1LnU97TVSS+t#Duy0eMj>f3#O6|AqA6Q%&Fvj;K
z^WB|O%V*E?Fw}j5G?`fCo4$GG<t53d6-NawkGp;9dvMv|#K|Y;n(C%e&+XFA+tlnc
zLa^<Xe%`vVS_#jyvWXa_n9pMk!bUt>wmNKT!}o^AhwmjCeRC@z>0fHf9UO5p`_=Jp
zkF>Y*z6M3xFg6uMothfEXF=Kvn)<>MCxv!l3ro&yDLLXcv><u#weRzhsi$9+Re2m=
z^Q2}A{&utrAtWR^ZD4YR+U~_Ew;tupjz>4VY@MDzch;ePq)mzoUGJ=JS>}1kbBNuJ
zb<4M(!nEHSwsI(U=dc5`kylR|n}pSFbek~mm}C2Vt!oz(N5`CrI{E4SH-UUWO<qUG
z-iN4_)rz01-f3!iIh9&xT&N+O<+)sC<e>3oS_AQ`7i4|Twm&fJ%|+eB!P^Ls!kJ3f
zaJR?j5|n9z!(SS!979T{zTN4t$@<mX+T-tO6<IS1RTUkVJ`4(Nm%rh?8c{f^pQ`yv
za+>2Nxm$cK6tShKpw7a7_ua-2tl_sKqsFwgJ=pq{b1zTj#o&hM0mEYCuD35w*sS6Z
z7icmziniJ!I)Bgk6^NtnOpAk_yg5C!?X7`vW5E>vP1b9_4A6=6i9;ZSCGS6*oY#me
zal;zEV>9NT8&|8cB_K&HP_^jb?dmfl)Vx!y-?l!sK;#>1yKam)aL|rBcHA42O2>i6
zD-1oSF-nZoM#UtKpP8VewC#fBhmIDnp>B*BSdD>hlUom=t@lA6S9xt#eX{=Kyp-7s
zPldj;%r4dUPh3R{81cB@yze1T54=A%^1{<S`T^r}%pXi@kWch;CTu@N4P1b?%&HuB
ztYx`rK<M-#Q0~2yrt5~s$9N9jS9Ip&`J~W+9c4#|3!B<aNQIGg77w;YKfab)Y%?HZ
z>BIE?xXbsBJUAPkV5nAIq>}B$fM(X{z1MDxow58O;(Y3+NdX`IIoavV4FA0)4TFy`
zzm?d02uDY^ndjYY<P@KGeeC-fnQ!CW<f``g$%}`91>eRrzRy-x;kdFl=ms@agzWrS
z?GjpzJ8JeyjcaztVRUnBn6<{q*MSis(`ITRD;nmOm+QOhY+QWvvh%`yf#>w@vCGch
z6K?l;`dszX`CR99!ABpZUER<&aDv&DSJtQWZ&*b2yQ<*Mkh9Lqfov!4p0Xeeo7lh3
z=Fz&SMO)3Qjn*gL$W1=3r|jw%qs5rsPt)x3Bu)+MRnF7BnN?`N17t*)`g_)m!s3<e
z@da%j&b*A+IF(1Y_rKcbv0{|nu82e0gHGlmb~+h3&RQ-UI9T3g;-WhBN9nU!hmZKL
z9p^jY-b}r1Z=A0?xsn2}vRJm(qmg$eQcn%T_{37(omuiTzn-v6qM8`sTjB(M?fP$t
z?gmP>Cp5Ni+BX`T+ID^gwpCAS_M#kBlUDr{m$1nf51Wj7B45(tl48xC#;bNbZ16sJ
z^U1v6d*7pCV;ik*o0pu)zA^ylO2Dwy+=pvEzfyl|*+2AI>5SE1QZO6+KGg~i6G)q0
zE6@2}G4_K_@`uz@j_bFcG%O0dX`szKwT?VL{^nYpB*TKRnX%Np!}E?$UdR1}vVA$D
zv^YX-5=ZNe@oDqZ=(tTGms_vvudE*Y#O`Q*La9~E$dxlz6X@^P#Xcb5S9XNc&-)jT
zY_c|4wUa65F*(sv&Ts0=g0{N{T|8SAoH%F4PTh8B(n;%rcqLBIbUU|)hM_YHlHa8n
zs0>4U>cwxQ@gg!WOi!sR+j2TL2I*6AV3{@TQY!Mn5#`6lb-NF<^{U@2x$HW?;zofl
zcg<*1<0j%s<08cp6vFmNqC!q()T<fa^;NW1rGG#Us(<=2VC{O-oCV7VtQnp0X0T^*
z`jo3}>z3HO)m&s>sg$_?T6EQ8!UmV2%hj6aY<TnZ@kAnj#98mB{nE5;%C$3{jmHuj
z-<r3_^G?irwPy!I%Q)cRr;V#ZKWMb7Fnq()OPU8MYJc3Fa(d{qIrd+7jbScDJz6xT
zEGow~?fY{=ZOz^)%84URnn?<lmquOjRBf)bv5tD$Uf9%{JL#kA;2pE48ym8ZpE)&Y
z)_~*8BGt6)VP_C>uZy&|*h4w0lfs8xQ-7|1S8v_<kXaQoiwfxTK3kk?OV^#CI>PAW
zJ!aH&^r{D|6F=*guhX4Ym7LHXXJC6_s!GtPJBn+ktsG|cA(myEh+lM~SX)1%TJP(*
z!8I{wmxtY(bNow{(EhgRfI&xH+%_<A3iT;53AsMwXK*HHqORYFOuxm!e0uirRGaEN
ztn2BkOJ>&&K5Ey#cgL=9`)fmAUCz9?{q4y*<=oqTAtrUL^L05B+|5!$t5!Z;x%+rq
z;PAKQmOJ+CY4$cvP;TDK{&L*U`|J=jo=&YQI7PL%&$*<rt4>e9sy1@cd<)7#Meig>
zJCb{~kB@4j@%turko-f{lxI)+e~#T!#>M*txO)-jYd)WSG}R*3IZL=@V8mhd*RO{>
zr-$C(P{WK8ghkD(-Q?Ns!&g;%%QD&UQDu+wPN=QnYsl#!>;1vhi1L~AoXoq>P%@Tr
zSf9dwK3VBVnedh1T{WcYriGN(&8&MqmSI-?QK5RhQQ7>P^PZ-zFFa%1vi@<KcV;^0
zw!X)v8~Fy>_f~Fi{jjSzRh9ci-8<mM*E0uJ8QJboXIZ!S4%b)nS2kGkz-{k-O5ur%
z^nD3$_i=Pzn?D|Q>TLDw*oDcej~{;HU~RO|zO7#}kzZukte&&&;@0OQ@_28xBIDK0
znq{kf34irEd^q9sWa}kKU%ZE$oT#e3`F2O{D9*b_p#fLMj9Dai<h*vjTes*17L(@3
z9~<cEGThR>?9zE-<hNM|GubmsYOXdttT<9@FTCcpqu6av?NMxI#P)j_8_OZ<3DIlw
z?g`A@?PDho<s{9S@?P~=AgX;N>Im_B)|z{dc+~AKlXG03+sh58S?|}NT;f+6El949
z<c+r1v9ujTo{4z37VT5Bt>E#u744{8T(hN7Vq)rN|G1>w0qv7_rEPQkTJ4wKCUo$c
z{a{)RQO|z;(`U7d5mpxC?<JP_Tvql;Q96ZmK6>urQE$yu{@ggjHiq_r3(hv!xsA(%
z$F02KADcMmS^b7@p^0l7-TdP@C6Nua7Ata`KE1GK2VF?B*tjb3#?8BXJDSYzBF)yE
zrc*)3vg^ha9H)$Ua++~xQBr)AO2OC`_QG>2)YakZY@X2`x+@O9kb%OFHs(xvuDO-?
zsP?p}z3%M988?aB5t^3`_~pqJXK&_>SQ3q&m1?>-#Ky~L$bi+m(p?6OEhMcP^L=i`
z_mvuh>%VE?4&bP-cahxkBd(8FQ@2(rtNJ5id_nn#lpP-EnAHb@%4tgDm0p&-iy82K
ziQ9B!>)lxFvy8>-(-hMJT7q8gk4|k9wo@L4uRAklaK8NAYen2ub3geZ*4BK}Fv)(u
zn(AD$r%uCe^O^dg<2jeJF)wul*C?1n&#vShpY5&PcF%LP_lM~vnwFt{ro4}v`l0V7
zwGMMD(7mnv=FSNDF?%X(Yz-%bX+F3);W%Y+P-@tL*Hvd9zO46p^dMzuPQ|Utg9noK
zuPfRU@1%XycR>?pnP%xwemFLK(?lJc=8$GO|8wkpck>X>CowBNGPh=it0oTFwE|td
zB0b6^leU?poRQ{vL7$vGqy4$@ao@?63-n#5R-U+-Zr^{WT!ZQ3drM<;pBy|Kf@Pi2
zeXTJ#9IZ3x1o<NIqpu>}G<tlq$I;0r4(SITNcymfeDnP0sAS^<o9~$4lUsRWotAIS
z^+AiCDxV6hM?4!7?Y}4H#M`)n7Bl|WLr3d24V)3Sv&GvZGT-Su7uxak1YaqB`jm?v
z@|*CRFzpH#-#II-y->JW>2`$hp#tfHj@A`49=R%Kxtr~FE8iie^C#;B=pFLATR*Hn
z$LR@q3s<9KV*vK+q<2?z%5{8*l@DB8MxXV{d3bPRbDDvLgWB{)1MT72?Pu&i9W{y{
zZ(sJd9y7_XV2<&z9fzZD`A*XrGW!0QE$h*8@w`aQ6v}c1k0_lfjym%9gQr>?4K+ME
zTTySKyw|m;`Y$#oDh%f6-8NoTY;H2~CHh0E`^_jFF6v|KFpbcO7o7$urfv9CCzrLp
zOp&GUdFkV8)p@mNUCVcGDab*zuO64zdb;4OO}sC4)v1m3(XHpo%W(3X3!0ImqwKtD
z+$)eq-(BYpup^`n3!1L;;*FyqKH+q^f%{~Ij?DBRgERC&@8{ZGuT>4(OR8*K<4RT)
zTKOt3{<P#wX5_PqXrYS2ENZmg==A)vyb%L^7LTZ6CslmXd6bm8R5xt`qa<r)M88U{
z<gD|GN_l}dRr_Cy4V*l0oZDiHK}lQRwGBv^rNq_Vze0WOC$#=1+7hRE6=}RUVPJ-p
zQq~2P@fwGix#zA0nkUp-T8BrM6+fX|=3B2ies#yAEq0z+6Iv2j#Y9Sf==LDw!zn8#
zoV|3X`Z9=9w%TWnHbW8bGjXXorNyj8vA*r^$j1lePCTx6|IOXB1xLNz61|$Z_spzT
zeTuss*>Ko!WA>`%8z)VcET8&#?kBS^Pp0I2NV>K4;&v;}E6%39r5OhX(r&Bwcc1eh
z^V!I>6@-eK!4Gs99*1hCT-s1sSd<c2_nPii_FezA`SizU_RpW7kvDrRR?EN5XjRK9
zq;7to!NZ`8hW46|dfKnw6|LF2&SN6RaC&07X8Cw^8@H<&`IbRZWtB@;R(p)JvR;xM
zNEJE@=fBB&Q?!72w#GcjCN<?V?aIRBn+M}e`z2}FYk#=8tKA&6`T3nNg<|<J*PiEv
z&Qxg*oWA`yr)5FPhZ65AOib0)faF?-O7`e6)B9!IU6XpbVEO5+fD;{*wtFWZyS1=q
zZG5>~SZF_BS<<q10S(SEIyy~*Xd6b&8hknH*>o+pTMwpSj>&sQU8`-rdf(k>gJWXc
z7Zc~_uVU@@vl096^$#h{v|a9v)SxW$N4QV$f8)ke%#M1IpH;Vfs`^3V+s4In7L(fs
zj*drihAs{|?Ho{s^;IldukzK9M}HNVC#;(AeO*Wi#~{cg<)hW>?|Evgd>rfMEuC$4
z`gv+?$>mYQLc&jtP(QC{VwidO_J(O@w_DvO+nKJoJLbt*o$RUil8k1eBAfTA4-K37
zH5@gRRmNLAzGcU$%a@1dMP;G2XXmq1LN(_HI+>IVjc{27sn%)|pS-frKt1KfXV2>Y
zcJQ_SS?=*FBf}av8sFQ?iq~G;WZ3@+Bf}^mV8V&r(apiLPBslI;@Qj=ey-AnXtbC;
zd)|56KCo0P&iv79yxOk&t!dleRV~?UpS1e=RDG`j(8n!M3gPq_CEM1Wy5q;Ttd4v;
zy6lwgt?c#V_w=vBoVk%`=JGNubcovA{hY%M3JOP3qug3bGq#iHqu<AMsQW!gAZMi}
zo-y7O)1c>dqzLn@wQYVIU)}s5dDG5d*Hzm$%@i8w@bb>ZmhVYy$XHi_%7}J(;pTq)
zLB9{UTL<m(r{9d;(vpP<8s}LbbBh{j5`j9dP`hnw<c0aC1}3GQnDp%tr|k9mI^M=C
zm%*1--kTJ8ID_l!@hs&EZuO{rqdhDVoOd3Y{r%#Dd#9hEIK}ZD;Vl&_YM)`fN%N3q
zo<>O*IFCqEN+&zre5bO&<IbgHj5E=zJ6axI=y+6`>Tz$<(Ci6QcQJy7dd9d~8_wmR
z!<vde-kJ8*h`Cyk5<9SUvTovy;h9H{2TuO5yUh7v@y+0l53^j^7ZyA=ydN~pDeG>&
zqwmLnM_eP#jzeK3NelM|8&qC2R#ix`-D(}={IzDZk#kf?`U=~o`(_hWuC3bo+D-G?
z0)Fy2uN_zFPuw5pod3L)I@NFj#nEzh!ibROjwS;I`arhI?x2whEb|H_+pk(LeH^C^
zNyi?+A7`etu7Cb!;Mfs*s8_30*|g@IS@Vk%%V)N#dEFdrEX>qlJEXS-rrHw5E00!b
zZ8mfLRzFp7-Gbt|Z67{OZEVRbZI9MCr9NyFYlKRJ`~m)iP50xLPm`aQHGEN6)zS_7
zuN+YtHf&6Z!Iz|~%l5JDTc_hl+txRXnKpNw!RI3rj@aMV{6yNZ^RnNNIk<i!pmOtR
zT>ZO8&mXS2Bj=N!7!+^6_|8!5+)FBLPiLx4eAN2hTAgZ&YIRd6ijNqMFeyO0enP0T
zCvBNjGALor^h0AX=HEZ;NKyDEG}v-JsVwHi#m_4Z@{gWds&jdzZ((+^oMX}BEkkpk
z4BU1TGxlttPx8G0zsHEBkK$f;gy!FRwa;SPyQL@n&J}F4C#JRTegE<NdHy@d!nH0w
zZ{PXFG3r~`fe5`=O7_&pR`d2B9P&avbI0c#=GB&EPg*}5Jd%v-c=z-=J!5SD#ylmZ
zkmM3Gwc>?i<5~))jyM>+zm5>IV9mUUc~v_QIV`<5=IArR5k=ET-gD0!ESzDuP&fbT
zo;zt;mCheyhs<@>=dGLMa4Q^p_nPIUC+LA8(=7~ER>&(Q*oPfig}zbyjBHjbSKCyH
ze~_#DqTMyjVWv~KHq-AMYJ7kD9DU!-pB8G@>a!v>Yk12sg+aIYi%8aW=na<74Adi4
zg9aAlO*_XfcWti@+xc8)QM<6g>8rD!v&NU!j0&f(RLqqPL%vbXDv`dt`uz(AZoKxm
z-8BB#Bhszf6_bwOl7?@bZM<oIf@x;#x5wDkTLY)pFJL&wO?5aanBc$Pf3M2sx!%vw
zNYsla*S0CG+pZICX`~+8y8YAQht>yK5az-T8{7b9X5@YCC-GZW*xzd%{r1(~i)r7t
zzbW542g6U%t$)AramLnD$HU*OPWRej_w`!YHtYlgopt(lHy?Y>%C;)5S|e|*Fcw>s
zZOi&NoKxt!ZN%%2Q>u65<PC>Y%ib%brdKXBDjew7p?B!ahh)>Q7e^G|9(QGj@TDG~
z%t${uc=Vl%S}SkPyhUB!;iaTI&9&n0#dVWsW@PJ~*XoD;xPyP=Kmx-;yOO_WhhK}w
zwRN7?27B-N_EgE+<Ku||v9GX~ulP5-9X?aFzTNI2#fEaipk%Srg#yi2h2N8dHe^=4
z^UNJrq0NjqchHltE0A{~Zshlp01d6vUhC9{uWHt+@jujl%mMW&yFg<~Mo_|q<-;GG
z#ndb^D-2mbO%)lGFi@LZx9-xVPhrRthnD9Lt*M-tS)hcQSrGfd`E|_-r<E<!V&vpV
z3C6o8eKksMT)uWT>+Ru_V_S2kywOOh>%e&IUYv1#{5k$T>nzju68j_SRgYgsN1rU%
zoi*gKL%Q+G?7*XIb3U|ME3D~QHk(BpoL5!ryEZj_MxNdE=Rwt1*EdBrWz75-|2lBN
z_05YOmYZmdB{>_Vzm3Y%eQowkeOzT``H&sgz72i6Ho?YvZ(;FEdA%=NUauM*M;eL9
z^Xfk|bwJjL$H_6XbjnA^XdYdMzOSUWG3Zg&dFE6~Uch>F?72D07SS^l6wL^gk@}TE
z!?OC>thxBf?ws|TJ*yt?TD?@|ar2|Z<k9zr@hGSL`ORD0`p<|}KDRpQib-af>ZvD;
z_%W7BR~<hM(cZixE)Da=`ux<yp(&G&&pI|6d16+^qtA<*JWR^53xyAror)W0EeKwK
zd2qmO{o43)omZ>dH7f5rHTE+USX+I$%=-TTAwb^0yn+47Al-81B3x}aMKu|TP26}$
zx=E0`w#4e`Iz~zl>(?vX97UcxY)~UqC%d1|I)~f*t)<uO4&rTe6l-N7@anHLJrv4O
zXKBi`si@}b-r-%voRSIKD1F80*ki%ZFyYqd)W{7q*^vcj`uJhcBfoJ|{HL?$>y7ll
zGi6E!uDR|?opGMwIjPhpb#ngq#?56Ys9~KVaC6QAQLd&pCS>hgL+p~{{5}dJ=p2QR
z(wVt<S>Uk2{9a#OS;*Z?)2*LVL^e>FdYG1qYjzTH^=W8{Y~^-vF=+QR!!vCAWLj@7
z+KjoawuQ@glp*PaP_NrAOA3G5&otcfSpe>2<6r7sR5lM?g%8MUNVE>X)~3Hc<D<6Q
zAH>lvdOySCkVn=v@-wt7)o4l;;o5=`{KN%Iq>44*UuLtW+$~*q!~g}5i33U|V9s*#
z=M)cpQwBKR)qf2eJ73_u)z@f*J1LfJWYVZjY{UU4V=*g1|G=)J!ZdZYkEZE0T_xR)
zBic#vV-<zib$J1ih69(wx>{eCl4nf>^7DjCm=WfLT#hbWP-j1-aC)S%>w{D~VHb(g
z_NERAL;`Kbc<xa{^Xa_Vtd;Nz9t0;}i<6o(HvR+Q$d~bw0chPFy#%^Pf4U-|$ZyFd
zMY}#(_jRtD00(1boa~{9nA9x+9sc2c=oP9I!Fj~5Ebi7+<FQ)inL9yn4R!E~_Ze^@
z!Lj1_55(q@)#mT<zj>QlPNdTM(@)87q{309O`^L>mZ2;@S=MGOJ-RNCM1>KjL1ADB
z@kpZS-1<mCo!oX<%s;#@+;;kYt{6O**0XdH%jO}yovU*xj?`w&kKwhI8lt_gFJd$E
zZ=6BiV!`5p>!~n)0SN2KFCy?SG|C&kVb|ZPv}WZZrn%IfQVUC2Xds!5X*i+On288y
zC}l5qIj54b+0xwg2G6j{FVZw6@r7Qb#(^ML24fIomPYs0K5j$7w{Z|(Sf#`R$?8XW
zKhbz%8-Bj6FsVa;9XBl7ElSR~m56+1ceJV(Sf*b9Y}955L;j`Aq_P>>MGzEGK*pvK
z^f5K8&}vDHxZN7DVqz+uAt{|jcyg%-+$Xt+ej;E`NnEDxP3VE98GifW0LYg@nHm%~
z%le`dQ@53pIIdaFlPSO=3Y?Gp&Jto&K1R%sfl3e!bH2ui{i@g}@@Onz)AV*$dw@Wp
zkCMjK`DcJ?q&pXUx&AL;o8N>e7-lA=f`cJMo=@KDQ>WmO;Y#=kLNT&gu?{LxWTTs(
zJSo{oVfrQhvyTBf*iZ;$lyp4TOlG*&I&zU^W%B2KPtrKIqV$yzUjtJT&K;7D=394-
zOUp@VsP^xDD7nI3A>79Aa@J5JsS<9d+_|zKG2=gZw>H^Ki0%5i{(R+AtJ%%;d-c(J
zkxp9R188aTK61ANa6u#<(jc}@Wp;U&dNmbMl89kP!xX9N+D{CtVi~SUCEHys&OSsD
zhd)6o`27GY6;2N)F%uF1fG5WdrwFLMVec>**L&@~cs@xYJ)W!nZu!+u&U#NJbcA+f
zNK)EsMP(#;&+(iGV|)e>SPT6(E%hVysyTIR8P%r}Yr|6MR;Hf!5+ZvA4ff`I{HIU*
z{H{^L0eO}A8V~Y-Bfq8-3zUeR(-q(7<A@X-kicw{g9o6NkprRv+AE2R)r-|d!Wh~K
z7JKV6Hf6>5Zt3V<IJ!iv1P1>x6C?#krKLf2X$~{*t!wvDCDaIj(f)COf7=@ZY!z(L
zCm3N6?WY!+2BR_*0N_X4OHq^@iguzlcMXaUqbIFXtqra5St;ot9v;-c%VF}hi!?%Y
zZZ3uYw7#E`2dwKeuYP4@T3ueDyXKb~Z~b`^vVQMtcdS$AXbSnwQ#TQivZs7q6r|CK
zWYGX4X6N$Cz(i&FjsoK=bwZ)543kINX_u3S>=o}Bo#?G4wYhlt>4WH4CJ|U~5bHsT
zo0V$*e|7nJhEgRj`r;zjuxwfu(eG>3C4)SJm8M5BF~!k6OO+DqdP%A3aHo9**iyld
z&#=ogM2H$LuT<a>PP;six!_ra{(i6ux$8g53(BG1LaqyBxZC>__GzyL3qpQ%VZVNk
z@%*S{ONXg~<IrjvzPRhh3w{sOx<kLgA#Q*eF9!s?l3^IyB&-Pt6H*A=37={)M4(RO
zkj#kbOe@q{zg{&9R%?_jM{P>+_O_uW+$LM){b8mpK|1vhbtvvaypS_!2hBD!fPIL-
z=iULo_-D+6%l(C37^EG#muV1SQ>y+zXc@SA-`<FKKQfsR2DZMW?Br8=UsD<39#|m)
zN+d3Suh9t)D!TyrRndh@0M}h2Dk^HnrD@3er#uO-2AGk2Hlx5OsL6P;`t#@}*-ZeP
znIMQj|98<L6pLT+X3z@0E=hfujlw3g0tPsns2oboH0LFZ((bXq1M+BLKDhf>F%d9v
zbKE^RQ8lp<H*oVF(Yl!Ak$2TM!R)sa>9mi8VutQcbI*n_l(nbh9T;d&b(Ef~7jR#_
zWhAoKG|qj6?^fM;^t@~e%~M7#Qt<qT)u=X_W*@R~0TUuhC@sZ#486$r+{eKl26M=*
z4J5B+=3`lMCp#BNPok=+>+QLf<DbVvGG4wz6q&4n?!~@6^mC+Bx5c9#mE~}lZdpSO
z-#bI1tP%Ro<ZxD?jFf~T;iQ^QqyTWO)wEfz+|~_KF{w|$R2#{ylC+Me4R#}aC8_@L
zx+qYq)FocPo*+AE4n<b&9{y@l@O@?H-8eCKu%HZ@(!oZWumFUesn07la^!sZlfYzS
zsYTIPv{H`k66n=QW2s7PNhg`r20blBm#81f|5z91jy<gK63a<rS03rIcQ#8$2WmP2
zgOq}>_Idyi6W`N#A|)xA@=dd;oIb}k#QUxG`_4f>flAE-=2`{2?<l2#TP-$=b$G~<
zMgtmLn`1i_R4RWc_UG8&cJ<FpGu9oJ=_}3u)ro9-Mx2X#(=cmSxMR~-gXj1%M4nFL
z{4)?kJvp|EYNlK{_g9H@^6gx!u}j|t`X^(4_;rxi2KlXcC*FnQlGUO{D#F~~O4!Y|
zw{x3S%T%24rVVEgG7d~ob^m)<f0d0YH}utiS{2LwBxr$RRSI$rXp8L5y=12*w)N3@
zh>+gUiKCts!c~0f6p#J`0$jy1n!;6RE&c8lsz`7WY`I2WYn9KmLhOfqN8KoYt$F93
zmXPQ(_Sz1X;xIH?*AfCY#ZPL^m}vX=5>6s73j*YsA1$X1rLEZ>XL!=uA9$E4<<!xC
z4c4thHw|80$YyK&0Q%TkXcu5ODt3WK-|dxzE7S(5v4dIx@z)sRoIGRtJsieAg?4kL
z(IBDSX*-Q*+af*YuKUBg%EgNeiyuXfgvM5Vgn<#80}<L6e0ho-*R!p*j5Rw4lzK!s
zX!sseC#kz&L^Tij!|hSu-6EI8!zcp0PMq!|)wz<d?kkaNqyPzY?OEpqa-36}A!Tf@
z9X&id#(EL=>I^A2+z$a990oK-@@>jSD*59Y^jkwO*tbZgk9~`1+!*7hM42$I>K6H-
zuf8qwg{${ND`D9nQz;X_iU*_ZHBz$@CZ{man<E1kuN|oLQIkoaam(#v7Jn>i0j9Az
z>eZjxggJm$Ey@1=1n`YEbXuUTxZ0IuyE2t=Q%*%%Yvf3H^cBGgb8IV8EaI9-9?HgU
zF9AbdVLpG{ZoSQXN5Mxq=%*AC2`Fd&WD-BWG^^_G?oC^5{U}~NMDLu(buD|NcFu!_
z(?89Pc5`DJtS+^{@_lT{dNWRU3H+(OFQNG`tW0{uw0w`TVP$$F&3}OoX~SKWQSWj-
zCZ~$~G^W(Lc3<W3L=Z$OW`N8<Ku{OaF&{V3t(dt<%p^~h98k8GM^75j!%eLlF?gLp
z`W04GW*UxmR6S~kMsCk<(|ozriBM|7<EX0KIX&+d0GPv(HP&G6LKXGl?`s#oW-j`A
zf`{8kv#{NAITm6HC<ZXd$*94`&UV|MbtF!b*R*g7B)!aL8UK&J{X@T`di7LK8v1A-
zYPtIQ&D^DMi_hHr4kQAQC!;qaP~Mz*5u<gJ`5ZRWRo`c1S$>QPqImz!4FSx|0xbG`
z^AzNQmFY?2Uf8z+Hr*P!fPj4S1a1FkwAFq_D9IZIclP|Li6T8LQtazqnG=M!>uKTZ
zwbDLqoDkCatqrtmCAl%5VPWh<6kF;uePOMI@}B+8+)AA)WERZNz~{(}9kwZ!E8VAu
zr{(P;V&Gd<W?#&MPiZ<w2M#?O6~hZ{qOgW$3(;O#s3Yz?77$RmhMfmMav!)|!lS_l
zLfMv<Teu~Rf5>XhslO+9bR}1*`UvqqaDbHR{xnrX2Y3>I@=NlNuS*31q;sYKIDg7S
zi9F;iG_c^wt~+?AfP5eCp_<iRS@E!^9!^eb#~!=k#6n=MxKf-H(zx5o)&(#n%UXt;
zT20FZk3{Ji$I7uH5IBHTvyq|IvgP=zW4xgO#r}=Zj@(K?)1nnNL*9cu)Ixr38$ZY2
zP>L0YlUpN9V#Qr2m+98Z5uJgR%sBGfnrwp;?2?ypw-AQBMKZG(zLBIj^=li1=o!sG
zk6vc2DYa=3dr@tw8z~&d*QE#Le|g{$Je7*{xMRTO6j7>xr(gek#d>3ADaIiw478_o
zF6r!paZ@bEEGKqDAb?{S_gKEGdo)QegrCn$T^)%K<Jhiq-@+PSqppQ*+S0m-(*~hv
zVAvqmdU}@2bKsUX2i#lX;I;DBow<i(Vln4*Aq_L+Fycxe>qJFQkCb2{t$jzIadsns
zzXDv~DvZgJz&LFeR2)$hK5hx;>9aP$f%LVE(%DVtNpe8`fjF*0t}%3;PB|rA54r?x
zckNPrin9hy+Zl7SswPbGG-z#6A~TXQhAv%gem<Md;WHx85)Yds8m_<l!?Tzwx~{tU
z6O4#uvMG;FbKF{vqTN)7vfI{nC$V#DlI3uuP6t?@Q}DH`gQ<=Yzjhh6cw7~mQ+c2<
zEC$;qIh}=kpU3-?4S+fMU4<&S%CA5H1BIC2{3D|9y?QQ5wl|RFg6Xp2-;-z5oTpH1
z)I00?7>}Z7D*;-a;aZZb7-^A6+!DDTXmE+$eXE-P@6G<y3$$N}j{|u5nv@&cgs4;2
zSV5yPol&j<rQy+{TW>r~sHZJDvqv~Kz()4|->u|CLuN~)E<*f9&$xGa)-0?_2`tt-
z<Q*gWB*ISt1&&HaiWx#sW&Ng4awR~*mkL{4CLGA|1vVBFAk3_XFyv9qax*XD%fKc7
zS)-UGu|;Ab5Kl#0o9OqMDT2~i6-Duw#LimsWj`wH27@P@p*O$~Jg{oo!&YgD_t=}e
zq3M^UFV1xRG$wCKH5AC~>Y>p@oSTd8wri=9(P5UNjzp{Lkg)p8d=d@7zdpbbd^s^v
zR{YC^GbY+zQq`ZQnlE3&A&6M28-1K<J>Jqyqbo~abZH&>!z9UvvI*Y`1b9Wa_^pu%
zIhwQ3!eMxa<BXI!Sis)0+V>Lr#s{BcLa;u3f6Shst7<Za1Si;B5@`IxYOu0_4uCto
zh!S=ysRZQ4Zo_|<=-kq5(oWXi8l<1T>)XC??GfBZyETu<lhx+-Aa<rj&uPr=nCco7
z_716E54(%hjMll7E`{(TMPkGgLuaa6^jYRn^%@xJFC%bSy*QL?Rv@t=3Hp%v|4;;p
ztf&H=6&l0qQW&WGvWoYUIwuON8;PZ^??1%N-}sjkq2**9g_uhwUr=rJ;|+=_z`Zt7
z@nP~-K(CCrll304t;3@;-^Kk=6f`TR1WW?h=VPl#zyS-Nzwt_c^bT8Fli-w2YsmC^
z=uvK2!58a{2B0mK5Ya2mvkb$bFPc%Q4SRGFVAr;g_)r<)Qk#m(f==ug=VOn8*Pq?s
zOxZp#xnw-_4b6^<iP!9T+;Ms5;#ukl&?A6IXzzgSpw7oW`yeB(b?TyjW!iL^@)b{a
zh#>yv_~Och2O4d*2=0b`%er7$)mVye1Q<Y}0q*m}6LN+LWktmP*B)@vy>j@*p+8vy
zBxR%V^1mFCaF@DAVXiE2wYt|e^%Nf`awzf!8Zu!5?&b1P3a3pGt>szBBROyCHC@=%
z1dF1qHU0xtvI+)QN}_;iIviCw!l&4zy09jwQUP?nLhFKwR4z66rxRll;~u^f@S{v4
zk8KKMLjdj{VL1}95NMf64#H}s31Wn;*o_{zKe#r0R_PR{TKghw0nFLxxhV57hhcLI
zt3^FWkh5QCd|ld3=V{aLF$d*nhkpQ2W6v!+!Sn`U&FMVw9y96321R`uNAR08ZQPU>
zGTx%&E5KUjK;KQzg%2qW-gfU&qa1;Tuj+_MD|_$gzGJLWVWQE2i~_^8TzU&ECPLy)
zsOx;4nVBP);>R4iDSa_WCKu{muu%7B^q4y_XE9li{?)uAf5m(GZ&}G8t6viF_d3Z_
z>s4&Lx=3X~AlY_o&UXXyX8PuS(Dhov3_?gs^)+~M{~c{N(sKN@q9^wDngy-!!ZX@W
zEmT)N!=Mu_#*Y43bcF8|ZFZ1SE<lPPj55bkDitL)Wwpemg5f#~cL(4q#;o>EVMxrq
z+^q)gZAJM90^QE)P)vZ2eYaI`X>lt7UH6mRgasK^5dj-<NY19=U=>>J-T!#N?eSxK
z{%HyfN0}>%ypA>p(X8(bQa!LQ49u~@X$}_mnlYs=I-G<&0CQ7T0$&fbG1$q`tLFJU
zqI^FqPsYA^oVd?X`cOdjl~t8{BUhyjf7?%tx?jNRYKx(e($%qP^xx#pI0@EWH$!zb
z?`JtuFj@s)bFHtZUzs}%ZnMt|M-!so*JOk}6QTaG|K7it<s?vKvZFSbN7LJ-qi?gt
z<29xZ{j{vH<0s3*6!CL{46E{lqj%b=z+Zs!|LMiqCKPZX-Yxv?#BY<T7*ssu(Dmb?
z=(A>`k_e>*jT_4WgILL=#QiEs&kf`}AAuZeLDu_=b(@sN+H~C+e^u%R=Bgn$6hp(=
z26#47^NAjosyy!4=-=$}Kgj+xn~JD`rl5_^ad~~|{u>I@bs_l9d?0|&08{Lqi)~6p
z3VkN0gt=A_Gv#?ttYb-<evgJ2&jfb$*;99e&*cB^_=w^oDT-3194DzC-!@0a^8Cp(
zyo*$#$a=jX^pHjPXyAZqjJD&0EX4(wE17NSFZ^(j3S7WUHKvh{lns7cC_)JE#E+Vn
zh)sY~>ad6&Pc6KhBF7}GHfnHLdB_DLA~U&1XZo{Szu8Gy$o<ebrvOiORx#`9*Y=wB
z6>D&w`-nQhKIkb+lBTBlF>H0QPufgv3gX_nnv&&zVQ)FQ;@VKcy`@ZzB*PO$?gUP-
z<Tt#+$v4J(o2rJlS4AZ1uEp&n65FJp-F-j$h%b%+h4?~xjKSOj0dHT$5n*!wo;S=w
z!m13EMk)$%Z%VOra4SL-`l-3VV3rU2p${BCp{ber#(^Sg2eExhnl$%_8}MIv@<HVP
zL6S>rdQhf4I4QRo8WcVY{^?Lg=miB}zXIRjhDr2U3l)q#7m;#vz$(r$E#4Am<<}y%
zTAq;$vhK3N-_SzOe56_nTWb1x9Xk>v3k)-U&pQ$TRHSx<__NW3u7|=HT=jl7iD|nl
zH+>8D{W)1ag}CDP*_|`U@0WiXKw6OQhCfHl;&k2>t-^vB0jO3QE*+?8M@JITO;lm!
z<Rf2tZ`O}r;?~I>{`-sUqk+Ht1qqR#FEqcWedX=8brD_pTd5d-$Pz+BkdZAKq;E8l
z{-2w`4L1)<TJ13s6}kUDuE-P&^?t@OYRoA9m~9c`Ok<g>wl=gySu4qVsSy9i6Z_7f
z(%6ulX5nOeN7-lHF@sumg2Ftqo*2r>i@>SfzYn00cli@luWfD1<qesw))Muyg{sN4
z|4I0iJeXb|AF{onYbct<Ix!ESj7R%4RL^psOi+OXWTtdj>+@@!r7QV)Bh%FbaIoht
z1!S5v$A(T0n>bi;owu*6%Z6O3007eWL6!cMS|c<HWWg*F>1W>Vw|Sb&T4xo>_E*fH
ze*VHik6v(^gO#LwJ?=~V$|3{Z@`is%R<yga@ncj8<eBvr*$EvE39z&DAEydBqmpFN
zV#C+Or~*q|zu|lpX|Z3c@QU<dq8@P)NBwX7%Pl@>n^FrK<CXGF$pI7^fYl|oeAhs7
zFr`S<1W+)%Wn?URdJ7qE&9fEWg0|iPWl(mk+_8B8sA}>^Vo$>M&=x#cWHZKHGB`yV
zr4Y7z>$3%2$s=@&8aE7b$m~FkQ6W@A4KWtBw$z8Dx@?=1+uDapw>vjkzW4%C0Z*ED
zW3f7Rbm@D(MokidxD?YV?aG?|iJaUF!Qn$XtpwwPzF4b;d4c|gl!teYL{A?PvupBX
zH3y_!G39yWiUn*RtRq40JLslib_i*}>29!c=cu!^=fCYajfa@L1Lwfm7dlGY;}$NO
z9U;2W@<q;-9!bD)(+b|p_53xZudn~0rp6b}XSAs>jDtdt;hR`9aE)Vv_II+Z9yA}4
z`y`foMAK@q?OqGCd;^6jN&+n$m!xC0>UblrCVKIH?SN%--fIj9BTo-HA;DSiJ$r?Z
zC4^#yMAk1<p6=tFS<@=?4bha^b$U5>2Rs#z)xDWVyDNr`h9bd1u01<*#GRW`s2+Qk
zb(eFtV&x>ykM1vw?0r3vB7pbINs948IkLPF;{D!Epfk*h=Gt2Lc2+9DE7kHRAqsh`
z^|ws6B|pQ*Xdq;CTKYt@3$}?c@xskM7?N)ilsVL}6xzu?tS#E`=d646*d38!WvF%D
zg6q+yT)c{5Ci!Z^cZVYEEC1SbBebJaMH$~8lj#nGDy}!q<T4?rcBP2DMfi%_G5d<-
zGy79QLW#^v%W)We5{6_q9iBUoa92p02S3JUN1{6|_ol)>r3Br*FoI*K6rOe6k$Q~R
zjA2)&G=`YS4ifK88>px-ZxC5gNR9ne3OxGdoG%o2CNhEdL?UG_v)+8vA{cU>YalYf
zNc=mmkcXE<34O~gnlia#X{`Z1pn`ATV44ROMCOnKsvdQ2O}|_+ie$VHmALzL^~$Y1
z?A>O&87Cw;%ud}AQDN*E;ri1l{Me-E@%G5_4sr#nn=awX1Lf90wimK<adW*18a#a0
zNH_8>yUJ1XO;KhO<N4yJ+zssHwTRu6`MeqZo@q$DmWB!xpQV10{HT3PJJo@Iq1t2J
zyELUNGWu5-c(sedpF%Mj>TZ~^04>Y9qcN<-MB{joqbtda0ffj&9$~f<OOe6n3lT<z
zoMe-I|AK|@1Ih|+ev1%f7O!)b`Y^rIiBoX~oEvK};Ez+_OKu^J<kyNN>$W>s4}vd(
z)eqarcDtP=I(M%^aXeZmZDq_(CqNR#cCmh#%d+0~n#WO?4sHY=2Hb210|-JFMAX{8
z$t8)@S5R}xF69P4|NW{7FI#11WdK-my&hoOf$GYR(j1g>-GZ-oV}nJ;fFmQK&2wPl
zNKaz}EY8xCc=2vfEj_$kj%ds47-pKn{VIb;9){O8t+31Z_<A@eyySz$#;WmHFS7aM
zmRwJcwazCvQY!;b+%dq27a1JU$1IS!2Ydg#^RSo^3kPiar-SHiA!IOUA+1j!(8$De
zOkWaR!!E3VyH(cCE<=<<obZaQs9BZ9IQxG-&T%cAd4KFSoWfv=Sa<4V&Y#{eF#_Xw
zDGr@7;*4LFxV;mo_<<@2M=Y<L2<^0y13nxadh1?E7{sKK1Myik7G%>oM*nC_z4W}4
zJD0OZO!arxns&gw(8o~R1-?tIXtKl)8N=^o=cs1i^;&a_!vKKF^s!drc0p<(`Hcab
zCQ(?O*OT6$rv7gfm5xOTtJ`ttk1pRtw=S{RH6ke+u1gA5JqpwD-14oli2KJh^(m?C
zx;b$l4qf}TihYYn=6*F0&VvPnsMKsKe=$cP_K3P%(CKgu3!!pG272B=tULM-CDbxA
z%#Fj6OOrK1r$c?yc{r~C!bx|QL}k{YXW6GU+>!0BR<E#Ivbn3{UsB<Gp3(_YeGOUz
z&L&6vp^QOz!H|$vhU@;1m^3zc`<fqd^pqw35{IKX;ek;0-gud*u8Tm;>m5qvk_6n_
z?oHsO(VZBM&c&a5p5%(5zZr7oE2cntTPw8BEfS%D-2cA%UTFiPm@MA~B;&54NBe?F
zxopX#7~(0y!-kC=VNhCS=Vh*HilS<IsNxOq&`yk&d>8WicU~aku2@T`W0HH$PIjz8
zJFlFzdW7>%#nO^}tf*g%`UVK=x1p4u;p}z5u)1t}Ai2tUwHl$k@Nqpq^87){E5Abt
zHOr4*Ud}LO8MK5ZPzFJ$XsG1Toq37Wt@8jTHHS!y3v@Tf%ezoV`KpWAeFr9#PL(|^
z!c&xa^Bi`JwL;CER*-SYBU%#8Qoo9VnHZ~iNeq8nK0e`{P3V!*2lgeL;_lp((1i(N
zls;RucL@r}M?>kxfnH`3Q>gqtGzZu5hNX1CZ&cqdKNp<Mi7Laz;d)yyKPHv7s=^@<
z<}oH1*R3U~0v6$P^K{A@AIMm%u)_m_SwmB|>5uHTI(?Ql&zh5`Zz5+tDO-bf4#(WZ
z)@={2sDJ3z5jEuglG43|4DMz@mIC!|+pGWIU7)JJ`Yo1jeXFGNVQ0kdPt!~M&^_%&
zd|6{P3M0rvBLwO|8Fj3oGM0g7Hg0i<qGbradz1H_#i%X_XWxerbGjh|E-c)i|Dtav
z1lNkFPdZyF)t3VUXour^`*m&!rp~0EuGscq=f^W+aX+Nt5&rSX{y|yO2TV0`S3%}+
zNYe&HB^l7U?t`8%(!X!gIhq9}fCHnzR$xmRyZyKp#<K?Fj`a3v3f3^<3z2vqaRC$j
zt1N9;t!*eI;Oux;$NRYwy6F%6Tt;+KcFru&1Dq44#2s2>Q*W{yQ+U&X4Yi-LAx3y-
z2)=7gDG`M@Wxl$aydLp4BI}bqU-!qESJ;H*rY9!eA)bs(_CI-gA6^s$z4U(VCPt9H
z-Qe37QnRpQuWRw3+^5C+?zS-eM~upbKJ6F1+E`0;c81t=l{AsNkryzO;JkCR8qQw@
zLui=zBE-EEvuNY46G^KJJLylf+_80&D2Cb&MLL_x;9>@X@9KM!tka8S*VdA&;XChR
za7z?SvSJohr7_ju?4aiM|L=yo1$-#MS($luCiht}(AB?R1z#9bka`>6?SXiIM9O_O
zj{uLIk}KL)nC`<EJZi|$(SX*JmUJ0hmJR!cx43&Luxz6O^UwglfN1f6EGDehHf9)d
z#FYXyQrRld1$_J#UBLIwQ1#7D#UN-)#n%iIr-Fys<%%xA={I!VgP!g#f-rErE65Mx
zS>D|ZB)sH7aB96>XMl^7iXH1?6K>An7Ak+vTd~u;SPUV--k=S_j~v*>+%CDEmDxlT
z@|M0vSaf`gIe4@p_;-?pwue|f>`tcnmOGUWeUV2Yh0-u1^)jAM<y)X<gap4g@6d!l
zK;_k*c{}Y7RChSxxK1$(^6U5Y*arwy>CuL^q`yJDL%t(6`E4NVz#Hv5FiC1f<EiH@
zXtG6;=~TnIN2l3%+P8&Sf8K|eY9Q$2bf-PrzBEYQ-y^QKX_#Io&ptyhUZIWeeRscn
zH@Q<dpB-n`fP;hb8_9TYK#3|aN%Da=!%eMu-qwI*XuTE?_opYnEE@_|ucQq7dDC0G
zSRO-R-y5C1X5>`t>cR(>R1*hstF@GX8$vTokVz1R_(J2P#r;0C<Eim;d_+yGt#Qz~
zq}Lip_rE~2Wbp&;rMUBzO<*l+L2@@(D;<OTFaw_HAJgj5msABZUb9ZiAwymm1G-0l
z<}0zgQi}r!)7cPyu!Qjtw?sq{Zvm!Of>AM+=tAUby@0_kbW1<RfrUmJ7Rv4j32nD4
zi&Ub<z%F0I-$M;_F&m%~yzk?$y{7S{W%;Z8y_8%4a}68F1n`C5oZFamS_Q!$mZhWs
z!hmQAcEDEgK4-l0D;D(HU_GHlLGD(w3Z{?=17$`!M$^@UuYQwzKQ&eT_|>3DGpd3^
zo1!_PX%y{H9@WE~8t&rnN96EBRD)X#p}E9%37!R&!Bmc&r=showR%AzOAA%=EnCv2
zCP0+~c|0b&a2`o)22!`VZ@%!Yf*x2qL$QPtMRffUtpE~;2KUt^XesiYUzS-bb_K!X
zo9zN$6x9XY+EeFlNGfH12K~FZ8cy|mxP7nZY>FJOHZGI|rC7w@NMB#5Nkt@0V+^8?
z5?Zjl-oo%ZHD4{6VWimGW(wUDnrLO>p3$~$(UnMXqw3Y;N%IN+lVMI_PV2w7qtFF&
zEUe1cX*Z)Wi%SCzJhKty24sS}o{+j*f|S^BUU51E544S7sM^tMH38l+k`D=RF6HKA
zSj*YD{&=pQqk``9>y;xENs}p6^ST&@QjyUap!PD)r6(QZwysX2q<JFcx!hyNgED8~
zx7dNA%XZ$Fp4k1pdUOTE6G|(-RBjmf@=YQ|7#S)Mp2VzWj8#0$f23ghBQocA4;oKo
z1CnX>1#o^ztm(y1Oav->m%R^o#k&v$`ZM3T>o@XiGW$b`?>Ci8Ld(k)W9^##Nz=%#
zN+!xQr&z-Op8T{)har_b{2q1?Jkep(LlJJ<a-i<p1$#QcA$N)nglsB8J0-)|7=P2P
z@E?3ay!`K8k<jwchTE}hIxZH&Y0l#Z=Iq2AjHfA`4j=a%gQ6cUc$sPN_X>r6HO_F=
z^!n%sT)z=_l(_bbCnMDLa?BLI0mJd{tEO>?^5W4UY>DV8w&aiYW_mR5YL?&t_Ji_P
z)_Ah5<7ERAU1cit_CegmIUl-PVTh|`Xg;O`OCVmm+YP5+FRK;<AIj!8>up0`pv)m5
z>9bjt6EOpaj*&S))^8k)7MeWIw?lF@FVt#KJtR*s+}Kk3jK}scdSWEt+8&jtk28jg
zglW=D26XX(I<(j4r^0a6tcYy7!tq-JBA(5;8KbES=}9EcRRp5H?RK|?{)8uNpW9&C
z*2vD#wG{;ex0@z(M;x*SWNSl(bI!U#g73O++F4_pyJf%%#i6hbQeYMY!-MX|g39M2
zcF|}{`iuZpmc`NK>k|sRcAiib<dCZq%6n4`f%moydO!|<nyox+Z$*=!&F9dVx9<mK
z6a;>s!bbqYMr*Higq5YcU!o0Q*El#%upQtw835|W1I?LC7(JOz&-AEEO%E}5<^RvJ
zlK_2BeS_1^n$x?@>qgPlsJjEgkE~GhoC37LiVSI2F)dK2{H?kV3*iI*?C(@|t8rAE
zQ8|dRs3$(6`wDuocDNqHmWJU2%j`C7veY@G1+o-YUW2^pvhjr)pmNWN>gWAw9rpa<
zMgXyi+4y<TEe3al`VuD#Bdmv79#HSq7^6&@Y1*E*Z1_vKjsVD<<G2Sgj5fT7u+2lG
z(%4ltQsxc&>7N=7A@h&c5wg;U5DTu0iW&u!lL9rei<#3+aK+XMuuyRQGV~~7Ys@xs
zMqJbkwCA~NRq@hXz<}wi)BBYB;sfl$8b6^1UAIVsWn>f;e86nlJWlY3=ibav2!m@(
zqX+mnKife)l~A}q%E+G?2}L9r>y3!K;EjL7^t>;Y%m`ukF9b(O4S(>TNhW@K^RHCM
zO??YmPb!u)k=%(1S}qKUp*g`&$czP%!QkCYym1c`5lm*x(WS0lNNfGZFd92SOhvs?
zy81`@VcIk9b0Ngo(p~pv6B4XDt~}Q{Gdas7J+0P7q44>N<j!E2UjW6GnXdq&gx{4F
zNo{fiBd=j;<@#<$9~|<JdtV&14y97R@ML0O>g>uT*<y2Rc(7XE`oc4CS|Sry`eGys
z9q3Ge=RC>Q*<21S`A6GLY7s=o{`XmD8Gef3vpXV9keU*pR4VExDqj(9g+p?ayQ$GR
zmpq3(wkSBUkgSB(DPy0yYsCosr|I6s;m>1an$?X(2LnB?+YHeaQTY(dI-tIzSoQZ)
z&?$0VgN>eSy5JAaZnzmr`vU~nBy<XXVKoI7T5kuve%=bc_-;o=(Y}Dh50XjY=7Yme
z7+aTmmc~v*OS#C=1ox&X5hwXe7+EzY0_4BcMSM9(d~`+hj(l968jF&_SQ6=Zq&U^V
z_S(Z$d@gTzPyTSppH6};bIqQu(0cSXRV3#_+I~21ou=}m(~V>bShu8Jp1x!`MFZSy
ze)4@sBy3PAXtD9k)R%F!I#Pp6?8<9I+B6a^t}^Hr!j&?(ewpZ4J|8&>ev7{0uJ1i*
zNH~oBgDuPb`62Bi79t&n?Z&kUXfA9^2v?o5CkFK1uev&c0-sf96V@o9TGQjpvXZiG
z1zWg2{ZmO;`hP+g1BwHDFvNySAvx(hT+8t`WAz9bH0MVCsma@&OndIvZfKg4f|r$B
zh!BF_k#_b|6wGP!o5$2PIZ!%S#2O~HQM3v>iA03d*(3AwRe{RZ7!*CIlG>KL&X4vm
z2<|9!CGoGH{A;bzFWwnJy4w?iBG#w3cif)?c(=rD5{?Ue3$Bc73=L$|qPy)7y6$^`
zx@$x6?u?3*(v@pw2Q_uU&GXNL9h*hObW=np77b9&+k^B5dz*;aZw|C%_qP?iJK`;0
zog?SLZx&{yP0s?nih@xzHavFNCIg6bW%CV{tY(iQCW8jF!+XWqZhkz~^|LnF>4PIW
z8#<Q%gfxkY$mQJ;vABVisJMMR;c84345-2k0^mVlzDj2;0TO~1x<ylZr<<Tk7xNhI
zn9nmIB%G$T<~({o?`|#8U9}_awU0`c<MH38oJ3*nKMSnk_Y`mv*RMLdp#H)hh6+Sx
zMyL>;mdQ;FAI9Y<(92tO&@d;(;2+dCfTU}ouk@UvXkMD6FtgTP9Of}!{kGjqc5#M`
zWdnWw*ni$|Da@vPA5UIj@J$(ar}X@KJpJCO!goXU)={Eh$toU)YDK$mLn}(_u-AR=
zgWX?_Fr4hlnC-BY{j~1Q9mOUdSan7`$l_U^!ds+WRR$bd3I1kC%Aw#GUhs;;*cGg$
z!L)XvRyoBMnE1T0WWjlllzOHTet`hRgC^1UC*R6*^5<6+TvXCAyw86QXuEtJt!s|i
zu%Akl?`HhGUG-FvKNJEp@LX?MC<s2K57@QvFrUYG-VF}PrK|*jFLId?A0P~gU9_K0
z@1R_&x|=_pdJ|ee{`)X7u93*R(!_Zm4S7fbDJ_5H09!D^zCKe|cNd$U{IUyNOI=$%
zH)68?YW1fX$BtB3YO3vDQJc8svzZw%Y#v40tqMSV9M`P@3339hw~E_H{P9emZNoJQ
zVXAQX{^W1yZx}!kMV{!#m#GjQj`ev*yB)t#x@NFk@H7b8B<PnqbXl~S$<75t{iW&O
zxt$Y4-?5OfVMwuGcuE9PUKLq9=7^(4RU%l5w?XG#YnTd`mOd)09-eOR;!H#-4bP^n
z+~(9UJs+##vyT)<8_u0YV&e(idLMl+LILw+!4X2krFUP|VqbwhafSh0nbZ;zcpZos
zVH;a-Q0g}?^(+ABHx904l^=CR3_;JrpfDP@usD{#1N-;=>#OT2B!y6B!3ojGssd8m
zl&z!ut*gosad5vj?HwIiZSM1^eakkRWv%}Z0JvqwD(@Khl2OH;#IHVm02Ts?KRWcH
zqyqq=q9gKzx2%E6>HkGNeOurmYKL6*bj{+9HF-&%TRMib1aX>)1eGAd{}U=xUIf^a
zX8)&o(H@g`!-YEQ-C{ArmjP~{;IRL3G_B{BeU|}~nP4C>J^cbbo%Xouydna`I^iCO
z6xw2lZ8P)93fOf1CaVp`Yx`0dxW9?FPp!xVt(pllE6?VjKwc@3d~{7dPF$>IAze7F
zS7M1CO-n@uL%3R@+PS#^mK;Ov0ugB0#|8Bz=f;+Kr9iKvZ}iQcRqus&Tw^;J%6*%T
zgUdjoT)_k^F?5j~_8XS-)@ag31bY{VTwE=X(RTv)guzC~=@t-T<AYGN8wO<)S9yJ!
zyRgaqBnHmxt#8{Bjt~5<XH&%q+)9U!38u2>u|vc&7`?X&&8X2AeN@ZPodV&js$4ye
zi_rVk`Rl+b8Uw(`_-&_ruZm(&4QWDAp-Q&P%ycYpt4blpqTDjRs0MOJSzhOM;d%hR
z3nqa>pK^bIO#xIUSj_Zu3eVQ<koW(7{ieg@+<4eAF%W#Zpe$yaErwbIuiS!ZO@4~m
zXh)VFzq1!M<9d4?@gpACRP=uaT}Z>P3Xe0d@Lg7ak3z>Yg+V6cG2ce%&69n=(|&9O
z;+noyRj}?za)W7WLgy}5;H)tzs2WHf<%t&c6ueT9#l-F#K8LRe*l@wa?kf_7Uz)Ks
z6+xhzGiO^`f&NJ-<N)#RK95D1E+nAVK5nBjl6BO4;(_dTOo}MZB2^0}xKG2OEZsa_
zt3NFv%$vYg&wyW>mL1T+Gq*1W+r6OuW?J|ah2BZS%2aua(RKu3PIub)>Nw&$o3vhe
zf$Jd3Rvj61_v<={8xun3Rj(Ybd%f}2cVXj?VOHX8$sZE6&zkD%wmIw|>nN4ymSslI
zwk!f1@z&=7`5z*_^A=%%fWH?;&c;^N>F@$Sd#9RNV3wc0?dsl_RI~Bgc5G+v7$*N4
zZx6|}L?=>NAlh<~l2W{W82ZMe<lnP2fBq`#&AzvF>T}T(M%<9lUcG~m`AT=uzNy%f
z(0xY28%wmDD(o`=ddy~61G)83Ry02PAm-Ojre<aS<82MON>i$llwAW)V>7$8u^W$G
zo-JSc59xE32ak5)!E6pVve-hFMnYM^B1M`v*VRJ5m{F7QyU}SmriQ$|3H46;IUn5W
zp%1(<aO@D&@xEe@ALLl?Kdpf7)I~#hVF~M`*gExEG+oqeeN^BjMwxU7K0lrC;9Aw>
z-_t}xNpdM|hQJfRbx`LO&=V4htIsEm<V*x#s&{lPiUxlfk%WyW=4I5{_~sut$yG7c
zhGt%482n_yz04x)F_&9tnV?MSeyy%P-N0i{#aCNN;ihRdj5j0CnhRd|Y9kYPuSf?)
zOM{@jSYEz5UnvQ@0i&CZHivHqrZt?e4i^2{;2ecl8-Zb(=b@S=Oj@Xd8U}~?=M!a@
zW4Y`dmn@CeNeKQh!nc~h;n-FkC28%hEf`lY7s^iy2h2pyNMMOM#~k5*Y{Kh%scU-~
z1HcY)S+wr<<dV#hf)VQ?M_NWFYmjRXR}cRTy7(d%1cTFP2Hocf1cS?|ucZ<<*3Xwu
z9^V@en>%h07WFHbC@wy?k8w`S*00tKPQey!z}Ug-_7h}lzD~EzKDky<%lPp{FLTl!
zls{kfY%mK0g~mZBSC*xC=nqHi=cH*HA=J|9c>uZ~dvt-<ouMq(Oh~FaVr<rr`y$%1
zsx`0QuUZgjh{vMiDDw-P)*V3|2Tw44?*nUr|Jvq!GL)5%&d4SRF4`tEUoh?@MkVN$
z09qd{HY2&icM>HC%KW2~dq(e3`1%5UbE(AQdP7XRZ1W|>LIHZmXE7G|WN&K`8hDro
z)ts$sLb-M$#P%1~euC85dBSqHq=3H_h2sdWjN?2ltvjP!nIS<t6BY_ved;u{;rf>L
zv3Bn*vI@IXo3*lMB7t_ZSkn+VLe=<?M1C34jOjg&y_4t2B}Y;Ndv-Z>1*5!XVJlR2
z6lBNoa80;Ba>2n7H<6j*dIJYfOi_&>S<Cd(G#HSyH0Fi&nbkD+S(D~5xa%Goy~}0n
zFSKhAkzvB|4u1rv*YA~m$LRyi!t5Km^mCgOvM6uc4hKo)U!{mH9t~Z3J-`)8lM3o8
zd{WQ-`^Ga4^eQ<_Gue3`od=#DlA7kJoT#(6l^VG+BuZ-%QXHTij)`xCi3wNJTvx`?
zrtZ8Vf+L^o=*zhz$RG$uawJuQVTzU`vGrzS80{B1HPr~}=I&8`I0dJ8iNMU)O36;h
z<Z<iw57s7AMOf&X9~l$Q_R?K7-?0`uJM=j+6fry|fPPYL9is%gRUEH#G(Q<i5~8YJ
zw)`)rubcb84d<KgO0GqFU4I^^zYiY8sM-XcEkiS?bO%~b{S<+gebaz3AqI+ixKfR6
zSOA{+z9do{As#_EfN59FhEkw=Sr&t~9usUcYnnX$zqLdA1Ei*9QgmRrrrk#Y*heP<
z9T8|vt@-Eyk2ijw#G`RE?9DZmf5;}3?kj{f{cyZn=w7>Ay*(mU!CcDqXs`J#ly>wH
zzSNaF83rU5pB>a{oJ9<9rGB?~WNNRRSJp?zETZKZ!aL7qeZ~>49(HrFRS%@$>-LWK
z#0tCYs~%-%^7Tj!Hm<z&P{RDueZ0n|FYNL|ECj<ClhGv6GfP&YmRqnlw&@~2Eg3HQ
zPq$Q#d=c*OUmZ;Q%i&_g;g8F(iq`vgPo)+F+S;^g{}p=;K2ec@YMw?%3z^#1PmGtb
zizi&`=BX+M2hFYkYDdE(#OMuj4@Zfm$DOgl>YP-5)$qzQK!*zTjrE#3?c|uTBIZ!A
z-aODuUy#_SeloV5T~L*Pvd6;M(_q%xl3+YjNMe&0<=U%kz7y{%F~?}$KA%`P`D$x`
zk1*ck`Tt(hu>a*gkEL(P8MF_j^&!bmg3r+EzY2c^-WB^;^3D)+w>0)x;Wm#nDw3|q
zEl3n{U|}v=lRFXy*A5|loQWmJkq%AR>GACpYIR*RGq4qY?uhL6bodLqZsLS{4WJWc
zs`jeQG4S@Nw4pXsY{C{*J>`zfQ~5$Cou!sZ1bO@S%J2U%fyWW27kw`uO<l!A%kk2;
zv)(HoU+y}^bapAdMf%~C`pDP5IeY)BLg13D9$|dSc)ydnOuh(6#Rm9kB<%udR7379
zgW6U7c>|l|04gK%>9)%zz22B%EkDPrV(Mdule^M_)8qx(FSIF){DCql4+s7oDEeQx
zY)JPYZZx{_ece<(O$)g9UiM{8thc@;1GckU28}KnG>mi}@B<*;%aQ7UbyYvEKb4yL
zX^Lfe|Lr`(LCm~&aZ~|KZHWvwy#Ie5AKfLy=Wg6hzoJ66$1dl8KAL6NKEk+~27RSi
zYszGc+$sbR;b~S$^dAmBaqlP4l|m|onuuZ;f*C3wbO-xyO?K0pdDuAn(h$p|SI@rK
zIAST6Ttd3u0;Wn9pozX>JQw5|BtN*jsV62#s}}3W_N43YA{LA*G45J?Np{7Id-<%@
z;vk)&N4Qo-vlfy+4%~d-EwBBy>R}k~wg1H)y}(qe<M`iHoV!43@#$*o8D~p3`7zLj
za1ip%ySo~Lv!1lw)99J?oB%5k;3HnTn6SD=GRg!k-xU}5zL(BvKv6UY{%t<baX^Ao
zaNm(A32~~U19vTJCExGP|8IJ<s?9}i8qojW2>f}?8A6&_s@aw{QL~5&v5}Qgv<i5v
zuHy*%m@)mon2nrD60d{{kWnsJsy@ItT1j6*@>nY9NeRQfF3s61cVk16n(XKMpgPwS
zko@R?8S|oUW>p1hGG9#0j!w`Jv_2tU-%#J@R^8l}x@dX%vkf^MTB{C^LQIJ8_r~^*
zJJ6%qPpjPveV=qS(D%DO$+Wc7tdJI;<j<Cv$YZhjFFaE0;{$A%a7>|tGmOSHuW%4V
z>*U(3qcqz->8e-NixqW0e8N5*4HCvaygD}+VGXGwZ=`grswj-#P^tYZ!f?sbQC~C5
z5SVPkl5|>S*Pkq6=j{9Fcxzg=fd!^$Ms^X;Rul|t{QZ{z-2H53f=?dZr;9FPJl<J2
zK>~k<>L8zxYR$SfKtsT}{ql-o%TBaWmw^%$Q^0BPf~>fwcYI#+D0M-|5}*5IyW;by
z|A_8J%hYiE;Vw=g2;>AA#8aXV7{t0l0UeG<G7(_J^wn5uUZ(gS?h0eEu+n_~3CdJ3
zG&kJAop4;K0^{lS`7LzOu(!^_@2=-c7SAL1ux`n|_pA2<@4x6;BTAYiaFLHu^o!8Y
zW6@}?OKb%00QcVr`$Z4H+hmmNOhz*XG_w;Bm@^PuNRHn(evq+9oz!Xj2~vRwkVQRm
z<N{E9J=-14MvoD<8aOs%RH4}-0IguSo@r$P!nwfS-))Rm^LgCp#kAP2VOC(`#Q|Af
zf(wLbf$X2Fl)OU&CA`??+Jn69j9qWSJYtQERJ!^k{8fS|?&16NN;h)hQ3jK?&e>P(
z&$Ci9;oY(XC7yuVLU_omH|1!DhN@F8++V@?3wfsn=hgrrar}B{%Kl1=*ZS~I-<tw<
z%F~db2qfB7h7Ikw;xc7be<)9<OlMy}@@fiYv(obDf0u>O;>`$+M(&ZL`2!`Arfk(Z
zh$?eI{!%S4lS1hnC-Uu-g9LcjF#^O~J2#196szeq))lE4XlRE!32^CguV;L`IorRe
z0d72K-Qt=Kh*yXo41a`24sAG;jRC6hq?0i2D9zwAl)xnTC|7UIZ`~J2j&VVZPBXAu
zf5Y3GccRSJ@)HcYz$s_H&I?Qod)03?;V6@&;!j8I8kEX+=66V7daVB^j_nv<_+#UL
z?|V9mkKp`xk1w27Jh*gGnu?k+)G}7z*+-|$&l@n~-69~JN0nIl?QnOdc&ShZaB8hE
zF_m$VdqbT<*ZBDf_o#|~Llph}ByVi0hi?DuPsVnd;0f%d;e<#Y*Np<dOxgxpaX2&E
zJ6rO_geot@tpre<=UR2&hybhhP>`$V=j-4a$>6mP`f0JU{SDkBfzDtK48)Ad_HU;A
z4$I|Us%C$jZ7Io3uQ<Aofu1Sh&ckO<nBuqA;pLl`%RN06WE(aabQ~<29ALxz{Yb$4
z?u2t?;bWY#`wWAbksn|8sbu)~rxXbA8(mI<Rmuo!%Om^^mYQiWXKH&vpH?S{)|oAy
zSXwp+KGl<|ki&e%BcH6L96!z;q$A3Ktn0_UYj)^w<!pJo+N?EUCKc;DcQaA}FM{-6
zUl|uRG$%5&rQ`nt>i&tYcgW4f?<!D8Zl;M(9xN<Qi`py^)-Q{_@~8qH&;unZw71Dy
zh$eeu+$-PT5?)rhQ?tF}ZC1BfOPvSC--&9AT<mh+fsZT*zZ%i`oI9}9<?Vu+CVtuu
zm$oCrqL^j;H5VSY=`jhJ9R+?Z#KL(uQlJA8Gpoz|{&yh$420H(@P@=Pzg{9GzY3R`
z2@~mavG=UEfVvVZpOVQl+LEI@er%W~zWOQPQ}`}psLT#}UndKPNEmU(UkjT`^T-*@
zwyUThG!XM3*L}zb8MKn+=K9+ZQ?Ta_c;x@N1N~<I9L^xxNbRQ+_JRCoTvQj#AZXHe
z*brI_w(6xPOiAga-bH;cxCz9d4;~YsXRnY?rHcRB2a4#QO&Pi(1H66czD>8*T;+!s
zg}tRr6B^H#vr-A;u^MS;O>K(q!=4`0+mc}CU6+0}=0<dsLHP1KH>$!?GOs#A+@J86
z802G6wYsqrL8jpMsJ|y5@mQ_qw`>w!fV-Mx0K7uVbKT`?&{TV|C<!C{O`LdsFEt6D
zIq_l?;x5>%9eBpl+f<^Q2%e)Zc+L{s=^9hANA-~`H*)CBGRj0{AoKGfF%@BH7lv>2
zm|A2kaA^nuNX&E?ywQrV&IV)cpq!1hYVEcBOHa9eIQDV>&k}h}Jcq(L5%hpXsuwt<
z$49>NaUw|^+T0%jJm)K>JFU){8Au&-1#Ba*g*GA8yIN1inj;M#F50)=>g+E0Uf}Bp
z<48D2ltAv2IEG~68uWZZWG<ohh2kd-y_dgrx6O!JM9)WzSsALxk}Uo(w#v`0++%o{
z3Bd0RJ9P$0p&2lOP}OY&wLdQ&wsn5z{sVJV+|zfr*Pvu(kdLT~TfVO)#?y`_5)64O
z4Z~OY&s=6tpy@ELjw3H+d;l*%(7(B$H8AIG*VYq-;7=nU1LVEdYuS^B6c9Ml?_UjU
zZo53Nu1Ud+<@gznMx`3=adMtZm?~qZ3O*at6*%uJW&W!}*uc)jS~@XOF3qqeQmi@1
zENxkU_+|8{mr6xWGL$b*IVh={;CL~3qu3j!y`z#uI88V4Mg#cAE)uS0arW8wmA$S_
zRqP;0KIkwM=74V`pm;xh3-UXrq0`=t+EMDR<cQ@-s-pJe<RLbr$l94t3CKT)USpED
z0wgbJAsW9UsXAblF^Uq7vYT{(r*vBLm;A)ja-5I2MhllLLcg{&r1im^BV6*?EkH<H
zLObpyW&rVZh^s$kHFZqDg%XjN_E$RHyT`uAhhqS_k~ZSjT7x@Nwy92~J>^DVe2Zm%
zfKr*)j@KGL-&%ZG-z{UFCIZlU#U3uP&)f;N+nO<3%~j_cI$^s{K#mZA20PX(Ob*;X
zJ3p}vlqMe(8vT!#<sDI7R6+{)%HrQ$H0OJYM_*EyRV8c&g~@-Eo;k+51a!(uDEty}
zx8m_w2^#;9^Ah_^FI_LSX6St(cFjNhEkz%&ZmT>wNqZoCcR30F1yK=2!4r5HgUO*X
zzXo8s|Jgx}-VxE9TXporj3fT$5}G{^eLnt8Nxh$z4R*Xoy_pB3c;Ew5)BiwRw<Vv%
z{LoC@^^W?o);jZOUo9)J|1P+11ySgGC9HwS1=yzY!fgy!0tbQ#5hEk8jxeX-k|iil
z@03%yG}p=!iQA}%{V#;A8^Xy1EugPI&U?dgp9|DFvA^cv*JzN;5sO9cQyx|RTEYY8
zu!qmQ5-gMm!=B!xT%dUzpuSZbWO@9XnRqYQyo7)#6CST;0j~dy7uUFWou(B15}RB#
zRvMmQaiP-otPp{${)j5yZe(NLLAq!3dWQf*UL2d{cQ5cbXiNh~QezhFUT23KW5%{E
z(^0znOE-V4Mx)m$#3<`2g|LhRJey(4kzh>2nje|vVO}<MCncb9#*^|Tfw%^|)Y)<A
zu}gaJea5Zf4!+Wycn&(O=qwJ7erH7Y_62?!v3rjbbeoZ>m~xdI)BgW0zzDCz9npq<
zuDIAQ>nOd#-?<xs<9sbF)dlBr`D`Hb+j0@KIC}yg_O$1UO<ouLe$AY$#-t*G2UM{i
z<Q!)pUXZ*?PL6Y}jnnB>5>)$IQ`Zu0W(H5TJt6THSc=th0!b{WI^s0d-S(h4!#h&k
zKkqj9J7lS|6<hOr`9}y_)rig-kA^!K33+7@uv)lHNyxG;Cl7cPQq8goCjwo}hSicR
z6<m4rdZS?1Wy0_pJglw3yeMR}O~sa5KDi4SnY-McO|0fWIHE>=H#$;hF*0(*twDbs
z68L8#c8E$|M3$w~$*MDDTgk{2o~SyiIGz@zhzt7&mvlKSbH`W+wvR^hJjKhF(kqOn
zxwt?>c?}PoM?eouJws5*$GIurxom#Q7=o<^ZlI!cit|UN$*{Ek8&W~A*WZ;6hU6qv
zLkmq{0QQEZnyBVBxSgkikcr8%5glzn;IiVNlAxUMFH-F_=|seDES>}a0@Vo2jKS}2
z@4%tOKai#E(KSn~`pCR{M(*9d1xc%YApc_fNnjJ|>(BQ(1#`lk?URk?tiCT`PP$~%
z=57DVfRlXya&|LnSah64L?f`GaFy1U>1b+8a@g#YpNIoFtC`K0hGw&1ppfJ#;23A=
zwRBLHf5!C!Vg_&>6s4>R={G9K-0gZEH9#^_U#{3;ART?7xvta(3`hTtMj5&d-#C*`
zFx!h%1d&nfjATt3hzIjSRPKKNIsDmX38)K+-cnGz;wVYFctcl8o|Za?<ObEe4eMX3
z&pkc9>_#2KU3>-A4o(Og(eIR1XH^2u6B?``zo7}G8IjnqwM(G%w<F(x9FvooI)MLe
z%)F}y!8x9xnC5o>J;c>|?9|6a44E{@`C=o?$b3s@#iaQO6A!^K3m>GKp8~W9|3T{^
zBZDF1vmN#Ho)Ra|en4}N(*EENE#dtsP&MZAub`?Rf|8XQPrp?(6Ol3(l`HO1@=~jJ
zs*D%pFvEP<A%qohwP@A>d7}t>RqTik2jbD6l13;cDEOr0w>av<OM~qFKK*DHd$`#m
z`24$?J9X42dLCI+@P?wQ`QcA6F#GflfhB0<N=w`$z_2#UI}lvi;w1usaTavC%3(Db
z<`N0*`@Am%ondLOB{qXuxStE8>u-On2C|-pgDof$=Z>5xNt6V;xLf!U%W`Tqm_C3p
zTm5cXt-*=7W%#fkHt@RFnyUd>zs`X20sdqk1;I=^iYlRpEh<wB3LOsMFKbc&*qKZe
z1Pdw`Ih`^>k`?2(7pE}=_f}-SC|OkVI$9db?AjU;%<2oin*r}}XanT1f*m5I<bVK*
z)FC|fn@GTiD#C=NHyZeyC(`VP4O;WIlQ$6*-(|w(LnmcLi`D`sx`h}n`A@j6{W6kr
zud3SkJFDN3ImHz7;v1n^Fca*XNv=N5MimNAO@to~iEW=e6f9l7auY$#euG1K*f;$r
zv5MkuoWOzV1dF%ZkTr@VCQHNd;1m_4t+p+KQLeCw`J;VB5uBG|Fg~&AE&K@@c+PTD
zs)++S!)$x~D#_0GTWCv;WQc(!d~5#%Q+$pq<Za$g-1U~OVDU~8^q<}k!rk}ZU0s?j
zo|O2WDT%~UlSZPFzc=d6OOSFf+6fZe9-b&R6j_;h1dnEzsOoCc;GG*FFC_b&i9_%A
zL4WI2{0!AgLS!2cro7+1t#oHg7a`!<N3v-5WaKee9nC|rF(TWE92M+Uwl#2g_uI@I
z^*8C4%cOCdGnX9M4FYc8uNm>4fR_*Pj(r&y2|6gIu4ZO`zcEpVi4`hI2Js%ZBKHSj
zX?lUS9c@hzZqe<0rsP11dOR5*=657;YOZ*~T4MdeWn5VB@=UofoKhej+c#Ku%D||y
z=xL2Bf%{^LD5%_6_v!b}X2_M<3`2MTu}~RGaH%AreNP<m+|Af5okfqOk4v`!SB$3W
zPZ)5^ODnSPQ=EF#o1B};R5y7x9ukd`#|mS!x{C#2Ct`oedjtb(gLq&no+c$<3ggdC
z^8k7Uz*zZ)W1AgKVqT1Xnzc8Q^XAAnRKsz2Nr}Uv<CvG-aWQR`VneH5x4TjF#$}h5
z_zk$en>=6WF_u5ES!%(qbG}YF)5P24yyj+fy7a?%(E2(v2=1-*2q-=9#!Av?iU`ao
zD@SqjtSS^rmRM5)B<0ORGczH@;}DaN5Au@*WsCPk(|hJ~sKlQ1)#<p3+m9lIJ7w9)
z8d=XXQ_1q?-x?bM8Zf2D6tpX5x(B4E5U`DWTcHhwvJK;YF4d&@Gv|e@STr`5lDs!8
zU9l^B@syS!tM95&F?+;$=rbv6Lzi|4NEF%;ip5uZWW$CKk6yW-;FS56%&{PR8D;Ms
zXdvOQj~{<Tk$OlFsDh;h6S~~^H!5PRiB$mDm(-Z(LJkK(Vr&hgapY9bCJpfR`^u3p
zXlbID9N;Q*c9>K#&@0UzlmQG8vgl)QjrMMph+Qm2YBQ6V)Fu{zMA9(MiT~c<8v~TW
zZq=$MA_+O`^Xdd)yF{iZ=r~xNVkpe`0+1B7|GU$Of0@H92W%-u?Hh=ahC68*xvY^u
z)wdx6_7g4J$$JR4MvHwainou_acvAY{zGc3W~ycR7oJ?HRa$bo&Me6Actac3RulDK
z52h0}-T?e^-+{TLPna!A2o*UiES|u_c5+5VMV%Q|Z5$l@z#6Sqf1!Hv_7fp+T3seQ
zydco;s`^;?uZk)sNS*nv^+4wua1Jc_35*57WqrEpZuBe$xE5gjXp=T;GDRwjEqVQ^
zu?FThnV7mHwBr{hqoXo5Fi2oeT1+asTI68-M_#`8Ri~CtSB_R4b&%Cve=G`Ulsuk%
z+GE%KyexT72`HEa{?OkMjO?ey07B?16V3)@(t8|#`a?T+d1hU(9ljK&928f!iRV$u
z@`6mjg~8aWXzK)836{!+kn@ep^C;3Iibcd_9&2I~V_hQ^zBJL?MPlluLEJ-AC>i=s
zJo+MTS3ORsT9nQnEzZ`<0A4NXKbwKwu!v+j(`c~S?hGn}qcQgUmd!=A2rJk|R#J=U
zzyLBmkbTB*O~Em`66f{0&NIJ<DP&gWYtIoU%0~z%p>&tVyEo0RaZ5D9d7?~<O|)kO
zNb!JT4-kNoJ8lF=-a;<+$sTodAA{Cgt!$!04Osr5nt|%P(GT23%+-1h!lfs!@RO6b
zGkc=lH%3~01%BxFQ=&Zu5OOV66is)Ar$eLflx6Qv(dsyw)JWT$76lkjgdo`$K<4yz
z%nJKBmK;j(Mtgbo<w-IIC=TYOazP-t;}XCnBW=@D*C>)J_fb-GOcu+DKH|FdgDg}p
z-_|R_9Z&&B9Jr6>OGfF)Gs6lZt9#dy=)#8s@=Xb&Nl5e|JPhLP12V2a{RerxBQ-hu
zq_u)95b{9UBCQILsmJhw$B}Sub(usCod3Y{S+)N+A_$<K!dquhK~8;u()}vV<ueD^
zz-!)mnS|NG$Zj&rg$h7EMTuzi8K98f5cQckBX8$ail&bffegc#=<a5=7vrpA5m-=C
zIsZ!7+OV-A9Psqx!=IuY+X$*-G-YTM4FoWkAVA}3UmB7yEZzF#i8m%6z@q!y*2|ZW
zaQ8L0hQ%5(NLn=$x7lh`+i8h>Jz4tz5UldS>6}M-X(s#v<6!q1w==aI&JIsiOZD_3
zkv0^|jaT3MI4U368lTS|`G^M_4I|5y0*>%(t*+^gMA#9W5n*8pzi=;<p}dzYruPC$
zAA38Ci8X(KY@Oa*f)vIU%|FhJA}BiPVrjANx?N21LKKRK%8Cgxqpbq6YF0&fvfnW~
z%(<~66M;uc#iI<Xc+AaaVqWGFp!>u(h^aQbEsq{Uu6=&@Ey+H+$N?2QxZCdAK3c~S
z+)C;Wj|xizSYZj%=<0FeXEc5P3o{@YE9?6ugEnYAayZYvgy6%Fk#U_W2|is|bR6Fh
zfi{Ku1>qalZt@6t9G5svQMi$A?`-{X0y<^Y<!J|d_YlV;Gax^UugmhDTfU^e9NJNH
zy3m=TvvdRq<7;^D2%$U$cab<{Gnw0`Mt+j#<pSYVplF!eLMf|oFbK%Rp9oz@O!28_
zSD}cyuQ@Fy4M@~nTMP5I!>qVytW;ZR;QNLv030Tv8}Pu*_(^%KX@c-%md}bOPnOvM
zoB7c-y&%P(ZI(4te2$YMz{q`ctiA}tL5a=~+SC+pCBv#FMfdTUPYa%Fg#|)q;L%N8
z>na#~a67Xc&2C0v;zfr+w-f7_^*2Gdx~w;PD%cr%RG};&%{QB_uX*t(Lgh5WS=*+(
zmQm-OF+4a}&R%)?);mop<%}Lf`<sgEUgUKGQ3$LYg-w70-rJ7&>&xEr<Q1Mi7n6(a
z?p+}`2CCw^H+IW=SsJy2CT>%c-p|eO`0i+i#E%RV!-eZg<lN9xfBZ`3vSKPP$De+k
zS|0Z~DNB%25nQ8No4q<eI1LDNme*YOMW#Gm_y^HhxJDjuD#K=Z-n_7l#^H54*>qgg
zL&2>xna)GqI#KX*)iCroUX89H!zNUvbSO=*{v5F(e?HR2AI2)V9L+;O(xF_2(2PRF
zrH3OYgv3<E*j|zF(u762SPaUi=Joe1NPvB8oAJJ3C0Kbg&MlaG%^I1@hV^Lqh`s+L
zyT$oZq*|bYvvEKv{HrJVl?Z-1V@+D%H7Aqq6tHGho){j&iy(d!ksqv>^+S~GDM^km
z)eWha&M!inm2JdIK!`sga~U^5g-(OXAtwY{D37T;wZ7B8OCs*gngNGIysz5ekw75k
znd-9ZL*YDk<1P861eObnJ^b$aOzCeE<FM8JRs;4Px1>$fR*U6@LYYb(;x}3<y4br`
zgSPoqZ_jK-&D_iKmnazC-&<s;5Z9uC?^Y&{>dIWcTSe7gz88cuarOtKS>cal8Awx_
z|3FSq+I-T9-|p&E;TQY5K%*nn<8$e$VUZ&n`hh!V{=2{IXF3bSX`+GN0HiqURQ1Bs
zwC~PrJT_mZ3ELl&$zc`cGM|oK)ZNmDa3<~s)~4yh{8?iSlAsh>EddO+k$mTsoVVQ)
z;q^wvTZOfb`Ufx|x=B>?*VO$=*cfsEHz}&{TfTSUo*d9=Pkx;gb0cPmdh`t@t_G$5
zg_RJn>G*4)n=$G6%=9vB(lFonVt$0td@*eFS|v<67uzvNMmC#0ULV0Z=kk*|WdYU8
zL95rM#%*<8<^j?(kr>o|ae9WFEmC%~ck<$UGxRz9*Nn9es~PM|y3y(x6hnnDlMicA
zfryvM%|7h*CRNHwax>kr7NZ~EZfpg=dV5}+@5FNA1DgaVNudZy@DLgq;W={dt{$+g
zK5)k<ItjTQ2lQy1%8|&uu*wgAA&0am3xokB4cu&KDyDI2jH6!*()*Q0`Uo9K6|#UJ
z(98=G`U*y38$1KtesnU7f)l8|_ZNdTho!V5kRL5;miXFgpHRCXn`IBmO6v@)(K4}`
zR;3115=)I5UcS)d$i04lRV7>C^N44~v(y#qLek-4&$CE=v1HWnXeXQ#$e__-b#G!v
z7}&B-NlERp?rj};YC`}FI3!_1K5-e8rO+0tvoOi_^d(<o4SKvmX<K${nu&8izmq8c
zF9SOfM!cqt__P29)^%l{!0x?5Clb+9j_OrjsBQsfij6WvaSG|+R=`^*kkYh4ebtQf
zs2sDdj0slm5h*}EqwMrk<S3+P?1n!o_^8g};JDaX?UAZO#67Mmga9K%ct14|I@;q5
zsJjmbnKh@W4&a|NWZ?sls-X@he5KVRSMu;(eMBO^vKX`6zgF$1&Gb;`-^QgOJ^F@h
z+5?Pe`V%{M23k@}-=4pZ3|5@6QyVgm$?fo8L)$U5i|S093a(B7!q?QvdX-DBt4JO`
zaYx9Q0j>Y@io`+^xWoiNn5YSnv@*0&4B3NON_2J3uYEGZiq}p+02boPB(ItUJcYwo
z-uqAw>#VjFgc0;InqjYu?Pbp->3~C3$aix%7CKhNl6zuG$$v*La-r)3SefOpH+a?G
z-0m;VO8nnv!Wf+|TD2iQq~7+^@s`DbQ~SI-a;YJYSyX3=9obA)l(%ka*qBLHg*}fN
zQ3R0wmW^^khVN_n^G!dnZG^p>As!?`7~B@*4T#;lUazCkTW3TvKyv#%9F-fi&9ucC
zpvBRRUA`ZD<F#G^*fpBB*tC++9uS@948S;2^}+nG84B4~*)G##OHlpQU&z2PNNjNH
z37ecjTMbx14Mw`ZU1dOW-d!8GmhzCS9-6bJlP&gMu7|yU2Hx{C?*Ze9_A>N}csG%!
zv1PFnwo?x>;AwBJwFAr{m@-Q6(Z<=hPZ~l6>N2JF`2X%=J_Qp-aO<|=g|5EO$<7tF
zjX43&U!XN)=9bz5G<o(O&V+7!D95R|ubboei#L;>u1gw(o*=~OibS#`=RoXSAJvTn
z+^9Nk3#|NOCm%nlGbfRXYz`nD@6G0^?lWjwiPgX3)H)_>YnXaXMVB|5(}9tCWm?&|
zN)T*TO7aE|0mwr8X6oGG<T`-{U^IFb4Y<~eTcH8}h#2SmE8Knb(4H>w03Zq^n^Xwc
znp(B&T9Km;<1aZCAXYa8n#dSbPDI1e-C<=Io^N!|id-Kms%hCFC>w2_i;Fh~K?;h5
z*x;v76qj!(y;Ysuv3eTtFqa<D@I_zq`swf;IP)DtIPCmaBt@n!DA>~k)l0@SrM-q=
z_UST_!b~TN^*YmBEiIw#&=OU1zKap>HMkylv-}WZwmtaV+`&YfhPo|^bJ&x1h`ufv
z3V2UQ`J0kx6Z`WBXF0>20<`=%aV017PmOZohN)yI^CzYc3Cl#e%1I}8bQhX-wr{ct
zNhaBK&WP)xPhbhbatOYUE41ql<0bl2RJ=xKTLo@U+5Paibb3a&&;YTuW3N5DsV8Z1
z)C_+c@Y3>kP9jwDuq<Omt^59CpD-b*r~o|QsYD$iG|&!7Jk?GKZVhU@GZBpX;A!E)
zg{vpJR`X#+^2dbs!f;7BJ^+~F@{7TVrIV^H<F!*JTAHQ%S%n3Me{4Y78Ut#0daX{T
z8UH!)-aAGt&Lm5~WeTp@+I%;e$bu;O1R5!NwN{{29#-B3iKt3<&bcRW+vOjj(K)z?
zr$(svHY#igoT5Gxy=^bHrdeRhvq^BXV)*56d{wScunIhf;SAK5<m&T+wy5?7*slg1
z3mxf%EiCCzQUG|0aRHK0-ec4ii262m$WSRrKlhR;sTdg!BiiP8cE+frFmTUinAUn?
z$MEmY95+Sq8$~p3Z640nsWQIjDyS5IFZ~CExEhMXQ}6!+=xD-U(bx5~Q5(D%xS)yZ
zkqvWLWoLl;EW$|0W+QbVjrY*4qZe;LtNw-RZLg`jMHF)<2J>ZUc=j4avR_yu>69={
z6x_}^uQw+9Y?qf47mO-IFUJ6T=q(27-to$J(u7&X_iE1feO!e?-5r_`S%Lu|i@^?Z
zdD+kTO`wWfFN~V1OZg{ah*uF7fY)deXY>Q2bluEsf6ZI~0xt=JXjJKs+;@z_uT-(K
z9&SYNU7^7a2N^m*u()2Y-ZxyFXGwJD8smU<xnSc8+lz~Vq^V%%H)6VQPm^q&@ysld
z1~T1JwTLTQ4~7KdXL&=<qwcE%SZ_G><PeU!zIip+@Nm8PV3H99Tha?>Ij#^O#{H^m
zxS+SZG1r0W4W^#LJm4k})dQUcjhSw>E3d2d$naJgu*y@)GH%EHdTy-My3H%9i9H7&
z$EM;${)*$6q1yACa2PW$#A+!8AFxb-t&Gkrq~2r%f=04(9fV31r`NNcaq!m`Wd~tm
zJ-iUdr#jIDawnOpSagPpI@3yG)tp0{Q2T$47i&OrQ~5MKQLmQZRMWvwC_8a)m37;k
z)zO}7+UgK-dEVenjq4b?J@_wO1{Yz@JCKyHPPwNFrNRF$Y>OuJcp{)tgF}im^Q~vC
z7fLXgV%jz&kL_3Y8QPJ6OXpzISIt+dvEsW1$i34sPmY-ki%Ml73vv_|NTSZ|mzd3d
za6bOv>53++Hoxd-aEx!4op`eOFOZq_wf)dPOFxP{F-!x;c@yu(S{yP5m(<<YM*I?G
z_K@<tmNx(-&-IH3#tF(vNT?@sLlW@H)7J`d6D9!usFue%9nrAc=!pOAWAbR?z(FN$
zU`ZmhOYXewwoMCB#_n4JmA5iKQd6U`9Ed6Yh3m=tvTLl~S~b(9c+L>$?w09fA{QrR
zYiwqYwEppkML%g2heD`I&7ngScFSSw^ty8tWpLd^?r~c-{^Z7wT}gKb0U)leDJ@;W
zUb_1mClYlYakn2oQtxjEUJ65hef)(!lQ$zwPh;MO<plV9V`WY_GaR-Sl-E;|%7b9d
z%tP;bRPX0MT3JqnP%xxiSX#p3R>Nzis+F)h94EzN?R<0&zrTC63V!RxqC91W|1dfT
za0QZ|*AE03x74wgG2YP<%MIrRTmX{?G_TsM-~P1J%V~e1+!fug^u-QVHV5(AU)~@-
zIMX5x=#VHGW_}>P*eNNI9F>5{%jhto7We|Fg2LU3c}j<uHck+o=bFBS?;3hq8dkSF
z8LnGa2r^l0`NU0NSIQJ3V0UC<tIzUvGgT2eG0t7cR^0U9oHkr2O54MbFU(wWJ8(B^
z_fniSt<JQXsttk5)8Yz-NGWt#_&a=DA~R0_try(fO-JEma_(jx$8TTd1*~@X2$*{;
z>iMLn<Bjp7K=+llMgl;+C5OK|L83va>(356kenDKv?7pyr0rO#eU!v%sAb$h$z?g^
z4tc=BKs^gM_||F~IDGwGFo;*?SjVr`68V*yswhB^0Ey|;Z}(#WmnJUL*S_CT3IkCl
zE-%l<20g+|6Ad6`ftts^R<M)$^z$UY%#zAvUm*M45DBvS{DH>%DVU&)gu`i?EVp94
z&ci;)T;TA<nyb&Gg3ZCi)iF39H{__tBth<TI}L1IhZ(Sfoa|Mgg5#<BwTDJwQ<rdD
z4lEf9M*XSd1B1_|k3%4&Lwvjnon!<Cw}>^ValIRkW$Db}#zL2sOik5R=H09xNWA@h
zBDFw(Wi^}}f6|z-zVf)tYM|4s^fZj)vrHk(;9M!SBgI5s`@Gf3D#qsZ-*Va?d2K{+
z0df{#Vr^)%GfY}oVys;vk?^}ELL$0{CiP`<pk?ML&*r}cFP?ni1PYftVI(nx-~m6|
zSfLVcK&=%8=a#W)>*zJmmwB_G(<HQr8T*I2OIq1m0YPT^Y-K-P0p}*=<Pyu-*Mb8>
z^IlJHtbw>)dWZoNXPA}9%@cuLpl}Cjp#<jvSyMLJWt1GNd!-j$V6Jz`y<Up8kooUz
zb{=_k5t|pyZYL#Flg=kYZ6d#gwF&LqSlc78N<YTYC5yF&V|^oo`wo!@Eg~N-(gV^q
zH)CicF9`1gBEkQ&9pEUsW%DwtBUEW3oDc?hz*tbg2#a|r@UD+c&$(F^WA{}FHuG-d
zaLE4BLz~u2|7@TrDT0z4B_BW1jXhfz7pb~YV*s&n;%s9q8>UW2R*xuD@^Ys|y9{uk
zQR57T4J4oMB}{~eQdXDjITR_(y$=?Yk-LZS;!~?^GRZqSe2l2JRs2crD~{@JhJXBt
zN>B&_G>*YL_sR<w{j$+-)&aBth+_G7-5R(jrVfQUFg{|HJC#ubx!p_GosF3MOY9KJ
z*q*N++zd7GFC6fMR2WjBRMVdsBQ<UPHb1<kpxFtVy}b;|k$hMc#e)A8eh#)Z-P}Zg
z@(dzCqPRrAhaBj{%8NL%esVZN!8vpM#wrf`0mLAq){kLlM_EIXrZmz$ehi-kpbBvt
zsA;c~XknRfS~QPhtAEh?x)r)c>$=nxqx0Jw^?9qc6z+T4-roC#9MU-pF9Tp;ONWJ=
zg8^wiI)pKLt};mMuVPZrY&_R%=ymjjc1a$Yx9NDQreFjg*xclcMyo5(AxdJlV1sFK
zUi}<h*n!1z+}v(IfJv|9=Oqr;5MAo8g0?oH{Vay6B;}uM);;7HX+JAV5VMXSZwr7f
z?_?GRv7tW{K6sQu)5VlG-%m$=qCTrF%xhXDK7gbF<O4o4nW(%YEK7M1=ISt|#ymmo
zKSI+DINB#+S#+(q>=>f8HM|qRvWf-+U_fR)_m_u<(848ASOMpq;Gkm+_QY+EZK$xw
zVYlu>A&3#RuY#>KT2>2{h>6oQb&(ZVEze;UD--a}nbv}oA(r#e^IwzIM=J%ydJ+D@
z69@ls*c-}Rq(Ij~VMXGh-N}l5lV7WEB^#ZH#T{$!)j7MD@qRAD>M)G-W}zj?VDc5t
zgsxw$z}O`(No?$?3!=(NhEd-haw>sT+J+c?rkCGmRd;bbo%q!?<3+*uGphv8@ZAaE
zdxirV9?lerxFvoYrV+bcTf{c@a59tZz+e5@l4VJH*|(kc(+K)2Glqw|WsJ05b}BKv
z`j4etW%;Ogg%EPr`p$ifR;N2bx&O_Bl@uJHjaQJI^i!|uIadIrVw6uzokUD&=19i3
zmzHz3!m!rN*~|#~kwhX!mF0y`Ima6X-|?Ib9butwJY_?PepRjJ@}&)-byHkPBXr)w
z;IM4%V_jKXcOw2Yw}Vn5umkYmNkAWp2ps!9<jXH#(XJ&b4O7mdYC17aWJWAWIi?uu
zo6B+dRAkzhx3s<ivyHd-)yb$2rGt)3MsS2Dx+mlNkZBlU#m@0Nh12fWcB@F^!I+QX
zz9m)N#aLbOj{m-x8E!44e<UZhW%aKAP(q)p<M)}|XRR%r1^Cr2|7X%o9q>(2#59s9
zD3R4OQy&bSB<ZQ4tH6-=>PmG6Ybv$zeZu}oJZd_2!50G*H~)SB43o*cH-9$jBDE|R
zA)NvFim@M_`?y>)dFA4!+c4$+o3hmL?Ve<B2juMoqKyhTJWWgennkP`l7#z>4e9FM
z);>wHY{4#O#oUMauwUlXE7^b&CP5s_oKlGZKNv3h_iopFUK3t3Jt(ZbZFUm)>dR!S
z7jLIKA|f>_l#mbg`$!KOa@SVT44?L0doWoA8hpdlfJg&LP4TG-wRLX@O}T8$6Ukp(
z3t&H0LgDgp73W01M>FIB!{8WCd*Z-Yhf>x=`uZywc*#$y)3xZX{tT^<g*ct2>Y2v<
znK*c|3<1*7e6L0QgnXE5&u{UAprXu@rN7JHXPjo)?dlyJV^QRhl6n_CI6EX8LAe(2
z<U1PsLHE%npnI%bk7wdk`VAPa{BI?bs$7X^h+p-JvJBQN8}yJvOBPM*YnD9dZ&j>)
z3NDPze5LQb^uVa@fL64QVNQ8eAm(8fQEu{}^rgMWKwe7a#Df#Ltwx1|sNZJ?3G<)b
z^0`bb7e|uuf?k5Dp>(+7XSY;U_ozjg3f{qY2XZwh3q6g6*}qo<1l;#?hFrB_TbO$j
z-xE?sq7N(WsLxL+Ec-E+vgdc+d95Za_pxTqSgZsx^Sm~{VG%{M%vKSAENN?`(51$=
zrgny7*)69WSWm)ic1Sf7b{h&MfTQTv(>{4{0&PK#CT{pJ-#KWSe&rRn>*##nER)x_
z?4yoRI0C`dm_Uc^;iY^_h5S-nZ5B&^$tco)MPpbYIb0z1Z!xu=xHIFQ*f`%xx6Ue9
zRAXD56OKYezROoSk|cIX+PMCJa~Zw38xVu!uRMSS$q{`ZkrY`-#g&C>*MaqZM=S6@
zI82mG?gBx#EOa3n+do_gRgElO3I5ftln0mL<-^@(ja(c(#f3`L$TT{HuYG0eVdrTV
zrcg=*^L74v`3Kyq@j?Ro>mq9em%LfSS0q|iPy;Z-wrNOD@Fk&=px<zIqX$i5D&5=s
z6vTc7Q?JSLx|5;e77Oz!&!~_jD+!q5=!~K3JJ^;-WPHMnSIiUpwbUSg>^Lq^w3--?
zb)<vYXOE`u+@G4dOLN^{xIfK8mCOVZKkgzGKF8QoK_>u}+9Pt+Zd*2Po3((Rc>ogm
zC7tUtjd=cZ&@yzchdY)m8Lmh}QwWI`R6GPEL9ZAuD=VeJu1>jTEo@u1uj!5d^zWRW
zvQ4iUn=1yI#3gT7i3o?<S~2dh*U}lAd={afXLc;gRPB5t_1-0I$09}R*TqlIeQ?#2
zx*@uS5QDYK;3$TZhhDH2rwSm!j@M|zS?b|la_PwcHuEa7*)lOjdq)Kx8h_Q^Y;QaW
za9~o~N0YcaO^uBy)taxEdpSTU1^qmHjqBDXUZ~{eVqn3p)iJV~5VmuE;Hlwmig{4{
zLz=@1vw{uGS-tcW6*IyCdmNzK4S>xaN;q<L1vhDwI)NSRQv>*7>T1aDpsE|4f?A|v
zb10ttU8Pv^Y*nM&aY#Asl(Qu1D%&Dg>;7V)to}4oazq+KIVU<V`8Ab!2+wZwcZq&i
zw3PKA?$3z(I-g~HgFtWm^kAhlwSM0g;HViwZnGr4Q|>GjmuEbEloC6Sx~v_wBA_LD
zxs?L<V5P`3przy8<VlCpA!CjH)+rUoZv+xeNr`p>z5o!0HuY<;Dl4<ho;6c*PpQ_#
zsT)c9yYbn~pZM_yEuVmEL`QB2T`vPwJUICSHwu3_^^MO*GYlR-r<JQ=11(-1Aerc)
z@d4)+tU0Irq*R=Y@S+uHI)S`M70WwI;5rw=OSVH-xMf=xrO=tqD54q=aeB!gyi``x
z)(vwwMg@x^d(DC^tlw~2HSH&_tz%V?QJX|<Bp6zkE0&fXRp?fOcx3E_#eJNo9m3nw
z+=p&a_30elt0%f{g<L0Ht@;<4rBS_K9t@}U2y~z6TEXO&0Tf9W67lLBbI7-NOX^f}
zKvE|3R#DT*&Tr=CNH$tHHN$V<ROHIpKT4{Bp+T?>5_!>12bj6!HLi+|{$6`{!3M1Y
zD$aD+*pWYc`6f6gu{sH|h*7HId4#rjct$o3MUqazS9a9nUVAEsLAg0SX0;f+y6j$;
z{k8ZNP^iX#?H**|`F$nL7<H>Z?MV+ntcT<v@Ja>_C3?}Yau%cb>Of15O`C)G=|dA2
z1{TrH@5ir>{sjQ=F`VH<u)Xvbm|J~nOcFkmO@YbBDQf%|hebWcxok<>e&CtJWP{l6
z>xZM5r%LuMW-PF7mB~`=sZ5q(nZC{r<1^6BCy^MO8oJTtyg+$XLuLP~a13j~ic<cY
zv_9V#82Av)xAD~ZugX?>71DuEhGM%whTFoF{Z)=UkzQ|nn>C-nkFsf9SC}C=O~qwN
z(M&mWrEj`6ng=<9!%iT)a!-d7PE8r3<<~*pHuowXWzKVa)G1lo9vyh`@)2&y>=&Q9
z3RBr_&*nPc<DcXt+wzn9@i>+?Kb^kVPDGy5c4;rcq1_v{dl>lfH9&Rt_Gi_^&S5~l
zQE<;VQ@gLF*M;=1&v;L5el{L~<nxa0a&UtxQgu9%Sb!1<_{@WdJS%H;`gxd=aAjK?
zC_;`J1#Yh7D8v8iTh_$bwvxnJ3RsK5|1+w6m@}s%%Za797Vh!W{k(3?9t~~E@D{O$
z@f)H-sDhk0I0#FA2_5DumX!_N{rXPk3GX>JDNJm_4)Po!x4ATjonvL>dY>EaK=Uqs
zMD(bE$0uiyT_8$=bxSn@ih)k~E1ATapVSL}V$-_Q@Ny(sFOTp?#A~wvwZXiyq!u#b
zc-HN5Gl=R|-6fbS_i(oSO0pua4EGBEcz$8ZwWjH!2X15mES8ykD)ewUWO&+Hqu5{f
z+*F^d=*v?wXY}ZN{2=*1U57ta`cYkT^Dh@^69)g%bp59QcV?Z`%&_-SE-Hs|p7Gno
zqth|r#YPayt7Um|4M1Bc%jgiQ)#O>I-g1kH;E53Fbu*$3REuy|P50dPs#a_`?8K}#
z)s-)e1tr<BiT82T<INr7dR`@o({K0iZ$bK+RmE{DphanyQ*362ojup*>uYBC@bRZq
z0AsyL5RK=^cTBHzM0Mi62E+TbC|!(lp%YWVUfP~w+*TjNQGj@Wf7OT<fcOTUO|QSb
z2UXTvC3K0n_}bgtY;AuECDf<!F7?Tl3Owg~5bcrI(vB9me?X=<GA!omwtmp~Gni?#
z{e4IlaVFcu8owcA28_#nr0|ycuP;`vD`|3VN(&kQ16i7DRuHLy0PLAgv=a?}g+x=M
zM;0#F@fCX!R~|wZlm2#B&m)`a;x4+Xxs(&Q<dM?}wL4*f`8`}G$@n^A+L6|MJ+lBe
z#$po<F=q#J%e@0`IrJ@JeI6M?=C^93mB=_uNZ*3~Z*iga0#0u#L<3mQF(Zc5A`ie@
zP9H&e-&gkzR$U>$cl>8%S0T^H!%GikZ_pE0shMb2sX%u0hEFuyj&p^-HM{)v3uXNZ
zvAiYD3O!9{saa_kAK#X(vlr`_tE(de7{)F%N%&J1y4O@z8S93MUjk8MPN0Wud23^1
z&OtsSedv;`@{L`)6ogDOmlc*+EVJh&!0@8Yooh!D5n>;3R4vTss6OuUn~z=kBT&zN
z)ZS@>IF3TW;ch*cHmU7r?fdTirvrRJ-DaBOqR0w{YT{u$bZXAhvX4rNx<z-!a{ff;
zKgB)2&ORQ<q7iZRDpN9(TNWOfUr2nFj{g^hQ(yOR&or8}b|DZQFfH&AYIYV~Ylr1|
z^j~^Kj6Qo(yZ0>c!??bnb41%I^(JsH%eMfzmo6>T6sJ=lbb7}RgJ!A^x#5|MU-;hB
z$taQ?{w>Ovdxz=K>4PRCjI^qsi`&NNwC`Sd<rO$_Ef4L#%r|ohc*!UY=m>2XE)6P&
z=3qWd8Q5Aiiwa&&vl`5HQHF61%T27Q+(@VO>%S-ePfeJ<*ZKo9Qm5d)+q63i&IG7I
zM2%RQt)RAKXC|=-N@OFOr<N<tS_)0=4&+BvP%zJ=@K2|a;NPwF5oPb!DfTHF(i)F~
zO>|}eoA;|gSUPcGl{FDDaL7#FKynGMFz`}DcE=+ldMQ3QL6uBIf}QD|FRRAgZTqee
zk0;gKc<Fa!MnYCPRGeT_@^VpsRpq4A+mc6<g9C=%I<W}(@<^Ji+$A4RiS}PG^}CH4
z#0Q9ohCMQY=vz`P5|3lEiVTQAB&p?)f?Uj5HEqxXI2w)&C{Figq{7BWH{qmBR_j&(
z1Wz!4QM}LRmZv8!PCp4%<u>RaYa(GKc=R$1jeqcMpm;VTx*VguvL_FjmJ&$4kdqO|
zE#_&l^Fu5csyNW*yvUUt>c?I3N{}ls4TnY)T6@dLSJzJn=yMe~gWkX$a@q{7NPAvJ
z0~C_EY`r8GW>3?lgcjax7Ne#k&tnafaeljrnMfc&Y38Y!zm9j-go7xne(1bngXyP1
zObJp;NH5DpOq~k}wwTG2pLyucfp`AnqQE0V7__)ebYBSvCHk&GAkAx@Tdx3=hPSJP
zqL#h9sPl=E<xaV?8X2g{{FGCV3j<n?9gjF@!hU!CS-rfrKla2C?F`qu;<NEJg-!O8
zXg9sD*;$AlIb5>+CBW-AQlCN&K)!QItAJ7J<iKPWK}AmMXq!-RzjOTO%B%zZw89G<
zg7bbS5rvo{vrW6@OH?O0|5u~rs20fDA0$;T(5ZVY;ll<WRJO7*|7oXba(7@`sWsgk
z3`J0$h3|pkF~%vKv2NWDtxUN2?Rag#jHTyTE~E$G*kkor<orO#bv_I+)59YtSioJ@
zPBQp3m5j=y7?%|-vN@BuTJx~zxD<g|yX*OW{^^*VU%w}5L;01!J(kSjwR1-UI&?Qq
z`F_Xt#Mc3j`EcbDpOj)9t}UzW1meQ;Lzn2aY0;<BpHADLo=T1f86&42Igt%oJL5Yx
z?x@dnfrPmL06P-nb4pk^y*9R2VQp5joo1}^nmb(V<zq6IN5#~(QVxQ-`Rhr=DUv3K
zxYo=KB!0ZrtPj3>V-9(MncjXYqux@-99W#iuU`*EgSc{uH5kBGFNm%QK8k(JIJc}$
z4BxnpH9f<XXLvu$!s7(^E5885UkA_wrVucyxxEuI%oc^W+5v4m{M%$XU3xhW%8bXI
zyOi}ID~(HuepG!9pZvoaN~>1tPLP8IIhp1Xs^?U1IhcZaezo`l6!80o*4#PCJZmA<
z4u3Y+D1M23iaSj{PpS}c{F%zWn-lPzcLrF0!ee^H1TCRu$$m7TEy+q=<O-<gezm0p
zM%3zMjGzZN2-)Cuz_IwsS^a`qqJw>30Y1lj>eoiG@$TElfeq)K9(~I#C9(2#I|j|)
zgaCgKGbb%I<hoELN+yJgJ>;hQc#m3?n08N9Q6IlHUZ+BRO6lH(OjlrEC{zPg@%_C{
zJ%HLtS#GT{(8^$i{XGUu@_c}#KPJl)r^$%vC)Y}qEhO0+*E7~P;@9X6muC1NVt&hV
zv~FPB<glZ2&(t|dSGRwRAY*TY4A&SxPnJRn+NGr`PAX`l-P^|KGN}|gv$9n$TNdGF
z$27n@WATkWb#+rubcbe#`F{lMlYwa@^}$Pp<bQwIJnOs9WQz=6j>}34&mikY?>iZ^
zFu4OwWS>Vujrj@|`LD>&+{6?9whhpfaab21r-B;ZQ0h<bnPBkAMpIeHz2_poYSrxV
zHyg7p_atFW)=3*`A4<<B2G-c7VXvL;UXOjpRc=A+B|IADjGNSY0uWzTNk*6rH7ph4
z(~!WYaHu{JFW?a+pBvtJ^GGcw#7+r%m0NK57B&O0U&*Q`wf;#+0$BNn=~>G%&R3c?
z^Y7v5L?!4#K4n2{_c6n)rhXBffeyCG&Yy=Z;J=WJ+%hUfLIggRnyb2%bBwO+n+Kg9
zy|Zx~=;e{T%)!ec-?x`>mQ86EJ3EOTnK(6x#fgnY>W+oq-`r+0mEPx$%T1h6_M6JM
z;ew2fnGvO1s>!Q9r~JO^gxCe2KDdW4xLzDq98cM6@BGcdZ()fb1K^_|akY96cnudg
zj9Z^2A5&3EiQTnWFE*`6S?To%S;610z(CyqTRi-iHV@fX47nd$NZrqB*tw*trZE&}
z6IbGK$gNke&K(pF_sKKxwcLb;(%@PXbH<+Q^|XbJScmA6+>6P5wrN0W;(j+8GfdoR
zt8eGca|-2m?TzQ{KQDSwPU|Umg&;I|leM0|$z?r?WH*-J9++^*-s2Bs(otF7cQ(C%
z^N`>`fb!&3&HFn|O-ZXB%g>Cc9i#r}=x+~}k<iirxIH4C0A%5AZSe-?iwHG<6nrUt
zSP1f68m)di34k?Y_dUSxjR%}1QN;cv418NXWXHW+-CiPuHAn~B`X6cT^n~fRr;o{W
zUT(XS5znmk3Y!M$e~=S~nn9-SWkY93x@5@WDm^2rDLY!lA^5{R?gO4`Y;z*+sBkg7
z54Z8p#DF<rFJE-jEzIqgPwr#D!6$;<Rrtrv7LQ%iBqmZeCUcP%sEC()=12HkdA<L$
z3V?2qJHvei%d%gF-EVqw=TNBeD|WIBWIv$%E+pwkJ_~qNO+5(Df8z?BvH6yNj1uJ}
z*%|MWlM0D~dcc4Ng>N@MUvAk@mTqdkzXH~*AB-f3GRI^WP3!$dR(+G{^lJRQZ4BN|
zV4v=V=Ql}VY0ZwF&Buo`r2mrUrOi`<!kEKpTeSDi{!NfeeqK=qH9e^sU%S0VzxYOb
z2TkZeqD8m_Oq#3&*c*^<L%GRaasslqCwuPlXc6pGUHNY<*O|gbg6h$f4d8r=nP^%c
zc?&gl8k4UTBjFn|{ZF!gf5uJ;(Z`_X4vg)YD3N>`BMx3+-q7?oCg`W@<!Ke^znB{_
zSeNl{=MwhXHo+aDHUtKNDlb>OSHfkU0uN{Y4nZq8BbC=iBHgVyPG5BO*~yuxm{qd$
zV^<~WS3MIe4iW+1R_VY5#dYxUK{2jx=+(@exza;<9C*5qJ6eYMZZ-@6IQ|>C2;z5+
zkEHZ4VeYUYK2bP1P4#18hAHx@VX(Z_!OwYj%{pp&o1}rZX_;|COR<qbBwop`NW2E-
zJ-;@P3f$2;iHkJID-+txKQ1vCdH!oia7MbGq{I5H-I!g=_i(K6Vaf$mM6gv`JO)mb
z0o=`s)Ja^xi;D|a*{((m9}h6xx?Hl^eH{iXbkZ@3X)dG<8y<~j&6i`gEE4p;BZ|`x
zOLAG?KC2`+Q9lqVN%39PAqr&;tKDe#FeH54%a#=zI!XJxvRlzJR3%03U$uR#c>*CJ
z0)-r0dw)@XZ@|PirEL8fg%&w`Hl4BeGm=n*-}{n(&P<9PbBsrEGYoWGKPxB`t=fpX
zcNMW_Vduvp>qjdB%hVe{Pr^WJHYkzBcDkzW6jf8JlexYFVwe(vkUPs4`sHCWOU)u$
z^~~OZ2Y-0TNkpE>AiPvJHdvZef{hRurj0_$L6)IS{JZa`50sp*7%}b;IrkxKb7i&b
z2=<@o6kO5@-wSqLzR85glG_iRA*q3N?Ep?q7Www1lY4PE0D`(BX_E^#fb<6n<8Ht>
zj&xa8j3fJ|cFsap{7*SKHBCkFxG7w+4T6ATvUZ?ZjGP4LF<Ja_7<E0!=b<diLa^P~
zOc>YH_DA#Y;!u0rw%$RLz>W*7j*9!dL9bAx@SHk2q$zWk(fvUgBwZG2mLVf@ZZUi0
z99tfIR!;7OqRyb<MW%fSI3iZG-ii+eglBzpACVc$iK_}Je>+)cSUW(33gQeSVLSNa
zC_xG@3peK^!A&-i=<*!jZV$!Sa#Ki<tCei;F2$DAhpGy%ksK6-BjAqsU?SSJWBe+T
z*bl{#yK)j`(6kcVMG>*Jk^S%_cE7ogao4c6$xTH|D5!L5C8;#(<{1xf|GN*>nffgl
z0kjL2tyo|65uNA0ox+Y694#%n=l}12pY$%DKbjBx=ck~8g3C@Ef97pdi7oZZ26tOV
zV8@P>Jy@jUE)Uk}&4#+jIe<~f6kLVOH+0eurB=0ZA#7mejYbPJx(MAB1aA3uMcmFw
z+GP``6%(FHX7~m8ZL`d{EUAi$GXKd9=NPX^%-$c}Dwjn2?gkYZSXBa}fy$v~w+7RC
zXYQlB=xRU%bi;UTc9>c`ApTBpXZ{0g#8YI>0)jw-?Yclt+|zgMiOxH2-bZ`&d8%x}
zS~%_kMW%yK7QLe?+W@_GooVu!^m3~K<3mjAG-F|}3D;Qr0|!L#-N6g`&2T>lvDx-&
zp<7d+j|eUfH)m)XSj-CAMR6|$<>rf3lF=X(|Dx^lp>}@#qMrT_Njnd?>mJGwVyUAZ
zdrH`UD3d0FGkWc%<2zLfMx02y?haBxC|Esd0bn=YfubQwSg{Y}f%Q|Odb~zA2}h&d
zvS+g;FK5c^YH?(9e|<F`qv0V^&y!nhP!5~paQz2za!z2vc|Grv?L^D)Ueb|912=fR
zycF%|t=V#F{m&^%w~H&j>vi|#ISh*#D0!dkx>2A6i`ENOmiy7O><kid^eO#Lr-Hj7
z#lha7xi4keLIiryTrat!M^bKB#f1_AaDAQkaC9FfxfsR_nlX-#W6X@1mPsT7dy~>)
z(0lHHB*f|@+F|-X5H0uT;iUw<7+)hGxHJb#5vPa~Xo1EfM-DY<{l)VodfWMy#kO6>
zv`BT~WIv0C$7#A58{w$!P1~o13R$m0_ktW0QpTZZ_4<lPp`Ea+^<S83FR~UhJ`uno
zCAyvoety6$VPIeYA`g&MfWIbx-F@?vVr=}(P@<tLTB4CUZuR^w4?q}%-^|VQa0yjq
zP5fjq3E1X!a1Jm>u*;pl+}xORJw7N?sK(VGWYO<&b(jdaq(Jx7;A*Qh)#FqIS(R+k
zJ*({>aGZgoC3Ty`mmAP4F>=3qxG+J}aNEY``&&Mrsb~SbUaT%zb;GY|HTg-wC1XpS
zZ1q9k4cj9aBiH%l$s69e26yNs2LbqJ40+o+^q@<+%5)PS-|#|01I#Wm@s8r}2_Ycc
z#A>CN`Alg-hz<Yetls!q)qmW(m`d$GBXQB^)I}B^s)I!=DslG_rsy0S!QDt_blC3r
zF4T$bf+P|-j5Z)5M{eJc>y}o8Uch0ebb;Dww2M3XrWlzy)jmQdzyLpZ(}EsAUf7&W
z%8+n5jPao>6RcYqF9VkSZ?1y6F@)4e2nBOWbMb9Mu>$e7M;Z+XP@?`Yktp=mV5e9I
zZ~FgjEb<}L<Ei!l6jo?H$qNhoJX%{+#9#jp<qEPO5wUO8BayUN4WFfpGZ%P<(@OxO
zE0QWUpTSD{@FBOth<<D_(nn|lR?QW=j@@yf0_SdtLLXK$%i)!)_%oQv>iE7o2iX3?
z3(}`kpx=doYG?+%F`>~4EwwFwu<P2D;%ps+;fKG{#bpoguHWnGGW@!W0!YkFF?nc^
z3`n=20;ZKeUW!W{B=&@I$I;>w>|VeU#VEq}{^G2>{WdbT_g;cnD8?~Vd3g73n!!=k
zmMUjpf-z<@lJzy5dZu*7^j&+#dgKA%IZNw2ut@A(mQrjV3n4PQ|97eW!N+v1TVXc0
zK;c)<bz&&oJJ3Sbn*u9IBM`Cs$rYK+ja$7Q?*X0G`t=5wSWjOl=EHK(m<h_jayt%X
z9OT+*h$Eh~yN2h+km#zm=L%V33RPv#2o@&)9V7@kcmG*~V{Do}7Whnx;tEI-)`@Qk
zbb9h!jk<FzDk15-&!7101<;Vc8^bOoG>J$YI1FC7LPsTtMcm_DZPAtU0EoL6BG$MY
z*hHeSSM^qn_pH0&BEw5Q4S_32VYb^<EA$7R7CSKEB9;#8OkQQ8o7#3ym*?t>JKv2|
z0lPqX11Oq^)?lJ)`LU7St=1=R1Pp0l(`+kYN1uF1g*-c(^;2+<zAZ<Mi8?TP+9R?X
zqP4otDj3b4d1a|xftTOsMXfo=3;;Pm#=qTEKTtTo!_yIjH$GZnF~_>=w6Yv^ieuwm
z=^5Kh2j89kFC(D;z`>+uRG<!g1dh1nuQBB#CgYFVa4;jb(*>^12fG@M6AUkSo7p+-
z4i$h&nnombwUaQ~RYV&~XrITPqq&$yW@IMes<NI=1qT|8^;vO@`SeJ+dNDo_y7S1q
z#Y4!EOL#VQ8?+!z;gcJ5p3dy|^_eExXW8HPptn>5Yg)pQLkbPen+p0|@O*ZDw|!sF
z1scu5BZzv9hAge0_Pb<-VKv?Ms?#39n*kPhB$zdkY6WqSL0<20Swnvpo4N_^qEzzQ
z*4vKLokA(aFr7ZA^iBQRP{#)c#XaVwz$QWsCklDTSUsXyc*CQ6ZuD_ZmHYm&(~jZ?
zG5KzN;tD?N^pKpgA>Y2X7<OpcgJH)Zjq-wvTr5nhc-5Dd+D<H)O>uTxhZdhRd7!0f
z#HvUIVfwVdZA-3Lm7O*8F&fC2?jYemq^$0ou_A$896T;*@?WWWHERhoRJxID#4<ie
zo+^~i!+OHH@F+jI0Y%4dT2ZonWOKh)d7^}x133?iSd$Wul!_ANMst`u!jy|?HEgKf
zj^Da?nqEVIU{&QbT`T4qP{{N?oQ%yo6vgQfu3kvl`*dU#sH}AIK;Y?~3d`!}%#aCq
zUJNNUGVfGh<@exjOHN`Ns#zOdOg-)QDmiT^^TGC~#wxl)AtCiY?E5sH%=&gr!Mtsc
zqvO9c6~26o|9&~T5CpY>0m42YG8*KxjR2vuc7+&~4o>YsZ<GcAuagyh20krk&G|(_
zPyIrI4Dp}|&-qFZIFil5Ypu8qf1LTgF#(F5;#*S}_F&*CUBBgV{AswSlM3ioz$FVd
zpifs)c-L=MaT1r52QFp~{cEr;i|>vA@$izl6Ig>g44vV1r_{9CA5Kv2Uy0PhoV2;a
zmVKgJtO*s2w1nCot=<<#MQ4*^q+|T;4H`>lB^wR&7cj7|&cw)g-R1dd6?R~_QBp3X
z6XnY|Ebbg4l9YLad|Wano;@PMbM{J{ZMxdlwJ{j5hOJ2K2)Oa)&u5a?3~f5_*?l96
zUabZ8=N&tfKct~@5=koGsVJDQPscXEN}d^a=!LA6b$kS=A}2H8;%pw3>D_*S#OtCR
z{yp^fm(31yQDXckAcf^{EHJtk;R26`{2>@SdoUm|Cfo-Bc`1B5Ou#+9I=(Vpb!>iC
z?Q@C##N}Bg|2V0L64}~yx~Q(Dr0$r|Z)z&Szy&Yfi}JBQ{=Jr?RPEsq@Vx-t?EEU7
zwOmmGfqX{CBCA6=P$=X<rs3xjo-7k=v_W^y3G0w~w|47|C+HiM-hm4)a1zUw&4E3V
zO8cYo2b|03VD%pxnW&B-=`MaDS^Ar3=`qLuty&kX<ZqE~zO}>}<_UgQNFv-8rUWw*
zbM$x}SKVQo!`wUCFkBg}NnJ`2=);LFC_+C~8BtnNPlU0PU#rLxJ+MKHNW@&9t$>Ec
zNMx(NZ(ruOig$&J=2T=>E|~ohS<C34aqF>&HH`p?s!DcXmpnT8*t^*dh1JNRdB8zr
zP|VIHJJ&*jh{UTYBVvlD-7tu-t$ILc*rnRA+v8P+c&C)gTiX&2%VXiGl13!8F>B3G
z<it$b8l&w`?op)98oZ~T-IHGw5!x<oM!L}vh-o<PCd9?d5carqo?(_%*5ywa?@$i8
zFot$}5EzlXEodn2l;|C|cD}3)u9XoX$;YsXb}5QT{|Vq_BqCsQik}6D1Cs}j+sEwe
zWjZhZ%QD|!8H~IWBqJzqX-~aoBxF{X@OEJR3@+k)L0^xw!di#f#V$}Y{`hLd;RYdy
zE^8qU6>7k0mUbh1IqgW=qNa?`EWSDX=|oaoUXD=7r_oMcV^^Humf{%lg+!6_bUnX9
z!)vkKVAdb%QE8j?947s2K5qkNIvI8Gi|S&G)nrvZU8ySSP)!Qb=*m2GRNxFkuGJAo
z`w6NNw_yFE#bS!o+6zSxdLR+7$};Tn^TJ98W{_9nJ)Y$M1SK)v{A1Do8{&0Kl^j7S
z=*5NzPii+rkEeYc4xfW7`rHhWu$@g#{5p-tmCa+Pz%%*ZM!L34!ZsGnpQ)ZH!s+Nx
zAUe&^T&}B+7uG6qQa<p`<|a6L6UK3BQ+00$uD5w)*8{Q#Q|=O^3!i!YuKXA^Xey<7
zUFG>$3q0G`qO61gLk}iX`EbCk_Y@$Wm(yU*qW$^8oWzv}S<AOTD@@LsMj_N0rLtt(
z#+>y3*USkRrfmLkxVLHS?!L@nodnan9b98Pv(Gio7Beso#F%tC5TANb;Te8CJ%8d{
zxksaF$0}{|#!Xr&HVGF<#5OHN@r6{gfqqz-*RxUOz(M-1qxFhegW?iNtFO9Uf#I9a
z=CqjsE%&$|K2FYK60XD9sCQMttk7+XFn;on9b~<9*dSv@l^bM>SHE>|HQ*Ry2C_mf
z7XT^UkOx=da2@W13QF168)5&|Ln#3_8oncn5JEp`emh=DmFl|<I!Ay!{I5*a#)ctI
zK%Q=TGcz4kNigIVo!`#(1lDAVixZqONKXolc@JNPk(5&BV<lT@y(H0dH2o6&e>%!N
zVOVzV3$(i5O?%UKa<-me4H|{#!G<t-<xDed>vc-0--o)v519wz;4?o5G~Hksa7vR@
zr(oubvRNOFP)H_ruaQbatAqxHmwVx2kt+n2nl@^|e?2G?GT9PC2#6dQEHT_?i|ei^
z@Y6~6x*l;juuHQ9ZE{Rnp$!51C?yW64bkD{50cVAv_%aVsC)w4U*IUwx<G(EI)~X{
ziP7}$vVbm;+XB>X^v17-D5-YT8EktV3=^6qF5ycnzQr3$aV8PFZ%ys$I=98|Yq0>A
zNH_%%*B(z8uJ4YL99hrdDeG!DfB*mgpg;IZBQc0jWu^j?jB9{Bm6|d=*IaqE%bh5e
z_0-*NBL(9jHNo!kE(jV7&u#;ripoU#vEbS;t(_iV6qBvSuKH*Y8)VS(k@}4XdWa!5
znkrQ$@7+;7fg<^cx+saO&2vD9QyP_79X0P<G}%z!`?WcjjBfbOtIsE)kEM{`D(=1{
ze+5<prgO>57Ake~LlCpuxsrSWwt5H;>pAwioQtrtuh__Wk3;AH#8hNaVw0@wlJ#g)
z!eh@;xSnxexcKrO)K9c^MBZ2@K($@F5-+pw>h~{13=0xfhTCIDG9ue;Gq;@0SJFSx
z8l@HRBBU5F(B=S})&05oyGemY&;W=XP^>|lD1p9gK+&uq%ks)+bPe)&>d3X^%G9B)
zQi-!%jk;xQ%g{C}v>kOnsuYx|R*paTy~t1HU=5W1SrgehBY2Bp=laxw`^tfI{;%FP
z={sROz2?m}+ZT-1rnz&jmVn*&oGxc_q6~21{~TZ}WUaRj!D7rG-&O)T;-+ivSZ)Z2
zn;>fSZozF%P-HT2$58ssL3dEEk=e=g$kAD;!l5XhnG-jcq}@J>rbNEfSH?x2X*SMS
zse%3LY`4oJYy#w;K>!<fm!DtlRM`QxrCXtt{{d^-EuSGlZCW2JM%oYC)o<<$th^n=
zvTOhV2RI?%0stUi{3&W}Uj*Uyd;$B^7ouMx#TDH!Dr<K&UnEVid-=uiA^^V~#Q$0v
zC?_&yCnK}{B5cwv{SG6h4v9T0VZrDCdGtkcS$uxas1mmPhVnI#-7d;jP``?#fEP<U
ze7$M1(8v9-QiXJcy=$4dR>sp}L;_Bc*Hu6NA5c<X4i;!48%4oBg75u#1ZiAydNM{p
zC->5kO8@O;mU69<_RiO$)?)hq0M_o#;I0WFHAArbWy8-vozOb=PRIUz6j-`Or>d6H
zzF*5gy5{D4OpX@HGQlm>pj?s32bBsEK`3XUz<`+*h_l8#K>%tQYIt&=x!TjGA_9^%
zC65GFj47?aL=$%RG4rR=?{NnW|H2H;3J?CTVSl^-Q~?*^I2$aClN|Xx85R*b;fHKH
zI!(jxd3{EH#ROkwx263mO&KqM^L%p)Y@o6S0gWK)L6rD8B+HABQ>zeLyVw!^VQT1w
zSSFC=T&<t+zmt!fz9<8}<8ap(+SszuplNm@{QG-b&wN(cYQk$U$XMvh<(IYnKgD3s
z9Zm-@pM|T3=O$J(#{4!@OYSburG~u`w>ES(_;R<e%07EXRJGy{-+4R`NPlF0JKB})
zLMxl|5eN-{7*Mn<l?<s-U##phh6+zGvOd>@A~o^!ru04>n`N#G5JdZtan{Ek9%FwG
z&Al*nr@(mPM6rFMSBxQkz{D;7|Eu}}8AW8_7s0ImIMfOE??H`{KQ)U<u|r;Q#|$Mg
zE6Nr}^1F!24|0+gDz7^Wk@Pne7eg!T=x)jhe7RH2==BBcpTQvFHQ-!{Q82CPTT(MZ
z%b8)>%wMyWG@q8RGk9=0CTX8_lK02Pv&NC)&}&hH**Pr~2CBKo8z}~dsRdSPU<adt
zAm_N=1@2~mCq&dx7Xr+lNW@GWsO@trz<FCk@tQJ~Dkc2-K6$e>_15yfm(Tpo@Vd(+
zEC58|W8ktF5*5svmGIwo4FK`USsSdN_`w3>>~QTiG#vZo(`X<9MbzDV5~`htr}9KG
zePmK3AD|w4*Kpg#_xy%;b5<c1a};1C2wEAYB#Q4Y89^z!&zyWe3K&u=fA|D4lqRlP
z!-o<Bbq_)i4^`;%b4FOdUf;$8Q;$g(m^%1k;hJYthSVyq7$}{^2t_97u(H1mdm4Y?
z9Q(#oF~U-q%lBowc|UG(=usezL2~HjUz!>vwMC?;*fCb=<QOPy=F!K<94Sxe)+}?O
zQwU3Sko*F~yHi;&5X8*$U&kbyed$ycpcN(ojPy1o8Q!5tebMV^F8_n8oY*Ks8?un_
zJ`NMIf)KJzkxOpJdF+fK{7;?AMTJijIA@@itjgi)4$$+*N^x71wO*PX5F$vEJ<pfz
z_*RVpWU3my-kB6GIweoSeB7GAs4o<ndK;g{P(@AEe=mC6Cbc6+8Njp}7xTi!?n`Rk
z-B|lTJx>xbHrO?cMai^o(H%^f5OZY|xkrCs3Y@Yhkk)L@axnYel<-K7V0<q>7JKJ>
zhPg1?F!FCc?om;&F1a~z4ti^=(9e`w=SF=P1=)f3Cb5<@S216ko|5U)GfN{6)#H@H
z#%IDI(!iPX_geO)>0HT<GsG~9i~G%-F#5umP)IN<Yc{;$(r(a1zDT;Y1VAnOVYOcn
z23(-R3?AL46mPtb$=93Z-Arm=^P^Yph+$MW`Qtaq<d~T+pWT7^KwZEB>_<U;NUmO=
zAfb0hfUzkDt8ymd>}j0@X8yHy{`@1QxuEI9-i&}&qC`|>r=lXqm}(f=peTdy1RO3F
zCwtC=<%j7(m@TYVZ83=STqKn$z=YXP`)|pUSrt5%0VX_A77XRSbd2IcHoj~a^qP#7
zF&ssCJwx6tTgj;>$r<h5;0*;bd+<2fStRanL-GAF!j)lukwrv&f$L`vv1N&NZ3rc;
zbY+vS2_=_=;ICwlE5^v^_A4%pi}sC}${5bcw9-cXR=pW0vT`b26{!t%Wfpuov1_6P
z-*S_7)Fnj}Yz1FSg`rehVBKT>SEJ`>YQ0Mq+kCg#H(`YSs;8Gtw0p)_mjqs0FS*+6
z82z2%agqU<wvEL2L0e+Vy2-!dDT{i8mPRqTN~69?4u@I~Cl2ZWBA>$jvLO3Vqw3Of
z`SiBkS{N&2!EMGPjxhG-Hfygk25z#@-@HPSJoQzMD68FoY-}k(o+hfPbmM=Wx+>Lh
z+$v(m#>SgjP~9i$WhDSB|0Ig`;_c5kPeC5}#pnB^Q7=b3vg_7jOEH;c`3WeAzV!T0
z&6h2@rJH|dXUHS~LgMArx@a)*=ydECn!Ij%vQ|<`hWPOhx*(dUlD{_ZxIcp^kG<Da
znZ>f~;Dx=@K=`Jj578*){)kTFyWYCSvX060!G_5FMl<W=0tMgeMAm%--}AorIm@-O
zwfSUpu8^BYgtX6PjupT>>^rNY(_`zw1OSivw_UO8RH6U?0hs})0RROEzck2!!ZHW+
z8e!R)J9w@jDJ264T4h@XLh|T5*)tomVNAJ?;}Fo*JskDF^@zUbTDp#2;HV0~U6vC&
zgiu)AzUOuzaGR!kqUrmpe9e+>#hHElGg?cWfYno~R)q-k#T|2+I8oxbM-b3`ecbmz
zOF*?uqfZbWQ`4rJ#2j`6#-bMaE`(AkpU-#O(Kp>zvu;SAC1-Qb8HAL`NS$`d;&I9+
z0dy1lL@>YWfas4-I&yr@T&J&7viZ_@b(hceQ(*hUCcQ3PCb(h$S<OB{9%dz?q<-&{
zQT{+L{oe?%4=Yey|1gG<MvbhtNEJ=(5pS9hv7mN|kvR8{X#+JhO$!q*K7*cmfoF8s
z*BaKtjyv_{n~o2F$LR`-oN><7DXTI;2#Fqw{NQl*NUpryW_|g7PxYaB{G*r(6~#pC
zvx`}Kh0EY3rVwZ3fPE<Wd>Ck)$e7qIoSaYHLnt)@ZBY^B3cjU<6`NAvB!kPC0!y`=
z|GIJZvc{^bv*2N3-Q@$bXWWs*Ct9CI_fMFAC%NPR06yFy-~<3bNB@A^TF?-Koj3f2
zmC=gu+D@B=;kj&^k7Y)4@X+iccus@OYbG;?AJOqf!<ylmw$@p;-FTSyYxxQfb^r4$
zqlB_e__)4;{!=%=CokWq$P+6qPBteOZ{ptsisg>H@=XId`DJwu7u1@3u3B!!kdD0d
zCw957H4WD#;U({MnY0H~`y5Gzng@8au~%vy+h*S}Ivw~&bz<Y7AgrE6^ar3&pi=sS
zi>PxQ3@FxB83R%WFb7Vq*s;J~K7d1uA!xL<-SDC6zW|zT#~|x{tsTfy;o3gkXzjRX
zN|Wl7rcMyou@h0468S5v|3OM&L-`Se?UpAhjJ&=L?y-mz(i{ie&VHq8>g{QCLfzZY
z>p`@4YC}*=3|m}VtyDj^s;_o;zxf*8g?y`TBT77I;-w8xEp@C0o(aq7e=}&+HK;Q=
zblWrHx>hV|1pU^u^9FNZ71_~vLc$$_3D+&(l`e7_5H=Q|wqji|K3x;IzoE8Xq@zSP
zM7&qDU&3Inm^{4;Y23NWC7C!M3>oyMUw#7{z_RLF@XE^Ye%m9cD4yvu7$MxPiS`O-
zhZRksg~MIVDK!Y#bG~ry$^ut5t>k=u>mfK2pFITtt;PGEM1gC2OTv3pi8hVzXJkxF
zIaZ2k^q;ZrR|K4oI+S2w77^cA02RQ<Z`a<F&do(Oa9zqlPv$mq`n*PFW8C-e*NR~x
zq@Rc-sMyH9vyrQ0aSwA<GyO(Y8_t3JKgP&1OLh5WF%tR2P-fSq9-m~iV6r}qbF-Oa
zZK^_RbxofJO4YC8$!JvUQ}M(bWK-9T>ft$nVr8GQ3IB6`YTzN<+4!#hSTW#{9+q2O
z-gB2?3Pzzk9Ah78OV7(xeHP<xbtm%^;%?H{VHhl6KY&GCq$CDr3`y~6Q99dobfVhe
zDyk@{>`>ZC+t!%b1$`bTYnyaHXTiC4tuTc{Zh?L!rS?sx!WnzRSy8p@^C<_>6NrM=
ziYsoXxfEQmON4leP0>GoAunK(M-?TQ4Z>fSJNW*wMoCc|%j-d+u(0)RDUBIYbf7xo
znxRHNLBwP>)m4o?U8`di$_gBNYb<YJ_IPUba@NaX0NnMwH?P|rbUo5*WE?7VhY@VU
zJ;k`H-DwCn9!GS`(P_`_yc?5=8=`6Oj*H<DiwD<e#7dm!*Z0co0PD~Muj#dxbh4KJ
z@Z%R9(M}G!6N^G<1X^YT!0vctUF~L;umv_h`Sr^bt<E;KUUJE(rkHE^4#`krfhT>+
zm~D5)uJbdwQ;)|Rl9DSB{|)&H@;lt8qV0qhwg=%owE=~>^uLn|P>;gy^Y|%@Pkde)
zM(~2)oa;h2ZprI9mUZtTl9i_Oa^P*}#;?1mPVZP(1w#u&1jZan#FXb&s2GD9Y8Y)K
z1sC6-cPKtzUGoT(HSj-7ylje0nIZa6CphO^zhgx8nxkqL<7T@suyirmO8C$zg%%QL
z9qns*$VjDkhn2LKM}^Rgj)tT<#>Wj0{Q5cCo46%!QcSXG&{Bt&7bFNK(!&K6K!j7R
zEI*V)gG+4<)v&JG58nndiqx;LuZFm&%44os^)U5f1Q!s+A=kIF_`$q?tVE&ufvAV~
z*T;hQuO2IhxrQYMlem!^NlIW}VKZ6j`K3Vtv~+1&`rr5S`))}Dx&3AzNX`&Z<8fGy
zE_aod>smS+kyp%-`o#$|#YX6jccGf!kuxdY@xS8ot+JXeSKlH7*S`I;#2yF|S=!#Z
zzVLhjm;K0%XZ!KccdO8(2nA}4Q%ho)i9r!(N|YYrWei72anmGDG4K=)CfC6gOamhq
z8jGV$KNk{}rO!L+x1?-o0;v!;Kigy(@-LWUVe80*Pd)_(Yj+lfA5e@oqI3R%QOCkJ
z5d2xoUWf~@_@<tRJFkR~lWQsxB=qN<TK7fyY4Dn9cAQjj3iXjmS{Y+qSEmf1KY`Nq
zMML4IV5Ub{@+*-My5irh@LNv<Ei2-hM6p1O5{7K0eBdbaOG^~1c>IL$v@VTJ($@`+
zH~V=`{DnL|U0WPj0xq1e8-Xy(`-p67^0(xVI}cURC5+{UzpaF*fWH>X)qNsWkmLOw
zgL@lU<9SZ3&Ajb)O%m1LVUJtABR?y_oOltIK(sETZ5=&s#VEdNmjhA7H^I%)BZ&8q
zRi<n!g)~X)^{WT>n<MWh?0O&`>OBnmM|@{Wcd26m8+!y<8q~kD7or=nHb++taM!mu
ziOK{l8j`$^WZhL!rP_xXkIj+wpy>T;np|2`DxqyJ_QL!krU82`B8>(5;J5tLZx?pn
ztZaJPwX>h>`TXZKhml5*ks$YU8Ck-l`8zGo{;DgyH7|0v)Clf`?FaRu{wfVDT;h}B
zP$-TmqGi26wKn6RYwj!Q*>WziT}K+6hv*b}7WsT}p9|#>Kh#b9Z@e20C=^%t;(!jd
za(Y}5R@1=#L+{G=C?nDB1X*q~behRH+`|CYv{`?M79!ML6nBX1m0EHburv^R)v<|$
zj4YS%*c$S5urd>>w3*f5Nz7)^hcuM9QG7eJ>(4RC8bI@OJsgXQ(gg2w*M`l)tq-@#
z*VROEzS=>vsLd&Veh>=eUyyzq9$)@kCU3oXaO!6q=x|BWe+BUnMe=g9m0;s6+ZdR-
z9<h4F?Ab58LFsFp^ag9=%UeJLs`E<CBWH`oHE)r;-6jjAH-VhPkHg$10>#u?C`;(D
z62l?=Q`Y9org_^MCrvx{yWhuU(&xf!zlb50-dZc#t7A_jmIvF?>rtS%AS#%zfVaio
zdmbx`=cjy}hJ`&GBCH-oxZb1|iBp}QfEyKwqB4X38jG54siKLxq%1UhudDnBL|O*j
zE!*y+G=JO>O;zjY#MdAb@J;`6NMEv%+jJYcgW^quoxKm=EQsQyGtK%@^<^S}R?-5N
z)Q<`$;iAtR(N_6`IRFSUk4!%~1<Ky8+8(YEehMxCNCo}jOjki#zCfs5phWztt#vl`
z;OmVS`)mJ=(VYO|W>0vNTyCl1f)%<Pwaww0AoCH??>{we=AvLI9dnsEI>`DCG*yOl
z97-(dk`XU(knd}%d$mCMxEd8v!S0+Ql)`3ae}Fs}`=A9u(NsV@30uhonW)(&MXyGP
zyll$O4Ye0?z7NTQIkL0oTUVm6r2B}koz%uHb*d2W^s_u)@<?$QtQ^~v4qtBWOc=#7
ziV=O--5XZ|MU^Y|V6fF%7~-EbvH<-lq|R+XZHF0rI4O&iPxjZjnJ6fe`srXjAYjom
zuf!2Ew8`voaNMX4ez%wN7pv%01fU3X+9wyY2Q)?5W3NvzfI{c__`fn60oGm~$_X^M
zL`ibUJx6WUN--xcS;j6AkprH9QvOTaeJe-&niadWzXw=hivj@`)K^AGr&$En#SOuF
zY3vE>nDMqDhLSQATvraoA8#DNYl@08488lD5?l=SaZx4_4y#8NQ(z5l9rKB`{U`qn
z5Ow?Ta>IM$olt1Sr`YO|_#%{kmEpoZYQpb8Yd3EbHbO-EB51kX<P_Y$x)q%LXt;L2
z8lK{udCm1f4oypvm_e5rz|4H<lGPThI;bI+e?a88-6?xV{^2jt0G78Yj+dzJ9C=eL
zabSkB!e-f}zAbQ={7BHhKb}3@B5?rE{?@rKo{-WR&$x-gmFL7lQ2pw-Fq@rv&XjvA
zDu~{k*+i12Ej%%Y`ZN6)w~=Jtx?{tr&7p2%g8Le60^k-@GT&JU6w`_^f3{}Do!Zm=
zaR_XDs3LVw?*_PUXM&a6=N4Q=6`yK#MD7ocqFiz=fyDR^0@r5*tTEaQ;UPH}jWyz&
z3|ZW!(<mK=e8#~ONzI3T>=!!0x{2|V4*oYa58aSvZy-YoXoYY!X=bK5zMy;i4Xylo
z9+rsJFU`%bfYKUCLUrF1rZgOrqKy?c<*P&{R1T?h!9!#bVLU;qZ$FK!e#JxFi=vj}
z+_P(TDLnXI#cCkL0GpFd&<W0&U2nXO8hkn`Xroa}L#nG|w6yiI*wz+E{0CiVxxM~_
zs>nt7oL{HE{*U-15}u>HLmYuPGclj_>4Rr%zY?5tw<qugK@QFlSr7S)5*M5E0Ti*3
zsF#xhe&ChQyN3o!>$LOm#TgfzW}xQqtI63(-?sl*+8ZdE+<c%KZ7DK3u~T1yc`dTQ
zvi$of{=w;s>M7DKTU+J$SxqeK<D{y|PO9vHzB3zYda|>IjYd32vjnxP^6bwDr_4um
zhrzi`k*6?lMNVbA+-7Vra1qDc?I}Xk8m2d0)r`2*+AAitIIdaXDoS18t8zF)B9Wir
z`7_>N<YuScRf^b2Bjbe?SWn;{Q89$6jF>iOf)kWT96EjfyYp^`#zh(ULpQhh0@z!(
z0wDOBif(k#I&yJ-j=TB7-Nq(Y%v*h1c3wS&;ToyX3D}2l#0Lz!I(ZhKTqilN$o|@`
z|Hm{I7-8|xxzPZL$I*FPO+9^R=e#S@_-B-$Z&1M>_9m!D#mkw{7&+gbP}UP5lRgR&
zfT4#LLTT)7maUr*ul@w;zj5VX?G?ESVk3^)fz+N7(llXofOJa_^blKqnxN5zpf)y$
zTle&naWiKcjkCUZenuEe$JNge3Nz8Z=rWfyFGr#LX%em3_=+D3xpk$S`<xE8AoKYW
z*CZDZ4U8uzN(%{)?1b|5t0g@#!jadQ-eKr}sH^#hrjz&>roz+G63m0V#F7?V*|svl
z98PmWY&O=xoP$TZz?U*>N!W1{9Qi&=!?n-?q7H0s^2Q0cSmwV^Sn;zEa8?l)KOi0M
z2f!S)B&#T=6sHK8LXEt!77TAt;C^hFllQ?X_Eq9wZ+O-Vdq!xZs!nGo<<@6w#fL7&
zQWuc8*ofNGwVL@np4)-tspFau9Rg-Xdjz`ml=`>eE7+ri6Bb>ySLeGO;_OHMKjG=n
zxF>CJw({iqH&jh+7bdXQ;Y|1?M?}07y{ck63S|~f^X=-7K~MF%?i_7F8|`E;nXmmJ
zu56>DRo)?y!(R{VJr1^HdDLGO%}k)6C_RJgPe_EVa#5b5c*f*3dJ973-SoxI7F~@`
zUsL?l3ze3)edn{h|4OQ?j{cjnp&qwTXMLqSY|6#leu`=4&yzxy^@s1s{DG{L%2xyx
zOabh}dgo^m6^RZ&ECTT9QIR^90ak<FF%Ps2Y(nR0PXCko)Xv-_tM<P?48+mIV)9=X
zBqZs1+_+Ra!yoj$q_oMpZO|<m*#zDKAGcXqG4l{d`w~IlbRGX3L66<xQP!<=Bz=^;
zQ3ZZ-WdN|7d^m>9%noVB%9MzmC<Lu~1{JK()KF(2{KoWCsn+cc{W$Uu0vxD4B}fZs
zcvf;|Md9!j<YzhKkfqt2x#LzaZ?+d<MnvIu40x;qI6iu+cwZd!v@oj57h5Y+crX8|
zhL5(jHd7bWAM87`N}qoq<4R|Ak(@I9yp@I7^4DNg(}t~fmDvIoW_J%XCo^AaO7>@j
z=?o@LWmQI82SO<npiaE_L1nHX&YpQ`l9txFB<DyWMD(mru<0ReEWyOF%688QY!y*I
zj=#n#!(uNlPgsybQ%cj_%=n)5Cg~95Qm7pyyh_Xk#@LS8sY`N%Hq+qg-C*YKl~E_C
zTJLti)_0rsX#icJ>^K=HDxZ(JNdw>T;D%eJ7BFI=EJE~NfdB$xHFT`LTScSP&ro$i
zgnIJ;uE<<PW7VgjE#I5ya1i7;I^xbPln}WkTjP|W!nkO%(%%f!%)#wXCv0|EVt4%k
z*e*DSic*!<DuZLX(>3|1He_656Ig5Gey6dx!m-D)LEZN9$Z`NPVvPS=lMJ+~W|YYG
zttcFvVM}*m!vz`kmwa-fiyYz+N8HA$(EO3N84zfLq*N)ig;vfHRGpD(F#hF-99lEE
zAyz;5E!MeNdzn>hX3EOiFrUaELG|r7xW-H5Ax${{Ucw2dLWt0_a^*&HhgtKvGu{sG
zaMC%oO!Vov>H@Mw<(tWF{(6PE2eS#o)tzf-?hH{^xrTwF+X<Q}<I1c9CV=G3{dF@{
zVGz!SV#P^;4{*PaDlUH(=A+mr?QC4azVq8^W-ouwvvI@4s)s}VAB&O`ur2ufDb__t
zk4|W@Vg5zvU11X6f;gj#I(VI<Pvym{TUN@_y1H+TEtePmE^Bzen(%5|`x2ig98r1`
zai$RMLHLkE@M7deR7$~Yg^h1GZIKD$lLovd)m=plw)cxL&Fmh%DcUoD9-yk#%%AZK
z6K)!nh);WcxB+^KKt~yZeWHf9>n5gY{_qsquA#7QEd|OUYWu)KwvC<C^<3X{gI<S;
z#G}?}#-nI(G_M<LS;dAGt5J#~H#7=C)vp6E+ZR3?xujq2jdy*5<&`}rNH&VlXP=<Q
z3Pz|NidN6)L6V(OKy#@$>&HCY{_sow#YIQW7>DcV*r9>xwX^2#ev%R6Rex{x>u$0c
zy@7IJo@uN=yC)&(2yo<-+?Z%+e9vWnE~0UYJnb`{uIFF_R$U;6iYWDY?wVPIpW0Za
z#2ij|?!xF4``8BzxgViWv`Nb>j+1CNrjY-E{Vk!>4MFB|%>w2%)@XUcSh4?ms7y96
zMsgyN2pNMj06nn99Fo|+xAIAg&mj;4{B$ZlUtE<|wGua1!Rd()4$Q%x;B%bQi0q-`
z>?EgjM2I8;Ec})XmZX9Dv%wmmHWW6~w1rytZ3j&+<3U++nj~|*bvfssYtV2T=Y7m{
z@a7!Us2Ke6{cX^C3G4>+vnm<p89(v%mf^{g-I}i;<#L&DjfHLJ&#ZRH6^w|u54-Gi
z`KalmM~$?OJavAh*FrL;!H*;o|0^B!&k2s#+GBvsT@z?I7B%IS!6ddgMVi$mOCDKy
z%+O?vxnf)iO6n%@ka^$ryWs9_Ww89$+qXx-zZhASDb+^|(m|m#H4aBIXfB2q-Xs*&
zH{<d9lXui}rmA8Omzy}St=!Sxkvq!jb)eL-3CH___wZ~cdOAz*$>c48_sOwRY(1jd
z#BkpiG0V1Og>C9yF5u{-xMkWX9YU^yrvRZ~=0<8Ow0B-M;;9AOWkzU8R;i)RDQV*v
zjB{r0dwZGh>zF^Sm<;SX`G<Vczw0;g|D+gQWqPM_LUXuU5JurST0|niAe1{3pA7d%
zOfJUptZ!O8>q+Kv-L-OYHb-jrD!AJ*+3}rzwOjKGIcDlXgrB_XR|w7BI!`f<&6y?O
z;hHrgssL*Kg>g2C>7RM!8u(;Ti6TDA{IdQ+)zIf<u!6zEKYW1`8Q&CHeqv9o0MXf*
zq5PGFp1{J7(JsHJe#_slZL5c_mhQ&~p-uiO6r}(v4-3vnRw8fqQkQ9gO+sfJH?mFq
zt}<-~evJy+69?4a9<c2wrcRP`zTUB{6&QeSFXuDs{OCtepChX68Gx-C20o7{M?2|3
z)9sx=^LJYl`gK++ydtnsv<reqMz`Eq_09(ma6Un#sZ+{FX%pRo(TynjPwySc;5@x1
z8tB^3W+6S<&?XHO{M$(G+HZZW87+iTEtEKAO}Qsrh!Nj)DB>%#RA-uK!=q)xF{7d&
za~zI_{+3G(bO<GRUxCHs(wy)AFX#9xgWBACI_%Q|*QU~y>SdAWsa(v#E-EwOW{p+r
znL5~r^-gOsSt-!LOONkygq)l0-tR2VI?5;5&aeW>7Myc`sck#NPY;P1lnN3WVz9Zs
zp?HY`sdfSJTuL+%!%9E#*<qr)67x6)t&`n{{N~aeGP-H`LTR$Syd>p+UL5hsqLu6d
z=nm8b+n)!E6?^vasaNw*xx!m}EI$cbcrjY0D2~}@4hzxHbjU0_X<Swl1f@+ynnAG7
zh9p~9$So^8MS%QEmZY*Z@+^+du`w&4z4PjB4DR(TDDm*Gm1l^bm9qaVI6)B0S0Y<q
z73J410p2TuWRPO%a}_%XOlUd~&Brn|>aP*{dM<yoq?kceH?(haG(rd@3o-4bFWrhM
zG-LTtVWO)ifsu=gQ&Hw^Bb)W2=V)(^C=)R<>=t{!rv`*Lo7)Q{j&LvbDFjAI&fDVA
zmv*XC6WL+X<|!`Jm}Zju5mvj4l0ad{Cn5Z7o<N5U&U&_%6HZQRMhpvg3zP(~>YL*}
zf6!0OnfN+958~c8tD6~b(94W{mO$ZG+)xuFUe@eLy%F1Y0^XG<D4M_jvj4_LbpcaG
zd#r29dJ7^wS$js}cHWR=Pl>I%T4c_e7sAVxKUOXnlQ+X4(Ip2qZ+^pv(Z|M24P;P7
zH8+dzjqL#ZfnL{g5PYI5vB|lpeIct8;H+q?l%Z>eHyLR!xAHKD_GPcIB(x+NQJ9wy
zFlw@>nU*{2`a29G`b9e+0^-J_JdKCj@=di~*2c85i*Kmj&{fm3v25DUsg0LTnyl%K
z%4#52TwKJ!M`v0$P@LpqW_`^c{9)QT9f6b{poss5LCyCjYZwhTWNF`dzTqHg2qGH>
zYd|gjeF+JQg{6W<@J6WIs8%o&z)#_rOi8N+$)tY=(i7D}3Or5@t{MRSSvU3=-UO5=
zNCE)vK_hbi#*q<|3l}^Sx-k*ViLbOZbl(+cXd&ycCzAO24(3UB`O&QNRYvX_D#my0
z+gvNH@2ew}x#~@xqtGD0?T_pWjhgG!*8`mwo6>;CS+w}(qg!s79Ty>vdo_<pq!qk5
zSapc5$8TRMroPWI>)IatIg6i5X$0^-`V{4<fqmjvBJg2EAv;{N&-mU8Kjlt_LKklM
z#PhdSqq!=tAz;2!R3gB7!zPEAr%C@Nf*)F^=7G*ma;BpkjFXHUIkL9f{!Dr|j<-av
zPY=^&h<`LOj%`bT$&>L17K$#QKYA5Cyz=iNadfUfj><c4_JC{lIW$0ur<#}>01%@x
zZ<T|)hsB@LCmARmnsu(1Ev{W<rlH6UW|JaQ85ZzH0@P1DAG9@1yf2DMn}eB>JHT7l
zcK3&}4FWR!!Ah)%&!AfXC<tn~q-6Xtx-}?zrwv0G(wqt#fLkq$|8c}3i)bdxR?jI3
z_5QzmPZs>&3Rvh9RkmlaW{7GW5M3@@lO;=iOT;7D<#W>8&oQ*U?y)$GOn+{OMdZon
zo84n|BMk9kL;kp#Q^z|!y}*N|u{@isA=4cvbpm{+l`%gEp`NE{a#8;WO;F+I!&UW)
z_^uI4`Nr_SL9hK#l@KfkdV^u%*k5(*B_SBS3i%ByOy%j~U!LHyLm{qd`?H@)m32{v
z`Pbn4axyMrFoJdnG`*b(<FsHd%<XcPI@nA;ofjgCjE%8nn}4Aev7mmt+4E%x<*xm@
zh%*Z;a^HEI1)#4Y5SK|upc+zZ3mtrJb|x*etd>b}ZjrqpDB3jk0Pd~yn0ZQl0hH+`
zZn+!`w3YjS@;N&Rbe~QP{JKMx`xnokxx?rYbK||MX^I@XraUq3>f`KIA2qK)zBo;I
zs*Prkt;Nd<35-3Nfr^K1EfUW!bKxn*OG4dZy1_y|+-CRX)`!WzaJad1GW)q_%fK#!
z5Vo|`&w;@WJS3?6+$VZg={4+9Ck1w@+_|;Df|#_kVO`%>+x|nqx$hg7*j!UeFOwTz
z?JD+Ro4`yU@Zjfa2hMk<Q3k^~&hIc2)G$(`$t*Q3oEz;k;8KSa0#p1Y9hG*xh+PbG
z!;J==(@!B~_Y9(~9QPUeaLaHp?B3!$Sw`G9yH*fEQVyAqJ#be|Wapa4|8+(bV&Tgq
zbJ(s>5&!Lm(I7&g06H&f#`%s4)T|C~5(Zf{HoKUQ_t$~FUIjg6?KgsBW3C74B(;O{
zJt$X9lCmz*I~<p?F$F^I(SAiIe*co6)RQ*c!cIZX$lUj>V=?&T+Ct|~fUl8r+zU9)
zG^lTDh|}i17O)X`U!Cd<h;z7S61l9xpo+^rHdiHUt?t#A0$|(0Au<G<T{mL>!MxA!
zG9taOM<9&~EhV_oipHZ9jGY30Nu9(a^Z-bwk$?PbabZV|#PhW}^yyo_gq<6cc*u(e
zG3aB8;myUO#5h9&w>Q;5+5;r|A)QA~M#>w6q%RzIweZx(Jwyqohsxw4PveJtN0YY;
zkR3rx8gqiJ@Fn3j$a!?EiJbg}1SP_IWEl;BW1+<sBpbWlWC3o9%KGOoj?o`Te|mE~
z)uayFL1Ee+Y55ub;5^*lWSx*EJ}aV&ip{F$UO;5TbeJ(NvLmDS{;`b#h*yj8s)S9F
zibecSB)Gx-#ZBtm6uAHzDd9$>3{`gHbFC_qlL^cPyM1$31Z_DnK$3IN=l4xnoFCAx
zMnfc5azf|qdfxz^_Wtll!kt2vAKigDhl~mO<=OaD^5EfFHdVBwLUlVxls(|O?sNTH
zL;qZ5vemSw`A{|7EvT=IQvWKVo0S9#5+y8=3Ny@u!><r4Fz)){k#{Gzc5T4E)QL=C
zFaq)dSDwRUVUPYnMcD{@zheyVBt<tVI(!PL;R0-Vtqpd56O06*`?_S~j|x$FZPjGq
zlG|&jj>kI1n!gzyWJG7vLt~v^jzUJP!_i7No5cD$Q{XkPH!N)TkD0TVe8N@bSw)07
zP4h6a8<dc4Pj(&i<B%LwjZTUS)aGax*%oG+pkVd>0h>0wIhtrmTteoU?-n+3wh_%8
zNjJ=;CLn+w|J3%M2c;L5Md+o&GJHw+v-zZtjV~Skh1uK+bX;`VY;~8(*#;>&umI>1
z(w|cp$ew_GL*g?%e>_m%=(9-2ZUv*%n%@e8uGLsD6`mT<>l@k|?M*VgZ~S2pFOcLu
z2X(bukY4f!w(fC*K*5qs<Phc761P&$+5wjwJkWQC3=>WVoTL{xASKNDqhQ2j&s$f}
zb`_Gj6Lu-lzZNVyqc=Q`0&uHs=-06_X==rTt-%f0z06k6yMB$Ly1XHZ>as$E2Et^M
zc8yG?LLi+46)5MvPi%&z3Q$+-lb8QRwq|@n*>O=3chTU(V(l}iB`0j0`#G|CSZ_il
z3^CF+U?_jqYpa(-bl#oyD-G|W66Dr{A||<O0)3&}m!ai^aQv~pbrw7uGrB0ga@Tn;
zDQxsR)T<(x7m9m8UKbIiQ|x=T{+W0b#u_SS_>AX6xn7u<<h~1jlDZyDlck)<v_=MM
zj~1H6c%C<ETQL-q(RHOsdu*9xVY>i7byR9_5Flv~tZ0z|F&^>w6+gmXObybRld$IC
zdvm66_w_g}M!PrwGiZjn-U4Br|2`9~(+Z`^7hbT*H3Xm9X#4izkT^nY8#?=-yxD26
z76^ry9TUA8)E>p%RxFD>KU5)&WTX3ec+WUjS=3m=q(r$<kk~h{7$?voNoAb;cutFb
zay6N}v;98m51KzMd)E|H_AO(`7Y7c0<&2>Iy#}8j{xa9sF?ivA*BCiti*sxig;1e5
zqU?s=A4T(pTT}-OZeh@`2-n<vx-La-moVFTBpM9S(S!loUsH)4Tk9K+vS!CodZ<7*
z*n6AXGEF%8j5v8EfhFh14xjd3IutZ~cVOVpz4qT^Efj@SRyYBKaI!12zad|xt^+CY
zp-f&dq1KTJ>NVGb2HsCv@U1LQt{yo?pnJ|F3#&8c7e2e2cE1UA%Op?>sDAyX=-QGP
z0phPX&gDm2sWwdFDO+Cag-O>}(^gTN+XaXtekL-qr~~;0vp9Rd)&e#6U~m%p;V(RG
zdnqaMoD0&)tCKIu?X9SY71wyX%svr>zS)ppZ3|Dgz?4djRYgtwkxWN9VjmNU-FjSA
z0xSSJN^0y2X6xCw)&AtDk7(u^;+_zFap-Y@9H)xd@COCpXG~|6lUW1(WA3ni_oIUK
zlXMyKuNWLH3cZELLc?xFthwQR+nwho<7_OVfoT;2RDP|8_u6;eCB7>rrYRIq8D?3v
z#2}o2WZPFNY`2#{zJL@S7_dMZiO`Vt*57OkD>az3$?i0Uj!!qPSyuJbmR<cD+ir>x
zj96w>s-`H(mb0gf&fKh%cH9R4l}ZPleDD2RP#ye!-rl*5CBny@qH5_zfIBCPiTvPs
zMsI=`Dq<vmDE>=Y{j!}EF7`5|xr37=cn4~+q9qxv4596OmSrr%c*hdEK5~cKd^Ju8
z2%g<74{FIIAQ|W`I)iAkAQ?FB3IK06$gBrtWcP&jXd|&c0Mc+f8sDBd%xy&dW7j1{
z`M;_;yAv1(_^2nr=bvLo?!HCHd!hdHC@qa!iIVFy$PN5NlMQQo%W_i;Kd+~4O*}?v
ze@za=g#QnN&NhN@n_Gb%(e%JD0G_Qq4Hakjxw(ArMq3fd+#;d*N-ea<z+Gez^)loY
z3ma14%)K)_M%vYx7{LBWB_u){4d8$$k=DeN`fMCZ;S%utI`}b7u3m^kTvHnm!Z~`p
z#H(8H{>Atj6EJg}y6cahui=|~z@cg={9}3#!;B>gB!38bFa8BLyy(Au?1oLcHNa%F
za5oy#MCw8pyQk-*NAonj1{(Ax%n*<lE;BinO}FNCO-ClK-4FohFO%kbk|Jmci2bR5
zZboywiQ+6GP{~hUxBKJ#0CYdCjjD-p@u2_mSEH^BB>$GOOYYKnJL<vz&0B9n<1X>t
zBu{>46bc6hd7B=IST?PC#JnOvE(DY_$kk*1qJ2V|R(`L@_cyNejHKKW(?{<`k%8H6
zfkOr66NNk>(v*g*feWA$6277-dCN}3&?<lCH6-Ue?GvMon4GsXW;^k)3saqZ2d-5j
z|6N|c%D>QMCr)={`zl1NZQt&)ys>+CC0>ib)2&X1th~hZQ_+kKYa9tyP5H6{2uL*Q
zL??g->ZjU>C#7NUELKdxVoxBmltSo$2b4-uQoQ5q^3$NjaJYUVdK`7B^B*jEgppOJ
zR0!m;9~BvlhXU_AVus$B(?Xr-$Ea&>V%C1Z0x+U_JOve+vQyTrG!1j$4X(Fi4^oR^
zK`3z(xlE$8GNI>7Iw%c(Bp#vru<=tcTjVmDG(NQ@&c)#wIUYJV``VFSb9kDBiSly4
z(<jF*IF$g^aPpNLUQa?IVB(pA%QacTc)@-pP*SUWYWldI+<=^CY>Kkkm$^7b9UB3R
z$rC<GqpgxK*3tEJ+mobz)Z=wRaHlY}V{bpVJxZ;8?;xJe*9>xbr!G+8M{u_VNI6eX
z6`PY>QtA+hFUw;5lf|d%(Z!7|%szCJ<-#f3mb8l1u%hpI#lq!tZ)o5BY=Bj8y$*S%
zHarC-JFRDaG>4PlxNW@+4?vJUPoQ|n!I77wmfv)ad%R6DOG1k6PbojO*Gb<b<Yyg8
zCfu&iYNOB#5bI;fXdU8rRF801KV95O64m}H|4F1a%!bsrzy2x^$BitC=7^M=-=NSR
zOag!OTHcSrlih`kHukZ$J-}ngeSNFw*=hQ&MDP3zxEfIh*>zB&a4l`M-FUM_-KG>U
zO-Z5y!4^YUr#r%91uk`0GlY!r_RlQ`u{Z!?>pY|}YjK<L8l3djep<srz%pAc!90Gk
z*W;k&r)vpYZG_^wfxHcf<Nz0W&{g3qG;|&2L0d%Vm^)0{kA7Z2L{IKohV}#y;NFds
zo4Y9~O3Lxd-Z3KPe<az=zB_49zGF)s*nltX&b9VUG&GSsiRSv&=JGhrM*N=Ei>NXY
zX;tt$HB$F<NJ^*qBbw-;tC70$V{Q{CVHddlWv0m4b<l#l`oA#)shenV(`L#A20lfm
zEm|;#QKftJT`Egn7(gY}nclvsun&}XdUpj5<X4?cK_MyR8W!pV%uIaQb9GX&WxqQY
z{vkeRtZ+Dy7QXq;-hZp{I^nu><!te6pV36l!FTX*EmM<8=ieOLOzBza^4@N`;}Fam
z0PXc<kmaxCI|A<sa0>U^_gN;3>CKep|FMG=UZzX9hS8-!rK2!HHfLx4(x*2x5%)hg
z0na$o4TkB5jteC3hf)wzPxLj*7EmOhPZEL>VN9|Azyx(2;<1!o^YyV=K2D>{h@lpL
zF7C%Olf*Pk;lT1(*L|)N5w@Wn<Lc`sb}X|#aq9!J(AmZkz+|#$?QG2MIxNhzy>@1m
zE+JJx9}+gbgvdS{p+1JKqeyxif$`7q-?>Kd9V~ZTYL(rAJ<>@1%6Yp$s&wY})5Ohr
zeR+*h^Qfge(hC>>mZSS^YL6VfylG9Y83E(!ksE3W?-ae!buYq^%nl;zG}z(I$XLqz
zoj#E%6qB}1HQ|e_;RELd^^YzLrk^Uc?4*4`##M6v)(Wi^48VXTs{^0mImj+HWIL`s
zE&D8P8}#PK7per(pYmZr&O`VW=tkE<!?MHto7OP&(h-L}TGizEPgzY|X5bbt7Uq!;
zPl4^jw?2@B<2VG<yyXuehnGn{0>*&XD#vfGW6xUf2;^3cs|Z1a0H)M4<5&&NRnZ65
z7QHtkBl2^I1A;0?#mLQ!rkTflki|t-JAik4gotr1-_$BbN`rbcI7het;@~6US(iFn
zD-sL^CtU|?u|GV}H0@;Jf#&?JuD9nTDiLJ8v~vM)<fb|TB3V~c$(^6|6>^Xt;G^hR
z@K<8Wc6+Ue_%b!gA=I7n*;ACns1OA3ENrO^y9e??JX4pbRX$JSd)lwG*uP(+06dBv
z`QH+$Xu&m_p}wo(vQFZkBno%=U;*#<$LuP7EiaiT*(<hXd0T!^MjtX9q6r^BLqgP9
zZ)$zUYeo8Os8Wk2IF=RGA=&zPfiL##I#PB0{0VazpRTj~I`F_p1cELJfXB-wh_XX)
z(OfX{pLI21JqzkuQUyFww-&j`Ac%Rfv4HQuaBvr{w6CO6HC@bfO5Qa#qlAV@*li88
zD%jQgTuz<U0)B$AX)os&OYq#^Q3;nEWN)h~6jRm}6)(<l>1&8m<=UsaRjK+Ju$#@V
zZsaa8{cMWv=+vD}8-RI+Cpk(O>{$Lk!IkuD>$zz#vBr`6`(u7UzloaV&%vo3G;FeS
zZIwS!q}ow4MOJre2sLxaGSk40e?xQlM#-^lW_hnG=Fs4ClC>JGn%u|?5<}X*x(j=u
zb4g_~ZbtnnZZ?{y)Vx-EAkL>l{Dw;uV1oKdA)}$HE&7qlL;R*>?<IdM%T>_9hA=0c
z@}Ca=!m3)*5}M8uQd7>B7*CuRy$$v&`?IIIcHr|rREsbxN!OWlZdk3z0x}vQ@gtvK
z3KJRderEL|00P5$IcAL>O+S;;zb&Si95Nps*6taq<+s^I!iNQfbr=@s@qLLq))A0o
zfXc<vi4t-r{h<zm*T2nS5E*30F3Vy~-wLRwd%7xm5Rwqip<y>*yVDXC1+(icsKlee
zu`LncG~o7^S2_v#<Qs4`XDv}Q44$q<8o0|x9Jk1PL)G5^H9*S0)~8V$s13;zg?T-J
zOG8>`+KC`e(LFy309(%XeHtftwCIiEUedK=EaVMb2?)Z0b!Zysrtdtuz8b!z@(VZO
z+(GocYn${PC=|p-GCNSm{zHl;Ud*HRSY@Lx((TUu>V#!X!it$&16kIP6hQ_&J}Ih9
z{uqYNiw^^N4UDTLQH@xvv@`V-MlNht>AO<()^`}BcdRNH|1+uAc9=<sQ*N*(@7I;h
zmClurPIco0>Xsa?B971a8`n43k-z`m&qlv(0;JSG4;&Z$BE;Muw(jwK%35`nW^!u-
z2o9{I{?%C>QTmp`v0ur_=#ff22J47&!(_~6eNZq6yp4*?V`Mb!f8rb{WlH6LXjk@B
zVmga91clV7u?+j^sP~Ezp8Jab#kTWotm)0+OqRSA=;vRfS*ek)Ss19;JdH6apL*5h
zi0s4$SxIht=Pq6Cd<HPL6GTZqRnte^C9Xz@^E9C9jdx2xTKN@wW**=IeIvy+wGiUp
zqNve%;;ni)ACDEMY82qOnmPKBa3$4k%>VsCgQa-WL-u{H=C_~uGiS+{_u&xxY8U~J
z9RA}&|Br*s)&%CXx-r*}9bw(`|5Y_q9fdtUI`i=_dCp*S9e^nb$-2QNs0Ew@apsvn
zcI<AnGpP$$&R+1UdnV%=TO+{{%(%c+7EV0Z@7FU_aR#un<&G|ofwNEzmF+kD+hAr}
zC$^%p(#@POhD;tT-P@?ns$eKlqQBwXR(|;ESLqFKYkKF+_OG%4k&dc#9J6H~w|aBq
z;`#$QzC%A$C#r7{Y|gEOPNVN>|0BW4nk3Bf@3x|7sQISdn#tPtN;t11kas5h(BZd$
z;WMgP%(A#cuQ(M`1iEwiHl(+28GlKoI2qOA9(w;Tf)>LnZo6;t2KAzcGZ+AZklP|9
zV`)$8XntgnAgxD)-Sh0i`1%?R+W|7=?H~$K>NGOk`2n-;2#|ETJ&`5B6+;C?TD=9u
z8GJiWWKn@_(eA<j92-mXQE47y*8hPyZf#8b+jiFafrs5;fsOym|Ns5xc~NeJKxDcA
zp`eIj&#;_NgL#vqKg@53q^^MZ9@k}Ot9#iKU`$~Kmo=gCyd9HeCm1g!R?xyAMz9WE
zdbZ(Me*%U?EHx4@SR*XJD<vHKVEiM2U1oA9CFod5z=gq@W{O8ES19V#cHGUp1qe;W
z*s$GZ`Veh^Gz(uB`Qpm24ZQQarCcD7xPNkJpYErEq#)t{c_87Emr)cyPh03XO4Zhw
zEQH;D%Ldt*u`7DU$(${6<c1Foi~QesjO4pz5c8F|7N_cVXR*8GhTXm@MowaLPd*>b
zTfF(#<IF)1RdyQ8jsdI}uxpna5;>~JugFlCYRkiUC2dDc+o8VzQ6U5%!h%;IaBF^z
zW9WeW)WZPh2{8ZI^eX_{ZDb1PR>t-K7P_&$=buPJO0QpY>cFJzFq>3-nc<`0P`qP(
z1ZmgD<Bpl~U`2I^n7K;FfVq|ys++dkE+PrPs2~m9=w1PK^)+UA1l0=$;D4Q-Ko4J-
z`U-Anj$hbUg<#`!3}^uo<|r=_cD;|K+z-rzH3<@Y_7d2~bsE_17+M$R#Tof0bG^wH
z!-v9&00fK-ItibzXq(Dz8!Cn(5s$-ek7J=aFZUAc7vI?OclV|MQcOuA?s#sAz&=Pv
z@FwaiNnZl$DsBjohqt?qO6RGA5{`BYOayOhd_WDDI}zd7t~pj8PA7sYTQzJ$^P@~g
zRL0IV2hpfJP>_)+zUD4)l1FYi^-v6ZPjHxVNGDT#s7<8{0=aF%Aiu&OSt%&U85bh+
zWxVySA>5hP;S(m&w-IQ&(G1={R5G1|Fu7qWwmO<@M547?eA?akeLf|Y2WM%wsL6~_
z0|9)^7SEI4gpG66>+(agHZ)w00_%2)OqeeA+s&R7hzdj=EU>kY&1|2T#xc-ZRFA&N
zhNVT`5(<~-?7`j_)D#NtFFKb}^C=0?B$|o9@N~3(p-P#gx;`1p6Lz${%qsNKm$nRW
z=-{#OIzK({a37x#d^hT8dW&L}f-(!f!5s-b5*Z)Lw02t4vjQGXZQcs?c13aeLKE51
zHDnxvQ_)_KeRkb|PbzL{0K|LWW%d1p+|v|vOzFME0SL9eDvrRIJYk~LQHFryafK7#
zCUcHRNL5m^DeUh(26)R02f$F72lKD`<Q@X#Pl9N9&$JU9Q3&fRK5OP5qGKih$~4)D
zo(@niy{<=qs%s&v{b9sQE_uZLFM>A54=KaWW&@8Cp4~5NljKtGSHxuPOD{L&!d|<k
zEguT~vERS;AOrpk0V^uQ8oUV$<ia6C?~CMO*?A%0W2>}L;t@5Umcd<SiA+snZKD8c
zATgW>398u9V<W&A+|Qv212!9U)S;So9Tp3hwnt%8EdvOJ)5zf)hwW`Vi>-fU8ffM@
zvEVH#6YySlTYJn?DMMpG5PhNjf6Ml4>TIUql@%88cnlCRSQ?ST1zmUEJOIOmbOxdj
zmI0Jbt_88xnXP%)!eH`tah-^saiJyUSn;j{HKXS+f=ZzN>Uj3yh%a~xUxRMkU#cSS
zE*+-@vg?}X+Yl}YubN{L_UtM%kb#f&^=1s`R$uoI!EDQal`K;h`8xIpeoRXS>tjoi
ze7d%-Z6)@r&j_Kr@v@+IL{g2Ooa(}+*P|>&Sj9OxyQh%4OC$A=ytV+5;9)uwBqXzQ
zkz<`rOUTn{DLE7Ce{aGh7c)jH?~C`LNr`RpD)1!(@zwMKa{VG)G`PxtOsjH-%zcWS
z8#P6}6fD&VjjRGfZ>tcgN=gx1VDmA|aPb9vJQG6BX?(?_vwTHGaEO8+<1-{!oK^!G
za1{5;uLa|ce*|T#eYUF83G=c$dGypvlYJ@@CsRFHE0oJ2Th*Z+Ez(T46a0gNaio>}
z>>Gwl{%)n1XWcc?Rb7dD^k5CyqW`hB-|+#XM|U><U`jxO4182^eh?i9N}1sa7SQG#
zw0(r_kxnYZb5g~-h10V@nw%2}wf1&13H@&^oAt7+AfgLv`G!zF{GyVe!yad+7t%J`
zVNV+%9g=a+{%ffo7OS-#xhRUOn@dnjVN!L|cf_Z!cr9zurkxg$GF$ez7Wg@zl<fu^
z0twkuK_P)(h2I*%-v7B06tFE=#Ui3pCn$Akmv3wJfZpYg${)+6qD6SQJLdi6V?y<6
z!1~obRD`RV&nSMi{XhonKN10{S*3&F|HcD-@9vD@8TL=Brh43ER>V`ee)Rvb&F^6?
z)=2i?NGsBb8_iiSBsb(|u2uy;0wAO25yBFz_t2G#X7;TTDrKRtnM7w>o#g;V<4QSb
zi9f88(}U&2nR}-Kt_|RZBJZVwL<;`0ui}4iK`Xk^S%s^I?4-=8jsy+PiHL@&-2BWD
zSwbrwV#RlYd9tZHBp9ndgIVu?my|xTr106#v1y76%x^~OlgX=)iT@Erc2`h7$2gXB
z*R{WP1AEZob0L!<rfPN&!z&us^*aKvtQxBmM5%?L{-%_J#Cj&(+OLWDYaHZR)VG=b
z%OaYTb8pIz7}kisD}8)lSy|`;bdq$=d*=BiT-4(38+x5OIaZB{Vki1-Dwa&<a48o?
zB-!3M1FS_x|Fl1=*wK$p*jl>pJA4wlSuB`eHIS#<SX!>dAvOo0*EBu#BedsKzs<dW
z3iT^%64LJud*m~x9<$tIdK0G*17vJ~VEl!x7GI`skvS)Fbo;rQ#CnlD@MYG&I9L@a
z?TduE`fgB%Z}TIrN&=zeoTFqfd8!mrI8jk)QqMI%mljr78lDF=)9F#yD>rwaNRc2E
z#iXwAyBr$auLN}4DcXMImY+B2M5jLzE>-_=ShYP223TN6D;WyjqTyk?8Y2;9w|D-q
z%s@y;$$I2oS0D_BTANn0xN5GzLy!nvXR2T;ZR!g~?qrI4lI;qimQ@I!f61ZN`?wpG
zc-9=!E*XjzMuhFUny?S_tR)Jmz(sL%8*}<K^@$}~3MeI$%QCZaeD&Y#VnEd1@_7`h
z+rlWtDrrfAi1aDKdJfJ^>%I@!W|-!Bz_VyE{sS4d>A!;b8Xtu|M@cM#G~PNrRNh}I
z%u>V*;G(6T=zEe0k9K;EB0eGuX&1Pn%Xkc2$|nCe;y~%Go)lM8q?XyzW($Nhg8mfD
z`2W?*;PbmF%3Crq#?r*h%YT0fr>~N)fwB7RW6d)|3@A{;d3!!OSH4(X<=(Lt=v(Eo
zmG09@8x$SomfCd%{8LJ1R@NcU8ko~CBSD5A6F+B)W2aNL=@P=Ekd?gyp(Aq*qL}HI
zo4bEO6)(-)>A)+bQW!j7f0r0kL_?M-ve1JT5S7vL=D6P(yHXbV+QyvU??~HyWz65-
zNLZsb_oY5S0f3VlA-o&HIYiq~mXy|HH9InrP&!!w#pHX$4Xt3^$=K2r`8Xw4xGOA!
zwWWH<xmLz+^<XyM&3J=uR=~%eFI-yxqC{^ilZO($Ie@IK;?1+b%2>e*XG5(7lnaX4
zem)Y?lYxADB$JGRdi517!m{oGoI2PMasYKGx}B)2p8>d?k@(N1Bv*Y9pzSEtw#+aR
zIM4oD)ND423M58qcXkD5WfEXt6=}+&&PEB@8u(5ms62i8W5&`k>Bs5>p7zRH|AN<=
z`;0f1d%l)D#<X(&WFj-DJ_=4S8^+$Gh#Vqsb|iz??hqd3848PNjt`2B!l#-#Y?<4?
z(8TBb=|Qib_llbNv`45_|1}t7x;~Ymdd+q`^MK~OIW*0L@9a^O;Gr7Ru`>PvgG4FH
zfrd?9aJ!Lpr2H;<_QsgAiY;Ti4ud7`OI1Jf?txd_SA(kscaMx;`zW0@th(KIVo#|J
z-bBG2Wcz&jaRcvKzcvWfWfSxgl9MB;8%E6P0b(fJ7c$&~4-PZFVfS_mdA*kM9bDu^
z^VGX(j!EQomaWxp=?j)H*8*ok%UGzOe{VT=p?`6ln3?Sr)J;l?#)*!k)taKa1z-J7
zALq@M)kgoWiD}UweEG2%W?hVM*+4NJ(xkEGYp}?&ny75Z4e<Ek-FHZI?Mq}t9j>9!
z7PtpjL>l8|?g;!lmQ&s(1OJH1(ENyzc@<9%jHz;nnm318ZILXtC|6H{HbJ{-r6?2R
zlBdq-A{Q6!S8?~iAftwGdJP-Ijh)zf7u>u|Jn^;KY{=g6Uj&Oi)98Qj;u#()4X$Y2
z9vYfYj<bH^|I~s-G*6W%1UKXQKqm5tZbgkAZo{z|;spl=P8*(|^6JNks==~q8H~S~
zs`}J}Y3vdQQ*AB$_n(h2AGlPex*=;J2_+6(+MdTvUW>~@nm6@-Vn$2g{e=NPmWvKA
zK0n>>+|S%=u}QDMJn;D0r7QB>rYPT+R)2Rr-V%`#y>9RkW2t95``v~B8$a$BxI3o$
zzf&SW3Q1te>h_u2ui-4wz0Y@ykOynk#OF6C!SW&YAFMPeb8==W25kNT{vMu9(KdH)
zLeNge{)r_Psqh1$P~3sJ54q#hh9gY)I=}f1@LP^l*h2%22|u0xm4tXz0AdcRd;s+%
z3tMFdS5AkFR&N)+ezzuDC7SCr7B+iH*Cpn$krbyCXc3Mhkf8leYObY>Ayhv@IDYP)
zWyanmnMY`XDN*9x?q`SZDp(2C48-%|-g#hH)TxK-(T9Zdw=Un#3X|#Kl&5}qs&)C@
z`6Wr>_k1J8`IbgfZzA=tbm0r~o~t4mO*(z@&RuqF9JD!O$A6!M+-mmuqkFp13d0<_
z*Ica}i)CO3m$x*f8><K~Av0!4|IvRr)&Ob!ZTjMkLf3t@kVaAO4MN~1$_!X_yGaFw
znJ^za7%H?TF%t5aoYBX@(U~NR6MhD~OX_1~HJCM8DO)IqsNmz9l;KJwF~uac2`ZtV
zAT~*FK@&dXYe{rFa{L3|A7tjtNMLEBjS{;^?&1!wv$P>Nh!AWveO`YHTdl^VDyfgo
z2n=>(wd#FNl=U=8aHf)GB3@${Y~Yr&QKX>0bcU5Ta1sF{s|{?WpL_9kD;6O}-*MCl
zX<UJsK++mtZ*|gzD39*8-h&Y~c?xQ0bLadLgXQOI?4$<I$jxd_60$gcJPAMS2lc}`
zQ&VhejjU|jIjoC-000FF0jL3h4G5nA3(xCu$|))=WUFB-K9e9Z|FA4GtF%y_W6;<7
ztJu0-uZp^r>bZhtn)+U@$~5>@bG~>BwHAR%SNM>gly!!A(&icRU7!KgI_lCVcs-`o
z@b9c4k_O6(XT!3SI90&t2Af+YeY~+hzZn*SL@*)ofZOG!_gO!+Ag=|{qud&F?Ag>-
z*iF+Xbl3v-&~AtFVr%7wnv2M!IEjN%*cJy#Lc!p5>gy>ENUY5m9*M<+8}uInU!z=-
zgqDKJWyNCEZQDV<&;I&Lk3JE9T<ZF#*S~@@%YxmET{=%8tKmxvp4UIzW0A~Z4?!es
zM^w;9DQ8~J0z=tn?}O0Rzavk0Tb!K<d0I-X@;}pE*r(FKn`7|fjnIJUN~pYPl-}8d
zJO%k};!^AU6eMv<)y%W{wvXB|AS7*m*Kz2qGJsQ)>ejlP*W_g%%P!5va>i`9tO9ZT
zR$U@}DaWWZEotLn_-Yx(m?X@bYc!YQM_LzH?vr!X!B{NV#9G480m|Jd?UDuL<|8ee
zt_vcHGQ8@&rWv{6?i*^VQbQ|TkbBvrdwM?b@}-ap2{?-strjq3qq#Xj`gn_n@u>Ef
zlp%8XG-&iRcnJ;uWBTM5EwbMtJ%Q-$>W~eyd7*Ky>fAlC(X9F4jtlce&iNLdOOxw-
zWx6<%u)UXV!{5#RM}Rz-2?VL>RY=EqAW1E!)tViq&p7^S(bNZsUw1z!N+xU|s2|4|
zs*B}V_=94{h*vQtC9}9nbY;>*O)6><q6hm*$5eIE15O|wp?yZ#+-38C?uFUzpNbA)
z{+>)Qd#C;H*0a|<(jS8Lrn1)%JQ9WgAi?M(e3(Q9I&xrT0Y(j(Hf4?KrbF|$)&PqT
z5(i7;bydX$00p)M7xw{v(`{??)Nt<7t>x_tAx>Pm7F$e3az{6MNbb_H^j*K4f)#Bp
zPgxCPj5uc5VnJ#F52tU8pZ@t)NzL{@b`o1JhoMUeJ1|oD4aX)#gd|03A2~iWyz$`m
zMv3)?i0zUErwJI+l~4Mmy<`CBEFsO0;D^{-z}BN#5S#PgQYOa0!A=K<AkE(yn&#rA
ziK^em?1D^w0+A&u6|<)Q^)fb73ujbLPv=ARUdqWV6GkO)wrA*tEOXYbJFoZefhvO5
zbz-njb>hU@tS?j~rG7gWVoIwn`gNQV1=%|5sN{C!^Km)63{m~^pWszHjEZJ<wrvBO
z^-;>)NQ#+y4n_B+;@$B2?6rFjAEE2Z&OJcN?5ILo!2V=p10&l6aW`dEZ%vluOFa;a
z#p*5>x#4GB6@zoomV<1(Tf3$R<=p}&Qr35Z({~vvC(o_QbErA|LK9cqUPc`{(TC6^
zKsPM{#i!+vx}4gJ#%%~PqOsDIq~(q&Fp&=RB`A!j0ee2$1Bgfv@*kI8I3L(j5d)9;
ztZrPg%VO}3NSl7#auhh!<dBE$u=gE6?0eH8@74AA$@+8@x@pOwmp<G<q)vbE_;mCI
zz3>rC5sABWvAa}~su6_MqE)N4CQPXjlUByQ4T+2o<Zx{cm})PnA#XS_rUKxxpe0{T
zXNf^lS^aoDG5CEC5g7Fq{Q3vT)HVxiEzbkZ7&0_yp(XlOJ!dW{v~OWtL1&-2MS{?c
zpm+cJIzD#Yf4?pq7IpR)O|$k~VComDL=u39zHA7p_2e1`xJEzMjjy;kylohU!<(8I
znv=p+#DD+*-X$U61^{3|KbYz<BoX)&iLSXy^piGoMjDTvnMA{z{gy=?(<Xd96Hy8!
z*1SUW_t$?J&7u=eOv@nun#z?mnToIpEdCA)Tn&U=z9G{6>EK~y{U%|PJ<NQ@-z;kD
zDYhk*-Y2_y>uoCDf4!-(cn^)$OAAFX{v^1+4ykq)CrzV1vh<~zcC6>#91Gi9A|&D+
z-K?yu@>Wdgh16&xw`*v00)DWtknioJe5K%!_0|*!1gmU9R)$b1-U_t85w*?EdVDO0
zeMWAigC8d90-c$TX7T<^{+l=Ep&xs=-2rpJLhr>S1fb#Gs@j*iD=m*Q=3Kt4WO8EL
z3GW6{hiKO_3N5BKn0G>6t?vbp4(G#tpHQH#E5}vHeWAOg?ll|Xp7#ejY?)xPZ`|||
zLzvFaGrG9r`<WixZDkwo9|d*8DNy-pIPC4ZO4%<_3l<Xl{e-29p3f|VoF_L{x<u26
zE_!9rYE;{bDBkW$_L9bH>b(NRK&?<g$>E3;SIQSQ<7>%@e7?RfYnN}?I#pL!tS1nN
zADmVL)X;}b!wsv%X&CYrLsj+el6^z5{01pp3MS5taohp;`i7j}=!t~?ktBJuS>Ac%
zaedi5BV+E?AUQ1fVV3M}{zRG*I~KmuHil^`>2Fc+ymjqMLqPYD9yH4a2dF1Z8a~;#
z;n8&1XuM-W;ZkN9CA{z8yzA8U(l5hHGZ+>I=^udJH;-1Lc+3QN9Pnw(jRD1XzAUh?
z6?Ry<I_}`T;_)G>KXkkQTTD~G>8Lzc75T}`*S{TZEx-lv`TehnQL?`Vr`!DLT>NmH
z%q<c*DKe1;(C3~}jP7>rZ<(Flo*~Q?DggYc>i!Ip_#W&V<_FIU6++f%KkO`A6Y!q3
z>EhVB^8WhKgg@1Z^=*u0>L@Iz(VPp^8;qR1{gVu}fO&4UTFAd|h0bbn`VIhYzvK09
zr{O^>6AY6|YHosmgGIJET5GlyI}hSD*n5gd<mMe}6O`UBMPkd!Xq#cE#gHDFRsO;>
zZc~$re%tLD;`KkFHS*X?@1jbs`p?Q>01@35Gfmkc1;<Vdyso9*BlIh7TzlYecx+jq
z;m(iB>&B)HTuV~Y8W38E6+=xE&MQ)||A1C3<FnIl7YC{aJVVHeR%9Ul@9D)B%SH;Y
z<$lA7Gqo0855aedMpj5pqj;;}ZA-Mxn@I;~Zsj^JPd{_rhb0a_5DYP-VUv)hv$i&Z
z`K)jiOSIIwBpp;mmoDGzL$lN*EG(z5(uMFeUAN@S_$b^CI~Zc5=5j+m?X+e8LB8*A
zOG?-$sQ;R}I`0<mmqwfvlyaZjFnc)c6poM_r#n9y`-kJoZ8Hh$YiE|D(ObORexeBs
zpOT^pt;vBI)QU_tXr86RfUaU{M9MU_giSJ(-)PY|$6^q+{J7?HkA$h&aUWc4#U8($
zplmQ%d$IqJY2HX~R7nQokO+qpS1AG&`vTV*4hK|_AiNhG-YaXa-agdz$Xfu(KYOsy
zin3fYjl=kW5mBeW(H8zswTob(0dYVxd`;xH+EYjnrBb3LQnK|<ofj)J=^GXTGxOfM
zDEqX4q3C5O^yooF7^-@;s@egzIfe8x`9n7EYF83JhyX^P6eLr{+_rUG!bLla;`21z
zmj-_%K%;v=<I<rvldo?7>%+OO@eX1XeQNyh@;N@EztL2AHUR=W)@b(FhRlkSw~10*
z`iX-=m(FKmO!O1)k|{LOn%pFergmS~xH2HmeOHSQbYC@h+nC3iGeYIF%(^9+FOOJh
zSP<8nxQX`7)9G{kn^sYhIvz&SY1_Cg*qtUhsv}}}rYA!8*f>qc$cTJs?gR-fz`Bbl
z%$4EV+1xfsWiQmBU>W(mg(9NJM%ys3w5I6B+fx5tPVEx*z&kpzHII-w=DGNX4sUuU
z)iN)`RwE&Z=gfRgPU?>)$TreRhVkT{cUef-_$O{HxyZcw#j@#>Mih1DiZclW4&3Cr
z7gxo~zJ{02yX(%~+bJb?A7a#&Uz}<{bUi?w)3n%N>`FLng=6@l@Xchg4fV+Jw!Z5C
zcHK8HE|>i*87jDU90>{$9e~f|GB^lBT|+P9Ox7v_;!TS?c5@%M2^+~>PE)x+yUZ(|
z3iM*^Mg|O5;|?rrm_Z-O&+Hqv3R@0a!L)B_f%r|ZL4i7A_g&K9WYIGZ6=Yb+yN>G6
z-x0*zcQ152Jxeg=1TJmX7;N-+(4b;~4E2K*KL_88g(v>A((K>S10EDi$gG@;5#=a3
z>8f5O6lr0=S2RX~tu+iEmmOwM`nT9u#H#yfw8#Q|&sbW=Jkb}krI5P78g|(Qlz3<R
zk-<VrM}!~NI8gcjJ$TWNqXuJnj|r1$VKZu^!T~w0FVQ85z6A9j?+LInGKEXHexJv%
zoY4m2raTSgF(iXyFwJJ&I0TxetG=lDbgL+*$qO%Q`6F7no3P8-47P%5sat%3tYzqT
zo#xoj)rT(~j#WLxd5LEe;0a`v;IzT><4HYQ<QVvm--#q-$`K~Kk<=9!MVkSyyE50q
z<)vjGc0E{w*Yme(lxw(C0M=GL9GC_!Ic2a?hv;?>3n?_6jOi~jRp!Pa0NPceaY&xQ
z1XQ|k?H?u>1f+VY)#=MP(=rg==r>CDd!hwi5eq^As#wn1?ztc2FSflwZY{z^s6m<7
zXQ?TH?98csR7r2#8G?rkVscSYg;;DIauJ4ct|kGnL5+#VxaLqZ=ArZZM7fTiHi@Sr
zEJ*1ojw6Ym{&r7G0pM`EF`>c3{@3Ac+qOLb)@aM%BvSkTqhFXt;ltZ!MZs*grJpwW
zp@fBMo};4HIDWD;cqCBb!sK|@MP0MyR#fIj^`mV~;YWOE>yI$2iz>=>ix7!$7Hg~h
zA9dFk%(K})#rPTdGzqFsW`I(`niea<0N#TDDWMIg0smG{XPR#7kBl677ztlvKLY%z
z=1u1FYHc~^#8lm|Bsb8?1I6hz|J$kbTEJYq?d=&esxi#KT$i$}F(sz0vcHNf?IKKJ
z6$P)>EWm{VtX_dXBb<rI+3i91Ud+mz?G|eG&~@I_iN6@cfQECa=jt{7^8_v7{l4Jv
z4^Y?6nKX-#4na^2oS9Wr`Suc(^d$EcH;bB3)zS9UqAz+mMVYjuD~M+RsdCJ;Ks5BA
z+f3%sNn3?Jffez~Dc{Ki)NxH30dTHtz!n?GSy0FC$>`7o*bDJ_4pHw`>Imu{)lfPN
z;8$4Q?gGY+0ExPVn;7B!S{q3r<kiXh!-Q$$EfZ`l7|dcQ*BA}gY)04>ktcEmUWr@L
z{D(e=`J1YEj%OSiHAt_NEz_Y-Xq#pCq8MEtR|(O4MZkiH;>X%$Jqzz`c>nIMkY+1X
z7HsSk#s;T0)Zo`6b?$!U1<FJ#ZdN}2;wZz;=i|?GYrUe!p-Teo^4CO)J8pzKbYqu@
zS&qBElFCnzBg2tgZeTfJz$4rb8@_3nrB8|ht9<hjagIM-`kM17?&FnFyq=8FM+8#n
z5I!d)YwW%p;cC)r`e5`{1bfcz&eLLOwl0jani6;gMobv!V=9gT^N2H=1I|8qzlT3!
zMy$#z0Vo8c;VJTeF)F`arX|`EbR<UBeAHKQPBOQZLtcqHh0v=4hn(CUfVSJ29|O{d
zhaOdgS88NcJv;&Z^1e<KMf%7G*pNU7+3I;y=>RA5g+Tau#bg?djqI15(yO_Rp=d?o
z;&ZSzM9}VxG8zRn#@tf?>^3GTPY9y|-w5BhkMpgh*8>x_r3zzI8<RZEh)y?MzuE@C
z0nn8$J@F3}j*Lo>E+ovHnuH<|Hsa1#zjCY6eN*!3>+VM6vz|1{Z@R=?&R-)jXVcGP
zP-ii`KXqK;P6Ao<FmUxzO68~F=GQu!wx$tE&TB^*O@|kj2dCbV%ohF|dx#4xwS{>4
z)&ditoFt2eEsUqB#n}Z{gyuS@O#%RjFV}&&Sn#$zhg=_wIkn7IbI{fQ@(f6%!L4AM
z2wevl+bBo(JsuVXEqwy?^=R4Y`>Q}eozcCZ6yJa4H{k@?#hhT0{1hrdqroeeZ}V14
zYSw@3Xq#Q#4a=;|Q1=F2t*IrR9j%IfsY9^^Xot{h4ZOQ?i9L$YYhIO5G6I;`dl88$
zPrTmqk5K8h2j~6Ho<vFtET1Z;Bhah5(^<!S@;hz?q@45nVsc#OQ79ZidDA}{Weuie
zHgTES1!cqhS?m|tH*HHUCkwJT%@p`hhVMoQHo{;V@p{mk^#)S{r{pW6Z{x76(4=ry
zxeU+g!w{^(g2lrUd^Y^=ma7PtQTqO(R@MqqQjA?5rW%qH5pypA<56p5ru#Og1fuBk
z36O8K%gfNjH#N}Py`hWBt}ayKWHM9<OqEFNbw<?V;9TMe<(|p}CZruh;=sx+$Uxj@
zt4_9Ub6K2MS~?&0&2w~-Q{%@0iiO3ruOIs$D(d$sBKD`!EL#8XheTK;0dCsTXNIz8
z`zT$6Xw$w-bmP%y!mNLxg+WB|ciOj@HZ;IK6e{;xxJ&lCJu5Vr-B&XrQGk-Bxe*LL
zn#*FZOwO1aAxlzTN=J1lDL;7HlP0itCcs#?1u{Oaox~TBmfKry6mP$qTDA>WGgjLm
zpai_8i5Cy7_!qZoL1+Wirzi~#P$XlYZ!-(PHKr;9Nt2lGk*B)6`eE_xO|%T90Si)p
z4;juFiAzE4HoEhsO0mc&@aEkJ{3fJ!$q0WgS&rCOj5Ja>*=3MM!B|VTZ{*+PM~&1y
zqjG&Q57Wd;UU+UVQ!d6J<bpqXdEV;gWAZ;4emw5t!yDbgXjjWvW8%_-__tK=!yG@o
z&ij4xztg6MaI04wGgjj<ys+VZtMv8lm8p+&q6Ir&rvxsNM;TO`EIixtlL?n91AI-J
z<-5Jg0~dJ@3s0!=DQ~9oH;pW}YpOzksp#xlK!(rpnJyW5#bl!eX2E}Smx`Rc@9sbg
zR@g4gmZv%mksJz&2-w4iao8g=PCL)h;o*lH6aV6#TOKmW9*5j~Vp^;nH#m{m_yfwi
zvF!Xq`9?Fyh(=Q+buM_xS<%_nJ)&7Lo$MaP6csb`einqRb%}6I>l-n;X}ScW4p7~o
zfjbv-nW&C-2weL3_#0iZu{$S6V@9{l8@h)^8`5m|K+Izg>FY#9n@kN1bAvZ>k1ikr
z^yCN@X5;-`hBHk^Uf+l4&)R^i+h0{q6t}S&76&m)pLdc7S%PgwgWaK;wOS6p-;BNd
zZa5RMRHeTmR2R%S??oj5+?+Nr5}tet6RoJgiI4XK3t#mt5b^A^vDRTf0;=tcR_c6a
z7c^s&ER7$|Z<$A}UwG&8$93BA?jj*oU&5ss_1IIP_yA}&gw4v4W^;7ZdDYWod|Qj@
z03K&T4HBiV_4iAz(n{|k0ZFz3!N%>PPdAA?;g~ADIwN9O%qp9{M8|U+_95y?Dj}G$
zQMz9z+;Go3$oKX3-IJ{^(Ar=o{AYR%caY2?yMzYMqI4FZcZ2M0TV-xTaZy)Ipa3b5
zlRyO{#Znd}I1<|0mWRe~BzNtlvR|XN2kB@(jWh=L<(%J-I%CF#Wn9DJ%K<X<rLn39
zOp6#v0EUWbfb#--ZSLd$@E_OO43ft?_!d{#*N0VsKDKpIT`Y{$ATjF(z<$OA1efij
z>Vx48U-(DGGzUQIY4<4y^@iD6w=+MrZo=3%U6iL7lg1j^dLC{CUJ8Kx&U|*E6y65v
z_JITyfe+acJ~Em=KJrUJNoXfr_;FO|OaF}5SXd+l+HAlW;VLpJ?otedOw-$S0<!%w
z-~QY&aZCaCt0wGV{IG~lt(OIY2a6O)XiHMe1@&JNN#Fr>#>#P!S^D)K`D?RrphYsV
zmC`oWY`1z&kJmw>f{-8=pcQ2|sHoz1EuwnK<4<cdy8vh$mZoQvwO2D(6#>!7|AJ%p
z%~A&D`e(10Q#Whtz5}*^v?(Gfx8yB>#iB@LZ@NV<(9gWPzi+#_G~@EcO2OiNfzS{D
zBZfbkfj{z%f4H-H_`{6#pP(m{)hD&1x7`F8eAuj2PEv;#UL`DluLW6f5T)!lkCi>0
z+V^AMqR;k60)31jU!E-CZNUH(W-chl{PO{T5a{`<uaPstTg}>Z=0tBIS|g2}KjQ`(
z(mUjB0`^nU_?6f}gw!O^X@yldeNKjt4iE>S1V)=@^X!gz4-{xoKO;nrf7#pG*Axtc
zO33hdu~1f$eChQsatxA0<pT~f=p#+$fSK0#W8_|AKVbe;<+;+TKTcoRS%*2+CIbK(
zGQ`#tzoMm~K!0};F((XH-2HL7zb70uH;+h0rJzO6&OC+V51P$eC+a{52LeeL#GMAA
zA`l!zg3}6k)LsEyCC(z7YW;CvsB6vhxyL^73)Qzz>LKQ3L>^Qb9}3p^?pQC2(74Ye
zmC9@6qfjq`F(!teD~DfqfZUa<rbG=Q{-VoSBBm1b0=+x#Km6P5;mk+4txl9oN%_o6
zdDyr7hW`a?Zw|uvQ`0?sH%et~`2~41qyoa!nF~S@@U}>d`2I|w>^S(mPqUkg2^?N`
zTTVE=&4I~7=A)D=a3TJ;_<{4sqrwn@GK9<a7?6A=nW`1wveG{@vZw#6K+$NhRrNwk
zVA|kl9a>#U7rW|vO(9;!;cy$t=~dDDof9lz(Gbm(J<No*{y9Anne_h+wIK9(kUwL5
zkTuZf<9H$h*zfG23g4}fr=E()Aw<y`<W2Zyf@WcxKS*Ldwkny-+;%+7oKcGlefaAN
zuya>vm{w1h+ce>dJ~U(RUG&cP-5TmBvo8*)dTiRYWEmt@xg%A}Kg5m*0DLEUHUcK_
z>}#CPyplGD;69edWD@0hve~fiVo4bpOkPFkTRU&1Dm?)!?x}jE33FxyZOVL}`BnfA
zZT9!`hKeblGa$R7Trq*gJ+Tf7e$n=9>m%w14)uOypD{R_(9P&`FS(Q3fKEwx{8@`=
zw_9RfT5qwV+Wu41G-O`5>+z7UDk_hE)Pwdl`f%*(4ju*la|?3kPryBmuO=_8TW?Bh
z;d<(zUiC+p3a{`A&GP}qi&%0xO!GiPwrz^kj!U~+E50s>Xv*s7^S7oZ^A;MlIdDsE
z^^w!qY)_~&MSck{9B)mm!u|SpmnOlStvWq5OH1K<?jNrO()S9tC^hy*D{~{~@@R`g
z(C>?+g`{k&h@LjcLa9}i()HpYgU<we)}jSddgX591}WtYZBYp5^q~oy$b>JZLXqGN
zq#9yjK5~T}%)lTt!W8E_+l*<DNq*=!GDdga{Jiy+TAlmKEt4x%T2$AQ!XFdGh~E3r
z|DeG$ZRlI8-<?@}8LH9}E#rSGY^2k6K16ca3N{1?5<81icPwIG4UUPDt((m%nLDuE
zcLw>oFELW&hUtB>xw}9S6vvTzge(vpj`(pK8h4I?Hk4mb;XPrk3MTRUzbLwH&N_i3
zV28-n9fgy~B}3_%LSk41g&2(nrM|3BwQ8RzOmMgc`s7I-=r*+!?JI2_M*c;nw)DuM
zRgVFq;S}V~G6*?8Vz5uvhZKR5eOib$4husd`d*_7u#NihY(1G++Q)A5;E1FkVXd&A
z`gr{TzLlZ&Jlmns!otNP9Au;|jqwk@S{xsi2L6IDyxYc7G%Wo%yK;&Y%=}rNZ7tRx
z4uEZ$=}pS{G6!wTgt4$*zVV(C4yBi_TsL0&58kt4QPO`4pk;bK#mbF8foXxCyGNtr
z@D(##GSxbpp2yR27K<O7zC{)*=z_*-&;s!?Ffk*cXg`Hg$IgwaEQxao`iNw%TXGlf
zfO5?DxFW(!c%1w^;&7A2?-J(pN%*~R{RRw*Wk-#9+Y3}{rGI-s`4o7Z|FY`KcCmr!
z<^La<zkVnE{a8^-dmz(x7n;RTpxYandi%UP1ixRxf=%4f7W&4y^wLfkObs&>EHt13
zD))3kNqyU)nG9~PVuQ!GW0z4xv;EsQFKD81hQA8y)gIp@GsoIo)a&{7^b#Oi|H5r(
zwy1za2~y>_qlwHy8?bhswQ@m4#{JBdj9N1Xz~Q{E?zGl-%#@z)B^}qdc-JH+_9KT&
zBPu8)GT204ex+LnH>T}F8aX&&x-hghilO)VWtJU<N4jpb;T@|r!ASGf8lgkm-+1);
z4_0UFO!x{M9F+=J3zxLw&NQKCrD#Erl7pWr+`V{13KDIdDdGf5@sd4iEct5I9VM`&
zr8!j!#v9VC5R}WBehg8Wh<gu(A*}Gz3`(@qRC<_<Eud#7&}Vc4=76c4lHN;Tp56ZX
z(mxqO1k2|IPMB_z;D9efVeuwv3>o@R(?cxrdK;SPKQR_Gt@>b^xjq#nLkf2b4s;j5
zT96UO|Jgax^EfC?w{w$aft>Z1<Zhsj>q$iwGPsW!5;JJD>Er?`PfKtS-?H#0ZnAcB
zR=Wj7{L{RLA{gXTI1Acwk1W_Ag~oBC->oLi3A*i~z}kt(RZ7X0m=asw{fc^i03)}S
zsjSlZF>pK|f0}&u&*!cdnRGM`a<0Dp=OThyBs>-~mVH!?mig3jbaAcTPYPYH02Vzp
zg!tz4RS7jVF<TpfN$RgtS+&ps-m<)(^AmXjPGYPlt2KApRBEL|I|Y`((;9vib*S5C
z*p2z^N1O@X+zHI&X!{=|L04yCHP4Pd2xx8n_U!vVmac@qZcqMfc>H)8;bRahw?9aL
zc+e@nF!2nowMF2fb8okR_LT^NleUc4Ok`dngQrI4+Wk|(Vf3RSZKBRmB>Y54J7Fk_
zd%aFzk*4Nc4C1}#ZAmvyfF7fK<O{E1BI8K=I|%6|Y@UXw3|b$Yvms189^)RtB_^)|
z&@#0!4}HJ+U7hf?`(Ru;CY&$Oh6Zm_lzcX9Rh!!0QXOU|!~l^{X!Q`;`1#=DhiEZh
zR;ytb?Y<@n^BOx-`oR@hxL1n2lyA=4F>{G|ZpGEzP@MzP`-+wb)4Ws)zPSzyP2w}*
zB~5v|tq^Ygij~NU8LP*bIYVbQsmG0%z6@lcGu}8c%2ao@xt&y|Y8Fq%{4jrPRwFQD
z>-Aj2^qu9E4Nyu=-;3Ky62JhFc|{+Hx5qYFr~U*Xs9~UPBL+K(424q)E^IR^zkU_p
z;hr%_BeEZt_B))eNrYCDI4Z|t|1yO6b({jIJ)LWT>JSVxuLre5`gf(+!6av?DxV)~
zsTGsKVH%eP%PCUt3^7w&T^jco9!wQhln?FwCx;DS4<^j->51x-8f$C5{q9+TSgt}6
zBMyot%@tE~=EM_4FF%WHBvZHiM=p9i;El9K550{uBMXD@v3HR$Fboj=<vOa<&flUO
z!P`xcI=_m5hs}CD=KvLL2jW>KvL<+(feXiC${(3O^2GY+!Eo_M>2hxsR5KgndkwzK
zz(;rH%6$f%qFh+IS?9YiZOO>LuQFqEUl-4zlYBzR!F&kg&`^#7Ke|$9LQmi!sW#un
zY@p&uZQKMKI+R3Dz|Y@xV*cD2QMS`5;L8{`$CmB12P266`F+ZqYlE!WJ%x59Xl1E<
zT7QPS!k$C@Q42S~;+#L3_E5}Ye<?_kAq|r4$>Bo|(@dh>Kw6p)5CGHMFXb-ErhLSv
zMt$O5T2(Pk*Ow>ZlA#VgbIysdj2GH)Cse&4xR@u7x;z|r#uV5(Yd1M;2U+8dzZM|i
z+2e$iWu2MPX<vL#RrPN`p*U3HKh}WrsO@0%GXq384(V!eOMe4^EG=!bt%Z>Erb$Y3
zB-ZIIG(E;l835d)2P5i5w#{PdZb9k&zS=fng|BOB(nuBxoWW}&7x_S>MA8BYqt1;j
zcNPRFx9wbvo?qH-4dgD=@&y<F1(25rTze~*COQ)&27<(@M=esy{80O;1M1whQL5KQ
z6U+J4B^g0dW#LIdPE3%)K^UB>iXjw-RPhsGA&Sz{E)dP#UsG;>XqIn^t9vjo5ZR56
zz{irMhRL>+IvLV#;ObyP$}1gIiyQ~uZkdJPddYWW>B#RN#!sT|TrBWIj9r1SNqLYc
zm=8)Zd7i4g?IL#6*Pvtu>r$^eR;bM7=m-GHHDEPG$#;$6y(V5&?}+#u_jiNaf3O2>
z@xFSm<c=Uv#fEixCRAoK`S{9D4U#I)J`l(oMWds&A(Xm~tAhF}r0K3O0mk4W?Bgd=
z*O)?IuNi8UiJ>wR2L|2BW)Npd3*)w#(mS$|qkfJ%MyYS4OKWg{5|?E1dqFZsSaJJw
zs)NpwN-t5X$QGx3!Te4<-nLZ&^-k|%$8<D>skqW{&TA_cYs>ac=FFUT#4Sw<aqdiO
zBBa*qq9*pBG7Sc8H>E<05vH_m3+cADWv(KTEFHWTUhz(Nl4Hy7VxMOGNa`v{%!pgy
z{ubij|I_=0^$w*12T8`p%5W!jUoImN_W81rv1^-YzhmYk+;n2Y)zLWkItZ0goH1j1
z>qetMkMs+s4>&MqD5A~(R^_fY<IWKXhMk$+(4~v=5JYrPr>X2DUCKEatjPH6VMu1#
z<q`WtfTFI2l%ayc*;3tQk5hkOgTn;l?98Sn|9PCEap;?NkZQ|gF`uBoIC-|*%(oe@
zfyyi|<-NfQYw5UeM}pdJfyr{UKsNm$k=A*`cg8KI6bjxDPxiKiUf7>c1MNDEZL)gc
zI-(Gr-5y4>LcSlmBG>;FY2H$MkAbKmfy67Yq*LumoW=4}werltoLMT^VE0hZcrKn#
zA^Hkzn|2`w>zXWM5O`~<*RE)#BFD~CLv;{F5m*be1FOQ4UR)z0zp&G8a3en{koW1;
zPvC|@D1+9G1j1llpVsX{A8g8#r!e@iy2%nE3QC>ZBQyIr1?dI-Z6(X)fMagD&%2iJ
z#Yfz+9JR0mlVD2HH;Osc+))!&cau(*)R{F@7wZ<Nun6(sa0pRCcE+o>Y3_<ZsUPZ>
z&Z!VzojR5Av4p$+X^4b?&dTL9m^V<Qg9aW#u^<l=|J>9d^%`(D<4hpP&BYVuUQO54
ziB8wV<s=|7Lc-sufU2Uc^3McmdO<bUgMV8FEud8t{EHcf54~>s)ZMGn-~ilP_G=z0
zpKMhHNexnuIJiw1;FRANE!a*<=*}mszw_ft<uEM;f)77x-nk{|6PjwM9+Edgj;ekx
z>0M@;(ORIxd!^?Xp_c&6AX1p95=KdpW9)z>a($xvwdQTCw7WUGi}M@Er>Hl`d(KiH
zdNsF(Mgv(CEh9s32Mnb)?LSc4c(x?SERW;0=C^{@g*d`$M@-7~u^k{Z%TJ>J%*G;1
zWv-@M<rU<a?=aRd;GzL}N+s|vJ|*>9wz_v4GvxI_O^sLls@Oh0H)@#500iQ(f8W)S
zz)Er{!^wX257XIAcF9#N+pV=zXiAbSbeXog^L6haMQ+Ad_;u5|5t?O)sg2A4_ng|`
z3YqagVrG{0T)(Opyzz;gaTLo(B@-m(74nLqGS}b-Zdn2s<DPx8L<T;`qJLsmRi|3%
z+$_N;)ac;G_uYcRjJJ$7(K&tQ{oYjv<Z;b|ppBhQnyXolX5Q_~>a$`zYC5@7^W_9-
z#L4uYN)J~|EqeN@$}JA)Wkh^*0p0v*O=T*NvIlleUo$V96>_*B4=!bp@_VnD8WMvK
zE@$q@vYMN>WW7EMIM&fo^>UmESdaYo68ijWCw^|QTuJtKIybyM8DP=pV~cq_|F4_5
zhZa*OJEic1d6)c>=Sx1g^hRl5%V6wz?uwSZ`)#V&?Ll4PK_mD741RN}=4<aLw`}GE
z?k!M<$5sblJPpR_P-M@z3RH;FRN&5F=vMns{r<H}z^lZm%;;E_NY%`V9wj+r9_tVG
zu|i|)fPRomSBp})ya#QhfM&6Zn)RhDy)^CpkLxi@aOi-T>EXb=4mOq=iv`F*m|7j6
zA~|2%=9C#JF=Xx{#cERA9DKUKO+`r#)3U$Dnaf?`>^VPy|1Ef7IUS0MgtFJA?M)sQ
zBz1{a;<j-_D(`k-5acO%9bD3K@WNofns4Kw0#mfHKEKrwC1qIM!IR)0t@P)P2>)n8
zmaq*Wf}&KkOa&gT_=ehZT<w%@Maal-Q&XF4X8$J}CGaGAfq6J|jv1k<jw4=ZWcStO
zuZx?SwidQ7)hS~E-Xo0CTxs;$cEAGZ;rp23=3He?!q0B<8XuwD7$j)}qGJY<lrfp;
zKq+ms?}7zCV{zw{3T!u001=FX*corCwnx2+%0P>7L^{xiEwsgSKAAQlCOMh4=Z16;
ze05GtAwwOA&87qFWjI<-7Gqd@rrAxw7bhk#F2VC<5mCxZxzMZeT^AmQyhr$WY_v*?
zF@zkh50d?%w$DF38#0SQ5Lx(qL>hF{9eHwl`AWy?-=47KARb0;#2+@?V#m3f9$SiT
z)SA%Z5Zu+&%UxIzT4HO(Bf&22kgbXT&9zDY%ClN;;E~^&XoXk8JYXeE@N8*(!#uK7
z&INdHUh>R0?S=+<rp5^pCYlGE@6H<&O9sW8XM-U|;*OS>Z2Df8G_cC5Z2&p0JA0!%
zDPw3KX-|iokz-%VtOC#+S}37z$Ycbe^jQ<9saLefpM$4aTIXMg%4}(18}z*r{Wd0-
zD;B5b+%Lyv{JBveuLRN+3prSr*_EY4a8~4)Ru=U##Xqnj#{lygOL{ma<FR>8g6MB+
zH%LHtp~!xW{@OnfbA`FWV33s9B|5o-SmDgj8(h7cc#9owgt?Fc?~|-z#Nb3WqXK89
zsuaYcQhmVNanky^_`CgoA>i|})=XfuxVxp-IbLwH$Kh=Cm*r|j;>@9?XK%v%m2Oj0
z)KG^PVm(mkw+lwcO8kpuOT2&O50wKKl_aJM?aJ|9fl0gWJW)Zn246|O^)L1=d|m-l
z_|>c8`a5z9H(u>j#=?D!6Zia{59Sx!+R~W`JC%;(=2!AV=@e^<zG}@Qj4$_|Sw>8t
zmn}Wj?-sIeXkZRuZohBMdNQ7M16~f+N!1`OiV=8pYsv*tT6W}$Hi{J@syXqnHcFR>
zW28S~TD%GnVNre3sVwhn2_J)DVW<K=Iz43)P`hLi^f*Zy^!><PROv@{0%E}`)B^B(
zbWCVa7YfLSi&H40?y-5yR~uEfA`n~qQ~moFSvidhTCDgJ!MdvL$penKNfcHn^rhT;
zO1K|a4?CqLQ`Pc>rQJ*kPDL<`A!kxGbtneCsyhtTiywSyLmg)^FDx8yaB2)T>|Z7|
zI7>xG<S!P@`)l663L$P$=-y|ij#lHGBmMZ?vbb^MO_$!qc}a4q08rhJgCGcAqA&ce
z6eYCNhDBq7_EOLeFN16bXCkZS{u`&BAnh{Yp$lY;y)D~C+x$3nLW1>xI`%-y^x<=E
z?!lv|hoYo&-pvf<<*e`vh4y8Bpm;ho%`(1uw7p9PH4%?B^<O9AVsr%jJR}>{5cnB>
zs|J}M^C>1hOAK-pJ73!ioTtbSduo&Vn)>0I3%5Km%XrQ}^WJB=<mqXqe_(>tLcHbn
zHQF*TM!+z>NUIRJJBj6N{sOvL)~<~{V~t7-IHe@T(4ybnOnuKuA35gcvyV;z^jZfx
z_@OXo8Q@0pOSs80M($LfX(5EA{lLG%?8pCYg@X8tu#e#b+hPay)j`T@CXWAdiLg4~
z2FG>>LR8+bjy#W#8SZ5RlLLg$hM!;jTwbuU-NZpP9)TgdDjods1P8r6nWn7O>=6>E
zt3nM?+|s++?Wbmk*7+3NorlKbt4A2kbYj8E$B)5H<iKxEZ>~A2z<+WOo@kBrkS(R|
zX#|S9^k(@HueOZZXplKtN<2TU_}VJ}iyiIiiF70nwm3#f<1zSU@|7)mBR>Dd2F27^
zc{701+WC%8RBpq6yYdPGFLyG87Bc7w17K~3ZF6=4;@!lb9YS|}Ek>@4{rqzilx?C0
zjoI;a@UK?5ib)r~#>NscGU9q(IRaFfO+<9o<L_Q!e&Co8+2**0jOBH~#;pW!p2CqE
zEHC--DURp?9eyP3<bsjcrxth#EoI3wCK5^t>umi;v0^J{;;(+LQfbXO9RM*v&cEZO
zN=d^=1<S|CE~}45zq~bh7XW0et`}WS*n|0a?*T~6aQPJexKIxxE*-UX+<BG(J!}nv
zyyJme`}XZbea?AcvZiXd6ZC^_9ZaJ<emj7r@Nxv%iSc#X9bZ{pmV%A466sD^!ve6;
zJzX3rNH0uF))HIj)`^jaDqZpc0P$LW^F+*~vIvRK8yCG#NGC%>=h~8(`A`Nas6$6=
zvhDThuS-@v7A$s{^7K<UFEFTp-;_RTaD6d?52ZN>IXt!XqX*`of$0zCFEh24@eNj+
zNh<Z;u`9cb)!Bq{QRqc%$SxbG<OhFM3?3Ic(qr6EQ1#oCet>yny5k={jLxSCu@f99
z_(l-#4<nHs^|_^LHtS2Mrg0|e;UC}cu;4L!4{+W8f~P21MwO{D`Aa3!U#)=PzkM#?
zQrb*-<km-OL53{Zfrp^bAu59LPTcxVeZ##aeQxR5kg8k?cQAKoLiLAhUqH`Ovl4hA
z!OVMKR4{#k>>f81&4Fyds!_y<EctN+rm2+L7%|9H0ft&MQ*z8drL@s;b<cP}^o&@3
z9Hzy9g!V0TTMWQ^)c113uSoUNpH#)M=ta=e%=%#yQ7~xIo|%|L3u=mZfqVpRKSu<<
z3E&l|6?GG#Qu*K7X!hP*WRBx;tMi}Jmo3jKD3^w@9i<cIi>i1Q{KPEw<1L;|DYM<|
znyAjN=nrI_S{Z3ztSsNhCx+m6M^pduY4=DqqaonnCp<nEh5ST45i_xA(BT!vRKwSp
zAO$Jlfo%S1cgQ%21l^ek2p#&!0Y*@K?I3#F`pM!@C|k%yXqO#+6qk7%dkBk=dD%9k
zhK5bk;zm!uK7^HI&q4?+Hu*1xkqWp`FYxwr^D(k__0(ORHtq17Xv$)x+FpD}sx-!9
z@EYa>-K-=Q4-m_U?|Gp4toF<s&oxff#zc!f&mi}t(WyZOp)g%Y_s1aT^}0!^F(fM!
zkG4WfTYJ14=q7jM-hs*wMw1Avf%keK(n2cA{g_;LlcPzzkN}yEBzbeO?J+R7tiys_
zX=nP7JGXKp_<m!mQMmZfPkUgW{@{-@qmAWdH*eQ<&{9d=uN!lD&dw_;%Uyl6I@UlA
z+y#ttLgd56hPBZb-b{u1tJax*v5J6}@!~0aR3f33IULx#92`=~7oyQv(qA<O8qEL8
zNi-i=U;Ycr7LC-SvPY+*deFL{)frb@uGS?gS@NyT*|s}DjGRnRw*AMZDTFU4Y~Y>o
z&<8i#Cpq45EO}WMkN^VjvsuG2DL4&_aJ)eOjo2L|(gA<Q6zmpqiVx(#euZ7d%l)^0
zav1{FcERv)YD_4IhEkJroejFTO`$a~p5%ad?OAB2nYsgG-4BZ(bA;LMJ#|F+5<f=u
zC=9XMSQ%f~id$dOs?qf41+NXQf?Aoi1-`aLowcST+nj|MF)<jUNj-uItns(&K+dsy
z^5?O=oq8FO8XU>0Wg0wG6km?lt8m&}7r#Ns<~Y(Ut*C5pKgr%Mm!n0mTI}AXC@}|z
z1#&UUUosk{#+vSzVMjbi;hb%9gwwn|jR%$;YH?Qjp*Ja%Rj@W6opR(w2@YwsF|&Co
z8^($Af$?tyXz;rlEnXIwmyBXza_jjqse+!X;(7)tTeR8zOMfl@z;>K)jR)LPAKM-W
zV+;)keduh*LsW)^>^+Q${e~j~pLlZ<m_Ieo!#d#GMf#r?cg>)R_?}fm87-Vb=Hmq9
zr)1qIh9MF2Z4%rB?7AT3B2QQ0;p$_%8f6a>+H7S#8cdsjOwsXjzlHq(fA#7WIxD-J
zY&hh1NS*p)^6)IPf13-IjxBe-o;Pq#e8<;4A1(~lLOKua4A!qvhoBQ0w(22mI$SHF
z-Hza7JX@G6JF6;KL{zr7r<dsDrznatCrhJ)y4g;0s51A#2~0z2He3yFwgBpo`Jp!O
z4nwY8@aH|oHQ++m!K+2yh7%*pOqs@``-dtKP}|<3Wx?<@y3)Z5V8N0*m0&!M(O^T4
zGY!b_0h-+>7vx0ah5rXN|GCn4Cj4*|?4|dwizDjaSVtSitiPZ7{@nRl;{V>k$UfB2
z8Okix`eci_PEI{OQ2Nxwc-ap!%|kOJ!-`C?JrvCUCdZPuls=Kc{$Nr5m;DYsf`Qd}
z%lzsXB)N_)-L^QAo$l^U9)TzS=$bj8m;(r;(nrP9jXT{fMX4-3ON7p>JfL29TIS48
zxKM_{D91FqrPipZbyGdeb&CAs<tbu(G@+pK?U}?i`((^?YWNMiX47c31W(AO$_zka
zifplv`^#y^BCY-m)pT&mbaSyW94V_{ep1ogQWx*QrJ3^js*!L#Jw=TOt;_+b8WuGI
z{s$v*MpKDn;M2a0nJIGQ+a}&2$g0ObHVDuG^(Q~iWsI3?sx&l|RM9iyN@wb4j`tw&
zREY+b!|!QFu%ESxMVLhZEMR&Ieyl*Ht*xt=udML{dTJG#vUyyHAs?5|mjk9ZEUJ|x
z#!mz3w?N)?_swIw`KCp`b9ImB5##g;mN@HwsOjYG*8Lk!TLp~nV<0+^+MzNb$a_nQ
zzL}4pGV%hS&SX~fHp<5L74TM^m}X{Le5oZ@8>2}4ud%e(CWWl4a*WC2atSYIMOfn5
zR^Q#ox<3h4_z1z>4pEwJ13_T<8ffagi2htB5WO4K6&jPh7teA<odZ~{8W3otQm-N=
z@)V)b9!DMDjFP{5Xpr7``y3il15#x!{N)s6^`-&VztLRQX4L*Uonys2n_A4{h@-5&
z7O0$u7rm4~_Y4#*sAX-rz}U?pbiRWyHK0n*?ZL*{C4lG$aJbxPzjv?}Wf0WxurL$H
zBQQbK^Cp}X7EbMmCV}g2BDQxVLSr3RJqFVr%<peHO_#$8W#Y1GaPkhA3aqn3+`fkd
zn1#dvvv`(##++HRfIhCG6?&^t4$i*(QsP1<9y+Nd7r(rse+jApnsl6(b*;W^X%Vq3
z31hpA!H&C4>C$wq!Z)?x{Aopt8z-|~&<(B0?ptW-x3DjRJ>g4nhr?my!X@o@UBai9
zu$lU3Kq*by(wjoJn^Bw4FpD~AF?~p4=LHDcnm(^Ew(O}<;rGPM>MKDlfFo3^o}Jit
z$_4!(MA5u6@0vl;t)E7n)`^5zC#uz3_O`HzN>V;yuN7{)hcI+40vw(@%dOGX2zz%E
z=n$;;&)*r6^Tojo5pX=E-ihg9Z8|*~T9;7;fM(u)Ea|mr8jgoJJFFe^W7cY96x=M3
zLc`m-uY6g6Y*N_f<tkPn$q+rZ>9mGJ(V3>67a&H|5vL0=H8gDrtDS{4$$fRjF?C56
ze1jA`RJ<5p32bTW><j?jVdZ;ER3=qxf~LLFU`u`f4>7m)1)6dh6%=qRMME)qQa6-3
zpgxi2g>2h-aA}8`1hiVqlqy>D)*H?a*m$e!#ps6JkNsfQ(lk#7rUbimsC(NEx^Iaa
z%(6=C=j1<=+`d4lQ%XUJY)4X+B5K6BNOvv?VT<(XfJwe#t9xCqZvv}*Iu9bng9&q1
zNB5^C$!e)~>Hah@2pbo>)L7bqVXW<4-_JNs+bQ<q)*<lZvvAFTDkJiccE+UZdu8AA
z+eB&iHAQE?MNh&Q)=QW%z5jS1O9_PXl$cBQLoq*-C2ehb!y7O;=*I<OW7iA0NkzUt
zMzLg5{f4yQMxJ-|Z#oi{m8rBZX&AofKo0DgxN@=f4II7}t!%n^SO6={Wc&gS!G5)k
z19kgK<Af!)lxIJku=xTUF_SB$2U99=wk?13O>@96$B|5)eOu>l?4e*-xE-UP`KJl)
z!4L}pijbfb+g!;I$bFGlO}b(1s2_98D$zG9QZ`ji?rk;hS_IhdPs8x$iD3IqKQsRL
zW#;d1`VM);IRiWd7mNElV0H_djAZe}KUuhQW+4h%9Rq$b>#3q}mH+U3gETg2y~kGr
zg~F*IYPYX>O!4o$uAcanb0CSb+Mpa&3{eVwHJ#z#R6k7f6HjDl)?)cX*zDI1^x98$
zD(OJtSF;=rh7(X&MY!in8{CrKs@V2`ULl2S;4k9YI0vLXTMOhFJ3qg&s?o<z8@Hfv
zbksJic>GL#+FD_=v90$|%kQy<m3+4n+S1`TTN^alvRsk~Yjo1LX+916?BQ`4F#}R&
zos2g61D9WyvCV-*A`&+OiWdJOyyLw);pO@8htbAeRyv(lNGpdP-eJQP`>>4Yk-FtT
zC$m4Gzo!rSGsQspuggcra$2Q^KtYY(n7-q|HN}NAfzt-I>oncZHH(tfMoozMjop}X
z;s2obm5~hefQ0Sj@>2}aM~%-?fLCKdxLC(n5I(wgX0MPEaY(4ysr+~X>WU}ay9L<6
z7;{Xl%CPN=?aM2tFhLDDYVmU`$mY+5te3<0FlO^M^@@E0Oy#~;kIx<Cpz;tCn^uZ%
zyVwC@g1z0ecVN#k5;0e83W$@d+S)mb&u~0e&r9pLsjLrUo=0vTJ!&R(<Aq;usmt)0
zGefbrtX&9^p=Qnj60#c%_MiB??@%$+jF>J5CAZtM)SJib<bjccf<Lxs^EkpN>|~ds
zuJ*QB3eIAgzXDzXFWZ}!yG`G!#$mpwH5!3UT&k+FsnXPzSds3xbU)(hS6S^(W4fY)
zbV@vp24jJJefgAyHGxecP}(Q6G^-Di4Np;t1iq`|!q<KCqGlT0LP1TTHvAa~jED!>
zD$m)TMcw2M!&MTOO7o|6wm=!Z^kAjfQw=jPbO)U8{rtscfl@C82hI2C?5xN9zmOX>
zT{Whs!-rR-%e)i=z?vE0!*f$!Y%rQNhBN(x^>2nFRMVb*q%ASPDkP_-1Q%W{$8>1$
zH^m}W75+gZ?UO5PB=5QZh*FWSRp0u~l7Ca@{6L<@f(#6noQNPxsWWZk(yDHu8}xvP
z<}-$ytlw0-U5~b$(IUeQ-YE;V%+lgCwRi2<CG*^_>0D|$(8L`m(%~ebhsY!vE!qE#
zdEo$-PAh1&9h%$B<`@L+K6^5i2`8ZFBE0||L$F`s9C%jkiQTor+LhPMVIR<+<?=$1
zV72Rf6(<o(Q_G*ac`X$&5~<Xm@dkZ>t?KzA0OR=<nyoA*Qfi`+L`DC#n6Zb&N+PS;
zOiz0(?t5)<!x}G{)vW%&G#UM@DQ-}V{)Qi_7|F5voIGSKCiLvD@&+79N`vLRQzi_8
z?jogZ4Ne#NI|Q(Ke|L+?b?GdRYd33jKvUwQX_49QvJ>)M1;<y~kKQAl(>DBc>>dLN
z`G<fT`lC%VW1mke3N7fgg8|#G9E$il-kPnpT_=iEcs)9H{M}}dSHxA1%LBkdP|pFA
zPZr{FB$GjbfOPR)O`nT?H?0P=0X&qCs~4LH&iR_?1D&{c=&xsFuJ`o$VbFO@+J6hX
z$nY|WTxtyZi8=o)2mze%&SwIQi=YI2nC}Mqc^DO4=64#l+>RH#TTh|(U@9t*{~EB~
zrwCEf2q`srq^JZkG0%@&OY${Uh%}cSeVyW}1yN~D>-V)R&#?jTr1w!3sKyIxmCxXV
zbbbM{>{~qwV}XCKODQv5%zQ7DRo;dKH?I*K2PAC+C09pA<}rz~1A`#SOU@!2n#}_`
z=Y^#wGBy8C2yye54OS}kjStg}N#<Y}#kd#b@`l-ap-(k?^nYZL`r}*;;x27Oh-h#B
zYeB5dcG>Zx9)kyI9z{ypl`p8Q=h{j?2~a$!XFuL}2-jsfx%5IhMSRgEd87`=L6`^W
zh#2#H#crnb(>;Jn6^*Gj_#k(oK>MczeTSr-=GLm7DB6tF^dR0Kln&I5=vwUa+LlwW
z4@zXEvcO0cMF|is1oOD#(P&5uZI5l%l2R^U3dB7p9oc+^TO$KGxBwbikSZBPn9~p4
zY-u-S8LC4&u>pe+np792v$PR*1Ai(w%js)Kw9}z)hu*pD+Q2LNU5q<$Ol6~-DYGns
z2iV;`{xRQEWB7lu!)HF>UI5V)iwUQ1Aky8tFb0pSQiRhSL0fu_{WOkJ(Hi9-DYOJj
zsUKCfwCAC)u!sI8r2`#2zT%H>!M95nz>%?^L~EbGIfkA{;WFykT+X}#u{D3$@iFJa
zO}(p({VE|p3^RVX{D2>j>18hstHM?{5Mfz-YhdQPX4aKY8#XXkK#_w4Rhd1F;;WjA
zgFa{}CrY|wEH!Q?OD!$%L$o~vbWsg9ykN<8LYCWn*pg$VG3A`QR~lFJc8E|f13{#X
zQ$fJK3l{@I3!0R*lc+4j<0lx?zUI{A`WNp7j4@5~sFU!WvIkhg4uqY2yVu)BdV({g
zVO=@cZPJ_oYtvt{6$s{J!o*9@c<2WT)md-$x;uBrHH?I0I<itws#_89+MZjjIouMU
ze%kE(<+E6-%p1%GaJQy%J}JIG9tMel=+fB8K98^{YI%l?do;lTD~9ntVsI!21P3~s
zg!uYS(h(}>|0yyvIZD6D0ub4VdxFJfd~si$<i)~s^TLUh_xo<j;v*aB;bE@VL342Y
zuoMB`(ASoxj!tA1Ot;%kkGll&O^Q;+n7XOwdvze(8z0_V7NNw0l79h2>F^HaOy7T3
zVuig1Bgi>mr9wC($UAjcUo0_wb8sDnmsxfY_uM-;qA?W9DP<;XQ!nu!{R~z>MmnB{
zaC#uDq+w!H0S+aIi1;DF6y3N!{ZaZhve3Q(D`j*1C=4JXP@<Z)VOxLZ^z{#wp=fR2
zm!8z`aojv<ncBq^e_*lWW1tD0C6#S1P*z=~8I}DUxkU6l6XsF^5g={NqWi}Bzj`q<
zZ3XRCLC*4TV7s0s@2h<DCYvs>Cc@~f{CQC*Mn7PX#LKC`kp~|tWZAnZU7nisUfhA+
z`N$t6lb-LUzcqb%(~!u7QX4)9H7RM~P}Ervt@$O5P5g3mB=#xpKJ(*6+gz=MDW+h0
zC3{sj86~ElPS`pL4zIr2SmTgmA#FNLWzo&iz$<R0RPoZfM0VWGy4dx`!X6!Dk2irM
z1V-~k!<ejIET%gpv8EE;Gn(oOF8TiRk-e(k==bURHa#rHX~%NqXhgQ&`TcH|8tPf_
z68I+LU9+-r5-)nuL#xvxmiZ50r}ojFkn4q7_r-!^-=@QUtW9-)gD*}vjLC~=V-Ey)
zcN?NJza2ePr#!%lel{&uZkFE=`+00$-G2K9GDT=L{mV&Kb$H-g3RcC{ZJ{X07#ZWP
zZs^;}q76k%QO*#j(2$m10+F>ZZ;5P`$?3goMfr{@r>VcQf;RdJo8j37@K%W<6Hez?
zYs6(K7fo-i$N;uXxFW+=+G^}wX?P=kL}(Rynd%-=>S3!`v&=UtoLXZ^z2VqyViE%J
zjfC9w#kKxph8n$-jw6jdwZ^x+_8X1%08<C@KbP5-ZN3r!ZvFYjKb21p61VV>n(a=Y
zqdnwsx1bDINuD%+b2tPjl2ch!9cnGVIJZSeM=P=xT`0e0k*$xyzZ=ujB?BVdz2Y(C
zBW&~seMSZhI1mz~C7D1dKO;y}agg>HuGO)r=7OjJIrK#Au-d=%5e#+BW7KEnvfeTU
zJl|^9EQ-@wB$Ca3FgjbVLv^XQSxL<`cs(2Nz1A2v<VKOiVF^}++HLrmBtceS*NPS6
zDp6>qt&E~<@%lK1fB|XT*PUn=x`t@Oj=y`fQi0~jQ?eSpb3rp5wclZ6U_=+ivs``v
zfI5}raRWqt$kE?pJK+`;vgaFAoh+oB!{Qw-fFeuIq3m{3VG`>RIav~xtx$>p**Svn
zcHrVaj*s14*#0s|SV~YKL)B3B-lMQqHvIFm@Q3n9ir}<q{o<C<Ys@n5+KKt8HUeZZ
z`eo$Bk$l_vQzm%8TLm|~NEZU6eRwgQhc*A$KP^?ZMLu5t+OWjdTwE<{^B;ez|L`_l
z1{({(uEK`#`sRaJslA5HM$g5=TBmJ$C@1jr2U^tHf?p~=5d_Y-tbSP709P6a$ByC!
z#DuY7<bacFD-YBr6z>9LmZFd@=8e_!p|F!Mxuu8a(W08rY0xs&FJCpWeHCdWoX2ma
zZ?RZ7i<-CgwO-@>;_V*kmSZaZxl;08W-42FP*KOm#ve61HNf%!mz+RD7Pjs)kd*0c
zZP?i`F9+;6hBirPc)g;ejE7Z{0ksk^>R7!jOJhz_sQLS3mu|^6C*2UCATkW#kAejh
zt?RxQW$MKvRn|C)*hAp(-~xa*t+j5hy7s31yI}T;v#h+my!n=lCW(SZHj2apT?WNo
z5-4e52#=i=U~n1;JOm#DTaz<vK9s<Kn$sa54YJNDQ^}gN+T_kHnK7zgnspMdvXIoQ
z%)n%Jw*6@Po!(Wz>CNQ1ghWh>2-EoCge#iB52oc)tA71Quhq<j8M>p3cKRz)JS-P|
zn<6Tw<*N>3Tlvs!W}%2wX9;^U>jKC4T0%%Zxqp7XR5360Zhe@a+$u>}JidpPwcA|H
zX!Vv~o-Z*=fcRMKcM}IKfBKy1wLwKByYN^BxG#<eT4tz0Yx|;qjx+WDU49oLcF_h{
zUQHL6P5eF{bKpLYgRmJ6YQ}13%uXDh?J+uHN4cQd&gOI!(~6&uRM^Vt)ZWYG>~FSU
zZo-lTrH8K#M(YFO1@5>)IJNvw+~^|-HIh&xpg?2{lfE-d9Dj+T>!wr#6&lkns1m6H
zSTWHs#i9PW@K}QCC&u2$DKWv2kYx#H)+jijh${uOA6~EUl3PL2dqGFau`;W;rv;XO
z-@yx`#$PINH|2E^l5o&X+i$G523Q!@MKq(}D1Ip_KN+%>6*aC>Kdeib>cI8|aly)J
zyBB!E+x0dlBwOS5%ad5Ht$FkyzVCIrSJxn=0|*-q;E%jXteEx@D+<b6n%Amplgc)U
zHvDV-&~8c|Ifma>GYkoVY7wwR7FG8gPUzQNz`LmDsF3Z)B&#mL3^M+)j5MVMM3mI_
z>Sq0j;=*5tH79H5+xLTCd=0ntK4cK2+?SG&4hAW`DAPmG@A&(g^LS|3=QVWzU6O<G
z@ra2`wXiknH#LF3YZDFc%z#C-JYW4tyjofg4DxzLg+0WGb2|IUBz-wf;B$$q+=bi%
zo84D#R@r7r4`EGY=n6IUS;iE~Tq<`T1G1w0ZWK3q7p!b^JhzLXrV_r!Y7sc5pi!^u
z1SKnX7I<y6xoJa`hffQ{(tk(C8s5FNOSD=&tOp(Z^^4Mb$mwIU-v=-99Hl<A&Mw^~
zgF)v|T)lE%W|a2Ql-r4UKek`he3>CC3we2zxJ<AW5K{*XTk5iTlu`R;etLGj$;5n0
z-}i-Eh=8lbEnc7h?-2!dFM2Mr_CUagGCrQBV;%=cYc=u;Oc!PQ#pc$it|v777Xmsh
zWyk{xJPs_Ilk}+P7?%uv4N51o@Ex&mhp(PRi+tynq%1`J*1zN82BwFPP^0IsuaMvQ
zi?nx{>;CQWv|t**c&3T-^S-MK)IuT+mF2Hx@5!;2#AY++&g{m*H~p@f085`GHk(>|
z@^Ddo+OUeJRAA44*4>E)KW_@N77zl2`(yQ`31x5Zbyc{NMZ40yJ#@!dsq#kZur8hI
z(?hw5OGb70?-hE4b-Ew|mu^QR6r>5_l6L*G#IaFrFg)AlfU7^hsHTW)@*3SKU#2~E
z<`~VPa%twheYH0(EDDk;j7aNqAaDXUE<rOgN%l_%M-Rtaiwa|Md4I*@MIa!Epx-3T
zO1Q(<{h8FFYW@Uw=l_hQsV9kAcJ($6_Q*M7Qpxw))jp>f&*fq_5K0ryWBnThR?~tj
z!BSw4Qu2X>x@1Q-&oF`X29!garL=Vbw?OzKly#{$s>*6SE|%Xn+UzF2Y|DJ`N`s;t
zL<c^1=U-@csxizkq#PO$2z}GgoEwP2S433WiFrKsxLMNX%9pNQh=3>~Ure|+a!HS6
zLh4@6H%GopAOpN>kJ*&W`u&xYCy?A+D(6c0HRAPVBRKtEzt`<vH<Gvl6i>5lC!{ei
z+u(XW=dl1aPOQ3198jfr54Lb#aUO~m=dsOPeoO&p^CnwND(fuJ6}3e64=(M2iz~D>
zxXSgD(fw<(vt+VCNwOQOvsFu}{002%zxBN+Rqe&(NX$tF2R(49%IVI|&+HMqRj3Wc
zpp;mfYv%kt;L3&PwN+tRlb6}WpEB;UE8#$P$z0<>I@r~ZDTl-jkwRwz5lmp<w!-r0
z6#$|tu?{+ufA=Wn{PVprRHxQ7aO#$8KDEnTv^vOk`BCTo|AOsXZRvWNBmmYNcr>(~
z3<pyI4f%6&lvm4AQoI?GjCK=7D-kl*Akl$<l{Mryyi0(|t45Bhi&PuA$+Pb_oo$I+
zJ<YtGRn_`n&!7gZfBkK`)({9CSR#SY3?#0K`ImK_cGWLsY)kC)hE!!;cskJXg#fa|
zzieVZ$M}J@CDI_Za2-4G)=+^7+&&3aY^}W12APVqVc<RUE`|{H%L1NSg2O)gWx>KH
z!tO}&5IR9=tF@XC{hN@j^{)fraSv1(7Pmcy@fH0b67VDf0tCkqPz*M6ahO$AolXTU
zf6er)ncAU6Y#5(WOs}UoHlvEHYGIZ(lCK~qYU;v=*T7<D^wtz4NKvm%qL{-Lwr#IN
z?deoLIQA@OoqUVVkC240Bz@w1&$EOK+;WA?RG&@{#qcj=0gl7BX4S1y>aIY8I8G6{
zaygH~&XEizGDxRbmL=fkAOZ9AoE%VsUB&ZmK)N6}rdS4r%j)R}lda&k#n5qlI4PdS
zXX-K6E~mLrz7SYLSdjD-JL7J^7cxTun`I=quiMo*gnJGFNRyL7gN<a&;Hg*$m!k|v
z0*Ldb*Qo4nr!^h|V9rV-W5yx>SxKhe<4BFgRAE!ieuu6eV&6aFkp(sYLISLsd8Hzp
zkqY}dD!LLib2*nypL!*wbOix92If{o%kGig_rW7&Ai6t-1B$LhW0g?d^hs;#Y~_Ln
zOP8&cy8HbHB%O?Ouo@rnWIT37qsud`vHg9DoSxZ|Q*=tv3TnVvsp-YPWaHm-boJgi
zv@zLNJF1J(pv&8(D}9C}(M(S84+?6lqKY)h*-a4XY^K)#!R(13wT^{4b;EwB0Gl)W
zDZ7b3W>R?GS{gE-k-iVIWme|xY(sB8Q-|b+Dleib7CJ^XyiO7Ap+TL$j#W*aM!5F{
zrUtN~kDcQYzxwo<y&*;+Ri71+-P!dK?r)H5Hz!Zg=|-Cv$$H-}p<_ghJ4-6*$1cAz
z@;L$23d1&EVj2;HpjAGB`WL<gklZGUP0hgnnK??RcA1>@Mf!S-;aa@Wug=7Ov8S4v
z9}D`-R;?%X8nWhOj*AmtfBZ&mrJIa~h!2W*&?Y1kr0TLCFck~0Kn_HmT{v!Nrx3cT
z2%RNap}Ec*Wmr30*W_BlCxmQl(mQkL%3+_83pEOCg8x}vs!kE=m9|H%t!|OzAN)+9
zJ0Nm*_8TZjm+lBhzO}*Aciv+lS!>wrXzuh_oE<<hmh&r-8)B+{b;ELhq}rOwJJw?)
zfHl{{!L#SSXK*A88lH(-UI_YbWm*&n1PXgW2*zr6kJ&Sqh)&B3Vxbl8!{-4YN-7Lt
zeIo__0v;tb-{fH*r+Y?st^G*-yW?<CuYL0YX1>d3*r*SZzUh;)_&!%64wJwmfq$3*
z_6Mkc)f?dgHRkxofTE*xc7;odb3B00sYJCG2{4j-aHo|xPszU_d~hf}LQXN;RnL@R
zlW7lXdtqQg23esNxZ+cEjTur+#{uH8#;+=lSh<Hf>Kxj-RWbR;Jnn?ur2oK{t)C}+
z>i;^&c3M=Yy<$nWHQ_Qo*|>F~QxEV-fjwt;y6%(;*uBEUmTIj3>HlrwB#kyKq67op
z4WjhJAK`Q)T6OISbgYbaG*Iuts8bj4i|J7Myv0eWViuX6ZGRC!IOaXyY}_z=Txr|z
zUn<_tH>%J<c?p!)wMY%-cTlIKU^uakOeEywK=VCYQ6-vVm)J8RB&_T<?Lr;Bvi>4s
zr63+uZEK8DcX6(YtN*?bIT6z6O$L%!BoM$WF$0SR=ZHA0u7fO38rEee5@*e=sqi$K
z&_3ZP8JC8Z?7(k}5tglbYX7iok7i#~M=*YzE~VRz$ZOZVBp!w}Q{h29w28wdc4bsV
zMl;&@sY`mKysg*nV=0y^Amc-ebq9}V6J-oLXjc}vZf^db1Sa5(Ql3DY^M+OVh96Mw
z4_22MIzO-sgf=qIh1;+?Sb!LQ%wcx}YXT0bNvv*OpuM)fTL9D0cuZWPfuf>AT@l%-
zMJ2vKgF$hL*O~*k<RKUzLvk0Mk#Up5?R`J-0RS7NsUlJ|!j;(7M{_9lpk9K*LbJj2
ze@#IcgO@hS@wl?x4J$mWMqQhUy`-yqm7$48<KN@vF9JfRj_RsO;+mTknVLCYCoyHr
zH!N>8fEO>c=c3EFjWWsaQ0Pkx>Umw$(|=f{g~l{6>*tI|TeX?6vk@yPh1?h@*zj6u
z)VHsYd0dw3u}SvgxIkMXw;5I}Ii`(l&*aR9v|F|?udcssC#I@IBFNuyCGz1$|ED={
zCM~?Zva?B%)xAJG9v9S}RM=s4e$h#D6@vP6f9;;+(Ak^34g5)coQdZEnv{{8v+4+@
z^sF3I3hXvRF+9G?*~KCO2Xm@#%_^f$_j$zCWmRWF95bY<;J?VpG2TzWZoso4&LfW4
zZ=cd1D}m<V;~7g9)ph;H(D1-*bWMvGLlAT|L-v*m{n4Bwof<9D9_e)V37;L1Zbq9`
z^xdQl-v=?d;y|twJ%m)_B*6PC^kXja^c^P~e>=ljUPb<Q2gOCuqk8QgdUx5G2wr!K
zRg-J1)IE^if7r|_`1lIbP0Y@>$Ps(cs7l<G?64=nEP*toWqI_H$96=!1mS9yo~%Mw
z#23+tajH4F?jYT#v52cHEtPQ|-nU0k&WJP(mJ3YWb8}>wxiKGB?ZvSEZw+i9mr=HN
zfac<wDF+^B;oNwqlYrnu9svNU$_kryJ<&_WbF3om6~|eD3{P;`8SKPp{-h;ht{K-@
z(cU#`7<mi9M0!vA;EgKcLXJO2ktYy_)*;M>zb&W9J>Tp}eA*0Ux=uVvNL~C>Q^Ua=
zLg|t(!6dF~cvq(crAqPxnjR$wN(o{-PxC~l|69qOO6HHonay`~3NrcLPX~(g`S3x4
zrqtz+H54=C%5YPr5Y4ZEL+kXEC|i7TebR<ZMdfmX)api-*+at*f*En0dA#dIm^9E2
zF}rEtflX~=QT4R?@>by>k9|x1+6wY>cdY6s4c?^IZStFXXr`VTMO7<&mBBX=A6nZ;
zODrV81-D&&vOom?zNWc=UN&@f73JrW<CA+WSmd>5cG2L69o=IRr+R=JX>uP(9eX83
zv(R!9t%-%4Y#P5GP3Sv2b3<PNf_!3E8%j3FI4D%N8P}q7OKP^?nkYtntGWwI##TG3
zvypSYTu5k%l3?)U0>Vn<HRmx=8HGmpzn(0_QD8TGIWab*wbUt_DfS^#FKsI(S{4#b
zz$3Shw^6ru+rC=Xnx_t+4CZo{@iE}srHjHdfIK|J13xV}QAMXA8y1#yDHbO1M%f7i
z)0ia9IYJr=V&fokKFrLEXE2oU2XUs}te#29ttPTEqO^4c%m6N+JuBtPf~P}jBt(mH
z)cJzuiji0mb>5*8G?q161Sp&(&h^k!raz(X&}07nW!OG9>M2XFx7&YER+_=?i9Kzb
z2EgSb|F_AFHQ-O$=!2FuVch%+B7IIYxVC_6N+@M+{4Wlj!^E}+wn0nNsQy{TBXT4u
zLSH>!?;<y{Xm*cJp>lm?AQZS{jx1nli6$2)$`!Wth_b>#)_3|4mq<(SweI~V0cBJ|
z|K0&%2_ch2Z$p+;vl=(#SvYANOybU5*1deIH?APTT#d#%97ZA5j4T;O<?)@QzsTNN
zJ{2HJHP=VXPh9aLS+6WqvR~bn2t_9i1c-Y4g6Fd#SJ*fIhJjWqx${LyhQiC_5Y%B7
ziZoQ%z#(fGpouev=*Q6_*MmQTN-Vfm=52R<CVrucxWPO8$OHvwSMB{y3O1Llyd=kM
zXv%#Jw-$pELfdlq;jlVowtm_UvRQBzvcEsQH-Kt}!yijML-XweveBNOPMQA;b`z=n
zEEg+e!Jmohh#qkhstKfGdu`T;Tsvtg2qUtzu~f8hN0kSD#6bEb_asO|0}sTEOBJld
zBxUElHH<t(rHCUqYqManmsozgD&|>DxK#om{|bupNLahTi!>-XCJs;kYAuGMkUf*V
z8JU)kIV#WIb<gWqbXOvC_9Q`uyi;LJdUaz2ce<RD69)W$G0?!aiw(lvXn$$kI#<ml
zw^RO_S@}c#pXh189z}9G!kFQ+bfzzU9@>d6(Mg{>^l2JQq-pv_=N*Apu=3Bab;lr&
zJgIMwxifcsi{@{(b0H~+6w)R@ZHOr?448=yE;^_3T>l`snf!m40L@7W%$8~LY9Cxj
znPNcPR!Q-|r3Uu!IOVrQmfD}OH2zO@TM_k6#yDF$(}n<ZOd?)TBW=3g=XE#ut4v11
z^mrL5u3?<`RlHbFIr^Mhe=RlNuQ<)sbxtt|J9*q9o)|UwWLN94b*QmEChHimUUBuz
zUY7}tV5#5=1crW#*63GO#^JaaI}s4^t;-0ZV#}9lAGvBbWZ!Y}vRY-!7DYH0a_GE-
z8_9`O|Lyl8Ga$&F7@4W|bvm@o$7b}$;u~c0U7^~(0$w~!i0zxrw)_=YRYJZW7^L3+
zUfCgZDGgjgNlz8)>{-!zHQ}vGOFNItYn3r)?g&+MT#VnGQZl1xIk$~QWXfAid$YBs
zVHQNd>F)Px0mQ9614@n!Sm$L3nac>}&JZ0%JsnJzdu=u$Vt6KA9G61h(bRJb2XhzI
ze)0CW>H*#T244CHSyGl`>z0l>TMlhd!u6>KXG<^osG{n(4sr&<sAjt8JO<lKdF=ia
zZ@eBpC-O6J@(B)umKcXm-ty)ZqNnW$;v}~AeS_x;8vj{p^$ozZ2tiQlNNgw>VH_@{
zdv<O_s6retI-<i+MZiRrZW}Neb0oneg^NMFL8DmRJ2s769q`13G231;%?j$rZ`u-A
z(Gpo;qlA`1oGM(N1c?kMoIx^7QWObumiD6w4|%#^m;0(;o1G<Js1>;2tVX(TVqj~U
z3vwxRaoq`dwe!6+-xD0E$UdaR^0xMOtDJapPXq>~BLyg``bqP6;OBy}>(q^6YLz3e
zj$Y45!~#Plg5hW;qGSw3c_V}*smN}BBY!6`8x2+y1~;4wJ*iaTQi6H~;#lv??vyP&
zJiqYlR1WFvUyq0N8$5ii8RsPLT3903!QM@Gt+wLZtj?HZ{}FKu%f<&1y!(0Q-JVgy
zUMjG2K)A1LEiHu+^$HXY64>sqk6IVsoByHBK0+?C;&y&@D-U%V#XX)IwgU~6tiW_~
z1lts~WkB`UTLP1N6Mm2~>RFQe%CoV<+6z;UB?m9jE~alBMdR}7XsB2N#^Ro~k3Iwf
zwctY-WWfX}nG^E3xAvqBWF7ByX~J*1?Mt#~CBE^h=occ?YJ;6BILoTzR{MH`C(m=k
z7Z68kCFz8`%+ezdzsofBe&U|;xtEF0?~hFA)8-$yawDn8m#p5hajng^6vcMrlY>_d
zs-=P#lt|G_Ry<O|-^Gx|E=$g=;Tec>SC#6Q;qDsT!XC-;NZs0+j>?wPg_!-7wkr{?
zTU3!)s&G*EB;2DQz~$mOg&VwQo;v~Yl9{+RpG=G3xLwgniT^ZK`;d`|S;NU8-SENY
zYVi36{rW8Q{cL~~7jUfmh#zUM`;=HF>j_!!C*`2x*oJHs{NqK3ZEM||j}kHA6Zq2Q
zn0?}XeoC3#B4DO}U>w&fYH^sF*ZG)+9lAaTT>8DX_m;mHmJ9^Sy#_Edu(tB1_*U@6
zb>DC?JVMgxcFlICY?q|na2z#Q@bR9kVw4RhA^BhX&|U>13X^ou4?No5uGr(yb?lzQ
zi0*~dk7eRPjw#E27x(8%-l{$eR(=A!TEsiJZ%(Ia^IFC*Bt{%-CRb2W-`c>Ie*VSv
zlj1i6RauG_v{aMEQui!Wjk^%#G&&<vV^UAD?EL-v`VoqXu*{%Aev?el$K_b{*W*>x
zJKrUBD3xZ>fSiJO3b|RoysbnBowrHXcf^m?FrBWPtV$tb_B-km%J$h$pYV%R+t?dv
z>h3AMo(yVtdiUX|wY8O<p2xOP&Sd|`-!dDRS#T%1T^ZB>aZmr_hm|UiRwNwUWsf4V
zWwPidY8h?`1eJ?KJ{Y?oDIBb8X>{)E*vL->K&_QG5Z9;Qndn#QY^ksrKpm<JpmBGH
z@&YN+3nrPitI+?B3I15_LC7F%?FW4N8!xPfSV(#URyleTjai47uo<te2nxAt6Pa--
zUhb7ml?!P)K}|YxxLWRYYd`GuQ}r)kt)cD;E2WWx)6GZ}W=FG2B~w<1bDvh9%lk4z
z<aJaxkSlEXbtLg>u(HftRIX=H?h7k;)!(nLA+^4l6NUn3VoF3Nm8IA{MCnkO;n6r6
zm2T)MjI^G(@&YsN((ar=`|StfU{eGS%6p?~3C}y|c`=~YU?UD3*+R?6iU`fN)75mr
ztJvz1xes=ustq2_C9<9aL`-zd@Ba)h*x6!>zw5{$XFGDwvU<~YHsdbzZ)nH2ocH)o
zmX6L?u<CU%GBChIM(WKNkA2ITyyt4mx-=VJRI1BF*8Rw5qLkIn+{Jj-5e5^xQ1j}%
zGxQl&6?JrT^Nq|QxBpP^s{xrbc|+r;-|$hw+zKHdYTvW<WkL9IL?xc^gIrD%>_F2R
zW*ks6V3((Z0H+Cn>`Sf=#%vE7zKJXh()Q+j74;{SJUo7heno+W-blZkET8bw0X!aB
zNr4-5^5Vkj7O4ui+&3^|Fqt|mh2ll;DAm*`BqV9Wx3h0dfC5E8bi+MpkF(F5xxetZ
zaNPEIe$I2$*jiPppLWGn|E`SHHk$&3ZMeTg*@3BE>qPSanmix)y$GqE6r&72RipJt
zW|mqEW1j@nQJgbYxiSf^D<aFe+r?dxQ>RR=&%96!@fty0PFy4@prbV%df0%S2=KF0
zPM_7-ZeB7c`-j>00A0WqiPEJ+T$S9O0za-t%gxv;q(x9R8&efr0dE9Q8m(f~PM4Ng
z<Yi=v`L}2CY?_Q04_6clfsa}-rQZ+yudG9tODX<9@kRJ+N>8vCO~*yReX)acXx9-a
zQ8_OOj}oZ*t2Je;mE?^=N#g9Le?W3HDlDqAcW;TtO`4Yk<%>5AA2G9vCUv71Sg(d%
z9UoZ)%=?1xo{F^3H~c6q0g(3+X4Spzoyb~hnjE-_4YZVJAqNf;C)pi$A?&DoD&JJh
zB85*E*P>G#Q&tkxPt5f5$lN|NL&20hXJxG>Q}Bj+jeqw~sy*o=Yun50r%iG;_}A+1
zLg)HCB~_x;oiw3n7`c9cG#m+)wc8Qs=S36wr)@@hRLHJ1?zX!4fKT=)OzL_I#|YoI
z{2!+S>p5@*-z=yTp6KfU7Ebsr>fBDt`tUwFS<up3Qg(~pnn6X&oicbbgjH}(x%Nvi
zuPa;b2n+`*K<3#U!BJi}*@zY+l90Qt;?WB09V!|+BaOO3|2l)MiA8$EWuIJ^gMjqa
z<En55fTwj#HWxxfbRg#tY0Rh612B}S0v}By7|Rf1R384LvSKT`W)9$abiA_)(v~l!
z!myJ?<OZP_6J2H~l}=Sg^l1Py>yLVWotU!+9lYzGCTQFOfAV}d=U#}t`7hKFG3*O$
zMV3Y3{BB=}(fu?DXx0rao_SRxHx_^OC7`C;RjKBsEli>zWnAa7CsLT0wYf@azKtY_
znO6sH(Z^JJOJ>X@UuoTzgO=X1AFJVUM9QK=j0SVw>_lOVb`OJlkr)G&l||g9xWW8H
z{}zN*$v&U=4qvAGt57mv-urABeo-;l0}dQzAOO%y8D%lyx%O?()a99ALT?AXY(a@T
zDO71x;ZyXQRrbV7LAVL_WeyZooOrEl5==kN__)IV<BYbc{cA0NOkL|E@M@6zu3_7#
zHglg8mX`NU@u!muK{Xo7VnZW4%1weCyFDafRq>0dNXEtH!OStT-Eh>g54CdCiVy*{
zDIFppl?2u7K38PnT08b3%H?5Jb2$Zz_*rOONg>4QW;`8x;ky{A_`B$;$-nz{tir&o
zueJOw{kPK57XZFnkl)As<H~lP@tyIvg9QB)u{S$smKR`<IK1P;6-i5xq4+D$$vL2s
zh{wM7PViQeF_d#l)wRZAG96UK5itSpdZT&PEKjvM!Y)i;ZV7tBCmI4nSpkevmMr%@
zg*-V1Ks2(2>5KG=XUo=!#*^gBh^~Bqs?Zv%^V&mEJ=&v-LjjuGyQqqQIU2sUWnbsP
z9_Y;doR}Uf^(7!R56fVU^5h|(OuZk^hDNAmP?L{fr?4civp``Pzy}Ugalk5@J-|2K
zFUd&?&yJtJ#|D~T#F5@JJrSI0>l9!Jw_3)Pv7D@9`9v*A(FWZr2r&Wq!+Ap7;N=P~
zlGW-{&!vW=Ased46LGHS(gB4eL8J4;N9J<<brP;$MD_m}d;Er?G^@<eh}b>mA$b&h
zn{|p7YS1_mC)4;Hui_vXE~n}v7d4Ex6%#f%5kh&KRZ%-p!qVqGzkZz;jhvc4)c6|_
ztk0Eg>@NgWt$cT{GOV>Fjt*w!$wN!U$bq{JajPCV09e60zRpR7lrN6Jc>J2CD3$SI
zuW_@{NzTf3@(tO0!<J#CFzz2N)Bej?{B`loatN>SybO*Gm~n^8E^<o-M?^-6a^T!I
z_PrL_$3)o9Rp%*ijZ(TulDoTqincP@!n8HK{Co&ZVsz;=bGTq$J7m_+aL;2xLeUR#
z{Vl5rR?kb%c#^MFqr@nWtURj}aun(xV!+6hJd=omgAVh0!*Im(1<|ghc0n2JFx0BZ
z>4htihLgRA@}}SdIQZ1Xt0h|_oQGHEaC*BpBCQ@zpxh;;<05@8Ru18dF@_T*ONN$`
zmQMFP+YOKT;qu*XTI!lp8Pb@93Tey|>Z?OK_`DpY5{t>4m0@zQ#6LB_%loJe&A{&5
zy~f5?{Nyh1-AV7n@~5k%*d{ts-3kW{eW~-nB?~c;+oDRD?u46yfaijq$;_f=4s-ux
z{wPu@bkhDy&V7<%Hla4J(A+koxV?hiOsuc+FIz3U*m83-cw!&2u}op07c0y;6MA>W
zvp&xV^9ciG3>a)!C4z{1y!HkM#2Q&^aYd=gVET6;4P89;9&2spt#T==a6%)-QkC4{
z#FWnNtx6uMfvL83NxXh|IGYXIGQ`-jNn!Lqz5X~<rghd)IDhZY4=d=Le9{tUf{$`>
zrrawIX4zZhQnzB*NlC=tEnT1`QQ~)m)M#CwD7R(Cem}etBk1l}()^rna1NP~dniJl
zKU@u8q7Wos`;vRDGd!+U@ijdYf03}#pD`tR#gJPk%-$*D9Vu@oDp!E+p9)&AYe3YR
z1YO*M;0*a(DUVH^*gjr!Oeyy#<sh5y*PMhywa3~NAF6%N?eT28K#hDf;s0h2k8dLw
zpZ?7CiV%cZC3CIP{?9tfP+`c`77ZLA+LO}pbLobR?HpT_GHgMmcy)k!>FOmmlGo8H
zqbrURWkC3W;w+XZ=g*#u2Ervd(L1sIR}iSt#RmfNh3+zhO#n~wZi8RXC`yH-#Mng?
z5KxBayfro{`1KM}p#5R&6mQD~x7#(^f}eAg3Z4B79)jzct9tsbSeN%6G^)?dYH$V>
zM{letSzmTt_*Xh-fkGr^hgKI0jWSdfw7>(#X0ZwM)7racv*A0LR7;dTou;2Q$03@Q
z6id`eod4ZqEPDMcB%D)41-YNm;*u@^oVi~6?GeuHC;03Z8&e82C@J<Sv!T8)V>TS#
zWcpCx7aV-{0p}2XJR-FNu1vRiO>1u)*(!r?c*DVv`8KaBY58E&ky>N@Djp{Cv_|`z
z8pZGKHrba#O-(-&@(3l)WbY^X3NIEqPyS*P=v(ehzLqwDteuv3_H$+Qoq?F)Nv3}a
zxP??lAb^e&vC@}Lv$J5%@?BAel@-P3(3Oa;D3;64jZ^BI+J9}1x*t}}HJ$;{)$ZOh
zE*vml|LO9O-6J5lZu5*9GZ<z)W$)^$WFGqmDFh<uy-ouhZ3eMK7r35&on*90EN~vy
z_3<Tr;;;;oCwxr(2A!I&k4T@%qLs#+U*vy_Oz_Rcg7LC1CpyoAA96>hYB71rWG9LG
z_ySeY2x5V9Xs)AklGr-q6%ZX$OuMGvhNk7xM-%U53xyY&VY+s?jt8u&qKCXCU2RJM
zB8|-QH7}E9kE$tieADa)jZXtM=I2l9&;u2?5b)s9N8^x~)UIGhHeT^&Ze((4T`k-+
zOs(Zl(|Jn*N_c0bwb2ePp@~$|IB&^k(>?A>SYCKeO_2=s?#$coZADwH??|Zb&O2ll
zxS=tdXRPzmu<(&3R5D-96IuE1zAnZ1aq9;$xI$XD;)WW0_7PSvx(k+TRKv6s?a&Y7
zP~y89*$dt=H8scp(CagJG3js+nI0<`LDM^;y&$4!ZfH7a*z7uAL}IN_)&f_guUU2%
zh@zq@hvWMv+cDVs9(KTZ1A9Nl==$4TzMm~g>534X?1P)q@6F^Y0O2VCl1vyrootiL
z-~w;4Jxw}A><ZyvHY4AIV^FEDK7i}s^7tq}gay3w&)>fS9|hWNl%0>8fGpz`<bJz5
z=fwMG>#v`#Oyf$6C?c8pLtP$CI)W!cWKpQfw2p{t$#*`gxBjyn6nN4?Kv>_aPTBE9
z6Ht&O7caWv$uXS!o4vk|%ZRLJ@TDn_Y<H1qRyIHK8M9n(W)BkIeb7F3;3|0<`}nD7
zG~4Q}Sfq!z*Z?M>+7B^@^9HWymSORFck_FL*ry(J%ROgl)?0?<WpQr9_ArJRX$5wm
z_6Pf*FF<CN5cmthRfce=iCv1`y;Uyc!_>{c$+|nLV1Umzjp}HuA8Im&nX8pC+4<|<
z-5WiJsiu`Fa&B3xbt>xx!40=PQ7df=Gozb)Vp`d(751Le5?5zLnCNTu_A01bk@I7^
zb)~G`O3Ic^SaGOhjWL+Cs!P(`2$DWQJ6VX`JwTLa4Q}sF6M37XxKs)%^k%d6Ms7C&
zerDKL(SdntZ@Oz^=U0h{Kq-Pc-4pOYZ4jfD<I&%Y2OidQG;a4(Ttzhx5_yep4Br?)
zj)@AMD*v{3xvz9vJ1oo@5;FNsS;fl}%v=S;Q?3KvQ9XzHRG?idU<{Z4Bw{0=Bb)b@
z{!h&}jU&H-ovs}7__;SqIh`*qcM?H_s3Zh*S+Lsa`wU%_DniU!2Ht)GDL*(lLL7k$
zm5Qagm!Tiw4P>P;NUrq_C?eSt_byfaJX7;${5`gX#bx7opwK!WRTqkdeJIH`7ZMx;
zYz9?udDCct-V|XUwYgeqVXLT|&C;MelQe7`0M@Ut(c<Iba`*Z=RWjn8SYYp#)()~&
zdLoaw1@+i5^qJJAV~xOsv!9#-;Uj<0fYq=4k?7&Z2FO(4h?!zFT9@?yy-JpQujg?U
z$lq5jA;S#_GOi}n{-{brJEcvdljc6MO1Q<K&xQT$32?lYeaJapP$mQ{W@KM8arBeW
zoSp1o2!(QE>^@vK3({A=|MnWlLD3dFIwJ3GPGh2inh}+3Ho<+%+ztkAj^`{<_x@s0
z^<6vEY1o9+sViYOS+|3&bWvd1GwC29!&8d)TYOoVY}4&XP!x^>Pvf((u!N2Q9cIw;
zCj@UuSo|gxU`6kFIRU@<$qX(7rlAz`&9~QfQ|P<v6;%i{Dal81)|*AbP6R42de8>|
zH$ce0bJjR#`$7e?t=I;Oh_7?Tb{AaZNK``xwzPFYEBRPS(7Q=Fj68)qF2Kv%{ORc8
zeVNL`Hk&EiD}&?QbAE-^-XpS}U|g|VGg8=#KXJ^Si;UZM>^t1OPZlIRrlDy0Kz@<P
z@BU<?2FGHJmUJiwgMwd$9gAn(+!bwDAg)d`Ao%QAiBv4oqpB52lS-!uOT^6Il>9Ln
z+Id`M@BdHjUH~H3`0rc}qtNq@vcnu8K~9%EqDX_^{pB1{3(1Y^cu3DwYL;**vjGq(
z{qAjTUqet<IqB#SJ;(J?Tyt7@=!<0&D*y%#KehlaLx_VOpM>gp{nw0t+-AbXDPbvR
zrP2@QZCJK0aA6ON7Rexc$#n?s4f|yoJ3WANc>Y{c#Z|G`;T2QNyeG(TM%v89oUv%e
zdRuo~MP5JVo8x*q&VS7td8r%7IpOC6@*Z}5Z4S*XI6Z80dV7OL4y@yG+*OM5V83DQ
zu;T>p#I&`8>`(2LQ;#01ddku6E%?I5hZg9XV18wDz~Do1AS{PW{m?ufm!q_t1jyDM
zIiI-rfLLW*GC1c~dazoyEgXF7k}+Y<_yCjA&j~PPS}=yIM#bt~%ZpdQ(yn@kxWHBY
zJlMwlh8j&a&nOk@3s9gYFoOEfroJRaSzde(oOW|Ew7QP$0&b%e*n<HHmmph-4m#Y&
zaFhVBormpSN)0R-)ndEzE_$eIiqU`6ih-lNo5@TfXFhLMZm%gppqIYvGmb1c&QedR
z`fK2jfmZB3l`u>%b8dx^y&v{rS3U$jXygf81ClV&3xnn`bM~v2YL61EBt*eMO*W;v
zMnbsmQmj~PU<%y~!`ECHE&3cur=hs|=We1yOZZoA)}gc#i5~s_cjG6xjtm8tDEpbs
zT`;pgj|!Vwc8`idf^he3-`3<hBld;R7!$wl;tc)?viS7~@_f1P+ig`J2jLN?Y(dk<
z$Uf<l9^}>%$l(e!Id{c(!1_<~`I;*vn|+?SH6-8iEJjEw`IvO7557zf^aC-w&bb{@
zSUtE<5flMVyho!EYIO9ULk;}f_a@jMM3iU4Q9>HlDL4*+C`4P(FRV8bZJ(h8$#m_e
zhTaSe$jEepuPe2)@4p?I-Dk|AWyzfC8=!*iCddH5>lW6<{7fXxKsvb6cgoy4Y}Q&@
z-TmBSLnkh6)y*?Pq9E45%(FEST>s6-d1Lv&oSMEmt$Do|zw7c|!8Zh|0vY9HJPmi4
z+%4PDyh#3=k{?a=P}oVN_uh(Ob}%|#M`?+?NJ@p25(<>B+DWOEZNz%R1>gA8()p<-
z3r|*{&cK_Hk5u;tmX^x0i)P6{F<8KP$tZ!P5a`o-LF-i@EWNZiu|A_N=+`y-n?^00
zr03abtK;lCD3>_eZL71TI@T{v6~TYWmNXjBJ?#k*Sx4d}EO*7Ku72zl?@;z9zz^Dw
zc%Ul&Dp+`9djP0aXR`%*6%|etT%j2CcP(iAI)dKjQ#NVlF{LccX`2YvUaH(3OxMuK
zPV{wj|HdCj(i?z_`>G0pzDBH2=z%90Vh%y4LG(-xQf=&8MHanrPd3s<LZ+gmYhCru
zd!!)8P+-{FEANd6px)#H3*aZ9)XqJWV|9b08m6<%<^ih;*8?Juo3{T13xux01CERG
zJ6vLLqW=y4pPXZWx~ZaU%3gFnS{aD{Wcl@8IhCbg?f}{58mcqVEy$>1d%SG}F|Ig8
z5pq}>yxdVUN+5Hmcy^b^Kt`gF+g(0WEe%*&{>7#gEmCs`j>dpIWCk{In16Lq<tH6@
zVbOYvYmCt9k7O(rCaQ&kF~jK3dA$-`A*=Z{C=DWb4&J#T*QvMnn8vguwF??%nu-Xz
z@1|WY!E&y9Zk$OhtAxlNTnJ_L?JsQF_dhg5YO<bBpvQaHhI$WQRDo8Yw~u2tusIC8
zO?XocZ;G2q1t07?=vus&<<Pbx*&pFNWN#WiF|xY-Fy~`&{{rmI1x+B0yHpQ2g#JnU
zZ`v~+;k3)yuDsy6`r{|^0jq(n_0ElV-QGFrbtV?M3j{lPtf9x$80>dPy_epqkSix5
z%uh`v9B;AS&1tRI%1>h_K;P;T-)0ld=}Bml{}`nsHUMH5Bv$)kxC1%*Aq;hYY-J!r
z0a>E?+^HAZ-~YVLnU+H=kk2RVRAd9XI8)N=VT}LC^%%}wZ1D--0G<~71u-bD-Hc)B
zF8=-BDrMj0dtT!Goc%`~er+0)Raaz=q?1WSR=?4FYDC)d$#UyepYbBy3D6yDEFmEH
z@rz(#f<PW&rsciUG4E}QC>7Tx^Q?}<liy{zywY?I&$<@}cS~(7bgLmxiH1<lYHHu@
zh@Py`E)%TJ<3B~OzR%V|kiVY;J^rDXn1cJ7l&LZt1SC0xt%@*`p<RjcJq?UDus{l5
zYpIQBg59D_f|@X`KO?l!jio_bstRbHtoKOv$BW?Pb-71!9OZ=#&O$wn-k$a7`j@*5
z3M#z5btQV~1UeC0Y(q2U!Vr|k*&oz5RIidyehqmj5^4OYVs?Hs|H>VCmwDIhv|Zn$
zH3T-)i8#{=H1#D)1i6Z?0m*u)g%cLkKEJ`xD|wCb`}3cvM<cGLsh<*Gri^D}ByOs?
zTYwa}1D?!^IuD*oA!e37+QEZp-#V2skP)p_d*3U-d%h}dys*RYL%Qr|Tk|lmod#aK
zJu_V`tpkf7NrR}~g_)_jQbXN`Vt3YD5tMF)S)Rmf2^y81kKN6>4X%)1JjSjh+#&>e
z#DvCM=_gJT{hTt8C}(HWV<AInP&#Gx@_X5(j(2v;ej?{{l-rY8b&VBdqw#6It3ii~
z8lN`}V`r1cl7~;gz_ecz{oO6Z^9Gh{p1yc2Xv2F<H&MN_cXsOYY6m*joFli*;8xwK
zAqM4SrG0qFT075aDO!dBK20ga5W9c8w@02#xMYD44?mibrO+yRVLO|Z&hop8jdJ*U
zn;nV{i07($H`V}(7*jcRc)w%$4-Y9v?l_=K`sFm5C<fQKSb93qxs){q^Pc>Dt`(UH
zarI%4;bU%B5Fj$pD$}~h{&NcpU@#E`ZqlS&CEao+-}qI|I9ptUZjcol;Zo-J-att~
z1)`vRe++(o8x2%VO$JAlWpYV$ultU^`k-5s{DZDod3BvrX4@VjrSOFo$P@DL93M#l
zb~Vb|#p^X$5amWS-1H;Zyb7(QE0Dy$yRq_KdB7~I9y~{u^I^Ng)-}BGOHG*S5h7+t
z{U$D<GBAXF1RoOwH2VK(xoB#1;&hA)1bQjwbA^?ApJtuSJco2vX6BQ%)PJVt3&8P>
z!&|p7gAzDzp0QIO!RXhhPCs5OP4d0-Z1VEL=5qBG9%}`t>`a3KMnWV0ItVjzQWiIy
zba{_Dx4IX)rfyQAcX4eyJU<8|kFe0KFf!J`hH+mdodj5!pp0<IA065zRk|9Ba1Pjv
z&|QMEmo3NO;FH-W>05Cw-?=HN1X(64h;!Ty0}AIO0!2?H3+Y(X=N!U*DA?5M=TzKu
z6o#>KUO@ZXE@;=w9Zbhs2aJ{H+os32K+MyIyU8FjGpZ~)mNdLs%XRe2k}p2IpouaS
zuzc?psO13N16}vjTEYN0rEcSio!DWku{Eq+*%WAsHtdW}9}N9%G{KYh+CZLGKy6oT
z)!9IAI74ORdw(O3Cy_~$nT2uTBGE+CF%Bk^up0a-B%U=AhvV0B7I9Hd7B_V;!8gt6
zn~Tn$TyEqXtr2FU@)~YlV!y<|#CG>I_(@2@wMc;l_67ajFI;Au%i551dtg}TVHlns
zQYUcw(Jju2`D{C_M^|+*852w((Rpo8d8FVZN9+i=tK!o*SOkMXX`*nECv}EIYdQxX
zO~O&TRnD|lnB<~}uWmeJOCGUlM9XzD12W6kj;Br?|E@H?c*k3lTHzd5Q@y5`Z;Ok!
znKr3FWNpvcAtrQK6hPyXawKmUJNSY6+KHMKwe@{72$RwTnpVU@1)~x!PI!?taz8NP
zBu31w3Xw*Zj<~P5K(Qc?$d7-4Hz@U>6=Wv}13PPd*m9sWgRDHf)lHfxPY9D{1;!Mv
zt^tGq-W79ghfGy*PCZKD%v{~bNT*oRp1tZVc7upY54P2kv9e^7K>%F1v1~31I!_6m
z*PU|3`Y&-q^iKFUf^^)f{=WP~A=D%T6blobjT5@BNUP&8H&jmJP-V6>m&7wWwp?GO
z3@EoVo`0(ImblTh5>@{^vrKy=?u<!E2g?<UH=UX{w@@K4^X1OxfHPP|5b6!t;Jl+I
z^FWa?*_!wH{vEbQzi^A9VvTqz*B=d+fa&5{Tz4ime9iASgl6-f-3Idzl2P9^3%l5p
zyC%VV%Bkry^-mu)xE*LU_o6?1lC<*eAGs_KHaqwOQ9`C#SC#Y;%n>Wx>=DcHQU^p0
zA6{;m1w}IFXc5nVcJXROBF!Lr{@+mRf^|Eq;mZL(@hS`6acqZ@?URB9N$3@WdbDkC
zQX{=K6HG_?eMee}*s|_^bv4tHA+5hl3`vOHT-g9EzrF*{q+%+wv2P-~5a5+N!dtX4
zKI43;ZSv^xQ6IxlQaEm$pQsj7yRU1?c}8Z1ka}Rwt12H{aOLAKPH3KeYcFJ0B*QkG
zXA$}f9(EPSB9RjMVT52DOnu`Nkqjo7z0AJ)%4QrxAdudhbEPrbI{l=){8F-l>8!}n
z(w&wUdMKLX5^^=h#<UyAmMTx_{EnYP>;5t1TNGDy(3#uchSVuQE|+~aJKa^{IcOUS
za-;D+Sg)|3a&vvKQ0o9Xs~pHHFRWYCq}w=!0b+CLMw?a!a{Ph?sf;desgmN)1?(NS
zynqW(Ts2&B(+~$!ov{A#&>nh!jBli0#5dk$yYM~Dz-N+!u|;+wycG-#EcPuSb?7;k
z#^MrSbsfQEoMQ>n<##z9i~PGt4IVnkj<%!yX=~%K1nTxGUzMy6+bynHgxYbcKwGEv
z5JKBP!r$oy95QQ^$Nk-9r?9d|ALdvV5x*>FBU!4FY~osv^#+bR`%FsvmkfL4!%v|?
zWC4NFVy*O9Nln_!7AHGa8&ova-u>c5Rhkq*&V${_td6HA`-#-wxJdpCW6aQS(Buu9
zjdiMymH(%*=3MXjup^JT>^y>`P)2?5!`SdGCQ^b6>CDV;096<lL)-~s^YfS6e&sJz
z=WQG`mktEfdL*=R@A@IVQ5*1e{F39;_^_f4Cj6}JAH@X&Rj&;)!(efyrUww;ERh8z
zx%csw%LezFTw(8yWex*-tMIaz3*dYz&rX|wl;>sxw#jpB7__!%N!l<~Ok^nY0{A>?
zak=lfJ$6qh=Ajyq`!>RbH6+Q2R&PFft!j9_qww!xEa29kVB{{rEq}i_N=B{UFZOD#
zD}c);6?KE=Ax}hu^Vz?LshelL`<Xl0{yIEY6Y}y|cdj4U&i&c#0chj#zGe62WPg2!
z!B1kEdzesnDsAoUQFb{dty|1JUOvJOWjs+<*Xo2|7<teA|JzaS<c?#mxdOfUuP3N`
z0#1*rr5NuiMsJtz^VPv-_6wbL+gG-}8(uwkX8jK3IOv7dR-;Z|9{WbP72L=G-leuM
z9$nJTVO<_2jSSZ+w3ra;2~$g#cFhusip_n;(fS;Te<-Z7xez<L%m3c6w0B*Z;~zz4
zC@NF#A1hv>YAi^Lj#FsEuR$r-#k6<Rired*!B)yR^jc%N7cvptWMmq)5Kk^wzxmAQ
z5cl=9D$TA1nNNPrl7Jm&P;HJU#Xu?SqdgJSW}OP3c?fh=zyGbkc3;jz&hPgIXI4(N
zKyhiwXHz>v8y}EMak7rZvA*4Ie<1kV&Ej+Ga>`yc=kg%-#%y^|=liy2ket3@%=2_%
z=+9UYevIDC&{L^Sz!Y4&13K4!e(V!A@<x6G>Y<mjK{!^@<3Nt`|20IKzX>kQb;~sp
zk9{eP2}g#1=M4QL`%ECb?TsHw+QJ8@H@BVHuObf9a=h`WN}$maI`4AHzLN{;%L%)B
zc&z2FAb0FHzW3>1-O`jH`}a6i9SX*}RQUM7hGo%Yhq)Ie`ene)wYLOk$m|!@%Wima
z)n2cAAs;K14WPK0hL6+(uIKdj1*9h66)!H~4mfNdfvfiY=KeJ3y0qWSFz<Gf532(u
z#=kp(8EWeXU-UHR-NFEUwf)+B15|Wwnwa7~AVuUyz!5pdm>q9*9PZvJYLFN$ihUI@
zgDzv_6~gE$uZStU&i7lfZ)7H`py7C(TiM--vGe-yK3M8?f!ijX&si+t^6V{(z{B^N
zG0-W8_Pp58$f^Rao0w2wk5N@E5>&lulCCz7Re%u8wW3)e637yr5<WJL_c0fkNvE_q
z>$6SdS%>?r$t(S*t=y`sw~;@t;*h?k=XaHA#B>CxB+m1QaVcbKwr3L3*OyODE;{As
zjLCAv%!)*nty`M}VJN>2{eCAkN+D(KnjDUxPob#WvZ74b0+{7g9D-dTp;~u5sai01
zauPA+8;y|@=(IFh5fi-D`vE$gs7`MI%Pw&%Ig+iki|UI{fS#=QA7{*d^}=FT{!Y85
z@`PZXPm9%I7A!@c{Wufv>+(UuqVDBB8n~kV55ybl4hX-{#<$VxBMOJa1Phx}orbD+
zL!A=bjCV?l3&{<z8hM%f#K0FCA$M~ouQ~?MfSOLeZcG7zWZg=Kqqg%HebNv~76Q%n
zo;ZT{;-!vJdHm0Ih|R@i=!rR;hd3D!<*XW=@1-3&Q&j;OnPkFR`TuumFawlKtGJ9D
z@QwiM%57zM@s=q!$9$X6oy<M14)nsf$?hZmc@PK9IZe1j+K8EYXzPkbCyeQ95IGeR
zl;r826H6FI^4KA)ha&fJJBPBu&4H8sDq`L?%*j(<S`t1wZWFECE`{8`9`3zRX`7(#
zTmHlm4Ze&T0owfD#QfiElK{@iB47_Lu#man2!FjE3W)MUvLs*krOj3211bOiVbMO^
zN~`MnTKSbcHbM-4cFT7ZmLYLSN>{&zT*^qQ3U#7gZu75ZDV!>nkq6N>ORw}qET4Ud
zWFXY0H1%#XN?0sZzC0N!6DUv7#tpZBtO^Oiu^t(DBU9l+6G|tW^ZSdB<RTg8Lomh8
zbm`9_tK*%=*Fb*qElF~mS%!@DBVE&g42woauJ(%63_SUUyl5!K6V8flgxc(rui(y%
z5I>J6-vpm4zPfJRiOS|NpJ0}0DgDWXIt`&=&1y01fwL<gmF!xc8ib7%b)dyVPYqk_
zp5@0VYC@oior$M>JTMk@+?SC*<x2JcH$a7G0crC-$m_Hv0xIuthjEk48JJNK3Icr8
zbptDiAT07xjCJYKJ*HMBdE}>vcJR+W9;)y?u0m%^wNU%B`0FlD8>$%-<>`rpwg;4w
z*~VAu6LBX^$Clchs5Y=SdB)pY1JbHV&|Fd9Ze2KN=ukDX!VDpxxhS)}Y1hpym*!#0
z^&|W&42g5>G+**gUXgcV`q7jlVd3i#5B;m?4jw~~P?$d!%M@*{*dW{3Ok9APdm-ru
zMBV9BESIETV+V0d7B;r6<RR$xe7TYu4*O1;axEG^P97UZgKoY>7)wTF6DdMN)3KPw
zXqrr9`<c!jzC+93uW__|bK;&n&+zwUH06At$6a*-kBN6IpuLF`C%OTIPlPR7Gfp`T
zG62=WM1H7Wee$;;JN((z03=8G*L8%AAjMv4jivZ(A@O0_-i2|7wWsv;A@y~#0s3gC
zCxz4CSKvDRi5G!?S&O+m+Uc|ysboF#ItQ8ACq8f>mD&~aw_yNVa~Z)7RDuw`M2BZy
zjiTo${QffDX}Q+ykKQY-0wT-T$e}~#!=jS~Y*HKN$eBzrwwa6vxPBb>o1QDgQ`3ts
zuoM$$h61a&`a^PXr_~3}JrJHwtV!?ESRS9vOJLejL<6ivf;EiXF04(uuf}98UoM~B
ze^}O3S<4*Ffo3a(<W)FpiHa4eNV^yWD$jtI>$Aq>Vozx6Rgk5kr|GSHdQg#jju~}Z
z+TTa=sOtxQK0#n`mDdOl{)-MCZCQ9;3r#Ai73ONFWeEv~va%CwqYsF5<`-SJBxUQ_
z!STeJ61B}3e5|SV6yCu%9c<w}eACXc)Rz^|rE>n6W!yn)zazgG^9qBJcl@fKxL&Ha
z;oR8-q8;s@KBzEbP#A0ZKVCQ)lT<-5KKTy_BkgF5^-Un@7{we}Z*8UiL>L8UhT2-2
zC~tzGjLz8EIQReVz$!%R2nG%ppqAY;$q&GbDgv?;PFhwdcs%f%ELyR?3<#mw&D<B#
ziUN!80$w!Tz(ZW-XV3-tUrhYck~jAOjI=~6_#w=nLao}X{d>X*hVF4b9m*%_xJln?
z40H#CHw^~Ce(%u_<3y~Z%r8rkB>5Z0aTQ3RBHp;^>Jo^#g*4O1Z}mM!5eGuX!@{1;
zhrlLrx@{ytBp7Uf>o;#pAwbTcY-GpM4>OS74ON?mg=M(8-zM9Ja(Ty_6joww1AD_%
z^=TxSbC0LUJTYlNxG65U-+~cIxWz86nu~_6SPowQ(gqX_aaQWHSwCA1VnWT{53YGR
zU*t6IK#?LAewCV%ToZ}z#ST;Bjg+B!6TREYwgNSns6*j8o&^M(HSbP4*c*Ko-v?@-
z3@#q_)awohNB1fzY-7QX{q8w$e{G>G-G@DwN+;QkK`NZy!~?hiapaTS`Bs9kMzTh%
zVmft0qyGR8j(nM|%~MxtEO5UY@~|v~zAu-oyd9Fv_*xnioCExf-q*?_)!e{G6x5ON
z<1>a-=-Dq0%uSlbl$y|{y|N+@gne&RfQkstj$<5j!%cck^`=*bMt5g!7^EqPw)77(
zUV%bcN{+v+lGt|P#O5<DNT_GIs5Mx4mjdm7q3)`1f`5F`rPMM3J=94Sde!`yOA${R
z#*OeZDplz>TEoLPG)ct%xZdQ!Uwj8+Cm}DVaU`fJ3P0*emK^P^pKe4`O?or%df%68
zrrv^1Ps|R@X2O&52o5Gs0n)isiN}2}z@-U{XO=e4n-!d6HB{^y2TP#Ql!|$`zC$li
zN`DEgC6Fs0VLOD5?>YK)|Cw>qngt1}&I-^3+oT6Cz6m7)roL3_?w(g(joC0WgC{uW
zwUhq%)J$KC*0%v`Yy=(dh;5tGyi=K&7dpu-*6=Nm%ML36PR|ndYdUL_ZH<$kQ?<NX
zG<lFz=WH3rkePtCuol<iKCzj5y|(F^wnny*rShHH4VzalItV>gMU`;C#1ZKF#TMp*
zS<ia0zGfsB?5Pr?&^TUii@sd3D0>FiVxhWPEDx|Aa`~=AX(GL;usk49<yt03BoP%F
zv|P=hVLGV4)10IVnp2>vn=7|ykZzgqD&tSsGGW-JK4Ie=f4_&5Pz-&>zJqva2t_lP
zHtc|aw*swG#|*&&x<%_Bj{)`0Yl#Y*3$JhmekVcEDnTomemeB3FP_mzeg+6&wz9;j
zbx}lD>GX!JZ^fVXO6J>23CJ;mkFd192066?va@PY&j3MZ8Oc3p2#PSEDNbEqGU$)9
zfWU%Mj=V&oVot9F^V;a@I6}$#wnRT={;gUijAK=n22LE#q(Wlb_idm^4TT!K6KWcu
z+rYVoE;yR)Lt_#_LpSdoJP3#5`^Fd$(6SJ)!cl}iV>c$Abaa}JrRc0p{);ophbFT$
z<+*CciIxdLZ@e3uUFiPgYM9sKC8*`J48&vMe0!bu1U$!#%QjT*ADz-~`UY(18EWOp
zIwc)8p{Tz&j0V#qS!awxN9WQVvq*5fYvpkb8l))iuWUQY4FoRw!oTX2aY3S^{h;b1
z3xH{LA`f0LWmU5={fR|fa1wZ)Ni43Zj-qIJjWAQ<P~&EN%bv`a`*4OADv|tEW}QN*
zRkpLV+wgquIgS462TK=_s}=wLsPCj9j>SwKVJ|sz`BIMUZ?JAGf+~m4LDfEPj)lrJ
zvGf&H{q&6<h^bUDMa4Hzp%{|aBLiuw2nSbIg<`u-@m1_P^Nw;i89{j{!K1}n5OrDQ
zvjBWL+84n324HKueo0=l*EwKIV{o6t)mxag>F@@!LAl<(!|x&+h$(&|WVTekNb!4{
zor8O)am`lx5gRTNIKL9crm3XbzS*|nr%UKM08<D8njA~xIz;h@6s-^ELE4t11?g(H
z1QQW8gloDEFH`FD^qWobg4g!7u1|>Ht_b(h|Ec8cRlDsbWb3yKO|QvkeWoc|N54`c
zbpbL}bJkvMo+}s`;5chCK^AhIx8%v~ULHQpBmHTHiH<gGRrQRK1nd4B4`QReTXalE
zfkmRCS5zWGc;R_vQ$26T`esaGvU6@{3N>7DmObY|`7>${b+Q4hVg!nz*iq3bS?y3m
z!gQ5JkK^;g-el|A3W_grZ<4UGTlbXYsMvFvWGzN9&XjhJ8~_`(<!O1*i{xbrG(X^T
zXQyr1P6mDL-W2caQU;&2Y}ZW$9MC$YLS}4z4he1Z57DSvN}9`xxdsQaBeUU2dKmts
zS;W<1nO}3wHIu?K$bt;Lyuiu6RE(TY_}dCJWg$+ar9=pB99AY=EW=?SPDj@F6S(GF
zDJMcxn_7_!{8h9dk^*U7Ox=$MJ60QltlU-|q5AYYixa?fM)2>3Bo*_vB1vQD>##IK
zVYQ}EZxuq>Y8WpCI69E>-dwbFUTIOGYt6$`Q+!G<2eEvD1CV81X4!{^lOI(8)dlNJ
zMC&hnlb!bVzk@5%FQm(P0I_7l-6SC8#t=%y#2&(5Wo+h`QWf@qoZNJhKx-1pmp~C+
zk+vNON7s0WIO{4hoT9fq7LS==w*MLx9uN<m%alRpWeg1E4W;G~XJI;J(=LIOX*e_|
z;ns*kM`b4P;RkSfT40Srkg2)NYh3g9c=LZEC9(wE`yw<ze30PD=iu&zsDZWklH^sG
zipO{kEf0}f4|vf-=P2baJ;S#7+dN8yW)8LX5E-+mVDvZ{x%BLpPl)tPm)YvB?jD#R
znQ%b&2u`UKL1?e-@tIAEX}A;ro-ndweaeu%$f9492^-jYv__}SPO0qjM;(-uo0%Hs
zW*a$p{OUY>x1q7>iI+MeYILYmoVH}|gd0lND^H7Qx<U+7KQ>R|oq%A3V?Aa9?02#Y
zcJ;1ogiFNb1zURFvQ2Ke;~dmBzDmg1hjkj5h;_B}`z`e&uf-o*T9SygEnFZ!qbI_B
zwocPMMl%N0ozNIhKmBSf_HRI%$KpqIc>7g;3N^=4+v+I(;66r#L_#?+jC5)UuMz;I
zd%L@WGbbPdzF4C~Z(-jh)J|F<c0VD3p4)5DtYXK2S1%nv8A6Owaef1^<xesZ@wVfc
zrpfYpLIr2*joBK(tWIZ?krOb8%iwSZL@m9N5SUoR<4D6#IQd_hyeE5`0q7h)&r~))
z-)=i&c`E0Ja`U_0Zc~X1%T9lPwW9AWl1Goje+pdT4_{vkcSF5s%_4C>2*#BP=l#a-
z>hHc-b~q0yr&LP3Q>THB(WDl_JVHCfkd2LJsK#$}xHRV2sNM}APC%+@I#hs#-0NjC
z{m;bxdr@^fUKO-?wB{4m35<uUUKZ^p`zA5#NbYD#{NMlEBEQ&rTu7a%7eh?l*iLLc
z(2dR{rm#4GJa$=ppvVCwowj`{a&g_j5sAW|+fHiD`ij<Eih{&}R9zk#c08PWkQEW!
znMLu($U#U1_A>WwTjY~A;@(1c0Z>-8d9+OW&w}mNI|+OpiZ7^kiT_RqnZ|rV19BGu
zstkn({U4&F&rn5L@k<3=8pKIvHYMHK1XzcBwE)p#XW2Ova7OYzsnsHMIWX(#M;2l(
zttoLn8L1mr{qd`_Y_#rV+#H0Twen5IQ?KLFVceCI*01Akr~~rHw_+Z@qax-rW#ej-
z$!`%vnfG14Y7<?&^Dgv_^2g48RP*#Z64hL5!_)p2fIpY463tD_H$-mLgAHY5cN8V&
z2|}eD#)11bOihtOU0odZ>Js%>4ne;``O;Mu;V6uFU3X+X4F|^sriy#iVLBE5PAmj3
zEIZGMV4n1X&%+XC+XTGG8K!$TP@j-SDU2I#ODfyia;-P}C?E1&-#0Ow_PVPOD?!K*
zlo}n+<@jSIEmdx?p~UL;bTU`As@caTy;jN6st$R_t>;Ev1IilK4^Y|4)=&@^Z<d_>
z%B<<4^1?|Nk-zgEuX?Pl=8?LOc<Mo1S^GVg|6G6T(MRaQT(P<0;$`N>Bl&*^&r{ZT
zby{!i&6>K-^8pBDdygU|Q6&Q{ro`cnn7gHfQl#<~%Wx|VB99+RO%Y6TH}Ugv1s_!@
zv6i8-pd+AH+K^$yndl|*w)%jkqiHra^>E5zKN7`lDSWw7qp}C!CPVJ5(5`h!!xY#@
zL$tRh6j%zqwAd<^JZh@s7BrvbhzcVta7DDHb}A{aK)3%CoCelA*1n(weg>z0Xs-}%
zL1j0ji!|@sw{ykSlUX`v;0rm~8!MJ~qJ1pqZkiWa^*sF|x&ZLAJ6?ACwaRmsosUUG
z8g@E;VyI#&$QkSf@8pSRXtd$~GG&_xf&}vs(QHkbeufp`Pg_4&+HL7oXP?~Gg4ii4
zf)&|0;_jb;V?BIRSR)8o7K0Q&0Pb=*tNYiYRW^|J!cpCf4af0{f+aqk1Lz|e$uh*|
z>^>|2oMiEtx7@<NxI5#9%{$eY12Fjkk@kuz>rN=0j>{cp<S<!y-4r;>!CJIY{;Wrj
zNH!}NDv-G%7>eIZ+?}C)<u|~pDQElc-kggM+AYDx)5?QFPtB9aJW*9lrEia(a!wX+
z!TKOxtv$y(C1{js0a-5Tg{kVp<>tVFswddZK%#4EPyblPtoTU>^O15iM=5hsy-M8I
z-~mKKc)-ZjFenYcKE*kYIR@Mz0u@F(B*W(2Hd^C8E>}p7cqy5U%cU>M6lJDYBJsDh
zL0&s3L%R}n+HWLZmP74_J=vc3g3?5q+g>>GnuK=)t5VwGwJ59F>Q4OF8n#^`U8T`z
z@k~!GD7v_|P?nw%V{SQW1rI~aL-ZJa*f4g`Y|n9R*jyA4THk3u_R`5^w`!BkM`dtu
zV`}vQA^c_o#29G{ZZjK7Yv9ebz3S(jAMVL1<}&=MwldphHfTj(T0GEeX{$ws1|<qZ
zr;BY`+CDL1|G07n8{bP_IDre$-SW`{l;c08=Dg2gAO{ZgoB5SSDRLfNbbw(Vb#Lz(
z!2Mi$F=jQXdZ!Cm&0X@tgM=9QpcToF)}9a4<o`yfG%&_@5)TZdYh>E*^6X>ZW8Vaz
znewYn_;YKU=n@>&sV?k>?Sxz#BQ*-O9A4Pis-4h~+R2Gm@8QkKQga>MWJIh6$FJlb
zNI<#*4xAH}|K2>^Ep!2v!$RHyUU9B6&r+L50h-&3bS$CK2NE>QVBI#F3vA@}+`fg(
z^|Fzk%`BdB{mtneHF%cZW8>aa3+y3v%mBB7imu|ISVDm)cq}o<A&%gGW?RaB%a{}P
zA=sypSyW7cTsiwR+F9EbF4w%tbZZ@N=)am`@ui1RW=x{92FkML`}M3YFZ4lT4Ya^c
zbeO@YL0*jNbmG+m|9ra=Y;0*A0hZY=Ef1DdM-fQSqc;5F!ZMx%xJs&bkBA=J&_}um
zs|xEL*S|={nRY`&T6rO9jGYnV3gObQ7Q{+c(#$>{MgyS7`xhk}JVx4VC+!IJ%eZEz
zkiVsJADoAH(e535wERZ*D0DzdA5g9gCdlFB?^5K4qR1F$M7jD-SS1Im2^{^PnKSCF
zN=X~0t~ItS(2^ZAT2Xt({Q3p|k^onkv7XqupM-s`(|*~}&LN$BIzpSG3jkXW7-Tsa
zxphBn1N<_4<Ax$jFQ`Nf#sjDtDfWG9lTO~L!!s|G*XImLt9hWqi5-j_SL(xq_bbHd
zBJk1exDU{>R_+h+2rH_Xv_!Y7wS6qdyKy^bSEiLg-i6I{1sas{>e>SgtiP?`U;%*3
zrU<2kWcF#d>cHdiw1~?`<$e-UCJ4x|81E#3&zu3OxUz{-v-KFoev&#RjcnhS0@W)p
zZ~$TuWGD3#M?m83!t@@Jw`<kNwjwNtpxx-9{;z0c6yR)a1NhAP=WPY-tz`LDyu>66
zK$4Hn#L5$M$T5?pS%Jf<l~E7!I34370W>iIB#|Oqin2l3Lf5SK^$$`HFbF9&e%j)s
z8{sGqHAbW4Px^=0?}9&ljipG{9`FAN*<m%)yX$+F&<lUkoe~xg*aGTv7e9xMw9{Ib
z4t$94S{>-7L8~j?MohH4S?u}VZ+zmWh;k?A2E{W|PHyyV|GNFkpcSq*mdDQUxEEcz
zFPHMD`%l`M%1%99y4$pM#@-s(>56O{g8ImV<XN3qh5?p3rz<4^r}<6$D0l*|KcTw)
zhaw<9)6)lm5Jz2Ea?Q*@D~<CWzgNF4fgnxXl-bM1Vq*K>rbr1iKxB9DU~$T$^a9V5
z%m806lc<R7vze@zUIeg7KL;j&y7H2%fbg(?;Hv-u7IWI~={g>uF@&U-1M}^a5R3-y
zR38D0liY_-fC#l^-fpQZ)@yvtsbVxMN5e-k5Zr<6vHjvH)jbfm22+VBoBhY_o`DtN
zdKta>uw%5!y-!cM@;?#v9bDufXl=ILO5k{$cbD*f>uz!#c!lRDnWF1X)?=d0ZqogT
ziL-FA^;^AVL`_|8bNDDE!$n7yc5qAcY67DnXSI7eEC*)V_xKt{<j$!<l@nCGb32l-
zRV=_hZNqgycrg<7r^Gq$NuR)yy~6RSl8y0alJi^%(N@omO8n%#w1pS)5>N4lzR?UP
zUvWF&Lu1ANtFHU9Z{Tai;otN4RPQ3ih(t0PU<<axGUM>s8>HY0B%fHc6=XRg>i~3+
z<fbr1fsU(wSe_lF$%G<Cek|i*-@f<PqUP#TOd+)>q_EZv*0zmpsNj!tE-|#nENLDr
zWdQbuKP;W^gwuLCxb6`dsAWjzyB;rudNm7S8io}j&n0&K0Y#yU-Z`Y$jx!C@CJ2{+
zJ%^OiOFcLUKw@7e_!^=Zep2)czJel(Bm(g_3x>$fXUGq5$X0pKmqXal;(N-OOyy4t
zTwSs3DIx%8qbL9`YW4zjgej<{@0F03RCqU)yT6`U<L3F016HD_HG8vQ2iRI(G0gP-
z@M5_jSj${;np1oJo6eN;x5VzO2+b{EjM%*XJQJL2EtvJB8$SY4ZJ__*CM*rB@?1Rg
zbc`ARyL{MNbfsM3Tc8$pKKO|$goQ{ip|QSq4-#M{T`m&lj$C?YWKoI^Y8gErf~Ilt
z7z8uVBDJJE*aBU0n(cF7Ko-*(VwVAl+SRNL!24qcdfLInjdRL8_7)YkS(Q5puPPCl
zzi7MbfgGXMFahPJh*{~e5~-T2Q-wkd$wMqNas5L^$tw1Hc#(y%C5%-z_b^p=<K*o`
zjg>zBQut6#b=p0K8nFqt6ovm@^!JI}X6bQ!6xiqB3K&jOL-(;Djv<92->0vUFhp!2
z5$2}vAtZiw=im9lndL2EZ%PsdVxWu<rpP(_|HlVP4VoF5jnCpt?aVc1kOpJ3`_KX5
zv?_(P_{P0(WfM_we!!n~ODqXdr<;cY&&(#FbIgYx9_y2=!|soRMK+ckiDoBi!mMg3
zxbi2A1*VEXwp>}RTI1PuknzpMR(Zuj@GT^oN=*;~0vu=Cft;VvFV7rljs{L@CSusH
z3nm~MU*Wd&BYOAXcB;tUDi>avUJcc|#cyv}#p9K}kqcfbuozvz{gwAiJQzf_wce38
zST*Kqta5?+7zW!*H4Z#L;5<Y?9&yv}-xuP}8&W$rT|?BWClxn}#WOQceafK~WfGd-
zR#%%d3mb15gCup6rTnE95_-$w<K(S0DU%pr=qoy|l&BG{=-s3%I{O`1)HsYzDG#Y$
zF0CSL;GQO0Sbj|&W3841V)&ZqK%z>x#y)*$(Ss4bFtuG-q7J(h=v%V{o0sE_j8c=(
z0Rmx=%eeR`#tD<T=x}Cf3X7lOsP3$>qd9-k7E~c(&kmSRYnekE3SbA-@A(r!4|$!$
zX?w=6#Tn7vD`*yNH9IOVwKqHnBd<&XgN^V9MH$9Id&RtnrJT_&p0C%1Dio**|13O$
z3HOT6?unZ@*N!JPC|`cIeVA0IM(!1LcF65X=HFNEzG<IlgNsa~?Pt}OG#-IpNt$oI
z8;Q~sxYd*|F*F64#eVK*B{9~cPS=6S^OXC-Jysf+9EZq6=ybmxzddj-PGEP9B9P)p
zz57s7C6$q{>rslBK=BREZf}L(1>^gl)p@|k0NH1QXZ8%Pyy7Q{?C%eF7z252(dL08
zI+x|%_ofHvzF<85E$g+0ToY?Cu)h33dP4XX{^?OH(k4~rdGeEWRkvSU(Jx>ATLEN}
zj%q_>|5yR{ajUVSYhQz0fDKNxq}IQ{d+R7hEscIaFP%g)1{I~P$gDa8<BkSfyNh2l
zfCeb8m6PE<pZG4wOsp|$yR;lSeDNQD*3^WIfFC`AUqIWKJL7xiRPro7l1(6WW+gjc
zdv*<}S;uj(WoF$q)oTpNS*g8xzk(yfEkD2K?VScQJ9^}4=O9)w@U|z|T(b1mMpO{Z
zaba`y{De!GS&46wQ^R>ZM4S?K%Uap`00}ONtNtApao6l6df(QqKUSR!wvA(fzU4_q
z)QoY;;V}M#$d}K&o)0c96qWa-nX3FFez{C2Ix1{=_!(bGUT6Lnmrmu`f*3<*b1EN<
zi65X95Au#2|2dYAwtGa4(7|?j;YhidLG8Bd&dKPxVavd9(I?LXRo-s4-Zb38&@a(N
z`BVt%I4{5IQGNr|eb6xj9u|9p_vmVl`2;ZnEv};rgg@+MreR<dwYq1xU7BH7bS(PM
zTuCba>{E*nTjW~kvyh*tP=<)Wp(6FoM&o~0#Tu4M_lERHzo>RPg2#zsBkU^i9}v|d
zD)EH!fv$-w=3wp#33?P#t*VtG3$8uJDgn#yDs@13dXn2SpZMwy;jqFQIsk6rba-K2
zj7la|vb@ojc@ODu@FArYU36zeh_Gat5&f7E*&o?w@?(Pz4TwK@%l|~;{CL=j)7K^G
zJ3EwS?97_DK`uc8&7^r<T6d11KcnQso20TWKkuZhtoAL;a*bM<)X}0t=nG)OI@IV7
zgG9V-V6eh?dO0zKd{`B2Ra_D&34)%U9uBj1qTy)bjUBEr{jJ+a*b6&0X+tH6K8E=g
zxUyAy;V;&0O1PMRf05s4z3(Q!4wjC~#u||N+dxB$LO?V47W1$H@~;Bb0m4t!rJ@<6
zm2m%w69KZT$5{1Gv$5{?ktlsN3`G+d9OaVqQ|YY0RFjlX`4#hX;a_Ex|22Lym=gC!
zw47Uc9g;x~J68F<bkLEP(VS66PE8QqOtCVY*>9{G5hGhcx7ZSJre;?{52)|N8^IlT
z)^VYQLxA&o>#X(XzPj`R{$_j_3h0niu$57UmQh{hI_b(E^I9Nr*n;qq-n6nV3ubV^
z|DP6&Wv$XhV(eEtYTeCP9*t@q#I*#YlB;S)->wq{A_P_xFwOa3k>b7DOXO}s^`{~J
z9%U>T=vCR~02dU7<)1{W;p)9!4|UOKisIJz4^2CU$n;iVB`t2WpmZiYrMfd>MNDN~
z1T{z+3`#*LfEhhcAHv=|J<iCd+}YB26ZQE6#uIK;3u31{D6&w-G;c#g4EOnX$YJEW
zQEg*~;Vgt$p?(YS$bAneS7;1S5Yegy^sD8;Y=A(hr$Tx`Bt~|}hAl4EXuNn7Pm=z)
zRXygAl3nSSyaO^r-w0W98DxYD9h<B6HFK?B4*oh&@Z5~J@jdvrIVg^PvjGczMJt7e
zRkEw<)Bg<oV5T1*r#KZHW378auV#$^cm%{)jmdeSvf;=9WJB7bjNL+XlX0|pYD-Du
zu!D~7rJo$BCSMVQ5zpP~k97u9>GF49W4RZ~RZk<xJoTR`MoE}==oBU*Az74MB0FmT
zim93FyIlilH|Sc>ib8Knp3CU8WaD$GUI1NPTvzK2VkCd#zTxRlulO~<e^4W(IR0y0
zXkXemg+|zni;S)U@xlN%mi&xM@JbyD*ayavk5k`q1ydnh+O3s}Cj$e~CR_ZVL~EEY
zJZ%YGheC}y>n`k>nlfXdT~NijI{Uj<?Q^EN*{kcHv!cD&!%<0zg%I~Z|5=LI-agzr
z$gRR@*Hin|q+{lzB{N|iEDlWCN=Tepr+5q!u_ayZXt(d+AZ#ZZj?@^>RkZL=b(nT!
zbNU8iM@f$<8>wzQ1{HdJ<&VxsKgI^3F9}(3dZTBddYbVx#muJRez$+m2TR>4*9&9f
zwEv*Kti#${nZeuYk*)elc>x=ePtKSsTL3KHcbp2vhm!O(W7V$WQ@LdnGe<3nZdlWo
zrxQg}yeKY$Tb14n+`%0ZXRsjd9x@_Rg4@4(%<#4h>sUNOU;r0m?{>@RgQLA$^Mv<R
z=3~{!0vL8h68Sr+v$Xc)&mTE5&2>Wmrt%ihT=P*|g`aX_G?M#DcT53adMcSb{s>CS
zK#9)$mu$Ln(+e|zvZb7Ei^B3Xbx;lo=qh4K^`>GzEUNb8VvKy;{-!hMJ;8V%2|X1c
z^%Dn?J7%)a`xu4lq&EDen$J3D7OnqmeTdM#yyKM9&I@eA!_aBGu$3Zg>_?}VImv-#
zbUelGG?`G*U4-2UUDGRrPWf^jl`?m-eW7h^30<eqN_lb&D7QQQ7{O)tg?7;Mh}x*h
zL3w&J4Krdup34L6`w%g6(2E!I>odhO`G7iADGZqym#0x^n}_=>X>G@9hrS{}`pPs@
z!-rz>Y?0?W<N38qXg?W$hM*tnU_=nm05KsXDm@7EC)j6N!iUVfjnlYe@8-P$$GTn0
zGsEk`F)G(gvbi7Gfpr`yz|=nO{E(=mHITio=t_O`Z~VlKGL&g(sp8q8Hi>R9YCV-k
z1giIJN5NBGraLqtH1W-aF0t1h`{wN8i7476)u9SppL1U<n<NM&fx{Ho$`|#o?-UI(
z#P)?+B4Z!L)l5U3JMxmUkrEg|n&U!y{<L1p176g@CqKwSD&!oaHsRaI?_tyOv2%8#
zUNR0saDtYqW?r*tQCzp{kL)JJO+C+2*E<GAHB)r85~~p2p6JaSv2pNL7BLda0zkTS
zO5D=u;0}VvU~iIkMut)$`vBe7nK8Dn3*{>gD~{J8gF0gnyr+NB>GrRz3x9za%pxzm
zBS280!Q87>OnWvcJtyG|f+^3607OsMW;n9^w<X(HCYN4_Y3UtP6x-`jYhED2#n_#2
zXjY}m>F8r1FP6+TcwHrLgImpEeNe+Do`YdsPAGty)sz{s*u7&cWBN}Se`G}^nQ$wA
zKjxn!%Rd}7EP!vbWvG)ING58_6*T^E75f$*HE&81$-?6&Ni3_tF@FIA+Iljj%3kj=
zqcS1>Dz7L#%^oDvMvU7j;!QWu76Zlgo@DF%5{t_wb4Y-w`^Y7<fZgT?y&=dzMZ_<R
zrCDHl_4bH-52ISFq6Th5{qivc&MW6c_Ib8oxvM3nbcIJaM7ND)Mww6OW~C3;??mBj
zu|SQK4~Q(pd)}bB*2Sn{BiY0gH_&y|HWk;6{m(FvJrW5rEnB<8JO>zz4n6D57rP-p
z3MD-$Xz}&S=&0r(P2{-o&<HAK3xs;{T`-)nG%;WF79p=jx^&BSl%nko=kRH<^ueat
zH7WkOY0PUM?ua*OxMsvXa9Cb5%o3D-;?<V`yc^#`k_C&iPxGQZz~P6k^EnIgu;bJ2
zh>ejm<CF0@wVFfDb{tX>U;nX5)om{XSoUc1kLu5!9PxxU#)A_e4!g-g;-)lT!{t31
zPo+dB3bH=RA2a2j(6zr{c{0b1?TuYx+>3OCZZqldV+}%*x|=T9mXd;ztK+9I=(~4F
z<Ve3z0xf*WYag5@c}2~o(*6-JB!)SKsr>=0BgyxcHOZHj)TUdDaptrLF4QX*I#t4_
z=<9<G66ev*+3HAIuuMZOawMipKQGx{^8mVgYPSyJW2o;|hauIdV;Hst*?q1DhM4!s
z*$}O~jAzag3_y_;U@Y^f{0&8FFXF9E@g$}r5d?CQU?~E%>80Hq^aKm>6zoB-_yd;x
z{R_V(@VWLY^#eqbwhX><Bc<<JGo=f^xD8_=Ix;zf_3O40FnWgw`eJw#rvUh=U}x`?
zn^qT0v60&#6*Wv>E&`zI6}_nPz)BybSAH^XtqP*VRB!etAQ*c=O$n}+{Ba@tg0nMI
z#cCvy_gL-G^8~Od<qkF`;{3g%3|Yu-1c7+Ro&ro`^K8*2)x=VWu!7lk_3z7K1S&{&
zldy;beOeWtp@EbEu>ii?;_0dabJZ0F>E7cNpqe@)G9i@uj(1Abiu8%JUpz@hfL|UC
zE&6=s%HBe3iE9>G(*yv+Ht`Eb;l*Qz`iDW?3BmW?A#UikJ1mdx>JLwwp~=@iw#(LE
z-z6)F8yP!9*-u$>tQF@RJ)Xr(=KM)NjxA4ja!(b`sc9%m#vLA=%=6#K)pQ#1zd!$~
z?w%m7dw{PGbo~=vAKi+;l8L8$_^V!X(`|NYNl(k1VglB6dM%1C_x8nPoQA+@!sj`B
zY!81w&)A53l!`FF;dJ%b0Wb@&F(hf&HtHF3mXN1*6;&^59RE6wJ|J^W+iHB*^K3`9
z)#Rm;bb0d6hDO5c@U1bpyWEm4#{|4|s5pm^?ryZ(fa!(1LeTUj#5_CceYi8-586+r
zS=#UWfU})VaN^aq_s7ED^h-8qkFOM6V_xT~iKB$Mjf5ETE23OZZG{4G;)A%^QpG|(
zqS!D?5|(QD6Izdw`bn@Z0*V-Jqw%mCT_Rl=1jbL6AWuK|1GNM!m-=5|cJT{1SE~9;
zFHBoVGVP%jarW;ieo(Zyk4Tz#=4f_|#|hBj!Du}Zo0lmZq38nyF=gf`x-$EJ=_;5=
zDo%ruqqJ^#`<wpjopv1{=+`P=q_zybT_&(81-v_%4MPOi7>eefB8b_`k&@!eI$EH6
z2_Ba=?n~XqXu$@C;O-DG7r7gE^nEN!>qJDND6n@@HjKocoX2Mbv$znXAYsW)SEH?w
zOF~~Z{i;7^$?y{wvhlF4UI>VRDgRy~U54b^aS5|j#!}L+;;!pbZg2@BQLu}7VCRi?
z#?@|LAml-0tVxcoxT82mo4$x(8w?|~#R8=h_^=xb`QhCh3l|ZzhKSHH_lJ0?!jhSh
z4Jo#3IP*yAamK7yYWJ|Glf%ygBe;<%_aIcCd7`ao!cu52vGJXnQRK-*--A2}Sf=Cu
zvVL2eb#-0(b2xf}Zsv~WtK4H-TqH<-hpIP66#BHMXCiMKbz#AReNqs?<rIJrf@a&9
zBeCB5VT)4Hehsq<2#i!oh)0m*$$l`zHOEi+5$dY+u^CWS&E~l_;Fzc+!+rcHzxs22
zya7_cZi>Go6ap820etb?r)Uu7d(4J7!sFmuUm{gdKWq0nnFiWs6%@{^BTs%oEiiDL
zQgWo*G;f(K5a}!RMmb60S%$){REpO$j+W>u6#DI7pI?Ng7Og=0$fAeEJJ0?7cDPl4
z*qY@q%h%J5xh)4$DyzNtl6la@D#@WbFY->2t*HBXAxMUSFHO2h9I$zogQxa!JU|{r
z4CLGs98JXkXpT8?F?!gL?s=U09v4<I90L9~t*zmzgQ_7P)hq-ob&d-kU+%lITh-#=
zV4n~>>aD%?Yo!`a3%~a|;f04r)p`K>n2}mngF=z5)%fN8gpH-&zI=+tee@^DhshqV
zM+`z6z>jMzX(QI}7nGJ3<QA6M?p@z9KbGexQ4-0Z-57GCDVTDzc7`NsL}8Bn=Oq?*
zT#HXnAeaT67iMe#NkF#0-K?a1@)gvqtl{O^K|Vn#J`be(^Db=$G~7WCP*cjR6Cwr;
za3xOWGYr3@8u?)Gza7r;K-wjm9sUf9`8-S*z8H6<yoi%npZ9g%)|s2+hsLn<X1byz
zGrOQr%m2t8{t>hWL~X}D^qA(<`96*7a#4W2|6A5FNQ`F>CqfaAZ)0a|(mS@vcS<%f
zzTT2n@e<S4N&`u>wfz-jd4`-IX8Zye3}OUk+We~N?X+;3xy*|L@^U)YUvUlutFfTk
zOaL{{Tc-;Uesb3r0h#&I?WnxT3870D5u_^CvIZ`9y#L>+HoJ6@?vUvQ<Z9dwz{qP7
z7Al`Jxuk@3aj+knOUsA{xgW^lLMC99OX~Hg<#QZr!5|cp5fZa8T`dVgh;R5~(1*Ol
zpCAj48ukhc&<2+JE6Xb<&mO^d_dtI)w7d59MlY6@RB=$teSiF|be5OPVEOb~!v^M_
zW8%bgLv#!HJvnwRpY606$dM=d>sX{l%C38nh^zZnR>bg7sTefN%Dh0`)q_v$EFyB8
zl!|mXkcasnu+)-7hcZ!?6u(aKp{kIE@?-ih!pRa!xIXOD{>IoBM!_{U<y!wPwDGuz
zt5x_j?`#*hxCUU2QHW+~jQmSih40<i=AM|5<E}C9;u|BUxEpWC6*$a?5`L}dC8A<J
z_+HEcC+e>a5$`cTvd6Zvc{SnbkU(N+u+2#+iBw_Rv-k~6e{2IJ9=y1VmsZ%M)T4c5
z{&)YQ|4+iLAuGuLkM;Pq9%S&^!MBcnVBvidBLB8s%XvR7P{Wi5#zq_sLL0nnF51{q
z0xKiVfj?zwPjPsybC;@+gcV$4VbO<YK6+{go*qHt^~Q+dmP2V0lZs6jZ{Ys0G1)$Z
z2IfU$$3C1dVUdM|<pBoOwgo#p=0<IKTO~m@B!e&rlK9>{WkcA-GGtllcadR0JtEeL
zkv-mNYVtD5hj#q7jGSlRNoEa=cyS{ASA^8zfbKv73NkZ){EV#%;`uOJlQqSWMxj{(
z>}b6I&=7NITp9aqggRYAWvgX!NMD02c*;xBd|u_h>*XY{z37DGx=mdx{I89Vc26-_
z*h5R&r!{4$C~!8*W}qzBj#qn7H4|=!_fSxz0@VAHq2z9WSP!H4s8Q4*$M~|^X7__v
zC0kwNj$ZODZwe}I`EXa=wM-OnB>bad(IDWH+NHWTfLzTg0nNZrL&+RSwRBQE(ANdi
zdRNo*#AN7Ub~{eb9$A<Mf@zh*2W;p7ze=fAY`B{cJxACUzla>z6;Otm6&OkkY+=#%
zFjqb}jic|*XthL%xaMO(f=I&Cc;^x8k;Em^+p6nNPa<k}{jZb!5dPzT_wwm`ipDde
zJyPvEvK`l@n7dR@wiCDC+YO7wpdR`*N`06{Q;c!i-pJr~HZ-6qTOqH$y6rHb`7|3v
zjjZ$J#kqV?4&sYizvx%6Q5+}i^wr`)1p!{}K2p#^S+)6BI4Z+k-^u9^RFYpf&J(kQ
z7DzvH+<woM5Y{XUn(K4t^H1k2Jj`hHFefj!f<~Q7b1emNfsahOkL~B+eimfMX2Ms*
z-JP;=XA&7DX?=ZV4fWaIrT&AFb*VS6w#z1b!B}l08p>s@xqNgRku*$W8Me>*Zl~_d
z4zv4L?DUpgzoRU@M=iL%HwP@Fk$X#4_%^^yl1+MX1-GYLntB9~9|Ai^u|KQI;a07B
z1aY9DCIA{^G`s$~W=}M#tfbhDyjfJ1^?NLUTX_pxNqn8hLt8eN^DfP?!!4(#Q<E&@
zH4Q2n)v&R~W3Zi}2-jv%2Y~>X2ksxprf&fgx(6S&iuA4XAO?AP$j&ftR7dn}hCUPf
zkTN{U#C^rVW-(?9Z1XvEB?Jm~WIErxCHi98ykYa-w#P7N<s>MX92he2p;1#RIh*+(
z1SL5!?a!Dah_{!e&ZDy@9``g+m=_D9L$vWE?IMCCy8mibM2BvtX@xA5Ab={P5ktqJ
z=a++}tIe<2a|e=rV8vw;kl_!C^sB<D+#$JYmMiU|7tisF()pI^>V`6bJw=EsvN<bn
zzIG672{S)M+2+Z<0yIvhf9iRyuVg@H)*aviAoTPCPu^?ozU2{M0ll)1xo5Lld(Qu!
zVJ-I{b5O~Ci1aA)GrPAyL_NT}gUvN*EGr3im>k2NJZ^fZ#p9S*O<94Fj!hY1I%rf8
z3%^>60vV}>-_<f3sZFr9i&FE4;p*|bEIVIZgSu*zhdOfYj<};ZT{j_2;u3si(3SQr
zJq(GMOV9gTV_BkgN%Cv(Eh~`?7Mu^>;emguc9s8N{{m%e6Mh)L(K*}5QB4?khROHh
z$RjEkPpDm!X|~|d7f{!lZhK)hah#OgU;$fZcqq9=CKp%*;5Zi%mcz+#?+r!8y4Q8U
z+j(g)=_KF?%rMBvk;Y%!pY+wQfXz`iZH=IrKoF#01|x0y>bZk;nuNDolb!m}E>5JB
z;UDbIy^oGQp2WH<tI<!bWr11L$fK)|<#i#eJ}5B~yl6}P<wx=oxq{u3>W$un&f+q5
zO<QMiz=@y=Yg&m*sH9e<MXm6v>CS~_pJ|qmxzQt%HQ!USLtU}@2Ebip_`yiK*KpIL
zy7YxttJ0?w1*>jgNP=<usoNNcQ>rd&_iC3qp`F;R5PNzfX&5k~bKds}Kn2Vh)oHYk
zia@9>pcQM$vJl2smysbM5IneC+DERFDnA@@kk=05meV;7qocB$;jkp9@Hx@F=PW@c
z9%*dxuVy5LP~q1lOMHWZ9Y|QSuOLx>Gz-vjIF5^eb6|Z?QdDWCVf3}c`wpxu^M);z
z;*@P3unN3BcdGnUeo-^prD;)2e}s@dvpqRMNAv?BPtU|+K)!=Vb!@L-at#PIr_>sL
zbLyU<xxV4c<(n@}Mh58JS5}Ksb?n`*9KeZ(jB9dIAtX%<pB3h&4@0EgHy;z0Ew8GI
zXbSf-DJ0HhCeGN9jPCtw2So~i-Xp#vaRHS)9uDR^xsNzy*&o`9ypwzt=$Hk=h(a9=
zOAbE^Vmt<0$kHi!wI>Zw6ac+`ICG(agVgVy&UrgEN;gw7?`lMlV?1-FuV7NQ?|b4c
z`5mHFEUd$jXbi*@g8Bt>ebck&`5YmCm?_Nug_`b!g@@4Kdo63VJL4<jbYh2Wz(Dnq
zMp$C?;;!o@0T@>u*ifG-c>-9T{($>e3(G_oeD-hUTuLJtJLJZq9i%+QDH3H=g0tD_
zRNtT;puC@MLpOhWyw!x!9o~UQn1&Us;7xEsjv!r(#`Z_D$h)vgBWrinxqd~MwH&OU
z+qh@9TG4>20$9A`15d^G+L7(TIOQSR{ZJ@V2x1)^ITq-AeVzuYsdB?yn)PITBd9EY
z-y5<c88!WRC;z0!;Pgz^IZfJiT+CvBA8f`{TM@a;e$UEWf!gKrhkoPi9;&MeRVlXe
zAV8Dy4x#JLFUrQ0UDvWtxe!2x7C-F$O)=Ejn$xeH){1XYJmDvuMZZT`AWOinKpG+~
z55(W;WJ+?8GRrD$yM$gz<&U18q#xa^XI$C_{v<G}G1M4Xv_nH8EGxYO%@X)ZHCtu<
zzvau=afs_I!0RiuJQBnkImMP08Xd*A^jR-%Zyva$FAW|+b;DYXa9*z2prTITtNoIB
zvj`(AjMtJ?hrUo}n+kHQtbP4(2hWL$#SVmrg+WDB%Lpx$1~(p7ZGv({u^{%l9Wyy`
zx8N*ZHD4&weJL|gjh(=Us!tDm5Tk@~VK+eri7sbrqn|i^A!_XUb>~tNp&DI-;>Od)
zRv)B^710BB!W>P%)B9Sc8ay`2@7@*DI_A%9fT3JpyH4VAwwdjZ{C$QSk0!3#X!o91
zX>l2%I0HEfbZ_J7K)`xjgBtDR4TnWB^AaJ@^IKl{g-^v1XA8|P9N8f5F_CNseQmo8
zZH2*;#EbITimBh3w0;5t{PaPq&&Mo++-titWg4SLBMnyfoaBMVF82bL4a5g?TvWV-
zMsa@O(ZQaL!~%ewc86}QF>`)H4oX84@xe0tr3o@9#d5^7+X8UzlJAm%^daHu)dCMU
zQ7ogRg~(L$CadxFaH5hF3|yQQ>(ajWqjM2u3HWjwFYRPNFb7qm<HMkF6i)(*u)fAs
zm1b1vmldVbwQe9GOl(X=*~CkVeWyM+Z~LrU_MbWbT+rZ2Ns~##_=LHVS2AVsLIa5H
z_{lwX&MUS#65$y)&x}PvB&X<w8)o<;_Mx4gAkWr2%ECfGD9dv%Qxd2D+b$62Xvr>?
zgj`#T`Pb=Wn@cBWP65_frPIk~BD#`*Dh--!K9y_>&ajG@H`|lTsHVNFpo&%Q98H<h
z(UL618+%sD^rtWbX}nGHawuE3-$WW2`wi*h=<<?y!GPKVtmjEMyMN)uS@5#ZGXo7O
z^G-H%UX>hAT{^I(iXH?st3j4VNj8_&`r_^?JcSPWn7MYmS=oYd2dw@{U+K7}Vm3?3
z#CFm?fATMb#Rx;9Q2#3~&cus@)*U41`R4!6ig_YPbN9YSm&j$jo!K_}*FhdHhj41#
zB1qLvI98$p3Z-08nX6coiQ`=Fa}B4I8%@JhIx^$#A6!mD8|=TI03y9cBQ{>7aV*Q-
z39|vSw4uu>922%nhSz-Mg*OLwG*wQbUHoIyR;Hj1hf3&?RjI4CY744nrlj<lUVTJe
zT-G6k-AfHw`u!8-R8-LyQu%jI5Lw*5554fYU`42z9Qt!mfZ|*bs+`1baShz}Hw0LG
z8#2$!wg9|o+R9Q`q(A*UsVH|?%xT%0&xw%MTvXd&bkt{0PN2blXe_#PO%_}Lmaal-
zP&JBN+v;vT7I{Bm5NbM%SVH~Ao8XUUW64u=dRnH|*nz?wxs*yK=Yx-ALQnpx_8dj^
zrpo$l0&{jcJPJL>G`u6@+k+X?dY(7yWk;q60*%mpr9Naebuz?DDBt<e(70Hu<&;Y_
z?6nev#OrjbqpO-C>>^EVv%TQ`x*8??{bou-5ZGY4toE0+qs%p&DBneAP`NEZ=)X{F
zQG3H{RbUOyU_o<vK*;mQXFNxW_r%hf!Nyzw3?*)nhgFurN!yH}@PQf9V{YO`sE-Qt
z1LBc>XK3XBE%W8+40crXC<{T|zll4GV?u<2%J3LnB3h`}2?cogqcz=R%G1}uoa9xZ
zh~d^&s9CofVW%CX2gp|Eq$bdR6vVq0z{Znnov9JWVW=qYS?~)TZM@$Xl&xKhLa+MS
zOx>RM+~cvfPfV_#s;}aI<i#N441K=OyqS4fjTwnzvkK~*bhisYCTAVa#Z(Tgx}oy;
zA49k+Pd-1kK~pJWnP9%K?FSLQ^S}qnUtmMv!E_xYnm0IMA}3MYY(8DBk9pl+Pd7zW
z2wsGAKv`9YzN~Y$Gxf!SyMY`LPg~ybm8EqDW3}&yE8w_O>`V41D$aq^UZ}FfTxQi5
z?q8JkP3<5yJ-ASC6h`)u%YD)#X~^*?eEhVQx-PI9tp1K9!;q&04x7NjWNN`PXx0tR
z`qVc=o{YDPTU*3x;03Wssak2sXIlj7CO#{;9Et$*KkN~-jjGoZPeod~P6TM-81<0B
z)*>3)Vgh0Lkx`fdV1!V{9Dy2`)qWbBo)?r5d|<2Nmo|*EPRs2qMFsW4-3MJuHGLWN
z{sFbh!ulHaJ!>W|i#-4zh$;{z#x56jc>RbS8RwND1Ep(EIq0MS3LV&^MDQ=DbgOZ4
z8))X?1D_X!av!pHps<+B%ReO?oe4)nAzR~?$OE(|7Gn}}=fzI5{sK{$o`q&c_`_WX
z7_+i)QpNe`!nRLjGitauQnmmG^D;rg>v?y7K*dG$)L{o+Z34w8JA;{XMgwN+!(KyH
zAM*^tEJ5G1Fy3kt#yLpv-$jsu{%oCdcT3U4OwXN4P9*E@f@psy=-Gmg=1C2W(GXls
z%py-4eL~$^4U0>UV^WPS-`|e^vk1h^=QUEdO8H9frTX-mww6EUEr)o>uJPcK!xJJ~
zamNjL@L==`g#;fr(W_vusX<OlfP+p^7XMThl>Pb=ALzTDqfz_%+K=Jl<iwdDhok@L
zPV?9%Kf4xC%Chz8;w~~W5`z_@gMWlqGiPIkOemCj+C#|))7JJH+sQuNnmhzGxgtz@
z+))^k;^HpLhq1=sQ!R|v2;42r324V?q+~gy$l6*PEmn;U#$}VaUt~#ux>ouJx%zKl
z60PYD1NSRI)$Po{%sB0s=2vQ^jgR<|@@~n9Cb2->Cn--Sg^cR{Wss0AU-y=$(oklF
zLapqD+s~;0kqR+D(@GbtI83MG$noOV7KUIcl#3+7MH}%<D8uZN_v-f+bawBDwB+S_
zp}~zRtjCBWa?;P<MaPXeq^D$bmzD`5^Rp23BV8>00Gnu|<XXOUKO$bvkCa)x!c_V?
z`L<gt?$P-{Sp5R9Duvdx`!wkc6g=!*67SjoTj4KSaOae}SMBcHav7PzMAjx^z6Mm|
zg($YIb0=<&?gHIN?ICO2yJh$@B&#|80ptwf6&H-jVdI*Y#)TC9l^pYCG~~$(%W-q3
zUjick7?hRW6q-Y8ogmz}rKUzAz017euwxQI@XKRy-#UOQDOvrD?q`E9K$Os=;+uud
zAQa>|8FG`C%&O#Q*Jnc^5MfTfsP=#}bMvH}>m*a?EU#{?c~~@#dPENj4Q2G;?N}9C
zunE0Vh4tD9>!o#B-TVSKkHwcVErVN2#M&OcbcH-K=x`t*L~;+>t2HCfY?*(^9$`b8
z94Rp{EMF#Uufvak$ApG1O1H3QMA5|T8eh&A+<*BBPn)a&0iGJvbJnrg`MbthTY1dK
zf>VA+u(di0kpVw90sspXYWk2A?^lubkLFc;_i4P|_)(^Q!~!Q#TJ?b8|FWbdB+Z23
z@xrc_mzJn<JrNboCClGU#$A2EdDr?`By#p^V0uRWb7oq6#&*m}dvZsD*&aL9{c3Rt
zEBr%vYX%2^EGVytfPXkyj>vfm;<2rc7%lyX#WdPWUVah-@s33|v-l=kp=gyg@JWi0
zJ-UIIDi@*0HrB!0DjC~oPBUm!=)%2mCCG5TVMw%Z!3|Bj6C+#96XD#g!~yI@VYCOW
z9{A|uT+9`GB+=k;8$|riRU0_OuBJ1BMF*GaS^>-SPYzWtND~F6q=l*6W2(^N74%bf
z{%d|Ql3WK$x@-dGWY5|DB&_^L6V-Cx@^_5B7j7r+mZk4^r3<87;Dm3Ws|SU&+-4<q
z6-kFN2Ns>dx9K|)c5nl0Ns<?=D{T2vhUB&k&&nRBC{|_?o|AGOWb6r}H{VA<ay$28
zg_yBm6C7O*=8$F?w9;6)-FZoB?p2K1>dpE38|L1(JY#WU80micIwqN~V=!mYo?vBl
z6N*|%@7x<sB>WRW&XClx+qC<7b$x`FQ-8h&8eZSL_5s@r-nI{?t*dJmsE@meJc|-0
z=~}~XcHBj(IAruBnyuoAO=us_NTic>p~zLliXPu&c;)ky(9DeIENRcWv?)`mX6bRD
z7xVB5!z*y1N=?{F?YiPVD`#OC^JBFvSX+4xVqTEH;)ck(E-~R$`zIC|EiY~&ID!h{
znN@kV=4gytG35vd!q7D`G2APTW>$!M_}QBqv?}i;xlA^)(c*I8{opoCR+ipO-Ei$F
zJf=kH^gz!~WOMMsFkna`q(kH9wMM-$l{%Qf=%(hS(p0yXeuojWKJEogf;iDH9?#f`
zY!{gBJF8^`+(iC6`GRZD8C@t<Q>J}A8?T>3b~e4&(KKw_So39XQhFj{a;0_`w$DHp
zbS?*lko9L{OC-j~y-?k*Rud(d10{W`HqTa0zu2A4d0s|Q7Gzu1`uO)yt2uqKg79^N
zIczBxKnjb>5J;8rAsFn@?@D_vaNKzL1AVnibL~>{o55rI2KapX$dOoEcB(3AUJ*ik
z$?5}zBxZCil=f7Z3GQx1CZ`}$=!+4R8V{d3mPJeds$e4PqFqt*9q(}*B`k%p`EY{e
zXlWt3tJeWiK2p-W2gwl~K~l#RpHXF|?X_3X_Ui1o!+Z5Mz`8(_M2*2lFtCVVs4MZE
zZzJvbtHxk*n7@l0)a0NuR&XD$iBNa^%K^#Uc)xG>uE%3)hyYa(%?^QZeC~<#X9Akq
zpek-}51)(9+r{PSU-%!NZ6rHVZcf=0*o>ZDEFP*bfvjS5o|sCUTn~r4?^^W$gyy=f
z!wXG;A7Xv^VabK<Krb)mX{nc8aSUS6U&*$u?7Q`Su;6)&iwSM&{Zvf5CgsDpW#ktT
zn)kC+f?Au>$6Eprx1vH!sM=EdLPdLX!C0R>Lu5EfA)|SWD)6_g6dvz!q4TqI9uAPd
zy&oKH?tPcrburfN-jhOVRTZQ3#b>ye2u(EvlPl(`t-|J74~P~!Ov*RCDg$Je^%Y7_
zCb3VcS&F_kW}$&uiPJwB&cxIXzVA12_Swvv3<?A>Je3eMQJdjQGQgow*fn)~JHAnF
zqxqMFTW63<#dP4J<Kk=Xic#+R2ug%sh1$%KA+n5dYh4ujp>M_?+CtXkJvrw+%l2XH
zW@ullNhqH2t{VSi@4t{8;69;nQNIJsSF(TrfOMGAu&y<<6DpfRc-XQQM;U>tR(N;-
zWBUfUF<9|)DAJcX_aaz*BhSJ}8&bs;Se2zwOPdBTQ~Ho`p8|3fEmA5Oj+q(jf|C1S
z<A`9h0UEDwbIoe_$Bi3`tkXYZVUO;9^tEx?nb4}(Mr84PqwMg48e7L^t^vY1FmC&+
z)^ANF@E6i1V&=PSHT0fUjY=xCN@aO`+9>Cmz6%KPMHBOmR3q1Vj#SDNlFLWf{9(0E
zH+7Hll+NHw^9|deIop|i+=wHB>9NN&0g9Z3D!aIDiYF&f?lM}@2ZyZQEKvDcL0uF$
zoJ|tT0ZMmAo>JY8=v8NYUSD^%lE?GV&+cFoCQGs|&~HuflPYB3*0^+CsPp>RoeEP}
zqV>r_j)HUbMrMxcu1{q7`w3y0{4*&@gSvy)_RV1p6Q?01AN#|FB@`)D2rgZylTUE~
zvQ;Gf<ewBfc!*ai{tN|=E{F*%&t_Y>)0nX*!bVxE9Bit5WsrCc+V|7->XU&5KXdso
z>fsfN3>{^sNyvb%zqG~ATv$B>C`Y_$c`!Sx@os88AfuD&AM7kp5r~}<e3-}G#Q@?7
zr(<<n);RT<cG-XGVAGLvr&oSfS2J4Dn2V7pdsw9}VFVM0Gi9|7lsJYRH=1R4dE$_^
zojT@<uC5U$DXNY%T1)5GTOJ300N@U*l`(s1O~TIV?+z%tW<nov#ehE&dPB^kUO-!4
znarFKgexm_P3+T3DXJ$d=7>ol=!raEM^joKhl*aX0w~*7dWc@{G|S?DrZ$vQqWRKJ
z`rz8#vvrPMnIdgd4d%1&UeBB&a(<UnFSPi(oj(vt?~wTCVoCS+Rnuy|sA<i-#MHse
z8K%pZD4kNX>lIQzRG0w@ftSGj^~7IZB<-NzusOfChzAtg_Bby=EiWgyo}}^sN_xQd
z&V2N2n~)h(gM%l2ips=!ATcE0!tH$ZX7nBt*L-QXU0)BOJ7SwPrS52Ph_TZ}K^Maw
z^oyx|4LGAYtUQ@5nEDwnvg7qfhQ*CX-Vajv!rwe}x`b%ir04}R?IsA!xUJq0EOQXx
zgmf3FmM?Nnlxx1xMU4OqEqWShI~$z8PHNZ;89$|;QNsRWpZ`sf`3;beILtq*vsUX+
zws0dum9@w)1TK~7<RrmG1ubf|O5nL61p_|~v8^(^wVvlS5c5h4S<DQDe5!EVTkQ<0
zzMSbK&r4VxErcJO==xGtq^JG^n048Y-~taQ?12^ajhn)#6=c|$;a~<zSzEd1>QGog
zC>-Ptuo>nP>5{C%v{K?I#uuAWki9*4VW+60vwKpZS!C`cfq_Z{<UsMK;|UVM3G(_P
zTjg9xa2g3lLn9@kE1sMO=Pd$QMQ+;g`QjFBcr4u<VR(JtBq&UWX6a5vWYYOdJR?PU
z`y)6W)tXgQVgI4T-9`A9rqO-@SzD^!H;1;jyUfA_178^}r2SQfZ_P6)?<8aa`RYT;
zD!c4gI`#C_NdkoWuXxQmvx5B;A)Xf`nj5_d096+Pebp^FMuoru)`9x@BU>lIGsu*8
zrSlt_{36g{^lkZdt$Pp->LksRsdj|Cp#Ec|!XeXWz_L=IWsoh<r~Q>{EvXs#uA>Mm
zo77&+tfLGS#CDBGUHzE2)l?`(m%>Y>ef+Ez+$e^VlNl-`(&H%fSF?bKnl_-y1piAl
zzP2^GG-{U<ABMDZl>Bg|YweULjJ*~~|AU){T+9>rERrOc5v!*h`~$-}$1Z|SW7di+
zbv3XCc|rM+`#&Hz>((oZ<Jv$%3(WkUy7R5iCm{gzxd&pGi=gO3q0W%}2@wQ<wh=vw
z7hfcc2omCYGT11!9ueADteCNyQ}fJ`0n)I5jbvEK0;rQi>unPh6tGDpwXFrUc7<Df
z#ynqHOnl8{2=3!T@Y`@Adfp~~^0PDbSfX&NO$SdGq9H3OZfT~IqhS06_CsEjZW2Ov
z@t6rAfXg^+s_@PcD=_4KR>zZ=aM7=)Z&#)DXPF88Ckfd&mSRCjLtDScdQWt`$U-Zj
z0d*>Vy~$2kVl;*bZL5a6-r#q+TJNQN9n4xELj1XgIV7-){iAST^8@Q6w%NT~m9QnB
zb)>4>0Z(vJRqyOAbg})$g?z5_aLS^@n|3|E@6U<{ULM6vjM2jwAve47+a-8r<_=F2
z!UCj{X4{ih5BQd3Z^wF0Q!8xA(vK1xLOi-r&J61J!lTDwGZCZHcSXIv>=A_TckYRm
z!PF<DiMSpfUWdfaY7X4;Qj{4Vj0U7KArfusvc!;oYo<b6Se)%xu`|r#agDpPUz^t4
zt26|-8K^);;oQIw7Sj;)-S+S*Fq456+HT{gnKJ98_bvU%Y*cdkUrDynXv42zkkq)O
z9Nm9sHbJ@t8IO=F2x@sajR+XJKGl92oybce|Fn?mI>rH?9nkRMk6Kjn&flI1)1WN5
zXpKlAnzIo1IC$W@OGFNn7J$QZ?F*<!mxCix`!BwxI)*`g?I&D?)WqAqN=ylg0&4`m
z!ihz=i8;uLWN@SQpp4E;r+nw0LJIHJ&>@o}*n?~aQv!M@9IqFnsj9pBu^J6hIQmW2
zmn@U;T0@^znXzDbtN2{EGj`4g1Yh*GY=(?bB9?~@w~scTPzCMu%!g2#BUrpd#wq?`
ziNgQ7S6}juAGZB*{{Vl@&Y9gr^LpX8=e@)iJTh#)GYW57aa}#5FX-XVg#pK$dZTNl
zXEtW9rL8Nsu70Ba0hrCb<|>Vfk%>%$j^~a!S|KC%RpKbPurptn<K;a;6S5^(XpVvr
zDi$D@Z7{2LqrfdrGbJbiXH(X@Qfkf5N3N)_4+8T2lIxb#l^lbES+O*OpCnWKrklT!
zzOKU#KtS*=uIfKY6q$%j`;N^_^<1WFC#f8_PB$LW!|SB$Fa^v(h`BREw8}KFkEZJA
z^Uz3#RRr~o25N#w7d46jwm_P!05=XxojRcth#JBGs46oyQ7sK`NP7?A9yaU8-oVX|
zx)m`1gOZJD*XsJ_SIighvILvulC9;+_Jb0|*1N?LBv&qJUK}0i5pot)vch@m(0wFK
zMG!KTpg>*Z{FD2`H?GffkRS4Lz})~0<1t4)+5n}tK}}Y*0e7$dbwX{r8*Y`9MK_Cu
z_0`&cJLehyD_f9M1|4?Kja;pM71kKX*?7|b(}pf;0?^KB0Zl9WPNE;|h*y93Z%F<w
zPz!_a`Up!_omJ8Qe4goKgpTHR%LojtBrW2SJ>#l6+W!q>Jq4`+Hrnj|e&`LDb9_IY
zFS?4OrkL0Zk2-Fr7xhn&wp54&r_(6Q6R7`$o`j|(o(cc1S2hz+P6480@_@5^RkY(w
z0U*z3g^jgP%CM-^)9-t9w)h#QPb|g;N$TTRH%HnDG%yx*Yjs4`-|)se4WBbzmOe{s
zS@6`q2cWh7$fptsXiCxwA9p!sd7c^<x3@8`oFo=Ul|FGkMx?*}IoZ*@EaTqSGh-x&
zaxv!&+S>TK!TLiNpPMMg<OGpBeNrA19eTU69BnIBJ3#NL&&C2To0KVOBj3H1FAdHv
zitU58@tR5|iU2xW4kOj;f$c-25$4Vz#kC|?EnWOy88k$4WibcTyO=zn6dUD<mUasa
z!Qf5B_&j3C%57N?&WJp;Y?U2j(nnP;Boqduzjj%SXzPBd?v^mDXgrN)@#h-g+x;wv
zape$sgfuU|2`L}EP8e^Qb0NP6sxY0q=4N@TY3wvt`&zrX6K#yYJ6p+ZSqfAJ1Lb67
z3<p8&n}$!#GdnWeb6%D=$l86AGo56DV_t07%3Zr+ureVu6-0LvH<~*=!@HzU%iFa3
z+L=ey+8SWs?PFV*N)Xizk#@rUDH)3VWZ@wb;B1M-E%FD^I1RZ}@SN*7R1z6>JiY(W
z{j3+B_n%HMkQq&M={rBM-_M2Jq*<F}_ew0D$aR!#mOIecp@w{0P8a##jr5P^pK~xc
zCuG?@zS44&SfQdzOb>k|HW<|D3Sf)#5?Ur@h*qrV*s@{5&Yw0we|Zn(7kn^}qSlt?
zldFEuwOs65A%2}4&zsY^xCL}aU!yK4<WYyqBk@fSY<5!kP4lW=2$At$#sKpSy3(DA
z0<5O(rDAZ?gJTXC3^*d@{BNbF7oyKt)0iW-Wr1MzRYHZnNPokwB$?J>04bsVpid;e
zn2z7;XbK$;iBI;<<U@4h!dPoRTWsze{;sF_Vh#q%laU&jlkq&QZYo^oGGqc%K7j$?
z%zG*N|K0>RRD#)Kb_>lW9(7ncZ4+6V3sRG-Jd;N7<>$tv9~%4}hUU&U^k#X5_+WS{
z*rCiNEJLL-d7&`2HT+LaX_(<^$1OcAB44SJu*(fB?wFR%>A@_$IFZAb#@5y$7e9(o
zrQ5}tTs5)!ODhg|#*i0b4SiteG5*DMW)rCvl=Mk&MW-jhPk*O_)T(mhPN<eBS4*E1
zI0wfCNmZJ973<li93!6vPl1Tq6Zgjgw>$i@%orb)m`@2vNN0ll&=plAIF7k^*vbVc
z)M;2LN!F%E+Z&(s#;pVw^>;b&W7P=p>-%5ax?AMWUh<OP)_@l@m?{N4tSacNBt4s7
z3ORmXR^%d&kPiL!{mIf6j-Dv~tKXSPYsvp~y-7LAYc-TbAH_X)OMv3Dw%Zu}4Pwss
z`0D5%c4=@Bg**^Ef(9q3S=e{UbW-+vIvPljO#?=9VkEkz=Vg2|cOtY#q<jaQ6~-+O
ztjJ&w;a=)t2+nBVO#eeDiOPIyT0ZsjteJawDlv^3r1lil>9-CaSUQm3%6C|TIjGKA
zW#@_8dls#uY7sa1i>c}62u7qd#<!yWa|Qq+ZtC!S?JBj<xL3y{S;q%MdC8yi-D4bn
z0`dd(@-UrgprU1sEj`}_K&6IUKO&ZqOKq4$EkQm8K6U$NZt;(p<Gusn`gcy2M0RR;
zSjVoH`KcGcKl;$?b~?al8&^sOmqGYAPy>1%ys*CsM(>zC-S0?3`-ruSs(|keA-k#m
zwQ87Qr}cL}JwmoA`uFGV%XY2E8-5A>=IUi~(rBtbmYO(CW!TEUSrO@}qW@T<)34z+
zZ~vbq50FYf!p){kB>WI%aI_I`I6Jz7iR_`1+ll%OQ<k7?#tUkPe8XTpQL?##kF%hM
z4OSh8Dh<~J<4>EH|5_02@?`m5N0<hr`B4*fFgj|16z7Y=LUMfhZoK(me`TFUBQayD
zQ6u2!E)k=rMNPa_+B$Hx#Nj9e$w^5b{8YXE;IGG#WIYY@yzF(NT{4g4sNqE~%fiWB
zJzh<KPKgPWIo_CK7lKukcBnttqqAThcu<y(nAZ)Dy-BrRA~y|x;1)H9ZJ>;x=yyH9
zENc4jMca-!r&;$YX2Z7>+u+^uKzo&Oh}_94s#wLLpbd%`1iDUC3I2fcvrH$3L-28J
zWcg*$%yVx<oON<CJSxR{CsqlDI=Qg%WM(QLyj&Kx(3qtOc*gOgUoHh0wu{UiK6c_K
zD)Pi?l}dV!bH3?oy3XfJZkoGF&e1+H8;j=asP^v1Q8oQ@4+moG-}*4<yJlx9{(-H!
z>Esw?{$Qonv0Z*gA@<r;3+<)L@kzl1B+&7;F%S8c-&CXre+t_deSGgY_avw5uo0Qs
z-d)gt^S)gKKDf*6x0w<#bIJH|E&x)vKc^hc=1s`54a&BL9*_mZvo5gBZDw`vp;_Gh
zbUC{OPlp{iiVcd>3z|{IrlOn6NJHdN{vPxYL=i}TAs<r*k}R*-m~(YXC+%iF57MdR
zZ{$W)J2`dCKv`no8d(M47OMaMMr`-rhS9E89~A7aH*?3<q6T0Bj*_3}nfq68R!zXs
zMO|=p|FGbkMg9(I`h0+!>ef_23v?-3mWKZ%`fYx`8DRLrM^)KEOY>9XsNTb(?XWua
zvmHW^xJ2i#+7Sh`!!`|y>!Nte6vA~!p;!)SDDE4=H<ey@iG0@Yy%Mk&jyn0KmMhDs
zZyh$6Sm?Vtp^aT=oRgdw-G0vQ7)zI(il38ZE?v~NUq&-?*3eI<va6$O{5d{f>c5=N
zI$MzOOqv}}2P^7d)SSjW8khAg(OpCQ39hl($}ejVKm6hjV{g?~QL0wnoFO!ST|{=6
zP6oty$a&@$WAHC<7h&y8*#zUF*ZYh#pA7Taf5X?m)0=hJQ2dUtP?yCSgEnM9jS>dw
zF!^YoGh?SAp4*)w+yWxJ5vkRMN=m}%=|sl%`V$K=XI4Lyn*5~m)qaaL6t{>v86vm>
z&iy<D$VTxTC^<w$>=(s3?e4sQu$Xg1c`p?fmFOU{4JpHII=9V~G+&$*9EuKe0{@e3
zxHCvH+AE=AO6HeVu*wWaQw^h?5DC-^6_G482qZ!R<w3*lPBfsLTMrsjA5zD<`mMU;
zgmo)g4;WbA4$KI4)#nJ325J<Rz+~66mBjErSiAYKUoP~zUxfI>5HJb{{($VxZuF6)
zyOt5mPz8EB#adMfcyxU*rdvhzuzSF*OZ|*?MOll)meZw8D=MRm0+lTWT-3%ILUdB(
zX#^s%=M2~%5uhhYc(_mhBpWLWl*5Rm9Kp{v^4g`sM?W!JD88=P+-hiWk%5kIxdbR(
z^y*v-bf__A$SzV(;#oKr6+a$9&pHHW?|yYB`q2R}j*ybjUGACP@$QE!Oo|?2Z2tXY
z)MHD_;ojk8NWl#r3xm>0kRW+;98jD+HZM)#x613z<CuMi!v^SF&o8^FLxm?-!RFdq
zpvf>=P0qv((E<F4^+0LU{%iRQ<uYdz?*u^~VPs{?<|Q+pa)-o2gyp~6_xDviqqqf;
zgdEg^ojv&oO}p^fgz+<HMZnep8*GET?zqMZ(|90J_eNZNe{<lV33D^FqRVd5$zI2F
z?8D-ETKlej0rL1IpwFAxWF-bKaVKxWgu$e(UW{kpxO=H<))n3@qgB{Wk+ZMqf;<J;
z#f=Wc+f-U0goQ8(FTdWyFl{d+{W5Ce)Mw>-q&!Ev;8YYtn_58sr5&!B52Zm@3<&15
zZpWXdMC<18n@D%YAAqeh=NAA+T!~LyLWkS3=ET$yPR`P>#MDPw#JBG*?IaX}8e^xG
zT5x2$?~m=g_VL&#akHwmIx(=MYm!o$48YXAHjf#R4y=rORqc;1MbguzOU5J*_Qz?O
zLH>9P`*r&(Bhl$)%0GO7)Y6EY#D?a_Cz!%3KKDaZvt<emWz_OkJ?|&EuHBSz(!>7q
zpFlEevZ*HKk2?S3(-)Jwp#7cgD{+9V+8Y_uuFcbrtxOb{h+)Mt@|<Og(9)QM{pn37
z(0{KF_{Z*vG$fQ$E>3wLQp-As*gvb#@OB3{ky3$ry3(nW7G=5@AzBt^z`+jl*qAYl
z(k;UOQ3sw8t*v2tK)F&5gdemXrey2(Bs1-4JauXIYTXm*joC6C6%(yqe&KrR9F0Le
z2H{E?`%v3`w(cH~481N2zS30ki1R(aSl80H&h#ghBQS?|KcbZ83u{KJ-}P>(^rJ9>
zl5X@PEGygWXWL6fkJ@<i5-dsb-`r~ux7j~3=JKraQ@|P0(yv}Chad7{PA4`ysA-vy
zE{@~k&ZVi~?Cb@-cMGuazhOJ%sHNVb3KmqyDc%GArccyCk5war%%GXNL#AAZSy?|6
zJfXLPXmmGkoK#SZ<6W5jO`6YaM6UsY(duVxj<84m#kv07p|bjfC2{yX%ew1vf@#25
zvoZ<|DOVLfjq6Y&=ULTjk&lyzxsuvB7p`1b;8!0}z`UsE0rkC8U{5@73fVxiLVbr<
zVNom;ZydskPdA*O84;^+?VMiADm|Q(0*h?~`yoD==vUhEbqXDU77rK8)spSxn&m00
zymN2D0rfdC%nTYE2=8Z;AnLhch2ou_$qHo`IdSK7w1<ZziS98qJK}eb@bQ~?6;k+X
z@&gbUM0SSv#I!V7&K7?Dojl#l<9(B-QQfto{%>NQGGTR<+buFsy1g;{fwi{LNu=NL
zmyXHS^6GwGRT0SQyfjTKT8GE({^~~V-vC6KM1_l1iT0n&UbcX!qkuX=Iu`5r#G>>k
z*cGqSkk8_)HD|u2O^S%sW5X{e{M=?*TZ_^-xZPWlJ9;0uhH$3DN7xpQe$t%}y~2FN
zhH1hlL&a{iw=mh0>j>zSzl353NaKsDd~M2Q$F8uWEV`}6NbnfHjHugg%<nuNie={~
zG-EZYnk9;o#DzPycMyg^PrP}pDaEyUOh4~d!%38E!%$o<*)!yA-#xraQa|;`X8>x3
z>Q2(n5`c$Zclc8H^!BjF)A2?(mHz6Shp-UU*a%3?hCX3vCu1}Pet{N;PE-fek9o3T
zV#b$@dcRhaQwRXZF3-Nmi?$K0IbC2tH!=R3hkSFcDN%27*3=P95ENnNSa|Z^i{(Kg
zL(Is2eG?VxcqOuFm73%2;%C3q$LQY({3RLomaqLVF!d0p3YN>#tw7Q@4kb<ty|7~F
zXk<8SRLg?9lZ~0Fux4a;*}e*<BwMMHGp;l8xX{*+xVWOHPA^!#r}qPcgaA?K26`r+
zO63Zde?sa2i`D<UL^zmK=mvg(JSSqpf4kn+Y;BX2b8N~~t(U%&G7FRFtHazqw3bji
zV@MdO>%{KvmLT95DD0?TaL>A6t|yT#=H84zFLFA?5NPUJ(L-Mr2a^}p{oVB@^wbsn
z_W<d2X=A-oh$v{)ZMrM1y8K{QnQUN$>g>ju%9D?%VGYb1Sc)3YKUA21*e(XhckY=o
zvHC(Q%lGbgsm815ci{qYEU9MYV~bL2xU>u1aR-hGh=*tkBPi5i=nof^(o0a!o}fwU
zpb4+yd3GMfXvl4RQ3m=bH9qqo?w*T{e&z<$mv+zUkFvDE6a=TU0!Q<?FKQe&ojz<H
zus-K|89Nbj!H+#zr#lxrt^hguUsG&8$}}M`owNKT`F`ebQI<5sU9)hQ^f<pdnx;y9
zF}k+<7EsLT<i2Z~h<`~VxKq!$czi+0FcTS{E8{{b+y)eNM3a2s%U2BvTi{nVrgR}?
z%~U<H<}-1VKgPqgu!=v>PCKDSpoc3Q0dg1g;9f-klb;~dj&<~fWUp8#oH*~Ot}hvY
z$c=@eskdDE(afzCbPHRE_rP76t4IkmBF0pbsCm}9+1v;l1SOD<ooS2Xe2L2ssJOBa
zmTzjfdZC80dnY@6Bfr59-6q+yLgPAOPKuT?>J>LB<Yk>ssPo(l^)+netzlP#Av%T5
zxZLGrZO&bMRUUmNH~hsnsP3oOB~&Raku<Ewr8~#jwpWx%pXSgDIqg(YzB^cw@N&1D
zCp<!73OoP+21Nm=0ss{W|HhR9o(geJHDZ10jR*LGs1lL-WQ}ah3Uz#B0D;Y<xNjDU
z25j~L4zbQsz6*Ju47L`b5=!v7GYfK2=c%64I&;G7*mSX8R0j>kQ4^3vB+Jg$_=u>d
zFz@2)!%iE?E}EWE-<?3nDw5NyDnvvR;dDD5om;@Rvy0x7%Xqo>CuiA<qaHTuuaplU
z!Fbb+e`CdEAN6aA(`|qK-)xoeYWFi#f0(~FT3`KC9EJ@_cjBDxdT+jD{Rrb36M*;p
zep>aDo7TQx+;aId2CDNdrmt1Z|98|PEoZoA_o^s<m(dJzys>YxrmrXJ#~lh+9IaE%
z$xNnGUH8(Pckh;BqC1mO!<HkCodo8|TuQZ|A>&%QOWNvovN=SJRjH`532zO!X2L>o
z*U@2Wx&_O+0|amB#WK7+oK%(Iv_<}*x3!CW<ZkqEFS{{l+AhB$F<k}ZQEWM(>SBeS
z-teqlhwk%oR`9GCD|0y&4UptO<H`CwGS_fZyjH;k!CpfHiMDfZ2eLP~oKu(wj3#p_
z^HX86TnUoGO4^pLJI|&@?t1y_GReFkYQqQF(MaO_7XZK&cQEC*40Vc0iR&quoa=?h
zO!{v28OfzdMOcVRy|xVW6SdHo@P8v5E>IX>U{N-+Y>zeytE=K*Ev(*oMLM7tR(x-!
zgpZe)adBT<)#Z<{9yliRaHSItry!pLg{>xc9^pU9)@VQGT9%w|-}E=^4&nbuW6xTQ
zQ7s1tyf8$<pco+YX!Y-K5r1~ipTqllCgp1Gj}eJ~%_|#0fsz;-5QUoUgpefqoa1gJ
z88eC;uw0jUrYKJcF{L4_I(z8-{J`cx%kTVCVEd4BZj6eHDmWy@o9oz+=3IxXp(Tcp
zcu6pYFHtdI&p>%{*O;BeLx{n`%G18XO?IQ0j`u(5&T@+L3!TbKlsonb$Sxj`G(z@Q
zwF8K#pgI3;n36Z-eQ)mh<Pj%RjgU5&#lfq>@=u`>KL4*50yAOIPz+kLpY=RV;lSNA
zgCL5E{LG)(2Zz&v2yAS?0>3UtTu>HCBM<E#q7(30#dtdxVI4!sVGvZ@+;3e<rKND}
zV6l@TZE_6C5-#BmPSAR6D&#iL5Mss&I5vUcJ=hq&`Spa05@W(!wWO0e+gTgOJ1*2v
zXt2Jbw;G7wL831)qcum4lz+OzJ5O(ICsLk(R<!)xzJFD23(O|1Tj>tKlB8c5)_C_<
z(UqSkhUg?c{)$AaTy#I62}9ty@oMdTJV_2tM+?(9bBL*U6FQVg;$fXqsYR^GVls}>
zU5i}l91~j8<gF&FQtj@4631oEH;b94In*epq?`%_nYI02lXB*xUK+!EM^F<p2if$d
z!V5#L`nHE$;ThHpM@WEZh34t+_HdUD2Z2Y*1IUpUHPNEz?bJ=1xUi`t4Z`D-Zvc#i
zy}(aG%5#|e2X{yuP~UvW-pnW!VQ$p=r~jNro5c^e32uNcoCb(IRoCAOx|3hh#e{|N
zDdFn|{vcwrn*8llyI`e^Vjo=1q^aAmBzZeVYkZztcl_hR)H~9|^zj>?*gQk>u%b)7
zi3!vAc;^o@u|oDGy|~tKvED%W7!lxC6W?H2W*wj&6$v~j<aY$PL$WCQPP(qky8rAO
zkM79Wxl9~i5|aG<v{AjUSDA<(Mq(NlrVmyG%4`$=`P<XU3XMPyVz+II2|0FV-dC;0
z%8$L7;sYhB3N`8m82&%cU;Lz?gdoqgYuIn*egp;Vo~x{y_&3SiW|~Rk;K^1dcDrUZ
z6I7`8;I>%q`ILg3{0?dOHYf^24Wb8P42`7U!+TRy$Pnc{b!P_*S<rvmo$klA8`%)q
z8EB^Nx1ERD7wC2l_m{h!`5cpzzI6ym88pq_+biU5M%(djg%kS}egq6ZX9xdqnA%)f
z@L;?7q4#BV_nOqe1@cWze^n{0T)I&?v1NRj4p%PeoCj3qXScH4s|-vmr~RtehEOQK
zWo~QH63|*;5Q1AnIn?^_;d|SJwO@k?#ZGVh<yVz;Hkb+(U0v`^x-rWBe$bo1sr}7g
zBeSIKI%}NoOjGX#qviAik^*>i`&p9(f=Y^^t&QPfHES~xrc_lYt#ORvK%qSHh&1p2
z1G<0!0G+@g;0OSKK|ko<gZ0oecNGRPkU;~RQ2m3uK92j-RUDroX@od3%0}A`5eiQ0
zZ+fpcbaJ3hHt-_F${AwmBFv1_g}7!~ROeYNu~|~a+G#Fv@8BV`hW9;uljKqdzV&kE
zGT3+@<Vqgk@K>kAt;-DvNE?mu!}XkcD9#$``>HJSH}uWVBLwe5>*LV>a3D)vCGK&~
z#skyzn=&RD8xlKKd6uE|Ymu7?;Y*-B%!a=A>8`pwRhw4p&%CvXCywR|sLy^%x)gRv
zA}w;y2ItJfJ%7mRKj$bA0mr!M=hFsNxV)R~n2Twnn&dqD$lIvW8c}1Yg}jQcDV54l
zpV_@DDEQ3uTN?$+FIR$?t9_iGh(>LYl`0uadgJTNlaT}mPQm#p$GHcHzX>!Rlg=MZ
zlfj>A%H{-IE7uM!blT6l>JM3t>%Re0F12iWZFpr)hfio|AWqkUAa=EE<O}`QazCp>
z<~D`a{n0SyX?f#$BR10<BOp%=v_adBPB@_E3d4QpNK!Cq_M`$CQ7k@gm)`X+wI#88
zVoOy?qL`Nv-QNoieEk^#C$^GA;?YQ<hr;u1TMFSWOd-;5+pWDbq5k~woz5(W1Z!gD
z>E8Du3d?ukbIk2OQwv5Lqz0?=_|t+*H32t8JN*v)XJJdr>A_?VZo89ZrAjrt;ZsG<
zgX^Tv#a*G?c6DwVef5+tW44lWPsCz1UCTuuZknIAFOo`vi+-94X&-c*-d@RE06wKA
zJCK1zNehUlwAAYpU0xC2_g!Y1kbSWpQk_i;Ow+%OK$j~gP?5($`c6FsH5iR8PKnZr
zlQN(8Opl-gp%-g%)_N?TS@#N5h6=6#;$9ISL)1k$s_U2|6h6WTstnaJJu!{A`8O44
zAJ8}$VTJ<gNH=M!tYAOBk5v8|_e#`*u&Vb!SnnlM@nsV1Plu^_P-{W@J!jbfeiVT}
ztxMJ^?GQ<N#B{W^BL*#Fd%ikFi_`4-4}%oMKkpL4n~E}0pON&cRFnMGP#dFq5KmN~
zZc>7dh@^&=f%%=S@i9??4n<TSf7|yJ&~?7mNVWC~-FUeSPt5vSm>?4(Q<2f3_QYKE
z$F4%ro^VOz#H0z)r%Rh1iFN|g^zwSt;mBatUgXf4VV?I>xU}p@X!oEd9Yx7TiQGIa
zDvn-w7tbhuoh#W!g~ADO_J<c2p(H%Q5+W1tsoX7LYik*P=bDRU@{z&LODEakDWb}g
zU5)5B!`{^A?*>%0a;vven1~7qV)BQ6>odf)Uf?9si|(Z^7nY@Osg2d<$u!y5RZ@W+
zp<Vf}-u&SdnL(-WbpH5TWYpdU2RU<Dr`$&a7GxZ26nZ&0G3u2o^>v<(w};{0t5GHH
z?Y;pvNJ>oeFYYlP7sfYFrG8lOnzAl^(c}k6xL|p;w3@hukq;!t9lBSS#(6JQC1fzG
zfm34nAL1bJ*yC+Tf9?3(I&F4}xKY|A?$q;=5lM08fsuzNCE6oeX<$5F^ov#BN*33G
z04uqmdpIkk><e;IR-%rg!K06#3*txzsKEe*NK!SN-G%I_DI>5~cvz^UJ^KSs&B99V
z{NbwKE6Xqbaw^t5()%x1180QleucDMk$1Tg8g9Xo-Qq-Z>g%5)8b&nh1jMY2@f_>z
za~P%>=zx7EETsA9omwWzqlKq6bC4+Ty5P{AgPOC=0ehTrtuHGf=BrSb$K^OXp)%iR
zDlFByfDJsVPcB+v<=uG~Vml5nVx5U#nv0`ip}NHS+G=w`MJ=EuKqz3`(=aM7PU}Gp
zNX~OSdqM+ezbJffI-!yJ(c<on0mi%$I_DG!LF7p*2+AY?jO~PKmjEk3)W6Zjxv2z6
zeplEDT<(Rg)Jo9svZ*Zf;%zN$0j{EG=a5wFMq4K0H=stx>nK%k&?HHN#ks8_b8`V`
zfZF;_bDVyyrLLo7M2Gw77+?vW*BK1>e`!W=_nQS)2xqSkT7I)0**9GHZs^&yNiaqE
z7}VJ5WrbSgC~c#CARae$qVD)?$)_#MvRkjsG8Qd(ssl}jiWjl_)!@YH7^j<!Tz~F4
z#UHm1AjR4M#!h#6S-w2Oyb_u4WzfJxMnDuiGv)b<^}K|M`9w?3Y*y_5Fel3$$#IA2
zQ1p<npE>Y%7tWF?*xNEumU*rQAYshf<0rIRAVKf}R41tXFsqW;j#}oZ-?YbG;{Jxb
zHL6@3r1>Burh9HQuu?3E`Yjny5ncL4tU~F&k9EQmzdh#(!w{PNHyU^{)iBSs%iPJL
z#5tN)B+)Hf3YaEEO+a$jq;O-~@?+cjx_KLF-O(%w#9dp-RcEq(Lel6B5^*a(ir1Cw
z5<29H3tY3;_H!IkdNUa<cPg#U*U`S`mzvfMH;_<WhS5fs!MNw}2%r)Zs?;UySK*p5
zloFE__N!?9)&NJS)QB_jXl$5T$uzhX$2`14w;=2;{pVp`7xw?YM0tp<b8{~;-ElT(
zTrk0f?30Y?f8sz`dk=>^r1x^Na**Udgd8xk*wb9N^Xd8nj)MH<YJ$ocroQVAa!nL+
z(2<o_bbI>t!x^#$>8<A#IT^g~EHrL`0)TzXS1+VPR5qYk9T;x5VPAU!k&1OykLGo>
zVD89_-*Et`CsqFte!;BJt4K`~!m<>(%)1ymq(8|`JpIPr+C6amq_xf!hS^QVHhyv!
zl#m{@FInR}D=aPpz?mokJLM#=Mq3p&kdIXGUrh=|1!q+bsY)E8H<Fyv#F9a3S&%76
zQW-YRDeK3EY`2Sw%EdoP>11@ifpE_)PwR4ZPBexS&%%q$-hYACH+o<KwX8gaIRO3+
zRq^l#$o!xnO0@aDd)avi(t#GSE<n9>@@pja8B97$%T6W}I>|6AV_yE~_KSz%1=Ya!
z^42C?arGwgYn+%3F)SK0E4*sQw9b1(a@(daAX^rIDKyD`vCebM;N_4j2!yQP6mwCo
zYjXRtZ0-D6eEhn0og{BM(a)-yUD__->C@U5=?W#6gLGv1tUwz7uH+zHdbFDZTISF;
z*;c09DrJ;ShC)(^An^ezLGlND)3h!>R}&9?q+@*vDU$G~hc&;}TD&*8(H)gQ_wwsq
z&uj1{aN3pD;#bWifH=8%b$jh2c!x#QFvBHaJFgw#U?jJY$tSKvyHvj}VF+jQz=fO8
z`wD6XV9t&+ERYh1B!Rg=&qB%KLFv#*|LY|?6|Y+}fGHT@4DB>)9or}+F3X?kleXmm
zoDiq(pHza6`xjo!P;DV=;quX*m=0aq)Q)MZbCaN^ZFk)vT`+)PYo}`7cx+6$lYpTv
zm%=*ju!^P37wz+__MtLAm-Q#U8F`s(SfIg;0in4T=+a_6Mi_K?)k86)mcs;@>rgxo
z&&-x_jfUB$!i#sJ>x%wV1he|EY~_Jo>*Vs~ydsH1EcSbJZD{kAH9%~vp+eWWo2}~#
z{xz@<W{9=3=~FFeAF%fSv6!04wnIPXnW5tEERb##mT31%aAneO67bRWV(uBHQkUpI
z%kvjOF6*nKhI25NIZ9)Tg!jHrs|~-K<Ksltt<PVu<Ct#Ei6=*fZ*PXMS%NjwfhjG|
zIPIAM!@#MvY9}Km@z{28e3sG%507ehjKf0<8tm6i(5px@<Eo~ck}k^*rf5<D)nXEP
zM|y)y(+H3_0Dx1UAa<8z<xG}{xqZ}^nW%9i7}=o7a>39t6T<l(W=}C)xgr>BMD=u6
zutZAYGxrK_HNKO5Icw#8*aR4BOw~he`Jjv<+UPru5e(~-2U_Q9@<!M-N+U2H7Kneh
zgyDC&xL4pk?DHhSP#4JifC|+U!BDgki8S|}Dxn0xjlH6>RE?=O_=6u!$p?sHA;yvj
zeKBK(@fx`XQxEvm(Z@<(-XpCQ$0-vi8ZgR{%Cl~8vz$AFrA8*~BI^xM4OAr7>)HB-
zgoHm%;*%wr!^O~uFLE~oQyr6W*wxIO73jd4lN`P<u&Y;8m7L0dKW8lJD%QG;V*#l4
zdb;5^+2@?#tH^qX2Z!0M)nsJ`5wyv|h8eU1SD`>V?v$H@N7YsdxOM^doI2SZ+vWm-
zSM$oNNnAT?IDIj!=HJ8N0ZGZsNrtLeJU^lWic2BE@P}`d7^h5TBqdV*F50$n!CBl>
zqikwTW`+}D4q0{Uu<xZJVf<)kVSO17X>WqsE6;gwa0smnjL!WQ(OHBKjsa{{E>_x2
z$(g6Hkj{!#vNjYG@4N#OBV7A8-K|v2cQ8Es)?@3&bLhm=#e6Rdp$t@6$R3ZZZp~%5
zJh^$BN8To5Zu)A8bkV);Ry#K3lNQ$EWC&TaW`BdR^)n%JsusS%>n;6joy_OZygv&L
z8Im1~M{v`fn=wNpCAe|5>ejdGmUs^a%7i;43P)YZ@Cfy=CFlxkj}qf3cqpi0kod?k
z43b18Pqke<f|*^-{dKX~*lv_0O}5<*n~$D&DS%~Jr7@gd^}GatFR3|f?v<X|_?7is
zpARBifC}J3yHtGqaC9gbp!QeO1&F5xeTMgtHdJ)sNUu<5>GrVEiT-{z^Y~xxMO{;(
zuWCncUF>F;A)!u^&TM4y1*5q-9}4;fa(s4p7ix7D3w*RkovjUG^=)=_>>_Mo$SDSv
zb>G;JfGrT-jl*tNzXbycsHBFccz7$`6+}6^5Y7{t7Dm{Hlq2d2NT<G=BD*IBvhT(?
zQ_<nz#b9Jm<a0vw1HW4P#MisE8-y**bO*`%H1n));ZCLPXl`is)?akO$ULQ9S@Ofx
z(`jNmWIYh6eyXh3uPTak^gJd&4MS2CY)af~%%2NrfZaIYTdC9-UCR$#bVtes<)yW5
zJi3kTI$ihN+U~w=9nj`y=BIVdMpSIio)n@j2I`V>u}6!=gqeA3Z?4UA*}2G;AQC66
zT}n}C8}Fjh=$Ol^RPHJ|kp03N!IpXb17eG4ssN*;E0v(!*6vp_#TBtZt%o830zeez
zV`LJ8P$&0ozS-PN_s8Abq!0^c$!LE}IRVuRO6v4P5AvAu^e1#z6}9(;h<5$@q2}-x
zS1$Wio&KOznlqoA{hs4DEGV)m6w&WbUNdjXyPIrl3tA|uL+v}zVM760eH%XL&Wm*n
zDmnQhEFpQy4v5aqlFuLG!86J3qXAyu&wS-G+uuNCH+iBLp6cd#{wL2Jx+L!B4BUi#
zrXSp$o|M3PxmfiPJ)NB?-W{DocTxnA|8sGwJU!lC`inv**;rSP0UkfE>AlEg`mnf+
zBv|7n>mT53B1q3Zfa!5;4J-G;;4f7A;1}0?v2E}-QGvO=LV8?ux~(>9f0HHGy9e1&
zLqeC<gp7}=+7<rb(~e2{2dL(-=u*z}RV}NFyMTxvi?Y<BL%w=o)G6G154M9O!VN-<
zo-8YXNSj+)cST#!^?2jevKojz1x!^*kyB6D4e&`?!;}L(PUm){=@?5LU_;ewb0iD%
z=rbnKwYubAC}A6I<(T4lpa%n{To(reFF<mYB*c|gUhd9ccr`@_`S02EN-hcZiZ{FZ
zpwHVxiG2pxrm_wBh6I5^pdzacYCNZ|^CJgE!;{z1-q?10@BpqCB$_Vt6GItE=mxlr
zw*lCJM4__nkoPqnz;n<Lkx&Lmd)C}5Tf#l*#hvf<TPR?R0^y>Ta;JspJEc^}7k9xC
zcJq=zqzLtHi*67l>J`a^HxM0ShV1Un8}3Hh1Xkn><jRT-$C{hU@iLWdqT4AhAV~sT
zYkGd6$iWtB4y*u(F2wSUDML>K(~whPonKTJJW?-nsh$4t{6jQ!c9|jTNjyKZ*m_qk
z%Y`3<=`rhNah&#?iSZi;z^Sc9v8$pQ9zNkGXp*ieu)CAd*s-SKG*cjN>+q-atYZ20
z<r0LnQ|cNLugkJbGly@Vuo?HO`coL*t()_ECE<6hYz0qA;Zf6-lWPl%paE9|Tb{*q
zfLYVsrJ^FYa%qK;Gw)%TUHXm~gp<a6NR;dr)KqcdRVeOILBf5V)pmu4eC_)Yx}!&o
zz_j|};VF{b-MA?ODei0}f%T-(nlDs66=oqRL`^gM#ccM4>P~Mru(*_|_JkTK&vjR|
zo6c3!XazYee#1NLX123yd{%^@1+_SrH)8OM0a5qZi;=7KlxG7*grVJerSl3w4p}9+
zegYOd&jS~6FB^F-c4F8sv^`ud_tSK*%izj!?72Z*bGWc7N^%1nO;h2gEMear#NwZJ
zeMLnxBbSNEAoNQMdWr*@$Q<T2F<UZ;L0zcN#CH@Wyn3(={y}Rpl6my<O!9n;&&FS~
z7{Due=RWOT2Np@5<T_B9*t;lYC1T72ptATJn>;QqSU#@&U^hwpYmp4tdnGkP2itGO
z@j9jG$AanMLon<{hm5`7#}~D#Xbaa1(*QnH>(d)wZd12kjI*4<Yk<vh5y_#&%OreO
zW&eQB)isu9kqG>I)o>iz37q6PDxM=_oxh&nEd^>~K}UWzEgZl2CRB@9JxBikKdz<5
z+3-$aKEMHuNc`1Bv6Vj$J1%p2*N6=TX{Vcu-F3#rFL`Xf?h+f=k2sLy<NSDlzF?}g
z>Uf^5D=cdWg4=ga0Uj`wFNl=k0lpq-YkeA9+s;Y9z*kdT-@`;}X@$;;z@N;!_NfNb
zeNj=NXraAOS{-&t(D;~2YTAhiU^>6I`qnd@3Z;qFKrmF{$JUzp?q3^Yq7r(x0$3lX
z_m=$y8%Y?)GIL{^E*3oh>efVqjY%J#5#tCzYA&KoMaal_0{|0HSsud}PL%CjLpP+r
zcr~<RM;%XheECA~!8!<ZDQdPrq%Tc-hi7lFI9w}^X2y9O6oLI_=HhDWir?zhfJnEu
zPrv}f4xxholnaB1^xYqq$Y1XdAgGyv<>TIVC5LtA$fWc|-~*ZT-h_<r)Rat?N`3&K
zjmGBxdh%Q5l|=6+Hit1&XiBn9Pqg-1S4OBkAP;iI#xsP&9sV~IAK;Lx;!eUH_ycXZ
zN~>+dwok`dOz|f0c%y6j9+n>v!;pJWn4_GMxdPZ^@9w|Tj^L>odmdE$KO#E;jh6!!
zuP+D3BM#S~D*Wk2Nm8BOE_!+S&;;64<Z3b`vZ-$-?;@Y9SP6?7qs3{7`F+*BOiBYJ
z9M?$b+(Ouz!#u{c0q%mp7pvqj5B$I1iRv}TC<0py-Bn*r{ABjcgn*A9&(7L}7KoHF
zL0Vej0N|<sxBl%N<2x5DGLOHxRQ-`f99QrAfG7Q^Jc1h%0o!z1Ty;ID;w=o_JDVrD
z=N0`db2EIe-<PG>4)0zLH{HUu!5?SMA}Z^8$(9iEi*1B6Z8uX$k6^{wZrE^t7p)!Z
z3+@Ad)I3$3*XJ2yzA)okW*r!E#~jP2gX55qSIYiwu0W0cO1}`$w|O)!g{?+a5PE36
zak=H^%3?!+vNhb=0T@0iDu&)Wo+Sq@6?c$dOJM-LM^sD@?dJ!QHB|c`2I;~<7sDIx
zyAIMxGjt)7875yTAMzBiHbF~B@Yq9;KEhDO<p&JO9o5a%x?P|>c2e>l@-0?a{HyZR
z6Le-91y(qWtH6DYgoc(yYh4QA$i0qTX}9U&@XgoUtpzt9Wni9(&yh79o*!FH?3|;_
zimQ2K9ti^Si?^@}vZO^=C~sYNug@~}1Wj1~{dVIT?!o|BU<E4sE895^o)}t<#U<SR
zkR~jbaraeUaTE8U%;UiZHmnEjNI5vToOc5;t(6)b0B>nXgHadH_r8j4^wy9z{NONy
zd~z1rmwHiSk>w=c?IsYo7psu<z0p74x)X<e|G;}Ym1_xsk;A@u&-XXO8I(8n(pl2U
zT54M^vMMgtQSgv88vp?%7L|ao)L&cQer~BgL%UDR)Iq=Fw?p}3hErWr;UgE5PhT|Z
zXm#h#_s-jwxK-O4xA8e$kj97qGo~Dl?&t+=`Z}w073`vkCy0y3!dfcrs~@U}ALVCN
z>)w1-X&<ODRGlzEuo#w?pHm5CHAp_z2f1H~l75lV-z-0ZnL5tco#iKGCOAv8dCMh8
z=@s;uD-SLX7nqyn;QIvK+k5ho-Mn#ego3}_T=fz(kZxMD#{lzr=O6lt3CE>}M>Zy9
zJ2@=?>TM~>AT)I?9Bq>JDb?y>e{cV3bC;`f9LAUwTb#4!R@}lhIua#sW}8j@zzlNS
zOIgDC-XbK&BqX-U%95P^7)rc<{>1sc$ZY0`+Zxp0f?CR)s}3~uWj^DI(Qif~^&)vx
z=4I>FMVML>1USWT-d$|)z#ZrwzZCj?w5)^id`ePyv+bE)?%EqxFcK;aN#LpN$bi<^
zbLWW=<wXbQq@v?ZO?>O)aI6?q6Ddm*r4DGdun$pN?Dc(oJk)O58gOo8AGF|d2#!XP
z`dz7@T}C$Wnx)UlM1?B~+dMY_&HHJjxhW!{F41#;iAyr%2=~xJ>Dj>3#Z^D*F8M?W
zrp`<D<Hi=jaRSzR1Z3b!dsp9jByzysyFxqxW)3Ak{BzGGj(&ta6)9CnNB<+JA?AX{
zufA6rLKc!%#C0>ZIBn8-uCUwkcw6L-XK)%Pa$rf^mk#sq)yjc&5$wk))hZ*BK(3|*
zh*V-<Qol{zUytl;p8!7d7f3By6i<r#VYSI?*~AeG@&0eZX0GIbi!|ppz?YW7V8ql^
zg8HIDRINtRHD0^ZgX6Dk(`+cg#`s!28b)GQ(X}=C8i{S-2ti+8Lp3EDde*El0s|)D
zhwh#2W;+~luyqpIlaUYT(kBKvemTL;#z$5|BXd)tZG*+c*fww4Gj(x-?(^fcrT_dM
zV*~7owAV;g0NL<qlEnnD8@qz3q`NL0mKu0fc|Ys;*|^WGa(IX0otTl~ar?P=zz-Bf
zG>Bup<!5rCNHilZzzhViIOaP${2s59*Z7}8b<c(M!K0G-mn~$z2bCQ;9y$g3dcNC2
zTfytqN?MtU2|9C{%WcYfRQ4yv!ND46um5aBea|*QI;jT<wN_I!H30W$DrDTN;f`gh
zFg|ocrtGmR-DL`YX83`0%)tXKafD2KpT9FWXM1(%hZYurnjOu2D1$2Y`9W@U5jSWv
z(F5J2EdlYrnUoX4AoXh$xby^P>pUO()3P`-l_#l@L|Cnvc&6mmv56HC9;0RGO+xXj
zr$I6jn6{HLPRUJpaEHQMV$S(wxDxyv#d5)|5#JxD<DOX&jHcoeB|%AV$8kar--!Dn
zt$zI>)Rvdx?3UqL;1u|1hiaB|K!9u7ypI@kzXkDp&a^b<i{x{eytEe5Czr)h@Af&o
zE1fyM4jU;y#H+J6u*{Ti5?^kOtx6{&&r2Yt(*#NFmW9%oGcZKlN>iO#4OJM=2gQ3t
zaX<m7&xGe7dw9$+>f~?fhWLB!YL+S|gow1A3EH8sFO|kIK)4+<Q9II5wfmu`zI>5o
zie9bCMn>Tz2mAQk_eCd*htej5Vfk^j?g(j^;x;x09ga?Px=z^Zo-$~eJ;^Ze6bjNl
zp4pqbp^By*{ifCWp)6;<MQ2UIo0YOBl`p0{H!z+X6L-z;2~6uvH9(3iPmNoxF-+$@
zbwJMS$ecD9m@}L|uR5r%Q*$q!<s`PQnA4QDtcA{EO(8lJ!g4S}&=?hJLyP<U-s(&&
z{CP_}CBYXGcS|DoUh?f(MWIuoL?tqZ%QOWPE}OsjO)(0G=DM9ZG|7Dnxet0(N(W}1
z2n@K(SKGGpKq&M_hi^feCHkzk1W?%ajKAbQF&A`@7uBK<)uD^Z-T{+TFQQEcd+D^L
z&H-XoVEeR6{%#eoX(Uh_$Xa<odoH(YE(!i{?Zjb?RCPB%wYm4V(`GMny^ZilRv!B+
z<M~<co{$$@H*%b2<9w?j6x$z%HX%VZGPlq$@50>O|9=TLZ|?P8G4a!_`*LTvNGU^~
z(~G&sd^+xZff3gL414g8Q$?5J%oef~BgC>>6QB^=y=!6T5X(O=Wi2@G>`8%53fk@?
zeLN4iTO)Q;#SP00CuLk0WR{QQQ~(eyI}HgRSnnUV)bp$>^kqh4HV7=}FZ_-(i;B_M
zRZk=bL94+Mabkx~<d{<t(74LQe${|Di@WxG%Td*};ZN%*ws&4WH$yr1o4iJ+KEfye
zmqenxY0<RPp43&i$6F|H=%q~552RBeAzprqbgeZC_;04MbR+7>F21IhyPcdHV)Mej
zLltmk9sA6Hf2V!;yuoGY`&_X_R`CfzRM(~hzUEB+`w_$;V=7`b=_p$PZ(9KXS~W_f
z`r9}IoUh*DR=`|;?hQ4{DIhO@H+<Mt!j0WpKBxnKSMyY3MZ18}&#q~JBYIJEf%UhL
z>ou@92=H(L6G<S)^-#`|?RVyANw~NX{mi*+X&}D=wF<u0wk>&vg)jHtrlq;~;}#$v
ziVqhOUr3c06%lCTe7_3VkXaz?=SC!PS_I2_+e|3v51@}g^E+cp%z{f>lUt@S_vGjh
z**SSR4sy#N_?vfak63}wZFw<A;f%b&(m+DrB(u}3X7Zt(+s?lD(_RN01a?m|PJLjl
zSia)Y!(a;ktq7f?<a&AxaZH6ii&KM-!9NmF(5bKW{9|i3XIJk9MJo4t+5O=(*WmqB
zximu*z!Pio>o*;xxDhw`KDr%uFTVIGQE{4Gubg)?(8pK29%D7pff^NkE04{dpznD;
z-p8eyY`JQ0A6Y&g-!8-=D^R&c{JMyGSGM{&*TVfbc<?VdgDDOpg7MxCi5hT}k-Jf$
zkHpGNq~aTuYz^)4P-*a9C81-X<7vKT$QEL1<9`0nkB<-R_p~snrV~|#kEYM+N1HP<
zS*)mM*t^(G03REeX?)wO+*+FwZ@QcnI-Hw_uMrCurN8tM<;>;Qxi}~as0-|O<jNJt
zWv*>SW-@Ym>_-&K^U9OTP(QrT*3FzK@QDx+J^A9ASlRt)N6<y2JLA=jtw5|ycWQJn
z$gBkzh)n;^nI5{p7|;*BBx)8%?CrmdJ_x)422rG#eCDU~R+Krf(!hl1)8Z@+m;6CL
zN+~J`g#e&}X0b!c6HH&ii37xiY;5D}=?~`jm|purC!I;@(aIovLGHdt@qAEl)@5~C
z`v`*=k%QDf#)@AkaP!dWgZe>FvBEMQ3;d6^xv%h15$I!BR%!$X%3VR~f-T^JR@QP*
z?QSy>9CLmTcR^9OUnH1pd)M*^tSILZ<fd#1uu!}T<p7HmV7L69`8j={nnU{wj-jf_
zc5asH`8h+DZ)4uit-PBQ2U5!qe)`LmNZH1<IVLr2o5)flD$<hC%)8>AahdQIa@v<h
z(Xi2XQ=Iyc2mtC{#f3t)WszxR6eT%YNjbaW1%jIsl9UiVc(@Zm<i|tz8fVAmSjoPY
zcw^G@3Ou-Yu>$JA{Dk*XRM>D@4PxFCjl$Eboy!)i>XE?CdH+}lhIzXs!nE~3tDZSE
zOzi9AG(i*<?)fzl4T&L(3B5E_QhRD&Fl!YR5h_jq0{HW7{Qtv~?&SWV*=VZ#SdNNg
zCL<P2_~RJLRZJAMlR_Q+aoxC`IH?>YPM`)uJWGgtDWX@4?AY6@=G`UTv^qw76+c0A
zPd9t!T$Bqx*+=2TbFV66m9YF>ED(eStJM;D5AG*^$J#5cOVYGeu7)SX3G6jf`vb?X
z)*dDd9voGXPl-?fwPZ%HCA;i`dmLO~?xgtubCTgpSGcu3Q!8w=R?++iDjd2>SS>_T
z&+J*F{6s?x@~kC@n<cD_IhT^z3Oe{OT&zs#?kjhvw^l+ksFR|vn|!vep%W6{z2!js
z1X)QVm*(x(3^Y1|(6;SMP2SP+xtft=JKyG$|8z>FE2WWNuPg<7UV%v6FgwBDOAQ?C
z7s=MessM#W+lilh)TleiZ-%o5eaIfPImw`5=UnbCe>nUlvJCFdw`}&?aPh{%b{r#^
zg$d@AGoa<a`<KzGYKqKzr?VIB#b}#38}n*>S;~D@&EIJeE!CE~+|TNgRX(g9JvXW0
z_(UR%<6#7Xac7<$%8w#;8ZGG_5w_*lWKT!2#=2f4Xy~|Imi-p{4=9!x6$J-tM)lOt
z948P)c-=R`86y81xpqXP*zYRF33!;Fq#w2i%bwN5GO|Q92(^gA_m<<uY>LBm_4SAi
zjd0IKZ#1o4nl9cT4x(0{wAuQtz5tX91`Dewl3Ehcj$AE?b3(3a?9dI)VpYg&q77g2
zL*LyQ{IyQAnr0*yhl_6V8@4i+4itoW`3<2b_w4oBg?=vnqhaH#t2aN#97alYF>Dk7
z`s4QYGV6=W^V|q8$V2d&>ZvY~*2HG~ZA6k}wv_R&(P_X)Dc=rz=oL~WIZWH}_Z&q1
zC=i2bw7wkHOgEGNk0?WwGL-m2g>|<Lh9gI2mE*-i!xm<|=OkMh7#@~cildwzi%Jb`
zBYWfsSj?a{^$Xk#$EvrWKX8Z_t&1PTibPZE0k2ap@U1@YNO^*Lui3;|6JWo~7C5FA
zAgQ&_ZL$n198ZeMAtpYhyPOF%yV`yqRL};2=ftsJi#+ri6eOX)lD<Sza|}FCU6R1G
zlpM5wnyzr|N5W>(h`tIwi#J4mk?q&~dE{56g0ry>{Cv(<@=4hw1amAT{Nc@{E;7%m
za9MGs*IaJ)xFA&k{RNe4zI0HmnL5I^qp+;ko~xPkAkl8_x>Lk0akYtuG1<=LrYQO2
zeYH{b#!7wt_(VK5B;mrxbjYEt4~BKJI`trC0PI>Zge3jGlPhiNmc~+Cs*9o0h4v(#
zc)*N~5o>8mU7)#w2`r-u@+mu~x9p~R<&63XPm%i6&XA1dd4ycVjD-a}nz2+)AOWyp
z#i%=lYo-VBk)F(2VJ%MSpyjrkGls+&cWmVfa~kgqloR)u9edjY{W3|(JuVVYwh2v|
zBT4g~EpFb=b&e^*PSe(^_=6^qu~7aWBUAAuCo3?gi`=;et`!!}r?E~hU<dcSQ^DbA
zWhedK<Bt1MKN2;;+Wfc65ct1zQI4kD!$U$RxM5Fl2ixCexcW>}YY{bf>CZuk8|RB#
z_2tlPVe`fx?DJTOL=CcJ4*ovroe}pRz*Nhfmhahk_`N`=&h)y$?$-D9E3<zyWUD*4
z-|A`DEYVML6QZr{-CNDU8}eL)PDwz8CoKAa%jp)p&ZcWl#?7UyC?b_He0yK&()LpC
zZ$~%f@*zrPo&uZU;FgZ9wcUJrIYkwP`eLe8tG1YLMZA`3sFvs?tK$SP6cxqHum(O*
zK!)v{WKw%=%$Zf6t)Ji~2a9Hc4&~$UlCif&I2VySn({J%gG}0f3DqI%(`h*b!G%_-
zg0Lg^Md;;?49eg<juQ%9WO6ZwXu9Qj!$K@LKd;)}BlId{Uq81y=x{><-CJ`qlkY6j
z%M}wO_UFwH&f|O%>Ai05fy$4*=Fz{L_B|%m0%UzpW}{iHXdtI}d=|x2yb{z92PYG!
zXYaGMBF!TOqN$)p=@)`uUx^gqANz<V0x%9j74o@R2H}g^LoHlQKCBDkx+f#yDsLa)
zbc<@s7Y$T7{=g4WprwiH(Zy7qAEy*INMu9!0Lnf{w>_*I36{Z+xTZjK-a}wUG4^9~
z6M5+!E{vVIr<T2@#{UmAw9a+|F#Wn_T7>A~=jBa_3~Su4lEw8-3!`Q&OxNLmrdEyK
zg*2G|wY<o{4}lw;$cHoyV5`hzZpkOR$Hd~Wf0Hz-KC{C<XtU)5hMoz-A=5d*v+R3d
z4O%Hkf(O+lGxl+cZ1SM>oGV?FO0?HyA>yOfngrrFRjtUeLg&ZiF|7Qz{*oy8ZZs%`
ze$*p4k=xoU-I1l<A*%E5#gkC58rCFd{W`lIWzZ4VeEg|hME{pj+ov5@&|cM`R^k|i
z@ykVyegpa`7>Az*591It-~V4|KMK<U!3H6)GBWF#NeaXa4b6Om9R>aE{dHk5hkWDZ
zC(#h~TSBHHbQ@`)SwQ<taBB~Ltc{~5xwi?iCEPLa@h#9sxCI*0(2ph6qFM~~N$vS1
zGIYm6+t+s}!~H_uFOM-`4~>@P4tTC?*;MD=L}`kI&E3IZbNepJ1|oM_!7+xaM^!5o
zDfzBEqQ0jMg-**UFV&*_$@kc2pfW7$b8othRq*wfBZ182gps~m7R=;%zi=ySQu{f>
zz|H>T<$ku4K_Fj>p|f3zPMOW372SqVmp4t%UzcvmZS+|lbd#<L8KtAKo``P!Y0Wtk
z0th3E$BG{ZtZtffEBMLAk0Q&t=ge<(7&JDO{nFL)nGy`ms9pj@)Xo98ZTba&Yr{RP
zI8l&8r@30Ft0QwpK{^JE%lQmV*=<qFnL4XRz&TU8Nq;QhfkNGvs`rZ1Lar1a7vMV2
zpt02iy8w^>sHt(5*V5b+@9oEpS=2l2apso7f;Ok~Z-C%D60(?nQcX1Y880La%#!Cs
zCv4*a>VeQ6>UG?KYiXAH>M4<=RoHh%O4WbTz2pY>;u{c*;$jD1Ib+DzTi*Vi4l5+=
zJ=&}xX^nOQwqaG2>|i3}02DWrorawr3L;pYyiLb-nM6l?L{vf`gbeo;{R5i_IdfC4
zSWT_xBLpbly{YQQPfk_y6>ROMQf-baCd)~{?MJ~FcvZ}6c-V5RY-vHCbur@uEgBCx
z?foCCdT=mdT5ZJ@-^tF5Aoe-9zhyM{bWCi*;2h$pdDgCY8)Y7VBV-H*+9-cSAx7c5
z0z4bZhY4d*>_g&1R#x=B5*F$n>G<+AG<rkJt+d<usyVBdFupTh6fuw}PdQ9C!!Fsj
zt<j#r@&d`AL}*A<b3gZw4vJw^AW#39+brK_Y~+2Hy@p&0)ThhhO$IU@#^Cw4#cPAn
zW=7u3Z^$ki=&cM)J9$({Xr;&l88f;&J4bXyaS<*X9DYWF(C}!<PbznM^Yyg#mn8Wv
zy_PE{#ll`w4c!J8*iy_$MuRNkCS0lOaJydRXY`~J(phJWqCxR?(|Xo7RPqN>Gy%$y
z3vdbN@WIQZAlmDaNv#M|gZ+z(qz4NGmxQy{rk*WU^RrR7^pECs$ukV-=reLfR107>
z^*>O<ZPt2ZWcmP6%?c_6EU3a=h_+g>#i;Zi?JY{Kw&+p?|9p226Bw3^q85XARdR$s
z+K5Io|9}sdttYJmnsT3mr^Z{)U0lchUQiex@Y-%%@IVQfCXR!vQhMYI3$kvBK5mT2
zj5&HYWT~D6WWI~i9`!N69hGVsn6n_52Q7)}{1L>LRc9<t86v9-aKzHqFnw40`(>GR
z*|#G#av-smhj3jK-<hQkI$tgo8>OHqyr{`!O6`d`&pAt6mAR|0gt8c^>b`P;Bb<mx
z_FmE}$hdNG8g58iy3|j)keZ=-9S*UgQP4^W@YXbX&G$|PcP*GHsoHS`-W{*SD>2tV
zzj_Xon1zI!2>deS-(Y&Ds>Iyhw}4SCpK*Uaa9H8BKwdU>IH~3OK5vB9o^2lRwYWdY
z8T!u>-G{3cDhV?q5?B;jp*(JIOOG2u7CdI8j+0(c`kyg5&!}@pMU-Zq+Nouu9UQm*
z(0PS7qUx}A15dxys}56Ir~W0@Y))pe+kXw66VYktIm^SLIn}rH{3v3;6$WZzU6MvZ
ze0p14j6}p_+`xWf_XBw^yh{vr?I!p<nUzH8s`)Kx0vJc0if$s#x74rpb66asl01t*
zzHNLy9$*pYSdtARY29uKSr(>47`rmP%kzDwBLNaezn~<T>9QNdeK+sI?k$n+UR|cZ
z0EZWi^PBsU`R<SX<x|9`l6gFdZ)MWb+dq<r%Y8JLmTHlw@9@L~&gQ1=y~VH&{xlaf
zNVR&l9<Fm;Y+e6c2?WXAqljQ($kCO$PU%RbA^jxKwVM$xscLe=d8p%(%B_3Zml8^(
zwYIQZpnp$sLD$ObQ??rJ-uC5qN&K;IWDz#5ZD<jsLUC6+(Ud7$sgyd~;y-4*r~Dxy
zy_B<zpohH(S7xm!rH>d#=GaR-Wp0cL0N_N3?<V!vGL+T0Kecc<rI+D}EO6gM%9l=0
zsu42>Dh=giDBQs4C(~F?jLfxh`V&AdDUN1%9bztQVWChubS@T0ESMK({%`ZvBYPTL
zi&eT=5qmo=mp!wF>{Pp+qSB3-lWXAxgwZ>>&Y|Mb7#I+M55Ns>hiNV+f$14@IO&P&
zsl)#N`h8}M!<hfD#ylF5d}OH>FbsLb^tQE$gq7$HnSY7fw{eu9vzOnzbgu@`FIx20
z@SsTMqmaO(G5QyVDV?u5oBA_7SE;<tj=yPMZ_d2kA`E~DFydo=F$pD#0Tp%PyTz5M
zg&B7vK4*ADM4)bWYISRaCF7FF@duY%7o-lS<+VCcnPVS4SlzRPb#~0I&NwiXTQ|Oj
zM2VFBc#@(fzf!((OfKWNS(r{8e$rW%Fe}i-Mmme5H8%LEAon#!L5F@9*on_i^*Q4b
zQ!v6)w*&D%IFlIrnxM<xv=6J|Np$MMXaZ0;dz8<I>EEudcSc6p%u<T*1`0Gunf&hO
z_;2*-C@aD-or1W9JmZ!`93V`ln^X3ymS-<ySYl{;v|Hbe=aZOC1{pxGKF}Sz@0jA@
z{+MI6P!$WU-Xr@Fs5w5WDex3jx5`{sBuS8>zUAQ%Z5tt5(gTT>-kiof@&BFUAG*+v
zFX>hZ2{{SwE&uvyI!ThvPo&8GtJTQzgIjX{&??UX#x&4mX@DJUC|Ru3_prp|i%Gl2
zp{;<J9x(!Y@O>MUT5=9Sw$0f^H~wkmzcH6nkU|`kW%n*uV1Sxut7kn^l+wwQIPCRH
z)r+I=4lzTWnu}Do>vl)f%;CrQ7d>NE+j2f&MmrzNl9&eROUIno0rb!8GO=oH19r1c
z0g4Lyiq2eZgh(Q>bD)8oxzqLhHZYH)L;<YLo~kt_3eyzpnQI*kH%9UG`1FL~Qe8GJ
zUyI#^>ehCuN;sbY-B69Foqa~b2HI}4O^%5OR8M`DHB^L#rGYwmm#L)B4pcHt=TU2E
zy6SXR2ba!$d02surcQ~qXQ}YX9t;uUq+m6#a(~XL@&lW20T=PghTAyhQ|BmkY^`z@
zi@Rt>hii+Rr5~6^q>hZmbrIv*+<*wa3HZVw(%gh&bl#R$VI2yg;a_`c4tW)uzEy2B
z)m3w7Pmt5SscxU%$adoz{jPNe2>EVy`=nEW{@tl;QY6<YzFx+_;cn3nx^R~lAbI&v
z#pK{~eR%g>%AV;&QW)+m2S4w}4&1P;Zx1ob`st1txg}U>RR6WUZf%yHswhBWw39W#
z!gui$Rl8m@LL-xN#`uNx<&Nb#SJaiety!x20r+9<qmnFbjeKYsk>9&)4|8ha?vHi1
z8*E4re!DCsmeBO2ze|4r*g2nG0*b7!qAmeCnR+`hhU<g&a3@tbBfli#Yz7P%2s>ME
z!JJo>ZuzB%o~Zse^rv{X4*d76@DPiuXU38aI@;~2k(vvmZv{T9DI!zs8EOzM>BC9q
zrR92a=@q|%zz<D=ui~|Ip|IDW0ML&LQ?ln1hwn~SHUSeiciEh=?ABb6Fwo66|Dy$j
zu5<7ZiSOH3(_=!;;AR|{Szr{L?|V{s(|%kX3~kUCdvSt^gCZjsRI1|spNSbR<1K9%
z2!u@m0fbbk&oz}0$8qLbA4_nwMacj>=GP6H$q4z%C~Hiy3hWz68vCm&B*4>W+IvDJ
zRw86y;)2^Wy)}dx^4gn0oQ3v$F<&iL!Qyh(Y%JzSW5GSLz=0N72=mX5r9OW3zsNf4
zH>KYI--Awk(!t`+l*Bn0zdSU;NQ-Geup&w=cCQYahYke)r;6B-0r5asbx09<h9eDr
zGYm?9>Cmo#mTKaQ_Zo~4@%bO|!H*khX3)`70@6athZ>1@&RKmauR&4E<qpNHsj;6I
zO`;F{S0J7L1-^l4)Sf0;fQ{Po0lx+=ItQeS4Y0cm(u;u*piE~#o06cgJ2Qh3b7gy3
zq|1YST}FBHe%T%?pL+L>2(3g2S-{<|X8i{LKVr60>0^PZeuvs95W2Rsk+ha9sIY9X
zSjn9EE<GuJrbdhEqrJ7CeKD_?@nnHKIbjjeAy{Ql443|wb_+P<Z9>?KKgdtSG_1+b
zE|T&+k;p`=@a`CVr1Eu(qI}aj2~`vkNBf9r&my<%ee?qJ;-!xNcmzzRwZ-vTc(5>H
zi8e(sQ7onRCP+IV?bCwi8G)RQft;XY#1MWTf3~%L*UA}cf!!c`?2j4O%_zG5s`$IS
zT)fs+!!Uh`bL;f<9Eb@&i8RgHLH6)VqHh{LRsR8yyLA@VRE63BNa?6-XVq+1ENR}E
z4L^GA!Ef_f>?#dt(VHxZyVq-`=8U5+qMmY6xU&Uoq-oY;KNm*eeO4l#TiesmQ<Y}P
zBa0YdWBL2i)gUiOrO|Oe1iP5TkHEj)X6G%hgt%>l@ZP&A^+=d(*}Lv*E$ZVgdmPo4
zW~XLrheAmY{t~0&`-!UdZzsk6wA4g3(#rNoiZJPtlF=`z8|RYiNN4*1WOz*RN1oJP
z-jFZk=tVBRYe1%_kBry(y@!A+`Lj~!hC@`9c<`8((>!5SY5?sv>9NzdDD6qSQ({NA
zW(Y|pCs;}bZ@%{tC)Q3Ff}~B;37NtG^x3F&I+1{yGq<bc>-4mC?QAZdU$*qB@Rg<@
zp8wo+rh6nIp8>CPE=1Xo_ht8!Rb%gA;Pk5WXk{4aw9#bz|I`|Zf9TYLB)tM%e--^>
zniLu$^h!m5`_-L;mN{Y_(HTYQn;EX@B?A3v8+6e`9M<)(@q_G|YfOjIuOwNN;q-Yu
z!;6(T$We6XDB(GG)^o_NS(0xJ0c`d|!v7mv=SZ7OFS3-wt?@WtFe=gTk$APc3&k*{
za36@_b}zr(IS$SqIDSWCD>QTMS(D&^tm<q56z6QB^BPj|E>?Xh+8YD#uYagM>oaEl
zWWLA%ht`jqu360#Qh>Xu>#~91Q@0vJx;u5FXWGpxs`2Bk0;?O*r_xB8*BNQ+4eynU
zfF)R`<2>?iZ6C@$kAeKxeiWV++|*VW{mJTRBC4GtKa?#yxG7eK2YFv5<Jx`PR-Mbs
zi=|v46B!d7`&k(^CrZEXsv56b0Av*MojN9M4kHvmWt}c9l^mhDn~hJRYJGsJ8z(^3
zSN4fFmY?cNaeJ`}w^ov0hWaK&b!`U6-xvTs=~r6p1*nA=m>ow8o8Yy(i~b*xOnf|A
zg}SlKnu-?{pzBo?1b)s|D~}fe;~94Yr^u=BNU{hYEVxD-5v;*BJjL^l8&W!OAAHhw
z`7&gXo;}+Q_NHu=?j}%XLw=Gyxx>2Mr*zTNg?NiL|LHe*0>JL@@GS4tRn}}%W9*pZ
zu@~R6CABI#;L>KG@1Xry(3V=%l2Rpz&9ezR`~zbpq_cBWjm6k{7<N)6lfh=9K8G@W
zUw=hunJ#Jfu<8i4CXXmXEdGTj?ZM?XZcpV6#=*>6S&=&_)`mP%BRqR1=vKVlifZq^
zW;07jgE8Fl{-^vIVpb^*kPqfg75T)^-!yiHktl$y0hCR5dz#l-2k~5##cFj5)Obme
zJrcmC6<(3}nf8F;s?1A1#>Z@&b46RkMC<$?CV1uaP_d`RjOA~o#*m?yn-dC9y)PV9
zj$SC>#WyaV%}Z0Z)GMlg(qz3udO5k)(h4C|*e}df%oM#Tia7ulL#vu3ABAKe#<e@+
zES6r4jhyPlS8&&jFm!3cl{npT=D%)RlA78D)6?~M3R`9tUk|OZ377S#{JC8qoFr$}
z4q%&iBz?aa0^;;~thdS4^-PbKH4fE#xgyJvL#b5n9X2i8yVw{YY^)4zSE=*J+nOdN
zD!EsApm&B&jD@CdE=Q2<u+KouKgJ(=9u-(M>Rd}_v-|o_Jh}UUrSd~lj<Fs0W`k2;
zf2`D0@9~;fe;bB@zhCa5Pj=M_dwR_%ikR^=T~XO+Co3xK5`Nz{B$W<7{b+gi2;Im;
z7xwMmM2j5J>uGhvaH6gnOG&m}!?p<AKb#Tyw2as<EI0aIA3&LAQG|Y<ji{UWhzT);
zftKBOE;vdyaamjPlE9Fdx<&`w#OHgV4#=3^AJVHxE)am=mv!KsqA(=;#sloQ%E`WW
zXot<Fu_5=F$TkcmegxQdow*DWXe7{JRbSEqg1}w3L*Q3MPg|tX1Ane)?NA~nV-@<&
zf9SJ!(QJtaz#si<uwlTOQ8G6FZt?A{6$4t@jpO{~SXwVOCo=EO=qw|`Z(qK2^zUA)
zdTLDYR&q;zq^&(v^=13s;_+g6N>A+S_D;0G$eu6nH#<ndCE8qX2r;%L{`n<v5(7G`
z2gCt~^|Zk*NGh-JEnLe_Pu+{{t5MDIrP=40-LD8zrYL|E$Sn#<Tzvbhn-W8y=~3`M
zNyGkeCTWd6j?>eac~eap7(y1)b!1A(<#dd-H20(%!$pl<lLJG?S9~D?w`-?k7S_RA
zKvFASW4|t!yz!yA#Ij?>eyDkP!}Vh;fGyM;|MYp6Pk)|sgveYe!FKWi`-{U)J*Mla
zoe_qJ(N`7BDRW0+QmOL=v8N&E@)EltG-z6UNpfj@O|z3hocaE=Z%IBw<z{A6Tnsa^
z`))h|X##=l3~SZwy@!^_$hs#iGy+#;7DlDawl|&zc8|Y>`zZLo?zXhi$Dx4_HWC_p
z0~$}W*Cx8Ch=Atsd=NP^ybi(wSB*PUM*UQP9O0YmK2G28cn$vA9c>eco8kK}Q{cC#
zdhf?-P|azZjBeI<EW{idE7<LQr}eRqJl=O1NDwMPxLC_kL;v!4eqlGJL+3|qGQt;B
zw=^ZeiHh(qrzPL01s{jdEcBzOKlp`=w`w`(9Bg1G1Nk;datD&^q~UIqvswN@Q5UPc
z7e7u0SY1W<cz{tDNQy7YXb>rXB6WZ77HC%$ae|}FeR^oc#>hdaOQW&lC$nPkFIzyM
zI7gF9%?6uYTg#AsMRa(xtX4G?N8+|sOskt!Q3T&CxXt}PDe1OsuknN=p#kR>_IkiB
z9spR=9_i84h`W0B|EkzQGCngcf;ZOdQ9I;HFsy;ri&_5tSvigXjFg?(!d~GIauQet
z1~0f&d*T5GI<}(?4|wgjE+o!{DjRGeLc{C&4VGIsSI6Nlx(6kGe<=$SIl_0HWyI%D
z-*`|TPagI8;EWIEhIzV_41AlD8j7U1c8ho)0`?E<cyl1EOVl6L3l8KBW62T77U{u!
zklvWpyAiqC;`FZq;VWWNXJB2OZ74yOBhT45d07-i9!9Nqpx+is#&N6!$LNWFwq<_o
z@k~z81Ga1=t++z|HZBF;Mel5M?C3YG0*)}dOBdfl+g4d%-^pKAYu#FbZ|wh^|HAw1
zBG@N*G>+mXx)eWn<>F@6d!FmAw%q2#1M4wbt+EP(SI(t>Iu2$Hg=~ZGGISjF5JjB|
zlS6N}Vj9tqnTgO^cuy2~M+?KL_OZnUv#5Sp@sqx7RRyOjw-~^QF&Eb|CT#AjUrFyg
zKoa~tz|-DDpCaz1fMkb!FSvS9aqJLJT;%jYS!X~be{o=u30RTI;UKi6N#RA^5qkiM
zMZTCi+#M9(>*z$s&uX7qi83PY|M)>h#FLB)Vqv^%+Yy?zPGekS{$EHfOfEH6s-?ZH
zoRliXtq}z{qYrtANZIXZOZPh#8n>TnmXdnYID`r~W!m=T2S($++ry`20t#UA*#{4X
zQPX&Bb~sJ`4=`!PThY@S2mK@%cE?|_{!LzmVxH`s^;i_Dd-=5QC9W-Yn9R1zLB1O)
zGwu3hS}(fc0$2f;219Wht~T?m+x8(3Eg#OS%(Nem^E@iCuy)&5fFH}IW4_GQT5$}N
znUwNDT+Nf?omJ)oQ=_{aKT&i3&vurIA5PS<6TfG5eOgkq4`Torg|CCiH`|d4ZWEs!
zC0Xm?mo=|l)gSj{^Ex}1wDYbEc<R?GpX4-v2)TJ3YDbhCa8rCCJMJMLHI%Pm4Y&)P
z8}Q;buAikWu(graY8Be6cz4;)Bwx%c5pzqB9VfORlOQ%*z_Ux<nvvrnGs{993eDSY
zMSA^Mcp9E1YJ_F>evt9__Z~E0$y2#3K)>v?hT)(e-UUow-xaoMC{<xdq#fxR)Xis3
zSN+OElyfc_$bZ5vA+i3)N%`1=RAh9k%`W1g-Q$vJv2EuGKDUb3Gw%EDGeQrxJrt{a
zh6xRP8cV%BSBQE2zz^3R=ZQ?)6;aS+O!I2iGqaP-OY)dpHt1kRM{(2%#wI+5)9hF8
zww?cCj{>!@`{Z5PGC;a_Axl#pot}lnm+TJKfCH(a6Y8i=Du5~7kU_@**r;vtQOwM)
zOwM_{gAR4JJmEQPE@a<UsXd(kGAgkjNKAN{5n#M*>H>~vfv9jz={WQZmt6F;@2I#}
z8kAet2mW4~X$`Ay!Wvo$=gtsKLHR5_X~Y*}-q)q9`YMLoi1Lq*$SannE34G_4Dz3Z
zUbL%hn`3rY8`G~jyTkFHJtIIcx&B0a1)`qWE57Jxp=nQbAs4XeIN-@n+`g25ONm=$
zTZfsxX1n)W0*WG9W|l!GOVz@E0I>|SsplxrJ+;UF@TypqU||pA9|wkfJ<ErcPhZ$1
z2q6=lH!U&KQMkKiNAA9uLacIkFyxRfFMW53qfC?TD-BAKbB{1iJp#ym*;6d09?u*8
z7relB$?}i$?xC7YxkI_(*ZVNh!D&-MUdZFANIS^w92I3%CGxBZL!J`}!BP65SvMJp
z=;h+v6-ojLO1wdv9f}}n3rnq4McL2fO|~qkCo$l(I`kDcZ&sC9jYD;l%|-s|4z@e}
z0)81|m&>F`t@C8zxF*QIcJA0}{;oe-rDKO9O8->7aW0gLx9G<E)-wa0>e9MchILfq
z1nE838>&Ku(lFR`4H|1c=o>&1;nEO0qo_t?N!Lk`?rjw2{Z|t^<rBD-pVxgVQT-(B
z|Ja3N*my7nMQeIBP&o)z9~q0v$^l1}oLpBFz!LoDY<UIo(!`{=_wRRlK~&AQyjOOf
z;9cupX~bCcU6s=(ln!j>;;efM?t}S<RAsWI8lYsLQ<&hH=}O&78ksSY@%{DOEnc?<
zBQ6tZ0JjJ?zrqIouiMFJ@`m%LWeBW!iL?m8_`%<Tf%P-5>tI`U`XjD%lmSQELywCC
zYs+vE+!Q8IdOQ%Rq{LFjF;Gb?qf{M_t!KVOZ`pu9*g;X1y1WXV-E}Ws1K!8#FxHu%
zUE&#X{o2_IgtNMfez+V~O$Uz1E*xyly~EeVnJ5v%ie2Z2@Kyn628L4+5A`Ziu4}R$
zb+Ti~n`XhGB9Nwv**0JBW;>sDx_vssy)dq$SmtO@5LKZH*@i}Sr@4~JzAqzTl~+KN
zA+5?!Sj2*<x=~`7rhtKzeZ>KOG&I*)K7uGjaS)JhgHo0Ln!w6r1*4y3ZmBv373lNt
zBH0bI6fYQbUJ@oB+;L4b_2(?iuXsgdIdk_l%QX;ryFe+*+2KVka_7owHo-Mm%$pWA
zOsDQFb&a*zb*lM!0^dWB=hafajQpPQ1TDQQr(3CPAx24^ICr{jE8^>B`T*Air}#iC
zhGclBmsPUnNz{)``WvRD%d?GlkpIGyEzCEjW|cuuG7K#{*HdS{au}<wrGd5AlFGVn
z-b%wR@_By$DM2dM3&Yu%L%;}w&Q+~|FOY(`9iLfwTS#UDgQ*TPsk2jEdNXSHMfGqK
zCn9KODUjPf>v$S7@tj7TP@yZJzg7CngN5=uLHB6(4uj($wp4j6Hvlp~&A<L?WMP%U
zk=d$7a<<%lcr|kUbC-6IlM+0I{N;MOdLNR6&~XG2>+hz)1)z@UL07EhUfl<oD&9w&
zmu@X)8EL9YyUUTE?s1G3YevFZX-gRnXapVvmnB}egwzJ-(Jab?ZWq(kA-lOLWMl2G
z`E;>RWYU8Is}M0>k}}9KnfN$)LGbEkYD-p48QiBH4Z6h(C!i=^;(}<XXJo*p0{t&V
zJH$e;Kz+S*%o|oL`F-HxZdt<AHUu7dx9B1Q*C~;y<qB?mfCZ9I<nd{X2KXQ&R7zKp
z8BF%K_fn|P99^+M>g9<@qX058=%5Lf#nIUv<LR$~DyI<r?$$y9Br7JLK%nfxAiC`|
zM%Hq*XqiPD8<#j`VLM+4ij3YIw0t6i<Z;us;m`Vcm_w{FR*q$*vZeKCk2IC9HruE{
zG8L4UU7Qn)9V^Kywrx4o$ukb%&dJZ1oHZog5C>U%=g9iMXl@3Ftct5%YO9cqn<!8l
zHo?vQ60*Kv*q~RYwBJ9Rieq|RfIpNND$IhrY>-4{M9H>4=MeD;n*;+`>Jfk7;VaUH
zF_XsUbHp)D{P=3qLOnK)p3Y$;qwpSqhC+r`Tzw647-sYKRZ>G){$zaXxgQK3%H6e{
zm2|N_sS$Sq^%v6WNj;!H?5q&d9ZR^5(=H6r=<H@_dSt1E{3HZmt2<2gTJxAUT8*dr
zrw>@3yZ+$CahGB;s-*<p4`^AyKOyG5O^#II<dIo{@bMxy0qwp6um7{|-A)mSXwjW4
zsu0p;BfyrDM(SRSY&!L@uc{#{z+<~PJJj-nK9vam>m%wZHk14|Epvnjo-X*rOvG++
z@nAw6CPCkjH{VQ=Bql55GfHplM79OCy0uUmYu0{mL`hxC<-%A*fTP)kPgycY1TknQ
z?+Su6GFkp8q_WLbarv5p4gQR2p6<qFIl-ch;1%4wT3b^?8GjIQ$iGbDuB2V1Mz+f_
z1g{kcK_n8EDvUpZgFypz%lPN}R%_2p?i7rv+%|ylM((9KO3bFHim$c3dA)u<XG-E#
z6DzX9yKbl{AT8bR45S-%1tiT;7^<G*fEr`!)=1<^_><W+{oHSOz{~Tqg!xqL=HK4#
ze5kOId}<!waN;gw#-Timudx8#xYFaIYJ;nlx6zpAcnR`}Bt0<j(uoy(R=})(f+~J;
zgF7}MIO{AryRn?7vheL;>=29}ol0Lu<=5@Q>M9~x(3cx^B0JA-10)GnPPEWmjw=0c
z&a0`Nn2R47wxX#l-d+r|Rgj^a?C4~ExdjSrK(u|*+GNO8r?w#Uuv7W;!SM$!Y(Zz!
z{I@6u%lpPc@n)WuGu{;LB6uKFs3mApyd0zL<453@F)^^@Qli!uOgtu`S_?l3)j^FS
z#JO{2vl%!9j2}5rY*dgn<klBnjrV+X;GF)>I)Dt@qJHX0ET}0Zey!>T1yUM2f4`Tl
z(_&bvjnk&?Bi{=%P|d^$I^3BpTpMm5-%#xE`fdI6JM+2-;9y&uyWrR9IT$SZ9Z5i}
z?HxW+E+bZey$5SuQSJ~fJ2GKyB4hoD*s<cs3x`*$yBwGK<m)rc9%|c%`ZwN<|JBqa
z0NQMUaePu6iE<3sCZG<g*RpvXr&n(sK}Mpw$~)7TgyKz3mDSAVD94=6bF9&8K%PN_
zaiJt>y$-DFYdE-st~eKdub9Q3qeh1#@&Sskkt37a#3pyjF5#eB`f&+L@3!>D!rSMb
zP}aU3!w-gTNk#1R1!d3(XZ<vF@Mx<Q=&P>omVSGyo5`1S9jS!od{T5nQ|>t11Rl<X
z<GzRl-EBfPInxv{w)Ng8ENmshb%}-X*d3y+f(9bgU^-CStKyfa4m^7PifC7)+{$+o
z=0xaT!U0I*InW_rDUykJpOp>QkBnu^8?ui8C|_^x3~qRR+$LG`;B+Vh`_lLltf)r2
zC)LyN&pFTe;ga#8B24#p78_O9au?<N!6+}I<Wn)B1}9AoeFdVRoyG1UW|@>|5x@+N
zrKqR#Jb_GDH4`-C0Gj-cZAr{6`}dAoQaGK^Pv{kz=9nwVoNHa?bo`_wn+E?dKCLkr
ztncp4Mz$E))%QX|`_P*{e)%e;?q#kQYHv5}+9R7mS$tzUq`4rKMabL_k2$vsyuK0u
zo-hB66gdJ}Y~NJKE(LZvzGf;Tu6dMxFLWA4Cg7^ft`Y+0lIeQd7O}l5OA*n*V`~HZ
zrmMfye4yY=+s1TqqD1}AivSv-kut#Gdb{w&C%BcdO_?64Rec@HR%TRLwuV7c=?h1X
zeE;NEZtPFDNcvg;6`ggt+XUvUVhP?pqu?5TA*71W=R6jTBnbEsWci@tr9nlCH>;9-
zxf>G}PT|hiE0jwV$$mMrVyP)14y7i@+Q%Blrw|H6LnT@TT$I$+rDrHUGh9w|!xhX6
z%xFf*8sP8%URR}{k9PvEq`GIj>*S|jpWsmhNj2wpmDYqJr}PFRE*Md`#W4!JlL;y=
z4@GwY(lbXtY9SPy)EK`HqW6&>49cm?MlP|=-_nz(j(oo~*770WPIKz2d+*LL)#`bK
zL(S8)X?;IwP{uWZO|t#|x^OR&HAz}-(7p-gv|S5xMDa*s3b$0{wBe%k(r=*U{a(oP
zzO`1k5!1DfxnZ@5l^B6No0oWRoj*m>+&n=e0to+&Y&=_XEjpZxb}w=uL?RB38GZeG
zH-){S!5;&8<hg>h?DjG4Oaoi3sU6YYMfz>IrslA=!_M!V$*d$6o&Yo+7gQG{6+x9@
zyrp(gIc~gX$q$-iJORZ3hmr?ASiE6vH*-5Pe5vy)40>qFvpwrETJk0WO<7a!utole
z&he}`Rt)!srb8kmuLz{C)-_^X_p-(nJi1uJJY}pTNSm*`7EBtBlt=y@?a%{&n?Bnt
zQH|QPM-4u^t)olDFWWVgg41Ep-A-{@J<gNCb5)K4IcityiH>W@z#kZ3!x}Q!E{?p|
zFluGA%w=$X5O*V1svludY}Xo(GuG7p32|hsi_OBp;Tc^b@<&*DQ9Puwy*7bqsFH&5
zXNQV<uB8Ne00V}eZU9<;bMeOamR8y2kB<GP9?YyAmOjfai?EdN`3z$@c<bz&5#qW*
zmmA@#g4uOCg_3;9ljC*hhY&;j>y{n0x+`FUP%oo{;K0D0FsMs>u;U#Us;y;OhA(w;
zxM-P?RSwlftaIm6Umdz1G6%uaVN^Go+dNFJY;qwca41PnQu1Tlw%#sH`tWeVi~nc2
zR+@M;-?2J*jMygWrX8C@jEDtUL|0yRY^l*2Xf^6v=z!!YtpMU#Yhl46jX(}f^Gxcf
zr#9LA`&fwAu8Q@8rvGcsEnmF-p2ey=sci*4PFJE(3CxvtW;?CjJcDx%y8Ez^WajJ)
z^^5b4mO0@^H_XXMAZ-SAio{bQk%#xI*(ZVvwl2bFM6NVNd^sI;=ZhxYoKpnv*oUux
zhvbr-uUwmzl#RKWtY&%Y0g_24lzx&q$S(D;v}CfM7W9D*>zh~z>96945*Taitx<Fu
zn2_AYe}#$vDniHcgB-Oq)n{myj+YwS=EYdN82{aMu6HkGm_P>RP()Vup+jSnS_z|m
zN&M_YnT629=BnzH>@egDw0v5}iwMf7p3jQ{vxmrvXI8EvwWUZtLU62&{CPNq6FT~x
zyr`Ln{%vTX?U{BdimqC-lXFtZ%PUuO81!mPwGZe;DW$N@{sTe{S=un96r5HYBAy+g
zsZTYkda2fADH8+O#$u_4r&GL%`I(;eS<ps5WW1G^A|%8+39HTcpNT8ItzhomSY!p(
zhE3N#c1nR~DWCTea&Q}ArPl2?)SB61Q5JE1fx|Hd49(ucI~(0_8N#9x)-IG`gnGe^
zIbr!5XG55V?iaw0gVcrS?ze!vmQu^!z-Pj)5aelMs<Rhpj?qJ#kBb|WJNUYBXCbSj
zp_fx#N`J3mDFq%iYpVa!N1(jhhZ8w_O)ehiV-y0y2A`%$ELM;?ez%fvWt#dzte-{A
zwFy$_goUy6i{>XtmE=$b9V2BK<pEHX*@q86Nn)hSna<y*y>G-LOXAVqs6aVElfuQu
zqI`|O(hOWlIz+7haT*a>dY*{lGGP&}G0bsfx)WgX*I!^Gf@1nG`n2cMC|KEQwWtZI
zJzTKEu!li=m9bJlbIk~+hf!-S!#?;M;a1d1ahMcS+wzz|qraOl?T*FR83rp@3}|4`
z;)L1PNIxDWGJ!J|;L#ULD`-0wc<KW5qV(%xNw|GUVLbF;ETug-dZ-Il8#u*0TW{j*
z(Wx<^N>173clj0~xfCF}dK9*U(7y^iROeu6z5kAu6~&|`EKg(MV?q*UAmHSGZA&3!
zzIKHohYU1wQ-jWBYzRU-`ZLjWSGmDgSsi|>y|o=I8DK-Pk&e~xgFg#T7uoT(HDtY4
z<J+nn%+0-c0~nm^`Zo*}P-m-9&oHn8l0(2Ok=dfR#kq>iNl5EN0nraWTqKQthNU5H
zIBO20llZ7jNFX9vHzC<e?lAU()oq?lQE%e<dQYUW>~btsXL=tq9#v=B^*+$3oefnz
zFnTlbm@<fJKK=@_U~i-$Nvsu@4<1n7199Da3T`C#U0<lmV<g*s>wHNJ5nSq<+!OR@
zOjp><EeZZfK#EYz0`*rY-^4CC43p)q3N2d4f#|GIoQpYonr&F=-@K}rG%L~)Eixi&
z(1$`$xL4q=i@Y9m`jyT9fFp>CwGtC#@0lJ$<r_VV>a>7X_Jq5VLRp`eru*)_PsmN}
z)2YZ;0u&;+4*gDukcnY6!mErkqI3q@ooUP}wOodJlg?L*Mry}aIeLX!&FgZn)UTa;
z2gu#E&Y?KI5E2A<VB#lx88u8V9+c3lH)|_$Vx!1(ATGdbgy0afpX<5xOL4Pu+&B)i
zDnj~lnWLVlbr&zguZeP_;p@x$+}A;8z6Z{6h-RfE1J+0Qf10F~RUSqOaf27NAEP(V
zU-<kPf|<sp|7+4^KKK9mO<hB5CZfLE6ct&IyE^Fe4gK1>!>0vMZ{YMJ_jvC*r=X<c
zpNJD++KxCpPdl)4v?_C8PovQ5M8lzilgXgN>984GDCnSX>~u&??q8M)Xvj%ZU>Vz2
zQu^<GWT(ZpSDH#A+QtfM6rhj<*3te;Q=U90IFX9Z7f^vG%PBq3dxyAFT=0U4z6&fM
znZQJQ$-i>%J+^^Rfq1EQO4K{H-~UdTB$@8&RRy_b#>sa!)FMmxNjFZRGc#9r+Bp*o
z<r$w=-Y>zX7%Kkc?sXMe!YQ1Gf1iS_1`+eKHcH|4hd$Lg+p6R(Sf?Yw{Fs61Hv6WT
zaTN0Z)kKUEVY`&^GCQ)?nr%xtP8<VY`psg&Z+-<3YYZpoZBr~|>Esm#Gh7I0na2Jw
zOZ4^v^H0B6+a6V<-DcHNZMIZoa7dQ%kf6~=^dV=vmP?tZZQlDEhT~{x@qQ0&cl=jo
z<P_RWa3dx%KUuHQCtSAqKur7A(a#PahL{cOIsMKr@e)h@6?C0qO#UFWk~jM9oBK%K
zvwdC^&+Ze4)<z$mdsOLi-!#En>e&5Sw(xCZtw31}TKX#{88+wk!lv|xU6myInA{wj
zFt7JHjY|mR_gFHyUEXWnSEuo_GD2NMn#Y_F`ZrvFaMKP>;wb9kkokp6@K0ynzKhVP
z#38LwhA{2`k8RV0DGnMaI)1;~q1S#?%w|LS8n&6O_E+Iej~9Wwy-EUlHb;k-<%vI3
zzyJ|pS;W@VVZTD6kesutzv!8j5ITywr7(^(B+05^0L6R!6qykpp;2bUT71O-bz22E
zrJH>rrqTF4YSIE7<TT1_x(u=tDZlQ$T&ZseZv1OLSU1S1p8aoT5lXMY5enE(b<0}&
zte-VD5)Z1)t0Lx+9EmJ0aTdlVODo?W#hJ*2$u|7^YK9Wle9g2ec=;`BKXF4XY0Mr{
zSgGDcqJFV=sl@Wg=uK$h2|Nm|I|h6M@ZS4?6X}EeULdcGg}IV29fgaKKp5i_KQ~}W
zo)f&g`3j3&#FPCd|E4t!Vx#dSR_A5}@VZhrXF#7*IZHLu{M~Ua2*w#lmG2Kxl|a7M
zX7XQ-^^}J4lwwS2T*v*TIub4<iyw>97Pv(0Aw5*sz1|}F$dGr>C86gN8nJ6@JpAdt
zs*L4aTxH`46WEKM!KoUWx6}2>@#7-S@OlzZ_0Oc(b}Bixfm8M+O_*qNv0*O)BK{Ao
z2P0g+pD7^$r_@l+uPTv99a{g#4M4<;xqc24WZ4UyQkMjBOC3WU#uos#R^HEq;{W@<
zao$(<v%+%VR35|a!Xpw+keV;oF@9&wukqr-jic>B8DHnM8MsW9kvDiJgk`GH0>IjL
z7+Tq0b1KPY0<D4#In#4+wLK=Ei^$^7B?1!8{D@?>>$AVDE@9DWPyeroIQLy?4Sf_s
z9db6j?!af7w*+FwALA3~c@lt|L{H{!jwa0JXh2lQ1Nf6<Khqqouz7QRmp}*8Y%B{N
z7YcXyX>X^Sc}NtL5KZg%d_>3y)4r-u3wdV(ojvLqpzF?Jz)%&&fh6sWBxr)xzWb*j
zmG3zGG;fPX)`RTG)aeXT$=8N}Yfd`gH@Lb{1Nf-DTGu7ExAIh_6Z^>%d@m57eav@_
zoQo|#Nk@R;+Ne0J(5I6dKNC8Xc>^OHl-O|yT;yUig3c}1g|-M?6)cKE!fvz{V-5Q=
z32}yq`s&e-g0Ak}5G0RH?d3nqY+MHr$EFa1)U7dmi`_g(iIcn~ZS*enmW7^U#eB{n
zjF-wResJ6Vpfns&nxJc7h1tMxSpS_mSo<X8Gp1`t^n_A@ta%HHAd!O9>gIIx=WlMc
z!!e@`RHuKUO`OXAELwJ6EBOc2PcwOUe%P8QsB?=gA`(4<PrtIYT^(Q9UD#anwEh_t
zaOGU6)Pnm+rm0_^MD1KmFi)H&onJI<_!D)xq<Ucc`#<)*YW3cYaDr!3f{^jXq||#c
ziWdu|1Z=NBkTkOm(Cyp2+vDpL;9b<jcs6xj=CB3HIl#tOb$0R1N6$a|)c_<I0R?ec
zAIar4xms)YcF;TyQi10uz{V6qif#^Ky2xwlT^n9Zq2{8g1I^{yxG}QCqEv*(9B4Nz
zwqf0l#$XtBTVHAop!D)7<-iF5x#@x!PE;7>KZUilGtI6v_1OY1LkJiDcFtHuH?qmc
zyF}N0C8b?uvXEeL^q?WYybnL}FZ7&vyaT$(C9jbr*Kudmv19W^mwn^IW*Uu-r46j<
zTZ?(QJ<L$OPW&PWr_5pEjT}J{4zR9cQ&MvMCMYLk@kXI2LuTAbLyxu`DEzg%^9mbR
zn42c?*#DD}no6F6JIstip(`pshO(R{aL`8KPqR<s;JNn7(JDIxHZ-Cpg?JZTE`?m+
zTn@5PUkFMfEx)A-6^&`e6lI@?{LZ`4>k!w}*ki^9(J=P~kv(c?g@d1k>*h%4Bm^@H
zc;;@AH}j4@Z<gU@F9+F7!YNF_KQI-8pM6?51%X4}7^!of3-N*#Q`CTNW{#b?B4wKk
zLKJ!mQLN8u_oIDm9KUf6N;u|=Zw<`-E9~J4C1;X6lU|&GdLY1O0`Bt(#pd*uB5-V(
z>^lowzVwfB!s_T>o!cogqfkTObC#G1k6o2p_QEOyDj(q#g7+3JLL$7aE_Qc5WA5B9
zTdhy=oFDYp+*M>W$F-PSJ!p{*pYELG7Y-BJMzN~Np4aEiGe#&>_Gc|TZoIHNR3~yf
zcKhqp-gCh2_4ROUpqb@|*3C)&AJXDt8>+%voi>5>W)AS2bUSfdr2aCQlJ_f1T7iIg
zQnNT{KAj|9!y`j;_B4Wh*(Xnx)N+4=%<XaJa**1puSVKdFUvZiPrMA4TM4+=Ws*~F
z6|G?S+t-n*T{)8Qri=vpek-qz(12bUJ?MrYtP))CM`n=BBUIc~k9UX42*-m^uS?zX
zcJm>9?gr2?PZIPIe4am9bxm%)pQ~-~K2Ybx%e>Q+lQkU2iWwl0c}%Wd5{!hvA2?vi
z0g2!=GJ+InRCzwgU!=5ReY!(wO{WO{o7$}Jo7n41ko?6$ngA0GKlY%%PHeNglWu8_
z2RGHcBMo#xmfo)p)C*!ZQaw0qFvg<jz*{-_gL+kGpnD#;M&>XXrVUFRO~^A1&G2bJ
zcc)Y{w`-2CN}3>6mghLuN6nFOD!r@wO|5#<fX1&c;S*fb0xOWl#*r^{gu?U|wW^E7
zB^)9g-`}k<k>|F+25O9Et;hp&F6eS}GAhfTN#@mk7yk|boTE9$_M-Md;5Bo-0N-}g
z*AZ`u&@%o%n`D?b7Ei3K>RANxWeQ@mD4BFuEfAz%hrsO?J%7?u_ccIB`l&kMWMYlE
zUxmc_w?P$20GkMFT2ZzBqI8#6%(Sc@$R1P%73#}CW8c#LyeT%XfYkm?52IOBMw<h|
z@+;4Q#7v`yjywF%<Xf&~6#?sfy0}h<xokg@k#lITRU<((!2FjW*mUOJM%pg)oB6&s
z4`Bf<guQ}L@o3dto)`0($d``&{Fs8?xb<^SVKq;myH0<ZJTYUKyyp`69DODi{=fd}
z@60!Iw}URDHVi-WDjrfrgeqvV!RAP7_}OIi?=Dl&g?TKZn&`|DYva--xc+4LX$UXc
z<*Z;Ff_KA6Go#Xcw8XS>Q98qHl;db@3NxY#ew8ONilQ`C$Li9D$97*)W8=A$beH}a
z*sL$A9r>MqB8No7T*~uch)nY<TGmSVYU<Jk@6F&e?vuw25}AzfPG{>jWRGP>mZOy4
z+H`};ls&P^vEzK1qvrsOBE*O%Q`hnN(2X(TLGQj>zFjEaGjl`-gX$F})pb77R*v>@
zwp||cVNM}^YfYR4ucMAN;d45>`w*P|Z2RRpu1p5mnQsaSPj#2z68u;=Sa(B}Yt-!3
zt@4$|@)<_-%6ms@hCu_Ca6Xh7J8aB}aXHvXvmtEE#wOq63rt$fZe$w%$)Xy2qvIhe
zK+78K;52lUc_p1FH1f^lCzmKf^lxVhHCB;d*A)e=VNlaN0;44uR<{q4!EA4k^>{v0
zU*BkE`pK#Y^Gk3@sI$y(S{X6duT~R>KMr8Vj6ee@#bZnO&bhEFFWt}Di`QH^^?lgB
z3Ml=~)9@^X;zeN0-ZbL&m-USJ`^OHc=J(N{FRFl!h;&^HZoWd>8`e{zXB;ZQD(Juo
zK}EBVikkDo1Ga*ai!1GAoOOAjc-S{GKd@Lk%_Dx&+CnoHsVSBfJDLo3F*b8g8}?2n
z8-8>(0W_D193Z@(%(0-VO2FAw=t!RP%y*lF*`E0+Ui!>=U;ds_V#%bB!AioiU1Sc`
zLe!lRzC%1LPJLL9wiNotkxs#5aF7C_X?e!zeEH!(RB-Di5>g$o*ORj{$VW@v*NrDD
zQ_Y>|Q;Sqij=<J+G~;Or0^DpVA%VV<BpF>gS@U4O4`bc-S*~9^rC@7%FzPXjcy~hP
ziRa1O9_g|wUq0N{1XnJ^uBRcxd1tn#u8NiPngEa)%w2Ta3BbkaiZi0G1~QO$PfS9J
z^x<{Z^pie0^|@kWg%JU|()Y)adZ3QL-rIt8*qI65a%D-==V}BzAi=lcH_in+<%-BR
z6Q%soy;98f86WPmYgh<XD}E?~6K~1}&}x$>1z@Ax=|i6*46%-;NoHcJn^?S@x)}RT
z3SN!PGu*5vrKVm2Hz~4h{?n20Mi2(+`FEQEhCl$w)6w`>$N0#L0+!clsMAUh3V#%u
zyjZ}_+8P?=UO<$<U&M}r+q&Ulx`Q@sTa|F^nUNp@4d(0%+JR4}ukO$Z0p9=-xL#Q)
zs06HGkskXY0xpjN5Tm#mjy9WwHKqN4L_}@b=W1zLop$+Yv55L*pAl!J=qfKZpQG#z
z(r?AN>Xs0B>9=2Ak?kp_-T62<R1T+cZ~CR|^jp)Io{$0a;X?_>A2zd0^`S<JArxM^
z?T<OY9T2q05;g7o<^Z^TiilhRZK!v#QyOk=-IrkV6wDgYl7Too$X6<q*0PlC0esDz
zSWmGjr`2RfJ|Yx=rXp-mGEILV=FW^g+GDEEh6gYEzt3jGM^Y|jW_bcQ(m}_vq5YLY
zgDz_<3EWg%8{drBU`U8KGZlF2`v;hxfSoIVpqYqoH*<C$U?zQYX0a}O#TccH!?oZX
zySo`!Z7xP<OVYSFwcJaGB`J5q&J&Ye2?jTe4kV+!MfPh?5hY4lpWEzVubI6OOs~^N
zlum}MPOPbnjh#cy<R;H64KxGhX~BEm!cD$o2vj+;>OBmR*lEBd<@pCUUhl?(bl<JF
zMs;|8Ao}0FYj-(UI9`ML8<2dX>J*FS_yNb;g29!zHx7xat1J*$m*YatQO%)RF9(_r
zB7as9Ne2iX#G9Z?Kmq@jF&iEmv&Onz9VFGI&d#&Z427S8iC??FY8E1*a3^!$_sp5r
z=akiA4v_=Pi!`qV(L(mr3`I5>u2`zgM%BvMI1VSgnx2x)guwu&#N~Vb<^+mnmjJoZ
z9!EJ(U}l9Oe47hAk^4`GlI(q}l5mG-O0zA=;SY+<<BuFf$7F+<D55~XZi`RIrWZLa
z-X%u=_$^)?FPofilIdZdj@X16y8@P*@~`m5&Zy&-R+d8xM@2UH1gU_`81%$_e8CB`
zq@ZHG$t#A2!S)-RRaylw)Xoz}(=d>F`LU<`o^{>{=IZfyXwEYq1_FcvlqNj_A#(9Z
zi{s&zGqe~HZWH1$gBWI#_o9B-?dC9HMik#XQGTTK%xR(&9W6J*6UUBCb=P`i6eArs
z>SZ3048kZ+l^D}GxT9)ZWWMAMSR^sPVNwWh5&smMI#BXuvrSYIKiOqbSIvqI4Jr?x
z8i0vINUd-%Z|jx4eyYQ3px+UIY`~I9BU8BB<}PHUvM=+>`fSH<Zx8#S)djr4Jvg3Z
z-#wO7^o}zvS6FQ+J{AosEd;M>ej^%xbxUUhpx*_Km*Z7Py;=g-M7Tl^gH*M^XQi)U
zPj!NR78A-1dO{{8nM7VfD<S(kOb6jBgnCrf$FdZkZUx$T&ThZ}zYbW(@_<Max+`T7
z0cph5te>evxP;d3wC06shL#)e)uhAmdxdKv`blS!?M+5r_S9+JoN<pFTGEoxWNH+C
z<Mm&kYm5>H&3<jr(MWl7n0T!Xqe7Lqe~KIZan-`tS3`;Dodh}OO^w9D&nST%J|{X0
z4DRF^EI5nKEKXMD%;*b1UOI6uiD7G*?njr3?HvZ92iRH1#gfcU@}AU3`p)w}V~y~h
z+vc-L=`C<IgTe5{K-2tJ-2L83_{qZOjbMi)-BTj!8JHD{XX(0+`EH{A`37V^TpICm
zB8wBHJwmPG3g$DlMRDrYsgcId9BMNYc!uPP%lb;Bbh=7vnL-Bl;Y_pwp9;v>)TmWB
za)DW9Nl`}f+|C+otL`Pcya`Gv+#&AJw5s}29@<DdF`0jDY3R`ei8EN0=D&WHa9f*f
zW>DOd)P^dw_*2;9`(^oSt5y7)j5`rw7|U|+@Kimj6>&ZXb?V04DtHT#VKC>u4Bgx$
zqBU*^xyk%qq%Yvk88d3Te<yBsY+x~<Io{|L`G86O<b43aSE{ZxOp+GIhEk^#9e)>_
zp#r=Xr3zf(vLWtsmU+vIqOPthFgAU#XZ{UTOi+<iCnM*cUIKgUh=W+e&**pBaCrHG
z@>y^X(-EveKkNG?Zkeo-Mszv#6TEa1td2@v#<=Q+jwdqA_-X_kF`K-%R8&o9*s{5~
zu040$m;^Nq1DpBUK20Vp5iPzk5(27<_m--=>yC|h7x^|!cM#ttW5`d%mo98K!KVR&
znwB&YVuAm3tO1C3y8YZ}8}<V8O$F(9K~Xh$Ep=RNff=4oJf5kLirw|%?i+d>_b3Y`
z#I-`LR-tx!96ZC7kMbPPIA-B5ESOw(gMx0T9W2<Et@xRy(Srizlw|%QWmHGdn*BlT
z4}(W&M6Yuyi8YBYCJQ|zFN)V$9OH+NjADvYWiqjt4R4Flr!$1CcH#XMq{FPdY}OQg
zzo^C?CebCh_~KMz(A@U8Ho$9f$8xeDq7scS=&_5c*9JPw_U}tWpW4VZ+2Z4kj?qT5
zxPijL!C6=QvU#4HepG9?n9M0KV0OxU_n<4bNqx7$`<W(z8DPp^LO!#V3Tol>aIpk&
z`GLdIqmI9S)q_j(Xe`7X;ZeG_eDU9&vTxJQz%u8=lDMXwit(!pN~P9`|I;*aJmI-J
zVi`u}a&9J?YVauMv2k|~2!coyDI%QVU3O#<A+mDS<SHXj$F867i{a19WX%GIzrOQ)
zafSP->u>jELHS~dn|_7DB1>Viyf@N<upU+fn*A1_Mkqh&wn9(r#$zu8eAno~(sZ3n
zJCpJya+c_{sv==;EWiQJzs&QPQhVqQS0oUN<aJvUKLXr0tmd_!gD>kMz%|m^A>GH0
z$+jwhGk^23I+x_C8zdY+(m!UbP>m~kiS49<IxN?!VX!OjeY#&6m(R(|tSy*~pw^>W
z-^~3oJ~;;8mq*%WPMA9Srhq3ur9dUk<z@TInd~(m#VYP9jdDtrRnYw}+&`kgPgjkw
zC)!5FR#d^3Y#gRcJj)mI!j^t6>pYOyZIEPlu4_A(!xs~V$p3D_FD23526YJ#X6(Cc
zBMGDRO<mq56~qgfGieDrWmLQ^kFp7>_<`dEU13=f0rv%!9FlqWDaDw2L*cu~KS5my
zkC%~l)m{~MF|c+>RM1qmAV@3UULWm+p7KEL=@yAKVF_`yUkAty#}QD>TH(n{JC5A8
z=5Y!zaHU6&Bw{TeFbVZS8CnMrMIaGf>Hw0n4i4VEyXj!6?t>HIERsW|$x3UPCpgeM
z`b)p<Ziv@MBFA>JWtsburPcBNDt(@fvbZ(}Y}Te%5Gi7P_m{Le1?M=l*Bq1ao`b1a
zQgkK1_$aU{I<x+d`y`KHzn%pWT=YjJaKSlm_kmrN7AX}|AYry6tfNcErfZ$dJgMKi
zQc*hp3If-HUx-^!mp0xSLNBCs@$eoC3oCKy4ZS!2#fpbkVT{xQ`RvY>xDNT|CbPNN
zYY%}M1M$^KUaqPHLo?s&PJW?^l!efp@$$V?9_D`0P42++4YRtzYX;BOtzl{2$3Kt>
z`yl!v597+9V3^r`>3Cc!D_1tD2Y#B*8}ygidU_p!XTrl&hsA>a%Wb|8&3xCS+vX%n
z7GsXIC8!n5`=y_4uszaQ)I@x`!q6<b>}F(o%Ygn+>dX_wm0lMbT8QPnI3Ehrdbt@T
z%<%U=m{QyQEWU?F+~~aAL}V?)>M2HgOtRx|%ddHq^I0yvn`ZVsd&@`go|nH7oCSRI
z60Csj$h(0LOD|%9<;S*TBiS;8wl6%JT;cW9s=5N25JCN>z5A!~8PF6>?@?1cPPjy0
zi}r6CJvk9iPhbwRE^VUkCx~GF7#}e>6Ox4!XQ*kPv0v16AC+AMIYZ&C1cMKERV?xj
z<CMn?!$)}-f*Gt7g={nk(#^vFo_n?>4;~HasbaUWh}9<8V35fHhkh+XM3gP}3HLhi
zGV%k%^m{GfksM`TmnPi+RliFW9EO2i;%{q)lsqD74sd;!yWc!SnBv*t098S{Jt||6
z3C0}J3NH>n&Lu0)P`465>kxRe`{MNena1d0%mCf3(i_}ZZ8JR7KeDUn*U#xr=&(Dr
zD7vA-Tbd}2`*SC@BbgE44F^aGeKdt~c+X@8P!7Lz7)fl4i`T>r(zV=Lm|!w&z#>6z
zKXh|X-Ur`3jfehYjmGo1&a8a0&vo~XecgGZQ-L_&$5K;@=VvqKkNg8U)#8+|xI+0<
zUnmTGsy$E;W<yPFxgn{(%}gdnFYY}tE4Q;TlS@^2h+G?9B)>ttb+bl(?*z5C(wG0l
zoD)5oB<N`H?}53%$TF1m7SZ)%&ATd*6;SBvAk}afg=et|$wdxJk^}KdAuY9Sgg0<D
zvTA9fUk?di7#J7xrKpQ)UU5MOO>;HN$)n(6M6VlQZuAI3@t?$;pi`gfN4257?UOSf
z8RG*Y>tu1b;1~Q!vT}C0JAD3L|4#-4&gDwI%~{p%qkS2sR>?8r5pniCQKTdu4>r><
zDAvXRCrb8YuXZj=QEbpY|3(cAWVj(WK%)JW<%1_Sjh|$9k^0HeP5tW%c9)2R;Tj1)
z>l{v?$31EWZM8mDNe66nAZ=~;_c>8mYSBmFhaXMJh%Tyu`eZ@8Q-3Xz(8AYWOY0+|
zV<Ei&-;iEEp<ORr65VM8ln01q#Wcm2Yi|E|W@SYqEpBA|eA0~s?UCbL==^ao*n%@G
z^qXV`oZOK6Z<Nc%HKAgUGoIv57_siZQTfZEUZ|Qrk1D4CzVh7h=`~5aE!0(7UfG+j
z*tw5}V^()ng-H>3W~DHgXq@H2G3XfGW~TDTP=0%U0$U)W7>EPgemcU>J2>y-6seaz
z)Z|aDBJvNA-|EW^3gagXv!Whz2YiDUOab5xf5~%_l;7}qLw+&*hB>}|jw7omV{o?%
z{+R5ZL_S0Zp07Jln4=cQ@YnF1Bw9gt+&EQO)`U*<Odb@rRB*y>8TAJzjmXIHo*II!
zAaSsuBZ{FrWq>>vj_xx^SCjV&*BhLd9JjNiU+JFU9U(WhJ+7jrsJpU({~+;oBk4!U
zhQ`=mB{@IYgNb-p<2I6~nyG(uW;y*lpRY-l)U0n@FpnKZCxE=UXBBk!f_I>=%sd3~
z)pKjIr__Zpa4p@1KxPg}vSSJ2l%q!5?G@t($_R_9m@*@gCO=avoCI4K1VxaOb&%w4
zM7qa}<8`q}gtfJKi`+2M1n640r1QHQXj0E-blYTIsF`wR)*v`pSZ*y4QrDVx-E6D8
zwy8-Ex#Qgbo+s1!#y_<+RnL~E`Wl&x!UJZvKcHZIc-he)IVP=birYwx$o&Y*Z$PrY
zqg6^P@TLNgDlUJr?3CL+`oR2xtiMOf!5@;Nh~2(Q`%71gZ35Xp;>g-#=G3Qh#|NI2
zs6#`=3H60lH>pzt!@J+Nb1+odq5NKc`9}E*`AzqjvUQ5bQ4Uw2UhT?ZtP$lXdOm17
zBlEUoHAzx~&W}h>ASIqo5J!j9hN9)*UgadhTX7VWyv1Im9>Bt~Ite{vQW!%?fE_@e
zaX_|PM9hMXNR?Iwsl@^|g5)mC=6Rc)fOd_83-1OXKisr50MK%!!!M;(3p3A}*`we)
z-Szh|aR$h;`i;WULEa*bCcHk6(|5E3tsU)+9`N7KdJ^uB-kda_mdp%pjyn{SO~W5*
z4NP14I;FzmM?_V%BQ25OeS*5{o@v;hf9#Fo?n|(7jg(FDJx9tSDXx@+$=4pdTUNlU
znQ~1!eT4HV>ghJi-0ZrsiaeN5=8OwZVyx4O46m?v=;V7Z3;3khL)^#I7T1bT`|c5#
z&N8@i=VLgYLKz!xe4%L6`mGJpD{U2{ggfCsX@VP)P<mTVeADp7cQ$AMadn5XRlj?k
z_`kYU^~!7ha|;sacxDC-b^yL$91>>xo}^?NLAPXoXGsqvGFlRVa*gF94Xi5wXw@{w
zWH@-Q+N!Da2W_^lDEHX6=ltj`^T&0md)xHb9_331T9KeHTn^*R?J)kt<eJ7;?3ie~
zKCdBz%bc%@q=1iC?(+Vyb}xCBJ&y4EV}*v}jJ8OCsj;_6`$GOCqau;(SPZ%z`U$ME
zis%Dc3|s>gGJ9bq%VPZrN86oay8WdFwr=tQDcfC7CZdtbE@|U@T}jUG4~qX@_;8wY
zlJRgZ@FG);<S}Kx3NwixQOEPp^LO{rP6psEg`^Lz;Q9pD<`mQS%{^YfGf*h)RiOa%
z$gyV<LxFV5O`b{8*UdTAE@UOIOsKBALd{4_Foe4%EV_PRY>lj>XUEavK6CL<%r1z9
zqo>L5v<yiO_}Kcb44^i{=k)Xk!UnY&%Pt`$!^7!hRu3sRFCMb1+m}q1Ic3fjkqp99
zuXJzKA&$$s>}(*;m-S^nDfWd{5jaH?E|%r|4)BN;`sd+8DIHS7X?!^J2Ig)_8RJUN
zh`iqzHWbjU)MM(KBK9+Mi5dfGXxLP6$||$O4lA7snAl%hSE+IeVTq4T!^Y4q@sG^a
zEb3BfwfNsawhEou3bMV`KR8T5q4I#&oPQ`n#<Xn!3R&><NZRI7ip=JJmoV$4Y@olO
zR4PB^2G71x(3Ss5eC0TYoMnnemIP7U$dIntt;R#LC<-Y)tH62fGTqR$53cH16X*!B
zB}GB|(8dD@*i(%9QrM$-h8uui%oX#eeLc@II^?BtS-yq3Pi#eoE3U-SoiEbiq(3eg
zvR1Tv6*T(f1J3GM9}Iq-=VNVvfgU}RFg0M12oXn|W{eZ=iuPbhe_rpxpsSH<kEYqV
zClRm&2@=!EbgT=&SQL`A5NSesZ$BMM&_wLWj}$S*iS6OsTUPZjJ})oo9%?s?1LTxx
zUiH6ogJtN##FlwD_uofLevk<nXW(y`X{~td`HgdXWdGQ}Ctm^F7d9mtG_>-#?yknO
zmcrh&5pZ?^xvk~u(>UkD<N7-0<N`6^F~m856xt!;_>s|Vm>a99lvf6`R!=-Alk4%+
zdolp>pBH?ps^6JWXS(Wwdx4Ttt*lUE$a&+Wl<n1tRRSa@UXhypo$;s9y22k+b||IV
z+xe<F2*~1*o@wQr0_#m9W+E>^;516XPU?LMVrqY*3rbRqSs?gNd5%P^W`7<=@#Va4
z%`Hs6MU5_Jtq;ZOYH@-dWU{W@vCzoel1BP_#N4_474>PVmUq$-8Y!*jpb^5vDhf_k
z6c~C92F?OdL+BR=xmGIyS^`Q^erezR0O*a7%~Y+8pqAU(g4Jlv!~1Tdjdg~!;jUS0
z>78ECC++K*CX>XuORoY*-K5pL$qyTdOjq@2L|%%(z<2JfuJFt4?D}v`#Lwr*GO^Uo
zjgjAbAphvMMLYjLKI_}$PCyjV1R)jO?6M9<f>|Pz)xY(t(3*VXs(3E8L*-P`h&TCa
zuF);nce9ZyMN&y1k%e?}@Mh$=BQL~sp>Ht^Q%@P>chRD73yJM|j5i9ru;`9V(Vjb>
zuZ9}v0w`#$+s0f0{=gp$=pz9#@LShLK%Tp%T*H}z;^2>tf6tQ*!H6Vvj+N(Iu?ib4
zrN{|+b)6r!I$nO@fC~FjMDlZVrnR%<7;ok~qxOl%d)n>c(VGJ~=k!6^o-h527rO;c
z>*-J|-w-{Avowzncm*iVz~vWJE_4Pj_$l|fLKo_YE=Tl@(WV01)0bOVyrE}3fjzrd
zYVzArk%ZnH9no1!@1sP;$8y<Mj|6^?4K;}GSl}zVo4^{$@VsU1B#mI`=%CCRCdSDv
zXD|@b!($s3KY;u9<>`ljZ{pjkkICbsdN#2)lm@iy(LU6ZEJOEinO(6ynC2zZYcsI>
z%&Vt}*aH@l9|lRjNo=l1K!Hek(&tkyw1T^zm86=ek^nq#2trC$%NYPso01TcO>2YI
zV*yg8DmA=J|Hl+yx7}GwUZBQR=2dM$Z#0?l#DWZ;X{RWk$@N%<8XuWNT&BFw{Q~^C
zEXj`JSj0*CQ0j!Nh89na$@NtFD+wU<?k!9V*vSh(ZCpkSZ$Sf1?yH>mz}#~NEp?Hc
zC|GbYc_*#!0lZK@je5f}f>BycA|Qazvs_*9q~h>lYXBP&T9_pzsP%Q6tC(-h<dusB
zY3b`A$xab(7MRX9laq<~nz9P&9-QyoXe{QBdlVLLV}9X$1x+_Zl(ZmngRnx_6f!$O
z%&7?eRL{>XoNio9s_*Pa)M;eX8BSmWf$Mv*`;KV9$8|6*?&qf@3gq6UA}*7Y;?X7k
zBkU%C7;>0U71QkjrWz@)!mR^z<6c&_HzRFr8+$&Z*&8&;y=;xP&7g|ZI(4SgsXbaH
zD*D4-hYiyMI*z?&4FqP7YR_k_?u3Y3CFqp%Ir1(B_GW|2JzBr}G_dKit=3PomT2G9
zFTLldGLYKf+4R$0H%->;fnz0nejb9lFW%Gfn9H<@<J_>htL(7EvnW2hM`Uz%^_X4)
zQ7GOgqk{SwvJ<I~BVUjaHpN!J`n@4=Eg<(CtZkX(n6$`7P=ApKMsb`m`F_W~CoQQk
zPwZ?8vbp|NOkUZd+<zxET|j|hqC}#Kq&ibnVfUHakj058OjqY|c$dwWvYAxIFKL;?
z*aC?ih&(jOD;n_6UI`dC`m@rs3Ji_9%deRa$0o}}#{|JEVlr*`xX?*U9Zf0s#%Su#
zd!!vf!?%c_uZ)ZHDt{nn7yx5<-(nvhfh);#TBr&FKXrtuLCP=RqqtT9LJ<{lVqJyz
zy;&cX6M8=wMtxf&MbmWOB&1P4ZutVT;GB9#jm>kKoy&YA=gCZ-Ek0rx5~$fh>_=f?
z=~rurC8C@^OoMQnV6l5FdrcAB886?bi4@06<3E7s(4ILHLyxNCc;K(y^Ktr_G`*)B
zexP^x35Wj>1H{76#+r9a7d+h)@lOl*MI|mIKS0hf?m{xXu@VTj*&Sodp2QNgeEm+P
z95b5>J$4v5IpcH9ay5AjBVb}iHp>;==vJ)+*Zo+sljfW1wg<^pVO*@mMc^9}ei#xX
z9J4moUA5JV#QV_P)I-5FG^nGQHl5@C-*{I>`s#8zYVO`rU5NK9n#SZ7FdaisMK?<>
zoM;&-*Jro_P)%a<YB11S%Z{v4DLBv1RPR)9X|)B!9%1JCG4)SRSSU&0qU={snsH6g
z{tr~#Ht6!r@3lr}c2<_=`UN~CM5aJ1%EObXEHqK<`^bo*L<-|4d_YUTKFjOIaE^8o
zGz^G_eR2p^gPQO%zm{rTSdpp)-g{`_1=nH&`Bp9!>7JSPeC1n|ZRZS>UrCn~W)khb
zuzzW^N6{^(!~5{~FiLZO`E806IjK#R^PKPuCKhOU9^Y6Y0|U|WB0n!D6%=h9>Ev3j
zT7N<>Cnv)~>RniOZJuxh>)O+WL-6)+C-GEVzPoTt<8#)rgq#e^_uO?Ud}T~r#P|0+
z0}YC;+nhSurj);<Ujn<kuS+&*4&Bvu4ua{Ww~tPAHAh+iKrS0?vB1Uiwf2!udQ3GJ
z@T(Gv4-C%~azBIeu-jwbzxi0rk3tOxGikW@mzpz*6l{FjGA_s{ygGMG80F#K@qhwg
zRIv+YHh|cR-<Bfv9%z)A*b)4YRln%hSoc7O9olQmQ*T*9;ZP*nQ6J5L#I3}@PbL;f
zWf1`Sa=0ClWSYJ-{VPeWcvw@zniKwjqc4WSWbTq0vmzXB*RS^A{!b4R`lr81CeB{z
zrpT31%8GGT-(udH={_=gw!3SA?H%s@+MdE+LtY!e+VYZHMj6(F{=4rRkO`@!rr-1E
z3epqPy+-i>>9KN_0QWfN6rRsoqs}w5wnAqqgD4YdSvNGK_|<hWbqsP0MW|1I#i%}A
z7)pwohy~<Nvyh70ZMH*@;?>Fu@J8i``@HPP6tBwfA7_jOU;NVftk**Wi~}&%_wyFR
z5$HKR@38+IUvlg9*7k2e^ENYYM?Y*;ZDa^w)*GZlMG|A>{?M(b6;H69`_@Ub&Q~-q
zoke8x8A?d!Lq)Aa5iyH<Jt)3VM7!P%FIKY2fW7Xi=1I<hLPpk<62T~j|CZnrDlumb
zK1N=T)6IQa{9O-FNf2k*`Mh#-BSTL46K!yP>0XHp<9(n#xq}Eu^#5u)hU`&dUE}E5
zu;oeg?R-azU9OwDqPyjtma+BVv&59JF&xIiBbL_g#!x_<l^qb$j=olP(@%Pt7V?Bj
zcyacxiij*HBmIwN<}+WURM8O%EsNh;3r_gu+#G~=gyzjKIwl!DCbAw5VP(b<9DgIG
zEfY+4&MS}Uw~)<?cV}p>_(wHwibK+Ip#;VBE@QG==IVyI|NdUJTyhxICeoV7Fvd)8
z3oLP}Pd<WZVTyGfbvvM8_30Epj|?zG_h9&Z{I@blj`jX#Nv&528_ok%UP7WLv=aYx
z>iL#6`h-^ZlQ=Sfwpo6$Qe7G7BS>E$>D%uNw!;162mCVMx4pZxi^}oA^pyj2b8M=U
z{vA%f%rpoL<=^vcJ=$l+<38-lz$jrf7fymL+F~1o{Cbn)icd4y6Qrx)t{zvA<<!vd
z!YSEoxmr{GES2{@1pN}g7*%mUe5Qb}Lgs>&1J30UqhKZNj}~w$q!}#c+nNC*@zkIP
z%X?j(pNU>*C5r|VCHrJg=fF|W83K-8E55G;m<3go0@{QL*H36jX<jLPoO*Ln^iRtr
zLVvpH<SY-|+B6S5fT71&l4}iP|CF?d7m4@B<F52-7>X(t>5mf5;OLu1uo)<xSRk8$
zhdgyGE2<5+A0k;-XuoOKmE(?2z1^~%(^?Fkhkc-w;!?GgS^;y?L!q-aDlcMZRDp~F
zYxG})EG8s?!)mc`J&z%zr%L=1naeP;^26_<nr&mNLTvvz#Ci+&V&Ma7$S(w~{>l?|
zJ5shTwbhfqk3kzHsYL?p{1SA3MVmGRj8rNN7v%cZEx}+DBCApV8Yu34Rn@pW=kRfm
zIH1i%!(WV!kfe13(~4JV|0y_ZkV@CeYY$!Y!`zC8O$m`D)8W+(sa<#K3-LBE$0Crc
zXrN4Tl1m8Sz!rpSezNNvsNt91OvcD{FOt?-VLb%$^u}Q~v0E0S9Sn7R3P8SdYp0bs
z$on85k2pi#(HDGW;q)qlrHaFXlG*|zF=lCOc!2zV-z{t1o=G{m1EfP4t+&D>{DjXh
zkq=&Lf7{AtV*+`|rRofW))+|NmT8gWN;OZm9q^|*l;f~(*THj-qtdl|-blvL*-rd3
zQ+YD!Z#-)X|ApBQ3%=sy!c)rZ0-w*fh@xkM9^J-*RwgcMh!wr6-ij#~1RXxPJ`MO+
zzSmC!vdKn(mvMSmZH4}k0dr@J2lxY~dIOdEWaHaL)a1Wt3b=b%f>gfPy0EMZ;PV6r
z8{J(4YO+`^Lh&^qm;AP^ja^Eo9z~B-zrWRPY984lA!kf+xbh*?cJ;bmF<?V<iT797
zCNR*D%R&?NDMFF6gzLXw^Aif^)E4F;1;Xj+?E!Fl+&fQ*qadKRRd7TGk(h%oo-BPD
zBzqYrs(L83KgV$J6b4}6Rz!f~Hv*$AN7NA+a(um`61%mx+N6l|P0J;Z39W$HfxbVg
zen2qY-rYd^qUgv!w5R|O9!Zwd8`j~Mdz$zy0e_MZJzvu$@$NJ8PY=mnp<mbVguqQG
zq(Cqf_w_|I9c}IMzMai=hNv*>$%b6Fd!-XB=$_HKj{p{8wt9=jgAc@?ZrTBY)rPx^
z)8#-Yhv#ym&yn9?@mczuU^c!p3rzf9H}mfb3+J50rDQvIU%~_m_+5Q?Pkj1<i8?68
z_7=7$hqVPO8Ag?7T#8*(+~Z`4L>*H!=Hz^oCU>d+M6?prh@;C}cFUb~)^x*+MYi$5
zfeMDd)+?meRx_}VHP3(l=n^dE`yV2jeqvyxHj*DFJ1GB;u6N2D<~b65#C#jt<cBlG
z6QABI8LU^RiQ?}T0ot-}Q-I{JAQK>FsJ1ccF^g~XYFP-S%G9!Z6)sNRO^wwVF2^Q#
zfhn^wPKu9G8B*G$P$=Ppw_^qf49})6cINfm>%s^o+&MGUIwVx1GJo)8yqU%9y>M)1
zxpu1rc$@444y&NPqjx-`v!6Hu^8N?9=#mhAHsJTBzbU2l%I2CZ1G7O&d_FZBY2*`x
zuohdxQzrGoM`ij`+#W}|E8zDgci}lf$<t<%nEH(Czg-g05C|s;#2S4@+V4B>L65MC
zUfnCyaWPsg;V2YSjwBnXi(p0ET@|r4?u^yp-4rPXCkYmmuRZiM2<+qnVv(1&05L$$
zzf>fU85|UCd=sb7t+aypB_}2c3io#hFg88-v7jYB&Mf$)dcs6Hv&#5u<tOcNVkaw|
zFe)hh6R+Iu)Xh5C35mz|CF}0LQY=X!pklUrb06~-2FuSoH~DG};<GD=p6B=_3c2Kz
zO0EJL^!imGCb@v(=`rLiIKmMtlS!=OWSQVlY}oGy+8n%{zq()%inAyQ7XwtiMU)AT
z3Kdm)?0~uEvi_`bxB{6%5B~OYTqMU5)>esA>0q#PwzACD|Lh|e(4d<n@S<p^B1T5>
zmIecqgGqe*l5PzsgwJylz<i%k!#*Mtf*4eKUlYxwnD;BoMSX`j2NUe2Xm}fBjz9W2
zmCtNyKjzF~R-!drrsZa7%<mQHVZc<P+dLpja4?pNC^NE6d2LpHm)4N0)TONVtfNr4
z$M*4_|MRqzB)X4yK31g8=)y`&hBDpF9v5$J4i^%Iyb)M2+8<odLQzsPS()4{cqvI)
zTL-kLmR|Qd&G_j(-xQhy*+G(i9t;;)_M9G5=6GAyAalZevrCN_NNq;_IHMZ;t30Rm
zZwyW4w>5_wf*0Y$@z&%qX=>{jxVvc#CQlG&&#{CeEIeWDfQ>)o-juG-o|%m6`D}<&
zXZtwI*VmfTRq&O&<1CkFb!+ge5sgmWq21{^i2I=K)IiI#9N5A|Z{Wg4-t|qOC}Oxi
z1&9yjw}k?s;pweXK=$YcK)~Ljy&y;?si6LVC}f;az6z4Vu<C<x|0yOzeH!eqxg~^>
zAY(gql(ubM9{mmamud-~Y|s;J${y@oY?PzUmK~9w)mj9;Yalgs_fl2E<pQ+ex8Ky-
zWHg>UdLxoUovM#3jO>xN{S*yef$@(H=@ADirJ&M{e`V-L8fU$!(d8HK_!NP>h-f-2
zsPujK-YRZKjXtoAK_bMS`(w$)kRU^{Y-x$@cAVh)>($hWm4fl-ValQFXrVJgHu3t-
zu4Rz9UIS;NEP374P>*s0F6CV*sD5M1FzQGsI|<>EKS~gPL7qHBjAH$Rl$eC1v=4CB
zRZWF|<I<P)@RA-&aGy4wKA^+(D>^<y!;ZlVs`9VO9ZIC5K$L^0E%+O!MXZt-7Rl<b
z*n&Oti2rs|d=|{9MA<28S8!fwOB=VL%3EX+Iw`BnC!BxdlAnh&ym1?z*E#^P?9iOk
zDBH{rorG~Wfb8Py-t=|jpAax=$>EKOPf7B=WeTV>Bg_OrhVi{*J-aVvJLOrCIeYFx
z`ZYw{0(28QLFO_5dNvf#D^SrXE|FCs|9gIG*?t=h@j2Hj6ChvH>A4Qikq3xtQ0D)p
zDv1Q_8`FqI<CQB&=&L#HHSB#Ah9j8DAB}o}tl<#Ruyb?+4Rp)5;u!6q=xSd9zruuX
zaXX8Siz@9~3SABqw$Fjf=OIE$e2vkNGUb&fuJk^8)H`ac_nGO|QZc6>QAutj2L^jW
zc^KGEj*+pcpoP>%a_76}1AD%+B`2ZIkbNKH`U>6?+9eaJTFd<FJj|hXb5qL-97}ct
zRdh0h9g40i-#-Le9#l(3Gln<nr}AyPnEhK!Sy_x2^!=i}Z07seWH|Uf$G{EF<TlLF
zPmcmpTyQ2PQwhG1WXJwY2<qR#a&s)W#hFZ6GmhBzy0y>=d1ORXTPa7(9Lj<udpZ~T
z05<X~etA`RNP%N$_g-@xGb&I{7CPdt#T>=tVlV$60jd~(8yY(P$}2p3v^hN81^C!c
z=i01dlt6a%R?L7ghi4FjOg<cR^u%(GVbl4zj;jEsp_rXcLrM0-Xv7FOo-`O&IdVV&
zeKuym>tE0?Aqy1bhWH?PN}b#f|1nG`H(0nF?N;6vB-Zycx3s+R%UI6z+&OP-ICG!^
z6!v6(y)r^A&3;w9hhmE0XXS0nDAq2HL>TeX;@IRFk_taVoMkOXZp{dWl3|$9lzMj(
z1MJ~i;x=Ydw52-}3KrkAifj#=ls1ci?4Y+A*QBxWm4JaB8MpqA(v9$<eglf0e<(2W
z`jn!@>?3b{N7f4_ztybYI3p_P^_X1xMc3NQ%HEl-;*FA~objUI+<2?2^8BP8*!ju-
z+#<yDiXU_PUY1yoj(s_0K|DX6QZ89Xn2K6X$Sl%RWhr6y(t+yr*!j5)iD8v)7ojlP
z*^x1u%9~lk>`IEcVl8~~a#;~_Ldx3PU)!?LKySUdrOnd=m+B&coYBEcy9W3)*%cOI
zv5ZKvx9vliEcAK|Ly5LNV|+qzxA?Gb4OCM(f(EPO;wU<baZs@|Cs6jZO|!|N2IO*v
zg!Wz$ntyXtQ-|ysf;GhtI4mCkMROGX*XvE%8U#Je#MU0~Ht@i5l8vK=1_c+5-ej+;
zucp5GsE+gHsyGB6KK>qn2iOQ5kfJz{L+t3~>FmQKfxY=n#rv`_XGW3HAY=0=FLNE_
zsoCrDEu{30=N(kkU42b_9M{tKZ2M<#>ukkYT`ACMhE~}9!AJIZt<~u-tjsT&_!(5|
zi0p~xqkFjQGx+a{aB@Na?v@D=UwVPfvTB1^B}rvIuH`Z|$fy7$8?Ckq3s(CuyXWF)
zp^{yusi%rO_*$A;OeP>mSn#->t?+nz#y|mS2xsl8PBtOCs1Gl3-0iWZ#~UWzVu;o@
z2NsQy!^0WML7U-R6J-D#W<wvQy-FS3Yoe~Zqr_VCqQfo4BSKn)h4FjEL(V?<jS@qh
zgQv&Ebxd&_N%0LD)sJw!OIti?N{0#T;rtswaOl8{+D$qoW9|xq+U#-LvZ4Q4l|ezT
z64AOTXYGM*jkDy5sLmr;zMgo2xUxOpg-Q@$UA~&NKvc}Gf1CS!)?S`ZNQ3VOozRqO
zW!Q4kL1&ymSf12*Sc#31`~ev!Oky0*6^;GwBR60Rb-(sCtyAr&%7-HIFRjNvu-5)3
z<W>G{$jfv@DWO(sM_;7hJtQr&8)u$ZFFNOX+CDan95MiSMPID2Q#BXrE1LZpQ(zsE
zX|f}H9(OTUq9D6at`gw|6^J5Vob=YRfNMx5aw(0rv{CD+EIo}l&yIUn2V;KP@gmk`
z^^M?4ig`3l$t?1Zojylb+D-}l^LIGzksGo(tQc#voY)n4MiYKB?1w&fIH=P#<UnBa
zyUB?8M0;$~n1oD0vz5n3?-?irWtD=wjvgeRgqeX95sJH^h(r2FZR65XE89xzhM&Oi
z(#b>tlN~@?x4;=<zDVi0{C~GL*c2GY67G#ms7iZsNQFEQUlqGS#V-OmUI(}GvYt>T
z?B`8bUNEKxVG1HFio3w4+S|D3$Gy;4BqP#tD{~yAE*j}_OhF1=rKGnf_aY?{0GlC)
zjUt2%D`)nZ7X^t<3zH0?c>J{}Y03_JFV6I*%8)AU)xPE4C7NgVg0qy>5{d=^ayu}T
z$}TQqtD^M@wvJ|*RxT*UyrITJ76nw?KEW-A;Rt;<h36TBdFY(1Ymi_BZ0LpDMi?cn
zpFDZ?t0rZndLoSiIMLFhuZA;`UFXR0V=QHl1Ypl0!@>d@O3=i?Z-jM+r^chIJ{OH(
zTmyalNug4iHILnkUzLkoP7#_pW<~->LG>@F;7RRLA=SZW;#M6jlxY56oLYNZR%iy-
z%tXqHzSOH%ehk0Q-P0G3`T^_-o_Ne$rRO&iJt_Q%r}g=<-rfh`1IL+@Dj^#K21$NZ
zjiJGN+wM6+S%rwU5maHe&pV)7@%o8%0OX!Tu#WbatWmu*s|?#ujeTXjLgH{B-aCi^
z$->4gjHCU1vx)jbdF9rLGQvm?*cYccKd>YP%Fg>|0JiGoJ@M9Tr3ElXpDV?H2j=6t
zn&2D2$VOuadT#nJ6`QnpH(t>ETvZLNai4{#(?)mx=0vxz1@R3jFJpY2fV+0lWd!{h
zC?a>`tR+-xAq1;4(yP(#mXP0B{h}45q)`{lQD0EYOYK}_c*9ZuE@t3=Q@PEA@O_$=
z%v?>=pM?7P)(T#58SSTC(i$a}oR2gf=oJ0~9e)}*jTGC7LN-iMd!+6_2`_OljDara
znMG;XXHf!hx~9)euv<N$6!`NUpJn~%)Y8;f$#;bLZfnpkClwmXyU~WkI)*OBDV9l|
z!-Q6Zenhd!;ks?KybeA|$3+?r#_#<VQDtQ!)}ubOwp?GDD1SmL#w%+aU8j66qBVhy
zp_%JM!2+N+#@z46qba`_ub#JzbF(zmbdC?J$2W!6<GgF^rkb|-X>bBvo2QQ=4vY^W
z>f^VPtZ_gO;R87;uZ7BsIr`A&r2KhzCrt@m37nsb02^>>O9;7~LGrn04=JwSp!J#*
z0_#LE3TMegu!his=QRr7N6nC<7}Ti-c4=ka^2<rDF7wxv<O1`<#^%KJC<*v|NFsC-
z=T!9PE{Q<O3o=g8vL7%!f>%5V>P=lBKqW5p2*clghUH_|;fLk$(s*N+d#g?nW#DZ%
zT;kR|w`YX#72S71GfWimkk>c%LhCx^syqoXGy(0-OEmD<Z^lWbIxfJN6M9^vPzarf
z<n^9^*T(3U#@?*CcXXBBMJ}>&uC1y1Z@sBk+ivqTC9a8A1U+6){=000EJY$-g?bZJ
zlJAxw>K;r6>qM`xF@@q+7zhO3tvqMoUl>SlM4`HYbcy)QEnKR|X3%txS_?^8^|J3+
zWK7w8D%#)tD{#jEYaLTM?A`2G<dl44A$S6r<CdpS-<(BgBZt@`^ARD#cFEu8gY?1%
z#JcO2Ghx;9^6{@$*u=N4Scp(HSPX*jV8CCET%Q}0oWnIa#S3b9y$HHZKjGo-pB!(O
zeki8hErws=QN)_2kj9x%IT>b*a|AgI%SEI61idJecr?Vpo5w;vS*-|VU{gPKOIg+j
zDW6SzGv5pGLv-SYK7${p9bt)nqf9dzvEnQ(u1iKlP7#nkk1+E>^-pQ&B$2!+7a8HC
z{~b_7Q#2eNs)T1I;09+%S&&(}nw~j#K<Y+s{=x1r>fWb*l%c+_nfLVbJw*pXtv(J-
zB{`(R*u|0q&k4ZYUDat(xGwOaYDR%Pv4l<jd7wyP8wUuqbWUemu_oF=9|0p;_weX4
z%NKy3JGtOLRMooK`x}|E?Hg+MV{c!NXTQM>@X+=|vva=$<M3w0aQ{K4YBelTSCq}?
zUkJo_U+qvA<nv%{U~P-TY1U@jUbwS9t{ke9Echc~D%@Mcha6oWzpyzu17gSd0@RRS
z-mKLMSuigw(7rA{qjcI_>q3tp>4g`hD5aR%AX_($`O9Iske)__6W5Dhh1LOayz*Zu
z_)+4191iA)NBaRjJw3MNB|Mk5D6ig^`qIr;evdOH5RgNmWKxFQI9D;)wG|FF-67N{
zW<Y){`SE)e4IUSR*Cp{(+sc=iS7#ghpKwZ8!`(Lc&)_`v5F)>;>h8F)68!5BXI*zc
zt<Mwa)oP{*e2jamvqdHpXouR|D(KhsoKJgxZSCOv=;`cXi{$8@@>?-e%T|@1f7Ms;
zYCt2&nUgI)F8{K{HCuifbApAqu<ed!BN{dpm!M)*&IMNQAQ=MT8@Glb{zEWdqj~t)
zVtWlbR~>jsub^2KnxT3{rZ2SuDu9{$eBuhmyaKI^KH{n<h%>E{f7DA*a4!n#f^C3>
zOL!h12eWpD1+JQ8N*hOC6tC~$YrJWTxf9li=l1fE<)-YJZ;~y`ecNlY1l<HgK`eBH
zE-Y&gt=>D%rWe5B^fq^Wjn4#F8>4qv0y$-X0`85b9;=)F?4DV0^TegdvpcgXC+346
zzvzp?Z(T{vNSDFEK<TdyB8JV+|6mR+&I81vP$g()JqKDpV0RDPDz9==NP=n5M43gu
z5J?2rv=WXMd*?vtXlgMzS+Yzdmrt7X;k%rfz=ZEbkoHi8OF@5u*o$t1plsvOA?<U)
z1OPuOocN8mT^WeeBTtO5pK$Am&6z2FAFv3EjU_Lt_tC)v>(&c-4DP*SPmK7_U`qXs
z7&n;i#&~AiV4C6D(~sPUk_!y{)ebz57eb!#Hi#fyld5eyZ70@IkF}CR;;9jIa=9H6
zbgDZ5zRa}@Wmts8EQU_UGi<2kXa%%hqDu<%S8F}-F!e43Q?sUG$}9Qp;_hj^L&82f
zmBQ>=?0rX9nl<QDY%?s>BAlQD)y=w&K6%=Fd|=-8mt?`r?%ZIL#mq$77tgpK?QuWG
zJ3~n^guT?YWO}vhEk(g+n|ybOUFT>)TMy@aY9ll6xgUOjJy1uv!ja=zKF1RY^4&y*
zhrAEtzFMh_2yIa@9)>i7yeF~lWZ>prvd~M!=rjAz)X8{ih(7%255sT3a%%ln?0?!~
z9($WiVRLj@%BuGUJ-8X#oj?ytdy`uR)j^Ym1k`)ws{oacEuBLV$`MrORNY<Xo@~S*
zX``|m%uginNnvSxY5NWaMr~5>kofPN#MEUeTO4me9Pn}Nk!nSgoAgdL73#1o-0A!$
zL#}BYRm1=7uX>n<KylG#U;5v&scb63zi*9}52IXZ%^ZMLkK_Tx*1Zy--(}_JS>`0j
zljnDgl-UTT)N;U35Jy*Xx{bKheABPC%vR%o8z@or3qOQ-jMQKF?vDiM>5!w0+H?gU
zA@o<i>2^LJ)%N91m|mk~fsM#-<-YC0dV28B9;m4Ij1KhK4m8}-2|KU|@93Zl1&i5_
zKVu!I^e5M8T6|x8On(k(p07e@re26ls$fem<wS<R^LKg7uD2t0WQHp~jBU@Kw{i*U
zUhGfO0!mJFD*v2zgUM4PL{#UOLl)f<@N$ogKN=S4A=x~rYr-0IHkln2o$(<BQC8iH
z&Xovzi>VG7oOrKaBml#t>PC~p6m#Nb+d;~}w3cV(-psI#L!Xxz(vXa^k)uxPe-H!)
zxrf3*K9e-40DK#zx4luk-{i6EcixR|eCeM6Eg1J50!4J?7D(95u$RiQ2yt$uZE6nZ
zRXQw2>SKg0v|Pj{PGeVMi9RNEdkmufrERyeLZG?GE1oo3cuxurN3R)=3^q;`^Q|f*
z*br#_!5@zmrqcI=u(V!}LD+j$WUHr&%hDInk*tk+m({dLF*Fc;rJ=^=UF(H+M9H;j
z3@tgrM&-u#s#>9to{0(6$zI(Vn!fJNlm@`lG=s${LO$o+DX&dFr$SOs8-<sai@&x&
z7UIE+d;3`gAp_4U6nrbQlM{72>diK)pj>Qf^9|KKGd^}B7`~=3+<43eJw!QI%Et6M
z?HO`^t5<1!VYr$+kneETTGJ1UW?;WI3}uHauGJ+V1(11m;^8(-06}bWHP326C6J%#
z>&f{QIJh)Hi6FB&h5v^B|B1z&a-p~WPFXX6QTw!f5!eXGGU%ca_s70A8F7E6VpdAC
zZ;w1>{nV3VA#YWITh64N;*g8*-7GJ@D+#^1%_uAYDE?`t_}s1!NbEL|H6?|{WSvFJ
z>-nTBU7xBZiyQBh*++|c9T-5k{09cuhf{>qIFd2#`~b~mI2#50J5~OMiEL?8-g6m}
zr_kD!`C8u)b5N3zRuM)?b%h1D3z~R<Llb7)eGM7lL{E?r{k1szS*i33Tq4kiFs+$#
z0Ca#RW@fFxQ_=X1ljiI<9pJN`^E=kB9B}XsbW|yh)Ya;IlCQLvm|%ab*3i?A_=InW
zH^fiSk*Zx{Im_NFSPH~+x-mg=NRI4D4_vbgkl*HG5nb`ykK%7Bi*%fs9f)GIJ{xTn
zo7qajaMLGImVzX-Q(Uw%1XFW*d5z#W@vnJ~PMWQbk>^beuMz_1eghR8#CBEWtAmT+
zO*S{xKJq=e3z3eV{MFq|A`)-FG0?|4K=9eWLsC;j84(bsaSjz6Ux8bHnUuHsqRI+D
z6$4|`^y(iS^Y=z0DzW|x`DwZ6Yu8{x?KQ-J_yT~q$x}5&{LP*qf@DZtFR{jayvlzQ
zbmE6AIz(NRKQe!cX!k;eK9hcrbB*D_($M#~9h_SWy?-P6#gT#H3=eo*3|5|9%x0wg
zKNV4kfT>54`tFmS-r<l^wi$KFFdzoso`Q5p6^*oJKu*xLwDjU|AMTm{7<kG@Uu6ke
zVlXVlB6>+4%4}R1y3Q{Vf6HCZO^lpm7W=YqLsK6Vum?F_S-smHNn#|hW^EfdvJCD^
zWXvxfbpO^}_*04L5&R4v>JjFyrXuS1W0fPA2Vo_3tZ%Xdd<Jq2nf4i}LtaK>(t4?)
zAAkS=Di8sv0)QO|fBdO%WM_YIolhuA0t9}W_~l`++fQ+CbN9-wTHrUx2c^tZ=`@~C
zC!MkF2<Bq6R;n5BA96GQOHG)hX1@Y`-s0)8M4N3IlJG;3YEpYnyCpb0pjav0Uq~}0
zlS6Jg;R&wBn%?9{k9Hk}!+8xX4RB1O8*V#yhf99Pk?BCe5R*%KN#~UN;`(%E|DnYX
zsex4ku_mapIpd^QXQcQ0JzHcN^VLy;kLyVCD{-2Y&lkYBy8bLYTqXxst9QLI6;?y0
z^Y@j(73Be|A^ua1sV$y=I8H{*$xI{GP)A)+Qi1iWbAv)c6-<`DXzs$x^VljV?o}I_
z4RmqAb_KW>;d~9g!xQ%0y||-Tr))Z0-dn*ZpAB5R)nqvwn$xpWG$`@AG%&GQm94I1
z`tQ!T**kwYNIxLysloC9D9`#ZU%gBWHPCREnA(;S=}wyjd{Jh|-tdp_SYoMJ17ikZ
zdqv81i+KASgs!&oXw3d+NF}sJ(!0b@iWmS6(Wji_nBklP1J~i`Ux?F~ELv5uUlC1U
zVfB|p_Z+;-oCM~$KJ&BT&!h|El3EPlaq`grm;AlGgrKlq{|ns0k@Q9Mt3g+nROt!`
zqwApcK4Bc{!y!p${;_Zl^~%(yln}AWPpW?UyVFb2_Jo=fFw7N#WJK;Yy?>Pp21YdY
zFtZ*J@U@?AeP>mcEn{#gZDNa1YwygTOyUyUky1}|!rPOa$gV@}>LO1Rk;)h2ziIOF
zjk7A3Zf%}iDd?g8Qcbw9s3jwxp3Bfvry?NEEqCsIclRMo{Iu6WU_L)Oe(YB-l)c@G
zm@uGcVOaf#qeI&3a&Jj=o`!4qpDdTP>z8=!$(1cRU`ZZ-j5@H?i;6-9i8M3~$+=m*
ztO%jiii%P^u^RQ}5x`l^t$qLXzYlxgiH6;W$v^Z2S~f?f_m4DgR0**Nwp((6YyIVd
zRM|+PXaNTOKHd<$L$6-G3-!6mzPK+HjV=Xn?-i^Grwi9Pr%i`@u)5uBBzQNzW7)pR
zm-~^@@ks;&UKKVt%7v!nyuGum7)(bQ4<143D8W7}3bE4weQMh=c5-%$*}}i=DCZ**
z!F?Z(=D`2kR`UjBZpiTY1N8_CEKkU-L}-7Jf9EzE@IObwt*?cGs#n|q*aMic>bfrm
z@={J?;Pc?f6cvlXH$>$xsj(D-dforBPCe0r>&$0VM_pgW*o?REp4ONA?ono4;KW5*
zQ55;ko4zNpm`{5!<SeaEPUYQDs@R7DKI4aIJNEm<AP*MddJ@E(^FZ3-He8xFyY>L!
z3H|=Q^|p*FX`%x}(Bw1!kk^zrmI4`z`P4ALvT;hq{fz0_6XnGO`S!k%5;>+VkD5Iy
zMVi`95I$0eKp!*EICInlzHWb=MpF>9(J6tj2~Vg?S%!SV$lF*VmKVvWPs`v3G|jyG
z@(w=G%;EGP7S(;;MTTUKk13uFsKs`X+SN56Kg-8aNM%6rRNg?Dq=T%mue<U_ZqXiV
z)5Jc<7FtE;y8d=RQ5SJLN4&Uj(vn`Ke;aZk`DECJOyZ2!6BkGTOpv`K1bXM!raE9J
z292`_$!B%gB0|pYVHcg<gfc7uCj=F~$2q&RI3^Rtavt%wI-pgRrk5MTYtJ9C`f9m@
zb!ypZe*<X8vrDEDk(>@r;`pv;ShMKUaR=&ZMZ*Z(X5}<Ue|-oTV@#c7+$%jeWJ6zi
z-aIoo;aJw6z+a*Ei4%6Odd$Bjtez75w!8+&^3HS|q4c(DLP2L6Zb0yIN_EFPlMQES
zYQK@+h2&RkhQsB!E&r=i)>mk)xz&CtCjv8VWGD~oDUJ9t_JZ$5BmrGf0hH0Wq6<4*
zzLNk&y8V|ai!%>jfB$b-g2!cJm92;9zZ&XPiHM>%5}er8gclVw?s=)wrF@|X5L_|K
zs(-LADP0i}Q;VKrxIeKo+Fr{(`aanuYRP8{iVVE-<%B`8=iokF&PLEfy|;`&CTy-9
zfC4~`312IRM1ed{?7MCNQYyWXu;?oz2Wz%D>coCxOEH2a3<AxmJwohA%ZFmfSSAG5
zl;b1hsT^5QkOn~11`UX>CzMj!4k0bP^_yU;t+v{&BPcjytQFfh-hI$7d4ce2G1T5m
z+;M<T$mx9;ONudA)yxpB1BN9#up%^cmuj<5cr<rdnb%S*Wm7Y0V~TaYW~1GJyhs%L
z>&NmkeJSV|^asTY&Upo5#&*OE;^{vj$^PwvLr3Z!d@07!xOvmCyHt1{55gjioea_I
zK7+R&YG><eaqD-kwMwR?r`f{dgG-kw!AL`<4fRZB_w>tEU`+z*%?tlH=A&UN$BWWs
z*%_J$FrSVn5w+lXz1?pcxM#9pZ3-V?vF9WjZ3vu73o|2SFIPk_fh24HhP2826y3PU
zTheKwN85e~6Fj5FxC2jY5AnDCp9xU#P_^vBx7atb4&(3i;X7OayB${Gf%|&vn06q8
zkm)croN~aM`;gjzb{V#+Cu5-$TB~HRi9q2PWgiw2foqq#@B}~D-WREloDslbE6;JJ
zp>j0H*a^#sH3my_caX31*|D{(?L!n9^?K!viXhKOZS=sD6assxMk?ZwO&j2*VPvsG
zrN+kwYT*5^TOJJerdd<&r}dx1tXDX^>s%!@(6T7voK|j8QELCmv}4gNocKJ4uZ2NI
zt#g?J5a(n8sZp&y>CZQ2b?0#gljF|th`0R@ZpogSu!*h_s##F6b#L6{z68TOv^7b}
z$3c8=6OL;!7e6Lew;shfKl4#newRXYl-7`gSJWHp=REI{58|)gXZ_9!XNh&O9eK4M
ziA)S=Nu+o-X}U&#SQQ6iu%&O1I)TkcK`2qYT$!1VOR@R>?TM8$;L$D&`vAhjF3b2?
z`-$t`K~l$i#Sw-1iNJu`6a#T)-!HYxFojlAujayTX@b~_S*$~DHIqT4G3tQC4N0$h
z??pH~KzoRXJja*Et@uWdE*jE@i<@q_R2)WJmC0~%y_oR30=BegY&f-~=&)<zp?PEI
z9#EM`;8rU%q)N7hE8ic_lu@p|gHA+fwqM?>KUhE6h35L3^Q?iy;>Zs%w`PF$5DBLW
zzo;U7_GND_{EJ*1d2!B4kNEXA`GdKjrG$iGEY2aPxfh!b>fMwAgl-+;T~D8F8=g9Q
zvEx}9-96m$u$8%tS?UevNA!M9c7>Jt`k%%%-1(o;x&mR(XWg9K;+28qttD<D@#J!=
zX)@FX%;=SV03f)|o-ULZzND8j3~wu@7#F}-_Lr&xTwU5%2Gfhp&&Mo_Nxe)zr<kdG
z+f~j!xBwj#7wQC=8d6v#7M9tH2)D^X`{Gj7^x_+*Cy#?e8qO_B06NjHi2FNk*)9CL
zNzmIchyF-3UAn=qJ@Xy0z`H&X+Lu2J>M$EZdlIVPPSULC8(W!)BgH`l>RL?{FWZWe
zscpzoVqR!z2{mw4j3dQnAwKrZs#y8o9O<c??}U02k0+s>tuIWZ(8FwMzP8zHZ9Nso
zGJ%UGqkn8P$lT#T3>i~_Dc~|jDvmxeRI?CroY^}APuSwpB9QZ8h_?hlU|K_q^WXC$
zgM>Nqo6SJ=1d)D{ZnBJbh|>V^A)R!_zZBi)7o1VI`4rXy2b`BMtU1!wk|B+N7#2R;
z{p-H(-37lvflhHYHUv0%>Ci8UArNtk<8tG5-pyTCUF%+o{D8yZp68tS(i9~EP-BLx
zDmzrjVt*6tsTHB~`<=hIQaMcxW&%!?f05Q`#I!xD_29?VbCOVSj`EL@$~aTedRH2b
zH-8r}vYg~LR&@*ZF_yefNF0WDi(URaMIz(zruK-xXQgK7B1crpf{$yXOxO@}I)}l(
zfA;mTQl_Z*P6uLCQ!g-CTGLt`58Mq(=@=029(u2s<uv8lf*dIO#5M>xz7-dg9yku+
zaJ3CMkL&gjcJxCr{@HAsmP!*u`WdJTgOy;|I7Lnm8%8dbg|=7%%`e1c@|cSp{9wuQ
zob8KlY;3Zqyu}Uo##}=sXwbNaQ@y;rqEG_sNW*tXM9z~psS1B2LieevX5{}{`R<hO
z#02+EbMjJb>;W93Ru^2UzGARP;0J8jg(Lo+l)Jj+BM^8&ZkMvyfG{O#QpF&X97TDA
znZ(z-fOSR6%`LSH9VA=*m+Fu<IbLK1R($EBaXczj8m5~qkemsi#tjqhW6UE$M9@D+
z_usSisS7Wc>b;DSv62pdcaFd?p1@MtElG?6dUFm&@44`$I`(|;%`a*Ho(Qdnf`Cpj
ze?`8B6D!$e96BKBJH3Ydg%c!QG8zNcOm1V+@;>kUtKylQ<vY}F_8kS-2{@dB)R`2p
zrF&Bx*(Rw`Y3)6r4B848ES#r$<q7gP)Z5$b{^HstuM1<-+5^Jk7J>>6?f-g<k88iW
z0%IG0z*ZqX$JEslJ_N4YQ7|O3p1n&7K&PWBk`62LN-Kib5G*+q>%5zsk)zSG6)#$2
zPFZLy{2j(paoRc6{rrD<g3#Tta-(z3Z-tKuZPSLPuI~_I*Ru^vAieL=tVE-q1Ei=g
z6!dGK&?SjQ{Ur6==i1U%n!|;Mp7^fdMME8_aEmK+6R5@rz&y@Ql@GVIj^RfM)-f#z
zj-`BYbI>o_b&|QxywSl~ct8#}u$^8nS~U03A^Lr?a$+vvKbeHZROLNohY)H<>cVWs
z@0znz^QQ`JxyeJY6+&*<gG$EA&U^h4Y_SF&5Q@O7yRhC)s094CI(vo$0CbO7a(N!c
zg~0vL{HS5Z@+2?a#_RNMCWx&}e2@3n8iJH=`KJjVZXUPyC0F3SGb651QYOEKt8dY;
zOD@CRuqXAv6-7_%6fMs=XYK9tn4zSeg6z0%o5k2SA5N|X^>fta38DU*jr1$A|K4Q`
zoUW|&iN_^#ptqGx(%n;VJG|A2Q2kuVBOf-7-SHCn>KXs+f_wyXLy!fsmsG9mJ?^d+
z-Vw^JGJJqAgOgd1KyDD%W`QAUvk(X8gTgp-Y3S!srY!&E<MTcpm-*K#nlj)E_m`MU
ztJZ}Zi|I7TZfWyadoG$dwB_DDTo<IifMi<N$9!U{VSD3dlyrSA_7hBRd-_})PJ8h7
z_Zp6BY~WN&r6GCY-}=9Sw<DR4wut6suqla0=njkx9Z)qQZL93HyP}}c>=$D-AxQKA
z->c)?PiAL7CI7-=JhOpLRa%frqtmYNn%iclgbTAZXJbcz<)UJlW{Sz`DG3-;9!S>T
zg#I<e0YwD<^QzC-Yf|5`2U!us6a%AMmJ{Fz18tKcyqPOVGji~A{PKMxO_7y+32(F6
zd%gy|L3TDJX7`v&--Mvh*Y6_Kzt&VkEtIvxymGq%hAS7V7R^yl>cQ&wz0j`(Q(&5N
zM=eV+#AqLT6xZ4DIxUf}=3EG3jJi><ZU-Eh-l-RpKpGpeE&v!8!h-&lF#Y}iFN$->
z;hz*DYVB`J<BHi>z>uMC(f%m@;YZ|LgFXmt?XIo?^<F!jJ<B?>f~IdZ775CQ7;DS#
z?PvTqj!>K3)I8DaZ-WGylf3r=<1RNR@P)(1z^SJq%|^2#co~QkgsohC8pu{<&|tAJ
zmO~6Lq)2IokO1Nmc(*1I=MEHg2QS!BYis?4V=XNw*L)%5P_6_DcLByKmCR3mATAa!
zsS+qq3(9j@ZNH}Raj!|s8CQvkXCL}TiSADk^q||7Ilsv*+J|uvjzIYqdCNl7;spN|
zcqAcg;y>;O$0SIR+YEi!@1ewAj(3j<=9i0=VQOTAb}TAFG$8yFh|y8-W>31`rLRJ*
zdq#}*-$nB5U-bn9-}gk==31x40X@Q|PLTZ32vP}~2N(}lZN@*7F2)c0HO3y{I>U^@
za<mR4W-ckjwjRh$Z%L<e@vsbh?w@@hcxg1h`mOeTCCD*mE4mkRED5$V&1J~3QCyIK
zQ@9D<sLmv`GL33}qFy-{VjK$B+Qi{#*5q|`&#$E+_(!4KQ&GFBcoGZhVNT1mP&SIh
zX1*1WOQ&9wWSu}de}#51EaVDrUG*3E5@;LY>@BGbMxmmUDo4`~=ClFACq0k(n(KsF
zHJt6hf94~4N*xe(vr*u$e^^?id@TKrAS9PzzI&wC{&hU$o|bGRrv4Td90-d9IQd`*
zgR+>&`*m4@K^NJuZw=~iN>LwY!Yzlh{U|@J>cR8@R#yIggiD;rlxD12eRhsm3d@lK
zmxRJ&De<mi7<fYX)XgHphmZw2sHVWbjq!*~9AzU@Kb{`xEjaO$IE6CqZt{XNFJKne
z-X<+-*^q3a<O>}+lM?>M@)t`p%i~=`9ja`&-{bUBwZKQX5;cU%M5^-~e}55YB~k5w
zA?fG%Hz)RzW1*oeY>qcP<*-987?aS<EaI-!Un7pl=fMr_Hz!6&e-i%FQ4jxj+S!j4
z;Rb42?*E|=cVW^fq#ZC_EAp~-1wD&XV9Tot7dZuVyc1-kv2U$!@!-7}HD~4>UnF3<
zBL|XMxG|W9i%7(KblonZdS4iG&oS;+lO;$(%s?BTPI+K+yBv5+DJur7epB5PJI7YK
z*!Lp1p_`pZ89-g5kaQI=0OLqV=9LT-&?skIEONx98Z=?#jby8E=%-fj%285=K}gkx
zZiSfJIoBjdx>*?XEpUhSg+WE6F|U9V-)E7S&IW1@9dBqwqgL;W>!qCce4I)=XORwh
z<9Ux^Kc6D}XuxM$;20hDD8vbg?kru_heq|rTJr_6FXLx>4}@@}nw2UI0RPpI&T09T
zY>trGzZ1xUo2I57gD?eF?XMNypB>ww|K5rn3pwSGx7uf{$<Y_Asy05gRk|M!b%dGW
zaM}4xy%*t1bN~&?{fRnQQpF1N1+bo^!JOFE8GA9Mo!p(UGu~00Uw*V2fX9C6`XTa>
zOCInF%<cyAgR(eqQJynmSPWVWcUynamHpwn=x;i<?JAd<49M+%s@o36epru@d>VS<
z?g8sAG%q2`l(%0{N(;kDfAy<4%t6k@4OWUnZt?m1=1{8)`+@zTR>`zi*Z_Gk+_53|
zD>Q!O0kYCgIVF_s-rBuy^!ZT9BWamnLowreoG^qcZCBo&XE=sx6q7@EfgP5SJ%(C`
z#(K#_N?%&LWG?ZaSr=gO^k*2XQk%n$Sn_aZI?f%9{e&?3VIgwOt<-^35ofV32}JyD
zI3ZL;%&fOIka>fR$P8B2h!#I+*4}G&gTS|4Skj!B2y&Ze;pY-gL3(tj`5ik^nD74I
zP1<%Xf<@Q7g=#hg$`q@6au0IO7zR?{6C-Z>#}}Yh4<GTHtszAM(A<1^AWZ%cLis;r
zZz!<1LuMfeGOY4ia4k2lZLD}H*0YYeisI!|9Z<dakKLTrK#V1x&OqB459z}MfR<>t
zw31`a5IWQb1C0ARBX4Gl*F<P4lct&gzW)_?xYeZ>T$9thT17He?K~NZh-XeIk9-$C
zQ~KUs5Aj{;h{=2S-Dqp5`(iW`D3o9gSC3dtzX4dDjZSKp;sfZ7PguV$eTg(Zex^Jl
z9u5AJt5L@4qXNGM6O0jAf-HLkkT32JbR7i>(qp;k_Zhw%+9{pRvi`Cd3qj7LS*;Xw
zDQR2q!xW4ySWxGy<x%Ue<S2$Zzog1cl*<iWPzwU6wv0lyO_v9M8pL{jWBvTa=^yxg
zLoZ5sf_O<&ZrX^tcVvDNiYJgA|6q^Rcp2rXvOje#!MsSghmI5R5ziA)sRbJqDp8Ky
z#xe}uP*3(Dh72W`5Le^n@OVb&+rl4|Pf|zdK<-Gryb4qH&w*M%gyoR7Bq}#%sM&9w
zI3qcvB_JocpvM-%UPOpba_vbvQFLfpnHCT&c}aLD6E5b&B>*U}+{dm)zl+*8KY{9p
z+MZSl6!9M7RdqyPbB}QDTUbfF%zTk*M?sRD#`3n?dn`&7;nB<O0;n|(OBW06K*E4~
z0*$<_uf(KGbj}r?>LtuOpB)IhCzNVq@^lgnaGTgOD=vEiSV5?~^F&6e3-jG>rPSc^
zv_?VQy`xcsXh&Npad*?37xK=1VRlk(&!x~nVNJu7b{vX*Z=?^^#P`$m89ucx6c}HZ
zJsL}qt9NTw^}!b9i1qPg5Ba8fPOEF-!UqO?WVsm^IBe8~QYx+rAXI~cX(Hz>T2CB0
z#1ZX>x!8(#2c)~{nqWrzMk8$P_DJ@JZ>|5*HO_^@1*o?nnUiAyb3f-)eBO~E6$hBN
z?x3)?w4khw%|eFumGWyKT+|^r!bpd=)qTY_*4>L0)kSKLlobzbdr5;7zlf3iaU;VM
z3GmRx=8&z;|A>?-<}$`E@1yh><r1GBvsfk+n#^<F7uZ@Ud9_94*KF#l;Ot!Yw){5}
zmsQYId+kGr9+M-PC|!R!E4CY?$K49=Q;>-d{s|5-bv`5aDqR0OZm-X{U~GS{;p>B7
zcUJ|nea9OsD)Eiqq36>Mc6WIxJ82qW$P~|qry@Y9U*c{~bo{&Hs$<bFY-EdBJL%y{
zNU%HT>l`;uG0awzKc<A+yx(*kNILw~;{RFN8oP|(oHFP9#6L{>`uPD*ZE)moMyV`w
zUYdpK-+RV2(N3Vub;Hz3y%R&N@I%FHt|s<j7`lgsJZZ_Hvb*hI6w=*>!eUDxWQU7%
zxDkgSc~rnVv-NtwB#(p2Ak=YKnC0laSJqYIU6fd|Xmx5|y{b37Zu+&vHkFGe9;$Xu
zvF2^i#3o0|Hc+pa0JLbWxtosbV2rRLl_$_9j%)cB%69u`!sT9cayXIA*!kRxB>*To
zrc=Udg@lgWY)C~E73w|H7o0Ac&*L9D|HQqTu&vk34_(&?xtO>8_iIOiR>W?Au45nf
zPVg*NCjDQV+5V-d8;aVsB!NY?*&=9fQa;3Xy19J`>Dc11yW2XID;p;r1Bc2_6Z#Lb
z#6KGM`3Prixv{`{?O9FM#84HkbJEwDJrKm?3CN^DM_lY$Ab{M3rU45ZNZ@JdsMiY5
zw1SZjTqs%^!zB{Akko=MGV9`UXr2^jFJF4x&W3heUAXw2s0POMAfEW^#;Wvg2;0)r
z4|S^8U_mr|Mw=2q^C<J-^^R4^qOaUhb|Af*pniY&0a-2ET(S-E!hvql4bmj~xcpql
zl)P%D^urW)vg1l$$9ttpeE06fj>y_L+7qv7&zk*bUXtD67ABaw2Hds?W=(p`3FGQY
zrv{g(fY6&^wX*do7LuxBy0LPWb1DfA1kt>B2`7ytXOqD4KF0mtz}2$+(3G2Wwj6=B
z*!BIF#1_yYJn_o?bG(QFz$|kZrCM`g>$z9Fe>||%tGjHpFH`D$F|tU;DbzgD)f$@2
z{SpxzUP>#r=?*$?{h=%!52nGinTAphP)4a?#a!310`4hGw{m$5M7)!Q+?kk2ry7FJ
zXMsZM<%F0;#|cli^%xilh!QXjje4_tsbpF?oZS6MxtJ@|$st#XzPwY|{8VOEW7=i<
zRAyjdJd;+RCFuJRBA>@*>d<7By-11O>$K7^;T}I&Zs6ATomWj@#2R7ARxOu>u~@wr
z-nVa<F~4c~QJjWIFtK=rz_ZD7x=3+&tv)z0<ij`kVR4pJ9_qI*`@W}8ZCio(S0u9`
z6d<YAR_^-g?}k#h;K~yO77?D5^Q6l0<$nz{8QP%DyQQ#bL!yQU@u03vOh=h5Z?dj%
z9#K8*T~~;GvR?e{u$+>MB0VgZ?4IeACsl6LD_&!T+?L`NE%aSJC<m+ZFP_IH)0XQi
zh}JYu0BHium^8=qm%Z&yQeLe!cq^X=Z3u96<ZOdxd3RZAwP!bW*WnG-mQ>z(4yI|2
z2yjSYsY6~YH@0N>miysLrNm?Luk9P};ZQ>py6{IEgjGcR@M=W24g6dUlbfn)0F78S
zSL2&L$G4d(zBF4w1FeS6CS|;0m9yuDIEfF$CPDt-nr+kY-;%#DKZ>TX#P_zsz=<30
zVh%EGfcDEY8fO)qJEDJE9S}TMtq0}KyrI9cEs1_Q9nFs=CDk*ju?hGZO^g-Q!7~0d
zPKSxAcW?!L%g5_I_(Ozkut86mZkPIzSK`ioSze3SChz6-^8qMwOW>BCdmrffyfIW0
zF3^tD;SB3&MTM=jwmoo5Qf=FO^$5ck3FyloCG1Pmfhw^W5XS7|a|FW{es7Xh*G^5@
ze$rxa{x(^L*ly7gnRW$(wtoBW1oT#BdfVhG^DD>a25Nx3b%zx}&B%UcwD9WQdvsj`
z0a*9iA6`vcM+dx;pWutoWTG1osh}O)7oKjvnbcMz(t|MK(Me<Jj2@B=gM{W$GiL9h
zS1`nbLqx!D-paK%P5jd5R;qIBKU_tTmu}z(Cujg;$mANr(&01A>Klg6Sk{;9fUjo<
zJE+`LD9fR(_g4S%d^+qm?76F}SocOI_(1;x#g&Ykb@<aW&ULKi<8%)dLw$KS)*yHE
zIG3{_w*a+TZ_@~&*d5*F0kE_~lAbt$P88d5^lfQ$c(Wc!&TL;1uEWt$MjByJG$({^
zT3Z2aPYt9lF3Zr>>_IL120W`W6R}XBd1R6HvIC&$?1qo|SVN))g|z~#7=O4g33ug$
zd78<mo|Gc|@CBqt+1y;R%l}ixj=flAsWiSozsGLYj=@l_%-z|hw}2jQS!8vu%;#rm
z;m<>BwT~;lISh#Cf)xJ9EfmPmReF-9_^>auyj$PUrL2L<1w|X>d%mPYkbQcN5qY!R
z9ti%0_4(6iJ_`HAfvQCh5-0<aVBXh$&LT&yzWEtY>z(CAdGhx=z~6etv3=7jAR#zu
z!-$>4IP+4$AXz!4UEGiJ4AT(cAL!AGqB6~IO$N)2^@gSFpE1khC&GP#|J78CkZv2m
zR-c%CpQ~>qkJL&A2O1GU)rQd=th_pBuc`Q#$J6nZ;kdQ}JC9}^4cr?RZ95JuNFdI)
zfhV-H!?R=R6{54OSj1z$@+bIj>-H9mh1M!d_S&<pi^Lg6PYL0)E3*#|CVYu=^y>H{
z4geieX{5AGbMsI>{_`h2kKV(Vqw+Rj*qc?AR@bn3MOM6Ua4XZIEF*$3JmZjx$cw&N
zj1=-zBjow?%b~uFirj8BYP8a7IA3^gX5(JYI1o`SAVWDL`}j_~&eV-H^2Pw__dNT#
z5mA;OI{}dCD~Cvg+>|S}Bj`P@3S2<MTcVKaIDPv{WjMH?e0lJ<qf$Zv@J*we^klaS
z4N<lTR59(Ri>}9IfzS7R!mHdK;hZgKp<?R}K^q>6X(3Hmq%tJ*xWqH39_o`=74^*O
zQv7)OWK0E<sRf6<18gB2X_ArN+o(SMo`(>??db{nqXgYtSNWr`$*O|=4nDK5v2(7z
zeBrnijbVf$zLibMWbC&`Lk;Uw8Ho9-I?{PaSDHgg;6=r=2p3&WXRqhWc0y-j-*_p;
zR1ddfe`rA$r3_UyEHYa_$gfj&-QUS|j+aA*7Q>r~lhO}_+K)$3gim(WoMY-t(EkLS
z_gwsA9`t)}fXw8<htsI2Ec|JT<oqP>Xi{SX;!1Q!BU6#&*t?^F+XEY2;gk!gyJA_B
zW!L_=iAD8=(FzQ>=0oHQ5U8eQSD-Bd=l|ZF{IQ10A7P|j6^|;pWv+uELyRlDu?FCS
z9&)!<?!X0msD6a5QE}pLj>T%#)VhI{mHP58!feXcqB%Cy@l90lxm#r;SA^V(yDsUF
zmF^!4!0|`7vexSF1=?Y`f)ar+7{d{vv!onUa~PY5=F<c4l2Vn6pV)R-GGG4r#K5J=
z{8}e8fCc0PCdG!`ufC+wTmg{+47zF8U(<aH;HRKyd0}1$kDsEt770+wr4nw=o@pUP
zV>3Gt0k^;YuJ~WK#*I$#ART=T5S#RVAw#kSuDJbw@e2mNQvyuc1a;(uF7R!53y7M6
z!I8X64*V2Lgy@fW9Z1`$laq;JUX(+_uD`PO3u@W#0vQJKCQ+9LS%OB)N%r3j%h6O^
zhO9L$5>D$B)9ln>(?*WAl2CEiGaV@4E{}3Wcww!nZ)9PV+$ZCtvV^a_oGEwBA{VWD
zC_#T+2zp8m&}rA6<&4s*???xs%J*#*80Zq&T2r~@kJT1$w55ws8+&N}!VotVTI@+F
z_HQeXMT1y2ui50x0<f<s*Q)w|Q`5Y}(QCt!(k36N)H91<PX{kW@SviI!0~hNS-NA)
zT?HC{x&!84X_81<AtV;*Of={L%}=1HC3;n;hUq;#Jos!xU+I!Rtaz`7wUAS}0v`7c
zV|43m$x~(bXm4wA%_^w{&r!i|k}PHW@on|kJagj2HKXBdMwkW0XTsU?-q4vd&X&`G
zN2?k)7Lmhc#r8zyrPJ{t>1N3P*P-p>4nPAEbJXjEyAb%ISHXhKL~FTmEW*6&^VsG}
zN+x#GuZ75A$XKQAD&nvv<GhJ}T1dp&`d3Gk%wM7(=qCXT$~;uSZNLk4xySh3aHe20
zZe!l<h4Dj8;4-p$E!TAl_u>=gX7FoMq+HgLCGaJ}Xx&&Frbt5TJ0W1-OHpJ#w{|1z
zhcuJS=;Yl_XGWKI6~G|OQB)=w(;-6bL-*|E{JgJd{wu)RtvbDWqpO2<1v(<pU5Glz
zz_5;a04*%)9-@dU(79tIZ%$FbAVjmk8H7T$3X&w85<EMlt@5JeTx@;34;tYp3pLH@
zC#XddjMA{ys&}+)BM;d7?tx?~-SiJ>M?oPP0wF^|YoXCS+?=EZ(UywU#sumcm4SeR
zI{<@VG<r2lizER1f2thaHWHHn;;A`Wc_`+x@2E_AfczU(U18#bWimNckd1}3Joqr<
zXP)`hZApwc#EwvBkJaUz`O<$j=d_ixP!wJ#ILeYXwa^rCLRySFKXK?fDSUi>^t6nA
z(D#yL-c23<5Ye`~Mmq6ww0TfsQLIkY!B5${0Y=>a6lj<el^cG6ftTKYGFQXz4(ImZ
z34#8C6~7H3F7L94$KTtb;U~qt7Wj-Ta^|T)wT=9s5L=>DiL4K`eS=-XTsn@y=ufhh
z^s-?<kZW%Zhbm)mr3YEJt1w2u<l3+|s%2*}*<~^0<RI0_=QW<ST6V1td_QEIm8)Ds
zESpLVl!RA9QD;l@!Ju*uPb@_=y(3vW=$umjKHhqHSuxfjwe*8AW4rKp)GDL|4<C`I
zu?j!I1#F~5#v{5TYpEOk=*?~3t6E`|qVTlHMrhY{m2@BEyw%y;CUmSP$N7!V_dW1D
zO?3}y%uwxNaS8V@sIhJLE84^HD1Ab4&$36Y7Jgf(pW|YlQ&L1#TnNOL^IX9l&dne*
zCthj%ZpHO$=v`RAEQ77u8Ek(@rX!0<7Zr$8u$H}jp7S=$d?P#Fw4f1HGGXnoei&Dc
z>25Y%T|84yOhx5CX8W7phW;g(t`A=va0=sJdd0bixb?*r<(}=q4S}%AXg4Ql%|9Q-
zgM<$jV$MA2P=9cRX!JpJ>!DKdFjfpL9A_COX+nof_-J`bfQl$xq2LZ!<GISeLnny^
z_B(66VFvkyBV|;34X_zo66LAXsomBcuZJyT#X1MHNm3}Lp4d+}9Q5&Bs5Zyh`zysZ
zuBfrDP#Uwf9an#;VRUpR#NZx>2{N|^X+*ih6DPbW7Z{{XZSU9(@HJKMo?JMi5pzp|
zc)cXSf6<uWUBGu|s;)%t1N0R)dPS#A;K^=BBcoyf3aH{?UHR7gIBTs?ap(sITF(6O
zqU``vK&-#9WEG}6g-30`WvKJKyPcpc`;WFbeN=)vL54-FA9?GAtCnS|mmDU`66ZzH
ztb55w`f|PZdoQXH|B~KMnFU8eK|Z#ejn1btu&-PDiGU~Je&GlFu|lQ{%1`p!n4rw<
z20ITyd1OY%HE#DW9RmUv><ks!w)89=cJySmEcmf|$(leB4{m!(%)5woBFOBO{j=@5
z@;p1!?`nS6qa-3=wqqjLvPy$!p2m(K=Bp$L*(?)GfB=s3;#(_k&c*r^jl;9vEuj`G
zaYcaXavJM(DNCLTs%7m0vN?w_Ou^*Tm9Dx_OY5Y-j3YXjMpK$e2&`K&{mAaXf>m#X
zeHolU*@SnaZ1v6FD8`iSeL_H>_}J9dRn&2wI36r0R@{s07oaR%$$=0IaXyUQ6N8@i
zu*>b*O)Z)|cE6^uN0q;jJjw%h5J4wr5|`f1OW|)HVZ(`+<!wXE!ni&LX>-iK<YvX<
zk&QY(dk_6t6oIBk?|6t%f8Y4iSR?hnzpd~t!8f?6err_u#U~Ft&}d#NHjert)*0@_
z5hpNwFJ}75Ex0}=Y~Dn*GCT$W@1k4(!U)eZ2bU8sAb)zx<od%m>@!B)$9LO`x>zOR
zsK#-?_510-bS@Hme5^140G9Y6;0gesK|ko<gZ0oecNGRPkU~|PQ2m3uIMVymRUDro
zX@od3%0}A`5eiQ0Z+fpcbaJ3hH%}tQ4I=g_BFv1_g}7!~ROeYNv4v8`+Wf2pS%Sep
z&RY*EA4oesSSZUJa5lRq^XAXC)M{h~7cfSse>MBs=2wQw$KC43fK`=K`|s8jS>lk^
z%xM3x<jYKq1m%2atDBOAc^$R0-GB>MuQT)@_wDvXTf@kPKCqMUA(Id)#3{4_|B;+0
z0zY;8+Z#RB;WyBQ*y=W<p<O}nD~C}MNo4$Y05K}%+crpl|DPET{tuwNrGYEeBt$~Z
z;>~MWm>jT`lM+wpSlYQP2|)QvV2UQjtfB=5B+!m%tR>5BgmVxef13&c9<LyF^p#3?
z8MYmger5+Bnscpv=0>;k4|%{j0XH-Jt#m@SN(7Ko8tF8;ji^rlW!&2$Ct_R6L(`@(
zt+kiyeR8RSliz8AeA;QDLyNr{cQofT+`EwOi9Gq8j7mOA<D{YMv4jLL4GjGxC1~bN
z9fgV#HEM74-dnX88uwmKzl@uU_x-WYFCZoE_h=rOr|~}mIYP5Cbo{>hTZEfcv@y4#
zRxiCb1qf|!vANM$@s^f_HmEX+dkvaTiLm^=&l<A7H96tuGAs0~_f($7YQ|tanwE2$
zAiBcUO)iLY^cu0VGOt`Yx52|-qRm^$s<`rT^4-k3nq*KA!go*>1AguV6l@@OCcs2z
zIi5pp(#Bj1KYc3!Sr)$vZEdmV@ed9`YARu=naB*Dql;j%ZUw`xiQ})W?qrKeR6byd
zNcPx`77z}z&6LdS%CTP6(UCGP8sWnGyaiqPRv6`s4+xwn6GTFFIPk*i{ZTg0x@KEM
z0Iwb?^Mu*eq;uvS^jUD4QG<Tn2y{vgyi8<-Uw!u5(vP}Notl&F?AHX`Rz7VKqR|^C
z{DiGfdPWkf$Dcv_B>MTLV8Ww^Y%SG#1rwOe$2%fTLV`Uh0<hbbN$cbWIV<PXMwWab
z%ZjEHA7L^O^+MOt=MhRikP73-xN>(h_$xf&yj+?zd#e6Yh@xL3dNb5uva)Jy%}L0G
z#Vc!<GRDUTwzlnft7@y+TMCTE`<i#Ch3++^MjV_9%Jvn)F3D~78=x%~uZIW}FJobR
z8OQ6}$;W$(w?vV{JAv%Oh7gMgpY0Wv%HMiLlwWTPrBzE%e`oVCL-H;g2Gp;677l#d
zBlr?T*$JZyh_Cr~Y(j1__db#Uj62XZJLxh7s=NS6Y{b^kSGZG}+SxSDBmy^o%?|2g
zNvjQ);Hy&cuRZsa<w1_znxyrKF~N1L+yH>N^8|(vz5V(GBZJ;EWHxCIj1xeM9+Div
zE~S;9hq=~VeGHOK@4e&a4Das9(H7K#zO|N-9|WE2nu21S(Hq#nQDU^6Yb&1BbLDpJ
z>ErQ|(b5L!4DGFWIAsh+B&RGczD1ny%9A}V2`*!8?5NL%*d}afl0F&3M4Efk@Kv{(
zP0tX^4D4t)%tCQTmhTYjHY-92>qLz3CF?8B!(5}tPv}8SVQ>!&v~nq-3JLQ4o@1gM
zq@u;Z*G#;LCf-UB2Q<{y!An~;qrj{g3D|=xyME%|b-^>itGJWYr~=hQ5+uZz3V@bv
zTgLMp0A@<o#`?6sgPl(623zc|@KukQw<@D7>&u1;RV?^~<;aQ7S1Tz-ISXmTyjdZa
zQ?R_c)P+7T&If|&PK(rEOKYaUzvuuX6J&&6k&r-1U>aaEt7c~F&HUy{J~yW3LA``m
zVu<Ug?xjIoYi2w^|4f+)&+oOd<h*RD=ZBo~X`?CCU?)QXYKOf>Ymnr;MpNOTPUsJ0
zrgSt@j7=N#*xJ42D1}^6UXacdp1$9DG!}u#+e?smYXlAs?LQ&7hBLY^4sPA*a|tim
zjf%<xWKfk&*}U8N<Nq`e(|Olmm_xhQ5$F}s1^$?XHW105S=2s>lER)P8UI&YRocMw
z1RI=2k2J4q(q&TSr=)_(A@YsR#X{*RBci!$9o52o(*O=a8F@_}UeZJztrgB0TEr;u
zaiv;g;CaGs|JuPSe;pFA0l#i*jeeY?htbl?>qj;iK-QZ6ND+iN9M{H-zc+qX(D57u
z2S*%#UGY%T*J?>e<R-K7h0;S^Rc%tL0=WRQ!f0<J$#j&L$_}lII-YfwC)27oG=(R!
zFd_H2`Y5xb8mlo>Ww(mi#WuG9P4ETM1i_~u2%3<~xn;m7(FU$nF5-Xq82F!H$w_Vn
zq_RXJ&v^|05~higVI9Tjx|8?^i9BPWS6n&1id&!zRoO>%`Q0(lis0A;*+ol_dr*jy
zwY|#1@UeOp+t+X<_4FXwO+Vn<dpKjD^x&0jAbJyNsTju#NJDE0-|P}n4kc*4Qw4%_
zPSS=3%c)E`q($ODZAlW^q@xP|6;egZ-B+~g=jB7o_aFjWXv+TLIZP-vEHVle>Ucm?
zRUHX<?Gn1o|8Udbnc(Sj<9ePFq)3mtCc!1H3zCQ!%SYPIQq=RYM7!_Cb^VePMh1nP
zs~XCbgVdWQ^v15fbKgnJ0sZ8F5boxM^WVkwZ}{_@z4m10%#VMq|B!eC7-mT&%KvdW
zcSyBv_a0BStQ+;im1zg<UAQ}LZ<=8P2;AH8gT`W$Oj1LCdw?-QaP+}C!hA1LEUi&}
znZ%~1D|g<I=?M(6q2_}>Q_j^bI(|F!e=vMAm-dm*g^DfBJM1Kc-8wBd@`5;PMosPu
z!&WAHSnH%9N9(s78iodWArORWdCN!hzWA5tWs<G)gLwgQw*IlD_hTTW{Xm7y6-LqQ
ztks|jh#9}i`TKBRsNha0Z&7GheA)tBO~Q6CbCDq2VEYTPxb|rHS=ovyNk$;Iz!kqd
zxsh-SWTfHVwjFuP!669^n?tA<rwA$2GX7{1FqFY`u&}0G!NA4P;yQBxUg<L4R$WoA
zF*&tgwqolv)EphFIT@u}NHqJ&q%iA%E1L;C<B9&yh%t4dI>>bfun#q`>=};JhmnsT
zPN=6)bT~S?ZHA!?GK*TRPA>UIn8Yu5%I>kQcLpFw&w+Mx919gyWQ3=3K~Jr3r@gw8
z$2(&CR->SW=GA=v;bZ2xWy)$weZ>vW8J~5MZEsM3EzS@`A!H2HX5wh^1ELF%3&Wui
ztSA27Xte?jb!+w>n$X-W&V#Ryqyt_`G|?|tv?O<on5e4@7S(6WgDCupzwdZu4N$hO
zy&Yrb;bMIpbWCE&Jc9w2E&H3E3bU-fb7`4oMMEMsAvlw;1XPGyk4Wm0^U=eBAPg%7
zlkoQ4I7q=xu0#;wMt%#{ZmAyWLADTGs-<6!zGBdI4<zHpAQXb7k0mdk#i%++X(ktU
zv7Cz!qI~jW=#;5OnWfpIvNF{&`@n8zv%L;S;v-sYq9*lhlkY;zXC77)q)#r2qypvw
zE3st!f;U5lJkTpjygo3snO7<5^1xxF7=H;cqvHdJxKRc@nMi1u*u?Antyx<z1F4mK
zRtoS*4g~}Cz0jmjhmwD9MDmXv``~OQqnB?tdHgF6BQeC-@XrGumTHS1D<by{Cc!e6
zB>T@!-Nbm@Wk1Mn52~LC(p<1UD%Gs~yi|1-`(0^TKKDOiko|EyvU{L3uO+|uJ%thW
zx6=meQO59O$@?#B0?wuS{ELP<j&#=3N!@ot6RC4}`}^@t4mIq9|9GT6az8@VTA-CI
zwUW}{Rsy+;fBV$F^skx|{s5RVEDi=Gj7rb0^oYzfTZ~-610t|iI$J@dd^VMQpMb7a
zyG)k1vJn>$cVdnM2{&l})+ZQ|cwtAPTLq!d*JFqiUic+ut7sXl2v}xf;{$WMtJQ(P
zmj*`!1aVl#bMpryv~9q-iw5`iD}bTUOCG3;=&AKHUmDGvqCQPedUVZ~rK6Hb6T4qw
znTFm*N($F>3;4TFkh5-FP96dN58zb%PBv{aS<hS}d?NT<W?i-x!ny2ae;`?D+asqm
zA7#{$;2HKOB&?RiJl~laao7}Q0kkJv!Em5`lC~Gc<~l77WH;F{f)aeaJ1sk^vB6-C
za-Hi=8t%GyN(Uar9C7`C=pxjI<XI)a2$|Flxvio-boA-~z!XSUlx|X7Rdpx0kG{Y+
zn8PU|=}!XVqN$)z#b3k;%k90KPgXGu)?W@`(5x`UXNa>~V70N6wr&;zSh2bMN{us=
z0mF3k^8GOjO=h}1EDn$^q`Rk<1E&iH+62b=wq$E#e(*^qZW~kVuTvY6UoJ>@YmziO
zt&U@7i^{N3m#Gx6PaZj47-^@OXfzPtlb-|)X3hor^|YAD@fSw9m;<uhtzs~WL!w<K
zH7T8+_SL$J2=*QC{PM;*>k=U7L?20aR?LPxl3sng@BN8X;m!O+C)*3MF#RVpYHruz
zV&Za6<NqFh87By>O+Y*JZtXK15qrIRf#jIq8s7{g#xnbLok=WiV-h(!ackek@MOn?
z6XH^`cH?Ophm5Jm?~2=X^IFZ6M((B7fRdY)Y>XYw=e=z0G~ty)_)db_RGN_@M)#aO
z;<x#})-yZ$Y~NSHR$rO%k>K~X^#6GeYqJWu00DOJw$V5As$WE_WsBim=+G&JOPa=F
zi;$Biwod<%l3EFIAhDDz!|_W+UqLQxiw#zBHUyJ5>GtwrbNXGqTnYIlfCH=!x+Mj3
zG|XINZ<vUJqwMLQ|2YB~-3s+)-*)Si4SKV(<-~IAIuy`!Nxzd9AuJ!zae_1-tRLif
zR5v-0c&Q%&=z@LU<lHJliW4@w4^H^{?|br7X$t-e@7`H5(+t2(P=~xst#=Aqx*I)*
zmjN~z(CUjyG={Fe^VWed*B+9`Gtt5ym#D6Vj8Z=cTJ9R$8B@4*{R`^D@hQ25i}?rg
z$nIGYE^>lO_2XK^Lf%?2iQUSIQpwR$_39V&1d^xGQp?0HhMN?oYq2Onv#fMk4S#lm
zPhi{EmheLiJ1I|T8Y7-&Kew||$4KFYe3GqNB0!0dp>XTXy-G~-z3V%+&BBtbLU3)_
z>0%l1Jbao9f(IEO(xWhog%=}9w6z9^u{68_{!(Tu@-OR7L~_{zQ;M+d`w)GT)UcQ@
zI?*d&3H`WSSyMzU0t`p;G;{4ccjW7pY8Ab4Qfy}$INbl}2Z_8&N>OKT%)pVu0@P5@
zVv$We(LV&lrGI2814!)&2sLhqR}$1EFtOI}iD7Y0E-1}E|I8JgtaC>oDm0AVN-_az
zP);M!E(w$N9x@Qv9Qa<3=<WEtU6c;l64ar+FQF-Ime$<r%ACU!Sx3lzcHh$U_owF_
zyijpMM35tC)p#yi5=FaldDeZqhRW9TShxVjA-{RED-9jPAqS3SbLs~Q>F)Ra^_fBz
zoswKg-+QJ;)4knMZyA5^dXr9d(Y;1!kuq`moXr?i$yAAwqYBl#EAWW)_%A>)uVIMe
zk6L7h8$4@w;^-JqvVjTa6^&+}TCg#HjDaI!+(?4T)1Gu<?J<IaR`I0}bOP~qXT>xN
z1?+@}oB}8Hokm2##2kSU49SIi52$lOMmP@}Q#8vWW6h!1<?N2VUE|x)r3ZC(f-*}l
z)$k?jh@X7pRJcFd&5D+A;y{r$*HD+nBo6y<<NKckL;S+Z9SQ0y6gz<LqD3h}b2=|M
zrEv<W8)BZ2PS>y>*!8TXd<;sUFSmW!9{Jo`9Ng$orc_I<Vw*&xS*!Gef=oM)r{;Yd
zJP7_`hTY@we)O!T9I9@pGoja^>LX7etZ_h;s+azU2;TRVkbiZbev%N7E9_k&0hZTE
z7zR_OX<3U!7-^T<hUeXZO8r1#u^KetPVHXE!|9(Cro(mklxBYEsQTlml<9b!o~9p<
zgBor7wBwD_<9o+iW^-?E{|Hli37GKbVN}~D&9uon^h8vx@s65>Nju1q?PE!?u;i?c
z*pYrc<=<*lV)ZO+@t!jvq&}G;`084;TiB)}ii6rus`PuD<$aw=Wx+F@0vJoDJA?k^
zEw!pe{4GhOxd#+xJ&kEE_)Iv*ym#I}ru@^{!4a<n0U>Tv(j0IVc@?`>bD>{v>_tTa
zjg_m3Z98X)9dEQl&zg9s3gGEUXZFT?^WYHD*pv%<6wUvueoS~&62Z=37jqwck+C!!
zU(}Srkz}cqSDqs8>7m<MRyr?@lBD1JFkPIN^srI&+)i~I>BOn{uRv`U*F7wl!6<E=
z6@}hnsmdX__=_(2e13i<Y{7=CmyG5!V#C4zXiMq9Cip$%8TF>r@itQZ&!DfhZT{=9
zFO*{JHZ~$+Cl@-yP_!>9xu?jqS#~kTu!Wvyai8EI=m7urM}dK?sq_kDcctBSUC1*H
z()EM3HX78Opy@o}5~5$1J|UFF_UuQT3UnbfR;GaMTY{BBD5NP(@?O^@M-$_EB|^Z(
z8e@t5i8R%EuH+vHd(1GWwi~=W%qDKOCcl23Z)ktX-wU+j7id8Rl(er#dZuBxB8FON
z7C1MI#-UYZ5dSxO_aLDMWtG%ZYnO?ZCXA)Wvt4Y?&RWA232Rk@oe?@pw|n<)U|Xb{
zi}j$LSdL(3W;5`W!?Kn$a8Fp+<W%PZNkr_1nr1b{mRL+*=bp$}ld<)DmP9n6HfT)6
zkJiUZOn_976i5MeZhX-tS;Z59rL;U5YzhvY{A{ltg6=^vl8rL*lN05aEArw;fkY;_
zdGev~i?C)!T7sv{LTX8dh-LQO|7b!`I)jw9uPZ{s7K`0j>)-+{UEUTB%<K3_hUXLb
z)-3#TrW6QhA^~Lv8{&+3T>Ys}2a*RO*GoQuSx|$~s~H`?rNCp3pxaR4Rl`jU5j}}I
z&ZA*e?Y=huF2n-vtJo6@+Hsu2JJsts#aa_>0{-4V^DsBGqk7`LI7LW}v%gT04##ii
ziVt1KS$<^l{N=|4GEGxCw1z;8egn+MSLN_>x>x%Nxd)T?-;jFl50m`$17}+*f0?ls
zDnYX82&ouq8ebaj*DS5$8i!o@Wh!FDVQDz>vh#V6*orsH0$&1KUjWB+;!w+m9>ddn
z34HwDMlaDQ{GFly7$c$Ys)U}}%*_W<=-Z3NTy>G6I6dK={tM{W-uN3qO#5tH9ZOh8
z)oqg-%T*mc^JSZnhU8{rj<thZ|8RmXH?T<yy#*9(#wUY&Nld29t~UVWmFi7c@`v$`
zK<DX{&CDxW8U2)NXgb|vJyZN`iP+=8{>brjT(UE^(*#gNMbNyJ@XJ~#S;dJOd}K*7
z2o)hpYU-)?Tz@d1Ax%n|9HP$7Fd>@v7?Gk`$wJAW!>dHFH{lVDb7r)9k;U%P2ao5C
zV*l}f7v*8FG+?O2f<Q!3GOI<2I~j_Y$)7lNN&GI8el*62Hm|ujN##8en@#V-=oQ`l
z-pCV<#Dl?0sk=}}q=7P4|KWwQfW*vRL#aM=om1xRreQuZXX&U9e1{ih3j+c5ii0Fd
zeD`1YLwUg>S9)GTcWnhre75~^gXG67sSL~BmkFpncLF9v0Iy)*_e>T!Jy$sR1T5wq
z*O!opN<g*0n7zcc{#WU1dYM^y&;BMp{ilPpn83S1BJt+TKQC4P<@YfO$vft7GuPcr
z0_z3Amby_t0!YYIR)TQ96=5|ASzI1p!TOjNOCLC!NoibD*{XEx^5^HM&Xdq-zvM%T
zEBihs)M3h`1wmm4F82FNp?f}R>Ftv2pkND4ITo7bTY=%xUKAJxzdt^3f})@}68DPe
zKfb}cQPC76FpR4N(m`y8;w7u;T;j%5|2xvR^m;W1ai|)U?e#856g|jpvC|FPASh2A
zzW3)z{w<d}!75)K2Ct}WMx+bG9x}v%jJhVBYpRN(7L$ECBmzylJ;w*OV^o;NkMza&
zuW#mXnt2m|+@^u_HIEB2&>Zk5ZA0*pCcBZV!>U^lD!^a&|7xtCJooj{VXN=CcpX*9
zi<uJB1O1o&k9t5T3}ifEn#v1Zbq9fg3ZZZ{mdfItHu!%HfN0xZGhw_W=nWaD+sA8g
zq3W>C2>YLLN6zi8zf&^K`y(e{IW0Sy55jKAYIR=oXqw(W=(SoY7EMg)*U9`>8g<I2
zxJ;P$mN*lB6`UKo0R+PKYx4UA)>0|`pmz;jaG%9SQjmolz!>qs_Ms{^dN~aFI(E-l
zeU0bMf^h1fplUy<<W|n-MbqDVa!rDNZB{?Mg((bs88_Fr_AakZgT^*zaMBV1UFoZK
zXcy9EAI?LwJub!*%u&|bXNFy_t3m!;>GU8<h0jTFHQLv|mvZ3`&WlKz=nSJBWfB)H
zp70BtvAC%A10L-kHSs#k^@k*Y)M6B}(#NW@cIt={Hf4MBJ6AxLrKTjH?4$}$Q>WM<
zKg-Kp@@IIyt~+9BSU$NS>Cd|V<OQPCyVW&wT!%ck_xV%ZR*#Kle5EH6xhO8`%~PU9
zqGk-J?ZjsoVNNrTq)t9_Jd1}=S;pt!hOBBZA<8^tsPNCuGnZ{;L(Rz216WnjZ*83;
zI?{;+bA<-v0S(Lq*FL8CC3Oiaucjb6UId_yE{NJKVxZSrQ2F6`x;`+GD>fBU5|r~h
zBuan!@frg7R@0zW-Y-F!#I?_hfFfNQJ=k{HVh&rxDhNHQ?Af9AkJ!C^q{;a0>@o)r
z3bG8<A&hmOC|*x;jd%y_8EbGk<X{zPTLK`$y#K;w=}aq9I*Bvm=#_NIl^&ix)h2p$
zX`c31(_;)BrE2mV5<%J6&%6gCK8lay@}}=75NOTtaddUgDz;UH-i4afLD}jxm_`$i
z4~QRIbpgv$;EpGlHsO;+{Lo+)^OXKIAGRf8CkG*;@wJLuIx1m!-7m+zq?&C+eNkyR
zJx@XWZIBVU^f-<Z#`Nj)>GaXS-+)NH8sbis1caEItbuFuR~I4lahoYL%Z7QFX|=Xt
z6-J2aV?*JNSW;aMw!fc{+-PdJe%EyF6pq|g2EwNKNMeuQydXIdOA76~@8r4P+W$8y
zxX9AA4x@@tDCSJ=hxB>aQAHyo{y8*Kyil{_MpJ2%MVm)>dVNRWXnr02Ck+)5Hqo1B
zAXc!l--Fq8KZ4x{C>#=)xTcEHU#LCNu5u{DDo@*vIJAJM>A|E`1pJqx*F(*NA(oLA
zSoM1R^)>1Q*cY(AP_9_x;&ycb<{NkOA{$OAnM2ufl9#yFd3Ipg6+jd2llhi<g+3Se
zZTepc#G*)bw>qGZIa8lmn*Hyp+Q;O0brlO0m3<rS0iYcF71vY~Yt7`#Cl;uUXM{df
z)2_F&6ddVOyHroTT;Ob){)e;Z0yTJCk=}@LL12^_5Fnn-JnEGrBg@d!!}N~ZmD6(=
zU~dy0ldRKQpEWOI!yj=~8yJXMIW~2@Mi4wENt$8N&H3s3F`_`oN=+v1#HC-Sp<JJ8
z7O{vK=NHt9=}8Z;MC98Q#e&X@NA-rIh_0!hu=R`J$dxX?Lb`2h6e9%Z>7r19`Lp?_
za?Fl-N-)X4(m);yN%hs>@lyf(feP-0vb8r2=h-x&5I8!ej${JbQit+(OE~d2rsQ+u
ze(X@!V5*puX{VO#RkgLKT%)GN1ltMC#c?zWd7XKN*M~kN0Bj@UmB#^j4bTG%=(|6R
zHk#o}32p*P!jrYkhx{!Fc&G@u`gP8s+6_9%l{ps&nXrBcSe84wjeYgmxMo9Enaa=X
z{)#_p6D2K)j^`3Y8Y^Zsr`~K`nFVjAsJzVW>mI(14e?O2X4T2MY0ZSFYg$F115ZD^
z5nSi+YL_VM%|D>uAM82bJIV~*P9tJlvlGo>N1Q|MMIHb61>s{WD9M@$2``*FZ3}0m
zU=YQ;oMQqsPhx+Weqt3r%W}y-PK)wL?%s9lcga#)7kw~+Nv{ja73(H&idiZ#2i5+@
z5=9)!(9*1ard*plGac+nzFsBI-}HMkVD=;+Kye(nAFpc=8`fPL=GR7~EjQ>7)Lu^g
zZ=H+n0y~6RbZO;LOi<~p*U)2tekF-&J~UGmb`SlJ5~>=Jh$ojfL?oR5=GK##LA#l0
z!I32cwsU=HfLhK}R;1X<CNhHn*68}9M!q$L$`>5m+SV~uW4Gw=7leJZxmbc<JSw|a
zOxylrRkr4F51O#H)TO>qks*yk5K1Jgd9=jq+~3Md#7!5a`EX@*(h$D?Vc)mUh5{J2
z%^fbsj!VscraD%cDh8CT6kO3EzsP=IUO`VNeOL;1An_BhKQ8GOJM7GuF*yA+jBkOO
zBGJVA7ciyQ66dRhOnuuKCi(m@NSrOfNjd#rjw0tf|COn$%l76MRw{LYj0d&b2qRB}
z?6Y7pK|8YE5Da>=8SfIwEsu~q_s0=M)u)JccS-cfyd}UUWG%#**Feb}=3UUMV?Qc0
zj|k4$GgKmT+OB}G-rw&NlP`*b5XPGmF8-XzB0!)6@mSfbs_kaeTy@7n0_M=~+0FED
z`Wm!z9F;0j<Haa@y;y1Gq2lb_OU!llw^g%AqtUi;4Rmb@c`n|ex9)u?ZSqeL;`=Th
zBf&cb^<Gh|noToQdP~WeOgi~-H@jCC;lAzZ8+j_*5Q{p4^3&PP4C<lE(_=sX!18#Z
z|MS}ddHpr>zbM@&_}g4quHP&1HT876G^fWf$nVYk(VLNv?!6RID9DfIgfCA7aWEoz
z)G&|s{tC4-!$B04ZdmAlS=+38<j$yJ^-@GwH%T7Dz0=pb;>Ei++T}eP$U$44+2VMC
z-5o_Pzs-dEF&MkUv>i7jUFWx#2fh@5ifjhTKB!l}>K<PGL3xXmQ@p!r+Lw`c3(G)N
z9X@=!i8vdAywlJgyYMe+_saqJSy|$9Im`Cob?JHISfEz_a5)M>y_(%ruCC1Iyk1$5
zz^kJ=du1-%O@8pkK0a2O>e3Vw&8-X=0F%KQsTb#Mjm;iF?n?iaRgLpIdXa)j4kk)z
zeoUAc_9M7u;8=qv*;zz%b{N|P3mpd`1P%&jH@F5ImXoedyGRD{?l9KHPwfP^kWgCu
z^f+x{l5FJ|@bQFU4{Wlc)rH25g0E!164M@ryje5VPF4I+f~G{~OZcrwmD^{U#voN9
z|1_u9BA_u9BjP--_Q@3z^QmgT&U(!FS25Ob&9BkrLAiRzQQTTEf2ny}_;>HhR)#lS
zIDK@KYn<)5$@jH?8HZ+S%DG4}1+Qu{7Qe;c);gbki}wGS$WUXw%v*qU1;lI4{L~XA
z(zU}e1G=r2HW9t6#OJPGbpYym-#n5@_hk6=z|GKCpvUiwu^T+FaqDE%A{=q0-N6Cr
z#(@KtIGf58=rZ{(T%`ovu)w5|mOK>RU#aKYX%e?LjyDHGIXaX!enbxSpKu;;2PkL)
z!VRZL=zWD96tx7dY1j|9{2-L&HT;nS_Y@hzK1cP9tUf*Gz{!PPDbHS@FB<LN$z162
z<8W8uNWZbq_@_GkF*xivEs^#}EQB@FVg#fmOP#k{7Fr_`GRrFoqs(ei(*EPr=7QsP
zuwG-5>3?O}I)GpEs@<pr+y3UonAv$6Pd&d+(_vtT#H+4MCDv(8oXIPm*HB)B&&45t
z5qAO`7K}P)T`;vXhgO?*Nyd-3%M61@7yXuT!m}0KH3Yp~G|YD45`q3=M75vJH(WV2
z-uSG>h@nFT15d_MxaV>pDXgh1%FSPFO_vJ;rZS33pGX2#C#2DTD3jwe6dF@!{fcK2
zn!AnQLR+oa_2Y7mf~;PVN`XCpo#V4o-R5%ii%G}yHNvzKiH&2nE)zJNcc}UJa!A8#
zIH>|)-j)OnspjR66U?+RYO%@QDBLOVrDMN|wT+61@_u|gm<Fk&Ky~J$@831SW(1-B
zHEzHsp;^o#JAUxsELCQSa=B5xB`WdnwMLZX_ES*p)lTIy)8xiytA<*Z6@=o}7>wLU
zUU{UAE(iskQK=2DiFUJ<(E)7f>!UMS;cEr#3H9_R5=@5F5TVYGn1tQnk$hLY^)v@d
zSzTMzqBM`$4kW}N2KF&TQ|j$bI&`i?apBOU|2!Fp2uP{&3U%I4F{*kfS+$1Y?U?Gu
z=rJrSZ9DWUs9XI5U>KgLsptkikkY#Ao~#5ClD&$bL^l;@-1Vl$#oz2FQQI332B>gl
zZ5fbpk}nXCx#L<hIE7Eh2_LgVw0rI<vV%U%I9CJsU^=ooXNa_Ssu(9|V*1lJ%_~k)
zt=hg;mJdNH49iqIP}l}nhkGRIzO-mJh?(JkEgx!1<a>oxiJpxel_YZ)FUO^b8RT%D
z3UJGSX!Qc~WZ*$YY~qF1nL##P-cfQ9yivE^xIp5lp8<s2ORHzI4qVbY<mc>{Q-POG
zAUF49+a0nVGRGQ01m3Q@DZUv`LA11(+FG01KsVODwsLR*e-H)IZNr}24dq^h;m2z<
zzdK;ogJvxBZ`b%|LttDX-qBYgXv=GMmTpK{JC4+zZn~Z;Uu}QerpEV^IMFkqsOD7U
z>Nk;m2XC|~Cw)5m#)puH2y(qYq;jK3M*PuJ3k^`_QYRHY2`pUf@vNe8B1-{-%%j&f
zgd^(POvae5{)V@e0`!&asBq~9r>fF#m%_Y6G0D6`#qQ|^l}i=xlMFaT`HN9FP{Zo0
zT*{gd+;xAO7%0~Yo9<e)bl+EYIwU55w6)Azl_M^AnR3snPIz!q#nuY}iXjO_dG}=2
z?n$-KheOdxO9#%@MUYWl8-hx|dE7k<DKn*Qy}J4x8r0@<tQDZu?%vDO@r%-RKb0>(
zA=TCA5)pUK`b9jcA>99^y@WW><jy>RWzO^J?!fi{4l-)h@EC|5NGJ!a*@H*(#8L^;
zLb&M)ZnxDaLpJI=f_T&|Z(8CaUJ^ZP`);)Z;AG_kye^KJssRacJBPmQXiyo`PlieU
zk<kHrdoaQYOUU(vj~*$a&$b{ivf>|#KNT}crdtz-JR(ptq%7%@qr36)`2y_^hAe%g
zt7qOhE_pl4xp-ZHmCJzK3uBSarEra7ZR_XgYlA|AvN1$*>DNh+y<+66=j<z%vi2%F
zRclNtN(*xGprE`eh_I16*g)}XtfYZu{?Xv}8CpfP*Y2ytYL?;DBHz$PiwWrde$Aee
z(_(DUiXAswQV)!WCd1HJ!c=g~of4lw@|>rYEWjAwF{U9B_zpPrc4PO3Trm4*op9#*
zHZ$u2{A1kBKxK(23#Qf;b_&5jx-2I6YYq*}7OJ^A9qU;{$~<y1=CH}ZJ}WlK^Pls`
zk$NABOFeM6*0dqP)+;NOvRC<v^lu;o-5%_ypI;{}n<_ork}Hpu@eJ7dYrCcqTK57H
z;HC@eA$7RF32klP&D4Sign^8catTv&LW930VNGcy)HKG^bWyf}hl%G!K3AfiIpidY
zFJUR2muY<Ps5e^n434fT>?*J=X93yLPV=EGI!AN=_o*!}-$@3@VKnRjsrXfKIq3VK
zLd|2LJQtXe?3B49+~0X1lbj^UVU#p@en16b^eeH3J&)jC^mh&+53GNzjbmQ<q~brw
z@kB?UyDX0B{p%Qj@D75LhrfthWNTx%>{l?2<qWTc=YQ!8T5*HS@_eYPc{9f!3cUEN
z4teH7c-4@rwcD4v!0F1NUAQ+%$-s3Mb0BlK7Y6~e?`rSR*9@=o@yDFnfAN^)m$zc-
zYtT8SFn_F3ZO;&^cK&m9n;0YMC{aor(2RK>QfBeeE1k4fS<lF(PaskQJIyJGC|j<T
z2f0v(MKZj!vGRTv1wx9=YGRCS=^Ch2cT`v1n2Z+^e!D&7Oeg;$Y%9iYZ~l5GjCypd
zWnaI!h)g@F>nlB&Me|SEGxHKG%&{I$v1qEhF!SK>@w*OGGK++~6L~3PGVh6Ps3o<Q
zZOkhkRepk_d!<E`D8Y!2S{Rt>G{#o7L#YnLD)U<5ekJ;T)M3){E1wF`_p)NP+g3XK
zWT@Ys@^$YpXBa6CF2ME;q^qvox(S+Dd${;hX<h7RQ};NZ4_>gbFk|9dOP0~S<omT4
zKJG9GZKCts8x3k)Re1(hOjwIlm$C^tNT|g?JYY=%KeT_+B2CsrEWPJE!1<B~B<0C4
zBwOoh4sI13G9);1bxcbeq1MA$Xh53zGBH};|HE0o5jnry{lE05DiSNb)w(E03%_c;
znN}V)`lKtUtN?vXfl&oOVnx`%>+$XK-HGY^&IGjG=Urj=O>=$Xc%Uz>eqa%{`QHdg
zgReI9cqOE&VwsX(_$>=x20qp@gEa<AWOc-KCTUU_pZJ)58e(SpwTq$_6se(L+%hYC
z!|xwA09NB9D^R?LTS5+w7cB<=7g30C`At&Sn<OSt=-c@6Fb7JOv{=H3h{(It_a6PH
zBxFO0tBmB|l(0L?b*>@O0Vz;`GKtE_?MT<HFFOpLFLfRhTbmo&Ef?*KRs#Q$c|tM2
zl_&D4Rw|~H7~P$5Qo%QC<RT)#xKszyhCf;^=G$Y2tSr589`5G^%Cb`j03R*?oNbc9
z<$Bd?_qM)p<?84tHAP+g{ea<~;47XT+pg<#6c1z{TgR|sVY{yZWTnJB)#KQ*j}F;#
z`|J_Apo6eeu%UlF!6Y8Z!Aob12}Z0}YDq90$pznviOaD&_VKMl9YfzKvT&PXF1scH
zYlI4-nCmX2EKk(6O%Necu^vILpI7T*EIBr_9kH-y7#I=Gu-8Vk71bMr8okEIa`9UO
zqpPNv%NJSh_`l15WoDT5?b6pnjC4`QQT0@;-@9_0VitEtyXDfefm-=bp4}&x7o82d
z`d+M*A++DiTa&*`=lWb~H|Yx(Xk2K2h29qv_Ma43H%P@3PcG0dqSs5Jm%4y97!5c+
z)(xl<-Bkh{NX!jO(cdoKOMxB(_HehB^d~ZRf1I-i=^rNd;;JFV*mra}5=w+|N^R~p
z*oeAbjEwqc1ft$Z|DZn!Zk8C8uRx)20~{H8{oJS!Ne5cSZT#YV;aF*ia8di5=7#}&
znn$6|;Q$><F{TkxwxuLEI95lkd21oah^BdpGMus5N$g6!-skd2#Y2aj9M_A1-I`Hz
zc46?AkK=NF!J;&kq*#cV(+I?kL=J)C5BFZv-)$w#VUC^uQ=&yW<VSGS{ziUPQA#Rs
zWXq`1Qz$$6{C=Zo4DJ@GF30*O^KL$vY7S6H=KMGl>XDE^aoB&{D6-gzsp;aePedxV
zQMpATwhXdGIY{J_<bCOIBbk+?E&+{#Ot523Dvjw<QSHeIn5<DdI5iR}08t}l%GLz=
z*jz(@Af0aoWd$A+F{eR<PX88KH&^e3<u-(Zy($*2KlS^v(iUf%DVWP(>;T_KnSRU>
zl$(%Qn>GRSk_z_iZk9|WB})p9EO$&?=bm-ZfmjZzCW7xroz#LP>Rg5UWC;I?1vE;K
zjWRXB_S=ji&+D;1^cARmu}p`JoKWi*xDo6Hr<6FPTXeP&L={oZALYII?OkV*@fVe#
zNU#Y4x9#6)9phHuUe$KCw*G6ShMPVDIkWyfdBB;Aq)qRFQSXyrp#*q#j7aL%4hB_w
zBNP*}#+TTR7I#KZMIIkw*Qv>!Eq^=h@*bFz)B}o-yM0i45~|pKEvR&@V_Q2M?mT=7
zq&CS@Z-FEI+R)z}1M*72vzr-^a~XX-bRGAH8f=<5V%<OqRjx2^iQ5Qz*VLM1+uy6R
z=y^n(qE^)_MvL<Rih@S?`SLV+6Dvo(leCf6ap6GyS+j9n%E5dB{f5P~bNfb#5bt!z
znfIL+8(v_Q#yh#_?baPVk<6TolR<iLR_4@?NL%|B=%d(Y?7D3{@25Vx<yZq~Hiu`n
z)!08ZY8i{|BFpCGL57*c8H2_uFpX~Mee;;^Jv+)o`0idkctU1VS=kqHR7*r|jG)*b
z#F0?+n1X<K;?XyOMJUHsq99;d7WT&PXS>%90^6^?mIN~4D6<8kZ_nsG1efL2iKVn;
zvQWd$Z{WqlXW@zD`=L9}xm!vESE7Qr-Jn(dr(O@x%TZ7c;t0H?=CG@mO(05_G1Uj`
zIXvj&tF{6^h=}0r+GdH3+mnjbsWx#a0)s_|{dZ2CRyGt=G-^r#9!rG*PRO+^$S3;T
zWL+H;;Ch$_7`CTLmjP5;=33=bhefUIheczKuK?zroSi0Uunr2~%gfmN%W8sr(6+%b
zM5>-wkM$8F(<%GS0EX4A&Kob_4C@ZI?(@0R*(cTa=mO@v7<R2*IxVBJx86gW+b#-}
zMvcG@AUxNyr;{5*^Df*BUQAu3;jcV#y&N7>+rA>PWO{~Y;N{~wo54=U>C`oKo_B%U
z9XOr7AA9#wBQZ|8!S^fI46?br3D8;C2knm2(L0J2#s3@BbKWQ{YGJ)uazV;rqCRvC
zQ5i6=NB7g%oM|-X(%J~CvY%{+k6F73X(P%c&@H(T&P<jFM2^I&A*G2^GC*^JtP4hr
zU;32@#Be9>1@lSjB&zvqU5fU*XKx?;b6@mChEn1p52iejDot>=w0c=tKe>2&7>Y<q
zaA$APwW@?OpAyko-TF#Flqz{vg8aTN-e-=}>XRBS_dxJx!p!lx3-=FfHG5454Ni!c
z5C509SiKn`RqrEpWELafnC)xs<iYX(@8I}$wEtqp1Yh1WX{}rb)M(`tcgr{|*2_6@
zE-8{NsT3HCM?d^Qer~<EvN__n%)-B)?LgUempbkt<ySxZAY%E7YXH7E+qepTH|(48
zHYK%Hiw?@`32b$Xi{Lt0XPq+%ieK!zIL2ztIo)8HFSlROZj^(C0%lF?$)V8pX1~aE
z*!WI*XpzbZ85}5wyx|%y>R|}PzZ+&n1N;ddetxQI!0*NB49cjK;ICsvIs0ZI%^`Yx
zWyL7xq7YxKug!!6%UYn4MrXbC8u18RtR)l;cCg8cUKB;Aoz8`Jnr4G{4dZ!!?+wdj
z_NlV`;$|n{UR)2;f2fE^1(SN-Lj@=g*K)1w+3BCIqwF|K$YHm~jyamF;=e{Dje;Nm
z?Oj{?C6|PIe87KLT8oA&z*e&``xbdb-!fM}Ug!9t^i23(T2pfIh-VaUo;c4Nu)x`6
z_?8o8XKS?S?7XQ9U=HamA&t?n@UB<GP{NN&BM7J7pwHynYXLu>^_n1uFrxGrBlR1{
zKWz6u0yzB>>@>fC-}#uVnEVLw4#ZKX0!)Xm1TwWl0UtW>7+#B6ep#CoHweL0-An<_
z=@Q1E!~1gi7H559mEd^$(V(zy#3YCf-!X{S^U&=7OW4wfq2;S2m7q|qx2sDPl>RPt
zC%o}`e7GGYnIr-;rgWej@@oTyd|FGeg*4I#L6)D!)xmbhH}-!u)H-Bs%gYHQ5Sys(
z6H)%R^xaXjV(@E;`{*10E50P<8kmYjLjo2s_7F%KQXALP=_{<Tfxdn3#a*U5+e^D*
zD1$eQ3``a%c2-#2n{LC6sRj&KKVCq4yv4WfAC}qL)bBFk^xlx%gKhng#Mnj^nlw_$
z$jce~o{1mk#dPh$Y1f_(%Dw>pO_rRb6>?D{r)C#tsL#Kb0s1F~NK>JI=@TsYfHb1F
zgE6jdGIoD0V>-yJ@lLN6azTK$b2>_5S?WxXv4Qz1cj2j1R(APcx@RiIJp*VM*+1uC
zl{pleI1dZS35`xh^(W3ng_wzLgRLxB5TEhuHU-*g;H^m0&gb*q-AbR8GT3BU<)lsi
z9Akg-uvY5qno15@yW0v_oNBuJE@Uwvf)+uLxNGs)x81Lef7Gk%<SPJAN|{GI|E)Pq
z)tRtIWEZ<ySc&6v4y0#VN^4C<K*tlR<-$Co1}&@|Gk|FG(Jx@f6)GuyIW9<+$}V~>
zot|x&+VtF0Su{%<D9zHg2HNCN=8&~5e;2{PBms1gAmILg2w;omacm1)TsC+kSU4Fx
z&t+vjWuu@untUy&ZQJBxM*YwBIgRr<-x%ah=&(FQIwA5fgmg)KBm6nCx45h6xWy?a
zZ6-^y8h-WLo$~zIIOlYdK5PzoH$U&iW>@HF&Ct8hz?dC}?IvQwj`Tf2c%ZQhz9DZ^
z8lhAbHlWUviz{PEKR8{9p`krIZ_FLz#O@&_Pd+#$`WA{yAmvByZY|K1WvMC>->ar&
zqQ}_S(GAdq6WmVJ9<SBnVE0u+tPZ80tiBrvGu6OJoGodOMz9htUrs?!LV6P=XfO&g
zPJb+=me?uAG|YbQ01QyZ=LJjlGdr@Zv%Wj~HW+{yPMuu$^26G`!I-zN;3RWRVjV;h
z(J7<KXa;HcSm=D<`I}vh%Odx0n+h~9=uwoA&vt1R`c|@^mqM{}XuVUgbe%8Yf$s6!
zYqv5>4U0#v$>pp}9;u8@8G0F&^7B-j0f()fW0cR{UI<Alo3?rbLmW3pgyof>?-IqH
zW95cIkHwZ-Kcm)zh#AC3pl=)Hm2YY({P`nn=SrCTdeTZ>D!DE$YRy5IAA2XdS(tDu
zk?njto`La_k1^|-T4^tIktg+(K;!hjI4H6|J^|CKMk1A9*;AC@AFN=Co-<Cu5A%JB
z0ba|;rK6Ytg~3$EehOhhjG4khE>!cYp<I&ON9aWx$VIb!PjSAc`;Q<j>m0y*Gq-Eu
zKA2AOaOT8*RDL@g(PR<mac*2>0#bT#C%8}ShZ61i3y)-%qGC%f#(87UC`p)OsWEBb
zU};PdqZv!$tHDTpQXL~H_6+@92t`k?-H9HSDtyLJ^2Gg!`rb2ZB3QA@y5z(h29L^J
z<h3*}%!rs3?IA%|1rR9mFi{rZOVR3V#dr@$u_J{T)^S0AK&g<{qP6|3g1dzV0BgDl
zfN^{|1M@NFL-NM&HZlDI3d#5&gQ>j%hcd~IEjM>~{biE0Fp6+;O#OB|*%sG7V*6w(
zbe$jW70n@=iJbqush21SO_!PV!W`B{)HBhmFxtrer0{%cW_tCK_z6)aj?$;q6?;9O
zl(6fcrUARyn81V_IeoHAf6mh|UJnuaH<E~C6(~Aq)Mpz2HQsc~Q!g2m<QUDb+o9eQ
zMq+{()5wDBu#Nb4t(^4R#v=1B|4Fi+1Z4ea#w#gq#oc>A#MvwaSf9E4R~(suG>KjU
z*)kw~WJ?PXe8F!?x137KR+HN_^WLUbV5Eq?)3qn<@nLX!=zT6R?^12}N<!`Sta3If
zX3IAX4JBl-fR?F;U=qHT(Cj1E2Z*Oo9B3{rn5pscQXz#*S(JnjMDx=*3>XNs$wNBk
zH_+qGdpB~2awa0jU?ZH+Nt~z!SB%RC$m1}IjaswvUD0svY>{&<g5LjYvVlu0z`Tn9
z-fOq6m(oEUNr>k|O_R-OetWr^q}7AFHlFVR-<kN1_o#MXfT()=r_6fO%?A9sPABM{
zKx>QyPj7r;i*-Qd67{A#)pq>Y_U64)*2vbq>?Kic{|hhOCf;poB{5m9pO>#_wQ2xH
z4g#H&*n#{Ycj$J{L#g798;!B8c_C%FakHKfSC0njy}yxSh2O}O>S7ZNB%tT(vtN*+
zB5&KQgh_u}SrP^3-wK1P6K=TA)Mu;#*UKhWIx(~SXv5Z=UBd6S4mdSMep<gn&yhHX
z8a)jtKa%(+XiIpLlx%`7X4Nq!Qyrs3xhsQz`NFXFCMt$H_a*y+nny~X);*)?CH<^;
z&5KO@En67oIJ5{4$7qbOtUYcL=Wf5gaMPH7T42_YhNJXc@(TON>~#)0ZrC+tNdB&4
z%66ndQpnNN-(-rQ?!R5n#D5p`i};LJCwAKraHJ3vtDwx9AK6@RS+xzak6V4YSa*zL
zN%+Tu%99Z~4)m9kedB_L0)ZqeB<=I-5XdGZ#n~repE{n&h&i`z_2>e!58TldF?H=E
zT&&8VCf}NFz#f~ux2Dp20UV?ul^y+aq^3a?9n=Om{$GhOGEdxZQQF8lP{n~`!^I|;
zL2BJ6x%=dORIzb+;gE*sz=1s79Y`QK{>snm?m=)-m4Pvr;yJwr_BN;?H8dAC%IR8G
zeWnvIr*H7-dMbDzW+V!8@b)?*WpQG-hPqZCsb>g`sKB8)UoMJ~fu)u3r#9xjxbvH2
zroPTT`;{Ho2PT~-<K>7f%_ROT2>-2B*J|+AX;|8ng4*jQABp~1l!_0vYSiJ#hiL^V
z&v!P-yECL05>uG4Ho@63mJabT14&NR@>vTnh=PX=Gql3@$VWg){k8K&$E7ohegl%c
zQlElubMzMRk{{h1-d+oSMlGp)ur%Wc_yCOBG>jOt0@VZsI0oQF-@`ZdF2JHj<xv6;
zm3CaR7cNo}<V+%QT7NDph;Mg{zlNu{@M%N6y2>J(Wa=ief$l63GMu;iM-$;#nEYu^
z)}t|fF(v)sE$5VkPS{s25wL`{AqPv4Us(4QQAwRw^++D*Yn@W<rV2t)MsKvvzmNci
z2&b0c4X#j?Vp)d#ashnGdd-F)B_eci*K4GfJ~K5r$cz>F*6-?<PmQ(5@%dzIaY|}V
z9+P+Q{0U<BPIieA7Jv~x1>;ruc=vTL*_Fv-H=Bax8y-PAty7fE%{k!nFrHInc~v-R
z+;PlqXFe##%ya8pwAE8F_xZ6LH4jI$OwzWI1!SJJwGzV|`E3$j*D3q!j<nTVlzCQ;
zyE~+Su$e2kwL-B$%!H;-lSUQKtK@#4G&C4kFA0N&G>m`zy0>J)Uu~EVBp^FsU@b<m
zb$To(KeRe6>OyGZqx#gdTl^|uJ%&noT!w65jt@~(V-EWtdke@B_i$5CnEAkOSPQ2F
zau$RPjF+V3h|@}|AZv)eC`3mUZdgKDA5z?D>@s%R($nc~HZLj_BYYwhgd+`D$J1qn
zTSJ==U8uQyF^DF+yUIK?piFZ#VcB`8I5b!9YO$mku4BjidNf`-;>ToCVEAPpbZHrF
zPErj4?zSWtbCz|B-18P})>6=U^~vCUjGgM==rP4~1lM+0K-4T64aHorwRY;!+M+hA
z253D0F~TYC(kUOLW_4xJh6@WFjvFl9NTfYEO|M0I*zfqkXPJBSjz}Xf)w85hA3c!|
zA?L46R<HKW@h7vMz7M<6AgP+vZIPUi8Wm34I?YQe|F*A|s^$Q$ijImWb&33F<|6_w
z8o&bXCsb1K=|^V&*qf&GHm|v5dI17U3@YNM{HV=hL9WN6|5I}%T2$0%C$4tK?~M3?
zlICT-$@n|4H$XHZIfEGr<?nXF8n--{4n#r=6&^KC7j~CI?5}l9&5r`2=Duam_&P&u
z@Q-4s=wK;|W!C8W;3)=A?%NSgBMG^@t_u000O<3^nX=twRX50$1OE3DItuCG+Szdp
zlf{oAY0DMc6|Qx^<nW7<{%7~8p)%$HAgj%PYagCWVnw?*G3TM*xhw!lK(@abcVDUp
zyWr6`)n1Y62X<+u7zfY%oJ6n8CQ&dd>sfzMHHIZ|$3F3b`KD4wyjIQq<&?2w9QGJe
zk*3p6wNKhhw0L!os?EwSR}$Vi2#LwMVbhcGh(7~2c{w{IbWYR<hCP4tKg`n9K=00^
zEhRv|CIc^q<Uju(X+nAat&#+bHo@LsUw2DuJFjLKObVkRJu)M&>;nn~RsqCW&^NY^
zR%$)5xSp+MhJ(O3J_kUHOH*F|i6gX(G?Kvp(*dwr(m&M%<6s@3yj*Ne@B~w0)Swtj
zR&9+nRQk8;G^edihZ%qd7%x8RZGoBb{y_q&1z_Hjk5F)Ic6EIxBEJ^y29LmyJd&bT
zm2V#h9~l8^&{lL*U_BstFN<HoR7rqc02wSQ;U-x+;HdhvG<2PWV|p|}LZy7c7!Gr>
z2RH*QMCH)&NHLk@K}CW;Y5DlcgRYY^0qWDjDcxqqtm#oideM&n0{Cib7N?}=G-nlA
z(eWXr^Pj~;8Cy<Xb`LbI%NAP?h>U;80eQtlE$G{*2l0K1qnht>2&ORTlHm+JmWqs$
zUu4XuV6Bpe(Q?wnQX5Tx5ynn$lE_`7uVGBko3_8<0CO}SUk!n)LUeV%Omrr%UAqrj
z{k4e1@WZn;-zkJZ&WD9$i}3_^ZgLm@##}*c%|Cs)X5t%5HwoL~#xjSj%=rp7Y9n<S
z@OMm(W%b+qA50Jn`mRP!rY(iSuqo6>9#?|kE@C(We7Hc~=YMGMT0uBp;Ha6=G>mi6
zC>)@ej+BL+LeI`4-l8v&6io_AlqK8GA7L~tR-{_HE3%CUux=05#?9%i=aG_udtpF_
z<1A2DVlPZ8Q5XsACy@O0caicsx9rc?d<O)CPdL(`{=k#&HmcS@f*Nu~x@*_F%C9ba
zyu?bMd?6NSvSu`zrDbLcBW&lx>3^@M=2GVcGl<5dsz_-h3eofdzggcj<oH!Xh|9Wm
z>A<MxuBp2ASNR78r7c1x|3_&<a{t*Z%`TeU6C>j6t_j0oa6X^AFnB40B>=qIt@Tnw
zFOL;UELF{`dM5m)z1ZilWdw?2T`e>Mdhq&e9jna~MRideNZL3a3WZie<f5I6c4Q0$
zUDj;mf3+LX{4-Ku^cO;zrMy7hZBQGpszfGIK+o#Ll;=waQ>#eAf@+pPIAz?dG?4aE
z@)#TcfayqjHO!`%Nu#rN2{gVyWP>}Qs3qcO{6(=8Pe)3<*(OuIUCo&s9@Duk1f)lF
zv?My~GcKm>yGI-t%F0+-H}@!Pd^J~qz{wRzo9YxrYg9)b)OouE*uY^JD+&c@M(!LM
zcXiWKQH}mrZh5YT2fbE6Zcp`HQ(FoIKZUjvd*S&6z!zR}iXwZq$+^uh4%f6bm*X;_
zu$22Wudd2Frou4~rYe>dfoXf+|7<#ep&?OTvqHEL-L&i8q)t@y{U5vF^<JLKz-W0e
zQ9py3kP%r>+>n>$9S9zekYR`jR$GpzJ&X%MXJ&;VIK&QB`668)e<016myy+fUaKhM
zKB=3DO;it@kOHl;*TNu1PK1hPc@?`oh8LK6N&A@@7}w;N#bo9p=6#BQ33l6m8Y%yJ
zPI^qbfx_0Qj=<AQpff{a)Sb0>M|)4hg^1~IQo4YApuUA!HME88)2Fp)PK5&hv4g%r
zWOw}-#efv~tn)u5Vp%!B*f$859aFTs&ax?p8byti0@#IV@hb9hqf@YgRZboH9H-7D
z=_5ZlGhUZMAZy}ytf(+({%#csw{Xr6XM~RFB=e3abXR-wW(s?Y<sMWgiSlud-g0_Z
zSqo7T3`P7LMC%MQ(ujz#Lj!;!7pzAN-hcBp3?f(%G$~(#hr@WAh)Bha@I;1>C>nj6
z7Nkv(ljY7smkypL#oM%$=L9A*dPZb0V$Au|x=J$0=uzub&!`Jc*SfXqnf%otN0&?J
zfkm*BnR*3J&ZV=Dl8Sfv?G>M+`50j&n-n-z3*HVgSSl^>Z@OC;(IbvG>kRpEQTgfW
zE8F4AuLj{oaYy%bJ?~*hO_n8}x2?62iqA3O0P(A7<kFms#YZaW1AVTO=wVm{k0Cjx
zvKp^ucM8ghrAwm{P0-SE<k6YD8qG`c@1tT%UODzz;X*yeQSrN=%Np4_M3Pm4Q-c)9
zK-CD9L$aUIWg&2lo^?I;H=@fzE&Z5)PJh&4LxH+fxHuAbx~xi#pc4sv1ejO2RSn^h
zwa03ze{u=^l&4A{e~0r9o#N0Tf)*?p0Ip<W(%VcRwdX}(-l4ffxDMo72wU6O2xngb
ziCTvaI%|r9b2nBEr9pz7`dn~5R5WmnLmI{|+-1yMH_n<N0a82uyy^TRcs3{Bb&G-0
z_@P?6wfkR8mxv|&_Q7cJgklXSUug24sL0-+rDs;z`_#AHO=>IJzTTyAzFM(ka2snR
zbRR78^S)HeRp%4!QXs7YQ`Hcltn|dbphF8|95D9}J4rgn^2c<di>IEyd3Cl)_3+}H
zoG}(VC_s^cww~H)+a;;S8@T==M#!IK$)V`esa4m1LTwU;PLC8L3AaWr=d4KBwK_NL
zM)kUfvM@MvH;_fY_aZVj17IpHZM;e=X~x~*HK;extzwtYg5zg(#Q0!N<G<}$e|YGA
z0)k!YlWS%K0{2N{ms=iKy)1~O_STMOBZr$%dWG`M#KnDU_{dbjHI+Sx-+IFBq(eFc
zvZ@6bps<8^0q%K;YOD5s6rs@TEM>2o(V#+HA_xhnhXKv8p<wplwt=A-Nw$gl5RJ2J
zr`Xz5yi4>%Ww=xUzh~iQWVuuhn{aaUn+YV&@~&V!94jxyTZjVIs?qFk=q3^8Mj%)O
zSmBbIf%_7Zu70veMlI|z=4aI1Oqrs!BV3R9X9@O!?##jrc+BfI*^p2meYf*Qk>5aH
z#ifU)waOv!N=*%<@jODt(}gO=6CB23@1%aootNOnR{#BQ(c|Tbxr0#Nht7r=G#qm)
z@zsG=%^k}xb)xQWqRmVoitR}g;7y^_cQUu-Y;CYU;S^V0lsgN3`UZIXu1KF|!CzCz
z#{&OuL`>ep$GtWYb}`gtst>`(wD&#Spny|b_KXAz^exkidlaDN2?~=-<73}h8*qgT
zWiNw8BAtn6PGODmDBXzV{$F#$L)@4J?rDaPzxTN<D|$j*L6Z!n+)@&w9NWZ5*MkI1
zVfWJ<*%Bsim!}E=OUN0&8yxwVCke1E5i6T`6RtEqsU`lC&`@)E)#I9?We(%}9iqQB
zDj&^%JxAb*i`Z<jbGNA*!wq?Z@hK^g<!0c1tkOAlFok#0%qaiQ#Scx3k=J8VS3KuA
zA)Fq5+jpks5ubw?*!#FWq%x+~hmXA&#5)k?(w%SqguOzH_?AJ%RbYdqxjxKqvwvCy
zipwI18`Z<N5oF{AlQVb)i4a~VvnqE_Qpu1ETvSun;w0b1&Am}qDlNv%^kvt5J=e5i
zEy%Yogg{5mnc2_5z!8gK28fkT@-AhW<RMRm1tiJE@J}*ACY^d@R%%yJasp5QyV6G$
zMbG5s#YMu`z3#mPn?Nm5p65~(F<uRSRlUeRkazct26Je`d#>+JWu0}*q)h1|t+ahr
zuISDTSEgdAWS6tVNNZ$QI+1vpX)0s@%I#~?gbb}|xi$pyxT>tU_`rMDo(&0K!FYi?
z^kL$--W~Pka>Y9h;#j*m+chY&ZY&7%eP+2hzB_0@6LPT*Fg09lGJk?&K+vd$^r>XR
zONm?Nury0UOR6tr1!mcz0aMtKItN4nK3N=7eVbJ<vgsbpB5S2Qk+CnHjF=8Ei~>Ua
zquQ!sch~B}>{RI~El==cFs5!($+j5G$OsiOH%5^}+R77fJGOD|dDyT3{Tru~k=Vw(
zxQHEvw(@DQIYArd9F>sX1gttejUv6{k%|ZX2VVtK#a#K^L3KAZxyJHpz<;NrLsFdP
zs}+QH1->;xZ)L3+kKu&08kj&<@PRwqFy5Xz7bFno=VFUqmul`!uqLCNWhg7x5K4OB
zcaxb~P#KR#t-EVl2=#xerLw}9`6CzKVhAfTA+>9uy`_&4^2^~Sc#zdG&bVoON-G&k
z{PmDSGy`e1f!{E#wxv82Sf>Yo0ZOwhA0DLVF>R9zRnl{T{HCuOo6^yf+zB?4nIeJ+
zGJh!ErtEU!Q_g*~(~)_5S>gIzm1E~Th|WpYY!Kmb`sZO;HYA%{=_|ON`+5_$F5qX#
zg_=49!-#l0guj@<4KGU!mP>Gb<;Fk|g=N9*A`?;st~p`$NVplVs=0!6ZLwdiO-aJM
zY|6E4hI=bEQvD_I3_L+g>Me1psO72Za`bzwM<{`efG)pJ=0UyE$cgr8r@~yc9GvW{
zq}L`m(wS1UIny;YYiqBnAgV{~nWC5=WtAzcOR|?mmYWf&OW|0;9pz;wvp}Kyi0i#K
z@(78LV4D9;2|(kyAycs63*+NAN=|^efx@uW#6aPKy4se7jn<gK*u*goy~W|wq&Y?S
zir&$^3FO$PzYP5*9oVdhve?Q03VVpTQ+>Q#KWx!fO%jd-*#t(f5jcq*)a3VxE+T~#
zN_!2t_)b}5|Kldn$D|5@qSqa=YQK$*XeG6sQ5-4{^nC(qF&?<vez^BL$alS;ao%q`
zEJaH*5^>ur;|Ty~IVd!~=-yT>-xj>cw#`!+FNMG6xrEv(sM+plee~AmNy#7M#qG$W
z;c?fCL<42DeSFStJnSz+^L<MiF{#7XEXLywtss2OVSd`-isiZ#+$H?MV^hM+ufqcG
zOFI0A_|7NB--sw|0aK9fdE|ENe9ox4xu}ZO>_UKL+PN=U!r>IckU_OEzr5;XMb5mq
zWf}<^?$qqv&Rm$CjJ=)d&w%8nU3lE&*Z_t7ApuXH+CnaN{h}X`ed-XR1UMw4D^RJd
zld`34r#TMzKKDZ98|p9I`b|gzcd}=7PDG8hmY|X;N$cyMF`dqLA4&s4C6OIj=d4@q
z{wNiTPsd!xol<8Ia3c$s(&FlD`)Yec10s$c9m$O9GwJd16C9EpNX%Ywpy&0cj;f5s
zB=B6bUh|z}57W1R^bg+_p!TZh$SfrhkH4hN<pnd6eo`7oKc{ZNMTgj_@}RP|8QNv@
z#~=F2Oyngek*;8wJ2Rc!Ra6opXL|ZEuHx3c>Jn?1VQL3o-y-Ls*0hYi)v5MZ=B|$2
z9{$nZjYOHcKD~58^#IFp2^MJH<gR6oYu-LLk&)+szvvh<VK9;k<(`eStfjJg@F%nH
zGX}7k$ZZu_>pM`bmVlBzjIz7=ef1v@e5_z6n@8oD*}5SLdmA+0o=VxKxnXC#>xFgR
z7R6yDD5PG0GnBQS0Y5_1kl01uhE@GH6jY7Icn(P*BK}oKt9Ts%hNL;XyEY+*e`4PZ
zvW-A{SLpX%x(VxO3^?prw0U}MtMX(Ye0cW;9l(}3+LcNV7)Zu<zx^?*Jp9W57K6O0
z6~o`0wm*%n=iCqPf*`ay^BV}@*EZceFKF@GSI;xM$3tdN8g&SdGH30R#8IH4Vd4Kg
z3t`4;Bm~i|?h!;{(jE#y)MWv2;*FgUUTBwgw@Lm>+nsbz2XKBT{;evZqos*?dgRWB
zzo6%v7RDg~oUuFj%m|MljNj17@u16&Bl>!R1yYZrq2EL-$D%9pzrU$uTMArS)&ro^
z3Jvi87|2P^Q9Hl-Y6Wv}aF-{=Jk$L#0`I#(5M7SD;ZTr3nrvDPl6u;8tl$Sc&DJ2_
zk)eZ6Qt3<OobUSWOr9;t(P!%U5^DX*T|}%4KCPDNSOzVPOO;6CjBy*_mP36{9!q(Z
z#j|m59{J1=L*&lzHP%vj^$2AOMPx$9&?BSOhG>$JtymB@f<OuCpFhiUe9QEIq!dbI
zF3-yGKSXhkYa?CSACvZdr^u{hEmy>jT?gHhBAR!~p=PMQw*HPb%pE9Nm6po_f!{;r
zCjagU!bK(1BKP4Zth#)^5bXW6mfXpPxjs}={VwW41MTe!tFyIsiK_FM_;5=b_nSEM
zuyb|dFzUuzbw(w{jByF_RzR1<5webEUW72yaD79yh#xM21F}uuSWJw;yP1|f7!h84
zL*Y4BO<z5u^#9A}WQ_1+f=va$B(C_-@M0o-+XPMTi2r^VG{*_=`s{=gLU-y%Fcpw}
z@+1~n2ErD_GWJmbjGrTnC$OwYLL&DKE~*%5=Vmu+<35I#=kRNCCpE0N#?cWKv~vz`
z>S9n~v8>GwjTG%6y{L0m|GVA3WQDJEq436KMsL0MvovGTLJX?x6M~TE2jchG%a1}K
zBJ+tcZ&G372ybR=f6Weo&WFy)Y~aFPlptATX^vRCc9#=rtEWdUOThH68gV3K`M`)_
zPPN=$GTr)7W>kE0qjZUTvP^Jp&G6~3L=Kd_7$TgBnbEWYedn<e#|Zf)A7CZo8Bb?Q
z439(Q(EO|?sloz(rUeLQ1MhvFG{ZlVw>Z;Bj_~Oik^L}V<||;UgjnYO@>Z}sM<2&3
z_^a^Wv-p_@qs9^c%D%^zn_7Uhek@34>B2w)f*Efeq^-QFIy}Hb%ps|TcS8goFK;-K
zr9;q(oE6io)c6~#dg@kI1lQ)ZG7TqGq20?ne=%Q6-+6-KxFx^%+jZZWTm^~N+|KMM
zOX;kT+!AHH^|cpQjL5)bFQ3AIF**q(PZ<(vT=>Q?NqRO$NQB!rBNz9T2oxzG`8w!+
zm?$I1hGH^_avUGUm@4GYI2?@KG-GCc94HbrE?SG=c$*B>Z5$j^uL7LMB|>xHSPa`_
z(`;*}>-a3$IULtTq5<ItrY7(*_)*R-5rh8x#qS01V3qve-P|%-w;zes5}Nd*!X_i5
z>c?p0jS!hk993V&&gieHyRb$`Iz`}B387&wuD^M&Y?DRHNQyaX^~KHpJ!(S)=YZNd
zl**2i^i*$Z{_<w26AKV6lxMyF%hm|zQ}TMb)86`qfIyQLnJZj)FNKl*&+*QF_!Bnb
zSa><{8I+i}Jh@uwohqP1rNEK=V6~u*=F)9is_c#`LBMzI0NhmdJ!&{trkB!Hg+qe#
z+;-*}8spV$*bU2~8`&Xt2-v)ccx+jkIl`+CTzzOQPyE`#|3zvjKL_$Jl!O_g39!`2
zv9K2dYY)h~q#7=YZRDaU#)(u#8uUr7A=M4`Tm=c8;zIdkG8+Lx%x1mrHO=Isf!v{Q
z_3Z#B@<<O|Y&#9rYr}S~>tsu-HLp6l&pxamBkE8iZ&D0%Q6V0nl<Y70*zcs^g4aM8
zl~HEcD831SK<rwi7!i&(_JFjnyA<$Hi@Kxkl9rsH`WNZ$Q6C^+{Y#wyF4#aNE;v08
zHG!A3>m75@5elLmLy`^(NfJDK$t_F;w|lvzRr{exd#ne$@p(D+g|0$JEeya?0NScY
zQhv2NfRbXd(%R7l3Nc@hu3T0C{uuPu14t!4AC0fKxqn~F-5{+7Q#d!D+$|OL+{S*~
zzsg+z(EQFNjP9bO-!{=_QFswZgCi!FUurg81n3Y{H66uw4XSMpC;fZd3a9T*TF7l}
z;-{iA3+YX*k-Ay~TvkrA^O7h+cW?ywvqYXE0TXbgaEDBr=mYnV*B7(7c38NA%H0Fh
z9G}th+iJU$=j>TPPfS8`>u@eO*Om2-u2i@kdUL*OuW}2S)L7X8IGKe43F!Ej2XX%)
z4MoW@zC#SXR0+(BVB6ugiBgISkRuslLUOQp%z957l8yHqrH0+=T1vy8rtzZr(v>XK
z^S#by<ng@$D7{W{yTkn7V-YT$cS<s4gDpw>AIW085JV{I6(=L|ec6?AYs0y-c0pS)
z<u3ed`G(^n?^h_90!jfqP%)u8f)Opm_m^tBxr3Y#?7Aht2_iNf!cL|*T$O)8#Uw!r
zv*%(CF&DbYQo5v3`gpf)Tr%+3chsuBw%oa>ucLB4i#dh=bMu>8Tu(Wz$a7WxKm^R!
zE>aUQ3t=n4Kd>6B0j8t%1XDG*7k_Hye_fNUcADJfee^wn7?N0CK)Iz_&sYpp!1NKh
zzU0@h!=ut>6f@~4+Z%#MFtRw7t<@XA#d(n3U|vg))*x>A(G}c#v5CISC~q>2Sk=Dx
zR3EqP08jwDgNvXwQZZfqpTW~3cUg9*Kd$QcZ5zIO{=3I;_UREST(q!Tj$(&m1#nt_
zluLm1a7;S9xkN^jt`v-U*9;Yo4<1PMM1QqG!bgjn{ivIy<Yr|e{+QbTZh-_*GdxE6
zIK)sLTraj%Ms~mjS+Qr1oe!toY?XAic-F*!yBTh%QrH_4r&LGx-c}ur#f*!zP60cA
z=&&a{*?gVDWn{WccTui<(Enc0rU?m>!k4k}X?J}PA7DfJbR<=#0UD@_lqNi1Zld9E
zas>6|<3(hsf!oZlcWG1jCnq{5)l(6m_57f;dj~Dcy)7@wX2y1d4Qi2TB9<MSF)fBR
zUF2>qf5#C@IkVLKP5r(zDwzB8jxhv|WSDlJkKT~XrMT8Y+rY%1kpZ^+|MFH5Gl4o}
zIGXbra>SI0!ar!}M&PT%2~!7?5G@{k+BOl=M^k~#Hw}WKb4Ta8?Y4!oyCw&t+XCfZ
z>>qI0h@MvlDHaG~8Qt55v5ZFlV1g*2nnl%1(Ah0^yg2K!X%`yiiSsQ(p$J3%`FEYd
z%vg1(PI%e8ze>3Y97<qZ{YH%ZP|VLcxBv^4&$Ui{`Khd~Rk;p75F59~LPpuwC&6L?
zwZPO|cfCq<Mp%BxVrb!C7fn^oA~fve0eXSjgBv;?;8JpWiiVBLSaf3hC^88`p4i`)
zS40LxzLPs%#Y?cZ{1o5onsC;c;q)y7&$Ks#SX0BAFZ(a6VvJDT!~<ot+Nz8obEr;2
zU3`sJtLI|}`CXvKzAqXvDH~4S#EhT6^Cke!GEHKU7_%3(sK{`y!H`k5e7Jn{vi#tb
zJr3Tvn1xX8HM`cf?g?D_z{S<tAOD!uXFQxa>ERyGfaDwBw3Ah=-2hoQeGlB;F0NB^
zMia#^-aJPuiSF3(VH6@17Eh}e;uE!yEZ#{*B_|Ml9@WL)uu#*F8Q(WkyfnY8Dpc`}
zpY!AprMw-I^Lf!Db7mRLf#jy-ZPwXAWv;4hxwu|K-W@^HH+o%kmII9)enDUs!pnol
z-ra7`aeGxRd(EWc8|LSc7}6R|VD8;e<n~a<p~#T!jo^f-)+bCm9hGt_$Cj6o4E|Vf
zMIRrVDOe#aS8z)#dhaaIoK<sp@J{*FJ@KL^_`8%p>WR>#EY-r2(}f1l1Z|!hrDq){
z$CfP>wreZ<6b0dHbcYMW$3T?<3fOz&#vXyTi0A?(Z$pNa<+X+NOAc>99zZJ|W%%i%
zt2{k>o@{0Nw^rj$NhM@<t;!1=Th^Y|{BTit#e?{gDO%jr>u+GKZD>?yv~inBat~Ok
z*~y*3t&5k!-ecsqIKq^U`%i=IiZKSV!v&?L%?hfjvioYLp?{M^=E}6ldTrYGL8~y5
zc#K;|rJ;tO*mx8f?<?gkzgSgijJ}t6)w~Lv7a%p!P*CpUdcJojvc$aIZ({)FE@^x4
zec#$<+S1p`ynrD7m5_Z^XPrrn=WQQ)Pv3Ln%_ot(4l+*3knqQNTd6xkrgfRR+b5jo
zXnBhjqi~C;h~g2{BC2^NIE)#ZdlM-!H8i%T9@*B~HYWsr8>?-L_6zj@r1zAtQ<#XU
z;pp3CX09>g_!=HEN>@<KHvW`DQ)c82ZeTkvoR)Lx`!gNyzMtC2@$Kpn6hvgi>gLtu
zZ|ZIhhMAQkVeAj>l<RVHrB5D-p{{z7sS?kA1)ppmuI`D!_=OS}tdNpgO)(lK#pE)I
zecq#a)eb}Xj+?tgo0?yMJ3z<|fUYbqED*St^Y%t4l;(u{+63r=D0s`{>B&9UtaZH;
zXGB6BTF0GQAN>4~<;X%(Ys3sc2zSuomIl%Cd;W>Vr4111XCwYI=_N3uD8LSe72Ipy
zmw0l2$67`GR~;7DCOtX3vY9&`y2~}6P<&1#W|o_mK`Sf$@y?As{_*JX9ebUj;PUS+
z>222}SAb9=l+{8?!s5@+%c6F)?3|BTID+U2z2IYlr?s-Hs)LqT_5+pt4{$3H4uS4F
z!`|WM+Mn(Mfm5x^muFG*DT1JxecN0*%X5z8TUC`e9?pJprd5?LQUL&ZNG1gXsF)?s
zuB<K_%=_WV-nzb6pj_3K6!#nek5NE9M+^!7VBTi&%8n=yv%lRuTiHAzDjexkh^QKo
zv4rC|Z>cr4d0$K%T@=FA`_4at4vG%skKQaimX1hW2N02Nn5|YVR+d_<q}wa*-<j~^
z*Ym)f^M3h)9B+CZUCkIEw&=~mK%2cyR-hIe1p&(|i8wB*7mu=75Y&<xiF-YG5;Maj
zPhJhspS0-AkGP_^lgmkFC&H^1&8Q?OgwK-z0)*24^wbz8NGPu80htZfpY}cC&XQPD
zWWBln;hxWs{u3#i^yxbZvt8gdqqw*tHu%3*=Fz`i4E=ic5=1>R-tt|<fj>g04x+;^
zjaT0FvyH9hm;{JBX9jmUM*Nn&CL7l3+=`Jt+=lLKHqA8%Y=W1DJ#+ljo6pCBrGTe}
ze?VBF)SDsqR0F`SmI3kVxe!hVx&A`J=`jAFS$HbL`@oofJXGEJ`W{XF13<1FEvI;<
zibDI7XafYw>D<y-&ndaK8Z7S|Xu0YEyprz`AUhYXvzn7le0MhD#yKcUhyK;-)FMN0
zar+=pW@NI@{T$D|hHg=P3CMyxd5T})fa~Nb;0F;M@P1XsEb}0tkFz4+0FQ43X_KMg
z3#y|AW1rPj(=bdmR+Bxz#VsCKf3etz;0VZKs#=~VLoCP(tN2S?{Jeh4fvY1ZXa(L!
z+O{@duy>hf%}Z@)hiU*93!^il18))`@Ob%Z9J}W3idBw1sQeq8c9f3<&o9Jj=^<G9
zm?<v!nV*8}l39r&<~(ZBY_NC6kLrhz4XyA(tu+@+VQ(Z6ED1LUc;j5PRj6fS<ub2&
z#~4&#6%2Zz=daKr5_vZ$fSy5>hUdBw0!EnUuG@C-0<W+%vP;l@&+heF4g<t`dOi!<
z8>9aK>72>Hdz0}ChA}CLyqhT{>C`;jG5=+^lS1KHCAh8K)dq5#3gN_*p9+BETyC6V
zb9!d~<$lAS?SrqNyTkBq+v5bI(mptIP@`bwnHdfHjV0yN$cwg=uJHYKwVt~GTpoDc
zR8-TRn|6$vT4fxh^CIq_M4&I6&loRvj(C!B6xNm9V$ZXh|F|}g&<>r(RHbM$TY?5A
z$Ei^<^&5{w5OS2@f4p6!-{)knjw3C5SA)W^wdZ@8=*#Uc#mC|}`Y4rk#$e#t0xCMM
z&92<#;f?j0>WL8XB8ZGt&+F`lC9(@JtcjUvG)C7eJ+V6XJet}5B27qo37h9U{z0IH
zN0SwWy8{f9nbsX>V)$1BSh!mwd}pOvQ5!c~nk9}rk;hnUSOzdw1$HvedHdLs&0i&#
zLAeBQYb;z3?nFpt%yyE_v->b{^c{&n99;vC8H|vbQ<$ovo4iH1i7$sil>*O(@;Ib+
zu=JA!9qgJ)N32@g;vCJjP(Q2RPS2s#Ky?W9KYNs{pG(9m-aaTuF%v&3mf<P>GDm!k
zHPF4m31w&>WWO1(!CA~#P6=^k^iuZrJiUa){oKIHys~}2!7;?<%o(~zV}uuiJP@80
zK>#26dZ6QIpHh-3Dhoz*U2@r6*2fJVUa7K#IC68;p~7{wm3BJZkO@mKWtJb)sA?hV
z^mBSgK|jm4x7u>`fVNb2U7dMkKa^p;XU6yDp3Kvz7MX!thvo=_Y6Few`a>CZMS)s^
zx856Xl9%zQGk$b+C#AUFayM13n!XB*Jyz>R;dHvCoWvkotP>ZoV5?^ki~A%T&~7JV
zi@yOau@j<V8||+(#EGNLrK}r}%v{oR(|nw$7@6EU2W(5KpLGx;Kyr2t17J5S%cuxI
z!4`P`mN9cjCn1LE`!pn)ht$l(W<OPsj8F1^QcQ7|<N-e^sfc!VdTb=Seo5f>*OK}G
zFBX1@@uIHhb?$adsGBvCGQy;%sT)%P06(?8$u>OWVL`seR#vI5Yz{x<oq7AAolXsX
zwKRlsab?w%qVHUu%?qE-Yj`gCWcNgYaKh>Nqq)fC7XR8QDEE-x!Aiu03}RSJB4B*^
z<B<BZ*yw$PPOX*v(+ZR}Bo(osx!^-jh^_>+o+^qB`t;jx`4T`+yc@^tNm;(LvRkZ=
zcCjXtBDtFj^c;0kj`iAW$$DHb3&U0JlrG;nS%!(Fmm9m_w)}VrP>im=L#e3bD{9sB
z_c;t3hCgx@6T)09kxo^R<zAsKA|I{Huf7>8ngbhxk50{1C3bA3%ppVuF3;2Ycz>zf
zt_&(qv*523_K};p%CUX<?Lia<zJv{|!1j8g2A#Y~{CF5lq1}}rIqCPWX&Wp2r>&2J
z!kaS-hV@0^0ktoQJ;hx&+2t}_4WA(^IiNZ<csCjl?Gkps0=iP$`wG(<yGug5Y8mSG
z6JMJ!`;GC7sh&4;TeH-BXftt+)RDKvRYTkUmM>_`XV`XvBXMQ>Yuk30nvP`Ln%B5s
zjmqgVF_J-nL(Vn_wSIn_YJ8|KCesIepXJ=#f=uXhd7tcGMd_mt^5$CUdCZMMOj#m{
zYK-4uV~`rcO4n%lh!q2g8Mb1#6U=?3<DCeio#%8E={K|KWBxe^U=&b8_SeIF|AGa>
zNnxwX6gg&1%tgi1QCy)if%XS4^q4gVImi*ik@c=+Hs|6%jzxr;)-#?K<PNJuFbLqV
z+I*r~yN+o0r1WFv1GdXL=gB_jB_iID2<^aJG&oWwmf*?txwX@yA&pY-cIg@I*{i75
zmc_45@R#NRBSz#+)meA1m#HSADL&&JcrQlBQK#q+H^8#Ur@hLa2qF-qD`u74Xa$u9
z1Tp($w%T346|B!P2V7J86o6tS!n*?2$l;#|&H#vsEidxwx~aR6Qdzm4zU4`{jdf*P
z_?(B0GwcA9saLPkic?Mhm-+xLPzj1;I3i)r%?SArfZCreSA+Tx7rR<vRpn_#9m>Vo
zJ>~k>V>xC%lf;&a{)Z^_way%(K{d_gaD<9r{Qj6EQFzzeS4lSOy{(!2D;mnl=<lPh
zmehDwvVc&O7&N=}+S5&zML@fISG|Kbp>Zx8aX`Ad>Qk^TV1Ly<AiF97;cynUW+Hx#
z{K3=zt;cacV!ci02&|2a&+*pB)$A|0OP>@Fwy!hlAH@XJ*NXktk{UVlyI^+B4FaiM
zDv2^Ek%51+j(Bo$&GrwgX5Vp==!rNaI3HxgncN#wwj>jN{}m4U_a?<S6x3YWM2YS>
zFbNN|kLmp?8zcjAmx_4n!EN%+Yerj~J;^+ebVIbvg8cIG#0MW~tZ3)}XhUim6fhYN
z^^VcmHD9y%@y@4nfFaF<V6xv0at6s=dv^tBUs)T3KRT^WM+|p-RKM>+-KA6LG1w+v
zkwEcjSOjB+1l7w=`&sY>HREn!7;-hI)mws-SGNiA)X04gPn(Y=06Co;HkddZqYAc_
z6C!w)$E;VXm#b+YD+-dNER*w4b-}+$1UaYhj%aa^l8r=Jo?cMo>z#+lWpJr2JTNvA
zq^J_+i-~JEHe@Q))07;#SmVi;j`#J(zW$&Pm5jHgU!|oJL%lBI+jl;2hQ~`KdPOjE
zT6~?y=pj3Mpo968?G6%e5UJHoJVz_s&&<+}Bt_gxdfeo{v)i=A&c+}Aq>Hh$BlbK?
z8~^vY*`AV)xnit+ZvTq#sJ3sxHh<hJ{*wT@XMG~W@yHl7+GQzdQykt-U5fdeT@@g3
z?XYqRgRzPcYBW9sHuaLi@_);LxDf^e)c7f<>#f$|B(Z=BfAG*#)FvJ|`Tc*S-p1Gf
zJlIX+e~sU>V4m`<yM1AvgP>onj_gXLrc#%GXM3yoANO1}B^f}LgcG{oCKP*5uF+7c
z(^R|>-!%9%z2ZV<^MQo`O(3c^E9L6VQJDH6*qikX6!t+{iI*kiWWDJP&h+tdKBdNN
z&MN#}oZ-M`6@|^Hzn$(Xeal8E;qyC~ga=wP3QqSjedgQYT}2t*s>QJ^*u0*OS0Oka
zkORo4COs{U*94{1pfJyTMl*HM`Zep!el*%9M*DpEoJt{*=6EBrXjb;MF2!RVDL5rQ
zrM|aGg?sLgV?GUGf31e2^c>L7L{S&CYG)1m&hj@DaI8f&kcL%bjlW3FkcO=}X(EmM
zL`(hL8CU~LWcbM~lj|Ao(RsiGWj+P_3PUPsz%?R=@aDPb+p)m#{qW-{u>ONRtEEvr
z$%bm&8Y}H0j@NV(_M8m}fVSM(J8UpTJMpFme2@K`4*Pg(j;AXhH{~#`mZdF)i&89<
z8quo8-3)3zKuL$}eEkTaN&>u7NRqr*j_1tE#T8neIWB>`c?lf$nLlfxR7JOcpb_dg
zyMT0vpOPUwvHGg5U8ke&%RA@MM7c8N4#<qn??_!;p3IoE-Aig=ff&+BGJj_%ni0mU
z(tK5mdjSE}h#E95CLOmzH{(vW&UJn)aWXZ1vf2*Eq8*iz?&<bt)c-r^s02;D2m;*O
z#ogz*)k38|iE?6Y(NUSa^^@xl34-(5FzPGG^K?|#gxWUjs7hIyBj^&BsD#=<25HV!
zFq@;;qNY&8x0*!2US0uKw;tKb7Y+#37io$Uoxj;P8;3;O$|~%0xh+8LE<s))(=TLe
z(lX#8Wcfh^>O?kMIAD$!Ea=0N1F->#HI3(lV^14e%AbXimbXHq&E5%mgVN}g1AVFi
zcxqktbE~;vOmbWj<s~c}3>;I92{TK%3QC&Pb-0*k-dgl{6Ir~`^hi-@h^zdy-hs1~
zNZn*bUwpP<gW@*janp<f9bXl*?dFyw=N~;vH`!JIKEu>Utfe4nY~5vY#ZJce0Hd%h
zUxfC&TeQtBOU-%gq?Tf*x?xa&N*^NUq0G#L0ibjQf35sGZ24AbXMCPqkvH5UGK(%>
zhwyGncLB#dsh}LQE(eo@CbEimaQ1zVOPS<1)rt;W+tT^R&*6D}W~RG(^HR@rwg~6V
z&f5{roDFLZj$+>#Xy6`FAaA2=I>|U?+l_pGGGdZz;WJxiJ!)u|c##g{o_-6EaAq&e
z>LLnhMAg*V1#E(YbBw5mX9=J`3#)iAPpP!iIC{`BH2M}{-H~H0_FJ1&Xkr!0Dx#3o
zlHDwVSy!QIsH93wxR_PLV(f$drbjA2yyHiwp^1{O1J|s_Fz+R#C~UOwdjsGV{XCQ+
z8eb5Prc!IznyL9`tn&@peAg=Sn*Zm+7dvmdiQKJXkFdanD-UF?wtk2@@Dw;ve9u5t
zT*G&PfrALyaw7~&?B8&b5kiUj49MM+eU*LAg0DWT>_;Cg{k^wrNK?rAx>Ef`L?{8V
z?9Vx=3Bp&$7+D-fx$`gQgDb-pf4A$^^8Amg>_QLzb$g{>9)tk-NA?czz0<u&WRl!N
zGBS!gVGVW~u7h|3>KcA{{OUNf!?1v<7q60d0-|2~9t<u-MY#PQVD!o1M{o}TeDy!U
zUV*@PFytvw02`ELKC&D*j5V0Gy|h<=GSB(FLZLs7Zy}YYv5yw4173kcxIk7v7(%kL
zrBu`D4Yjor{ehK(@=FTXxiU%N^9x|sFT!O-?Sad+fs4!gL6Q_akInu(qO}I9bC28_
z-|@!#mgOwp-}M{oNTbR%a}_#Ye%Cn1yIS8182a%E1EbGpEIS8RZJNH2-vU&nZ~#*&
zQ+`jvV41TM-rPSBW9pavsck%_%#xZBTyNw7VG5!#z?8c|e~%YPXu&5(tG{7s==#>@
zuOATeK;E{BZ$^2);W6v>VzD2FCvjem{aRBSe0$<v<p&?HP0W!rsbf51YU4x1n*N@l
z3{%`hH)XJriHjtz1z}O5$qu|c44A_<Os%<Gk1OkQbl(~qs<vbM?Tj`*hR&VYj(F#)
zC)DN~{oaz%&Uq?PSrob)y7gk(YNG>9r;}8<SXbA2y;q)$5cc^fPKO^&B%Ezm8h&lK
z91<%Q^~^)99*71pq$n@av*PwS+nY}9hF`Q$s1uyaEL|amB3xCc&p;BRi7%-_x+L*Q
zDo(smMqL1tDoo^zeIrP}UGFmnU4;H6qv<5M=i|*g`{I3b665E2T!1$q2UD-_K$&)?
zez!C?26`I%EuK5Q2V~~c4eVBc6NeKD3{G6XXkTrsH-JFTx05aV;#HnRLwLy000I>_
zEaY?!pc$ov=kh@G?U*@=7{@%C5A72GgUJDI2=T@&LjCYoJRt`>ql6bD?@?DXwx>D)
zd^E!r!4*r2)%f_vTpv1!TpY}zbq{m!YBqJuvtx~Y*|=s(wZIX=N##JEemK$FXY=%$
z)TdIc#ZaG3#aqSj&Wd9qO{9r!CzXVSBme)>7v~bF)UbIuFv&()ddtc0D$X9W+H!<2
zK30z?M;{4GPl0opOK<ZUcJVjKTfymG4u2CuuO>bhAbAjP$`}=EzV5a8<!-bk=lsjp
ztL$KW3~+Miz@{EciuNPc7FBVRb#JKw;&OwBw_*fh(i6{j4IOXVJCwxNQ3?UfnYWa9
zC$s>u30fKplI{7`_h6gF?{3nYqSKjeRB6!~x7@Y5n171w!PD}Ugn2xaxcxR>^4|)<
z(!KG|XGyY^AR_8oX`8L0b-82n0hQj`iJxKfRny9#>hLw|9xh%LTNujB)h`EZYWrxa
z{pG;?+G0BLj#a+uH#!x`X$P;ytS@VU)d&62q4jzbnuDr&{;ld^d~nTw^~}OPn~zQ^
z^Hi+llOeF{@;2KWp4$l>yQc1G@FX~_ZzFOxjfBs#l#Fx``fgeKo-5~)mTeXZld}Vv
ze`A`xYN%b)eR0L;Rb>SNbp_CXE(d^Y+F}cJ$y*vMnYpl)kGpuswJ*)R67>s7x3$CP
z!oh%j$UVB(qnL1g%XaiKZS6>zWCTbDG@w~Qn01+-ieH2O&Kr}GDOV&Z2Jr2DqyY(x
zq&CZ8x`qq))$X#j4N&%kv<)91BlJlAlyw5ciZq$32TR8PYyC=2?t?#UC&a@p519n<
zKvg;V$n391+e-Dm!Oyp)jc-|NRFIB&BkuFOyh%W~{N(8I*8HdIiM+TX7ukezOvhQc
zRWI=J>U-bwEEYh?$)IF<C_2KsxCC&Qe9@o@{BYF{CSzRHvn=zR0&x=vpEgrUG$J`A
zOT{zoNR7uDOB1&HhUwIs>?EqFT#g}7HJu*nclG&Oqn`RxJCZI5I0XgT(U)Fn(|f5i
zE4`EVa$E1|;Lf&sYM|85xwh{8dcP`k^Sv2jvh+><3x`eS=r6rtmt|^W)CnD;kvRFV
zily{wgl=^Db2~+#Tfv|CoUSZt^fNO>F3^JBK_qNFU#`fuDs|M&UbcQ67D2G>SOBG1
zx)Mx=OsIN#;!jsdKw2k5OXD;1E6ML@<#U9CI3bxfO@pcwXj#jC`*P9%G=mOBlpj4S
zEezR*L0t8I{ba=VfilT=u)IWf*|)#d*f?ZXIr&A@6=&66HnS7-mVx*F3X$Qv$uAY(
z)-=@m!4pjtcbV?LZpm*RZMJ23hfTGaTnj*S^hot0K8?TCXs;v}w2Tas`RO%fZOc<G
z9M6BByctD#Ali=#Wo@UCudO`$0G=nG5~z#-jXg74aI2r@qoI<~23Q4oaEAgY$5dog
z@7-@o91DECG`&RMj|!y&-Uzy;BsQJdc8Q;!;2jfxpcoQU(7_w^x(C4g<Sm7#$`?%u
zAhE*kHnjoY#|RL$hRmFEgT;i}xrds;ceTf_eM~Xy21PE`U;d6dr23eRSf<6w2`2&T
zEm7yPMpj<O78YHZ)eX4q`4m7XT?JYr>lkbV5h1ozT!ynh8p@V~HqE&hv<^cnzCM{H
zo^M${%vENo$T_9!d(qK;wJ(%pj+RrVBmE`o*f`Nre3sbQT@ycFL!ORUD4|ffz10Mh
zaM4BXvFNYrN7^jcABPgy0&Xnhz|Qh=&4~F#t=fA>jzSKk5dlZJ>JF{iQ<Y!2?Empb
z(s+cEZt4NW%M&`QrbkCVRE(wgbGEVS>!gK24bRNeNoi4>_yHl9qB|+Fa_t8S4+UlH
z_}7M|oN2GZfPr(hRU+ZUo7((U@$VT!A!ja9WsgDt0t1K3)&J1w>=Ac?E{Q~LcUQJc
zx)J$8mdK8Ze#YRa08sGC_<4*7>qf8Z+ec9BZ$keN8*#g1iuK;ntGR62A2+Z<#)T40
zIpZE9|L>&A#S>rwfH4dEpO}<qSYKy$w+BxDc)bHmp+=QXn^uzH+l*i&;USz+eSxI6
zE|%w8<K&0!U;)}r@m8;`o%EypWcZ;E!^^Ew#S6^ncbw$tP|RUAMvc3<i~;B0m<yHt
zgmGK44q#3~7dJJ!+lIR2b$Xl?&%OadD4n=(UlPdKYH&eZ>Vj`wIe`9+F|x2*MOK`0
zP11E88J|df`VMeFTIK**`AdLLhBBJcJd#)RsekJ4Vm!4?UH#`VdCk&<slv+rY1GcP
zh78X9R^LGE7W+1$T2&nNTV6=AYfCfsF#$}G3!;hH0Xl#_<hE4d8s3(Tr!ei69XGJY
zv5)09(VvAac4zz0ts9s<Sf-^z5cfe(xKv^?Ia&08UQ0>wgSOU!V@g47od`o(sD5HD
z!3oF>-rzFY58SpEAC5On?%yKLAwJL#E~Y=kuO1XxFvDjRG9(vfr!=I)MXh8}8C)XH
zPR{hFy~q;zZ^TFvmovX_v7ej9%x<HoXE*Q!&!Z8z*kr9{Ubkvf(D}l8T0YE8vr8!z
zJTpm2`gd#n-v**89L9~)!6Y(~T2|x$?5t%p4p(ksqvGt0k3yF5UFvDsCg;vje}1S=
zttG(Z1fu^4L$;PDbzp5nU&&|__lIuKcd|J3GpLUIM_Y1mvv7vrN09hu0hmpu1cW^&
zo@k-VU`g{f;gb35%;aK<DR?sWy8N_v3pK`GdH7!2s4t+nLMEh^EZf4+Qemb35{V~9
zyjltAx^Yy|llN<c^08t1>uSPlI0?Xy1MC^o8fC1d-MZ%$Y0QgdYa;*s>Z6EGP(;7L
zogOq)f+WQR9gVypII!wluBh-lRSRV7gL#i8c@)wuZ7pI7V@-if(?)AlKb0|vOGX3g
zZBSAL=q?(45|u+^Gz;9y8VXQ=NoZ*WgT>$Vjx(!amaRfcbWbHB_*0KW-xqS(fkFjT
z5)>Kv(FGKBHUqrOw^fnDpd!HW$_B{z;^p|0Co63I#s8jx@r!EkAc!O=gP8{u57A~q
zZs+NRtyl!<XOv73(BrF`Fw$VU;{XfIEKxl3p>erA>?F24hyuxf@V$_aU@DU^A3$s}
z=*#9hOHOl52oe=<g%?c+gEe;<GVPaNx(zMt*!>NkG&;RjP8;Y%ka=^0B`=&NCajQW
z;o>!0j}WN4q<E*osAz$MKp$lEuU&p~d}XrArYQau$4SMj&XZcG9iokicAzTw;WT$p
zE|kyPd)}%p%KuCX_~3fQ^0qG?F2TKy;ZD*|?+*bIux!obWzQ4h)nZ(QN`IV2O#4AM
z`!*}^f|5P%m^}(GIqlu=eUw{xSz_d*Bs<t*>5q$D%2)0n?d8m895U^)hJ8j1OszN4
z0eWo?9|Gr&Cyqv+ddoSk!+}8=R2-{EY>}%<fgEl!0@WrHWhIi;4ny@u8KMaA-MeA?
znun~N3W&bH^)yS2zJ({-@tPJ&)I~Bpg00N6T+N|C7mt6XzA(!Kn<n0W$ZOitb;?Ki
zJGz|Nn?Sj3&+c*4kcNdTrXG)ZtcRMLw#&rgo{ZI5{q9GM?lj9uCXF_w><4L4v@9&d
zzUL8)diX@Yu~Ih3a-TIcvZ8LJ|Il?SX<QqLBGV4R)a_!=xK!d}ZrQDxn9fas{}vCw
zd?P)7blh6wU!#T`syP@OJ~y8?Dsdf~K8m&|L2{PDd7N2}$eN^uR>!fzKbP^ldY|P|
ziCJv(!6=mmQ5+6lAkj^>Ge__VEUWXY?0JAvPeWgG0gVB^FY03ObJ2?0c?@Lw8~#G8
zXkHo}F!69OS6F+*h6p{7kSSqr?d*#{uu-BD416O?GyAfGsPUE`%FwmNGyfMD-(wnj
zfPw-P9iYs<$meeZ8qbA4hny3#dJKJ?nEIkkTf02v8jzI#h(^%qO)Dnfi_&RVKIM&K
z?J!=-$XD?_B4aQH=Ka63>4xJS)1ojRUAK`md;rZ$@$9JZ^ZO0G44cz|IO@!ie%3p5
zJ3bA_^3>o8?7SDjIKNE$;?wj}!=*p+H;cM&5#=+JI#93(Y|m5O&AsZ;q0*ER4g=t9
zMUO~(x<p^?NAwa?e;mHRTr`^b5|?1f;><h6Jwdn$giL|%YV&bx*hW)>U-j@!VI2y6
z&i5DsNjHiO?|gGe>Up!Rzwnsk?4z3)NZVNW1;lLf1YUtZA*?T!OCnx5PnJVW2`kGE
zCa6;<r2nODHx4(9BgJ?T2EW~aIE50bqqqc{?<;9Hh?m?`C*K-?UdcU)LHWo^O2UZ)
z0abm$2;uGqJ=+$OVcoD8<oHy|)!DXKd^39%QR1erhiNL()I1<L%v8`-(V*koN9Syt
z!^0wX7s8%$hNGSTCX1y*7YTWe9xWM=bVTQBDwXs~y<vn-iSly~6YxMbezV?+25Xa{
z4}q&g&oQ_Idko~4JM^?5^IEzfh}5&stT($>F6Jp*Xdbg59vxu1-A_LEl%6*Y`R{jf
zUI@G;jC9aI#)XLzC#Z#J7`yp`HKFU{r@1yb#10;S>aDHoxw@kM(Y`hE8X!ZbchS?$
zS>=H9qMP4I3@AynElTcyQh0Wppm^XkOJ9b|bLO$)JokOKgp>!ke&!VQrv%vRi>Ee)
z@jH$$>)wYPvXmuo%4Gms`nm4p?1|11(ti_<06M1YOEhZ64I39kUuD77{Gl0f!1FCC
zwCe@35?FBUKzwFSt@P!R!acxPrQu$eY4IO~&J0`P@?`VE58aq{Hi7%7ft+R6NNEZA
zD*RT3;)2<?j(?uW4{F-(wHTitRWzGPS8Thb^>L}5cOaYnqE0YwFng$?P5<nLC^d>_
zw)$a*Uj$(n(J)e6I7~-Zva>nDPdke1iGJ3h517uHWvtuN7a$y_TTYb!y3|qMyhA?z
zz2Q{>GzDgaWO-)_y;?Z#*S{H`LrW!DMEo(4WmN934Ru)CMd?}+@Q%_1;m?n}e)a9e
zNT2{E9e+S3%;7=bt|Rh(7LIw!{l8Vwu-$!-w}M@_30j~07>fMMQ%hBma`{TL%u6M!
zYry{yB11b8lPf#nAHO3LO#!a2&X=bP(x<A=m=tD((Zh>wUI!0eOj_*RG2?YoZlK9&
z=bNS$&s-Btz+)NE>Jg%A``CY_2{UTw7r(U)voRLc?GNE13reGucj4~Iy1wMhlZzE!
z<=Nta(eB2NtZV`xCT7q0vJVA=OA{etAlt>zVu`2|r#O0q`(mSs5S59pov4al`xrc8
zy|6v#f2XJI;`<;9)88XdH?hUAeYZKAb(u1yutNqmI<6CfY%oZ(IOtFk!6p+uXw_{7
z;i$>(5(cS*i{7phSub19%FYd&Za03ghwU94j=Z%W%%3AYA@&@8W-L#vCj}WW==$o<
zDE)mmWk8hZoUcH|)X`xE!wC1vystbDn`>yPLwj2HZmqY`>){;*xDVHyxj>%8bZEIE
zKlODyQ4Tf=00ew2_pQH4*p3S)Z!9ugB@NS#3EQgKoz8x}Qgqvae#+?m%NLRlP$!-l
zHuP0YYBr@=Js8?}l2QRYb&mLM!8Igi3!k1pB6b&|D}qX{cq6>@yPvMhNW9QQ+Z{EB
zMLIf1MLkBhwdlmp08iF#_|xIT?43iDAX^iy%eHOX?6Rx6Y}>YN+qP}nwr#V^cs+WP
z|IXgKvzw!{VvvI`_KM6rd16QWeiLOV;z^|^rLD<AVRcxZ3*^qDQR9gUxlfVq0JWmQ
zTHZH$#L%{k4L3p^Smjw4`=FQ(F~}cxgbhd`r&v7!1_#k!)4-)}qay<LJJ3V3rrvb|
zJpDp&nfrYej)t}{1|7z?&N8E3+2U4|NZ3OnPYr@HO|k<3C=H<pN)^QwlT$G2RBJmI
z);`t0VJQDd90%gKXf4uF)(U3(W>Ya#c#4D7&Sdc4)n@nf`rNpU=%a5>R^jZA1UZ*S
zk}xVf%fngcC?TSUAY9-*f5g3ulZ$(+1?->VAWZIIMUVfwfKh{27%tcJ9ztmzIQ>>_
z)mi++MdaDR{Av+}rccWd548YGjr<cxumX^jIns~@c)hd?_GBvYW)U0~$?%7zc*ZtJ
zUpWi=CX~rSo2bqT+@-w-%xE8?1#!xz+r#dd2uTY&>^5QhM{y#?!Y3yW*nIb;7l)d8
zEX?Z;Y^U+NfW?dT^8sZ_czeAzrV2Ymlp!!=9IB6I8^Z=Z=5$##0UxQUL_2KURTRX?
z3AsnPYO`lhC=$<csYjMgpZQDh=SlZ23`7$0-Vl>-`~IYpD(XjPwq8U3oz<+$SmD>G
z;lPy4?$UPUIXT_L(+kvH)6>oO5Wz_Nw->4I-(PNLj6NZVNYKZBR^v62;<SluAb~ar
ziKv955_-})GIZhsl<$J_mqc`uuq`Kr!j{!g@a6az%RVyd4AAs6P1qJ%OU@MrV(Gen
z$(8ml*xEn4WH==|)h0i^Cr(QUz=qvI+b~%`eJQB<qS5!B`aQB3()>1~`u%2qa6@!O
zmXZxg@ouW`-PmJDY=t!|@l`Z#ardwiw_FeA6casC_YAU~Yr9EGyqGmYYOfg<;?6XT
z@7bb%8Gq@LMfxa^&C;EXsbF!&mKqK%=T~>Ns4F%NC?)H2nZQv!wL-BmY}rsq2M*^)
z7iE9$H{a=iPi%8?q|tLr2E{6Uw<TELzQ0Tjciik6nZdSt0w`X_(35Nw?lkx`D7`fL
zV2bL@y-WhmaD`MQ;60TUnw4O#259w1*+`5CvPIFnWwvlW4(rqoE`HiFJ<RY{`YUkF
zZ*($hpaTSGHeekTq;fpzeryMEVw(Mnobk5wJmS<{6yx|St~)On?WdC{5*Qf{XR;!}
zh)z9ZYtqUDKk{-T&bD~ua{Y31<m3G;J2mUPu0#~wtE3v^cLXQtA!Mi|dh)Z;4(iY-
zEZV4<Ju^_%GPQp;i;BXLYBNs-eCLHGxoc-#1gScnq$iun!mIHIfCPnG%nmn*Qc3W-
z(<5`E1sGu@S5c9*rng~wJ1@*_=XRwKy61lI12Lm+<|6;1Gj_jhE|B@WCv^+BS~-k1
z6j9K(vfxOxv&LL!iFic?tVBbBYV@lnH88*YSfs~n4`;Bq<`A04efG5oj|CfOOQ@})
zLBRDZ=77{2h&vlr_cHpf^AlK-bPDBDpGwiMwZSxd2mk|1<snc?ekML$x3DQ9KZ%rO
zkGf>~kk)1@LSgzU#}`pX>?fQR<w^dRkRB+PN9{yt%N+jDObd?(abJCvYgyN!wI7Dy
zRLs<|R=OX<Uuf;IbjMXlPKQ&E)?Xetuwm{7q7Fw~v}pc*H?nY<DJ$diT;N5iYur7I
zs@K;B+E<w4Ac2I~6G><kxSf$FiMQU}MHF-bB$0*qxY6|Dggn2AW2K3jddvaJ3iZ2a
z^At|HqtyGZUVjyObWsrBryzSYfyOyfJcW;<`nyzgCHn%7XPR;O;vX#VwBYxDw8p1Q
zzv@$_BHno{fmPGkuvlrprD~mbMollX02b}fm#?~8%2G)U<Ayf6rl`M*X7=>y$ZrB;
z9F`=emCl+RC%kC`oI2WPJE=PQ-kn*<;zTuhW8dg_zqB~Y{m9bTYk6c95*BJ3x66)J
zD<@DU+ORAHNKDA<DP5bU{#G8-|2^K5SU&FYe&;`u&D8+aSVpx#Z;9X+FR9~X_8N=n
z);K)Hdj&WZZ0TL4E3X@gejL{R%nKdcDez!>*HP8*^{`@@intlxHJHF*o|m85)@Wp;
zNt2qnv`AVtZP3+OZbdE&RJsr}_;jd>lIvKe(#c?)rp=iSyKf6ny6H<h;3J~{d1})J
z!#YIMX!$AGx^d=EI)H5oD^lrd$cIZw6F5lZ@uPeKt^M$5YD-1X%1)^-jTCN2*yYyr
zHa?5ig&e$@Bd!i^9YA1I)w^$#gjJn|h=|l<KU9I(b{F4PYDu?&<QCc?8Z}e!_H^xW
z>+kP7dDUZIizTnlPt>!9+@x*;DJbN&V?0khC)D;s`9^p{8;96ca#4M((J{QJ_3TcP
zV%*P~biz=)E)B1*ZnX~=%R=5fUtqG&C6%9<4vZAxp?BcF{2jTON!W;sz@3Ud&F?Fj
ziJ%lcT!S8?<uFgI3Z5n;lf&CE6k3Y|Yz2|8GqwG5^_VjcrZJSoUBNjTw>{5Xc{A|M
z7O5>KrgM;gb39^^l+7pm_Kg+T_wZY}x7BYMrTQaitP3BUl-*I>*?Yif?j%;JyB_NR
zku)xbAbxLqjTfG8-Z6Z=Z-?5lI*|6yZbhAlSM9F9Q<$CU$owwrT!2e5yv;Eq8oQ@L
zcO+%u8Q66X_vrWoVH}f_ntF&2o#P=S6G5_ol^NG8zClUpF!T-35{1K7(57o?P5Br~
zd3S)?vL^CCQZ0PgB)UM`$8hl%yRvNs8L>ElVT2l-iosz+?$UxYcuAyhDLB@qtjW8b
zqE}h+2n5gQ+Go+sZk{=G`>^TI`POb7@<$GGUhO*})Nexw^(Kyc;GUyMxw}&907-xH
z<Y+jK)sx0fTi+l{K~k$D)v5i@rtA$z2{g#<)zKI;|LJxQiL+=9jAr-<JFK~-M%aF4
z+&}E;p`kW2oXlo9@Q=dVv)H!G=5*tL&B%ry4h$MlpaWk$Fd--LXQ1I7yiG4#N+|?|
zx7A)&3f->F&ODcwH*w-nli$0`aDp_7@<Uu-8p0+}QGCguDyRTq=S_VfYI4A<15g9o
zK}^c-2<ofmZlPooEVFu)X4r6i6tP>wn@bgAA}n&>;x-@sKeXf+zIY7*_MXJRBU)ue
z(nkZ|(c@-vi?$SGb3I5VMmtSjUcvguOhU+|u-GziS?%!?jEQf2jj<j0%V%LcDUt4%
zi3KiaIeHS1->q~t-g?X@KCW|@USrt!;R+)1N<A|$0;j;qO(yT}(2)7!rn?0o7&_Tr
zzc+mO_CRJ%;{+!taHv$R)fsWlA({)fSc9X^aq^?=ZhVGsMx9fxq>B3|$Etk@btyNL
zuug+Aa}La^Y8uP~UuGTD;?2It-o+p%FV6@7(^8ojbooPq9JYs}C;5DY7=xMuR3$v0
z$skuncHYHP4OF?&H#o;`;FkcJGnjGDZ}T8{L+r<7FLe%e)K-*<4#WxEtT0Ooe+3~{
zsBGO(oUK%QJ!qwaPKhwB$1$y^%~a4KXkv94=}cE}7nafuTcs_n1qzCVlqY@Mn|5Lq
zbRCgVX#Q<gT1_NYw2)#Upc0M{?a{h@&m{yvY>ox#NU#bXS}PA38N&OOCVjBYD0<>~
zfnn=A^F)sMM+FC1IVpYi&PJ0*Qjij^Cz62EhVV_ZF#wt0e?0s(%`+>r(C<plRoNfR
zI)&{bnOih|FY1Lb=HM%MM6L@&hHPlf!kyybxN{{J!oYZ1;dsQPb=0R>mvF=4gC+|%
z;j3zpwK&9KxT5f(EbL6LtWS1c>9LMs8~8c{k5oPMw;nT(=sfRoWzZ0bI4<uXbV%NP
zTjnX2Oc=ugJd>pxu?q^t$uQ**gx*Uq8>KiPwQjp9ben({<vvU)pfLvs5RaelbhJvI
z@)=ePA7<X3=8!=xp&X103o$jy!j&*Uls(8yTiJk<)bVq&0H4`T%TE5X36}&FiSIe*
zmFFU`9y-S8+XNnTmXTsI{qr<VW_(W)`;)^WBaowy3?y+r74J%O-!~e>Z+6#k0q8MT
zm~ZbWHpYT_jGFku<4$%6yP=0-01Y8=_q>T{$#x4mYtK}nSI-@(yf<kdUvr@FwT$Gz
z4KUKy0FrHp5!dJNuuZNI8`K8Yb|<RjReJl2J=M1X*kA%yD!yu=r$Ce`YS6)gO&3Zh
zYFa8jJEk)XZb;G4o)n{~x~+T3+g8`3jdVB?h`yX7o)oX6%oA*I!H;vNiyk8x0LMV7
zB{9cbc7zBI{46I3>wtrFA8F<tOj1AtfLvFb)Vpp`Jw;w$k5<K{yqYrHz^1qLP*%SM
zNT6$G$eU><J8y_uM?bs=1Z3;r8QSRn%+qOi>fNBZan_Ai-ZjW*BD262U5_e1@TLPz
z(VhcheoZx%PNqgF!g!g6lQ$vOoV)W3SnrBKnDbkCNOOBOsbm@tFRsJE%Pe`W{%cel
z4N&N9P6KGFY(~wn?ieoEzb^_aO)tBgZG-_)dQ*UiZ2C^rGOTdTiW5e|c#r0VLqpNZ
z7sH!Cl-wF4T@{V3PMLW%lmeZb6BY@mSR+AAtSj7T&dV!f&t#v3%u*drC#I<7vBxa4
zOA2+k?;Iz!x^6?ix)DVAL(ph%1l1|oHZ3bqc_lI)02XYy)J$^~sp%@nfZyE`@>j)7
z`7fjRj5yst-^YEUJKyG{T<pEghWzi`Tn6+fW;Ips8%<{;upyb)8n5YZPUmMyuJxdA
zn;U(dU?MuiSL_Kyiwai4Al9He{x-!sDhYitT@Xw`6(O^3fp7@4U=gfBbf9r}!8q$X
zFdj|p^pT6Y3kby&Ef|ou4+1O*=x9n*a8P!u>R%lOmU38sSDg3<6?mGk**@>xfqBk6
z=Ibj#=`ba9e^A=uDR@iu-XRylWLSZ?g>l8G#IBBOPEg1OE5{zzzbqUA+5O`FE`c6q
zBONBLZ8>*n36uo9g-I^T?}6et#p;%i22GzE5M@Z_^)pnIJy1ClMeOt6?C4K7`-<{l
z!M-p{1cj)Dbh;K}fqN>)VQR!KXJFZ^ve>ImbrAP1bd6=K(5_iOJdhKU{((maH^0*t
z{1T<cj8pNfe2P<fx$rL|%l%1Bi%rTDh-v0<1IEF}7Zl!}R-)>Hkm03wSS%pX<+-q+
zf2PM4{89;9bc^q#pr4%a{oODg&65MRjPJmfI}J{z5iB4ab%hQwy#B=clvr6mBwrv1
zj#cMIy1)Uot+;&KTemB#5K2w52`w)4&YCD9hm+lM4@aokr?0@OvGLcW%f4}9m-C5X
zaWBr_W5YC-N$5w^q-~nMl5T*hHi~h*6!wR#BX&1M2Uty5elP3qIH*=W<o6M@5K2UU
zj-ngvQ!}7oGDPG77(v6<Qf-{ic1f{GE8)vAH<CU7`U+!*h$#8ss1lguxw$F*XKKce
zqKmR*f~eqDD(`At&xs1VYfg`Dr0#oHZ`4GG!|Pqk(smQ0l#FF;IB<b$q`iwVg&rqV
z1(|)x+^n+5YO2J&ed>Js*@8^=q~x>xpxYio356I@`}cOlcUQU-?1!R0is;7!IH88!
zHG~F7R2>IPTZL@f&c`o3MqmD_h5f1un#P(6@)aqgwrX@L7MdNa4;jEeArt~R<Z~#P
zMZ-}V%181l#}|Ye0^W<vd>Y0a_+ys&EnDH9lKa+g%G=MYUe>W9L@ZLocC0%?dV1?z
zCC-+3;JgBhTE*#)47CLb2lr)Krow2ptG0^SgK(Tgw6dq04B{OOz;W3_R3&@4=j2^q
zn(HS$^cI#6k+RRy3cPA!ph$1ZNT45)B0o;FK$WIhCq`&%GkI!%pEGVX&!mZnhogB4
zb$j(kxe1!Lf=_p9@j}c!vq=sp=U*aPY5NNCp6ud9=K~@vgXMe7L#ulWnRtOyte7g&
z&q?(GX35NZ4uH6X3)UuWRY02$OQbqm!I1RlwE}RqYTi2-o@J!w)UQ(Bwkt*PuFVdx
zTjw{su}p@7?xns>k1p8m2sCzoPpb<D0v?F&0Y<?%m&b1%J2?>3S{(7Umf-!FPOLCA
z=4+|Y&Uiv5hjW2?vjV*aLICz-sY&9~+US3U8)@<P#Ev@h=G^vAeeW8hTN98bC*+9U
z4?#ORp&yx6j77ARInDQH?G?rpB)&07JJ0Hxv8>b5da*j<;ush>{m8Njm%;jz)p!jG
z5r_0LTaB=)9jbSzTkW!v0J;?sv4DLBpVX4Px_A14uCrm*cdXyo#E~0+e!5bDD!oI1
zQ5x|asI=Ch-c4^jHN^9=zhPDVDrFSW_uj+_BW6eLsUw%C_$&|@C9NiI(RhjqLl~E#
zgm?5t4ExtFRfS)Le**K>+Y)PZ1V7;K3B)<dF0))a8v*mxH<J;lC{%Ei)J)v=>LWM^
zaMu&|r&AA%F7$$r+_2KGEux!4Q03tdU3OIFq(d2Qc8M-bHNi<P4nu*@f!#g#Xr??g
zO)CmBRsVaOqY~K)xoi+Bdze=U3m!)pbT{Rg$*M*)jzC#BZbb!%DA5`Gr214eqe`H|
zW{11r3G)%hYbj%+fQL<T%Pnw6SIa=~wdl#~an$tT^%fZBb{Nk~Y5<nVu3g<p`(1L1
zy~yWl`DYpD9m|iWF2Y@HxyEks7);a2e%ARocPe4vqhy&!ujl2ZcFKf@auDc7{{Yt*
zmrx)K{~(f&-@z24VhN2(&}rf2ZFN6=GPGspdSu!jSJ;Ii?hx`wTZbbBjGa`v0Mt{Q
zEy)()(&b&2^m%S^A*&ut_|iBB=;#qyE3{5-Xqtn70Q-zPzr&YM<l|i9N~BIlK{(HD
ziNq(`^vLngi>UiUqY`}84L~610_H0i-!#??c50O#ka;?|R|AAeMFtw8pqgY_PnZpS
z5nr@2XtNz+OWC1bh2>Fj&(NG*eAs=np32EWRrTbJ$=IyVfC_c9R5C2Z>V4UofGxh(
zf_i#t1d||&BeI>zFSW7;Q@cj^pI@#z06Yf|+X8#52Ue~Jd_pP8Tj<=V2QdpN2Su=E
zH%-uQA%VS4KYIpOhv4X743J}=c|>&(o#T_%3(eWVQ$;ItT7PBWrORkjA;WaiI7~x2
zm4Ob!b(<_&zDV%qcvxMpc7Lw`sptyAJbU$S57AP34xr!G{ZxJshgfYnrKmvc1-oC&
z$YDs6zlV?g@izr)HC`$%1h2_R-t~B_{k{hTQv(E+A@SGWbZa_Ml-Ru+*+*kN!Et|O
zjY!+N{~+ox31A<y|E|<_ub;x}i<Ow{+$p{4d<8+*TrB~O@wsS((6vV}oB}g=B@7sm
za@K*oT0gFVmc+gXpui;WS8;yUiOb!JtYWKK=@rE4GaTHiFY|42!fER<rY!kxk<ZI7
z1>>vR$bui9A!fH9-E|_u((_-^42RfW(cqr6{yT!tSpFfD@k`0B?bja$lMf?p_*EgL
z>WHi~VDMrGkd$12!QUbZ*p90a!@u5g*XPOhjzM+S;s6G#$#4hN?gZRR*jL2*CkPDg
z7Tk`+8is)C%UszA7pZ9gIC!WY54<d?m94dAvo8wq5ylkpDdsJ(SWK!c$E!3eD34%G
z>p{D<Mq2u)JEn(^>Wx)4fA#Tln{>t%yJxMmb)Re8=hvA6hRiT?`?@!Cuq2Ob6o_g>
zp>xOTf;;AQsVYEemfb!In}aisa*d#^^Y=O??C<<pRe;q7ujBr+279w*mO*5lPVzN%
z0sfgj2)vD!dGEYI^w>bz5q-^qtG71{{5$&re7@*LLK%^xKUfyQ)GdX(E|=f{!#{MK
z!0munDYg_smizK~z7ugX(L_{`yr-HgDeP?ma!SB8k-o_y#p=|lR1XVfZ?MXrRitlR
z6>39@?At~}&i%F6Vu?!2hir`$@7KO6jrg<luNMyH=4I%qyWUeWSQ~ZZ5O@*!wh6Y6
zncr5`W%UI`kwef=Xsc0`jjhDp9*!b5KTZqHl4}625|nD1vWM~&ZR6@TZYQM2F|_0=
z(MCJ92dALT4ZfFoE2S4|jveUE@8SXBsTtoaqG8xPW(@uc-_jk(`8qMkg@|z%4A@_C
z)68ogKjl{WMY3+#K=t7LafMa#C4$ei$WMEi%VMQ|!Sly~j<$xWctNw_<9~kK&kP96
zQ&|Xm1mlS`sKdRhuHEahi$X=6{_e|tJAW)&V;q$hw^B(;!F)vw00FB0`9-<8^l)uX
za?3Cw>&sJhU3!-0*OM=4?)3SZEhAogPtOROIR+-9<vRo0rnr+Mp27Qjo`-jcf?ooS
zQzmmRQiN`!{|XzLs;)HCpP%LeQCY;5`@*x|NkbS%`dLc{3h(B2(Cj0W5CIe*5BsMN
z;J@qt5@0X-zsvux3*Y}>|1Zyf3%1XHu>S#eq2K=o|KB733Hu)y{wM5zfbwsJ*#8}2
zd;eEN{x@U)marZFgZ&S%{}cBALiv{>{|WnF0{c(5{jXyG6P14__HPN>{=bU-zX|(K
z*#FDq--`TO!v62$@gFkwFA4iU*8jx%U)q9l_^)FBFYSLx*uDS&@DzY$zyPEWzMtiG
zMy9^@*|HRpKp;MuugCgzo3i${jxQ568hh+zjf?5>rf!5dFa`0a`AJ@7Athd<3jUZk
z%PZo28Fckd7{kw7KzLmm`2!(pg|$YgaVoCpPEdoW@an+3LJufGGL0}4eM3=ex9%u(
zpK1aY9B=5(g`rx@?V1{SGcyUoPs0PH5R_Oc%YsglVfa)r{<#^cd%yVlv&PAOsFS{~
zy^a3FY5C@_#)G$`(G+*U*Mrxf2T3}g1Q8~ur0HZ-1&XEOckBK2TNHMa#`d!_goRNi
zM-x)^Z(dT)c(mZU_D+)TsGdXOKnx7@XF_C2nqm8yRFOvOpwo3X3R>sj1$xbGGMPdN
zO|m!Lzy#9}?@Bs0y33a<TO1q0g+_MyTq^4AljDr@zs$7(O|xij3$59Q*~&tjpV-G&
z>e0j2+}|-{A^aG8*NCz@f{w_J*QeFW)6FJIqB|v_D{WmY=5|c;g`>aBe!ZhWPFN@8
zHY?kD7Buidq3QwYc_0uM)3IQu$5cYSSi~E@BfZ4*n!2dnIMaW@rKj{m?lNC<*5v0b
z#`!ML%@K|k@O(+svvSfNjQreV^`fz;LN`E80doocmef0)Ex_@M(Sn*O1Nn(qd@1;{
zZ}i{_5PR^Hd8UQL(c?u0ZcGtw_*xc}z1k7`7I;gg0z(RR`GSAtdi(r%EsvbVuimK?
zTHMF8y<V;a7cTD6nu7G2%@fWtz{szE?@X@ssY<I&#1}gM40ZKl_gjwAfauEB5V|Yp
zR#ZQ>Ik4Tnzmu9q)Y%Cax00mZHkfi}1(84k6}*QT$;)Noh)B8|LSu6+YozJirEu!r
z_*%P5*8CIhUxAvalBEFtQ@HTe3Cl&2{?|;RdeGm%0qT^-qnG^PHLH&YREC{`yer*i
zYomk=T!#luWgi5-tqr!0=WA!Ro`XtX0BSE87|Im@`S%)>1B%bBak8{1I=A;e3F{=T
zsAsE`qL-PeuUqD!trVXfr2q$`<Au2<%V}KBBi&ZG%ixFYNUqE+b(<2D;2VPuGGa#+
zLY%v+e+*aH6n7s{(A3&y6L`fg;#8}NUZhY-QjW9-+&c+f-9?+Bj6|l}hFURG0yqaK
zIz1UA6rmNIO^i@RLv3^Jy>cCK*S)3rv`EtkiZ^u;W4MN0CM1(kBY8rhWvag0Iu8l|
zo$N2bvqO$8{)d!LZH)e3NE?*^sP}7CzJHr(a3{QT<AO;Q1K>!Rgydoj*9u*(?XC6q
zJhX!3`(`dQp9dU7Aj!LSCol9$PQh{l%^|<MVel14@(e$266E!bqKS@1d7H2|y_c=u
zwS3f|G-^i!7(wsi00HT67~I3za*pe%CdWkSB_u4@hks6vF_YQ(3fhXEp56+I8~x1{
zkKr)(@-aNw@QjS~adKB`V^7>_FQ@d^qCyC#Kabb_qwW!Xfhnf^C0tm+^LF6sofJ2|
zoV=*8IW6P&gXCYWCHT|NSLzQyL^hSFV;9j2tw{dF%hJZihY;Wb{n1KA6iw||L8olF
zMB4-aS_SiJCbn=<1UN8vq;zPsADUrykuycd+m31Ay$d^W@s1^sEM6nc-wdRxcmspF
z+D~%^sXhAb`_PKI^5<79zH-(w3iXy{WHg6kF*7&Iz#eI5q34ct(xSFvIV%T9ige|@
zMmRa`wQtBLWzhEA<Yt1TVZ{Y7mYl^c4S4!zTfT1|e|VYqU-#;3{ha7V@~b;;R{Ph9
zC0_6!*lP0lZGVHV@-=G@0-8+fSt23XyM<P-nb0H?vx^LEOyAy{GFGIT;?p5J?|~E}
z6DS4_A&g&<TIG0f8%@y$dO~!$7L!j!qDDoxn|{SZYaHq6M%zs7;oX&l<;MYU3oM+$
z4@7^+KhC*t=h)!}DkJTRr3bvi5|DrA$E>k&>XW#N`YLiB15H+gj)kw<Ypu4D4wWt5
z!M|@0-&NO0Q9y+4NS$_~Tnzc7;uUfB49sE9AHahW`}deB%w3u5!OedlTd2Jlr974_
zuegt?9@8##Y|yS+ESjpEY;IzkmunY%o@Dr9su`HfquB0YSXek#X-#0zZzP2!e=0V<
zg(r%o-K{;#vNc<VZ!>6EUL&WilG^47+TGBW&@X!uZ6{PvT(m>Ius+m|r;6|`eQwfk
zQiN%E))b0pbX;j57X!iqazvC&Z5cLMOWcm3aNlu)%9szA%ONp7aHvH6Y|C`6MYAo2
z!{0=vS0mPL!qTE5!~1yZs4P`|oyOUC(429P&`>_Wl(*|ua(azfVYMwpBm&H%rg(K$
z^rY=FjI0!P(*9Ij!f}Nr1p?v1GH3HB=D3%oUrk4BfPjUWu#hU@0R!Q(s<-Fz<mvw%
zpy8qToKy);>f;tZ&oT@RADg|~3LT;=4AaD5NLEqmWQp{Ne45Ym7!?(-uqZew!m5|g
z`ZXl|SxWUdhae<W!%-Me!|<-a7!*xqN7U|c(OFujNeSuA1GCAM(tZY6tNxMllhkYT
zJ*PTU*Lg&vZ{#(ay%LoX00CS&fve8Sbd#}DP1?4_A)_j?sjJSZtYc2+SBHjKV0r!=
ze`7f8+zp*``HEZ<%c7XXef74;(NDbhd&}#ME<aV`E2W@#0r2-QPth-nC`v2jfXn9U
zDC>yH$wTfCx^zWglL(D;?)~Tx_^S82jg79!T07d5@ek``_%Rh8TuK-xSLfLB=BHfl
ztbLEwMvv>n=!}n?=ya4KhzD0YNsn@V#u+u%2IU{;eolTTO<Znhjy~4cHR$e6c?QU`
zDwCQIC4LRYOW#=st}qapB(}FHz;ArpQ6G8;Kxf0`<8Th;YZzhmAG*}myzN29D<daj
zV{}cTV8=6N$_~b-)b?{nJ8JZ~`wlzwo*~9DG9+)$hk~gx&(X)7l=6cD4`bOY&BN(6
z!Kbjx&~#IloRCGxGT*?131FMl6Qr~kC+1HAu-4DD!Rip(AZ#L>X&7j-=Myh2lKu%b
zRjA~5KwMw$T^c&QO7QP>^Pd&3TXO$LsS?6fXb(II-;X}#FG~xpJZ&DCYsOvCA8ZsW
z>ZXgpTCln(&&Y5pBs!18C|l46PJgsw^E9chW~YJ6vQ@RoO7gxjz6xT>QPqX*wv-=_
z0AXjO9gH%VCK>Pn^CZE5cHSNKDQvGIU(00A{l`|C#@UK8yUxB2-fhj&Pg6Rhh6~%K
zjFwD%unvXEAmKHW&sT{Xe8O=A>MmwZw*8D5n#PwTez@!`wLmZkjv!{&S2=h?HWjGg
z2TONxh-z)>slaC~cYNjQ*Shmk@zg(1{94@;cg1>aWA6xj-{f&?=lfrZc(*=j)7daB
zlc(sVNz48|n2ek~Lpv|?jpL8QZ$;nW(O<C0P{5wt^};hO&lp~4Z!P)sY=Cgx97aCW
zuZ0qZi*-2?5NXWbHjU7ZqD+KjQcsnh$p$@(i+IS<h{5}OD&-}hrorHTB-p7zJCNZA
zv=R4GfihO`jZY;k%a`=kwfoyjzR*S8Cd|qo@lS(mft(D@BdHtQA6|;59rd5&0nnHN
zawx{E_2x=CF_{QQ=O-nbm7``b*qM&!=LmOW^xfg7^w#g}U3eU_GT%<dJi~NiHciH1
z#cU7p`=7h-aZ3Zx1F#aXeZp&Bcm62&#cvi_Dyr*2rktVN8EFQpUDjR5KQV3b1s%bU
zY;2N<x|T?qxQ+98%0WDfmV)d(0Mpiu!@X92otU*o`}86xc;+IgRD=f-@>6yk?9BXG
z;7FqQ&}U1Y?|Fy`;y4RFbW4ngaf2lEUAvxpkrFN*jsq~iJMOrNn5fo|P!Nnj#H5|)
zw&Ys%C!O-PNp+H?X@_U@iA_O~1%O}EX*^|i=PC}3+H=Q)tFdH9<&BP$$RziS%NjVe
zM*VMeEF2jAS~zCu48uH;XulnI+Et#OBW2!#RwS9o`C;O=a(tnIa}EqO19Xhfdr{Yr
zLiS5*G?}8?<9?!{`K59P?vV}qlFPoWHV8O8f8lhTC18i+$&x}(GlrJyL!Rn+`*hz5
z(}Ek6LgZsvX?;C#8XEkLsb5}ohDFNAk@||(v0ls(w8m5px2U?+kAGZBD#*zYSpr9)
z9m&H2s|`WD+|ck>NOMA}->re4;DW}w#E28V1cm>u*)Fq~!o>wJTBN>k!eD)VJXH+t
zA?f4J+|P#8oQk*GsucgT`cURiJ~Q64SX0{$DALYs>g5AZJDkliuNjW*eb5TaMoXI`
zesPs@t-d6v)8Nm4=$*YmibYG1I4pDR2XpCEACK4ag8|6u?3%fu3Hp}!Kw2GNuL>{E
zq6~6#m|aiZ>A?3ne01KlAxW*<B0KwXOKod5w6rRDON12CiuPVI4*mYANTi2uMk(Cy
zhuB!@LET78!(HtIqtuO2R3bgPw#x(4@T!eTdSxh}70S@AV^a0CRtbQo6X98jB-jFK
z3hEMyG@weyYdr=65Okl>9akV&Fw`Tj$D6E4v+;S81JOo%h}Um*SFox4U~kiS)|w#(
z!=5HD9ss0YQb^}{Ehbwify3f>h->aQ)~g1(VOJ*!Ad502+eK!e^<K9<nz>@a3&Fc_
z1+~t9<X^p4m)Xy`SeXjv#lwwCYct1c?L!s(W7r`#N4aq`HEfMLYvnj|sN8~4u~*YI
z8)BG|p&&?_9KXeXw>LGB%Fd7zW0acg#{K12%nKDF>UEsiEJXUq;NEJPz*9QxjByA_
zp_C9trmSZOyrQ>!vf40H%WtfYJ~;JcTB!~_5<dhoG(oW0W0i5dA71JAl`WI1_v6m0
z!>a=zdA};NqvZO0X1tnO#YWqA=#66b8@ej%ZuMxYO}&SS{&zN3s3jfZqg4_*a|yK>
z4^~&uhuW(}ne$cq$5qu;PEHEX1sQm1(?p-1@LA7JP?(F=tY~_-Ol;b*QfSs0I1j(n
z^C2~Fl{Q%MI8Cun#eyIVV&Ss~O*L`-W>o$QrRxO8BDdST-4m%JC@!IqaC8;PD$YRD
zqK7$DO##{xVsV%PR2KW*pISWq;nzo$)MVyoWtIluHKDrpRQbzVzx@IwnI@4#BN5y2
zcG`}jk?}_BL#Nk9_l%RBg4I!s06g9yoH~Z!!dy3QF~Oe#P}EvAv2tMRAhiS26iXB%
z{;p01*!OMbVM=Sb;0|wILJF#h8^=r0t33dKS`5NH7=S(jzO&uHKXc5ks9=n70>GJa
zUxA&xF&~S{IJt!8K^#mIqMLAtP%@Xc9<}UF4tX+ccSOSzm<H!WQ&Ee-Z6+E@r|LBI
z>Ix$ppS2~6!x^avgnqv%+=Mr{nO4&GZfd`PX1Q6-w0VE0Sy)R<V=B|F(tZ}k)0%cH
zT*h`w&<}KRyPqnzAXTN^1_3vZDyZ16G|bCKf~|uCMN?2t@d$Bl?jS{69YB;d|I*Ms
zab$OEI_G5}Kr!4F*w&2$6)2m-!{66l1On*?#HP#47*`g&QDK~@8YNBY{yi7z>oM&M
zTL1^1fL}_9jCuWr_YTKAmwr(#`C)UvuG@3jc352<L$jJv2*u-da-ad)AbwsdE5L9a
zqhJ<1-(UcZ^x6+okw;HSzS)6+JhX|XO^%R=8++ewZ<Sv|7|3E6g94}TBS;i^rB<7F
zrav~sgsN~bYrh4S!q=iCxH+5|QkrJWgLWtUrGEotaDmw*JdQoq-NV*hQ7Pqtw+62C
zl6})?Fa*B%Y`}JiR@u&O?`AT|GJR|dT_ZT97sEvs!Hwb%C?R`AuZ0z*aY0kDt?XiU
zD5c0lz6+lf0kSp#P6<6Qw|*OmS&SOcEclG3Zj&aHT<VN5_;krMv()vsvzd@RD(?aX
zTKoMvA9;955P{*K9}U`88Jz(Fy9+D=8jdPwgMk-w_r-x{?agjf>c*VFC*NFwhm?HV
zlZan+*I{b@LQ7;TgTr4-`|_M|dBgG>TO#+Z@>qqpjQgn%3+&AFkfu|Z#Gm?Q(|tmc
z`Wf7n<F&}P(z{xU-<k+SWtS0p2u-p5;3g1%_M{^oVmkE^K;zM)jbbFf6{KFC%P7()
z<y4^uxje4Kqhpikj9Xt$G}J76VBMiZZ%%a>dB_pJX}v>!qZH`Scw36ScTb9m2{q2)
z%ngPgGbggz<4iL2kA@aUWpMBTUP<J(Q?+$sx|a+7b%}^Q#N|r^_Ui1GE^2ZMG2()I
zH}K0~_tNdXdcS`Ka9iYQKr&j5i2!1o`apV`6v`1{LRQ(2T_FcRs3L#6vE*XcoNl6^
zm$6%D=0#TnLsU4!(K2fuj;J}L&67%raB*Gi4Z!BC4WSS2B9wV|A2Yd7eG26m>aC4n
zGq-812PhfXyrKkpMiUI7z)>d%J<s5nlQ?M|=9>o&s)*LQ;$;04>bj1AT$*_?l8_8y
z##B8StIspRtxhtMM(6=OgvmOnFp6ez05zq3oXWZB2sFFFVM^`}aOSz!nq|tz1F^B*
zaDZ18b!eK?a%Amq4GSjlhpmg~;6&Gq2_`kLX~}*kBTXl+kV^K=`lBbIXpO4Dk_#EA
zpr>Rc2~K&>TtAUyeKi=CqcpM{-_L8^utU!=qhT7w!tvY$oflGh+|dUT+NPn{LM$<j
zh!j-?xD6J`t==Ue6LcuDEUm%0*cvhZ;RP7<@d3fIX3mI!y$>ys>!H|~EhA0BtMG)p
zelXs-baY=>tF8qJ@Fqo0&_P2EN54u2K@Q6NU?A(@OBp<5VDI<*A`4m>hIIXio<5<A
z@LT15caKQHGi}0gdqeN{VVSXmcqOGj0134a(sHsq5Nv3!!xBRQu8KMN(J9nHz&`gw
zW$&Q&qv@#zys@TCm!d5foC1y|1Yof)XkZOB(!44;wLwR)wet4v40e)8;zduBswL5A
z@tC0ag!>+z5Ccz>((Ry+<U^cDCR`(@fTAsBm52&;LbNIks}mV=#9L^^HUSbR_`%E>
z-$%bJ-^VH`_wsRn<9Z%;MVTsq9%MlF+KM>HYz?N-lA82`Oc{Tr#(!Pl&&dTT?8u)8
zYf9xEa!w&x=UpSkZ{lCUpZ?qof(j?O{YfE1>$7T#?A+fZSxd>7n)ly>fi?A-&H6Q}
zNM47g%W$coY6IRouy?+^?zLNXH_{bd3_<M~3FVuCxEtdN?sz(<ki;}hHepP`q^^kT
z^$US{-SB-a?wY3GWV8mNB|7FhQ3B2P!sCF$Kc^mRJIm`EIa(HkLXgDHvf3<B>{;OF
zlNNl)x}JH?EjIOc5G(CKMcoa8XN+REw$8KT245}T-!_&5ZQAXxZ)KTyIj}K=iRx=g
zVh1YxwtMudIZW-==Qk|ny!=fkm$hyed-Ry@^&s)!+vK4})2Ans5v3u5gj<pwdp(d|
zYrtJwBvRX3@!Ieiv5F8k60N0Pv+k*wBu6N)ln+C27B#{WBPBQ`F5n4G&5M|*Kw!N@
z6k8$i;nC^!PkD&)&1A*sZK@*iFGXM-Cg<>J|1f*pWU0n%3e|Z^=m+J@N2pX<A&rH&
zi{GWFE*n$PdueCp{6!jYgAX{#_GA0ta0aeqeon=;eYYo#x*@`S`1O{-3WYo^wWPWX
z^<#AY55jzDO8~o_W41aK55|Q{qE@o@>fyF~X09MKS_B=1c&042E~W&wL5aMI8^BEz
z>3ZH(a--yTv%01I8}MAI@4;sv4YyTxd(vYi)@091?>p%gAn2j~xRUJ;9&%O^!S}zy
zBSLBVH+Wa;7SlWD>*&sz$E)SPO)_;8lu@7cM|$`0MIxKwbU)7_w%6_}Mva@-;~{n9
zq==WUY#a<}Nzq;(HCo$u8VSU|nAb*0#C)d``y#VYjxySF3vM<`N4Df)>%weBFkal(
z#J%Ak+b`r*T^c-n-G3e6*?xZWI6zpg2qIvfkmf}SD80`%zI}`dHtk?6DH5-;h+ZO?
zDZocl=baFY+OD^wwy2UoEgSwkOEg9o1mi{J%bm?jo$>KiW%pwpVrVO6lVjBo*xy|L
zVrG`XtY0BAOXc)r^!KNK!q`Gx<kzE+EVKRnE~oU_bq)jB!@d_dgUMMHKKz~nD!g-%
zI)zC>(^o3>>zwZdG^8-6`AtpM`(U7D3EPL2;ckB*-Y=wf{=R)piWEH>z*)E$4+`-|
zJJl};SaRTda#RHKr@ydBdmhRoOk7q;H)AoL8CpH8#CXQ#z(W1?3?z#Y71jfX=#v|^
z<C{qkx{7J%;L5ubpW-t<u$H#jlhry%$u=*c<#J9+wJJgsz7~z(Z@UXbkdMe60XU#&
z*TYOvq^|xA2Hp~mOtaaNU9?8y^3!-Br3fS9)vp2G+Talar&>GC(27u5^+rcFVUErF
z;`{?=J;OFfDADY|#k02_n@cwk1$ksxtM+Av*%up*6QCpry`NtF5gEwoNn{Zk_#062
z+EmqwM>vt|Jm;nR#tE!1L?HNl0If99e)Pv=3JLKn7huXNu=G8cBA$)~FSx)L9N%An
z{z1k5w5wQ{(zAFeh72p%(l{3VM=)PM3;xn&djoq}OG!yA2=?AG6O0q@ov|Ijo!#=@
zOBQh9{n%8{r(l|kuxFC9OwV@4(cR>^Y9d<qA3h1$NW6{}gUhP2Kh;WAF;GA@lWu?5
zE+a+aCk3&0!>bv~YVL&DrqedjPzeC|f1a!IS@!(GNdUpJ#8wWbV92kw)}O#9j5oYX
zEv|o+SrZ=YOZ)^DGTjUyp%^Zt8sqSCZ7r@Hd_q>;7NU~wF_Evuv;e($i&<hN82bRg
za>SO4{MmJ&9iOBuTM44=MQ*)=npCt+DBH`r<Ru_4qQU!ffHA+(0{mvF@OS)mR}Rw7
zDMpqhTNV1_DQl*wAp5w_1wo`hbLh<aTG)gtSWVMY9p#<uPYV#=F*MN_AOXk>sV8Ls
zzwrC@Ocgh^-e8(xoJ3s_$SWV`JRPZNp@kcAJK3#)#HY0f$?vtT3S>Q1uJe6m;2!IV
zL6+U!x{OjpWThKxu_l`fL{CW#ERQDC(KtzFsvNQq=`u!nmqil?&Fao#*5xO)gR4wx
z|J3pFP;C~ixlC?hWC~G(0-;l;>sx99rGYq^iqn!!04ev@vfZxB(Sb8I@UN2t$Gmg7
zOe*F|bJjAcW#XOr*cWB_0`BL0QBY`tgB<FS-yK#^Y-M*=b4mUVB#2MCwu_EOTDFoL
z2*uFUM&Y_zcsdMbl?QSBbO=oxZKWDPg1>@a1qLAYWoCzk?V~P%8WF;DfJ#3b&lY0d
z&!b<;C*QOniaCzwDl?a_Ekz+0g{*i+v)PI-Cz9n!1=nF66+r5HGicd6LUD_lFz1it
z@3h${BP}za1d7Etf;R)UUj`*HgyrvlLvWp=hZiy+G3>uh>T2Yux${hC?BkHRzetqH
zpj5==61Txb0ZW~4KQ;ub^P(qoPO<&E5B^@<&04V7TK-7e&Y$?D!k8~2K-LYeVgVp4
zb(sd%3mqK+5)s>|4pSm`q9RNoK7p@zfm2l<DJ0_822_LgsD$deO4}zFv?$kx<Y&b5
zEgDEREyMo1<35Kfocwh(UFl<BX2!X;`+C8S!5^}~04<wA&GM8vbw6&mI?{lV#bXl6
z<PX|HZK8GbuMJXCWdDya5v}S#ikBgIJ<L8dq~kbNST7?~jJ)-(L&jcH9reD#hzHyb
z)-R!E*lfzH;5!5+;ZtSRtW)Xfw&eWc`WH|bIy58Icm1s_GA_3dfczNM=<&p<3d{<w
zb0{*5AgBofhV!6+t1djnFKI7?XTU(z->Im#uqm@(1~B3Z?N^T!zMG-8ujTWqJ4s#X
zN6*-}u1(O*8C9l2N1M%9EUSw;4b=YmJc#NzCzF9&m|=DSt^ADT-lgi=ZqT{MRNdO3
z+fZN@d5Bi~r-I<^-U^XEtLs?n*}#!+Y;Xwhmd937u@=ql5C}ppy@e#;cGM(T0&mm5
zsg(7a>r<FPi(Z2eravU+)+>nGP)EB}3KA}$$qIY(yxtvS)3}sNyh)9NYl|lNw5^za
zetuQ%j4*A;DARLxC>z`+_QBRHaYObKjzWErFM$hI1{@=J2Lo|H@XZQMs#Lps-E;yB
z++c$s;m#i5G_a)l{J`_$s&pq4ksCZ@UXLYKD4&$9npz%-6I;1IfwjXpG--lOI>T){
zY3*9|%oAFE7_gMnqL-b@K1jQ5`tl660p||4RIeElos80|l^gfR#JlZ>*iZ#vi8U1H
zQA@k4*Y@)21nq4v@~&Dce$GAPar*E-HU^y}$wgQXgE=;*>(Q>xzzy>KDZR-e>ck&`
zxETlETnKQbluQl9vutyf=CXE~P(lv`c(RL9!lG9=^=9vYC`&~gBBAXCfijq6Y-S-I
zOGV?g1D)N@uHhi~^}J=h|8;~O6$XA=PK2j4k`aD-#}fcvTpYaLEQ}D-PiRB<SONp5
zpf2OQg`oJ|Y}XR6Q;It+<L^77F3Sl$sM|C`o7Ba|=cu^)$Y~Tn0Q&kwGA55ejwHOx
zDNS5>Co{R0l7mPZ9pSr%+ALDqnHad&bH#!k2Rz!^#nxavcx5ig6?VTGcBW`y*sJFk
z^@L~t+;natZ%%8B|0lF}+}v_CUZqEuqqE<AB7rQ*GGzaW`hHPspAkhGv`Wjc%h7n1
z@ww}at|D*sEMblIDci@$mLbW)#Mz{+5JpaG8zIdBT4QAe^I#Q1HOA3ygO|kBtE<WP
zO+aB1Bl&97ooux@^pPbpHnt0CFNcPN2>!zZREf#xrFlsPZKwPMTGj&IT1ZHhD?caX
z;8qQDzAH4I>t0q7;@0jl2se+N!~KqYdJVQMH!B5XpI-in3nR+$PA-oLlzT`Uj;g-o
z9Myuyp<pK@l|8wgsSbgOJH7sSxKng0L&VwU6O_S6{O#;6=w!uMlcW+$<yXVa6AwvQ
zI=Ct+9;s`R*Vhn*BYEH^QkUavUe4pjZFIRvm|`gnhU)gVDo>@fh1iCZmkOU6Mbcc|
zc&<wR*+C#^ww5qU_++^s`!~6s$Ji15*;x(7pVHR*2^3-TBqPh^7Y39><>C%6105i2
zzDR#;SWy1}T99scuP`S{+G7$1$8#bHXh<k`QjrVPEpD+IlM39QGVDCfmg>1J#}AQi
zb$5ZIfO84m)c%}z$YgzP@D=CbZnNTrgEK(EYgN`GM!&?T8|Fb>&4#5fuVX6Jg&eWH
zW?5r4#i^;TtrhHgtU5e4O$hfqO;q9v8d&{6*YxfNj6qA4Ep{d?qx4*Ei?iBI-rsQ@
zREttbU)aKZe`c?juLXTn@NWRCpCy|p8wf6`v*I&+Z`U?&Zs2)U*Wt!kI|z+|Lsb!!
z3~NbmwvZ-iBH5ju_wBP|M$B;+kLa7J#CtE7dnK}8!g(18sqeg|&IJQa!t)iy8e+{0
zm(M&N6g+w&n7}I;n;lN2RIbBS4DZyl_t_o8@h;}!d=>52f!oITWwhel!q_C2G-mtE
zwtGS?JkDp)O#troKZI7n__f2J$vA;RmtVgFgl=@G)*f%{h0!WbhK`J>v_3<c_u=|@
z6HVc5cTVto*xu;db^M--0680eN?Z%PEC|q}a0F4~EUpUKBoH;wmTkue_YK+q@U9Rn
z{|XwyVV?7BkCePHW*s=g3AYt1tP~t+`$GaSS(E6BxrGD;H3K7D9cd{dQ_RE^GqX+}
zEq7%H&4!D_4Qo%l(@P92C+;Y-5bSvZ5K%tb1aP21XOVZ0@_P9hj65jN5=e=jU(E!{
z06qWg0Inu=VJsBLsjiewC0mkON5sU~@zBd?mu#Oa40IOe!U$*0-S?YSv7fz|Co580
ze;zwB>m%vfCR=}Cabl;3NR6L>c)J%C&QRDXZV4ADxr%)pLGjO_a#wiJ`Hm4dA|$`h
zsNxaZp~hURJ?|>v-cr!vTB68!m#dKxUdjx&-9kt&XVFmYWwyK|zKP;pP31dC6^hgl
z8X>YU3>J3xR_p+{_*g(8Ldx#82mqEc%W)?9*b6GghB6cSj0_|YFxuBURYQ3m+i4*j
zSjbHbvcfQIQ<KWoof&C1pUhXY@V2Co+G#*yGT~^X*Aj<jGqSC6^E5OH1=qnSH+QH@
z|B7d>j-)mfqo*cYbyd;>nABt%shg~MOfB4*?x$EIMlBQ{Ou?AImlK*e7IOMtqB!~-
zaLCT=*{c}hDxq{U8vRkKCH^0<_#Zj|oxYpRS>T<a<t$#~ok550uu4g(P8%}e{3WqS
zo%k;sf(1|9>y)Au+1A#Soc^D$q~tocN9WeaVs$NSMrTB^p#9~Auce9!*ZAcSH?^_S
zzrJ_vBoeNJ<suq!)F3ca;FK>4FSH@UA1Zq^eo_#)FmQ}hYyor%Tma%D-Sq9+&WQ}3
zqXLB+SfTT>CyAI<p`L@Vym{}xy*xCah-gk+RjmDpmyja(e=8kt44o)H^pj(gpaZ-6
z=ym(3bt}3-Z<oJ7J)A2wqNQ5U{~dnA<_*E3v5<GKz5{hIUd^ZMm!=ZO=PP=o<=5-6
zJ1>kFkf0K5Y7UjYoF|abYKDKF7q499Eh5MBX%bS^UXa6WmO02|?oQN-wOMQB>J@Y>
zRK;3FCu1A=yfvANuy_`6J=jS`q|omO2y>r=ONUB^_#<tk*(Q8WHcgEE5E96jMJ%G5
zKqLmZFV!MI1Lv>ZGU*f9ksPBs57D1m?=Vm$M`z2UMB5LW6m=6|@32g5HS7Y=`xPTH
z-xHwf&N9MI48-pIF&h}OobCm&g|&Fiuq|+tpP>1T&IY*2t1_g%rYH3x<P?-qC4*J-
z%Si!GW5?E|)7uKo*iGpk#IZaNHiD~LZUHl2Z`d6#c+`vBrZ?$xZUa~qo!Q;v;CLUQ
z<fb>7|G;~r{)E`}Cej~jQGgsTQyhT+c_1DdX}Wn8w~dviv%(VXv^)Z*&&)Xz;bsQL
zyl#;DKw;5b^yFk&(AG0tu!{H<J^V|=)(m?9FxVtqj$BgQ!SyK()92!RwGG6N#l0w#
zr;AMG1O8134H)87WcMsyz0DHJZ7E$2S17+vO*685FvIC38jgp{7q2TZ!)iIKeBQ|i
zNzrqo&$0b11&I|iQ#4>?G$GQ~jHoV)<VOGrO?TgLdi{N7^7^&-C`Mad3A3gI#oWgd
zzZZDiU^QN~DixpFp{ot><{hwkNb6iqyTbR<DPag0?5ACzG{2N(CvHQoRhb6fE{0v|
z<b5=COhpPZYZ@(zY!`AlU(0?=TQoBUtDr}LO`il>QWX6IKElDsLjqqVO6=2H@X&`e
zCfP?(e>1H6Ud3)*BZaFfq<RP6<CL=DzF2D&^nE;z0|ea@Z+I(zUoSO`tYnajb~YE&
zVd)EFNbyTFzPv0z68H4=Bc*WG;)frnlTAJa5NwP`Enn7s;6Rtc*^ZuTWbf#?i)T+T
zBA6QY4v|R4Mw1>A@mcF!GaYn>XQk$I`Ir#e7orQ)?JlF_GvM+Mm$v38NnWMLu&L`p
zc14&3RV=mDDJj(ljVij7c>u_>d0eHy*?Bxp09;TQY)MWR+`_<aCyznwb!TI=9&)9j
zoSeFY|1|M0nA)o9sM!wM@DIEH12aI(zpELguTwLdluhrLZ<`c@c<3~Oc#gPbWvA;b
z?Kq8*8eK*cIpS4%?r!&-$^SZxs*cTu;y3E(&c}eLaVrPwMkhjxC9-Y`T#lJu2Qlqg
zSzYj|BP{fj4KB`c6LC@{8+zfD``zwqus%LZcZ8jhmL;L-6ujcromjm)zuO;`P_^m|
zD39Eo$Ya~HUeaRB(2;>Mnv#AY<x9Bk$e%ceK~J^^C}!Bgfu;Vmg&W6ZbP^x{9x`l%
z2*F2ahQb@d5>r?lJhzDwy9*UHOB)77Q(|~@2P3N4!rx|u>KsDcSsSyNj6G`@Pg16A
zPNzGnu(ka&OkGldAZ(<dpg30d3}O-~5>_7oMrgbu?bn$?$3)H~PcKFz<eY!pr^NW*
z2e)8ZkprTwAVwHNP3ar`qkvF>7bK<!M-k`a1iMW^(;DE#26XoZt48Oe$e@@(qI2;#
z+%+>n^_e#b0<m>7DfeFDHcQ05d^~&zB6PV!4t+}?j<>0k0}%32Ii;@uwYWBmETvaT
zH|a%_J$1aA5{!Mhp76qqXxE)nN1A4aI34E1gyWgnIPARv>!gDw3_D!J&=u8=zG1ut
z?1=0|1$YQVLA^sawL7ZvN5j_3hd}WqpkcjKdi2f2mX&nLh`TJJPHZF4qy(ZcXq!bf
zhkeTBWR!iL_*N?9r`CqR*l1hPL6S|zhgnV145d>(d*R4ynI9-2v>&&9lCv2Zh69PV
zopmkAygQ=ktJQTozi(#6cHo3QSOP5hqnVi;0WYnbh_)WmQaeo^oXEAwvTahC{T){o
zTSy%@$cXHhKjEOSer<Q@jha&qimG~&wd53QZuuM#ciw$DO#8D~(zr{TWRCoTm%Md5
zM80*J<!#UKXa^$D;!KVBm2h4Y-b6_mSz4;#Q^jVdL>-^bT{NSp*H>hPISkGwMwK0`
zuP)_F00Rk}QHgg!gr8*d*>pcM*Lk&?az*@;Y2=K6^DRfstChY$hO;MSnnGq(asbQ)
zmU{Uw|I@8fe4*2>Fhrtwi#6G}j|uU(rqQ)80}nuX=`}19vPcj!z>?$oO%*@(fY<p?
z0p@e!p*`QgFGkw?l`$40DGEBcLB7%BjgpO!p%Om_FNRGy974~DMebIlx*S-4+w1of
zUFFEf^n9Ox8u<!9W-ZXpXIT+Qmgw+Gz^juN3MB;g=7m`T+>loKcP+?k`>ZucMu8Og
zp0wAiYF10nOp`Ciibzr+mv4|xE{#mqvGb4*T5`Qqs0YW<?cL*JuY&%OlN-bOL}z$#
z3I=KgXc_k$P3#LGM->ZQ<65^Fa+vN^tdYY;u?GWq^=5-X=^67j<Olprn_UO}=!n&E
zZO!Bk#~v+oka7QOEUE`0%MTr{-wL!qJs=`V8$m*)vnn7yK8OaY-snznD<J;X0-fB%
zMlg*83+}ugda`TFBnT_+jJlTVJ;nf>FsS0qp52(8gBgUB!srS{$4kG}_`AQSfU@jS
z`Y=Nc-`L`vAAk+~WUh?YG?6lhMFrgN457f#pOO(Ly;#UbV}(MklPjx&@LXzQqcG7k
z+>6n}J2%`xFP}BH{dg3DBpD{k;-$e1=kNR!5hR@ix?6a)PKkT^j>ubezocc@kuJ=!
z&$(PhM5m4I7~?yI<9z5<rYJ=#LPw%HvXueYI{;g~<OUIhIvzkT8uahpXc|M2qm$zf
z2|_Rife!-7SEkzF>wJU6^aHsSqz>r+ac;{z0;+h#DWowwsSj*HWlk>HZwbwl)zru$
zWry3h#N0ag$2T4celKBM){dh(&yutQIrJB?1hqsgJ@*pMU$r-ogqwhfwsKLXRY2SN
z4v9GKeETcfe=b$?1C%EMk|e7PSvbj$j8zWf$(I}VJ3z?1(8DpcT54nr1iMZZqv`an
z>$C{Q^EBpzH?3d!dSuCTu>>kx6&(G%%fF4XPoTr`D53BdVI4|+VJi<T6eDCXAl}!(
zI%VZ}Asw1er?l_RQVCK?(&iv<DY;|Z16Da?fm$S#ex$f7W^3QN%87$lVq92$F<Lcb
zyAUqY)M>WbQ~qlpFv)dwet4#ubru+xyRMlOm`&5~;c#1i9G?W5%31ck)}t-(HQjpX
zDZTP#FrNcH7Yds!Lw}IC{ap}~(V9v=A85hRt*x|+m}0qiZUfHDu=zqD={A39uSt!@
zki7B7{UVujpFKe;CI5ePoS~;lr2kh<P(cHwvQeqq_f(VmX9b*FN#^ohk!({m_#nl9
zvCeOWy`04+nvvhL`v<1tBzMrTwARrU?h79Nm!TMG?9vvS8<&toJ#S$+xD_{NYI;Wu
z{C@`g%l$^1kZYw1TGkO=?9!fOUL22W63Y0rcns?RnYsl=b9veQ-1hE>ZGuT8b53si
z<a1cTPAJ^h1qwdPf@z@W?iWa0*q}e~TuwfcD3FhI1`#~XZMM!ssnGvv10kGi-%Ol9
z=@<&x?_Yz<LE&AWGb8ZJzl{v6ELgt}CBeN0(g5Vm48~FS4P6}CiaNWmXSD*~AGO9}
znKc(Cd*S`{vg*zzH-O-gamSEHd{@ju%AJQ=C1lT1zeP5eaqj3c!XTrCQu;Z~16+Ed
zN|9`cTTy3#rp@P7^=Kb0Nz$z~Ev*TUWZ=>xco68}co?xxF|nPbk=)|OHJnUmH7<wr
z*P5c;HW)jQF8;mVC1GK28)t}x)#WYOFx^tj6ZlT)Aavb~z?KYKM#GNf0JetGFW=jv
z4I`r*Vtt)q?*!o%A5=>xG)TzaR*&o-xlFG^v-?nW+dRwO2Ruqm+Z$UlS#1vJTB-I-
zL&N5i+ik#;W}s15UJ+|SMu$M4$sKoau&uC;XLq9@x@I{lQZ76^N{h-st@aSI4&(=R
z*iv8foze^XrtLoVBtvPL7TTH$2gF?RinI0w-w!JYb8JKam^n%jrwW!y$Fz%WwpnmT
zg#(pCu`&DjR5n>)q(k-2B4qD;-5>7Oq~pyjGfAsKU=;$n8hSSD`bZS={s$6lw$>!M
zPv=O68s<ugTx2BNcLl@M^EC1OesD5P&?Kow;2i#UiB&N#rcxl56gUDxNyt=rbOdcy
zrHy#tts08piY1k^t_?$j%<Z32wE^@@zGU1Gnf{d#Z8u%r9IV0MIobLF<i(`nr@5!5
zhb>~HO*@;p-4RZPTfSw0dtYnM5{5bRqq5dO;p+*GBJ*rCjWHxW1L17~CB{wMV35C1
zfMrIcNU{dbRj&plR|RtB7k36#$PxKu+%LbIjKVL+uTdEQ)_q#(<>sO~CLmH0a24P-
z_1NDBP$O^WWRT9}0H;F<25CJjt3?e99IiXFj`~g!5LJhn+j}zW4vwWI=5MDH{Q(Fk
zvJZx~5S$-u{k8NmOBE5>vbmur_+d>V4LC0rjWI56JpB4F0fRm$$hU$B8udF+Omn{r
zmjlM|lgkiacztjDE)(uRZKQSG`i`oOKQUVROTt491B)L<y*kwk@M3a#Bdk}q1snZr
zA@(?^v0A@Ph|qcR7aTVzAJ<B{Y@NUUenVLHNec-BbM=7J32a_?cILrqEiAJ)H`{3g
zpObZ(t#d6UH-F43W-wZa$5GrC%0Gq!3FoeQo@13Vl+Ctwo}#_i$>o@jg|BqO`f0R6
zvtjvtmD`)o#g2_mxEg%~ieQ3F6DL$Iz`BE5rOCqe5>)`VXW(O^5Y7t*Fp)(RE!RMD
z3I37#Gv}lVaTa^+<hws{ph-#TmAd2P0w_`8l!Kyv5O{hk!YTfWKyq?Qh~nV8$fg?v
z^9!6_OfB!g0ekX33(dzqAoOpj0sjt?y^fr7(K|=dK=5XCz&b8SQ!;&&;AV=Az$kP(
zv-v>(GZTKBJ)RgQr|nW0Z?8}V<!g}QsIHg6*T<=Dzp3(KZJ=7Uz<I9v5aA|GV2%M#
z93)9bG2-U;edTcP#Uyz!WdLF&TqTk;+U01I=5FQ8^8kuyw=Keb2~+><Pz>2=6YX__
zJObn`Wr$^2P>L=aj)nErykaV7)e!91Pvy9+W#2qES$4Ww(H3y7?@C~JpCtO>M4R4R
zI4NJD6%_{}WluyV(4y51{x&qPcrE7t$CnS5TRydgYS!AOX=d8vi@qBST;-6rjc+UN
z*Qc?^gu}*pvly^kTeyI4562lN2R(Z@&$h@(vI6Kvn%L)!;ZtHtg?{}I7~0zoNHP=i
zaM^h7-OhR}a+aJ!V^n9~8Ua{B^i#e`_91Lk2&89IL67wn=aq3xeS)I-my1az0~ksB
zy2SHA8gs(b36~#O&fI(@Fn?KI`TPj=nT|0^?<DUZ1r&*1>WEy*9u!FEnOJbgUj5CG
z$&hKNOQLAuru(v+oRE{5o)@DtFv;h;L6?teEzVjC+#loH?~=dmR9Ge-<8N;7+fV##
zj?4pr6$lA{3@7S;99E13bE>?*GyY{x{omRnX{EDE6fOMZsO7j+W6jPxtwi|enlFGZ
zE(bbqJk|t{q*1wedEXQ)7;^LU>e}9tl!yvVDScPsKy0QJv*<}6`XiSvn|$T0@kHOD
z;2i}tvH~3wBrTa2qmrdZ@YjtDYYRJhQ<fh2(KvD)=sR@1w@}$2M;?+b*!b<fJnnQ&
zl-fD1-az$VklDsgjku@pTeA3XWPG<M`qT_A8wuoAqmED8ouP|y-<9pmSM<Mj&ZNe^
ztPo@=x7<PLSK`9kt1MRpp7{6u3iksg$<T_kGcdJn<Og72H?3Lk=KPU3qux~bK30Op
z6iL!!D<HZv_KCslL$Ud%1;(Ca!aIz<KnvBP2Pkvc;XiF{_yHs<Ae8hhhF~W?63&Mi
z?)xgM{<sD(RtK*CJF5o9X3mF6K}-|l1N)R7AGl81uC$WUgET}3g}N>079N;Jg|l{i
z(L6dTcRt^UG~3n8AGfq%t|OGTR6gdIv>w&BF{O&0BoLzfV8j-ie~;Fki$8nsrmv`S
ziE{7l*LdwjO$?Yb;xKtqP}M~hO{3BZb@3E;IdDGc|4f(Md$m#iNjKxSego1I`L@DR
zQ#vzMQ*g#Oyg4zzkSO8Y7yFo(<v5&>Q%dBVs#<N-=uUpCzMGVq!qHZ#!K*2@)ch{O
zSGR1JD|u;(bQ*CRUm=*OK)f-=IB$Q7<TfNS2NQh0d90OrTR3oY%ahSx@yAsHKJhh|
zT!r5b$$d_H+IETcf$eEVgdHzKM^N9DjTVEQa8~HoCAOx7eq)Ebk}WchY3d^Io&+;F
z-|-JwI!;JeK%#lIS9@yz!)F$Y*4JbpicII0yRJF&e&@bDiLGiV0B<1C@VA&$R<Tk|
zu!jMdwnJ=2kvdA&uUz4AwN>h{%Hsy5yWC%1<}^)gLY+^;QsrJ75kO|PeTz4+E`dFG
z<jPg^+q>@I>!zNWx2qWtq20=xZGPBQJ8>Uw_ukk^CGCLWRW`N01q4++*tkD(Q^srp
z9B6H&!*cTX>^%{nWzsjv)^rkTS%BfE6e}Q1^!!3{$?Ke8Xoijqt`NK=W{WmG3nDA;
z_#7g&>EhT0k;$Y%j((M)P~6@iL`x98t+%JIgSw4@UN?6hlX!9Jn!YBB`2SrDsO=9;
z(xlJ9!>8(#OTk>vsRs7*|KYP+1gdB^yVb%yq|YXdwBX|4$K%kid9liAOyyaPj>96m
zQ3sFf`A4Q4TwmiHAM02#J$)?;b2hfYZcOl-!+xM{su<t<<6Sv0@H*V0;)G#k3{;m~
zd_F}VKDOU20p}VXWCk0=&AZTp$I0Ccw?2w2HyXb^yd!K*7RvA@+q7g6i<M*u3*V<7
z@jZk4WHq{K`_P1;B;bGMl##QUPUi7e8}5HG04#oXG3EFTdf1y`Jk?*Q&e@6T59lpM
z`CeBYw{-s@bbYo<FD=POv(nGN5rj1F_>MV$eRSQ1FLek|<Os`U{o6)BvV1g{=sqsE
zbITP|RPU&JmqG2=Jof2n$rtyMRuIAP-1HXpfofF#%Lnxs0;bxB!P+qi*!lK&j55|u
zAYxAm=i60$g#Q~~o?TxVH<bQ+pa2gBAkMfEn=%2l+fj-sjxAp?f{_un=)@iN)#>cO
zX3kke!;@*tP?Rdh>YY+BPuLU}M9Snw4y`p0x;aS{6rYC{bcQea*lz~?CD?2wInlch
zP2u)Vt}hnPG@&`pFE*2tJM<3M!4hly$r^9}!VWNLIWWQ36_|O}fW0Q_V)JJk?cljs
zR{xkK7d6u|B(O`(+eg};n>#<}2-UWsC?_vfg(WJZj4mb+Kt5^o2JQxRV!eu?3aMP~
zc#ZRwTI6QHTfIP%Nr@a2rfb%hg>sy^hp_066&Ecb<vC1faQgA6cDUzB>M1Rh&jv#h
z_ZG4?HR}a{S}^hbL?8&{QP3~s3sf4OY?b?G6lK9&aMtZ^Rf}$T&ujq4k{z4&{u%Di
z!lD8hwSwt6`RQ|{FZFRNK+muX&Ec+3zr!5hUj8$snX>v|p@S@}zZx8K9b|^pl)u=8
zD};N<z`H%i&Cbq`Wm-jBjFR_OEJ%V0E0Al|ObcR6Zkv!nKFlrQfjZjnr}HPwx*vX`
z6~AR{wjGUYjq7(dP#0Ei`)|0WBENX-HR3chex%y&RsOe_^)}4vPWk9(P9y3#eqPeT
zjT(1d1)qx92KFCc`P1cw1oN<ac2ybzdGn3JG~GJ{90!40hH^h6NEv~>SHm}?ckv2+
z_UEmUGU}ph;VcjG`*EAIS093Upu~DZ53FqMEm7Ov<ael#TJcnti!$1r6sO}W7|AxZ
zV5G#I&>_2vYV|1)#&YHr;Cv4Y##g4-(Kv5n`%<A60nzL`Qv-58P$`L2n4YpndQ4ya
zosnJ_jaP||M3Cm+h^V6~XLP3MzXzb{hbZh}l_FbJ$(77mE;L$&(!aps8S2$A{aGvr
z_1ga8za4?(TmM42cuwi#W~v>gchz(m{$Aw;n??9l?7X&k&L5~y^Tihh-(G;m7+0zT
z6nyX<`qQrffZ1jhe4Vps4|^vnUrWYdK=bZW0^7)cv>S?qJXwXD<rOEF@Dm+R)@~k@
z4{C$@&8V>76Rv$?%4FrdS|0yyO1<_K<e5$~6qm7p1yfr}9=CRkgOCq(nsV5c<e*`)
z#smk{McNn5)2U$(5tXjm8P8^H(<b2AQhf9Ts6_qYY1-%-p4H%SAA4cNda`}?Kt*xj
zj1vXwOg0>PqqE%_{5WwJ$r!S{L%$zA&sS#bDI@aYsD~|Lm4&b5XY;6u09r2k$wi?8
z2(kLP%#?n#>P*heA|x`xyxZLwAE%aC<Oyj?0^5o%tR&FHmR8pD;FWtM9dVjW4a;Sn
zQM)>$1tWB*d+j*yySw=x@7D%y2tN%*+qjr8wq2E<8rS1Vd4lrO<SwT9+o?#+@(RM8
zt)M-<akXumk^qVZ5mm0V@^b?jovoV0^zC_oav<ewGlj$r^EQm!0`n)>-FOD#HDHyi
zJP~YG)mh<A!N+$?;Ri+lWxai8@yqJ~W7_T)JIeciSUG09{3K{w{T0ScVlUSIH|n^P
z-C~Gm9{jUw!#rb59qeBS!WM}X{IF!0O&w%gOaagX*JojPc$h>w!Fnv!UN?Q48DK2q
zx@FTkl_se^ccHTG5d*J+mC}+-C@I$pK0fwy+8qo;%XQ_Yy&W-@aqH(vL6N#yx!#WT
zo8bh(`)t{>DGQTyarKF>_2P&1ENHe80B=0%JRw?!l{@7P(7T%xkULnW+BcLo$?PoV
ze=^V$s(KOKpNvPjY%-Ej3vI6iVUo0kTLk$mBpMOKZ8n9k+=NAX{QuIy0~tOa`=yOW
z^`<+i(krGG*$WT}ZY_^IO3tvUwkiLJvsGVdUu_j&@&WI)qZ$lL)}i|gNI31`uVB*!
zCg-di!Td6fs6G2Bah-2yjqCA~5nM<I{*DT~HE-y1I=|S!9H1=rm9RL?TpqrezAulQ
zQE@O_TeWWvq*pP*!~WW|&G=QGw}!f*?i`5+bm-HR{O?(joO_5SmK@{k*BuyPS=W7H
zf>+}()!t(}{&W<lNvl?NB)HvO(|?D44@>)$qjz_DJteygCcA8iSDe2e)n^=N<EYy-
zlkKq6>tHBxoHPf+n{BUa9$zneG=W7-+Tw7<yTcWT-EnhQ-66UU$3F!#V0sNKHM`qz
zmt~dEf;tRm;?Gx^No`7zoFW14#q*ium96a+!xNQW0C-Iy8u+z{sK)~K>A`BGb1WB^
z!h*exCmFKrJcc`#U8^eK=J_CA0o(Fga(0=)P3kIo{+YiD`Okn)6aGa}sJVS&A|VLR
zr}Yxx`}rPlAqWbKXNrFz?CCM52IC3LB6xCh?pbyq8|fC3Tr);3&tcuxW^6his0$EP
z>lFS}T6vy(Tt%(d1p^+twecw|x%z^Z(<o<>-UJc3Lbz&r+ys5bxCC(i2Ma}LNLgE%
zem-#?4u7Vh$(bvFxNqVyp!IO2SXDaV(;}>y%qIH}&Kna;kJHN4sBpN7c<M4QByD<J
z$w@;*S(c&6Y)eW2TUxE}E@LC;?`A_<xz4z%BOjrENRC;TQ`BH_ZQMS$VGd%IDB`PQ
z!qeqyf0)>^)%?*0dmiPdBob}XRLOGVN|Ui?@bG6_m6X%n6|gfj3IS}4qXQ8Rm^+w)
z9`*@f4~sONCE<GwTU20Mq$5SWAZ$rSw4$7MARhEqU-dH4<v|V6c{PSpKleUG`L37w
zrJC~Mo`RnI{p)V$eKnFuOu>0n)=H=m=&ZjZK5xC{8+~p4a(~`Kz@osazGUMKIz>_j
zoxzGU|72U^o*5oQbEJ$#;%W(5Ql0Ydl*usO|2)qCP-l8U0@&n;;9EGnRr=7w3Tis(
z8LG6<>vK<9C7tt0HE^f@>^_kFW7*VX0LNy(5hO$f45^N^IdwU0zB1@mN&HVPe|%??
z>3*p&+|kDh4O%tH>NU9J&vExbjM4j$8YsT$lA3z;6sf~_P?Wx2#Ma=7cRes#_B*A9
z2G(`3SrLurHYFji;UKg9k1Qc57AA%IcqM`#yEpu@MTiuSCF%F1cpZZDnW{~RLCrgz
zqa_QI0V<QcUc^#rqPr~J9<!_lhBR1`e5V!Nwz(7H*(jNz$6lYdnfwVxd9Ki8y$)YH
zmLbWL@XzKm`i+CTXFcbVV)EYni}!8hYg|bXUD=)LSE6SmUI?&q<m?7K(c%w^mEm-3
zSusea<w)Ft{U_7c2|3C_I@`mIb}<?~ri4g_Z_2J|VKeuMXQcK!if@O~!2F16QcZUA
z_7H<^iCUPe{Cj&gjNQCi2^5dP!BcBfsOS=A0IBB%*Vx>BFQWNo*pq9}l6S3(cWJUn
zi(=DgN0_67mr>)$<(k*_nwWljr?6VkYVDFYbOCu}DpZtzF^9DT<)0J%Kq!c!ttm+L
zgRH|a#{@7%O=o1$um)jCvI(pJhh~9M77HgZLR?$+SPE&*vvY08$Nug5&{LUP2B`7;
z^?12qOkPR#Cry&Qo9igpseN!*+6)e9hs&twITW*WrU_T&sVw*Lo-cBX@=yh?2+U_}
zhRwJWdWcI*{a2QDF9Swe85E93-ZG%uo2ju9Ymp=YH9xS?27aCfBNd(-(gPhF*uQ&U
z&yV*c1!PPZ`WMJ$`ZCgk4-sqv1P<GG1$S0*2XDE3(L0*jGfSqQgQ^+}>dQU*ZV!-0
zh;O)0)GE-Qfl&l`Y0L(yjB*mHQuP)UjkoNfS$jAvNIackriz)y8?!^T)Rq1iMSzzC
zOMkp&lVrIU9>3Jqo5)O+8OH$Ce6X4VLrC|Av^KdIS6qR1U@*7lDt)9nsOoHm(%cH+
zG{2U#&$!Zv72%M_lTVFX>#3rDTf$d~=Ae1Tev{qIe_|_hmA~DUzlicqv{1eJjE#q+
zP^m~(tq}2afzQ)pl2v0O*aL19Wx{oFy{xtmY*^}*WI3&GHjRi#`-n{LO;1rTV2|4v
zZlO~twg25>dACyi-F)v&t%U8(RA~p>rqY~W6wux<@ydCDeoUjVC@^9lE07B#M0jtp
z2sQY%JG>h&!wanwz?R1j);3?h6-P(>15sw^Dt4A?N(Vi0%2}?SFffZe`_$}>os)o_
zo6ViXpopRO;l*<WSbHNcD0J@G2km*-ig$|CVva_L+{hA)Q78^?aCxEO&$Vq}du+RL
z6k+~Z#rOP8{yYPf$rM<$X@)63rcE_Si@5wE-RZ&*WXplWG}bpq47Q@cvCQ~t8b(Xx
zTop&-Y&quI;WB4!iqQ}4R8<Y+v2-o~GL!f<6+z-ktyN*KoB*4X<1NEFf_Xz({GS5R
zC>EQ~BVyP8zMap^no>@R&L(E3sHcn%_N0KTR$5<hcIGZ*b;wL}+E(noHKWhs9ckuS
zcdDw&>U|MuniEM;;MIdcr%no_xG(cgX}W$dtyY=6sN;6J*>v$l5uPAKGoy@Zfkl@u
z0zy3JoEjCAenZvl2}{7%D?`$T=#M0Wqn7wOZtJ*zAUoA03AE7&8r7iMuYZndH&2`D
z))PLLuRs%^?ESQLp)oUjDLvqN`fVM%<nmSQpGDD~{00x7=-gp_a5)C5$9_CaRVyki
zqUOMr5#2Ky>KR;FRKDP>i~acn(R3t=IB+f*-7Nj(BN%5vB5x<14I)IUMKxytM7d9}
z1@%g@3Hgp}iBHY`gufYq6plD14fCKcpPeUAdw;pvXR|03OuLx4@j&qQ1!+Pl$MU)a
zHVd`&Qt8BU6CJ52&RH91Pyg=WrGoS#D=_A!REvs{Zap(~h8EqJ#`|cZk&+L1d3|D<
zFNco7!kmlhN17bWkc5f-tVQYUk6>ED%sp02O&WkrRvB(aM_i}Cc0#=G-QkD{IJ!9o
z`muXeaWSov50((ng!4?XbpHiFGVFoubJd8lT_1+>zDp>#ZA6B;9vj)=<H{!DpHYyA
z%nrsg@XrbR%9qlBb8V2q@jYLzd2XO4#f&l_u>0dN6L9bE3Ra7jGcCWUeGDG@jDy!7
zCxkynsDj#aFzdspaJGVeMWN;eB^4VG=tia_#kPPJBSh}e=Co(a3RPp}p{@dTVtDGY
zQ0<7me>&uk@!#RS+5{_mzeY(`1_*v|@~xD2;l76S-Ncxk1@KW*4U7YjvSlLwjcup+
z;3w{rAsUvr()7t5*kh(mT$ew&3@Vs1I++lQv#$5_!x&5cWT^(RgfUt#KA%{dNVM-i
zzGQ~j99(r^@^N{nnKS_qK_o`vJ=S9SoVe)tFe7*BqzkMP5y_g#Zu@r)jb#nRy{8l4
zv4!&EqVs@vABJsKWSsxo^UrLQjz-cb>!Q;8^&BBp{}c}E3f1ZL-0Y&_w2@vs#i8AI
zBTL-D@p|4ZS0~KVs-6+A5BE44o)DeQ+-|krHQ6?szWWI~RWXS#`X7$f?wu<C7><^r
z{8RF*D)vn9n;o3<|C*nLNpjJNNIi8r)ysU!^;I%6AE?=ri_lRGwgJI@3+z6XRHH#F
zH`>V?W+NVrgwl62&JD<>9Efnh-Bjxeq&nK|=7XOIz=(el=rWiuW@$u)RTXDCk7@6}
zFotTTN<?$YAo&&0>g>^JcYn+Daw^{SX!JI4GeUZk@NtbOw0_R=1_`9gGqVe7rfg_C
z+FNLuCMNY?cJ`0I`0=rXx_9_tp<IZG5*o+V^8Dl7tg%cV=Sf?kD9c>kj>CdQ__8=+
zak>st(`jcRS?BG(nX#>}-bSZknCcOjus7fBs00VeR;mLjd~IF!jq8M~&2U4PJDyOR
z$NEvT3ApTQXspapZG#HG8`czUc+0N>-LF}Xe?<MYd(jy5>VZWYv5v8b6E8YwMBLjd
z^_Mp6rOQ-{iNnwxw;OzAerX3AFH!`m3xw0XHQc*}_AC?|v@guB5%Z}m&NxmXUT%FM
zTw!2H4nbm4cW`iv6@LsBu+;Q)n9C&*1L1R`-%;{i>(pr2lz5?_s_+NG33xIU*n@k2
z8gR44$ovl;9EA^if^@bXwPbm3=KvTkTkNE4ZH`%Bo0e_sBchwjzTwDH23s+{Yd~i^
zSO9H|-awip>qK;=0<(?vtB7x%2+xZd3NZ3i?qEBbua~P*ek2uueL2n@BMdzvdJ}VI
zF@O`Vefye;)3uhzU>zV8N?IS^^lMLdu+ecvbY?l4Iq~{XQ-=#4Cr8(mYwO1$ZpUl?
zcu|7Rd1-b0u&-rE^EtJh3lq)Gx-2#h5_AURb;mU6siX?A#kaKaKQ`3>b+);HB!FiQ
zFU2J{R7}NOWoFD+Hl@P=_uEsSfKmO7P2DAfmG*4YbeYg{%)WLh>c?#&934>4EaNVX
zD^%|gSSL^j?52r{d14(#yM=9x98-55G}+?Un{NaZZReAi&pBqz)H$OxjolVwz`=rN
zr*Ka{D%EX)Z%)+KIb$06zClcK-aLdEX?acC>YTfdk!z2Xj}<mrgBWbluNk_8o+5uK
z5s@g_F$_v-Z~i2MoJG4;xVcbl;uxJyw8B`{WGEhIB$O%!5N?+)=kAx9`Dr@F-*zit
z;wW{U^R`b*AS4Kf@@?yntP`v6e&E=mWwPD^7sO15WIIk;6i0;Qj1Q+}+{aY-S}_zB
z*%^JMM2;;Pv|6bRKUMVyzlb6%2*Z$GGQl%iU{TnX$D7tM{j6-!*EEHbL8Y?DnZ*>c
zAOn&p^=V7Tuo!1we?2(D0(B7gLkYFS&Q&&t%Ep_f%n|d3+-B2sYn;HA6VM3SnyW30
zmHeLE&`HvR)4K<=uY7ARa`3W~dy`+o7a5L&N6o?4d@IfB&n9LO?iO08i0_tWNY>P+
zpqNB*Pwm(DeQqp-f3cRWOzBMeV71QJDg!ohTg}RJ_d1oM0J%4aTU|El`8|fo4jv5_
zLhC3ld_yD*^pgG;N!Dz&OSj{Fs=@i+(sx5C;JjViSb#@yBfOQU?l`ul`4Aa851$4b
zz!3qeEZr*d5$CA>qUt}3m&`i1Q5-ch5AjTK4Y}xK(Ht%?Ox<}E*kt!ONuVqkKwpC^
z+WR-wtKKBgN*j(mh;-bZhMhw85c#!um~f|6P4M8^v-Xtj_u~yq+oW-71Szymb)3no
znNGtq1!>ucJ)6kL{D<AzACs<LDlNUXQ0!KTNF?kQ!}QXH&TLK(!0fXQDZW;lr%un9
z6)*W;O9-Q<gPOdqw}97I@L-gkr+MWrCc(XfbumNU)r89GQ4^S^Mn0m(3J;vnRU>7r
zp?1t#q<xQwvX|bh*<5?aa+duwowharxV--Q<Yx*j&W2zx);^GAN-xQZTGqQc{6s0z
zDJOmk3sYFU&Gc*`G~yB`ZC?<lTG{6o*Ub90!ks?ly+NGbvzJ7wDjh8AB8Bov$H6UY
zBeN7|zCs-L7Oyo)J>Xi27BDe4a7`4PftVl7l6Y9E5>C}FOgBoo((LU+N?$t9@o#`h
z7+-*<T)&e_Aen4wDQ`Pf=++0#tiDZ#dyLPA5nZ4HEtBThI`Gfeob5KO%Q&b@R*~YM
z;{C!?IUbFZS=6|wuV0vbAh0X{<tKf{!j6>X@m+E8P<uH69Nqj~u*$lNBl=Wwaf1~0
zB*E<3QOw%Nx5Qt?!a3r*9?W~thXbSS?Eb`%i|FtX68<k;xqGOZJ&}-}c>+h_u~aKo
zjAj2XO;}Q+Ew%<iF;Eu?-Wmo&BAgRUe8;VA6p<f6N3Mgy4iOTMBG7cV*4xmkBY#W_
zFCLoo%&~41A*(~z-I(ALu1X_c$Dbt4velQ06G9^ph#xN@r;Bz<MU%r6DOhQS`Dht~
z++L{@+=$A67RwKv8JOtwoPUC=Xh=abMs-icH}?*-zrJzbJk65r2zxJ)v2<o`R;u)!
zU8|w}PSf)G1w^R5qSyI0eqoJHa&+x21<_}W!{Fkee@}hQAd*Nv!6pK}orQI|->I~K
z>3YlZ8U!TjEOb@T->=2E9WB_6(+s&S-Xd^nTTC>5ET+c;12nd2^1Gqod*ryNV6o(m
zmYk=8KSccHEn02nXj+?>zn4Ek^iKpd+tV7iHiLo-VeFtnHLsbbw{_B3<gy-KGV-iX
z+baxILL1-(0-8@M1QZ`_NBLOnYfP7rW#D!89lcRlmNz4X*HKgYiDE_|c=rZ1QH_5Z
zupNu6qqHKkAR7Y;A=8X2N{!&iA&?A>z6AF3BTt(DqaN(P+Lg8M6An%NBmwxVwPXmI
z)HB_H%X|dODshI<H8xPCe;#Jg4oVlr$fn<s1!L+X)_<>mIFSJw)GV{&xN{?4+edIO
zz2(9A3&ht(pC>7EELRV->Wi7u#F-~tQKcg_4~;1AoGKs#_^IJfBM4pdMiyYdvmr&4
zMPew2T;6}nDAV8isq?3Q{`i4=Uji}3t??CwND7((dDF5E<AP@rBUkvi4$3;XB8%58
zufbW>og6=9oX!A*NX@57(WrC**Q$a@TjLHW%h}LfVTEL7B{P|k$*1b08ki+9vCk&*
zwhuWhp-F<!7vw6kgrll)YKSRX&&N)M9C}Ixhhk@Uw4t+BtPZ=ANTRe`wH61`8P`hD
zb^c_d+k6%C8*PoTnvH$%<7F$akREm){d%ZD$0S2tL5f84M>yO6jTAIH_K!rmvwr=8
zs&bv$M<*6k*SwXpPDTS+8;%3O-Ft~q&~;)yS#>r;1P5&6lV-U5{|dGlZQTDK84Ar_
z0u&8p98R|DHh8vYgt7=5)vsvM*-n|PWNgqaL~Bw7VQ9$;d?7$pt{S<{PEl+N)0|JA
zE31eG{-3jWiZHP~l0k#%FW6gnO|%SrPo4m<*q*^SQ2c->-cS!<ac5OEhmLi7pFXq|
zENSmR+Gb!)<@$9{b#jb7*dJ`9GP^o$in75D0&fAXyWhfA#KT!c0{$zaLC&S7IIAB_
z73gVd9MP6hezB3JZKLv=8EOT(x12(_amdol-pi&n;mq*HM8S%kbT?1>bt;~F7T?-L
z)t6KLYuCg4@Q~u;s6O$?SU}ZybgbffI<bCr(^vL?V1pNQm%}ES#XyWXY+MR}Sg9X^
zme$SEN1yNByn%#L^udwTj*a3Q!1DGVqq?_*bK}nAKg*e0unsK6h8(H+=IpY4MXz%R
z?|<hYwrAK(FR`>y-b3Av`Z`9^cD!U#X7&YoE<ELP^`@YZNj&Qdd0xLV8wLsQWaZ5z
zYQVuxP<Cs$zju*dHAxeWtC<YC2_U~gZqF&|kHGza|9UXyS9hMX7Y4A`_Fi#bwvYue
zkVYR9@T!?S@lvhpon&p5=#a@hj)Rp!32#U)6jxlgMp~@vR8slzVuuv^6h~-cD-bsk
zvjH*IM}d;4@;7ppR47;*-@+b#x9rv_J4$3}mrY&&Ih&A|;cwKuE@Rs<xw<%6?6EgT
zC4fD(6sQ=K2U+>EnHJsP-pEtNCb>opFTBce+`R#i-yWdC0~pPMRQDN|!uj3s>Efb0
ztoH;wRX?AbKgyJtI+tG5X+Rijq1725BUn4Sy9Ll;)x^Y4k0VDg%WyOU{vV@=6hff)
z7eJWhSMnEszBj|-(b!0T0Pdba7lGWlZzuMq8nzzv(f_EuR~PoPcLvCcSw$8kU%)=<
zWHPt#xg>{U-N4BGrpwelWSGDnF3yNmSX&cja54qXb6A|)f0xN*P@~Q{QV94OIg%r-
z)Du}-KnS0R_*oCWZ?64ANO2g`&bykg^2oqh;$?vvoCyZNPGeugpT~;%Taq6)>|jVv
zXo=ai)$?jKBtPx`?Z;<&U#ix3)}`=cwP)r%ec&7QQU9xa-BNA<V$t_TLY!PAYLr&^
zqLLe$-sGz+R--Ix*Li8LK)dRrZL74d!X@tdHQ+$A>4p%n-jNZWPHU2%&yAZ5dqJY|
z0diXPzd(|Q=$`-#?XGk879K7duWR^UA_Q57N+2JnCYtl;lMePw3xK@%xJ<;ps4d@2
zW#J<A9w|s3(z7ILEL<)m4(2MV2_2jzqNXQ;`N8Utb80t;k*FlgZ_bmxbihx1=%JGb
zQ0ICB$wU>!O)|*4Kd818QRx|`?jE5PIka2S4vvf4*bOLiChQ%v>8rgs`I+GBM#t{g
zVe6U2eSW>@tp6Hk<|&l-bz;U{{qR7IX96Am!^8zWJ3(@dltxI<ID1HmO9*N-*9J?h
z8`}i*uC=AR*-hGbtkQ;8SGz`#Yh-{P3fnnU2BSM$Evqtjkk<IErE2FqptFi>t+}-E
zb0&F)GmukMfk4$SrvClqYp}Xhq)bc3t}2@axvN`gfZyP2NIE+)8|%V6G<XNhVHgf&
zg9Q1j`1LogAh@V8bF(6Ap1CF|lGcn=R+}OXa&md1{1GIGxko+U-{s<Qk{uvP&^n@5
zkBWbJwYaeC6<r~1H|o5Dn|z&Y=<G79(Yh`;Izh!Anj61svI2iwcShzL|9+hck8JY_
z(+L)U<?K;cvCiH!g2=DArsX>TzsMGx)4I8($GajKKmkbwyYOa1kS~w>8wgu*{^Ohp
z7Lx=_@eRO`w6E9e5Ecxn`bez0Z`UyO59&%cWqc7HepWo|iO824x*7Mp@bxGJRH#R|
z6QVo~IM3pXNngeicU@lxMHq~wZ4_y6v5MMHTsx41xyMrx=3xUI_5JVU7=3k*uuwF0
zMk)&q0E5Oc49k~PXCh_I{8%=%InbY?nLVpM9E@5nEVhya2iqtRafYv$<|6f;>N<Q`
z8_}8JDkJN}f1Cj$FBik)i9i9H+-x5zTu6nMey<JlcR5&q3i6_~OS)L}3N*lfgo|US
zb*sk%H@S0-`4_U?*-C9*L9&3Cz2eU4r9rs?RPVFURUvQp*_FvDYb;72ut8eDoZ3F~
zIjFVGmaHu^`4_{*D$#ZS^#?tZl&y)5P8L#iOFG7WaC~g*07$wAq>2{iCbdLIcPFpp
z;f=Ber6DZV8Y+#sJ-i>dO$a!5C~Ci{#34vBW?HJyl2PJ>B4}BhYv&6fJcmts*jQJE
zk6r&_*H>Gb6&f0x!pz+J{e#4|C{eD}FqQIfRTPn=&bp^_-R<J)Snk&paZn&{s6wOF
z<z3fxqF|R-<H&`sIA96poB9gjaVd!30O;C2<=LG)1FFEpM4#uHVABf7-h-@L-Xw^f
z)*k2Q;B)|2UVj)9G*-F1xcZz`eq{cJTTn6mUl~uxkpHN!En_z*Xo~?QX;IE6(w<or
zF!6lL$b;O2jyUGfm|a0JOVpd;CAlx@967S2m+}0K0LQv!g@raa16T@((<jU`{WdUW
zdmNev1$ElbMY*sHLF$}|W0RmJb9Czd-pEDhcVIZo(mf38hWduEqT&IJXt!D{aAUN9
z5a*`L<r-$~eRJb56tegkFZ_yy22_To==dTE8+>=qK;XGMXl?(FnASjMz_)YvHJ{Lc
zF7Fun+V2FAGY}8}0l0zHIUMO?O8f6Uj6k#PB;(z=Ca!e8H_DU{YD#tozlM3^Y*`QM
z(&}%%V=z6&?ye>8(Qu9Cn`LeUh9%UUl+J2HGXKYG?;{mPX9lWIyS_tFd;~t0Uw*3L
zUX8%-Yid$!{eFj@aBH%t57ezh`=`;g$QN%ENK+z0z*L|9RXIKxCjC;(MOIRsV|}IM
zrRxAY;MOl>+4+^&sIGsvd^HN*7;GZH)q}ZkU<($Fl_EG~-u?<NVsVf8mrS1l`yco4
z#>J31Vza$$3MqT1Xs<DmJt(9C9FWlokBWPGNCi1kQSjz!Pg8amZ`FQy)nCB7PlUoP
z&k<{qas6JOI%VGG)Y8#FC1I-X{Y_KM#$8zYs!+P4ZueKlJVWyHP**lf3j-+whoM)i
z#bjJo_GU67jB?N6MMs1ub#XX9DrQB94RI;`q8Y3peDhF*C9W@9PgsIh_pb}yx~1jy
zhx>ev5y9D43qju$+ii|O*`{v0{+c`2TCoYUK;T)M=mM2B`bu`kPHC?Tc<eT5=+%;J
z4|zty`<GEdlPr;AFEv*4tPj|4rM#EY8Z%bfE=+!d&ZNhn#&W!AqTDFc|0mv>CPB~0
zxs-?bw^2{y#n%i!!Acc68)H=aV1CU5tOpabcn7j8_R5ME?_aX4vg*|H8|e*TTkPQ;
zRQq2Qh9X>DgGt)2Pt4#q_#Oj8b%IHmsV24m*1jvF{l2{~fCIK{-$C1UE2f%fdW9+j
zv5{v2AdozkHnE;_e*!Y7Rs)*=Cvz^Z#Rkq}qlIFYn>WoB=hgVs`0JN{ij#8G@y*)#
zRhy)vGdvZh@}thh`8h%|PK%!-w21(kTGZTr{xOtmY`HGllD|+3dSW~$*&pitd4}1q
z#uU4q!bIt#_yx$fashzihN~n4DU%qydU=1&K8OM33&ld33rrYlLUYX%NNp;?<41Sj
z@x%r?%IF%cf0-{hPHe(r^Ebdu9K-%kFD@_}ZHxecdEFl15zoTME&%17BLzB|TE7WZ
z`b&lWaZbkO(%Vguyxa9%T7YqL^)WlB{YS0Bp(A&PXPj7j1jaz~<YDjjIP%u!+Ym~M
z@go(5*=@0J!)e(-4h*t#Oh}gmY+%OZ;Snp9HnXGOn04s!(!wruxVf=Pa?7m>7MyHO
zH=<g;GG|U-vy@eztcMQb9XflN#+Iym=1pecNYE!Z<43X?8o=ZAF+P6f11=FTvh60D
zJVi*jkf~qWOW0GBo(Fn0)|NQ0e{~rG24gw`V5HC0inxfNV~iOa6T>^V(V81g>{2Fb
zt0<m~j1Ah2!mu^99`ZyAtNnV;TsbSWi;eAQwC^!W|EPxSlNCT(!|+t_av2OFcdB`K
zy;rD+h_TXKr|2FuO<H?~r62{hLVueixJog|&PIZ<PcmScaJ-E!HO<xwuq?oUz<7qO
zmEHFC!OdBwF$8fWKC?R6`l2Vy!%x=7Wr}0cPEruSiO9NDTC>B<K)h7DQ-rv1n0vr0
zrs4j5UK-;!q52v6^x2*3FBF;Waf@V7(lrEr-5+azVBAdtKSV`rN`A}GXt&=_Hw>tL
zC&4ZThU15#JRIz5RZc*GSZCS8y7(%BQIA#n$E$P&c>!9WErt<jS&k#_NQq2LQf@bP
z6}&k#xO~l1D+RWGIzUP!seKymwE9Y%=c3wU4P6SYfo!3!+%lzT$3g6^xTV=>S9bw;
zj`%fCE}kIymV>6sb?jgC%oZLiad(`OD2-$FF&X(LQSHHuOzYXccIP-_LjL*dEJBHN
zP`PBk$e`ca*tkZWu`iP7>zfrj+ZXIzWyzp5m;IyC`s~&$)taxB1b`-an^<gi^ZKUL
zAN!|K^#5eDqRB0ML^X#LT%kp`>qTms*@FNZv67Jm)l2Nw1m~72(8TCwxqj$KARC5d
zodmGK6QS-YupZDDwj_&bK;Az8-i=bTUd#G;t@<%Lsxu;qdU?4R&*{g5GB_^&5yPLg
zweIHJ8^paM3hy|OXgKywm3w>dl*5)|xu9^ANdXiaf;p3~BkA@V3|p!4$$!T!;lc`A
z55KcFUOEsMuCNmAE!N7SFX^OKM>ll}zG^o1VwQ2o(fJ9wJX7?E@;OrST{AdxAN%!>
z0qt@Y8S;ehZ&kU--o+QxMHxA?1qG{k@T|S)M0C+A7*}o&OQ}3?-e-N+NHW#_v3z+g
zfg!LdR*H3gz7J1U4)0!eYYm5hu<2NtnF+-HIUUqyUO8#3fz>fILvn!}{E<RF%bjPa
zwqbrU^Nm*q{~drso*cp=E@Rt#l%}WUW(U364~%1=3%>H@CUSO<{2GvF=?UD`D5@pl
zcjdXXAnEWAA<-;ZStyn;{BOj#6xPT_O-k9TVPWWO3p1=G6tAoz+5e|pXmwn#bcD@z
zV<(j-X|qwMe@|@V$3;1Un}5o)bI?nsr;RBdku~`0lM`iZ1%4>BVCx*egLR7w+kWA9
z5G<mAw{)Qf7qxjdD8=on*`gRmTKr~vLC1L!kK)RCIv#+!q;z7wDN=R28ygg7J(m;j
zu1vrKZ8i>oVW4_{uMG#Eu<d^|tFi}(sVl5SId5$1SWJ;vu$z^^1TxR;Q1_2k*@G?d
zk_bmeyoY33{?7tLFnJlm`}c|cPmww%6(6}Xfw&3z)-{i)TKFb3@R_4aWNVQNsBj<U
zrmDs91VA?9|5Ip{B(1IMT@5F(fCQ;$v19^t-6u`Q1Q|Od;<hklz&(@!gisDO!f0-;
zP(#Wr)=0y=6G7s9m&yq8(h>wekdB=A{Q?NvOMA9>2G^{0wXxy0e)++GMApB~!~A|X
zpo2^5Y!p#YZ50>j^1(fms#2x)_!_@Y4JWO6fEC>b+%IyQfB)Y<uH)efb5g(9&!b|=
zA8hJ^peU<M-1=D&D7ON;o&x}NXxOwe-=P4PEkOB$DEm!`X6`yE50AGPiQfadUv;^!
z{Fy|;UJ#frn8QCnS1Hc#&ISjj5d#luVQNiVUkEP{0(&HN;$`Mq4TTH9$~=B+);^Pv
zsV-7Y$jnRPgW_A|iUt<CDASq=%pDdpy>UeEc_j8lvf?QUj$Wm}f|R=~clK!>sfy^T
zLKt2vT&cgf=Fq)agv74!Lt88<L_1nYL8WOwPMd&l709y9ExdQqp7jov%o6##T^4j{
zOga+YPD+RQKij>I`I`@MoZ2w!YL&B9o>nWBy^?EyYXlLn4Wk+@Hpd4M6_20PXs0N8
zs<LNSpX{gyzZY}_4F%@a{SmqKFeE|6mIp~P!M#b)n?qOhLWN7TF(W8_g#N7ONy?Iz
z_*>(uE>|}Cn<D+MRdES1mHnbgRng^_qBp3Kqu#-yGl1B`q?)$oJoQv?m&`IoY>$vj
z4R&ZHVt&#6FTCcgx@y^a&T>KPY=O}$jf=l7E#_O}S0Bz*Cb2cpyqxoJOIEc{BuIDr
z6w1SRC#Z`srNrB(-?wytwYR}S8l}Uc@@<%()QN#!lh7#%a=Gv7N^I-*roL&r72Y&>
z-v$1F@4Mtv0P)3yOd!tq>avCW`12T%W{!<3xeVCcTai;$S#8*fnBG4K4a;aeP<IEw
zpjT;%Ll8TVS125&@)C$4tl`_H#C<f^{Y_n@D?2bjGa&NxFbN#cz?>=KX!cJoCtJe2
z8UTz*ndhqo4h+uwgG9|x*J#pOvglw<fo^?68v@m+Lc3{m8{AotmuH7Dz=7}!J;~yi
ziJ-bvWw92QkU^Kj{6byQWL<(Ew9z8pOxJOw24B%Se~fZx)zF))V}x<RB<(IMjm!=V
z>E{TP%-TvX<fg#%^@@6O88@F0=oR{KZ;5bM?7yT{OxoYCf>`~&_*i{N@|exNTloR~
zfwukAT1A~>FuhM|Xdi^y@xUq(gx@FFkCc8HYjOLG6H(4i8@$+uiqTc*p)@;LqbLZa
zg|LCaM|UYbn;PQT1Q#sx87=d=mEpc?{LA#RKN&fl%yf$}c;yY;w&H}O56lM)<Dv9r
zPT=AGp`T=^f||F|-Ji3~x+TwZaA%^)3C*E=8&L!2x1?W`o*4w?!%fN<P3Vn%-%KxQ
zl0h3F(<*dkNR$xd536kaD#8WRl|muI^s@JL^;-r$wqS*!(@YvshKj^vVBR6;Jf%B5
zXx<xtmqH7leDWO&7hXkow4Xe&4)QuAz&Yk#Bqik_f)8;>CX={g*`pigoA!z!3-+Lk
z@@qNH>9{5lxyJjL)LS$@j}QnnLpAf{8UBkn{5u<f=U`TY!}?GT_>rK<8~cAd;r>nJ
zQRD!f4w2>X9^Q75mL<oo!Y3l%jt_VfV})>Tf0Zi<5>lg?C0{WoEqruV;)?Vv#POFG
zA6<d?ufJNyP8&`r`IqXC<U=k)KM_?ja7Oar5J#ZbKFKQCpg@1Pvel{}KYjAeB7Rod
znG}(8DT@`e11-m&kAtR8-SJK<<ouB08aw0;grpmDTB@aiw~W|=3POp5>=t6^klcmC
zI}15ICoJAie2H3&2zQ!_6?XOR7?A5;pmbXW069R$zuPM*?DD^j*of<Z2E5h>R>rJZ
zD2Vdh$*t&x_`z4uyye;RNL9D5%^WI;9sI@NjS@x98#%NVz{cu_ySO#p`YWvX*}H?b
zKV$##C*$b<tx7>!b=}sPLQu!fteHq;v1q&#ff|kMm8ECyy3wAka7vIWfuZ9vn79^V
zHE6PB$S<U5>8P*cP@HR0(FR7)wE4?2sbReo%~MCTJ}8-RyJ#}zRg<W=KZA0OBT898
z&5z*m>-=q6@b>EwKUTfMzTt>EQ;1pT^r=*42dzluD=($;4d3~s7UYR&z8@*WYTYo*
z9_GC*>x%_khRa+niW_f)p71rtj7wenWalLlLx2QRZnM9XKYtkS(~h}Zm2|Miawxjg
zQO^5Y6j|uLmvCbmWqWfEHx?uC95ydoZ4fvQKe>L`>c)0k;ZLO>4Bf?==g@ol|K{-s
ztkuh<#OK+L-;`;{c;$!fKM=1TjzG&Zr>@s=t=Q~QRD8Wv;7d<7cIFfIcU+?3CoV#-
z1a|u7VCsw2@tXV0S_7<~I7E{_pWqr3*`Znr8}$7kUp*&kGt&KjXql-H!x*cvEMLtv
zMA`<8u}vm2q~za1M)>wg?;KP|vfh_n`*<w~$l=64Uyjf?Rcasq_pIsdkt}*G_aCHl
zKB>4tL?a)JaRD-32=(zjpFzD0$bew(H!Vqw$VX5T7ebe@4K6FSl(&WHTyB1G29cur
ziz5ri9KGvQ>V4$R06sj^>FI?@g^p71`iVUsOSL#Av5soSlG9F*SFUBOym4k*6%NGy
zt^@K=Z9B)2+;YN;ov(a!c7(Q47ICi$Gy`X=@Q>l|66CMWUFJ{HV(|m$=c4{W1zT*>
zNF2_3zo4K}Dc`8+L4ykk^_VSJX-)gV1cwG7EpIj(RgEu2InUYdAp1dj{uuP=Gh)pE
z49J25lx^_%@Oe%JN5o-Q2Rl@tQI2-+@wAsHj-4$IxT_F+Mws->B>7lO$zlUqZvGnN
z=I7WLXtVrX^$h^*u_zP(5LjeI&}=Awdv$4EtxiF0GmL~xOYm-EBdX<_o%)jwF#IxV
z!$*sCYR)y7S_zv6Czy!!aVwrQwY9j9-Lz8CGwaQ)iF$0w1`~$4_xq>+^4vZueT?2}
zN`5&%XU8<AF4oINzY)#{0e3WW;UGnDO+4Wsw|4x{5{7MN?-1|1QlG<vwpHM9SqC6S
z6K!-DP@Y!X<aEmPcxvcJDLwvDMup+oxn76>EG-vqu!P7bJt#om#<s@PS5>ESGybW@
zrPP08+XGq%y|N$b&e@t#?b+%=Z_fO97|$LgGCz}8OS!skQ`=|9=Zu^HCSd4iWt^9#
z*p784Vr@1Lvu%fe36MWx)EFW@w(7-Wf<8w9T`MksOte}+L!O6e9ufQ5dqPL5$m!mK
zcZ1crpRymQ1ULcK1Lugz%rElX+9e|)T@jwws{<SMSY!EV<S5lvFV@A|$Ex=ll@fQ%
zO6$x~do}%LRsosA)?LrwWcp!C=3o=7;~IZNv=3Hw#YC|wC7b?TDY^+n;km1S2ZbGN
zezk|3#*e2s2h1u7Ip{<qzZZY1R-6Xx+X)jF6cV6f&;_^I!4C001Ab>R8n_pIar5>Q
z?H@y_-!$J>v8z8OG#|5;)3=%i4xboF8v`+{IQ&yqCN6z=iz&pdtZD&TLwBLyC|~=c
z^RZeH=pMx!|9#?HrB;c=t`!gw%tv^ovaVxseZ*VDK+9Vtl<CkSgwhtS>z>PjbzP6(
zg2$3;?8$)EUd^fQuG@yX!z?D?8Ik~h(iBr?Qo250BZsE!jJhYH;t<GD7X~64VdMF{
zuOxXl$fSEr%Mf>wvE1t-ey2O8n~!Mda8pc$M=;2t#tf{^c=s2BWF&6FL^m+Wp4kkA
zWS*BjMU0!*9Z_L`th*2oPN%_sJY9eoIb>X)e=>KdV=K>y{h+Xt!~kW`lhVXk_v_p)
zyo2mqzy%K#QqU0$Tp~M_erD=7qgv;qj?>^#+?w+|1HgE+*8lgHOC9~J>hM*7es{g3
z?vpEIIwsa5s4;9*17M&4hi^&-vtR(GFJPY^>U+H6H)ae2xmey$Nzk|hMV8$GoT;fA
z|Mn7=LdCxGlXU;%&3L58Pdlhl(@gU)dJ872wlc^-?Pq&DZ0`G9Lhp>H^c)Xn2jzM(
z<(G%n0((+7jci9D62jYLYW#$kc6vQx%9(nW0y9;w36FQyfM+~j_8RyFEct$E5&I|b
zzpggsQ3EjRM~Q_MIc0ou!d?6Lc}fNT1$0GSs^jeYjf4P#J_$sstFuiknInZ!$|Uzf
z-l}vmXdI)s(&huSR<|&YI$t^KFr7~o*O~z@i3MCY@0!yX(|nT>OY!Q;doDu5ayBHP
zp7)&H6Z}2e(Lff8>7(Hx6k7hTr)L5~Au5;4(B!AfTOMbZU_FZ!8Cdo2ec~SO7}l8^
z*T11m^?-A)(`6(ivDFJRG2fTEE&H=6bd)Nu2`<P9dc_w|x(qJYA+NW(Jq$8$SriNu
zdcveQeMWKKyZ;I}vK+BxAJ9~=9iJ(<;1xK38XaF85&MWrONF>%DT#oYSfQ2b)T%{N
zN&1gk)s*`6HL9H$g+Woct)5b5vyHsq#pE`<&kAUgD;J4z+hhNW9Qv!_@91ngH~KAk
z%Tw*`<%fDG&YoJbm1#R(*&e3am0Jup%oL0Wc@}Ta#qh1KffL!qM_1D}njMmXgE8EN
z9+Rfh&A3w#Nb4x@f^;u#N4Pob_jD^P7Piq@TV@CW08Z2m&)wDq*XasS?1u%G+J#Id
z#g;}*%VX&L$NSAjMmk-=mw4nWHz3cc6BUEfqzg6|xcB6~dmzA!r{(YW512!*7UpU1
zc8FDK%>qETU%>g)=6Qqj-fw`QYpau@kH!n@sOZvK0Ijq2z6qJ?V;n1xg;`62W^KSZ
z0N)_jZ$duv<l!eM^_s#5-n4-y`)UW!oKCW-LC^~+E*X$%u$IsXJ<*x$)5A<7jBy~S
zZ+sVzrdv2?9dN5}vz-<Wn^F-~2r5hC4>0V!PZ9!e6_kEz%DOd_gZ$Rd<DRTs6HhmY
zG?%f(%I9yp>20qn%p%XHN4L0dsBxkM#LiBY#0qNA^%>_DLTnE6A8Lp;aq|1D>(RMo
zTGt043&YGL(|EwMAA`;I5KD)Oya|oTLrUw%SaTvM$7-@-Y&5?2?1@LfiPBwY@v^y*
zV_|jBrz@Ca2<xT&#0VKY*|_<vf1TP&ZjNy$lpR6Mn-;cIoW*VQ*z%4bc|n^;Om0{`
zzH^!0P!H5I2W6!doz*+8{SnpJ?j1@fvO~}t$Fz|Ek~2km3`%Ellotx89-gE0sg*lk
z418Q4Cf4~i^V+H2t8~H$(W_wr_sVXEHv$H)fKLHP=>WUjYnLQGw-x;!O!af#Mj3V1
zX~(XwNJ4XsJQAy5O9ZM3D?UE&Z*T#04>jgEPDgh${O%G*f>>=#k4J-etqBg@Sh~+E
z;bz4}On(D2?o8;r784lA9+G|;1BDwNO5jNW+>-EDCYz#@{g)<kQazow=TJZG?Vmt2
zWVisFcaN<g-GC<`?@zXKg2a_XKLGin(0{RjHKcp(!#j@l=`I4nyp{rVyv*T}sDY?a
z_3Z0TNmt)GUYhT~qMB*c1jF4t?l|6%ugZt%U~$j^3Eh;41lSLY9+ec9yx6FREqJXR
z<&BHg%eP;R;hj>lY+o_PdpCb59)_z^craHYsZyR%_w*_QTXSbJuMV=sR48i~42&`T
z$^$R<BeyUChtgbP34cSMPw2Gil^~=NW0QpK^|lA@I3Ib@hi9J81EE&8;y01V)_~95
ziT@6*-D;2{k~4v7kDt(4ITGBw!AbR?^j7@P6Ih2gMa==z{hD6`LFy>kIkp1pLWOzF
z{;s<cKps+^0iPn9Xx|QfhzL&Gyy<$EWJH5gE8vMT2LB=V&<RPer5MaMp=}xoobWUQ
zIwhewPr_@C{L8=0h6*(nDTWkn>&(^^+~iIplw%o)inICfGg`Yraj%AS1F|{bg2A{^
z0xWS{j1*@#^889RBOR50)MV)8`}deB$!GHv{wlVn4+XvXY7XM=RRx8GGfkrZ{aoVT
z5>e%{<ywR52rA(6BomWK|F0Y~Th?{1uI@{#3t@j4N(aLr*Ro&&8)v)EfcY;98SCg7
zGDEM@LJB`Y0Z?8>z6#AX8fG%~Ko3rSgd11bpa-w*5E`Oxl(ZW~-U!yXR=EE>tr)8N
zkXsf!)66?tQJKDAjcS-00+W+{;pga%uGBR;No@7$@cN>Kgt$9r`_kn7sEuhPq+MtT
zVjOn{CNLLf35py)S9^#EH7zRhql1JVbMPk0sSvxnpXSBvX=@~`NP9jQXp9iEq3+oG
zGQR#~tRQT`3t^>;eF15Q5S=#XHAcKyLgJDa@K~(8C8l*S3N9<U@xaJ*RLP~mvem8W
z*Fi9`*2Ss~+wT~`xan^_f0PWo<SB>sais%ZbCy|K+gRyxE{<Vi{&!O5^1#ptnE__@
zMyNyq?QDY?^S(QQM~2q73@N!c?{xO_WIHxTX%*Pe84G*BShv_**fNz|9Ih*0FAP;B
zU7M5BYY)tq*10jNy;vbr*9O{lP29ogYYak1iW>aiksCRh3f#34>(F;>NX#`{quz;!
zz()2GodptE`bc!sK~%@NB!x)_u+ouoW;zIv$^1(;iVYTfbDZlg#Stm03IcuQ??9@G
z+p+r<mEK+nkdey1uYk)4S*qW*IVnIKfq3KzdnA<yc9y`ButNq`Ir{w~mhi`?(xZB^
zYRm+UP7V%~@`>d}SK`Fyg$fR8V-qWH)nTB)v&#ELt_ZQb&JddQ(ATY=tz2cyn0xW%
zpe38y+4t6r5H$YbeqMZHnLYa#yz}^1qvpx;ggxTO@Sn}t?x5w|cp&nR3CxDI{x-4_
z+%mee9%F8Fp5lxvzUlVOb>vumkUc^D0Bc+)HVI03llJFQ%V%<rXgR>~W}2im+PWrD
zFoFs7+`1SMKq(wQJW&dAfO&~q@&2P(fZ{Wvo>1a}1u?e+aa`G8RDP%1j`(PymTCbg
z`JyK9tu%iJO~Z><p!M3tQxYgD-q)pccL-0$4mf|S=ySu1i=i$H<3?BUEuW957Z*KH
zsyOO1a{LT;4s59x^#RJQs%>HFn~wfnMu40eI#a+rEWxzaE(c0T*6B^tN;g`@luTY1
z1)50=V^$0|b|;`?%F3Nxp-Kg=djLH=4e}CM$&eWEkR<+fP~d`DvY7bUYc7G3Xt><!
zC*rJtf(X84dY@cL6s}dVP_p0wt<fn&0yv}y+bFMJaykjO(1XAhcaX*jrSsa9HSM>*
z><iR!SP;fbe=D&5dF@dyJBiE`sMNlp)(Rsc&<5}}w{6nZ2ZSX{?mA6jjlo)pE(1eb
zLq`(4ty;YjN9%kAnw)#&0YIp7twspA%xNphcj%6Rz*gKH2f-X<p|+XpgNGrJ_$_`V
zAtnDfr%B(K5c6U=0r@vd*`jDiH=zsm8onR2xJTZ?@sDHUaY4#W*IAYg!ESUvk<I<_
zm@B4%-euRBihYg|{X5P)IF0d+3ncZn20(|%?9&D|n7&-}>OAh8XD?yu%3Xt(C%NEY
zBq>prjz;Y*X0b4oqKzQ#3b6<_e1GHh=B$hdHSC<NKGU1+dcxxj%ZkPk`ust{{Bvxs
zx%djF_0ZOkMV!%I_}!xYEfdLt9=%$6I~qGIF7<4J(64m+WcGh$ELvMxOLjd!w}uoj
zuhqG~<=h}XQ8bW%{{PrS7cZfWq!&&6EcUFRWc~pcB*ygY1i?(x&oh3?q~`~-wD=>1
zT)ECq^>)VJ8>E1*msw#Lc{zT@)`~c?Xpr?9Hjs9525qiZ8%+~s>*ymJ*v#Bd1VSh=
z=hs*T^0d;BhX3#U7*R`a$n(ghqkt#hvkyr%5Af*(EYYKh0j**FGY4+pf442-U#1~M
z^NtBQ55(=A)5+FTI1dlx<eNoz-)%%e6G=4yr|Gc%cQB?=n(>>w?@QwVMz<+n(6(`B
zUcLe+39#9UDj|Ou|D1B_x6A(tU$-kWt6*N;vv?!sr;)0BAC3I0ax7oWs;L*V)$}<f
zE*YMxm_fIkeJ3_DUR-$)XN6?!J(~u*_;3XFJ5zy~v7{UxA(>SUf_2x|dF2?ubvi!T
z@@1~wM4T70pv}MuBXhtK_Rr0P??y*`)Cn36ZqghljbJ|e<Z27|e!i&zWWK+vnke2B
zQ`E1eSR?mdtmWpg5hA%3gE;KH4EFq@&-TbFv?~PoCEzeOlq+%jw3n#9K%ilJs(+$+
zGv+g)PDruGs`YD$Q5*NSAqp^7Kt3$}!G4#6)K`c=+8+{DazRO|N~p?&GKWK9;1#Li
zF%C~h?)7&bm4Er3fntchoHLzK>*vW@(<S~P`$~;v#iTguR9V7QDds7b%{^telN-Qq
zX|d*ultePUY9^k&fFQBxSM1dnG#j1fWB~UuO-3pC=eKVH^JB1uKFK}R*+P+w!6!zk
zTaXsF)!szBtUg^Og*zIk#vbp__xi4^g7ypj)xh(R?;`bnO~;^rX8vBop(H|FEC^Ap
zKd$OPhWnEY<G9x}OoNpKH|{rHA;PGj_;QcMdtO;c;kcC&nMmc-oA4N$pM{i^U!RVu
zc73M7O6*fX%WdJ|p2f)u>y0YLe?Q99b@yr@n55Ivt`7nO=nKF>c()zDT}b1?{$4Fg
zu)PnwdM0Z}@)M~CESYcmWYG<>2bP0rCYY_FXHQ~k3e=&Z(L%q-3pI4B;u#1t$~UN!
z(nVQX&Y|mBod+7T$BuS=myC}(-y@z3=GLLdr=>DHcB_Lr=Q|)#qC8bj8=@1}MrKE}
zy7G<0qLFc=oUKLSt3GN3fYYyqt^3Jy!uV60E>meYMTRMs0?(<a37h+e&HN<FUGv8(
zvnYNa>7woEghM0CuNc8m0nXs<sZ}*=9LiX*vXhC+&)E)!-PyG;t&@N|(+!^gJU4;o
zLFzSmHRpk%y}=+Gb>vgdULrH~j5EJ9&)PgDt1d5fymV1HujYq8`kd==krL$pgjy!>
z)BcKK)CY^6ntcWcJ$k6AoZWgS2{ILjuw#7w;l-*b-jOs^LU-6WJby;Ojtd9+des*F
z9*13V(B<83vez8hmOQ-yOKt+KsTF<BB(;|u<vQSHf8nW;k4%p}j?F|(dh7(8HQ_iS
zPtnMe$p_#Z);PZ==K!Q9hY(iT0R=I(mHQhKSAsoMD58M~fUC>Mn1M8?hw@ESvFe(m
zw7@v5FNT+Jc{z|x2mSRlxW{v4AtbHJ<cW6QF8Yg)xMI)*IoTcM_U;rY#Xf*YWI2UJ
z0Tf>Al$$*XpMcu~kP7$wG6#iUe*^}0BSIGGWK9o>)mU%_>?{^u{I+0%oN;{nVIovo
z{u|=i<PW2P5CQXtQfral)~~RI2C{zS&6IWfVMv^4Ip3WuFS9?T!_fm37^f!RUv(R!
zNv+POmARnfdPpiL>L@WarA9(%eL5CIMTdE`jEnL<7hs)v0(vJrqN*$X<CE!Hxn#uA
zS${A*hi;5pi*CAUEtNMiljEE5S<rfzFg}yS2+>P=SaR^O8B(2g_@yuKHq@y3;jf^l
zW$ja@D?nLE6<(s%U;g{rYRfe}=s+ED0fYu<N<*Gt9tnW^d)(yQjScxVSDv}tEjP%}
zLZ?2&1jDnafsBxnZD<k9R<T;tHJxpWnn?VY6s*C3<0e;uy4n)r#~A4Rc<^*tdW52a
zSkfQ>B`YSGM}Ao`7u<E5jVCUjajA@WP0<1;fMeOiDja_&Q_mv7UwEuPFUwOg8F80v
zDWPvB(~z_#!pWaEZo=ZCn{7+(XGZ?LF|U{$du*=R*I0Q9R`G!NoyWJ{%f-bFr#_}?
zFPt2TBTjW3)?B&D1wFNe&i9PnS@O_wIg7(!svPd~4q|)7hXN!3j1*pFy3$oP&{<OE
zX|RA`*Rx2zxv_OM=_+Q-`VaDP>c)U3@=zFR3<R#O>jJC=S{vdDd=3BJ-#f+<r$yT8
zRvD`YU;QBPLCVzB2Ea6`ONYH=&(IG=$x|v1)7nq&oD{x#Y#x%B|LyXuGN;#5V)xiN
zxlLW%IIaJUs7Z!rhTf-<fP=seJ}DUEKyWy*iy(4fCMdDN$TJC}?C{Uka2~@%N-Wyd
z1JRYm@HAWS|EyJM0&3OTwJn&s?N(&9OhLhi?5<95*zLFY)h6Blvc)M-uXb~oMCMUQ
z<`U=Ho*h|?&(H&hX~&yY537T7xy{<&DKScFxF@Rm9{X3<cNu9KY>oI5Jg!e~%?};|
z6m*@A(r<&euD@OT4&J+9dL@Pn)R}GW_q}k2p$vlDz@EJMn&$Gb4sG5ZAfg(^D0JVR
z;}y706D=lB1umc&YXJQO&}+8~;u3J6xsyeqJ^;fb0o4s;>?NqCGve^tg{XkDJZ9_`
z=TO7<<S&B~?o@qmzY8p&yybWpOku3%QJ3#o4TD5~Ni3VM$bbmf>{d%lxu|udP)4l*
zYo5r^O^Vcf=fxS2;HdVve<6j-|AdHGayqma+r6YD2+a72Jz8E4MQ=1KTfF-qHX*u5
z(M(=3_1&E3(Jm}6H(t|x=gB-y-!p)B<UWm%uyx(>2Px*xda)$%Es?GMpDd4{<@2X2
zD+5Apb<!wOmhvFC^*7epdKnhXP9gX2_+)qW>Bk_uy$3vk)<I9fq|e;KS0iIXAa}(t
zY-PsZE&v(6^^NbQm~qovr+;=}LF1%l0zTGdGga0#h4^WKScnuBwoYEBKmJfrU8`S4
z!Pkt#{p&HKT6FeaS&=uGhZvf3NGxtvy@d5m9kSy@-m6kdf(g-@p|>m-HS0wpZ6}u6
zwdLO*EbJ>Q>>b0MSpMbZI~`Rjp8T;aLSggSaHnVORLHnSDybtSIi#9r@^tcdc_(%P
z*pk?E3wBo$0cPf5mSA-w)CjN#D6-QyIB`PsaOXvkND%K}x$0_EA8v1()Q=k=?(7y$
zHOK~;jF2++&QWUynt@#hmWNo1JQwLl@f|}@Fu66f%j*76l*V}5Zf#g?-})|=c0a;-
zz2C+7rJ}T`Yw}?olf$RRr1<9`7$R9gj7eha#Y4`Khv~a2gqaj|b-FD`hQiOJqB|y#
zGj%u0n^BU=8fm8~)Er{-!`;i(dIfLFQ>f9dUC*w(W@k*4SQ}ae-l3%uVr)E{`|oyF
zHE$2?>fUph)!$3>1AEbJ6eGFfe%;+caabw!CAM;|V((iXbR-`Ck8VJ=;X<qL$!YuU
z#Ha5)|M1ZDYvtgV{8)4ddz}T|qnHYoEU_dw326#a|F6SFK}-$|t^>$UWIe_uR5H#@
z+`AixH%qh-=f+t6sCvE4yM2)s>*bU&WThrf4c9nHhzp(vEk1l@Hi|H?BlmI`%r7Y4
zuf}Z*ZSm_?pqp<X0GRrWIrAn)<swlcPL%*9xZ^jY>JsomxZ0xuz&>=OH%=N{?g5c;
z!6{=Bo1bCOQG`0DE(%vEc4GA6{r^L1)DNbeZZ+1;f(o|%JoSFYmt~y%P7T*~u`Lx?
z+c%fEA|#xO9t(7w&M~35ZHiWsDoLarhu3;GeTsy8S7}z1mk?@sm_`bVB|IyPke@Kh
zbs9#>2VQW3<v=#0d_+5J9xmC9l{Yu0bM*jPq=Louto<D<&lFh245bA@md>*NpSO?j
zQk>`A6QON?7~tW^J(t1DMb@J2`&5fwLNVh*2w9W;cX|i*jWc!mu(n(TjPPr8)a(|U
z=?u3W`<y0RV6GW@xch3fUV~;tqe$drTM0x0dGa>|_MjK|Udme?Rum}s%@?lwH8TSQ
zN}5=naegkShj*DDS*uW*uZaQ3174Z-2OHNnr(h3%slhEW%VPkE22ltF)ju_d%AkRS
zwD4(u$4rhHUK)xZ#^Lym+1S`&VkU!ZHf+o__KyqtBx)*YGDzr2E-5c73vc}4U+w&w
z{0ljR7|APg{m~+hL#5q)tA&CcB){JVeDNJ8hrNq4%bT>}UFG4(Eq}9K1`5dDpV`PJ
zl-Ulyxi>f}Qoj07Li^>&IldPX|9oTI)uWZ;M+{%4y&6?{J}AnYDX`IgAa0CD=dQAo
zpRq2-8-jSA>9b!QdXv4nK_1OoZxjvx+AaKLgD)mtsRg7;pe2eYjtXe+?@)AJ1rEJW
zN7J`-aZV``g^j&PM>&*UzKe;=FLll+2BbLeu8o%gG|cYyv}l@cOyxFMNKD63=HbGj
zj;zAJBnL7YF(m?%*81_X`L8FA@-|VAGtCL{r5t`*XuT(4{BAxqmAW~<(S4Mco4w^3
zFG7g2)~%n9CG!&!y3hN=a+L4IjNpLI<~=Z^i=xz;hfi2E5Dv^m{g!&~&tV0-0i#a=
z2ZfP}>2LuYe2?EM{z#eaaLtV6H}DGT$og$lRcd3tRVPkWjG=&9Mi%uSo+(;!+b8Zq
zMnFQIhk2W|W187&lEwK77N2B7Ju|JSW%~@^)4!;VE2yNGsL-7l@BOJnLf+_Ujj??M
z&(p6cRZE>1!_V($)?4-5ATXdc{{M*!QpJJ{`N%<j_NJNsqy%FpY6R_wndvRp;fQ(y
zglb@O7T|jbGUQA5#iyG<M0d|`gsD05zqF^rM7C5+DG}|#7V>11@ria^J!PZ38jYn>
z>IvnM9vEM?a7dAxLpS>uJTyd6ayQv|&KSE<Vv~cAXlpjD$EC!y?7A@f?j}c~f3!jM
zX@UM%yCg-CY--R>8V+!PgNFSIwh16}@b7>;&+?)oXz)KEFv<0qU?EF?o?ENzwMkj-
zqpVWsR$-LKo+?0To_pJ!tcnrY?<JgZ_!HX+sdJF%z!p!^9oyl^P#C(Yi%yd2G~dp+
zjQ}&QqVcxDL(wL@PS>NpA`un^{Tdd@jGkL<4AN-d!#@aZxJXy*YikZz>S8e-_}c!c
zFqNM{l-0OP3DfO$x^r$~z-gKAb2<g8#_n<5Zen9k@wTyW1aYq2yYd$4f%?VbIp;Th
zJYHwVppQUDmMe%4_d+C$+}DO^93Y_6&4zTPzEops40{{o#1*qO^1|U**xh(QJ^!;L
z5(-Fp!<W?tP$jweEcMO<U8ChE908`&E^TP77L*rd39DLnFi4^jX>MHV*5XFtk}XxO
z=2Z_xeX3-{7|4B$$RL}+04MhRy1>Tc$;D6@PlfQHhPZY)C7~R3Cbh$M4gV0Lsq0v+
z`?ZN$*SH)t(%+bSV4Q5i6kq)X1C-!9xSl=!PRDd_nYoY#%u4AO%P7T?@w&rhSVjFv
z#z)b(c)|zQMQ%_GymR$_HvScqyO-3R%^XF`%w&v|eEzMgXH8yndjxV@#7-+7tBk1I
z8<bj%K+~xq$>7h_j+IV#ktvWtoKHVqtlkJ>vg0OQ&X)xu-o$q&N92-nSno>!$&~`X
zzrf`npCV*@@MXZXxJ3wfx*Zx6+kYj7WM2V}#X~8~bwUgZ(i_|QbFJv8h=v2IZM6nH
zw;)zXNa-rgtJ*nn3J?oHdnH*bsN}Le47}p#j6_K><tP$Fs4(fLfYRzDZ<-rPdO1P#
zkxC}zhHJvK;)*s2?4BK$3@G=sEj}WN^N31rSv?j>*nNCmMffCe1M3zuLIUySGi-s-
zU+wgO2sTF!;2VK+K|4_Q%9fJMRK{9;$Rp&QtR}Y1NaJa--s`^L_xgc2LbIQM?e$Ik
zuJ6zBD(`njZ+uT-^XL;46IqWZrovhQET+UTS(j|jLoJ!3%rW904y_6y-N83lFYNVb
z=20$U7R1pqP<~H2Vn_f5qvUo?pjkS*v-TuGt)WGSI?x^QzL6BN<h77Ja&N7dJbw1P
ztM-nkL5dn#j9%pu@OuQgIEJr57wE@nrM00INR%<~Y%<B+rBJyrUQs>gKRqZ8cCpsg
z^SJ}aDk)VimVi{#ja2Ke_ASGYw!RpXMPKxoD_k?HLktutx*vS_lV)#abS+tok}FIK
z{8J)rau&MBoiwN1QAqP&QEr7Ht$G14#7oGt*=5b2iq;QFMOE!%1937Kx5m`ukAjx5
zI&%0f&2k-0qs}QFLLDnnM?SaBE_{qH-d?<$F#I^&3LI9HT!{=Ed<%>%vm>ntHPQb1
zeldZnZ=fL2w7}Rk{Td_2L8MN^)??jT@RD&a`JAgW*x`NZybJQb{xrCbPW~;UVALTK
zub@-j>7Y`Tb^DL96ukmnONPCAE5ayR!k_6hpovtP3Ys?VK3;<`UB;MAEIP`hw;3@V
zuvVKWSwX04b)Z5e)*vn`MOnB-Kl+w@lakeY21bRrTr2nS+YUqv{;#qAE?S1nmdqsJ
zZk|CvGw+4t{Vny62TxNT6bGB=qw{f{3jAZn+>KSj`TOH0XQPk%VwQqx3$FERzYrWp
zC&QMIq4_I&;{A7JOaqD8C-J}Cz6FPjM3fvec{+U_rMHV`w0g=VTxFt;3{w}@Wi#HT
zpX$lS1BAsJJHYi5tiAyW(%N@^&Os)7ISvr6)?^>Y>*~s7seJ>F^*!kZ6##F@K6^_&
zn%qCK@JteyDhwh$E&=gN>*Dnx!ROP`=q6XS^=!+%Bfs(`*V4HR_6!97MbsBEv6Vnc
z;`sq#+?#8ryk4gaBwf1tB|Nt<EtvpG;|&_aU`ydT<5<9=xi}yZ{f#CDb|Vk~Oehz;
zfr5u9^-CPXo1SKb*~6}gwyTM$J04V1hgzeLo$-IypV=W>%DAv-G8h;c<M;W5Xqb5D
z{!>6T`cJxFZPFiYM<2^&#N6)@21qFH=E;WP_z{e6SOO^%t3la9Q$7w^<lK=+3&omt
zayi?+X-sBbm?w22@G2XeM$A7x`V_+SwYvw)o?TFz>>XRVarDbm3g%aP+<?|8!aVhk
zUTkIOm_2g48pg%+a9StP?RPB~T0uJxIQL(>uL{_fEmeP-;!YhGOB+gRj?%fr`T*AX
znY}E?+jaY!3^E+!KG)Tx6N5TDYu_@E0JV4yEY$seMU|oU*6bB66;aTRuG*x8+^ENv
z>1riTQB><hbN$Q;&d`Zbk5)dMFY&KN4`d3kef!&b<!hacGKZ&g4KLE@Q6~(vLRmOu
z`a)3cZl*B5jgrPD`W#^g-cj3MNUGeKuRG@Ojp8jvv6Fk96OqIpDh&kdXa2*0xv#;A
zi)P^Iwb>aEVyQu;6MV$}VAuuZFY(Q5YEdGZaMXfm4&UJ;i-dG_+jm7NHW%0VU?Ovi
zsBC&~xxjVE0)(q(AAMhyq`lCypP+nh4Ms)68?qY-$fQEdA3a<5Gipy!^*C!@W#he|
zT^;qs5eKwMG4!cW*O=!GkR^J1nz$n|`km&IgvZ6rQwEHyyeX*EAg=*|tFjs!EDN;b
z^%cn71G-H*b{+FzU(&Eh;hPDV1|!B%5gIs(KjgjD`Y^TztnpAbK8Pp*J82x<yL(e!
z_Dr8c@m1R4GRa_6s%*|Pf99&NAM))Ulb%#o^_s9CXODn|J?Nv?g0b-0niLu-x)Ks)
zec44uvTL2EyuAhO-3y;Bk4BR9p89fRSFSV5gc2{4RJl00(cJHq0QXogF|ZO*S0YBY
zQ`OQ!9~#efK?e6`EkI8pY`sM;CqhHkz4VZ;<b?{dO&70|#?JEM^FMqY+%ue^ftAD{
z{}D{q_YFf$;h0D8cGYl@vWpWXx$q4G7>2u)FC6O{m@xI0j=uSq?f5p&E(bJH-fm&x
z*S%9CRJcA0kVM*lWMuC7+$AN6uKqNmP(Ne6e0#XlqeT$s9TcZ!omrsYL+R4S9u&s3
zTW!!&cgFHxPf;C{*u6)CP}p8Vval#ruQ<9e=WNcv%A-L-d<og)>ziAp{LE=+u$aLW
zqaC8s6uX<jPnCXiT@-Mp(?|BUC7R`Z2Dmsqz=d_%%=~;Bhborcf1<mmPcwhZUdyp0
z2}Y$jYipPbuJfvF=`u(Z6xA6CWGQ*I0Jl=dT8*oa=Y;W>?_!sbIgk<L(#?BFZy@dR
zQPCz{hgtuw5j54{Qjvwx(<83)7VI|<MWaW<@@m?IwDEeVywKuXPHaSA`Qjq41tgdY
zJap<b)4*avM{-lo+v<@CrN95#oaj|1>0Gnzd;RhQnc0uiTGF$J!ROyY#lCLvMr~k?
zDj<{^r5N27;Z>j>-FD5UW>_dvXjdH2+I!SWQq$>%yQW@0%b54(q2IIu4N7huo53!_
z`snwls1o;Je&atu`J8lK;Yak2ya?8LLR;yETL5x7>KCQmmoxJJ{rm_dfwQl=8n!fK
zq+1fsJ(oyA31t7B>{Kl<I^V^<7Ic?^R7_LFkqJt<e%dSYY-Aul{Pu9A_P^0!Xg9^2
z{`>x__qLLh0iJ?hR%(P-BP2?vYqslu)c(@1BeD{T=6Ja!o)wS{sMof4PiGK5u7jjl
z=pDVE6|RY%0I+2POG5XN>vTi5mMF$w+gixkVe%fr-ixn1sHg5+n!kZIB80?PhfF9|
zhTECX!yWGwu7xv^Eg{{ccMKHC-}jfJNQP{HM6%f->x5d}Ox2Q;TSA@`hF^ATXeUYi
z^WbR>-)q<txqPY9n;$wYnFu;q?q6eaGbppCCsjGK?%U#Uva-M5dq0R$M<TJcFQ=aW
z8#*Nr*{qzu#WJf}hJ|tsxUo({UO(CmC@S(wRDic6XdVk&IT|I?c2BHv;lUsqz&aTk
z&Ri@#r`>C8*_-nSG)**grS_&L7}L=Kb<F8RUb3GmgD~pPIT-liN{l^9jm!(SHG_s3
z1qjY&@T0G{K9kB2CF}i=s_oM`4zPfp(_tR^pI6%1&OJYP4-<1pyAdD1fP!n=ZD`n<
zc`YWjVRN|s3DfBPG&2g(=3L9;#I>P#56Nn{NBkeER3CdZ1Y(lZ!d=c?BdI(Z@D&7L
zt!TsOE(klurr{LgpXEL`K9jREXwDlCnlcv~la2HRqbFh0p@Sql!|2R0JpGu6+QMuU
zK%<cF*F40ob-CUK9}|09M&BM_@B26Du(zS+NS($)_%!prpA};-D3UIhNCKr@HmNJd
z0>P;e{gI?bREfJ@-p$_Y<d}n@DTGlI%-ui!J!t>5MHoF*Gcl(PB~hRicC(BIPY-OI
z3MJ>`kQrv;Uq#R18y@^Gs31qc9X)pAk~K*pTq2Kp9&(cQ!jQZll#Ivaci~-IfrPOm
z#MuWh+d7V&IdZKahr@poo&#>d&6|woDC7yP$>ARl$VyGH4xXg-pxX-yuU%3aCT$P+
zb*np6u6&GIbfqhY@8tBqL(IlCnO>m6S^iX5X<eKns2Aa9tIo_xH}k{aZ?=>cgoX`o
zE>3wuHsC)yIWEFH2QHuc-sRWrI+i)*6<G<Q($B6gksRG+Ob$tNe=_SLT#jiwSj75I
zogw2m>mN8)h5vYaO&qg#^#5dhQNxp3Bf3m}rZ-=f#pL8^?>1<u_06@`LGO;L`0;pn
z`I-X0xV_P9wahQq6Z{AUo_kj{EqO5VOHO(}D6^)YI?19ulwJ<72}{~}6nm3`K@i8f
z3{4)g@m2hvrrCCI>e_QlR~1)wq0d^4ws6Ed&sLzG#A00ZY&#|$+XbYis<5UC6~uIB
z09*%~H2mHv$=$p>*X-d8H`KMG<tin)`j-9a0_j4|Yq9U4<pr0%d`qv&mb%p>r@_l&
zE;Ft556%5$!JTlnw$>XDN1SYly6NuF$DwUbRmGN|s|wWcp%p~Ey#xW(QGIAtJMNgK
z_R$y8Ahq4`_wg5=k@Y4sjm{KMgaif@LI%+Kc{_-1#JP~ilg&%3{`Cw7LIHUC;%kJg
zEbKxwU6AJAan38~03zwZqE5||NP*gbfiXKr`;h80iY^Z^@4&%o32>|4eS4u0kmYJH
zJwTN|<8-%${bwH)vz5r$x`DjU(M_-kATOWUcKOHR#7M4}&eH@;wv2FQCooku6CVW^
z_?P-pyYBOh2QmY4L~d8KIMkFkw0TgqoD~1kt=98jiI~c++V~|mZOIzD4P4rAhz=SO
zl;zIU!K;{vb^R5Ss;<4=-7&g95cwwqr{8Mm3mhHB#k15RbeMsZT6}4wf&+*)k>X@H
z@SL}2XX<I;?=UmrboJ+LC1s9B7a@PM$Aq?-?Ac9w{Qdox>GTKwb;de{u=4?WFg|Fx
zLgFd)3{DE5I%<L^9j_w&<3KOpxtA?`JxeTS4-Q5|0czRdVb=y<w8v&oMes=L+zBtN
zRniE*a@mq*Ky2%-Vfgzp!Ct{iM_RW?J0RJ|@ZDl41lEUUt9nnKeCA25vfzqz4PNpo
z4L@R+iKCbqkHYx6n7(5lrQ8wKJ_uA*ft*>fK%kmNdN_UP6$wV?(mox$?{ud%TaIIF
zEU|I<y3@b2(l7;4OuUA+MJqNo<if9N$yV7D$*pGBdx)k^2wU%T6%(NuuWBoKeeuCc
ze~Q0!Z+_bk@UQV`AEvjNrYZhJdC>jT>QMyC7ZdhJS^(Uy9G~2dMezy^<ez2PJyeho
z9pXDRh}-ITd@#GP&eO7TUe<-7lHX{aHi}vK^9`-PEy%vx{%fu^iDcw<lCm-EtC3NO
zUME)rf+U<-q!7P4pB|J3V}PHAp+P6^E>{1Z5ho6JHl%!N%jAU9kM8^+>RivQlFlWL
z{u3KCawosMXP=|3!*Y?BSA;Num0m2I=H}ISVAvd>RtFG);{?!@v(}*hS)OWV8$g6m
z*|{Pfn4%Jk9_~$FuTCHmA5RQTIxmZP@!OA8Fo3d?1YXHRXxW_?Pp;E1&4~Ja3P%sP
z#j7T{;NO|d$z+6|1c0Z?jH^K|{~rC0>sB5M`=!>O0}vjKZiSceIvD_ad%REWV-%6}
zMRNbB){Vp9`r3%N64+vyIE>qn_70G=_`ghM0j)Iz<(`}o_opvunNzhJF^PMB7$|}6
zZ!+Ie_a`i2X|hCrLi%^V*qSvjic*w%``c(X%-|UQR17d({#(&e_i+7<lEesXtrY{9
z<h62Y?oXA0#fCmM2i#_l;k1*&)mmcK1)jKHDr+psiD!cD*j|^gT+n%c8QJg~1~<Zz
z-QHE&8RHUrKQ9mDht>i7Vazn$_Va9fkXeXbUrEII{TW&ioj&H~;%Cmq_Ugi0`3&$y
zehPxWigqT&eJ$>(6ILE3To3VMjMd0TR#z7Ao;A7}F%IOoDXDp<jpfdQNG;*mCR~ap
zeac=wTCyItR=Qd2D)DRf6raZ@A!zAc@#Q8M#kjX)Rsa~Ufq;H?_gTDCl~cq=TX1)+
z)k~SxcT`8wBW7-YEj_FgC3J~=G_mO}%as&j29J*W8oo&zlS5yHz^2Y$FXDaeU~0f(
zwHZ3Jem`78t%_abM~|Nj;pznq8UlyjoH^=cQn=3<K7(wrq$@(v@W;+0Deb^=5+<to
z2@2oUz>(niMd;@vRtW$e+a<_2ofEI@x%9c_q<!|IQ-j+SnMk^^dR?mR3(jdW;{nSC
z;-VXudBraD#(?mKs!x)6rNiaXskHMyZ^DjDRhJ`7Opi#llyqsRQFe$PtCI^-W&Oj_
zLZCqCz!?x;Fs(8TgTQ<e?WGN_Nqi1q$=e0_>^v4~7;U`lcTJ;khipe3kK?3Y#J1@^
z$m=r3iH_B!pTfffK5EsYAe}x0;Rc!pQI*K3Zz&TEv&pXPnixwT=aRqJ^eYp6UA0~Q
z3!33a)DJwnm#<s5q7T{n6B)7_RjXpm`_Kq_%fD3FEqeyay8+Cj;toS_%2}ZN9gmsi
zfr4J6?$4{DBP&FMcSr)36kWM%XgIzBodMeG6KLI3AgzH~a~cRR0sB%w|JSAB$Hh+O
zq!+!YCF*EgLZ7gDW%%+}kjrn(@a^@Gn44jQs{!D-pv^0+AP_I4OursBZ4gn}*?Uv?
zdBL3;b#YQtV|s!`+A2OBau=`Ku9nijaU^m0HF^b*$2VLdO|`(oF%NJ8+o#+Rs+9xQ
z;}yYPq>#4shH5tqevmer9qp2M;USw#>O>tZMJnf0x6hjDafPboaPy0c3bsva*>rI8
z&}}^OlY}l*7YCPBIhxhF$;@EmLQQSov5!ITaw?%qS*j=YB*y!D7_`4?adiHGHmR-V
z@P~?3Te2}X+pO&cWq!<4o;X=9>xJ`9n63z&9lVk)p7)CY5(7bb6Bg9LWP4f8IqD(k
zn>lwm5KIHmr@zQ!&^%DJp*|>xb8xx66}|~yglMdWOhH)88kJ>R@%Q5&nU;~ioOk1C
zfd`xb@}8b1_>5{oUf)k@J5-t{3ykXa4^QERN63`ePfgZEc$DtGnX7ieB>!Y0I+};&
z{wnrau;+!t)I{xQ(b)|z6Y}CDyqD=IaOo#@E(S`2#f@$fR`DS4c8#P`>(EKcsWRVu
z`xf?HQlXQ$_khn<4iJ}_*Y^t)2VLndEKU+}Nsco_PdTs0L8FC`Z0BD(c7^9$E0X^c
zH^h7i6}=11YtL-;Hk-6|I~p8(P;9a|8J>Lz2VK#jH<1>8h#3TwWb}BsZ@;A6PDO1o
zq^`EC_mANS#o{q0;y1yetM<H@fi3-#_a4D7UQs4Ct}6tpd{Z~_ZUFiT4L^&v<&8Op
zcekP6zmDAC*LxJI04XhfoyEgJZf0<lh=46HL!W=VNG2(evmY1nh(ie1>W2Img}z|;
z8wo38l#JV*olRm*t@XGG74Lvf(}8|!?!*Q#n2<R6L5%^THhkZeL!i(xCGAb<AI2kJ
zsl9BhZolceKR2Tb*R~?o8o9Ywfaz*Pk?qNGOrkL|mh$R-ulFJ8oY(9L^(pxn{6mfC
zXOuU0gKcUmfoaRkcgA;@1^gnWLrCC`t~Ku=j<p$2br1Q}d>Ll#FW@Sdqrh-BGCq`)
zSHnRy3LFfrFNBBUf|#@_aFMO7V4n~%y$eQlmad*cHRO{0GT{PKd}-cWmwVKb5tNAt
zHh1MVwS9=l2YY4sFUftif?PeejgXweI^j}6*BkZ<?S|kZ3_y6<gcY{js-+V$yn;fY
zAD_GA5l_l*{&`wv3Zn-`YBVTwMhC57f_U{{jmpZn?R_!QF*zzaqIFdwqK6?h3fUAR
zJ97_pso10H03F3u@jFYk2`8f#jg&VjCH$Nclp(U;$^zp}0Nj+>USnNdr_1A|g`teJ
zRYD1f7tcu4TkV>qqlmI6<w8Y0sybP(8WKN52?eX)@`g-bmF5C6hK0nT>9B9L(s~vW
z0Iq;h9RV)U1RStJ%ZSUz5s2P(mU@Ae>F)ixdm$~|L}IKkx`Kd4*UJP<WSA73W;f(d
zI1R1yQVPID!@L@?B%GI|Bc;*9XwY6#9E(4QINFCPS48L$1Zf><)(kCzZe7kUTG@L^
zoz>l5o&1`!H_VCq*M?3rS#5T_ZN>i*5VVfCGc7qo{dy|X$jEJin7*Z!3Ti?4pPPYW
z0<4L8Yqo|E^?DsFlhf<nco~{-dJy!@1XB442GWO^BqJ$)Ioa`7Yt{yBLP(SNZ|sfP
z+mmmUAB#j^y|yfCUvP;#U%R%M^DgD<8{J;<(%~LIj1UW@kvZX*tAg=^m<_t4Y^2)u
zHbmQ8u}2Oi^ASL?2G*`@g}FGcqHTkmF*23vXfgAGkm$JH)+I!d8&-=eu*I+b@PV-H
z4H({B<g7L@&nv7@hTKhx+C*-F#2WIfyHb9bEsTnK*3Tp+Zp@kIl??Z2yoysHbg1R7
z^wS9(1UYGB1V{Np8pyi|IL?vNDJeN$W!ni~U624by$M|+TW2ttIQ#UHk_P;iW>Fwa
z#aM|fq5`>kDMiKDlfBAvn$b{9M+k&Zh3ZG(#o~BeV$(Pbtcd(bn^!rPr)3vPicZGb
zEw3!W9P=rnAv}%`-tx0to&bqMwMt1&^c24o)+r@Q-Es$C^dShj6t-npm}HR<mcYGf
z2;iV<M(8@RKJ7aczEYm{Ut1mUJ1iv(7YAwZ;lt>0w)-o}bezhUhs>SqD4cdo$u_cc
z4mwK0PxhH!Z9haiC3m6|y#J*J8CBslN{>!v^ZLG@A~V~%DF)X}<>G6_1FhY_JtF+f
z1PsRHa7n=KTn;57kmNVGXjAJ$Us1rFg!;;hUh@k_krGtZvBJnR`!<MUbG7(bex48J
z2KvoY4ujbU<#dT$Y})mv!a`fCFNSqmR+^9s<AH=*DVRT7N-$<Hk6`dURjAXhvX$UG
z-o!tIXxMh0J#peVrs{G-7;bEO->+3k?fFJ9lh+7Q;8Q2p-_d2jz*~g=oV0=y+;9#W
zkQ^aX$2w^jg^`EI-Y?c_&2VXES4Q(qr2+_<YC3{Z?=o+hdZd^6x3Vh^00u0bMf2z7
zOToxshZXJ76byIcWfnwBXw>+J>XXz_hpD5>eqhu@MpO_X!P`>pHk<SY2?rYd*6=&+
zcbo1~vR@zYn_iXllzlK9pr&<byVDe)8ZMHzAlI?!i<f0Yy=6!EJ9MX6Yy)4El9nL_
zcA@DSn5=%)>HEh;VyzD$6mgIW&w_BolW$-a>W7f%3mU?XG6)l5@7vjWwM(DWYYI@W
zt46GpZ1ChUn9faya~9vA5^&sAOm)#Q1r?B%d*na1$xaFaAjTtgi8XX#R)Y1~w?1AC
zx7jm~cIcy~ZQgro*jmF^8q|54QEm_IsdbeqqiR1>69Ur+QoV`oW)=6V)beMBcsRfF
zm~d=F-I?Ns(D}x6`hxmuZ%dBmzyKZ=|HDl&gN$I&h)d;928YM%5n=J>!5v`aiYtwe
zl7kI!7&-cVl9mS^km{Psy8IkefPw#K!&SgqYjOr(EPWkY6ew0Q#~~6Q_M->zWxkq3
zIZs{DYhl*G8f@-Ajt<GSoW8m&C`OBT`Qzyho^3xQNSJ7gHg-!R1&>bmZsV6UKQJJ^
zrzf*}W>eFYyGGuT{f&E%=sH(KcumgQjTN$B*sreGJ+7&Af0sf@c#$4gJ0(i`c@P?y
zeX`f4FupL!PlHx?5HVny*QPHR_6r|9K(dLBIUYN{xi;|Xdc#6<Hq^<K5k@k+%zB&g
zQiJpK?^}!JI{5v!Q(T<UDtbPoMHA{TTsHyU)!aBK3)V}>S(?5jRR9@`v}~n#;rp*;
zuS-Y7och-o=sC#*?(1NZBJ@@^c#$Svmdk0*Ir4{rR~K;~V{XS3;4z*Jx9~)qaX9aC
z1J)LkFys&J*(ZoNx7{FbDyD!TrCh)dJQCu~NlkD;e2ZqZM1!aiXAl)JfB^AlYE^b}
z+(4T^_&(VZqTNvmb|!nT&KoyO3exl!NV7hq{wY6K6{H=skPuZMO~2Ktd>}7fkavvN
ze?O<JO}fPI>a4t0NQ2yXLIr%(irE19b_xok^h~B+UAd)LOWk?U$rNFIjVL2B!Zc89
z4aB%b(do31DR+Si7$cwZ6#RrF9WEnR!|Ree9aYhK<nkGg;8#ZRtRg?T&$~~PO6YV_
z1%!*-v+J7bhll=E$9AOv^a)pi{|b;FHrq9iRs`xhx3rqa+OTC^L)>6R%P(S61U8(p
zS5Bb|VT1W}1v2=g)${hHjLMRPh;&$(d7(y{1;c;6-FfKNhC|R5Qmn|AyQ-VY0+0Ii
zHy3T^>ZR2;pW*_dolrL(6^O<f68?3y+!tq~7Gb3NNZb1cjkf|YA5q1Dm$f~Khq0G0
zwEy?Z1+R09;=DLBIVQ;m*xv^YXcEKQ>Fmu;m+$<%M%k)#^ubjX&^Cpot|0Yjd>M7g
zafwGI!jeGy#Uvj!A(T#{H|x<YjefvzPTy(wL0J?ZsF<TRnIIGiM2_(_N}ckgq2CIT
z;1TWHFdji1Q2~L()y`+pRl%3am(KDv!XNJ1bps?;4Vct8Hk!pR-E9oDBDkJ4M)CZC
zY99+MY(Z{Qm&#&A@o<StfQhUwXSRxFG__Hom3e&B510VT7P}J6j-UWXK)AoYH*rF)
zHKG<<Ni3LuZ#JafadSu(VS~9oojrcVTj0Px_S^W8VcO)%zrrI;ZoMIdC_(V>A9U(C
z1U(tqbqCnk)kbtRQScTyN(DneggKxAnhUg>=&3wc%Aa|08@<BlB9&#4MkVkBXeSK<
zg!odZ)#B45E%Ji#kOu}<hc9i_b><d$K5xTGN!aSjvPH~VuQVG`jYAx(Ar8G<=adQ6
z9BOI~1elU*&uw)gE+-%dNHz){ksn^?Oc+hKo0=`(%fAmfDNdl)3sb<jcpE#KKJE4!
zqT!ZtUQ5;@II=wbJ%Lkb<OG{Y631Bf<hntFeV_#k*t<3Dwb37V1)6^Av{VV@3_!*u
zuJ_6!;jZnAeDMyBaTF=<?m}IERE&Fc78d{I;(V_(l~!OSuA0d{fOy=qz@79<C8|($
ztW<}u0!VmQLp(Rd!BM3Eu$A!C9&hM^4?)$=e(m!6DeV`O|1D6rBgHJ$LRW!i2A3{@
zjDxA@taP)jgS+b9r4;It=ob6&xR`^z$?ZaBiKouuoTtDcL~Y~6ToivS?4Ra01v^y&
zn+fO#B4!}XfM(VpDW79!o%2LeLcuHA<x5UaFpekFKLegHMT31hO@5yQ`=Jq))YXN!
zO2MO&<skWJKd+MBGVO8z8N@<)qjO>-BNp5qOaA+Bi;lHw9W#E`uDtwLx%@t#v&zbr
z^965t%qUtN3Rf5l+8P9yX8dub7_QIle>Fv(VmPX*m+73QkdWSM(=4H5!N{ES?5u4y
zVrMggk(Q1pN%TI<p6n{+5Wtfr<cxp_5Fh<Zw?2Zj)+YjVvO#fab>nzhR(}n(Jl14Y
zN>YpF(5>vTF9;!`JTZk4N5??(JLZ&;@w}3N^^wl8i4g5KtppUNirb)CGC-hl-&y5*
zVm@YU^7=2@02t7|HD5Ph&}FF$1obAeR8yH79L(k5{LO?`G?|6_SZ$p1S*QTOHpNa`
zq#KL=s&1384j8LSnNO)V*`xUa?-~j%HzfyRrI9=o5LW5)78+gOSk8<I(iva2d0`=t
z(wmE#sp7WPQ;7!J(w1Y>+4bcR0^bL{!$K1h;IxRRCq1$0aBMWd0^11HWE7Z#c29%+
zfNMjy1OuEdZt?65%RJsifL!ZmDI?r?h#t1lS;n<nAZq8qbCQ?Vzwns3oxsuqv1Nq+
zJnKlb(c}Wg_#)f_qOyP;hfJCI?3mKJ+^11P{O7PmY=)&^(M7GHL~P6(ow7MMBoPc(
z&-UYG2omuX4sCm)0WvkqL5fM>hL#0yp7D()jc=eP$e>jrNh_7`7$etq$Rk2fkBzB-
zOAANYT!T2)EN-5=<IYQmpjh%(lbR@lK}A+__~<v0v*0|($+HK-DD7X1{~a+7)HPAv
z(074gdB)?(OHq)!3A(*g(ftR9yl(@4J#t)q&^{C<ZIi|Z`F+!$*#na)n7GcLgL<cQ
zsp-w1tjU1l&_Z&d1C|CU{CicM;n8N#2y+a$bYvEJ0a%j{5n7cZsG)?;8D$A8<}n-V
z=sTK})G{z6lXf{f!eSkP3z+QAq4lqPt5A&pcM-Dq5i74X?{_DMkiQ_4q~5&jKBrnD
z6M}wP#q~?k=CoAQX+{b1Ws>;@w&x1SN>icb-^9E(H_S+HFZTY<YQssDATZAvnsKsl
zoTRrhcP;K=KoZ&&j^#(x>za2-DNGJ_?6&|IU031@P|!1ukQ0W*T1<K_G>FfJ(~wqI
zkDOgJ;wJbNTZ0?MV{I3E#_^Zw_I2HT?c-h>-d2Oiht92CUgS!(0DEv<eP>qYVeEx(
z)6r(sOLwz;jpv1v4bV<iv8F!cvb=IprMk;l#({v`%Hf-U{t4zUxlS<xVQ;`vLiCrT
zO-!=3q^QrQH~sNhz{Y=qYoK}<1Vf|fL^&b^X+g5~bTKfbvAu5XJqf<a-!!8JK*$G=
z`;Q*VEJHZ#6Q~AH&*?*oZGS7+k!Y5NbN|9lI(uqtdX8E~6Jpf6D<myX_klErL4FRr
z-}GH!0bY3$VzN)Po6U+V@01Fv_(^Bc6lGf*x1#T@j2iq(4|<S~aVj3lO(vr0xYgP*
zeST{LAapgo2ek?D6^+JU+iYM(Z@Pg%f+@j;AU~$*cx`q`p%SpeKcajsPTHAL&OGT8
z2ECDbH>U2g|0~n@dZR8&w>x4xZ8C9ADSa}lfh1GOV<wj})deBLrjE1Q#1+u2wQLRg
zmpi^^%vz#wwk*mLn`ht%IGNJS#?)DWpd7`>rXbOiS4>Wd+suFGLf-=4f3R=MqRbaz
zXQ$s(_hA#1I--Oy2Z$WYb+kJYH__XG&}6Sh_^Mf*bYYZ)8A)s#dVYV(e>v+hMppcC
zTQ^}cJqDqHUW*EocqWxpMFJm}Bt^SzPtYTM+ackf9l7;A^>^>?B4(A+%hpHfkN&u#
z&F;x|SFZ6nak_hXGKUh;Zf79ZyI@@;wRHeXKWt6dJPKA8z40L(cB3X^7*hD7kwbo?
z>!G#A!gB9-D*Q#Q_sw3!lH}5tsWd{-jo?p0qjkwfHxrP*WDQo%ylm)R$x@EGaR>>Y
z>@XRNe$jukT;_Q5k7%8aQ@eXSE7`b?1)e5yFNw3%pPQbBHm`+}J~o{hSdEmS1Dm7%
zqwI;FH99WuyumyrXY9@<VgtdttRGuohyo<eJ2Ji@;74*D(r6mp$f|9=E~pA!hYkqp
zZrKk9%-==Y<k-AYnz9Ke;cpCz*{3<n%mdMY|NPk;+6y1@n@?m28`5N|HfQq)QEcY8
zuJ#>U&Q)Mq)@37R)%H=@G2XIwzST3t)%NiyPlCHk7aEju*B-kjR`Ib`@W2b($~E7(
z;*uZ@^j8~-;$yuIchH=pBu&V8N0@~{{&sq``Yc?i6Zv;h6kB$mjfpZq?&hW<V5*o=
zJF|U*sd~|m5Q72Q^awEV&Ojp#H$fgW7Ys<dtrp_W#mC)3Cmd@k!C%i4W_p`dlpj8R
zJeE95=LUb8>%?16rMmSIZ2NPSo+FueH3Tk}^E)ywcS`g8S~9!!hh1`uv;=37UqRP)
zul?m(aKe^W8&pYlnJ_oXROBEh0LR_DOnL!O)mjt4O2cFEzG5UKe}tlPz0sN2XYwY>
z3mFvYZOy@!C)tnmvyfhfUSi(2sKA{893_mbjQ?sCUZCah%0hX4V3RbwF{i#!DG-0N
zj#CPDJtU=oqPuP9oLa@kiec4x1%mw(-7D`Q*o0IgtjdWcjR-ENOk5^2CJ+-&-FI7O
zJffBE#Gs5igpBNcW>>B`zA5<Vf=gvk*bYwK=Al?-WPtSJ_x6_0h!=J%bH9M2#~J{S
zyE2lBzDmn87~MNqwC;#HCNO-KM$4=(MJOG}b7$J9=1KObj+Hcp`46T}Os5l8>8r(1
zm3n%)Yy23Zkdaxv|2MGV1`kwO+q%f%@U_$7Ej@i2M9V%cKkD@rEDE8F&FTGA8*L_o
z(a@D|7k*FSLP)LoY<Iz=EWNp4ug=h=tyN2OW*q^@Rbh_>*X+Rt_ThQr2*}B2qGNKq
zB^quSTLN^?F)zfz{)(i<#1PVB?w#=M2w;<*JXzB67T)rwHyikzV3>7l_MG7>wh7@)
zM<#M(9v84%#VuzidsQn^Ns~jBEL7|?jTg{#av?#GvI5j`5AsVJ*_PNxQNDHQ3cdIN
z#}EXWZdFw4hlY1AfMQ=y<}<wCtK+i1L5m`#p&P3{knHeHypEnyOIFfE6fl>geI=%S
zeo=I)?I|=mioVS~s||?w;_Bbx->dPwDnVk~;zemA{E2RI746e-)WDwFjB_*(dB;o2
z_T`L3k5})mCY{s(x0WXHzB0{M?c1(x1(j4S6l?pL3{MaSOFsdL4W6}zNK>>FdJv(T
zgr=9by(LKsE9+-T_@WhJZl__nBfTS#X%<*9g=G8mZo9ShOK$JFo^!2mdmY?T%>?>Z
z$|3USA)lOas1rW*)M_o2h<>+@6=>6kZ7L|8%~j&+Li$~<Uta@%^t=VNLUQ$oh|j~=
zfUZi9_ME|tw28U@nvc!hvpui1H5t<eI~mOcjlFWzL&qXx<N8maSvLwbY1q!O!=Ckb
z{I1gU&AunYvoDy(<dkqd8}&2{q-^Kb7%ntiFJ^Y>V`WcbZm!B!$gy$-{Sy-#hPyxn
z=JjV2!<_U4ieve2sH3S9Nszs{ni1wKGiPxA*5CdCisW0HtPI2(nB@iUZ;;|OiqsQa
zQ-Gw$=)zp~j1!PE%UqL*WG$~T^Sg_Mkc3;qN;x>dORK2T2Bx|${m)C|4n6}HBrC^S
z3<9e3O)X@68#fV3m9PW`bgaZ`Jq9uuK;y0NU5fcPT-I{(Xce_sb6nm7N?6lXP{CIG
zJ0Z|{a#$X}5biFSos;@DG*<(c4F_|-e%Uw*i&|}0+EnSbg{)otWeBf5%B5o8<#3{n
zpuOr|(X?*y+3g}|#>X(UA%{klwQFHoTfPh7@Iz=DtbT#75d}5;PmQJ(PCI8?k6o(M
z^g#DG8%>w2lZvX{TSsEQQ+L>*mghtsse20XX^mCv<VW!ELTn%)wZ*iJ2!@*9x7oBU
z(y-25khWK(QuLJbk*c_8pp<6fOP6ije?1`y19lo%km97_CE7)JeT+P%_xgAI)}HXX
zh)gfTX{m$gQXz4}r3PxFS6Vtz)ys4ezpR>s=6365PybVJvGJ=_ITLZuWVRWQ#kvzm
z#CtS=g6dLFfg>wHmY9oMkd9`2O!X$rpLrz<=+d*7+GPo~7X?X2sw4KzVAY_kZpC{5
z2!mCFBt7D*k~+=$qw)10ERYy;Y$><-xYZacJd788bOMA-@xXw^fwh^^i@oM~OZyP`
z*E903;U5a%`FqsKs?3xp;gQ<|2M&E(;;LlyMzdD(&APC{4jJg(jis7+rlybB_P3ZE
z6D`SmV~5rso&85YGdNsQ`5}Gr%Iy>P`1c1m+Z34o7vHxko{TY(wStIVppk-@4vE01
zup*TjIe<fJ(e9_0a8{HhP^_j4?)|hJIDdpo_B$K?lu<T-`GTAqppxoZbZu~3`IlcN
zzA8{?X8B|39MLY&)7nEB_oa^ZLYO3$Kt&<=(24Zk(AhVCL1JLM@xYX?%Pa)jzo?#T
z0(i@Uy}#YuEJ!(iJnqoqy~b(F&J0JJpLtXQ^hx&=eG-nz_xuz#Zt#yci>RkV8lD2k
z|AymD7}wVXht^5d9<(JjGxkCw$mnxgHRXSZqxd8m{8lnQH19<!?=8!NOFQ7D%gA;u
ztlr9KGFPys5H+l`ctBbe7I^ofvM7B}XOT#c4KIXJ%`dEP2Um_t#g`)VQD+@8YmZ;D
zI=43mh%}&tnXm33T+s8Hm?7*)DDt6<NZa@>PV6tjCBlid)-J;t9-|ark(@n7?h8b@
zZ{x~bbr|j*JXPo~HfLQY6^Wx|dYI~6&`=X-!fENI^iq3FCD`J+12uLWF(d$dU*xzK
z(eb<yMN+wpouPGOrekjxF}sn(vYnk)218|J!svQjm51dGjGk@P_Fo4^4*Hj}c*FX&
zKF<636bmdrA@r49qU)4nK61*l6p{Yf%N|wWkiw<{>*nT6Mp$tER8<@lf>UrmvIS@P
zlo)_3%hcw+HJx*rmzk{&URFmV&_Y|$1c7`%6XTNkQ<Rg~@rCu|pzqI}{Crf&N^N_p
zXjkvCkyVZc1urWby~;kBPacd&J%C05(0;aK0!FriODH!LXqXN{ZnqIxzv1os*55AE
z=4MF;GHEYSF6AG%!<aJM2+z*j9Xa0z)S3uM4yN(y>mCS8&+GlV8on{(=|B+ftD~v`
z4e(1{W$EGWSAGfQn?uLu8NOdi_7bK?p)AU{wt><q%mJmkPv`Ut0X^vNeV=Gj;*5#F
z4rOlh&hO)9TChsQDL{0D1v@h7X$9v43Bqy?QsODl^Vtry+;|^ZDa4XlKtBLw8Cl+J
z>{o-(ZSe>qCN^@+GCnB8UksyrdzXWxpPqFHU;!HIK!fogVD!t7W{SJ__&+fy1at5B
zbcjNLW`V>MsNXG#$RbVE{0!nd)qGtPbNz+RvGLf7tm`L=|MwHc5M2tbaT<dU5zPFT
z5W7}KIrnP<=JLVQy=MIbz;7^wH-j2kTL%jAto2&CYei)DqH1+YOdLNeL*wa0Csy59
z9FIkOPK&_HdX8D6f&!Rco<e`uQ*Y5$`fyiFu3?@s=_~@o>^4Kp=T>VPVj`MTiX(<-
z_DBjfWi+APtQJD`5Z90qw7{$Y$1X_?HriN;PP1+b+qLrjcxWB6+7|ny19`3JnXOoz
z$iS4!hl!!F7-thy^$V5=GM0vA_aDH?Lh5$jY}RHNv14^6>i+xrR3?W22|>#YxS_W5
z`mL~q;pO~%di>-NZDAhynA%RI@vOrkR%`%gJa`o6|4$gV(Q7|nS)BBHnEw<f%`l4n
zcfc>g8195Yx#yXXh!REU(f>h)jOeXKj<Dq+3vRG?CK%J%;2yqJJ)AmrcJr1JqW8<;
zYJgMq+I;M12elm8XeX{p6Inbd;+}A(jsN9-wK7FKkzRP#-s18L*-NV)J9I+B3LR30
z<=k1@b?)rNok1d`=OiBJs7PsDsFVz|;;j)|z?ZNWhAg;%bED66&qyXWXd;#I>{K&g
ztW$=^pnu%aq*+rWg^-~HG8<DlKidsXh8v!9PIVxC95mk0k9#;ysm7#UAg2oX0m_(<
zP(jg_9|9BK(@xG`8FC^M_Fhp3Q4s)|SCpRNM=M&>u00%#2%I2@HbMqcn3IKlGoeOp
zXnST3x(#~*@6B=V4v66i{#jt2*fzwcg)cZlc&i?(n>%*`yuE01nv`Ef$P=yAL(EL$
z{!IkZK&R?u=<V*B^+xZ$I2xMheJ;H7H16eL7!Q}g;A%M1Il?)8IhLavz@;(v8~Cf!
z?P$l6xf{f|c{@rc=4XmnTLzv{VNt=7T!>ScA`?mmapZtF&a&`fYe&zK^$PcyLYPF(
z(5l1j{Ror!O*lo)oE$6Z08vx4EZwt`DFfr_p;v}@{&e6H#?oQc^=K9;KD|KdBqMvg
zX`8$SB`m1c-UpL;Iw+2?yuCu}K<K`mgN*zX;a%&De79XfLEj_%Ll$l?D7uGU+riJx
zNAnArY_m@NG0Pjua@XQCnz6so<YVHaxXiSF_+ql4DE$7GKY`+*4BEQLeP8rcDCsz{
zpt?E^o7Dh;?L2Nt9JG))2+cg*d{ZnpeZ3a($;0;<8nM;>m=-2mRLws%rdn*Sf}Ys8
z7gnmh2FVsU%0c!!hs9#RtcM1qhfQRw-2HB``oyyfwzofU-E))W_A%UxuwONFVmZ)*
z<*=r8%1kLhEFE*+ze~xWmJ7t1dp2Wq=MqdSnQ;3NLQ?P#1g(uqni*K_mdN%LK3Kev
zo|W6E(FzxYcmVExi#IYl>wC_C3>y#a7xRveE>dv!-bOg9affbw%{k-B@1WAhaT3*$
zH1skjq=WChUG<i%P>%br!lCnq(3(BVTbz3SzylYhl_4`Sg@DVz{n#bRJJXHpT^>@X
zjKBZ@E<FLL1Ar|EfBdO%WM_YIolhuA0t9}W_~l`++fQ+CbN9-wTHrURv(uSTXLunT
z45E?ep_F{6hNgTaQh^!n)z(PBnkJYmC$O)z$=@EWBUC413-ZUeS!6K51AnGgH+riO
zk5WZ2-(z9{Z)IO=6^0eGm!#dd!U-=Io-X}K!CfuW1JezWY3L1sGOAPB-h_9*Q|g7s
zYSpBss(me$=y!Dl*z$qn4@S)U`S^~crWJ3-k0U1m)5cg6Ks!P9bdaIOlbgHX1{KFN
zhIrEToD>+5Km}CM;jL%R^h-OhbSuyu9PLxJ63{hoClunys_92HULh{><EaXJ0;)j9
z#){_e8Sr-4^6(}@QMgJ=OwD@`Um?P2<}me>fueMK_WJ~e(vdJk$4^jZ1Rid5Vd(Oo
zr*4_XrMBimeCsGaIPo6iqqEn_*TUf&EjN#Q_fkW%LR*uG;K~mV8_pE$0XMPxm~`<#
z@t+xP18<GllHObN;q|lWE`pHHFgSZoyN6p7XjTmdn`81}=py0l%gkyiSl-O&6rsNe
zaD!%GV|kIX@YYvR^7apgFTAGy2Y9A{dEWgXm;4_NT*8JX>y~ts84G#*>F4bXj|>fL
z-voP(4>arbNzK7<L7`uEZb%aMFUnuA>B<;RlnFbjrK!}DKV6c|C2O)qS#vf2|L(Dc
z!7_+gZ6si=f)!;iugGHq4gv&Q&qZKH@Y^Dm)`W;{GfXl)McN^vJgk8}5(%a4l(r1}
zU#iUQyc30SW|Er@o<P7qkk+Yu>(fR*YmwWBny7FP%*A2<Qn|6G=@6xgAd7S(f31SD
zGnKS&@sf&nNj3b4kUjx7)5H7$JFp-&RqUAiF@pX@liON6P#_uW&=66nVuB9W3HVfV
zOD{TLaxlx&lu;f}=DtP(>N<7p>)SM;*<04TpY(1adPZ@dckW=@Mk1?q`d5?RIlZQ@
z0n}cn1%_^Y=%Y6jZpKy&zI5(;-KIJb`>^QZ91d1L-rLr-)rFPtyqvwiw4{dc_wuxF
z-3YHO7MaW8BK*Blr%Fg|5{P|>Eyg7dH(niRU!nimyHA6}`$62{73S3V#5-AbDH_>z
za0M-)CaD1D0KYLYbzt*PB6lrfaiN^-Yi6`^Z$yx;V1H<^ihT7vj>oS!D00XYc6_=X
z-NX9GL{{U*XUW)9!HL=bBwKzb#0q{@nFf@Oxy_+Pa41*WAueVBsY?3}uL?x<X-9U$
z^x?3Fv=rDzv@kKrKH721#*1S>fX<~h$odx^B^sf^iFqN+eUz7f-%e1Y5n9`4xDm`i
zozU%nmVZ}2p%vQ*2#5ha59uoYAnBxGDV^O+!~qnIm*50?oPjK~*)SdZv`x4I_Ep|$
z-6l7T|C7jZjdGmk`Qvb3D^*>R%-9oEj|qBeY2B~T&l1H`01K(S>@OCRleBWF{suDD
zy$b4M2mnA(yQ77a?fxfOv=Pb1weL4WOCgs+y%3^RVOkTOM&6bC0~U`sheymqwsww8
zam9}&1c@*B_kiZ@&cxUi+<*0-7+XRt!|4e`1<we(k_qer@}J%O<9q%#f^u5J9Xx6K
zCnH8La|t_kt)T%`r2+E`_kZT)p`xGi9y>yjBk;&bE;TT(IWM~xteY9p_CsoozWZA$
znPw=h8>PBgfZv`YiS=!^x>2oa%}s9G2nF!T(j^k#!D;oS_f)QRb3O1DZ(CSdUMSe=
z_y{%Q)Do~^o`r|+f+|&H<W?EC=4h3pyD<!G9)0e7S0-KFi>so5fFX~S3Zu=$UCmiP
zJMK?}08sg0`97b;39QH`90l2)gY(a1OJ;pq&cx)01+B3H9{)R!6%<m|M=g|@%QCT!
za2q*m<*t=Bo7v%^tU0)+Ub@g8ax4z?aZ;rV9NnY3C79R5T(YJLnGTpQG<uOY+@*z@
zld10HlHhAn1?~#@&oUvafT@-enm4eLU0k3JH4t#mt5iq7az}-mK?`P&82TG)GD0=o
zNrJvsP3PF97Gqjp$ZeS9`7XJ@R=2^XFxm>J;ZwAL+NpSI^w=@XxdE#g57F_C9=(D=
zTKwPPr(N5YOkl-q6!;^*Z6EFBe;~zkx!@O7ZUt5xn8c4(zp;N2%~oI6PB<n7v{#89
zZt|JIq)l`X8$b;GF4Sj#4rx5rLiNMVlD9r%P-Ttfjn`?ciAuUA64EDAk`t}DltJUt
z9PJ$%W@>qA1<7n_)da4MZ}H#f6|$9_Rj|MkhUH2JdW#P*^TtHYmHWu?CDIQ4=EKRC
zr=(V&fSpCS(uH(FU!-D~P6cJsRd>~}V-$v~A$i#?BF7J1wG;CvwYti+E90c$5b=vC
zi**(bm(FwB`iRc?14(Es^~_evTN4VrJpA{|wgS7nlOqfc-8<rwkW^6&i|C=+`%H1G
z{Pm#WE`6hR(p`HGQmr`r@ssRBfz4lwSVFxkvd7BBIdP0n_)L=on|V;bDDXXF#JklD
z6n_^RRtn#>!C}X@lpjx}S>c16RKA`|rMe<ogEJa!|4n0Bs2lAE=DW8C0o&&*r-~ug
z3m#KZzxyDE*}3@JSH)sV_;>xdE%&ilh3W-;xZx#D_$2fF(b(A<kXN#DTEFTm>lq9r
z-oZFW<gKILKA({d8~$%$b~5-%lkZd-Jg9+eXd!j+u=IpI;CE8xjVSN@Sm_xS+yG}`
z7~{P4{7z!`B7NK!y=c2y*I3=xE;A;9e7U?B<hOOoqaw(Kl%P&Q|29D12}h0*BFUl>
zNUR!o&egb1wmfxU8X0Q+`MXTBhfmKMz2k(sR_AV?1uTk0>W+(F9wxGXsiTL3LrW#s
zROU(qJq%WaIk;&OfA}}ozl_L;2`*dzi~l1pua2JR2^!!Lvcmv!xoOe!7$wo?aJf3m
zlP7563NRTW7KIiPfhdya2mj>d5wod$MbZDX0t3v=wvW^zp>Od?Dh8U~K74tcOs8^s
zYWTN*tS)z&ALuREMDA^N*iXA3kXiBf&8A#YhQ<o339KNCcvK!}KVH;<G()5<U4;%6
zJN^k|Kp?HhKJ-Hs(=I5|0JD3w)oN}*z%^78d@84O?S3)9>YfgX79rV_#Ltd4otnmu
z_s@a|?l6)1!fl9_Y|4o<C&ye^vzCQ~J#gP$Q_uWY@rCn;yvxwBhO)CB+iX>LNoK_(
z0SO99altTvw8kU9`3rB!X~f_jv9;qN2PJnV!K{y>^fc;e{#B`UVtZ?%7OF-&AF(uW
z;I~LB+42!^dV*Sh!z$d0a*|H<*w&p{mL{<1{%SCC+?^h4`!49MACW75FI5b@AHsOF
zUZzBg2513LLQ$Mi%9QQ<Wz>b+N?*@k<a2-Kh4t;F+hYD>A}z5IDxz<*{1lx6X*Oky
z)ZqHb7jEL^KE3zK4O3ODNhy+4&B5s$a5kd$3&gLMkeh-|ABH3tQ;{)nNRpwvU0hz|
zL;Ox0?R`g$N!gyU;xvCF*2OOXPAyI|`S4wdeCZUG>d&zuKG0wKHs&BsAIK&+UU?IA
zK6X1Q#WG{qCraI8B4~cG>CxB8JYC`PyS^FIn1qdM<g|tYqCPE5gMRqi)>oJQts9b>
zB6SjZ@KKD$zZ8_(>YPKz+!<?9fcV;rbf(=L+&V4$8xr10CmSx_gA1*&ZdZOGmbmZ2
zPb$znDV3RBP>1R-p{-%QLXB#_4U<Z!>#tQBNWzV_hJfs%A-Ab-GYBu$^{3l-8<*y;
z@RhqBQLO`w*&{#|90hMafjJ3#dPPD(lJt1acGGRD%}s9BSK`)}kR1h<<}M4`Qz;WU
zeF6$2v6@M}w6Q$-<>dYANx)RL%jhuy`tOIQ9*SwOmi2PX+zhQz@*xeDr~K0d`Vy--
z4l6Aj!f9<mV{#D?vnNfr(cUdfE6wpcR|GHuVIjQqI_q3d`A10Vp9WfSb#7B(JGGq>
zEyAjc1<<q?ZQ%L_cd~;29y?r`^pZoBaMFSdcF>}}k&2sV0SOlXTI9s<O$`U(cyEQ1
zf)`sS_x#qrrysyu%cD|0e=x810CLmJD$0Juk1B<*4$wbs;{tRw2)z}TW9R5j?E5;l
zF=zl)v3@dEbk}fQzz6PC<XSi3tg*_A+X|U(XX#uzWRo9F5>a;MBwZqXRO6y_2Cwnj
z<KWOvF3+b&YZP;d_;FVlvY@)Ht$%9kt{~k)<a*s~b>D0tLsOg|KzOX@oObOb_p!2`
zuGU=J@P4tsVd=Wr+5IK90XG5Eu|fo(OdsS6FGrPUq0#D7Dr7FAnV+gCcE9lF8J0p=
z)N`bXWT!miHRQUUKqbP#8c<E|sd>pG>ldU2u33L;_4v2xsThA&!Yur~Pt!*DPd!-4
zy3otBr|Eg>+oabGv^dQ1p{`N9LG{?fnxa{B)kDc&zooJ$lu?eikI9>uyBaOGFr=j=
zBr4zUii7Q13l12Nm2Y74A@<0HykMmsNX+y@s51M)a-lc_#=u<uRE1Pxpnn0$viY(B
z<8LTLD1Ba5A7sGlmD+Wn4|QZUc+CJzdDTQivp|!1(f}^Io(b31o#x*&ePh&bm8oA9
z(Et}lP&B?cD=KJi2Oe~dQL}96fj%2f@FDi$#Yr=n%bk3VpC+k5d5u>2Y6jJ$c247i
zHv}j!DGeli!#7s;mE$`~*0Y-U<P2$!^o*`a(HR`8T*s8CPxDN9vWG_rxWjkvx)D*?
zMJE2#I09=^vp1>uaI-lmu3s+dqlm^?VY;@^i|l2vMgwU@CpLUivARgj#TagFTp8(o
ztnz%9E7^I+kx?A;wBp4Pwqt!_|EWDgRMGiQAbQ-n)(c)?0JWIq@{4=n+>b8*jyYR4
zA8j%zo(8ObkLbFuk&`or#Vzi!fd}1;TZz9jAx_zOm*a^xpxZvE#IACyo&E`Nv{y26
zpnbdMnUKZ^U{hJ7XHB$hp)>8P^ZJ>UjEh*cs+K8K%!{u<Yb2b`zd^#$fYg=FZ<Ew#
z5Ec3%gjq8DBR^3gBk6g1lwzfAD`>S{eKO@4v=3KYOl-8F&hH4fk&1T1;re<00hM0g
z3#*6tZ7`yHKCXrLE3qB>qrcU2&mlh0jQ6QsudVH_wBe-rDINT_W7n~?3t9!GrC3bM
z#HwIgC!<bllsC;n4W~2Y3<K>Ef$P4m?IY>WIF8OZv}50tR}|O9mp3e?w^5)q$8}PZ
zi=)M4{B@(Gaj@9OrW=k%j82slj>J`U7^C}C+3~wn7M?UJ5zIceX$k8ehF$KEcD>bW
zXBAt*1@l#xTI@Z)rFg$k)wN)Z56SADj)M(|{SFsDCjVWZ7+v5f+mT297~bTA!{<m{
zg7t*&JSxKc6L<Dxu@&N7QWs74!2?91utfA=eOP|bIu|2KHkPRw3Z6_+jrLa#_gE)b
z<%5Kqw!xnw32o=`9>nVo1GgZ*H;4<nGWOKg4pS`@<2#8aKh%GM+uD$d^V*!kuel8h
z>bYr}v~5bURUXk(dK>MO?oyQk>|8|s${|z}4mA}Jz{5$LQ_eL_Knd}uV47Hb3<OfB
zYPjUg(A$pNv5d`gG;3C33b1Cgdzr+lyg^6T-qflZ@H{U7oiy)M6tDGyrUd>T7tQ!_
zxun+Ecj!`;+$O@tt$<W3gY)LCv7zTre~+h+RNL9fn$On#Yr51b!Orx%svds_bH@GZ
zr0WXBts>TVhY<9_LmWqHOkg7|ZytwnCm~eZn7Y5dH?A3NZ2NU_#JxvJd(c{8dc>0v
zON_(c6`m}iKxYUaBOe|c&xakFRY6NpENnd)%!?V_zMhj6(b&SO!gKzjY161C!^}&l
z2Uf^(Rd(IXY_dxc%08e`w-!`);Wp*T)E9j9i!eUh#G>yRIDWtmbP2iPz#|0vfi9q)
z2a|}FMFw-U7YC_lq9f;MWt1&|)r(7N6yOK(b(15mlv2=%8yzwuK%HoZi9o)?1#Wm(
zu*(Fs+O-2VHcRmgXALkPNI3$BlJ<#Eu$6cBlkqRQa%5{bPRs&>g1&~3?)sn_?zd19
zKW}Jcuv4M>PQ27`tI3~Qm4hg0mg5&Wa$TKjww%{IsPEd;x4glVk|7?RDG6@CS6p=E
zGn<>9_vox5U5CAPk~yKU6jbLMaD3>FvWX1;BjG~*K<xWA8WZT3C$~HIGLi_W|E2HQ
zLx>$dqpuf^Lg7+vy@7;Lc@<IKHCjFw&xG(X_ZPVoiJy9?{RvZ#y8Ak8Llr>9zmn>7
z;PVOku<+wC0tE##e#ATixYbJ9TTD%i`=~J(l?N)m@2R8M*f}CY>OpF=y0{M`;QV)p
z`$dNcK1SULZLWP=ti5zX8oK+S(}K{F<7sSw^p1~^h_zj;4A-`8v!p5V78f$KflE)T
zb|K~VE7HVB5BtZx!eF=#Hd{E0d1IdV2lLhf)emDNMV7DlxlafV>(_*dA05kY7IL}o
z9jd3s@Xqc<U(!U^k<n}&k|pl(P44>>@aXusCKO(PbebZ3d=j6#*;9@@>9fepbr-Yj
z%V97^T@;(*ouY^ZU2%f?-Pa^N8sgOdnN<76I9s#DY%q9rSHlTJ%8(WETHrHLWpTc@
z8qsHvv84`c6)f0YY&hoQ9}yZCJVNR(1_qdx#n|A#z_9aUSACwTG|j@0lg$~0>|KuB
zmamvAhev4LPbYmIT}O3gl*kda%KS6)Wx=Jkxs06csrTo~CCLO_q?z=dk(+Ax?Jd0h
zXq?<&qV`ZT7E#>-nT|hFHewc`J;k0*M<S90`$BV4{1d0la;c>CpuppdGY)9S>jm>7
ztm?oJ@yH4M4i!oG@>}p(D$-z>bpPa^sb*pAFNkF<6^}>EVx6&;LZ{U<bk7lcq5G5(
zu~gV4=z?Z?A)gNJ=O$R$xUvtjdk<pJrI$J?>IKJcmfrG3d$+hiAOgsvj3d!51%fQ?
zJ+-%V?w+x9)ff1eVlW0k-27SA#^R%<W81oDIEm0;;_!;_J^V%g8|0q$mv0k32GXfS
z-zR&EoAG(@E96y3?}rK4KQ!PMyb{dd%%J1j*yS2x^5^oXP>h|`m-F5lCCE8Eul0Kd
zJhHGHW2~>eI=I&qQmU^oIsn#@piG|YQ#y%H?+(xW3?ce&gs({a{;XZ5<@}qe3ll?G
zaBqzkHDq9-?23LKt5x9t_x+^?i^@c!or}Om83MB;ZJZQl<6PJr5zr5>_?fRcT5!*~
z`lEO?tw@c>Ucdw=rbmpVz<nbM^Z_9;F|2$-q9)a>^PW*sFy3Oo<Vm;JA=y2|XAjhW
zwCy*y6VoQI3M~DWp)FyfLsTZ}*D_Lbsv!E86Mp8S+fIp)JMN9PJ&ItsR6<qfUhhI{
zhJ9UBJmN+a#_=t#ZD%~E<2nv&InaB|U1Dil7OE%UBo2Hu@X*D0alg=Rs-mr%?Rg1)
z(L%U5xO5X@|9V5%e*9T6=}euiu1D}Bvdp)er?<~dG<7b~G&7qy-<AXjkp{8vaHY-k
z(d$>S3(`|iY2aK#|KQ5;=^I?T8=tX{jWwMjVm(P8)Kv;VLVz5jDW2-h0`$G1br-}(
z3|vGYX032lKfa2v6=ox)a~x|MlX|f%-^e+>|EsQFd#w~dq|YT2k%vP5%W_Yx9q(2#
zj6So%D)(Qp!CCytPTmdmAHt=8LJJv}9@r2rVIw<6%zI6ON@1)t|I0TA0<vzb|H%+&
zJE*_Nw6syCsNL6KD5X=K=mtU^>a$#z`MD1-9)PRd->lnvt{cW7?F1~;5vegcA%%5`
zMM$KI+?nW%R^<vCvvz%1mfYT`?l^{W^c8nad}pwybG}C;=7UL*GO@&h`1zM`c7A)2
z1@F9THO~4|9s-NG+fw59;v7082Z1l_K12-TJDLC)lP>2IoaowwsPp{ztEo7M2t-dM
z%Is>8>Sda^Vu<v7s+hPpv*<co<m-1D4w$r7FL|aqAW{UH>i!*R5WaeH@F~!`N-J{s
zCKG}(p&mdslal+{C?Xc+Qc5{T{zk=O%ki4df?bGzLxE$`_{;}&kj>8##Ht40*!>=%
z>)__cAqv>_yS@B>fT_Ons9(brq)J^!`R)^M6s;-Pg7sH6`6biZ^Q|g~uS7OdWZgZ6
zjGm6dG6Lx&SF@8eH8pL=PkP<SkNaw2ah!+wrMwI68UuTPqcp?!PYYylrQR7~hw>$!
zrnF|Qp)HF3CPHhnJ*3sMQu<X5Ul#v#s;1W=lwp|P7TGPmWg#I77<Apd3s-wvd9%()
z#!G8V8e;ATz2olN`2Hz*H<(S@vYB5JdG5cHBAO=2tz=DOsYO+c-2G8p*1b4g7u~S=
z6oL)suh$`Yqw{sR!<g4XeEQOtCeH3t3pOLw(M&s*(s{YVwLVCy(nUW;7($4INovO2
z!Kr%1$mbU%TN=~O;CGG49sD0O*UEKvKfEQ>`FT+lmeYA#*_>h9Fb>YkKU1o*w_Q}_
z@{{Pr>p!$?LrdhtdEi+;y}K0TMoB+VuApM(gRjq%L`>*`g6Z72nWAwcKQ?FkZBtF=
z3D{sjlG1YmvbFDweJWnm1GH~%r05)M>U7K85%~k<wz0?tLEV~TzcWtvMCGWCPrG|8
z?#>jj$uRzPjcq}cJSF>@pIrX1F{C!5c@ia%BNMDzfXuR$wCIEV7k}u6uHu~=A76mZ
zKZzl9FT@D)J{JBlb5pl(lnf$W<f%hhA(8hV(8bX#M!Ud_<OaV@d*EJb!ala9?Bku}
zycKeGoW?CWn5XBV2PJq0a?3$bh{{C>3_!`Wp!$m<y7c(@-a^8}^fb=}tfdgSMhmRx
zBoHIn(iH|w^v_X&s6yQ&?awgRaj_G0rfx5ndgVt*5na-c&L}yR;x(a_|FLD**l|^6
zFo>;hXzVBWWL^HSTmXw>{qk@EP*fO+3KCg0>E0s?Kwd2@f6Xe45+GV##8DjT+o&E`
zqWBauU7?)dDDq+N^x`Z;9iOCWoJ+_2L;63u(wS3o`WGTYd<}$_MaMwfCQarS<Hy*{
zv^5)M^T1ym)EtTdoe^UW30%{7up)Qoo-W&*nkI2~R?Mjn2+BNz@~f7Wv@TUuqo9<#
z^06amVxd-no<Q<XGh##iiyg+SkIIS?l=QzBo)JJ<Uk;eky{<nb*5Lqm6;p;vbN;ce
zO{hX{4j^So4DQi(ULC%uESTbzJGqHKEq)av(I-d4{^w+Rrq+Law@o}}8|veLZBZcW
zK+UVhI;lq)-&%Z6H>nLSu8E;gpcrm;?^k#v^ErSyUAef;y*z*3e~>p<9ChSHLZEc1
zxGDS{<1a|A>0>!0X3h2ff7Ec&(OSf}gAk(ov>Mg1{l;hTWos`91^r={g3T(Cy6w+9
zL?D@D0t2*PM7>P@A3h)ySq^NFdWAPH`0G?9kX08^%R^2jr1kAD;4P_+OpZR=*!FP7
z;b3V{lDXZILK+)KQj?uv5vrv>_&%kX#nFZ$rAA$dY7>*sNkVLV6Ay}J3YKEi!6)!f
zB3?a58GXb4es&0yv8<6qNATj>aH^o%o7@Rot1k)gE!LnQQW(X<V?4SufLcNw#K&5E
z45*<{+ecUQK$CRik;*y$jXQ{s$*Ul2P<^3GCZ>RH(bnXD`#nRv#lRWLB({20znGQ?
z?76c@N6R(BshUG8dZ^Xv8GSh|WY&bXy4mCLiQQXLUEQ#r`{n2SLWHIH?_FH&ubfST
zF1=x5BI9ajK4q;70s!+piyq(Qk|u9pHb@%yXJ%5igVKbUhNIS3YeA%qdeg@W*nYFK
zkwEW8?hZU^B4qr*{?<Ar%j=WdO)}xo{{mW#`=G>@VNR=@a$)t28Zlt*5p^1upP)Ce
zeEL8#=7dO{c9}j=h~Xp_m1UR1-{_<lpcM!6o9TcZ!Owz!|KlGdv|wnOh8yh+#W*|@
zTNJt$`{Qs$8C2ps_y*g%9oG|0B!4)RZf9>jov`226iVW~Wp2;Q);VkFIn7M}qe*hZ
zKe}i)2sSwUqN__W;FCtJk!d3;YLA5bT0EI0f(3MWvAJ!=OalInjqk;k1Y0I<r;61^
zf1nc!iK;%XVKG_?9(~Z>HRRb1-=RceUNf|?!94%iwh!Kkt{7=;gW;>%G(^i+L;BR|
zz$8X14AVaCpi2apWl2u@I>r%5XMPXq96|H1ojqKJ9Ti`Pey7b`+9@Nc^yLPf^JfbL
zzEkQ5Q+Iz5e@J6XfkL35i@4<$c_P&JdxF;&7K*Zpv%v@4JwO$v`h#z8VbLW$(4~Ou
zt`9DbA^}Dgje0Ike0zT@$u)ay;I;Y4MK)$sb?<<_$jEFQMOeTQuG>^Lk5f=bQX+`~
zl8%W1A%es&NVcfN5(XuH#fDo_jTAVtC>+)uqPv@iRzy7rD??0FF0~Nm7nw4rD~#??
zA}Mmx1!v**#BEEMTJ;iwFs1e;H)YZ?k$HG)_!XGnX|(STf$|^#ZT>bSFukI@Eb(?)
z`Ge4c5!#>z74169`fQ4y{G)rAx+jp&BVx{T3I<ik+a7fsFcx{z>PNf~7WUW^da@G1
z3he?@lY6G{_s)71Q=)jChX-&rVqqFsk@@Pj6N8QmKm$<r5G&W&h1v4eKvlZ9^6d8h
zzmK85TX)J}ZXpia9>%dZt!M6t-b^BYDHxK0o_uZF;&~FNSExsd>fzC9>WbbO9+S<(
zT$m6?4{1i7Qd#G*-p#ehC5*@^t)igV!^hR%qAxjImiAGADtxwe?iWIBz_1HjS=(uR
z5IijFKuh<ry`Xvpyn(Yq1Jb5*@eBK$Hd(~$fcf>qdedU(nnz?Vj|BhgLobhZDE&*=
zaHXU94^bEs;vp4|@K&JaC9ZCPJQ`L=C3g)NIu7%__@mu4yV;3*0)sEjtwQbh4to-*
zIt*UfOYK>apK1WZF)nm)F$+^`S{DcKM0@WT{mU<aR3k1Syn++D_!Mg2KH<zX_1!{{
z!nQzEL2LuA3hcMh#oc6eN~{K6^3>}xTxA45O@0=(r+Pj7!R4wR<w05r7es-5x=y(G
zyncQkdo(gH9(epk%2E7{-)=cZ?_*X*I$$EFoYM!ai#=CH<EBiQ8H$?xK7;XfxQFeM
z4cyA5`XN8k4!9YYs^rl&XtJGGcR?_4=BUx-U&TDCAGyok(O}X?Y|QTt^bT}p$1h_D
zG{65sy7Id;HzNDTYx($ijJf@t&;>#aS`pR<7+&#k*=@FZ-<2}6&|RwlxDG5IA)oK6
zaE-l!>o*&Hbazv)gC6AXrt7kg9fRWYZ`upBBX0<LY{FH>A4_j|o_c|s+}19{1UExN
zZ5uY;-rC98cLRFrS05e}`N}GZ*J`<WzEt{q9V=!jx&%{p$4@`=?}3c+FX=fs4aQQ-
zN}DHf419Qt?D#bu3cJhp=L#uU=G3hLj5+i9zO_lBCy^BWVA^$`uhzA#rEtUX1Ma>|
z3`K55!z0Q|b>LV?W%Obho2?=sRwzK{s;1y{dI8qEyzunJN<W<`ygFXUi?ZF(!;?C<
zD%CHr$D|a<pAEWAB1$`-9PlImndY)B4;Jw+w`tI3Vsdv*4$rm}eUAn|$6DvQD|>s+
z)9*Mq?7FJdI{)1WDRSFMf9__0e9o&;={tSUwcPg^E?PY}UQE-@E+38I{^|o)2rq_|
z_j))|#DG<QqN2FAW%^#S0w8P*Y5Rp&J@U`7!je8fnoM&F_^Q*vEuLFgB3G{U@sehR
zt_DSFd7^K=%*V9sd3ShEdR>rPo%<Xj%mp`IyW_(s=Wu9?<b8WyugA|aDaN;6-1;?4
zERZI<`^bsU<CG3xdybNc8=l$==!(&#W4bI{(K@Zci9GdmnXibr;%FAtv}b?ZCVP2%
z{W7mi;N$o-X2b*sW&lcs-ZC%MUa#r4=>^o8=4+a~WgrQRidB8Y^0ZSX_0;&BrwFyH
z7ggLy=Yk=LQD1tW50X7ek2)USwsBSd3a2Qe_@a>FX;kv%hio78<oO~nYX?hdHwJv&
zxO7ygr+t4Vw*OO#vVwkY9V+MSH$<u$CdM+^({hx93jSbJz@gPo9izrxBsz~mC%VUd
z{bBs*Qh+8%ep%%b`<wA5y3b+fDYhY-Nz+UX2-g!RvIyZyjgI=xdLOEN<SfR;fE^0x
z?kUlaC@aPuw;z>{il+Jd!Ko3?&KIK#?8(0IA|8V8Cb`3m#ev9L7U$^a6bxpt^jk-$
z79-3l;9lNaq!{xPD%+daq$B7(B&u`pu~)K~CZ>dBqICTF`fS`62rZ<HTUf(Tylh>R
zSlGn*U1vsoSM?h(P9<Z9oRQq@#Il!+RbYvo=Jbpy`2M)%=iZHNfy|!7j3ioxfO&M`
zhc80D@MnT=+2O14Q)E0u2*&^Gf=|nBKZW-vio-VldVV+r-?2+Y1R^qFtIafn$3-IF
zC+y%$hBnnEXM;G9?_|T6$^_U`4v|{M3(YZE6j&%%w!2{70_}2oMUsQ4)paUo39;o%
z8FY1L2E1AhxApBf3wJy5a6RXHYj2UdrIjr30U!1X$N%rz(V7%GGW#0+v4|9bUho`d
zawa0Yk`5b)&spE+Y4;q86c~Byf9;9dg>|2eo)Uw8vqBvbgSleC^ClWrK=MnFCSlX@
zXv*eo(%rn;Jx{E?^9j=c@46EHU)b2(qJA@=^+>m=&F9JL?$;wjkOJ>`1o9wXY~FoR
zc))I$=ZDoA1nl9omD-Mo;jgwXJLWEG;T0fA9F(}VfYH|+tsF!99RCR2dS9?3K4`6n
zIWMMieX#sYD07#CKfijx$e@yiMMaecA*VbR(6Uy0=E~OT3_jhXvI{ANDt=$$=gQcQ
z{@a#AT|5!5Aa}^&-Nx+yzTF3=HRMjMI1s}flFJvgYpXq`zZKfnf<gcP_`>wVV{Iu#
zUdQ^FA_ZSXe@~L4@9m^m)V6$T)v+K`pYgwoe>amwL9l}6-N`f7u+s$nKj6y|>m&@s
z1K4rx#eK@&`MZ;qblc_g07pPexs|fVfkTo=BEtR|$5T;a6!kv6ExEFF@yLcXU#uVv
zjJ(iy>DJ5MYVMeqKxs2T-e;?ZB6%3wDA>R&YYB5_w3QD_T#+;hugtFxV`BYiP+p$2
zc-rsRsYIDAkH9W9exQ#=F<Y)_LjH02qu)*p(!ktl!TG@l_<UI9n!;9^0i~y8wT8rd
ztOpgp5weMd<@CwLM!obS7A!#oE|_af=Iv#*D8K>GL%D-2iZSy_9G;e!xQ3ksH(uGt
zKxWx0RX!ckKkGikqC%7WrUS~^;sVL##9o;chwF(yywgY2z}ISYfU%g|4Zv{!r$q}%
z2@REr?^(3FLt%SQD}so7Nd&;Z^}gt<^939>Q9`1_H49l11QtB6UAH{$$FXOyopjJo
z4sosEvoq|$;5r8MpdMMpa2;AnBG<#N@0KIx#cuX6kb!?yc&`*E_tqo~?J+m1*dD=C
zX1v)5Hm<)Oa-o{Mc}!Oh>mhH^PWZLKU~^UTtNLs@-x^QcM<NMjgMU4!YVpW_NwD%`
zBX5cGpRjhYw|!A%>aBDPr?_03bM1-*P}$GR=bCvj`p-uwAMC0g+Wf(`HLqKX(>iH{
zt8n4^n|SrOIb;__M^_6{U<(;O75HbY|31X{6)>=<zDiqqbJ%$1*4=91RnE7DgtH71
z;s^w7)OH9uQPm{R;sP!~R-vMh=-Bc4;=DKg)mEZ0PZjo|e{8d)L(e%49bg)30@1+H
z%?C-&yZ^B<r?=-F88UI_skMuUioZ`8Rz}T1u|k>k#NzUh%BkM>Hi^zgL;oz*F%zq-
zCsMTT``{1n4Pa0q8<Qj)x=e*<64^jG6pIQ%AtZ?+nvv|*?mwJ!>*0Aev8J@;3iAzz
z5sB1$-H<b#n%9w~3Pn-3JDM;^>MBty2O1GT@{VR;RXkbAH_lsQ+qQ!;T;j&-OuNDG
z)VLs4^Rpp@A_C@+m(0-5B5>*MV+33l{^3_Pio6LiBd2u+1cLbbPxJ`#$9a#J;)PJR
zG8Jb`K)`IC)i4u@+4IW?iOzafNPrgZT0aH-sB=PjsrzSlYjY@h8h!k8PmW<(7p8EW
z9&q)3O<CdG<~zuN<O+yw1VAQ9RwlG=2~=@>GQ|Irf7nXC!O;o);(1r%DBdQ{!RbDa
zoA06s5=Bf4I-vN0srBq?6EiTYX9(}-pSbuq+#<<Gz+lI%qtP9>R*$_-?&}?UVa3VB
z=K)9f=TkrU10_<iYDO0y-4V+Qe2{Gd<3$L_A2{`hTO^uX#!MQ4vRE^B?B~{iEBC^G
z2n-m@(ZD!JxkfG9Jo;+zjVcP2bitd7W@*UH57E1k=EI|I5u;7$6usq4sjvsVhx?!K
z=#=#Rk8*gdd@AFo<&q~Myp{kzK)}DAJ{R0`k_UT_cY`SOZJ;?9&?9R%4@W=KmMWVL
zB2s;lI$uD7%@!y&Y*QgLt#XB;Khe8*``IL=6s`Or>QSh}^3e?Wr=XU2mA&j-FIL6F
zDFO4NG^pMCw#qTLt8iOdgZSjbMpX5af`yl>sG^pi-m9EknNLd!X0O&~piIpzEX0e7
zwXK7KA|YBNJ6-5_+vpFXDW5#nN=-dI6=zm-DlWe`di=HnguB(Smj|13)<=39c5~~V
zgcv3Cdez;aoDDuVm=#$ki*{K0ogBC~LkY@7SE;T*p*X)4scNn4p6jcYQb0i>n<_P|
z;?b9cEQsYoH^LCKnmB|vHocs@ZMj8u^JBJ`!Cps*9_N?JnjQa->Vkhs5g0roK5`#|
zS(<|-lN;E;a!dJ~`)O{#p(+&k&k?7zSjpKIVefV3)$>&|ovNx{p~cQjRwKUc%=aCy
zndO$2X021Kjc){aW+?9+%PPyq5lTQ2NlNOZ=sas;fJ@aJEn|aIopC)*d(jn~wdo{7
zDJ@n7|87y$X>cUlD~GaC2Lt>x15V1(mKDA@vlenA;btuXkJ%FpKn>+gqu*6ut&Pc<
zOQ!CZRDvwa1b>FRxzOX?OoC!>3cJ83ATSyFE)c}zemU*{Z!muJTIbca1WF$R716`I
z98pK?u`?OAPYy?IB0WVghr?-y>J3%hEQODtnbsBZ3=(=oiQI*is)bV>*o?YO1gAMp
zYt+Z9bqHd7wHC4i+003hNZHfAH|%~56(ng-(Y5sRbBw(a_eS4%2nDMgV&&Vb!@9;z
zhua2}qEdXZsvo<9LqZ`f*}W~U{hqd;UlcTC4O8sr4#AJj2?yc0GU?!ZUA$&dRF*>j
z6|Tvdg~=x$#Hp;@!hre$R4RDaNq^)$_%hV*TKHMG#skCBpk<#A=a|i;Tjw^>vOfnf
zgk~hpYGe_+H1@`@49hb(t-<Fb*3IElAz5)oTNPmx74%LJqKK6NT@PaNqzW<P-Fwlt
z9g_hN2()Rd1(5qMud&r1*&s&!^w3q%*fl%ihaJwRn}8d~Y+o%@B8hwSS?0Ik!=T+Y
zb{EDWc_^X>D4sxn**(*)%%M?Tfkf@*yoW7fKD@=6zWHECV41--@kI)NzMGo;PK-@^
zC?f*t%%aXWb9DjytFY6ebaFGwuxN%D($L_Gx^g4Yf+24+TN7L<{;oSf@VVdCN~9vV
zT`zgFC<Qk80_A%4O@b)8`G5>Ats0R8`?exR<oHXgCV*Bm{erm2GLb6JaQ!=D5-%KZ
z{OGI6DkmCDL>Dtgn*BC`0j4o1cJoN4U!sMbH6fY2ov+Xd$B7+%9h6X9ntD$nYMl+v
z=AYH)2%()5<iR|z#I%)OOv{HSoArqAit==C9EIamTJ&p@YFnBYxX}nN003ptA>a-G
z;6Wef&@$Gme8BS{zoMz{`n|3<F=}5s$)3EV5wEVv(>VYH6f3~usQ}^FZD;Il5vXug
z{K9+XS>^^#5Cq6xniW6fk-ezmQT&y3B<G_x6!b?#F&am9AfejTZ4El%g}jj~O8P*Y
z3EFj3=YY?&@Gf;XcQ}RL7c9rc$sK2KM9}dI6#QGa<hAAV$X;3Ra54;BQe(knZQo8+
z%|Bx^Tg(C5*sDBV%w{WXcDQJvXW78?wH1l0Zsj~o6H9H30{u}7*j#xxPH~%(6Bc-*
zPU@T2+e?2P1>P7EL87d9id9TZ^%sWtlaT#MIFqBV(BNh1EY!WJM3R(;M@fgll!)Z|
zw@z}Qa6qa8m^@UR-LyQ!1;#hoj%F$0r*U9jr8ZM(?l@1qV7ah%WD+FAHKKt@n*d2D
z4&j&I#d{s|8ZwI_AjblzY6NWZ`o@9EOPnRDX;wXtZZi4?8hoC3!ZU`gj=R%n`$o)K
zp8#ECO%CHB^Ii&k&1e{RaOw~+Z!TA1W=vigs{=lsxizW}tm}*2jW>B(MHrnrdLK@?
zM!1N`D4Z?&f4kYu{=Xi>xWEcQ#&|dyz>IxdjdjnR$fmKPTs1lMPO<UbdmG+ziTiOW
zXV-O1t01RoIOHLHs$taU?;&m7yw+6c>)I<!T4u~&vS5Y6lB&rI%iW%B?Fpk9=wX+c
z1=?;EY;*<l-2=L#=);a?^5x=7Sy^D%lq?%9z^F6xW)hSBatz!fe8s)JMzuqL_y}|}
zVqhmy<}tAoq`*W)zjP*BWv9qJM=sl{Yt^f`VQqwXg@cu<0TddYar`j8o0pR05jff*
zl_hBHYHVa9SiM@{J2WFcE~m1v%G<Cb=FFycNIPt7OuKTXjKaFU<YhjAYF&601^AWh
zxQpJ_V&<Y?sOfr52;PGNIP){3pOPxG2Sv|$^-Fv)@`#V@!IqFj*dOqvT@?2Ti$A*e
zr-18(O$3wI7!XxnWQM#z{K~9MgYUylgp`TLN1)Zg?=UM-Gt51ZOA<Ke%5_Q<Ue=b#
z{FNPr9|oxp+#zB&<q4L>vhy%pb40(~CK@E(<7&M>kIE^OVrn!pA9Q4k;>%kRHX-Yp
z#g6Yo=GenG#5~3t1$il-N&$u17p-)0t9DNg-3Z=d5|}qE^A%j;n{_n*O*qix>^%1N
z&(I9hB7h!+AHBkC4kkMQq*)`Hx~EQA%H+Col^DOcsyT6h7;VVTRk52BuEqxazMD;r
zsI|$vR3tsbf}l}oThwoY#2nakuZZm-1qZ89QpG9L;1o?NP{R?+5#D}c@opcePLg$l
z5B%dYPmgf2CaTsw5r8e7RnYcXkYkHqED0PU&3gPq9}5i{j@aZft~@Yb{B^1RkSMA>
zhbMxq;q%k2=4?H?KT#_=YEusOwpF~1at;HGaBO^pkZA*4ZEKV~Ggyw)cpUhUvX3j4
z^*B+~+v4vv=j-hJf8e{##>nqm(CjG9Vjy}6_UhGVGQUWMq1+djr_NTUh+BKBjt0ia
z{1uqXP#nkcFbdpmEq4}+faRI*Q`b*JkcKe58~uNNd^U|kjxAA>3MjEn->X3A5SImA
zumb}I$ATG_E<#<vnN-WoqHVB33K@|c{U99(NQg|WP@iZAG0~{0k*Eb%>Wz$d>*2Vk
z6;*UGR9EU|Ff1}QldKlP{VxmJ7yM1mS47!MvAcI(H2l*N$@GUj{X1Wfjh_5`wNs?>
zHL~)4!mU%A;6>J7-Jlfu){wOs9td$8&ijSi{&p#?LrD0(<%H`NeY?a}i@QTYBB$#a
z>gpF561-TNx3K+wm8dh6*3ZNiepl=bn4~GMDYx40{q1u5V0*?`z|KMwpJEBijbJ^n
zb4<N?#~KBLsB|iz33V=cmjmq9roP&$$hV{AUd|IF$m(lUI3xjn$D%@tCItrwl>MFU
z6i`_5C^4+|bCh=`n}P26LpOO1HRfz<+g-0w`8HY8Xn|jgr#u2^a+n#;GyJgMoRtZ=
zJVS@B)dG%Hv4!~72P}SVWW(e`c7t|>xQs*sl&(PSF68tMD}MG$h*DWTA&<Fh<;;($
zr{dkvVKxKbBR<-2M@qe_OavGBiFCaD!LtM$?k$-~>nF<I(1=!+**}8d1tss4*|nb!
z<R8(_8o%EK0(8Xlv9~56LQs{Z>u~t?B24JPiAZ*Mu<DYuGpjn)YK(r$xyJ&~=2Kc@
zlr?%s%=SVL4B`IPGokU=(|?H}kYTUv;1I+%i)5(_R9&c@;v0Qz)Gsl!UKvW$DfrVQ
zFZu|D;isU)83$2snae7H(1y`r95(LfQvJDDqs$!AVePjz&{ZOhlD|e$Tk$w8I^>Y6
zT`_Y7l@Qz9*QNhR=iOV4!&w<`nWq$|$E=thy#F{doveLQ5=mCZo$F!#BVVO^;LBoh
z&z*SSVzceg4mmxHulwnPIhN#+%MyK{1+)>Y%0S?|6KntHz3SeN%VJaw6n8?GOA4#E
z>>(Z!z}Rz_x3!Yqh<Yah@+$&M_jlLZXYUi+vQKh|VWG)(b%$eu(U_RVPT{V8TtTRb
zp{kno84QSkE2Z`Z^OpP*9ot`2#5C#nDNvg<F3KdaXGPTH*lAg4jAkR~pwCB_a~JBt
ze+)jZyz29(Uj04?qtTX&z`#e)UZ5;@Ub#U{z?&5(L3lR|PWut185na15Up&kW;j)v
z^||_!jm(<SOJbVj?wntaLVtTdKj?!cm~HkFyY3B4$YFRKYQ5q-RvaxQL3$?X7K%W1
zHK=^xkM4=xwf7ZtE8NEd^m<P>X@Iv2fnK*b1Nev1HPznezV#ox+EI=h_(ut#PW?QC
z=i_(~{si+mw?RsZ5nz=_C8!mXJR09^C)+K$GaX~nrpcq_u>#|Yj>T#i38u3sf8E(<
zM*j~y@w>{Iz)Qox_)a}<8n`Sa-M&-z>KEu_21%}S7AvIeM?;~sz#_~~ql}@u<2MYE
zfZY4s088Zqb4eV<Xo9d$DRZ>_6hC-v(;kiY1aE}r*f^_9=FWd}vt=(VquQ*BYXJND
zqMJ<=Q1K$lQY~l#X7Nn$c}CPTAVJ*5J7^v8e3^rjGwSjGSj6FR{aeoT0=Da-_Nd;O
z^hxD91AR4HxfA??WrXQx1k>VX__@u!{ic^9NgB|_SKI-(-hHwjvjT29?%&?3+|<~O
z&fC%LdP(tkv|@V91ICnC)?&WV*bn!WcB(zR){fIS{sw$cq#eY0DA+9VJpPoWL3D{p
zvA7xf$@@sYjdP)UEprMiaZ9zE*g?ZzY8_vcYhz1^*n(ET`Z}zENcNKu9b01Zy#b`7
z`yshAmPvl%xsbqzZ&;lRr;$k<qE27_I1XDOTWuVlE>YwY6|Z7*Pf4Qz&&4C4mg@x}
zsy_u<JksLf<v#ThsFlRZPO2STM}~O%3{4mqADF}5h4)Zaw#;%W>Y>XWS`_MA*4Cz8
zVhRR=+F_j9`#f;7oQOSPH2-U7V0F*h{qdIf`j-%AWz=F&#Qw&>J?2j~&IX1%X1y>R
z0YnKR{PROY)~Q$wGcK4)xsi+TCgJW5FIFEXVKTh|MW|fQc<P-`1hUDahPT_eVZ4my
z9hH_Gg*x`eP8VZz4{4V>Nmv8n`%2S3W|c?5f7h`OXQRlGu%hx+vQOsz95MsYWl}G=
z$R=OqCn&z&r__L3nvc6y^@*UlE#qd)H&F(!$}}#CL~=#8ljoh>i+DQfYXCQTs)8`V
zJ%hm~sF`iO`9kX+aqc=v?@s}Ud>@gvejE)lH0lgYok3b*;f`a795;7goazlcbm>{_
zjmz!aIo5Itd&P|P&M7E+n3?h>J%9s6AhU1rbDL%FkquszrOS=RaWu_}eLX8r>ef@1
z4<i!}*BvF|Mg0AxqngCO%^u1f?ItuLX@oRRo9Jn0+yTfa%a(S7%Qc5z45Sf?p=U)Z
zEQ0~h-jCC-di(4uKfBj9$u&U=tcf{$Q+#oL-nb8G(;VMdtZ#e37~u9ir1a8YEn<LS
z<Y@`sS|H1yRBY$BJ(+RZnLpaz<%-OojUbkQyegoQ;1MGDGJQ5+^WxxSxUh`1j%)LH
zzinEj^$DfOb#iKr?v2O!EoJ2H13P>?Vs8cM`=*eiQjyZA+EVJJQ9l4L*0->t=3Bc8
zj+;<qo?<Q!3$*Z2RKj!c^V6Nsr*cH~AGMzz=v?XkD0LL~SgdwZp!W|&A%rT<8)sWo
zBZAgCR1BsJ&;*4^{%{jMKh&$_vT5%nMI{$e;rTg=XeXA7Mv+MyTlWnvhIirN_s%6)
zu}pH$W+ybXsNLNbkmk?EZ&#XhuY5GjawhYL4x_}#Ae<ws5!|@Tc~L#4udUe6kd5eG
z2@KSLu}!kd`FC1?`_2oqA~@CVc_Bt$J9qro{f(*$P`xY-eG^#nKtDblCZlYB1Gd|`
zbJ2RZZZ8sVcZ<xQBw8#CbI&Z~_KYawB(mjyM6~i~5q^QZOW<Aff7<fXjK<^ke4NB!
zn(Qn<c~H&NW!BG;5~40p$lk;g>*-*ZaViW>&h6IE*zwgLot!P)oe}p!hnwQpndR?E
z-aY2<H_7U3*9sC4{Oc*^4?-UiXCs<}#eqh)3n}mYlwV;j{cp7^)X2BHeJEB=$`X>u
z>g7LasU>|S4g3oJpO5f>K&M^bQ+Bg<TDgJFeivMN>BFH715wfch9=(spuB?Cxl)&6
zM_kym*l|*AXIQ-DDg(4^E;zRgY}U-UZAL%6vBe<{QK%L<{jX^m{?(nb;MfU5R;j7G
zO>SIg9<jfukypWAfvf((*+w$w22tS%>2+|l0J8IQ4*6S|4R}Do3}#fF4U423Fz?xZ
z<`7EV$VD@;?o>0llgn~vJQZl!5v}$E#1smIf3k%??K8}A<x-}!l$LtP1dUjiXrWY1
zxZ1)>{8SA#8dlDbWgD8m4^LLVMO8b89YlW4w*ku=wdI&G+k+7bT<lNNL~86wt8v-<
z;xO33zMdVA?)+HZHB3w0#E+wrFCHj;>q!;zWxeJ;nf&HL@b0s@5ncFfDsaY8*<1^K
zG-bNJ?Rp{)$eBCem}?D|qTuF7i>P-wABrqcH%G@HmcW-3y((ebK)zOu7uK_07hI~w
z<7ebN<(UANAbeUmE|Lal>TsBlDYNm^fw$oq=v%MHF?+Tg>lX=0asEIof|2^X2k;Nt
z88o_g0Ehv_)o)^dOGr|tcBNuiLK%}O2sUv3%apctf_nJPgx@MwO}-sF2uMZgxH_Ih
zrbS}K3VjQ^F8OqM(VG76AhuAd<At%AD)xNTv!BG9Hp5=w&Q@m4s%vO(G?6IL8}_x2
zU=_f?5xQ#Vp<5>2i7-OC&~~yzVtobLS&sDg+w0CZ3VQ4|;JJ)c{Z%a+-X4-%x?AbI
zwEJDm@Ul>!Z{~+r$V_OrY@cTo_arJPW|(eIHSAG!nRg!M%zQsCX?2yL4xMoNJ744G
zER|ZcE$n*nI~;$RPF0JWxO+6SI=nf(stR8!$A6q61_?R@et(uhG6{?f8hlgjXf^eI
zr`|twa^O?)x~h)bJ@wbHWD6Gq@GEY(v!CNteb!mRvA2Gqi@EQ{jU^9NK7C=;6Wy2)
zW!!i))~>Ft;>(Y>4TE-Sd|SEQ5gtMfLZwlNjip0Di&K?cZU;u4_&2*x;4*D}eH|h3
zrdg>|&O=b^2da^vwWS1PNqwqTu%ua2qGVevLer_{qHihlgLcBfuTO-R`oL2L1#xf-
zl&0oA<^uRAH?eN;M$kIx>&+9|%27=K-j}zq=B(|6D|N+p_ClDV<tdZLsv>q7REcoc
z<sac$TKAYBy8ogts=p4}{JF?Qe1I_?M-NbsRaZaP%#1dnraYXO<%-HwLqha>2&X1J
zu&qs)!md0{%MBje>FiP3pl#qoJ}<W~A0Av0ds{g_AM0lI;8-8&0M+mW6F53wwRj&Y
zuX+}aPd9Co7oY}appWF)S8QZG1;EaLslXxuuJ11J&?MjW=#B_e??g_jaP-YH*e&f+
zcc>**8Dru{i2{mOYas5mfMrD7E|c*Ev9gcE!I-vfCh}pW)i>fc5q&?IZ(&s$ELMMQ
zWnMdW@p6yu%rQ__srsBB@o3P9aG)_aF|MWGugj`c5k&t8BI(QtP~)&_q9Hed&MqZ#
zjj0_677E^vIxgCboEoqSyHDl6!VbiaqLn5W%;<6QTU&M6`>eTQA*Y(%Dor%yWRVf=
zg^-?X|C2<jwBj#!@Ql95s6+7F2$8+%wp;#J69Mi?94H1%ebsih;M>tSE2F|%wUN!G
z!`|nvQq_TdQkivj;7P_cmx1#(H;CVdNv4d2(JN6T`p8v7UTJDVF6A;oyIaaei6!??
z7Ot4(D55i#^6RcBJ>jq|t;Dv_er_`0&bIwa_AhL}-R;*o?pc^w!%mpvi~?m?iR>WG
ziiS|d0c3ZYch1!edcLjWjS%deRbw;4sb+hZEJ&g1rO|?Oi<^EzS3|U3>A{CO*Y&(F
z?iK0py7eo`5vl@)yVR6rBE?mVF}+WOpP_)?1O1D(&gn>HiraQ+KO=~=$O?}hy#)e6
z1PGUv44<F{$C{;lFMpU4cWPE4#2Xlh?t|9+V<jnQR$n?o^aPPufOr>|x#bHDG)EF;
z_qN#B<}av82iR~sccp$)X{TX;6?<ot#YiJ>4X>7*lPGM1Qvk&ao=}IaoX{u|TDF|B
z80~QEY_l6s`PP0Aq3de4xauRLWJ{#uQnH<6-~qndQaLDXh-IKtBZIX&ZqybA8s&tP
zDX_8+<x%#^?gB3V$_&zHw$K%^)m7}Ee5W`(lDLaG1$lJz=p>6xJ7$G;({JV89JieK
zexA$p_ni}zb0ZpiT~|q4mybRV87n%c2EF?gui+jkKm?41N|78t<+``A7rDYvIrD87
zHX+a(oa0_sc2pyG4n66*AjoN|!u~sju|py8rFa)#c=1mEX<v>;;X!fWr$k|rqJ@DC
zPr@hOz^5@)!krbH%I~%ZG=fxquKIYBf_LGle+9MDxNYiGr`>3<^aO#PS}spXN)=Hx
z6$BB&Yn{i4JWQW>?PBo(fWZ$5`3f9cm~z2{5bse{e^WxCh+&S8uAU9WJmUlz&s!UV
zH*?jW`blz=63!rf9P!RU;YK?8QpB;ECf;7(?`S5pbp1UiJbZbd*5GBxgYnvhDGtTp
zH^uwYl~TbC0d<!#sj4X2ZMnE5TNtDNKDEVwSAUXntTCj1bvVua&<%|m=dM<XNy14(
zJ=6>-%Td0My8fsp3!vvlyBz!iRem11V!D8^YlOA2^;$hPR|6ASpU6Vop%@#LH};FV
zgtGNA+448i5_Gr{+cc$PhLBT%C70xt5Ob0YBVWfH&P!=NBIER>qcsD(SpbC{T&gpv
z8e5$v18tkS=%f~SBTZi|x7`5I>$6CS5jHj@WAkvs4!H#zv<i{N=5%UnOg}kW9zY}9
z-=QOzs6?x;Dj@_8hx2d4LQcg>H1JN{VvWw|d>HSm?f=M2PzksQqPFWhBYz*)rpOzN
zDe{8${KgGGyG+V8*EGc7F?HPro|3$77TJr@0-WxqC&SiElQ9nhZU$d3tHhP&u$7Aa
z3*gV5e}YF&I!7*XT30}Q26-{bQt-J590=O^xfW1oOQujM!b3z!hCw*0&dUN(HM8|W
zpYBx^iLy;(z5Gw2&|h6UwtBuAF3sZka?C`SYD?bUp&TeXUT2-+-gxet4wBNB<3^dA
z17g;9z<6C%#@TR}!lXr#(3Yh6$j7YD-)kK4(vnd3kvj>6+l036(<45XBt|{|aAT*4
zW>MMJV$IncGX#^`MhX3>?+{DTjkuD2bAsI{;3j@SXY+(<RqhD$EnlkE)8sFyS~2={
z5hoxQ9;?4EI_P;QUz5pih(?AY{rB`|7}d|hpXo8=V+%7w;#Hy2JPS9Gu6CLwspWj&
zPBJRI&+DOv1y|l7cvH}FtnwF@K(l-DBdA#y`svhR7>*QZ-n7Z`rkF_u&gjk#3{Z>L
z>O9cHOVpwE36@{Uet4H;%;<R%LDUMpbgc*23<xEFHG@Yv=y~49&J$5ny6hf?P2nd<
zG)ojytD++b+9VKH6CW6cTBhREQv9H1x{d7P5Qq;~f>jn*n6RQ!5OXl}Ktg&3hxFP_
z_}eM}0@fk_`YRak=f2@B0SIR03ZNI}JHz~hM4$6<G_$krf$d+<B=4nL?xK0BQ#Hz}
zDH`q*%FLt{ZdwskYKRLyUFa6M!dpRWu5m{S$6K*XUpG>Nblef)8{@y{#W;Yf&h|74
z(noEpXKPahtdGxn@OmC2An_KQx7NO<^}zu|w@~M7E0rcK1n<0c;iRZ}rk#4wIVzvD
z=Yvw3EhG^)!gbv$j(^ltl#q*Wu&pZ?)ouipc`kK&uCEjYnu!XBx7(}w2O})gF;>|W
zY5&}L!x!3UfiPhd3t*c(mZ<Hdr%AD+`wos#LL3>Hcnu{-2Z_7=ZpUJImjJN`o@GEo
zHP}b04m0e}-~LDVylzf41;#;$+{AVz^FQejmbznCyJBH_M)RO32k_0fq?7=D?ieb<
zW*k2dEc@M2_^|adV+_0CSu@#~cwCRCqW5i6{o-r-L3-bup)Q?Lq3UCwte1k=Mx2Yz
z64>74>-bEBrgh2?(quZlxYKL=Sq`f9e<AP5*|^G}AU;`7Tn0k-o!cR=CMKudc%J97
z?}|YB#XAXWieg@_&?6DTOo^*}Z9hL4tWem^zs1(nEUxC1GU9SA0OYX9M^86PUdIRN
z(tn6}>?M~hHHwRP%vlziy!Hn%BtuMcPu2%F<!9YzUX;P0103v((B!+RaE2#_mFSxs
zMVT$gGfgUYt9+!*)oSRr+BW;|OjQ<qYz0AL<!-rTH+B&Qfpv-y{(p9i-BJhoA>3zS
zn0VKL#J0enCZ&fjbBL065X8#P`daA9F@9>0_gnNedMzvPMrIenstojL>ZW=U5_z6Z
zb2bLp<m%Rj`8q~Gin1L5@m|-?N}@shDuVT@3|=z)3GvF}_gsS(ZK`>K&{|ge7sep4
zr*0?NpUJwhC1Fi()G<wim9sOa&B6#Z-)<Lk&#@nL8Y*G5Fo#7#icn)WV*r?Zw4}od
z&J!Q?$-;^zgWHAr5f#XN8$3BD{#D;PMcq9(uQL@(hM=a!o<!D>6aS0i0|HoVb4|Ml
z@<P^vmF7Ml&Rz}^Vd~LVav;1(D`D-_qY)lSBSt6p%+;nAgdM*<6p>{pwiE+288-?#
zBvr$8I2nvR_cKBKl<zN+0SqrnuHdKvWw8EZm|gUT-}y~z;kWjNQ96mfz6bB}B+duU
zk%OP-8sq4|k4MN@FMYC~HulTmz3^t8SXh~2eLlv7ikHo#Ye$PE_FeE)urGxOElJH7
zhQilSR(@XN7DAgbX^6(|&HO-#0R_ubdP;%z#(^|~0E6Ie(YyHagBwpSfq#&EXl5k*
zz?}_pY<gPR{vh8$4l&Dhqh!DJm+S*c<2gj9!V6m0<qOX4?P@(O_)!O63$Jb<#@Ga~
zIPi;E%sZkVq>wB;?;)2$u|_Z*xeRZmc08hdIzT|l^h;*=6}$!);WVT<u)mHw{N4fE
zq}tdCLP<(Pq#<iAJB4EsA>?28D`tJ{N`p>!hi*XqNJ`vQB5p6}CazMW&s-~rj<b!b
zY*{lSmC)Nky#?)aR!a-uj&v$>Ft@%})Iz&SN*~)f|6TV!g&~5wC%4t_R7Q5=NL4&G
zf|omU6P|WtI&_7Zr39(A7%sOU626;$Dfkw~yJw(7k<l7?S<&R9Zq&XyQ88Ofn+pIk
z+_hyPu4`%E>d7x^Jz&Ju8kx06>3p%ywA9aUeVNE7WawoZb(dPy*bulh*;KW=7A+#5
znU9<gApp`LKEFPta`8op!)asD0ywAAgp@>QhQ5x2Cis=z%KgI~DM5t=Nq%fXg=snW
zN|xn9(jR~4`>~VMk=6v4M062GfQA$~x<-_H`zBrj)1`)r#%sr253s_!n0hGaZ@0oR
z6EwSHQz-FxF+HEKV&^HroPX&;ad)#+NyxR^%mR7j_kC<ZtYa`y`8&~ZJ0;>{8zT-t
z?AiDeT6Ae2Hv*a_=rp!LGeE|8X@7Q=`GgFJtJUbwmb{5A#jOfAz7gYZsat7MC@^r>
zZLumg`AA6wfSCE9!s$CqVVa0J!7(z8Mg5l1;%yn_Tg{Dou0UtPXfo-3>Lp)T^a+XZ
zJ8T$+(c>rslu~5w(buI*JZ%6KvQ7JiRb()WoRA=bie8C|PQ*saI1GA2q<z{?GUWUA
z($b&;X5%X>G%6L6ya3T%P%9Qt7tA)82Y2#<rrewAde1RG#$&N0yfHy-i~FAvcZxMR
z`Cq=7rD|>pxR0&5g#%l?Pb`V2Ywcv7mWfW*XT7=yPN_@wT8KuU`fv<etm<UZAZ!gq
zHQo^)Nb~3s`ym8PSKXzZ_JI|SY#DwJQ#V@YgFq4$J)VQ^mC{vzlFNt|lqL7Q#LN|V
zn-5Wn@Qu^N<2FYn%O~tfZ}{n?DiJehayhzU83M<}LRpS)E120%2SwE#^mwgIpo*7~
zv3m_hu+DkSr`hn#e`z36TPliIf*xk|nw1ij7s83>TlhF>=%#)@2c=t9xFdZ>4|Oq~
z5-e)u|Mvs}5B{5*wjAIrJjsL&gJIfZ8I^a-N5u9i%o){N(LY2D2uD1f!2l-`@2aBx
zt%>3rrZxv%c)p0l4HQua1*Y$Ff`XZs>DB=>!r$&D>qg_8el9YzKRUj@k#lx<S)OLF
zWRPJO67vGBRK1iPXuR4a4ImlL9qWjR;o@t@!@^`489f<);C?k5-CA6`pqA`Bhw6m3
zi=9qheadb2^a=5mcF#?&vjd7qciUrF9aV-pa7n**2ry}>DX-G1ClpNdQ=(3~IVD=@
zPA4En6k2^zs+ICGljH^%NFw?<`<g7C0;^p733W^DXR5^wf+t+<B0)B<5O)6tS)FwC
z(~lj>q$v*4>2fG-JpI3uIP^6wT6_{~DLaB`#SNSs1H|xuXBjNEtspGgT>o^(Y$%;Y
z)9#3fK)z94qRmafN!K9ien-l91s>xIZvdXo&%~`?t(*5<)d{55VkqlxTi&nhbadrl
z7-Gc2r70P~B#lzAe1=kHiqmL9K5tZ4kM|%vH2GR&3O>R_dc`(V&H0mP-*{0%7If-4
zcQs8<i#lGf(wi#~QEZXZ$^1tN3@XO1E}5`mQKZ_MI}t#38@*9ErA}8!(6;0aQ;mg$
z=$UD%&!}X`%t$GJDnEuvun+jO6BVWjI_?eww8!tTd=Ld{xYYuw>O^aM!#8<7Zfj{E
z-1P}ha+Oeqb&`^_AD-H{M#@$!S~qbPO@(O-sEwE>-{7G984_Ay)Y<Uuj&Dk=dznIx
z2WhYIN&oO0qd_J~W^G{q<VLj_M@4lznyj{ipJ1EH-eSmdt*V$jg=|4Qt5S2BsXAa&
zMz@!*E$g*-uP$DrU^Mql80suoIFn%1H$2X?k~8LlH+8F_no|*KHA1#%3jM;~5K~&y
z9jCw62pbIsz0(dt6Y1R&;<}ISJ|_3XFZbb~2I$ZF$=J*12Mz*NLaF=fOoeJQKk{N}
zUKGv+XifienxxLRW4TdLR3ki{%J0<%pNRRQRB*O^oA_<AjhOyYU~jvZE`oU}M~L!|
zu5kA2H6v&=RY=;J?1%kn6;Af>dw6VWZF6+DfC^fiV^Q&q=*q+v2@B5w2Nq|(60yIX
zG$(Ke)9U~OVBO~MJg^7w1^wdk&uG1vlV@yvc^ncyd>1a{sK@qQcB(JqH16_W@Lp+j
z=DB?V?g&>PP*tLUcMYzzh2d@p3~XylPv3pkaLA5+slqvLGhWkjv0`4ug18uwRcR=6
zW)E7?D#You(gFx4+G)h;8~YsVTJA=ou~ZV;%4p-b?_yW5q@!gt@NQh{vVLM!*~L7i
z8m{BSMOt~|rh&$w*6d+pupTCBBh7@WKzFRvzjt|G^e)Q+;2EORx*vEYM~T0YDKB1W
zAAKTs7^GaHnLm?ax76gL^6NY-DRcdhH1_Md0|Klq#hC1Do_z~Jyte6Rrw1Zo*XZF;
zkn~vgLzzFvE08XKx6vk>JmzMLV>0&+hP~=D_T;5uMf@X1CaD2x3T$_A+kJboe?GMd
zo>f7?6UJNlub*Ji)hW3jDs$G;jdJ(nbLSL>w^u@l5K@jE8Tbxo=G?(&sw2Su^}g9y
z%7J%)Q1g@CiIVQ5=kV28Wb{H^L`gz_mwW3NzGtilKhfQThRcc-N`K!rvb0wuV6cD8
zzkv9z)jFx<AS^PB_qoa^o{xayy9z-4uaq@oBVOz6(3$QP(fOJF_mWv*9jOU7&IhfH
zKCAT#njtmyRUPwCD}eQvW~-R)D#O$HiiE1)0?_*}SQODPM`<S~DgW6~#K26e!eVLm
zFy*cGB_!>%6JCVwBmE(<fBIKFBlp+L);5@5e7|Qu&~l@Wf3G7f1x85dMw{xMCK(ig
z)WI@f)cHmBG3zG{DwQfR%aox|WsN(OL%BE8QS!-F$<bJxDoO{GqD8!ctld||Z82ya
zq=RP&j6CYE&3aVJ#Ox*x`s#a2x<e!9Mc)8r%c8p^QDyL6m`faO{TLoXyJ>s=!ZCS<
zR22AbAV&a3WPLB!64;%-cL(8cq<F?_J2LU$EIH}VlDY;!$7+8ay2KFS?@{i8jl|gA
zDM7(+N`c`^>ct_}XV4sFhtOK$lpaL8G~#7!Z9*#}6-FU|>h1;JCcL8}d~nYl^u?<_
z1y`R`)lY%g_H+CtL_eR(yJoJSUy>5^*Fu^P5&#oN?o@~c%(33jHB0ooWt%&8GqAf5
zDZFx@62xot0Gz@z6dQBp-Gf~+U{6qTAu-axDt3Rnu9MjR+_q<@v(cT_zG=CM>9Rzk
zeU#raBJu`$)GqJA(<tp)UBF;fm#uNIK6`0~t!0_`PSlLt8~i`(<_G}SYgnS*$4rW$
z1>8812Bf3en=oE?EE!u4dsybF=tHmb0&_7LkuxVHK5%terVJ3XX6p0m1{Ni0BJ&by
zjkOVEDi)>@Vb|g5+h$kNuwvXP_>-%kl~)D4c1Pu7QJ1dH8^~DU3J@53#14627aD_?
z0j|Quv_CK&X1K&rjx1Wd+GA1O{;v8*HA@er?ordadOCD!KqBMDP#ChHPD1w05b=gH
zX7VSo_sy5GUWH**;O&`aFQy0mV{r`(H{oC-quaI)veM@e-nC**oFE6rhxG4Gri}1X
z@$i0yCE)^JE*m4OCbUfQGYND@nY6mx<lrjf2zWjHa#+c6j_~J4Fyeha(;UYiwKHyV
zKPv<u>p_$+9hYffxJphh`>FvHu1xgTtC`<LbU!Pi5A+Iwph-&2n6^q<MT`V2)2y`>
zNnj3b#b&_gUxYqu;$wTOv2}p^XJl6GgIzMf3<C~L4g|lR%5|6n+5f+E%jHTq?S?Z}
zw6)EPx65;ho$fh`>lejAjri>Y5!N$+X#b4mpr`tTef@is8Y~2{js|+>lZt(IoIY$J
z#vZ&t0m_xeice|~A}MLd+W&}~&?H|<^b3e6;B>g-nmi|ObvUAYkR$zS_v5){#~VK;
z0Jxm_t~fv4-a>>2iV>voaphR=r^?EtMY8FY3zw^c_67HH1B1QK516jc5#wc^YO>Od
z)qj&%MlkT>CwHdop@T+UMxfc4nh~z~%tj?ZWHI$t<v7oB$8oJQ)k|CY9CLzoiIt^*
z^IPw9h(TQx2+U)Kle&ZVzhV;EAd-o$SLj+3lM0jWtG-KU3*bIGt6`m9_NH+8`ZfqF
zwRetH@D^DUJs#yll=PIJlpjlGMd!~h2mO<v`s1aS9)7d%9cZh@$ru$y)KPJW8&A8n
zK(@UO17`~52IyZ@urP7i^A&w#hE-oIDhgyf$-6@#3jtpzRPD$b2b?2Y`QVrJ=3WNg
zc*sxHv|{=u2b)-<p2|mds~`MXz=jz9Y9R4QfB^PN>$JjI_V1-MJNyOsI4=?b5=sMs
z4rmXAixPL0)@&Pu4v70CDcxkhT%~&C&$=*=58y>dooCj%8Otx+7ZjMUu9GlC%IH_O
z{@wj$XpjS906Kfc1s=(duPv8R$-^Un*z~I2*`?QcPoI8#mcH0FOD+D7lqN~%KLZ+q
zb=Jcf*Y9Yqw7*kvs4j{1w4K^+BqOlvSxXvhDt}ULP7f3Ey4tcJfq$H|P#EKSy8am8
zNUX+GqGpb)pUMJwB=s}n3>T+iOY14%hl8~`61?7WGy!wjMAjvKK7$za=wft|g&tD-
z&MHL5=U6a{aF`FaJAemvy0<R4ZO0_AQP{5H-k^VIx){Qb;r2KPGHBkrESH&bNj5L>
z2u12QB%-O@&OX=zT_2QKe!QSy#Ho)G?l<lC;Mb<jzD(|0!@zgV{nzU|O}+;JZ3a@4
zcbQ|TiYlTZ&+a@A&-6crzUty)NY^4gTL^b{;t?WtXs63{XtcJ*D*etLuDI15Xi(+n
zA8E)As#aS?zVa))<WzP~d}~h)G;^Vqxf`54)p>VJU4@m6E9si-@Rqd8X#Bx)G{HL&
zN_3WvOd2~6KkE9ES`2sa{CKrkyEi@f3AYrv9_;Z6Tav_}fhi1EVM-oP_Zc2xW_gS4
zn2eDTIIim)&iy-fEBFZL&iNH`X|)JCUgij9p2Aw*oT&a^fvhbRc};IPp^RlW;13z$
zmt0093>U%VZ?PLapH8GEmBv00N^tTj7_6`&LzS(U1Z(nN)d$6mMiibGuF?h5$+uCK
ziVPX~AStGt<e|1UVkI`f(@qPdZm$AG`_^Rc(Y4=50Z#v?%7sEs+9O=aHQ%e65hdhV
zkSh22^zIL4nFkA2Tyn;u7_pCy`*;P~Zr)tZMgj*C>6~%~LyzN#q`UTUOOa{CK+%36
zJ^Z5zbm(oAByxhV``X1@j-`F=872!O*ZpD#lzG%9wG9rBo_QbB-QT;~q#e|(@+=qk
zdnCG*C-p0$M7g#n>xdwC?BJGYW6fUA40YnfY@!-l4yVbvQQ+YjfbnIVp2T+^*Pi>R
zT9yOTDQ(nRYo|#p%`k}s$uHw!HM#749_6SiJ`<v%%)`78I$|wPDR7*XX_yU_;rO@k
zI1h&Mnfa}2WcLn3vRybFkmcTu^vZrtpoyzJ?28xYO_v``zgG`$M#WoGb*9XCcS?ce
za6fewRm*Pjqo)iWkOZl8z{ldJVu+;>mdkdgm;M9hvWs(d;>*w6of2`J!Hh_=X`2Fq
zxeVZ=`(u^h>H0!t5YTqrL75Lowp6CWFKAUX5HL?>O46JQKZwW}kGQiz<Hthn@h)Kj
zILj@50Q_Y*fn!&<A8pE$EzEk=9ucXVL=#RjQg<SDO!bnUV%V>PIN%q%;zG_T`6160
zke&uJ{cD(l@udsb?xLhrjzMTFY8J~x`EfCJY?02i%=x;h6cfk>4O5b<lscy!uFFRR
zgxlv~ROO@%%gFR+|DY+HwMsid;PZj5l9<TF&RM5;|5|0G#c2HbOp&~!c4Jg~uD&C9
zL5!eCIc(rZpQiDC5upNCw$25=m|$RJ0&(#U7Hc`DHxW5aS<F#gL4>)yC5_K>(1i3l
zS_x;WYfStZwFf^zV_lI#ort+!rTqk%xw5w!FPb(}BkeUue|ygWyYhj!M}}iB`$HL`
zz&4BNS0Wlg+w<%vaAo})uX8%Wrqtrt2!LW>-Z7d4?Cl<DIyr-=n#KI-jwAu<;HAIa
z=g>@OPjJLy3#i^jD_2cp+M?y>|LZiv%}I~SJlw%GfdDTTUH!Dg?DGdtFF~V^;tp`u
z+bg|Y8i<L+A1n%X{Y6{Ese(@m+iG>Z+&gnRDRm&qYiWLw%_&yucK4kg8?Pkb3bEal
z0I6C#8|R^)sY9wKLx@(ItXbQ*CKw>1UoG+QL0p~DF$TK{{xeLl@)MCQuE>JFfJEzu
zf!7jjytZ1K2}_lU+9vk0+hVv*6@#7f<2tHpQqy&O6>DP>r`GI*V~T~7_hpA;RW?YK
zFrBcvW?*~;AfCjA#Mq`yi?Ul6olbHn>hXV0+mJ>>Ly2idp<!K|>rR}G%F=iBoYc-P
zioLe=+$byFsdU5N9P7>1tBK4@N2P0q<_=m}JeCsx{8P`byHbCjK4nBdfwK#{N1_4*
zLJ=vo%Yucy6xJA*!sxqgfU7i(LWQiVBTtpzn`Qq$m*$NtE9Gvc^aklZZYV2I0<b`T
znt8)gss(b={EE-6jv2`mok<hwU?NyMPml236%Y;4>diavJxJCP8u?B1mFl|hN(0+E
z<8{xmMV5H0Rwk0djb_KEEhY*l&-RhB(BNbp$c&0MY?|i5Y+_E)4nK$FVy25Kx`MOF
z?!uLpk*bIONxi=o6+L4JNFnZ7uvq7VOsH&n;=K!3Bf7slFZ2-G41BMfuR4`@fLzO6
zZ)l)4unZ%1ZbE5e#=E9RN<YGGbgxc!-<1XLg%<!;aT)ckO4E?|VY%~A4#O{5W=8b1
z+VUcqSuGIpn$aVtG<?5pPN~M$$Taka5?hkx{x`P5FUU+c9k<^8a(e*c?;nJIyjFr0
zp;G2E8O7->Ex{a7g;-qi5WT;T$}e&u$o1FYVYKo)|7P(glI7b1uX-jwKr$)lS@XXw
z=KECg+UV`Hg}>cHfTs(#uFPgj5{{%+!rUBt_nM^BOTMrp3ov}Q5qU^YboskN0aM&n
zSix};4N*bJc;?Xo+0Amx{|sdsD*8W8<_<SFbI77Jqw5mG&?(Z;VH$a*M8m_?>c|Qd
zp=n(fDvEk9xbqC~Hm-L<#AEq~7a_<NxBr?NW<~%Ys>-~X-u_ysWv$D&;5`@3rrZJo
zZdMxYL9=xli&T|&WK+~>KC=vkoj#Ry&R&V>G5JstejQO;AOSz91<ESUhV^<5aqIq(
zpE+tG82?UC(%H}13SnzbG69mxe6CMO7$_tOIP|A&QBDw~sEf+*m~L>6)#_&BQX*b$
z>+3<&HQt4oE6tJMO0A%G^&}0Y6=JP@=08mDxjKuE0=YD%_q3#Qr{f@0+JC(++h~9T
zr4!-FFtbnvj{7dsL-~_WX+^0pVx;8;WFF!zz`c?;2ePCPWCkwc{Jz4TuTw%ns3skG
z1W;Q^hefOu&=+pVoc&58^|OMn*Lz0*UQoZQC=?SBXu5Bw#<S$j2X=uKzO|n0Y_)z&
zmZdRWEw5NAZ+Zhm6%%BCV_TB<vyOt4eyq=<AUqBF<Q%mfp+LtWUp7MAZtj;<as1^l
zxMYSL_sH|0JiYXKjsOrbri>Z{I{V1Nv1tfQl-S$ZKOA)lW31t0Fwmp>r$wi+h+?du
zQw=fma)z$JWsy^GtHg;L8{4d+m&8W)-4Z&98Qz~$-)2eA8`&2G01oDal@TJ_q8n2|
z`;9qoGP5Q^xn>Af%svqOUyln*9A!1p=Fc4-*zvNEQF*1~v{h6AukbU$5G9>3^tzin
zzlSD6=D)RqEE{FkmM=<NY=iB}_b8MDmiK;az8?1i#p`85Kj8KFS<gG=tpQ6L!IRJ>
zY&lXDy*hL)^!hx1ZG}z<hYUhYkK@(sUU}zO2G3bVSsHh_XJKi^=4HhXB%PisA{c<2
zl<@`9fQH|#k{=BAEHxxQ^r$oPh0I2na(W+IDMKZmnBlxP``)i8MQYMl*>&VEbE9TS
ztLd(kcEg4mUYPdJA;+<afQn?(dIC3jyFiriwT!3H^mk=&>|lsGVQ(ALvtqLS6FGLb
z_mEP117-r~&zyVRiIM7KB;?-=UODUSxK6eoS;-T$j&z0o{>C#uukmLDbRrG*KR@ju
z`MS4<**%jX?qB^?CVWW=pgXm_u>m8`5Llhv{cV+cDxuDsugnYs^|T_7F}bN9jIHl{
zJ=U=O`S#fd*a?3Yc5r0`>zVy?0rP&6Zy8eitpOvT7Bu|WSDKZ$gd-3`@53wryQ<X{
z*X_x+uGu>FED935uk-v3@q<KU2WGJHDoAVFQ@!u66l_T8s)WKhy^?<>;v5s`wn(#0
z|K0DvKg57$41O#C*~6TMq8a+mXPLrVPu8ybHBbPw8U&nL@_WWs)79SuRu(0nRhc>c
zGimYb306qjPlm2;+zD#Z(IsT$K+<UU@Z~^J!ymff^L%$QFu}FV>C9)dTt_uFN1cob
zqES{3K^p&VoPJfB^{XnzSzDD$_sKYT>*5jKjVELEtm3hHZhtisohN1C$faTl&L5^(
zk*ft)u<y3TFPB{cdI16!V?murREF%kie<w11LXWv1eNKiTbbLWYNvbcYPz{6vq^3H
z{jpuJyhXL!>(04phQekgM@50b>t3IwSdZTA5(J6vnG})yFcF*0EL(1Q85wkg!n2Gi
zz$5oo_S<AWwwvMRjsD4rJ8em3<|ZXgfUW{|N148Y!o%g+_7BKZ<qOR{XuffXlKINr
zj942Gm7f@KJpl9YAbw(?^FBt+SQNsaP8TK5-tGvdRKO0iv!NPRCe5U>sICwh4_Qt0
z>P*os(}QCC<2g0S43Wn<em!FzyO{QP7gR<o7K}h??>Mwb^Xyn&F!$NQa@sCl?O4FW
ze=2cF?(@6Wq{OQ1JBk?l2?Dy2gPi3BD3@TCoAFU}4eF|xn>U+I;tuc{Vf{AkxX4Cw
zE3g$W(VtsTtx%^(w~x_^4~rRSI$5v_iSYs@bzFwHES?m%O^D~co%H3WZgooT?TbwN
z0+f^Su_me>wCP=W2SLgOcXN{k*nbxO5m1zK?WdUEjhvGV<@|(q2?f#G`8Sch<tFC4
z6S;!|0cxrqL#_SnL;2$pg4Te&d+_;5s9`Fpfbi3By_k34GEuBX_5ftOwsLQ`bim{D
z13><V^SQblqJrrZ6ui`4FxAL1CYy=-t>lN_9e6%<6=zvXp^IEAy7!GX5%Sd>2lr!}
zI#RrX>*c>$7R%Yc*2KZ1POs(Gw)c8WQYRx}PHF3;kn>-&;u;ZNBL>BXc+v~QWXkYz
z9xnr~mQM6Ra3eCPxg{kB#kC~bXl<Fx#~SQFLPXxU9X4~n#jRO_9<+Hu^DVOZqY!ec
zoI1h_9|~8s($zRuA_!Vng!6eD_*bLE>U?gcg%^9EoJ+n=wNJW$SH#rZTD_5}cqXYU
zHiad8o<9~f$$bV8Mj33kK}{vr<ruC<^uAtof)e)EY8MR4(s3@%109qHc_mNJ@Mwkb
z8lOUHIz84cYcZ{sEB+id|L{N_0tilf(4?)IA+_Djik}cKn<=wBp0~+jI-9fey-M0h
zmM5XXXTkuhK_Gav`rVqDeqslB2*0YE-8EiSgW+LautL=o9Sm{vB<GoA=SzG?WzA;-
zjJBFsTEz+<k5&{{pg$E-L*M`}@p+%&32<%rK#lcN3H(Ac%~&~W(?RG(f#)$Q<w{E+
zHOC(O0F~`K-Q?@8`-v<_tHoRw$xTT&OpE6~-mV!A9QSTH@u0r)_;?h@%T@ie81Zl5
zA)4mrQ()l76gqhx)!m}yZR<kekVWR@9oA6&wx;HYS`CeGb50^i>Q(Tv0X3M2wuJfG
zFAz4K1Pr~mIM_FSZ^!=<TIWKz6~w7q+%X7}!|Wv~>=9e|7F`~!@U1*s0*IWMW0fvb
z$p*+2i6ydY!ols!b(0AQA8Dsa^=s<_k6;ZRParB8_CDCsR2+iR*>o^z3@!3$Q_8*k
z`}}M}kY8>dEi2!bpcOkl#t4TRor-q-FUit^QkK`+E@kh7*O3l*iBVol%YW-sI&54d
zxt4-jLAA;z4poiBAhxlP(TaGDG=eo$LP^?cJ6(t+5}Hw(k#(Q3(=F1WOULN03?|YV
z`=ibhO=N9lA2qud#*FqQ>T8bBOj%mWbB+EngJVpnTfuxg{$_*7{h}_K{YE@Fwid`Y
zeN{HP+#U1pmeD-NA9-l=;;u^4KugLtgs^_@xRflb6+i?nzfwcu`;&<7vg0jy$$zDj
zH1}orF*=a`(T(eg+ok3Wt;v=WmFNzn4|eJX#vK^!SiRfqSw61#`JR6<N}w%Gmv0_k
zOECZ6kaf1eSBKmmU>wQqb{r#J%V~$7Xt2b4b2q}i5=l1c3bsizT#t}IsJtEEV0S?T
z7~~|27yks;8-~n8!#Fy&isxk}=(nmd=XrYG=Aiy4T(MJ4vSva>-fjyv1<Xx4CTA>&
zCJsnH;xN1nA1unY0^+X8Qh02+HIa`+ym^$X;fgAl#uf6x3@Z!%Zk-mX>X{W$CJis2
zv53=QWGWBnzh*>{F*ydVg8xEc4Qz<lr;5teC(be=-@YAJ&vfJ8YD=CsF~0+cLOX@^
z6e`jr*dETDnyYa69F35;*l5wjjt`s@#Wj%tuxdgW|7me@dzz(|m0g2M^o>{5QA_s>
zQv=uW>{wI`_=hh%8n)h99a0;z+4=Jqe+jh4utPRBmMpay$7%pUK)%0xakhU4zoNtv
zy<tZqZo%P&E=L}i;D!`a!#cS}Dc=Pu6)%>~k`5$%nz;gdD5BFgAL{VCa663Ct89s|
z2!S_N+Ccx;iI&ZMydCv2I8Nc&lkw4#dnmnptKK~Rj(>%j5_|0g+vTt>8!ft4gB%3T
zpPQkr_AJ)5Nyd+wh@#<-v!$UgC7mb^b7%>zWnI`aK;#a?dH|rkCyy<$^wb7PjF>hd
z%L4kW9DiilTqWX@M(|MY9s@P=F|Qmks3>SA#V28^O|jmD1?6x_^y>RFaQ#3uStD6K
zza&xAELK~-Ldu$#h5}@Z#9HzYI_AwBK{O25dD)dG&|<PeHuH5yG{A21ZeuWSqEP*T
zxZquf+ZEekjEgpMe*=vkv!}ZaGmJ00ba1A(;w4ulVTZ2Dn270#7tpuLB6x3Ve?G81
zLb=0;=Fyy2N{h3np#?!*F)BS6Z4Sc`Dgot_oW68S&#$U_+so5@1GH_;ubN!xxlCD<
zH-$N;zivG|2znLp5WmFLimkRhZ{7PM?w)m0Lqf1kD%we0b44cpsau>FWp4h$j{{j9
zL=9H4#5O`QrhW7+%5=l+e4UPm+=b!oK|owsyKmNeLPJy}k8urX{$6A{Q>L5+iGUJO
zXEs2So_rAgYi(#Kb0&N{1z?*~RQm7h(*GG^mnH~72JaPq<iLGHj1Hl{7f}K1oHil%
z>lu?NP?3?$Euqm56^H>pp~uPDH=Cs@he_U-%BZ1ui`#iPljNs&{fh`@<)J)XaJQHm
zoyj%~ygY@wAePtFKQFr~hGd8$#1yiETf37NEj~E0AwqF|HU}U>=AC)HK70C^j{|n|
zySj}K@$>_|DYxCghtSmA5;#Ulw@|oGx?h0T1~Q|z_L5+qHt#=c@FH~?8Fi$}n3B>3
zn(odYKK&ZNBwAW&<U}&pMiQ=<PB(NLO_?=ZWSFu_$7akAsU>rFU^APx^?By#2uuy@
zQI91kwuUNND)b7EHghKb;CEMz*#EglQpZ$=7P<6Ka?}GntePdFUlB@ZmsrYSN|{V(
zMV+FEejfnbHT!uApi7?pfD{LU;^d|#7bI~{3|Eko3<2ZLdnmf1EolLRUHfFf?LgO-
zBn(OfUi?8Zr96z!@GDGQ#Y)vxQ1^kTId<*?@zVC1P@#=5@f;NPi-q;X61f`e@Pkja
z10~{e^C?)gFC8sJdb><>b0W>dY8ll~6S*c|=q?gSj&{k3c@4j7&Jll<=gM&qyb84|
zwhzEdI>cVqtqqZnZXbINt(+17kr%Qr?wu(m!+}O!V66AvrT~yMrNO!i*jkHf1dhEw
zoBakDqm;DyM9-z&>w5gf-5;}h4Y#rHCFnkrz5T05ASDVdGJy^w(ofud<{%F-D`-20
z*=x2;_>c?*!OP54{S!S+{s$+OyQs2~EKv)(W~HyS9Q*_=-K7q|znE75!-D#vsa>_p
zGCFWx*{<);F5XMZnS37Eb5R!V<f{N(JS~kfsjk$91KG93hZwsvL+_fRK_=E}z`%8K
zddam?IZbfk_M;9;Ycojp(#`aS7UU=Aecd`nS>#t$WjAFfz`J#qsc2rnu|#>H=E14X
zz>xtLldM-I9B8a|J{YS!s@M|Y;PH|ryGYo{X<Azxo+6b!y}=#xk?tpY?msr0+-J}W
zXV~S=YG?Q?e(!JUP%gC@FG413bvX@8K)z5A#E+@|_40diu{WKe19-$v4pA?G*me-`
z;T}Va5_e4e+}PR2)nxAw!vLrM3Zsk*r=p^hM*ixQ;A|F*b&KckZZX{US<}ylk;85c
zW+!aQD`jMkam73)*K}5PmYbw<gni2hI&z#cX@zJ{X~5bsJJgC|WfDaQHqM9(aKyz(
zQRpt7yrn6<B=9JZh>I1wnWv%CUis2@p-8=m+}$o5S^kUT0UIl2QiIe`wU;sCc6fH8
z5!^vJME&sNUNEq8Z=K!=Ssiv_kblkttA$CLIC4$T%f!myFN>5mQUXfVOrp@%^iCeK
zzR?agJ9{JUtA(4S8ZPoA&FpDqAFEgHus-Uks+HYyoB8?QI+RdDtRp2AU1hcliGAtK
z<rg^SkRI0-V-B5wz)L+AEIsp`dsa7|_J==82@QU810ehC!Mn2TzTgdi{TtKuZ6b%!
z*5^V>Oi{hWO{0?jXFFnt2#-nKOVaQSQr!a&<J;=j9Y5kkF+I&I^Ic#X`<2oU8LMOv
z($8yiC>wQ421X+aI0^`<ghPP*6o_0c+dVvCs10mm5IQ`53~OY%9mGGUE$MIWdR3I`
zQxYSda{vbVV6`V)_Q4xV2ttBpl#rC&1;3u4>JA5jBeoWpiTNR_lc)r0y;qfUz0fBg
zc>WBGW$#A3Nt!At<NuYpU7ETVc8gfCvhL~fVTj?#-ZSKGYUnfI=QOl7cftYXc9{<H
zDm?*r`B)bj&qii`P~%kH4Xr6?SLBaM8az2t7K8F^a}*K?aP<bL1%X;Xb6JRU8B}<A
z8~~mPA*jPjFGKj;n;7R*&@aS}kcL%UAM#s#ca%^J88|9qZF~21iq!A@vY))vXJ74k
zBi~#I@gG%t+&}-8*42M#jCmdZ>#0Ah8nxtGl5h3@|Krm>?7$#IfV#l~AkUUeyw+EG
z2KWx;`CUS3V+N95`J0UV`vn^I_-TfiUMjCL?-BjSo?dMZ++#kU$Dy?V1+VyZgYfnp
z4)|0ILK-1xt`V1uB4!40!t`h?XcqGRYF7;Q>&;E~u5%r*G)h3-({O<P#7KvKvk%yS
z9Q;T#uV>xbBu0Z4iuyZAftBiRM+;O8Kt+yR@&|@QWkV@@KB$E$W;V|Gj{O-X`)?Z1
zCE`T^Ws(Ya4;apHBH+lG9Awy{M0p@bOZRj&(ZxN5jC(jhTj=I(!X;eG*%&gf!tpRW
zB)%+;){@Y;g^T!JWs7yK!LYLmk7tkLZZNwglcYs3qds4_i=}$!$LdV3H}+jlrZmlF
zPK0iG3qh*c$j4sNcEXbb!do(Wuv3%p6~B-x`uzizFU{Z}!XHc?0vCppy*z3E9<wNM
z+ulG=^k@YSGOp5eVG+>!pb@fq3rUYCiNDp<C-Hg_=Bk&$V2nOr?uisbd-j%v=(pY)
zpN6RBKrFZaI;atT73*}O3mMXp^s44Z?i||rz75#cXc=LFId91Y*TyV+Lm2c_e~grY
zAQQ6RCtVDqublSuVd!k#M2%#-nk%A8g+908IRK{90%3FUP;rECfAt<6YuWm#y9V%r
z;48Wrr^H<Yw_fUpN5o;E<Jp>de;9<x?^4k@kusW5Up<Uy@MmMpS;<Y<ay&vm>46&c
zEw;$2<U=$xJwNcWF$ucW!z*wjf?4sqW2n@9)v%x9k4J557-g?`++(WvHXH(^3^27w
zbaN&qDq&&Ci-@;5q`3H4aC%{*<hldp{V%*8u44poV97Wo*Zgg8%E>fXFBQV%xkf@S
zHh|!S5k=;Yv0(gS{GkA$wSzTomd|x3)}dTkyNbe2keXv((@=md+%t31jiP%gJE{KY
z$LyPQ1Urd1AV73D#H#d+1+J)S_)?9w<GJ$9l50whc=?t6m$F$P4nHVa`xJR1#@P*K
zQep{G)llT9O<1<Oz;C=*x4aD`QRxPU-OK8W?|2V3wAD0@{fllP>6mkZWygu%3p~jj
z$Ei)*T}L{jG?lMqhkOj$Sy|CUw`<}5jU$Sy<XC_(HBe*i(D^oldx&hvh<DG=-|NxI
zAbKJ~hR<h><&v}tU4U}+UEdb(D#>z))xgHkVT#RlJynDYW9DqGn@+%^Q`>?%vsjxw
z_%Kw7+G625Lw_7fhg^;lY+1y|`i9B?8?6+WeCO@ZYptA9(=L>E%eZlYy1e10mx^)&
z3e7jQxY_6&L}^G(IQ}FcV9%8$>VyY&b+qacNE|HQ1IixvyqmXufJ*Dg5pBVufqW6A
zS0|Rubva}nu_$UpRQ9keEKR8zbfQUGMp(6)*pp7@lYb{!>b%Zg!m62TAnPpOpt-_u
zj-D+9+lp%Tk@!pAuRQHcgf3<mZo@YbzV>>GmkhC<=u78zxxB|pMzkO%S`<v$V(@G6
zk!ICS@D3W-LwfC%RcQfWc?Gk%uF4LjYMViz&KM>4m&CMM;PCG>lb#7M#VQ}{pp$Sw
z_sz_vusR{0NHc=_bctq%XxK?Y4{a&LIYO51@p?GzyO#N4E}Q>dmL@AqnAVU$(LEuZ
zO0t2~F_2ZHIkU&yQaRKLEKg_`-0Lx{EwQGc9-%w7YMf;|-3@GPNtiJwgxI+DG>LIu
zwN}MK_{yiFN?(Z+NqNYMRskxXDDNjSO{44Kt0#r`&&LxJ8#FQN24Z7VOCOMesOqP6
zQ;v~1tlbuk+}h`sxlCmLM<;w<su))Fg-!Cf3R0_rWH;6~krs1QKDTz<3_vqO0*TeZ
zQR?1)RBz42t`Gav)ye+a{d$a-5f{_W?uOkf{j{vQuB_w>G@bQoz4vGbm`q&Mihyv#
z-O0p?a|Mu1S*MUwLf!rTRmjFdWA|NPX&G#?`M#KR6K{#V`Tsd=prtI~8d5dI5=I{H
z{_vUi&xM08b&Q=I4cLxEvsDboTP;Q;)zoUZ%uK~{kkuY}gaBK;^bHlTtkuI7d)UQ!
z7iTqE+Kd_y`@m@d6(4+IZKxfd=3rmqSc5whnxN{2{!Ag2AgQmw1p1Su$zFPI#S)10
z?<|%UVe1#;C5=Z7+(0}QCq#bS1qQ4tEz@E2R@=uTNez-Rb*X(BHQ@y6UgZ2zuqE^K
zp8cC=L<RPxWt%9v)_wQwD|v4Z`VgI)%m}l@uwm|=9$@ew-t-Z=V!{tCzMugZp)rBh
zPw+XFI5Y-0D4)ihcCd>3{jRHMt+_L+iS<&g-!5|_R(U@&j{GbQ6FxamvgAHZW2J6L
zAxScXt?Vk!K$3-Svj{7W472+hexTs}C2AGD7R{p(CTT&53$udB_@_PZfIS>mfF$d4
z0(P)QIEWYaWYm#CaIhCj-w8-$;GkhLs^+S!O!m!?2J;k&Gj#)9y>1f@KdimUl`AB?
zE2Wr3GZxqoSph_O1m#F*J56A>4RMBb`M<k#CDW*~IKtT;?38sOn;D~xwamQH@tGRP
zv%0s{7<iW=m@mCJ-7ix!l>*#L{~mlzyr9ed9~?t|N^N%n)jmlKvn&e_Tj4dlJ4A_A
z5D%0*p^bBlOD0ttC+67>dWDmQEki)@WKf2<`eS?sxY$`prIeJ%VsSa7b};whs7Lab
zFkl1+e(Vl4J)F(H-QVshNTT+8FT#NgmalKeDc5Mp0N{$(e)n1h=Hs(B+HYf%uP0Ou
ztS*oo=7%>&tKGnYj{rHWzv(56Yy_V(8#ix92+UVsKmp4>h|#;P2d+<a3=>~5lWLv?
zAeF6#{hRy;kR8hbQvuCB{B0>F4YHPr4<yilMjTv2*cmE9N)NIz3q{wZ=T}IEiqY=C
z{h*T24}nldgn_-CR<L8boc0#_J$0LR0NN06Bd|N#j1K;mD4;cL)(`v|6z`=5)bcQ+
zWPQkF&?2Lx_u{AiFfXUASsA*V)A_ul^aqlt=gnx5c0LC^^|aOu;sdojh*;p0PdfKq
zXs&~FajEt%tunuaO^1i$=6Z?lbP7U-5MRf_29>1vh@bnnA6nVkO%m%_Y>AY1b3flU
zMK#7Rl6ZY#2uum$=bj7Ud9Z+NIh<W6Di*UfPHA?h!crrTj4Ddmr@%?5U~2+ST5|o&
zM)ppt$X~KZ$`A`AJ9%DRp{lkQkV116Zp!MN+@lL-^J7`b@hQ=nV=~W7hUSc7%#WbL
zAef`b8FC>5$62{+7lG>JOinO<FN~94_H$dc12X$%DVJg?$O%N>$gucq4i~D(Zt^V)
zFI0<ts9YG;GKgPjPG&LMZ}Rt~PJSG8KSRPxLmRo7A)(lzwr5pMh-(4-Mw)-up08Z!
zmg0TGRpRv|Qj%Cic}_s7w-CU}K3-oS{fg$bsPJ~*MTJ)_KmpF)Q1E<pICRPHvt<0n
zTRFDq@Xn_b<%~g(sB-#6rf>8yljG(3ko-tf#K-cyi}OZr4pWI6z?QYFB06M#RQOxb
z8GlTGOaJIN_fHW&FG2YxJ~SbfsAY#B&1TT_|DHd*E<pxCm?dgdgoPG^bKavHw(o<<
zcAL?6`xU<`e1Ic`szeo?8ZPb3B$CIrW_LbHz6-v-065z?EkY$<Wh(s~wXt8Aj!^w<
z8|tEw_OC80$O)D5H_I9)qC~Ac{b9!4NL5=58Zk75#WZ82Ga)2(?^9YC5*_76Tyjc2
zWJ+)y9wWYJV1od36o@Vc2`v7@`f(IFv$#jrD#MY@EXB6ZRy7`FPrm}Z=rHB94FhY4
z)|Q+X7c|nO;aNRFaoU%O@{>&g>3zr1&^*=f!_J{G5*dFCHM`dRUcY}*wR!O%Ny^cE
zyz%t-lJRKc^xgO10f8tl2{munN+plUmUY3dakvFO0iDoiH6JF0_Hm`9GOSK96JC#v
zHV*9<t&%f+h%iw^+~fGh?4hz=f^bn5>UpQgR;cfCpgmUL04gibsN!HENTa!7pI}Jx
z@^@Tkd$TLGO}OEH0$%T*m#Kxhl1&jph%tE`sFqVSRXaXUW=Tr-?D_AV()M!zsO!P9
zD-uyD@yS6LUX!l{aE{!CEh5s`=5nujcu|7|UHH$>fro!|udns<I{EXD{9rF>{H29a
zAP_I__gnrYvR255M5W#S*o(Aefphd#CDs!<7jEt*lpQkC8A#f~a%`&%#%cJR+F{RH
zzqMdWuqX|4K8YRip1AR&8smllVbS?uUMrjgGEL`zNI2k#&GKbZwgRqg84<s<5^lU0
zN<t*~cykVlIJ)-k{dptjJ+E!1;ND1&0d20V$Hc~2?|D>|QPDjTsfMO-g5TiwRwRkH
zz5K~E%e~kk+Mn!)blc_w9X&+2fLj%^O{m%5FCFUHQE&E!6OZvi<u!e4Ue|Pu*$b+T
z2Ai4wjos&uB4yt`pFw#ZBDH2XWZJp#_6CkJ`<GRUhjQHzfHEf)u8#U#l_!2w3S}P$
zG!jA-UCIyE^wc~Pp7!HO1$^mMz?yn$%Jx+Wnsz&+Z-^3)C@j4AQBZpo`v8G&qUt?j
zEk$8kb}?D~8<VLN=`5{bBC_$xLorC;TtS=yPh7U81b8}WgnN`;X@rgS8j4XLu?31t
zZAR@i?(L?-hD-kpOA3LP7U*V-hWi^`q3$(cayA`KRo_dM9_xNqJP1t<xsLD`LENXj
ze8YwqoD101Y4nd>LX|SQbAofkOHrVTJevQx2FwZGnt=4jfEhHg=IgC)ky>120|A$M
zIkP8~r3RElelNF1N-M}IKnrxL-1!M{y8x3I6~S>NAjF6>nSh=zI~+jmfP$o@{A>6j
zsbnapDp$OoN{h?9A0|CRna#zyVd4v=C-F{Bn4C%g3<4;thQ|@fg|pVZni5*Sd9ap2
zsST^Dqbms5Z<{ryVab?^jxyK<cX+siD$QPF(9-jI4LpfFRd#-W=*#!v%RwNIGwBV3
zdWZEJ%x4g6hVi&X>S5|T_wp3dlr=$cFCgc>LRB`D@0dav<_}84hS1kU>K+-MwRQbi
zuc3yt1&>i?qf>}iJE(A5YP{13mbr2lkW3_uA~GQ$aUl<bUDPD1flv9{U=&IBd%gfG
z9}Z`<&6IR4=_soeJOY3ne4ZNQ5eW<jkSJzXKh|Z<=Yi3Ad43p)yGuM`yfJQDG8#%C
zzgXEF3Kz%j=l67+%R_RW-nzdmx@}AJ^@B{QYPSC%FD^0&5WVa$%EK!<HBEQ^B&ax%
zSo`UQPHqlmpVghjDgBIt(}lB@Tn!#XsKzlbuZ9Wki<%0B))De}J+534wqB0F51$Bl
zXYkF8S9oBW-<NI_y@kydP7cgnaUe_^C1mJ}ui4{gcWl;Fe>U#CD5)j`QSnCWy2A14
z*B#Aq*oeDLy~DHbp#8M?D>H81<4;=dB#v|;nJ?I`h^HT$KD^)TIZ(m+;>g1!d<DPu
zGTfJ+S2OV=b4+jNUOvIYo07AyDqGdhms`=VbbLNu7o84-*GO}E1lM0^#rLUCo7Qqm
z@~2(qngqc({m!6{>*=PpSICH^aa#Z=&6WlB$$neT&JHbb6kt3jth2FEVK~CW$nTX-
zaCQ*ro-i?z{-#5;W6HA>*tc!$3pdAd7-WsSUOdd=Mw=y!tWjEJwls@)2xzb<>IDxx
zvI{tItI3I0I6AgC|7px|SF(%v`wr+&A0wO&GIg?if^%-&!p5piBwDPW$YxH`sqmUx
z@+*MWwTCEt0PDh~so>%f<YO#w67QmrP#aDe*;^N#PE_MKfbhpbv=u{p@ZHJEndd+<
zNjf>)U>_=(<6LP3+4rekK9%H+uT@utr@0x&d;0+Z;iN4a1-_8F9Ep(R!&1aC?N>E_
z>PdJJBLoGl?9GQTd~N5CF`3TUDdsTaIw3}U=8{E7wG2@PCJ5a*T|W|8jU{BrKEz&B
z$`t*3!KH*_R<Wlw(`*cP=Dq{_rhU!l0%oKx(`zALe1nPAJF9X*&>uH!p1I96-SA<O
ztpYF|JM}U)n4A5@DwWB8T~WIUJ)Y<-M1!$twvpfpcIE_Tuc@?+6^K9rtf!b;-aZXO
zL(g3+WHxNFCabvbdvHeLD(6U6+kWFKG^HVhf5Cza6-nIeXSS;4)PSj<os-^0F$-M7
z^V!s?L;8}IhSn{y2aN|-E~?zTLyBrL`@?JT)f71H;qLz=hn(b@weN!T+`Ws){*tzC
zDqp6s;Zh><qIpC8aLE}Rh*ilI<jR1n#q4ine>iQUr|Fv=OUsAa;Rwct%{y28(go&x
zF&r?GdXihs3<A+zCTQ;YX~4RTUw#I+2hsyWFb}n?cN}?kMrPI&J3la%ATM<)>`kpp
zWuWmDACA-Ut))3VSFzwZ%1J?Z)PF09nfohj8FTat@9-v6{`D|cu+=~b<_BL|b`w%x
zwnrCI4y-uW8l7K?eEVg)v8`Ymb+K<N2I?#Tem8ZhjJrlzzf1I&Kf&jCyjGcF59`jk
zoY}x)gHP)fQm@){J@bpBn=Aw+^0!Lqt0xgbRVIxg;sC&5DxM)XpSuQK-cCNsi0Zcw
zUU$`>TxEP3P%ys|pJ7{N^wMmH!>m8S+NlXb(4YCD<-$#TdqYnST(qNGAtbQyq+EUZ
zv1&yYLl!77%uA8{ur(hRUEuf2`y%=Ij*NUYWkKHzARA!OI1sPEyecMF+#a$6!?GtC
zekxA2l#GkMETO5m=hs;R7;LbEZ-sGPGYR3@_OMEMqG=d=!~oJ9PIk&jAtvH4`2bCY
z6<X5dj?t0BMUqlHusV8hz6N47YlS>5X({V`pG9T)kabzusX~!8n}6}q;LJ7C@z4D6
zKizawk`f?ee!8#)^93P(;6PC}u0Jf$<Z;q1%zk(>K=yE)nR?5bD{+ZQXx%rQ9UJa<
z55no~dpAi}h=2!}Qjw!p+UXStu;j>=F@<JNkU!Io*p_sW79!HoW3-uB_k>vPYhz=2
z@!dh3o%~Po6(g+&9st-iE6d50<-q`Rj^+!ptN5^OfD)KS9;F@Ro-wObPMFhq-l^@2
zvrr)|24bLf34~G`0T*A;7mqTEp_nA!knc;TyoUbzP04)W$e#kh=Lnobyf=Jif{`Mc
znJr%$)E=P(S=BiTX~&^BeMDSR<rlK6<o_I|9GwyFg>Y~H0a&`{pWb9h50}wu$?)kK
z*AI3}vFqB@t}RRy`H_g38;z^%)1-fkZ#b~9!M_|kk}%e%&Y2@I_shEF-TQj?SlT-&
zzdq~75KH1@%0+j`&x@w!P)O_!RhW$mmK|CehM5gl+GXZsGx)|78f@IEiE!*!8_?S>
zK6&*AqU<vStwCoE;V{oGO_==(ld1za<$JZNboKY<Pp?DH4S*Q^8t;nE#kp@{0biLJ
zt)|+nCSRsb@3~1~y+L{S8vZGaLl|qOs64g2J<w|jV!Jv+w;It+`poHwxVtLyU)$c^
z1tB`aH@<-#a)^+oZ^mBT%AJY&;M{N?(1eY_|E!dPq{{tD)l=+;Y9^mX#gRbYvqXf3
zDjGO%o)8ziRD~&krI@hM3nWB=I(`xk0`35<hiPI|Bs!VS%J}Quqtu5rVOmmzPTWO3
zMS74``tpWq9=}8>hGO+lHO-N9fD3yKmZ&?frQO?O2{~Gk7<yVh%lDR}y35EYl3s}&
zz|o$fR)+Yc7qN_SE|QS<@#{S^(X=<6UI6feyE_?EQ;E_MV+?Xho)7Va%ZB!&tu=Ta
zAr?+CU>Rs58kKi_Q`efBaLu9X{XfWZC1_gu0ld|WTD_InMg6)c-GfzOy&GV!;|NZ+
zB27tz0D&%SV)vluMw;~vDG6YtWJDq?MdqiBv2rcw6wGA3Fo%uNN4K*!AcUJN+=-OM
zX<TThsa3!dVU$#ay^9e#d3IjNW{EEF2&R_AESI72M=)^~2~Uzs5tMC5wOWqF(Hc!l
znh4m2wBm&N13u^<0nHDY8~OwSrYezN@Cs}I8I$MTgB#WqJ3qKRT}EIOYhrJ%IL7w>
z;Z%Vgw|037N+k?;tEGP8D|0AH5rW(HGO;i0Lu-bdWX=<&320}oYzVma%5~_nuP9F!
z_`(th+L7g>L4){n$+z)Fp$lX7A_sO}a-LoC7-W_NH(ZbsUd|HP=OZG523tb5=8hMe
z_X_qwPpl8!_Z=8oTOD)e%hDo4|Nnz?(@14tErt#8&zmaz<u?QP?$rA#KM4wGQ>X>8
z^_7_QoLx!OP;R)<f@uLkursGpN+*oQ>dOI5_kHXmh9gIKm;XQjp&F4%2<a_ojMKX)
zH2@J>;7t7hn|thl-SoSuPS#j;X&qv$aV#-A$Z;KU6@n6F2{uX#Ks#=UX`}M>%0`4V
z=wIvN^9(`BYx!g!sV8n~i4<(=2PMU}rvtbHO-Hz58y)f<FGbN2wkl41gh^w#q%dY}
zKnXx@vZuUk=ma<gRCl=`zDVUM%jC2=QyX_RJfjnf@zM)2$&%HW{$5fEsU8~U!E(sX
ze{gg7R_XPs<~p6|AX#A;myBTF!)i>yx<v}4?UQnx+pzGWW_AJLuucr!%#?tdY;%x^
zDHma)ave&e6=vQex+o~vB6o#SpBFg<*^zuQKLx6bOQr;yVgzu@nmuUyxs=1*Z)&*~
z&yiDGoYNcM-{vA!q-;z&`^0+!g44FFH3TOc`O2122X6xXAlO#E5;uW;dC`q-2j3B)
zxi$ILDAvEUBb1OCrc0?_L}*07tOJ?+jt2p&VD8Hox6oU{v$AXN6JCYxHd0Q8M=gnI
zsL5{Gvp3(R?#!-D4V7cXFXNqhCg;Fi&L%R;gu%DUFvq+$Fmz&PI<%3kWzLNq<M5Jp
z?qYuydEc)oj)c|vz6H|<SQVhpn!UrGFfuF1+howUWR9T&JltP(Q)s!|5~gCRZH`Vx
z+E;*hpZD7C`v)xWH=Uk77^q$;+37zEh9$xh$)pku-jfK5+!+&x??lqXseT*$%+cu|
zxI8lhs68vQ%;6w0A@L5cAPjiXY8GmWE_%C!HtruoZY$G8Bf+wZyq0~9JL0GAK?QK$
zFobv{Qi2(GLCYg7zJ!kVY;0EU)_>qARz8@BG<Q3xFHze(1fjEC63bg?KAYLKNIx-@
zIhHA1)t(%d1NIrTkM#xUhLH$~%$7Byku!kewWWgD<OHKvdn+ia_f7RM2iBZ{j|YZW
zzJMA+a`fOERt9;P&{3?JQk+tPsuvYmD)+A=_f}}4a0<3ISMZZ4-lKNQOiUXz?1B&W
zT1P;V9YCvs<_bPW^uW+@c_47<z*8(*A-3hSr`ws!V9wBc7J3S9kmoO3k;xOl*gekF
z8XC!u(cpx=EmKn6P&y3XUL&RH9_CNfrxC|%Y$tMU6v0mAMYQbY=s`~a|7f$1<^INZ
z4A=rdM_}HWEBECJBKchRSZ^Upt!hUG!vE%AN!l^^GrN*lD@tO91X7gFz6KW-HIn!W
z>1ZU<7l&3B15c`v9)>dtS;u<HKWpd<|1>dK`+Y@;1wEH^PiDFJt(6CAw??&}6J<vv
zZ%IVr^mkP-38&0tVnNJUmYZVA9d2O`ca=*(2`HsB;WqH9R-)$AlcxE;?u8hCzn!o!
ztRVV-H?X-dWI3j%f6tE9ZZR(fS<uWm&O8Mb%g=yOGG>&mNQ;6t|EBjL5LZ44Pb=bC
zohz~q{EG#dj>IW%!fqLqdePONNL1rx0#|Zog}Rj)2#-?pL2&|bkh(tB8JOHHHoMpG
z){&)4QO3EG3$?gXQWhMhG>p%sDms7Uj&f;~6J=2G6EEb?r;vSI?&~_y!H^d9KNEru
zANy;P!fpP^1;v|!{q^onSdnH4Zl)N~NjL04Z0jD&m>}jan)|;=F>2}qLuB5?OYV{O
zP6x5H6%K1LAb~dUZ1y?w!eVf2a@Y@UTDZl?RX;$bAOu=+5(z_bBMw$n8-#gZi3up{
zNRXX319YeU0UvDXQbG2Cv^eYA^<BSr5$`-cH@kkMg1FwcO(nwl>q^XaU_GNA3ZYLs
z5+IL8ad6AOUaebtcyUOobfDH4?V|2V0X}1avtjxG`+NR4c*?$`hg*@f43H2pakRyQ
zF!)7382ubydbAHU2UdKT!)$I49b^3?Oe*1wwd^T=eX&b3{_FoVNgsB43F(R9CNH{f
zdb3JqQIS1Z8nw=5b7-<H9MS@_^iYJ42*?R*^1Fz#2>+J@PU(2d-t^5e+Nw>Et_gPH
zjs>>lqbtVTE5`q3$by(RaN$kb6!=wa3sx5ZM20GXPCc|n6QVpOW5gY0buNKw6Og}i
z2I_bPto28<fsKRnG~KaTA&hH<;Y=>YBR>Wup8|yVC1@qLt(WLWE6=<a^q?qgfL8tf
z`0jtLqi)fM0{@Hxc;#uU#SNO}-$&M9yR}tsO@Mgpn%inart!~93nM`+4~~a@Dz|tU
zvN##`wjWQD?{tCpq1D1Mfod-eNeT>yL@b##teUgT#4!UueWrjE4b*X%Sn>s31+nmS
zBC26?iZZUgCOUk1l+x=}7Q?s8H_nia71G|~1jgz3tbWGh>&I$qnl5>vEJ_}N&Ls~S
zp;R++nPocuUEBQ45wHHqh9T>VGT@~iyMwfri2-Gjyyon}Lj354_zVc7_rm-l&^{tr
zepUtoFakHjZ1XlPD`+S`tIaS}tK5%L_K5nHh)v%|jk+pCDXS@O(jb}qnqlC!D-#J3
zL3`fQXmz|{>U-w%^NFkJ-;TOX^8qcq78blP8gyPY_<dYnR;OyfVA#D%OQqY683B-4
z(|wSwEtUiivOv7q&FiWG*?mf_iriWuYu2Vs<FCqs?fUXowmi(!Y|(d4m?_>t9V-V*
zs-z{m@sM(ia8wk`Lg>`UGlds?iB^GfPPVs7FEYbI0(?M^5JzEY+4_$(7NzH|uo%;W
zCV+_3q`25Zl%3Qqi=?nC&uhezEGjH`=BbK9$uvlH<3aR>XAYY2W|B9EWXW|K5!rT}
zC0b3jT*awU&f{<4(YG<!C!|cycI^IQQcBK;Kx`fQM_NfdFbvn%ITMy1eSB><A#xyj
z^pzUQAWqA=Yj|ornwVwu-L?w)eO(7CxV)0OSbEGbHoZ+`2vbF+{qpU-@BHH>irDKe
z_Zt5myPPWBO#dLU0X2pmOQ)*?h0jy-0YK|#9@+0(^*jsVr-Ny+XgCYXV9((P<Er?k
zOg8V-UU3uD%<pXl=?oJ0t27pmyn^4>{%FC>F+e^_MIO((dQLz_#Gl8zqEfE-Edx6L
zB$^Dh`LW}pj``<aAG9P%j#=iQ{&~jugGAMnMm{qfs8vZAR8e@OTlkniym$y|!_aJs
zbUe-Xx7(&A9>ff6#kxoolhR?pICL0`iju|}8|AKSPZnF<hyx}TdrhDuc)RDD+4KM4
z?q&M1*wRN`Bc5jV5Th<77<mK~YtZC)z!4gif;?{>1(f^p^`_}Q6Uv@3&0_f^3RhQG
zy<hz9%#kd<+dKtl+|{t-9v3)Gs;3VqXOLmWDLJ=|&9q5G2@ep2LKtR%@@IX_r>J(b
zj577$9S3R^_c&W)fa(#-g<60)Yu$Cd_oI6!X8F7sYWIAhaltSo^It>w1$wQCuJ=zr
zN$+*j8R<3*>9gvx1)u-`3^f6$1OPP%Z-fp)eRYDL^=npfQ6=Mw+xe=!eW8+uLc!VV
z7sj-zSnvBwvhoJ4PkQ+gHOmQHw*+ik%tX_gWS%8r-0w+3w3Jc<W~hPNB3lkV?zzk$
z^eM7g6qhjEC%I#bLAOz_&0~8Wk}H*2hmUyp+gf;;G-!=D=_gYin1gz;6!i<}WkVr8
zundd9THVP0cPNga>o4oyct+`)3FS34(NfJ7rtng&@f~K;?~nPL6#Y^gr_Tlm|EY$i
z4FpAL+$ATxzldvEeC|H+f_l0w#p1d$Zu#@V#^$#_&QdrnE51S`kYmkO0h@;i25>M}
z2d{=kdfv|<5off)4TC~`%pPyxx-7m_m1^Lbfqqbh=huIS0fPaUcgepWti?d)^}qvr
z6S`ns4y&#RY1d|^Cw|k`!s2i}tXxhr&+a;XISF`}3x~vd`l5AQflcxUo`}K%WEr=>
zz`cb}N|Lsef=qB%%DEamY<Hsu4*02oJ}}xSrf=IPywhA$w-<R^cHx-<ldAvnDrP0W
zA~Fd6f+NQ;G+*%-%TwHKs>`|A{b!d}|DoHPE0Q_UHjI3)+Ne4FOc$2h6E%<JN3bV{
zCCP`Z?Omic;ma=J5E$%jhdkHo$fWOhhI+j3YVrt3D9K?jAm#`t81Z`9L>bpFtPyeV
zHJ-b79lOZEjb)Ar{vF%RiX0T8AifB*Nv${(pI|Kn<0hvbqwk)o@9zykilm0Ab-McV
z=}oy3)PuEMnKZnKuhe)Bzxy6i1x%KJN`J;?_)4yfgl3ky^vsZ0ZP`Kbk~;XAzel>M
zwJe}sHg@54LrNfl&z$yI4>rKvay)|7PXIcrI^+l2u);p`=gM&%7B(mBfB(s#eJ88(
zjk|JgBPmN-{ULOA%j8V2&eKix<2K;t9u*LtyZCxfC~eg<tZ&V!|I*thCRqITYbkIw
ze`PhMzo2eh#M2qMivqvo!_wHNg}D1vR(9ehq>Pv1|IBxf!cDupW{?Y}IZT2s_kmPW
zf{n(<Y<KIHRykr^s#dB`;dx|)sB-8Os}|j)_Yu44m#=LDoP5vw`btk7G?kwpD-f0_
zBpZ&Xox%I23KB}hCeGEdX@hhBG0kP5144ewt>_D9?+-HlAFBwsep7z<^wKBydZ1rY
z20b=;a`<G<1~^is*@!Kv!k=T}KiPE^V~`tWLocNLIbxX#uLXHk0-(Y}{P|9+xo*j4
zAqTEK<2GMkTb3sKJtJ^v{{6{^Z~t-skV2<jMuUpbxQL{{@mKxrkt)Su=8Q(IY!4|M
zClTuRnGd&vMYf%NeEZU}9xVDr6@!||*jgpXDVp}utwM#9g11i68)Rm;QqCO6$?KW}
zuDYc;uM*9HS_+PKVVDy-3a9QOK5i}HR=E$PzLX;NT`pOlAlu`xAtX)-i6{@5NDyqn
zTI>wBOXf8_WGsl{G`vIW57{7&Y`S;uvv`F{gf|0hetuTSk86-OvG*ey^YmzD<Qq(%
z4D4n__4oLeDH+u25V^VmX$s`%YHYewi0Ap%lfU>TJpz+sPo`ZabZEx7?}$i=!7^*@
za}(n!d2+F*KMlJxaf6<}VE$)OUhQvu-m){_<)~fHnbaksx{_bNnS#D$-7%a*ndvXr
zV$#;J?@SQG6zaK+`xH3fPGj#NX@uReO)T*h`o_Z1Z#478g13aNi@LToz&S8FFm|?N
z7Tzuk$OwS%5%hj_vUL`Df%U+T{$nPkY`f}gQxUEthBdE(9f!io>~>z>V$XH^h6I98
zRs3@PF!`4TJ~+__DLmCbwcN4Y5NAArIT1JX!havu)9`cvS^;ZN%c4wypfuTDQb4v^
z%qp6-a-vZahVQgxShM5kb+=^kWP{psrv!al8&w+G_z02)c!HA-K7fNPO#OGSCTA+J
zH~I))?67XYa@mFV%lsoM;Di8l{igU&ThNs8_mqpp#Uji=+C9R%`b>1S>g(b!Ep*9G
z1+Vz*JIH8;l^-WmC(ha&HXQDP^J(^yu3ik|Q{EfA2a$j)c_e~2Loc;J7grf;F+f&X
zj<p#6*t>?Iyr0(Zvs<zk2h)RX#ta>2Z$aZS#P%Ij(|{|(9q9&kvb)@OzG1w-pYS~x
z;93roBbI1hZ11U&g`sZ-S%0_KnV;aXGEi5hN=IZmQ7W(973rOumlPsG=S~-&MN~VO
zPuWi*UPM)>)ZDTHb)hmqtSd>;PH?M&#<Tu>oIT146|TNphP*^-np~>~qTFrK(2^PY
zw?uA?ZE`tM@QneEqTKD$UlF>=$Jhq}0cS%P86<)R@w>?pRH@TjVDK6dvwQO-$XHIK
z1m4vQLLH7#w8Dw4WF3lZmY~R-byz%Ey8vo_nJS0b3D@!&U9V#+Hl=N`u=a>7DVl<R
zlIUpd{G@Wy%m`IN0+e)}Y8rS6&ZWJsfPeQoqhJ3jw^xe4)D@;dC}vH9%n&{L85F%f
zAHVElffr^JFZ<v{3i$TQ{N7Jmq4&Q-ttO}Kfq(ijVFeGd_XYdoJ9=GO^LdM%auBEO
zPrxCd)z(4Hp^(@ks$N~7TRJGXRS>BHl}F&;n)K~;blmD2tO1yD>3_(=R*NA)gdv~0
z_nx$L|0SYyfnrku0w+E~0f_zjo~g8wf-~VRWEH6Zn@ok2S|58y7KuVdoBtnqvt<$?
zv}|1V+;u!gmof{7g4aOS_G&4`)IX1ZR@N^TjnP5hv1S2|xkmaWsxPt4zOyr)?GIqH
z^nwtl3YLVtT#pZYZ0hm@*c@!rD%DC(*+;)j4M*Ns`JC$O93>80i^nZ)u)1Z~TeU09
zW;+j&{ufQL;s4<@`M^G+APR`+6cr8A68()C(O!yLPoHYO9<+Q+<!!@*qxB+ct<HhV
zv?4HWSFoSCWYmHL9!~-LR7RqQ43TaTE_2O}v!+Go))a@;5>qgMU4&hR-~ttT<NV@J
z$@fG!#=pm3b+i)RNE9A-^??A==U=(9(Uk6|BS!XPPfgi51kgx^<sySsGh|w28e~46
zjja3GmyYO!e-7793|wY1{F)kxRdnKLiB5Vc{}<1l65(|oMT%2Dca&`VW=Nf$Lfj19
z29A(Ol2D0^S^A~cj47J4xbGe}Y|7B(Z|?W0Iy3eWPYkA?@3R`t6CX6U)0aC(V2`kQ
z#CAq<CZxlAE9}Ol4GCoAFyMovNUyIgfB%ySETqm6?>@T?vn*<q!OyOxOPCZGchlRU
z0lE6?T2ZlMc{E4SJ2fh7lGoriI$0u#fXijqCHefT9QL7MQhqnGpDvp;Lr|ssZ<scK
zqEHa!s>e<CMc~TJa!>r0W=k(%gKgU5s^Z$Dnk^XP7I<+psG1pFeXVRqE10Uc$il*&
zQJPICoa11f`*+i3X+1H&-wvbVX-X~P+<%OLv{~vN1i9%=q`z`J4u!Js1+u#q9TPXy
z!{^iYQkROtJ~NncKIyZZ0#Ocj=qb=D^5V71`iNb?6~?v7NPChp#3i5HWB6iF#LUgP
zwYro3p+O^-!a+^~2OsP#&*6l~FrMM#itV}gtmJ+5zi~5BpY(j)Ws8nALlAXR*pXNO
zIE=ickCmy)vg)y>%z>@}m50nZeLT{6(*^0j)S*C8=L#lbu}po#c9Jh^5^g~+q(F4~
zA#){4e_lL<dOhgDC(1`(Zy>e1Z{)>0H>_8Oil2kGh+NzHp!;U5kN@1%R15W;?XmFn
zIPr%3`B7eJtba?;wKFJDyBb+W47ORc(2a<aJW+%93*$}aADJ;;p={JyR%g~+T8kAW
zqm9Z9<JvX4f`m=nLrF3nyS984_Ny`=&%&k1$*3(VyEHV2;S<JuxJ#i?P-(vUgn!h%
z2jE5K4wA=9xGr}rLH$wr9>V%3hIsogv>1VG9=Z1mKS|SE4|+&4d*DT?o0~A9QhrnY
zC%heI<SQ$xh$nQco5UZfsm;pNzXlrLQ>ReUHf*RM4+|ZSFXJElWGj)8FFd4`iZKQU
zl@bI>^a_TT2Z4f@tCUec?5)y^Oy18LCV`g>?C#eZ4kg5X8dEg5T;|>CXuUP=-!%2;
zp&2*JZa{O3%{y>LvERGxrf=)pZ@?}Hg_6w52!%ZNJmNAGBZTBnhxR#)7Sj#S98o%I
zqN=T8tD~molr~YuhzlXyzFKygCUC$20DsOQ;1B@-K_B>TWeVr7nFaVIb5s|=D9!s<
zf6{$H5LFu>2C*O%@lDwG64Q@rn+lMQbPV3@o(uU(w2-#~wZg%=xS3MA4xtJN>M&ma
z0G+OCxM|jN&J1_O%Q6jeM|ia_kDhR{P;%Z!+%bN!<8Fz>fRYoN%rByRFsgTKf$9{K
zai}&OD}A3dwNRd%hh3En!Qk>Ag%1;r8J@0NCB7ym2t{xCWt1s^6p@pH7|tA9Kj1_u
zjK3Fv&9t<caj6~(MPk$GC%)2S6CRs{?qId??&pgMIr}nO=WxQQA=BV3a}*2k4>YMm
z*=_|7T=(7V#z=BvvNMtM+ew32;-?7v@7bTTeH_beBaJFIOnPT)-_PJ50c7djVu`#N
z!1Oe0BF-#!`x#K0c_W{getSdy*!g8fOMb_lJKylz(qQrUlZywo2x%rupWgoT6;(|D
zP|-zNp_axC_%QR)uFsZYSLxQc1*>g!nppKk6LsnxSs@IDQO`jzQvBmUeNUfbf2asY
zVHVYhP<FX?BTRdw!)}D3viE#AhP;WMSB{-y<gF^!2|Z*r1u+E?0p)#v3$Vu{`i;-U
z+|h!=pj{;!@~2l`I*9HHq;kgKwf$0T?4)u^Co(yHo}NHjI2`_4{l*9m&dA&Ci)c5+
z8aZCw{Oo!nH@@fBE;w=5xfNK-OQ(~-$BC9n9ndoH7*6GXMPg5q^-lo1gNUPEHx^)%
zP;jCaFu+a&GB2kGh)IpDs*#?~+^>+md{XP?u7i!QIp&aLBn-Wf^Cx3`Rc356cck53
z6rJUg!%fyOP2FagsExwXQxt9>O0h&08O=3w1926(l0M!D9#sEwOM7}RDmHI)t2(|#
z0o4<4ctrEFtjE(X27quxyTOM~SXu2AnFUp{oKEADGueqU96<XBJB8*dbh^gFami~r
z8V8v?$ko*hF^(WO^MExnD5V^j#qHq{z`Yh*0JQQ`ElOSYldkH<QC-S`M%QZ8UW6eE
z<lI@1DkyjqBo}&Lbh>lr!}IS<n)>nLpr!=13#lNd@P2BSNYw~cTd_@Ko7CA66<!>y
zbYK2KNh?9Ah`V7i2H3<_39V2aW90GIUmQ;WSFVx4lg>#ERrlgYrR!(9pYZ5R(?Ns;
z{+Ks_4}DY#$DynqdPLeuewAZ%o#_%sx%@cL^&Nl-w}1fC7=B8P3G^*8Ll{uf>*^Tq
z=rVcM$mFAcd6F?gGsCU)C6v&aZUsvU|IHM{RU2Zps-myTn71RQX}|&YZ-kGmhYwEl
zdSlD`uCTXQIcPWsfB^hJ$gLT*C}i*gyaUR9|Kq*uZge5;Jhca-)=*wyKYRa-0A0KK
zszKJbepI{=7Lh>>Ncyl1{+@6<jrT7x>JTm6P?EZEyQ5#GmG3IATKc-ZzBCy4a6hsz
z_CqI=CmE_zfW#Zk&YQ7)4p<hYq!TMW9*pA>uA>$5Z2rqToh~|3jiHhOGVT)=(cb7Q
zbX#z6P|dqzq&;kQf+Tds{|5RnhkH7AOJsHB;L0MAZXZno7IuV@mEpaIfZ%T1n@|Bk
z^{R8h*>9jZzMeI6RpLc{n?`ipgAr0Nz<*t<0V`1P5rh_F(W9hyRpt~54V-_Ch;tz+
zd<D8J6({Mm$1n2`tzNo1oBw??l6hL6XLOo0!9V<VPNMk(F@cPyOwtZkCq=4?!VCZ^
zuGf;{a^hq6Wko>mZ#sJw5AtZIKjMFB5EKf*@?SS#hr;fa-eXfsp)u#A_>KL2ze4aX
zaGVcoj#+~{;+U(C;T=|4f-+`27NK&e6c4)m1#+@ffQ%x41DMC4+iX2pCbXpmR~SEc
zWn{HR&e|ssFbD|Px5Psh1%;d+!D~x|0B?Uwn(V?}%{ufSUiy1Vo~Xq`?#rfLw;Og5
zO}s)Gmg<jZ(^577xWa=B1+WVA$ER5rL^%r5lI}FxVyIwfPTPta>*khXO7Twefa%0|
zHTq{iq{6|smsXBVLcAfXoX(+H^O}XEbso<~q$8ou-6=G(#!Tzj;4R8b=v2<a0aSz*
zEwdP6R~R5U=tw3mWv)evbs5OmA_-`pc9nyS<On>-j#E0GN$m}Vmy7|sYHQH?87ETT
zyRuU*QAM(TocZPMAqtAg=sP;1w4-o!WD(yt0|(C)MV=MmI$yw&#7?gV?rN*S1j|ha
z)6HA@u~eNZiwsfwuGNz0rkESOnc-=**piJCNJak=I#XoVRJ7Ehi5=`zajAm(S4moA
z5urPG9sa&}5hMs`)9fHSt3W6YBg=58*Gy<_b$w^QGv~fuFU6Kwa)lIwT@owqqg1Yz
z8et?zQ=dZdq?z_lzHSq=a}!xfT-G;d(-gNRp`b8^<-quTGuHah*5(PP6mn))SiXv)
z<CL*TC3@gYIcyEa6eW#-iI&c9<3ndO%ojo;f*sEczLTDTqc<6lLD$~jJu$&|(o55K
zEV!^96)m|_c8g&2;FJUiTz1SJ%6m7@LUPGL+9bN7%@v-c*magEO)#QSMF8#d-4Qv6
zn<UkP3PQd%ROXYN#eL*v_RSO7kL_QRUr2c$jCx7rJh}!2{>EzoA`QRobQh2wnDb$v
z<a@CEcpmfJ+u(3yn@2r(%92Y-Q^rZS&7grE7x8g@J>9ehXmOD4K47&z(_me@PXqqU
zEE!X=-DsdLD^*LJ>A)C_>3^ojvjp;c`X6F6gLo=<qu^-~(H3^y_ec`-8=(KBLHP=c
zJb&?g9+d4PNVe_V=d(4rxt#c{`UyJ+afXce_P3f(Td%1CI3*$>N`7hy<F6RrMQY^D
zz0_}%tJt=iLLdm0*6l*f(;5Y|=vZ5xwtX^t*230)4g%URTm)}G?5m$$O4s7UfvvjH
z)qwYf*?_1q{07^d^(~DOJEr4or=Y%CQ}v#5z3m@tE8%Xi0Nt&=DTCxHA|hmFy4|iv
zvF~9Q(#)ZT^iWr$%^FcL?r?g$X0s9hJDO@A`KJYqWEAYdy3k0ORka>gZ~Tz)ap&@S
z%0|`}0EB9N{q&*-G5?96O(#Z*7ID6Ty!#I^=_3f0-wOlbGWLsM*iy>!1LbqKyrp`8
z>7bk15!lQI=(+s*$m`R38wQNJB2oSGZ~;z9M`IHjvO4R3Kc88?#>>y!5ywY;GEvf7
zt!IN{3a^~pUU{{eIYala6h#=IFxVRxhu0~kF-3qc*Rc`^Ev{evB_Cuap!JhOZW=}F
zS}iM8XYN<Ncd4uhtcSt5b$rM(*yP65Z%cH++@N-aN8Q9Q`He6=GDGD0!}t)<6sHs9
zxf*G-f6OL%&wcYXbc2c`+yHGJt{!b6N70ip5j(a0ghY`PW--?6(I80&hw$~Je)p3Y
zc;V{nOUVsiu2)S>K|ROBu}{sA2l!RSp@(!IoBUF7q3;%j{OvDU?}CuSVg%E|(jIek
z=1K1KK_~97hSu*7@q^#AXW}HpOlVykR((f^KkNO2oA3$pJ_%eBf+>jIWYS5qdT`m%
zhW_W<4#`S405L$$zmXFK7lo>eYebc#yxCY)CV-X*MQLFspcV~F-T7#oA34ykK?441
z7ZJ8!dw7+L!n?)MgY4*oY5A4dp?|P~&0xHAj0y@&)NooB;BRp%Ng2_bl6#po-@WdB
zG(2#lG-wd7JI$vio~NNa&o0USP1>IVm!Py>JCtC&sp3nFS4ftSwNW08UQ~vJT@7}}
z29Z8A0JG|a9(9#+b;Ako@9xT=hvFs;;ebWNbxJ>4dSEw+Utt~;221SUL_&iaf0-r=
zLyu2q_C^!necUB%V3jfWWuFq++W+y4u%Jlc*0JY}hhRD_*VVK;s5L?C_?6^P)i4&K
z#myBQjGW~$@^F^QcY`>y4;aIsaHy*2*n}-vPE!)28$5A(b7PMH6N~-)Q_C{?p=?W;
z1shz~{#Fa(?lrf8b39H3FT4Gs@E#P+-j3Of!6mR>hSO6U)ejl;D40MSQHF9O#)&<y
zJnazn91=P3*REMF1PpQM7^_{J>QE|Wlv#0*Zx{wV^)Otyqz<D<<ukA@bsAjn`0}`O
zzezV12|G7T4on5ZS8;{9h@5={p8Bn6CJyhClau^>E-g;8#zHAOmEO6w%g8wqe_``*
z?Ra#46GEo8#5kpWE`%JKaCby|(CJU1LlhyjvxlIAW+&Y(PuQ-C;nLqFW2mj10QzeJ
zN}FU`Ir3T+$-SCqDz^L64@ODSecba}eP7dD%@m<l=%#_^s5B6JuQ)*A7xC1y5#lOK
z7`20L#uAxB|K|S|(E1BFBpwHv?j%gtK-+pa*nH`I`-zT7Yk{?$j_W}ol!0$Ol;_s2
zc;0B=&SWolV)#Tg;6v@Wms7fPv6_I6Q&tGf_a#d|@$9d`ifycU0J*_M+W^w0d-1-#
zOA+wefPb<SmP}5(eWlNL+OqWs<%`M*eD4+&Lgs@u5;>khz}WQyZA4_#2lN1EPk*X6
zCsB=|rlQiPO#nlM8t@Exh8Xi1(s90!o4X;+97OXVF*n-|$~n=60vmQTch!2_`^;R-
zXer{F?yZ8^<bV1I>jHYX(Ft(9HJ<}zJ(^3lTSEz7>$lXa(!O*sQ!B!fpIn1oL}k6I
z?dQKKc9|X~##^3lZzr8)Il^Ojxuj^;FMcH`H_h||v%(&Oafq~6M4Ue)i2G}_nN^6^
z55Shc9Lz!2_!$g52^Szg#{nkTc*<zDpY=R|8`kMq+ivU<`shQH_}*}9^Davv((ml;
zQ7jS;x$eYZ2kf?+@nf-!nR8jn*at)&SO4s>jLFBar!|n))qoi_Q!v5MukwH#D1e^;
z08kB6M@>BxeR#uEE6R8OP7&BJcvX{Xuj{nCr(qkJ+6S2?Bb}yzfmW4jLv~-bLO6px
zr<T3{|KVYQQFnWSW3=X{q6-n-`DhtR{0T$Mx&fhA{g>lT)a07)vy%J<9ute~+F)3n
zVBnM}Rl|CH<1u+9)pEWvktdY5q5O)+6I!}e!rtGd|DV(KyqHwfT43HNJ6QU`V3)`k
zXGCkdv##*HFZA&pZXKuaoT8g6Pb``wW!EfSJ0y}*%tulNgB}^m*$$gzJhl`^T|N$|
z<)_l6O~=B!KG8b6u^0{ZxE5NjonkM<W@ki1(vME8`W(e{tyAsglAsgv*T;7X)sbz8
z-(UV)@+Fi~;H%O;r|UyMPNn1A&p%lE?7HG%&A+>yC3+9&n?#rp&GuNIX>q?xCn*B7
z1(6<4uMa%Dnf$62#l%zjvkEnJ7YOZ<k!(9?&8bnS`>`A!tubndO9U-51vI|6T`*1n
zojzra!Smem*SF#fn2v!&<;>9n_Dfh2xw}njUZTNMa*wkw&@sDUp&WOVgbY6=+L=8z
z|2kCqyH^znIY!{;U$00i_L)xW_Gy$F3&qe>zv6i9yZ&{x6w%KQ6<yK~1yUyv#P3pf
zw)BfU#R|2@U8N9Gv@U#`!*IO4gP0U?WQ)deV$N4GR0xXN^2rde^9eQ*qs~LEUWS&G
zwK-3{%S=TIv!J4Ua&}T7*z=nKW>DTGF>5bK?L0So#6_vou%L8`OCHYVX#xKD=QP6e
zYdFrNUQDX>MrXjr>(2pw{q2EoyzQoI6bL3Vak!A8g-~1})sFjz&VuWD*H6I})mP~j
z88>KYxVQ3-5`i7h=kw4QDhWds+P^mA#Ua7^7uJL>Ss|lo;h@LyIVI=fl+{2{->@`>
zgjr<QLEWVip9ugqtV6@kBV0-50pZ~E_oCV=UB&2#`_W2XrB~tEIq?|=Syn@4j$_)5
zXV_%u22M#*->c$xnxKzBkAxshr}(;JTIM!n3B9se>m2KBY{h>y-s*1ppA#=ORw&dr
zM`{SMLGUh0k8CNWfV@BEe7bk_HPr3OW9MQ#gd@(0jT2@haEJD06>;jC{wp>1cB?M{
zBk7qn+zzla#n4|yQ9r)eq(>$5J%rz`L0jcyA~es#fh4t#!1bf87MJ%Vx~ux+RF>jN
z9K1L;bVJMw?x~Cs9527)q@L;Hj@m^-;SUNTU7k4!j-dIDa{%ToHw>xD^q#2igv0#|
zhQvlj+n2XZ$u-^SkgX+*o5iDO^m&;65ioD$?j1F8i4k{{9d~XGX`E@@qciIjJm5a|
zSdGBTBvJ=;ojZeJyxB=euX?+%2>abN4Bo3H$+4Pl*WDb-=a!f*G~H=9IW5~NyuW~{
z=q4=&X{=hHQcO<S?o(tddq2&<G;iV$#=o)q2~>=;Vv#jkcRy~bQG-vmgvp3Ma3}8b
zcFrsOYK6rBFOf)5bm%mR*cK;*?4)ZFCxug9)lk)?B_Xaqv3}(u1Td+FEi^bY`mYb{
zY15!H%s31|fK|uSz8qda#PwtbpRX%8cAIO4%WBA(#{+!=Z1`k)(jgAVrKth)@V=Mf
zO=;yj*3Nr1fsv`0kW8Y48qTc9V`lyXe<GbTrb&0>3Zc<3H$ez9-CICCqknq_)Nx3P
zA7;f^B_vGpLxX_gG0PK{?-Idh)9m$n(eFC)qxJ1(P$4UE#A)E06}zGC@P}pCWAK}7
z8`J{2R^n#s88mz2-{<bZ%fqaqdhY?RnJOMKDc#o;<FSxk1K-HGKOkCHBRn{n^3&_)
z*msHQs1d=m(fc`@LtEF*D*dYz*JE&<<Jw*0Z!TXM`Y<_kc^Kri#ay++@D=^u*Yu86
z6M?~x&>nSWy}*!It$a%tT=}ojI$0+$4zBeQ*c`W{m_G#OL=XE#txmVTQ`pp#7#1{c
z%czaA6}rnlW_+~TsL2>RCBA#M0>n43RtJ#=fAE7-O?&)tSS6Fs_}NwKp(RQfux_{&
zy)1d9g0lSPP5_WxabVimk4$!8SdtfkAlOc)|2C9;RlA}2T*{lESi_;xj8hhe8acGf
zSYsF$me(A#(Z<kSg#2ABlId&%+dhlo4Up_zaMKecL9<a|v99ky>PU}~4IilFdCH$m
zpLao5EW>%ZNH(NBJ=eJ@XMWs+a8&>MG;1(S9Ma=mNbLGa=Pg<mztiUumJ!*9vWS+@
zTwIdmRvOGHS}<O;szU~X4)M*ZG&Hus^@No!e1V_6B6uR-x8qV9+HqmV==6}u4i3qV
z_V;UP7G1P)AHf|WfRJl%SY}G<{AK1}px4J^=+F#jMrtpZNPh@vsa4n|8fSwwR|gTT
zi}YK1H}tSty;69dX^GKKtu%i_v~I6V2C8>FE|FjiVT`_0PKFnUjvQ}Kw@-19TgH>6
z28j=pxkC}W@F@3sWExDL-LJ6`;X4l)OC~6sjESg#c?Zu}%3uWw#5O@Sy)QLft2xK@
zckuoeW#__IK1k?$AvZCb&BSmx-jG$Y&4X~%p>gm<fJupHdtMIZ+H75?K4(E=t$AyM
zV*1n@NA*7sU}g;mGOLRBLl@yxNcgBiqWPo}Y?xRO4^K?VH)dZ#3*pH)LLq#0#~NNE
zwSLU0!#M8poNscM$nShf!BF{Zi%d#eTxBWNt5=-mMP7ywEDs{=oP;z>)a72ri2)`W
zwuGF%b|hI}54K)qDxa^e_T!oh5zPaw-(4Yfc08k{iUe}<?y!;SKLUEqF%2?zljub0
zK6h+<P5XFZ@^CB$Kb$MuH^&A4HW9;trUz^O?GEVLEc$hObx^Ks%$^Z}euMx^#FWmS
zI`!ItK5db6gZFX?p~NYxG!wTSed#mwGGRQq35QRVzj!RKc)wg#BE7kz-sw;Ko5;bi
z8@D-Zb`QObNIP3Z_HZE>0s$i5b%{4d7J3EhAAq8NE|&a;!crg(B{sJ>vzr~VF%YvJ
za>_y8F97R1nSA4!PG|hC(zsz+MSw-gEr+7STCxaM-<Ze?z?}+^JAg9Z9OT`5KExcq
z^%;~hM?h9DF9FC}x091qgnw4L>}vV|%yhsgF>h6G$%rjrUdp{iy0QC*;w6dv+%*R1
zHb=asdEl6bqi^`R6%bgAfmj*Zh?2={W-;bR07YyivHVD#bdQ@))!>!&75x@d)1!`I
zfh17D3Li&c3aVKOHo+QBc;>8Qss;M5Fr8;qQJq59Q}!ZMUk==jyu%$A`7amlEJd3J
zW_XrRT$f`$3a{IH3e|>JOac0}=wpPlD|=}oSra*#MA2KA=jYifgk!gRw=Go&0jSZi
zadX#ve6Gb<hG6X&+hpQZCkPJNZ50m_(h&i@pZtO5XqxukDtrUOYq!@n9f<diJGPPA
zusmhm#5#1RfalIy>DKBmw}0$c*bg)#iDDnh2JVcR9pp5sAuVqAB5+V-8UQ#a83hWa
z3n27C)M^wX%dX<s8|`ZH1V`?TFX5*pe5ts#Oqs9$ve7=sQ)i)lV9phi4Oyermmv{`
zJsoUp5H4b#zR-n2X3LKHVZPDToNRZktk+vz!C7ruG=^Kk6eL6Ou|g@27m;|*u<BLb
ztQlhHj*L+NpX+E-vf~jQ38yy;!h$Q^Wl=rMK&^_7uc8*7OVvKqBrMB<o^$<J@UTS(
zq{%BbLN!WN#ph}+`La>vSh8%CY};#Xv@c4Op|Ee>?_Bhy9K&cFA8yI&ZZbP=eoXhY
z=hxSh4|Z_{I0ZZR6H8kj7Nx(x9Q0<o>u8)ufwG~WiTbfTLGT@`%wug~DGZZO!rrxg
z3#mwV+~bToGPYbj3boLcKU5N<Y2evkZs(l^FP_}kA2;)|TUMpscV0kh==$AX{U2OQ
z$KJ%pN!1Fq(MSR2=tX?ws~)HzYEs6OrU_=yeQFWvLcHx-mbilA0F}aOR%#gzzS)I3
z2v`irQYO!~f4RtV^8(L7NKA?2NS+m~GF4b8s#l)8%NJ8sMU|%|lexq2QWCll1s3_o
z_hd)H&mKI%bAiq<7*BK~2-*<w{#A2MT@o5vqp+KfV}ri3$WwBQjrjMo+WnAc=uYg9
z+xF?2uV!LCTtr~SwI%mQGZok%ipSw+Yaa|(zB&L}ry0O6CO-4s%-Io0ulNIq%M=vA
znB^Wr>&g&SD5wnhK+#)C)K=!4IK-v<wDP%L)+Riat2-FHL0%P^K2Q$`pEk-IO9?&5
zp|7QYkedwlsCAlGzfqlWKyovlrHGv(t;z|wxJ4cj2J42*EoIoPCK1!HIZ6}j)F0LO
z_7SGp%4fPwF5qJrguh0*C>aA+Ea!qGiQKzC7oEtrv=e6xmm|uv#&T53p5<J&14@aW
zZdZ+zTlhW;GCy3Op(j4bY0yObhi$<cblsA-^Zg$3zAt~ZvNJfY>TUg}r>Koz;kqpa
zObxjJE64kVOq8a*I<)kClC*HiZ6=<I(MX4_XmMp6?Yw^oP~gkp*U0BLZ8rmdFul)t
z8J(xyo!aFU>L~=&y0U9KQHzmE7l`&0+Z$3BjS0YlHkL<?IG)ldJ7r9FP51H*6c=8`
zb9e2dsVoA<&hmjsrro!NVpy=1xjEMPb1NM5(N@ovu|zA)g<<4?SJ(KlzKuweF!+q(
z4gxDxRXo;J&ZOA_sd<^#px%WIZT0yjY5Q*%iCMPq+3KhRxL&<YQnD$)HFNJQ3Ao||
zPhKl_8&b@WRe|<F)HnDZL#L(~&+<7fZsfOt14odojHoc)9BC#v@;z4(M8u$<{&t`5
z9-g#%AV(DBzc;OgETh$I4)RJLH{Z*OQ+ZKPzKJ?!w$k%_G)&nDshZydP0>E+`nf;d
zH(ng}fd(&P^(N7bf3`4LYna}VYd+wom<hDQ6|x;PQQDc(c=Z)nv1LY3!h_W>B!}N%
z^77qyisY@Mq@V=GEiym-r{_wG<lrJL{S}Omm8<ilj2sd?Z`+RTIP(-Js<3xWcXP#=
zFEAP%c^1n5Y~FCUH4TPDJ?%b~V(}Bi{)$C!H@{GShxzycSk9YQKa!<)Y{Ro=1j`)2
z*tZ-1MDujaUj9!Hfq>}nwW?Z2iRG&1CkCu+=O$ygyGHyXTYQa*miypoq`%vHy_kk7
z1K*w<Eeyp9XDp}P%u!s)XtLcpQtbt-YNCw=Wi<j=Hp3`EgBCl^Fi8O(^SI%Pjw+>A
zGS~akP25I)YMw!iD0AcKSI0j2>j+wozdZs5DqRlj=bU5}4mr@Xgm-*?c)W1CKfU9@
zD~_*FhH`Rqzp*MBzo&yCI?gq2E4!%><9tV3ULUQp1*+e`T*QXG_v)_Xjt0dJDu;>8
ziOY}?hbY@*z)*Dd5~X1&#FE5I3~Nz23cUGDk(z;sIr=)Nkh(8p$o}!{H?(efNm4La
zXfJEq|D#UK=jMnby+w$(&A<1%h}sa?s+QY*Av($-7k-ShmY9<shrR_%>u^F2q+|(V
zhFd+q+yY+&ysIKI*GKr=@qNE$lJ;S7Q+~j>FN9KB)*ThIAbcN*c~%p5i&yPg7r}ry
z307jw_nzi;0aP4n)sj1?V}KnDP%${J8~8u*y$|0m5^Jqo3FN%Q<%Hza=<_?+H(9A#
z+?XYLsbq<!V@Uz~)v-Utqj!*30%N!l6Zsc{Kpg?gV0!XnHd!e~$<pAj@pGF4<4OLV
z$Vp5b)R{^UA88(3+t(uYbRI1(3jRstuMMddRQflJlbA6NOYB?&a@zMo;2__p{T^{c
zgH%DwF7x~HP!nI6q|ud3*~<7we>fisGz#S0tcRoJ&~1IZt>&S;7Lr06L&eB>p|aZw
z`<$5Sar$0J1J|*IL}*13V8o87tMh*`%_G8#BPV%|o=G39I}p0J?{D6uPrB8)t<b?5
zfunc>;qjKD($?yQJ`qrKvrZQxK*^YH&|nS=3+Ar|!D2`y16xc<rrTr&lQj)0ubwNJ
zCjmz0+O=w5Oo0aK{#B)Jx#N{+O#JBkeg5;IA3BRgUEgo+hUo60lOhX*C!}QHZePu{
zKWBBYf^QLC9+S-cne=&Q@=V<iCB6z;b;~h95x!MgAXuNmA(`7)bm;*KPENBtU`Ypo
z_#{n|Z2f7*MVX8qvG>k#o}`R~4gDj7Wt7&Tc(u5Sl>}zVEp=$Pd6d^!$&6qYlOP!v
z@9tc1-7x4bSV7(OoIN>QM+f>{I}X^>iP6HBXgIC^)oKqVcTF>o+;ZeKtf!k&+eKJk
zdjXGMn@zkHL^b3dOy|n3SGkIVeXjgnC5!{#zCz#;kyb2PljUEhS21O65^)7LcKHJz
z`Kf$mt5Iu{_am(wXu@;sbK%uIZmZOJR-#?c>CU~VlYZ;F%j|hif&0gs9F#mP##~o>
zO;3mWnTr~=$NGORX~(k=d+4d(anPI_G&S}#+tx^l?>dBWfVc;~dB+Cx2E`Xlyo5LM
zK447sQT=K=W#W=;?9*;O32woPi)=ll4&cWq4CPoBT-hyMV{V!LSLWbwun$Bh_X(*{
zM+_OHsbjyJ9?-bK=+llRtiYQLDUd6m@SvuivZkR3VdJAN%BK?p@8Q#y0;i^746UZb
zq8K=dfT+|gK?vl}hM#cCs$Pd%E4);CuvSBh#KLylZ9CMOFhy*dFkL~8+wpJY4SkIZ
zKJ^y2d)*ZwsUA#V4DBx*@&FT*)6%amBWpW$U(o&a(92u4izGiE9K1m=<IA4AM9P}}
zQ@TfIu<eyQR-}MciWdo(KknE>S>o>AuR$_*8lui%{x?o;$zQkOaZNs$rH<IGrLV^9
zu?P`f3yDToBNGQv>E(<Zbd5Nw+{gbJe<lqpWtk2%%7AsIRt=!R^~A^si|D-}dXCCD
zkwb6OVNcrs>O{s%2WhMZTHx|HrlEkhfLY<P;Ar@^9v2x2N-!YG>PMIH`2QZInJ_Jg
zG?B;YwJS%|Vc_5CFr!~2rwsX8ZZ!LLkjPu#e@j?Yg}p_Dpqg9gUA%UX*c7P9;cImz
zh+`q4w4IEjDO^y-cc)m};io{h6UAF(!j`Ge!XLiLV?<|%=}!v3eg<WL8`$ajylaWI
zBwIvK_W69gv6DXRvjP4WcU;PbOrS+41Q0S}dNv=ouywmv=V<=YNcyn!SgWxyzcX%5
znBHu(e`~AsG@?6l9EaMvpDbY~NUBU(p-EniLC)EA<bXy<9D7RZ=FLa6PvwaH<QMW<
zS9ajVE?H^63qwQ7*z{VxX``mV4UxM*?tUDr+~~OSdtTA9-&EWX6duCTKLVgu35lpE
zB*@!Hw0HYNUSOnU3<ANM+-Yrg^u438DK?l3NHHW2KA+wc&wklITn*n3^RXO0yLE2p
z(;J^=|6lxa8*63jbpriRX>TH2)|H1!u&AFJu9ebX&(0?gI3Yl$G9<jweb&}yU=Ybo
zaJvLb2KA|+m)I}iwz&9A?m**5P1Qin7>8b~Z2prj(;*u#0z}M&VbGv_R>1u%NE~o-
zqToqb5}2^g_u2JJ@!OWKD_+0Hm)vat>;#Q3$aS<GB5+wmT$q2T0pfp;wo5Ik#LNIC
z(+tDyU_YiV1i!I7X&>@IiM)ou`-loLlxKhwR)o%p`WfV0IRC%}a$;OYY#DzDhWWnX
zL-y57fXiZHQGyZ_CXc*@6FATy6<7A59iq!LJN1p}Fb-NWDxmWa+zIm9jz(;?!h%&C
z)~`aA%F*V<+T#|`Ww9Q*7L>MchbH>&i(#I+SAc)fbePzJHzrB%p$xV`d{|MFXxIq9
z;e&%*Pvud0y`NTV3>>pH8(p>chK{iU!wwPA3chi7fZgw-ahKvhbTM92x~?nV>?IwB
zCipj12s0p2Lt|#Hs+IVsOw(xgWhPXPS>yuj-4^D5^f_>9u{J3YHvImf;uWx4^g~Ew
zLJj(rm}X-m#@BU>`KsDf&%%#<*uum5k8J4&T<BY#tZ1PSMn9xy=93$?IWz@tTBq##
zl<O8#E3TOFP`N?ek}a&0#-)c)g_hC9%!ZfjbF3~j!?SJERqEdAsp2-%Smu@!;gUvY
z#LSU;CWA3y86pwc%3)luoYj$_0W}Y<fr%r?TZxLV=!m_EqH;4r=Eyg$ZZ=f<R|D_!
z6pq|L3=?C(qFvasdZE%PRF-(Rleyz`9&j&mYiQYLDf|Q(mPXPgbdD}c_`%~OMaiNe
zU^0GR1OPsK9&ygfACqHSQ|cHAy}g?Hqz&nHhYwm6F!j(opDSEAJp4cTv6tzeJV2e_
zixNx8%1#{JnF^8NRBomhS`EDKoTYyZirdwf{gi=Un{PR>!lXz@yfmKCc<3P}RC?IT
zEMRIQmMkOsTJ8}ArfL9WzSd7gMs68$S;Xv3*BfC@Xhy@I)=ZK-wIKYscDMralNz&_
ze;$CVa4itnC7b`=2>~|KfQSvojskK;M{Ufx&%-4h1Vslr%U*N69(!%$1$;NUdjrYe
zqM<0IZAO0@EUH*eO$o>Y>4+6mzd+ycL3wS&$;0qNUzC1tU@vO{7KawZ$6}))qel~w
zd45f9<W#olBWn#St%Imh)N?jijhDCnL#_85Qfui=SNS2QHi<f3+sE&WIo{b%_w4@b
znWtI^Aaw{AySlIP!qcb!5oY5R?ko7!lru!8>a31xynShEm0va5ll=l%t;w+2fQde`
z6%?s(EMKh!Mwy3=wCnYae3DwP;IoGI{;4Vx9DZ(i^WNi}fWn){L@=7yh%Ty$6?XeA
zBgHd6lj4=jnn_<&_rX<_jY$+B4(LS4P1_2RP{wWEDV_Mn(o7AYEczE3HR!XkyO0dE
zgJVfar%!obD<;4pT7plN3#haZT9B&LYOkt0)CW4Fk!T4{IB@3h1lvb*)YK-AWazR)
z_gkUf=wRJxtBa&2bmnJeezc}{=*&i9PFz5>73S}8{Z;goIRQrkh4mpwdF#<iaWPzL
z%n$zf2?5Y|=eOWa)>D0nRyO+n8LKkcijxc2YJMc6GWn`X`=e^uvcGUK!a|aVM``L#
zL3N)h^3<UFTd(ot>&>$(%t%ru?@2<{KdMq(=yVnx;Fdl>y~~`bIOed>H>5Wl^ZN<m
z_{-BtEV{~-14>fqyeHL@ZS@V8Pz;#T?194mNJ4zO9wg!LpUqlDe4b9}kt@6vsIXbn
zGvzcgAUwEKBb4v*!tHMtE`@w28US#FKyL{UN<k;4N+-UO`$GH7Y;g#d9B?CiC4ABt
z`cOXqY6cs^!GxT+Z%<bpLO63h6AA+<Wxn+%k1$Le8z!%~ME`@)qTyjibxqg9YXROq
zD_VnB(D^N3(F*&I(YVd$_SfYtA>!@mTUsd3NxJ><wCQ2pta7YDJ8C_`CE?|W9)d~l
zwPlV*U*BF=Wc`S_Qxw5LB%7UJTbwF!?x+(|=gr0At5D{W`MU8hWFdi8D=J$`-Q>bk
zmip`au(t%yKE3n!2$fpN&cccc{gP&EvL0&5y-@u*!qtuMhRr+#*Fs!Md_&2BTQIg3
z#lYw~)toGk$`a9RP$KWf4KngO{?_hq-j;Se#iVY43|7nzeXRX2Wxx0cHBM|Je&4LA
z4+Ig?(ET&CuLr;ri4PvGF3SxcbYMvntu}Y(k_VN%>rbe^i8UDr3GXff&|cYF{^npk
zVx(kONq96ohp-8oYj>L_gpQpomU)>(sRY>a7>*9$%FX|-%Bg5f-2U@0s$xk0xZ+1s
zApB=~(Httu1vBMSg|hP;%Pw&kUZ>OFM)+;+(%JZE)5{Ko`1`2xYMm`2Vkgzp_Zq6K
zgKM9=n;OdZ!SLC2*u3S%_?4wtMug8*_r(0U>-TdF(V6O1(5U>})lkhLWj(vMf(-k_
zp$>P$sQ%uHDz#I?3@%t;w$^Y$iMx<30W2^ljen}~dXx`mUuzBWw5o!X{^%mU$6L$x
zrf0C-x5e=sx17uOnGEWt_u`_2z<B?=TSnP?7;FOQz==Bdqm$;<!41K0Vtlop_khlw
zX*@+vYA7KSajp<oPy?Qcw&*fh<dlR&90H|ham0NNf`@(i<;=v6rKG$ePmbs<xXp_B
zK*bP@4xklwZ5PT74NBm9b3+7`T#CUdRX6VhIS0`b8EU_!BHuuV$_{jo#ghy-^>$R*
z?Sr|zdkL8IxIX3xZ0xG$ns0x6We0hmXMa+33jF?iPjL;pqO`P0`~6C63C?nOlHs)G
zXHPO(Hs92=fLa>;%8GBp+GYbe_lSkbncxOWF8=qkQKyQQ#TWA7fX~gb1L@R^=G_gY
z3Sb>nCd3HC(<=N-L8ss-G;xthCf_vB@cC4%jc~weKeUf{S~kKZA({lXRY)G?==<6%
zN+^;u{4Ur)ldcpg+SEp~+h(qi^^!TYnR89}(OY!*)uAo#ZUg4zyFNdFv;?h+)<*LC
z*e2M|-7P`E8n(LHIp=iiLDB}J3w17)P3U`;lq&A!=SMdv!s6Y@hhq;n66Sva6y7xL
z1+~R+l~L;>earPbKGNGzd@r0+I9>$!4jnD(bs6(UGIFVydY9-9VkVc5%izf;<0Xje
z(50NV>;z|LC2rLmXzYD!%&IP~YHww90AmLM*&#l-wAeNg*I71|b(?2>hXIqvDl~~Q
zTH!1jZS`?E2_iv^ai(eTSJAT?&H-*Y+JIjlRXG)Mm9%5_G}aBCS~pQ({G40Fg~=T3
zLXS@z-f*k=D6he49mX9FWBcJQG-~$_T)V7qYZ*X^2DszoNfjdC8Yu;%;ekO&5sC^l
z6xp^b^r`b)ELZt5$_VA3PY^pF9icf{^pcSSYWb@F%Px1!dNxr@XDl~j`=-d<Iow#H
zcfStXwUHq8hl^D9-rrBRZ-a4TU1zhIekC@|GJwfnIrDg4SKpHj{nqYZYNXA#*K%-L
zkI~b&bnJ{l$h-!-=j=eyR#QLrOA0PZlz(0_8E2UG|GuE<FjQ`XNG5&D0k7-Emy19t
zRdA8Ol$9;~mZF1Tott+)Kty+>%1iYcBXznvasnM4C(vMtY84kpf38A^Ov6q^1nRTz
zto(|`=7kRiRxVT4!A8T3BcA?Ju1L!|U)`L$_+*y&(X1<{82C|s8>lB8WwzS;u$6{a
zba(38j!ZJyx51wG8&zOIF)RXcqB9IED|<EHxw7IN>&Rwgm7qUUP_Ku%{Rnu_HI)P_
z90a(xQ(Ea^-@}NzSPoG(u=yb&lw6WgMiNXb`+iKKvSQ~@%mFfvtNQ3aO0CaP8wj-Z
z7$=y@mrzi~v!_EkQ1j;EeH)xB{tIYsQz=1j(;<Qgn+Gl(Js>mj%0I7@BVI4dOGW)^
z$f|Vp&=#+1MUW>8LhcxTT;*}5Azb##VN%AO8eWi`rUEsQ|NV5;^0LSYAo4gk08}fe
z<M(vkP&my<yq>L#m+}Z<h5T7qugiMc5CuNTZG~P$cK&E9Ik6k>62H-So1MKN<H_0o
zz`;_QG0HM(=8#T4_s(-_D+TpVz7Fb(WNp;WJWRx)uUoV#WO(JOdxx}JFA?HO_FPB^
zcDQPj+Cen3T10H7=aAFanF44&D`dor4=r$Ke0^{@;<3~O8x2P0SljzDTvx!F1k^8I
zlp0TbDHN3cZj3+K$Z``gS&>{ymCVt9kT9eG#{xI@C!?4y8!v(V<o@=xSNB>C$VBrt
zjpcjx<z719d38#Z6h9?*)nZF)++q;lIo7m`Q6Hp-8a;39<N?<cbBbMZgz3AA!t5+P
zJZn>&=OI==#IF;+gUH-?b^f=5pqR4#8NSxrbuLJowo?1@bP^*Af7~q}-~#JU`?JST
zvFN87cdI^=iqzP%&_$cD+^E{+c6p{3JlXdZT^8ix+9*cK0B-!Ofi`~>v=QNW1PVxv
z`vQBglLOV;qh;5Gdh{>mG_uw0{P?z&eW0cn-W^BBS1u@?hH$H}Drx>S-Fq>d+LeDJ
z4|v-5z!xGan{<xyY^K)O|BYD)I_z*){hl2X?EE=n78>h>X~PHn^d(MZ8yZyuRTVh_
zE!*FhGh0{RIOx{zmEYraqyI}Y+-r~m1M!rN8ilT<_iRTs((qvuO}r`yFACxw`Z{`a
z3p%2{!mqkMSGZK`IE29SeZK008Q|-+IYM(@(HI{pkI!C|Y^LN8f-_TG3503l;ABq?
zC+Bo5A$pow0kl&`gO??oV;T%f7o{FzVbK#9iY#>bm_Vhx-IrK!X_6p_Kz&AvJUobZ
z3aU04qUF9F_(UaiYFH^ZQEurx8;_sewKh&Ji)LG%SE1y@Q<c_woY@<@V$In|hWZ=6
zYbDrt8)I`*5I(An#2%w-Tqt+bcA=r$Tq(>g&nbne@tcMX#{?%GlNJ!=zH`jo&Hlk-
z5>7dtSPr7tw-7GuA?DU5j&t3^g#7~}Hpv<cg=da3uw1onq3%(pjT-$)TkOUHTF<%q
zb|sBZ;uD+=LOIX<?Jdm&XG0yYZqZEcMY{lVCt%v1aq6W`f6KtxB{ZYQvchfnzS^+O
z{A3awSeJKZI#paoSEtDO;%ZEAl_;3TADzs~KYEDLNX0Wd>8P?flAawJHek`GCgB!K
z+E_igSn2!9KsWc%9()DR4R=H?B&Wm}J+q$i-hZW4O@Ck(k3s5}r}Mvod!}8gYbf~j
zTqmo$9MDbK{#c3hVx^msC-gY$IgaEaIC@N?C3I-FLbmd9M5Qaqn6YrxALaA6qNQW^
zF5No@+s7lS+8Hxp5rNT_`DI|t#~_;4a{I5dZ_iHTmJlb5cA>)H#`cgdn~=>;6kIA;
zWC!|%bWQnBE^p7Z-m;XOX%_!GV~3<*YD0w_9*OrVO7OSQr#Oj&))FU!L;ub<3SG$U
zQJVTE-VRc1>`#$pqkSo*hhHQyc56_XdUD|tue@{|>EJKq-DjFa5zB^{qGOtd#uX1!
z%pnFmqVZ@@*LP~NMsRr*4lL#D2Io$wLx*ul3x;Sm{NLcHz9Y_B!CU0JJk+~Gv+$BW
zJVBd6Y6<x-D}F~(Ck6vRM5T`ZxKr=ujNKMGoP_P_RLJKpTd843*K;{KeRWVMBD7fP
z)$><ZPt?|L`7)fkM#{8av|@>bkIY2b&OP9+AK}STs@ACMk^MAj#czW7E}m-AB+-qS
z8H8A0>!y>LLEPbM+%{h~%-aF2A6@Gf;iwS25KXdiORu)w{U&#_>c24oOp2g^@$I?&
zaw-us=KR;p_4as%cce)g(LUh=9JvnM@{Sk;LoLU}xuO!Hdk$k(!G^3M2@<f3u%GJv
zDGFw$^#)6?#x@}UaflmwH~bb0d&GBCVMZ=!dkW8Zl+V>tEyd9n<^$pnXR^P1w~f6I
z^}L%)iIFa13DIoJwQbeU+csv7P|~l)&=mV0QJ~eTQ>IhuHvfwr&U?qTejtJ_o1ka9
zZ|4W=qm{NA%Nig$mlMB5@z8K%eG^g6h(g>Se_>MB1a%TnXKU@TZR=`HLE*f>HocG;
zm$IXLA9UhYn@9G~?$7ruG9xUdgm&Vn{~{8+c<)iN4GcP2Gafah{DPpe6aH*@P*oOK
zGR6NN;U+t>t6x{?81n#vy$e>&5Z;W4^=*%L|K5T3RjUrBr*yQTknfi-_IeZ`lMlRF
zFJjyYbgDR0H^<rDxh@s4t!)4x%!0-N5_5N?+6&-Xz;%eSXLy=7@a6VajaLOWYB3{f
zmX38bq?1rSB6w9Uuuxh+G)_tv>EWYHf69kZZ@gp1#Vh{SR@U&hHb#Oozz%{^fFezF
z+zMg=j_b~1f>x)WLtha1bH)#}*nvmaAfk=*-yqJ$ZqC#XdVw+Lyo#WHe`;L>mIz|G
zSOD?T8KVNz?lx2HJwB(kyY`9c=T$BUK{nJ<u1KxD-Ejn5g5e$uMY%11<9rcdS@le6
za@#tj(@F=LLLFXm6RckW#mmqzM<Lb9l}YA|J@Kl-Y}Z94*eyt`RoTT}5shq}Km-R9
zO)Vn%PYP$s<h>)KAZ<Dckix$BtmPAKUE?5+ZE9xq6AyPlJ!A8ZkUu6Siiqfe^E|fk
zW6sdW%hzGOevhf?=;BIpA`kQ2)Thcj95T-OiFcPaeWo=N`#Yld9l|<yJ|tPluwoz>
zBp3oil63*5kiEdoyKM~uu;MCx@g1Yyg+U1ca~~PD5!k~EcZSJUCgbYB8Y(#^L8>ag
zqE{dqG?<o!<L#g^Pd4CO%;&<LXcsE-W-+e&AAj|_WKk=Xtv$K8g@FUFhwI%Ty2bjA
zDUF(5Z#yc+K|@Xd{Hv%7CetfRKt9mWOuoemjBdd|n4>Mdr`5tU5HsY&dkC>E#mTIG
zLE^tb{>?NsmDyNXU2WF)+}>ipgKQfAjJ>I@;r;eQxfY=02v16lPrqNsAxrAM6elhc
zAdSc0D%t8vp*yPZpl%2RARVZo73jh+X+SI%VttQ_PwF3KV=O&OV9h)Bw+NtZX)WcM
z4*|muc}tI8M~A`Bq=wkHR;iY<K2O7Ba7P4n*-sL+N?;i=t<`qSAzMf(WA!r9H?%Bb
zfB{LQ-IQWCe)MS$RL5N0yqa*mBrp!qQH{j^^E)LDe7%DD>i$FsW<M;uHnTZ+)iXnT
zX**Ls@d~H+uoTBDPa*WB_!Pm5rsZN&{SVrm01f%DHtq>W=j&&#5D<tR&DCt&X73;o
zVNQXQdm-4KOlN%@(UPoov}caD=AGYwN@f$am|fbxTQGctq8p^m&?=oQva??QSa(0p
zeNJBPV&G3?5!0e=k$s!o=LcidA3GrX9Z1!15y60od9`3A$`iQQN*KmU_c|j2y-0fP
zCEXu)O5LT>I$_(J78TQ6wl0sgVMsD?P9UTzK+iJ~q;N%-Z*P=u?!34KeurCy5McWk
zvk*iM=7CX&gUN#SV9w4~+1c{Vwtg9ay+P#giB(wD`4~19kka56f&FC)Z5lM_&A~}@
zIno$5W|GUAyA<{k_DoLbfKA!1GC%l&kqPtRX<K9%l~g+uMJ?lB`#%j1uh}`&tOU+_
zoAbD!NDM!w*e99(v)zji8Q<P?U+ob8Z@Y!-ZXEe0R<s@YaR0Ryc)cr$V!S0<RQ4F0
zipbxk1?t`CL$cb9g#3MUqNN&|sR;rf19D4JSRWtSTY;EQZB;@3y2SrDN#=tfKn!yl
z?!3=eHjM!m4@xR+UQtv#9dtUTsVlozf4BVA?gsDhqJd3uvUe^AbQoPyW%q<c&GI9%
zUGpQj3!aTNmR(uzcN=xkqNjGBQ05ot;7ITH8++b9>-Tv}PQOU>N$Gn&V;?=8(L%>N
zi$$GOI^HY9YT>x7O*zNqABo~(#x|O8i$_jA^{-)1?7k~<Tvj{7TvTnCF`wJ(F<MLE
zO~XZlVT4=?EeEKhSh{)t!$a-nxSa#JN7U9-7*ef)L;oW#VnRdj^;R5kT$x268#C}*
z>UTVH5ACfH)SbI2;-m@e5;7l<_q<FCC~goSg_A8&!t<#rF9z4W%|wMn3(hi7WwT>d
zf0JSH)VCBhsh{An1|Bd>ii_0NPM-;fYOL=wfbF<BhcGjPd@`ngkTPX7J)tgkQ(iBh
z%c1*c?-EtF9EsmSIT&y2Ln13WvH}N^g#U&3W}2<0#$?uHZe9*Wc&nqF={BDpe#x*C
z1T{<n2Oci<+qCZ66$!=TjDb*R6?4;MaGCs&D@i-1>lTZ<1-~{KBzoXYj2H20NZ5CQ
zT~%3h=MP8)Dqq&wpK4F?_v-C>OoeIKrcT!o(tG@de;^H?Kff5-^U#$T7uf%b?Yid)
zHHTdz;`BKEw2F#7>ql5pnsc{Ea^fF^KQYWBV1m-^sXO|yHdp)4s-+uyr=grg_&>MV
z#k_X%CqKq@wJ|K|W0@IHciFCQs(4Qr)E7J!yaV?v#7;E@_0rm|lhAvXo|Xr~T)NKw
zVx1!_zAse6Rr2&L9*NTFiueC#)LHcJiW>uFmgY`>6z>b~#cXpebOoZY+;QH7Vf~93
zet-3vOEckN3!7oYkcIk-`wA#wW<3}}l$XVk;6xN~9dLjdcgap2LKS4VN2AXBegtO(
z0B@tDtifMW{5DGQ&alnmwZFOX%_IpKEuV?zh5Bj4pm%4#qZI+s;*~-w0;QdjQ74&F
zi-#$3P-Q9@KQKq5c}%pJc*s!dO18Wpq~Y9eNzWXBf%$Rj49fPeUL=SSB9zK89B%c&
z^jn#3TxgO8hq<{ac{7);0c;sL2=Psa0{Z~qIi(TH0)yZsW2&<7&VC$aHg^~L>az>_
zrZ0%UyxzS{5IC__IHJzu9m###ZPWU2MJ$x_Q=@Sh<2%4Jy956QlOUZ0n$}_KQh4fO
zgLGxd#Nl)~xk}u^{96%z3{rK-Nye(hTlAOiY9d&qmuZ0EoY=20#WQ;-52y#;C!yVn
zg~E%U^f-aRZ8rpwo2t^hy%4Fu?-;0tp{%U%sD6Y(*TR`t4<X8Yk4Iw@n+JcGc_|zD
z0#;N{V^eSqP$pnlGhSw}<6uaM|3cVSt|I6m?d@F`RH&Y5S3!dgbh8T3`+Us1fNE%!
z0GP!fnXCr(z4^RB<)%#H;+#wmDfH`}P#>j~Iq_L4`%JwoqK6+gmxg;|w!Q?Y8`)Qv
zNwE=r%Q&EJ4`R5wo4lr42;4&)p-|b!b%T-)rT!}j9eZp0LG!0+^SWHHnm*uQ?NXD?
zor;L#p_vAkH9T}c{w}!ml0l%Se6VWANzv+$iB;>6sHBIVGk2n!x<eU%oYQSB=8u=@
z<YH0MYApF?|BJ66G^K~}(etMNqB6tR?e8UXpqD3WM{5&DrX5MM@O%Uw0=|Jy!vi2k
zErrlVkt1XKYwru#^9Xs}k8~_^{cxD((<XgH(fd<=qMxVD5%R0s)FmxB!<C0TSFrl!
zk$tcH43ol*`wD=8uU!+Eb}g9OE1bIum}Ny@0kR#WdjE1*SJ#k|AGX~_2W@yV7+z?A
zgf#Itrh8O)h;!2TE_z=$hPui@FlVC(^eLtFkq$0eD|d<j<E;RXmjXYk#T&ic=PxYi
z)CRZ9aSsyS;i6n0hXiAC%P%Hzy!S{n{)w_$x`gmoZoow$>*hLbm<IR^CsWG*YWFD4
zYG7o0lkb>gIWLZH(+j6?(BxRIUdo$HlnV7&682=VBm;{WnYWx_*L@;xL>^&9X(I(2
z-s$fJ?rBy|6VmS6<zQKUzK!+tq~&X?zfG3Li8_d*CMksQhH-y%O{3CpjmVZZ)d4>y
zjXye(CN5w)^*ig6#t@?KxmQh?kb(wzEDjB9WQV`9NxPdA`c4*O(@ryYaf5FU)n(5s
z@nwKqfb`r9)=?Lcml82}!0nFk4N?^1n4415E)~*uG$co(PY%uYUTBF%>Bv0XE19xB
z%uhX!=)l7TN5Sr1*L=~5a6)y{5S5}!qg?D|rdb!r`uyx9CKFrFPPnMduq4)7O{v*d
z^`-?j1i@qp$-#M5$OHIn^{{#sBe6yv=;l<I4y-DCTtk`e_QkY?UGDsAuGLPk16C(=
zvXUo^zm!dZq+Ru1AlZC9%4=)MryMJdwKAhAEaKnH+D-8R-G8#P^t>VMe83L5?BT&l
zf{Z{F-e<FFd8#L9014pUt~e~&)YK6LD+Zp&{mrFa$x&IcJW5C>$pju!Z*v6vgbXVL
z*m%a~ooIq}6`09qdaQZzTKrcRs_WNlH^g8dTQtC*I2z5RmxjGy=c%Q!Q|7;5KzrSm
z@CI6Cgj>0JIi+iZ5aq{})9%pO0_^)HIZ_?9`Z-fyK2AhKutF<`>jzl-?GMqzb+?Eu
z@PGF<=LDAV<guyylSn5zZE%Q**|c<0(@p(Dq>vDe%CepAvE*inM>rhQ?6lF%HRjcJ
z|F#Udn^^teW}b!5)3E)!5Mz0CzbC=gQ~}Ex!_dig!`&M62=x>M#g%qrTEq60D(*fA
zN1y#B&26>*s-GIOLg3&66cme@|CL#$WsNY60_hBrkaujNn7Ne)L$(iu{}u+5wur+z
zAFT&s8dA1FMF?;yr<-t0>iTnii7Snl>nnb7+oNQd@VE0ajH5~6Y^%*noK%s1by8yS
z<*;uDxgg14CMdLZ$RqHQsQ6~7D`T}l;UP*IysbMwY&MYw9WV)8$ka6VOU7nM)G<YF
z(oBD!v=V=Hz7CazQ6(fw$2x=}KhR5siyvt7FMNj>)YPCFZ>9oeRM}2R4b%lLzw8a+
zzTGMk4`eOdn=1ScAB(V1y7YD&P^&Jod_^qA6y3JgwQVVA(K~cF+<&MDM85x-%%`pg
zojBCBm?Wq9o}W_=WV$+wFjD@){t=VnVewo*kL}Bsf7ITxT`^NK3J8`{hK<jLRO+#@
zPE_lK@c&agV#Qn8mv|biOB)kY;}aEsAJz;%9Ccz-e>8HIP98n5Xf^+P(f34Glw}fI
zw+Z^2@uXT1Y$cx}SRWU}!?Y>xMi9KNX_FMdRB1jeVit{X_Sm@=jqzNPx6~N761}{s
zU1==abYxA^XB8~iAI6tEcPer=OiWB?d^HHV1WOH|3Irs^PJo8q_H#w)i8E&t4>S3N
z6<`~ISe099J0g;NWgVm()IJpeC!t679}SgABzDJ@^SZ(R2<v5~sb_`v(WCNDldZ{|
znb1{hQjP4npS&F0t?se6AojqPHya47ERV&)IkEIrblmMU$+HLa*U{k#S~7JQHJ=h?
zyqO(-iN5el1l<l%uQXnSH!LCvL@Z!3MjR`+UOJ>Z8@#etCI8{%hbsI7lyj=9fG8#W
zyYqAJS@dAedI1smj~OhC6kjvw(SGTBP6no2BvH+|%CJq#N8tIi9NT>0WC`kaUbk=p
zCuVLp<XcWf0ij^^=qvmJ?)ta5E39+y{_J^+-{iH@I|-g?_r+a2T@aS9ZWUAbE1*%9
zh{Uv$WAx%AH&+=F;o#@Eb}9$PgiMzUFMn35YnRtTrx7KLKF%H0g52=J<Frm?HAiN_
zp3%N>FbOA%8iLtHyCG?3!sPF!Od+S6)aEqKf$>ytRTeB7RhT~hFRB5Q{23bAy2!DF
zKm9vyE^x#Om<`@phv}>B5_+56*=tM&q<_h1PcjB=c|(M_o1c<ez@|C>TaH#Wkl=I4
z57x%Vg2zUja#||X2ADIN&s8BEavp&sA@l{xoik&<ufKvaN%No+_lmAHnLm1{^Udi@
zo*y?I!+3UcF0)2bobC+GO9E|*`1uY9;Gd|Sc=a0w+HOXhSxkCrL+}0r-0}7RCDSze
z1m=3DI@64|H6e7Uc(nYGQ|4Z_4!Fsy=nsN&Q9Bp8D`3X`Z8$4tX|5H$FYi)`Y>C_K
zH0^YmsAxF1r(a@Sk2jgXU4r8yXTZKShmxfXyV$EHiz;DsCio;n{MlYQ7SzR&O=_2T
zy1GY?@n1AsyHm9+hKHR~#+rsxsqL%_LaSZ*79}qzd?x-bCwMbUv=k&yum5Kt*{VJ#
zULYNR^(<kVny5z&d)kgTVZ8V*l=Dhz#*>_^K>hW&CgorSzNIH*qqf5vrC0sZjWeLM
z;-*>2Da^%iTR56xAH4P$@h<o_27<Rmy@*HNBAA`$|LoA>eOa=HIk8#?52nQM0NFn4
zI-FBk^ZUl1d%)5WmS*e%JitFoj&di8E7>tYPiAi`8xuB===_JSn#tmF=AQ?2_Rh_6
z78K-%vfj@^Mz1H9E%5{N@hg=Lb+&XvOk0YvBH4w5xJ{-KIKq`RF1-!<Zo9bcrRjwT
zRAErGtQbBVs<KwJa`n^mUGL-v=_a>77|I|_zKUn02Cihi0jW45-<v~-Z8}RRS9m>=
z{u@?=7{HgY$zAR#N!wafXAIhgCbp`G*d)cEwOT~+4le~{5`c<{&jxu^%#pgqy8nvv
zSZt2d4Izag(>wgx+5n&ji33zF<n`BQqe##|0Lqw&T$IuD5DzOHxApU}w${TE!iZ8O
zN{ee_kUWm?t=+9AOXmU(e<Lr^)>Yk01Onw0i{*SE#}7(XG-=)P$^{KVEvBADXM0*?
z9FhnWd%DLGrVnL(iDy^IbEE#|R7WhkL#r#(kp^Gntehz>@**qnk`SMV9i^l`g=NM}
zoN+FOyh$&<SGAH`ZQm5_@W<MEK!N$Yj(`mWvzjIV;#%z7YaGt_QHL}JEbXh?^E4y`
z5XqhU;nE-Zv2N2z%=X}Lta76g;DC)S`I7bvqQbsw(-W3kW7ncuf=zd&gMa~lN;1qg
z`0+$v>!O;(L^IrQrNNHL9pKx=wk2Z@o+!D+kH*CltvH|2TFAHlNNl^VDW%5V6F=q1
z=1b6|glpY>O|#d~!u9|>IIT;N#ZNVdGg-=v>$Vq}WM}2(P}!974bD+Sgqve>N^|zU
za>ik#bf&XH4%ml$Xvx0#zvJ{(K+j0lIXnmIoSEw?%Vq}pyy~PP#9=08CBR!hsOe32
z@SLI0JZwsWT&b~G+UW6VWW)*jyS8XKLal#2;!jkZ%x1=frZk2c>wFe2Kwh}ztGlbA
z%hHCoJDoff-0Cefg-5f*&D^_%=`3?Lonm&66!RCHD9H;j+yV&H68l_&ZQ&A<x00&~
z*_9{7ORSrmb;KqN^$kp$yX`3C`JYd7o6DX`@5?K`(0+=8?eWgfDL&-TJtD7}pfbN*
z1moLC`Y@NN7x>$;1G)fNK&HP@pBV)?D5$bL-Uxgv&H`p&L~V?fP+wcFGP#rTg5w3)
z?Ay*NH8_E?^L)2TB+u!(7*F6@KtMW&hM`lI4h9W(a&84B^kpq+=<YGGVU2l@2wl-K
zmbldqU)fOEM8~Jg&bH4e5?i(Oe$96>Q``tnla`5LYfTM$mo72oMP@yJEANpYtuhtB
zv!W%sEFwE4vsoc#M$okox~&R_{iC<_gb{4ybEF=Q=9LJs=euRJl{Ly=iC2ZrmVbfh
zuqr0!C{>!tviY}lOt36=G-{>Lo`Hn{Dy1~X>0H##N-Q5)9H~1Mm6=IDN;J;K7$^2#
zAlT!<m+YKwkq@7)WR@ef-2M2*J2g9Z+4(&1M#b}K3s_WqxJ32qSZV+yYYD&)T7@M{
z7ktnP9#09=HG&wCY2Tbk0bDB!Pb*o@ho>V&iPSY5&j5!z|583JXuu)2s>~;mSJ6Tu
z-wuwp=O&AsCYamze8rkZ-l3geS&_^rL^9Y0RQK(OXYcr7yXlkB6{LZ^JO!Fe=K6HC
zTtepgsHzxI-~(So-}v)u$`VcuVqco&XRdnzhn676tw`X`=g}6>C}%DpNs2zzC~y*h
z&OR;gqIz#|jDFZuhZ{}eSM_H?8DOpS5<{X>bUY+;b~t}}N*Ud8pD6(xv!Vqa)t*!x
zEQi%)7U2hM9J9L?UA{5XNttA|l}_I{|EUa{Ps|CYoZ=*i((9BN+hJHiX}lf|BB<vN
z%*S^p;#=oFf4dOUy-QkWw;<vKRH>_bDj2`$L7JrQw_1ybI-z=q^Hcr|`cGu2iSu(D
z1phA1cXJK1M)7PSV1!fsKWp%HP9r6Cyx;(vQv-Y^g|<vdry}>yalL%j7()>Nq|mSr
z!4Ns1nu&jFR43Z?U+a7DAXG)BOuD33a>ft>5>SG`?O@)BkV)F0VL`s_EI_6V5g4-*
z+%nw8I+c}5tvPbi6o{EtxEAe91Rb}&co0X7y}X*sMNNd1jVBgGGPH)3(>!MIYd?Mh
zud^;rBEz%=?X+sX9W{C_U1~HT|9hiszzRpRaZZ)4a&-<8TCgPZE3Nheupshro8X`P
zv{5cUe1gZj^gvAZkK@knUc%uKULNUJP0nY1Cd@0ir~ze~RnKNUiI4s`R(xVU;xH-B
zt`d$*YAfC{sL$u74l(Z-S3&63WPFB$mBr<cW#9b9I2%F!mX8%q1HBtI>2J<X4~RQZ
zx=9V=D)ghxCi-{s7Ga~XankC<lyL8Hkl6)CvuVV{lf}}8S9!p^Q(LkP0<|)yr<*UB
zg=0x`?#T6JWW)4@_C1xBzzYpq2=4)g^eO!b#w$>w^$OGvQ%g?Y1@o_JTk&pOYS}@g
zs#jAB{s$}1J5cky$(g8nu0c)VL|Xh;=rrwutl)KcBMe?wlLi$l?XOfHZP;6d>({aM
zJ^ub{b2mFbU{-Bp1T`dN%hB`plYxi9JZ}k0vch(+!(LgmR0qaxCBA08gHeQzCb1>^
z{J~?O*zbovoO1Ju2!fKDG#eD5`A<iDck>WG*n&dn&%#bx*C=Ft7P-1EW$RdPsnQ|R
z0Qkjz6ttdB{%CXVn|YD#L5O9hM<%O3)Rc@}roH;)<8yi-;`$K3!Ln6<`7J4sWBN6t
zeUqYKG?o)KoI`U_*45*RqNUHFKh1mHYQoaMJ}Z$+FC9oG>n${S&Jz9T{ki;1rNUkE
z%wnZhoHpUjWm*$+cC(~ip3?`O*P|KIXQ@Fh?_1$MdkqD#ZpsOYiKok;$B$A8q@FHJ
zV6DiYIL$zqZ022Tu&|%a9!8eUZ$YD>G<`I-V8(|R@ziwll6}o{_nEIuzrz-XBk|ND
z1L>hVo5{`kJ@`TH?EtsDtKbH$TirdYg^xG=ms0=8iOI(w9#H`|3E?9=v_jRaLIU@7
z(F||48hAl3zA=B}kI%?)ZZVIh`2}crGurW;zb#N88bXbOw3t`s7Fqt!w#G#m6B<2)
z5ghF@3~_1(5iUY65{EdAbPii)&DVA&CO<uKjdB;|qj(1*YD4MwmF#U@KILIDcBPg>
z3f8wi-wLdHNhH_ss={nTGxA)T3tCTmQa~f!QNGoG);)0T*D+3jWx(*SLP0NXI_0_`
zji@WRe<vRWSSn_0xw56k^B1SG-EWBJKNCpA8>n&j4AWfIrSIe9zt~}@&U}z6k1KBD
zw6BB57U1#?or_u2l<Ll=c3RJpX!Z4TB#nBgHOEiu<mQKxFz}RNYLGm_UMY|An=FH&
z*`uv+QaQZ6@d@3~CW&-K)3g_0??i@}VdzMKdtjT<ITK~fxw#mKoNs~+ND7q1mAhjy
zE|5w?W?cl<koE$R%pR7{k0wli@vu$|P1D<)*1siWkp#O16m%I(Ro->;3j(qOCeZW;
zSk#;t8!G3UE@qlh2r$E2CKl&FX41k`c)}m;_i}0gjyw+B+f+|?P=l$(mKU?8F2d=5
z<-%<WMxX!QdE*2_G_-eJ!+<2x_1?seGL@8Y4=p|`C$yzCtr`0YS~SzjQm%CsGx|sf
z<8(hl4fpW0qY>#?G?OY*m3(y*eXkbWZuozaG5ChK*!mZSeaiyxd?*vtbCnEV9#!n#
zsc%19E$KGmYT1tx*IPs-sbwQ8R6--2;=QWIMOyfsb2FIt{uG$(WLgH$#SrJqK-*w-
z8Vv@O`d-yBjj)x^P1LjT8rnJkE;~Wl<{ty7u^w**7{rXs+_pK_%`$E3+g8!zAb?dd
z#`LTKxk3!MjBSk?(de<2<#7<)rxEEWbIC?yp1Tr_n@C^wD(o7L_r)qm%7sm`n4%m#
z2g;M_lW}N}1!*Khygq8Y4mOOAd&?lG@I}7|s~c%+ec`MWGv>@sJ!8Uz!17CAY)oP^
zvN)PpWuKHFy)?-uZxH6?j&SQrwv}vfb)?sZG5rQV<cSy1y0&qxnTZD!E=;6W8@rD8
zI|I<+DCwY&>0U<90dZ?#L&qZpX)o@>|60+MKBQ*az$RvNGXP?f+PBwnxiYY<l_UZ}
zu6Yba2ER~f)eXH2lZ`II5t`XDkEwBBO4Gz;&R;csK4#DD)CYL*X2>{Z@ayFH%98c~
zD{|gpMu(8nG%A+UE%Ll-jhz;>j^(av42y@Y6fv5-7a=QRIutiP4(MZt`-uC<TloJ`
zj&+3kY~=zbRzv^^UiHoCvH%;6|NombtE;=|^a~fU)Inx{<%J-)*(mfPA7;bw3;t;s
z0PvGYqCpY-GoAr1IU^|6m;Z!V(7!gQ2L-w2Z00Yq$%oGa6;_^VV|Rz@FFK+#Yi34-
zC9Qy~%igvej~@l;Az7(f=+NBsO25#<egWqfxzMKqo>vFT-Cx|H(qA(_Rv|)Riilje
z7$?OX)fg)u9^P_bX++$ybeM|1fbMQ)%W;sC&Y}24sNypBDxPmbsxamF;(ljLOZey5
zTfl8^`I_jzZ|-c-y}f_v+~Tk|ShFWDU@7`+FSz-E?Ye@es!S7N<bb0R3>B#7n~WXw
zYBjE<?eiS(@tG8bMXXa7On#QTVii24O*QAZgSdMr*Zp(XVH!{lxeV4a#_|LR;r1W=
z;AzTfHyWb9MbS0w`f)t3?TYcf3q5Al3BWKS8sO8SV)i)LFk7lIk0r_wPCn?yqFc#f
z!gC}hH(0lELI2pGdWgziX(Yac{B3N~5-k(c$?ll%xfGQk42wJ#quuU*EKO){{8V>W
z0~Gij0@FGUI&B?hO(*d%{yL1p&6u^aM&XSf(b|aqqU{Sgb#Y2IfaTB8)&)?3%-WYL
z5<vd10WA6`$zms&8G?mV*#QY7>x3B`g2O+LXdi8*7^vW{M1e1-gA-8c|0}52F1%3V
zq7u<tDo=Kb11IXK-;5+C)!K|uA4<s1hDzzv`VGTbY?CU07g2n){OOz#@?-5oFibFh
zg_;jR{=ToR$o#d7B!12IChsi7g_HI0j*iH0EZB6sVn4cZ0be`~3j}Scg@oANJc`6~
zR*!_!ZZsj#fsfKq_%naFQB!W@q$D4XKawt^S`0WJ<vMy<KIm-lN}d-{3-ta&VCPzl
z<js9OlhGGbfD~ecKzf<oUe_tKAms1oz@4BH*v*oE>M3mFhaUe{kA?N}3@S8PZsqpu
z=^(m{exFO!lIp+)AP6AO10BDBiy#;OKm=8!@ivY)QKBvj$F%_y0Nm3@byeD>w+9)f
zzg6bHN#Mc!KTjPs$OZH+m^PLmUljxA6S{INZlX~;ybGiNFoht&uA(zpt1vHMDCh}D
z0Lw!S5kG@?<(=3#Cb~s|qcIAALI3x_-7ed4fNU5c<$<BOV5PDOf0?)FTE*p9G)%W;
z|F@2G>xA}3H|wWFSq~KB?@lBnDQcZ9weSNJ5lUDF55Xc+Nog_?GaN9pF5L#d)L8zk
zJKvpFJRbYziRF(Xj{z^-rW_B%M;g{UEV(4moz#ZbrsM}<1Z(>hJX;zwMWb)x6syk4
zS(~gX<WXKU<77@A?+@@ye;<c*<!<F}g)*N&<?XMNxcLOfWOXYZuhPwC)ZAu-ZAKDI
zthsp$pGHMIcf^%^v++5+U9FVtod$3y+Va6%9RBa}WA-#*#F`4kNXR;V+#G@f3Ken5
zBW7ki4&_~0uF5EGf2Mj1eK3f*ml!sVpBdD+Py3yTJUzE-&BIo!Ya`(MitI>==uaod
zLs+NnjSqgtlTq^AXXo-OJS^^QP4TCZ+*qAv5Yfd`_<CYDvv0}>0cONt_`b<di^`8E
z9&Un+Ia4Jt`bNDB3@Y>cbS)%?cTH{Co{%f@upkKXv30Z?&wj8C=2LHkhA1m(zt2US
z$j^|%_~Z{kKTnkTK<rE@B64LIS3j*-Di@JS+86Qs?-22bRd-!;{{vDs;GzAWvqG}3
zkMfdiiI#8^qLdn_WC3mL%&$q^ENRADv&OpK$=-mFJ1yY-iS$esZ~u#kg+@;=rM&fB
zXsRDghS>xhhqQakHOtY=sc~+xFurAZ{nWSExuTM{!ldjB3lWb-3;!#R4}=>0;%6ms
zCx;+i^9Ru(^dEjL-vx5hLtFSnP|D0#gW*OK&K!n~BQ68b41>u@FhnHE)GD{lCZgQQ
zzX!=4iHRV(Z}Mwho!QHd2q6sUxGA}xtmoMD03@JNoL1)YQytw$H$mYcx{e~JG7NZ`
z*wt5nHxSS)L>yN}S&U?(B9whFODPcLylpxT{rDU|l4-6lwx0#%!jhL*2M%W#{bcwu
zp~nQEcr|GD93{O4cK;eNYl?auP1R>=Mx6V@`h;HEhqSySNtemrt}T0x?0OFfAxQb=
z>2pnB?e7@%mpOxVwtg6H5{M9W{M3jn`w357)F)Fuvo34?T#jW^X+XN+NyU?nt%dYB
zwiJ`?R3kyjib|s;4R0K%2bSU?=#|49MnVni)pFE$(6e~Haas;XopS>%#MxkcPha@b
zMJN9rWcU|l8c1dDk4bGYpp-Sz*i5ROx|BPT*-E1qbx<J_vm|9XPyfjzioDlCzP`5>
zG_`V_?4o;FkvuA|FD%Jlva~DyQmm5U7m6i)-2gKSLeZ?v6i}f^x&C8j@)tz(U*_Gz
zx$4WYHtQVXi{zSNEY3KxxbHh8f3HNw-ZcM>81zB1jo3>w1y|u^@GrIci<m$8Mn0ko
zEKgO)rr>!sPDh%=ou?6Ql4%%ke=g2aok}D2FVZyG%sZS*t)DjJPmZW4gWVB@PmsoZ
zv=rkFlay6Zn2Me1fOv>h=t{Hs=b?9N82-kiwfvZ8a-jZHCvjmcZAK=Oy_7!4VjK=5
z7f_p3%nmJ-<(zDs=?psm)X*OfYu#>qcu|!O2ICbyA4-L1Pzq!~j&92%lLDBfi}pl1
z+tm&w`C$Gz=UYs_yhF~hT}P9VBNK_vz;UI2cMyUswfnvHI7FH5;2r2d$vgD2yW|pA
zpv5dikP(rjgUn-GB*oZxL84d!Y`YrhkXXtSfF;Z>*Y#3$nd$}*T1G~p;6)GhVl?yU
z|2Yma0O>kkdj{Xxc}i-wKb$99CA3~+b`2UkNjT95R37);R=P5pZ3^K=cs^jP7c?J;
zO#+Co_@c1Mu>PuFJGnVrgAY12jZ}z<|MgUX^^PpJ3}EGN@>697jYlp?YSNzS%-ykv
z2EO9IG_CX~B!8>J&j=AcFnP*Geb^$%#qvT!WVBw)^m+vOPJRI3Hyc#rZYPkBYr{NQ
z)iy|k8Edz*F7#rdT+DAaaCb>UYu?@K$w}R4a=-ML%|GIOs@!<zPaAOE*Wm3myf(S&
zn@4mk*wv`t9PYYCeViCbV7(2nBJ~uGrwwfA<j2k4z>J-MALPm9U-|v;J|;cXKhUJ8
zE)LD-K%vN$SjHu?;^^Y*=3-jfIZZ#*=z|T+9P>#_dHW)GzoHo=j8v+FalLYet~4bg
z)~#|Ts_b+eV?U;dmWymiSXGB7vRcfdS^q1{7OfAg^^ayJCQ%<r4n2=YNzhA{dPccw
zh?&4?PeSAuBj;RW?o8=p2js7mlN~#VV<8&5cLK0F@xg+QiUvVa>I0JQwYNiZ)b=|M
zC*p2|S;OX5u60*7rqH)3fH;pldywWFX=~6q_@9psO<&Vzk=zm?Ps~WsR5gA|%5MO^
z$)o+IpaZPy%=)1ogARwRnwKO^XI*C^8Ok(BNQc(-jELYBS99{o)s|1u=$isGmSjny
zuRKa=TB?h4fpGd0Xh!Wkbb~39>hb~ML9d<ql#bKE{aqAq>93uzasrzcHUWwAN)qga
z<y(`?!_Dj-<%8{UPbhgQ?&2aZerDsvtW}ur_oq5ogM{;I;0#~D)5L0^*U>|Wrs)Zv
zInf&1fjxKpc5x-b_}HLE)kSPZA58vSsU^oj0k9)g_;Dn(RpuF_l)ERTm5Ps@_0V`_
zA3}5N0)Vb}Zu_1gVofnzOPlR@4?y6~GWNvNO8$N=6AjUFsv#~+<uXlrvsJvX#G-Ut
zqaXbGfI=~-x<;ZDOnq}&)wA`iNwyn5kqcD37wnX4pgRCTD!#3E79Zw`DH_i09&W1N
z$7jzJPlR6&zD34#H@5paM8miUOY%VQ0PDt67xjQ~I_d)Z#Mv$&EwcnlpnaY9d8(vd
z^#62zxS#&esT+4aSvF{cQ#Qm<RKicbg!)tCUEbAempe$y(h_fjoA8p<rT+2!j)PpJ
z^pAvV;F>yWGTKgzPEr1kQx;p?zodM9#gN3Gp((Z7$O=eao>D25ixn+sRD%1mSzGP<
z-<sv`@WCy=_ZGaHPW&~vSToylVd&IUr6`J0)>b($%w|;d{i!uaG|tOe49+uqm!HYK
z``Lm`w1gKHid)lOkZX`A7g7+VxmO3|#WIw90o>F#8oN0?7auf{p;Up(dRZS^-&|^B
zADLZ^5H7)tF|DYMUQaZ8xE@CaZHpW4ky?^%ZQ7QwQ|G9zB@eWw-9>gK)Zys(2qD5L
z5Su$5!~5+vpFGaC7hQ5Dcw0Hj!;&86?|}L+fk)gDQA72gCxl$2>(ly)OeO%#l%73e
zaghlYQ8D0=^ReoYJd<e>i|4OlgX?@1Tn@G{zwTX#exum0DV72Ym)#G@cwc=Y1mvG#
zz<rIJnTBU@W`NC&8p@z%N(W*@DBdObWxl!x_Z@~%<3W)Ms;lhqp-CY1s>DGUKUo11
zCHf*&Rg0?LZS}A;*wnM=S>y+c;>78By+L~t>BOB$gFnP*`f@!kz@DBq;YOy55Y$Qq
zndJknAZ6)h?vPggq9h9^F=JLu5)Ic<h1PjF{v81e2O(ey3Lpp);nugMgJ+!a-8^@&
z8zIG^PGw*}aCRKk1&~NY--+cD649Bn^)15Qo0xf|`gse9p+LqE8}gBl3{Qr!8-G-Y
zdTwDScX}&CM%YR03<UGQ=3M$rBzPFEhCZA=v)e6c)74{6%H1-IaMEZ(n#@l|m+gc5
zn$e9jZBpfHdtOp3N<`xh>T7tPuPN#d*tiU|!sN${k~v3hhQp^TGOpY`lE>8Xg?^jB
z^iIR(qxELWupe3^^<nKg$y_txU6d)We=0d>ItwIVT1Eu)?7$L|Gie*Cj6_NStsE=V
zzrbl)Nx8@^h#3oC7#|&VZc_^Lis#F2HaYpUZH&X>JF(mca7+Qe$|bmZv`FUIBcZry
zw?>z*?eL5FeI=PuKEK4T;zad2(IaPZ#*0uZP_cc^r0l^-n%nPtHzhb8VpKk{cRSit
zp>F*%#X+QcVu)I*L5Iz=nq8dy44Dh84>Q~Lo=<y1%eZ9l5WG+IK!B^w$C(SYI`B0k
z4)L}t`#Ig~krNK9oC9_R)C#f6;dmB)yiG}XHqS&+S~1gW35nNh+}VRv>sK`$X=oLc
zj~whcjh)#s(6wc#kOoW2W^FD<b#Z}B-A7&Vg{8)TiLBo2h&E@b<v<ar53=q<f9gk;
zfR8#8z=euhit{#PLK-n#{(*T&G61ZlX6lpjnYCut_Idom`4FG;=S~sSPAu=znC#E`
z&gTa(>h78kC_7h=knB@ci2(Y2=t@@|+>*$GA2)5g3UF7${I+wg4d=tC75-{Ha&5Rj
z;Np!@UE&P=H0k5I)?|lmKfstO4{8`cLOp&(EIL{;D_)oQKWx>Zht&SS2o6@A|9zhG
zwM_k>2SKoCbK)x+S{>?qac!=xjQ}s;?q8wM)-~%&G+1m5>$?`9>c+jrVd=A4-rFJ0
z1)Y64_$eBeu=klV^Y$jcC^rxfgm6vusnJ_uF?{Q`NXTlz>&px?hY1m1tt?Brfjvd&
z-?sRv>4kS4tZWddnG?h6li|(5U(={ymY{)6a6L|TohvqRIUrpdMXbhZc60oG?kJuK
zIxe%ggtAcAI>r7~KFlxm;Rf0W;tM<XhxGqpD>?^)z~nW06|?YG+58!c40*az+-J1D
zaZ&tWw?w<${7u_U%O`ofUm}p&xWyGZ!>(M#n%kS`SKoOa2YDbup5pvM(gN%r&HLDi
z!fMW)m<QFC$=;O(xc3F26bu=EABop_C0sNL4s|eQ<!FJLq@1<KvA1{&W1SSdJQtme
zr+_5Ncv)<qIbBD#doVfY!;AYK_b^BTn^!{CQi3Q*y~N}YLSA+6f+vh9IK`bwNn{kF
z&$`b#1DLxy&52^}yJj9|;J%%~ZfbBjGJ|5{?`k!7Ynx`=wy}BXTTESzkTr#P{TRq>
zn9?1+`}=WJ>3-~gLRFJ|Psi`yM@>iLwj##szX9d=bxv=p%nxS3+pSOG*`4EdSJ}@v
zLOV;OjzS5VJ8d$5GKrnlRN%4$8%L-k$LK|>;S@!b8AW_%LvSA$sJK!_W|Tsq>Y##Y
zcs%nv*u29-Qd;H>P@?q!rHPK%gZ=kMMyzf@{&U!A%3tUHLj?_<@Xj2f`^ZR~hWF78
zH2M-JZ+<)39WjteP}=C?1Zw$P?(-<kfa#z)G)gaW-uCfVu8qJ;s)b^D$3zJLmsBzu
zTP2}@YS(#XR9`Ooi9*rOv#M>mIqiGI408RB)wjR?B&T4h02~do0*h>cRRJG|Xm66b
zGJ&k60N-ZZJ)R!N4#^M}V^lYa`Ul1beHXhkuP<u7pXB^~Rw^C>y*%wj%>Qz$WoTjY
z@TVjn_ge+v`DA4o9zx-AZJmFR0uPUCHxDk-^7(m{ZmC$O9u(JM{W-FHH52xD6-sNZ
zvadPZSUvi{Lo(yV%<Xq8F!jetd9kn@(jQJ<xu``(kYQu(8UuV*@zgMtad%_PU*soe
z4H9rH7g6!R|I?HPhZ|e{?&{R%L|W0!Dagv$V=_G~*IBna0ZV4pp{Uo2IZ^PO<Y-us
zTh5TweO>GsE&>kH9PLeLkuyy=-9dV*&=Q<zso4nx0rek;dV*m#4%A%#)y|nmr0)F3
zF2jeo-MIoc%Ltov>)&KR<-yz5stXsqiugJ!ETCs~u_uPx^5el6JPseH)P4Q@3xIUf
z+~=+H)r=_X$$TJDJNZE2ps3FhqcCWDa0CKjoUrmZT?*~Gfg0Ad0`4owd=An<Jqz-@
zye#41Xf=-N*>VwzU4lIucYH7&$!IPiB2WJ!N*c$q65wE+1%wt*CfUdr)F!{Tl;Sdr
z)pW^K@Cc5LFldp^C(aWE!v%dEH3FOd!iAIbwJdNGFQVE>s>y&mc7GDtg1cQx?K+E6
z$gI<7e|nxX!IB^;XFW1|Yh$94;`He0vT1TkFlgGlo(LJcw7cZ~QP%<q!4j*rHyHrl
znS-{2LQE#=?>`#{T(=_YzFi2q{iv{ra?}3XpX3B8YmscupAy;U074x^xS+J3c5mQy
zU>@Xe+bQa_oQSKA9L|6PKm=v{M7GbymxRh%ti9E&_7U9A^`i0v26W{Lo~oC`y{1Kp
zO4xk}>$H%RXFu;4f>e=MC@_INy0c9c_>DqbrN{DRb7Kt927|(XY_{6gC$iX$g;g{^
zt>2u6=*cbWe=`U(DCU64U>HK3q1pa7n!k7l^L<J^Vi?OoEAy+IT9ofq;vx)X(cRg|
zeN?Tc@3G>FZ9;w36BpyFuH`x^q2^&>kJC@F=5whtO_8$6NzFp&^~ZKgeJiT2MwBow
z?@^3^J6>na_LKQpeMZtsK<j9h6^BN{uvaGkCY^o#!*I;*mdW+M=8k@;3On?#De_3X
zoNZEvvW^C}kK@MCalOUVc&GEgG%orJ;+Bm{Bu=OIjg_6!M;$I6UG^ru2B3_v*T-N?
z$9;_t$I6*y&Qt&T4;_1uo{erA^sG)^?|2eVZ_Ckw`?zUfKje8ABUmX)y8#C~3sA)$
zew;w%Sh|7p?G^+DDsPlD+G_(z827_yhmzLGcq2q?G+0#7!y_u}=878x)T{lhc*6!3
zhKSOJpnn(n`g-FCn4L&An<r`YWagz2Z$bMdg#P$HHp%?5iHdKWwGl?!+NR+!A1r|W
z6>V=Oc+k44tq6~Gt#DygSk%Ft8e^z7uRaLt3x0?&YlftL%Tc~Ml7#Jz$wxvD7r(^T
zdsuH!WwYB8yy?-mEC&mJfYxV^Kmj&DXdAy0MF7~eW4S!FCZ87=*^^yzAT-7t%i?SH
z%ft^@A(|hvBe1$g>U;03ATa0THY{^ziS+hqNJ+OL(InRrEXIpXIW(zy+U{1!!Ki@L
z<A_}wfXY=!T)GmF+t3&8A>>oX?wuR!Nw}hu{-KQM8WhfY!}e)U-T2MBsc@(TFbc1e
zh%)8`FOS<-qYQ(~Xz6t8NY?i|ZCfsy>9C0?W#y4QZY!V|Jknks>t(VM)L?%HKgU+y
z@&9jLl#&(C2Cr@h4zfc4Nse-%XR>aopt*2;jXHK;_gvR^T)oS5k7_D3)+;8^y7bW|
z_t!y0yRIxAzLfx@<d#l#@v0InOpXJ|KZ*u;lq%<F^Voy}0FTh?x76Y3sg9{Ae>e{6
z=-$YAGSBs}8y9~!a<=rsC?a}RagvwYB6y`ku<^1<L{Ua7n5xnmCS4SHo33o)Dj?ln
z3lGQxGaf^{r9G$J@aD3Uf93N*OQOQ|hWq@UU$WtzXZodV#H+0>o~6l?yBsLdz$UVA
z8FgmA+?}*M#Q_{0V#DyQmN8r~!E+<jigZ%@gR~^Ha`=vzSCfn=&27Pn8WCDMA3u|m
zSRO;CL9V~F=%BM4H$QYaxq>b)_PEs2;EQ?qbx@LOy@<Ayf~`A9_H769Ag1+>g8(i#
zjM)VXy(3eK1i=i49;DnEFMy&tTFt3=!hJ7EI&qk;Y3(1EeO`ONL2M>D(jM8V^9a9!
z@E*{CB1~EH?YDgKA4>$MmD_N@iVhscuS`981iGa?=NY)Aj0~5oUvV|jhf{0}^Eph~
zSxg2iw8FQ8HC|gSfh=5HHE&Wk_R&hrh+@JAL)UF%(Lr||&3fS;!`yKnR^OXbr_Pq3
z`i3UE4+p5<pW0r^#@cIjzN`<Vym?V|0DlRwGQWwuZ%*k31(1w;!rgD0>ebaO8VaHH
z%S}>gFc(nNO6sJQto?4liw~Krhl#~3;WN@=xH8M0c7C@BfM{L^h=C2s)_}Ehh_?fW
zh?YpfsKZF6k!|s(43Z)SzF0>#xF}Kx^37cjMSj(RhPSf=le%QgNNv{M=_p^_by*QS
zMSeb?{V^X4@Wr`TpQ$z3AJ2ag`M@T)ePN&tGU@}ubU_zP_O6v3`*bx1pUTIi7^uEa
z%;z}P03p^t;wMxX5{)YUp>62mVt(Th`6DJicjh{v3GcL=Jz?GXIDICo#*!lzU~ehu
zkU_LjqQxoqk>L^8T|m#zX}GaP+axhw7EIA-2?UXZIFx$tD+gUV6h2qQn6$3i4+hPH
z-d{)i=C0hf!0ezfAPXd!z|ud!Jb*EiSXvu`t5ng6-2XPZpGplYUj`JUqGKLtlR^S?
zonknbX+Gi{00vJJOEV)nb0D3!cx(C7vOIIF=%SOjt^)BDYyZi-MFeO*agmlb|A8Zf
zzWe-@ZBUkKZSeK_^4x4eI|s017IiUrdOKAx6SB}JW(=+#K?$Qsn*QC~zKUr<BIKIU
zePG}4*Xl+L16|a&(sLW^M_R-)?ot{DqAR<eM=ld{#oA{|c_$pFL;>)$s!Bxy)a5Kh
z?p@?y4}F_uL23A52tT$YCx9N`tetqg%ypggV3v)l_p$m{8!!Gso5wGN1PHE^ipH^<
z7tkgd`rUxSX<~5#Gad7}Z4Qr}EQjUt7(n`PbQ>s;!St`(+++?II%;?n7%DAn55=Ro
z3;D@~!U-~``rh&EmoNAHfD!`f9K_0BDU1rA3OXQ)G_9bfr*#pi(^<%-K}f4DUYe3z
z31;Ld8jD*EaC55iNNURFHs*lqb3^P0dd08be;3(HJ4E(gg$aMWe9dvpI`HYLS4BJ3
z_~KE0GfHU@c}(*9bKLRXA)z(Y$}A^4G9H}l)B*$&FHp>gKFQ%eV_e1waQwHaf7PM7
z69Ho>uQ5-fNR?`^2oXD3ab(C;`BH}5cTT4RTRo;<Atd_@SKq;P@;K>z4zP5ik#Se#
zOJvbV=v6qEu6uE{r?S%U2c^qDwD(J#!c1xL<5_ysSxy%N(8)G0pg`1mdZ+8E9q&d_
zpv<IS=m`cc%`1mQb&|;~@0oNHYo*g^+)1vSGj+fc4)W^=z;Ks!1nK|zk1r>@L%P<(
zz^IK`fB^sE!MCpu!a(OS;{FR07gSAaK*1~R<Exx}UIVIXB}X(zg|W3W@r#Y|k&vRf
zWr%@uBS({6nTA3;$HbM($m<jta7nqGnXNm4?I98Y`UqL{vu^+g8c4>3-uZ*G@|!NB
z{9a-o5}lvg8-K7IN5vbexBmHwP1y%Bn8G9*+C-#fKteurhf4<zVc?CwjmwNw+$ky+
z{myx5pbC~3uk#Y-^8ZI5492V*8Tho}PyISe^XzYvbV_A@M=^#Zkzbds&$D-vGqn3o
zi)WD8&@&udu|aEp6Q(0usi9KCX3lXx`(Zw;lfH8BXvc@89@9ffw%+sr%T3>77X&B=
zuKV#rI!uYNzBGpJEd$Khox>nn)ChI1CJyTJ1>7{z0XIL4jn9s&HCQN;z;w{zQNSU=
zeG_PKiRykMJ7)-!=ieg9d=RI*Z8)VJf3w@%Am5xRGQq!74OJjo3<3S?E=pFUbJ2Ln
z-h=szG-~JHkh|WcRH>(ajA+iVaq44kksD*CaXYQC%DYnzS1}n!rPIs-ZB>q>mHXZg
z_mD-o5x>`(d(hp;t=ZXNQ!eBTrw0e&C0$SejT$?hy=F?$-w**E7lI>7ILkb?T#JT*
z_+hbCBlrOhw}f~If6RhC`gKarpXqj-?A!N>j%b}^(bCOKeIq@JPXlgJ<mEE2<RdKm
zER6iS5<{^}T!u|;xEPjiZXC4R8QR(;8Nyd)$mH^Y(uk(b$0DTYV1DK`&{y?vDu%e$
zo^c>fvbN-gSR-du-x;brG9)t87F3G5PIG9tX}DZvl;A?DvN6q|Ep^;}l(pk#GqwzO
z3KAe<GiFW~r*z!ps1UX>#C4YNoK}8N*$<~1n1&Kr#^AVwxaYwmq*sqy$MXZFvyh2?
z31U0B)sdcd8~NG~0K|!02*c^LnhG}twAM2T*)FrRi9v+@LP$T8KIw>Yy0dEDejm_q
z&a<P_sA>B~nU9{AXSw)==Ev0UX0dEv*VX_Ah7XF9roX+8)0+a=u*5#dEKC;o+DUhG
zm$nIK7zi0NEC4y_!O@mUC1eu&aWa)jSg3{q*GG!d@t&CpUzBuM==Ti{4AwRr#x1V2
z<v6A&9K)!19W~Awb+RGy+h!uycwGAgQh-9Xp_2>=%Dy`g&yvR?pgQO1k`N);9xOyT
z=t$(9l1pxwz9K*aJIi$C=p6ao)Pv4L-t2vE2Dh_b{1B>m6vJ`?mw$sk+Y``ZgnX@n
z7XectGG4ms1xiwv11vUM3o7nipT505i^MXGPXmSe?`Z#B4;&d!y+Ak(eBa7OwHyXk
zIz+qKQzv@Xq_p3n*}M5@jr7qDy^(i$V!{oHRfgB@7)2mfq_A4Zy9$<Z&}<HR9phMF
zoAv8KagwEWeJuZh&^eh&Cyk8bw&={@W4DG5n1{gD1rH4^AN`pp?QPI7OaK)ISnNm!
z`5T#rH|aA|+jC$s`x-IZQ2=8px=F|+y;jL&ZbSL1zh7_XiWeG|K8scL_{Wb>QuopJ
znN~CxBwh0x<12q3muq7V7tlBs^2mWKb=cYelHoY7!2l?Y{sZEM8^H9Ym%Ebrhl;W`
zxeD~MsMQuZmxsoEYokAMwHL*0DPZtliXUDUw(>c+{1Ey67P-}WW2?D8N9nYlmiteR
zh^(r#em0!q2yZJ^8N>{e&6edovC+$b@HzUj_97CtS0P7fbzw2fqDCOfDS%$_$!&bf
z^0!Z&qruXAoPKA+PY}1%^I7ru$B9hiMpc)m1ii_sh_9|o5PtdsA7%)=RsZnNjgb~i
zUdZbGN8&kh5m>2&i^~aHOltCy?8L+E{gFWBv<FzxRyfY2O(p8KYwL4ZTbjSWn%di9
z2ivWKZw9gyfX&I8OlLF{VBNuHlp)CVqUt&JX|HzIEM2%Jh$f_+JxhL6z7W@&BP}*`
zx+k$>n7$<8algCoN=?IA-aZ$2DQ~htNy|!vFY*@%l=$Y3n2)uuZ%@>9|LiKsvDnaq
z3zYiZ=l&+<tKx2tB<>}NlQyLIB`SnHrGvDl)vp-gO$5zhZ^@nqk~+`XuHh+U0*=fW
zf;-p{<M`~5^*r10x6|-+VKJ}lVIRh;nYu_UQpN{^d0XTYrYdQ@ie3Y6iqh}BM;h!0
zv@ryP;lH_tweOzBn90#|kBP^3V(i;F3Mq;~HA#FpcM0&`%AI~NPZLLW2eg!RJ-iN+
zCemYxjxX(pzoo*5R9eR`dvn-2OA&e1jDkl!KYB+an%4|1<lRA`iJR5w9RoxnZTR3*
z5k!kEHd_zQo3yTKx!Qq|)OvbsM)vlnq>}*&mKnE4d-wJzv?E*Y{~)!u)!y5ubjG$S
z#}p2h@XlB-L|IE4I5CWGU(%90UrbK50p;}tCf*ZiSEzV$F2nDZYMzkUl#j!~Oi|#)
z6IN;K1{&=t&k@C=|Ij$xvd*`53q3#=7gL&KTSskA?(}+mSx{7hc?RAabyF_*+4cO}
zUE6+#I<J(jvN6~-MKFGlzjqYkhXA8M?O_QyuID9Vej*dn`e{Pi|9~UlIJ(FC7nDo}
zt`gZLWTT+dta7?w2OG)v7*FVMYEc)x7ZkRV`b^`P&P#LF|L^SJ+C5mX$a6r?^1!iu
zgn2;Pe!4Gre(0b?7?>&#UV2;y&|7s!YqsKxMXEZqSYyURe5BV_mtyNK^~jDB-(4d;
zr9-e|1tjuQ>mr#=1hpKCB>NlSAY^7+sey&aN30hpL(k+=XlQSc2gYT{uJBubP9h8H
zTqY_sQ>+9M!1?wfT!C<@YjYSo*(QtNytwquWY27yeyip2xt%mHDuN+%T^IdgCSpXN
z2JVrLskg5RQQQT!p_LXzDhR1+Rvv$qF0kvhK6LwjZdD&gW&_z!;ONW=uU2iX|C}2f
z_?4WXv=^izAhUAu;LQqGUPI6NUV<1z6oRZO(>7-Om@#=vE}$m8mVMx*p8xur0#g5z
zy>B_>V9~8%1yd?1spaKUBPK#^4QAO_aID_KXzY1_|708#2u&}@a;oh$=N=GMau{G?
zv>Gz+iN6VpZcvD7NL5wEZVdPH?M&ZZLmZ2%LotmOG9tn&z8{|@en=XFjZToyh7o_t
z&A$E-E-kj^yH^aW-5ga2hcP!|;l65C;_&ArC&CzvtTJkN%4k+?T9TzxlpA1r+Lrcy
zC3+XY0w3-WKh4d+^GLgXnGd|xqjVQ9I@wej8-Oj~feIc#Uj56)<Y|_MQf9ueI=Jn8
z5FU}zCrRg<+o-eBtA4YnV@?`ZsyVsJy)JLfI8+nOh|wY}ghibxT@1Fg?lyIIIod8_
z<FnR4sMNx$)nCB!GE@5|-XjY8bo<|=5Eb%B?U6b(*NTei_5rA@-DWG8Vo=xpb6!6%
zYlCJoTy;Nph}zo3EGxD^`$=g+ujc=WB(OCt86NSlK;;qTkj4a_J}pr{gd<YA;uq#1
z*u$sQppQWwE`1go*2|JD>wv7M!$VXHInkLKd*svb$Wq=Y+erHI|7kZ!X!U^I#-3n+
zU4roLI%0p}vVs2pj{pABOO&uY&-Hg3SY!<RQ(yqYjsx|`q7w`<T6Dm;X#{L>{4dwK
z507!2E6*S9J5LxM1pG}?Ca+RMrQTz6q4h}&NG%7@<{Ndh8ncAk<I7S)&QRTHiCJiA
zumj7FK^EZ^x0<_NZH0smV<TYW!<hWhBAfI=AQy&6ulDet3OwEC|CZ9x;WO1v_bRJ@
zX$_drATd+<>-CC_4!>ve^;^zRJ)W#nt=qDkTwH<gz_gEV@<utbr`;|p@wJu-fOfbB
zqX1uw6&%11_F{;X5Zq|mt8rGv_Q}{?B|xpLV55Go2KBnEjkf<hIs0yZnSZ0`coYfP
z)NWr9nnWQ(Bqsa0(4}&R9H*DHkL9YDIUa`l7MIu>upeHhQ}#qGo${{s?Et{lZdibg
z+8OWj7)BJHHbUYvC3L;O$Vl|K^%SMFs}|-={+45g{$%I^TFf-=o-JMYkSHrSwF|~k
zx-7lXKY!57G6KivdcakPx9`L8<$ky(wxt&MjkpB(<GzlJYhdOO3peanMw5YG9Kmd(
zhkX4UxJg1lyU+_JootJ3KRVxmwgh>w`UvuTY;w8vDGU<793(|5O34th&Z_Z7H?}Vz
zi?66;cxFERYir^!8jYw`OpHksA4X(t<4;%FlW*P=(gKqsBw8@+Ak>m_lo}Y3E+;>S
ze9`FRnLb=OzyxMX1X2z<MAYco<+*eF<{4#IigNruUNkj<(Jfq$?4+=F6sMk-nC(yl
z4=jTtkCu$daaIPml+=Soki)_>%^A_L%r2lXJe9?cuEa+_0@Isd{5Ap?nNso!<}s}t
zlmb^bjcPNHM&AS|aM|cJ<k$Hz<#L)0I#SoBCmzgFWQjg+Izkaj8c{6QdFuvH{#7b>
zT9D;im*X$Z`GDlUwip=fS&DfSNs#{EUkHGpW3Eel*v^dZL~Q=Zzk(t$k?B$%+x<ix
z^njd3`v3=Ko0p66Yp|mmIBt2<y*mYKe~g{sl?yK>NR!%OoBK?-##@~EfQ5iPU$uW;
zX6)M~)QyJ|&8fXBobCXugi8OxHl`fJA;bS`w_rbgdC@Su-sD)#^D<RvxkQ!Yv&VwM
zH@-<;-I|saS_%@75_z^>y{ca|aIh;e!Tfoerv8nqwJe#$_x0P%)!m`{+r9-R<MYG?
zYg&k|D8VF)ivjPp$~;0S5C9C;oNAZ7!ob^8x;)zq#c*j^gvD;Y<~zSp?|9?u%GE4E
z@W{9g#@7wjbH#h694PbqnPzP$<8})`YLqQ@JUTH}3l+Iz68hjzZs=BlH|_`SS~bnY
z?I7gk^Jnb@+^*7zaWe<SFmqF%HxS9k+GO>3n?oxU`yZHFV7W2B%9(7>@TW_iSMDf(
zs|W9HGo*mpmLCga6C!&aOq%-3B&KJxH~WwMXM|u?zcS8bP#al|LTan$-TrcY!`=<m
z_y4d;x=PG-QW5s6LQW}r%d2NqDA2GUbn^>k!&AO6(gj{PV^{bp48BYqs=*Wh03t^L
zs04sL2yXy(uRY{^@+zht(G#G8?*Y&ZT*PPG)?0P8g($@ez}#i$wgYpSLGtt+E73fW
zbk;hCbDJv-duS~z&JOHnW*hM=Nt*Fj@Tja$CyJ%dZ;a=-K^)QKISYi$cK$-q0#mmq
z?Q(Kv3q?U%O22cXtoc}6FB;!d=E%_W;E_)n$CUCeRC>?^W$YTR{AEBUV9FHqOEJ(G
zL>++&G`Rt_f#5KrR5-Rq&wn9G1ggpF2x%=@ft}rGiY;E`&c`RJ2H;g}x|9QrE5D^U
z-5Yp!nTblBkrspV^H{B8JZ>58AjGj+)UHQ&nxa4&Mu2tyJ2${9p#CSm+u<Cv%{4)U
z4FOafZ-H+m9&aQz`&JIpxc}d9>a`mlM6C3U$(!IAd^VLaP>PCK!RJqddZs*@Pag|C
zQQa(Ap)k-7)ZhCM-S44p$%(7e=Wkqp$NJr32-Jmi0nlI6UPw|ZDCL-149I)yD<Fd<
z26Sw+fYDHG-V~|w0XY6n63^c;ph+c+Vp#Ozx%8Uff`3*6K2m3A{OdQl_#Il2H}~Ii
zMkNjN2@VrnRYwmy<}7wwN~mauL^&ZzXFTX;GtC^Y&|`<+UYsj9A*j|~T6|sHWk=g%
zn5b-%JLOJ+56M2ME_7LZo3jbW*_j(5{ejGD)GNo2eJ1nh`P9-S@K_k*XnrUg;K;g#
z+(mc#xEeC<d+P^Zjd$Y?Tt9SCboia-4)m(x)yRq_MFDs28bju<#z6tN@4~>@Jso=R
zd#B{1gP?L<<Ji7P%QA_1k`7>;0-gXwmzt_F$x5Z4>m&&TA57il7R{k_|F3|;;5H+*
z1iTSd#Z+N{(Iu?GA?Iz`4^?4zJ@2RwLd&nNkR<9&hNv8a_65UTt=h8`+5slcQ@&S!
zZf|&w7+BkhZ3@#rNef_gUc_ghA*aPsbgFb?d|1DP%R9rw^4(~wqJdgvoj&r^r1n|;
zqP^sDwx@W9MFb80jcB;lk?=9$J3c*q;c!lAJmH~nty!)T+ooYBe7g$d1}K@1oLUWC
z?RsB*Daa`%5k6MmIDmB=G3%sxe^}frU#%E?XZQFS^_OGJE~87K%B}h^KIW`6e%b5j
zsg~WSA*N^RQ%_Q<@y7O9?E1fc0w)}Ox$@I=B;D7CO}NH_()@R(_@oa7>gQRb3AhuT
zmib&@Lhtzeb`}y(0q2#rLpbg^7zx1`_1we&ewS!E<;Wv}2aEaCwN>W63I6}TKgL0J
z`qQ^u)7p;oH0+f=!Vf+w0cE8wGkcft<BOMFQS*1<)4`R2rU%@Vp`BTRN``+%g`Lu4
ze%8;_#!4RR#F1Emoe>1I=|U9(?w`cwL)f%V(`6i#D~ovPHyJM@@DxfwUTI&_Kcr{N
z^?^hUEL)lF^)Y32-|jXCcU{ko{AL{^o~TKN8^2aN2ajyW2($zczmh{3kA&`N2b;iv
ztF8SCbjpa)?JsT>rRR-CC&PKt5%E6;GK?JtULIXy^Y!$yK^2J9M^|=|Wgk`EXObwJ
zO|CZ<p88#2Cg^A%QU+~_3g95Rb0%EE_sv!F@X-Ou$h+(fBFd}yVwZO9XW=WK?>^5O
ziZM(Z1uOZ?F84>Uc-as95V*uSo8x3r>7i8*Oyc?5A!*k1uNFe3rs4`vwz)Tc;Tid}
zqK^2?q+5k5<caYJ&5WvPy1I)Z1OzQpjx1l=7%2{ZFFE-pGp6#x0xlWGdLpyIXJTgJ
z>0;^ML2-I&x#A_UM9W=C?#K!`ZhmGP7iqGtp^{uZJKRN!@jM^b!LTzU40_6}h|U2Y
z+dR*6U@aIDX`;)LUWSGK*jJU}<7F)b57cyX4!t}{u>PLlOmuge=l3r`Rm4`INoB-T
z2?(=#v<l#qj5lMs!xzQbo_wm{w;+^@I|;P39SnOnO9kVdk;BrCl#6}Qi&_>dKv$h8
zgsIBcA|$~mG9<fAW^sR>7sRuhWlSw$GUV_?wYo)<KcHr$2IE*TY2_$a295_>MugG_
zfa!%vy?2nfwjM>Q4w`Xj#v4u|L8+iGl(b{kEZ=dGz$c=Sll=#@=$_!PRc#*s2R+Qz
z^<qIeao~MPX#a~4Nu@cAMslethfAf`Fh2H>x$NO&mc%DL(D|3YW18j>I9`jgYWJIK
z%>JQTFW$Fx1X@+3!MrGAc%0$Ls$CB)Bf<_P(_&CgYJ-n@Zs0l->8Wo{)Bx$A6)%LW
z{6xK{(P->Zu~UJeq%&ZcAf#1n4?6(_BQ9Eod1Iupf?!~Oli?GlhhCr?dxJzgO-!y0
zj&8(OvKq_BZ_b<g*Njq}qNHDJST)L60Ybw5pQByL0lR}eLVW&FBlgsix66yL8S@r^
z*i!C}5CEMjg5*d;5_C<wxz0SP9Qfw3wJ~HW;`=<yx+LUmcNk#Mtm%=2eU^WTB#g}3
zyzPDU<F_;njXqDS0GN=$yfg;$j?A8Gt74CF4DJfaC7JgCKCp?L?K4cdWhCb}jf>W(
zZv-VwrEn~BvIUXD_D*f?hZEq54wP$}?k&v8*-R0%`uN69L38}$f?Nlckns10l@kAX
zbZW2D_j;V7^uHtV7*2vg9!s$)0OoYGlT0tHI#*N4#_D63kW4FLoOtUPWJ2TO2OTCR
zGOvxm<LCyt8wo4~T_7f=3k*fx&594D&b8a&yI=+?(Jsh>NP7UE)i$3y=eF~M2$J~u
zl$$+*c*WD|RPN5RujdSx<m}q0cWlJO3r~Q+sI72h=FD#TSB68W>`0F0Ib;n7%l;_W
zW=EXg0Pw2W9Z0$uwD0t5bv@weL>rD1@b&!&2H>PY57?Y|)e4ZboUpl)aNQkehiEOs
z<Q0+UrtUY^5oRtfU>O<R^uml|&nLLM;lS25w;!;sRjXAS3!2<@NGUiXBIXwpGKC9l
z4ined=GKaSMw|=`Gz)>fat+Ch_Yj~p97)(a9>kI^gTE!C3>{$P5HEv-T+~*Q#;PI5
zt?Pj~t?lW|a0v^##WdS>=H=h<)s107ai$d%IXNZ;li6k}bS=ceeVFs%feLP<8!tKB
zPy7aUXjk(a&_HKq|D6|l`|0l)UX?i)Qla)Aep$Hh*<hnn`Po7uT|{x08m)vpGL2~#
z7-c*q0cmY$bkvgtiLS+Ids-mFH6me5Daiv=4CQM`LiR$p8!uR#;DjJ-HKTMG`C}RB
z^C!XnylvdPUEyC)s?45ea<uhyrO+zj8w%LYVgsfhx)$WxNK&3f`?Kqy4imH7m0dqX
z4sk~ukA^j0=x&h5*&_@?<b3;L#al)JSJ-`If2$LU?RP&uD*?1&j!U>aG&{8H2zm?A
z@L^eO=EAI@O*>W7Bpld?soJRx!&Ue->y>^POY-?WWzjF!7FND+e-3^7_6cyR2|)75
zx9nqr4Y$bEV3VVb{wM~XYAP}RzjNWvIEHmGk~bw(9OrBK9L-z5#qa(p{B8%r5Ey_f
zQ8`u)9#(gpr1u(W&Waff^Xm=A5bkzhL84ZdN*D@x$c1c7_!jnZts#!w%UvV9mF&a5
zjjK_1`wg5x%&QJi_{6UH3TarwnwYPCSZW9HH2U3f2VT>Dz_C5-^MOoJljHt=4~S94
zW>%|fVfyW`B9}_}-+ibvC%hT5jL&x228W2X!618vF0Sw!hkkYUge)Kcx2-7K<BReW
zS}^#W?;EXNUu;!;Wr@f?_LrEj!dmXfvw+`Gdb~3z(u!BO8{j5c`Ac(1F=#;zvP;#+
z+S1y+$abu107pQ$zbXj&icD6mav+69g8~vv&XzYYyrRNTRpWYzFzO`ur5rn4(=Ah7
z>Phldha~ibV&aVr#w|w3$tjbEn0KtK(R~3Xar$G*Bu2y^X-2g)ZK!{$*mVF;)_&t5
zor9Z0HdVVg3^Uh!3$mYZXWPMddlRmby-Td=a1zu*2)`3?hn7VJ2XnEeJsE-kj%IMm
z%#lT1|AZlXkjM?<ob8<TCIynXxCqHJ2B%yT@s5HsSfkr5&*RXCA2&#+T%^`E+Cd-^
z3<E_D@22YO5IXOvDO1sLN_{E6z@nf%!$tVl-W#*%KD3ESc)Xic|N2-x;q!MUd@D$^
zr4Vl?e&qiLzvzDT?ntX&4z}SPbLFPRui?u|L)1qh`8*woIAH{fHo%&Dj0RpZdEWfs
zXqRi`VU(R@#R;rW^(o|B5B`wYOwDiT1IK*{IXAV<x^5tjl&FWu=ctX9F*0~~ocs!@
zJgj<FXKO)FtleqWlV%0fGg@Hc4xErZhyW(d=jRR2N|{_RSJxsmt@){MwRM9{m*V#P
zKpO_0g(TS2*{y_9Y3*q;MvH|oUUeOsx;=8OD&hiaTY_k65S@unDk1`sAv<GuC90r-
zH6jdl>Ud4<jn_rJ^REkR$XEHn=;*UEXLEC#F9efgLOZH|<~{Jsb1nrrLf?eYuz<?2
z+z`BD<+A;AkfLkI4!S$p04k1$GmgN_`@_q+JH$1!4mB_yt<C)R2a~_{m65z@v%efq
z9e7$+vsyez(ychIkg#S*>whUQy4b$sk|VHf?N9-^P*<{;CEHxUC&sg?2ozQ8zj9(A
zf;}HKO8u^!Bq~r;hvZ%NRXe0FCw|Om_*0)No!DJQZnQ7@<&=0dk%Yns?o;4PapA}q
zhOZlekcB(1I#@*HQks9&d$se08X!gEoQkt;nUWF=Y?W&AE}Lupj1b+5=l+5Hx0QFo
z4oYRjiH-S{9*WjN&##uMh8|WLIUbdJ5c}W+AuF@*gnadR5QYpdMfV|0t=5U7PH6!d
zM{s4lnadZplksO-+#<-B+l7Viht}4M4*a=y2XE^xjU?<)dhmm;`x1W6?|0Hy<YY6y
z7pc}^9<pczy0(F?O!!@=ZU;K^dT(N7K0*~RpHH3>kpo=GXk=T%PR~>+wXwucHBf=D
zuTp@X2%DdQ(z!pKg)jmyarqR^wp?_Of2f!Ma8vTbB_`PW!K=LOkUkplNlRzo>@@s|
zCs@`5?Nsmf86w<>9OShU=cgOUPS=EoIy0EDFO{ptZo<=1U6>aex0VERFv(J)=3U^V
zG<`g(D<NZ_pU!CO_PN-|0={I`SL}T#D4t_^w@VlrVqu6xzesqcuA|43gYVrC$gY4S
z4}=KT6@oamXkS?5di_X2wJCy7_<U!Wj4p-r7cE2s)g_)Eaqa6Uy=iPFfpIiD=n5Dz
z9J!@24&bsp&GfY<1GclN+#fx5L|Os#^`TiFoX`->_HmLU5NvKXDz3b!i9=z-1;7Y1
zJ#HK6+_q%%(x(I%5ofntf4Zt5)OE#{Xb9ORyWHffnhN^1UYL<yU#(@F-b-d1FQm5%
ze0wk#@ez3{*;z=p_i^k9|EC+F!k-~hI6|Cr%Q;BZsdU+9i_^4l!2%k3L_>I+uGJA$
z|DzuuisT!<v+U6~na~R-VL|L7<+T%I2?b>NJJz}nCs`U360o3;BZ@*u0mX-I+D9IY
z<j?>;t}j*Tc~K%DR6lI@xXdfNW=<&pt=^w=b#85|DBlh@GN|87uqa8m-5-LnmP3Ul
z$|$DyEg1$4ZCKRBJ;Q8YmS2;3tYlf1dvno~n{D8vxK2s6U|z6?{*Xy@RV?Gedm)9R
zl454$Uzj=ATbj<SGveTCBdz~(^w?l($@obgNvdjYxD3$<r)5Z<^H^^>BE1#~Ij)4A
zM{r`NW-j8plYxbA<>91W3^+vA;0f!<>2O(oEh+0KR&*%ue<9nH=7bpS#AbXVy6Ut|
z2|)OSUCn*8kOCHw8XdqwyD-vE+CsuNVI4t`Bi~qw<cQKBWrXuBs--<FdG0HxEaHr(
zNAVWuWFkO@H0An}2Aww~Std!!yjfsx>Ysl<&p%3|q?5syY(=!f8j^ITG8#(TDh;t|
z(C}er5Si0Z);9_6&l^g??JjGA>xqqcbvA-M!)yf8Py%BG<1~)?dQjmKOFVYVJ^7av
z3A(ewkMgR8ET}I*8nLZP&hCgU277zO$n)F_N>?un{`LM9p7|~H_R=kg(Pe9095=$y
zk5RhovPyFrcv&d;BeL_5^UoDnn5D4Ye|<adt(GHv!6kK4-Zi=rM^YL%ahSfpw6b^b
zGibW(z3Y+ZCl%5VGN!N{)!&(Av|drD<aZq091%4I+jm&Wuu4kn^Is3ae8MFTtkgo-
z_ScCIoRvPl{#q-X@Y0_iTL5dG^Lj>auDp4YHBtD9X9-|hW?3LP@`SA}J@UiAO*06C
z;kl8yaFJ{<HWM?s6y_2=ya01znK7mOQFg2iiSet?;XZ?-I5;enYR&0NqO%N3El1jW
z$|#jMfU|2`5?2r<aL%I=P^@>culLED?RW=MJ7+P8hVAxvF&^3!sTzH26EHW1HMNnj
z@MF=}3>s^}m{U&bqDguqxYv~S-LW;@xi)14HIgF<+-wl)2IzCqn*)d7{Dtbcc4M+W
zaA{r{#FQk-J9@IZ2amff%GfAgW%MyIF(;O@-tm>m{J@9BKNJ|rF`%1IkYHv&Iw@3X
z|7w^6#}{bvihvp?PXQR*Ay>MDjbz_w{bZ%l%Q4j9N#4ed*!Xt}%lCLAwOE6NN^F<u
zaqb~%u`m8_i~wfRN;24kE<c?c0~*AvfV*k&#*78krCStT&fqiP#&CBEvSBq8B*pT1
zC5=<ig$7gJU%LVx0erB0RPDSkNz*SQIosG&3d|)>4sVVhC<zsOfG4oc#uPFa;a+So
zG@W%=A>=ISA@)m7DedM~_a@-HYDy8W8@iT;tjjECASfE<F!NRELl+{nA;JJSZv6#-
z19XRri3@&v!iciaruvG5wvxoDMHyP2c~cT-z3^Jo)Y3M~%B<^I5%PJdcG)JNx@rI;
z5;dYww$AhM_0LOaqtS#gn>dsrpgoFuT9J`SD%prT<<Tj_tzRdpl;!4QFidTD9^D|;
z@*t0#>3pRj4O45!-NE2-V%-K|jB3S^Sv31nc=0l!W@JgTGC$ZgfL(T?<GG>Q#wQu7
z4x#-YKImmBx06P#9cZmhT2jd6`i!ld)~}42`O<ZRl85?D1bKr#RKkGp6z*0Mjr$pO
ztZ;5GM0t9zUFYLd=EUw(f&Dm0A|94l)papuu(P&gH(6$vzAgBr#QiP8tU;=H(f*lI
zlh}q{2oV}d-d6y(^zvXZ9cLPcQQQGG0RaAR?QPs<vkzqWYQw*!O+QW4e>BFJTjLs@
z0RcPT4#4)h&&O(^UWp7E#P}L?i;K*c@(>p>Gj%1S&QKHt4)(WvGsQaPX3m-=+n%Ce
zk~agi3;0yeA8KmG5pRV;UM-~$&xec9_PNoum#Csyep0eFa$P%!3w1X=RyROH9dtpG
zpm9*-rV%?EOatU0&Njacv5E+q5e6ogxd36Vijk@@hQNgO0fE1b^7!shl;VDZ-S=e7
zJ%cm%V!T3DKP3boLQuBX^031Gl@46pI!ZTB{G^Fx<qQX=lbvYG2|ecNz3xbi3n8*D
zx@U<=7<ooGwBXg*+sn2XShC0@r2?H)R*olu5PCL?Hnk{H(DioI>wutyR7^Fk6DuXu
z8+BdvQyyqA6<yh)Uc03p(N|pKMZ_Qw!UP>w>UkyKkr0ynzn&;xN_Yw>B9~Mj@iR<*
z`<<DC4GHN+hAK-Ko!}C#>&xz)qTc)a_b6l084w6#=cup_zm!<hflsD9J;|t7|HAiS
z^ks<v;to!~VENE2|Nf`vjp}<l2>O=h1UnY+>RB1a)M`C!CEjU~+OK+JrYgx~q;_>l
z5t$rzW04mWj5~%7n09PMu)d{5I^j2sMI|h)HrFzvU*iMdEuIwKXz(la<kAU2yJfzH
zRHBJpM1B%gXurMCrzpbU@j>eh)iD_?i2qkuYO4hV+^yX~pfa$@mFuy;yFb+)3cQ&Q
zXf~k>f9i&0($Sfh<}{0y+iaMv<r0=@D+61goKA%^<kQRQ_|F6uvNTvuNBFXThladi
z-D*GDaawtlz^|ptibYJ&nOCaEfa;pWE4$oDC9Cb#(QU5WHPiKFu)i=I!e-uk8O~5A
zbGV0li_Q+hyOrrW^MGHf4^3EE%I}e^uxUYEy^^|f^FG<Q8F+Y3dL7W5wtn*zE0pT_
zek%+zCix|BTVBq}UtHMnV&=E+T5}}v*kP}wbMvMdm^7z?3sZu;{oweUheZu@k_BY>
z0twLmE^uh?{Am>%#ONB6qfhZ8X7C_1N9GpGu2hTn<6P|I7`DNqAgYN|*cpj82k8`2
zV@bi|D5i;bw?f<C^8Vo@-AAoU3uMkJ&d6~rhbiKf6_V~eBES7j%PNWn)|NG`1Kell
z-|rJ%WJ2$<2mdEXcaDWbIwT@5dG;O<Ju!X;U0>DW-JYpe^TvgB1;GuGgXNc(ad5W`
zP#;r?<_?r%8WP1$@w%^el@JT<=UtY1N(H70e(zPI(H3$eWz@WH<w-zex>^3oZy%rP
z0qFqyudRlry+$K9+N?2O#d<->C0_+w;&;9Ta-`(}zMEuXlGh>Ss<?}4t-)5|yh#rk
zXm%eOtW!=s){3o;_I;Rdo&Tn=_5v~DWU7Nu+lYwOlFSd<s13zTzIPAZQtQhEqQ$0t
zjPzWwlO}t@c4FEf-830{7Ywn!`zeGCrp0<y{w$CsnHvYAv@46!6sLK~miaH%qE2lU
zM{hiuLAVD19+xnEOCqeVX*hMalQ-N-!!rSCf~?7ZIlSl(Tam=F@ks#xF4Tb$y4p?<
z!mR{t;)U<~{o*sN8M8p7HvK_ls-Q2g-hz!gbcMY|jLH4MiUl|SRZYX#rE*6AkOgz5
z?9S5fj+I<$rZ6}KddA{Q4Jog3>y_xW>K%}+A{ERIevdX+S@<Ub_0=xCuKci;8Qmr=
z)}Yh`#l&;*ZW$>c90WOBx01?gGa?a%t)-1YH4e9>29l%fMqtzAMM`p>Q}tb_4Z=7-
zd&GFYg?|El*^UzY60X*%k6gnC$<+%ZFo9(izzsi(Su4=>D?+d1fyYy`pG&4;)tIJI
z*4S`524L;<8d04lVxfT^fHxbcSD5nXe!j>kJ!<|<J=ooFdO9cw{q{5;Nxdq%h=N~%
zc`2uGGaO82L+?FVvuxd*;`dP3u1`bwDa@9~uIju>HFv%qxXNnZ(hNKM4xmDN%#;l*
z(=i7$6Kf+HHLWqN$vU|mPwvm})sr+VyyiB;WBwl?S(HDihDDy_eEx1P>!ADfaK_Og
z<=2@G?<6Y^c-?&~Itby}KN#}gg8hETJYhXG-T(k=GgyNc%aHs0{^?FVTEdQ0cj`*l
zpCU$Of9V@L*2U1h=vYtv-_&-#29G*7`?3ag(y`tN1MtU#Kp))CS2q6#{mt=hJL<ej
z41m)c?&h<Rg~`-jLre5f8x(4fHQgf0fLUHbtjTka*jgR|Qz3W1F^+vc5Ml@u3<J0h
ziBoJvDTbJ~nD^3u7&rjoew|Xo({P!!6gZZ1Z0m_EZ%VIm@<^&Y;_HQVyYb`z^cWl5
zT*(rQ+{R92ab!N1yJdKUGK0w>Mo^x7Kdz?_6R&o>juw*8C>uU9uONX*hXQ`EXV*uQ
zZX5x~9b2-0_>Rj2u+%HeGHz}r!L(;FpjX$U^^ud58J#Y=wc}!X&vU6Ci04qmHR{C2
zeQn@6Rg58u%U5-hESeQI@U&zDY$Sx!KO7c>kE_A2?JOItIa%dYaK8s#3v%GrXD4#F
z(4OL7L2kTlIVl`}Ro&@dko?V=h2r!TC|LFOK_m}*1Hzu`*IVG?X}EX5n9G_+fRU@<
z$N0d(uWTBAf%Bgga6hG#`!)C!SR}aT`Q{X~#MKM}3K~lmR&->BQ1f#YZZIPkFt?ii
z6Y`Hs#0!eSL&>KZ6}@L<Y>#f*VA{SQ93lwC1jRxVZl<ju5ZFGXXbu<c`cuuuo%1An
z0HhAhcHneXrkd^bhL55Uct_*o)WQGr!bS*#FK6o((`S?$Q~yNuxo^d&kb7GkwbNm1
zgzkbJ>H^c$L!Z}Xj2pzYxf#;6vg!Rx5q~Z#KG=&}KIA)GJ5F+D$iYf;V#X~GsM9&X
zrZ8?|L4k?hqe|IwXI!-HENV4WIMi`q88Ar=g?dx^pqmD#lkNP7KhTl9p#JFOqS&JS
zCNC6!tbQlMXjw>96YcVj#z9%Ki_#vp?+(8~%5i!-oWkh?z`g^1_^Dm>R?1z&--9Qe
z6V6FQ23bK=-jDcVWUK8cGRB`+N$Q-+-86$oO7-C)ifa3e=b^`B(rUtF_4raxW{#t0
zqz?-46{suEE-5&)kUoYHnL_Y7Sw5fe&%U&P435hlNllR~ffoc1P!`=aVMQiSYQQw-
zA;Wnj<A54Q;P~0~m<#7AP1!8hIupNUu;IDJu|UO!s@X3_?ga<S?_pm`J1mM<40%?!
zR&>mN?!q{fZ71BR@dlw=S2AtIPI{_nFbG}8ysWzb)a-54n9$CZ7#D?>K@L!+c@rK;
zO%&SpA(L1197QAL`WB48BG=9vvI_(fFumnUud_KyB&BL%9&&w19k#^B*<(ed$lBS@
zG=zJyRh8Ks1aab|;Z(7h`LsdGqq$^PW}ao~HNi5AFT5t<-H9P>X7yXvkZD>2DI!A$
zW<xhcts!O7R}5w{7g$)ELBtW48nK}$07}TQw;z{l40|f|`AyWy2e^wykM8j>A=T+n
zg{h!ZA7%kj6_Qr86jG5}3-%)E%I<lE9FEID6<}16yM9Pv9>X7>5QBF<B%Qv|+CDzG
zvQySFad7HRyhHQq8deo#{hvP?4W>CkwCw&f7fxV7DREjT76iHloM<p}!#+akRZkfT
zDqkisWGYY~;;}?>(D#hzVH!=x=SL?z7u+^e=!=o*$I;GSM~>u{L<%I9?maiWiJ}qb
zj25%{uxBEPvNw(7#&V7Z)Z%cfAUfeE)a47en8NPB0X?(BVX$49js?QgIPxVuS<|Lv
z_bJAzo$%wlQSF8~Xl2j~k2-}>`-)Gv`cNRCkWuzR!N)I#Y3xKn5t=HlQaC1M&<o4@
zcZ>`T#AVx9%~RM-K~5#DjFnU|7Twssau_8a8Sb*3!3zEQk$x6jK)Gwe%<5(tXDf05
z;qr<oP{7;bG307!yaAy@iM(W+B7wK;<z|8io2J&ZyUBdOW+gh(VKm(a`xwdhrMPv$
zF3C}vaF21<j8r`p5GuV{1L+|`kmr{W+OvbC{FHTFEEsRPVDE=!z`5a<-S5sa)jxfg
z5!s!l>H1+PDj~F%XU93Sq7i@6Yz<_@!k1zOj`J6e4ge8Ur@x^qpjwwqLY^&Qu!-K1
zPP~SE03#mOX`bX<%#NUzQyM>KQO*y40MQN_DoGrU<%ckcP_M5thLs>LB1v@A06qlf
zAJ>M08EY`3349OU=ZAQ#L<Tkl)3aOLTVbdVZB7m@iG%7me13pU@%>~UJR1{XD%xtd
zCs_`>u^qwTB&2hE&*w9F6#W-gZ|R;7)j!ZzXg6S((~RoMcpeV&k>N|uoJ8$Fx>a!p
zA<U-65=7xYc(D~|>f&VHH73KUv|;1n)pRg!#mbMUmwby}6FL0l-!kAoQDiG9YP^>o
z^)ayXniVY=Ib)gwGsg_C&?W`FV5umQC|D8&{#9JUrOK-`iGR5<I<dD`sI@qGzXyaA
zT-VHbX`75jjcZbJR9b2~kU}wk+OI9Y2U#BFh2Z?862LUEHl7lbC`7;j0A<c0;1U5K
zK_B>TWeVr7nFak3b5rzSD9!s<f6{$H5LFu>2C*O%@mUb}6Ah1Qn+le)bPV3^ON;qR
zw2-%Xy^K}5xS3MALL?!`>M&ma0J<DdxM|jN&J1_O%Q6jeM|ia_kDht@O+Ma7+%bN!
z<8Fz>fRYx~%rByRFsgTKf$9{KaqBi6RZ)KR<QkrwhfoR~Zr30Oz8Q=Ku9A`p;}>T-
zMt<|3wqe}%32UwGnYVJM_1#LQ$>=+4^y4%#{wvNpfIsx|17+Y1qrj@}vPi4#I}cR^
z9fWs~pWzlPAv4Dz|Lt55)P790`R!H_vG%x7`kVd^)C$2?ikO~t3`NT^jX&tr*Hstn
zQ}tCi6Y8W_qL>rNaG@CCV-GGNNoL0Yj~J0QZgf96Xgl5>yKHyt+}Al`SPEZSoux{2
zhoU`Dfq-$ZFFZ}brfCZLV72#3YJ)^nyf7si5P)tO)36*X(gX4Q06^9$6&^P42Og#O
zkzdnu;JAMRpP-p*?VYE$J!0?}%rJLsedU7aam$^2CXxY(Okz@~a~ugdSIaOJmZ-x0
z>%I~BIIzD0ZpFMOs%7wytfSpW?i)A)ca*OntmUrW`As@zCS%1i#hfNZVR4;*VQ7-Q
z9|3&czV2F-MCpyyV`k)5y&$Y`%3E`=ReQLyw4Bumw@3ME97wcM>l+f%J=tJ0TD1!&
zvx;;XgsG&4Un*XOt)BD#2+P(#0_jDY-CZBOG*sadOsVyf15d91mVI~3C==G2_>zHx
z%IK|(8(3b;5*x?Cg-7W;@p>6CWiNRr>H(3jxMbN*Ih|_OW28(`GN^q%?wJumRe+UP
z3ebV$x{Pi&8I<IBH2XQ8=8+ww#Nj$Cz6mI9n7LqUcDkpUavQ}Kk>kuXg7D|VKV5G*
z@z@m3IPWzp>qSmnf2SZc#(t_FNn`cXqB1xWLjJaGFR0mchK{AP4+cQf4p1Q53l6K2
zRk0bghjhbR4bWH8IpGeRp4%6Th(d<3O`*EQ0(A)#)W&W3=q;+uonf$*+Co>KrG`)C
zIMybD4get`F)VHtBV=p@$>#fK7|LeJ=RbFP!5Tvns@CvP*TAu0D=2M+45&u)hgCr&
zn6l|}=5N1e^}vnRq_;NQ(d@0RZE6M4drdNOdg-|1VO0tNaMcL_g=gt*+UM`^GoMOC
zIP5rgf1N`t#Q=YN?6lnL>OPY(3Kd76nKcGzA4^crqgwaa41lI1M~=3YwW4eimZ-O!
zJhS1tJmUrS0q0z_2n{JCA38vXzQd;o3ACOI)Vy-rWw36y;SqpBzcx1)0dE*Di(y#5
zpc?-rSP`?ZdxHR1-^}ukx|ylHhWB-z3BCgA1$z+RrYE&7{^GyXg<1JM6^NpZM6`j;
z&>n(ExdaDNj9MWK0nqjG=PRYWjE6(|1&}@sA0S@G;CzOG<jNUqI?6&40^LepR_V96
zF~30uNbm~@fyM``DiRZ`m9qDEdQx$YB-6n5$!*xYv0FN10cL<MB1;*|)Bh{wC+lH2
zIpm}eKHe$S==Gts*isVHor<e8C9~`tKn^{qC_BASH{=U`G2nB8l2J;BVQjm^TqONN
zJupz2=>7@o8N-A~BxrJvg%fzpYm>pC8|a{r#x5M`OIiCFrv_GQOKf)XLCzRTi2Q1{
zcb}Kjl-9<+lknvGZkxa@xF=3zlq6lXu}oXv2@@R`#a(ur!elR|57rStlo$!~uoR(5
zi@e%RfFq5cg<WpP$_F!c*Vxc~1-b~d0ef6Zq)_1(3p`IBM+o(kpMp74=9RU^9p$gb
zt3*>=WvOp!&FQ2SIAvVZU@6&S2%!*7`IoY~SIW}Y8y;$@q$Fv{8I2{_!Cu6xjbc&G
zlMNS&(5!!IzP}KyMH_0fsji%bI$s|L&LE9tPy@t@6@jmCyjfn}^+fIs&Vqr5e(PZY
z8QX~ERZ*RXAukGwE?Z27p#lkx`f1<s77FC#8rm3{`SL$odIBj(Hr!i!^x=yp#5~=J
z?UWAiO_$HU&!{@yBSvGQs}KUKxfz|FVde6&0dh2AV01((;#}ds05r*I5<dIM*)LsI
zun7&HaU2n<+}k!Cok_5$$jM=>UD3gw!zAYGFng;rAuwraA{nekj+kCH6e}`KU6EQ4
z(PBHbctS-4zk4~3X~I4C|5_5^F|08cgOsR2qxQ*!D?@7asv<@FOuJepbrP_zgSkH&
ziOtFQ+M}ARkn5DM3SbiSz&|D+1_CR>|J3NnhiFdn>P-&q|KTGThG&Gt#$x4cciB0H
zARYbF-v^<Mk6gsTa0wKn@6=be-AzM2&ie%E`MOv*u5?v0?rj#SRKbfXK1E9Rm~Zi+
zx;q#L--ax`&c_)}CA<=$l=y3!F%6wbmpTH3ZKYG>qZ-s})AMkdhHQQJ&?<wsIUj5H
zT|iN4+4MZ(qx~lRxtXCmtlVr^0r@xw@&<b{J;3tBT5%%N)kK+wRtBZtGE%9!vFH*K
zSa|$5lga17=}PR6)yN*KT?UMGZLL=#xO2WN;!Pl7{VP~4o_U8koYe7b)mza|0NxN?
zB{rF#VwmVjvRN02Amr(D0RwaCFwMwFW{&6!M$=Cj$c}KBq>j>ubkaL;T+hoCMsW_9
zvDL-Gm@6>uIS+F-yd~mCbfPc&Vmz#IkO~07&f<97?%NwOE`9Muz834}{t<N@G3yWv
z@fQl@>y98n!x{QWdT!Mh!55n#gd+_6r1d%y@lNWye~J3Wr}J$=vsd+EH~IR%n&#cU
zVLxNSU!RC16|h<M*xQt2M!>Otl~2{$HcK10FjO5aL&d-wnhHm4L87Ww4NFlkN<&XH
z2h&dMIwUY!KvY@baqMg$Ac%-3LFFyh=XEPR!2rgm(F+{EfBDRKU;DHzAF~rsCPL6E
zyP*ib)7l~vWC0xu2_DwAu6rL$P};wtTg@Ej_Q@5T{kHX8SdEGb#Q)zsT7R*4G_&5|
zKI=|OimS9wMXGF;4duj?tV-hLoHmA1T-nfPK$Hx&W=!kDze{*M?zpyA-@y|bV5QIK
z`}<MS|1oXlV-<~x?#7tbm@K!n2*l6)18H?aQz@#69HE+w@GQ1RnbPjj$}Z;O@8hlP
z(n}=JohjXL_r2A5jJ#%QJQryZTijLY?)>i!Ht|F2@EFoNI}FG@@$DQf0T1#jcuWq!
z!2ww~se814EE1COs`72ahXNEX(yjR=G$<KpH1L19e>Iou=sJXpMm(Oks*>|)SW#K@
zjic|LvniofqRsJBo9)`R9`Gc|Wq-%j8C!pFMJ0N3mh1^^?FcSMoQj*F@ouS*3#;fQ
zZ_@)Bar6nezeoE{j{GCxz&5GtW|`5$v?lY9;u9JJCcMDTqiKRi1d~R$ql{9HYC~PA
zhpB3>&J>I0PsvYV8)dsso0nQ$YNTyI9Ik;EoqA{#p*1QS9Cts!sDgq)StHZ0JRXKA
z@o2z>B@^@=4BbKTj&M2$=<$`(g`;HxltY9~RK^E~O7DK-UIDYBGVo(UZ}p_F*HAYn
ze3xgBgQ1TGRP##pl==&!;B^^zf*_vx%?CKiYMuD3@T-<0M3U=1hnahib$b7DFPLuc
zx2A1KAst(((^vjj(eiL7+N*A5!gkt^)s1pbXUm&)qyTd-!9^A~c~)G`jVDlrwV}RB
zK^7qL1IX{+$A_u;r4(!97uYu~<D=dPR}kGjzbsBG;)@NCOm<bH3!d&U@pz1}%?rFq
z-M}I?-kdg(n{dDX^nEahc)v)}Gg-;tSx081=MO5j0W)dqlO=joR+j8b)V~lz$9Vi}
zd&UM-GDBx(4#19h{B4{2kE!0%#GO{ert(C@A#1H0NQeK&Y^W$w#z)F*Ih?Mg`mUD5
zl#8<pr9t0iA3j0gLK&2T+(F6dVjiF+fa;AfonqU{n?6&Cp4dLl$fWHuXoeFSlxm8?
zkFp|*L%%zZw%{3=_28YkcC~{C)m-jNd3)bVz*0O2@ip-(fYEGMVr3})Iaf9ZSI$Z$
zrAQd=nvl!@D5q7vo1RV<5|mdCg-^_&8!(`<mE;NVihL@pQq=4-u{%0N64$nPTD|?n
zV^b=W5*@rTT#(2E_tl}?x=zVMgn}{tOF0*D7ORg#-3QUjz?qyGsHm25Gsis5GiLc}
zW{<6ikGC}{#H3?lqK44Rpxzd0T8|Z-O}M#DZGvH&xhdl|%T=y|UP()Wcv$tER;Y0K
zJ5<81G8l5*Y$z3gd6SQS45SzWtp-EBt(46^Rzqf}oC!`-72Ej5A7DW0PUk-!Rx7{)
z(9Xz(JLy16v)r+|Hx9xHjs&wIJ27hHNrajP(*rs`MI<m1YIyj;%gpkFq!pUHKc8O+
zBu~5IOq>`?_?!c(z$9_AA7e;g{;BuIEid9=&reM!+~K`=gM1~-e0BtNU;2Fd1Cn=g
zN(hwJOv6aq#XYT&{Q?z+LE_>TUS-2s47@wEWL1i~jf;D2ab!sIRmaT3*n#1gkWSX0
ziOPQ;vIGgNTV`;^uX1Bc%R9^FFA+HlWo&P|QhecOoXdGn@=ZG$S=xLV`T_w}k*W>#
z=cSv+JkgxA3OUjuh;B<mCCG;EHoDCD(e~SH3<`$SD#yAD)MaE`S^?eLPL^}9NgLm3
z^km#>N-;jGc>cQZ=MWb@7#Lb276cIyo#E%`lLw8@4yuV=JHK?uDS{2~b5V2MMzNXe
zI*u3%ZbaZxgDRt*n6UJb>Zqauxo;q5yc0vgL$9u{T-LBqu`ipLk=D(>#H9_jbN*9I
zP|094m<7Hs@{P-{ez-Vz=aLJ4Ltr0+5OBs@I2(zFX9@LL2DgCyjI{88w6UdP96^IO
zv(->#bO<xi?HA(55ojKKJVHA482VU(9(dq4T<o*KS<nan>phoJyl1AIuIawj1?$;_
z@dd)QU-JlPzQ2fA4C_NJys~%YY>v*kVjro~@evVbKFnNddROv;(JfJH6>)JBPXM|s
zT%gNCO`3w8V^FZ5gVIALzqchOw~mGNFUv89+O}8LVo*bQli)&R*3OpfJx-(uq&yM0
zz}6{vc-_u>Ju{^v?`r!C4Vv?{V|cUpTO{@BrJDBPH<Q|&ef}=^K(uCah<Las)lxqF
zVp(0fRlu;9VR|2bkRHV4fXl=?*g5J({D;6(d6teRBRWU@s&_@C%VE>mQMR$~svU6?
z=9vLJ9owN!eyB@{q<|W<wG47YkmHQR;QrF{uX?>#9Vk3*$ELUVeQ0EMNp&RXNf0hJ
z&@L-3#qJ%Y;@Lk#X;5ilnzO^quZ>K|R_(=^GlCc&+f_Ee0#K~>7nQ>)(XhJMHVTH&
z`<W>T+7{8p)NzCshaRTO4TkX<@iz**|N1^<lm>bB;5-ORMSuf<QCnf4j1QQRkfQbW
zh9EC@Qf9b!Y!Rk&n!lBEH{F+2UG4Dg!fhyvmCkL<D^??Z$xtzI-5=c!k6vtXf}6}D
z;3t5@0Kax81^;664NaA4Huz;;ecbL3^=kjnsF)wFw#;3zN5nREdZ?R8u?Z=UZZLV>
zjM`R7I5Z3tXt<{_d(SN%wm8Oq{HFnWZ1U2SSe+c-LA4o#-*|FT4|9fuRsHRoOcx=j
z*I+I@M`dZ4$;sqD>jxWddqV>$y??I(Mu_ZKu_7l@%l#s#&N`L!g>2y|DC{lb4=~@6
zvepkz^<Ye%l{TXiC~PR{v1TVG;KJmlNEw+2{G?|zBQ-e8PlDX(=(!pYaNZ?cvd@8u
ztO=nS@Pg^F&2?9<l)%kt?oJ^qixcWfYVcV|5nneVa#(yhER!|u=d+hq5F?F)g~k7x
zVU@708@ocOAqyC%U~(=*WFIPpnui%)5_Cbt=**`z?Tm3Z68yx$eLYH2{6AdNhe=MY
zJ2WDaZc+s^NFV>K^P3LI;pNmB_BXPBN3WG5si|kK(er_jWL*Hc<4jzn`MH+(>FYL@
z5G=HsMi9Le@y}vfvCSh~OH>s%h<40-oA5t1-*k|NUI{~EyXZDE3v}^*)-cm?|G-jb
z?^5+rJpCOMZPz1FT=fb$IN`JQfEh>&wQx4Js-nN)N}6lx-zzV|Xo^&)hjg}P!ki_2
zo4ma*_XNiSMARqo`;XDpv5f{DsJ-X$xbmUm1*Ro*QW3;6qaCK{s&y%_>yF2u2!Re>
zPBWgo8d{p|u8?ff+-FHm%5I%HM5Ks+!yUuP22ES<HRGa`KkgL(H(!OV0<i)BcHeA|
z=cNpssU{k+j|SianMnUH(EE6U$Bo6@<|>aEs-B4FccBxG+#vrzWdiHtJgiMuc-hcG
ztW<=6_^0E<A8koC@=`-fA$-}O@&55-G{O<73!^~ae;sX12B{XaHb0_MwLGj^t&26z
zW>KZAx{MG%l%!4eCm>M7jH&0Nhq;3HvsjPzBa$WTNZSCmyoA#vSeQf9f`4e8P+35V
zo$hp}3G^HGcH8JyvCke>U=f&ITjK8QQz)`VYlL~60RnxOPMnd3>t09B46sNqtWf)+
z%*%2Gr*lQw%LP~mFHmv`@1az^)RLe6pZL83u(WJXctiYgtru{o<_)FID#s@$?UZDy
zZxqUQuudHxUVg{%&FX7t1|cSl*0iIbR%}?8;7ewLKBt3)Kzk1`S)`(|2v#V?@Bxu@
z7)u|teebCi-eWJm`!k^9_lk@oMS?-5!QUEtHNs0r3Kh=R^JE<k0+nS=w6Thw!8Q|&
zO2Z{OSxv?lmeF=8(t9Cy(ni|LPv~D#WhKA>h@1Ee23<?)H;;Z*Loo~f2lK@yK%lGH
zmiWHgTKi`nrR&cun--+iTEkfc+R$dR>Z9J!{SozxXnwpj2h}iEUhs0%#d|isuVfhS
zJ!iiu+j*LP!FVh!!meXo8r&z~BKxNcmI2%>WCvrh@w2cTWym|=^U^#}<EoNCvnLm5
z$W$yTI|Ni~HM@ZD7;bXjI95|Q*=_wi^F6`bp)>~rT~`wjS72p5E8h%@pxRHwmM<8J
z9Di3GmVR-#%I4a5Wggz}3N;xokUQXVpsBS+L0z)!rh`$qf@hAbRnM_}GdL$Gu%VDx
z2WOn7!24{jDppdpvhHSrrSG~dz>!_qt&WpvxBTFRJMB)O<5tYWSx_JRg0RAfkHC1Z
z1x@MZj30#V09L?qopj&9|M40GBkixjKNpl+;6|_WjjitT8y;5C@E^)<z$VEbKJ^~Q
zRN4~9RosjpbOJsBHR!5BGR^MI-6ZW+KxE!Nx!WZxZ$w3`up^9JRVdqQbNEHg=)son
zfw*V#=sQ~}BTYNmhDQQ%xZ#ci^S?UGFEG*8QJX~|=}T!x4&$QsU??)<1Y4f4md3j1
zj&z-D_i0RpZi;U~ONC8bj)!Vye@6Y#RPGjc2d5rj&hwz}@YgFIwkzTzz5-rr_sb_l
z?0btI`hpZFat*XHiy(NVVL9i>!O8b6Cg#8On@y;2x??Tu$<)e=Pm8#s^)yon#!g~9
zF~yC8Yqa+*W;C<=RjK1v(nMWw;GD*>nX^T)IPHfd+2atc_STakm=usPjzIK^{NGYw
zZtjh9=zKycNwTbfR8ey@OTW|vpa(l9ItLI}(ksPuZ?#M#n^6ANMzkkU2no-(a+!AX
z9Qz3kIp?#9TUu(CloSSyu}`UONNUiCS30=327`q5YoY;IU+l2u@8LVFD=XCjggVIz
zWe@R3vFG~E^u({WN-I>2pkD=JSPR+l&=$sz2N42Ho14Yl>A+}ril*G2RjtKqXrknb
zrd^D4Rd>z@pv?4rj(nNG?|+YKcA_zsJ%v8or-eD7uwDeN#$gz9<{V`fv`b2l@hLy)
z9w+CzQy|h*ZIqaomSs$-lj0u~$|Ft2+J3In&k-w%e_l5H*(-T~%BRd4lD1QFxlvE9
zAR13!*4S${js&@mr08&2fvXox#p3;!bTPhpK2OVyl4ZxP*dA@c!)4N`$le1XQYt;{
zH<bELkbzb)QNT{aaC9OFriVP`LCV$U7Pueykrtt!R^n>|*<Zi>aY0V6bO6=LwiV63
zUm1g6mhFSaTnu^T<QWGi?JkIyD6;r~n`RyD5s6*>m?}Y%eE=SzFl>;k#43}I?q<)|
znGYuXge;!L)!&~xp86&W)ucN~J&WHq!=mdR>OC^kjd|#d>udPaXhNe?o9uG3$=i(%
z!$F3cBr^b+X#6aCtixb=WOJ7C(r#hnZB~)Qrgjq3*w$<t%GrBE3Z!@nO>IP5FORj&
z2^PwBh;|O+Z==dLsj*h`z|i0LK8d@m6~0*hzIHDY_{v6x;;POaoQcbQ`3MZ)oXR{o
zFR5`b-G5K^9C(OB1joOiWd-6I=TxE=FRiR=s(vs++&Daky~x`8^l)&cYYBunDM~r^
z{x2bA1=)%|;5$lkJKphl5=o4?pQU^K4k5?~B!Zz<`tv1|BS+)<#81Ihl|CWHl#dF{
zMnr_x{M>|uZj5aKQ){V#k(OT09yW)M%uDr^aVvP1utVE6|2v5$#ew42GLZ&=#h1vF
zx(wr@pS=d{e|KnEC%#sHY=0qni4^z9vDikT#5toA`i*1u3-_2Z0^&rs(rIbVi3I&4
zK2~Kv0{LmV!0MFFtOXlV(grneoHFbAksczLW5?q2$eAZTat39QLMd1TA^b_3e7gBy
zy%wtCmDDaRTo2NE!0Wgn{?+QXoW-oU$IIwB^Zbzs`02H)$4}hzIO!l%6e|%BnZ0{5
z)c~qx-AD^Um~q;L%y{)Hur?7Du^EZQw>QgY-0WzTSI@LBjjH|WkP&0%<=d5yWVCCH
zPUJXBhCZ#^obL|X*{t6K4vCUPyy4H)&ms;Zf5D+Ud$;P!!8^)0`IUIXdL8IhiAMJV
zDf7cG<q}K}HK~O9hX7a$kGSQbobdsK;EBvIrH$t#LQ6u0ObA(xwtEOB0C0E7nw@R)
z<Uknfzj)&ou%@`NiO%Ie^W(AkB4K^7$7_9qhuQ9ly9n0?2=dz<mGzUw@=^|X1~fU-
z15dDMWd;aEF9-O*-S0n6vppw&nfH@@QiptX#*!U`vwI;W0%A%F9fdo$9HDEZ0WqR6
zjNctC2Y2+C`1(<Ip+oo7b1!FE2#DNMHZ^h0F0^<B3qaRV!~gOr!Y!^^Z~x-^bKR=#
zhL_G&?1H={r@T+gj3fH5NX#P<m8jA1=hKtQY@j`x=Jg`cRu~U&f-t+n9Eu9Z<8J(u
z%Eg>@<N=XQb~}o_Hy?cC)|2T+{ovZ;1222<e9voX>9CowW`U?uqnY$SknI>F8Yfv_
z&&#Wv;cuk$+I?pJlie=i{?0SwceN5I2#c|V?YOk9M^n?!TxY5ckyP#<`BPlcyguBB
zgUd(aC-#}KOPf#${7enD2m}M~HNW;$Y}Ccy24pJwmuzLe*=GU5&EzL9wRv74ovlc!
zCW=}ZeygLg#Rvsp88C0TrHH_i5Sqrw5^w|!aiR;hrs5TZ%q{g%`4$XnU+h7QL?HM+
zap3Bu5A`~tY0@CZr%QqMM5oj}y<F_p)G|)h-;dmWq>#pha}}SYj@Kud!$r}x)(SrZ
zm^pNm4N&-=G5?4w7*DBSuPkQ)JhR1y*T8o&X8k)Qk?|cna>yt~%i$S(^?1T-5Jkzr
zU^~gfTEp!?>?j4S=iBxrB+VDjs>sqlGH`dXjy2TuGj!U4>5%^@JKZz?6<@wuPaE?X
zPzLoiiZtGjwEexs<jL5yC1>GLMbkj~<8u(8V*(e6(>kMy2J%ey=JRn7TZ}7B+rGmJ
zon*@fdP)gK%s*l@A6`qtX4#$#i0aq;om*>9W^YLPzO?&B$`OPvzjZ){Nlkzt>v|HI
z1W4XcvJ$mI{sogBOO>UO9%AGZaV+5*7)%25JYX(Tt+k@>Ho1OkA}|GU*5=ld8ts^G
zkXgIsv8ELI6GTbBk$1c-0jGc`x|Wq*as<7}IJFhYxtZoVr&3EA-z?PDZFi5gGI482
z$;+_O8sNe#O^A&2jTv{vQ;zTW^j0DV0(4A}>3@7LS74-NL)R>fML@-5gt<%N<!~`!
z#VlR)hX9aOpGWt&c@!S^!MYe&?$!7398YG%sBy;Kl!#N$aSBLnJLA$XTmSvv%hkm^
z{UGw~8YA7`NNG?#fASfM2#;O-J$*WMjwTQ1$5YDS55JWr)m2L=iyvdH-yhBMAdA^K
ztPq9<q8-cQLaVqTK#K0|IOA)KPSov-h^T{oEjm(Ray{>W!DwRqUsJ-IkpdIdMRM}p
z8W^Rz&a&l}rU;i}xZ~Zji3TQR!Hda?I$M;O$Ib*9vs|SnZA#D+Q;nC`kutsQsP0^U
zO0|M%ITrSz%{NOD`yf^lVB|prdjmb7_$bgc`hTKla?Ks$p__^3X_k%zreXu6h9Y_3
zoT(>mL$X?*dL9{Ot1e2~mBV#(4vBePpRP7}6v)P23hWvruBe}*d5gYL#sf#bjmNMi
z<NtPmj0Qwmy?pwl&5LviVnKmmu%iNu!iA?ZpU*!fUq$L$Xg2V7dVa8`%){SPbQiiZ
z#2fqEl&>vS4`1OV0L;dRm{+`uBl3Lu<__TPVQYZAxRq0gt7AB2Vm7g|Kkzj(b(v6%
z0&L!WV9aoS{oc1DJViBs0!;5+PvjXSYx>ngbPIqPZ6i{_`G=FWFrJG-yM(+@x@?f(
z><^;GUVU6;c~uBs{wqvd|E@(1PG6VKUCaVZVCInm0Lx-))H3Y@O=EksrA<;%dS!%c
z*7+}~Q~8EN<}`0ri!VCkWih?LaV>-4*p-ZhFOY<zvbVi{sQxY+B_MfHxm24WUr>^9
zi~yr|=={50%60_9+%2DRf!WASU1h=Yug>fXu|f(R0a`DQ79u4<_IUTO6qSBF(UE)7
zP!ZmKI-2$puH00)7Y!}8MI(z7857P*83I=8@>g}S8(|1+b>HF0K>k891Nov%+93uq
zx{k!ccw@oMj3bvYMA@7K)-f3H;W6arGsZD$$*YI-Vs;(c>c=Zi*H>}ogos$6t+UW`
zEAO{s<qX@!q_zQ0SPnO+Z$f^~Zw+*l$X$16^HUu?10Eakye}{c-62&b?61e9w5YPG
zTn)=IdQNl7Fp-PO@ABLF=|3FStlAnv8TViR7g7=M)>+P<qz1||Z2D9v8Ue*j954!O
zFQ(hskiO|{Baw$z%fKKL$AK&#ieEQfk45%B#3uxhK=4*GgB{1Cex;*T=)NYJ&bvg4
zX$;b}O(>`4h?WFb?{Kqzy;*)fpE_6Wy(`e^8BvpG)ge5E&eKt_+f>z;SaIDdR;BXf
zyAcl0vwGXZWWSGWMXVjx6AUY%3Tl1Qn@!%QnqNcaMtAx-`ksVi`%$r<UBt}V1qEX*
z>D~4RD?V8>c@mPsmwI@YqNK6h^kw@UHt28$RP?cOvTrB%wi~;sgYV)h6T*Xfu&lP5
z+(TzI<)?l4niU|bmr(kV-3o3eM{vJ0wyPFFCMGQpxFPuJm1^KM!qzwLjYfIm5SXHa
zh02o<+=AF$5}A-*lz9tVW31fV!N)Yi?S}>+ff(p>-xiC6b-mYzmJ(6qe)Pkx9AWxz
z8^lVV^A8d@P#GH7lkk#E_860XqIfM@Jt;ffJ^Dt_&N;jRj2}x6-S7=x6^k1M+<Xvm
z5Op;tVu#962^gX3+4>(*N++^CxQmX!*;$eKvb{UTseI&_2fK16z8x*$8{!}ajTE}G
zYs#s2B`)anm83d;;fX}DJbv&<!<zEQmG7nkxk#s8g@6xE($WD#(cKJdA>-#b!&IR0
znM%S>H<)gFE=XmdOvPj^4FJ@zzBSKIbvNr?>j@Hi(ufxX3tU7eH+it|CSt7Aa-{8q
zh4~Zu`S(LWA3iDd=cRXc)31L3TeH4BVb%=gzyeRQW5ot_TKlMFTgD((E5EAl^_mw>
zp4;tswY)F}A}H)s?uB}SeS8fqRvPBB80V(dK~J3bIE@8WB8dK9Bn}-9bC@MtU(ZXM
zsb6`*Cswg<R9ra<`oQDgk@M(h1*W~Foa@uo69U@=m_<&sw7!ctXD0}`vT3Iz6F+8m
zjUHKI${-9M1h_L5RV+BJEI@+}t|)G#{()T4WDs~{;pIVuzg`AoexLFT*)E*wi;YS0
z07&5+rGJqrH={|P#UpvaKUL$3KrkF;cYxX)mPZs!p=0<vO#&Fwb#IrQ?<H`S%TtO=
ztwhIqn87YxWU~|p8Nh3)HVw#GeJvZEH|=%N`{>tKpbp6$PtK5}tHd*s#Ruu_BO@6@
zhIvAEj=(cdJ&PC=sjm4#4NzIO!r+zA28u(8&@(3ri`7dV+iZX=bpb~HT-5WfcHQ-d
zcC_@Yq}xLHS%{W|M%;tyl{dRfPH7?9LNEmNH~6@eDga<+>x8}Jt}LinvA6<<d<~Yt
zE%5+mk8U-vvYzv>A20PqS&Jbnal;ep0{-*m<s#ZBBddvm2UmcYYilr)6dO13=SI#G
zg0=ya*0+rPXn-Alk9SSa<KI>)sgb=T*HSZjbD}Cug~^IOeudZiw$vc0A}xE~Oj@AX
ztnKm^dbH@B%`l^{T1u+f@!&06rOy_^op$T}fqIo2uIsUI8&XNue8@M1bQB1**lEb>
zLcc___2?ev;}Ldz!n#3>3_31b6Dnckod!Amj`%k{`nSR=nA*7C*)3VJ8{?Pl;*J|e
zxP2@4r!tZQwBy-LsyZ=AV&Xq<#t`mA-f!KiZU5Ba?<lyLLxM|V=w!Kfj;1OLr(IF1
zQVREMTtq4O+}liRk;mEmw?(=3Mh=zEH>^buE$ro~l+rR;&HVPT=2uln>fJNc6~Xmp
zX5K>^sgG1qIBTTRB<nv@D7rM9%Qr+PiEr=iOo|CVeI@^JBNpd&h`L{?5oa&%QPd;a
z$t)pz5waqyR+6{;m*miahyG(T^Xgo@4)?lD)pj4a#mEHw|8h1?rqM=;3(B5fF0V7g
z1Q34wuym3;*Uu#<0$Y5X&P3X#OINi)uc1I~y)94xW(WgVyRD3h4GSANUAS0!3Fb>X
zvWM8HTrQh-bg)$u1HcTXDnJ-TwaJXqH@8ENgi+@0T*A`F3g(H;$_xf5>`<$-HT!9C
z^9_e@f^c@Y8pFgF15{djZsx-9D$>FEqNBD;YXT@)>OQGlPeGv<zeUb{&ANNzzm}G;
zpgm$g?H)(AeaRYATHSqT{0x%!#Ex6$%E&Z!akR)=q;M>(mO|DH3apWz#7?*r!FO;m
zFKJtWa-9M$dC;&$C{tB!gKP=%V=nj@gL!r&s3REK7a2UXQ&bi{r55YmEC;j7AJ7{g
zZM2|}BRq|?)BG5>rs=!F1+%F$c6k^2ejq*p1|X0$caw3z9s-~i;%826)d;;Wm7Vnj
z7NTcXcg7`Pd(1xNT=wf|27o#z%(C2{!y1tvOi4ExX)lDFDD+Qz!N|c@hhQ)&Wfml_
z2yMyjhaD*i!t_|ej6|^&KPQTM4zll=Zn`C&Xj?o&N3m_z^a0FgD%vcSikBTLEz;Dg
zxhZ>Tns@zzo!ev+>e>LGIp~9vwP(e%BLA`~RLA-!xkjzA-Ar}S82|tuKR4G^B+`i^
z6b)BYYx!Ag!f=61n&ew2j2CIPxOcQGhZwZNLl>&aXYVfP4oOi_b5WpOHGgvJ!LEh_
zq%i@H?uZZAeI$C)=)p-YPJt)5)5srx+SnX5I8I$-XS>s-#pwZ24dUxyjePU4$kkn;
zT4G-x({KgR*SQk?_w2v{!?-b3DST!Yqq@CIaRz(HXNqk_mZtWW@#aq`q$O6C6%O5D
z#L&Dw`0P1nu_|>v&l<<(P=!kGW|^Pa_aV3H7a3p=gW#%QPAIu_%_xw|RsXc-4G8d!
z-XH+Ly!8Ku&MY4Y6~z`o91p-MNCdUN4_N@qmCaASlShz5hIk0Kqpokz_g%F*u>vAE
z%X8vcvna2z2j3cyg5FX6$=3!0z#4-672FTZ#tRE4T9#Z)09in$zt0isvk}Pv`p4T_
zft({aj(dWf-6a$2QnzK21+o5Nn;j<q6N@wfDbZWm)gXaFFUqqnFTFQ3(YD$*czMkG
z86pm2&WHO=jaoM<dSF%zF_cBog_Tda?Tit%>r<HFa%8cgCmAHvrwE8GJCxxHaxwFw
zUz@UK6L93~QWKH~t@GV17klteAH23v9>pwJYfm;{w&muMTZGEFLs$o#y6HrzSYS(~
zJLR>fdilrPGFyq?4Q_48?(MHPyU_k9^|?T^I5ql9ZQTgRvF}-bG+X`1-J={0RJ;|t
z#C_zjBKHKZZWGU?0g`i9rp_g)K`KOaOtXdN3wTJ#aVqC(^YA1oI}di50xKSsnhjgF
z0F7bNhhr}t7o?Oh)UKaXcN*x>D?x>NXYefboKJ$!Ftx#wlae3peYJQhDWv>QikJ8;
z9EN?TY+@|v%-NmZA5FIpeq(ggl><3n<56qx%%Rpgzb+|dW?_2w-xot2udI6&gkSZD
z&47K6X$R>e?f5)QzoqHO{G#3H6E-Mh0I-<iru+?tDA2e$DA93&<jYROhC>JM-rv$G
z3+(A%VnM~9W1bvow;5ygjrk=INF@DhgDO+Q1RZBvEo?xzWnkHtC(n!DAQG^y)*23|
zKoqnYN~gAGk*&Hr?Sq)18W$7~97^%=&z9{Q`JI=WgqEdf{0SA**f~`e8|L_61pSqq
zqv8NXk`@Y!SH6|(biJVnhNivW7&4BusXo0hTgT+{d!gtjFtvN_9$j$hl2UVdx*Kka
zwRFcza6iFNh)EU)l(OH=3}i1q@F@BK+&+-$31x3DZfQm6F}Q)rp@i@^*-L-Cf3$#P
z%?U8xZo_xTfe<cC!;1a5Nixuqh5LuilNTU(p!7k5nXuH?v=5|!Q$!*n6Zw%}3J1)e
z`agl<DDMMYYi4aRPPcN0%^8YZ61eeLtMxYJT<Juz)BXwx!6(b!7q1LjY0JU99wn?e
z`hW)%q^^L}o*5QTTd){X4L33*Ei-ndQCQu`z$ot1kvP2e=qsPr3ojU9Sz9f?2O6n)
zDNHa6`U$1fO*`kWwHLsSxV7~}zbhZPOM~ug6B?GfWFp5L3BN`4l63IJGk?t_Mad2i
zBp%={GdpfJCm`mjRnPiv&@b$I4Ey7n%0|M3{}V#G2AE!`uqj|9=$;=M5cSbC2)E^~
zuI36u@`g?Ymx)HqZGkpz!w?7xm_FGDoLe2$P{(IN)(zA9{Uy+SsU!{$l!4JN=KFH|
z1mv({cT{W^M~$K}gBIf>&nU6gTY3-MDbK)Ic%1cu<j2Pa<HHw3B*#Q|Y}FD3s8*)6
zm?dBY)b?q0fJItOuu+VLxRh5eahGq){0hs5G)n^yHB3V;P~(^ESxMypzd_wjYjQAE
z@Z&Fb>D^3Vj=U>$nY+OZn-2UF%6OcE+b1C~`d5}Et04C$XH!pBF&^~lRn;?qZU<0J
zK&-}UMPkFANVfo2@K}_mg3BsHb5l;zI?PsR6#%rb9K3FiW?~#El2$Aw^R6riwp1i%
zT@f^h#5_G9?5j$&h^E>d22n9;p<}(Y+bSd#dr1I&UO7t5LKEJ*cP5C?0ko{q6CAm~
z2-fdFclP8f&7KANzGSf_^R)asb6;>Qdb`e&mJ=!D5E$Q!yy+MyC$?>cLc+p|`d?Ss
zfM{}|+`vCP342r@@GP#Q*iU;U!+f^<VW-UYi}SY;UKxsH+||cqFR|BL*9ey^03E2J
z2w)W43#=x3B+0-AvJuWdcPm^)m6p5lYgqB!L0sq`T_d<4897d6<1vaFX9g&p;amN)
z!MBQd@v1xJ?SE(;GwZH6rz~~&1ig9Q<32c0qn+2BV`>$bl6ShAm#s+``s5zW!(Y**
zcit)1MjwrWrCe-C4Qq)7Q-Lx4!|hn^HrwZZqAP09f9?Q%o(g^|kA@mf90j%Pp2oJ$
zmV9#TK$<wx!u*+)v4bgA?w2qxtM3XezMmSHtOLPuoq$9wyEy<snF5b)m&KPIH-5YI
zUy{#9<HaFAH0{`x=8h%Rl`(j)z8Ii!{;xH|;+_8^$+L*GL(#oxTr=%r_X8X<y3~X+
zMPDSoU>nwNfoV50S^f35%}L5TCt7WHB>BP)`IQNJ`(qJ=B6zD-V^sWJd?3<3Me8@3
z$8i#?A_?l}h<%~((hAW#m=ziDGBzRR#v!;Ki=3phjt|UWIq#jx#62FL*vIyBGbqbE
z^oQcA{&rbJUd1QOpUMU8I~nlRYohW*+i(k^17e;5M@sz01_~n-Ig~wCczXLy*Qu}a
zC>Y%xJ_nz10N7&GnM15)($s@~vAmwk$GAMxMNGUIO%;w>FC2u|bmnN$YtZL7p@D4=
zM~tMdnV>^NU@<@<g-m?Kciz)B4oob-Dee%9kTehJS8o1NLmx%qhp!QwJko(1ZA^tA
zPUYK`8H{qv6n^pT4V2o8Ul-DJS8ZKk11YIS4t=;vYC1)*PA>TaH?Y&=K(Xy`VHDgZ
zd=R@q=aS4(u?YJ%87d7GiypoJ2%zLa2&pYe1qI|An&U&4Ze1u3l3*C+zNbghqNx~W
zbz>Kq&Jq|IYstTq52>Q^l7DapSfKkNEz;sxYQ6o$rDeBmR4e-qBw-Pv;(hF{Z^WsK
zpAf>Jfc5SnUD!#*flgo<3>@yU?Y1@`OztGz5qj<_CZzGfHw&~UlA)%v8$=Ru_0_vi
zU(A;DkrWVm$-uf?e4HhSgTnVOq6_uT+mPE7!x6E`H^%ZZSkz6-bAA-CXVsUlAJJUn
zvJCMZ;r7(VWOCA{3W<U`U(kpS2;jziEx@FA+T?<tg7{fNWBDpY@Af;t{k@_*&J=Ab
z(L)_Btd8HmzWK#qdR|?aHM8{_92(<x#crCR0W&G|vZT7lPgm11G~)*Q(q#wmE-hc1
zwK1{7bMF<2)CPNQI!ZAY(W{Zul%PmAsI3`o3oOZkb9_`Vu*Rr;L|$MxVd26~_vKQU
zK`9E43BP8a=q8Xxc@f3!Qh);H`W}}}Q`0H!?f+A}%5S%Li`j9>BqU@IblV$p;;hun
zHiX?raawfj!Oh$6=mv+r)1H#_^8MR7U-?mpM}IsqtWA1dB)?XCTNL`j?AF^V87n4D
z8bL|<V)sa=GX#HBu<XfCGmO%II8tjX92CS;O3Hl~vjpTXM5DDeG}4mb1Uv<l-}v3S
zk~s))93oY19smN8gx9s<9ZVtAN{yPB`W?(PDb%ABpBl|w;J^l|y>s?5&timWP(t0+
z=6EJSRs7^<6}!sq?n3L9ajJB2y{x9D4#UY8wL#Z1UOWW;MI6nJN=XHs5~J@PpR#*s
z7#3(Ck4*|43fagTsZGVIavp<Nm|e*0HaYeql+(Xf^M|t^gYo)SQ|>H#iQCyXJwJLZ
zV^JuUK^|u!JUGVr*6B(UA0Korl)eG4tt}~9X;7)_fdbIEkj`;;?j0&Jrd(gAYfGG3
zn$nksNaJ-JS3w)XfJy<Hie=yJ1xnpKqw$BKsFWq!6UbkkaHAZO2^qy=hKl%N8Us@N
zL<Kk_SUk8!6KDT0uc@aRFR%FLJg<ho3QmFMBC=F}Ha<VqCg5Res>N95etWv`G5))Z
z<&`=jI;G?xFRjKzhxU`gs(|t8Vt6zLg7!=Ss-uHuLJ2E6SiNEkCv)Zom6aUKBoWKM
zT1O)ntM;t~;A*6z^W*_xnSlcv0|^ZA6|f<bq~{Jizt~}vx?=fyez0UP8U_es%g461
z$E`?$^eOq`BodkU7)ZVZ${y8~47(+k?p11(2!wbpcOb~6N}K8ZT@bR*Cdx(>?N|Uu
zBmxF_G5f)%tjj(^+ypM*%a-f=Gh4JdL@mE7en+P;>8*jOSHO2OQ0DMlqnq4&ol1=S
zDfBErLLt3|t+E4%Z=PW%LQK1$^VF5YFMUHs0Lhaua{UgFDen3~GU*nnWgL-g8owSt
zx$=IfZlH%G0_8LG;^0U;r{cGf?<`%8d;K8<QW<Z1n06;-20TPj<T$>hLfOXbJO+?M
zwJHOkB&jB@?_@QKhKzKpuY$)n7X&ofu8(+F^xf}r5!6J@2gHW7R7KbafqLZ>XtrBp
zYiX5fdlF|rzS`!pAXVe;HNw0K4pXSTXG<tP6`j0O_Z5vLU6P(TQ45_XOxz+{1Lk)<
zh4&1EfowObR2htAN9Z>&Rb&xaM~G2j1gv<c6%M!iU!nw%wpoiPA=ueJQm>&EG>D?I
z>Y?vlr38P1%#O<_YTqJlw9CYX1#N|f)gcZVlH3Cu+1Z{0jfXiV=Qb?cWo-?7q_EZ;
z5zrUCUWtP$Hud?Rx@35dy=1ljuy)O=z@;sabf2}1xoR3;x<e?b9XbJ$F1kbC>Lf>O
z$t3bUUwsz%G>gr-TV_FiBjF4zaIpHwb8RE7u@OAQ-DP3V&cjM4Z+0FlWYLTMNUuec
z3fhx2x*gp@Rjj!mt$*JnUIw(`sq}5jK4;8xO!4u<tt+Elv~?YHswRRQ?{@6%mJtAn
z8!-#(XOsh{R4^J}M%lg)oC)%?jYZsyVX%q@6_X7cL`<#>V~DJSUjRTuK~3MkE@}rZ
zE`uKg9RL7RrQi?9A}oMT@Z<S!5>1Az$+n937H^#89`KiDXK^nH40BXqKG5&Acx2yf
zznNjvBd|K|!$O3SKhA2&0)cC*%_=S0!w4o65Lock7k8E7CWFJ;+nQu3NgJUjQK2k%
zx1$zx)JLN`qK}LnZaO_b+BB53*6U6%JQ?6|Ya((<H@Ds!H3?Uo#Y1!Ol}QSBs&=a#
zIHRBtK$A{GHm{P#e!dH+8|X=D(`Q+^W^NFh0e%c+_4BEZO}SOC_xfB80>TXL=}jRX
z`Ij&fwL&It=cWC{PD-F?xxF+}=2d&_R<(jC9(y*<y?Hy53>m0MY+{g5wCpds!z7dr
z{1)EzhUTVpO>@1kn;4dAGiTNFVytq5fogt5=YR|atX(<{%@H+)pE9WvE1JRoO@K)C
zHF(W{9n9UUvk<>wp)!nI2RVpHzDA2Q%wi*(n8@#6RT2~!`no180w235ID+8TIq57j
zMF&eD)&sr2S6XT4{bSwgIb|8(G#rSkU^q9eR|7k@qyJ+OeHLEKXX?H~fF1kCASpEU
zrB32*VcayvYSzU<`+Am}UZ<=+b7(*6Mf_;|qB$MgAUS*o3;dXOW3?!t$tN?<Y>{Yg
zg%wR;WKPS49QQZQ867I@ThVrYvVyy<$#|A7gGt8vZGQ9F@=f9*`NN#Ni&RaZ;5zE|
zQt8WsIkeH8u@{=!(C3hrWMCX5Fs$hR3@53#L9L4aBT#AgsBljV5l{=;p`4yKQDpfx
zBC1m0v!R&aYc%xzAyj4*_Wl1T#?TeA^N=RhF}k7vd!NId6@#`gP_T*u=ADC4kNDlc
zPT%Epd-p%4xpxFcbYkGT3j`wd|I3Y1W(pfo+6~7%f;Sfr?>vR0n!}}*#>{>yG|hXH
zC)6Kn|F4$yde-oum&Q>sedDSLTZ7c^i3VQqakE_q;lD?pQgm-@&<Cs;92=3+7ene#
zJwJ>4stZi~&Y%m$_WTRJ=Ns%PoEomLz*8Uh18i(WeY^~Ld~%a|%(j&vEi6T4{(}b#
z<%Q^cHHQNKn@2sdwR_1Alk|Icc3`w-qz3DA$F6*A2s(>`2YYEn6!{-r*2IG^^k77>
z<l;QRmaBtVwNnSzVa_yF>o>MkHQRO}6#qtI>%4C#kmM;0@=P%*evNYD%{p<1q>t}2
zFPi&r8Upx{lbQXF)8Vtu=!w9~Ky`a6PsXsGt#PU5#J|r-_4k3f=Xa;Aj)241>wRa#
zw%H;Ylg%$eDb&+`8$1887PA3;N%fB{nw_PR-$6Y4WiGPdu?huVK<!X0%R0UG!VbEu
zri2r0g(jm79=}V^yp4pxsS&2WT)lQDlV|3DFOO<P&E{ct<zAIx4K|X-)Rc@q4F&Ee
z|CO+5P8LVC$(n0vtC0fOeqa|XB{60bj|bQm3d>Ps<{z|BuXOLnT|`!;>L!^aLcaw>
z$*}fQiA?j^BHi-7W&?TLFddFAOGS3L%e5_<^=jb$7+L2bnbsY87FT*epkS|;Z_1H5
zTj?0`$dDnC&w-1YUw+&grFcLIH*3a3%a(Mw1;Dr`;I*-PlBSaVp%X^QT}Jr!bJ9ZK
zud0TS%>nwS;HKdi9^}vREi*eWtyO83<$gQ=WS!AvWKcc7JH2L-715k^icFn-Z$>ZN
zbR{)gUimjnQYWYXdkVu}99n2Mc~C8FeFeeQD4Q*KY6o^~CH58{_{wSbEpQ+t&z<;O
zN!0~Co)QhsmzZ;}cB{IM6y#-C|KRDt98b7HM$#r3wq2L9K=R-Q(ru3qPu;SpQu$j6
z0QWBj)i>RrFht-$5z|Mb0Eue~vBM}{*N1HCF?<iBxpWI(vm9X_X+#V}_&+TBhHJLf
zZS>Z789>63;*sd|&O4<V?3jzXqn|m;ynyu`=1c)|p2tZ?z)qOmQFAn=w^SU<YoHGd
zcMZN>^zGO8HOtkBZ?AV|Vv2Or3_{vAs`ThI!yzl198|ii%4+dp9};Hu!oRD<*ZM8n
zj=0^~Kaa8Dgcs0ht9lY^d{v_J#$@tYxdG5I;^zfP+H&qvs?A*LbJzK)T{}L%jnKKq
zzmbNFL$z=E2cnW^Ii86X$8D;WWh9N-e|4hh<#V5c*%7yb-o~9X<=r5F@w<T9*WhI>
zg|)o@Zm!_M;=-ui+Qy0Ze&|`Qx{#ge$Yl`Wc4PR%8z08by?Z{lbasS=Bf2ws7y=#v
zc{x@{=^-k3HN=MMN_N*A2iMe3a;JYA6%D-!R(v5eo5ZV~ClrY1`?y8*^~U}|WWfxF
zA}|jHw;%mJIRKZKlbH;n=4lgHP`}$IzzeMnP?IoJPk(q9>;fjEDon<BQ-<intw*k1
zy)ccmuMn^1i;LnGO;Xvv@V#xXH7=`TSa>a9#5t?JtLvu$hGv0l{HskemarOxZi54q
zStjceYh$_5g$g~n8vkSeQ(tGT;@~46vpr`86Dc?w`(Q{FhZK9@ko4($+4l3)xs4{u
zDj7e0P(+5dM>QmDRhkQO^dUhy11c2cSsKB}V&lUK1jqlqmW-KTS$AVO+|d8e@Q6If
zTN*C75rvfzt9IE=sJ}9|rJ3pLX6Zlk2HJ3Re{=*OD6F2+q$3<hfH?ML_#Z9Qm6sLj
zq;hy?r?WKB@q_|)9;pB2U9{X<f|Ia)P-<Yw>BNGqbg5r9=$+GLeEmRl_vTmY-JoO1
z;yQH{TNIdq5U2|Svzn@jax!c&O1(SHMTQsOWAj#0eHK7yLX7S6YCiT7^6VN=CU`Gk
zo-b}31;SohF6O$c_7-MTV?~ov)&uQ1qqI85#ZlFJaJF;C`rvqO@?Ba4C2i3XR3LAE
z37j8WxwS~XrRuOjE9S^}!4Dc8)F?E~%fy^JQC<HS5>LtrO4{a^<Cp2m^kgSLAL87T
zq!QpFQ|2kL@v<RBa3o79I4YfFXtuC33|@?772Mt6`P-N8E`9a}Edv=LUbXSrb55i9
z!Gr&CD!CKnCip{MQK0%xDF%cIdEDh9X?K9^B83k7c;Q7x644Ap(~0o8{p^h^a6j(#
z;W5`LBJv<4runx{f`Ea3!fny?S*#s~c@=sKq$Y8MX0OF=1(EyFRI4$fsNzo)l3!Ad
zh{UO63B4L(L^RkJAa&my>Dme+`f!myl7LD&-Jvz3IY2mxx>F#6ui`~pLdJEU#xEE%
zOi9m8(eLIh6xyl1s0;xd$9d7DIuU&?s>JVi4AFk)!*J6q&mXHeammk=ci6-=V@Nm}
zA^&{`VaG;b$vxHIrbZGDCz8DU=`OuR9caiC`^y3FOFF-h_y8mOl_3lci#|>+`CK`q
z8}ysNqNY9RSh4~o@rn<EtDkD(U`uW@uPLg7h=9B4P^6+<>D1K@NNhek)<e5jDRMU`
z^Uy0*<&cXM6fl2nR}qUICIa!P5KN5PWS{ovwdKGv4s&V6j-JhY)N+i7jc`%f$HCMk
zB6{w+3Nyh@6$bCZNIA_KGws*A5ILFeAN~nw8_$9xS_sVd^Eyx2;8jD0qUS<y!QJ@)
z&<1?pqaEqhkE~+E<nJrF*G(L>{^baM!80<49~kekN!Duo#^^|f+;vx<VI%7p#?S$H
zA%5{nUE{UJz4Cr~OX-4`qe{?ZjKUlYRP$v>NBdZu<iNp`x>yU8?Ze`~ie^vTR8!SH
zr)nEGWsLO6A5KETyR1mtL3fryua}Nr8cIlGO)Tei{OIYj>$!6ik9NK_>6eB<<Dylq
zXvOfuF}y&fhWCY%DDv3BCDe&^xM)_(ls_SLkhhfJuVSOGfiAVb?F38sM+0{kfDIcq
z7hO|KhxB5v`yMK?0YbH7$jRCy4?Y)<$QQ=@D7XIK{Zbt;a7sD%EJ$qBJ>%S<puPsP
zH_t$MzkUV#kMMg7Y!T8zuUGC=KF$~@G=6%dxV`FYJpm_Y5Y?+#O_)&$t2gXFLPNg|
z!WX}BXt6uCY@1vjp$|3Xbvh@S-@g{+^L65;TjAqDS{`Y^)-OLHeSPRC{AlMXf`_RX
z(uRjS$IKNo?T7o^@fA=LXbI96G8<`Rn$oGvoS;AvmSU;uq}&xY%kqCByr-t0rXSnn
z!Y&OFkgT#dJwF^<olt!!HdU<>YEedJos8+9oF(uZ^ZCk`W~)K((iya3%@QE6874su
zD7-}ZXAw*Y^4L5vFlRH-c3?}EapG<mG!?BLc(cz%#3uJk_J8!DRxAX)yNLl0)D89L
zeT=<|89hwU57>@_a+Gqd;*GH1{UFLLW5rNuuTfora_3>3^?G3iq4cQ;3)sH6NB0<n
z`2^?1)x+I|-cFd=kN{m6<CNwUUSHrkD2jt$`rc4E><EPtL@&9WguO&0H%Ey|IS5nz
zIFH9=8TH%!HTCA`!ns`9Kh?D(=cX?&P37hzBIo@oX6}V;uj7pjg4UPO7Y93hy_;u=
z3#VP9NbiTutP~eQ)&dLb)ZJs~zbBRDK(a_cR~7YIXd9ne=!nm=8vk`pB+0CyO>-Sw
zZ^GD&w$oGOFT|lGAp$)ynF%kc3-qLln&<+R_F{nqXNPKpO)9R>{W2x9cb-qsG-g$B
zR{3N;HIFeE$ZnX{My@ZmTxcg<SA(Jfit+}a{`tIpuqw*gIAI?C&FDGle9tnZlZD*m
zx9k^9$NIv0T`2qt?{h*sc5*~QL;9o{-%b#~ZoN35F5CDYy7yf_A-uOK$OSD;fuHPN
z3Kj&Ok!Jd+%q(4aOsw6l!xt0CkO&Epo2K-+c;?_+RyQ5la#260!u}==Gjd-8`WqbE
zEudQwO2EX+g8zE3?IOYryY?U6XjJ^<;BsqWhe2T$z^waFC~gOt48d&2OUP*YoS>5)
zC<!ImY50#@mZ1a`n&Ac9S;5@8tqrtN5?aLNQ2FB_ikN8_42dZoKA^xv1W->x{XVTr
zvDD`1Y5?0tkMjVT+UAE{v4c*A=0u~AN`ZJ07fAa;7IktC**SVzfL7Iu)94H$rk5k*
z?{G9YIRQXU3KlW@;|vumEX(dr$IN=)@iPrlzDraYNG?#<u}QQ=?zm45?EEl*2tbV4
z@w~^4?$7RLL!9D(>t<t^Vx1`-M!U*{`6hTSZUNR1P?e{R@$Y;XVuMmfiC~chQ-p7g
z7X^STMo>P|fDNJn{;iuXDlA<lnpqc7bP{@!rm670bzAfYG`;w1P{FUQn2t$Of&ALg
z#w8=u#Q=DOU3l7a57sN#xD8(ND$BCk!SOz>$F0qf^3h+(rCGGLSk#sFsFcOtP4%#K
zkuP(VL7_t=7TCnG>3LK-aP7viPT_J{{OkSYn7@ZS9+RD{5Q*m`Z9*^%w@I=c#$Y`0
zOEIwabo~-1DI*s9ZFvSz+AD&~h6~OR4uo6lk?%EzXlyA!BUT@?g%SwJ*F*<a2?NCh
z(r{#P9|vi!pjo&bMvmVdlnx6Z@|FKFD)xW3rF=W*$A{cGt;$Ob-ZLhiYDJ$()p!&|
z*hs!T9!eXlc|6pJ(8fI*Oyq87oOg%zjv{&8mT$W!K}aynvElilOWRT}Bp<>;A6|Dc
zY||FxSGhR~0)Okjw8T$%_q#r0FE;L(0{^(#ewy#kOQ2#@e%Jf6dQ~_GLjdBnC{EZ(
zqIM4?4Hc6Mf|*m=uK17t5)p}r3d(2X=WkLg&S_N+Wds<~;PsJ!><4P{`*wCp*?6q-
z(a+SFpZn1mLQM!TG_qiKD8z4DR4$~pJw!0XjC>U9YdgWADWrqzYeo(2_o*3&;o9Z6
zSNwT_FsYW==sULRoSk`ZJ%*W14qZaHKIo>LdX=sS4Z~FZn`=;0H9u#;9>sCWea#^=
zWxrNRz}Y>{$=`touk?Z#Iza{&=#|p5QC+4S*W_lz_kCryqVb-8Yy|njD$}F_K#-P;
zxZ+k0{=R6aq-Cn|C;hl%vRnXO{|$!`NxcNgv@ni=nh{)G1m^&Xg=o;40~>EMr$4q-
zp${^W9+D^{+zT^OD5QuYr6nm%sJF-vKpUp)x2D%26Yw9gX4dXob2h|6LdMR}`?NZ?
zvpX1}(#%|venKi`XUbxzH|Oj*pa;)Gpx14Wj+Uv?-FQ-|%EWW4;^}tV38jhp+GN)~
z@dY=WY3TT4I{_17I%zA2rTp8iIB2Da9JXq?kjjEJJ>Ohq{r-slRjSTETjJ^;vfh7I
zlC#n+>c!au`Ve)~b3X1FsjNVvP>uleQS>7m79w!hmL2si(oWF<4rM#`T7j)1C%P)H
z)r$~ZAhdIF>-Wedj`U+I$kno@3u+q2k7gtBdMi?(S)c{c+*p~cHZ14QaDPKkueF&Y
zya}MWJy&H(M*sOE7P8mUsR;0UH@a%I7Z{B9ES^29UDzZzK1$2@<3;W%Kd&7k*n73b
z1_fculdO>F{+)eUSi$guU~=YMbYSWSy^ftX$=<0x_7Hk2od*~7@7sbkAn;<+7B+t~
zgUa>n(%qMD((FT&hXxya-onn9NTi~Sew=)AKz;^QKCBkeob34koKcN-b+bHpe~YrZ
zEWwzL4vp>>FoFss?K1KaHYRcUOYg56(juNryc6FnURYy0A6vs(Q9WRC9q3Gx2lggP
zx;4a}yT`-X6x-Ooi{u9G;NRi;e$pSFT%Hz{_DweQ%9~;97Fut@K-?D-U{DrXEPdm9
z@+N|&b3{oAofS6Mu$=p<Fqcqvyl|CJt1lwIqQc#yGmw#e8q}hABXqt860dbIu<y@s
zmvP|^D(R_%0E>@X%hu0ReE(Tm-6NwtuuvY0Z`e(2dZ0vOazLl>aCY|DeV-1_cy;?k
zJL3k0-+oF~WqZ0^^k0GX>{>Nn1c<WKnX3m*?fZLSy_cb!g@_sv=SlP&L8}gLGF?PW
zy7FE6=-G<x@@9+9VaeuJ2H~xAqY;mms|6BfM?z88^>gD<Ca=pQ0t%brJKUVJqw=Eu
zkhBr?Z&&~XG$P@rs`;J=KX-x?6Ji+8LFtn-{9<Z1pZ&c_TJSQUFtJdSHJHFdY%97O
zJFQVV@7>*o;}9L?4}HT?K-aJukWGidBQj>0t_#|!5<pIs<vZCz=POF}<)&+u4fzWo
zWk@HRFynEvs^Xc9e%(9S{p`%2c(?7^p#uN7%U~$5dqmHgW4X_dp*dqGgpqsd#&N>a
z?}sx2WV(QYY2KH&|3ojoR^U#kk?!5x+Bw-Axz;CKLrw*|?d~K=RA@8q9qbgans%71
z9%zul&<w>CUV9NZq;>fXe3Sz~#dNQEYF1H88?zhC&fh7p(Wt8mGec<e+(_^Nc}i`s
zA(`ehRh7fQ(h~__di#ZQ7@-Rm*!8dcu{}}O;$PvTUs@;qp`9+o3^+u1Y_h?ha3D+T
z3W0|l^~mx2Nn7@n*X2kt^;Ru(mkrt}?d0iO{O3xTsyJ%0>Vz*>4(T;_lAY>l<cWh+
z1w&G?^(t&uVJrIWF-CS9k=6Us!8cjqKns1rSf#IuT}Q-=ROy@Abs1WRAjGUN3LnR$
zk1ja;ik2vOYiPGO9|Tx&mqyaszuvHHbXw58U0usKY)PcF4bgUWXHRjI2TjYJa08Qq
zxb<$SY#!eLyDD!Wu6s5bykrSnkD(|T?f4^PCfH70AW*Up6h}8~K?Lfpv+{1!g`&!C
zZ2JV_0H|1sDR(Hf4qujkIr=9cc)D@!m*<XD*Zh8$GAEQTJaWrN`25tl3;2>x^#V&2
z0?N5XuRcXC5oa_b;VC1QHxjza_I9RM|I1+#BF>tBe2@7}7fTzGa>)Z}=l0J=0#%HS
z9ZZY>Hc#O%)5m#p*X*UVN}v9JdTSM%sPE5A-^Vt3i38`6kAM_6r;zKBX8;f$nGLQ8
zG?-O?=nR>okH6gQfm!K@bxd~=o?RGLCpCHaV8B2d=Csz*VJpa=w6oB=XvONl(b3<3
zZ(OYmp9lJyJ+WWr;94N$kjY-AKRSfc#J+_~vr#%omy{+Bo&h_xW<@rboMyAZUFgv@
ze@~#Yjg(+W^Vz#6kP%;GPvr7_jIASec08AtL(S4)i%RK;e*aZla+j%zgX;Gy5*g#K
z?~(SIkSWhFOr}d1Zdwz=EFRQPIr|u#JleG=*_Zz|zLHO@CLg9i&5nzZ!P393t?I+2
zrt_+LBTqCs68Sa72)jYHO{@v(hpj!x$@R-!!FL=zU@b4$G}z!QCb%zmuJJBv@y~N$
zahsGb1Mb(7)*HbPWTt+|<sllg!h^77vM7?RN(XXs#}uVN#g>L*?};ONFp^7sS_3K0
zRT3|&>kYayOmfmBwBk}v6y;=-hLgorBmIAsHvav8v&l{A4Zi#vdoiscjX9+jB@t~L
zS+u~J=MlaUJj7!J$g;0Zc#4o~zegwyIEZSzp$KLAT=Uz5TB(C;y<9RoRJ;Z&AYu;s
zi>9|E2hrOC(+JLIn^X8IMQR|VA_uw)-}MFKuS27Tqv&a|CdLIkJTZurjg1w@0tDwI
zmfHLMuy;dsCsgcn19a|*S8<HIu&_4kPP6&0Wo$KGRagFZdOu$IgNm;Y%kxyABx}_u
z4rpYQ0WN1xk4cfTg8BxSD?K1lnf?+_?9{^*63QM2jp4q)Ve_!S>6QIeY9aHtyVxTr
zLno2e)okptH4l7wx{|psb7P`aF&`Z8!+R?bCpEjN>s6MO55d)A)K2tBCtnOI{TTXy
z7;%t72hmZD$K=?EB~!4X5=WXSH2Q|_ceb+Cp(Ab!==>D+T#yO6i}e*eCxaV|$*d74
zs<Lu)Wx+Kk*SjQn%`;@Jp~+3V$s~%k6d;AS_nJ5K9Vg62mrJW!PyefhJEV`FU(M|u
zVZ}&H%%-AO5DXycwK(QT|M8V*I9LO40C@4|1lX^8Ke}=T4BHyXY6{$i(Lvn06v~X>
z$3$?jfyudj(L?jnq`w8rR!dhJjA<cdkk=fZ{A*!SAmAPU5L>&IP%xp&0D4BwoGt#&
zQ#E9opCJOLvpBB&X1+|tK7%Sh-RfrnMF3@~&)j$0EC~frt==)@9ak&&fi#1vsM~Z!
z%W@goj3cO0OM^I&BEq7Jm%aYxz5|@U*tUb8%}nCzzfleyeKO^w8059JKc;SMqL-&S
z(90%w+0W$KOL<SEiAi6bHi%%QM6=EUopR+<U_e_x&(DYcFX)5XXPxWRkw+fbRt7RH
zt4BVl?!`%~+7y7r$jV)@($X{r`46dpwa>kT!lygn#(rFhG^PEE9_MB*3#*%iK^9f>
z{~rNKR}|UETiN|Frc`8lvmaNrt)1hsaYiqqSxQ^JZ+vGe`I3Llacx$US}G_wH<``F
zy@+oW=TURrR{AJxqTY;OB7AF77o{t&2A08RePE7vMbdkz359xX_+XwRlP#yL1W}U2
zG+Aj)z*`bt>)cTmrcbEPbrqw6*bZNoLi8F@&aw=a4xEa;O?4S}6muOGom4LQ7dNU5
zmLw5-OjXrZnQs?gM<a&2iv`YE@bvf(>SKQ|>nf%(qF{1>iElXL`uwvTND*|GOswPy
znpNBIj_*rPQj~CEwbH@uhmSFx?AI3PFx}&@*q&}+B^}d%8Vsl=!v#%|P{;eU8dB6i
zCoq~~I>8<b?NrZJ^pv;k!Qq}=awXV!57iNC?BTpJd4)yOxF`SnmOs1_y*q<j0fxf)
z%9*`qx3id<flFqs74|V-`sNxf@;;^b^QFj=W1*_eGd5Yq^%^(?F|fUqn5z;(hRWc#
z1`tJw<)!>K1|0@79IpBii$4XMUdKG-pQI=&?@>(=a5<iO2$7eo-)npwflYx#^O-OI
z)a(Leo5+0jEKLB1^G27=aU@@9dOMw>TW)+W|7DnLF+YG5(@T}??&*`<9}_(aABNTM
z0C*9WuYOG+<gu7Ci|+uPplJ$_gp{4RxU%?RTDR(~+bp+EXWj;;8}p3+kb2aQpBI3<
zN;Zb;jMqyKRpl^E3&l(ijn9lhhA8iqdQMD82<Zh3z|}g61p0DR<gGkQ3Q_GxK!M8h
zkVFnY=+c3I4MDEX4>S4=xFk(u!HNA*GdAOB1zOFtWYk-utxCM^>Pg)}@=w>+>!b*e
zeV(F|Y^jTM-1H#3gNBfCKVAZz$oxXj{E+j@&8iS!XK{mLT`4LTkfP9iG%*zN`BNZ~
zyn{Nza(&NrtF-M%gM9RWpg{@@D4f2T^$zFr^kNJF_2S89kFpXRU-5AbQ|5WIs(s4Q
z9%7bU2vmaO2?ZykB4Lmg`@9o`^>3dzO>8{}uE}X;002;&m7;5K&o5Vg*Jb0JPc)ka
zIYi~XZ5_S!_KNN0qm_>HY6BWtaY6<`uie>T=?NvgM4~|YOYrlien|Hzi9A~1PSvJE
zjY#h$?-~j7uA1h6u>B2~Pk};5WO0_F{gV<M(EzQjRFN9l%l*e^19cQ5ZK`eVp^K95
z@wd`axlmb6jCD$Wrob)7U0QODj<`gm#)TH;$FY`9tyg~{RzsP#A4cCX!l&5Sf;YPk
zpk0)=R6JQ&stTY<p22RQj}(OrvwE@@0^t4=sfpE|nUxqya&8;R_4Z*J)B98(>+BSG
z8n~Vmu2?pNOSiXL!tzl0j2J7G%wNeu=K+&1!FaU8@9@{iZQc!D^!2JT5Hx8!u=GvH
zhUGrR!2Mh1Z;wQnOdl-Ajn1@ZqqXt|VwOg!?F<+(0leGht*l8Ufix2xhm`oA?@71;
zIrp6|S3xWtHcd8MJb@>EV!3<&#&KL(Z04O$U@`94+~zhld}JEvCNo?+s~W8eL__l!
zAzjm@#v-(7)}nDv@&A2;{DyJ_pIJm0$>q;6L9bXuQASqv@1VK}fw=3&7xLwmK;#kp
z5(xceZCiWVQ5n_l_h_Qpu~`~*iNo9X(AgpeQnqfvu#wg94}0Oe1T}4ujC9PpTa<%4
z2M;<4+DspJ@~&|b*s_40S6jd)=bB@b9=?*u^+av9KKz;PFR0`}?R07eXD38%WdS-k
zmU~e%8fzGcM)Rbfm7~870Wmf-43+HQ6She18IM4ld^1G~zgLQRr{@z&EK$$Y?D4EF
zCjw_vBngJQJC&V}b4UA>KgH2aVQkLWbF=aE<x)%K{JzFihAkjq1&k~s=ie5|3j?kX
zR$@|bPMV((#@;zg{$p|9CoB_kmq}J24B<Y;L4K8s0@Zx4l?PZdxU2@a5s8&iGRooi
z8r+eoxydXuOKyIGBNAVRjl-kP#!?1=m7NbKfy%3xVIumdQvsvskSCSO8W+0yN(>aW
z7qjp21NoW}pX6Ho#OmgQ3AGeQ7Lb;2t;X*Nd^KJI$haJa6}he8+ZMbxOZgPu#CMsS
z6V@&HD!4(%cQOe@f|csWf+MU{k}{c~*zE<`kTc+&a?p2VHCux3J1F2<Q+@No&Ku5z
z%)w65L)msqMa`;JrMpPagRwCcTZB9<<GgpibU_tOsC=N#I;WMZlM{b*&C=XbbWY!d
zwid6z^x3o)m6tGKc?Cm&4fQE(pnM=}C2bAzvh@FdTgTvupI&P3#OpFWTS&18{(ls-
z#_r6xGfSygVHZjP{v_}S)x?G>k3~~$$oYF#^5ji4Q}k#SC`uh5kHve)%UQG}T<-L_
zOe+c?Gf3%NOz{&DX0gzB1O0v`PTo;kHdGMr<m#j#{p9(pj;NOaHy?s@TlKdNuO$v>
zffVFYzKky-5Q0hAA>^rbCsJkTo|Cd;2!=fQ;~jthyJ|B;I?j#fsAHN&IDwGSr!7;M
z-qXbNAZ(KuagUF`^yQZb09|1CvL3B0(XN%47v>Yxe~?2qsL53eg>Z&J2hVJ(WPXgK
zq$>Br+am8dL>)P1IRwwt;Yo_N`HVYL2?ZAi8Kl(8?H{a&%&z~zp^be{SCr$Iud>8o
z=D3xRdAAB`57^9JTiz;KT?D*6M&TF6UWm)U<F3?yRG27z?CY{XhB{1;#E0WEa18e<
zHx%^zWVa8)ttElPZdBE7E1+(V&{bAl?5B#CT=6PLek{~d6zxjyB1Wu@U6^sroSl$j
z^-+GYwNY&Skdy9%D>e|Ph8R^+9A|j`>k4iX4u<v|mNf~0*Ml@JT*j{DS{k3QWww{2
zA(qB7n2@jvStd5f^e|;t5hlG&ls@jwR1`bMpHm7u!3fKC0&hV^N+vS3f(}OCTn_vw
zTr{uJ8p=PLgKAE`XOD?yUb{$3n?upjaEHwxVAtYD|Ii;t(52ZGqgm4Ui-FG3z5yK|
zo^EPN+|Ao<-fFpA+Z<3XBQK;oyGZ>~zkESm=qjGlp#C26<P?sMWH3pkOFt|cQJ5t@
ztO?EwK7L$86X&G!m=uJ?+*;svXSST0VVbous}JX&7F=&pA!u?lLP`=bBi{{WRA>zl
z*K?x}7q-44@goat?T}Zp-4&BvSDLBqw;WthBr^`5!0$1UN{%lo6*IV*bD)s@@SU-o
zn3pt~I?s@RPz2};tRB*Zj2BSEpiKzd->*@7iOEerh>`GkG_JK3<&L3Lkfap)a8nVU
zp{d}y<evAn?hdmkK&e4)|IH242^X~7t6le*-*txQ5w64pL>!&VuUd`jVA<Q@>TlOh
zTW!u*gTti(5yadA^k^6L+g>B+?u9z}f*jr)KeB8Dl)n0?v_(v}br*+T)A9RpAOOEo
zhGqHLt?=b<FeNzRF1rn15%m#|#J8aEo>^LS6n`&=q(8#(9LYs+hnuv$QAU<+nTC$|
z2KM!F_(gF2e%4>JH}m-_HFcElUgjvWBb9%6%uM7Wf-1=C!uSDglf9p@O00rbJfhPu
z2W_3Tu!mwFv?Ws6;omm#j?iRa(i2DbJW;znQ@@)@t9azhCY-#p<tI2=&kYToyCDxX
zR!=25+umxSj_P1%+sCzBpX=ZvKAI*`LY#xZx8!#A%FAZ&)fF?;1SwJi;1fItx?heH
z_`N3b8tXZsz<PGF3{_UMpr+^lj`ttW3<dE0P8_9TWwha~?w|naA6Jp?75O5mS=-kN
z@zOW!vzKjV{7lifoR06{Hspn=fP4-B$}4#oB&0mFo%W#YdlvpZ&=g<QIcS`j8}eTU
z@@Qs#P{>3GY<uOL=fKUi{*w5ZpLJa{i|_MR9XvV1ZIZreUp3#nnZ~L$OQO1nRp5*a
z;&eetYa8OJV5_2X3P$U)p~~j1$%AycC57yb?Dx$Z1`2FR2&y9z_DHLM)9-EMHTOIs
z1GD#B&RN*p_%L4#KA{t|5@{`XeG`L`PtA&cj1{SBwmNI-BlsUBO9i}Pu%RXu`RzPJ
zm3|(*LecN+fB(r%vznZodbVi`Tqj(@w)Kz+F~kh!GKD~)Z(H#q>})H4m~-4%p|@v!
zzG;oU=Lz%^3>OLMtQv>P8&1|%NzNM3oLB7Ge!2kx&^_e;dt0r-#RtH@rhB1nrN%6e
zo>H+3hO^(k?2$R=+1j+)wG!G{9Sl(W$Y~~cGnDayr5Q@%<lC6sk0!#^gRL;KD7tDq
zZ3T5HUzcv%S75C;S67(Ka!>>F(&Z|8{TRTpXOQCj2u0On-@8q0yKuh(3aVVH^~1^~
z12cU+xw2L$f^aYbPEts^yB*kq!12pFvV()6(ZlJiT1M5)K|$QQmjl0LkJexVbxw`B
z1T2Pb(_l0Sa{>u7o%_nWIyArKZF@Wu@!MY*@;dyQp0bB_nKi}gRy?lPUMc=zX8lKy
zcJ~SaICmiVd^Yaib-nm@&^sPdW#WMc1saJnn6$zAL8pB&D#NCMDnC<6>X88s8_C`V
z2^Ww2IkMOT+#I!Uzp`|h9c2vo6L~W|O~?|#Ew)8jlVDJTfJAUfUaH9)&2>(gHMcrM
z%qN?9qGKA)z<-C)om{pFOS~%06NZ?wszY`&lFTa|bEL`??BP4<JedOMg5>~AKdcj4
zCZ=^Rb`$0pD09HDN@IKtHo<iz2p!Vf5ubD{^8Ui`>f);5!=MoT?KFZsKtA%tk18B6
zW@8uu^#%YYNt<WgkR~a|4^%GPVZg9v$?B`OrwM3YO3vE+uKbkwQchScMRr>^5lIs7
z!~OXAPZrgT#bv(whAZ&xj<|>q%ew>~hmDG^=X}y80BJf_CT#2hd4Pd@t&-fvFZKb<
z2r`og;C}z&=F(EGRT1s5@Lqw!?73%(fCipJ+87X=XcNs!4C_p<L|bFBI4&Au<@LD1
zW;gRJ`27)RjsqN=(YzVFOk$LvaYTaw+$GmpRaHP+6Ddr5p0`vH>Wbj=%PxpDI5wOu
z5UxFn@Z_HIqFp9VkPGO;wCj4&6DeC#tP}b6BCBChsR>2wC{=l3ESOY(dXov+Qw1*Y
z81r_o!Vp60;FA(Qj3i^_Ikx_L0exk;y=DL4xlZfN8En!2v6!o-!XF~}y=xe8Z$(*E
zLXu`pwA{_gCgAOM_}5lM3hpgP%122~@9{aJ4A#xc7OXfR<tlt-qN%+Y+W{gPvhC8~
z_7ab4phq!Tw5{9mqAxqVLixj--e7O(%b;*AZRU@49f~C>N)1@3++D#nB&2LL+Vcp)
z%EJYrX+g0MwJPA!<JQ<;P+hq7kK&6sa$}@MdHR%-HQf?>-F-dyv8+GF$_==JzLTzg
zfSvazByPTW(?4H*I~a=hOW3gjZws_}oQYAhzUb4YbcBc7#tHD7<v`o*7^pnIh2D|B
zs-Yqw&+tlmNYX$<X*qa7Typ_^90Y#BsR?5GrJKXM`v&;jB66l5Lz*>Fy?TyX>J3B<
zL&>N_w0wLm-UWA$G0a`aH&@bAZ|FFbf0^HTgaJ}-L~0K}{8eV8|G24Os%dv=ij#Yx
z9IQnC8EGmN{}+ekO)}a<8#~~K?t4wQDgKAlfdvbS6cZP&l-%!?s`uolYj!54`?sbZ
zR}k0fdBU>#{~q=X|IAL1bUJ((zl>iy6NV%>Q)F_u)659`_gjcRnyR+`-jJ6Jx|J_|
zrREuYi3hq#GUhowJ41gP(*K$}G~yC%LKgLSgSoCNtZ>1giY9(Xo<y49y6NWh$i|?H
zqI4%;8qLpj?Rb~Y`IEK#r^8jAXrKu$@GIBV3iW%B&ZTBa{TQFXT5mE`V#YcqSK8CY
zDxRn^<)A(!^r=D<V8rPqbz><Y%8%*=4dzRtZ2e(txJZ5nIB2zB_Ek4v(}wyq4Q^wy
z{<;oukuRm7NM(6i8|uu>U^`@5qS<ca5zq}tUN?yL@Ja@8?jO2gjpJTUWXGFU%vwL=
z(o3eYVrOO&aYMtyFQCBe=>aaEy%tH#YQ*>ULpWL0lE9?}(|oYYd8)6t*a8~oFoY{Z
zXEdM6foBu@R1aOEV0@d~-d!7V)_a=5-cSF?479Yr|07oG-7gLMSNP=i*;-9(iupWU
zgx9jG*GzpwgNri&$Wv^_@{n*rw_t64V~W~W_oak#sQrNQnNmkm4ojKQ@o?Jek*qVe
z1eB0g$WsEyaN{MjwVhwXQ_WFE+}YV$c&(I8S=hNZ7PAc=6)%#9|D*>SS+U^Ag1qa?
z^Hjz?8J!iMGyoeaVt+yMHii@vwv<X0L(2*I(5szz!Vb@P*9HS<fRL@s8|z+xJ8kj7
zPx#J<e56VrlRPmEk_hf^qMh}usHEW?2q*@<@GW1&+`^Y)O@E6hd$yjA1#XG7jS;Ah
zOM$*gKak(4NK?h-a`%w?iTce|I=(izrdkK}doj7>vNOCqTz>+rJB+iJsaK>_3gnu?
zOHrOnbOb_vXbs5`dmF_=r2SkfDg#$XU2M=nH$1U36SJ3#^c;6Mjd@s*hpm3NG*?a?
zat&6I!>h&r5Co54Nc))gyai~hA#Vv-?_eN0p-V$(k>MfV=bKs#gx!>WPg?dd1E;x;
zmvTC8l(0RMbdUq35(c3y7oH{Ut2YyJjt0|+K3{!(RpcVA0i%hF#Y`TYqOdxskHV24
zKC84jU6RjtrDvW43GS?*f{sTB_DRjf=<LHqWTk2A+QYRvs?l52;O;9WpjB{z7rf9{
zpKQMMCGiX`i8<;_SD|HsWD(I8NEfk7;bH&_>Dlw7&hfv4lfl?&I3ky5%HO)F>6EyN
zaV(8Ib6b8>ZtWz6)WXQIlpRho0H3xfuttPioFx5D@RUSu;{JGR>6c$`Pttti=;e7=
zcL#Q+QwAxZv7x5t?_mLGfr<R3CQta}Q!4}_Rw}y1clcr^h20o9U0<^eX@Bcd&+Foh
zgFf?`Cp~U#3_t(?3L62a1pq||Zvb|$J>-1yDyAOM6QF|c0niLw#An>rTXnUCD8&lE
z+-2vs19O={^7I`m(L9lK);fp-_`5cFX&W%br~|wJNc&rD+;>JPmnXC@>($Tm^0EcW
z;#6P*oaPJFuL|LI{9|r8S9zdEtN+?AE984?%m1QCVd2S^#k$en9Hw+SBPONZI~d+6
z{L1s@ly;HT5gnnR{x$|Ikej%W<$P~7p#Sz*N(QqL8PUQf+=wdQB!2dZJ)o=W9p>~E
zP~MM)@mfrD9jl}^@4fmz)zd>5h#sQp`U1Ve-l=&hP-;&2Re%*~x{LlKB_r5w8`(!|
ze}AvNf2BrW+Tr$RA+juek(L7!%9cOPGtk4j+}95x>)9HY!-(z*e1{4767<1mZoI8A
z9e=v5n4&=7f&A^<61&Z5bzq}bxiGcFmiwTkK)QMhZio6`C_XPCOy!*a*?AB;p{0E4
z=<(yQ_N&S_Cp_u45^<dL`vn$GRBw!!TJ06|K<}zMx8*p;I-L9co?$R=q=~=)BEw@+
zszmyM)rjYfV?r&^7SBvd2EuzO<xQgkIz-pPjS)af2`9r#c9Sg*DTURCYk?*6UU<Cp
zI33^k)){A4S`myQ#oJX$18+bmt*m>!{+PgbWu_0G?viusTN>l>Vii;`TPsHG%Oygy
z0AJ_4`@!`+YZ_|?xKRwj#n2m7YEoTLAT#TzE3hB0W2g=#UgwYw-0w2=LGuHTuJD0j
zd`oZOTDK%&GZ~OCa!uKZ^sm_PP{s7uPu|rsb4X({c~Yi(>~(Jic!A_Z($Y?ri1)Ty
zAwXyzpS3EM02+^8B0LXSj5sF~d+ihObxRc63D>jl`=xTJkiC)!z?#j;lM_^^R==}{
zHZ*&$mxBLM#`QT&$b|xdb{)yqA|8xOhsG(l^NkU53L`ZvrT_n|v#+6uj&9duM03~n
zjf?^?8-85g$hMFfwyUkc9>!5=SgQ=VHt|+_Q~0o^UN0JOrp_zAmZhSr`b)uiXtD5^
zpACW|FRKRFd3fq?TJRNBKb{SX-}z6NC9P|zkceV%#=Q2WZ^zTG{C=IAN9m-<<Gc{9
zVIc4tia2zi&iX?J@vn|4l#1$Y#0)WUxn2{!4b{-Ox?;}r>Q<`OBs7s;)Le+v;*+Zd
zauZU1X1($=*nYH^7Br&M`g?&<-jmi5&r4UI>G=RNK+M0Y4sh?(b$9v>aS8(x%4ISm
zE11ImV;CwWLhHP|yxq6x-Q>v?2jYQ^A&yF*uzyJ<Y^2dR`+g=f9ZFrM_TTJ$GU+Xm
zaIzvAj+SF)C+520HwNPw^vxOA4iEyXrY?cdxHUxG8FBIn_4IFG@DsVb_g3AuLD(A@
z+54xl(@nDs(VFA?xu}nkQ&!Ewwd<H=`JXOQye>Eg=v(m3{2>78e@YWwA7o)F|NMC~
zAGl>}{yN(q{Tl(N-NkbPKvA<MBPsW5ZDP4Lg`0C2o!4`=5ND)}!-tL@c^~IUdTQR@
zm?uH%46vzjArA`H8`I%z{CVUFp$h!I=k#=5Br=vExPP}w%l|d%39ZGwwu(^pV!7Uq
z*M8Bx7oA*z9YDFuUJZh>pJvo;e?7|G1%BtkU`MWF<tc07pq4J8AxkyBJ?_%C{<ii7
z6v9gIxP2n2fm#@|#j9>z_!;ze2wmTsrVOxNb*ad&iJgL!F6w2iGaKpbw*wQ4tgGK>
z0P(Rp{#n3J;#~UF|0Rf$!vmgb0Jph6NH3FonV)HBGQ$jXIoyl!9HQu6HV-|)Frb`D
zPc>jb75?Q-(4zb-3L%#9U^QYvF(~S53t|Cv-j5u9xL-&eH*RS<FIE<Xp-@eHBU@RF
zZ|G{jeaBkEkmz;)O*>d^4ibsuWB!hx7qTfxPrgJt2jzLb1RrM_QFs+2PL?_|`eGi@
zsH(4*oxr)J*0T<^lH4DpV6c)GJOHZP%QZ`(-~@bjNb~ypnG_cEBvSsEf2gs}Ljj7G
zlEB6J?5e9gy=6ydL0U65Que+tITV`gEfU)69sZBMt#+MhoA~zh6)&^8EWYpY9xTuo
z5O*7Swbq|D6^4KRP#!dhdyXh$GTww5Apk6SO%KWFgZK@^19T&6f?d0hAKelCiYNf3
zi46l!-3->M0~Zp>PBOrUhx#NC!<PqgE|JyP#0@S>q&rKhf7lqd&2S7Uj=1f5@T+90
zpac|Nx%nJ|wDE|<K>zMQG4ZF*Y2Ns;|JKEgn`Z+o`jZgw`I0oF1u6J}y4F?*VV=KL
z?(*lxr>xP%95hOC9%slOND&BZQ`N6I*!NAhO=4Q?iXCP5@;M}9-ld*EkL+oi)Gl|+
zVRDdrtN0Q?r6wsz(o(%@@4<*MIkPa0OT|5wwjuLGdPsoyo#D9RSFaM-i<WR{?_^i^
z_G@JfInB=Dy*MfTxs;vOT|>u|{&c^Wpa(s5*hph`&7~V<gs_T)Z6GX?Ja?pzIiXQO
zIW<D7_HXM4bjIHSeqckB2_A*0pA~&^@P5^h-I>)SESw9vexb_u==S7VQlp0Eb8rxY
zJKO+NIgm!RKy!*1s9-FeWW%%$93|>-3Y$@1I?l9u)Pj#UmNaZa=>!F^yM74w$06qT
z|F(GM3+!iIb8{zVLg!c2-TO*VT<iKxetk~h{@W7fLLU`=%^6O??<EZ%6Z^W@la$}L
zb~5GT)$UF(P(O*>0oOo8hCel$lw{%<;R>W?4k~8rlS#wL$}xBN@|xA5Lx^hh>dBOm
z>{OzvviLkSfu?MZMXbfkpDHr8J3C-X#~wPD&9ua5G^z+|7Gm)F)c3&)#$X8-H&aGm
z@B(X!MV}N9)|&yz#B)CRnOGr^pg3Xd*$zA<+C`#7z^2jrEB_^YpdnXwKpV>$ztM_(
zIj_Hl$<Lq1m>YydFVJWo8&R<_6I|jK$<!UBb}rgjYREq<dze<$S5Ps-S)QTpyuKid
zMAwDGi!sh_5_Tc3rRLX+NALA=Zzosw(EZ~Qgbkc+K=XQx%?-6o6sd`V!x_J(wmG|D
zf4XmbDR>JW#eB!P<PFiDanS#!;|p~2dxU$Dff<AH6@FHx<t4|}{x91tm$CDBaCG!1
zvjmm@#66kz<cnMW1?tsul;IK06Q#XBqZ4lbKBVT9SGx57rFN?)Nx>V@Jr*j+r=elv
za-)}Zop+0)V0av(U8qH^)})RP8<kqZP(p9{jc0u0!*JS~g1G~KC<@SO?qezgs&YB0
zlhKjClsJhQNst=5Q+{WIS23&Xl8yC;gKfqiO=)!+g+TUSZ0Z<_lgr9d8w;M22M3$P
z%O!a=iKnTKct7gXF>9|RB&{}`cEj$0$Y8i1jaF#~q75w-_Wvj@Qo@0Y2{iCSlqKva
zCiQK^w_vUr<>q3kt(ob0fmx>r9GsT~FP6))hN4!U-qNPeWnyqvWKK-)00CH<);Axf
zB4}=B1iSzMdvPJ)6ahd%ALr5)r>M=zNbD6Y;|+vsBHEmHXXM5#8CO8pdMe)pfiD<}
z;3iqr#1S>abN^29TY6}s+<f7do<vp@n;QX?8$54(j9s+n?ii~UQ`rt-)nO;y3ZIQR
zN~NPE<(FiR@poPwsYF<2131uZr-AtKxS7@Lw1gQGOsqE&-loQAZf#+(V5Qy5pZ(_i
zkn)haL#hi)eSdg7Q~e>E+k^3XIRCk@RROC3_W7B#@w@OsRZ<;Q%{0~g<O<z+v+Fe%
zL6s(EAXyn~@$&sS>9&`WK7DMRq{#P*CE&=y^zUmVfSmDk!!#ti`x2d`Dc%vP6i}5p
zH#VfUB7<wBedOL)MkY#>Vd+`_X{!JY^3dz8D3Ol@=4pk|oWUm0AjM(shDdBzR+Djr
zHDOp{Q$FY%mlHPYd6(T~=IviDW0d+*buj}c+dXz_h($>e_in}KcSqXUAz#EaALvA^
z8A6v?83-g&)-~4j&jTTC6vYA{d>V7xbtxvt^5{<(Xcu=>aHdx$Y;ipN@F$`k=?h9b
z(7Ul^{uw&tI*r?2I^W<aOT)QmF)lLj=q8(B;w|QPU~Q0E&pc)I{P9|;^~tpCheS(!
znx7k(?6Fuz4Ak98rv@2iHuhW}Af|m7M6ehP>>c?UwA?{RaZ5*B41{?4PeXdv+Hxlt
zPU#ziR@!S~t6(hqXXjKS7jYR)3|v8*co<1<P?@8h!29LT_g!h3v>9$#%96%<oEt`W
zJJ5IpQ`ZB8^WEN7Xi_+HoNb?NHTD3--&c~!-!1`c$t#J+lsYvJ;VJ#yE03e5geH>U
zVc|i6q>zru1Uxp22;z#0@e8V|#%W_!_4935oPVd=7u5U#A8qDGNhSpet&&T<0Zqgk
z)-fNPSBn>WD>nQ5&U%dy${kzgv}feF7%6Ma1WGCejI5r)M=+_nG+y#(M&UhzBgFqi
zy9eN&TNYgI-bYU%(NZx@;v6ygy?@K{os|VLhy>vO-o2p)yzD?#XuZ(ek!`{p?FsV2
z+Un%~UK~-qx6P00pRuRt^~!B#CXzbIUR<j<-n={Y0)0Nn2~YPVys+INGmp^Qx7J_Q
z4uF&On)il@3hmeLHMopl$JoM7ig_30;^_gv$w^6;z7eh&$pmGYbO&hzW)&L%FD$Uz
zmRL@cyu;eAYIf76+5~vX+XD?9SUDb!!<^ov7x4r;y}g%QgjtVoH#Jc6NzuL(e->P6
zx|+h&W*^ZKP=})<RS&2l9l6o&u!{d$*_(~oPemKL`W_32nl7JE*NtOMg80#}i`#70
zNz1yL4xYH|lMk@P+iomRlZe`rQ~!lK9S5A2eGvxpwK*Xbk<WL;Zsc{BA=E#Su<owT
zzG9jpH+h0d1AB7e^aY!oa!-=~{)L&In^lSSvg`~el~UeEj)8r+cS7k$C0PRvTeSwq
zsJ;0%cbtca+F|PC=P39;(45Ys^l}$*v_^OPsW(S4kJM^GpKEyapO0(^%YK2`+(4f3
z$`O@K=*mTyjF~;5#s8ad!svJ>KCNF4nIAYbhVa&#Z-9t)&=1ZnXz_T6FcAN2$XtB}
z9l)V!<<FXTc0WG}7f=Tl84{PG1QK(fKg!0pei~M6y?J7^mn8=+c(IG}bmT3XjCEU~
zbL?{DX1(2te*3KC=fxMiUA5Sj*xe~&?v%@UY-)vh_Z2NRu>1FcPX6HZ4HgZqL!t)>
zcnFEWW#_5s_7Y1wALmX#v4CA{iVexXi~O2YGW+@yywRf`0=0m@y~;cyt0{QI;6XCy
z*H-P#M>}wx%XtLOk4e52zu$_sRfoZBOqbI1LrIF$YbA#5c}aE13D!wZyq1MAKPw`g
zw|-B{ZovOcn3dvTyNV9Njy}Ey_cPm01R2_$my)^yR+;LKacx_FV9;q}R`c!X*uXu@
zb;~1UT|1t{T?;GM44hB3j=8CCj7t~uNC-sSvARQ2#deMpf)=`Oyx}r$7DI1zl3695
z+hZ0t8Vd)|h1HdgMut7}PqFBH>>l9u47AJ!L+D;k!JF%3&G}f9mfha3Eb2gFYKMPq
zYd4x6(@OzYaE&A`Z9v=uq+`24>rI@;`G$yZ$(3B3B0}W}S@%vws0*4PMM$ErDF?p}
zJ5EWtkUE$N9H5fLA4>bah5ARr^v1jtUXg^P33rvyfG%?%1^nI&Qc{z8*#rfdP7X(s
zO(6wwGj&*HPg`H-`1GuFPJZRHc_$BV&DLmRQS?}zG)rcTi2cGySriX`607N83*CO|
zBq0jfW@Pz5o3W1bS_gWR*g@yVep*Jbnrux*+o#mIMH20nS8mZ^Nyj3%I+*042^3YP
z%Z?Au5d9%&6%CFJg__uR>2d~(z*Qcnd}u%O?|Fl~Wv1=x^|9d>#uhcVR*A&zU>rXH
z@H2Ie0#cU+R0On9^iCh~H2ZaW_viPzNMMiVuL4w{KOAD(k**(7Q_2IJ3tM|gsTq5B
z)f?U(EsvS=*4I$S8RqU(K<v0{)S1$~2<Z7E(s>DTR1R=1dddDh#Rh$jMoRGrmBCf{
zVO9jRv>|XiG&SteJ9VIHKV8*#&Xh$Z-!44qj#icDRZt2v!45Pj%3jE5zpVFIPj?MA
z0{Q5V-|H$*lMC<7Jtl6bwLCz!S{9xps@OO{Lsc$fuB?@gMa6q>yMElh&cg_`se75s
z10q3W%bDs)YozI|ZdyrB`IWI%<)KtS@m%&0Y&_~2#%iZ$S2^*6^LWobRT+z4or~9z
zB&(+4`y=*lpk5`%AtAJ8!<?1IU<5A}$>3fkk*hH3T7YC%@*yv4%K_u7JYV*7oUxBe
zE=velJD$0>6^nKfBF`OghsDhPqikNTWS)$*(~C%&^Ccvsk?>U*g{Wf+V&C}Krb0av
z87?G!;fwOG=_6R5o&@Hjx6O%bBlpzTG8T)k)QEG>%_DR^UyC)K7ocuIU4L*L_oA*%
z*#@I5Y*n8cw<(o_dXQ9?)%Qzb6G!Zh@z5w#hSCs*NA!-GWcmm(k107@dd2}+*|a}n
z40YC8FBXpP#C#H8NAOaGD^6!Z-csv!x)3r3+d7f2`#VhI@97l7kiPz3lOV}BT_auR
zqz0=4Ma_+|r%(;#!KOlS!rpOX<2exzx^<vUsaYISDi~LLh(BG=fJN5=M>L-)sEiA)
z`_(GHc$RQCR(py!b*s4c*^M5owUulpEC|o#V%+^Du4dYN9Z)OUsEgr-8bQGAqt7SW
zBKalp3E6^~QBl)ba#prWUqp^UH^4Nq@(;E<Kc0^^x&ZT#B8pX`X*63o$9)P*O^~-%
z_6-b*mQD@bH#fwRI2u9$#$YvgCVbH-4a-RMDeVYDjMCNL6VT~4?O8^&0PrpWn)PZy
zv0}EA+@S(c8-IU3)jRvbxy;@Hz#B9W_qIN9?#lDt4GzdaoO8REjo7E(#j7IoL*{~6
zd8Zzg|L1!@)LG+uT!Q(2@^ReDh1nv1lSOov3oNa28DqVKX8ymgs3SUzRB~@ckSFu_
z6vy5VPdr#UPOWEn!u(XMUGLErlgu7}RNBO}tU`AXM8aW_O_xjl$02X_Ttv?4xpcV)
z{QmgTrVRjXTq7NI^|FtI=M#ay?pH3Q3fkn-X4eYuuU*xPJgpzjtp&X^jH`<YbsEw9
z5qo84CDtc9I3tE~pTV|F%=s1&qutR~qFz&o+f{*QwP`N^W4#_eTVT@lnqF0e-Pt23
z<AS|kXdbTI1{y$GKT>$>=_xG~!2Y(C{w0uZBJ=3M-k*}S_Af_#CYK_rAiV#?UboS&
z6E)1Y7K!Yn7{Hl6U!FX^=nA_65*gKUN7TkRftaGDV@xV$?zilXfx~WpE0qN@lKyGF
z0;UgX8;ERTtHqC6DEf5f2wDFK^k|g;9haz0=t?Y)v66D<BaQOMmUC3pk$7!>(1Zsi
zQ<cvpxo<i801k3k_vJkQxC<?eoypjv1LFYtYg+$pUtRLW2)|6(lVaVDMISl;bi*8Q
zUzRNkn}jkaK<d;UHNL0)tx8OmYN%6rTgUhDNc;mIo*v+*9+}q1eS`XMEg_FUHP?b|
zbdTe-5jsseFob@N@xgIcA@0o*`_&)w;RLHMJ1yv_6mdQ~1!`iPp6RUU@R>SwS^(F$
zjm?aMI;CoR(FIcu)>OF%-hFvkLS*oB?K8D*MXAsT_Q0Or=S22W_KD0|8;XO-M*^34
zl>PA;71NCYa<WtetkzQ#J{*L1sZ;!pb7d&114sndwQMgDF8lcm2Yo+=I*!IZMI$7*
z(Dkn`w2UOl&~ZP2)%4tyx~QyM+qe2X!i8vpl~F`_5ux)dF=g^jkN@$S5N6mGyn)Ap
zJG(~Tih)?VUa8NF0v@Ekk+W8J<-AFBrly*4m;gk)-_&-`%;+Q2&d5e+G93NWFLYK$
z+#lBhvMS$A#eU|^crNEn9}j1fo-7V_f`D=MK32xMrdqD~p#UVO@>C52s!Lo@>@GBE
z;<iSB=)K;;doqshEZEiNr?Zcug*NMpX-}7UDBnXUDA^)!lS?VfW}4Ve(-~_@{e)Sa
zgbN`P5}noyQ{|t1=Dx|vqNCRk6N9QxNncTPpM%1*^n!h&1RZwxK^m#w^=SWSIoay9
z@jxBdTfIRewd4$L{<sF^3Fj<cyu9GFDaRRQd$RvxR*z=msQ4RahhZ9N{jI`RuN#?~
zL`dyBe*cZ~NM8}d!Oc7`U^BaLw=C&b6okZE+al+h;Hlw&j=iNU8qt%ch>fH9l7CcY
z#xa?MW@iHuoA|j4S7^}VWCpsvd_54fLzN9L0Azq8P~K}=M6$S<bgGQ#K23yfowQe~
z8|oJ`cNdBAR}{RkhbIjHzO>98RNM5u1q*O&4`&fR990rYe-w<lLY3j}vljOy4`q}@
zWkH+2>@nD16!#bCnm*~OzQ;z(rmsA|p`I3cJ@3?Cv_%8~<Tl-OSbsPK2cHF|9ntvU
z%6{>dEN0SIwMse(aFZY?WfdpB%FcS!G%9CWY6#F?<qe@g_EAHLH7>Sl2_Wm`!@hj4
zg$|q3mu+qDWqG3p@&yCYQH!J>(D|SiW6_%a&4lX&SfpmlaFyAdW&)9bRnh#u`VXb#
z@&tnc)0o*32g6ZB8Te~ceGoLH-cPe<EE&KG4C%2|C3)pFTC@j?+NtznfShnyFCm`d
zq$Qp`^0^{}zLzA(4=pFXZAga*LU*!o4>Kv4V){o0T8)%77E}<p#(|0Dmw+3@^8-@6
zTd&T-iY^+Usi5suL+N+81R@sSG|KEYC`ltjK8&0DN+cCvECz`&FziFQBaIxmxWFJj
znCdk0Mb~C_%Kt7NL^)ZGHaZamf8qf>PzAm(po2!O($yYQBS&oQ71((%p^F)M;AYs|
z`{m<C6~^;cWDO!#=6L(~VK%zu3&5teGwkf;4Ana)i|^;2pg>+0l_fq3G8LuY6x&9{
zqodJH^*%FgQeL$tUW0e9M60$Cg@;Cv?9|f7<q}ZXU)VM-S3{mr|4Wy?`lpD$Nqjiq
zo(2nkthF`0qxQ%(1&SZ4THU1E@-A;zX>4#EGNRi59;f*+dc*Q}O-zu+rAAk~NlJbb
zXwrf#JGHT-#-&%G_0ONFPGIDu8<?&8lW1@X{Yz7&o<+#PsPE<Yofn<)t(lCe?Xvr{
zzL6#>Sa6=h)aHf7)@ZD`=~YR(F5ex<5>!8ax~42>O!0WRTp2!cZya~EDcIotc<<7$
z&7uy)oDc>s%^Pn>@_x>U0;a3L+Kzs3wURd|tP<iGOJ62XN9PdNRQGPO`tZmr$BQpr
z>z$;HS#elEGWmJ~e&E60Cby%UZXXj`&W^<7_ej<465KVRwvPVFA|qQc+6laa@MT%v
z<fQl!GG2bMhh4aO+1%)|yG<<#ulK9{5KjD9PC5MDk4=qGKt9LJt2k8GpjXDf?{~Q;
zh_Sb7dQ(yw6TjMNbjq5!x+sjAcN$qWAlQUqqGb-E2+Dly^am@#Z@F0_iY=po5_IyF
zz`Zb#ra<Zb1Jp5s(X4BmCx+WnJ2pL>BwS?|u_to?vUA`B@LE54X-%N4gmaB$4TLyd
z0%SgY27J#i?Co42cfbkA<u*-|olnEtWB>!M1Vn3*m+d3-v!XF;;nW3EG|)eYxTFUh
zA~xq6by=bv6-#%y$=DZ=wXk>bRadD4hujt0slNnmcL}L@TFYnA4(Lv~f=l&Qo>j#a
z$!C|+bykg!h0FZbprRoN?ldfBzIZq~@hxYqsvv|<7T5HaIuaxFcn>x8W?4-Jf2eV@
zP+Ysg-ZiP$ilO`J+QWIxy$)V^OA>#k-RZoIKOesxSs|a=ulPCyDeL9J34JKiU)e23
z6S|?+Taw3QBB=^D0VW9-D+C)CUl`1<*ARy)$8sM~mOC`yezXJ;%A$qm;&jSMyZnr5
zw=$T*&evu{xt@IotkKVM)TfqJ!OK#_`q3T&Tb&D1f7HxRi80a1$)Whln?f6l+dZ=k
zrU^$>7o&v!TRf6>-Z}dyfcRXit)~9u7IUFeK?fIHATUioZC)nJGVBS-u?&ZpA=hbL
zX5vykhXNE2)0w}Punv?SbShEFZn?Ju?jy^yb7PFeQ5CaOw<--;I+_}fPG$1p#w_=d
z5o0IhbuRH9Q~M8{<${cIby{3sJH-K3Z-k>|_(H6g<_Il-IA?Mlwu><7z0SVy<MDme
zFO>&nma#<l`>_JW^t@<{dKdW62{_Wp_Y^md(T4I<6ISi(b-}4+maEB)uyr-@F(xB!
zT%QO)XGcWJb~^nt`wBKBN3ym@-9zzK5djHrA`Q$++jqq18@J~S<KIvgY5oJLUFdEV
zD+FZQj(21;4k4#&{;{8=V>&GG5HX#>q>Ue`@-{UUCdp|1<l(d|1>+nS=N$T}AZ&*Q
zkgHvqhZ7nmuq>|rhaV_PW8T^PdeNhZ5XuA<?@`W*_)mYLMgEMw4v;bW9uL4624vvE
z+^5bn1h57TP3%4#Fh~-|NB2^x*BaB)D+dU9<zAn%<2qh@q0&V>*I<H^CTNb9dNkCA
z9FgOMkAdfYE75a?m|)9xcrq^hI^6d37kO%hP?&+!d(>tKbg`TlEn~W*%-ZMFgb|r|
z+T~|dr}*qvWPU_8!z&y`+Eq~Rn=hiVEuzNk71IZ!bBlk$d30YM4>6do_nog~9y9_t
zod9gm%3NtWZz=yGV7wgYGwT#E@aUCt6<DZ2#*Sq1E%k%p>nx?5;A(Gx2=CD9By{EM
zh=+Ss=6V%`Id9rz?OV~FV0%RE-mqS|&AufNAt8b~V5OKRKE-M2RbhgT%J;*zi#GvT
zQ{ALv&(MNhn#%R8ejb!)QWbQZ1<+mIB`2&;c<}cnN@6#>#?N7lR_FQ9p~etLb+)A_
zhGTC^BaZB61RvDh3megO=Ax{_&3Ri68OX6A5cZZ2pujgLW9)oOw45ja+O>I?Pas<@
z+(bj_fx*lQ%H=uJV%JhVbz|(xbS~Zk<M5U^e1CgD-QK=@g{7X%6PL%)5MH5LM_K4t
z(^jNp3mI6EB7TUZ8g=5Qpg*-M4-Jn+bDPD(pQ52~?j;6iS9sOk#Sz5Y?Lc;AB<7q(
zXyxUK@XIuer`DLYnYC5bj(R&qVI3;c&h6}r=jzZkX;8h1)HVH*H;BSOT}0GqPKjs!
zOJIBFVf)qhEmn9Tc~03~#nefSxs|EyA6d@KaX4i*%xz`IgAZd`Z9BU|aEe^bRmrhJ
zz3<lyLX0U17a-*~RCOx|TW%Sau(qv7W<}kR4km=7zIlI!?+bN$dz2=X&#A1n-{g(#
z?|K-cBa*tZF`mIUxs>f3YUJC`%2(BmAjfA@FP91fW20E<RVcbs`oz{I&zBriN6s@x
zRA9UOz_HoKee#n-=R+UoRb}=n#R8q}V`Hw55<A%)nVW^d<R^E8qy`vQ6+HvF0+bc}
ze7H=G=9KRKaSHSUWf|2nR>dNMJwTmP8C@;%c?7b1eFQB#*6K&>c16VS+2rt;nYrfX
zVbbs0hrwrSKK(fe@+K@)VJdC92~v8m3>G<kZ@FX)RB966?<$doGcvlWK8{M(wsKxg
zz~}EUF~a>9X!_Fa>M1i4?@C)7<?=W&%T1$Ww)9HwvrSm04xLs0oPVG7q#ac~+6&W#
zak}6Bgi|L&lU>Z(*n#u{)Vr^QCfW;g+1=Cdc9!b#9RFbuhPfH(%FI7sxa}Jh=%W`;
zp)POwydYWRn;THuLb%{|vIc-(89+fDD;j}Fl|FnZ*Ip@4D)sqyNCcg!l8PcY&k5)3
zejd<dSq{NnCZx<*>dTVXz&X-=L)?!}1z}`g`$CpRre@k-hVDtKNIM&yo1~#HWX#e}
zYAi+EyHTG+9spoumRBYndi$@D&C>D*3&tpvO0d(KIR?gvBOjf&b}-7Q|1R&9qp-JP
z4w)K-W{wzi-ibpWe)HUWLMKeYWt!1qT0!ovgI?PM&+gR_EOf-NyY9PkxQCF5N=N2r
z15Y4gM=$1_MG8(t5K>KyI3ma9Mk;NJzm8WkrSER7ght=WsbAYO3Wq>?u<kF6S3}H$
z^-*1DBv^MPZ0B@;DX=4zLu9+6VF(TCef)KWv9sX<6zP0$o{5ua372f#hK#4Bl0^b-
z)3V@+(LTk5;=hy8+g1!bbv$Lk!Dbs#^dMAIgBsW~t%l&L@&OYH2JN1`8<{ZyDTZp{
z4_W_Qg<-|bx^a$J6CyCnYiik)G=y@N7XMI{qzq-JkIvSsJip0j9P_Z0UDIRr4MUkp
zU*M{Kna)P|OvfYOLtw!LZ_#)YxZ9;Lv~h!9QRyv)2I$b2am4<I^gnF!@+TQu86YYJ
zo$2!#oxEsBwp`lVLp@PJ6ACKYAVbwKboyj=(#WU|42Ef+|NoP!_{lPu;^Stpz}tWI
zf3_~DvnP(B4{M=Ws7_V;ciTMSBU!&8aTe{~mppVJ9U$#6G=DwCL#|e}4$$DPiDI?J
zY+X0r;fZyoNu6DvY`PbGko0h9fluUQC#{NC;=4ld?H3b#hP|6oFE<l;><W#ZL<gJk
zq8qzO&s4<JJ>?_R`6sfisvSYD4q?mgYjEI0fB?N;)%d?2{e_JmwnKb6r>!aQC+<46
zX_xWGqu(lD{5nSwAkq@CLG<^@1UjrtUb_uLEvbOp<4!Foq<LhJINE^|7NR!%1}#NA
zSX*RUkd^^^0jRd19NZc<x;wrisjLRsv)`v#x2IQK*YQx6Qg)yxD}iEjE5F&)yix;=
z@SY(DPq87HoFgMvQ<u4;qnwDvh6sjcwJ(wU1D~AfQZpD3`T2;D8UJz{NCtxf8MHkB
zY${K~K%m)}`4MHxsj_kK6d@A|mCzyFKt{($LS+aLRd#|iG~#MbU72u>_zn)!^1nbe
zkxe!{2ipts>oI$ovmzNU1;+6ZT(-<)=0xW;H^|Uv2)M1@y=gAL4j1Bo!jasU!IAnm
z|2-fxY1r>6U^WYzx0Qu|q6yu<j1AU%{$YiTH;RD?;R$h)ny6Do$XZ_k7u(6+F(d-T
z<3%kqihSr2dy=J5KID;GQnoio1ep2SI{0z~K0>^gegSRHrG^Tst%_mVK`Lkiw8-Ci
z;GhgcU4Ftsew$B%5~SWSuhww&vCPv31{tr7T%{Of-KiAI19?7v&Tl7aTAZoKKc{Bt
zWVNLLNC8gw;pF6``KRStsVjWSjdHi=1qUu})#;!#viR!qMGm`X26935*Dshl!yP_q
z+C@R@4Bi+dDI$9f6R!u;f34mj%23lPc7M@Q7wBrVV*34BN4RCvs6Qfmd+0kq#p}hZ
zP?y7+{{Zg~yTppk4}N&qNsGJiVv$P}>XGqAN_5#l4<!O|)FeSwAAh3GKrD`#84^`T
zW6>d;?Sb_3nGhVzsIdjP2^%8}bP~)WN)TNB{GL}-la%eo0)Expd&fyPw?opwHibe|
z>lwlK$ia?aOI&z?^9eVsVRltX)?EK{W8aQZcFNJa;eH=+X@cD{?{9b!9pI;0Y#9Ta
zkIzf9;%>XJY?uY3*0!ZZVBO1<U8BU)oNCTgI=atC?g1L><-bj`P`V8%6NU<vH6yZP
zz}UJOZFxs?;JShM;sKq7K1ijw#|$W)<Enf?^pF`x)sr&v9Sn#`9G7P<1q}6@2qX9X
z@Rc)*8b3%ZU2w~)&|gR3w=lP^D`KtyhESsILTgH;e-^C>VW0Gohd9(iMTwVY$Ur}g
z9@5N`lh_D5@h5e2B;bI=Dqt*+v9d4neh}}awDw^t9n@^yE)NtN3b=;j9C=b9wI5+y
z!3EOrt3@6$e2laew4XQPHzzaOC<yqmiNcL&ahK_yrI`Y#<jlh$NEhg*b1TcKtUr%@
z_Nv<r;S4}iDNsFmsLZ}s-W|yFZjx#recr|il>~Hp-i~Xqn6u(*GZo<L!5K-ML(E+d
z(0v;$y@+(47Baf>=Rvd&tTPFyS6Fo*KV?p|&7xJGD*#m#YX8noq<fcMi`>KhTf0FK
z8dL~FI6bUN9@v(}iQ3@^Kel|oNrDex$_v2~pn{(1Jdrb#J2ysDLha31W2qtfAeT%^
zy9I*OBt1uIhV=FC$6NN_d;2#l${%<$Y&K+%J{|e>rSJ*sc?HRYVd_A;H4IY)3jpMS
zem5v;Ku|=zT-&XczFCmWXHNxu3uMVq+B=vJ%T7?81v#g%U|>X;)r;De5X<=E7&qxI
zpV#ZU{NMAKJD2Ha9SI2!JkXC1HWG$=LwfU={cBKn%RRptx~dOqcMIs@4gVrpZDNQ+
zA^X1?kS-W*xTZ^$mte%V<5-fuCd;oAw}x`oBF8n6^GV3dV`3&Jb508%Hy7>79_e09
zxR+9{C^_{$u9Vjcq2XlT*9g~|(0XuN&dBMGpN|jtQt9{m#ypk^>hpmS`5DXJI{8pt
z8duQ+(q#fV!}yE+H+d%s&{HTaige9>dYN}YYT+g!Q8Z252N!y7$q;~KY*VsKBbiCv
zJ>W}4k9?`W2#|f?x}Z9Gbb(#qjw<TA{<9y6>Oc<H*94IjZK5>bd<X23)<gs7xA2-D
zTQs)%3lo}O7hq|QbSCk1qKl_=>9XNbyg}|e8SKJ328!_Iq1<)FvF5j=Y-0Q9G31_8
z!X*&6Mu##E_D^u=n?FBofyHRhAuUF)jW`$b>hIjo>rdG#VEN>RM(YY4ywxWr<c0L<
z`1MbC6rfV{etedcJiuF&iyf$`#fD7Bz4y_Qn~I<%alSU%QNjm(<#U9>EkYmt?@Lfs
zgw%SA|5FT_LH(MH-BO}a>MfOEm;FCSx@Na^^Y3*7h??R3Kq%q(_ZL|g&Z7CpMTFJ>
zObGjSvT{k6dp!IxY2xAzvPzTs{qBBn8h{61-Oy;5QHa=LYKzoPT_4r-h1zmIp*coD
zl$DXZ5!wzEEEe^5bMrpmN>eq-6p*Jua&TWnf@@AH8>CgK_)QYL!u#j!#Dv*XnQ}i*
z;x2p=%&~^2Qzy1e1gFU@#L3~o#yq4KUR#4~aBiJV3e_H=c7@2Q?Z049Os_I+_J%CW
zBc?E*Sw;Nhbca;Sj?7~F@o?#Y-7|4DzI%>Uw<Vw0Ps8M}alS1tAJ`8%dwJVlOoo-|
z_X1#_YPrI!`#mh*Xw)0!-P)iq*ec>(N9xCGK5M!ya{^kT100lz70vO`)P-!}WY9^D
zZA5&cYnIwt7ke+hIvXoaO+($f&hl_rWKhZ**0Ba&gZ7;a9|x&h&CS-NX*8Q0*NYFO
zFYOVotN?1=1-wB;5nj$objuBd)0NWkAE$0Dc8geD9xtykR3MsHmf-;&@!J|<)S539
z0|8He<b(9y1J&x*sy5bbXRrK*<@Tg3(qQ>%l<lX+Xjn;DWyqF<W2GF7n#8TVah{(J
z9lw_EZkf~@2h-Y*_u@+G6_1(_{XFY8*PX|72{!_sDwhpy4}1*Qh}wOgJ&?em3)xnv
zP`nNA#qmD0GF$S<dN+V4hZeQhAb;Sxy*D5fS;SwQtVWP7pXj>vPyL-Zgu><7bVmCD
zey66$dLAp$a_U%1;3&O)JB9ghN@HC%TCM9#V<NUe5AZvaa;MP%ZWqbJhw}1j)|nQh
z>;iMvpMhO5M{NhS(G#WRi$DceI)Xt}=P*63q}y0YsnBJKXE{M7`47)d*^fCr!ML=s
z^TLK@6`%$`{+oXd?^zYWuKd4snMa)=Nh7JEdu6hk>FcnG$LSgmb6(Ez)9Ox@&YO`c
zcL<5hto!f%vc`_!e1jOCQn0cl-U??s59f|zaa&-fZ>&323#SL_0GW99eQd<ix&Y(0
zaa0B3tt@?vb-~C_ishU%bZ_d0nIH3es?#6@&990J{iS#qRE}jkUz-*s!-HS$)lozj
z{6hS<>KyEF0RSf2<RCvgF|8aPjCOBEAe&bOQuK-%DTckNx9HDaUZkY^G#;U2VB8(}
zzPwWkwl*mjKvWdbgR`#CfhqXg9FAPT^6wSCP4egH(#+{|paa;l3bbq}wly0kI@Sg5
zgz*&*5Wp^hdw&MAmQJR_er#R^leugQ@cMij%U4i+(w463{5d9$xn`6`O!7x`K_}p*
zl{z&|VxoiUmK*YZ(Zuq=+fq^@wY2I81+iNd+#ftvE1eU;TRGGnR8k)jY_5KqwM$rP
zD8&rvf=X_dyz291GR1lE_`8Tpham>(Kmv~8=;)}mXlT@FVPDDy3?oH<_(=I!<g?-b
z(^u;v4s|=Y=Gba4{GvtUOI(8m@6oV@K$dYN+ShR1Ia3-!SVF>D^oyAfS${}LC<`)%
zX8KsT%i~!fLan&%sn#i~(BwZK(0~ihkW2S>z}N?VHxLQH4p0evS5?O6@nX2`n&VEU
z$P9Y(-7}>M#<5`>gXV<2pHM-@Y5P*`h(lb4(X+KXsB){Lyek>>E7K~)m30u~x36Du
z!@V!h+OsLM#zI%{HBi5QjFWovPF48_a6&D0x~QT<5BfpkJwiuj@pzDm=Zi=Cmt$nU
zl+dc<fWKkq?x7SVjX)UoS3ZH<YrJOV3GA&{M^2;ITy)t%e-$T6F)KTwC{p8q1e$2~
zUv0F6-Qk1@iN||N_$3UtO!3Yc#Z%hNu$tFY(SoZu3d6bo2QsXw3cT3GWf_+%%b&Vc
zqWH&nz~XEyu;r>H#xlekaB*~;)#C_)0O~|F6{xJC;3(C`e787wPDEbJpEP<T?$&mI
z7>~DcKbjRQbG=ZV-bOdkwLLmN4SK;<;VxLkGzM8~^YXm)_@JHR*Nz9KeWj+W3YBov
zk{hrS*-jH;SXA8k_?Xg>oQfv<4{J-hffWZ)>&h^dUdmA^h#>!cZ_&qVl4IT=5J0Yg
z0oRv~yv`}`rRVc?S|xdMxVm-9BZ*<~593XrMiOULVkGwN+t6<JF#Pq8?nR|xuxn>f
zoM#3&Gf0JB9~g*mm%JTwBCk|yQZPs=8t*wiL|Z#9E+Jv_ltiQfUzkORFZ*>@EU77J
zogmrU1qRJadlne_lxvPoO+#}jQ`YVXsg6}MG$iK}+rmX4cK{!x@3t)z_;YE}CNjz0
z<NQ8W416Bne^PQ@FFiv(Yx27*_`P?-ii%9&jL}1NXOei+m8=<HipXLt+k%!RO52I4
zX$vwQ6{i&}35c;&bDETcWwR_z7|O^M^#r<xfZ1s|vSKlcb@mDOyhO?r{%>aR2XB&`
z3Vhii9YAe87A+OZxTxv0{D+Ser2l~vMiFwl0!#2jq$96QY5N@R3Q{GzKswhH-fy;6
zZ-=bfN4jHUjtumxMrRS}iu93zptYrcxTQb*uN1021xp@=Uw~XvCTK$A-^jOn4WrO7
zKYYP~8p8`ZJDeAuyF)8g^wj^lj^^>A<lxE!!D9AowT43tQW|X|<{oPe_~1Q^rlGX@
z6AalSIT4bFR`NbSgz%38qe8JW@fueA{C*4y`BGmj(t!MB)PU7fPi%LOJQ!Utn{U#5
z5PC&#l-d5XK9K;X!Kf$9djDleH_XeF!p)JYFHy{s_R2L##Xk2OF&2ki_iW27d4XC>
z1Mq2loN&=gK0`*J|I-=?21oKFk519VGX#Vd|DDe~H0N(w(eMm{y|DIxuW4yZ#z#sc
zIaueID#F&z6tJrhJxp^YcVd-Kr<9bJgKTOTH{oNQ+zC+x0cn`z%PU`xG=hZ`DLC=D
zE(a9x>cvEr8qS>1k&gO9lqsgq8YJcZu^Lei1!1{-7Svd%Lky^q#-%wU;4=x|@wxZL
zt!`zt1h<f=iO}zI+ySnOUKfNlz~7qX0b33XfpOW~wJI)dL+P;6WM=sBxE?RjeQ<vt
zB$A-r##J;$;mJVIyuxa))0r3&_$^|;ROs`GlmRN4hKI}TJ2~t*X7z**xkvSL*>g0J
zL8n`^@u4Z4Vq~|@UIPHdo&EVRWS!N3gjbDC-=tTF@eD?D^n}9gqN7B$(%voK!2(DT
z^b_shxU9@jlOnYN8k)@35jICq{~V}FVL}6{UBo}x?#J{&<71tc0A1O*5B!b)y;ji~
zig;KyRlm9)jN0S=h&CXc7x0D?k?2=#?K?=t{By8*g6w)o6wJ%KI@dW*dSk!ce4%-s
z^Kp_o0W=u9o*d1v28speaJ7tPi?1dCqo}I;n@^<b1t98qW1(LCAddPaCe;4r8C{ry
z2|7(as{h>GEaI^eq&<O)m%tIW!z6^hy%3*26**%?&w+-n64aB8myL`$^-~k40lX-(
zBsS^=>oFqWJSnL}Jjq`4f?I3>6X2PX)SBum^x?vO6Ct34>?C+rb(5sU+Zf}u$jqoW
zpETOCxZ4LED#PkV9!tk6w<BiadB`6?#&Z~y4t~^?N(Ksjz0XR&!Vrv))p?GX69@Wb
z49{>|v109pYcRJ&TOI!Q$O#V4r(XrRSu~Hg_Z!FpBPAN-hJ!$ivyK`<Pqlr#Zz@wk
z8y6lPvb8c5kG$n*W*%z(t#fO9x9f68?BEw9O%GVBMx>r{9ZUA;GzyJr{gW9}+Nmp<
zZ7u+Q=@*Ii1OVVti8|2UD4`3A+ieqbpw&lfOow;6p!>nL%!_HSpK{REanNwIJx=e{
zdhg(Ufw26|mpC>#$5#n`mrCxw!lAdbj1+;YsjQ_PzyS9i5=bgYL~`pmY)X%X01yD4
zXu`PKp+*-6@fQX!SYpXS61smD2xi{Qj5h(YExY^}#?x!Ct_&Xv{SBre2eID)9j=jS
zZZ8H|NdY19G9pdUbn&O*HcQq1;AO2ta&GF|2>;0=JiBN=yE4x9ZyFP?+0OPXRQ_LS
ztU~H=(ZK@u_epRrfi-20$+(URe>OBPT<9e(qAL{=!c4T$6fkr%pIIS!>4-_58@4%T
z@#~GMN=7$PElgyul+AUN{R}?fR&dDV2Jx6*|6BDw@Y90kYGY|z-C<hXAnpCWzJzmN
z41+VWiaKNpa5H;yfU89AiDL(X%FtF7q+g&Y8DKu)!>orLF*!9X4u4kFB*Ezwt5DC!
z{P`=^Dsq`1RK+w>C}^ua_e9bILr$9XHdcG2ofH$m#h3u3&PIP2W|V@UQL7QBnT6H$
zPT7o<d)wY$HSibna}h^d43>$!&9`Z5>4XZeyoJG=ZbeEv9LV~u`|4SGj*exLw;M??
zuntkF`|Lv@DphF=Bj5hP6S>V_$>IRkQ{BC<IPfiKSn83Qzdpi60+xk)`lWQ38EWsT
z<R4^VgDHw-k?#0YqMSL$QgWk3v8SkQWz9&`T9pGZ*W#-MtaoF&E4Ygu_t}YIdiv~K
zN?->QWZplnlZkU%<>}VjG_!9cCOc!HY|M|kBlj{cjv(tn1cdp0t0_D&i?F5x2dE)e
zi5ijMLwst-2l)t}3}feJkz^m73KE?g2?7M9QDLtrY3U0bEwO!+cR>_l{N=%e#a+i$
z*ALY&TH716mPTlOW-vvPwrX$#J2d&0)H_20bfY4s3o4(;y3+Op02y0OzBbrh1DaSN
zpQO;cIVA>NNnkh{qQ|?_|B6*d8*U90u)VLOF2hQ5hay1RzmHsc6pR)*#}$!#*VKP$
z8dc)VsHOOL`9&u~REACqSp(HI^r_=(>*|+01>MSiE1R7pVspk48ayk<!|8<cQnwc{
zg)z+jZjhtp+WyD-QhejACUq9R!H$IoN+=UYR7?XCLq>b7n)hEYXNrMPATg@)cSUI+
z_=;q#j{?cI#1qkntxLGYlrPUeZ10IbLzhX*j-xA_$T>j$WD&b*8a+OYF7IJOJZt<y
z4Au$NOCJ}@U$x@WVNG<a+14?=j9VwwEv_jQA5bt0e$4c4|J3>#mvbcgCqgxIgcXqs
zXiv}wi@Mxz{w1ej#Wop*1~Z<Xwg7Q+(u_A6$B$$ef}T9L0HE90Ctn?qY4{84HWC{T
zoX{CAc1463?5jppN*HYSk|w#F)EMx;(m$J*XcJhy?#2O`q6Q~E8c(Tt!{XbYi_T>x
zMz(#^)#@79H8FkP78R?_NJ|=zK2w{e$Iu`G#E&sD{}-e{-ou^nTcj@C-js^cy~UZj
zHGzH{<Nm`KvbmPJaMM_+&iEh$z7>rSXBpuNY+a+5$jE4YM0YRwAKk`FwTw9!sbh8=
z4V9r@<kGvPy_WYnR_ns6aGyuUnpQ1ju^=Gdq_qxbGe90WPlE|E$B1})Vt|Oqub*lY
z8X^2|cPFmj2W#AJaOnZ<1`Eek_Ai&8-JbT%CPNrz5?k|%|K=`|oOC)#Q`@P%_H=Rx
zCXLOMnPC7_WX94GlwfL$N-}JRe*rd>#m<^vyFyB?6p+RyQzHf~S56qpw>D?ISd}z0
z@XU$Du|hqw{{5@pIWM+|^9I4bX_qc3IcT6SF{~x}W>c3{`w3g#fJw>0V;S=Z3%5{S
zfZ-Mf@VNF(5R%duwgzTp^4>^a$vsAZN|y@5mBj%|xj)z9Lt{vrIpfKga~5Ky2|k!6
zChHm=EUTvw*QpgzTl$^h>0xPo6yz;<?4_d<ZWC39?8Jx<iQ4<?(G1Y@&5kJVzM7T)
z%RR`d*P_{oA$u#k2AR1dCKDeDt@x3z)|6Oz*aBVx+LRv%%{`LbuIp7#HSVp=(|@l=
zG^;JX7EaEAP|hmHw&{#BG#eS`L4rv5w<}ihDn3mlRo*e%nhqa}>s-h$gYNDw%E!uQ
z&6Bd37}~4qgFNt}R#`yjA-c}i;>;8$Ks^%9do2N{e=0acTet^pd4d3YOTrv<Z#6S{
z505E{xJBy&2nb7p7u;syIGmH{_?*pGiKDlJ;7Q|ne#K8m*{rd}h5Y>dfwHmqse#Tb
z{%5hHfWGyV8(=SZpmF4(7Ct)XuHm@%RE!IrTYnV#B|AXo$ty2_1`c5QhFwnTc!Fsw
zu{PU17#%-dM;slG;u0@d%S37sa?N=Sy$1QvsFHwhIJ+SW7e-z{eF(PV_w_=Y@DhMw
zA51OQPLnBl9;%UH_*8E&KLSJa_4tfdds!k6zCKWb@ff|F`vJM60@6U7!g<O{(I|g2
z@)3X%h%_jhT?#2Bd(}1)(cME$=f8+Q5Rh3l1^b-VC(7*2t#2gFNxCCOSKuZiNj*ku
zF;$@3^mV~)U@mx`vIXp}$_ZxbcyR2z1b!>!34uK{E-#df7esXVuC{*iTtT!X^hXqm
zKPO8C#lVPmuQ)h4@9l8e#piU_Th|l5W@Cgt1h!xjOg7pN6jHCZ7!uoTwDxG16T`-R
zko407FsWo?{~B}=Q63;RWawIVSG6>*otzbeocd-54d}O%A;fC&w2h}v#Va^5E|*@!
zi4sg2pQwlKA}sFdx!(V9u>5pga_BsdeX`aN4_|hS+=v65*7<N~nrSm;^<=qAdfU(3
z(C?T;BTl<AQm|p5A_Lwj({~671-gCf%dgGRs;)iFWR+$`gZHIpl%dW~#3x5cZuL}{
z^>64SjAG&KceMae0XFIm#GVI1b5<Vm%PRN1rpk_vrb+P2-zR8Sg>(~}=HKN3%5!To
zWBihCk%|l<R#6HVKx(nW9%gXpBc|<#;MTCo)_(SxH4LgYsoW?y9<UoIG#f<`RCb=Q
z%l<Y<0=yLGGLxF<G!<?ULRg<@&=W6Nvc%h%6ASss{2FFU6-#K#UUdFy6nwpBi9`R-
zvl#+igfMP%ya6r7Xb7pEn?n3?0bQtW9G=^h*p*$=%h4`N%d)88<P3+UQPfAiIAOTY
z11)K5`?T^nX1u^1X#^7ykp)=IrAGN}tKh$1(5QXOz?`clHK=7K1=iFz9rA@)>%}~(
z27hV}6@Qi!LZq@1v>(7zX#Tp5Kan0ZrOXyXgrMqe^jzi;4M{^NS@2vzlyy_-_I#<{
z^s-|=G)lEu8|N&dn#CP+;-NS;ft4#dQ_~F6W)tL78st6o@{RVwKBTdv99a_>QR?}X
zunLZcE_SgyqYetC0?QK2#)s{07TBl|OM}<!BmWW3D&3fHS#;9DslRBSZt0dPYl!37
z3Z#`7q|WRp@Sfve1arv#48YP_Eg=2R!yXEYG)$2VS9DZ;vjzf@DrKgfYMv^)Fq8<h
z2g6Pqq@b44!utab&>&IO-=|Ke{K$NkCL4OD_D@*0`YTdZnQ@F5*zhZyy76pkY2c{0
z8K(9<TZ<%wLR8c+&zK%}V9Fduv6{_+Ep|NF){`R{@UB@T=zh^EEAoC^<h5f_hdZk7
zL4B~ql$^tDG5c{|<3jo(X=DA4LrTb_eCSzQr%%;Zw-;eZmf^+Yo-C@Z*H*1oFWeG~
zQYS=y+jeiDQQecuMsYE@O@!hvy|Em%dbfS%>r`YA+1QhuK|70o0Df}0yE1PH1&sF@
zCz*itn0!2na&TrsPTJTm%;<6t1lZx*zt%*W8H;|&wGMlq_y@*J2XzCn=ls!EbaRP?
zeuc7w5PZ>~3YBy@2?%Qpw3$+OJ6-`Us4x-Fa@iVmn@DcZbP3V0T3zLo%H3)A!Bq17
zZO8Sse>6}VFzwIn>qDYrUIUx*{!#2sL2^^vaMalnXudDb6$;Ie(s1{vG)IbAJU?EC
z!nU9{H=L~!rp1gR&n+2_>5S$JSLf^sqk9n#3@FIyf@53PEc$rrrEY+-viG(~OC@oS
zB;&==rj*}tvm}^8lVH9fW?yl<i4tbk9w$p`Y@bvp4qRMwb|InWaYiAi!(iQZB@(PZ
z`l-p=LpeOUoZo}6p(1wV&sMl2drVNCb>S|lqvJb13WO@Kw$Ma{-_IrkPy<c&i_JHw
z4FLayhQ6MR&rFxe1so-QnXmzvKR<C+T>~uRp`(%MG~SG-+G*4Ge$^Y_Y>#yiAFU(F
znd;r!vz&AGa11Yg-5oTFyRNx`$$kKv#74Tep<v3;R$8fnMcf<ijFc!1CSZn7`kCt&
zN6ZhRwp9#ZD_t{92`)3Brr7mB2NQpHl6`5$XLtm+;tn%dhz<io8N8A9Iviz#jwCv?
zq+|U=T8k|PpFjh{rc$JL1KQR_)MV>+>w%Y39!i*uXJ<s9B;2dAep!+>3^?#Qqtg?X
zCt2?(xDHah%uuxAg-Cgn<|2y>Zs51EROyp;&-2HkPRUjXXFxMIl5p68t8o*z{ETpL
z_0aQcfI#<`3Y{5)sSb)lZCg7i!16#^qp<DQGVrmGq_L>t24?^|K*hhtlT$S*o+%;N
zt?U$h5Q?|$rCq`PrD542`FD8+`P*n=a42uyBoj^pkD84i6ef1^Xk~o>`VcUlx5i;K
zSN0^^2=UH%vO#5Z-#pl^p(vv`VSehNq;W(~OyUM{U-Q8eYP+7O=hUohw$#+witr}g
zWCdZ_2x3vG)k=beutHIr-dnHIDb!EmAp5(G{(Y|93;98FoF2%ZEyS>g0YGC{GV3xy
zRef!@hdIrqS;@?u`CPS8?6;U@f3o;M(uQk`Bqky8)ZTFOa2O!~LH>aZP{@@WLef1Y
zWg0T|jFIR<nRN1_<LO8V_GH*&7sPi_HvI#k)lHV_EDjQ+cV1ec=7B2D&9Vk-Vw#ne
zcyBJ3_GdZT)(ZP77!*mfmg7am7ydWKK7m-S)cT^}gvKH5`TB_G%HyH}b~W=8H`YtN
zJALqJ(4qpk4HQ^4mfZ1*<`K8RF(oH&UdJ8(FXmL+KqW7svg-7l27-PUTwNH<l(f>K
z9EmluopeSA;{UI0S#$D=<u3?B|E`Fg)Rb>Ix1CO!R`h{_uEzRIV3B&=M5#2`UhYAq
zcU|RXjp~-^aGie?;B#8KRro);-(6Y<LU)N=!#$IjYPC#yH7FjtdpyCd5dI1wK%!ej
zX$XWLIMb8VQYS+un(KVfd7EOiDM}26-XhA<Ezby1u;dEMk1m_MFv?U*F&-dBj#Eoc
z+7*0GptUlZaEo^>7wx;;O$ZG8+FBfXz`U?~%~G5-EHsj<KlY956Cx>tlwMxfGU`D<
zTk4FT`>0vu)1lfV01SL*3@Nws%2fuMdPXl)fGms$oQA8!3lTdilNQhCpoyLeNlTLr
zhX<3)ZZt8>F9yd5U(JaI^Zk!kVB|Fro1Gxio~|L6nm4``?C@pCTZAU69{6%cMRBZG
zs8W14=_+;w4vdf@cC7&Q$6S5!c+DMMM%QtzoM`NIbjU|W8l*40A%9I|$fqpju4VP&
zdcWL7$#$FJ7aZ=Vsat4gFuE?Fs|=k}#dNLDiT@(Yl+t+RfZ9Z_Y9DXPVH$NpyTXx9
z;_uCl@VJ4^eG@k1{o58h#miIIV|brELko~k0jq4whf{_Z6ON}S<i#J%WjL~oeEAt{
zz~rRJ34^D;vRaJ^LIMe~!2?+IIP~_b<k+C1g_l7VimCfD;mDA65!;#TkLixVcVhbH
zyreCQW0(-TM4~)RbU$dEvc>4`r3GyVSYHO-K7wnc7GKdH9iyw%>v(~dOcyO}Mgxjh
z(V5uR4s%1P!=$lf@n50PIC?Ke4<tZL8#p50ngeu}uy3fhsF!&W1+~WfBT>fI#o5b%
zq%&`JP+nh~92Wl+do8c8wgRTXbEX1)(R4kNv*m*;^;N0}WMeYeSsw3fY~W5LrEit{
z$K6w-;x&0NM<wHJUEy0?)*~VCkKxAjep?9?=~@lv!OElPYhM?wR%`LES@&8iLWD`O
z4uj|3V1g-6Jn=Q`1hF{=67*RSjF?GAA~TzJV*c-~b(s7>_Qvz5clRJ!c?CP8k85t^
zWAf2GwRzUc>I-69u*7dxa`>vUzP74ON$zvhMK5MXLzBjR^WI>{hyZaI>Vai$8tf>7
z&t$V=pyI+mUl4S7INOrooAqK@2%uKSm_x+Ol{la43Y)zg|8l_t(KWKK)z%0s9$0EJ
zb(@@P;TKW*N>EgvZU+#mufE$Y92(QaXn6XI<#Q=@@QKpbKJrLOgI!W!`0l;Z@^Sx6
zS>d{u{!I&2yLOSr`Xi>q12RIs8S=TNzaF)ez`=Stmrf4kHSxlzjhMB^mEKSu^{KTA
znXjAs-RZdjZg$-U{(9w1ki~ktn4QH{L3$>ji%XN>%rPJgD+5t2;d$D*suznte-RCd
z`iS8a`|KiRrfQcUxJ)Fm&M!Qu658;Nw5iPyr|~)Cni&qLydQu}O%h<@R5;N&A}-Mi
z(O`%u6=JdjNF&1#G*+a4z2YcUoZkvwl8A(q|63b_-QCRn6%UMuq_~yoQ$4$IYU}Un
z8fJ;CWFmSH^4!IOyt$iCR(DZ4T79qS?ePupbd++uNhy9ctjjdu7UZ8&rovYGNN=c$
z1@GG0r|mjQG+0f!OvC38WR*3M?urx8Qqpd>W~yl#u(5x5<9zH;H0RD?9gM97r0vBY
z@Wshw()x{wph3&b%%#co-NQpip&MdPee)d)I#*^|yb(70APE>jS4rIaSxcGjnc+uy
zWaLM3D2sePjPim6<(7|XJnaq&8Z%D_8NUHW6$f;<KRoLur;ah>iGt<4<<Dk{ha9cx
z<a&gk)<w|92bWOh?qsg3M^l})H4jUT82v-~&pL#c@0YkLYJZA@O^#_C^gW@xKF;p7
zlG5x+>9)RRt7-POW~H`xgRMvO#L~8cK0ry@xRHJoSA&>N1S}qA)5HPT3}y2OrfG|z
z{X?ah9^}2ABdKZvij~gw{v_z;xDL?um7em2`!!A#Q%yxY+(VQHzH)dtFy0cMwd^xH
z2;-Z#C=0&obUFAR+nJ<)niL))-N}mNur5kbObMyjVQ2K+0xXCxHUQ-#LQR%H<l_sH
zyIdT$uN#X&-z%&K{E~!oOOwA`%ySqgyChEs3y?dCS`wdDCOp>~%u~c5zbE*6{dY%f
zol?bZ9SG+4GL5i2;6zL_vIbv;OZf^lZFJT{1u6Y2Txt8&Lj?-k*esM@eP0sEL^l$#
zq{4HIn-EDL{kA{+&3?w(@ufzZIT+FP%3PQ0nUwJ(Us=s!jG>(9nq8P(C=@)H!5CdK
z*(+roas^f)8ci}ZS`M~RE)9-Z#feZ(xcri0Q4<W|{N8L#B6a0b`Zb)=>RjCXEf3Sx
zsHgA5VIVMf@B)pvzIi7Qp%4yNb1uPjyYqD|WGeMU4uA38#ddZfkJ2!AS*|~ycR5xa
zD;FW5(cFUraFQ3Qr?`=ie84bb462jWbeDHU1ys%i3L%q)A<t@L(YAWWj4nfPrZ~kK
z9|H`OFi9D%_fjT(`?sl_^_hC4Jbp1rb76=Gc9nEJx^nJxc#Yl^)5u|NRi?1A5d=g5
zLLtK9e<sAa-wbX7OOAN@rj*G;M1ugn-35p~*LDLX_f5$lhH}EC()lKU4{A|7*upgk
z>ZU-;kdQTbqV;XaJ7-zmlxWm%?YI9dz_*j6?<4Q%jzAc}`!Qekq%R^${E2B5glMD&
zzs5<`|2Ak^5~g!^7IrHTYY>y8^ttR&n<aZ+!%_u&eNtO3$x_%#MtM@23hqi*ru%m$
zkCP~IahjM9Q+MwI2Y)T#&woNkfTh`)z+bD*744ub*}b`CJvJ{ia&(SUt49IOgwnbc
zk#5GSbgwkQDSeRQV`=qVnXd5A=$f43{os{koTzAc=nhX<<C5}T9GMxU$3@lzcc-Vf
zuQMh29~~tWT?hK7#2rg@JEJ-qI;T3nXc64mNx0%TotQXHUo900_;#Sr!4Nl}N!SV6
z)NE3O8gv)Jcu8i*niNpgFaTagb)w{6Kc0hI|JW~tUJ?=7Pe|O<uATIq3PoPR#1vXz
zNCewXdmiKArdyz`3NX#NZWQJa|8Q2NFfN;(cQUR=c`422Od@a7o<X}-Pe#>t4Mu{S
z6-2EG>_X5zc$Fxnb*FLvsN*6aA+_8tr!Fs&&;PEXZQDV}wg!|tE_N8zOH_2rpd0O`
zy(du&*t#n*Yj%TX$g0<hAY3guP}LYHM8j;;DV4Q%O%si*24u`OYeeH82#xJjMjEjc
zom`L_GfRbt{3Wewyv}HJIQXotsE$t^Ef4sB;~AXPQxe+}L|#sPLyqu;&*zh%)<sss
zD##pQKnBD=Zw`TTW*ogviZOpB9RCI9O-Y4JA7Pf~VK^@>DQ+1NJ!G7yQ%!*pY6eSz
zOup)p2duMxNYlwLD%$It77I*isV!bQawZzHvy0HFZB#~vbu!Z%`iRq{b+1HynNGOJ
zOLkNVo0e!+9-Q7jhN%*gnO|^VzzWQJl4)Pjoz;l_{KGE3)~!v@IBZHnq9|aMb-w(t
zk}4d3m)T=$IExGJ$N;1)Z#5rZ>y*RsOt+sx&Gj@$Y{!d}E2nZc_y;oC_GJtaL9o3M
z+DkDlKI?KJpASuy2FjzeroGVzSnTnvc#OwfHQ?agDHz1!h|i>uf;Zpl!&ECIvh+w)
z_0CohA$Hq)MH(2h$AkLpL%k+7oW!y+jt9EJwRXqZjIPP;H)jS~c>g+r(W0>i|LX?;
zW=sA?l-69J$LC^e^C0)(8oF2>8lZURJvj^y?Ir0Bg`ID<!cgaIJ&lJd1ErLQZVpK*
zTzLYyCrgBO;r*^<kf>-ZVCG?*#((YNn&V};OL3u){`M_Tg}v^68=+(6%E><V`WZM(
z^o4<cSVNzI5)*Zy7iRrimmDAd%M9PYQR9^uPto)nyiM|_frdAXA>FL(J?lE-$u)QG
zZ7QrRYW+)W=YvLHSUCXwL~43vuxI!}eSSPl^Ikzpe>vR|^{ueaG?xx>0slG!(Rfj2
z_`;}8!GSry6>EOji2?_b^kNW6OqSscC0rawmhA87O~1^OvhhC#kUs&rA0cj0-eg<F
zMj7+@-tjrH>Dvsg4$WS54b6SU9<ahM8o#mz1HV&p%(V6bMl@M6!_h;>WOamiA}-Je
z=X2M|zSG3IWqQ2iQA4gy6;j@!6QP=)2%!*A+^V!vOsiZBMN)oy7;NZeH~536%m(Q}
zL5ul(Y;BRL4-}4s9zlQ{qgQRmK*_x*q|gQn1ClW9G60%uY}=A~YE=|JmHgNJc9nz0
z>-%4F1(Y)KVTP|^1ZQd?ctuQcNiV<A&I27vKj@27^Ob=Ix^t}%#X#b0Qg658EBuxa
ztmD}`yNf5xhpt@fS%m!7Oo?qr63^-aW#GcWhxXMMkN!5L4GkxS?XIQCm5gxp#WNTD
zm329})3}sWCxj8d4yo53$t+ondLmHA_)p$Rr?qIsBtdIb)5rgcx`bpLsM>PQvYw$B
zESJn-uFrkdl~9n9_BsS)tE^@7n;j(&SdWt(pTa*}^$_@d1_;*A<WmeCt+@#zil@>h
zUB!%}toT3%R}GL7-`RBU%EPwDk@v9bhBgslzf$A<!gIB?8y2SV|6ghjcFeGH(TDa_
zFDRg5?eA>|A=OjD*`%ou?KC@Tg%Q&)KOwq110r`a3M4%$yRKtoBy;H>cs#>$yz)A<
zAQ;v?Po=|+or!9^wD4cBae}L=3nr5D$VWsjFW8JMoV}L2y5oBK?g%0i9Sy%{gUE2a
z17~XeNP?IE`tMhJR*L&1YmG1%lsJ9#PZGfDNR9}2I24`q)2WU6@rR5(A}+7ui1l<n
zf*$J9kzbt7VWr;G=MC}ShXhlWqJ2QDn<0hX7GQ2dp0&$9Bz=-)eH<M(J%PP%UDw6^
z-^Z9Wx3r8Z5Rk6jm4SC+BB>4vmCA5mX)_dK7`1c=FGx#>P|m?Ny|1GIp!Duw(Z((E
zW)EoM`D3GwyroUuxl)_Ot}B=MaFC0X(K@@vrs`ZJJ1g9P^VA&UmMWNn;(!pLw3Z8c
zfx*zk>%2<G??<;}Dr#Lpf$^ePXl`(x*?^wu>j~L*V1P5MoO=Yra!N%L@Cd8fwjFOt
z031yA$^NTn6tTo`xer%eC_-AS75Bo{K1ER&6)~odd8*Qi<{307qr%0!pCHbWJBjm*
zRaDXP9lTs(Ammp1HUk-x02~N`372h4-K@1bfR*<nsr`1|hRKi(G+YfJ`6q=WFI3-K
zCchA^;)p4<gMTsW8YxXwbfP%>5e;i$5|j8XA_9Z=jI<%LdQ`M9%>Fwzc|<a<q=B@6
zGtDB%pa;4nB-Wl7B4qgLgVjyoQ>_nw_iONPpiFo~6`D=jBUCn)9adhzrobaqJu4S*
zXR;ajRVK?2lOs>bL;^w-Vu-<bJW_mr$@-jFVsCmr{qd|AQ5D-d6>S~+#gslvd>@Tr
z3?;SOaM1Pht|HWdnJv8%paYqSeHWi@jgnO1*cF?D>zrrn93bA>H`?0p_ntGS@<}>{
z*;{{+6=2GYG|>}aj>pHQ4w0V2B*`G8i)!PNQ!jJwSFOHuh|`z=fl{LfRnVMc{gtwt
zf~YuhIslY4=wjM%^kf)a6h61AU#Y@dgV0;eTKb^&Z+J8|v);!><1CsZjqaG}d~#2(
zMYnk^w#oXhr$3j0bw?n38xnp_*~ESj4}r4$RVm<xM;$$%1?(gO;$LzmnQpX^3zjD^
z!*xf`^M&x_yI+bOtpYxurjmP^x5={%@0TE}=>q{<gY4BR8UWPBpa2$a4X5Mo$1OIe
zeVuwd*JqCht*VooR?@ML$pWSG3T}K{`I8Al4Cj^pjx_awa#2@7z?<Tecp`dE+DUvu
zF+<@-{=wPhz&Uyp2e!o$I51p|8W8U-TCgSQP<r({=EsSZjo5|&D7ASJ5zSnKeXAY#
z_c<ntIlp%o=15X%&-f*Z@K_)N0W#X%HFz7cqWuW*B-t4v{~Rj(l$6HY$*#;Mf^4>x
zcDz2NbU%&3Lv#k%6j0tXyd%0F*vlM<A4&y0FVui@CK5S)pFN2uCB{|X!oK2NRlYo)
z7pfqF<%<NL#egY;*;e~sHHFLOLUIGtXvkz){CamB1FW~2DU$DegJ}8O4*ssufNIQI
z+I6>;#02{=HBzeJwn3T{aBh#NS&C>7`w(B>7-1D5X^}9TO&J*fPP!9He(gCI&AJ&*
zy{_<pj~-WLWu6;k(P?9b!}kY5eF~q73VW2}aH_8txC5Q%^YP?>dZllJN156vFA*sZ
zrb}?2A6O5gP6aSvbtCMO3lE8iugj7Ms54E(G(!hkr{+vN=2$e9-sQoOQ1hJA;J~(q
z4Pfcq``ab;k=%hK1;qb6$cPMKxzzH7ts{|`RjUS-eBb%>3LVk8mOWW#eQ%uNHUk9n
za5w;6u#(kaxQ80QPNqnf7q?}V!IVmC^x<MmLOyS#PVHm1*yNPCK+oW2zIq*${aUb}
zyUJWh@-fca-lPE*PRFebKHe`98W!D@DT)1B?ccfX^II%?Af^VlLN2LjosBJ4zl#YI
z+R@j0gJ-gd2gjAL<}L>zwY4mShpY66#h}A9F*9h2MWzo~QL3-p&WbWUmK_{;^QX5q
zF$nZLk7F>7!oIhz1vLOq@)D;Umg7jl3Yzd8_L!2p@YA$XL3xW%n9V+B14>Obhh*D3
z#HNPt8&YM_n(#G^k4`JZK0K}0w!`0zlA6>@#pPnt7huhg81Xl-T;R>hrWvmxbf))m
z-<&MH9%mm;al#v<FrjNRZg-C&?i+yFe~B#jq#Ql$eLFigM`F@SSL@si0Oh7dF%{z@
z9%O4K?qJ0q<x-_`u!++Budw5a^`et8R4kM+CtCD*(!wD){{f%`;w<~2sM|lh8A{U%
zBXDMu)<P~^kh#HFR0}KcjVP;YN{CHE6H9~4U9AwwBQ+>EQ@dD8DVyph2Lq+8agS9H
zhsR>m&o&{V5{VbsiZ_=LqVB5;^>9zMnWt-LI_6$g<FL;iC;Q7z(M1?0zyM5Q2&Oqx
zC*m!7w-CqZ7L~@A@uYSdrX*-F#E1ag$JBW`DTV8(`koq-_Pj?AR+R{XDdKhXXt`^8
z)(f(k$<z;Tehh5^UQAhJTm_ivSu0JTN?yzVB^e6YB=I}=Esa-{aeH_Q2aTbqR7<Zj
z7q?i3H^8%)TuZreG;v-U?(&Io$*WsKBS=bjQx^&Ub`nrgia`T`OG0`Y=qni-riet5
zGUd76DA)Ed<;S*=-zN7+$1DSdI{$M4QS@!`kMy*S%H&Xqxzjo3*A*^UD=lK~c}YT_
z+Ovgqzj~GjpL1(jJK7(aib(cmyTiT=EOhyUIH1;WD*b)9mQn=*6o1f6w~9z@df13Y
z@?@-p1FYpMK8Lw8InD~v^Zurr0g3JT`g-Z*N%JSBnVW00M>)O@AOA{QT`E`{nSz&5
zPhA;Z&IFYoqeb86hHVIg7c+8u{9w5X#UBB<j?Jaa?rVA?+8Bs*)LhM?^OaxP$1cY4
zdH`P{>S0$qmtjzHW0sTSiSDU|h^+*<MV2@f?|KQH$)la+gL+;d!*&>={{%)%xIN9L
zPYW7YF}tvubyedBHv9r#JDkxOGj>IFk6Flv-kb3X2$6mYjBbVr1bOJY<p(=B3-ELq
ztCn8pH&C5{EVBrsu#j;RXyD@+Ypr6AmS|x!(6%^=J(~3jU*GGo;>6{l-L*+RWYx}~
zAl&0r@O$0<T5l0CaMMStPwA8vU%0m7^}C}83JclIlw*BEsxS=*OBLNRA_}%@v4YLf
zND381AO2>bgHOmFrvy7FipBA}ub8Yu!+&xZO+Lrad{CJs$P!^jy_|&&wY=Tt14p%6
zICN7~=dD<MoVdta#A-TLwM)A5v$9vb`Re|TMoNXrkIp5EfQ(Y;Pz<Y|s$WnAT7!j&
zGw6eQSbRq5jEO;ZJWKEbzttf>1kG@!Y-D<|ModB?uE-Eghj3#0emfV9L8|VI<Pl31
zP9Qr)C-#~v`kS?Yq6Uty7t|L$3#$U)8SshjUAUXv_Dz0T($#f@Zs-clr0R~G?*z)M
zY<8^<fue-0pj)DMmzCv<bXkYtyCDFPVcnMtmj8~a59>e1jt@=_OQYeLuj+jj`)1Ja
z{CAMdr~mEA_?+e=VmllfMk%)1R*u4LL^QOSHRl2tp7t6|(tY_?1B!Eca45hiq_+Fr
zhQQPb$(Qn`z5N0v#mC}M7<B%oKGXq%Y5gdPQ)^aRn5++zpf-o=Naq0A3>6YFMyjh)
ztJ@-N`h24NftU?rYFxixqLLFcVUSltlopbghualeX>mt|4Tl<Ycv+BO7vzu22g|08
zb`BaGXI;XXzc50QN2jjcG4DN;DKv|*0}`-NTKsX-3tdqUa$z!RH@IYb`SzTJn0$FN
zU6H_-6dl-)5CTRQt#(ApCb#Z)EwH1eGCvii?(AqZE1y+~U(HmqT4WPR%!9V(X8r<o
zs)r5*<g2U*6_amOA%z(&Mla_vQ>hh8+b9Iba$8<dm^84^)Lc{}aqZ^v*f4p`=OO(7
zF?O^(d0^e^qoInU?07qamnq4X)#_VrHdw1tUgi`0PtA$`x>94m>2i4F()(^EEt{+j
zMjs(k#OU5Zw+ltxRq80Hd$Um7C(cW=W`%_+FlL4xXhxdeV3$F%husHa9^#kb;|9rA
z)zlR6oS=Ci%>VTu1%F<d9OLCSR|0HeFTbGs%+jN>w}iDlk9A2{nrcr?{UX8G2Jl$n
zh#oe@n4DkL=Y>6&r10eWuKJVk)(g#`BGeYl%ZBQiPf9H(6hy<WJtd--TaoYf=piu3
zq`8QCAu6`Vde%_}Gnf~rI%59?cV<HsH->X>S6INbaYE92-4Hnz8>&*R*r#gqngX0j
z+#w{&w>NJYjLZ{C{l$TFSmd_pYIJ92u+{<8Q*hooM`ela=;23iGJu*5P=q{ig{iJu
zKk}Z?eT<D#DrF>+Y^C*ucl6@v3w}qVsw>P7P2Bi)Xr|ahut*X{j+}J<__ddi>=zPj
zjL)L^JIWv{S5*EISmovj{;mUoa*Ii@fyj$JWeNJ}F4XdQ<@Q|JwTigPJz^%Z|J?LS
zwJ2}<w`(OOIN}%nL6(6L!dI?^v0<3Qdr{z$;J0(Y8NeNK@%b30*G>;T-gZG~(BKNR
z*!3STvy^o6R2m|ql|=olk?qvsdjrOQL-YBvD^>BrfY8fh;(LL9U7o1O5s4k<<m*LQ
z<w$CU{sqlhQ>z9lh8#j^lu=fhssi+}CCN!|jW1G11%KTF=*owL`4{;1+uPqwl#N8M
zgbN_L9G0TN;*3-jYM&1Nbg6O|=4QWO{m40NW%d6{-tHMw7Ce51#N@);*9v0pW=y!)
zziGq}D&+s3=Z(tfDE_*T7-Duq{NOxZXMDG*l8~uXr7T)-d+wY);pG6#{jm10)fGvp
z!rmLoahfkAzZC{7Lm}pM1wk=wA-}lLDn3?q{U{+`xLk|Zv2sm9x**^LqT#d8+dk@!
zE35TOC=k*Y)}}w@^rO44hWuZ9kW|LdGc6?y&UY45Xcl)B{+{~K)P5XQ;KQlJ$=^g}
zI~Nh39DO*6@KFfYb#X6oUJB&1-OHd`$@sv=<1H2bQA?>*85A`(D1D*m;oEy!`5UT=
z<CNvEA*B#((8`Q-m19~0728tL6kd@?kJ~@TNOp-7PiGoXfWu=1So^P^JS#b>2!G1#
zi!UtTZ)!LDU?J`(aIb=(C#jwcs5skQvD@prjK#5`;nsOga1;5BPr>g7l^eg<2Id+U
zyTM;C`<_<dPKV+uHomOpKVj9VL2(3uKloMUVxF?)4q|U$xT@#k;Gdg;aXKPZ3I@Qb
z&TFYwq(9|01+epA=O+%Y&{hTPL0uMA%~(oRHX8c-tVWndAp6)wm-@{F+l3A=sJI5)
z@aPLWadNFXEe#lfZV9DVAN2_ILf9_a1f>vZA?P85Tmk`aDg3F4<^^<d!>LR>^D^ON
zlnh@F0+pJfB~pFj^w?Aj@AB%M<b6X~HtJuX4bzBY{=;uBG{~Y~;PTd?vxPOVz~dd~
zVdMfk6VYM_Zi@sw9OcV7R&32ktit>?sU7O7BZGg{L9HORytEN8nN5VMkWdPovjPQm
z&MZ^0>5Q_c!RN~kUH%G)!GTj05RNCwNYBbx6uB+H#`NzsTSbG^c%V+>y^^Jau(J_V
zHPa2i_uga&jx%wYj0gq}ZC-${<gb$Fj-;2&jfyGGbI+CPx~t#sT`*FgaD$W{zawr)
ziVv3~m);&*XSNSR@Hr6rzjKUNUKrCqpT+-9{;E1tF%LQ!OlD;}XW-BF#kT0HHo84A
z{5bMVWX3S!RZ;^(Y6BI#MSCqq(%#`133TD)m5;Mp(b%gE)Gz5QTtw!F>$89ZKS-%G
z^g!`^{y$01FR57XM^L_PM+-&(g3C=7RVGb-F{MB`qo)D{K^>autcAB^D&5gl*cJiq
zzl|$rJHzluYnHdjMn<@o1+Dr>aHd#wHP~3z4yF=N3$&h4B)MVf^G6Kkcu6TT_F(B#
z;ZxmyVTc~HPjVkE#EG;EnQz(rY(o<(0KOxQxa@ww(e>|*z5p#_gk5T1E4{6Q)x~%w
zz9MwZaFFk_!DLNt)Ik2AHx(&Z%{$TO+*7iPI;pGfXOVfl%6@%CBycCJc-`DJ-T!Bs
zHVezd^cJ*ZX{}@!{`pLO-lVa`c|yGKpCq~=$jqRi&AMKhLuY}iKn2PeF!ee-eh22A
z19`=EF#tkBl^I2t4xT4K4_QN@o$hE$kGS2tYC=uIf3dk@w^*`QZVnb==adY~oLBho
z^R11e7!UC5$mt=sMVXu;{Eg4^IH1_W3G;9<UB^_eD<TWyGcJK)1H>!Ez&#;eueDrC
znhfM*tnAH}p+>LHZQep%`Wmd1Rq;<!IbqY^gOmeh0^_kiCVTFdLe<llEg%2pyYHS=
zI}*y88=QX~R=96!Ic4{p?!I8s;X5Y6JDV-s8--a(7h;Wk-POI*tN3LJUax37#~KX+
zYn3;mJ0)BFSVm(@0})Ea2%>vPD-z5r-qiTlXq#DAk(>{A{P}?5Z3tM~4oM7kDPH<Z
z&<>Le=VGnZu-p5q>8}OC<{XH~$<FKG*!{qkL0<=jbcdyggEMqVeL&YN@kS=TcY#+C
zOJArUog8EOW+Zyi1~0E!LTsb7=>mbyDyPk(Eaa}C#Eh1^2u6QojkGmP-OmoS5^Tac
zPJokp;7B#^!?m*jz%WF1#NTbjSE&Y9`@Yy<PCEXwQk5ArYKA<?<SZH8#z?SU!w*b|
zD<mwd`)piOZ`Z;(GbHVLAXz$yRA+;KHE*EgjDiGj(eNo~RAuThA$=RE0m?E%&!u@w
zQDZhJ9Zh@#KTWJaw4;np*)WWOq0X2IOCV>&6-zDu?a4K@C>7`9de_4TcWKDdMor4v
z)iJ+1*jpVIA@rK{1hZS<2vgSZfn;%m7krNc=%Ek2QUeK)Umij^nByiS>pd|$zA*J7
zj_FnS?t89b_gZPI@BKaR*>X-UAk*1B9qV1ud4EhS6~4KNSV($xvY~Yn+1TnE&{jh|
zWz;Q_i)zq&c>c$pi;}l|B+{jJTVue{!TXx6PzG*arx&PJ17(b~2X)LwGqi{4B!)dt
zOHsA3D->EH3*{OjU<kuF(8P_}ToLeDX@tX4Fc~A+oGJK9l?(XUaVH?{POGc!t=-EA
zTBIW=I3-pie)4iQwYRPwcHR*emmi*JOir|Rsy}nbI%}}~=8N)Nmx!mWB;TJD8jP!g
zk=fB+c*q{6meoFLl8Cgl8L|~@)o)<wcGeJEUaF!4P^0Zj0Sv?bz~@KPeaBih6ymy1
zyMFrdx18*QWQ88yeSJAzFFW8w98h@&pk%l|Hn}~Luu5cdnV+POVg92k@Y1l8&H2u!
z+2GY+q9!-<e_ZOtxQ8PSq>*k0rz$7*-Y0=ixD0<4U{!^&XJzp=Ep+HY_zF|X1$}Dd
zp_|K9+<;^|OOnSp1eU1@mx@>3XCA&riYcKdWe`8@E<J#u3}9Se_F2;%tgVcFl<D4l
zmkmQX>qNu@Jqs&LDt^ye1ckWQ{&Beh1&^EZH~<4X7~Law4C&xckSY0pvl((EDG#HB
zdDd1<iT?&~WR7*OzaiFf;9<0evkd^orF=)WJ%>;{>lhy^4oKP{cbgll(FTWZ>^vT;
zA8=V%>(v1$S$QK5nX~rNJ)RC=s4j?wbGdOjR6xu-!$UsusBqO|qAlKp-A{DIX{=02
z1WgZ0l>Z)m5;^*5g7eh^K(5_-C-i$8M&=aWj-4vS%&?JVlf)hcRq@PJ@$J`8m#wG*
zN$(GCk<)1e`&z|>c4T79k7!RAIZQoV&@OpHzWO`4HRlYll*;D+r*ltHVX?*kWM(kR
zG)7=5RH`)aKbEyX*~|n`(}1E9Ih4TNuU9Ven8ON04Fcl1E$EIK;Q1ckUK3*C0pwuY
z%5fn0tWrHPP6bj#vqi92U9FXP^E@OHz)}(4K0|E_dsRSI#V8Vxju_?w&}|vLXl;u5
z&F{%y(<?MG6&x%r#s!WU8KH=!2BUI=a+-bj#VS<NGWk?nQnqQ_$<>eYWf{!uI5$z}
zU<Ov_qF_TCPVlf16Z<x*AN^FQw{T4iJ;o>#pw!u2(7W_^5j(oeYNx_29WJFq*f#}s
zo!oqO{Ii7@=VSn_`D8bB;2)tZ44J(Mx%=Q*r^!M~aqh!Xbpps}HTJjA7G>BQw>&c;
zOPqi-H<C?-Shy1z2sG>l&TiX`z2Sv3qIQ;**L7oG?dNK|$g!8FP0NbrH!{bc!4us0
z5kA}|BwpVsEV)yPZDsN|j2|hHWkndUPwAa{Gs=VYDs}K)h7B}#@kLvZQLr(~w~K;+
zO!DeN9X(g;VBOYcraLolNq<%Q%uGy9{cv<v4XiHeJKKDCfrceIAbPq?N1MJ0h91q_
z+6aC6d6=4Qy5uQ3<cRIlX1H2rwM|vLJU_Fhyv4LX3xinEh)lW<#4wDN(|V>52jl4a
z1@ahy4#C@y*&Ex>5!$F@ccM&7dBL;4<&Uv1qau`-;U**JS4-AU%&f1Sl)iC%>t&@L
zsh<&>I&jorxqa~Fx^4D5!KU-;;5$kjY5+nAs6VnfFy-Fh=<oOYKyC6_f1|W)<Qhnj
z0pstwvNfpe$2i?(h`t<<+8Swtf)pHEpWcTK?h}h=^S9G_{#YFo%O9~C#tb#Yr?+=v
za<yM6EB6TGO~^rDYwv;GYrW^9epB!DehpOZN1j{<Q-1R10k;C<-V*%oxLY4x*k7z=
zad<pi@?(67rAt1V=v|Oo=z>!&1$m=l(((lUJwa!JvSN#RrI_TFlnS+d5%+u;dR8L}
z207p&2^pyNu<KTM`A_CW?WwM06!dH_77hFJ!{Jh6k=pCx6e(MUl2@L!)@(g-&>R-F
zqh>J-0w(&^P5vPIo@VHK;Ok*e$z%_?Wyp`Yvb#?+FVgwj-~Sc=-s}LOl`mGQM71%6
z-qVDS;<spiJ(K6aH%9?JUl3SxAD5p9GnRtrc>0M$k~kawPOX<H&)hULIiFOg4gO@g
zMf!_RE4a71zUmmk*1TAxf7KC23H@!*w8!zKu?(zv5ab*l3}WSrNCNs1FmC#xB467#
zH=Vwq5Va-oKNK>sn;qPq9N&`Y9EXI<`J!;4kqV240@eDAb|#QhdoVuYJWBWpeUiQu
zPbW~<S7s1qyUr2?4392+{xc7XBLLIr4-!EG2*j%o_UxA!NeOYlR!6k@&Rq)(T>=EC
zz81^!g+n({<YQ9)(pH`CSPgX5C)uy<Sd=0?bhnaT_8u>=R^H<70Rxuj9=>lTECG>E
zRm{CZ3|t_3+n_P$dvc!r54S?SQ&;;fK<3B&Q2l5tqBRUl#G9`F$*Rm2Gh<PDHV+qd
z7gst(XX1>64|m?s#}+%jSfJWejAkY~_yL_zahM3SoEC8LZA%iRbR0mtJtrFYimU!a
zEV<-WMZlDsuo<M8CK;@X!XB4{o_=2(^EwpWG6NM3*}Zqx<DSuTw1m={g4QZYV285l
zw)<u1DyJp!<p2Omr+Wu^biCcDLw&Dt4vy^^A}1i!5w_S%bh2x;f*@~me|b;rR71c_
ziVwKeKt$k>kw<foCAhM1h?MYZXr~O7J;n54i)#aW_(-DAwpNN@{Bm8u#Dl+-gMy-R
z0R<dNSQeBTg0<SC*NG$$5x$zG&8@y9<qB-zCLveHkCCMWK2a8&WdX-D<cD3ACw4_Z
z9<9b^{%rY}0^2dw_US61&CGjcxx<mH^s-5lR0S!A{VHh7IO-pYI?w3ELwt-E-#B9Z
z+RQ?wCAq$Zzhq!+kEK6sFLMo#oEi=kWF1LAZ4&B@o2s6CK(6d4{nH`6!rN3RQyo2x
zmj59myZsx-Fddw4KtEBwfYi8uNSNSNlm;Q?ZYzWpaR%*1wgN0&qeF`=+nGpRKDuN7
zVPN51jNhHH%YQdqu)%4w*DBnIA#0aKL)I<f)#3A13Q}%yp}=Sep47zLaF1|%{0{$7
zdt{&F_gc29m5Z8Lg8vW48jX{`!bHh2qU}KhAq7Jmt()y`pLjunc7;ro-k){P%D9zw
z9`<r~O~ri95EaV;E?y=sp`AboZCZ5^j}>?hAW7bqa;I2F7`D&<`X20T@Nxs&D)Qlx
zsjU!U+d0|_QPn&RlWUntP!WUs4i){+Pg1VKvYbF<f4@sf_MMI8zZF3M<E{jv@wC82
zTPH#sg|g4#en7)wQbDZc^^HLJS02+wQ@I6-5OG{<N@aZ;Fu6M%PNuT(CM@>y>FMKf
zRODxU%jUWBR}EKV&C)t7SsmI-gU9yrW9Nr-^e+2qX!EFM@nm-MX3H;cSlu%j?Np=z
zM#B_a>xTiDrwM7FFmnxj4(=Mpth#T(K~!JiP-bCcZw}Yi?n42l6sVc_47jN?&8I<5
z;o$N4>>R9(w9EGd)T+4fzuGs<-q6?4l2MRC`{o8*crkklcH^F{j_~@?o(6@t8(ims
zoxCcB0HW5Sg3A}L5wt+%Ul}E;8>KmGan}=?pF>4wD@$sBDj7-|IUenIiY!h^EIHbs
zgpY*BJ|*&-;YDcDfDwGRYQ)GXE;Il_ib8DLadmJKdOzu}ID$W^V;~V#pE+YM0~Q-@
zt|jP;W~JZYk41k!2h&@o`6SxFD#P03&UIU$<w%4|C!=;}XNl4F5kE=4keQm$0o*kx
zCATHCE2i-xv-)i&oDXx?PwW@BQzJ=ua^zR~pg3_8AfJNztT}ec?ZMXIUy6_2TY`Q?
zU+G#kJ*bKnzl7!LE`uB9uuyp#Oe~~Cie;rdY!p4BQYvlU`l%m8svDwW3&QNfYBYgN
zGc7Q?MX%c0FR+Md7pu{+D6TPOa`ePZbNe~={J@l`;*GD--8$Hgj;5?^(CW?*r-EF*
zr*d_mV;oCLYs|vVBbN$p2hO#Y=li|H1WF30fHwW0MmC{)(f&e3PI<Odu_J>Tm(v-2
zs##9Mqv}55t(I6)Zms)_Z!ZG2!feGk&Tnbk(2{A;IEM9$FjYKv#6x9T)J!Q8DUscg
zAGq^|=Gm8B(1hLmc-lUkWYyy;00BsZQ29VIQ4`a_A0!nth!cw^*P#PR2L{c3nLauo
zzmZj~>^UyF2@grZ6Ju6{nklkBP5~qk&b$~f%%_}oY3QPNHeGF$cf3Ahg2~Xx3@(Nv
zOk`faevFBpR13M?EGY>IbpC0JQ9!E)z606Ik3T9UDC?juA)2?ivBQv|ON<A#LD9o*
zaj;{DIpVvSIT7>~#Cg8<+%v~&{w?DC8!dG|-hHHyN74=Oo^Y}@5!%<mZj68&aH0y!
zD%f6dYKGkbJ6Kxvm35@Fo6+qygM%yJhq&&Qkgm|hHTgF<0vq2iQxIzB8PJB|6s_f*
zY49B6<fEWg1JA@*HHM9dhlNkHue=fEclh&?JPzC0Z^pL<cD)$`@0Q=mIlJUv)!mq=
zbZAA7s@^2;sbY=#U~8PfoEGLW{3tyY1jlz_;z1{xOtrXXjrRSipXQ7Yqp2l>Vh0^W
znY3~C3)^H0Y(h#hudDvg0_~f94lqDp@qprE>3u?uV>qp70FRfuPxL`fWI#rNP!O3@
z>*pQ2rpGEa=~CRT2=`D%E=X#-AnbG>`*Epi>=bd<&>r<xx1Bc(>{EWIm@g-Z??vkK
z+m2Mjtd3)LK+WDzW>=$*o)deY)Az-D<FCk+CP@aR`;}>F1LM`Cwv~I_rx2Gg!F)j=
z+h;_0qy99rt+N5IX@0+Z4jOEZY;*QDCKcSt*<|Q6Y^Hn^HS-WJZg9Olr#@W?FU6=P
z-({Z(nwt?75Q_}L$%=)I@(qT#U)GGr^QCW1p#k0huyfFm+BWaCLacan-zk6!W)d?U
z{^d@~#wXLqTLg7$VJ4Y~F7&si$$4qA_}(rAbd9#M-zM<|oE%V^y4J=P;IKjllq42+
zfE+1DQ0=t}1NUvNpj67HRaHZ5rFm0|p%PunN<!t6sNevx8V=Pb+!(BrMx($%onr7`
zCUGc^>Ne$V;H(E+KY$YL2{5tw3CDj)9vCG0BPK>}nln%3WX=#<y)-h8x{hJ6OH2Q=
z>i(fjmGqW~+15IuJ&K?8RzCNtT3?D+H_akq+&Ko7bf+f~+3q=}`r@ylLkV2tgI;kV
zOoC5hsV-0@?Z>Y4+{I0JFjd`!km`;wsmQ_5a1Vltr`b?U=C)^#eGj=ECvN<1FGX*!
z+s1`s3`OmCFg|ntggf<VL`?;BYTI+m7vU?jsYe&I#<qaHsO&7>0FdBNmSlPU2c?9T
zw^h56wadH%g*wD!0Nq`dKBU-P5f$s*iqV<s)8S&d#ilPd*TzlG$t$JhyJ|`U4H-%9
zbmzwA;4~|XaP$g;=0Sa@-4^*&d){Xe9OGl4?|N+|EIQX;krES$qQ+kDd74--?Y`Tz
zn{U|6rMHOePPQL)4X_Q_wMVl_Fu-rT>txrbFOD3HR$*B|QUwUOo6A>ByngLT2j`?T
z7|_WK?YJJHVk4of$wxS?>RFDp{g44Efza=(ot#=fDgMHP0&z(a4lb1N(s-$FFF}$E
zN%7qre&yMI94s9q^Ds!>Ji|)i<*OQ*JG^29!W{DQ+imb-vw?b-5$40K*<v!4BSWa(
zsJj<(?@27I1X!JHYbMyMg`*o6iTq2zaGJA3#y#?z%4g<RAQ@L1Yw}n825|}-WbYn#
zbtlWwi=XM|zocai%F#6GL(w9&f%0!stx%|X7I%GME(qfFkcLRJ>4|6X^W>?dV6<Hh
zVrI{<GlV!}5U{RWwWtFg0zb7oW+0@S^TAAD;Sv>M0;uFOFyl~KL3k68B7z3#6*Yn8
z#6zBY<jIlz(a{{Q6bZKt6y9sh-2WD;MKg*%LRFlbPK?92acZgZX)Q>Nn$+t3*>sTI
zdjyG$yKV1jv;~T@Kcvnrs#@)Uh<gRF3WHRQ3s8WdSs@U-M4bns%gIOTL?Iln<WQ`4
zbzGyr!k*c6+~_PMqpZTU_s3*`+v87ohgX-;?d`HBUx8_9wNsNK1F|(mBrYf^u9?S%
zM&jA-)u((rjV0TFHEwnqjd!vbLexu00Ywz2Ig4y13pN$)#;#wo0`b?-G!k((1az|L
zsirRI!>Q81pd<+9^9ImWwox2u)O=HQ$;pAGUI(MW1kUt?f~61dP|O4DWsXTqqI1x<
z6vXHI1&`4G*C5X1*F-}jL$7DpthxZBz*HG?dX0GB0(PT#WEHtDkP>Yd9;0*qAX;5p
zL*<mMwTJ-g=f%re&e#wMCdrh${;8yQnD;z+qvIv1igKc=U?7RkH(RK>lOKHS?D>1!
zXZ>xsL%8%yb$Hz7%?Pp@c=<-2Zz?gNH>}y8Fe<=0VmY9JjO2Tp-8JjgjTZ5^&wla2
z*J#6tTV2YtHpoZ_B&v15vF3l%#)s_*(vzHSOCOPIyBkrl?=iD0WzOzeOZ(Owcwlta
z7@QO+Pyrmg2193T@fIF5RiF`fnd!(yxXZW?53#~r`&GPF*+OgACGw$}D+UcyPQ0~G
zm$6Dzl9n`(6|v|94byY(enNq{z(a2@jqwmqRn0>En?wx%$oh<xB@=Z{a(~;?=QD5T
z(k!MOnhDlYp=yy^-7Vs~kGah+xi)V5IriMUb=ddzhalg3!3EuU=DN7=wuc4zZ?MB`
z<TM|SK$%o+GKrm1qUYONBFFIW{IU@LlA=Tu=4rWE#&Gegb9eHC5g@f*c$t>%*zabf
zYOn{|7<R~*PxRnL{SZ}{@Hzt<@u~tqgqz8?Y*|U%_anw=RRYC6T(*y^JWHKw!4Vtl
zN={R93{9c<D3S`SgWs84Pu*kTky#|~8AB99!*Pls<b&6c6O$%EAbl_aQ?(|S4wJ1a
zsF=UeKKlllhmh%gYl(?Yb!~Lhp~uAA29^8dq6>6z3W)_%PLyDttcw5-Y|)pQRe}{5
zhnk?Kd=@Czo#B!V|A%M}?6lX1*jiYTJpyirf@q;ARxFO)!9-!Rs|WB-LM9-02CLVN
zBeYm=-}qQL{k7f3$k3D{YO%%J8MOWJA4J85u7otzU2O(tO-K>)H0Se>(lEgCL2%!%
zC17l4oSsf{*FgBQ+V9XBi0P`Ql7K&-<=H(urJ)%x?8p6%H*a@dH*La}%pQ9B_N@bw
zdGjkKHNCQTeC2~~#>KAUo-Yf$xr2&9h%z0G6Wtyw7^*W8hBlQVF*CxrFnKQhUj_B5
zTWbzm5jQv6jfrUMUQ^QL6M5JCNS8_AfiKt@%lKfhXkV{j-+Nf^5)3tZ3?<;|rwooN
zMr}ROk-9+>rtCBMlOK7FSTd$DPp_B!YGpJ@odnDWy*}1;Ix@-;%CH`eo|df7T)~l7
zP;fqyd&9nX2hfP$7iW2+BI+Yk1`e{tX2?C>nkS<#8vSSdO|8dZt4CLF@<mWH1+sY8
z>A7%z!o@rSC9?eEO8%#dVa}0^s+aQj87Cd4hgH>2i$~yL8swN8n`3}mU=|Zz6`>tB
z-X91LaF4EV6>|98K}m*bq8(kJGpH_bi}$h|-RsD;>N`~rM<H6&QPvKKCpycYE;^iQ
znz&HJb$N}TCWkWiSFqI2JjmG^fxrx7Z*WiKG#|+w@SsxB+_VXcmas?320yAw!7iv0
zY%ySHQ~8_Z3QCXV3#&BuEp_}eu=(`(a^8HCE<Qy&2djgRl#}*<pP6ejnQY@*{>#hY
z0!+k$nPHxm2L1HD=2c+W($ScIehj!?2es(fhPi#lRL#5}N&e6>>i;SNW!VdKcj`R-
zgQWc2T1+*<*ZzD(7lnVO<88roWMGFoT=b^g=c)FIudqPk90-kVv;kK`PM0>Fo`$9?
zL5@A==C*X_ML0GK830$%r|bhAKE<O=;K8?jcutk|w#k6CA(fD_qi8%+Z%U@0=@y}P
z@agbGUI8l#Om1eTAa)9~S)xw65OTUn0g^ur&z@W8+IfoBaRfMWUa`P2)_W9Wmmde{
zTpY}Ryfg;u3(fWkx`Fb~@T?$amiMGaYQ-AOhELEC=5WAjQ-3MJ&|Q+lx!@=gP|bQX
z0s$gOHQk#llZ%X!M<xsR5sgRaazf{Lu+3^KMFYmUzGAw+O?KlSn`TWaNFX|c5-x>H
zXBa$%@1aPqw)yKJ1tvVHl)U(e8s%MV$Rc0K%2}qrDbD<dkjN}6sO=A}xC)KJvGZ(F
zvC!8sBEXUjx&=!}a4AC@E&_qbj^+aNQHx6d$X)7(Ic)T6#z!ppFAmxA6VL&Jf6r2;
zc-4yvodF5gLAUjsE3p(}B>SyAOz6DWi{Y)uy6wt`9^}AWeG=@V-5~!}dG<*d4#=;@
zxH82ur>NKKLn#!l4_O*h@miY=g6uE9%^P*X-xGC0+3SU^=YvpB<OyoUC+R$y&+<hQ
zw?kus`#^}QPSKF$)0c?(y37M%+dQODcWsztz88C%6gPOeb=JP>34UrAAVwe-c5WBn
zU?w<9GFG$oWTEw~H;!h5)G*Hq$kj-^Q%y!Ab>adhK3$3xp0jK3>Fzemw1#e6pJh`U
zWY_9{`9PLyF0_4=z2}2xiOD8osQ_D+PSU^$GMLS6ECM=u=ZrNk{ERVB9}zwz!0i2}
zhaI+atUUHg)uAs)(pz~8NO|;fD2Kt$9oLG{@gn<t>_^~!L`j`iT5|inbPz~U(6kH2
z1_K_i_zkKC9?WJHovG3<3%3Fe%GJ82+l!orY^%Ndus+R)wz%VGpdqh`cU*+s{Hedc
z2vFn~s|eHzST%*5a~pM!Uh}oRX?>?N4EpP|(6lvb!vBItk{{1+EX+4iRjYA{mRiD=
z=5E8#5#h049X@0zYv)pTbu2yBYLF((%WNzxxr3V&b%noJ(w*fPu=ns@*`k%F)f#WL
z;vNnn=0hAMyPXrbCSxWJV#g`;SP>YQQ@YNzN(R!C5+@q5OZ@Oglv<YlGY^VPjIPp;
zDHQ8F{>K5YFZ|YT0lI?zvnSDikosy<P5Ec!J-YB#M0gBJu^wuf<e?%7hS$?oACUIb
z&nx$sNSyRallVZS#hezBd`%h#i7Q<P7iwQ1+J=X%3Fwz)_}E>CELgT%YKIiA>p{-*
z2=R6HjcoAu#mVBDq$7SET18meWnL(Rozj89zp^+SYv<PvzpNWyR)X-gQt7a+NdU#>
zqvD$Swua;D(Irbt#&qwvcDivj4y=b@0+_C#8);Yd?b0$=!L>PbMOog<G!IatyvWq@
zOIx5n@1ZP3v@avsp3HGWr7mKOf)^FCCp#SqTYPqvc7KMfu<Q@COf>HZd|9-4G>0(r
zJXr)bJSIGy7|Kj;BcSh*EBn}$0{7{IJ{1DlzgOIbIr<2W-pAHJ3Ih*qfOUs@#L+iH
zOWfl#Y@I7kTF!@pC}*0FvCB!vKOB%IH_{=vGlMWFCL{(I51@}Uo%D%y^n|Y+J|FG?
zs$g(3IXSQ_hzLSzj~>_nF6l#;oXQ^!nE1!k{_^H40n)T2R1Nqv>AFh!#p$!=O+R5t
zkwTm|e?$9Hw~J4|dEb2ug9>5Z*VuXa(|^FU_Gxp5P?z<V<lErxLpki1^10WCE$SlZ
z1-8luLbrX&gcs-F`JR58Dr874I^M@6h7uFcoIJaBPUx_WO;8Y4JI+KH#9MayE4K8{
zTT|Fe$yojv_T-Wvs;{ml^NSBKiarwu&dnn1!KDzaaGjRS*sYKMWaf${ZWfTe1E2F2
zPv!9rp*=jBts93o=F4J51AfpJy=4VeZEI~#!i}(4@~)!cZJclpn>{&GKq8%^J<UGk
zQ0%=!lxWKmXj`^zbC+$~wszUJZQHhO+qP}nRsXbJ=ic6b_qEPy<;dn-F(PBFj1kio
zd8HcXSeeq)cRbLksD7^Zbnv|*ZIQOoHf{KDq%ynsdu&zt(;lJLe(pUj#^~(jm*hxO
z=)C~&@g?jEv&q?3TPBe&-acFNma;tTRiq$1vrPq$Qer9~iO!@bxy5%p@m|@Aw5!}(
zUW)RkhyB)B*;#onh_<|`-1AjYM+C}M&5>jERrEU-g7CD}NhEq#I{Cz7wgbx;PEMlm
zY=jwx@OloLN+PKTHfP))Mcj36JdOK;!u1Rl!#o<6EkbTZ>v~DrrF}mvr2g+8x+p)8
z!kLz02n>dCPCeCz&_khyZ<4_*^5qr8gxu@IVAu8~%M9%JcRn&$ey@hxSs^rThzLnj
zF*~8|=+xEibEz&>fx4BLqU}{iNN`i;pRZZtjIUgSReE~2$>;eSq$&t`9wGsr>caY4
zub@0MhNfMw=Z16M!?cZz$A-Nk`1VgrPfv}tHcL7m5}5Q72?%XeUy62j;(2)^hbLps
zuzefx6i*5bGz<3tbc3-))Km0zi6KZ2-n5)R<Uch%eG`!sbveG;#7=@{7nv_U8D)eB
zpa6N;zkLAzKL3XRThaen{$E{q{tNp*d9oGy{paTY{~hmtS^p=*|5aeS{|o!S!2aI^
z_P?zE6E(p9DzF{?4ebA<{XfdszW=iRFRcGZrHI?Vu>T9}e>3)fLir!<{I4?hzk&T<
zUfBOAWB*%<{5RJBqm2D;Df0giw$H!E<A2irA7zn$1N%Qw|Ia>XyZ`_Qw*bpP{bV3)
z0bFW%j=UcJl;F)H=LOsX&cSF8nQpCUIX4GW3`6y88K1TQJEjXfJmFH!bH_WaaE1ZD
zb+WpfW77|p0e1n2e`;B8xr$nOF&)Bl8*zMI5m&Dcse|ypkqk)Hso4y5__nq(3PGEp
zcjh#(JuN2$Shb21e`#pDNE-EYSi>m-d|=a!I|OYEirKe7wjYXHzqDh`8BA-*!xA=Y
z)L7^D{EW(`*Q2NRHjTg1Frve*aBzjKC0lxPT0%#ld#ZPt`+lB$3{{a3`Rgy*d8u5A
zA`V&^LS+R!XkrJ2Hs8xnqE2l`L2tJ<EfF$U?$Gj`XFbW+;CY;%Qqmjq7;t*7^YwhH
z7gW)RXu?fE_lC>Fp@#TmwCn!NFlN<V_<?Q86-^aLwG{PVr?5W}9c~fNkovea=)B06
zX&8Gc<C}L!(!ud!9=-HFmkJg*NW+j5cWdYYVDD0QYg9P!rFsD_1Y7t5jGQECp1+=^
zw-=2rha8J}_N@RGqHKngR4&SQ&dD{Y9?u2J7*nm)<69uS<3th`je?3?h~AB%HRwhd
z-`=~hK_=NQ-fB<7);O+UXhwC@i{=8z`Hw7Q--B!)q;6=xEuAghuH5eEX%&mvorP<e
z-d;qBi-tZ4{{mS&0qWw@BMQfI9v}#=A^>c^Ce~C@I5hm+8QQSChwMK&kpEI9SY6TS
ziBi<lbgF+CoZo#z;e*MKgb3GbUi*gwl^xX6#q;bl6f4mLd=^XOp^W0ezKInr*ceDd
zQ$q~+P+Inlj0V)rPV)K2!gqq|!304JNEtK9Qe?!NR&NogAqIVA0NrKWc=_|GfobMo
z)95KJxLj%mHOm^_f31}V@0^@Q=(c7Tv(J!t*ub?UTz+oLAz#oyUqItB=X5cx>&(O|
z_%V2;R&pyY{8bQQ$d*<5bPXKa1J=mNfm_gg#sMKSwDKMI&<8@nN$aAVJhbd*RYS36
zeEh&zKv6ZblfDjktA#y28(RmM;2N(0Kv}DAH>E(Ws!?pzF@RqqYtfQCB992o5aj4t
z_0rS2xw$iTR=|t|pTOm}!ZE6V7@KJcw?wtMhViE+O6#z=$SR}mQH@9b275IZEoGye
zlrB%{3ZH8)2rpmZr9&=4Lz@Z4o|3R^tUl2nQNp}yGr8FGT~sCux~K~v0G%%r&}u(H
zTGiTIev=sK@Sk@dA)_)$d`p#Sbtf4?8^dDe1+Z#Iy|JHq!<H-A(`KsVevUgs|22Vk
zTeETJV{?bVAmLkq_c!?^l=4qWM<nD*VHGg>H2|^|LVFRZKWX?G!mjY#Yi1I^i^(qp
zRVD$FoUuFx=8PrR8b{E8Lm=_ed=b(Rq-TPiGGq%_U>f(FM-p6>ursu?u@ru9(564~
zN(CP$yJ#WldzBBN>PzEQk56W|T46kAX_Uo)V+pg{|LZ@EXOyzi(8xqOe1+@XHm*qK
zP*oe*MUrtW!n(P$0XuUS2r=}7FPjWcC0EJ9Ug*tsmohS6p_B3kwfIg{Q8#Aj2MGL%
zN1}G4aXw=4$<~KS1gj%IuX!@y`O|Mf?!b{KIWCo}3IC@a_ryUs@eKabnCsO~PZW8v
z0@&hczmWsWu{Zn=Z{4ocB|c-8YGvmDabV1j(s6o&d3Cg1W{U{O6aO_Y(OnrXF#7wM
zAl_B>l)OS~YKA18Die}Jv_vmBs|F)i?)49J?y%BY5!y*#=u5b0$hoB4i!y<|B__A<
zbF#)6opTe_44)jsCsBfTbEhfjI+b%OyQu8fWex@odFi~%H;Stta7`JnL|t`xQ!zuI
zP5%}EY4o+BBgd<I^zyZgYs+#aEwa60u0X-D9;~vae!9fUkKbi+_TX=$TWhq~CBCtz
z){h0_bD&_zhgaXi729y@CT@e{so}CLRqcw$^R<vW4fOf;@1f6OU`b;RzT;1>faXf_
zxHjb5^+~6N(;ep&*xt-%UVVPMM9o$__Jv^l`$eSU;ocx!<;_}2aAg=n6MfC)(l{8I
zn;xc+LOTzBWbToO`m;h=i*v66B!<-<_kMA?OfDQl91-5wSz@@T9o+zGUS=0JGGj3X
zE8D{jI3#Sx4eI<3T*mxPbf}Dc-$DYKtUBXnB&~vR9RbmbpO)_Ywu9foqy&&-YF~&X
zJ>0rSIww@zgBMX-*t-67n7e;@2HY4>t)`v1%m%g|PfIe5e(O~FHd&g!OojZG3>)<Y
zmN{PiKtse;x8)lGF&l}P!>>;$T2Q)7XMUqOjo53T^XX{8_XL^F;cxF=&}K70gX2zt
z3u}xTj^3P=jkY>k%su5UOeaj8lyusVrw74)EE1pd*hTZ9*d@$s6F0m$HjHZ)yAn7^
z9)Saa8Jt}K{cXMsO{haF44&1q(Q|eQT$rL4sR68Z4PV_G=A<v82qe9}24Ak~BJzS(
z8ynT$uc4e<<wxfoypa{fyOt1||4PH;y3GYvZmUOHKfds`DVAhx0wI+wD+hE<=u@Nn
zedXaJ)ajPsAjxZ*H*i7@vO4cxhFTRzHAH@5m1T%Fx&prw@jgM9QX1syh0!>AyuH{~
zCY;Y-NqEXX;}iPrA&LY%j9PSZv>H<%qr{0ldlAJCsy6IWvI|>&fTekZjHU(V;4U?^
zl((j~FnLWy&X@)GrHa0U8KA`^;Qkae4H3mF8ANW~UuS_OkRc%tcQP%gfl|En5w-v!
z`OD&4$McS*0%%Hcx|y+?xi5`9`8{C*RV(GrdasjKJ}LrZnLfA)UxZdb_wY_)XDgd1
zwqTLTGA7~nk;Hou3quc%$L>Ti;^omoN5=1*3te-nzNvDz8HUA_fK6Tu>BWQ9%7u;i
zkp|^zOw7itCkix@nL(<hV1F^BaRKyPB5&Eaw)b|1IkX`5KEQz@W^n|F)+d8q65Pdt
zqd*8#K%RI!P=RKUuLV%CDE_3QX-HV~1}AL?EERzLBaYtYwlKtqAwpQ)`_+!sXEA3j
z<9#(B!Ch<RdDeEC1%(~Y{ZYb8QInS6h~-4jbkb^eh;lfQ*#Uwq3t6inxhQTee|q4e
z!X*|r(dZCt)kGi^{Alugxss&JV8D17i+T#S9crcA>TcrG$z~Zrz3UW_4)4^c#g>!;
zD%qf284SUkZqn_%ZI0AsTa`dbwz4+M%{N2v<4w>#W|a1%_&7iU=MtdkXN483V~|@-
zU5U@lD0RGLiBTrNp>EG)3f#Gu?HA)cs{Eh~g`42acIx@3$L0X9XDE_irRkD@<=I^<
zzs5qqPpOewtatH?zYU}y>({*YH^yxz0TIfYIvo)a{!89H9~2hJ()79c3u*6q&6V%Q
zNGV+MHv-m=#Yc?BVE;oZXwaRSi?;>9+QfM0B5QQpfwXBPx480|$M>TpYeWl90pv=h
zFi|{2zEgk{Gm-5=*L7Y!HaiXZ=zUvjkEP+-DA3FIQm!K?=bMkfG4W<ybKi5jrle{J
z%#=quS6-cF-Y&ab-7QO<+xpvtlZUUtCBRGr37km!JiD*4WaSZNYiPVkKR|7Rm9i_^
zux^-QV7t^!xi0C1Y~8#IqHM>&GhmDd^QgTECxxx4I<Fi@I32%~b3?f8*``r-Cb706
zg&!gw01{v&smXuwf&Kcx52GPN$bJR>CbEVVFR6>MhSb2vTa!kJy5k6(4-WtSl8~DI
z6#~4btD!qpE7^qW1QHxnY&=&&VBPro2tDVX8vA8^xG{L&B;k+W#HqxLu8}zY?CvOr
zx0v-<Z0nfWH4{mKa~oO?K+2j+K~{s$p|!0&Wa$^L*L0G4ft!B~r8tR9^a+}8nDJw)
z$yJqsdde%$^c(ja(xrHrZ>Fa;KdD<Lk3CN0b;%vSajqvMvyK_qN&A+AvvPIHIxeV3
zS^tz~RQ|VJ?H5)$N4F?Tk-5etMV+2BIKuHdx4uwq6A*Vfyyw;jTo4!e&T>5#zZvu#
zu=SUX_M^2AUf!f}!xI*C#QLs&=m%(Qq=EFaptM<>%0De`UL-W4P^^XQ(o@&qc#8*E
zFt=@sFC9sFGd+(%r@PAQ@)KT3_pgIGk#HWcQQFG3-CLUTO5!dyDekPe!{P}HAPnm1
zA+H1$dbWt9&>)k<Ke??U%qnnT*qo=rTxSoG9T@I4#Bu#L8pos|j@t2xm@i5~0-wFM
z{&#NBZnPwPX07KMK)8u*`ypC{L*B8%JE=*33H3nPD2-?|3$SHm231a=Rg*JT?L)1L
z1`#7FyN--g3l7v-zwcnm5{gHnFT=Yvzg|4YPWDED05}2-?!YjMXZyI+il=>CL>18$
zbLNdbQ0=!-2AvPENX9bBE@uoTFt5d)BikYa@Xx@S5#wh*kp@#phzgX0jy%FYUxmDc
zrf359zKHvWIe!!9Gzd?znCZV7;*<3?boF(4{1C<ksUYR<KjhYBwxF4T2A+yx!hQOK
zDFaBO38H$fUP1&7!$+Y9<mu7JN2L;|Yk35|XlUFj{Pk3!TqmV^`!4sEwn#!!d6v-m
z+`>ve5)Sha!wy1U7=@~p-m5>JElS+bJ-{n7Ot>fuc}}8hO~p7XPh+R52U>3YwdZ6?
z`{<!gAe7$<oIvrbf7nnbcm5VOs_2DJ`a1RpbtvUFcCUrW6b$?ljdOP|nPzMTo=oF6
z&sXp=Upm9;oLJ;8k~tvVx_)UF4<L8H5HJ<dYTCzcR&mS*{8+^6=)*sBUa&V5`~>&$
zj@T9=*2~+g)*LF#xjJ&vp0pM9>9{YdBKKNfEak)PKstG_A2ZZgj*aB2Z|j>~d!ElE
zt3RhJzbdK;8T$E>NL>H;2J5L>V{W7UX?6zjEDnh8=XTtIw)f6uM|UEd;ZT?j>)EK(
z^OOjBO)u{M4N_rLLOE~?lf-%`R#W4%d~);kHs(41HYQ;dRg_oz&`4Z4U3~O~5V3E)
zcBdo8mah8CC3xUh>wql7<U~`X=qqKV7-kKQ>s(hLc4mc9`gslY&2!0CN;I6gOyD!;
z#M#2aLvzwCyQ_fSz3Q)Ctuc8TNAIgwrR@wVgU8+TdYt{v(Kg|Zm}oBOI3WC9LI@{y
z(Dlb5*yDkoXBRbSac=zajf=(2*I(IA^+_&-OWVDP`ps_HZ2&U!O}vK$St*cAa;{pa
zTl^eQX0yK_oI)sXnGcUS+57VXWr~FpXuIfLe<h;UeB|ev6-VQ9KDQDfP<O#@s^LW^
z<TlJX^VpsB>#YBhxgTyVKi8rVv$wC_l3Zwkqk(lgvM`2nNWEb*CkEv6vW>w_zJlcf
z3NSEGm(Eq?2z96a<b$>S4#SxZUrqm)(@b7#Ek6H%HAI`?F^tN!&pB7cg)*zVp~t4O
zM-`w;r+P1a&o@5E+WrI8X!}MG)*%^<+Si^if~QO{1RhKOcyo=6;kd(l?s@KQWH&<6
zC?G(R6i+~U;m)Qmtoc5U0V8~{#{KaZZf7M=ll5Rd+i5`)2n`4&r*X4d%1h7F{qKzf
zA&ng_!t750&2^UT^k4?L1wZAkA!5IdYE!YADs>M+XD!Row2$#;I9?7z#PnGOG}mlx
zzIi2YG?M&I*u+YW!b*G*Cj;bjWZGe%=(@73SdAqKl$1c0qBtIyBeUxt(VllFn<)}A
z*F{{Ulznz)8tlO-)maP5dNpCG6t<$oGk#6;fP{U>Qt{xw6V#J(1ZePtK)&@XWuus5
z;W4q>GbejAc*8)JZG2w@Zls~AX9p7d(f^FaP(8<;99q6lmlrCdI(7)GSL{QV=r;Oi
z*gqJFNji&x4Eg$2*L7R3|6(eYF+S>caFOmd|3!Qg5KR7Uzrjdp8iS|gV*6exnZ0f3
z$7;@`A%SA`6hR7q(Q@{NCu-oXAlEV2+Ie@gXL&1i9EqjfW9*MGT#GSZsL||4xgjTp
zgY_r%(DRtEA6%r;OWy|QG+-mSc1yJ)j~H!Q>RDff+~IlCgnlYGJ?2&D^cp>sWoS!M
zew*U6*z8Wmxg9U}NmA7+htx;{Tu+Dod!FB&o(IQmM7@CNC~b?$T&!P!?HiViWHa?H
z;#TdhPW54&<@O?=Xg|D-rJ>@R^&@m1;-g?PhG8KqnfA3U(m!53#_khIpK2<G3Zmdq
zp0JCio!$ganp4hrc-6=su*p^y(%)R43k2T9G`}eBUjs7Ofu^J}4TahRiqnCWI6}}d
zXc%dg$P*)~zKeQ&o`q28W_2#4Nl;Ry#gok5b!gLzKbhe_=KE}nHmwcI(FOd~K2cI5
zeMg9@XJZ6tc7+~?3)c38_qOJ$?MKPvG`AgFEYyS$?mK%V&QTMTn%hEmjPTJvuURW~
z{gu(xEOQH}C)|EZaC=UK%D(_c_kU6nf?G(5Wg&-c#u+2oi*edy^toVLDSzRbcz!Fr
zWDTqlAq^${<bt+Ljs}9FvlPFD*vK-#+iw0a)&NGoeSh&G(2TFc<2{PAcsLpq`j%Qr
zr{I8z5U>2Ys6+|=d{YgZ0uKK1&B6_n7Bk}*+>S)8s~vfG@@LC3jlKWbt(sPmOU)K5
zbj4~EAs0uVQnsS8>ORFl|M`wA6=2UVnOihqO(k3>o6s&g#j5uVuoiEZ&O$yJ5=Ivr
z{Ck>rv3QOpw&Y?W`rU;%K|Z%WgJvc>M^mE4Fd(f(c^hR(zZMG4IEzzSL^CZW@(U$!
zO3AbU|Kd7Q@C<%0s=O?njWJ9+fq|-c?3qfEjT+0&?~wKOrN7j)#G4Izp!`ZCe5Cur
zyR0j7eg8+ayxBk9z@*Eo-f_I$+gxGa8Lx*NlnAo2ES{nw&ut<sojW0h@Sq9KSelqy
z;1&0;l(tWewuW+?2N`UAk4vFs;x8_gPuyxKR%FgOtP@&}c-gincyU|_aMD7+x~fo@
zwiHsl3(uFsfM}35GD_-IrNyuN5HhCvV~s=t$nTEehK(R&!|j;br=5}pn_dJ;A8FUu
z;Vq}IEed4i0Df22xcs-n-ts(UR?6$eZn8N(YH1+d=soCwe6oI%*9CCEo<9%+)Mq0;
zfVr4uO7tnTI1<i%gQ4{YRha*GqC+y(-<wOc)Cz@m^zS@^9JG+niM8dGw^DkI5~a@9
z@93{^(NY9(K9W8;?`qpxdci7Nu8X5tQJk5kwa^<Bq%<PapmFX;%AV%$o%7}Wi$q-6
zKdr{?s6%Vw`p0X6h25i{`a?ok#m5_F6A8yUBs?C!XvS?L80WFK`t6pZNRVn$EtS+<
zMXd6>plKc%OhOzbngRl#+H^#Nc`#4(;(ah~=YOo(sodNZ$$=VhPa8;W;chHtQ<QR8
zJhoqj^pFM-x@UhCuq0E+X2XxnmBxoftftI%$9ahE!>RY~g5+S@T_jZlq9z^9SH4OY
zd}9jinN}-uEhL+)RuwrXsj|>3f@<nkOG^q^Zicj#J2*Sv!NaOQ*nLjFcp}Jjhew&*
zGO15%-yTSliCgNCSm*mn?)S}QIo0_KI58aaBwhm#DUhjrqjpwYcno;n7XFZ%ieuW=
zip2jdL)6e$6WbT##5BHZDI#~^Y?J+!j(ZWGe%WwYQ!EA=OSoau;N4Yk-0%>LXg}LB
z#r+-VXLpvV`AVf}a`-)AobH6V@MBI2fH&j_pz2l6zhm9=)Q1lGB2mr`iV3XRtdQ=S
zA;h{N+e-&;ZnGA1Gru)?$I)476K!8N$%rpIe150^8!UOr3S66V6;BQ`_>J0QYB?dN
z={{>s+X)I{>0OL&)c1uGDN#r`)0$SIy^$d}t(w;m(s*wLtOin>B5Vjz&=tY1KHQ2r
zkvV^fq<aLI<o<?kPcy4o9Yb<nDk6|3^vEy_fL#1qo~=77wR>aXfy^_<{e{vG&xkDO
z3PfFXiZ71(zNf|*vJ*DCW`e{`!$lFBl8a4N3O-G0c}UsTD@V^_-8dT+8Ky!A>A5;o
zi!tq?7@6j^tUN8etf07PR`R~iDraranBm?3qQO}R3jmt$7&)IM({T$I9re`x6KD+F
zRIHJiyS%&w`j1d5b-_%Nf-jN&!gvAeN`GLqgpJ+dYI@tXZ0oYZKeYEMi4+FyPVx~E
z7cHk*qtHd{tl*jCsWhDSr%0R;U10MYUEC_mcby}y4IKipF^EjeJCUHj=lja<6h}%6
zBXyShlJ=7~$o@t-gpNNkz*GkJlc4l>P5GP(Vz<;}B!06!)4hi26NM$1RAmN>o+G<y
zE>{|7O+F3@D+8xQZB*U($vjIo&;Tr6B4r!2WfjK>;!lv^Z0h}NUrQ0$@r1qgVt1Ob
zwG0t7?+e!qFE)ZCy>oeUwD$DwIq1PYFC7+@R+L$eq2<I9QBCrjLu~kl8uib|d)hQv
zcl+xy&e%Isz#`h3WN#G*0v|QmZkt)Cfn5Mcju-U#Y$=EGKNcww)oLjcn|z?E7qu*(
z$nX9h{)jii;UVLfD<yzeC;Ny%uQ9x+2+Cv98)<qhNBZtaLm^+dq^O0bJi|_2K;_68
zEXgn%Q5K!zLZdwoQ!;TWYr)7lHC?Tv7g><YgGxMR;kRCqY8v_xJgu{k5;IHX<JD1I
zOWR`kD4?#~#H$5%$RAKoS`Z!kR6oH|2hK(lL-K^3q4HpLuls->$0bMyeXo&JFOYKy
znp<Lz2G2K8H)ef}hf6y5{XJY&+GDD-Sv)i&-pJ|FzI7(_-ognSShU$L3MdMy&3~pS
z7FiaKC)jwpR_}k`i8dA_OJ;f@0J<5J-V<Is{k8i#o(Z!O&R3m7?%%PfB)HfW8cFbA
zgoonHXzrxbhQKPA-?;wGtCc(z(#sblfd`S(uiHPc%mNF}kCx1WHpl8m3p+^tD|?i3
zV21YF8MqyYfx($=IC72+8k#oeg_EQpMN{BqAj0~2rGrioO;!thnX8LP)jPv0%xOFz
zBT^6;<Q0a{;0vqV(mXH$@tj)QpW*!K^n=bG+wYNMU>mN)M=`f;^pVc>=RRDzcu6Tu
zCgdZ+^(m$&J24)<V|&_f@T`|9D#|eMowN&I@Ob%Az#OxuVgI$kXGNWw6u-zY%>Fih
zF^?!g!eD`lMTf&kWNiTpSs6jazx5~rbFsuRk4;AAx^7u|=$#>GPtcHL>RBMM-zk;P
z><lMnP?_1+40k0rV6@4x*L>tbmCGMPvj{366@i*(OK)Dp*kA<g$w)Y<FVwyV>^}cz
z)e3n@dP$Z1)WFtutbRT;8gUM^eUmzWd<=vbss0d=01dJ&3Z3!D^U+a3-A7_Io_;i6
zCBHW~L)RShtPR^3x)96)o7i&6ZUc>S4>1uvpmz__Y2vsFa<q*pZrt}~rJ<EuN>|Ed
zk6QE7!zJ-)^{;J58Smh8Yi#C9A{M1w$I8QPUA(5_h^jPct5{X>1=mWbrm)MgbGWMj
zc3VcDv+)4nqwz(M@^S-S7tO?LZ!~0d@QH$69^bx~h}#`JNj8Pe*C(tl<>9gCokP-J
z0_<#71yw;rhZ}!<(5xn>3Qspax#hx?GNSjxg3CutdVS5m_Z<ta4$rbVH3xY#;z)UL
zLBWqTE@^?G#DQ<X50b|P?PV_GrZko6lF6pJ9Z3+kQL(dZuj2HME2*+rJ*>C~mfau2
z=^BRV@<!x@$$;F^P|{LDkux<(P=3zyx7kXi{Dy(h@a-CZo~z?ju3=<J8vw3*dbT-y
z0rv@#8JN-Z0FW@7+@AO>V$E`xW8iwDhSbreuiXvULQ!?zAuDwyT0TWJO3j2>%Hixz
zLCu^@M;CiaW}Rz8Wg+lAeK!$p-|{FTWwtWa`5{UmTP($i@!lJ`g*XiGWSD~j{Ma!w
zvOUqWnl`8xVNGfmU-$|q2)~ouHZ+(eW(RZm6q=z<RJ6ClcusU7toANxu5}b;q~fKM
zqI&6Q3$(7`UXTdHcZ=zt?qggX2!+`F$}p>-7Zi42@7i1)&=mSp67_@76H?-iL$sO0
zy^9>c=Ai-qgp&{i0T8TRr=RIdr2Bx+CRMuCi@w>X8T|;H|6Xo2M-+G!r5|noct~Qa
z9BItEPlphX-`W8~sg&DF#+J3KeChu&<i%Cm@V`52A2OrX`E)ids12~ywY(W|h~tzk
zOi8(wj!37vYb@;YCat&LL|YG%!DW^O6is^PHJ#B5b4F18_D=j_nA8cUyg!{1a_91P
zl;Tdn4p;OL9iVM6lj@CH?v_6afDM+LUHro;16WP__$iM3RH0%1M3BBmpS;C2><zi}
zL<QrPb$M!x+__Ssk#mckSk={vHyY|I|98c*aAo9EpyE@B&X?3zo(;lFGXzh{RAwHL
z!qZz8@khdv%?bF2M1l}0989~iyNYAXm1V}8o##Wq{9f+0z7!P_8TQyPSd~>I)iNep
zWQQ{BfZ477x@1tYZZn{(HW-eCgFm*i!P(@%%<#f#*8dGpzFNU70#V)F#a+S4*MR@5
zW1xr=cf2N8Ax-mYrg5C^D!jy=!B*<AsucVsqq(6C!!Z)!u61-EcO$)F-!p%GKV-f>
zx$jW2gL33vCM)JZ%7UI6@vExQVkdn)Tm$19BR0z!kSYl!-Wms=HS*WNLrQA&T}n1y
zxUXoH6331%jlwX4DnG5AB@t1L$!JdOY|KEh^Y7>z;ZZr7ch8EU@B_8u>+klrz%{ea
zW_OumPk~-k;5NKN_{<b+d~9z7Z>XhyH=#mPIFYLp7a0F*bVqM_!aqL|z>djUWq+PI
z(5>2s)9QN346;mcCt(7RxH{OX7k&~8FSpEor@`{}T9DH0<SB7Fe;90aAo=IC$<@8g
zdFEaz<tM2n>sfe5(pIm`KB7>&Kn>O&7aNGcwG}R{%?^*WlYUro9F5u9VK1b~7$A9V
zesYQ$5PI0xz)#bsh6g&Gpp@{3_*&?kP&(je>++zdQv`s|kTKGZPBoa8#xezvIR&kX
zR$-W)ocEY8X<NG<S=w5MQvb&B29rr5Rw*PDgAH9y6U*h((T4rT8_YR1?egs9#!g>&
zk~L`LryMw$t|iEF4v$zQ;csPier&D~x-Vo1@Ue|U{w(}HyIX?L=I^2FN5AX>y{9)&
zXG3-TZK4BsyY>oY1hUP+saxL}BM9p>4kLfY#SKaz`P?DHx^lCGsCqt{YC*XY#5D}K
zP*29&|2s*tHZiSF^1*4ky#EZ{Li#+IOcmehQlN>Vl6=$(YYk+Wgt}2c2m`A&k>&`O
zv_$c3ov<l#6V43F5Ux91xx9P8{jGzUn3<0@&lUp!AOGwbBHws*3Vq21o?NUOf&bJ%
zD6$DPqR>Rq1T`x}&^V3h`6qEo96ebLOqmf~m@NUburvQ6W4)3njxgsvVpf3EQP*ui
zZG39uMG1P_*A(_w5oPm>OEXZVrcMMx_U|wqG6mN2HAY?#az&-o?&l`>5%ZXH_%6SN
zs%~-shJwV4?mGpN>0MG(fVbp+2L9o1i>iwiMoa~yxA5!Pa0w>bc0pn4onK9E*JO(W
zc-g*iEPhVaF!^n=^>HWi)aNj-jXFv;F5GM8;c{-7OHNE^Oz8KbR(l7vh_`OkzTU76
zEEP2Ju`)?(s>lM(i0bj}!u@YgKJl@Hb9+GG@knC|#z`vx;5h(*K|bLg8sJ|6{5Kn8
zsMFeX&~HRXrKi6X)1PX-3*G_<D%b>I^#myQ8VIk*u(1}IP$>;gFgrI=k?)dCajh;2
z5jiVW$Mn0e{^3^BuD<{sIEuHf8#TB#KnKU^VC}?RI;*4bSD&!?f$N&6dR1<loaV<k
zB$v}XRDeCU`kW>QL_^jcZ9v5tyPe{X17|qS1+7{;up~-Tbk4g4<2F?Zhr+{+2&59<
zc^=k%t0xSya-9WBb0HVsrN5*nNfVbL*N>s}%}%s@&L9vCv9_$K@z2q9n_T|IBzZbt
zoSp?P*`WkV3)+G#VTuC9#kV}0X^*OuP>#+@TliimwkjiDxqR=OYuX3$RLc}`dO`P_
z=ke7t&gfvr2ln*+{*X48G6m2q7RC%NUm@_0NCZ!+>nt%`pR*q;nU|4PVBI@K`ARA~
zUl?#XT^e0Q@d|#`L|ByQM{|b_o>7!9fcUA0AkFEf=tP}xmK609z)_DD2T5jiwp6M)
zP#@}$VoU(G^K&NvK}3PfsAQcvTLGOSo7B}Mfze*yrrtJf5J(&FE~=q(0z04B@tp6|
zo^sV+E_XE8kmF`JFfaRuI_S_iBT~E%Dk;AgsWV}hKZ6FvWzHWn;x2jsG~)b;6=px{
z{m16-cPrOY+Y~5wZaCA*OiV6?CHq?YyX%BRE8!Pu)F49$;a?GfYPc{<7W(lgJ$=J`
zQ3&kOGaD(Z9w7vmedeq8bmT9UlT~2f(asUmHAy?o83lrp@|oVr1A9}C$iI_DaVUHR
zb*q4hk3L%cVC_LMW=U{5@`+>*;HV}(fL~;mBhzkPd&UYlBvH9}x1iidsh7l<K<~6y
zyD)`b+>fMAxi+sLowE_9{kpg}N@&~L&d3lrGEjjE3gq_|efQF47<OPuXk0@xvTnoI
zBRc_cV2p9Cm{I)Y_fYADkSi;?d_Oh%DS{XU$cqeBS?av$GAL8Y9z#+>Tdg)MF{}~s
zrd_wJH)df@rhvo!3h^mI3)>T94{(@UkR2Qx^*L8RKHBABIAHQ9Bajd>*!0sNMvFGl
zn3S7yLHaZs^hs}@tnHurnnE3g8?^ukJ$sM?nh||T$=uYc9a#rcVBF?`L%GewusdF%
zzKDVL*F9RLJ3#o>n!TX|$Bj_AQtMuBlZfuOedn?yHnmWWUO!#X*06G7n?k648#y^{
zvQZJxmxl{H@~B-3obG@yD^*P|e>q?w(%o0ihu1S=jTXn{@(NRP1VCEP53jkv#NjW*
zOcez8HGTw;v}e;S$J8*}ISDT@R#`NV>i1ipahW{Vv*ChF71Y6yy&k2Uf>rO8GmyWS
zVE?vVcs*dvcHeEdq{CGB3tJb`sdes4pS!eTEb2SMsND(!8bauE!uWrhPxreoLG8yX
z@NkN|FMbq0C7<B<^l1_)Mp2hjD~_?^jg;Kzkb31q2kBavBt=YCHC{`cjcNMia6|sA
z7v*iDL=1|<SN{b&lv%E%3w=ceAtC$6ljMMi$AT-&Kz0(13<U^uG!Jt@B9|ID=D-7Z
zlz8o9BF=nX7U#xB0K)S+nR)@7@ho^toeZb*JSV}mY-Ek~vP-qi)H>l;YVTQt@u2*m
znUTa;P^u6|VAq{q4UsVU&!`_q=t3f3usgoxqw&tB*rlEw|Cl{U%Urx{sapO)75;#X
z1y+Bf<a|X3+JJ;ryYyFVD=_#abdylTE(U#oAOpjh3UIAI-sSJlR&D@4K#$s+D$>0r
zvs*BD1F3n9@s63q%Ojv}32%Eh))=qM>u8@1bYS{EASt+NFoIb3v#>m9(tb$9SP{}8
zxbJ-7JA+a{oxE%U6HYx#(;W60MUsoKAiXI@9G!)uxh#a5oog@xq%K9lKY*UvUw~v*
zNR!v~D95<e9rv_E)BPTVln6K@dp+D9t7^Y#VZ{~}3G*ShblDwKw%34a4wrp4oB)*+
zw=c&f!NL{DWvvUPU@A7ol27|k_E^_r;L|Rh$ow2HVkH`Ql40p7{&H;W1*!5i09Ph1
zV$%pmA#I!>RdMnE$emWtEes3#FT(9!OSPyvLSj?`R~XS#M{7zXj;P6?zjZ`SC3hq@
z1zlHA;4tLWpXNYOt}!06Rv`+9QkA*Er~ZzhDqgvUE4fWZh}&MPc0kGK51L8eFOXzx
zj$eVi31Ud#Za={bA!;tw=<Owx>MeQVy4R>N93Hopz0>fm^omjN9s@zqH_&Yzg|U`y
zcSSAJLtfgO@%yTg&{VpfzKC6ke8N&ok{f~ApZj%#SYuwiLUmM1Nn@~(Nn)MrZ6I(w
zbBEchy*0kXd(Dn)^l-L>;NgQ^@C;3YD}3;};%mtp^NwC74I4GMc3<4EC;5(&assT(
z1_Y7yb8~m1Jh}?Fe{zGQVj5@s0F(V$NnR^^ouf^Wc(=`x&)VuC5nu0IUJd=ReD`&^
zE$gW`tOxxaS4X3nrq{O#i}MRxdf`SGWQ<V*ti?iGauxU*!P%4YU^?qV3nJf^f_T?<
zTor*lzrfCWxYa|3o>I=2t~qI{kg+^ke*EmMvx)7dedjoz)xNMHE>*Sehzm*Mj4k>L
zn9^)Nr$%Ue*-turo4-31<7RPMHjD9o_BUq1*5D?uOX8f_5NGD4nrK&#C3dZdK@&wh
zSFb5c%X>DRf_$dZn5N?9t2MtV^?SJaEg+GcHFQA?a_Lu(9ylIF)4II|4$tf46XW8d
zmTYdj>*qHe@sNYDxU<#Y#cYt^<$TWQW(J)U*>(7Q#R=&5>Ws`^y!*~0^fpg-wq%Bo
zPAL_Tem#NWrRJ_>;G_*Y)cIYVh5gU#Qi&Ns6tU1lVlSL-z0Q5G2JYcpzW5*x`zLpI
z{hB8zUNWZhA(dgD;T~X5jkAjUEb+XM2*n_11SdLHm58@yC+*W8Zn0!eePd_hN^0TB
zS`cWHv<K(2r%vaA>kD8>b(r0r<)I;&96n=H2UcaNo;F09S>U(vc<DF|3PO!01a`KE
zSao3o1mTV_p=nY=q$ySHs=u*HxBa*R3`0po%6WR3Pn3?GFG+^m@>E;d&7E?DQaG$k
zBkUV{=Jqml(WDE)K&P^hn(KH)NeP3hnt#GHoo%QMCkx3l-ta<x4u08skfMPP{c}XQ
zTU!{H@I{I3Zi=OXd}Ndh1Z@fxKgE8V(7~vVT*@Hbz&yGU-#$h1KPY4Tpn;hVHMVyO
zggNZe$8wVttdhPMF%#A~p-ps1_v10+_T~jIusKNf?{l`_7m;ymHCLb>c`a+>bEKlj
zq}Z{U8qC0yS4tW7u;}N^N}m_AYNiYECtFwXr?M&(TJ>zSx(INJiq@|h+5>JNHXEfR
zVKA*<s$b;7)-mo-0EE-2MlALLMzdvqHz?8#*rUi^9rk66Z!|Le(q8^T+9C&`Fg8_A
zS@ZYn!*s~c%=ph=c5XP0YeX<_#~XxNi!>UX%C&s(t-+pP9&7-b4(Y>r_j`oqeFPbf
zUEBl>?z@#~Z^^5NZ#zWBE$g$(n>0Cys}*O5xp`<D0^ZkdQ;vihwB)HYYl_&kzN+9R
zo6(CMEpn0lv7^L&P{EpV2&G!`s0y{X!_w?iT%C%UZHWGHX=ItPFK2>gGk{UAluJ9%
zHt{>YsS#&$JGnIRRyJ3Y#?nkjGE=kd5?%-R!Ze`yOU#>_%NJV93E#;A%~j*x5kHCG
ziDkLn-D9IJ^A=|)5V~!Bl9e}0z5I_X9vnk0iPVw5j{hp755PRYeiufTuev3gcZXEM
z$5-3$P-vOJZl^o9g4?W%St?<X{!1+~fi?$VsGh6YJS7XcsmjhE%CDJEWW*7fTC!~+
zL-HnI*{c{w^?Qx-T!tkJrStrl4mjYudO1I;w3T6_fR@e4A0s6T$gpj#MV(=q*+r_t
zAG<q|ntA^OOmLT96R+$&lB*mh1IBcJ97M>Wp1GUP3yabg!NP=PixtqIFb>C%?EI0B
zqe&zxBXN3v$|u<Wnquxd3>NEoBz;im^tQLk&_+yq8+TA^Fk^lZ8|N>_bDG@>D={Yy
zjy5J`EG-NciG;>4Ts+q~FP9}n9kD)iM_9$_M*k8(%*He>D<JX5{@z?@G}(FhRl9g<
z`_GY9s7%Sbll=XbKAE-`#*Wx1HEVqD#X>E9^GNS~@&W3g9fKLX17H|3vhFMt99t<j
zT_NM~Y1P9`M24Ss+uh8*sN*?C5sZe(XfQLnnLcIiL<OH7=Y_b4qFsb4hCGORuIJs~
z^>{jZs5UWlJHKy9W#6MovBE#KKu`?hKBtSgqjvebL(7?PBgn7lKK@M8-SAN(__E+D
z7WsCIIc)tKN8XXS5WHW;8o>IL*HJVXb>PuR2wWh3jLi=3o5-Cy>YeU8S_BDo%-pEx
zU)st-qp*r-YY8zh8bK8zY12K`0O{%((>D_niZh3ocFs_j0(O8Yza^he=jE(*mRbl!
zN97f_LUH`|GlRdlVi&M=K1EEzB2y=Oy_;x~HkikmHYtZkU)Mm~>l3ui7RVu#t>KuE
zs5DYQ;J^Lb^hDW&3JvsgZ5f3x{`hN5Oz+BU;3D)pPQ~Y*z@}<@s4@?yMn><&gF({M
zQ5P%w{T&t*<TZa!c>sp9)D~kmC8;CPfY3pXz;g9z=2kGD|Cy4jj+*bDBYwWVYtBN%
z$d|n-=7gA$njy9l+`x@B4pW1F^fcde7?Da|?2Vu4(-5)mIizcP2@#Mf5k{b~NJC)w
z=OTgwqHWVbEvnMReb@M0fC55qtom`1Fr%zbqUJ=}m!bc<!(9bWWHRG1IS|xT5g<SD
zF>`?YY>*8kh2XGbr`L9y?cfi?6=(g95$tpH0s<L{G$u>^IA1AaJT}Ch&R!c10yO?@
z4mS;&!NY6-L1ZuQ7tN6Ov<U{{6Uskbd!G!hMx*PV85ORKe3h0lKR^U{k=Aphb7KJE
z=mWB0$G6ZdRD1;iOM*Aci#DU(CkW@^odtfoqs98YYHqfl@$FZMu^hXEgY~a7SMC}M
zZ*LgheS1<~)6{`5+}6(c5!w2>1>m8x4@JI?fCW{-$qw?L1w~)e%;((`2Ym&}ghG|!
z(Ev<ckR8J=7*qyQ!5l-)-Y+^#L8I<kuRh!>5>vq}4<q{<qbE3DrSZnc^Kl*f(_qgy
zg*ukSpSW!|ga(UvK8DP*EQ|3MiNW%=zFk959YRftBagOM%gM1Ubj`&s5|e(XXRc~W
zNdTJQwAMTeTE<S1B4x~we86v4<(neEmQdc!cV7+-Bhb(zc5t5idNb_pZiAZN&XwEG
zkZ|rBA>MAKPndu{eTdJi)$yRz)G=kt(c2TTk!HOM;=*}1W?V;jx5TxE+Ug=&wKo^$
zG@)Ys%#(&Xi9BBTS+WS7kr+P)hN3EXzAeY8u4y%Ffj4SRIW*tg5`{rFwI$SB*&>*u
z58Lx-u!iWA#}kgq`uUTudZMRLg+EQmGX$q$dHFCb^SD>6-y}0Csb;+AV{;3dD;N_r
zW7LN(6=F{!4*Y|8L2Fxn2`?Ba?<&+Nv~j$YP&;-CfC~XOZ|6@Xe3Tg3+h|Fu&3SCC
zK=rBYElqMRHAVz|j$8eq--%=}@M`VIxT8|PU+YMIX1%e-D#DoeF7D@Aoo)pzU@K)-
zeyDs2P(-`YfYOhdzl5|rS;01VB86?(27=i~B+#T=?CU6?q)y1a>Y?%^NGkbg#6Vv*
zewkV>T8DC>S=w)giK^#4Fn_5uOixi_*q!y1p!9win-_U1nB`PZ6k-?jl<oiVu2J*7
z?FsRv#M{R7sWPVmK2`mIi`^%;BMN4qA8AD>lKaAa;Vt0+IO3xpz%)YPv_c|i4`-iS
z>3lS2wOiP>RtHajnO_#RfWMYA`JBJi)fN4o3XLle!5a{vuPE8&h0GbTH;{V`5~*=}
zk$p}+dm3fAQ~K~}?|_(~B30MF7-_qk45UneF_2}t+eKZ7CssOT6o=P4GXw1LPG=bR
zk5cSedu~uP0UDV;UJIXCp$-=^>Vntxk2evT*>ZuC^p<Fi;ndpUcZK+GPYO<(ByY1|
zKu`qz>3%L|dRDvR+>vKZ&aW4X397>J%Xlm+BabJ(J7MZA!f_OW^}$8#*77Jl3d3|_
z<(JD|Q||zdLzb_NbhCLg0vY$WYDi4lFB*=xZTcPiel1LWf)RQtMfb$9eKNzKV#09h
zFG|(jk3h3C{iRWAfDr&@ou~Y~Sh)l%Pk4V)$5O}lT!5qwP%bWNdYk-5Ipj69Jq<gi
zG2s50bS>JNX|Oh0m1z62;|`qD97I-eZdMV~N?tCMzD<XDU53to>?wumfl=|fevFa_
z5!8&2_%-#<ZB6w~A6ARhBIASquKRQE0s5Y&KRINsOKBpcRnCa1IvbfAaK8sd4v5pi
zpJna6d(tLY`$r4!eY7Cj8s(BlXmnKfc*dMK|Ng#C(C3Y1NA-y1IxXte&M6L7_VXb@
zJU`NU5A+Y_B{^?T=)0GMKfXQ|vPA)Xbx<76on$2c+<IIdsmpu<*ivr`H(HZ4aR)GN
zD?Vd)L$mlzMZTTmv6w<nu$u7p7CL{Vd%^vxuWQNyx?DK~&x%Rn!Iz*qYF2e4{~B<#
zZ$8LkZpR#Kp{ufZWfvjug_B9hg9rKq8q^hz#Q-k+2w~T8;OwT>vC}jCl`lG9Zu@zN
ze;UEcXvxD?tm9=e?{MjHvzC<3;g_RyDt0i(xq7FPkD!N0T1!!$0T`Th=NDmTVNTAC
za|Kv^4R(<*gF?3RLp+6m8Xjnv#ax_b1?|Rw0`1*3w)m<<rSvDPz7HcH5GH<}wc6R-
zM_xs|lR&n^Laihh^ImbkA6gj;2Fnxs0k_;bi@vNVIrRbrpHgqo?!$?!*+}_OO1j8I
z^#Lps-M}1AWRM%ZZY#hAn+$;4K%&u@l&1t--&K-Y^j^D@b}FX=FF27Vl_b1N458~J
z{=15f&Syl$bh#^(Iwx=hN=@=Hz{v2SaXv|8&!e(AN~{kn85(}lJW$ZiwdmGa2&INm
z3yqOHnH|(lX&W(_!t9g|yTkCX+8H48k2FUmJqNB5gMk9gMvcOg7vv=X=JfY`lCg{m
zO(Qc8d*R;Tg;;*v1wpH3Og>*J@x<58Y*S|kO>eo&{nar{V+tVm#F}cCaJHr}HNcZ7
z;gl4nHSDGJ=6nx+1yV7L)2|b!MrmVh_Ak&D6xwmZ`kS$us@wSi-7LmSrrwPTl4^^B
zril^IP|PNN=H7~ldpp)%3<L|ytZ<U@;PHTBY!M=EF7@X%Gs?G&)4?FxZKZNi&0ai*
zcT<(ix;>Q@-q^C&XkRBXSpKPxqks_6qMx~xejd&+3@5xp988DCofgWChDV2C?<8Es
z)^vg-|JN#7;h}<7$_NpC$DK!Cn_OS2l&Eb2xP2)yKK@d0ViVNx+~Uhfs15AdMIEa3
zl)xWYJJ8b3f$cqVM+a!lzsOWX{QKx|0@!-w<j7ppM06BVI1!-JjLr!|)v@TAzu#QM
z4nTv44tEo1*|du}{j4oxA*_oz%ec6$!uCky5>3}N9X8&v)qYfZBEP|KuyOSh8V3rR
z!utRTmR*L)+TILmEF_$;hPilnXic-RT22YeAuL@H094D*c2+){owEIR`o1=>e}}6|
z+dLdnpq9;K<SYDs=4p?@+Z)@mn|mxDMq&w&&3eF^C)5s#k~>R=op}pjQ0NRnya4id
zB<-KE0??#(efBGj;%IK4N-0Cg=Ah!c9%X?ptS+(+8l{0MsC73BGKjbETv&|vb#u+z
zkl18Kbo=kjJ)iTA9F&KJvS2!BJ@ruyZa(5z0|GujoT9OQ^y5<&8KY<JAf{qmIAd?a
zbXMcJl_HZ!T+I`y;l!*$+L<=Kh=?}`kzrGvHQ*;xz1;xB{MiL-=k(2vJxb}<e%$x=
z0Nay#XUrINJJBuWdNz6|e%i>sU>C()h6BQBt0WkqNR38wrl%);Y9EbiIb6E8cv93&
zbc<akd_ZTF)`*W6@MQEB7wETxc-I@6i}Wzuecy(#e>o%KE>dN|F3S^eHo*W40_uPM
z>D^g_FU;YOhLGCx*nsuG0XCuUYdUlh3q<C)!K6;*Lc953x?+YI`AmHE3v@6lJ_hv|
z;=3aW_7mk2z6RcmTU>9yH9*A@(y*%<->e*JAYW<GTm9Ip5tVM&1Xz4pZ$_~qtnfYT
zsMC=|{8M@)h@3@B3q(Ew$h6$Z`4Lb^;)^fH^E+Iw+4GRjd}~<Ja&iKeOY5S0cpddu
zbOPGv(R>OShTP(c3}u<wtOBw|*t?xKh+Wz6-DHn~z9*kWeTOmZoz=^z#!Vz6OW9pe
zwVCv_NPU{N1;KS%zD^`dB%>2iH5oz2T63Gz9wRZ)`l8Ozq*Cz6(^(0{qy8DIPzNcy
z?}oRQI;v+5=>Vs@GW7+*&9I`=tpBQ3@^!2tE=wgzFnr)#Z|8An)+I?_E2~exYQyoC
zpw=Do4!K&N>>8cRgh$;(72L7ZMXJ%3+Xj0g4^y)*dw`z_gIP?5N#(gr1nzeebch*j
zmwwe23BRF~9$w9Lo8yn<>J_k>SDFap-hrnYplm+t*t;Vt$hcOyHP_E_oROGjR}#_H
zf_9%=-duo-`@lbDgTT_rl<47AkN3E05lT2g<u*1Nl!By_6=Gs9q|8~HAwD7SstY}1
zq0}kkGPARqm0iIhDDuKH#n-cPV2No^q(RR76Z99q`nXR9C3RhjbGvzMJX)JrLV`G8
z8v;c#sd=M#>oPsDxj)*Eq|F(h-E2$b3R$hzB!rl{Ys=`hfJ^pPKBORwv1NM>S!}cj
zdFI`aB5H(FFx!nnA!&S%TrHN4h|e-wam3Nqh4(mJsa!)E+)eI<@L$Ek{XJ$hZ|06w
z(cvo|8Li@m>0q$e(-;X7W~j0<&gNw`BY<0EyX?SlX-=0PBdvS91+eizc#CSX@fGjk
z-S%$^WnFs)*vZ{_K(}%}^PoC3*fpDJX-|L%>nPhbDrt|Hwa2Ng@o5>p{hFg`C})~q
z$I(Gg3fw26|JW@-qowA20!x#|H96pi!;9GPKVmDS=XekE_InHR!S^@Dd-SF658uu5
z0e(i$RY-?;;{p(*HS>&<S)_|=*El99LkaRGa26f<P#t2SK=>Lff*(|nv8!iz+nDMN
zSgWX-mCwvF_T<(M!xbxqJCe5io^uK<x$~0>i<HD#$b|~Bg{^Y4FPtZOKc1W7$D(5A
zfgMjO*vrq<yJ8#0pj{xd*fF6h=kY+cg)x8FFxz`4GniF=f22<0LPlA-q&r%a@qqP3
zI9PL8yH1t$=ywR~IqO(&RP|m$$*;Q_7yA$!Ug_8zM?kf^OEsBW6+Z3Zql+C`ZkSNv
z4RyJ+ysyYGtBaR_b(M~Ns5cd*FhU_yzUp(zB=W)nMt^6V7%J|<%)8j@6f;6+b{7hQ
z8~9(A_0<<?JaGXR_=`3>`w(Kz9<@P=d~>L4vuQ&Ef=90Yk)kA<Fmzh6v<1wGV*3!t
z_@~!c1<{(<`IYR#4yH7bA%K|GF2@q_Y$Y%yi|XZ)!0pMz)_;x`_6#Zi$&{25f?aT~
zga|}HsKVlhCq>PzDmzk>n3|c9?X!@&2{Qv*)5AkWEBk!3aAL8qQ~_i}VNqkBe^<}s
zs|`+DE4i`Y;DPsSYw_Xuf;+M#M0f{iHVyBLz+zi8NUU!Sb$DlE0sgetiTVEkH9*S0
zt+^iPwXvluD);2NfmGdFguWNx^O>R5lq2%_j=myA&o{`lX7h(kE77sn3tbFNE+CfH
z`@~jhQCC<g)b4BH|8T{TV$+*VjKRJxFo-sFOpcv&PPtvigcA_b5pdB0*ilW!*B6SX
zlDE5-%VNBMWV}IX@{><MG{^LV8dBs}?tYfjQS`5bAVU@9J@$bRc{1sfituEb0rX3n
zT>vHBPxF|kr*)OJm#6)84ZP~EzvcF8RyXx`OqjzcT^+By&wRYH&Win0k6wVe^s&1t
zR*m5{!nb3hhp4>Zx@g0VtQ>hXBmJ4&y-O&s0y?bAY;76=eW(NPG4|@br{z7#JUCJf
zW@n|B$5xck_dIL=!Ee@NuG*-R9Gp|WfDZ5CAN*8^+m+0t2Y|+p>kS<tt+n})q4<!>
z@$!vL$D2l$Fdc;v0MW;NjP~4>k}Ac$k;rG#feK%Ou8a=It*LTobu8%nxkPPM$rvv?
z7rc@?jgQfRrI7SW;#BdSx0e89cgohr3$D<+i^UU|Pk*W@BOJ$BhOR23{~+sP>f{1|
zfc6wkqWq}q&~zd*7Y8=XLZiS19=30#wXN>vobm0P(^cv_8HC4+*A`}(5ffTO2R2z1
znsm=|LGOKn3bVfLWg%<j>IG99sHWeCI*1W>G*1-km&@G`B|(&AteHlyzVl!cV<8W=
z0O>0jL-`p`cKhpwr!A$cGb&SGb`x7mu=s@SWWj^{6lBilKj3W)R0QkbqN~*aA>hw+
zW#4&km6j}PEZ@6{Xl8?zQvtT(4`*|u-$WODWF*s)a1?#pfOI6O*klz%TL|YlMeqb9
z`lhir`;GbVkSc&Bx^ML~)r0gt2>0LM1!fxOH0)bv?~BEEM{#U54U#co&At#q=&#{B
ztMJ?AhL8qpZhfTS8Fga<nhszfl(=a2C;V=Bm>vjCpAvJq&f~uL4#gUg*=r8GAN{s&
z)jE6q+s!d3H<Uk6y6tGu&)pPNQjsaQgaknRcO{0u8b9mHFkOh=03||DoNb7&0WCqM
zsTM0Yv^t5|;>^OS=k)E(d@{n9ZfsFx(-n^d`J?YhByI0jW#tERTP0c+j5BU)vVF(;
z>j*<Nv=!ldeURWbRYb2=MubywBKVw+1|?X<(4C%mxAKzMXlTuMm+I>h4%-hlTw3U~
z5>B(v2K;tDN!ROhT2x-@Jf?Fw=v$|4<%t~#?@Z}9+`R}Cf*Q((4kous_B|2iqx*Z1
zv$>AbmS}ZcMy0YgWDi`z|9KtKW&mH;B^v7d*!KYu<dle1^4fI;On~Zeq!%Kh^vC|{
z@b+j>$Z6oX(Q+xpUH5K&fATKPmb2CnZ^tL?HzX$Sc2xY7s`R&qEE&yehw{pOA(z~H
zuvK*JuJFMMuvyF9c*?90<yak1JisI@+U8j>46u_ss5VFK?bbZ$ce%DKpH<oZ^s#v=
z$@pDauTvfjRxH8xoE~pUqjT8B2IP)@yZ3zL?<fd1r){B2I@#|o)r-w;x0p`6JL{ei
z2&bN;VOa%pSBlqnqi9aWEbEbIIZ15LusRN;!e4U&lVO|S)GwJ{KQwxa%U1f=x`W9B
z+g*(`t)Mu+0xH)1*@gbOP*9ptgMPtOdt18k+UQ*KcF4%;dSlDpagy;xz!Xxqo8cQD
z?l@~gPM@7m#NaAshMi3>z2!H2Te5{JAq`Gr(Xd;C*zo!pwcx6rS8<IbuKl4<P-O=o
zP=0=zEditgtVuQV`E%F>60^$OlN^rP>SD#$x_6^)%?{677NbeDK<)LZAY5;EW|d%!
zUKvW?WxKQfkL3+cLY<HJb65gp>o6w(1zxZw+rEA0z^$CpXnke3;hTUv1NXv{P@1nz
zp$v}4EplEy!f#n>3CO6br<hT?`kW-%qK<O7qApbixsVb9`1mt^oQpF02|^Y3hG{M)
znSIVKZ1O{rdCFlWlkuhm`pN%|kJU0AB0jQ)U{eGa))TL*cu?4o+6htiRR6q^2qXfV
zwXcLI8iw1rG!3gJq#_Z0)~r9pt0d?-N!DR;=#fw1<ycr6>5mgk(~GgmRUF>0CDc~!
zAV!$TNz>W+5I>TRFPENbS$J$q>CR^av0Sy*-d9-w9tYe|BBu($;d=34{MQA%$Py;C
z2qAI>lbE%B!V6vp{G9_JXclr0D07%c+_U2ue3?9zkVXU^w03gExdmU;2_@1}EUz@E
zcp4glXsjHfKu#+qaWZD_BVx`tdY9!0SE5PNdH&|eI~VgJNGQ3-Dip{*QNmwxCeIuR
z7~v4kHQzKzsR|3@{he3%^96&nsjPk6JIw4$+qbR~w=tOby#i%I9p)^V%kmuj9aR^X
zAtvCqZ&(#xr^uVD=TPXFUfdU%!{70jJl&~{Uke@#c;ax;Hkk0}&yYx%wGa^DRmA$#
z3}vsH8st1fPgelf@h@*!gBW|V^orP(68_Grr4S}=6uxy^G)~5ZrEhkWSe-pl^>i@F
zSO3#6TIluk+H{2(i&56pwK}DP!O`CNge30F=GS_Y)k5t4&tO#FJJvwZi3KTFaHhzm
zP<E+)5OGZ5-h8U5eD<zciIj+)EXJNVglavn=x;bmekzaR(2^FM+FmMt_TU^Dxn4fN
z2~Wc(dafUK3ygClUa~(P?N${mN;7@bsHVIz{b@$FDEy!Rr4=R6GwJ&q14w(T^%$QF
zKe!$A+l(KbhdLJ<WmVEX^`MTHEBeorwo`w7k$MkN`KE^|KN1G2P;X@ePSsTnh_RT9
z3X-*vo6Q2Ojq3Z_GK8cXZET{Lfp$XWRgY1fE0NA92BJuIC(?B^;QB=GdY9rOpHAuz
zO%5L82Jje|xl>ZvFeh|+FlC|${YXM6N?p}zf~jOMI%Y);AbHAT!^lnQhhZJ*#@Zzn
z!<Xw7yJY6mrl9BAC|t7>ALB`)lk-pe%~m~%vtuA`$$@#lg)yP`M-BgTknMLoi~OtK
zL}P{V3H=85PClvg1`<piuh*p?LxE+A4S8e=oFVd&9Y4ity5*hZ<pV4C_mo@iB(#|$
zLiCDCo}&;J6Ok(wj<iQAZv|uQ%yIwRR)kMo0h=;SbYXl4g{b@PNH!ujo#>U_fRG9M
zq&CB_k}&ZeRrs-3<`3h`LWG{t{-C2(cqqN}tWiSQt`6XPm94chVB~8?O)2|#YhIK$
z20YR>9H*TlBSX%o3o#`-O19no=mUzrneKfNo}S(k^)})*IXU^=@*NpR*cgC5-14lU
zhu{?-n9?9z1&u@0#D7w+v=1t`Iw`teD!UFHtz`l68-?+|i@Pb$>hXu?F9^uM{wjz2
z#@n1e00M&nGI6`+ar0VfsGC2oK#jY~t-Gh=86^vU@ATASlE$YUFy4o_<Am8?(Scau
zoU0Ru54Ev5;2Nhd32cv@uIbG1dc{E~g5XA8E8UJbN!AycreW@t*b1M2i`hPwBD^~C
zytVYrJ4mly<~p>owH@;VBo3b~wYQp(8&hqsfcz-^xOcczE=dN!3U)_8oGb7hEAiLw
zfm9E=e+eaT)3~H<A*-7i`y?;uimZZIMew0<z{6i|NKnO(6P1Q?*rTpXdhdy5rnOdu
ze`Ocl%CF)y7-`*V%ACA)%{A8ZwHOfmqU#1gjJ{B~f4iT3JDz3$b{>2?=~~^RV>v<L
z6ce>Bzbo66XuSV0e_VafH+jOK=^*lH0x>QrE<5GVxIDNsy!0u#?IG#lDQI)pOg5T@
zwQ8`Zy%{k5-mAPbFxdd{*FtHO?;E!+Yy$OQFb7o_;TCT`6L}V%|7eo&%ILRk8MfqF
zJNN_(=XW&iNuNyhvOOdqsJN_Wx}$+k0UZU+nx3m2rqYf9a>(B;@Lr3L&>aZUFVl81
zblnRBa{L-2pF9WL1`;vLBQ<XUfiwPp1Jfsw#3$DMC)bJDMD=;TEJSZzZ{|qry`lfH
zZ{~?X8T3uge*H+#w5>Vm*+<&H$Oz_bwgN`==!`K_3#oO!y-PRhR!YUXu#<4YV@uTH
zJ&}!^!k+rXlsfUV4>()YFMKF&Z3eFA>J5N}McLB8r+gl#C_FSJzXuHfavuLya#-1w
zO4!_g^pk`_LWmgjT;}m}h_#DpjZ7wJfkXr59X%KhTjYC9IkWf5!mfozO?5DR26<S<
z)t}0e8%kXcTFkvU3Cicw3MAOLB}E@e`hgtNnuJ19q|^>W_1cx24pdnArQ%sDc)GZC
zLi-Jqa6}K1zlPgV#-uDd5H=B5s1<;_hMelp_kX805j~5mup)^qO>SFQY4v&i*Ooqx
z-#=x4yLSXBdK~Jz_#?!nF=uQOT*G`Sm@K+)&fM#rno0hM97{{^!oWsup+XZf?w;ip
zNd2kmIlMA61sWm}rxjS-W##e(r$M66ZOFvb|A2YB3dh=PSj<^xR}I3|Q1yW|i(>oL
zU7ey^hP_X)wjRXb?BP*mWBd_t-q`Z3KVE<M3A8C_7YQ`Ul7!)HaIt@L*)Hm|oUp{H
z!2k%XDbexhD6o_}ptb#P6aU^J`fDoXhtaeK2;ilZmE~M*bVEBrXY?pNEk$>}hg*z%
z;RV<+N@dOi5}dfNe#sNaTc9yMOr@muR}q8fFN(<M=S(vnjl&%0-GkJlNG5@}0w}x^
zWP>czct(2|D^-RI!sgoZNotoy;>#}aIxOQ8cP>jpY!W>n7T}zb0?=aHl6gvn&fN-I
z?76*HDWK>v5@g}V1Fp2N2fQutkmPW1sCXJL-12-w4aNl-Szc(zzztMB{y6!s1<?;k
z>byia(}g@IDhJAHAQuvV`<|l5PP-qJlbD{pmmQyY2^1DH-&lPt4W}nLYD_4_)-9?}
z>$79bbab6446F3s3lID7-D5$L(6|V2cYDkMQHb67H#{}OlarmZf=i9(#))pzMg6c=
zFfCf`?F0Xi(epNH%Uir2wJ|d>j>zUnqj*`9`A~YOTipba?^ij^FCY$%F)W;Jl%!Au
zvLXJwtPxABz08zU#o8p=_}hFU_pNm(A-vRLKq71!qec><VqrXjohAGf+t;H&@2~7R
z@=TpK|ICd<;SLVnAZCv{U!|p&<Ud*ap(A|uk@dES&DG>KljS)g+kjn{aN&ICl_5cD
zW%ro4!qwVj)6!fKbuwIKPlL@b9+rZ@efUnqyAJMXJm|{M?9b-Vs@mULLOoYa9DhDF
zi>!xrV;E8Vw0G%aT0;srgoR>P*<Uge5uFGr$5jgw?~4h5UC*c+-cnLxfNi;HADh{B
zBfuoln7v*LX;s2plp;08FrNV6UC9!n8^AnXm;W%s(oo-^^rX+n<)0xAD*{^vnMt?A
zWqyR%hIi#aPq{vIZw!SR5^_7rO0V*nc9J638Q2m#1H{C+OByrB5Nrp0<BEq?Sr1)!
zx>b%r-Z17MCv&R0wM^6k-98rbtqXw%8=9GSA=Fa7JU;7>56C_SBnu$gHcwmNs8a`V
z!iAo>E`DU<$q*#?BE{?#DwyRcgsGss?obHU8iYdkPnA9w^)h={Wy)#fA$E`Ow93y?
z%kQf~N_X%68tNqAq&rz)StENdZUK^A3#<{ug_LGZ@2FhN&?U{W0cfm+1Bx1nq=r@~
zoFTj}D@{os-rG#|V9tw!b+L>JI7|+oY*8C1SF^AcIuh6+#bf63(2Pn2-E*aokw_Qq
z!lVqA|2pAPqgXY9lrr*SEm7Cc9$fLE3F<u0qe_`G5Uxcr``iKlc+S&IgZoNDSg~H8
z<}N#T3cS19;^9A2p_9>#U%}qAB~7`^(g}kiFuTd&M1fYe&ls1b>TqLB_Gl=%5=y8(
z{9pW0m|L&ujaW`OLguBelAeF$I|Uq7bdo!a%%h!n8<gsd8zP`$nBLnwb_V0%9lE{2
z-3BK*<&GHrz;pjEL+bs|5MB}Q!s!vaRERhG`ElT`s=BKl5x!%4VsnJ{G=-4>{`opP
zHgbj{GT0rok1wqsxh{65?z0yQS;2`jw~g!K>egp~tMc~Fbvo`YVD2QxGQrOXM~@}K
zAe7l=uQ^cZD{Ud0l1n1|Z|X9)r&Udq7|{wE{lWu+5Vk1IdTdt+(}`qR`*OQ@ilFX<
zo(O-mu78K;{FtNN*T0^U{IEvYtwP{|Nuq#TTCk*Xs)LU#f?VJl{~$Z)%_=P}^K>Zg
z63A~xJ7xjL-XcCEanXG43qE8PwcsO@weT7|WJBxdBrT8sm>hY%$v7)Y)tD?1k~h-g
z?}c6@SxyABxw%O4F8P}T?r(=c!A5`<M>NYI?6dSpN)ND`#M|UoZj?yeCu$3X3FD3&
zm%4lp<{>!%5n)8S?hCKh)YVxDbm$ouTd3T<s-KFHN@%RFMj+E23GtZEnfk0=I&4An
z8zQrd=RcHYP<xnJVm+Ce_H{n#F;ILO#Pa^Wycx55=N5Kzqk(*k;Jbk2Rdk0vyvM-E
zR#)%tBM2OhZV9C05w#SM`e>^^O%>IzmKOUX8hLE}EF@dBQyRW7tV}*modI>QTo(8s
zsqmMLb(aqReq*E?bTNXgo^8lofCd?xg>4%gZZJNzEMgn%`UmL+2vy0qTed{=NCqs;
z4T|Qp`dRkNW*JY1q=8d(s$3sDyHqO6<9+~H*0-r)L4964<`-3xWAfV^POV`-ae5U)
zI^<*+`(9ye2pBpsTc#y1EsUSe)}wYu0wHOO@ddqWJLx8@qUUn69|q}=M)eTK<U!;(
zAob~0&d^}2^rULjs&W~6!bY<7*zJ+LPYqK>lT74*oVfXHTbOBBc{Ec60It(|2uV6@
zr)*VNqcD2_;MSZ7CUds>!HgC!t$GNC0nyCM*Ooh6Yy@!#hYNMNNq5o2d0?f}$iy^G
zr0!;F|4DX?+G)<tSn^cB<o{88G7va6w+qV&;Tie+H5Ubqsgx7}GNOaZI3b-;w_=3E
zCpx07{ZT1gm}FYySKt6y=y5?f>@ah*^a|Z3#1J@8_|QSg<U3q7d+c3nlk;0>FM`{x
z;|*umc=#k#R=X&ybRIcuuE6f%udc$UnI7}RFA(nJ!V88<fA3gJs!&(?@#1}}?yRBO
zLiq7Xvlh~;uyO>iHA;*k-+m+4g#_e8f%5B*U3Imrb2f92MRuGiaB!aQy$**|PX61a
z`4DNnXA`B0G%##TpGHrqw^(6ItAp8XY4%jU3nSrwcGI3-?tFjY2;dO+l<$obdtOq1
zYe#k+c8Co-yUm?Fy>N45!*ww@C#Ydbafq%wXeWrlLjtcI9RaU<(Fo^}Gfpu4WU{Uv
zfhB1=sitjMt=U*T%nOXH7v+)@qFbo!DfNTWzBOk}+J)k4ty47IE)6cud@y+uBb9K&
zm~(a$62p4=$aGZfPVIT%=hsHq_{wJ(Qg-Se{aEOmhDd5Xq_B|j$~~ZQy#*`$zO)-d
z)<g72b9kqNDloqaLOTAZ8+?qXn8F&?9A{#z-*vak=d5|-HFFl64T-?m<%muAA_;`Y
zu#k>pepCfZsQDt8Wlc3kHHK<gbQNDd*~s`yV7hNWtp|D)NylCvJ*Xv45^cim)0f=7
zHI!f|`<M+gA_S`A6#z@=9YCk|>T4~_A5WT$G<KKD3@w#!H1n~rF#Lm<ZGxUpZW$B+
zG*QtF`vhQ)aq(mk`D5G@@$KSMJgDSAX~!_?S($4yE7y(0WBoN2#nL@t`}h^&#+q*g
zt*z;{Y&n;PkcC7=V<c#yztYAMImdmyXB*EKmXL^6o3*RsJ)*4b_+hYqyYVVjF8GM~
z`Yyc4@$!rkqAC&t-X}1BiT7T5WzK;GB;vRY#b#xh)vNkl;*^^WE}PDyyE0ZKB}amX
zhYce!o+)ne?+OHqy<LBYmDEL(hDH`jN3!TqaqFM2NHtIfn(BSOH~aUrJv?!*%4*7E
z+5*NFC8O0bD>Kh1zM1yHg*anic@AIcqutXeiH-lube9fqO;irXV@*p~HcvLWx4xXd
z_`J`E@ejZ^_oS?3u7jn61l1w(v8v191l-*-H2;Suo&5A+xNVQ0=U%D%d_eE9tR;<~
z^*D!;yCNLIAL)0z$m@w!b9aLOPSP-Q?VmQmhlv24+>_SxSMLEj#w*CXA`GY-^h1Q<
z>{g@%cSodg^;RTcHQ<HMy56DwuuAa>LsE+KHmKqwBN<fbS~B|tJ=3BH)26~Etj8Dw
zTb$o-TPdY1hTHEVI8h*wmH=d0GGg2RTXU9Z_yx6k^ZI*uXXT>Ro5hMXeEjM4i@4oi
zV<KD=Aax$v=FB7wY^yCf56Wp_Pkjwrr1!<?@+Q%B7P*YrS%ZT_tAp8(A=<=+))L(v
zt!4&X_w>Wl@gr01KvuKBm;^q?ZayA9GwamO;kMd9EY-s&rx9=QqcCW++#t`(jX;3V
zq8SLXH^SA)!2rG)5x{iJ3g*7lR1315Dqer1XosnflWZJ97z%^#l9#nnAZs1Q=F5Rg
z2<Ne6-;O_$Xdav;9t0Mm*F*egjM>6*QClW5l5uO_MR^W<pV7I1lG-|n9gfSsPy!~-
z_~6TfweZerH|qD0%)#B~2T<PMKKS$IHI!~zbjnvJ!KRlme4>I-2kd07Lp0vM630*X
z%KV<3H3m<<Ni?xu%y}7iJAc^uwJZ!pQAcS+HhN2#9((?|t{OeOd>j{82Qrqpm4X5*
zZ~DCVJ~b*fD~N`EVFY{pK=$z<FQ_sF&ytl{)zu>`{rIZisNbYW88smf-=_ne@POnw
zeX$<+Mt`#q#@LNh8!uUqT)7N^BV8SsDDD^M$A1oz5y|iUSrOx!6i7?w&15Xj@2$W>
zepb~W1b=Mq;Aw-hD*$8XirF1|@7Iu~cr#hY1uNzr_d>+luTqSuOXBEAVCHta(p)0e
zc3h|!K)vQ@SU{6Ny1P;eRNL-#Vq;wP@}-gy!ln;}iaqy9C(dU^tP_^;Bp&d9m%Ir>
z@;|?#PbizX6`V9-QqAyIg87HAkw^VUxC(VR3%+nm0Np8dFwwKyAid(55*Hn{k{I9G
zx7xQw%qVN=EThEoV81dlLq@MGd0u}FO;vYoPhB3?4n1O<L*b6{9PX-+n>PF=AjoqZ
zH^o`-A%H{8NLETokR{E3jp-BOK)m+Ymyx*qw>`EI;0AGi;<QA{)v>nXELvi-<zaa=
zrl^}g`30leGD|o7-sl;&mzJLNqks%F(1j|e4vd`{6x;TX^~Dx`B&ls;i%<-r`8QYJ
z;45V^5{Y;cjXI|H7}&ZFYrl!!Elq#PfgVEI+rJW*a+?=c+HRB(Ruc|0sP-43upk)3
z=42I0!|x|SC#HC1$Ik%(vK&yq`BoXLu+tuNi{#d7&t6e0$cv$Kwrj&b9i{7^kfcH#
z(d0a6vAUx!aJzw?&LcED+W_^Zx?qU`VahpMt&MF_N1OuKBE9k?=v|t}^vQ)XOg7qu
z(Oz*t#Jr%?eBt7bJtavr5%y8ps&~(X;6<NmGOXKe;<DAT<je3(0=-YgsR8NniR4Ws
zjpB4{l6)sBxWVmJhgnPO=f^*n0@t6Xc`0iN1>9dby$3R8*t)oFRPlc)5v+d=X(TPL
zuk{?9vzQNLO~LZF26t2mvUD)NNn<^?puBzV8DrE+0Xs2vbvBkeOG9{`?0=2JG@2lQ
zg<F6>Wm_GHqq+{S<4meMGk(wy-c*dst==@uVqS{;8rH0jl(>phbZ59iz-gt-Kj5WB
zK)$H6V=Tg^t;i1fbsPCvq=`zZkl+)k)psQcrBJ$zy$~t~cKWIRJ@z{8rw%FgsYil9
zM|Glvj=rD~rURWz*#v&$h0b6=_<%W-9#ob2uLo?DDsFaCgXTT_rH<0c6sdG!v&e$r
zVBsVwVD4<$OP)Q_J^`r(&(_JY)v<^lI20z2H8rs5dcg1m+OwD?EA=KcG};V?pT%Fv
zzy-NSNl`6BJeN#nbCJ3q_WxM0MYnA%C+RHb_W_?!T2Ch4{09?FhMnay%i~ROA<X)G
zm^^=yUuL_f%^Nk^z3h(RxRRGZM+_ow!eJ_K>AFz5MCSu)Ld>;xvVUPWu6^6j$t1+*
z;``rA^a&!b%Y6dKuvF!m{N9g}!}2hW1V$~+7CHYfDq@+^ue3OKt8JZ`p6#;!pkt%u
znsr@rkuOZ6vrR%bEYXR~xnb6GC|EcXDj!exf#nkkvApO&Bm*i*4b=PpsQ#+@D30XK
z$sU^!Y9rE1NII-1gb`@u&`rbnpvZ*~{wdH~`}S08+gJPQge(}xlCeSmMX2GzoyoJQ
z0_wRY^Jbu-S(g%|r<1nAPF=WLP<|;~F&-r$5`mTaUSEBD=O~!Q%VV9dcO~*_3dCQ~
z3qD<f><U$rj{AjJH;5M+&mC?@05@%<?uj<EsGKs${kiefB_}GMA{h?GTvYyt3KeOv
z6k~He!k23e4lXNhqea`U0~-=!=xu8TMDC)XeFAy8a*;f<R=!~P$n@1X8;~jV7+u<O
zIi>l8V2S8PdQ~Llp!~{$;qZ8o->j<yWJS<6m+rch{}6_X<yDslG<vAij~(%>B^Jzu
zO6$&dkK_4>j^;6Ik$g4?@2F*yYqN6aMzxG1_%li_g`eoyxmN=?6VI}_X39h{3}s-a
z$HRR6cM|ZoFu|4{EWuA;a@{^Mi?NxEq6<9|V9T9nWHF%-Ns(8jNHN~lEPbxsdt!Zp
zqN&wxpMgT3-)>00b)>CkZZ8_7me6+-Eiel)BD&I#^?vNV$SR1VsPw>E1V?^mS+!>E
z&rGR>x0jJ7;izmX6EXB`omBb{I9Bv)RWHJctgESL+QbH^;p6}Q|LUQ<RM-1u0R9s|
zPq}%vR{bIIN(&L>|MP?`ifW1^hEc+see34og-ury;-Fd#<#0FY?x}e&E9&2#-5;?u
zuYw66Awy}Bg+Kh^36Sa_7oR5><F^UL19h9JgDqE5v$c>`>@4_%RC6TK6eF<Lpmt;;
z`_#*$hiLObfG<#Cm9qubfWC)<2#gLamxcdPfnr5M9(cJX8`jI&Z*XvQr&fMk!^hC(
z=*ECHj(R^db2Ak@_jBJ%EOw|CYA6@qBmKZ;gd4m8-PSD?PjRg+1KaPQ$BGACTbx1r
z>`z~8`5b#dn8rJ|OY;VOYdA`}h%2?X${xHFfsb)v>CK0~do!tpxu0a>zrkSK#uJ<)
zAp3j(CJ%wVF2V%60ayFYTz*yrz4&wEjO@uUD*Vp0%pI7m{4PqfcNa-C_xM%SiaQtK
z>u3+U0j3g9b?G;-gy>D_CB$IvD`khuv1gtc#Em4+Ii}c~eO~P^WWt~azW-lsbc^WX
zlmIy#jaC|5+*ND3+{aR_e2mH6p}m%Y1g+7sJC*&@(5^u>h7T}X?UuQK*bb~Js{!y=
zaxS>cP{%$eD?njcY&`)BAAvD4J#4LvKfU&2?wZg}c!u8pn*Ri#Q9doq>4mC?0u_*F
z&_14H4s=VUrWZjh<D=V%jNo}FP$nU2L6?HqMkJj#7`u`n?xH#Q6bwI)3gTU9d9JU{
zrIKXKuJ<x_@?mohQ;k$NCNVfc1FYeyQ5r*Y&rXa&sd%44TSg32Gb*S)>_8CodJ~9M
zx~#L@2ny}hv)(7n^@gTA@DbQZ9h$%veHL!h6s_7pH104ELG+WrLI366ol3D${wFiq
zn<tLWv`pS?<GsKsv0;9n7Tgy9TNep);_=ZArY(sjta|sOznksuTq-zXgvRSdK1qdU
z8`}Xe7)?a`qsOqTsAQ)HdIO?}tchpBRn^YfSIw2tE;qneb}Y|5t-XpZRP`O+zWaj#
zw)bL24bn|fzGJci{d>g3UCR_^@yWc*1hMIBsCBf?VgJ~^Si7eg|3D$NLbx=t)1tnW
zJ}=22ube>%!|;o~I!kL|CvQ+eKX=?5!r`qFb+#G=hLW;Cm7~dpn%im-{6rUE#FrSw
z&<N**UHB`ux(}iuE~1Qn#3s_B1lE#u+}0GPj*4~Ru(e`>*>PK{;K#-Y_WPbo!r{6#
zwE64jttTCy^Ced>LoF$eLVo{|N)yTwTs~+P8B#e4s%omB=;aX}aF1-XxH93H-&2FL
z^G*cHFQU4P)plce<pu3?jnReEuSF(DQ69V8Qs!AVX9A_$nCP5Dg0rLtatzz8z}v?`
zn|I$9BpkbQ2bx2_$3kgXX-u1NI`~w6>XOCu3DD9yyL!Tt(UARw?Rd}-XR~FgPldaw
zz0amtl<oDt@jAhZ$3R+Zn>+)o@ZLuLiM#`*OCvYS*{R-|oRc2!y(Y0msw-pn@tLIp
zdeb+;DQoId1dgL#W9JtbLgd+peQx}B4y6fR%yE~l5`;kef7AWUoQ4_Zxw3xk3J|So
z1VQ>FdnV=RYO7%dN-@PP2b|nwC=hXU5Ar8NJlHwib#e92UjK)Ig%JdFz?(9ACMOdk
zh7USjyVX}GMg(L@2oz9>5hVpY@W%4on<K`!vc9OQ6OQe|k~o!jdl9+4+K0Wpr1tkg
zBM$SF3^t0>X8@}*)ql~OIS4kk)>$U9@J))E0`)zT3AHFFMsnYbAB{a5f#fu~+qwiS
zzI#g~lR#WQWa4T)EY7Mmyxe`CHE1ChQ66Pz73p;Ema)TiJ7K>yk7_%lTKl)lBXR;~
z(OVZ=Z^a;H#Xi&a!(ra+102(XUpXIx?qBc0?dMlg+0hb_Wabja^&6*4XN<O!j}KEJ
zc+CiF#5=v|r%-FeIgdrtD-iiN8{o?%iomAK(*{X@Q9}WMdn*aZ;>P%kdwK&8gxp-M
z%8FUGc*xcaa*Ba9SA6|y)bSjWXA>&c)R-3K3dg3{(rO>2k7}$bbID6FsStU@lBhTu
z=Y<8#@~Q+7_(VjkXzIQeDMy~1hXH2WvVbEEkhk(wqjG-%yq{5gVrT1}9+^)0_N5Jc
z0x9=UmzECNjfUPp784sN(mr-#e?I@sln+Fszx5bzl34yvS<>GVfr|AmRG-<+i+Blp
zz{N+#X|*D6-+moaE}h~wU+RUD!M2TRofVI_;1c^%rvfvmHDI}LLF!QX^Sp+`VXDQB
z+iLv3ecxma@F*=(Em^H?WOULNKn#R0yi1h6;ufF@dQ}ZElB!@rvfoF9=pIqm5GCK+
zAhOB5L{(P2(&ml;gi?2R66M);_9I}J%qi3@{FV^eD`<2hjy3sxaOgN-#-EJmb%>m{
z3-aB9WR#?;%ObW7YjqJ9A=j!Mv0~$jn^-J?eEcS%A{1(E7aLzhN(!XL8=+E^a0&B4
z-&;kL{!&Rh!E2ZamBXxTM-q)`WwX+-_>~}@dwPU4bKH3>%m=58o1<)nJGl=Uvw|-?
z_!MEM32{(D73M5xfW1}Wy?m~np`sCFpUTt<qD8K_WNk)Ig%10u$qQ8$ghZ95i&N<A
z_C+2>E<Opg43);$)L|ITY$Q?ndNX3rvIZ2_BabGNZX7<mn(TnNpJ68|?Z>^fS|3@c
z>XW)Q2c`C0be&)6TYP<DWrdP%HnlJjpW4rch->3zbdX0*dd#9!e64&v<+4o>4+*Kt
zjA3pbHUY-UiI*0W{Fy5|Ey$NaexcaQrNtTUdHMz~JWw5FT4hnAEP<?R*G)4^p~i@%
z7uYN^0>e*mfZU&^SjY&CgvuwCY9^zw)RAW=;F->Ryj|;5vu+y%8Gx*~G+^IB9X71{
zQAj^@s|5rQ?WmQCw@bH$Iw_GCqVNis>LXWzsBM|~(Xm1nf|M0%>O>IeySr4%^DGLN
zj@$vJBD0hdZi!6b_E;*Qo0o{HduLRCC7AoRX9R3}wd$;~ZKV#Y;2X}QdJBE-ws1ef
zE*D_)voMuKF0?yE#!&u&3R*>`=IzcXu=kbzzXWFrOl}&|?X(3z45jWdJhjT7Z2p}f
z%Et`7wdnK6sDyhkCjA1oeX6}4S6!0TLrqrp2=a5ihd+*l)K03hb+BVWf^?!h)pf8}
z!u^p%Tvm|C`&);qfHj1S(Cvq2Nwx3}rKpan1EMTh7jq@Sk(%&rz%n{D_4Yx3!OzXv
z9DF$PUSiqjuHi2W#!;XKbE432xNamvj9Y`fE^|Ah)wm=ZaK20GkBWsDR{S%;aX8P3
zs%Kw$xaooH^E|R24rkp=h1K<&=@ilq0a?In%Kj&@Yk>1+HhnDP3aJM<&@N(QW{ZJY
zu~DT++-gg*iq+J;LOM^5t*8@tRK0zrbLM9jyzum`lMRAyZt{?+y1f`2^eB7|wJ9!H
zM-lLU53^M@EdjnQ1@Xc}{0gF%38?mGdGsAnHc?`*4h1k-p;4;u#8RmU;`P1{UXW~l
zm>pP@S}|XtdtOuKSvM}**tC23Sg>}L;&?Khf_n7?qL>jm(qHohX`twDXOX>A;TE3k
zxFg9>8F}e`1yp&~hq1~#A8r1*sU6%c+l7AiW%LkKrtdo&sz+JeRRlJO*zCqsk=p(H
z`e9E1!9i*?Ks!p{DPWmtm~_g<1S<Kf=Ca+Gk0()|POob&g}}k6&tN_-)Z8Nejz_Vf
zGjJ6B3{njni~KFJg^F}(E$moeo1?0iS|?YY_>59&oWgi0t^S+XXu;@Fse4TSchg-d
zB?jp9Ojb#g&=EWu0zFbk5^_Tm1}e~mn!Gdcxj#@w#L3cvSZReO<mGd&hX$)LGr^sG
z#xnYL4ZFHx^>p=l$mmj3Zm`u@;YxHs09}%o7-1G{BcGf;5SY~QMf&i)JiVi{Jp|30
z)`QoQZcqeY?ew0xO+HF8)J71vE1jtj?;#jCdIaeC87_9hUAmgtdn98jDlfM{_~(`2
zJ<H3^_5yVXcUlcb!z(HU!+b7FUXn+E179Tq@8KX~#X2?4jeiW<2KqYWjNBZ^>J2Pe
zOEfLtZeJ3<*G3nPl9JzQ^2R5S)m>NW#{DiuyHw(XgTrT{<b7f7+$KVnW-!HqXcWy>
zP1DMo?hK3{P-C3pK#B*#Yk&i1KUFmX_v&t&&D7oAb3UCD3GP-uD$+4a06e%(S78i8
znOne(u0(Q_HL{Ow5nzBfun+1A>klgEc-oqL14C;rB*`gk^vK`PupJvDDC+dV1K42l
zqWiPNj~X*{X!t9Ria{l%z=3AsR0qu&uJ8)^G2;gH+L$&$@ciV&2^To|73bf!+ROkM
z*Z5=2{sq{QFBD1$nogRo$ozpn_(x^}_|h3`|I30u{rXnEw?xl%1rqX(=@<W}anjmG
zVJrrVRR%XhKc|tySUm?;lKim=eR7kD-<0D#B7;^}B!29!Fqn#BzZ#MPG4AF;i?Mip
zD=AuB8os<H;n>KZ^dgVD-1Hmr5atu7T}Ct*usgl%6lHIsgDC9dhIMks{IIm$%sIAU
z?St>EFW8Fcqc}*IG^vV*Z*ZZ}`gT6+xLO8aS}sidj7l`A^FJNJ0X%L`)U(My{9G$I
zKuesV0?>)tl>Dn~ofbjr`1ndT*e?Ka<F&FdksTC+9?#)Q8hcVaTig$&bz|w<|EY(B
zC08!bSEq5dXvJxk#zNiVx^xxfi1NjIB={@&E5i+|9V71VNv&EB$<i7PQw`ab5wLGU
zvy`S-P#x9eYvPAka;eUoXyXJ+dz#1UjDqOWfLzdkgeQ$Ml&N2<(#3JdfZD%bRfZ5E
zPbDIw-J=md3#TjW1l{nqUGd<381^o*O6Crhn5XT7dCLzayS5NX+eD190};ePXDD@E
z^GqCb{Fy~4GnH3^W39}mnbdn-Mq5}{$X$ShTueM2p}A8vW|BNz!Rx)@PiILil?z-t
zfljNK@}Vc%a6)hs(@dNNpv1y%3o)BMq-wBG!hQbnpxs{iOlz4gvBo#{teTByr7BcY
zg~uhz94mxfz`r8xmZtOnJfnv}gh@m)jX2O4{a32)*oAfSPGAxcNj)i0rZ}(c{U!c2
zjNO3~Zi#BS=n>Ss(I)Fp3S5!(@pRAp5FN#2qxxYK#2wY-27#vi&^u7u1e?5;|L!r<
zR3JpE5_~{uG{FSR9oxO_pdY5i0Wx&r^-U;G*hdu`jijSI25E~`EA~7zhWw!|sV(;<
zU$C_Z{2w{F-(phk6l8-mylV1=qi7y5gW_PhoKmj1L#}5&LH9xorB$~dqU72w{DIRG
z6pk-xbO5d3?*bvD^FzT%_m1pa#eFypIRrO7wv0vCv@C)r?4D8Mr*%_KpHMtac2H9;
zeLfbw$a@Y|M;QEZ6<NH9`G!7`*GHA!uRLVDnY@R6nbbIYpXR<{D1kW^5-HzvzZLd5
z-m{6{VJDfwwe&J2Tnx>Z^4}jw6^|Vux{HOA^gT4zQJ5jY<B&(Z3@+(fQV@OfNOdD2
zbP&`EZi4qkm7B4K8rrVwDwF~Ve@c_7HDCkeZoGRcNdW(}L)oCWP!wzVQ?j{~j>0Ub
zk26CoMC7vZRp7Z(L>+nwKXG>o=wM7nI)2OVy$8glA|p8bZA7KCJ*9)*k$nwes0kp-
z;`G_+j_S|BQv`U{MA8Im3W|od5K2i=Efm{A4;9c&M;pV#flpgZ64C9;FzHN{KTX``
zsJ@cCP?LZPnW5Ah4_MBC8sYyIJiAc^%>5-#GxTsfX82c#rwt-)!SDq@e4%I{M>t-C
z=(Y{nNWcbh7-U@<?)?|-w%aOBB42?>%O2z;7VV+MC8`yIPC4@OxxaiiH<IF~lG5Yo
zP1&HtV2>N%znk&#$d5ZzJHSrer4(j3u}McqJkXjOwh@BkX^WR}r-A|p<kFXww>8Vr
zpb$-L^Kuwh)zVe;NT|!}zOTO4@wIT-Ea-O!QCyE`c>J$IYBwA-L^6}5y;?ubMUDGs
zHswS@B;4AuzY{O7T$uip>e%E;_?<RwV3_bI=mix0AS>*9{EgL-N&v)E|G`ZX%pKX<
z-u<CL6!m|!k!*`oVmQhKd87*8r{kD1c`A#WlqTcFv%brsn6hl>Qb-#9oMA;u)(nGH
z==CWM#6XA3cluJ|zIsWNLcALLaJCtv_*zLkC>-!mPpbO9D_Fn5LO6{w$GB&X=7ay~
zn4AHM)ZND1rsLfTkb#mkRUT<Lw(wAm#pA{#91{cc1JVlw%Yb_igET#Vk#F`ekEV+V
zri)QQqc-Rm^we4ThnkTd1P0poT7ct%MPFS24L_WG4vl-#LG2RKk9jqu{Fp99<)WrH
z781?2bxLe+7OhD+7sm4)1ElcDm(+`!#4}GmcH=m)F`HMHs))-$F&(lv{HkgkR`yWN
z67RkKWc2ta$yl#jhm4Cyti-lVCj5BLIB7eBc*q>#4!7?aoK&AEtT?MnPqpNim>$mr
zg$1bk$-udbT(13_GJDypVQ+lOZBv55(ev0D%j(?S(O~tO5xsh2noGZgrnpu?De}bH
z2LT=Uk1sFd1;zh!<sWpkve|usoLm=Qe=B^GzH>wL6&%1olpJdXaD0`%@1aWCP$Enx
zWkY$Ybi6j1Kwm6ze`H!Np8RO`$!)>Nw<mgzRB4||7DCFM_M(1{tT$2L`1#++YqcBd
zZ1ETFJYiOgphz2;l8;m^<{EM;|JsZ>Vc<3s1!fO6w$nrRl`r|G2$4CfhduZh0EA>7
zUrZ&AL^-SnrJmHG!<yR5QjZ({#~PzsS$5J9cuFv6_xopR)0cX}71UgD<a)2d?FGhl
znFkRWu*Wo?6g9CQ%kA^Gj(P#Dz}*ym(mdU_Z$wsCM9*YhGZ5&Y<Lu|2fkqh+tzCuH
z5^bbiPiQn)gHf<#{>c#47Gz>DqwrZUOExg_Z6HmG+sqE_>FS8FX_4GqvIBz+`zR+!
zh@-OvIaYJvWHfworO)ovi%ZdIJN0rv*tAT-#7E%M5>AW}zB=c&mKI7+?1#NhJeIv}
zr)JFc%A?H_zweA77%`p-8jo9PEm%?|Let7vB?uk63@b9OHj!?LeCyG4N+$57hde&K
z)1$38=2IbwM4+jy7V+D?6Keq2uX#M-1n$RJCX0TdGF7z&zoIaXDNVz|+E3~l78Rh~
z;B*?Bd^UiT>xBJzyQReU8(bVjgdJ$O*1W9DFRH)7JQNu7Ri!OW%WZ)wIj(z|e#PdV
zsmo+u(Uo)AE?f>6vi@a2nAe-z=Dg#(QKfo$dN)pP0*ZoH8QoN0i!Y|qj04^Z0;XOF
zs5)hLaK?E=x`wSY4#(LC^=aWw2+hs*iv_FB*IEI%-L{3xL;%oEI|^(dDV8oQDgGFy
zlNf}3f_Q#ihslN-P?{{{zX)!`=rJPQk&<G6(-|B35=!vA$*QE-IbsAU-A;XP+Q7_7
za~{eUv4JA6YBwy^X7-K`#bDCUaRM>9>4ev(U}L;rH4P3m0zkvpbAf$3u=?eKD9qFb
zCCFelN7-L|OD&xCpQWv$;X4i6#`B(M|NrVka8|AMG9DHE_7gL|ocJB)8r7%Ibt@{~
zT2w@^;M!DCEi+2$-$1iy{Mc`V?KY)c{w;QV_Xu**1dNrzl;K8$;7Y4e?8aQ|&mslD
zzC-5xPRi+H(nWjL7>CI^#*aO*aUq9db0-&3LNeY?8|8w*g`P(9LEIUrc$@>=PYBpu
z<;x&T%B#2eiXCPw?ro(gCe~`ec*UxJa2TOM+h_sQVIu}l6wvY~9Hg&8ZmlIzu4Rv)
z@=f^lc+#akQIK5bMMh7nBzg^-914*e24Nh#RKm2N65>Q1w^J*YZj56ZN5tS$MAm)?
z`_JytywJ1I^1@4<>hjrYjdLBOEs?PV;|Y-9q(qHg>B6&pwIrDTyNzuM*+N_A-<e`8
z<|YINcJKz`>0M?y^d6{E7v#^apn^eG(+6B$rWEPm`dlzRk-qn01mZK=LAOiXm-~0b
zO$MeaN$7)I-DAe(WO6}e<x(Q)49Ye1LKB@IdwXWMS2SQ_3$a_lHR3y?0&WcGW;scq
z(f+&mn$ej!_?IK~I_>tgRzcCwDxm@D7JgG>j)SvJ7%%wWK<qVFy}yE~nPyp3e&jef
zwfU{4t~HmhE7{<2{b7LzJ-{q}On}h)0F`3eb5udt*m0DZ<My!XW@6lC0oTrUGJlqK
zh)`z>#bAquO_cY7m9>l-U-5g{d?yhWc)NYKo_)SXsbJJTm=uZ`YV9G*g19-Y!h{U4
z<@W(f7autax2~cUtFo|*g9#*YCdralaB+k2y;)SMW^PaAwlz1!!4c4H_3A_ws(s`1
zHsxEz6!x5qJDj>j60j1y23mthmgDD=r!26`&a$4mXkmVG=jm0YeXnUq%?98<Yg5Jt
zC?M$t@~kMJ`5^oD1I>pVKGm&i>w1|}l^W=4=jEZ2`zS0Y{7M~JKV={sqfZ)TTS3{W
zWDh|$UbO7{WM^#B2R`r?ZLs&B*IG?bpjyc`ap7e@+arwslX4w7Hy3D2HAO&H7~e7T
z#gm1@0>Qncsa$hkE?eJ}zRU2m)_X9dlZkNbG#A{eLTexg3`)PLa~5Q?%wdZkU(@U+
z6t0Ejhb?41lsl2HFEY6^zS-kV<L8^N4ZcI!b>vv=(zc+mJwcOsVrcm;mCf)l6B|Z%
zYE@~I&f2qE%mt2w5{WTNZZEqmE%YmpU-Pn3I2<{!`1#JXLqHZ+1G0P+?oq1extPT+
z4{2)sq}tx*Ejv*K1^u_GIfNGu7nlK<+=Zv;M*t~*(sF{m3#Uur$7S@>KneuqpK3U_
z&(u@){8lMm(Se|^FnL-r|Mc=1-hQ&5w+hd2uVpiSqi3i!;GzW0dp7Q}GiT?A3bnSP
z!T2QpoJmX1WTpsW$^|vP@yygMf`F-=N&COBrvx1C4km+elDO?Gf!*und2^1q+vyCu
z7nJctGPj`NHyM@VqzbB}0U)+4O(dj)?PVuJevUy;-kvAM>{gpv-08z(*A5z9dytks
zdYkkPxGVt#I0-3N3p9Xz-hV?FxQN~;5?$uo9zN484dCjfEufpXhDtHO%dS(ZucC&_
z2Cdy^Z0IWA^{B#rXZCor`Bn)TO>C|M!>8bAIq*4w$6*8cEWND{4nvhVX-^ovo<|Hf
zVIkRg!NR3>%ZE9hld)CI!E96zRs4z|VnaPlzlfL2y}zRi9HbZSt>fo|_M)Gm;86F+
z5C59=vgH|UJxMiq{N|q}EpsEHIb@r6a-U~CPwXc)9y4K}R<JeJnkESJ3k>N5j32L)
z%XkKv;Q`keNWQU3@&C;A_1QELdv`#Q;82ke!9#f042DZsCJLNvFgN&jlEE=maLeup
zYnVkEOPChARl_mvZ_WeEiBa44Wiua14SIT==)WOs7DQdDD(ha(j4(jZ|1Ucgy>jQ|
z&7z1>xlj(?<DUejeAQmU7&c=RZ_cp+_;=4;X@eba<W(xtphIyOVV0v^rf4V7xAJ1?
zt@Om|1j6+P7m6zYj8Pz0@Lrb;30+aj)V6l{2;P28FX1Dbr31*MzMKm!Li@VQxk@>1
zS{&T3ZmxDcq!%mEK*A?oId8E`&-VDenyQdC_b}Hby0UpHGwvM)VI}^_O!KpjuIQ8A
z9lP|{s8T;|pb+YxCxow)@sA3uF5XCsfYfu*+fuV&463AO?`Y8HaP9sNpZh58;xC>i
zfPl`#Mv<@A6nhGPQ0n10&6E<~XpPmnS9S<d)HsSl&)2K<3Agy^A2hU5N-8FJ$6q-Y
zcMVLE(sV3Iv%A#t|Ah^HSB)xD(Y2z{RMINUa6$1GUwPvNK@s~*prdWI;W#gSfFTXk
za2!^fop_NU(Fqq8Zca9-o(jz*2i_^5X%$8jGbaf>%I}$GiUJB9sSAZn;_=$2TTeLE
zvaWmOb(J)^s}<^-5F`m*)Qhy+#RM==QtikBW&;4l=b7o~5OgCadSG*i<nrbXQL9zu
zbo-1!)^o$+iEd2(e0KShdMmD|v+lai2L$<W&*Q(82g#ry?)r;Ls8AKpERfLQ*k4l#
z?j^7C4b9z0_45;$5Tg;8eqtIIDjn>pi#>PTbdsBMtza+WI~7_|N|LAiSU)I{+L~3F
zGIOZVOAf^ow}wIdDj80icfaWdJof_kKn_*5o5H_PiqN~J&y3vvxV3~;?Hv~DVXZ|;
z_wJRZLs4+}mba4)-uYbUIl+gq^bUg(gaZu)MU5m$c)Ze`k|2^A-?OeN7H&^YCp>m-
z($4z)PuR@5ny!y3+>`@h_f;9^8d==Iy#6^)SkXz~9WE;GfIpQAgMCV5J8}l(U3!f(
zOD{}Vg-dQ2ZI|Kf=8x!OQPQ~AJ<V6*s{wI4fsYr8pRy!gw$&oL*|~3$9-)K7n$(by
zHkZmrLQ4X(rv*2S2L<s<Jj496T;?F6_?VI!-W1&;tywt^F#obCj#1vKF$+%8l{S5*
zU(<$=*Gx(6@|BM@l>pO3rp9_ulR1>7B8A(nT~o>Q^*s!(E4q6E`l)+Us&GJSVLDGx
zvVa1o*V>RbXln4=*<O(*eA)|Rvvh}(x(JiC^n?H#R(4bD7XeIvz6XmW;Jj@9SykTb
zOk0eK0ELkh#RR!jt7AqeE8R&CbtxRLRmo%<_01(ABeF}AwGKOx_Cc^O^{Dd12b-py
zxOX|b?KoTo7E((%%;(i{u-=?C9|GExMP{XY)~EDq;_lx&|4>7oTKgXHi3<OPbR9o}
zB1Up#Mj3&?06YO6xg4OhP3(>k!BcF_5X<fL^#$H2W*1RKq^2KBf*S3+?}_OmQb<F`
z45nx3Me<|Mz`E(VEsrIC@{8#P6|a<IVEx{S2a{j<xIo`vtOe=33ZA=Q-Il_EMxpV=
zimEA^sd&;&{RC#_EcO1NpuR=@Rx_@|JY&Jdb@J^%igMds4ct&RHl&iu^Jg4kaw|zK
zM~qq`yO`L?)>-4E%Bh5-%U*%xv*T7h%^|+$>h?6<XaSScgotH+z$C(*y1J3`V%zP-
z=BaR9TQ>BpdpEtMU%a0oD%VV(V;c|?fU(gjod~9R27*a2Mf$*WOyWw>A{K=`(7SX@
z1rwBY(*RjOroZVbo4jC9?VB%a?Ig}s^%$gZ&4NH1DJwtN+udo>{ULJ67}PKP)DkCc
z>bk4W^ImJ4JC`R*v6r);D{uv(j_%pvjC#SfB$!8s>1bg|T{U*RhIM!xflU4b9?D@+
zUgwwuUdGOD`1=nl#05mnuYj{57qVEEhD0awpv7sZr8AfwWG8A9Ye9Wcr978@x2ht-
zq}xOnkJD$vM|rkB)0_D*K&_*}a_s#qg0;ftBayOR;<>1{Z`U2}{70B75H!)>4b2#;
zdPt3*#0zQ?=YOtAnuEOTi)=(2Z|NNk?TZzW8;CKH4M1^D<tDE>siwBWP6^ZDttk&N
zo%&OV+bj!0%GnH6QpvgcR@3dG_XYlePE<@&)ORq@(l8qYLEn3PoNa(Bt>hA{4XWC0
zu2K^ynr}mAC}|>&7tT~2KCkTM^)a?SSj_i*`T`AdUFs<<-8C{cv%h!ecq;h=R*>2>
zCKcmMpb^5Bw(|k6vpt_B4_yy(^<5L_Z>oS2`pFe$8q0z@yOCl{pgYeM%f=oD0ryyU
z8`v#NO~yEkrQRdeMsC}8x1>P}34)2|uF49$fXY9QPNM&b6wc5$JT~yNrI^X$dl2!n
za~=*U&(G~H*-iS%pnd{ArcJv!w}^E=%ODUWobM-Zp+E8Lpa;HIxwaD=F=BkxVxtk!
z3+6m+f*=YWbCE4O*ZZUk97On;T<cBr-;@-_enG$*_;QHEClX#w%1W*(;$Z_8>C&Db
zSj`@X@@_@0h@5YL`ZLLjWZ^7rgrsAPMnLbm6u#}C(?qx~G<G1QFR6X^9I);i?q?t~
zA>TlC^E|8l$pgb+f9U)!{ybt$_pQtwtx3$%M|G>^xHh=!2N}*fBuinn2FI{7SD)<_
z`7VjZfHk<kwt)4L2Z;$fO)E#VZY8Vn-WyUD_SIL7Ptm*Ow2P)))k2Qq1Oec`!7R+q
zWMS-l$7$A*zC}lN$})C0bzzxNg;V@V3~3TuR4tXeGxoE%eg#>p6TJWpu|TB&6Zaq`
z2G;Hj$RI3xTO*}VZ{=X*-SEhBF5DSW7RTvpXmCfy5l_99CT<z<r6oUWlRV2J$Q`Xa
zTq>ze`<r~fIzmo1%)axz@SPWDh}UV4U<RI|Udc$W)w+C`@~Bbd3pnZH%GH4fck1du
zqi8@~H(^gaq-!y^C2vP6couJrydJN?i@wAIlp;bC5FAkb`JlMhAgYexgiew-$^swi
zLQ~Vqt9t`U-!5Y#cSIuwu+H);%hvose%yZ=o+BH_Tc(#1N8eBp$@lH#@aa7hrQZvN
zOe{0n21QWJWN<>lN-r$|3!~*I#SM^LzC|rSKZdda>bA0TE(~Uf9pL3NB9!-;JbKGg
zt6-hnW<`OlUxdawXg4e>zcC@0S}s8?7EG9NQ>;5<lw7IQTaG^z>c^plLmKC*=hzNj
z=O^1j*e}|I5t~fDv^}Ns9ltXQH{LQ-cbv`4ShxRk=%&2`KSMGzjFknC8ipl6s#=Q&
zRh$h{4!kz>i?_pSq~uu_$~G@!A`GV*UfiAJ_;YqYhFTch>GIl`zIXZk`jZ{1eQ0Y3
z5dhOP>>skpIHa7bXU)AO?F<^LB*mfDFo;d)`_-ag7EbaVKm~byuj*is19rR-w|E^X
zv7<kXmav9tWm8;oe3Gr5r1{79<!!A@i-mi~j#TBC<QU4we^(l<MSlUtNMV0g$Rc0k
zu6r4|05~M<1ujp;gmyjakztLOsP2+I+e@2$C~>>wS{azLdK=?hl6P3{aJ|lTtDi_`
zhvI-TUgj^hK0oZpPN>+oO@s8luOt=1!G5gH$&;ZEi$fC1n;t6z^yjZd7MRhkPS%w+
z#*=X`RsoX8h*Ar*p(BQUL&QIEVDLiG*uWk?@Rr5b`lEDF_|^u0XD3OuV^{!3G}|vt
z^_he=?es8`(+hKIqJ90)`ZXs$DRKg_zfBkG2`&$~vtT9lch&!30Lw5>BNJ~RzTy%R
z1%moEd1F&H;N<@lHrAD|L$cBGk#g?$XV>yr`Bp=&bGN^iCO`lH3Q7T}1^`tEZvb|$
zJ>-1yDyAOM6QF|c0niLw#An>rTXnUCD8&lE+-2vs19O={^7I`m(L9lK);fp-_`5cF
zX&W%br~|wJNc&rD+;>K7d^6(@JY?fdS6iIJTXcE*+n&w$E*7tYxpR4MV9d4;s8f|o
z<@e_u|GE&1hjd5DuFzY@F~O$aRR5O0w0;s|bj)H|#xz|<Vxy1Fu*5myhy#)7kpZ}x
z!OfalI60?QENmo`#3&rX=!M9<a(nfhBY_(-d{EJDo>*S2WVIJ$8gSX#$>S*ot~7my
zG_0@Pg`?V4KkJ&N5`ZkqcY4LY6$=?gvwjBoGfWelM}AzP*XR{(X>`kWTM3va*(d6Q
zYd#2Eis+F_wU06`L40nKSIg=&CzSd!WSd)6!p7|x!xf4>B5Av>VkU`-9+eHC`h)Du
z+BzvLZfmzFh7|ktvHXksi6;FuI^>yXOPWD?ym-v6Sa1c?;_S;MYENNNWq2ZH_cpYY
zQN59B*pkR-X8!Ptx15#EUFRjj2ROF`en=DS8l@ZX@Jh-J*<Ox3N)J5;lb9=Kngxsr
z`LYsY`c1Ifv-GA4CL^Lmv8-75AvhAYc$E4~vc@lacl%VXug16{Np<e==Jhvd4v0Mo
zq--odxGOT0Dh+(4&H&hs3gSYgDRC-qh}#|RYZ9)rXD12Yq-UhT$XUv3;-87w>Ncd~
zxJv>F)=|b_6_TOj0r;)tGBo7J_wfG8+g0E{>Vqp)rH+G623$>~C@^<m2A9Fp%blO&
zDwI24EaxB}<3#OtC;K_%I_>BFu@uf7-Oe-T5o@3kuq~P1-PLGl!G0rv55ntz>tea1
z|51}OH5ce~q_~S@np?az#D4tX_D%nPbK=s9tGzUi2YKUAE{N_d2x&j|uwPo7l;_D6
zS*T^03ad<O>)G_#<n4((zb^cNJNa9zmHkJP@<3zgcNHeic|JpWL~AgdHRDtaDtHz4
zZUNKZkQ@GOWY>lQbSHwP?@>YJ9Nmd3I8-LeNcmWwpSlU!n3R00cjoVHX_%#28@~^d
zz)$~^-p#`qn>Oq_&+=ur<$uNJ0*>DB7~GuX^U#<OM@*9&VzIu|zH)zfFAP}wqADv-
z*}$@|ujv0jOXu<4c`IA~sB%f&rW?;EC+3=3RG(Jj2SGyy{;;S#@TJJom(i9Yff_Bg
zG0o>0X-XQF#9v}Xr)oh8#p+PJUrn|kcSn6dWKH9S@LC!vNpn|MS(&+-neO`o{m3Rp
zswuIF#lTLg-1=!~e9t3X$pF2pBw?W0gTSz*G}a#wcrK$#9`L-Jag%=u!H}&|XmPFE
zVC<#t>t%1dXj@5=e{2nJdvP$5ZIGo(Z9W3rayZgdIMZ)&gkK>9k>8qY@8qh`zI|Gi
zDTC355tpJ0c04NS`1_24-F!4x)xF|bD)<aY$`&BstQ!S^h=asiNe(G;E$ln?`aqSo
z6@s}t!p2t;76*6F<n0qb!BJJyd2gs)ep#RW46G*K#Nb8CG=YbgmHmKzc~Nv3Q3eG&
zT&IfTHScz?xEcb@!v35{eU5mEqDxj{tA$I0+!?OWUOEc^Ynh*8*UvI(Ph#uD5k`>+
zTX;6!=e!DIJZ;ImC6QBX?kts3^t5=;hnRNI;9J2g;wp(%_{F06YY?&BVuOoFmJVre
z-Y&2D`Q%P5lq68bIFW{&<wfcTDg`<hwK#ZN$dlo5*RyDvCd{4yv^>PbpTed=sobu7
zG>Ud~BT0Zx)3HATbPU2zo(6IfpZqF2m@XJ1q(>X?FoJ&wa$7(xEJ>c|yjwKB`hWlr
zo>wnvf$u;yc05-6b<7+tzA~l9AqX;>XuBrCE<x=9`ZX}GG%}RrSgw>t+Hf)?VNY+Q
zS>g8m1#5R>4O++j^lska5vO(x)`Tu;hOuuyh^McHq`Bj*ro_{VEg#vcPmMh9<KcpM
zMb)SF@N>1m4JLf2+{Mw_d~J|QA$))R(z90C@+AD{J9qqT?>!%>J@p%6e)fOU1|Niy
zL*jDM6iCXRX1Co5f3h{iR^=`O_#k2GYcCjQb>>pMVPSUN-Q>-q+|ro<3atBy-mX|L
z^n;nqV_^ZFi%gli_R6hUwNvkzOP%3lei0<@moXB>8_tK!|M%tVPjIV<MvX<6v;qBC
z|7IAry>t{Hm33z=bfCUv%IM?R0~or{ho|>KR0n9e`HH5ir@t^`FfM)b2bA6eVYWqf
zmQY+rQ7F-}>R6+VQOW!_#F1_?lMI2%WNr)Q=l^A2vq9hsf8Jrjnt^8=KrS2tdNciq
z1SP!Bc2s-_d%Fyd%r+1HGu~?xK3^VZkniZ9J9(Yh&Q_yAbvkv82SV3&tA=d>w%ec~
zSI1b_OB?5XT6XP-$?(qj`Fhz5_Ilic`}q^(|JM)}EwxBQTwD=`&vs2M-8%LsZ1Olw
zk?|J-mqKFVL<xY9F_?#H`P4Z8HC-C$M$Ds}aFDS4Tt9Qk@9fyZrt@c7&sA`|K}%IV
zt!6&#d*RS{?YAj!=Faa4F&q>a{iJPSXch}t9qb6)+l+slcJ{D5KS5VBlZ}EP;h>bY
z^Hmf*R0{g<w7pW>?j4UWGsM2jl@OCFTM6eL0E03HB>h?!yX9c_{au1t%6@3jHJmD@
z#b?|=YG+%5{yiF7S{gV<*CH6Ff=>MEuXq37;wsIpN7^6N&x&XEFFRDZ6K~6F@UFJS
z%vlseY)FWtNUh%lU6&Cb^aqXdj7#o62d7AcatDieN2k5wS(!JWpbaO03Ak0g9n6Bu
zd~&(yzJhX|dn3kbD#?LNln>S0a~_}oK%ljK8gRJ_hVLAWFyG|vcKUGMwtVm1hdrM@
zvC&Woy)uNMu_3QidwK!HpAY_8A4vU=VjelepR+Yn7N^93r>9xP_%m?1p1886DAO2Q
z$XEcxr+6-frbu1$q8>Bkp^u<M36$>jVLtH!4MYV1C?AcjJKJyz)N6i8FaE@C=j02s
zWLnXQW(*D5M={miY#YuWRrR~W6cHw5kGpt9*Ya1QUUp=XB-4dWBcx$CrB<F9iKggD
zKwwNCNN;yd2x@H;E>+7mh}nu=0-HWsBa?Dd_S?*tVQFNwL!{7!`NEnU^y8Pa1h>8b
zSO-G|s8Gyc4UJy~z$0j;>HA6cuP@FfF0-?Zg@Wq$U!Ik8AuN@dDM|@Vzdd5MeLteS
zH>j#byTr}6ILAt@M*dWsJQ!2mG&M0Jt%?>!E?vMZjMj{iT}!OJPyEk&g8amQd4Tie
zgc)KR$W~QdJ$^28G_48$GE$@#xJ9IK9maMH_Bc{vf?dy;k3(mZyuN-Pk4|7Y705l&
zm(GD7Eux}ncApGQrqDa;aw?9nl)8;?xKt%!MY^W{{pk6=(GOsVxE(((x9+Sy;7}Hr
znT1)R$g)1AF)%YlY4B^|xA@J_)g;$CwXNXWzi)D$DR)YpzCZ}~t{6k*dE+*>1=X0`
zGLmHlq?!4&0@Plc)cZ32(LZF*dXQ5<0066pA>bGRfI&a#-+KOn{IXKqMnMD$`9tUK
z?D|eGO-!-me-9#4k+Wb6F-pHdB(>YkWGd<tjeH2PgGjw_n5~e%l%c6QhK*1w@`ki^
zEOcrChUZw1zIfR~2X%nzGqsJ0!#M70wWu~Ea>~p#Z@$&8&^q{oY3jG!;q|S{Zds5j
z<6UbGkk0OxQ4p5pdB1F;%PlM$NdupCu`^_^NHnnF9C;%cA@zm4B^BAk5m9hgRKLvT
zZtpjbLgGT0!W3ls{y&xLn`jqbIy*R&8JfP0<Pz&dBXq3(@&zO+N2`Yw=k%DjSD@;5
z<0V+7^k(a#qCv5ANW4Q>=Yr%vS?w3{m}*j-GC!d74#Z?o1!K!@^@>2Oj7TC2W0dwU
z(H|>;JHax}wZk`Mb6PmBd6X6*t#3jgZKp47PyNFf6|Z~jP{X`jMb7?2=_^>eH@7Ow
z^(v~Er~|;&YGUKb=mvoKXlx5%xq<iS8e?uh)uG~v*|>F7=14kXwTK0qXzud0y-3|F
zxNCRAc-6qq)#)d!!x<tf0v^|II!8JBaFBh-oW3_>Y6S;MBY=7wTFTC#F_opw=Nbj%
z3`&wsgC|MJyJo3m_>2=c0g4h9_$j_TE@KdwA=dwmFDd)gUs>^=+BIYwVgthI*3500
z8t84#f)AX1LI}V6RIa0<%JY)AJUT}&_JB|43^}d7fP)nGTM0<Gpg&1$S|vf{0fd*I
zq)ME^=xtEyc|W9WpbWgmHYW@Sw%lk$E}8qq+Qy<5?3aFqKo4Jz4_!aDuy>2gtm;=|
z*h(|15rA>AT0~e8?L<x=oNrm>Zus}AnRTF^A8y7Oht2TrN@(wHgQM;1TurwB%|NlG
z3>ip1?{uXFk`0-==}pUhl1tlZB9~f`MR?U@Sk+1t0`=J$5}Pk@e&BMAZt04c)&Ko4
zoLFnD&{`=zJ>5^&|6@QU6<_U+SRO3z7F$ojz-{a-)}#@$mf5s3BjJqC-j+)L0COb{
z@>;wZ^w&jpsugIRGUh`ivN&DnioFC9t!bk5O={psR1g%4NUqeC%3lrjNaustV9oK|
z=*e88%e@RO`wn7^ysZ|~;h@j3U#kK4c|oOB2k)tICG61zCvyO{hwU|Boql6}$(Z@t
zdS2UmX@|oLo@o|g%=E5|513ie=?4bC9O&-7NJ4oui#;*hRJxAKj<T@3{X#xOc{o3#
zD2Uzw;1EF#|KgO^$xfy^ix#F~FTgW6;0%}cYZ}jqRelPEsA0Qzm-eCjZ#qjD%3dS!
zoEOlBcJ{hp_lt3r*1j;^XN^b&u4!*a6fi+ZX@MB}r4g>j(ZNRe`T{&!j~V+(+u6pY
zan{31YjtZSIqn{QZjF^utvRlzZn(K@h2z5-hsK{?KPD?kb2baA>eL1vP@{>F_@m;Q
zx@%IDRq~NszM-<q4XX!$>m0>Z&=lT!_Zpr32y;B@=R5(S5eVGD_W%teDuH2Y3egus
zx$c-^y#udW9K9aI)mq_Sc$D&K9aW+_BrsCh>J0hypMVt8<p<{HAu96-(2C!<@tWIJ
z*90k-42ShEV681zvbGG4_3jI&TOZ{71eDy~D2*hBqk8xW!&dfM;hig*oMDH4JZ#P<
z<I=YmZdK3Wzcg&ABq>0xgg)!6P9ZpBefVqbxC~6sEBVZD0zy%Le;O|d1S-g>^E9}Z
z@4`AFNW9FSbY-eg)Z0ODpl|F01(lX5?@eqoSydWV(Rj<2Q)QeuNgnc+K>Z)rirhjt
zxO*AIW7_TznqaQHXTF^%R;EGLXFz$PJskC9VAQONrJs4@<hjmz9*$oKMv8Vu(30+%
zU%RB~r)nSG5fs+~7WX<1SB{JYJG%#%Lbxfj_Iu&fV<;#?&yqw58=b{kX<cBKT!ZO-
zqa{jAAIsi`+iqQ|YfYR5d2{R*Ce?eKX5@}Lc20$HBgEpyNeK(^(5@>7j6ml1TJf?@
z%WTiEAG$jk!r;1Q`V?F|$+X7<4uzcHj)cI+aqfBO0bv!tZO0FGJ36ZBP)}TB0k-Gn
zf~GoY5VYZO>iOuIdmc-1-U|}OxZzc5oJO>HLoCW8aso~C=Bvm5yUGS9`mEE2sYJ+3
zV$m6uC<rHtWJL47AYb2Z1OH+udNn%{c(LEmPO=z+AQGd|ih{i2V8q(%u*i5Vn`e}(
zh2sGvCTr~?CzZve$<Y-DR+{;*wlUR={vgjJ`^HYqVrRolwH9n@+!=8oMUJkkAvsTP
zS;`dh3}jPi?nitd?wd8Z_E%+vZ7G_)L7K@BS4a738+9jDd|T6bs0r7Pyex;df@&Z9
z?8=x>TI=5iv;;gV`fOsC1e}tZ<9TPi);6%MjXvYpgbJ&k*EW^<L6$}R?9$erI;s)!
z4mk-dxL1*Oqh0<SQE0x`-WBGD+7N#$E3P{5cm7Q`naxmB2pDSY*2mA_O!IlLc^2ky
zj41lnLrsw<4B<y#C2k~WNG)FImW`qoeOrtKSo@*HO<f6BFyKOq0^*p%nYK@k@5OYW
ztmn1XE)jg@rs71Qc-`gy8t91tq8;!#{!G{~%ZQ_v%?{KpL&42%!eNP~WBr|98`2yt
z`P2eaM9w*cO{v*5bu2S(;&9*F@;8b<hyOF}xK>iP{y<LJpmAUIfojwlXS2X6(~t^!
zV~Gr6#wmg-g@9RO+5jv<gY6e`R~Hc0;@IwoT;8y+s=#l{G;f!TrD6{*MoLB-poXHX
zP~+Ff@{mi*GSr32qeEhNZZVKhbAq+;QE<-pR!9dD=Jt1^H|-zS7*-r#un`l{%RR|o
z7;EyLu-9DHd!{$i_CQ&nym<#XUuB%`Gazbu4o4aScd^YIv!)Qg{ld0P1Q(?zyUa84
zFn&{vdZri*)Pzow*{w$~*1*nu^i03yJFX7xo&7H|TbQ}MBHs);ZtVSf0NfC~oC|k=
zlqJsH?NiA8!uG8%6u%Fy7QM`gB4m~lhqivEqp8==j26T^QfN(Xb2F59ST?Y*=?E1U
zHPSAA*R5}_TEc#MvY?n2(7Bkgq1~aD*E5?Z6f+Sxd3>xymtj20fp6D9eu1s2r;Z_1
zNx@wKV!xExk5FOM;)@@e&}r-#nOmiHE1i;EJ3t%8H3Mjg9E*lD)e&wqb9t1;%jwbb
z?ztdi)~(oUonTuJgqbrqG4e6V$a*OgQ`seohcBXi|3WUOn>mXsM))ApC}n)RQ@#j=
zaH$KZ7yfmAq+Yl50PG*?lxV_!+j>tQ@-06u2w(C!pjAkV5V7^dBpY}w3G^=&8E6ig
zMp0H_$L)wu6-QuZn>i}mmMFLSMuF`R*^j-EIQ>K}xJ1^01cx+yX*DoyUnEi3sL(m_
zU|8&%M~b`<zmQM(tTGDdm4@QQu#$u(0utFbS?_@sCQ1Idknf?{%fokPK(D3Y<!%sa
zaa6C4Z3E?ypNr0!+ozR`8~ahNN1G>x%$u-$B;&gmFEuk!ffo;mn)nUz3W^qF=^AW(
ziw-TJE)}ht3b9<T`zK(NQRtn%D|HMYRQnvpK9}p_uTbdUsb{z0N$k?iGyrXh5Me~J
zJo@nFhQDB8=%roNlZc8%d)|&6NNUU~sFbq`42a_vJ%-~g#P8F_Qq9w>^Lc<6-hT%`
z<GER>;*jMLt(3x*X{##;)9L-di4|6=IdQPTkQ8Qs{L#si+Im2TPk0aqZv8K3W-m^|
z^2EZhIl1~U<*1tvL|EY}Qqe3TztA6g{`|-S)q+=KJ~=d8YAeSQWDReK%)WcypyMp!
z3!hj|>%KCyC9fYx^umDUQbwUg`G4N|aFRB6)q|$>ju8%cko=y@fy%%4V7}LO80ASB
zaT}w;p0a=f!f@eBV3H4;$-eARNVk!6Dx0pF{EvkN^Ii>gb-DVAX3jPKLFV@AcYr?h
zIZB-7)pavTi7Vqm;NEDvzV*gD@a&(ORI_AAqEW7TDhXgC{DgV(XD9_Ib11x81O+#(
zf%x7ajP39POJvZxdmCs6s?-Mk0jN4ah4MP{77HdC3e7txSo#_Faeeq4$5?wyPVUWZ
zFo8jhjwaWHC0<`)Lg<rQA;3bQt)r((7~q*A&<o(WCAi2PGHX6^qInsy_URnWw!pvK
zNQ84a09xE+4cQR&LL0*!)hhP+8<h^)GvXZU0X5Xh*A5*LsSAmU2Td7q1$NwfG$@f$
z6wR-Jc<jQl4RZFx@$tb<KjNa&jSFDMLs1At4iRyDNNJ`L<XzE$&7^6Ag`hE=Z8mtF
zFv1c9iqa=5m%#@(iI%AUuCKrcha}>XzK#AV?8u?G77cX}zRwI#D&2jYX9q$hi(4x)
z-Wb4}mSyA^y`j3tA;-c9%qY~RHnYC0HjzcN$hiw-f5#igVuiQTR3V3M<NPQz-MobC
z`@W)Nx`8HWS?%GO0F?qW_DHuhzYWu!0KHNukv05dXMXpnwUSpb>JGc?@zDAU|2AGU
ze+&i150>f_tYHIvdt89{om;j&0n#UW5qMOY?!TsJ5yg}s`207gP`H#ncmi(aFnv|#
z)gI#3Dal@@yDa@{=KFv>fP1~Gn=71@K?T}u#6rZ<8jSi|C<L=5V{x+NML2<SJhwSA
zqGbE|(!c&GzShWnR-e>|2xJI~lQ_hwx}`G$Q}RB$?SS~dridzj_N{nV+C!kx0HRL9
z#;Rez9|P0nr#HXR(UryzbAgjj8(+6zKrG8H<ggSm0Uli5fu&xc$V~cw2oog}jS%~q
z)&8ufq+9=UP^uPQVTIjFF()ae;?m#yf0H0@POtr+yWEnXXzRqQLW&ku{f4{x&HQY+
z$x3v{nnN;9j2qK1KAc?E<v~Z4Leq7(upbUfBZ#2*yGd~HHe}y9W!xDy+MnY0u<fU8
z?~w$~1fpduX!BJc;4<El(u5#AHUGX(_Mx4w5STFL`Dk%@I@yu1jI$2F2elhxv(^z(
z<yJVPPE5bpqlCIpFnSI+iekXsUF(ko_gnHcS;Ypg>vn2m`t-XyuC|z6`!f!viOu_7
za!OCSkG{i1+pC_V2mOo8(d+BA$saZtn8{~|0l2w>gOPf5`?{y|_@f>!+X7|c7~)xk
z5B%)Gr*>k&{`f<me@CR&#tV1#&M_Cjdi!`uY^1qdsdo@(-f|6JZNgg)lSdqKwLB(i
zsc~CF+`{``US>O2cqV373B?0_(w{u?9Rp0rO|~Cg{eu?55&-7gszX^5XZOPSI?Ujm
zeIM=U%(Vh+KcPK&M+2+B$w#I*t>QKC3+sCM$UULI(s_>~oM!?xO$GopRPJZ|OFRFy
z0(C^xZihWexyz*J3YWY>C&_SLP5K{@Aq&ePH_g+Bvl9HG17m5+9KgM37VxYG|D|B0
zPd~@r-6J}M^~Oa82C>5PY4PvbWF?IyY7z37Q4<5D1p7ukOu2XbZGu6C5dW}KUUbj&
z2c?E`-zUc9=-{O<SH?s4@K+%RS%U@>XaT341#7LA?~@Wee()FWs1dM9ISJ3V=k>q^
zFTmvgq=lcKHZ`4X5Tp6<t!lvZII~MxzM0_^w|@800Y>~I=zvV*^wg{v&NCe>Fea3}
z+EsoWZOs|w>{j;XYAm<9oDFd_lC4SHEoYC0Vguq<yt9<@micF8=$$Wru1EsaS+i}h
zqm|%GTpX%9rV=RQSoK-kgV3%gxUh&4Ly8=*UcQxq>$JQ5Pe+MEA#lSrVcXbY0&+}!
zH$()xr;^+tU{HVosTk%gkVOWfOnOl+^Eb){zBKfo4}i_nq=p97)y8)x<?r`}J~1wu
z_&MJLk5rJgjrC3P=7{~W@thqVWseMgYcxKnPT5vqOKgA6{1`Rr3p*Yy7$xy$cXyM+
zL51ES4e1i;P_!#)?16I8*DE-@KWUjeV8<@FZ&%<30%umTClN6j2i*ulu6KNzOex+T
zfd|%#K2~YiZ<6+qF#v$E%^lVlP*>NE<7K6^ut?w-TEBX%Y-DJLyGKjyPsOQUl#}R3
zH$>GJw7Kp$n9@aPap{8=w%ynu7+?nJh&^(B5YwcC;S&yR!|f3};R<r#GIAUrztJd}
zM%DO<_Jv!<FVZgOh`^o&){~hLMJQq;^kLZrrC;+~<>Z|g;(2`LP!RIzq^~n@|4DAD
zk^$GT;KJM!cBNuHVqumLR{r{n=v)p2`E`Ywo#dqs!<w+}2viBd>6L0y-G)E^KtqsU
zfT=yfARw~-g`a@YR&yke6l4&P@L#~1u|ur{KpzE}T~nJ-<j>=%M~cC+YfO8;3s@(N
z3*mi#bP?IOT+nN&*icKy`|&Q^96YU*79RRC@kg|J*K40)i;YQkIkF#aLUTVr`l^wo
zF+zW0s7?<;5zM%+it4FaxasFg8<5~9hLv~AGpk)I)>4z}DjU0Y1w&uvi*W&M53XAy
zZGhzl-*$qLtsC1mRs%Zql0&awDKuhOw!#(1P1X@SuQN74xmR|t9=WVOO=yQyE%|{X
z%qxI2UD}`Hy-<YZ34QD2i?hQTs|0rAvF?+V(fkPcLs&yQY^o%FF#-b`VuvZpK-`{M
zv80=dtVj$W0^PwvUz}?8%&XOc6#=zsIvaX!a`7mv|5r;Cgr`*KLVBj#kys$qNcl1n
z_X%9rXWo4;0&#L#qraHPqon{Qs@Hng03#3y=B>i-Mk<yA(+(Gq)4tXgOVD0IG?_6W
zjn9YUA(ljDcvb30>;b0s3=<F<ZW7yDkO(WM+|2XXz31?WGK>CT%<QDry3@~1|AzE}
z;g1roPmI5q8<Bl`XXf?c67Shw|JNkY^BStg{2bMzVu0v|^agd@3EhVucVls#2SY*1
z!D`6vy-8wocTyF9apPa0)1(o4XhauhfA9=UaIk}zF+nuVef6$*SjzZ|V#t65S9KX}
zF3sUvztE0Tu_ZTCY3F~HwvYbZOpQ{D-B}!q+QOUGjo0d7M^ESjQ?sH28*9PY7tOZ>
zT+pIBBI*V8Xl^@~kk&64=2A5|3gxE}o|v`P4<c~&oI0S*Fx2XuN2(msa~+VKhPQxq
z@_+PDALlGE7iFSG<#(HQiZq%6iKa|gG;a3^Q~ae26G_4zVp->Kejdrvj%QFHsEJIP
zpA6xgT11LCFR`a!w>|y0(fXj{rK1Z&)l?HkqLz5X;23E~uj`qQ9D{cLk{BD|lLWVz
zmSCw0u0_PsR?N%jcNkvY^Z9r6YJQ)bQE-^hq!2q*dILZ*5W<Nkhz1lv8?fY6T3mlS
z;ulS|&ZRhNa{9GIHcyU3vb|#opCSCSe?7S{vm&~wFMl-mVgfKcwOs?-uJagCEQC&U
zXs%d<$iXhjKJYIUhz1y#duztTnzK?TLmA!YA8vnKr4Ob%^tra^(BB4fP$PLusQ@Px
z3Xzso+B;SFwRU_T?iG9Y1PeZz=5trv?{@1Y)1-8?Ypr@-PAfR+`?+MNPQ+Y2Au-TF
zu*LcJ4_Nril4friZrm!^=!ZtmQWP++3;s=d39uQ3?>W{m?XFPmeZtAvJ)Ifcg(^tO
zJRaen#rA3A<xSZD8$OVl+_rmkK{@jm%Fa`_^f_qiL6{#mE%xw+%Z(bi-Dl8o-!bBr
zJUrhIetO~(o%ky{@Ayz*9&tc{dd|S{1nxJ2?Fl)RPU^I&iZ5n2naCKr3$>n95=C&=
z_*T|aD9q_uES>;>x8%}tuWFUEeVX^GCHl6ELYr@Ud`Nb37*e@Q;K~OZcmM+gtnHk1
z2JRsJ9$7UL^p+!e-ZzMN_MU#-AL~wV+k0@cx@j{pZ}ez?JtOc`BXrijBlbSZ%ydtI
zplYEF2yZx7DCoHWZxUYQuUCcI2$RD*%lDpIvNs^biS{JI=1OEw>-a;=#Pz*9*VSW1
z`}szqMh~+Gti6UL4)US)`I*Is#Gm3|+A{uSMnbP%FrBo!cgpX!>eRBS`UX?7tYJ0)
z+UdgdD|TOA!5W-YSQaG4=1aOi-8AyYy}U)DRc<s)3K`%~s+=naguE~=O^=$He@-Ri
zF7nqMUCLTCdJXJ{6lz8=n!w&dmN4T7Q=e1|b`aeLYacb$4DhonK1br7s%U@VhDMCs
zY|$Ir@ze7HhJP=BdG%b|W%u!vlYs~90!2xK{02HZv%Fkjok|Du5xuDS@e_x$E6W32
z>zmG(Zq7^qbQHX^YfxDEemZ4fy@wE7FYeb%22<FbT^h9Z6nqQPBWyXh$XEAS2fbrm
zOy~f!2a6$*CfxW88lCM-nCJQaN(Fr~mEM=QR#kQGccN3Xfw$Zb*-FJjgy2uIa0F%W
zwSA;e8t9+`!R9nhXpX_07j;#|Af`BdOD@I)pbPQ7uKxT)z_5xMn2<>`?EAKOJgbJ&
zer*_Pqtk_pr92x)*QcyMJm`;_e_`LhCoM@VOd_m`-+zN)mjRES3wkx01fv1`4Ja6F
z_Jp9!Q6$Y^vZ}C<c~b+R6uezV#(FJU!kz1q%FIAA=GoyJ!bfwV!F1~=ZHg4}6$z~T
zd_+T`<q<PhXTXFhnPd#;-&n2D@IlaE7j`9re?PleC=R1QMP+7#Jq`bZZH~YvhN)Ua
z5m*+VM!S0^PgxTw%`@YGOFx0eUKw6F9L7Z&jpp;lokSpx>d}PS5#1Pp&GQ#=b{au_
z>7tN%dznKo)}x`9JUB6w{zf52;pL^DJ`kG(a{?Z>q=g>f7m?iZE?WZGW9zZUlaC}N
zw7%b0`fR~23F$wBY%EzDEHfzZ)FIibX`tvO9n5TF$Plg|<5@nh1{W;!o$sP-Qb{jJ
z&0g-0gc*64rjx)}YX(n<ao^s)nfdv*y{Fd#Yi~k|P*+KrUx1eXb&6Y#2WnnZ@8bpR
z%4-d2FT6*EUegyS)0;<kCiuo|Z#M7F?NxRw#6-fARb$|7no>;R&zPZpdQ%Iav0llo
zSXWUw;_lp%Bc!{f^K3!YdM-7?qH+_jKh<NqXU;AeeiXWjrca00Tt1KMfBp>=sortb
zR~5&VsTKvRyY_4H6KbnH4bhK5JRcT6{!l^bB+XNm-x)SqYFK{@%*Ln)01Kry$T3Kf
zCy;cRwX%omEAZl*$26P<IXjt8b`3ADv$6&8mVTDqP#xoZ@{-f}bb25wa9qO(ljC<W
z8|rRgNCq*NExw`|jetW&Wlc#=V=Fv=_-Gid7f51D47ZB;xG)gX<{!{6jkV<=#(ka$
zJm5<O+P5&es#R+g3x!&f|Fn33FDE3K0~%}~GD&?Fc@{CJk^KLn`qCCoga8$vFi*)7
z3mNiNaP%<pb)^c$%$_6bnkiUQH?h=YU2}Iyv0;AqUsOyjjX@f4=l{`8PRg?M=f6~z
z+Q4;NF7@79x(zq^15R|BxbNv|xU64nvwXF1J$04cE2orL8^-fF3N@H<!ZNAjmg}Tp
zu7>;T0!9mx<dn}?oFZo$S1R$aqd%u2jtq74|2QR1@b~1L8ZE&oV#1?QpyQ10WV4>P
z-h;=J&hvFkt36wdH`+V}&Z=$1a{MZyr8D-1>l}&a(%oYMqF(jHyrSAb_ani~{4ztd
znlvl|WY&|aD|icAD&(LR=i89%gQ9;=Oyb4@ysi<*+PwHD<N?K6`Z1OcMVktzYacB+
z1pGx<NM!h{<jCCu>TrfqGGiR1xMQy!>(GI6u9>qM(#5pA%@}4KIi&aPBo&$~GE&6b
zEnR_x);y51&F&LCb_))5se(t++W4kcdl^WaF%R+xE?-yS0W$;Ed59%xYZ{>=Htd&A
zZMPpHu&8nfOgWcnwaBTv^k0q=e<(tU1AL#&8IV%0a@p-hW=83_nn5k)E8_m^WGwA)
z`RUwS7Q4J0X|v1Z#Nc-a-*pD5rk8|HiFL)&BEvk)KP}mue_U)f9c%+{It7Y3%CX(I
z<cc-Rd|>@-38%4MW#>*=J&>UG#(Fg4O^-}FdeJPODz&kT?qHc-e^J8Hz{^hO+iSY%
zB{(HaKG6xbIO2nc{1kB3CJwH=cj3I@x))Sybu(ph1H1vtaKv9MxYKe04|2KG+Pz}-
zM;jr9sL!O(xVJb<B|OZ!eFyyK+m&Q!C9!3?g2Ie8!DqDNqG12|T+p0orh-Avh&<&s
z6>AmH(&Dr^VrWlAUy>!QrhHcN9=k8eX(Zu^Zkovd0uAn6{{jTMW@|!+(I)a+sBj0p
zI5fe?<&PkSV#+Kuq}OMwRek6-TDa=;*zKl>9<Rb6OO0_5$J)UuD*oY?PmdFt`dp#i
zm*GwzVQ=%&@)p{LaOlp3S6IUTg@Hn5Jm{Nlx9QK?<bm$Hwg?2IR1n6g`8H3qO@4q}
zO^kK+U9HUTz^IX`BB|M9tKk2Q$QcdJc}n}w#n!pJ*3tt>{jBKdIl(6J;Yb*4?)gbx
zIy;@*3@ks@un2DE7RYDv<naIcAUTJ3Ne*Rv!RB30pvAfNz_M2tq(L1)bG-w)V|x=t
zg89lvglPqDA~r^kT2?-@-@EY7<dZdGep9n#ZyzdFK{3xFGn3@r&&&{;48J$e$2fGE
zIUT|T-{l2}$ju5K(mwB^{X%y02QjiW2`>lHn>Q!xZU6IzF&OAJ00k%1k$tFFliMx7
zw<!zW%eSelOfxz}x(l^n5W=0Pz&^4<p`Hz~ub~)ULlS|0p;PLG<j$yLLPmCo4SdfG
z3&)vrozJ2^7CyiLx%>-`sH&c*3`XmtRp{p*!Vh>EFn@!54o~Q8Q!rD}B@x-ua*Dto
zVKKqFd68~Bqhz`dBR!d}K;{<p%+N^gk4t?_&^Wa+n^q}4AGrFcS=TKMO-9i!oD>gQ
z0yMJXKzW$9tGK9ZY$_k)TFz#x{<i$NxdW7yrUb(C3~+Gzs3m7E&Iakir>U@c??Q!T
zM$ThP+?Rm4iaNc8V0AuA;UQ-nYTbF_D$V1o2TL(ovINt_Lf=ye4z36EVdeJ;N~AHH
zd-|?$_po|jWj62o)Bco9d)Pna7mzF+!|NXk^~RJP^9ki5S{A@sAi_X;A+d8Yl)fet
zsV#k~={Pl!dHdgkq05T6;j0VhQwy|GBLJIfbQdRFukGSbf|+Qn7z^JjWLn8yP4-Zc
zQDuL>`V%f62bfujsEdOPpgr3J-otKsXUTpdQfh!1oKFhLjVA{`me+lyT1G|r3Q+?%
zU=nbCB{L)&0T{}*%X*mwdXL}_pb#ybdJHz|6nJrz$DdMprIXCL5X|Ji*-mvH<^6NQ
z7O@|eDp}2)mPTX5%NNMN^TiCp5Q%be6%f^*GFqxTY`Hpc0li>7(BcWZYiA2<EUYkL
z#bmQK`^uWH!Er6(n`bJ5Wo$>5v_?1SYj*}x*?h5GKU}p(%mQGS^la2cii2aGi4g08
zqPs>tS)kgkhToy!J`Odb54Cc&A?cQtFSar~s95rhEBuCBoJrDq@5{A+>>D8^0opA7
zubNM?w?PG{2VJd_9a5%*wQYEu6)ypB!>#q-wu#u0tuITwQrB@whdTBJq2u41Uxx<g
z*&;mMrHNIFn_kK?`2Ftn3o$;P{A?ozcCB+t+r)gd9@4cc7;Y}+GW6R|zm)sB>2Gp^
zRFX79DQaxX#iOSu$Zscq#1ZrT5}<Ce{7b=+#i|oV+nXE)=Ang3WU;aNKGyW&ddaSi
zW-o^X=(BHA7+$6Tt~+@(EPtMM;kb_4^&PlG_253}**C%(Ej}vj&>J0{Ud0<j>u7$t
zNzq|i5rEGBeY$*F^N)()?6iR8dfVf$2FMO1Qh5<@u9v*b)?c(O%nAGv1SywwqS=y*
zc@e@r5i&M&F&&h{K(9(z8%Z4K!a|meaR8UdeU9jTGN$6U4wIm?^#&$MM<dBQI4y@P
z-#?>Z-W*OW{vQ`rMd$Dx#?SYA{euWiZ86IR;iuD3qAn4!J}O7(G1LQ(QK3|U$5TLZ
zt<^C_B#vYSG<lvs?VtS^-+AZH|774R#w(07{vz}FC4Uq9+^Po@i)zdubfxpwKJ}v_
z*!agGRyy!-G_Whxc%Gg-z+2oOm1y!cZ&vq#?3hxM_x&>~)^~rbS6K239v$d-V|5!T
z7KDA}?(`rWzCk!ksf9`96~^Gdr07FMl@_i0&%u+M@1Bk7eTIW<Dvup1Z5C&GjUalw
zh7@ap^Exmk+}(WLWV1<un#cD*Kf|R{rh5PuD;Kb|J}Zi%iEVN&`|!4wzFEtdeT^hP
z?-y_U4$AzbI}*tL%uAra9V5dyoE7OG)1?tidM52!miOPG^2p(BWjNwlng#Gx>FS?c
zRjvWx(?Cp<kS-nXOlrRVK++Vyb#~BT5P;ep^l1~|4{zSx9bJC^)w)jJII{LTyp}c4
ziV=F4fE;9$t^MFIPjVRD|DR}B<;V%M%t`Jb7rHKnyIrf_h=YB(Q#ZuNYPB`u<;|&P
zAVLogqSX*z0y~YaNy|){b(xVjPz)2!_)!LW1lpuNmE*8~00e#xQ{!b;U-WeN<IOaW
z94;xE<tHSh62Cp8%r%g0znBJSEolCcMa#yN#ix0=u~D%M5_=-Zg8Wz%<KVJz8A^@_
z9t*brdn!W*J|0;^gb~KcuT)70+^ym}vS96QkX{R{*m(-!rP4v3&Kr>RV>MXmQ-KDM
zPE8XG1P~-#D{x^J?w6Z8B$mn|l7@fdy`rETVzgO$d|g+V#o>=cYeP2aW}VyWQA@cd
zTq~XT#;8(rA^S`@@f5tq>nqX*gYKX*NoO@aS)fU(V81+@xH=`V_OSU>*+OOCBR*Qe
zC@!o{FEbA;YrO}yS@h?P6I$ng1uy0JXp^!;dfijGt3CE9&<*%AF~_y$#^L@YKjaQ~
z{Y4BrtpRw<`OhH)ZhTx|I8x{K6AWG0Ds1j?vSHoSlTA3S4>bhzQYirsDkxD1ACU+Z
z>(!=rPmt~}0czI@p0y_VjU#03j*S(=Z1pu)t2^KAlz>*l{^kXd(zhoZ);J^j<=orM
zm*>oe%#DL!Ou+0%wN`m+4*X!pPnp+&u*#AfDAn-BsTxW8U&wi*>`CJbVseV$t%|Xh
z98z&RD?h5N$5>mD`7b5WUQ&JR=cy#+0$k@Uxcc6ae<qF_G2O9F;++w9pW8(eAsUsd
z(E-JSOiFmXwiuyWlQ<q`ZSB|4r^+aTOfpRVE2)m;tcLOkq0~WIm4w(ROO$pROw{Wq
z&>la0bKCD8Q@Ru{Sv=rqk>v>TRnriCWiY<kJ<fjtTi?1->A-vz5O3gdH4cUxcwO-n
z`<lHCw5cj3hlZ-}YH)iB<Fbx-4x1nH<m1a~R=y6=p_e>mstIlJ@Ic)OE<Yd&PBsg-
zz4S(7+THF}j1ZhMU(HGW%-Q#E`?n*X67Hz@V&^DPfROHbyQBxW1tMP3Q1L`p^G|_m
zQVQ})yzd?`I=3*FB6$F*gxuB{J?v#;v39PQ?1$G8#~Nu>r<;V#@nWD4(gh}H+N=hG
zUQ+eXE8e!JJPDpm77VqR-gW_h!>T(jkRZiSoOxP028Nb8fMjQM$vLrt@p&&`GC`DY
zyjxqs&!c9-Ei1CAdB)kZfTG(<zsh(>ijOo^L1Z522^WV3n-j2?)FkJI;=>GmC#^YV
zlPGhAqS}0CTXKB6x0~KNQP<R|GBKG|h<~nBWRDsSguO)ru+^ia*Nt)*abolSf!8Q!
zmaU7ll4*g4@|;`P!*#%j$<L)$FnJkXAAp&<Q!L9&=pi6LZEXVj5GJD_WmrE4<DfJP
zEXQ<G@Z0{pK8fyptdzB4O4kXB0A752niaMlP1vyws(Bh7b|+e2N!KWsD@C5S%T!w0
z&q+*$Xla3dIAU|LDg8f3Zm+*%6OfsA6c9-8Hxw{8i>3d+G7RQ&s5Co$TrP#AvYXZE
za+h1Q;2VI#YKi{AO}RH6g0*o(w~&&aP(KPys0u|f90#QifHi-dz`}3b!wXKp4j&}d
zTQl}_o-yAgY6+!Z>H1V;ecmnTGY|0iXpXUme5IlP!$#*gJcJJlz(|}sXBBj_Tf~UO
zsn-~Z3Mt`y6kQ!t@+4xn=pAuvF%uDlCxLQ9OT_Dj(kKx1)!l!r<luIQ{$II!vrA1P
zc(nMoZ^M~*ze|^e{Wl7XytyA6ta#gpVsxHpJ-qK($r#GKp*c(*1M^zTt5cA|RlTsj
z4;^a75XznX_*c_V&HkoF6>nL{Yss?ja_F34$MFC7GM;*?(B58tl}Rpj4X{YGm&cpI
zB#ssP+!e4q-3)?j3AM?k4mIv}PVqbQYTiZMmJ_z7<yxBaZuRm}TilgDNDv^J{ziUq
zr$a*YhCm!_oMT1S97=uiHU%gl?7`2KM)M|AK^YGKFg69L=6bS?UKtZC6b{U5|2?h{
zngF6yv#}53o5a^n$&x@ZEuy?eU}w$_@#ZNV!;Fv(G{9qcFdO3bW*13sPeg*~)F*1v
zhI~n1IeO9iFM0Z5#rspP=AL1z6a_;aFFjV>Llj~T3;iJmIFAAW(=rg_2?_#Xx;)u;
zUN29~Ukt+sCmRm!HU7t0PVk(hAg(v7!_mrNCWpi-`wxSGg~BIV%2^6B>LX)ZCK?9e
z<`vt0Mn>**6eeHv;1oc0XPJS}K7{|%iH{C$i9AQf;`&gu5X=!K-EYn+^^aoCAq?^%
z<5Vl#n%HTiH#85xR;y{~MICIth7>n<_Ep<^=pI8~+1+?#e*I>1$oy9px*hPxP8s7e
zy|y!hH-o-yQ&*6LHa)4C*1N<FV(#DE-FbzEB7N*YZO!$BdC1B5&vhIC7j`c@MlMMK
z_tbVyZuFiRvh{`Yx&N$<q;C-mGRD{cSFcPKc8}LBk?i;YqvhQDiK}r5ybiO0UQ)YO
z8TARpS#27}o7GSQ)BExT_gmMt@+?>j@Vx+Mk3F&=BN3`P!CKo2z?&cUO0oKSQ<Ei&
z{-{sBREHO!XeO6$|EX>=4=+YonT9mzimAH{91@1I0rI3>(wD@vQ@Xfsv{Ymc9Q{tX
z16#HeHQN>aTBb}6c=G^Ws(|DUvn?#lVA`{DpmL<M%~W8r?^rxRE@utGX8?wSC9hPI
zc$OQc9Tq^Z#w51RkqPill#6ss>hgsi{D95pW=!1j{N}Nx#^3{qR-5+&N`v+~=;ZQ`
z@_8aOKww`o|65#csnHn%**K3Msl-XxmHbi|v06>i8i&EzRK#?g@{Z-Q!&X@Jv-Os*
zFd;<f{_mz)jlv1+nEumqIa&$-UMo9(v1lJff^@`#38n*>CWs#fW`1ZQ7K+#*)0-|)
zPxeme8o7mnJxBnWvN?@E4Fr!-tFErJ?S*Tcz5O$MchT84weK24y^UzxOKJZm?&4T1
zxm7)_K-!yb9xgmqp8BiOt98y_K{{as4N46XC&gbLj*X=7cMVGVPIsAnf;ZvctKLf%
z!AL1ekY)q$&^@VycczmaeB{SN>%&=gdIB}#1_QztKe%vs#OV|Gq<Q5|T*H0VMGR#+
z;E_V00-HwsQH-|2!U%G`jk55@&k6h|-acg2DamFGr1nQ=&WMMD?wPDiEp{<Ba`J3}
z5Y@;gsOSmnfe4HeW>Tj&k-5Ab6O)^Qh;<!*W@JIq=5$^6qx4gbovJT;1YH$Rbhk23
zraCu@LmdCvSb=`s@P|uBQf7R=$p~vQ$#6A?j|BU(#Q&^*yx-8??k)dzzWPrm{$b>G
z!|GN3ckgatBGiO+?q><Hm|h?C_>_zf#qd1(wyBdZA8aDf74owOl>py=H;hweOF<1q
z3ju<q*S$?9yvA`(g{_^?pvNzR?Dqw)|H_ZAY9M>^n$C|6@&ArRaWmt+Rxjn*JI7xx
zN}%Jm!!qSj7!4$%VFvE(q&&MiW4%c;CUZS5RxGhDUJ?vK*=LfdPsi#!=@XsTX5gAT
zosq&-KiTtKjpJ32qG;tzq}W!Ycxgvhau;av*22oY$!uU^@$M$^cUn1A+^2&9TyS5`
z`7{2KN8%omEvg`TzRv>?L{z#Q(f|85{*J#Z`OG+lh5C{8b4~OX_%YOq6A+Y==uG7>
z<vKTT6sa(w{+5c2$C@WV-;Fb$H~Ac`0FR=4rz~NO((-loGu8QmWE_Z`;Y+RTdh$D6
z+thXE+Y*&Bvka@ql3%~R9i)W{$rMRG@9yF(`nM9KQ`=)wMM3d7Zc3}z;Sm8DZq%Hr
z5FPFtKEp=BR{~~r!h-0F^h>zZFuy#6r5{qoa2r=$k+WJmvfP^|Z52|RI7Cvb?<uxo
zpu?(<GsU{#aEBfD5fpUFfqvbNY79-CX`j@Pb|xJj*M+#t!d!To>kWcybIeP6`T0P-
z6W8iUA7S~P;z=DG6+k_5mJ8=!xKmX7BK@GVM@yNh)3_}e-VY6ecJL0mqv39ySbeJX
z=vFSUy9<p-vtbB8{kc6Cpvcs_4=__DX%tIu2!T0TU9Ye}CrB5Sg!PtNdJdQU0FNL5
zF+k40HJ)1eP)O|YbMODR8L@{B8@Z3G@8v+F^x8?W-)u*1%nMjdrT4_Fy=-3I+TCi*
zQ}OPh&+>cupq5z~Djl7tu5N|28@;=oO3DroRSs6KXi%!}Y2}_tp*_x^v~={67nr^n
z$ax-;nI&JAZkJXfzWRqUKtKhLjTfDjo?Y!sv1rk)EJcevcpQEKjtGst-qgjfDX=W#
z1S0*vZ`2KBES(NcKbWjfj2d*=jb{~2GSa+D>Q|P%(hUemWrTwb;yVfoL6zdA7^+p3
zbdcR-$#1>>E{8kRjv%&tJ&2WWav<3KZK%!-?E!g>UMS+YzT#~xKH`J4^R&eW6ZYQv
zs96?O2Rxj=(}@L)Dd^38M@g)>(FM}g3(!atxLG<CZ?B(mS1sZjlp?m^;4o`F(}#dT
zpIy4NuR@_RiZ2X1guEmr^vS2_zpKGmferV2vuG<2uB-is(rlWm0ojl=s|-ScbGsK_
z7;fx9o}*ST6|Xf$3ZT>XB|v@x2%=LY)ZVAH>V;8X(FhGX_(U79P0U+a%mt>*4+!eS
z;p0$UA7|QLJ{5pKNjs|vECaSwPoul;670bAy51g(+!cwk8W+#gsvWhLc({E#Ic;Hn
zD3@#Ul+iFA<`ThOcv_f2bLgX)yjRs|)K&ZuFP{djonwgpgl4%ELnG1m&uB7*a@%xz
z&<YC0sstZB;!V=NF57&4B(?^S4sF0L8dx{>CXg=fvkSa?Mh1)xz`)!zHRYi_ze%j=
zit|aP(GzWl5kV1KPM{~rZ871OznW|W->1UoS{eOi%Lku~hRjG>>^RR=&d2I63dZlT
zE!EUukrSNz*t+l*a_PME7RB^s;cUa)+UJY9{Ds<uDvm~NP8e|VaI{`+^wb?lw%erZ
z-3o%NA7pg(`xdolM)_h#AJeY9aa^00VtfvkDNrV&g)(r^GFSMBj22NJ7NV7iBk_eP
zDbWdjTt=;fg}zbOlSmU2z-ff*7x&o#EXRDBvfMiyH)Mz@$O_aQG5X{O>o;IzS%dZg
zF7lnkw=f^HB9JmY2^?do@~Q2{U5(gSmJL^!bXv)e#M`)Z9e}gQ?jN2FQg<?e&Mrzl
zkXT*#0F}EnNZuq;xeysZsjx+z9D22gbr|x;Zcw+MbYFq7#g3Xb;p}kKX`~`U_NFk#
z5#Ms|2Ek4Jfm40iVEhtytn$iXy_H6^Dqml>(`O)5>c!YoU+-_?64T3XvW{}Lrsx~r
zm(SH9W(n^8Mt*3|XfFgsO^N3_({_WB=D_jN+(gL%r6j)fsDr{i@QbT2Rw!YYNn0Gi
zBkzWM7*32d!M^O+BXn}rIPV(!-4bzy>qrgw{M1FZZlL|bfxn`Z_JG{K01Z3w4%G-u
zttedfr1oA}Hsxf9`hlMJP%*tOFhk=I>edObXOPqP0E&41-Rao8!5XCvWAULn^uy|?
z32k-=6hHgpW@#N8Z$aAP58Rxp1Gn@QA;@1i`N-|uh=00MRlPP&$${Xx(x`FTxgF3t
z^sgU)9g!u@w;IS!IHMMI;{Kcng4$H{xh96HXi+9=aC#@PrEZ{7F$#vAs|j|r$YL@E
zWz*EIPs}3#F5V`=h2I%ia|~!Zx_J``rN>a&4XVAv`h^GS7_<o@TcX9KiheYG2OkX&
zs>Y|Hl)T8-{mW_2ID8csLpjoFTPu||GUw{Dd}Y*~3;rS=#pnU-1qy_kDW8=_G?zqA
z!<_oD2nWEcndXRjb06AG#kSuBSfXBf{XHzWr@FpPWE0f=lIB5t6XJ*kMT!OIUP_rA
z09=nfhdg5nv6=Kw%qsx=ndzG}hSbnQf7x_9nJXa$Pz^Gi{HT#7vT{#+NE^&<Ne}Qy
z&mBt3alwaltc@2Au<bB^YTy3&8#aV4K%S_I|0Fnm<<B;2xgZh5wb9licoNhxT1|P(
zPyg+IJ_U?<ZbOni39r|dl0_IRMC*OKP5uWB^hdiN=|<@2Pg4BxSpMU?8i7G4%r*`t
zkbz7?&4#qT`P`XyA)vzagl!v>9SSTvd(z%}Jzb@GmZvX6Li;<p@5>!8+}=4|cVzNj
z9P58BnlNt~Q-2CaIo0H-2mwM@PWh;(2tPW#lIdN!&*53nZ+|VDYLQl}U%^Elo=Cei
zs>UI+c57CxAnqIQhqoa0(5HwcQDz(Dwm7XK(}5}|>F|=;z^&Hh%Erron#4xNiI@ik
zs5DLhb90ZyANhNHdwYl)oJg5Oi%Abkwx2(ttDVY06|y0-^y<YLlnvFygTK;moT;+9
z8FiO=a}v9Rc5jb!nK59%lJ5@Kg+zpI0?xlTQd9Zv?b%~C0xYPFcu0`6W?+9qp+&6_
zMnh%Z!J^1c*dor0vlf@@{Ve464@B*Smil_ZQ2%$JLG-yZtfoalNR2rv%svzswS-`T
z>-r_`SLG|nv*MM*EBdL|OtX}#&Hes?w)Y{m_VuAUr2(R6wyj8+vh6X-Z(5;qosL=|
z1Q9z`fH}MT00qjFEJOUoMJN{NcfAb9q=#d~$QQB#@YLCz?@XU&<<lxwFgvoOWXL!Q
z%Tiw6|7ck<m#2d82o=ni#1#8+5GbhZR@|agyi$)5(^o+bho9^46B1V5>+#Kj*;Va_
zs&lyQZ~H)U1}_eVL^77lh&irhN1&kL#8*-lrntnFj#Z)~sh+4GHF7aDR7h{40T(`}
z#6o~IB;56E1dL}=#MS8EI36|D_x=|@i#{zY=IoZm0P+i6%F&NOlu})9W5jdXAg<_Z
z14OfRGu43?DQcMnE5TNUyE$JIDgKOk0ZkPK0`>4{FO+4AnR)`aB3exv4Q*CS(a1^*
z1##vQ?}7Xkejckm!Ww~v?toC4xG5L39ETkIJyp;jR41w=rZdxbbQy7h7)b&9_@dp8
zWsXNuZ%kk09g#&+WBI=X!=ZH2#WS!AOO5q59UvyT>l0_Oxvfi&?F1FR-HoHY<r=Mf
z5H5O0DoV?u#Ss8Uc`xkyi<;ka=h<J-s9y~AtMW#7N0y&Zit6S_DxiDuG$4{?sJX{q
zD#ZEy`rpdOr6ylgwh+Ti-j+c4;94c87Qo}U<onvHeW!_lA%`oet|^6JBgKrEZ_NCd
zXP?*tDk3Z)ZIhK=4pmF9{}-M>&;`H$_8fdyNI9N@>O>jJye5~bctpfV!JMM%?BE}@
zM4VZs$Pp$A8Vm#Hl!RzZ=qmSZe~(E#LJ9gZCkd)jXqHkq0vAg_2&dFGW!G{^HAA)L
zzK>=Kp@#ug2=fYpfOibTVzT(1zI&S-W72U4%G{*K_k#jo;Vta9(0C%O80wq?sv=LE
zKihui=AOK6@-YpY1(dar1s_YY!W;mW{sCNJ!B$M~P79@YU8>BfZnXwG8SmXqaa~wF
zn~aUs6S^0t-wC_tfNKkLOP-i{KW3I=!P`$;9XbGtgFFKz=j-X|`G)(<Se?ODCQ@^R
z^Ov)7F`auiVZucXYPeYfCFgbKM|d5p>>Pi?+>j{=lEwApnS*)izpg{3XjIBTvh*Fa
z0vvBQDFAoAl<GbosR7@V+53~;-L&W`6~IV|ZMF21M?k9L*ky>XztP=g{IZg93HIAh
zRsYC0Rbaz5BiAkHP}XV?flkxb_1rHiM!$CAhI_|@jT$JiTjR>^E43PpFkQAXo$Rvd
z{7KJ-^$Wo5K0!Jh7;bwlm+8&H^3&6Ju7m|S^xMs?R{IczF2yI*IUUz`HA;#U?QT$@
zm`&u(Rk0~wmO?lfS1k5fJ)%Bj_J^C~d&=Mt?lk)pG}mjsw!-!8b9(-c+OJdr{H@zL
zF1XPX)V|f|d4H%N;8Pm1a1N5t))2}H8a$g5cj~TWjoi;G4_q?APe4|77-93<e9wS_
zzCAmyXe?$XjHbH-D3ydR0e*O4nCP?UR885JgFjc|;=c+bV`<lbfZiy)wyrtOzY*Ap
z&WBkeQ`HEa87>_!5@~~|Tj~C=!B9yF(l?847Ah9xo(|0`QjPcu6BEuV^b;0KXS|+D
z+iOLeqTmXA$iuboe}uHb-ma%y(5gz2U@3|7_olSDfT?qh%%7Sv0_(f3W={QCsOG2I
zBh|p&L}ocm`YK}9CL?JVzYo1<=#ueNbETtn1?X|M+#wMF0k!f%vnQR=fAoIHNbR^q
zZKe)OJ#p3?Wm#vH7k_w8*Id0d#!UT6P{_5+b7hRjM{1M~6eV|~^g>+=C{n)(=K3m2
z@&#0Sisb9GlpjaU;LiX_I4x*jFCt=>bpIcBjZCdKZN+ue&v2(0c-~G2zUS}D-KqtX
zMAV8O)I1RH_j)-O|5eb@b^%IbU~h9L>V7$v*D_-kov{b--!sv={?POpZh$KtMY<)s
z;+sOP<F|<9&HfT!B+I?58~pzH2dK-cxSg*s0o!B|nx~Xc%G~`@=5dUm@{D)ku*;KA
zfKOZM3E>I%<#Z)L%WZ68G+KuAsuwi~(8?u7v6PWwcG_jujGhNncM<NouZ9vHC(ni3
ziqiJh+l7wP4zN*|S&X;K6(~SH`-$|w77S$vPZ|>4kIp>=ea88Q2TB(F#-H7Z(F@$W
zC6sOojb477N%~qhG|U4;wUJiDV;8w*Obs%!h_&6Mzx603FMV+<roLaiOmooafILq<
zC8B82%q?dV4!R%v&k4e14?0xyY0#?RTDlVMHrPIoHCsFM&E44%HrN)is+XHKzWQ)r
zx8js69JEz$VqqZAVI|kZ*0_QtAoy>uQ#j>_H}XQN+7=k@>Vb(`3lzRs5j3vRf)={=
zEGy_rNPQbCsB7)B6&|$grbgD8eaKRAtJomSRKCD=H#<_PU1M+jw5{|&f(Wy7*eVgw
zY+Dx#GiK?Vi1Bk5qLB@=bqj`k%j0u2AJ{ubHg9+Dyq1M|BVSYdASMwNIQ;k>YR*)Z
zjsE$<-9SwH;aGep%9mfIJBF5AXnPFieI#GN(NR93+k_kBvz;GO#RuUFTN^_S2qqY>
zju*n<-iEutF29nC*8i1m3;<4B5Jq+$J%pi8t5GDx20BLHW=8&QYhK0cy8!J4gu6rx
z{F2dCgPkUrJr<?fB&Ga4wmuULrzVoNyZ7Sl7UOhKyQ&1!so=9G#YO%C6}MgSXQ>X}
zPhE!*ZZF+GWZqn%TyL=6uci-lZ7250jVu&s$>^c<2N)4+v#1Wttz->JC2tCQ1(VGm
z1oEy}c`BC&tV^gvnOH=?8zg-;Fs^0w6n6D|Ugw}@97$4P=dHB$-ptoj{QYx*bD034
zq|!nwnvoD)z&#7<&OpqR5_!B#Vfl9T<V5(T{D{@Dmw@Us1Z<KhIl^Mo5ej<!8Tf`H
zb)Yt6=O|_}>w~CU{((4>!apBp&*P90<3gH1Nn@=PG3|k&pFE~?C86ibk)Wx$mg+Ei
z^%tsfq?G=Z=D5R%5U%<C|NZeKC5$%nk3k5J5d+T_48#Eiz&E02U*plW9*&oW-<JLI
zmN<va@6%h>`Z0!N7<fRF!>Y|=M&nF{4!kj2$bm?=BZEe{EF<-x(hg&pB-3`q>1$XF
z1yBWl&%7g`>B#L23?_^zXA1hHeaVMAA<$s;wAi4BdxU89`}mfoiI`ZW|FQH)rD707
zIDt#;2`-63E}|$REz}6=m}QTiAN=TYin2L8Z|xrufObKm_6sU43sT@>6R^AkH8}xd
zROouM3x@hr_rSW>jVvpT8gkl7Mx5zk@lv|vnoa4IFWK|i%0j4A=Z9O%Av@!-0q&#G
z10BEWEjy2oTnw6qK@JjFL$s`~k1A@wAE=CCXHfd^?POBSQG0*lZ+3gD+_t5Zh;sBK
z*GNq6&@X(sfcgI=(UVC1HGto7dwjn{yt{qMGj&DjW4M`c`KeDORB<}DBi$gPbCZg)
z7gO{ycyyuuDD07&$YC;DmA%I}(iRAs%)*!mCV^QCF-tHyh)#5Ow+n*@lJ4gT7b$*$
zuM(;Bb89vK9|5CV*M*j<C5gnMZ~6V%X@{qtr%S=4ZlSI?d*V;q!CO}cua<zsuz5rg
zMI$+ea0Y+7$+?xc>A5?>2)YA!1#1Th9-fRz)|vdXwpoX1ny=E`!5arLEc1+NnTx3T
z&t5%|2qNEY=_brFX*S>j{5|C=l!=1VBBr;to^6>ZZ)l}L92?E>xFAP9NDesHcE_z*
z4p%C4rl-$Vbg<~XVzo*0&V-kI;Fv%D$y~{uzRPwG8NgXXvTW!6aJ@qlRTdG3=o>+K
zp*d471^&zE?y%XP8dZb}2TD&!iuCY~%xi4^O37gkSg3@7Y%;AQq`UPmLdy^>Cec{;
z*k70Qn(l3z3M5d#|Mb8nphR>n&+l;kY0}C;mf~9&b9v<35W!tg1fMz3gs?G(G!Ym)
z(^l}I;<~|kYU>+ppd|_YcYJ?Py`3V<&nx)<?4KB!yoG4p0mnOo5Dqgmi?=vc!U1(5
z^ZS$(E^t5Q=?IPULS8b3s?l+f25UW+w}<yVq$``8STr&t<e$(x!(zVvvpCuN*zjV1
zl+?X0R}ZLWhYLI(XYmjN^Ay6Jc67R0zDlyll(%<8&y4(s!WHBfPqYbbvUx90-t{wz
zjuFi7ydo*wx0qb|LLVHUC9jTuQMnFB?SyvE4&xaqC?xYhJ&c(}%6X;td?+VL<FO=_
zT;lI(Ej4r#IKAuB3YjQ=(oQ#7L!!OnI3u3NWHdYn5v5Wt=Tq<wlU8<3?Jkqu3!)l+
zugHxm=^axbi0@FeXWKNvSSCq)J(6^uz0E@y$iQRcy^1zzlZwmHeZBQ&rr^QuduJ;E
zU^5s&Ly_+oS-CIkyCt;c%A+ROXW<ZTu<0jO!3|Q%K=Pv2Jx*~7mU0PA{3@N6y0C*@
z^KB;L_e`_M6!sCktmowpUKA|&dcrfJ-cv>=jm(ZZU2d^)7#tpyP%i*^UD1gULE8u1
z(D!HHC4l`d1K@FYKqwh`4?7*WCK^Xcql<*I(o99pk%__P7GK*3+M^X@<qo9Ga>Fm+
zZ)ZA!M`$`x-@N%AAx%x=O`Cwb@&Nt17X9!kf1Pix0CW7~!#<ybi5HhQ^rn)RlK>a$
zPKfnJ13CpzbLUg(1(SgIc0jH1lpp{Q^1D&3rfRCPb+5k{Ka#s*Arg9^;Ae`T<Z6uq
z;_A+WODEs9D}B>4&yw3wfk0(mtUhQpA9<EBatKx73C*Z%@O((Wcqy7&VXAlTQ&u!t
zWVfBq@M;^`nX{bBx|g$X+^zU`BoL{Fdsql-6v{nnQuHM4(!j3`MbRz-$2wk@ZX&pj
zvRgdHzcQ0C5Cj>75#JA*KQ*?Nd9D5u;;kq3QWpJz<~}uZ&<Ati*jGPV8N8($_~NeM
zrd-WuABpo!*?gb`_|vSajNtbr(<)-*IdO~hl_7BO2=Z-OC7TEyg7<WJ;cix4_C|i^
z7le%gLg;SAh=s2z$|<}3eJ=nB-#u_=D#3!GhW7I9#>u2&<V{};NDqV;OikeLo*ZiJ
zTXQQ;<vTh&T8G8C4b-}RvA%1oE3AmV3Ssx=f4jcY)yCXaib-fwIS{$cJcL244ijlF
z*;oCKs3`?ZVu6Y})r)Hg31^AxN;|m`#;{8nPku-i%`S9Z125ndFt>;83@*JN0Rp#X
zh<emvt`7zN@cn6|Tm4+cY6{GoA}ld5m`Dj$EcNh2#`Z%AO?=R$s*#^kbe1hPQ@l;R
zvL*SUb<LZ0-c2R;L`=XVQQ$zn*lv~UYU$C;(IZW$YAo34C4H65KBr}6H$#{#?v23g
za)xm0b8h_D5eAUN*JPMFH$cfjK#$>OiH(|X^DY5Q9x$zPaZUiEhXjqF<PVY2jB85G
zKwtQAwDPn5tHltbn|mI%Lq>|qC{vw@6)m7ZqBasB-f2~f!EEh)Yb!@!Y?WcA;lanO
z>Bks;a$E!6q<zbn$M4II+0y1s3_DOxP%Jl#e&W9XmqaHVXD!xAy^U@<<+O3!S;F#n
z%XLAbi6XhzS_gYgfsr+)Dz>CE8opL@pdO5tD-wTBL;<z_Y%sqJsa-6$vg<k_$nlc=
zTVFgx%4$!36ROl#Yh!7NOgeFoInrpjNsd+z!Ire=h_yh{Crp($2Sg&Jk;&*Guki(>
z$wZi?!?J#4D7B|wfDsWRkij~?1SQTxEf~xSeCx%Gn;XQjA@J#v9(+8yM!Ji0r|SZ+
z0(<>fZjgwm<k|<s6zcFNHcz8`mno_IH(}7K&^opEd3xtk9oUHR!V<@@4Fazbh<Oo<
zHq(wH2}M<=V~;Us;<&^u7h}4v_AG!9Mcm<qqNysRz;2G5A9sDv8aoM4iih(P60e5Q
zEff_3kY8u64aH@(Fn(o~NGE2aC)eLIzU;7D+rBAR{|xOS#B#Pbe-)rK32I`z7WN|g
z$0g{Gj_^AR?iA=Z8fW~?pI<S)`)U2#)E;7E_vOfIc_03cO(D`B0mMpvLN#uxbs__6
z{wy4T9zxTUk^5>3M)Io0`EBBZ*U3`exF<gYk?@70TZcX)1qAFlH1z*JO1Z$OFiJM&
z#*`~v<@Q*i=ad=S*bMqGLVq6@u~<h7^Ya<Pm`h&E(E|yoO<`Fzab=<Cg4~OG2=I#j
zK|6Z$E>nlMP0${G|LDuC5-RTjpU;$eqR4(&^LWxi3`msULDb*-#5x1%m|iUE%!+tp
zX(X$`_#@_XfCxon!^#^K<Bv_DGz)Xiw$#IXc`x9bIw?7}q-2w6*Nq&tUQK^)!cg6_
ze%aW#NBfW{He)FIj~`;nGJx+JAbCu&wccZ3e2<m0luWw(ygjVnO3oildAT8YgRyIe
zUZ@oPw5b}rglDWT<;*)6s2qDY!<+=_mnKJwW~mrxonYx7wd+gVDs4fyn}1z$MT@+`
z=lDY3mB1&-UesUNc`*uILP<R@oEjDVHLPjoew@h9(S_H2R=<awQ?^up(KrQPNUcA8
z#>mansX!iCyEe-adChwH7+n2;UuPZPjlgD3T52--u)a{CAQ7-DQI*}y*rsBZKaUzn
zx#cz5O;zyRgL3vW^No^3s9+;Zq&rtz^`0}Vf6Dm?_u1*uU>PSNQ(b|%Myq;*v(;t|
zhy=c%OUEJa3blm^rQA4wJcyAA0m(s`!7$U>hVwC?AZ8Rw3>E~TE8`wj3@xG|j<ud*
zkxqrw(gMZzWH(D+q*=F$<}nFu=S}u!wEN)Rd|d5t6L}{nPy)=B$jd1gCHt7xnW~1C
z93L&#PUXB|N|>Eo>Zfl1LGZ@Ss}OG5(4J-eHAnSFaWE#P`h#n@;}U${7+l$gW{PQ#
zm$K?Su4MlUqRA(uAx^~Qo`bDNRKVIDHCPZh_u`u0IkANv4}%}L{H{KpL-o_arS#Hb
z3C^z3@Pl7N80XRre4A`wzTOrloetrZ?kyLwy0?XOSXpfYI7tXy%s~-}S!KgQlfc2Y
zer=GR-Bv>&Fxs3)f3NMGTpiGt`&^HH=2fWFvNajy{+H2fKqXJW8nrw0_?sv1J8?_}
zP0T_sf0J|B)OHiY9FY1w^_X-rp2Fm>EA)H~3qZ1FC&Sap@ewVY+<n#1sEQt(9rrCF
zfUciJQ@d1ma-XT_wUk0E&9{z=S8LxhJQGoYPLF*!z}SuB*EC`K=1q2|BgLqV5>{L+
z5bSfQPzLjxNU0I}mGX40xmn3Um_ngb#>%m9eA)<Lc|nWsfdaE%K#Xk?$(b~R7tKqG
zEAxnd5W($ik#i^vnBaDXqc`KC$Ads>&86+9vk)o91?JUtdl%9L*vmQ5Je2Y#MC>-l
z0Kb~Tn>eN{>1>5iDePx8x0t>qw37C4MLLRC8K>;{{3HdR1V)gju}Hw+II1St0S*l9
z%6+RBR8y%n%&vLj1=$FP#Wv8Mww!z|AW+I|O=uZ_K;3uq4J7wX{Y`)8y98hgW!Jw>
z4Ao{)ab8bONo>;5`9I=ff&pr|7XeHx+w^b=K#5{M7CmuK9~nY<cmvL=nn+tkstZZX
z^V)e%AK{})aD}yh4mWtr$)ULE$xa$#_Rr*x&Qk?od)f(zO%!z%{-{+0ALzk3@qp_?
ztbsIzDSeQ2;f2p99%pzmEc~S26e>w|w($R?(4lfK2+Fp_>Cmkffkqk7-RS|-6IK`h
zDD#ynyrhsRPe0Zp(=CmGQ_89b4EntPziV-Mq+m2uWJlTrFFO|U7@%mmQLJ(4_EcBS
zB*Je2M$*cxcV9*uZA({Vc!j2=<><Br6#1Yxkhd!%N<sdK@*YjU2^lB14=W+^P86G{
z7oQjhFvl6okgOYGi?SkPX4`sN!M?2Kl<{cSIxy@r?qr!*{KLHhRVH?d7ChfPYGquj
z#Z#xe&UOcB3ygMgav)z4Sd#$$b6&*mf>Ho0DG@mjLJ0*TJ|FiG8NmDrQ4zW#7z`4(
zk|WxbgfYd)jpgdhNI&38RufLEQ)VdkN5yNK;X_J6ac0F8K8BFuhuu}Kw?xNreZe1w
z+sjN{;BD_C$^Goh4iEya;)C|R$jWsHj^yUduLDo$_d514i{p#4lpkhA<%OQkd@)!<
zvLBk~Fy)q=BUX?(qLWGxlFaPeoM#-nxz*Qi#34EOV|vQ3d5}Swr#Lr{2U%c<-Ez-V
zvM#`cnh2lP!`2`NCDh&QRvHt_!$QvoDCG6&@OKjpD@awBYBo6?ZDI=*O|#`)PRxDL
z-Dg&`;~=h=keZ#Z9HBpe?s!q+&AJJk?O_D*Ay~TlZ~k^h^_H+yKj>*^u%hiqTly>T
zNRu(npQu~?S4;Kp+*X_E9M$fU&M#Fw;Z6?2s`|Xkcx2N4nVK<+-~LlDm)QGg;t5^G
z_w8~;NSDv<(Bh7p_kpd1A}}ER?dYna?s4QQqi{T#11*i8ETn9v+QHwI0lp(obnF%N
z?tein`6jpzzXbH1ts|S}@~Yw(CVpD>7eh<QEI!hcDx@2dQS0_eHuA2a(L^Axy}wAp
z;~frdh=7v+fj)-zWtVqi;`~3_EA+T{2vzLJj0v#jirYW0Rnr@H{j0uP@qr~#YQhAq
zRs$DMGFL|sorfV5AMVofji;3)Mqm+@pW1w~=Y~0|hm1nCz4qw-JC188`5VId43lx<
zS<mu3v&OrW89w74^+#6r6$(oX$aR@0A5tBmLUb>=p4!28yY~|M?&u_UTHw6PNd#1R
zjPri8!eP2u{a7F}y$q<~8lswqA~N9ZfpL2c6yY2#hGRV@!#M7tuM{_UCxQ>Y>liCo
zwZb@`z#C(<b7Xc({N4f2sY>GWLtf2R9Pr2qC#f$0l2<Kp-sOUdF&<wz3?nhJHSlVQ
zQpIyc6;~HNvUnrbQz>60TB6DT{>v4|=(4p=z1Q-&i1C2Wac<STdu#HroSS?!5^`{~
z%ALm^tIoX>N<(ANO9osLLMGchbBQKleM?B=Sznd)VqZs=UpkFu?1nZxx*MLk@y-d6
z<w$ZLcbj?A!_ae|$__T`3p2iy8YW~!_}`wTlQxkJMQS7<O1cZnTNjsfD`kW1zuZS%
zWDA#Jy?vciwk8vxA{aU7Vs3Auh_&@I5rIXdOdcJXsf3?_4J)0)B>P&XP`r@1PbA>q
zS)KHOi{$%Vob4A|J2h;5AuJ+*PvK^eu_fueg~bXu#mhs$YYR(%L>u~{GrZl#xj#T1
zRBftEDu?9+PmNOn(vD3d)gzT|5Yf1=m8X?wfXWA&k={58frV}~Y;^pWzy47xJvaTa
z`Shd~n_`N-<(Iyfl#EY_<0(YwZ?4BbJ5=ITiJETqAn|<ZH$xEuJDCalk;r;uY^-<7
zFE8Hkg>C&#>JPTs)Wfwk-b;ryS5;HW*q`<8S#Uw(9?DyZJ<ZblV3A95O@yp9)Se&n
zV}5X*v^h1yufw|@JIf9R^hdz`&H)`X4UR#08oa<Tf}8Z2wjgrVyG|zq+LbzkAIg~}
zA8>chEGE{j3Ne$i(=7t;0j2RSd5@Z$AJ1TFq)uD1tH`r<O|R|59?mf7J13AVUjwa?
z!BrPCJsflL+3q3sNKKbe4g^xLzId#?Xljf6UOQ@>mxZ^pkFZ`yz0zkm#=|&i%9aVM
zW77LF<O%m_4u&~DAD70CL)zk0-6XlIzNY6|hvl<^t&2@DOJQuI@FGQ4>!ESl@NiCZ
zL$m-4%>#0Bvei9TuV>=0OKCi&gep6c%~E2xx?Ju$Gl%RTLqPQMdG&E!2wa#w$69#-
z6|x#LS$H+&H|_P9&6i-9iKfYLocArGcpe*<lYyYaH1^h;i%ajsAHOB5O$rpy;3Nj;
z+H3iO@G8FShY8bHy@3^;%_>&l$zRS`w%USaMUQgRAB!o*oxeWMjzKqa5GN<1Z7P}@
zLi3u5f~a~rn~w_cbc5Q5?yG&y|CxmN>jps^Y5l*mrKvPefbnqbH0_#Qm*Gi5bY9CG
zn~C^Bk)BDQO1BvVc|d?tCnK181j<PpOU|h#P3EXf+i!jd_0Y-5rMWdz9T3?z8Ow|$
zmZf+gg)DjP_>_RjfTGEkC6*)ZvDpyxH8_%SOs$r~An*7R-H0+@*0ZVW7>&*&PvG&5
zA@z%p8xZ>Tdys644~!*lq|}ubzp$N)4AN-bNl6!bL#p%FT_vS=(0lxj7s+x)S5Vj-
zm74mC0{L;$k}*j>y*qFw6|90E-MCuoV&POxoCxI1e`FUc*UkATNk3hPdi`dy-PODf
zgK~3WZ_{gcYh{3EV-Rj6qTS<4=WT*n83KlmMc$~{>ODfcd*{p;n5TWnI6iOdJYT%D
z_Qa@}r%k9%h=p&{y=SF6T%>bB<g%k<&rNWDjSo)0*O<MI`@6rF=Rx^E_0~$#2e!#M
z8yvD?Ck#N}terk1deV9mPIguzdjtt#`5xtw#^)@@2(i!T2QLWw@>BTTG*o0E6m?WK
zVk(PK4la(4y-}s1`2^bDZ6`-Z|CE#@>-Qw$F~P|C&}H6)gTJ(>Vr2yY+7{{6-z?V+
z7#cP~*(R|vg&fH5kS6b{;>}3R(igJO$gFo5c;fn+8em`c)!G|>y6rKYCpd1u?a^&=
zmffJ3v-@4lf7vLwuLC#v#(q$VBc7DjTuyrZUIaHT0Ze|ynMG#jntZjT{VHIV4g0ig
z<SKI;)Qe^4x+Cr$^&E%;J3?XebPoMQ%~Q?wmAYs`9}3y;R=osb|56;xTuNqhzmXM+
z%anpajTy35StYmBfjz|HH)FHfXlM+2%3MXd)r12c6cfMB$Q?KBx{*_#Hooa?p1rC}
zNac{4=&TgGJJ~b_r~=BX++uvWEDew_#4nEOh6e8w3Kuj}O)82pc{fDl8Z9EL?i$bh
zAQ8L~c(0R+)xP77q(hLEYCi~gKRKEco+MvCUqx1A)3gq#3NSMRHbTQlRta1utV7?>
z?bh?XGZr7^T8XB2xFq<GU!I2n9j{pYKb_!Xl$0W68BGn_gyGDKkEmD9w<gazI7ICH
zKc~WbPDRB;H>^FG<Ij5+!52qXyfF8%8?A>$PSbfv{V>F{JbEpp80|rZtdJ;yoVEVu
zhIU9~%LKx3$>=pST?D;S0I=_m+ZMQM)m?Hz{agF(27^4cKMnh%EO6PLRK}!KMUn1X
zm~gk=@K(`LwvNv<<loyW<Wk~gYiZ^-3^_s+Yjp8;zNbp-c2Da@=697;@?2e27Zh&M
zn*hoDStY4)PGyjTg&6Gb-eDNr|E8QsjmVHSHplUJuGfkAOu2PwCwf2$_p(S%E<2dC
z<`61zBbJ+D>mzo);L(ELXipxG%;X4^SPk2?Xc$}D@MtZgneFkiKH2%$scfe|pA^&m
z5+;8~?e{G&Pc@>6K|p1k=z#C67xJE`0~4<kwRH#Hvq3TUZ2?I(mQ}G2wA=nkcWbz~
zukJSc+PA?AqKrHcJsiZYhMV)DmEc!xy3U{;x*mer?)xCA;Wd3-D~#hzwVdz8a~6l0
zuKRGDF0gD^y`=8Ffw?rdz=~v<$pi67^E)Ok>-C>9O^S3_ywpNoVx({6?WXdXbJBG!
zyV4SnJ8bcI({z$xr~bD3&~GCav$XAr?dvOAiz%aogP1Wd>Qdfm#mwdUdFmstX_wO&
z0l$q?C~MX~O>=TZ8={Fr2!|el=<0Meo{Jn4L`Ldhx<7QA2E&!a{IwRj4A<QHKj3_b
zz|t?9T;d^-$SQGv%FfbNv>Y#CLW2_MD3|_Odz3JTRD>+`!a2iKw5xMr4UL>j%Pg)k
z?@k3!R4yMjQNysComkQjy%%TMZ)Jupyyt+p68}X9Y_@GuMUAnD6+%BDz+b%TzP4m~
z&SXXunA)A3%}-ekRHYv>ac(gEf&-aMF2pGpo>(i;+K$WOT0At}P<tPj5wM^*V_#=u
z3y1VsLO)UA>AW?bTYxI9q_Ied57w>B^A?_4jw8<s+zM66e-18j?S;0dYhBl<`*cAM
z#=FKQkigL_)C{4)f>047CGwt04U=yyeAiA-NLh*(SbmgeTf{(Wl<-5WW|F3bdZ=N&
zDjE$W6{K0M$&U2<dvd;eH&5Q~q?icb3vu@~qsOfwrpIa+xH-+FFAyN@mW{P6mA~fY
z+UDZ_^=C@@SZHsk=}tl-?l(fHT~Dq7RkL>c>)*gguD;-rQhxYPCe0;0IxhrvCv4bi
zS^d(wYJzKB{a)zrS1r+l_@ogLBy>ysQf&!~0_Vv}5}=~6!8H{O?HKZ+T%a2+zAh4n
z4Fa(Q<)Ayb&>;$*KsSi#a##kbfwg+-9GEIWsV5rn#HFb`Qy{BE2+OM%0s}*LO(I?F
z?sfV6@B={UTh&uz%;k)Uvh#hULtV>ReM3byCvuK)s!hbl(h=<)N*-VkA8?C@b2)b3
z8=go09F%c$qR(#UR=BcQX|`R3zN~ewh0uphi3r-P$iyR{D*kl-4}``OHWePI@^W7v
z*^-11mCy1c@=MWr*CbvaM9+m?LprN5BS2o!PuYXyIxVco7s-&{4eR6WCKFXL=KzY#
z2OL8x+Hl^BWmuZfR>CA4?2~PMsGg>HGE)vD(*L4D9n<A4-MfnXSVbKNe0mSan7;!F
zAd|KDg0RmUIBA1mFi;`F>XW)^EayM&)rSkyKR?Z|)TWNr*rafH4AOUojpGgATCW_|
zmd6WmY!^L>$@kL!MWVRalO<@GWX5m@ue)Um;FoCylPUIlq}lK6n+fw*N21sz&r6=s
zF$j%{-X=B2nHjys4gz62uP?MbAl@+^2?fmf#VszVJK`_Zz^Dk(H~mlLAF+aLeEGA!
zB9)R-r<f$$REj5g)6Sk{GH`c#95US(fdzWtw1QhKlV(OQ6F9y(xBq|(nqj4%0_@0U
z&QoPBnM0dz8E;lm3kYeR4^wvGI+DGw{Ad;FtVmTe+kJe6L5T74G?}w21`xIRe~J;b
zM|?#srPFnC2e$<aeiAA`9A;~~&M!7aBOq+ZMrC4dZ7!Whk8>1Em~0?%74b^pao)5F
zH{W;!(Di%j$45YrW)q8ZkKvM*mfRHA`G9#kJ95n0@DC@)Ot2T6<(IGPLRGNm3rlA_
zTNZb~I|W`E_IJ_^hWWP4A{SnmMg>qW@7$HO@Fhp&aj@k9H*k!NVI22b>qgOyV21UN
ze_g_}JRQceOgI1zylF^ev?}$vmK(1<_W7V=21X-?K^;>ys}-OhTbif?=)9*RU*)Hm
z%lzUb92slqFeruwl`(*Xn$*#uMMn-|zvnGaZxlK~ulNn{pGCv%xLt)nMx+SEkNBQ-
zN^}|V#!~_RvZzP~@ncV}3PqQLrE~?C1<_{)CTP$-*!eHGV&hFzLGj)>)x{1|0vm1U
zV8*Hr7m@#xnY=-i2AdGk`h<GZdPY@b+TeL0y9`-#3%n?Roc1Toi|?$0_vnN4=@dN=
zAen^STYriRVihmsG!m;`!jBDpPCl65C%AC`00snV_V<lGWj7vX>E_)02gW3F9E-wV
zwI#fjh_XN6Ypu|Uk(Lifr5P;b{%a?1I#N+?k`27(sX-cw`mkABNWScRP?e`0T(%eT
z?0PY_uCbS_fmcTZjHWm_ld#8jOg~aZ+s(9e2W8qny>0UR-)rb&Fhy*C`i{~~iqDe5
zJPoY&R+S4^6)zAG+C_TA!d_?!VQZ3}u`d<di0a6Z;YbL*ex<J^9<d<5oG{!~1F(tH
za+?*T<K+$%*}EJD6jnZQN{!m@)k?1uV<TtHfISkflYn69NRrB}Rpd41b*9+C-;iZP
zsalq5yt(+_8Oy+NDZfUiB2kpd#ZPfu&<CuSBldWl`0sfBb;C<>>Phbaff`l=>-tX_
z4n|h45(UNBT%7)*X(L|pg(^9q%O$fPTCg-AXs2dff{&=~-z*vrKOHp67u4OK8z8l(
z);J+mx?ZGgN1Jm=@D1x4daawgsrl`nNFvK%ir+hzpMzwl541QA(|3`I6@EU|HPtmf
z8q}T)J5yz704Ifw+qh<kwN>;w-mrMx%NPkZDFno4eD*a$s>)M9wFFx2a9Zss(s3z0
zESP=9+CWk*>O7)6R3(ShpZTbNGu)H=E7te@P|wK(?Ct{+gYT$OqnnLWmuQxqz)WQh
z(RiF4@mWEEEKBgE^tNz`>^@ZqV+B(EVVcJVDytBX7*IX#zCsm3p>7WN*h))7D8WdN
zvo6j!=>Ju81iG<ODqD?w<!`$yjEh1;4srWSKNB96#Pi8{`<{onQ>%dm7ROLu;s6Pt
zaeVq`^7<NhE6PvX^_`p^hk+}b)-mmyFatfW&E20YpK$#PErpP0*oiN`3?WVkHg0xs
zs8>%h2xnny!Z$L_hBtJPiZTd2Tn`9J_&!XMsaY2>vs?nGiNSHfAyQMe{oKV2qz&Ee
zDW$s<7x!^Yv|Sc2dmEX}FzNVu(LKdW<(l7&qqG)CwKEHI)K6LSLR;=0MAj=~?K|Uw
z6*M)dvck%2eP<RAZkI*aj|Ea45W&`qwIpEzhGXVC!v5h{xLn1KX}WrmLZdDfysMBl
z5vC|o0^{x`E{q)<@7G69Y*&ena@*CS7AQipr@qv{MS*Q63>i^Ai0(naIVSuY?G`i9
zAIn*1ocP%-LHJVPar-A?&pQ{brfSbIBGe{pD3a=u#--`6j^^I_W2ZsmF%0d67uKMd
zg4W^>ZBS|XtwA0b477r>m>qLw5Y?M4=T=fQI=)JRztCiCjW;C%{4SM3a{rItoU#Ba
zy`@JU?$AuWpE?FXsY2i@NS;MU-br?(pxM1`;Hiwk0MQw10~~L`7wkI`XYja?qMien
z)lmncnn9?!r47r8&gh(e{P9y_rb)5ps|9e6iFGe)(Ut0&o22P%&gde%rvna_zgQQy
zRMCIZHtf&p*zQC>e*hoi`0PnzlS9w*dRX`3Gp;Xi#>eigjLQu6WDP`fU5ZX{S)mjo
za@-uHjan?}T9}pbg8-JFep?YI#%YJ5$x_?S?+XAF&bX%35DNEt8tKJQHCD(3!V!+E
zuZLk1_$2E**!0Y0kXM3F;(OGE%>@fKGkfuLVn%7C^eHg&`jp+U>D#$c4?i|}R)G`Q
zGr$&h&R@$X#qa^L7<p35KYZvCy~OwkXx|i9f^@Ye)w~j5zEF~P4bwbUmq&@0M0s2%
zFm?m>h-}sQA5Hg$5Tr+q!Qv+v$L~e%a=sm{<IN?Fb^touS#WNmm$ikvvy-Nfk+*aj
zwGy#9=%IzxigTp3*&C+qvsT`-KjQ*<8+W9wEc;|fN($U7#GCy3k|b*K5~{r9+y1Dh
zO-Lu5v%0(#3F+CJD=g!{0-rE=r`JXNq=qUc&2yAPkBRL)(~y6I`~I3b;7~0V(Sr+L
z0xPanqFla~M!47Xat>_#&?GS!iq-Jpz)aDJs}E4AstK^0JZ9OXZ%3PTJix@J5(E!~
zTS97Ez?$Wgac7v?P7I^2+9dM-;7(irV)Q53qJsFkTB_@)8j<uuwGB-fTx1#y`V+t?
z2y}JwEWqkX*-O-sAci@M*WgYMC=k0_RJAv?o&!|T&h-8ZPCo8*7OE8e*0fdFVAxHs
z$X#7pB$`evIXQ?Ul`0-rUzC%JWO2GTNt6Q1V!em7lbbS}(MS&?qQsEstnXM{G9kLT
z76QHHd}-CVt%II6Gs#P=8CjM&8)6c(#$vF_O2Y}eL40PcT{adJ$2BAYvh_|-=STNi
z6u9BTb?tWQ-llE-uNo^_LZo#}oV7E)jvUFXYYc)`$vWUN!(fSS`r4y<S)fO}U=5B^
zOa$I+qr4$(j<p@N>~*7OAFB@17W5`9!TuQI`^Z^WC(SUri+1T62AqQT_{gtJ@C$P-
ziy};_OA<zca`NWE0PeiTqHP^2TYZ`XsR$m{>haHb*%o}Eh+rUZhVErygp7cY;`ptB
z&CJR-;9*g+PI_U}RcZFdFQt;bM<VA?f)x7aBD$&{!Vl(<xbv9w^y=_9R5iw817quB
zT8wjsoga#_V{gZAT^L~|hJAzQTY%`DRSi$FwbEs<1`anW9k%gTM{fNWXhr)~Ki8PH
zTJ#84(Ns+ZLjco9xq^bA6YH2SMc%Z}d{V~1K7LZ5rjSL+<;I96!H(5q+E^>0@FgtK
z0fhkIZU3ShH~Vin`Y+|AKh4|h<SN?GVi>$C*M~M#sdyZ?0Z<<&rXW)1$dOAegO}UX
z`J*`I!H_eO3G^bE5|57ca-XrMyV_!A^%`R7x8vYOH$GC8oWAT@LtWpRtah0nZ!yLb
ziMBOF^qhsnCD;=6N{joS5V<V6p$mYWVy@yPrhB$#^!;Xs;EVBVN1$r2<&~5YfQ_VW
z8`E(qCAl%s3reH15`Ih?r2CWJdUqyzaQuX$fw-?6#C=SJSt+<Gi2%^IK0qVQNCFM7
z`T9pAVzQXX-$f;aie$wD%ROEPlhYKyvolKAn#NKI-k+R3fr(D6_IfSUfEAkwO$e0S
z(uL`02w5!CU7xe7QvO&z1b;f1s~;RZ;4$HMfq}M-#Oqj6^ujOWi7LzfMRIxum>@ke
zZ0(3WK}L3m<NOM*t8}+|uP_*|z+pVKJ-+}RcPMsyV@~KJ5@kPwV1?oK3ERT|;W+e`
z;~GiAy;u=hIuI3t%9*truCow$Dw($Ixg||AaM1DQK!fr)`o_(<rRbY4^eoSGVro@Q
zr3#sTlW+p5A3Z#gmoU}Oo%3@gHSiR>zP71)AB_=0;P6I(W4p5^Et*#cN{14(sfV~M
ztI}=@s^ZCkMp$6R#{#fj!;4yIUo`lWo!-ig#9S&svtwzs|GS$mq1PJB^T$TCJFIgh
z8HlwfI^x&tl)~St2B#`%Yo*%~B4N`971iQG6uvXNK%aE$(*&;I7#&0DeE2pB7Nj+D
z*`g3=C|?F|oElomS*riV{y77g05z+@f?4h8rWmul9%5n9vRsE%eETyVdeBRPiG|M8
zL5OcbOu!)3TFS-3-W3O6k3dozR~uMjuT+I{3Zku)>9<f82RX?G%Nu3cao=$G?Y-^L
zn$}im-6{qg%gstK<@5v$=VI&{C8gZCPsh=~FVw_$EVT1w_hXU=cyw2=@7-NhR7Cm(
zc4b=)fy?VutO;dHVCY117jNT7(LpsA5r~=YS@*tt@GERdX`95anw^{XNL>M$LP#AW
ztm39LKAR+**eMe0N2Bj^d0I=!o0nCe4O$`Y*6V<xtsq3$tcXp6kC+~4Kpx4LDVfvN
z<1f~(d<8y2zNi~<5au9J(nAQ7!N<T>0K3h)dS&fjomLXMK<SJGNcp}*7ugyf>IIEp
zw+_6RK;Nv)cc<1R+DWEo8w)URFH~UcfG*ba+UlRj-LW4ZkidW4{U#{8U;m7A26!AA
z9*1U4oDY`av%N)@#?1bm%gE?{E_(J7WEB3hm^7GvbCHsB#nKoa6wUK9JQ5-7^e@fr
z0<NKx$$IfnP&RF&_Mv$Hu)(T~p~dm{BTs4rzKN~Qiob`zAS;7E96S2$q>t%|UA);>
zHS^EjFp~k<p~P*Q^z}gYD%EB1<inL<nS?Pia@{HKo48+{Xo<cZs)eUk3omcpntja8
z|4T1nRusBT=*7gjrzs09x*a5im=n_=?B}oiXF?>yP}91;SiQCVc$$aMnnwQDiIGtr
z316}P(A4Xg^Z|<@1oa`^KHqkMMpG8As`nrYa=$`)R=x5|KUG}`e#T?mb_}2*eWK?-
zqo2J}5~5B0aeTHkghs~Me79bH=4>=GHd$9IK?P^IDy;#oW`K*uE)P{Egnz8!Quu~?
z5s4dnc!HjI^r^eaAlqiO|6cou%QtZ04i-k0otztr)_;hSZB>hvv_cnnLidQII1Dhq
zXaeuDss)cNxx9Y)dPq8903+Oc32qC=4p{?Ex_uUlIpNbYPi1P0X2~2IFjX$LG7Gea
z`-#X_Qub1o<;s3KXuKo*NC%sM&(QbzBP4cczwlP47>d?ei4iFu5^Bb(GJ?+Oe@{`|
zH2*|T2!q^9j4hnb!ZH(4^&5;nYnap?o2DmpWIvj~B)#X>TT0}ttsCbvTb~MtAs4*6
zx>2xE0*R$2iY8p(F{Ks_q$RLR_lsY)8qUOlWfLLxy4~}zA?Bs%l^vWp*oy>SQrIj(
zPy2ywtM<nwfWvt<=L*(DlCvl#g)o?EFz#Pc_WV0ybAVUR%dHbUsZJ8yy9)69g(h3t
zfLuN6l!xK`$7&J-9Fa`ncC2cm_*5uh3EiL#)&$MFuCNr^asF-J&a;5wnuiu~cyYMt
z&~G(r$T`_nl`qFKbES)^@J1*l<xO&>`(?%$r_PzSe(Gv-qfQ`+TDgbIvV<#b5mm`c
z&l|^JkynVb(KGY5p0AY%`#(+O8kI#x{$z{&+x5TCC0eF&1)r-E?hKbvG5Y%Vcsx3q
z;Xe~^%J8Dw<?xxaHM?x-8JnwK>9MMTrd=ykE+C@K*$*FP49AjFklKn497VZYK3O!R
z5?_!=zE1eU5^jRH5Lf~_auV~k$t|oo(i7}}$hF9hVncQLq9LOJO(v2R)SHVa@~=S;
z=6`VzEqNOnN!jliz<QIHPWi77G~&+s9O_ZmN9{o$w`_=1kwI>7^1S&`bOjj3itUyG
zfT9bh*TIX7ht_SfwU3TWKpQzJC=Z(;BrKI=kvM?tm+pC0_unL2hHfd>zDX>{2$O`4
zr}PFbIAmAMEC~PFJjH3VpK;H48xGwE@#lC?m<>Mu;WbUGqY(Fi6!u|Ok_PzxYS}Ux
zY#3BbnhlocV{%-8PX0w}fi{ZIYVpw@r5zEb`s7oHo8Uwu71*?D5yn?co{3!ID?||t
z{`uBwn6xqvk_9r%pNy)dT*u4}K)KvmDxlqBL_i)sxa&VW*L$c(5#%LR;Sl?4XpMd?
z*EMV(GSvBH|D9?1*o9n9Wm0t9FI;EQ&<z;>C1Mrgm(`9t1kc|G$)V*xPGn_4ebs%y
zn<Z#};Nsabx|^N!aho_S;WgW*bI*bmt+?5OyukPD!#AF7EUg0l7le|&#I0Bw=B>UB
zo}n|<_s*N=frBkLNwuIOsIZu8d!9ty_y?6!5@@badf|z`r#O}25H_8@%K3-Q%Y#t)
zi8eMt0lGvt-}&#<6vQE1x!oToJ=Hd~kBLMOei}Gec?;DhxkDC~i`l*);jfRe6J!pw
zPQM_GSep-h89CTBb(xG);qjntsfjh)Uns>;sTrs;)>%~r+{u4V22v{<0Yza&Wk;q2
zhm|}e!Xj_eDfwF!O{NzFZHDb|j#jZ@bI6$pc-#TS`sT!MmvW@HhX+SQx|jW`3Oi1i
z3U}ph;Q!*yw->23>Cyvf?Vc4ll*leq(V#7s8o59r6Epw0FVQjxRHqXTo$$_dZ(DLD
zUFXyjWEld;FFL+QBZA~+{I83?x#CyEvGeGRT-!?!`haMpBJZ{jHYN=Gt5lhLu=3d=
z*~`l1WdJ`wz`w*-8ix3hKT+xn9P(Yks}u*1G(%e*dM?!wYX0ZdjLfAHx0SuX%86HH
z4Ya*rdTU5XFU;Mn-0&Ft&dYUr000jsUV(<`k@h$^@QNjC&A93QIu|3o3leRLC>A9~
zL=2nD6bK<7CG^O2-6@H`%Fg%;K!$@=Y3G|p_}~zjZK{J8KW0L4?{Zx7tk9)+4JCHw
zk2J7qf$z4gs!vjyiY$OwaWsX7jQs<-<~0Uyuv=X7V2$~QR}6ntBzZ1&gh8qKN&0IV
zy?x86u0juaq4DL$K;ZSz3c=O3G`Qa?L0GCl?TF^&9(pT$s|12<EfX+}njT^768c3~
ztjo6uQFDOu`|mV$$0F^>@{UFlPWa#I))=5eYfRk$B&rrVUMTYlW;s~!%;rCdiMQKc
ztkjV*Owh``CD(<MMF1R`74IOB{@dMb$Rbu6%e0J&eVbeD2wp~5Gj_(i<E|aDglCRh
zLn_W;a0+u#t)l*v*0mTED7HCj=prq#7wb(LIyjqE6ENH-@rUk}De3+Bdd+CYJV>G*
z{`yk^WnoL}W~2Y{i&$=4yrXHMneifI9)09U13gabamJ8Txdr+)dX}#V#KNvA7Yy0M
zE)0?471uH|-Z`j`OOD#2f_)$H4Ded=7rCRf<P%pu{K~7sxf9~Shkrct(Gv8u@y}$H
zZEwKak#$ZnH`uS>;$2`|X6x1B!4;=C%w?)KSj)^1;lXX`9>veSgwk|;*OQ7@k*zt6
zU3!k%he{Ct#Da(!S@oB_=!-Wa(w!1SaWkZkbQ4HEE$NS&hOu`W>@!T-9ktU+Fodes
z94Ab-!lJ5X@{!{=j~uTEug9`P8-vo-erUlH*OX2oQ)|xz5@iOO#D@UermARnJ+6^2
zTDRORdRyroGGiMtmFpFyH&^hJ+k+0g1Cjq0njx#)mlN<dh?^L0wBk{KeynO(i00&X
zhoM^+!FPMl4os&YY^lK+tRuGzH~$_4t1^Hf&Ynordaf6U&)`0Bru1O05FM)&CoqR#
zWul4IqpQL~P`XHMh02IxNb2ZW)?({$Vee20`d9J7qR}h+o74bAf6PZqWJJ=^c}=&Q
z?NLsDiAf(2yTMyB3F0&Q-f(KHCUg0P`&QyQBqyW3687J+AU^0T7OKwT7Di4GC>qPP
zH0#SWbKnSWdVA3o^8PI*|2p7gE9pF5Bnjt(XKt*OITiNMR^WmT7ZJ&=ZVcTHVS^+)
z`_qG5GvX$JY*NL0a7V-GP`DLdluhk9!0PdHbdR*rz9}ru^sNX|lFR42^a;%!zM)ak
zen6{)rtEiXo7et>NgIkO)ZfS9M%s@31lmt<`X4s$HzZkjWIF+LH3N+VbhK~D;*HP5
zl>YzAmF()LCiSVx^=q$JjPFg!Fm!Y@DS<oLiz8+rxN{f9$dROcy;{*JKY(2^aVxj3
z_tRsaaik@^c0oVARHyrZuPiu6$R%DAGO$3#$YLr*9hpSnZb-N{f>*Tv!B1+x9r>x@
zpFxHCc0ukSv77@NqUq6Tabf3Jo@F&o_*6|e`oJ1&il=#Jnbqx7QM~1*q?^8*!LQ4-
zAg-}WHLOEYy(6?TDXHXBv54!{jQ8JO%ca=aekjuq5IGKlnB1;?{Yr0zz|90ywZe{{
zgoeD>{(1?l$n}*|zUieV(1S`w|EPCcSbYfM#apPgh}DaEr@2Zr)U9v*qF*-A$7kd+
zbnRvj1Ea_N+diHB&$IShWr<N#_+!_Uc)#g`{wUH0Fv=+_x7+lJ)ihZq_8ue2xs`hb
zy))uE?eKLM<B(qN_7u7FAfqj;WL;h(DwvSbKjMBjgQb+(Z^?oel^Rfnxy>RP;dfIo
zTPW9#u>j-zj$PLLZ_lp_M=ZY=DJ7Ic8^JL$`;EC%N(S=zGm7QjZ#YN$o<#p=+&x)j
z!zk4lbExI@IZU(8g*~#W^$b(wX5z@Lu5HZ(w1ZGfRvBDcWEXKM+5o28UL-Ydn<1EC
zh7KsJe5!=%VloMI@``sQ_ld93%~X&l);xrt*h|L)Q!qCcaR;taNrO4=(_t(vVo$>0
z$K+dkTt(IVUUTBYtoNSG`Opm@X^}538R~xM7z91NqH})6_5JE5uHhNtjy3HGhiU<K
zdYLWbtSdez9O{Eh30y8GJ0a&5e(RnVj>5rSs;3VnVg-c=N!|g&Epe$6zKUo-H)tXr
zxYU+*%wwO!7vNZd<9i7&d_ph3cWA5#lv1Q4Oi}DxcE6XtumY}tos3*5Clb!|D>{cS
zpeI0b@gCWn*nx$~`yjo#*9|qa;l>lSL&}OjADI`JGos-(pwyILnUoq5exNO;zP_k^
z5)1njp&;P|3LcDTINPbY=VieL`2m$NotYh==@pMoI{4*}*eM+=dZ7p;!la8{O-`#9
zOfF)D5-cqH38oh`+x6RcreDxU$Mc#i&c4cDK|7gdIbjP25cND*fwXxJuIw>RiTx>y
zpRlJP?{}4&tIl-kuT+fi?dFjf!j=~<UYfMeEB3_UU62dFB2(}nDP;)2;vwEgcLA?9
ztu_2&N)38>?BGjJ^qaS!So%_&3v9~@ZqEts6Np4!EI6$!?7>G84okRV)>`eCD%%2p
zYNmq^5-vaS%jnpmt`RUS6@qR~Ew2_U=huSfj9Cl3QE*U%mWjWpgT;xW$YCmv>+-xV
zqvcT|BSsChrhR6vf;^Z0qq~gqi{el?`z~S#y!BgVigTg{?Qv{S*Cp+sf|Nx5qXA1T
z7JV4}kSn@H{f|?=uXkPzy7m<~Rhr|1rK3@^P{@ffH#%S@UD&dw_Oq2O!E~JICk3_{
zHn&BK<<_;)r#7VG$_>}k8p!9;SPAX_wbcu{oo0Id<2s4ddvKw@@=UP_q(A3WnqLs#
z<&_b0(Qr5m{XfZ-rkP~;<HQTYH}-GP!EL~R`0mW7IKsFlDDr37PtII@)O;+hxy?n0
z>pfQ`2sFpQSy}?#Ep#6pNy{T0{SS?gG-{6O3R&2^aJbNEAHv}Yqh@Jfv*$y^gH7{y
z|H<V(f6?9;3f@yhlFniRpKMk>g$hvWk=4OoU_Nt(jQq2XGz)>@q5q=EeCJhF>~RP$
z;;)XArs(wq3jdlUg0B4zgpfZ+C-CEzA0tMWgXltiV;#+IZMw^-v~{{?g>qy2SHoe~
zKIdx(XEXi-HZ35`drxRC^kVgF-s+xg^v<xS;THrJG*ayZ{NgpZnF(0#yH~GqxUWja
zAuqiRt(y}B?35YTcos|<e3FdGDi=@>UDCRR+WIbTZlSpYBK@DX!$(5udJ=f}XeHTT
z%p_sWzDPRTA#s;=bNo=BsQr!8q4C|52@G=hFg74Ma@wJ6|8e8SM$kYK#;Wd6okJWY
z1EQXXHwv6BGV``S-z(_w06F&5O3vTxe=n}uPcF7}3FJ>qhzf3Lt!?+L%u(B+T>|Fz
zfUfTI=$ud(6kc_9dJOt_5KE_5>Cc~v9eSRFr$&r(cTLv0lp^8upv}Qj-xbF-{!U8|
zneuU-3NnLVc}wQ3%ax>YK91=kHd^AbimHGWA@}pm7z-gyYOp>nuCiw3OgEmFe1SeZ
zeOu*1RC-1-1yim_%3!Bktv;<)@Xg1|>`T0e1{iiCk}zxLe8mVJ|EE#95xLSe=9WIT
zE4{g^zJmL9t=sNdJY=u~PQ&AEon`TNzHo_Fd9}y-g|C*~a8!skc-Y<<#l^f&Q&bkL
z;5r@vkl`tN71f2&+SeT=tok2f;x4;-?w8BjlM6T-7QXg!y>7oYTzH63;PL_Q?|+IM
z<~2s+a1_Y$N3+l>WK{>#IM)Y6?$^~9EDam1>?@uM6Hxy=CyL}5FqTfbgQbeYRr+n;
z&-Eru-(+?mWx4zZzrWD@u_g4AaNyGDrNu~+e>{4~8@(-HF$tN#)}f%{lCG<-`qSj>
zr~Rp&)Wu@>Cr?-Xa|GdN$U*0AQ_I}-aiR!0?xP&3XDiWaVv|-YSJ`E~>0GYy^6-p6
zm!iUAthG8v10z*{rkNg1mT&OwcuIIJqx%7SFE7e8eW0#SfrkimYF5_|N;+PzRex%)
z+UdD&bj7o%FSNj0WP&EvD|S#nctE9fcN_yvPNI}+OjfEekkwF>9e^EK@$-sF>onNq
zjyO}8s3t8_xv!A&+ui%v;A}8xzU9`ncj6H#5il5p93;40mg`_Pppu6d!kh-Z4q8zy
zbKWDwIH@^4YQBXSg3FpHb;`(tdr5`f2`>5<B7bk=T4nV3!sHrQwYzg=m*ug!nRW2k
zsXkg}!rLVUr1o9n1DoypPJNEox~g1JM+%PyefQwc>b_>wD#-y!2Kq7?>;Un8zc^r0
z*z@)ytFngxHbxyaA(n874M}@~b-4-KX{KX4$4|#cNbJV*5$Z}Iq;U0CYZU6?K$ev%
z*oYk(dk<UI9u!Y95L`PcyLP_QHe@lB-AN01lzQh?6ui(~#uQm#=q=Z8+(0yqFy8s#
zZ#z=m%yC;34My6X8nM&L#J;KgazV+UbRy+>U4a+VCRXVdE<?W6(_%1yEXV%BLxkUp
zs=sprZ`dDo?(MzH%$NHyGNfg5dpgThCRul3B=-tg`Q7)}N37cgz>X+$mKc}W^@YEM
zs4-TlW`UOBnX=URP7}eJ#-}MsZUw$`g#^Xr^r1Aa>S=4v0&9FSXB(Leuu<hEFER#W
z2L9CS4C8Oo7?v-~fUM`!Y7F+vot%4bZv$7UGbJUT?s3@kHNqCS*BVE=POxq`=o({H
ziJ@y_2~{YXaroqZq#zIMLB!qC0HW`ZW7YUbcB4WgM>iPfCulmvKj8FvOV{gnj%-*T
z=(dwRT{4SQd@6yyBBZu&<4loufbLM$eoip$@2w2LcP%kRG<|jY@=O2d<gfJp=6?!~
z=eBHTZ+pAeFMKA-T;<9+@9){Cxj?-XbT5c%&V8v%e?(V>KFI}K(kOhUg2x4}KM;6i
zUpQua>zU;>T|3kA-|i9@sllDVGlftS4U4Y@R*t0G%IxE({f4I!2o$0D?_u97jL^n%
zEqi0e=H9Pyl>0)UYB+FIU%ah4Y%wpFWKB04l~va4%-a3m9b3`ikMXST1%JWVbYgK*
zp6SQ7fK@m#PTu1G4u7?X1v6~;!VY1#@w0;Etn)!b1n@as(eOVt{vO=C#rBCFo@2)M
zcg9VXvBK!6fiXrMy+RmGqw-E&?75{kq_zSqfy}8MIeMr=PQ`+-!b^9URfEsh-7~1<
z{ckK7^I}9$csb}7VU*E7UZV$?bt;-~ixg=ukc#NX%=}M@F3q_bvG0x6{0SQXo<hY{
z(ZPQjdpKj#avki??_RtZ6Qw}$-YAzAIxDS{cZv|YS9(BjpNJ_7jZqf?(i=%dVRdJ+
zbySL*2vA^Y1SFPW;3kGi)%#i%-VuokbaIR?!vw5jX!8Lp7)4=;9bQ&cQ&{__P-$*o
z`ezwOkoI<fUnkAS0he;klq<E(J>KnFAV0U_CQ3jTtu$BkFHC;IQ9E)F<K>BjZm9V<
zc`!f!@&|oxcp(~ZwM7Wph3$V@>dvdTHvqV`zll69YGQr~%Eo_9m!~*$PTfFjkBSHI
z(^n!&e)6?Rr;Pnx=ss&fY(G#i1$dU4FH>v8zk8ANHPuL#<FH!bZ0@_%u`T)t5j;0A
z+7S`k=r*dwZ>mSlaw%^?k+}Qd+}%rap<!r~$v+ma;yx{-8j-&ws*dd;ojl{I*m5lr
z>4&EpMdWU(S#qUtX@7AlPXm~vdv+p05OtIkvMbe`qSMtwLEQkL^YPwIG4o^NOvqVj
z;o6fp2l-ZoRGZ7dxVZ&h-!D&5R)9>dE1fBbGX**K+gWebo5XVEAi<3f63K-!j@m(0
z7Ez_$_fbO0@^*30dl_3xqOi0_S~6{e=l`!2G+<kwa}8tC;xM^UN8R!FS=rEL7zd2(
z22hNA?J0#>e!^>;M*D>no0$s88W<En8<{lTmJjAPRld*3eE@lfeD^?L`ae|-bs=Mp
zZnN}LTNe}427rmW(w2du_v=k#NZ=6psN-f?AMkw1)t`3sZ#o<JpS0rJFVSkU6nfd|
z?gcT}4Zxd!z;FCLxwH`1an(`*G=aB?K!EeHvc|*oR-3-^>D+~ntwKcJvi<6Iu&9FB
z+9Fx;E%K0O*vw>IO)R?^L@7@60UKmif4JqQXP@u&E$LxGtid4DQ;AP*Rx<`dLsAI&
zmT2<zbk}VO9X&w^lAir14<_#VCo^t`KcQ@B{9I~B5<{PzWViS+8;5;~mkzMEu4GkA
z45-JDWJ5MFasmZ_-b&#=t(mlSC`}vxIbz$m$?}1;g0<h?D~y>49OKTfpfwXtvn>4x
zC8G-ixFz%Die#j6NhX&P?mp66SvSBIJwDH$JJch%asN083jHK1HDSg;%gb&|Lz$-i
z-2DpxpZ^Ny>-+=(HS)VT)8&QCM~2t33%)|w%pJxW%OtBGBAC^XMUqH)#WBeruyv>|
zLj<<hEi+ls*T_FKTSaf!g7|mGNOLZvr3a!#JxtL*2f%?zo0cr3X`FKFw4lp<ft}2y
znZMjrFx?W;O;g!0{s?%(H~cKm@IMf<Ck>BkkCGmhY)PBd^!=G{o`0FFgejJaLdd!9
z&0uk+=3W(<ccS>uALX;b!#pjlq|%1F)sV0HdC4HLS|sOP&r9OoNNy$&P-0beTcI~j
zs2rU6Ee_h9Uw^Pb9<XY+{gDVK&T%cdBq;mZCsG?i>QJ-a3XFmt*?F#qk!~L>iKzvm
zzk{ur&54f(#hQ->eg!JGd}}j+F`(|pK)mIV<2re6?s>yGz$}=DWoy(P0D|^f2Z&l{
z=D68{>xiBa(WMV31oleVMbu5Pja|3Bw1XM>2F!RDL-BRfD;XU&?B9#FUbENHepV*4
zO|=)w{jIlPr^FfL6tEU?i73;(yyK$;Wx8Xm?E3%#b93^y$f-YQl(zWx9W6o9U;LJ%
zWiUVA*pxtEN1zz<&pQi-XouYUP{N?=<B&PbF+hZ&rzk64>Zo544lLJ<yf4zR4QX;=
zu*X)qu~_oh2z2>SeJFI#i@P6DFcn4BgG;G5oECRuk^^fEqAF-ur1ytcQSe|VEM#VB
z6Cnv05c7a=UU>9jvio{*?K@-dJsPTrsFKHJ?MZsj6PJjBxbcOv(GK_WBoSB0qiPn@
zQ(L}e$Iv$jKD>dye;vrdR<^3w&<idXq;#k8$a+8J{PVgZO*I8wW(qg=;=lyfRVfro
zL27ts&;FpW)8!LsR`2x~eTBWSbZS&S=p9fxjx6U5`&=RR-CyN_AZ@Tn^+I21?$>=u
z+}JTuspPp8o=LZ-W#FA}=yK@lLb;iLG0!nnCB%LgJY>mqj?h?M$b@24;OM22nWyWv
z@a5oxGTt{F%E@Xnxs#O*!CYPq13be>t=-X6YjsLd8$M8*1-cJ5&o_Ri{P{g_sekTl
z%Rv2R3zD9fyoa2h8bC8SU6HEBZ}^+ZEY7LyN5ToEoqsFF6g^RIVSlUR5dWeiXbN`{
zQHIcP7db3Q#e&4!mGdcWDrNt|cSFo*C&p*&nm-Hr)?*a-uRm}}^i4%h6QJ0OhYi)3
z%P`j-tHRwdB)pT}O%__K^7<U{jI-)Pw{2t{)~{4_;%E<~q^ON$Rl(-Tsr%!edA`Ss
zP8FaJpK$#qnqEacimm;`z)s1@5J~8E%XBpEjy3(srvemItE+z>yx@j=9Cl}dy0+vK
z7#UF+53YtEJIhBAPT>s~V-YA(9L1ERjCqc~52^qN2e)a=U!9A@)XZW#0?RyPlk9@>
zyFGSgA;@ape`^j6_p(L6YakOZ)p%=gM9P@sKg97if*(71Ls*HwQ{E-4C#SkkxJvOS
zF)+~h>R;E%UHyC2Mf%9XG~5Vg@}qpqY?xkTEqdRXKV*CJB9(DNLC#4pYPKLL7HIF$
zfd8H^$;0+3pe=*;vUf?CDWZH=N(}Iqiy^Ngg_q`he*(?xnlP&)?ktOz24E|ZCJp(*
zMj-1|7^}gZKuH$#`U@y`n=UD?v?wWoVF)zY^eKOfut{o*I);FYN{a-fGEYy#Ti(=p
zBa~J_k1|Y2RR106m}W&z4R4ue4D>G#Z_r5!^W3#~9^x%%zD=sBo=J1Vu++g<tPrv*
z*1xb^xv=EQBS^+%K!UrW$@MG5S0U#6=WkbW<nr5`h_N~r%<zX+);KjgV9a~^+ISzK
zvooW}X$^tw5iGBv3*4WNP`lFcagc&THnR|0P+UlCU|}8K7BP#=9W<@@ZqfI5BSg0t
z&494e`vT7<Lwm0^%9RbZ@RX_fMAIx)#8=&|JZ=f;Z6yTIM?*^5c%1un$9xcXA<pM-
zgSwAt^XxM%JX2g*Fexm&(?6h5?a8^6Z1s4Cz!}PX0K>=?@A&JT>2>hi8P=^6VPpf!
zq(L5`m1npN3xYgADWnFx=Rz_gD1Dtmp^~q2Y32tO4zKH7aPekAbI872UgU9lHoLjE
z$X3kVPyET6;qCh*`i`UES>Ei)dF&-e@Ppog!eg{J#rqon6sDH)9Q-Up5K7ZA#qc-I
zf(4zIGt5Q0Lqc-B!sJ$Vsz(#V)4mzcMj!lSf_DDAaYmG%H|$Rp1h5&U=*{A=@3@3n
z&xf%SsV_p$-EW77%X332awR;6peB89?|iK)Z{#b+y<J5!f5?@&*^MLV72QY0mWoPm
z2@H7?$(Y_dgqQEH-At|ntUI>pZFHg|iF1SVi1>)&V&n41y1=Lpw)|fyO8&3RL-p$f
zrp?MKi(tw%xuAj%pr1h!F7C%fhZ#*8?*uP_Yc#n>3&5@UJKjYoyjkCVz{`P6kwn=~
zFOg~+9K1FUHPd=WMOM@{5r(yparYi+M-r7*K%H=l^s4wtmQ3=vAr)$Lid_5YVv6||
z$bs_!i3;BUaS4BTIZd1K$!FG9y4y%TVMWyU5HR&}%8!DGpe--ONa(SiTke_`r$bh|
zX31`-5PA%sLo@*pX`aowsVgp1cS5wagKUD!;d2T=@aziT(`qaDFg~iik<|ljn%q(l
zV-Vtk5^`g6Mio`~k4+za!H2yn*;<kRfSlxL7U4voO7B0U$W?NP!FuXPSXF#1pymmo
zKidT(%xJT#=eU&p*dH%*cJe6SVMEecTCW(_@Lq;bi`w~L4HJ2D88wm*fR*Q<rRQ^E
zIco)tyWwg)RD92#c}3skKqAIM>lLl#1D5?9an5?O;GGUfoLzuSSbt+T%;;B#0ac4T
zVefC48rgmKsPv_h$tx+x(Q*}0W~&8C@|K1&49MZTCBY(hanva?5c|>Iz?)?I`Q;en
z-7x)iG}SXXa~lz+VNbnK#2T-LSk(fxp@FpS3?u?q0MaztRM$Lsl}5b&Er^OFXp=hp
zQ6h!4W6P*z^vbeU0=zJOgEK7|h?s)V$+E9lW?6p`3mNf8oD`{iRE@nu%}=~H>o*Z6
ze(#+eoxA^%{v*L{$Njb_<I^3YY!XsI8e245&K!7bm9y1%CjGbX+KV`13TkyfqCSS$
z1n`13pWUo@Zc5q{f{zlhh?Et{`tRl&GIe3A6n1Ya&SV8&odD*W{%ZtMD^<8f_zd$M
zo{7?*9`sZ6EP-F;YTfw8QG1{*!(=t(YcWr(1*?9*q!Nf{TB5-Ro22v-q+Nvm@-&DR
zfgr$|(WsfE$0+;k_OUTeN$MKJ)7OCPYdYFY=8?iS?m|5UhUhjz(Dc!53u0MdnAA=q
zuy=pE-{o+I4jQ^S4lVV^qJlbS*;Z?BW9vUfj%V$7+ey(?MF^m1=<IP*d0>+U%=H<=
zsrLTYvkru`J@^@j`H13ijNoD%I@nQ>7yc;!(Lx5b#dmt9Plgiq&-<Zr&(?JepsqC_
z&1xq-Ql7b8F><bAoL)vDn)hF4oYs|Ts8D}&HRDnnG{U4cF;IzsIW2VN{u}g+IQL;p
zi&g~2*xM27bC)vuT>vhDMvv{rjpHCw!|kKd8FQ0Zv2fvCHEZPsuO09_oP{-b3=P{O
zvVMezV{FW5k>4y)FUhbeeSDStZ1wpKZnp&D*>7?Q;tttEn3Ly{TGbU8VjmM<{%btv
z1l1PCkL!h2{~MRM@0;`kPirP;6WKZ->>4xI!ybt=&Tlpo#FvHSmLzd?<;*p;F-5@m
z=0NK%xJvW?kLcssTQfPkPE=Jk`kU6Tm&tWCLs)}I;G?ZxkuqmDEud;futk$4%&U#o
z#}d6$9hl^~7UyC_u<k{yQ9fwmUHf3fv|)4Md`gBBIc8Ee%2Tp%@Rt>X5tWIT`3*!U
zm-*&7$$NM^A*ts1EuK6b6stgX`bN5-=~Tu9b2Kv2JOPfyVLgXh2i9Ifo~Ta6Dz^+-
z<$mKiH8J-Zbc~LegK`s?GT;3WNEmp|+Kw8|6UT!a@FKdwaiW(airu0gs#RJizv9pX
z(RgbkEBvdoxdk%S4fiExl5arV0M8j0Vw=kICTGYIx*y++ELf^ihzQL=^)Sz|6!XD0
zC{eWE00s!1E}SJ$L$&9`HPgGv&DX8{N7(+E&LVCLRQf$p)Rkd0okqD4{`8e_;VM<k
z<#<aLs5NNX;51q3k)VL%nKY|2<PE0p7R;h>uI^k<j4&9(%VK2w$wN-v3=s5-+$O=-
zcmpP|DgPt)_bfeH4p!DQvCr%)@-FcYsvkHzi1YztaAI7HWv=%GXfTu$gyPs&oB~)3
z$St8VqPfz0|8v79qf&K~9Ovu};oLN``=6(RxL0av{>%;^CHqQDt!9ofzGHgi4j6_k
zNdvW!)d&%d;CdCkO&GA*#dp)LSAODGOyzx)b@FOsbkimez0Y~!q=6%`2W%i?5Td75
z5*eY8)Cis9oH0CK^wJb#lXVEmyekvetJB!ZtM*jUzQ(W4V0oNVHNE_{0yBDv3?wNk
zy-U%-U5r{blv_x~^WW!N#w1A>t`jFTX`+_~z}Z?H9SRGbK^1+VF<V|ETM7wR84<#l
z*5H8QE@jIdQJ@Erk*#SGLBhJ#rvkL%v&Gk0rro!QQi#rlT2_UJp8}-(@pY0VCqwo3
zM1N*kM==I&Tt%$p3#UfSmltQR^X&l++E6y@^fxS6ExnV*5*63>3EI-m&;%#rIqd-(
zRUfvN_S%vw5Av^%sH_^WsNtocsoyfKnv>rXTLv*?tFh^9@A4WzGUN;NYySx+3Ocl=
zT(qpKu04h6wb!-`qI;zim<#bB>Q7;4?61BQemqqdt3B_OL*xZ%6<uJo%I);};WWTc
z(hKL|W8%7o7;-_8JQ`pC2e2tnPY6ABG0GKQsH!DZlPS>W!d`JKK>&N_NAodMEjpK>
zo9o=;;>hp5oYb!p6+3mV>Dt-Th5Pa%c2rD$I*yw4#kz!E`V#+vI^1aC5V9ET+wwuP
zzCK@mWB6+fe&?w|yxs*B_;s>B3Mqi1zKES%Iai;aGB0DDnx>E_B$XA*WAoC3*|30w
zdKbZn^q(NmCx~Ekd0$Kq)O9<CbIX;%$%<G!H`~A<4UO9Kr!aAt5Dgj)1m^f-=%*+v
zP76Or6?_??asL61T{`{HSSfHaS8ou{#e6qh!iUcF*z6+U6#d4pM5PbV8L+caU_BXd
zv3>($CM~7~X=JI~V<UpCN+qA6wZvP)stx9!{>GLgBGodAJr7WA_l;x^wI0UEeVx9X
z%Ay>Vax1Krbv)1y(f<3kv&tTv7-&A`W1QgpLsUwDRr0oCMI0wOmYVt5+Gm<x-i=Kl
zVcT|u_A8`P*FQXj0oLe8S3V6a?@aCt5zvdZdo4O1c&*sp91Actbo@|B%SqqpwDycm
zOaOTp(R-=HVn^-)aUK*K14oMy-j*bUj5jO{U^f*g>r%KL(o^{AhkjvZ+pA=%q5WrE
zz3e1?UYeIgBQ-|u`omSRZ#4LCfHW_FV^}DJog@N<8@A91iz^zI1kl`earKWDgJRv8
z!&PnC$y>kJ6a3L0!ZOtdk%CXJ6!X6CY2b44HwLA8qacR@K*5(OKxCLuxh~2du_c0i
zezY=%`+gn3T|GqA4`=o^C?^=?dwlCBQFHZtlO-d~M)1?uk<zb?38Inwi+}pCPipNt
z?OEqA+QH{>GG2Y@HN{zEq6V#lOKGHGbtv}lq8jS<MPQ#UL!Q>KFi!F_2@l;zgwoS+
zdlKxwIyB(tKS)kgiha+R6EsLAv4Q`?9^ry7T^_G!3Riq^d?U=s_{Yve73L4-+m^@A
z+NY*l2Q19}>CruiUpG@B3_^u;0Z8+ttjP8Gk6ux$);DA1MdI1jTLb8yc1Ea=-^@V`
zAdH~#+#E*ehz&{~vXN@BBgB;rRE3U%;xeXuRtj_^EjKk5&`0di0=gqEXjB6Px_Xk0
z<&Rtz5?+YitFybkBoz2sH+Uqa3pRVnxI+#aTV(v2L|}ux3yqP2d|ZCYj&WIT=Uwe{
zU%ba;0W^K}%%I%y4x<bxPvErMTXM_$*cQ`W7RjL8aRuWDLu(jRJ0V?f)dA6fwRd8A
z|Hih2k8{8ntmTPPNg_N4D_=ZtqlC2upV@CLI8P>s{3B>8I2zHUxu&i&R#f<g+AF0^
zA?5K!VLn9(oC^AIvVsA6WGNZ0*f+xNFZ7e`n5`>Yc!D+#)=VsMP#loDj>9{>A(s}I
z{fJ<o8Yvg$#NiNl+e`KrE>uPCMw5g-*a2&@j5N3!z!93piWRMHN8U!|^HJn=gEDBO
zmyXZ*L^F;?XL}{9@*cwGt1k>`eeXNXzl%S6(acRsXRF+vrX`%Fs8^0{ZH!jgcJ65I
zM0I#AkTgqqCA=JI>VJ8ey>w9_7u?|nGrEB=uffDU-^)r;{X<gg&z|^iBB+W^rU3iq
zL|(7>-Q6g;rJBi-gC)_o{$`FY)LaXQt&ubl7Xmq1ci47W5sX|+k=*E*b4___uJF9`
zMsl-N!ClG`4Jsgd-DGXai-V6}T%)ne<hw`rFmOQOQi>O=0Cc?x0FN;A@_ndNL_H;!
zc^eZ*HsZ-=sc+~vo9h;%KYa*%OG6zXd&S6!suR^^XftSodaMWVN8?kYwf0I^q3!~J
zRZnSHi+I+K7@vJsW}fRw$jS9q0>0J-(dzGU=4N$hz8c)uKAKU0AD6oaOgl%1;1NVp
z!}mx-6rRdsy&d&_NCiC4e^eKDa2$0Rj{`t!2a5({w6B$LkJxl2Zqd97A5B>lhRM+`
zpVn#J+j~EIT^|*#-93I2vhu1OT`J0$vO!F*?rY;oa@uvBGP4ivN%(E8A+ya*Jcg@A
z0U!+fXt%s%5E02vQI*Rf+#AcKCIkj0WHG^wfh*GPAcu?8VoU@x9Ap_>;&RY`guFQ1
zFaQL$4M0M|mSjX7+ciK8<Qx*K*rD{!On2|ID!%GS8Wg+X%!&J_cb&WR+ftp*CC`96
zeHfV=`Uv-qUW4}$sz*+X-N^DMSoJ3CaC{BeBC%tDm{C0pJ!tdt$R^fRk*<<6!nPc2
ztx#!S*|e}d@!JMC;*03k*OsV=u)LDA3}I@MZg}74YF?9eEY?`i;bG_`nAM>d);m?5
zyl1yT7+9X?_4{?adXd9W{*e;#Yh<5RuC}+I0be`)Dbi>~VyWkW-oH?=*4-BccT)Ku
zR0Kk+mTe-o8r)~#X7veep+HMwR473fi?Z+#m>!Qj5wi@a9hlzAJtR&CivKuV;oH#*
zaa!49n$oimp99!{m7YAkc6UMOt?;**jrlRxDVE|XJrz4ES%vsc87Y6>DS-wJW!QTG
z-b=n#>tOQ8#rp0C;JCULnIjtdV3=vYt!b*a%UgFaWIuHV|L)XLh19!Q+k3)L;mHZO
zONsS02U6ZoUkVCuWYk(NscX8%3lATztV%*>iW2MnX*PuA<OldTtFc-{eUckGdw`-T
zz{w$C{JbmYv?aI}5a2@QcrlkC?7)Nj>~V0lR14@-HF=&Fa_&qbb6A9<ENQU3Kq{P9
zA+KOkna|iqCuiGS<HgHwN<Z}MQ?-3p4LNh+sQH~|4{a&<8Uy`{&9sxU3_vwM<DUxD
zE3c^}PVL@|3=iBtc9V8AAkRQ1rXrwes(k^)Zh3duuZgOaoR+HDLVl@qca=d!Bpy0}
zC+z}#Xd79m5D9Mhxfd(=d1DP|g$>Z0Tu{j#ac>f86LXP*<?jX|A0fLeIV#eYc{E~P
zZeaePm55PJ1)?xV=5fyLuO51iR74HB_4z8hFZ&n!LnA-41K*3ub9%Ay3t)rv)YnLf
zdq^XhuKmJSy<9Z$Io4Nr#h#xs)8Z%%x!{H05!~J8>^gayB3eEORU{(fCMY_bjZu{R
ziK#AmdEGRd(M1SqT`u1{C*KGgA-)zR06#E-w7_eQN?&9+5%vn50u>IQP~AFh?qQ0Z
z$Yo~Go9SSsk!>$eQp+`laqFF?CPXp^lc*k!)u>n8iYg_cPe?I=y)=ahvJ^}v{vT_e
z@vR!Jq!e8Fn3E}9%%%VUv=+Yzu1xY$1m}J*x$DEpE_P5!4zB9DtzL3bdY##CB~@h&
zv@K|&sNAiM*Nu_HvHDqCf1SGglQ63zcYv?1#0giyjF|h(IhA6M@rOb;-SjB#E<NhZ
zt;G&E(R69k9Rp&PfDwnzonu((lYO*r5uGwP#j%Lrw9u&Ur1_?vvakXPVTsn#tG)UM
zDYT;@)+bxk-nT!ukY8R-OCbJx9<ee>D>pk8fS06*j9~k0@akmxev-edk7N6+BmDBK
z*Cu(FnmGb`@<7Wa6R8jt%d8RWN}V0fJ+#_YjM_P<Um@qA4>LARyI)f9&VUxjCo;7M
zJ)dotn@_$$_7DF|a2Y?!6iWV<ailTxWS80e<ml`<SZ3NETu{#$Uc(%X+pHF;aiR#C
zsg8&vXlC!K6fT@=1zM`6@n8uSe^j?)5{o0;D)at?{vHvoH46Fg@e_q{nnl=cJT3RE
z!vuc39j6#84U~ysB^8M`&*9q>mH)DaAS#H^`8QUDl$(^;I-fFSF%>|CrX6(0(CE<Q
z_`*}rxFt$h<_%g#V(Gfk(5^Fe9IKHF+Id1XcE}A%`dQjb=G6GO36%D$NE{3?@V^il
zzLsGT0*r1Dw)S1+ufAs-VcDKOp<&)-npbZQ^18W0D!RtPI*{CT><7+s3BQL7oQMx6
z*d0hWP4>WuUVqFUrA+wgh^?6SA7!W!74jNz&ExEtYF_LZb(Y_5+cEf-vVs0?n`t)1
z1LXsiMY?F+I1+nP-i8_7bBftmq*_AIi9%_!V;QL^e^%pMF*XPKk~S%>%ajoc-p395
zYW{)$7S$bT4NJsvYVm<oii};Y&(*vf&1L_JycM>gvI=*yM<y)3)r7bjhm0Sthh}`_
zzG-}&jB&QW;wbgm8i9emYEDVTH=f+9K+tfvRPp)NWKndctJk!s?jyey@r`X)a10XB
zoaXd1dGa<d((R8wF@jNfHYNKxl18oGds$r~O?g=yh(8!s#7n9$a6qr`uY*C4w2L@v
zv>2}nP)7t^*gAuORoeYj+x~px##OyIpl4AFsjqD}a4fy-NbzD<Mn<dHMT0wDxt__8
z6UcL<$Blamrwbjh&Q9*Phj2}98$HL9eNN><Zges68yKJ}-4!wT%(<nk5FDs4Gv4)`
z!*AP{J?u8ypWVCeQBPw9?vEC%_~nwvk8k05hn>$sY*`0C#3TO^i6ip3XH_2^aU?Q8
z8ia-cZ2nXQqhBdz|3Yb}iZt$b2|-W#;(2Xy4-uh`GJN=pjq6DKio$qo0|e*}AH~JK
z!aIO+IL$+b|2=m*(=f7kkBa1y-q#NmLDp(bXgMpGRb>YDKXePkaOI}2InVYEAlHuW
z^625u2jJ44FnK*jAZiWiaFrmT4rU;l1^YU)k@tf?OvnGSWOv1!8X&OwKSeA!v{S}b
z5tU*QM+a720~gu|(d`EY#6*>=gLE)k{DX@cHqOJ#0q^Zhc{qR9B9Rjk3>E`vuP{5w
z)shqh9~CwA3;o~Y-D-yKKvd3y_a!roCjKL>CZ`hQ5_h4_#H_1<!K-e(DxZgFQYE8k
zVuF(#*}24Kj0cyQD`}?88vTiy;9n0GB939_QJ#gG7OAKh>Q^OS=*Rg!f_`{aGpLoI
z;7ly%1!Bb~Syy{3L1FS6Ey&|(RNdJPc&G}CWabVXOY;g^zW(-z7qw7Yy@EtM;v@SO
zmb}z+Tp$$XTDGEY+UPZs>J_6|I*9JAZbXCt3TO`onuX8BInTKgjX&ao9)-EB3$;GS
z#4euahOFO4fC?!o|M!T<6}?e_omH%(^(K<CZlJ5ol{C17WjSDiwrG1}AdCLF1_l>F
zA#Az=Jx(jV@49$fgpqx}ckK4PL})qsu~aGyGsP>r;2bE0!r73bB)8&F6bNI4^)NEf
z_bw+l_@OXPKI7+_7?<dzt^T{k|Fkil?FyI;Qb3dy!@-elj)1ROI-qLQo&2Bmas4L8
zoSSL+U$Qr8u9>;}N4X_<?^|_l8jc*_s=J6b0q1iExn~1WvKCo5Buq_S9%QCgD@s-K
zPR~^5?4lHF?hn=WwSrHtIle?}Rm3@_#Wxvc-Dp{^xa70oof2vezo8(^`XcaJ=f>r=
zjRj~-(2o2X_<z=L2wSvU7LiH(@RN7iVv;D`u%FFXe$Y@L6Qjc@Ta6;Z?64{YZGD)f
z#Lk6%Fg&_15X`SVANc`$%$ZJ>X#-H-dHUII=0rU%{ckxt72AWif#3}Y3wbOwkPN8@
z=yn7syXtDK@ByJC4=r;~SUnkF6<N$#X2&7Y;}k<x=VC6UAs2WizPJ&MDkiPgxkDpL
zPfWM4H4f`b=WKHdd1qx$*wS=+6<z~jgAeerIYuT!5e}*)R>^l2R?VIrPi83Aufj-D
z4xH}j8W~rbTc|{(P8?$^w0)ZD59Kc9l@V+a?$6|SUtk=#&Ir%N94EOrH_EF2kj&jD
zO)F<q+*%oBFB-@JEGy;t7bzR-N@&!k6h-m`B{>Do0W{r&W03~GR=i0T86|MZ$hW{^
z62G?29!QHY!%ONb2}X16rayX2aV#Gyozcu%$wx2@*=+S3E;$8j0kDmyKvYCZCd}q{
zB02kk9NEnZ+EW{pi%iE!P;*IRk?XvPqAQt#?XG|$5|C7mA;fYM_QR47ZB<cp96$no
zwi3L{5-weEuK!!W$ctF)<uwojuW0mP$IVigBxrY{v->Kz`zLh?Ku@31V9D2r@59cJ
zF;v<jytQ2b5(CF6IHU)ALRUZn^XcQa))Ft2W_G`k+J84pYDIqEN9*&WQch}e#<l~u
zbb2+PXp<r=0{?N2$o)761nw)cRlEPXS8`vE5?djEC1@9HTmM1*FfYOh+`^>pF%ifP
zmAz2+DCI+(N0N9UND$?yD;Z5{z;1FogW>wOVl^c_Fy!pe-MJjO_ug68?e*jWIAHvQ
z6}qy1c0H{#KiYtDLWc`4^>5_6vw$g#t7OEb|0zr5GH_i!0*_}CNa%UGJg1pR-=K(i
zgPr~i=pY$lqWh0Ea3a>A=#*fSLYbO4`z(8NAirJ#@Ld;`(c5zd+n_m)fdS^@bPB@o
zKe^+H-C?+h%O@d@f}Qou)?LO5^2NbZS}e(0YcN{qK=!|}44E>73(9X@g=lh)L)(68
z71l}fp(mg4nIM$zEO6y9Nm^_a(Wxnt>heSqD}^6@5-jLh89fku0*@z}deKc2NKCTs
zo-MC6s^CKNJ~KGe>3PhHfsEtW98S&|yE_`{cwN-2kwv@p2tVFs(4R+P7dvNxaoCgz
zn&m|S_A4tRL~t&i2@KDXR0Wmgn%KR!C2N)h1anmK)8y6;xCx6=x7(uODQq{(bBjLN
zJJ_z>kxR=h`<QNM^Yl*|X*?s3lixi{;qOhoQcJ)T-}QG!XuaIxbf|jRJ+5=L#3r*z
z2=V$|m%e>WONf%!J5PTRB@0TrRQLZ>QvWk#PZ3c=IKLEf1Pi>yD|pYe#7<?$;+?)s
z7dYE9B7ru>eRV09xj1gy9C07jlEJ4MnK1-3DvgG$RKKM~ZC2^c(b*j@XDxXv#i;3G
z3w(waiTcwTL7%86czc}hP=O_vu}W9EVm;K~qz&_#>_q~23tjbu^VirXY<XBz<f%fQ
zR{CSysW(O87fUHejTa=d2e$9*jDajdJ^O+Y0;r8*>AOC%ol<VN1Ev*v>A?*bh?$_8
z-uxE#IXKs*6O|*RbVRwApC04UcOT*gcCD2owp}_={PVH|o*Ua`lF2#{=5{1#`JVNE
zleuyB;6(|AW?uavWKyrgA$+alfdav-`&a>YR<rNgfC6fx)$DGXr^MeO=F|A=C?VMD
z(JWOuXvbGf<Lgimm|)oX6WR#cZ){tR#wHrewDQ)hS*4Tv+|3AwpnqD`@o>+9cwysB
zD?uQLD=ile0f%4se5%XC!8fvl7*Dm1iIKTA(Tfxk!2T_jwCO>ach0S~Y3EPX4%Ad#
zzlB?dd0fm>H_lPefl)*(x6{r12%GV4uRkb$HPe4ScIY5(Wc=>J;p<`}QJM4ya8PsB
zn<m<Xx&sHwF};Iv$W9SgHweFv3e(@*4w|nhGRX2+t|cu6x9^&7-}bR^hC3}3gRdnW
z%RDon-8GT&&hrbz_d_6En@^zh3vBOt8*(Z)$3SS$Wvfb7Y`ZVB?|KvyjugH}eKEf`
zuXJkkiP$$C9PP6g9si?;j9y5UTpRT{@=iv=vyRd{C)ud!YIt9re68p~oFb`KW-Z+T
zeS4JklZ=Y6)3#3;cpV%VgpfccZL1QWP(u7h@b|VW@=wXQ@vp>&<wMPPwB%N!E2(GY
zkF{}T*XQ+PVKhonBETuUMP~Lp?;S;+I6m2xTHX>sNn$C0`x6PjLHbwpwCV?3J3Wlt
zIOK-GzN@B`JqvxHG@Ehfqp~#H&S?U0<@-&7j#ey-aR;&qGeVwo>%|K!^4AJ$x(yv0
z$_HWQYTSs)oWkF5q`2TWmABv0pNbLinGH4ivFF^z1*hKeH=q}CVk^GsBui<b4h@QO
zJ(>9(QXbWZ3u-%N&{r7?4g5*zF_A%{x)4O{?|w1heG&tY&o434d7RGNaUe|&_|yv;
zh)ftH!jJg0;F%ClS+XxdTW&(k7KSglHM^@;!Cqy-$3r`h)Iqt0O^hwoOi!#?`;$~|
zMoE%Koe8DIV@Q)vE-vXXg9d=-a+gR>PG`Zk^w#I_uK&Wtvq9}3Rux_|>qaaDF<}JQ
zc$5+F&C^4dQ|!-OhprYLduJd^qm;07FR0SIZRt@OlV%Qqw0tt{5%DS@ndc#YJl&O%
zh&p6z(EOvNzsdC>iqgVpk5409NiXF<cl3@Xtwy?O&9kf3aO!q#?7V)h%v;%+<3ys)
z(L*KMv0H`fc6U*RPh}Ulv6w8_pJqYo*d0vm=&%s8sS|H4;wT92k;V=(?Pc&&Zzu){
zUkpttV)le8KRK%@t*c>bCL@3CQEqQpL?Jb+ds|E1@pKA8tgYQTKlez)!bxVkJeya#
zp@keAh9e~oWvB1>tlM;!!P|RgGpmLC>muhKXXS>M+BnokGpl)BQe52V_t-j+1!*YR
z{zI$b<@sp~`F>&=@-*~-21`iM4Nb~53not%R%VfsN5w=qzb<BO`j^v|=6U>Vo9qBE
z)2t4VP)#M?FQLwVio)Hs*b+e01&YM%KlY6Qr`dLLe?09VyOX#Kb~NYjDne1gk=!VV
z#Ocan-Zeh0Tf>(3BV|zeeU5DjO7K<5+^x=$r0p!0M)pdiKNdV+iuq7}=~LR&(a=|0
z*S}$5Sr5@Msf%6j1fxEM6MCoC{euSQLdm=mSM_wJg(><)M`SJ6K5J{+01T2TaYSwZ
z(GaFf8ihlkJ~0$7aNf#`xw(+$>`02x!yv4OwZGo1BY7zfjZx@{P*Sp;DM7R6;eZl>
zer&28nOYvd6*l@&!2e%74nJh9=}x}ep4zc*rmHY7lJY6~w~S_-or@S7rfq6nnBwl;
zZInUF->CuO_QJ#Er$;Q?Tg;aPOXw6Zfxh(Pnu7?uE^4LHT_BTLL*P^C3mZB<ychD1
zVC3q3nHNF4b|pG(yPWn7y<cglJL+{2xYTY@q=I$67*u@)cNq`9yTWul0TQl?qeLt3
zEif?b`1(64L*MvNW4!Tbt5`%{joQF+uMsXm<v`oHIW07l@uX<46=Bw(8H=0zw4{gf
zS;-nRj4$BqAOHX%C;_MjfL#c00CulE<b3ifrXJA~po1!Y8sCOFpk|YUX#W%E!{V3J
z@g+X$LAj8UnG7!PIX-e2TX@-g9*zSP!oE@6_}___Nc8Y+b5z{*<$d7L^3Na<^`gxG
z0sM{d+NFVYrwM`}C}W6e=66FLE(EXj;<6=E)TkMD$I&c>YBR-ayC3I~w#B?=m*0!b
z2UW|Q>fGonp8u`sxQY+_FYb}XmxU#+agKiayG0`u;Nk1|YBY<39+B87-M!Dcemyu}
zA9$e{aoJu)4UU#0@ifBKl40)+y_xuDF^akY!P)WME98~Wi_+-tAXS126CIF-d#F9L
z-gB?V_YIC~_XQfRQekIe^nMF$0mn0e1^*6Q&6N4CpV6w^Ig&IBWg1RQx<2W&2f&l%
zPSc^fZiU&Q2xWdVmiwUebNl!j^+8(Q0W$TyToe~-^=dTHm@Gh&pn4C!6KUtkQ-`Ue
zU0=Kq$}+G&dcZ_Vd+>t6#OqaL#VO}@Idl7ExXK~e*t(3-R7~OCnh9mS7=zgt$nzax
zUPYOKOS*l!2fb!dGn0F-<Di^1eEwp*8A&D*W}rCr>}N#=7T|z9tVR@3B)nw}K@*m6
z&?}gmRH(xI@{OqAF*VMR2Gu00$^O^#Sfu37neL6c>nN+R65le7v=sgDTOFsUc7%ld
zQ)0X6AJSKPkg%k$x#v`d;tEU&5(nk;tOiSmn4(3R*D70hx67KG*%C%MDeE%uC_|Zp
zLzzXtvq47H<Bo0C#!b~qGCr<AC5*RpOp{v6lX1rh!}4QUPJ%wkd#M~=Vr%MFM-8y6
z*->9G-(TckIqoJ^k?t01h)&_*3%+a3>{ln?Tucm5&3x7*M~s|M>mfPDXG8I=8BCIv
zf5i{_-Yz(2EGX_<4f=0Cz$__PCGld;a&L7!VBZ_@x&CAtiuEfVOZCQ>Aom$Xr34>q
zPgMq>F>7IK@q?3a+>2#ey)0Wh#Lo6%6}sXHp9Y#7o=ABo)fzK<2m6TBGo7iz6Z&c4
z%2j67{E;1*_kEIsCTUiM?G#eQPK?ohwT8?POy0_{%YePEqUYR@lc;8S5JS&!jH^#H
zY4Rr2_f$DdGBcr`dWeDhPLS~3g0C94S6hT7FBD<NMeLl$c{Yv^UT1_^aLcri-Kaxp
zCW6DyV^$iMtiuE&-5MHft|CAQ-<)MyKM>Mg9P8VtAKQjM-YsLr2P&@9a@pK~pPar3
zk^EsS06f$M8Q3MiphfVV8V>#`jX;?Ye3t{{`LYz}VE}nu*Cx2<TwW@}y^4YCo+&N+
z1U;MRUvdU;Ov-7rncC)F&Kr`y4+{-G);gd06_TH1yq{_XqTsK!8V9_ewOFn9Xzj}P
z({6k$cf!e8Hsg(%M7eJ8amDq`;K2HWJ?vwL$M3JkTkETLdPFYifG`LknTD<^1=@%Y
zV*$OXQPs{6U{O7E{0M`32evk$rt1VqK<b)uc^mXBn1ByrI~5-!OL`>mZy#AMmb&Wv
zFV>!rdc>oW2uH6@X8{u~Os6sC4WR>K@N46Jr3Nm%+!@c+S)NM23iOb~&KesID@Hsb
zhF6G3dK;a!9)2mZ$LA+CI}$VBjYa&`{v9mQ=zk{qwXt$zO-;#iK?<13+^41Bikw>o
z;{72$YSMtA2)L|+gX6b3-F>`ZU)mWi763y)yuU=2NonT%5XtFHkMe{LECv`eiW4()
zuTd3!U-YC@8!W4feFnR|;`2P83)4X%)>XIM1?a&_mnLJ6z-N75dfs8?%_!bX;E)+B
z*<l~*=wf!qj2>AJmSYCCSl@vu>cd|A9(MnmhOH_5*?{c9Fh((kK#M7uLeL~ME(jtB
z?+*^89ju{0IF}6fMMQ-H#ozpx0jp!0#_WCu6D29l7Mz(SwV$MqtCRWv(((M~<Jo@{
zCzhLi>A;2kv#d<{&zHsS{@sGg48Y8P(xy1#0WOx%k|gzQ?6hQPcIF=3I_N$0+ZzUI
zglP5g6`e&Dxnx8EAhtK*N+p%h=w%aGAvet!l-ON6DwoN+%G%6d^#;4uLi=?g?;fL&
zSIFH==P2*YhoyDyByJ7cc;@p*12M#=b)PF>TwiKQPS>_u@rG*lFxshQFyhurdV{(&
zZ++z@22MzJXEK>*+zuY?>?4Oo*K=(3qvSn3tB1CPHSt#Z9Qobswfj8-TvsGU`sG=o
z&5tk$yl;!=P!fODDHqsi=AxDou40Ug2#(E^Pj2FLzQD+Rrjp5<oz&iO{g1an-NSKp
zCG0;2wVO63U1vX+6;~=fXG<Gxb+ADLaEpSu59C5t;jq9K__THlva`fOHI#5R#j^Hf
zRu4IpgNI-t8GUfKivhl~g*ho>eY88-r3AeVWWlJPaA(@?W!cH5sZ_^0Pn5)%7eJ5?
z&iJ~aSAz)h?|xw~uAm9X(0`5F0U-eOWy~L2BLW-y%FxdC{=eQKXyr1!Mp6Tpob<0U
zZ{<J3_iaMFKB&|ZJyaD~T^>N7oma{p4JTATaYo~I@jz?vtA$#Fk}0u7BWJHsRS@qQ
zmT;XJ*U%6CEj=*rL~XZcu)(PIwO>VI0sYd~H^QWa?%)?^g$Y#@L^KtM)YZ3P(OP?T
zg)&uDECy9bn{lAG@PBoH)LnH|EA1d|?7QHX|D!ptMA8jU`s$CJ`m5*Ed5E?~PI<6d
zDF4AFVL6YH_Mjq*^%Rjr7#v>e7l^NkZNi_?i6#%9%ruk9D=$wl1UWEcGm+W;aPC$i
zhim(=9JIT(o{7cr*vTBBv!?H4rTJUER5Gn$8fJ$$uHBxJo9I%aOq|)2+NmY|8!&j=
zhaYhu8C&L;7ir=PA+i%W3Tm&YL}FQ?ACjvb#~Z7o_a{STJQtHmNLe)EF!oePcjATw
zx!=5K>3D_oYk8n&A|Gl2w%5o9JYyT_LQ%M4akFxV<ilw8lx5R)Vn%N*b6C2bY$bri
z2q;RhK~kr18CkoWQ_I#CX=L}sPvDYZnOXXGxXi(DzaIZrFSR+;yiQS|cDy{54PV^z
z@6mLQmkXu??Q1=9ZScKqW75c}5PZonNm}9c;0|8m(@M!#t^2lqTe3uhYUWByZnSD@
zpi&M|HvfRhyBcH`BnVa>>35O>!q0{|2@_)l*~I)Zj>$e7AB1lF@4d+iF{|p6ZQ%k0
zGC3sIZ&{mh{y!8ilp+PMKlA7i4QvF2?aXA8{q{#{V;Na`5j#zN5U9U7_Bef(pp#eK
z5e)1HrcKc}tr<R->b+*H!ShxI{mNa(%udB3-*Hz69O3E+?e3j_*OH?VvG)t_|FC`r
z*-+x`BgJ~&xyys!RXc@+QjzGRC!k#(_IdW(w>Cos-L&k!)7LjMd{Ov7OKt(N47JpQ
z<46=HARLkbdxld@xYyy@CRCM*G0(-|^*?KDlsr?021dMZa2zsEjNwCytZH0m8}mT8
zGWicVI!tXr>Fwk<sDEgAf~$o~uj0^oVk7A<3nA2SPtwNF4SjI8960szNr;G|24Z^x
z;e9gR>#jO7Vq;WwJ`f_Q4MM2avRy5oTZ^>saK&f^5`Qh+_f)J$F2X|&R(CpPI`Fx9
zBg#D+CL!8z2)*zfLwnm0f=P)Q(6G%Ik7Q+{iin~`5us5W{pTr5+?&Yqmx*>TIZBl1
zsAEY<GJAkw_6vcR_#$OgG1iEVQE~}!3Lzva>MINhCcGBvJOE6?^j9$0c1)c({IAVx
zhj^6+a5HnRWo5jnO%4Au2Mh*Uva4?sXXr*x`>4ezHFY!HvES^{_<tY4J?}^SYx@<4
zMi*P=z@1i#f7!OejkMcEE)b_-jqaP@ff_e8$cA_&SOko(eM5U2HrIM~ia|cxQWk0B
zS7L4@v_s=2lj_M8S|`^}n)d8*%AM3Y<p&0E*z1Z)7^pv*GsmfLb+6%}^RpLBTar<0
z`Q4=;>eh{vd5=2O@Q`1S;z|b6!a2A&Ar;w};Z$#11XNh&z*`fWIM4aVTE!5L7DRTy
zoJZ)K1@X-&C;4maqx3HpCI)qMHr6sZ`IgSIY>+X9vV$ojqE(}X;2~P)i$-els60tK
z!-a9+wE#9E<15;%Gy%hlQ1A%ee5`&<Oq(Xk)3c2}pO^fw7|UM#5VsEM`UMAIvh?)a
zEu&?D-3;nYh|7#RT<6->{I$I0@kq<ww*K(|-QRvqg;RDH9|61^c&YlQdbIV>;>T+8
z-~Ik>%&}l<Qy(5hg(J;HGkx>xzWjDsp!uZ^(Q@|FSrIsqQwbfvZYaGGV)=`CQ-9>;
zl_pmTi&x#OJ1ltdIH+3e<+EY%Nt4W$Cxg*#)N4K>){t)#97>WKb_?KV)1K>HD4EOm
z6|+wKGj)${pRb5t$B@dE1w;P0Tr+7{{uF``;Bg%jV217jPSja5!aOi@`5IEve2P#{
zD@+ZtF*eOb^_Km|k~Exz3;l;gJHQc|0$r@;Od`JA+;25a3TW{++&7Y?J!<es-W`)u
zY{5eooZ)t?&t?+oYA%Tih{S&n(P_iK(M9y$6I~D5rzb7_>TV7+-ONJ~wcA==sqE)(
zv@|j=dISfWF{LTFF?UlUwu?khB`9C2rN8D<Y<yS_<i4uS*Dk)u`6p$_l=Gb(nn)m$
z^FWT0F>#n>>8`yjpqY|ns?_<L1k!hFf1DTp_yM8~7ICLLz5~zTC`oGkA3DYopuOvu
zq(WDRE9?s_Ep0<n?kL!(CgwSTwurS|9uL`9$6|G=pe<oIP<CtR^S6wLZ{Q%0a^0>;
zomrwyg^anY&PHxZp8{@Ls#ZW{5-$PC*ws0-wNzRDu4U6$#_)u6THrb#TgogJE8O5d
zAd+m>Ga_c<8h++2U>jnnSN11Yr}Q@?YT#VEO1vw3=`jQqnvO(&MYmU-I~aEtjoWTB
zRn}ck+yuO=XZ2{r)u-A;;kS!_A3UaF6!7d2Q&osXDd|TOy=9L>HYZ6n)Gv$AxG=+4
z>P0M)`Z$9$db*63B#OC~YpDp&ypO=qqU}k=6I#bbR$RyDNG%VqW}~!m8fL->0{2_$
ze}^M6y{j3Ic|9Q&wCS)oY-`237Iz;^J;PH=b*5>U<{U`o-5@N*Uc-1WqD2#+)v(iW
zTiSWS7-aL<4Zd@&`&8fDIDXQ-$UXfLFg_V=B>EjROp0MgQ)J?D!2oUgf>)bku`Y=B
zm8rY5vEMK2-YZ`w+gUTmWmHY!L+ovJjlswLh`#!q8(|5muC|y^ee~gUD>~3Tx0(?a
zA;(bI-ErM}g*s_UGDH?Fn^m%B%oiAKiOYkxwAd9gbo!uk2jSRiCx#DNp4sv4EcEP}
z^qLhMruw@0E+&Mum({SmukDe*#^Nm)r`l<foKw|F)3A9Ble}0<72exJKvMVLcS?tD
z;a!H1$3XoQIDbP`&jW_DoMuqxsUM4x3I(auH@VSRBnyx4N$>sK*%;fIdjn>;M|_L3
zTol{81<#)wE=WCn47!D?)jzwS%1<g8b?_-FR{t+zixr=P*4>@<zQ<t5=DV^Rc%~ra
zF*na}um~7WoknB552hzr7u8)D++vZ)a)fnK<f`kA4)$X?tgFgY)_Mvjl#>3nL^|fD
zO)m2J$1s3n(^tY#U$=Oxmy9mn0+yBsOvfdmEKEB%qW@qq#~ep}nn<k1)=&YAS1dsq
z6UoERP~C$w9yA!~i%h$$tTy#@keDBPR51kOsRXs4MIh|}Z)FUezf}|D`1Be5-TFuW
zj|-Ox4c+j9k;%gpsFKzBB}V3kmB3uYM}6|=zrTyGLXHAoB$j+JbcHy6S_%_tDK~i3
z4KG1h)FNzmp3+y8Emr$4c{3v1!`s_Xf~2ep%zrzgDy4#O#{jD#qhf_hG`P|O04-75
zbx4^e>d#QjqNjfX027^y7Oo`nZ3%?p(2vqTAiX?+ZOmHp!*`L_*V*uB2^!*3Sz4Xu
zE)F?dd&<cPHBX})f58<WeG|HH(?@%Stwzakhw-MIfH?REsPfL9b!;X1|3#Nf0{A((
zj$1%wXiStzd|GVXo&K&b31*)}HYf#+vjFGk>Av<LV3HJ%Ib45F`_(w@oeb5}f1Gao
z^34A^85_rkdGK!aD;sC*P3QS`XXO`qDHDpJ!u|F`Pjqy=wgXoQ%eSc!ER#}@52c-S
zyc&%6hn$Mc#N7X==i46t8~1>ROO(0C36_xbYGq<>I2s*s5uoWX0gIm<@zWm>{v`PQ
zv#+oes&$b^qH}0V2a}~I&Fb`8UL4Q9>jF~@4DzbwW)0F5v)qk?r%u?1itiCe8T3~5
z^oS;hl61{2Aut%yl*yU+gB?V8-9GFPRix{CdD`!*Qx9Ykc2b4ZqN}zsSg|l&{VBo0
zw3;>y@o`=JAd}1f0)%E>(*pLs;mPIU9;g-#MAe0SgF;>)$Ev)0RX__-+06h_vW62%
zikp$!o6m$qrYYKfp?FHo?9)hP$!DuT>Rw4sio}vi#mO-cgiS$9|Lgl#hd8et5UiH<
z(V=4P%*QeVH}W9!dmJN|;2-kzC3nJiO6khytm3sl)xK#EifvXYBC!H6G8XoLKb_=`
zJ^2elw7B^!nrp7ZO%~&#<g$WL6)^x6i1t)tsh~&o>|Kk?owSTY0GDKo_9pUSKyy6G
zkfY(WlPMdBKIi;tYi_@cH2AW_&{od<@uobHxqrz>cSf`++ZI;Ob_($Rt`F=;3+S~p
zE|3uux~T$Afzn)Z{Pw}OEr;o}$hXzAE?QosD;ZCOot=(r!XK)FW=D`MUcF5a0xCUR
z`v0dWm&6H&-4|Rk^A5J)z4%*CQ@o_Nex&aw)ZMX?)br(|i|II5Z&mb(UHbI#X+{sj
z`Qc}<Fv(Q42fkY?g=09qUzx8bJX^>`XDhf__D}O#1sF*G;)#n|Ac+tx3Ru_1i?Ezx
zo0!|_C!cq-%?qZR{v(!R1y)qd(!geklE_Xbx^t~Q#3w61p3oXMeG!UiT<WP((QCb9
zW7I)Uvp~4Sqs>g~7N7GxE*5`i@#)l~R}_ZGXskO0ZaH(Sb0Z5X{Ygz^N=*GjRK!Po
zJMK&Qhq4Ytxs-MV!#Uu-Gr>6lzb(km?c@yZylSc<WWW#?J?st7iJ=#MQQc8-z}O^r
zFMf?zJxw;EAzD<E7NAi-#RvOmc4`>|N00JxsgWltB{t0!0EkJFb4oo?>XaRT)Mk#R
zt3VEQfGbK``x%fFM32=W*m~8xzBQ)(7t4^Wd@H*_*i{VGn_zjJXV!`!UpJ?Z<ip#e
zo*b?me2<t`X6yIODSUwf*WO9U;s$nag-0{Y;bZ1`NxlZI(jNDveV5q5X`0(HX(gu}
z*!<kxB;L`Y)-s!7w?ggsa{D2lNEh;LVq5U1ehEHOx|)x<wOrE&TKhe`9|9T^G3+^N
zcWaY-=q}S3TtYg_qx4$y3Vrm^H|T;Ti<F|j>y278Xj81H^G8xcy=iEQo|_Ce@D+(0
zni*D1*5Y!GxA8M6UEn*L7R0b544aNLbQum>dXo)TDa4I0;{IK?tERj;%Zwi+QCc!W
zErV722Z_eh7Ke&r?$=6T0=y~oW-ZYf8#MaRRMwMzh}L(%4b3`XJfN4~XDJ%jRd6R6
z`1!xJL-c^KizDi7_+=l;zo-*9Vz<ww*M|?zaK&;$|I^CdW_|2+6NeK_H5lh{)&-VU
z!c>z?C)sXB^_{fLWks{KDr(OfOb)_S(fu<)r4v$sW}C$!%6|LjSQE(xxb>A-Npg|4
zN~}7&uF0V>y%-`sgg8~p1lMCx3@Uq=p=rNEBpLAxfZ>Fg#G5uB(Es~~@<8_>zQ47M
zF!GJSVbXa0-dwfFN|!lkscrYV;aaK9Zji@+^V;4O&}o?k1DSG&ZfZm=G%D~Rl8k_o
zh$ZWD(Yxr-ZEdw$m(o|Y9InQM4`ygCDUq5Sfu`Mk)k$1)z2`!Bwkt2|G#O*<DIi72
zSWC|l;^P|Jze=6O8MvoIq+>~vnQEsF@DU8s-QcQ3IERu-D@K~6ep~XU|KBG{LU7+?
zi9`&#AD{6NaHb3UlY}56ZJVyA_vbxI*^|pj%V`IU#{&rO<T}L;?!>{lVQ9}D_Hs05
zf8iu#W!TNoif2BZAu#{2P_LNr9n8~dJ00gCmWWTg_8r^^h(@7m4yq0QU2wFH!(dP7
zSKzlh7IPAC1YZ8D2+P#-pac)>KVN@Ger_}|@-@r<yGObe_|=5&o$huY)D>1M`u#4N
zLE&}LV@j)foRtpD1LuYWJ4&(@Ti1|E2+r_CYiK~~2r8^DZ>5aF!>@g;TJ!;GKIEIW
z--1ADC-Rkt<m{qWBpFBD9zrGwFb};zM%p}cd*s011_;8*+gt|`tAti&s)+qky#$(L
zz;63cI(oyRdJYi?4A#A{hXn_$<c^)so+M3o{NDxla_Pe8T13p#cWmy+=e){bd@C|a
zQ=c(%ySaZ9hHSqlLDDhzXm$gYrjhZ(Nypjd%EM;g5_&C?w`PD<lF3|$E#o6JRN|18
z&Pdn3gw7~=I3Z-9P}-|<oA=k0L{wuT(!^Gpl~0VY4qzXSMx<uq)C?5gWtp|WM!~3{
zb1A-{1xYf@8xe0LL-6152Z4c*t0t(3S6NPCi|V$l+fZ#yaWRTb5AfTJPqXwH8$@<x
z4v;>}&0NC;Mg^0`qcM4Hx3!7#4Pw;Ngsa<3<buSWN{LmH=@E^#WAlFb`o%odJ6l~s
z%zD-acpu^%T)M$5UMMOjn@kz+C+5Z*0u_19pl~!&5!+)^L|EypicT4qzE}=`_7U8M
z2IrWYSn|I-8Udg(+8Q$tB6Rey#ia9uAYET5>b&!<)Q_NOL;Q5pKX=D|0)HdpNjN7~
z8mJ;xM_zs3FV-CjRcfiCT7YYg{lh8IVr~=Dezi8j;`RoeOQ9s{TEwggE%1D4o!jeB
z<_xtAzjTw?bxdN?FGCdJ`#9=yYh4$&4edU~{~n6gx-e|V!!4zb>K=SLH%7{Zn1<+7
zSZhbOuajoih1d%9CocUCf#a&abV3xfi@;E65m%SjUty_2%$9`03H{?#>7@?D?|~v(
zW8t9uslA7DZ;ensbnreHu4ubDo-Ow3J3tublw46x1bCMWo7#HF0cF|x>bF*n?g8L-
z<fTaneC@FYWk#&t{7B*~@uM{MA{9CVbe333k!6?dkaJWLaRbwV^uKsi(V!93E+vH<
zVf?24`x${%s7yF0o3sk(Jna^JDL<6a=yOjQ>ChMke!9q`2c=WO7PI~`|5$BWNaoY+
z0~M->fy#D(pjVxs1_I0Yg5~}R^V)rLd$5}3ZU8LS?)#7)gQW$TW_u@8JBIyR9m5aB
zqtrH&ZntS6OkmvjYL@17H)tD*y6Z)b&9I5wJ<&Ub9%=jUA`Lkjzq0308A~EmI)Qxp
znhfj%)lK+%sK)PM<nzp(O9kMjM*4dNgRh>mqs-y<4CR+fmFaRhEL|Vq<qB=6|K1}R
zbh6tdh93?BQDXRJE1uJnKAQWJz>o;Nd?JYmC3%B)0NTCo{sXl;e*(sPdK>(Y&k9nt
zXj{X<Zx(uwsHfgZC9?q^b?1H{tS<QuPoGuHPK(QkICcaqLM_Ob9Rgc?7Vm9lrUIcB
zrlMhbHpQH_MpG#zl#}~HsNz7nD4^L5b5|IfKdeeshxP%PNhjFWIG^jQXneTb>n*5y
zPuQk!0`rgHmo9np^2c?_HrES#!5cXEXE3zL<fl=N2=J=@S5H!7O9TvX3T^HAs2)91
zrx*b7o6AZ?mqaq0EV&-ix2fWs*Yi8^{`Q;S63Drg`JMKc)-bY^f~P8gb5{*|rTuf-
zG+SPSeExJ72c_6o-6><Cf>4*WE+LajYN~H*+DR|KAA(g0gm8Y4T6$;BKRi%~E+VS2
zz=+i?lHp{#Yx$v4-giGd#-tT6Hq`NU0H|fqKs$zC#=~yt&i;OFoygFUN9b-bB0!G8
zeN!I=IZz)Nua+IaoW6@Ar%k{3%beK))qbtbZY?=Jn0J{O7mK^QX->p0xBb*srNd<l
z2V`&+5_%ki1FA9fDL`>Hv*KU@0`#^xiKnyaZu^`d+2{K<u!TK!xE@Cr0U(V#*^x3*
z!MQKs%8?@<VH2gd*=>2?8atc1sHOgS3>WPMsu57`fOMf4TW=FQyb29F(!V$)>%?fg
z!pwO=p1OxfQA`i#?TZ>pST53+W$Fmtcp*MbgCdkjz*`VL;&cnBIDf|0Os|oY>jo_8
zlQhxjPA*jfjU7Uo2vFux;}STW!I-rHZL~Tl)MclM?Ur4Z(E{La$)Ph5jY2?SBNGQ|
z4E~l<d&T2_Pc^yjs9)_MND78&kA6dhT+jW?x?0Nt81+gZrS)^CkaH1_s1ujhJ<Zbc
zK8xm4yKll3_xT`&C%VlvY{v*cUuAXU`M=u5+M&P`Rh|cR(Kh7>T`zG<j<B|7u+!L}
z)nEI`OI@Bxad63yiJ9VgcfAo4EFV4=^Z$2Iie4F~yoZLPcK60wMP1Iv%D1}@pr7j;
zk_ODowKhHZtr{4M2O`SHoeDP1btU-23cZTzD?63-{u95$`%*lI6ngzK`}+^<Zg5+_
zy7AQJ-oHW)juprscqoKNR_PJ(R`h`e_SiZ0$9K{6N^V8tX7^mQ$}vb{+TnoS*90tq
z9e^C1&Z9*xUdi4u%Vnl((3tr@7ygQBdf%O~EKuU;$T8k9XeH+SqLJ6<V?JOHmYkyI
zS{Dr85Zsoa@A8msz<tH6{T#Af^S4{P#IRxkK}p6O>jrfW&C19zyy$0d=Li*pb~m%f
zS?H>SU(lUaSX1fRn*E+_>65AU7t*7FyR6boQ5cfNS%QU1I;|~3W_z)qvuTgK{$yvM
zmn?v?JKgyn+)IYpv)2dIl55U@(5;H06fhw~7IMaH|N1YXygDgmHg;Q4gT#ol^Ot%k
za?!NLu;#C5JZKr|v`n6+wT1(^;h-duWVb12LP#4+yXm_8OY;+aHHc7x9ugeS@t3Ap
zqGA*#p6k2w^ERk`Ag5~Woj(Zx82xk3x8p%V2K-8K)D$m`aJ{}&Mc>MBv1BKXS70+&
zgRz3I-~ptpGjKL3ut{*mGj9Nim*D{h#njDHb3?B!ZV`4m-bZW1>69aU+X2HA^^3C#
ziy^xQxGXs-gLCrtuai6%POjO$ruieJa3e^{FJ=%PQR&>&6x|?aFF2ULn6}iB0hVt5
zb+`c4_0XGC@EnQ?oG4EnX?v+@^W{zbevbXFfXP==IAq2|l1V8d6Poo_J5>p%ww4o%
z6FK2X$6<M8*uo6%O<u9ZX76)+(%yl>J|`Xw0Z9M=UP>Y08Udg|ANX!%3g@qx1^o_3
zU-jkBhdH-u9;HWMb0f3hzbno<<|J-0x(T;1+E7;ppO;d3&NwMRMkGp9V<pDmKT@X#
zX4z2Z|I}+p{+-CS(7@gQlDg>|jApP3GfBdDpAd<ryv|gqXvs%i*(0pzSC~IIW{lv`
zcpEL2JZ^wkG?Y^TkSplRBN;CX;hbOQQ!Zim16<yb+-3qLryJi!1f!d?PKi~mUMA(@
zt5vm(i~Yqj9o#G_^%rLjAy__sL-gq!pfwIthp!Rn1BLz5WXf8B)0#zyCFW4ZH$J|l
z9sl{v;c1@Si%H<h<`QVrH`+c?qmvJsOb+DC9lcWbvzMO+LLoPtzLxZ|Cm4c(YmJ6X
ze=y78S#%-th2V~h!&}|K@WQ4)$N>hJw{=55S%kI^ABVZ%{K&T1>IqP)+6qMfcXq~2
zKJz`Ln1GoZLFk`~cHO16<Wi)GIOcrbr^?cQ1R@GDfKwm0;F~a(8SSf~)FC+(B<a8k
zW%}a2g4YFavSQFcNGG8}%5A?HmNRje5WMSFhxCY2=uU4J(4m)x<t`JPjRByN^F2{Z
zwXY<f+m%<!fY_uou@h}RW$`G0$VSkN$^f6^{Dl4~$B_Fh?y^^b;^PP&ztuwfOP$@U
z&`&A4;)uN^%W_>2IJ$@PotONS9L{)tEn=V-xZ9lRjUIge8IUB#ZubBKx*`6<^VbMK
zchX6?*A}kA9h=zgQuD&(&)P8nkUckF9$0wQW=ft}LdiAZ4m7Kf?pu-8K&!@VLa1|i
zlAO=MQV$A2zq4mGZ4#@oXECHA5@s=?!%_1zuex5b1&t^GLuPy0M5U?&n9Yx5)nsI+
zFGB2lRG>+l;W@tITMNa>6RF>fSvj|BSeXHJD4!wt)-#xvm0Q)cBy?%w5`D|Q({|LJ
zQ2|+atiD0zwaub6<RoewKW%-LwjW8w*odihjMa!40}|hl9{}OYg*1nlVi89jv|XIj
zQ?PJ}z(5VaA#t+DyDPjQ3w7beW9CD#`LiD5h@=$&S<`yinbafBBC@8$Ko2BKQ4Hxg
zaq5y4_V;;t+ay){TEfKyuI7G^<8K0iXq}`*{5sr<&nz^;s1%Y<Yh})rUrH%o6#fm%
z>9CQo&H;Pf0Lzj%_R5l0ZyV}DP3<0=%Ms%}pI7yd$^ZdBdfxV9_yy)M$2shq0wi({
zY5n`euR5Wdnd?l3o6YQ&e3%@#=?XU*95Skm8bHc1>#6_@(_kj;E0y83nhO0&75S4`
zyoIlEc<f@xp)G<B_}BfW)+2E68g+9Vfv{mp4b*u}C>;CBF0Bja+}uJa1mZ`@b@{tJ
z!35Y<R)OZ&6dzJACyaB)BLpsq{c~wHaEB0SlshjUZOZHr@>l~r+aYb=J%sZR6OR{?
z>^}!4^c4#h!*SV&GTO)Uld@k>T=uX&@<u~N;Vm2feo|q(p?U#-@Ok4!_O;3wV=sc(
zDK><cz+yd4LUFzc31FL<1{>F6P*YB`Gvsv-x{prctWWU;0vsWIUJkBX1Bm`Y$o(HV
zAq>=&odrj9ACF5Od&3mPn-Pmhj2-M&)(S^#Ed#D8rZh%6R#E`;zGa4Y>rd)o#)BmL
zZ)?45e|S<ZmxO!)R|(Y9q1KbRDEqP7w<1*3g79az4k4+yk<^Inxw`dCDUDEc?-W+n
z-|uu#QgVbOrA#5V*!rV<Q!x+x1bM<1pXZ>#4)3bfi8C4DE!rChIE*Osj9aR53|3|=
zxS*lyYF}zd_;=9_@Fig**rQHPzbQ`voT#F8lEy+;H92)qj?;`E!&b1?!Z^ehhE&K%
zsEL(LK||Cc1Eky;!ZD!O3Z!2iGtBEJ5_&ka^|ZtfGdQ#?hItWpUoI@(3ucJ}a#dI1
z?_>T?GJ5k3ecEE|3Qh{o#ok=iY6c%u{73^RXv(d9H|0g5Yen?GQU6muCcK?!mKfo6
z0bg$v!I;%)B6XO?QZ*F`+Xo1SJ&(|nYtv$MM7F)H-2KJgMI?yAGdQq1WhBE4;AIIb
z23i4&eChXkwqae8!-18POK)w2#U#T;%1^*}%%Z!YG<vzpCxw@Ab@qP8v?#S0s2Iip
zi;k&!Fzp-_MJaBdN%b^~j<0_p|NUt~C3M~L%_;)~=^7iNbFtx?tH33>-AnB>mbCx)
zLzmh*am+>6$Tktfv&sFr;%z#U|FWn58TM&Mlcp^N<Qa@HD8d}2xd(+_rN#K3S}ifD
zJ;UkIt)O=%5epdw<cuD~$7wJELnYtpDLL9&uk0>Fyp9FG;pW(m9GjSh_EcmgdV&SC
zJjXIm7}gdZWHgy<{UBE+qX)yhcP<WBjhqZ!z{^wMk<kL$3S<C9L^MpPm*34dYVpHS
z&8T@*P-)17nE$QaGv#GJvMg<fQNeJRZyJ2#)r7Sm_mw2^)XfS75Z>jKU%~lB8OSNK
z#w~PH@u@&aWKW+q#$ZvTj<PYH*#04Jw42qG;n6JWEs^mE#bAI4$UNUe#@rmZPIEp-
z!R6}piFW>5RC8vodX$7i<AatGp~2gd)(f+a%4}KpvDtQ#V)I(6=?YqztGX+Iq?Epk
zq+|)dr>tU!h?w85IjleSOI0}QN}raR|I9HtRyNWBS&uY%vQuJiQZ1&W)vM*^j4GP;
z-U;4wnMT+T1(&Fmodv>NJ4Qw8fqEr5$w1LdnvJpo$=XEZ0p7e18wAz?CL)QXudZB&
zX!Zo#-@s$)v_M9LMQQbcdwSTSEEc>7$a<m9Th>B?60acC4l8692*JyYGh~fNjiuIK
z%N4$co6H2oy94if5()KIGI1-0JkK-LJLs%Q&ANycQ`@VWy@x^CI!vNecc0$PvaLYY
zqqYao8Y$ee4iOl_{mODnc@mBZCzjJ+V|=VjkF4;D^I+IaHbp<4xI{s&(0ncdz<YgM
z9%(Zd7{;G)>%}`%5eO-X2<NC6v4(!^i#*#sLxheSN;tyRKm%KH2`|C4gQ!RIcYme^
zdsk@$F45@$(Gjwlui_C95!gv6^gkyXqJ`>rT`Nf(n*0%&ci#42D9L)T+!lcP6Q=*i
z9Po)CCp&4m7#;vRe>ouC=^56+-xOM%xVfBVntslG1HQB`B(TR`cx^*)0(Pr4+ezt`
z2?<~XXP>Mo4I#Xh8wptzP|fVX6F=`7vL2a#|C=*aDpaqowYvs<PV;4<DBh7R1)?7D
zv0@?a#+?_I#jFx1nU@H;cJZ`Lo`Su^PBf|;_C-23@h1PDaOx@;(}d(OR2ajN2+=H(
zr?fy>XMGUViLW0^9E*wsotoFp{{E)AvFKJs*H(NN2A7x5ejI(>T3g5I_eN~}fgkB$
zIQSZ1-E7@kpRo73=MgtJIj<H`0Y#kTY%42S@4H0_uows}oy0ns5o?Ios?`ub_5<k*
zVh@C}+8+5bOdYheuR~>@J=}LigT`Nb;fK4?EjCJf=Nj6EPDDecf^v*BcO#*^CVjIE
zk05&+zTXGNF*`3k2zMV3bP&8C1&?#~QSF#+xz`~qh6t%3wC~>p<gS5>aTRQw7UV0w
zDqNMx2dJIpoNv2(QCy^s3p4`0^K|4A%ta|;RnfVoE=FuWXfD#_S?T-(@1DgnrY?t(
zNIGW<Zs{Z<f0R==7%KQWvhh^->U<c^E}tvP;1(h`b%^PkANh70iY#{scmQm`)QI-o
z=>h=ZD*+ggUD|_PmkyHPwORS0DSfM~<brR2;^f|lHenbZJlT*e!9rm*AW0$3?d$}J
zncJN70lw6YPXasE=>;dAnNIpNof1uc+qc>ATw%3Mau3E}{}UH`Cr1>reFRT(O}=1e
ztTE#H;AhZk{k)iN!*5{CnI+N4i=OHKcsBpD1+`_eXAV(NrCtXrTT<U^1^3H#E^*zL
z))kQ<EQ}i9qBpjX_H+cPr3nXAZWUFHzkbz!xt$(A9AY(mk&SR1{zO6b-E45cdOLO}
zQ5<K&5B>{%6@R}v=&v5m5n#D7#uHrrm$SG@-oc!S&q^M4F?^+gR!@Lm2=U?jI~9)a
zB&!!Tvw7=1!QRW)Y~VGtZZkm#vptzs75hGo1O<1C*>iWK#*3?ZvK`@y!}8*e!g}F5
zfS__PfUM9#^chHgs+VR2eiKD*{gV-xgfxP>`!EtI+8d@{szqI#<#w{s`11s3TqfPJ
z>BPBuOo%UYh7+f=`dP-(nixOLy&Hx(VD1L*ckUl4BJScv_bwBZN$8FM1!8#5*rji9
zo^-SjG)FnutJE&ghubmkftOjql~?xvfXOd(+ig=M73e(^py>TYH<{+|R?a!wuOevZ
zUq5Z0{J7XyaKUX(Nx#3?3pFTY>GxE3P4RHDA}ENgCq+3S71orLRG)9aS&RF@q#~f{
zOKGHAq-Sjp&Td)~KK@6w1@!Az_fxeyCa;s*`wT{K=Ym~t$5%<qhr<W;jtIAJerf*C
zEuz3duNq}aZwljmoD>OkFkh!9#kP^DVxDh<MLGi{d-=w@wRLgidxV90NF9O5L-gJN
z*Eh}z*WQH9VJeMiI)ud{2ZhNZ^@)*UHKAGOgRN8Nww802>asSIrbHk-<&xZGCs#76
zr6l9)YH=F>03^zqXmxN5E{wC*VlZ)dt4~K%@49~5$av+ajRGwNT0WW5ci|NYqW37j
z<|17lOwL3^ZvjM2VQ7RN{|!T1=t{>!Z2lk7sLPikIb!O3INiplT0flE)5x?^2&9FC
zGoTU}Rj|$KJc{%I+*wD0W*xa-4j1+Tw-Eeff<5S3_gUDL{$C1H-p<;PTVY^?lJ*gC
zbgsr1$w58R%>0tGjDXa`SogiyJuyXm%r+=L{ny7ZD}aK(j|MnD>u>olz(6<}hzrUa
zVBQwq!;Rt9>+=NDdJVSYx%FD-Op`*C6c8e@f-`h9Old}C0|C3=dAc`{6w!<+g6Zgk
z-&rfF*)Y<_!sF;OW;PLsfsA81U!Onq6$M`~#C(AGbI*qS89zA55-Xf9XZ}FtnLrrn
zpZIs_KuK@@niiHsdsk2M%Nj%Or!Gv3nhKX2$L5Xkm3}8_`b|?6gs=v$+NP9g!eo45
z*=30Ny4e190q#l3lP{D{($V!1FlQ2=;lv@idwx8D*n1afYCGb8@oav6mBtlleU&gP
zEpTHSTNse7a=FD|dLru&R#_x3l`Ig_H)h*f|0QJd9piJ8)&YlTmhkw5HK~KoP3)#F
ztAEbkP2t{JKI%{xs7=^N&GPZx+4)C6IN9g2CLzmO;KkA!!2Q9l>*Vezc<L9$DOc)K
zuMwgG)6|uVa;pVFqhTt03!0E-FMRQ0_Y^v71rMufqWjpFgT|H#mngeCKFOC`+6Y(=
z|5Zn^)#s=|t0kdAb4OI!ferDg<9*{C#{1#g%@A{j-1MJg44kdXOF!p1r04N~5tXE4
zq0To_>N1#GT=515*Y>r=h-F<VKw0j#s*-?plP^7`*u3hNl*#Qn;ekix5J3m#%};ZP
zqe2f+W7GU4(lMlfWFxAX3{>6D1klkx5?y~*Mjw_Sy2u5#daZT`(MmV#q+qpOEy@Gz
zd@MR5%QV9iD5L$rjk&8jwg>(fX`7TR@B6^W6`T!g2%UL!ob`MI2G%*=E<<~#Wvw8K
zq5>cX9+<tzS3hgMFsq$-B*+*9(NbWzkP~}Z92@z9g+EaqpzF~HKuLTx@x+1!u)K30
za&u*x*La2M$)AMqb=F+d)*VsV%0r($4dl^MZoW$z`l7ot6&85OS5R0u9{;X-IVN@V
zWz;>A1uv(Wov6izg8T7;x|Oyfl%>aKHV(vmC1Ce0{v!H)o*F|&bbpO_<VaH-u~07e
zHN@7X8&HJ8H57|@dvGSC&SE+6E{EEjmb(6oOBh7CTv8$FsOy1y+wcu>!cvSekCt<J
zmu|_yb^Y~J6m2VrnhbRRgN=?#+*MF#M>Buz{Ke0GOf4AMUUfJ(XU~f|yEu3+8D{8s
z!*%$%L(MJ@Jnxv-xmYH2cxmE&RUNX?-&kwn4~H@HvQY-aaVS$GxdaY4siRrQwwNgi
z5(PVNT!`Mz#twX@DRkLz#Ex5YSNGZr^d{hVK(j`rfU$-KQcNkZy}}abXVu04@cVk|
z#FIRfh=hYk(_mBmJsz)z5#_9@68G-47o~g>U~+7d@L#ph_9V}T5O^>VU4)_!@H+<k
zP7km%F&RdRr9Fb%bT51}K@HUWNcV{c8P3A%uQDt58+rthrk7fN9eQ!W$xZk%2s0)Y
z8*arN55t4zo1SahR|8`g)Du8GOljZ`Wj<O&ghVp(nJrsr!s$fOkQvI$ds%IPEm}$#
z{C)??qdQc$0jn^uRINiVc5jWz@fIeKglc+zi>c~VE2dhlY-&lsT89}z-_8EL_`ltf
z`N_OXMo_DZ)={bX#r&>J3=m>a%VK;s^9YHD*wgqo6QG#;n=@aqW03YXyR<#Pf`|;~
zSp@X?D2wpg)MRW7lg=VEEX{nkw!k}!caF7z<b7Xt?JIm?IEJ3q2(Tt@G;hI_+o*lS
zrEG68i|5S+Fc-1H8m`AeTR9J~mVc++dCaqK7hxtH+c`lfUiG5Rjx?_VxDJ#THS#85
zKR9BHFnR)c(y;|jQU<N}FdNi#9_pNOO~TR+rsb(0_G7&;(s5;4S5}$iyM*a+(`-NZ
z!)!A;Isg6l?#RMM(4p~5Y4`j)Lruf!QtN3<;ks)6h(W&{VJ=HGZiE!UJKt`R;P!dn
zf9b3PYdw8x_%>?7aOLCKE}_siTyxH}dLs=mwKmF(0WO$02!T3jo_MeK=DGh3?5R&u
zVpeI$#S@5VSK}5&B=`gZ($fPk8K91r9|L<>mu}3uI&6Zfm$6ajU+Iyr(@!xJ^sGG3
z=I6P(WiA+VOPNRCzOq!Go4rN}HZ!)XVSM`*S}0+|%zYQMEdC1v+}qXy=+-@x3rzIU
zZ%jMpKaREW<bx8r4PEB=Ku{84#kKCIpfoSjSXa<_EdR0KML%DsR$fIiW(Nt)l&t>C
z2KuGb)Iw?Iz|_f!IV}C3NF5f+yXgl;X=C`$tow@72=Z%Q1RP7f!>l(h<FPk?ZUaE|
zH}_Ar<K4Rh-$c}H%ee1^bJXg9is}Bz%&QQykQiY!y#5r5!Lo@FOA4|StIPXBdM;{U
zn1BcU<ZZp<9-454u=@|He0K(<sb~ZkL6oS3bGU^sLl;Q2sIWs4J5bJTDwKoUzOEJe
zIiJ>}D7U0%>*sGhPh%1Wu>(#R^0$4n4b*rUmDm{^1FLYJO<e;=ztvKpRNO!8pwqo-
zy!)=ip&N?3D5tl<4op^(vk>+@HGxAf2x?<}pBbt<OLHkSDh2)$Wn=eJ@^alMchGmK
zc~lb){D|be>Hm3UX~3yGswYuzO}K_kNH`cEZamfJz21v-S81{57Bm@TH%Hzk=-k5H
z3s~i}K`$Thu>F_HzqL@d#=_=ymYh8+AMoro#mKz89D_NO@B&-oK{H5P(yH^U$)unH
zd6zEEC#$b8jR(5tWiN~C(jxGgJYiS51UxcG`6?|TX<S$>pQ{O@7=i5#@3E(UhfT~i
zH*KXrv%8?20qU`OZK#g&u*uP=)~uZv6Yf(AO5BDLAfv+)?vn?ZI2*|hmkMKv+ig0I
zL<=Ljr5V6&Pm~Zym}k(HZn$<04;m}6f5}~j%1g#YINk=+Fjv!JNLm#%G#x27@e%25
zFMf<#?C54OE>m(d0v($?SJ3B)?N9^yOojKK`%3lT0_oMa%IYI=)k|E9(GwO{T5g&E
zm`*Ve4&UPZDuhYHG9`=`x3(Wa(;Qqn85qN^$~+%?a{QrUC7MdUs5c(90RjuxJ;Wm!
zxdF@`m}}Kx90<}hm#AkV0i~2E`X{37pbkXDA(y2%<CHswM5=>I?rrlvoN?#(<bh*?
z-eaMx_`&DT(k7+V-2mS0FGN+HheIvvR=!tVl%){=91+f9RL#fs8OhXIFhM50G$2x%
z%lPWO8=#@;JXsdWzzjny$Z((rWDii?1$JH_))J>)hRVIc56xb;=uQY@3udR71yZT`
zv_g!)*F716>iHRZzP90YJ4xogIWltKDwxcW2YCafI*3%7X&J>%&EYi}bN9bRjG{Fw
z{au$URrwLr>>|r=44BhWDGe-Gpmbh3(aqwuMEx-);)%@RMF6{b_2LX}IF|K1>%ZPn
zs|7r*;I=vo)Q5%A%$pA{m~jHofa2wY^>Z58JGzb<nhOGt4FG=)IpRgL4hP^v@#b%x
zj$KQF=G&Z)9G!s=(FR90h23lI&wdgb)8q>_0{D*2r+y2yeTLo<6ZW`tomNOBL{g@E
zx0Ug>sv~s>5@fOD=s8_%wR%#L;aDk%e0ej7N{nr02%+oOlq+>DvP&B%4DLuuO!4Im
z?7WDj!zxnqqQzS#s@%yx5jsF}vW872C2d%tdT_V2kg68(43J)>w%O0`qnKV;nX|NM
z!EbpwxWg!TwQr1_*jN6<z_YEP_Czjj3`$RSm0F{?6gi%9r3Mcq+#E&Kr1F$K*3Zdu
z7f$E@#fc-+_-Iy&xi|qVPa<<WVazT^kaKJ47FbWY{tCb-*^%3eqS{5S@3vnX?4#%)
zlSY_!Jw<6p>NIKit!qt7TwCrQ26Kb!PXsLpMn5N|zZ`EOI0ckE2<l+#&H3ErZLar(
zf*5-t_O{%kuC+wKzPgb1!u*!J?Y#d90%c=x8^V&026Ssi;FUH|#Lsth#0b#nVcR%<
z``V38gb{7steeG?V5d^V+~;7Vy|C)B81EuK{-#G=TmlTwB)FVx<X*x{^QJm`ZRj7H
zVuQ}&*2`!^iXMn(o{XvwtIRhJ`8DK&e>#WH!JTtHY_ri*B_NFDg0<*iuP=Nb)*gJU
zSFe#Zply>_UP|*tN^6|#5NMPWs4COp&ZVj#y5jsD@Jr{SsZG8WmwPN8R78%-LZz8{
zJiU6ubPZeHiw|wjN|alVW+E;KiegQ<JjKeaypy>W|G=P2;PmljSSvgEwH5IzR3652
zV8e@`r(b=+Rbx5pO)`VgYlR5F5?|x<h%uT{Q9f*U)B6gm&fB)C$lWYWA~1t|g71pg
zZ-<V|avH9{kh%JDKxCK~rRie%<?3XfT14oDVUXAG1)hY$?><fm{8pj6h#hcX@uF8I
z@zX#24gRe70GMx`*?cao>!*1T#z?8Zeaib!ttAx$Dv_bQIm@~fx;jtI3He}e0Ayw6
zC|~t(c*agTQwCmye)xz9jd%T4zrzXop9V=~Tx^CNo-dp}dmH=Raua)3rXUuhmG{#a
z*=hW5wQz4P%uC%TpZzR&tb~)zshc-m2O|Y|3}vNltL4;}&YuyWrdN<G`>!C{kM86?
z9*&id&<8>s#sYo6<WI=8br+vL4<mP9ieAlpFbI!>dE7|nL_GfYk`+=dwE!avp_<P2
z(D(HrFrsK5!E2dTp&PKRYwPwif+m7aEdjwnB}?dC>mJMhI_^a8f3n*`157PVU)UqL
zRrV{2yAWD4V~kJi;0Zg^hMWxAj}EtN2^uCKf+28MGMoCuStjhRnO9YZyfjxk-Q>v9
z8MYpk3BfpFYE~rjG;Te&vzOTO8GLb9EQmb!Zda@gH`9v9xX{{g;o~(a;F@~RG3MM)
z2PtVDku#^H*J<Tjuj#1nT=GRfBL$CiR(wg^I9~@c48XU&BC~u!VslGMlQZm}LYf-5
zbyL*S7kaGkV5aWcLlih}FmFV}n8$t7##-)Dv4(&8;vuSJzmn@Xx~R-YqAB|Xe<-v$
zZVbaZF*wYbOsdlFJNDQk>^9rQ$Uin~#5`9F+G)~crcVXiu)7ZckVmwqpgR$)HDCCh
z0Pi}`^+2l4Y_Unv5g)l5t3S~C98!+#WkjTy`+<3wnhVx2nmHuI*ENF_%|j)BmVPuF
zI5ZH~<zM#HJl_FBu+|J0FyW3uT;gb3an<wPb~(G1zTe}l_1&~nA}#pq5F#+rkf^xw
z*Xsm#lOr~Sd0L!g*P$5kvI|$Rd9Y*y%SApDW>WgpOWk!YE3SO5g{7rO)s)HEF$zK9
z>!qr!pkRR(D1WINd=ky!EY;NIMaG|6;Ke)z&LF{OMsH1SCSi#lAN0m=3I4G0rSx%K
z_5Rk=S0$69*^!{Vz~@dp)sk&5Ej6@mg~7gdF-8Rs|J?NnWpfU#?drjfV?-4u#rd32
zXHfOg=Bv)3M>miY7=PKz$&&3_g1JbP`}7Ak1Oep$MvaE)g2kyz%d{RVSbPuN7D~Gm
zfbHkhhw&Sdp$omNdwK8ND=aBPuys3j@n4v$priI$8Fa%k+5zh<e^gETM_lXheX@_B
zx4Jn}`~N&?6ua&rUOSGaw4ko5+eABzyq~Ea=>j9JaPdz;W}^U#X#cH``ujW_XYbWM
z)koRA9=;E5i;LqrC>N8f%-zu!4!uz=a<=GuS}ek&9LoL;=e_3GUG)f5bbb}ydUp9;
zrj^e{l#;z(Vt>r&+EK%{7PRYX#EF#TTK=Re3EU8ciSn2z_UP5gF?VB`4o&tN|6wh7
zTNP5)t^C1rrBj*u&y*I@XFxtp`a2GgKPq9)9lY442hr0A<G8W&?%e{CNN)Jn|EX^)
z*N_lzrJgfGti2hjjl);i3mstB%I<8woNDtY*r}gtKRF^C7{95C81<Vn1?F!$y{(;N
zAdzghGoiMxoC&P}BW~R62TvvX?5fGpuBk>xA%U67*<*2V<{4AUIU>^HE4hwkCp3a)
z33-su;Ekb-!+=e0z*B8^<o13A_89UbDtQ9Few-of5Eo&eYL<-9Jls@xrJ~jf|J%l!
zBKR_7_d05N{Wbeaj8q1hqwYC5HMxNG<%Ll$8S&64=50zTWViOh-3Kdf%GjJK+FR3O
zpSqO#<c+p@w&$BO2+D4j^MMPH#i@a}ZacdaJ6!g#oHV&*k$sWn?9_UgKrsm&(WuEX
zfUBdfOv}}*;%XMhKW?*$((U5qKd%8<WfM?C@eKwc6`>ScV+j~-Z_q}SR(#PJ%Z~fj
zw9td2%DL-n!pKlY6~9<}Se**9G3&0n$U4ocKIFEO=_XUs*8d6;DC7n>*Si8c#BM`r
zF{J^|74Al3<{P#yh;^ER{r-u?<rW&btALvJyzHVJXw;_Ub`clO*?5)7&E`0+%a(*A
zJ=^;R?&DapuQF;8gEY&&!`6t+v+}|2FP?`D7W);2lF*Kq3$ysT@OW^&5c_1fS}lsc
z3&bhOsJ%EqcPpCWI<!|729PF2yQF=JET3XiK>iqMwPnGu>Mc6xN~eeQw77v_zh_vT
z*dk4-C18c?RfBGG$kZpT!T$2%Q!rK-Kh58Yq2@M`LL7=2Ttj|*{a6BNdV1v!Y>HUf
zc2W6H>z}4NamJX-V|f~gm;0P(F%G`wA@{USUHW@Gn>|`Np$*d`6W5=FYEcMA2S6PU
zzLea1_YCu~N$}prsq&>RLAu$Hgf`-IsRW`Ge|j_<M&lw57WZ`c7j#?3wWOQPO|M|3
zB!8IE%-Vd({?udFksr9Wd!3Ni<V;8Ghq&hQnO=6iOnEDO*ObLY0A;xCv^vo%0#wie
zE~45AX=cNpcfkwCJ;aG_+oOoLmGC0Tcta6yhfvSM=?#Xrrb(8Q!DGwt=L!N2DqnN~
z=h>|dC|*4?A{U?%E^?DnBr~D_L+qb40u2k^rkc_+UNZDjkIgPZzYglZ5QI$IfrtUV
zK$uU4(g$NcukB|p0@8kg8JXm#Wa$xozFrrsC0WkLRRo4?X0)E+HSz^<UJbm`hyi{S
z?4EK-FQAcOy=$j^RPqvgSR6pI{BqNS42nZipMvQhQydjY=}7VUewK2>iP6LYIpx0-
z`x2$rQ>ctL2OOoplv~;*A4GylgD?esRX!D;|8!Wz`Q9J$K}|7guNN`+7+n+}=o(Db
z<Qt$&)j`7G+*_uaADemFfRKA=u8AOsM66Q_+Q%W9vF(J1V}`euYm5L)_t$(jRvnRH
zQs$_Da1t4i9Gj!$oBrbQeets3pi@1}1xfNbJmGgVR*j}=%_a+|P4g%{GhlJ}msfY<
zaF`tC*grt$rXg}*yE(q2wnJL|Ecw_7FW2bT#fBTXr*j6L6#En^S@H+6WRdg(c3dv@
zIJl&&gjB09&q(3bfJ2We7r8D}j`UOQdiDsbuiz9Mf0aZIp}rfWncwF8T@tF?lCa)l
zWX68w3QFeyS^bixjYU#JmF4esHa<r@MT`|^@MEClf!mzs0^l!34&i%mRH<c)Pyj?g
zyT9DK*DCgm2F8f%awDTveI+chXvm4rhZzjKbsQ-s4VjRoyP6}2`Ij&**e(%It^~ru
zT`yKwJcBlQcIY69i$v@j%B{SHvNrAcdlto~NVIR}Ngq#yfAK}DPtO`(iuN#ukH=v{
zjo*p{-0yF$epb=|!b@eb9^@eNG_79k?a|^S&<;+TjC6CW3Ei^mOvCqY#{q|aiOdxV
zRX0ihPPh@>0N29Y+8k`Idl->VOOft<Oo(Mda&iEKqr^;4!!+qCG%R;mPhvSqH=j>S
z^LMoWat{NUGnXxr%^G)_l@)J4)05s6{4Tj$J0PE<8q6Z^cO95_5CR_%T|>@Ds6o1h
z3;hc$?K5kVboVWBpGUiyB;U<U#)zXP2u%b@l)b10ud8WL+;EVMpW<<sH-Pq_h?N4(
z1n0peNEydqHj6yNu^peFQd^UeW7TV<c9w4jw(!RP_L>6~oE|uoBS@zzwdwF!ZM2sE
z-TCw(@cyCZXy$im{Kk&?0nx5qLH-*r(xP-}Lv!FYDw{z&$$uS-z$_l^dA@Hq>_1=@
zG86Yth=NTlw@=A$sGgK^_te7ud~b^NzW&@_Kt9|MSSPi?*7nZ300Ltb3%ek3Lu0U|
zNV4i|;b(~TJVjXwyyb+Z;s$P{4D6r|6OPZ}ajIM<(U-{gq^Ori7OEkNz6}mPtbR%^
zaaw@{&gY+a+%v5hNWRECYC+a+L<5lOO`JKi5h)buVVUnkn08Ja`-C-`fDBo5el3Ra
z?aZX{;dyvS$9qTw#g9O6e^K`ba4a*c9HY=BK4;aVhXM@a>s$ydux}3QRRfc;YMqOu
zqFY6dtGIp(kyq;;ArRpO0}LM-_Wjnq#&7U%s1&@f!eAYt<z+J!3GjTLd^yzLTR0>G
z0Ip$QX0v*Ga+y9Y88i8QtC3#M3Eki=YK^s{(HtB@@#^r!%@AeV_sQzn)T}Zy#@SK$
zr95uMcNf*A)Jxgz5Pf>@=m0-qmG{~F9nf0c*1QJ;N3)~G|9d!mkB$~!R_&tEk_U<A
zQDx72TJN<ejt>tjN(=R!t9hoe)J~b|+-e25KuoQx^Ean-J&^Q1_`Aa5WrAEBFW99W
ztdZTTJ<QTE)GFDwA>18&ks0e>LJsircjKC*5pyYOuk5b4GYd~mmegGla3{BOJOuiE
z>0I&wIpkjG8Uu6sLvN|lAyaON9J(C=dI|;sm8Ap|T4!zYZE2ZB)45%L!P}bYRq84`
z7#$>-={h?|sXanY1PNeUl5Wn)8I)Rd=1(m8W{YWXsFEA~g#4oyAJzXO?niStvXIod
z0x2|=v+$JPa%f@{%bZ&PnzAo6pe029qQEDQS5#qi_#y3T%RKz#ssXA5>YQ|EEs|B~
zb{!~>h+u<^Ei8bRO2v#nl;#|%>Q$7*Gj_HYxPQ4C)VUZWq)>U5W|r;{Y{4qXQ~z1)
zY<vgK>6i_OQ8!*}o~K)i2q5?_4;llL;a^(cW_OnI?~Ld|D3|U~;u`&*-!PDJeLH3C
zJRufioFj_QpUZ60ODP-3hIbQ9sln8$xw-e~G28y&18J|OMl3%(G}3AK{>aoO@r24=
z;YCg=lH1|CZya3RwUz%mkoznF@)==(lN|$o5cM$=72M$N7kcyN4KpXyZTODH4U}S6
zQ_;{ss0VoZjLb=Z(LQCMKQ^PaCl+rR$8c><ndJuwoJm5C9eBG5sC#12n&p6RUN6;P
z<4kWIyv#^etBfjx3X_|2v#pF){<s^=fF6KSO?8#kFZ}IlmBzRviyE4BWhz=rxmQr1
z%cDJiR6F!dut$m=iNOJW8dG8{N9NAw)vxhE4b&-FOb!mkToKDnMR)z&%vGfa1_lf;
zy@L;00bFCjb&0Z{a{G8{B>6f^Dj@%FvVWuRzJErR1V}EYy$Df3b_u3!!T(ifBsm$k
zwx=Txf(uKh`yy+0(Jj6HguhmI7>(d(hPs+6EH>@rKEu*f6&-s)T7lA3FNi}a8RiNz
zs6Srvo*F&J+_Wu9IszI#_g;Ap9%s1`Yn0G;5BLo|J4VmvqH1_lcj^KGnN^U40QBG}
zuVQObw{P-fiepBZ!(>E4>w<}9aI9{4xU_HWj0fG*<B_oN*DIl#oR+>qp0B*57-ZP@
zH+3F;a<8-(zSlzCgWnSDoiHz@>f)vhvqiSuWRAAL;<jUl%K+rzWm-5%)dR&#w(-($
z#N&Ve2zY82il+w&jBD&P&n#D`_-2C<l)&-Rkok1^(C7s4V9L)>2*PP_3%c<O=E%sk
zg>b7&#Oa&b9f3ZwE<`04r32icQ&k2p*ul!S${RcY&yZH+yv#KBh>oKdoB`Xw+I;KB
zGQ(BIQVMykBI8xs9{Hg>nw35-h9J0NHH(x)DaXRk`M{6ZF&wfHN-_d17_m)`dC6rh
zB%X`A<WDaiR<7;9a{TfxVHjPFr)YWZODUYFie#o79wi(l2G3S~!E~MB*{O6GDoD<G
z0Ro1<8=b}GDxN>C=!i++RR{L*4PtzR?$L(iB0Zc@Cq_1r`9>8gu4PYSdMOd<Mw^t=
zoHLkeF&e7}wKu>XGDffX%d-`Aean%^9x33&iT1KcG8FWU%#j(0Xd)d@Si9zgDl((;
zRW(i_Kd;o?f%ly^QML1K2GBK~VWSP`?VQ~949}yf^$lVN;|yC*4Y>fv*^eIFPMXJ#
z@NfTup~u!u0fn|1#|QGeNB=uNr+J4hEbY6@77!FvK%9E7VSH-IOz7^E4qOv1r)3@R
zWid!Ya8HlXb_XLg*w@gHA-<uV$G_s5v-XaS1$h!GS7-#q0}ASWuKO?rojhezPo*2?
zB+C}522YMa=YSH=)wO_&ID6&ItIGsEz)zJX0VmwXEGZo{rpI#te4>emF5e{^k$XCw
zC_JrS*7k<{#1sktS$6z_o`+N&!v*Z>srzuU`HC?3)WCZ-T=Qn9V!S_Ce*q737Yckr
zP%P@mec|d)l?0WAN(rG4%ynIo7y#<T04MFwL9?fY%jPBeVJ|E@W}MK<Do3*rMjJIE
zIr`gEdYJ=d&GGL<zq{~;LHQE(_>eO4l8>5@>(<dw%9l2x+gu4_1%11a%e#u-)m}Ks
zn8zpWA89-ve1WkK)FY!C2HW0z>C13D)!GXo87{TNty#i3b*G-cxJ`weQUar0k0THt
zrEX>BX6@&#of~1jPLe2)b^;WyM+W=KK<d6K5b7D@Gz$Fp5sU=~B^$naI{CL|?juN-
zsLL~7fI8!$(6`>6!@j!s8xdmHAFbU2$gi>(bqkw(qqPJN8l%-9m=PYQqO3u#ulY3Z
zIy&;eWhgBouJ}yjF~Th;3|22x;DByhkrMh4{bK%xNSK*2-c-24M*jH!lxCPv(cZr<
z1)-(CH)h+S9gULTL*jObkg9e$C;qQ+%u0shPhnobm-8EmNX@Oel=ba&UcqfE6;k)V
z&<g+2*RlYfp*D&{W)**;Hxet!dvVg%y6r)KY}I*{y9CDD_Q?W@u58;etVSS6F<wn5
zklNa^FWRzti+>1x9(lois{BO5vleKBIQH8Q#+cgQ8wrryuG_Ea;qyB8F)XF$S(<_W
zLSd-{@k&aN!?!E4CnN~EcT%4Uc=4X9(Z-fADg*rgS8%Q{5mhDT#Cf>%d9)8zND41r
z<0--~T1#ng9Q8_n%qtg*M@Y*|fT^^j6wA5r?S1(ti8e^N^=%6tXuB7&is7gz)Z57j
z?0imQN?Y4=tJCQHS9LnID4&PlJM;T;k@!>~mPE9?g2rq0+E;cNJs#vaBof(i7{!ww
zyCO%K+sTFbHR53^&YLQXamb0R`c7Vfj!WCOAO<qfw(S@1zLH;AijO~n*?x*^<kIjy
zN=0&%4dKL5ACI;QODH<oP~pQ<@-<olpkXo3N00c^7Fhtqm|WdxFcfEtioLu@X6#ls
z7{N90SXa$u|2<sUx3n!ivboX0F@Y#`+O2~&!H^EY{`Ja7lNf6&lL(oL@XXhn4?++i
zz)$Q9o@Ptd9=G%?QjhX>i$nYx!pjrsy`D9jx45;KVM@ja1S`GcX?QyYS*-t4*)aYP
zgSfh`G$JFZMZ<)NBoc9xy)yB45(0YTYlPI!bjhgP$m}Uz-63~qt3x6czN)Y);Oq&Z
zyhKyv?85^3Q?s(%s>d6V4HK#|Y@j(QeYM~*3rXf+Rdu?Gwie*uxbwMPZ-@}V(|-io
z;!-9WI4;-<?=&U~3+TVVl<dKpluYM^c8H4CDA5>R0Tir|JNrXr5i~O<N`o-iqxR`8
zTpR8dm6GQiioPIs8c4MrS?IG|a4TW%ETFs09?D)6xW0;3|Ab5gkOD)PvN=(-OrUD5
z8Y5{OVc%V3Xl47rtSj$iju~U=-l5itHvJ!P=w@Cn{2M{jpv+FQhVEqggyLxY9J#3{
zrs$A%dPQ?;khywnq1a@Rl*!Qcu&ifFAF}ZYrFm!018sgr{S*i1GgFtm5TpU_;gH%5
zCsC+}VXBpa$H^6AC)}4BT$8E8fiHt18~J+(usDrCZyssBO&7|T;Xz*n^#$JY+7I|%
z`Egx(B8n=HPM_{hx~F@d&^|Hff?`92i3kx08DpcqsO(sRT($DkDG@Bv?v4vAM8w?_
z^Mg#J_X5y}P05WB*N}1<u^zC|NH{6-6D8mk%5QW~R@+?Kqkwf($T|KnbIR}oN1rd)
z2{eptq2_!)a$M!bK;*X^(!Npvo{)84palmO8q#qt>Jz4<a#K5^>#o82Ado`w4K~jD
zeA6fvKMF?)gP>~|2K23qDy7{2;koL;@N1+d^5rLqUu-`ZEXC97NTGaaq0Mv)5K*tn
z7yCP}o#{>hP!BXk1Y;L}ucqb^aVUEY3Gho+LT-(wn)Q8akO|i75xMJMeHb!Znjum*
z7tRjSxMC4UNqHj)?hO;GNiaKGUuF@5wAO^Y{0Bc}H45S_r5n4}`;z1;Lk^1nL){m}
zA!EfjrU&QAZ#c#4u$?VJ`FjUT>T){L1hL~-JKI$TY_nDS;axAX&00`Rdk&goAJnwU
z!G+dbyyzGJ3*hGSMHZ}xF0&)JCze@R2PisQL%5I)1(_@0SN;gKLE(sWoI3xO3ec)E
z17~Or5e`<{(zQq+GiV2dHL)M80@DeRK{)Tca$KQT&TEM63lx1}bY{NTH(n#PGntrE
zy`N?wfEn*^-2cf|Pt>%RL|lFp(|niJRLtl8TeE@51OptDR6T0&Uk`3Jng!R@>59sn
zb5j#!7jb-$O_PB?e#+*EH6~tshU%T-p<kXkq*86&iT>%WoOT9{1TGTNRSwAGnS5_P
zv=RI<W63+tNChUK=To{8(R2v1E4Z@9_R|m18xRuODhJdO8W+m=OarHhl>YFa&if>M
zz&$ABNECLKb2vc?Hl26?>GEzjC1Vl#e|qT6AMSXlquG&wk!`vNhXRadED3`}q2!}8
zFpvv$qfO?YqeAR|`+^00JZ6udU(5qYI^y9HSkxo(&QT`J)#Ob?_XV*HPd%1TU%<c8
z>;><2(J+bdAla3-Vu_IL(JlomIst$uvV4pZ*ekrC2=<HabJ(06a+hIMN}ANqCwrJ|
z`04V-;ko0?Z`u+5;8G!XE^XJO%>>JC05EozEn7-~MFK$^E7FSa4su2ESzT4G_DR3D
zcJxr;Y8i-y@^4V9N+l!jRs3bbDV7;b1v-A^oSv(gZXi?jmGaF|r8M`m-nJ#rN9<&j
zqP$MmV~C`dH$(=_pD53~(&-m~fH~w`&dfW4i=AuT1qbQjY_`ACNKj;>1>vF{r}7RL
z$R)PkK{hD2x)Do5S`i)5-Uw%;4R_-7dTh5#?Cka~I12~PHZo6E)pEn18r7(eXf<Tk
zAY4ssYGf`{0{=c-&Rmnl@s1jX&`s}NZ4W|2jMEtOc^(8~?-L&^zE(yh_Jfb;WrtLh
zWu91k##{A)wyoB3LscH-&8CK1R_bY{AH1nvP6(-~NlibsfLL&)j1!4XE`zG7<RDzt
zvTbqp;r`s)C(}~MYd@9nls1uXa7Exj?Z!-i0G-+xbn)b}*^B-_N96`8N(00`w;;5}
z5dZ@A;!pJ!eZX>xC!<GX8z*%2jWAh+ow@~aaoM?J9l><#Tw%=^34bkpvv#QyR~cyb
zbXj#H9va(9`c0I=lmy%Gu#cB8w4|=`aF=8qfHpx@vl-FANEJ(SwJpY~)MOR@S5`h1
z7E*lyzv7L!xUfm%%Jiksh=MUxlAsCI!Q7)C`6p)4&4Ul{=gi*|SSru-wVD-ZWxX0$
zdxNGgrp3rI3_vDzPhjW0Y1Zf2y5W&Uw4y%H-p_fwzTU`nHH8gc3AlAh9yC@0-RV`N
zyLoAb@)kn13lY^LUc7t=%Je;nj@MPWT~F^e@vo%NfO7ppuW-EhdbL>e8<mU@&l$SM
zLX8TOksqencz2Le{sZ241GuD0z13Gxpo~}o_DtUNj*K-F0kf6wn!ZPym*$|D&+Rv)
z5<M%=e8sS)0h>*SGFOU0z7vqOUEZ=RZ-27iQgWOm6qV`kXoov=wW^azp(~X%Zw=@j
zzaS^t6=bC+-B02b<4tVEH7aJGx<g7t$7_0dgcVaB3_$mU|4E1aWqfAVC1r9?#;g0g
zF++b-@MGOqYv(*ewv`A|q-$itcjWuf?bd;GGQb`>t2Gs+n4#@7_bw0mjJ(prm!tP-
z107GH?S7#676|{rQ@Q$~x00Pb&#x?EqU8+o<bvMy%;%z^vfxFmO<nuH=8AIh0z^!V
z3)^g>c{_J*g|kmDX8kxhE@pxGx~^duM^u)c&YRkVnd@x`Na4=ad6`@r$5#5lRC-w4
z4Isblfh*Kg=iUX$xC(P!*u+!F4x<SY`Wey9XT(mDc3iF~M`jc{N@M=h4B^4+ZtV@M
z3kO*$4{K|GI?se?Lm=&SU;K|gwb2*S!w#j*tXQz32)dgv1ipeKh9t5qT(jiO1k^MC
zJL{a|AXHFQj9qAph-z;L@>Ge@br*pt^uQ)vqVQxc8gsm#mPj`4#p{&Gqio82&<)*v
zzF%avL7!vpT5y`e?xpW)aD(gis0B5=Lfw4xC9rgYxBwtNgr(EmJNSZk#6`}p${_mR
z`6-Y_=_JR={PRwPCn%Q<ZyC1aoT0+e)Tct)YR8VkG_?XOA;P{@bpEP`%UA5fGc0@U
zp-Xjj)v~uwKc<&x`uD$0_Ob|-f=<$3VE9n9UA)56G(fh?fZEUv)JPkFlriQp*!|kS
zk={9z8XuyLSdI?X)~<|D6x_FoB(N_03yZ_H-nw0Z&+VP2LV4H?q}qj37fBt=y;-#%
z*K;tndMzQ={e3LB9wio-FWdL*q={L;?Jeq!>6t^2J?<}h^1C7$?s3-DPhVk~K8#v2
zspJh;2sJJlK;`qAzfOHNPfV{(Ze+>72j0C|uUa9})SzUnLuCXpmW|p5?;6Y|+_eT!
zc$fUcG86sG)B&VGWbU#t?*ok%&2|jPJ1M5F^SJa)hywH;`@6<HzQ|Jwg(^t*CF}9u
zSo^Ts9*(8ue$<70rU6Q^?ATxQ&71+?NW7ZF&*?7nK`HIxjgXGdH=P{A_dkuHzOKA%
zz-7-1tO(dtA9?rtR0?W^tJ{j1&BLs{fN5-F=#Wbq{Fn`Ka$Rij<$dXX`2}usqoPk&
z&tFMw=y`n3r6J}aLPL!wR;{i$vRV>~#~)`uy`UQwczjtQ+1PE3jD}N48501mRSuq<
zW*sfJa-CTsW~BHo6+k4>9zLDz=YceUt(_0_=$4*Ed(dxTE==<|L?r!RTa036JD5>E
z4JZr$i}u8xj<R6P0@z^&_TLQ>dTew)Hs7cM^H{=G?RAatvIXEFC-aQ9py2-Ykyi%U
zbl{aJ`be<GL=?Pu-G3XA&@~9rD)`AQSC7lv-1F+2;L`Mf^hwkP<OWkU{umVs2L6c&
z2np5SZkZeFynt!dbT)W#XZx!EHZ0M$=!?VOxPHYrXXk*AKk2#!kNvX!>E9r66~|>7
z3O^GtYZ50#hVSZVhRkC!(+}+8tkM#i{l<!(N5@mMDt;<jk#Mk2v$JPbQpTx7pC7cm
zLyV?VTCtXHs_*J>ZlhS`aoPoF(}|)WQ=`7o@z}|=&q2G-?z2}32p~7nq(lC5@+=rH
zoNo=W;QYz<gjQ8;;F<f+#QEW?mwb`|9X|{&52*-pcms3(5ft<5P&wSht6)8+JfJW?
zRRvABKxoo2?&6q{vRy!$y?$EcS-zaDq&s#aV<uECkTiuUb<R$#phG`<d9O2C@Q@u8
z9eL6IQ&D`!$r*{(GW@R`HAtu!UprG~+B1zHY(Aic+B3(lYn}2XUN{m^X6m32NWy+b
zmzphNHUHP`{M!+i8|a={leicwueaiHp!SEIcI#uBtEt=8@WwFrlSp43ME7V*@cUw2
z^XEAZN>-Ga+;8N=YIo6Chx&t}0bikbp-Fs~BAy=x+V~JM<oAJD`IbS^$EpWWO}%0S
zmxp4LU*QcSEWLG7=kKF{+I)vrTkk_pc1z8?caBs`BtQ#~7(K?l(m9G2y1DGHcA#I2
zueKZ2FQ)eSkd8rmS<yiyss%rqmqkQ3edL<k9|ko=!bX<)39PlmG7-G!{5GgcOz|#q
zh;6vkZs`^(#zgHuRsCg^1!iV=t09;T+d8_Xyr;@Y!S&3>X<ZL;%8vtx7XxR|?FV;U
z5_d}8xljFxcVcn(;1UK)k0pefLb_nhTA&&~=eig^XPv4>99XHIFPGcR%1Y;j210;q
zvYxm$gNy>$0GULzOwhbCr44s$<5?peZ<*S)eC)-Qx3*C8`#V!I$L9FnFyBLq1|25m
zY7c23fvI}v&nKKa5Htg8<a~gFab-6UT=)154(!2~&v~FqSWYk~cu-RRhm@lWZBJ;@
zvt!P37@#WbwGawal2^Vc$V>QmpIH;A>2?pK?#gC%8q+gr%#qtOXg^*Icm|YrCostn
zM%=hsP8`G1?MB8_jG{p3t-W=8>eQx>9lR@uEH6E4Rr5<}lGc_J!&@A88WD}xEOQh>
zM&qbt#1fUDL!K0_PuLpK1kgn3p!H!X^oX(uO_KDBq%>2TQdLsuOe6_57cj`El-q)m
z@2~_Io>_<3)m50U)-fpA+)Qy!lCuvpxfYQ^37M~&YB=|oUh!h$@g}h$bSnsDUtzIj
z)<Y`$VKI4(QM^Ws$7~^f^jEO-LIt<TxN9w^Z6E3gqEPHXZxz1ABjA|617lgA=?Yi1
z9yD3TuPGQmO`6J}3RV+k*^@!q<Clh$X&uU<dW8w!bd!2WES{d>7M;JMzMoy#0!HBh
z6=}^f%LwZ|`x4q%(xdW6)+x6V&Omr(S*W=gIBraJ<UVJ>83$1P61*6j&Y01f&sHmD
z;(|9{wLZbP(6IkW&MYUi<D-**rV?TU(XX2VNPVii;$p)fp8!960a{d+2BC2#e78aB
zcYD!L6nl{usFG}T?#4!w6d@of&D9dK#vb_O5FHbkGA!7mROsE@EnLy_K?3q+B2OE>
z0*V%Sk<W^-LUQZ|e4O6E>7?qprLzfcy89eX{z9Ru_?B=juq%S41x&TL`cm-Ndhz9T
zI_$@3Bo(+sY4S3jz-XUC-AOc-l?vFwl}`>ycA9{dP8>~h<$p+#i^tou?nZz_+dI1K
zZ{kumUiZ9kj5aV%N1h<c>Y1q!`tHqt+LGapmSa7#bKCM6;Tptr6i+*VHl+~seRZ$+
zDXvgQBxDO$6FpM&bSpUyX7ymrF4EfxtC(i}4X#~jQ_Gx7Tw<nM>=MWd6Am^YO{B{C
z&7iGBfJj>;$Wdh>J2=#iK59ClFJs%KEs#dCn7b>T?xfxG@)>snDJmsSw+P)ANBKQY
zRc-weo?QNrIE?ObjroiXT&+;xQ3(G@BBz99%lTEG30EAcO-zVZ-bW$9jnrb3TdV^C
z3%I|ahWz}S(~PW#jCNp2S^g@JT~LR}Yls$!JKuDQ4M!ec(s(J1RO4Y_`VI@&D^g6<
z&+9bb0`3MV7jzGUt<0$R&#;si!N_YPYiE3F;vM<o{B-^&jIIOB2JjJMB6nYPjV^B-
z(q{zwQPjyJG<orZt5Jpsr)U{{q$Ty0os1Mn*SHPOY<Z|<IWIOqQ86)0kP~@itptiz
z^a(NL(X5q&XPsYUnOryiz~*k-c}wTT^$DEmMd3+!RfV<Mdu2p;Mjv`NmP4%c@hdh7
z1F{bQ{^a`;$Zve~UpOwOj68#sZ4Py~DPqV%Gom`AqaLDYE=5a(IdeO)NGtLjUR+;C
zb)9gigSU;;$6*k>Z0PA<vwU2ECgaZp!j|46_=r|A)5sWZGq;8fUw!?EK>KG=J(}V(
zySZ@NIc8v7n#)IbockA?q(<^llbR=@$tZh%)G~?pYp%ZXG*B=ZIs_7G$d=cp3rt-e
z_%yErzPNPU;V*fR>_e~gz*gJ;`!T^FU<UY(pLg2+spb>&$nokIhh?oom*{AGtl-=j
z6-W$h3us6@^DB1w@K@9gGd7ZvUgc0p8!qYxaao`39)g`*^2K3qXa1Q3(6mjgPcP#?
zE!htO43tK3!JD3jP*ql@@biNVF!iK<nNiLYfwN_M05euDAjGxr=SKX-TGM(#eF|>L
zb)j%hR9WBW%T}e9+otLdQMGPNrrf)9&KK`A-}?+SdI|w%IlS(@lVQVTZ3v3u)%I96
zI~Jwk>>1FFRHUSWI0%D_ThkGXCEksA3WVG|HDAjPxn|g`0n0bYb-h3j(YD0wN!~^J
z7ARY~+GGNfAw7Tk6P-7V?`?Rc(l4RPPj3aK{>8j`%Bj=7wXD2lw@8oSM}%dzSL9}~
zz46jnr$UGok%>{nR?txth3+ikUd-c^XlX#?tD3UJ?^g5@rKd2SOUEh}h9lm3f0i<V
zP$Em)DXW(SSkl2>?v)(E?RSr4O;Qu;#CJU)yW2|FH?y_D1UeL5sDj7~pX&1=CrfL>
z7n}Kc7!Jgo9C0o%5Sgytv9iG?$8Sm1@ztNV5jwr88pZD2iX1<*_uLPl9;+#TlJb*T
zt0yCZwF99_B{?uaq3O{MivkgV;SBj==Dr<R+)k4XS3|f~Rf3T<6#3*8U7qi91kQ&E
zXLQE?)rqRrSjGryKS}aFzodr}SlFKr+N=<r(5_mUJ_r}d*Y02W@ADv!S3Z%B-}|9R
zje&tA)-F;Jt(!XHJJM?(@XE5GE?B;$A&<aUka=IjNu=wZrKGITZy;zQA?e#mR9=sy
ziu*b%{GIC02QT)#=kNSrS<UxCXGEH0p>7GBFuV}9@*or?Fh%Op*}bmQdY$4`q$Ish
zmtto*&)njpfUPr2D*U~Za0NA4T}R%ibq6=nbp1_W+j%VbhPq_Ht-u4FHFluGAeP4n
zD4N>Y0fxyJ8W1wgMbPxzFgM;0)PoI^jL5gvb_mL<@%DR+R(+j5mY_AsF>#L1-0lvm
z%_O^rzLla4*p&7hZ83tO-N3~Hv3=36S~IF7v9>o4;Xq_52_OXXA%Wi!h!I3cSKf<!
zSI;IOa16S+r2#eMSrc^j`~$1%`yA1hRuvt+`lG8NzBR4j2_n?ju7EFzyoT$Y9ju3n
zF;9i16gCU3M1oHV!#C@Q7MB?WX1n`TY#cc#^>;vk#f81Jc_*yP0X7mZT*Fu~v07$9
zF=1hP@L&LnG@Hnm)J@UgGV~CtBaAEU{ue+UP-c@YL2CVD>T)J-Qq&^!=aqY6)&SdC
z6{#SyiEe_rQ7-v|W?RB0Vmm8{iLj_$s5+jZNRPR$SX*G4+S06ERxi$SV2I!Sg)57K
z`92n0X|^_%SnxVgEpqSQN8B?%5@}qB*)r@rd0U3KmeHVl39cee=FCuLy37Y(nZVQ|
zsZJI1zLsnnv%0M<lN+;E*l~ZE>#0mZ+a2V%e0pt)O0WF6$g6r+4*jVqWg#TM;QnK+
zb~^M)WSvV`j`jRNhT{hWGl$lZiEQNpl&@|$H_?OylN-Hw!2D@Y{Gh8y4})=O6UvY3
zaqre@1Ky%wtCiIgf_BG4k6&Z1cO6W0`oUVvDWrg@b?lc^S79~$dOo$I)$0h7b>5bA
zz7n}Mz*XFRaW<r7Z%=B!e*1b)zqprScE#JCPj<PN5%u{Rfe!P5Zm9EI(?WVp<JgV)
zj%daPIDthJ7G-KbN6L4Y#BLAS9SG?1xOo!#fw!k#NZ#CnTtkB3m>{1?2|>_`fH0Qo
zusx<heUd_)$tJxFWy@hAii}YS<Gr#5Nl(B0i$wy>BxL9!LkH#Q_hll)O#>P7^vA?K
zs<M&xU&`jcsPei!XM<k??GE&w7df~(gQr_DVRIKL#w=x?9z=DOYC6Id+nfJ32LvFP
zKZZq<>}Pwk11qc&*}Z*LU8c&+JeY1Hxb$jwxY^$@>U~BLi9D^d#`+tX%GcdnXzM=&
zM%uT-TiHo_`@itd*;RoNx>?u{+FT`{EQ<sCeFoS=SDT_*E;x!dq;t5BTO^XTX)ML?
zt?C%Zt24>n5huXo^As*vi8m3gK{Y-mP;;HxvlJxI8Ezlt5F(g3Vc=9fEo1)dG}Bac
zYNBgkWa>ezbZCR;?3V0q?2#}=wjdFEMs{q5Hy5QNpVR@0lPK^}{b@JD;89ao%!b!!
z%K21R#0~-TST*h)Fj-Z(!J745%chy&i%mTdZPuhyI2LZqErUAnHcJvyHwWUk9MTc1
zW2)s`JAd1)y%Mx&;3uR#OX!aq3*1tuPL>k}j%ej)qgb0dV|?Nus)loWW{Y3$RH7ZK
zv}R!!Hami8<I69vDyYSt#i4laG<+eJi^&Y87BfVpLg--`aNIzWvE>K5R<cb2I|Ys6
z6~eh0wehYo#&Bi;``_LXRSi9v`I&Tvr>~5PzdL>+QhRvujItqxDjSLhPcGTC+zH`q
zqjS<cq@xPu@G|rz-%;Dgmw4c*W7Rzf<H1n59Mz^4I(NYCZineKf<iwFa@#L;wA=^c
z$~2>R^c&+caaq?*wP}uaYP3EFKmVdY2KbpI1ZC+?>67^(NBpm$ha8A->RO#1v0RC-
z;Hyz)SIslqB!R!DP44I=Y`4i$kQnW0e-c7kV5`VyiBvTuPco#x<@xRx8F4`ayvOfj
zZyg~%bNzhaO~vOkyLVRqVmv#%f+Z9VV0s+;j2DBqPxaN|%6hn9?yNNmL>TW88H0BQ
zi2Wwd8+7Tzjj8x`dqkac-ZB^Q-TS|NK3L9G`57>}kq^@#F&08#(;tbO88JQ~_DNf?
ztT96`%CE~+Lq+LaH(8#*Ae?D3=gWd$ZqrIf%Poi2AwFL)4E1+QmC6pTuVvC8h;nkn
zZ-Ng0+LS*7|5_Y)L!oigf%D^(!y5JrOe0O3gvl7{4JJT%Ybb7HX5n_eGFLl|Y&m$a
zJ%WN^qGI#fNtQ>R1=Q;c;*pb|K2o0Lz8nk_F<lpO3;7^HZh)qUhH#}NSA<f18kmSf
zC-Gp~q`rGhBh$j(LPQYac}|hcWD>;c82iR#FHsUg+sQ5W2Tc%?G{e=kb@6~d^$R3o
zE-6|TT9$xJ6EmD7i<gAhp2--AJgu?S1|rc;G+Wnfv%BdYl$jBfS_)<T$yhW0{#59S
z+dY6TBf50fIJh2uN>Sgp_;eQuKT~OE`Fbb*MQve{nxPREX3RpufbD5J)?1mt(@?Cl
zP$(j>{&}Kg2{P{C4gBefiN`|&3q90ENSLVFoCVNxa86M=1Sj;eLm*Sy+@ZcSJGXYB
zH{t*4_e3^DHfeJl(QQ32RE?i;cc11HA1~OF%PX^qxwL+WwLtezvf}@MHy>M5pE;#~
z@Afh$=Qf=@{d=$75MN7euR%698SYE0Y(FZffxdK+8m|Pci*vNic>`dln+mT{PRMgf
zI`5cButhVznk;2Fw2WPPcPalK#637l-_~7rs=PT}9fd*#NuhFnWp?JN@@*$dhw7nn
zpVl!!?)il787IXF3?+g&69l;&LJ0TmXd}_Pqc95#qmo%W1jSGtGxWCS??Y4;%+ewG
zN8tnoZXG#Eg7RL{x(eoU)qKt_=YS8!k7mKL&r(a;z4?A0qaLPK^i~CR5QJ5Efu*px
zld-A9l`+RPen&r^mTjB$g0=MQUj@-4T)63mOK9~^7G-#Zndus{Bf22n3ZjFvD64}K
zR#3WWn0)V&yb*9D?CL-1y0{XM#h7b2*KS||LsN1~fC_JGZ@~W(#*%A`&+b4D9_GPq
z!GIMNWAv1SqdN9Up|sHhxN9dXWt7!l3~-3!BqI3viY4m#(tDGfpjfkCsnS@$YmV^&
z*(Ztlt$ZLK7JH%8T{AM{Nu9;Lp>j|tJ{ROer~e6J!RvbBH`>Ldd`<lE#CmzyO+4RX
z9pU|jyLzbPg0b4LwkJOVonH$c2yQR!m~nEVFYdTIfvMj+QOUu{mR9-LU~6)ifh~Nx
z66HL(0^Z&>BWu+=`WbWlI+`jpEJSL`T#925Ohb>b!v_e}3JGT5z<TZI3q`$U7Cd?J
zlSj5vw1FF9>jPF%S%KB2&qMs+lT6d_Xi*j?KpFN;f#gl?UgC{p>+aj$ai=5b>@Srz
zj8DBIgW+}I;`w%)wJC-!lmcw0zog;L682IwdFCh>Kh9kuhLX&mQ}z#2-<+SmM>tPb
z$TLAIw@pnE^f^+H=f2aJW+(y3koqoVzq4<CA7|Z<XN<t}_L|KTB1HW+T$dX%Fo}?3
z7(+b#6I~cV)gpo3c`p<t3z?T*nEOsWOoCfLsSd!=<5DD#oY6sRra!{^{=-+FBJvkc
zZsldzZz-;D$V~K$w|W>Uu^&y^eUmH?UvU+P8ckf-GdLhZ?T?GuvT08e%(Dc!K)^%(
zuR%arxBdn|9X=#$wGOCnCb3x%C%ci{>qY(Hlu<rB*`QD<$|(3t-=CbNW>Wt)Orl1>
z_z+Y&tu#&R=j7T5e}EftDmq@vk8yBaT4^rGgxK$XvZvyG422#=p0#$%4~f?$^@e!T
zm-wc<ka)hy_uQCYcn6=p*;)pmrSvkuVoHfiRTO_%4gu#rUuWGgnG!Gg{Q`;XMz~We
zo9@(~Ym7FuQ906!`RWT6JlKUT{jRUQk8ONSUcU%*w0m!0vkUsNc;ZA`mL%^LnFvYS
zb5Mc-Ndmt2WOvok38e|7P%>tKFd$d+<Q-xmh@--~nwI&yvd$C3F6{(EC&0c&^={jh
zO#9-0BZL8%><&8TUW7sz<+_pWb>^**AjJO8x(CBCCs&3S$u?nA1k-oFBio}yqN(MY
zMCz4;36sRVJYBfyeaS<8Maz_OL&&3qsUG+|$ofFz>cpTD9bv=`!NX*&SD;1<kDb-+
zmQiUKQaO+`LE#>0*S#%#DRC33Cs3#&nE!K`PNwo^$Pq+F^hk}P!*>YJoZqZ_WNpP=
zuA@Q4`HP|w9^m6HeO;Fa+#aWi)lbX^v2<uu&IE^#Um3p1Z}*J&@*TT~>;lHK9ILY^
zqHth-1AH2*1-Jdr+Vj%cvzB{0%qp5fHc^HFmD4745e^$gF!oFruFALCOr2olm^q2C
zR`HX=sw$PUXC1QD0hdHmIFRTsf_rzHeV^uLu)K@@zb#lyElz4%z9iK=e6XkZq_{R>
zh=FpuwR&9-bSqGX8ZHB^Xq4!eUAn-+#kx<Ukd>P<&iIBi@SFQVE&idDamIzz{!4Tn
z9vuapo!J5tgil8zWHu;4%2r~lpXu}(v*kAsb|F8=`M0Vi-fLjMK_lUWHv9r$B!Qr>
zd(`4PZN@k&)^=%aw>PXHI00{_2p#fUAO*lTPg~ls{%V|63;<2|O~O)H)um{f=T_x}
zN@ccrjx_<jFeX(^+cZgjf>o}+bssnya5?C}djAfJWrOK1Kkkweo6z-oaQ7Bkg|+Bx
zh$fmwvdaV&pt%Cz@ad*L{a)^)sC(<`@G66F+{`tC7V5PdSQ#rwf|OE~S%3?)LRZWK
zv1O}(6<SuEA+j_-Qla3S61|w?v&@GaH>1SOGJzuhAo*~4u#0JMH3P?A+Zp9phQ&<a
z$~eR&fgY&6rwZ3We-}1$4jWa9vKl_%Hv7&c5_Xq{gm8Ho&JCuU_w<l-rX?C!g*#7*
ziiU;~V$%GyHr;ExViIf?ZhZx>K~*2{@!~zkc>aHe??_la+kX)aIn_V@vbCg!KfN(j
zY)QYuj2jJvkgAUT{2=%jDUnrKYRv<mi`1%r8=1}Y=|Eop@UA4Svd@^U5?4b~5@W!_
zNj{R?HE`!^vu#81fAdS*qsq)?j0zlbLJ@^OfN^*J)9t$z(9krCZ~vWzYZzA6*DntT
z`Cp{W23oLGid(?ADA$ll1(f!v_7x7^s#2@Qi|c=Md2@}8Yk~mq6fyFa+8A*EU0Uw%
zOChG-29^8wfbbjs=hG{`%8Qvx#v?v0uyq(N>Pnc`*AjCpfW+}8@{V%;-G}f-5;#u}
zxZ|U94-*D(t_`0nYOWV6jIKU-4*a2hz^*!0EbNU0MB0xu-(w$ziO{oh<Tt+fu=#zt
z*k(;Ydtd9}QFJ7KYrW_8Ywkb5O&a|d^-CH=(?<%qdy%8t)COLV;j~2jaU3wL9DaOO
zkp9)T;)2Lkey;5;*G?4mYb|GGmpjulPW1i)Xp?3W%IN;Apc1TUu?`wDxX1%*0PF}%
zTy(UmYh9Zv?0<b3QVJo$x^DDxuDLkn6yN{cl((RBPMyg7D6J`0C9pKkIRiA1K+#5K
z1S-dND%vKr<-nCM%HIsZ#xh&w^r0esuj^V8)tIp6hDmD>ru;+;0~6seV-~SgMn9}P
zzB!M4yYeB3n_Nu)N}$(%akDgdS3+N=L_?&bKlxTW-e)0(JhC}SA|IZ>G9|fqbC>rO
zw&p-w<v4=OyL7@Aq6YXY1{lDY(&<D2@wQ;D8U2FH%VWA?5SOuWL;5f(`SY)HxYu|$
zGCuZ-qnaVuM-rT&(5IjoharF@31+XP0X5w4e;w?#?P_mjUEbFU7Jn7k*F<|iLQJ*)
ziTaf3-WLwKxG1W%#lJJc2Wa&9%KnL&zX(Omeh2<Tb9v?WxFUpBRyZp4@|NLV9wEyP
zz(44h*@YB!LB$(!M_2+_k?6h5i_eg%#s14M4hAASo^>_Kk*7+c2lI(_rcQxfPW%oD
z4vh3l4pu*bOHJg<8pcjAaZ$WgFf1QDp!NquvKL`kkQ9ADBCK|=g>D|x*dK0SmGfTm
zKa&-Xlq<M_R9XlKGAbF!@1;=+n7-xe_~H@U`opgofan^fSq}rlQ&2L@BQ1V=k7=o}
zze&L=$!ee~i|90KhU>v2ijKUP8wD^TZ^u8+2b=_CXYEODx?P7(B#Cu0i5|iu$AtC^
zTC{>NK-2y)(_fUc+j&mH&%>6fU@i*|rY0`;gf^jpdzALoKMh;di2QK*uOZlH&2G(l
zO}3%GjF`37gsM-h{{>7V0~v#B=>u}S_&SuQ0cvQ8PeCp2zsaPie{I&CG!$*ixHyGL
z1G)|<CxuGftgISF`EZlnKJf-^ywcFmo0kBQh2meh@5n{&3a)yhP8sa)=Neiz4cFsS
z--%oD7NEl;eg>RLTytxz6_2s&g}pbPt4Ro1P`G-1>F#?s?9kGA;JZ^{X8j9#E}ozs
zOqH5pL)67R!4g&qwIKGxQNHsK*2-(G(&;60XgJ!K1d0EOL*qYMyPt!rP-;VTx5qf9
zs7SUw4alw4X^k_hV{#HkNl2nS@FY4_{PmyB4qv?S9!2lvco`1XNiG1YxINFxP9AX|
z+Jcq9ckG8T9>IMTQ-wC&`U8nOw=E98bVqcxu@PE4NMq`#W^%V46mD_`mQZ%Gi6>W|
z2<_z*FUA%HF81HwLI%7wFgGrTf+Ourir0q12?a+ZW5)G>`|M8{DNZGJ^r@_uz6sZ|
zQOyvvKOs7Rc)0KqJdqSt(W~<Ey?M$27!=<ojT4W;>l;a@c=$oZ7(aRkCTMI~ZEj06
zhC_|L5S*g$W(AlG$>p*D5aa`keu{c~Cr%e1)zF+&mihA#v6~hH8j#TY1X<mpC6o}0
z{dpX>IRfvWJsZ0iQ{*SVzNCem`a=>B46u=v^$~@X7kzVw3Er)UnjE)fbb+y3Cxot0
zs$GE<aytD}+V$r)(*21;KN+c2!GG=l|AT#Engr`)TdynaT&w}dCdv_u4J#RL0~mIc
z7`0cwQv4&tuK0&VNBmkS7u_M0+ZKZQ(0Yd$)&&LPJKf-(g=#wK6UHlS$?fRD>Z%ud
z`NNEnbg@QwP}+<yAtX$hc3A<XKek;mO}-_j*g;A8I8F$Lu3+pXNsMQ1O$bKX4%a!|
z{aMWI{?5<rAU2*L?-h3$&U*Rxb`&>wek-bl*M?tVG%Rz)ugY)nU9VkQKP-VdC=bC7
z`me(xJL-8`S@N{G(H5_}z#Esq4_mMJ#yeGNG8w?Bl7WQ-^5#nfFe^jhzotR+HENyc
zX@a3|_S30@Az+;>6S8E!S;+DOX89SLO-YC6Xud*T@kK0Ec3FY)gMlPI%d+5RcG>O7
zI}}92(AUYCyf^Es@ap+y2@yzwp;t(0JeS;m#L^WZ<Bzd<ONv`{4HIi}Dv{3I&xNzl
zue2FFILEP&@6=xo!!{1vQEKa@&&I?&USc0Cl$TbeSE-80eu|u`1U&Z_(Vr+FG#;#p
zosF(15;sKvM(){{J5yn>FsqO@KCS4N1`|n)PjyJ$8n=vb)gm?uCL$5MEm&G%gvg`0
zd3EDOpAete2<1HCVq$ryGqnz7Y<1hk&OY$*t{N%@xHAQ`dwO~v?c{ghj;nl1f}Ba;
z7VjdzQGZmM7a2%!<k3o{tSUD=Wc}+pt?7?wzdxQ$^j9+GmiOm(PUP>?tA96F8$<Ss
z$o@;h+HO}n%(*r<#m`doeA)G9g{1Zh>uEcL87q8#)csG_GhUg30&E5{pVRy+e0n_y
z0|lHM3^IAbiae7mhg+Y5jZE~HEOgMF=Ylr)Es3qe5n#A4aQm%y_mYr2HcYdNR1woG
zEY?zP>ZC*y39CUOKki`yc1G*GHo(D?t?2UR)Z(~`R+qRTl)mEv+K{hf^kB<UCd)-2
z{&YM24XL+)f;zb8S5Z*XBvnY1z%ySy+RhO~1_(eLalPS-N#gmzX&2BQNQ;7~a7(2p
z<O)Z-5f9AR&wS#76@!Rf0A;7LtlJQt1p_~%?R%c0f1fba8@@d6(JJxMBF=0IVaeOb
zD6P2Fx)(tLvAtgxAxajfoPSU5wM=kWd0fm}wOGc36!^Pb3~l}NZ&H&mHe^oDkl=Ep
zER3UzA(c2J|2ERf$0kM`&s~0?n>~yakR?)j+t(5Uyfef!E0iL{Ce6#aU6U~+Pm^<P
z77c~)ayM*adsd|rD$HPTLU-WDgy&4+J$&iN9ZkYSVChCC-@5ijHMa>^!rrB{7&X5+
zr*Ry9vezF=V*1B`SH3ds(f^>kZX7##`c6+|H$CuHmm?+GevyrLUg)m0mtgXFt=NbD
z-y81ScS4YYA~}U&a22-68;l?`x?(M}$4k!=YV{De8$UbW9>g;KR0iQ~GCldCrR(I<
z)>bG;r)41*itA5vNv8gNHD{g-k1##pKnlr31xbqHO^z*-$>+ar`!iey5WVzLX+4pd
zLztU$1%M-}a$irXS4kzEMx>Uuy_~DCge|sWRlaYlb(zV|L!APnI+dU$G)H0Qn|aq+
z*t}8^8fF$=y5|_J#e^Ed;pG0UD)8JUp1=AJMA;2Yob0$+^kI&&9RCZJai$LtVlHGu
zeTCK#(yYLn4dZ)qq?xke)-&4KGyHF!tS8oh$&I8X;T+-)r4Bn$##?2{?S2ogVE_OO
zasj9Z0A&bo0CulE<b3ifrXJA~pn~egXBn4YFG33@B2;6Wav4Id@VWxSY252x%jAYv
z5Li(&)@zQl$W+~jik$>cZ%<n%J^No-m6zw#*Lo*0$7SVgtBl18Kl{1Tx^dhrmGs1V
z#Gz*z4_4p2-}z`;Enp}A#vY}(Ze<%yvi9RjJY_|3+?NY`Ke%c3GBW-OU_}0}C&kZo
zq{6D{S>Y%q7nUy;^4o^G)Jt3OQ~$NE!0ZoY+0h&{At?HBg?nSVB13QWJu1x`xT&Qa
zP<Ag4<mRfwldt^u@sGH?9Kjm4f25i?@LYL+Un6O67^n3mJ>4b;@CSs^w3c}|_>=g~
zxaF80Rb5nVGd-6T<9EDEH13Z7{`Wqu<)=NDR6f<aP<ND<JNBm?Xq8xcUjH5tM7$Kg
zOM}w8;DFQar@tiW0S;h8gMHzGAC!;(-@h81h_D0Wb1s-{m^k`W>UX7IjY8nUJAFnZ
z@R&%3YT=n@hQGZlliB=BJ_BHpCy)7AW;IT`KquI@<GQygT6ABC*K@C<?ith33+Swo
zUXAoIk}t?AXTN;r1kaISWaGrRrCtq?(O43s79IOQzDP(GRGF@zIn0-Z^~|&W!6n}i
zI^X9tCd&{sUCuqI$FT#gw{$uhau0{dqjnbvzwB2}iDg6v0aM5WsxEWd6)u5$rRgGl
zHZIIwtFSgEOMWIM(FQu1qcw{<I{sEEV`(@mVh16clJ9Y6z&IBeR(wH8m<&AJ={I0D
zH?+vT<FB8_c!ca=#|?5d9<{iE5mZ5Q0v?BK5)AX#{avKSWo{i~<SX1V3V07jPMLDW
z41ZnMCPp^r_{2~!>w=WG@fo}dc2J~e<wHmCJ5;GTyD{sMl24i>c>sEAe`1X2S;etS
zuN^4qSzCef5~2uqs*!Q~PN<aw37<$-)I6blPQzdMo7duJ{pKmqU92`+dM>|thB0E3
zt0sT@<f2}1irr<E0yRDkX07yUH>d02X}*TL>jhvZs?yd{t5DBxTG?u}eOZk0_uzsZ
zOE*$CpAB}ll|e&@jC2qiqwQQJb@(frzu?tL$`{?LHzU`O&V+w}Q;U{wsPv0;fg~$p
z>-aF@qXn?4-U5)4c6az{dRYG83K3;YKKu^0<tLZ?lrCwzHM?suFhm5y($=(VkN?G)
zRlL@)N&0UHus3bs|IPYP*i<DW<P7oYj!gn*E2(x6u>6uWgv-48<q{TFkofRzrnOFn
zN3?=l76sTF-$$VWh-HjG?mAcvvO(SEVojFuC#C)oE^UsmrwEqd9=M)U`n;NV>RPs`
z<@kQg`3ZyOC&9R-j_=w@ddP#?W<pKlgYOyue)9s451rkE)){7@%Kk(|5VS-ci%i;;
z8cA`&#+2J#?PUqnOaCF)>I;<~@`^08;u9ZzI}8TkSMS}bHl9@Sx5qQx9epPgjxqZv
zwxlj1fYbq|dvvzu`L{O99Im}SDNeV{7uiaPI2?;MxVy&$w9@pfEw?Y3gZNcr6!ODY
zksuts{S|e|#?Yc4taV8xcF&+&4~h#P$P3k#k1b~_ymQ^N-qk)wAZ6kUd!G$p#}ut0
z2}Zvs&fHa1xasXzQpuY_>Du8Rhbvv)y&VAUHGQvI`$jbuY+Hdc0)w5ZHy&i&R<(A0
z`e0!W001y~*+06{aD7*HXY?1bxeZ@M%5`n(ToC_r<+55|F0Osx5NUtNn10=w{!a9O
zono2&^9Q<1XG{a^x#2JQ1ipw__McNgW&mo@^j#c2eyV`CZT-!ryT80iDSSVV&+Z?=
z(E%o-TAydehWHhSO-s9}1%=KO4znXz@5C)~e5RDcDJ)aFrgB>-FN9f#u9*~52FvBy
z`rR%mq{glBPsFxXDun|IZQ^Rhmk7UU4Vez#|LsnEZERX|O}wu2{>4u-FOlpmy@oaC
zjtUQeK|VI7Tq|g33dY2LL~*)MV+EuO{3ouj>P&uV8U;;1z0m)2+uFymi6eIuAvt$b
zG7?Vgx^|1jN}o#ik#oiABZe@W?Q#GyK+eCJ@^{=<Tn5D+dGHUcf_+sPOd{rxDIg2P
z?HwcGEmMYu9^h%o{GJN^nG~GRMdt!f=U^9z5ts040oJ-HhQ%KAkoi=$b8#EMI6DQ)
zhIV>HeH~T?c4OS)i#pYFgAo3G#`72L#N%k-QuYs=bL1NDmH1DFBJya_&9(TGUi?XN
z_i(;KAO`ZOM;={o<FJalXtXp3)f#Br9FmMuLeq$F(h{Ku{lEl|<So61O@BlBl4x$J
z<)%EUK5d5iuCIj*-?2%L-B*JyJtj2mdqfDEkJdA8JuI3p2I+WCvgZDo_Xd9i3Bd%&
z=?2j&2(1*k8y}&GDbPb;?vTvyEDcv;gtV{!{VnYCr$cQp^WNac4kpj$&g<f%cE=T4
zoWK7-57}veN7{0hH7C>w*P{6*H^&JDLx#lhUra*)wW$#>#bq=f;aRoV)lA#scIUM4
zQrJ!@%=`H}B`hR+#+mt%z!{_rIbH5pW!^Vz+BDmxzx-(u@<2uk5$B195C<0uIzS3m
z980JeGuvl3E>7J5(4GJ5L)w^d0CfM)HNJwlxe;D*RnO8NF*Eswy>{&|PUTOOD#xzD
zqFS-Cbpq{pLEazmwJAeGDy|OhzR{2DhREX&nZ{<=PeZsaTp37q00A)D>K2%5`}jka
z!zz>`g70oZ`ib>~Zjvo$l+2kIqo#%URwPzMtl1ESSWcSHlSZ;hPLOi2X_D`FDRiZJ
zdP2F1t<xs~_yA=;MSgAH-ckK<;<rv4X4On4d6-C8-QYc0UkR#Ru5Ed4W|qeU$yP%F
zRUs!i-|r<W|MIG8b$p{;KK=&JX}UugFeS7DjYjWyF*0tGl|{M2U=okrB51fB3`lOk
zo}BZ+uh4Ovvqd2tXSHx#=J7xQ_|XC1NRyp-k*ICyV!;o;!2%VM*niz+vDgJAeNX>`
z0IiLsxo&dFmy1gxL6DtlwI3#N{GO~?0g5ywE9lN&@W#W2ymHn6HO~6C;^7O>6{j;-
z3l1;!$3g23SPaDUvZPv%^hBJ%U%l9$ZT;iZk<SyJO)4&K;HC6b_q#bSB_dz7l65g6
zm8aw^#m?zW)dX@GWUmDfqDfTmV>dd{3LqS1I)S|vcUm&n2t-`^hn>=ZiFy%`^aga+
zNQJIlMm$__2yk$Gj8TuB+i)U{;dOmEG|g}6o};f8-4@6S&Igx30?L>HtU1Y$ZIr~$
z8?)YUHk>!GEWv;Dt~)B3M<nelR@@%m>C2_=(V(Lm-&ThEu%t<yOe#O1naGjq`dag+
z-U81Lc*W7C=~#cgX8mm$>?gAiq>PAf&V!VYv9=V45X;2U%q06v^`AptERo0vvL=7x
zX)C*o1$6#gxB9Wjg{Wa`l0JisslebMDM@<Pdk^^+sw|_`1mxP8MBd|3qX%`x9}6?<
zq$Yr>hVF?3!#<y#-cHePz4Y0dPfTz3!>IV0QXtF;q&ATE*j$>lb5-12zT<E~C6>d0
zB+^R=l0N}Oc^(wT3S6KbH|}F8Pbo|-pqSmhxUy>7b}I>)nGDR?4&6eS69>(O1<pj`
zeEcBm1Sw}?rwrK8j0FhUO`6nu*{jB%I}VyJ)(~V&G4`u^7)oM@ew^`l0N5#3<VO?Q
znE+Sba`7=Z$8NbuLrT<VlHQ6|6F?mpG5ch_7Zsp1gF*c9x74bRolm-s)+``Fv%ZkZ
zsVQ{SFdfE31R;`#G^EwcpPbGy9xnhsC=4^-=!jQK#c*M^+lK4|oCzmu3Gvad7>FV%
z2{O<s67B-eO!GGY`5I5&+4k}8CvKIr{O={4fFgE2byg}tRnus*Qg|NNZ(I8ktK4U^
zt~oZG_|vB~70&NCah?8fKU<eHWbIeeH-zv&bCZdhgs+bnIjIoa7}jPr*}w6?Ovkz~
z5i(twn!TI~NsUP0ZU5j}J}X4^^<v8GO-Q;dC}UjZ?`Y7RvMAT+4lQPz^W1oY@w6{k
zWG?*Pp_%B^2Y9Dro;WG?S3yVkDC3yC)H|^CHo&+R(vqm5)YllUW}Or9izr4aqHA^S
zz5J`lVp)_f{5~p=uLcXH=W`i;Uzf5R1V1jx_owvCb0ClPEI@v-ZN5-xbO1Rk002}E
zR<9h8^wEau8_SN!3vF+M9t=uHuI{YD1fK>gelcuvtxP%5^3@V1Mg=8<r$P>E%)CXa
zO%$T5nNk_CK_e6qUaqhx!1}=_006IIA>bSVz(GIg-+KOn{IXKqMnMD$`9tUK?D|eG
zO-!-me-9#4k+Wb6F-pHdB(>YkWGd<tjeH2Pa)wx-n5~e%l%c6QhK*1w@`kiqj4GBg
zTC`pr@T=sOIDIn7MKfCR-i!1s_tsbdq6%C8V=iL3QRCbWKaK}f`j4Nn54=Xf4jp>Q
z8;mM|n4c*j;c6DZwD6_S9_B+|j-kpjYyX+d-FQ#X%%QWM?~^U*em}v;J@~cKLI8-#
z#+gv0fH<~SHCN(R?Ck8Q_`NZrvD)~3cg$mfgr@|K-^@ENL19(+Abb2NOQRcsd(>gR
zeKOBKB6v7_ma6gFwq<jtf6g+*8@4N14V=5MQ)e*^RHtpXHMD;fxxE3XL=(hc<=e)v
z@NO2;K(jxQOVw1$W$8|iG$L@?@_HSEo?0N*QYy&`P{)uU_Uvv4z=F?5G=gmo-DG`m
zzbdxU?Jel2AVJE`w=V1X+vKa?kd1CALuGfe)&QY6;2WuETnTBys1nx}R<p>}PsAy@
z{`2bNk6*0_v`oJ7aMGzO|FtTli!0ABdxNo&DHUoX#5-G0o4nTlBm{h6)pfh|OmH&B
z1CrZTk!$dAyu}0Pg6%?ck59(mcCqcZJSwzFlC}-hmFJXs?K3I7kE~O6xQMmtmT{+R
zF^;W<SskaV!KUcg(ZRU97ZKboy;Jh-6ML~A+>*m~VPypsDC_7LHPx&bCdJB^uPH+T
zt~K#5z?Gf7-0c17PK^u6&86CINMF&u;pv^6Tn}kk5J0GlZYjwPLC@G^APs+jO(M}>
zp=&T=Y$K-T8wM?Sw&x<<*GX2UN*r5~j?zzw?6<RGF5H+*WS6-N1>SNx1L)(F=$3xE
ztK!$8eT$2sp}(P$1u7n52HS-Xm)uc0PBS;`!nEqIGTb}kD!H30DUAO2v~KFv42nW7
zS<XYLFQaEVXv%_W=cc!)^7iQ++nao%yUvBG1aP6N*yMNpA_j%NsksOM#!}5yt3{9<
z<m0GdXLktyKSajt-^;e~OcG}W;5^5#RxlB8TuN1=dWkuj7-mom32XG0Pw^>8uEv_5
z*hl&j__KZTq^CZBb90H#_Qm@-|J=Jc(;3>o#k_AXZdQ$hxo97k0%r3RQl`~h7nf2w
z;R7$ZI$hBE23Fx1fRq_ue97SDW`rX5EKd`1z8@KdR{`a@rh+;^P{6(&II3J1<m=^-
zZ)S~`4k023r1k)D)QF|~u#4+T8CmCogO@bGW|64Jo#%+^v|Z3UK<J5s`(8i(zm<rC
zo<fJ8yvogt4JFh04)L@oAlh3k#!3z+@~#ywj*W@|aQZxK%7>RwD09cCM~>M~lrZVc
z{<2=)L^;CFtfpNYRiV^%p95Sj#}J<;HG9T7!AqOgpN9B5&)<jFgr!eHbC{$jW>{p@
zq>3WlrVgWJ<%%<V@F>e%E_olpv_(=7^R8vJE25>`G3g38f+lk>I<Ubxbs;KJ>MqJu
z)Y!}v(NiTE`L>o8QYUPJ%m}TUZDN#epO6@u2NjLUnw~dLnbtJ^7k9-%hkOe<JzZ}%
zT9kg^9P$}@7jD7+8NAh#mGFX>2|1*~MN>LHpJBCfg5j)}`Sj`!6qbszC}UEs_1cjY
zH4qjuRrnt#$|TPgk~$?#&GFm-r_-Xv{%Sy}^DT11e=I{zL}Eqy=`x3QkNc**u;Uu!
zR>q*y2tS(Kpk`Qj+#`%zv)+NDRUC4_Iu6W>Ux3TiK&JeI!CW<hMVKYwg{Y!^fBAV8
zvOP#ykIj3s)D7H{nUh<Z7$0!C2YtD(KQYtrDTc>m1j`%>Al4m9STzwj&<7(+tv)ry
z^Eo;HmYHE0zrVQ!!^CrC`XLCX_#!;UY*GP7$JS`F>!Job9-aE{e{>G{EDaN-Qq>}p
z>F`#OCcFwht(iMJe{;pczroK7_vsK!jl{Ud$f(dtls5Iqc9kojzTNco6_%C-_yYHH
zHP_4~=J#-BYxDkpzI8XXcn_Y4U3pRg&lT60?2<b3TN)k^K49`{XZiyKNUy2wY(C+o
zy~Jbj{?3MshxPA`&(#OuxdNhDmJ*-xCjx~!aHu`dp@|$5wcHcmWg;ZYf6b{lU4*w^
zvv}~4_5WbD0{JZuDGHeI-^f*kB9i28-)?ncoJ!JCFStWo<U2l?up9m|<xmBxt<q-$
zshlzU-9|GL6<uea-|W~0mv+**E!wz-H{?wsS+Tur(gU+n;$a@D+Li*wSwzpQG95W#
zk_788bdxDtKUIv#p=;i!bg`EEPz}#J4m-4+ec{meOG;50b5-vx*ENfWc+tieB{huo
z(9+ZkYM6dO!gHi54!gPG(JcoU(1cx)gvb{Kvy(*n?Z}@DHA?ijO{TjY$a$y7EQm;y
zEH81+aTq`%+vijQ0^zk&8kzh?i#`l?5%zM-=~oXn0%A{8Eo?WCnFJb(T8pU^56!b0
zms|G(B$28cp)i;HN<XLa8mPxW8oYwgbEEPGSapKxC`~}6|En*r`KFFT`4qaOgK{m<
zl(;6*cA(2$lM=Ll<mgZNihR@P82ImY$Nw^imDU7xb=a4)hL&2<#W_JriEmIiGgF4W
zX&Uf{^!4liOn#y-4n4a(8F1o0>uUyj$h!JA7GU%1PLl8hg*b|a?!zmmK}q_ot)2On
zQoHLWBTRU67-0>TL(s`kDdl6p00LSL^`%YTk)E_3{J!)cSrj*tDfAqfB6a)Q=KvUI
z!)*quBr*hrVrLP;N&&H@<l__t=8nV4eF*iu2gH35Wn!eIgPdJ$?o}WYh~>mjb=9T2
zsAB@k8sXZh+EGAGC#JTyvnw9k2uRTo@}QQonA-zut_-G^vG~#VKye<i+GEtrR|J1b
zg2_E;biDq^U$vEl9@0C^XVy{=tEI;I*JM?!f1a3#RV8)t!XJZ0FDSZ59t09^xvxxa
z@v4U@dsE?F^w3xhffKW7O+M9QT?tZNf>#5HE(MI`OZyf`-#1re{`H5x*62EzcH+7l
zt?LJBLy?w!!_ysW<>Z4hb2(>QqdL=-Cxcf;Zblh&Ay&+B-zPQvZ;c{GZXsKesD5Lu
z2AEE!G}fUfO*9T!<`>W&p&5MQW%vfc`#bqi!qBr{5CTKx`MGp$OVU+v?3k=x=!Rle
z0IvRpV)ilaab-)l;yUE93sdr-k-yG*<nGn*z)-f&2-B0%a1FllmJ28yo3xrol?Orj
zp5k`gi3mYaYfeXZiu@lLLqH^xnqWkM>moTC#YD$T_`#mtNAZt9_qajv$0h&GGN$!`
zfq-J5kQ8<eKj}X9*YPyU3RkbHa-wAcu-p`XN>fSxH2E;a3=Tehu%z?~bt-IUxe}s8
zFIM0dJeBj+lmVDcVAyQvRmg~lAFb{v-XTQR9j9JP|G?^kvzn8Kkw`IQSsjMEDAr*Y
zTN@jrQ*yR|LiX_<%i_Jqd@cH8;{rj%qQRp2NBc}_F9xadD=NRsVirqxrpxcZl5H9(
zjGho%IQxZ$%%9|NR>#CFEB?+iIFWWJUJFI@e8eOxv7k@8m#M_(VxawtNgPKqM`PQ(
z$J}VeDSyD7YT0}*Kx=V~(cxb{lSX}WGA{urqqa0k!>W>)Mh-iud~I_~Un=XpN~K$f
zMkPG_SL>V}_bhgL5p{`86_`~w#9VVy3=E_-=0mHO{fE|5QUi9wv9apzIIz7d=vXsX
zj8s|wwcXI62B2yB^pYbyif!&GP>J((qWKWtND<l!YW-;B=~UEa;^1p}5aoudiHl3_
zvrUpd_Bmo(y6_=Zms+MwCbxg^D>?GYU?0!H?GU3o`O4~I0VLUxsFnDtWrRk4HRdz7
z+j%}2{VC{;6W%+bjHiJo5B^MFfhk!<9Nwm`{lqh8oeo9#bM;+}7>98<m6>63gF{wM
z|E!r(N12utd2QRF^YFQTuir%%G2^nJ3-E%KCVW5JJdfgIl~nQj;n5vXs-vC~pB7$`
z#u)Coy3{u&hp%D}0$urHv{yMNKdBJE+Jj4LbJk%5q3j#;I>%yG>MsA_@jwYNSvbqK
z=(rkgvK~EZmFy)*@1ZS(m#1N(5Q{O`7>Ok5MC6+I5a9wJX0)@P?C%jca0UsA8|j+Y
z%)uVrRs}xHl-J}XQF#p8ZRbaFX;ElE2W{Es#s@W?{iym}6`#nd682vr2ExL#VXEZ!
zs!RbSu^vO}o0?|rcRuKE<O{Id;nu7cyW~RlOqIaVbS9Bo(JfPICGjm#f6X-#1|wzI
z--H!)6ND!rop^NM*L#sEr*`Odp)*8_wfn*>qpXN1QnNOfTzQ-Leoed%W8DYtZkUyz
z2Kpi7k@p6+!Ksd{51!obfE?-d7d|OZC?yiiC*F(u;dz3rg9wH{L)~hK3wuyp%r^1l
zPs_gkm-D7+a8ubFPiIaozaNRtqAI*E%(Zx{AJ)J>d{oie8bZs!ZbFr$Ks{FG5vS{V
z@<#d&*@SEk$yTVa#F&Van`ye0#@)<oWK*v9bj!BhkqY_d3|`gmSz9KZ12o92CMe}`
zxq4so!TvJh2jVOY3Qc|AIN6+U!cB`of>G;JxS8s0Ko!?$ikq)YJ;4Gc80r~_O5Q!U
z1mtK|OL_!0FykP+F3^v~&hAcu6$Z7SQ=8ypabjB#rtv{(UsP{8DP_a%w98gX?bJlN
z-IunwwUP!kWxk0xb)CQNj_ZZiKk+kqgqtx`KNr-uzejYNjGvgTjcQB+BD6V{uwH5a
z&L2`7h37gf{!V3{0^Zm4iC)0p0zE_2OLPox397mt+3t1EI9Cls>?%y8`?#j<N>hZg
zyTD{*yx1~U7&hK%-R>G<#%jiu81k3D#5_4<^y?D#Hy%RM8NY;%+p-YHh~w^cu6x^~
zMHO1?Xn?j+A0~{gL^<>yw)a5QT~mlxp6(U0ic|O7<vehQWpNq)`#-?J56m-0rfOR`
z#s4J7iwnj_IX0A=TAS&EIo0`tP&FLiR&qqx2wi>W<ZMWVSkwIAlLEANAuY(U=Y`5q
z$JymH`oB5AV^90gp!uvN(`VL<C`PV6h;t%znt*hI`BR`Qrk&=?^SlqnEhFApVwlp@
zhPvcnAEdI~`LT`#6@@sE?kyRg-vXRNMbl}l*{%WBIk7k7ftesnPE&ugf&wNh#u>s9
zu3$WmQ&0o43!AYAz_w#v8*mfSgkEps$|qiWpsGBL2RI2+HED&rG<m<3DJ8MMOc4LM
zEjgUL_-@(<K))s_Cf_)38*b)m&!58J|L;l}8wEglKTMjw!P$S8|EyQFJ%(85V+p!y
zYfX%@7F$qm^^EUJxJ5nd6f7864b#F4BAAKRvss~b%)L~fQ%!1({ooBHFzwpm;VSnc
zB|T6%`$ZY+@dx$D6bNgr_p@VC>+z4t;7&DWhN}5xDLiL1Choe~U%YbVbM4EG9&$r{
zUnd4Zy~920HIRmv<^VbK{S&yorP@C@p;V_G`h(<<NG8nfY4kW{Yz45Nx!%Vi*O2t5
z5xN?o7%aD28tj^?4>{1wnmrfz9SHslND*VoI*rU<5;V))@HhInN2gKB_jTB$Ag%wj
zBQ1yI)i6Pa{C(H9QA#As-Bq`vi=n`*V>vjB3$~vLRt={8nA$9upA(KbwUk}qr7G}Y
zvkfDRPyI4i!_}?bjcz$UfI%FHwJPiAS+51NDJG*YXYS%Kxzlv9jEw*=WI8V2%6t`s
z{H^$0{Ky%tGtitPEOTO}m@nx+{F8ZAhgxD(OH>S5D4utEoznx!@Tp(``k}e(f^-3X
z^1?<|+ZMbGNkF(d=(hjMuxlJaf&<DCWgL<=L2XfWFD3dGN3`Rpm;rXAaK^q1xGTqs
zUh~gc={~JnuaXZVl_2po=2o=881hk`i0<c?+=W-ZIcONDsHMxrhwK{XA_?zM+IdTB
z#XoMgY?3w9D6%jv<~IcYeRCn!A5iR3&u37}t-}o^D6YohmRYphB{!iL!plC6cDVRJ
zjAZ&GHDt?5UXfTln49i(QYK!Ry6{fatuyT_ZmxxF2FyrtC)ODVYKTOIvR`u=$?9e=
z*(aK|p%hPf=hK`Sxz7}xA9IHxMi{w;UX9p`amoEW9(`J={H@Q&a71J>fNR~N?nbDw
zEzLS8(z;SY@>?}<BLUJ{GzVAfwESt-z5|BlU6nxWpSLb;CA%nKvG4d35_4)z0J9eW
z)Zb}fA~5AfB`3b8aX}I&AEii^7%JwwMa?{ng5UC9j@K=I;F{Dw?f17E@S3iCngVd0
zRAyU9rSV1(#x=-YHSXuWo1nc`UGez(>PbZfgIkroa*lSOTdgv3&N!ju@93K0p94G7
z4)uCPA?BMaGb6rvP>v{CQ8r_sv<<TukxAb4f!kL_r_91eh~1mrzo%{bgD7IB7@Z9j
zim7KzGmE<`DO82|f{<za5OCMs<OL^9&f^hbLIL)EYF0O2=W^HHyq|OoXySf0S!Opr
zYYt1IrsU-IxxnV!H1iRdXoFs_wF}^e+Fg=cCKq0s>U0{E?+uDvTFIym7Fw!&^>#C8
zL0^&hIW6LBb27URB@`_%K@BOKqkKSP0}bdX1n1}?x!;ODds{r5?gI4S)P6V1h5Vo;
zzdL$@r6v;M)C9}ga>QAVPKf52RxyO^Gb~5)+1CLq1haSHe)3l^U`{BS6)<=6{sY3A
z@iLP8P1Jr3a;y~46339!Y^ayh0T)5S=zZB^%C-9&v<$7<>~eNv-2wZsGZFX1@Io5)
zhgB!!8lCXHO0%>MHjV+&@dWTCjJi{Zf54npT~Y?QM^~93J_9iEX(1}(AS1SFKkg4`
zCu=R2Spk%6Aa)?Y^enG_)olM=Q~t5}rHu_?>9W4|xDFa?#9QrW^mkDf2<90{qbens
z3HSv?alT{-=761BV^7$(cKOY7b4r^&BtDk7R&%9OJtg`)dtJkiO^Z@<aPM>l?yN$-
zIRQVysTNi5cRWq-+(qV1jRgH+<?Tjpo6un%-5g`m!XY<<R^+qPEU8Bu{PeQ3r@|5h
zToPw1qZvgUif`HOh*<pry=t{sV(Yc^STD(CblS6;2%#zkPr`6x^|R#EWXsQe;04KH
z<0JMf3mSQWym`IlP%%l_VgZ9#NXK6YeBY(BOLSJp>JJm}_ARyNlH;(~T-jN<nIP8i
zN<)LmmO*2c)+$;6yb#yzxcoovBpwq%lM!P-As`}}&@jvO6)Eqx0^1-7Zd0f9-g10j
zqXU)joe0q@3Sl)UjIyeH>%CkFDLK03oWUd|i!#|{VNV7@X?mL%{$=ssb*EtQ9Z>~|
zw;1=m#}|<DT?46Gx4&>M!e)VUqy@*t$D|{)bCJHF{SoQ<kH&6j7A*Rtn`PqVy;9Le
zRSPh7!yd9rBF_Wz1`Gz(p`RR~Y(%#NdX8#|!RRK?hFc}Z2xrDSB)HEIkv+9n{ukdH
z?dE>NYIC(bMvYwL*t0&FRlaG|?wTAsf~5A@EcH@KR9*C0U!KqWX>~SFk7e>v=!Wp1
z=W$~p4AxF(8hu8Z$IFA7NJA1flIP*dZxC3lAnqvaHTqlz&cU%Cq|AMCk71RM%7F!(
zu5vi6-j<K5u>~ex&0%@|ob6*gQeV-%`_QPY!^k}ZwFIB6|7!G10w6YNv`djCXsaN2
znGk}RS)e|SVl{ZUj>tMTpjKXC!mBgNqm3(5KNkBGf!yyQ)lF&EC<^<nD4oxuj{>d=
z(^BfGvEu}i<+!Xhcl|hZ(=DN<fqJ;k8Tz|BHk{g<gw~TACBk=+75bKoEP<(|LTAeO
z&o&&^`)E{^b;}W^=x99)FxQw#)%mpjIW?Pkikyq9b3V_FQ^Ltp=heQO#vJK4J;Nw-
zT(KK)pv<t#9Q0_t{-}u|&K3f*+Y+`Boldm<naUFh7~BxtO&Y@Ma2P6Q!F3|-aJ;HU
z)B&yA@c&x75k-^1-tEW0{%;ppfPPwhII*5<+m{K<E~BjPckwcf=+SheDkD2~_b7sf
z?Z5T<S3>)qskWBcV+G|Sb+7#%?z<Ht9xJl%;OEmVC)35})3c57e*|%L@aL?kkAe%d
zy6wGtj^L!MFcj#-jB9m12c9-V`Nn?GAOgl{;LVloBu%`bPVr{h6u!dWm{Ebz^#?a8
zt=jydNtS&TE(5tcC9?y0ZiKCWPKJ+p{>as3tXO!m)~OTDxY#!JL-&d=mlB&}CSNH5
z2;VZ!LTCa#HTHU{)m^XLt5DYU3U~vhsA?kO4ttdbqw7P`L$*9Y5ZpuY*tsZ@VHtbm
ze=CZRP(hq|jl%C?4-z=!P#*2vQiv(5nD(pWx@W2o7bJ=>I}k6E@q!ta$nAu%`n_iY
zj&I0ypd&^o#$^KDwdL<>UA>b{?~8|P;Z`_Ou|`i0q`DMdQA1cu)UNrEe3fMs38434
zUHJy73f(J=rPX;?)6GmQs8RYP^{{Z8IW&qcr9Ma=R0{7a`X&GmXwq(vIaXxPlSuyq
zDoSNGx)`<}pMiTv-)FC=Np0sJS<wgB)97j7of%;$`Wa7D@DDK_4H~Hg$zcl_4pXSF
z9ihWAra$`V)X1WyksI7+Ane5yVO{3p;1z-vq61>DsWvxTd-8~#$ih-b#(xoZ);l7<
zS8QBtu`U@#qDxNHWGE=Q>EaGCV2j~7=vjkpQb&ZfDjZiHzdHs_L765xpF`d;8Qzbk
zETe$}2u$tnx8>Q0<42|<w|t}vJA-?vrD&5kKG0ZMKIWl8wy{to(gV~O_y)fmKPY6G
z@(~4x822-(eQ1&$_A4j@C%|+}<h)oSsl7M$BlE}b*Q)Z`n(Zs?pCKYtF)t7qUhm_&
zVp%ZREYN3Pazo6jk_#?k(depoJv-P=+EHe|IBGVzXwZfBiOwnwc7{7PI#ROa*cO5_
ziis_)j?zkPg2VewIsdW5i&VytFnVY`V*4mQ(ah1Ai<|<2iw*cl<RGXZZ)7|DWL;R-
z{d^(tmz(K|IOMjA@*!H&Uq>aLj}Z|pp<Z#$D&+I0xOx@Ga9#W$2u`09{jHo`z8Sz1
zA^ItVK3@b}1V$PkIXsELf6^)M0jXDw*iYEP9l-!Op^(^0L?t7@SRz)4iwh61P4;~4
zy5oDuX{Q3PqbGg%G+N{lF!InP=Dvc;;A!`$Eyc4iL`6}dISA#uJ@kkDF9mHx)|~Mt
zEzgA<I;g|pQlehh=J054$zR~YmL8Ec5jpA)N)*w&64;hpy4LGD;nW9m{~)A=&clDS
zU`Z@IcI9cpst*UkaPf0ubsU!ZkO8;ocWua*owaZpgc9PDBFTeba1(FQE=|#P_e~;P
z3J&QR5fKO!l<IcD*vikWq&6zPGSJ*t)|c(BVI%l0oOI*ij4nZ$w-q&?%*8<jADO@R
z&A2EQ%q;y_z9epjfy$9?G%Bbs#+;h?lCZ!`2I%*OmBJT8N@uB}yQ}5fB-9`M&c;n@
z0|#g7!8BIceohMZhEc&5Nc>r1esA0~0T)<<2!z|$08=CIi7U!^>79HEeuOhT;R-C+
zQyCOpHm7fD@4_0N_~UtL+&C*b4;Uf=%tY@Q2qlU!YuySw)4S6=H1=xut#>~~aO_mN
zRyP4GSD#(2?jTBw0>3&5wK|?Q2>=>2@<F#M|JuGo=mKrlNXGv6p@Zx5r$ke%pRs$J
zoOe>gG*oJc;2B76QV39vCXvsM^;UAeTkrVs+COlLbMZ!ryKy_xnS{UPs?ufcBf4VB
zN9sc=8uSt+S-R-6UNNA3|7-zV#-1Fz`m1L%TDq{1f5ZFzW_xhx(y6f@7<y|lm#+Jw
z)Q0P2=<eSWy%HMELCwiUk0G2b*?o~;?XHeiePeIXyD~3j7E@BAw!Jk>WK8AWag{4Q
z4j`^+T<buOv^01I{@uG`EtdMkNEwx`UWkq*YsD?NIZpWLd5C9$Pb;*f$k@^}N@jVw
zKc3PCdz{6fYcKvSlDk!L6t%4mOJ$MQA+M5n6eiyo4)mT<Bag!|a4JJU9Boz@cUts?
zr*dZ2P5}lArsdv-G7$$_qWKa$q8ifGr%DA=?a6NP24sBXr5hx%nS&^v0Xa%bkto%E
z$Oy6JDBampoaJQF90^iJhO{w5GOVHcLGqT+;B;eYz=cR%Jf@}Pj(SUlq`Th%&FEtu
zRgeE}&kES^ZS44W{PxW8qRrfqXKsaZ)vx{hED<+y<A5-A_6$?|0s@<m5SB+xB$B<Q
z3>3nDscZV^jo)SN#$P<;IZiNNK$;0t5+N21+;G7!huDwikOSUl%S_n$InShhi#!}H
z%{NNypLFJ5hJjwKrd1HS9Jz=D8CyfJF?cp}z%rVe1LTvJvl$ZkRpws~MmgSJ?We~?
z+AkY(B{oLv%-;yPYlLFMQ%1O&Y(cc!sa*;3T?AGsI!Gj=ET8)JX4lN}&6t9Pc@*JI
z36qh_73V;b_WKceYFLiZ2S|M;EZxYD5@nIPftOHXNBgY=$m~vKU1bFdo<H~`SX`F8
zTLNKaYOSBCe|X6+1YDeDT<KL&VY7XPMQE+S+JC+!rS%s7C%A8-W7v~Pt<HiUlv3mh
zpc0*21*h?8OssEDU;#wVkJ+t1vXqMZ5s*TW46-0g4YAFFvgiy2qI5Mex9NNf(vGmq
zn5$AA|DKFaWsyYjm8OXsFjW+<7Ga5gKhEyt5U;c!zvipjdB<PJflEamJ%U1DFozj^
zx#0}v^_R*D(D|i%RcbmDVHAN`RB|ag{|mOL&v4tn<eo8sjfAX36QMlUGD<u{(Us=S
zOnEhsm+F{<2{=Lj)n|8yl=J_78JTJqO^L$<Ai2N)p>-VJ%#HA~qVME+H)z0GUL;-9
z1D*hodAv8(<`A6+y;bO9RMU}eCoOzcrMU5;L%LmG?TKzH%l5yu$>iB*)w{XO1e&Cl
zIlf-WX!gT=CBatqhVsb`GRL)HIHZULKgk5k6-kCq@r3mz=sO2?M^^Xo`V;@XRUjU`
z;D%V31#AHRw7@-W5p<hYhICQm6h}gRa8uTXCP;J4310rDv{s>pOc-1BUseU<B8_y5
zBkM_73T+{@UfTUqq3oh<f!gXIRDLykI;N%7khM5uZqa*HSpR1iGk~qGlBJV%Bravg
z*}**X!ryE{4!^NVzaDc0@J+J1z~g0{?9elXB5}ebHrT2S9f>5P-4I#i*BQit*y%By
z@w6Hz3cRe-l!4?x&v=o^<W$Ed0AYXYYuBOfQbnNv0;1N{cM|$i%uN^~peEqdUZl<S
zc8_U+u|9X3VWM~wb3r+zh~$-Kft)V!7}zE=Gs5!l+AW5gpIVyug)>mtFaEV}$FHT)
za<~~}Fh9ynHNsfgBiCN&XO7<7+3RrjU#l9;R+ON}4T2Y(+ld8SPa>cZStJ*g{KreU
zJwk^GoE}%uo*@X;WiDEs@_YP{NR@|p#DbGeWu3?);20z$C^VLY?(Q3aUgzJPSAO1}
zA5;Rdg+aKCdr~qda7{I(+Srtyg@hnMzhgg@L{mmKBA0o|;#|_Jo=+u;KapKf6-mlR
z6F0T}N9%nP|A9rjfTP^|KTj!>Y@>0}HGRvNx@5A9Y09GiF25siph#3DmOzc`_;c&-
z2lk$u2VPAp!2M%B`w3xsegvgHupj%#VGom05bG&)9}EBi<b3@(g21zirrBnLAs2-1
zl831bpv-watRjYy6!hYtUYb8A^M*}3!lL2Zs(Bol9l`gK)AYV8{Ncq_6{|NJiOrtQ
z)%m5^kYlSE?0?)P=ROBQkA8cOy@MvED|Ono1Ut(=GUss*zkm_Lp7L4m`5bg&uFo~D
zP$Hqm4)bC%`fJWH0}woCp9A7D3nFxlBtiz{+suOcur<MfGwE06Rj|@)T$L%KxR|6E
zdWN|37D2sl&7Ms<e1a2vyF;{5-l$Clqm>^rKz{zL($U}=97_O}S0Le06<VkLf0IOv
z)-Af9Xu*XrkK4I%YOYH~0>~eo4N&&o{GIkx8u--Q85<CClzRtOWyP;1u_E^AV!3(S
zuCEq54w`-e=K{%z#*bnK)LX|7J%%T*_xcy5x}2w#Io)3(JvxmW%1g}}(0v>;?-{qE
z4!{~$Y3dzG4`$|5r3+#&HHwY#Z7+Y=*MMz2ZiR<P_Xc=7wj~xl;HXetv6p+!wz>Wq
z7J1trg|h{Xn%vJMT_ZKo0z@L(J*L>i$qq4&5q;fH-#QOylp1wl#J(Fm@%$Q~|1*}4
zr>wvN$Hd57X{wi{5O&Dxcay<`G3?~7m{xl$+|n43+D3v+LK8Lm(h|*ffH3~`#(R_Z
zlxjDx0Tv4Q488h)&It!EJ^;;a0vYO`lwp@=Ysf7+Ka3i-hM~1#p?!hWjlZH!OQTA|
z%3f^8f4Bcc(mES4M3xD9qXbP<%k~<7Y`1z>_3J05^k(i;UC6Fr|0{J)Pvy)}{(U%v
z6dq|Nhu|(n2XUaBhTgmPAKJFH0mVTl?(j__{mx-wWz>)lU6XOs-_fq?BRF5Ls~1|V
z$8--Tj~6w;ua+V7js&KW8tny_Iub4`PF|t{SY>NvBNiEXv4A1Z7SU-s&A8fATCyGQ
zhJf-Rg2x}~_RO~+h-DO8AmapEh?T0^@+%6R?zK|%ie|AR!r4xhch6i&t%<Rc<Rz&S
zRbbGZjj0GpR8X^hmS@9r?Zk&R1{h^6X1wq6=1b+gonC8o=S1<<<%KnEhCUvbN3(l@
zvPI)Uv|K}tk`YWy)BRqMTM!K~JU&?G!_j#205T6QIkOJk2_cDv4;`m7c)?HDzrSBs
z(ZHnJ?*PS0To0H3$yT@K`i}A8OlJ7s_~5tEf@(^)jY!*YXN7ELLyN8Y-dN&7GT|qF
zZh$^%j3wFhVFUOjJf+S?$-7g*qr9mz5o%X#LtI+)d{Pph$si@$3w}*P{ikPmp(}Dl
zFs?G+()g$aTd6coc$0|KqiZ=!S9amw`7|XSz%HE+7hR@3t26dRrYey0i!%jVQJA%0
z(%)%STiQWU5<S;835ePgMLkjg`N~<C3Tw`HfEu{&3~1{?7Y?Lq^p6ySx|v&2E0oDC
z7cRA5Xcs$kvtVShX81?WU%R+qbfhyv8AE&<bQ+&}TNyC8p!R`xL~HFSQZzpUD*~+q
zI^Cs4qvS@U#f7<!gm}I20iAyLJQI_O?ZZ>I6ldgZBcPxTD^gNGRnI)=_zrYF0Zyi~
z$sEt*YFel~DKt~u7w5yg_ugfa7caB9<R$x<0fb1Uo3h0$xPI>d&of(zQ0*vS+9eVo
zqAJ}A0@TYnuru=1x|2!EYVt1iHg#Fp#Cd_NUYg`JlM9-t?DtE>lbK#e<{Z=#?EG*b
zYMRxN*#$l?4(eT}!HvH=`(EJVx#J&nPf*u$W&W2spr!tO!$}VLCWc=UMZ%vkeIrq%
zHhh`7qK&irp%U?@21DNb%Pd4ss(^h)ub&Tzj&A1?o5vCpCp5aX@?Q3$B}i%i+eRDX
z;EmgNlofmH(d@x|Nkj_Ax&Y(Gk92O#<g~iynyi|zjO;_@@0;c&)pL|MNV<;48qpEV
zq`&1cID?UEg3lTv&J=}UKM#ktXhH~Oi1`vpVIk-+3Y{;zt7+JL+OX@>PmsjD)Sx$#
zErZrpF)I5*FUHp^my4hu5*4TAuk{&u?6k0MXOms63St@0G<guKSSJ|=d}oj!H_M>y
z!Q|WDNTHyu6cG~ZoH-lgldcJ?T1(58JdX`3*E@v!Z|pi@AMRgXUeKPW42Y`>z#ocl
zL^UekUwFnxfUPfO3|jnE0i<=|(X{cA6SAkyx4_4r27$!1ho%o9Yh*WeTJoBM8?m!d
zlagvWIn=8}n)4(%<QDA&DN|P)d6`Td>70HyPcu0La^$}WCEeGK_~|7Mp#U&Fc1DJ~
z`Ck22%uKoC-KXD+sUvS&$BOS)eU^QZj{<3z+!ht^k6}-?li7~LCV;&!)JfUx&(@gO
z#rW}O=7!74;BF5q)o&LSla-Q4K;W9+CDqyM`f|Lw<DkvuTZP7}i-Dk?IUxAUWdiy!
z8a5m2DT&%#YJx|27WGusdI1rmh(Gc4AM0c$4Fy_aaY_*2^xjUpZ+}Z<bDsRZdw{`|
z#w+#|sQnqV-gZuBd{!-Z-=RUI5^*=Uwuko%!~JQD6%nH_rn_tc7Q!c!1|Dmmh|y3H
zJ|#bjdjxSq6W%Oa>A|E%nb4BRl`w&(bYdrj&s5m9eDbaWd)>VRvB6C$#Y&l51uO(U
zZ^W6-MqIB98;~NtfO!SK7<t@OBh5I@VTZV-stVpEzL~Xvie^wC7Oq=psPx+B;JOmp
z_KY}BsptRypet8=!LEg;d(u`uJD`hE)N)Mb+L3G@2^38SBfpVg1>4gxmHMxz@5x2K
z9C2fdn8&-J$iP_ak~_znBloTXeKcczKWwzJTFoY{0aw(N<fWd1)4d;Oj&Q)NfJt?1
zP)DZIr3S#UExX^OL;i?W;t3=e@`a<FJ{5pD4!%#Yu^{~&28F3;zdO2qA~Hwv!e@yb
zBGf>O=5pso@$-gx)hG37p%7P}%{eb2K-UeGp_@e79I^&;XUz~b6*27<V!ItCH?=eg
zpcO0KF~24j8G6&M)Fdo0a{EWqyP>v`!u4C8AKgEUPrsXq2su_@;d1^d_5sTBr~Z!h
zAg&N{RGBGBHL(r7yot5QNV!akVfic)Ehhd$u?m#Sz^*wbZYyu7qQ^AHe3^(82n-oC
z`d+Q-g;c<Y&N+Nd)0an-;0=dB{LY!AR%VTeAw&Q{NuK|bXWtgh9vB(;3pKVSN*tlD
z>eVuWaucGZdgv7Rb|+caK4NO(Bxfo7^ow2ucrO23T`siDy)I6A<Pjf9J4~%>l!gAL
z=fZh%^fq(;D4G8`lfNibI&jSr#8o6;=~-(W^L}cs36WL8nrM^58Pe_HWj7jLGn@U!
z-_#q;D`pFBG8V3J(6bNt7BQB~)_7C^oD~vLw*6^y*wczua|I+lUR@$#;R0G>sQ=o`
z<1fpEO$r5#89zbmAIDQvb-toUhd1PjpT+4Bc_)GoESzJ6so&k?EflXG;Ytk7oFP4R
zbh8PezMRzF0+;xAD@d<&(sAly0U_L*VySPhf6u@ur5Kc36te3QIoH1Gwb+Atu+Iiy
z_0$09Y+!%gT!S_Oi^}DUQ<cviz+(};H>k@L&o_$%h*-3b7Arpv5`+v6m~cc)kqXZ1
zl1bKkeW8(s$H?uuv+~n-kR|<tDb$A_bwxH0!S{Xvz_6QS_6<d)R^Dcw&1%xI$FEVj
zu&(Z@eWOisoxVc|{I_;7{jc*g{&lC8dGhxL|8=W|>ig)LF>vo(fo9LM%bNqp;RFd>
zD4+R8`U@L~#HiWlPCNg1>6?oC<U@Sdcu*62OGcN2^D;m^t?Uldpy;k_M99-72~Dn`
zCcKWY=%P8IiFZUdWfU4=QTHI-;_HfR-ub~xhho~@W{PPa46q$g=U{-a8jGe?-*$b)
zzSt4&H&aQH0e`V43>@4Hg&(C;@y}369R*Ct%Zf&OCbEp28m2YjaS_trH+I;8&3wPo
z4b)rtwp?Qw$F{9Jae(%43Z5()riF`>%W;PtJ@d{9|NNsmOqMHXu364N*GqV)nutb=
zqL5E`OTLpfz|=$eJv#{@1=?dW*Gk~r!aHDOYi%PJML*PQ)IUWN>t1I&BA+h60$RD8
zJ{K4x{q@|4o<Bl!O=EEMAMWk;Lel%x@Fue!`79B~kMm8-WD|TTL+(mHmF~Z^o;fAx
zorfzb1s;H-n!=(+9Z|oWhD3~((hD{QnOfU1s7j}!h1_{tJY~oSr97cTIr_sQG(w%V
zB-DGHL*<eD_P9NIe=W3HDA3{L3dK3Af$QAno@gX=XFDzGg{jzXT6;ZCF5jzUWnbck
zzw||^VX)2cA{Pi`rLK-x2L3o7?_=62xeZF_IB|`wN@tY06u#$STG{tZDDZdtz|2aH
zDmcW9KKugcak2g&!&My4O#n(n&A0L^-f=t@P)6v%OJxJpt_)Rgv27X1C9K)|U%Pa;
zK|5vx=IGM2uWN5Jt)V=^I5R^twpN<91CwE|WoaGdDa_6TvqQn~2xwfjvuHQ1D=JMQ
z`ZgQ!{&tT&hLzw^gL?T&())>JcrKvpwa4vSVaxvc08eecu`RvJW?%wK7m@;y5|WI*
zx8MiD&Z_e*n=*oI(z*&`uA!EWY8Afy8v^{uoR4P&Ho@1%>yn4cUcznMg2o=D40`dl
zi&?*gOP6}K=;s$)>gV({zukV2R`CKKRf@#UD9$QX+x2mo&rorN$in_FW#~9*pLT=T
z*%uMrzym1YJ;BNV-ZO1l3o!<NeBSZ9CJic;A)NpTOU9!KJtI$UH*M$^95$F=@QnlV
zq`KmRYCf8?G%}=kkn8esx0Nv{HZBDq<9otO2MN(d&Ac$XObS^JT=k%tB(S8sW<-47
zRcKCkp7-k?Z>+C0)0iNa&q^6DZK2I9K;{LRHd`lKA3{^;NE^3k>C%%JR(;&2KqMT(
zL>@SE-F!p;k?WaLweA0uIIVLxj|tJb)|rl`Stw+QXGy<Kc^vCVBZ>WD(?y0uND}9}
zqN|f6bJ@R!a6JxzFT!RF<)9y{kv07&^Ol+1f076+5;8x>fO76<Vd+gU;gh1pTfGr~
zKyP5~Re>+STOVqC381H6iNlYKtY{4X1nxeEfxgA?>OTP+YTDG}1$l3=ys#$AwO*m0
zvUm9$ptXJw>8Ef6GYBR=1WQR8-NS<^^9GMyX2@bR=+Hz$!8dm)FCztl#O)DA3I2aT
zktk7yN6wpNni`5bZfO;0Y(rF4)~}(ETI+tJ1~oI2qXGgtUPIMaQR{TC2P_$!fX}n`
z8&3J=gu#Qy&Q~*xXQ=oFPI)wCQ{{nk&7FU}pt@U`(_gC%0)(cf>k{8`rrb_|i}p`V
z(jf=UAUXM$Uo?X@lZ!N0#-AW}T}bz<I_*99^8P#ni#Xm8iC@F2)3oUR6d-M(U5x30
zkw^ZaexB6Dl|PwhgPN9+0-YcDn|$;9z~mt^O1oSsOqvH2o5ut+@~sT%1PZ6{>HiQ!
z#Yx9(qEjM_=PcGrLw}!LiEzz}d7wPIHnMOdRME*K0h#eXhJS}F_J0}Yqcl#C-;LFK
zcL0%L<FoIw&1y~^bI_54ww%7t_9iD{&jQ!y!O~;hGO&i6dTa(Q;@!+X>D92LNFkyf
znQ|{iIezkF{6pNya+)g+fRi8+hVDakkjnqrE4`@$pbeHtK*w2jDJR5dV>3>KU?vgI
zly)1Ok^nkA0J&&y-9nlMFOAFrT|^6!)EBX&VHY+ZE_*9mFeW~{MOYw^_j+c1ktcZ~
z*KE%?sw0eOxc_0`XFS0*3?i8stsPo_!$JdYo<^-w_P?nT-G<km66)`reMocq+8oh&
zMEb#d&4DM~Ij{65i0m*_3Hb*OQJO6yRCq$%&hVz_)By7-u5bKVz^x&8`2djkEIBwL
z6!K6j<fTNn+>cP(XF;f!<Edu90fPaFHG`0Lv0}MK?|0hjJfuYk>w?ZwqY0)Y=<}xv
z&HQyBW9E8}gEp9bCm;>BR`iOQl~Vys<;rPy6@>%y#WXJk2=em-zLpliB5|<^#>Kil
zmO`|n-*-1d-A`3bm6n|%0U_t^y=(%mP%I$Gnawd6ZUA(T1e#|MJbT|uLnO}@nvz=S
zWBfChUuE<Q;$TEKpLG_RgBQusoiBfP5pAfpRU|b_S|GnO6+(E4k73v=rfvHJz2un*
z_1ZsUzEf<o-J7RCTj)QJ6M_DFCQq^fssX>&lFB6AOsuG)hPgav#}azSuue5^OWfft
zGS8FM3QlmYf8jEAfjJ&Ueg2}IMP}!Q33waAkt}R2@XFTmB|H&2QY80_CQl)Erd!&9
zhWe8p$fXy4$g#EFDVebTOM4q3y&3f5wsT^bkF3e~pTP8{wM=s|lKCJS1iX&*x%mCY
zkX)yjS>%Ag_`9!Rc3ktO*=gpJIQ2GFw9!_?1;B}=cC%6=ORctM@t*x{=|N%3ZsQaN
z_zc|xq(EO@nCQ6}19uv%Jh+xnJFsD6CQ&NWwdW23IId0Sa;Gz^_r=d|xUuxzVE2zH
zA-+q*I)<goIZcQCye*M`7MW6ohNJmlgEo8E#@Ctu44`^r=tbz`%ZT+lRsB;!rY-}s
z%W4H8&#Q#BpD$szsB;Y=vg7WQ^a$%2B!Xnw(c&TmB$cL(Uf1Mim+@8%A49qiF)KOD
zk4(sJmncn-bdRuOF&9=nP1ymEY?x5%cd}Ag{Y{_EItZSXGg`2De*FgbwF#48j}!mH
zZUbkFjb))cb?Rewz8FhzL*MvVi7UJ63}-8MlJ9B+zHrNVE}PfLIBGCzzpdYKi$aAx
zVo+FKbzh`rf(Ls1M~mw?=Q1u4se)e7e#TRXD6hJrpta$*6-5VHGBt9)zjyB6{T(*T
z427OP2*{>XPqBxvyOSTmeG>FXx<icsHR8W6ORN>Lg<NZzP+scT-gP%aWrUok)OkkI
z?eh`GRt%G0hv~KWrErDCU<fYy=t|klJ&!S74qi<oWbAcYSJh&3+oouwEiJgsHc+WH
zJ@7N;U8lU8ZM*xsDom3!s?qe!(6sPboR3LMwWmivbexRspn3kcR%!MXFUEP0j0zTb
zbek>Q`v2!Dbw(OqWC!9~GxoO3*pb%js6~Oa>L$pkTDPlXA(kbsh!wo;q~CqLKY!L}
z-)Ob^iD$)qN;<(80c#uZb>>i755~}XE{k(xUrTiP8wLtT8_BeD)zBb|taPFeH${uF
zf8yM+6{^|Mk>dQ@3l8JrOYTWeBP=)OqZMhJ&H^kpOHmpMoAAzDsl?V0&4irr7a#S-
zA)GhFFX??0fDDyB0`%~kDG;~y^<yj?UJlvgSZ5Pb$ml#wZ*{}w+m-f+m2=nzB!=Tk
zvr7`m0t+q=ge$==_;~Omw=mzf)SfX~5N}bL{{RbNSegOzi;X_x6(~;&H1*0cMN+3>
zH`CjUNjVg}cZa;RR0Sb8hJ#D$9oB}d^E}s5!Mq=Bng;m$w7`@?+$)RxiC1e}WPa+o
zWEiShPYj3XBPwR>Vb63KQ4*I!^HD&&QFP#Hk82NJVAnmIG_QN3C9GBI_H1fzp=0yg
z7F3=pd|R(Z<*m8O$6JTHuEXz)gU(7}^zmIAW&>z5Ep@oeFt@*Hd-A*WUE=RN^6j`d
z>hG$|Nl#O;Is>u*-~?N=MtiOyLex4+U9cMuM8CD|OBbhLw<1=z;yZYwj7-h>itS+D
z`V<Ur<}YVgG87O-O#qOba+}0~rTwM_kBC>^BhJZ8Ug)vHc>;DN4f-Po?paD26BAUs
z1+=VB6u68$K_!QhB3M;TAxHg2ig7=aTzB&F$d7%-&Iz=_f%HJZVoy#z(Mi3k-SzO2
zf`wCaYkJxtecPb8b1Rx^$5+xFQhUhWA5bJxWf393^AbC>V2)_1rY*z9Z=VSonD*y#
z&f*v3u4@P8b|bWnFk}z{T<GfbYzy*EKlf%!X~O+riWwhEH?T%>zNKQKU&ZT!8nE6d
z#Cns)W_KY$!jyP)V$P<5MoIu(mXZi@mBPQcoxs_^icR1P7d4NlLtP@bl@m-ik8Gfp
zcqh~41<|2nkI)!uGNAcL#U2NyiK}<@U$o(e04hM$zm+<kY;?2f>DXr`wcixs0)Qu-
zR@#e<R(vuoE3t8md5BzLg*`Of<X-S>!J2H{Qq$ki$8lIr_@U&X^P@F(@m>Q4H{`jv
zh{5QzW7_o~ze16ULiz#Wu;;o1pDP>{P7`l*RPvB|A*Zu;KaQVWSSG7@^GNustC%Vq
ztbZ$4X<>O_;#v7GjGLE1Kz0o%FstLR5j`Oe*f{233lp6C2%{(r{)>+fAf(eq`2Xr}
zJ<RgOLgr`+?GjqMmp{?d__UaSTNrnT#H%tDBeT1J7f2(4DM<a@D5BQvb4+`c|G|5b
zXuQFMByOV7-&9s3EFWjC79$|ZpH)yFi%>k-^d<!swgCVAQC{go^cOi`I{c?w`#b_w
zk<j1R?a=tf6HjD#&5-AMW=Gm=z;UX!!|&=WBeKdds{qS=-pqw_Mz@BVq$jH$Th0U!
zA>)bl6vrW53}GcaV1<G<<9;fwtGZ6EB+-uWLEYNXuMF_8(MgYj<^vCsdndPJ{Hdf%
zAVj*qH3yAu<r2(X<5yT#tDBqA6)B4IbCW*oMDZuL<le}Wlc#q(Ho8U*xcS;^(YD3(
zS@g4NT@-R1v6kVPusIiyo4(v@5aV-8s;H;{e^q1<J;?oW`c}sHEGR8w=vP%Hfu=;m
z%3do_2u|YPIo-OwicShGpES*oMHsdKyJarFh{qT(C-2>-84=`Micp-c8}(DMDK6BG
zMzDmpEoEH74JcFI>sqI8L5$#w=!=~<dynYyE@*qR62CT1V&<aEZ%-1A>lMtE(QTG>
zF!8?5Duc4XY?A>`lRLWa0DBC5>oXUhuTt_UExYrtx7|BPouAM)bi*y`nQ3XYIHZ$G
z%{f%2&VOdLRaH+LP({L4jql9vRO)+p?v*8Vl)YP!D^DO8)sY4L`Qwg;U0vsX%6hIp
zm2L}nPp^nChJa+NY@`D>PjA#0UM~(5&5d=!v~b;94z<;x$(941fLFFx-v$aeZuqd9
zL%c!<Tu#TY*xq63y0k7^3ST@l&c*7<XM>##!U6l15s+^UMpYv6&1^|e!@<Xz_rNUD
z&Dj;)#lJjItGJh2>O_p{fQgU2?HB|Nz1jbqBlzWF-Ydkc8yYku!}sGyZNusqKAYM!
zXh3TDT{zH~a}HQfpslDiggOL{-?TWBrW3%Mq?oEF>4Pit&_tq(<DNv<;MZI{Sbu9J
zDmbYu+KfOb-V3|-o6WJq&%rZroz{m~Z0LyC<s&tTDx4aKrk*_;zeYtoFRxOeHiN3E
zV*DsB3ePyM3?mbq+2YNwr&EVE^F%-nm(TZizo(b_1)M5`9pqw<-Df<)!TcmP`x+9(
z74{P<fAPV5`o`%l<l2fU?VL9*F9Sfa5q*t3-qbZ?>&_F0@O*|it%h@e8sA^unM2gv
z=$0ChDLj-JaB)1Zg;6)M$iJ_}nOhufJI}mVE?bUP0pF!mWJ#@e@IvFA5c1%Qb+Pd9
z%Z5@7LZS}KbX{WUnMdHJ9VJx3DwuIMP~=&4IBTABx?m1N5!?3IwJ_Dosyb!ZIl(Ii
z9-G%m&`aSCFAh@qwwtK-9B=ynd2&F|Fcg#R<>2><MN~1${|F0)PN=X{5V0A}j8JaU
za<-J7aO#W}`T%0rpVx_LMx5*G;M;r78h^89k;f!ww#su?W1mP`3vM4nf6d<3ra^sF
z)Ur_P5C@fUDiwpl5~V~8rpF1c=qiJjaxy|d7Be-^Pj8W)lAwEt2fKZWO)KK~V8h=$
zfX1xW&?iZaNa5bHKIKEq&g6;b0KOYHZfK#yIY@VonErl54?>KalNRdJq{5;?5V|`5
zaLd%J81@EL_FRZvv0jS@*j#{OVv?Pqt_tt62u+Hz%jeH^w_Cs^u5`wjj#0T%eNSIP
zGnHdci~~+u4Y;4o2~&;Id<DuKG6i-!gVfAh@*6G3%PPM7eLi17u8siYdq38^>b0Z`
z^NLp|3?iT@i+DgOpT#q4bGAD@Za&rfciL!vP<w_Tl(6X@J4bYIf3uuD7&oTZ$<I1q
zqqQ1`=7o2VzCR0R^F>}j)TspfV)*!MzW>TkRi)~nhd!g^P;3P4c8D<RthY2YY(9rP
z6MyOp)^8p$l=%9R5#12<K66%LhiIAEWX=&TZ<EX8F)`pLH8Tqg$;iA1e(`K5kYjeZ
z#ug6237bT24ZZri#$)q+Wsf1&6A<AS#HQ=lBeQqHV-16{Op<DFG%ZPoxbCCHn~~Qu
z=DHS^-=*yw29^!CDcUXw!Qi4Yk&)i3B65Sv-kW06UxdUNW6Z8N%@~)kCvC6!i4RkB
z_q5p=iOk$T5*AU-$vWJ>WZI*dL@Ji(bt40y{Q|BX%KPeh=S1j3MOmqM9m+ojSXm#I
zF!E6DFjw^Yx*yz~U5~ySKgLau0R1@gi3<CE`X0exA9;K(T`eP?B|aemFE~=TNXC6E
zTC_Q=cU@}A!9Nga9hUiX7RxI5;kN<(_G1zND0xrr3qZ&$U<8`-D$Bcer`Qxv#|1~W
zXg4Fs>muwV_;b;QGmP7Oez397pY^x1e9}v_{4~tmIoz~*=^MD{Le$hFzy42=Zwr3G
zj#md%BI$=t0O&+z6QQa7VM|s2TTV~c^agsX3hc+`-#dEuMDYB!sH8t_4ZKDp$I}Tg
zpNX@DfGZXh=%zcf!nxT{_G0DnMBfkb+ejY=QK$-RNp0KbFq%25Ql5l1A($99m!?(i
z3{X($Yg#OV*N$D3N3w>PdhcDqouM*&arURLOd|bkksM*aAC9LS^*>&mSt|C9AAXWK
z$27Txe<Dx@cr`^5z|TyVu1z1U9etu%fGsoIfx;$oLdrIg0I4|}J7&e($u_=-IT@S^
z^0E1b&*;yQ?);%;dwQ0^k!;D$|085!j}abZ3qPq~RYbTZ-;D*7w9vdp6RhwHd+6Bq
z9x6KkbRPR%Y*OaIr&0Mr0nH@${+49NmhG|9I&(z)HcG%dkRI=;m4HwChEUWQf!g~8
zq|7mmN0oX#!hf4^*JhXElgily=CaHGB>a!RhT4H@04dsg_E{jp8?vDjCRbv%bZ+Po
zCG}X_mA)*FV1X3i)SF|OmPQ|Zw(CM?ixX?XV|BA2bcMo%t6L)dnH)sn*ve%?)rWmK
z`MJ1WJgbDg{F+I0a&ehVR?XY+>|FY!=%xpDE4*sZH{(=~BjKzpZ572gqV#_#+k8Uf
zCudIS6oS8csI3(m1k9A#yyiF!b1OWC7~+cIoXA1CMhi%xtHl(^csGX|M{;pl;F9dV
zmd!6p#RV8<rfe)VWqd&w8qp^B?-_IHQwD`l=VbqPrZ*#kDw0KS0Q(Y{=+}SgbkUl~
zRr^*<;ttC4D+3M=q4NOCwrK-m%RD}N?_Jlai|PQESnWlnWQLy=1r-BaN*NH~yjeK^
z^jR>T&{@^WAu30E$7=8tySu!?0&~{*paoyymwmeTYU{)=*6x3uSAFDO_{@BKcY+x>
zCuc}S9iH!~cKwZ$#Xv5k|H%v;)nqF_Lmu<!IB#~4-1+9E@!G5s#Ed79E1TzDI|%3P
z5s0Is1Y03Q`vj4C_h|mP)SCEz>3|cdvLzs}Kg?fKzL2-t<v*#RbVqDqxGaSfe_E+X
zGpp>D%uLyl?Qp%|OEXleYq}(%tqf-!VfiX4E;e2C5BD#0V@%eq2CdUu=90h>wH3ml
z0ebw)mWoY4n*F0mNGiv2{qkW}Wg{viAH<~Vh&{df+zr>#QullvM9Er-D29bC;U|V2
z7=x%ELq(fA^fQprivX>T8%VgFErwPiM8akr%I8Umn{<rZ%pYx0js+K$Y-S?huO;mV
zI}}obD(9czsXI=r!K~J}U3SPODN(h(VYdqAbGCa$yoeb}*PH>HP_owvA@a@u+Xwtw
zIeJrsPIM3Vt4-^G;a}1;{$|-HYP2N5d;U(@mkbv`DEi7T#gu~t8|c1Ptcd8y#^t;8
zX(Z>ISEp@v_YNl!C1htrGPY7B*4YeOnfoKfflB)f&b33Q>vuLriohc%RLdYHVF&U5
z*jqVz)Hb-_B|nqA42DtSH4vNsY9&VDS|mLMk9C7`;qmo6ked*p>b^Ur{XhToj3U44
z@)SIJj~1dYb7)PU%@Ux&C|0mnTCx~;Qu@yY@M@D530@e71FLaTL50;i!c@K2axxVA
zEo#0f0_6E{K0*;=mjkikUCy`~r%m-?eJhbQjfnHxef7Z93W4_LeC6m~;guv!1{KGw
z%85^9=2~!6Z#6vQ89L;z)y`|zlaf_IKRcqFkeYl_sp-=C4KO#|C;#2z^H+-8W+=Sv
zUpwm4sB}4wawoDR2g>PIn+roVwF-d?XmbLWiG1M_+gG!4_IKMv=w!qh7rgQo{H6B;
zjFgrC{Ramxc5$ip=F3lNl;oLbdoct0e@Gn!?4QwipvnL*6IF<EJnBx_8}pImKc#IP
zuH68()_t3Nik=ps^=~On5Ig?<MD$3I_KpVJvH$OZ-CDm1q@z`=^xj29=h6a<hLWk+
zDc7s4h)h?Wv-$wv`{7bBN-qR9sF#Hpn3xmdQt|7Pf5wUs+udDuqu?osvi%-;ZmG34
z@n>F;b^o&+Rm1Jw;3K7oOh}2cQi;<A|K6M69y87@*~iHrLIq!^ms5X-lbT9fl5a9Y
z!PB3<1+4{gB+Mss20x6<)Fgt$mH_F<w%k%gpcIvn`U!N<QQY&|K@LK<^Porso>tgj
zCz)}$0;y7`G>k`rVJM9Z@xPNpF43Ma>i2s}qr+1wng2SSi$&9#Sswl9+Ny*SKzmCD
zCETb9*ISEGC@w{$kryAB-%hJ*aEeP(XtnrdE<fLY>c+zEjCo;#I()?vwjNv|8U8K)
zGjxqo_<tmEPgFOo7jeG=H)WVhTFG3^2;@6UI!HQQ2>U?d(cG2jyPmC)7zj^&Yc=6I
ziD*u4SyrTMcvd|vnf}?sWr`Fo;_u6WKVwY<-2>}nefhz*kpbCJX%nGAZJE~Z5{P95
zWadH{DUE>>TUB^_vKazc^@%sN`rD%gz2J!o-%mlqa-37x+E}Q{9M2)2vlid!`SyGl
zuizvBytp1vEnakM)74G}<cmsqKXFo>9d$+>yPd5kuvYa1Jng=D@qOh$R$BcWt;nG>
z%x$S4=8%#>ePKIhDMy@7qMF`3Qr}@oSD60HW2WQw<you27HINCm&;=dHkYvdXzb_O
zRZDpH!6E{Ki75%~vgb}Dp8`XAh;i3Op(9<U)tHP-y?t_qdF)y|R!p~1DSJ<2a9eIh
z+c{!%$z$qU&&_&tPeJHq^5#Qm%b%H^cUS)(;_D1N)ha`K{;8Kxu;m_T$lFOly0zg*
zOy%VQb<98iWa)!CZ^*Te0~Q6m@J(d53?L%z^km8ptw??lG~`~#EFjBctbU=YUPtc<
z=3@BPR~NPH>NWNn(W*n`$vAShlsEGFVJ;xBk>r+DQcXwba_VDp>?=*UV2K>{6$jr}
z%<szbovUWRLO-S`rbr0VXMpB=!OAXa1ZTry)uS?BfgU!_ND3W>yE5z0)_0W#zTOKP
zi_>ZEinb~fC#{KJtMQ6&!5KMT4?c&6RqUC0dY!wf%4PI8utJQ%)5EUlV&A*c;j#m^
zSF*N%+<%utzh()gupn+lM}HDTybVmU`xwSbUAr{ep_Tn(g-XXkW{^#FtN(*)`-%TF
z^oCDR7hGf6)Y62QC2{FF+CQS4j*bGdi);->rnTMIq0rTv=iiQNfI9B&^D9^|gt+HG
zd)YIpE=D!hYXEW-_If&Rl&<eg2tIT19yBgWwFdW%1GNLxHq>&WG4?=;94hohXcxM+
zI`U!YhQaWg=}({lpnrXl<LQCBSiIShrRRkB=9Yi^VFgMflN1<mSFQ>;{%p5>^o_Tg
zy1uOBQI-FyDACIJ{Q^X{IQURC+h-Q)=PoTw-}3IPrtYacz5j*#z87UxEfyfOAvdqg
zlpikjV}7^#&P55TTMOew8)_$(jzV-x>J^&PC*B0?Te2fqe9mX0k(sjtcuk2w{vF9T
zaInq)JjNA%L}wCMvkTTdDGRCvLfs)K$~3bXer{0uAtAzCT78&l#uPicY{hFM>=awk
z%nsV{KZUh-c-T;baZ@+6{ziI2A&cHIT?(^5n#*`AiDgWw`uq^s()jIPvVWT`js==0
zJ(=?AkU>JYP5$${lQ}lS_W5HNyaASMk*U3yaMUypsWCG!P&DbfRH}^+k5-<CF6Toj
zZZ0nU%4pDparbe`qPe`8^>BX^C;$q2Gp5Q|B1Z&d@!;qE)&^btyP^Y0i!oNLRsiV|
zL<c|aB6EQpA`m`*0BsI7ruFo~cJ+<{W_krC#qbXq-P3&xhJR}EZ=P!6Gac{|LWF=u
zhdV_0#YiSE9?C$ce+k;7MzI$y(=t-|#hY2N3c^3x@n>yrNCDC==K`6h$P7g@31O-B
zBlfmzU^tCgS}#49=kVL-n;&Kp6vwWdjRVyVS2ZVG89zkYS5fqLp~QF@KuAFVT#P*R
zuMMhjPabW2SMtf;=4~qeM?f44bs_BF+ikeeyH=@M@FT_Ku0u>xb^(C8#uh3fDCYpA
zeLDXKrtmTlKDkq*f?|?C_EamJJ_mhy=yco5^mqFIpzQkxx_vP2c8DNOa>rhbn15lS
zdvG#lGhiGJoz@`zKQK`BzX?aioQp9&O0XfG)l@Y>R|~_$RV^Nb5e8NfPScD^1|$vR
zaC!118|*BT6|J$1i6Gqm1zRv;;_id~^*j%cfU+%rDWcRlXnsZFC^TDgSWMm#muKle
z`o9*OE94TsJd<)o3O@!kw5iIeL5!m^mfU!ASy8xE5}*7BbMrI`)^ll&^2w={YwJIw
z(~9=Wc31e8R}g@gQ)nX-1fqpfY<PthJsf43N62kZ5Pk9ElF2Xwpjwzm#g(q$=!&5~
z%A*h6WS|GdJ`B)fJwd)HPGy&Fla|evF@Fz>XLtYqb$W9{T7|nRweeQTWDEW&@$Qg0
zf9$L+l0^CIVp<<oFF1&k1#Vzp8YjFF)aVQia&BTgWm~Mk9B;#}PQuZP)=mlndN-4C
zc6JFOop$(Pv2Zqe(GPri#hI)39RMf2lUtv*Z?&1c&Ct~ovV^rX)2m1I&Las)x1S~*
z5dh}2DF5A11nU=fG`{+7=hFkF98)CNAwU<0>VYf;c@IWc=ZdGT#OafW?V36^^FP}c
z#Dbt_MTG{o^V%2mA;vj8mq1Otj9;{qOQXyJpui}dIR~Yh;W3O$pWBA5F}}>5{}Q(;
zaK9Q8%(;dq@iu0p1~&61hhCk@?xo^nNo^yIrdMp4P_~RMz<Ts5=ADu2-QdECGbKl-
z%S9AAbsKaCV5idlV_vpI*N1G*5}jhT<T`DPSy8|qv|Z{*Pc!Y*(+;`g?+oP5tP@MP
zzLeH(#B7+_&_4@B3g&kacq|IT{k8wZMHV*p;~GVIBav?#RGR-Dy2<@qf(7eW>tcJD
zp6Q+*i!!jc{e`t_d>RE*pC0ef03;oSBoHLT!`;zfDi;tkFRiBe9IzZh9rwg+xxqOB
zRbCQ}p+9zZy-^%=v8K={X)H8w47(B;PsHUOObbey&SXttVUgQeDQ7RDmKoBB$Gho%
zb`2U|r*0%H@3%|LpKzol5UKTEk!21~mmdG?0QuAfUdjhmt|LahiraGnFR&>PN{N?r
z>cbc>h6MIuylno?P}L8>h+ruQ2-niArvdO8-q4AOME!Vmu>v}-Wj$C<>BdKB9;-GB
zu1u<-v;5A-+_1W2PXxwS7(W6jMPK-<01%()s&X$n3l}dpw^IXVd9&|el$LJTU?>_$
zllhH!b_(+AbzSLO*vrFTP4C1a*0M?JJc1}6Nw6e#{Vw$)H;3SzZ3k<xocvU2En~s-
z+SY;L6V;s@t4TR)C5@!|NTF47T(Dm7gF`l%IG~BPG{(Z4+bKGzcom9zuP@B7v5F}^
z_L4<3zJOByk76CM{q#6~wiH$GAoqm~8PKS&1k>IKqXnw}!4T-$=~o2pn&fOUoQ}sw
zmmItp)5uZTtUo^Lwgq9VJ*`(ueyC_#4D+lFsTYd$k#WTybZU2X8L-B9E2DD%yjS?W
z)(Ys;J`M~0?s2cS0Cogr!m`yL>VTpr*L$GYN7&Oyms*;C^EK#fg?IK=^Rf!GW}_xt
zi4m;j`%wrw?jOmOq}-iI$YjwmKY3A^q`iVVD;C$rYYF_Hnz*SH04z2gxfoYDJFnc6
zIA~!d-Q|$HMH?t0uzBxqWa|)^iMwuiv$v{Fyh)55US$lM|HIt5=6(=_tF6>S5(=Rz
z<9`c+x}06ubb?2HKr^sDk{WDHEZuZ}G^KQXlgn6CBT(OHc_5bArnBL<T9CT#ClP!(
z2cWkbEFHMY8*bu|cXa9kfyoB70(2?#m&d}uQrz<U!}id`er`?$vWJg6I|vFC&{!U;
zW9sDoMaWe^>LP)dBAnc6v@w0Uoxk?Y^W{$RbLwOyajcGAy<0Bl?nh+)W%UDQrAF&z
z`a*+A$;E-nzD@;1*W!0BlvE6JEQwT2v_0p?i-XjiHU{$Qtx*I%40q#{Js_6%=T9yD
zOvRWGnYwH$!rxOhv`)|$1&_1GCqo*Ee7Bj-!;|NP8-c>(Y^PLDa=7%;BXWXAoUcI5
zsx@R_c1N7z{OIVt$0sgaf^~@bYjU~l9z#Aw*|m;AON&d}?X-eS(vgy2LnFFCKCu3>
z><kF%w6Er>lhl@oXEBT^XX%-S+l~ssD@%X5yh`S_G?(w`Hui~alyN%HvEu(3<a9~*
zOYoX86wr_nj&59iRn*QDXhnE+eFl85r|Q$o!Mwf&oNg#McQkfc4nl2Z(--2-yC{)&
zm&F$zB6=}RbDDS>Kji^9r^e5E!&%&3$1KQJvYy|6!C|0nYYFyHLkVxOwG6n)Tn=!$
zPwNG9!&&=!f<2cMVdmk6fSEO7DBC52iW*RU(6qs$iV*zl9wC2XCH2nNuaY7{B`2z#
zP7z<bD^t{*A+Wp3QHPe<UhC|f%`P^b>mK@ylsN@4YU~sjk|fZFbZr+r6Ix~^bux__
zE-YFhjO}?z1L6@*h8Z%q*urm`yunKj@kf;X`JxgaJ@P(uJ>^5b6Gik6dBiAV`!>Ln
zi*)$B<x*M9+k4kZ+!`p;1r-QPbeVmrEo@2((L-^(rLurSrSQB8+Lc({J&Bj*%4l7m
z&;an&$L0`~vN7(7rn*zhkVf!>FBKn!w!ut@ax}U!{_S|j_m|Ok;vk_eY62^qbwP~W
z=h`_mtz+wBrOumYP-ZCFit8ZjLWyw5CJN;f>ojGuRinM#WOW&q5D^LO>ty9P-+km3
zhrc$ewe6IE=x1p={Qe<^9Ln}Y++L4sA(dVCdIVq~OQL99$k`O#fPC~lOU*?^G(Flb
zCG3aDSJn(U+4*pee>m28g6?f3jql}_+%;OaamwGXCB4{-9vkUO1E*_j>za|tr*u|c
z^(FMUi4C9_PbKNVc<ywwoBbcj13kD43i%3WjBZpdyW+Hd8^=A;K&qK##zJQ5&$Fe0
ze?K1v$k6)%V`!iD2IndjG!|w^p<G@E!dT*j8fLF!&}xV7%4gVyK&Av(7sbV5x4d@F
zzx;mUt+R6~D2^AhDZ)7NWMDJNhS76|o2=O%wzY+TS0}ToGaANCiaN_EY!zBtpkQsz
z0fsK+5ws>NG)1=IEg~f&Q)skCN6}Gj>4~!Y65*GDNhU_BSNZ-nP{2-!lQZbml)biy
z0}%S@+=fV!D5Vt|a(lbWBX5gL(kR0Ikvw@~O!F7&rQ{WWhIB%_c9fKvSh|D5`Wl@2
zeD3leiukr|u_)w$nYt^WG3J7t4g%U8LAs&TloDuWcwJbk|1Tdn4B6+1ah4o$ndp{;
z20eR_-4}Z@2yhiW{mzg#R%64V^T))a`I7xcrVy>iPNLl!)$rQ$4x^WK^pMIP@VS()
z%sW|rEUV`{g&g6h5=)HC&|*9AfJaW?HWPf!`6EIkH(7`Ve50Tjnotzi6wzVj$pujw
zq;n7T3L7})vQ|hDdp{$kGP~F-%^+4%2mU>cHoe8`&}j!n;)17AqE8U+)E$b@c-Q%z
zWNLu<jXox&wkAjR?l->~i9K0K#YzmpaxZ?C<1fbT1-RMcohtjKU~OFW7Ejzz`jw;?
z`k0lLH~oBkZO1U_MA5c%d5TB676u0ji2fBRAvxhuF|l^!mEcl0(MdvFu98%O1mL%R
z8xifi#7o`AiR%KLn3yidbz!UAOWP!3p>lalmT&~*hB>BhI9vj?>$g4QKh(Or)eSS>
z8e(iL)Mi#P)gFP={BS&xJMW1m=unm{k>W3KaT?!_P}Ls*(S<4z#%8+t??X!8oeOvB
z1(nrh*Dt&>`z6a}D@MLEO1bW%_32qWZ6L~}&|e_nX`VmF8}uP}uLF~kq?K=wWDvHF
z17~A@x+)JTEire(8#*FA#w;wtlUyk(#1*C#{OSCBL?e!*(_J_ETcbGj8qQe|p;I3V
z*T6<7Nr#C9l{bKvjWzs6YX*L59ybaEUz~A>CvU95VQw#Xl^6+^9=?TG)NE{qh5A{!
zYt*F|#t{+sY-XHL?bEdO(O^w8+NLIs6blaJf-^S#t>S$3NFCFk!v1N}*8J&*bYi+y
zQ!|HRp-8l%-i6kpT)b0PR9(vGu+Z|G$JsDTtSeKVJJ+YGy!VY6Va5)~mAu@hU0$4(
z2w0h3(pzPe2$tV2sNB|wc-kuP7m-bvQagjcjTaq4;ADY_lFi<R`#L}+qyV8*poZrW
zebFvM??!)}gW0-b1w<P2fSc-$P4@kx1qF9XLB%=;0H;VgK&^Hch~`*FXT(ku%u;<}
z_1y{wyfL%Z$J)v5KgcF;r7pwKc~2t{2CkbNBrvSBrWc^n!nF}Bh{2j>*LE*D`TaY|
zWm-OA_Y<fPM5f-F5?|wt^{d5$+I7P615nC{eD+-Y5mJnGW&EMqXhztc#im%Qy&Z3t
zOJOQ5HJyVRCXe-9ewEkJCb21&*IrZDXK3ZWVdN7{=2o<bwPTI7f&P?6E=Yc~`rm+g
zYl=z5@J)ii-}P}QRl!2Zh8rHWz>5V_82H0gfa1`aneu+z*4{QR6FUBDYoW9k(>I>i
zcs;@<ojRU`a~!$6?-s$tv0dbVtg~5KW1zH$xK^ZA$i9T8`<T1B3AOUX7P^j~koA4I
z$pXV}1;*U(;m;6Ik&}Cg5B+oAKhS8mqqzs3gca;R;Y4c>7Xjwx8Yj0*2*)Vw&_Ob6
ziP!hCaL#shlrpqe#$Et(Hp#zrsiuC?@QHSwnW{GkE{&q|oP6v&HP;3J+``TKN{aan
zvOiDg0%&O%*F<`$aL%+9q%Rgwe;P^Og3<;a+1=4*-mMUja=YwGi3R@$tc4k;4oy2u
z<jL`q-t?Vr+J4e869i*svtUc(B8$PZ;5fksV(;2yzF^IcfG(QcR)ZMW`!iN<5n`K=
zbgVA~&pmEV`j{~xkaGR433DqbEk#Rva|~mkoE3H>dFfZyI1sM?lz`TF6tM(?cL2B>
zY}cM2(KB*@6Q-}4mIpSkI-gFoF*UK`0De2YCs+rfr6Wl*J;21U3F2Qsj)tqi4zvL<
zZd_1s0z0Ix8qK6{@;EL*1?|ZT-Awn7ryRg4CR|gs^<FQHUH=9<!Y)5JGU{nK_!MET
z31RuMs%heQL=uVG?vp7Y8odP7oh76V4QKgU)F9?#l8uSO=^Z**APtjBI*SfEJh(Cz
z5UtpX&}GtAl92w(ZMAjD7=}RQ08q-aKa|1NHRDPr{Zipwt|w@BDv999em&$DyXG!_
z6Q$!StauU--6<sPvtFMN33Pz5uPeb=JYJE>bq?S&du{sT3NqG4tNo3<2G?#OC#p-N
zM;zO;fgNMAg|t9D`y#Pyyr&_}&=B%Q@=F84W}~`_RU_#sCL6}^*_D>`hWW*R|Gi!@
z7)!7HHJ)p|Jo-4TD=2;A#t%u@J=*e;i$#upps4wVcr{Dg)ups?*{zc!AU%-Grcz1J
zH&)`=ESA{u*rdTRdU;d1MS1!!D`2$>es6?Duog`3xW1^Wd#<}hW*~k7UtFFSNWDQh
zF469rOG^&LcDK>DI@riBc-9L8$YSnvz{q5~Ls8%Z1J@^JUEjnO>hI<g_GcG2`Kfff
z#zG{mKhMRU{1gBIa^oc>Oal5_tPuJ_ZUVW4>wDx+d1?B6ird`qziwk@+PELszD&*s
zU$StY=HM_Dt4dlYgiBD~XQ?96AWoO0|6M@>>+^U9c<8u169MAeb}8((8xlN9#W2QZ
z(F|*D=NCAn5lAgPC6%jO*N-VD`2p`RmL!!#j!wcz6&fh_;K%C3SGC?7c5qLLlAGHk
zO6w}3Ebv|0I6zj&fBw`pc<=&(zsjlO-8utnAX?c&l?R(1A*Yth$3Q}_+QWa@o=sR@
zc(MtWW9ackV!nL&JV<}BIn($VQAQ%KX)3Vv<~wx=jLaelS7p;LFGlWk_!+xG1eh>#
zNOq{+e)G=gwvEZv6`M!xZ=rzdxZED+?m}17Cbr^Ee7&Y~<tdTciMyy~0);hNun*sF
zL`?S1m6hY=atAc5JBy9KObb%q0*^YOxFM}PG+C6I(0SC!!2XBZB_6NRFQNwlkOyDQ
zYs7%4b$3f=*=Z>j<Yr>qNw)4Rzi7sn1~NkZjnb2a&-@Oet;kE{|4?~9<T`paqPt6X
zcj+z$7*|LL$5+)f#NK0r@%#~GHlp_&XfZH4PN?kbrvKL+x{foR+>>lDb&)*<7PQJ+
zl}~c@{<2zeMQ-RQ4TQh2`xKP=3fKifuse$YS0K9S!|gv=Y4FS(Rr~P<QDQ60sdyCX
z7W;iU2uS{8BRJK(*;xg>)gGfBLrjC>-pFfc1Q>YqA35(@gMUtdaZPP@Hnqvzq@b1?
zW6y{PbgxqwU#I4NRH$Y42tPO>`~8v;e5|p|@G)EB1*UnvPeEV%rypuGOC7FP%RsyW
z*h-dis<(`5R;?TpB5?wb)?}yqaGGpue(OdRM8YO@Ib_<E|CjiY!w1qJD@*PGFrT;c
zi_h=dDxsm<DR%hV-dHMAcw#cFqByFDBt{p}#b4`;ol~W9leDG0HBv}=w+OW@WyDV|
z(FLd|d`9jh7HXF%G)iIOMAHrhXXOOZA+ft*#Y2yx*%|t!WHCsnEM3S2$nd%3%&s9v
zZIwL4*N5ybQNuqdaMo(Jg~_qA@vJls{54ff1s8e)6xZ)J+7g>#r-xnxsZ_1KBxv+W
zldHvDAe{0OSs?`SCQ`sc*hbB-MTnorT<jS(92OyO;zOS{wm2T&<Iq6RI7QPV*fd=-
zAl;$fR4IkuewPqB?tnP&oEnW_KG4yX9|DNR5C?j9{d37UjcsmBl>8ThlRSJ}6EqR+
zaS(*jt2O?$b@uosUb+)2dpFHs!P!g;2|^H1u_W!w+E7dX&kx|>A;M{wull(pyT-eU
zZvVLx8>0Nb#UQ?Iia|w|IkN8?XYG2wY;vg&+t1!iE@;H0t5p6#1q-1OU#BwC@KF|x
z?6{yUFxwnePo0WR`CGWoI$;-P;EZ&eD1kmd1|MEy7TPmm4P~s)$BpD6DhWVxk&x!>
z@Ew9q-dG;8-7TzCCQZ>f=@@X}uwOPhx4xfKD>r2P4f`(kaHnDby{4~9oW9T+Pw7MS
zB|({jb#!gk)?CQJ-XBPbM!zS{pu(EyogzMzws6Sc+z^drnuFKZqWv@m2V0lNR~d5|
zfJ!9i<-3%WSAvlbIg)X|aST$zwLW&ECsgms)Oa;m#A<~2+<$-ahmlpLNvD0|F9VA<
zT>he%=K0)<4a0Jzqxm}eua%;e5QuiXnFD+YybqK?<6Z04@P*GJkBhr^!5mo%m!wew
zw$X<i5~iDF`#ENBulbLQfS?7Y12K74T14Yh*(SozDJhnMQyx=%=R!W)TX_|VRZ#o$
zB=WmXmZsz2lG1$SUOZRjp>b7{5d@x|wli=ZShiPEIm<?6k}T$UR#Hd2frD-7ee6t!
z)Y~?HM$?jOtW8;|_ekfw(FF8W_+o!WR0csGaMb6jzfq=&$Wb;`_Hs*P&}NPGPYz_c
zeRtPA7cbLl8d3DuhBkG0epgTl2zVlk;D~N39cJ+N<-enT5~*cD9=k){p-5RG!As!y
zI(G2)bd+2QPD+smJk5W%;2REd$DETU`)RUujz^Mrox-yYKF|~n;fuW8v}o_IW(t?6
zI2giAr#rZU1swY<X@#ytvnwoIi%ecsqx$<_K}@hKX4;sl!1_C)>FY=_<qZD6lBZ|-
zxT5l^1|_ck72!KFH>Kw}J2kFM#SF*@0ckKJ>}FRKtgJyruJ2kG>{Xj9JWXgAY)k0#
zj>z6xGCz(E1B~hHDfnA^b;E|i3AvloNWL6`#896R3NM$CNebefJ1IO8>{dm3olG(K
zqx|=?3N(!fLJ@1K-#RvAan(71U)7wq=7!Gw(U`IJk3~u1Vgq1${{k1vMMJ`1iZd#4
zy<MxLw(}Uy$9$Is9efd8q}-)hu_<o|pJ-}8-{}rEu$h1Ai5`U8U?>4v8@xsb%uIM1
z$}N4$q-We%95AG?+vF@AUsa1G=UWIQGsuxk=fxD{4Ac`j_KQ4e<Dd8=9z{)LRtvG}
z%>q~9@GJ4pWXuR&R)wz$Uyy6F5!<KsYV?E+?A2mrj5mz-AI)X_&>QkND2mRLKER1C
zqoB<5M4yK_&=nU)lNd1g>!M~HI0~MW{*lvO5LTu;@?<JBU;M!g4|W2D%+-!aG4cS<
zG5}xvdi6Gox!Lh`%r(-b_R(y}NM@jaCMUw#_^ZH(fmwcp%PRD+6@SdN+ZmHC@`fby
z4`!#lV1o-u?)P1tWrC`1NnhfA>#Ex6*gS<Rg1CA&hRWINDF{&EVlj(=V!_DeE!L#t
zRhEy|8g%AyWpg^0-TGWGTP?q%$>n{|4lb=>8c0d)R#T=fBX7!%`0m7x$7etNWPP6G
zl7CYff!}yXuykWSSp4)sH=;$?RQuVlD~s#L!O-}l=j3mzE`Ss|$){A5oYt-{0b%f4
z1Od{v6GcP4Um!XV`AH>faLkGtp+q*Krp;cC|KBjV+4vy{-gN!B#&)l9ewkppTGEy-
z(W>KYenrU0)l|s@bfg(G@}q<f*4#jLBEx6Y=0m3p=CVgh2CI)n&-uwAPWOipO+)NL
zC`CMe0$oL!3oB2<Tu&V{@<FGeEMtH(Oh^{0L%{e>QaPG<ZOX;6+JPF`-=+Y@414)6
zMnLybY;cydulqbez7=g~M8AtDkf1$N!52i77zpq^y4hl%)4?TV2Q$%qAuLu0W<<!K
z2{Td+<Tq;0B&p@$%M`uuenCPr?EjeRzx2^|ow<_&!FMa=Q?tN)u6*>&cQtZrgDRzD
z&8@`l9a6cQye8gZw{^SLV!w*)4ht@A1AG^ypa(+p8wlc`1WX=Ny<H8wMXziU(l4yJ
zKmw9mkcqaYaQAvN<hKLP>JRqUC0`<0;X#tx2)XF4!g<(tRr$(GMFH5Hhl6;1G+||j
zFS#1Q0dB@^crMMDU+xPc^NpYSOjVSH@OTMDZN``8so1+$Wiv<<cC-jwl|$Sl5thiN
zywgy%O^I`F$F{GMvC%M$vCvT-&q0;E<8OYGAuC?El?wrYvi!GF^?BZ2b%J3=Ukx#E
z+}T3e^PS7RNZoFzzM6R4`dHyR9ab~*X*EeknsoWnlB*E2sD3cB%Z7D8LLZt{AJP(0
z)&oG$vW@`IYzTVu#X|_;!q5%1i8W^(YoUsK#h&r+y@YoMU|~YB{$`RA4(MXd3K5pp
ztzk(3f`-x8C|V1Va+Qx>D#P+*oj|~v(FpAm58Al3#AhCH$vD#&CeZH?T8h%R5rdD7
znO&GlvaK+Ix^s?>IUUZzo0Q^7!!cyQ;hXv(aAT8tT5iVS%=FKiR4B-M$M~tPxWH<f
zr2h#TWqsuC6`zE)1wzSf@#9#cb}L!&L(Sd|CMyR563POH=j@%Mqs}&*ly_Jh$(}d@
z>KFgtPk2UJILDoQloEn39eV64Z2ma<CUI*oD^ZP*l>Vw!Hm;=+bD(nd^c$mawb;)B
z!RMh%Gx;r%<p0F0!CQ}#!#oDFZ&AC!>oeZo;cL9IyK2kqC01&`usi~vH;`#_xg`Kn
zLjyKD{M>S!W{nhY1#02DFl_o^MufLtL-WYo_mMjC_n)L}SeKn*(-IAN#Z`Og6PHg^
zI+L*4M{$DIV~G(T5OVg5uKiV;IqrB&;Q(cXubHNY`4cj9J0Xo*1qyHlq}v9CnyL=r
zl6FG!`OIUtf81I<-9uzaKdt3dSY^QGGkk;0>msCI<_@Z;Z+%nl<B(;WdfxFZ(HHY>
zfTI#qFRnjpnY&2I&)#wt0Se2)gM*o{#h{gBRbay@FgvF{KbyMA(CcIi&*ud(->>G5
zpy}aWg~$LL_$`uobva2Cj=gaS!GyO1sLuAhE3G>PenUzCS+t}v@mFyaS6Q)l1BOdC
zV_HvoH2TJUkxmuH0j-E~BFiPTf`S`Oz6{Cj<*4QpV{!QKJOs7i!l}>r=nB_36Y3G3
zCde$1ko$p<ES)?*9eGxfX3IZrNYaA!XCJZw4A;8-Vo-Kfc6t<+pHckwz4I3{T88)1
zSyAjhN%j2t2PJqhK0z#bjBA2&zZ1qEI{myp%)q2&QRTAxRf>n@ewbFYTav|IRq7aS
z8^qq88?3c?gXPK7D|RwWRO@@b{HMqSswt_Dn-r3=^LP&RXJ=gM{F>yW^Mj0}OgupR
zBp*Tu+VZ3TO-?!pLlW+zeT$Uu&geeToAi1Mq0DSJ&r(+A0VfeArryHfm1X!%DFUBe
zd%oc%O^?x;4}x_X1r?s6gIs)Y*!p@N;kKlTik;ZUq`+n$aEtUK<s-WjgFH=d-({HQ
zQ2Dr8&KERvOkyN8#F+Ip_>0B;bvy@umJqPn(3fONC1+wVu9`h9j^ltAJ%q;(9$=!X
zM$vZ4DmVo2_m6O)*vl)q+B;4*CN5t5NPbyHCr-{0$CCRmn&~n#8k%dOc98|5A(%E2
z%Pl*!e%E$~RJ*OLiK;M=e!9*#O!O@Y<nZIh7Z3SHS9_szD^%|&(GQ`r<Ust(;7$t~
zcRW_(9l9;sEe{X(CqHRl6VdhFgz<}gwa0Q^oJI5u!v~H|=n+H(e8?za7K)qTiMF_P
zm?13vqkk7{ZPxd<9JF@aNY3v&JI!P_3w=I)=)G4gG~Vd3FM1Lo5X}`ba7<aSDyd@~
zE;1vrR6LK5om*9F2lvXIXT;%fP4bt3ew4aC^!j-LXDGEvuWgmsZhsA|_-AR=Q8*R1
zR>`g_9D>-<%z)^L_x(hEw}$QArKs3rLVcd6NCF)>tjAq&unv;9{{`%={<)YeyVJL?
zk5-7Nu#yTPV-?~l7<#9$fwo?~pPRC^dHl2HGAV+%EF98jJ!nV$ogj3Iiwk?}GQjwC
zFs45Mf$}ToAZFD@icd4@i<Skb=Ss~GF`elonTS-e`n+_eo6Q)Zd8BCl#xwB?v7!Ag
za4RUd_(DT$v3+MBLQK_CgTvZMX!uV6Q?%`3sDAZ%S9Hs<+H=q;gu?Z8<<$!_1MIAa
zP{L`BVVVW5zXxQ%yETOa_CrY;7acut**bv0j*oC?EC8@h*#CT=dcsDlc!y$r=L~K%
zv4)8M?hsSWkIG;PezG+*-xYIBNTgFS%ifZv?2f4P$y_>P%P^s>QiR8+1Lm~xw!)bY
zMHdO1?BX$uBis^<V4F<$hN%8UZ<u_6{U<RDc~A4bD6Wk9AR0<c&AeW>b)fV@<mnms
z*)N7H|Jqgz&QLiJ(*?;OgzvH!hvpL!eOj{xyH`x)Za3$XryY<o+A=|MtqS*MYrD%F
zD6Wj!3y{;z{lmOoq)aUI=#V)aj-(+^c#zLwd0VOC;(OHsiKhKkZ7YJcu*4<O3{-UT
zWks1PDH#{>T%Bbx?Vj+t0%%-Qv9jvA_%6Yb^P?%6630)!IY(znO;m~7^IlK^7bE?z
z@E<~4dezJ(p}6PxRy6Pl>4aws2+n{-o&YN&l)Bfjl)uAD3ucwjwyZZ(K(Q6lswJVm
zYggUF5hp_D#(L&i7`&mr@uO*kokX}TP~dsWJO!~9atzm5kIa6CeVJ-%l0izITf}lv
zs3D8?syom>#O$J>Fq17~q<pop67}}S->8pXRl6V-?yFk#!s({S`cxGYHXJ>YB`RHT
zqi=T_jo$&#mot|p`QlZO$3>9{!ZCOV5)DT%NUQ*j6!Kthp!wWbgr;KaZf8KnrpTxS
z&vMNx#x}@YydjuyIZQh#I5jwe1!9?AzrdH*>>6MT!MJF@i$Y(=C#$``nwZDthPB`=
zxpj$09E{zrzZ`r==ro}2MbHdiyo}j@@6uNu<tM2ta8_TERV$XmC!Y@lmkEW$rjsZ_
z$5Q-WU$IHXsj{aG?#K7*E7uyB7wFuzOU}UZ?I!zz^;KpZ<bZ#%-khq4z<qJq@m<QQ
z?%P+-2V3)ITTnm8tDY=T1%VI?4=Lxg!IHlYZ(eD}{qY}&ca=%2Hn54Rg!L6-XP=Yv
zsxmhv0_KDiWR^5Wzmo7Cg0<Is6G6m^$A7$h6c2m)*I@;y-yc<9OCLWK?jXw^u9|;a
zY~4cdm%w@n@S^l7TdHOsjYJuvG*C(qgqsj);o7M3Wy040Fk6y!)VgrI6}j%h;4KVf
zCV<S}v-_?i!A#J_V*F|LF3>a&UHiJK4Q-06wo&wnh6BQW3=ml$<{&Z>>3S*Fdu_iu
zt192WO}fX0p|xq!U{2Lo_<{L27FR0cibM=V(N~1VUSptapb6vytYX?8thB%5Zu>`o
zwu>Mx?Ip$Y=YMlb*g&jP4=jcm;XgnlCntu7Vt8a%>7Lk%xe}=e=$#bXqsgp184tWO
zE9a6p#$J8MQ{V}KB51FidEjeTwreISg|K!<Z<{#N90-~Lx)DN(&r~_ur;sZ#T(h;L
zj^|i}#hA$3M>(2UrRjq9YfLX>9W_SGc`GI8DG=t^u|ZazOWfSh*=1FU<ywh|DNY6G
z9v5zd%roB_lfI;zYILgF*|eNrf7nRwOiRpL0_BmF)z5yp^zGw&KJ=ZcQJC^yh(>2X
zhY`A;2%BDVCpU!;XYtAHl8v`u&E+0NNa$9tnB+7fX!jlLKmi$bf(Sl#G-GBa6QHjT
zn(oIs$^oWwUaA9qo;S+DOd*+jg^q>vrlJVO((bb>P<$B7XDplP^9qd<y!sT^X6Jv*
zhpOWSQ8n|jq3_obcBH#=*+KT+Nix@)ZBl|tXUTYV-mdxceTC$8fo!NHZjI(b@2d8<
zc+|z=rE$54n2~9x-CTHH5NvTNRDe{L`n-9O?kb~g5A^4kWFwu3jc=7qS=ue)1!m|)
zwB~jclGs13|LCaLMqLAXRrj_~nuL;CyIyaCUNMgI$F+js<x4*%VPgiQB4%{rtPoFm
znkA*o%lVpzlUC+Nci>|``_N}yx#)D=NGDejOvi{`5_t_qxE}J5fc6<5K1<!3iCjW&
z!-y}M5fcMfhS8^yakrHfY*@yvN9lm>^ucegP@|JR-j&R~YZfSt!L-_)uO7HUUhUbz
z#FPIN#<xY(G3JDoV~0RJxQfg}_thein*nCI5(R+%4HM-*<~f-a!--XL#p<;u#i7bZ
z<iXO3DhYPdo*KjmA3eUOx|P%wn3F9h-|6;R93BZMDAH~Dbxac2OJ}d(FS_*QknRH8
zl7Q1#eiz~<yJ(B!cnCc}f<&0W1c(<s0`*EnNK9M2$r`BKD4t-|R}O5B_1&o4nUk^T
zs5o1gZM?cT8Q{I)mX*K+Be=z|hpE|4FWC+tpFz*e!jxNF=GSdIav3f<M0e*Hw(~r|
zrRx|Zv^U4a1DS}f=alcl5_ruyU%xkD2)%}-e5M}CPCKGXFo}iUj_t4QjyrF<oa0oe
zr9{?;Ro;}0l_|}<j0uDN@*uFfWvgJZJO?&c0(I#xuNPArt&)nt(`CM!T0`G4enI-2
z<t`Uq?g0ZTPOjc`xQz(^5>bfY#^KDTJsA6LqC?H_9YA8d1WFlvcQFi`?M;?hjff|j
zu=Y&)TAGSynP*`q^V5r7mH`Gu?1=`27AM-6iUZLJ0^mZVjq-s<or!7Wl9MTJ$A^;^
z6ISfGRXQEMW4yAG5mwK&(>LLEcF_nlO4>*KAMo3q&IcM5e$weIH^L|8UsA8@#AjxM
zWdSG8kY0I<jAB4`nm0>Cs?rWYFtEG7@CWFAg?_SjAcgUgJ#Y`)r5?wT>UmoAtGGBy
z$8F2Devn-jN-q=D1v0jNopD5j0e^$+TXz+ZRxr3<+>xW`3eJl3onKH6%MX*0nRdi+
z9Gh+-<`dqZP@Adv3l^!n^5FEMK0?mZqESVul7*(5Gmr-1Mfv(N0~w`a-UtTA41*$c
z%N&$8aT<z#1h|}nz)l8l_ecfBR`w30Vky`-zD6FO-!K5cRm;JOg|%cG{8<n15ChM{
zw(_ouBRUntBVb9<o;pAu0-E&yqTSjJW?DP8t^|2|>_)K}C&XuYoYEMK5TT#L4VY2l
z-8wv}PzDUSEHpW)SnPXQQQgk2wxm-zX+VfF_E@;F>2e%X%G3R}k4|l@k!nO=``C-y
zA<BY1C;GJTQ)d~;pZSPhOCcJ<J>JVH3x$|ymrDFTYftQycPlZ&$#)3>1P&5np{7ar
zV0~w{R0;&Y2{|isz$=mXF?Rv#3xkT|u1z@kKqkrlXW=+!I`R<+ux;U*R{SLac-W6;
zIW<!qN;2<+cG~V%-G+09EUJJA{+#((zICNrHRl@Ad8F7@NG_}-)6oHR1I&ecUNQ|!
z;xj=XBx|aR%&{$^7j-bIs)JG+T7n?R8li5%t@+?$QeY|Wc%BZpdHTSe7-3>>Y+HE`
z8t!mWD~5>KmQnzp;0J>fw)k;cn5m3<W1rI7T5~vG7OIa)Flp=Im><B9mwhJ^_^=(i
z#7@uQOY^(Tc7%F}cX-f`ay28xE#!PPQf(l!SckfeWJqbU{yb$h^iH(3^13!fXTUs_
zGtkIp`ckfO_!;Y!ais|ZGG3>^P2F~`0#TnN-=ynX2{>PKGROhnXn01_{>SgLYXs8m
znOfpF_Tr?Cw&^5IEwvA=3}W^#dXnLbkm&o<ZV*UmnwF2tl^d4rbX6D@=O95mg>j4)
z+e{J!&_M)`9xwo>QnF#f_D}YWoeP_b;BIUAXSY(vxkGyyqzxzZqri#s!IuLzW->VX
zlJe>9>4R#IsPeB(uXg2}X9KjcYBms_zgtLGo29FO4gAtwszR$UYH99yJm(DlhAd<z
zWHs`{)K^-JFf1zs-SrjZs@5*Sg0)0Hi`X@aq6`--d?O1$5^_50#SzOV@@18!xNv}r
zgj3kun6en*MHkaGNETQ+KyR=QAhYMt4jW=vmMou!RR^|niA6S{_pNg?30j0k&&pAp
z!fXh@FK_|v?n^U`k$DdA*O+6PM&kK5**D<ol)azbpBZ!VI1@O2%$eX8t$Us+`rXaR
z2!h_{*NIn*9XvFDba<k$H=C1;#rSO0)eB(P37o!R##Xx2W|7!!(R4@F@sR1TpmZ!I
zSoqZNUi;dhRb9^eIJlaT1Q_$Jf0DI#^*#*Y!BbKal@JDB)dkPAu}GB$z}Zny5ef(F
zvWN)4z3!{pA3sf)EEm^+CWi-$bPnRW2OasfDV!cQ;#$h9!oL$t8>n5L%l5M(d0*En
za%gXVWw<kZT<Yea=}^8wu@7gL0dVm+H`-JHH$ce0ZKFT2v%Oag%%t=L!fmYKj>X)A
z?wLf{FxnS@MWR6Xt=W{Z>D13^P0YDtnS25_=_=oEhV;L@h)95UlpFWZun+F6#K}YE
z@Kjr9s)M`XP1hM%UO|dp@=4C)-tFF2IK;jdsPaWiKPv9m%{Wn%qEXPzsQ(@k;$?A9
z?xI5Tyo!V}XJSxtgJjYHW*afO;5{kLB@YJ_P5jAz9~r+r4(8#TW1p(hn=?11%G75{
z=O#I^-7_wO5UC&!$O<MHKvs12k>zm<jLZXc*!#~DW2eJ~UZOZLx?C@XM(Kd#Xts*}
zQXGVI2Q??+qbXU3D9uCG_vr~N1I^hHxDkAn#P8kwl!(Xw-$L6ts?ITXMTGV$sE*l4
zSZNvRr<BxVnk&6VWEK7^5-z`wBTy;o9iy|zRJA#iddlSTvj5=AB&~7fxy`dfS+^Sm
zdiM1QMVyHCpt+T1kO+89YWQ{`Pg9vT*1%*E8}y|tkr4#DEx$dPD#WvwDmXzw2m$Fu
z|L8iWWhWv#Uw}Y|s=r6l*PrGFhmwk8Dso!>NuQ-52Cf+dPLzjEBZ+C{id$)WdRpar
z%urHqc8lp(P$Q*McVCs18xN#R)|}%3z5Z!hK0;a%Dc4Ck=~fIO%O_G&`>zshY(x~Y
zz~h2-bhx6Tv`AT+@#IgmVNKU53T#RJ%fMhq$1jdbEj8wR0RokMdX}!6JYb2l-30IU
zL)WC_z)7Kk+D4bT5kNTK(SL1F-nwX~Hy}ArflBZYxBgx@T>GXCBH?QTAEc}Ur^>qF
zYI6L5jF(`3Uhh4mviSbi(<-(eftpfpLBH%S;Tg1|JW&@IoZmkP+K#z}{}MW)J{yhz
zYSBO$yO`s!cT<2dy8wj+l=i{@kp+YjFZfu%QF{q#dYD9&FA3$MPyf(zx|%Bfc9<pY
z1HyFJHNO#W{;i9=7(WRPx(704#k|y@lS`mXe~78VNak`p#AxDLm&X(h94CLOU+dNL
z;?A6MAq~ibcTgiwilBjNe}~m>*)9=iI#<yQ29X1<9c>nXG}rdh7tNS14nrOZZ*4Vd
zmfs8|&P%v2Cg-BR*Q-HsAe5p$FI$qYoWDk3%lL!|oisY41lZjqwhF8Nll;69Np0kp
zA&bQGDI{hiwczn@Dw(Ro_wK#KVMix0_&#nz<ET55{LM`ylXb0xq7y?!MWM@E0fso)
z$eAY1=T~q>CQ+R-8pH2lT#a>*<EBOhZz?d*=@fGbfC#N~5vjv!ZS%;N3Cq9bi+9?a
zVo{iZyQMM9fnTyN+kjVOtnFxLoIVg~joPZJ>#Q|CBj7)%sd-+y`0iO^2i5i*L)=(!
zTJ?riPR+$!tLX?`9*&rw;e!e52)mVwMVu9>8Yn*x%0%9&!7$p7?4s%B7Uwjjl+qI+
zwKgBPt7*Wh_TpxT^-20Y)gfVLCSB0m#|TenlCIRELtri~7S^D{q?!WQ`T@Y~CiJ`M
zH4+jEy^i?G&&#wp#>yhoR^Q=eM)hj??2B@>u;1Blg0g}&Q~FP!jO{_IBzO5frUG_@
z0xT+cF_j^Z;kRXm$KMdb0S!B#nV|81wuG%SVoa+LqM&w%93EO_Hb)MurT!Y1^Ts%7
z;`7BC?Ay9^1W*bzE-Zj-8lMFPwEOXs;^=N!J24W9b`=o2m~e}wCAS3|n5^e;cDiii
z``vH|8=Oj7R-;j@;s6`??0ovmaP@NSK{R3-XZE^%D}Vu^q9n>K@yqh#%a(Aqa;Q)5
zjd;`lqw%07#~~Vj7}iSeE8q6N-8Xhq__UzRJGCr+Te64#Ro#Ega@l~=QI!)ET&I&u
zWh1UVsl0B*vp)uNc|WD=_WTbE^(bt*PeAy(3Y{)8-X#LMLJ7uL5|Or(0(=?yeVqb6
z0MqVX3S;*32!J)LyQ%R(bkr9%vdYCf``5>AX#wvKR_z{L!+xp0_&x^dTZ`h=&PRZ0
zJ00v#+~1|CTa+(8Gfr3Sjrt_5Icd-s7(HE8{(A^?sQ(og?kx%qp^?O}Nx36G+WQ%p
zAMsf2itxiunS#bKClUleT=Nnm2&5p_s!*s#&aovaxX6T7#-uOAhy&^ioqumEbB{S%
z9<?%}Lbbuze5krvuIE%jo9=8ukHF*M4F`p})Q%_4Q_q5v?F7=y*3`V<X2J8}yr_ZT
z%#KcT^Sl7Y6Y+L9B77PHl6Jj5?j$G6_*Mb8PX-MgXAmOtyDBxrJF(MGpU)R>>NXEX
zE%<UeL;k$?m-^<<UF4S*!~Fsw(wjLPp=ts(-O-ItCF?sv#a@;b0E5-WSs2#ryjrlm
z{YPHX*{*(riFxq+pONY?w_F4&QOAvY!qIrzPNlbF0#O*(h1=MqQE6aGWWaKpYrOLH
z^(K0Z&z!q<R%F6f$Tn-$PjCSqgu@e5*kzqhZYJq}=283}s`>94ohCCNY(Sa@(1b89
zCEOEbUet$65@(L17<_2(;MUUcdqZ=4)_yQp7~fn>$=CJ&m0wSj#GoqD-*j-sPrC3Z
zZ~Iy|RLM{V5{`bg(&Q(;lm*;oT_Lk0wp<1!OFKI?ATs!`YbSrEU7*9l{-~_F4ktW2
zT4+?t5IQLw-$wHhMwWdn;KHI%Y09ICM=D~k3YC5Luy=f6ie@Y;I+pE_RC%5JSp(h1
zM24U?H2(f?+!@2v<}%L5p;+)|wL(#Tpsn;Ow^gI?peB{ETE0SDuQ%!3iKcI5Ih~75
zd^zAI#~Jz5Fw1EGm^+ONIj83S_~cBqcoc>?-MOg$j;9PY8hnHXqDRbUdG*W-`u1cM
z5FV`t?cKJ{<lWzAsBN@=+UtIuhqG|p4qS7fT}`97It1~-X{+o_N_l{SbxtU}rmrR=
z!3%4su7$7^t|IP1ug;E$AUc<l{hIsh+0)ML)B+Mt60(n^H*Cm$Oz6QFP-ZenrIFm?
zUmhX$Z2(st#*M2PDq;)WCn$7Km97jZh>|#6AJl{m--H-L0~MoBg`p3E*wzWu^4G^5
zO`~W$ssHaZkw%-Xu1QMIii-|F|6V@CZ0=yjQW-!MMpaVs(jz9W>4;xQY&oqOKuR$)
zcM_JUMD3_13D}Ig@D@hO{+*rjaTNXDMo*2Z(cM$)vIZNQCVGP72R@noP}{iN3!=OC
z;8t6MabVk!AKk>%cA_?hSfMuilF&2tA6Fl|q8(|(r3lE1!$tVlF@2Y;%Oe<n@n8s^
zA2JOU;&A&34<X31pw=csTuaojwlh1?7C;&|#2gGW#x=M(ThR$j8mB?TxPF9aW>K-j
z%)PM_pzzQGz@b{I0<QA(+J-`59)+fV_!{C?YMh%Ph=+g4Cx3|beEHuHsU_`qd;kA&
ziT;-#nJeco1a|)Puo&#3N$CW>R^<d`(47r^po<nGG{pj8lOW4RaJR7DPmec>1oY?2
zuC*0p3%wr)&NDAQYD=_^8wNh5`JkgI_P_=u9txNQYN&X=L{ri=)q_#5#hB+w(pj(*
z{cVH~zI*~1u`)j?K!How4b~T(pQbp7VD8l-A`(}Jr7nEh!1X`MZL1CZ&<@rAkY#Id
zW##AOfCH(naQ8&}Q-1UCFiC1s84Yzov^q)jOXjWws_eN@eCV~v)_%x@59{b>E^T8h
z_dji3*gb<>L<DNVXH8n^?7w$E%rP~<7&e%q27if~(lTeJ_-ONK8QU|tS%h{zW3M#f
zeoyOaaAD8}VKus<ATTJ#rEO2)UU;{7=`FKuI1mv+tmdqaPtjd~UCFOD2N1Th4!68q
zZcT3*MnJM{@Gih-F)6Id;d=xIX38QYwWniO?26{GIfUxKgkdX8{~}hW^`pz|c4*$P
zjVbCL^_Qee=zo*lYp#Sse^<FX0^BDC#k(V{U%cu!9zxRUDThKaq?JzHu@+vE#Is`B
z$H#$e^i-m9%J@9DpC6t^CP_prj{{B-oSegFZ#<z_nWn$B3KEyj`hy}iJ2U$(fvt*a
z*|3nOn8I{K)1kNYz1euj77(2<N+FKMg6+b!ko4h=GMi;HeBTw2tlYpAIiA35q4#6*
zCZW?KLsj@DLMi{pD3pTAA~9%G3>5pG#N0s`>lgTWrmY(?8N*Gfc;dq6gxqHaU;`ty
z-rp|s<ZE%sRFHw7+&IziR^-km^0*B}3NJLjnSlh2c(v4rj!)xY`k7-YA(wAFN_5gT
zPCuV`f4Qs|NWe+)qIF<%yNEyVq8*(JZp;I5^sm&CEC7^JMcvWJk<36B<dZPLf+lv$
z_wK&T?nFPGytBUr)6II8u0%MoMqR7h>9NV``d_*8+zq*M2p=yCq4+Hj#ZSf&IoyYB
zX>rL`-{KnWZ-Ifv{hvts$G{K805JO2-1}}`gvA6dtk}$}4983iLJhN3h8-{dv}&pU
zr4zw87|1s0YjFZ{r3572(S+z9_D)P!U2@rx!$C|C2NT8iZJ;h>p_%*;p)SIxRZ2KY
z{mx|^t*kloKVpPXF!sBOoQ2MzFl&KDw4c_a2}P!M%+LI$!}|5W6$<v_26rFD`QUIt
z6w*B(XDTSe*)lNuY)3p?iHW3ps3fFR77Wm&(mNydxvW%6txbBQkHq)=h6S*2sD=#g
z*Z}I5@G3Hfckt^Rfx)X2QR1IUqmX+>)M-FS7AW-4c%EhKJE#WLbejVv;Y_@!nKfZa
z3A!7Jd8r%zu}7lO7Av5p24Ao?tp%$d;2^k@Zs3q<VaIMx^p++w<5=duw}(8^H3TaJ
zNVGl?9sC5PJT+8>qYI}9F8uBr&xwzG4=hC5V0r^VZ#K~4=JMcoj+Mdq9sL}4uRq1d
z_x9``lm|)g_M`~9#FjAG=W=ZE5KhlliPb(btfaN5s9pxJmy?0R5{X_6ykP1L(Y@tS
znQH9s^CF&S?0>RI^DaszA|dg!qi8sy{7Oux({{5uR1{F9<QSk=`S*T)-jCKVL?axs
znO8<+52x)E0mvSd)-BST&Ty|1;ZxfCz-2S$RDGzR9t}&HIzVRuH}Cg^15q_?sNcc-
zk=)ccPS$QBRQd?<@MBk!*NleGh?!t!EC94yIk@v!R<FPr3W+;Lv9(<jFQLOFuWLy3
z7e0(ru^aB|_-d7L>}c)s6XCmQz$y_`IZh#5go3lNF~45G@=+3!B5c}CcR=N+{TCA&
zXRs!n;p{w_1N3IU-ZG!IfuXy=oz=C|esxE_YE?Gx(#d;}cG9*+v)%qk>e}kD#XhuQ
zqC<HZoupt8h|o`$+Bbp&*5Q~=E4l)Gpn6bLkMsG89rK{sT@1md7rC2j{)c{tbfj~N
zg&Bq^Jgzp<Qk$Ful)}&*{b)l#gqBn#xQ>GTt{cPG7EC>NI&&5ICU9MV?pV*o@;2@C
zT{CR1l!sp?x`$-<LANi8I&lQiPKukg3Tl(3M*NcmR;K9>lp+l`QMcfzvcZouA1&4q
zZx@Fmd<hG|X0M>>8)+^TPuJIoT$U_D@qcqyB@1uQze_ev*4uJpyfMUu0Kk~7mnhQG
zrt8_=9Ww%=%VthPj4-kMq#7+%80fCc+wUGgCAEpuXvE-hebgfwtE5m-E;fl*OKI6+
z5S<UTeQtsBIiCJ`2UG3Ji1;F-cwB5NNrSW;O?<o^#%=V-s%X0&ATL$V?ZzTSUj|qY
zcWms|+|(zNBA6yu55(pS=Z#nrdQj5c@Q3(T!@-Q{B$(C?AHN`tI+L{x#PW2+N|ui7
zJSzG|=X1frCH}ZM`P)JQ@Jv0xHWgOmlTex;Gk1o-V;m<L#K>t`eP&ClkPBau#;LDi
z!j>koZc~uB$2%YXkkJMdDe<6ZJ%ell2c&_ii~@A>XmuBe@iXu1*;78ojAl&YR+=;Y
z4}z(S%;qwJ6;wtyHO~1bQDt0xz(cT+Y2$c{zG$2$`)J$Ja8jzbz9oMA$RQRv79YN1
zxzEz_f%XNBZX366+Ee*)cAJHeU=Dncf7EzC^KxSsul6tU-%UVH_3(Yl#8H`~S7D?A
zxEZOQKf-1)(^nPikZxjyg40rn{WKd-JS3VMbtD)XEdIFhi09x}u26;T^kvq>2;>aD
zt1wgLo0)o|gutTA1P!*93Jd$(5@DMhL~8`;XlkIK2D*)0#QRukq-<|Mea^gh7?P%-
zYo>L~y@-xE5~uQvq3n!#$A@;1&_jCIY?7Mnpuc5wn{i&Upy546<wA+wy#*kPl!xC3
zw5G#~cJ*uSh*6aZAtoHg1BNT&U&j?UKg*P%;=!Uy_;OodFQ&-9fgu9X+Uo7yUU4Ou
zOZ4fu$$NWyH>lTDh5`_;PZM8z3w+m+5hHtGJS$uvJyY1IDWU+*o<u<Yhf$XpLp?1N
zwIC=q1a0xX0Ux9`$8$?hJqDDQ&lWw)-chk>APoTuX8Hx-O2cE_4#7idGD$bz3mQJd
zUQNY&rfnxA5l|;eus7*PIsvsqR%MEO%ven$ryHuE-0+puOQI2tVK|o4z`U$w^7n?j
zpWZyCQ519jPCe*F>>C&>&y{QM4a7-{sc6LEjj$q-I;mLc8nyP5&vIHb8=@~Fm=p#L
zvW0`c6B#W4LP|gdx021lTML~DVwkAiFre_DR{)W#hhPr%m2dz!sal@F&!v#|v~OTG
z+aZNX+lizzKUl6_FUa)`JRAjy`)7OV*^(PR#)KF$;XAq`H*%EZ1sgd<P;UlSUdC;U
zbmfCJfiQn~7r<(IzsOa=I}+~=rkhX)togd5&aLnC0>{nmvImmmO7+lW{<qOEGCc|1
zaEt&AF1I0`8LQiEFSwK^;>01T%w~fo5*#6a6JZrGH?uF}V~$j%ie#bV3#dAH1=qh3
z5ys=rhMa<EdW+TvW@1g8C6bXlJy>h$T$kT8@UiVNq|x|{p<JS-jescrb4MX_466SD
z$+Ka(IDq$5(fbq@);7;U(w5GQ79ZqZa(4NhzxXB$^n>_2niq8g<wII{<0${X!AAYe
z)_xG9exqE)u}}cOHt&AP&ow1tN`7FEU7i@aWKna93^7x8iU%Cm07~p+SwF`_nrt1l
z$fa-f3nSz(`{6bHAN9D~Wf6oZF5qVkGszSveHGQuhSp7I8##RIdb*>!H}d&RH3{ke
z0zp4GUv-0#!1}*H1RDnFhj|e4*FH%s)!-Hf1or3fW>tzhZ25di<m3}33FVrX>~dbt
zs5AOv6?jTUpn%aYOJ774)aI^&CY0un5io?jRtdvDRr}#G^PR9kb)U8*O`!eRvUh>j
z(-Utg0L0MA_glT+)N(YR+3{L3kKRKdu9<v;|6W8~mILm1uMEd`Qvl8=Ag0G*Wqdqv
zdHY#HgU1Z|=o3LiqAQS?wQGqa5zJIePL@yI4-!(m=#fufQU1ft8SytVWUT!qpCine
zVMFURa;``t=UmuGL^Q872TO3Lt$9X<YScQ?^%y0pdi`OeUQdp%hiWpAA|d}iS6|0F
z5GxB+i|77K<e#^nr)!GBQlUKJS_k6Htv(s7eeEV%z*SEF%eg3i^|&f@_@q8cIN3m3
zN?tX5MEfVIF^w2<QO;@j{&-w<){d{f5Z4lS@z<%^`N2(~&k}J4qzrHn&hmst61al#
zAay;85%=l6guVAGyXf@4!s0RL^du#g@G+c?MlgisTH+k4VOddwgz@>g@3DXTX48jN
zrc0a0zgiVeN*=HVSz#JGHs2kUp|uW+FD>6BXgBq<g`<S&t679BW#J)RVL>^k=Fc$e
z>}FgkrpL-1!gy>OAhi0~K%;UpDn$#JvLB#j_UfE{fsf@%s%8BvkBz9H!PZh3`_25A
zb{fRwVSFhBR{d|O*7B{8PG?vRn5$JIWLMtxZ(vGk&0$Lt5@TC(G%e|-2;?FDG0mgP
zq6HAc%Oe9xL#o1ckj5=UWPkeAbzK;ox^kni;lVQ+C7OK{>a^^X+EtAp`@RWU8@BEM
zd0b$L6dHQOudBVlpZQiFH)=zhhwg!6O8;*r#;qNTPLO9GA&0E8<H%e5=*Gt^bMKuE
z#mDtdNI;ui_2B+&r!S=Ay+p1E_SnG4$~Oxr-5Y5T!(5rO+f=)O3~HXv_!Xi%F)zeR
z$3AH^=N~KBLIzCw136NWR*QvC`cq@D3sl-?U)~amz6bN!VnkKUOK{&x%mYA5p-12o
z(-}IT$-~y~M=>Z#)oKXfsN<5Sj&_4Nwq`%jQ}@feLg#?tjh|t^!q+@aqEw!WrB5e3
zCr93Re@#&z@X9PiSPC!KvOGfy{LkH=!<W!eudkW4wqW9)V#`<8ZPwwcFCfS;@#tk}
z3kGAN`}T)tDGzMaQre2u+cU&rSSC+-O(x$TcAJlMhV+|lOsOUwVi=lEcW&Law(n0c
zex|q81~wxZZ}2a#Usj=<{-K>AFSLnrF>STldm^_UWIQt%s$2Gz3q4moF03=<$1dQq
zxtr@)jTu!p+`|7PXvpYG4GSk5W6&&bl{^P)w)e!s51DcQJ#w{lTD2g={}N55T`e}a
zRG^rw)qpi*gPqe_?L1Gq%`deyLE_R=_t3xe2FLC`_xftyJWU~Ge)Oqkl>t=<VJA~O
zxi*AtwcUjF-_R9~ti7h!Y2J%e#pM?8@l<!6!K=2AU=JTTlEM<>uNn^}=2T`H`0R@9
z&g1HJmF!%DBfrzd()l*IQY`u5@MqrN&Q^7F7PqGf0Q~;8)tAWxNumS2KcUi#mGHj1
z1QcjhJNZ?$g3akjm0$K^*lzA(Cp^`JWJXn^?rI%Z(S9YA{*_T?-RaMrBiWe6Qj{FU
z)kmg9@Z_>-Xj{1a7^sSg?1riCX$kB953m40afn&oXEo%fT9=qtwD(qgYr-{nT0xWf
z_;!>RDCDt#ku=1|rCD3F5Our*ZbRCSc|ngntI#v<-Hrqg?8{zEsK}A7hek#EYu;a9
zQ$-|S#kq@c7QHi`QmPMegQ9~?Tb8cHOVI{s3n<i>D8DqvZyy%TQxw9VchKMi0AX7B
za36aGz^^A3BKA}#NnNJ1|DF|51v@i*3_+at6T=`8Jt4=3U0fh6JEo1JttUvF0CuW%
zo79Paiy!Jre^o&9gF17oZugOXIdT!1p%@%G*Qifw=F?10Qd;FA?;FzlQy8M7m_2V8
z)N+i10BR7tOnxc6LN6Nk<dlbAi^jZH<`{W2*$&Q;irw$tv;DAjUB$+SwejQyp@mMh
zR@ah!(QhC+<SOD>5Gmq;4T;jzs(^SoW9Tb%v}}r_Hq2(nM?;obyGXuVDfOFd)v&&~
zUgg7=uHpzm2iWbQf#GNR(D@>4ewo>yf^58W>@`_orb4BD?fa`Iu7fsf(A;?ezr0qZ
zFF`7V8!z7Q@u>xa+43Rsh4h(peNYjRHO^P%QlGjlIVliiwUALkj{vFT_(UBNMyD_G
z66=WW_>`q`VA;i22J8YiaBt>oays9qXEcap(T77=jc~qSr_4Qkj}6iS_Pj+(WwD{#
zpdgsbV6IkA12t{YJ^zt?loX3zYB}K6ha;2o>h;}{j~_fU7`tr1w$(S$Zc{gjfBYg+
zEnQn^gsXk(bLIonXloXl(YO4k`PrG_o~18O<#8uc{Tmx*2x%p31iaC(CASbDeDD}I
za4X^`7PscyA>HaBU4!6v1jDS;TH`Ib4ut(9%x7iI(x=%fU&yu8#s9rFoNiCwY5qZq
z=K`ax4_CAdxDK&+mSCA8g@<$|+Ca%)aiUd(Iz(8fo*@DA@+R81IhD<FyBH&?Uu{Uv
zVdfd~#y$IMy#JrPGly7vSvN3%hYKoiDHd+47~#TDT4@s-=>;AEV9rBeN2K!Qz8wk_
z>)~_c8_{+cOP26Er1bo|Vk8NpN6;~DENn7f_4s9>8NRakg*<vxcp8BU=I>NY7erN@
ziRH2ZBHxEBq32V^eT#=wmwnk3!dl4fy{||U4X&1lU$bpARvb&~2t3cgxn5_{eTnk#
zf-yrSn*H_C(FFcj$Oq&+iOE-g$UEktnxkul)<L6_2HYo;u{Z@JcOd!jNH*fcZVA<<
z>0G*<p4_w3(gP^+jZ^<tQw#f!?I$e(P1PAORFDkUYE!f~-U(K$_#=mFYu-70(Mn}5
zi;9h-yv0*k0uG{oyU#nq>{*Xd0kbfaW>S;aO~8G93&iKE^;Mu|Uf(FJ0DOIZX-cQ@
z<6au1o2cz$52&nNEAA{3DZFLG+$@PX1YHz!065ZbLD=ek4(1RsG5kj*Ef1*!eO9lo
z3D28M6%Bm>S5}OffWhmtU}9Dl;tI%RFKEX$!c##pWge8!5~1!y{ehtwWs51}MDI(`
zP9Ycb)t&)QMaUWyIcx19MTO(!rY_kMO~PdM@PO(qPjBW>EvL)ZxXI#t-HTJVM^G#M
zIZ*$HH5`5@@V^RPH|P`;g;u4<9P_BtFPXC_ZQNe)+eKxm3t%AN9kJ8Jt+)ESTQDu@
znV3PIY;4c4b9qP$@(>FfWnhg@bL`rkQUx%vD?lCzIi7%?MUz9S2!tAZ?0p*4W&vhs
z>05ij(fRFlDSkNc(^?eAVWEcxqGT-NwNCnZ{01kVf^5p|Kl*VlOzivGWszUpVxF2N
z|C4^YH?&%>2Eq*qN*%pV7C(PyB2DTprvG}FF#Rh3T}Z;}3h70-Mh<~3wNi{OSGaZF
zuKhkg`(4KTqS^qgzJ23Ln_FJi`>%_bga?-aF|0if&(05#uZ>j;)4{e?@wyZ$tYhJ~
z{|_JBO3Iw2{FM|i_Q>m~@gIHG(iSN)M{Fz6<6xS%Mj*Lcqqf*$7<V64_~}<vU=6uu
zp&NKosF7H%>&32fNQJ1cu30W(wJehQ0awskUY=e&!6HX>XU4P<Xi#JwxT+z_`)$qz
z9;yYe+Z3Y2a~>x=6CKfSQk%`0L`%<QP?C%p1NRYeuwP!RE4qPy>u)C5+f*P5pKr*-
z$d!jI0%_|{lA2ad{bXxTW&f`lWWr1vLigA2|8SP55Zv82HU3DfVW)4|{GqqL?9G{j
zETL|6DqTE?tjteK(P6vQQU44{tnxB$U@D_0tciAOaA?H#SGdhBUI17XSS}6_!?GQ^
zm}NjaQcmZr*5yXb@+!<y%?nztHsdUFf1YdRb&9ofpt2yR^9F|KG;~f;o43FE?%AzM
ztN27UK*`)TKYCH&#Tf%YDeyh+o)pxw|KG>{x`xF9m$jRnge2E1rLmi81CWpQTQ_&>
zYoHA8)?1Jegpqs;`<0^~=X=q%?0zA?`L<pch`xRDVp{7!Qj4y24WC7BTm1+>#9c~T
z^L^kRq@oYv82*c3{yl4AgEQ{H7{1{2@koAp>SYgRq2Nayw@1?hCb24c(T=H=mVWt4
za2G1GmzA9FaXejZqE5xoIdFsX^bleqCGq-UK{r^fy_yYj^DJFZG;spk=+nPluV$}P
z$N#9CCeDtuNMOR9Q*MYta&!}3&5j@=#2J;cS4lWMM4}h<Z4mMgR+ZDz57pm%ogFJ{
zwelIgrv^Jby+lD}=baK{6zB$*)N7A|6x|QiyJ5c*4uC~q8>aouAP|nPD&BhD!`T4V
z4XK|C5lIso(LIgSM}M6RKC+TT+^y&_VHPt}ydNzW=nB7VJ}s5{sf|%u%@q)Oxi?T&
z)u4AEuLM&$2!3y9Phs!&2PPUB-a!+1W`lN)JQzP`H>e_CElAMv$T}!#GjPM9Ssna@
zI%Z;O79=o??9FB*>}Z-@;r23`pvDFv_R=1D46v9G^@bBxS}P=FA$vu7#W?^3zgHrH
z%I}Q6fT^boJ5t(2uxOjGpP!zQhWttC^#j)Qh_$#RCN!lKZSc>K#)Gyfb!b^037ZC%
zpmL+w^{fP3GNqjno%lTry*T@L1?!}VdT=8Un5#MiRSxiX%}D~$`qSk`={9hbUdKkP
z=0Wd%D_2Bxl&XS(nHq*qUuKCFXqc{Yf~Op-(t9yK5u62{o!jFy%1cmM1Cs(=_38H>
zV=H6aynR%WJ+O{FjHcZ5py=8~lxb<gA`ZTgi*Pv1{y^H-;-;-75ntrjYCunfs#*1)
zA>8k*GE9HG+$Nz{{JFj9g@fpv%9AAFP`V~Hxua0S!{)b1n<<^#bvRxDq+BGrU|#__
zU);oyI#ngsBM%0*w+oa_11uI>9`hZ64Qp&NqgZAZ-I%$LCNUz>rgTPt;c-#WhE^+F
z7WD#sW3;<W`y{`*CDgNCX1gG$Y4Hu$0*KWF+!Bh7gl|{tkeeAoW#Z&qya*9P3>gPg
z6|?l#xb2r*(W>#yYyXWi3RxFYL~byr0f_^(8WI=$mUB9Fxo4#|m5GDH*^Q0O>gXV|
z$@A=NyHgEhQ*!|f*~n?@Dd-q3`j4(bBzOZn5v+vTo^~xHI0!jhR6Anb5qPKTQD;Lp
zV0~+4E(I#z2G-9i3<b4xj<|=*_E=~kqy~Uyp>D~b+ETKHU>y-y5Y>H=yo>A$*a0G@
zZjcrz#hXS>sz#7KMPiI$zlNCQ^29kjJ04CGZ>jub%pEJY2bdL8gK~BNG?H593&iDc
z4;ST101)xE+jflZ-yIdU?R;~et0a4+A^^;#dHb_Hk^E=Gtc|v^)YrwI2KN$W@C8L*
zJ|4o@Vp4~q?&=@P{N=%udl2L*JF?pXti{ts6shS<x7?tdVl=@^@abH=el$<QoDb*_
zKm9g9uQT;L(+j!AV=kK+IEnY{wXEZUH$9{j)5lEr`GI?Y>=J2GxTSIMdu(bU3n9v@
z#RgzxhSue#;q1P74cQ;}tQs8>QE+5(jQJwt?(%qU57&|5NWJsr63(lg@FV=~B%6{h
z9HqHEQmu$M+CDx~JFS}AfLqUa$6Yz^BDgxH{=o!a=i@RDYv&pu(-o-$AWQ2?#6sc5
zfYtM~?kjO^5$_ZW%UQvV5yQ?6AeySw6{;Ed>~-Nk9MGy$==Y`Rh)PV3cSOs88w;dv
z?I4TE{XC4nNP*~dtNS~wj0F0?=ujd<E57I*VfGYHDd1lW@H5dR>o;Ndr1-lbeg6Rk
zpUpSe>B*WfQhn27>S@QroFlF{RoLzOGr1=nq0;x9J6f)`FtY98tU2r_Q8w*I{3!1l
z6Hx#hL&v1}w||ml_^#9u0|OxuXDCP6tW$xqBJYmY-$){8anSVh`}YejF+j#QUw}y{
zV?xQa*o8c>sayD4vO+c|EHOP_>?|YqS*cA~o?`f$?bp5^ZtNxMi=k3|p+uMBm)aAl
zq_Nr_G#!@bXQ>J?UH|&@?OHI(c0-2qDU}^q2B%42XAWG_bD0`Axel>}6@~|<F<)g2
zgu3!N)2i>{Bqk<BrP*3=<QNxev|NaV^IPcp!c^@$>65F2Z!p8F8Nczbi=qz_@%Jw}
zw|BnrIYSUu$rcPQNm+&|p3q<@^Mji7-pr9CY_Na;7!7_{ATz&RBg-3dMFgMD%*F&_
zEb+g_wYXW|6%kgclHYV6CNSzLV;jL)c*yQn{h?y#2^cS>CSJsxp-kD_GQ-y3?Pi0Q
zO=<2<n3TPQ+5$q2;rFSwsZ;R9Q{Brnj7-Gty<KH49d5s8AE<&`a$sghV*UtZ?~}n=
zQ*5xBA0gn<tKj$|cr{-zu=MAb%h^bPU@a<4OPa_vzdYA5UYU-H5;CZ(jt&w5z9w=V
z!<E23FO9g)<BTCC*mLvm*R!z--XVC+U=zTqtRcU?qtI{ak%;F5DFPlbA)r}#fod-b
zV%v)e+@-=L^DM_;V3g3QwSdu-{zQ4SwSONSuK)0Vj;^Ps+XcWJf2ms)!II*LRo7`H
zJFs<)6Kq%3q8{ipdTZ8hbvIRVLttz1ZHg{%#+Ivg2QmtYIlI#V^#`khbpG_McrE|1
zCv9bQ9>(>dc*<xTQkW^eznhb?Am?kp)Y2A!Yv1+C!%?ZN3r}QAm#2heCo4KVIF6Jv
z>~D#gdaco*5pJ8gECbRsLZ1z*ns^y2cqc#SXI`@wcgQH$B6?65!l|HDbH<IBw6800
zi+H5QEZao3t1FJBz&X1wsTZ<^9HfZBmz;n?DK%=Srb{NefFy#K#LLCq7|m+Hrmf3J
zZZe9Jd?A>7uK|SCVcG@}<EyfRX8~<==M2A!*G&c{qf`MJp*(qU0y@vP=838dD3u#I
z@h31rg%d*-1C?OU`Ig4+0HD?b9f3OXRt0sq%x%+I1ChuJE3KLu8_VBAHt#stbTa-!
zTokV$U}$)r9J@vWhk81MABKq$^uGab=oc7%GT4f~UodDP49YM-<ym+WlFd94+gw;W
ztKhb!o#l3!4VIw&f#xae3POD3z!Sffu}sCrphPGf?IHZH_oMgF5P`L<1$JLo9Qh*v
z<S!7eq5I<mpB*w{lc^k;@}?M@dBo20%{teS_GATiCZOJAy{&%Mp>aJkLy+&EypwFG
z)<02tmLN>m9)4=O@M*X7`nxgdgRH~auK(k`Srp2%#k<%MCEB4V4xp>}<!SYBYr<ZX
zGIQ~%Tsb6I8CUk0JB{96XH#Lfeap0Y3bOg)A|8YkXX>4*w*@i0`6FIn3Ll|y156N2
zuQ^^H0!*{6)WNMTNXmNI(TZEewn>>lZI2zCEt%wrhJROlmE-5(E0ZG@vUk9RRj@AX
zoqc*8J{?GM7EJ{v`qXGtJC};S*cSL-#}u<`qW93D^_(?&Fbo+tmr65m#n<wv&epFI
zm4BPn#igBIr-e;H)B8fjAvKOwJK8Ig+1HUA4dp^COj*<K`{GhsrXbgn4e?g$Nb#XT
zc_=3B%wc+kXLL!Grh8~8nu&vL=9B<7Q|qM&1N@gCfxtB?T;E+@@kmfvVN6!u4*~>$
zXjgH>;6){rXBZorRr7&UfTvvWPU>8!Cg;<qx+98WOxT?+4+>ggjqMkafONz}@dU1=
zCe}vlqVFW}GIDm-&tmjqKA8TeI`Ol#P*tkbQt=UH>b~Zuuu-GzzkkU9tT{0KB4{Uf
zcZDKLm+M;nPEFZs{fL=ph%^7|?Ei3Vy9dxGwSen~ELP%HMh~6Yx%?ebirG=5;mQbC
z4a#L{V;5oB;nM&G@E$BbyuqYaW_WeqKGrVfIn%@o=MQl!LdmljV(6{F>W>_&Eu3?C
zenjtziG9py!+)sHboa*&!PVNOqP=Xbar#>gZY}dvu>q~+_nto@H$Kp1?t&n-nbHxF
zIynnCJ5Cfz4<_c~BuHyK?{~K{5$n8m(!hwvX`IdzB5VxT?HsrGAteWTjouOs$^5u=
zek3ynx7SQM-{15neTlFF@Lk)H?~Mdz-}NPoJ=v}=U=)SIZ1;4p{|$MI{_700b`1pc
zkK^|fSJ(kCe(RGezhN%i>Mu}qs6l885Pk_`v}y~}=^@I%nk7Y1e!FjJL9Vek{ULDU
z6CZIMeI6px1ES?f-JWO}&P>h5l<M#iuNr4|NRJ25T$`vdZ~BB^Rm5jPI)(+Qx?$7T
zBp_-atd<}29-N4%8i(6C&=N2bmX`^8f<LOKfq<YbSS%tOqK9{GHky0Gq02-*TJ7iU
z4q?%tV*_jLjHYkCNfPebhe?C&W*vcW$I~~QWc{D=ju$}5KL&wKkBE=dG;4S+-fVFo
zmRDeXWZS2$sDy;tK9t7xuHO}4Fjl_lam4fGw{>75Z{Y><IS@Ga?ai827PDOw$Q+tW
zl6_vP)l=%rYpP3G4bQVs<fJPH;0{C)ZpnXFhEnqCxke_NBD)@ADFm2uf$Tu4rv9Ax
zClBd`nr;3Od^f{OpU8r3`?}$TU)FIItnF(3BOaONHPPbCNR20;LW%Oay>VV^`{Qe7
zGQ?NL`=~-`($$O;ry#hGdh`COpI<}CPCKWviBX4tm3zXH_{2H(-$9IfdqO$_k;)Uc
zTFJ(t?yUBOuVIXdW+nF73im<_7Ppshm69Ud7Fn!diQU5Ate93`(I*I@)pbnP9xR#h
zem)BzS&9qfYoXOI26jxjlLE9aVP~(iK5nJ^#DD}fpvv3lGDm~f`m~faY>P4^+2RT}
z2ccn;PHz-uu6*fzXfy+#Ehf}Lc@nV_S;C9ea>|vi5KL*RX6u(%<#fD?BA<8L-M0y~
zVVH&MU%g(&I1A$oFF31HYZagjcF9)Z0wU4pwQvyS1V4;_>m?Mv?wja2<c!~(wa1Tc
z<i%HX(!PhjkpKVx{@+tsQ=Owy`R_8dU7f*%%&rbqiN8i3W2Wj%7&#f*9RT03`-ZI$
zkgoyT^Ow4+ZckPwNYww~2Js>fF0Aezjk;%pywD}i*j@&Gje{-Hvm&F|FP{x1IB*i9
zr;anaFEKRJ=%W_L3m3_hvK{%=gRlvuZ8Xnx-eic6p!Fs1wkQ9%9$B~-@q>4^$et35
z#qLx7#^>~q*Vxl{;_aN}&j}0X6#?PmhP4*HR&<CrUVP%SEoF}E+k6q!18NbdDz3DY
z%4M_K{zDoyZE?;c0sk;U7meD`{Y3MVJ=Zz(s6sy@2-WP!5UCGrz~&wUP_0|g!<E2V
zYBki*f+Yj!-o43wa4tfC?TE;?R3O&QA0u~mBP+s-Vxqd_Nx{${`&B4R`$(7$NV(|P
z3}4J63BJf{&k-FxSC+}(yJ%GHm!IB8AjSYcp1)s}nyyPz^qd!`?#0h$^wxv8+*QQ^
zZ_FktaT`$D*zq>c(aFMB%?2k9s5+$|MFhVIj23tl|FV9eodT!HmkU$GLzJb=$oz;J
zaEYSJ@MQ>9u>|jTel1I%kHJcZDo%aV(T^9KC3q86PnsV894B}UGw)*XFq6(zx!CS2
zy<jN)-r?-RUzM3NgZjf=@RK~X_uia}Ei&U0aQc5osyn<NH2YB!@1?$hR87&35L~3J
zEREm;_(h+h2bZ+pj(vjc7@Fqtw`HPaze2;n)&}{5?6yFCZNaHa$sSDkH15K$j{0Vn
zo0<m95^NpY#o-j$2%W`7TUL|K_Eoex$-}oVN$r-Zn~v&Zxt*d#T^K2{qTZ8#1Il0p
zw8T+S2@*7GL!R&83l+Md#P|O+pVIe@gbM!~Icir6`vC8s7jySA_;xmEGrA5yYX=B?
zk<kpV&aIDD8tZ1H;}NsK!Z)Er{2a0Jly|)qbS{fMa>SC1j8i(3LJ#|L+Cw1L_^s0S
zbp3c0l*Krnw!9B=?AdBPuE&;57gHKnnzF*@UCSl>#gasOO+m;9IDgL6>?)OJO-}B~
z-Kz}Y@y^TV-3DL91nWQD)OxPGj%+Yjx@>`)n#l}z@V*@)Dv|skjXxY0i(HnS!ClCD
zePFk`WrIW6a+$(yLHt*wa9vl1wIS$jzX`Yx-oyIH#0|HJj7Jp6pTg;Y%+n7DE{5~8
z2KB7HI|@}EZ#a!A+?!fa1?JwXhYuN4Q+95xxECCd#dMnmc0BEB(^sp8s{XgNr8@__
zT&zv9@Y-l7WA;xxqA!&u+E3cY&X)Kre0yH-o&%RZ{Q)CMMyJy;PYjHT)fFO`6sVo%
zGOnh=Sa<^KEGG-Sa-5VQEq~MyIfV*>n5DL*odNA6N)b#(oK;CP{&5%}=k5Jsh*YNT
z_l&Z&OE+2tv06}a%cYbzrD1RU8{1u&Q<K<kF$>0Q3o1K@aqzh_Il^nza!8mQ{Hli?
z2p>7@*N7+{JWpIQxufsQitX3#|C+u&4Z<m%Cj1)|pUS9o<Qoeia+Q7gXg4P;o+|CV
zFEq6wytQETc7AA$k8WEv$A!VB!$e5#5wF+dH#cyx<d*{0n^!Ap#!p#zr*P{PNuqwe
zWBKD$EmhK)B)U(M@8NZ8(DvAN8a}=e78v1{ln`kMW+sS?3jVsq6;_p@AHLHOzT!YA
zVA`Pl2kT_RFHSMF8nhY{$YNrM76EQo3&<+bh-6Jy<GkzBC+mxF1x{zB`0-SDaAr1d
z4_Ym*t`+}41QfR%Z!&=MBosG109OpB<eU%W0~=r_$Z$OtGEtmrfQTaC$un{PN=^Ze
z36EXiL!l(PAUlNF#?DCAlMg+xX^Re3I)-<XV0J<HdEnI86|I|WacPdMGOo5INTbg`
zO4uo0X1tKn0L7Vt@^OZ+Z}6?l32<TYaJ8K{3Xn6vpDx3KOQ!wz&jDp{eA#->`(pJ}
z(|9y0s_=A$ko99nYuj%8&q5Pdy#U(y`jK<+;H!_Y{r*6|9LoDzY6A2COCF5!v>1>=
zMzt;(Y6P1ATOIFDJ0VXcG^TT@T>r!Hb}_0?cnNf7yPEcJP>V|Pn$A4*)0P4AiTtyQ
zO{6RF++3M3<V^_jCloi8aK3JSdU?x92|}X~tD-*^|7ckPKScqIpZcZQX@mM>>==OU
zj41bT001LJ0jLLnZ3u4wcCS6;eDW%$9?=t^gDQR--O`r)7Sg}gX#Yzlbd4~l-2gXc
zI~lrzPHFt5Ly*Utp5rls<%!70=q@QsAh{I)sd84GY{~aHJzZ$oX_%wNL2YVyB7Wq>
zMa!Hl8-*-U^<+8Gatgu?;bxS8|FU0G4=>_@;aBVuO}1l&8XWE&h&yeRaOT+3f((RT
z{Fu{4w+CWQ)7oPc9QmnRU>1fFA~qLY9yZ%M^fl9}!;E)=u;uv6=h!4>s<@uBBNy$W
z8VxSf{_3R0gy2&+h@CeSVH{TG9E+-l0&rUe-{2PU3*x%qhP-U!@qsSZwiA+e`<rZ!
z?9)+>FU?-jnFz)uT>C%}Q^9z(k}5D+&J<&@dY;k|{@j^8!xYmjUkemlYn%#17rOCZ
z(T&(g5Sap{`doPa!qnU);j;*R@KlM@^JjIQ9+N!74YHvR!$oHQF_-JR<55F&BULZ1
zQ;mmmq5|!8iPm$BwgI^Af=}J$Wc0KfA6qBhTG@KPt2QOE>u1TAJmLVUo5kJU2SR<}
zOWD+izH@q~aYp>b?|c&`XvRH@`hd7tS2oMw){B#z?9qUUpWJEMvOFJM!pW6>lDPxU
zUtZu6XJN%17w30u3G=?GQyU{y))w82N$7;e??*huk<qCSB-|n$Xgbj7S1P>SXm-PH
z(gE9h!AaYe&|<Q#r-;uF^km`tz3q~J#_&Fh^gtb{_oO>$O{d_Trkl;!Jl*>;X038E
zJgJHyk2cZG1C753>Lm-UW;f;DKq{5Ns1NhbE9Z?PUc?6_*E^#CQ<ruGv;<6#1YeO4
z=uZ%=)4D5|IP0}EWO;MW+OsK<kFNus_Wd)?$if8TIOy6bS>S|?Rq$jG7dorsrC^7N
z(jshsy(fXcwaq#M0!2i!bHEl&==_{2NN36;V$fpkw2B{wpenrymYU>+sRN8L9h2e!
z0+U)b<s^rI2^{i-g|}NYPU{R`yvEK+&7#3PO!PBJCDd}7iNzTK56`hJnqA9kTkcA}
z3)21(HGcQ5F|*hxeZQ!f<GkYlbKMvGcPjXqZ6eBXy7IAaWptqzC<|%W`=XqLZ>Z<S
z{m=6OdJp#;o>HiG??T9|%8}WPFD*>`4dn}m;k;Lnr{xAF*A>et#@)HvtnW3ZUl4;L
ze?TSM)|O1Zj$L^ezW9WwND>Ls3gLN4Ar%N1&@z=H(XxUh<&4&MR23b4%*QEAoH<Dn
z)`0}}-6KBmTaqVIPBBD*@-$>aE_d@|yf4;O8eR8S>E4USE*4UCpwcMC^B*G&bU@hb
zBz_sbp0mj1?`@2^fC2RumfhGehTND)V1oyszd*?tmOWWk)0xWu=W)|mNF>4xdcEnP
zGoGKwNXW_j58+(I@9OK+Mg`!WcAqZ`Y>6GCHdDT?@$#Tu?7JYV!FyiH%0A)Z?8fSH
z-==3DU+kkB?P^tb(;&Z0iP$1^<a*^<g*Zrmr%}2s5<hPw6bbq0e7@*K%U>q<<508<
zF3sFJ|FS=r(0uqkOcek^sq(gcFD2ZNT{*7A&M^|GiY;&EF^?j!8m^rR0><jvNUNKc
z29K=BeCPcmNauze?a?DPcA`qt9e<tiq3KJgZ9x#bnN<J>IN(PwgW1J@j-#u6Ta96x
zU0uJ@r)kgKm(Xb4%y#TYTKoWIL)V1m0Z$~VwLes^Yq$c;)ji!hFgS2c7Unmodf^j(
zYd2vMBfQAiAzdTi8|<?XRlTsn-b6};{$^2qB#IYhkHAzdj0g4M1$aWD=M;kGE)+CC
zLdC*Bu=z_<d0<?0d|C~Fez$jULq#=%#(Lrnk<_DfoA*^Kuk*Ck`8cpysX{`kF0AS2
z;Mi*$iIiN$8O|A&?yRRCu7Q4POjcC&s@Yl1N8%qoxK)r$eGSxb_PhFz2ksQ^o;mYo
zg;vlh<;cqx^JM;WHB~G04L~leBfkU4T@RPUhg+CNZeQ9G7G+T;>p|lZ*^gC3vx6Y6
zDY66T#rQ@2x^a@1z<yojz@(l~iKG$F0?(;$M+y{>9!XUA7MC6)h`>tm^6vxX`kTqU
zMAQTtCV{sr&6dce6myHuVG4B4;Bu}d{WZuT$H+Vw<xO%c9Ua|nVUsTZf{$&o6}1lI
zqgFdN&=4as)>+%tK-DGm;^pz<NEX-L-fGrvPkvGn$oCEgdC$<Cs=DS4pzu+_k*$3R
zolrA|O~|a_)lL|{+EyD<LMyGJsr|ujII*CS*H#B;mv}n-bxxpBqn=uSQJah~ZUlZJ
z6hcwbW{t&{=_?TipK!`riP)^^Pq}}cO!82DjgAOAkaZAO|G*2;l+;&7JJTy{wF{FN
ziE;Mb{Z-7Ih)sy=a#xVY*EP>LY(?r(oH7en6*jsppYxPT*X>>b0O!Mlo<iZZ&5$kq
z;}?xuuR7B~>Z>-w456mnmV(H*W+x3Co0|kphtT6{<4p|XB^6|DcvdlBBOu)Gmk@e;
zw4;?f7Xb&yAChUR*SU!a*a&LYu>Bq%QZtH1T3Cae?)n>@_^{|tOc*2Kf$KzKFcJ4F
zJ~jD;Muf|WK~I0Yzq1_BL)?VZAgPXpuBWHy)%NL21UuF&Q;zx=;YFIJ712@CQgYkh
zWZKJu!nDZ#nRpwV1`p{k&lppO&Jb1S`D34hw*bOX*A8Fycj`0eKAP8Z$_2OXji}~j
zW@a+@F`-k}B*j?9E~%L_0<n;|DUAM1{29>j<hMK}HQ&LR`~og%K)5(GXbs%Kg14g}
z77Kz3+XY#W^I<<yTHE`20lPCWwDQesO%O)b;_{UkiZ0u*>-8olt46gu>Paip^F%R!
zgJ8!M&ObYO7mII?Pt#pw8iyGh64oj^#q>&K6$sc}v`WT?^NB@MPl(N|EO)mv8?XFe
z%RXi~6`m=*0fvgtycYo@U*V8aHjh6@Frl+=bVKOs!SzisG(HX4nxaq@D^9x>_ECM~
zf5TSrik|GdpE1SfqwG>UvAE=+&TO!UU}e!V4$MQ3@0#^vpsxO^9F%~^YTULGqE&+<
z-Nzq#c$hc(LeGw)9A~xGEh704{?~Hl;>P0`*dfJV*>bkB=rumz)!I0Cz<i(p2AOp^
z>8i^`cIEdByJCHGv30;oPe@MdfNn?vuXNadflmrNV@39?X7(Z${>kMR@x9FSFF6uv
zl%v2XGFgO3$~@?pQ>eGkxKMt`_FSI}+~gOb*@4V-eqi-!Yi<_PE~Ni2XOaSe9)!qM
zYd&^H>=*)f>a3+szjGI3*JN6>OJq!VNHd2A1B&cUnuZ^-9`Uh5e{xup%crAlH+(h3
z*(k60v?Ww2L~!p5BK3>q+$5GZx}VOC=|+I%ZQiz$<3|gZcCcp*tfk<f=yy4h1I0IX
z*it|+eS6UZYI7_M{sP_u57xo>K{oTR{`Y0g<&p0Lg(jrWSD+JWRaZ4dx0twqk%kcB
zG2(~uCD<E9xMbKqPm;qCa*B1p$eB>vH<N4vipgA{+73j+QsM1CF-c^80)u&-MsMRE
z2a$ez8GqmejJ4m8A~a;B9J<cT04m{PVfN*GHqpOO;MZGXQE}?GG_9OjX5Y97gHE&#
zOS;{?A*A@JuKVW+^DMRpk(R0}qZ`2uWu0r~E4E>nhD?+3s5bNfLqNR0<Pbx<AIxX{
z3=x%%mSfzr9k(~c<Y&q@x2I_?E+9tbQ%UP(-=l5#8&FhT{cIJU<SW1pf(BG*wR1)I
zxm5M2KOC9iWntaCqluxt96q3UZ~8^vH0+eF@5Tv8i4`FF)>#6*cFBSHpP7ZJ(?5a`
z19N3Z(&NB8m?`s10j1O~pYe7|c@l(G8+v1ALs#H*=hd5YF9$oKKc)N-DlspoKZSD1
zx*geHso^Yj(whj(?^$}($KCc`e-jl=-*+xb4C3no@W6(SoeOZm>T)pv-Jqt(DA*oa
zOAeekA0R0Rrs~D(5HAl&w%%`G^hmRX0!QU-c+2>v<z`PRiy#xr+S6;#?1JK5tEM81
zp|g{M%&NFdnYli@a|S#YQgXsdeK-CZ=>L`$E_mC1+7d-h2jha@8j}7i0Y`APsN4h~
z!US7@3(bx_W@F^6R+o<CjP(0Q8d9H2`RuQP&yd=ZH~1*phM2Uw-CwgqZ=77dDBsvv
z1#UqiEf(GdLL388H{U7OXbK>Y?;p5L?P^2WvE=1GmFG8kphUCIh+8@<-4O=Ys9w1?
zC?sD!A!D5obuNZ6`tPz^zGHdap>)<><ZQ83n$Rhl)Q^<F8@9?&-2^Uip%lPfHBV0)
zL1qn7SL<GqhdB_-L76`j5AzXKo<vIhAW_uZ@yY^j#il)r3km+_WSgre5aJ6j49n`2
z=~IVqSp$wFcJU<wy7*upRbL3PPk&lfiU6K>i;Pl~fjWhlxw8WMQD}}6wW*)i_Lhht
zWuD>HX4zyf8n~3+#Z@8zrbJwxFj*P8+dTd?j<UT%Pjq#>xWdRIf<aUet<fh$e)#go
zJ7DVjFF?fKy!K2N+L`Rc>!D%Yt>Ed}qC<TRrYsc?1I!qO+@aK<g|Y2(B!T<@U<ej$
zXmgPbvpWb=CP9W6M(mfrzavyI`OG39D-i-4`#k>^-vY4sE>8d>+2MZIg^<u`?+Pk{
z=f#(8xBpOQb_$EUIOe)HVUnGbfYTb^`|MDWr8l!*x&-;aB;{qJA2f&9M)*5Tx5gQm
zYCnS7+p2AE9T-Q0HCV!Avhyp|A1Zz1{N_!yW34EmOi{ENOwq9hle$NxV7;t>z(+%-
zvNkbh-Sc+z3m=Eb6rKi(yVkXk3MiBZU$;oe`L4Ae;F(8&9Vu;Nz?7mdDC$BiOAds?
zK7gzH*(8L*tb)U4<LGo!7Bmiz-sMVBWLBS18K<6lta9v-RVcF>SLqM_fv@KmP45M_
z%Q*)zC|IGbG|*r3`_A9t_uExw#s}L{^e&#)3>b}vrj%XIKmDoU-&~~VOUOudmwHEZ
zwP$`-RqY25h1ElVU+W3yJZ{(BEi$UdPt#&px<lOsE@$}q{D6DV5=fkq9YmTZZcu0P
z_(dx&a8r|>$KM%ec8z43E&C_4&q6OZT5IDWGyctkRy`wU77p4msR16Ju8UulJRdCT
z6jtQ<l-e1zwsmr@oDOAB&jcPqvZG5PVwaliqT`<K9QIs|W1J&3d1JVLKic|a1jqB4
zhP?Uqk3}zV3#ZA?Q-OPOE{#p5<J=Yk6G`nr@6@H9F2hy!;$<&H!#&1#)#4OoqC+RB
z2F=k7P$A(q6S|j?TNZsd+RY5!<v7~i<v)H+@nwv~N??-g{9hR4#Hr_=$Xnk({)T@T
zch0UB9s8xIe2a!eKy0tUg9LS@aBu7ptC?UZBR)WmvE@2;ETH~ABPET4<Nilp6AOGM
zWEC;SVVI?xGS~%KkxYGgIvVpA8oAUIbhgB*$>7o(QM@n#RbM)j(!c_<aplG$%Xcqc
z=-i`{rO$1xA`-`p=NoaVJ)@JGU5ji|Rt^cU7Ar?uP>n>x8!eOPev{yl5Z>!uzR>TV
zO=MYQj>--E@~g!0)Ily+FeKE)WB-z1=DIC>@Xx4rPkzFxykycWy9~q!NU>Q9rfb9A
zp<J71BCm9rkrv#qk!*UK6+E`=JII{O1wS(ZWja$tw8EQ>l#Ag?@?Gh}Hf2VZ$!`H-
zL_Iius*GHM`bFv)Jr9e}$0j9o@np#R#D(N<Y-hDSIejH9Rz+jioMnjRmuODo_V>}_
z--?qFeNj-%<M0Xw1CjN<TJ^Df^}!^Taz7F2#6xkwpZ}SZ)<pMt%(Y~=(re8QLTWZ~
zE|Q!i_zG6W8>>9&eT$x)umkTgNlo72O>-9Z?OrCsX(jK-qxk~Dp2;Dno#A2)sFA>4
z#ycwXFHG0>Wjn%PPK%+ftl!;KQLsovcY*{?@q$v;pwo$<@H*W~UCx}FLGhG8VeW;E
zrK9XYS^4;qwi^(=`BkRmf3gfd71_Q^sx@`U_w3BvTGOfdF4hEr@(}u``>en@|7Qy?
zP83iMQ)a1@wT;qreSEVF3##gFIL^}h4{HA#P}7<P5LA|pZ_<^mXZs)u9AfS>bV{-f
z&mponL?<R2up<+GZeE4Gf@(1hA~dLJKwjpRx8wl+IPax$2!NSI8#cQb6*B1jmE~!*
znn6)kTG&NAcjR{4wMI7P>T2YvYIwg!<VJq};?-OCXUGZy&=V?_vjLH*{_<4WpfqXB
zlVS3IE`31!H@)$eBJddV8%YladX>8B4q>v;7x+I{G0XN}+bVflrtX7ZEl9$y-LEe_
z5#wDxjTA_!&lt2#kdGXC`yIA7aGf3Q<3aJQo=cYHhL&4==z@p^^8!53X6A*@7aP3N
zF4>`wH`f{8Ex#T&3FzqDE}-=xh;~LUY2T)KRo+qbd79#z6kQtlsRyeKo;EO066nzw
zQP8vRyvo^h(Klz~9MnaR(y|5XZ6u&w$s?Iu&F^<bQ{7)6CPm>WpvHwUL11~WA<hTv
zXV+e8pCP{Me!r==UD{dsyd~%P^2|4$^9p;|n;`k%+lggRO~)p%QVAyGr^FWRO4F-L
z<5Q)9)-V{}ya*%;<}p%Dp@{F`pS#}srAj+_Y%6nxu&I9g`C+BkIW<vA$t94yYDai|
zq-w?8`6F|8Qvb_!)pCS7P4#Au5A+xX@lvroK)gl#(L`f6Sk+%cwO{k$!-m4~A5bw9
zR5$yjt-wi#z>uO1L9-*g=Bq8i{?O^o$Wz!r#P0smoUYe|;Mt6Sw4y9kVo;7@MR-pO
zwjG~H(boC9-;Xy6Z!GE&x$g#bu^gKN33huAAScZi9^Zo4&F?aMzi=u-OsHJ2sv5^l
zg#Jpb*LKM+sE~;ks4xxP6k;zxK$<^bu_Oae5dnHgPWpN?cfe>t#|06O*j6SKMmTSP
z2Gw%4ybbc<4Unud1U0hRn2wVVuyrnW&|mnZCy5(9zD8pY%dFxG)>9gyg6F;!q3y#>
z1c{Ly^97<Tp?=EOCU&!+v`yoz9Rh9Z+vt~_71I~R4weY@`Rs&p3Kxkfv&F?*X%_Z0
zf%F}MBb?;jBL#n(0FFx{L5A1Gl;IhF7w{yOo<P6p?uUWL25(cdn$Xc};tx$8bDlDU
z^-%SgVh*etn=(U%LoE15I_b`MHjX)u+<KEkmJlqvYYGOAiFv`cJc$VPsn5#IAdsiw
z6hksmKl&<$?q)MoL#P*6@ZMTGJf}!haZ=M5lyO;?Xe>~GLJwG<v<h?YrpkXWoO=fO
zs2>^DTAFKOzTslwo<*GA2g(gKzs8SfFZSfNF4+f`n@i@0z?JE77;YGpV?b)QAP)in
z1wJR1k=GYgRLIiCGVaJ2Xi%3Sx1y{Na3_UUx_U2s4gvXCy2;=WrmZCMf)us^t6yZX
z1%X!?HaatU{7?Xfw!ebikO;3WSvS;-c*JJeX>Dv-QvY*}5=OySZijxtS1&C}!KOI`
zv{e#^5CsGZfUl5;ODEb67+EQpQU{N$o;>#o=N8S6;OfE<n)n)WFe@l~7q2M6R9Z|4
zbYICf1Y?f=<@(lQG+OsS41<RkP3d7+mPo`qt6MtP!_ctS+?iW3z*2K;@z~4u@6G0V
z%bC4&(~ouU2$B5nW=+2gh!H3nlrrEg^!Jw*!ucva5O>75;cWYw_U?0^`New=8JtBV
z$)>ZdQrSHAl&12Mr3SnOq2b&921qi`GI@1b!nAMH&NV?Nr+Ajh`yX>W!lVl?ekyox
z*FuHNHkIKd)MdM`Gq<NJ(}SJmm~Vd<N@QxPuRQ77vUcJ@ldkR?O@~Z;qpaZV903<9
zgfaVZn0(<(Ci~7Fq9ntHQ*-9D<h)8icn<Shj`zqrQ#&CF*|#kvRpy|eovS+e<ka%a
zb7k3LWEs6xvc8$cJKnz1>lBhyYxdAPy(Acw_^}qCHsS2~wKYPaQ76buqc(T345=Lr
zM`cIE9ZYrXmhhHmKd<d>-ZqY|91az0_+<tkE`#0Ns)KXoelyq4HgX5&A}Mv8@{r$W
zRFWz0R{UC@a}s2Ddvdn*jtrJyNe{&2hcB)%up9W-pCzhw`vu4`b+R&FA3>35TxY5A
zrRQ+$oIfU+CdKWE_lU_3Ys}+ckJ`w$%(1>fvYFcD8N_?%Y@R&li?D&3{*_@EBWv(u
z7~LjUKz=!-nX>U^D-*a~Z9x&HkdxJ8L1z9kL0qMG?4xvL4CFQVi-j;FaBqD>y3a1!
z;>Zy>Bw$UE+y@Ht8c9ZBek6Q{tYb<fHjjYW6qU8iTmHsMqh#pKg6O4RwslGH1gxG0
z4SWoFLx9al0kcx$l1m!W&+5QCz&e2x&wXgPP^$NxyBkeFBmX#-e#acgXY#qm1PbiE
z>lutsZ`R9XY3<w$F|moY7k(}s)A&jUMValwkivsPoR`#bygd15CbUk;i%}j&{+QDp
z@;@oP3cnj~WTAzjFHo_geaR!KqtygMi9-{VlZS31N|HM2rYnkA4O258t}}1!k3q;4
z&>K#Gujzq+c3q5^$oFXb2gd>Hm>Mx#&%l{)a{Pi&lWIuHw{F)8J9V3>4Kj$&8;q6c
z`G6@gYes?*zhqI_k(KS}dcUNSoYJI?=k5;qfv|DHMi!AS)=TRn85r^d<;q0rOhzAB
z2tPGP`rTaat)1|CDkeyxZCUd?dD;-+4db(}M*!U5n05{t69rHvNkEiB2RGR=v&(O?
znH}3PHQ>eQJQ<+zhdS0txC#11RtsTAnyzsdx<H0_owufDBi%mjKB^yWi_}N7>s16m
zFX04%+UPc4HFiQS4nv7a(dG@^bZZNn);0q_Q43s?%?`t(u&n=|9pM+|1eS2(Xz|)T
zb_#X*y_o<VeDisLufMf#uMQw%@~>@WBfMJF>Og>jlM`NU!@Za82$K4S>cKD23iWqz
z%D8^6t8M%fgbBjib{Obgn-0yJiB?SFgwmtbWGBa{0iut~tWq?mpEvgy5T$-#-DfIG
z80YpHGGN@o6uI-(HDY6RdL>k3ISE%swJ3rGkj&z~5WE6gZ&VbjI1UVRJWq6Am)Yjw
z;*0p9jw&mPfngx0W-W9tm;UU`m5-C~u9XQSl^v5AyW#34=-A?x>uW=A1jDWKUCXud
zF&kifS(1+$wN7Z2J5)C{j6ErFg5DOV;odq;SG*ebLXcj37vOSUDjRHwY7&JCcjM*f
zrRgFegc)JdddC&DJMm;oMd{6Rw?lNxOyCQh2>@+-$F3$$6MsN4DZ%5Bs5O1%P;p&J
z);L|;EtrZz>-oj?x_vc2-3QLfL|ure{r@Z--H6ht3K<{M&`{z-3l1_==nNRS@j;*w
zl5W+oIa4haD%X9et()%Uo-RmAEEcCHg%40+fcm3-J68R+@{GP{Kul~BxcVF2r)8Sy
z*106VTGMSR%z@y+oKm!wa0mv6<_KH1#hnknC%NEt19^nW+S@qqc#4O#3h(JVB%?d;
z^G~ji?=)X7$z3<O(Z(|x?`9qBZMdl=@8`NS3b`bxwR7JBrUQq-2hUy%><r(d)vKvM
zYAZQid*x0!;1I<3Z2IbhLa1pxSj%xJV`Ne18MBTR8edQhL=BBM*n(Q>j>7t^xd?z%
zo)|M+fnJa{n84S#T(O<(D`g9KHu@t{vBvrgmPSr@A<>NuJxkHk)KN%*!8dHA28<58
z;ZuX@PLo?6D+Pz%{`+?0$$gn3uvX@E02k<Rw{`%(vO^8<xIL~8DlA{kElv@M;bFfb
zb1F}!G^>iI@gd|1+oM_LpKh2Ki0WkE`!d=;>nq_xsnQ&OE97#Z%Uhf^*h?Vkb5oMZ
z{AComxW}e7aKsC3Acnx5i@1cO58r{e8Y<OcVO0MjT0l)*m>Dp7gYfiZpo}ofdmP%x
zK{3g9efeUhV8rY7z_@`;N!0Pe3~BHI?GN^_>~On!xwnm()+9YM=6QCns`W5VtiyIL
z)@;5A68t9dx0k&_vne))X29;KvT21feX@|s^LycAW!`HRclfM`@I3lbhjsLb=dlbb
zFjP59$WfGBX<lf^d?CaSI#g<!W6{0UTcoNOSVdk>EHq5O+SzbW-|w@-_%U$zLwRZL
zU-0Ze((w8qc?L%3<J^rJxgp2nBiHdXlgz%9JvM`9e;x}5`VITgK|MH=IqweWkVub6
zsCP%I&M-Se$^P0!b?wL}HPD*rbWN@mBjY@(Q~O)10>#-pYLx(oj&}}vDO|>_VUeGK
zDnU3t=>@^fnGIvxo$JW)eBiXit?)bK@D;I0Enzti`WdIrZ48K_nM&`w%CB+;4xWDH
z06S`~U`GDZl#^=%LLh~-*Y=D|Jm<>lo`}QxCb>IJG!PNoRoU6yp&4CkVQ_dc?}0@L
zKf7fn5BuX1l?x0I164ILn@EW5AYacF@?+)&=%<X|+}DIQz&*ECkeoK0>A)R<;M3sV
z!D*3947^XyNxxY$hWQa?{J_~++?<;LG)M%#M7^#{gTE>ie9jDAWF#zW2T2dz07MSa
z40q1q)-cP;Oyd)_r>RGup%}WQmk^;+K|JlmnGtd!L(GhRB^5=9%C2V;nCZdgT?bKh
zkDx@w{EK{O$z<RB!8p~RIB1{Q>7g#nrvBd5r&Ck!Po{#csOiuA2&>__1F;JGc`>6`
zeVRTrS)GtfBmCz27db3(BB`Z|xRdS1Sc`Pu7^O>%;otI`zV}hWM1Jim>u%bo-hDYR
zb7<cJI1PaQ&z%uWm>+E|0`;<d`Gj+6B~tF~r?XIW0Vndv4%NMj>EZ3Eb(*>YCXrVd
zVn;!sZRbTwhnEG20{Sn%vd*3G97kfjkTPmE=~U2{oyZreRVmw`SAknkJ|v}f%4t|y
zZtIdt4RIPZ#kS;?I9q8aGRVL2{Yh)&Sb6kd!p<3?9rLyZV15ai#uTcJdE)!zoBKyM
zr>6_TV&0^Vj9p6}RV;Eakw~__%4<2Fn$7r_6ir^IB)xSEB#`l-_^8D=zI+bKf-EW8
z1JX`9_~UkS7rY0~({h^UuH9khJaIZxcyk~LUr6pz%5mYH(R6YOLW4FL0v(v51CEZB
zDnB94@3t(nJYI4PluS_MBwAQ*=_oS=;K97rWWz2&84X^f<f_AHODY*fmI?e>Zxy*h
z6;6P7JkYy}H6HV#{?^`BT1l1!>9iYyI7KXz-F6Ue<+_8&sG{?QkKH5Hlw-A8NaV*3
zVWGx=ap)$tIe%tz`62Nv8eo~m#lJaLHUAR;1QDGb;gv693uAgWzs--pqo4;3C(W(M
zrQ23?uG`~9^^*=YQb@JD=o>JvM+vBtA2KNE1g_8&E~4vO(_IO<w3{61vL%<(ZTO;E
zWFc9oCXa;+(8D{e0n|bS`5YSfax)#QlVFToW8$>aUR$>5`8L6i9{XBeAde9`jirpq
zvz=IKl$BE<<ho(HH*7=uMab%i{|L9NdqniUB~P50{90~Vt#<iDgjc&51~!d=!uBF(
zO6qRAYv-qoW#@q#GlD$ggIsdD#5%k#BgHz8k8oS)TO7A-b8Fl8-?UjpsWZ!vU0(RT
zpsODrH3@>&T885oqjqZ*hFFb3PZn*s@O&@S98+U71-jKmC+KW(2rJu(WrcF*1Ruo2
zh_C1`*=iSkRCMYC8D(gSeKGf&&-Rd;mJFQ=%J2U>%|y^a-mfJ8;PrZLGsqv}gLH~C
zWi;U-Q2&K%3Cd(+vq^$M<Zk)R*@hhXJE2VHDJ$DYt?p(|BEvF}5E=%3@3bEwx-U&!
zL`YIZhq&}yTA7m|fzy;`;E>%g{M;$iS6;|(xwe8q%D2~0wG=CT6w*n}uMFx{Byn$B
zLu6hed!uq!O#1fm$KBGb#SQ3~j2s}O*7i+s%CI*SIlMq5KJNqitMZHf<dKBJ#bEVR
zJbZ@0FAr6cmjMIWieEn3xUCi6)$gp=W1tklnN)<+Ueo527W1Wj+Ug{OWEzMvnkr(T
zN4z-dEOqv0<5LQEKN$rQW>-2HaEobxOvN2Ud)vT{SAhM_oUo!v>#*u@Am9K1cJCqJ
z9s%G%Kj`0j{(}6nQrt#C2~zn(_73dhUN22dvE+XbB2$sGU<)xyzd<DnJI!P)@Dq)b
z$gzV+y>OVmK)<IUsXB&@P%svTv~?_WY5|MT-|>C!C+)T;lMXxcN9B+65*Y^wMmK23
z*P$&A?fmxY&od)Vk%C4%;jgeirTa~Um{yW6FUlYrom#d_Ia=};8Z;34!rl^!?BWQh
zwLBVM=5se*5m!xNm8-q4*%{|uHuO!5Ns`Y<d<X(tDu5t+AOFUsl~>-PHU&SLzdG9w
z2l{Jhx`0DPs7hjp?lEM-aR6H?W|M#zaM86*{L$pdo@S>Go-v_FWx7IC)Kow2i(fw-
zy9UPm=NzXXeCPnS=a%Fh8qx&WKZ}$g;binR>I|Oo<x<5#P0B$?I1yLs43e@miM^+v
z8Uy8`4QLf`7T+I-!<z>a+T<wHiA^7{U#P2llr2mn_<>GOL^j&xDnoBc3k9_T)^-Fl
zvAiW9I^Pxj(JjSAC$@T@3+h1cc8Hq-6UdFi;Q@vxwHE*=nI3{D54Vyq90YxkW?d6Z
zy^RD!(rt3%pIbbIJ`eKCt=U<(z}vHJ$BH!~f&I)AD@rA42DZb|xvNt2Nag;~nv(dA
zGbY#sWg4isq}F7Bn@^$$kUVxIaXU`Wox44P|6iua5<%0Q@_`$7uqNYc2L_phOIIU8
znBd=xfG$*D=+}W1W#e68EH_&CEoUa#=x`qP6+-bpXDghusi_*}((tiwccax|iAhO>
z)HsEx>q=1zRm^HKfn(7IZ)R}vwoIA$zd8AC5j7^d-6c!32v6_`)W@M$V!|#Rg2NVC
z?(*8`Dr+H4+&IB0(jNepG|J9W!GgJLu-4YuQpm->wSQOnt=E&yeG-SYjX=j`B~?dQ
zLx<Kr1l%mO;D%ddgnexuQj#(j)AeRsYPzP5z6r%uq;{uYxQguKwiZ4o!)7_IyNr2A
zPK0{=?RB9f!kGS?t+2x<5$F_-Hiy$nod)Kx+d9_jqm6}hE$?{dez-ckq(#$o)v79t
z_5+eicy-uD_=dE#LsXe^DI4b{O|xA`;(no^9+<8!Ip4DJtH>TUWG4W=FQ%KD2nmCM
z%w2_G3&8`&+Omkb|8A~p)3CD}DtKTf*R{H9T^UE^zkB#!(PH%PM{0oyMi<&G6=);N
zh?f_7KmY77U2uEPy)ISA(FZQA*K6xhQxsS?i1OyRpD#DKT*;k!rE=)czna<c!d$jc
zPx=C(KJvruaW45ejSV_iNTNcyCMlXr2ZToi>S?Ct$hK~?lT*ap>-^>md`DKgGDt9b
z*N-;QhmgYQ&T;0@iJF}i;(e)itSQKGQZpyd#FJf<mjDf@d-?7UK<WB;kYS*m$xd7j
zKyzyN+gL3Pc~AjCi!q`Q#bpG%6$HQ&#Uw&gkL1<G>&SzRZ{<HH*l$Hh>L$Ha5$gw^
zecbT-vDek3lsorx73q1IRDuK<xOqWOgb<HtyI%*#PDb}(KY&ZLWQzu%lww^qURV^n
z%SLP0#`P(-jLXd#fH+)SVXc|-tj^3Z<Hjzjb2iS7FGdOE%giAIb7{kKwr@*4!N?eH
z6owXhqc~_Dk>(nnV-fC#2JPRK4i9OII~d$TH^E-LueRpEq1i&7jUf5}(H0vck*HUi
z<M6bkUu%?G6p*C7<4U8uBj!;?+dkWAB_Y(_16w0Qt>$W7Qro%czu@SI24$V-Y1`cx
z3ynaSw6R{Nvv7nXZSakvdNg0|(1_?UR^a`S58$eMFlQIsr@IZjLE?~m<;}HEflKWs
zq{hJeJ4F{Z#u(SQr+)PT`z<n}u0@5CIVuydcNJ&Wu-si@$lyrVNWAj9qd#wHdGJ%`
z(ApyZn8ECf;RWzTP8}(SRV^PuF)02Y%gpV$;QOd849k;$Zl;|BxpB>t0PZbbL2Mr^
z@i&{^*#=mgY@<rfj>HciO_j7W)sjcAxg3+u{q185&!IpUWf}#npAF33(GCflO(Lo#
zF_a~8dFN{WoU#FNs1&7NnpzoCGe9K+SJwQ&hmiMYnQjY;bX$Guwn6V%Xhy}@Z$_>=
zC;Vra9nda8n=j!#=N$z_9PfH(q-@Z<<JDkflbOsA7{E?Bj8W@0BkReS_zge~Gffj!
zXQXc4_t~#>aw<|toLlJ_oxW^!-rYjfOVQRV$h(3^cgdV#MV$Aa`~Zz~w<jNl+i3R%
zK$~KuV@F@(@;a4%K65ehhPuzMHMN)!nNv2VhiDkXu`FIJ+}*S6txn@lwc64~WF;=z
zhU&*VAOAf&e{GY#(8mr$(ueJ_SOJ$zCuXeo(J*jEsq6W;(5$WxuYrC_-SEhc5oD_s
zG9)DV$uW)tb1pq1X<IfdCfrm*t0&@<9{O2(`0K<KbfH)r{fYrBpCt;H%;OdFT5)*B
z@YORz8ttrA&KD0Hp!%54WavIgwNC8gXgKTEE*t~58R!bpT~&_VW10PA9>2j~G`xBI
z21OlwuHE%u_v82Ax$Q3!9*viHdjYUNI!Ase`(E{uBJl~|RwOXgj^4~qk6FFb<CQ9e
z{CSy$l`3y_Bq|kYYX#xA)J-;i3f0(&`!w6VxBPYn6+70^;`oEz&aBL*U*cJb`}ug+
z0FAY?r7v|8K14+5;#JH)au?S3=y{BAKftah7YK>uuJr{DCRt_1OI;uYL7aWCkT7BI
zv7K%-GE4r)uC`**=#2W}hR%DkOmZab<_@SqFg=8ru=TsyOw-c!dBP#UiZITcN<uF5
ziS`?Q;HCwk@h`=6wt(KW-QnzZiYRcR?c0AS&3fqmUd4=tgS!oqn;+*;7&9|j5W9MS
z<r<7`aO};`gV(=&zN?+nu~Nqx#-gx~FgqL4cOY#KGHu2Cs~F`&<<2dOUCRSD4jsE*
zSw=<zSJU(gjQ`-0&?4g4&yCgn7HLk{MqU%byvcL~-}%=_;a_Zm-Ru+``N+J4*){y#
z5lRa#mUzUNjmkT`z1A^qMdx`DmT;H=9N_BT^Q3EG7ZP8d7(yBCbWbvKN7poR+PE5`
zh(|!y(uHCmZ*@U}2EaDSFbsGF%0Fb$b84~3Zg^)ODNK)d%#MWBi+$qJgIf>_)S=Q$
zvMG)N5j3)5dds>9VuBJo4n%(Qu(31xJyS()det!GPE5771wsKB7+mMoRhz>r^ydBz
zzvPgqxw@R9B1@175gk=F$=^<-?}U+9UV^cX(#2q(4|*jz06BOVKE<NeG@J)4NFDDu
zX5<U!sU(|O)kBZ-m~8WsaqQXl@inxHPtgF+bh9meL%RvX8yy?P{Jup=+>60lq0**<
z8nd*gD9m8`%Hqr67T;C=5vSD@h2K5dkmjwk0-MNBs_<A6lo;tN{W-l{SH}w}kyuzy
z`b~p-V>8Fgk?B=Xm@O$g2DuivT~OZXhdT3zKgCw$sRgO)tT8BG(_ZLPks}`vAsRsS
z()nu0p98@yl23p;ZWQ?B;EnOwHoSOr2Jf$U=Irlh_};mpopDghZeNhyiAgT|6t}gC
zTE6hP*dwev@E^{a<}$i1HP36;q~RngSGJN^6H37;4jHfH0PI%YL|`@SigDm2ESyK~
z<voS8WmK2iZx1bX_*4Ll>yq%xoJcmuPYA|zYOI$H*U8%$WVME6E`vm=Q{`kX%tH>k
zDr&$TSb$8{w|SHllGnFDV3QmUCFQ$ln9q7fBwILLJ&HT!aPaUF^#zwydr_aF%cP6d
z1<XcMLn%8EiTHcNMUK!zos<JeJ`eTiro!LAeEd>Q^Skl;*ZVt7>^0dQGB?HW{ZM<3
z;kyBu_jdzzH|G^bJaG(U>{G**6b{(DyBfKjjS0_%yb&-$YXeEZCA!c%c$FUIyVJ$~
z8IIo@E?#KKeUq~_XrtL>rn|!?;Z(p7d%SV|_L|yetsHC0JB%ZJ-QVI@0*O8L+{yno
zG}TgMHzgvZb0xw2#H_1YcTVUAS?&P0NN8^sq)czLB+fxvA}J?=-WnaybNWcVIt0u!
zTI#1cEiBAyY}OB{mXx=!jkWJ$U}ph6_>UTEkSk7vExb@IZPU0Lkr&tniB5EN`(ts}
zkN@8>z_LCqcx^~8*>nFRhaXq}>J6Lt>>K5`%E>b7l%$Y9C^EpGDys_-^#NHxk=D0#
z+3Zo8aFbr3mf8?Cq;4LwC1;7A!?a2Wty<GEsDOBc^-F+*W-h>LeWAOk`BL*$L@q`_
zO-aGtRIB&HBqx(*gy~?OJG$cAAWP#F(WiCJE);aD0P?U2ah@8T;m^le^gpG3jQY)3
zuoHVj*U&9c6x*V)ulZeNKPP45TS|`FJ{Q%4UtYZab%zNi0orY@Bv^NVa=5|l+%RrM
zv4Nq@KHq|aWmXO(c|>a-DqI^}hkIdmkbjl}OeZ;WHhVyMIfDk$bVZZgEm4(9Wv(_y
z0tHJ@1enw(REK}X^otPbJ5FOWM3m+5mvTzYSDEpp%r(Vpk>5E1BKniE;j!}h8>Tk@
zYR2MF{a2NxOuAK=JfjBriD*At;1CNU*)(n{DvUlQ(!eo{X2eJr@bBVDR9h+L_Z~RL
zp!_={s4xUXSIKjq$8KOzTvga&cw#Lm6{Ah)U7mtTTbRSW3VZIGUefbUbm`D^%v-75
zvV;NWjxZ)GxaP5c^47Jo_x)HG#cCGlgh<fvMR&vFkoeEQrOh(1PV(wY<>GKT$Fj}f
zetdLKUlA<%?bM;wH?FMn%2nsHS_=8k+qb^bh}v+PJ!D-W#xF|dplo?UwZ>+@5u5t-
zM6_=(q?9bzn_<oI2gMxzE;3g;C+qOz5-GWN1NXaVNo4elOuLsaZC%TZ3VX5X1tzOg
zOd*!actMWBAr|*lK_#uvx$rS|by;Cn5(H-Y`~`4pIKD;bzlGf>UP(TJCt>Zc7L~kb
zLkF}hfu8hM)g0w~ftBM~fqq%F!EXAnsLDo`JTk6|wUXPXI7#h<%$N!`D0`|DJ4_s4
zGYcJ*g<qFmjnUf^HzDFugz#^zo=68ma?&{3Gg&!4PR|^uj<poswZqvBf|20br*yR5
zLdSK8nCdiC&U`h#z~{bV%B!8Ki-Z(-$t0H-H(ujsFVg+1^cQ3*nVW%a?*Obx6h?^!
z*MW2<k2O**^_p+>pq&<|JIH|8vTclus;voQWyKE%Rc#8$76p4^A9&u|pF7NzmtY6r
zscw>JN!&{Z&=#`D4j=Z%m{Z4RG|C8=N*obQ`N*5*=xWRbt~LW+4#<{`jHo%!H!c$u
z6niy066=BrlM=qE;un{p!|m1WhN$h(6fIqYOj(Py4G&u%M`7zp@(@>BUue5mP=_IL
zkO$ujlb$Q`;y(Nt4DQKWfnMC{-q9!F`l$Bi+dl<n6*e!dFWcod1K|m-rf_;#Jzi)C
z?x@Deg(P~qInz?#8J6bs6pRQ3KEN7umqx&f%pZb!a16hi*m_zc2R1vmB39YA!$>PT
zD}qb|SZO|+!ffUlAKDD3fT++Ssa`I|w*LqUY}Km1L~y}K`ZPhD(yS^T&H_O&&ue9}
zL{!zpSRJfAq+<J;vEmM}g~e$>2ZYk>bKJNdEAxdAThvmO)5!lGwc91f#<X0x;MFon
zsyzw-^O*hMi*d&U9-Lg>w`0>(<kgTny)`)890IqFP&`*}GhEp=)@)-k*Qp|vy_XTr
z3&fH77)U4@Pjd?J;d|2s{F~{WNp;IK(a5CC$Jqg8>g=T!gmqN%xW@-Mxn>=$@NQiC
z;)=9kV|NoAgw#~zy8$@(*Ghs<zoa}@onZYuvqb&8F+%7ohThy57vurl<ZpF~$+y_&
z<uQC$PnMe`Id8lw@OYrU<G!6xx4o2AKe)?0qEr@CoSpS5%Q+^rK!vrKyve><%eX-F
z8Hi6!1Nb7W0)~_~lfMkNk9lkdA7`O3n`HeB9vI2smM%BjZ%su#K^0yHETg)Z9`<K4
zqoAU(dTkJq;46ZhMSB??OgEujFdlQnT@ADwLlf<T-)U3Q^3D3`-_><-#^!k9Q7che
zcrDYaXV<KZYcImHQ1&O&)P{i%^xCerE5s4~n2Y)Mj4Tiav1zP^fVzLF#~<9b*<Q2M
z*lnab2NfpXABnxFX8&thZ3qQTS-j7gH(r+SFDfw|Ed_JEto<EPNCAe;0!2{o%+4Xc
zQSvNNHyPD!JC5xkvQ`MC;N5WN2LM)wbj_<QVT9XQL~Yk0+Ph2iR=86yWIQ2zJ2&18
z8&hzW%gWxx-rI!(eYp^B-w+R;R#M-2!2$p+BAg_iNcm36=cM|~z8DKg`#4YbsZvd(
zpEUU=0RuOzA0%QLUXfioPiUn!G9fOZ*xiZ+PN`uI#+QEW9t&R}y)=ZUc6BRk=nU>@
zU>6$M^C1M0iKSNyea(;0{`ym017nO)<5sf52EZ+xr7GY0%NvIYH3q^fd+vU~#G{vK
zYaV<`4Nk*J(zN$I#C(y48(qPIRqLVnlt7s(Ba?4GD2YkINzIM@N4gn_k1uek4J7Fb
zo*pREnCVADSqd>$QsI6Xp~7d@+rF{q(gticy5i=IKgg)t9wBmyK3F|p3C^*IwPVOl
z^J3AX+LN@LYoq<}b!wnWb{2sHRN6wAN?Zdqu#1-p|Bno@(pGwxDV76$hac=0BIm1c
zX9=T9q-Yb6Etv6_Ixc|G)bh3ds0#FW)O20Hg`uB^i*@x+I6S!1&k+8GVKpP<KXwB{
zR;91)#%HB<APF@G7A|iteRy;eFi@|J`>l-~ygH_Cb;+*FhnM3ibC0!?btA7?f@BZ@
zj~*GA#bt0xH2t5An`&~2hwh1M5`9Ys`==-&qd*sNdx7)f@m}fRI=Nn$n!9rk{9cNY
zPcV*wJq6y}I%j%2`$o~f)&8u^hM$*d>z}*K`v)q1VScYkSG0A@B32fD?Ic)rO32}@
z9w-G?Ou%;zs$}a^F}AIO^m(e{hXE>E9?JMug=+Ss9t`zC_LNrJt~I-(ZttRVJ0rlV
z-|L%cwdme?3&J`lU%!lis+3cj#p2w31T(;XE`!1cQKW&K8};xD)qhPCfXB}d4ly8h
z?_#U!i{>;e`zEqviTaI*LCo|UNd02roTI_=lt3Oc=8e?9Ub6X2aE2@gBPSn(9cAW(
zI2VR4SMpIh4%sqzz>;y&y1BSD%%XxXcO&mVeBV|cLhHwgEcW{^C**Im|M&}~IO5W~
z?KC-68tdV^UBPL0TYqmDLFmH4AdHExb!b-a8e5nMmD|H|nKtM$nj;Br8C!@R2F<qH
zlKhr6Dt%Afpz?`xZ@IlW6X6|I?0F-K<uL@LwuyIA!5O~lyF0i;P7~!sHH&y<Zm)zU
z7PU`AL#GqP&5*~1kJ_$aUBb>P{)mg>D*1;`%fIWE72nt%ht+iTTiq5lPTRmOr5dN;
zI4s#_5x9+dg{3e-Es^2POjl5$!=Gg+cyHDkiyO9Hy3fv(-eKgym8F@ZzdKEJ@n}eo
z8?t>#4$kc$NQWre-)6*g>J)}aFa4Evp)dDZPLd66yEtf{dC8fTo!I^BF}#~_yfc})
zSixzY@xd3>*d53i?bbelb;WTTZCshKR=O?I!t_LSKm9CM)Mc0!3Rws#CZJYa92)3Q
z-ziLmXmhVWU`og3(y<-q`9LK>TPfu``D<YTfmJm>;M*?XzokM#h@0Z=zLR!x60Sv<
zi=(twsJM#E+f#AR*2};?m@DM+e;n1ZhE*jz#Rdwq>u5~r3tcLElIwyP+Aly%CYqxq
zlQ|c8k!w+Io$d!>v-_9eKV@F)=)|Ue;$~EZE9FXHX6|x#1;G`nP`vh<KQblM1H!b8
zdp&{*FnzxQVaTwWFp*(!)ihxm>!`awIm1jWy1u20xM)%h*AV15E!4=met%}L%?Rs&
zgW8ft;!U}H7?WpmYT%5Ucy}}_CtiUn4J`QbeOj}G@0`7^o7(5fA($!gYFHFE$aHB1
zk`Z(RoAGp4Spv5f!$9nIt-e6sE`9RdoBf(Fo!JLwGhy80>N}|8Frn-*z2yAfjXtAj
zL^K&HquoY82|zZZ1`7u)rOsraznS9wBiJ)!wnvwfs8ZiMfO5wC?#99zVCVBj#GP1+
z+O&UO$qCgVT%%g67f={c_^`QD`ww;LFunemyz%U9Lt)#-Vw~|m@?@X4MKAoc(3}nG
zGY}<*(Z;H!p`X9(kxz`A_!vUpLMoc#elheSqYdsdM6=xkGD<mFwdA*6ThDdfs+N%_
z(S#16|JQG1e<i<ks@FejMl`v4_i7xm$gDkU>b3Trl?%k+M~0lA!GcLqP0^%uPz@(;
zc?_Gee7@CNgXz9IYq@f8<Zn@cx*y=!_SKY&_jYvO@Or}outc9-BcS(dmC$s}zHzi%
z7O+wjXezCFFry+K6js)R#8)AOW^aVBmWD6#&aV}xlu3WK;2^Usqv2O?L9|edVwL~P
zzz{nVBC_BMx_p^8r|Ul+@`TN8xdb`d+aW|CX7019-$~^AEBsYLpOY?<lO~98yM0nT
zS`4gzbvL1Y8jl;Fb*~0?2J?DLO$in)WXRSO<gKmz@$yp3D88jyF!u#EF-IQj>qNJE
zTz66`Z()gAXvUqk?%rC`uQY_=!>=L~B2Y)WXYDK?Cmt4_3z!oiyMWT0XAK;lHzU5X
z-E&TkaGy~Aa+7KGO7DOxtgJ2Q3@gdjeuqp-xFk!)JNKn<yrFYT+KM}v*IAD^lz%@=
zm|j_tW*kcHJ@D>Ale6AozvwOwXePEpc|6G)fMW`>PsC<$@><T-!YKa!hfaQV$><7n
z2UK)1Y|sXwNu_C$Nh2LE0e7}G_9gqg5gd|b+V{V!f~IFvne=IddnCWBe^1Zn*}WM0
zGl7;=bs|>aulS)-_OO<5oHO*-T2`}Mgq0_fmjP>HBi+1P#-mY-N2>>}89Id<e<mq6
z<3di3!PWhl0itp<?^+4+83$R|my(i*mN4?YNoo|L$FhY%+pk>dz?T=nbu*?!U=3q2
z@5<uC%kzVN(6Vp+VG)lsE&T=+{|y&70ZO=RdZkSFeC90`V_9Ad@~v6FjxwJDSc18a
z0h26m^CC>Jk8Pfn#*r33!fI{lQKEcZqFcQKvL(&W`OUuy5v7r(G<bTswIGz|Dc1YE
zjc)<!nlnx^Mt62H`Li|ne>CTws|YA*CXo_E)7qeO&$n+takpj2#mSY8&t?NSH`3(6
zyfb^@$wM7L45|CZFHGz#TJYG)Gc;Qez{l1=KsL|d%DeHbJ8&z0^=}Yk>o?Igb*TfB
z{=vrv4XJPvfMhqZktZ|eHOZ?1f&WjujkpIyU6g-@YE=%|$1BEv?d@fq?GQgO2*J(d
zs{ZJyyvb11%Nd;VV#M!QUM7q3T$p@!;ZdMJmYED+Yw2>Jr;co2#^b*U#=k`#%`wcr
zSJZXCs>!^)?QVoMW9C-PE}+u#1-h^eiSbD4@-wbYil1XKq1N{HIUyM?tz065y+g!F
zq@PlL)sD($M10eFFjmI&+pEk*wu(zu3wPk1KYxP*V4)3z&N4h5hin$)pbE~CS_j(q
zhL}L9^Z#rsdbU6A+I(-#?r=>_31AwC6hD597e{v4CBU5-062+Maz*4P(yHz+PJi)R
zcdzIcWm&-RW1-goZml)LlWD@4o44lF^)P6q`9bAwg{Sxj2i_q}X+fk<%&~GPWvLQn
zSKWr(4a6@X!@=2SZP`3Q^tZlF3&AHRO$n4t`R0gUKjAlh15`kCp1kzBn2R~6%aQ&W
zTnWW}u104F<-?3TGWqgDbImp%O;J-cjlBFbQhe`*If}1am^AOVvl&aQ05$*|Ymt4$
zk<OZ=Y1H5NJ3Q@wVhFXI1Km{Zk8C*`@5n%O>CFmdSW<Mp;Z0xfqkS8TYor($4ygLY
zU<}q8|AI*b>1}qYcZWsPo*s7k7Ttr+aXN=TKYj0%Mj3n4q+j)cXy*0ka)kQv60nI#
z>TZIGw2Hy?azg+16NGhBo9qn0`-bNilH;X;eU{`SnNVR{A>75;<Jw1H!aalQL-Cz$
zxpP}u+cnLfNd$-dQ-WxFH7N<2Mc1m_cYPQv;YaO9k)=WK)L7GrT7@g3l290`IC^r-
z65V0qwztBMW?S6S46P_fuo@7~ZBxeG?yN(OT<**sJ~7y4l!$JKQ~Re?i)gBt4;cJw
zj!8KDv$dV`Wn@Y#(#fx;I;H-mtXv(Na3vYfylceeJ8qT9L01!?A=`2;h3|0KsRv-n
zu}Cr$U>i8xqROo2>GNPT=5Vj44dNjI-Q3u9=$w^e^IEq0Z!{wy4JAXVjOO+A7hTee
zKH|}r@Oom>syA5GS5dN})}+F1<CGZb$e^>JBGTl5$>h+_X~Lc>0ao=77H5s|xo!M!
z+Ad8Hd$N+AT~brp{^scxvre?>+@UKUNmcPS94yg_Z$6)&fV75$<3LK{4YoY~nu)$U
z4M8pN)aK<l%#1ar8%Zw@&w1E**)YxQvoZSru=R@YLWeO!!EVTI6lI;3t3*SJ8snn?
z>O9~zSy(5P!1YT{oIf@q1esH@<}8ztU7&gHxtITP#8?re7`V;q@i+jEVO^b4Wb#R|
zU+ltm%;E}W`VX6DTXa~5q9e6-h|r*`SA-y8^+KE98+dG%^aNNHf?k=;A=<_VOg(xl
zhgP>CWW7_TxgAc60mNjD=FBP9$UDmXI9cJmBK^!fD&s9wCv<36G>J9>+UR_QrOs|5
za|F4q?)x)fIp00M%W!=pr^rIf_V43Qzp3j9qP-Qc0~0ONYcfFnc>Q|6AAgAhNxTJc
zG4(b*TyMpYnDYXbHKzYd=f~LhLl3NJw8ukcnk_=8d3Mg7XE1y1Mu|5vXwO?EYwkb$
zicF5qNWbrU^PD5;SM5jCo^L|PqXykT=;Msl>U8mS*Xx<}lnt_)V>t|C+>4V`%hRVM
zp1F<32{zZJ4nGX^BuKc_UnJJgn|U^@8K^tp?_ourj+zf_hEo|x(MM~bfEd#4ZWpTG
zj%`4Er^lVxLvHt1Bm+%J=wa1BQ<PoUczOPKoL<ABHJ>cg>*rkC{U5;zj8(KXa-k7j
zn2h{EkBf&+4=q@@9ks5u6&R+_emG>1=cL^&%?c$nsmKPOe<05`_Huc$*29hA0gpc3
zoO?0~>T(d`apsDpr=AyI*!iRBxnaNJb&R@_{&G@wixuxRCOZDRF9JO5Ow~w<CB`kf
z4n7=vYV6ymywDe2Po}8aL+=%d(?}QRGHXxJ=m<#1s*2RQ`^wLW0JKPDk6A$&F!2sA
z)hJ8h1W5wL?<GAaN^vO%@*Br&M>&<+JcS|{Jl~?*L+@4ots+(Q%Z@nXU)c<=6Sb!x
z95KT0w5H0o=uTQ#%A$FwUebi0{c0rmjKmd|eUN*68HXeRQRksG`-CX+K@=mN*F>17
zq(f06t0n)qn4;7*`7#<w#%s##y{OEeOq5S+fBx5wXuKQXl1Y+$iUngCztJTU6+KBt
zHkWFieHtD&YzQIqGIqYm!6T=pe9=ykN*+6)m>NX|X$@2J-#Qah++&s@8MiROeTHi{
z9J{%uh?8Wc`W|?`_8vcWtAyUqjtUo|1vE8~Lesxv38N7x+nXXnh5|XI9r$Y$y=JS}
zGK(DVH*GksOLLAdI!=$QkfI;%yf4C$vOx{-2fEbqv(oD$t;eu&HqS8QvPq3DIXAB7
zyvKsfq-Y!BM669-UFMuJBI2|;EiRH1S%rN^rbuh+U;=`fW3Wg$7myoF9=e?H1pj1B
z!&@^C!~vg*lAR>?MyBRvj~Mp{QK2_5m^;bc$AC<}O?w#anG-@kr4P7XHQC=Jl9?`>
zMZ<rp^Nh6!oxGO|n3XyS+>EG`1D-kr{?IPCG3>-%rTv#yez8>nvMNl{s;&pS_C1=~
zoO^LQq#V44s`d`_eGDN%+kK-IK3?kI?bppuwn}-<6xcd%cw2HPYC%W{=6{(JP`SJ}
zEWx9DYFwZ7Y>!kA**qk%*&3qTmPTKh#b70y+p@;gg;nNop=BFUMWCu)+vKzmn2Y6g
zr#jPQM3O)`hctC=bWE_8)&T7NOrK5l5@5yT&3vey>|8a&n!LVUUbhSs(M)SgC5=lz
zqKN;!I8H=xIN%VJC*$kg11+TrE^NUY*fTlG?s34v!P%u^*z*_X=AcGf-5sI*O}%g!
zt8P~g<-dF*_`kf!)Y_DYn1exq+?~M$>bSE4)c5!PLV<rC=J+p4tCA05i5k4sBQc`f
ze%tUG!)0{_#J_mtUZ8Su{J(#1BrXZ4#j%~zDCOlu7sd2boN2r*BuV;4ip~WJu1UaF
z8ihM2`e@C7_Kv(LAH|~K19T~kA)+V1-cR%@oKc&jp)x`kzbkVa&NfnQ_p0yhHlapj
zCN0+INE4K;0GnJ-xM(#RwKA@0DzWxmsoy}&dD@nEgcg>N8YVYNb${FP+V(EcpFXFs
zeetp2Tm@ZlFODZOQpr5)A$(PDq@5UhMii!2)Ckv43<8_s%zgVe#^W2_&HVVurjmIr
zVYXmrou1)mYNpEw(7)uqLEGex@KYxoZdhRKBXh07BjCW=Np)0Dme@PdNB~NMQ1z3X
zR%`F)#4tov6f&OD6_kUT!rICspor%-^Gjov?<Sk~sSP<+(u4W2ATGX98fa&{8xQ0(
z$Pg>0mmU4EH_*lP?467K{7Gq<Fj^-X{0R$3yu`-n)ToICGWZs)1vLesP62H((C-!^
zCMhB;9ZPDR*zrs4OQN#!c${;f%K)_qi*>(I+NF-AMX}^27PPsk<KN;q+$el7Vj=Vo
zYHbllCPUfKB}*M`5l8AjSJ-~?1XdxAOF`02^yTPkfS$%B81~}ev!h$kXOdQQM?}9?
zQJ@QRnBJ7k#G6w-yx4ygSe7X4IIPL)G)TNVL$ssCrE~4rbt5P^){l&SqLv@uK-9yp
zJDKvTyUqP@Ak)z|MuYz5C6Z3tNItQ}-~ZO9Bybg>kGs!EjDkU2(E-tz@+_oDO_~w$
z-3f!lLI1szevy-??>O8_A<x4U2lCP`=JgCiDe@*?AI?>b+|hdI`^qd&AbMN?N5FZ1
zg1YQVNgg0q5sZ52gASJ5`i5z=MEvQP@KUg5`1n8xcqcO`?efo-@|u295!bc0E*5#8
z<q1~0XxopcVLo%}W@-u0vTSi+jVhECsE4LstdETQwjW#AB^#<^%)bu%2<RYcgGbt9
z;f7%~$R}bdKMpz%%+k)73`;;SR7y6r#^mW&(kxCV-w9rC%F<jAKC4#QPqy>@7DM<2
z*0u#w|F1u?n^wJ~vRzhr1Bdb&DE%%+u@?Zl{5+4_59NfUSnBPunllk~s5aDKb02k5
z+13Ytz%m6e0yJ9M9(W^JMQrALV@jfkgO-^8RgHT+FN-uMfvI+8CjU6OqZYUah;8qG
zRlj{e4Yvw8D_{_j-?^|<YszCw^{glZZUD!%{bK$ioJ+0O@&O}jbh<r^uur0Gp*S#b
z#p};|^MkrK252n+KS030>N4bEcKsrWuFlcGTr446FTz_ShIIa8iXplS^&KmTPbIjU
zNGi2nTZb^`#PHC8CJR`SLI;rMVNjGNW_mk{3YnAcSaqds*+Lne<^9Y}`wd$>*dlT^
zzu_b|>$1k#BADaTSzqc^Bn!<BbG6J4##M8;A)Lbr!-4(9DHD_2`cnbevJ&06WCM*d
z{hdDOZSsgRN&Fw)!naCdZqIbq<gc`5XvU(~c-#>$@@Fmo$z1Fa)z&)~((O{_6N|Hf
zmBMMv*4WTj+asov@atX6UQm@c;-4mfWq`E5vB?oPGV8iVZSwHYTsf(T-#3~9P$we|
zRn_TfX+Q{qgqOKV*7Z7o06U8hoc6CE(e~-Rw|@AYR5OCi0X$+QVb4DbZ-K|@jsAG+
zmYNgq|3#+qMW{2agbu&Mh?71~vEfV9rHSRzwD-|m5)|@lKfsJjC8HcT+nzQ!1GY??
zr>O%;__Ok*6a;4A;Z;~98KtC?ELc)#?sR7^n(Q)rnK9Vko8rnKm0b7z?btLBM78Lk
zx}#c{u)?B!i)zZBLdK8%(6&uP?`5T9i5wLZ25^Cb2vkO1-D^?{f|h#5F<~Qx3=QJy
zFPxo<P{6D)^>LA|g;(1)A>5IXk97lUD<YvG8Y#>Ttp_q>P}eVLUE_OZXLY+z?+ovJ
z^Gdvy9&S2tJ@fdz(WCIuj*v_|Pe|afR{j#4V$wwm_&)+s#Wcy~bY7uAcPkF3;HCUs
zw5l`sqMtw)G7LrDx`(As_t%B-Gw>~>Ud;E_%Cz7=%_WTUunTo=Wj@^7^T?FYq<>sp
zd>3pLbB3&SRa4gwQ9Sy;sl~DM`Y!k+_!|-i)|4GwGcr#NnGMkwset=Jpz(u47PrJZ
z^t!K=65UYh=7Q?qu}$Zq9IFAn)K5y7%Evu28b!iusHocGNOHMMaz-#pxCcy038w1E
zdH05vfjbp-Eu#py>6y}$O@KS>k%$A|-Uivo4n+r6?NoiFB@*rl8rnBOM)%#Pyj)=x
z*4*(qK^vUl>KnIE7KZH_N<P3ZPFBq#!lX8e+tCKK<7vK_y#IipGv21)I!AdgV4&5H
zvW~NQbj>V^H)&#T-A1Dg2c;VL5rx0H*TI=<PDZ$i@bFmvbk9+%uEVPyTh6A*yRtys
zkOnTqg6*{!T}W7*-F*7C<4$)qGWzsjIo52Su<NI&oa7YoNSh8#Lo?6O+*D3u>q~tL
zgsuBpvSOJGM}Dt}flIlfoWN;G;C6$9W!iQof6hiH)|&rY2k@(~GVbks@EzUS)c#Uf
zmSBL6<H@tbiJ^|@f7_7#*M2R87<lA+bWFZ4mwG?b(|7wtUMCrA2`KN}c%n6p$rPqJ
zI`1m5WMfoWod5nBWORTljG(}Pg98h*T}`kZRdI`P-!}9PbZIqARZ18c^OUcRlS_%p
zEk5HSWY#wCG+N#M4;a*m<o}x7cmEJ+<Xae^g3(=J1|zh0%}-HA;WT$_uSbaF=4$l)
zxF8b=`MOL!_a23}1F~S)gyn=vep883DNaWH?h&&0)qzQI&($|xA(fJ^&`(|wAJPTx
zDJ%<^)cDZ<>L{oWivr##k~B+z<mKF)ZMXw0Pge8_a~PCr1YuH@RxtZT{0S&u>j8|v
zRx;2TBNZL9<?3u~k(jY1u$LI1Ip$nhAyUbk%sP@Fl~CpF;|=lr8BJ<Hw=7HSzwZ!I
ztrCV`WpRh(uiY<MeOyh&d<jpWcr07Bh@58f%?9Ur2aS+{;Fvnuh_<pp`p{HXsL)1r
zMMR*9Sf@`3)#v}9?{Ueo_f-K*DU;ElgjEN--bjG$ti^#bH!4FF?z!NT<w$p_SC*EN
zzZ1A2K{*blG>^=q%CGEJg-Lyc8~78<wK>FThWbuCJK(Qp`W1hB`2a}pXzL)QR<aSp
z;(I-;#`;h3%8rZ#v&eQUqnA<;Y6@<lRJWUOxlT^}VC+0}C+f>+qHl~XmOYg&qj+05
zSCJ`?3yZr`{Lh?}T2_O@Xt%-S4-B?7#9QkP|4#hH{>QroT=UJ1F?W7AMB;Xhsb9j7
zo4k|2pS;(`$WQ%hI%KJXJlvMmXJWhE*c$Qsb1tMv-bX`8i38P*O5E?BWa4X+^fFpx
z<Pj61tB&k0o=Rnh;$nQAKdNjn0F)38(j=rM<}BWfWx;$3Z0^xpdVzWu)E;$^d4mi>
zG#usiqelM@FFTCex>`JQJ_=&1pGL_Jcn$Ed*||CC{hgWqEY)6X>6*z;a%>afo*#k9
zqirxAa~{VSiwmNDsfHdcIp)g%peYKbh~;TcMSlaPyvC_12eObP5k8Au_jDMnhj2$M
z)(GVG>vB0U)u`)aa#i#|#~ffoxc=nBvsyP0jv)=2wFV*#TE(WRi96WPXz|3w;|tX_
zhKt~LCk_z79{SrP@2bisHNELy@afv7nW_6JM1pbc4}1N@SVUQK(t-3vME|cYc>U@$
zUTvz}?>m16x;fBLdlR48x49-&kU&769Zd?~SlM0H6<tw)QJ5_~wSO<?!M#@n%l%Db
zwgt<C<ws>evbatHtV9LSenI~k{R%;JKkW3s+iuOAh;d*dDnix6nFqjvPgFvExWU(r
z^fZKPz1a^4UH88Y5qMWPz9{o1K9HL5s8XYAQ^su`$;A8XyRb5%Z4Q)k5(D<*lxa@3
z=~VaASgi;ket~^g`Z%>3Lvo3}Mzc`YMxadIAz<oAs4g=R5!*3DXOzX4!!31BjCQIi
zo_NRl9NrPZ{qOEM#|qHm!^p@Jhf-dy0Z7%RgZIE1oJz+JsM^HG*9kQYF(R-0p#F-m
z4gMPLVfHB3P$VT_<naZ?Pu{sc&*bAlqCPLo7>926oDRNZ5~FY!%<+IdyQ({UU0ZG#
z4a9nD!KSll13|`Q9pDb6pea%gNs=1!w625Ry`qS$66E8>yS9L#bkZCwwft8L-e;VL
z1<Mih>6<^~hV^CQtCNf5!+zpqd<>-cZxj>q&jP@IWwUzk?6P0)a4el{3o_l=JDZ4g
zO{gkR<{L^T7*ymQP45^#wN(#zW<aEF&kE45=MLv|(Gyh!uZ=d8f<vXv`(Zb`UOZtJ
zjC&jW;JX$j-ohE`l?*RYOM%_L(1<)zNKvlCBS#w^2LJo<CX%XmI4P<c`=uJc4OKu-
zXH|19zxJbm@^#FVzP6Rl%k>ueWAtOYxl?c&nLmXN&COGpKpl*QG4l*8+viugVyA-n
zh>MsH*Vjdk3ho-<`!T=6WQ)55rT5U*Q>dqA$OyGAPRK9OEqonM)7%?;s=(<)sm9h9
zE37)VrE0y%d2IXuPf7q>GKMDe#eJAxDK`MG%E6MIa*}AOCE(POp&sqm7re&4D1cN}
zDE2H+cmQeThgi&SyaNM6opbt)Z^Oy}^zz@qy0byFp43q&>&5CveU|gpeI;nBT<#+F
zfbJXTkw0%>Q}s8rM|tTr$rh^I-ST-4J|_>v%trk)Q{DChkI#Pi&W*yp18puPU1rPs
zy=kYHGy5#eQCiMI(B~>$TYu7>MSmo8)nX{Nv;>)zRckhGTKJ%};3z^D%++GT?e{D0
zgbnArrT;o_Y8&L->rzm9h2YrG=5O>F(CoHcAcI!>6~h4;sTq|Nv45T^QJl_?4@!le
z@H%jY*H461`)P?$9#m^hPK!{*+ipXAYtw?_>Ng+~!qgaJ*(jcqMuhQb-$y81X=Adp
zM*^u?KKBXY=ZXrJN((}Y*mmrX#pRVG@5mx?$~h1B{DG9NYwp2a!UPCA(ju;Bz)R_x
zcWCb_-J_6qrBT0I?EQL_vN^hmwBz;ly-zEJ*AZHZvZ`WuFFtv!lJGQGh?_^!<rHAR
z(U7;lo7f`i?EhG*s2KYzS{=zGh4W*>z3s6SYHB4!J6AA95n2p~SzC>|CiNJ8S76V%
zGlnlV9o)L{KyV_hS2^662sKI2oCFZZliSDZr8}Dz(Ju(3my-hP3PyXD+ExE9lL6;5
z0H3+bJj@_oq8|*!{pIcRY&GLf;K2^f0xmnos5om8y*=*{+y%msS)Jn-7CaBQ@_*MF
zb@CgpOjbcL4tS%k0R`mCM}B+KlxV--uBlvK1Pd_-DS}%|&GL1|s6QUrM$(q+bwlbs
zf|4OXJHOFqvOfcP_P(crmR)mV#>Jxt=~dNL7qw>`Z42Ab5+xG@gmsx|ypAsmNpT3)
zHse<_^p@%%t%>d~7{_~`?!wQS9KX6+8e@*%ksZ*#6Bo%nD~;rl3V(_5;7pH)Wny65
zHRNeA`}j%8bDJS<(<5|a-RIp;hwnMtsYnjQ{@qQ09YgZUKXIEpud4T^FSk=6%U4R|
zW~4BBA9D-kj+7YA^GAti--P?v1Jk+%&z2nvPoA_LJ(NI=s(G<*&`!SGQ<G{;sdV$$
zuj?byQmjEVtNevZJ#s!%%@<{FL(?@S4rPM*TpmR)!dDR&w0k$$9cH~r4oD&g6k=J-
z0OZtP1OE-#276%bJ#X6}YRC^6Ll|cH$zw8_PId5j7oQ)CZeeh2mC|FU(^lQ_RY-z;
zcaJ6r@dXyNbwzT|-fl^q`@(mElMAY4*2Pup$WXCT6OO3U6(a}v?JLQz15TW1EJs5K
zc!HzITZno@YW#}}_n6@%LHf%Oye`&D$5mQnxW57ln&zbF*-mI|4nCbrFB?3q(!|!}
z{>4}t%lks$J%~Jl`k?xw6*_7PBqoq@CQ_v;Qq^sm#7g`;`OD}dpMb+_14UMH<>uRP
z6g05d&g5aT`V<<|i47GYtBo_xir2?)7(O4keQJ`c+1!n4I<+q@Qr(hK_*)<?0yGDX
zOwfrOaRALB&{H=PfSMc()v<~_cPls$fc2v*`<(g}u!~5`7l;z%#I680#Nwh@MvtMd
z4fGl1@fS#<MrBNlB@wE~nm}u0E?9&Rju_x{B!iS1@V>V?uD%SYc#Yn$2|ovd$4B5N
zZ28B8AcYFDM2sG9PjYcczmR$GtIpo@J*yvEL+kotPA$5h+vX;dJD(R{-<Q%Qd*`6?
zZ(Tav(}Y`uV7Q0oHcM!x^ZrxOD`}_=szcri-Eq+z&@I{tpr|8-8f->=#%qplX*DC4
z=6FZP5ljmhJH18|MkLN_Uyly&is#yB`g7S~(dAtNDj#la9^Zz74!821_F27YnD|*n
z8y1!<4baQ-!E4AeKxO3&@C4;D6io~Mgq2lh^TOIx=9mMq8;$<qbiuewCrr?c=qY9x
z5U>^M4oulM!*Aa%kYxGHA~n~AwMF)K6O+^X|G9=(iX`>_Y{;u*@jeX=3*r}SO9Ycv
zLtZH?hZ_K}9giA`<xj^C332@6Sll#_Y`yt9>{bOgvLEWtR2e^?EX5doL7oTwRey8?
z%**_BPG_i}EKC4yXw#EDY~#$c=?v>%Bj%w3nwGe?B<0cIkkkr6q75o!^5dcSbK4o}
z+T0rnr_)`ZJYs-yV4gs$WBt?GIkBg&squVF&or5PL9sSq+=u*H{vb805-NO=#M6my
zPcft>*j6R)FC#p0dfw!_MC@vnl=I!Hs&x5c1(w$NDU5Qe&6H3oI{qPtq<(GredUhl
z>2_xjh|Du^vsMp}vVvVc;96R0E0)Ac4XyA$^UC}1wagx!wMI*%b<mo`CREw|AA`fy
z^mIPI14Qa*+wGMHFy)_U2l}u~^L>0E--_3nowz;`Pet@>(K6QWc{!EGy>^4OSZw^O
z4Z&;4d^_j5lT)l)!=K5v-fk7HMf+g%KF8x0G<ETDSzp%2agzrlj^BV*bX@O^;;PzD
zUS6|GNM4k5q)4f9`2Y&JS1KuPz54i!^b-si3UD*Xso$Fd-*^Ipmg@|R7qYJDhSU>?
zD_?onoZ8>4aV7eZ7T5=Ft6$Xo_v{i_@HITSX}`xbUHu)Eoyfv~Ee<a9gc-E^zM1>p
z80|jtX2=7JN}%eKE3r1T5*&r!_sD~T21J(M$1;_s<(v7Hi2Xmo`+&}qWgAfHEt=6h
zy!yC>{iCm#*T(SR=MwOQbHvAbjA(rUoFV!hji{7|szN!xij>APwq6zw%@yN8ln0*~
zd5qLYzHAnLNY!GYK06zWM9>5XH+SE7&W{$eyFq@dpJ5WrV(^VUox4p<#JK&)GhTMf
zp+XnXEKp}y&kf<kj`oL*oIoq0>h{y8f+^}T!_yQ)FrVq^t>YCATbT(VRo37RXWP}g
z&_=+NZJmsxnlROhW!k1rKljZke9oFbgbuRI^2|9O#e7N4htinK$Zh~J_)qheMJw_+
z5Mn&5@$kdTQBSq&fcR_}6-!R+{@Qk|_{)wQf3q%DaPFb1XtX@2JAR!A51l`RW5kzn
zXW`;V89Ja~LDC6=+55}<Yw8<QZx*E9<sE?KEt{xKd!JRnF(nhp>*HY6TvgytR*(k-
zQn9?@rlB^;`YW+5c`id_%bxZ9D@Q-{br77$N7t_9ogD4ciljJv>H-sE_-im#Aam_c
z`Llqcc<|is&G{Cnz)qy%Cc?;_!FA#mV6e)5pyvU4z)O%0SxE(ggD~91LRHi1`&6#l
zL;<g3i6SZ;#g@ZzslS(+ASpu&=w}ejwj=5H(nvf02{G69ph=k}m7qR<R7+kRt?w%q
zhP0d*un84PWJu9W5G#z_IY~#oi(7M&mq_q8kI)WDC9`PYyV(q?fm6`I)l62(NeHK6
z!acZ8+5#7adppNn3$Kj8WIZ-2`kGY5p(y6BMop@mPs!R;zuQ%0b6$lg<JG)Ii@K5y
z3Wg27$<!Y=h63F7fEfo$q4wBvuPQhOLEs!Hj^@V0M>c3HX}69SK|VX^?jkq9<}d5#
z=(=veFuw^i(44I#6}$fNpN6klfA;Ok8yL1X@A5|&89Oy}!xNa=I!90u$lvIEl8IGv
zj4r$ve=7KE7r*A=&3F~IseYES1~{fTW|L>khg2k{{d5Js(=hdP8J?ZQ$mK2)Q~nCe
zVjNQCEfmx({=@qVYS}lvaIJj798VQ0aBgLnWOn|L*Jd1vs04l2VYvdDLt-`T0?r-b
zlZ_XK01t`AH#TcK4B4TRxAd!qqL7A`uEVPty4a6Ff4dqB431+_BfU9oF;8J+a*tRg
z(i`y|umcnIrr)|hjN^mf<9Ooi0Jt=RI}B%KsWjh#=S`Pd1Qm?_d371#BJcnPn=A%X
zBKA3T`6k=k&MD4YIb|Kq1b;BPQFjUQiD#Yj@Y)M<0)o%+dN9L2sw3ze#V_fcb-vo`
z(S%3kPlcVch`WZM8tbUJRsu^-rL9+lr^7rQ!isyLLPmqXKeQg^eza8Ox>iOODg7r*
z-7z%yTVwa?k-m-Wo`@CG(x_{A9XqrNq&8LyzH@8kyhD%Yd$OsQ08M%hQh2gMe2;+z
zKuEmW%sgV1RohSDFpYv7cM0cH+{&U(06BjP6N{(q=lK@EhEtl)wDA{O6p}~8;)mK;
zP87#5Uq%uqa-4cx8&e^fB&UI+oiOu2yc}khBu2sZ8G(8;VAvz0SU;MMIOtnYD>d?=
zgQ_ol8h<fjeVKW(6GKfM5&PgB#9-w|<K&sofS2lOMC0k4>TQpIe|Zj45i}bFE5EYD
zShJR?Ux7rq`@nq<fbb=^U$b1V@GW?H;bX!u=vWx-H3AT4VwUnW&~nHer&+KSOJMLP
z3C@iC7Ss?hk=_TtR-@fgS_m?N!j^4;F5UqrkQ6t+`)tt+GBv*}ufIhNpa*^Py$L7z
zN4Qjb={SeoLzGr@4l$1POKs|cp%Im#4Ku;LkL1@^1eoa~%&eSivNl0zEjn}0)?U+}
z8GK=){gaN`m-ixX9nnaFC!@`Gk+-XF(ZZ7*xS6KKc398@N(~5F;Wi$pwpOJ2|NfA$
zLDi1kVqc`kw16$j#2*YLoQ1%L)~Ly@u!CpQoQNHtSYk9ceeC2OdK%wF_my9bcwegR
ze&aMIx2gW`wg?xB#02mfhw?d}AB7im=D%a?TBulNYsDEq8!2f@)w#}Z4HnE`UX;+b
z6sS_Y-&+LyOAAuprdT`+Zmi!)`uX^Bk8*`Wh-kl?A!?x$T2kFj2ad#J8#EEeXc}M5
zrA{k$yJt<n9LN4Y5|U@Qjz@Zw@QEAob+QWEa+(uIy;$BlGPb$J7%63l1_dZiBI2&z
zzUhreBt_CX@{?FA=n*RrV(y=|BiX`cQw+A7wFc9pN&Z-)K?R00?#?+yv>|lH&;l#x
z%b{6eBqqsiE*P`-ua!M0dQ8U2MuT_$D6DN3!zjy9pko)m+AUQL7Wi&pb6--!C?^Fh
z8r9YR9G5)HlVRGV)&fD*hd~Z27O=HH2RrBH?qXmu>IZMY|A3rVvY_kwXuJkSs|zkQ
zb%`oRelH0|9D{INui6!nIu7X=9?TJJEUPmm(@21;Mgpr464#|E&an*o#R;gp(O@X~
zd-)&2=P9j36YQ#O@!;FlgoM&k?Q8=t;4c#X!>!0wg3DG}H1dhm_@Q){Ba9Dr)I6gM
z2I1*gr@E{P3xAFeeFO^Nk@cE!>ng<ZE13eYkP91w`(Gv9JGN5{G(p6^6JM~YOuWAS
z%A!9Uvy#-w5%klCUn0x|SxCgfgO%uNy7Wh9ej6ZyH_smtT<=g1c`_7I&wQGC){I4U
zTOqa0+qEJCNV**Cb*IuO>!GY3o6gZwh$cjjMdV^c6wipsZL3t^d?%qc2tlMjr-$k`
ztKO0njt4$`j~(4}urH{tCO*BhD#1WtJ`-D|9o|T9M~v%3cwcKa4cR<xlSO5hEg?$?
z@c4d3nW3R%$XIct6hov~*015UF6FMkh7W%vF=kqkTiL6e@&93~f9v$9jYb;xrFSYt
zH6A@J1|V(4CP=wO8W$NVz0FmhLoWqqued;}(JA@PD{xt(66+kq--GIvbp?SIPTt4a
zf)9x!A^$_if%$jhno?Wx-XLxjq-XJb1!mqW^UX>?KR(UR_94wpFOV2vOEfu*MG1#P
znbLWiE1zYaAO1!X$jL4EYp4XfmS*NcdZgL8Cc=fA6N=&~RO!<xR19++uL<-QVb~2|
zy2deKW0&oO^uCJ&bh<JpO}g$;78dKip}-gC($Q)3HqGWT$AFmun`c=aX?PSI3zU_~
zryw)Vl4C9tO}IgBIbsc%2DCS*7I93SQ<^~VNr<K%(geQmQ@K<B{6^olAVDrhK_jVi
zc8|$Sc*>d=j!S=lP!Ug=&LiZu67%^6SoxvWla&H(FDQd9#GA`&NWPdV92n4X&UZK>
zz8(%_FV*rQ+ZrwRTY(P*Rlw46qKD5HHfD6YB(5Y{Q_n6g*`@<L0_O15+;*Ujr|hgi
zK_Mr<5$op^{2A3RBR3f5GjbsmA6Ag_1%T=fE%n;RMdTKU3!XDoBIDuAbOlX0Dl$Q^
zo@5&9{Yl~iU;Sr0N%ge{Cf!S73xnMTEj0`R5?(9G&EGo79o*7{9q|9oASqo%3+j>X
z+`Ilfu@u$VtXZ*)fzbgie)~}PL_!G#gpi;T*Pz~98t1y#7=Eo_{2%Rp!^b+}2ZLAi
z<ajzP?LWK=ebXt|Nyb6k-E;Kx=0-%?YX)~ECLL(5wdXOp*|}V9zO<Udwfhl7;TG4T
znQ|WNBzIn!uB6u272@Fy(Wxh#BYOf`qyJ*sf_}QWlZetzxA}6|=8Zh+1x$R6Ba{}n
zWjM1$f*!Y^kc&r$4KFNb572XalsqUBrU(k$$P&Sol1KhFul&OavptbG!l5NnrQt68
zy?7@OT{D%|xuG5R(<GoOD<u3oxR1?-J&vfmPL;@4oR%D<DIa4NhTOs3t_Enpkp)!k
zk)xARa17c#YicgP5V~?}`rA!Kgc;RPpdx*gB<leA3*d#@akWDG)}t!o&vmSwSNCFW
zf>Y10N0C@IER!`+gqkxYRYpfmDi59|RIic3UdWR=Wf<a2q}%0HEQF8QhL9=RUxJ()
z?ip^-wZ;086&x#RFZ*j+ZQJXAkTkh$Xav9Ltt|D(nVV&mQm7&I4t+Pli4!MrkXk_>
ziijf3(lspj=y=EDh5P<zr%$u2eFs!BEB`0c&fxC(kI*rix109Nwuyh9-Qza)C-YZH
zLD?l>LUeozS-H<>8(aCp_>l<^%ZM7e0mN!agRToNz@)>CGv+h>ALL@xM@$14hTI10
zgXVB%t<h$YQZSz7!i!+ZP!uWts+^kB120B){6|3GFiJbe+<sg`8Hs;6-k*GJp0#(&
zt?r1|;f~t*_l)yN$1+<;S`6U@3!09T%Prm#!PDea%Xy9J0byF^CU-`0tssl3Q@>xF
zrs3%<k@V;O17$ini!QPAk1bzA;`JKr?;a4#7)CTV&npR#F8@E{YfIm=>EU%e>`hv{
zmYCutbumv)@OjeHGZL?%uXsv(=ncNjjxM9-iB52OVtk_s>#6WSSDTJp))B0kl5Aj^
zIc31UmcZ{cFn1Bsv}tO;y<*dwEIA#jW~#FK;umdvwDtYzsXvw_`_+CX9uT4cgRK5%
z6<YwJuNeZQ*}O(Gd2)jY9{ki841uNVi{UZ>gYHz*ZSkg);cq@?-m?^nytH$e>S%Vt
zz{l(&y`N;vK`grPJu_CQ?#Q6%>91B^QN)j-O*12Yd}4(AB_S2f?x|r0!uEfb_w%Pa
zr!lc&AjdC-gFB{%LfF?Ri|!vvn~_gH623uuNTB2u8tiZ#PM=(f;FmV_LBZRPcC3cE
zCiCENacMPBx>D|9;i{E*I%U9V$)<w~yzBCj=TQt~=h}x^YZkwLuM225m&cZMN;!0E
zGdFjQJ2z~Lpy<FVDP#8DP>(S=WE}Q&@x^Yyo?QR64d(}-0X4UbGm_y1{R-4~twC~u
zlH<2Fx)oSnOA9WglnE(M)}9b4s8kHxPDy8KYsZrrs;ruG`A2K&r!899HBaG;$6*0J
z7%-++j|&t9gSg}OH=~<9<@w|JWRazc$87=kTdQ^?D5DUFSiw@oOV2|@1$HP|KL*jP
znmElGx7}@l$p<dAx-3^Adsr+}_Ol^%IG-P?D%45cy?EOFgj9k-kWTN9h2$(Ma>7XP
zv#TIc`)DT<%*P#!M2(=r>+W_FkPnRc_A|L^DJ`pg#{rndSPtHQFQb9mknn4@DSW?r
z5`klMCs_g}?Fs|aGY<LPQd4ePfd^%Il@X@`&0DjMCXbCSS3Saq3#Gn;fC!PY>d&D8
z#_oni$yU9VDo7?O;Y&f$i8=5NB63`CYlZyk`WUkbw?O~dusZlhUB@V{n{{<DswO@I
zCNOXD^0_B5n4;4d?^8Xm26F5T6=^R+S<$M-+=odMOZY3v*nb|L%APZdu2N_ZmA0WV
z=a7fXOO#K-ZNWEHfLm7a7>~Jw0v7&c%^{?c#wKJ?H;N^t>U3Bd56rxRGVF-eu4m|V
zEHqS;y|mKc47x@=FQITz@AL#6H17?tBK6)nfaPeBpg%|feAGnnvku40V*?{XH~hes
zkGN8*kmo*E_LlR=U(>96a;h^p-g?Tt+}3dvP_-W5_g=aCv4-uAx@3dA_~T|*Unrvj
zCL(uCo*6K55{)OM;ieSpj6(ly2rwJnoLvR?p4xb=)I`&AYf5Lkhj%*_+pSMq1lLeS
zu&fa_UqkTRd9*gp!Ccbo4QG*0x>d4+2ZeYnHW^W3?ZRS;;2TGpaMzz-C{+Jq@yFo=
z*dpU72p3KrPWY;5oCYVoA@$6HmC+B~u#SY-u!)@A;t+Js=}&~@NZO1GymLSpircQz
zPF^PW5B0Ay@S94$Eq)+W-$#FX$&QH_=#4+%6pnK526vzh9US2lC?B2OAtRs|uNqil
zs#Z>a%C(ZW2py7qJ4<u6+Tp*9()FrpKHv>8Me%T#R4wlpf63#cuU<`)?DxeRAiTl$
zy5oi@r(P{eTe*0)?~vS}<F#)cH`X7B;ehe6p&Ei%R)#d)S>d$^SiJF5!Ay7jGeR=^
z$OmX+iN`Fdgo`-ovyW*&gqbBVEdu1MKX$pyBMZsoTkX$>e_-#QYk@U2du#&mPb}Nh
zPzm-@lv7nRG@((qB<9k^Eu&v@y+Y%S0t@_6KKN<z!U%hO4{2=TXO%CJKMqe+il&E!
zR1D;Uy1D54Wdvi~xI^Si!35Cf+~9c{>T%fYF3fFI>~PK?1`?)>w~M|vfw$uL>#*e{
z9vCh}=uYP?Yg>v0Q<BHq9WQT+uAo`YKDz`)Kc!i|92p6O9j}dWcY3NP1_ax7zbLG>
z$MgF7Hq%J}{1@qYWj2i^1xt5&7N*zD2f|c=cAXfQc1AoMMAd~d(87$iA9RG<)25b{
zJ)8zcN>?2WC~q|8JCM`YPMaVNQ+26e8_-~rq;i@3HWRNnybx9hm4%MFb?Bf5v+#}V
zWtAmQU9K6Z{<8)owUq-zBSNX==pX!`lo_RA6_<ErD}M6IQT-{1e1Jm@c2nZpBYx%?
z);dNPD>%=?MsPwC>`^-1h19ECLnIB1%JwM4nevyejZx`0S;$)d5s7%tLX=0HZEnS7
z+{DmqBwQ3bM8AR#FFXkPVQS@us}ZgyCUw?rOt1!O$cKTtSpj^e@dze%MDl{+`Tpct
z=f3_U%nnvI&JkpgTMQ+1J1>32lK>@mXmhNZC!YfMY;m>cEN7R!u&$u(*p5r7=YQ5<
zl__a7=gs74x!|IAB($ARu}F4PRVJ$CFx7pfRl47=Rds$2cte}n>cvFJgALp_Nbpgb
zkkL}Fp$st~dL2J7uNo~-s6P2BhxqMxWZ$bXwinN!EQK6n?t(&d$N8h`F(|@RxbABm
zNg90qaCM@CwOe7KK^pg*5C20nLQ``1&8N+9vJa0wgHU6C=qdvOg9G=2iGbfwg|K~h
zKbAAOjxomIgp_h>4{VqY2kv8DmS)bEjvcNjtVTe&zB#&)d{@yRJKhq(J!dTl?G5i}
zkKmXC$?3+>V&nu79<wGJ3=J)G>lZu67AVGN5y05bf@L1~bNU0HGD_dTUbJXTSV!D}
z>~_bUO6PlN72Pv2{eof@<^37gs1B};(_FXB!7PF$@{)UPwkmsCSqLNZ{k>@3`d4}W
z7MRHZ>?mc0j0*N9W*c6ocg$^B=tY6qXg+&8gH}uxBsKP`4<;}QCVP+=h6n3;2+rZI
z-YgfU{EI+uu$oEn9retW4utuu=*MFIl-PERN=Z8u5s9j3Y}AKH>P=%xn*{1Z3PPAq
z<+4=|2s!6cQR81$);gJY8mPF0h^{^6nA(WyK2vaGF)KJm(%L5W`j$T2$E{DU^e!tz
zU+}%0j!!rc*n{XX)fGy*W(bUR@y)Y>O^IBzV6v+VIEqiyYaU`U7nMP<3EDdo8iEc5
zJ7pQ0y1Gj7M<JG)NJ?_W7g=;&Wk|Gu#mlE8rCwK@oBdUYHLubGleg;{26Em*>a}+c
z!@ILw%(Zc<CL6%jVE4OAXWD7LzUS06e@g-u2i5+!t5m6Y@>SrO@Cun{8*f)-Ye(D_
z{V(+VXG1pRmrS}9bb!XQsk_@h$oDX3bD1wJ-|48K|NHkv5+7Y;g9CS^O6&Qfr`Zcb
zV7wgxNPZb7`0ymVLt9HyXxvt*hh>t3so@6%Pf2OZbI0oVZ5DKQJ~^N;mh1HgVQ(u+
z7wh3qp)zn<vLXm0Th<pIOs%8s6uQN$SH;W=ZcSl{KK*afKwpvAep1)onvFE{5~|>(
z`byVOUJzaw$zsC~Es)-8s&`$Wj~%mzr{M}eCtG)EDj5fFFVtG6XTAjGDxuH`K-PMg
z-0*LLDPypSOYx=VG2GJYt9pa7eL1Re9wfi^L;USTB)p;w2Dm+wLFUivoP7SzUiVRa
z5tY%vN8h^DZ>>(iege6`zf*%4D!UE8N$nBKLIyuIiBA~OB8|#Q8#Qyj#VIFy`u(7{
z<^+c~;2x1iFd<Yf-D^e#P@K_Gf=)7Xsra5AVDjK`)To&4*Pk%bxHD?qdQJz<6JA=S
zQKQ>NR4DGE%`N`mU4?3IorBM}R|+qo-FOfpBNNQ{&E8Ac*FO7NJzmU4Lcr6UFe<TM
z#F+gPwnL$G`xyW-Hnl{H)k7gpHOH{f1bloY>NI#^*J(9=Qf!A!uPKqro3Y9K<J_55
zD``zU$mnz&Q-Z2WvS}uBBkVtB-RHG?B!?D(9S^t0zg+B1F`2(DhHBn(!#u%ou?|&%
z+Oze9KZ@e+c-m7UZJ5cnz}$t*I(UVd_zh<5s<d%tZEI}A(3;p0=-rFhW$o~GHUDO&
zA(|3Xjhb}y%@WD4%Kl#v6MxO7)sR3fyxvl7+V;Dz+hMgNp2R54g)&GbkxaG_BYhQP
zel@?BJL(JF*WE)_{SB!Ox>Zxd+X_Rhrgv1PG{4ZxIO`G_{3Sn4#l&}?6+0>Rv>x~$
z!P-aGOEcK*yk*wMkwMEoTsT5mVqkuDPh1we>gVs1#BL>w%52!^G5_R&YS$!AKL(3L
zjiERVA^;(V@`N>K3-(**vY>w$aqft#Kz|{1AkwG(FBh+y&{}fwzBm=RgfO%e{P_0B
z{aMqPoJSpbA+AxZBQ~=Ty`Vdp^E$dq;&=7Fb9m0)_Dl~piwX0N3<s(xgn#xURuz6C
z+m)X>SSp(HcuEYyjXtM4%Uri0u(cFr#f041<`sAmp-f^l;H*)4sKy=FG_^E0v|Z$5
zr2BtES4Q;4P)t@DI*I2@ZG~EmBsnh$J;sE_lJV$4a>q+HE@sl!0DqMSCLKLJ+a^4O
zZeJ-<>Q8&Jx|h)8*#%x^%YXk3SQVy`?(^>M0VoDd@4zIDs_m-MuN^Rqm1$dHQ^1gU
zAd<-1e?VM_mErb`^})=t*!@#17JLjG?5QY7dr)Mh)756RnnLfwpX_ayc=oz83Auy$
z>EmzzK0k~ynUThcEIX`0#+cPx{kc|RTBi5>XaWoyJ4D%SjQ@6cTz~U!vPnMm8k}~7
z2w*@(1?T+8EMtWi4A|2D<u-eS3=TKX;(sJej^Gcgr0l?+G+A|BuclJ)!VU@6(p?iJ
zc|I-ULWVAAO}H=n+0gD$a<d*w4#Jf3c7=iPRG5RH9fDFfx~=fv%;&Z8JTKGWi^sxa
z{@AxgLlMK;!BRI|M8w)T|1gO|2q<7aCqVt=S_*KkK^Pl-ya%WPZJ*2L=<Tn==QZo+
zj%e<&sG|J_*eieoIJ-?zFm`J3&m{$dK%VRS=PBUD=b4xELNg1sqEJ;Crv9NBRhS&f
zl}U)Br9U3Ue+Fc=kpD0CosUqk`aGR~L9Ga_4DIlE%b40a?>zN-Q%ivYlA;}uHXNW4
zku}{d_@iX{4GHX=hFU!f9w6rsvZk(qT|hkbpzclU7Y@eu@+o?4AnD*fthZ6g!7`q!
zXs0nmfcIRvF5aG1gkAX$UwQE%fLG{P&B+D(6DE$6!DQ*zqVHj07q*&YBrxf|>n8*Q
z*M8Gi{P{K*rX`)$KoYis&*L9N37(A0Dt;>P32@oeDX`1YUyjrT9IOR4h8sJ;MFjN2
zy7NHY+HWdB_|9m{l0f*DUKQxTuBrv2ha)53>#|lB&I$faGsSZ<M;5Iuu1yY$ex8bp
z+PG21G@Zm{mYFrWxUVO>khiVgG=Emn0W`+GTF=F8Us-p48%K9qr&HiNvt9@yHi90Z
z%l6>+DldM7r`>peF0J%Q(w;Xjov_lxF)P1gD5#qgWJF&V0x%X;8DJXpdv#{!HUiqc
zMOep2;*LyFQ|7cH!~-+sS>;+$2o$BRrPvY)YV^ZXlG82Bs>nK8#HiERz&PUP1R|T>
zhJ?d%IQSwN5+!pC`drR$x_C=pL-2j6bNFn2$XEf}qk`8OtGhsPaJxEjMVgYzFMS0F
z1m`j-a+3_2J_uP+s!VX`&rIN>=&C2<kckWVp@K$H2ig^hE#e~4Dx<`UPR7?xxLX?w
z=}EjdWf2)B0D0!gd(UaUyQzI?6yd@>FOs)#|4@mT%Fy+y%a4Z8tE7WW%z^x;i97qk
ziIfJOUzAwY{8L<MU9!c`J7a%fpDhgiOh!L{6ta?rD+NfTBNk4D!byWWZm2_UFnr0l
zb4rkb8N6=@BZR`q#>I@|XNeWh4CJT$^n8@YBpBLuA7C8&D5UKI%aE-1)V~LAR+=b}
z^-?A35D*od&9H=f5vknJ1J&&Mz4jHY!FPbf@`+eA$QvqYi+bEA?Ga90*%wPzQYSwF
z0HsAQwc*~uf77^W(ERQrHvOZ}#;l;-eAQp&{GTaPV~y2G01&w0V#}5gN#QR2(h2iB
z6QiYPdN$5=;NJzo%uWkE9`*l&Dy$zJ0o;E=xG_KqdWVz_A<w_GqBJ^{CcIc|cz6^l
zciyc!4uuNm7S|e~7m4)UQ`H65A~cDBD&cww+>#OfeX`BS%I*#d)lTTeg7SKQUe{!A
z5)IQM5oBE=7+Ujzqg1$g$+i>Yk^CvBw624KEct+fUHJYx%KR@(h-z%bZ$}olq@tl;
z2V%EYD;)FP0%+l72gu5sdKeNn6+gSAzHrsCirDc^(^Ti)bTHyQ^3qXt_7bc|Go8c2
z@<rb0PJNpIlAQ)zgDaPgq?n#|eAjsWj5GU-s}0Dk;2__)W_=lcWD1o8BwF$e!YhM2
znv)6aJAP8i34sk$`@dgj`Fqr>mFlD72LefAsyY!nfAhRWVTsTP@a7zQ6SWK~0>Mom
zn@jF)9#e_Z<QqE1Bd+6Qx<(aT)i?3N)b)LI*q`q{$XD9Wk#-d^9k)A3ACqdi(aQ^;
z2G^d!^ZT>4uhm%HkL{^0R%@%!G{)#4Fv+n{ow|WI+#SpYSEo%0DYiIjcPeO^s)wth
zBV@4vtF4DUHgZVA<K-|N+ENyDRKH0J=;A%mlTaPmd(lA7YXxoz3-Uq`z3B~bdp}^e
zS3G)}z~`YLUC@Krcci6ddMzp0ffDJpTFgG6mG^BD!3IMOYiHnx|1SqA-nV7qmj!>8
z2m}AdXvuW6yzvjK*KMOLITg?3$ACERhnz3H+$==1E^18mI`ZR!%d_?QiC+yg8gZ~6
zEb^4~erU;x8{{VvfQ<%V>$dB>s2fI&vadcB?RoHg;OBuFkNf}nkjU(u*NC?noRuy&
zO95ikoWo6Pd&l6fpH&ELJEsbCp8aC&a6Br`=Fu8IZwGua1jz59j#H=M=VWz@Tm66m
z6B_`o>NucLY#~D|0F}<Y7S)MCo8CDy7F+iIoHC9O-g>{dk2%QczCci!c@Z>oZ$v-8
zRJo@(R(1*H!Gw|KW{sPd3eoWw`T)rq*=19@=OLo0r<KFN>M9)0A}M)~E*@^24^~Z#
zdh9H(-<I@A@`p!w^{VVO{xnn8yuS}YP^8jNUHwd*UhEd1aXZSwthPdHmDl(>>j&%K
zdT*yh{JzGUNL@BWXDzk3*=?xMZW!A6wG2Si0oOpE3cZaGLYHw~8WwCS@#j_7jUzZi
zp>KAyuW9ycHYSUczGcP5ipk+oVxA8%NV;FQfYAvk$e`0nBsFkH@dvrLSVs}KZUTO~
zpTc#p&dmw2RGQs%CRd2*w4p<TuE^B{&J`0nk&{L(>4gG6L{zecEs9gYNJ18YJgF8j
zcFaDcMgKh(A4VyUeq8~to>#^gd@xkPW42{X`WCHAhZ-Pqg#-wgfhPNY`@*_e>|XFe
zAxMewpmqkUI<vI#EXSZ1>lbwR<?k<xV3TF6(Pser5qX$_7TDlZmrcB~&4V8=K&){j
zp{*Oxd@Bz!0DF@YT|8YuU0$nYMSWG1mrwavlAvuQ`7E~Q(Ilw8YoW&7LiHLvh_a<=
z4|MBXq}=v^UGQd&rBsomU2>*aWsH1~=jCS6L&&%LpjlC?;?Pk`dg#vewv?yc>~6o^
zlOd1zb8X)=EUV>0TNiGogMZ9<kE=7%39n%)#`B9?AYWM26{u?^5h%tKqacrXz4+DU
z)uZe0aWp(1Wd`%qU(i4#&}vs?l>XGXfnZL{7G!q&2>MT8#)%rrg#-)7T(}P{1ERlG
ztXs9KQ)tW2tcJtl(uU{Sg*~=t1HPijK)Hdg;e@E@TPw$*tWo38z9R~$+~ncvb=Iy}
zF$@@zW*^1THUu$q?WD5e@rw;O8o9=*M@USG(gt;#3Y^b@9RzWQ9Y#V%)v+Jj@vlR8
zPn$K@!<<_pTq~NLH>tXAa+uJY>d(&{HItfQ_>I1LsVWwkt4u2w?CSu(vx9^J#H%m7
z>z)kal{4Dg(Szl1+P)$|oc!)c&^i=hzYcy^8LSzg6Rl&LVHd<l(Kz!&0LO>Sz*0Gr
zGwZ1TS1SM%lvG{1OiRuFzhnr&-(|#>&zZ0h`|)E)FqR6nKMubFRv9x;k%D~Wv0&S2
z=vqt8R^)mpkSd(3P8lkFMkn+zF?AqW_x>LD$J^@@>C7@sFg?0`BA_7tZ>!sp4SP&k
zw?~0Nn=WS#>2YO7LC~z>0%FBmd-d(2?;)my#^Efmn!Yrt$Z#v*|HpajU$XqD!c*?X
z(rwE$0C_BME;P%Bx`jnQdr@F`XNsHj&`T+;_{)6A!UTH_ax&bD04jJimOrhA1d4Es
zeW9Ls34iS8V!Pd!qw_g7fc+>gd#p+wEIg{ka3of;<OU60FB%5i^Fu$D+$`@HBUMN+
zyz3@wkNjo??#EAFBuk&MvblZ>UW&)esq>1BPSfa6$nS76tKaLJ{5{F9lZh0hp2*jy
z1MIO!;U=-WT6b5w`4$!+<FP*7YG~pT#=FH|#Q4nYexz-w{IZvX+M({QmwTsvm5eYB
zlNp0Q$s9mj1BIdCopV~=!;$X;w9yU?Z^Ev_c0UZ6x9jR;d1Yikv-9N11=;7+G8>b~
zp2b=+?MtHPhiX?Z>rm-O)-@cP?YXAme&!rUm7br?>9E#NVMwAmm?*oxOTtPG?DR3R
z=^Egg&&Qc{(%vBk+S?O;J8yP>ydrtV+faXGDGywQ&GRYuN6>PgumRIgx!qIXtQl}6
z4}jIJFMTs>uKAjL+MjC1avDb!8vzpLR)?>}fy=kY&5;+8pP_&DrG7UPaG$9@)=I=d
zU>-%9D728`AA{4aJP#(Ka#K<WPDsPOVPDHBko~^yj1gJa12(y)JEqQ|Y+ZZWr5q%I
zI)R&tpi6pcv3XxvC|3Wg;mY*;)&W(D<ye+NNW>`Gjmi2phU;XAJ+}Ril5v}5`0tv4
zd&p45)vZ8=v-oasA>wvOfd0)@<Nl`29&Bf~s<Z9;2ZGoJBF%09E}FcE5|K4YIeh`=
z4Z^gUg}I3)qizISr!*<qjiYJc>>6dNW)$8K!Q=T4wJ~t5IdvXC2RP8XAb=o>LBR8}
zJw(_%8qck~Lz)p0SGg%U(PmsU7I2~7{K2%Oaz`H4ARS7!vS<J9%=*FyQb!~V(A08&
z1=Rrxh%A_~ASyQ9ysris6+VaGVO!%}yOb{W6nC+Q(hFDGcY}6_v#_Vv#CN0J`<9fc
z@Z98z6u#<UC)xHwq~|8}Lev)Su}FNBP#Y`s`t$Zq6NV2?`JUzwI7f!W5zZN>&1Im}
zwOlPnfg=b*2i`8Up95svQMc_hQlRW=<bDW|?fjbZe?FfBsbFW_H3j|6Vb@?a#mkyG
zXw#<@xSq)==?MarRmN!9e|{JnErq+;Q#5vbjP|1im)L3MRBKoSIK|TQYg`HjNIS@U
zAfR>$ye>)EVJ{Z0DWP^%cE10OBaRFAL`5NBq2SJ#y3{*zSx@gT76)qWK^E6*kl5Jg
z8}?aJC{Q6qh#cuu1YnS(EyItfk7?_nFIP{@M0si=G*3Gx!Frz*W^X{F!?y5$#Lci?
zS3(uHt&F?qs%xm7!Atd#JN!qFrk-63nASUrz?`ZOB-sX{0nI{%DlyI+wYpZv^R5oJ
z8P%l)HjHJ!C(Ppf{MR7c%)$3&407TPW*JHoYl}|{ou0cTmX^DkOtQenb6$Ch)gw>B
zy9~B29~{-TvTj=}zfQVi6J3q$fwO&jm7?XNjcOG}#-UiV=Alr~R&Iw856K>N^nb1%
z9O@8~(4uGy{EDFGCx}iv#tIqwF^*~IFAb|qgD0`OcS1T%T;`SCP)7`d_Q#vPBTSl4
zIeUV$%Hbt6B$~U*G-?gNv6UR2tU0v-^zCu6;o3IaPXOf1=2!E3UGsYwn*wgAad|aW
z<%$e46*TMRQ$zMr(iQPS**$H>@PeWLtEL|zI7%i$Y#-Sy2*Qrn6%C~{q#D@>aYp<U
zw;yO{=>5x3@`oI9cKFFeXa&Yp{Jq)$V*;tqc*BJycI8eVN0==uCfUKiyX_<lfOSk1
za#L#A5sb2FeqfBaks{JZ@wuC7Aa2n=F;68ne8YhLNgWi~*AEJ#ICA4!d7m~;*AnT{
zBhKm4O#x4sF~`i&pUMFG5gbISHUYLHKi#qro)I2}bKC5O0{mR>&Sn*E6m}a-iM;J;
zWN6ka_x(o+`BESRD207_6jmt@Mb>Sy(AIKx?;dr|1e5~^BYPY9N5EQ{u?B_8-aOQU
zzpwPeTDbd58yh*+T!!s6(C=VGRG`V*gJ~ZB0rMGyg%-fzW}~J12i!1A@MaRdWF%{E
z|F^KRe(<J=Ufg*5_97(erv|zNd$R$K4sKSxegt|ZyH=-=hI}ccU=6u+oYLZN>$bfm
z`EwDY!Gw5s_q*@sj3Ho?PF5I5R8fN>&%;Qra}u9OGxQl4i!y(x7g3RzKn!KOn;Cms
z{tHQ+i2JQ!@*jU#gQ);5x+!_Ve7`U^k+SqapVDbIRNn(fOl6@LN-b1>e_X}02>J1c
z$!UiGu{w+CEtJ}`5`y_gx^}`Nvs*<$wC9ku^PS1?2%~RD_A+*V$$W8Z`wn>|^kV~I
zJ13E093}EEUbJuHa?AFlsmo*B-y4oct_q8N&DYZ*C#*E!%R5hs8~}3Jq8-7c!6xEX
z>T;Kec@y4W(v{R3&G*%RN;2&zSP-0sco+6#u6@t9p%>RczvNEu;jC_l%*JB}Knb_x
zTY5BZ`E!73l2d(@l!$*bi*(th;JUzeOpmdDK_E8Wi%}`)0~p*$B?mUA>9y+*=P`zi
zcW0_b)QA#25m1LK|Is&xDkIxJ%deO$FX_~RPgcn{()66@{F7F6FQRG!X<U$3kHDmf
z(>yWX98p$b(&X)$X0N21!1;GBQ}dL1KLe?Wh>rjrzdDz4)m-{V9Vg2BUF!b_#a2&%
z#28rD__3y;0R=*;b_GUs>nQlffNcqem$_^-OPnceq{~QHuLm355d&n(V^#o{pu3Ik
z0-OE~aCFIV8$}<;QZu9p4!$8n{Cl&U1wYuhICyhcwy7;i%&YSPU+MNsi5ksW@63gp
zs3|=9u}w$Vl{VpQQGIWxF8S!nVDp&@!$>~8z7#8HWs3Ca){W&Sog0Q(!J69eh?fqA
zpB5^v?uavVxu>w`XJjaZqZO_J^F>X#3+#sP6MoSd`+9TIo2w8<?>-;L8&zc%>}bD;
zmQd5+AV;ura#BEwfLD_%{TP!nFGUOK2&NydtI8fOS(R}Jxs63?<)Xw?PvH>RZZ8gW
zss{8nVlP~O*AFomOly=}tBtDpbxNDSp<Mz)lHM^LtJ42^0I%+9iXB@@Y1dujH&MCN
zkzXYET@7*Gi?9#hDiB=MT3Y{KPgSn*vvv>mk%+_3PS;?OC0e41Y*Iu0>JK|2(=R3-
z1qjuY)z9+lgeM|BG9Z@0xO8N=_IdH5XwjQp55Q5r%MCmFwcf^=yG$h$Ow0mHnpF64
zd~v)McNERiTVF{0|E;e6k$Cr};vRICh?W^8gD_gLHruJ{g7_WbV$q5C!9~XsGH^8z
zCOi#q=Tb05fvQ1_38K=v<!Ke13m&Y(lL40z;?c{EMSynM!*1@VWaw^!B3IxP(*FcY
zwP5Ouo|~qe{E5eSAMUANif4)C!F7bJ-9r?_&5VNVokNfyO4F_z)3)tt+qP}nwr$&X
zPusR_+qTU+tABI8<vqJotBPDc@kT~QR%O0;YKVM60Faup_>g*?mh-F&1vE%;X6+mJ
zI8*FYp%#=I&c%PH(8|D%&4!o?DR|oMf3#`@6jOIzjdV@(HBSn&AQJ{!L{|aBmOCnj
zJ~iD_J0o;P^5Rc^-u^nBI0w+f_X|}MV~%uJpsN$iybD%i#xp)bR30A41@MgsOej2n
z?hzBCrJixsr$cx}(|7WN8rkOeS6DIw2AH;TKN{6%gyDLYnya}2jLop*;?e&7ZWcw6
zAxDZf?BB2Ru1Uc?(^cwaY$3|H>6M7%6hRjwA*IV1!S>E94$p`Bcn;GNu;;oag^$f{
z;{QB@6AMiD<%O9;xtkqjgA#>sy#WD{Ta;@2_PGS4FrGxUgUWe7g1*d}vOZMeKm3I`
zu)&e~QI@PDWYM<IJJ}5P_r+m%doC#&%iLl<ReN~%^sZQ9E+s@#D9U~LwhWIsiOmk`
z25X4%iG1p)2#p;IRe^7&j*`PohjtUALqK*M>N?Kx8X@fo`~}R;RPt%Fa+&b9|0#0{
zvSa4lehEP_ODg^kH4qpZ^+NO>^WMymr?qTFGO~7=>M7q}^>E2w2=wekY8f^!HPU!g
z<^(NDST_rFIn)7|gMNXCbTEY2y3#&4RTDFk|7h?`_<OZB+Fds8*k3`GdTSIM7G(c5
z|0pI}+8|U_w5~8>df0QjNuOd-9Pm{HXE|p~jr}zqozZt|IX$)sXZICH%C&S#I<3XF
z(dNVy6LLILiI>U3{Bp^a87(lT@sJy}2NtyxOPb_J*CpONRlRr`Vz`o$pk<gL-(%Am
z8d&(+64{#0Q`U4d&0z3^vwm?@S2EMvLD@3A6|;_HVA|`6^Mc+}pv4D}$s1FGK5ZBu
zJB$9Mn2FNj(x04iYxf~&C;tf#lq=GJb{&K4eF&pBg!>!{5>M*-fO|0t?819@DyFPY
zY674xJ-_d%<ZG+t@++jb%DrNgvUkYmpw}jx13vT$FZpSkR}hR*qk<ND<acME)ML1<
z9@>Y{_d=@4TLkJU$-GIbvKI@2cMElJ)n4r?X1q&WV;}dz?hmpeW5QUEi^|Bp<ckOv
zCXRc__G)`N!eOjNqlVy1k+Z*`Lh2HHze3--w&%RSCv`qWKQGIuq!Em5t~8S0W*Bi~
z+vcbhVrFvpAo$vVw1vjH9s8p6Z;C?#kL%ruH+zaF*dm?rJ{NCH1MMJ;JR+=H4zZ7!
z&XB`SLX$Ha{O3%WIir#4^zxk??U4e(RS$s7X;Vn?{vMY{_#)1|?Yg%ncR#fPqJ}25
zPWch|$3>+`V70;D1+j7dYyv{h>xRD-P$(G=t2y8g0~9M{W`<NY6xu)RR6dE(pt*j1
zNo=nugKdJ%z-DY=BWH!?zZq-C!H!$ujbw+(7U=mFHttGxRm(uf=6Jq%%M4RG09jd#
z;in)<SlPEvC9%^$dDAM-Mt-OJ)`C1G%o@w8$^2qUzRBE^<VlL9_uF|Yk^VXPG{h4C
za>Y6rcL`Do%DqO<A!REQx(QiDX_r4D@f0Pjr$%qb$P7l{v!26`vAUPmqy0rU35868
z$7dzE;Hvo?iE>5K%o(~#W!-WR;!}_0*BxTtRuKO7%--mAB5|jATwn14m<&#J_D0j|
zlb7WGTh-~e8~V?XO$U%*nbg?eq_IGjHC@6w?@Aa7F<LNJ^|AqH1a4G}4X1TiZ>nsz
z$SMnht-EG6UEP&S=6IhbjB5hEJDAx+u6@Z$Y2U$uAI1~Fcql+_J%D}|W|2pF=0Fn+
z$;W3USe#rtqTz9VjAvPJw?*p+Zu2U;;=+UL0D){Xe?0Y|XpanEw8-Gv2hU^fS~}L<
z*qh%L?q+Z=8cl<raod>>5~ix5^b4w{Oi+%zA|xhpS{A#d?}4y7NwC`w9*{v^+u&Ow
z_cQzhY8sU*NL+o04yzRoiaKgWV!XQxqkeOaWy^kyG$d74|C5tIC5xU~6ql5a=A=GJ
z4bGB6a(=}SRG$|R2|aq=kk-|ojVXZ=(Uc}4axXu^18v2PiSYerV}-|U$*L;kuV14v
zjX>G%<CB98c%9hF5i53E>}xja>Kk0HR&{+2Se##Gv7X#)X&OQ$vhAdAQY6ZjXEh%;
zYOVDSxh@7vT8VcGWApe(udEj9Ny}frQ>R)kVxSN$cz7QmjjpEw!u79OgyUv-?6!(l
zPxESjynkl%9jN#kb-wU$#=dmPXvwmH@r_pRfP}>KAL_6aU=Q%y(0_@KX5SmkAzh!5
zvHe+0YZIp{C9MN2opejInHhw~wr~>InMvTWXIDU<&EyKsfn}^Hi0~0P%&+$pJIpC^
zf7;TkU#sYU?|wQ3VTvg}JhD%`gcFuM_8qCa^yxD4%Td9*xo}%5I28(H${2y=+5Ek$
zJs$*zLdA(~;T}CZrnw&!5jvhU?bw?wwZTu_%I*Zju`IXgzDXz&Ro3478lPP=|EhAm
z`|1L_{V^Qx>+E+u=n7=qv4WMQh(<qyFDWX+QZ{Aka6umB9yn{tlmq(YFdcwj9IlaM
zn{=hTt~ofp$v}D;mqFxOHvN0E^l<ehe~A%L^Bn@q@j5g2QxL#>_G-Z27|@4pcBgFb
z_rN;)P|;p2Xrdf{f+pF)58?&So`{SJB6b;ambq-l=L~}g1rb!~)Zg8EC=2YUtX|q-
zC_}cLma+yNa6f;~YlVf#4m=^an!@MXgmqGIDDh_QCxW44=(D8}c!PgO=fdbt9XP@q
zZMKF7B;8%{M`4$K%Zx#P4J1>ROu_r3KQAP!T}m$B{NKSz4zZ0!d!PUzcpS6CL7nPV
z(*1kn!)BbbJmHZd4b_)5ee}`<^-`bfT4+s4^1YdJ_MTJSOn}G~TY82^FIcbj1Uy$<
z!th@+$0;`ajwQ%_{k-9%rg6l%AP#v@{$4f_Ov&=a*R!sG`4Xm-9x@>ms9er!D6)}B
z*<h@O0)EXlknWG>Bav1%L}Os|lspX*Xnfp$)fz~JGM>Y77+P5H?x9u<#e`o5^<JUj
zHvRzDW(1oeR`(4~R-VHQ!$!R$0|rS@u5kta%c45lozy|bU%(jDqwSVWaCe#4Ak2~&
zYqSl>ny%uvdv<{5>*ezuu!-tJv+7|Ww5QWVA+x96k0>bWP<NkhycE53;qCW=ddZ`A
z{vO5v`urF#xD>(DjMNO?Mk{<n!~liRZ<4+X<kT1XWmfKaKFUqy@L5a;`f$SKF9z<g
z6Ya%I?p}X>5VFk=uwtZBo($0uzNsvp4F@+NA`QIs5xLx{!A<c!850-395xxu?HF3q
z8~D21=YY2Rn5@Q5TZ!<Etr8z>uu7UNFVon|*^k;YXVGAHnijx|tqj2xDUwrgr`cdB
zmhu2DApsi9>Kdg+&ga|>p1;ddwRPSi+Jz%%BQC;Jt)RH6(u~ULuOCm3Q(bMj&CVhF
z)P%ytt1pebRCQEtcc<nycOD|i72`P?oriX4DioK8J7uTX@XE_RZZbvPd8?2IZss$=
z`DtZtIQ(pHKegV8O%Vx-=3nl@?h3-P*Gc@(7LE9>4k0d1$P39r=?+l;&_d%_aS3g%
zD*M<L0lC6wtYvHKO1eHAJL?eCvsMWWs)54mM;~AaC*p_Twy*>psd?xKD|c2I19V~(
zXZBeQ!XQ%9m0CJ>01Dss&SK9aY#m_&*d&5P)wulDIMtP)>aN$-T!y4$rexTHWBS(E
z4UQ(@MH)WP7e(0eMS+G$;l5f!9DXnW_hb;QhYx9}cjEa#>t1$n<^Z6QnJ$GhWTFyi
zIwFFo9F9nB5;!F9icfQXenLTz7b&(Vb5T}mB?Zk5D<6Iq%N5C|p{*rm=KX6H*q}4+
z>6Q~qK1#n=e0$A@E}prL^mFN;T9`FlJCZ>z`&<8{`?NsECL|hv(I6QX1nE_COaEC*
z4qWJGI?EnH9NH|H@lqjvqh8C?v~k_LE4*z5b6dDM{72CFMND@n8gX4L!W#m>!V`&`
zc~{$2G{J^pf;IEBLH`#7o|3GqJeNGK?`AeY15CPJl^HuXTRxG8pXLe`Ot}mL$%v4c
zHh{#j0%Bf=*|0U_gqkU?HgV65$mk;QR^0vs0$cX6g#_+zJ3!GygjWQK@UxBw$4$1Q
zkbAl1vN>Ls?(WX00ByxV3&@z*D-+|$b}hI_M^+DE`17yWeWw|5@L6gghPRv~)ofk8
z*wZ-Y6e1lljt(iM;)_XFFLn*h>tL9Gl&Ae@x*~`s50uz-@sBFfIM}Fm@@LJAyz*<q
z21<pY1WiEI`&9Y;{DcpV=u^tN!X6j_$G@#J`*3uQvy12BEuGY7;xiWjo6kvHI$1O&
zarMto25kW<5(<J#t7_kK3}Yo0Fvlh?UYD9VTG(|h4m;9u!t@^in-m3K6ox+~>reMe
zs?ZI-iG!43`aftm25#-o87@NN*WgL@{(*Fb33BVC3NZ54%w2#98lxovUcB9z7vgO*
zgY!zLc`9*O1CB1gN=O;CZ|dj1%RYGn-l?nM8r6%uF5KMjN)dx|_5J!U9I>4ji44|+
z>3w7%@%%cuiO7G`(X!Tr_GA^f;i5v$($wwx;tNro48*P;i2o*{EqJvcSE%9r)-*eK
zM{tRmXSjzFU#z+XK`u0(EF<k`b_j|j`z6;?+Ul;Ga;j;gvYnxdrX-kJc+$$K2Ex-V
z<A<U2#8^O8N6aeyiN~obdEi%%^vC2e`j8~Z_Kv6F`*DD)DApUUel;xXI;-CJip`+3
zL>10y7!HTD?HtL|lbKjyIYh}W@}Z;bO6*$uK!c-RNgzY>*o4PnU{cTesj>2|9qK0&
zN5z$-AkR|P!BQnoLYpj!@v6qeKeZxUi4;IYb2@7jN+j}%VDgUs0AjLqr&hm=DN7#Y
zY5Ty45gqC!wu=`r+<6u#RK)VkE6j^-+AAi;Vz6Fb_9%vnG}Lcf!L<OzZuoZjWL+sp
z^m~;>c+9-<U^Y0t>Z74GT5&phXkD9`L#a&Qi-C61uy$J$4aI5w4F~unlynH&`5_vg
zn#&G>WL(S0;9*Vi#@XI;>ZaMrgFXh}5XzF?Z`c1C!FJ!Yis%SZNyt5%b+1qDJmU;m
zc8LvkB+|||GXav3J}_(J>A<i6y1MG1SC!-(JAeQl1RxLVrx)PA^M3?b3;q7@{{Qjf
z_#f+k(qt|AXYBt+#QQ(k|HSw&3ES>J*8hX`za(t;|6u<Q*#Az(cKDC=|6u(u3ETHS
z*#86ezawn7|5*PI*8h^Q|AYNc)&T!fDdO>;u>T4B->R|ygZ)p||CX@-tFiwV>whU@
z|5s!GFWCQ1DdPEG#{MVl|1$PJnfz;!f2kC)0|0;t1}p^!a0d5HJ@Z>%Z+YKS9B<9^
za;vk}Si$@@7VCw{kg%^U(GB-F{E_B(wQmlQJ@=dN^%OnV{~A&p3Ta~=%v5fKcR#jR
z`;!2`of?<yIecJ;tmkl*jh03!pzS@fdR;r0j~6>=y9HTZXQvOECvtF=i%8mY;(+5C
zQT85PLMZ+U{fQgYx@G{@A(bck=Nh{X0`rproPP;0T3E$+4tuQ!7+{!z5^eZiM8pr6
z?)PdwIN;eIUZzzyU>gn???(^V$}y+<uAkEMa2@adBDoqS=>ch3ZQXt=Uj;jykiK?r
z(NMf)mf7klSjx6=7eUN9XmX$WP~LQ#w_NBBOVZ_<4ZEq_>Mfmo7ZqxM;^$o?XfZIE
z$SxuC_79K-xJjXPL+LW(*wJd@DyMtTL&dzX?z(XwfT>}Cld`CdV51dM61jE=`~*Eg
zw)vXDuHO)vO)d3LfcuXd<QoO%(b&91>pSKC$D|8G1kcQs+o$T)Ct#8@kc51%bfPWg
zU76bWBj3eN$89HyA)f$bju*iIFfy#D-%&`b;8%JrwGsRB-cT;hebNOX@oexTY}QXe
z>)ae@FV{`=X=@F_dz(J(i+~7%lJwkGF*c*DC<vIJnr^Y%gM<=eS-_KJqLkzLHbFch
zT>3vh?PG{&XF-9{vssWs7F&;vS-++Fh`gUxH%Oi9Vl55f4&s5Uj>FET@gvEHlp`m$
z=gHA&xoA^Vg<8l2AXANs`r88M_pI^UbrBOhfA(wl@IPbP=)j6h{h1vu@v8qYMI7&5
zf0bPHv`ZT_Cp9<u6(xmKD_EGNbJTySsSRDee6s%l*lCx!ZS3SIhcF^bsuH>3gL;D&
zx7Fb#M2=8m(dHEQg%mGH#ZRamuor|Oh#M-++bEx`A@H77W$k~^&i)BzQQ0*GGe3<9
z7s-P_y9w`KCx>xhwDr`VO9z;xBASbSUrp9?e<_gknD}ud{|a#KdMmU2?YN#cH*Z)F
z+U}!IP%_RF`VLEA=*l1DOsXT|Q5+~$=#ZGhx4YJO?WyZ|qPoB!t0OA0LwaOC^`M9+
z?c)cFCQ_BhF|lp1)B~4_trfMgEJHL*p)5Nu??R#@B?5Xz4Nb(-2H?En+k%!zADz~j
z9fFO8#v7n+7{}`^5JRFvl2!R#Zcn2P%WMyDrj15Ex2@%5(ABBRK%l|zuErE{)m%C{
z+wAl`M5+xjzTkfn0|F}vNsXYb{)^2lJwmqM1W5B^y5Bt^o-fHj)j>f_HXGC6fh79V
zHrHvsw4mpD4_8?uIwtRS5;9XC^w4ptbI5W!e8Jg>`xN@Q@jg~n*SX=bl%WIvnI}PU
zpek>8hD|tsax&^;_a$nCN95@76H$PY*+X7bI~Sd5!q@_VLl(k@I)Q|o!Nc0;Wyl0;
z={1iM7dzA^nMLR=UAusj<M$PY#=@<lOR~QlYw2)1FZeF?r-WK5BlUr?cu&Gw?4=og
z$eiPE4TBcTL#Q162a^)Zv|HcEEJj7Oq`*8DW|lf!UiN@+CenGz>Xm`qt%h*Gg}(m5
zA@?GhlnZ*XZ5oB~P?q#|GCE<GZ^XxbHUq-dNxmEu7NzTSz!tAe;&iCjeOm5fPudk@
zTanPJA+DwOgt&s+oV(9+P3o&ByuB7sIv^wS5Oro_+2+PS1hf5Tr4yx`U%dTe<Ta@S
zaleNv=G7u_zb^2d9dsV<=PjMe8aT*}<pA<OChK@racYax^sp8o5g$(--N>}2FCB+!
znRF`kxqy9WWK<)BGtFxu42%l#D>R*-$zQUGc|Nb4`AZXGmpYqB<g2J{-Gxh<u49V|
zj0Xv~CI6-+?QDsk3fP;21$ZnF+u)V(x%`Ij+ldLC-Wi8;JT+_sHR1HSGo(Iw4Ev=@
z_#XIhd)ppg<M-GL9ty+|N#;nLkVsQgEQ*{U^-B+}fpWk10jgMii2IUjrClm}y(_43
z^u_DnHj!&)DQ%h+KPWE%^!9CUc2XyA8~}U(MZ4_tUa<Y8!Oq@rL+u_u8;C8v#$GoT
zOAALs8mpR*UTmQC_ri4g4>F<OQ=deS=yHG#6W_m-lX7yQ`AArm`xSc+TKGY@m?L-9
zj!fApg4ITiw~Vg@wH_<j-C+#hE;RYd^+6;{lSBQSc=5oKNL@;EoiA)8ESmVWRN_-M
zn#(8T>$!PW3x5@4I6FoTDRu0k^oO)vrE<iA2WTdn=LBL&GeBA2q52f!sOloN0;ZH|
zr<P~^Vf?cQ{X%D7Lu9x4=e>%h6qojCW3o|=V7PA(f@=ZIZ2wvd0uQ8Nr%P>za)erq
zG5+Qc8uaM!eh#*hYpv0?#3c6vxA~?8#;#evLcJ7y$v5K?DX2%Gz-Ff5y#-^zW)(`5
zN6Mj03&;glq{a7Du?4JB+|do*#4&#;Ci%xH-Ll2cM1FX<s}W!l&esu^uDNH<JV2#4
z0>OP|hJLSl<hs$cD+rWhx#h5E1u95iM+B-}OZjw3lT)iBVrrHUXLWxxD@+S4SWaJ=
zG>16NK$kxnziS}3Ki5uF3BE3V^x8V95Gs*i$0CwEoP}5LvW>QotoC-<+5})hEkY^|
z`Y~8MFud32v*E@Idjyht2g8DwKTU~Lw#bu>mAHGpkgT&f^&6yA25hbM3b5$v0VvxP
z0AYBl#?Twi=4w=*YEPJPn_PeVW!m+(WNb_tR(-g2e?kMY9%U;;<)2+u4R8`|CgUH$
z*r9F{VDL9>yIF6f2wOl$)pr0|4~;$zro|p<20}8iB*N}^7!Bd0T;JysTcCX)>xpU>
zUlZlc(qRuyTr2DDYZ+eFeg;rTiw@<u(RGY2`Xs<k(EI130TBMGNS!9S&5Cy9W423F
z*iB%sz_zw5b9mbKuwApaD719c+IiE>E49l>&_0(GO})LUw+IK)?$+-Jz9UADSnqCB
zgt+F^M5@u?<qe_ZMDWnLr}i%3F0%&rum?=rtysa;*MwF>5@^uw#ciH-Y1BEkJqSm~
z@qkGM-RKSJ`GIS9ucJ0z;rS;6G9K<t$xLG~=x4gg&T|oW2k!NN>=WJOv{4R;HQRHL
z*o0O3@F-K1!}L~jcNt1R4nb%&dKUU^xrR}SH%mR{#EaR){uwFx)6J%C->;#)vQYXh
zxs&)Lb3ib)s%4+%q@jaB=+ATPrc+!mgY<`b$fEImBp^M3Ne=18u&RRVWsM<#{X7t&
z-<u0p5FaWZSvw3y2rs-r;a*Wvtnjb6aFgb(h=~^mp|gv=>jxMYcb4!!Jdg^^B+yql
z!4B@uU=MkZxRi;Ku_kf?73d%67TfoTNk1g66<bYzDszkEw@>88GRC|NLF;+2@TAr6
zJ<4;Rvo}g3B`PFb>v1mK>8&Pk&yHY{U4zNKmcD>tZnj@zgz(i~OCohj9PIx}n!=s_
z&5pq3ujQHn2yg{9ERw?AaxVCU48VeuK9=$plc-kuF-3a>zdEc+R_tGE6g^S7<{_)6
z53pm3Q%H5dB(7HrDytAzpRU;iis3QRvpet)cIya%0UQ$I&k0|JArmR3VHV@XV&RS0
z^WYdzUkh9pJ(*n_rZ!~dQE!e!Gv?Zg(mu9zf`nJIncS0uY}zu2pG3*ZnH!U&`A>z4
zPO1{S)Oe}^NJk=BK~H8-FiXcNAJP*mz4pJ3Q9Qh+p<c5m%w+w)=pq#LO6(Ym_u>Qw
zb+BO|Dxa`|s1@$gzeOl1OrB&2-QKXntIdLExv#CV?EtS??JBB|1d-lOA#9Eb8@Y3V
zWen>AQ^8proxgQL!XyF1L~KH?7p{Xpw3A%LqT`28>H%FFw3L=DyLb9!xW7bsEPZr&
ziizq7C2yP6-&$)KKsua&NxQ`7eG-TkS4qLS&ZD^vO}RFLkSjKq0KZ5Icu<S+keZP{
zz?&1?ZU9NO^TR51slOF^$vb%xkr1kb?Un34svj7Qe%vVm?Z*;%Z;U%H3e$M(^r5CC
zrxaGQ^_Q4@*?T!tN{%hcUoi{~GRFlE8<ZKjN4xs;7PwNMzRSKc7WG)=t>iA2gE|g2
zk%@1AD}$dua_klC3XnCoT0B>syd^2-#0``Kn1;!1^s4?KnFw{}P^K)On@B)pl5}Qx
z>HmyibCvM)LG|}G_b4x!P#K{MirFjZn3J=&@BGGf!=)n%8m@ROJJc0}nmms2bvq}0
zZZ<ESoePQf48~yuf7$hfQSL(m+_!uZ>YcH?YD9Z<BX@#u4$bLPSBa1-bizZW(H$34
zW`8PNxoHtyZb74j8wl>$gtn*VhBkhgJBhG#+64ZU=_8GHTvvqX^toFvLW<O;?C9PA
z@qwKK^azZ+EK<6MwYfhVa;~nP34TR3xv4mjxm1ydfQ*>|njDb31yYk#P=k+H6*_<>
z=rdLd2ES2gh|ayvzAJ+5YXy>pGdJ}f29k*~z7wnQcT0(3)0)o-P`AZ>NBlc<a6Mtn
z5OKKf%ZYwBtVbB?J^Td8p~u21MbU3R)%tkjnB7D0#PIanAWM8sAe~-1XgDG(u@E&X
zB$gR#8RuD{hBt{!*8pAPItZHWY*Sulp<9nL8C>q3k%U|+t*qSqnMG-A54*JctH3}J
zm%BC~xPl;Vc*vuI8~}hw5`tZPAOL>e(;biRfX{k`O%eWIkZ*#|u$S*Lw9-;_hrV!x
zit!D4Q1lW#{KQb4Q$|#`NYP&4bq*nFd1>8zJtYKX93jzil=mTx&QwkofRVF1ciz{e
zSD>Vcu$&K~N3jox7=UZ5*&$ezMF__*#;=7M_h<e{tUd>N8X)orCeFh)xVL}6>r`e1
z(}b8W$wy$8y3V^Iz1sV?5hE`5!AqOCG<1(0S)E3Np>2C5zy0bNr`zo)zV8R0a_wH>
ze>E$8_l>~qM9T{vz1-e7GhKZ<caS8a-k8*v07yzA4?&{_U-^HZ-Zg%@#|`Sf=r9K2
zHH)I@ROY1TKX-G@(^!F<v~~+VdS3BJ#mWUOYL%uPoTtoEyDVb-6m$x2sZz?$UN`E7
ziohH7U@iL<?~|SL_omrfv_<6of=3H`d5p&Oj}?s<<71=@#Tz@zNj}k*Z1PAzdEzhl
ziAIQix2%)%0rOm1P)G4x@s22V6OsqXna>Pm+CH$vLdP^F`%)cWdhTJWba6AgxYS_)
z6s|?P-)<^}Zi2aGDCR&kQ1{VcR2M~@3DJ%nlXZ)z^^{E$a;ND&7-a6(^QkoTy);J`
z8OX}8%E?X&L`6ox^e+>Fi{zyaxd(lew(BE)^^D|1Hk|y72OAt1)QHO}DRC}`6R)@v
zGnagZ*|QtuGrb^EKZ!qMnn}tB?nsJ4XJn%MVeh@;{$7;ovXAE$I&}kTU)3rv`}Ed!
zxY_+N+UH^I8LH%;<p563Omo<kOE1p<rL&URfo`(3J@Ps}E$M2oLju96hMe!!#cso3
z-k@npnwRMK_@lKt7ixomQ|&&_SJWV^g$y&BU%K(z$koDr|KV3Gj&XeR`Sj)XDd`k6
z`E<-Mn5gm8RCJd1cz}pH#4hP-KFVMy6t$z^g9W!_Y$|JV9+b>06;Q}-gEH1WhZZTj
z9{rxjBj2c}7CGK>`~V?8EEtl7aI(@^pKgr>N3}bzeB+vyAD$>X^M=2&lasUBt;{gm
z_9JnL3|)ingn6iu6w1r7!9k9{D->3BtPnE__L8Qmg@?r|9sV(w=^`&hcfI0a+5+9B
zZ2SXeFfoNXp}j34<Lb-+@7lv-j~AfR{GjDF57I^|*tA2opoA2^K#wT6zi5|OHjp|Q
zG~OSW>e2_H4Bh=0>bSZMWkr4ixk<^FCrz!WwP+TbtM0~yW5xZ|@j;a{s!Jjv6fU91
zi|m{0u;m=pqcVWmtNfMBIw<m><{~rqAWr}-ggD0HGbC%~;#p2r+UaObF#Oi*LS*<<
zJfKrxf$MNL#O<pAudyN-sk<|`)5Y<pq23@qbZYI&r*inMye#^%2uL%yDLhbwIr%(2
zgLy;w1di+CfDPH($hlk+SBF>Yvw6N29=@V8!`*2TwO?(_begqoa5WohF|quc$P*5W
zlq_^tuxokPhx9SJ)>hC|A4?igps!%)&yuWw-fYvLvAdA9?R>Vgtf_TY6B!A278I7<
z%37y))G#~EZ}iQ~EDn5?>NE3bigG|KXLwH>Q)z;tQBmQr44uUt$|S2AGp`1jKB2XF
zpETTNvcfA9?wOL(N=U;@axfBb2>k<M)VK3r9@C7c9R)a{zuwTD*dP3?R!ni0gow&4
zAe0W4s-ro0B)rd23Hnw$XnpeNZm^s;t6S8ayhA-{pGLpQ_w^d8PUu3re9iUjPN5B5
z@y4<rN<BuXTR_}@BQbZX{Cw;jR^<V`;L9dyGv4^+ck=m|wl@7qDAC=aU1~Ba<Bw)5
zRRg<y%xeO-Or~DxtiU(kILlR2)oJNZeidZ1SAc>4W*mNdkR8V7+6dfoq7iKPtX@+X
zYIz$$siAHTXB9gH9_@l@HaTdX!?e$4$No`He~Wd8#tK~|iwRa*9}r@x>4zP6;#qr?
z07BYR+409Ef9zURH8w-Bn)gKal_}+WmCCScRTuNn@wYxFU+1eMxJxRhHbA6s4<ga5
zU_NZd8|WYwV6?(e=RRDLxb+Rj%ax4>jWz1T_kL!;)efX_x%*MRRKbqIP2|^L?`>vv
zJclYpJ{PJq@s;&x&Cp^AgXP*Yn*`$_VsG~f0%%M49a6sV;B0D7$I8C@^~&QcgJa*^
z`zid4R3!$vc7{|gz_GI5s%yD=D%HxSuHz3|dXkTT3xJ|TSYh|jL|_8*O6Qf*#?I?#
zM-btWSVdh>1&`Vchi1qs07-CB7$)Pg(VR`gW+#-K>`TqLOu%3oFwj%krTlCCmdLJJ
zc;=o*J@`E=4E**<$W7m96E4?5JDs{A*rOigRu7Xij^C7Y6Uot>5+5pdk#}QNUN?@(
z8w=L=*`K|}2yz7br-uo?k-Xn%>MkzEECn)StM3<O^s4mlTVF_6)$AY#sokWkj;KYx
z0vTbW%t%pN8(d|ay~j;2u2*9~f9isTMk7$sbd2@EB2v6~No;NCbBuW`;;MzFLH+|s
zF`ksO);UVUogt=je;7AJ-vxqO{yWj;45*a`d}K2rgcx&x>GYRJ!X8HASqXTu(BYc6
z)!&7&_O)VDJ3Z@qtyqFDJ&%s)Xi2EDEum8SNCMz%soDIZxBx+5CReI);nO-#w&Ijy
z^#l(|UaNxV@0HFOG}<lmd&m(Y8fpjeTD>v-p|R>zZQxJQZ1w(!=v2uO#~v0SI>b~i
zLZN*Y6yt^$=Jo}c)k(x}PVLJESKH{qlhVD><luXhuQ12*LYKU4Tec$JlU!zms_pkG
z&s?feLJM1t?7Tlg*H=!@b2%VF=1v^1MqK&i;GgiMQ7Ylr*>zYl6hO?=+OR{NN#u4=
zBSKEVZS$?(3cK>Sgoz*G70-T#L30_Gk(;W#__^$45z(J0SS20W!o}*<iQMm3P~_oA
zF+8zx@i0RbVRo)OfFhG%q(eEaV_+8D8UY8M?5}>nuZggPzL8VKl<^Ah1)&EyQ})@P
zkj8PV3#Oa&zwlZA`qt|OD7lK=0~@0c(lFARLW2|trEvrNT~9wCFqeMeJ!IrEDl=*X
z;@;m#5Bq(&l$;^asdnYO6OcK|n9oKCX+ts6LA^e8XHs!+q_PFd=~`0DK=&ex%Rtre
z4UY-cwKk?jzg*S9j3+R$%=q9^{#cn=QB0XDb3i;KH1SJK^@6p8%xKU&cAv)BYLpvk
z%~e9&qg0g{H!#(Di_wE=mp!ubQ#ZA7XI9N@fO@Oplp^DlvVfe&NKYN}%JgEG%v77P
z%O`N}YXj8{qE9d(cQ6<U69}yKH$8>K{aHahi6rsi-f-&`FG0=AJ5<cu%_Z9i)RErQ
zk{Uv>8fAI2?g|f>@F<$!z|s~j0>LkBvK0Q&ZgBAM<ye$wv@66?rOC^!9!Ghd0h+>v
zQwp@IoboH6*(Zdmx85iQ|3p>DE7X8;Xvg%c2P~dyL_nYDRng-9I;zg55FCJH@Sb|R
ztz@TE@YyIiW`HkI*VmhdeA|ik{JJy8Z+MGeW8y(wZK2X^*lN74!bl!vw8k{4CRf)I
zs<nIyH#Ly~dm>*7>VnoZKBx*9QR-VK9exy$VfJy@3xB;0E2aQd?ZuL%E}aJf30e`$
z(Z*ixH)Jfy($s~JhbxD<7-0^$CJ6^WHJqtfEkHqmzE73?AWLO;Q86BIQ?#1sZg<nO
zok;L`ou8gQ0ePffkGn__!C+cAI&DXB&_o%b1eP9L0ic(P$=byc4)8;6h>hi&6C=KR
z_yE(-v@PZFSZl$KphF%RQA`tEQIV329k8b3)B{7@nnbX`T|uuHWx&2Tkw~0bSq|mE
z*tw|_`66jFa!eYNLxM`)E3cHJ0NRhY5_C`<OXAI*Y3o%uXS_zFw-~JM<FEJg@)W(R
z#y*q2><C?+yNEJW>R&Uo`ln2mOj)ZcCGo_u66nlRO|WA*!7h?o(=1NuW#j3Xumzu5
zH*CgCUT9)51T2aeXkw$jGPKU(kDbaQtj$4s|Inz6av45Y=~a|bAUze$tD0G{>DlH*
zJMVgisnc}dxr(}&9iaHu11sJ~gWI(n8m?q7JP3c9dK1C?#(1eD6d`pbGd2S#7m_F%
zux%^Y9us{SRN4@CA&;l#5-VokZhTiZxV@NZpb9-lG=`a?2VB!ashH?W)fUbVTCSB#
z%ck5uSs~qa`K;HLb8oEhs2#@=gX#iMX(YS>Eqh(C9GYbALTx~5Nu;Kho{zzIR((Th
z&u5TqCWM;QZcv^~QW3=8#<}*<higx-C<n#mDt7((alv>*qNd(dVByM3znGQ@QP6e6
zF1cnQ<+3wMyE>4){|un_n5V10WLONBBzYX4Thx_lU|K3?w!w4bw{^h0qSOJ<go;c#
z-7OU~Pq)h(7~D*GE<ZHXJL*vECDfOO!JKz%?3w?Yr^K`cvQhE97XXXfF5Y~89chr_
zbMuUaxcy;?k2X~jwYm%M>2?k-V$bvWgO#{98c5oM7^quQb+UL802t8{bq`A{SO7>v
z!^zhOzy0AOmIx9VasDP{2`P8EX|Ra7?UK1``O7Ktoi9y=4C5K30<T_cYM!0zxL6nx
zwP}Vrju^m2D6j8_32*~{<kw~^e_c>?5vlP+0~2^0<rXK;DnE~$X3}j)A*Se5q1~th
zOfc*3z$?*&!c%bJm%Gv_k<|;d+aZ$xlEgnH>2QpPdW`Rq72%*$%`%ZbweY_aHfOE`
zo0tETb~J*GJ(65Sj{A8Na%mN$?E@Md9)z?C5k?I4oJzI=k73VAf&?eo5!NgVw(}A_
z1&g81K4axMB>y7AOnRq9_ii#(Niy&#-5MN;k98O%4e?nyn`*MXQZZS9*?M|sFXW8e
z2j0urMkxz}ZP3<c3T)*D@<VnseLrGsJxHOObv`GM>8=RRFTcEpcrJS?0a~6!GKYwJ
z)69m>T^EqdR7Og>-98(8xW5DoA)=`#C237YfD!#<&3C#?0{3&iqSK#simM2zk?~ck
z<TyH>NM{v1*K%;n_d`HRwxP|uGv1;j{Z*-<CTR+JP4p&P&)cGBkfCtK*o{#5A((w=
zyAO$ymf^aW%)Y^ZT*}NkP2+j@d-_>L(4X_LcL)2pNQKDhr#3i7Hg<7<KRqZAmte)v
zRx9MdRXEzMD;-KPos<3gEArL6V@DFe?Dx#1AtT)xLw+R1UE#dF(Pz)uWcvMvl<SNL
zI1~p#rhB;@^F(JTfOEBv>ePb>57VDu`e>*0K=2@j5_c<;`$lT?8oVMs9b~Zr_Xq`m
zDl!9>Ge-JidRc=)sfs#g(Iv+kD?b08CijYD#(~*=OeOoiTl_xma#UK@uPQ|1f;Z_2
z@eRm(rTQ!m=D!OVY3BvhEfRcZp8%YDTTe*>!+8k69B=vBx1ZntEN8W+6lkV8FRG;9
zUz|@M{zhH*<mow^1sCnPoELgYSd!fecg6;?2t<rHzd6ijR0(-m!M~sFUF!~W`AK1c
zkit+z;aW$^VGfJ|*U2E8Egc^Z@IUzSeT_Kv!FLL_Q1e?sf#jJSt0@^}z(#YTLoE+F
zcue!hAl<+bommoT+s<%9?AhPg*<KqYNa-XoL>)GLUkT&(To#17ECnQVeJHvPJdxaN
zCQp;y$P9ny%+JTj%QVTH!oBtlVe>670HWtJjRbCWGdVd^)o~fJmsM|nAT#mZG<gJo
z=td2xZm`EonrCE98*cQVHcBB&fK83Dsm#)5Y*-E-ey*;q-xb<AlZ6^*o<uG>uqn0l
zjBP;D=CfdD@o~gVl{w2v(Y9^O%`E2oks+_r1mc&pA_Wm!I_yCj#fN8p@d>gM-T&k_
z{^_vVWZa_-By13{OMs=6Ke3C*LBY$I6*1_@h@o!45P@BjCF*^$Zi<87EmZ6H$sgwW
ze43-htE7Q7p(z=9<G>o?kgz|j8e2lU?Pjx(q>QdD?T*N{W-k4_^#dF5RXG0Jt&_kl
ziZl2OO&7G}43cgc8V&e%)J8U$PCOUKV`<=3$&D2E&!IrEt*sqA{BQvO>dJ#U4lz=3
z^!XE=O7M=AqN|_AcuFaS{!r8w@Ypg*DlH=y(K~#y($|rDRswDvB8YDQTJSAdj=z9>
z2`kRkp@~5h_}(((R~5?%WTWUfzWd|0<w&edfI~M+cF7*&PBJLF*n{?pHlk*+1?zH7
zl!Ux!`0Ly#R8ftH8aurjov&Xm(@Lpe9^a(f2v}irSIineGNkH!$m|>OUMSe?2XYnV
z&ieMx&rin@neBT7v7D6>@!24;5yvq>(NW)HZ``=O(icHfiXD9ihXtFRbI{Fw(Xh!$
z=9CZDuk72!3&hn1{eHKVg2KmUYE%{zSdP-Yw!Xc{C6`6>SS^MCc#eQHRO#QTding|
zo>?Hc2$q+a&pBiyt278v_EaY~(hFIs0G2VaURY3FqUgb$MK02<(cC}8ME%Ps!lbju
z@3n=-q8L$-6ss=a@NvjrKy#^3qK7t$Z~`Z&x2OuT_B$+#iHA-JbaRmbvQ|-2@(X8>
zv5m)t$O)f1NUA@Za1x5#k@hm}X;<bl_GKF`-G|dmPv>$mGc++JZ&l_DLu4glu=wBV
zkAePxf9TO%6V8}$VSz?~vV{)`x76Kr_X_4s`eH-=4rzY)ZYNYo1d8CM%sInR+({1~
z#QOs{<}5VCVC2mkQ2+=xfO%JLdIv)@k?wq-`R#9p7!%{oj+i3&CdHK%c=gL+K&MeD
z)+S;}bu&xQ50Ar+`d4QvWChXnKQrT$py_QN*tX@u@iD>L1!n^--@-WkveOHIg~=7i
zP@tdVn~US69aOV0lf_Memt;GJzLLr6e)xhB-2rc|wHUjh!RB(m%R!DO&c<evQ{`hJ
zL2oLV#YpTJr|RZ|77Jvt7r(Lro5Jl;AjPCr*=?if<WNUq$kkzzr#hc3$38*9&-M6#
z>mB@Po|Z{Q#N7{fcK`~GMjuoJ0Yq7(8$5{aPWUuH*UH{fXEv8v1sK%lI|_(7^^gtr
zqb*@7?#+fe6<-Fs>Juf9@j+YGm1k$rzYDjIM7@UR<2<^19ESl6&<Lff|6;@0b#h39
zRSu_(_o_WHxxxhI!mF^j=EQ_Q01%BT1<W{s((A^1p)LI-ibo#rS!Uo6TRNO7m>kQD
zHEt+F8G$*dn!Qp<gSPoAqB@}NAxk+diP;xog>t9HXOTK*q5}IV&KeD*YHn8fq0InL
zrdAc7{ZFs&c+Dg^??O?&iy;I_88@uM>l+Kq8JIyiwa5zvKxAz3DiE<fLk}FL2YV;c
z*ljzB1WPI{*Zo8JHRP1#R?^Y+h)AAJMEN1!GXaFFA@R@mec8v)X)<q!!Z$7lOhp7M
z2`%l`ISx*UlH^d6hTDO%;bxKGAWq8Qi5Hys_SPx+lAB;F;Lv9i>{$IJu*@F|{=_hy
zDlgOvPhhK7?6(pbIi$_3YYl2S#_<}TdgNGEK8DN4ewpQn=XWtu;MN=~N#mW$DV@5+
zoTG3&OBZ`~cxKEeDc-T(HQbESAPnzYy|``->^;o!ILRLN58Hz_PN+M<x-47TOVW-}
z+n~_G0q!-SlSiGt?#@LrK%v`}36o~^p8(}^3549oX2lV=r2bCO>>v1chBn5@{K=cg
zB54p%(^D~MqP1vtrBrE(Ywb#GHgd`ctjX`dx&8_(slsYl;`E-{g^K0g_J;*CCHevT
zpZ7X{8kuG(phfw5b4A+=mM=V8;e61aZ%j5KS)_HcZ$*#YhlHo-U+9enJ+sUaYmjOr
zj$@Rc9wlpP%|KH=Ia)Tp`c~p`CT$o?W1B%K$jy&?utSYr$1yPhN?a%umU-8;{-y%;
z3^k)g<w8O?x{Bg*y-55kmyn-3sh<=;WV%Jw7r~&p-{J&2LQ;o2Khc;$VfJAqJVRME
z<|>0EI5|AlS|`?oYkDs+mB>f%)AKoT1!Q_$Lq&g|gN2z?;;bVkCMR-c`oVWj^x9A~
z)!AhA5egPmhKoB-m!4Pz4i%ZZ1JOqYgsH3x2&WK0{oY!~6zgLt=@`Wg;k%HEGW2Nn
zIXM|QWPP^qM`C0wk(3k?cFU6_JyO*i-uzWC#0QNu_)5$<q${P{&uTSYs;#l}F5gY1
zB}x^){FdjlEWiAvAXAFQ8gHCC_lx_sx^U^;!@1E_d{AO6Ha9s^(G{J!X2_x*HO1~C
z6t|*(Ec!(XwWZfJiAghp+j^{`xdHVPA5@2Q*v)WhTC;!{lU5{aR=V4k!`QNJ_Xv6b
zmg>O&?iATsTD%}`r_vxkN-Sv{Y=05wk#n)nm4P)$XaaT%LY$T>IzJh8xM<C(!H}!-
z-^qMG3mFZMRvguptEq}6+H^D$u!QFAm+gzDKuCB=gX56V?m%Hc#hI`q_<a3zv9>bg
zAD5&!<+Fp#S1z!TI^76*_b;xtO1%Ci<gLU5UURXd8*re7ARn`j-`sBgNK5)I(z~;}
zB-CL!O0*kI7gHa<n4{rP##Jc6h9h)5fZ3&MF?`s!NI0L&1}djKqY<@he1yF+2dpV0
z77u<MB?4ko&J6^ZzziCLd3ym(T{Vn9qGHb#>mWV^S1Kx(WDW*`;AITr)g~osvSflz
zyqm5hZ`w_1VO$vj*1#a#`Vcq}D6*4fudIrVRKOz;f_7OlUZF2WEymo%&*_mD<J4KI
zggOav(53E@oRI+&Ya!E14<KbTT>Xf(1%ZlqRj(V!#lg3q5j>HPaSRP-Yko%-z7O4w
zG=2mnp(NLQWtNQAtyjMByltb8WtUZ;2ZIC$(R=p=@(`Fi0FS+9hOEKC7hj8j7i=HT
zmbqxkg1a1M!<5Y22+YAaO+4_)0jQD7(g%}>{;(6k^8NKN@3jam>N%O{IVmE;C^#zN
z*yJwl+nY^T8%S?ccU-Lh@unT;A7A??3&V%FH1;&`shzHZb!6sZA}yff8hVdJe2KIs
z%d0y}#x&UETSl#c7i>5V81|W&IT0sKgpfG#UX3*#QHfwzL-l<Hot1T#z=ti=*LYIT
z^E7Z2!7pT-XfZf(jjWX8E;KLUMR80PewtGVCD5r~FbaYn98b-R_~>(x^}4Z+m#0Gr
zeK2N0=sH)_HIZjhL4(A7oVsnyp^`q&9_z;!BybQ3sAG4nl95Tf#68W}Q$C!R5J~}p
zhnK;?lpJ$j%$Jj4?A`_G?QVdC8KR@LP98ZbH3-q}DEn#F)CFJA_lUB8mqS)!agiF7
zJu=^eNpWXU>3pJw<8nfw<}5ZoB+D|Peg|qdJ}K^CFVVz3zzfn{6)Kloh$?=ZWtz-@
zuXSpN@8hFfKJ~k*g({w2Y8fhJ(+Bg2Rp01IAwg~)%?qMNa4V)zz)-<}6cl9Foefa$
z&h_fHB@U-?NGo|Oaa&UZg^+q`T&Ff3K}Vn>5;I&6$kk6j(kb4)d=%C;^Fk8shXe$2
zcr;@XK$>YfP^D`mkOix^hfxF;@dc*Lh!fMf`Dd~s$z=&r+r`t&3A_elyGZ;tqnb~C
z4}vE@1vncR>Iy{1_^V%?ly)kfU&=W}bNmu`?&vwOzic99omveHy~!lXb9$ZS`!NcQ
z!}gtbf>0#|7U;To22Qw7lJHSB;Re%JBMR+2XjQckx@|<s#4$LX^Y+*)bv;HhNtBMp
zM-US3db3F51cfSnc33xv!N*uFqK92xvD9z?%T-%`kiuv<2rKvkg7>u;5FB+VU#}u7
zLl;;aR`bSux-o!;C&t-*(gwRev`Fd~xhYeA9pnHc-3KM&dunS>U*xCG<Xa7per`r?
zG{n!V4RyG!2uTd+Iz39?#B*<ye0Lmgf8!gqJFS~mPS;$$Va92zvxzZO%3fCdGlzNw
z2`5IuiRrVqzf53ie}yAZ$^%kL6T?W%*yvb4A}QyO7j5gdxTU&4(MQol7d!}GZ_1ij
zgj(A~_*!70FA<F#JL_Fd1bUm1DqqD#=}kdpanH9oI9wUF*WcYCy$}w^#kSf6FWwY7
zhwU5HxeFs)^iu&ydDe=gRM4v#9So8`#dzfxmMIX*Oi~dFXxn+~%kmrd)gm-JQ|M2h
zkHveZW@sw>Dm-$K3QdhF+C_0r1GicSaS0ky1o=Ym#`?1*i&d3_fU`CUco(C$SLpl+
zzy*XK8Y?xf-DKX+^a;(HyC*O7GXXPmWw-@WNe2>jCDBKz>EnrR{#B7MFLB5y@ZJmO
z>{qgmpm2Fpu%ti6Mz?-<Uk_VF<3i;sX~>&0099VQ5eRNQJgPw$Z^WshM4rasOyj~e
z>HQ>RID^p~K}WShJXPc=q=FWlxk$u*Xze+q`9{FX9bF~A;MqR=vWpbBh2Y?XVG|;$
z?%j6A?h6ut!YlbBCBZlXK^G9ot4HI2NP3Vg2V84*)#_iQRm&CoeB7=tK-Mp5AwgR%
z2L!+7**mf~algjHI+Me-qvLt3r0TLsvH{=><6tYYhplCA_5WN3;P)`eJa+$jDOVF1
zemcY1;+_|oRFzceEG9al$L-SBYm}ETx)!PPOUw#Awy-KtQsFpY?9g}xP`S3COwqij
zyX@wbd@gC>A*^?bg&s23_i{LvvV(u~*?s$@oz~&0TU;wmMrQ{ygwqVm*yeOx{Gh%5
z0o*SbFfm)Qg&+)7mM7YZAdTaA3`N_e%@!m#hz&;uE5KGhu~J#}<J0wyn_tSl<gf~=
zSM)(H0R?^a{?18y54CQ!oUzm)HNj=Rozu&yDFwZ?0wuJGAX7uf95*$+ZoN@)07)rR
zGWMT!qrn<=TrXn*GArvQ=}fcZQZX^ikdj`W+grn(W=4xi`NpcP{H3_rnL(8mF)i=A
zEi!$Zx@7(1Y}(IvtP>tf#BELZ&7d;)X;h!{z_Jxe3gWDl+zQB*9E4X1=5kpKP3roE
z=pA{#(H(X^xPyoH2jXc>5;;`R)F>96D|6`LrI)4!mUVXh?%9x->5UK~I8A4nNy!w<
zGZuaQTk71y(TzVg*N6zXPd#XlZAY5Ubir!^YRTP-dXi3omBrnX;Pt36KB-R$9z7pm
zSC4DZeU$V4e#03?epj6urtF-Qwk7y7MF|~6`5~01d7g*I#puD|hZ^%uNQ6lqO_m`%
z=3tZpIh?Dc^oPbEplP2avnoq(nu9xJ>H%#j*IlP5BW`6s8pd>)&ft}oAow!q%awQh
z7*zJEHe{$(U42mucys>@lX~4PfzV@@8Iq)sD4OqV*Ba1(K~DYqk8=UT;=${<IIe5N
z6(R|I!Ux3_vtONL4`)d+gLcSGGec8!m^Wq9t-^28<U&?4bIvvQr#xssSk%7un0>Nh
zO1YV1CS!?c5N*Vy-Z#l$3YR0e5@&m1_Of@1Z&7xMKR!J%T@EEf?4TWINCsadAtaF1
zBzKcbxE#>qY?m0cvuCg{0h1Mh^4tro)8+@c+DbAmMpa3L#y^8unPE9Q+!R$nzAYg7
z%NgGD_bl{W*z1K2Mrh5LL<zFrM=vs1A;}Yj#nSyUPs=f-h^Ewy=;Lu)n$<7YuI?uG
zolah;3?6p<2~c_dBQ~K^DqU>zb*<wS-}AH|?P$R=?`J}<4yIF&2PA5|DfC-Cr#R7A
z@1Q<axY>cIJ$K7&#3f9r^v2dxaFuer*1(&2nQ-HW_u89u5>oFMiSr9ocMGD9w;X_~
z!6EjSWk5B&a3pMM64i7^sx5axX~333yt_|jD;jArM7rsueQ%dC8!dKiL*d%cGjVl~
z@q%oq$i$Xn{8hBYY<ZXFz5VJ7*iMPkNt7jV;FWo1HVZE=RL{-{LiW^NhwZ({Kwk8N
z-LiV0xB==3U#iF`Fh;GhLM_dbdT7~2scPfuu&Z(gpHB<k8q8V9o+S}$25zzO#@%3;
z+zzduX%}t?mpS;r7fA&kgR>@pR%I00ql3195qc@#n2VD=#Wfrs%_?gqiIXv0m|jV!
z-1mA3o)`JEZhsq<4<<^foY~2g7{;RC2%<DHwk~&$q65FEOH|lGk$%=N!|FW&k1XYF
zbhuwwxTZtIoPpSq7NB6l<bWhPqFQV8y-SvT!hmb+{B9FjjKPOFqSARH%PI{v;tcHJ
zZJPy3M+{je+R)a|%|cy!#(RDg3W7PZ4Srk0qW(Vs9YEs0HRam8f^@rjFcCOQDXg~W
z%hKsMqxQ+%O6lDs=-6~w1F8+mM_Qu$j{X#20%?A=?cHjxc}mBe7}!AUYkkQs3g`55
zENP#$h7X`~N+9E+SPTW<`<KBBDbt+!T1I<hlX%jbP{DOE&iK-B&ihLRyM#Rz|2a7Y
zfZ)2hb<DGBf;{6@b^mm!0I@ynZ}J!~02AEbszG%fpN;8Y&?bSAfOzv8$p*cQNr|V!
z*ru3gfI;fz*d}~`+*dKyAF}!bxt(|CCf(hh|Kv#(s{ZRuR~PX!z>mJ@y{50RW_2O<
z$Ebbryn`iUbZFFS=#6}%xMa&{Nvx}(afph^b<HO9-JF5nmU{85wYZvM-#ayXp4pn9
zV5k8TgCwireWh&WuAD65Se^^70UH=vYOMU9Vb^o<#I<W2cm?X<v|JTt!)meLQVzwE
z31|-4w`ANTOaHzX*)@yIqW^kkysS|G$6aq~J2v^1*jTa<Zy?+89=W`+l2XOjg0gfs
zViW&Yt5HcWE&Hk~G$`~bwv19pNr;}J@dii|A-~~pbu9FwjLa|&8MgFJ?UgSd#>oHO
zZeQ&1`6Qu2@QLuQ)@wdo-ZTTHkO=QWv?|_-0*iinKV<#s8Exm&aUH?yoSm5S>4hqf
z3KcM8M!L1bNTe|;*;>aRlKag+b~I+XXBBE9V+ub;nf<vW`rS<}y-yn<W2koHvHQZ_
zm>Qg}mw-T$V#deAOfXq&$PVQLaxMf=hQTO-5O9?C@EF$r>j<P1Om4m>Y+XAFe=BgY
zLnxLsY7lZ^$Dbw64B`;XuuUIAvwE#!lx@#W+V^M2Wg&}S;HBA3fUFLmWSZR>8*WO@
zVRl%dj;OF7h>eHTl))k8$MOc&|5mkG7}GG~IJ6Pq`#7s*EOFn4D(={akgbd)1i3o=
z--GDEn?I#Fvx&ZA%UL=8e`*JIf~!p#PM&ic&odfZ1Yd4#6T$T<!{&}kDo5j&XeByg
z(b1-J5qRB$w`;3gsl>jRFeB3mZ)~ao^M+)9Hlpd(`l-8p_(ifrtkr}i4LRFoP5^Y)
z>r!HytnW3=Q(CC78CnOkmJ<mT2D0zX?q~$9ksV&JPu|XPw%!<3r^L}r!noi==GCyV
z!c3l0<C;qhVj~)N#2(C3xL7lEWWujznaus)NvXs8#%l=a8y$_T?e9-~b}4Rai#SdP
znK;K73(IgE>Wn~Kl58cypAH+WJun90M1B6*ma@b7YkR;(n@wkPy4GrfZ*>6!S}Vre
zC$_h}QmtQrLlv2IAvi+gcp{4T0DGTXG5k~|^Eb*hb5E{>O5ICs@nMH(YAb6`?_Qfj
z0gBG&&CWE8A9qG)nqpD%CBNuiRpKx%;{*3QF08QliKo8Skd5O*gmz4LL4$#Id_9>#
zWlIK2z5%<H>A(C9DwY)qTKw8O%D89HL^U8KNH>N}xto|eKjooZ^9E`iN<abST{pb8
zMhJ1#lMl$GFVX!}T9*`!LOqoXJxyJzr(|1%xy$3*-0y}q5NN!lOmTF2p5}cYu^Xii
zP(14YQhdw#3t>u++-bp88p3E=j?9c7BZg(S)rXpqFsM|9S2xYFnN~9cipa;4>~bTn
zCwHS5*}=#dnZYDE)d9JIthgS<e_8c%gsq27LuM#tWdg;%V}8f^F3biRMNo9uEwHp!
zUN49rs(=T5fwu5AsXE^8TKrQpFRqswDe`nqTJB3=%3?Wn7>L6?TA92j(iO!5JMCw2
z$X>_D^b|KeIm|4gKT4isAG_H^0G*+eSe17?Vm?8t=WGOG`U~bOzURq?TB%2n{7+Qn
z9b&A}HoYY=BMKebzyYPYf@K0t^~>JK>~|bcm<Yr#*`7!bDFj*4KODP(gZ&=3wF|Jy
zr(I5l5ul_`HG%3<2M4L3(j?Q6Ty>$2cW9;@>D)bH{@3u)CPz7gp(z{E(YM9|mY^*_
zQOx2v_v{R4MBR|!JW@O=O6iyt;n)YB(nw|HD|c##VD};=Em!<frzdYkq^YhU0CS|e
zncQ1-kD@m3Li7?xaTbutsHJcUT1T+up0yc5cHLJ15H5}aGhYgLV6-S@DBuh0q0hS}
zoTstJ^j^mEx({?;vtj6~V)mI8!{g_)nH0!MF3brt`BHti%Qv2&Y@6`CS;0a`O5;4?
zImF?e`i8CBAq#|p3`J)KU5{X9_^e*2>>{zhyb80T2l|LOFD20B@%@5_xZHf=4OUMN
z*86|TDmPOte32MYETvGGA$%7I->I?uF>SUlNfUZD<YGK*b|J#oW;G6Bl#a}3V~>Jl
zF7)e)U;dP$J9-h<N2E*N$yB(G5(uDW+`TwDv1uRH9*4F~$DmVBtT3Ecv#t>z0J71+
zP=7Jab+F2vy>FMj68R>10s_-a%HZV@a6yj(uXYh4UB36#-tz%0QnuTB)||e*^J?K5
z|FFCwGyJy3u9}xecfc$jv8d(Zc)eT?dxj`!Nf)4dp^)946L(qc0l`nXJF*6s=C7B?
zxKQgYBU?{oL=cg_?=#h2n{k_V{H5oXd8cNS<#XB^Kw1{=lbpPgX0n>eAW;}zPQkQ?
z(+S8PG2|xl;+pOhV{=<km(?3!BJDVSR^|?sP*<9|muZB6#@|N&!)Hy>pLJRt)DsEP
z1)fMc%V3JvWCuq@{CA%YiQ$Rd6vdGG_!VDbC@?+^Y-0X>)H~$d*472H`LAF?Z|4ye
zGP@uDJ_sb&RTydssm0OH&3=2~1qVTbJ^2~Z<Q^EN9yJ|PYzx7Xp|ZXlaL!jlddVmq
zzcR0)LEa|LU=Jri&$pU0Ap1qmfKQYy#udgUcwa|ppLhkXt`GD@YkRKPQUCFIhoolC
zm_K-Ca`WZ5R@2V}H#K4z;>fKih(?J1ye45FR4rhO%#u<-q<gS~M))gDUvI9}p$Y6a
zC!=g2be;r_;3?iIaA^|PcogJU{>AfxV}SNU5a5O(*SR=%K*jaGmo->W$IT4IYKsnL
z$hKg&kSq(1;-Ko3qBa&oYaomsu$Jq~GOB>N@SGO96JEoyAWKRlxFYUhaK^-UALX>v
z+$mg^!Q%Va^Ln0LbE4+?h+FbeDDEh4OZ_Rd5Hi@&)mP<(W~D=v2ppNVpnCAL!=yR<
z8DNjFRRsMQiLRDhU{(fwi3oL3;bEE&*r2-$CHRRpxyc6<l;r7&S>m|QSbYp`H<(M|
zmKSG&`}3l{E;+QAF!WilmlMk^j!ZuvS`lZ3wFrdVka!lZi$mxd>?M~6txYAu2-trY
zSEo8RClJ#Ptws9We=g(M1IFrdtHDfTM?~o)gIhQL9F#yqdyl~PT+#}qxoeClcE_Gl
zh%<(7XIk^`(jewKpP>v8VffyxDeBEkS!5&opaXyV3;He2KCz!%Gow))#VeY4A`;yC
zeBvKv7BSFDll*|Ogpo7HeOc$rZJ>~4rU$THsV6{`ce?JJ<fQ`OD0C`@XNeE?K_!$q
zN)>oBAK~q;5Gz>r*a`+z0ZBG{NSL&9uW*+ER`*X})83UE*Du1^2~Zl;#Q<oSv`}=~
z;UWZwQ1mnhkb+T&Up1j`Rjl2;NvFzcb}hnV+0`nRk=j*O2j;b;`=f8a(hYXy2uQVb
zOP*kYwRmiCE%%=<DPD91?1x+yq$rDxjbsMNT|Et_PpNf-lxUYL`(Vn#$$Q+BWUYp;
zrJbZp=vybn)x)tl#Ix~BR?eh6UPPCS5HmTrfXLa^;mlRXBJ4AFonp*Yw%7AC445!r
z)i=ftEv=ozCm}fdLEP}z=DPKUahSi93&|L1#qgfptchrAS?{M_fDB0+uXUQELAYE`
zpSk!~v6@%qQJdP_ji9J#0WGcg-Ix&1bJ=|pZ+1;jF{npjYp2vcl>|2-+;yO15mrHn
zw6>6|_>kIS0cw40tM<68rY=`)E8Dg#+z~V#J}nT)L!L(OTR34#jn~tAa3O<hT26yX
zfyG2OM1Z4B<_T;;+$_lVC5{OS_Jvv(jSvF>=o8oDdRLSZB}kX=3-oYyUZgcr;Uk-5
zAF_LmS$HX%XO)n17i-4y^?YKqMPW=c>HFktV>OPy=ORMWukLT$TbW7JL%(LUjXV6!
zSW`hPm{nDNXfwt{zPFg!N{6g2+eQnQ&Gm&N_`g<__B-6yq0zCo?W~36HZR*FDri4<
z%8QKgx(h}>C)e)N$c2YNOSX!#j=Z>*MS+)pke~Uurshs|aTo&%hsAePL_yDg8iGRm
zwkHUMd=4^SYguu<2OTH7pX8{gO)yYLiD^?mm~uAz`w8mR$WsDuyz#2Xeo}mLm1z#{
z$O06r`Y!?W%30WPW}MVmSGsNCeM;>6HJa!2o>Ww2e$=DzO*8JP$b&T7RSjE9?y-KN
zVMqWBC5G*aQ6%ArpO<b|y7XkI3NcV)NR$ZC-av5p;+rO>UgT8TXK5XrE-4vX=M|>f
zr@`qja@Kxa<gsX|jbgb94Vpf!L*Ilki^gK10ifJHlz02~UhBLwoOw?5q;`Yrq6KfN
zBfqmYvlP`%Vcu31OR3rCR5=L)jx+st399N#boW)%p!)3pCr1B-QOGAJa-K)A=OAd!
zXtGyYTqk>>SqTwb6~M>O#1)i4;p=jRjMt&^r?;@mM3+U#Y%*;<L{CDqdwB~@(4;6f
z)|p(k)V})L90?5?iQqC+??IS`?7#gb!j3yNH7V*SwA+X-XknuLWdN^sV?ss|ayvEp
z<s>M47jG<f%YFz^|76ktrxw*of3P8DZk*rtb&E(DG1*y8AL)71$Zu0>#y+3CWA32o
znIh<YxgE$ERI!x=Dn^irdGti4sC?riOj+c|AHW7(-va`aK2fT}9rwCxua<m#VR%_?
z`KPVnpX~46V2*DVH03-!%`a>1iWjjU-t>SEJSXwri$*_yE+*G;BX8W?o!b1LPk}5`
zr>!NM$e18jpl?NTx4IICq*rrY!Zje{q_|ArxIIO1+j`N|PaG0xYPxI*pCn{O(S&v_
zX?9s4pTv*{Xo^noo*RL-UF@Btbe1ZuR1p?}nQoje=SOaxyaQ;vKpVGN8xAEaOWQ7#
z&OpjM^e>XL`h;4+kMwx@2$a26na>ThZkQI5e*xsqcE$A&ggrv7h3N3SzOpb+*ME)u
zC6{Zb{LCl$VI)*i%p%<nhdlrlh5(4SkiqbfIyc$=!b)9_%ar!(RaA$(-7OL#IH+o<
z>M#E8Knc9*;EBfk`ZBXl$TB3qkZ+53v`8G2)+Iq%+eo=qmh!E+C-jQ3fK|mPu1YyA
z2e+fLUu7CWIVqDY--~n6gM#&L@gx<*_1uS^IjLtbilkwlvq3~28O}gdz<^n&f*8qU
zZrdB2t!bpNgzvh;**L1;t97qesJtOS(q-CecgIc}nzk?GJdG=nQRKS^(04KBL#htN
zYaeU6Q+Z&ztp>k#ll?dG3hjmRT)$iH?|Avq$S2Qf^Gz-4s5w<~fhFQ6`s#%Qp*3gt
zi0jt0_>5t|=$hL%WjjpsUJ;cc>up!j26h}%l^{c$JU28%LBRYsf~st<w^;Q0?20{L
z7A>@0JX){%NM`kuW7gMg@QNmUa0WAA13QF&QoW8ql@Ufwv4yiOYtuK~ljSS<Lu-Y*
z9T^%$2#G(_`TETr0N*i1?qA>i633}3iCGX<y=y0mQUj<fKcad)Q)Q4DCd?hV=~93B
z`2j71i>`37N7wCi6|l*#E)MytXI%>44`@mlcv5>NmS%g-Dxi=sea2(J<q}<`$ITTH
z88oc1*-$~e)zm`D7w7+4kDS-Qp8A*2RU4}`YpAoZ&Ho7dJb8cZ|B}X^GgMlFOlBR%
zRbHc|5@k)Tt*WuMBtO*rU9ABVb|IilWIzi+O)=aKa>)Vg&S6=nz54<zXZ7JqI6-ZZ
z;<F>($NfuV2|XG-$;4PO-@Q3WDvrz=;kBV(r1?W{>I9RmD`@bxQE4~_M9>ZE9lA5&
zRH0TYR5P)KlI*)+CFk&o9t_;il+CmR8lVQ>a0TP~v&Q+nG}BY;r<n~H(S+;D!TFpv
zrS|q>8Ua#B$Kr1zbBs2&l&g^@G7Y;>OC0=Ki9nhO{fS^$wf9};`TE6os6d6v+1@u2
z(dU0>Y#g80ZR+p3&|>xcih!!y;LqKW9tqR14m77YDgwOz9ugoS7<b$<w8ZFuy!Q0W
zD(Fp+bjWm?8{@Ztnk^ZO@wQC9tXqC9n2taoJ`VO4Ep7N6;H=#N>{M8;cuL~voT-t8
zSg~vu;lXR1X}Y;nKws4XY43GmZ5XzgxXQLkLat|yH3d{9OwfTvWR<qP-K4DKSC}D*
z1fs?+I=%Y`3tPI%tx-fmVt35u-3EhqlU<e>ei@(J7&t>I`)ap5qnTDbwhRpW$b9Qh
z9qW^JlD{B;mf6NE)vT~mvo8&2Z{qvhi7zE@gbP8XoY!g?9y&@@%gOXVMRU7~ho-1{
zmYT9~za>Egf+<!you)iLu%J{DBR!jtGn;O{Pa3<L!SEo_`X~4v)>(t1Y36sn)hROC
z5Xy{dl&zBY<&bsn^3az^7Q)!dnFSnWR5KgMp3<i4=s=JEeFRCLUltcRYX{yXuoNBs
zl@7Kk)h6;=trq%ZuXfTn%1o>?>_GseyUmlhmPK4;KUNK!RS&OLSg{%yRM%9vR*uu}
zoa%~SqH<jhL27r8>TK;xaT3}}jfzE)h%JU?SL@bo=^@Q$yA7&p4onwO3)#P(wkW*#
z{|3*ekV8*SEbeAxd?pP+HP&;%oUc2$+TsE*CPZ(L;ptCBh?4XXpE+cw7F@gZfT0eN
zIad?FL!d9B4=zi0W@rkD0mdixNc<UP2D8;eniwsF9N8CyLB=~nl%Er9l*9j>SyiX{
z4-rBip!@Tz_Fv%R8Cvtg`}dJ0`OI(g0_+Z+wP+g47loIa@(XW|*GlTF#w%DY8PF_4
z-o>F8uO~SMxu#+qo`>Wbw)#+{pW#MKe2U5JhbbrR`6CJ3TOp8XG<&N&#%-Ee+L<Wj
zAz`A%*hzjuCE{ooUo%&Ercb*;Rk&PgUR;zu@v^+rS%v%?VxX9)R#~6u6eq)yq4)<!
z*WFdckkl+~B@+#fbD#$wC<{+T|4_O6PweM@BDxNBzuZ`T8F?j&2Aj5&jfj=ujl>n3
zt51d1_4fymx7pm2zZ8$X6MjKRaX)YV?~^cf;bY1xBL>sTBR#lmtcU8Af23N|eV^ck
zo-J=KDxDw&{xvFceovMrs=~2zuw``Q1sOw;Lm3DckC&YNNe96RvD-o&bI-PoOGq3I
zYKxKd=JSYj=pwoDr=aC1TT~U@Bm7p%_LlNNzv5UD9_lNbJxmMmtE~Y5P7(S=*U5Rw
z*^gm=Rz~Gt^@pn_jUiaU(gzW<CKDuM!Edl{OA{1&`J00;AJD@&;2q<*IXI^i4bcsl
zPbrw$rZK@ftNzPW9la{ZZH+~$@Ve&gGJ^8}8%y)vrsCZ+f<js)Y-*T$ZQUCUiVz>`
zX%I&j5HQ<}yk6L9z;>aJz%+B;!uf1k2lL(L*KH0bY|AQJ-W72VcR%IM!5M^|{kCxc
z=j`3d@_~O`BW#CgQb*uflDN)r)#Yaj?Y@^SrphSnkn&n^U=wQGWNY7;U^9^Q>yltS
z0kAt6%hpPf4m7weI$$)UzY6;u=`{BAfa509&uZ+zKjKH3(O@3qY*K5uhm?46R?b&*
zw#b8PRv!c2pcA#<3~@52&j&wGlbD^pD1?he(&i(9HnxU_P&dKZszA<T8kAb|%z?`-
z+qOPL{vGV_Qg;*YdlC#m0=tU)8Eb5MuOvKPMD4)^p2Y~Nu2jwjY=WLNb*23A;*4_S
z1>+)=$&PRHDA=hn!sGAdt+n=wda%tt+BIS_o{roHs(o*0o^E^0NzyJEHYmx})phoR
z_a-ize6`29Wtc-Q61IPs?7*pRE?Bv725Zoa9^<4?5d3WqzWVY;FrLuXiB&#aHnZjm
zi%XCH5obGYG}Sg;mF8+`7x?kMrUWw6BPZbF>}ll)@8W-b3*5~Q`3V$({<Hx@&lVq}
z6>3z>7kBWD_pAt2e1<?~p{W2g(~Q(;tGM=eE}usxSvYkDUs#2XH&>0N3qePtNP$d{
zygNqSU04tV@7_+`GHTy`{Qm5(XrSgCL%?&xMvkQgM9A!?{%Zq){O-o=tvXMUQxa8r
z6%696)tC3{_#aXF`n}sEl@QpJIN{LpV2~#@`PS}$Nc8wr%^jaFC^ukbHcu=Qq6>YL
zd0(~%W0%>*0Ti9mrWq`BAh^5v!v>k%sseJ_VaNyn1+)$DB;eQu5rBlI`vi|Dryq<>
z(wY)6Ow2ADGIi|a{SVN$Xpuglt+fzkG-AR}L=?l~5zkE}$m57#2L=F06i+`rC)Gc>
zbSl22*BGk%tXy`Gq@23QC$^!zP|JH(J$^pxAZ_PY#44i9h@$V}6jk%$-#b8NkW#cV
z3R~0)Y*{=Bkqqp}Z5$Jq-^q8fIa7mak5HKqnhnOAy;otcls@veUuYPEqXPH`VCGo2
z^?r{q@86vZGdlw|h3Eke;Lx3>7@$J&_A2yCALsOlzkePGdTgW(q4PgiPdnr-KMR_A
z78=lh;mN6!FvP6uEeNA!;B@YGKm1~4WidQXJ^CbsV$W#U4>TUKp~>=W`z`RWA<uB{
zJeQ5cPXoNL>xPkDrw>cA>(Th)pG>YU!85AhWUBlVU66G9n#XXtMRNe8!Z!6Ro66cV
zqnl&K9-xvk77~vD6H3kB1_8RuG>t_DHn_C_9kdzmgt;8dPwnAg#0_U_`J+rZ*ll}_
z{@#c{o<qVGXGI#jZIs*V`el8OdX;WVL_y5hLaS%TZ|G>j!SPyr1WOO>^QuKw4edM<
zJu$p3XLPR1<FVFOV7Kt5^jh&9J6E^Ova1)+#t(96cN#nQyg<$Oy-lVfb71)2GfF=n
zC7?_tfG6kJ13Sh7S>Ki}GyV`+y)&GLu1t2Q=`O%cEfrI(?$ILrg1xlW(fCH$RG1T#
zpRyGgHRGVJWT{U<#Ds{if_TU)uu#6&YL>&m8q<<>;^vX+3RzXkshj?7h8?Rr5-hW3
zbu1dE%2_B{j%?%=Ia=6@e<C-m2KA8h6x#b6>d2>`&Z=iYW75FL-YUv|C!K=bHg#9I
z!Ja84yZE&FkrUpw;~LZV1x(4&VNEmLv4#I!n64zhSUVSk7;3(Okp+Xy=N>D(Trw&>
zQlOh@P8$fY+MK0Y<y@OzWE)_ffBsY1%&p;^v@KSufN^=UKCk`zE6T@ziua#UzGB~L
z)QzAn64K56hX~NvT}34@qtBzDPHQk$B?B{%$Ma`9HVxY!i8ooeY5_MvA7otj+QFEk
zZ*k-11HSrRvaN;DkJgztv9)i*E{%ySzQ);VG{AVd8mJ1qMF;Lvs*zDpXlZ>9`L&)n
zb`@kD(yhM(x8PC;cjlHsH5&LohIMI@2`6KnIw0%Gahc~?(>G9{kU33Uv~V$fBZ6La
zu4B;0k_}FhCpojW&xtMQWPx|!R&DnEzU<8G%PkIU?7K3tevuoTbeE~xZF5Q%1i52&
z$a+`(4F3H`YZyd3kJ_2!zVB_6?!{_p18|v&vf3~<RWd&=*v(Ebl&QxsMoqdq8WiG~
zOT;Z2_dOD-8kFDU9r$fT!aEYRr7=u7+rszjp8Umb@U}b2mPOrgfx1qh_MqngB%IR!
znj!2l#<3y1;TdTrVGFRa1qaAr&(Q~KFZ0h@hxx}(#bQO!UT%|0gcI{Qg>Ost87;SU
zu2}}^{spr`QB|kRQ&BkIoG#^*YA5|thnb&Z2@FOO8gx+hR|rsv;nC-h^&6gG_M%*I
zZrXtk^IobfeK7{-^{hPvr*b2*AbbA7clK;AE@}pT9I_`?-%dF@=E8IfKI57dO~c7y
zBAgGw9~+jd8}^lFr(CDbAA|}zVkb&1EYumzkuuFUrB%iZo2G-xb!OiDZ!wdO{k)40
zLg`=G4>n6GHvh7D58s2M0l&b_NxMOEDiT|{P8sj-WuvLdotrwJkJ$BHl3cdLI!(WC
z`RZ@qszEyXm@S)yl`CatDf*MpVb%7l;HgC>xPmy{c3H!?@d=!n1o9*Qr67cGEkSf?
zUSa9FNNp5U;z6hcc0IXxgYzGHFC;DGD0T(icu+<(Z;rHIftuIZIDPJ9{gK;7{iAM%
zq*-`6|3#GI7$OGJr0*^IzGHg69?4S8f3|lUJ%ZZeD5lu$*^UW^;YOnixF)FfTz;Rv
z4n%~=o?^=vP7%PO@a1pU7NTS1NNT1Yqr7qoaO&`sLVE-mRYrp!p7mAzuwn+}ZmlW9
z<m>01tBH&pc8*Ertb@y7LP@LDLCY9xI|RHPU{EEYZ1*RE&f&o|S=&GVsy{7m9ILUZ
z-%u6&<Fuk7=P+$C9=0bIv9hW*y9TLY5SMO)3tReYS+HcEtuJAUG*A<FAZToT7^LDh
z!V#f^;3(N2Eoao3udno6h+msk$sV;CvS){h?B|aydm|R0ZE*hH<^Bfbqq%2TaYXlU
zCp;eb<YU<OA<V_*<s3B(aj90bY$BKf4rfna@fGjx+pu?bzF6vRgpx4ymW!Hse!J$%
zEtXBKni|&CI+^#Cc)T>*6dS5He1!YMbHTZjW>@R_M%h-_ueIsAh|TGutL4pr`=>jz
z$qB_3Ybe-s97$M^leL(H0JW2!E*liD13CHOKEWSR4*(2Jf}QG(A@XeaUuV4VVfx+>
zc!|!Z7FbbZ_y9H@)$=m#z)*~LX7A3Oy6^W4G_Jr;LDEWbFS(}3K)8#m!W8X{5bfXu
z=#|gwnj#>lcSR)hg)YE3Vb;A@5j-PNu3haCgff$NQ2u$br=$vq^S~>siwkYxF26Vd
zQEF@}IgM)|-h;(x=HJ~TVIlqhrRYZyP2MaC@ewWAw4{Bnvi@5mSViz+00OEAxZ4l-
zw@`fl-druwcJ+OJ7Y$jfJ}P-2{AKIGlewbho89j#HXe-7v6t(MHE-*%Ew2_%j#xs2
z6G)ciA!SUjmGzO#D*gK6e-N56%-XfHRq2jmk@*97VSE}Psm`^XB+QAmku#$7-I6hZ
zVoW1a*iKz}0;vh4syp2)IQR(xeTxTKMF7;Rw%8eJp*;f;#tJ?BJO<6<z$G`_3dnBt
zOB>v+hoGeqy}{=DgWFve$SU=@Kh8;zpIgv<&5zca7tG}zp}2&_Ciighr#>6*waE=Y
z^R#mc0RD7Bg@&zdPSVM^p<@pfajY5$u%K$anXxFTO(fv~8=DI)W9>|A2g9#&kX66b
zmOzg9Ex>Db=o@CV_k|z7t{HQ~omi69V&o+}kuBiLQ$?)pHT^=WvC2HckZw{sk><DK
zr<7*o+(zjsp&SPxFb@*-s4~2RT>d;UovC6TthR4H55q`lJvB>UI@K6FpS%6Zbeb`e
z*!xF9Kk1WB;d7D(Z09dX(j!eqXM7zX96zl-yue61D+q%t^*B|nsgjpbc%NKzFQ8x$
zHVVF&(%1kx>*2{`JKaNq@XdrzI1tcVxh1jT!cst?7LLajw9T%04mMpkMKa$n{Y;j8
zKccSAbxOoW^%@$WHfx~Pi6Y=4_LmA}VhqNnEo!1A2oRUsbJM5}DW=-J50<D>*9}|A
zo71SxSiA;H-rt|*hi9M@Q*(AwYxn*cbJvbGk%_!B#!j?HT|o#LuA>DkHG^(riqpF=
zsOx!&z4}|LaZocZk-z~kwy;RqcLz$d><NTzbWw?DEk2enh_s2h%4gG6@fuS=84(Wx
zLnx(C?q)lH;@{>W>}lW8p)Z)#d6nR*^SlUm`?2P-!rE7U7V|{(Ke&9P{tSBXI=EA%
zg7?uL*_vH}9YpEi_R}}Y(*{iuFuf))bP~<sHX`e_b*{HvB?jd7zt{pP0hW~zxK06h
zM010ymK!ZEKO0ti^FGOR2FuOF{CY?(b%TfFYb>0a{3BEIz+duWEGSov4_o|ven=Lv
z#2r4mQS-#A3nq&yQiV_jWEiAC(K2S8yOX)mYW44AVQYQ-_2s`I%^X_Q75_clvXSzU
zP$DFi`bo{Ph9hNOuQ2_0_oI7m4*=B+%`sGpu8V3(%g!PueJ34Sx_sMyXvpu#UiDld
zzrBOPk7Kd;FIv?uVA-_Nmd?&9<pWR?pBH(mB5fV%+MA5g@Tu|Vs%+&_={Zx%I0rYj
zO`ViqSy|Y^uh)w<wWBaXlMy8K!mFwSg*wO#ctV;R^v@r9x48Xw6&XO4>JeI`mO^-i
zuh4sN>fwP{roo&faPn{u=d&Xh_OQscL-mk&5PIjYi2gMt|DpaW;F(amK0m3L!OkDP
z5BYxkR(-c#!Z+{+uLJNSUK9zfxZ8tX#FsgK^G&Sm7DMOt_s+$BTgvCvBNut-$ty7D
z_^}WCgH*usaBC1cyR_*aB1i)1-o5`dewHX(;|B_PH%137qleZSJ3(9iV=gW)z&LNr
zS+3`ll&;Os*g~rE$G1~6MYeqL*Kv#5ywm*Z<|e9S+&Y;foHDWGX&D428t0zMtu*mh
zM0QxNRBz0{8d|Em*%+C}!5f_In^Ok5LV%yEn2XkdO4j!+av{S!;Iocqui_Q6!oPi=
zAqwt6d>jAEoHSs|2YJZh879sO@L70!S~KIg2Mx3ivNlwi;w@slBh60qcP74)NhY;b
zWX-|QA}}rB>NxIE5s8cEwkMN93{^_EhDhk~Bqi)4u2HcYg-UE@(-1G8Yvo!ak5k8D
z1j<XBtA2O%*47GmMa8a&5;ZNG<!Q%3li5__Hx-VOUQ07t*QE^Z=`hgzTby8jhU8%W
z^@lSS$E)XpA%K<u!nsQ#ekhwYH>sNDQ|%hM1M2gdEocXg{?-xosyopg<!k(mTtT>r
zA*Uqfb1n84tRktd9DlZj3HP=wjudd)HucoX9vIf8B?TtE+-r1J3c6e?Wmk2-0sZIr
zM=#@vC+sq9?#p>pw)y3qmd0m#7#*7zQlzHy>?n$`f=7aJ0*oVb0=mi+6a^enZ-9t`
zd07a`U4N^KuyGc0OhOEKbG9wKH$59QfD3<Oj-Ckc8={UuZQrke9OCaQht9{k(Y~mm
zKrLc|CDShBRfh9jNnK?&0u+}^;5SsX!|^TGLrO13t@;#$6LMYRzTgyRHSrPBRXi{i
zSC5k$Q;Foqa6$ErWS|2gg%kX=J*cR;{Eq1B*-5LLrr?{IGhevLZ@DUaZkg~3RgU`-
zBEqi|ciHvxj#o`&{cb`+lIvyWS*_8TqS_nPhv5F>jiw?f_;nf*Ng@B$fF`c}x_z-$
zI}`K0#6y4K@1<>og5nVx<rbGl-*QP^U)otXW0Y%GzjCN78)04-Xdh1&YHHxHUtUQ7
zsn?ZoHz38rliWkdFanH%&t>jKq!PA8LQrUOwlL{A&ql&$X(-g9RQ?@(T~UmQ^>`#1
z<+IqibvI%l(q#phj$Wacw*CdlWTi)7Ju*5uoHl|YQ-wuh;X+9Imr83-KZBNh?g=tu
zrYr>`TsSn)5a>xx{gtVWd54bW1-UqUTIflZ6M(uTK5sKOq5h}Vet;CWvkER8MCJUG
zOnk+?e;E+KHWXbtwO1E0VmRYn6Lsrp+w|K=%I5iv9B-2_r_Ta!4M2)lVLILMCfxpG
zBWUS)E6X!;0Y?;HlbV$zwEwqcU|%Q?h4)!Cb>1`v098tfrj9{3oU|r`syztEOfw?v
zcAoRjw1t|{Io>4i;O5N9#Yyv<H@_5`*(ag8Z`bkE8NYSCBeoJQ4m|joyTMMqQxBBU
zrNCqCQa{)i%_FVpyjDTDEIWpqugv4Ad`3Ei;&`z`=^P7=I9Rm9P|J{CBYDwLk>8@+
zs&vUbC?4wiriosor&proa_s>?Fy{Dml+E@;E7ibt9yFR_;gcVO>*GL`e7!b$?@!&D
zi+|VQR5}HjeRthWm=QWN4l6cg_TAO*@@gm4CZ$=D*Bb3^M@*Qboa9!eE)9*l{X7SJ
zFp6r&V<)zv1sB2jFqI2CV#9ta7$`Eg^goTQ38U*0kM!Ww1SnA}bXeNr?|m|B%^EY1
zIZrxqqlgd!VF#YWv1?^jf1Ev^di}O*xP;{+wX@b71eUPs;rP@=5XoC1hoz}K3m!~K
zWTr*zFIfl1T`8r+qaM~O_#O&V<32v*gT4_q$HUby5T^aZmu`ZriR6SDJg*l}XC5$B
zZnMOjpcJH*(Hrv=ubboxZm&RlhKKtwA*@VFuruqyITtC-JNK_%&3AlKglAAM(UXq=
z_cZ;p!ALz#pTxlxqQf1kJI@n^M_#a}D)`rj<+<`R5gi|S@TKXejXOmu#_IYgO4^`}
z+*2(fHvYV>hV6Pd+>eoeD7pm-H}?Bd;Dy=Nt_09Tu^jwc`*;-IpnuWDYu7huGqyBl
zHxrQq{TO-$BB-oiUs31xPYyA4gU3ZtkQma+Ey|^tJ~M}K?)1LOJo_2~(KBSm(Yrk~
z+QE&?zQiyhNSIF9eHy~^fe5Wx86eVfmq53_Y!~E~v=MbRj4N}<4oE|EX~5Fl_*Ml3
zD!yaM+04MgXbHydTEoWRrDapb`0l5tDq^@em;1eKO#<xqy7+1cPMVh1hS;#RAzY3@
zWc478^V}v_O3%rvnNkWk8WMKG4T5p&e~dm)(3tp@8#0tRwSSXOYY|$Qq7puuWon*T
zZZj)kbBtjNWH{|`1tE9%B<=IU6VAPXwmE*)FoVBvD;<<Jnh$~(1Ll50a>BU!ejMw#
zmKrkFXwim_N}(4>(a%{ff|q=O_tXn&TGKWgS7W>}G8+R3w+_73FMm$JmIgl81e96~
zx@DE@q#w|Cka@p}J2=02<FtOEK{Xs#=B2t?ZTSaOP<$#r^00`TupFVcyOQM&Z!v0D
z8vL;;J_{nfP{I?Tf1N|#XN+fa&5z)h#Y+*ha`K=z-)l$|!Ktk>a3_hi>3$r`v+dQC
zpR#N6se;7xH-6&}`lV3z!>t)L-?>_jb|Ey0z`411`O3>6_re5i^A+*Fxh83UF0A7y
zfVxR1C2GjGl83v=@=-q(!he;;Yz1v{LyH?eI+&OC<!A5g%=bwCs0(ixVJP}xJ()~j
zRlZn9)?hUovOLn*3O{>h3wbfDe5P&~e*x>%v2^O8O;vtwKtl_b3)>n8@l#j!>T&fM
zw?;i~{mME_E)4$4eML!CJlg<q9VF7&XMf+z>Ere_1s1T}#LDWeHvtATbbZG!%S~`P
zB>qbQLQZ`c3mQrb$;o*C2h<H?LiAdudzGW|d)fQct!h8HM!!HL{QKW+By7r>I^;`j
z1;viy(-n2dsh@eKgTC9F6~CAeaiu$Y+8axd>4<Hw$X_15=h0T^Tv4Iv1ZqF1|K?jm
ziYc^vIWaz+Em+Im?YbLS)%AB|)e}3y$D~I+Y94YIuM2;UI?2GSa#4f5GgeUXjZctt
zXnwZz<Gf|jwVyJ5euFXuA3uc>O+OGrST&##{d!|?=h?s~w>poBn0zqAme7(6cpeYC
zXd}r2_~v?H4*Y*vD)0*+L5g9rTf%^Rs&6-YRfYG$1c+Cc0ylnmM+<KI2vtg}Kw2uh
zIZ2xhBBI=KUdHseDP*)=bQtRT?C{WW+bC@{M3T;w7FT<Z%E`!ppxQMP4fAvOBtB+Y
ztk<lg^!t4w?;Fk+|7ca5_PL$<w+@eH>;pqkRV{k!8$Re0s4;DYKE0$l-CRY%QfD>Q
z^>NDoUiwGo7H>R^-~lRlEN#hg$+AqqpFUGVeR@g2k%xn--KiM-;Hv=}#_An=jZZgA
zcr(Z-Gy#K;4o)NqNp6dVBpjtLl_5v;Xtqbe2PqV6cwMLf{H_%9ojA%QITN%w5V>dD
zxB>ll(lrAA_RB@-2zp?o4|PrvIg<si!j`UAu(m(59&^w_n77&><g%fTf=bukeR4aX
z>a1L0W#$%>-?3BkIDLflGT_?Ia9&M!vvh?1gBWNl0G1jVI{>}2u4sfe3U)EbK6~uu
z44hYBSX-QvjA-h>z*c>2BOF{6>6TJv3x34NGkkf_;75%^az&}w0MB9uX=dD#R4ug^
ze9FGBv1%WO*l9cUH1g{K>daDU-Qp&Cv!Frj+?46#f*-oQHkHC~$4GMMv2{CF9&qPO
z_Zl>98&7!;1IUkVk$DB32B{#xE=!p`&hV()%sd?0`4Yai^?T48IB@0nK@Nx~2<gZh
zDmHwKa6g(LxQB}Qp8Mxlb05C)y`4l!sT;4^f!!7)A$Gr;*zarFQ@^OxM4ddIC?6{r
zb4`&6)-s<TfWx}GDp+UDpTS=!;hU~k^7peD?WamA9Ufx9^XdQ1=5E>#hFzNEPy~P^
z+Qk)ls+b8{cn}jl5Y)%+`sZjz)!T-~;(yD-$+~DsR@=F;3+zEhNaMqm1@EG=StK1I
zDBfPTpM2ZuW(i<LfILo#SvOTxI<hCIu&=&}^x3di`cfxfc1D!kpYH;1&H<$`E_!lA
z1AGrsGld~q_N_;KAbMlLNu)jxX>b*Y-#<Ud6)M;D1W%`X<y?|Y3{NgKac%_vh4jlJ
zJqnKY0<J+Tf016q-RbOpaKMiL0uk(tcyQPHDKu?Uf#mCdS>F2JU2o$KRcD-Q&8*IN
zI;FPiD)#P>v4+AhIj$qk=R8~ah3rD*jwLS$Nm;(XSz8M{-~jPZU`RqLE?l;@<D%ID
z1+zexMhK;_sp5@RG{uHQR?I1IuIRN;-0l-#rSB%q84?S;5p!72m3B5WO)aD{v<{AX
zolMN(lAwj}v%JC?4Hyf@#_JOq!E~`R?*v40BL444Md-ez)#51T$FMclIsvOV&dnu3
zl>T~OU|z1V>e3o}(?*I-*jN|p>#?cf(*u)J5BvPV`M!S!sRE%pY<*BS6UDK|h9oZQ
zMA)pvx|58C=kZ)hbf@=bU)M)NBf1tEK^Jzt3UCOxn*Sd?Mc3)+=1T#=>3gQxT}D~T
zR<~O3jl`QH1jWkb;g6>&Y0=RyE70GX!ABtf5UPo~?3hu|<0f{g^GJh^h%qL0>`mXr
z#Nux&K2s^MDxS_7M*P;`|8%;uf`1(@n3DeQ@n;W!nMdnUNu2%a*sdXWS2qu82;C>~
z8cYNtcR9G}p)+pB2wZyxW)a44+n)u4W&JdjB_QoUmszOSq_4^PQ@s?b&RoOKw+~B_
z4#M*xt;F12RkL$yTsq<m+{d1@SgIctRgL2tw&?cPew>s97L7f?YNF*75D?DUVo~($
zMe(UPB5+og&se~~)n<UIGFXooezRalSY*quqlD+3!b$!(SoI-E=~O(`BP0%qeV7|1
z8|dOjo0a&NCtVM#m~1*B5jsw^!5uo39xA;^;6?AZ#8DyS(oo0y@gstEQKbnjNSv%&
zB6AhwJN!_y^(q>^Nj5E30Vxu2R1EP+3}bP5Ea3=Vca;i(qtrnj?^{+eK7%h7C>YL_
zhVY@*CsYSq5e?8`q`f#@-<v=i^28V#erY%RUy5<-fbuD~c0B2Ye7y5yvPks4WZi!=
zT{Bh!>5S>6E1q8$sa6v838p{!;ttg_AdC^NPs3!g6T@w$d}-yxU8XQG6x$+;+$+!4
z2l0K*?x6mUci30Z91Efu2h!MamTT#Kd?rvoE&$XpRRx6b0<r~62j*n696HNqy&h)C
zRvkXRNJKg@i!Hgv=Q7B>M{wYI!o_shZ@sqK&UP**Y(<6n$WJDREW_M&SVD5<jgGZL
z0@jmEkj1<vLA>p~wf1l*>}g{-u~GTCk1Oh6Pi!3X@rqR0agyAmPS0>VmFarxJscMm
z8wE`5{A45ha<m9_)C-ELhZ9#OwbDc4_&0aZp-8nw7Es&{YBW^wV%9E=D8F2LKD)Ai
zaOx~liqVUYDo)nVt~7=IB1Ac@09T}m_qG4)ol3LehCHSxVttCaGfRpFPJOt?%<YGs
z6z~t*g4aXF%VCrW`+a0oc{mf!YLtMW_<}Q(89B3CCQqP}zzY3Edhy`=$2!;6h4U5i
z%0_#}qM1DVvGG2qX?EO>;rV8QwttlK({8#nw}}259PD|oH<z&qY6H3P?=6MOmtwlF
zV&P0uR7)Eh4cmX{mvgAdqS*YusLu>d>p3p9Mk9_Ut(r}&mCu#!-y;K&8vdsUs^kIP
zGGThvqsv>CZe7vGT}t~1k(y_LWuj4%?D2&b@>m^5%QmD-!ki&RGY>_o&i8b2Y=dy8
zoDyFOvHn2Q?^a|!qUl}Ai^S7nP);odT?{~#EM?~`>5oe+8Fj2z>SRZ{Sdq<;G<7&S
zuc`*M^uQp=qZ<U>^dVCLso@zGZ&|kBZD_URooFXNoQHmT|7+X61hzzm->>TeCansR
z&m_2yCu9X?pECiBAPFkal6kGs(ro{4t^B9OW9Z_b0(}&TLLR3jUWD9B$2U|3GQbmh
znB;ydOqW9q*mWY=j0e71-AsF2CfoMe<KJc8bW9`5K`%%oZ&x8WODKe8(hnO{<!pT%
z!5(G-y0WhashKX$tZr<MMLLsA5vKq-xJrSsA+Zr_1PUeg1QsrX0ph!NgQpiZO&Ms*
z*$yEEkf9P%&Jk=RV4Lvmdt7Ys`6*Q;*NQzG6TDRLxi4myp$QjjzAfVp9HVMB)NJ<&
zeR8?Xx*Uy~NI$@WOmJupUwCJrYYq?d6MQ*)fFcZP9g^$6t334>tcD!jYM_^FWc#Ha
zo^lgVOfU{Ao$bm4bT<XWgr^@8E4eT+Fc*Q?fg(2Eb)H)$^|vo-%BZ<NUr`j|LO{Ah
zO*6-u&Dz`DP)6P~Z%M77+iqj2&xwYfdXe73tUs(^wJ47Tf0ccC(2dWlCf}c@Hc2GI
z0WbOoFpH_aQ&S|bW(7G?BsX(|$3HOa(D_UV4(x>^GE`Q-kpdS2`QTjXf=mgt)%-Lh
z_0A_rz8(k90|B7Rckdqa3zT&Ur9uXaT~i?{5WPMkfY|uSa_|XD4Zo37!7pjw{Cv%+
zR6|*1TzOV29II2fy^DX%SH5@4;kj16wU{aglPJbE#f&iDT5ejU)lno)oXt?7D^H@f
zg8oh#Y)ab$$-bVBhv;degh4VDc`Zdjb^j6+K7{f>9%Y23Vl+PlYspzF0bJpzZ9N4K
zuD4>0d(m|;1PiTE$cD%XN#&)-Blk(nJD{8feZV^zoQXIB%ZR&dt|GZghaADP(KslW
zyHj<<WUbm$z)EF{4kEKt;V=GBH>q(j%wY4=oQ};?gAsXCIx^Q+Cm|*OKT~Fg4lcrM
zuKM)EzM5IV7Yz!CBQNG)W5HcV84CKd63bC0_IINPhYq7l(=4)D{cn@aNu>Yq5)j`r
zb6%C`N1n}fjS{9fkUo{X%lLy-1qr5tLD<1+?)Ixm4)`s;vy|fj6*kzUoe1IoeWVjJ
zCQ<iWmiJ3eo917h;h*Ckes`LNv#di$akyK(FZS(tJ^9l=kS>3By#DlEuNlB^S|}Qe
z>G(u9N%s^bdpnER0jt<ir<cjG$tcw6&2~w7J$ra6x!2sDz~kk22bU-MBHlC!ah=V>
zNCa@m-1|W{jOIw@0s^X<1sQ7N5d^Z;Wa4uIdcI(2ycGV_uW*~>w&#SM<H-}b$dpf#
zN4@=6|2T=@kXj|F@0P54ztM<5>m6>-Bi5sQbl}{Ed}hEQFxsypk-|Z(J3fGfd>+_n
zicwG`qh=6El2?!(CEoi;s5!Abc8Psk_e1Gce@RvL)?z7|THy}EGMO#*s+^S(K-e<{
z(F|X6kgS5!PSq#Vcy_ytGL*2TUJ&)1z?#SJTrPl7ak1>l5$^z{<W^w@B8=7`&8!*q
z3ee>){0YW97+FQV62j>7%F|LLJ`&DX{fQfNML4efd6UpWu55+`xd$d|8F);9KLpx9
zJT(6an0qCsOWyq-93^9ElH(~v-8dM!gnpBYy!blctCROm9m+;fMX;01MT-$AE;jRf
zEO=NxdZQ2CwnH;74s~+n^s=Q5pp2Yfb<e3My>1i0L4Tz~cz2ujnR&UZ*lGd}qPiEk
zZSsxFaltcK^yj-F5x_|gMwNB$f-Ly%N);YYu8T+pv~f67$3*6jRR@u!poO$;Z$>jn
zP=@n|Bog0^Cj4Inhg=fg<;j?7jvaMcVBfdWDeKp-y~NG=lcZwz6<aTzXDEkZj%iDk
zB*&yaqGZI?rU*OzClWWSJs=$Q1m3i5i?3Qr(CR{(Q4SV{oDgP!KF3R0r4ZkP7%S&)
z-HkoWNLC+Ppv9b>+RK`rU3O<k&B3g>&v#;DP2Ls<p@r>re6b|61+H4bsiBc9rAdpO
zTdC0->mM4(u@!|Q3M+T*GN~R>+>b8JY}*)KKzH1P<B;KX2Pw+|hvT0#F(kpyQC6SE
zzN`{sw5w4AHOQ3(yReEOujRl?Nsqvom=Q$|bvBK|oEG|Up@?sZhu_U7WlW>;I;O7i
zTZ(mJHE_Bw@VHSn?(qmqThcxEn8X;4;h|?$yIh=IIG>2x;N@V<IkW_Z8NkNR>|w&G
zRthg2LXme(C$)oWe-tFc!uRG8e<JbN%#W(3asIzULzoARE)bbq(rE~_kwISqespyl
z22454`0{oBpwnhw!9#up!78t53fj)%vJC34@0adPV0I8<LPnT}EdrTMYdgKd(BvMO
zFn*4Y(}S?D(#7{eP}so+cX0i5)?KCAS=nzOmK02N<V;^{4~Z*UJcc|syw2Q_#{grA
z$3OvyM14mzL~cvJs)TV4kXWx<u0$x@5I=Fs{VVr3j%P!>1G4v%^<|H3#{LjB(gZgO
z6cr{B9-CkBNDsnPL$KgL-`FDn$1&~Q<67cMKdL1cV}+{s`QqwEAeQJ{Ry(6_Mhe3x
znlLll)=|0J&Hm>9md}AO%&p73IRU5F^GafdEw?gyysmm<-tE6uUMVgQZx+Pj4uUvA
zCkhMaG4DuOx-oNOkiKH=S&w^#UxLz2w<<7sAm5b!`XkD>LDH`yX~Hb~WS_QuR~v#8
z;8mb+XHbFiq-2ooF1`LRuQ;v%mE;NcF_iHSQ@e|&0x9kPWamcCo2~ZRPOuakTZ}~L
zso@4{@1ossS(L_f10lx!C!&Kqf#^9&b%le~oOGT70%<kls&d5XFA{s@uI2y}dX&*V
zb7si+ZQypw3>GtcuOrs>T4yW8LL*Rw+P)0pSrnKzJK$J<UH3N?BZi8T%X@3F>aey%
z`@AJz|0b2d$Sc_3!>{N}S;CzHnU7!q*S4nT^Jsi(9=*4fX7TaV>Fxqr+dMT=H_WT-
zyPbZzQSdv7?gqQ=Mvked`=l1G>wzBX?p)>MMa9-SuBMz-F2m<tUllO);z$aaGR?nT
zHFG1YT#R;8dxLUL*TRJwZPz}40|<r`;%8ny*D$cA8SCo))^_19wssP338SqS^oA_T
z!f&sy3C)FZLg!?E#P%Nf8^ghm;9QL8gCtj(ZC-%+rf7;DEsjW5#y{%BB*P`Epm}5a
zo7XRZCtJ3rHvNmo74_ZFus_S$C}-&fFIki>xUcZMaaoX--Nu68`t7piFo=-IdEAHZ
z?{C0khHSdIKE4A950DbM@fBlB_#TnUOOm>-!4X$3i3M*Veb6v^aK*nHl|}eEr3_6U
ze_LxEdKDi9X{1m9q9b{u9~qt@Eh7DcG?)g>BT^5uNnAKu!#Zh(sQDKu=j$T^D*w=I
z=igoTOeN@^<CCZRGVkAoIO2d#Y}Dh}?G^p;lK!(9$&rwrCsMJl<6f1+odCNEh2m_G
znUX077B5EqwY=UJvC4?oP0^$X_9Y(ql^mcXXB{AaR3hGl-5+UUjIJl8W&EV%CEID~
zZkue#HYo0YjhKCs14&oN&;Uz7w7&tqMjENS<<jL%MUw!Szb0=+;<n011lF$qS0}|1
zBj6k$5wbrBsd+92R3{?d<A^+5J%-h2Z3?<kSPYlTcsm)^ea8UxiGSv=F*@B@I@JAK
z>}}ad!cGwKZArF!+C06Yi>m)p9U5?)YO-NAERP#ZN-r9#+gD<qy;pczSz%h}=338_
z^Au4`c<Uhabh*5MCtmNmh&%i9M}$>CcZ_;*L4B_5Mw=ggJ(C)m0^W|n>`-Bs)_t+x
z0E>L)%DBCiRxmDQ*uTsA-m;*Shga|_PJSPM&yJX896SraSWdRqCSCpN3$!|0c4yCS
zf-hYT5_@CGHk_4kQBKtn7w7bk4TqL4F?7q;4Ed?K9f}SKR0(yPa_SV~nfG4;sUdw!
z7q?L0$SL=5CbUH}6^|_#fpkWhxZq&girQ?VV%!_or@(c$d>ik^rO%JyS-#<N5+?5N
z()#k|_XgnbL!MHpFjZgmb19#LAL7Y~lw07R&pXumu2u^e`iXHg#p+K<Khi^g&MG3^
z#4~p8pmnx3V;ZkW{n&F*c}j8x5%*tIZUgK8*<1w)A;-GNJ{WEa;G_mclDLA|C9zZ-
zFROaoyJg)GstU`u9{CtV2Q*+iB6pl>IK>T-f=;yL2<Z&3xJXLM5qB(`C6yuGE18A>
zv!YTyRTJq->s#a^$tmOc16|Y9!d=VxY1>yHx#J<{rR_$wr}BaThyG6IGZ_R3X17Yb
z0spRa({`YZF*LYeimvFfRpjU-;jHQt<rsBa59vJ9Pd5tjdbAvrA^uLHIpFsdE1p<2
zGd41vTvqtOFN4XPy?F>$fk12$ZHE5IBZjKjHt}+TU4#jLM*MR~T3t+9ap9Ld_U`i<
zdxNEiWfEGfYqJl|tc2KGq0q4}j+p}^OGV{U%V`Ub`FICBfNWyoiGk;HZwUE<`twO}
z{_Ss2<86|!tbjdwj&IO=P5i;EO4FPb0LOldqKKuP^?QC&FJABisf<iw6qF!70=ZbS
zxz$^{Jp!rfZOl9f$WMCvyJzae1Yuo>y^!*$o_Eb+T@q_xuhB81`?RX@R%-VuKqC23
za`@|@C*^pILXRk@<OPJ-H`dWODT}!p^^$6U!V>tLba8;q+G`7otW<NXP0nR|@GwBu
zVa&bzF3PoP@V<4bY^d&#bBU$-lT5k64dU(hgrr=?gBmPR@BsHoFy7F?Q@%RyDMHPy
z2Ve|yHWm;p0Xsk+Xa=jPyF3lU@4k93)W{l6%Q1X#D}Mm>j=?3fipwu^)I5PAW{f?*
zUl$|@TLlf}>ppC!FB=1=8a4!|c<<E#1b7}vyN|ADq{+QzaIwb@6YwWD`7wVZsyi_)
z1(VKExh(`}5W!cuZTD3{=v3a+?VLymlTm}{E5II=96_cJmY}V*W5xqeAR(THLlObb
z7xqu;9l#3Zw<bVgvD-Agg?P(4W*U-6k^u;CV}IXF&^%>?fx81je;kyfUntjY2PTBh
z9CgG*p3K^=2(p1<BvkLogqRP1g{tO5+{=k#;Lu$l041I3>73G1{^E=umcQ9o4PTrW
zvJ@YDx&{6MQq!)s@hdR6&WZ6yg%*kXOoN#@n_**wV_0+@k2)MPS)WD=+N_+5f2Q^~
zG_!$P|JrWV&YW7CZ>cHSQG1`;L1iu1J)ob_C11b3t^&Iz+h(VfWJ+P3&nI7!i%<7T
z)W+oJU8YZ)$X+6@ob)nbf>Fk}b8z+ka;#Es=1`@~7Y@Uf!ZviQ_X1TVYFpWsHZGyh
zS>Nc!_YJPZI{iV%HD>%vm12wIx|;kXN~JK?38&Ni2c)=pfry}&d&CUr15@)RenAbo
zzs(W~KW%zhU8YZCBd-xF;|0;fBA3Ll>9dF+r`1(56TgN&;cb0D=ncAu$DK$P`JA$n
zli*tc9Afs3>!0W9_wt;G5=pD>1Pj<KSkV^u!5IE7<iksvSkUGa;PF80{rvTQY10F0
zm+t}SH!0dj;>R0tO+i+#Uy@NEI*1frQ{Rdw1qGxgk3|rYv6a)$$PAToHcZZ4CQsEQ
zzNUZGEQw^3&WZ~S1i}9l+O!l#&tKwo3eZ?;E})C)<72|vJtCD*kHPj#b+^!9%E$qR
z5Sr;sdNf0_$si|1fEi|XdIl}eh%<M0AA}xJyZy6<1gLNjK(HB|J=`$r6dRikS9woq
z@B)ENY9JDh28Yhv1n+8ti76T1#MiA`m&(yj`B#m;y6A%VIpYdO=9HoQcCO$IfNV1D
zRx?qNsJB#_Csqwg0`1){55=&|p9<n^a8oLQ9RmS0VxE?X!tl!16jTM{qt0fr+<+_t
zSo7aTH3vY}AbgRs7qg#WH$%m8Xa)V~6c?p|L_*oLEH+}lvgR&zKr#VThhoK=RA&99
zsI4-Vnqz5(;>6p5y>}mv_aps&Lbuq1M5fBHQBb8#hVepnZl4WeFLZ_)d_o9a%2J6<
z8{cnAXGkhyV{Ag(9=?pHKdQ6tDTb%VOn%|D=BfEg+~*jiX#smaMm+rR9%)}XW8a%}
zTGktQ{uI+yR4S!IqxkS^p6EBj=!l0gdDtZ=asHeLw}e?mk*3Kp-ADdmtaEFYswoVo
zH)T^pP)a{vnV(RF!*U_-WwL{BEDKPGWAn*$Jq*x0<!u32QGHYO4|$b&<=Bdi-DCc-
z3dGyAWgf({L5*=D4G0~|243<AQH%b~QgfPq90pwmwn(Uu)Qps{zDGR({Yqc%PVRxj
z{4+nO%D<|Zx8>Iv2T8tyLv_*mVYvv0Kc2(tNHcWA&O^W*a|fGIp}366##J<Lq0_r0
z32Sq|nx4BVsLb;KZJr(}<SY#Rm4K<iU6teC7e1T7s(*~1_=}X`Wi(flgM&VBQ3=f)
zh+63d<Uaem<VTi)vHVu<oc#=}*T+WK+rz@A_s3gJk!5qqIKRuHyVMw0z~hc?9K>4F
z1db+UlcMPU?aT#Z4Gg}RJdKX-v68imNvY$JpTWc?DJnVkPHbW|2N|xw5O=3T=saFV
zetB!Fz2-^ZWVO;7d;D>YXE_4X{)`n{(?H>w-M7U|oKGc~!JzX1<O~%Tt^gj;t_XV$
z^c*bLoS+O@u6eq>s|IS#@Yp7<jYt}W!kBH@6QIDFvCYZrA1gtx_2AoiQLeam2vBm;
z)7lws?#A-Z)E=nVSz6NBI)xfPmAi+HaxjzXbP`zPoMTP)B!ag8fv~}nnh)w1UL_s;
zH!I3;5LJL05X=YsFCSk3eKYWrPFB_TK?uvVjM<DTQGN+Y^NkLKi2D+c3auTTf-%4P
zT*cdOu{6Jf-lTj<`p(OiIg<X(QBZ|6+kSk*GpY_Rs`sQ;4939<6GNkSV>GP*Z={J`
zKkq7}#>sM(R}5l*j2URBLks7<3nl0G!OxVGvx1d4z@Uoi+b8O){+ta#BV(+I%X@R4
zyoz&Obu-qRqK#F|5aG+&S3-^uY`z=mOqD)rv|pOIXvff<F(YqQ4bY{Y9fE7b=4L_-
z>VYeVWC?zb>CD>9m7$|5F>#V8`}JWH4a=dE)k?;t5a@p4Zb*Tefno-)*p0Hf%V!f*
zb$?L@bUwYKp*<-HyOVe*8{%6QQq>C~k;6WVh#+JMag`InEx+$NY&ZOAK);KvAU?xj
z$<(4nJzZ;vwa{Y@6W^^;A><Nc3Z0aQw}WD8-eLCg=<`GjjLpzyc?)osB%zpIIbNWe
z1HRFeFzyJAVfmaC5GFw3Ax3Kugf-juSO`0EM`!y}4dYU_7Hs4xe~H9-wbqkx&H#iW
z^L2!`Wf121MW8+RS(w^~zCrr1Awa}~-k3N7A2O|?dP_G&DV)V0Jai~JGu;t7OELwz
zFfU<~W<dfY6WnJxsIktc+4drQ>%GHDu3S<>g=V?{y(4;luknU(-S9>jN@R1(;t|{p
zP%L1b2&hD@n!w!I;oVXL6rSHP89kP0Hs3%^ewgqqxF6OYvCLiEd2v*8Sl&QCxL4>Y
z{k8)V{wd7RA>;T1H@BVF<|R15Bfu$->i1<Mj;15ZeaC0F$8{{lbgIc)*G_!PR?nkk
zn>96Mi@w4j;Pf;tKb}wp(^19^yEDw>KTrAXyQNi&37)HPZ=xG4VrpHcXh}e^J*9KW
z_q7+9U)X9iv<G2+?AAeS7v7-t(CSQ>g=f8Wh>m&!3qcAxKmLe@3G9(CY9b7o`!9R<
z*I>~Oq|-^*9;mBy3(=D%+k#sj5D<s?I5};RHEsyvmKV*^3VIj++aZxt0MD6dCHr~<
zcOSlTc^p%3nVe$mLJ1`oG`XKH>Z@f?_Xw^N=7=c)4x>RumiW5gbH0PO!Yc8FbV|h#
zUbNlMS?5WHS+rjHL*V52x#j$5+Oi8P*r`OQmKxbIRrlmyCyIqes%qTgGw8NIQ$JcB
zP-dX;e033=BeP-`xFVGYpZC`w?|3LQh_J`1V3+S2sND}UP;M~%kkwPC1P^4tGvzZ&
z>F|F$!ISSC1yYS}?7At>qsP9hQSF6Y{QCD1FH54O>fqIJmlG+*K6kqdGHh4)dsl7K
zu>%}>wOb1Lr7!rseGmO_=Xb8j&`NCOQR5UtB0LDp!`s_z*J2`n=mkGEE}Y0bz5cMd
zN`}Q)lB!gyoG`t=&jyqiDjKCXhlJuDs1ncW1wMCO{x1M*P!f7R;DWd^wuv3myxWy2
z-k2`|a2*rEd*LF1dTg0QM#uY;3Nh!>9s4UQixx_$c=O&m8!vp|iYFahT9X4n=Xs<l
zUSpOQqIyeTxR+@~&2RBD9D^B~iQ6GL!(@awT`nRH$uWq^1vDxSekV9sW|g-em;ThY
zJ`6jvN|0OAaYV-cN0Ad5d+id3Kadp2s?)!>;8X@cd9KK4w%3{OAvg+F*Y292_Ao1+
zY0HG=W@(zICO%p25$|3!5)Ed@Lorg;ci{c~P8@$1FHTWHXn{w<xZEqNeq0L_uU-#>
zZ>Nzj{AsB0m&bgFbx+=^hXqtBeG%b$?gNQCxa7D{UKpL<HEa~Zu3bDnb&;Z~gN%L&
zY#Jc`rGPD_`N_{qjN|dRdKsrAddXAMc#HM}Y8|ae;zuMn&@Ep|yBIeefqS-RuLlkz
zYr-nQiSS)vkSaA8^K9}Er1`qGt7_N|!0C32i4(Z9T_iHBY}z%D$HwZ8BO4@FOWX`2
zy2`k5E2I|WiAId-2zWuEJGU~X-iBJhPP&buW!-u*us@h^IS4tza9Pae3ylPHToD9U
zXnI?i>&up8u_AI??J8MO5TP>CNsX46r2z1ik<SbYLpM3W?5P|VWP(P2H<-FT(63R{
zvr8^%y2FUbL@aO|49R557}_9%L}ONL2%=r2XtVJ3`tyD^H_Hi%S-NJ+TWWW$PO^l^
zO`TLB1I*7JDI@_p^)0?7zLr5k@+CPKR9r{H9Y}-()cM%HFNAy9(wNieB35z8sCJmA
zr+-3y00C+%!;~#2x#&h5X&uaILDXZ?{!VlFSJc*RHH!QQ(9G-vyR(=-)r`@>hgjyB
z72)Nw`*Am#eS(rG_n8R*i$u@l;jW%rDuOy|unyiuY~)ANjI&uXe@n|iWn_KG126NL
z9>+*-qq(UZeR*$=(v&oUgU;66E1DOE>Og*kro)of3tja_dA@pjFJ$UsDk>x>0ge&~
zLBYe_Nu|um0~VCz<!Hx@QMrf9T5DnCyC}vNW%FC1#S?YGXaZ}<@HeT5pl=(%7%tl*
z$PZ~k%rn9?JlNiagefI#ViH%qXS7mfz?MvpJuv=;o*cS!L?g|#>)i4y;M>68rE50)
zcRe^W2nfxEn^5nyi^o?g^F_E)Qwv^4>_^2nX>)BJtX4N0uUgB2uPbr2hMjxMd<vb5
z_?x&a4$&jAtGm!0<SwAc$~J$$(bN;P>DY`m57s6k(T-eFJ5-=3<DzCv>-MrG-rMY7
z1LWs_&I{1er3>ExA$4qkbewmI0Y~XjT*y>Fgig2i`ZQQSA&~2rsrA$=t*ryi{R$P+
z>FO-$-;EX$n>LqwEA?8D@o-}igJDv20zb%#_Z6V1Lx?EySS)~sj#Y{3Gn#kEbFi}9
zUKr#+2m8msLIY_d>H@0#7={2WbMvo*Y4`upF86xocJIs1?R+z}mk;4f05oZ-cf8+$
zjh~ox+K%@+B}?PWKAZ<(XQRclO_wdO;RcUZTg--DFY;$_lYDwXZTMC|qH;YuDvP5B
zv1Ol;0x|{rZq`-;L5P7$JpG8>-V=>gwW=OGYvo;CU*$@gpI$38WlT5nZ)*OVfrn*S
z$C}lYIiEddXY%!@5}+e#tHVXr`K7e1c5lG3W3v|1d3K$J4k~<QZ?ehf>g+D)=~WRG
zg;RhHi0}4q6#9!$RX<!Rs<w@z3>atmKP{mq_vhbZsUG`Tlleomm0LU%6-VMCZ&t@8
zR{E3Ir$-7x3h4GqgG2T1EAPkL%O$Uqg0WUiR)|4&gJ0&4?rn;mUO$CHy^Vt3ZOTWI
zAlIsQXI7<8;m(y1?Nu}P6IvgX!AJ?WBlCo~2hT8s1#>;Iv?94ZR{Lx-A3O^UMLv3u
z$_5<h7hn8^y&gxnP=SP?r7dq+F1QO@m*xqqD#u0G)SxX0)tkvXQ9{jwrM6d9WTq-`
zc&xyMdXLL7ip7PEEmQm(a^ZxK--amRcg(es<&o+??#Rw13$7olO_kuiOV=!)lQ1*#
z0Y&!XMl$00@6QiMaByY@6-7*#r!qHA)?ZZ)?2`U|!p*i;O<9B5n@#T8^onLpUxvtw
zy)+k-)I1-hY4iXQp}=u@MnP=aUW~LuMmG44khz!DCFnUJ6w+@rc-H*l^>A{vTa%~p
z6i{Z`w5>NzR#y8LRYfncqyd@4r(E^1j#WF~(l%y>5GzFFI(rVI*N$8dh;FN*je$*0
zc?zjI`5Uq5DqrUq`#hh1zq!XCHwGb_xipBYhho!a2_ZvH7Czq1p%6{8zvG+tX96pZ
z^c=>u|HLB_|17FhC4OZEnFepgShWK>AIb}sO#^-G>~=!mCsUdZ-m%HI6JE&Zj11jP
z_Li-Eiu@5k5%MlmlVcmVPQpei5#M=LPTZ4%<)$96rf8PJ1P6am5C_^gv%lT4yNU7k
z&IGlfu#d4Z(StCYpYtpXSzYxy$!do!bLVC?GRqnJnmqfAr(QkV4a7R^a5!O{y^)YJ
zTbabsq6@zhzp(oG*8)gvD@Q(|Mlgk_B=C2eU}y3#B*RCo%Zji)(TnJI*4d%Bc@}g!
z)<k;dh^@)GQ=B>@#{tG_RiqRbn@&tct7+>E^#(zscdj?`2W8^8cq%1Nz!Px|U0Hlz
zOA*qe*NfojFyR`WzT$+Q>0^3xoen|wg~B9YYP~1(P9>F}TNr6v)K03^FR1pd4;Ucv
zX^E;Rqxh{nAa<QfNiwyMeaM4{Veu=#?f_y2sttp+uKYIm@XHFlhF=_Zcb8_)&!y}C
zhDuQPV^ME&m^eYy$4;);L%G|;x}PLB0QJ-=&-B&zP8fwgwCzFgAkITeSC@k@1R&oJ
zd@ha>iHuFN(Z*2q)yfAA-x<Az4}gtb(8r!^R4d>p!*&{HK(5To1ApVub<&k8XnKXv
z@MECvBs68z9UERxYlPdWKl#b}68MWYl05Vg6N`&P!A2RnLAMQ~9_YAE3yP%AGlz@8
zc0|I9TL-|NBQjHXrGRGt5Ty@zwB(4X$I~vHE&BWeI=Z%an#=`o@n1X&_NVn8<#I^C
z`5mq5U<AU^F-8Nn_}?pJX1IOJ_(@uc=vB2$f0Q%=By((1FN`z^TA9as=G?rOtisz5
z*gxZH9?Fgml>eL11M|7igW_PCnOfT%@7gWW^lgQY2vz-_CUTeqEOfhMLD^m1FH6gS
zjK1UaLR6$o^IEY__ncx1=wloanS-n+=V#CJ{`5cq!d?0JX}d57OGi&n89gQD2hQ_>
z->)!m8aJ+@B_S1Pt$7?K;*TXH9Z+>o<$%>xUx1u+Jg)qZ!aUbwdD4%(H4%M{0v*<I
zV#iYNTTVYpSD;WwS-_`bD@<t0%B|B_Xd=^H4vwZFT%@{?VLbo_KMk)aJF8-=4fUIR
z+Fx2FIM#mibW%cHmrHu2+v_s$uvULwZZ`hf9U(@IEG!3tfdb%`pK=AQBCFnspC;!T
zqYH$qh^5cqy4yXFI6~?I99Dfu$bKz)8n$V>mXSyRu$b9_#_fp(FXUezrQMkGL(gk8
z3X<tJDG*Ke9n<B7sZUiW4#vFS>BNxmouqfbn!NsONN1;cnSjfbXwPi${cNtL#ct?M
zt$w{~)%|O#9fZEtIB1GfhS3_yaqJs}Vzc>axxJ}>KmUKvJ0VPv^)!l+^LZaktvEUU
z_QO3#Bc3Wu4IZ66^4DdNFoMg8zl*~jV|Lw4e176nC1D}%nH`pbf}?dV13w|%9CQ{$
z>sMNzm$7uW@2RpTa<6RD%kx`1&|YdIb5fASnc-U8LGN&EW+eh)gVuW==2l%qNmNap
z7SQ<jcYz5ck06h_1jMnOQO~j*_S8CyH#THsSe~TI?M_)MuP;qx5HAKEFrnruUv-dp
zm#N1v!@?EbWHo{<pW5%V@c)SIrtQ)urU_$U=?-R%^E7I~oVm(24jNSvO=q8Ml%3-k
z!((P(QYWV|s}V{bpvoLLKwxh3Js<QAjS20#_HPg*gKw`(EXlMvyJ}b697V&k8T;qK
ze@8<ZUYy38qI<0$u1r2juX0t68|EPJ4-FxV+ac}CYPN`Ap9~ZbKG^rSZre>i3!dKQ
zUU$dv^uU?asWDF(BjXD_BRQ+P^#0|v!Q;aMabeSY>Tt+?H#@R1$Tl|66|pzKvSf_8
z%S;)e<}WNCNX3gHX1T9a3ICu{J#}%?9W@}KK8`%U4Y9Qc*spa@fuc)C1sTkoF{N*|
ziAfjg>8!ITX(zFPnYF@+oF3DwuC*^!1xsrP`e)%#G0pU;2{$4|06S+v_NSKVWvUsu
z`PUm*4v84`P1Mf(Wm2s2k`>a3ofS!h7N#{tP7QWGbqWojNj$Y`r<^+Sc!xzE!avbZ
zNn9TtF<7~M_0aaox*|OL?6-8^PMit6jmxz!3Cj}gpI+mp*NY>jAld@GcVmD1_L?`4
zsEP^NWE9hv_2rAEMUgfCK;TphrHB6h!%3^qX5&+#)isRn<4>Yzu;$vlMKuIv2?l;L
zZatC-1ApVfD;As!a(UH_BeVHKg>)s^^`$Y!<p7e@7jA&@tPvVS>p_B?23tQVd+An<
z$5v73nA(P4MQ~h0x46ZiKH2|un)*6s0<7_P$GwC<*}X%Q!<xESqBKO&rbXjE`%=gK
z<Ywp!V?_HpdEs#7*1nr=rX#Y`WIoaCwQW60wS(8IPS+k0pv)2Vn0*iEdqcw5oSOy&
zP<4)I?i;J>qDSY;!Ue3Vzlugx%#2FkeZ4m#V2%0hu$>Kpx<dJ#pIv<DUlcoraPbkD
ztFHc>Cp4Cfj3N+Qjtht1PcghM73!&o&r9C+D54)pOtGBfHAA?2tCuH^<VkmNSk-O9
zdO(pP(`*-w>DcAx?IK{+Cxf=-_?p2AZ&{EfxKZxC7Y)iWV&TqXgR6XfX&;;J$TXpb
zDWVb_!gy1Tce8y?wTrU53SO3};frNtleuEAFeW=#oCP#SkKB7`aVoJ`>4g5YN1uZ(
zdIwEimt?Z*K3Dq0IR4lIs%s_Ip0UKP&-_Grpwn<+BVWd@h2hZo>PbOsifcQBt@z~<
zcu0mBvv~eBdSgr_EJ4+2PH>#C(2%xB>)_SyS#sLF56Lc#lcryywzg+-wb_YuZe%Jx
z#5&W#|49q$-c;oGOn`>TC8{d$%(Ou<aa!4V`)b`Bf~J*=T@&CF7%vRy{5SuGL|uG5
zwk^I#3Hg$=l)kN({6F4lX8WwNo&PDTm^puJDybRS2PlZ&$OeKgTJcX_tMEKhQ%}Bx
zWjfW3_Yl`5@t$~P%TD)`baCwW?mcV-VjXvW!A!|`zVL8U@rfOzov@ms*)cRsH_>E$
zi?&@BEaJy)WiW@(i@*AZ)~5!!%~OZI2d@<Wht$G};L0%d@C>nI=bhiT<OI5OX)4;^
zoF=s`TV<cvK-NjlFHAH#e+n$xg)K(2U?T@L?IceRdC~l#*<XR}*Zm1-5<PdBk)5=J
zWmaa=|7q=X`_(6VO@Qv$noc697yn(|m&X=XfuqAhCpRk|VZw&nK4F1>l=*@EZgNx{
z95oNYfpwu_fRhOa{3U7HLacXfx=*(*x16!qsXmI`0)%mZHN?Y5`z3#gB1iO41u(4-
z`t#imq1Pdo8q%%)=2)9?M+x!{x>Q+*{3r~xjcAj=30(<UY8gy<weo}69cnC8_JQK@
ze%m8HpLMCaoRb0mG8jm=CT9O0w!U@Ce_apOad-kRg>tJTzMCvC;KOYcq>KF+y1%T?
zb;^tfb#=}=r@-Yc_wOUO-Z^kzKJTGq4GiHX{c4-r|KES>TsidcMjiCK=j$nIT$Q{g
zVpX&#)it3|MnhXvauh5yrtd~j5tjl0bnU%Y%8dQ!$$#3@^E`<bBiztRHhuZ?cnS+5
zqP&<ewUq}v^9|Tkc3XN~MYg))K%N)`)M1Vt|3Y;q$6Qu5gKz#}IZnKE@>I|f9EdRe
zhjm53l5>1_At#XbM4RfjWr|b>+Q7U-gNWtP6y+{Gg^%|s1anoV9;Q~fSt6MxchWoe
zuoUdPi&1Fz%49kCro&I;D=K0ZDpx+3a~~=uP2%O_T}iTFD2i){Dp5kuqj@2?#o^0r
ze#ffz8Nc1p7BKAD`I@dyBi<f4m+=mb?WZmsvncaNso$}@_Pz5;Y#*g`i_|i9TI59t
z7h@J8SJZk|#!{t{aUNn09|!Ja=7dp*@T6xXoXpF((o?j%=q!7IouL0!l<)kScmX!Q
zNgQ(90sqhCQSGl>Aun&fc7F}E>`GKmBf=tdFdQjJ*lgXboTSS*NVkYnqGjghjVOtj
z3Er44zb(E!<%EzA)ulL;Pc5T$+YxCTr=`Rodz7lbzdyv@d^EfLzG=FeF&8zsbP7R*
zv-}yh>44W3@FSIIwYBO$MMU$|G^FcLXcb_};-Jp+6C-;>@4d(NEBc%KcTLmnFW9kC
z_l+#L&k{-=_kFlmfe`WF%CySu8knt3d`Y=E6xrXKCc=8l+G(p&GFk0a2Pp%`PtZ;g
z%29+y(RNwzXO=CGDhBZ8?Q&K#hI?MGB(9=Zrw<f9=e9PX|F1C~bXkG6V@PvpW)k|W
zZVoG!&7hHm96We0o*-#gJQ`BxZ<Cyddt3!I+~NfU;eR-CK`I!<+a>w49*kdi$JQZ^
zSF?qWR!vo%lil5L(pH2x*Ci<SkQ~cf7R<ub2xwa^v}XE$^VD#2=EoicY(N0>-Rh2|
z?fbGme?N4jr7pAiHE7wCa7|8xoRe7>M}=J8*Mp5KUx)W*Me1Y=1=-nVDbY#$744ia
zt!Tg6R1_|<Pe2I0tR2K0+AyUB;cE42<FLE|o2NvFc+;YfOut7?$AJgXm}cFKt;N=I
ziH@u+ds2I;H4Lt{SOP<6UdjqTlLDdG__Us`27lXU=L@*tYozyPWVilkWsfkx#pwi`
z^p7;piV(n}TR_6hz`#Fk4Mzx(rD!4-CuunLx&#(PmGVL7mw1CQI$7WVG9<a1h4B~g
zKTFE>#_A6uWh^%_APfbPJJVJgs9>h2{kznq8$o?ZL<9mpQsj_>hV)%_*BQ7^q-|Tt
zo|$D3D`NZ1Bj>!2+%AIIUf}0P-kgd$zI}~4q;)vU#fem|)X}xZVhIN7mZ-_}bl^@{
z)@*kyL;0#C!=jxbAAo<Hbo_UlrdxR_2UYEvGu5NFuC=C7SsWA*tFo^k7Jvs=12zTB
z&LaJ6PHk|I{pYK}co6M&?jZ)tqAdFoJ9mmskGxhXSwkLik_{MaLBV90RHy<mjoV)2
z5(liJIU1lJ6$nYwMPAkwNWO?SWU3l-AssK{BYD3T8Pq>^+=1x)av)G^(?Vq>)|aU9
zIJ#*g`romU&?@bBaYXi~bs9;E6L4BwX><pdwZD}UwP#$WzyGAAhr>V~@hMkRr^poy
zVp^d<(AJ%*Z<PkwgGlA(;LN%l!cL4$xh0wjD&@+ND`=qQ$?2yd$M<ap`p@p>BpNNS
ztBXK|jnigq;sXw)OIA>d`tvH%O@Qa-Mh<&v9A<$mE{;E>PGvKV7rq&16~zbiIw%pC
zNkiQPXXj)|R$wZ%Lu@8;!eU2a-9-!sp5Nq`goe6<uA8etgEFRN`n_I#2kJrb-!2;T
zC%de1RY6|&3UeZ+ajUA~=qaF;e}FU1CSFDnzzCF_6W`ie><l8EY)#>)^%Z`EhHy^-
z^RV5`!Ujfll9rC9N%M_BxMjF<YSN~!2#WyYxOF)%HQOgX{x;<1|Jxvf?!f>rw=8mM
zwK1)U2%^&YTe+k&#MN+Fmm@m2$D&8BR9Z9z+1To|zqD6}-Wx<)h9NS@!F1_>;0oYI
zxtL00poE0jSNP$!lf(PI*U7O9B;@bRzGBJxp}b*_Uu-lBdMs}N$!zH<8!vh_XtfCQ
zrxF`jso7xyMA(kmLCX}q*Sl*+Vq>q8sNe9K_z&TQCXmp?4`n#R#V5HEkCNp9SjN-b
zyJW*2H!dE4k`!+{8W_hJhwjo;+9ObF-J_dcflmM~=Jtbfg*{m$({Z!_D9#8fm(=@V
z>C{4+atiiscswBMn??QmO8}d$g}zOW)&^{^T(%!vO317Fge{#GdI6X@&4|Q~n?Q*0
z@YJyQcy~lDE#76YauA4?BDjd>Yv6iDN$RTk3>C-~P`d=2YY-UIqGdfBpm|C`8-~kb
zdE4y9i)}FN(7KHx@5A+)!;sxR;!Vcye|k#|#Q9M+ruQ<HBG8-<u{a4*1}1!#eRQ;_
zvK6WT&qjkuS$1MZs0zM;Pn#(Q3V#Lo?I&95_<tKsV9xq4K;8x^nA79(_ja#FRwn^c
zhZKk1fs@I>oa0ivt>fBbDUv|Tw|Em;kAVcKLY^n64m4pw7E(DlxPZfR;D*ljx&1rl
zp!=c^Dqhjhc#FaTKtx+>k4Le^*(FP&qRESvLvmkheEs*j;Kxnyh1P6nNWScnl0c*X
z7>JaTWz*hKX5ReH;(mA6t{ERhY8X`N7Qs_{=hFDGugz1sxCz986Bk6NeLyhiL-h>E
z0>Ihm$RKplkl#QjaThr@3~d6ay%WV5Tv^0$5eH3czudP}{ec0uvw!9og4pt`poC*@
z1UXGebH2J2>yZh;%!UC?G~9k67^K6!nHixPkISDrJ7sUw&MJ&!%k%S?<V!?Ca*ulO
zK+ZnkEdqt0`B1|ss?_J|1gODmSw1Ydkr8Gv?tsoMzUD^NB;PUJF7s}09uQ()TSNtC
z=otyMdA=ssrODxcg<y>rLB=|KvO-VRIrp}^e$ZdYdBN23CK6lNtr7s+wc`A<lU3u)
zRRuczJX~py2GJcLdT-rXKH!-BuT*AYnOrW4_Wo??e3MgGvtOra001E$0jLOoeF%S-
z>44hWxBB5z%D9_+c(H9-*Bbt1NWcx6N^!8KUx{~ptv8W*3qvRMKxMzZqxCTU;;8aD
zCpE;Ia0(~A#)NGDlP#{d5{UKu8WL3D=L*vI<`mbv$l7tW_q<0QppB~~AP{LBZ#1O&
zk%xEAoUXBD{;vO0)n}Ie-{{v*UCT?nJ7O(5XVR`mJg})Wm9%}llr=DihNj+us_q9?
zUAPC;RKv>_^N9T*#;1#qARXRTk~IHK!$9Ki;zl(^(jMeuGUU&V3*pAhKq?p@w>eah
z9`xUo(NQ^)9@5Jyl$(2KqPooe)X&g#8f7+QQeB?%DAnXTot19(qTDSpZ<$wvs8s*C
z2vk$e%qA5r=6E#lov=^8KfHHaktWE*UU!G#EZ=YBKaDR!2b16D>{CSOqskcps#7pP
z<Z*g|U1&Gm5s{lJ-8S;H)?ij5awa>+K&5nM<mCBbM=q0Rh7@|RGieKPms{Az+hyj*
zhov;Ol#YEHuob`w6){3f^17j*gRTdq{;*H__i;F4A3$I)G$gcK3c&0uPfz6K(*hV!
zDfvrpJ$5{bHJnhZ9d`$05`9*thmc=A)ScTsVxE7D;?<7e_y_WEP^`<UN$rmfIwWXx
zjj<fQ4gnH|bt5gB*@>yM5*+(z&#6UJP5tQHNaUcKH^Xk?-&s@7z(6~9jcHQ#=Pwr~
zZ66&Ug%Bvh+Ms6DJk(D%^!*%lDw1*$h1f_97)DDQSe0-Q`4=U=k3lFDw#6n5e$c+W
zno-(Z_>uOq+E7?f^QRLPLKD1HV6A>FHRUVB&)YBiH#~L>0M)%)$W7>{esR@El)%7T
zXr}5>bY*_1h(lHPk0Xs@vsg_g^H)}l^GVXTFx}VEc#5NiK^~KCZSXCtuV~2RNw1O?
zbwYarNHEK!RqlB-k2@HVAwyAo4~An4c>U=5l~X%b$OxM9P)&w_98{)<YY5e~n%O+p
zs(!*2ZAb9z^jzA*(FpV|Q<t@%g5e?i$Vq)`){SLFXu$=>0$_w!Hv$In|A)z~?j;vv
zm$J_zcK006p&vzcumB`@eegwZ>2}>QlS!Uqv=K?8@t%imzY++jfDy2JeiQug$r2aX
zmR?szm0e>hLytkZnY#Q9U6ZYQO>D-55>Vu?j)#bsPeXji(HPlCuaH4JaJD%`Mj%&>
zIdN8Na7^YU)wK5IHJPLco+t_7w+Gg^UAeeVzXg1FqQ)e)sQia=MC|I3en?kMjG8?R
z4Al>1K?yS5&Q}cTkk7@e3ubiW{gkh1DPKWrY+=HLr)t`5b9gly(4)s(sFH4M`<Z_i
z2e@ga6_ovb@q|@r%d0_}o#I$F;3)#8;{2pH+x4{YtTKwuto>9jG}G$NFL^BS1Ai+%
z>2`BGf>D1`hhIMtpq+{(geO>Q-tSR4d=}`6Bn46#oC~`u`u1osxIAmnRwP#;V42M_
zJ0X!-ZW)6!jx|<qYtfwIbgo@trT|4ZIoj=K>B-cly@gPnM|oW{;DO6%;^r-V82&8G
za?H$&*5XgBpT!)aIK^uu{`V|c$1ntrv|!6w!?9J2U=it~&;V%-7*-`GWhP22p&;!0
zm!1TJEi?mw;>+hr*ifhBx*OUgs-0`2T1$JnXJh9y5(b|bIPk`hb6L(K_ynw+P2j!!
zV5NQGE>YrJZ{mtxZ*%qK1nyswCqvBGI!=n)0N1z0*ZOtg1znZ2vq`6QjKUWiW%r9W
zJQ8ZvJvu3iPY_eXBmzEN2q7?u&4IVKp%afiit_-1^Q+So2kbF$%|J1|%bm$hB{h@+
zaP8eP<7PMcf;*OvRROC<`Fp3{6CES*%z1aY>IBMYdVap$6+OrzXSbQ$w#CZCJ=#x6
z)HLhz$VffzWklf;(O2vXdz{}n<#u3%6S6B;&?MimKpg}S79?UxCmdT|1pLU3Tw+B#
zJ~hq;;fN?rb@;a0^C+ThZ&6@Q0Pm&bs$CyHUJ%drFb8jO64gjw=hoChKNl%Zo~fn&
zHKq&+#CwMJ?w(&ho*2ASJZpWsO#3it66sP4%o)U*GKT;C{#g<f4#-0aB61nkL%uhP
zs@?Us_;wcY9X%`Uhx!q}tHrOSm`jDH8sIu5WrZANO6UfXvU|W0;$uMk*ntgWNdut(
z{MnhI-TcFZ8)ryhbH%)!QLqYDtAoK><ExKow=Oy@z)5yP8l%?XX;|)-S`0r<7PFm}
zMfw3F&(5$3q>+61b(3bDm$!I+DGZVHBDsR@da+^L9UYZXpEE>7td(I2`nii+*&`$f
z$SPM;muJ&*(*@rP1`((d1Pmfky|--$>M>+PdR3)5Mpz?!wQrs(kJJo5?LO!O=quYZ
z4cnCOrU<0@>??{@zgG71Qx`u6r7!Xb_yTY9_mzTM3EdEfmU`m0VX_{`Ji4^Pciy^!
zi(Ev8nb4Z@j9}kL5TG8yE}`#x0-8O%r~m_txpZ8gc;J>qI&0TS#xcu*Gtxn|RDcU`
zx%!C5F6^12e-4_G7bC5hNyjno<mzu8=!UZp+k*18{-_WvGavOM3$qrzV}N*%xy@M_
zV?WY9$h(^^#C&2C&YUtK?AzKv6fZvUv4_geyyam*Wt12qlPdMeL;4m(os(fEPN`kf
zHpGk1gx_j@9|3a@w!|ZDC4tm#ff%{|r&Ueg*wvbuiWt)KpGFLc9*lxhHsERCW@zl4
z5tx6no$CtbkFWHksz_SQyM|Ree!K8EJJ>foyr^{P#*zp;jts~Z{H9{q<`l5tcN_$m
zoUxCyF9UqyDFX78-g|yYO-n#U2NPG#saL47I+$&m7ChLC>4dy}6AhJ;XFj9DwT59g
ztEvqMfZq_#8>Wokr%1BR)AEZW@VMbtUg|!E*oL6N>0SiZ@cXgnU&%Sm)-Cx@+a^U|
zN;Guc<jUVPali`4q-ZKaoZv~cUY@qOAEyU#GUiZo|Cj;|TXXU=ghy|<otpw?3*B46
zO=AaI&apW&Dtk{MtvDm5oC%uASi|6?4h@0@mRB$*g*+E^>rei-Exy$BZWe9D&muKr
z(reL0-A&&YLqq5-9r_@=&S#Y178{>h`7zfp?=&VQc)57=xe7H5cC+_-<}c0QammX2
zua`udOLqf)TV>X+A7Nw*F|adfG2VVLV`P;aBJf;u32_y#-N82Q0!(bpYLZr1px6q<
z#1s_Xkj05S(auT-l3gAzxKw7IeFZ>!cixF9gp`I;CW9;4XG!<a;U(jF8dIW_2>9A}
zEGH=p4~R<ltv-~i**pf?^72#m+h%40BDweSswMc<cB*Ks7XOLxLVkqn!Ts`9x+`*#
zWS<IN4aL@Ruk<U!O0JOTLGK*50<(ut^Rr~?YFQl#%U;-i#xTd-U#lOH`aHP6JqgP1
zGq_(5TO2{4pM9|<!ZTnqm7}mT86epmT=K0d>7p=;#jDkC=I>|NX53w2v;&<rf$Egl
zp->}V!uK**zt>vpVM5QdYhLMUvtZr(I8o1%7UNv}REDnOMY8e+gxoXUx_#hU1UOS%
zKVe$5L&wq0;Qv6nxAa*vXc@=N<ue>e>+?31faxIBCw9B`y6@DUG(<hH^UY;&&H7w?
zx(wjYBclhgvK}g9kYr9vu*0ISt=#B12bodG%oJnM66x+K@2q^h3cDad&7SS8i>If2
zBDm;I1^#^MYna~8lr18ItT|_dokw%0{h@A_ig63VPQF>Z_R7IuQa|!9P)*wvsIj^r
zlNm<;zriyHQOWbUTz$&b<TjfF|Ja=%vhjCHG`F1u-lE7hKHCjN)pL<#0t9y?hB(F%
z8K=^AO0=6mcZi#%pV}T1Vza<me#ehH{C%6SX_`ebSiLVxj^7w&T+a_(wz+7o9<C|(
z(sY7;C2ZcJNmm0}$;LljB9SdDz=nA{q3y=pY6bTB)IU=uF0f|-X}+H^yS|=vsGp0=
zhORa{brZ_;wj^Oi@YwmK03sUmdNT87*;%uA6Sq(fIbO+I3{8C|6PKkl2i`7hA@J(A
zn=Fs-cpI|fKUMQIH|Xv?(O76tFK42J2RR{>{PoN-XAv+WG`RL9ZW~dH?FF4+=1vMQ
zoB!b4Y;szZnsnbbO;qez7`75KxQ)<7m)e{F5A&LFxFnMiuD<kH_2XQMFGLUT?fCT5
zf56+bpf<jexch*%nCh9MVuu4Lmr~L-<g8yEN|_wrxIj+HKVp^ZXaC)i9r@Lw#FG?t
zTGASUQ8Z_kF?YdZaZ}Q)WfmF-`t4MjH)o?_alD!TBNlXOl%z+<oH3tT1A7O)LhM+3
zwcZxe*pjcsL-x|{e-{e=HOtqLI)YcYk6kBWQhC&rEy1Hw&+}DJ9jE3EW14Eo?us27
ziCmr6z9yY?fMt9@j%LU*=j+q+!6<xQ0ciHG0A}&2>j{Wfww=LJc&mX)EV#vQj-s?G
z&w@;r&w7FN0lv?YO&4+*`s>L1(8ycjN^nK&RdGy)jxl6ILkrWv`Q&o;=ygI84v=2{
zY4(h9YLLxE@7oB5{{$VJfezdEmeuc>co198{=ajA3~|qR(4;EL3y~*>fFCt^=7&`f
z5TcO=;>7~PZN91USLI+p3kUabFJ~VwL%2ifHgj&}QG_h{%CdYGfK}lBi>Q4B)Gcm0
zEA}$mtwlq>F{E$6cVqs|>s6sob;RPHlTXvej{4X=6&L-EC|aJJD74}SxeL7S1(|*l
zVm`h;Zo0DsOQOiuX+P;-;}fQ?f`n7QOD3c!s=aOvf{zCh>B7L<dv<FyKNZUZr&3N+
zS}+^>mkP-6@<Ix-9T&gz1U>|mz#0<+M=p{jJgGWF7L-1T)~5RZSbt!gfcAM)`)7@W
z7Jr}&-h2Z(TP%C|7MA@v>dp#cruIw>QZF_O0?fbT)~&V`iep^-wvcWCZ6x+6SP=it
zj(n95Z!nBRV?IFjtKlfIb)|k5YA-d@@cAx>UJYBh!-z0RvVD*;h_Z60p2520ciJl%
zcckt%y(L`<$e~}8pP$-)y0UaSAqp*cNhVn4RGXipcHRT@=E&hPWijY`-TnbAOHsIB
z3+1v?3KhGgJ<cgqz>2Vq_hU^^=aVYAvUi$>Gg=>>9yUn+l@w+gHZsrM6_^-bXSOsv
z3(rIrX1S_l;1N`8<&iBl>VMf0VxJY~#z_W~!BZI4>tCT;eGQuBSp$bR$7Den!6L<W
z1y;J)Q5_-IgAd~;P(ujGhYfFJNfG87hJ5Q~aHf3?j5rw{(N+vXW(Rk;cs#7XPArfr
zWiwY;jy<%kw89$ZX4<8!Y9+?JRs%FWPg!2Xi-;de**ENjvW5{((P4NxSR7kWyw{2-
zI*V<RF{aH@AU>H9d5t@`qf6~Spw=Dt4*{F6;t!92oCmn%=;5iV>JP$BrVGt6yEu<J
zhYkrf*jBA}8)!Qy$LEO@y-d<u15A&xhbvmx61-=sLK<>Rq2HyMz#Ezykyig>w80D<
zS{^n4`DZr)t_ZYi#rHYNiU>w?nZRBO`MUPzab8qd6o)R+wPwVd`7Rb&yy?h59|EU%
z9T&B+Ev*&h53{(t*RVoQ-a#L$P+Lt6#qgR_?C|`)YoaS(|8mp%9nk7(5b@tfs>xCp
z!MMeP=R{5h^>Ka@zLxtk7nS+0sREtr9(5skAh{l}&ap}a2-o=tL-)O9GIzUB)Nug%
ze4TL9gFrC%0P?-<VTHoYN-L|t6VVyip53TS7lX)3(Y;aI&G$>FhW0z48Z?SWzwU0P
zV}Mj&9JCt^`5AN14D2fD&_7t6XR#gRv%b$4rQHrZPzLSKWp3A{-^A~HA<9CtiSJGv
zPD8aO6^&$Yc@!#cBq;xd>=;5>u4G6fVqkk#7l_B()A<^e&G`wx4iER$^X~^H|IYl9
zguBctuO13xi_v3>5-g_W7r)%hGB+Qg2bGF+9zm20r%aj9Hj*39O{$xntB5x#g5Lb_
ze#2QhyW11bmMRsLQzGM#vuRa0_n<Ipf9Mo=c1;(BI61+#{k6^e0NaONA$xaWATOdt
zWd=*WgB?f=%pYA^Zk<MvFSR!dmF#Xf<tm`qplF<(T+e|XFJUyqu5tqwk`NR5*Z<Cw
zQ9Nh#u#GWLS1XKY2sRab2G><;=Mh79YwU9wMnX;vdoHhpp2%nWG7pOm#syO@5c6qc
z9C;LGZ{o>Rtx79zH-7^XP=%)#{MOdKdgsZ|e!lE#jBRF1g<Hs03@Sv4>iZV-cSZZ^
z-V!Mmh_@_9gNSgjZyX<f%WJOhOTUG_Q_Ga!8HK7#vW0TMbw56kYx9jC0-Ssm-Iy8u
z?nvSwA-_zbHgWS1j3N?7gZQtB5Yy(No1lBS1Xzs89ci%P`D~4G7!`<?U4OEDP{3a`
zVgE3(k!SwGZ00f=CLFIr08|fTs#y_u^mADjWO7O+yN3jxr_CVUm8yiiz5Hg?UEIVn
zj!)wgltgO^xgzTh!Hd&+08?z@XXxZm(@Hk-anvHfTlHPm)m6B)DQ77uw-EM<jkmB@
z6kh&c3BLl@_-RN3whflpPha7i!oIJV37D;(ZW15md64K>Zd1)3k!HEZA3S7SDA7&l
z^Vy7ZyqjsTEcCtu^x#*vU(c>B0CxECV2&?iIi~d2^j#P*wS;9!fbS6P?>cGRi1*EU
zDCWVo$WdukCaA67Y>T&ofYcqUyD&#GlyR{Zwt(R=oD@ZTQhrdHD(VxE4AZZN7iXgG
zdn*-`38T?1L2FZve$1Oei)T|X9*})&m~A3iwA3Pq*%9$aZ-a6tjRq^S->V!i^{Y4l
zNDr(<*G82X{3mP?$P`73zQ!EjOU5<<=+bl+P|TRShTz)oeS?OIcq({cdJJHjQr*<>
zZFeeT{4RlLmP*IBHIQNIELSC<|Ni0O>=u>rLGf!r^t*B>5@^fWg36VAh-D@91tA2W
z;ou=#vd`PJw&{UXY?M4cL0`J(94B1#@jY26Z5X7bidWgcGNhkT+Hydnev_?^@Yv@z
z-e6eOwjLdc#+%YPV2NBo-8EIdYAU9<gG%DVbmdd^?=X1Bp)4D>3PX<~Z(o}?`VT3a
z!9A}Qe6?)Mk(D=xcwEXZc<p!ijR#Odg|{s|4TmDD>Z><WU!PRhEDuf$E%pz3oqcLi
zFz8^<2GBX12*W|aRM_kJ=r{;+#UP&x4-P8UwS(7Q7&HEMe%q(|Au&9~R%M!S#Kj@1
zQL&}p4shGi;3Vy2(gdS7MoH9G3av8l)lugS5M~kl@^9wV0s`TXW*C=qeU37y+pgZz
z<ZbK~Mg(^b6Ju&!tVQhJN1VMwyx_h`SO2MPM#kQMi9%1#T&`i-nHoG80@ebG^u{O=
zNOEhQ3b}+2;b9I!=$i}j8;l$ENht}PrL_-5#DZHWdYRE;DvzX2oGg*KsRWD*&c13S
z?i>eoE^3sOmhxqowxJ!r(Bdi&dMo*MP=8iXO&>LMQFKA&kOhIV{!2-(Y`j>{<LklN
zxX)TG$z<j}iU8M+=Hf|0w-2DedxLJY@{U4d6_~0NKbAK($(Izg?et?`<K2rFoHqzj
z|NUdgfEvF)H13HE*n(!s8S*&+WO)_B$Q-<<E8&<OK{n4V=)R#h81zOTaQo(KZm%=B
z>E0m<j`>@4yGMn`xO3BEB(NW~rxY_|bTVk@aE7B56N<r9+!KC%%XT=t3*J(lV~}D2
za|FvE4q&-q7RSiwag2Rjv0T)9Y(jnD(#r?ATy=Xo^h@zMgG2ZihrZA3vvS+~JF<%s
zoSHe)?P6b9<Sw(JGUzYwVg5a&%0BuYYdUr<JqL7)33LDMr?-kH?4%s+hMlImtRpyw
znf~Bu<i%ufL%HPvaUwtV-XFERkxaCL{SgkmwEs`E*5H2h6nbrY33E<K>10c$JG1cS
zVK%$>+x+VH{f+#t>%PqY?SKCFX@=U8_v~oC*Gb6Wp|LJD+To3}@AiipFJ-~w&`!2C
z`&Mp6qPJcff+xHFQ}IKs_TK7W7>~v(?{0pvUR2O{kDtd9WMVgb88p0T2GlerNX=by
z)c;N@7nKhSC}Qrpppf0@FiKW^;+lXp1Xi*c0tqW$$_^sa+X-Y^rzn*7A~{OJn{-e<
zoa<JJLd3AIhTq_K2JNqc-}^KxFBPQ5b(!#{f;b?}8=L3zg76#K-Nb8_&FKO>;p1su
z6jF>INLJHREUDXM!i`bnGGK5X`*Wye<6`6mK6UY1ywvU0$a?dADm7-lvMa;<^w)*d
zc8QW>l_<dwn(af<*t%V7|2P*h%%3#(=9Ewau{QHziqAkM3IL}pa?nz$aHd699pn|x
z+1;o6T{0i%{W4w$G$*?JfKdq%*kxs5@3J;WaI|WzqgW7Nlv)4K65cZs+7+-^LjXZQ
zzQ38i+A^?^{0Q1EWDyY~EcCh4!R25FibxrW;5J>+@Ug}UD*WuX*Qer>;|B%G3`shF
z`uGl&cPnD9Bg!VsEkDBeqdY?A-rA1Bu18GGX69B#QFYW=4fdcYy0ayT+)6fErl=WQ
z@h`TS5ta~zcIqhvpMZr>ErEl|+R@&$-sLDU=$VFRFi1A3ETz-e*1Sx=UC8Bwc*DWT
zN~4JWcf+{Nq8sNgvsIloe7&0ZdsYyxh93$f&=BB&Ffh8)Cp!j&C8d<S4(qIMCOOH>
zoPsgMTJfAD_<V&IM*KkNfLsR3yai|K;L$B&ZCi5D6DI^7OiI^;l{!`a==dJ_XQdde
zX%>1kw3LJmaGGyzkCF~P1%o0VAsIFh{|Z>_#bsy0Nm@E}k`_;ibxBd3eG>FP3`dd;
z)SnUL5xga0BbSt<?S?cIlrqS3>UVC3qJ@DctkqkYj#oGuj%9|ArqnQjl`ExuDn^hA
zPxCD#!rMcFzwdH4EtwF83Q|nL5qauvnH_%Y;Y678_6I(#&%FHRm%>2GIxfe-|8InU
zjU{!k06;;7T6K~Tt3bhcIpAIsb&4g7yEl3AXvp3>KnPvIl!}%jG171@@Wj{mB6!p%
zWQS!C3T`Pr6MQ@31ViF3$aQ;-d8g{<9%eShf5q6Z2ckk0pkeM@l;(1;{;d_k_q@XT
zcb<;#yoU_=*e&IH!?Ov0?P(x&vGVSt8<<<2RmwYIxrm(gK(fMfueRrGsCaMH6l|e+
zmja|W|Gy<<^tuj<nf(2uGgIhJErlIzdPA-Ux2pCL2})}|s*<Zi@a;xD4E0NwmI+k0
z+f-C>M;czr5NvA7dRO7eG>Z2fBJe{Z266QN0e1zh+j>=#Tw6*<V;@XHb<>H6d3kHJ
znS62mG{>4t{I#ozbdrMbB-iyax*?ig(-fVw|BUWh?K$D{pf1dMxZwRXmL0HE`S^%z
zp*l)UDMu9}tMygQW^3d^?~b>G>H95*(M;)E?{liIUF*1-aj^wiI@Y&@mAe__+m8y(
zPFoaNdAp#tHaCl4vj|rhMj_qv9SZVHd;T7HKXwmhP$^*<evi%JV5#83RmY40-POUv
z{8(&ti()6)K3F+hkOCAJT9$Zx5|T|z^WOSFz>y}rHlAokKQX-fW~v{veVu3KpJb6G
z8J^P^yRv3`Hu5p&YZVn=nEaH_6~W#Ms~@CvYU`V$dpNf(jCX293`!B-^{q8=9o(Db
z4Er3Zqmq&r<3{s4l+irlV#<%8m^?v2ISzwAov5ePOH`-Z(|TW4R`?Kn`swqOE&;dj
z@7b~LV$Ym**A}s@5&p8z>%Y4Ia>U!^N(!InYINYI8rezr0|o?rfOQG1%{?}d2b>E$
zg~?)H1+33s)N3pL9rob{si&Z}Mj?Ov{d|fP3+9B5u^M3P_eO+n${ioGN3uf~C!dGj
z_#q=((;cW}7Ss)9AB)KdY^VWL|Ma(_mQ&t6+iujRev!wzokRi9DmI#s@fQAJzR31p
zSOJcX6CXSV5Qdg*#hxvtYrVmW1^4pF1w*yB=EeVa?5ZrKuxS}0K#-^Pt{kC^aGT=W
z?)U|R!6N4Z=CmAybxA#A8KR*57Oi-K2u=5B){5@wGsKh0#RT}H_Zjp%oZc@aHVVLZ
z?B&KuP41H!GQ*4MlfJt--IxH36A(P6V~&UGS_0=`T!pgQwX|@ju0lN5FMAN!jNCW^
znjBrnGqC#$fOZ3Tbvyy8s~lyXa7&WLr)mEnbcBu%g%lLox`SWAj}~b)_l}T^-oAZH
zJ+sE1&&kflxeUO7pU7V19~e*PMU2vQn$>LG6w(@1p*;-94kjsp#ryN?B1KeMo7)4+
z<DR(=frZbmrQ$eaw+o;c-Qe<5f|i87GX{!;|G<?kNymFgT)j#raNT)W8*B6p^9q!*
ztg%NPm)E`gl66P&GJ!L*c7M_I%UWYA(H!1{f1_h0XUXzHQ1DPWZ+LOz;RZecH!&=B
z=cAkEz5;?(-Ph2Q=tAc4j-1pHY)q-FouVq(aG(Q#$%%iI+5*Ai?H<i(RI-VlKRZ(g
zeD9r(MZasxV0=YyPhP*1#xEuwUHEB)IWfrdB;>y0pj`y<tyt<8lXvMOYTNpL;9z6H
zmgB)T%V9(qX4>eJ_(wj@EC_VONeIFC`pQCM?@a!ZfnsNpDktcw?=?mzkBmp2u^_qH
zlxRccVfRZY)+kVcNG7T#bJU?WP3PX@$Z=O-v;Lp*OwvBm*52N5_iB2B^tvK(s*UsO
z*YO30Eb<xhxHR3kSx3X3`w`5F7MnvEry9mp9kFulYW`m55#HODg-8foNFfD_H{qH<
zdJFeT&)77*&Q81vZRzphIDJaCuYLoEmlH)0c!d^(W#FdU^!V(_2jeCAN3-jQ4<7t)
z0zqvQtPi8Ik24ePB0p8eSlV*x##b2x4Y3G*VQDXtTdZx;pDOO|k$01PhTDMW`@Si8
z)+Cg%Wv>-t%w2AC3hVcG#YBXkxS;3&nl)gjnl~l9={;%g=DNy|;+l2)r6!A{{F`2(
zk@u7}D^?-qP3=eqFGg=4H@ii~A;|+JgY!2efeuJF3EbsQSDW!M8lK`q^Zj49MEk`o
z<B;^%XRCGyl_Hu!YB5bSkS_8o^j^>klG6h7J9RT-o2_bahT8QnD3FB;FbQXYo)nVI
z7NThkW~5$tJMcqzN~SHuMIrk(*024vRMJZ;N)Dsoutk8>%;b?TAz<z$>BWaz1Iwo`
zG?})UT68P<(9RB0KZt_6o#E;<J%ZEJW^yZ8F8yGWSxy;4JSmZ@AiV>MPqwRBcm2}#
zd;uW%3qzJ?#Cq-K5o5;J<Ix@@+Mmb)^;pn*<h$ELWeMcC`s~?1Ul&2WXL1u%eK<TM
z003`iA>bkcAVELq-+KOn{IXKqMnMTu`9t;&?BiZ9O-!-me-9#4k+Wb6F-pHdB?~*v
zWGwI#jg!c+gGjw_n7%;2ry;32hK*1#7KXHSEOcrCi_qWkeeNgiwkMMgJM%~7kMj~4
z2M4LxV(RJ*c-4R;SwpzHN*`D6GIL~oBiJp6D@}t*tf?L$1??XUWrQd3yLNI{v2T}H
zTf$LYoIw>9r;AJc&SvhI>Z`G|34i1kMtRpx1)l>FX*22{f&iAvpcr1r1M#gWYQFuQ
z{$gIg&bMUJk8x?Odq}xyVwjs*Knw2QCz`dW;1BV_Y3o3{@OKB>*S8At_mpP}0tpvj
z^-hXpgkoxXS5avc9q4PGp3MUCMbFHxZV33enwdyIxoaPjD4p<QQIzP!1mfLVgka{i
z2fvhP^a_t-Ojx0cxQaBZD;M0!)UMMYvApOsS_S%Gx4A;p#Q=yD<m1IlEWHhbJ3TOq
zjOE2%ZKb_DC7#KF<&FOuiY0$+zRwV*BBU1SQG<Bf(r`0oEh9{21}I&Ve)qiQL98Yx
zwj0v~O$n1B$CTk3?J$T|NT-w1=a~0jN9^qwE$gjM2kIDtgRU(X)*2RjX>^+j3&X1(
z+iSY3;xrs74-u4NqPH)ZMq*}`zQPZZsXawT2bH>QjsCjYTr^g!n|hDK$wprsMkIHK
zSPE1(Vwtw-G9>Jv<eM3sv`M?Ky2`OM-^a|yU;^gDVhps>u@(QFd}uLZ9c>@d8T(Kn
z9Z{l<IEdT*2SrwC>Vxk|E}P^W*x4s{`0tQ%DIvCEW5++%Os($_n6#uo8XKrqB7a=S
z1@4Ag9%XbbGw_SZ(nXt;D}8V=>obP+t4$`7aWV|A$bQl^#aXdq%DeQeE^lMrH8sd`
zOx&|iA0KZ2|Ju>Q<Dj3Tt&f&fqhbs6{@~mxD)Yn{LITF~C>nKC;x{`}q-+&zvm9DN
zbhP!>UR6>ZFSRYJN6TXW`nf5q$)=<NeCaHvB}<1~$M39XsV<Z*)qL0#_+QG)S2oFb
zwMZaD|Coj3{%tgu(>ZPHOm0KB`vU-kiSZT=Z!JQAp0^U8Kq3h@f|vEqwZtG)9&!ek
zT$7wqEqtwzHEFS3O(QkJ!}r5qYo5JuJ{f-_p>`1i{z9)+EL>gMg%P|XezG;)jo<v)
z{=kD5&^`w=5$1YJOGTWyNHhFt(UycA4Y!Mv`Li`}e5(Ui1tw&a(xq)w0s(*VW2VgN
z;kGYiXA-NIZT)CB{{I$c>hC<D9ldgv5jzh(q6Kj-l=c+96c;xoH_VakK{HD6vaNyI
zJdqWG9@>G&GIVub08++5QAh*(Hff)ntP>`lb_+x+!$NZ-EI{u|*}*qkkx7{;3ZLxT
zW8b4<-*kxw!~Z9;GDO`S1el<7ye=AxXQz6XQaDVotDLx~w(REBGV){FN`$if1wiMf
zN{DI`zYBxBi*g?2MWJRr;E9-+_B3#1MuA6V&)+UnXVIWVg&vZdoz;j-pZkH(2a|z!
z0?+EAS*5O2IDtGlCyo9%ql!MXgCZEOox(x5T{Jy|0>Ieal#9l<`#1S0O>85%QLPh`
zr`0qfV=f7?e0$-KoHBir87d=%EU^o^2Jv|49nCHN0Gf1HTRzZcaOxd|6iJQUS<>34
zetfj@o?$xn$VK8lp44E7WPk8NyTdKz9+o1HCL!rl(xl6UOOpc=E%p=?E&hFk<^)O{
zpY9Mv;~icBPDTCagBThm6b%i3Lxhn-us(TEry8F?D0uDG1A@XXMSKP+p3j~AXcGao
z^qFQ6KC7D0lz)$#Z{&1HfOM*#U0y<=pb|xz@cg!l&`pJeGs>T31$1;)0WA`Y&zQ`8
z@THs-FbxpiHkThIR+B`d9pZcaNSfOH6){UZuLRb(0d_3-jH?$rYpA7jsA@sroKU-%
zq@DVgLgrl0P#7!(mpb5JRIufCJ{$@M{*Gd1hU_Nj+)YiHfHzF5Ewqg6AoMUFB$~%B
zB2`weuvxOLk0H)nZ)E}k^$N}v&&)1GGdY+n9sP%V`Ld2U8+rFTpi0DA$sQpY19u$j
zmHe#PJcXl3XpMQVs(KD=1^?N(@=jdYdupgbi+m|Ru3+#K!>(?m!RtDX^f#Thw{I_G
z-+nb%A<L0#0{nT=dLp$r>Iuf<SFo~JWtjJ;Ba6z{+H2>rFZ~7Bj$s*9&{=7Fil~^J
z+<EMoa-vXFjQ%s!TlzIz-A33j>UqNX#NZXUuF8N^=BE`HJ3mIOp_zaj%6_rx{l$MA
zZ!JDS+KHvnJx&3AkIa&9uDIwgc*aGoj>-m_c-yg^AuVqj1;?4)2s48x{?I*ZB}TGu
z!rq*8u6E6Z*)$pxougecpUk)%>N*PYoGIVT($zmOr}!DS7_@r_xyb}Dqj!l>ywe!F
zb5f6i%f9hLW362tH{;m`<R}Py0!xNxP)MPRzl87|C-`DuD<2qLd!;bwU`!bT*6R9-
zX{yC17PVMxw|e+>rAoFI+L5xXI|xHrj@oKt)p)N$LN3^HK9E1Ri0{uwfb)KZyAcYu
zRYCGX=zpKy*S3Gq%`)e{4r(_ctq)p>er3PyrV-r_L-bvw`L$9+%=r2_0v5zI7rFyn
z#a4Te8a-g4x|(Laa*mBlZbS+pWT^=en=k1CqNM}&pi^qZ8K4NZRuaQ86@-MaXJxYQ
z?Ek)$H!n?|q$fzv@QZQ3>ynx3?vRAlx$d5Du!`W%VInWz4*P;Yw1*A53f0usT;{#_
zw4kuHFhr-n0Vss(yje{5xC5*ffDi=uWQ$+xhxR6TZR?1bjwi26s}LlZoCAV~Y9vjJ
zjxYK{1c-nwR<T3gT3tr>7&{zgmYYVntz}cT_esvH*l=LeDco$42|kOZ*$C^N<x-$g
zGYLN9(h;M3w`R~T<CyLt+CckdF1rRY2ohW?#6eVFI-_ZjA$xc>TmsPRPRsh8f(yZc
ztT0!%#4_WpS1LxSP<F-4t;{?|x+?pu4aZhD@B3MGvQftPL_r_ox}c9`@}oZHxG`Ww
zjMq5WxQ#tOAZL~i_rlJ@=rspA$fSk@#b_&<k|&#HsxwnQN{RF`Po5gm7W}97szo{{
zdEW@fQ+ZENYL<p{jK9<kyCjGLa8pto_kpFSOgKn<Eb-yyJ9=`C)CI-gAq%$GsQvlO
zg7P@35&Id!;fwAC3F#T-N#yiMRt{XX4puQwzy|yySx)-Ej%I<ax1+czPVCkN3Fkxe
zSdh(ozl}ooW_~68)Ze}R7-UAX+b|ETT6n#=UKKlJ14_;L^;a9q_5ZAvVfKw`xmrs6
z4sZ%?2LE_&-ODUsXjTSG)hNBxTe@$er<-TAnx6S?@6egEjA@SYKG1t_;!T&NeqcTO
zW*6p+{G<-2CGv7S20;``VU12*5vBz=XUdz%0NYb5Ze*H&sI$$OmzEY&=(JRh*^H>;
zU<S(XT8=}N6U8NZ6sLBJgyU+luN+;3CGY#!f2H#{0FDW;)aKK9dFb)8C~-I1;%GPm
z`z_dQJO$KxGLRu1Q5_PNEfE}baII`q#i(}D62!uMC+r+T>QqT1bLmUK1}h<}fB4B8
zb9{aNB%<0scx=2a(7JHwKtbKlX8R3J2@_OExOB>`EM8#_ErdMRKX}e#jIwvQbw6f*
zm99MT-rG{9P&wdHx;laUi)At3#5Y5vs-K0t_~d{Mcy=Bsd!CwhK{nCx8u9Esabr4X
z%~z-vLGJ77J`7}804cF?O26yszp?4#c?$@a6n*FH-|`%9k&I2XRy?1lmU|h0a{O8T
zNwB&Us;<-WAB%jF|B1~MNJaMxgCH?@xGthrl)*&BvHBsF9f5jhSEFor53Gv|ffQVE
z+m;yiA3S8J;5?>uL~w7-{nSC0qAuJ>gjewv>|9{Nhs-aOC~2&H(Dr7>v=xhI!eGo)
zth&YSX)i2e54o!{Y@u?YUmeZ$1rS@fab0eJ0VNj;4$6kTKUe>0xXPOC*zB{CC;k!k
zkE(3i^NDAYlaf^5RK#Orr*w#fqk8KxY$yOr!JDKSxG7lVC*dYYLn(pk0P&s1-%?%m
z=h3MEO5UR}!w+&Mw#hE&3)Vw#djrKlC(ZtLxCy5?C`hW?zag^y;CYaAy_&E9r;j_6
zjN`>q{lY|n=Nvmgov=_3?doR1Vb~^+K*y0Ug~0Rh+1Wwvm_%^$E~j|pQ9Sc)?cD6e
z8O(}6geB>Lhv3a#J!JRjUO(W%VUJU*(k0i<l*}39unZ{up$5h$mPGE|oJ#mBgm(}|
ziu35Qh`K_i)IFgsdZ00Hq_=2OxW@OqLtLV1-Eu+f;g#{Hd~q`;SUCmc@r7T)xJJp^
zoGU3;Dk#+xSo&`G<}Sjg+7=qIPX=ovyWo)+SZ!yXM<C-rYrU{XQ3)QrxnxM=(qJC8
z=8F9o#tX>Eb3%RU{nSp6Bs5=8W?-l6HTJiClEdoBTRfNiZSF6?^ge~ArQ;@Hv5UWc
zCUSO5(8^TD99Ui>a)Ch|V?~0OUi6z&d|o^|Jh?V;@wz#8MFGIRHNSTP<R(z1r@5Xg
zIXVzG`Pf(w$G2XJXHa_>Zq;qA5I39&f=2`ykx!i4P_^u#C&|trwpZqYk?m~m&+67z
ztC6z?17@io_HJt+;ei(A$SrHH9-j`s;Lfq(x)7hpKGSAapd1D1eyB`&szwwZakBkK
z69O-N(#5mNCIRJuCh>2#>kv>-59r6>$vI%2{5`;Q%I1S8C7FHA(x?;qtS5vvwfwM5
z=0BKhMOB*Y67;2C{g3-4mk3Y<UM85n@)J(9VqkI@9B-{SDbD1-w*l7!qg{|ts;Lt@
znT~X1rX1WWO-ExfY7m}e$AGP8SxXj|)~N)=mIeJcB9Dx!UQAA&POHhk@a_Wpl=w5#
z#j*kgrZUwCGfbb=y69%hkJ12p@QdP~RjZ#L><P`90Rgvw_XzT$kVn{$NQUw&z~t7%
zWI3X~d-c8F(WnOYvv-ny4L2L`xRh;4vm`w-ln*VHOYA$=WDbgO;I@aI@B{bQ<q?NZ
zM-}J2(9N<90g}ES&yMv46Rt6I5qa@D-1mSFa>)87yxHg7(D6-uB$%F*`QaK)zbt3@
z>?`d)B45-G9=8HOhMNA3AHmlmW!b3?jf5};x;8~w;<<H?BAb2-pkF#?%iFGar?8XW
z)IT0HVWGM72{^GNsUrn5==rzC-Bj?yVEyp=0Ir<fh-fxb8hcL>SL-Lr?-#2B9vrCQ
zy2EhXUaR8=$3o3>l<Tj<ZD(u<c<I82UaLO->JVy}URK3u=)w@t6{B>fNUVB*U7HBD
z{8l8j5&(w#`n_Gq=;b1kANZs%J4xH4qUIt1xNvm^IKJc}S%B6j-y?~j8x3ErxL~KG
zf3LHOYHeLp<%wb_Oaf#sA4B&0B=xUD==S-r(ltk}#L2VDcoc-Z#J3javBrLM*VlRF
zYr~ab$ADu0NvB~{P-(Q^GVJr6ge|PRlV&Pvm>~s+g4*laaHq@nTrLSnGt=@W=K5h_
z1EN`~i%c?_R2FW#qz>utZdd(;xW533K3x&GhPCz9n9H~Ld1X>Z`pk~Q80dnWV4f|$
zreukOyl31c&omXw<inJuoB`OZe*bx<lR}cL{Ts;M787VwU^<L2kKet%wN;TB_znd4
z+3PO}S65>(Y$v-$z*LWhZs4Z|<G@VAX&ftV`JYI-i&_tIyTb@!VNm?dGd}Qy4RA@Q
zJMqBNO{oF>(nw|!xf!O}CqKH2-$8QyDW|gIP~BI({H}m7nS&Br^h>I})4$!N9%;Yv
z!{3uLZgsyKC13SELmPUVWkv_vID=}@v0#luQWytE2)x9=p)N=;s$f1droA3I`nqHM
zm_e@`+2&7<sdDF{v0BM9@|cPolqtnX+jdz?<3dBzoZ#T&S+>|8OulJ0^6s!PPR`Bz
zS05_=`uh80O54u+?;2ymOVfq0zDooD|LK|j6yK&`OY3Mu<3haHQSP8xnFggGKAox$
zBIe3kLJ;JP)~$x4!DxV%X=VDhz1oUY1azC>K{aD-f)RV0hZyaFbpEXlm+K1#-jt90
zeLtAmCfoq)mVq^TVR;NGyi6f<^Xn;S+n@u!$+u?Vi+`-KzT}P^cEgStlP=G|TYlY_
zS*Ec~_3`AtpMx+Ju)gHmi2n-iXt%SAZq{6$ThZnW=Q%5y>Hc#lOq_&%BDvC<BJ6Jo
zhwL~wDs-tLXL1QWdB^U*2Dpm4SbdbixivvA$3{5hD{jB`XRN?i9bQX#KbU~(g=2Y4
zQ5P=VCX18R^}Rb+is$^$m(St0!#CU?+qo=WJ&-3f`0D6?PAuP^GFTMTbVu3_$t<GT
zwh`e;Qd!cK9~5)J1xabH)cw;A6JN)6UMI>fbw@m4M$H(dUJF85UF)32`|frP8K#{p
zYLnY83C1A$bo<SRxR71B>U-+=HqT0stX@X{vD0<D>P046D_|7i0AdQ(ds+HYhJ`$R
zYW^B3;dVU0vA2&Ew>(Z9&y36=r~v9_i+B4xz(|01v)V6mj6b7kPn}BC+XC*6%PqW<
zH+O^4XfR>{pH%{S3NabOMO6NR(YO4WNrh~5exC8fo`|8|1XiThjmV;NSVew#`Q!j%
zOhRpFeW9<<c~Nf71d7TEhZ&VXxx2p`+Z|!|;P5561X1bpOgzs^#FbG+NRC97FAld$
z6SKNdg%MKOUuS%Sc6hYivVmmrigW<e8f}X8u4;#YlB`Kf$CBg-roqlB%GA1xqY~z$
zCj}DtoZ!=YiUmHXz}v*W%je++|4*Ke76~=1?)EJEjYfo3`F1izq+veGVwiENH?Hdx
zRJJX|&(>U&!~~l_Tv!@*YBZ!FCkO;0YglwwYIzZLl%!p`to_RDCzfbPBC}_cp8jq(
zJZ&<bU<+FSUDr>dPHz+6=DNtHcA*h@`Zg=%-mzP*d|hl;d@VSoVMv5u!1N=6@V8L$
zoDMGHNO^d^qh%)#4_QBsiBZOtH+N$YH2NcbT|UwF^m3c=irX#vPity9l9pe5dRoP>
zA%qc`^bL)Ze;ahkA@_Dp965D!eLenAg92?%e%%6H<o-lw*A&&jV<q!Wg29d->cO4I
z2$|_C?Gp!{+|x156z9wO$}+5|=9vDFWH}q;psR~WFQeq+497PzP;>tn0npzz<NLd$
zCzM{IR8D(6qrylQNGV({I<KSYbB=XD$R(Wx&dg?p|NOW}3LtD`!_>%p5<A=WYOs?5
zj>gf;R}YJA8bm9sbA4>Hr82vCrydq&`z6>HpT{ON&vH)YB+;siifPJf_*hTeijq`?
zDjJ+q8omdm&VHa@9sX1AZMe->r(K_>$OFhyRVkCu8KXI9bZ+ruaV=+%zmtd=(lkJq
zsm^gdsg@j9@yC;S)Z_?)lNU*kx&;_xE8ay=HUnlV6)<$Cb(;;j4UdHU;WDNFCSvTt
z1)cr$&l>7-ywFD$sR7`OOPu8We(V6e6<%5CjdvWU3KgLvHVnE02|i&D{Xc^DfHK(E
zdDrcC(>4L3PGfjRMI2pLgP$N})Sb}R!rAhcTezPs<05)X#w>&$I3Wv0#4jdn;$3BL
z*o9)pvp(mi9DFrK$qLJ49Kvw)PE=5bDzw;M)8Y%M4!Dq5cEz4n@+GsS4g@C#TiC*$
zE2;FCz2zz#J-W`ncrbrQyd*c15KCQC9hL0qY6=;Q>!Kuwl(*OhjxNcSyZxIpYu?H5
zcBYLesb7hai6GPyka{}V&xTkM_lF`qI1xqKd24XkuEG63&Yg~C^e5;mzn#Ff#e^5c
zolzRjZ)%K!5LyLFQ|kHkEC@nFcIt6*^nDj=*nu6v<BKfVvTGO-@YW{8@){`)8G=U6
ze|yg|>RE?X<l{tA-*f*^J38_qQ0Hxjil`~gDXu7e%%6yQEPjlA<VOt+ue*x((}d&l
zJwZbzmH}^*)2@`n4l|~xDnrR<(v^CpXFip{S^r#y+GgV3&*Ck-px;OvsW167?<ovL
zox*JoFZ|c;8&fP*jx%<Y8nK9$d7gWifS+S2MpM|y`XjtC-TojWIOiAM;(Ff<srTM<
zAyj6OHmfMs_m$ECn=w4@ShQx1^oM1xmsN<D{F$HtHs?fF3j4m$FQJY*l@wY%cryhA
zxW>yiIMRxfOTmu?{OZWHyosoU2EqaTS~wnhT~I0aQvH}}BeU7?!gQk4<@bG_%z&s2
zqCiv*+VUr?P6F6ongTS&!(p$QIHgT-n`Jb0)Xc4ySL=Go&0Lmy-iuWmq-^X1_S`uN
zYltPCfWC0j6QqF6kX8B-utO8pN}$;!bM1&eBISC6Tvbon?Ok~&Kl+43!B5qvmTHJ}
z3BIIYb0(fP&kb0-ZKJ~=IBK24K5rnUNWv1^QVOUpqPgMPkXisw4G9nqhbIEfi(W4(
ztQ-MnYqvjnT|?U5=gkTH^z$6`Kr(y*40g;aR3)-4s^7-rRlqw$2g!G?r;9~kqOTBH
zBnrZp`M3jgs81#d-bih~l9AS+uW@`Bi(z2yrvuyN&j=C!512TCz)pxnKuy#nS`de8
zgOFf%uZZ`_$3xM}^8F+Bq@sWFc^w@XZ>)Wl3$8Iog<p8#Nm+7m`Wnty6AO$ZrI!t!
zp!k#e4Kwv?ZSIA9v;U~qmG@nX!i#taPlk2VcshxOMgCVX>Gv;sb>_mwAaR7=AMU73
zL*B^razv+t`dLCdVAg3U@jt5Lf}VMNh_U|GnG2BgV5_UEg^TO*M#c>A-ZgSh*B=UO
z^*%pW)`ZGav+@E04fbyxy!=(-N<*P4kT@^=Nr;D*A8}y|9R;ZMFGtiSLT=p0-6)Z%
zu>}?YOIOY6{_0AdpBxAJCjqW2+RBRHvZYgEJS<<PG(4VQT}7Z}$cDyP+f@c=NZ0-`
zF+p4%*NqE(M48-0NqeF*I2UKft23yfiNsEfZDHh93`o>Ff+h})nB*@H10mh^YMJyi
zb&vT??iyUWONIk+rFg#{Fq3+BcE*LoFRIiIB`AaFxz7gk#-1j<dJNP@g==Yx?FYYd
zOXs~>oGX7&ojGyhyMiOv0>g5YbXPl$!FCq67!89UuP!^hjOYD2_QXw4S9kr?IdUP5
zecl6#{3Q%G9sec<uxG*RbSA1b#@PrW#MT1ms{Ek}xte|w2e<)=-oe(2ZqMJs8BcIB
zyK!;<E<#&ehj?24O5AY%wU8!B%PGeA%a|f_@7lGNKZ1lq99yJk8ToJ5qQ4MVw6@@@
zI<o(`dX`+hvR1(q(oU~2DyrMm4boUJmF70S>&MTmOb~k;Pm=o8)s;^C4>2_r4JLSv
zvyBn@V0`^$)yErUAHs-q3ym?=dY>oC;^CwiM32$e(HKF@o%T`FA3wNm;~RM;w-HKD
z^l412jBAM%eOYa{S|}byo{V$|t_FZXA5Lm-7~*5my>t7N#uZ=o17<hoIfSNbeds+;
zCjAD$c}`TK1{oI5@@`^`={YczOb*c^{C~sK#T}B#AlPLKe)(w3Xt8G^MdF2W*z&SZ
zK3gt(HL;rid{~W@7+_;MYq3XSP@%6I1j>ohMw2EKv9du}5O8$VTQbc`{#__>Jap0P
zh?FF*{GAzZ#RI-HwHGpuyGOW7iG@@^f``5(=X^d8bY}hqK>vN`H*1on&dpbrlHnwD
zy}!O=KLNt_5{Z@pqo=XVcz;o+Y%7Z}bKN#R9#hw$xN|ObCpx3Z3oJ~B^u-X5wYsx2
zNXR)cmZnCl>?7<3>aP?dOX`VzHqrqZ?p~N>58GQsK51-bfPEsWs@}S2#ac9sALA1c
z#`iz3F~4a)BeI{Q7M+dNrkcbD=}Bud!72tBN}diM+HfK`HqO^W$9BV$(?~;o6Y{E?
zH}iFpd^{~HzSR!h3!FA7N9?Yw<;AqwV?QnrG%0{at)Hb#f`JsKrMNBE^)FdJ>Uxl;
z%R;3DR_r^A#E+f{0eU?qw!bWFIr85@2Kh>z>wYkYh~iaE<fFEvGUp^P^p~hZZp0mz
z!rMzPtVDeAr)6Wdsj-5zkO>3bzGc$a?e5icASfS@Q=_6}jgG6yxk-lM7OcU94vNjb
zNuY3H7yHVMo3i%)luD%A*Z}6*b)hKK>SpF&0+i2p+<A5)eEPclz+Mw(X?2R`iZo)D
z+qnw=k&^be6R};QW+F>%w~Snr?X<6P`z%6aRp@298~Lkv(zpi8y_Ni-hkwwyeoQBJ
z$}Ho9rStYPHt1XPNz$7C$<c7Xme%ppnb1tZn^RLn_z5hsq3qt>zZ^I{D;R<)1Nrt1
zpq%eL{LWvAjv2iP6}%N)c#Q6-6`#bsQiQj{#DCeVsEH<9`VdYB&k(!bLZ5wQ=Y8xP
z`AQiBkYxBkj5-Y9Ox%k0ktypKDGOVPELQp@mHZlyc*vwY1*L#NV5Dyi<gEJ8c(^b3
zwBDL&3OI_j5PmnUTTzdQWK;IR7^z|AUO->JsC~K;Rdu9(e0qvls={|=TFkVSx!jbK
zq0g~Lt+hzmwMJ)2p#B?2%xt+vS>7XM02lcw=tT_aii&(Bq6iFwnZy7PxodvfZ&t^{
zdaK&^^vNg^Xzs8kld_LYp=%e!5vT2AM}^u^@~P6bJ^v&|!AgWo1l3U*aneKOP|wE7
z<jcXr&`S21tV&mAY1G~*8&T)7OvJnwaW0OhhmML2gjW3KXS=BZOr7r}y1wQtC?+>%
z?n|iYV;IJ-`TNZSw9$Am9KTmzdjk~+4N|42?7y>QsxrY1j1CP*Y)f5Cl+1nn;cujf
zC%AB%QJ24nCI9V&=E}gQ5hHx1qOzer)hf_g-4@qN7g7;AxAtSZhIyQ9qTgy)lghak
z?6$jxmJVkSkc%K1{BSI*p3-18Tq0lb14*<ilYUKo7a!7vtYWwh9o02IaLEzjKd=36
zLEO)I*NH-MSEg8@wRx44(!U&lw4oLEU=zyV$dCw4xuyGF&gv?Y^3Y+1jI||H%gQlO
zEe>{BC&ERJ;{W^`piUKZ%qR|gh|_(^H8zlS_P?sH!Qg)SDw?6k&${}-hVQ_K#THoh
z65_j$Wwr5B^fUDMjbQc697tn2g85%P#O4$i6A5{J>9(H}CQ}8vGui_fbV=m17D9%V
zJcCFEXM{KI;e<DE)rGOirht1^9-=Cq(|i%_Xs9u5-KA_YI`Kjp5(x1m{FS&vPkoRV
zsXo)1{>E4N-EHmmK)OZRFY&N<p1fy(I`jpaagD~sWtA9o*24c3_Y_T#Umy0)tLk_9
zgxwl3<i)~F3GAt5E;83ZgID0h&qic!yft>!o=WA*#pe^%q>W@z-sz(!Ux=$**9Fp0
z8AN*|Xgp;7g;SM~>sGhVV=n^%NlfC_+y6~>@9xOXkwt!0Biju_FCB)JcFq(372QwS
zK*f%|OsYTTNh~s9nq5QEs+@=6O~!-9w5Tq@O<G*i>KrU6N`MDXv`1{Uj|`M*%=VIp
zw8*+89XB<3UN_o(`brpp(MNLe^UQu&c`2<21pvElxu|IcFrhi}N-23F<^_pdT$C<a
zl{&7zE$DTcs2UxjoQ}oC#DIO|<@3ff{~$O+-_-*G58i;y<ObCYSiL7#W<y^;_WYk`
zx?SkbKWA@saWGkx0ZmB+;6V6G0(RkYaAl++kBn6oY^c~V(W2Hm?r}i;eC3_Brdzw4
ztc4Gm?3ns6&&%-<EC)!+bt-4h2j)A=zQ@xLT@`@2(mmycddbZv*;yxVJ!kQ{?ZHDo
z{GEpBb?aUVl;~Y{<nl!wJC}X3c+?CEbM3TBljfB3@jZ2EY;;Ylh`!~fzDK)pnR>9P
zS^ulX?ZR^vtmC7VaJIdIC#6WgGvnPo_-~kPzlmVmW|BkUU8}U@e0-crZ>ythj=*7~
znSJE3@kS{4h;x@{Q=K^ewy7niL{_KIWh036c-)llSHc_N7`^xnb2gOj78EfGB|*q?
zKHJ6%*SC~C&$TfXp-{xk?+*&g!2t5*Z@uWz-C|_3ba(l2{VsF2L6}Q~`u|_lxViu`
zxM@JCXy>B=*DhIbLj4K&ZQ4b^%q`s=MV1?zQD~;5qeR9g`keCJ+2oAg!^&}<<0h#t
zYr%Lpi)`nm%9RtoKNBt(*rcE;*KmAzN?StT^R7v=9nU6PJEFh6mazpdq!qUSR`x2!
z{QRzqEKC<2(4N?Ud+!Y?lpDdf7+1)nw`f_McYjq5U5-=Tm0;oFjcFlG3C-%RTP+Ed
zG$v3CQMn--#p>UIvPIdReQ4nv>FD!co3tieaxIg1$l=SgY1Lg$eA-SPEjiA}A(nI>
z^5N~?+MY|-)+H~10}r}~*Uw#82rPp-<n89pSB$2@b##vDPqR|{maLs4BNsa1)vJNl
z`7hGDt58Wfqd|?*&vTq>(m!`ZX!hLCw)q}G)oK$>`YBdCMMB@VY$-S~4W8bWuidm(
z5m|D&$z=6P;|Dhl!&r8A9~m;-R%HVZ{NTmvRL1Amg~B|f(Ke?ySxBoou5g&`|H~~(
zZei+OJ<s#+Of#jCGwp-3vB|*mD4SqO9g8nVsq4Ti^)+U-82NQ6S@mV2iyjm=^Hv|!
z!51g|5AgxB@f%J_<Yn-er>Wj2(#8);74^N&zTq}p+VB1zYk*H3r$WHO&Jf_IzE#7@
zJ^Rs47tf$sBI~H%+`=N#VT+!0T|gmUh`-?Iyo!ytD*-d<IGZV`-GL+}9&`kd^yBk|
zILfKzoJU`TGX7aa;CDKbG$v4(`FIS)YiN!U7|Knj%Vj$kuG0I_Y9WJKmU6K!;XKK9
zoX!m@uB42(vjB8L>yq(mSIOG0?}HM7t+!L3Vq>x9A<lH)%P4Qc+ut9o1Mc;sknn?j
z*RFP{f?RfnzwF+^y-xclU-b=#PUAKS6(pCqo3dR>O(`j9Wotep$o1ErK43x`ML?k=
z7SR>Z9={#H2A(qo&Ira@(wH~Sd(`ag*rmFhf$?g{l^Dym18{%ie4}LlY}L~44OTAR
zk^cLu4p(4eZOuWrAN7N^L3YqmXp0&@p7oHCVRBR|G!}dp;lWZbc2tAe09!f>rdqy!
zOPKan^*>6EtFIsc7sP>KO?k(lL$_*%!m<6Q1rVq!RuOcbVlg62mU5;Gx@w8{fSrIL
z*M&tQgdQ)?$k?PTaHL$JWC^)JM6U5x(yP4<Xf`tJ@|J<kAKsXHR<f0hm6@Lv#gu4v
z%5n*i_ldNJ>k|M77tA|d2MNr6$OhkB3{`<a?u_YC0JD|cioa!PtnZFRCTPub=W9u#
zLM0y`^wRk(m9dFQqWq0A5K!DhI727*XCz9vg7at!2Sd!?#+k9NPGgZCS6{Ej=)UDU
z9o@cAL%Dk}k)@1iz_ti%Pz7Z;BdrM^dS}M-I0I*V*ijSx4q~o^P)1aNKP9PW8XeSG
z=A%Q^;h)wYqn!(db#;VCc!#|(Q$XC3s^9fWEgL0(x6J8|D-o$g5;)FXg9!>jVV58T
zKLm19f1bPTFUk^z`{4u(*tyhj<tqD!9Fw$>;59~aBX2L8LoB`ZiefPWaF9%8pf60>
z%DD@Ft)A3wsahsPFJMXmcJ+=6tR6i6^#{h|Om>y5e2dJjwMo!Kzrafo;9oJ#@@kZP
z-`(OM`5_JK+c;HLmv|G%PQ41PMZG@>I|J}-G`A?xrEYWp%LZd2&tQMVI-<v%|1%HB
z>Cj_zltA^<Q+EzZpx@EcI!R3SM5#k}<)90E23<=xtoyDxiU=yv{gu`e2+Td{J_1yp
z#8IGnE6jr0CKNs9M|SFYub_;fiV8L>u#Gry+sXWC%Qd-GuhJ=LLzqO;yPYV*NQpSc
zIw?x|Yng?-v$^pPk4)BB?(XMTQfOyWYK-I^Z&&jX>WoCg?e4!FNysR%)~DWt^yh5z
zU?TY{3&*@QUs0h^uzuPb>cqQykB4a*B%Rdlg{SF!DgM!t!E0zR1Bu6%_=uS5?^I;G
z{8l%e-UtyTXmbVw_l9z%>8TuVH1rryLo2&!vt()w&Mg{G8-D3qILEDud!oI6(rhhh
zek9#Ukg;%Q5jP6DRJlrSX8v8D#_bp)29)9sQE(UAeAPvpHFn3HA-R_LxgYy~33Dgc
zw}`B)_qN5x{l9B=@LM17C~Ozl%6CqZ;BRzR%SzBV6sxJM^{(xgxV7L(`X7W~A;z)p
z@~Vfv&ZJ#Kyq_(mPZv3UFJ<fMR-Mb%aZ5mo9})B>btV(UU{5cQk%Tpo!GSN+hTI=?
z%4q=c1CiS4<#mx~ciV9A#qkZvGykZ4C*?Zw!9d&N#lc)-eQC_a-j~e^lR8$}pp6Jp
z42p5ZvF3h-7r+2=gsu3IaQ_=VmlB`_hdTrD<!-{7!Xta#4`=jcJrSmcJK^z!pScSy
z76lC_D$)!VdGbT)yqkKZ3knO$9;fq|Mnds4spVz+zgx`b(lv*Uu02U5^u<((FcEAG
z<)56_YW3v<AyJ~Wu3T+-Ixgs?jJC=Jkzy7s>=pybj+`KUBCup<f2>qc>yNgA-q{m7
z=df~&mAn*~g>f6-YA`31cJdXIjD_=IWH!RZw8%k5mBtvK1^>*{bpB6VFEf1g`_J--
z;Y+Dw9s@lGYxnXF_W<1eI8h`(AMb?L(4T?&c~3T}6w!#z6I^$`n}Y*6hbMCD^cS2p
zlnfj-z1xs`cu<!2UGrZO8i}XNqXE`C6KK&`pUM(dJbW{i8%YhFRN}5=N0najExj8j
z%WU5~Gbty!b&jI<q`kD2-1&hF^qUXZLOVJ%z2tTqbhBfOISa7)(I<hKPwUdXJ<wl>
zPPt{Y2X+`;J<L`fi9rR6ox0MSm9*}{52i%2jV`7tspBLvbmkBs<YwVhI|=i1SJP0w
zP(HuMS?_Z7uuGCg)$x+r$rS5C?r1Z)H>u%!TbMrYx<*daPsMv?ifAwyyWJw+V0U=6
z@sw!T`EG-u(`On`ZKZh9P<~M#*g&E{Cjl0NH{b8&u!Txdo?(lk%8TWtz?nlrL>+_z
z2Q!xQ=Pnk_k}uLPMJt~zrda2}2`Gb<ZASjM_&n@t=97maFcaMWy@WfPUl?{kXO#-r
ziaKOJdCJ(f*^;Axr;fryCyQ1srh$N!CmTB9Q4?H~Q#(5mwrRN9B>iT9<KpEi`{rHA
zA6B2ubAR`wwTLiRTC?Jo%<iKW*}rwZ&kr2JIdK0Vk|t$T%WIh-<tADpC4fKMtd<pl
z%fBsPD}PA$8;rAOh+u>N&%@=b<K*#-D@qAAeVqRGJtvE;3E*v!;0sb`zZ(eSI4L`-
zsT70=$jWBLRS|jCD$e!dB6?=cuahcP6Z#a2!A^pvL)ssbX`zRbU~A~QkO@H~oH5aU
zx;t%3!rc_92{_5?nn|j@IW64FRsNB71~5)8iE<CX;5oKoLkjWZ#0Jx3YRor3D2$lK
z=!EE@SPntaXMP~<n-uh{-`AYcW$G~h5)2>P;@xSWq#<YbjAo5-6wqFn7NTZnLw<cB
zX{bdsMEIc^|MZ_3NFVG8Nmd_FitY2?&fCKM{OT%y;aUdp0$4x_@O+KF01m?ifmb{-
z926?;|8QTS9Una-Qs=YLc9UAOp{;)UqZl?E*6}Y_o5-ZeVy`CG36#w&L;a#Pb}AQO
z5NxDQ9-|Jb0j(&YcYTMQKb*oCwrc`jnmKUKR*)KZi(bE+T59SFYggV#SMxeD;tM-&
zB%^{3nIZ53%0{|!8Atzx`YsQt*WIo8m0p;zo%nx-#2@^2@4$=2e+W7$x47Yv)eD}9
zusAn^j`|T`0kKazup*|MD>K?x&{{fsaJMF^0|(pF%1EuSt0pvh>f1vti{45rA<6{f
zdMdNL9r`f9@DM|5IyLVqtMCY`t9Te=X7#ERUrZChe(9<^9Lk2ug0L}%sV5!viTj;W
zULY9V*Q9=yX7tTcpQ$!jEu*=^9e@VU-a_N7TtbnWfSHrjjU^u-4LC0;A4#3yoIr08
zWluR5|75o@=Vh@zRoZ6TI~ncpLCl+XdT6N~B6z+5D&P~@Vpjnd8@cJZ=y+sOnjgcs
zQ~kaxcn=82twX$k)NG`gsI#i;*u=>K`7PA9+Hs>*{V0By`KFc_MSPkLS&N}0-FhOh
zd^UUF*D=wnELPEsZFrBF;)8>t^SgT8*bbhOq%i?w!qrjw2b53YPfxr%0H!1KN;Te1
zKg7-IzFXrneVuSLufVn-AW0>ez%LrxUC2DC3hFss;tHoTvo)Y&HgQRq&{ZsJt+7<P
z;qK!^y{IwcuDUQaU$=`-pwIYerQKX+`N>WLsV6{9IcaE75*u))pb$@}o8BT?k5~|%
zsB}(9K}CSJhMW8US8N4Y@1vWmJ4>Z5`M3RtZ5=EEjtC0L-8tJ{oIS7c+=qcOEfe`+
zx(@_VEm5g+i_2C+m5G(d#t3`M2c9trhzGbMm8R(X22m7H3^sSoh?Pb=PoL&V)Xm*3
zlrgTAdQewV!Cxv>cT)T>D9)C?fGSRzx+-cXN~B%c<ix9-9#)`&7|#4_k8PUp(*nKf
z=;(wwrVSQwQ#Yg9Ow4^9aBlP`p2D;nd0N_F+EY9H^7oY|Z#Ji*R}IHVjJ)QfSFC<F
zalrI1E%xpOX<w@jAK)+v^)LO0n8mQzAFr=PvEBd49qY+*bok^D<b79zfnSk$eWt^)
z5f5*usN_bda^^p7)QWR6q+FA8@8Q$3c1C_2MEXkOLpC_hW~L+o_tFdL<>eGL5`iwb
zYbs&Cd^C8^2g<>N)O4ks9CQzBwoH*3^>t<lts}Ddt+=3yLrx}WqQPsbzko)3Mq0nR
z2n0GW*xZ9EcntjbR0KO!9ok>XqDilGllEN6Jcv!${wufqd!kMnvWN~1JHX`piviaM
zDk2+$uiPw@7Jty!@{I;Q2f9a5j)DZTy}qou3$1Jmsw#oyCbB2$`|VC#^maImzCi`~
z`mqFm7ooBGnNTQE<7kLp<oZx8<Ez^;zNNmG>%$n2n(OAeHa55G`9VF1PVX@(`r5E?
zBJq>b#NJ3fU+TI27CBakYV}3x!pK-xXGTO%C`N!JVed8FHx$q`(p1&4>Z89_;RHXP
z(0pf%ZC^5{iZIu+@^QvDQtNL83ojPBAA9E*-qC!7vyf}^(3w3G<DKl%Vd{`8P$$i7
zf19=)Rbe|+IXUb$m9begVch&kgn1_g!IN{97j)(tmzI(%9SLU04k4T3CEqOUFYHbq
zZ^EO$gWf$bkQ+2yFT$R*dY-)wuScU54Lz|AUI7^QMVje4dMmGQGmYv+7WgLRqOQmd
zXi=>Bts1nTS&bmP8~zxhX(GmisrGeFO_ee`KmpPB8NN`hvLa;a6vt_78|lYy`KWJx
zv^T5M*J^d}9m<?yC=pMt5l~U)1OSVl09iTa#H>?3S(0LK%#xgj?;m|SfYYSaj=dt2
zJV2K7!OZ;St{+hco5{!w1sxg`lE?6O!r4B2$Q$-Db}a=4OJUV2>l_IRwn(v4y8qrB
z<Oc!MsB=)Z=a_#e^u-=_u>GNyeNQz(u*D1azT#FF!8Y2OiiH>Eu)GVAnpkol(G2qE
zAlhUoD~q6jxc1x$YuM{rbb88%i*F3ka+vaUd*`!F4o<-Dh`@XdYRY2)rw9ab!?xm|
z)1{IoN8`WUxlNq34AMD_yOYbXYPevdE5`y|Tjyi(bNx&E*{at+9hbn^DdnCiwFSi?
z)w7NGW{XoD=Dp?+b>;ZqD6Ieq$V>o!5R?QLWh4HpC%jqWHs)eScG=U(Fg!hL5J-on
zNP;6J@ih26xpk<OYyvx;cf>n_E<IO6H=5(V-^WklWi3v{ZvA*mJNd{YduAmC0Wnvp
z$mG@lE1<Q{y^c%2b@D%IRd(7On346YOGInzUS&vy*zckZw+$bad1DNooC%XV>|}T8
zNI(8fCeq6Y>AJyRhvR4QnQGUdET$9~fMu59>f**p3#6A&Caruz?3p_s&dCY{@6`A(
z%0JSh<xU?cC$}@Qn;Na#ljee*@dUQO4J?b(<;AT|!wSL~EXHN5Y3*=>b$C;*S{XXB
zwumXKnP3fjkpSh!PZM76k2@|V&pI)~Z8!$5W5<DI%=n+W>>*t3vz{$4;k}(T<(edN
z`W3ZJY{P|q=f4V^_ei_a$#FgFJtMhKmoA+;g>t(19$9dXL9prhOuKDL=c+FR_a7@9
zHNk*T@T)+9cNCP!=ye7qsniK2V0#r}pezP|IyEKy$S<)zr_&#)YfoS=9Rdwi`F8F6
zZ6yC`dMT$OhG|_*4n1<2Xl-$)_-!$_)3$&<z0}H`HTu4#_Y!g_Bj;+?fLk5cktOw;
zB`NQ`F^Fb-mC<@Y0~TU#P^I0a^smP4Ckl|Cqo2xzU``>&%xq_re_Ta5yQ}GPH4owu
zmZLWCtI3w~)@CRN?MhUvkjOC8%d)cyJ;nNV*Wokx7?7MINu+^y3^G4KJp0uU&$2&*
zG(S~0I%kPwCA>RONcO>Z3f2CmYu!Ql-sq$4$B<y?e#yp72rS%HG!rvH^3naoDm@^S
zbB`e+jAJDvReq*4I^vXh_61%RA0ap6yH@6prI*c09UsNfp(q?}E+sc)p68v}L^!M>
zb_xp-M{Kl$WfrKlE$2RwE_B-Xe_ah~<xrKY-M&17A4!}7aFg<*_HKyjY9O_J9FX~8
zH=V6F`)Tno%l+wC^xyUv$I_OUijGr2(d8uWGK|Hf`4tSSn*e?7w?4FYM~gqut2&&*
zAOqfIithoKq3zH9;+}c72^(p`l^xq(rY%m3o8!VYA2-s{w<NAG{94(ZHU^k%*3%r%
z@aJJ6EEgzV0V0EpX71xzbOQjSUMq3&;|cuA<2xtXhtzcFED<f*J`kbNA(*#JrP7bu
zUK&n=O$y?}oip=y8;FvH0;`(|lE6nNiewFz@)PzuZ*8*EadRNIql=*PU=(vrGl7-?
zlSN+syb!v+-IfkFBu2B$E(gc}K|sF0CgT;_8xqb|E-7@c3n@wMsNeZE>>k*9b@CJ8
z`$v0s)}5G;_hGH*k?z&`i?evsshwUY(toSrwAriJW*iwO?k?=WZXrW=Jf`Cqe|}?g
zVgzEp)_bxql3R_uz@J0jnzB^fhA^7NZ-J2`m{*r29DD3p<6-+?SR8^!yO=7P=>|$o
zTS6V<@bRik?X#h?Q3ykGri!r35ZC1r7umc6^O!kiIM-s}wklZu&qca_xB_#<mfxt2
zaXl%%m$r$fVK#4?ax0|ecq&ie(LaNzw%Al@j}SC?egyR}kDkr?Lr{$5RvX5i-Os|r
z7UILcbdHyADXx##=;mXlYCkd~o?*f8bvW}!d>}h>I7qDLO0(aRqo~U*26p$91Ui^O
zJ&<Z`OkFJ2vkNVZ>i5cFjb9j!-IaMHrD{5HN5z+eRPRc<<L;NI3!|oMy7W3_T}V$G
z#V>?==lV#z&#KhjVrq;P0%=~+fe#sC4@u_e1>Zt<41V*Dsd99$&p|R{W`J|zO^5fn
zDW7y(fpn@+jbE%cNDMfmS0eO@^yxAFi+xljnOXp_wDMEx+HMPHeaxzd4Lm>sy`wIO
zZ-DajzD^<!3FRs-bumA@{rspVrgq1`COILuV_C(2reUD9W}?S`58$iauhh~#soy8U
zZ#HtfjDfDdCo;3VN|mSZwiE9aQ(lQd>IBk^Oo^oBJ3k#1!Tx$V{SuV=!W<X*+p7uk
z%&q);RY{Ax?zS)qe)gzczHL+-zEmYZ3_<dkR1!vjUMKWVmH`#R?fB*O;5*14$?y|$
zc;VBqUPV|n2Yo8idmi74y>cOh@P_3T6S52Q7N02Dm_@!5@j>2h(fFRRcrXCdS1nnY
z<H7;E@KLm=l$wSr_%iff0e@s0(CnNoMA^0WMynMUsBQb|SMRwEl_Il=pscZEwH`qr
zDY#apdgkF9RrWX>ZwS?dgLLIEg3oz27;(jM?@Y3tk^*^P`pjPTMsIk0E%xGLsKdbv
ziWpGFitjwp1*)l>n?G~rWjB<t=BlHU(51fkpz$7RM*K5cvY$(S7RuvYqNCsWpdnCX
zF+9IvNX)|*;LbpUXIzJwFXzZhZXF!5Xpln+Ie(31_~m*ARgy!(0<gRreB;WACyAc$
zpdDdYv`+ywy!B=;FoC%El0<}%PXhNVQmgrSnejU<Utb*LyWUiC%x?Sw3=^!x=CRXy
zf3`D%6+FRY=Fz}YEggJPWm}cRT^^79SsQU;mN6V)>!J*YYQz$!(BCv|33pu~*f}dp
z_V|kds}<Y-ZPs1AH)OQ=E#6Rl7;qkH4RkpzBjYB?pgW5yfW1B(Oh~+aHjzKf^G-JA
zw&Uxn29R$#`F=D=xuMJ9SQ8hi{U%Rf(Q8MUIC!3+57x!d7I4#t$(#?^9x!DAg5(^r
zK`U#;Z9qZ%50TrEf+@lJg(+h79^p-EA7QMf7)N=+_BUwMQvy|(F?V11+|+Hn$WfV+
zjrqd@C!M>W%BOf-YvHJ`?DPQn7~Dc1Si;c&ThBM=?Y=pgO8-BUF@6~i8lr2rF$)YX
z-S1736>l3VhVSxrb~)qb>I*O3w5_^7hIIIIZd7Fmu=ksF2eSbIu&c9)wgKG71aEx=
z8|h~cj@8r1Ll>b?Qler*&Fk3Bv|GXm8m^Zu?4eDM-$C~qmip#pJ+qt|Pn~9CZH1@g
zVPc~ezdq;C#8>C8OB60Sa#Zkf5=t@}Hn;wFt=4=$WQBX{17CWi*igf7KVY`QkvH2#
z=m~VqW<YlIntl?TZ6paRU>?FjJ4Px_e-CC&?XqSaipsDoABW@SzWJ-Pgdn{^Rtyj}
zJ7q?C<i?0IEmYsZ%Y>do=2%E9$k;zUAOatJ>rLp&l+l#a6Lju3@gP&$wKKtjZ8eQK
zi$1F^U~XAZlNBiu*Skm|D&2HsR_;&D;X7hC01mu6{F0sdc0KR`3cm32M<vz%ulpV#
zzRWA<&dqTbGJbw{>^rm7(>NK$0|ft8-~q*$4D?oe2cu_37F%M?cTYAy9Q`5@n`~<u
zFb15c4nn8w+E;_d{V{xXe!&lUtChB2o8xT=9};3eP;Y-jsKX*3P$TCaAxw_K4ub#?
zpG7%?ot>S>BThPU$M=YwY}K9?TVGsO@>;Pu(BpSM*d9-5@~&}&&H#jsEWM*1O*g7{
z8u{T0^0d|+4nPN}EbNhdw?TdO3nn<w==u9kHMrZ|JnO)0DV15Y&c>4zJk@@kqs4lg
zU!JMZrNtYcwKV4KJ$M^ce(IA931+3j0@UY20(GQ#Z<B4y28||e4J$N0YH-%LtQG47
za$ZaZKrPTA{7A_^OF3FEEuk`ph#+#GJ-r;mXdvXzP%igrpo)-r|MsN)CI0VMy|^r+
zxK4-d>TWQZH0A9tF*8LruCGRLIDM*qCGSHwtn?h>H~>NcrvWyzLG)h`(N>wWR(r3Z
z^@wgvn}t4XRqK9gixBqrw~mOYYP%7n*!_R#vZ_^a&oP`cV`0UHzn(Sq6pp^BVh!Yu
zf_VfCA~PJGiyNA1d2!1?@4@o118l%s><J~v4Z5B39#+f)Rs$t2I7=K;n!C?*H=K$i
zH9|s?Z;+>)XbnycN7YV}SnoH${68^Qw|m)$?oH9@-@ni<=I*3-d2BVZ+;Omx8IxWi
zVrA3H))p|_=<h&y&mek2XE4@`IX~HgIpdExlyE^-R?9v+63=Jcqpqv^HqE|DF6R{l
z@m9ldDk*RBpL?pU=jmcUQ^dto({xMloDW2!8~xt2D%<RK^Hk=fCy~%wTKB#IkcB#4
zb9@1P=sFb0jZ_uRXhYoqFODmAve}wUye=M5fJLgU**N!nBQ~J-6yVD>(c($^%rZDT
z^$4E_Dx~&-MhLWnU$UQu;z?Uhz1TN<Q8@=BCIXf5d~yUs9|a<{H3%xH084csx9lAZ
z$WHfZdUE@>I0ZJa{eFR9m%%X1O1be&50GKejFmPkGNhbDCBid_dsae|qjW*wBkASS
zh*NMf$hPKF{gGas#?MMJDh`PL7|>;MK3`|0M=*bCpK;+4<&WrDFGEo+z@No=q*ms2
zY}s~jGH8#k98g+4xMw1$d{F>|vq2r~Z?qa{-VO(3A+4z&_jptAPvoy!Fg$NGDD|JM
zoZEo%CCkx!E~Kvm<r~0~uB4V~c9!F+&iZms@Lpe2mfEbr;-iiAs_}aPG)n2{X=qm2
zv@y;Eb*m?zHn{mK)NP3SSMnK7rnoPQL#Pjn8#e?UKHctysa7c8F~}yS_t)@od#)LV
zy<O+V02odVUGH`zZa(1JL_K1+^`o>Bq2a-Ee<=Z{u5<yLF}Cu|R$_@u`%Su>poA}o
zWi0ERlU2?J2W`lJqe21y<a!$Xkbcn}N}D@8OfnI`q@!I8;<=?<SU=AA3wBuAgNy|W
zK)Z<3k%wEd^GKUKxG(>KIwx@#c8*+p-^hjdIX}A#ZW6ddDNgJ{8Fh{YH_RVZM`s+^
zj*+g#)bDrGjt4~tO)|3P7Uv+FAuyj(65}g0<de+)BqgUe-4?o7h~AS)0S2q{Jmy%E
zYRtuCmQ|`}`n(1txENO1$8zhdI0^Dv*GM12h$;cRz2Cawf1Wfo9r%Zz@_kt}_69{e
zA+9z^pD{SbnOCa*ea5SK`;X{#XZ!ns=XTM2^&SI>FvemCEpCfw^}{Jk=|`r=Pd{(!
z3=g&_0cFHz{|@nRx37V1De{`pvdSegGEt65<^KjDz59{CzB)Un6v1>jiadH&^c}g|
zoZGCqrN1VefOenpz5v2hjK;IdwruYw>MI}r7O0Eho1$-p%k^)bu{^`0OC@A4;$}nW
za{j6~3UX35rRr(A@ouXY?7Y%yQ{QRB8`I1{ytpHpNg?!IH;E%I<-TcaXk~@m66FlR
z8OEnH&vM}K(VhFI7@yDlHw76V?KpyBC#b~>xzH1)br`-RBx&R-)tq+?)mE-cB!l?D
zP&d^wa&#K+a%Xq|=L!uXE}y(!iCVE4`TpFld^ZNhFYjJmF@Cg9W@4|JR{X#STSnm3
z7QL89Vm>{|$_}isY5N=8R)eA{zY5+WLJLbq7_6Aow__&3UA&!uEujy4$ZnCX5!n_y
z=TUxIhu<xAISB@`4dDhHV00sgO9cDZG+fI%D(KunWpbkm(Q;a9?*fMmrqTp(s?IyN
zS{xJ&84g(4Tl>s}p8l0^t}DN@5*Hs-PL|0Oh-AP0F_52u=ds0vKio%KryxZ$>1twl
z-42)2at{OgNf6tdUV#0)oHhfe=&o~HT6Ea5nBzK^4`j7H_c|2qpH$MvW5?|rVHkV#
zFMyX$!Kf4=utLDB$Y=3E@MNs)g%%FDWObagGr7E0Efs9j-m%K5l?vpx$oRBFCggK&
zy9W<dY~s%jK{f=8Bq6Y$o~_(Qi&c@5cR?)ZV}lRq<1v+qfiPE{z15$aJvofd%?SAY
z<SSQw>o-`_Nx|^|MXTcz0Fdy^28b8{$VRd(+x?epe$EESBy784s=K=mz&J@_(j2sZ
z*?LngsuH(>3Xipg=)q2-6kw)0diP#xzsa{`N?VaRI&c7d&7P`37Xm^!jQ^*@vy#WG
z%Tv~Tbc0|-ItC@E<D<A{G_QU_i&8Z{&dg-va?SxUD{o#&?k}}sqx5nr<8E`{N>ciF
zx5Le4NL%?WA(p7<owOO$OhJR(AAjE+gSE+`TUVE#k(D^;Tq%smwug(L3{<GGl76S^
z{)c+_s;OC8FAiwwpwJI(yRk!Y6d2~Uto4vzCR~R7XA*<XQ2^?V&Yz+jiT-yA82tJZ
zA3X0dIeIsmEvF%^?!>ML*2bBE5AC$Y=S7MgOuO*i$KD~x-73IoWC6bZR&j$(+tmjt
zszS$!Z32V@7F;h~{0_YI*oooB)Zm0-9p>jl5s$yKH?t&#8x?ywk|~9Uqd_e9{Ec7M
zn1UrM>lO0&pYv7@=9R_C3c44WPOOV{m0&i>QI2YPm!c6Ot12An@7Xicm!U%=`%@U{
zjW)Ap{yn$b_)~`_IFL?ug655k2fD^~Yqve0?UlqOpeVv?TwPIyJQbF=TBR<PdB{$=
z-zy%q8ph6CjKan^hXJy%_eqn(>kJ#|i4}_Nc=ri~ROjEq6{VB`Q5ii>8$dg?>Fp-U
zMwNNDhrKc5iUx@{h><hx45Ba;aw;Sqzf>eAc+1aTKTlH?7IddZcd6bip0zwBFSrNd
zTAl-$QK8Zc{%z)P#hU8AlV+-h1zWg4Yu%Ql%v%x9O_L|>i9>Am2(NG|6mTnN4>Oyl
zKd$qYZl%rc)L2_M*+j^jTQg0dRVqRO;=4G(^3-pxiRkMpQ5&&q1Jr2ip%+d>Y|~TU
zHN<5huCR#^GZiwWl3P{&zK{>W23MYA4+>osfIsw02qtNw$PrWApTjBL0359xQz^yt
zyC1>(56Z)%^O6nWJ@_kDB+9@J5;-j_z#)3l4jIrXPLlwXhQ?}d(==mfP%r<GwAEV-
z_vbF8j;*!s{Z7IdO`zLY+mS{gYMBeIka-X4P|Oqm_Cai06RmgxUw`9u@Boj7=|G(H
zN!v7iWQy1h1LRkwrS7t6>W_7H329y{eP<bWh(6?6HLDeoEsPzmU{8F((VjW{u0nB0
zR9&E@rm7nkjJK~IN3&O5O=btPuBn+TO`a>wsqUfOrAL@MZXN+zlq3I85fR+Wl@M;A
z;1Y&+`M)>;*#tFqnje!#JqoJ>&Gv`hUy;Le#rl`B4OBwzu+e~nT;Au1WF4nSsJaTn
zcz32FO!+AUmNC1_rWs~F7@09+@+*@GFZA^T*<<h8(-QUzxej0Fx?yD0F0c=aERj_9
z^5^EV?9HjyY%9MGI#2C~^MGdo)zX(vVTaYSkhH9lphcw-1EWrXd!X)XoNGIB08@3V
zc<7waHNkJrWTip4n3oyLqAZ+}BE``8wI$gdW@Q02^Pea7sMpyb*6@i&2gbXD9K0md
z&O!$DsWKUJ=%qH7XILU-my%8#LefY}hdt_z*Nax9Q1=R7Jp5c3+zUfI*n6{$eNN8*
zzE1X#u(jj{XVD`|3|7kRp(<bQev2nwV%M{P?kv`SU*z5#B%J&c7nD9-zE{3wXZ4P;
zguEY$X4T+?ClXaUp=69^vLCH&ofa+tMKx{OoszUD`|Y6q{Ah=&)t}G&*Xy*MO&;eI
znx9(y$`Kkz4rJ{F#fZfl?3MdFRmyUTR^@Mrk?B4N0_xSv+bC@j*lF`?*H;W9i>JLI
z0Rt4ub+i7+hZwaGWfKFE*743E{yllD-JVF|dDSffPpr$eVh7W4kosoXNs6Q6YXPwh
z5Az21cV%Wb0DXv8qznT6gX3Q9;TOobe$du|8g(=GzOIH_*Jun7!0vlu?kSAJOM}Og
zozrTib@BmZ4%G3eVTtVBRpKQq?WD7oF?+;oyFl+Qso;x1z#Vl|%v!@B?Y~=x!T{u<
zj6f*B>L6n34k{vvgd|xV`|PJ=<iztHJk#1eaym2;<B`6Bq3B~ZCVY>0ah}}FyBlX(
zkEMOpg^06dmB5Y<rFy2veb@B-Np5)cz%fAfrTq%z5HH%y5rOvIj(d@WAO&_<Os+wD
z666-#14KF$8$m><c3_Th8*5zsbO3A9ArLcc1B@Rxmaw^mY3NgBQdA==q!z)l2$n?K
zxU~~hG;?$#y1wy6Jv`;MUjUT;R-_kZ9iL<4xb4ZS>&(}X-T*yVaB$O{n_gFcRhwgL
zXVZZD>qvqEfL<19H3Eb4k-%v7<xUveV44GOZ4)O=qaf8pWoi<FXaC_vkp;JwY^DQ`
z<OMJcEZBzVrhXF;&BG1QW}`S}9PW;NB+F3-3<P#I2yU3O$4&DnDqTvn-hkw=pDDt1
ztYtXxg(j8Dk0~Z`e8d8y5P14kV>B>c{Q}wU&hF7pXbI%4v8s@sm8^Mg8K%7ktz*|T
z$L-!bOgnyfI*78=9qg1$!o6}x<hBWxujS+oM%`Cfka&|Lz4haExHbLPA(D_CMXDpy
z;X(+XdiO(R-ku3p)9c<+;Y9f;(1p0ud<TaG%MOXLO?|X6p`B6Bi1<8?j8QQQF(Kp2
zVGLONu)R`8&bRKebq@=l=Z*<1W+C-F@4QgJaEr%}1~L<7DRLkJ<r2eD|D8qT_F@}s
zg)>CC{56-H;J?dH+Fhvxt;$P(#FU@Y&6i)W%-N_b!%Y^Pdrg*hDmaaVI#LMxULYG^
z-c0e0t__ez8<HY@qP$FT_|LE&l_cg1<hMnhn4reY^$Z!DlvXRSu?}q3wD+k8rO%#a
z+1{N+a6v5#tsfCO30?Jg?53&G6!#l>p0!^vIrTd`yA-YVzNW2X(gk_O`>yov^g*ed
zRpEmSZ*!Zpt6ut=r#WZ?7PW=+P%WyuLgq>!l7mkPX!W-+M4GQanU?i(I;f7S7B|^B
zTr7R3hNg}0kie?zdb6VuL@*JvAaa3us%$Z3H*lJ9hw?-Kh<3Pd(tgH2^HDvxMd4mu
ziWl7=%Asdt?pi?=XSq$rMF^sZ9n~Fv5GGmitj%1-77DZDU6d*!VfZP}&bwwT6|<%u
z&)ldUE%xswJtTNG4F8T6j_@qIQ)^L?=?!ZV8T3rBBk?5gUL<3><U>>bKq_A|gp1uO
zUI1R}wH@tZCRM4|Fsa)U>I@NH`I77Nn)oLGo_JurfgNE-Kn*u1w(_6{>)gf8$#5L{
z*d<2aZCVV2d!P(O3r{?S&j)5TeISDs&eo)p99|yHQ3xqR6EDL!6FU{l_PBY>nbuhX
z7^CW9!)?5OWm7+Fx0rwM^G&gF8t8T_3(1gfEhj0*6GIh*nIJU}fUCHIp5y=jq(&iB
zCXn@Xt5M?%hO@%P&Y%Wu!)qKN5|cmnl!&ejoxf9yZJGQ1jnip1tmzA>sGqhvYMnO2
z`Vb9X7ZSx*1sX^1O9Mn;0fwW^jf5#04hc`&?Vpy*9Me?p*B_@IN{^dgpFGj6Uz{C3
zm;wLK3;~L;dbn6HM0dZPmdo}hio~E<$AV();5oshoY5p%B|45%Pp<!~GU4fw1vYH#
z^^%ob*nNP|`Azq`9-n^ohu|+9EU$W4^zxyXhP?AKYCo%CU!{N9S3BIJFo<%xrYII|
zmhREr(qi!=Kx+vwe00|RtIao%0n$wF)ANQtcra%wch^D+K6|@+of~V!Jq<9EfmG0p
zQ$1O&?6L@#D|Zy_+XKOuz=J4$!FYF<1KHTqx0GXpQOz2033%Dr`lMa-DJ|%kj1P}0
z*)-34l%pv21Q&YPY>j6YIoM1_Q6heoVZ+I}AFpqEs&sXqySjN#f7@$h{v@vm-BaGh
z80974^$H00#UIl(#xn{8>?zarQo7TxaBg9D2OG60YTx63$Q{=YK%h?RB2j5&;79DW
zPDu265AT$kes!{o1`x2VzK<sALkJCgw<Q{*BU5)QJ#*nnw~cPy4_9sEHO_v?QOC1M
zW549lU9;dbJdZq{``Yyk%$jJGnhv#XTGPYhFNHg9$vCdS)HOW*_n8qp*FDk5AL5O{
z7s2FRmTx_Bay7KlVzNm@RD1C(>TkAs$xypD1~KxU%RSe-vOr8Za!c98H9;3|m@No#
z>H8l8A1(8uanHU+)l(gvu)|7V%Y|b!RJ|$xIPB5V>DH<8cQK}K2ntk!3Df0<ud(Rj
zAG|mHNlD1L13AFQN7T}We_!7KuJn6tVwWlWovsce*-mBalTiMzUGKLsI2jLPal{e@
z`Fid(b=M7jd=!3*dbSk+qs8}nPsG&?%4Pp=)XXdMP_`C>?9Xl|5`_K&6pB7%5t@2A
zkz+RF_IAL-U*qFA4#(0k3cpRze`{irb=9c%%t|iLHt7w`u7zDAtt8!H5sAoz{B+@v
zkY7wfM(+F6Hy2={6pq1qck2#O@8ENTEs_5OVGY?$kF=CQ;lgd|7cf=!u+?)U^5-g)
zzz(;*mhtj447J*A<@B<_UpMu5gfL*v9Yv2^Evrt~D{cH?FU1n3u*~|nBNx->^rc$k
zaj9fTHdOy6-<hrfN4h{I7)G>m54l0)*d#A=A%SX|jzHu$a>k$*uYT%UH14>DmKx+-
z(E^+iAzG-jwHh&5EOK0ZS+kZc^M5A66?@Ktx?M!L#?|wxcHez<=<`u{b!yf;)f-I{
zNsT}@%Zp<<#{M6bXWUc&bJr$+UWnHO<>J!{FvlqN0SvpK3L-915lCC~-VVOXy8E1=
zOv0a^WE*btF(kgD=Gl)3q*&Lh%I$|{vA4h~>Y#u9?F)8F^+IK>-`+Zl#ktXc|1na(
z<=l~lyGXbGR4Wm33k7~oDEe1Wzx5h5XKz2Y`~i0ovK|lM(mW`<_WHdVJj}|y=&(wT
zDN;~sm!Ij(sBVr7of}arWr&0V)rV-US@!w1$|FpCXo!GDTRXg<`tl>ob*l2jh&{o*
zskJR-BFYjD`(C_SnIx1niUV^R{mBysliYNPxJojcTS~l}=tkApcC(dVdgd4}zS5<_
z@iU<4w{*HYz)bioD@)D{Z_rz*`UMktQS;B(XC$44pf<dw>QxQSI7wmos&Mj{0H4(>
z`X<^3&moOTJ1yYG@yw!{5*v)N-W9%x4#BVL+fPkBPeN^go%2+uT6XGts;o^LnQ}@c
z-IEq>9IdV-2-+DjA8W%ruLB~Y+_TUl{^4iG5&*Z$1mdu5pnY24(Uyl;ni-zQ$%VYz
z8{BbF<dn~*Ai)}q4g9q@OwyBO@>w;ym~!oif>qvdU9lCmQMLU@03!So9;-<N*E<@Z
ze`$gq4bExDl8IDbK$2lhGIH@$%SaE(YktDH1s{JFCm!{O0HlFbko>_nLdKTbrjWEp
zIB6%eJoWJ)N_(=0@SGub=d&I@drVST094Ac5NWS|HiA+&C+vgoX=vFJs)FZLsd~U9
z@@xv6qvuH`hx<2atJ+<e*2Hd(z98>q+D`0Nt*iKr>b4Gq^iRdddvkK=p9)*;Pk+gK
z?UJc+GaLCG{tH6JZ?sZh;B+_(iJzq6VD;k3?Lq+aPl%WFh;sqB5?8#Q#UzCym+4<(
z*nFvEn)vOMSgrH19cg-V56Xh^{7Hc#giNFk7N5^?8d=(Swf6}&{{gR#Z`Dz>sdKBy
zQuHP99Rp&u#369M?(2cLmMZlfgFwrcqkkU?XGj*FzzuM2>*Y|PRZ*0$&HE9!^txkq
zgSS8{-|;XiPM|`|Wt?gl6Dn6pStsPuwny$p<IY5Q|7%0^+kKTj^~f@rsx)qbq5MCH
z7um<v0W9||JY%xK!ZO!iD*D0|k47?RW&bo9J&c*6v+&H+zOqHjvBL^D;G}pwnUgO#
zD69136hdv`V};-P$`{gBF5i6``Miv7@ooj9)?86E1g)qtx-1o?(Ml!DX;#w<nkSg*
z{NCu;(1Tidj2!Io(-mluVOn-5-Z)1Yb6bskfr2HIaAt{ii)dBL5QG;*&aYazp1cBL
z{}xjcA=pj8kN@EaVq=_i|Dry5{}u}USWwLQ^!rlMh3j@C=zz%3jOd%_(ZV}BhGwsD
z>f$9)y64-`Fr#1~gxmvSf^Yl(O%D#x@1bvz%jlI-8ns4rZLA~lbH93GCSdKTDfJBX
zllvCRs1dmeP<D0wLPT+1$XuCrrG~y}64+bE4@QXf%xWtL->x`6P=Ys_IsukAo=-eE
z<edPF#59jhQTws6n-xcmsF<2K33X$UC8=v!afIKFQ6?2x>zt{PuJ*g1-+PZ>Hi!0H
zGZL3}A?=g(jwlv0PC*6Ammh@5VX#vi>07)Ub^(Q)%*6I0C2(bpc$@IETH)kX+2%N8
zT*(FB*919Pbz+;k(=KF(sD26C?NbP2bCuIkm*sf5uS5xLMZv%uIIM)5-!MxXmF`a{
z{WVkv3`U2BU797@mFQsLLWcX$@`UUQH(H5=B!x{AKc%mIAa0KP2FQY|(fk0m@biDd
z9hS;YD_+3!5R`K8(G3LXn}I#GH%I<Y${6EJa`%3`l#>!|V*a1fQ^}Q*G4CS-JSYaw
z=;M!pvvQW1eyRVaiKcHwHLbZiwW+{oweBnyI#)L(Wzvjn)xVI^Hj2S(&|=zS>WyU*
z3|=PZ{M)90*e9eR==+$l{VSJB_fuDm%TSqLye|y5*h@j|CHVn!-KfsfaHe^QgwE3o
zFxWjgpnE5dL*nZ0Onr&?(3+w>EGyh;#ySTw%f&xsh}tR9XG4eGNxb%txg%_sNK<^X
zyjR49RUKLb#ephCIoDb1YC0(~R0j6FAOmGPj%|*s3o%T~=1)rPn((;{vP##>8phF}
zah-R9QNKafo}@kA%VSD>a&3r3WMj{cb%fXA2<8JbPSpC7m2LP`6|vC!0~F<E2~*GK
zul_5s!UGf8P_TKcCoV>k;FpAeJXv<#@;GN4@5+Gu+&vOd#U#?Uq67*}>#Ys-hZMMf
zapONNvKC}UJj4ai(Q+!~SUXaeL2CVF@y6tQ5!7<hUQx?tEnE~&mjZ%i<bE-KkeF~Q
z{qIOsu@_SJR2T3!mUK|OH}67qZBKpBIHP(pwy^I&+*Y4Z_)GZIz8i;JSny(mY9Zfk
z9k1sCFJ@t3RR!ld;%OzTK!0p`9ZI!dk!~b|#&PVaA^{Q(^kiUqQ+3KwA=J4F!L~uh
zVyE`7{}uRXi6nNqhS1ry?G8kJmi)&SBN)x)`kf%d<mV?%={>1Z-F}ivwun{;6C~H)
z?Y-+xb$h=m_=a%|=S~=kq3Nz8M9{#yFm#?Kea@+J?}K*!K$xD+kFCV1Q0DnfQL1gp
zY?b3C>axiVcTi%MgF)!Ig;!{uT6<*29n89U(fEs3&tiu^?i5Z^piQM->Y}1M>69@~
z@J~}mCRGTCwndTT2Ju$=4GAu4&!ld?N3?tftskAkAG<Q=tAgp#oz9gDa5iwLZm#!;
z%<5f<^9r-&qOWRg$qm|bV;a)12*wJBTkY~RfBeE&al!0Nv%PvHWMEMVIdfuBS_H5m
zDmkUzjp0hTok`|vAS`!~(jnGacfL4j**LR!WZpL{XaF7@|FoINFv{>Ew9{e)arVGK
zwg(}>pS=SDhM3@-bRDgJz9?mYEwsTcQr0`w1U4~uO)kpEA*0Qfpoh{<B89q;xzL)K
zG@r%?au2~JkZ<TB)CX!UpzzPv-Xbt|eDoO+)UbSP{`-P}0zm>FifWA+#`A<vlw0$k
z6nU6^P@p8106!x1-EXU#kp32anJ?sx1HkC8_zcNHxyEvg_P=wHZLvkj!@P~_?2&8T
zngk7=1P7mSNUDiHRxa~3g}ot+_%x|)cGe~Yw-B}SUD>*SH|c~&eSR%_B1{@vG7d|M
z3LxNuEmx)kh4NQ%GBlzB6K)m-%c&3wKM}wHmY2jI3A}`BJ5|7+_NOoMOmee-deq&$
z?X~i22hr(p^&U7tkydYHz9-Q&_-mpc|NY_r0+%YXI<@@jyk{H<ySG|x1@ck9^Y7;o
z{Jqt7i}i<b_Pq@FXh}URR)jtQS6E{W_aE+n4A^im9*5*{4an|)(1Otz&~RmP`VWr*
zsRK70$>ZBEANQ!EYA-yUCv2}u(^QCBVV(vu;K-w|G4UG$VjuW8brF@LV|C4ji~nxx
z5y?;K@XjH!Zq3TKhX%_srEF=`*trh1{-N{+`?J2%$d>&!<qSafYRY`-Nh4Cx-eo9C
zqeVyRFtAgbZV{Lf;Nh**>!<BM)bi!KV39FSgR|&7^8=&E_51E%xSyPDF09VJ!i4e*
z<z=kT8A0$o{qB2hyMyNKcQIwu1ETxE-MxUa?p2hy%Dbv}pFMYMEW1~i57tso&^NFm
zac)|JWHg74=XMR`-Q;7Q5|a%wSHQPcfuImmv!wMaon50MuRbS^s8ru0ggjObDiepu
z0(r0*jY6Uc8HE(!9QM6Ukfqplt#;#%vjmgKn}Qoo(}ZJ)`W{!^k&b@>QP`n?fc17%
z1e8mZae46dS&hi@eBo_oPyXI1N0V6{;^?|GOF~XA&F1M+N?Fx*1Wl-~4FjO94XeS~
zFP~dSvvuS~h~N(>TFHZ0VZDMNM#N>O=_YO_E4Pel+-KBSr7K+A6$$|&6V1J!IXaqU
zhHO%;NgKeX+V~R+R#)3nuk2xLc)omRO};U~kJUTt0ClRmc~eK2;5^Jfnw#_9b>+W8
zkW~J2`_;xf0SokB=Zk%7<Q=1?W?4;bAHp$3jE?}?$L({P^bazeWK=}XVi3EYIh(?t
ztWWcvG87OX5m#vN`*_t<IN96M<*Yy#Ui%_J68wpjO%k9!XbsJ@UJ{Y1Sn9PqJzCiV
zc=pGqmFb%=+E5~Scg4xi9>PC7nAWK!6D5Wy?0Rt!#w0IHnsmRnvZ-=ln{fwH)m7)U
z!`aqM(@Ic~HwMTRra3b)z|s{@7n*CriyD-iF@yCrDS9@0#dJv?n7^+aL&5xlIK}p#
z?k`@~ZmhX=iF;^<QGl55iNnbn{X?gRn%a`xW*N&|<BPrLO1!8A1gq8bkLx@F6fHA}
zwfM0J_hOly#Wp|4;@-dag*mK2Ib<!V{ll(5*M-Fh`pVZe+VvsgCEKkx?ruz(f`gqh
zbti7=3BhxJzhGCa<iky97dkT&<bcsx*po0BAt|G5wn;fMyeY0tc^M4^7$(c5+4oBc
zUl)XPjOj7`@tXC@uv2crf+Lf$ZzpZCw+p1hU=Gk!O`H~NUMU80q*gWSpr`K~TbV*@
zU6A26&3|BLQ<S;SCNio-^ueaE{8g=rC(UqL`0(BkPqJf6S5<#0G+xWYWBQ)W+sf!>
zr(BgDag-!??vn;V5jR#8kgp4(MC%hNRsr#X-k%^`fC4xB+kZGJ^h8rELB*i5Bk*PN
z^wY<&R5DyFiWbpqhNx853Pdknx9j0EoEH>E;k9U5x&Zu6C4jsjMi62DPoYvT$`gsG
zYYwj1JEJoV)bsVLupj`Wns`KU==4E5=y5~1KXw-~l6yfVYE5&r1~fuV(QFWSq7P&r
zJ2T%MBZ**6jD0?;wN7inJKe-WtsI3#J)}X;6Kit!{H|J->%I{l5s9>?Tfl10o%l52
z^A5r6Sl_;KN%~8HnS3$JvNP}L%&+NXb4cQY!~eg&hu)rIA8KfGx4C6{Ck065P;4Fr
zsBvG%A)HN<Mlio%Yfe8F)V+bolzTLb6p=K235-0T9gU(H<+zp@5R>O8f*cKqzk>($
znU<8aLy-n_LENs?Iz=8l)gAlNoAF?OJA#A@)uR7CQQKqu`ln<hj>GI(8|>jf5%aTe
zXY8Tfst5;$OJ-Y<<|snl35<F2u5rVkA&vnF3~$_wWB0nRH+-47DO1(ELe=vWhUN_j
zIkb*>1z4toEUAID7SVfW#MN(R4pR>)G*CDQXo;nmwd~v$Z-2F>#|0>@A=fh;Em%f8
zzj0ketC?|(jftkRYS&~ls>ROwaKTP6WKp?m7{~ErIbET=QRxyxX}o7l7WG_$5n5<!
z-)ZLbO+=P{3=dABjRGvc<P&k!p5!~pp+_8eFP1wm261N5s`kzxDb(eU$DB-EmkST7
znjs?_TPH5W0PTH`s&DaLiq-+g%eRn;3TS;A_q##=VROfnz6oE$bh$FJ)V7jAfDzc&
z=O2&K4CeIXhiwPRh{SbUnD<yC5u;51c@6|7>e--0z3c1H?Sv-#qKa_XfzL+rS6g<z
zvta<v@@y44(Beq;TkzxUN%gy2o?7_uxaYspbp1qN7|+~UU*C&=jZ?8DtzSt+DKSgH
z9!LSavI<u{8{MR0i-?n?eOZ>vk%7jEPscM(yud}W<s16oHsd(xTON8FK899FtDZ($
z+&(fW1nEeOYRk9^efo++aO7dbehY%01wj2&wd|(hiiZ*SrZ15xiGT3Z;fTXqfQ!2E
znN->(Ys;?AIQRLG8bAtc?%$2bv;v)gV<4`O-bP!j4Rn(2ntv0&4#^f|-Q{8g14k)W
z|72Od;dg>NCRRPA@VT5GSz?CslN#rbjPx}%b<%dL2jJ&e-d3L3YA!G#Cao^|XBG3d
z=;KW`Ll>$<Zg*##Ru33x6RSJqz5844YAxj0){fF0NP6F50pe-SE2t=5+Dbo<qzp|o
z{q8eq_USdy!)n+;Yf|>8kMkKfxvW8CDXEpLF}oKBl7JpzhP(8eXsVu4#g46{kwSdV
z)BK=SBSVf&enk!zO2gzpnoUk{Ji?Oz<4B}JA=I~wdv&igKVVo2SaM+b5z}~x_Q$FO
zbP9Nj3O*~JWfXKWspd-sai&GU0szUb%<&Vt63<@WbAfi~eU_;};T(#CXN|lGZ{%U*
zrH~<i5jDkRLFkf$9557K?PzMw_45SVM22R4Oqo#AhhA}jJaOOBpKMOJnH3NxhWs@#
z0ly6)%%j4}p-DO~WfJ5(&HjA#%Tly%!0(%G-ohVKwY!Gt7I639nqX~ed{3sh3BxN{
z`dvQNxe0{st=v`LJ3NJyoDrK=Y-hICXebj$mg|Oh)tzS4?|`$gG$XYuMf0X69U1z`
z)y=XF@susEdbMB_?aO<4@m=JfKMv<-7Fakg^rsIvj<%EOF7~p2qO$okF#1g0J8(h8
zi!HpaXfXv$gh>P7=wC0rfGnSW#@oYQ{!)zf{T%1Hc0GlJ5XfzSYtm|C{e70$ZRew;
z^<Os|x|9cN<N%L4YM)&_f!EyuQtjP~-@1(*b-jBQ;^R^Dr{2HY<(214tgD!qIk3Q7
z2=uQW_3k=G3tjB}^f{FDp6f!78r;C8V^&AfTf{(PE~<3vEH+C&QNn!-bG3IA5zbSj
zJ6Jc6bNRAKkOKr3T1^o(<1&b$P#ugheoAkw?B^4?@erVChhgT>7pEhgDnbcf$x|Z|
z4zW<1O#rowW`c4}pe{r8D@?K@GL7pkuL8Ki$$KFXkOJEcc%WRr^E7JYsP~`z`CuGK
z^u4_9&8IX|Vw9t(n&C=f%kC3vUw&23dw+{~!#1^WP$wkw!NN&s>RT+$j~U&y=)s=S
z$nBv~Mm{S-K5g1b?8{6<?Mc))Kjd|RSkE*JF1U{RoQq0Gc_FoY5-nHE3GGdT42JQg
z7WRbs$q=(Nni44{f?;t)q95X=5}!oTMj^cq=WW=K6guOOBw{qK-u@0TF;ZK=5}bY(
zze?qrPYsaWFg?bfRhYJ%Xg6h?P@r+g+PdP6AqL>Zq|c_!m(Y~v&MJSXC}kaRrDb&F
zd6Jr-6b-mKatNa;(11j>-3`OLD)lW*%}S)Jx`%O|ueZ5DPm9s8uVALKa`SOucyt3j
zD2zZ*gqALi8;2@7cGwO<FN4%cqjL{4;5VqR%UgX6rZfllsw%cNmZ$n$c^DBy+Y_;K
zUz<fvl!mJ&l!$Me=8j1SJj$y<#p}SZ2dLOcr8*r=1?9$NdtgKSgkzvGU_pH17CR*L
z(hc%>czhwrkEN9;oQr&P0Pg#OWkSfR`Qo;K*xzlRqCs=cpBb*CLiR9so$ZbVCk9Zo
z(~-!??~-7hdG>ygpGHvGAC_54Tj7^&GX@M}n6|mm>N!P?Psqy|GX?3$o{XgFez(o%
z8&tCq(zOM@%)t9Nr+k=w261=tz?VZp?!d5fh3(AzB)aBePxnwQYxH4W*t1Z=qTcwl
z=~QppK49ee3<12B;aJ!-P*`<c!A`zC_w(Ma*OmgaHHn{l_Q<ybOtF}0z$m-2Iw3!n
zZV{m$JH6d$)vbrFe@Phb00RkMq!lc$wzc8*Q?#!>D9u~?X;+E8$L9&>LmUD*c3_Jw
ztRil{s{8+ifcAw-QYX4rU#(VYosk_k^M&Z~-%%y?e<Dq#_Z-rSitIdRz%gfJrzy5F
znwkq5tFZXk_e<BM36yg}{p!HiGkQd;Y04CxXl9uh0VHGhl}_EBXhUhWiYULSEY4>z
z5!2%_F}3R;>)#;nIbFkpLauzsgp4!&oD6-w7Dp7mO-ha@9L(5f0F|<(T9mJY6%^<+
z%nWL&otRFl7`RqC+GDO7Js*@Q^B_nc_KXYo+oBKx>DVY_ky6s*eJ381Ed&$XBOFb5
z7QTyz!i0<{lQvacQiiV`D5;jvf=1e2E70z2myN@)3mm5Z79<!^TxjIJC4GAcG61Cx
zKmQwhT?jQLB!xn^z89qdsyvu`WHq5@wZawh!%w4D2r9qOz6uO76O;pL689VR8vD=V
zOI3UGp5WGNNv)2Xg07JpLUgAlQK+$DrZ9hV9eEwHEuN^wO1t5ln1)|^hJ}3ug~&1q
zE0~R*aF~0FRyZITk}$7)Nn+A<h>Hlito8Y&XG2P|nuk+Zd~}7xrs!IVyxiscFEoDL
zvMfNe2GF~d__xfdsLN##Fif1At#OD#|JVyglKAW;?bQ^+d3qcUs0?~Od<_`;yt?RX
z$!5`)-~aTFLJm3QVkOR5#@xWz`=3DarQKF2Q9RB)hW`0`zF3mj5l?u&H=F1D2@0Y)
zq0cxyF+N`dL<27YxhH2?$-JOJyWI`r-P^MC7yskAuckyBt^T-+$Y4LP?6$C^t=`h^
zV>p5WZORQyoVD`m0g~cY_9>lewh9P+T`vkk1VX)y(6E-ZL!`eI*{9No<_5DzddgVy
zVTen8gVGBqRP==x(1%mm?S!7zbPNvuc7Hpu|5~Z~qS}E#B0c3ysU3qTt3s<HjP~%Y
z%my`yMZijt0SMR6RcD0dkd9~4N7QG^4zajCpCE&h+Hya|MHBfvJsg$tK?5TLvziRj
z1kP<FUfQV7N>4njG|MUaXbSHCc%U0DJLX*JVYn5Dba7|Z?6U$CatTu@aaIJ<S`HMN
z_fk%KG(TMHxGbsR5)mpZ(CP`A4$GDVrW7DckXno-E0T0haXb0F4C%Em9tY2~ugSlM
zJi_%m!_>CsRZ0`q=X;ql*8zr#YWJDgszkyt8wj*73!*=~w(s4*l&RyNzqegRb_uZU
z+y&wlEGvLRITB5>eIOYRhr*%jw(1>rj2;3NX>@R&;6}1c*S@%Gji;MYh4K=sb;CHh
z+o~xMT%J^b$DqheByw1DAzaJ;E8Y=lu&0rc{i|eqMW~4i_N=JMP#L&t@bk07!SvwH
zK0|=o@|D0M6l5m;Ju^JgMmKHCUiCm_fII_Vfo`Vu$_Wmve12#JQ*{}7j4$DfvJgmv
zgn@7*s>HO(0|0*@fQNX_agySfR&1p9%*eMBxzwLn1ENL!!ePl#mQGXdJ9uciisH34
zutUBDF-g4Rj4PdzgWuSBHxEUce!qn4^yz`HE-I2bPa{O?^#$|hT%&=(*eS*U8F0_F
zqV#xtP7)Gy8~mz_O-uSG)BO;TR;uz5P#15+mY?HE;C%`|zj(VyV-aIOIxG?vJcB{d
z2&R?H_BSl?+K&ZFtDY~632H%_R-DZL$(o0NVHgDPyz>b9&N>3gge>|;RmEyIHzy63
z>YOnH)*x9LAH#lQi-#&l(F-BgHs<vj%=mf@(inXXK^<HCZ8|okm(EWAaj|X7(a;i_
zpf)-V(KDJWea5iNY18W5^O27lY<|T>K7?3h8voFE@ligb$Cdwi6kQ_(Ddj6|G--YF
z%pL>gkGkl3kGWp^yU`L$ViGISye`BzpDb}<A^o{fHL+Aep=iMCHyX2bNZVwu&{XA(
zboTp~a-vOBj0Spl2GKVJB=V#2D-!n_mio2TA&liR0_!?`8g5ru=6E;JaOQ%qv^CwY
zYM8EWTN0R5<zQ`vwAG`$wCDjAV>S2<_nP)O+3yt1SdK}Gj<iM@?aXgvuOIXk$0Ci6
z?F}<3i+>F3C1@B%i0Mht)9(?3@u9f7Tbc7pjpsz>h*LR#aS#gRswxu)%e9eP;)gMp
z40<aBY5$8&>54NW_=y3yIB%f8kn@A@nZ2DKeA-FU9=d;3;{4atY+J9huXTg8*Bh<l
zqB=nI-@4*`!FLLl8(>8^MCZ>N9Vgs8B-_?p*M_%n000g^0jLQ8g$RF_>44hWxBB5z
z%D9_+c(H9-*Bbt1NWcx6N^!8KUx>K!_^v49t3BKnRxm%gn!=~`YIrJQYlSxvmmQ0a
z`7wVcUggO#T`LUE+S?ps9xTZZbG(5Tpgu0keFXaVy2kVxNF8mFIl=&<Y#Qsu3{SC3
zR^_>DbOp6#Rl21s*90U=1bTz!=`_F?@>x9>xCEvg(?v%E*jrXmsxqEUI{+m^0hwFM
zSwM)u3wNA2$d0B@`sUICN5OU)fgGygJ!n&}i!B1H{U|`!-2N8`%qQC~e%!&gBr1K)
zAe4av$ee0Zag;jyE&>!)03^VU(c=GHnQlQLV))zsHSFLFt^dNos4b!o$u6X$)u8No
zV!?_JCyLwjbpU`f#LE|(?;2UB!2`vz31&*7X)UvE5WK;N0DHUgKP=p6mJhJ^-XBtD
zwZsqyl4KUS`{o<r%sVz~DD5rC@S#F%hJLQiRG{cWkA&mNqaMK$58>7~+YEs0Mt*O@
zUtvW-VK=Ex82}KLXtRyJHNBO7@Y%L@fAf55gHLyNm_>{Y@TQN{$8UQRT4n%`F2gmk
zr)na9iflj%cpaV_bpiMYKoLis)>}!j<nt()C+^-6Jok_}`r*UUwzN}X%nWp3^d#eO
z!GH|92^Lrh`b9+;LM_fFu{Nm)F?h3KAX&d>K*vFmn`X`1{RFsSz}l}B?DxJpV7f&4
zW9~HN;yH1E2Ih*G!eML;{vgSvmku^mmC^^rD87OUTp9MgK+7kYH&QLH`la(*_Ty9w
zkJTWm#mk1%!h*nfhEn)ju1E@RH78iQTU`Z-YVUii{+hoIeZn)cL~!*!zx5j=yJ>;T
z*qrI7L!57gWQ)1eA_NQLaWY{_Cnm6q6Eehylj0IgD1Vl);z71kylIZHY5Q(7<|NPe
zPc!Jv9Ph)Cx@LcN%w&uOjiiG4el9$UbVQHZ>~?l2@TtgH_Ns{<jKSvS>iSVs90+gO
z3{gV54~NSv&+;U3S(KN-V2~={+v0{H8H^~0SWHpxND^~$2^`NEY6kU}$^v#7n^|Dd
z0zM9Ky^WDDoR2@EV*mWLHCtOM@om@mIx!Mji{9$S2MSqt_2+r~0I^9Z(A1_OUlVQ+
z&A~1*04Y*={Oz@d0M2_Xv@<5!FT@rerrW(gxFKKS@(X#gTeE~+1zzNQ)OF>P1$m6m
zxE)(E0pmC>D&aIQ^})b;8f76)RECC{k(MP0-9cZEHZUpQjwdq|h|Y8`_L9NJf5ZK4
zmi<Va0kKT)JoK3}EopbM9rRN<+LfLS9r%hAS)Q3<_5%I8Ut~fYxHMk4*2UxW)C8TO
zPF~^BfB9pqZS1elz2Pk?Jw$id5v^&(Ytzl+J=vy%o&^XOR_Ja$0+}cm(z-ljM+Ef|
zD%9EnR%YZh<_4J{r|@shuo)nDqkHZVL#b7WrrEgKW`n(X)dLp;ocukD_jh^^L$b90
z(_cpPg{N)~O9u~fB~#obLJ9OxUQ?wPiv$=TC8@P%{#Uk*y`>&g*(270zUmUc=-bKK
zRrB4minv<XU!`K&8fknobqqy*T-r1jnmO@JgbJ{HCTj<@H{SmKr}b&3tTS47sf~dm
zv<&%*>=rX{VGX^_C*)skZZ;QaAu~8o$P|h<0Oe&2SX7s4RoZAttdl_LB4mvo#}~OR
z`%SGWvq_$6*`sU5XvOd~s=VBr9IyF)9Hj2QNPrDfuR>8B=8!{s(uslmf^d@%J1|N!
zobarRo(2n$l(ng1443(Jk5|GN=4;iXpZsnYrBOFR<GJZBSlRl1N@ms=;nbB62<%`R
ziSEY-38NmgcZ{8+19++4@n)_JJ};98Et!dCx)tVisGL02c1hwCnfXsjuy1f$0ZZT?
zAKw{1XB_WXR8oAI8C#R6-_^Lf7oN2TXVMF1qt=#^;^K>5DwwaZ0nq35BqGquw=7EE
zOT?bx6l77M7y^)9#U?^5?pfR*SwN7f*kio^?8sV7EDh~39rQBEak7I%mC}QO^YSzr
zj(ah1zumpGfPNnFa#b@VZuN$`4l((}I=~HyvQi(BQ9cBw6fY&FhvN7B29qB~kd4@o
zEb9A2EypBxELlw-5sDKGJN8WHg-R@5mC}~Bfpt?Fa_owObnb~?nd0z*EARokq1$ZY
zXX!lXQ#3D(!vrw!@`LxMe%*5YC)rP*D64R6=FmVM>(vY*pnTKXIMyJDNA~ARdWf~Z
zjppLt)55BK7bxC~+hUHN;FhFmO5@8Kr!f<FAg`?Bow}^}gMJydC^}W>!f=**9PP8P
zBF^S_lr@+({5U6sB4&IYCRokv)n39CO{2|C)W!ay(IQv9TkMVJLR@k_S|M+A#~UsK
z*xh5aO8W|%<C9k7Sce{56#&%R2aoG`VCCpb@h<N|_>kDs4L<~jZo21o7LS0&E4B(*
zZ{;EV#%7A1JM(m?Z@B}J<AT|eM5v28bG&VHPNCn0J+EPzB_WP*5(<WnCY@RxC%4#!
zs2QwgN~F2+<Rn>-T{<Y3tbqt^n&JI&Zf(czL04l$BiO__yH#WKAvyNQ9ETibw$-_+
z)ittavvb42?DauqkzIi#hh;YT2P6EeB&Y&u1PL4do=qf6E>8TJf`y-+ZwOkWPxlDZ
z-~h3g23ZB2?~!C+ViztPt2e}d;>}poKRE?zW&YkIE;?Vo=Ydr&t4O{La~bj?=7KOW
zh%EF<10s1yb<m;~qOFrg-1Oa6lY6dEDFe5no_&}^|7)8S13Fp+<c$0C4tUm0(C&h`
zyZ-^ZC#6-qm@*iFDRW3&+1LeU>zEjx$7vS0*6UKho-}|)jAUE!;8sF4$n*a7UL;Ge
z+LSG75x-*9D%Fd}<6<4$$iA;%_8NgUYLm^DJ-sbk$BA#M`RV`qwRGK6lO;^Fpy9G@
zyUW#Oo4t40wr$(&vTfV8ZQHiHG+)fsITJCzAulpxt;qLzaI1znl#KB56$rji%tD-K
z?+K8EozsoOUnG_6ckGfnUG`-QyC^UaRu%|PDQfn1TLsq24F-xrFmhRjwcR$pLt*RV
zt$^1me#Gut+sG#u281Z508J-fzlJoAQ}&2kC-~&Wg=(tWe$F7#i{s#jeWh*-aQ(ZJ
zF~~X9*fZM08Ia0i6rkP-EaKjU&q2wSUEcqix#kIEv^TpsEZ=5Q5`(7cV)zrNF(aTm
z1wIJQg0e_YSo0bC&WwugYva2Ie8pNVXnAZiW&C>D-vsEwWlbND=4zhDaArp+lmJt6
zx}t~uA2T<2Jv<!^)^r(=Et#<S%JXQ!G)ie%T`j730gxi6=)el8=%9;^&5pOuzx_fo
zK;G1W`ir@2&c*b}L=(|cl6ota8rfu!?*Kb#+V?LZx>d3js{u*u_Eqj~?4U*KM8-*Q
zo``NwT9JZ?CqwIN`O(Qs;7!5Nrxq*R7T6)yts!yS!fmV7#9VPY0gif`X~Z5G1EE;P
zoBeWOFMO|7&paVYG}tXC_wFMc*t$|iY~4!!>+wZnarEY1%<`Ee8a}0#pc0;_7ndk_
z?%$6tL=imlksYB*8J_&r)i;wzx4SCO#xC|5=-AbaHE@4nV<d@+W^SbJ-h%@=X9S}x
ztr}rn*Q;5jlIq0tuY1K!1|#XpjnP59^_v(SPydqXGy*~{)7fw;;4k~!&A>nK6B6)<
zKbYtNpNH}mN-vT4#0C7<zZ&>L=2H*OP+28|oh%o*Kr!T!Q+GSqm#4EdAJMza(tve}
zB<sjn5Hpg#FZMk^XI502V|lN%;LVMnZ}I(+<q^l;@ZtN?XA!Co-l?WoXyH>8(1P2M
z-DD4CW6hPoyfTmvt8S4WQ%^3_bVe~Pc-2z_6?Vx=CsNw68571x%+zQccLSxF8W>!x
z?kK73lIZ=dco2aJkp}w_xxC?4vuAxfUybMK4|b!&<U@Xh)B1c)7ck|U06hC74P|#y
zZaw;nY_AJDui%B>z?N`D4*w<;b;hRFf6k)A`K|hfx9l0LhlV)KNEk^ms%%;krUOCe
z*a50kizPGuKc|XG9a<$>a%3E7EzGAVq1f+<76e#Cx<LdSP)7QK%FQqp>#nQ(Zq6OE
zC|7|PrDSGMpr>u>ki4WZ6Je@uPMdq;=JRNSgFPybmC>cj%+-JDtq>djU~7MP%F~OG
zJxX!K6vTCh*4`^ZTac36jaiG-l)29nz<yZVd5ukYR2(IWRz~EIs@2)$V9&fC+Gs!-
zFnSc{3ka5#JVw$-(`auZ80OYXBh_`VSqg#Kt2n)f)+p30rV)Zn6E0rkS$)Uh;2*I+
zRc7+_ewrcLEk@EL(ZGBi=V~0_=HH!SdN2ZvA1s-^yP2+<3Bc8VLAx5a3^MY`8jh&i
zTdry{D#0lsrGm=HHfNt2WZAq0Y(H0Lb|lS9)TV!xL@I#gEEPcI(nvP=N}e5UX~(Jv
z6|rbh*eq%I7_(P$;;4`;rT)IHvdvwvo#%w*|MZmu&C>BPsZ=VPLK(M@zy8pcoMkVL
zu2%;jzYLk-Rqv_>{G9e8xRiwH<GT|vhF2(1uN0@YvGfG;66DH7V#^Kon1)B3jF<5`
zaQ=PK$Btcipn^@A`0uQd8xM-Zl><+@5iii=CSGp`(P>`M5JiIKeVE6~Int(u^M)kK
z{>r*Rvx0dJx_No&1G5E*!U4M^Q+2b|T@CobTK*%J#5V?W1x*VPyEKHE7ndhx<#T)E
zu(;#?J>~9Z%YhfHRkyyc@E1}SXS>lko_d`+W{%$pQl<e-rjpfw6L>>#oXB=h3l`**
zVZw)S_hXjH_6xDuCCPk~-_Y<nRTK`=4AMsw-CR$9CDmdCTB}dF8pDRT#GCk3!U39K
zG;dL>1kwNHTg2jz?i;o_)T3nMk%GK!oi)O26Vk*X9bJegJ^VpH0@z9SD8PjN7uOB}
z_kX$ef3p97uH74^-Z4}??|*RZbPxXz*ADeRxOUL>%r(QyI0;HWJ*Vm*`z$1hT6bSo
zfIqJetlpCH{s?3GM~iPc&GB#PrBKlqC|Q!Pu=G=2um1(M-xB<N41>U2^0wfk8a`i@
zh58Lk;XKz;28OW2r>ow4-y7MGwQNwZI3#dga;kx_wr8Ex19!b0!yNplrneben5v(7
zp!3z^W(Zhv{kLq*_6BboCyS(%xo$9plHk)CL62bpi703`GUl(5b9Bdzot#_hB;_NI
zhXbRB{*h2<oKP=O|AlyOPJXvGMWUtozrELoXre%eD~qrZ-pJ;O^qK0zRWz;2$JxyZ
z6rtYzdmYT?DCAHh0!3-N8E(<IsfY3VYv_dqy^d(&z(|mp@AfFG(by3oxaLk4S2!sa
zbORoMh83<IgA5$3H41K{i;AvL81o{Da->zW#$M0YEo+oo;khC_ZQ~HppTKzRtqz{i
z@zh8drnjh`cGe>!!u54@gzu_i9(#z3=$oB@`z0AgyH53&O*wmBR3Cg`FfJ`Ey+4Cv
zOlZ!p@z`sp{9fMC?sWty_hH*uO6H>PoawxA7cmt*I+gL%v!RDA=OHbewc#tpQ4Xl%
zM89bm=`XG82#n2NI2`-vo0uj&@6C6?!;-$Sk%nciI$aoMsYoZ=sN1bQG)NGA0&4Vk
zPd)y@C<-?$A(rMwZq^0fH!@(9K)Ry<a<*jEL6_8Hx2R=<Qypip;G}WCXB!8xvwWO=
zo%S0D8;{&J)NpbZdGvR`GpLFrDJR0);zg2BiL9M7h2*2j?-GxaH-ZURLqHqMLN}{r
zTju4}HhdYS;{D5l?b)asIoWroQ8ld_i!az#WRDm>RMwJ~Hp&G*)`4QMe*J{QyjESB
zp-dAm>Bf;k-i|@%r1ge%a5t(lLg1@d+l@#>L^6-sJASEN95=3HFns#0=TJH=6id-&
zijM*V6iJ23C<;^k^LDd1?>^~AxEjH;9&Yl#5UAckkXqyY%1HbzYlhvo$<fjMjA8SI
zL7#41`WzT7=-{fI{db2+XZLUe$&Wn(X}9WZS;;PDBp*Trh$DpMh%F{JH`=-1CTt;{
zcG0bv)AgD>GRfW;?0+I_#-6skhQL+{$M8Q09SZS}BiKa0wX|UnoU_r)0JT`yO7Br>
zXAY>iKAoYzhq|kqEkUKvS9`!Y{BEP`9w8H}e@$&ZaNi>)<Vq0E$Wh_|A;Aib8`y{1
z=j%R?l31mNAM0M?AW)*3OjXT*ZSii4=@vL#?95~GhD26b1_BluV3q$hQ@ncoLBHAq
z_>HNIHMdQP7IpMCsO*FR!{}F9rNdKn;q~&*^RHr2%QK?QoxBPA3Dpv~+x>vqxD70~
z$AP%j(x!p4GD?snCze0KJCfttd_JbE*8q)aIC<Slo^g}qr5<S;7uD-yP#It5e~Hi$
z$wE^GJ|x!}>vfLYB3#Xuq2m<E;4X+*vrz%f5%)2^CMdC6frN@zjhB+|rDmu?rnbAG
z_qhp`oyH?3zCo_K%E$g~UZ&B4Vl9QGAmbhI@Ll}S0k;nz*;z&qwI8AijQ{<K&+Q`V
zYA|KLynP_I?t+mp*}N+@0e|`q;H8wlaAsmoYn&8192zQS5)?2tLk-|P5UP{rH95?i
z^(i!@nVfYO(j&qw8c-_>0^Ar>b`cYTNo6q@*UE-vaQcK)c~D2TYV6FdCGkF<wl`8W
z->h_3=q2V>D?}ll2JaW0`6AYlYlcK}<I0$gshPVIxpW#x_vWEbKE)Cii(HhZ_AGpO
zvJ@F0_KKh8szaF64$S+GyIY#3OaMD>%?4B@Wf@0ynT$i7-r_L~_wUfV`0FMH4y?j=
zqm11YgGo^v`v1OO#OS@8;Z7kU65%4VsuA0RvYi3leh#ZCqcX4Hh9<4AXRWRdy`qN4
zSLHo6&iw-#Gx>d%$W2FQSErkZvo&{dJY1*GM^<7)QSeCF2KZlMQ~dr~!O_HCvSBZc
z4QI2d7j&t&^R?E;>=^Aw#$X{+h$fZU757QxK0?B(GS_N#T{WRNI~mvI)obLoIPVWe
z<=>LFSk?O^*||SUXN^NcP=klk2&%9nhdmHTVd09-2)$B$gZZ~8<S-kqt|P!K6Tts0
z`xf;G5g;RT7jUK(`jE%cVMTh$m=OIVnXHt)E&onmI;X-&8{7fD{0#_?rI?~WYx;eS
zBBugq&-~m^XW1L}OB436O%aPXwyw~KeHMhbXjF$aV17;WdumCpV@%meW|`&8<6qd=
zTvW-Nq3Ly&UlH#*5&6#LGrSJH#^ay(T*YGR3LM;RO;00I6d%Ec#w2bY@JrhzT8>=e
ze;S86<ajPP$QYzIThrM**%2GbFzt2iULtYX8M*+8L(o_{SmI4J=S#1&`Gtt^ql5|%
ziProNqA(I{!D|MD%*hD+R1hXRG^<J8Uz)h?g{npT;9Sc?+%&Z-rvrD|_J}Bk9lq=`
z{?A?w1YMVnmqP^$p(pq?Os{0N3a8=UpCy`wBuL!fb~q%4f`wpImlTf(MQ9|RSiL(>
zlJqhrRDOT)rS+Z${8YCj(XR|V1h{Fufj$o7)hdOIJZn$?2te+L3oGC6dABb>8(nPM
zbRLyZ7Q3%_<htFNW?brp`3@CQVfa(o?}h)${SJkyhNsJba4JFV*vcEb{|a$wggin_
z#8u{O{&;ZtaLtT&QQR02x5}ygh?PsiF19uTPyz|tmK(r5OLJ*#^ilqr8JRZojN*FG
z<?Tnpj*HS#oA!|PigR`BX0Xj~-BEKkPPx7D<B9r$(HFKfN~|j;GpIjbrlGyprA=Ee
zkJHQsN2r>V^vUeSinF9WR4|ouO<mAfL&`Ji5q6$u!Zu5m{UO7d|DZ;(x%$wq5>(he
z>o#0`gzcafjR{3XFM^)!ocA?YhJe{e+UGL^to<qRpkvro<Zk>CQf`UbqzpWJU8xe_
z+?iP=L<*skBOen)#K$tXO@YIAUdQ`MXEh#0PP*&p@Z_J#nOZ=9z)AgaE(~>H{kslT
zG6CLrjcT9K$V?Mbb0|3#tRQc~5#5~ek4;S9U(UEm{IB>q&xE-4%vf@hWK|i(?k#{u
zkM7UY;ogti5%|FLspggbj?rg!{-RK`V)G!DT6Yd>F);TK$xp}gKh*0=o$8$JEZ7&$
zLbVuPU41(Zae5h^W9KS0V81ArQw6bZD5N3#z|;S*&^hNW$O)nj`yTX%<^HB0>tP>)
z^9*KYDksO94k1`_1vlrF$xgd0o#8OJJ%Sj7;QNRJbj*1~*c;*mqoCILR~?6illLT4
zxzgmV(W^UsJ^5HIuh}+h=DtJ;w3Xc86o%y$kM^8ReDqO0MqBGy2r7D1D%CNI9iF_H
z7H1@xg#I*+GY8t@z;u!J41^l+8~f(1=}pHswyQ3+Bdw_jymaMka#KN%`<&(lG{|sA
zz?unlhk>czh6~*}%Xj4)uLmPh1tF&r=QW9ET+QgX=TjkoTxANSIb4OV!Spo@R$l0k
zRW9%){89KRy4ez&ALg<L9CsteltBv9;<XSt|L@<s{o5S><fm?-_Zv$?tE_fxg6_LO
z^iBg@A2$0oROd$B$)_drNp4s}g}~T<fjs2>A?RBZ47N}1@RHtu0MQX?gTIVSZLK(Z
zq5;%}NA_5o26!C^Obi{_nUX!%14i)ZG!|rQ*Vp@-R&zZ<>$$F$hW;RZkuuUpM!mOt
z-oIKBHQNdRH&dOn&-~Wo=7{uL&H{VNY+9xlXu5j*&n3SRC!e{jdlj|)V2JXe6BF*x
z@0nhfZBcZxYurFH?h4*1JqN@b&57(=9szO*f`<ZsCuFV-nSNr18sJUO(%**1hd%^N
zCvyK}4uW=w;gEoHR3nt7HvG&UwRW?tl{XKck||}E%<;2)8V?;xl`XeXcPZuux-q-q
zjU?!}ZG5CH)E9@eH}x5?Q7)zQR%|$tOu`0#kp0tqDDyNtTqupkkTRmNhz)}uWDVgr
zZI{GXpYxE^V9mcdC1GMP3zyMPe}sMBF-)?J#G!ZsUb+7J!!li@$N;*$w=!lhJPEn7
z_om)67UZZb97<bZnBeqsn{S-IwjAWv$z!t9OM%*No+?6G{{3a+(1Jxt|AyHj(lb(6
z@Hu>Kvf2Lbhx^Lw-T6W1M#`@RZhx=zqvy1W#)DBS`C7R7ECFC;=gZuOLrM`{Gg>1B
z!)SEuO?G@9-Lb38-l9q~XNr*j+16PlUTSh+qW#$KV-VvN?AE90weumIkLqLsg4byv
z(Yr{cmoSmDHKB^-jYvW@W010K6$DX30aQA(Oyb8<^iu6X1ySy7@TC@w;b`Qk%90-i
ztmEpA^Wad3aY5Qv_y33>LTGWey-rX_81{=73I_xS2Y9VtI&`<vD1)a;0CtRTyAO>A
z!kreXKpSMQ3&yYa*ha+mSH4XG$%{3JHs1HYKj3l%gPJtE|E&X@%m*Ml=T159mq+?e
zhf2F8vW6YVEsVJm?4sEyIJJ$WPuKa-Q(M2NsTp!iCnmr_ix_-~qc<Wl;1G(xmG4?7
z;|-1e6mxO6H==CVogw%Z9b+yBl?lYh3ZRTMVD9T<NTwbEtr4DHg5z|Be21jIPgYf+
ziFDAYj6Cbp0!Ia0;*k=rNyl=L_L;InA6u`Q(NO$SJSKnkzQbA%>(NzU%V$DaYjQ`y
zm=H@y))D^nNxP|C2{pYj{kJ~H$MCw*9zLR<)V&?%QQGhH+*{|TZNOjHHI~c2UL%}!
zy`3|N-<VGgt|3tKO;RmN9law@AWA7#^TCG6N+Q|qLh+nN?9_KBwIfy=kVE5gFOHBz
z41|D230t%QUhIrYi6(62M8Hw+$Zq@6LF^~6yh{8<kuy_eHOY7Y2q|3q`H}p}hLcWQ
z4S3CIQ~+~nlw}UW=Doz)%h{RM1uD7m&@qQx97-~mkFzEgGy!>4&E1VQY$yEUIh*Zi
zLgDCBj?G&d#>bxI;q6Y`u4x?VfUSV%#??d5Dfww>70G9wv;<z9sxr+^PJ&D29SwSN
z)E|26%zCdGTta|$KG$7xv~z30;v&&fs;SfIF_yB88z%C5I1Jo<efDK||07@49l#ko
zse19aY{m#NZJ|!Qqv)}}=AfwA6Z>amR_PF;&-RY;T;u8PrX)Wb&>2L$uxr;T8!Kwj
z<ajk942IOb64#O8g{KiPgSb|AV^ANE5n`|d!2^qB@`TPOjCRh46CI~BKe$qtn4?>W
zzIhydTH&4^n2vI4+<HPo<Hl5Uw~O`pIQv@)Zh!0M451^89*%qB3s))tG39KCB^bMx
zz__STbZQQ$1?ep&Oc8srIGI=599e!iZuP<@0HbHd<JY!PTcdA$_xe;2QS{G4U1EFL
zydTQdMmHQ?tz*-GE&Jj7PYTk9=pOf*tEV619Ntx}ab!1ZG>aeU8fqNNw!C7idmYYd
zR)uGT92Xdh{c%X&?A?(E^yB@7RZBdAO#qIUd$9fOc;33HY_jKp`kUF<`D*?&O(lLe
zBR&N~KVvz*%r8+gz*4moXJto8cg!1?AP1rEsvXIQLP(_2x`*o&DE@yI^S|CUGY<pw
z+tAA--T(4edg+nq-~tb=6_nHrsZ8rIZI)zQaxA5e+!ZIwEvOu&Kp^V=$aoO=L?T9@
zGA5XQc04h2#%c+v2hsCHgnmLNJ^Xep0<va;c5*AX<C$Am1#$*$I;!aB!f)QpzU!KB
z!<*EnixSl%Be0|j6ytz9(l+^Dh62XOrMDpp@fZ0HXs@vevZ3=iQp<=)?Fo*;dzIPQ
zkV|!c3TijBNJ{vj-kOXrtA+W2sf?>aVg2}jYUDGdeAn&3a`(Gd(`!hAHVutP5eU^K
z=yxm+yWLuKVja2k$ym09W;na}g)HJb_89USp8Q4#Q`or%Ag*dzMr{f}_P!!jb{fH&
ze>y0G`yz`TTaYQbW9JNrjP=6|ll^W7HwLT2<v^#`yw8&B@5ArAWt!-yvMa4V?PnmK
zEU3JB+keUoDm;~=ByQa3+qP0&O4Xz3m1o9VgU95S*+vMU+dk6n-b02F#(GPi;*oG@
zb9S+wDi?u*IFhr0ZWCGU4YHN_6r9_Bnz_KmKN1*oS?~V0EV~8VWw<6FeAA4at}}4_
z5!>L!HN4FkdYz3p_W7GX+ZObBn`d<{?-AA2Ue`<Gt$4PGgl9so&2lJs>!|X5e`BMK
zhILBR8ITK=V#dV<!Y@!zyFNjo;};i<Ro{xl*N;+|vA=u}$@*!%MS^ftOV7vV#RUke
zClWhtHIJ#T4+E&yHEry%vi#tcY$H4yo|@v24~7)Q)sj0FQ?&sWntJ~#lD59PdmjQX
zekgdU2T^klsKVCRZ7_SGqHwc#bK0W3QRd}1DCTvF{q3i?pimj`m^)3WXehHeuu+_c
z8B=$+#y1}8T!?*}5@wNs)0L;M{!KB2DJ;srqet!gP+E8~Nn4;i>Z?S)wdO#BWQwLG
z;iE_l*>mo}AJIT~u77?skC_%yfTORdG0y6F%Q5Hv$BrWqF#oZvN~Wx`eO+EyicD4Q
z%aP()KY=PNd5jZb<-$Wu+5qGwHvl^ih6|`;oHYVn7Yr)^>w3PshhwI6=!tj>>&wrj
z)Ql0@zG6#xwzH>tuEa)LLkZu)nO<0Wx<#&2icAH<>aMnWJjma)*0)kggNb#W!mKd5
zSu$!oK!(Bjs95sW-_OPz`#pC#3l+cn&HNpEJ%Vx%KGncO)g_O3k~b)z`EXx;j~9bx
za)@_JQOxWkEge?hrBf9J>AlX&r_VjDtFKvtk7K)ng`-O#%?;Pv=GPZ|Ib`{tqu+dj
zmUL;ZaBVc)b5A0)k@h>@Qv=c&R#C<vMdbtQ|2Eq5v{J{&?fNh6X!(S_3b=op9q{r%
zprR4cSEF^zm9B8S8;(@vdfr4Zx}v?z_x`)}X+5_X&938)3x9LQ0tRFA^SnS7iZx?n
zQ*rXIEAkX**8jy|>?U8FtKf&>dTTN*>@=_cpuvAFD)T!j+8uHF?Bu#HQ$MLXg${)t
zio`>i&nc^Q6Fw=ibIwD)(do55lU9A7ex?8qcUKu<Z??|sl`Bgqqr$R17NFyIK==A|
zq3mRp&fJ70;)-v=3HQHmPO9`E!QF7IVYM>y;zRBxjze~O3-1JLjgA<5%7E}XI4<C4
z-=Fi|%u51K?)<ziRl)R_BUJ(HNUyk-;Owf5F{$fLgh9n=E?-~C;wv>xV&Ciai#z&J
zNp)AfB@fTK>*SL*9D>o>2BkFcrod!%p|-{FhUStphcl2EdaST}B`I+A3`S4?8QO*d
z5u7C8CN1x}8uVl1o6%TjG|v)G#-WP(F1n;0+qno$3A;`?Vj-+%DY^N%d(MFNH9*RZ
z4lmZ<Xo_}4+%-M@r6J?h&8<&%j2UHjS=E=tn|dM~*{bZXx#9QX(4k3m4X&g<q*=OA
zn88;co|XKH_0=ztu~_r@WW%OQRzw1=U+%C|U`yWl6~L7b&yHQ1>~0FXJ=x_`Y7c6H
zovaCw%*pif7Q6Da>U88V#sFM~BZK)>S?KlpW77uaQVi!Vkf1D>7o}R^+mJEkq{XGY
zhfbGjIrh@G{!qY@OzA5gdYX2Ikpi=vwXA!>p>lHc?BAm{sbh_dZ#pMNs`bUdZcK<@
za$$P(U%qAdS2uV!A9XYjHrRD-@}uU&`VpOtp#i&0SDqaA!v~T)fn|YoS;C+G6(c*X
z6FvBnIndChU70mh$kdaLJIm&lT4JeGpqKvxe&4D03DMXRJgK$|!+X%A)d)oqZPXlL
zwO+}ZUpj33;T7?*&aexS3CO|~^nTqjkJQVTxyMXg$uf1L@`rQw-bX>Kp_=lh3@0&E
zJ8dy56*HOQsu7R!IkwOV!yjc|V_f*kZu~fBcH{vkO`f0OlPRh=M}~yEny^fOboKP;
zSGZmr5c=v5Qnq42Nzg;YhpV3x*NyvHknFE~9V`ivNegsAkXOid3zqlLqmzw+`_UVJ
z<)zN`qTd~~<;XL`4V|T}wX9@aOYqPE(&z>~(*bSKl3_jg+F^I9%gmzWHaoj{cCF+D
z_~@{^Re_fFq}r#APXr6<e9yy45H*1o<eJ9SXC*^4@=#{rbVawu=S*0EyCFn<CO#6V
zAZz%o&S?cBMZFF5ZbJWxX>vrOSAqWMGJG1Gwbw@om`hvw@x;X;KCrv^o11{-7QV)*
z8H`N)>s+=a-LA?*4q9XO%^a1O^1p_K7=iV_u9-}~7;n#73SwaM%+0)CF({r1V`;x-
z+=SiZxnOzn$Wm5Sgzc9wxck<L20_7*vHTDQq|m&x1lY|zfu{`0CwV9YH``zDzbOyv
zB}3KB>w@QxE1&fVgkvxVe?;}rG7LRW)$4pA)wtPxvdz8_YBc%9??$%Innqe<IEyG>
zONJa@U~kX04JWH1gr*x++zfd@kc`kGlowdKbfShEH}MD3B<9r$InDP=&*BrP8=Hv7
z(uI!oM|_(jQqMzsmtupHAIaE{FRCRVO1IpRsc_IgN_qyy8|r>~w#P&I%lG~{c@MEI
z<X^V#TsjsAauPB>>3;9!Z@?ZE?vFJuBQdtiYo1aKk~4shO5yP4h01SKQz}7NA37?0
zhy%YBaVo@X#pNQf?_pEOO^X`~yD*`<z~%O`h07U^=O5<5%d8slPgUuaFY)?d{DBN!
z)B{GXM><e<CnXCU6msQ@1ZSWu7I7i-?Fkdewks2gA@p~B5mvQ7Dx0`3;`n(F`cgM=
zCWsU8KJ_1~64&MR(hXp0$ww@Li&#B}OCJ%qAEaoWUoY6O-TwJ%sXG<{e_4<XxJRH1
zUdP@1!=i^er(T@wCUF;YJhlWKSB_(2a;TRPeiMWtjJ`Ivc3l#`?t5JrF@&p!UNy~`
z(T&|+8Z`P0XIlr~i5-%Dc;iuAT(drJ=?c-Na2A9waW7hpCq#K7=cIfio&FI^>|nb{
z$97w0UnIqAM9LYzLYM<MxY#PK1_;pDU$cN*ZwKbwQL)wubk#2@B~+*yI1`ri-nQ55
zh`AMnDnD916n6;u)?zfXTb6(KJrO@7Xgkv6li8kdK%c5{p5DC-OzJrd=Vt4d{c*$g
zM<MP5n5VSp$>=-Nbzepjx#YQ5_C;~feqOV~@I!KA?0go@NF2+_EsHx8L{cC~LVDZ@
z8-Xim_{1ozrCEgvh-wjtQ29sdu$LW_`pG?kzCgF#6j&=f+stwHM*XCJ+xM@CNWTp7
zTPc>?`eZyp(jTR)>-G+Q{$sD||91QbF&RkU`%C+d3B>t<%0g@po3xE-{X<^U(_g1A
z4;HYz_o?&_$Af@9BS-fl?89f&Mw%qW#mB@ma2ZZ*WMj#i17^bW{#|at1mf;&W(LaE
zMmgRFl@O-6zDMtL)N4NHI?TSI@_S{z)V9>pd&(gk@#a0*HNB&RwF1ieScD<netquQ
zhK4-@w*4!Xj+G<*(w=<P{n+A1IMKn`rjhF}@Fft*i0h6=jFgZ2KWgL_N7J+sFpu+O
z?Dj_zvz}<##|`MW0g+W@db0#i(#nW|s?3<;%JoK@!Jr}Wj7nE%ox9q^|8VTVf7qi3
z#wC44aGzE9eS_qZk?VVeiR#f)@3_=*`c$KD65<|5vupS!{5Fc=G4ushptDfxE_x&M
znn(N`co7so1lb1sO6@vwHx}M{KTDD1I%?np#0z`&lal`GVHQ_RUxMPioN6Z0)+dT5
zwUDQ=a4*b+7@_gr+a1pJTl^bh0wX(X3#{VZ$_CTI3F5ZH^!#ru*xiT?9XW_yzelBZ
zmSj8&p8s^)a+Hx-icD*pqVsqw5^;FvSm&{OuxjwR!=8KpeF{91N?sUGqo(qk%ln*C
zPSM1VXq9WW1o)Iah6xOxZGRR-t2{YK-0P?DWxhFhPs2XSK92x$!=A)xi)TD_^Y+Ac
zhGE*zSVft3pqEsl$;v1Gob|Zt&8MdNTcAq!6}HQHseIkybb;M4Qd?*waug5{^%hh~
z9cyZcg^!nlE^M}FR`+LP7}q@GG~MKC&icEd0^wR6+w-wb`X*9pY`U&hy~FD&-Kpc8
z`0N!5MDz&VFUe!p1*$N!^Z|yXR*PuIzOA^*u@EF-jC&j^yMS{41gqa%z9^)^!5R)i
zlj*a>C9t|r3{XijWyvpRQa9S04<iR}deaJG>nW{7!8l9uR-qKfG6SX2l4uoOJRtv7
z?1NTHk8Fv-ayTzJ4Y&=+r5lwX=TF@z(q|ybfrQP^F%%F3K#)JWLFkvf1flO>X&<TH
z#bj00UJz9?3DNTQQRDvD@nSlrNv6dh1}RrS1O2COhQ5hhl16X5Z?gjvbsAUoW&FYs
zwhlnyQgl@i(Cn7pGbcXVNWX)w3F=tIHaTyaL1(G_=Xcvf8=A?x3<A=0FK5CQ4Zzgo
z1mv{Km<O-y^z}SV1O}z%6Z1p^2Nww<A0{zl|5L}0i_UbFXmcbz0x_s)2_Kzw1TPn0
zku_!I3G$q6)&=>AHDs--l2dH}?xkA0)sZZYKiuKa)Vp0EFJ(XfR2`XmGr8+>oo+8I
zrma>>3+cQ7d4~nIZ~|8EOV3bA)V!gpPof_9W9)9zAVLzzR7=PK@2eMQ9Aln?BA7AT
zG@&I^h$mOQ7Sa#kSZv|*mB=95WUs(P&TRX1=^=^B$(K0??&g1V*f1NZw3ZEqGC9Es
zwqyLT$%rH{eys6m(=)wk`z`sT3P+6X$+?YiFqfm`0~H*gM_9RbOn!v)0b(?NzSTpe
zH=w+p-ndMRvoa0IIP#Jj`<-{xc;+b-bWvI=N>bA?U;NxsC>^ih(l1zw66y&ERxvvg
z9?gl5{$5{CD{yZ5t98!1-<-&4UN@1xZ)^f>K#tEs<z1F|XMPM#ib5S?E#c{A9~8^&
z6zG<5k&)AwZi1tuAwKdtw+`5>sNW-oc@mJahJ^xMPaa2_w9@eAuOPbl(1KH~DmcoT
z-sx!}RCNErCAV!l;K@1`*5^y3<A7mD1DpF908eIURYoyf$EkVJSw;&`3kG(M3PEz$
zcUWXp`Em~-{)Gu)3DE2?;mVbpRsVADV$Syii2SC%4K8Mgm*K)>S74rV4?QgwbGUs9
zQ~y>vpK_ov(Y`ADJ#2)(`+O~!5mnP%B|wf5G!iGiq!fHw`)~Z)fm7MXIb6RBZhiBj
z?@o;}amZfgV;aBmc5qjTW0>l^EkRZYFzF26E^G>%l1KgN7a^&w285LN_0hL*!FI$p
z<RE+nOo%!->n)-pMJznX#^=S1n&v@m@`%3=u4y$W)^Ja@bbY0Bm1>m(4SwTax(lX$
zu&Z(QW15+ZK+gjC;0f<whJL~e!pz^i^atJN8AZgX9vSiKJVx*d#B~nA<~QZOT$dU)
z75Qf(aYV0RMLtnk#x->khA$$8AomLI{46&rQ`3{x&pG+#cfy|()fBfBw!cG(m1wX4
zmJ!fvnU9>)1c;Bg)%ID7r;OhUMEdWd6+D#JNIS#$#{ych_s857ehX}osYT30viR!{
zF}u=CY>U+ydELPx>GhyE;}onX56R8=HF5|Z4!{K`_WAm5p}zSvs#l2E5fZkwr}sFt
zn{3{1xBlVec6o(I#^BdQG^pk%P|y(-r;6WgzVM1)K9&<VNi=LpRgqZ$a9*wG$s7Ka
zlv^H!y(GlbpHB<OuF2fC^U+czj4DYLCi>Xu!nck*$Zo}jQxNnr6mDzrm(WH~Gpnh+
zEPxyVB;9SQAz3OFhrGOcyOPOVzqNA;dT~T6>2{TM;Js$Cg)b|6(|QM)w1jBUUlz0^
zQB@^mMT%(nnaNfsKezb)FZm#*o=`L%_k$LzAw)^giDN~?y~@NpB5oB$uy4i(#ikro
zLIi=oc8p&#BJ+!Smvn)b<`L_)9Y$_!pjo`_bl0g8niiv`(zelzRHkkjMJf~G(aK}B
zc5V<HbhA-LMKJcaP6|R}oztgkaMKWBtAs*~&2myF&EJ`-jmp#X&O~3gnqlfx6un{g
zgCh-Ik0@J`aKTFF(F)Mx%y-3iGWr%>ig5ftZD)2&N=T{^BLuv3#jFHW8CO#q?`vY_
z<Sv1ry+f-4XVn=ve^8Nr8i%Ej*FbSwywEXxov;dyL?IN~zv80DPVQH1`!VTHq|(|?
zT_KmVE<10hW=x{wuc4>OeLKq0**?(!zWdnafB$A|=AAvI%{A8))s|z)6u;M76W`gn
zNFmUCp5Hm1QZ)+@$_q6OaJ^16$A^Md3^at#(IJD9Au{<$9+MtWI|uw4Ukw&uyB>#g
zM<3XaatTF@qRrxg7bH1ch~O+0^uIQKp&FCZ>B8Jst@@`m&Sm~|Z%D($I03(u8q?QS
z3nV>!>p|GeUj?h%<v;JE22sHW>`j;uskQ*1_2gGAYcDUfXP8%(_?dP(uaDv~oFp5y
z&uqnYQewM;B-ow5S_6X59Vn^M=U5wH`OtYA!0oDOPlXrr*SrxH#+MuUYT9-vc~*J{
z3K-8{r}2Dc23Rua-^s&>)ho$clx)BWq&J}o4&g<K>?803^y%J<gbA#3L+LquC^mB#
ze{iAI6SZdmn14)D0E|)<eqF~{({>&B22tKW#l{Y`7K>ZHe=`RJ-Vh#iy$<KGbVj9N
z)s^jenht;Ob6eQ%Ym~w9BakyBAhNTVJ4@~*sXN<M=iTG*v7)(jg4)XRzske5)COHa
zKjzlKW)6}6#Xr2DI(qr1@{S*|NPJ}>1!L_p41#O6C8L~x{2Wfmxr|l+r;X^-NSqUg
z1V7%U#trIOUg!=MOMagD=mtBfQDLsL4ono}AAwr)W151Dou`>rle<gR48@xT1u7+G
z`@3($hj@rWTVjwbWWg4)HcU=~&xldP8hJ@8BERL(*rNlD;t@#O456lxqgNZp9b6-|
zzEP{i;|?o}9VfNGcLfK=m@N&jrymNA0pzq?gIsH^E3CrP^v@@BeD9T@us!H3vLuIJ
z;P=GzBr5uQ-mXnP+vPgD8N|!voKa3Yo5T!tB#*DY*H-W-JS<{Wjnej|itA>vb6Mrm
zI9sHNYQVS)9hu%x&llyWq>5*0tFC-NXO~8I!p$F#Ft6<=SfBa6To17ir`KNlx9n@9
zhh6DZPtes)Td^<O4Iva;B#EyQ#--KD+-Xp%k;o_A$o3hWN@<8JDp7hj+v=jnCXa0W
z!PJ!{#vQG5N5j=cU4nytFtn(ijx8ZkwK2lXmSz%6mO8y`H&UghK5!HAfNXN$kaz1I
z53%NVo3<!rOKL>djY)8e_ibf^xoHlvHS9i}9#DSgY$u7?eh6(bDedKV*s$%->|4E;
z{dXrAtZwHii<3(oHwKRjhbah>I#My>ZK&LD>-DU>h}}ZhQpFN`=iQr_0Y9w@UktiR
zRhu652oVP3%++rjrWp1CSws1FHJAC;)H?=Eg=&Y(c0cu!L*Sioq)4!7xiCUc7{2IS
z_>FJEtl^Hr=x9@n`Ve4_h<t$N-+N>zP<8we_4xP9%r-^R&c#^yKrR)ap2LLieQ%RB
z*Fqv{4fYN})In2r0rA{U))RUuVEq^8Lz|89?>e8@Cl|7TcFAEF#IDP7sw@Lgk|ytn
z$H2j8zVV=(PQSqdBh7%2)`r;8&WXo>G)+Z*_0?l`!#fdBZX>U0i0kjgjoWA@^G8<O
zqS#oSfUilq{NmrbW^X4kQaQfd)8B3|fmeA^DOzA@Zqo<VGe+Ya{7*&z%SX_!3GQ);
zklZK#eL{t0yxx5%Jx(O4I+5s><JX@YdI;y+z-R|41|*UNWyR@)n)(pxu@7EuVZfqk
z;Z@&{tTVK5n$wM+k!d%KBu^&Nj-y8IIhQQ^mS5NSd8hN$c_zIr6_5T=Yg2>wRrOFN
z@k9K-i6?VkXtA4N;J|1KE5?6+c*r&WZ5L4v{Gh5%QmISm^Q)6ZGe`Ud#m*ojW==$P
zJnsvpJNu0ms3jB>9-m)$QvIOLyB`rV(Ymf4S$25CAx=>1{#S!tQUqz(cnJS<fLu;@
z0_9c;v?01tffU6|G17eIhGphx((kHyOG?vIL!+d+CF1r&ZEP4(hPq@o9PKyagj*cP
zVCUCU%{sAx@QOk3C=OQpaq9LDfaIJuMO$0AeQvE>+HPR_{T4KIzBg5OS)#!Kfd~=a
zIjJAIHgaUmvd)OCZj5qS;~!%!Yl9%z^sfQa{P#iXWSudUR+>g9(2@@6ZU#=@WGrUk
zqR1@bIb0zLNHKWSZ)mVN<tTkkHBLAY3};nLT5}P*viZnxqj%T2lXG0JSChW;Th$5v
zlSl!)hRtK#<;?gRfyNZQBIR-j=c2?-6Rk3@>_~Zj-0iG7I!hGaf&nWN+>R2nu5BC5
zW2o{s1X~bgVN0&aho@y6o`bynhurX4aSO}02faA^R#Kt#W1G{A>!T@UfQzL7LB<0)
zT2Ati*3b>)@n;IjJ0o_%XtNmu6&bJ^0i`8`2<b||IY=n-roH8YyG6t=$2LQ=mTC)(
zNSA#sUxHX@6uV*~Zb{2}Ro}fGl$mQv^7IR~y6(Lc229d~A_|1aB2b*R@5M7cK$;@(
z-Te~v7=$TU99>nDM&DdMdq`k0a*JD6By`N48fGtwxp)EDYWooZrutvkU`}T7s+DS$
zS=;A~DJ5{sH>p}jCok$AY+gw;vG(Tjc41p_8gvsfl@eH!V?1$Xc;-^rPedQ{kVK(<
zzylw@BBqKtM6PU0&;|s{M|Ts-sglXcIghmH4Y=u)yr=dZJADMB#yl%<-Y2^Cqm@|f
zwa@VgjHNK?-FD2lCE;avx|5g{oR{Ch*vi`WLw-V7jwcnjH!iEy?w9yYQK9Q|lcN{f
z4H9bh_1q?7Sb0Z-NxfYPhJx$>90!{k2^*2W6hIrXs&69Tq*mCcJ!ZUu;lrZ%v26-1
z_WrCXK4XqGfrHu&i8=gTGAf)0Z|$F@=YBC6#(oB?QyD*?|BuJy-DYdG6&r>;_t=ji
z`cea#CW@BvewLF#h%iN&`6$j#X<zTYW;Tt?7HW8pN^Z>XP)a<Up!mP_Kx~v#yrR<O
z^-TQHr5Po#rFFn0-Z`0t$Jkhip={|DgiVH}*IIJxN^4}*?AAO8*DxC|tb)HFRAb^$
ztrLVfFgr1USnmZu*o5G!8>I>H>Zi_wrwHwBPh)5v82Z%G%aD>bx@u&^VyKs3t=D%M
zkMd6)Rc-rsuq}tSa{goWT2chBpXlGfXlTD9>8+FVeIy@+nv*AP`&OeRG(jP53V5ow
ziI?6dM|PjewrXPCiVxhgl>lCy9u_NOuD<|cmK_0ap1t=Cbb5IFY%o|Gf0<)iKii4f
zj#cEyWmkO)TxIQzj5E$*T`~IN1d)MYaY3`W^5hGU3bf^adw`17*cHgqju&F;TqoB}
z461I-O7vpXkE+;?tm}h(jhA9uk$GYcucIWmc2uQC4hG|)Hn80prbYsTFL3&@kkN^j
zMA+>1OF)z52>q?j?~L{eCv2hZ;osk_uVhHWz7UQPCPp%W-HqxX$f_m-mq_Lc(3P{q
z=H*<Ah<&2xa#9u;&)q0#G2y?|D_gF0)y(SW)WF}yZOX)S@cL?fZy+d<qM}KDu;13v
zjQd<K<ZHb#=R_+CR|rPk=hk1Z9vj{2pPF}d)VO84(!HI(PF~uDZL)Kva|ciP_nQ~|
z^@1BLvKceh)h@fWj8CJ627zR8e6Y-f0DVPjKvWK#LFG2}`IoCT`B-R8F%67pDfCNB
z5qJ>ZV-0#~chM18DipcW8<iOSj<*}}G3EBr$UI-yCWGhrA+nlRbKu2xb78jdF~+3H
zjw;?_ss{VF1{()1;J%(aDdMoE5-4(T|0?D^zvw=9A1vv1(CO0GeDiP$4MP+p9R8IV
zDwsOu|A~ukEVmU(cTd{Pfy77)B0Q{4&+A6o(4mZEW~1DV$as8T%Xf`w8hts5rE^-F
zr1e}Y$6sjA6Q1nD=!*T)<I`D5S05V`10KIZc#xwPpN+~sTIGKF86aP%hO*Jn>uCA@
z(h_~E2b^MR_~-10LfpK6gKx3n$b<4PDX?!ovUsod-!&N}w?`UXkZw;?aUB*%ucsIV
zKo0O};8Bf5;kEmE6YlLN^E0E(WutKI|8Qm(xX{Z)YScv4_FqrQcN+1V3P>X>Qel|$
zz$3Z1fzP=93q1Sg!dFw47X}UjDr4=v%q{i~EGYf3A?bWn4KrU0DsZT1D+xdE&fs@L
zKv|@KK45$l1*$odR((@k)riSHzq9cs!#|@5#wn!fW)-zf=Y@>U*S!Kq6;-(#hR)Az
z2b9F7(s+ZwB|yxef!Ivo^;C#Pk?ha*w$fjh#^5*xJJo!6rv|Jkej?KR8=}{u2zO^)
zCP1;jaz#j-ac!8x1)KJaM2*-oZ#^Nz0N_~1^G*h;e~_i?xnn`|O!>#c7=537ZOb8d
z9xI1mz+tj+DW)d`V>#=t4^(K+3`eBg8yb<VS^i%p4KiOgXqkG&5@LH8ObdeS-Y|7`
z-cs%7i~|qp>BX50^Bn>1E6`IAXjf-dchGpiTY}wd&|n?ysXC4nFPo=Ls<w`~$(UAb
z{n<C++|?k$pG1KrREQsN5@bHeP_s0}?oBAQ7t_};al{>~`~WNRHPr<Hm2dKfDpNTV
zmU#>v9i5nnbsIB3a(~oZ5gJQEY|l+hpUf+3&Zs;mWu67PRy9<}DS5rz&?2v>%gUK5
ziHx8f7$ZHjR)N}R=fX0Gf}QbN0W~%nTYKC&5N^X>PM$dIlXdC0Thmb;huF@dKvU&c
z*6u@61cvVo#k|!f&q<k^$1J`mG**$fLKXQvC@%nO88%4LC*$(CqjRA>aF&Kr{Q~;R
z-*IzQn|=-vBTUs3fpe_>?GQu-Qp@xV(A@ACZw<IaLKd)=Op4IrZQCxLj*;8I>DLeI
z2G+qmW?%`GIUXhs;FWDu6(ID1xWOqxpJYEc_(>4BG0O^oio|EG0|ywx2VcTVa_@*h
zqDU>tdKuO`OZ0>I{+)NlDYh)6&kONhywWwhdDz)c+7#F&TaFr1R3BJ4uuIz))%QOS
zK>6+5!t(-8+#mI}D|5S~Zz2N}7n9Htv5&-N98<!WN1xB6CvK=tCSs&-Fc=@vrN}XY
zv8s?jo{0^jf#kidsC9QExlw^NWc}_eol<bEEksY2+Hw_`Ihilma{MQwyl~_@B=cJO
zbV!IfD=Yo4HMgImA*+^=#>Q>^n(sade#9!xb5KVlDhrn$-%AOx3YU9)tiC-PDK_b&
zoNpZfzczSCfgmD4I%7@IkEWCqJGuGlr}85&ku!R^%%%uKT{kXan|INgAcOi1ct9MC
z&vwWRiLlV575VN=N@hVXhwTBs6@n8Kv%E+o+ct6y*ZYc0RC=PH7)!&d?mwKk2{)(e
zI<zQ`a2KmItT~Wh2Hf4dpszRdUv+XMY$QOP)+|?UFHFHymA~XIZ80%IA!aq(PU`qD
z1giOmp%-2RJq4qGF-&vRE@a*_|9fI*0!+KB2?{}k+qTz@)&%o7&`^v?r14-`geymh
zu5QfV=RCejsOx_?w4P<A`HMF-B?Pk{%<;xL&Q_s24-<d%arm$gmd|HQS|^{e9?l}C
zyGkijC(W)rirpiRyG_h()_MCiHSBulzhMPzI#uVp;p$d+t|aTlp4H9luU5^(yzL;k
zm}<m)7mZ)Olpon-Ez*IY>u`ncVUHf>64v>(n%7k{0~;o&1a<*wPx^CUt~0;?jO^eN
z<@Q2X{IcZ>lz!isq$F<Q5pEQ|Z)8O%wqw`krE|pwPX1@YEjKN{TJm6yd_ip7K!MZ>
z3i<``kvEPvb0F3%li9D=Ivsp$mzy3WLYkV4wxbNMQP^ZY$SQi?!ey0!6}tT37X@oj
zPwm&CryLLekqcbdq7*IvCX3s<!78);GmSU{-u7Q)gAy6UrrHmLssCUl-REXhC4%n)
zNwek04rI-2y+!)=sR|4kOzOGFz>qAF(XMEGLR@TPWSIh<e{nIJ8&}0G`!89$oPoJC
zR~>%8csqd}BqJHT7p-Y??FE`bw$i*d<p7BPw}gx<Tb`j%;&i%G*CK*zT85nZU}#~R
z%~Q-?TnN|RWwQkv2wuR;J0l{)%6x^uUSf$wKbht`YGnwlTsY~cq)r+|QIvUq+`fa-
z$c6*<4x<V(=UA^MW;V2iI(I}GWN4C{Y-FSn`E`nlC5;DuDJME1@1q-&k{E+B>Z=Q<
z2&)w>xK3Z4m#Ak%#p^)icz2utiWPFAemnQ1zy`kxoKbwkV`TB2H9o(_SFnlxE!3aJ
z>>3wQb16ouMPE#u8INsOLlFTtPE@P%fGIE+T{=O>0KLN!X2Q=WTU~<Y;w1Y!$mHf4
z?TViG`Y83xi{c(voYam{^unYFF+!s%C8|nH?>z?ya5@>xi@}0u!1V25Y+2i~j7(Z$
zHAh21mF)@>qk?an%5`cJdqYe1T<`hx+cVqb(TKgKU8xph=8%WlW2!qnwNQ;vEocsD
zg1fr5TA#!o7VH+N1(}x1Hw{akHja!+yg9EuRIC#VgFm}(!7&eQ1Uj+2vbDZW_>+qU
zVPyfTM;yE{YceD0#MU<+Tl?V(>y2D7V`Y~inLW>MGxnZZEG>nr=STN}O<x-jQ862v
zwVVDY*|wZH^BP(GsamA_hzZ!ry8BYG;dK%gn17KTDFmt8j^k@BQCG*#DBYH17r|Wl
zXO^)=K+AOxJKUR`UQkaCD*@sYPkE_+Mw9{;9!WGDg6(WQO{yRXSYGg_HTNI<TH_f=
zWz)P})BTb~sda9O{E79+^n5KKyy|Ani)Itz+RE&)#N2JRaCOEtD&V89_k#-KR!<jE
zBGSW;Qh+w<7rAINuGLb~lzSBY(;lnCJQMwbBDZeu!MQK5uQ9!?78?QCcI)Z0Q_zTs
z?PNAV)TK&$Zj|zr;Czj0R6S|{i7>5}w<CB`V2s~v8GcCUYs+Sra`+ZcLQpJM&S!;z
zwm5e8pVrJc4%YOpO`cN|GyS}+tATl5)`5|sFgxR^I?>~K_cX=%dF8qQj-JeS5;*wv
z0B;oc7)MCQUp!cs){P>+ArRn6NGp4BrE-7Yx39`ocd$O#iR@=CD4asE6VM(z+7^_t
zxWGZ+OfL?b8-nJqaY+gW2s&t(7A`GU*hAx3AS+eR<+P40$%S!nnA%5XYC(DXWI&$q
zZ*?m!oz|uoHxCUQ%oa~`&$f){M77(<aLK$ET>f|W|5Y8t4cO}YmYYE>6KIssI?S-X
zs4ZPv&!7yl2_H+s?v3#()+z;8bF^JKDM7^ZZ!|8^CUIK^`u(d=a4~avF4k9F=^`()
zJFK6e>U7D}ZG({^!SK1PyRCc^6qu2b@vi*}Eeue6IrRTwZlD{wGj2oLEcrIGof4j7
z8ZD;vKpRFoI*ghU4a&ezvs;}JD#k>ge$+X}ImxQ)7A!jWM}>Tz2<psho3|~P7$5VP
zF#KXecUayObqjFETOK^t{}bqU^9x`004yE<%l%YuP+^+7cvd2bibcbpp;MP7!J%(F
z&i{gv5gi9pR@dthvbJSR9^f!|FUjid;=ZsNpf`Y18)2yKz-j$SzDMvh^$P%@KF%TP
zn5t)~OKj4_Nw8oQZ05c$cN}yOaP!^<+7-s_>3i2Dp4gfCV<l)^+YvUE$z+x99sy>H
zL>z(p(wlh>>aH5(-dr3^OMu|~bKZxq`1^r9^YMnIBXWL<=P+sB#Hz}GuE)u!RONSv
z_iot@Tb#Z65ATmg8h5klm+lIfMBI9_oe?Pdn8`9_m3CT2pT=B;pJ(#L*3tVhEO=ch
zf{JPIPV}JrVxZY<#+9kB$0MQva$dg&*X<XOWz!D`pd?bSyz&G&o6%n-okd2sUJU*}
z07pQ$zh6G#XyiR7lzxki(d(L95;Yl_?1TH<H8t;n&`(7Z-44(1%8@0?xPhx;dH|Ow
zB@W?gUFIf}zengs=B`BZjQ_R!x-c2mZ)dbTY}AnOcLQxgH0;el&COBF&~}(g!YK%7
zz`dYWhSD_TZF8xy_0_*Ga@;t_F8W-xhrZH%KxADiWp-TYrv7IGlw&=JRS#)d<;lz<
zW7<5TR1BQ<GMk3~bpEC>mcXmu4JPe995}<b`3=#Ex2mR#X3<QTvA}8so$$<=hOLTL
z4XK+7ebh%Q-2+waj0ndkU<rq44VwPs9-C%2m1yfayUpi^qgbyKPVMorVsE%vBjr-a
z@*pGx_Xi<81x3`VA~eM?#L(`&jUmks&jV1oqD!_ootiSi=2#Q!75|kpIVx-dA@J*I
zel}A2VF0o;j>-Zc_M^_t8kWhIp`P<C6%R4B6Kkk+pv}nt37ADEjV$6jLQ93q7-ezh
zXPoG2`41ui-zTfzOzSqCjkKdXpFB#Q<la|HHa|#PIF8y8fWx-&B3+6v1j-h8Q<mtH
zc0m(>E~>4<9}8}Y%{TH4!}H<O?NwV)k3Wk$RLziLH~!Q`)&Q3rLdW?{)I#sywCNq|
zBI4q1I>C9>Kv-eNuDcRvKoplJje$8|kVnU99D=5$sGuI+G+jfFS9qcrTKSkj<Urm<
zL&~TwQ)&_;KWmvm1<o>eEyp6e8TfGlk`k{i8Qs|^5U1#3kfB_c%XP=!8D^lQ7hhD<
zp|WK!P!4@>zQEen=<b)nA@A>(QGF?E($Io|GbMr#<A~^VZq(Ur|2?I-WVZ5yL;Yxg
zdk$!n^DXA?^#SNEk%aOHu;+g-Zewq%K>J4uOCmi_kg>(jqYe_uM1s-1SG?$2GLwuX
zzwoEGNo|nY8O@sKN=^+E)bXb1<q8irpo9~a9xty=A<XvH^F+^GPv>A_iI=*S%M6;Z
z=4UFpJu1bcXS8_hj!T2)u8D|kVKWJ~aa<g|g>4(nIUL~?qp1<glroNr(yJTg5I6z|
z8q6lmb|4?tT)IgqcYcU?3~;^Ub5FtcP>IM`nqBl$nR36PlA2zhp%(-eDgq*(UPI7g
zYxMUYkN_8>kZ`-p%ca^-lcxoQ+=wQ`a2dE*@D>IvU_HwP<p*pBhiRXOXeknQHXe7&
z?O#He$;SbS#SUPPQ4vl$ITk4cQcD9!Hn@mnEvWq$R!vn0ip!td3G7AZppgkMO_`@J
zgQ-~ZEJPFVkVUw7UyzVz72i7LtVxF$;h_ky%KcR6F70(iJTzP3i$MP#TG_OLz2)6p
z!qTMHMOKzKSWG^wn>bIgw5w#-J=V<-RAx;}Rm3j|j<<vYF=%_Z;7aDaHhd59MFW#<
z;Qi~C#{+|rB9NCz22G0AhT->4+;_tYfLG1cl+oTs2ZOy(<!H1k3<Pjc1c|Pdmx~q2
z;_hTzs58I>jRb7GA&ucOK*|~BVogB~T};=~IqVC=VaS|+6@Nyn&P2OUAAO>nXoPID
zV8!9!WJ);IP_?OrGHTeRo9Q(WHMfnlrwT1T=F#L$JVArNLId)LJtqA-p9WN|8Mzs1
zSP0d~m61yb-O1ex*B-eq%xixvq-rN~a1+4KfgjCO)b`Hrm|yGo&X)I~3Bx%rk8PIe
zDFBZESc9vR73B&oDX^)bN8E2`HF3><1MKhv%v@P$6%xF%MAJ|;9mhc#er^mmn)C$)
zlxQnQA9V*V?_(mVB&c<B$_oM-%rJaR|Ked6VfB}1-Y!zry-;S=J|YKs5T^4nPi6;d
z0Bjn%)jb5J>^!8LY5~<w;aWi_bEkpF-TH|-eIGuZw62hA4hn?^uhW7Lv=4J4*)%O|
zC0~0Lg-avKXG4MeycPnhZ<aUk$(vpLSs03VUKAkL{>#03`B9rm;WeykSF7B?POUy%
zG3~XBA4#-lI=#H93z1>tDO_CHIs&L?Xj=8uS}osqc{1IEY-DAi$<uWG3_=zzXFXQ5
zgL&F|K3Za?INvwOx_p1G6Oaec_GSjE^${CH+%~B=pclKE!VXy+eXX>EA?CXb7fblO
zl9RF&pk5Lceiyq!31XdHvv&BrPPu<qJyT!1^;-)8FK0~51{h6{e{!s2%9zQ0w{tOi
zuJ#xn4cKy2RqbdVIgV1eWO^>mnNg1%@mrLR3xckQMwcu?ge$-$nA}qPDur0MgEef{
zx-m3TA8D2cX6uhRz7hgR7X{q5swfr2QAcVi5PMCY5(BQoV7wIG1}`qwUAXaOZ{(g}
z6jc`b1%fRmF1MHf&kA4?`g+eI7*W$KNrim->I4jeNs_EZ@}BdYB##NQn4elNH4{WT
zIiUnixMP)_hxGH4v=sw<>EgJyr}AZQ_ZMzpT|>Et?Yz}#uQ&}g(|>GeBs?JulPh4q
zb3P;6dsQ{-Rq0Emu~+<CL0iYwszfcw*jrazrG0%=q7MxtX7YZN;&@^lp4$gfyjOul
z<ZL9}y{fg8c~|#Xn*Yw2Q1LD?47Yp*U_*b86yju(*h~g)`gKBFVyR{USDSMro*1sj
z9;wLWYoahqR0&Np{p7rHTE=qDi(6-ps+-%p2TP3CN}@7aN}{cqr&O58*M*bC*VOWt
zBsf4x-C=Q&xfqLCsw8qao)!IrZVePKukze0G77Cvm?VBjW@Rz)nQx;C1j<_A(~M~m
zD%7+GlaB12OJLx_{2NVji~VCLLU*J3J1&XPvwP8C>+gL}vP_kcJ21t$J4UUE;2ldM
zPVc_%^YOO>tHm~@msENYmWFUV_L15_<-S(mml_zd<~kKP4)#uq4v>{*8q$3GI!_gX
zzOI2`EwwxdObv_elpqC*R0Ls31j6P3Kw(qFi}n%LXYXB{BHhOUS1+VO-hZQNl4Y*O
zG=tAptRsZ#&dJVuoapq>3SbcU3=4+DPA5Qkg*B-74-5J({}oqO2H0kEoi7|gCTVce
zrH`9$AH@P^gcOR7-1sRZ{yv$2&0TL`GWpA#BCSdC*KQp>y1`uG(bwQUc$jn)57*^?
zx)$@hT6tHtr~lnTDz&TQa{Wlj{q-0F%*%nhtY(o$uN{MM<LL~iBbdq1&08z&V!n%C
z?ilvR%+;)~jDIARrf<6+XYA-4*x5ux25{qoA^}MsK2&{*fHRm{VZPi42|c3AKP|-A
z{|vjpM_66ih2|N5Yn)am;p#yQL1-IRFYyqvO+sENPH=9+`+aL95yO7~!y!lT!HJf3
zhqyvkt!F}ixg{I5nAU&N7EC<!l^ljOHpg9Ic})isxMHWuU%3`Prs!J5#WkE;-&ZY^
z&%it`3S9zC)>vTZz+4XvLX79XUAnaqLW&1~v|Y*=@{*G2+K`N4MceO12bfKEE*J@~
zB5xR@$_RbaS)al_`LQ>ZUvpZz7dc(PIhcQkfVIAA%bQTE(&3~bhmv1_x;TFQF0f~(
z7(B_Ztw5Z*$^af(axgncyOK~Z9F53>#^OTj*VO*qbe*_hn7p%sqW3Dc`TE=})-Ul}
zyf6M88Fwf}NCZgG;1ln$ZG_Tatx3xyl4D4^!(DW^&>8xV&(5@e#JL1XD=EbSj}c?!
z=7MkhlFW#_(Z&j%6p~@h^E}Xw?4m4PCO1HCfg3%sa6KxWq^kFd?}REFx>ikokgg1l
zE!X)vv9j75eS>g-v8`!C3$;TV_aX4)OR2CGxyV+1>VDPwX0pMUlHNdDqJZzvyOkuk
zzbc0_le4<-#X17>6EF7i#<eiQO$K&ZCxA@MmdqEs*e`NT#b?&<$2GeM-Z^wus%xqM
z;IaG0^o$nw%plXskT<=oP%s*4mJm-p`~NN+h)U-?d2Z$#$9qOPF}6Nz9D9ITtT3Y!
zo1;fX2`OonWEp&21&x-ttuz2_pByl_nu<)<N)Psu6jBIKFS(yNdHYJkj%cM?ZVlS9
z*$%&L&`?mtii#f$%p$rYMQo*2f`FgY_59azFdDM_?lKxeFEHw4&KM<Jn)K+^U?e;7
z4Nn|W<M}<;m<`h)QK`Fhj^xxIP=+cGjsiJR-vb#@caNZzsN<E0n(F_Tod0WFAcVn7
z-jc07b=JTfDm#(l)iCUwE7~iWd)f)YEgp8g+buaAJ*#t4lJ@+~5btG>F}nm+Ce`9q
zl9ND6F$3}Aa_R#Yn_@aDH`DR7G<cM=={Bv&-@atLfC7I+rd7JipSr?&RZQti4!Du}
zdl}IAu&qHOh_82$JM_K`MfkE+2Ew?5N8vJeCcB8>R&KABr()G4QL+1DPUzR<HlPhQ
zmDw-c3@C`=-X+|fEisRj(>dawYoz7w3YlN3@V7)<)iDAUg|?x4uQa;I-9YdXDz4gy
zAX0KBkT>Ox<BA#*W60779XuME{3{6zTI1K7kU1*<czfsvl&qR>L+71XC^)BtEdZN`
zUaZpr&jy?5$)2ZLAq%HT3=Y_5Axdr-2kFu)Hr-#vjJL1XG{bnVeLjXvzC{)%)H%Oy
z=d|)OPeKCA&uD({*1>enQFv=R77O?@-lIlO$j=9UUs`H)p4Xe^xat1M$?Dp3F4u`W
z)B_{S5{S~u<mjaMqa~ba|56y;UeBM!%MK_}No#93fdb1x@rx-UU795vUgwbG3l${z
zHUFsa6MI+bTfpn>Z<qTp{n{QNmm4aZD2{jZ`b~~+7jrDpG%wf7lzzNnFtsLVPCr(n
zg&%}EcO4y4&wi0LKUKN%HEDP%-~<6;^^qZa!Asf?<V6f&fMfSNrKaFj;nDL^t@4!3
z6JX;qD?bH}l*jU5*dQ{9Spe5JDI&G4SbR-nx~p(TR3bsAGGohZPTF~Ndve~TPr(<S
z@r?HwCef$Y8`44`Fg1(Hu=(~>Me#w@oSwMTo|@%O_#8VyA7dJ&u2)*Wh_7B+-a^+<
ztJ0k6rkRNxK^(qRuDy>LJPfnao7l2P+$SX^<`cTZa<t8mjpJ+bPA^0azIq{f&)!fX
zZc8GA8LBx>I2-*gVf$f85$s##_XyU#{2J_CqqruOT$n(#I)d**tlR<P(>>PBY<Fh;
z;S>;x6l;NK*cpLN^$L88>*QN(_qMrr9dyNi4MLuo%@-h=Q#+|ss`a#L1kWviXs7Gk
z^dnYqn6^|xY9EKhZKF^k7430c{=<N(rlyP{-twr1&w1<R-h?~dm*kap=e-V9JtMEF
z9@z8i<8kC{tLcC&7`6)Qz|X|?MrYWT(Fa3sBzV@k7l)QD!_DBeeo_j{XbuJM@L?wS
zq|-LQQ?5IPE()gWH2SnBnRxX2@WeM4lrBty^-wm?xJ(MxpxFntABs&r*@G*T%`Se5
zGb;2}3G6Ql(%tt$+pKtJ2yzi&6p5gD?lwtLP!dn^$>pzEnfa$N;Gx_7D~>8Hbj@sg
zSxAq1uuZf(=-vQ4@O$cKaUd}WFtX-6bA&RID2*NOojT8USf(yWzn5^6tByLQ>0{vU
zMulWwo-EcOrKTqelg6ESEW5*Ikv!b#21|x*vQ~$_#n+Y1I8zemLX~Wv2bD>pvcd=~
zub<Di@5($0PxQ_5F(5iysb2$#_rP*#SYNTR`9gCgnSCopzDaj*ch=<bMAL+^noWM)
zd$Vm!!rTKI40uHBqs*<2IU!!ic;iimRWQPCKd{iuGh;Yprv)BPh&wlJN-C=5&J`TM
zrm9aFCW;`F@yN80+XkBI-9!$X*GDKV>1p#3gz~p{O{%WL5N1p_-nTwJLMBOb>g}pm
z)8`zT#_hKk|CK3~?y~Y?KVe%y0Ttj%tQ}u*2r?O9;dF7aV0pJl=Z5dKY@U381lLj^
z@BX8t@nosnwnuzxsKCIjV_gJ?04t=Pw>r@U-!!qPX5$qD$8Vy-zVFffPJ8}8o`Ky=
zQm}^~c|cCA%<q}ar>ASqVl^fNlW!Fjlt^kP?sXEOu(6i|k7xE%YFbx$R)paD84Ox(
z>{>KYsnj8vAj_$+bIS}Xdc<LmUQ4CT{nCilUKcR#ZxLejXRnv9Gs<PeQOLpm{a)M0
zTc=>VB;1XcEM#R*W&S035x?{`32Z$X_VZQYk#6tn3@~*a_a!`CD|JU#=be}Od`y1d
zhPGp;8;;xB)-d0T^Ljxi5N>uswDAa$Kly%D2P~&(@oCTk!X8NDn0t06$}yyMmtE$V
z{bGO0cR)@Sgmg#+r1!hin#;eMl6ZlUM`sVYrcAzEHl(g`pG9tNXaIfs;wt$mE-?b=
z2_RJp#h}>!)pH?(<w<iyY8@Z1G=@L*1}G_hTYiu1x!eBS8VFNw;y#flT%L^IU0ItF
zlPiOe1mb!5WcB}azb*(ffmygxs9`?pG)pU<?a0iAC=9p1<FI+q<H+kmAryG!Su?SF
zWb{{GdJvQ0T!vE6GplZo<aGoH&0O=JTP9{UcSqMrt&Itd(u2{Kkb#G$YE{-~M^^qI
z(Tag{F697vtOyz`buLN&eB7<yr&~sv)VysDRP!btTS@Bp<NNYGV){_+7Z;W)9vZ#w
zl|o3hp)rPuUf`v)q-kdxxbBh?QT9@1x4aL8vtDe>3_aVFg`wuNb69^P++wHDaPS5&
zIbOfuV;;!^m(+l%@7*NTixNY*NhlC04>=y~V2|v1afh`}0%eD%4|Z@ny8KY7tW2M%
zYYuO$Ah!qu@MjG!c|m^UbE=by4Ax~es8`d<fO7~<sZh(4*z7C9KXx!mDKnN%n!x?=
zKO`BX@U4N%@qGtx%(NHh=#cIie_R77(+B4umgd1+2ocQSWvxO9I`)WMck;G8fkSas
zY6J}cX)~16@JUMy<0;{Lk*7QyTrCl_ScmunM`btN_dS+EpE}v5(+^DQiH^I{h&qku
zFsZu${Vf%~c>jltgYLpFl;zqhCsC?2aZx%twa8T6Br~NJ#5lPLbZ4s0dy|pk?%&iQ
zt`S980bb0)8R;_nH1#{A$qzEVV$c=4Q@9UoE{8tcNd7g?yzUM9;HY=CyeV0U0m$%l
zvI^zVWWR(MWCP!byYStKOeVUOP|4r1HI*nvR<2+g>K}KG;0g_k+$bo&_Y;r&AB<NA
z=O1CMG}sc)2pN3yrf$uPkJ9^C&Sygw6tF_g3RMu>ene1gu2yp|B>{Kk_hQk*wT{c$
z!(BnsUyW8Qd4zmXIDB{iVOWSAQiqR^qp4~IOb|O`pOdLGeCHgKt#gYHJN9=44Pssv
zIBMVbT$g|fBh9U`7uqVvgvO?i-T^M;S!8ejDkY>%CD|Wr6x+q?X!#^U5}_wNcR{}E
zLcmsI!#{Uw#JbNP8n$R@&hNocgW&A)=ZEMu?+vtADQj@IiVBc`r=6Z9-JErI%T0>|
z3<eLMLYfS8jn8PBTF+`;0(-b!aBa5{P{~vmC6Y9uS;8wyB1~ZXYB;e#2d8tmW$Zgk
zJO`SYs%OXYI-shn$aH|LDbg_x<OX?7^ri!(TZW)>E%4wTT^6MK!5%qq#o6+cN6BP3
zeWa5E*dHQr+1}o@!f<(ZcPcu1*X)B@iLYmq_#o*1H-Q*2qaMZ9%W&{Q`nN{)1{U^E
z&2Z7-WO;Om)7sY@|1EdN)G^V6qb%Qc{;{C%mVVNmZs%*<@l|jNIHtxaqK(o$98?%K
z{@mkQ))0E_@canXla3Wm<U`XUJO;QGCStX5Q2?eJM>-!Y*7lj`H6OYm6_G1*h{2so
zJ*$~qtQCIsE87Ncl#(>D8+phq?k@JQ;F%<#i5I||3+RE9)}8zlg`UT!oj$*f%f7-~
z5rv_UyX^T`PLZdVW0oI=<wC@wpI<PUh~%3K(c{GnRW-1<iX>_mNo($OF|zt2(Oo))
z-{=gEPyDp6yzN&uSQ>w5+W{ajjLmdy&mwzCGt8VAUne|*kcO-A1+q&?S}Hyd^7*MS
zS2c0EMsLen0)-ce)W2=jK}~CzSpFr~*L<g-PiW!WnNjk_m^w<K7mX?&#n?J*uwKF@
zvOYXUS-i`Z(+W*UM-wY;JKg&Cy8|XY1J(p9RHDGf2+>XXiB?;9I;FgB-GeG^uY^Gk
zWP122j!4AbodMZ!paTZ+Fc8Rrq4o@{!R=Xn?Wm|{S-qIh(0oI+9i4wRf!Z)s-1f7@
zbaPFdK23T05I;>lF^8PSJ36;i&IBectc{qAF}k5Pz8oq8>0ZBNp~c}`QUJ03K*3V*
zyXNvk5o9PP0RZIag*?gW$z>Qm5p;#@G3527mciYyjfGw46~SW!@IiQByE!eMVu6n$
zq}%-eMVtv<krZLtD*3=d#Al^Sj-HHRoWbj>LWJnPoO0xIs@~Y6E9X{vGw+cOXXc|E
zpzh8em$5uh_20v2Xj~#YV;#h=%j)0fe^+mVx7G{T$Q0UwCAIay6NyGfHW<N73oD(d
zS%?h!#Pe-C{d=PjmQerj&2WiQhQWSe+Ozuqy60;pVI<J2khwK)*;-s_mQuDuv;P>H
zif`x!%)h@h?jEI7F){av*2ZD}>c6Jz#k#Y)2@RLVFX_o4I>xy)XwquzGP^ffzh`Ti
zI1sNfD@-`i3AWPtSSORNOh}n@Pl>$yZeAimyy}-6`__Nk1xIq%EqG!iM8ZuC*A8Bn
zMe;(LQp}l$!i!CCT;CVm_nRbsYDGSP_1O5>=0rW;1gHJjz}iz}hhvc|?vbxA-SA^H
z&Mk>gVpU)h>g6Z4Z+ax*-BM_$Z)BY~<C(<1-rD4yN>imZNh0Y0I@PGV>7XE{sGx3l
z`dmB7IQHp&61U%jOw}!Hp)wG|WQ)!KI<b&i4%OXqZs)8&<%f4G@#+@{=7%X42v7<k
zQgHrNi~qpR*LJXr^)HeaNP`7;jop(gS3_vm7q=TJUWOXarj&`k;rtod8ZqLW*&4-g
znldDPUTUCIt%}39qHw{>)c&$}vU*J&K%cj;GI%O=gq)hC7F}XUUCig~{;kpIXgVz9
zTQ<Wtu9)BL$g6n`Jy~{OQoEa3Pg;hh^=oX9Ncs_7J=(Y?hNec{gRx5vp|_k(ma~^_
z&^C;*r*Op!7F=mbR{9~~ZAVoWpP?zhaDdjJ6T~|q$J&NjYslFm`}t@w7c9=|DE(sr
zjg)yF5qFSv&rMi+Xks{{pa4vF%Oa(4CkE9MUdzqnZI{xK81YHy_T7#eQYj%n`_+wB
zdpz0hnM&HHb++<<h0<%QF;}_(4xeN_1?QjZ4lW)}&@g7V%5l!Qi%X|~L+-B2E1;O%
zLmf<vvZ&7=@O*ZmK;xqiWPY?g*}b?uMA4imPZy!Yk&>j2!w~Zl&A##J=kGla`_A<+
z`Pn|sh#9ux!8F^;QYk=vxSXkEdv-3qoN@LF*&n!t1=YE@f%4RBhG+|(ZPDT`LZG`1
zK%7XM3An0U)BLV|D?P0Rv7p@I%RGEvYCkg!M;H1umI^-PCBM(+@KC2NkU&`bu`VtZ
z5e9MX<|r*s4<QiRE}yMC`A99PIchs9E;SqiAz4ACl4J#f2?ys0WA4sw5A*ZPw}=p;
zUPGsV*&Y`Njj2!$s!*6yp*tugLAy5Q32430sKP|(g*sDFj4cb>D%k=(axV$_@sd3q
z)nEBcKsk=7Il_^6KxsH)H{TysK+1n~p~#gL*i$StTYnw9wxQrf$PL=LuA3!A7`osa
z`^=1gfN3IFK)m;uZCw#0cg*E+zV3@4%uDXMMtrYlZA;a<I(jw0{>xOSY3|xxva_6D
zyp&=?=0eX-%BCyrjHX}%jYhre{f#0S*KAS+@$w=-ISKeR>V2Ci%4ruQngnKgpp{9h
zH?gbs@egKs*U;G`>tqGs@^`h=lq;fZU*|DiA{Do`<ZshE#3o{(HZu&DZU<n%V}^7q
z!O!m^tde0rFX!OwjpbpUO<zsu=>BtfpyYye(ajy%7x|*15@D<=9<gLP90H*T>uMh^
z{Uv5O-1nFph*L3=*Qrz1q@NttIR9SMbM+P<Y$6x<q|5aV5TL-~cXau7^|`(mdCxzZ
zMl#Cc^IZz?Z06N;8csZ0z?Ybl=zlfTH1S+0;b7isZ+7ctq%_?w+q)%stp%UghiM<t
z;78+AY)L8hlD+jn8lPt1g>(t>pX2p0;){xR#cFP&KjM}~lmH4*u{k;9BEgCz)NzLp
zEiD*aeFvZ*bs_5NbfK7qRH#ImTV_ar)KyxKj{#h|l*V(0t}+#4ahgXpZw4d2^^@V8
zMLFon*WqZcYvp-jKqh8QFWB&K$Nbr^a@p<wEf|%z2uuJK4g3e1E4O<VN+Aed<rUp6
zw_Y(l?g{Xtx&QE3o~bzgts)nV2>Bl-9q&_>%3nQ!AGM?=VyQ>n`y!`KLtI6ez4I4l
z>f`l_+gAfDLC*EP>0409&w)|0T90^9OAtZH&+VypHRwfa0Q`@rLSv&W_zK+N7%TC2
z$<jo%NcO`fdML@$a*0K8BKDu5wEC&szk>H8GynN^SJaJC4*VZPGL*y(VJN7{x*`Dl
z@ths-n|a$IX%*GHleLaGzHmsF=N$2{F$h9eTu;5O6_7+rY<jYLJB1J+_p8#^aD8#H
z`jG{bwSj}4QTnx{VgMW*B*(rI2M%<5apA8q(45eG>fpf3-`&W!hu6(6AvTS{U6wAT
z?FcmmO(I`L+RZYDXlk3;@C`a!fAW~Et3Qww&zPd3k4`5QUMXiNJP`%s;Kogl6c%ie
zAKj8xn@iJW`XRakWX$+4Dq50@+OF>zJfQ`N)z`Lfucda*YMU^ok}~)soZ#jTXeH>4
zx4Q6e^0a|!E@0mCZ^T7uWLVAZ>oIR;qQYC7rjb)?R9nnC5zTU3Fa7C<B2I0(c5Cx(
zr>ml`ENxyY74*>mACLkUZii>c7wS-u!;)gLgL6Ca-|ng4;2IIweyss>{hXGQu%c3q
zbsLgS4-U-Ak{QL*yzvlvahNz=BCRVY<rG@aSKFVUt5hZ?1cBjPzc}GqN#x?^T^<6?
zen(Q%kAvSDV10AlTiK?!W*UJMY|eAcP&4Uuo{njc4IA!XQva3p<FWfWlWldjv(mx%
z(Dk_^V0A1XSrlJD73W|(CvCqGo(DK`6<=2TFfYqfq@sigBJ7dXio~!TG2d<k^%~7W
z?Ge1ZR!h?YYIT@-G@yV)BB^C<Ep^Qsh(yF%m;)i!Pb+)h|NCdmgthIyBrs+K!cMN%
z;aBSEqEDta=X_~Vx2KVV{!Z(rS_%X1MX|4Wt;)Wjr3K!B(5Bd(6rDsGi~YYzPVqC`
zxvUv_7jw)ND;LMNrO&l935)L;u#9I9@o|dP)7YfH@X~u>H4<{E_!QC7ZZ_=?d-*k4
z3&lMU+OVIMcr3<OZlL(}d&Fx|KGpCBTbYLZwFbcW3&XAJ0&CA6sRhOfn=K`^MYA6x
zKfTQ*OF2iMEhrpp1`XjK%MWFtgdM`0BGchbtfF{_@@uv>$))Vy2dm%c@!|^?(=Z0x
z&?c2$iv7$7?S7t1_1Y~0#nZNA2O^)|T9Yx-(?1;bEi<hgM!#BbP+9X^6M-JFphuk%
zt?uLqDWD|75toU0MthuRP+n$6{R#GLZ$});2RfwOtNy~_j9j?4+LEX(Urz}dcF1ak
zt7#=QKLy)PFNOec#j|iDIb}__!ALP-q1ZGYUO2w#u_Cl02f?Z5CX+GS7zDIjF)4FX
zYCgPE8-X3ZD=XW<PS)UIWBb;*tKU!!HnQhIiOasU1UtkT9b4w#scHSoGFQ&%euY^x
zb+%O#hSZxo0EhJmF=hDoTqB+1Il^-Jsb@88z4JM>Q!>&6w(#gxsEP0qLBrXsM<mfh
zp@&Ro21H7nhx9UFX8@==cPBONQ{>Z|AwS^m@Qlq*gS^+GS0Pr3&1*L8X*W#?1~#^E
z*R3-wvI26{6$?Uo@-wB~6~G+TayYoQNWJzpH&Zq{Lcv5IJ}1#|wBP?r>;Po<X8$dO
zj0TG{js9#&^96`x3<B7RZ{v$$zN{9d`@UI3unaT#xo&ZNL4%RWNvRsVJ=_+2bocUf
znE6-Lt`MKv*Ev@yo90Zi#o5}I_49CweGnH!qp=57Ramakd~ikea@2cPKJ>5192Bgw
zJArPRB{eJmxec-;aO9?%)wG&eS!smw-*u!6#-fVztAUw?s;-C^Gygy6T^A7Bc(cq<
zAgrZ`#hp@cT>Nu6Y}wOnE*K7SCgRZA*TIIRq#vxxb(*)bK}k~vG_%QQY}zzmVK^*_
zi#-TGyo;?-MBm;;M4HD-MQ&RJKpJC`%sbeD^kzJE!i$9W`9N%B%sD`;VHu_$%0+6>
z5zBllvgzh}Wl&kF@OXZmLv={$_35N3oeow?|1fkA1lN#~S!73wP0Hs^g#xCo_mZwe
z^l<L_XGdL&KdJFp{KwKhHl?WHE9*3ziqW@J?r!5v0ujTnas7rn_XqFDH1Larc=zy+
zqAzo3Na~1ihlLOlijhb&06q?+-@qdviqQc-7PS6qzT*(L)OPIZ(o@?;rJzJI=)u65
zwOXi%j>K;CZZZbq__jl1@KkKv5&V#LQl{JT@LH77-B*DHCG;;2b%8DG=rX)m)+p8#
zdj9>CaUTH(Jg}ZF56hMB6#r#D6oPAtq%A-yc2-<{pKZ^qgMCbISgi+JUL??*@Nz0j
zOt>5NCfH<vf6QN6qqixQq8)^wHppYR8;lJa?%l6w#HI83&D5LlQC%RvkeFEv3OOAH
zHG2v1wOYsVD3S<(jS_I4D2?CrDx*s7FiddpV(yfNkZ^o=0-6EQ^egRyY`2-vKgWYy
z?S}`cP+iFqOmhIU=EKz%I`gLTPK~~^U^3T?KPJ;3Y^ajxy3{LbgK40m*>1fl+m%Sp
zE5{$}Fm^6Ol>P5VLv1K#=HPCGB|Fyc3t_{{U$*i*^X3XbvA^?jT!-eU@WmrFQ=<Ac
z&N^F*<UWRhkn<<%IALC<cS8WcV^5s)<kBKn(;=EAXknwD3NgLI&8J}|VHmx@Daef9
z9tyDmw&706-3dtOh$B|yU2T)$Cjfbf=W#L^y_-1=rXSk3hO_f~f3|p{(yDN@fFe+4
zFXSy{Ig^?w8m@qVYn|VcX)UraEX6C|oxINIhmEhA(3d?AML*^xOq?|<D#>JF`W6B=
zyJ(<?Vl<)fxZ9BduzHN7ZCMUyO1YYXxU_?z;_ayLCHK@|dHJJkdWPUSS!YMESZz+@
zJU||h*$X&@nVGAP8J=!jf&s;(t0u8n$+ID-nqv&!WwU(T{^`wi23x@;$s16yejYYL
zO3J^HZ+5PeQJj_x@jxMGA5#T2Z}tkaS&0!YEC`qLsAucF8!IxvM6MPZ5x!}N8Fm1*
ztZ}nQOJV7?qHVGE--OwbWl@MF7zonNvYLgX%hBTYj2*=y*In7}iFE-ANHugI*3)xs
znLW-W0)kPpAscr&HZ&u%?<3#DWv$|}mAgS^>Wxd!EBHe~%3iq`f;jCB{`N%ri<|j8
zS95XgFG7{2Z_q4!2%5bqcI+o3``mqFcYR)(B|9LzXoVC#8ab?nAGpqvkHxG{&n`DB
zZN&G9v`*j4_}4Mbo-)mlRvEB4y!K9`B``w}g2gQGIQWmMd^^qN4+<H;RbJvT$SQ3*
z48;Ax=VRS2ocWl#5QH0LftPw&OEYaJe&6B@;ck$UjqgYTiNyQUZ6BN9@7D$b`eMf^
z%K$z<&`VjMuwmO9z5iN~f2ESEI1uanX_d%-Nn7eZ)w0EcK^_PWTRi@%dCXPWw}9-w
z8I~4>sO$jBIHZt;%4GgY5x;!k7QoKROujv$;<yd=KI{&EXuw5!?wL^vTz>?{BWE?A
za5U3XMOkPoa_!Eo;(k;ybA8wt3nfZNuD^&<UYXs;^PC?yU~C#-l3N4kB6yCR{Gjz<
zlFnMb?fSAym6PANIz2HxXm?pAgZbJfyoGf(;M%i_<aTL@WAE})l;UH^&W?0cPeil4
z);oLlR&W#<H4#mjtKz$f0Kri|_hYqY;O!~AR1NfmGki2Y^vfB`Z{GIJ0TbO{5g-PV
zc6WAcs&IV|k)}a=>|g0w8LkF#?jIOFE=q813!k!zYj*roGST`10dQDGeE|3Urj=>?
z>$w~!zomFN8vdu*+lR7l!u|DvlE{ULQ&1KBXJr``rIj^V79h}9T*_Evo;n?VC<OI8
ztFxV!jNdIx9eiKO`0pjx5P&}##i8}HVJ<wlDv3c!3tzJ$PVfMN3Dtxu{<RDt`?3`q
z3A0AcG<f#;{kOS@t=J)p_nJi{U;VM*?LI|pFV@MHQuL_ck?n(y!jZh>&5@(>4LX2N
zr<AiOZ2TOM2QaCSmiCNvhrvp!<gt07QQo+pU!gsP#baMnsc`GlK1<*6+QzG5m4Z2k
zjNT@XYJ|@XNNz@-^}K`*i+SSMA5zVu&_|%S{VKZNVx6NgOB&f+I;;6)k7y}LYhTQU
z1LHLy%<oe+#=7Nlz2#%co1fO)#;XeS;v02+V+TE;cH+PB8mP)_D#=uD7?7hBiS!k>
z?B%rSci`NyzNBO7AE0C1xONsLTs8m-kg2o>!s_G4F$gD8AQ^5KSa3OQR$cjAGCD88
zsggr5iWb<dVB!Xa?23OFB!e%JH8E(}>n<SoB@roMVPiHL%GCp{@EC|s5pQyfeI$uL
z1(cA(*KATmKMjEw&+FS*Yl;2kZ?E?tw$@;i)t<(ZpGDt<NslMKiHo}syh34qcb&qY
z23JM8YoXG>e@fhTr-|<;oRzwbh4V&Sv|W3}Fq56t<`rIkPJ3@tAf@I3+_vX1--7CS
z0kWj@sS1{hTlIvy?;gdVc$>s`;e%%`v=stP0%+*^mNuK>goHF71KNayzebj75aTqB
zf|xN^wWh%R+?*teu+M|37`|J!Qcf{GzR4pT^0TNjO1Qsp2q;Cx-CJe|_otQ}g=U@*
z;Smuha6MnI4+nk;Y7Ngy%b`vxR|)1mwE2#$8$qP>I`wX$uBRIzJ&U_E3Kk@eUqqgv
z?@Ad5VaH{uI$@^Q3QGV2NRQk7UZT**47A33|2tl0S=eh3iMd4!E-vxv%WGVPD_89Q
zcdQ{xNPZrX;}L-96T<~xdN2MGoW4RwhpGynNk$uH137}wU#Cibj(AXgu|#7WwJ4G*
z=fI_j45@Y?q!Vy(B2=Fwo|tF8hi%Q6O@mT0Nx^<f(+LJq*&-JVCchs1R-gD8<e0vc
z;A<o;wO?6`yO(v(X2$O972NO(n$6Tn+&~e96ZP;2sQ6-Pdq#;MC1Q{Sj%w72vstO9
zyrn3=yVG3k+^~%zqwk11#jr5#**3R@g=`PL7~4&*71CiO695iyE?Ac3gxx$3!-DhY
z&s`aT{*Bz*!`I9p3k-|oLIShpoK37W`ONnRUgZV3wzl4+Wp)Nr2!gd_AD=rKWS8XV
zlib-H*78i@Qt-S4;yG3b-qmx>u8!LD-ew&6c6TElIAvIHoFp1&Wvw3RD~M+&{BLN5
zUupvsBrJcc&dg^uq)KTMg(uJx9S(Kt**?Z@O+YR-eUf3zqONA|b5^06YBHBTfdI88
zu0Nvg&}=F<)A?34&Si^U*3CHYGhrm2^I2X?#HTNYrpRcA$l)Lg_H6!J{UP87g`*jD
z^=)-{oW)K!xlrpbL|G{*(LZCb0x&oP#=ey-o$E49L52vG(b?gOHFDKqWN$mkXOGV<
zW{x#5p)DEswO7(v>YpfJl0kw@wyGtEWHPIAX-+sGvIcoQ&I0X!hnESIuaQCL)a&0y
z(0>Lx#Dfo}MMtGy5*jSzgEmQ{HCvcX0r7sMPH6l^3m{%JllL8FR$+Xg0hI>&N)2C}
zVuamV=v^q4(#zzqR|RkXR>i-n^iJRVf5lu;ULYmPW|i58&{!QgVh(h^t(x1YWKl=O
z<o)?}e9U8&GfODxyllIYF;XYYH?1|LH6TyVxFDA0tt)vVI{k>FNE_3>$=OsZOmf=1
zH8Tso5CyJ5Zz9UI>r#->U{|i{K9l~=4mLw+_?xR8W~J{*<R;as%~oi`?7stqKqoh)
z8s2jIbxIcPOK5*WAltZ|`KpAzK89+`n_7;W>%}~`8C5s%rofnDsCkg!nmpT=Di1?+
zOSd^IuWAUe>`GTkN%xPS<i-yny*d71&s2BJool6`+OD{3^+MtjH>jN1sxQR66!bs9
z!&b+~uX&bQ`2`8`H9{;7O?}*rxTFdQUzhCdZA?#NrQhaWB>(J+jViWWs>>0mDC=P?
z)b3z#PmXOUmD_bLY%I)FN_v$49rWO{hld%nG41FsUrZjz#BBWl(duENb8UobBuxL<
zGFgMcK^D(u3e_wMg2;?O*)w}hcDzVLjhIDF@(dfnkmn(}xdIfLyVxtDwY7S14u;WW
ztyhK;_0cKtC+BuxEygnwGm0Q_hAY)GId;Id-++y>ybQR8-zFZQrwV=;u02x~RISv9
zZ?7)$ZA9Ybj7@mp)h1oyb6+s>G5%UT+AtYnwIuagp(MTKHx0WV=N<rCU$f%=p@aMb
zQCdt%7l9?7conZs8TnNLD_yg~1JNA>jhopC0J5*dCv3o-4;kK+wX_GUga}Henuks!
ztjN$GN1YEHBE^r;@!_rO022-5ktohsG#~b;uIM*$mM8$$2b+QJKqO28xT9r$nu8@N
z@pL5!>**`+^~SX&Io*&g3@8MHr?0>|D)ZnXS{XC?CMDv@{fmT4r~aG%vgHbN=qP59
zb^weBELNw32dcZLl?-1GaoxN^$fE#yp!!FE;}g{|BQxUq47@8w;L$^_iK5}i$15ec
zHq4o<F-8IeyyzJnUzyj8it9xvGzRVPwU+U%ij1%cx<1Xy;|ImrDma^9vAIZTJZFOs
zpGSrMc1jlED<eK59tz2EaL3mjHqRTR2{3khR!zfCG-r)Cisx8-sd9*~<oLhe9twjQ
zDiG~ONEun@1U0bygcIAM3P?_anz%$Gof;;%SyMZ4Ov#|gx;|3wAIlR&7QtZcbE;Z+
zM2f2*1e-%A!nl4qMb7`b{nHqW_$dgPSCZiKC5370Gzu&FSQMpu!;oH2>gvh%buwE9
zlbA;NSJ~7oiEs@N_YLGD&p<Ny{LbtsYe9l5cFo)73quHoEL7kIaKa`VP$<0a4~Mf)
zJIIl*vuR8_D43T8aN1ztsgt2ml#WRHP>zYD29ZQSb7CgnlfX=kX6AaEF1!TW=*ecJ
zCL;qJTE#HK*O4VXKzE$<aRN}WL$amWSLjNRU<WIJ+leCPWczLuuMZAq`UCoRFmT&y
zE0VFJzHD1ONRZiE<=vgVGK2XT-G$NA>~AA%WvUlA=ndOYyf#AB2H1p{pUN9&TrgUs
zz(WbYQZNN8|DMB4H~r_&M^YWl=X0dCKXmwvWK?rNEOm%`Zm&V3%5d2lp~5M9u5%Q`
zESr1;$!;)D=Md4+`D%0}ovPPz7HiaARW(GHrjg79dU<7OmrxdKTGh-qroB69*(v<~
zoR|niXmJVy19K~3_Q96I(lQM6s9sTIQW+jqY6kNg)>cjSNN=sjkGtXSICsuFK|N29
zRyBk{hhB>~BG_&gL!tH1?ZfdV)#a0a@(-+CvNbewZQLAmH*-jtBx~iqpX~IdMu}s_
zqmI_>kN(>7v&XO%+Lf%cR+<iBSY)TS(iY^;67xDxlh8&{cbSZQKS^xz#})1FSJ3aQ
zu#^S59+VakqxV$n&?ihb2oWgc9NOxzQeXy~a}gEHtLNtIldj&E1bef8^-f=5SnvI6
z3ZYpMx+xPT(TrnN@T#IgBuhzwQTOEMhDvfNfDx1QLxE=51>@8ZHXGiWj*$767$Y=A
zA$l2NB+#C=tc=S@;|B9q*2snh0csRA2PUB-VY6#Wa#XNU$)>R>S#3BxtD^KN3HL~x
zoEtcA60K3^Ge2e9lRSJX_Rv}sjd?~SRMD%}ZfeQgp{iP__ny79e(zz3)@;EMe7S;j
z1{VW*h<ZFk?8df(puN$C&KX{|58Uj>xLH#HibOy-t#tK`&x~UGrCGAan9a7d+$yg1
zFDv*zUj$C*oRi9Hq@FBf877Q)%F24RmyRpEkRYP+fdbyaDsCLKuVuhkJXRF?^>2Wf
zC|2a3k_;EQ8h=5v(atwS3Z_3UZpZ6E8!Ea0N!b|paEm-@RmAq3)sL9TQmb1?l8&E%
zM26$Y)2W<+A4`BR4{rFTXY?M{)0e+rS`RKIWarVVVz&fmRc)Vgyhut~x4b7C+=ezw
zG%7bSrmzeMY9iHX3w{;O%LUXK@(IpNX(Ap(gsQW+W47x!pHULc=TpjUk|&T7eY?-2
zi<Kd0iOm48k55B3c;!81oC@YIR<&KjxyjqdB>vb!YVMR1K|waBGC_5h4WTL1t{E<4
zFFWCG_H9qB2bKy5T85(-84f<T`AcCK#FSvmJUNVfPJ9N)+Pj;#C6j&8fdBw4(xmy5
z-A1=gzaJyGI=}lRa=i<eCXL>G<WUlmc!F7R@viLF&<iD0T-mwxg`77V_MWqqvP*yf
zEZE7m9(g_n6QMzg^|xo<sa009#yJ_;Gal#=U~tzmiy<1dpGvTHE75WO>}x`<RR2wT
zO=Q83@wW@MfF*NR(Zg|npUGxf3#75x{5~uSv@VW>fhiAg?IAk(Y}m^Qt~iTfgcs$Q
zH}JbDU|ogsO1?htFpnSE?m6Uv5Xpw*xZFs`n%4lUS<~iPgL!uAAF<}G4B3jb^pg99
z@w*I1yv@}??Y7QKvAwB%avEtpJL~vg7NMW|T_&QJRMos~mb)E+{;yvigXP0zDk%tM
zK9UD;;cwS3nXp+;C1-j0q$xvNOn6enC*6fgOGA_@?|{FWHUlnZC0fp5*@zxo_lw7)
z7R^YYqv9A%h7dG6iR4I22tqX6$+u3`iZ+5;f~c6K$#MU;$I$LhP9L4@gD(qwm;YPO
zAV3pI5Xm@gMGdS*zt%;A%|X3jZB4^4JM;QBLd4i3YS0794-#9qmQG~Ts)-M!*eT}j
zxU8!E{%^%Y6e6z2Tm>;1iRu&;-0)=eCxvAvpMod~M3!YI+OGILOvnOw%R2YTyKPLL
zJ=icvHta_7ErO@ZQlI}k=I{%)PZjEo_HA@}m<gfWf4|CqY23!Ovj-E0VfN3}(0XD?
zcB#3lp`LdywFCNAvB0do=szNxw~yF%Ulmf7^WP+T!*SChn}ox1x?dY}4-(({H}rS!
zEFSVA7z!qNfP)bMi+u-Q`|>4Ii>KSG^Kfr11aU9{P%JHRe)0x^BRK1nr;5)F-){-(
z>@~0^(bRoIT6LFZ1|N9Dgi6PFt1rq)#@9dJ1olb`Q*R$;o|tuQWRp0oAVzzv>be=O
z7OMW#w5b1MD3a&^B5(kp2<Djd-S*Rxh?mtc1arV7zewmRkNlPcyK#?(8{tt<<7Wds
zZrcIv)`2In2M0W`*B!an6d3l!kB@yJ{$2Xu<p^J$5b7D?t7MyGO@w!-C%&cr*-icP
z_8x_<1`@Vi$Y*T4AQorX#L2+G__P%9JeluQCNE`YF_=FBN#<W9+ftoY{VdfM(;xx3
zF1WYNv<E)#gPbjX{G3}YW@;Z}9}|v9biCFiMQuDL^Ht)TiLzFm2oFUzCkW|m1;Jx*
zlV%dpa^v5KAzWTXgqw5ydboIuZ<o=^EH2xU@<9*e)0V(e{9dV`^CSv=-=8%S&|Ro0
zudkv=@S=h_UgAbrl$c?QcJFdi7gnjnv_fPT@FR|Yh91`&#*HZD&+NmV#lMfVR!r-s
zHcg$MUG(oW02FOM1K$?s59+_)l%EepQe-Io667ggK!IfKq(SlLlN;~XWhv5OM&xLi
zfFw}vNz+h9DwhhXnT-8Rz549r1Ur#T6s_HJQGV}*1*W)a;Sa-xc$|b0%mc8TwifaR
zk4d#MDg<Zf4CkiWYH=HR1NZ80!If-B0@fX7j6c_p@`EO4c>aOr6|p0~+M>qVVcJ{0
z;9j>$79K<CEQ3Wd?PUgpS#n>)O#0X^iLQWTCB(~u$ys~$`srB|66qrAiUrF8dQ}1F
zXb*+1U>k4=oo^`@Z6?`?#4y}UI}RNihCrm6@#Qs>OambN2P^x;6D|C@17NiE1Xu!e
za~BDno86Dhu&uZa*HsGkRenu@@V|4Q-_w<WSMEU=L(dNsZAG~gkC4#=08r;B&#i^{
zu|&O~6OscgnQVpAqCo{S%;N>8XE0f>fKHB2XdFgonO5!viKb#~t=pp@CBfM;!&+6H
z*z&YHiE`V_LH2zliS{>r8n^D+ZZtg!f5rB}XrTBiAb1fzb$0q4VVeFFH=;fo%X-Z9
z6oqHE#M$03s#iz~VCVPJSg%LFxjg}HNA0i83U_@_Op$prlg|43W*e7-u;8Z~R<CX!
zo59v%BnBA-K?4}wfPVxvS9&%jj<jKE-$E{ianb2c+@^N6*s8IOnmv)R+)JGG#9cmN
z+68C%&Gwe_4q1v`=vCUbW|Ju9tG$q*2-5yH|F&;=x`OdFI2@f&bq2i>?$a3{OWjC*
z)zaai(4$XjZdl~EP6FXd0O>8(0H&FBLOg|6BkF|J*Oz;1m}TR^-bX_}UV9|^K6^h&
z-#xX=YPDA|C3#G7sfiLXLNIHeBaB;33y3uEhjBQVcy0DD@c#&I%jP^Tx6Vx)$}_zy
z@dp8wmx5fz7l%ET{FwLL;8+;yK<(SmZ&0zbwf?8%{f;AOeA|vbc|g75RBI@6CyYk(
z^_aW<Vt74F$OFb3({?!pp+gu@UneO7b9mHV6d5Bh0lKwSudpq&0RE3TOXk@L(f+P_
znbQ>(b1DJnJZ7Td{kLccf;N&`p>{h1Xw@YA@&x;S@tY%R^_|e>h~S1kkQ>FNDebd9
zEw^xV75NJZKJ%X5G)0hEn^4zv*uBW~Vr`7vrB)nM#u^xY!gL$43znHeAfOYSq|voi
zvpmoW)#U@FAe&Hs5vA5>Gm(&;n9G$jIk>8LT08=)y0)F+&G7h!hth|;-35}gBu*W&
zB#29x$T)7qT9uan{mU;A#~~$t`+?Wc^b=DH@dlbc6T(fWCW?F1|DS}FJ@%{}83DFc
zQqbzL%U`CZrjk#%$Q!XGQ!2WP+hfSr>qGV^a|P(M-*Z8V`X5khH@huk-t5taRmVa1
ztC$zpbop1A1{GSMf3Op6k~ZWSUPf@CEi)Y+lvmWnzlt{NeenKf26tuDpVd+rJ&g1)
zrYwA~>-+3rE94ncZc<tlIl?0M^88(pi(jG3@FW0RC_f|d{(|5Br81?HU7<5sSTyPy
zeB#xz!faE4%^Oh`YDS>g3HlI|stS_a4o`gbnI3vo>$UnMydO%7LVLG8lWBaFmJfSu
z1y@D-T?<dP3*MCl=njEWOz$hZDL(Y0TP8C#6Eb-5z4<aX=YjG;S1|}PYL5Tr)*~Y>
zc!#+pZB2{Ui8{hgV$5&g-aRvLf*VV1$uYr8U?Gz2tLDs&NZ~$WBmzB4VZfRgyB9bc
zyVYv=hqAVo?r|<4>$2oezCG;|(7>{n$YfYZSh~=cU=eLaXp(QLVTjPt3;_K9*u1u-
z`0N(@5JyjfEPYhq1ph#3*RhuEY+atV0~8SDqL&PJ`M)N}pZF=m>dwO~YePyFwoGMU
zO;Am2|0O0M`WYHkDnb5FsC$zn@+}r#6FBhz15OpM-ReJ#YvYA0o#;>2rqke2+;hBq
zUqIz}%U9?h-WQmjuIV`T$40YHhnXtU-V5_IiC|}(U%acK%J4f*)V-v4ivcN2>QlOq
zk-DE!#ZAc;i!PMqA5_yy`;w>d2wCh=7EIcjnI`SKP-OBpMC_%gzX9oVUD2VVpIoDx
z>nT0PTnnBEZ6Gq4nbZs}aCV6(QvYU{7c0rmT*Bt6;5;sFH)hBT=S3IO;kp8;)YdKX
zk%QVRsL^Hx?g&6Ff}wz#<VKqhv}I6Wh5AWd07F2$zn8AHiQj}UeilHXC)ct-w-#gs
zZC+$%a9R2jXGfkMiY8Asb0Ktf#Zr0xXe{M%Nn`qKuj!6;^mh-Hh$(K?dIyJ)0+G^V
zBPt&F(}&=*fqg6rJxay0C<G|f)}{jfVOA9NDM4)DlD<UEA=E8s^Mt(`yEezWMn8VN
ziF4CCtz`2a@_g%D-3Vtd-$4tJ2`@`<(N~0U9G+Q98@BMo7ffZPdT-b-K(Eq!X(+S+
z`o1h^%)z_|s}J3KTQYW>(Jd7t4+>^^CcCdwa(>Wjb5Z+>Y8ELPi^euIUa4U~;2cX4
z`Et1(%XzW6Z4kkX55coh+0y69VT1U+(cQ?V7F(j12do9~5w0Tm*bzE5DV=US^A|)b
zqyA3?%~o#C5qvTuKW-7`PR6oN(c0R!@4(p>k3Lc2kxhf_`aIzkZHbdQ4W<0wOhhga
zd@m1%&3bR_7Q4mZpdqb1)-w7K72~gdh!3mGipo9id4<mP9g-+L80i=~q5NJ~!6U9#
z_*^L3U;}y*{NI6l)N2P&DjN&+p4OF=OM;effO}%LFC$7TNBVUfDCgCb(?xLtU*|bQ
zaUz5+Y4rc^)nWG>yY6X$TXAMr2O<y}g)G1>Zfkg}N?u>#i^lliIK1S3;zYBk^kdjq
z*5ja<12Da%W;D<4*@;aO+A=EvXSc<N6xp)LYwq+z5|1k*_aZ=LLoQ~lTL_1Qbv=3@
zBxA*_F{vZpB8-d3At%{}Zc`~R*o-d=A%QRZ;1!uSU<wKN6Ybnyv<Bg4-Nn}5B2Ha@
z;=Is5k;_xYZ~xC}c;&^Y<1<snqKG>KB4^lj`!VX<;Ln)SM}6UsuA`}wzple+MazeI
zslS9pN31tyh)i4{LUMb8HZF&@_6-$MdC&VOo8JcS|E4nCQ7f-YmQcXq_%&YXSR4c?
zn!1KFtPKKM{wh*;3&WJvL+YJ)<ztO=uDA(<rQRbeI5V|&P|5YNQcvlSY66q$pQPwG
zF*dq_wuuzGZLsXY*<#MmU05-oyqz&XidDEk8WWOyydxMd8pmNYlW{5-3kxYB3!(Mz
zGKre{w;u-R`Jn!b3nKS6kcBv`2(XRE%pgIB*+J+*ayIqu>S|&SjQE-j<4_@TCuS`J
z497UG8aV~fF3oZ4nw&+Jy%FXNOw6#5{Y|O@dutz@(ZsT^wo0wReCiz`uEN}{1d`n`
zZi~oI!0!mT(q1CRdi?{<hTf*unwm{jvvm=Ko&^K7i^7p}wlDFVLqMLq&72&v;sLvu
zcrA0{fPn+9f=U?mvYqnJx<Ygmd6^)E5x-o*y*Jt@1hTtQZGKK>TA{=<kuTD;6yu^8
z2PnTrJ0}hl69w#%EX}Ng&FUKkf_oJw(=gmf0)%xetu&673}0cfEt<+{H+$0$ns6%H
z#reVi)`wYFvyK}E(J*}n#kZ}Kt)Q&UItt?}LMjH9w{y`m7F^(bB4)KLn^ImW*;7T(
z6G<S@bOJ#|lV0G<QYW<UG$gKk_+MKOG{&3aR?29y?wJG|JHa*p7#rti&x3F<nkQN)
z|9f%%L{3}fyvy8Mz1oa3)~Pd+zk#4@yO(_PNszGr3v52nv>VJ5k8EVn>$nR1v<FWr
zAD9q~sbH*?HaZ3XI##z0aNSH8EUu{uj)C<?I`p!!Vlc`#UcBJUEWStAh5oq~Uj5Jv
zWh-qSYd<XeojVOsRvdbrxnBFc3@|P!22-PWU5IgAxz?tC{J~H<F|Hqb5qZ_BswL`>
z8|Y2PGT7m85L)7r*8-@r!{6p2ZzLZ%OT)9|680ZwVHJ%X>k{LsEfi={;7dHGGL0Dx
z2M#*MfREJ8X{;4ziaHn15mgVKA?M9dQ}L)qrE=%cyhrC7z1fS1%~+PXj!v{kQ&G`i
zCScRG$i@c|wNxnoC#q(1%T@4DTIWLoyNk*(Otyw3q~OldzYj;uW@Fz%^)<8=Go{5u
zhAhz0`lTkUK5#b-1U;}T1Xo<|nH%N2o2f5RWnR<!2$grJS3~su=+>)$awW|rSn(SV
zjm;Byu&S`5+&6$I3N-@}kQmHldI?IDmAMvmu^^$mvxPT%rDlXza(0B7BuxMSAfExK
z34o0Vf0yZi+S<4J;Zw@En|ye&ZCckF{$)tO4Vp@Eu%};$xbpa}DC4U=+!j_aKe?L1
zr}bw-2a1B*?qVK07a(|Z_;U$b%_MDS+mvJ`KA3l-YM0)f2;XkIbi}Q<By8Ra7YCLH
zY2naeJ}}e$oH}=kr_is_1{Kd!BaHn)tT%+-Pbwp07R#bY1kHSjZ11D5LbHX(QDN4P
zsg2kS3yYC_lpE6OP<c#m9F52UJ#KjOZ+b2<!cTwqv!cC{<ivtmuC))i;x<vD*Mjh6
zfL_BS9X)t3Ct-6scFR-OanAI?cNuwpuTe&ws|m)BBN&+5s9}Up7L5dE`iC?s(eAqM
zj%{b5BJJnrIpO^{Kk!T8yw%-GeQ75YA17kcKI+tk)`#T3B;1QNjqpyb`Or}~<oI;)
zmYt&Ox8{oCfJF8fcrVV}bHGuhv-xu7(GT$Wwda<?fg=>vtLP~>I0Fl2=gBUN58C&&
zr{@VO8YV`;{E$W+ef^RzgumNn7~8dQ`qY?+eSol~Z?Yv<sK)wL=7S8~xOx{!Dn9)e
zwH(l0U8K{g_6L3Rr>mBMJ;Hq{=jaEe2$)ThlJvsUEqi}fst=&z*4Q&<Ek$h)f@=4t
zWlT|wX&$_wRMY6z#FcuIs-P3nCL>4Q@Vg}=rCIYcdWRuEU<JTNL#QpPl1)im?L@z#
z4Lg-dTH$J<tn+S_`~hGZL|`6c@&6H7T<1<LghEqHi)QPw0aP-3cgmi}&CtMi8x>N)
z-HQq$Qpix@(S!k!`h{~$!+A;MT8yJPWf;xwv&lz5rdvYe(0${NuZ+J4Z2+-ZS1^uT
z^<G`j`;)XDf;=qSYww*rYDqivV#9{^geF48m4p&*q#P43HSWigix;BOpJpb8$OgjI
zZ(^`|Sm&g7;L*2qELQ~d0zI{L+jaJ3-IDV#IGNM#6KXdI4o>I(K)tU?4>M4*tNr4$
zGfty<ZU+jZBc@Ku!P^4a+VuKMve-}U5%$r4$9id66GaY-c!RBS%;{nk2C<9xp@-FY
zp3rdSg$JH1pdol-uOmS;zj}*7#w~df3_7pR*lAS83XqFPq%%2|f%AIs--0z@np!Cr
z>M&QF&h+M^v$N*+-~IOVIk^Doj<1X(Iyn|d>Yy?|{ASmJ;OmK<iWZ3$%_oQ4!){m2
z<@YNDF6P1bs3RPVWk%nd;0;rlDheFAxjGgvm|N`;rLWPgI4|jcdH&%+Uptok1na}V
z6Tfy=2eoG;NY>9rh`3UYl49Xp7hcYX89xgbLH}+QEk)t*L5U>VT$VWElRpLYqOib+
z1tmYUM3afh8Mn8U&qWVq<eKgh9>{vNZ63#D+h6JUT3|gSk-ku04Bj1^__2YqJPsj0
z@}d=mWiTIUp*ZwjNK#9%!k!$LD?@w1T_tD@G>6J~X9)v-#o4^BCJTzSiX8pQ_;Ok-
zI!gn1Mnb1sA0KgaQML#)30dbYobGla_~#KH7Z&R%dP3mnS2F2U7#K9q6k9D6;;+@_
zoD6z-{<5_avr04rL4ee@A6I!sJ+pH9<XoRqK9>H}6qKuh2K;va8{pf^7z@zNb{N2{
zFb2pydi+#(Joz&33~Z^P<KFOA?465i9~Mr!USKRdxkugleIdoXrUQ?m+3{26R1s}C
zx(=42!Cmdu`D7CWIU#hDgf{A3w*98m2>YEff)AxCPbcENiqc6Uar9N~EoZQqa;gue
zj--YfSfomcFugnA;Zf~454_(9Qq{3n-%I7H-Jk!w8$flBw-mw)pOA<ql*2|%)s1F`
z+qEpvYD=S(?W7NJL`ROJ%6^XGO}n*jqq+liG5;T5y}BYRVy{Wc%zCpW-?0H8ZgjlY
z;VN}^cY69o8hpOYcG(m4W1k7IF`Wn`sV0^Is*<2j{b5C;;}ykVw-DThbPQew<ypz+
z-S5Nd*}$1+<o(bJYUe?YfiuPA;@ijB`JeyQyb&@yK8oD|lW4!i%gBh^E~&n*mLiJ4
zN#Tb>6G(Rlbf=6AbFl>EZxYcKF9S@~0BmV7_-e%4PHv_sicirL4`C@HE=f9wYP*JC
z*Krl6jqq|WC;(h!9R)*QX^x*u)1;rWR75pp+yHQTsWZVm8b<Sup&`cCIyX>pe5wK^
zoyHSnxT;qD&~<SUFU_-itw#I#*_31Ji~m)@(?;Za);qv|b2Biw4=j%IgQHzl3!jll
z;<`=|%;~KBa4Hv0oe1AkOLMge=il|Kmz%(5=2evuxjie%-D{k1zRn16ob;f++P<U2
zcDPa0EgHM!R$9!}EH9yewWx$n;Zc-mZak}4zrEVKg|z^F)UUdy)|(D8=24iYYc4%)
z)}wS6MWXRUm6(`0;2Tbj1HhR%wKyOq5E!B5(>5i!A?p$RH&+v{fe|lUujFFpy~n_Z
z|AaRrIw=mYCop{W&*yR&{@>V=xhnUw*LR*#@w?+8p}dj?tA2x@=3u72FcYE<>dPlA
zor~&sb%pq|X55!YDQgzy;7Q>-Uwkr(i*8zgnIOV3#Aj~SS@wsvi$`93_r8JDuB}Ed
zVXj%UlaUZ&u38Futac}pQO+LxbkcTy$_^ZqFCxzZRU}X>+t=`kYKEmy9rAeJdvJ<7
zJO}o)pm_z*J`lWnubSfq_zQ|c>N-Nph|_+oia=);0Vji-ib;R3uCD4fP&rs}Q-6YS
zMKS=r;^HRa6lsI#6F%sFg!hQ1xRv@1%Q18lGIjTIwS$tUJBadpZogPAlX)OY>#Dv{
zbTEam$XYL?vxW=cjVu|0944TXMKm|-bz#lVuJJX@iVAPg>B2fu>9vWp>i0Z1lm;fz
z!~4A#;>@zRto%q_t@Zp7y;CnP|5R$hzkU|+x0bOM{E%JCXB^^ZaDQXqxrWIa8t%xr
zoIH;{HoLuBUN^PW@~yELdYcKfZQ$!tCA_rZzo3^RaCQC}5}PEC{@G|r%;XCY0yexY
zKi%NsrDW@8+a}h1#M5VskbO)L1<S<`;18t0-*&pVpwWjM6r_dQ7%wF6gA@DVnojDU
zT6~0Sk~DKy#Z+vH*qtH;mB`0cSR2Et4<&1|#H{`n*C!r2VEC0Xu91LrN<5>wce;Wu
zd>LJJhxl$ZhWFHK35)ck<C7G9-=}#Xe-1;IxP5uouDWAfY44TZm_Ja8-*#CFEzfF@
zR}<kg+;9;&5))Z$96#@$m>d?Rck9!>lM4a;lm~^788u7&wyF%<6UdB3>_B#2s_@z^
zk(Gh+kd-UtB;hSm&{=u?&V#tclJ4+4={v%nyiqFlBok6a8kFL!P_U60bSq!~oPJ9k
zR<Rv)Y@7T#L<Tj{Ze4|pt4a|VgGr^pfuQv3mj@o12G;L}@@TnKQ!_KCOVQrzt+~;o
zbq){0*F8HMbV5!*y%BmUI@HnAP+(v7vz2FdM{=!ZWYpV|V*E~<Z)a0v#CmQ;5u=vu
z>rWI(E5&0@-(ur(XNc!L*+o|0ZNhE1+6O?0_QzL+j|8>nUzE7yhKcMUaD?M2yi%2`
z&oE!=G`RA0z)fDd<YM=W5RMIUH|ni84rYezbt}J~1YjYc(z_KMRO4Ew@;q8dl#cBb
zX*W+0!8jdS60)~Tz|?8hYGw!;TVbbD@QZ`!A*grnLrqFW((}ZXGkGl+bT(uJnu6BU
z2HY^Z4#WDa+ukPG&lMlXjpKu`sOc8-K;7s!f6xYtI2{4m?q+^;!NO@<d^cuO&RzXj
z3QaQ(w{RSgzc5m1ZBAu=llSMDoxQ}Y6YP6}Lu6r!yJ6A;g(W2hQXD>04vJ<pJBHpm
zCCSgSE86<X(t;b|8xx%nOi^WTJuEKvw^Jw#^@i&;SBKnnXadrz?<e|iQ{)2vGo0W}
zsAbgtKHFR;)EF&e6Ggr&UGc$`VWbzllbfp@#|9r`1N6+9Dy9|G0eXUG^)fT*F;S)O
z`chrbM2C5TR=@Tcjdkj1)Ef5VRo{c;y26jS(Z4W0q=yA**=0C-9>O_SFR_(d7q`|*
zjfgslcaXVVgqz6;$~yrq)H{s<&ihYz?b(-)^w^ZIV2j*2{k{#cR@!)mcgWLTWgo$E
zCv??&=Thgd?=wI2rMKq1w|ANb+n~5|=htTCc2`qgqcDI9d-X7F8{^b~v0s2%bi5w_
zBg_TKIX)~Dwlfd5hYeQ}V*mC0k;{tYEqA1wA9e27mtb!XQ7j)NkR^6`qy2FaV>L#a
z)oLITZ9bVnNWF5oE?f{piZHK?Ee3H^&2w2%D)O0E(OajC;y{0+b)S{Z-eD2l$+*|O
z)q!>P<hmMXN;$2ccGj3P6ILteg;ZyMXc*%?I=E(PZVNiF(<utrA0f>lL$s1GuQG@E
zj@IR7z4FA`E~fn4cHgIQu{-PjA^t$&p9QnrGg=lc#`2FyQpjYnHmcY4?OIe947xTN
z7WpPpu82+6!uV&{99hd$wLo|w$7+Y0Py>6b4j!UHgRIO1gpTPgNv2*k4yhs6)wo#{
z4u!SVn5s>-e@m&QHK^uXTRS>_3Zv<o)Cp?p{Ogt;$#GKtcjw|1>>uKy(*qc5Z^M)r
zi0tSJ$&$23pQi_;R@J8<xNcxNNebFCod5nl#`i{#wR!)DaO{#Gpx04<!*9`#$fv=o
z4dS~g!FuZL3VIp}&`K<_Ugffgfu}v7-)G8D$({Ub;uqFlm4Nmhz<O$omKFuyQAMtB
zQNMl1tDkP}o+uX2Ra}#Dt(o8;4CI&Qa1X?k<8L@BdF?8TL`|P#_I_c+i*q=%%Q1>t
zYlBIx?LnZ$wZUo5lRLn%v+eAN)aC>39{oZNTBu6JNC(0H1_~+N^@(uTU0<d)<JC9s
zhJQ3~Yqu(h*S2^vZ`#W=^lNsWqp6O|eiCgeGV1stcn?kraiPvYvXTo~>`L$=U>%RK
zGy|<Fg8T;AN8oX+SY$se*=>^YpZ|WXz=5=>hJjU|h^c%j4$V<7eX+qb!3CA=AU_1C
zLz=Q#2T%o2+SXX^b#>Ye<9U-a@1NlV81);0@sW@LOeJbaL;ydJAjXZs=SpE@$U&y3
zh7D0Wr(hif04~A|g7>E}!0Y0+qe#=G7z>6}7jM8(`0%|uTh}o*q-)Gs43t$;G&%t=
zXxulGc3O@b;zWJp0Qu}dcyvTtT7k9>l2PtrvnZb^GG|k)<O-WUd`vNAvWL*XAg;c=
zK*uSgpd`Vc&cpxpeC=bY#|th&Rfro=a31LP)>s}4*RdJw(VW=i<+Jg+n>86LAD#s&
zf;B(Obi!q*TD>m4f+JJC5Pn&}%ZtT;g40_-yCHgq%qShS-4bNQ2r93WJP^m$fPhYm
zh=pB{{U>f65if#rYUQOwcdw$I3VPerWf7J4<L1Ea>cOdQJm4D9GD{V*%2A<Gt@w~3
zq?@J%vhX8}q3EjUlh!JsNwh8b*|QHdso9~#0%0e#OL;8F{ZLYp=NB?Wh*d6$Ycpx+
zJdq|e`>WoY<(O^@E#HissxjI7$~k2J4RY}pcU6in#S_HDm487~I7zNj&?f+c_-{S>
zI2OxP9Hj`ZmCTL>Uhc(Hr9467t@C|$p-iDeb9R0@m2#%eV)R5W@ou~gfecTp8Sx5k
z&F+#-fP34Q_*nt?MQ69zD*!lzLf}7;Z;Y%rzhK2OFj{*%YdQL8A@|b?Yw*WRv$#LP
zZ3=%TZHXIZVJ^QKUlO!e4_~3@>t5W7aHtwgxfbDoirp!(s9d_Iu)`{gyOjgUr<~x=
z2f8luO^($FQDK}Jfq}p_NkA~leJ}g#)Wy;qSQ4~gTSkRZ|9bus2$QM~53H7gmAY}@
z@5%7H9ZOSMkZW)d#ogd!r*^zmY<Ds-Qw<dm5~|ldMPC99dmmpJ?snn9t6*}6?+G%W
z(ac^xJzm`S1%2}Yg^c%gN0=a1ZWZ0`3{}dC)a&p@DKyhI$jAMYu{BF6){d%eW*_M~
z;dhG88I`(J(Bf7H?&nJa+Uet&fYyP=(6c&2<o>uOg6vZw1Z;+MQoAg-FwOS!Xlh1k
z^MUdpM_NxUS;pfR#>aPB$Y<ivXu>g`+<qc{n#f)+6!{Rx13Hu*6%Ly(#iW<wQV?RN
zhsgNjh8sG7apfwDnaGxT&$3FvOT%~2gE>=&qqE6B`Otli$Fb(Fpc@2n71aW1cp!v@
zIiZ7a)&xZm<;ymPZjZJCozf!!KoJ#d_Uo3~ItL{XI0^!3$PQ^p^Vi{=I8`0e#SpuO
zznrKlt=fX1EL_)&62`|T2^Scl$g3sM$bIr@TY&j1y5#GY@Im@0t6JZ%W*R?hx4<vP
z-s1dN380j$fmqX3RyAjBgB^FNsW2Sy90(G>OBD(T-;fo$Cu;*v)?3B>vw#9kYKEwz
zJ1H6H$W#{zikj>51WZBQm{QFp5`JxLDpK5;$~?prbdjQgnpc@1eReOo5qPF0Yd;RW
z!d)STh5wO2>nM7oZhrZH23ojH+T-$~RUMNHBC^nhJ<l!GJ;zaGb@Di!!XQ}Ll-aJF
zAk%vVS&u^F%Ki>s%9v`o_{#b8FT%y|&7?Wg(k&IO(T4BN6|SwzLRe3ihTsjE0f5%k
z8B)ZQt*DG@00)*b$nlVsx1R~i(swExGg+l}`QTa|oA58cO9Ma_X0`P+u_;!3#)&e3
zTaqlRHXZn{f?_0!sBLLa;_ZL-RhKOQ?gCc-+q_#z<E{K{w-cv~i*Yg>s??pJQXRkd
z;cHH<CZEL+pkzN4w@3o1K*<o#^wGq^?*{~<7|hq9^$l1K4(3?N)%7s74PqG`7+%`z
zeksh_e12&IJ7j0+*T`@0{eBZ-&vcq^eVjVJfS6y!KoI_%heg!M2tNVPkrDV0)vY5F
zePI}I)v^7QJIghZ;i*_QDXzh<rgY7vI5!2QcIGCX(J4&u)xBeAKZTQL3>2`A-g~m}
zhiO0-UtvHm!J0-|PhVy=sM`&0yeo2#wC57-MzynyNX7hShyJ~q$xRF2&LS*{EqhaO
zxFfKQP>jT%P9=2X`piY7<O}7D#$<1D1tM<N%C~n^7_rRVlbpFU4QbB_z4N!;cu81K
z$W%FYVr-HjnMHC(a<y|fK%^qgm^Xg&y05a)MjPwzP796{;MDs$zMn10E4?F&hDD>N
zTxKK2O(prnvs|;wJnUTW`>eK2^xB4(JVXz?3jQ#57|OTOa^VN|Z!aOj$QC$mlrXB^
zx7o!#v)V)?c^UD?b7)h<>{{sZ*Ttv6F=skmmms4$uI1j$6U^us=3sh^xW^ogbE<38
z6O*a;Ct)WhiC^OHa2-&-710z~(Ad@8D@p4<V(EG!f?>E>`0{-l?6J((BnwOSgmO<I
z%9=(Tq4l(MVWgMp@`mEA#6dYK+kJS*+Ks#`eYi-qY@bC2cz0MDcM=bh!)dc#3E2%I
zGzOmion+n;INY=aXD!L38nmR{Y^(=^xk$J|hH1W+EF6G2tHP1l7R#sj=sNJV&S5bb
z(yTYb8;b21R1~^&yD_rC$vyy4<$k$=oH9DHFxt<?LhHQ%58-xR46PhX^A*5{uB4lD
z<je^$odU_h4!L(fR_-`bzcRt3F$;>Hh5r{jyUu5w4pt!toFdc!Df!UOHLkQwG47Tx
zMRSy8!-07Hh1fCXA`mm)&jN^>;zeye%wRv2YL78jpm=^y)Y?j}`2s+|fu&wMliuX!
z{FA)Y8W>}{$?uDLU)}>G?&e<osicbN0DR&s=wq^7$I|CU-PCr#cJ{!{tY&n{jNE^?
z0M(aq!q6w`9ZScgP$KC`E1rL_f^=vt>mV)+h5#)ngWb_P4!&mUV6?W67m(;|9%G>(
zREnzGgPx9bFl%h9G^pl}3q_5+MeEbioi^$>yF^Nz-Zd2)uL$h$dX=ttwAO=J2!(S#
zyMBXfDlwrYk@+#B(&@uf{eUB_>-cDXU;jL4N<h!zXnEb~y@8RoG(x8dj70w^v(^Gh
zHvH$nO8;aXtcL_Mh(3=Y;0Ey`izs4_QRkiRcV(eEo8rNSr2HJdPBPff-Hk$^)&3XY
zqr6@4d-|EY6q1DPXg5$aM1+BMoOW`{o@+9Z1{5y;?epGPOWPd0YTEIRC2hE6W|nAW
z?MwZS!klf}<v>i=<SEqZf7Clc!7Gf|IOj?s!K^OrOGTW*D3ooF3cz(dxVbiir|Tek
zknr~GN+(pM(b)XzuGiH?EIsjWp65h>t#c{ao4p~dHnXSTARLsL5|v}21OY)CQkp0e
zVH@rw+i>lBc_HvQqu+v~1rNw9ZTagx(x2ff(G4-sDqpaUR3h`}Uic+(<on3$OH2D(
ztaN!s{fSTIZQk_f>qaR|e|{{NIUjoZHrLCox~s12k`=QK+M_irpRHf(W}A0GT^Lp~
za$bVo)PFb;BJ`SV&`0^1i;KO3)W2TmfL9ZUb!b_1ACqRd457cbS$$4V*g?jnS<U9L
ztz|=yT3Y^TWy8|R^PS3;0<|InJ{k(YhW?GC8FJnXJ?jz3J<tYiLm(jqNPH9)TPjs|
zYIa{ozp4~fL6Q`%ujr5|o{BGe@}1+i_jVBc*l$=B(bNtU&=6Ou4fLlBc0+9uEX!_5
zSFq*IH`h)OxH~86yt!9y+$LeMF-B@eAj$cl{4f_^JAxo=UbzY&rPN7)RopOJmr|MY
zXL}50t(ph^5#T++ryKtT9KFC32kgIi9KREm`sIyW@tjZGXsPg|lAOS9jYJk#>1haY
zunLfnqSf)FuaR^8l?}pw5NBjmCUT|5(?62rKBaqMj|M{$uzkA{;jhb{v;#d#lswqW
z$KYmNbhO9#C@(-#TQW%&eY+u4=Kbd|H+479SNpeLoBiac*xmE$eA^X&L)OV8WBsy?
z*4T<&o;L5n<{miJ7jtFzQ1la0YUH|QAdRW^vqRmn81|%3upc@GY(PeNT``0G@vU2E
zDsZBExWNBj*lQ{w2-B$sx$l<2l&!n;BCJGtPVB2;Iltjb`ux4u-9FD~ndrS))XomI
zx*4Ihjbe3K9H%~D(O7zI#c;`KC1C;a%B$RUTg%{YSiXd!GNP!Nv--;YHCSuwn^M?Q
z5}TEs%C&1QcSx7X1=0&<l29z5*X+Etr6-Gl3q?I7Sv}m?!RGFr^05MiJdtegdm^b|
zBhUv^aw?tAxqXz<+70Nw|58!A!6#JCjee+4OuhEA>?e7Kg8N@6Vp~2h#p2|?V8_rW
zFmwgjSUUdl*96jeu-qspk{V##AI>tvpCFdm?8M8Tri}9Tm%|uJq;^WYm={xS>gIW&
zvRO7^b$I@OOd+83aPiFBIRmjHJsGEE?QtT+v~`plJGOh-X@<7^=`-0OeTZkcA{bF>
ztgejt1@t_^9-$wJjs_LR>{zY1JYF#s63KtcKP8NJmh4rsqA;+A1<0bZQFwyO12+)8
zo{jkTaCPiQS1i8@dCMPtN;~=|X_!D8_7&h3Biqvre9fIXLB`M7>3KdJtvEaSu0Hg?
z$w|rNWRXneV)MgaLL!?smss)5In@)S))t+ZE{Q#yMjrQcQ5xNqHhpGPxcE&2ky1Wz
zz-|>I31sG~>h5j)|6xqab8Ua11}M$J@;MduxBNJTepI{USs@=204-*%v0sQBuG`ZK
z5Vkx2ANKES#3zJ4lTVxUMujnyg%EtPCfTiyv<y##{Rhs8*5gr_0lk6x7_t`0bC7^c
z-a~~Pj)Q<?!h@<=f(ygHYpzU4#WNv`Mo-MuAveng!1cPHx31*&mcQE~#-_py{~0vK
z!bPXonQZm5cGb#=e}@(!Ve|4YUH#c5d_^c1fy(S?xmh}u{=|Nr=(VSY3dP~*niM>v
z@A=JC=9bX+gP@pl2(~zpIqRM*IT3c|1r}GQUFkNKN?6n;&_6&#h6`Ly<;ccvz~T^;
zbbj5#*P5G3Snw_HV9Hg4*>O5Vh&OP!#>AX|Ta?HP$lRc4&E93t1}PP~X5ZP+rW^KK
zK1E7H1>G_S$VNWM&-Ln5yRq|g4uydJNydd|dIvBc<)VJ;(jnPmN3!WyZ19{JBTQL_
zrlaJa4j|^cZn_Utm=2hfn>&Np<T=4k*vq9LZ{?EG`!bqR(V)n9K!wj5RzAcJ9wLib
z6z8@Mam$I>zroxjI~RS_|G*HekulSLcjXgp4;UF1kPvt5_>($@;EKs{*WAsvzIwPf
zO^tY_){R`QGs?*OyrUZ`zFf{mL3%9ooN8=bL-+kf{CSDB7XOY&x<6PRlt6qs+*Yu(
zsW1JrGB;Ojr1+N2#T>t_y4i(UI#h`Eb&`o~=K>(MnIqHT&Xo$-1;1xI!?hSfri2$i
z8YMv?qu?=<(+&BB>aSBM-KhR=9Ml3G&(Nbb`@qb>YHk83-#3xXKM@xLcS6~^x(W17
z<|Fu(I=G-RvKBCPA$}U68|v}}<N=8xHG!u<n9-7Yd8Z}hr?Ukfds@(c3Il3ScF~{g
zX!JvD0G#;jZZ&v7UWQ#i{1-^=O)Fsnal-FyyslW1%cwF~sc5n2gej~qJlrvEXcVFi
zb0htPL45g<!K4X4IIt}LdE)pV$6$?(yS|qV;CDJ@`fI>aZcwXhINsoY4!7RWdH59q
zPfVC^bd%a5xbOtI8GWciE)j2cCbqi)OOsYM#g8u+dwuUz<8Ez2h>5o0&BB8m@QCf<
z$Om0%C0Qk+Ojf6@EKy%JIv13@L9w^|cxjr_)Ei;UK#MQg`s95JlOc`aZR}1PJ8QuY
zr*S8g;Pme=@VXa@@-3b)B~Wm(QM7qhAznx4+vX;~AjC;?{Ma|<7xQc-bl--29E%PT
z-AZJ#j&sEsKIAGBOn>o-Q7pUXdcP2qse8U&F1v%U-P2c8dpJO{D7f8#?se4dg7<N6
zdH*ICbn^8}j__>$&P6Z9)@uszeyP}PetZ{8-aY=}u${|XgYJ(KuHP$7*Y3!YG;|g|
zMt1f%37m1e@e#$SU0uia&!%l--p}H|@7T^NCFe<f+!`hj|AnuZ8a#u$3Yx3U!9N|P
zKG#%AlTxBD;XPC9=T#TDz@c)Amt4wc*4L#bW|PgyQGEkcur4i_9#IPXh8rSL+Bg@z
zWjIbbSvj1}uNldM&$Wf)wc(dj>@u&3qnnL9zyJVuZXw_%0$@Qu=-+z&g8Z^l+(tnO
zQu#yn4(#JzFHKCb<bMw$Q<1Y^3o%N+K_v@2&15X_6OEI|v4cpxaG1V8zo#LoI);r<
zFcyZibu4sh0gKSz@qO+m?Y1YA4m<Nl<-ZeKVW*r-J2QpaOo2gz3yfmrPu0|OHuyUg
z1AJ!7#q?W)wFgDrKTc>4)54*qt6@aU7D8nFj9`b>7Vwl;XAnh2sp8WAGnu=`9Y384
zVqVJylCE{rfn=439cB3kB_t)Xr~BYO{lb@1N`2%rSZoXei>=`_q#qi4TNm?(c&3)t
zPz92maHO&xOVM@#ORu1ohuuoloW(Qc69ijp=$uE+ChQy=obn@jN2IRAqyR__X*{|Y
zj^@F+Tdbkw#bcJf`G-747j&+P&&xE8)wnzW|1syy7+6th8`1?Rx38&(B40>@!-=yX
z-JMDMo_xi`wBCi>;_GIYV-oI|xXOl5C#w+k3ywSNF)V(}_<$o}UV4B4gNrjFcY#+^
z8kOMe`|6oUazLx1mL-E@QhGI_L%UUwjYs@}S(or0Uw-}YbO~k#w13;)NDlC#KVvSA
z%eGdf7jCmkZLU!W9oDbZ@1e-=iB2d&c>x*$MvOA-gWP?{(Ugh9q;mgh6a9Qgkj~2o
zGLTMF)5q3FsJ+2yMdtDF|K?X#-3^!8<SmqUgf4{M&vco(H1mhTeyjq`5#q~USI|7B
zy#j=duyGhlooC5UkxyPP@X!ACAN2Ck0gps<ON$IphfX2*z##6Fjo)=IYQDERW?uda
z{>(={3#5X(mu1pO50rt*8|)h=s5v773Mc6dee5X>!+|mj0VAoqbV;1<w;Ib|Aj!M-
z-2*OHPn1~NmM1lr+=ty{bl{IIPk1P>!p{w~{-wXah#|04)DZfN0mm^B8l6LQH6F%T
zDa<<x)MRz3K-y=jAw{bwJ1uE$j~>lgp%+_V?|tA+Et*rR98qHmNxu=Ze3>Yu+8BN~
zOFJJQXf8awb4S6>%eY_tL>|&D7fqQT)6|qT+~}2h*vtygJZl)?hrYyy;HY#Sf}b0R
zJ@ybn>OEKW{lZah&L(%c+9e_T_C<(Ejjz;1Ek5Mfc`7)asc!IMw3KdN@K?&b$mN<>
zAS7PRGI_7DH{s18e{e4JsM+0NdNHTZ3{LU}_ZOpX#9NJCdwz0Ex-2Iom@}%y8$0v|
zO*uqOVr2H9Aio5|Xa_IGt93uGA@63uROW@;f+g-=fl#B#4&uj@Y+`JPAtf|vaq=m!
z)6YfTOhRmCt8!@O(EyWAA~EoUGTBR{UyT8K)z=y=xpg9~8KI~|*Y&T^6i9@q@pVmK
z@gF$B)IW=9oCwFX+`@SXJAnm{mKA^}q#jnerq4Mp0I??EnYca3=25IH{}@ha>X7pM
zRYc2~(9XLzR}^F}VA4|zaoA=5TmfE!v?%XrfzY^O=-7l`Lp*jF74fsElt6q;SYK75
zjMn?~-G=mjkLORf(_GfK3asClv#{c2JZ<{qor2>}2F<+Ea2i1T9<Uo%>bUy@&|J4z
zuiWb{Th_aKGb!?oy9$#km$MP9xlV|f&c<ef?D{7&XwxpeXFQv4o~ZarJ;pDXY&*K2
z!{Q6j0j@Aa|FA_s5>DGu8)U=e68oZt>scFT!G1F68D^p1!6MjP$|*e6yo(6*Y!MrG
zqj>u>1YWPljuyed%0JsFg7~fbPfSX>6}#qhyWQ_SFS)^_e=6~{7U6cL;09`uT|h>~
zCBzNl{(M>f!ToELXiHdJb$5Qr2Ro;q{!!)rVFNkRj|E0E44{RbY%#J{i_RP}x4E-O
zEXb{Z-tgeS-!m4_+DC7{+PyzH7l^=q>2UcPsn~-#sbIFFUEy>mRn0|Dpj%9+*+QYh
z8Zpa{^#n8oOVVbjzUxFbpShfu{+`_v1U!J0mYkShKiN;fEJJmUk`plLz2^8pQE)PH
z$u+WY+yx5_IK@Q!q;zJHy|C&LDW8&Srrr8$^0?K=NLnykzmD(;_fQV1|3TchoQLB@
zO}vD)OPuet)rWb2V=J$<tVlev$k~$72)ypUW>Y99LGW<<PrHxNk6z>6P=h5PKAOP2
z7}#)UkUo(lWF4a~kmyQ6KLa!d&RA^P{9XfM;p)Gu&X+im#o06vIDbXdSfSfx6`EVK
zd*hsyUoD4Hw3Zz+Y}g4mV&9c0r;7aJ{!PgeFUS$}l@3y<4O;08aou@`a#WL>cSKyI
zHS7G?^Cc2@J>9W(v5s0XyA+|#c+4qJYqOW$$wKZ0ee8__*1otT%MGZN$>tNZB@}wH
zpS!T)$A9<x(HF!ubxj~f!5r}~`JY>e^lYYQ+O`2!b#UK^>0kysGG3?7k12ZTgl99L
zk~T@!KsLxB@e<T3GNJL}7CxvCR^CB=(pA}sI%k&lDPh3CP=5;q(M9kt<y`pp161Cq
zo5U?D>2DP$;jx&OZ|;w-u?)iY%cjb7y8fmHn(g)A=J;cG@h||LSWzKnBip+Tl^!ZG
zOV6m5K=;|J;77n96AcbDwzvS|1rZPHPz)r<rDn2OS>q}{u;ns|tYnRh`2?6_KLPK#
znGowC+DSCaM!$7>KROVMPL84Oyw+vI8g7_hH0I+87szuWI{)fEu<D28@A?P}I1DlW
zt_`e-_+&eAj@T?HDWYh~o6mC5(hCVDw#cc4O1~0uXfH(7ulwmSO-pX|Uu*U$?G9>&
zZsA1>W{(TMy+c5hY7EyY^dZz|4;RaEqi$53)>!9%XlOHo8m(eq^q9N0de&R8v5t4b
zy}2F3*%IXPh;#q3|7{UnSCrnoHwp#tWe}X&5Ac-P=v7NFK3_JI=(J}F`}`upRx=*P
zWdI>6XD}coCLX7!I^wL~KClj}#db-3vOD0aE@}KG+xw^cgi4ReJt^88^!q&R#3D6Z
ztwEOb#PdyAn1)yH;|Vmkm{oAK7xJ-Wrz?A6<i3PmEwd?4%oQtrE!}kO2I?#;vfLM-
zt(evzpmU}I2Wh5`<A+t8rc=sUqsbmVSGW>AIfJx;RXLdHZz~MYb-oI=Or-|y&627}
z9P1^5sJ64D+q`0C9n-r9oJQ0C#GI956Ki>AvE7TAzS}IYjVVRvlI5){Szp@h7ZyzT
zv)XRJzE(6i*et_LkLob(T0HF9NQy|Wmakg`q|MoFEstT`z6r>iB*>Ynyw7wP{N|>`
z*Dgt^PFueB?D*l`$Fvd2UDgOuYgSiTIHj@yU!<1|`ljX%s<&ViY@q$k>y|-NWoJU!
z{^w!`oGN)-G%P`*S-eTd11K<GEtvR51S+H(RMG3@6Zku8fmnzKw2jT4bhI!reKQMj
z{&Xn0VDnV6#8kfs)%#A(@zqo;XQT&Q3B@t2v{Y*gk>|U51k;~HE9BdA1O`jSlyNJe
zeo&T48iN)6Dt749dSWPRyKkDd+M;Sr8B%2T-@QQ|sDWhVuFWL&++VzPD`rI4O{Xj=
zMSN%+&<*GJ(-HT`8VKqWB-26i#75*qBou@)bIvXmjfEn#`4uS`oc`tBn3_Z=6*I#W
zh8tGo`vU6rPRomwQuRBMx2*00z6Vr09j5HPiy<z_y2u0(qZhL)cm$%96nki^12|pg
z@$Ftwp5xqYoWGn+GR3ksX<XbH!?6mZiKD%ErKOq;BLY(>8rXw{nj6wg)B5*{BX>{G
z4-;+5+Hu4SE(RWjqEKo4N=L*pTQqs7JbUpC^9Pj^oDDi4<$#qyadcfrO(Kb3M}upa
zh1P|Ga-vcF3#}zab(?bM#;um<;7YJA(40S?3yaEHgb=9JrA?w+P&!Z`mGF?HUV*QL
zeBOveN71&L=yHpK+iB~TReHG67i$!9iH?4q)0+tYp(>EFl6E6*nK_%hSD~I9nf&DZ
zg->@SNNa5Q1&f`ZJeS|_1rRZ6t<KjLXE{bEOBJajVf@H{4OaXZdC~{-*3Rj7=af-U
zsCw&fq5FmIcK+6wCf9`G(w!f$xj<bQExmvEe&o0_F`0AHyqO@8cCZnO{t)Rf7;eC{
zFdOw-sksSP0*L+C4k5T}aD2p$6?B$!=Qnmcv3Xu!8J6Fa{y}&fU*63Cxh0}|tYy4?
zP;kiSt2|5kpIV9$=Y2jwoky8%ilt<1ub)2Ny9a2yI^b+y);gkTj|lT1JKKCNR1GQI
zV^+1EZ0dPcd*LHPx1-P}pOodkrA7QJ00{saszDpfykqv&vk02J5d_zB@ew-S;Of1&
zvv?zKfh4+xQX26v+i}GS6OZJllsiD273`di9I9qi>hGTBMf5!t=-#4^5Qyb6Kj-E}
zfqj<3SEo3a<%Q@3y27@cu7`ZNMU1f&$XdL?JrUzm65F#>&n?h>WU#t;ytOD~#1b{Y
zt?7g7HCQEK5SVRB)f@T;zDtc|mzLZ#30jnuA|Y(IYdInQ;hqB*3NMb<bL1C}T{7UR
zbn9EpsOwt}RMt5)^Wew2mzGn9BH3Yd4ps@QwTTxXR>5_@45dQSTHZ|MWCD{-SdRhe
zGl<K{ky+M`H}|wTrI0U~yTKv8Rwzjz=n_7*p5t<ZP)&=sKuB`BJOdz0zU}xfC+|RD
z-9u=Mou<%jx73fwLf(%%V;Wd(2bb*D1>~QKm^<!yF8_n*qQ?yf8{&yw9ZCqtgBirq
zQaGR*j&Z506aBXW1~q3PBx6GQ$~?T<q0V)C01w0f+QGD_oN#f<iQR#Ih$B3-WB?<K
z(qLLwAyt6}wlVf<w<1TVHk#FZlkep7utNv)iTp!TB%}Sk$OzW8!ms3%qxQtZq;2m4
zOxC+msc8B!R7Hb7zp7X|sH!Ijfcd<N3qyt#l-}x+1w}e6+9;_bg3kwi7Q1~YLca>X
zJUr^@ZPyvwZjlnyTcgxMN_Cp#S%Yf=KW#yi1nHLjdF^hA@<s#nzCjrzVUKbamr<l6
zPuahI7t;lrH6Z$X&US3p)|CHel?)k|yhsvqrIQS{Sa{mC{JT~YhT%IHlWT6^^6e#0
z(=)m+f6}xNqNGn9?sJN7FG%yNF6vk`N71JgO&I7rb1+1x*@z{G9h3dx(P?x_g1=m)
zd=}}oZ0%(`JEs*sVtKaS_KiqEK+F5>?A%{|#)jwxS@hv(MdZUIMzo}7v}gy%VPh6d
zQ<s+P$ub`60eup8NupCtq4DO^u8mYcUIX|hITCV_e9mkhPyYrFFwOD;NaX;<{08>9
zUHxuqMi;ENZ`s&n&fl;5{om}Qq{nL6SpD}4pKTM)nuL8d=>#~D(fzc;FUi{*?j}di
znnP8rnyb3$8hGJ)hj19PZ4+9*?|D`#sI}@Dq>7gocy!KWS=x_`-WSD6(Rc|+%7+3F
z1#6Pe2UDz4GpW7%V$zM`_FpwL?<Sn(C}{+#VxW6EZ@4^2KHq|I!TR}f#w)s{L1^1P
zvPUd|a@jIeXJ4qI|7+@NYWlUwGT*=YYdd|{Db;3FFFA)^mO)fi&)x21ZSafUgWwpq
z0Wrs|_K@ooZhxKoy8qwvVOzQ}j&vKp^;_rm&$+vM$15>CXTH&LJHn&<?-F{zV*V~^
z7_qeLl2N=HqIY*F*z9c3uFO65+YIJVFf=*jzy;$%WWZ_?&Xtj?bjSIn+O+JiOsU6!
z_+xrSgR;l;-Nb|E2X55hy@1V9PK@H@^vtln?j-&+Sy+G4V3QFz+PI!f0RLFhKZ>j=
zbk%i<8BZl@jim-@OeLx4MB-ICkM-OoxCJ!51uS{VeaG+nX01cjKRP8_Z&>$Cvvu%&
zXNdB<CVdon9;jx4?=<9pRW@1N*}qPvJh@|+H&asyLEhIKC`V_bzq)^M9ws9q*t?-*
zMC%uJ7;BsHLd4If%n4Y6iofB0`j9h`X{P65B^iE#&OhA~rD+dKvaOXVJP)f6;;1Lm
z^yXT)5^3f%`z=a&$hl_!tC|RjL{%3CZi5x#A5%KmA2OM_EQj^pf2bYX$Sn=}|N8W9
z4ouTf=2Nt$r)!=b1~d#zEZ&yA64@e|Nm2_m5dMWg>3PN;b`fw=eh*?#f0#{v0RbMT
zgf5nk?(IO}$n6Z0y5|6##V_Y<^tY2?;{f4PL_^uCY?)GBk2mLsDC2t3Kk0utV-zY2
zR#4p4?y{UmZXSuZd*@GhQE&tBbRUt30qckva~<2LR2a3k;o%(f4`)tt?WM$lpYO=a
zLj^Rh7IcLH3Nkj(WO0JeC7umn#Qwf7bWnpB?`S=#X1C9{*pw4jZ7BNL6Q1*wP(3-{
zC0nbS@&{71E2qQh8lt>}SYiiWyN(2!A+RAjV*HP#3!~u)69}k#8qjw_%GW0jIsD;@
zevAv)hDhQt=Z-MAGpJS_;%D;tWHGG3&L)uLi#EpXGgSurZSMa>bz;4$TffOxrCEj2
zZzzXb!fN-y^{X6ST|0w}%(7ckizE-bp-PNG7@}z_`+0-YXlVt}6gz@S7~y^Hp4H}K
z+H8{G1Pe*gJ#_R@V9K*%KX@GMikp{U_`E1uZD)&CVM;BstLleMoFOi3!khvq2jzAF
z7MvUm*h9G>nctr>Zx%6<*R+kDc~px%_yeEF;ii>Uwf?Tx__!1p6Om15%y<UWU%wu;
zH;$bI#S1KFBj$@h2w-Mz7I}nGmk51TM9JXN!b#owU#P-Uss<%lS)i3~M*!}nbTUz?
zR*9Vyy94~JbCdZlCkvTnXBti#S#Zn;tHivIu@}&l)tikNIzAe?Z0qk>@(T$^e$ynI
zvAq)c=AD_qSs(5k7^#k<hKJATeUY_=Qz6XWt<vkm*g>@Px|t#pZjeF{_18Ri09Lel
zw1m3O=TEK8Res?e#vMndh-T(&5M11AU^^y&_+iC}r2<$9;G>D)P$v#{eivGE#w^?Y
z3J{PT%PD$o2Cl7CHIzim(~iIBf2xWbQ7Q+z<UV;phT_t2C#k;eW)0u&aZ2j^As|B}
za<+lGA8oS%U!jjhH7X(-hqk2PFQLvWXj&H3jZ{{+C5rUEum>8Jrv}*62eHeOLs!%v
z*?LiS>PR{e$A}O{hx|7pH&>-JUL_oMD*D6Qu8Psx%MZ-aGqh~4JEnkE%KUGD_=85e
zv&PNRI|UUAyy!VqctmTvw*lV1?FaKzdWDrpXQwZUc3=>9PTWT7tLJ&`3x}v=phPru
z^O>&jxej5)qfN38rHF9AAOO*Rs}UHK{lIY1{JXdTDUS86rKs6}Gl1zOdtL~Mz_EEE
zk*@O%s2OWq`S%qxo%>@0`VqtmHdUxxf}7l9KFM>H_h*b?RRv4C!vlk8FA9?G${H?7
z78M=VQ|3PE<I7~>RmaJ6HeO`dmZ#{b6a*ts=8V13T^mTeHwV3raDpgZlWa5Yc6zkS
zQE?3CxPiGuv6(BI0EOt{b6KiWiSIg?4sgc<7*FD?=Y73XfUM0;zd<KCO%95nFT=k$
z|Ajhu#A<Hm*FD#~$m@6Y(Y$tOqqV@mg;wdf(2uHC-(qYYf_k!|_4U*`?t5cLC_hqI
z7t13)eICs?mC(n4IiyyObb<ZUVJ774mSka!10v}V4}MTtnb+$XUoW=V%#@jJp4%j3
zDJ}VO7WovqK_IFeHyK+!TD>7=UippVze>={FT;s@*Z-j}+|~|(nBulQX9rw|tX0Db
zft|A=lP&9|Qk5jJkLaB1hrcySvZH6b0R}E%iuIZM{uw_g0+85h;3dE6sIEX50yXZ3
z*_(1%1FIY$=lo|7E7Edbx^VaAnFgbI;+(m+N%vZcQZYR4LypaRM&bT4^X-JbQ?JGg
zy$bCI-0l4FRZEc+oAK`V(xhlHbvh;kF*(R6SB3;t>J#_}++1Mpgv8PPu&ZTT#yQL>
z(Bim>R#I4MH-5)`Fc|Oa3`N6{NkfWZi%((wm4{J86w`i<l+6hFio5+oNJyJHdH*To
zeNhS%2~YR7*;s)3fsJaP%5}PxZ%Ld4bJyP<VoxUQBRVN$2LiHH$S&>GsPt4HsD?Z0
z7Elc};D(^ey2b~AVJKvyBA%B^{FW(BuA5|D&F`*$^g^{s3rCj?lP+7KWeR(fuL#tq
zE)yDIfDM}Okq$TR`Ft;uToO$UwV#N=@xWsVZm+y3vX<VKW_o=&!l0C0T|-Nm!tCES
zG!az*_$`lQxE<<H`dkW5m`%Kdox|)X^q++cz49f1>dmSAuLjOb&!o)ewPA(?3v#2c
z<Bx0QKO5hyJ}c!$a9ZH)V$f@{E+&?IEg>Qv?tNvS?XJBGl&oz5eJ%ZUDb)O4DG+eX
z*KPoZP~;!L2*ZYuX51GL#}YfIX|7j|9z6=JCrjNiEm&88YJA+vb5m8ay(vJz4k5dY
z#On{cFu`uUTHz=5eAxkiq9sn@7m%pJaiZG<5piqHqq@bv-pjk6|4D@aD~?9el@Qij
z3spLM&zWK?X8}Equ6K3wZGE<!!t?aPWxEKJIp<duqCz&d?*7XUxMu?F<0JojsA#WV
zNKgFda^?ztX{iTD<QbBb8FJ*Cte?O`j~s7-NiT(fMDBvpa(v!+k~kgymFEO%rLrOK
zvjH4wXopXwzUFlFtBA(onDgF`J2J);=3$nB-j(|c&I~-GK%#9mJKVY3-pS($|LYQi
zSEn|EW&>!IK_sqp$g-~EwmVX?bqPA{3F5!Ek?4tfX0GXM;F;TUS%Aku-*-|tR7ZiL
z05d?$zXI_NK%fpK4R1`YqfsShWf3NZ9Bn7q0Ca3&LB0)har;SrK3$NXjvCg=h1^31
z|GegUVsYnzSvHU!NV2Gs8Zx6^Wg)3SAe)8k(Xh@fjwJ>;!hj_UUo}40)}VrfJb-47
z6KDMh?jsjOfvD-*VT%5UWPv5G-mqIj9#Dc+155fF`8Om3WlNe$nd?AYjH=hq2EhHU
z{&#WHr%zr%%a4cef)JOJlCEN7TyQ3tP5Ailne>4(8cRgH(5!PMqdcoQ_>jQj{Dyg1
zno7w*W@SDeAQTAN?d+tX@wu1hb{oZfSiMdgW(@)z_LIC~5;+S^@5^HZI^t~?za_UV
zyzxlTqUY3p2QvMcc(rGDzr654t{1_urRmt6U_2U|&6;k9gJ9S}cu}V5>TmzzGjVy>
zPdf(tq<46^7;b+F6aLMgg0Ipq0J^lsxklJji6_kdmf_Jl4;(2lAln{5?y#jgPER?j
z)|_R^b+ZF!rOSQ<^w0fMcvJ40Jg|27K;28$yv>*d8A;J~GHNDn{%`*gl^w{DdMO;{
zqd*H&;+hOAmos&w=yI5)7e|cF4|f&56CES&-74;*!4I}g3aU+q`%S%?uRCFpN~Ce9
zw0#Ag+c)oZ(~?)8t^$NE;LLOvLDWj3evfoxIj_!FYP4&@HwdH!Hhy{>gIO+(yaO_c
z8fG=>)1@4Lhnebdn8kIt30y}lE1z?_u;R}AGK+N;9=zs>A6f^1vHU6Ih6OTsSW$Wg
zLgK#~(GxKG1RS>o)yInk0|Y+tycDa}AFC&3PaL{*uQ;GEv~EV>k|9DLf6GV9n;_j?
zUGte{<aqL-d8)KE4qz@YJ&X|KMMA3K@|e%tmPt|SqW~}&h`$S3PdS9z37rMBSVx^H
zw*f~;4^VUc&-*9y|1*wqV()u|XeaAQGj~b!2dN6W=D%FP{$4{9k|j9A!&6yGcZx|&
zhDXAA`c|=u_9UJ8Y#FFo$OYcfR&&VVbd*CKJRBF~o;o~N34Z9oHbC>d*4F#(Ya3DL
zW&hkVu?_aQ08cT$`px)I;%bw2ocA#C2uKr5i6SbIerh{&@CqOJm_a9e)4CByo5CPo
zG<yOAAnkDxq>nUHO;1}u#K7|cDKV`O`!k+%g^CHElc8L6*C&S<XvQq$7x6mH86x~q
zP1+m)__wBbZjq>V1uccD*8!5iLRjn)DvfcMZ6qXW-0ZKp#g|Djs4g2gShXy0(I;C$
zQk~pi1Vw0?dgpyMrD~E-OlsrD5T9202n|KBel}!Vi}W}eCTzyA8rB+mx$AH8d)`Oi
zX;IZyWJBSUHPU(;WXq=%!%v;)q4i4nHFb9!8A9ZZ8pYIeU_c)_M-+yoh~>%BES!m!
zF=j76&<cci%R#V#A)xWFL{;|0;)-?}rqaq59*KMn=+d|s`D-ux;@gFr>CpoGF}P_2
zsF+USrfrU)ya-l(zB@G`ZGPNVffDW8ngmwEQVI1=LdmN|&3o9nz4|LB&qyaypX9Uc
z!d@zBeX;hE3U7-MqE1a-q|5(8mZYCITRdvh!4%Mg?1Uf9W0nmu4siNtgNj`#MhV{N
z&{GY0{($K!50#iZG6HGK1UyCOrI|TNoK1ImTgHU;rU{O~4(_H&fIEauH)3tQz=g~~
zeXS_HW)=hDdOshsPyeOGT2IH*U<m}#gq9C>dAS`ZC^)0yraf=*UNb7KpN^W=?E)Cl
z@aQWsu&oW=CQyDwjcNORRz4$@p!E2zP8i@a6yiZH>C@tQ7742A8<2X4zIyqsnjYZC
zjM5XRa8gK5W4nQ~UJygLhBKexS3>cfgs=50PSka5GG6j$)RBNt0HN(*758cM=;p8?
z9baxBosR_Av1pA!oal4l-Z%_U@kcHwDNTC!P0vQ7N{1|*T+{~BS?u8aKCkXl^U@7@
zWyW^@zFku|xx%>GY6w^Y&*9eqQC0n<`m65e!ak{N;8U5<qwcDY74N2>hq%81H$9Y7
zR#{xkV2@HddLGZ+1L}Tbk|T^&aFbsd76F?y8>Z`OxG0brd>ZtC5cU(xXYNghcHyho
zoS~zghOci7mN&7Z(?9?HS(F=%(m0t~-CFycP+9tLzT_Eg?yA>S<T12DkpGk6Mdrz;
zkjU65M`f&%YzCy+WAOji6C-s*k1%p}*_mzG&YZs0cDOb-sIPXW*Hxkqb>f`Gik0Si
zvQmuq`u(2;AmDr~!6Ra)W)4`fsOx|4jO%iz48loIh3eQz9xH;ifx?Aa<*9T{)A|d=
zoP%}Vv|zv}k7fysx9Tiv-5;y;oqyQ$E#J{Cgsh2~wj?UK@=k?r4Qm$gDLI(aXWrvB
zupRl@CCIxHkUHNcNQk=XCaaeN57rXi5rg&90DDDOC`))n<gcyuW27CEdwU>-zqsGi
zepHLi&~^GNz4v4<f=g99Wq`W8|4iQUXBSbF4n(@x%y)tc0cgFnZWq)~cG9Q5jrO6%
znAqOf8F&iT=ay$<L~A=5WAxao_F0*Vw<V8f)xF=Iy(n0HW`Wp+#lf%68;S9C(SfC~
zQ3Y0&+`P^!8`lMJw~s`L%LIR9s>Y8n7w>k0e@GMVkAyLZ1PM`T&52E((2u-fCJ=1Y
zM`;^&-Gy6n_TO&??iKx15I3ZuMxoe5#uEUoAQ=91MgB0}JBmpvtD;8mKs;YX)Kll`
zt@Be&&@GxV%w364Do6mZ)MnhSQ}9t1ySZ=uLONDXuZ0qp+uA-cm9`-8Lfc=nmu!yQ
zQofJIPlU0H4HTwPv>*tj^kZB$liBP!fIEjru_}=tW`Sol0$~Q0w?LKQV6RE=;7P6E
zpOC1j7=Rf0j_NeQ%E+(2$=Def5b`|1GKhGjKl6Y)Ce-*JeRhE_c3NHBm*N~RvMJZ2
z;|~XF2s&?`pm!lEOiD=PilOgTJ2so;(&VFif7Su8Hjxgm6Q3d6fA4oqm;-bEv$W{{
z<U+``TVSTWpLqR8(BezBI5L1hFY`U<(f(s+J-+-tA)i#c;WY2gOt@@tpD6u!nGn`W
zXHxg_25<e;uJqgQN?i0w@vG+}t}nG$J%dhv`I%VlHJhHZLIs}nQrZH7$(JLB?mTY(
zXyOzUA^!9dU|P}@Qk|G6<(Q(Y<aY}LOdFiu9>M(R{tlOtPEQ;D9e(HS=K0C2UL$Hc
z?MH&w^H6S>K*0Hn&v$5+u%nPiTe)!}m4z<$&0@#SxGI+qLeSj}%!^>d8}-PRvg(Y9
z7tK*8G!k;_j)>D`9FvcsxuH9Dq&Fw~b&XudGwX0^Rj^m2w6ZY2=;5+%O47s~H}m<K
zvAC-3W}_Vs6Z>%c9Vev>z5<%-INKQIL#TlnARA%6(RTJ^L7JK4kmUW$S`w!5>JUZP
zO!+RrAPh9#awiK><I<`-8yyu>`jeG&f#DF*#wFEJ;$a#yT!ld8-*vPKv|X+J$LBZ<
zQfAmj>G^$k4`~#eQgyu)zK-e_4AXjsYl}=0aq5cdWQNIWbm#fx(}{DHje&xP$uYUa
z;l2@ec>}j^@s@DkjICry;r&!*^%@(WLMKR*Q_YdtMg&+UUp_X$D`Cwq852Q0>1f%f
z0*7|ndILeQ=;Y1#wzz>-gTX)01LBwznN4~JM5ms(*x~0{D_Li8^cml|am;l$zobLP
z%z4-NtRSYDtKj=UkRZ*43C_>s6a*^!tu8ttoUfW7@_ld0t%a}YdiKBBhLqUN3xBIK
z^&jrGQxskFvR{s<d4Z3bM)MspopZK8i<~TvxsCQ%!)4aR6Jx<|@O29%=JuYc5iVCr
zwmBN11Al9WkvW+~w~7>*zQhT^H5z~1wJD?UkerZh)<!m~qN`BN`_agSkqF|e!Q&gO
zhBp=Gk=IK6zYnj{`%Cl9UXy|KP(8+^W=R}=l~{{tWPu}_1{ZL=P-?YLX+e<LEu99T
z)2b7lz(_W!VkT$mQkgjh3j-vcFCCp?`%s&OTX_vTJ^LCW@`vK%%|Y)R>y+@331;C?
zvu~?$_qB5O4ukswF7n2QJ${`AG0=OK@&DCr11Ux8I8H&N=OflsYggK-*qG2Q=^c=5
zU`c}Em28Wo3hWS_=%=)~%BGebBX)p|m~EeR9E_0P4%|SOR<u}|#7HNzJ&_)$5)kM-
zH@#&as=RT~d@hRR6j#)tZF2EX=_<@7Gg(JuqeFmX8=O>tQ`J3Bt%>FXB>Eeun`2Ob
z)@ogeEq~f(^}Dxrk-1k}BSWe_*VgwnQoAO28GQ=S;7uc3*T>7r4(*(gYmX~(hAZ;3
zmk}T4Fyn{;dPrXWI=?D?dEFV-ARzaGwOlpU5l!V?Zu0f!A|ah-`);@zV;X22ei&M8
z%r!%zmB_>YeKhcpqakNNjyYms9YXE(!qKgHU5j=owjyqW=u?dwT|H4L%_5BMCsvEy
zmAIb1<Ztx(z~^7zMPt3urFwE=c_#CC$$OvUc}g$B$Ds<UP*n*~pwN`vRti+B&O~aD
z+wNCcK3MW{(SYWO_3uLbvjWP)iTW*Lmh0H?OG<8`mK2DYEjGo9rYpr*@{qUV7vB(`
ztGv8)?7uot%+5zyF(5@{2bSC`n;VJswRlkjitMhnGg2W{hrB<~k=OGVI^P^C)`UGe
z1sz{ErXj?lE7UZpFyA)PI`Frm(JeS9=583uqZffqZ`-Xwq;wW#L{M!#s^v#*7m3{2
zg7DWYv6w`qk?mZIVS-Vr?%!O+6H0RAeguPZDGY?aGz*c_JoC>w9lwPS8GR}L*2puP
z89beolyqd352F;m0;#%Cd|KNU=LKs7^oG6DOJA-oA1Fr!rO+~uN(WU{sRvy5`yb8#
zX2S>_`pC5m&+X`Mg&k5Ep>d1VZ+4I$<a|CtI|>lSsj)j`q{%s64Jdf44{D%j(?*`)
z#67`f4zO*e&`hv!nc{%crJdR<8tzAR*wzO~ard~Y8w_}HV(@~j`xVKD%hb_y+3`3i
z%!$g@{McjbU(avDx29MdLdb-=#V~S9Vkb7}NAL+!s?K%b$gZGl;AHL?IDw-&i_9W;
zc!j22dILa!qyd0#G9AZKP7=uPiOuKTZ5S8k6zP3j)5M$W+s{#2lD>UmLUYchyT?%g
zdtXCnT+!*au2Uzl*9|@&?)-vyxZ@tnD{=}6jPsFEdq3u)EwPm91H(5FM-?{<DXt&9
z3`MTZhp56p5KStZPHV*eFvrak3vnxoQ@FV0fEtUy{NYXry_cS*E--^2pP;z!Xw}$h
zzBB7Ga{^$Ett%#w)i0$}hcML5?o6zTX6xJSLB&&6e+FvH#529C;0TV}kV8NO#<nRy
z_Qt2+)>rlb$wfdb9;GWSDH#pdeu{XA=EK%lx|zrPc`A(CwYD&(1XxB9Vx?gwfKhq!
zFXgCWODf9{Lu-gP_2ZbJ3#=%3#|o{Y*Hs+VXEU1Wl7hAbs_y2tv^Xo6V~DoNy>;Wx
zD;2Y5h=$Np*8TwGLh33VzAIZd0K~`-d=3w4%Okp<RLefu;CL?XVCrBY<E+ZE=maZ=
z*){F@nT@IZEyYMTaBpCo*FXtaGf*?wa+ZbC)vqy8kVX}6hqFeONdDHCy_FAX)Z9Jz
z?NF6(OtW}Yw<IN{xVnsq7aZ9cBBx)lyB;N=;z|1^zG(K5a=@^2*FkXMF%JPzT*GPD
ziWQR}uAsc)0-vf?W8Z2dm6F+h?iY%C8tEz$Tk6y5`Q9vOki1r>3m9P`yl_dBgo4k1
z69uhEqNA{@P_?MFvRh9KNTqiE0Q}`wFgh4ktvWhR!BckBez6`@VSAXkY(tpliC%Z6
zDS?k+@riA4BqPF~t|}6}V$U{_myjc`MCW&!fqsb`h=^0CL#yqEiOMC(fZ~9fM}snl
zJDSc!9tGyQXJ@a@9j5PZ+7Q+`Clu7HO++xljwl^?AyaI@r6j5J*C`kJL%c#aLsJzl
z)C1J16y}G}?;5rJ?(&-GW1<yNSh6*z!(@<uTJ*wo6DdtU>s4re_3n;RN~svFX`asL
z`Z{9KPt@YRs_K^B9Rtxy!zp^JvIclLYsMi?h&_@NriHxp2&QB?WeCSJ#2R_2e71C5
zUjhz&(-NPgf0bd6a_D{PyD-?uw@BNU1{BlU%zdYk)O*p<U)QIZwG^cp&gTy3Y#>Ml
z8-kX4AWK@X;*L!=5rU7<^`35Y2WIALIkSFv7^&^425J4~xIaa<|DYq*8t93ri$xQ%
zL5I_LpzHV@x`03+u?o>}B@s>Y1A@M0@<L~{ddnNV!JefKBLbDnSyw2PR3eg0X@?!<
zgp>=y5iEkQeZPS9+L6+}liFwa{_uk4=UP7*!6c@Pl>ZMYD5F5{ce3d)>%t>HMJZh4
z1q~u?z5kxHX!$6H2N19E7Rc*SB_vbjx`?lPTDM`J#hU`n+uw*(ZB4S{j20h5mhk1B
z&Hf;lY2pj>30(W_dw<Lugk!JS7CCz{P$;PF?vBR;gcH!5SGd)Quz(S0{efh)>27?l
zfkO@H;7$DVaS2z*8|pk5x{}ehbTO`huK;0{8OAIHRKGFN$*KmRg96X~F3Beo{5r+#
z2mGQ!X*X=v@d4P76H3mg^z2+GmTWAjsfc&(A3&hH(zH5v+Ga2WKQ*bUu1BhBin!Ch
z{3PpUlhaF<a~<c)7Uv?BF;hAGd`l<MkO`VpA2Nud#+4`)Laivu3h4BXse4hZ3{AD)
zUz;yv8EypN0Fa-mxPJC01>&jB?(#ynTdI<Ps9a$a^$`_!m{$b;!@(1gC1h{E^N!)y
zI*&t+SYcvA{?<bKE1TDphVa{fpC6wAOVvN*WUh!QzC|MlU0!CKO+?Odg5|u(mhVrN
zLG!ATYAin@_iF6m6n@rJ`*-V!_H-$yb0PC$tCbH30eu*XV3N&*kLkn5of*{oXwO*j
zs7+z#@B^3rx(vtr0dR5^7__XaaBV=fYZ{Z~xL<<jXm}iU6wUtd)@@5LGy%D^VTvTy
z_H9UnQ-Swnw27}^>vSoNX2c~@RYYV<WKeBTUoUqL$h!VJ1al5RPe<@qFgQRPsZL2l
z()1A7^9KRgvNov8_0DU@x3$sEC)q@TRD@9R(%48pR^gRRqs;~muvH%PWn0{|@QC!F
z+EZsrr~rRuqylk7*R?I_T9jg!(RI#118g!s2ahb`%V#9@C4@%c4%Jatebdt63P=Wq
zfg2*Kn!Z0EGu2vGU+silvQ<o9QRFzP@jsHFTcw+aZ5U`#z9QsJKJ7pH{{Q<sAR7p6
z4D}}MI!zx}63<7uA+0of_t`!Kk(stb76O6aF`Eq4*3db{aN<$?rAvmqM;6uTGkQRw
z(jGM~e?8Z5D5|Tl1pYZ+R{J!*0dnj{6M-{_NQjr`-n&%ma@HCdTd8l9AK1UYYpI-r
zE3SJ+Qx5*0q3V*unI80MmWw2HaGU%>A#B-d*pGu@UO@nFDjHj5z~7w;xujdYwE3t2
zTYI)cu<TkvAQ+Gu?!(NrD>Q;HBCM#&HT{3+io}B`>*nRd)|TsTdw2v{U&xO9@B8T-
z{e#>zEO}t8Wun<uMH!){0lac``q@C#GrPgv?tu^W?-dKi1_3o=2&yntsQE2FP>jRS
zm?m?Kkl>Slo>ey9PB!(WFm28jm<=oGU~U3Kq`>6~u^(TQFIa7w8hNA4rFIO0<3%a*
zHx)4Vs?ycnnGBd95fjKQ7K-^*6O)bhgxeanv>qZRckAV0T9q=^(2Us8aU`{=uUuP&
zVO!~78vg~W!1<qcsX$irL(NOo1d!FQ>nQ4bX6p&7^1M2Qj(lnwH6Y8&GMM0RZ&llX
zA=&->_I@~<BijJIVG!>^Xx3`nRd&8-$77M1aeIrE_v@a4*YamiTRu{c{rpxlnI3@e
z?zN!4MDz#j7|ZQ-xC^-BHf}+{kNzb(Z2*Cgh$aUX?01h<JllFec_M+?aV%1ef`oLu
zM*itSK_F2*ioqPI?{;2nSrhj>1iaV{&9H)oX9MQ`srM2#*LdL0?MNKM)PJ(BNXLpc
z#}w>j=@^+g(ZQTe$lV2snh(-R!wOIue7c!7g!wMIu@TT$U&(3+#n(7ssR1P@X(K{1
zpzZ!ut=L+17TM@~F7>Qzl8^`QZD1Fcu6Zsj-(<p7`QJQSL4ZT;U}j*$f){f9kpu$2
zN0sgh6d&(#gjA{hoX+Yqd9~bv1F;c$LE7cpA6*hY!fJMn?X3m1g-?kb%O_sRH62gP
z4mW(h-h)aiOPOlMeq)M5n&8Ax(OP9TQz1BAv&4>h$^9&Sfh$L8oX5>Nlt<!bSggIv
za&?>S9~F2oo$d~|=HJx~#cluVP}HOKl7u1U-Fb(v>iv)ReBHbM!%j{eL`?vG;|N7|
zm&QhK90-SMF=x;h$39QcrJUs_{~O6Z&UHeLce~0Qk5c)Bm(F>}Ea&;dit)^a-sr@-
zNgTFo+0#0C6HM6si#WtPO}24g6rZBO4%m&6cSBtyY<XA%$zrg!U_vhtD*E<`>+nS*
zCho&(8YNxw%U&mA>Scs=vGFLz0S{>}L55L28|)XqY7Uwn)T99rI)yu#jk7FX50HzY
zt($jxN?!pCQrIv52Wf5XZqGl#@dywg`=ayG4!25eErf56SMnF^KKW`&jYA<ezB|@G
z29N3oNJvv;26X_BQ4X7i=m+iE`{hZ<9ebMR+u*{mp4>6}?4>8BnG@*6c2Oa?<<f^q
zF7Vt5-6G{2Iy4yeedj(T;4g7t*hCH+`oG`I{T703Rd*YfH-M>K4>gfz+7)X?ia5j1
z?o}sN4&-2=2kX>yTYl+v@sxB8@4lotQnCN={K)b$^k!EA#naGG+%53FH{9BMa_@FP
z>E?U)rQKKmsgg-ekS05u2vJULkINZd?d=)~Wun9%3^ldAGmKE?y0dx7xE_9ZIn=nc
zeMB0J!)itz6qXA^9J#d|72x;u(HyLs))r$+K?XH^$g`S=m)b%kkotmPAWP`#{D#e#
zd-mU2wod|Iq?}%)$Px8br$w_~a1twd_HS=b?|5y4=|hTb-ccp{HKp=EO}IsSa($KB
zQhP1qrU4TuQ|m(r=!1KpStHM-9X0n)?M+>CCMs8NTl*G4qGBxhu6{_e2CiB44F(Fj
zLv)Y4JDih}^*_F%PE#I&T416R9JdB_Va%|fqkvEg&XNJ$Ia#lbcq~ZLy$;~Uug@Y=
zYyQ*M$u@WJaYY{ShbXY!r_iP0kGDXFSuD3kwjC)2@~^Y#GZQiE2<}&2jyaURG+{6@
zn28?2Ii~wKrdlm_66qY?)@6|qnaVA}-~h6)UK>nSb-n0vaV}n->qdgoX^`{Z(#IqZ
zUqA%1Em7lP5*Tv|aJ7uVVR)dK3{R7SbSVt}_-QDp^TMZI?E6-Y^Q#FAS&_`7;Znfn
zF#Lis?)>`PvT(HlI+0s^{`U3}3uCXU51YR9D~zS^<l~<VcP005T0fCD;0-6rcS>d{
zMQzHB%6$<vH}s<u**i?wy<`{`=?eAWUley3T1~Gra@62<m>n;nekFEa@zBc>okZCu
z)pHGBXFl$@;7w~`X@Lc>zT2w!h;xV!gWZ59{20DBYU$*Wi(e^d%jp>MNt?Rt9RF9W
zcM|O{C8cA4b)q~W(vna`mKEc}$!1@`A|17>MrzH;@fx`KDOHfC-f7^MGr)FqOp9Gq
z+UDS4^d0?hP^Rvv&X%zKJw~E46|7TTAtE&Ns_%u`@G7R&Mm+d*!*an<Ca*YxR5{y*
zN4a;#!m&hNhCCBq5pCjf)OkR-NWgr`9Al-&!v3AsHv>kTq|{J>$7sr~@msFIIO6`6
zLI31wtDA7~#V@s|M@p1x_5cGKPe0I_TSdCa3w4b6RgyuHP%uPAQt53*D7?Xm^1v4|
zH_}F^6c8&l5#-TMswV5D#kH_kinTCr82wX=`_HjHi^-ZsD();W$b^K{jKz9}*WWt)
zkv|h2YA~x8uveZEko2lB*x1rpJwnogx6k)+0XCld>mxk$TS`yZw?6Ks4S)0rP-DYR
zU!UcRL5hAFQ!jg_JbV>^_mghFxmb&zyZ|tVXsNQ^hREu|rgK}rMZ|#jPD%pv)_O3U
zK+>TEIop4CDFbv|IsiXX-%Dr1J>W57aq64^$f&|U**=VIOXBeQ{d-O$v|Q3<5|CqB
z0>-`MNiX#CgA%UYwM1{l|8tDMsG2;xp;rbM>nFM)&GA9`m3A6y&?^@f?0eD|nMyh#
zWk}JH6@dxk-Bi+nBJBTEssN}Z4kOZo2-uP}>SR+&xJvyb3Bjtd=Y6b0>cMPc`{tjR
z!}xx{K2iPDb`%G*1-p(2Ux-bCDyR@z5QAQexqq69USqy(_xX}Pc+ZX}zYG)fRV%`E
zk}5TyYRdA^ro~l^-l^#LiJY(~HYrA5Zm7OC;DZOtyyEgnD8_@M%ZTde%S9Zu<}yF(
z(*JC{8_V1FX8-Wsog6TLV=*H#Q3!I|D4{5<6<E-ru-+5B@8Mu-*N7(<7pwLKrsB2v
z+-|(@etf_*HNyxXYS{I)s;G*G>A&gmF6(UTR;OQzTISnv=UG#2_l$oAChcvvg#w3%
z3x1U=Jh+_KiNGtjh6FQaXyAgcxx(!5H{g1|{uW2k+Fy$a3Fhah+{Ig-*@6|ziOga_
zfHD#mM))&$dMv8Z@{HBTL@@9kphRhkz{jwtTI33zR;ZCC$=Yf^dU#{vGO8ecv#afG
zry9WS!q43gh8MlEJAOFndC}5!<=f`sIzjK=o&u^vsavhwgWsRj$Lp6<lWPk?8<V43
z-DC)K%KTUe&UWlez2u^4p;`(ov9ZF;#F>w!>x^DibK}$dYa4{a%WU2#a_`TSO)L9i
zP3d}uW*_oIhCzUxtw_n#Mp4E8E$~4;G|vc;+9`ImOE06^vopvl?Utz%VeHiw0u|Vn
z=4#-Ry1y6J;)R*~EEdDw)DjFopNNh@1I~w|r=Rmbhd6Y7is8mhHVijRNzc>H5s@hk
zy6EcD^9at~TnpFAsdMIE;rc#+tLJyr9@K^%%;bBFM#FtpdWX?ObM;>CD^~%q{%7er
zitLq69RcuL)0~Q=5uTZQ1Vc||F3y^|9?1!A^#2lzE0IzaFDl>(`+68%A5X{NYw|@(
zlEi9M7ZOO;;T;HX0}*cxRkN%{+Su#0Ysp^rityskwcN(H@-4j$6w*3ll7Kz0@h)E|
zz$-TK^iIv}we2w*s(gF7%2?PO-BE?L)k>K!e+F7R#jWbTouif;R<cY$HR*SYJ+xIc
z=(lx>jPZ}t`irL*e<?JBbX|dvt*bxck>h{A_j#Kr10a}GvsK_NPSgwuh_kj;w@?Uk
z&`O(-tz3+&#Xr3vle8lTc!;2I!;0SVHbz@?k%q8-ckM+v+2QEK@SUP<-)Jw{&Eg_c
z&x-6hpqT-^4izbx2j;W+;5u<>3_AR$$`BJ^-P%AkWy-jtds~HQ&9O=l?0;L}{o>4J
zfN+8O5F(}L_pw+FR>d8~h+p<-&prZRE9IOW17mgHHp8ljx2%D0!&fqhx=($KBc~oW
z68u=ltL!UQZx6x-noTi+UK7^1kzh+FpbZ6poETOY<D7>kQ(_bP+Xt@BDnXVPi|QAe
z*lC(Ejs~&pza@>o>q@H|3Dd+A+G+^sg*1%-VDu=u$bP}0PDyA*3V}2!)0UMhl*hiN
zTB2JD@C5o}Gw+nECL$LNsoggihgZu{V|&)-bTU@8Yn7USi`V*2KgZVSjH$6Lg%=Go
z^Ty=<$gs+ITbtO_QNNWEPE_nHfBqQ7RO;wo?{_+SD>*jy0yOR080&gzN#oAUtnX;D
zay<N7<iQFxk;@Ta{W+H3?h?4vnU<gjYjQ~?d5c54s7Ci@2H|qs<gb$TZ!vTZA#T&P
z(V!gV=N5~+FBSPc(IaW`r+cFBE-JpY8C?9v3QqBDF4CVXLAP-!Q7Z)u*)xHg_<uu?
z4E(o1lAFSr2?p2d*LgO2@c)H%6Tx<vCw9#C0R(CPrIp-*X4cL6wN;L21YUL|TBS#?
z35sG8zVphQL>(#?!EMrv&pcD`<mL<`lX;FnHn+mpKM@EaF)Z?+n01E?bJIpU_*pB5
zjK5bKC=fbB<G$k<8XiXEUb^%@eN^S}`5j?y>stpS!&?vS$|;qz4w|?vN@cH{>7afy
zYQ^6vzt;e5xtn{#wa8>Xpo}(?eZ%;!*|zx?#P7ola`U|eH96Y6QjSCD2AVANfFGe0
zEc37^FZNARuBP`aId@|iJe(7PDW}_;%51&%TGuSnagE8ZwzrzbARVv>1C71=YI6Ad
z1g*WA-N8hY)W3}Hs}LZ<trClSN8Ct2==pJ|`KVKcDc6C3?Zez%V%;0<t95IqfT!UF
z;KPxK!#g^pnqX@`hBmOPEtJ3=h?vTwa2v|&SO%|`+aQ2TU2r<>cU%qPzb^=2ghs(y
z2?n@X@c((Ev+u~wE^!`WCm!|K_mUZB)5bE95Dc^mo&zw#e{JV$aZ{IF{fPKD+8eGC
zd)|H4o3pGz4;w1h3wXJ(F4Qg;B`NC__^`;+PB}K|-G*$Phg^L)!Z_pAYR8TR#dAV#
z>t>EOC=a7a*q7j|^FRorkj1hli+&G`7+{^roYvUPfIWVz$Cm)G1=86RFV1UgR)tQo
zH0Hc-$8CrBWN!#FhzOKs5#!lfXO;Y1GZnIcaer!a6NnbHFbNWe9snXQeC{FS$ja-b
z1&j6J5nS2&0=0JCD@wv(?^_>)QWM9F7{K0+NcP{v1}>e(47KD4qbS_yMXmpmbuIVS
z0PqiXCIfk22cF>UI?sz7)h%oDyAOaBYG$St%RJ-Lm7N3=5~+85Og<0f9~r_%lxluB
z+#j%9L3Zo0?}uYQrEMLCrN4c|$WydE&F1l3>f*|NpLAsGQnKqPAGC^EaiM1um5IDf
z5myILkCDk!)ODz(cdC=&YQQcdN674Nn2cu~?FtK(!*y2<%yIR!-f+aPGUe{7MO|g*
z+88yasURTxaPw&r9^>9$!-~69X&2Z?lK1gxB7*&xvmSc|5s@kDTpe0x(nhytC5Tm1
zd~MV5cStj9=XZ(b3ZKmE<WCAV4ta;vEsyJb=*nvug3{v$XfmqgEMoxt^Or2EIk6d2
z_vzNy2@nY477{Noc=pK%76<Q)xT~IT4G)lG!mhyJg7<^XRpj0q5rlP$L+XqPHu$OK
zLB{j&_Lrn+E==}*{Q|c)_;`$146&-nSojno7&fhmilt(|-Y=VRO265$>$GPmsjlOd
zfnloaDw#8$vHu<u0(<3%?~wq%BVrZmj*h$g-qPLAQL?PFgfq$HL_F0dZ+P!L3V4j6
zelY&aU}r+HUWyJ3&536jh=z>KBs%kCUPv;DvWC1Ni-|G`Zv!G!@8_#I8~xe|{>EW?
z6Go&?XIb9Pxl9=LQM&Qsrd!$>?T9SQ+uB}p?m3+G5C77g5gdCg8O(Qe#YQqN&avnB
zfe@5&DYf6<*dPz6h8jv2pX}oNwy;MW4)M3io1;A6DMQH>N@By{do$ztmk2Q9psj0J
zx(pKzJ<h(dk{kp5qyQaGJs%qP0BvB`+^GaWf{2}dbZoTuUsw(S*d&g`RUC2u(ke&R
z8}zW3+OrYvL^7CBWDv3eikI@93(ak;MZlaL^vRf|R1rP0h`0JL$-%&-RA{zpJ5Qr3
z(Z+U_p(S%1DQ>csT8zagWw-bF%@xqS;qtaJcT^H!@!VAQmd>bKXsVb;1`r|{SQrB9
zf=~>;H?5y)e(kBp=x$bzC~-|?FcdC`u`T9kE}_D?#;WEmWm@XAsms(&C#)PxS^hrg
z_|OoyWq*vZ1lUZl<<r=yH?Mb<%BY%Fsi?--X7bh3c8W@_G=8mll(HrZ$8`y^kCf{O
zJLb{iPMc4(6s-kdlYBBtdN^XF@w;=e$HCK)e+A~nwM3>|>q3AY@#JEGE#se_j9o<z
z;aHWOX2ya4qZ1F#A5TPH#0T*`vlFb*UWPnW2IU>WkgCMndTM_-cCpu6YfdyX`zl?k
zax-~f-xyNj|IJs`p?9w^GP^RxXlZRfxPK*0owZdd^=rz9(4io|5lOLrge9EbL2c+E
z(@`&A;OJ8+HDtsD#=7!7$TDw9BJL$8d#h&v;J13BPv-n40@Cn_QjmfL+xB*nwVZ@e
z&7%^Yr^><ziEkp^Oak}IY|F<`^AM*ZNA5BT2El(2_s#<iG($(wYD{~zR~#Tx>vFqc
z?E+k6)U?*_z#*0#I0_W@cM9l{^N;zkd0#|%>l3Xcaj-rJ@HnS3+6nZ&lPUUf($()3
z4)J|Meb)G~FLu|`f=bRQDE3{({z=-rH<=Qp*$xnUpN%z1?+K_ll<E<5ud-Cbo0Oi=
zYpA&q9v_;Z3*inT(;MPr8X5;hsZ`tRN8V(^ZHW1mWt`akcSy|~Oa835ZopTY9EQpz
zgcjF}rrJRyY@|YKU<9s&2ikv_1E3fd^sX$S!@PZV{rTmmpJZ3zSqU>V#BiiF3Bd_I
zSw>b0oea3hO_;!#x$f5^o3fku_6o&F4|up4?nY}$O99}Z%9)(H;OnN06?;!@2I?*0
z%JBy|))zi{j}+}lG-p`-1L13+=%&#25M@>w#u+xucaHtqH>kH-NMzo#d`P=1zDzb8
z<et7U3|KiU&3VHf0eR_1XzKZa`)~bO6Z;La*+*70XWJI*IlmXqLT|G%Jn=~Zfj<7o
z5BMTx&OCWIP)tQpg^XF?5HD=-js*r|r}aWs2N)wa^F~z`t&j9@;Y5{Y(mueA^;=LW
zkq1v{q~L{NgqejA&IsGhIPfD|gaBo^Q=Y@iHX2?^NAu84brm90K+{!{H--&rk0_r+
zIgq)tP57aJW~v{n+3_qg*ts;+iym!zt)iC%g540%Z{fceEg!{**HRtHyT9%BDnBlT
ztEu^mvMC8Lib-3-BYMKeaKS@2m8W0AxmXzdXR>2gA-x$2-ngfu2DCSSVA9qy-}^Sv
zxdCtQ5zrxZ_#Pvu2E!ir{9xO_`_OGITMn`~BrBNcs?t~I^?gUMo4dM$SOu)Xqul+?
z)^)vu0sQ6MX=8b|k@~17u4Ef>)mTV}Rw8f#ND_~D<*uj<DbsvcXQP^NK^9rSP?R5p
zhJvACV!mFa;|(`C-Y2KUTNFR&mMAm6ilNB*`jpNS+*0ie6GIr_k6t#gTT9L4A9TRY
zce^O1@)d~Y$t~E$QMG(}vE2cRcCC<C*a!t>)w5HkQvr1XN6HC5V$Fv@@!2CDgyt)&
zns>+M#k22-Zgtzdr`I2`f{mViUvGS%1U-6CJE(YKd+tj;!pBJCgqkNiz#zlcVP3FZ
z+Gb4&me|s+8BJS(=e5^0eRYj0)Q#2Rm1JxCWr|QTs_Dof`kO9AB(oM4p`)JIR2vd*
z58^b{NNX*XoZ~SVvM%4~Q4+y@nqFU*HbO!Sdd|4;fM4IXV$jX$gOr*$c*{U&;R}md
ztU6)&C%e?O*E7h=k_dng*DL&$o|=OYK3)^g5hmo;NFf{n#2o*D87;7+yJoL%H9Wp{
zL_++S5CeSK12xmXly*92r^8yAToS6h+j{tcf9J(HJqAZ7=$?=}dZwoiLufH>q<jiJ
zqJc{K$DFZsnA>UQYYGXmPN0j0ml3067s9!{k5mJ>+)7_v7$Rw&kt2vi68|9@`Xr~M
zd5L2n@|`U%u+Lb1T7#74My54CZ<wo9wA&1}jTBl~<5(kUAR!CDr#`jdAWU73G1G`8
z1oBwQi2M&KdLc{Wa&(=aQ66NtQO$f%{L+#`aoFtSr%6E|;ZPU`i=0|pa(^6?c6IMj
z^LDdrp|sTgXlzVdUAMuX0#ZSK$*T^1?tgogVf|6F(zdggJ^9{vICzvQzs;lXMFE{I
zCQCiAJra)2X?um13yXSuCF<nUpfU)4UvKYBHP$TJL_ORYR_>`Ooy{bFWK+@Hg<4Sj
zzQ-5?4*j5!IN4s)jlw9N{Bom6puZ!R)IuxVBz?y)JRc)F9m<z#IpQeQXJ85=(EPsW
zNjT#ia+22^_1F*@^j^YaKhX&*RaCUdR0X!{e;@siSM0b%b7j+w#~gF)kH=GY$<KAR
zd-wvqFey5ZR2M#)+?}TBi)G}^<yTxy^#j6xM0orrlrjak4HPn2t8r`9eh>74?RFM)
zQ<oj358giRz<91n=<nOdH*+8*P`cZWnY7euHYF5V;NO`RRFi$9ujDsgQs>;`CJYG>
z0pu?#*6;Z3H``9~L!xJuUlBe^DpF>av!cSUeaz)NIP4HY`MuV|ICb7g12DHN#yzeR
z7zg->Sgq`c@-VO1=@G?NJv6Wo5nl|(;lJWDJXu=m69@3vpDWgyA>o8sHOO%l+ZSNA
zKx0FiZj6>8()M+jB8;Sa-ENU$43Qo>?^S5OborVdV9HzzJ_M@#25VH6M*TW+okrBQ
zD=ME72uE#O43l>EkS&nPYI6Ljzp4WP{d#+V(utpkBs?c1Hj<CDglm-a@g{)=BC-QD
zxRhDoO$p%V6S`OcAq=ywHZ7+28ZD7I+hPfz@rT^WUq!(3qr_i0d1a-!@lM_Z1;~Gf
zpdv><`~;2nKlPdEPCoAGOafXmH#`b$$`A&Z23H5NyQ7^v>_uv!CmG4-Cr{P=P~}>s
zyh{7?LR&Ox?W*Oi>URC3RL~HKVvwo)81@HdBGvm+)!vL~Q99va{$wLy>|W1e&CNzA
zXG<`>0)h&Ab%OMb4q@q#C-sW}z@#QXBKYZ;{z}a1nNW;kW$lD(i&1;0=kvj#r7dc)
zWIIi`VX`ZdUNLqHkm7sw3%ca~OfXu)Od<g47xzKK^Tr0vB`39TXf6<*5`N-dX%*y{
zevyE^1hZEQoX)tTd1HR0*o++!T~ghW475WyQ<5OM8n#&>@2->RY^zdctZO$mfOb5(
zGm!-mA1jCQ)kX(d_f@{K804y>T?-2TJ}+_1_`T;kvK?rXeC+{i{r^Ut3*S2Lww&mr
z>sv?v?a9}L!NL^s58<W%3*6ySotkKc!C%_TP-2nYyz3?N=;v@SmgL#!s6}avQp(;u
z-d{OHYI>rdFqkd;Y_yQ81e~7xtOOWJzNVCuMA`sMf(QDK;})YOQ*fvW$s<8<kun|o
z!zu@@E~+6}lcY{kN7CG<?WuJBSt9_UCjy3xni=hTkPCCa+=$)PE#zGJ?pI(+3g)y4
zxt`)gskJ69(v}uAdWUx^WB|>_-}pYJ(NAno>IbZ;4sYYT=4S6XdUK-({NEg2Rsbc4
z*kTlpXN3<<DwVJ3!dGY$+DPcP49)@I?4N&@!(&|4w0@Sc26oLcB@Y6$@3t*qyyx;m
zI%Wf4v=6{Dl^v#{Gax>#4sF@)>d$(LSg?r=Tpv?oud<Vgf`~)S;~wOw?qJMu{bY0a
zT9dBzDqN46gSJ|6=%m+m?Xl$rEG7e7KM)&P#HJc3e6;(){PwoWBUw}{<B?v!B}7Ba
zEb1_3PIMDTUUF<ERst-Juvn?tAXtaqj}{A#)vM;s`#Zm7Uj=@t-El$GXrl3~X+i+a
z)5~@wwjR&bTP6~>^P*z+{mQieit{N|F4gLo;kb5x%;sl{sfRXjd0UvqcHm=eYoHR{
zDa=geoo#$cawo+VuQ7_|5jW@$1TX)cSA;fnBeq=k9@v7T8$Y84>cNeqcK9*Pnc^Lr
zA^Q7YCcD)Gm8E>}57_+PKI_I1ofR>dIAuu9{O&q}d`9Lat3ff-1^0&>i~E{Dki(Pj
zg{#&3Tp-iOp#rE-lJW2kB5dtGLqYo$Huu5F0<17r89Ec2iRb>fBjOe3Pu(qXr}Vcw
zd0sha;Q;U6KTO)U$14t<>_=7Q*7kjV1&w&gxDE!xXFak57wBQ5N|53=Y(+kfR3Yvb
zG#M2hsw02Kg*R{~C^;|_KH-t>Sf&ZWY82RKBA|$^D<9^zmJ29}GgWDIPXtdG!FAOu
z0ZYn7HN#}ol>2cQg%T1=5JCBQoD6$+EwjWGA(E4Sg(s!0+@8l_#Qi`G6k<P<xD^(a
z!YvCuK54$~cx(t)W7$qG<3Y?FvoI<=b>2>8n}2daZcx`on(`o}1ZJ3Xm(W2UJ}fiQ
z6KaD{L*2LXT{wQC`;C%>Y8j{p=VscJw&%V36ghp~BNv+qMDW~MW4ZF85^g9nbN@4W
z9j%*{r~uH&a$n?#yIFYm(cU+W@2(ElSQvR<yfBYbm828W-^CvvEMU0hc-x|bX1?VQ
z61@8zp7TBp3?$`}dPsz5)6_PQ46DOKs(pK4r|CY=+%XZD0*$^&Zd)L0XEVjk3PPS0
z7r=zkdKltOE*qcE?pL3E$JZ{TLt(FD4G0j7vFFRZBK8q@;U@)7DK5!kE^}#LF=THK
zo2ClRA%^w{0ZZr57|OVO`XdB?%;JSqyAzj&g|mGg)Iy_b0Q;%4?fOie6ayv|J11!o
z`V1FSLG82TDv-MuNW-R96?I~g?necsfzri~qQB{U77PQj=I-$x!rC)enjhi>1+x_B
zJbbvk!Qy%R|LKtiwb!FrzE_KcyM;p-97a|9Vj@(F^rTouvGfJmMH32B0*EG9dLbqB
z{iR4+vcDw8wi{34nQ2N*Iko8YwsIVZ%h!nd-=+IHn7Q4U6bP`wDfyMKpSndUNz#k9
z;aIZ5jS|T*M*dCS%j;pi<h8STo1C0sEo+H27B#RWV!riWNDLrq1FhW|TLUh~?hUoF
zW(IXL`~+YOvi|qQ1;a|#@v#V*pd}$SkhaZ>AgOn4+h)OS0t9+wi7{a;Z7|zD!U1af
z#%WFm&yifWA564y2#g+Gah1`ezei#uhIL4u%XRv`IjF#rN`$sF=ga^0kR?Drba(d8
z0-4(XFuRTwh-RM6YE>1=;Y%?V-+b`(0(_2r?I63)esV}WT&KE^Ig?+3C?ynXH;Tld
zLI`aMo-)!k#HAH<eExKYwVYqLrWd$;uUboQ9)j<h=s5oajWM2Bxp1nePNu_3xEw3p
zUZXE=JI~fa+!A`S=nq+AWqCQQ+jYxTlReF;HD_9UOtmRhrhooQKCBPW3Q;DKv%@8A
zS-WlKWc#AAv;Ar;mJ5|Rla9(Tq)F>Yw`H<0e&KS<T+Z&3puuDXgUfu<12{t+F&sQ*
z6HEa-8VweW$)$Ee#=E8l%CXfrhsTn#IPuA~$~dntLa{35go&LLdek1>rk=p6)ztCs
z8M&fJ@u*qT%}uJo_K$qH!ck>qG%tPTft0TP3v0o5v%Rj-=tm@`Cmw#n+<O;_3P$3G
z&d9#wvBZT8;sdHej?~zyXi^SHLzS!B0W_@!^9$3#-(abT8@$2f&<xa;^m}E;QU(wX
z-fgI&1PC^bd`T6ba-xN<_$iPU=j{ddjQuxG-Jg5H5J0%(2gIX`y*hP<E?SnY&Q6P|
z2{89%^WX2N>5eOzeU9XSOWCslAw_YgVaOne{=aE4PVy<os-H6`fuc4@vXfP9o!v{s
zX1mZXcd~NB;F-ohrKhU=%GYKQkT-&-QkCEi1@;_^6+}-KgXRd`$g@%DRoJ{saPD#K
zzfb;Y5A+?^)Dc+Z|JW9>yLYdBSlxEpxp`aHEFZiXf4ptFPkIxPA#4cvEHqY86l^Cw
zdWzuOvt!9OMakYeOr_@BGa&-VzU+mkZXN5$Mrul?+OoHljA4z*;WxHZt~++R+A=N>
zfp6X43&ekj5U2v72h0Shi0CJOJ-eqD^l|(KV<)=)89fOFUE+kcrrDDOnu-e(rT8Mu
z9Q+JJ7T(x(C`;;|d1JIe@%UKaesLGyJYKWeA8k3$2D8$icGXIqNjA_N00-ByA8Lxf
zJgzj>yI+{Hid_u$AtFiDi*Z>F*{dS_wgs8<#v<~~$_UIsW99>NB<mM>ide9#jCxmq
zPZz%!2Xq@S@Q9#`9=>>H_{kHn$T-;rW$Zsa3SIF%MQ_*?o5XOlA`b(eJor*^d(+tA
zFn*dXM~e8X|MvG^IVI2xa;boHEppvppm%}6m#~yRD|->Q@GsAS6*amq66e(zoG)bl
z4px-7|C9NbV{`F#s6da(OjRLhS>K|{sCqIAxj+0bceW|wHiRlL&S+LQSk$cYpIU#k
z-l#gqoQAY4ZjiL*j4a0kT%o@?y}hm-wR!%4*UuC5iM^OJj)ne^gzS-8p*Xl~t7%!~
zylHcRJ(|!V{M3~Ofd5-KgWaL^x?~yaV%yIta&hz!0wL<ylHJ@xy7DbW74cOgCW33`
z(^|C#z6t2WbnzxZ>6-W{)oHCNiW7XaKk<cvizZhAp<5i>z(*txUa&J*iF6b|Ltgh`
z^Ubl#hmt{grt2TL8wiI6u2St2wW6nE(J9{nYC&p!;fjvX%d@NW7*SZ!jlGterkRFU
zc3#qJCX7f$RQg~WTEx3@H-KNIdS|`|g&}>I2*3n8!sS(i#7f-?p!_k7rqQG34ucbh
z@Vowne-9x`jJFUL)SY5*G8?Q4d%UEOL;*o@6E+dLDgVkb5^`XdoZuC!#e@+XlS@2&
zLp@uOYIJ!W8WCn`>a6+u{N?0sr3VZt>9ao)8XXUzN5!GIW~46`<>{H8DwO(k>%uzU
zN@mNp`aNDZXS}HLj`mhvCrNBieve)aVa&5rU}`dVs5;Cds!-=rgLjKh>=Y2Dyo}GC
zGK&ba@gOWR;HaNRtZq^>h5z5PKH3o50qP$4aZo_ce9|<=)I*)MB>g5Ck<_LB4sWtS
zIq(5*``CZy|G_^p>a`0XC!t}1VPFi-x;qGyh}a%p3$h*)>T1dsKnw8Lo&RTfH|tOp
zE-3YzVyhiaj62wTY3>AVWpL)l30`VQp`}ouf7gOp1^K9roYI(h$#EkBCSp_;px0Q>
zC4|>aob*bl<P6{Eb%s|lC_u<)MY||{UnvcjMR*G1W*M#Pfy&13w721kz{tb?H@kb$
zVy@`Ljfo-8os0A7=}VWt4ovh1(g$(i(fdk@j0tnkjlb%DM8=ul&2@GXNJ<2C80upI
z%7_bgf?tgwO$vuS$>v=l&Pvw+HMXCu`##}W=r2Ne0^8=@wBZVGwJcp0Lf^v`JXRig
zRuGdar9L7=ic$%2B*N^IOVyyUg{n(V+Ya7b$2V>3WF4M9Gu<wN_lIdu_D3JtQ*F~Y
z<K-L>_dJ8Ycq%^Ar!Ka__juSIJ_aNC2mrWWRL6K(OC!MJG``@kBh}^QrXD12+30fh
zBQBFk_OHyD1L#fy$Ny0?T<&@$@_RM#>_lYEXQCXmfAOp~0ZGwoX}3<!ZAfJt=3UsJ
zfdY70N9i|)&zLMguVQE96EfUoStJ|0_~ju0YM5`AWyU^r=Zg0-98?{sMiMC{+Or#x
zL{4Xc6xSG-;?}xLTG%2O0!BjHr51xgjaQABE$=&wk9a3|jxul@H|k(U)#SGzMO9cA
z__7O@9i)WIM2+tRn*JVlbPQ$;qFK9wqs@`1(TssThj9g#NtgF1p?KL!4{s@umi9%w
ztnL@ou^OWk4r~@eELd_fULAsTjB?4y=ATD|(X|I*q_{`qw}+)`ke+1IrVu_w8(vmm
zJ3Wtl*k*NnIG&XdTn?Oa>bhL9+&>Uyf8ckZM8IDlF_O5D#df@TUMRjBFvK_M1Ed--
z2BKT+E%LFK2CwpWnUU5tL=l3OxD<GI8x@ZIy2Cj;8w|R-LY>2oJ=Bh-zs&ipHO=~X
zS)FcaV&zb~qQ#OlPt&?YnwFQ6w>I<iXH2=BiA0qF>4m54nw)uijT+q?Q2pzN&sL(7
zg1Ax1(Q$8+Pu=8xu@#*IITv5q^udk;U8F*`s@KuC4Y^8Ue3ijSN8GT%&BW^4SnFw;
zBlbjhtSZWW05d?$zp4t`zEQ+nq_<$qY!|gf+p4Hn|0UG0*6ybmMwp&4lp170-|F<;
zA6B~teHr?b{-Fwz@0VhOW&3rV$zf6IPYV?wllU{O%1o4<v&e7NvJ2_u2>I;gKNZ3}
z29@Q}H*4S8D^WnOoQ}fF*9)NrZ)dkVzp<A*2Hp^(JNE5qPY&E5PLevvF?3aD5Bc&c
z>*5^-vx;#KBxhf0wpbiq<5}z5$}l9#d%lK)s7@$|G0XgZBOkaJgar^IiQ(P!Y2bhj
zC(B)mIK60co|FRjwYO4jpU?#L606&*@6kB}4>EXp;wcsSu{IbY>NA|@bf&W{mz)?Y
zfIM8=mki3njam+vsOeMeGxE(PXmPk;Mo(i0^LOtSgy?k@Z&&IuR;k_-3-9MmNFFt^
za0%D*W_l9mJnf7&;(HeuLI*k80kygOmNaVh=uhzgVHh6-&7M+7HL;{h;vt&%J_{sQ
zgUeC>pGks)H-Trf^<1ai!gyO|rAq@cd&-mc8@fi04xAm(LTKtFW&<Y<fOy2j_RbnQ
zv1py}pf@x%8fE~1IYH#LeM~|s!67V@S2&xrBI(|lz))7Y*n^(zO*;ts;?vU~$w$u2
z^Co<yWrPK0&EeZH<QT%>lL#5oE5xJvwKxWVD>CZ@HvIq%A#VEv#QHP2GUP*4?;Ty=
zL;^rSJGb%yw~YbYVw^QVG%%)B2gy@;B1v~WBoMR%g%>iYJ+=mQ2US}g9?Z_xo=U^t
zfJ(@P638k#?-1}cj5;I-c)OHtV@tA__G7Z))0tG3f+jKt2CQ#j_6y}{4)M|mE?)~}
zKREa%BZIV`#TH(+efPVqIR<l|N3>>1l}Othocqm0S|}rpjurjeZd)gTh#?a!W3*93
zQmQh|^;_xQXNW|J9bFDUp)u6u#1Brv&o=41WI2NHOZ`OY)s}X#8;~Ia5B{crY#w`-
zihiQ3Tt*4^;I*nNZ$=XZ=R=X4knf>co~LxbUrJ4T2z*6;*-GO*#&w1oDr5qPC0ua_
zXd*grd4JUs=(m}!{5j}0!~f*D%W26?>&HNTMddydPaK~xW?)WWR5Asxniyv*a-80G
z7sy98Q4P}aNieA!`Y~ud-6fme4Y8*3hLet-8BCZqSVv_pmHx=J!5(woV>ynupB5Dq
zXH{2qnHAD8Q|A_UFy@>ifGe+X(Sq325Jleap_b-BCEE?^Vbjhw+JPlK-kI@Sj{zM{
z1)K_o>MNhPX?0nT(*2bJIm2JuOgLnJKYgJ&SuSl>GsQDY@Y-IF5Scsj{Z{SD*CRcE
zt!|4~I}DYW0)%FJH$)l|*1!xz@@ie+ELAKn{?R%O%6o@5=72yGk|ei+{o6!unxdR9
zx+n>lX)beBGk^a$Y_&xY>s)xq{6*_PqVuNpMw4u&v0K>x5lM^B%fHW)BOQ!VF6qN;
zl+;an(RWjOw}`cuMrDgDO$v+{=o*?4nPE+ph8Rys7i|-C_sX3`5CN(0$mV=Ne{q}z
z`O{1o+;{^c9HFS23F&$^H5Hon<!KVV{yC;wd!4&k+pQ_EMXECTzbwqvW&tredNJ>)
z%5>cR?dxzhazewJbabnmQ0#df&Vo8(iXF&4cth0TKMZ8S1!5&}40>A`@mSOSsEMbT
zo=0wa(=)jOa0^%fftwesH<Oi8P7nTjhHNChTMiY{Z}r8bFOBiWcrZ4GxT}XClW#$+
z@e{3gFm$>Vkx@hjz<zPWUoW}H`fi&>F}Ya5++Fc3h30h0T5y^L!~`U9f5AY`@o83W
zd7<9_x~6T6!5rnR0AOww13MsQM~IQQP6I2;##;%JdxhT=8gwTR!=BiSr3$C)y!!-@
z6FgojC>}A<1RRJ1Suz!t8ytpJwrOg+fjBK;Dwf^nwx%hUm~vLeE6|1i)&)q#8Oiz@
zl+;408c+Fphg5yO_Qz;=p$Wm*aWDn&`F_3-1??gMBpXA?tUVh$$Mi&2KxX4@e7DEw
zkxP-onW=sy&5Lmg5BvO+WF$v_*Gv$$>~CX13XZNO*A1pxOd?sN5f3p*>3#!zR|S6R
zaP8wFYpbfAN){4pN$(+CG}wyQ<%3;Vus-re2<Bobb5e@CB86F?yU6Dbp0(wu#(iRJ
zcNOhk0O*uvwXdd36j&Y*bc=@VWCZu6%>mjy)N!LJgNv*21vL}W+?GK5&e6r$@5kY=
zRq#wgq&jx8D<#hR)hY+|7>xMK%^yisKu8#{2CwiruG@}pHV}(LlU$y;aJw=TVSC;c
zXy<n2oyNsgU3}bAT!m3Yt5@y!1dHqaw;c14%2GeGsG4iT;2i(|{;`F(j4nH~`8fKV
z+5|SX%sJTABhGG=DJw%UD{X<TY(>Je1yt7tZmyPWrPj?QE^tLnLUNz}f(-eMKp}vu
zdKcSvM$;ydK}CvF26?|QA{RK$QooZsy|fwI+H2Ne`8tgiB_GYYbbn&OS1{da9$##D
zje$dJUW*v8JF?4@PN}++Ou=<(6i#HSg~~?z6@dY~c9A3ZBSZ@81t1WTUZ;2o(wN@u
z7_tR*#g`tVx~Nfq_T$xx4!Uj{l3C&GHqp|~>180<3Cq4tP|zC!bPGT6EJ+{u3@lV-
z=UVNUoO22xnIRv)>U7F=TmMV;zTUPMr>v->*4TvFbG41l*LZ73t^GbwB!8R`<B>kp
z!~CN|57+~@>?08*bI}+{=%6YfgZDjb942{okcciaJE9HsKz?K10+vNwpdY~m5MYc6
z`|A_Wwk*}VEoZ<$Zw6}at^v*GiTH+#qruqTP~fq-@>Z`ernckS3l%<!3=<f@ajq|r
zj1%*&$-1YJc%>IMBlye0gTD<}SL@j9wrMf*VI83`qeHJH6&1oIuB;m}h>E+P^RSi3
zM`2NQR)DHI+m6_A%K9<*larSI@g$v|0$K5pBC{|2?&({&E2-GR1CeJCq3|)0Je{;W
z%tkkbW`kCzUx!Rg+V_C|u&J6hrQ{;aCMa+1&hcmN;OOHc4rp%9EW5mF;Hb;*iA@Wo
zIUtY-P+pO<JkG@wMKuAXAVO1&t-3|j!-&kp>;hZi9~e4~s0QmT0CZ|tf8%!6<FtI{
zL?Y-gwNZvn65PpaaT?85?I!i^NWZ2{-F!=0t}EZ!e|Hnd|9^Rd*3{X+S%r&Z17+W*
zT~z>a4n?<#J5$f{yTT9H!F_DA%!9MJCsCz=qjo0n6?08|T#6BS(YBjYUk7hLDR$l|
z6QOge>lw|%t=c=X1xh|1&YDMP5c?{Q<q#0k?>@Q?Ikhc_BJ#uFEqD`1q*Cbs;I6z>
zrGU%s%lkqe-dxBq+SRIA9;=l4|DM;*h{%XEzqSoH?BJV^Ch6XMU%q1}nN`0p0r(k3
zuIg^eHpk)!XrGtNF9_>?&<){MefIfcD}{oCoXTi^{^iBwfF(oPa{hg)5IHjvDgE~u
ztq1hX$<>wlP9Zgyn}=uMAK~($5BlJ_ZY|BONdLvw#WW`gXFaU8WkBU`b&e7ipi!h;
zj8VkbQn8oRRUH0c9wxvfgthG=9)L=)Npf%)ierfAdV%Rg-DAlDV)1o0bnh%+Ga-~*
zJN@smpn!8sg4508%!6Eq6^>UYFFPQ-)4^wadf*dN?J%b}Jurs=jQ?Gm=nTO&dSe>(
z9399X@!Al7Jk0xsGGafT)G9ytI%^lBeBD$;W>fpZlIr+5R}&vd(Q>6C3Dhmm#!*u1
zQijv$ghI!*QbUcWP8YQTK6y<?cpgXSYCPi9=LIwQs7*hvjj)@{{WejB1vLagDzVB%
z&<)5J5ftFpa+>e!Oac*BNQUgB0aPeKUWBbrs?!|H7QckIV$Xg5O+9Pv>du?1Fjw#n
zxa8?E4V<y$4J?%!=-^JN58=<?Ua5{?6K(@lC$<&p8}|Efh+h}+)$`2yad$dL{ioZ=
zPx7gm!jNnvx|*PYn4|>D_{GWSebTve7)uOyQ=q^vtyLX+)KKGhuFhvRc3AvdXO#we
znrqLs|ANpKH*Vu8jWxGe?6);(40xVd0g*Ypeh-#T1Ih}SnRkhYN@I+rn}cRusl#&g
zE;64_ZyJF<`3!B2?t(JFADGU2&WS?+NB!&Rzpd`T^?kQ_K-RJxYaKK>y5#H?yBmT%
z<4|nsQoGwM^7rYUyYVOipX(#f)57OH<m=~{V06g(Yma#C#PTML0Y%~9H0g?s7)zZ;
zeh-SyikNFt0y(Rsx~A5l^ccwr<z^w%xYY+$aql{7HI-pYPoKth97TOUK8cJ~L0%Fg
z<zNT**HCBDj5PSnekv(n883YwYj<^ykfN<g;Kow@K+rKI`E`c*kbR}H9=l7s$ym%3
z<+X68-=9>y25%`sw9x~AL6Vo&7Tw`Wn3qpfIwkNeQcx}S*^(sHaC9#jV4~_OWF9tB
zu&?q^6J3(YcA?3;lFk&W+*kcrbN2M&VY}Fxrc~%SFdJI)eBXuIrgM2b-&e2wi%2G}
zBCFwHp4rGZ+){%1OYS){ljtKFpsXNv7?RmIFhCzif7^iI_UoJ?36QAw@vPZ(LN`At
z1|xAJ_?;ydg7qlV2qrE3Qd-t9K6hY+dakgBzy6dW?I5{TR%q+HN3{iELd*o3AuRTA
zQ=o=#<^Dap!CoKp=AH0r&>BJ*YgYAqR>&DW09K~=>6i4WxT0A5?i;@5Nn^wksTlUD
zO`e9|$Q(EU`6*9=+bqzj0sKT51nZ@E$ka<ZZ%$9w5Oq1+HX)ibKA$sgEhmy~v@|=h
zF6v48V|)m3Umu<%NUlZ0Exz2m<j-kLuw;88(0jI_3E%;O!%!j;TfE7Tyc(4e^v@;4
z_A|WJk(kW(Q{+^?ejSc7R4gVz;KTzsn%GZV)2vck2gIZS3_1+b+L39hxF8(3cBhIH
znoi}@=8X~781uO9*d5Dz*5!cFRq>;bn-_D#hnpS&;zBjB17{J<gP^bnIFhteB$Yy#
z?boKRE6}a@_s#lw>PY=B+u>stB$~}bfuV(t?(uB<y<ELWq9k!YebJC3m;TC0jpsg4
zkeC)ANGx*KGdiQ2tXuN0L8yew9+|1)EYBb1@ye@_(3VgpIP6s#;|43+#oqGij}xVo
zC8mO`CUjO6ScV7G`4U}K)(#U6>D48EdQ`*iM^F`NzD2kGk;DmxNaZ)!A=tvM$cP_-
zwzA3P5&mEc4D+9??vdQYzk5SBuo`+Tvyc7iSJ4N%i(?{*fJC1eZQT-Ptct2JNYXr9
z#-QSK#L9DM%XS7ms)j%I#?IC=nG*~#o-etbcHbtNQj%q$I4!?nNC<+q-I8bz(4=UL
z&ryZ0z0{R-Mrh;>B@=q}he7@zku<MY3=SFF(R}f)I}H3D&c!O*!|>=_9A%M3)C+zB
zA0V;ok%l*X3$(xfObcXnOaAWfeW(=LzDfy+6*{v5kquy2G!BZ1_MY#ThT@{pkI&SG
zUvQIMvM>uJ<j7avhOS9`OIOw-r8pjGbJ(|~rbsPIh2ZC1Vd*=#HHzJki8)JGy-cPB
zBEOGq?n{DBs+Kr`?)&uz*5b9}O&C1-**d-Cz03uUC86;78w>G#u@CFqw*lO(QF??|
zoeO(LGj4n382`BZ9dzXPQQW#(To}P?QzO!q%kdL_H-uE%*-_9YMInk|&;Gr4JJ=}i
zQv16|%%Yz&6r3uYooXB5P2x+lpIlTzK_>Ij#lytxFv$(Ubr2^;w|nR@waR9nJIz_X
z+YO4o9(@Kv=rhR<TkO$nF#aGs{Ie}`)A3%qnBB4OoXcc6ABxW!)P5a;1F}LpKhV5d
zWEbdN>RQBi5b8Xt4QWv|Q)8w*d^wiXj?a%3Yaw~pyQB<Me|+P>P-7z;XLR55^|N$3
zDfC-P7yuK-Q#Tp4ao@^e@EY0O>=y%Lnr0;PF3NQnq^MxmKJ6j4A?N~tW)SQC$v|f1
zVree*TU#g8{K1;OC;R#k;<+7?3f}OIg*io<;BTm>nPu0Ym~pm-WaEHcCjNmBsP|_&
z=b*Z8p+>?z|K&6|kx2cjJk}znpG~3AEgC~A_LhcTt}b2snQ%UA@%}?K%qAbKF0==|
zKA>=8$u|23<`u0{tPYr4AnUT%e4981E3kq*F7w#5HVo<*mhCg6n0~f)Et?vsAp$uE
zOU{McS1o6C%}fJHKqsPyhs>}EFBVvja4I^IgIEOv-99l(gCjx3<nmRmU`F7U6#ntU
zTR9^Cbq?Th5~zKNF(_5O!aqepUh|xFj5}SupII?3LuJp{z<aTwWD+S$)oB;5P~)pC
z&qM-X_G=#_NMdAib^|cAMm>>vNTe`69jAQ}Z}o9{KgSrgrSH-R_nFm9w)tPCQJ%3g
zNaeehyoVI&W}CP}v(Gk8xQ=WqL^rlsKQwM9q<a-1y@6TrnO2po5sg*``ZU~mb0-<b
zQF6tPLdIY?vE-qRHm^Pe`thSg2G`9(L_R+o)y@MV(ANX3KTHk-K$CCDF2WjIkW{#q
z7J5rS(gXGcTXi;1FLiB%S|ita1Sjpa?f2fM@!%>!>x4ydwecWA11DOiF1q3_rdJ{H
z_*Y1%J-8PCtRbyNNLr*Wh@&84o1-^!&#~O(@H{_@)dHM(XavnyNm&<rvfi(Y<5NvM
zR<<#E|5O_*{;F^DbH{!YVs<hW(zzVR_kL5N{>$-Ry51FXLRLJy4qv^mt)su2@%>RQ
zqm9$=u9PTCtGel3oYrsi9FvOt+YrH|uF2;m^CtOUx$dPFeGIborS=;r3aqJcT(~oM
zMRI_8G^W-=Ik&i0zJUnSQ6sPuqh|==d6nNf=Dy_QlXf~4C9+Y#=|-MlSHk2a*6BK}
zN&Q5N=uPBA3gQ-Cd(;|!j-BZOHbMo5J2sr->1HHb0T<+wcG<dL@IY;|SMYIR$G5J_
zn^YE0?;66ongZ`k$MqH3`)-q}=v4(iW7szwAoF1LEPV0J$NIdY>vWD<kab0sJo@jI
zdRqjWQ8PPi%rE@-tYq9J+W|#PKG{p=O1Sm!K|N9psXRBAR%U|thp|{*5b3zgF2l!v
zi6D1JX7{jxD;JVDZ~A%xdkq3U(TNbb$ox8Cx5=OatAC>^6!5g@e9kAY&*#1Ctk7BX
zDxatFF%F=_nqwMYlEC3P6I1%KSQ)zAYgMOKxE?@=v;!d6xb?~tt>ArilXz0~ljgFe
zx&@SK39ad%?ce<H)sUr3#)xcguARnmlh4s2q!+ZNtY;8Zi<f@!BXd|pwOR@sOf%;h
zSjhZV+6l>8Acu^dkh8T$jNmQ+LNnh1`EElGQkV>h+r_NcC;ALSG>Ebzi%cDB^=D#h
z$|_<`Cybb6Q=;-mI@_(I8UQzpqj6y<J@`Nj)`zhOanKjnIgf3lhiW8ucmTEEj;PDM
zJN0}0ez~Vpv0K+;yL_jLFJitab@E21tzx;FX|%b2MAd^A&T8R%*Z|-NHYNv&S`n#V
zk<4w;MRfRhEyE<7S@*P=4WjKKXN+KI@2+eRuYTmY+#Zxp83}oH=pGqJ&%~gvfG=&6
z#kk{h^C~1j!KlBMU!3)SxoL(s;V<0*WhV$rrE)dW5a9{cw`|*i92^|-V>3&d*WwzC
zT}+1;uS|RPa<CJg@l8nJvTX#&k~tsxU?m&4g*?wnUonI(UK?giMf(q#0)RK9tY1Gt
zd>w8Xq)Ru(0&k_M!#!2lXVA0nP_iT;O(*g&(A%wd7mXo75{u9obfl04?K0G=WEl`q
zn!H~L%GmunQqgt2u79?{An&^woIlM(!Z5(>E0pFz*~|QS^zxkTC;T02anVH>KJ2qx
zIkxbM5v?=5-f1<!&=Z~VvyZ^<Ck!M)JcH?+O#quslnDaM|HqgRY9O*B%K!uI0E9Gt
z`SCU6QQ>StKKDn-m?hVC!$>gMMu<|lTnj#beq9t@mCAixR;_jLjZP#0{OX8jl@3=1
zP71Yj-A*9M34q&4aI^f{#Yu^P;2n^5qY6tTZ!-d|kL^)p6EgHZ_+<@!&!&nRNG>N9
zhn%Y^S8N3HA5h@L&>9=6ADrP7gPd4RXS3+f<sJ3XTwU7AxoX7pDz)20)1eE`eFLLZ
z30A$1rB<|)*Li_4BuOcMuTrX}=c>fj$`~rn#yBH~WHuU(%UeZr_FIYbP(2M3Xd5+$
z*3seA?`v4x$45g|umlufJj3;;Je<S|ek}VQNmcSQs+mtg0Po~M*8~~x(u|9({6P22
zdr`aSS42<RRtY#InMRm>UA#b*M#X3=Fa2ycMxFvJ$u&3Ozb=zX4<MvWyP`?gw=}28
z`Xb6)s6+>-?cL?d14Eum?~{4iy!H^LM-`pVH@%!z0n=cmnj*xbME-{N5o!z*^2DM#
z7d*_fA{Ol+AeraWzpSnIeOZtxeOMVg<-)!g;F51Vdt`9@J=D4c2pU@+DMq-M-mb*&
zlKfZ8jJZpVmN(A7s1@F(w&;B+imaVvgP(H{VQ7p8{gS~`sKmavzad~Hf8<_Cml(9M
zqiiq<rJw|15=S7$?v)L8ADU8l84LdshMFOBGPvF>TWx(EMzJY7D}5-_Nq0lLM%i1+
zZj8FGxF!EeR3n?ku$P;ZUYh)^sg3$570Ue-&UXbZYiGYrc*lZm{iF+BA$05@u8Xvi
zbEgk;UIi&MX{KwV^>ZGWnvFy;xk_mf(z!(-tWF{+T~t(fK<L$dZ@{!cg#m9q5K^W<
z@9nL42$bX;g+M;wyM372s^>!;K=>Dt>-@_W8$c%egAlg!JM<w@THH}4fy1rK<o)R*
z*@8SmEf@ky*wEib*tU<fGr4iWvtxn!wO?`617n8EBt+-^jKp*}W2LoM+2CYSSjq&z
zA*#El23O;%U7wZh{OlbtkcvLRBP(RJNMpNMc1mqX`UMXCH6j1Rncd%z<)%k8n5{x5
zFmSh%E-Cup&JEN*xJF~V7GezFI!yvcSP8dv<BCjbDj)wAU`B(}PQs&uw@Zb2+qZPo
z#7B(5XHJ*VIB+04H-Ja`Z?JoM90{r9eLXl3y%?R56cD=Kp5&5J)8GY!t1>RPHbY$n
zASvso3GxELPZH+dJ+uPwtCb(fR$aFoZnft#VDQ}*(!$$%6A(E**JujTpUUkcA<NOg
zqNM?}Qru1n%-^w23;^ofRwEcZEh|GKVp~VtOZl^V0(&j(`6?PS4IqKXA*eM1S!|GC
zr7>Aga5?_J4A-Sf^3o>6lWn@RtUSFfYM7oZ_mZ7&rnhp6Hpzy=idABfhc)Er&&&b~
zqQEPqj7ju|<^Dmpl{KLgfj}fCyC`~>;suf9cQT7W;<M9Ic32o)?IV{F8DO7*E73`(
z?@k5WiL_JBd!1Sbb4EoCpm@)5anU}8^JC!O8d)XryP-Hfi6~@{U>~-i9g%!PFW#e;
zDB|b93Rsf_{F!=UH1rd+9zXEWdhPZ$1GTXEV@o<qtFT_+eNePk6mn<60K#wE-cT;@
zgV6KEdno*#%by<=@0v{=uIS1^DgV-IC0EJ;UL){xMSI9<Ko6&N&AGh7=i<UOR*VhI
zO0z}IiAY=<jNvt?$V<h+se3-Lx((F&X+~UdQa0Wy@^hz54-Bu1xiz{oL<elW@dV$!
zYjwoW9+jC4hHcHg<Oe8!a%hj(5Y#$%LBJ=qg6GpIE<m&u31Ofu;A{I&Y%}tFcl^A8
z3-ym$lD>Y}7ll9XBiVDnCo|1jA|#18YT<*6?q6m3{2_j<WB_C~S{*m*+T6>kDT0wy
zzKA9&C63zmOVpm4$4s0C(INxN041DS-o@1#DocORxtFQ5Ha*e^jw>;O7%O5I7>1&8
zt~=BKu*;a$$ACOZKgpEBx@+N&bJMsqswaCVco>S;Ga4`o5UQKgKu1FxDN&mjweya5
zgF-hBWjgyq45`N0@{H$THX?0|4gN|hvP_pP03$!<ziz+!HZOT`#WPkTl8S#V5spA9
zdrm>GD^3{XQNL-jwLwh#2i~r&0<h5?DLNU>;xKM9!pE;BRPs5W3oZo;XD^7^X<L;;
zB(cywUc1SET(Ye^1*c#DHPa?j=To!lKyD4zy~|D>aC6H`IYaL}7?B!UU&s=GYqi6I
z5aS_P@BN5+8P<qw!Uf(0H_BqrEjoDEu9+ddy8oGb(yL)KD0d8<<NyE<2mz=H0F?-T
zm+64o+PC`QQ_8rTe0Z^KTGtx>Wk|pcno4o7sxdMDgFYd;f*Si2W(;F_27-)#E}N3i
zDxkqIeFfI8MqL4dJK}zdr~%g%G?J?saCL6=b;Z7>*ycc=?MZl}Tx9{estld91B5&8
zJ0Q7G?#SagQC9Hocxy++4sCbCmEPXM_Qgs(8RLx%q}AV1Op|)X+cG}dJq?FAFrYk}
zg7AR&XxnKj^Q82#?l|UYk|0t<f%P}>HEVPoUhJ!_!v3f%Hr>W*b+b)T`gp#*^=u;b
zWd@5MeBRI_?hy#q6K+a>6Ck!Uay}2|I8pDVj8m`o(RBdfY&l0TS|cU@K{(|ny3e^D
z59__mQLTt)@*!HnLltuSmAd4TMf??ZrJ#$Yyr5_QY>z9firDWndt_m25WkkjybAoj
z?~Kq(UMk1%#Nif}w}QaQ%x(c95Il_8bj;ion15El3z9?}@woj&nLQOo=wD}9G0WP)
zsj|C~RD#@rU!v}Sb<lDP8>*#?cp^~B-1f-q-gb=ujg+>({%LrHf-7bZfuxG3q%LK|
zvbjj!LB%}a6J4jLE+VBoVZ=USuA!#%Hvxu?6iJmSrEhBQu#=Qw7pC6={w*a@{TD?s
zT{Z&b<u!ta1}K!d7u-;GC-?Vt$gTGa`@8Jt1T5S%jgq`5-|y|?XFEXm4CbrLmu5Mk
z!Fl2A={`TT8ETMhI`a}Hg=U>iHd-4G^PHi7<nm@0Mf?QSe}_WW(SVNaef9wnsCuKb
zvuyuXz<nwbw+Hj(7hwZDztgcaxP{E<2^{H@*V)u%$9$<Y{3~DlnXHxnR>)wj;6iL*
zgFH_qvb_5TtZ%B|bxc#-ZS{Ek!Qz=w9kJo@tSCC_zA?6M7LUQ<b1k;jH^BnyL+PJ{
z$NA5U>tEOMA9aEXw33YSk^--cc;Ym+nH6;}ZYw8+a7l%pcN;XNUt5@w`%tf4kUBaa
zDW7VR2xe#|v~ElO9_7Fkt)8RSW<Pi}uD!(!4azz{N84QsA&Fsvkdmz>=(xdp@4lWL
z=NLVSxImkTLFJ;y&Tr!tEJ{a2mpqwRBU9T%MMF|&QsIe&PD}I&Wrr}CiMJ>TaB*Sk
zji<w2ti{7fXCisR)M^~+r+sYMU*Y0xeUts^hr`*>N>vD~?}h7NWJ@*d-v84t+Dd)m
z`|QcSWP*3KM$VVdc`+TJ1S&5`B50YOWjRHo1PQzC@H}YrjRVTM2yz?lXy}Mu8|CZ1
z(}}GSbiyI@uFg=!@=^VI(C*o{<Xk<>FIqd3HUpL!6i^^-N{V+RGxi9fPL!l2Y@oY<
z&^Q+`s1}lt;RsXihbqa_Iib|>u(6wUJZNml$8epHaG`VAX0Z^gumfwhQACsuBD!rq
z;E)?gTMcv`OmojCtaEYMMGu)RKOS&joA!R@&}9vJj_Y{?U=Q6arW*ancOe={YD|ZI
z6CYJPF<xASV3$k1A8yZdOI~8~uC28KOQ{5yU%d}c2C>AWXbfjs0P~f?pRCRL(xc&#
z^txhE#)*KYkZfmtDK4+}gXS3*R6D0ahUWU9CO$=>A7<xbESrdQG3nGE=3@37E_?Hs
z2&rn`-Di=)Ub~vK-AX#R&hFrNpL(zYBxTtXdAUL38h)CWD!f%0*B~nqO@YG-W5+(r
z;sz?yW@IzD2Z7c|t+GrQSD9O_V!uN=Q>9(!p`zreE!UKKq0>l#bdv=L@R##F&c8jM
zc%8*{Z`#(m(BI^O)|T+I3cxAyBL!o<cG{dDe_b>xr6yJBQyv$@sN_?48x<BX7OoA3
zBPs5%21|BCKJhRtl&AAL>Gs>yyv^l0h<mWi;zb}CQ~x+K#|`wK!jz~NZLYY%)ReSG
zHzAp<XW}$p(-@YdC?vC2GL+P@>lKaduic7o6)2HT3^E;Kv1}!4tkkj7o*lOb;mY1Q
zTR1!_#_7WMwT#zS)2C`8^C@p0qk@2w*T8I9an66S;^P7|IGD+u!pDs*eyk+Tr|j<7
zI-sO4^R^AKf|wIj@0P?lz3?Gbc^4&?FG^{+s^L$%l#;H{@4~i4Ck@>AaB%8=e_`;*
zkO#{?nEUB@fLiL^XoxR?V@mmA3WEdT>gfmB<>!<#-ujof!?zKj>bw!XQNk2rz;I#4
zD?jay2O*kq5G3)>B%fO{h*R{SidC(j;?)VmNL2j8ZtF*M#0tW%HJ={yP;3YEIpC@m
z{)9;of(l)S&iC&>XT+>I!Vco>`g~b(U3`3^;3EMB{{wnHB_LYu(y{B_`qpTeQcAbD
z^wBf2O2t#L3n}7_{SSpxXAhueVaB@Tasn@HL(K}bnuD3IwUr*$WDH0WYczNU%QKR8
zY6q&WB{DK4yugKdS5!$ZnjA96ngWH3r|mfJ6YmKv(Jz|!z^b$+_@=;o1rgYKP;ye#
z=OR#sZZ{6sO9nCthfje0+V+e&ZiBCt3vmI(nqN8kzz?dhN`?zi`^kT8LmjEzL#*y;
zW9ZPO&xfH5-u8!_t&FVK`(-fvPfecGSFQk@m;_Rcyz4U~wC9l6E8B$5A=9WkBq(m{
zo7l1Gg@#%f(P(shPMLW79V1o%rO)_rda(Ch`n$*}JBYxp+^RK?)x14m7S7XhlFPS&
zI|qgW)iU81ZS2t(C)031V|0V4`rePl?NF`R)MCj8*EtKlnh>%E;Xm13B9OK=#CQd~
z83|ZDfD%bGnkXeM8b+OeJ%$iih2$u!V7C74e`(dT5+Qk5uV14My1MY4W!wd<YdlA9
zb(6)3OYk~Sz4rs%S&9njaZ#Qa)k=8aYW9Ryp2`rMk;E9?`r`oJ<8u}Mi@A}TwqwY;
zl8ZmZ$5}LIAxsyxq0A7+B;B7(4IVUN`m;d;6k(s~<V#1{{c~K3Q~9Rf+J8_<;hqS+
zR)D+pgQ{Egkdkusd`G626FeXtXVB<{6~R2R=7oIz!j-`Pzvv6LggVf(h0vu(3rvQ#
z=QJNUVnUGskT#j;!FLIvWz|eP2F$M%lQfr!n&HjaeOG_^;C`3VjzYqxvlfd>j=A`B
z(`aheLQJ6ieaN*q#ggAMAP1RB8tkt@U(hx5ITyKxXNNP&EVQ89hrxDzn(@}(i>?7L
z#~sYYP!>X$WF^P_4bT~fm<`q|dBSlUA4Q7x+C3;UrtLD?UM#dVv4r@aHIUP(OgvnG
zyKD9ni#0}4w;x>>Gw~53vX>_!3g~S6UB#PM0*5SGS=DCajfj}c8T0eXHpxB)lB8H<
z3$cfMA#E8f`+BkO&ZZUbqgH7vV=)o$dD5mL9K?-eFkHV(xm-CHdtBq8*Weq6jv3lr
z)WwM2V&&4<35_5>mQQct^X`R3)vv;^g8z=S|J_XW*j3Xy=<RoCd3UxEc`bujpjCxW
zkaQ@It#J*lelA{6m+^L1&MPqqB!`E!am|u|S<QKSVD?3i!Vu4y(3_j&wd89t-qwUr
zLB&`1$!~FWt|Kw6K+P~1<~zNcNB8le2^Pk`o5d_NfX$Xs3jy4eM$__JsOW7KCLheD
zC~ppU27|`0NT&whm>B)A{rl7BDO@OEhOPScPWjjlu1~lk{)Fi}qAH@L=oP6+yE|6a
zz-JX}?YJWnf@3wKvkZkqsG-BJon1!b0&c5svT#darF8#j^KLmV@HFU@K5K)<{|pH;
zr?f<~VcLSZsdSpz_Bi>%g?&KiWz{4I&c!q)i?#7+F?sXuqC6%8x}zVwm<Gm6Q3v;q
z9fGMHQ7YYL6>qK4G&Vjj!XKqlMbecppAgqL+j;YUa+uQWPx+JcQdl2m@R}|807hnB
z#&TW9WV=#MnV2`y5vC<9@Vw)gBCR;PZ+Vh#kDFt)6Mr;C_(gZjTb%t?h=^*~Ya)H2
z#!~z(>6$>1eyScDmylK=`t1KabG+g>%{fhd=@$Mej?Iz0{K;R_Yt&8jDmuq>iGd!T
z{nAaq^4Nye?HhAP7;u|*@2f1BWi<fy(J!)D_&umC6eR(V4Jl~$B(B$A3z{f8R<kB?
zJl=6f9dUQ=s_ROI(phAA-qrRmoDvhm8DC=#JmJwBE$|oYlBZmo)=p3sswC(o!nsj3
zIAbBbn+R4(><vM#l=Rz`+?6WbS-&%bUr1WFw3OOT$RSzynZy82MNZ8y8bE>fwz;P^
zeOm$f4W@})d=T332I+142X^s3%k6m+UT&vA@KbJO0z$<@e@G6Ud&SM#$v$`O0fVKa
zgi>d->~1$CvST^8qY8BL-LKGV*sg@;O@T^K<GYg{b-*kfBwV#zdO#k^0gxl-XYH)x
zVaf80;H)oZ=eE_;ggA4j1VN;MTwbWmT@D~Rsi*4!`4doNvhv=Wz5bv!oK%GMO+WSm
z^QF8<>f=09wmAj<hajksy<W0P@XWk5!s>+LyW-W|DIZtT!mXBhQBT2G0H~NXg%;>h
zx=Hq{;+FwFEhv@)K6z+X<Trj9H#ko>B+cZ8t^5#I;_}e*K6zN|um-K<Pu)#LYlcq|
zeF1LfeEdUOi~J^`P=&TkM-+hj6Gyuop)sQ*GL`hooZ;hxd{8w|>(Nby5LIu;D?VjO
zf8m$nu-mfz(CJ5eoqGH)A+BwU@j_t?X?iZ%qZ98BbmY9d>&GL1a@57rjae5AQ1X&d
z|CS1xulEy)h~aF=Z6UTVVt*7$ZcQG)=)Ki7auM#xhCw!kwI_q29u}VM0I6?vq^8~x
zIw$nQPf%jSS`psf2|QhkaZz37hTb)4CHc}cDd(<zJt#5yg8&Tt)8TQUI3=iOXy^?7
zy51Z}U!zi)`>$hp)E*#q`v8VKY1{?lp|wgJIy_c#N7t$OLPCkYWei9~C$7YK6S1AC
zcbhzYnJDXKHw-MJN!V>%4|r}i{m5Cq(bE%iDD3HkyLQGJu^D<LoJ)Yo_8jnxYQ}CP
ziHa{F4Qi@-TV)LtsK%G#ZWf-GE5GQ;I9vaUF%67X?2#v}i!=3EmB6!#0BCTtw4aK3
z+u8_8Zl~$7UFl(INB(zYd@Qp8Z`2+@AIKSIW;t&zu-CEK9Q!Z|-coS&e5-e1&L~c*
z%&nQoAZklIttzs2(wFwdc7+~a{D){8L)Q}p%m%228X2--u?$MO4%T{ZAOHZdGa=w8
z0)RnZpx1AQOKgm6gGyXzdZ^zyHAWZ;bY&cV@h*+IW_^reA<%ZpK_j8kLP&VK9|B{f
z7RZo&J*G;Kw0SG^`8y#Fno;`KiQW}>#}FzjSCy^U+-o7Lm>x5goFL+s(-h%;Ln~qy
zx7=4{>Eo|K2d_uH6D9G95#lJO0dO;B5})<z!Pz^=D>Ot!r?~M5--X#!X;S0)%`q|S
zCz-Ay;hR@f6p`>OMUy6p9qncdOAud8`^jtH>wdo|KG#&}2H{ycLo+It#S(ol_GByK
z_74Ea-hYB)b{P$WtA`x{-V=E@0CTHdSm2Oi*oa@Y#F{O4e^!-va%`>9Wc-*?Sl8_8
zqX<>t88_AV<h2&zo#62B*Tow!PfZuxbD!!?-GwG=i2zdgg1BKN>Qkvkkwd==_Bp~C
zj*w<O?Q7HnId*21C@HU%K}kFq!)!fWCMhgC%))!oRmjX*jec5&V|j-R<LN}nnw|qb
zmEOCIlzzU~JKyh@tYiQ3$QIn~<lQ9wEL<PvUt00R<x6Wth6xiS(LY`<s&rd#pEh&{
z6&f&E&2?;;5)BcGkS`(33|(3Nm7Sj(GStMf+O{KnC_^l$%?eGAFS{rZkno&(HO}6g
zWYt84%RknX4}p~yUuLwsTDiVgqJ!pjGP%@9g}dVyODc0E&u#vZG|zM$BIwWK7U{Zq
z79Iq3R_#iChoBGnspU7i)3p$4+i<(wgZ~uSO4;}Pa^_|1aX@E`dj+qNn}rAp?Wyi?
z67dN^)HCHc$c7%bSF#jJa*+YuOWxe{njka4(oJAk?7T}#%6hQVis7HIP1#ZBGluR$
zUa}>Mtc{^0q`TEU@Fpw(YTkA?qA=uqw|p%b(|=frhLfY;4j5B@6Mh~l7}W!s$3i$J
zY8ro31@Aw4q+PP{2Q9gXUhZb~u3|{94*in!D|rTp5b8`OZhRFxlHP{kHsIQ^Fb~L=
zk@Moa``x}uE?kotj4~6DKw80s26H(6b@9-AXg9b}mY!Bu&)QhFa)F;E>C3x43;!W9
zSxi*=tvPU3Y)-;@LCmxE0;_l2$|$kP+|TqLoZ-~y&ZZ(z2`IYq7z*RdJhkJL`xL^i
zV}#x#NvwZHl<P<^K=>=b%R*|C=>;aI>yJ8w2;&*ci_G^Z$rqvSF=T`6E<pSH>kwDb
zv?t^73E3+cZ`jV@^(1KQE>HX{J7mKYJF1)NmZY6)pX(lyG!2^Q4Eg12yk@R@g=>@#
z%x>U_Dp0iv#V>9V(qe^2PE(rwihzlqdaS-eU9SRF)@QOUU|oKOfr~!;`6jFUCO*38
z_aMygSxxh}dbqfdtQ*CZ5A0|+>b*6s%MDU~<Z%}+deEc43V&l}jfR_K-7!lWP36lY
zBgzYylIs87$67GU<~|+Qo;QG`rXfAI#lgGH5i6;xY3s}HK`r?EYFfEClo3{iPU6c2
z;<e~VDMmpVl%EmVHsoATTmI@=EYSwvs^%$EoL-xN0Xs=!-U{T=yMX^XB=kGNS7=dg
zLlK52tk_9P0=IQ}F!F5DUx+zIBz8-giv^vO;D?ImGv=R*eKG2MV0&H4$?H>;qE-ps
z8bgTC7_}aOcU@U~8UNwtQCg86Jl*u6J}d^)mkpDAK|DJOcDT`Yz!4Nzom}j1-d%4}
zzGf;iTfDJY@FA)4VS+l3rR6vxAPmJ|xhLwF4O%+c;J$3T&@odEa6TfKn)#6Jo)3t4
zYaUm}0;#MSV5t?DRz|QbG}FK|eLkX2{tKh>CE=Z@WX>ew{<C;-{RGDKL92PLn+59{
z2iB;I?ZBA@OzDyuTPBJ<KcIv$p~cd^>R<RKpO>W8;Gtv-6xFyF$=b?6ELQd{9cTP1
z-9WpHWbd9>`!U3iG_)`%QV*5C3f;mW_wCe!Ml7f?kF`;KSCkJB{V3-jclHxx!{%|>
zwd`-!H^m_g*P2&qcgP{!@x6Np-H^zsTAGSPXjTa)r-D@fgXCmh*5w?7?*3x?foC+u
zZf<2opO6OUJbIgRF|-o_NVYsj@E*)rI||nIusN;%(ng<`4?2wqO-Tc*Tlu!fa~pM}
z%bJPD(Mvn!FT*(iMZ)(3nxD8W9^BB;tx%P)s?L5eBs#PveH7lt4dVH494nHO2}}cB
zqu^Cv+}^BXQWW+ch<5w7D^qAbxS^M)LeD_+?_qgCl$O*np<Ph7J%ZWP8gEbx6t8rg
z3O+O+CIc{(LN_jA8LlJ_A}fyrQFx(Q76nCNQf4PAxrXlPSNBKC{R93WSw2<GDji??
zZ4r-gbPC)+HU$u{l#OV~U1&mAn`uP)VVB-7%>%ny`O<y$TdzDPdIeNkH36p`$twJv
z(ll>J?<CLlLEKBzfi?}1X5ko!Dc#qf&Q~YfFsWH<DWp!acj#2*#11$EOg!Fg5D#7m
z?%bjRednlAazA$fy$nC{h{I4qQC9#F0ZWNmv>@PT2DF?Mmd?uv>Z!JO<P+eJ5C#Kb
zU%#vEk3SDtsx}0<%ybzP2YKPE@HpHw7oOB*P>i#VwU;cReB#=0MNe1O#$<F4=U!8s
znVmx~<p<DDwN}VwJHu`lGYdN>`|FNgIbnw#@l_-zsJSL9p$sarp4MO5j-n>$sqs`5
zT*nA33qNFwkh$1df0HS($nqCWhETIfK_>YBpTVBd+dvRhUX>2jwgt561J2nF*_C&r
zym5VLZuO$$+_S0i!LQBK!q@3=K3UxPTl0k6FZ3<@25u!68t6=DbgF1GV<f4LuNBn;
z{+DLP@fPxOM$e6?HG*W<spozLPOrbl*N`Ze_^4JWf)X(nub<0|4!ARg>k3azg{v*C
ze||LPTw@3pLYj35ncaB=&{3{MG2Np7DClhSqpOu=b4x4D(m@Pe^vR;(j&7L9<d2pj
z^|_zi{YNs)k$v6e_8}sv^%fIveQ5daxjI-c3ZEOvZGzbQ^(wpl<ak?$ct`gasc0|i
zb|Hxz7J0N_HE<`2C6f)b=CB-?Ii)*IQVFafgUHnO915LhvLkq(ERR-S(Vll2((CSk
z_-ZSv!+mxJL5r$H&SMQET_3)rSA&hMTH8*upfu?MlJgs*BZl%5ioVCww4o-Io?mOp
zf`E4d+htFGqQqULr&uP+HKA@>QsS8ybIkj#UBk$>pKrY1_%YSmoInPzo}-b$L?+~H
zxyqARAIh5B`tgg+tlZd22uYi{Vd1~5MFP3$IA0;Ahv)W~07Fb6lx=~eARFN3By%Bx
zXP~_@yw4kW>6=_{-6V4&)AhP>A-g8T1pZcuGe%2sDHE<8*i?*|Q=)}U{aHd=s41Xh
zk#LnX>M4I8lu|CYtsRlUYz6RhVE(n6Mql*d2fMG2emPqBxYPLZg~IT*RLc=hZb)nO
z`Fo8`m#Yr8z?dau9pO;VV;k})!CUmPUD<e=FW`ZYyM#X3yIY;nLi7IfR;?O>OK1n!
z8~1xR6Nu|-_>1b#W+6~VYm*Q`GK_MJ-uaNdkx1|_Ng0o=-e<_a_{Ou6y8i&6D`Ehx
z^S%K=4PG7U)VTqT;K=GSx`0KcV#r*mE2IHFgh|!?liM}GO-X;kD%+L+*JLiPa3*#)
zEqac%+w8&n){_pAd{zvvBnV&ge%9S@b;J#CK#`uNj~sR%`xh+tO98&JyM>6fa1Ie3
zn&tQi_4jHH)XSrWwI_w8wCyR6=t9UU7lSa|U-dw@St|)!-`+9HX_Cy7n%MxT%_P|)
zQ`y26S&rx(;8^`2{bwMr<u+(oGv~hYg9Ee!etihYsYcs(n4Ie$^4baqKPunjeNogq
ziv<LwxnpA$Re7r4Jj0+nOBVtS_7#ktH6<xO&wBO7JGM?ibhp4Qnd%{NH-0~Og!YYl
zAY7z4j-lPWOBf_orZucg^&EIsKpXHxDI;s>3lS>?Stute*fd&Rync=S;w53m<tzPi
z%zdyLl`c&&@{Hrz=@qQAIQOjyWVl)yGb1KU-*wRg`E>>hhp{(LJp-SXrODEv2b@uo
zsIgqe=f4Q4?_9j>t?&wUY}&fH^Ag+U!RhgWIp%9Qu|_VKT`Ult5^s#G7~K={+|It6
zX*G0`f2i$VHr#l%SYEy#Cn=`H>5}vEs^CKG?LhQeP8*#@g)=&U>z8j>&pD{qC7qK|
zHJFUVePuW|X8}dv`-I?Q5?1)g9@9_+lr@@-?_gq{F`1=4fzGKxL(oHrX>LfjVdy7Z
z%j{YI0I@Nt0^%Bqqtp~2^*G-TnuPp|bddLX6`;ak|Cmf!%E;r=<Sg13A_l=YKYQlb
zX})MzeU7oTpRZDEIG3LjR#iqSAJHdG5OjL$9q(GGeWcVoSzxgAg)V?84j(h3H9CvA
z>|CQc2vh$3P4p`%6<)W)pD#aNJX@S@MZXH0mq@=@NY#l-{i&+{Y2*?huOiW)&~wW0
z!fk{Og_|Jsi3_33p-i4-=gU;wF4~?Z)+SJgnlkzwWDpuI_Pqk2^)X^E+|%O$W|*g_
zD7frx=z=C`f206WiijZ}($Qup*9JIr19XBpJSgh=tX2y~bqm5rv<5POWZrq7wUCI)
z{fazC|CO<MuRnm+2SaA`LDA^O6?6j>p4wWW^|!yy10x`@5;tZUlMTqSyB`q_9yIsn
z;malgHOook;~92C8p7*1ARciB;8$ahcS)%rX?w>)(&#c+RSa@v8_knf7D9;GpUiF5
z%QcbvQqczJ)$Q=98EKPFvM?WqXAf0!U9J$8&$s5=wlhwGnj&>JkQ>tqtZUdqkE7?W
zv4_x!bsAs<AHy-9I5Dwo3LdeM?g!YqEgGAq8|?4cJv>;80Kz1H*){koM}IOEKO`Lu
z!Uo<>oFA^g;mZNmjmnr!y!w6~o%O4O=_!0{nu<A_gJYXGpE}Oxn_BIe5W@MD&cW{g
z_|IExUYyH{eQFGs1Q=s>h0p35K}^!>Ym&H79>O1w!r9~;>z6DcWURbPC6t*`G+BF7
z!tIO3da|*7=h2Ai{<QFq8;2^8E${{6U5f<ENq>$s)l;JMbQx?e2LGB#bFUgsOc}R%
z>8W^@Em^HUDKtabLbx{H{dW!%&%H~;FID^T&TBs?oVZ9Bi%^uL&Dyg;u(DH<>(dcc
zZSWnGB8VE89~5_UDi5?g5MoADHR9q6I1IuVn*r%qg-@DqUIYlds)H5y%@&b(Bgq}N
zybwx>)VP<9e16+@`5yeGN~xdZtw)b29Xqi|P42VaFBX+&U5jR~mbl+U@{WsP_&Y0^
zgp3`R?z%)jS~a(X1iV{(jz2MZ`E**ZETy+xoo%o50G=HbHArVy{y#(Ut{|E-;T1#f
zb=L!K0<!rrt@kG@=XfWdA^qWDfYG#pRF5mcRV0Vnir@4CFP@DSvUPpWBsRC<xF~%=
za=s%u#ly<KO0a$Wt~ycv>KM_=qU!jSj<i&#h2p;!LR^wSzTJ<+z_+uZTCwbr{N8D>
z_BH}%TH)pj)=I0rLu&+W(p8GW_Rv=1DYy9a>c{B*K1%$1HgP^<p%yKpOd#oH+*!pg
zMcN;}PE(`FC>jY~Kr&`=AhMF=Tw%rB_ueS!D>wCL{e&dS-M}HhXJ{*#;Gi|zHg<Yb
z-(B0zGFtH|c{xXN9wL;-7YA4W)ELY?3qyK*eMyE1X!OeT!Yi$+<~bsv1U4kj54jeP
z{^rWlVIFt6qW;i^wcSzb5iXz)K(dR%wx;_h-N4%Y1bK1gVb%>&h?wv&Cdt{v$8^ZU
z7Dog+uUTHQOrTet(wFK)wcN^M#^xLa@pWmygiI)1q)_MYd-gJ3qLZGhe4EGjTIomT
zk$H6^RqDkX@ArT<LmG*A6EeL%!$u{8vAYb_N+J}<7z@u2Z5eXlRdDT^Q6C(MdL%0`
zgb&?x=~r`G^01lv>U=%^Z+!#VfJ+ja59sM7ooPxCmZJ17z<U6Mj5Lh3H*e`*H{`)1
z;1i3V(^F@4NGMITVJj?dirzB>ErhPTtcYZlhf-6<upLs2e+v%yOH=?+!*Wrv7PVfL
zS-^n#4EGLA8}^|&$zXLH^C@Pa5^{sQ*MHo0uS-c8<UK%7;fdGAEodI1G8iOLb`td|
z`vd{+4sHyuvISd9T7=OK>l*aS#&E}&=7i==Cc|{O40tfrivROvrUlJQ&1FCua7tLW
z;@3Ovqa*pv27k&EV>_r3&#3oCobg;7J4INLbq*pkHJ}<hv~uAybOyA?Z|cUqKIQtu
z1wuuv4{08Bj&M%i35y;l^0AC+;LKQFRmL3sy)H(xTSrn_QP2)(!w9&`cWi)xAT!cv
zP7nx6Zaq^U@ltP(T*4YNCx;^5mQK}`WA&I?dn>d2!uX2wv}(#$TwNAP;;is1%$=%{
zRr=oOvX4ov%aTd6PpssNF=?%RMl~I}rHKQ~B>`c|wUL%7q3Ps8$@}JtSd%wpe!(5)
z$vXY8rXlTyD}lyacfEj#McIn@c0}kn`~SA$C<wIkM*tA}SIB66P>+D8NRtgVg(?Lf
zisL<I`o}~bTMS9{ZiFS0?>cGuv<8TSRUn{hIb4s;a(VTtoUJk4!m2Jf-u&=_`9ah^
zY@nT@D1@}{mNy=7_tb4706##$zxUfPjC0)Y-D@)H0Vd@RVzq*`y6JRmCeg3kxd8Qn
z{EVymKY#pVDSEJLJk_>;)yUv(n3x(y;<#(uLUs6uIMtyNY}5x+*@5SiU{B=$)PPCa
z)+!So?O@IRJAnONW*l#5m3f;)kHF5EQG^NhYo--iL>vbKZ<r+_dRix5DZ#n6xBoy1
z?YU#`;EIax@erz>$8L0$?39bHG?U^5>`p_HnOfR9Kc!js@^1$NtQ%_qXJ#HS?yrK{
zz&9dvgI-F){C5A<XBc|7_0oJo_vJyv59aB|nWl+()C$n<b12x#`vYVBvKf>cFLV*N
zTphcn*)7Z)R&JbZr%ji*B*WN0kuuVs?KMu1w?obuR_*+o6;iJCIR^`Q_;w)1mq{CT
zem3zZDKOp@{Y2Pt^;K_ibIemeb6EI?NLqOM!t{uhI*&3vgN}jRl6JSNg3xH*tvQVB
zSq^wz<x!j~WDzh9MJV3D!Nm*M-~fl{vkHfLR0Wv!o&<fEg;D<k@&Lr+g=3*3&-XER
zS`B!lD=z6~$MRVy_r69m5`pYH9iA)|uR{?cqktBBjrGyg`K(zRudg`Y9A4b??}o0-
z;vSFWN{?2v7BL0AoE(0Oa`_s-Uh=J_2O|pNll$VRyrc(5O{$nB7CcIuT5=G@ECfab
za3V=vkMY%b{yo?jM5!*ja8I)cIIp8hGW&{?q5#vSX_#gs>MnpPJSg;9*TmoczU00}
zDU6Bg=o0D?_26zgq*?zu`h-p-(SvYdl7+S&!k|$e{EW8nFBNV3F`o8x_^Zz8&lKy<
z8C=8aRFY9kVS_;9ty09L=KmV`EFkh>!+1>cSU;d<ygxrT=9>6lLZK0=$ETjlQUq$1
zho1E5;PZIqD4ayf>~<~(6TiX_9W*huUUaz#aWSz6seFU6;bZU_dH{_FLvQ&Fl1si6
zZ9TPm(>!doROFB0@)5=haHm_|O4FHnH{A7F!j<>3P~-zGnbi=0Zxzl{pD}0Am1OEZ
z{q$*FlYRsHDq0#;s}+RL`lyz#s__qpg%k9bYWt#i=g%rc6KD;O8%6eZ>%bgXkHVCE
zkQ;$(6ot;?@l>;gNx}@JA=I2Tl!L&sk5LFI{%NA_`rkHk%;5kjkzaaGB+r8IQlL3i
zSHAk54ybz5OHj>}6%`0*IVQ(|$~*fk-)T+>Raw1ffHD|=Hf8rH{(#4>>74~q6kkG(
zM{aG9sl8s(2>+A$O2L(qSDF94;+c|y*7OutOH|&&UPzI3v+|%Hz5@P@;K3yX4{cba
z`|+&*VE07)wa8YkLwKq{p{!*<B{tw{0Ig;o<C?j;5akM60!Lr`=2xa7eH&>O;>oJt
z#Pv4kyNlh9PzHb}Ql*EmQ#9nhB>_}TFU&LuL~P}Bx?G9;V?WG{{@N-6AA*m1or7$z
zqLtF{oHda9jdevqUp#(WsHtBi&J^w}tvPFer%;N=S-}vFy7K7Zl5ZctVjF#C(sH%A
zFD-S}xBrF0R(0Lj&e=O`&Hx~gUK%cGaJ0il7irfdNEYb-*d!!@d4(hSCn@o#RAf-L
zVn_O9LvuoY;r~XY%dP@s#hnlkw#s-3N*FoU#(dr4mby=A=PTWzxW1KI7PSGhV>PqH
z0JVXo#xAR!;n@#v#>$!U_nO13dxCDqOw!Afw4LhRJ1D?^`al0N#QO~NTrOH2Acyq#
zOPg@Tl`f$cqi*dHd85#n7&z<WNfF25(hRcx22Xx2O%J4Bh5Pphh%{^{bHbseAr2)Q
zM%w9H>t0~brGi~CR;?Z44Q|)yGB;g>3t#<Oaqq!{Sgx9pigJX|MmeVxzsTdEH-|!0
zfs2PZ8!c}BtD}h<Qy+`#7CC{uiIfB>kRu9>5{ZgLxX?JEWjj}T1Vedj+wA+rIk3aQ
zV7&OgAePq#$DT0wbesL11?l;O7ifiE!@*z~i8g5ocM|W|hD+<lf(rRKK!d5AU)%RY
zkukwCidGxaCboX+V6-pWkFSr53}Q#t_ty&qu6bC)=f|Rp*xM&ub1x0O+3oepF$7nP
zK2$`0b)3*&Jm_K1m|X52n{2zr>osKP8|vMa0W42mB=Mt~gN|A_r(VP)Mg11@)5_gV
zbmD0L$~%~8>-(VMKS460tI1T9<ba95da4zaRjk7D5rbksl_m#1eG2f&O_L3|>h>>c
zv`Rq@lM#fFS@)1@mL7t%6mb>4q(=s=WTv%Ta-%#-ESO96T8Uw^p!nzX9;=Rb&)SBJ
z_GC0+@E2T#4Q%q&TC%Z%0O{OQR@&P@h%wqvvr_yySr|<`=g9LN*ddZSWrihvYt0Z4
z<Obr<x#Pu=1HxF5OsEMtsnwQ$Pq=1FwimGWDQO$OLusSULB;IufrqO5T;%|_ZIluG
zHm#2v^=M+0pw18H?YlNr0fHoMWJnK!Zk|)bYvdY6R#)d0%?$nQf=nvsvT!NbUk1?!
z+WK33{4%I{zdqEfGG@BVHteiuQ4I?xBk1!ZZNO%-Kd<z(4z0{V-@Hr+;W|v+c9?W@
z*?^1k^**udKh`Jw-J2wBH!eKF0|a$(#07QI0U+A=34!&A(d1%IVN>PLX}}0!y3rYo
zfC%f8&Xcs&{X4(jH5;0%0sp5IxQ5wDqA>EnH}JhS`qui%xPqovdoD%Lgm;Z>$TOQ$
z260C8#l=Ua{rsC*Fm70`!z0^YM&44#unNYR-p~>Rw#Hx};krN^xF*!;Q8HiT;m!IW
zb-_Z*SKGuR5AF^Kr5;?K{Y3rVvrZPIb@6EJ%XRx`lpHZ0qiB3#P*4x|oLqDuxRfSF
z!@(P+qKKYgtiVJGPgh7=0W@^lS(4e}6&Gz{HDJ@xk)?;x%c#M~&!Td;ip@B~8rMtC
zbc4BHZgN2e-|_k+v~iu%4zo)Ydv@2CtCxH`y;9XD-0d!aPIKHXwTo28KyT>-Jpcl5
zxJB5m$70giAn$^4w?FM2OU}Fe?sLQ2g1rSl%cMak$*6zrfgxxav8OFe|58^Y?!13@
z>;`76cjtB(EBYw>#TqN>DP+G_Zi}pFE`C{!O09nK8t`PTF}AJ*5!*S}$e7+~5zRoZ
zhA5OWa_;Jg|14AzW5f&v<*ki)BawU3tJl+zAGC*iE6f&Rn;Nixbl}?vK$N^osF$Tt
z4cQwr>&m>4BM9UwYeI>jQ6NEK-Q3PJ;P5)%{XN;np&|XPi3LhBn|0L2Op7aNH=?$`
z){5nY1v5J}%D<2pr(zsZaOJjLsHfm)CBpwWfzRpD;-Fvwd1QvS<|^d@IPM1b;DWVO
zJwQVgS=_b=A$~v&wK&{0;^Nqq^fIUUBv~DW@wNt~)6R8(Bt+9}qtuuB1PmBVi?L{K
zuu0AdHRTJ0FiQOD1|ZljFam4qGytlGG1$MBV`XboL9^S2j%3xR9GXAJs-J_0{l3)P
zXMWwAR^jd0&V9>CA};wFIE$tS%oYgU+5`~>h4<Yt4xO7T>R5^uiyT@4g(?5KqwXVH
zp;w-_Ow0b13o_l#8;&x-G%ZXX4sYu)6HQ*|i$Qr*)j23sP`Uv}f@-L<;JGaRmRn_r
znDW_aO)WwOqROsbe_DSks4yqN#Y998?4V-CvllkEL>qf?nacimXY}2I0VrK}R{g?v
zbr=3(bdiP=va*?_ds$`pF=Q#LOTnmPQHi*>CvfMz?ZA!+5hh&YXvLn>)ht-LiT6m%
zgLmFXbGd(9fhf@+4^LRaZSp}y|M_Yxl08*`o$JrdbW>}G(-Pg!+9%mhZq?RBth5t9
z6S8MTE>mssoM`%qEk43g0P|@1ye(EiZ8seIWMv`jn^<o&#M{<W$0*^3B-G%sGn`wG
z+S$3IfHaKyUpizwO0){qE_x}2a@xKK`|za)@DNn-&DUf=KbWKhJ4{9QuVB5tngoJ*
zFExmq^Ih(HjE@$V$7|Pl6YlBhKh;O<^!YiS`i9jSE_S9c9H@T^l^nKt@&#8ud-Upy
z#95cmSGx4GbC}cdKnP~Ei_L$R?1On2UQb>p&7%c5PrO-}-QhkLun9qo^}=ixDP@qf
zE|`s){TZHzL3ZM8>`_0A2-&?MS<w8`7vZ6E8vn6KG26}*Y$iP?WtNa20ityx6TEVT
zot7)_s>WSj%i<NOHf;S^|MKB^OE#pcg0jYVz(--`{GYzxzc#~q{O_?yw&C?Mli<EA
z`kPYR_WeJgk%unrX}WRR`Gj?hzcgI)kygyuFCwm0HAUvj`(1RaLNBQxE>ndi{KXYg
zcl08SCVCG0gVOZZw;ZLr>W`eHegbY>0`4;Cy1_H&3c-0-li?__Yi}5~**#BxsqYF-
zn(M8nA=A(wKnv3yEWUMVhajaDgsdCJN}V&?^>4Iz%~Tyel2w`oxWc!NnWY4mNAcH>
ztBD;c{M~RA8WrJ%erG#*zIS<GwCcvJx~mQn`3%}hUF%%lP@VAjR?waE)K}OLb8h9E
zt>i>6s-EqBPx){GCW>%O0b0yEMoIJQcwL?znIedls9;?f*y^-5(Vra)p+;B)<g5Nr
zMyZ$QhztsE?zW60&5tnaLTB@~BuIe<R~N=IB`yZ`PS}!N`ZChDNWILEeQQ8uzQ|^{
z!nn{2w2$AMJy=PjCFEF2TsHF1UE;CX9Wz<!z=1i{*;oy`@%kVo{NrT>Xjvdmk;tFv
z5+AR|XjRgM7E7jDh}mRs0*R%>g!1=!JPfPE;3rn{l0Ilq{zGW52L2i7a?G~V-ZY>&
zC-%zj0{;IIav0ZKCrIJ%Ep$!gyG#v6E{n~L30jhCK2XJf#_MnXNA;yC2<c`T)6mOv
zMZ{|jXy~*00(PHsmwW;SCBeZX;v-J8jzG2QXx|aGMlPFDeT57k9<?xkjs~PCS=MX%
zAC$6!SC}4I`cfjlLO9?in_Bydy^_MlS|u3CEjki~vk7Pr&ee5PAMQ1Sjfw)E%Mnw@
zhSdToq#?<U$J^&K1t)9L+ys{Pz-xX(h1)eLVm<((-{hO4vel|2qN|CNGEmGVEC;<!
zS)zxqi8~<2#G2v}x$ZBRZ&|1K0}*a~TWMK{!ZAD|tcuGwS^i^iLb;t|o*4Soag)gY
zJSw&E|I{%_1WHs1O8Ar+-Q<_CmjmzU?rIF!t{E6H%9$ZfT8(;h1=mXJC%^xX4!N`G
zUM(@zwQnenAnBA5J3WqXFbZ$Koj`3S8)0&r>d&8T%1pR9YV4Ra#2s@oS%@IO3KT$g
zErOihU#6%q67lmH2tzGA&|L-Kth<g2cRl(+rA6=W70+Z(EX%)pC)#qhp!qNy|4eF>
z0rthjGECbpG7$h+^&>pDe;2{|@@mw<IqFhkj4uz4->bKNd?%wA-;SxJF83CYm(oDy
ze`|enIfvA_+J<9)b}@Mpf-(H2LtQ|s_WK^9&A5MjV!92`rWlkCJP4kLlk2;$Nwz&n
zDsVXevF&HdWy~)*s!qf_*4mgX@!Q?x3B(nrT&t)0!+)u$TpT8!cF9L?CvZ?WrRTpl
z^+cM--|_QN_e=@rFFcZ8h#u=G5RUnf>)8`(X~#5el5qvk_|p~lR!{Qc8mKd5?l<My
z##Tscn4{e|Y(wB!zi625ul3OY@Q?HHoN)}k7-@=ped6$*!sB$5=Drr=f&cCN#Iaz@
z7K@lt8i)t*)Z2a(Uq8Yn``Z0vcw&fu#n!=+SW$8@vq?f58}6jW^D{n6woQ`g8Hrl(
zm6QOWBIKlJ4}B)4jzdJ$$I?Nq=+5P1E7UgU9Lab8_fMin!v)<x0lNfCt|3H2X_**8
zl!zOo{(ULI5(N0NhFsI|19NimXYY027{K87wjf#nCKTKp|HBg00J9J~WO5}I*=MSn
z1v>kxy}VJ0gAHLFJ=Ed7(pTl)eK5%UKj@62H;2afBw<(#7Ovjuw=anrDY!b>h1@gb
zL&d|Fv-L^$gPn1YI|rl$t1}p=_a}RZjpxKtG(1kB8}_))G!v3m)jj1#{ie%}ZSH38
z+Kg#b$^LFFN`HfjWufK&`Mb-yY>cy_jg&$dTx#)=Z@?q<r;W8Fd(cM5%%J852W_d4
z5m+~O+y=fTP&SouQ_Ovbr6a-IlE5JN*u2QOxR|dpjLuVlttgO@^*)4i<4Lr==2u6C
za!q$$!vXdlfxRD9u#m<mYVkfEZAN)1Y<MJ{uZ7U+Ms~2EZhi8?ZO5q={<|jQn=)f-
zzj@{+otr}LJ11Tle#=L9kln+%_IuM+NS_4Gu#s%H0Hna3XE>9{s7ldu8~kzWmgDQb
z0eLgPaNMOf@%6U&xRFNbR{7GaLtfw&4I^T4@<YxCr(j33CIzTe`FZfj8%hpN2Zp9|
z^^OTAowz(p%n;^dgRv!YWuGrtH)uXY*nUvFp8&)p&f5a$a&E1{OcbfiDd`1{240Ly
zJoJ*(={{K>cG^#C$C~P!&uN3MizKKJT?!Zb|B5rbX=;+kJf4+$Xuo|@o)j&S^0S<m
znF`!K#z5NMPVoa?Ch?gX0uZPJ2?$grYw7bwB>>v3Opq+APYGS`U)NJWdNgdz_2SZ2
z)xCGu3lMM7360BB<lD~NS!E?na;^VoDvC40#q{8WM&A?n>!*eeHl{2(QAU_ts_`Y*
z%x)h?uq-n-PdtD&8_~iW{&ERxW*#~w$1~d5hmli78_sS8GPvfl!l4&Y&6D$vpNzFA
zw|JioeEh1eLYI~SiQYH;I;{4a7kTzwPDH$r5`VzX^5q>yN<{JHTdQ&BahjWB?HP5K
zey0e&8KaOTljxOmtBxuOqaT+!2aKwaexOuRHy1c*8Dg*~Fi35fFA75V$8&Bi!hO^|
zVtY}=K#v85NQX>(=)N63gSXxE2J86L(Ow8mpzX`FIdAXEvBcgJFP}!~C-CGfdw^CR
zyq@$ZCEmIMPEWZltsHt!yk!C+5t@xqTDp7}iH>JKDm<i+Pg;ZjV}5KNF87kC#p1K_
z8Z2+08zq#79D2849>I5JAlqi*0}&XMSsp2cNW`rE8#};b+`}n1YG}9qI^^Bf4g2I?
zP0#V~=teU|bvH0}_<VU{SA0l#w)NUZd$ctgc6@(zxU5paemc-VQUL<&f|6BA!PynG
zo2#B4z;=!Kq0SblYdzy`17@D(7H1FYzGG+v{6}l0AlzCTHw7d?Da67M{A!fJ!n);`
zBO+>A4z8e-S$2JWRCezCx!+|_Td=FoBkx8lTK^+Nr}{hsrZN88fn{1;=!N%+kjr1F
zQw<f0=B1W5zcY<s@J?gfEn%maYv7@rzNcJsD|LP#Em3>JfB&TyKUR76s`2I;^5wQs
zcR?elZGxn5<;}sv_DTVO@7d%ehDtWn6>9`K67z~&^W8_JuiG3nX0aalC(gtSK9Pc=
z^QaWG!tUq49nd$o%Bf~x&AoporPn<DeP@;!4034!hoSKacr~hO1;H?M+Qfjxt6jE^
z%7rstsp-lyeeP58lZ)YBE;<qJ8)U+_Gw?4){0OPuaxVY+$egE!UDQyMkr`Nt;FbcB
z!ugG-=v`1sJzO~g759RF7+8&5(IcW!cYhZ$+4A?-3;2l0Gj<MH?R3lmuq67x;liv^
z#%Tn^JEK!9@}OVk`M>T2Q6%|PWgDVZv0I!*Me&J(YXzbI8&<_S63@g0Y{+ia9?vg-
zfAai-6%tAZIfzRR(94EAFXRdjDWHZo$*7H8hvvqa`^Yw^luH2FP5$YV+CRTchX}Dk
zH=I;*+Q$k%6I9=GQFm~+2$MLq3OD6g<=XrJ#ppL^zmeTChS21^@*uhcLf9suLzjD5
zUtfP4r{IfTK@+$kamr;Av<nNKWoLb2-K}`rNKM_yYF>jU=+32KF?Z@F@CXA2Q);nq
z$ocLrDNp)tFjlxp5_Pdi>6#Wxt)j`$SOQ!Vq~*_tPNMlNPs2^(3v4td7^2PHoNYLO
zo3hH;)%^U>$|DpEn2h%+2VD<C1E@xt(8|HBW5QU99jZlkVE-0PBOqej@PIf}JOwfI
zwaYg4ldYEjnL<Bkm_QuzHjk=bza_ytcPVC~<5Mc)ODy}oPe*ZYiglT4(ScC4)5W23
z!@e{2Cmj+`2FW6z)zv;55)H>d0xnpbXMi|^&W%MOco>*LvS0a62JsTah+zvEri;mk
zNK(}NCV3g28t;|c#jK!|YV;`9`N7D-s6cx6Wj+*;zYfk+xR9yEJ_;|Hp(_>mx$_dz
z*LkMYR~gB63uRLonH>Zk9%qmFt()?<@H@$F%N};vpT%~H&l_!JB5%Hj(jlt-To2Mi
zcXmKb+!Ft}`;0-Fg^h-fVCY~2WBv)USC3eY-RZv{eS)1^0g8JqZ{2!r@HN)`?WEbX
z#z<Ry?Ee=LwNVp{aXgJNE}!u0HW@TJornvdRI=Io0heC7N-6-6{I+{PhMm#SO8eVD
ziPxbOaG#LzF5`dB;1-5M%c+)~0OEH>tbpt-kB6K2AF-HaQ!22mTXG*yVM+J32)nE5
zN+Se{?hIH9R6CXhJ6qcX{SvP}XzvXMsF5?_?E5)qPB`H@XlDY=Kdrt#)U0CAk1EMt
z9nUj;N`Hr4TKY(^z3Z-S_Wz;sa)%mUTcT`V_4$}kpF}dK%OOGLxoT7B%;cI`+f9R1
z5?HuaXZMU;>qVDg{JjD~O`H!W<~0Fx3bPf6-U1;9N4n)2Q^1Si51d3`KlIC+h>IN@
z-tzz|Zm68*ZbaS}C3Zrn$l!qYDUpwuFgyR2P+@wYJwXy7`;8J6c?f)^^D08Z|N7Ij
zT}jhC3aB3NGzCMnH8WMXtG}u*R0}O7N(r)w%@|RMc*%l3ME*5?BR0h#z|u~IwwS!{
ze6kpcvF=b>${g)~XF0e6)bpV;CeF-<C*`<mH&$+v9(F!eXKS>%7K@CF5AH+P9eH!Q
zI4rF^k7(jL8*0Bfx-~R;%3E?T*SbM<*hvk!9m`BiX|z!mq8#lf+%osg`+^?#@85UD
z=V2>P;#O48I;NwQ)CU+x%$bvK$wu?016$<9%~|-+wC=8-Gg2`EL%Ht+Bsim!)pO1D
zA!ArnxOutnJpdXIb)C@xEnWpmJprB3NCGUuAF)R1Y4&Y4W^eX<+-y~d?Eug}F`H1@
zyc45EiX>*F&4~0xwnfIZ`@@pX0-*>cVJ+*y23nA!Nx6C>9Wg3df85G%riZn`&O|8r
zoLlvCAs=+#rxjO)mPbwtX!+se1)m0mB`Nyz9CNVApNuu#dv#ElkRIR2q@*+fzrCY`
zFw(jXd!U=lCReqng1To1E0jLB_NI-i3j>J4!$+{f*)Fu=<p)-BdXiFc1ZgVzXIYGV
zaFzeeAa^O{DHDq$;fMTi&t4xWvDHR%T%=s(+fd~fcD*iDCpyCCw`%d@!2AJA7So4_
zR}t=z_FUy5DxScgHzuU0YUD(X)i<*xbNJ#~Jz5=I&vbYDRxu6_rl>`Mu5PT6VeKk+
zv5+nM4yA0%Gs&54yAJ8Y9>f3j7o)Fd4(JjCUd0YGJqT}y(c9^UUwMw3DWtV$;~;6#
zP7@Zh#wI#<$lH+1R)#y4o_8WYEK7P)K<@XYuDoAzn<!tByvbpjmW-)hCed@oy&T&i
zJ6%;(55tW1+@6#S-%!%eqb45fUW6dlr!M_{r@3e#l68!v=|1;!H~6qRiT8ujrsZ1$
zTA<+c+H!i7m*j)u+Dnd*<w6}sg8=cQ8iNv%ThFPU=*zZFD|MXlrfNjMhCH^Pn0eML
zIklgU5Hz59YV;ZfC5A6|Xsu{_3T-n+ODRZptK&aCB_{Y1(T7H7+1`Rw^y=%p;Nged
z14~3%C1N1-!5`Mq5rk{#*J8sF9RCm`rQs$in7G_K35PMNxlF7XO+~Ca>r|GEx7;MW
z3e75ehN3b-SH`=yQdoC^u5h#8<m}}qSte)26fIFG0UI+hkHFcTLc~#2YqV5j7%=fT
z;+7=DxDE$U69iZ`&aZX+X1w<2EwdOzv1W3;=sR2958UvmavvknYk%Vs6u({Mr#FSy
z+q7uJ9Q-VCWGeu<_a$XPt8a>^xV#33<t*K4O+tv^ghP0k(9Fqnp~`itu_s2QvwOX~
z7l4ya`A@1YZQUE_rjCSjWkLES&q%;BR;;m(E$Lc0A;-)zLD5Oj6st}C0U8?DPW>n-
zK|fM{oAB2R$5!=mzM1hpg*y)0&SOm;nH=-2z!W>0;`&*x`PO6g4I7+9J#=6^?<dNu
zW@PT36ET_;x8@@Ksl8232{TdNYdEi|={##T9Rm@aO{w1DciPtwsThk0LmHT5(k`AJ
z|Evsgy<qTEX5gjq&#KB!Fm{l;)_+F^CJY0AIqhXVVk=0CS)g@P5Wm4&Zvrhcc|Gms
zjqm9`50t8BpnY^W$Akpk9TJWjVdo#Y%yt?w0yZw9AGosT;%?$zPVP(h-C_ChR7cwV
zL1)vy8xQ5j^!?z5%TxNusb$T0d<x{BcQ2lg9EHy~?81nJA9YGaW7~AQ@5l`jdN&D-
zxb(m@pL6m`Dpk(pUT4KyUiRKDgjt{jiByi0ZTSkCVgRK%uNy3gIrZ9zSt&tmh99<F
z=<;K+^!bB%$!um8#md8-@e1Ftb0<NL{DDe7wg5%W3*5IAUf%FTQjq)SI!a*|35d8|
z^HP}4{x^91v`qvr(ERc()_?2SdQ?G-@x=YTpSt&^c{<r*87DXq_!Wuev`W^{Nq2?@
zj^JQE%nL7Rel5BBxMOXn?#hfX#;~}aal;zIeW#)dCT7ugW3}$tKv)tIzFkn_2Uubx
zY2?^`BvF~T3)j;ppo5n8C6h<O)>LM^$3Y03vJ6zhMplGxM{lzJcrg{DuV4pBoPz}U
zFw^gp)ZS0fXVZ&1LL8!t)rSMNRmTQYcu$ZJQk0bB^-)A%i&vPvu}`Ww5Dt5<yTH1(
zz5~moVSz9vKNQyY<BY}{_I)*IE$wh#?~(jZJJA=h4&=u$NozP>&O%pGl|^}$O{Wq4
zcJF{EL?o4f_U*!DHWZn0n$4tHhtxt;5lP*M9e1>T9`B{i+WZS9O%VUZhC(_?eZJS4
zPQef~XQ~=rGwvuq%bu0<eFjNoZ0!ip_H(hK+4D|u7;ger<y7{S(U~Pxwsiwm0J8u?
zEgA}7dtRxAC8KU-Ji3EM{~b%2>E>B_=eB^A-Q#PU0SMGej07qkHnsHrVJQ2+b&#;R
z#Xf0dfKrIy!AmZJ-d~@cLh)Z?Aa>M3!YXO_4pD_WkLp&#kI|}h{8f@ZFKN*wXbZTV
z6)la@0s{F!nciYP?_u2Hdh@;d1DiJ6H0z+6Vet0VC!JFW_aO-0OKjsF^q94XacT{#
zKa1T7{gki<5^TEg`)<;ffha>AGBbW(;HF~Ur=pVwTCFcNAxz!}&`0hAS<P3A#VDPu
zmz|duGQzDok%osMx=ewsGg5F&QGtD9{^m$P7{X*26jt(f(uocrh{dv~`qqnBBEZy_
zw-BeL`+Hq|BRF^R;Ef!EIDJ7G7i2=?=a6()VzJH8B4wh!z=V6D3h9m({sus#VCV=i
z#-%`&9(~CK%u~QaI<BUN@#tMSC8>Q=9OZOzigSGhdHz|^@688;IDe?WdwJ4;Pr?|b
z6`sHf?v%3q(&W&*(-H|s@Uv2$1D$0b6uMpt?^s37uK!-e<a^HzQq!y~{Q14)p8QpQ
zZ=(`@dEQJZpLlXyp9fqWlAiDsL9Nfw4dmRHs;Il&8YiHi^>v22$3F>b8%+E5bzn5W
z4hR$(Lvs}|IJ<k0yf{nfZ(VDs?~^4P?<gwgl5VGn_vf&=?%n#iXj|vJyV%a{I^}OV
zh`>`KNpsAw3?!HL<=F7h%ewmZT#{gfI1ss0y6kvG<8X(V^C$hEgRJW5mSWNr3~N$u
z9NXr4X-9wJ)ud%@8+?gxx^Q{SU?<xnn@;`y6Fhtz`<Lu@qg`E|JqIh0QTOmXuj6?O
zJ7gLDf~BXQrC9v`I{pKi`!Z{O;93%I1$TH~h(!BFyG(a_DAO5o&iUuQ{SidGu9ls5
z@{okR08S(HtX8}7A!hqqMW{+V@qEp?*MDefA^VAoIvZ1-z)lz0iO~HU_2@Q!!J27!
zj}V41hin>U|0s*`y>|?l2@WSjrpHJ9l84CQyEAB0{Ff0aQh3W+#-Y%h{6Vv+&o9My
z8~eOv@#jESwy7eY8RcNG5DIslZNU%;4%;cgktTfYN<^T1Ujw4|2{QC&$4T<>VL6W;
zOGUwlQ{-bRz&-bAUdu*=zt-_W1W9G)OaR5jiv!d7V9&wCY1+Mgt58MqYZN&toesfP
z2zlIJLnEU~MK~J<`JZM&kj0l#pj<$jWSXtY*Dz78O6p_+nWX-|+M&LWzKuhN0-KGw
z*jz=W!%;p4sg!LzkIIB*H^wlah$ISU4TOMTW7@I$tbd6L>!_cI&O9*Gj^w?wi?JWw
z*{<+K8_O#vI7butp$ZCiBk2re-U~p>Lx+OmuC*wdg>cu&aup)0Q}6mq5!<}-cgV9#
z$(73Ie&c8{s|umSl&h0Emuo&BB%2u+wq4g=!(+7gVU$#Ua`Wam--Gx{V9>gyv|Wy!
zAmmUaT#(OFQtx0Q(@J8)u@7ty9v>uiG!z#Z>LkV$=qP=~7>(z?SKA>1|8A_%jJ5Jc
zneEfeWx0mJb<#krCj}t$YTQufK!MXaYB+j5DFVff#&?&uE;xV)0P={B+8UKw(sfg=
zq5GcU{CcoZ;g~|>zNu{*-SmKfb=oFjnl_)^{xAePnfH$<2A6E=HE~6%e@L>v_?u#D
zm?JhC<k2Sn5L^8hImN(W&;|K`EoHVSmCq+Cn;I@j%dOs0WP2Hp(zdA5y<;)SErQk|
zV65QHuE2DvVEE;4{v>;B?&gs6ZnxiVj2~{A!1!GWp2uB1qi~eY8+;b`z`P$OkLb!C
z6DDhqzf^3Y`Vs=V;_3x%i>@pDk^K!CN-q{OHmNoe%snQYC2<qvwH8WkAH+yY^m>A#
zi4ry>au>p1_lXSDcqd@4amdy8eZ|?H7;^UxQspQHK#!?rA1cH(ZJyVK2ek!Ewj|@Y
z3NpJWyWY7*LuxwX=tv5l+N~BL3h}T+O@R?54>QvsC)(*2s#F<d;3hDF#{xM}(CQjQ
z_iVMJ6R9ZNY`$&Gl|z=N)q;2=z|DxY=7L4#9MCQKy0mJX@|!5ic6)nB8;q8uFyPc-
z$~DU;fE0uinIwJ51shv6OvJ>j`e-Io<%Jw!Q48J~Yc`k-rdRT$;E}%?4~Ysw%h3;a
zhmkKcRcyhR#jN>$TO(d@%^A&^kdTI=R}-Y0RXCSvjpx1}Ny;aAhA?{Ie9DtwGaRhr
z-H4EdSL+0$$D5+UL?@hO94zMA+p0TVq!vY9N?K1m${_t``hb^As{yc>nQ0m6*muHU
zqQDde(4{to=7_u{M#;Xm0lVY;n+ge9^<_Q}o`M{grFwQxtoFTyr7@WzD7#Tt34)14
zLc{_u^Grg?$dvr%04@mB>Ne^cJi~11NUmQ8cX4Kw@_afC*GYGyyid<zmNpaS(Eggn
zSEU7{LS4ZP>j6*er_DP7N8YYdo7>bsXeA*AfLVX&RjIudD-g%)S@A?`X^wqwWEB%w
z;8f>NoR}IWC)8$V(wg$0W0~m&XLCd1`#&xVk67l$PgLxMSvM3?Co6-`mr}Ps*EyZJ
zP{0<g1S>zKer<%x9c_J%1GANtpcpd!GJS#)9QkSl#jW{$K+#zTHMpVWe`#W|z36`*
zYTG?lRt^}g4=rK?(SVXuf+ckK5k0(;x?tb4cNhyc0K|O!&bl<GArD1j^_Pd$qk6T{
ztq?pGcr>SC(hvn~&B52GT&BLWa91QS4>gDSG8F``-<scVvU+Widm=t6J(j|Y4;<@K
zkzUkdGs2u93(=5n?LHRQn-^@LhrVmWJtsoByx9(nSgQ3|&w=)qFg;m7&I9;J1+oFJ
z{`ZqFhO@7Vc-K1nNIRZ3B!y9*<s5>w^9d<p?qh(!c&Q!-y~gRUP!|=vvDU5(T!rP^
zWqE|`s)`6w*IX8hJftFVKre_NkOg{tb=3dc6>xI6Guaj2M>%^^4=R&Ct(=&o->zu3
zs*GGgfopj&WMvHr%jW0&z{OSf0JE+<6O=~h=MS?7l1_ZgBLe1MtU4q}<8HC$1KF$n
z0htL$AzYdNp8ERx=AZR7KPe>uz>D6;=_K{5u)^%z<pcRkgtS9QNob4%!O!Z8Wp3>I
zW4b%&cpn^^CTS$0j&?WAw+&a29`^2Gln7DUX4uIfDy2FXNFmm)s_X0RgpCV=b^)Lc
zOnLHl$aYvr>H4tXWa`AS$8|-nM?bIUdSBGJ+a>#FpN?62#iJflJrIQ)<yvP>oeX>3
z>JqTZ7bL!1yd-UXR;k)>D}9c}a1LqZn}brE1|4cGbqBgALl*HUUCHBjl)C=Rd~qDI
z&yVTWoP)`+G$Q36;p?i;B<hJ|>9$Z2vlMejkJ0PpZSY;ubrP4Nr)o?c=!KhaLqm|f
zBtdnmf~znw-L5cRrn(*JMFtirE<N2;|0P`(w%R4hT1rbLAe<v)+~g3^FP1(4@^s!m
z(e=3!bvSD_=t9jP{qs3zgFozvI~VTyIChDaKrvb3!z2ykzvJz~3=G<<v<iDLdFgF=
zo}N{dc8AP*dc{yZY2ge;9DzkEqm^fYWSk-qpsQ19=A<bkr2?|Iv5gUVUUIihp0;|i
z1Rs3zTnGm%kmt(PDd+ZRbQBYU3W330RrcK;7Lz+-3zjF2>-<mY4w-QK;zwlJ1*Wzm
zFWa2mGqIB7Kc3_K%cOIP4v{H`MGHz<17CnkwHA~Xf&9g~n~ZbGYoXF&j}oMq5Jj7b
z0B*PI_bk!WZ6lOv{U19jwcft!B{`(cR*hAnFh<!KG(W<bFUj~FrYYqnR5ZA7c_ePT
zR2@=e<)7e$q?Q0`J)TkO<l~dY%AXFmD_%eM1ahqZ^Y=GZ1<6QT;Vmp>c~o7GF3h)^
z9|?A|9G9H$`ztT?zkExknNbe%KE!r>Yn@eJ{``ZYmRFr-j@0tWA?MZkl$9-H2rf5>
z$$7`49O$y9Zz)G^na75CK<OSdLF=&S?JOGbS{SX;_w%<+yYQEJjHl^I3_aA-MY>Eg
z{lHd~TgmH=Sf~8#Yf{gAio<SZn1)nNG#;s@o@di;E&brZ-=UVxm{BA1dEI$WYWMR1
zVTo|Q$*%T?{Y_%Fn{@7*qNPk?2#<=}a^2g-`lDU_-SgMOuO+r(xd2&l1zu2jd+<RB
zQzS|WT(AbMP4L8m@?h?-YpL<UFBsSg&wJJKba7zd2Xa1X)abI@s6G;OAcEYNuPbCo
z(incNeHbHJMk4j4V_yO%A_esX=egKXX3YJ)rX_}@jNiKvf1hb02ZsA^0nRErSEr+N
z-f?lNl#WugXASnD1(7n?xKG}U!TBU0|D38SSDq33ED$54_;D?a@Z|T3`PU~<=>&1o
z^wh4#O?-^^RH_YZi%&+nkID>p|DXBQI3Rr0j$!}rM=M~9zZ>e?A53KP6(}MthY{}3
zS+4@LR9Z&(Bhi@ow&)%Cd*;jeX2}%ZsK6NhlKjipR%N0*FC}n*arC(y>9_yyOmJfV
zeWqJT$8p1<Gg6N+s#0~K>&Y&R|MQ`dY^1XK>rY~S2lB}A2brPJ=sruesWdpI1Akq}
z&8z5F?|NLsh*JDCDb}C9%EN381HXJ}Kj+I2kpn2*{Uz84!QkB9LUcunai=gY_VD;2
zO%;?%XZuTxn)CEDKZ1d=5$boSypQ!w;vUx68BA)U`g9m2VK#mms3z4Rm;f8w4Z~}i
zFfvr1PsYhayw%<4*?D62M#x{hjPuD@oJRAz(pUA>awzIFlNKzT!*rnS@YojFEGIQR
zT9EoT@d>$~Z^(%4XbS_Bgi&Lwok_l1s+^y{4rc}%D=k-V=cwv6`gAhQ<0aD|b@b)X
zt0!ulQw8BhRk0`BB3I^$vJ-Z3;l)vYRaSycJr70Od&|RDO0FFU_|RVsbJ5#qK?=I*
zE*`^Yva!OGT9vjMz`~ccobk056K}usYYge+I=0JVxThJQO0%9Nfnm40ETq{k%gO*l
z$$AJmvMMT#1qlI2w;04EW5c#Wm`@QNiPf*p(LI7(FE1B(d7b-+E!2EF#hhYrzmSPo
z5~y>Vuj|fYd~~A8nKRYD<=ICD1W^E<+kSK21Zz!J^-X6+qg<HyE}NJWZH(TJ6_>pE
zgr3n4Ez;4LNU*GFZ{t_;cg>B_Rkqx=dv`Y-(yEV4nBX7kWt^sGpGG+-r4#Eak24z&
zuYRg!{;wfP?DY~Fd7cr+GQ^!ZvOz#Fw#)xNmjM}^Y&#2iL#GfqreiO={nn?Rq%RO&
zUZ^O_^Ud1KP^ehajWX-|omf2xur|pCNmrhkB2!ca4L|j%W%G?bi9qLS>*(M7iR>|7
zNIbV-CMmE54>I5R-MC#<6j4X4i(dpFL!ntPrO!|e=8!dC9odz-HmwRb<puIJ7X^gu
z4p3hZni+lE>8pt$+5Tu=skvOU&A=NWZp-X99ls16CgGR%X_ZxW@lyTcM`H_=l^s!p
zN0u`i$_DC98s`3{oA?)|iy`YVjw8-{_OlD}sCisUADn_xDZAhymT9z~4NoJ8gD%yA
ztK2-UsV}_YL2=eC`W!{jVYNGE7r}AiL26X9c{^alv=WIF(i-{?e$gpTPmMwnsO@BO
z(`k#*yif@u;l`7M@^EJ|qZLC+_9R)oFU0K$`xj6DuL=IpL7Qu2+Y6;y!IAVUqPH60
zREOBa)xE|lwC$i{kZFAI=;z(jYCU$hQz!&yd!@2VdVO2CNn%KNWylf>wu5C`sd+cL
z81;8z^)>St<L*r@U%Z!ZlGF*B9PI#8VD|#j&fhlz@BDF>nqsSMkU`zdo4H91QD-4j
zqrGm-jyTY{j{*sJIRKUjX?e-?SyNICV6z1p=Q2&8D@mPHC+H6nsNQNS8RvGd^P7{}
zc&$TjEU_~A6faTpB*ahsepYk%R-Jaj)uC=azE#XvKWsL@iLop0AW^xTfFR3i6_%T2
z6?Of7$^QH-Ma!)at%|E$P4G{kL*o+*qBDZM^t5pSgZz+1xtRhPFpaKH17A;Uc<$kC
zrdwv^)dRPgp1A-TbDqREdwzb7jk?$CYL$Jj5-BC74R^@azk<U2gZq|PFUe5j@XF?@
zp8`H_jhqcr2JL3)MnXu8AqU6nYy#mKH&`X_VwJrRy2pKMrtRqMss_^qmJm6B1F<&*
zZ9FWEK6U%RXobLS+fP_eG~7Rq*-S5>FaP;P!1Vh<Rw|SGgLNyFl~hRjY6x6!T8S+*
zNI-^9#i`8Evuxa*8Eoi&jA;`IPMAjBb8u)nw;Lcs0R55UgWH)t@NgYFvBpuf)VIo<
zNn*`}BLBMaHQvlJNeM2P>8^IUxQ&QkvrEuYZjrQeKx}Bp9cvisH63aFAhb*L3SOh;
z0Um36i)o;6knk1V^=2SH%mjIWgBAtKPdhunbss&4efROeJ9g%hNEGr<@`HkVx@+fW
zLn0AiWd{j8-8aETV$-$UkTPP3VHztH{}CkaQmu2KR!j+k@E=v)FBk>G!T13aEBngR
z7qEANxkBV1L-l&N8m1dp>X(yL+ng({;V&D5&56U9>K%|`t8hU_b_%BAldR7qY&xrZ
z4t+%51R2mcD5|z=`OkjelB#RG>sX>)dk*8T25U_f-+TC@|KSjI8w%VpPgV=2Nn>J$
zEtC`bho9$>#yn4>f`ce}UZ1nDF<G(;{+9{45V6~eKG;aY&95<VTBIQZyiMZ+A|U^x
z+Scz>%npJf5zAIEeWrY>-!ocVa_D~L_J&Yk40tMU2DNX*WIh58>e4IIRZogFofaKA
z$;1h({-#n1P%rN~fltk7v`;9pMiiu-SnhVBRy7<>Hg^QN^4Y%JMXJiKhr#tfz%k@q
z!#C85y91_R<uu*A#P`uk=NdK2M6!&^S(uu?XIK`tMPHIGV19=DJ0Zp~?hmx1jSV*Y
zV-lXV=DdCQxX$2N+C@;Y=D`HNO%AxIdoNo8HIgw~S(L_txr)m{X5Ddu1Fvb0kr;Z%
zmJCCp>SK@Gg$vUgpH6W2_0H7~FyS>$TB}~&+9`Mpb_YXW<Vky#gy|2}s)0;#ag=D&
zQsot=RWAHaIw$u`yOe=;s=Lt7^6GCItP_omLlm$wI68&P_6YV18jcc%*gI*XKtP;>
zfusi-BtWcaaMw1dgSnB>XqYHX8EjpYf83pWW##@S$;&E=QjG05nxDorkdXF&BStk)
zfp#Z{M^!J|HrHXY8<jRqQehP!4<6;(s@isfaBxfdKB{9ID50Bb@(qKVEYM6iY4R=p
zab7L^ae!>pT}xdcZQ6u0nd4e8emIU3LEnze77Ar_hF1?sA($m=WxK=X_~PPL^O5~B
zZbRDdVIdZkp5n`uf^(evG3G_pHON}q@sWJK-4=*I`QPcxJ*K}o^PLhnv1g{?W-V*B
zad0#a?as_Fu!6}p^le@-<>YoKYO=Y^d{!-i!G<UuVZlBUT|qCo2}~9GY_F^w=2YD*
zRzNDLB&Y|@#Lv)-iGsnDur3t>GJQU0k}N`i>R)KHJ}dw1ZGYh#&|<y+jy(8X!;#k$
zf2|Lo>-e$-B%3?1M0m#r#`S}ZP#!&Rb)A6{{|p=)Kj?XA8pRDgBCF8GPprXTe$C0|
z`C1b%DhZsDU!JMvK7hjUB;9oCB$ofUJpIC&{i4-1Us^p7FC5QkU%500=9plltIk0y
zM@aMkGa0B)@uRPEvqlOfZ)F=;k8xS|4*`LrGS|LrWN6y1Y;}ze0iU2%lxWSiJ2QT&
z&&eqgqxbTZ@36UvvZcnAk038YQAEd}z7q@E*#1*(8cmHjwpaF88MOexoe<6XL`CCJ
z2$HXa;jim{GUqIcd=AY&<xT2J&;m$NMqiu3K&7gBn>`x^c^oA;`afjSA8E(nIL%Um
zfPf$bCSrmsQO<T;6TMB(UGXcPH1&-_qKqhz7O1*oEgzY~G*q&HH_b0-!q4Sfi=tzU
z>>Z3FpbY<P5g;KFh-ATVLC!!BLaz{n8+J9V?-Cf=?!+Vgtig!Ih%<X9I-<Np1Yd(P
z(YS|Yn<Zz3*<etca2Qv7-|Gqf+<vOT2VQ*kj>;d}!Zi;~c@HKEj)jD<xOSbQ9R+0!
zH!%37>4?{+Vj(k%QxR708^T4@CRk}cAqWipHl(x&QLK-%#bTR(WwI{-hKrv^6q3yr
z!-y{-cmDMa)lcTLo~KU|6yy3}BAy(K{T@bL8-H+GLXQq*dNN6~7xWw(^c*%tsox0T
zJtr7aTr{NWu+}Xc6Li;0o;>~8)K<<+U7jH313%@7<-0DUg(2=GANIL`V#h#_ns6_I
zu(Xg}>nIbxX|tu-<LCp!&CTuyDRO9VMRO>KFFRG-Qlq}?L;k<;6F727g~z{}4=$>b
z*_KM|qB1~8o#r*@9b&$34G*o_xq6~jPtx7|IipAE=c(O*W(Yzp&KRH&UM7048VU){
zyhK-cqEQc)<TS8N@1Mz?d-a*bls@2grQ7$qB5yrQL#YYF;NUpl8%;Uqdp0wu8dIw;
zuSuj4?#z{-7!xCt+7^i_s;^sV)P=y<4&!KPITMr00-WdW*Z>r}V_A&)fdG(bsie;b
zG;UmdluF!r)#?qWo^T!i{)f1Cg}S&(ohH6Oc|@vLL>jG4yCB{#ACW45ISo@^QKD+0
z@d-IHD(i00>tB~23d0C$rWH-0rsLcmLo){U-kwEx2B+iLX>Iw7hNO1KWOi1|Bm6KY
z9$*Ge?W0N`i^Uw5B$Obz`xA2h+t1lPReWtw_yM~|$&)_Ibm%Uem54no>(&~Is8cN7
z<clf@C}ml3`Sg$Mf6rC3C^R2()}t+UObTW41kF9k^K)!<3?-pB<bt6CFVOI}Mpc>%
zIK|H%L+N~VD=#A|n!&}2VTMGwjLq#g_2El*7{c8htFc(NmDZBt-j4rrOMaLFT$cr!
z2eGYVKU5qB@x$Kh1s~`HGk9RN4PHBnBo0#yYVX=?N60&jpurjpk)(AT48&6-80_hK
zS7{qgm!II@)eIs29C=>AQl-<+#Q(2ZL2CJ>!FGd$8AsS8_BxQ+k5EgNQ$yG9-h5DQ
zyQ9ZRBcr(bB+*`o7N4Fbi<}vQsW1Qg@+!G_dyRaTFYn{^kqt)Id0Y4hXGVdyhqon;
zicd^UL+>W>xb88TJ>5`QPf5_1>{78y++dAmmQZrd<=7k$l&~T%>bUw9A&ux$#Lu>b
zOq`dCxzZs-#_2u&)+h0{wm4;Zw8cGsrrsxAm+fJ?Hzb`tMu{RCfv<t;oLSaKz7|QY
zG$WfHIDay48FtJtiq86CIZEg;?N8Cg3Ah~1U&-moZr>RlrQcY9Ln33Ae>4f?>&HMo
z3<DfzcMhm33&KdJR(}QJ?g77Ha+HHN)=?}HMZ$Cje6Vs|dJPazZBtV8?5t?<$Edj@
zxz6<k*;p-XE`c82t3J@`x3j4Yr$<`&Q2_x*AkvC@o1=T_3(wSR`9+02Ji{4cV9r2K
z#&#z7P!99_31;dNyGB>MW8i6y2#m$+%DbK%F)TXI`g`t>jxXalzHl1uC00#Ta6sS_
z_0Ws96y`%u6rQ-*tXvJBXY~d9Gp+H@MaNFq*$bux1M9YeTZQQC>~g(=aAGxS5PrEw
z#bS7fE=-^|fA}yQ_X))>fHu~=GXqYkr?fCyOfh`#E`oQ6#29Z{Lek|}YG0#7WZcE&
z{V9>FeDewXRE&TzDfrCuIn0b`i=yZIHvIFp;uS%ClV`jXYfIhwZ`zQ1kJdcXV&DN!
z{dmshI{m)E;KH%9^wg0%!`T$&?TOX0)Iohe6gg9&2PoBGf+#JK>7P37A?DGd(M3L)
zpPC-bXP|a6JR)`=%C+hZs_4V^m9LZ$;zuoGILZz+3ZEy_V$^o{uJILCB6*#aa|}T*
zlDhR2$tcgJF#+x5_bLDXpc@`ErneWKGo?K?L`g-@ZPU_0c0SII<NWx%+~4;6bzJ95
z_kq@UU%AJefb?~{rk^QsFu4{E1G}2t!&&SfBSmn+Gp~r`zLxknHYl@87}GA_>~voY
z`|z+@6ggsr@5SdLw;uWBmKjnm-#wbQD&`6Ry)d%6sD2O;V0cU&1nnGf?`KU%v<ZMh
zCpy5pBd60?tkh7AtPx8<5dD*$kI|nDOfHWgH>SY}AGsK=ckd?*bhCp#__YY4koDs3
z3wARKC7C`?FVW$*=#_SiH>L)KE%uO2KdL~s%@T$c(wG*BM{<uaZ{))PYNV2*CwW63
zIOIZ5^TMd|Ug(}KGqXeOVXrMpHPj!Roiq4$+VAt8iH{+NGqTcagtY2IxlMTVX24l{
zS}Az%-&CQOP4nNm`gIoi@v!7zBE;5`J`oVbQg2~%YcJ7=wv)Hxx}vBXjNH$5VADf?
zzqwMYQrFu;!;x9(Gym{xDtu7S@DML5*=!t<YYtw~6UmBd9oUuT-H_zz%U<0h-{u4j
zp^*NP_}jC|ALz}h^bA@O-KYlKtglvmRIzDxMAwd;3lcjO&^<55Vw|`KSDP6*_dmwF
z2fb&Cb7oq)M%Dc6L=lM9M8vu(uQ9%8r48B1A6M${>Qa_8@ltB?B)|biFR@+X62@ZE
zu%Q7(+oks%+wz6_fwL*nHtL>X<yg-HiP$gC&_&F|JTZK?>Z&`>GM(WEnr2`40ySWQ
zrGK!FWw)B96KNiS{ho>79oArdT4t3Du2XwWVB;>7QxDf(kB4ElFygu;(LDtI^$yHf
z=~|#?h)!lF3~DQWRPgKDcC*C<t`*xpH(zYr;wy^x<;B6(06jp$zioHqwK{Lj79W2;
zAHlL8&eF<_7O)55Y*#-PUmp7QUp_K*k{ZGgKudAcQtFNsR7I42l>StT1dNgaNdlUw
z6-BK}kLS}m8R1T(l1x(YlpgJ?ud!K2uUm)VVycl{<4}FFaR?55Kd%l-WgxNby}4{B
zK~L4u=1jY73Qh~8@WxwYlT@GnxJBa?p)T0pJ|r>3?A`atj2Fp4Y8{dt`)<6%%?Ehu
zQ0WbddLRNPNb$r!cz|U5np<OXU0n+6w-{~;;TCDKL*1;NtKAvm1bDTujg@H6my|PB
z%2jp<+lv14LWO#vz*&Vl97o=H(r$?m@6tN>v+`pE3gqb~ix_Sox9b@jU_PJF*Oi)!
zdrou_k)&=C6%v#xu&f5@V-KA-YVN3Pa!)Lkvl{k<7@in>0#p;~JL>BCjUoqBety6#
zEM<3G2U(K-E)y-d<KfA2W{RDkiCHBIFhR&6@&(QxadbjYF2M4-LMrj!Jzt_tfFog#
zQ?rK{fTZ`6hSo5<j7TSmC7oq+%Q7Na0(;3wNmxlFK3Bhn93X#s8Vq}(prGi0`h43N
z&rrZrZZnv*c|O#yiI&@h!WrTTzmmcOoh@sFJa|apSY2Gh=_A77^1eN=_6JVs(@UrJ
zp&}Pdj)dl;QZqmb#$zN0xctz;@VzNHv$WU<&R?qE3^fsPo1?~aS+uHahOO*C|M>?7
zvVRKgqP`x*n!9ku%@)_5(`LJP9Cxgj-8&OI1-{ebjDXOY3>LB=LLA=&{H9k`y`Swh
zb<pSxA!bY4<kqSw6FMWxjCwgt+9BGr(r6Cli@W!yjY4p=D|MuGgX><g?``CeB)(z!
z?kLs8`kJLJvaYec<!CmdKX32orj#kpj0rnqLGDuGw34q~nC^Kfux%Gwz74>jW^r!l
zMSb{NW0e-G;B!m!7^s;$iR4*!zyG|$4B9JY{w0U9Qy?h_A;){0=wsS!Ah6A44Zsr@
z)B!S`se&I$;jzEcV}&Ho*QCtn6-kp6x%8vmoB;iLXB~*~rOcFAd)_sqs#RjAm%x%~
z8r{9$v~+&op`ea%Jw_nBX7ncu1U;A%ruxdgw#~9q4;XN01`n^}{zoeVv0+vbH<vg{
z4HT<iZwo%Mq;x{}!C3uZXuZKf=|l8D=U0Su2HN(;Q@9Fyz*E8x(}<O2obNdl#n1bR
z#@aI)Em3nge_mw-^S>5E>nfuTbM0N)nbQq1_6|Jbu~58^rfrKvTXR4j#%r)Vl(!Sk
zIXz3!W%+DVxOPS&Oc^vdd=Zi2T*oysMG6uhd)Ja|nX%B}i$lrhu^Vr3bE$s?N$ra`
zQd535Cyas#`igfH<Ojo-UII9Mi5-`@6rCW;P{P`X`Xa)M6!6v|3}o>)4fwSKWH0-?
zfy%E;d-><^)ORTB!j#%6_8iL3&3;P%XX$m~27kd731hP3Cx|ruxzm9HKsk1k@AFG3
zYM3?=5l_3CqGNzr6J3y`v-UOWCk<&oh@a(|{09fHo<F?XctfE5HFKuw=?H@megG{4
z3-CYo?|-%*M^j?xcJOv{N*ClI|2vKUc2EX~au1UX1u^+Bt3jEgF`6qJG2d{GkZ`5S
z6~Lq8v)$`7qUXCjO0(3Lf40~yh?s<bZ+&$!x=|U+i)>LzWi`@%T<n2Z8yHDLlR5q<
zFKjgdFH#Q?FMExMFNAo~l}d^78{IV0uCg?|vmQT?VGd_!vufe!hM;w&GC1_^p<lFC
zV@FO~xQ3V@bP_STllD_|fIARN(rk6t7fTS<w*sOP@)cT)+9)7TCI5-%r16}k@1XJc
zE{!GfEi(}Lu^ikx8!UJTMYu%~dSVS~hfmhWq8|EAHV(xoPU7~mRP?G*bf<agc5mY=
zR}?b}75!$d$xA6!-TXbp%7DWRy+XW(b2?ec$6Tnm-yq_fux_TQumrX^stnIvq`9J6
zh-VWIxUPahcuvheGMmDzDq%5T0}}wFbL|vsBd=Kza`R;$7LIp7TE^onc@|L0t{h6o
zTN{1)cf!>+prM`PB+O?A?mr>_5*+g$RlK@6(ZN9QJDhnAT2wFRk2IhBWoO?E&+60`
zvy9XmrU<5Oy=^hi?fZS8B<@k)i=2GS5&Jxg?p4A7a0wx2Hc)Q+Ni$VLG+8I#@srvz
zs?w$C(kh9!QSX*i2I$hadB0SUtB)hacn{6*defbHIRejat_5pM69wfLJG0xSn^lS<
z@8jBtVD@Btd(ztwlk4a6-cu>v&nwRrA|U>4L7TT+{Qacx^Ma5T?0SWhJ%n)!q`ey1
zhqn-f0q?br)2$NlF(x7Xy#5^#3-9R$AoRL_ZAgrRKq<v;&&sKHDpQeEf|QbuM7j>v
zB;>K8(8E)PlvFhfnLQy?8xMO?Z*$U8(h}=^AgF!}ya|KMkxBs4y!!U~D`dah;i(0L
z*`h*8ErTMg2;D-TF!1=b9AcxB{d49S^@932=+ic)Auc64o>S;Ux1nn(A<@@N&sP&W
z`P^)8zdKDnjYIkC5F+Ll{w=2SGMxq;#<x-9uGNH%41!f)d!yXX$+@x;-!#_m3iDsR
zQL1!9d4L;pk#bn7CFq7l7RRm1tAs2vn+e!i-eR~+xOw4+0QD}w>%!P_!?94^6g{$=
zeB`y_H91OPhsJbo0YZV};Jjz}6~*+$*&E+MFaXKE-3(j61AIoR6xG@{QmC>clB!$M
ztIw)Z6Rx(j^-q6hLH1KTpS^|E4#vzD<!jLHgxk0Ki96yQIO)`Y#}D80fiQYbc5hmz
z<H1F7X|zx=v`Iw>th?4DOd*=;JV56>>N1(+*zZ;En@#%q?R{3KU~yo<J4>l0vuD}7
zrt~)GZxNnei^kh*)U$;_@qI?9Wf6Qfw1q@oVkFQe!tDSAqrMwyu)ZAt8&hT0tP1a#
zHPm7mtOf)N6mgFYmTV&`yfLW^J?CdJk<%f6AyS<%d19Ol4>YapeptcZY(XJv5%qZ2
zBlUD<7*P(Q&2mm7rYD^z)MZ+BibBv@9mEB%?Qp0eq&@jpOmG23SPTw(B12?H@o}p(
z-LL`GeMwlexj!CO9PG61Ja=~5+lUrZQoaxXS06acKI_AEtaWio-aN8yJm-0k5YV#B
zeGTPkh>g^#4R61A(#bc03Vk6YRXO06NZtXPnT*175tmLU`W<`aLE^02^kE3xDnjWB
zYgGlj`6k$W5cIkg;zch}w@zeMhQtXSks$Gw^@}oy`Cu4V$5&jj74P+PlYaun1iCjX
z8^~e)HD#p8jE-(r(kRJtwsg$|oR;t%4o3UVH9%6yKWMx7SA2!?coUT1D_>=|kVFk!
zPeIN^?%u=1=NZVes?f{o4k8R6kMHIu4E)2gspYp?z$5#3z~s#ZJZLNDxcPRyH(&x)
z*U5L&vN30x=h?vHc_Y7V`eQ4~^p!v4T#D4a?Tc6cNKbII#(rw~P+c;zSp+r)+nBI5
z6L98|4mq?vpx6*L|0w@->@1f{1+d2zRG*(Mag%fP5)3>v(M=UCB)JP<>xAEUK-;Y~
z5~(Sxy|Ncd0G$9!JHFTkh_Soe&LaKc_JcHrgj2gifGihdwio6O04BSWuZOI1Q?TO9
zt~d}hc!&ih;R3qjhVQ9Kl^$OBEA|__w|rAo$FW3#8Fl&v`lTrtqAC)t(y44q1qwq2
zaclS(;G@FR+Qpltxu)5@i2|1)LV`6^v3p19TD<oY`?tiibTR&0LSr_9HkK!0xAx;{
zbfTxOG0Gaeq4M<VPf<&E&vlN-GsH0oi*i#~g<=GISFstTe6_!IpE|SERcZP-a@g<L
zyUO2!m6<AmO&03YY$;s~>3ev9991!Pt08~7Eb?NRvhK=^oiMp?)uQSThX~wu33q3S
zGi?m4%X(@eK5(<<8oDJ<0jcP5v=aT%<~XDLom%{}eCHqA?oNiSv^HaSNt=Da^YO;O
zCknzShK!oi!gzqn6%OxoQh*Dr`65x9_zT7^RG!A#vU3CuGZ~-(MI8vboJ}VVV=pQK
zf-NYRU`FDW#FVe`>ko=($>nb!O<pea2H;z(aME(1ME=1o-|nP;_|JO3t^nlhW!D!M
z$dY}fJA!aNhCQX}$>)2;+?FJhYNu9hcQv6H+9{i+rhYKXKygsI`x$XZiUuwBHdSK`
zi`Rnr#+y+UUNq1J9AWUwp*uxDx-;RnI@HV5E-@TS4f{z7kP02IwSjRxh8xhS0V;De
z>Y!c1Cro#?jd!%PeDjKBC$a(I1w7p~BdTpj?k{HHq^7;iGha2%fG9H%Rop#<|G3;X
zS8GZ6H}SB*^%dJ2!Q9u6+KOIjPi-)x*A#C^d6_A21Y-3~WC%Ck(@*@T`WG|9p2;tE
zVsW%lsueMRLitsutSr`WQ#In5`d@Ty35S7{4HlTHCc|B<D)>vv2T^d@%8OeIjmHQL
zQN4bKvk0#AMa)RZ&UKg0gB3X!&%q!S@cel*RW3{DZh2TYa8&w8g!AFGN(c}THYejC
z#_h1~*p`+`K13{roB!YYVEg{$w@5-aT~9~Z(F@pe-HEP~K{WW(pv|q)^x|TdnyR$d
z^La+>?RFgK$oFHB%=V`sbPS{VxKKzMZ5+^_A{iI#YA$hT|8N?R9}M*9!hk?on=H=V
z?;gBn4z_5D*b6$hSi!4!^=n{4?S#EZNAFtsx<K=-<GEC-6(>zY8sHpdep3OiM)$`+
zmpA|X*z<0oZP?cS8(U_FJUTYz((>r_uS{gjQXfDNw-$3MEwi2zggvSPc5{p8?2&B$
z<`+TL_j;X`1kYQyzp58iFUt&4u{6`OSQQtvlw0K9icq*FL*>d~^QIKLtK?l0Vmvpa
z;d=848oqyAScxv<BtqFT{As!~zyn>SyWE5LaAwsiIMva?a7vt9pdkXl(1ee7=J(z6
zZA`TiG0_&15p1NXD8E*WAh=(^0W=&AuZ}g<>d}sS<25&gW<0C<9{t1~s6cCDbf$m#
zBoDZ*u~W)XR$M>Rlf)@gH0M4ZQ80VunF3t9ZT`+x5*1;Y#3HT_AuaT4VYat-aKZ*n
z(8>m|ETfXJF+&ITS?xU1v$Iw4AXggK*0ze$<?s|;06)PO+V6Tr{B*hvmsrM)b7Kfj
z0|rX(_EpvP)~Eyd_l?kku7uG}p&?^`U6euBHm&Qvvz)Tc67Tu-HfduqD{3s82Y)c;
zD!zw}*0;~O<(xvl%ZgQ!1^cQk<m}c`+uKvOXNfo>pE;vLXLRTBJ~v_m97FhKD&c5=
z2IiLN+%}$$e+7|k#5}=Jsn5T+6uI8-l-HAi4i?ZVo4;XKDS{6PWwsB%JfZ*-P7#>`
zk3TdEROSk}d&h%IwS+03QC~qrM5&OMYh+le&@*m!V(_3jr4Hon#sGubrn0C%4*`M_
zPrj3q10ty;@>=xW2*)E>y#;jmppeqDNl<<hy;-<UV{IwP#3Tzyb7q0!rDSyc>rTpA
z(q97qhrTgq49b`_(DQPIlUwUtcsZXd4s9v@_%r(A*O!%dU$5Kdw5JYJ&jekam(z1v
zWy8~8I_KyR9(X5xyMMyqVHol1DS?+Hvp1T%Ow)kre*_a2&PODnnxpL=s<0rjU?cxL
zp#}efL@0NlaMB}PGOIy^ETT8I%(};qj^~$5rHqeBzQth#njIfxvs341sOx3P|BbU%
zf?gnlgjpK&;9Y<dIfZUr)U9uO!W)|6uXaw&>a&^^1M1qTJ0eh0Yp#DFcycESgkk~Q
zX&=f%7WLil-{?3ORxpt;IJa$!j``Im2-Vj}n!^`#`ume!ELwt`_LZ6}K6&X_lAIXZ
zW|>s}gKC675-KgS>fU5gK4$<U1K-)G_bt23z=z7^&j0&h(49g4z3q#-erRzv{WyNY
z1uaHcc>*4LJjM?9FlGO*tey^0*skVTuwKqFgNhq-m$Wj$T-+!X;g?Y{bWEsoZ2pRJ
zHU2aoP!pvN-jG%=QSc9L!nOzyx<UJ1F^$ndGxzqXM0UUOTiRi~P_!$c;URUdz+hj(
z$JfUIW){j|;5@etNbo>0EqDF<n}3WI^T?dkF8@+>yXI7|hKDzM5fEF@?Kb@_Qg%eD
zD1MmQH@-&uyrwQf4n)I@P4~9z325D8iZjGCG=mdOAa$#*V9nD5gqpz7qi+cv{dOq6
zRbMeE=jz9^#^qaWw4Es*jUt@7cQp|1zrbI^wNhavGvuk6nS$!wfr%(O%x=0%zyBp2
z!?`w=oEJo+)OkHz)B-o79Y{Gb8mvhv@5!>*I1-E<bdJ3x=c|ZR-F%V`-&{4Q>f7>o
zBAZ|R=pc0jJv|JhyIIraQq36{!^u*nY>9tQvq^b#xv){!-8GVn-6~8PoqdR<#Dk%3
z3;inj0k?#aNd9N7jV&0Iz14m4jND+v7L(YUb19z*a`8^0KY)iCw*Q+5KpP27?5|-w
z)<zaYU1m9sG=N9OWpur4ThLrvdC&ihk_4q@H<>{n{7orhG_mVOCAUp2>=s;`W~Y|o
z?y<ajnJ6D%)&}X1x3wg^%dpLfv5m3~ZpV8ytz*DQ3Jd$Ov_P72^evn<O;fY1WvK?;
z5zOj<dYAcpq9w3wqZR+{H*=eb-ll>UyhibvscFQ0&Q#`LT<67N)q6*s6yt=q-ZoqR
zccgDlQ({Qz@Ios(bl;TqJ1eSM=<$4PzMqWsny-Uu$fM-2hMLdaj)?P);CivkAg&!W
z@Tt<8u-@YPb9eec=|0+Dxw%DT6^mRkMg5W%AC)h_k92#3{BK`a!se7Tc03;}t9rvb
z-xFi$=;s+(puGRgxav_<bEV7L3CVZ*W6&JT-(dlH3Fcbkjs6x*y?J;=4^3{1<Eyg~
z_OZ$o*ZA}5cVfj+w0hyR3reb$xQwgn+LYENxleT-d`+}wF%8*?Jc)v~hik&6ep;17
z6+$FKU!f+d5m&)ZdZZ$*b3Wh6_L9ulX)@*5!F5IU%=TPKbh)M&S-8xDQ2nCNziZnr
zJ(^*ZJKul~dZk^UKE65^DT?F9dt7ggf>3$F|7h5Hc<f>ry|)^r4=0Mo^f=_Myspx6
zzUZ9gaS!lN(QXU(m5%(igmYIg)&@;(R~q3EUO2Gys?g7(C7F<f?NABujR}p)P*ij)
z(`-gm?K??m_cv)cxJ@do*H##hHW;lIJNjTC$1~>AK<hG7Rw(ABO=392jo^aJ&2VG#
zf+6+I)cn^{2I;o5S<^JH`B%)+%al=Ie-<jY<%$aog`oj$<X1Ps+}o;wY+#js)(o`Y
zyFcHI-rX<21w<wXiYG=EZd^M$`)4&sjSKet8Hq7r%(DQnL}nm??;lAU)$6!o*HV`W
zziMr^gOS|_f1_fBs(Q=HB%WbhR%EaH$|dEVzDgZ>YUce@RnG!-{%!wAx{0XU42-WO
z5}6KZ25cO@5f~b0XlpG9NmKgn)Q-MbuR5-+d(6}tFDx#ZOVU%sroh$ZA46S#e61a)
zN_oFw2^he)m2<_wfa(9SPE3L32bfC(M-?<HVb97Y7g?^d8g$wTUQ9VkXSg51()7ep
z#*B#_4os9z)r!!uQs+Km@!X&Ja1zsKup!%Et7%0Yvl0N(iE32$dAv2y@8Eb<1W*5B
zocDiPdq`6wh<a+{#?|M!Q{vEB+cyXeB@nHr@+Q-}k&>Hq-14Z{uFKP-^the3<7Djq
z|6|K{uK`$UXR4Stigv><%wOT4nIM`wRI+=>bXH+B{b#&OVHEh`$ln5fzAh1;2;(&K
z{+F;zO!&*z`PArHCPUP;qBaGMO3RYZrq?giweJ%orS$pcqZy-bU@}j1kvJPE>rT$;
zdy&|BjtP&ja|NQ(5p$XF-0O6gila4);VBC_2m&mka$C|kV3<<(;pW?nS5rLt18KIC
zt6R8aN!qyQ<EwQj%qP^k9U0R>Ig^zJRa!|y)dFnL-3XOAyccEBvq5#EZ3lPZt*bIo
z8jL;d2b$$Qzf#12c)mC@$a)ZmGg!s_{{R-XCt7?9_~Re6q-@Ank^b@>a}P^`NQF=R
z^=WhdLJa@&64;6nk|MXhX%P64^XE~%GgvIde0@vyR2lpGGbI0%l3pfx_rBsc7UhnZ
z)OB1nFexSf4s)x$Px<hW)rDO8#a;JOKp=r*zx|2Q0&QPn<khlLN;As)CL_J#sfJgo
zs7GtcsUV2qpedX>&D-?@nv+)f5FxnzOs4}uU?m%YQPhAOrkb<j9Gelzh#2<PkWLVt
z5>oK>>Eh1_<u-wynZyIN8%Fy(SD_~YOgYB;G1pLAKv5pM6n%`e*E8$+n%*~1b0F0}
zf1oE3fmu($LiS}ROWt)do140HohxZO>#<^=BE|%HReUQ^2)~Jih#>W*dY1$*0wFsC
z@fQ|1H9UI1P>=Fh8Fr3R3cb*g4?$Pr|2W~`@0F;T?9)@1eG`_(@or6KYA^@(zBkfp
zkW<n)yG>~vX_c`Yd1UOg8QU8B)5l`ZJa|~Gp`-QI!}bd(Ye@XPdE90A!#)zPhwR#l
zKka^Hnzk=BpCa8bRFNQOI2GawY<vww9906$M<iW~T_M*KhjiuIEZC8XA%mnSgIs_0
zb7ia-jIHDuuU_rS^CN2V(p6BBEg%i<K(GyBCcxs0f|d4&s(LSDKoO}P9>pTL?DzHP
zdAllmB$~jyk(HP822aD~WJ-a084H(x4?MAbhxE?Y*IU&DtnJS&k|$-rvvU_<9$wm<
z5K-c0nj-tM=mzy!nF9lHCD-Py-RSx4W_S>mXCu!jc{lckOwK&u;gkt{sw(<23hVDR
zfp3x7iGC<}$3s)AlPzS7;sr^&&Hgo}SeBwnKLyafzw=sB<vaYUguoXPeUSqmW1nE&
z9BgHPF0bg3Usi9V(cmGYrk`m7yf0HASPX~YcrcI>e8}{-9H!ks4gXin5PP;X@3`L8
zt-0O9svg8enEeEBOKH$Y0cs6vjaWaoA;0Z=noc;Uyjmz5)$OgO-v19GHo~GaTXKEW
z%f^IV!S`4Kn)mmqd(4t4X{f`5#WR=03VuV1MYiKs>W^)gIbvjhC>4E=O)q0z0K2^n
z=F--n1K%*iW)?MkV#5NTbAFg((km-5!R<4wn}C}^YbjK6y+)*S0_wYHhJZiHAk-)S
z=yHcW>^~45w<_MLg#n%bW727*C7h%@yI(U`ObP#Jr3lyy#tD#`d$mCKxSWE^iJ}K6
z_yZgP>54TUf9GsDCo!D3TEvIsSugIG8>D2F2h}m?On<kNSQ>zNjGXTAeA45)@$KgN
zEG21N=9Fvk%zA3Brw+k2a^ok1*D%X@e_f54O|W?#wc%ivWVJFXux?ax49yLkp+tuh
zj3p^iNFV7n)0AO3u$|q#zHTlEA#j-2mLERTS<Q9Xr~WG=J*!e4o#{TsFI!gz!1M7L
zK!5hS7N1GoEzoiDH1e1S?AIId6K)qk&F0%qE^a`;<S_HP@fI*z(Fh@WY!Q#+TGd<S
zij1+*ig<yW)8B?~K^(g{g7Vfw{-s#LnyoW*SdoqDv4}tX7V2CIXs|kG1&M(0asQAy
zxuhgcw|(K^|FGZ!rk6KNO${STkv}gO%;3l8^R5q-kSM|#w<1;bqJ<WXus|3l2*P05
zioOQz7^Q*6`RyC3em1Sh(iEh}GE3Ij2_>yD;8y(`qJZQw_L8#Z-}5f!z(j$`?w70(
z@u?{rPjQqt%_BAtWL7;$l(wGx=R)>pGGu#-M?}<9qn2V6>OT|-wJ7YGwdcckQ6Hiy
z=Z_Hq>=$T;tVTnZXE<~JIqlAlInI5Ox4z(HTgG)7kn-K{g^a8tzwsg=Vpf{I;eII7
z;YaH@G2am8i|C%-&ae0vogjJ~0c-MlTGYt}WY6-b3i2K^V<6}iv$@sU>!wJj43>w}
za1jWRN2+9u2zmf@$^joE1#D#n>W@e6cz%4z%6T1Qu*eY*Y#Kr|v=k5-5dAZ=d{J*F
z8XXw7HJX9vG)eT6`TH%y&M=mbb@uw&&n3NKvB+>)*n0B52tH#suiD&W`#{jhO#aKM
z91mXuL&g?28~3&GH%;JN(8K{tJ|1r#nnT5YA8#U2Sy#xPM;-5MQR=ZY0`u-Ws0W0j
z`j1f9C3efc+}F^!NO528*wxC7)I6g;AYmM3hUPz$I;{*siitO?d?1lHKbSg|(aYM|
z-jN6okFu9+DuF>KoWf;i;3(AMk5{e2mVLY|LRU9#u|E#=1KE31Pi^o=Nx|<%-Bf&8
z_Uo`1DwLU7>@n^u8Vi-LX_8~-ih5A$h>8&=`|cE_jevG^n2>HnfJow^#n2OZKE|AD
zgLD5!y|0#4N3GZCT%9(b2<Ij=RYq){?!PIcVxWq;Jv3Q&x^ImSs(;;)aT@DR*Hp4Y
zRDKii$Oo8Dvgle&QaqPCOYlq4jbHykcI|Q<C>&|k?|m+LSm|vEc|jP=s7ytNz$!;b
zuayk}|2;^^RzRipUw+^!8$S^Xja8g~S8^E-BAX^2dIdwDMaNk!Yj6a&MVVrNnU#k`
z9I(Hqz$)ZFDVIUw1;S0wpIwDFmVWZKtIOq9C-_5K1O4J6ZKAg^==KHwXS@`q-|@|}
zjv?ptHgQ(W3@8^gIDS0i`!0_U&=wQXtyaySOh|>{o9Q0BM^}HuXuwRT$iUzhqe+3o
zTwKX~ZqE3P&DFat>IP<sWRNbqI66OTdP7HK2n~9(qQBZW?AHT3iMS(AB9JbOthnNg
zwisb*<;txq8{0`FmLPDdRo1=_y7w7G$LUWfsiui#BXOM%v2?I$7Y4a~eLx1?{9<un
zR~oAyX<y@{46${Z-+>&Unu!DQ<4$^ca8G!lZOoGlOoZoP<qcVbu_l8?J_FUx$*Z)D
zCjQs%!NerrvfMERyF#e#Cc;7tiUxGB1)c$TFF)Mj1H%Y8kP9eGZ;@VBkbP~@oSxA@
z!pr6UsGX@D+7(+V;mrG;@fW(Q%s8$&K*!BzlD#645<-a{<Is~X;pBwgzLEuHpr5Jd
zMFv;M(KM7eN%tBUF6mru63{?&euK3#vgO*)g4>vy3YziMZU7~F{&=MKWo7v>*cG%V
ze}FJq%~p2oFmaM#xpFfj;JzlU80P=#6eWhTV=`9HBeeAk&%}Az19bx6JfCYR2o*+;
zP3q3)y<<VPgE{47&mOOf4Ahmub6pR#?Y)jq>5XnXux3e)vIY3=7X}4~=Zrd2(7QD<
z&t{=rvo8=!`aI?6SK)sq<Fmr1GX`3k<e&Q7g9qCq$(OjSxyny%f{nrfKJOl9NOSvb
z`8M&layiicqiYPlg?ohVUp#{Zdwit3_yoBq5(NoN{=TatjJRS}Be9VMr1;EbWkGCT
z_Pe00Ts*TE*kn%TZL}jNMDyq|tUcL8BlHgCS6oc0B5JvuDbQl{<%Vm2ko@H{vg6P1
z(b>UWl$_00zFFh9IWAaFpt<tAqIeZmHh=Jo;ZyNb#=aYpO=i&5AakDZgF|k34?&n&
zJO(`kJL)!5-^i*UP#%kl;|0AhW@#qkjHW3z$#<&;7SwndHh#a{F$y*@Av2a{U-S7J
zLZ@O`ibs&hysAjvZ3j)AhG6N4qHEcCr5x~vZy2Qol_R0%bwu{vrQ~QB{#2Us0Y6{b
zch$gWo%d8a!aWt6-q9iuWt1)M=^!F5%ML>S%CD2U^UTC+U@Dx*?JRb7n>cWrarqY*
zhbLhNp@!i<0+vRdLG{SXh69;ZQX4{aIyDjVI%V{Cf(9oN0hF{ibd{+b@H+Ygd1J7#
z9vT3wl5k8ca5DX(%RgRACuQFH>$dH2VZf31Lbs2hk;lTI+J$=G-)asw%+SB2&yM*E
zG%G%Mtsln8ZolT_E;~ylHO8J3P1lkxz@!6d_?FP3d#Jie^v6+aGEIoy^#_sFEr6-y
z;yvPd4i)Akfp>8JVIESX_dbFA<}EM{DMaE|J8!R|YK&gX<T52u+!oOscw?tRWiwYI
z4wiKvas_z9MfOJ9dY8IV9sLbF(@-7#Zn1mkwpBS5RzXpzG17CdHO_TA`lXa>^^D%R
z3fCCZsMNLbzC#5tr2r;mn<_b4Hzih|&4*l2pNA{R0E<4F2mVaiKm%kcZb@}Uk4De@
z;p9RORR(kPblauCH~N)LrrsB~TE|{Q7;K1&3;M9lQnvM0QM<rN(z16qi^QDLyitfZ
zw5T0NlqWR?Re;+j6EjW|q?%KPF?kh}_M4yJ4X98J)PLMEpoo9duZ^q=7&58{#RX7{
zGm#llWaq_M;t3-D{U*MM6#Y)4!*%hLAc$=p%fL${bxkA!*LU8}aIp(d^~*x6apUf$
zFk{?vTH;atFuLMhBr)MQv!Ev-XdEw0^Qbh|WfRJ<)<vg?Lscq2&yYr^*6vud_Y3P}
zcM%|GmnN^bAVEgP@(it61@?BKRxyy+44G<AkHw^Jb<NP``Bu0^1~BE2F)TodL#p@f
zS%Tb?IX-KZm9CCNPx`JZ^p2V;6A=^$fq2@pEwxt{6}Xj$3?}QP5RMaRHDFM)s)HF!
z6a|x$?z7?x*oh3h9Htg4_Pq(uy&mT-Vj6ZAM>*4nCR_zY9U-5W`QLk%?W}U2aW|rv
zJsfeKRgELsVwZg+A&2?#p}zmbp<Xh8wwQk%rFRC*39^0%U5^`3DpjZ}MK%_w)hVgN
z2nu_oHGi1KwA0tC$4EXc{g<<~$fR6|Q7f`-*+v67+q;yI^Gz7h^6AhV6*_<DqDwXZ
zX&V0m%AQt(&sTGDx6M@_RMN`-dSJ0hv;T_CTp6ZNeMJi+Ta!~DZwH-9K{AsjUO4us
zx`fIFJ>mvQ)GvRl2Yz+BY4~Hq(M<_M$whl}y|2Zs1DQFjaiC8umSZUX8YO006#YOf
zp<M0$ee7GUe-LFtM3hyOo7JUPj>_ivC@H<AP+Gu7tzyb37Buzi5M4;Dj{Tn$OYQc-
zX`GQmtg%beipCj_A&Y^*TJ~k0oMB*!GJj+-gG=qTf5xC(fCW~~omQjv@sNdS0dj~>
zNW)>l)3%0Y8``EhA?!U>i{YPNxLfS<%l=JGp8AG!WZ3^y2j&j5EtPpnaQlgS?7E8-
z`V&kxkz{$PzvOe}wRt#Y9w~|$(<$1NRS$JKrJ_;Cgv*uq#%XZV{0|RS==s4KfE?eu
z7cDo+K(C34`)UsI$)h0<8xK)*KDz^gk(()?Y88w%Ft;rvj=PgEa?M}dJFrF8@WtGh
zq_XGW3jj#m6A}s!BK*G3xVBWqA{08()?~385oNOK2xIC#1l;&*=WGc^KV3JqdTatc
zwLO(imyb*2<Z(Mf6j0Xb#`qD_DL6`|4D)02pou)rMB(pAdpcN!o3r*&8OuK}eS3Lg
z?!?wb+F@yx1RpU42z+{daNhxR<zi(61)1m7*o7p0B{X<M?%it`P!&Tp&R&^=*<Pa(
zPD~)h#Y`w0bg)EkT}%*yq_?bo>@V=;2pLU5Kt=QjH(!a1W6E&bA(&rPV%WCGX9#(y
z)$%P(=S+X2rMzRH`&%q;5i{gkHbrsm!`VIx%@?WImNhZeNIeh-W)n7t<yJ=OmgFIq
z)7XKHH+#s(T8-jY(Ffk4B=U4^cCzMAtF*8%1-Ka1@1S1}^UYjV^(mm*CR`xI^gOo3
z8p~@k*izSOl#%zX%svKjSaXijeL`xSv@dEQ!$wNti2jLDtelm`XesDB2@I`SRGwH8
zvTEUx%iXm{qJ1W<;=RA?R^g;DxY<tvYcq1|Jz3^IpLbO+RJc>rl&iqwdob6@v<=SA
z#o=;_GKwvycpkp8I=u`Y@MzBEBKiH3U_2KHnN%b<9eSia^i@)55&0c4ApqO#mSq==
zVr`3D?ZQ~|`kxWk$s~7D%?4=lto+OMD>&7RL?5xo>60rGiGb5PUU=EkooLHlG?hyN
z7Q%|G3Y`+K8^tovuQXy4$9Gz{I@jpl?kH_&{$j`JD&fO_D@<KHOK?cWJmt9aXCsQN
zS%Wdu7Z$Ez%{G^JPGW}qhvV^o41wA7fM_Z=&j{L_(4b-6FTj8%n;XJddX&W6r|~EU
zysGZeaNY+Rq*p$S_{cP)rx6yv4pG<$1@f|t$Hu^7l`SCxN!Y7zPSQhpNK!6>Rw^R?
z4tRB5afF(B%F6L4u)3k+^ojl&+^rL(`p;+Ih1=I3(o?x9FmV1CSegR~Pz!U3w3{dT
zLi~#6VMYLDrv!cLjTsPwvbXeydNZ_<k<$jjyJm(bT+S?HwgY;wBCdbRl+3`Q7C!Dp
z<Jq9GpIs`lJRNgpcQb>jEr>hg+$5}l>yrAlwB*`zNGakn{MXK)kcfzpqpMFn)*y)F
zs%GjP%vj|BeLT`k#(x#C-)d3^s16Uc<8|%DLHQLvU^|)a#d=6p0(ve2FCdFj6#-rT
z@Ni15N`JSyoP}VGP`%IpmTcOUAZm5qz1eWd<U7>5r0$$9YSHS6s;GKjng|`sOaVEm
zw~XUuoG=+t7$RL2?z2Is!oBzi#7fE0#g8Lw0RbG{%f>Y`m|mngHxHa<dCj@Kt${tK
z!+8dxy&zca(ydcvfB<-BawV%3CVEL0DR-M{_~K6f*i%Px-qVt^@D6fN0>p8p?@8%H
zejP~g*Rd|a(I^Oe+Tf{)x5AhD#k=HKJtx!J`tG&r=m_1wX-ZN`07*K>vzm~GGbQ^i
zG7;xQLFkBfn3U0iOA~c%24+r#(zG3KG=vl>avfz!ZR{c=Pd8RfK;iU4d`>Qw;%i}4
z4(6WzBfiWhP#l(30QrTS31?)p__XS0M#O@7zvOHjYG~<0Sa*5_#cyx-?@FksSfz@M
zsHG?8L(yNI>7A(X%yr*ORuae*NYE0gIqMXfe&bdNLYK}pdQz;-FL3Uxft|tUn9*a$
zr>?boh=29?2DTI9G1Ouj#05aXQ)=ud_V!@mvh8Cc@|n*<u6$5;2rC9BirC@>gx69!
zXq2~{rK@cT41cvuOZ(_Z&t{!C|IgeQ2_{4I*{`cpV;eiC#Z_1O<5i)Se^6>#L=Ge4
z)C4Z(pULdUaKJ<l{J4fqh(J;D#~CoUjr^}Z@Ep8)%~M`^#2!h@<_PZeOAX#He__KI
zHdr436#jSmO?4!QR7pZ+z72wI>4_MZ`##mN*+1wPGgWiAxJG@%@5ZhG;V7L3!}4mw
zyx{R%I2AYHBEH@Yo{RDNQGcQQGE-2$%4#y!0p_>i{h{u>7*#~kc=jMSF>uryPmd8?
z*4E%NQB~&ze{(%Qv9d#x%&PZ+rJn_-`@X>h(lZ+LNoy9C`V#G(mriwAmU?)B1mqVd
z%b%K~TCB-6pF*@;MrF@`?SGuj|CjV~++0YQm<@~olk6TjOKAh?XB(T0Vd?csLe8()
zFc+d84&BB5(par)1Fk1L=8faG$3mo{*3U-r6|Gbai<L$=v$=dgp~czjSa@(9eHT8-
z6|U0{ihgopiaGAv_@s9G+JOn1Npf@Zf&OXRB-_YXTC-{dH67*ktkh4|7)qU(2Y|XH
z?ud-b6n3eR25O^m4MU!GggE$h_S8@9Ap^Mhy$TOxO|P)1prL)&;_E4gp&FsF0|Mgy
zQR=w=o(2{t_bQfK7K30Y-P)S2OTY_^#?&FuN^67*P_n%(ONzfGiGYY|qkmoX<R*l!
z$YMCvbORavWLc|<=)wh*aH|nbmS0D)@c(aP%OAvI4<)flA{zqGp<qJF$BKEDeR)2d
ze8&boGI$F$<K~4G%0aATncXog1Gmnb&dh%)ifuON)GiH~%9ySDCXzLuaC$YxJCkp7
z-^;31wj80*9b@~U-ruUbc8;W9A<dWKQ*CY0`Y(3l>&*GZ7%Lg{lu;3f#xzWTv@$q5
z6*M(H3@Dq%)DQlX%zx8RY<QdIoO7cJ=ZrnYlxqS^t`b4zcghPuOJA!ki}CBpEz*9)
zk9%$+TsjYYz>boWcjj7u$iu~YPpPhh)x?sbqNnnO6CLozKjt{hgc7J>3OoItcl`~$
z!FZ9KDEKSxt}{)wg4f-4+3qQGhGy1bX|3{<-yCLKkZ=~#J0~{qR6*wr<(EAVXlll2
z!tA!1e?BDkDK8yMcF7awT;Egrkd7(Nn7U{_Jt7T6UfswCRo57*3ZNjr9`HF8Q*?Nv
z1g+~4YvJ&i_z9zA{0c@oJkzBDyj1^#LJHaj8*6#t)m(Pza@Y>;<F#JjF*S1K6zcLu
zN)&W?kTQl*)#6@Sk72p2khwx+AD0q9Mm+K<gNGKH7uVwvDKm8RWQiU+Cj`F>?!CZR
zHY&YWC)!mLi9fJ*x)5X6zRQl8EFis_dgITGZR^H#*KLRbzCo%{b=cZvjATnqL&<la
zz@R3A{|i~lWd)>c*FQo{->B6zeOgC6wj>VOf_7*Lok9X)2FlXRwC!~97D@40hCY}L
zw5bm7-mga;3&uDHza~C3@N^M|o@Ip6W~$}>6BZaWTl9!gE@S`NY1-l0H1p=@Z44V1
zu)W$C${Ps(V+`=Ly3hVOjx;R#3cnX8f+#zLgO|_=*7+CoW0&5OB1Vy#I7&ha`B0dS
z%{i~}5Mz8M@Vav$Nl2L*v@aq<_~RDVRjwi7@z}W~GB58x-EC*PlyJruRm29&Ip+>B
z?x~_1`>J#ack%Z2@=qSe*Y0m8bKN!3L+8c8(o=x-x*;{>gmkF&?!JU*0jPm>n|pvU
zJ^s~=h-69==5<?dtBb*OMD-Z2*pYg(e<IQ%f?l1q+}h6YIdU?yqbkS=y&Auhy5|Y_
z9fs6lN`?2s8TRoYMMb&siLG*gJM4BXqX+S`%<I&xR#Kl)WN0(oG4e(!kasm}bb=#k
zscm^RlLgS2Il6(hlc=#;#ActFo_YU#vCJmSHD*;)i$$-q5*G=^Z+b$0p}zA|y~;dx
zep_(?!u$IyNIqJ+s~?onmn{l>n--e#$tYuMh0~y6EUR><f_#8?4DCE+i1uL7wLP9W
zb^pv2EAT*B04tTk%6sS+VcIj_YS}^;ep&YBXbmZTFo(d;1{Amb{G)Og!tPA_igc+u
z;ACrJmj!PaKWHsDE$fm$Y2Gvkmt8a6HO;%@d{@mQ0vpkRyY!8kgMnVPvJIK)51_b^
z*YR$sQ#(aOIKP*G%7szSWKiY4Z_`=cdQ*|!`6mh&QenH)W_xRrGrzq{?;aw?k?nb3
z*3S4P#VPR<OY10+)ws;^67;3uHxzC*JV){W8|)K9ugYz43Sv5h$NOfsevxXRU+t@|
zlGw?L-o0|Mi_NO^->GiUsCz-#p!a#9XT&><Hcn-Y6<Eb%j9<oMu?3mk`CUSeM}hMG
z>Qik@iRX^~Xup`_T|Dg`|Dj4aoO$(^QPW>m6~t>v7Jl3!Ht{^19)p;OR3cQ3ny9z&
zMupRbKvf#fJag<PY?;1d5j&WUz>;A%O8pJBf3Yq7WK**Y`T6gW-LwVC#c@(8I=jg9
z@b{!f59MCGfdu-|=oz4H|AF$Vi03XSE(MQAzeOFENcyl!5Oa0J9ssEw5cvqMQ#M)o
z$^S*tWu9A$3u1#4w$I~e0cdH#9ovGJ9Lb0QXVSGzjp#ih@QTo3L{j_ydaqNt_l;#k
zC|zbZTG=tZw^N2hE92lXWRCW0e1-0A2UNhZW-icFV0Ky;r4)#A->KTYc?rs34%3Tx
zSbdR#J4%#}oQl8Z%B*Ay0LUV0aJ6g#5riq3@0DJvuQ0Gn3-=Z82cE6t%mu!cb%wqB
z@k{%@!{}%fq9!S6Lg;(bNl@dBZvmmtDb+ev&Z$_3mqMY*lhAf?pD#6~Ij5oAo#+Z1
zfcbKC{+Ag+YI?C^Gl(=7KOy&HE6_ttgezQN^js-PO2t}7O&d*hZ1_@MJqo{~ZgCyf
zC&Y3$QLr<%M_yYYgcaG3)mgCdOvTdqH2WoWPKtNmSik@NJeylgjqm1Y5N<ASBX!Pd
zci=<e!+VwqJ=3kFUNOxMtdjwkhZn4oK+Fpf;4-%VE!7>yjna;#VzEF<AXbezL9!gU
z&Zt?a#hVjnc%%Z5yvopNcmKn@DX|z*W>aBT05vj|UwC9irAVGgsL`oeALX|@%!XZp
z$qAH|(}!W68-pb%{nfWnC2n-3PlKZS7`L?er@5^_2HJ(L`Z~VKEA7g7jD$JASJAYK
z6durMaDCX&gde4={If@86EKGJ{7t!QzKhK64F+akGobz{htHLHOG`uClU9BkrpWy{
zbc*Xm=PYBFMd1@XUm1X4tiKxLT!JYsAbb{)V4X_T&i9SVKo=o*0oMg8`_?~>$8{1Y
z>OLZTIGMTZ8s6`7V>Qd=+t+dVhW-f`reJ49MIPu&(c-bFqGEPzS%@%9LSdmm<<_2m
zEHC^20tNY~{>Mj4^`Y{HYo(eT2Cn4Xkk_c{2w@J-0by+V4}0`ZCNisSAa4oOs?=X_
zB+3yR0YU=2oi?G;YfGQKS3HiUsI?EB!<4-*X~@N7V}(!NEpJUHR%`423;r|6nME~Z
z9&JLVXxXiP@2j8*&4lv5lqu5qt`lNavWIT9Ve<Vyx<FmUWQ6wCz+}-RrtzYqquR(g
zhxdNXTm!NByH{@xHV>W3?(1-Gw*|GoT^gb2nt|025~9%CddGxnZu$y6hB@czLBF$w
zQZ9b)JLW?&NBpd|RM{}`hyckHijG{CE8Zz&QzkbEtW_T0scJ8ql}N+-hJPESdWk;t
zfDLldDb;Vz1N0<?jV^7R3<e=Qs#4ONOtRr7c$l=U1nS714^9|EA8L+aJ){*kSm}f}
zmJ=Q(4KogtN&I8D;vp(7BXJI_MS2++wJesJ2S5Krakivv^6Rh(KezH%w=9t%nMsxO
z!!|2c@`PCE@bYXQnmJpbWTavT>%fGCdE{=rD4pWh`*v82j9vi5UiQ)~fIFW47Yfgg
zw7cKt)DromEMHU3U1o&|;I+qRg)?wHjr=yNi#_!ZfLORB&#;}(Rj2e**U#pvyx{IR
zo1ewTi{q%XPpytk<q;lG3?@E(coH7c?3WqZ{zo$;I)^jJ-!-4$Vsw78+Z&j8sV-7V
zgP}T-%ES_!uS=Nfbyr4d;THLR9RS>$3wTVfc6NZwU$_v7k0AVk%ksAlH=5E|K&ZrL
zf-G#0>369^KByV3FoG&GL`5Fi$8!%f<C2YtLj@To5`%%3o0{+hd)~D`6RJ#LukcT;
zT5FFvdH6dCS`cGIlT<NRw;7_SF2CCf&S*rAk+~ElYlr`|*l?$Krt`NP3b)kj*`oNV
z_pI>Nc94;s@(0U$?VMtN=k+Ja-%66sYP*v19=L%Dxo;D!pzE>NNvn)tJl;9dX5+d@
z@I*`-B>YX&i69G3zX{mivoVCmQhK81XXfUb%pxAt*sK@+X^9P#E0k)Z3#Y5+HZ7wB
z;ec>m;(Y>5E&SWwZmwvOTV($n5WN)fKzp4g4FY5RF9jMzh<|5`=z!YY4}-vKh3mGc
zQ=Id~&B%LV&Zuub6+uGpgM6dttP4m*9cp_X$SdeBfDmV$(epd1V-s6c`k$(P{%6e3
z5Z%sYh481z{su!NuJLtk!VGEn{st5@Ev(a}t;9JibKqpYh?;t;V)+xjtF_pU$v}c>
z(G8w=RQz4#QFR5YwyTRzYu30tC{|S*amO?r<0);3PXp~vUb3?pTFxv8@}-sKEBg6Q
zC}0tXUuh`Nz_Hc8%K4spT4wqhv8r^RtCn@vzT$x*$*EW9lqvcU@}1aibG7_+E=5dU
zA}~V9K)8PAx<0L_4k9m0PuXlzdXdKHH|Mhc<citc_x16BCA$3?dI`F!_WcSJ>(BQ5
z6mGb)0OM8GZ)qn?fEmo2<#}Q>fhDttD~oFc<C*aLpAr>%8>Lv9>4-JTtk-EgF^|Aa
z;0MKjVWG+<-kSP+Z-p)~#M5uB{}QneL#?iq7-OV1-x(Zv--&bYCZF+6BZ;xYNw!*g
z-D!B9Go!I8U>~oFMxPK_oVOW1`V7J})uDN1nqWW?(Bgc_`&xTc>lvFctSKV(a4lY|
zjT{s=ii;X#d(+b&vWJaY7I!SC`G&Zw(0oEe%DOB%aj^Zlp%l1OGbmfU>Gasl1PAOx
zTL7jH6|`$Mb}U|CZ6AlDrZX$XI$yy;MWko#k9*j-HbUmr1jYyM)FAm|{M$#)bU)?Y
z)@?F^vpAPsULbF>Tre7FnC@W#9h_bl`G1{X&)f`@dxVz|mzY&h*l=?6^qICDk1Tn#
z;YWE`u*Y^H9|5&#l^4mPrt~k9SzE?H;RXKMsy*AnebY7ZL#>t70pzI}qrj}YXb-bY
z9~<qT>u<%DL3U#;vbn}zLELD+L_(2g|31wC<_@CzIJ>wtt>{)K#${B4;)pNWk`F@n
z*--DIW!C=8$8SUNwNspJ;EEhbj~Im0t_0`^v#A)D*n~R@Oo_g<xV*LI#y<?F<iG=p
z?h3=HvQF{n_qV^&WBKF?AN%bW8bq@9Ye6!eiIqjLu1o7c8Hb-XQ)>1u49-hsSR0Z)
zWqUSd9NvFYYT3cn`$#0uJs7zrh&wVAM9iQNnN&9a#&pq?bN6IAs%iSQ=eWkA)qjus
z+*2jfRPrqBV><joLj{BmCt+L=6F7yq=+K%7)Pnx$neRldI6t(gzX+_~xQb)EO$K=1
zM(|VJsse=pQu^KgFd-mNw=*J;qENO^XGf+R1G^aHRH${5zbe`Xtn-3?un=I^g{(7R
zuIw*D^3_WUx;Pf1-zCPUVOo@RmEbS!uj>)DhYpfg^!`j!w8{fc>yv@Ai4Oo-KUbMl
z#f_ag6X+S7`o|(6+YebaF=(fSWG3ONAHpoWV1V~r4v~GFD&0Bfk|(mhix&-@qVNOW
zdB{*SYxv0v^~dZqpm_2bK~lpT{wZowIdOx{>qEvha!XK#{56u=lk1L6ngE=nQ1c4r
zwkvs8Y06rqo+zF7@*4Vp{_5zqfRNi<bAw@}aB#?By}1#RI{am&b(RahzPI<Z_S8O;
zBqqb{Zd$$DkRJTTS;ywS;GQHJrbF|xhmts;uYxQ|8<#DJzPiLm`2Qf;<=!1TuGQ?@
z7=9+*%qBm6$RIufuwj>9Px4)Sds~yCYymnedy)@o-}lDviTw*DZ?I9c(4{Qlt|SH?
zxyQZzDWEa!csq{pJ4#vtan#9Nt9n@0I;xZQr?b6In>uDwCj+J=S7p!inBM-AZKQ#e
zL{(IGW=Ma00*~;<3H&{a^nrkdcKoM_SbVVv<v;b=V@c@-nM9cz(n&x&HenY=!7(zP
zm5x~Z^0hEO&E1WlKWj$_6+Jv;d=Sg>WuHa{WQT#00lNL(2D*HwHOIxOGG5Mb$EaJM
z*L>ER9p35Tj2`a3wbZro@LJpV!?<X*9F>EB#+ZAM^fV<(yaPwE>@1dh*8m4td*+r{
z`^sv$$<#*fxzQ(CV2Hb}@rtK8IOmFF`r!6c)qh%dZJ{W4o4q639(YOsO{f9|nf`YY
zNOqgIb|lp7n#Eh7>0NbsU3R;hTCiLnf07O#MsMJ`9Glu(Z<mO!&iMI$PW&OFfW}?%
zb;mEhDB@}e<O_Di4{G<T+00;>fv{MqNh4M&GZFs<qXh1Ak{B{eEY`pP2qv!u<_co^
z7vRxEp;?Ev^4LfnCmAiSh1MJE^(iCwx3aqtF8o#y*m^=v?)gylOd#szH4#te>ruxh
zaZ$n%nszK=`Z!PB^iV|!9<(f$o)!8zP9H7e&#aHDWx5*l&if$Y(AuZ``<@yiMjR+%
zb`15;GG>n1*gj*#h*OydpLNj9S1*f^^+FpLqshRxpb!{9ZBkncT&?3wrB}*kQUS5(
zVWmJo${GhsT<eSgPe$W=^>(*Xo*@SV5WDX3k|UDxf6tMPeDJE~9HUwA;v1TDFVT*~
zg){8^Ly#!Z)`g3f?W$e2ZQHhY*|u%lwr$(CZQI7%t=sue@7;4-CtE94E91)%GiGMa
zHO6Ar92l))wC<<BxlX;{g;=Eoqags2rM{3#-_{~oArSI6GuX;<DNmYOt<9n-!&8KK
zE4&{?S{MUzl<~6p#gUl0cp3|1?*l-B8qb3XO*{_aGNp?Yws~vLK*qj!J2h2zNJCh}
zPx=ZJ82Ac1#?P^Xq;Nnq+3_!-val0h_ybRkE%>*lDU>WJh;gm&;+=W&&l3qFwmHE^
zjnhLLQKX<_<v>?=4Fbpy`>5^_59gFj<=r=c;?>RV3J}|hDhHE8KFndaFk`VVE&|f|
zM)wrC(I?D08I+)VGfjOlW^zKuk9AvwXcZ%(o7SsKX#&SpX2o*lpWH|ZRox((ZiK1c
zVYFl`6oZ^#U{B;$EEpWbAn^*;QEHv?SmrtJE4_Tmd8l~?D5E+2#yrjlXpOX0R0d#}
z*SR=UXn_H*GER~)#ic+_lr47pf!d-aC-6si5Fq96DMHzcW~wpTmvsGQ8wjmVr}=e^
z;K-};lLv2AHR#&<*fP7-$*?BmXa;1+*LIO7KX@cCTk^GQe;<(oCI0bUPlSYl*VW;E
zMQ>~90z}+JKy+O8dN=_ZUheHqo>tW}DuK6%Gy{U4*e87(HTsCq5UCi48lD?;**wwu
zEPTP|vd1)3Hys=Zr(-~=gn78073~l-%AX9CL{Qu!Y?3vzOnDdreyH&fpQ#j14uik)
zhkJ4T_R#TUiJ~P~9({J(2Qr3Q0zu%RH6rK|`A@vZKhaLxg`fI%_pk<3Bt(SWx_=vK
z^r#QoqIe2348*D)qXbb*gjA1^1=w$uRRCMhMBXhW(6~8eWc?dm+cd_EUj%Tr6b<)k
z5|wVL#4wu%O2`{}07LAq5(YMINj~b@x3u}HVSF%2(oS#3hq%T)4War@lHTBB=DK#*
z&#9E8?>QOZw~PaFYF2+ZQta5)OZmb1jfG5wtvB1c)ECj_=Lu7;wR=jKF)~A^v~uv<
z616p9=y~&sLAeXt<K`k~VN+deO;%u5b}*C{QyzohDnr122fQP4bih<8HMqN#rV`hH
zB&aNPw$CTJn!-anHH3QhLtZn8;ZhsR3(m9$<%<!v2F3XEOcyz=5tZ=$QeIuPSfMv=
zfHeqQ-kGrI^4ehw#ud>KV9f8t0{INEvV6$Gu;vK-7{$|DBpD5))(88UbT27yR4On(
zMvQ7#z|wI+w0y~Eq5u^W7WLLm>8RlhfC&_kgnoz-YLc=)wzX#(UT_gO;M}nNkj$F=
zk9=i$cH!#Dl9x5?kG9~|CgPg3MHIf$H3lUi=-X}*1P1wmrilkp9+7ZS15?mJRu*42
zjMIug9Oc0nO&4WjNqj-sF*1MzQ~gWRM@e;~Qk*Ilx1q-VsAgH>h9Vu4hWZAFH(`xz
zUFP;do_vnKUVx-Dh!f?1E$OM)`hm{qh{dBgwEvW!Pm7i4lY9XY6!aH@78n6^>?$(-
z{iZG%#f3O5&$l-3e@#82m9A^TKIPd(c;3V%cxM}09Effv=&LM^yoi*SO54weiT$&b
zCi>)c#)!&%7IRDNNiB}Tu98Lco3kQDhn>G;Yp9S&smt`{AW=a)mo4~!AsJ6)0(O5Q
zOCIMnT>YB}iN%H@q39Ea&!&(FaLei+mAeE(vL!z=7y$0C({$Gg#~*o{MXW!1bd)G9
z`0MJQxPOiKBs5zX84sDknHQICPZHR|9k7z8S~P2mkC<t3IN(fCtT$~E8>(=D7A7Y-
zhG{r+zdS%f8JAv!g5d5GtN8V?A(;Dc*$s7BWCuAZZhn1*q14OY5k&qH9%H8*&|G6=
z^IA32w8*S{I}{|N%HtXamb|{mpGhgcg<_OwTr2`KbO#a>+Js&8nt_6p(%Xx*%_Pvz
z$Pl&kLsPKJ>?u;|M;)A-nu@It>0`{MtXXZoHBP6Rr56h-0C;8Y+dRZ;UZBlz93f^C
z<BBBD*Qa$kwbCNF8v^uwK@Zb8?2rVQ!cPs!M$=$dT3o2BbCPla9g8hua5Km@r*oNZ
zee4gjCSJ&V&zXl)xVTS~2yFoivFJ9Il(%!k^ko+T<LbI_%TTAEk1(#Y+dD18NnY<K
z0JSGMDvIY@cOx38&IMQ<LxGNVq|)cvM~HH-LQH6_zQP0j{Z-Fa&$V$w)*8aSE1#RC
zX5PE-*YJpZuGqF5J7ye9f^q12+0dv(Myg27W+4Z$bE&b0u%y2wW5a9rzUr?G#3NiV
z>i(UgjdlwlE-vI|oXY|K=QG4@!s>D5s6dYtH~Ary_RGNiYf!%Qz<@3~?-|tToN%rR
zkEMI-z`=vCdK&5oF};JKRpf6U>R}svG=&m(1u%7yd?fr|X>8ck=moK}gh0o;or9R?
z4bA(j$kF0~j_c%?6P^-(vW#|`7*XHNzW|ppF^A}0MIhLq#xvLMAivIGNDdBq<=jSP
z4haEgJDjaRbjxIsZhVv6;zOG<p28$M2B_agyjZ;azm0Zm2+YAV2KK#>bR~h*OOC<Q
zJKU-eEhaNHF{Rs=4$AmE1+3LCZUE4o+1+OOj1nhZ#&2S&DwEc05SeBu7jag91wf?M
zUXIt1P{H|8mMeE|&`7OCMtQA^jTV?<_KyY>cqGP>smYgPY6NlQJB%#a>)nv4#Uv9I
z@s34V?D<akxRf6;<SJQuq&0Xd+Vs8;ocu_6qEGrG;xG*0-=~yTXzXN1H@J3p!yzp9
z2Ia=}bf$e50!nr%mE+7E@&1Cu=8Bpg6j(A5=u_S3`^MChZY6oy3wYW_mPUpyL6=PZ
z5IZFVp5?b+=AEgQ=a<@;$+o3F^;-}I>8KHUwNHg}Q=^BQ4Q1`KR3hUA>@dS$8DLfY
zDJIuIU3rub;ATwQdWjPWjb2}<q@Y07^?8Fs_eFbQDf)%Uxjfv~Vsvg9!aZR)J(0=9
zEz0Dst(5To3+iwM&U|B`_voj%xO|Ywi`A8m(CY`Bp%&WV)-n2TipT1%E0AAcc%ktO
zso1gqc92G(Sp3v}m2PLQTs!)G_m~fMI)bvF%g-3t{qxGoS8m8kXMKRTYhvX3EF_&3
z9)d0q`m&X;f^}yPuy|aO+)UQtdO`WH0kFFLql|fRNNZ45F*lysbwh|>K`%e^)93B;
zH<$*6+pytR{*X{#8LDUf1YHeec*_&l)&bgL-gE<xocmX8%%d#Bh-EHhJO3u4?D-8N
zZUn{SQv^KCF6M-~kHNu^C<1^>zmCAAU*&Bip5FWWqr43qT>F&}WVR>w&C#G+g?=?^
zb!$z>j%OYzmRX^jdD!te*a#z7e%2(YoBh<uNo#2Q#C?@2UI?$Ezf7=#;!zCC`C<<8
zU}{wE0Lw)KMl<P>li1h_sT}7#;x!Em_wMF+Z67v&Ze`F`w7;D{)_HmBn$@)wB$2@(
z02fkVKV2WV?8d-*n%WnKLw2B7rfwErbQj-&Hh^hIlS=8|k)I`GROYo6?MYK$cl{Xz
z!jQkU_$l*z_|MN`6y!t4sssT(G4XX{#vE)f!b=^$w*<4)qWV&x5goLWiBbshzAB=4
z6O3h#RTxddmCF0f=Mp#Ri)l9G*S<K5RF3Q4CP(-_8x(-wGkH;Jr?4f`j@YrcaexNS
z<0OD47pS$AZ1BfL!XL%-A^|IM!wZMxh-_A~G_S4N#-fHyDVjaX%)6t=c@nl)HMxYN
zMfA#F7xm!rdMBonSmI^6{PU}Qcu(KiDiR;;ex>GH^wtY>Pe}(~whtx^5-=aP9@(kc
zIbr<(PdbJE6bab*_8`Z-#7?UV`OXvW$wvbfYGx?j!SK;EJ*?Ae9JW4{B*V*;tOsb_
zIKH&-US%h(PcqM$Y|<Ytb5$dh3i4T8=K`zu0||f(>nU7%@i;_1$C$F&YU>4~=rOys
zDX11DM_tz0AIq<ub>fKG09hpyDPj5WC5a|h+ckA*ON4ctZX3HTFuLz%`WBUHPVGZM
zq<LQA8%O<8ey6gfQMI-m8DRFr4r-$mPL+QAS2Ff`<)7=RsV79-JMRqZ$Bgg2an`lE
z^JMt6K>0UF`KO|^AN?kQYvD}E(2Up@zQR?}br~&Y{`n~H*no#oN!^0e&6<J4mJ{LZ
zVUAU{8&P%$Kt1JT)yrgy&w!?1ME+K>z?HoaH=;N%Hj^27;4R)v+4_Phrd$y^%&fKg
zIoE9zKY^{$y2T@d_66#-t-&WkodSW&r4p-yuo}0h5KbkSYF;(~&3+?i-nsx^O~NyB
zZF=X15?U3DgLTw9U{7dn!iuxQ$DJiy%f;rNJTbZ!h?c4apo_`r!Hs*M_X^G4Lz2Ek
zG)oNi1ryA2AN+iu4gn}l_x^~xR?0`Z2oW!u?9g-z1EZ=o$O6e+8nkbAv294j>K*-3
zVdC1bE@{Kd;v{TC1bs;%to-}TKikqMA60T|Io2ut%Uxsdib;U}+oSy>(w5Cim1SGL
zu)8DE$*#L&Ob*D&V~YwL>B<Ebamf7bT7aP%cI$U<9t|uW1Pte1r^oZy$57Q1rEqg5
z>^DadgC6{i;!tbw99)ia{sYo~foq>7r#h~FLxnyVoU{ud<JAN$9yy;QB^p&%)?vxM
zh1WZ45tQ?uuEDMG-S$%Pb89727_#OYTcQl+{POyWnd?l$F4Ud&+4*!0QJbOT)KLyp
zQi3f1knHQkyN|!^(8rHtTmY^MIUmwT*$4jB!`0R+252*WCrk7b#PxaDX1&uk;Tb#H
z>*@|ZvHMCQ!Y-!nhyjYdax2clWdZ}=AX|jtD+ntSl>9bbTz$r4p(2-ILtz+h2Bh_u
z3t*7#?2yuQrsy~1QQ+@Yd0n3k9a;pdb`_k*@{x!z;d>|om=6VXRk?L4R7paLg(-83
zjo!|UR2FumyqzbVY=F+$zw#=({cUCXqjBMpCKNt<zNb;rl0pqF1e#9MEQ%0cBDJ~F
z@b!tCqD75}$bFT^YfjT6UWsK-A~ft};6bKLxDNe-^J8+c66(YxfGg*+^dJ>%IL^_5
z=blL9SBtMp%B4=K<{@{v)sl2O_j(cB>9yQ&wpAbUC^S;Zm1Cw(bXah&=J6FW0qV8=
zrlWupZv0RqEsPGsT|FJg=ZsBDL$RIXIIw|;Hc%>s7t}ZD7zk`lh8i~?2XQ3~xFv`D
zSfw&O{0h=!HA;QMMJv5_3Q%i37Jo8D9I9-LQNzG#v`ew=(weM2>G;`q-Tp;CA9{dU
zIX*lN?{Uiy1U+G@Cdvj^5w_i|Nblz5z%DqHVaonyGB}z!2|_*q(OU*AEF7L6{ROlA
zLIorB)x=sDVAS&Y!4Y68Zh}ii=OYKOE1gSC%gRv2%{>BQC8v6YwV!4Do-QSkMeNb+
z33OJl2+!5Q)=7K?rY3eg2*_77fW1g1S9Fuh|2g?7-S8ACB&XzANbOG9Yayc(1dBcS
zaHrT(?&RWH<gigZsqU#6P28+u*XjJ5sSC}Uqol@5pB*b)CLqrYKh)J6hFSZO$UH!t
zK6fuekv6GPoH-z*QO4FGB-+<O%_66N65!SJH4@BkxGJ+Gv}MT#@1(B!8u*$CFl?&A
zztC?&=Bwhd^7#YfO^H-N0X$g#GJ1><yMZRxzx9jfNe$abjbu3MQ>zVe3W@x%QB+Xu
z#$0cv|AI(I@!&LopG=KuPLT4W)hkK78t^!+cQ-JO`38y|BqmqWE^gAJJ4qo1{>4Zf
zm`Knx2hc0g+t6$z14CAW1S#J1lNsnpcqS0#DdO&wa3=UgcoU|&GooXPIU2AbS$=2%
z9X?n+4VYM^hWHURu0cKHFM(ak@|%g0EAyHpUlV`W#}tfx*cR+MY(%HyKZuJmcp@gu
zB;tBb)Gv&;2yp)3$l6x+TV;}~Dp)j}xHAhGR}-b@ChoY>a~@w_I5A9CI1%4YQ_nu@
z3*@r_hct1$5bGcbos>Z2-LL9&nGZ!2yFF!;hg%q;U)7<4!OdS6rQO@Iu;HL9^20d$
z-p^d<|2U#MsOO>|;dJMzB>R<rYMPY~+>^dX-R_K%1y)#dRS`<BD0Cu-+OU5fW_jhq
zY1+ASK(U?aGkpK}d?VxCkaS_bqZ(O@>$$gL+7L*q29`;Qj6CaMIC5;o@r3&cUZ~V6
zm8wn)g0DYM=~F(lSC^FYb)^ox$?JLoteeRcj31(=CA`hZ8J#2~vf^R3|GdT3*Y+$U
zQ-NV&qW_nbPh2;7qO36xNG2Y0)oxz=an+@TLh*Vh3t#xm0HVJ$pT=lB9QsWk?)<m1
zx%%I1Z@?=WZw7OYXhpN0zHzR;0y42m*CSX|{c(O@f=g<LmzmpAer5$vW`o0z0_Xmf
zpn>3R@5ZOMQz7Apw<z>QTX&+gBplJ;JRB1v%D&&GTm;vBeevsx_zL3#uvdnr?(}WI
z1{B~K7PrgNAX0>$PTt+BQ&Q{71;axli5@%FCiuqMHS*oV9-^s6aKb2wz>D~#CN@b=
zT<?P0<VAZ={dMxpaHIhPhh2+_=9-yOWhYxm5A0@N`ca*Wg4h?nUsXYGm@MO#J^yAW
zYj-7Fw|ooJJog=qh{TL2AHW!X)BKJ2zS|;RhIseddvIV=aK)0An9qEqQfgo7bMh!y
zaF3dgn=f3^mQSHAJfpPL7;g>mZnk8=SHxVNc(0hsZ83^x%w~7_;;BdHhqDOK>>S+Y
z*bw~^6oOir2wQGiZuW|xGFwdZzfZ*r1$5BvXvr+XcEj_YFdgNl$?E;hbN$%)2fzh}
zzEZI9UxD~TgW1;!25C9}yanGk#Q#P%+P4?sGrpDcstJkP0ww78kIQq}70z9(IXlKk
ze#(K^H!-on3j<Xqao^tSd*;5pEEX%B3h#=KE<sjSunUjI1VhDn*MKlW?dD<0F#=+J
zyqvJjI_W*zqec&#3`x!4s7dJoG|vc<R)*D_Y0a<QcV+zhmnr*sQgET&Y5}VK*N*Fb
zr$6CPoAxM@iA8j-JSr`)H3FnH_4TwnPB{>$M|DVV{{};05SHE@L1(g81#pzq3tB4%
zKkK!&fA2{9fW*fYFN)C(RsOU)oT}&X0^zKN^JeW~3jY0vIG!F|>S|P`Z`u;u>CqiP
zcSh>|Pjw8*aIT5x4^|cYK+s2@@DBc2v&Ob>HICW3J*l|zA8~kZ=`u)mZ6KwC{i1<h
z1aYRpCztoqsH-(K3bVgt@+GxOQ~3$EBh&l(@y~c3_(WzX#xcGUrO!dIp}f#Qfn{^o
zi=S~4Jb^hu6-y!C`ft$seW9!4-4YWQ0(gK&Vp4B!)&{HMIuz7(Ij&k-O|Q7X7d2jT
zMSmex*8afcnQ(*2YyyoZ@CxhIDdGvHm=x`E90k6V&snGFnPl|`mR2Bebc#Uri$fO&
zBdU4~pQkzpj7}q-AL?ri`CuOQ*qbU6&>Rs?m921dmner-H;_DXW)U?+RqV>UI*G41
z)66^sBiwxt85~bE(I-F#gCN@p#)1uqH>{S!PgP0kb%G80NZb@-4&Y@kMK9AC#wk+Y
zrqMFTSdytDREgfPPMkNZ1kQutPoS*uWYKrlDo6VjLjedUS}AYTEYWsv{Z_-Ap-yKC
z&wE~aj1mbaT`tXsBofg=_i3dRK#Jtve3o#^Pf(FvWS<LpeO!%UyMZ_KmE@*3B<;u{
z>J(uONorWmB8P<ug=h`wh<9EfO6IzGlgaF{q*`rQfZK-vHLu5K^5=Gne27U$tpL&D
zByG@K3R~2Wo1y2QY7XvPxHxq-g6Z(irk^5UA~nQu-I2V3OSW$Q^;Cl6QpostfPE$X
z=PJvsHx%x^HtKYR0=LW3@6h&$tvi-}E4%dw`l2V`7d4%@9a1hq5yDXn0CPJ!l%^bC
zU~+`!Sk20pd~DSmgz_uantI`gGcmQV9|*888lKQ@!dDUG%ByjS6ODj$VG`BMSVTw?
zVLB}wVPCHi`g$8wSytfXgS@?b5i6^li_5hyw$=K+Rr<=nD1KP*QhBYai|YBoO=qhJ
zl#pI)7x~g4N*@JhP$=W@0Ica8j>L$@d^mFv^!w}S)YiplQD(=jws-xhK6Z}!v8kMO
zb0^?X{^9d)#xC#{bQg5AZ!J&I(8~G-mZ?U2u-NO<UqB;}^<Ueb;ZH*b6IVhgUUOqQ
zv>Fzs5yKC3AJZ|7dhg~bGPrj%9puje!bPozfX8l7Fp*fzY*6h`gCFz|$q)wZVvjZ&
zXl@Zaui&V6t|fEImLoS^;80J*h1v}fOp(W=hhnX$kTr8{Ddi5zDhL_Py)uVv4w|!T
zg!1n&RO~J`B-`oTaV#J(Z^9M%_B9HCit(9J&dQlnRm&H#ztDghGjlsZ@T4QWp-fiF
zIe5hGIwFprR8y8Rc+pm!x?QzvNod9aki#L`fnS@!+k4G;oOUy)9%i(A6sE7H%hs>X
z=-OmH?CdxF5DDB<`$}OP#agM27}j@ov159{h=40;Mhg(*E}+QeFj>v5_-QDaaX?($
znVaHGeof((Wu0vQXf(>I;sd`S+mg|_=_X0Iz5xTK0Uqkh3q3!aV4`}_%~q(EG?y=m
zViLG=5Boxe&ORKKZx>4U=rbKW?A2P+qQDi{ogI@7DFq0g_?NNV1VQ<npd@berQ!5#
zDJ6p$gpc`N(lv&jw^1$H#D`QvRn!|QW|H}aaH##JFfzo)?RHyq@|UjSn$QA^Uy#A+
zV?*Tu1K}<iyd?Ca-6=676XD{p8f?>(MIudJUuR;}lFG&pVoQr&YsN66zyWI7Rx(dM
zJSc_Ilj0x852y>OKbAP#m{o#?FqCkIAPEp+FIfSaHm%uuoFI(VtI={2W-@>fZ`dL+
zYygsoM9K#R^eeknVZ+s4xs|RG&2)hJ8Kg1hE`yKm0T%82Q0Y>lkHtN{c&r|nT338X
z_>|pStNlG-v>u1&JD31DxS-be-743oK@TNoLG?MbJuWe2@E6mutS{?(@m`-bM?k$1
zT_=7uhO}8&eAE0?>Y_&{phqO&0Fb?pB8?Y$xh$%CJbGsF-U!4WL*$d~hK!M7JoO(>
zW2k8OBNc2`csO2|kJLW0Zu88*w}~~DXFR4^jSY|2Z^u>GQBO{?hNKywQ8@Yut|`<u
z{&1b+2dJ7v+!n8Gf{lA$y`~MLfBx0L^DU&VSWTta&IY}}#pIF}SA_}K+wqbp+6kst
z8^VQhwG3p3C*^eYk3MnrXY^8~PKNmnRpraSR5D06F&sG&elEJ{E4i7FY=i*?_dbJ|
zv0_9Jm*!^_xnoeomL)cQQ({|a;C_AXZdi<yH(a0pax{B61(v+M{NDup>7%Dc0UK1e
z9mU1ElV7ha#4>ohw6CfaPj58J;~7y&>mp6BP_BGZ>;>zm!Bd2TlmWuLrD*eoM<N$X
zRL89D394+~2gd8L!hooAY$B!ej*mP+dAFFRAItwe52f2b*MelE1Y8CO=C5C7Nf6Do
zCE&PGLjv*e^fNRq&tvzaz+mIwk2{5-BP%A$O66SWR?XzOTJZ2D6LVU?TDxn8TZ)=S
z(T%_Bt^xQuwCk`Tr;{wiy5e-AtVHk^kqH>_!YInWXt^Qx@$OQPk$o2)doPu20I&HZ
z)T%9Pnu=4&6{viK*NvfZN=abjUrX3zyXz;t;&anwni&GKM0w9A0*eVt{<ZOb`*&<M
zL2+s#MtN;7D?SKqAB`)VkDsECMz}ZF0*RSe;~1=0fUor$-yxu3sRMXypLTkeX`|AX
zEAvOz_7au6oub*)!mPyrB9N>%9tLk?!@e+G(;x4wR)_YhpR2aSc>G=&F%<1+f2|sG
zeM0_DKnKN0uYp92n!omF0zX9c!iy5T6FT#j#fce6NqY!>!>cLtyS<IUc&^|I%CSuC
zQRoAu_MptbGK=kDI4}C*4Uiw+y4Q9<SsY{Tf2hV?OputDU;ny$BGYs@-?Gr)J%58~
z$`C<67`kX{dCOVZX6iVv7-DXq+fLu!E|{jbI!Gj_eOqKidT<IgLthcD4=KuYwhke-
zGBGE_6YdCcC$d+eHPH`tffMz8Yb^HU<s2POaZ<|@Ab<koVg2?2{O|gI2(T6XKg<7D
z7w-Rq{eO9~75e?(&Hw**Jpae~|3dtqu>UWU|Ju%fN!Skm6ZZdoWdAK;`}_~~e}Mhp
zso1XnWBngk|Cd@3@BhL6{|>g}|6u<I*#Dg>;`Kk)|AF;?sfzrs$^O5r0sc#U-~V17
z{}b!~lCb~RWdA4F|DB5cKVknT*8e48djbHEvICYu`DH`+#sSZ#{$Ltg$0rUL@SJ2W
z|A;CJ-9H2;SOaK3RFgdVY)x|8oXTj2X?OG6)jy7JeV&5HS`Y;B7~u?cvsUJ^xj0Jn
z=4~?|14E8YIx1faA$T#UQsL)C-Y)1zH8({CwBVMeFXZ$_T3SXwTfFxAfqK`b-`Bmk
zk0iRFQ4Fctj((k!cB5zgi`o>9eJcSKBf2xZdxLUFv=_W&63DQ^h?u~9L`ryUw%Mzq
z6{qULsxFjee(@Wf9J~zeO$f-f!sr=y*VNvt<Xb_GiT*ae^e~%VpzD7Wnsh2-5frjZ
z>frov^qhKtG1@u2`3hAxAQ=J(P~_2_zb#9NPCn$j7AlDruCIo4Fal%oXLf;r6(4#a
z2nJN%D_~^75LwRGaH}{U8aEQsm>%DL7KmZ3Hmp9RIKAx*F#5%lj_keK6a>)k&38|)
zixq@Z9v0o5*v{d^5&JPIIvTB!PDK9H(Cn~^XCjEoGDB_`^_|(>cT8a+2l@>pxd3AB
zSF|PBJZ8+CAJ56IS_7?0oyGp~R;rpuoH=_1dCQ7q)aK0wbq6K&G1i*h{MsWV)Yqbi
zGZbh=H^?WIs*r`y8;2haLpW1;piBL_fg}0h!)WxgOPV4SqjAK|oq=u<JTOyO77IqI
z2rnXd<aZ=D+P!`gF9wd$0_qqhSiP)E2#>X8n8x+Ew4^t4>V^x>f;NXqn*}<_E*>3#
z%2&6%J24XgGwf;aEpU^v#}xRUQqM%HwS3PJSWegkA)=y^PPU*Q#UrgiB`x=+=eA!F
z5F4l3-2vU^{F`VKf1&=zWJ3kZ*lMwt%~U750dE_WV|}?q%P=4CP69Dn15kQO<))@G
zZS^JsIu>&S{B!Do!S(}0M%~z6cn)4F><4)6hcv_(xsrd`@ls<nyz6~P<h?2Phj9tw
zGpZThuyKnD3HAPoC(^NwF`sAWML8S`SZxIEdR4WiV%^xVw4((sxJL=rx`pl>G>~*w
zteyi9)mo;~I#!QrSv>^FVg=%+`>L95gX1kT%;=5sKmnP+$EF_lh^AJ!+(ok0+yj4P
z3;BVtU484Q!8i#)M~JB{Aj)0Fc8&}ob4K09%2JDVXP~6v&<Z4uTdG_#=u6Rb`xg1(
zV=sJE)Zu&N!~-@4Tc;i9?{zO7m#LR9j8ObEn10h^muEuPXfG@A^of3*QhinVOI9gA
z$vgg?l$-`c(e?@wN*TLAc{G{DfJ<~}HWX#D%LZZhs^y~y0ni?7Cntys){d~xX2i$N
zdjwHJw^;Tht#_A0;>>{?Ovu!%fc8M-a|+Os?`*xdU`11&N@s^xEl(Uxg{pVc-5;+T
znT{21RU_*c&@Bn$c&>7UQ^!%9I!rdEG}8}O(6JneWV`N03H9m0wivS_EZca)y)X9u
z!GiqSL>U$cp3*fTm|E(<7ix;w3xIdSH<rY@qLHgen39H}3Q>ZVnPq;1t`DHT5Cv9v
zr5D|uS;sB;9_}4nfJHLxXq@nwwYclx?9i#6<0ewEi9-3s$9w^|`r<R+Q)y`B4-jyv
zEQuq#rXwWzNl}a5C?GlZuApWP!=QO)mN<uPS#%3UjqhdFUg(|U<u090qc*{*{w`F3
zO>?b6-7KWvh%b8)P@oIwvm<Ff&0Y(1cpX1@7hcLyMOO|^hLw}Sa@q+etrePH{|cKP
z9guQ6b9?XfF+mVg1J|)uU)@5|@%@}DnZ4m|$&02;z%N{t$<^0VKz{jv63$1U(-%di
z87vY71DXzu&x1efx*mnW9Cfs|A+KXg&@y0ai0pS63K`d`OMn=mW*Fw|Dn14mZq&1!
z4QzcET_fHs6XW5Q6uzLEBKhfIn+2!hnXrCp`evc<+I=AQ<DyHcw=0QW=ffV0X~@%T
zNe;aiOQevfU0u0Z9Dx!JD~?2k8Ik}A-eF*T30|8A|Hh)3&BHLTz0S~RKf%0@sm}t-
zo9}0R;|SEg{k-q;w@xEyB)@(s?gkxmA$A0L7RDQTkX^k!;*}JJuN$&uf3C{a0x#C5
zxb&hJWq~^}ypR3H>4odRuuPL_7NLIoWGA%x$D%>C)P#~CW&j7uu)B(L94>o{@}MpT
z_Je(2M~ElWvPnPJneD(lea@cn;*tpGzr>||;lwtb7#8Zyof6Ht6=O(5Op7&4?T%{~
z(8CDYdF*ilXL#F2=+P0#Xi4XEWEel!3dr0SW?Hb#(@h%qQUrmx(|M~ks&LiztXYU<
zeq-T=yU`1(SBsE?hTqsF8@xOR+PQPNH^7GE0sB$P?m@=~Do|kKWLjsYWRK5;%)`33
z<UdT2<bI|J15Vya(qDxU^&=2Glcmh&yfh8)fbzlGZ4U!Y#npaSB0`GsSIvVO)KcBi
z47^#3t<CDu0W0|PZ0;j?pC0k<Hh^gX8d8qQtYHu7mm%~R4OPx}JcZ%nX#^@R9x_<t
zCE0EzpDW@B4zL3C1`l&kFnO#7U(fVQPwypG#D%^Q#puzp1tcOPShnf;%Nn0Om|ZTf
z3QPub{qPEcNa77_1GSW8RBymo3v9NFq$AfGAkh^Ux6Cp|&uHan6(rK2ts4QlNpe#W
z^vogse3L&mVfK6$Gbz;VEwCG!1WeLq*<(Ug_Yvf;Jys<E0%WqogV+yk(umS%%W);r
zWzuCJ5+9L?4``e2j5>iR{F^g+xb8vQ3aT`xy><aQ|K=l(1e5Yxp4rD=pB=P$TNZp~
z9(gv@KRX;}Q8oD#MF$p@YcmR$;@oT3hb?=jnyR?<Iyl?4DZ>+`7fcQ>jhAI}2pA(y
zDsP{llV|poN|o(oNhN+<gxoFCLcx<*WX|9AhvTcoYmprKjh7WP_fTUbA*Hs%8s>rL
zMPGA1i4)2?e#*q}aq;+;6v1|Re_m02Rj9~7=s^*vIJUzR1KJs?(H}*JbMGQ?A7N2!
zOalH1ut?O^sc<(q^jBg`uk(Sh1)^GF<U~_e;oU-ht~g+kai|LT_Qjuh7G>C7zw>iu
zAy$Oyl%TXZ0DJ*)<R-U*P6PJ+QJ>prmg40QOe$jgHQzv-F$i^<)2Nq!zJ5wrWg$4h
zu`NE>)e0~~j9md^f16YeJv#j961Qz6D)emcq;t`f(Fu6%i<*B%LL;hX1oxKm^ZF{X
zCuD%9J4?Y5d*;D>h#)B%Jo=HTP^v5y_@b4iTw4Ug3s>Q0jNByoj>niW2=S{lDLY_^
zku_>HS*}gDTMC+D)biRDN!YHP`VJ>b<e}ae@F;H@i%<>eu)izoe|lK;k&P*xe9h)x
zK)#^eN`)l+lV&C&iQ~6>cAl-#DIddP*xgP5G^z!f|4u)=KsMk3WwE1a%Ssb##n5`c
zeRTn}g4f{1!E07(>0BMI3=6nw?s_a1g^7F!5D@cINGdG=<G+YSc#aXB{`TI!21O=)
zAKK?BrxK$OA3BGGsmLZP9c_3RM}unwv=*IbXz+(0Y7HGz8Q+IbY*&ej_RC4z%20(?
zh8?9pjMgQilon8}JRWAVjvvAnN}=e@YqjCV^rn>~9Ys}{qr|SQczTFQ;U>^V?IX;@
zt|cUx`i;5``TOXpS4h%BM%(&uzT#FEw=m9^=x^cDD8D+}tb?_5^oBP7Jz0*uH-h)B
z`?nilyxAcU73do5Bxxv7er8b@mb6TY43A;<Im7+)O>*VG6EYdlXoN&YfE^j0ooizD
zXQV%6=H$Bfa0_ygKjp@*M$G6J+`{KUA5}>sPM<87i?`B6R><_FORBmUwyyeY{K|b!
zq=EiTeiKzSyqkndc+msjLQ4x$CV(k)(|GJ9xgSqCNV_{pl`ZoMC;(lcdl13kFOb~1
z7q^G}?d%4?R!Y7iFqJ5M9c8g5YnGM}K&BC&F3Df5C3H>)h0zHJ%Se47k~@jDJ?gpN
zg7Mu>Nspo@G~jrE#x!*qh27iVb$x0F`UU8ksiw+kq+j%m;B(K%ZbWhnt$guz>s!5s
zYLj)D)X2Q)aqE;IFy?1lPfG7nwTvI>WM!K=0mCvr75DPu8zfX%0B^>B+%2cSWcq2B
zlL{RZn*i5g5%DPD(hFVSJk2bS(zBx_(c7SFNy|)klXhA^(~;vbMZ=7Ao}mRp%Dyb+
zF~WJ=UQaP=M`XkcJ7N5ZjE|yO02!2;KtuGx#!LFc7=$$?doPcY1+5!gi+nJ|>jc?Y
z`ko^4iX5PFFa{)5MWhhhiqq}OppN|jVCb9umA*@1-e^hfsg=X)0|L090QJ00vq{=n
z%lxYT7JTYj47c<WV98G2d!VQS@3(!blZyWq+iKX*_lo@8*y0CTUgbH7^DEy18VJd8
z#T)#K4#-72)SzY!KF@=JInlhyjD#Sa4HD;n|6rC54Lhb?;;lo&dW;rj(kx0YS;1DY
z>=-ZO4dxCz6W5I3eRQ%H!XUcRj>a>9OwFv<jt)*FLZU0#^MsZ^^4qLdDH#`IVe$er
z-YBFI0WJTx>}^py<6iN(UgAd*W}vxhZdSKoWYy%OKkz*)imbx}Pf?eGD|*<;9dS7h
z?=^!nLjgCX2VVGb@7d#RP))?3JY=DsQ0Em01`tf+G`W)H{GWNOdof1u<_4;!PAjX)
z!}gp#T+#9(cI_N4_KG;lz03EgXL;&yDKYVnP<?=hjNM2`h|e!w-&kQ4u$^mpCUF%I
z^!VFrMCgXOv)A#1J0lgDg2mk&yHVmnv~(^ot7kc%KpTAl%}%Ql9h<FGSJ#UTA-rr(
z9#AdOrZc&%a;(qQa~fpWyt`n?!Ssn<T<=#f-=f<jvqr=rUeHfLkkk)W++P{_VS#lh
zySO#B(^|>9Y{Qw(3zhvJ$Js>PbsZVA9V?6Kl*JKzAFPj^{MuNb=np0i;)_En=4!>n
z*l+48I0FtcMpiZlH1q7nf01viL$u@9Xp_hhBW1u?0k&K%xQIcW4CqJHqa!qdJ54CY
z^3LqgiDe&|@Zfcf(P1`NSx?q<8jWd4VanXZ7LtyS5Z@P#FxnzY^`UG)Di}%5#h0Il
z5z0f=CE_xh3w7!zeLMf`fnGex)H`PwrU)%l&K0(sT;&4MMO(l{0iQ74IYdG|)EkHu
zdI>PtZ~}@>$`Foz74j`{d6*r(?d<uncAXrFW(Of6NWuD#7IFpI8A3HpJ@5!_bP$m6
zA&T3U=JGOeeasqWR(pY6HZ;gb=M2{D!A9w!hwn>x<Rz<*u{nmJU22pT#Y(RUF%8J<
zBRYsFe#}gVrpG8@;Ds8g`=td3S`CM)Ft}f<wFU5e8SrOU+aw)*PgHjl--R54;jmUJ
zZ4e3q!I1vs-r<+@9bL__(=v&m<BmghxS6pUq0>}WT6r6II2*g-z$#@wsFH_PXr_dr
zcaK|9Uf{Yk@#>^<+UThy#Kz*@^T1F;>b!D?r}<Pd?_}LR=E~rJm*7!zb{5=+3MHcX
z({h9^%lTULie4BcU&RJ{G&go^Awy%~)3sU0??<k-m?)S}fIWx*-7*6H#zTCHX9<bg
zK~85FR5gT%>;^RKo!yJ<i4CPtI*s=cVA;a|K$4sewH0n(S|KWMckg!eiXSB0s@-NC
zwkqCLy*bnS1xYtw#3jHPmrtxOW>T+LtB5ym?m$LoYaLTpg-?a*4t;>sY2yadFp(N?
zBbmfxA|fzKciSC%Rm4U~pjy<8Z7_?Zs=4@<C?=TjE@>aK44I!ix#m6cj!kGIMhKU5
zKc2$yU-TTd)d2I`)M?xc_5py;o}6*z9OnZ#Wh*uxjk43(Bxi?e<Jp^ccO-F6?>y}p
z0&%sk$0$M=>0DVXVCib)i;B+Mn%$=b^b?JogUWehhKj5Z3Rt&CRx>a#CI?q5<;dSy
z1Kaiijp0~=30b_F)@Ke<_pli-xXGLG8B&Y%Tty%|R-5<JCxXDJ(paAp>wU0tttC_L
ze??RZSWMy&X3PFACwN`vPI@5@5`9u+wc@7(j$C@*97<DK({Tw4)%)|89*k@G1V$p{
zA<zaM(Aq-UOYC(kU9RZy=hvHPEBI3u4E*!h?7aq_S@Q7%*y>!;+y8W<Tn!3zKI3I8
zb-3+5X7<9n*pI_0G}VHUG*R)v2S!!Nb#W5tyXTdJr$ep{1$r|2J>DKPc>OT%`wnr#
zc8ND+A~-Ka`PsfbckW=dKx+%&ewuZC)FWde9ypbR$MzcA3s#-lXIlo$YVvSYhaVaH
zjs;q}S2pugq(WCSE$jRha-L$RBfP}!b>ArzPxtWYTcf+%`EWrj=VDJxjq&X(H|laf
zVakDh%oSkS(~g*@MNLjCOidwvsrvDysAhq6W5k{1RE5uX7+>FnFQ88g`E4SSf~}$(
zTsw0at>u*f$6fCYR(k9&U(W_$`OsGL#l^A@$pt4)wEUlT!xSV8wS|OAScZrugP<?s
z(&I7ZUiHu^XIJmjAZ(dit$s#PgoyQ#l96-ke>3Cq)A;!Fo#6#I?)!?3L4&2Jpi++y
ze#R3+DJ1kr%B_PM<n~Ft^{t&q$sKhmL{%5r2}a3P?w!c@(*voRb?+63P$$oN<Mfr4
zH8RQM=-pnbI^Z@p1Pf%cNfD*Ak6u=Pd@65+V>>Vq;W{b5vGs%+JGUFz1hM)tKC=%@
z@A0@iAs*DC(KV>VXOg8bo}!`^2E}~ioL4jn=FPtnR)3Y5#+e^X$3kh>3@C|;kh0S+
zLGT&l`D0z(=bL(666?8hofn#U`)WG<--xn)+5Z$4lPT+Cyr5j_&F0lUuh5;6{1kaG
z0pT9PR{Hddwr0ez#@TI|duvwar@F@`aU_n{wXc=I_pu6zO}8z@vLEK2uH34k4cPr+
zmaD#8EfpjS79NM>9Al&l%4;SSdv=_ykV5f`K$+2@)k)fWzA?zeblqkgQe5?NAEt8o
zEy)t<$44pPNwOe`Nwbi>1K@jzFX9Jzk;Dq3%>`JE`RZaqv}ge!V72Q>Qe`%oa9@U>
z#ht_dyKh0zt}o-^0}Y{+F4fird4AHBuFgA$S<d7mg<{(hyCFDE*7N=#P`y(V@i{Km
z=?UyOxu)IkuUQv?B1#9c=DMs6nRAk|^Ys+_6Xx2a>1x|#a+4A$TOR6sf*kGc^+jWo
zDKZ5G6fP*y<m+Vk;@Oi|@Ll_<_|WWEK&&k&!Q2zZhtwgt_-iEia971CV{N+e3{!q5
zitsZnm)nlYA(a|KC|I$mu>Gh=-k$w<j(K>&M3{9>K%D*4mmn~o=yeYGMvVox)fw`5
zZLoS`20t1!rEl8D+HS>nuC<Wt=l6h?gLN^9o~lm~tOMFlqQUB3wjK7x3MWnR!%L(0
zjA}*j!lS$FrkiASb4*oK-hu&Esnv-{lfMC`DYSiGKQD81#iN!>W83hmBRXiWE5}S^
zH(+wwB+08WvDIaNhP%u2NZHspAV7a;lNz$N?Pu&qj`>zDryQ4$7%K^=igmN3G7Dq(
zJ36r*?556jx~4KArW$xufLQ=e0jv3uDL$bHloA&GI;JTM;p=EzvzR$V;Rnn^#aDrl
z=;Gw+YHSa?jLJBshr|zx&F;2l)R$_u?fWm|_B_=m-8cOd$;Q6oQ3j3YEJ0r>E1e#v
z@PiQ<dbf_)gq{qc#~AZ7lxye7Nx)DR<R7k*x6@gn_&(|&E;yR4li{F0#5Rsk@4+??
z2Fq;VS5T`JkV^fCSbBe}`pMn7fHw>Hi0sh_V~%kA=Rz_PH%j-KJ^w}<Z((;3dfKG@
z&7Ux3S5`wGz?vdNhhdz!pm1$;%19Tx9Evx=Uk^a-JL%X{--L<?uk6u_&I2T$YuIqT
z+*^+8?tAHhae4Mahe=RxXd({gDJ5=hElKqN1nWsBI%R!Vu=UvW&hmK~b#yc$qVH`~
zRtgUDK?oE8T`H4rf<P<WlqqL>k=2pVN(YOh?;z;3LQnIfv7yly@-S4>JUv9Iel%?T
zV~jk1v}y?;lHQ7IXh2HsChug}J66XJsaei<S$U`>;6aL_BDZs)D(-AOlO_&elQ)WF
zmiE(5&4nQbO~P9qm^zM`l1>svuE=xUsO_Sd&WHt1Dpy@266y3Qn0WHBCT4zc)=8d{
za#quK6hs^juxaZ;oUi80JInE2w28=W{x1%&%#zI6%@uCF)Ed{+2x@M&xk--R^&W4$
z^<Om8mPnFJSQMqHYDq@XJU53Hvg!_dRvBs4Oy$PVt}GP}TrZVx!T#VYv70#VgXabi
z1!b<R*A|N9Ie^|?VYZ9=LP`|}MJW@I0g==iOM#)qvaa?`BI+E9!a0<16|dy+(wDF=
z8!z2cvrf3Vw7~bDOnB*n`&xuhErwK|U!lp*_3z&Hszsx5W~qp?hhrtO&F}l>dD4l5
zKa-wPeLP~x|2#TXG<eQSiB~lriCRxh9RnV!()Lfjx?pZOX{+gUxb5ygVx{(|P0Xnf
z!g-}H_c@`J7AbQLi<sYJlz9`w;?5Pt-(_xHB959}*8dcr-a5^>z=#He41OxIzVE(A
z+$4FvPrLHJFp6f+|17;MB^-S-Uu!|MqxlKDSQO#-lwl2u_90$QRvzh~`9DP<<_|NS
z2^7ACYaA`e{@KfWHqE4J{CGgAG-a1tssOjfQU6NCn&uKDv4Q(C(EVAX$`-X6cJxk-
z(&0C82uoT`&7(kj#_cw-u&p~j{JTj;8ZLjIClO?ai?8AoRS6?2RoZ`ZU8SI05}*VN
zQf!Uik;kwFZpy*^Yvy+_5%~4I^b1_P(?Iol`(D5>za|K{@ugx%_SURmp&pN=%CyGw
zAi&jsO}>#;RnAAhz!Ko6h;9wy0>6Li(qx2W6O$}1^$5JOE>36;4StME-c5t-R|pwo
z!po|)<yu{WGXO34wLtatP!EE14f~T#{y}uRuHN6kEz!ozPxdbl5tB|CIb4NLsuU#6
z1}**8o#Zb;y)vPcz*zk{@c?)}<NURS&330rZ+4LQ`ZVP`sIGd<1s@NFp${wR&RwY0
zM9Pu4pSF7%WZU4M1^+D-pzKt}#603$=hd=b?ZKYE{Un5V5d`-Eog{!!rOHE&M~LKE
zr^Ms49C{g6cfg<#LgRKr%ef&`n-uQ4ey&REQF(C>fGo249jI`<n2p4~;2XqiQp$!d
z>5TL(rD*KFL@>0gD0Cg965xZdz(lY844;YGD#sUneRXv4p^#d2*Pvz;B5|?O(UQf{
z2fli8I`0uUr(;I1B>eR7VSngy90o5xta4HtZbi#fQ~4ah*yp$_W7`V6LF-0RtKef!
zQrl5-hgQxW3uDFAP)!>s+ocG^ua^IWpp)0Qib(u(r(RFV3@==q9CTLXAV|k2B!6$g
zA9gxLY&+_VGP4KRxm)AhdyECDUvu{>>nfew$-V|#>G3WSXQWAK?0vh841z%iCfzZg
zpg*Tic8AMo-9-|ot7c0qd+tI&KeFidP8OPEM{>}fuu=WedRliu$J>d(h?uW}KHFx+
z@MXl<$z=4`H;5R#Mm>FNq<|-lB1*+FmWQeWzeTr^>3HWqU>g`(meoKByK)Y+PLXM*
zz?cV8B(d}sX~{BmTs~P%-d%mo%LFu`(Y6gv7D1V2dvOarb2c+}#HO%S5WeY*3~P%0
zC7SC#?!V^6K-n|}JsngxmU+029i+tLAj5xBabOl_C>EsqNfyisl$CyZNutTnDEX80
zB}9BS6`WI;g&Uc=6vJJ*NE4Ks<7kw^)RLQ7S9z5-<5Twl=LM2L{)&)nefz{Hf^@#)
zegjg7H_Igtb+LYO-bowzv`G2%I1uF*Hxc?$dW)_TqqoZ|s_I=!UZxbE?kuoUq1e$B
z^uW19>*tf+ROQsZr2``g#x`!S$G<9F9=*2EmEF7@058M}6JkRM0i7RA?d^GU+y8gp
z9@o#lD#o%Rh>SLw-l0O&wk`WPqF(l$?n6P*(_)EN*b)pW-PrTZ<`x{Ky1@>yk~wPT
z12>$^Cy*)fx~xs>Q7{UrXcP7M%&d%sc<NMvCn(}Rlq-3t9e5{>bn;}t7-tBL|9j(2
z$Y)|Wuy6<p3#;@vW;v+$dZfLTdkyG4yl|2kmaA!03xBmr$xXsO$nde5apTtHq`pQN
zj>R{_*uL992U!eX!#Z)4X655+J5);EKPZwH?Z{a0pslW(uLz9?Q51A<01LmxA>p1}
zV^E94Ygsoe2QbZN7`2iaLV2aUxE+a$BGNB4`RNN*sL}#cr>krY#s?GwF*OkB-GS0p
zF1`i`s&*OjBL1L@>Vl|W(TTiP>ORXnwP1PEHJAc{OeK@FEbb<Ve>zdNi^1r|+B<q~
zvj7E2Z!T`W4y3fHLyIdIr{<N9FPz2?t=K(QEJZ|t@I}`Qmi6h(&D>x>$Fq!bnOb&r
z*cQ1fyzz(FI`O@<L8!;3nLh)h&1D%;4j0UM+3H`yb*0%}mfGuJRCp`9+IdvV<MPDC
zB2F3J^HAQ@3m?m1=zU_R8>SQLc9(C{nbLIn$^}Sht(zH`!61Sz$h+*{@y0yd`=ADB
zRSK6FI{1n=h(J~s>juYNvPu2Za3!}boYnT|5lISj3jSPTBRWZ*5pZf55dkvB3)8-3
z+lN?&yMA4O09Co9o+JBsN_xc{XIx`S6>r5H8&FD=G`&dXGe~=JTFG}9?GYUc`IM|W
zb(@jiZSbs?B?S-h5*ShP+0;vM!AeR><O)1xMMC^TaKUaC7yIHzv2L41f7WGwSwU<_
z$yyswSS2_c<Pe7At#M{hmUv%pKlId;TWc0M$8Q(G-cj;5-jRSrYk5UCmD{A40-}<>
z?iT2Nj$N(cD$Plrt1z%nDy|mg(`kHJP}D$DsNqci4^Yb#`WN+*q3(9aUxR&X;QcV)
z41uK<b<hBSHe#MN9_qWbZeQ?b$<Ng~BNe4Kn@cXtJ>5kUGwFBnli(x!>|%HZDg>n6
zuG%R&%?5@#0ChE&LHy#e1ZbVRE+;XdjG(fp{DTO8a!1Q)6o$t^?)3s=6&>idQb$aU
zujFpPF4&;XD=;a5YLJ%q^<Hp{?<;~DNqll#Sx2wbLTb1xd($;0^bI>@K=%p_$W}9+
zrn#g&A6znw%V=9<#j!Lam?fT(L}BYzMa$$N#q(b%MOEqp(%C&wXY~`vR_SoK#|p*}
zQb<m%7~(+zmES0L9eQD%@_P9lt-ivfg<XVj$aCofTq#$jyo3h<Emy?mvf<R9&sDlK
zV{2A#mc*g6LxR5#FL!ACA;(9^RvMakhp8lO!mp*+{#$`10InK%KEx(0SeDh1+da=s
z+gXV8-ThUNvG^}8;S0$_iAPV2ihj*fy-*jsZZir?VWk<N&(Y>-?2<E<p2sRTN|;k=
z7!Qse^`PTL2|fCD#`KR)3}(FyHGwtF?ptHhR@i9tEBJqmr)q>vZwVtUSAUvoY1D0Y
zfK?fg1yo5I5W8k|GX|C4?>7ZXD(M0bQo!Cj;Le`H7A*W<nuE6{;&F?sL?xu@{ew1X
zcuXWAyV3+Zprp=kqfampvDTmkw|C&7D*pV+UIKaLzhVkPPJWt|RkRZ-Kfr0ri}^1)
zAltz=+_Z=Rh}=x-C%AvZ@j!NZhwzog3KP8ap_e)*3<Kf`)({^9Hts2O#_v(U`T7=B
z{quKnU`07aeaqKljM9iE3cn1l+wL;s#@Iz+IoKawF1CUF2?zesly5<X8|oK_Ta{Dx
z*cx9no39b|V?IX+W?eZ@q|bMzE4nJ|0IU5DFFy^7qkI-!?&OsF7>GXb0CbMH4!=W6
z8+5^^J(qfU=qalL!z-b%%-4az<5WcAgPvx}pj_F|km)-F{Ht#c7a-{;%T~(R8%+0h
z`~L$eK-RxYe_iqAv$;kp5ycG@<ZSL_9x_U13L!?|7Q^)k<_{5Wzjrk2qE-c4OK%PO
z?j&``3?2OOIW7RbDo?IoOD;@?sHIPek)iI7P>Pm+PqdFkDll&sLBzkF_bkPiZ}JcI
zrSc%q(_%9Z1_sUE1(A~_6ix#qc;_q-MA+bXyg|gz1aKLyOU|OK4aUdbuvt5=$l>G^
zRo;qNm87f18&!XDi}<u^dPKA_St<*LBD*rE)I3^3z;rkoUgloTU0xnGu#jvo!ZLb#
z60>B!@mPUOf&NIhh@96t^O9gcd2b&!@UwBGJJxNOK1;D0y(%F&-~S6_4<cZw-gHdK
zx&*J+<S#ogXhIJjR))ksB9E3B<wV41lZ$AKYy;{WK9w5x;jR{nJHuVlWsg+3gqK^>
znR746a36R5Uaj7KP|ZS^%{}8_yMPDa=tgH~RV>Nt?cobrDTFV&SWlfVNvCQ>dcF=Z
zv8Wc;eaOfUq6Iaat)&}`djT2wSA80xN*hEGR45~C>yo8sy5N-uPOJIzGo(+0Qx-0i
zCT>`)I~-yD4NW7WB~`#T{gYnH=u1K(SmAdyg6K$i4aNeqmm~uKs_%0f&Af=43{N6m
z`BvX=ljZRRHBFX=H4dKg2UaY`bSj#uMZZ$j%OxO18`%VM{c)#eu?$?fh4Ht5mHBC+
zS?K>}#z@^OCDQ)#=GENJrur4O3@rpEWSA?tU5Rp*Ao}6>x@WZBGWVt64PI`{huneg
zefjER1C@{*v(<FN={C-Vp~d_sqlZ&d#4U>FIe!Jtdk$>vzsJ6RIW0h}04rg009d<x
z@s3UtTY{)<ovXcjRG*EU{y+NU)XR^nN(mKn|8D5(Z7w?(jAo4@8)BcKWsp+xQmmMR
zwld9J7*G0Jl5oo8o{FC)RX3~HE%i~r1juix)qMX>_eC@*yUa<cWu2`#Ht3zuYwngx
zYB-_T#0vArUZ;(Cgjy^%NrxwrPbn3`yelaLv!&n^wXQBrg<O*A1*hh>j}j`>f$1`0
z9f&cD4Bwtdi!7@<sU%7dx_f-lVNbh8`(p1Mha*Xcae+{aWY-YsG9O2eJi6X0OSs70
zhqOI%uaawHjZ<*88@8MMo*_BFT-P*@eb6}ZO(o<EmE@=x<fg8nc)vlm-?I?C(4^o`
zrM&jCTZwJ1c%-Ex>4btA9d8FgBBXXt6M)Tg!PtnX&IEd>4p1#Jqh9F>G(2(vn|Wja
z096Gc;3@*3K|ko<dj5j^vRPrO|9ie!6v1m~<xAkT7yeZC6N(E?AOG8_3pSR;#`H1A
zD9M7^3#l<E{Y=q?;&9jR@m#1eBB8A3J`|EhBx{wJzx(o82+yMo5{qzFnvYQhklKk>
zFmOe?roRz*yjfsY$Bf~rbz9NFaA@G&Jjnu<P}0#_pFAnTzWm>~z7{H7Q%Yp9!tT4T
zDv70W?wTOO2$U7Q8~^?ZYLbJ{jN&BLD%!#C8xN_Og(D1W^%dsrimm9y#QOWy+**2@
zlZ2!%hIR=Gtbp<vQ;>#^f}z!DbPU+hp&`nR2P;`mY%cOKKW_w$=#~$|efv|jt1ybV
zpFpQa{k#oT^H^Fwn*uZASsg*Q0^K={gnA5Kzy~r&+kMqY`P$Ux4!03>B}}yZFjBv@
z0GSbEpS7>Yq9bAw89Z<2lU-FE^{cy0!NUqEBMYQc%F7OVGA)pZ@8l-ak5)f%&UHT$
zLN5zI7T!b<@4+4>MhE;TrLIWhpelC%x&wx4{Z(hR-qI+MfP%Mi*@>cfnZq9WX)1?M
zb1-`NS&cG_ayd#g`d8~Vrwjbl1T?)L%n3I(g0;bj=Q0ALq^F3>z;gfExZ#qT@An-m
zZ~`Int|g#rOTzH*P;84(9S=2E;kZaIuZp&EuJF3}i67l~#b?y!Qab|tjNp-y0Y$?y
zjyf5t`hqpD5UKy;_<A%<d0?1lg1*0AP+r0w^Zg6fgiFP$Hk&^)->>YN1mGY+Hevql
z<)FN`P=Y)N6KxXOKt9)+L_48b3`f8HcGTUafbCcT*|vjnc-qpME|tLzY=PMl82YiB
zadAlSahFV>K&G103*ey+PPts&M8Ib95s7a?-BqT=bwXEuawWJ3x=L&}<SK{36q5kc
z#t>7iJQ9)OVb9`bEY<1{!zeMJ6)e|JZdWWqCJ^X#z>`cqXxz$vW=upxG5A$~Ok*q!
z)?Ft40NLL<vmJcGVx+RQaBGukRRD(z;@;54L63cLBdSpgkhOL#W@G}JzWtZK_Dy1k
z+M9wzHapLkKwJb2R|a@zzC@R&hH48PtzV#P(WpPL2hqm!BjlRS(G*7dmn#{9Ggr+y
zIn;(AIFr}|S%IDsE}Id$9e^JyT0iaKM{oRG?ot&S>U=*B|I@4Y4)1M<r)6?P{h%mC
z21gWc#C9nl-pNu;A~ZWfoY4S`Rc|uW$Qex{gcpP$=$Tt7A}5~rSFgl86r1W?_mpXP
z36Aqca>sTJ;T4<!w+XiWUO!x&0K(3_njsz|1GQv#s8MjNs}wd}2lNFHtlRmQ?>Vg9
zajZ(jpbHIda3Xmqc=rvICbaUk^Yg-6(f#6AuK-GYHxuj18_k@^TdHX#A%T;vB|55u
z&TBM1e7$Q~r9<MW{aoL7=Uks$b1*JL2;8^rqq9w(!ASqMij$xJTJ60#`t3&6ZO+q<
z8{+Kg1`AX}BKlqr32EB^7Hy^*ou3zcbx(RqX?Av>VBi0|<m}g3yxu`6-|OWphI>QD
z8PrlL3!7f!sH|z26cKS*SV2kON|~d%*V!O<PypO!`L3T<77?=U7X;Fst@wLP5&h%9
z^ER}lI5q><yN?klipzcxYIqv<>+lRAF7P0oM4M%d0j9-gf4p2D<N7RU*j(SQ-_!?v
zrF!Iyu4(=LE`1WcBnI$%yvR9Rlvt>e+O}uW&OWuPPd0+S_s$OMEm4S8vu1fPWmrZM
zRh_?DvMic&IYLTHP381)IZlC7_>4Q_1Qqk9AEOBLC>p9ux9!FT*Ji}&kcLK-`MIPp
z@E#5v1;exmYf?jl*cyvT<G2As1t=w<yA)rJ|8F`?jUe2m@c5cpRpKD@DG?Z*vg39R
zJakE|kurUz-_<Ui6!}aTG*33hI#RTmn!)}Ri9f26T4)|pw&;T6NP+2;FY=U;cG?)D
zK*ghzpN`~JBoP0X^#~FyIEX$!U#4wT1a79-yGc`Zv&uFoy-Kb((K(8#FNF(zuLY}l
zC0$<%zqz8FMBr57?Ov+kps^#>e@^&H==Ro_oQ3}8U>z+$jozo;Ncn<Jbk@{z6(yXo
z+2>YD?Ft+XhzdH?)D@+Ek+@26K9C>ny7T?a1Lu+64yd@!aZq4<V04xwQN^RmP^v97
z3y{zQlTHet#OcG3le5`!0H=%Ts%#jH9XiK4vdmCYt=%a$ra#mV_V#?~Ni>DI8bIP}
zRt>iMoYWMhw|(m?3!^WRtd%N$K=%fgojre<ga23NR}nW)k&(zBQ^~t8dm;lY2Ap$K
zm=8n82wd_O4EfOjYMkWzdPCVIm_HtyCxKwVxXgn;_CU%)n+`0Gfdsu}SPU$1q4`^|
z7l;*J&LdYrO#J4cjxzIP09Tbw<A_-bL$4MD*F)y=IpQS(e`Ub$f(=Jn^lL<(G^#3e
z83S`_>sGrMrph5n+x%o^yLKhhO*sF+KA8|lm>N8`1`l`+mwXmTx{QBC-F6s7t#05+
zyEGp9+WJfw#=CdM-7_j;P{-}^0szW5vJDMf+t=j5*=K3P1kh~q$st(ohaPwUAvr&t
zn&*a29-c^i0b!dKu0f)nz+;T@A-2(EEQGWY{aQP?j`(ipQwWH_YD3W;`Vdr^A(N<@
zFrW5r)r5>Gt*u)_p&r_AO=&Db6k&gTG5rL8A}lOuKgwHf;{XW3l*hA6U&T@(o1DX_
z1)i92%9n%~^y_R>M%s0tAGYlz_C6qNw?B$ut9d{2I;FML*3WDeY^zxp+h`&ix_Oea
z%{xV)mDHuYw&kae9IzCqOHcvdX$8*E3LN%t?mK*Tr8|R@9U<aFsY+NB58>A6&Hg+^
zXi<RC1Cpea$CkJj&rU73u|7W3<!6)%sbiV&&N8Dt=2W%%kt2o!-KcEqxC@++(RK20
zzr|?YSPL{54EG>=#xJ+l2GJT^8ug$@Os7}hEzf4{?$wTNxle||@-enW1rz~79P<`k
zcCd)A^=jgWupuP%XW%%S%seqFZ<)xOc7U19R+k`nFs|(@l@oOUEn(Cp#7|Ww*{r@y
z;^1HF@fFgks*@FOXwG~u6HVJo^l!Wz{T-RZddFupCo?67M17mvpHm6+agnUho(rwt
z{5Tr|%js({DZAxW`8gh*8fOWPYcy*-uupay$MspCO3Z~WJyZnf7B>ASN>>q+(Pnf!
zpvbPe4S|PsB0OR^E8SJ@dthadd<WrDh^ffMil|Po1~YxRTl|EDE*`~taJVtpE{Yeg
zgz$lXo&f>cSdjX27vqy>d^*L4VNeapD)R+t<ts$7uV%=4WWG|%B~&G>rHX%O(3ndq
z7@z}E?sG0gGegt)@E8L%5TCbJ+<l_@Q@ET?Np}IHr(JLa`v!%LS*Jj_6Krx%0QrUM
ztY8?&&U5kipIHN2u*QVYC`+?R<e&Oq7>19Ed?&l=a&`UNF_?ti7d`StJ?<kY-j0L!
zqU@{)(={y5k**OWU0!X#>uLn+LG>%UAZjD(VTg<YP?W$XkZYt;3?WF|Wh?XMU@1=Q
zJ)O#koQDzPKSP25FG<ul(~`{Hme3y{w-9<APiRKi1<O7&IT(!)vkjY$(18N)j{h3N
zM+bQvRrsdQj*DjnrZ$BQS~<uuFRL5XNmn7|6uHBf%51E&s3%7mdgQ^QO$JobHJLm%
z5fDNW$flvsLjCn(N=g0ikuk1m<WZ}LK~N}gkhWTv$#Pzj?E5|-E~46I$pnbwvLVWc
zHp&8lPcjFt*7n_G<_N35Utqij+^Dbo-~rdt6_$AnPCR|xEO{3_B9}p!z-IC{8W!f<
zb95xeXakKfR?HvNYSeHf!)A6G*dP`D#~NR{QnQnu4dc)=7JP*Wwjquq4ct+ejKj{z
zcrrpjhgE{{haQeSE0k~7s27GHBARnqLYS%C38sen9C4lt7hLZ_8d4oRW(YrRGO5N!
z?-gV-kN>)X)O2T$tJl}%HIIY(yN2o)02fnkl?C-%VVCx*i=(*yP|%nB38jW91MB5&
z1SXR^l0|M<wqC<`>#raN8ec4@!rtf4H^%b*fj3#^2#oR9OMkvidaq5x?$Nj~^Jvsq
zx|wdg?z?3)1Rt@ImTAf?EHyc9KC?Jhx^}Ffo3?Q<Jdl$>menNun>i3Bvz!Nx?%a)q
zPd)~ScNb{foRAbLo-~ZCQyo-ni*YS_^Ms%`^f=;p+cgRO?p9ty-w@8nAiOB+o)(vL
zm>wSmKdeL!O7HZ04oo~p%!mOYc%cjQAsHh`b8*_rXttW3dnAS3MOKi*0?OeAn{0u*
zhxgdQ+Y~tCL3Ph*fmj2w6LgOi-z|_6e##lP)hQ`25W2rrB9<mxluP;TdsSl_4G8-5
z2li!>qM;Of=miIlwcjxwz(k6hsqL&JeCm(yh4^9R<MpK&sTMuo9tS<r7<YD)Fncxb
z0&P+s%u>GzWO{}pjJ=uP#yW6tpWLSC?~BMG=`hZY_4DS+TD=pbaS0F&Ip>g6m5DkP
zs9agN8abSfEJd{^_v+AUxx)gdE{vinhl27kN|Sc9umlc$GgQ7{E=R~@bRs$xu=XyS
z<3{n(8Ox@ERqX%m+pL-^honKEqog`<+VvSVUVcpwHC1;jNOH&za8FnmYagoX<;xE3
z4bk_sKT=sEBgCi0yY3t#3Vu33oHoo+uaf$^nXdTITY)gXYB$0C-hc0=43}AoSGG&G
zpxk^I%C^|okRZ@>%#rO1bxCgX6N?v4l5>A84&-#B7erH+Z)~-yKo%?9IU7{X#Qon(
z*>;`oby+#%w&zY}^ojxs-En;+c-ukl78koJKrXvq4BpNn>gZpk32f<X&s1jntW!-N
zlJm(v&v*SM{Ca-6D!W+_RI=5G!@in;&$j`LDb4*Ay*wXhSgGXd2?11nE2GQ6gF+3|
z-yMed$+L2Crqt}yhAyXW^1Ky4;YDK|?V#^?e78S<(gkMM>4yOj!`ahF9`SR45*D?`
zJO93JZu0Tgcc^AO2*4%}t(6VaaAyZp2S7-Af5b|+p2eOi^BMgB-}S%vk6Qw4?W%Xu
zqrW9lu32rOf#cb3FP)*+y9wiUI;wOI?fP_<<pxj%Cp<>WcK~u7lJPHU9)mv4I)(fk
zvg;qp%N`9!DWYt&JQ36t8Ib{J0<#|g{Dru1fBudkT`Gbi^)G>qqtv})nGfa4PSI`7
zeDNKl<{KNVB=TZ3n!wQ3Fdi4Paud92vGB4gv|_ka_aYWV=%0k!8k)`hpH(F&tS(Xv
zpD7zIIii9oa#6#cnk-EYGloNgLFai}TSnngw){w2|1D5yh%<vK)5`!1Y-`VImTBI)
zwP`WTdcQO6Vl99{^iN+s_%hQ-aELXJ06Ll}RAKqeeuW_5e}0e{3gSD$*@N3>n^x1x
zx21rP-yI#TV@~j-J0JdgXO-UpcLvhje0sb1F?Jq&&ExBCOdI3bOpBN@?MSr%*%xEn
zbh6x_8psy-v+E>h*^tr_f65fw=jWKGs!39we}V0M3g)L-E~Vr_+I2PIvOepTHj4$K
z3ZJ#fv&(Zr5_L`eVjKXiBX9Zn7xm-Ahc`w#(nnoKYE78)e>JBJPiRMoI`A0xCCFnG
z>(#9Lu-&*O)CNR&LbIsLtv~k1M*}T|AYU+3F(~;B(%HT92H7^OU?{e9ls4AZkD}++
zmYa5ov2I#c>BOhc?fVQjVQX72dymZ2SPMf8`c^sxRK8ssDkWd|LE)MC(C;lFX>i+B
zs8>MB>}jntn`f6A-*9kjF1VupXu~Hu7F9r!MB&7LxLlVX839&-nC2tLO2)H}TM$xm
z+YO_}2t{b1^vB+VK>j3s6~Gz$44wDyrm1=~%^k`Qv-Nrs3s;q^jUH^?&{G*I+%r>S
zJHA%+fLB6pw|z=?yTGq-87d`J-*8iTLQWI%(&+m!NFCp7ifteGFI}>VrWsVl^0Ju#
zGlAl2&4;%u^nMN03Y6$|&G-5jw?679Vt}dU{hS+p)boo(GuySgAWu}EaD@)OA(SU+
zs>31k7&zl=B?HU~lW*1vlt;&kyxd2GK6h0Yo9V{k!uHi(I-)N*z$;pj)Z0<;hjft3
zZt_<AemH!Q!!g)k1m)hNlygxxok*74bYl-F7~8+L^e!_!V{&A9Nk4G0cG?4{SLt3)
zY!+4pH_a}}P`G<YAsw{qaAWmQmJ%bZ-fRT=oeKg@Z!6aK2YuCA80=S!&+xUjXf*~A
zN2Ts$%2FzS$N1hRj*<%pwllM2d@r0MM)3jRx?MJ_ggoMK5EyqZH71FDBwvwcUc}Oy
zL0;qOvp4%?!2u7h#l?!p{Co=&(pBF8DyiOL881vk#ObKH-(1XrQF$^2-md`FIu=UO
zN=LX_bqs;3`B%iH4odK&{RzEvE%NZRkB@-q|5*nk=;zA>YO26~p&+d7C>)f&H+n6=
zu;ieffX}tDy%y0t6Z9VVVmX=dzcLkc6{h<SP0MX?a$CmFBg_9@5D5@R)56zH-vMyk
zIT6i^$KzObc*Zp1GG{iZK7D9fX3_~{%?Gyd2-dWKUrMv=06&ph-wc=1lYpEZdro!A
z(5$4nBJz91Q!AxRQ1ZNkLDu=lW6j>hCVJ71fsLVKMnbc#F0gqtx}>(z;zlo1<v>Ju
z`&&gwt2g2QD04;@P}o}E9ArBhaM$OOA`rk4Du`oW0~}VA8=AWG9t-QxJ-%M^1{n&q
ztsL1ut=n*)P#9@jT>|tTIBD`|6u{Jw0eU~Q5Uw+LlVx-pCVLF)d2L#wL9L5_x4EO&
z^UOecw`@8ZMm9FNOl&&d6Y;jJ30rIM#Tor`gT_>oat6C{XwxyXt*3~`8``&2NTKdA
zORz>qG%&G41K3|>w=0%K+~TLlS+^!Ed!=hx@J$>9dAl5UoBS?k$(W2Hv3j3ht@@*5
z&FnN81lnd-_Yg`LyoY|w<FTjL?WT5wyXPX&kdgBd_WJ+D)ox94^|L(`>CR4Zwf!Pj
zS+!2HV9wO_iK~sea_{7)?`O^O4>o#dCuXLt!*XuDATr1x*a9L1-`#r{5WY=)I<Z*_
zEz3X{Bxc%wBPUt?7dK|kS@EfA*uB7e*Jj6@>G(xBxBuN_9?y$)GTOLz<Xm01QpP7u
z5BA82X<cwv$ES9!Kf*bE=~HxKhLHEvLeCguWpLNWP{9?VOtoO&hXaNJ%iZtr+=%$Z
zr+6!BI_jw!ioYx290;=0)z2-Ps`k2|{Zm9_<o2sD2p!7Prq17tr#=enI)uPd^Fj84
zHuE8v?tE7W+U?vis<-Dwcfl+;wTFxy?q3&WFS>e;>xtRpz<Sie-)19oX)$f;f<hLi
zcI;T-;<_C1ci<u}aYd0I9|o8ZWNlV?yL)-`jUzlXTM)iGp2RIB#>0bK7F^gV?-j{o
zza*CcbM?ft&-5QXjtFSc7^n_@@adJ{ZGSv}z{?$vmCakB=t6lN(wVlwJ<o=QU|eJ>
zNoPKdg<K%6yXjfu-m6MwHz_jolZQ6>JP4X}!!f5oY<0)Duu?zv%cmSlyOS#ktkC-g
zqt?mXO7;@kO#VZ6Nqn-n%Fs+?6byMB-wTpgek-4pmkvSy@5%{U?(c%FwctJ|qDwsQ
zc+XMtZh;a8xi#OQt}RLlYC)X*$R8hlh@5VkHFm3jlElsU{mJ_zrWhn);d6!N9E5f*
zLgv77iMBcJL50HfZs%1vn+VRsF9KKR7c=OXuAD$~cWRF@`BF3B4C;VJ73@0`wzb(7
z8(BS1PYI`rd||5oze)q3-(0A`by05EPNo(1?d?<pQJI~R98L_Tod$kT?W=QHs1tu3
zeyXgxYEl%5U5hfS*HSKT$irD}mVs)@jP$=UBdP=)<G3uO_oby0g&wCaeQDDPJBQ8k
z#SWHto(-Y~ru}BKc)pG*lhtXyby7X3op!`j8h0QaE>Ib63|kP1d|x|K-;o47#DLHZ
zE3m>7PO_oF$S|PX&Zm{yN$v=-UD2T+`ndXC%PoL*Bsum%Al4#!BI1t%TjmN_d7jP*
zwX^Y29#EWft8*&EksIKLDa<0<a8KPyz9hXeonC=sf(^6H74e4tm)$rg11Lb-fN!z@
z@&hMs75{vv6WFSuiglyi&+LYzj+C3a>0rXo2<(6lL!(}TR0`J>af6uaOS8lZu&QMY
zZ?m%OJ6XQEH{V*Hcn?#4_1woLCrV4J*<9DN55gv!1IyW)(CDRI=o!-?cQ!PA)=YYs
zT`_;WMDdMIZ+FM=p-sc$q2UM~8NsNTFd+6zi2d6CP=CPW(7qIg6NQV;z>r2QZa3$P
z(%%=IWeYzu8=_UySFS|C?pbv0{pV1p@WkC0eT>S3?D~6JPLATe3siy8s6pGrk|vge
z5h)`n)EY5e+`Z(BY5BN(eob*SJ@&72NK!VHA%-e^fh)<-UD1&IbI~1b6j@bQdK=ZQ
z2KfNH3s>^pzF<Z2Zs9-D0lz3?x8@xTsE8L}Mmhc!)Qd?oqM~RoNo0c<_Rg(5AIXe(
zr#Ggb2!4-BU(ZlE_{Rp=QB{C_Y^3)kI!a&0Q3RCJ<@UB%v$wm%Q6)WUO?Vi?<D#uo
zRe_nQE&Ih$aKm39RU`Ef%r2@f1V7LS@tl&3TMz&LT-u1*XrteCBc$wMkIaa4MJI9N
zqBa)b@gtF5di6Y6qK!6?!Ht5K9^$}M1c9efXCcbsB!Cu&4DFJSybnxU@t<RO3x(L?
zP(6O~mk&PinWXs4uNB&%T2KuqL~|*~17N&M7U*to)Xh_NOEZVo1RGS-*3sNmB+an9
zrFC>lEaGjG18`3G{$PYaPutMRi!1hX>(L%?$EAk5#@i5EP-8&cC3FKuUQySQJ1Dzo
zo3i(MV0&JutvB}&m-T>hUmVQKao0K_RU6E#j0Ya`Hyhp{kO@e#K^v&AgkwIhJ-0f+
zT`1zD3fki>vq+drrU*568k{Mi)JYf>LV`eASN*tDUw;He9{v#vQQ)mRP^%b&Kl>nq
z(ulbrDjC<X4Z35890bVAthv$`3$Reb*AlT{O_CNk%e7K)0kyK_+zg)HrjyQF%I@z+
zz7$nx5=+oSCWURlNm@%b8Bw`oNo%ZXyPm)0zb`5+nQfCQxcE#=L=P>9KJBw-{=xp{
z_$}JsG+>w%CSo%g9rTM^%O<v8QbI6c<LLL!K^N7wUbXkQd!CMoUbk~F$Y1(dX{%Vs
zDQoq*eBdG%#is<MeHx`j1EM9Fxd26o=9W(}su)qO)Y2zg_TN2%)YXpmUp-FL0Z14`
z{gg*5xGS)C{N*HuCtpkoo63T)P_}iPqAvQ2?FY|l<Z7$5=B_4C(JDUz146N8OAJxb
zF08qEkg%Y<l_T#vOR5^i*;*nY+l+J&GH&LPLBX8QLj=;G7Nz4jRH6Fdc^j2JNmL@J
zK{|{XIPiT~Xs0()3_N!1%&3*N)bq>Wr(Xd21Yjb`#PJ-Lv^85@U-^RH{raXlU`Xfd
zTp#|VHDiaX#DSesF-&IqguJOEvAKB^cS3<C1KyF_A&u4O#0N4~n2;F}^WMj*O!%Gy
z3I9kauwD!C$;x~A_}3z{N=@ozH!RC{n3{}%y9!L+RYbm<W38BZwKOH>`-_EADq|eh
zSqutmDRdwMFpw!iFs@3sXGls_{<Oom{9K>`M3v8zX|J{@XDKU4gj%3c3sXEbAVXf%
zkh!wYcl<*C-Zo$&Ka)+PZCz*4DRLftB$L%IU44%+WjcOwUpD9p9Ze1?;B<Y<A7RM#
zlN)o6_FC0)t7B9qK-e9wddTP+0pz;_vQXzlw3@xA62eqh{Ti8ms^a_|eJd-YIMJUE
zf~sUC4&?+qBQ{9;9%jg4GTXN>ET8&*TEs5NRk_xiSYb??LGt^K<#(xNx-+lO-@cl2
zlRo4lAs>m1P*LxMxz^S8eB%I}g^)QV{fSGkgAd_}v!W;Sms%ZGy9O1Q1`ZXdeQ(!h
zrF1`_pyM)gcY>X9dV?p<x5yj2GAsabF=6ceP@tO)C@=|*W0hbeNerxSwDS#V9J-O6
zLz-jM-{qabqP3h#mDZ}lLyqZStU?~$#LVM7FQG$g3%Sw$RQ-#jQLTlx)E?7mNJ&L9
zqZl+#seX-9bGv-o>1BZ~G(UlLNOJmqaYOtza#EWP9hk>rho^u}%aD1|($kAtw9e=)
z4z2YJ&6w=80N)7Fb3I(+C9~KJUb6q3q$+RT#8m?ESxY2OC4=3WvG9y1;-BX#i}vMo
z3YuQ%7X%4?Au_&g1Fxc<cI6(Rp0b1V099sTZrzl#*Y2wLPF@R;MZNJW4964+d?2&E
zZ7(^bp2b}enWCYNp`EZOOw1L`v?>0ID!QevgL<yv2hh0LgfeT{{&{`35P_RkCR`Ff
zA7n~Ey%8@Ss#3c+(Zj}fb_2gHSH+@n&nwUt4aegdF;eOF9!w&hJNYfmSsoeL!rGq6
z=614DtN_NnNs{bo2p{^b^JJ|-($ZR2cIG<Pq5(JUue_s}f4`~XXUZir1u*zm&M+iR
zuVapY`{Q>SB47Y3&HmjAVG1KCqaPPWNxgC)50peMsA}`kL`K1QRokHLBIOO%&ccA3
zzS2X_8OlTw#?;B$H+Ob>Na_H5d`PfIV@AX8AzP$<?cyg5k8QYGQF}a~33b|5n?g(;
zENx#3r>Amdv|(E|0J-KN8~4H5?q7Wxb0+bdE>>+KuMv6Bobgo%_6_bIk5>p~gKC_R
zR;?jjUJP3t)YKP6K+4z()mc(u2VqSm$h9}o5A?pTbdWLh_~N?S_pXp*CCKN_AfEPO
z*q@0SIliaT;|@(15(FK_K)gq=;Vrsn+P+0Q>p=hxjrj9YzrP?(jBh&-J?8#PQ11b}
zZergKt69?TUwLV443pA!yx5F@WrA28xnjdtq_<2BAYz4z-d!VXMmu;y0zo9$z8l86
zo1pvB*+a9h^NNJ>5?L=q@o3wG)?!&HTaPLRLACBRJjww)^t|e*l1OPhyP+9fEt(mV
zolwn_34QRv8~>Z+zOHZ7Lh5aXG6W>PWQ_?s3POrBzP}G6C+_se+6U5<&^e&iyN&um
zk{$(J#{jn#K%6O`K2SB6KD^T86XSX)U1$8_!5h5KCC6LxH_$*P!vch5AQ+8HNfz@0
z_PdIb0jGEHtt{D;@zHgT)LENkma@*Tiy$&a4S^(Iki>Rj>iY_BN{$Ol^8PS4VSj$>
zuC9l27cR^B=Kg`0xy@jTet-dgLIk<2M`ZWn0Bi8FR#JHCMDm&VwuvhkxUBb8OQ&^%
z=|xRlma8aGuu=}JeCPuFRxRxGQ-zENZ*6qaM>ND7kigVrb=EIAg+e-4ZUbSNCsS;#
zx8`{x9s^eYMK%^|N<AGfMuV+h@JD?vd(CWSA%isq`mESOSF*iS`MV<3wSrHP5(Lka
z<l0N-Z<-D@g|5H-O{H4Mf&~AX=F$KB9eB6(M$SuJmx0k2%=+1K-p*bEoBo=n^6}|n
zt3y%>&JIcjDjo%Bi}QN;7XQz+3_3)2(1_(wXQHivt864XMBuJ;05D^LY?4;-7h&D5
zMZxc-YLOTO0FCuVyMcMPLMFk^8*7c(^LH5VfZed;o(0#8G_bF){|le1FaHnm7&RDN
zeVkYYwrC9=buF?Fu@D<M$9;pz<ZJ&Knq@9nxD2DZT{4d3P5sfrT8^A#`u%@I206eh
zjt19BOvUOXl~O_qau~LW)(FW=R+BbfYJ_mG^FK`P^*2J4QgS+nxVum|RKw2pK75ka
zS?-*oY~v)!rL^*t6~@5Jr9v2vkfsbEI>OK&2zV#dXv8F-CW1wzOl*!kImhTbsI#a-
zrpEk|DP|{<Y4~p4TC_yQJYt@H4zlbzQ#K4HQ;K_;1J=Gb`%;`dFB-ncXWseZ0<BFM
z|At&|UQK&YKn+&mv2Z?oNx2E++Fp1c>l)`sq5Q8~i0*HrkzKwG5##y~g}#jt?1gSJ
z4XOshbSzG<a2*Ay^Xk1M(jK8^{k?cY1Q^(0mXDHbATrB4xAz=G$a=Bqj34L8sj;Gg
zCFdp21Evqo;&ln5uiC@Hs%qJn7ETAM&Cy3{2y*GR)z$)*-h^pa_v`+@Zy?|MUZDR~
z_!rK-*}@!)4d4G-3|r59qPe0FenLV{(NLhc<*?t1*ucdj$Asj@+X0J21Kz?)biAr}
zF|qnN$fjd4nD8iPSf;sSSRhaUIDs7X4V<7Q@rUlaBuWd2nc!Dp^dds~bhma4nju&O
zh(n$?dAbF1iOJ3xAqGz^30#v4VoBxaZqDu+Uw6uZhae!rRM;$P1DM=1!<e77(ZG}w
z>4uyOS&X-3l5u|-^T1z#<VDcFQ!3a&gGfpP6`>#f<Z~f>ArtTJixD*u@pv|sAw>ay
zF2-LcO8uU?)A=G;_h72Fgj8;Y)T|hd)Y;khs(%usqct1*;Oa_mlG2mP^PrE{J{>kp
zEim+|J<p$&F6`1mW36|vk7md*@-helA)gny0Q}aLO#XNgaBOOGNbJ1Z+*u#oN2khC
z>*S|4L;sG%$BrF34C}nDZ_q|$6)Z&qo&f|B)?pbc;fmzpWYt>9|7SR-pC|-rL*Y@p
zGEl^Uk{BwER=L08ZLi!Fj^K)ChxJPwjV1~MEJ;r&fwwPfnmcS!i}OhE0;+^14y<EB
zVK9-*NH^Y2Wby(|U!|x!k3<*<yUmN$9=hsN9@@a#zSM^MYCx>I?JPyE#z`qAc743S
zJr<q8x73>1+Mz9T)S!p()A?zy7a;)sdgMHm32OSs7Xc3`w<$XsG6Q3L;7-h0;P{^K
zJLZlIx70cse@_bA%Sf23Camc}1-O-Al(TpXAogxPbYfp}u0H-+FPC9&l|6&pMEhmL
zGt3m#05h)iOCs(yz@TD7EIJljNB%&i>t3-X<j>`uoWiiS5heo^P4G**7FYg%a?_|q
zmr$1)@`EKlKF}rxQKaWSm2N)?4I|K#(E)23<KT%Ep+JnM$#q%+`OIgs_B_pq&)q@n
zN>W3lNK;JN28#N#9!d7?Lw9vVQi64}YyN{;(#2}d;tMr1oeZsB)~nP@9Ou(iHV@+K
z;55DRzsv9?XdtQ1?8A42{b_bynf^#q!U`AuA*?37U%T>&d2u3L#+K={K538CG|U;6
z#PhF4F4|F^>&samFkRo_1rA3qmbZlH47asPRh>_RV3+rINPrE^jjO_?TnWl1b@>W?
zX{YsmV*u51xXnxi?7^X=reUIOp&IPoYflTL`-ht<mG6!<+LHFhaX<A57!0h;8K1FY
zH{2khvYf#wqH&Q*c?G<rO1j3_o1iL^^Lw!DZ9>YHnl%zMP0DYz+^d3wpp5hv9^Tr1
zvkluUfHb7rEy!_UsD9G*_#mV6r?APQ1<o%#?d5hY&vyPX?QQulfC$#`vSkJ~zjq)`
zd4ZnE)btRM!}qqn%I9|JP;*EvcP3PUT%U~ufC$}v7WBk(JYJRS%%G85`eWT+rBFZA
zIwKFs><ONJnXDB>nm4XVp~d2uI3}7ksiM?bLW$V<@Zex1;Y_{!ktLn0pZGzj-B|k(
zSp??GxoHI6(=XkaC~Wt`JfK68tEcv<DzXnr#ZLL&I3~Z(uo;wQj?h;ARd|FK1RG?k
zy*pXDp=sHhuN&}5oMuzyn18kL_}~fXSWuywURKd+q{4g7)QE~y*&9^$Fi{^qKgbKQ
zWA9Ot4DF&tZVNi*#N4BzSS>>b2}4TYVD}coY@y_`sQ@Gc;8!*>sAbsshKjVP{hMCG
zZ+rw}EF0FwRX#;l9U!(?r)d>F?*a{eQv82Y*#e8Ikyy0p-=e<V-UDjU66P%9nw{B!
zZIMCh;YokYImaW8#_rRV@t%fq9U(vP?@;ptV(&8}_%!c^z3J@E-A{)1?kXpsvSIdz
zgW#i+S0V^Z$veAz(9_m>qzfEf?UnA`{CZ#K`kb8EO3!+QG`ka{v>3LH)x<Fu*N)%-
zQ6s;>HDY#e87^t?hn_>}4%I%4T!otrZEr|2Wl>%==Zy^(%a`z78hev#$AVB#mhvxx
zFQ4QcUgCMAU`V~rKQg>(1UU`B(k^@4t9&TFCm#*hagT~I-dGkOzHJ6voU{Cl<4=?+
zr^tCGoKne*@&E~$9#0=Z2<z%Dm&)B>y-qD+Si5OdU)#czudDK8=4G!^o2@(?2_%E!
z$T%+4%d<u(k+t&vcJpB8CNH!XdUvrhLc>N`s#w2#;|cnB`SSy{oC9un;PZWbOc^Zl
zWaUf)$*!IG1xo)lGKF)Qpko;xD8KQ>5+l$(ua!ptc#4db&NY+)2L){=8=@PcYGC>`
z(qa-?X%_zcESj4(J-*Wfzen%S@AV2(jxnyzZt()fm9BKxeXMwx0yS^D<cvl_nWle$
zI*q8EKuMS?GXrineJN7XQz^ge25#Xk^KlpF$tGo8%;GQX1xhI0ol?x=R#kunqR>2t
z&ZT8gp8bDneSWYn#WgDvm|-myVng97NN_`d4@V^^c=|2;M|42GHEh)EwDOn~j4goF
z$;9=MFGWj)u(SKxrSWiy?@PqrLDHQVJtwI!?$AN2@tFO-ysG%$)Pa<I<GS->CjF!w
z_aa*ax6Im0Q24Z>XkC68(=&!CCeB^vD|Yif`ZLB#G|4!jl^3hDT#iwMw&}J<icd;U
zixjE1iEoAj&fU>Kz3+mdw}~!!a?_Yc2MMr_3|9Yw(gt-<tQd0+cduzoa-@W^lcFPO
zB#_mxXYL^}BSSDIpB!o+h;d8BFe)42Qk;;WFQMF3S}?{BO5iq20#vX$jfM;36V$AF
z6yh7@%uSj<4H$4(VJ~xH6K7rM>OH6k;he600;I7(#{;+(_T8FynKAZSDkP-cZG)n#
z{5Gh>d<*-(cfUcN%j^APX_Ei^LXY?%34o_6t?PA`w!(j#+qM`SU$})<Q`g&xv&)Er
zsXj~7$~7{plTOIaA9#NQPQit7H&l*OR3L`Z>mjpRhqw5IL0|O2-y+ivo~x7jO<?@_
z>uV(}dXO=}r3b9X;EZ0Yg@d6=HdkI9YrwgLxdjU^g?uWxP$c#SA1>^2$#<6sxF8kx
zdI;)fq0uirbnC7Dg2vdWU*);G42$*hcrDikKw$yzyKFVt;x%VNae32{z+&U%>YLBD
zbg4cRx&a7)pd|>UW2^8w(ihb6aPQb|YysKCNt+`$)n)+Re#jZq#96tlQ^SNGNN9@h
zbPK5RfNZ?w>Gkz;vv}8X7*E$BN-z5n=Gjxa=7w1+#Ljlw{Bj~vCE+X|ji=+2Hd%l$
zx{Fyg8Z_3;f`;+QnS76Su<*pLO5%>-SL`O3$mPl;PF1;<3N{K)8fD0fm>;aR*mjDj
zd<TPuz?-WjM{rn`g7S<IzCO<lGTSjdZb8I*nd23PO|$3YG4yn@b~Zt(w*Gdn*A~<o
z`~!zbS$(nYa7tvseO0j=F_i#oUw-9}KN3vS8T2!gQ-IBec|6qhphHI?pO&U1cgn92
zrd=TL*{!9j`$WTzRAkd@@L!=BH84w0m|zl*>W(gt)y>@+zqo`sz3fL}u<qp0A!`^D
zMN~Uq82j}3v@NOYSKg)Svx<5$U9K!sZtQi0(YP(qfA{zeZKV!zQnF_&CLnnAZdv8@
zfbK9(G9}EmSxUZF;rH8Wp`10H+wnqwx0`GfZh=bpis*ny$Dv}Vz54Vf>3%&(44?K6
z<Wy>;YMhEUUkssJ@f(>PyXq@h&GuiPksC=7F%Cq0?<A)r#0kHjxEos@8Gn0r|33k!
z)KjXuhn`S(;$Q*~@+nF69GF=VEu;aP4OxZ&E3<0C2?oE*{^|B<>Kalxn3y?Q7@13w
zC1lrmdBkCoeSNd6T^~6N^Jieda@sPgIwef_?{+y#3uh%(sJ*2y-x;#0$wSX?X`;p~
zF9RN_l5nB);FIEd{L|FD-5V1(W-=>enAZzrX1}m}qQJ~gDOnpM;KsZR|GZBmfjO{G
zoJ)G2Ip%Dg+3z&x1(0Cr8iwJJcd=1+oO{QWtnAfI<**Q0tUu#p<!Q=G;j?VY3cgJN
zRI#U9{aV1z*Ux*Swv@DF3Im@1WfwB011CPd6mfPxNZ)nC7R#&wkda$j!f!jnZXn4J
zUTSdJ>7y|4T^6eUSB&}BTvGYa>nu8A8t-o3ilLTKG5YJB(ztiX7y(Ee0y68dTrVLL
z+<aCBNOanBTfE^do9;SfrNw~hf$OWV3}Flb#627cu18oc^6apY6+u?G$@WFN%`@!^
z0us&G-a%eaO<RU|qs3_(Q^6cLs<SygCt_#>iqsz}@*p=Qu4uh40q)i=mm=yL_OqzN
z#$p+pD>qO8ZqVA<@PKcs;Wu>kk41}!-@5!fg;C|i)td$KDLZA^GV3QZ6PU_ph0)R_
zyVKL7lX`u=O7X4^((rCSWxTg;!gKlhq;%5GD+bjxQE9DdQ;Lr(QCwbZMXgD2zabcd
zX<t9ITb_v()TgglL~AiV7m13E)MM)UrS{`qbix16_jB>$`z?r8nt1=2T<us!PMB}f
zQ6I)(c6T=VVs=JEBNn-g=v7l0BRa?})7zQ&+N9TO%~5p|)mmDnd*^R10<Se&XUhA5
z3yQmpbbgE+cxstJ4hV#!#pA(A!nk?GWWD)}yh0&cH!go11aO0M3#<+-H$<fJmB$O^
z2)@;zdOWYUimmZVZM*oakg|dva6E^nxouXWrMk1gN|5a@@hrGo0maXTR~7L@tU)y=
zQV)wPsx^Gg=HYH1@I}OUIul8Gl!X+jl2M#%I%d>{2#6%YoZjce_z+KRqI{~!H@f2|
zNS|lDE#PQOM6HjAwx9dB@bA+pjYD;6PM<Ki;%Mv^9$KizA6qftS{HId#C%fQ8p_*9
zu>|cRq!+<oD{$Dm$7KQXdisduxq|pfzUsgP7$^{HMu{R-0jLxf_$l2oH-NfSRxG`f
zsm}0fBSDG4%I6sV3bI@0mvn4f&bQV+ISm-P^C1#vagos4&7?1<NgoIFXAvy25ck^s
z6y8T!s-%iGOlz_9W+&T`lnE++g}8cfK}?rzG~>;h>0YoRHe!Z0=6tIlyur$o<1hV~
z{;OF;`kt{$>OZV=>D=cz%<gQ-rHAd%Mq?3vKQ(E1|2alu`5;F?2@_u-afz`5UCXSI
zRGu7^l9_^vK>4SmFuruzLVej|bc4hIMcaerY7Vp)MmjvmBjGuS6B)F<>-hx*R-~Z|
zyY{d$X4vP`XdAqUGz)fi`I^$*c|&#;S!B<^FAJb}i_Kd_bwmgay24Hw!bM|CmSxgX
z%b-&nfI7$rA|YY~)K0B^ptQZ(<%uO9N&2_QeyXe{Ul8q1dvcIR+Dz%FcY)RYSnTF(
ze#mY~8+>Vr&H#)uUDHQF8Q&o(6)4_FxEDZ3d(kP##w&x(AWr;NIxoRCEBKV%y`9bG
z=~Wcl#Ii%AJm-ZDT);*|ms`!SP(NLC2!FNdHyvV1p^{8L+sdn7f381eK09Bbb_x?t
z4vXE0<gs=+S=44>PHvF(3lt~@@pz*&J4V@o3Ua=c;k*Zm+atxRGw!R>5t*mqx+JD>
zwtEl%WSm&g#7nEAh+38E9k1LeP^=U&hXg%wnopu6$Jqnti}bw}L}*En&W$|1(c-_q
z{dRGkOi3F$+TD)4FtBvYo<_7d#p~~)5KnJ>qz%zF=kSEW2G+f$Dm@F_&uM~!iNDjF
zP?CeB-@<IsP~<k#hXYyo4siB-%k2Qa7CCWGZ;o<u@zffKUsn7l$9PXY1o{n=z!al8
zwn=ZxNjJXr`rCUdpbijaesp##6;{v{K#CXpL;><9^m+GrYejWB;J1L`TcMJ^(Fs#1
zu;3ib|5TRpt3>k_4YNW_9A0xK$#%-YNitC(Q46DL?1U3ISxssQt$Vx?Ohc%?wGdpx
z8?D+#0)r()nDiXpH<xRf2n@dXuH06zKr~88B9{KUkcLeVq;FHc*nC<!7Q<s^iwf=K
zBHwO7m(_+CjWiT>ellu^=CYmuc9DJ~3EuM63gqiI#E7-T%HYI&7VD7%Q-fUR8F9SC
z#_&ZqPa-WFXLE@DlJ>X&;og;l`)omB%R0)VL0WmWlMn8Tdne#=IiF5x8SgE+jn1fF
zvMM)&8hJMeu7OoKs($>xa(`RHBU9%xv`K%5ND1h9j_{($?)H%7+NZUk3yQ&;wN9GK
zX*}VnyNY>{A3h6$MYZ=6Ya>g+(;~pDSK>f0==(|JIW|Pg$X%R7;A*irW1tTLyW85B
zne$f<|9VCb5h}Q0Ls2wJn~g?{K<=eA>j`hv0EmXH;y1riNqs3&nca_2kmY6$MO#zf
z!L^{#UTy%|P0`CGeBJ%=)AGWvc%<<me>lYR>Mlc3)iF;MopO0UbMfr)gtru1!Qa6#
zj2n(ww~}Ifu{UOp0)_uoGvBoA_$WazO_hb5RmS8^-2`^c`nBrTd#S;rj-1zQ1X&ei
z{hG34$ZVx_ec_lStg8tvz?D(zql3n5Vs2jXeYV({7tq-;{jk(c^Lr*<qnvDkD2J;^
zt35@0=+8OjZ+NMBx9Dnid``Tdc3Xd8MTq^OMy%2tsCmhM*=v`jGUt}Oai=~PyaUuu
zH}N%NQR+xz;{;(kT`*vzoua${-<%hEFS*Q+OIE9NUzWM&iQa+4ZQA5%(FKtX7ytM%
z^{hH7QC2i=i65}txiuP=b?kamrm%a!?U|2Xd(!8mU^F8J?e~2`j5Vy0x~G%#Jcu6<
zP+MvV!qTxzss|c#Fi+DtY(t7Bz6L%Vp!d^##y`a&ZW%Zd;S&+Hx0%6f`*N<R3hu(P
zcv;-6xfBTfgOJlcR?wX%IH#~w!z_Fd|1$3H!-uiHEFsv+qG{pTF@Oy#%YLLRArtQo
zkKi_l$%E^epvKe5rD9M^&H|LPO|7?p&Ca-1BrGoZJbW%=RAQ<H9~~KVGy!-1#i+qQ
zifKggqSyU$3|z!<#7^T%wK&+_W_%PNujcb7BINRshk;|=+{Mac#<*4=a8Q5OxY5Xa
zLC@`62HUTC#|Q8t0F-zxH=36ok1u;jZq9#WiK|)TS3v4opeD)?%{RI2fYME{XJl1{
zEyZ{t1wW!#x+&8rksG-KAZ}C|rx%NJc}HbQYu(<a@77r*aUDl0B9zHt;HAl+TAL7a
zzwnE`5ZUaC6qX0Dfyeto36PaH=%etGFV4&QTg-F*(GP{*d|TLJtmTzJYu0)odl0pH
zoUu7OdO1ApCYia^Y~g?d=eg%vWC1>_I?gM$AjoMrwfQhNPDga<+ThjA7fpRP$WHWV
zV8p<?0ugn>uhXH~HPan;GxCk4v7oSK>R;lwzggD%mhYqj1A=`^exO~r+Atk}K!UFS
zKx*k6ZiuF@nX3Gf@^@-R3SXU1Q0DsNb%_zC$S<()>?Unq4ajq8c$C9jI?qiyNIL`6
z4@iR-Y4vr|hw>-sQUBM<t8v4mj6v3J5E)@(T2>})kj)=T#Kq?qqC8m&EH!s=!av>F
ze?OFD3o?2II`r`Zy?t82P)YhF#S5lYt8K)2gDg$6G|7CO5c2_u@9cD7wgJW&xx-b(
zTq>js+yyXPQ`^~hP|jx3H-l<WL;kBbjcQa3@PbC(eGjyJxb*0j#Ky>HBtVHPTp;8X
ziumo~p*w{^;U^JRBNWO~Mbq0i*_9-^u#)eE&0qqLY8TdU*OA>^llqzy*H%l{(v-)2
z&4}kmMQr4Fd2nq1-@m2qZ8-fF7nv{xV;9|`N0UX1WJ#tRrIg0)_H}7K*FV)pPh3nj
zu4#itX$oWg;@-iLT_$@ao#M=IBjfWnU~cduIhm-5-bgJoj1Mv0n3gN)g_}=`s8dU-
z$U@#Sujv%-iy|e_!J|de<$+*2GsKD_b`QjRBMCBVda9$+Y9%~52wAVVm(5i%WQ>>t
zzMV~sn0BQ~PKm>cnfQw(^TBvDP>toQ{J%*`z5XPYfRm9pEYGrtoslb#n3f7YtAC!Z
zOI11g0wsnpB1{|4hnn4SDXShu+KhP4>ZmBzi^0B&5LiZIBBDp{wIplG`DB%&c6DLO
zAj>D8=IXwpmb4e!^|q1`e(`ZEJwpQaa`26!^tmJxhMx|CQdjo^V92>^^v?*ou2m+k
zDRvJ)Ts706E%3+WQy~ss-mxfm5k8RXN4gcbL<2P0Q6+MwCcP~p(?}g5+3w~^!pGHd
zqubNH;pbpUyntnMyGW(QBj~F8^1J1&f&ol>CIn2b?L`o~bWUQIaQOXwR)87?n3V~v
zj`h*H*kz~F7?ZVW?a@J#$pX%+DJ(r*@6j;2ob*WlKUo?5TL$3P(a;9@P~)vOn<o}s
zGPC)>Tb{;V#H_SWhjvUB?%TkhL4wh{n6AuyE}ne-csXN+)~CkWMhMFdkH-l%(5wAu
z%+5o1=WWwjv-&~JN~k5Qo9++#fYO$kmqEyE;y7XH%%D>(5^pSA6Wr1ss7hN!24^^f
zT0Ku)gjy1qrAS$?cKIR&!tcX)<GB{7LuUZsj86ondC^j&K;0HTUDHXTnUXE^jJv3=
z>(7Ux5Bgoy3kAwcWXY~vQs5bDy;Y{!tTl%HZRelKqV$%3%JEp$r~OJ^XxMF*>pX|O
z06aj$zcwtwGGps}O4aMnP)tkiR}c_fHLq<fegXohd;fM7{Q)}s(st6f;v_l_{FC{E
z9m24;(I-%@XF>BrC^H&?GLXOl(;0|+HTazFPHj;~2>WW-DqFW#qgR_)=%2Io<PP@4
z=0w4(mWXP;U75%6_sK(H<Fu<rFvy0K{+)R}&o=d2V4kE3FyuqoA!*Ir6Q!M_54X7y
zu)G=5AYic^bZ?C;WquR&GG*V6ewOA|FAOy{iMfe7T(Hl-@^VXTrdTb9e1ZHtq<GWY
z%bSi+OP{;T?=3DFpzeH>7B*XmpTQhc5+927fGYGD=%F)Cv;NQ>30ygVNDg@xcc_#W
z&TYyP33YIW>yFzb!OK!_9FbnpS4D_nH&Qa#bjAKk<l&@u6ojo$xr^J@*ty`(Fwfe(
zHo*^=f6>*2?lJKCmW&{CmseNGWi+n$=~`ilXUHJ16J%uSIJ`BB&bCJW`|Ad0(5DTz
z-(sroublpe9nSb}!8{9Z&uqwrkH!ul7|vv5<?Y9yW7}?EQbCA57^n_lY$+VxV;&F^
zNpN=C->BXk7e%f$%j8f{j_+<eG-UDtskRI17r2LP_pU1D7Xx#|p3snJJ1pG&=1gS0
zNA26~rsuGQSeGUkz!wN}=+%Y>g|HCh?RGQ2d5Pwxchta|z+SN*!28Ojl%$hurlIx@
z-Lm#iKSCN^Lezv-SSgq*WMBu7$4JLTQEw?4<gE(iz)b0#sFA3IZDa(|*-f#kXRTcq
z;k|)*8_b@5i<I!-?SX@SAnKD3(9LvA4umRHZ=nO5Dc~tkujBy;ni_Kl;-7Kb>@y}V
zoh^~rhfc0#m_mlf==3RefQUJ9PFo0uW=fo-9tyR)fJD;4T{_QOmWTZn=<e>M2{SjP
zuU)TJeGGZhRuEae(+x(PAD`k+hmQ$6%7Skgsy^6QM=XOHzsiT_o!P>g1ec+&m;zB*
zvI=+p%V6KWH{>Dd<K>~3NfqlshH1Lykhk^^()ZNdxJ9C@{??-PG;-2gk#~jUBCA1g
zppN9sflQ6U_bzTXmSXw(lv*k$+yVQpofYhS!$*ZEkkrq1AF~ORjpk+9k3##2>IWPi
z`bBCGXI=gL=~(%fH&ZsIC|Xd{zoebUd0$I@!^I_0AJ>1hlbZ@qyXDN#^+lzhHbhcc
zD&Vr#*2Zjy&lE?F7m=@extWOGrY~Lle0jinBUHJycCSv$y#UuQ^NZ7FQ`pT?ymp5;
z6JPYXJ^Kg3!|1_bQZ_`v4J-NgWB%=H-hniCbE<!FZsDR*7H<}pO7SY#&+;X*WCMTH
zEd(ZeTdAqayZ-t5Q|$Yy9c~y!qs$M4uWOs&d^4DCg^qB+?K65yz?bTB4s^g($Po@4
zvQ~p143@K{a?bLj&N3via>%Ahg-%+U25w^80wKlU3dFsli=G-|{%yZlA;$Swd#HQp
z5_Q^A2s9RB$vWB)pWDy_#Hr~+oLR%2N4@v}Pul_4x3<3y)A0dnU*m(21ouc6HQjFY
z1hh3+ybW)g*wZ?$1gZ3x>QZEQOX-wg{}<)?Ry6abHFq@6)Lb**PnHz?xfdQ0Hcxd%
z723awS#pm8wo0nHuwe9vFrWyA=dHDLd)^>aY-LZR!C;%wyz|vNQed&;#?*DbONqr2
z4;DoL_VViLGo)fHx^$Mrj=SG1M`DUTa}}dBPbsU$G;<XBMzU9~I{XXN=Jw<Skgtld
zuYi0t!*Ks`<2v@OwO}BQjTk0vgwlkvfsg5T9_xJE$C`-iIeZ`{arm=(E*#O%x{2un
zK&m9#Hnb$db4n_9X=n8B+GcMqCzbwjC`IJaWb1c_riI>!LG`0wFR&yIT|<(fG301r
z`yIp{Xm{czQs1>2&=0+7PIrR<N+4j_Y4hxyQ-j(!du@g#ZIbGCr(+Hp^Jn~-evaoW
zVId=Qb(tZUmQ#zXo@W)W4oo7V_rj^taX|mxwIx90OAR9CruZU_h_<%prjZX{Lo~F_
zP|IqY`R*~(Kjjs?B<cj(+&S^V*Rz%LJW^e&`CKDkBL>4uPe*ZlVx=}r=>~Ys6C!}(
z*RMfcXMi0<WzD?WQ|cFTEu~)pR+xJi1$0JOrUfr$#Y6I>aiVKZt9)ZLkx{`P*{H;V
zFp42a^(*JkxfpARGyTV$0sZGa5$-2`^W9zXroGXB*lTK+7kH^B6a>c)XeoO>uite8
z=x_Cn_&HPm|ITOJfn^0dRowCXnQ~3X6j~z}vxM&^X%hC~XTkfnNJQAY>XAh8`T)x)
zNrj7W3?00^bIs+Lq~U+it<B1j8z86#!x2$;M{dkOmARLa58|y=947i|qqd87S&%ci
z+1i@P(p68|{`!C(m$8zEPcFg)LnAwxjM7;gzA4z71D40(iLdS(9q3z-qZ1AvYlpRr
z8ULW;Ci{=XDx>(<hdrel=FvoY+6nr%TRpN}5ia9^q|9^gf05wc=lI;+7?1u-0{(iw
zN4ZoR$vRFz31?u!l`iNwHGAMGyw3$QFJo2|!1JS?N)t;pU@=&V(LD-!*cob5;eRg<
zW(QLrGC4@{I^smjPK+NP!IPF09adOh^;Hf<H7^}K^dOgPPY!sMAis~1dhEN4D~!-I
zcly`}<-phKXn7a%Y{P;Fzaz-frVB#EB3WWEXWg^<><VWoBhs!9$fToA@s%LK9eYRj
zoy6djCI{SeyNkh{dt^xdQis$hI78Llhpl_t9}pvz+OjTdVF}~Q`-~RE^Z$$sMK4b9
zB~+7MNJ;(a!C#<>S<jz{rC`bDb@sVT-6|t~(Eabj%bPf-H98)DwCIK&5C8xB$M*(F
zT!<yXeDsP`v2PJ&&dZ1hk7#-Xn6q|^JpJ-P#Yt{%QU1}_cXl`eNdgZ5J1T2iLQ0O%
zwCa#d8v-%R=FCu(rLFs_OO1OZcGIc0|5WKO6l0N`?V&>nMQurrJYN<UcLl5W!#qB%
zjb;81JTVK;=gB3I0QXS#t<Uguw9`=|Ggs`mB9C(>il|bhT&nrZO*tnj-x|e5`fEJr
zwj}xY)HKygXdh?b92X45nUF7SjdxyrG(!MU);c9@i=Js<)o~rJ*fK{3gj6u-Wl*X@
zoR_L}Y+wXSE~m|*^-GfTY4a!*%9|3>oM$_i2Vq-AP5p3-Y^7jW2M)0fw_=D46^aY6
z^-`8okm_YeU`w+!@2IrAJ%JcccQNs_&V_9^Ys3hAyIpzKjDu{Lf7PlWD2bbXPGl0|
zD9+8phh+m=ePm6gg<_Hy7-)Ua;+TqB<j#~^oMMNsIVDcW0rXvNkA@2-7cfs5P~{Tt
z55Tngby{)=Y6$PNaV0oEhp%)m;?-ITbHamUWiKFpLV|)btOcq^s*;sjw%rqlsQSg)
zDXZ{2Yv-aWU+)1(VVOu&ZD2uT`Rli%KleojI5F5<2fa?j`LCWm8jJ%G+H^`#Ek_}&
zTiy<09bk2lE=K!iHJ+g(ugN)L^<Gc!_N4Z1%4HTKNi<dWCMdPiS_rVMWI~xAYnc0`
zsQY({i{qmnO_KJ4E@)o0M8jAZ0<Fx?&|y0s#*MBir+3>+r8MOHJ?fk=DlV5YwONjo
zN|@yfgIMFHUSIA0Jcw`q7RTMU=jW}TGDH$KgLeA?Qt@(?PVemwN3<8)AHNOvQhQjL
z&ebU3QpOX22<H@Kn#o$=qMHf_N)EqykG9@8Z{l8(0g4jEqhRT&Omt3y-t1;w6A}A_
zO;rm<K-yZljz?WttcJMyxL5u{8*({zy>dgcRD3>xy!w6%Mjb8j7~ecG683KALo)Bv
zy9Krt2aa(4Ev;40qz{hPQn>#p2s-5Ly49<8PAo3~y4nnuS&n@Tr>uAfW{iV#gy#jq
z9IVw`-wk99VE0`8gJou?CKxdgYQ@htGOA8(B{2WySmEscr$a(~pvE0`&x7>lu8t~;
zu~$hNYzv(el90eYnV-^M{PVUVBsgYQYD$#2<rxsstLZ=1oVSh*S@FAg(jyz}b)2B^
zW#EHt%N$mc9g0{};f!Vd2-fOfNDTTL`I)(}0jA%1NZ$tH?+98gp+W_wf?EO1w4Ka%
z!-wuRS?7Jp3`#g0IwqODbAmrTV2UD`za<v1x%%W92!jqPo*r`==T#a`xQwN+;hLZ@
zYmJ#t*mOmu^%NF;O(8{?q0Vf>eJIJ$))&bO7PL+i4(I6yYkQL!oINr|vYdTdqH4-Q
z{5+CjjE-!hoAv0rf3Zt`W~Ya7Kt5eho{Hb(3i63J@sG4qPI3GifMclYDbUW{Nzt$w
zbE2k;3%~(XGXj`a1Jyk(EF-lo2XnaVhHCr)!7d$XsrbKVG^<qSV&hzpVpNrJg6VQI
zJuEf?#rz45N0SF6z6U<&5YRkG2BgNhw=k-MZd*K6&Ta?EQt#PzU10@%iee_GdXF(;
zuRk@R%#jY}cS~?;K$aVHa@$N7*J%RWh~x(iPh2>&puItwymp<=&PYr5H6bNiKA;UN
z^ArM{SYqLwF>mhAc77hy?~EtansI{y+?bu0^9+!XWm}O(fkOtQffeg5roL5LKL(p6
zBJQjyJTelDs@8ye#$9i+)9eYT|H~YC93-<K3?Wy{V|&QIh$MI_CdumQH47>vLv#mC
zvS!j=oBV=VhDcJ|@NN0?BZ!P+>(Eo3)4bfywhNR#1kc&Xhj86V%~WnLU&eEo`#bOy
zU7WC2{%IyxlBHBQR{+e!!?xTmo5lNq*q&!{#LKnA=$Efe;A5<b=sNCdjq}k;%YZGX
zpoE+s$A775viq?{{+$PFvIj^LrU4P4N%kKwh8u7l1?ZVsiIgYyOU;1ujIVst)U0$s
zJ8|UUs=}+_;xnAQ6s$6p+lbm;(PPgYXpmFywC_7Hh<-0=&BC!?jqh$h{nq}qyA)20
z)r*DY-)BTB)4s)JO)H1NCZa2Vb_SI6<Ate=1ln$;0IxvTJEp-bE0C&3I=30m!9`P=
zWx~;CK~7cN&PX>6tg70FgcB2sD-s<6dwB2<HBFS4t1S?i9Z(`Qy~<tG$J&Mn(4<2R
z)5;64AAIaxOwIua0J&kMfD*vn#C0WIPlt3*DZg|d1(e#J28Im<6H&9IAk!UtmIp7;
zlO$jJs<WUXN4&W=OnI@HT>7Lmlsc8cMQ8wJbM2Nhl|{xKKm=i8`daoKb}`ee?STuM
zD7ZQ_@BZu<S4q~j9neOe@9fA<Dtq?}STN1vbQ?U@&qU*zKGJe^>Wt9KDlVpr$Sn-A
zgA*FR6n*yXS_TMk{!8#Dn<&oiQi85;(-RNd>%hG)da;3R{M8Wk-Q7(L?%|<@dEC!)
z_cx$4(I}ah@q!yz7|;ukrU2_P(OX9DtR9tY+R_r9^hFJIsAG&O4?T>Xf2dTS&TWFt
zGuRlL2S+!Lv>`TleVsJj(KU6&kZjqKPi?p_?uqrQ>r_$`7%6#m-#~)cVy8*0^33i4
zw;ZT_hgTi{$4bgdY2`~orf4-}gHXMU%myc2O1OBofO6-$Erdf*3xeTo{&EP`4bpE|
z!M2oarr5)4SPhuMYj`8I94j64N{A>2Yq0?p^ML9nFV6q0-1kbPZ^>6)$<+1+eBl7;
zMp|@)FH5bIGNAR*4Y7$Ph%G)j0u`UcRln?tipji#Mwk8BGPbFxUxUud82#A1<I%^n
zcsMm=Zw^ASYs*EUeT}|<wXkHwiGirzegvpEMO&!isILNf!%%TfsBvj%Lpc9=SEkVS
zSJAg@S<SbZQUG(QSj~W*hz2X1BL|EiCy-vVzu9E+dS9lkuZ(34vajl^{Ys2s+MSG@
zeW>Ch_nNot&IyP$5LUGI-5!Q8y~DX+`H3;rnQAX|LIMZe%yN6bFxeR6W|TU!89$*?
zF`9GuFDqY{VxQ5u@x=2OR>Q(m-MwUO-r`uarm<`sRBuF-RijO!BGQE$gTys`vp{@S
z#*h4oG`{buk@ih!H>BH|z;iv8K`Lt5_1Q@{KkyWgN_mU(RvjzGuiSouj{r&Ufhrjw
zba50Adif=_$mNA%g2p3aEdRf?XP70vC|g(jsbCT9unAUnOFKKQ{}&D~)aYg!lvIEm
z|KaEKY~-pbd5sjG`GBSS%7^nRS_t$Zb|wCygCyO+=IBRI?yf!3Vk{ovuPm=)8>3an
zPjP)_mLCi15e4Kk*t*fRPb&DvD$(>;I(*0@&da41Hl02Mo@v~<DjJFMArCRPsF;ge
zM+DG?xV*l$$g!^V_u~+@wD$i827wlwd28L)QB{gTnKcz0cWIj+8(9Pj$2YA@#N~-Y
z2w}K5O!^WL$v}G%meI4FCJ|noI&~6a5SHZ^YDK39cPjR8@tx<0I=19Nbfs3|b!Yku
z1FscjU(-EevHf*Q#Yv#KiT)o`C-=li6PrO2;YgSXf?}*fpHZu4Bu0gB`<mWj^1is?
zVP$4~)fYhqh5p~Gu2tGdGG{Kf-ad!7qj9QL8iflhWu8+f6HsELLp%C@DGPrm)nrgw
z+79Pr2zyoGC^a!*EH*C@kfR_AZrI+vaEOFH!&(#iUeWMH(nyNAD$F%AX@F4b*pIUV
zPI15cCAv!-=zaxltq9=r5Ek@Vq6z^v;Hu7OVRl-ATqv68%US>F%e0EGeLdfFAWY##
zP4a}5cieCluZ00|n@vNkiw~_W{Z*0{cr8yjPBFX$6>KIm52H#xV=9-glI$FvWdY-{
zR|HO%sx&+wqD&2M+w@whKGI*=S63$VCmMz7I1*;FOMUzBzD^(OE_b-~u=y!nTThI)
zGOufY3BcbjKd@!2hGo)!W{?T-9Crj1d8bk^z0%>!AqvO<3aRI7#tbuQ!|y1R{!d4<
z_l&b2lc<|KFTlCBx)wAK4A5$H7INpb6vePa`_cQIeZN>+GnxY~|4=6(kPSs@;<t)y
z71vpQ8f<!ZjHE@nqbw<|HHb!!U@YCWC%{0z(}iFVItRy@jmMB1sk@eXK#*6=S-tN0
z7C^A2M_%h=u4(Wbb!a;7zS)6M%QdG}$!dR_@Bomh`+ik0CM*KAU=vN`f`WC9v_Go=
zT5gKwe1{AOTTOiKfaL`2n7`mRkArI33ssyEq7@rf8I<gv%phxboK>ZJZbKEi9H;U;
z@|{##?>qZ`Tm@c-m_NQZ>>wEJRGq@2cM4^{Y1U;gPb++DjOG=xW~%M=335bhwa+R8
zNQLy*8N8>EMS}Hg!6jIdrl#r|)P8HnMjlRnK_zIr!u=4Ka3h}xOYJgkCwJv54@y2Z
zNRh8TYYwTXa(fMY@Ail1tJs4M$NT=+*&hn^pU-{)RDK<c6_UulU+O`<*8z5lCo~K_
zp(@l5eBhg1bc*IvFEk9P4l$L?tS8o6IIpC0ddrz_<q9k4P;4Luo9Ru8D%5LCtE~Le
zYdi(W(*&*ycr~5<GQCs1v(B{_yMgk$FP71hic#*-f7ib(Kptn<=h}m;NVxR--;xj4
zqoukL(?Qx_LMf5G98yHnX{)pZ===GGp3~7Z&vh`4PGnSA2=EM{DkDRk&&~2iDy&Hy
zcSN-QeaQzDBHbyosS@b0dg$#e8kq5>H8|ke-*Ic2i{2D}xEoVjfz3S|($**}7cq?{
zS-v02poX3iuzI{O<<u)=>ZltY4K=l7lEiNI;fk$!9!+V9w28)k2p~cmtwxC7SH<*j
zyvi;q+mp%fXH`7pe7AE_&-)0^2_7y?Wiyunbp4=L!ieQ@32eSN9PF6{7g+nQx7$^I
zy%`(G%u2jO0e@3^W<)ux>V!d-4N0<t#0am6V2fowo;oxe>+`HF_6tAEgjEFN6{moi
zHzT@xV&^9<t4o(krC>eH!2s73&EgxnJ1Ngdt_JSB@1_zYjfRp#F9@kT*`98z>ub1d
zzcof+e1=R*jV4w+7JtV>VDM%a&x3$6AyrJ!!E~WE(LPMC41|%5-sx6W)^NDMbYw>9
z&zlzOxx=m`up3RbZ&~_TmPY#e!;wI~|CLfvI_u_xt3}m2Pt=-PZSzQQ6NXD!CSpAC
zMWF3voXHb|7T@)5*k~!6^WF;NVihyvp?#1B)-ldAwkTf6A+H3owkF2Ir!0VU?~vfr
zEv|U_2oENJL>G*1=pD@r`P9KW++wfz(vM{{Q%Z-hFX*+0Jcx>Ko$XF8Oj2P=y@f*f
zM`yg)Vu2oDQaQ96!N!zBtkAx7d~-u`wO#SpSGmI2L@0cQqXd)BQ~)f8W43%ExMbI{
z>TDmw?5B51ucL-7)Y2ZnTD5GjUddf;6}u8%m<GP2mTX(ULnq=GQbH1UWNxXWfi^V%
zsvqKQS0+uQ*kP}4pVgfn9Vg0|9`5xy`~kSluJM&NnG=;{XaE2VBmt-k0Hp|jkOR?|
z{a_Cj{lw5Uy6z4#B7d0)Mv+gkgkqi%O=v5x*QEb3zFY27h=+06{6yJ{VqP=OVuYzz
zss%ku_7vk*ab*-oZ8*Vr?6*^%c{Q*h%0=Awt{8I%O~6i_D$vYYHmhzd{M4S^Ep$bQ
zvF&3>wcO)0UtfI#Uo=c2mVeX(!;Wp-^i$a+dKRxZh|{@tGj1j$ga!sEdZ^5-;nV=T
z=&yaX3x~lJ*_m03ghAL+C<AgwJWM3?pq#kPn4@r?%N?&{DWKF8*5S!?*lXWnQKQKH
zSZ;B*p_bh=O=b^E&9XI^uxjyauVs)~<jJy-OOWRAf1G|o%jV1g9~4-S$pU;cOp8?c
ze6v<jP`_&OjA#qPmf-Sn^ttBz)&BY0;|l0|WY@lBaVkp9moPfmx3P!$q}zk{ySU%&
zuM!-WO|esgAQ7x4_y}3K(e(u>;a~bd+s^#7&(Z*1_{*=%o!v953L&O7Ow2^EJe!SB
z0e66ROwCIT3z%uCG_Q6qXIp_`_adLc@$PZ5F9V%EU%Bx>97|2i0LRnqrx;~6KX4}`
zP5zSIbTtv;zQD!{IZ~9L1GeS|0zc=#lnH`8-}^|JRf*Wx!O$D^Jt<u$+G-!@BNHcV
zw}kW1x%bLOy$4Dwghx9ou$HW>JbY?pc(umv1l1>{DIG2W{a=ukKAr8G=Fh`Gl)+Mk
zqV82AeT;CxI!vDn!15LDuS&?aIX>9*-Lkd}aKva`?Fw~|q%iH6e!=rL(iEyl-^{t?
zehuhhJ<13W3g9Uc+_WOyu-8QBC1!cOtO(g!?Lh!65+CF!$=yId^ajpVQp>BLKKx<H
zrLGWV0OM~x3!r1(b{fC`H3_RF_Ihj=W?4%yg2jY32NeTBX_mxGa7|1`hLyRGqNC<_
ze;dY0cLU{Bf0(MGE9bqRFyk>pfe;Yi%^Hio7S7v?FR}DZ;qmb<eGvBEG9UX*NsmYg
zHFeY_N@jU60;3OHXCh4wNwLEBW+M=GY%Sd1uH}vp?tPf5m_2C?x9Ts*B~4!2OsDBz
zHAv1h^du-gXKcbYrSop^w>L`sdb!d#`q>f6w>Z}@vGkfXvH$XTu2tG$V2@wnBBL=M
zg(v~vE=+^`D;H9NadGEYkx$oVqcUq>l@-!_cGS432~A><8EmcbA{=a}u;1qVYNd%-
zab3xXFL*HG%c(`B?o3R^z7yF8(weZ*#z*lL7k0j82wR<vkNjhj)z6LSb@7SfGplX_
zfOA+!mVCVHNG4iEU)CKdvn5vSsL(V(%KjQUs$l>4FWgmyz2(ZQg0^D+5Bfh9o)vt5
zJ+FY<LD&B~Al>QTO^ike>Lw5lu+*#pGgTSYLnr*rykOcm;~x<#&HwP6zmA-DtcE{;
zX%SoZUoLv7WK5oxki_*4=s8%ZBbSB9dPwn7rsH_GkR7$ElHy@sDlqLsf=u5Ca{2{H
zki?n!qEctri-%ETaPfswyv0h;%LfFxyolL(jye4I|FYp{5gVFCeLag;h`mluZ`!j~
z;3`W~vK$RfWYBcDLj1yEru+Mt@du!g6=>o78InFqOP2p~le-b;f#{suW_Oy?HjW1W
z1=U9QkF8;I|M#hz?XK-IIAZuqti_mO+8hsDiQ}a(TDRFyy!e&Il_s%fvs43l32Elt
z=b>~y8Z-g@qS=^180s#*5}9!DwTe!5vVKRCD%P~bn%r*m5%PG}8Dazd>4X2Gcsd|v
ziT=Y7Zi4aI6}T(_?S_J=AX=E|@ppTArgmAcbC}MjZDnC;iaXlrirWUy5v%<rLZ|+L
zfVv)rAE^gN>Fc;ulZ*N!Tm!OH&gQgIQ$U~pi%>2#<jow`!>0#{(a60;x?sdx(z%D>
z;a15ha}-v0s+q^moW2X3jk3S?0qZg>AaS*dNV+a*8%~wR{5t^sgIPrl`TuO1dD<d<
z4bVF~1nd%<<CdQSQqY~p(Y{m5OpC`sBP$`4mKo2~#{09CH&xI5h(Fdv#QdD)vHr)-
zEi-QE+1K1hXe5wzV1oqH?@!b%msOtLG7lTh?TdHw=wgvU>cf!J!&#T}>m8y6WnP#-
zAz1L>$;$D)>Qj-psd3^ZY8$VzaoC84(mp`eKhouTaOdfy{#4B_KN;>2*ef`b9@zCJ
zwC&Xx&tDQ|B#I-{p2#AR)u9=>GS!9&4#M3KBFa{0L|E(~-5B{Zz$=(!4ka#sh9wQM
zG?~{`mf+*>bbEoEGPoU|+%^T9=QysmachIMd7c$l6kkhNgD06hAq$j+zbipBUhcPh
zElV%Kl0_NJyZcbFP+te;vpyf7xhI1(%)v!QK->$gl;f?Vkw-B{IV`<AU%j=vSIaLz
zS?9v}zJ^Z1iPPpr>uCb9--js64_$hfiyex&o1?9bBvd%>z}MSAe`k21v%aY3iK2=@
zL1_ENr7r#Jx84_|L4oIMZzLL9@p&r0h2Q_nc12gg-SwR;>71z&!~{uV+0U>rj952f
zZ0sHQ{U8PJPM7=-QWa&ipYLZM<UJn)l&-2+=rsx06k>*?q)mo4P+>ManlCAdZroFl
z#TYiwV*vt0R_LbrG>XmT^&zHOay33rlPYV_?mslqUx7ETfNP-ftINo)Q@{9Me#*IC
zkl@p7Hxa&?jptc}-s41LOXYUrhu3zmhgsk1fm8R&zy6#nbb?t6WyyN$L|)lb_Ev+I
ziM5~CmbyaB-?#2xdwLy7TWt!c7$#&>_qBaN3HueG>RDweUY0-G5$p<kKBj1rmVO#V
zVdnyGfY}MsEv2U2A&dy6v2PJX^39WQ`uC=A31z_dnCG`OOi4X1Qj&*In5j=Ln=KDW
zy|r<_zbx83c61n+eWhD_Yc+(Y@BRuI3dWORDuO|LQz!Z0b2WXg+HPu2Qq*90X!O5|
zvs3e@$`u*Hr}IH>0pwL$5etw2@+%i;)KQAUP1}m-))^5x`hyizXuqUiF09=`7gno%
z*Q2JHW-+q`=!1-x=gAyO_~^oR<;q|X1iQC})T-@HiU7x?RB0{DoY+Z8B=4DcHQ)=C
z933cjxnuN4Sett9DY0mK!`u4m?HIoTALicon*%kpgvhf6eGp9GW5|IoA7vNFW^d*)
zho*&^Khz>vHPM|_^7g6+ZN>J-;Zvx?m{SZ7<m^q<O1A7_j&*L0v60w+`RuCu%IFb@
zq|a~Y(;m0ivr04~nS%#=WDopO1ewhS2;3@by&`OLMtf|#!NXnrjp)q7mu-$RKAi3e
z@mZY<-icUF0aYQOGLQ35jMg{6sH&89fGp2Vr1jL%VRvulZAq5Fdm;|>#`Ry&4k{KM
z76*$IR*F|vVdChuxmhnoG5(j}iAF?)gX!DqEDcEJla#7E6f9KE#X*Sjq#~O1h`rxc
zvc7+KWGG5q6@#I4z?gJ8lbWy3<$5T1ZeR2&UhFlYY08yfT=ov^z~6yb4L2L};<k;?
z|M%DajJ|KcDia!RAef}yhqYV?`xg*hC-+&pcI)oz+5K8nY`7D?G%2v$6bb}a&W`eW
zyGmqV7zc8|bJ+Dz61-=uZ)M3phwAcW3X8V+vkb}vzP2uGhX_?|NpoBaF|7`m2xNu9
zfqq8>q)9D?LC0fDhHI<=*0_uX8*!;Ca|f-0yW^eWr!nneToy$)UkIHim$;C;$qGK`
zSs@^b_5X|3s!505t_>Z9mqt(OIkrAq%Dk9kKvzgTwYNpYTVsx!v>N3{TLo<~$^ftB
zzHPLx`af%H1rrO}pHo*!b+>bk4*oR9`6Inus9CuC8*!pm+?Xp>rGo#Zd^jlL*J*I%
z)_`%;;sILD;=5w?R4e!`9<LQ)(Y|7|q9*NW%&oI|`F2S01Dh;6p@No&n%+6Ay*1=w
zbirBt54P<PZeG`ko&4M-|4%nol_&{=sED+ej`l<%jZSDdmu#W#^FL2;v<%G!BE!Z@
zf*73*9d#Lzi;vAdk>VcKar#(EZN&2}s*6JbkyJ{*Q70_x{Jr$Ge8SsZq6{N(sJ#bQ
z^kvliIy<|ykH>rQ8k@8)2&|*i@#L^GdYSjYT4XXRL5cE~T^!FPALo!gRv=s6<I@vk
z|J4seo6v#rxL)<GW2rREz3JLP7oOucoXxM?KmY)YXd&P%0>D9E?0IuCa};^bz5q8^
zveA#;XveMRNKmeu7A)qNMj8xUfd&4QYB^NIq{H^#qhuYB^RS9F;IW<>y7lJxo-HIR
zkM)o=sVMRzdplMJ4<dsAqlTUtK}xmLY8W91lQf%_&x89;w6)m&<B_gcA;(d1=e)M(
z)ZV{>RyH$1GC+LGT*8$jvvF9YK^!lv3s%bNYo6OANj|E26!K>uP~=?-dzKj+y1#ac
z%0ju=*TW+SqA?iOe94)iVlT%R=5&ETD#)dMr>dW9AekC*yduK0f$is(Q=i$IBs9~S
zf*pD6eOd7}k@n~L^1@7dHzduO&JN4AEOmA4?dU_+$p23pc}hkFPccEHrM_lg-<YUv
z42CaCEy*uk8YcYvN#^!Aeb=?h^)y6Rm{OL2MOZS2#0O76E9WDbln(BHdFu{nRi^In
z|K2+19y{vSnyHBr&6i(Y31|ivr!@V%ePMWy0v*kC;eAG0W=At0Z(!<hg9IT~*n~M%
zLw79&f?%d(6VG9hZhm-Fo19?~DvfaWFa4%YG7oTv5ug<GK3wv{>cQ_dJ~z3Q?f+&+
zjqHM$NC#BOdLiI_(>YVsSCME5Q+D`hU5w+yLjpsXgB<Z%$!LEBLQ9=wdbREQ{>k)N
zEFFN#kkB*&)+bw=Jo;ly@BX{dEx{%R)gU?8Q9TZwgIs^pNfw$jYGa43&b}MJQ$-vD
z(zVorpO~?KJg|$VJ-at$-fE|@qwNpCH!=p@O|=@YkWScR{@OM@5#AqkPKM1Nq>6kw
zQ3+HCVz}}r5gOe}w2jTnPu-QB$kKwt&*3xhK3FOPJTgcHhuV`suWTMSFp{!Xc`j9%
zqf;R?)eMI*PRqqOw|k%r4sJet8LjSL_b}*Nt^|>F00)G8x5Bu>O>oCl7puQm{8ee?
zgO$8;^^vV4xB4;2ZA(QXRWmY%(rzI+>wF4gk}~DMq1H%gu7dxmLVYj<M`=Fql3PZf
zGrRmelY{8gf%o2>Nx;dC@Lj5=(mAYZEnV056rdz>IE%nvFiBVej9(`msOeYarVrY`
z;2tREI&|pWe1}@pTnv2WcGy7c*-W+1C4htK*^0#_dEQfP0Bzh?)e-jX?XA*|1YCnW
zm7l!`m?ccqZ|J-1&Aftv2pethsj&jFPu<CYhRJ9~Zx<~;5d$7s9JI@`_HX##vr`S5
z4BHEg`meuD1qO$X(B2@}@6OR2RPPT8fEWd|saaGm7eyZV)nZ54y2?yAHw|opq`#>@
zx4inMZ;i{nm+fm(a$50|;rGIOLCW9w6JAPqHm8oHFIo`*{WJN|3N8;E^PSN&cd6cS
z_dwh0r%c|W?28>DK)?xhF;P&ZBc{_oN`Mz~{J>V8NmqAG<UE}iw%40);Tgj4jYWH~
zN9M7mtruMeM$X+-VG+E9ct?=Nnw6T2alE{8h$s`32Nvkc$cnX+3~Apnqt{iXlu~To
z4FM@XTbW|tN-=wBcde&@cq{4jveySEfdZG0>4L5D;zGswKr{ZN%@YKONV|9!%6iIZ
z-l;-P_e^Mu=mg0M(nA?qs?GNycRjlkh!?LFTPW*$mHo3+)JTFNYnxauzI!NGKoXw!
z4sRH-+F`v`BOpt_s!0(7aa;t>F_{o-bF3xJP`ba)DW^Q>^_b#R98MO!sI2Xs6_4rp
z>%rF+<iSJ)*du)^;6-0dM+eq4#bJBK@#Oa$pv*1uzJ7dHMK6F)(+RfKsU|dYOTtZj
zqEUw^)Y+{g@j6)0$f(sUrS)5`8cQ&?)jb~jXN@NcH6-{%qiy)<FX^%q)=ncUon#Hp
z%woPAeKlv=NgwjV{c1HO`u4t5an85yoI6iQkXr`kd`+900<6jFO|a{4|8zas3ftv{
zP7&i;VGhzpGy_O;f6OZAnxG$F!`%#XFuM3m)+Sm)%Ozkk`uo;aG2ymn1qMTtr0uzF
zG!sWkPt#T<)ee<f4SQ>ppjL`qy1oy%A;<DzO4#p;nVp1)-i#8umXfU|y_=;_N(k=I
zYQ$QQFBNfOM(O<OU5)ldnxA9X>^qdW0z*=wmRYFwk4^Ws>O!(llbi(P*sp%>@R$C8
z|Ew#^V0)^`Nv@4_L)9?Ue8-6ZwPTp%ZtT5<h!HGvpkH5z4-@-00;@VF>hjy^{^%5u
zotTNK9uhULYA56gqYI-(Z#y2V4lAJ`8ONvsm`OY>V{xFRzIz1s^)&yOy;%{2O+tw(
zo4mU^Bc84z@!4cKBmyN+t)a}~II0=y)iUPkx7Q7mJP#Qn5$uvpr9<}VcJM~7>pHDh
zaty_@jn;>m5}rm&pD_Kk1xpb3Kqra~QhGy`?NcHk#2@&O#!G#pwjqDKdeg={05-Oh
zdSUq%mt-br^WvEfCo~|h?&8KF!&3<=zSsr#H@mj6=Q@CmFf*NN%(6{O?_eb>kCJ4z
zaoyv3wa|$P?G0k?9<Qpi?ON8BrsoEEQ4Uc<Eu{K!p7BI*v)r4i)e7hQXph!NOB7Qa
z<Rd<LmA7c_onCLW$sW}r!$8()Uwg}AqQ6D10h{2vUm2fvk1_CWw#^6QsMO<T#F7Ob
z6+WOk4d-B?NW6#UDVddtZ|F>p+lyx9P9dGUdW&IoFGVrOsCToc>E=jzJ$i80-cZGk
z4ecnvu{{c1J>_HKill^K;knz1o<ORV{`d9(Y7Qz{9siQp=iJv)$hmv0HfKA7(W@0v
zF{E5cFNo~3kaHcPc@>K$+~t}LV5-6JGukJ<*%PC+?x|Bpm<cLJePN-JNk!H*HEES<
zDaT0@%2}_N`HnREDO}DNL3FHx(dt#%P--aCTfC@dlT13zSBC6pd}hXMqT=FU&=2u^
zE_z42?>lR}5I6PSKobHE4X}JP=`+Z9&3L9a`A>GS0tQb;)GEyei*YftpzZv}h|z`k
z3a14C(2aiX#<z(#^EeCUNA@e=0`Z1>{{?zK@Xfl`yaW7E<se;2%;bDA=QO57EhX8q
z#7*<`x-NZ#CtyNjS-E_LfX6dr%jZv#V%H3;J%*nDq8`y~-J5y_-ed_Bh<+?HsWSqA
zghl=2$9q$6a$YwiYBD!ec~kLSsg+OSH_^LdpkVG&$y6j8Ww5qQY1Ww%rr+E?qm9&z
zOYneGoK6DvGTeRQJ}x`1pW@shXA23!&3fr!KcV|?!9{V)2T@~r=(%p-H<5}&=T4MB
zCRlRdR;R!_C)*!>xgrR_eZnQth|YoEimrIM2ddYP!Z37^I*ALo_ox%Igo@Yv<$T8&
zfjBlM2yxUU+j~DUZ|hcjIo1>{i*om#5bfLJzY&u;j4Hold$ZS(J_c(>o3YI9kY&XK
z6H~=vb!uHJXO&dJkL(D00aLTMYJ5WtDZmpuFJJ8-r0J_Fz`C%sZ(nRRn>!JEzI@*8
z5MapG(n!YVLX6vnZU%F!k!>d9KxN7U(?*e#5y+|bbvWH^^(qdL`@4JkP+M$l(i3P~
zcI`7WP`_uASZzZ`lnKdFH5HKV=<&ECDEWRm@JF*-rA_?zAsl4fEx6qS7Y}l&S%Ypv
z=c&tX8W$!dx=4m|!`ZQw6BQMRtW?&7B?DSVBIPH7hAbTluUht^oAXNhMLthDR9j)U
zX+`w{?jsu~1wQ7{gBk`CYR_{7A{_Ra5-|QDB{Pn_?;ZwuDv-Y<<gcrgSSM4_f*3vm
zXSlSGtrlIAqDrr08OqVZ*A2)6ND)8BXIR6h)-sQ6NhG#<>65>$y64S*@An%A+i0y}
z34V4cQ6;@;D>rY0@Y7L6#L-T9T}ss<g9V$g2Yk3}DcVC_8xWJCZ`$Y>lOPo-;}Bp^
zXPQd|ZX)4@5V{2L(I=W(56cIF!&GBnA}vEjjuNq;7`cdbt%$-#&&igd3Ee;|$koME
zLux`8EA?DJ0(PxoOf7K8!U797VE@O#(kWR-87|PRCnsrA8kpaG722s-c;v79iQSID
zlC!9PLE9613;8|t31WA)2!eHC(teShLlSeB7nU*mf&1vqc{g(f$wt>t8#gmXreZ6?
zBxEEgM6*-4B~P2{0!k<srxJx)>@Jb8>2xOAQh+E2h7XJgj9e3Z&Mkf|?g7pZaw)5E
z%>zQaO`d(_bFZ!S&@&g0xDKMtSoscQvi#nOD7Kn-{b-D#+k(MDH;oSdd}vC7)m4hE
zIK5Xve%@R+_4lO@dy`131bAtV(#IL1VpC(-q^HZ(Zzc$YO#U~}!6%o%wsuhcd+noH
zDL6%Q8^QKY-o|a5d0)g0zj2ME&Iq*y3RqgA#$f^R;Qy9qC@Mi&Z3$qhI>2wFba1Z4
zJJ~LB8-hKBEGj(TY3s541Dj{j&4x~RHT;Hd9PsLCGK#Ne7s1*n_!Wb<#xeml*0E-O
zJaI|4P15CQn$7oyYsQfLMqcT?_DR%?C<{Zv$`U!8sAA>2{;nK(htjKNav7|*)fuqY
z;nSFxeZa?&jW11wj^CSuK5ruhgW`L_<D)g@Ran(3#^_2fuNuzTqYua9O{qmN=r;Q_
z1Imj7IM*$(Y{MfyiTH{0yg%P^0-TuAR@VND#M?e?uz2NEnlQ%=<(=j#kn}cUZ?V6B
ztNYUux2~SL3ME_#3!eDPxW@43V+f@aq(P=`q6CK*6RO*7o6RY+l79CcYffgunfHUn
z!ZD`^ey<$$-u}n~V=$|~4;zsZ7`S*vg>DR)rlahkwVn`bnOvI<n4U#qtPjgXgizn*
z2?Dn)rSHV3z$8DKM-aL)(fOXmwjftfi6w!xaxV7NSShy~D}+w=(hF)`pK_d7E=u;%
z>IH5ZDxW`{IICw1-uDgBVrcMZ5Um5el&bY-uq5KL7k?_zxV{4`lR@?%zKlMs3nif?
z#-b<U%xCT2YF92uhsLFC$|8{N^3{$_$B<1HX11N)%pzNxtaBnupoGR+_yiD`(1iDq
z50lwuiS>S$+)Lb(2~zKB5cBA>ToRNlM|79FHLW^Zr-BcVv7HN={3T@W5j7Zo?2gw~
zlud5X)WWil^s#ARSbu0BXl`H`+XtSfaS9=V>S%?`anA@FoVSJ_L1Y%#oPyBqFw_+#
zP8^m>XQ^P5e6{2!edS|T;-Mxz9`#uwjrlGE5D@hRfQ3h2lzj=Or?s;i>@1QUVtb1(
zJ1K|YR5ZftJ@g-U(oS$ah$<RTD6=zf$!!`#c%UVu-3yt-Ig0wc?d*s;{iJ!-XJPhV
zIw$nmN1wKn(u^T1=jEJqSHk~03yb~8L`{tYDf*tOuCm6%OT(hAJ(~ABV)27eS>EoM
zi4vam0)R3t3h0DPKLHrZ^A88LgDDg1&E=>Rym2WLv|SoRQ!g6YT?<+zhLAt2**5f|
ziGT3*td3P87Z@##4}Gn9W1N!}ur6R9uyY$U(O!7Nc#lIzBbAL{xEs)~eYRJHjOe4Y
z7fA*u7>yjG3U~hQq+H+!AK*j|i0@y^AGG?!nH3xeW&%Tg$mNYr)=?6)75MdT>ttdB
z$1-PoP8BgZSrgIN94X;>ju3~S-n+N_R4vH@+K;DN#`B-9B<}y909%k&J+2;j(Z@l7
z*sy0f6)e7w0wa$<f7a3qdy;7^g7&3qh`jK-A<^NVIjTRep~M$?^2e%$3F<ALT@A5k
zlDJddFw>ihJFFZHXIJnTIA>I*#DSYr=FOR-Fk0_715f`80+g0`k?tgPStXq#(=d>5
z%C$wTHYUECM9Kb?)Nl}=H?uekpAqL6=k#!OzpqAIrc3htIqaz;)9D`n`^TbgNQ)*G
z+3@Y%f1)xAU?^-$2T_xqSHb)engQNt7vqkzos{scwX{U&Szt*<9=YBgz2BJEq&sRb
zq(eRUS(MsJR6w9<5f-PlnVg?wI8;&R&z#XX0N5{ro@TmJ@JiU6mriXCB?Pr22mmQN
zD$K;}X&>t-ygVR)zsYOg7r<GeCO+Ge(k`bXMF;8vqXBPVl&5lUqUNMBW6<_!mQe;3
zL-e9mp|hZpaeMV6YR$32qI6R0>*^SMNuuPw{qeLI1Cq)7P`sx?hV|hCKBmSU_PHR~
z|4X9&jkeTQRVK}?;<vXupf>I)>s_>hr{Ofi^AMkl#|Xn~O~~$0u(l-kWSHltiE?Fa
zgzL~_MbLAO^@GH<*7;O8`vZB+!|mz0+h{}Kn9}dnJIEPra#8LScwddSU~c??Y{V@i
z@M>^bK-+dBcZomNQlrO?dETGJvmi+(_GaRTy<=C%=3B=>JFSHQ36ku))p*>FhMFwt
zap<+LRAVe{jSx)8ZCRevICI}RGAoK>8@AH){GSZ3VW0ULJsN$iWLyVp2ofLIS_$_F
z1;Ao#@6G6Z-9?WN-xyBX0rR5!-`Y-e?Xx%)9C$&WL3mm82X>-f*)3$Vk&N2+WPJHT
zU6Ipjlpkr9=9W{H78!8{y6#@^;skl+dBs0d)xL>zE6PZ4GM-0iK-lt^uaA+O2;t3s
zSgL5g%By}PdP-O{%`yn8xZ=bzd4NaM;WAz5o;e)DqQ`TO5wFXMUgVMlkkZ~kMU-d%
z@I1&XyHAL`K0^0JO&A|AY#W5RmokEY1L7@gTy30O3)uEp{2}|kA@neM3KmAXg{;S6
zlG1vyDcde|D-KX45w>MF=77^?67nh{abR!js^Wguw0g;OCiG^R=OBZh5WhP|W}_q0
zxa!m^J)Ch`ocBwOuRX{MZ3$<KLzwS}Rx-c2dvxeftnBWLl94Nb+^E2ndp+A{7S9iF
zl#T7g$U}Cb)0n1w*{Wgk(BN%Q)Aw0oUo5U0U5&9#TC5Y-6@|iKS#@IHM4#5S%nt(w
zib1+~{?mOxgX6;+D1L1Z=(Xt9D^a!Ek?;7xC^`NI)`f?DW^)|j&wiNZLva7Ey;XrN
zisn%D_nWh_EAPff^W=5(=gVYwX7+;OmO<`TX;3hIkTvR==2?gmITt=7`6&jSNOS3B
zHUJQhd~UEyO^ZWqppI-x-75A(9rC-d8rr3Qo6H6B4;X%Yq0AwWR!!`BeO5RxdXAqq
zCFzPol`6FAUl@BHEC;fIx?%25XA9E2xoQWiVmlmMp9p$eK6rlYDlV}F;XTz4XT!R^
z$9>oV?Nt5ObPhsDpl}w<p>Cd+n@pTYt2ChPQW_MH9-_+6*`bf48`S_J07%Do%CTq{
z(|m6X6JBh}KjkyZ%V4Y$Tr)?EaFLq2<T&=<Yfa_8z-t1Pm%2QzW->|9Ux{Q(PPC22
z(cZhLwMT8^Bn*F))^Ju_e_OK%nRx(%*)<UKV@+I{GA!)K6m$-)7mI5u&XjTX4|LYy
zn_glZ7SM`_W^#oSx5uMESACXdZv|aP<TV8u<DR$KlL`(+R7;uJw`6?dyRC^kj<4%X
z!4R1prpvp1RhTt{BjoG7)TNCsZgoeHq2EPaM{|oYeBU|?)Uc^gKN^YOH#Rj{ADy74
z-UkfWm{>~Z5NlF*f9deNBNtq~Ny~PWAI`?MkgNb<?|6CBvB>2@4DCsRW(k-Yxq#*$
zfFb95FDr2?42b$<G(@HUBDp?>fA;zt?Uy}Le~LWSB_Bc-oS4Tw3-#)BE{c5I1Pqs4
zc9Pax{ee0MpI3AZAoHWw%q0#5dD~_c`K-83%M0(f{|Iw<Dw(?)a`Vg}4%~laQ&j}h
z)ndO^_P_3m&TTs4bbpp}bB@Gss9qs@Wb_VlK5Gy8x{Wsti0=RYBL!|5J}F<@j{AjL
z4qMVDgpXP9hI}_7z%5pHF~K<-xb!k^CiP0~Ze3!R@y$F65|{hv#h4y?Rg0SMphzeb
z6*XWoksth3DBYf#=CgUysakIv9=%$`vhcJPt}D#I35MF38zX@URSZdFy78bc_m1qd
zI7^Ki$re@m{VGxhubv0ogSce^?m&wZY2-1s&;_zZH@IV`kr36q#}r5;vcVC}1NXS$
z%-G27&cQT<<Rs7(*`x_*<o5R&5==Y`G8X2XwKK$hR+&?|8*?K3!j_@BACP%|N>pNO
z`h#m<qpUH?9NYSv-<avw&{11EMqsHGW}llw$4QXPRA#CN<`n?cTpaod8~|SE%K%cy
zpgNJ0fC_bqrf=Y1&h<TIGbU^~!8Z+^*-WyYrO6_=Q<oFs8Zdxa9&LjvjpBG~O@zvy
z+AF;ky%)rVk#OE3y9LM=083JK`keh|87^_%Odz?NuqvmI_=ecknPWd}7ZV8gdFd7t
zbK)uK5CQj$CD;Qa5l}QXt;d%C4uX$u;Mka9kzT5jc?QykM=O3%ScNsFJp=$yYFD{@
z8#UvNcZE*8KCHOkDc+&{I0SnD`t{HmF@N};RCR@=0iDv3QtKQ*P+vii`skeH9}<0l
zH8^w1lj=x;R}M)%E&6KrobK?<;{~mxz;4vQh$lkcHa|F|NW!cn_{J|;q<l5<%UG?9
zgrlsTK?vUD#4p3Dcc)CwTEywyYZWGo^cYYdmD8?p8UQpG$Lb)ZRw>_Z7ao|1b<E?E
zn3@)XRGIjIrZ^4dC*EFCq$_0OV9WQgI5h5aAsKpNy(M`^5!mG6AqxVjoWDkoAkG6i
ztON@FK=A?|cxp?r-n-uXRGEBF0XnIo3lS0aR9$5A_&6Vnnw~;y60HEbKoUv^OG|_d
zu5PSR2HSQSeci$!ymmahy@yjyuM~mxtEaC@Tfuph-8MkULDa<i(V=^uBZt*&4Vr89
zQ{=E>IRV!&DjwgpeA0J5ipaMbwx{%w<xxpje&J>=0U@AkBpa$g9B<jLx-FgEeQi_J
zc%o~h@_=JT;nH9vZ7f~iAh04Rx|h<NfPqMZIokHizujS6p0g0jsX7HR8}j#n7rLBZ
zQvnwEPKGs1#W1rPv};G{o9;%nUK_ae2sfdLs^?K2S4q`Z20{8}O2c2sr#0W1<;Fcy
zzD?o3_@knP$I-z}qi6`UjzzI_V!~B2DR@gG9L+TeqwuOUaVs|R&!MIpPh(>ce;!AB
z*u$8oEvS$6tD`7hn_SdkiE3#cp)LfCElkRC!9x%`A9@~n708efxqE~3x_9TVDeHU|
zw4VFdN5^i!9hFH^pW5=18gKQ$C%2AJG_}<>iKsShQPeA()SW&^{B1e~wfaGvM6|oa
zvwq#my_6nj#j5v0(aP><;X`e<s@3}`nqTn)dL4n&Qe#?M15&|{OM3So$?W@tjhQXo
zaA~Dd5BRl7K2YE=S;(4Is$K#ubgOf-8q80<PeDj-(lHY_)#>dDtX?D%xFonj#fN?+
zbf=gcHE?yR-ZNamls|4j1?e(Mm-I+m#8_>Hwdcewo~wHJ7G2!0kAESpIBssCqwmTq
zOV8?KNnz`!D<Ptoj+1smq78o22IFtcDz#%XCrn+C#@eze!0(sGAag#`3aW&vIn)31
zKM?--mGRyah8YZOjPH4QOaM_puD`ZBxlp7wB07xt)BQN2VK<`IN}U>>Hhrmf^g$yd
ze2k?0bmN}Pb!?KnJwGe_MdS3@hNvn?fXYyZ#&Ad+>?~u1F`JKZezeED87<<?RK@hF
zEB>R>HZ(240vx$mY%YsqCASpFwDFy#2eZ$bEmcn$2A?jhmR|kcEU{O9Epo0j88^yz
zXI<voJQ~j!)?8Z`IGxyf=bG<hKg31r{G_TO5rsVB4SpoS;n<D?qZuCOey%6}fY5ea
zo>J-&Rew3na!K0vy83To{hF_=eCKPtnfgyvuGdX@6jLoMhn~%d=5s;@oc;+MyeP8k
zCX?<-Y1J#cQR9omef$7sb>V)Z;6e*NPi4Qid&S-OC?<EyS!>V=W^BK{DCwGXq}ee&
zZbY|O5UPGUn!A8wxtl>@qrX@U7;xH!Z*lOJ%nHdyMc30_u>Y9k!<(En7&(|CD=xN)
z#4h82uj-vud+|IOyWmj@Uir3os|Z-kI2$yR%(n_iDzvk!9x$m1#N#2U^uqe+PiQ`L
zgHaiDWrdbxs<5tmMATCf7K09raq2dZE*B#CT8aQoy73a8And)syv%W1A|yz}LM>K^
z8EXr@t(1ZloAHvA`H!NoyPjVQd4nruBqvE4M%wt2C+2vKBKL>@Vs2nKvL-rqHY=UO
zZPm(4`*oq)QS;nCS~+2+Du2^6UrykJ%2sGBA-%q{;DU4Gn3#thl4XGFBUr}>q4~Rp
z;tVamHR4j}xvw>mkqMw>ph3wXBeAe9Z`GcZbd0c}4V9#Z54ilEj}dV-zb<aXF&uaJ
zsZ7INiDb?51d4@~z2)G-OqytG)@~Rd?Fv`r{ap|1Wm7j54~1Gb9wHX(_S%jWJ2B^@
zpyK+&hFRGs#8Tdbd+o!~bGaG1=-<1|kzkHNc%%J7EA0ICQ2N$?NiF`UU(fw6)rb1*
zFCv&&+`CDVFIv{I1o`_ytKIDjeF_wWbmYxS^7DcBsZ))mH?xejnCAm>{ro}j^*4!f
zt0w0xz3OYJI_r&y&seI*k;xUN`{y|xlJ{T)Fof{Bs+H@sG5o=Ebp+XD&OMQiWcD}Q
zCn-i%)&jJT+Uk!U)1(H=M+r1u|3n-h`>(j7-$-?UEQd{jHCo=U%9NuFBso{FKRdjb
z`6lnSJ9;j0IvJnFp(lX2qYLFS)!&weKF3{6UUQljMm)0b`GX3mAVX>oW--^O@AYXg
zyNis<uC+-u){9dU9GV7zppPF05@VtFhV?ZpO!(X8iy+%usVKCHukN>LvLASE`}CdA
zJ_j(hr-)JcHwSccv}E;KXvM#!c)!zML4>fYJ@9kO8?N$;=$$w>IiM^x?~BxizosLe
z2OVUH^`&?*K2Dy-dU&b7_c5)Wy5=Pw8D{k_N;`n#9wJ0_C17HIs&%AH*q6KJJRtDk
z0NCh*1~to>Tm_MMV+B=#<B#@C43@Rez3Qof7|{~2NyAw`d{>a`&{w%Y;;_;hUg@rj
z!TT^CC2g%kqO0X)+2WBUSoJrJjsNO9SH?$lzViJeThNN2|D6b=(;E>d(O^Xfb<#&P
zO#bsq(3~Kp<=xhLtRG#}(8HqAsn*;{+VwgOgW^hVC6{Mw>XJU;KP%+hyp|B*^@?r=
zN&md9&4tn4!0%H2QL-=<6zk9#BL8+PTA|*WSyJn+VGIP7c~rw;*_CuMHAvh?uO<Ri
z=#qg<%-B*PMqTwH^Z*iq`HnIr9_ivv-#!Y%1;AB%*5OmnHHO-%ko=s%`Fcw1+paV1
zGat%*OLt(_YvoHoJ7CFj#%aL`EcH9}V=$Q+d>);2+e3#~JDNnxgrys+z9<Cyh3|i#
z(~)C?FWn}Om@wRN=sSN5+C>s%!c`wAxD;6a1vbWWpp>XUhV6cSi0yM4Dl(c$#Z8n=
zWIv+MD;>d%8IywikbZtjV)*Q@1S0tza>i?XP$Bxnrxf#7?HZ3U!AEmF8B|J2x>w>q
zY=$`t`Tf1XXiqW5V4fkq^U01N=3DgBwYgwygb`17gHZAnF-gyV4@CX-Rz1gUB$xM#
zKPxEA74pi<pE|7>F;euyLj+F34`d~erLxXIqfHcIE!L?H!_I><Hb+7a=|q=`orIG(
zU6<_7t+f&W=oM1B`k}e>U81v#$`8cw<3gm@a=O*-E!7=^z2}$ESshHzOp2I2_v50Z
zHLGjSjt;-bd_&*GE;~j1l*8uzt7-9}l!eZ@*jlM7{YnlJ{MuTHLQ}ed-6($?iugc6
zg>TCm)Q0Q{V7tkzZFjvddO;e((YfR~pFl9eU#jq_LFd?#t0a`upC7Fjwu{!Lj>dkf
z1NFK&)hfjXl*%iRQt1}zminRnzN;mEtsDC^h0Bg34(eMcUEI}Q#-k{MQKe8p4a^N5
z{+&$&j~)dD)%Pv?cMlF;qo*%yK2@^=sKeeSoIBevNg}!w5~(mS0B2_XmvKCtXw$YG
zui-y>qx#3_S=n+5BO9cpw}|tqNZb<HzSIzwBKJHtASh4x(>5fJ_FS2`%c|y7@+>jE
zg}7hVuOV++2ybR)=deGu-<@?MRJsx3xnigXCGo(!EAeZx5$<npR?qbZi$~;YDYw(%
zfW$}Aj=x<+ovLmdsxwB_e!K>-n6(<y_4iJOrwH&LO}NkM#wfj9TGy*XkN42^IqG&^
z>S&++wm&bnzXclL{Km6Qe@P{7XF_)1Ij7Ev@rJ|M|F2Z`q>h(7DNrxGBY2)=QNb7<
z++s{a&JO<bo3t14;h!xxL$r;Q!i>}Gf&KwM5;Ei9xSZJ!JL|w4DmMx|n_bpQq0fBX
zM)mA|PkVBkBhI8GvHC8A@oVlWeTCEHDnRZg%t+Wa5*k1D5XyaDa02AA1nnPL5tP7O
zRT`JvJ8tE^f+lMnCp{-C2Tw#mqRfv(j$t3S$gVQqygwWYhY~d*!z7wxb6pG3?Dc%s
z8Rm{5#~k&K%&ZT4zvW3lGJj$T?BgmHTQ@wG&vDuql$4RB`B=3g0kD_+Vx|7E&y9R9
zjQlzO5o#r2_>F&<SMMH%pl;drDfR1O5EGmBnjL53<HkiSypxG&L?`%J`{%vcH}$ns
z&DRfbGV~eUJ`1{D>d)VoOy*E<{~4(V1npbJP2v{m1e}ZX^SdQ?hyvy^uC+xsHK2+d
zevBj;pJJXp^79!yU&pv-zG_9@6br6w%WfSMajJXxgx{<Ywl~1ViYX9;*m6MbbENrL
zh&*(P-ED(=TYEzb=73-a*bN7O1b3P?WHjbTNjQ-9u&Dt60WtwNmISx{F*NPdUnMR0
z(~J*-i>+mrH!u>na);8<W&PY}*|?De;SldCGlNJ~+dP1!wN2dUsQwI*4r|84+gQ}Z
z`^{K7?)*KdGJI*>b8{mUE77RBZL&!IKgt7r#)ObsjQ*CG5)Fib#VxvGo}-3)=RICO
z^HR+JuO>JQ?_J;Mm4Cbc?>Rm#s=-nX1|Ckr0GLT*yb=0VRdKY7W|p`J`U7e?Bd#i(
zd~gWK0N%%RIF&HF)}#bqtIG{;nwE_J!nKx*IHH6>U|%~-6*Z4DB^==U$0xGQ3m2E_
zUqNm(W>lx<(q4-@W+tk$zym0%RC)Ax9;*k}LY4`oBwn!+Z3N%IcD^3w#LjEa>dsZV
zJK(6ib<GuXPD_|Uy&_D(2=X}#%k6@$^|}+omCE7;;}(&G1%Z&VFfTqU=CK)0{^{l7
ztcSfIT)78C-bq%P-Rxu^?Ioc#EJ_QH_r&(W04kk)e}!C8A#&!E!sts?&K!1f0=kEE
z5fjrj*N=nN0Iwl(c6Db@o7Dmiw(3*r8$yuuH)H7L+~L&~<-d$9e_VQQz4ATUkg*0!
z6s;T|O9X^Ed68=golB8$kbl2RxZT4{v4z-UD}$gXW3I;56W=%uH)Nt3Qtrs!3G_>7
zI`<Q;t!vwB!;a7x6Jnp3fSG6w6Oqxt$m1mk4=BqSM8R)2@t}05w@Se%GW0)Lf5>2=
zpArXrLj3IZ3Dar#{5;Z1^H~Cy?cuCKMkwZ5;B$f<(aP(<Ck(VHD{B%FMkON1sepGc
zrmjlQG1=YP@1|^*xpWbegFrbgJQbYRi`0v-M4A8X*u2AZ!Qx)2!Ke(*u_)M!jx?wj
z1i%`mNslTDrf6$)xQ?V~P-4)}$xAMPMN8POlLI=)#7SXwdfr(vW#hK4I?lnlN_rIL
zlgu0upR6iQ0_zHWkA1gx@o=M?K_hCm#kLa~0cUL*@@3s4O_T0Jji=x~lap4%d&9NX
zt1+uzdWeGJf{Zitj%!ZeM6L3;rRsH;yj_4K&e7rFRmz)UHNHTIn^-iUG?ze9&-rl<
zkJw><l$?9JkXH_jP|B(AU}!9$e4-93VasaL!s_)h>KPMIOcC(5BU3L3*H8I8>(#p|
ztp{r-!??%`!ht@i>3>-rIAmaUu&>e`(r{1N!!OMk@5V{EHkZ)OH|9-A&$Wx__hl$P
zk#?z8{z;=*bmLgb!We4y@VP9#z>b>B$BtjcHe%(Os%l4(`RHzTZ^+^hfo5lJB84Ku
zT3&+ulgK{Ta&M=x2Tw%Ml_`y{hTKZOriJq?8GM_DOSlu$XVzyaJADLMmT%wU|9D<A
z9n69+AV5inLvTH#@^;BOh4Ni5zjynK673eklF?Y1q9$|*h>u$5)`hjl5v-(j0U>mo
zveu;ni=JXA9a?UuWY)RK5RMB3MB*i@Ude21D*4tZ7gf~q<jN+o?%cjtRm4xl9ZGfe
z*L5nZixmj2?ruYaWE>B`a6vTFao(vYaz9zFLvH$_(a0AGU8#Z&6;a%;-S?8mkrURp
zoS1^Xk}QE+OvyOFEq#|376)LfmKj!6%K#*k<38K(`HS3M@!C?;_?Tyk)7dZfTCB!~
z09}1gF-_6C_{pJzxl*B-yc`2BBOTZ$ZAEvhMHxaGY|u70GR=JXz7Z2;tGByl53G}$
zcGQ@d1vC1o9WQg6Hw_SEQg_oS9{aes9pqu1?+busD@bgLJH~tWs3E{mxEgkXie$8}
z*S_NvV*1*C(%0TaOp0YTmk4^TOHq~jJ?U1yp&uccLsTr-%oaIwqj8Y~@X{@gJ8=9<
zkx!Y#V@HO$8_esgk5pYlEieCw?jT85>a9za{E<w|5csV%6Y+bZ=Rr@HkMbAr%^hNC
z_VDO1&r}RCapR}B#0(O(z&jq}sC~Ua7rb-<Ek}uEb$#wqblg1n=iiLg0ck&di$${#
zHXT1%Qp_LsGu=R-Xw1er=I2^owEIdNX>YQJXiiqG23fHK|FMMH)SAr3GXm%8G8ulM
z{SPH)7HY{I!vj|z0EsBV-K>aQ^Gri=KQ{xnp%@%3cqifjQ?Yp(45bIq60Si+i}q<t
zQ^GQH8)ga_l|Y&RF|_AG+d|pg$<)yn*}@7}hHm;=xP>&?yB&fTqZ?T=DfPti^EgZ>
z2D<pX4*d&hcvi8e5kvk{t(+vspEIsX&RHBB1@-~W422Tg4l7^Eg7bZGB>Fi)y+VFc
zejQ`!)+T?d(Q(E$i~=PVLp8&TF2Gexs!?(`wl<4;;<xpnjlBLF7)lI~Q5eAQ*1c59
zxs<faX9Cluu$7ewlpFxO)HK<67|~(RPo%vVg0~>tkG<a&kmmVw*pmJ(vXtTkR!L?2
zm(OG?WPHA8w2XzpdUOLH++!2Xb?SEICAucifW(7x8<bjNwtFUGcXu2CE&J;swaEIu
zDJD16>H30(Sp@M~s+68d)2EwH?8%uhwh-x|Y>JfDzd?^oS3@S-au;JA?f#w<9q&;~
z1EXCpE);{zNPnFy1PX+`Rqf{R`V{Yx4RbUNwa@$RcZ>!iS0t>=_}@h?QPMst`4+KK
zd`(G(?DNQF#L0hedjpaR)Bgi)wNLX75T+}a{K#zHp+4HfDWH=G5(I~b93w>$ND$}V
zeH$}dKO^JGyI9Z8Dd0#jR}4;_YJ`rR&Sa66x{>P>VjcP9Q*`<AHu1Gi5$mDJHeCDG
zjP(A`h9YyS5=d}t^k{gHkT<$yCT8dxQS##6aFq27j<@AE3S0z;H_-`ubWeG#QXDWV
z9u`@w{WmygyX<9DVaTavFaiULg#EeO=Ou!K&A1f!t~-*oNzXf4;5dj~#&AV(4EQ2B
zZ-MH0?zpBj6g8JNq+@N0k+08X4P0bfoxJS2-y}32fJh#`j>NVzS)&I8^q5L~G`)J1
zk-Zsl)RKAfW7mCV!XnPHtf7jt_gU%;kFXjda1~v2kB3>Y5V2Z6&BC}A*Cw&t$Rl93
zfqTBFm3qzpbI88*+A%knbnEHy<FTs8s!hu<VbPkEHlv-&*#+ysbcqx$?Z$`LHhe?E
zqVil+@M-H)r+}Iaaj5p?I4qjg`d_3zoS-#l^#{<?vea!`0Oeq^2@|3XPi@jJ8th|+
zA2|t=4|tFKa$E_@%POH<IAI}~{ija69pEvE*=&NgmDxAMC4Gn4q!Nys+3he2lzvD@
z<z;#-WZ6C=7!31MfHd5!)lvK1@{ZeleS+r82FwVnzq}O<T<dW~H02{SBWyvLOYly{
znqPfnr+lFOot4IbYXwIW-re-w65_gUjgi%Q@dMklj`AJ3aB$VG`L(I(!5FI|3GN*C
zlL3+bU_S|IThd)f?My<Q8Nh134EvH>_LS;!u{ZuUFm6@$YGXC17+OfCYuvL+YOT<F
z1)hyt&Gi%Yf@ER?gVTN`q82dmTp}Sz6`c-6{9;f0c=Xlm;axmWraffi+(eL}IMxW=
z194|eO%tuUl_)pwz+{gBv&4I_Fhcfi0NSiAE1UQgu~q#r9pxd{f(nB>R6-T<HoM2+
z9KK;sI7TlYlCv`KNcQ_7B7@U++xM)*kW`DoknkJXuZS=B+_58BO~c{FG8%giq#}qa
zR9rlBpn;H@c+ga^J0Kg6>i@RJQSu!r-%@Q7;j_4#gNn74x2-v|nm|8fv;ShP%RlgE
zgG<C{xw~Tm3$;1%LE{lo#99!%ot0Z~=#JJNJe%92x^IQSqNJR)3f0oMwg+c<#rTX$
z6q7-s%epVO=#xxm1R20hPX5+o9u$v2544%s95cl0e!b$%o_b$6Yg<o!>D}8NjF2rJ
zZR5dAWJM~Mk4&`)lHV0?A>+e9_G<w@LES}~ies(Ppn0|#*xf--n=N^-E~YQZ*3tYW
zlP9NwsoGOfBu$^pWtO7;zlT4X{v{#ZCS)kvPNIPCQM?hAZ|ap84qZyc((k9T))e%@
zOX<ys2*z>+9ezWzel42t;_(xIQmlwO=b2v0{I5CtmkRVm)hoPLL-s9$1fyEGT-C5Q
z7}Xaa2Gi;Z-a2^I5jFsDHw!wBS0hac+A$qsyC<=!d=5;@Q>QCQcpdB91Svf3oN?(!
zjuWgWwwr2B`B2$n=*>*Ap^ttJxg}#1K*Bpq(?Wd|+OYkEC`CR1!|ww2q~!m?*=rhT
z%~?{O#@NW7A%7<`d`Xb<r)Sf6WieIvc9IDupk527LOK|<ERC;^ddV-t&$zr63qfFH
z|2MnX_mY`~t~ZGHR)$EU5Cl4Bbd~rbWz};uvMY%O<x>|W0>$`j?$$PLA;wya3NuIL
zcR~hCYz~86(kOfCX7RX!!`5YxX}7KTtn=^@A|SBqM}vyrEAZzVV4YC5pmw7Y6z*bn
z&T-O0#NP3kpxnymuh>b5LU#}_Ox3dQdsEvG`ve6gr*1GDOxbV9zeExZ30?QYy1C~N
z(k8wM6$g2&jL8yP?hxdz$W$Gt>8`zDJ^ZYqw2%_CrD61*TU`|%B_^h+M)W=n#7xnS
zNIrkMc|s*b@0v66JD5W@McMs?`kD>x>6$Q)mMml(cm8Q3{JZ)2J3z}Q63eU+;L_`G
zTw;=SIj^P-iC;joyUx2FGLx@Zr0xP=dI23G9&e?;9mkq51K4vq+3cjgl6;ia;xEz0
zTewQ*SN48NITGhJL&|&jZhwA^@`X#`Nu0Ij{hU-y@0pw_m$a=v_HfS(Au-;X<-J9v
z*)w^-XKt{o!`)D6(L%3QOa#Qr@2VTK(3Tt=tbE)K8F1d5If?3(za5w56C=Tz-d`nZ
z7Jp#knEg7NEBvk>J?d${MT~J7^|dyvnl{v~R+6#854+?pGx2*zTAZz?o2&MBtHLXM
zb_+;9yOz^Zg{hdYr-LAw&j^<)Kpj82UUBOtd$Qj9>vCn`!j+aP;hoT=hWG-x(T56*
z*c5O8w>?8+;Q=;J0e!QiQRR6u9|4Vl-;v7{UD|7EQJfEuMeZ==S!f`~Le{$)V=^$8
zOzLoq^(H>f@TX5be2(8sZI_VZZ<H8UJQ%B>hSJfO_Lc2I#vcOyBm*+`=Ow+@*gn^q
z(jV0ITg*aXk^syWZ+jl4n|R((L`bf?($Ps5lGaL8S$V#C4IUC4KAo|gHJlT^>ejsI
zloqHEH&el}^Q(JM+$N>Zd6aq$dW$R=rcfLOz$MbjWC1v|dWwZ;=_*AU8ng~(D>1Qp
za7hYfB%#GF#96M3k@r_+%coc=!no4Dk+V$B8*F0K>vJ2pk$q6jlDR!{1)VM`(Uziu
z{?gx^Lp!M_=vq_up1lB9Q}TLydkw=tobWn-wY3WV_|FH$O%w8a|JgnIV6oEW$D-WM
zDl3;HZeC4J^vV8t+PWQoc6D2_U$WgL`IDQD|G6YmTl%X-0`h_af2#{Yin-vGLlbA*
zrMRu||9p?mdBd>l_m@IC>y5;;dSH#1T-ez9Dv&u0@vh}CzRXR3O*J&5-&GQab8OZK
zsr@Pi60&(QRv{RHIwM-wEQ$>$qbqS&!>vK5y2%eoht&*|c6+LN<opYX4#jKgfuuZJ
z&loAv9`W;|eBWJz$@qt;+TCyzT*9I$U$I%??u-NBGo&;U9=kb!kib%GJ*?OP$=MnU
z!#p`=j;Ua#qjNVoZctt?YugU6adPg4N;X}ehD4ELpV*+f9;%p$fO!q`{s7ckbnl09
zA^V^Vc+Pw0OC^Vykob;4q_{w()|x3~?7@He9f0#V)z3mkzqLrkKwv96(6xQ1*{!ZY
zn1#s+M@w`6QU<6(rArUFOG^I(t1~xyMNY_d{y|kh@${5c0&^hx^Xfi`$l^;_whb~K
z(>*J$0g`Oegg$Bf*=HzO)G_x@0PHoPhBh0+j-iZS?B7gFLxrLf@;+_}(Pzi%a8#?c
zm9$3hweuj6g(gz&B6L^-kJjK9?@t0_NSuBAA3%ksKIx%LZ5Uf~rVRF0@m0AnR_95*
zU)MejXOcdn*rI<lE$0T%JxX20Ven+Sy&A}5Z9vK_@1hI)oB%)mhAuRilV%cigbU;z
zuNskj)6lNnl(J7j3)K%d$$`Li&oLgG0-cM|=`dO$tPDVsdRdb7`z%3pMZKO@ICX@L
zTkguIeC21taF+F59=h^p4L@FpaPV;oioZZ&YEi(DyP?AI)B+LYs7y&H2#bAuvLbjn
zZT%KA1b>XGXU^*<>V)w2#|&|lp}Hc%%c53JCMJe1nP5o2u?;XM71i(xW)pE))(oDP
zajRJs^8c-uZcw?s=bn79HqC*c&2;<?`yX(sPSXU@3C8`_o6dQN^W1kh!c+CZyp(@=
zT(p`hEGZhmtsrrxgz%~+uWIGX`gPZRTpe_NiAUkgevRpln^3Y@W)R%{dF>o1*`#j+
z1`>jactCzbl}1>RGK<imaJO-<gfS|#+^XFz%NY2y?^uyRzb=a#09v8qv{wj8g<8a}
zyg}*e91=9fO?A_DtUgwb`pa?g`m38GA2M*qd&3lHCV?Xc;yZ(*?Y)O(H4gTZ(_G#|
zEU(~0p4{F6uW?Tz<CJlIx?QF1SOOzOoz`|H5tBEPZ|TUGSIe^JdZwd+EjG?d>sbcP
zN7l{7el1(Dbc;T*n=W@sJzQh)YNrVe=AyazQ=+kvjglMU63QD&iX%U()zg_e0JOll
z;}j{4t*bD#LB>c@Sk8J7-s=4pV{l&ZU-D5>D*(B)WEby7=H<es@_wacDwVq%{@8Er
z)Vh=hh>ynKj=C_nhN2NEgzLDV&p*mK{Wa)tN1gB5*~Gtb!JK4)Z7ULZRrC2i5q(6Y
zyqqwfl;E>ElSW%~8#D5d(YKA6A2{1EkD~~P*{Wrb0_55+u^N5}uP6I;?WHmFXpvjz
zxGKR>*PF%?OqVoMa!Ow~4VfUu>!*1mNOw>T^398&&B0MIX)Pw3ITOG9@D8hRmBX?(
zibjE2iK<pM;?QV5%^9@$QrSaCh)h7HPEBg08m}>i8?t#-d*jEljkFxEaZ2?j3mh;j
zhk#YQ-?7jd0=!qY4O}2|CRc<PVAxDcQUR$hu>JB{O_U!FjW-x)*llS#?en_2mP)rq
zrzh+>R=?OkRZOsZ1OGv)^}R6D&GsaN;TVqq?y;4ICLu2GF>GBA?z6$82dS}yO^EVu
zf|P%yDbb170(?Qvq$GW}ZS~v-fLd#-cDW(%|L{^YlAty{mG%+?Y>KaBb;+6WipEP>
z{Ye|7EJ{8D&<szR#iSExq4#bD9&>fGQ6DyseR~7F?p=7@?@(-bwH_C}J5Yk1b-oK~
zu6bG;xUz`HQXqK#dL_Zqr)O;1<PE<u+}`3JPL6(??Ba-&jI@G%rUWc@;IA<ix-s(~
zH9U=cZ%h!0S7i9AJ*)Y$u^Bm@c$T(o-+!<uikkO+{kPjtO{18SeEXQI6C1dPg}L=}
zDhWg*5CR7-a4t<-`w>hDT99bnvp=1EDp=cIaf1es+rV8M&mw<dEmRU|)6PVP1<!ao
zXw3`cX9N!qj*vc=Tu#Gq<PofC(xtpd%L^z*`$5UHi#rnA`;Q}-=V~)H{BtQkfTCOI
z*-zgD@lIc<0+HJgp1lM&y{+OCz_dXsWkxeG(eW<_<sx@{+Iy|;pY5JN{po+P9}vky
z4v^<Xg{t-K3uyxdO#pAG3AC9Y_8dTGQkli#_9S|F9}-|0(|2vyrjw92oz~y-oezd`
zdD*WWlKqsr;MQ~Rv^(X(;0$!5pht!Xu9NElX*U%N88x@9q2hMJD-63U3rE&cl`NH{
zKg*s$ySN47{#Nf8Vnq?6ml87wT<4u<#l2>*IP9AY{oP7SwM6?T7rz%be&-KIY!hUH
z*9H;6S^jqSTy>U?4M;mq5cK5TvF4=CjFfCLB24VN1V1Ms>?S?oKnbJKW?_Y3Pl_Qd
z=-xpHAJ;CtqiS*Emgv9}&vg}v^X#M=nCOhflnfJ`X2!qk%<`h`md0or1N&lXouxS}
z^dvUb7+R5qf!Qu!^P2Kg;<+cq-qsy$_o>7h^j}~@!7t~i!q>7|Mf6Oi?x-^2J>#9z
zGiFI;BKKnr9|%;W1#y?!$*}<Y&DTW7-^k{aH3!3o1t-3y{}hyVa51gk6ZLCsX{w#_
zRZ{brd?bQ6l`Za43%o~O%ft^V-}lOLY_Lo-E&0OKi(iokk-Odua(v>F8ARSrSb|$Z
zTp!);AE^}Eqs}R2TXaUD4ZsOVIKS^T+pLYrqv=GR1EVXl-Owgzd=yIJHh|NauC!X^
z*?hoToq$psk}Q#-odmb`(F6M%++)8W_0%N0#d4h(-0LiELlVFK=x{Zt%M9Dktq-Ik
z2~!<-P_#;Im5`xvIDAbMT?q5|yivL`JtVQXK>FU6IUyG0)^nwiB<wh>75`~!{o!}Q
zk>no>!xUqid*Mm`gpxhH@1{H;_rf*>diBUjia}~u?$b1sR)$m9S4$bQmvSwczG7_0
zhUx;b5@N=$IiK8arQw;DI_lWjA$G3aFPMLPQT|b>;aM)zhui6<H1Za?F1$t6X-BoH
zKghFUjO&SfdVg4?dJdX0tF{Ok><z#`27p^bplKm@cHt;AjX6ojh#wmvjt>C|su2P5
z%+O4*?v3%CDgQx^6ubspi@o~JnqLC-OAUe5i&|=?Fv7XM`Ijr{JjBP|N6NuO|A%Ey
zet&AaU-EiNVwX)kOvSbF2j~X=fhY@{CLM!<kKP896lrr-TAD)CW-m=TQr<)gYKQlo
zP1ECUnf@3bJ!pp=Y^WPv_Bl~gocNrAhL%BAisbzLd*83GYa))Mh}0A;-D2q<bw>z@
zq7|x)IVp&-_DIXgyEa+KM^t6nyJ$gZshz-J$%uuQ-)F~mgyLrjMLX{}*g+n5o`eKR
zDTkPkXR>uizuGul`<c1YIlM;E47Apg0?UMA_f~?iCoqEYSLcboUz}va>c??xJ(-<q
zr4@xHq(Y&q@8xKELS`LLqb6LXg{^dXrBh4D=*=m><{)wtpG$jpnd?_n;3m&5qvw+T
zcAJaAqKXtR64dpnaEz^ut>YbHe7P?J7!dGHowD3tNFGfoxvzWpLo|5f5~o4)7{$QR
z&0TDintX&c@{O6c%l?uHBkn%L$qQFWjph1TG=GV<M**cMm2xHxEor(NdYBTV)ye)u
zZTOBjh1q=%{uRbnRbk6Q^yJ}0E!y3hk|j)j6kivc_=HI>Qxfipf6>cCMkyYG^m_h5
zu3bPc%nygW)C|ruT+73P&jKr0rn|Hl;8#nkgM*V&zA{g10c~ix>AVkQ5?4p=ss=l$
zrYl0-(4F`V4UwM5fmA0<@%FQa`z2O8qW$J14KA~sXwB&vQg3qu_G`SDrT>=_SazO#
zRArR$-o4Oh&*b@$jN`J)IW+?V+%V@n<*|j30M&#=*d#^Z{EeR)O9nYd9&Cuwzw~l7
zYKKH0zz(-^Yf&U(-#L4;=-!WM$XfWayBeA$*+6+rw_-{XKKr5cYX)g|y&L4GB++?I
zReK}vcnG|Uj_dOR<$NA9{T-^B=ZCAp%Qr6#dt{BhpoFCQhait?)F^o=>Z8m32d~9k
zWh1d;MbM1U6fhAx>K10X%FNo~x_Yv5UT7VI?BGfX<Jv~7czFP55NRnA1h<_drP2E0
z)`w`}HM<|OWq7{?p=6bal1FxO=2sK{H0Z%~?NhG`8yo-ciQ=}gQsSqZCj(zI_;sMy
zBQla@&aYY7RJmO=zadmPF;1#MS*4DKy73i_Ok16URCI(P>VY+4lu=@B(q!$|H)}il
z75~GV>J!~FcZYNdzm3Vt%BoIH#bD3=Iuw%=TEffN({{ut7Z4Xs<G@o)Mf`pM?rCY)
z?}`=N_<`yl{#reV3n|@6Dn_yMskKrMgJNaKkIOEuQ4K;(<u&HN0_AvV??XkGsw&oQ
zj#$ix#_L(T=s6s~x#p~N>bnrM7Gg<xzCT0Y4LU&8Sms6`xP4@(7UX`O3*v2ws@jif
z2tS1`H0GH&ux<!W)k2l@Uf=GeJ!&0zIih@t1ChkL2^`yDO;(-gDcbJ(!(2)Dc)Vd4
z&V-NtGtCjmF|MRT0nh>)%OBY%?C~S7Mj%G;@Aaa%*7^=PZ5Up19sb}D@?XdGxzT&w
zsozba(2H;ayYRbiGO50;i9i9ljFBMQ8+EVnxOL@=TM?Xe=z!35c8bZFs_<g`+3(?>
z;@ckJ+-kSPXdX~)AlR1bnBp4>&oSPt4t6g1RPToGTVOY2qZi+H*5JTlI<Lc?GP$0y
zXHkpPWyf8ZyJKxmSnOjED=n<;{-~8lFC4xT7F;^;UohLzuU~X(FUst-9H*+ha!D4N
zMoa}K=ueK|S85Hr>0jvAz+5w0KnQ-q<*uEvZizilzs4(^ZWYF6X!6l}d!qXYr9^L8
z+^@58M1_=Aex6_@9mFYC0o$25D`}7q88+)-F3_XIhi^Vor7-!lUR&Xz3%jMfL~%p*
zPCZ61xZ|uh#VMZQ9B6v<%0`NY_8^E|&jQI7;Etif>@nH`NMFA8zSLdvx+QjM8)DWh
z2kvW12PF7aLS?V^XSG+_^14@I_LsHt+a#Oa^!k~$IMo<M?|*@N<Eue5@u{J~mnyNJ
zMAEXj6uDTD-9ts5{=$_V8UBfDg(X5E=t@a54rLBZw5~Ea8K+71A$?HhWAH5j9OKE5
zZcQW4eJR-g$sXFHSl~j92Z^z5TH%9$j)#vp(?JIkYd-9;p!W<1W2tOH5Jk4Sj76GW
zM-IFWZQ@p~*5wiSuE0@jvU4IED!>=>Vf&D!%I|tvq3W)Rs!$9XO5eOPgX~{?wy=mS
zS5tE|%W>fEe^IZMrk<`_;p-LqHeC$5+4!7Z8^<$YyrPVkn<@ba>N#QxX?Y<~s$HUp
zVqP;l+Uyp>IM7?&veYS)R>e#?lZZ%o7_n8gfIX?K(ur?6?0euHQ9Wl@UEv;Mz&k-P
z<|71B1)EVRl^X+Lws^&`^(rkn-mVy8U?g0mbko_WNt&=1j>vi{exZbMVWA_ZQ^ZW@
zWR25%n`Um~-Tp1Y9~rgzpQ9=UVjuy^9imQ(^p*YhdG)I6?y}bwP(AR9wGJKY9xR3h
zyT;)HcH!rUpX@@9_v`6%;Q!rfs@NX)TS-Uju434N^L^|ud{#<3NQQ<^F7@(w-=?~2
z`sOdwTXK=Z{4`7L0G&j|CsKbY+50gHrHf*%!|w*)hkc+U$*G~aM3#ozUC;r-P?#Fl
z7rXV;S`}z<Lw{?wxU0;nqUv_5q0<VhF#>4}qHPPh1*XNLeV}>SM|`48m1P%jh%&x)
zTLYosruFc#caZf$07eZaGfqwuSWy)kj&<`sQE&<A7bwEbI}$L_9CSd51mItF^1+G?
zGV}EghYH&<Lg>%z_H}vt5udO-uhx5P-9qL4%%Gt;c3RDoiymW^GWPOy&ek8NMTT8)
zQB+YbPBS)t!n0QKx|G0sR6zl}Cp`l_$J9bDV+Y;=S=^}E1^tJdmkmbkj!F*lUbm>?
zt%5?eYDc&vGOdmm4~3$<3?B~3(=%i4i;!bB)|DbO<cQ9tL`K^*Z2QXFvNI)Z&vs#(
zk3}{)jDdk)-LYZGc^|iV!)ejj!flHCv)#;+zMGFNz5&>debsHESRC$T8Q#mu5}hZU
zeFI}R%sQ%d_xUg*o4=`eNyjm9#BSpCYcEhjm$N5IZg^FOwMdtSl0lqeG#<jm`nj4X
zD~o30h(NWRXbvJvnx1%GF(Q0u%jO)o9%E(s;77Y+cJf-On6=x`L(L#KnlQAa+kfnf
z1<F1jn|CCNG)y7<GI>UnWju1SlB!*7U(AXwaXvAYcNI0*AZQ6W!j<ADV!d8<+04m}
z>$_u}Gz`?;){mhZ3sF_J7oJ^SN`w?F*tfW$x(XeCH{-X7QxUmYh9|cg_G6G`zH{qQ
zFn|n*(lO~-X~r_=9@l9Ig-;d$>fYe0OE;ehEhhx^ziYG;4}j<76|x1=51E5ChVVuG
z<)R2KE*hj&BS0VyUDYGb5%<J2w!3nn+~f^-X+=mFIBXxNVdlT4KRP-be)G6W&-ug(
zxf=`;k(CkSCFClvgNmHs-1GWrAS1_XCPb74+f@#fR1ZuhQwZX^^;x{fUbU;`R7yuU
zpU!PMzvTVgGn3)}7@ZLp3qjRbXe<#<-2pvoEYeh6XX@5A)>#=hmY_;J<dUd87N}~j
zRXe;LKZ!Ly*;8Hz`g}s!Dk$84TR<-dnj-_5kX0AIX5LR#nEADWyp+>$nFL%x4qRkW
z|N18$E3$sQ3U(j_F^z;Zf>n#WmbVV9!dHoOZ@P~!`y01zwMo6aTGH^T1V1)o3aM~C
zo9U#Jq{PUxIR*gx#wg|_TZX$4V}c#k!K^%YTw~skYcpZfrY$KeY5a9yU}7fI;`^e{
z;GuN6ZV^&r^50X4`86>3LdEP~3BOAaO0NU|7$oL+|9`ulYEuS#;SI%+t^6FfXfnPG
zgj_Id2mfJ)A#vB6_q-lV^^^UvugD{A;03^{B2K5q2)N@@4EmOg9LfG&IjM}6Bk*lq
ze5C*PHtm?l^hhhLv|7iUg^TRavg~<Y1DksTRkxloq0p+<T9n>-;=wU9xx~wdRxyTE
zbxyMr-sG2yE;xm-yv#pK0*s#zG!cVdC6MxS2jypu{x?1Sgr>)C(u?>Z6uz>fja4`M
z;CrbxyCch~Aq8A{8O|Y>-5w8d7)J&ngXz11Yy<hFN;2HhS4+PVvPI}q2p3L3(Y~Cf
z9w{Pp=w5Vz-cnU71&Xb^+xx9l9B7;UH4t#r2hQ;FM@(-OyR|!4<v0eTalPr-O>^&Y
z8EW2V&7=kVDbWd6iL#-hPAI9a4B=jiN%Y$X1hH#5w?v}1T7BWyx|bKveD|EhK2Ukf
z8hzKe=4UX011#LFv+GJBs)!{wISbuqLO(V1;f3KfPa-%8b~n$U7(RpZINH2NLl1MR
z<<j9>(m(@Zv>g|I@T?ge1f}<nHP7YRYA;=1B>mua>S5}(DQ>4;Fh~_~%nxB_K04_Y
z2^|#K`Fk$yNYxiUhx|v<ZCW}kxDcf(0a)R}b;T>bur;IK*>EG5rV~NSv|%X1O*mLn
zA`>mJFhdiOSON)y&frwEDg6I}1;`9_F}&2lA-Wjwzq4X&?q(tVAu}#+4%U+)H-_BH
zm)EEfC}Nvpq$eV|fVPD>ZRsa`m5WIGsxzUrL#`c?pmG>icSdOSJv|j6{FL^pHCP7A
z=iZki8~fpxFC|d^R$!dVYO`h!4l|m;ZZ)`uLoGAj;hQZadRGhccKfdrfpS#RT(`81
zKkw#hPAHgYOcaG7boE8ViWXRbuhvnnmecR$Vf{06Y`O-{p9pgR`Wt9f61B2sf3>$d
zbOow$|L<Xe*G;uT<z!QI5i(x0wn@FE9@C~~7&1~<iP&C?QxX0IE?OG-NB$osN{5oV
z1{uWf+klG$ljFkqu1!jy$h9u)J$x-m+FTan2NCMIV9rkw5x-<Z*wq}H;{hc}ijZcn
z7Jgok<y>8Qo0SG`j`q2F(0F%qpYcpqCu`ZiYH)Mw)5?AfRpXzrz^yOyC-2MdgT0EX
zCq+(IJeezmJsj)2^f6$&E$NRPhCWe~ib;Nb_jw3X(4cEXH3>ML3q_da;E<p&Ced$V
zzA0*nqu{-NZgOEK8LW-C?~!bViN-THV{Cjx<@+{>K+c=?WnO{*2fCfMJA(qPmr$hl
zPSO*{ZzP;aWQF%Q)|eTIy^l2s)Y2t$O{7*o{njLGb*QNKMsf^e+zrx2-9BNg#QU%y
z-*OiY6?RTj26GugZ{lo`i|k1B&x^q$n6$qrRUHtepiQ3z{GPhF)-2i)ujX7}g4i4X
zBJefiuhI>7Q?xJGldR_ON(`)B^@!_B^mT#3rjZ#Ug5CYK(g*)^sFWxu0WSC4Ge9@1
zn#DwGxsFA*H<_k`6@ef3D(W5cVCTonSe{*`a~t11J>330$0DZ&!w|pcqm<c0@SK@6
zjaWv%JJ=@<O26uSe5XF?icdG_2!VzUw|*{`NOK2091oBbMUK54ICGfMIqN%npVS2N
z4z291nEaJkgu=J1cB(s4-SUO$aj=2GPd-pzh&eKx@3{IBQT#MZOstB0_;%=loB!@d
z9#lZ<ei6X>ZZxMRaoNVWztf8cmWVg-4lu!2$_8UFilyAACGKSbQX-ssT>#nc;%8Nj
z64%}3T8x96hiMNE$(MULghYYE+DS1c$jgpZu~~J_Eb>?waxtuK_NSe)XR(ssaDtWU
zpx#AsjP_7PjBv<OT#1syC*62^-6fR_<(U7Mu6RD&VTvxgOD(8p1__2*GTk<cW4#%|
zaNlKPe9xf8MsRVfB8z>H<BPa$PB~5r9eO<Zjq)^peDP)-w*%xl|1v~yS-2!elF>;W
zWE&RBxGUM|R#96La!!jqa%^pJVj@H)_}2ep7F$nElEM^MmUy1^eUR4DHsuH9A!ruT
zDNwYAap6&t%4i2tK2|lOPUq6r<+o`HY1owUK||f=J<slDh9M6bw1z6b%htn(F%V*?
zR%LSFaO4qrFE67px6g^1M$WAn$*)R~Dz2MI$rH{VpSs%ui{Fa^2Ibdv)8FMavd_gk
z8U2<e0hiVa>jEk%P<$V5NT8_^crGM9yzP=5>KZ(w@abA#_a__--Lx9MRWt>?TMYK4
z4cJ5v2|gKvrT)ydGo982dkTt!|Ca6ov@JSu(OkD$I;guBoGe#_zK;!Y44?!Qo=6lk
z<9>F@#QoiAAuBh^FE4uRlLiXgJOWzqJ=SOEpD>vxGt16Rr5?l(7`s1u{%L7izPD{O
z_8E(ZCbX{0x>Z3xNcDa>EC`VbUDAIKf`o5<0&0cC_TI@x$<My9;IykGV%Jp-oJDf<
zD#E<Bn3OyRQtF)Ilnj_gF)3OI#YejV>{#MN>JiXwgEN)K{k_i&XHX(?X@Xetz8D>D
zyS%D8BNi4_O=4F4v`ejJhJ%e=1sDf`J8Mh6=r*Q9>t_DPqbN<RCrEeGAbB|E%V7uy
z`sMu^c2Ht!twd$wF*u}-wpJs2`cVDe{O{a1c2g9HGVIOxwdag)z3E6+hA}~k$7GE}
z%g8=V`J@FF868LdSSbkiss7niWEZUf*tyn%@6Jn8z*ac;;>h@MdsxeaCr@*dHeDNp
zaW5oKiM#;-VnSL({4+dh1GuZ&0Z}^!45Z%pX=&QnR8FBZ{ot5o$zz`H{iTH5I6m9f
zvys`T468-$5+W~L%Irb41R(cFG#~-5fh5245qru+rptmBSH8$bv`SuF@pGKAWFKUh
z8`u>&PM#<nR-??#{HwCfugg2I{JznFX}m33`>!rjG5QQ}AUE2*=Al}r)#<h(Y^ciK
z5Czh8gF+R8H!3Eqjv?ix#*lR8XLo@9{eI3X$37Qq5U>yBmOh!So=~~R!YhMSKyG~;
z?9Ni2MzezGY`>y)J7UUTrtVF-{MgKm%V0K-`>XE#J?5R}H6fPtWOY9IIuqU}yJ?KW
z8)6+!?qLX&l>Qk1NKTqY4pKf8cE-!^OJ_LfBwbWx1#nx8g$IuI0&6Oed^Q|gBFL$y
zK2X^e)I&6YDP=HG_npnv3F(DyRyTS-1xQIdv4G(t9HD?rL|6!ZM3Q!VEWX|0obd;K
z%D$J)Xdbo&DhI}#+4>Jf4iUL3j)IO<?9dl5LrCCduOnM27~}anvR;7njg<UJZ0<Z(
z?es+xpZf{=ywe|V6wNQ|#ixW~WgE!aErPwfZTCMWO5lJsQVhGd{HL?Pt2DE=EnlOy
z=4~rpza?*rG84W1E7syTHlms#LGbF3|6#e(kT%pLL&mFaRLk!mLlLug!BucqJ;hbA
zsdI#iP<Sw+ymQb}UW!n=+`e7_JPdb;5qCb`1O{KP7+Zxz`7cA}$%fWD__FNU*+3Bx
z)qTfGJgMOwRH0k*8(_IAToCe6fiF1$@}WZcJa3NW1a~7mB{pI2@qvQ2zH8?nnZ)Wz
ziO@#YI#<Vp<H<+MY5T9*cGP6Jj&OeQQw;SxTNI_xi#QJkIz=--RTxdr0Og6}tf`g9
zx9NrwOyD`<qV>7|_H?^Nl^zn2VOK1hD^cUr(bLd&tnand+cTv>=~KL-eM?8S7P=sv
zOaGmZv3g#y<zj`1f#9!Lczbu_-*`DfIx-|-hF!X3CFhRYtaic3x`<M8va|~whn>rr
zMy9k%n|S5AFATz&h=OyotD1+s;~nMtqR=TjZ}e4%k(`v4d(L~<Qk(6)T8+=T|BXN#
zji#Fw5>8dtzF<euI!@CaJ}c~3%D3=wyb}G5h3QdWH5ZGdo7j8Wsqrz15f8I$?w3j|
z6bK1bO65x=f<~QxPMry%i`qlEW~~rA{$$twrWck1+g=kG)cervu?C1kUBqR+F)q+)
zu>DGJE~W*v3u!;w{mqF{`rV+*O{Ie9&Q_e9v|v8RxcnKw1Js~SvA#$U4ZG<*p4A}i
z2(e4OsVo|z3BN0s8icmFYCG-$FG72*wdGv^L1N9*R|O@@^4>yP@f$V*m|=K}oGcm3
zPbJ2*S!?q?)v=%`fEF*$SHGgY0+0lu#k4Kvvn<&O;U~+syeMa(qiM^CYxDyt8)|E7
zI2uL9o@Q?4t&=j^FGm0OoUme@gq_<I6CktX(B-K9<%IB6+B6Yz$aC-G5+|vCq}Q_}
z<xmJ6*>&Uw=1sI(LVC%qFqH4f07|@H2<o60L>4xg>|4L$7}crlM1*!wVm=>Tp&qQ>
zxkST>xWD?)xs>O*2=^q1Q2!=6D@AFL7@9)YKwGijabk8OmhB^W?9LII#@AwD`Om~1
z>?O8UfJT-N+9ATjV}5Xx`cfg7-V70n8c?``lqUPU13jsig<|4QYFNw;A+1VG&Ru>L
z8bU#VLv9}YlMu^Vt0c~FFcge@7Ck$-kO1rPG&=yJ@*tzx;21W7>wi{1@09Kwjco%~
zEn=N<;l5N~B2+`KytAz4wLqDR1p?}>yx7*#5sQuiyJ9{DWW&CbwFaKghXL~++S`#x
z7ruz!;z%wAdwtg0$J8YOje88_E9gYKLc^ibDU}|ixM#WhA~s1e`iY>%zo5UB8tMA+
zYrbn=$S2whR^sWj%aItmn2^G~)Eaz9v%nWPn4!)J3L7e&*o+#JbPF{FBcz<u=)5V_
zv!EKWws~q-vH7gW7)zUaH&%hyp%6MDA>`ExeYjx_twdBnRahX~IoNh>5(1zwTB(Nd
z6N+N)-Fk5lTB^mqmoB(AZQ8IT_0%5Ye%1z0HJcc?-dq`6w{o0N15TM6Ah83>Aq(WR
zT}!9s;HPyIdGqNbVYCukr*{N7ue*X~r-j@V`AIDbM})0stChd8`mar}67ew;>9qjl
zkTSsxEiyJCD#V9%gW!D6=3t$|Z0&O2MfvV;XetP|xv-t236EmABjyg;W|{C2wqIri
zGm?(XdTQL<<P`e?gbK_xQX%*8Wa+*ri~8MYm6xv)x*Y|PSrWZI0TjQvge$W|M&eUK
z-L5OM&5TtDl%Qs$JI@OmHhbh=#Ew2p6^Hs7c0)JD)m!J1DEiyCRc^|<^)Ss<BUNLn
zS>GJKpBeUHqrbN6UQ!+YAqbDMj0kQMqE9p0W5JuUOm#jgYk98=RzmhdnUmN!$DEV=
zH#VzaWd7}H033ve?CX^$$()JJwjB1zR>pKWB#0Xeb`$i#E!eH9#fD#Q=C@XeW=etU
z8vn6QU4fZH&u7YYX#C-;=RUOG1MWx7*6!@{<}7scPLhUHMttR~nqtx1)LrC)ST?6X
zrN1Fx3^_BZwIVGTC7(1vIoHKS6vTGu@(`V@kqKsvU12p0Z}|xMsVY5c17DTxvwW{^
zXh<g?&)7Ae*(-tn!Q9eSgCQisV2G4oh@dRe#%kEeT#x!|$M<u9UvMlQKhrumlO)SQ
z5K>V^8p9552nfbN-AYS-g1148l*)1?D!+$ozNpQNHw^mF%sW@nVZeyAN};++{HlgA
z&l7YbM(%;IXL%bTnNe@sl3`m!*fFPgL}}i8U8xE$BV(w85}S?T87MqQxvIyUKKT7=
zA_ZfkY85QMBebfF6tWz(%{Au=-%{qql+hWoA~PR%vL#J{Oww0otf?RvQoIEyBO?v}
z!X?p<7JYx7hbJEwh=>yrfTmVJC`R?~ajfWnq5*VHw_U#7ZEJMB>BEe-Yy0;Y)K^_K
zD|G7exInE1^uN<YJ9mF;YoN`i*cXQ*=;6A1a~pdXm@q)@<{<?SsqG~{|KynkRClt~
zUN({EKU6$@H*e32k_M)6CyIwZ7p{a9$_lIY9)b1JjKMy0=8=gWP;>fIKi=%n%A{g?
z$EJ!z6?VWpwPt?7KemB0sKKIGcW>)e=>CM7*4Fdh_C>hh*eR{({Kpkdh9pYy^?-u{
z?TS6Caa<JjX4n0|g?vftCMO@h5IQGSwYOCx`?O0{7N=<M8I3fdkoTsI(0fi_>qExf
z879(SB=9ahvn6a1(KywG%#16>Xu0LgaxkVv6c)sBDYvcZk+ffjhmx4mD(A3wW39k$
z$+|x2+GKh+mL=_$*Se3ESc!$>D2T*Z*q4G-CbUF{JFbhJx;5FFVGohOms%E^xN}Ib
zZtFJyOF*>08v`(Sy4_O{UcW}H?4=4Exb?d#nN;wD2jn#%Q=VIJK3tPLVzUk-dTCvD
z^B!Gan<ZO|x?1@2gpOeW;}d!JZXCYTgY3%=EOM51Hz+c+CdkLXBzPLUg}vLOEWWTo
zbH%EKL8xMuO5I*!2dw&|F_8kuPjCL=qK^{dALe-92~zj$`>1N86L1kWHHaU|rlDha
z^a?r&FYe68Ozv2fN)vwRn**mL^c`2%aaH-PbrSS<tJqq`;mMpppBMj5+DJ#4Cfi$v
zEkX|sK(-}qKIvxD9vtgvhepy^{gm4~2?na3$)-VR=Rl_h!?c0-n)IIY_eh}y4*^%H
zWM2>Ci)Myxn+83()r0i_8}16u!kO>>VJl)?!aV}g`S!GnT|A}8iC0@6L{{t_$OORb
ze`MgCjvgX1>RBFxz)884!4-dFb&{=-{#^uPRCmp&{?&*;v~sR&YeHXb6c>XP9}|2M
zpmc$y81cyP?BsS&Wtb^QP-U>OBsfD;Wd=eZN-!lI?hua!-Iz+{Mj~A2&yIkYamzI(
z!}y&>tpx7wq$$9zObI9HU`v2Y9d7Yfp^hRQZ2}7@x*D6iPiGly3BpptxHZSW+-IjM
z-=}L=u9;>kE|K&CgRDpna@3c*zp953$uane02JDsjtD-RS<b*rsOMBrzxH^f?jIqx
zR{z7SInMJ`MmW}Nn}^9%>E|dFr>R@?)>GjfC{o1X@BEBKx2~%hQ!qV$_!bl~y&Om~
z1`R$_`QdVA38{?YZhkl|qf?lj@;vJ3#+wxr)&Z7*lDGjB-cWiIwU<-F!wA)8*1^jG
z-DII~N%$b8+`v88sdm{cJt|wflvneOagV<`nVRs2WB*BZVD@OtNX!kL!F70M&igO<
z%=Qh30)=WKIR8iKm7)HN217!0fM>H8F<W>ej~30|$t_8k<h?r4j`m2_aH<^X^cSSY
zFxNaGp=ao&nW`<RKea&A2LO9L3pmNiGV6qr)M*hJq~6IWfe(>9H!rcUexFbJB*J!K
zvCMaR1a1q3$pm<EA(?ym>G6E3@>c!{USU^m3(8Cv`pghLW*r*GW`;VH(f|o)ul8g9
zK9f`^oR|{2+jUlm&dQ5ZlehtgXu2>~Rb@wj9)@69<ExcnT+qbVQ#S<K<l@TssM)Iy
zd6hXYxB)N*%E`&?#4>~a{F1avmA=uM-xI^Hg2{=L6V#s`0f5eyQ~Lt0))2I|2p^uK
zW%b8$u_Ya}#5hPLf1qkk>+>`kFW@@e8MWZH`9d+~AgmmMlCMQMDxJgd=w^yLD+M7e
z-;=lR^sd?^Pq)Y1Gik)<pCVUJ{pOQsa)uKa!RNxLDL4g>73-2<b7y>E@Lvp^qObiZ
zMzRL7Z}19o@7b#nw3t4{XygGF3aE>zc4cqiepBC<5D{4#n2>@^yI>7jj{p8Sb32Z_
zo!Hem*5(#_7)$6ut-vK2<`Gb#R18FkLMqQ9t<qCxw}=1Bo|ApAY&I_Y{+s!d#Cap7
z-B1(>5@mCSVtGkL*=WA0Aac{*oTt*=W^{%y6LBWcLG<WkQh!*POeIHKCA_<x<YASb
zm;m?YhB3DH8*@F??<MY=qX_@_UDYTc2Xyz%w-9cR)AMyb%j80XzHHw)rL}u3NEI78
z(&>$mEo0(_DxNxpBy>zuc^Tg~Erw;0RX!hOOmA*x8sUqt<qY<WPEpCnd;W^dX0BUk
zyOI5CrRhgho&yHH^I_jmbCw0Q)g@}({yNCthOA@Ib%29Jfo9t`3DGNgM&y+Y$8V*E
z?SQnNzUu^x0k@K2`Qu9?j}Hkc{_g>OOz0kz#Nm{X+VT}`2a&?z{HJd*>k?mnbp@>E
zJyJRiUF{N^=Gd+KE=&>r@<0hnNjV9o`ahAUeAj|_+ugN4NKfONXJo$^jXhM3&J&}|
zrL4j2rg!L|c9$d7m-oKSvp?0CyKI=o2I&#{8mg(y%by9Y>3vr1c;3(>(B>$JT0wH`
zHhyzG^MOVt%txQQ;rn_mlb^J~hpY7>!9oLIJb~E&XV%xknr*{#f<v!NRm=LFLIB0*
z9x)RY2n*S+ZlXPicB$-d=;}lQspqaOhLBk)Y6Rhf5kJz?O$ZT7?L?0+`QUc_>UW1N
zrQ^73tFbz1Cn9y*%3l8cGR;DDcp*;s1N>opmXLm}xk%bmPqqLJoZ+CzOyG4prHJ>R
z8BuAr#(_oi9YgqKz|u`!fodIqG1cey(eMr#AKK1wWQ9Gx^)t!!(3T-v4*A<!DjGBi
zmI83k;Zi}JIcw@rY%i%k=pDVw1<=<mq8Ic=u%qTK(+jgdLSvlKgnZx@Xl2Kjk`K45
zS5Bma=0E3bv_rcw(pt9;)~3(<N5t`rPw0ZtXs?`c1nRn(pKN|C%QK>N2eO;Y<)eoy
zi2m@Wo)pb<*VAEg&2`_*KuMB}__4fpjt9xToG$-V^W4eJZ(K*0xq}+^oYUi_mz$rL
z#F*3a-q+t#oXv=#Hag@!3_{=+q{42Y;@LOBrhH=QTj|3*e5>ILVJL7!O3p-3_H_HR
z{7p0w3M1Hu7gS8pHdNK+Er{xxYv2q2&`&_3nBHPKrjH4x35cUNmaCT<qq#&E{}VcD
zQ-=b*@488)W}?BeF7@tdFYrLusv4JGX4CroctdFH!xV0CQ|RH{sf1XjC&V}pyj0qP
z&<60OpvXeMEl4~#_du5PaC4;2JKLTp%L=w&Mv&Ngg&DP-p6T_VMLRCU`jTXSDcH=X
z@}$H)NbYy9oWyb4Bajd2I7%0e%ViYkjz`^StWIYuR0Fz<EWV3336^fL4286c3!QGC
z)(4^Wmv<iAX~cf_>RtWH%L24a2|QwHHYg)+p|z<Yjq*Pv7UXXp7|DWS(->~0!KY+%
zM<++v@wqO}6X!dF&!=@HmwPHnt80!%HEV>&Ln!CFz|Y1h;v{seR)ueT-{NfK96Nm*
z>*+0lCZB*54lY8+=K>svX{|L162mD%DCqreG0vX%H%?vBKoXpwbe)TT($HIG29qrk
z)VvG5Fq#`z`3Wc+6VR{bMc3+CH~-F9t$>DX4v1l0QQEfs^E6Z}t^eNHTY8uS$DI=5
zg90lP&iucB=&5{N6a<_G7F!aBz(KBk2rwdQivQ1w>m5Kza7Kb^%XPDTC=sG1`F>Rf
z@S<@DT|}f2zmnd_`D+Cjy#u^)4Zy)2SiQNf7WkzE&Gm~0Y@!<wri}oI=0plOuZK7n
z4&!kuUg`!}Dn&C$9i~F}#(t{dhv-c(XV}uXIM86R@||V@2m%+JlW_Ld>H4wvH5+>-
z+RPT$<f=mH^V~r}t5?-`>;XbsRlJ`Wu@!5NUP*rb)+~cl1TkAWgMl1`Jm?P6v(a5O
zZ>y`8#vBr20Z}P~J7NtiuG)7_BSmFu8=%so4JT{9<qkdyK5lcX*#WsICFfJrweaBL
z&>1}&^--kt@xMISe1dSh4cSpPN0tMNUbEoM12}6>#Sb&*_MwIl{0O9+7r*LMNc|)U
zHL6Ot?n4ivHu}{6pkKypn?1Bjv0P6(eS)(?FeBxV0T>Y|PjR4N&Sxb}tb?afO_dTR
zkGveNncR8XnN24UlG6u5xs=W+VToBU;#PoPrs*7?5&*Q^fes^xK=(k#t~N-=@4Ob3
zb@o!$IC(^WUY((*Z%v(rR_g*{eTGbxmM>oCn<lNt%fNH#{nNm@W1g}=Has6yzp3%`
zGzj!S$1MzK2pg}T<sj2k*v#Dz0!KCv)@n+R8U0$c0Y_G5(Wes~l&^0mIahnRNgy24
zm=vj(c$ziY9iHaY<O;Pg%_I#@Q58F#`gmxd#%E743f483mJzR5b=Yxd8;9Byb&N_+
zVM1(w*Rv{XC3L3_WPSaWdKiBQSzPl_O^#iq!5nVb-)jh77npuQVtnxQGV9=jvcII3
zZr3IbpSW#eM-O^gz!tXddVpreXYoySi}6u~@?njX-87G@l*Us3c7ykXIx2DqK$Jyu
z6YQ)uzIGQm`e5qFI<AW+c`V-mLetmep-kWlc}&37c9HoTH_N<1%oy{aEqD(Fjq-U0
z2B#LlmpS*=J$63}LB_|AEE7FXorGt|>?f4P(Z(^J*k1rLoyv_bv=7IMML3+;ZHahe
zOGLm39B001?<QhKbWF@AS8IY;vM&lMe{rz2zU`Au19dQhZKAxo(Zda2e2Z@dpi%;4
z@7Yp;eJny|&B~G=3CpFfTl>P(<<WkXXOhpe!-0c>{NwCTyv_@o7Oq1>jsl^M3MO=A
zSYUUs>7+6$Cs85r0(LS(QC233{$a78(L7d@*37VBM!Z5Y2c0aXj2&|kStUhD0b{@B
zp8R`yx+vi65O|~8$wPRmiA^buCZJ?m%`^j)4-27|oX#@u%l)UFr7-w|E@B%&6=(Qc
z0T&w7s^kg}NZF~|3z_Z`ua^rUGc0ce-urqw=p<z~wGMGVc3Rv;(DN_V?)TUj@Kd%e
zL~}~9BFgUO@eB+iSE+4n$)B3s`$%>oEY)tAcP|L(0#bk%?{Yt@8(Bk_zxju)_40Oh
zUpc8e6~P7~Is>7Pr})`E#_<7UvGWRap5dns&8(AbS3~Q+68^@5;=9mFO-u|>`7Kcf
zja3_J%f4IN7Yq@D$9uslIHrKCj%Sh43=6NLeo9oMhXg@>1IVP{4i#+ju;37SZmf^g
z>Z+FbhjJW-=OqoYDXlT9Gm3K*iBRbsKch!mX+aM~c<?5aL1<kzAyV*D4>Dd3QsT`B
zA_GH{E4oyvuq~j<WT9=t<02dBZ;BChOftvuD-uTk3bhzheHPSLU(Cnijm)XJ(m5L>
z9M*ZkGW8L}is@jqD94Fw(^yX1zN2{a4MH)SsYbY25=5tS{x$dbRg2Jct{%Wzdq*uM
z%IrYtc1K4$x6z-{qZ=)1RjE$+nibXE-m94~3aJea?X;*+-w0q*D2m=e+x3K>wpXN2
zwo8OQW(2pGU05|s;D@?pCLUWI_HVLd_Mwt;{=Hm3D|+tTpW7^t_mw<k>NmS0NKo!D
zEsQ>DrJ-TXy@5l0#s15rM$}9$jz;ko<QB01L3bfR2Xv85pM(D)haBq+q8cXhI)h2d
z<Jp*&%eu5&YSHIv6o9F&01tnN-&gkTBe5v4(Q?V4n?Py`(&9p;dy}Wzl^R%0@jr>y
za==Ac+*z)xi=GjA^DRF4@h%P2%@%mJBj-bnq2Snk!ZbU2M9Q6pke5CM^E7}Y+Q5NB
z_RW>FoqAmLv}Dpi6Q^vixMf6}EA{1gsaXnSl69m9?SEeL$5q${XP`us4l<xAlrqe~
zFTzL7$8^cHD^+xsUqk)ao*s3t2AN1NF;7rzx}J;45JE{w_i`fY^Foa+^w{u)r4Z~+
zs@1{T=yRdP&_~ifsmB(GZmNvIV$2^YB~d~lorHWyyhJm^Bm!+T;mWgwuCMk>L4NCP
zX>{#exmP=<w>VW)cFYf4jxkxf%9@Kyd8jdKY?m!G?VhRRi&40GsIm5)e8E$jB^2_3
zu*QS<-!_Ef2wTgIw&_WD$oZqb<^lP9pj>K&O=!Npm|T~*CB8oe25~hP(b|?WWu145
zF_7x$x7R6eic8bu67#MP06O;8zHvA+{u}ybHp$E*9zy~~vMfJz>DBw5x{q-FHP#QC
zvLQecSzfeq!H>n@C+;~XD5}38%OenZp#f{v*fx1#lR8D1PoIDla7@F(@MI87*29=@
z)!G}&cJf+`ikH3?8Ov3xiE20n^bd!?;TI|zai>qUwi8-mO%+ySNGgbF6C_D3^j?TY
zmTpKQs5efJM&k<oNq#3b2GeXnlv}XMIR77(@JgIxui=1FgMo<B5n4%sQ@FNbH-(r_
zTYrBWh9G)y6`{94*qA>{FH&;`wcctmLViI5^zruG@Z#E&E+rpt+Nh2a(_rWE(q-O6
z()w5~iFXH}$l~t!|L998dyc(`F3Lm;$T7qa@B%j*mr8gHHNoN3PAJQO$ES-23Q<hW
z5ty>`&gs3DRojUUp$2RbWno%QsLv&c0&+wo)jF7bKMM9PYED_lQhvB#(Cm)bF%C~k
zLIj?NAMvtwQk#A(+*}r|WC$3I?my?C0fg*%XkaF^c)sI1&rg3sfyu7TMGYRN7t;8t
zX=Etusk_n;Ddya|UU+BfaAg-cn@E2e_T;F7!v)HTBaJQ{px$&)O05fjU%X_iKnjo_
z$`mzRBoOnUM9`{+C3t}I-)0}3qDq24`07{UZ3SQt*mnDULxQEHV?OA)Jl*^h&-OLj
z-hje(XF)gfIO5qYKl~Z}lwDhXkrX^nWt9R${%^UqiOq68+?btW|J0S)@Dp9`4=OSP
zuiRK@Dd$0}581(nIh(O_3n3rqDYc5eGAk+JVQ3WYce<Rk7F`Ov5a0RCYKXI4>O5L}
zIbz2VAdb^9VGngHWPL`mpTAiJ5R*VUcXF5_Y8w$A4sg5;GafrA=dq+2f=*Bu5R&|A
zZhq4dW+96ADNKHPC)}><R-*sJtuRk&$#;O9w$9fxP36IA3rgv?#goHHxv}iZa?=*V
zY_fg|uy;E#E~w)YZOXGU2Y;3XmL>O+@EPa%w8#Lt0iIK4*id!jhl%?;Ki#Eapi^p7
z2M#t&kNcDGQLsCHA{!C<<uayhFcWnbrig2*Dk!M$I^Th72j1^`U6Yr@d9gR?aSi9E
z<s4}M!HAYcSk#ms84|IulREIDIU=PQIwf!aG*U<W;v`u(E^34h@1Xvy0<zL+sf7XC
zkX|t73L$Ct=Z>q*4PA6SyeY?Svzfq~y8U1}X1BC3mYl&w3+{#^%Eu12tCtD<E*esk
zFTdP-fQhATlxce=4W?)@o1D`JYnrotqBFve#@<E&>*n!q5af!z-T0i{y;}hz0gl?&
z4ls<XfDQ3%hwOB!Wv<vvIQxvQDQyThpq8bwi4te6&!Ve6eQmR7^0x7_L9gXevM!KE
zMFDl$ooZ(3Yj?OT`P?EtdzCaD_s8xX7m;H`D;$?A&>C#f1bj8rXaws+44zyQT+E0h
zU2qcgsZxGNACBcB^;j!|<6rY1{=zWsEsL6h&shnZji5k)eVxI_MAeC>##9s+0Dp4$
zmw(yBKWtcnrCUg7HpJa==byv`*^niD@UeOUL(dmfzy(>_t6AkM8jJF~ic8t-hEFSK
z-a~eGPeHU1X>_j?8Bk<LiX<@cw9X59OGk|w;!Td3uG+EqGq2dun6-n{xMH-?;Bn03
zJ5|ls@GK22=nL-!E<y#ON2^wlmiW}vUN78F0Ng|6(fWuEV!?(kfEy5(c@E>KH2irG
zs#vrI3V;wDGL4(q8U+6W`laN0uxuYX+7{~?|LnG|tbj3zpZ|zEW*)#PUDdJ73#Yzp
z{u1@qks5_RGM7|M7pf)UN+HYmFs#Ik-@@?0jZeKmQc1I?+7)IZHTC4JVh+RYtV%-h
zvZ|#{?}{^(_7%177i)EBjEAI-bv(Wl*H-;_G}o3xe1D8yH4^Q?d<h!od}A~YyHdlX
z)t7`;SEJM38E#^OgMtEP7T>cyDv5%K&s3elFbEAi*^6~UlG%oepHN!%fp_KKjn_^c
zms<zZKuSbJ&~<YSV+c{<6rfSvmMNnEVNYMpKxt;Lb=Zc7+z{o@g;i0M7m014D0zb-
zM@t{uz%%D64DSs$B7!fUvE1zeZ9_{s317C;%^Ot?2i-83WO00l(865&0#2^p{**j*
zc36A*3DU%|k^tDmu~co6;K?cKXBAz{n=3yH>d&kmN~(9X;!T<_jT<UdY@gD1CYul_
z#l9tVg?TzW10<+_eBuEI(;cqlA*b*aiub_AepoR@)8!S@S7*(R<}iXTL@*Q$1_Q8r
zz==~dB{#yMbAwi*8;#CGWrKcHUy_bcC2Z1Bq&cn^;x7KxS#C>LT#*ApWWA~foGW*~
zbiI0xF3>wjKR{I{8f8}^<yw?VgfsnN9*(?x*ghh2euue@8<-?5BY6h>k0_w)(c$s9
zhS7M)i6fVQ%yy81Xp=Qz-cJRsEJ9|>f=1aEFNHH}SPoZ|iw?ua8f`UPOEolnJ8Rry
zhJe7s)LS!R*?uGTiuMM9z5e@i2)^iAC{7TLKCet~l0DY4Cat4>NEAj>65_RRg}1`P
zkrdUHH?9?d6lCcpH+y3Ysogq_3LfeDZ4=bdwikd0`Dg&j6oeaDPpuTrYAceJZ!j9m
zB-KvWwgjL3bZ^HL5Rw1bjYVQIrEL2&75rI#U*47P)!!^9G+;sew7<ic!Mch=HCG$N
zz2=z?8KcF$9Cp>*eJa!Nwn=G+ppPH<u|3ynvpsQiU{aM1hhoq*S|@^DK2R>QK_G%r
z6O+$tqN<aM8?b(|)p{v5AOwjYUzE|K2YDO8gb{lKX@Oz!;Xeq=7|mmcCcM^|r;h<y
zF$$?GLX>rQ98FLgnxZc<wpLe=8OliZP+HW+^)rua0D7=6e<rC|3{iVt;CZIUnmvP2
z5CmxUG&{Dc!Qy(nkYW+a$OSRYV%;1wneVRbnJ*xAt=01@8vs9~EdPVNv16<ZTyo|L
zCzL>p#wM6f0cus<kT=oyM+DSWaY_#US4h&8tJj7bYVG+*qQ<e@-l37K^xmH(R{8gb
z5R5PDk7^l#-(-f*Y}8PMH+mv{XAQNz7Af_y|35Dt8DX$!WnM1KMt?UBoM{9IxIRaT
z5PEGX9{$IWDH>?d_ED})OI`;0O;OrnRb5{|;NmX-?cihy3dB`RZA_(+Q7;JHjk#G;
z>qGB$)Hwtun>+|@W)Rb;$JAJ}T0Yv(VQ|Pa3TfxEqu;+W;Nf?uHpcI1U+P43>k}>x
zv3Dq0)1@Qak0$TFGrVC~03HF2kw5XepFr!V#`j`jtk28epSkIXm;wudtAoH~>*xI$
zLlW}eTPP~Sm`~v#ZdiZ-e%1psAH46V$h|<RA0N&gkxcdLeRgS&7O%hP_Y(U!f}>%%
z#nuek*bxHSVbxM7(bod!TfTWFYcjfjaGbt$!qOq<)wi7(1NIgUicy3DYQ7|hYN4}J
zk>9SrnIwyBWLRt^THFmIYBi0}xZqFdb8UxZ20sO6J)w3z`S`B%bBR&Vl;Lkab*XWZ
z<StSy6y9ydU|+zhrc&w}K9o98A;$#V#X6S~Xh>dHD3Vh96o1__;K6#)>^<RrQAt>R
zS!|!8;gFYCbp#;<zT^8BfPr9RFuK=L8FG49<k$&$gwSD=d!|dU>qXWUcMp@{C8gLJ
zvT>8&t3Wot&c}8_$UNXX6o$q9?RxRVC7eRM*`z>D_6-~rRQi{j0?Zl>U$lIR2y7^k
z+pb|=0!KpM`}E-e9h91MBBwXc7!6o;V--**6>TpF994Dx%VW19_J!FCnhz*t<%lTk
z2JFktzSvKtamJkBb1??urBW57COk$x@{Q*D&aso4g>S2JWxBk<!MbT;k&rlq7LU?3
z6@y~C)ATJP`?Exd{I;M)aoczViy+lOpDmBNT#+?63hOgJ&ROqPWAG!FxEJ;4d9Hru
z<!+d3PB-BJw4ry`E2)NNA|Zd@OuGOJYufbZU%dc`+c#*y;E`ls2|$e~MYD{Lc2;$E
z_JEO}syU5^+>!=?P{KT$@MT%@0RE@ZI5;cSt8OmIQMyQMD9SjCxf3{Gn%#Zt!wUaw
zmX5pMae{$Jz!MF0aau6&NNd^!9z|=63%hnXwJ{<Cffp^-hsaOfX0!BO>!z-3jNNm9
zv5!<Dp|>49CWN^d>Jq2yIQ|-r@m)q{nkHpUi?&A7QVyaz01!ZE5kw>Wnue02Aqx^3
zbnm*RXhhp2tiWRVm)KcL!B&ybOOA_nbJsB{JV+^2rxLK>C$oQhvlv=m_o1oRu`{mw
zmzMrhZ6QG+=9<4_86ch&wog9(5hIXX)hrJCg}b?xmDZ3A<8J^Me(g3-C8AZW{R|6E
zW2*JG`nL9v^ED%vuhG%Kj|-sB)HMe$+z`o*Pd#{V@In>rPtaw`wxJYARk7whI?|^g
z1(;ij4~~nayu^bhh_Nvn!UutxM0;Y1q#T}m%{TZ~T&IuQcE+sZPC~d8LhR?t9vx25
zDIaxK3k^NHTMs4}^rGW>uL$=91oq%g^R#*nFrHGvZ7>uv4$_uy{Gm=){wQO0YJH0{
zReOvu2>j+wHKF^}qD#gX1bj=oLfe+p(4>QKU<|xQv>P-v21POw5}CRUiDP%k;2(XX
zv-6%$k>iv~4CVdkm5*u+G?p}e_R<3Xi_G#oAwlT{6MGc73(=SHm3xF!Xw&(G;0hB#
zr5VeST~85D?b|_Mo?FH!Gu~aw+m#S%C}DG#`^)vc6kC8df*9dHVZGH+4ph18YO1f3
zxky2mJQL~tQ#@Xnoe7Xbxo*%>g8ovF(ZO%_Ghm+}&Mg6nAoO8=+8i+l>#YNw{~7Yd
z>)XshXP-5CC7jp!!HEPOm@-I5wk=t0%$jiR2zZgwn>JeF3FgUErFZ6=sf6!+4j|d9
zW^E*H-#F|yQxy6dacmLDiZQQO&b~-G0Mq^$mEY*#`-p^S`%BW(8Jp!cK*Z*Vau;Ac
zr=_{k=kag}7J6AqEzS6ETWRvMAN1SaPuYRKVvsoR?(#C1g%FMUqPzY{Ti<IbCN{H7
zzt1Whb@P^?Qcj~3=iSX&WDXkFGsgoL$Q|?V3<&}G>9r<?FJGB``%GqVl%6?VdeG~{
ztL#G?K4eqUbRnl$Ns~s;oH0`T0Wz`Z+F{XQPuDtKQTkZ>0piyIpiErVF{ZQ6g6N3;
zK_<+p3c78|BaPsI+KmCle=)@<9~X;P&F$vv-*Pdn4bi>14RL@nG=$iedqqpTrLv+%
zDF04Qf(XFfL)fWvF}4*c!0dF=^NTv?2%lrn?Z^Y4j1QpA(zUXTz2^FnAr}G=rkt{e
z&7!`VQ!67`c%!unp4%#A3Nj=D7h-AgK8h{mV-Y1jJ(K&v=$CMnT&OfA7B%sVZbz7>
z%(gC6^!d~aF9cxJ*XhYKtk;ZK2w-if#toL(@Po3M9s5FF0aeFeRL=l?qzI{55ZKA^
z0$)UI3nrXINU+S(!f0B=d@TMU9-8enp;RlB53UI<u%;s**oO{}Z*K1{QBI*uqWSX2
zk^8BmQWLNso_Y8w7^|-ym{hg=(+`UKd|ToUH;#cZ%*cOhplbMGfjomsoQp-)3?^Lu
zgSO7vZGFcA)#$e?DXswWc#VaLW^OZJ)b<8WVM8iSOB`%WTnSjWOiO6<2CN;GV5z~5
z%LD0<ncO`*OtK9!zmbf01TrPgd(ZE0IgE$9+e?3d+%o|9U7GH+-Qh0uYAiHaU3TOu
zEaMT__W-L7%fyM>^3j?8ja_8Ky9aYH#OSK-kNouFPqfWxdm)en9Q5C%Zq<nh7U=g8
z;h*HE<&{wH_!D$L^NNe@(Rbmg24S35Wecr)n&9CwkXirP4(L}QJt8{TQ(#NE2mvKT
z7}+_G5hd4e6P*7kzZXhHow%mIawBPd!uR^BroGU#U9W|8>=+eVnwA^V<7Ik3WcttJ
znH=fm%b?%eRjh6}7-U_zOSl!fFm~}QpM0rtFiap^%it*orO+~>SZXch{6{ky7g+TP
z{WV2h%5EBasML$-6}dgO><CzM&nD*ra_2g^;154FF*^hjbG+e=u-cYJ?qSm#J4&%L
zFQ$Q>W-;^Xz}-h&!FAz=$>;YWdRIXiO?<VZgy!<aKrY8X-Zr*FL|g84{scags0K4h
zTOZIxAp6dEG4HN8WKvz7fAlFnmHWR=EY&~t^JCuW5i;=4<k(e6z3PXMZ{-h)lrBQ#
zG7qfG`=<=aj@1I6g%UoKCqBxYAN<!)d~+Y~5JAaau@|TUo{I>6gtYQI(_%Wstrk={
zKg^R+C;!KfCeGb60c0uX<@k0><)BD&|9A%wORx_`QrM4SJhr9&kG?3`O_g9JPdt(e
z*Fsg%(&`Dx=yf?9p;t5FrTj`l>Uf5qYe^%|e1C9TH%g$S`c26AT<tD<ZCk~Z3*;Xa
znG`VFfO&uxf`oZXUD$YITkv7dwrdth^EMZVOFf8Sl&Q5>u?+YCX|dhR#b6fu0AWn)
z3mjhfHLI~Z)@JhYNN<d(oSV2lK`X8<5i`Sj>?edV^<SMB9b;4_m_AD9=`b$Rek$y8
z?*;9KWUEipDEAj=q~U&k`-z0`EMWd6+i#fATDBo0&<eK*#%RpAT&s;~IiB5|e<95e
z&5>)Vxg{<7xllk$S;g#>x|yc^TBliT8m&FUXL>&*L%j&G2aINEZCvyHbaZ4wE#;VD
zT(14<*QrIN7IKH5Yl$L_wmDWkn(s~YO;Ns4YZF6C8pOXQhmvI){Xo5CsGJDu^yKJ-
z1##{g0|sHU$5a`y!BT&Mg19X9w;|DN`A)8-GM~8_7WBBj9WcfnOXXp+*5g%BZqTCH
z<VY1Pr`Ubid#nL_^&{jX`O-0x68stAhEQf`-DB#^kglU;+ao^6?rP7v`0(18apicW
zG$*#9Ymv5vwnwB4CP3&7HC`QscsB&siZarh9dB;D6yGaDPXRN?#dIpAgKaCM;t7NQ
zr1Y-7CKl|Y(AZspU3BUhM5qIo*&VusA<DUB7vyU$`CU98X#E{;ifpEZ!}`X4ConT^
zAIv|H*?!7oZ0HZ*y1>}RA-Xt($$BM!#LaSVqDP<UrFXMQQZ7CqOMqJcC|QS$r%tg{
zpPSB=%+bJn$tbtZpi45RI2-y4oL*!9V)Yk_d6Rvnc~}KYBz0qFp!}1@1(zlvSN@XD
zEbN(PRq;HkRQniX$6oVvPsbG%wRDfKO_rBREdZsy`SMDd1gN!VRR?l;X(9Ge|IHdD
z$ET|BOR^hmf-k!U;<^JD_}p9dic0}<Yxyj$Tt+(u611c4ECeX{!_|JygW9a_Pzr*K
zo;Inf-b*3i3J<@wOVgWH)SZIzSFx#1@GC|)J%Bu^hiE51sVq`b2bV+oBhdP)MEOyF
zbYQ`lm38ty)-@o4OkfqnO!Gc8&H{CU+QV=7ohvG2O?KnO6fC51w&F)1<A&KW<r(m1
z#Se8(B`b44+H;driopuUmjCrz1cc-XZAEw9<#I?*1F;81K}bqO`p104%NqNk5ORor
zS&~0?{&}DFb<Y)!XK#FF$YbR?eKag0mT8KI%zAFvCyYxhA{2z*?X%R{y;HoQi`vTM
zCQNjcG-<WVIzo8(SSM}ue0TjOu<uK88DP(w*<@Ww<}4qOHT70e6XDLS5oqJyez#8i
zjp**o2w58&;Iy96%$Vo!4HH#)y&aud!wA70Q=0G%2^dNMuw^t25cbJ{5-LKf5Z<+o
z%C<k;)%dWB17+o|(_e%+hVd+{$Q4zDl*F=uCI>B936GUgy<jtuugOlX0QBwOcS>GO
zu_No`#4C>M5U%!l9&XOECYpMGJP%X%KnpQd_%1p|@C2q|qnST%*IWGosjC_dtqX7b
zyc)3{Ow&8y*b1gTwqC-Wvc=zVh{tH&L)on?SNZ6`Rlk_e|J}<;WgqB`YQNh|tZcMz
z*jj6som=Q-T%3bXA!JDNPruPus&SfGx)P^U>X8pPQ6G&#J8RuV{p_$X_0-+ucMNw=
znS&Sy2@gnQb7BjtIQ&Xrn-!0z?0G!@(>6%DSW7zDz<`Lzt09efKjbbw*j)mOH*cJP
zO!`w;+M~l#&Avj5V|skkhjR}rL~?)WKGElwv6zv2zTy*xDQ3EB6zQ8u^FR9f)~}1E
zVKHHC!(sB|<8Q8U{%V@q$REFn@MtHeCv{9RE7x}|yPG3<VmzH&-(cj6rn9@!3x={E
zUxYM1pI6A~=f3-5NiIXArbx-nkk{BKvweXho7$d%Lf7I{@PZ#%0RwMs(vlFm{=i^*
zTvpw<@F9;uPQenW#mT~q7BDl+V+AGLIcPmBxO(N!C^^}3zk$GYe=rol6fYQUC*=J3
z?UT9R{I)ieqqlbe6HEEu=ICusg0rsL!>X_fGuH2t_t#P7w61+avumhiHTMDcV+P-d
zfP&Dy!2Wz?skt@yZR@1Tv9mH5w;o8K+@Bv8*HoL~elTio>qL8OJVW2~bq5A7?@XBA
zd{}9K00k<vSDdpv=T{)2gUxrgYNB}UWHqW0plSRc^Q8sz>Jfw|CyK^{mggd=p*^qe
zHSIfv3@w5J3DEF3j@M<YLfVHzP5S2^My_im2noFk6fTytZr}oSOwu=Ljl0YFpp|Zn
zmoKoOmhoP>?jF~t`Uz0209k0tcx;UY)ooXS6X=$OnjHp7!!bi})Z|uTv>Dz4oqx;v
zIY3*__{0g-+%*2zyu7Xy<-I*0DUW(p%7pB*=ir#ew=S%q0}LH_<<%D%@-0UN8dPuP
zEqzVYHAzljQDFnpv~In+T$<UfKN{5TUeS56ZB!EU_1g9o{HoH*i_DfnoJZR44Vvvj
zoicA7EW19$n%4BAHg%cQxU7O@gNK`jq9>$AK7_yyE8{?0eD2GJ8mtcw9iJ~=4pUmm
z(xEjr#I}T_u3ZJ;9iW*am^vN5A@4k?qk9N9r=FN^O%?uWfS(PbMYor&rcc2$g0=iW
z;U7DbbSmzArJjStz^momouHi|aR)i%^|(I89(m%Cf1Z&BnD4u#&V3R)5hEhv-odqA
zrty1CY*5T1;(KQg+{+<5vC>>&lf6~81o*sk!zH9^n)w=Hf+j({XnOqZ)l6ZKxIW$R
zNfnk^?s81MN40WTB-f6K%SIc)Y^N*cM}uDR8#rpVn(jXyq0wLA^MXBgfk18rb1Z2?
zT3Gr|{+!WcIZ|c&s{O2j)$uhPu95J~9AkH}T3<M~U9liE);8H4gquzc2ls~u@{4^$
z&Wtzf$vf9yL${(aDd<dg9#1Z`fDg@EG7*&nR9nus<V^uoH>VOt-ze=L1N6?)gvN84
z5GJ&(FDw@p>_iE?CeMzy3w1Ky7*A&`97vBTRYhoK10<`8yDsfFqJ3c<90jJbn85sz
zvbTw8vA7PW2qw{B%dF8V_{y@sv0ZH3DD-E+auEdxPG!FNJQPuhj}TA#t-dz=?FB?Y
zk%h#BRW|dvX`X`Vd=zpz?*K-Je2fi?6bHC#p^=J|#XDk}94nm2ntRS$C<GcS6U1Rd
zgG8e(UbsO4e_`t;UbPv?Jz2LYVEC&(OiCjv+9)uGH!0RYLV0+9?F=}F-O$c+Wwq65
zLb(5Fb)GLg-ZbiF{DX7c`areolFKKp0^ei?qd3JUN6|JWIho2%pgtPmY)}|uD%F59
z;gup3N-omr2+TmVIP&VJmr7~_^QHMFDeJT({r|u1{#X1(sj>{a$**+Z_kh71b&q-0
zY$y@lX@rU$ISGN24_1M%_n7(|^d3~pR1K3J@|5bM4d#$!1%~2A=$&nT9GC<i%L&Ap
zoU0d1UCWgl`^4i)-4ew{=dss%HrTN-npJF(YN%+c?*)&E8YN_CFa!6<{uL;EyQA($
zO{7#QZW8N5(0GD+5+ugJR|;Q7WDY_m&X2^3=0Tyuw=$;-m1sXw-bA52_Ehj{f6Dt~
zXQ4Urt2bKglqf!YlZAbpT~Fzrl$1k78eLnff*`^Fw2?Nz2s7`|L1SzOGMcW~%E{T`
zv2Aa4QyePtT(TLM9_5EEHA9Ys^{~w*LkJe~w0>$qG)GH8Odt0E5eKf^Az46Ox!`I7
zEd%v>)Ml5$EhE5_QyqN>czymHHOY%nkH`kzU8A6lr9HpLxEyhNXPD-5s-oSUJs;iD
ze42FftWQ8#1Sq0#BajDx%Xg>^EE6F6d9(0yHp6Z~rT;4WO`!v1b79LRX|zr?U*@(K
zxxZY`P+f65-1`7CEXGaOZ#D0SGu$4(t+k{u2;QbA#~&|+CtLVUXXBhjcXb6|X=#fc
zwWI(B0~vN`T~bK?2<r;jmA(KA<U7j4RNoxqr`Lf{sDNOO1(VgI6^~3^ZhmULp=|hX
z1j?Y^7N7B7>jk|dis9Kl^FJMyC}97XE~1^3CsiN7hxB)Cw?Ai5Ze#-HTYo`P%`T^8
zMTHq{JD{O|DNxagbc?}_No{8Cm}}zJX4Du4*p~9!Sf9@+?2HwxNgQ}})|>wWt7g-B
z&~<}TrbW86b261b&Y}n)2Yl7;UJsK<)rsP|uV|xCaWA`;#3DWPmCi8KasiwdfWH~v
zz{!F5?yhTv2s2G>NIq1grB|_QP5hnTZXKk|?Cg?Vo^wDjvlqN}53QA+RHWZraz0Uf
zInxdTscUINz^h#YKwmcp?mHwZ##N&3)}1BWSC2b@+p@!zaY5PydH_Z@tcGhZFfWL;
zhlJ6j+tZh;BHXsULccjgAktk~6-Ahmna*NV=FkBu`2Mir1*Lkn!z8Z@yANe~bm*?P
zo6!<~VumOqdRp*oNmm?vIHhTcHq~6L&obz62-xKB%sD~9PR@9Y?j3Xm+Y(22LwjR<
zjJR%;cib}8%{<d$<Hi`1#<v+6^n5at892!t7TvOM%U$yp%3pTKiGq&@FmB7me(2Kp
zZ6<&K037H6s0)Ct2!D_R(U<*Qp+_xoU))UtU@iXLHwQC;KhElT|1A|1ej;9L`1HDo
zm1_MD1i)09I_lB3XM#!aJ$F%@)ExOCW1?50h27s|#v-Z}ze$%XqR14iAM3qqQvd(x
z1m&pAl#?~b1^aX3dKegT6=o`&*QxJKSJ+Z;&OP$5<2Lix8u`d%=ZI-Z2!-t#lnUlq
z_Y$w>kyd4iPa5d?^Os4rwxq!kd`^<~;KLez);AlK^Xm$r_L(~2r23egh?MQvD@JC}
zd){>HGcX_}{YhqDwtkutw?M-=A8GRR0ZDy5Y-J8V4f5~gXq^%k>J42#RA0O@tStFt
zxj#nRDS~uEiqadknY$mufAzPv(oz_U)xp^Z2C_NkDb0FbWIQ)pzGPLnz@%{3lLiDY
zSpxhqQUq5kX|sL(F|!`LNiIqR%{NMuRmk?mKZMIK3p0$U>g7ysxMR=X6|p$~@CSFo
zqdOkkt`<)AClU+r)0{xs;6N?%vJsQ;Pkh}Lx0JkY$g4J<U*Xz7pjrEHRaOhq+XK@m
z*q=F6g^wb&{uzqIV>QJizqqO=*$yY{<hkL^J4~b8gi~Yq{L;i+!qFMj#+P&zP-%u5
zf@%7?Qg_s)*aD6zSRgVLr;I^_V;*2xuM@S1OdkyQm;)~?NgBcU6kc9Bu%;aw-R}Fj
zwu}YpoKuUda(oah|Ac80*}}()zvq%RB+7ZMgcvP6zzk^WRAnE?Z`olbaC8&x<b>Xu
zhuLXC)=J@j38_`NK41|FZH@4LYoy^6fNllg)M+g7>C3N!EZ1cq0D^C5fb4K_4*K1G
z7uz|pka9P;#fm0I%F+7^(A`8e<vs70vUkv^c%%4Iexl_CQHsfd@&N(s&7TFr_;SMo
z0H~_vHI078t?ZiT^&T)o-V!^HmhjJHFKq^eCt;9Y1i!$6fPt>Ru|P@(>j_YqoV6CK
z2-qzx%DJ6nt<SmFPmcLK0!HeCyZh3akr&s{NF6#jF~FgV3oYmj+A887fT%|g^^a|L
z7o6hc_*^R@69NPdE1AI2B(Jv|s6o7-Zd|W5$^y<b9o9=QWuVV>vaw+VEGn<&)r!_Y
zc&^{J*N<@wyl~Kn%VTcOur{|-q%|EvvDAU0dg8{t5c8ljU|xacc>#c%QtQf;Ldsjd
zcUESUcBDpEu59YFeR;1ncNOzC^YNOKV<`r$%wff&kRNp-sZ*U~!w~aGpckp_JbHqm
zZXe`2crO*16_@iT7U%>m;(EzxN&4c@>6|Y3RT4CMZbDovxR9DUOLbC)YbbVBE;rdl
z38gyEpU>f%A{!S1;)Hcqg*dfZ$=gnH0QSxXHtv%tiM+4NMAEjWB}Xu-Yt>pn5vz?v
z7hY$Z^M8gwLeQTajXMLN*84>)iXA}iq#P@Y&~7lko!SRs)7{I4v$6YNSzY_bcX~8f
z3DwQuWI5#})uR0kW@>_$(39@3Q!xuhNjXY}HZJ>CL;r-<<+HJI&@tdT0{#Iq6kv&4
zLCT6%YTuZ9N8QA|us`B8^!Tst;C129Svwa*aZ|M!hC2YYCiLyI*R*_lek?_Ep~(bn
z?rGx_%Jv2pt`(M`6WPw+A%1Z^jbZge=HuecS!QXrS4E6st7tA+8Le64!|!)u`YwS@
zfB54525vAQ<5wTw%IOMa%m0xn4FcY{D<LJCk|q~zi})WE%h`?YUy7>V>CxWkpz0J(
zJP*cY+ar0t;rATDp8gKICY7{$<8B$@3yM-Jj?l6+S`ofs4{!)6i6<t5l_{A%L~}D4
z@B~Yy$06>1bHNI(2D8AA^;!O`uNq+~JJV}0e#^~-a~%^3)KYMc`Yjc812lRj@<!h{
zW$Ia4<Ky}vZ3olfPYxjSCc3e&^e<L#*PT_^H?}<fXMQoG2J|f+%)$V&k*Q#8*J=55
z*@+I3>*qPmLmKOyurO|v){}m>R$f8%mw4c={rx6v2aIrN<<uXwSU)TmKe}(>rjgc!
z0$r0H4NjLBH=bq4A-S`~5#hImdewd@E%|zsH#rAmY8^2>%&bwI5`?_KZg<a%2#N^C
zCBVb4C3CR_VPEhuUL<~pHKD^7$Bw!+1!sjXI2w#(J(621H0aL(Cx{44OHZUz6<?W$
z3Fp6{3vS0T-J@&)k!P^bY7)V?*P!j151+s0_diUu_GbPGFB4JqIy|qy@tKX{pEr-P
zMteu>sGOQrFKe(?$Cz#6Z<W|&?+rzN#wS*_Y6BX`gF!Ry1e+1E=}OBO$jAe_IhUjs
zBE7pD)ElPDZA;&M_YM#cIgOjDShHcwvL+Sq-?J^4-c{A>?A*aY2@g)s;)N>3CG_@F
z?u?yZLG?7yVX!2w$TP(d>PU1+p=!Xosd`heu()Noh)Q%OA2Tpn%pSa_9MW~Muo{mb
zyXFRFpz7gXR*NC0x*x`4yaOMkv-Z8u`AO5pZo6BuX!PL5!E0^3z@1_vTlunlLPG4G
zTTk8af^s*><~dyzyTlJ;cr@T-q{J4Ss-a!7PB!^PN@dZe7V7eY@$lPZg_LZEEgOPi
z;&$jUH^aLANKlB2>AcpICgiV^UOs9{-Q-4b9alO<Xk4q+_S8Mr>*u}?dN0qYtP}l-
zSE&CNXOcVvcUG9X$BZKaDi#BOpFgVS_BcB0O!d;u)c)jjvT3P6nhHa!#Qg1~<kCbV
z%54bL&mi}Ii2IS-$Pm4Q>z?IYCN<~auhF6(#*VZ5IZ}irM(UjKBwkLGzx~y(7g^Ry
zwWMaqDst_yasQG7p%wf2`qBfEOzq+o4_#H<!0@iku$;42jmtWqDP8P$idLE$-$qMr
z(+YU35wrJd8ZP<2S{UjjJ&WE@yk!uxw7vb>lQ`+#0e|2pjvh3&I47;>xq3a$jB_;t
z6V8r-t#bF=yY;*WR|3|?hHHvqn&~KEUjh7QKSi(KmaiM>$tkQ^OktBA48&TSAhKj|
zWiYyq?B_I0zQ^(!bt1^(#;;x!)P1y?FI^)@)2>HY<~y>N(eG>kh?=2&BD+BrGq1Ar
zJjF_1s2Kx~KEC$plIS5?QVFQYh3rFxse%!&n#FhjKb+5RWY3^z>AJ34K_^gV83w;=
z%lDkZT17+-*GbjWrY<xqq48Ixky}Du5rImBeMSd;=p)#JtAN+PHAjzyIh42hszE*M
z|6+t}N;=zE`LxazT|5U9Q%R3LoV^PhQf~|=R&c{0(X3iwnm2q$*Bz;@H%<cu2shRP
zN(gQ2dW<7kJ)jZK{nxK;)_hg#kiGSz&kWdLN#rOYFCA~qQ9yqK#&`U;9Yddu=9Pw%
z;&Rr5gazhjsEoHOER;3bbj!u~&jg$JN=sr9^o?aqk@gLqi+q14f}rr8aWk#f#mrCI
zOpqZO<XSrOv68sH*~~f?^6|(vg!Y>#vt1#VTUjEuC13YHV8z%^31Zfrjg^?WqGbK%
z?s$}oS{Em1LRphx0>cwh^v;Opn|J2K1wa4+OcgQInx&alwbD%OJ7ovER(`LaX)h!o
zOjn|b&N=s~jwa)#7fFRM(~om3Ep0`p9RGQ*5@6Xs&khSq($iSuL;etv%=AQWV!*)r
zu!eqkVkbH#021KWnvq#{A+)C_6zW3Y2a|iyv{EDhprewkWLhqhJw4P@i$VGE5HF}q
zcv7I*Z;J*8;k2nVAA3|nQIyX`>VJJugOIDuUhHrN!>;O!O6DH?zmzW01Q6a#<3jFB
zr>9LwRZpXtYB||H?1R_8cLF@CQ(8kb%+N=JIc|SAu3)zQr8f>*o=ooZTkv76VQs(#
zA%ouQitip%OEXK&_#B;TN~d7s;e!i=)JMBMn(?$2VDbqxv*&(?dgp77##!Z$UwZ@d
zLXQtL$1R^fHZIi&*4C}Yl4UjD=xdoR(F-V6aH7AIYyc`DKFBqt)N}wJbu+_b_DR5R
z_f4vn!1t$R%nOcO_37LpKq<%}=%8wvL3T=&YETLchIZqcScB)DqPzk!b}`+zI(WVY
z_0LO|rWb~Yc*eh&9YuSjLqm-pfBI#VapgEF<A}zXy1JF6>;SrkJAWQ{&L-xf3;o-z
z$9nj*7Kb-6fb`+DhxNppoWrG?(SfODLQHT2%=Cb~t0Y%K85=3BYT0!q?uz(;lO|-~
zy^wfrjp>MxMY|A^d=3egKAB@sWp`@TP{i`OyPUw5ek=PT1Y&7DNHpiXZ_Z+$5iHcv
zgm9VE&+Hz;j1He(&vVP9_i|lAB*E9X`2`lQZ7cN(ek<Z73{mYn>-bZDsH^xv@^$PB
z@+3Xp-z2Osvw>}Y(=E)WNXf<q_`w%^zVZ}a0YipVvuehZ%Lp|Wi}~i~^_gM%Oo{#?
zbJsRnTh4|akx>E)?c<(~r9a53?tR@G<!ECh-#6mT6GW|R(25i$r*AC6g%R#VJ<Foj
z;xka0b)$H;ai&1{cZPmJvWY3mdDCz1bYj+pvf!l+#vm943%<uuCnt}@U#0L=@#YyV
z<!gF=Oqf$O%^?5pvep@v{jW~UwO2n6V=d+llBVY;>Z+o_s}r*%f1%K|{DFB`Ii+W{
zURL+C!muQPyoTXNw~3{XBQ&t`AMZQ0La!-bPT!Q^CkM#Ra64iD@QQ*?MwuCJF*<GJ
zp3Dw`O%AaX82zjYn&Ba3f>ykHn?AFVe_C9T#tDo31ANY@DBI(8D$pmgi@3fto;vW#
zzAu6L0*0V@Gz>CCX3VMriOH>ogIrUCI?k<%dfIjMl}#cJ85T`G9$qA}X9WLuGdKgE
zXS&)791k#ntgAd9^_ok4+RR~%CBw^#-Uct0IYV1t7Gtp_d@G|w@RRql4_nQ|6J1(V
zdKL7)8x3LSb_Lrph+lP?w^Xcwti%Qm>t-oz_ISTlY<l;piA5;Ne`6h4*3kQ_bsadJ
ziVR=k-v}(R#CvqF)}KpFvJx!NtD>E4?|MX;9NpUBX>tEy&XaMKCvncH3GIe8X%E{C
zu9h9>x+;`rtl91Da*66$E;m3USwOZ!%DL_|2CzjYipSfWEE&F$<waEn%eYj&ZfPl^
ziQumNNonRU|6);iiS(O?5*ajwu|Ix8o(t-cO`@D(v{<+3Q*mz{u2Mf@q{31VTQ>YK
zkmL^55=JS@`9x19?A%2o8bs+b>m9C6U+P4sctz_{ZF~lToE`6QdJq5ogwmaK7fwgI
z2rrp@RvIbfme{6)Pq+peg-QybY_veodLy0bv@+ptrJQv*xd_-6?)0Xw`**UM5x>>z
zdw3|x-l<Makyw+Dk8Kvnqj7{Z=I~Urc(yOAQwvp{nxyq-#P!tL;anTefp7m?%ZBBj
z0lN?seMzbWE6$@yUbCy3p&PeNrg(#Pdy8)OOaG{JSm3(=LqNR0aQwjUqQ=pTvB5eN
z%Q8~fHUUhmy|(*SWQq44yuBt?A@{-l!BeQKi^@ObJ)nFuN?xXT&V0|#uT_EXmbY9k
zTcd<b>U;UTHK#u{nhdAQ844f4`kfsYrcQu6J))VC+D*a-m>btN-okD}SCT!gR2FB%
zF`B+HuB&G7<NnD6R>uF2)5TWM3Q;a=aIvom*LT>#`K#+Uv^Gp+YDtJSdQ8|B4E3~#
z9*<6$6++>1Z}8x`@_W9lj|&cx{GIUAj^iKTdH6o(`V}9+ou8D(p{?>qeWMgA@K2gv
z6t`$5I|kICN3@wGqPc@_K&q;H<frv{gmU?!9WY7B0$FZ2RoK-S)!yA2DBAqKvd1g>
z&+vgkGLJ*+w9DTkWX$!dKH4IaFSb+sFRdI#z^V1lo&-jnG}Pbj#7(Lt!CP2t+e=1q
zna?!j09jQs7sJkDPv;P8F7#8hrO&9Z@N;A}aJ2GgWDk5qbM1P6?5o=n--Rdi=plzS
zu%@^O5HmSiR?SF>=P!PZ=M7gmAJzOL2`g3v#DFvM<q~MS116l5BR%w@LNH`0tqY!2
z#c2`_+x4sx`hFsFclofJ>_tOu>2&Qz+Sr4!bp=&0D=?N8u*>p#Ckdc}X-F{P4)OJX
zUybY{hTs+3|G4LgBi(l_b3NO<2=k1bFYeK9SjeIUTF*^F)^?m|Nb0R`K@cEj85|Kj
z&avTjrq=ENbpIyF6tbjShp#I|yb{nK!dbvu>y)KQKj;Yxo2SnV=<qbA@<l380vCEb
zwjxc>CgYY_+H(I%snN)ms6-ZwUo4%EQOKuw5{s0#A(k*A-SVn3;(~|xqw4~XdbLM@
z!3V6D@J-P%%R39-@l}*EdSBX*`_*PMBAqj4SIbC#6O18Swr%m6TBY+tO5^W!(@BFs
zHaC)j%r~K3RC2HjqiaF7)GYiMdQEe@9A#Vb0>+V{_atU9Me}~`eH;t#_3C!?Hl>$m
zQ-MOI7}2AW2JZ!A|0@BwaLwJa)_mXTMh_Y$T=5Z0GIfv^UpnK@B(cZIDUVz1FSPAO
zzc%>)3d%e{7*i7XA{3?D1SF4tfVf&1wed^@j?Wv%{0jeLeNDLD@eyb>@hw%!1Tia)
zEk(uX8m9`}e-Pt1d}6xR&!lmzQ6jfr2v)D3cWqpEJD!lKxg8otR~zHEZ7BFbK{uC~
zsCP;lhXYkJ|1ZiB_JVyM{2yQTl(L+_e|N&IUn9>jI_KXr3^|w`jrch780~#gYBCI<
z2QW*7?fY63+00k$ZF8fNp@rQnmQIVSAd%u=K+-+>uxS~<(Z5c21u}RNfqSw7xVkYe
z+j1j?BDB<1ym%+oGR=Woobfya`6JC6bUyaNiW#zzg<Fo33abMvMX9Ae@#;v=y(w|<
z<xwjS_sXx(p#zcK?Zq+ReKgf*JcjNxSyzA@-!I9|SL-}BpzCt)mHP+pAUWop<5AH+
zw}=0jrF?=^*qHkJ9<(h$s5^6Y&|~f5SXjT!lH(Z+Gc<F?r~IrVI@{)xl3O$E9+F2?
z4!*?GlWv!z^irpr)M(?eJE(c1sm$8OkKLvjeDlv~mz#woskF}&6TzX<dRomWUS|pc
z`&dgX$ske)N1O}z9?hEJm&9w`u438$TH+w6uS#(N9?%4U?rzjzj^o77^17_BSr&Wq
zPo8CFZfOJDbPgwUMC5zBk;bnSfGZ%na807c*01y)E6=ay!J3j**cc^=K;Bo0>|A2P
zhntW{FOW^$PKdlsI{vJWCf&qYK;#iiqOT#J49}5b1bB~g;9CuFF#x{00y}iQvnl8~
zeayx)T^h{bu&?HF)!|bs?KEROZ3V<n?L%-1*;35?_2qXYH&tc{n_lcp)2h6WZXrFW
z{B9-=YfQP97%}qT-RX*lfph995;MH8iiQ%{5{-&4J%o&)hq*%65w^mBLS5oEmxtaI
zPPb){2cE9v+4R@bGRQn2!{B)HSC;%SEq-H3aKQ5Lh*ZRfWCQ-KH1BRAY~=tTwOD>V
z#ug&f-kTTHQ;w6vvpI_${Fz5h@|jV5o)t@tZ&<ddlL92#Q^QU?Wnl02T>MW*=6kcX
zKpt8%_>0_qN4>I9D3~@PCz_uE5TFX-5pk-;?1zqbK|D2jgI4SK`Va+MTtql&wQH(e
ztKTu$E0MSmd0b^?!;%iMQBl`h{%kOuDcixw7Ne0rV&iU{m5(wZ>3qvNTvis@Ct+HF
zG;{{7CjM-!bU0rczshiA>O&@VI-@<3@W*O@a;9YJc0?nyjH{N%xzKXyKiBJd_~zt0
z=zvd)hNhP7vgwlqRYWbZV^@H4$n)x4dRnvlNyq%~8lSpD*C+@TeJ5^)f};-wm`Z6R
z-2ngDP!|{kGk95bS{g5!A`qZ=RuI_>Hi0}LXhG+jK2TMy;{T@<dDoc<+o%mZ{ix>(
z#yARFv%fq3SE&_Xd1AnQka9B_I@g3>lAvxX_l*UGcz#U@ln`)VpHpS$J)YK?3?>&+
zI;HI@*sHGaBmWdeE;|>AtIA)sMSD}x5EHv?5lW(tH*A~4)Y$iu;haCzKEKkX4MGH$
zr{CFkW3Y7g^y*Ns{Hk_Ek?N~=dSHP6V_=*<E1-qOSN*%MvE;CT1^_E;YppLBoWo71
zfDGJvT;nj_>ZyW<B4y3Oy+>EJEUi=4a)*K;re8TZ1M6<{j%ZeD@T}uN&%++)Z_<r~
zNG6TeCu5h+9pir$Lt?Jn{B|{<?oj+JjQ)lwkm#JKMK;jDH~_{62U*}=wQI7CZt2vV
z9eqiFV!XChk_^#2MkWx5tG*nFd)OT#g&Uk#?{d5)-9}Yh{EJ*G^Fo}oBoT6(^u<*D
z#}T|Jds<Ny`&mblA5B{G@LrNa(KjB>!VJ{}C%ibbP!8K|k~DC_&gmb@2AtBy-Qaq@
zrg5AI<qiQ(hE}8foyFtsEdU`_$@?J~an9Ooer)Fjjw?%W)6KKgB6DNgV;V6EZFjJn
z#haT;Hnw&N?QXC~qlRi&G#%qL_n`%KYv;V^O|;qw6KokScP>8z(AC+$9RHaJ;oqBF
z3n&)<&E8J}z8WsxcoVxnMBoiK!cg*v{C6Oz0D<H*cshD(Y38v9vL;E-#cGqMgQS?P
zf-^5&brA9D>r4o#HrFJ^YCPD{0j;CW1KBB<#NEm8P*W*y8|*wl9s7^q5X9ogG@)nO
zS2(Y*A4hx2v@&c0;T=1B8N2E7r;FNh*OY)y?Jvq+j<kIa85OL6g5-}>mZqO7&aUZi
zNm9O5*Gh$*YTYlCi1RJDIAJPcuD|GZM>cR~!a+q@I4Ru_Y>TO_+2lJ?cmD=MDCSOL
zU7C0su0RU8M;#K;W<(CyaOT-Q%q@%}?F}_g1qgm9MXMqFR5w_+Tj}lTB4OKOZH25=
z<EyLV{YnwK8cu|>Z<ekN)28<dX|S>|axb*kT77_s%~0=<4oP52WEa|hu8xE8oFd9>
zDC4<Us+gi3)HO7V=hKB^)Nn*QTXgsZGB{{s7u6^62b1xWIt%bm4LXD8&YXc+)x*X$
znXTNRh??7(>Ln}Cw46G`4Yl&vMye`KhY;ri$tY^{@hqg2zFiVKgC+@+u~&&qh;l)}
zUYJ_l`qN5@3IR$zD*10(N07~AJ07cZY#nhg5b8}OX)XkFn=DJ^(M^()nx0%cNw>^B
z7ZJ#iB>l37%Axl6K@bwMXFxY6GWA;2*H9k4UGuBbj}?N1Q9k=w8u;+qTP1=8Wyh*<
zunaXzH?D4sLGw7bJ%rI|ZK;taHzx}CvNV#0x0k4$OFcmH#izuGkqR5fg2kZH2heXa
z`<;gCb!jqvO~-k{XXZAPksENCNO^MVHSq-KDp=Pz3?dANp6ftaBkCh<sCDU9*IE#L
zA+oMLo0NI=^lWR#>zWPuxj0J3S<4$l1=+M@Tk-$@(8_&VJELip?cdpzv`qO&51z3>
z6NEX+@yh^mvIER6)Gj{DW(<6NCY-fy{bp}Y`{hJhhG=aqP$t{Cp3x{Os!meY^sgJG
zpUIw$MX(8!Iidu=5<|M{LFQe6x?003aV+d-&=-6PQKjE+%op7BkXtbrEe9#(_gv_H
z2xJ=|%yQH%I0-9=5bRJxA<Ndt(E?@8n-}=#d}g~@j|mk5Vf|b?p7Lhkf9|09uSB(K
zFc2A!cpD60362dd_7P-lHw_rFA73K(1a>8<DsuVxi&>$HIx`KxlK)8WGllYgKxGeb
znDZ^80iW6S#6*Gw?Kg|kb-U}4@C9rvA4|}bf?*6=i52bRePeH4jzGbcAEaaikX1O)
zr55DmW)M36J;*A84lqr-Tm>jG2!wMJiI?-iY*x%pDKKYVEc{bJ=NM{Vaz_uNf5>jn
z6*RKLGDhb}*qk6Wu}7-0lx<2Pi6MQ##P*OI-G7gmtB7yGrwLNr57A958qTv8xyy5h
zcJ|l=b1_|>=>k_HrWRrS(i+W3y8=(6NG({v004NKA>b|o;6Y#Pd2=#z6nW0Si#J%Z
z@b-cc$F1i`P_CO6EasR-8Vp>41^$$3Ib4if!}i~!$`ug#J5)8`v7Qr__2&4VGD|m`
znAfPOL9!!zJ5~k{B7-19+Vvh*wi-#3mSh_>pIODla0V>Fh)F3L(31^8O#=48c^q^)
z>J5qm*O-h6XkM)<#mj#}#ZrN%z_L;;3TGK%-etA4`%?Ymu#Tda=j<?+T%0`Vx!$DL
z2m7MBq{_<C?6qmRQv1a#Iaz*2FVUa2=+|j>ZLt$&A|s&G^CuK3{5;#oKv~$TQkQ|Z
zGLRIW&$hzXIyo24<-JuW-tJ4CWCSyg*|?x?7*?2D)IfGo-khvka#lax8JQPr9)E;D
z&xaaTqi_PTKdbPLw!2S+0%T!??4ckf$LF=iGEat%lH$%)4mZNG;C(h3h+O+|I00JF
z;70=;jFhDNFqQZ)>xVh!VETTGuq4h?yG8WjeM5~G2QHm0v`{}AbwMyzBXY4^pTDHg
zh<dp@(TXCt@_evCmn5Su#a&Kd1IT72Uf|DB5d7eM2nv>|3y$eHxwsLe^VZ<Ud*vNJ
za$ARt`gUTp63gjq7o0v-&Fk~Z!(XE^vcG;8kL}9p2OC<+jznr-H8RdoX88fBizo=f
zO20gH)%AE}jqi5=I|G?1n#cOO@a}vLw?U_|?azemcBH%wdA8TM_DfeDvSd)2cciDE
z<$c2dSnJ_+p!E>|Z+v>b$HYljY-x>6rG0Kuvg<MK&hc7;-w@JYty)>i)o!f{+c+H>
z3BenvH%=yN*PGH0V9T}&D#h;@b_0RC=xQI|iGK=7s~0>OVhr4|i0fR!HO%W+>8{GT
zb;9AXSVMF>Q?1<p{FGJnUrQDI^eN_a0OK6~;I5f-QvL0zk~>K9*3O`Fe<$vvg?UQe
z1uN``o)oO5^^9z(mvvB>9&oW4y!#)gsx>sTh`S%zGu95IfgO2`K}{1Zqlm!>dVsT%
zMrUoDzx~>lWR|dB+U?UX%kG77eE~?Xly~f~Yn>TFL8<6_N3jTiH;pN8Rm^r~eaH#^
z)!JW3^E&PiOs?bSXGS|=?3q**(vj4M#Fp#Txi-?mC4fXIJ&pw95h#xH+R44UugAZq
zEaRUna(@hMm5wn(&gpVQ7+L#Leh&tJTUu(^itYKCfVJ$Mn`>jwBH#JE;g3WJ#P4)L
zO)jTc@qN53{s|5bEowKa{S3hIr{`r47q~rtYXuZ61|2P2fPQ+Ebv2r!{&vp;MvRrm
zo%=1Uz=Z^b%9!j@$k~+g1A@~JcDj;JuN>*pX4?O=d3wsY4`BNp5$U5e2qu20aZHt7
z9|GAxINT@h-hb-isOM;WF>kZiA}6(6TAz+Eu~SKzYQgSHb;0~I2)RsWM5*UD1n+jy
z_REKoGb1%mH`Qr?E=PP^v|UT#$V9YYj#uM|1Dj&4DIX#`*Z|SSKdao{*=waN>f@^S
zew1HDBrl~Nn?Ly>HG%LHecFYid~#u^z-}V?leLil23_WoR{|N1;LcLu!Z{%q<IQB4
zzOVg49yTrK_;?L+(I9TTb*RAnyicANe!M%)I%PkDkXJO1lE^h?$(`B_cF(Eqg#%NX
zYo?QR0_@Y1j$l8il<H^O-<A60(7CU}MDI9Z--huK2#;Y(Y%TYnae5yp2})`dnryCd
zh^d!NTw=&%1uX;2eeG?nKGp3hrIsc!6v>K)Je8PjfO+J2;=*X$EQFDf+thmAF<T}K
z$c8`e_&t&tpFdzBTO>MvBBVU32?Vg5^fQlOx7|9_#uAT7;GjO-qU`{WoTarfYoz7P
zfzfy&mh6$wF5~<4rEz8VvLLp<dgY}Ph5f7Dcpu|`&uerByd-Si#6@FZoR2hvH+A?^
z`Aq$fQA#ph&f?hDq^A<>2G+i@i9OI@-o5IkN-09F<>I4+GAXo`$%)%Ea#a7xZwxm9
z4xlip%skRy!V6947#9uD8*>=q9_bvLe8ZjbLpN06>{`i>?a%zmx&L}Hj|SG%q}2VD
z=m`#E=s95n?&{y9J8$w@$lEq;4uwUudn*$13!+q=YTeFfFaDmv*A~Sbifvk`EfmcG
zhoy)W-h{Wt5-rU5)8J9WCCj0pcMzty9yY?&sHd;?R$?<sb=`5TeM{bPp2%TX2z=7a
zo8&tCwPZb4PNX<{=zh?r0!J(;4D8>J76i2BN-#AW(<@bf9kQ+wqd(pD317y7LgCqr
ztBlIUzjESNY76I2?`J2U^C{vh_~0(VWjADmS$+9HoSe=Mo!H&sHHerA+d*S#o`^gu
zRYVnb7I)bqFJXbMCzb>@>m^(C>Ckrb3kgi$L{Az|*4BY+d0VxmQaqnd4g^R-4!+eM
z57gIr04Tktx82<Olsm%Zz?n|)gi{;`4?qzT$#3&GfZ(SMASl*??B@}97$athFQQLQ
z9BL7Nmd&ac2JeFOuXyBQnRH%+%choNVV?f7t)_vy$Lg2;VjH|zG{C@}o;a~xxEC_3
z-}4<zWtpVNR@gC(aIE4FWw!v5qj`<2^h3aw`x&@KJi`@o$wfQ=Ekw<1*eX%n!}5+?
z6ur5eVa?H)`+Ie{6jl;-BrXNg;b`XJp&GB!1rFEJ?j0b$B|vHwr3gvPD45_f8)+4t
z+$M_Gi(clfOp%SJu~XlS_4rU&D476YpW00lHt^Yb0<S3OBY|`fG89$niqpe2P1yJG
z{_1!cq~|uS<D}C|4cdBXQfYFUh3jxFjpx94EZLiyRY4@51E)vDZW&<$DlY-I=$U4=
zl~u#=!^KuGc_d1C>*3IHWM%WB_3unBgWtpnZ*L&ExqI>#8%*6tB))G#z{%rt<G8B)
zMSe$-OBm{e_kMKHj&%vr7%dVm7aOB~oE@Jy3cR9mSm_g;YQ|J_%^H7Xi<nKWSb)}O
zUlw=k>A>F9UJ!35cGYSDxxa?WCy=#l#xD-NpTUWRcs~k^wRYR~>@COR|JAQ39Wc+S
zQ-;yIpm#N+=;p$`!y}NgtOSYPH_J;Vc<E!Q3n!aHO;v63YssL)$b<0MyhuybRh~3I
z5aNk<YZw(K(2$)&n%Yw3uv$TXDm;QY4DTPEXQNDW7ggA;0R_&F5m^LBY&p9;BcLl0
zo4J$Os2<l@CKom=Q%PHY7r2s#-QC@FN+?|F)a}N3ZypMWLLABz6{e&1hza#A6_P<>
zP&o*?)s!8KC3Udo>e=^ka`R6(9g{zn^}Cwp3e~oBMo%munKxUxI3~$78{e6XFLWO6
zIteAfg*CxRY&<k01^6GN=9s>&3^c>72rOcW2d28XEd54(KV{wV6~QQ3caN-q7}H&D
zVr0U#frSl+p%QfiQtV{v8KQ8Z1GSAZ5sW<ntDh}tkC8Eo{u8g}chCx;+UNp3J~a63
z?J*~(2(^(Ry1VvtKYUZu`M9>=m!#tUSVvR;)BG!Ym9^$`kl5lqzWhX6{9duO5Yw{i
zj={)lMLtAI7P)8NC)v|Eoszi?zo1kTicwrbGbJjX0qf&&Th)eciG2}U;Ue~>CL+*%
z%B=&6PrOFu7%2DYlx5!#6qngoEJprtt7$BV_=iBUj$?j4JD8Ja`NSkoQT0@+HJ+EC
zc*Bv$WDO@Z3V9sjz%mCXR8kf52wD#Os?$YaQY_IQkyIMYuvVo5O&7vNT?(}E2%kX#
zulLZI*Vp2elUHZSy9FZ)hgK+5*(<4}y4*$|A3FFoKo;G?<phcGy7!L_fCwdMxBz;4
zW#yUHAgA~QA5Q*^6V5y^<L#IA<@Ph2s*Is{LcQ($AW7&ocvr81Y&iw)x?iLrihLDH
z4KK5CGCwWU9!H=Ra3@!#9)X>y|L$=^s%H$!n2Jp43hMuAYY;>xCiuk(0GA(!1s%)1
zz$oTTcBvMJh|G8}3Wx^hK_`=E{G3q<mUh>l7mEgZH}6&*-ZSxvdYS%!LcD<zj0$q*
zz_P?QA)4tOL2A!Chrw7=ZRgr}W`NdKHCrk2Qy@@w`CO%$DrWQg<~;+s`6kxNa%?o7
z0sC_Lb!D6t%Y}B=!c2U3CzYa)#vURB-D(k6h3R2=`*^#-E-Qg}e$bXck!adlw{*X9
z%&IZ>j4Osg5NnfzMSPwAO<N8@C~p*Ml~f4Ozv^J)A_dTZY30e>omg|6qB`|7Q+RYz
ztBygx+=4+VYs~I}5~Udot47UzbD5q~yfYDpp(7A4DzSwMHVK*)Rmp}6EK%}IM9cN1
z(z`H*K0;=pAJ@XtfH(950yA{&e>l|J$AMj*c(l36E3URHzS7r+NB_Uw=4}jv!$_MR
zadJjJBTJlc^%`5AHdAs;PvwP<vsW_c0it)bnlEq{zvM(u2uPKdHOL_KA5kkOf(KaU
z#N#ttc$6u4@%$3}?ZfH&m31JK0QSsER@X9ml|2O8FXgz8m+c?d4K)=?+?L<#1!!wt
zXqU9JwE;MmK5cusSuQ9I=EftiZvIIz@dxZ*b6{~^6$uqt?<2~Mlqdox9!_L?I$@tF
zMq71T1^hr4qQ^(~QcJ3@t++-}rR(^c%`HUW7ZgJ@VCmBXN0;D%H%~c|qMg6;ksThW
zs})ZMOdMV*wd<E?Q(wM%WAYtI6TVDhPZn3t3-If9L-duCX^_`Agk_+bnG3QWJweRu
zWvt|dgxyM$R4ltC;qZAa0F*}4%Ncm8{fe)%Thxq(*wwK+90#epyAUJ`00pp&n@$N)
zexz(-+{;`pp)J6nNB^)wVzK$RN&|MnKW;;`O24ZkCia0V96xF|z_^<O#0{Zdd(D*u
z!bl9%?MZ2F&nYcEnta9nO*my6+agz;E!gk$P5LB$=j^D<!9qWb7H#JyS&Zq>0rHE6
zjUh~UYm0`%`uQ{Bq|fBZFOpT)dsorX(M;F1*wweF?zqK$pGJ#12w4V+6Xu7-s2=%&
zuv`8_fK{t&RoSi7IZ_OKPMii5_vVTR!Vc;mPQ-hE%4C0)hA^gIZrn~KNI828JY!xB
z?^D}(;3m`No~oC3@UKW80ftfKx(-l#tDYZDTCU=_S~N{*92mPC-BnQNNrT`2^n%h~
zdPZQRH3$M2EZ&fG5Zn~~Gx=N}(H+3ZmO)x|_>ncbq*RaKK?EXX#C9le3`zfTE)m@~
zLEQo(Twd~|rCJ-!jF!ytNh~Zhx-B~_K_tctF$>)6R8S?8IEE|g%&_CyyFKWRPR9<V
zK0Zw+X&D&n$hM4tR;=I*((n@MLn!h}N7*vvF!t)c;5mq&h3jBp7W{Gp*&YM8%{T|e
zEl-&tfAUY6gTbVGDg@qo?(X`NzOTj6-+ni%0|Bho_x8G*cPypF<q>v|_o&3i)Uj4&
z^4>VF`=sf!&Obm9^ghl(g38YNm4i?kIwUju2Ti}qi5D<5H>xX&eV2!X1?{#0XI%Ca
ztQ9)hvr9tV<5)4$Iwq5H@!y@Qcr={vaa#w_nJru+u8)0{cJ69|$5s2cls=P}1oCRc
z)wZ74O+ptA`6=+VAVd-1$jnHMR}HyIb5NqU8FD#QjnpB%k;d<lA<wWp1EjeuWzUc#
zi7RdAWl#Z|)P*YD_rH-G-P<7Uz#JZ&B0Fwq5nLtHIpp}QSyaR<uuf98#E8le^BV;9
zIVfqG|EZk2r-mmr8Eg(`DEJ8|P0et|Z)60T&VX1!vFeL0w&OC}G7<H{w(-lz$z(QJ
z@X2T07($d=nOZchfzM{rQxB!Jk}JpZcCKLiGLFP&q%n@tQv=|XvXrTNiJOy!kp=Vc
zrRaQQ9hSQ=74)qS9|Gx8kV#%kdyLsf3hhSiS--dYXZb5urWWs}R#Bo8q4nkhFO&Zo
zXrLbLOak^HFp4FPg;DNX#{+2!m#+}}V&msc@ct_Y7gnbEqBc}kJ>Ar1;Jy9a2+fh<
zH!iMkROsBAlvrl-1yJ_*yxQy{PB7#BCvY-;c_S*hecuUc!0fHT4EaiUQ}$9l;BMIr
zLeGhUe8j!tl4R-JYF)@c-#b@?+h1zRLbpujXjTh{r|^*YS?Mnr2QtqKsmnn3qG(R$
zY(&p?<}qDr`LR|!>y=T(?^_{uAN)!Ew1IJaXAGg@*9N4(*x4d>?*ObQsiFV6H5<mp
zGr%V?x*C+@hATc>om1H`UKttdvYK4|yvpmxr!qK^w=Zb{6vxFx1=;dB$@z2nx1$2Y
z-f{&ZaBBU_1MJ_v$f$+;eA&kDTAOVq>3&qxuH8flJ*Ak)t2lv~<<lJ)^GW}A$0UN?
zAhGA&Dw8>UaQ?C>xXAvvZ#9-@-2&^(ah>Mb&jAbsau5}6@Gh8<Yd}t7=(gt4{sw;8
z_%6WHaqUb#n~y2qOS+Mscd!nhyy5RyR|mj{kk`CT-%*lZmCNMBYIiu_AX%l<d}whO
z+j6+)=d&p}>*l=+i9Ls(5J)}}E&5n+8IF><`yDh_C~W?!Rx2~XXqFEn>Q}KhV?X6F
zij-O!?M&3ga#dFzdf>Ia@|*y_m+h}9soQg3<^Qg>80Jmg7#0v<dE+W&<UXz-Qn%<z
z9=W%w`0mVxqgCqxoQ4(^h!i~JvMWhYydU-5fX{EF@3^b&<BhFd5<UKU@$jEYd&ipg
z+u~9F%?w@2<bD2ouBRV+b}Wa%T|FrLnj+{A%3<_CBh5UJ;VWw>-U!E6{8A}mw}}d6
zu2XWy+&S3sLq3OJy~3$y-Sb6hO3Hv40QO!hLftl*ea*KD6(>&au!`b<CukVtdDqD9
z`70?Py@4Z)0l9gdr++VBruXk1j+pnSdz<V>mIM5b<`LzWvHA&cj^yK1RfAN#HHPA~
zg`wQKob?qIMQ+1uJ(MECb1_8}lG`njd>el!liAuxnR|8N?3YU@lS}hhn%x#r-N|E4
zkstXlF>psKJW1eOA&Na#iCx<Vp2@=Zc-oEyuZN7L<eJ?6j`cy0t<MM;r)<(VpD2ch
z^jzx5b~jp)CRyq+7TWH9#DlS>{NU0*?Z<1P#7CRYG1%U-3P)9Tj#;vP4XkmPzJ;Iy
zE7CBFgy2&VlUz6Q#U@>*Qtr2R&XPWLRbREXpi~>(X<Rp9@kTHb;T5T;d?pr}0t5Or
zbj%NGR^8#Pi9-A<uJA(GEqmNCeao#_{~PN2NX)-g`NQqx^^*k@QiR~0*!($+3F_=B
zJyCfv-jUMFbrO%OiH`lKLBtAdi62@1LsB*D<ciyKc)J_2@eUTh*+i((A_v}*xatF2
z$Et?JRdPhM7)^~#pCBQ2o5fz-=}`{B=1YwOCrG;F^tH!4FCBfg@xXnq|8%P*;?A|M
znF-l-7QNrKR*Be`cyj|2v)A68`G(Esr3d21ohc&H{x|a7XF}}?zO3j=zx_~yo-E=n
zD`TZgRs&@Ezrd}qzEh);BVi1|9O#`#6_a2}RspH!t$Lg2gbZ@!X9ik2US8JoG3!1f
zxC^~b$lUGQqCTB>>?r1mKn1oyVf$W{)Mn?U4FNK%a!uU93YR0ybZ|ZL@oZqg1br)o
zzmCw!FS}@<@CHZ}AazlF-sw)T?<OUnY%G6CxkuGiP-e6XE}>;ei(izYNkyYhI!9d_
zOOj^`hnPI|XkElVPsxl_X#m^}0Z#UoDh1rE?s!7IEw)pw`7&E=*k+|XIU`cB&YoJT
z@i=hsNO-fb-r3FC%E`JM!kkeCJ(J4l#1Phc({F6RQ=23g34XRq76!vYrgD0j*#ZUE
z+AdLw8#If*h>=<Qk^t%lmSAg8<5QPS=+=LlLjF_%yg7Fo=HF=;Bb3Xpn1zQ7G-pa<
z%8uUh%Y%|r+inrEC*!M`GIAxHA>rYuaL`-jX$r!N7YR9JxG-GO&AgwMv>o2VcJn)r
zTS_`CtD)AQq6fV;Be1bAD%<Z)8~IW3=v}uyPVlFLUe?UIg{&=^a6j$ss8Y`aADZeU
zbM+6fN9^HgB+#io(w+CkZ#_}KD9&j2!@ZorItYVOL(nm&q8MEn1QMJ>_wwMVYQaj7
z!}#Qjz#KM$8t9iP$F3c-dHI5XnDy|kdnz1|HhVbsvzizUr)+U&5I7v(%sJTjFGr~1
z(C$Sy#gH}Y6VeJw6tUQ(lq645Ze48@NF@j6#KC7g=_wi2Q%+QS*Mo$P)vm;+uLU5{
zdaT>?yd8az0qT-}6D}<m%+RGME_{*7|JJkRA{cA*5TLh)n|bvHSk3Ye>@3rbbrGZR
zRIEcFu|!P4)Gq$<q%?6TMtmU*K_~nzU*XYuhe#g-x0EQI?6s?4$`9m7G>Tuf;Zk3E
zKVHQ4CNsh$mm#0%Sbeyd0?WtbcH>F6%_UwYg39KE-ci#k>Asg#%%YfJ!@7}^6Wg(J
z<^EAFszqtC=<;PT;Tit~%;0L)pr1!4MS6e$sT>+r3*}!u*$7y-gX}slV;+Y{=v4O)
z9(SW|N+e!6@$T`>!hOY=S;l*E5a*T8_b({hzZn*l^b4Tcvb@t$uFsrll-_<Mi&~_6
z)_H*FuvBP@m-V5jXCg1`OWRyC72p}kVa=?-Q$vtSeu1;hv2e5fa<bZC@+>n0_wQ&n
z%x&lWbklw81IFCyBV6$#DtliY5~ueK7JbIMiB$U_8iu0hO~PE4wRg-c=6Y^>D0a=)
zUhB_?TzAWuC7g+1dvQc%QKq)X49I^XMft3Lh<v(E^qxxNKC&1JTMEk2++*+)zy5=b
zkYCoO%LAFUY6*uQa;Zp@(#uK!M}@i?w9#o8^-~c3eW<5Y5oxsvR&EB@|1-K>%%Rgc
z<F->-I6?M2nWoN`svaO0L3OM-IQk`UMUP|F!AR)6@4J)e@=tYcYL#$9Ct!U2rJ=_0
zOn>LQ`iD#Q!Sq5)tMHQ~8a$XrhL<hV)TDfrij~i7xdy_fxLSz<ZP%)2?1?148aU~C
z!GU%MkL$_5yo2a0Hpb3Z*INRCngM3K!@fiBEFMTaOQ*dboIeLD)j+k)wKE9>F*|||
z4m1uq%V@%y+?9$Cfcqff`xXYeQb_2rU!kz(qi9DdKhSyZU`tYCa(j%E93`3~_fD>s
z<6^#d5kZLGX%5-X?@7=ZM?4g@{h}|Myz#3Iq;^m|0lPyaRrKx}g}aF1dr~R7{rmBd
zOTXyq<Bg<<3et{U7K|hhXD+mgaAZUCaQfHm@_e?dCY+nxV1ls$i3VVh765dSZ(9V_
zvARFNFN;AV8pVFc2b^m1SG^4pXe&x4j3}0$WC&Ln0c}VSRK9CTCm*dUAWvM!$RS<n
z!G1#2X}|4$Z6mi)K50HgJO^StMrR|OsJ<)PnA`>84?|t{X|{ho_)jK5IJ90gh!R5{
z3PLz;mEeXoqRJUnNnd`_%HACS>zH4xZoe>arbfDLhDS16`hE6xT^s-7OP&I?Ixh2<
zBO?pR3~k{tY|%ip-=7S1eNA~eTHp$2>f!Won|Q;0cMl7k4nu%sQ0}mi*pNMD7{s)r
ze%Q;cr<Ch?S4^S8MA|)uVR#!q*%UL*So0$p0a3XyF21cXb_>;NjNjoHdW4%rFfe<3
zttt7B9S!?7I_W%OZ3P%6E}4w6s3i~IEvwW-B9eID(O7l#@qIKJ#mV+=BM(=SXRW&(
z?$yGt>j6D6Z642Q98>-3GZD8W6~FxbDbn?^!7=^OFdcbTTZl{+Ag)#W{F0rX48A_l
zcs@Q)ZHo!(8<ex8P3te2kU;F7mQA4VMd$w_22HdEM;RQJ*#X)w=j`!-$zVE5BLBru
zrd>=XM~<{1k6lUzHFBvH<t;~efnl{uP!wT(5NkWBd|8r``+2mY=&EOR`vW5qdPz;9
z=MHvIRdbi;Ms&4@Y5_APx$;HzMW?v0IwFkrm+?7S5n61Z_Q{J69mg&|OOnjXrfTbx
z_}ThZOHXby|4wAZO8RI{mQRe@+P2r);~9cR6%T1goE|h}R_9#d$em&(iP^Y(5oLx9
zViHRfyUHl*@Uy?@1U)HJwDM6%Pqny*D<<4Wr%MJW2~|}#$=%uKIe@6@@yYee)a$V6
z_X<8rnA}sqOi1J^QOiMY%D9Ib%*|yGDbw{76K(97hOoeQlg6hE`1=L^NZF+l_<G+*
zO1JGu2%c=_EgEuf>u}RO{pUG0sMoySm$|95V>|{vLzpw&=%n_L9}4wfl=mpJDN|*T
zLPQLGjQwzQg0H9A@v-B3cFDD!ARolb23G66c3v#20|ZOL&T7^F5F_BljVgL@!+vX6
z?4=ZTO)jB+d1%X6yb-M72b+!!LPNS;)G|=4?(y1C9k3AK&Y40Q+U=9+JQL4C)asSx
z^}xh<*FPH$170iSa=V(UlBgP6<bx;A0~eg{5-jBgQTk@L*Y9g3AVVXvE9(>04>I@)
z9B$0$ImPY4Wq6f&sc$w*m@fG+W#8gS7!nh@ACR=n+mbWJPo;*JoeaoLfKq1Gj3Cg#
z{L_e=AJaGB=&mt$(9pClZEs3qwK}rvLtUfxjkRy-0Z|lcgP=_sp7U5Zyo|tlUHbF}
zzIq2$n^nZKlB%?rRA$3I>)-TC7LZgtbzj9)uzBKA4-ajMZi>*)^CN!-Yg3R`GqEI!
zd^bhkqKDeJpW;Y=%$AETdPAX6jr2nBrSfA<3n~Scv+q##llVZ1Nyf4=n`gXa(y-+)
z`yrdECaOOHXA_rjNAEbc)q#qm^vS4KY5vtCf&yHV759-+C>AxYIjzsMRSpKK2C=ht
z!r3fzTWGjd92w6tnvN^r;X4zeElwy2W7Q;U39t+;!1Ty^8t|)nREhf!6*n4S;PrHQ
znGat~S9*`juLny@6oce|QckOSLTViG88M^~c^|w}rp(yTOm642XdkagI;0xA5W0<l
zYSE8+(=JfSNS^hRM>RH_ooX`BJ{K8`XUI~MUb0zG469Bi3}FdmiyRBc0sB?!?RBiA
zd$$cQfhkHz5`uhA;sjk7d6hi=MJ{1V&Lx*gDqv2<)7A&pmwU<#NaK{PP1aG3qEf0s
z`ZbB#DYK_$(?(I@qD$N?#0iQ(nQp|bZ?<Gqxy*EJ9(brM_rJ0UFl~M7p7Ajszqp~?
zo4tw(2>5A%CStXJYM1q|X*o+&ZF8e{gF+6#AzYAAv^8cysr?6boCyK8C{NFmZK)9y
zv3b(0phS~h*(Q@Iv~m3wo5s@vf-y;7lT@F_@T^7-G~;bRxhH6uURK42t|=1hY0GX&
zPZYkQ44=kP$V@C3<G)Tlw83yfpD>a3i-eTpnfY{~mf{%*6<;Z(nd3MhvB?-bNTJxS
z1lq`B@*Rf_ozOFU)K4cZ$b*I#%|fNoY;E7vv?zM#Np8K|#%yW}{xMTk;ls}O&#G&X
z$YyP=-s;k`!?|NiZ)lr2S=w%$dgKcAG>rpCDl1s&2*-<_YvrFxZrbIX)*0u1mu`09
zZ66O*>#fs0_GH!kpXkJ5^cmj_rw##TzROv%aQxV8gDYb|WOa5x3!f5=77rxJsq7nl
zT<uXRaK?X?0m(wR9E&DeD6Hw%#o6LVJ{yz)fxPB>r3aNE2Xo=lty~?4#7*m4TY4fk
z^>1-FpAML)R)}bMYh|an<{YdQ3qzY|nuBG^Jmzm9_+Km!w&|UJuM~V(7-{9f+k-D$
z$$&RJGI^?dyuT+Y?&g{HDSsNGf^K<QFsj@n4<G6^Z#ny#GkdwjArn*jb{BXA&;bvX
zyk)aJ%(tNGQ<nlWNm_n0v@^(zq5*+UX%k5~S=2u|P*nXURBBfmVkc_()Qe{Q&qokB
zg{Lu3+H@TEVg6|2?m9F+%bU=(ZUIV6li#hn>EfILTsBa4cO~!QLyyEQby)h8ZfTUa
zek4z*VUU7g(P8)!Q~!Yx;x!a-lnEPnm<T6sk2#pLHJd!u!FuLrf@V~kwuKZZWaY=l
zD0t`e*jlBP_6eX0B1lJ<4yX}MWA1I{wJKwJlf~TH1(|$cVo&K93;<@YD<B9`O5$k&
zFH=M{lJ0#xi7|xM_tkgx=zZz61RgkJ6QZOQ^?FO07<S^(<oF};>Xt&H*U8}hdY1Oh
z8^kRd1jJEegnY4N54RW(4XB0t`9%L4NS`Qg#WOg1{em{suellC5@MUdZaYs>ElBYH
z4oW>VTpvkSnqFN*;+Mp`LgVb+MW3gh)^tdGJ77N^Uwg-a-4(0ja@gCrsp-^2@_Nr0
zm<n5Q`Bszs?CLlM7m_hI;-19WHq4i?2)Zsbpgc3rdY4Q2l!D(<I$G4@z_i#ewvL#I
zOBfW$mTgvKhPJ&uz4;7I`lo3%eGGtqP7Sfu1x~6ou_Ig6G*-z?0DLQ!=k8bDvOzVC
zk*ZQD6GDNFtuw2g0n$psDlKqtD^bENij?yL*uRXs((6=N;HaB1!BYh5tGx9f+4N-A
z*_g~iI8CM-2hIiFpfSkrrKO_#q=WmqK-3`_X$e&<RIWaS`}6}DMv=1@nT_2lH{3qX
zO{Z@aMfvqXk*F52QE_0^Li%r?_nQT9s!36K&HyXN7`N@&y>Aq3VutI$%#k%o1M|vZ
zg5g?rHNAe^Z)yN><^{~j1S0G!fvoFm*bf(-M3NOtUEMFYyHdp@gyOe1W#IR8$ttB_
z#sFXOKJG>wi`(&Tjpxx*dwD=rkMYR-)QDB6lfH#DZq)1$K;&+Gk|S%Wt&*Vei+)JM
zagHCzx(HxhJ~D{Vey%HmYi7W(s`iX7MqGJ@;{Qy5Frc(dQD`ANuBi&q6Wg4CUu5r*
zDD2U3)K;oO+&$>`vGH>g0^bT-Fnux{AtBO^*cX#K@^~w(W!zgn*k`P$KF~uKGK2@0
z?zAg=BlkizHs%G|!NV&MU5ck;4W1ap2i1bE=w;c(ZJEuXJRv9HX%!Ao027%}3Kht2
z?_YgWEmhegrn{H>4b0v;=Dsg-Gq#kPIb1n{2a1OVDlkjyG<AslN1*JF=nbJJHK}n1
zIW(+TxV9cp=BmMfMk3?l`jz>BqkZiF5_PR=Oz6uyf1|&<6)E)y#O~Jmvu^C5Nsg)|
z6-(t*Rjk?Ucszw=EM0BnALX3u8abW%DV6ELEKmFuM`rAN=-dScdCy2W(otEHap{gb
z?)cD|#WGR=l%$4$;TET&bG-9(qa6EsBVIZLAywIGh8i%OYrb?xE4?v+02Wq_FqMXZ
zJzYes-|Kl3wQwOSihWFRV^qZ{EnstGlF@itEh{_z@hn%MSNac5w2fQ$B(q_^Pp&*S
zPkLcPB(d(tBbNps&q2spj^rCZ#<Wn9kRodP(T0tgfq@^UQU&*&E;3p7&=CUbmWLGN
z8lr9w{cYwN627WgTeJD#$)vlNBPES~$V>no)F(4P4ic9H)*Ji4WpL0P3~pkc4l1r_
zflRr(iTfIp-9Ucxe5{}^YpZ9LRsy+5U@vPXSu2e+EB3)OWG)o{3S^`go!6oop0V1C
zBOS@SO%&N%VD_J{ZuJZmK8z~Qt{>#T5n=Yz%*BW*Jg*uA`H*l`!scnkCmH>~*s<I$
z_Dm?ZXDmG(sj_*i4_3@lCD|sGRv95BFC*uW3b@&bs$-f}mM{eXfvqk|rnVBAo!|I*
zf)A|^H3$5h7@`SZR~_5!>%BRU)btQ<B#nRYN1X>9&Wg*<%MpkC?i)tGAczbWXSZuD
z6MfP~kRgi-6E;MzgneYl9k(mzB{@~7iHPOBADF%}RY=678Xd%x*Rns+s1UK6)9l2*
z)}rc^AS|)efn_K}dPU%4`PsFxKj?MQ%$i#+w@|_fniDnl9FGt{YVC;uT{2vee<Sg6
z6huf-=T_%{GKMrJNef_LC7A=!GANeRDi{tyD@xE~yW%+(%rEfZLuXq^dGc_FW0bEg
z-wNK>hGkgz@|nq=Gk%=9vt?`a93#~PRAn5EwAF~Oda_}J#`(;(A;((Rj_U50Fdumr
z90{WAvVX^I=PPKtc3;Z5T32YnB}7S#0K83xl4GfQsfPpkF^ina&kpyyxOj5~6?~lf
zI2{&7EHh6a_(~bPydOsvKPp}Ep@s{*DLCaDabBL=l(570;Jma)4U!Rz7uyveaG)Qg
zEy#kA#%rwPQCG@Zx8EU@3-LW$sijWJg&VQ-iclT`h`EJVR)tu-Yn@xlT*Tf^op73q
z3PyJg{?%1W>D98soqOcIE)F**y#^uAOd>5x-F9s_n>La;m{sWie$UJlwwP0T2S1_4
z9~R2t1|)R@^rsJAcWH~}!oBNlbWN=3yFT{$JVc(zI{%dcySGrvBtZcq4TGKW%zK2_
z+Q6M98Q0*Z9UtQ6el1PxghMiWv$`Ev+GGxuOnK7)U_j{^qVovNGZ(qXeopNBf{BxD
zZv=V8>pA<tha*nSjDqNuxlBG5vmP<{Pm(4Q9Q^%m)L|>?u%<VN@9|fpYPxHYJ$hMO
zuG6_`scjm(Xlc7FoFLi?@=2g#jg?6d1K0IqaS7(*2{&V|)mx0fnFp*#i76wLyRsEb
zArz~yKKZ#9S6=)tu7Y{`CXrmqi$;2syTHmP=-P<Mch&C*k~<%s3TY-G{{uqLo{0XE
zaH=qPYqX^38e@^tXV*oBoWOU2Ot<5@1NaRk&Byg5jIUrRRQ_5m@;C%CcU!wKEovNE
zA*DN2w(dyc2~-n^rRX6%4rKS75OJ@%kRH`hBkq_Z(5@FOrpQD0xPcM4VK+pStey+n
zxx|xZXicsUia1Iy(WWCchGvLwEJRDlN;y=t#w+;Y;he!l2fuvFkAo+^kr4R~nS9qw
z62gH1%&OP9>BKkDsxcx`Nje4IoIPUv#F+<#3Vi_YO34>HX^KpdzgHoEBN-tF@akI4
z;qK)@`wC^9K5~w4WVbv0YEYF<ecNnlU@BQPbxa~mB7%DEeQ9OSl`?$m8fwT9&ZU!L
zSn{ZmZH2gB6O87}fW9x+iD(zuxQjrVEaXWu4m9>><L^hDvCNi}$&Ps~l*Wxf9(v1y
z;iHeu??q6_;1@;G|6NrTX54E@?Z|lqtnsF{o4?ujoQRmqzw*+m*X~!4%{xG^*gOO%
zM!D|YZUA8yDFQ4@O6D`x)>*szH2eUjr<Es5{p$&_fQ}jHp95T9iOHh<@%z6_duz|}
zsqogY1sIuNtXWUELlgnM%?ak0o}RP^V}cgf%-(El!_T11)CFtYuMOP1jTpV;PS+vT
zPSOeQ+&>U&yUKTH<Cfre?W!)ge%V24&u;^Gyp*iAsndw8isym)SvKZYY45_l8lXOf
zJu6Bri~a{dN9>wPGP$DU`DFwj-?%Z;4$a9UD)S@y<cKeMTM5ost%0s{OEsdabku74
z-NeDj0GoIu>8gprBRj{{jk9Zv{@wnD;t4*5ww<_Z*({k&M!?aEB#8Pbc=#Y*>T^Oi
zAL_X7ge2AMC|l^H6-ex!b{PJxBKz;|41Y%V{O6BV9+lT~41Jvo84cU17O3D%J%9)N
z#L^C(=GhB`p4wZlh`b`W{m|jD%WDF}ad??p4u9?C90%Kx2IpyxXPn9NF^fGsU^OWy
z0SZ2#f@ro#do&=3Xm|R)GrEkmZ9--|;Fx=vIp*B?oeFNPUH}#ChF8YBNtHz?=tz5G
zvek?6rzq9A+R<+_bRX8JwlDK&yMWX{l;RKrQ_iQV^b^~iW1_1^OTY8{TxXwk455VT
zY1KF4YuX6%(G6bVeNm?5tt%$9S>rLYE-Z=m$k#QH9|hm#nql1X-yRln<o8C+QyPj>
z&axJo(^_vm+CJJepiJE&G&p<+Zv@Mg#><2g1KvWoVK|1s?x)BjgwAk!WQwGkvh}iS
za_#O|P7xP@@dj+wfiigsWXC`|(t~Kuf+pv!LX}QI7v2;@npJaS9ViYYnPT@N7uxj@
zi9*}kJEHyU&Hnu0@gfLzK$g3A#D`jHvQKMfv@-QxoJ9&XZB{>vB7;x4WMa6xq_b(W
zx$cB=5&H=?#IB?=Nep-Tmal@AY*L?Ic8c0~zAcCvAXb_-sjMjx)UEQ@2G2-2Vt5Zx
zU{8az3chm62A{AX`fGIq^td9b6Bd7<Qd%@^fOFPPuxujU;DuW^o3tdjID>oZciuBR
z!{=cz9;$|S5Kc4W|2&RacNCiT>wtn$O(TP&O1sx*K{Ia|w_FS7B?5W~MY-FV^QioP
z)~0`_<gX=h$?6dJ*9540#67dC^^K3xYQNxw0`#*dpSH_)my9Y)-bBB^QIUgVV1eB6
zKTlFQ7!d2n(gvBE=}L`MOPVS<ntE>e`S=28vmT0T%Zf0@;`_?#_vPQ56Z>KaQXQU-
z9}>ADU3Dui6#HT&2ufvc(V`slM-Ti0Vc<WA!QBhc3)RiNlnTv{bJ9>XqmXNyj$;Pt
z{-~?>Pd+I6YlBDWMr_r{T02oX=ad%gh2Qm!!BvC5duj8&8s{$d@Y&g>=n6s4HU<sh
z=Rm7IbaBGtUjO>41_g(eCc6q#bkY+0@vKOviw(XKS*Gs<A>!uvqu3^{r8xj~=>BBP
zYMu(8`sH?eE4jzF>YMcU!pdST@Gs|G8`JM|ueg|?v@uGRbDhxi{LkE4jGJZFUPs|V
z)n}Wl(ssX-M23D7n*&{Pn`RZ5jeW<8VLnImi_C>6Cn}?Ln^oj%r;fzO=*{=Mm-Mws
zD^UPSoznra-vY`m@bx>n=OIKbLakf0?u+jei=4k&t!G$^YxB%JVXATjt9KH1jCQ3(
z+<tA6kIcl4dFY<Bx$ch1CS8cu+Wy1%9j*n_f+rCwHcc{)UqQ{}HPLch9k+ARn|a@)
zf&f!%zDmyA&7I%cr~Ba3PaK()Md=ikgn_C+i-|@+HJE(HmP=>TYc5zAZOc@FfbM0}
z-EkNx3>O+rAxqwLn?^2U;6;H@8<T`^bPTX3?tTHezpUdN7+00WTV3j7$GpY@{;E>@
zPBBM)Xe!5J6CCWkwo5PkgmhqHSbUA2gZ(z!;tS4+arapPc{EN=4s!CM4_{fUz$VX*
zsqo)a-8#n2fpQ6mbKtxJ7;vKRpS<R*d}($6=liepwr>=<l^GYSfS&|X1^k-&clNcJ
z2eA$e1Z#<}9??(QvWmy=^;)XJ!fX#14!N=+YoHUqji^cFH;f7{-F{xq^Zs?A*+)CW
zbuV_aRZ_1+wdPhO=j546kz1NzAh#xSY&V=wS5W&_jJS%pMTCw5rwvlW&%lv<7ZStE
zZ-Q~-6HzofVzg=Pm9-1rbCLSslVaN>i{N#STo36X&shZdAF*W+v;IAZQ)c;;F0XM8
zW^2GiU3pu|r(hEE5c;D=$24_zjE7J@6P3jH$Fm#u4BVqc{kT6(NdprpN~c(Bb8a;C
z=wN+Ur8dm6Uu{bt)NM+#1U`Fg@A5^U?mA%*)j)qO{VuM;r%i7U-r3tE8bADlD9Ed<
zF;1CSW_|aIQdJn9*l`)jUSqg?tjaPrVP(i#B5f5J2s(g{fsglU>d5HChX07I1i@qZ
zjA{@iz|#i+K|sF0B{XrWy@z~V1oXX|=BkA`b_u*3@+=_4waI^m&d?=9iH_nCk~0`%
zX!%0vCphPoX~NckhL6QpC+qlAKJ^dAv>G`zDvKe!?#jnh1enWH-zto&swxpt+^`ZP
zYLeHmuIL4vn5fFI$?E9nO%)i%S(=IT4hi^(l_4aF{{m~nx!A)~EBEJ1@j{?2O@pqy
zh`ig}yxnH^7PB@x6_!#}^F@n}f*BciP0))t^sJ906HUK_nzx5V%Op7XwM^*zG<<01
zr5M-)l!b%Mu!QaAtklqt9Bf0R1|&j8Wa|odnB0|ZC9!8%GIJIxPQuYI(<2g?L>cIq
z?i%icG<L%;CCj5a4hx?Y-S$;dT93Q&P!O<E^VO!CD(I6Xy^PVwF*OY;P6o@c!)t2-
z(QA*%RvO4DMGPGMY7VaQ7NI~<H^XgbV{%lH)sin{lZfuQ!6Iqt2q^w<A#6b+c;gno
zl~-^s36X4>yMbBZY*S0p?UQVt*7$&&w%hJmk2n^@h$NvzCTE(z$h2g6h5mQ0AYGxP
zJm04`zS+oo&YLY`PP$n;A505}spt_XzWBEk2I3p3?G;||t~w{~mICW_lDyl9UGmj^
z&$%{Wfjoc)*Z(#74*}k6M`rpw-&&3(XO(I^6OAAjThPpnUDZ8WX6iC`sDq!WC>QW1
zR5;spQR@trH*mkT{~`I9dgz*4MJK5gHM(%ggFNzFhG|V`DvIiszwt^yhv1umc)&`e
z+MyKugUJy<#q0;~L;E)$GUm~v7M>34)Go+R>Dh%5J>$U9#4EZE!m~YnKa!T99p~n{
zVe{2Ni;qn0cRCyxEP}&xT4F>`e@?2NO2YpaU2SBi6V18NNa_=P?T6xazhg$O-fss{
zIFyK?Z&ZajF&U{_(3zjy8;e`=CI$k|#XOV~SgE>@rYx4Jsk$+Eh@rqx06^It2%d1h
zXlw%%<}fBQH^-}hpGz**Gtt6}aoArt_!(nsaUwH_z-s75JT+sJkh5RM>(QzPcNJ--
z)fXL)6J#FWMcsIcmP*4US=&x?HN0$CPAlI8R7ql^fsf*Y`Eu}sQXR95bCI#5t>EDs
zqDa-~f8|1EUu3)UT0_Y@)z(5N5w+i73Ad$L8sb-(TZaJ)-vINyjhf+e!Y+J)A9Q^s
zu#PQqWG9-;`veQ_P|l0oi$b(!j`hNq`1aUGfc(IqS>XAr!FS&D3>afxoloCXsYg~V
z_uDyl7!OF{1kyZ^fvQpaxss@+wAP9{`?Zr$$}=mEj!Qjc0S5G10IEdRM@LduP~V*F
zLRyE!<W_CxJut{&YsHd9w3L<J`v#yFg(3Yv`rYRyV4g}9$iUImz55+jb7@<4m4~VN
zl+9(wtwH+eCE94Mqb3%}+(*5HWz>-}b7GMnJonhN>leBqKydLKr=Q`L4KR#=-jBLO
z+yymN%_gS~1ny>RPU^tTnLt9Y^(%mR`uMiIg{pOHo73(mO&<zXpfAxu)}Uo$ZjW-+
z)c$|oyE^UD4^uAl(hpWSkEMsygVu0xVDi?Tx`SmFniN^@*_RM&Jken7*y>{^?^OH%
zSVyE%;bd*a2dA9u3KZKEVu!p~!0*KQ=A^(g;6|1GBRyE?0_Hn1gp?U_b@_9TK)|7h
zIj06VSKFzOlRYhoM$PZ4-nge<H`TV2@*(tcz5G2TZVgLY<!U?(0`4!sy?E0)nrM*N
z0{#&{%uNM70)@uESTI$@t!ok+d-D{;1P3C%8?Ze+pT*4r`=R3K9dL~+g9%WVKuRU?
zGlCnv0|LaNYFpijU~B)hUMAVjV<8>C`cR|Sx5y_a+!x$;pFIW%S@lB=9o&b&#;Q2u
zVAn*uSfDRpqL1-WaOcMmn&?&q-fBBY#UM)hX|n-VueYEz!3d%=jd1^j#wJ#arNCB-
zhVM}iCBPyi)})^EOpM{sxS+jVszi^;`h`$nM$71NQG?C^oa5HC<nI+UTg{WynUbVq
z3#NrlP2=AGd*D%dJSi$tL??)|C<EJ9=E=8b6}D2BE=I{@?l#`Y<7pqDh--rI23{#}
zmdk>d!F1Am5{I3bVs`oLJxnMQFL}Ko%;Xx=f$Ub@t7*-e?cT+PHpyG~g`|PF(3(MJ
z{)tR}d|R~~XYU7h02x^E?bnQa1TTRnLpw2!<MRev^1??IjYU;5{JJsfYc<p;29^;#
zpi_qi6P!lAysMW;Pvci?z3idZ*I}+ZTwSf9v&@l*i{x|n5^F1x0eB!r0CH1s&CAwb
zZhDI-EwV^z<&^0om+1bHz-_%O4GRbs9pPVv=ooy8Ycz#L2JK;e8$`oYfnBihQNHa#
zwJ(C*%ph{Y_*RS4rWx>e?Dr{`{)&Q}x@<gd(H+lC+5-XIu|1XiC)4{to}?I+L%&VR
zqKdDyzYVtww~Rf`<1QaH*Et%Oj%cRUHlSph6jf&m#&U)T7$P|DeTCN>S&}FH3?RfW
zLK^t)Oe8tJ=3qA@5$%{`og&3OJr*Lm!wyj1{b=Nl_F?SAVAi<0E(Ker`+|?aPcn8X
zqgqd;hNjRhP&6dNkS7_3`QZ_Rg`pi&a1^~5$X1$u(a7fAES9k+3oDf`rTWO9i(YT`
zkEf-9hqqJb+bZDG51teiG|4>4l{ZW!!q9FXPX!;Ie3tTDRp!@>y?jPkqzCmWWs<zt
zSY!9Y&8=9+8pfd`yN6;)=r%M)>ZB9%nr*x<XhWBh!Iks~wskB3YyLX3Tc)9<H1&4o
z0*}|B?b!1x$ajT0^5;iip(P?>tie;jRa-%<Sf0_oiAQ#sImF>V&oPY$$7A(U@3cxF
zk7Z^%g->%sx7lD|nQ<TCoA<;!W%6RMGl@+#0q+7mpp-qek4Gc7o!=Eo2ZUfI#XM)`
z^Q}-=eqFY4^^M98m8l1QlKw*O#{5S97>fd9MA}koCe+4m87A>Tk-a6LOne9ofxM&x
zMQ>#O|9IqA3V+P4NN#OG>?gl0b{mjLydwv#&e1u^knFG)j(}YEyPCm{u7iHvSncun
zl_^Jksa8TXJT5%Q1j-cZh3Bpy5fQ^Ggk@GJ;ZgZ)^Z5!-DBYG9r{fdUnzPgHz-C^!
zSshE(v52J_a)X46GbF+k^vg;IUA5KhKDU}N&C`pBPal}tOWpnPxuf-;t}iw^`|k~e
zuRL#`cS)STf-*nM;N7HK(F0qE=k;=^ruXFd;s8_b3b_n-;j>vqGGj*!4>b8Z+n=&W
zv>rgTQPp~B%?|WG4gs!F%0%xJmbtD)u|BL>Nkk`*P&-uooogjXw+6OS>PC*QR17QI
ziCW?4$5L53u8g*Jgi^g|25qGb?Yyi!=?R#6!byOwc1M9tl{j>`_m9aN6Qu0tIxbMG
z0VDf_-iD1g4I`!)iOGw3_*wYa5>}8Th6VJuPbs$Kl>9hIM58n=Qfea15IvaM<<W?M
z`R><l&Mn%%Pb`GyxGpGZYFO*MQ0MIa^DM>*>bm@?XG9P%>=Y}9P4|)bZa;NOh*dbx
z-bHo*>bH(1N+Y&1v0~fS{a&}hcJ1&q!<70C<o=98cz$w0a4GvcC^xG%zv!u5y!!x{
z&vKvOC&!D`Nh+>O1<;OYiy%yi?{kX}V5O~{`_N11P=CPza7~49|L^3<?eB>W_wqGH
z!_sA~GEgirqd+)Y8m26vJrNC9J$RM<$szD84nrIOqsEl+lx}+Ny}*G|P2Rv<y3wM9
z@g;)oQG-ioEBAw9U2GuiI6xWwY18kxq(A}PMSh=|m}1ne;YpDfuBvy}z(6)Y(2Sw2
z4PBGD1xG#~w~09aGqj)BOAjYznlRUhIwmhX<INvbwdiCXN4?E?0jlQl={j1GtjILY
z<d`BZf6SOs7Ak!f>|=~7Ls?><K;{qb<%Q$o#xMDkzYu?Ah3k-B@x!Gj6hy}T&+i!~
zH~5WZ4-YQEH&1KpgdexB^2$5t^dUy$%!Q9TUvm<3tSRxr38SR{a4B`BrH6%S9oSIj
zIa4RJagsW*Qx~76b8oPicTpVRs<vOOs$Gq(_Ar9g?ZLVuMSyD5F+|(-En#~2W*(u%
z52|o*M_Oq8YdYADo7YoJCvA&eteI8EN&ip@-&vB5a@9be;HDLj-&rn-n*)XNuquSP
z@6^o=v=ns$LY|Rg&JBgL8GOlC_05{YXmB;tzr3G>t?JJcr!w=5Kz}<R6;R5L&0Yg9
zwhZWChGPFG>~BDt7(0pmE`EFXVK$$A5>0qSv2Yq~+(8i$K)`nbxYfp;+ArpIWc8m0
z!U8x?nM`DpJ8%E?$}M64kWI71yy$t{Bix^)_I*$Kid%iU=2l4d?x~2GpA93309Fq!
z1llnISZAA&O|^c=c<l?OL;u!*c<hV>@s~8qOW@&8@p2tgN2_hy7_fTO3RzA${S#9m
z<{p{BOV0ZrUn>$=pQ|BAe1ciiXM?`I8WGM5daqErps*DZ9Nccknz<XJV^_b~lPAD_
zs+~p>Tf^>}Y$aM3uXRZTePI9EsLBVqx0L3;_&gpb&gwm+7&3hYR(HyxtKM??7`;aD
z(a;@38XssPp1MhXomGmy+zt^J{TIU9R7d(O<kqzua-lq*@rZEtl=Vahp7w=Pt|*W)
z!%EEEl&KvOO$k_xJH;xc_e~Cah0zG0Ix!k64{^vp5mzk3cyO70xD|R_V$?g>XZ*8-
zxu%)<l%%09(M9((wGvvMS9Ra}+B;+gd$K*v{S}vTdsM9AUS1Aq3<4wX!}hyz(|X6W
z$^a*3{$I^oe*)ER`{DZU&|`>DMnN?kfeL5Q#SXelE}<_RX>l}2ed<>|zmoq;`-yP)
z`M*xGzVy!omf6=$C=w7!*OuS6u}mHjc<;m_PySlVQ5EScWA|XyV5o+4TvFlUcrGc=
zhd|TPXHdlULeg`VVHv@b6<qcDl#KKjBpeiS*`H}P=0TNrYq3wJv$wme{>!9Q5oo(I
z`zi?d#?3zDB4zU{U)5x5*F4HPLkfpUMHhDO_`PBA547U%vpC9e?1y5kFhF8avl7t|
z3@8x5>QI<ZJm;9WY%XHQd@M-ihSAgBHDQtVQ6s2^0EJu8FLj`fn8XK0xsQua>ryA6
zj0=vIUONqrhP0S!L-X}nR6~s!^cHZoP{?xvsIS69W-Nn51`Vt{>5JT5F(%vIAtXEK
zx5eXA^TLRGV=kDb)(>%>0yLM-$PhN_(8Huw6h<{-I<9JtRS|{knnEnUUtXeGS3|kY
zp5bv_Rhsha0xEbj#zq>?u?g83DPI1Z79k(p#6gezknC+Q-3I3-ft$m^Wd&;^vT9bq
zF&u#)Me4<K;@8^0jwgqwH&TqukS0+R{ir}scN2WZ+t0iiK|K)vZc#;|GeY9yxqhQ*
zl`WEimmpJ12n;)N0M`@wlHf~|PceCYAnRV;TVh#``hn!>M`wS@1*Uj1#!A`|6oSGq
zQj%_QzXcx&TR!4M!5H<TqRTjWs22p_Z~;GK(z~@Y1ht(sslWCWem6XN%fkS1C^|OM
z%rt~|{kyi0!~(|8!?P7L#Q3}a71xSTtKH4FU+)~Hv~FOkL@lyZ!EYO3g|1y7#VddQ
z%KCuqaoo&ihT4okwu4f%@LYyUkHKgz0ZvYu(-Rg+hXLHUyy?1#PBPlHJ8g<(g$5$(
zEV3;BzqqeO0v~JE>a+i;bUgF{&}am#M8HX*%>@*#lr+nqUH2gi-3G(dLbz`ZUFq!5
zFv3&Q-cF@DE?xknOd;j=fUCNMj+Z1$6;|I}#mNz=Bp8pEE|5KY*mkV-fPZ5CXTA*i
z88PFDD2t@r#z#p=@DsS30>5RSOhbPt(hPRy5(a`h8LDO-WG7Wylgv;IZZdb&smc6C
z36Pj`eT5Eol0~v4wjd)`XibOhgzG<Eu_2fSemA3&d)C|snI=-iHsy+X7m^7Te&Fl8
zB;iXKgCAV6g?_~v-<JSM3=2r;d!eR$nAbjrcbQlq7-rXuTD9PG<9vguaMW^+`TA7*
z*;sY&=<_F(@Ep&Hh3v^svt@-uT8PWA7>*MGwd5}<r2+bVS@LnF37|%e9k37NMK%jy
zH?{W}ltt<{PzpTqApPdg-tk8~C#UjFLs|QX?~FAsZ_|Rzo~WOdG7>I}qEv*~*NrA4
zUeL^5qwZBqAZ7O$8m#u`H(LA&6AZ1Lj`@B5^V~4lp>xLl^{!K&>zX?!g}k@rWmr5_
z%!g7RqCn&>$<1q*<Gro)xp(ZGfc`BH@|o)rUtLoauAdYE0q#AUBIpdImsktQcHHlt
z?EF%~i3=ftzy}dn`H5)Zn5{-g_ffa8vm@g3#GcmgcxA>yj#D+#FPy5=xKN<^j%TtT
zALsgI_{$`68fwc2L1n8DNW!8?#eLAO9IV7EcrD09)<qk@lpdOn!y+w0OhkQy3~pr!
zdCkg`&eDWVp`9QaI!9{py}tbWTulLCeU_pm+*Lq7ZcFZ9JEa)Lz0h(EBiU$;><31z
z<eH;yU23&=*d&<A8Fl+`!=|G&f7)7acVDdk9IHsiJW2~|XwH?jbN<ECW}PhN2zxLQ
zCO<b|WD10^Ri?85q4YXYcfc6;qi8!#s^%M>t<vW+*I!3)?UGIYPoE5eZz#p8bS;u6
z+WKo^3rtXt{d~f@mzRsF!aTGsk#_3pLx6Mv0hUQWnN1~vd=_{4Cz;|>ENES7XMrWy
zFhcg?!7Jdjo8u7g>*$8o%@YNa%rbrH`>o6M<kdjF{;ksCOWxNOfe76C?0hydFX*VL
z6@oQnO-&S!G{R!Bm0%z#7iO>$^w&u}nG>SQAqtP>s~Wmou^27Rrg~ki-16bqH7TyZ
zRU?4ur16i%HG;kriDdurQDcSO&GxnKiQG7tW|U13&Mq64y--@%|LHQ=4|jc;sI^s$
zdE=j%AZa6tu~?T`8`9!*iS|f=tB6ghY&Qmwe1wrTr6`Nusd^m$5yf&ai%t7MHVqXn
zbr1=Tti_XJ51H*VgO8t&^d)VT1vfu9b?89Z3Uxg1+P`(0xy|oc$E4b1I^<-kkm!U!
zODL8uLOjAwp1Z2T!3Os|VG1s&Xeh&)a__CWFSuSA9@f%eS5VOE)u}_qxvPENXg^|w
zn7*_yub+^mTnj?zF5palPG5Jl19W_)SYQ}I{nY1FN49s4pKDN6W+UfRyf7Yn)XXCE
zh0Y2M%}q`QGp}*KKE@!Hsof3YRNcWv&Ys@6<V27cEfBUrz}zdZgY(~po~WzB&W8v$
z=0BtW+|DA})sFgBXP!}PEh(UMRag0_GS|DhAAzM+RFd*$2AxM0hrGHoy#<EtdTm@T
zSxu7T(?df>Ksnqit#GE>8Ji7OOn$)}M|N3yqtG@so$$ATY9K(i_9I|eGDiFu41;A8
z5oeXsv2*kvism)^>BLbOIhZKvBc|pi)rKzd&~h!vCTK4@rzbKEWTbsZ2s{xO3~`uL
zkwM8-0entWg+*bqBZh{=;ApEVRu|U1)C5Sh^64ul1HC<GTkOfW7TGr!aI`yX4ExA&
zCj^iLxf~tBY<(T3=U6i4`!VX23~xbgp*o#L-f+%TZ|2ha26B$STtuxGG=eOaV2-bR
z6{**R8GXN~mmNZ;=LQzrl=3TEwN%dQE9ydyMK@jvXR%N$%@<KzYiI9eW;tds#Fq_k
zopQ9wY^lQ2NUmwhws{$_PIb2lY|&35aZ)|nusT`WK&GU^a@2QCPXa_^m6@gH9Edo-
z{Cud^5Y@+P{X!`-ZZBXeUR;k|pi6SWYVdI)aDc)x%S^T%!C>J0C@bTX{lbSlks%f>
zuyw-~A@SHJQPANQa|SVfH(Kt1XO)5_mYBy)m(V1i7!+`zhhuS!<^}9=C5kHG(0Jr7
zMUCB)(=RmJ0-A-bW0`d@0HHh`{LD^}XZEJdmAurjysj5G>;$0^{naCutPj1)_qMlb
z3M$>7uNsU^=nqu1ZNxT7A(NBnnNKhDhERNU@AtS6GNqM0AeGFxVKm*&6?0Ri@1O++
z-O%3<^h@K&F^0i;@}?*&)Y)ep>mEQF{5s%7p;!{*LjgE<MHjq@j^^)H0tjlB0lK;1
z|K~tW@;CbE{Kz~v8eNjhGU~N+F7A?Q=OUELvrtGfEA-76_0W@sJFsxS5->g#`TC7P
zc*n~?NcjbZ%%r$C(%4(+IK`>)9C<3Ji0u+r^%(g}a*}8+4@G;LfZ#U38VI^~?agtI
zhfQMBG#bN)+6i%#50;wCv6?E_Qk_S%&#JyMmhxQbW^Fp7!LdlAaL!erAx*Ca<c-HF
z6J1S@+NillQW9OdUQAo6lW;QdFf@11kbo!LXzOv<b5Ukv7&E@7L{XuHAYq3PGx!S?
zho>S1;Jx5q<t6~akf<sDlMs4Q>kM5Ap)~wt2y{g{=y&_P8`$EwVbKBg1B7#X8Ct?r
z9I}8J5db-aw^)U#oUjQ!mwHhl6<MOCFz}Mb9=RZ}fk6}Z4>;*|`JN^%N<yt~a>n$h
zSoP1W49SEKNst|AYq8PhYWF2)+kgi;=zdQ!v)K^zHiHDWdh^@xb;LqgkP;_1flW4C
z711wK^`=^>P1GCHAGWO!MGjD7yq$8x5WDDSwJDlFfHg?Cf7MvDunA>FJOvMl`7Hk&
z3~Kq}$v>m>*XBz)aTXYWk9j4DyhKX-NI$(6VhF-FYL$45a6cD`=MT%*ujwGyO9mO$
zT}rJgnoD#DKE5RlnOAZeS^7O{K0?lR2W%c%Orps`YS99Ow4_JjLF1OiG!9wRA=RZd
z7mqFuLrQB6Z11s<YybYU=;>K_M5{N+eVe>Kz9mQD(+s6o`YlvMLaSD5>A!q5gahfK
zflVM9HWcSljgk)glG_OVhCc@}4{ohQ3Wd^T`LgS`%EoIW+!T51wChMSN4s^wfU-8?
z;-DK4p-(i`1O7=2XmS(9AAZbZ7K7=S35fWr0B|b0nKj)BwUhHej{6p0_$X=g1R%nH
z|J#EFZ{P*X+sZR2?ScJA3ea}O#)Z(^9+cihJXTh?k;qEeNT!e?{%pB>ti27mjtGQ6
z7JlQ7wwd!%n$=RdXbmv0ibkKCeN;O2s0|REkLz92h?86YU-*(ja`>RLxW^jp4t>KN
zfd=$}{Y}5eF($ElN)UF+Xf-;Jq?c^zo8$)CqTpH4_#Ovpb8HT4^O%02t1t2xt|Zwu
z4R{#1j#eN8a!!@YWOJVmiyG>f3^}`_jn%nLSNJ!d{mO9bU6E+_o9CQc0fm+y69am>
zB%o8~+S1Fa+B$^Xf^+y!ZrO%~>o!uOdH<CzB3d}m6yDK1-#J8q+r~YqtH?9UZk?~V
zzS3{LLni$kX{|BfE2kvvez>m?q^~}9QzP0`r={olF@t^`expbNvC^W5Sa?Vyfjlh?
zl`}d0Ec-iANK)&B$Ix>Hg6c*TR5DrfjF?wVySIx9xwPtZWEf~77|!q!JK1gwO51*K
zV3a=4g%#5g=jm&Uri+2Q^E|FVl8cr#k~y2FHuVeg9<}=$$vwVi_ChoQI486@+r-R`
zy7mXK3F?VZtT<a{Gi{~-@kfj6min7`!2|vNB?@sJIi~A|D_*cNU+oVJNHGGwUv1<C
zO1L1~QqRbr|6ukT*;<Us6_0^!A%yZ!P*cza9G|loyS2Nyg_!9FTSq62{hO1gxLO0g
zZM~~mdFC%!T5T!tvDThhbu;5%$o2A@uMm)+JlY8d*$t>YZsHcGvaCv_80S%XeLWv9
ztk8!G#?+9<YH}XdLVvX!ba20le^lBL33QEXadb1k!$qP`8m`dY>!qj3#>5ngwK$6W
zk3M25IUyM+`64-9gWzX;dEC7xX{;XvRb_%Xd&|-4Z_lDr6Iz<-EoHx2218cOlqs&V
zWa@8osvX&9%=5C`-?&Lc`f3&D#SOy2b8I4lMf(#-f*!HvXwUWK_@eapa-qN+yjdx7
zb}?}BoeZiy=R^l}OHkOy09?5;BgdJz`nsN#Z`7>opzckKx~dbBG#Vdy-@q}yZmTN`
zfs{XcxRa4eyFdLa`|le*(4G++oLC`E6X??Da~>_y7g=hlHCIQLU91qXuZU<|U6*Kg
z-yDMahud}$C>$TM`fu?}6a6Wzye8@xM}87lD+`^PiRVdta&pY*hHwoks&tdrg8gU@
zQ4JP-Y$(8~&;TsiDI%uhbhp2H{c}HLl$jRZf9#9N@N0*1Tx)hxy9Nqe*DGNpMs+TO
zadupD%ADirbHMRnA!ueYGu%G_(u~^-Km64>z?|*QpQW-1hsOg#F<UqbtyCrE1r-pJ
z$w!9Im}&Ktmc1K|-d1^3S%}e~GPEv$vj_^svvv=~N&AKm2IpG3&df(wfB-=y3C(sw
z26T7b5fytpSFVJ6z?CgFfl6cpE7-j&j@mIK{i30AEi37(*H{B-3pDY#1(rgAKhJ@o
z*NH|6IXP-A5=iKuiL}_esF|Wcj9-Bs>O~1;J#}EMTIrc8K|X|?RRRM=)0T%uis>H6
z3*S3T-z*~OdNN9#NQmS7)f6RtPQrgO$<vr>YQGK+aWTfOgjbqoWhlt%y{{7G$RbGz
zldS*|NPJ$qcbLY0V3aDsEKGhz>?4UDF8|UWgqo#(``3QS>QN_JpbVegv>PVQcC_KL
zL0pqVEM4wWCd`Oo|E$;U+{^=YXpZgU&RAE;WBm%ixZi(Vfyan&8rG5c&J5Hbg)(?y
z&*w8=t<{D{ZcxcNAmjcC8<QJ}Ik?h9GMMq{Ph6c~G6r#;-f17S5FQPcI7#}6*FrB4
zX+S(I5U{z@&pBt_*+#xaZbU7aF_0i>IE9DV#!e2P`t{J0#~%UFv@D-4Kc}h>d}G`X
zT3k!e9D}b;E?uM#lw&^RRPnr#F#39fi(T=f6}T^yUk{Yvh9P(%d`AZT1ZI$klJpo!
zlG)AiWv%0|WZjfCAWh*&1J<RK;%zS3UGGpNajP(A9_cmq#@5#ixb7W^Z0Q128<*Qr
zb?{H$gyCUf2qX`364NiN#wlYP`56_e@*Ukc>0E`ZGv!#7YSr-j_Lh|ilQkmlti3uo
z?cPF9*b1U+ec8R<bIlmf^)yrl?b|gVQ0zVG$(dNP$wJW{J^=x;HXW6@KRYd6KiPlR
zr-P7_^iA^SL33-VOJL02Sl)@_Kr%BWm@hjJF~;kA*O6ppN@uHWNM~hBX++o-`INJ?
zFPLEM$M>g@hJQ3qYrDX&o>uF4D_jh3PbYk)KQ!1;SSr%ZKFz(=iQoeu1UReL%0uT2
z1WzkQNnxdoWA+|B4=Q~!YH@CGnfe0(_83g^f!K}ERi0+V^7%Vg@cXa?3J=+a3Z>v3
z)Lo7+A<b(SHgeU?3X6vh7QH)f_%5A8z2Qby;{w{&#P{X{*k<WXK#->?`8l$JTzZ}E
z%`U@^yFNK6@b#WlO9iiO!*0*>^VtKYva%mOTi%?z>MdR3xWJ`0Y-#M!xEv@6k|hEq
z<N{_RU4ZPL0g>gP`NZ!lVm4qjJzR|S!tU3~R5`S)4GxOt?e~gfjbkSzfd|<kGT4M$
zrD?MJbOpz#<e-SzJqF13z|LhGw*Uj@jU<_{V!yDLRF+UAn`eM1t?n(DY)*>Bc3jAu
zaUL|K`!jxDLLvmocCeQj?5*i*Fn|5eV;E_Ug;e0Uebvv^Q(24)`o;^!rNUWn;wf<Y
zUfZ|xPK9-rzZ#O#J~BC)$AklvvNW_tBxP0N#}?baRux0tsc`V8yCCpWfYu2ylKr`C
zX&t2cQaJm7$g~x;FN_njzBcKjR%=U~TB^ohAQ=>yN<WRXbDa~Fd_TN2DbGP%!w?OK
zhS%ARa5YyDh~s)`_c=@BcT9RW6L{VPqsXlp%H^XUk@8Cbi$6^xUMz5kyJ<Ao`of;q
zoCZ}*x^!|#TMfaaVl8tuAK!YN{n8b;F`YMZv*2v9h9hTFz1Xc&TkA`P1n-c)D+q6F
zh_-mTO5giQO;z>Kc@?)hYEc{$Do3>dP{>TfY#BwQ57hUWSef&b<#+Y$rr%tK#bI5g
z>Q=_xWvRMKm;!~le^uC3uEC<a5&#@sQ5qjX?PmPl)l`@VHYou$iF6L6a{ro&UU%J&
zuX(Za`~&gwz}_!mdb95f1A{sW727$}gtBEs@D3?U6&1ralgh0nCPJIIXXUe^jj*}`
ztfje=FAuYCc(xO_R=e_0OnJ~`(F|y-`uabq<3e&>)k%=6(-3IcNtjAxuC_e;a|*Pf
zxoFxaJ&Qhq^ya>Hb4^olYz#0uINTGdA+TSg!+83inin0@8fmNWFg!z4y*P#9;-d0r
zj)D92Ba_}5bYO4gpE9Kt8^rmrh)X6yrvVaZt^MAbZoII}zFe4IS@69n^MligqD|Fj
z9T^XwWJ6&k(XmYrC$+P&n~wSRVly=ApA8t-8dafzyadPO^B48{x&6r3i;wSjH;$u{
zfA2|m(>W31IrGxFLCQ>CEASA2dB&GBOiCS3uq8&iR8r?jG)q<uhla`oH_Q{SF1R!7
zXJb1FV4r271TmMylSjt7^x8nH$T%0b|K{^>4hiSpkdU=5Px-hpx^WQ*Ei`PiZnCHz
z%Z6O6pOj&C40#kscSiYV{n+Ss*glt@7n#*eRQE)!{<0f}$J3BYi{G)T19~eEOzEXE
z@T`E0x0W+O*?MJ%PZ8ir{OM(n%GFJ<Hc9p(r+f!qg7ym_jra6JX_MMZfy)gCSpmWm
zt43+VJw^AhQKhX!3G559%6!5I53DT5a#NiD<i8k@fEn`(!1<TFo;74GSlYj;KQyU3
z8!+F})DzA3Y5lnGye9AAKj4pPU}-2wp$pGj2U_RuulPYE=0@J1T#||Uqc~|HJYwC1
z+bjLr7cI}(SLUsu{)ib#W=`HWqO4|CbyqBEwwTSITb!ud9agl!QM{+uu0uydSNv6f
zgyt&FM54!P)lER?f0z;CuxCz5u*6WI-}xSg4Af|H!`dX_;>IjignMre2cD+P9$}04
z*?0Bf^%PwSF+FmCW+}6g0WU>Mpdes<;15F(KfIm}liu`rQ{WF<6JP}O_d}sSX*J~0
zfJ4Vpn=}dXrsO&m&~#A{_l2(BOf?+(cE;QPK=!P+!Uljd=rv1>;1WrhNL<g&E~%uL
zlsuPY=Au#C^(!zd)Q9K{a`&Vr9}m{od$9LtCfQtvVDy{XI{(X?NS|yhF?YuUTHlb<
zh$zK%GUNfMashf`3b4BsxQw?R5ry)CIl=(III~R%eg5DNJh?$uu%!W3{!d#@*GLZs
zR}W}vjp-J!;+)=Nrn4LbI|$<d&CqhFfNn2#L+1JiWML9-q8D+k>r0BHN;bO;a@_)l
zZB1jZ|NZ^v&`ZMGROf)N?nH20$!8{8>(Zk}cU_SR!j*YTS{Vt1*hrZOa&<kV-c8x_
zh<K(O)Ah6zSnKV!#*kqovgy^mutjkl;mWYDbv!=nX(&B488l8pm|JGrdGIUyxcK?@
zO(uf(5&lrfpd<k}upg{XE~z(Z+Dm$2k%wGbBd+8djac13WR;7R;!^;~-%c@%YjDal
zfHt!PQ1fdaRU*Aanz5*q8-`FVUBlb^?P|=~ThQKdoYJxs(Wwf}A<dY6M5yn*3D~^O
zf0*tPOpm?V1l+^O%x32q1tUo?E4><}F-y0;^y2elftnCF(z0e}x#-5C!iOS>qyIFO
zyVO&Nm~2ADYM|a`JQS{n`}-1CS&4QVS{?j1)h*wq?H0Q{u5y<wS7^QDg@F7Gs!~Qk
z;*8+xj<>_`Sp+?KJ}4>I@S#jU+Hc@zsEq5h9gg~1XUZ2?5Jh+j$??EDZt?;#>v5Tx
zj6`3lA!3Sb$%9acgzx^-r>&KcW1KF*aKjdP|BmN^lg_nx?FI|X4%Kj3u>dcQCLn1*
z+hS_Zz-t6XQBmU^0M>cXFK?22tH(XV#KK-j&>Snhv}9TS-;JTE78y5$3!S!iyRj7u
zv2TA&><2j2ndsaNU|S&w$kKxR=hHjHv?gA6w_n({uMrCj<>IK|uVxi@&-0K;W`dht
zF`~6hs*q(PpAU956Zn%c<f$kdytX%|oCWx@^Q$~ARSAUay0tRMdQ&w*jz%;o_6{DP
zBdoY!7#uG%REb(iQ<LOoSj!BM*5%JmJ-?h@wCDtixuQM9A-ZWqlW@8<_2?o81Yi?8
zfrvlxWe{{9#TuU;eUTv-^muC7!QfUgY8&T}Rh@4#+QCwZhIL(=CJ*-H1$h3Cyk9C*
z;~#4ttXx|?Tn`qnGQ#wzcE5(hXo`o3cIH_nMWA0apdTjVZ5_L>5B1>P!Fo7LSfv;6
z#Rv&%7s2a`NIpii>ySfqJN{&hMp);R<+oPjp4=e&R6<ukptTat06)X}w`XchG57I0
z$ps)F%P^|a)NZaOGzbV>d-0gfiW#Dg9((yH$P3?iyg-22E;#j;hdiPO796#__U#WU
zaDCtA1FBC(IJvSqecYxjSLec4=yalB8xeq7$G1PzxY99_fZrjOvJ}%Tv5Qp$U<fkz
zaKMN<A!PwFrX7X&?0M|0L`dOI@tpqlU|7#jSf~i_>tuK_^+nWmg^B1wv0%p(4*E8%
z6W3CUwA3%NfD90zqWIMJNbybhrW3Q^Gg!142yW|5{c(#>K=pMKIobo-1`qA9BRUDt
z`!HkpQ6Ei}z3+e*DY&1PfnoT962P_Sk#*-^+YST%ac9$8zf?XDNVdCJmMSFcu&zd~
zr7P2GO+v$lzB4dI>$h%`Roz@J*~Wz8Y8H>*NF^B#{^59M(u3Tmp*O+4>Bh$k>UZz|
z1<q%{G9Oe9ts_CM#je;7JSH9QMbVOrAaUSv@-0llvduA!nIS~_*vTa{N3kwpMX3?r
zyZz@FkJ9)2Q&duGCw@^Cc}#yP2j;-LZ%N@f0A5n_IY@QiiZw*(F-fuVb~-hKira!}
zSb3ELYK^sU5m+>NyjmsT6~3GZJ;1R8&YUl1gL2ZZq_>M$wrzwO)(L*@3NR&Gg0}kU
zJaL1-LnyM^rP8VjwYN3FCcI@RsGw>j4UIxKaJL*KZsKAzXEnv$$*JX`b(T|8)#p0N
zY(-T2pk(E|Fa}c+V8jRVK;CXX4Ku~!7&|`cjB%wIV?Q$yL|gQfw3%z!!SJ~0Ci8!z
zSfG}CwRpwL-Y-h!QM{J6qU$YODeSjzL01m`oT-0y$-q7ROCpLs|9`z?waZJanj|c#
zf@r`oX|}6jgV>TOS2X=vE1HZvKmZ3toYG~})T%{Slxsb&`9C&2ioEqr!y$p4$ntzb
zC~=Nk$j-SZn&M5I3|riTa(Cv!T1|>wxH5I*qK|&H!@(Dbc_m%7T9O!Al_hpl>PyJZ
zPf|rczf``!8GBuc@{i?INf-06)ey%>5L)?#rvCf8M(qSz>?f&2$3@sGyNNMjD0PV^
zXI6U8@DbnC0Y<n52TWXO^c&ukw(XSMXn%Nsv+6lP)4=TBG`#gkQ>6Q%1Y%0Jk%}d%
z3wODYbyXaqN#7H(Q(hc``w3r!zm|v}1B0W&&0Pu7{NbfUJ9<$2LPFcFERRI%)tf~2
z0J0yL=8xP6fWVh=%i_mG_JBiZAVfDOEXZ}dtvQk#cX1^hMeuO%HhFX@cgi3axGv=p
zwik>>=d7E-=fSbJLgGZ537q>-bCr=1Q<IHo*rGAyD3ali>kNYbE=v8|ut9sYE(W)#
zH8D8K4fvI{mC)rLw>~d1*hdcq#b?TntHiwoSwfVgrcU65L4^jdEqX~)HZfP~UgTdM
zhcDP}DZnZ!FNSe_wHMB{lY$90_jx=ov%i-*ZcR-F>OJNT<tl)-@GH@!I@`T!wiyv-
zPHlUZJphg^^jS<`!!+E6>3v8Vj&ut1+gI^%K)4=t1`fPY{!x1v1T(%Jj1S|eHqmbw
zJLIq<F$30|ZKNb12DU)kraa_NJa7y_vdscZ9z*FFu<?#2Ab|(A>odatKC05`iY_I;
z0X<rk!~#zuURCooL#&lkjr+LJ!C<=jYOtoFb2?)al#};AjxLvGF8Z;Iq~Mj*lMt>v
z`Rut^=W7Xc&ihAQJW*5UgL|gxlRu}X&`&gk+hd{jkN;A=69ylEifBbZzy$&ME~*<V
z9q{t+JxIbn0NsPR<GIdbKhix7@rN{(Mf}_dQz{dKWr?MYiq$7A>b6wkA(3UMgU;h}
zzkkd3eewHa=RuA|Sj$;jfLD&v6EdHe#55sHy|cU-=-!*T5LG_*{QVJP1;{wlFEWUL
z0x4ov%PCzSj!<nECp!W6olD}b`(bOd(9-vZOo9@r(4%dSrYP%bKf#!B@@@zd;;WD0
z7~B;9O4VA11Umi}JF3LCMXJ1#yp-K=u({f5A46Nvm<9J;8K6>%wT)9k=0ts!yY1(#
z4*HM5%b&^9u5(s5oLYKC{c|14KmIoww4FoLu+es8=?)OG;aZ)D<12Il3BVx<AtFt&
zo+vVxH=!Si%zY~YKqioVS^gp0j?Egz{>LAUH`Wf5)fW>~n`7-hSYil~FQb(bNSNr%
zc{@yxvEl{eq#O=L-NWmViyE!Qc}34ppK5HV%x_jSEc>IwADT&QG+@S$r`lfC$^fSq
zq6k=a+DAb*UGCd|HKMc=rY87}YahJCS#Tkby8$`*HYP|bFC8^@F}AoRy;2yH`ge<0
zb_!97fn<OmuJ)<c%)|+IN2rt<Jmr{Hey_L>b5Ll=8u<bH$3O$`w5BE8a6AAq;h^ub
zmsX|IU!H-xM*&XwMkrT$0x#{W5<ZNhqC3igRQ-<i3kE&QmmpSa_Mc7X{O}aXfB!QP
z_w(=2{z0f_1MuE$kCDE_%+>u#Qkm{XIc(Hg^0|v-=h0?nRZ}>o!eH^U!6|{Pw#MvS
zeS;P%K%>X|7No&CI#bq5Em9!S3Co2Q$XE|oZ6d0BitlkiDdOOhp8VH(ei=9&A-G@d
z=vJ+?L~m?7^Q%ShS<>J|D>V_z^seVIR(0Mlhnn~2Qq>8UXmXlzGbjK5|L{`TbreDO
zG~|%|DOk@ee<|ZkRr*6Yv+RQns(cc$YTOLv{Q3@(N{vv)DY=R<@#nIPb~{kGUYJE7
zQN)t>Ly^UOjci$miY^8G?0Jd<r#+R4oD|i^JgHpBw?L;6u5iB#Xbn2xHH%HH=(ZU@
zMvJ{6e|HR3??(*5j{GN@b(4dYZaB|5DL-%TF{!bXt3sy^57%}pu<59fh%kjZfT_L@
z8@OeZ6GJ#L+mPA5g;l!nP)h|;MnMq=k$?FK)imTgsOOts3=iv?vJygf&WU#t&PsbV
z4OEvVQaq-&fA0=&&y|BE1^vi0{sHNS@7|~Ld6!jYWs$kd7>L9B(?0v*Sz^9D7}4Ub
zSuz4BslM(GHE)cA(x%;#L8NeXlQ1weN2qSKjL(#prwSSk-b-`C(lt--15eaS^yWvU
zJ!l+h?ul2LsJnqjBcZN0kc{y6o{;W08dh+3@Y{&#4Ls-naieTrU9YgaVg6Eh!7}4&
z;7q8D;3aIsU-mt=C05#;>^v_okf<brjNA)C2)$yG|8OB{i*&}}VF0**gHZ-&AS(ZY
zCgJdy{35pD=m^I3>eRkQpwr<=n<`)6ng^-77<*vjuAXd@zq=R1WD)D<GPo1b)2%=6
zi1Uk8UhwiQ!5{C0DG6?+6|U7o0*;EM-=0^V`_!)KZuXYbFTnNUU2|ZIc1bo{8mp+6
zkBFXXBDd|a3emY5>dcb!{9bPGO+XilDL&feVeLQbA<4~G<TxH!J$xTbs%($~4wyGW
z+m_Z7JYrPfY|!VTJHQ4B_&A=le!3|n4Zj<@6IBnI%D%||0(jeeQ`dc@Y<I?df-2H5
zSEB8=5_8EqhnJR&e!|6gSk)d!C?O5PEXjfAh;$baLR@44!b?S&aU{At=f-}PW?mm(
z+AEqHU_zUk|I&?jy2I8gvfdcM6H#PIiU`CZBHS+YBjHSWWm+e#1G@9jgNn<ag;<va
z#Y2=C4mOL<!VFPTY#47GM~P1C&g%BWuBNh9F+}x40jtPAy6lL%UrM&1Qe>5(@Q*<i
zZWx>PojsEIdY^^prZ&oTw;&M`>;&TZHLq14y1PMk2-QJIT%^!NaL!7r3q-W_hbRD5
zW><p>&C2l>*DHPUqIn)qghqmfIU>q^o$_&N=;{qA)X&_m@5r$^AHC!h%Eo}xiJc;m
zCi;XG-gLd)E303fNoQ|b4H{xooUY_bild0>LO8|k2dc;;M>#WP_kCZ)ynJ|4i4F~q
z@9-_DtM{K%w0UKzowC-Qu<2GvuqgBRUOmL$cF+Zo3f060iIQW|&n1OHWUsydX+6A7
z7GS2_Kd%yBZFe>$PxN}X%M^XDriuny4l|a8#?r%yO>RMmZnU)crS`nowZF~ugzY?$
zoMXg0nxz&59momw<@<lY+m48BJyWji>3c43-jd+$YT_hTc`PP0E~NF89dhf@44=tA
z#7Vw91st97V}8t4=S{!QQbXB;oTnTyj=bZX%MSCQJak>e5{-La_0Hyrc?OTAINGsb
zc)eKmN>62n)CHNDZEDh2ETGsdjKC8XHdzS!coW7k+fH$4ktqz{d1ym8w`h03(^e<j
z=s8kCTmI96iOyz&SWqF1yv3BYJ4<HZLv*Q4kRJHIC_vZmvh8acR7frv(n?WkU#QIJ
z$%;Q?AomsuJKKE8LwaT$Y+7x8hXNgiNuCl9-GBg$<bVQ-*YBEzdY<KUfTjw%@;86~
z{{jTVWAzM;s`V!CC_m`+@i@B)mG7d$)!BM7hc<SWcL?R5%UyVKIn0qR7DE1<shI7}
z_w;%fPSS+kLPDhIKa;%y(~he35gxs_9EL@5K7Z!V-3G{Z$GD**@I&ve;^{=I%Bs{%
znHb{{dP_x>_7W?xlF_KRk?A(5o}LDG_(#OSWRk*g!*6WC)XAlZro8s;0*uh`v;KWe
zG3huDiA{Wex6kpOGaV>#8>;y09ZyTKPw9^51yZE!|CTH#1d?PK%iPd;X*g|LjkIFI
zyU%L<P7S-ojZVe`gH&67m@-WmNc%rm{fSdEql2{1s0>1<35vbQcl}fr>$9jsfY<eB
zz>ncZ1&Q+t(+u7N0y!{jNC7u4Qm3+=xKAN6ch?`_S8iIY@y8rb3sFE{M?2PlNr?j)
z$lwnOmPlUy3<go9MGJZ&@KOUiVC4Jehl8Azu*u}E1Vk);7jjV1A5Y?p8kp?d{%WFG
z)K=#1iA?-U#xN<IqF5Ud&~92^e#5ciuk5jlgi!Q3>Q~*mcuSmZ)3-^4fdz5AO<Jb)
zuHRBew2bJGb$&YdtZsZNWxEc|z@|U~Zn{L%cbQ<R%jxi#d>1!1cO_&JwF$qlhPP<L
zu5_oei}1Px*LJk5B&3RtPIA-EN{O+?ov43-1K7#9oF9AgFWhNzD|p%cu@;X@kOJ4x
zR?-|FBb^cITc^I<4j|KjFNoFq*PiMM)sqY9KwfF1zpbHY&;y?=uQ)=X#54qtl*j4O
z5nc^QOu05pa`ctMbTw6OWil8%kXC*zZvUH!wNJ3)NE83wM1>E%IF;{l=G{mj#6#VA
zdh)AS86*3ey(4ZLm@4Sl8RQ=HsJcd(-YVU1Yo`D!9#u1EDhZ{H+QDk*p<Lpw^e<^;
z5hC(Lw<=Gpq2S{T$JK$7ID!Q6ISUBP0HT9tJW1dh0bQ|HrA;Hy4UvCGABOjz)=7wO
zEBFpt*gH%~7I%D^9;Dw{`yVj-KV_i0mJOSM+AO$nbc1PNU-0Jys{cc~S#Ykz;4-1n
zF3K5}8U5cBOXJnukY(9zVviRfVG?iu1|oBshUM3#{d1_5txpAJLQ;Hi78p}${pD$;
zfTQRvTQces$Al5}71M{r5S7?|t&E{pJE8og)Bb5z1j0^^+JQGzbp?}60);O1pRbBj
zA(~C&eF!AVk<=nwW+2?#&WpEp4)+AAIC2J(cg1dyryqCij)MyuANoDq?@~pEStqX`
zE49=1azj|x*u(KR*v1@SUcpafGS(J%!4>4tMMW+miMd4F4!Oqv_YkdNTRv1QS^G(%
z&G$_VVCn%0chOVV@w3q28<ORPu>DFH;o8Ect|6GYtxR*vvQ-YVp!Zg%;dKUgurOGz
zMsjDJu+`Scc$IrhnAX{2!1+W=IZm%R`#$M~qg_sI+Ei<E5-kU~U`(qF2!9#{v>6|C
zFBMAwzD`DD_28CNJ3_ya0#Ah(OHod}@WJ>=+k`4f+IHeJnXl;ZmB~x#jz)0nb-KgL
z=F&1OkdWeX6iOqw^N)`JFBtknItiftO5Ez0?4xCqr6h6tsf#V?f;P{!3Awcy(iMF@
zo99TtpXV+FEmAD-Q(dZg;9Zq4E^M;mJIyg*Uh6whn&jp(N|9c((ZXbxT%oEE7!LVx
z4`Wj(YxJEv4^Z8<*!Gbem%3f&0EOPpkD4k+j>37Tn5k#XC`i6oM3(@nm2ZBBd<ZF2
z_>^?Z3kA2qiGPewI=2vrY~X;0@}SiGDd%+_BDm!(ZrtKR5W>ktetOIA*zi4Z*kV{Z
z`}>Ze00xE>Tit!<Z|Y^^AWr$(bm@pl5{4La5Q%0)2}>MFp6AYECmE`4$aa$T>kgBi
z`Iar?AewW)Hl8St3<^Tp7MxCE>`mn)dQ+UhcqKj`!<-3|#FZvVdgilMF$CfG>n9OM
zYCHy*yBCkKYZJixx0%&&eg%=QA<$mypEjPO{K!vzJU<nMgU#1Aq?VW;>@f6r*}?T*
z2&+qF=B1p=#<LNt=`p|`{}x&1fh~H~tDiG(xonAh+9F~8MI2;Jw2u#@W@1|b2qET>
z2{|bK@4_vjUg##tAD({<qPwiqy5T3pgL9krgP$u3U==4rcZtj7w<@a1Lm3bC&pM)u
ztU)JdhAmecQsXXKTOPb=P;8<ky>cAUg&%&%ap8&P?$mBsyiN?Sc+lUV_34JAK}c?K
zXIg*i#1*9h0*?AKth#0N7OX0y=TvpU4@iLKUWy0aywnpIC-QtoGSE;E>f)oa;z}2^
zyE5{151ZUGdLZy2TE<uOJA}L(^%&@4&E069fzS92@vXI0EUuQQf;9G0HrIHwEO<)k
zq1yF=83V$q+<xs3FP`5&79OI%a>Pnset;?0BijiEMTYYv*WtJSPCA)v>GCVR(-(B(
z1dI_dCCIR%`KSE2J*5h0BQ}Lwlam@ocSf0DsM;4G?;;?R<H7Ae^eOtvLIEcT-!H1S
z4w*wE^dz|u`qyT<e}AQP<Tp}dXF7~d)f1GJ<GjQW8A7pJ2WW|RX-CxE%@IYec;8!d
zatMVa))eDAZYwi{8lbQ@71t^S_DAPYZBZ~5gf46>1sg2I`*fMtLcoULtIK?$>7DA)
zc098WCZ*o$hqJH!qS%g`)kOe}_U-g0coD9Tb|GUwxzJCJ$DX}rWdJkcRh|mtT#BC?
z;HA%zHoWq3_LKbKoK<8;9N2vo)b5qm5QuYpH-nEz4gSSRVM#sf8$2#->SMdYNCkc?
zzLuAbK(j&Gq@I6$|0yR($;p<$+yvX+U-1YM1)amkwaJu4O97igiy+sz$gl2#|Hd<r
z6+>VVwDX1*wvkkXpZp{;1h7ku8s@C-Zx#hf509$&JftTHCtFQ%lxEZd<;jDPIk~_e
z?)qeYhRUM#v`i9|{8s_Ucp;78r>!y;3$z5l&uox0jL1ck#N-#AO?DIWbqBu66E$j^
z0k-zXj$#T%rGg(%1N4iJ%W=y0s03Q;x@Xb=ZUco?mUVFpHC*d|GzMuFhLkbB3<Qg1
zJuR;AWY395$uB|vucnU&4|pfuHR)}^9xjt_+PpOd*u-%K7rPPBLn2$oj=h`^%Xe?9
zJ*p6L$iBdz2qku-sz|g~A-kJHf}r@@4qbdt0suciz`s^BnHji9wN}YWJYkAKyiU_Q
z*-az)a-WQVZ%iu>t#=X8^)FW`hMzijro7?4*>A|d3MLl>?{@kGv}vyG@E0yF74!T~
zcONY^QSu|&cI8r1YT!!Yr}_D;jl*C?bo56?d}`yNdYw{m+vxxu`KkFi(h$W_Ai<k%
zo2b+UJVC<HCz||I`Ls8RNFc=JDlB$R<n#2#@O4UByOOD7nHQFDmB6=IbR0rVlu2fi
z4E)Tp?49Lu?vX97Zd`w^6Vxwf{2QiAqM+?L-8|4T609wIiqWfrC8?xf3C70u7?|$c
ztpH$i;Dhh0P+?`u#7ncW@nac8WwA-6umWHBI#U)g{t;~Nw;p5Xv|lkbla*$u`Hh|2
z@LOxl-TmmC=@r>xRt}^HXqr1>IO)UrxCnYHqIuYA6m3IL0C%9aGik0@6<rVu*;W97
z5P%gt^#;btt=sur#YzHtxQgcj1W2s&j<Ekdze=XGD|%Ofc4TC1(0p%$vyZRhJ2(mY
z{5S}SvwasacHc39lJ-$=l$+mp+-D6O#JpUZcZ#NTu^w78S8bs0KLAOpgDktA)-o7#
zmJb<R@KXZpoIyZIHjz-Q(sq*ny>R{{_V`_uWklGPmn}E0IUkJR-PWaf86J9>C%^qo
zv-ihXVtXj>-X|sVDI6MaM`JZry%q3WvS4(bms`w3F87q1ZB;UNu$>SHaO66O`{BA{
zhrs)03{wgNpl-?Z5p|-WINKS%-not|V1~ZrAuj;KtxQPCL6`S_M`R+9*lyV~Fdu}9
z??nIqR~cybFC%Q$X#*63!|;e)6@k`}kI9Q{5^Bw`-mrN%JyHot_jRY!lVAE>B6`tZ
zTP7}k4ItTWVx;iBN!)|62D4KjMY#o?3lca0#o;x(!s#=#+zA5z#E}?!t7!QT5lvTK
zw-#Xsee4xf*B+7XMK;%$Q+zy<f-mTHZO}p$?{`8*@_Ar7hJM4fPz}9_uTOJS(*0Nd
zNk^u<s>DBh`%%7a%I2k++u0G|EAgh=u4ED%Ms79o<%<>wD?-(Us?^;4G8E1(lnnLF
zq&3FXzj-9gLxami2{EJ?kTMty;sD5G#&VDsex92+BDZ%=vB2*GJpVVPtuaaZn2jim
z#n8K$8b1BP*h%$?S69?$;dt`Kl!MGFMZ!oVl1*s6COiw32+~yjXRl0mD^iQTlee${
zGPv(fMIr$XePpKY!cf@399qT}%w3s5b{V)$WW$ipuZJp&WeFQ$E&6Jth8L5WO7p2?
z8oJ=74h1r%`_gUw{B%aMU$+}sqV-tKKWN_e6<;h2_Pb`3uN^)GMw^ci!<wcQnmdXP
z;e1PmM=D@f!XQ8`y@BY*L_VFnH)wcK(|zatoZAi5p0mPENJux!^&)Gx0dg_kk)OqZ
z08dU??hK9mOiNFWFOMQ3!k6><0QOt_c0p)j@;Z-AOsI>fWqW~l(Cp9j*5}d!vOj9(
zz{X}yQdb4ypwh^ns~%e`TZVW+Q(^?tC{y`Cd_$B8_FhbkR1T#8w&2w;5jHxtadxY<
z>ale>7Tbfbd)X(Bru`7g*iJ{cSQCH48q~sxnw=?l5*-qQ6JH_5#ST$bWK|ZKnrAtM
zhNBiC(+~Yxb>lMiEr{bx6Mmk)^2yP4L`|`B5tWBAx~KDEO0efo#I8~%r%I@*-xiKs
zjE=f>2Pn{=rl$<4H;bGgaz`gcdH$~r?r0GzqANB)nY8k?vh_?fu88BIEYy8W4!B>&
zNZ_{(lYU?Cn6^^-MFrFRJRHGh98NT=M{i$gpa1|9!U3oZ0JR7s|Jd+up4b+eTmFLA
z36hABS$4P}f4_M=X<8|#^<i;y>OUpuZSS}2SW$zgbnuZLhG(uyp|V;jIx_n=-J;dX
zyw~y&MU5`27gzl2J_i@OXV-wj1^?QN!i-HHxR(Q|dY=s{LN5t8M7=MAY>G<<X&FO;
z%8H$?W~POchVUg#53FSY<UG27gVBldBNgkkHAy|hN|FiTr)g!#!cY>4e*oOrAPGqp
z+)W)3Dav-}YC4oZ@JgsjHE-N1xYPE+QDuK08@636oqZ$OdIeAal?>oQpMr9hovDB(
zQbp?UUC;xA9g}0>dQDo4oq0|aT5{1hlAyfTJf^h&dL%BS8m)}VI3?D=$%yUuSZtDF
z_#c8}h=T2_!|<XC=Lu+q;7!N3Rmh<GGa>1RS#1WlklOqW)qJI7eSev0hXSzwIDYNC
z^THEL(;^GOpDuRspk7L7)s{9_JJHKl<171Dl0vLjwnn3ui{-IYql2kW+84T^(?MkZ
z^5t%P!uut5V%hzJ7)tuXWCPN(sxG5cjzgnhV{J!5dkB)LyL7H*<c>sS_#cu_7K$*A
zlN|Lp+AdDBZh@#Gx4!fEps4QKWFE7YE<0GUbg~+m955Av+Bj-N<wY1WAiODSJqAO_
zV<`)sGbExLZ28<r^<V5INA{iR3X4t-hJV<^wYQ^IhL(`$8A1D~lbX~w1-o8wYMW8?
z&joh>A{e!E$YX2SExVMYBr<xALg6db-s;v~{L9)ajvR{MGbNmP00S>by6BBO%b_cq
zR`x-D{V_A7&;F2->{+I;s>jDhTOZe_e)e;FELtHTHbXHf_F1#7S!IT5>q}z6dLuXZ
zIW)O-UDQC=lpQ!(9N(@)Sh)cwzyH<8^C0+sVYz(F6j5@7(~-ZsK*%pv9i}iOwpHa$
z(xbxEGgGj6Wx*aT$8eUc(b7p1sTh1rBhoQX$>wevfHlwCSOq1tjPAe4(#qxQ#xYCS
zC;6UZR>)BV$5~hzZHSs1TK7wm=fSlV{yUIgG7VF}+F+@L{!l7FNhDA-I7eUUCB4uI
zfsAE^8bbHM_m;7R1A?Q?5y^u<<vcpKlwbq&oR%#T1RhJn&rd?|-C4D8XyguWUispS
z;}H1&n(c5PFkzJIcQ=(mVdSbI+{0YLHlNqFDq&Mre-M?zL}{%xt|4STV79-yjiAQ+
ztuW^)yf(0Y?13LO?hgs9cjwXj;wF=?YBIda%XkIt<!53M!kg4X*nuG}V{%kySkN-8
ziOhG30p{#E>V3-+TuHMLryA!`$rp=lq1ZjD-1tF#OcqU#&|e??HG4#Q^@C9+dmEan
z8>cD%u9Nwk9276UIrQUl$T?{84110RfjnX!=&5ZS^mOiO_}tpu!W|r(&Aeo3k`KKY
zA7x>8@|tPo9EM<bZc)lzT?yQBYCyMm<s9o>vnm@A3U-ll9X&wwaXdbAkLK1Iz5JgB
zG3A{UO>jpygf;m$N^<<bJL<*Fers3WY|DgC-LUD;$L}JSe-1G#{U?t5ZbARiahqBv
z7kbpTYE&_1?)h&;t4Asy{(9i<V0ykqhBTi-lOJ~|>9>&)u^=090n#Q(d7oqz3a(wY
zJ&fbgZa+V)dL+&Pa@S-q#NM|*;EB(O>H;#;0piqjr+r|QO!(~s|E&&<a4U~!Uxf$w
zv>u8ZvB}l{7<Le1D5gG;+5bWEeA0*<w0#x(#Am86q573Zw&@yUcMpy(+0s=qMq!ko
zA44gxk`}`oO`i9M!$HAQ+zn@G2m0I1t{{TJ$A~WcaImVlUvtGnOhQ^a9lCqL9Q+{y
z#IIB7`0Gk3Vz9phqb%%9wr&u+x8{tJ=hQqx>Uz2F{-KsEwh)}lE>xwH4`AIq?V!Z2
zlWx3-LVsCfB)w_e`J6bo)Y;Gx=iWmpmNo&PPyAUHh=ru-J~lp;MJKrl4<-r(7;dlS
zBP)!L9>=^a6E7DV7@#Y%5;V3apgHc2s8kN+@|(b>CC#uV(>WkN$Y-@#earBWo}D*9
z;|5W~98jK+@^y`0O_*cY8!iE008ZyY2D_~t5MYXQcJ_I;jvUa~gNjLAx=?)2n;pH;
zQ*<X}YgbEZGE6=J#&OVKfr@@WAb+t8C6aJ8OAy^}7asBcYiTdbTwtj(g4=((6ur;z
z1~p${MfT0d4!&z3f`?QqfS|Kw-$fMqF5^~oS$4HrKd)VIjBaDI`cw%gwwyS8;gl9l
zrbHqA-^p05#cnXGYF{lJL2XQ!vcJc0w%mkK>>=<l(OvLsRJlYsY`YSJC*_BFPXq<i
zE?$3$SufG0R)XYnz|%dW`ti@p<!8$2a21ib-mxxi-q&qXQtfSdO<hfdKkUw)ruEPV
z{bc}|GBK(!sW7#Of-X;z=qtcu0P^!}vaT)E%(v(fXKC#g;OeZ?DWQ5vmB~5zCx+g}
zhn|!e<DE6c5?oQD$&*UK@M`R^r|<jIpb4L()I#VE3!vF)YV~QT$5_4_=g`|#;=BM$
z>De#f)?CnvOzbSa=LDDxbNMLIgiBG#u;tw9oce_MP?acPt>hTexNzX&!<0_y;xFJ4
z%KQ(bAbV@EB(r7msVx0<T2JfCubHLG-+IOpo0csS+;hk3<vE|QG2<~CV7&AL3g@Ru
z_n>iu@oAw>={7>@v}0ZojTY=%h%eDEJ|yHQ=AW=iVu$w}+?hsWUp8h*w1#_*e~6JN
zyJU1c8ofXBvGD;_^9GUz4+$r=v!}NVT1t$jT*9dhjUb`p_;}M7X{cr^?aTc$6Lo!0
zA_pvjihbW9A;9YGnl)NxjEW57Rqsu>f0XTzac4+=do7%Gy_$Vt3@jd9Z$WbOzOA2b
z@_BsPGV%Wc(;Of5{eL>|<cH}Rt&&TI*3(^*@Cb?R+K!HfS+Xf0&4|rQ8eUcn$!D@w
zT9N1%bhx<TgeZ+mZKfro7$!GbZgj>%*dkkO-r!yVl9`@HzcV9c(UL~M{9NIKTZ-Up
zT+*``(06S~DkBRVkqD#PvR(yW6##GxqN3UFfSBDan2KQs9%A?J&_SS?P0pwka~<6~
zC~7I(Xn)Q}1+3A5<$$m;qemP7&BoeJaF*-N^PkF|WNHc90W^BT6UK$9ty*@)!X7zF
zsv1LYfuIpJ_Qkr6lIpQzH#EtQ;fmePw^UzVv#fA8{1k;UPje8V_CpApbT#O7L4`I7
zpaT<^bUF#}b;_!WhTklay5#_ZJJ(qHvf<N-I&|u)HXZ%2q!($D-1_q%W3M+4(6%%X
zqc*8-le$Z1KDFkwxfiJ*tua(wzzHFe0?YUoO<E!V*iXdZ#iXb2rNrU#L37iW9*4Tj
z7<vLYc*jq@()i<F1~p7ifZ6`vd6O*aZ<{YVGv=jY)LcH0JQC8AlBMtKFf~vAI7>N%
z{a=xr%F+zU2QpEuyb#<~Q#?!x?br40pB>hHVP1oR-nEk6FxTFa9TvGc0!Vw=JWw&V
z>!*!;bp%j_DqN3WMAAjGNYgQ??*2W?QB9f>B1FFQEDZriu2BQQ*xjuBgT59Z;wb+m
ze+-B5R`7tT+F3p?<>&J6$%bbGzx>SI$jMmlX2qCGnI7~-GZ4nMGCZ#(|C4mO9)7Mt
zxhB(tSTRE`&a_ub2OgMPbU*gt!(=y~L5+xqf2*$LC$qSf7)O4(GZ`p<9($JEfiZ!5
zbt+?m0V0BMx}Gv&k!Vu_J8a{S{Ts5{&>P*XdCk%!p6J~Qe8-z&nJAiA!%%_XfLqnJ
zR4t)Q0?ZQMy`zVIZm!jQxd^jC&$k0kv-G_f^;6x$tStt1eFFXa3Q#$DnNDep>|a};
z0@y+}<qLGU=fgj4Z94%4oCc+5mo`S(u-Cs10=#p%2~VTB#w?<mN`NRR9m|tU4qssF
z9Bpe83h>9?8xxvBG^k{;xDhSE=>J5U)(R<b1&k&aKuj8!?BdI(fdN}4f^s-tW+%cF
ziK=q!Ap8u}!zpD|B6xDwkL#60L6~j+epQ@lwY~YMS?VQi%f56{Bg<|&#NEKq8gfxB
zciRA5q7oVA9XYHduwl0&My@ntDaLYD*H4*ah$9<<3{{taqgZ$@L}|LnW`IRha%4Gt
z;gpVimQ~%|Az3o}0%BAD4^z#6DKcQ4ttmaiDoPOVH>t67vM+N6EY804;RoUKPuXVj
zUDyYt{iXl#FzUwsJiR##d7MvXF`tutlWu2Wb`Cu}qjCUlSk**ZFj}Pi_t-d<&8T;m
z)&^h!f!VdyusQzEJ{A>2S`OW?f|7o~?kmgmdsSL^yn118xRonDa;{AcbXneE!CQcv
zlDW_@#A*!7!Cow30zQelihNk2j&*?Rb7xLyxA7+`$%!$YWdAuGom5w2e~H8f^NaHM
z1#rqjVf@rwY}?o=f+5(kiA|>%iPWFHTub~*_>DW}KwltC{WRylf$4HZejt=GSDYw2
z65mtTU0O^t6vN7UVAs8UvSFE5v<U;9G@oL}S0IsW5naTWaa=Vo<O1r<op?@_r#kg`
zRV$ZyS4-fv_>((kMpAx5LmOU>C>?eK1_H(x=sgi#!P^F>4#Jr%krfb7(P7Kj1gApv
zgXNwt+S}=Gi4g)oOdjL5@P`>pId4&OQg&o6{T`MtAJioJNvh@n!V=EvG$;4`eRd-t
zYa*m8Zlk}#Y^gF#w=I9nB1|q_`C^pP05ztdYUV6%Mioz9viT8<Gz@+v&|8K)fH9&l
zEWm^I7LwMYK9Xj`Hbl+aSLuPJx~m-N?$wTL|2nQRTg00VWN<gg#m`#8GA#KUml$jt
zE0D9`<g!k6b=-};;u?Ww^a?sL=cijZ)Ix|{P^`ic7u~yf<%g;y7311CR0Tcn;<JN?
z16Z(iXD+Y@1iGKLr`@bc31U*P;$M)`v$~}Fe&4^_slt#ic2^!<tR5%Y!rESuQ@_TV
zZ~N;fagF2hT=T|W?$$(e&Nx(E?S-DhoZNbX;~sb-%Ex6A0K(+eXxuvGr>=bVm~6=z
z$;MTS8+3*d$CBt~p7S%(lH{@um~kb(2uof?p&3(2im<jt`Tk2tCUt=0fIkn7X+0}a
z?q0z;wM7-*(P@4}a=q#d$sz+TrvG9~-$P5~n1;Te#a6W+wwDMU>QtsQK7Ez5VOSS<
zn|{HN^Q<HPAUU(IQ;k>l)fe{j_icg8xIl+#6`V?qk|^Sk1crVdV2k3u^+*9qNE%NU
z{H$@>0Mlv}_<=ZLE*Htx3(cN<pYdkbQ>JV<;oyn75BY@T>FIWDY9>9{b+^wu3hjaQ
zu3apXK@qC!2N0x_N+|Kf0?K{#--kw>`cq~X{h|E7)*&*EhDjU~scx#Cm^`GOFtMp{
z4)T4lGSLgkyaSTuE)c>w+fBb<?`v{AsJc=Vd!=X_b?uOIe|0ovONSv$|G?e>IWNzU
z84{qVtT5Q3s7!$hIDHE>1QNf-diU01#+r%{uez^OkvVPw>!Sc*kXdF@vKkdL0Ro&p
zf|srnXBXmiP&~tWMdXS+jb5gw?77qU>%2(!@%+zeBB-$N_&$cdsZzRE8TnJ^BG7s*
z#POc$7q`s++T2xw#&UDh@>jwGhxRP6sMPRph_ZD!v=0|O%dKL=6A9Nc5#nO+Qgm9W
z7uoL?o?d(*h`^4iWoC6p+C?5FzropmXxM1BaaN_ZH<{2tkBt|V(N*05=)2<#keEWg
zGPm&;y=!166T3xxuWE_ZSERaoMO{tXSOw%6QCFV#0<iZ2u7{60t<+OpSw)QkXSuIP
zoS`xcRzzB*MJ@i8Zy3J9Kni)Hn@orRWtTFXen4l^!6zig4WtG~ceU-=Z@8s75}Z+r
zQipqZip%%LPzd$P$zYDA0CWEe?I>5Pax48Noy<lChmNETa=)V=$2v>G$Y#;YjdKP3
zJbsUkXzBN4Ve>u$ovu4(A9Ke0owS!-@*%)8c@0AnK+PDZ#o|*%uIb4UX?sZq57v-9
zt6f#*G&9NfQYT;9>^VvN`3xbyP@dY+^boP#u84C;Fwj<G%J8r&p6C*1J;w?URV35v
zm@Y2Q7k|?E<^;W~J+PpwZUB!pXTDR<p`5fY%Bt43pZt{hf)iN8$yYd9jpNiu)Lbc}
z{Us|T<xWg&$Pk^26;3@G5#sH3tE%m7D>aI$9@D;5X1w3FDCJO5z%Kr%kzy(cE`XAn
zJ(FW)>J~9g7M#c)WzeXIi`LI~SlTi(v1P((#UU{yl`U?5<#Cm_OmB^-BVL^djeZxm
z8vkC;fJJI+wJ8-+y&z1lh#qYAcJVDOn$0nwdqqPD#SjRK4J;clj|wSqwiy-wtm;5B
zxr)s85kjNNDlMTq_t??RwCGp(nxF~b14Atqs*QGGX@e>Es9K312{FX>NHth&nsAs2
z6Yw75lgc8Ftw7P=96lH*2_VFmq#n`riGetQyFiTb@|pAsEqwBdiBcZ`+(Xk1Y=*#(
zT|{+D=wG<Ywn_BOF)acK{A|T5d@bEj0ZpSsonz`PAq0#CoKkX97(Q_#?7Oc@!&8fD
z^oL?Vo|Wh2s)}mBi<IhJ*M`QiR|Fz)OGH%$<+P}5GCyz#+4sGz_Dbjg48bNME90%J
z^rzb4pkC?CaHIfYw>^BFXu*_Bk8N2PowKd>Bst2On=zcD&+|)n)88LFr9J|4x$A3k
z(PN9yw2CT1+*8hRHCLa>MzsbTS_xLV`P!f#{f7_N5Yh<hYis&gj%<|8%w^I50ACy-
z;4lLKL4WL%(JU_Gdm;ZdSkWPg4<6#q7VZ3d0|6uc=*%Pg`6$djiSWPr3I;1twmmL8
zBnj*UZWI<Y%~n?4qqj6xVicUF$;Pc-2Ox#Yt5UC6H2f>e^BEt8hQoES%gciG>k*YP
zSuk#<d$-2QxUFovNNf$p*$U(awE<+$7iF>yz>2w&;*NwTzfdVV|4%%Q4$Vh2ASkaW
z1-wgq(y@{dwPN!lnXST-AG5rmk{k3JvT)7^T});bU_AZy4LLQc)SqGET<a`(()e{j
z{K0q1x>xg0>t?cwT-suB!%(VZc2sNCjp>_XCymq=nd3-W{cYjacjokpqnR#;J9P0+
zupE|R_$3ELY6=OAy-Dt-*0E-JS$E9>P5CrcSp;mH$u5XJ9a8uCSHu{oviJa01=g?V
zg`~yUKw171eWboWTPb(mNlkMTjF1N}X&sSgdLHZcy%Wf$6x>Zavf@)$T>SzflwE<-
zL1nN9Pm*47|F<tpHuE7{G8+L?bN7Z*r5<lpy{cU%7nPLCX~2~aA5gdCl-rvB_y_~0
zk~=}`kvw+;Lz|V!Y<n~9pYHiiZeyrZihR<Ci1pJoEj*G=snJ{bSwH8kh-mT9dtX}r
zlLVrH{_GE|PSOFtcLZ}<Vd2v~5eiR9TBer7T8mgcR?*YrZi;Ce0d>MnA&({zPVyIr
zw6C1&=V>7snSiVHSQvCZT3Xqy`R*y`KZtfHwGCILEx$J-2lzi*UeVl)W0wu_veRLA
z=uJc~Pr0V>kF%s*yD&$=ui0Juv*rvmr1GdU)w|Kgz&;3fh48iT_{ah2M^dk5(^GL|
zI!;ZE&V9n*0B(Y}OF~e-4C<<@t_lB`O`V^m+roPFZUma^gVVc@Gh{7&X`nus#6^(~
zl{eUVE2;b;wF$a;W~iRjAO||XIQ&oAEbvz>h)vbCb%vd$z<-RC?<o2YWUL_@qF#`e
zr5HnKV&W&Te$EAO8<Sl3vMfIBel;s3Z16Q0L*4Ux<=cl!G=s{H%C0L5iHdSVS^d%4
zs}3uEwVXW2Z2j@B*2%O%^poZ6YL{T2@(7pb$^2)F01?`O@MfSx*W2glO!#6@7Lc~-
zA+JB493o4!)|~hU>i5gem}QDsmp=;16r=Cas$sJMK|ZPTkif)tzcVZ-9dCQb0)z&X
z@ngj3Yu58Kq;k=<q|zPwn<ia#@!-4t(BpPKHhCgqu>96e;8feyHqfX&stBFw=q_Qw
zeX{IPB);)Zm!T)1wP0~y)=dBmR@4OdqnY-wr%>_|ogVUa|BH<MT0Th(Zz!Tn`c||r
z7-7Ot#G9ERAe|K;wdU;IPV!zyLlvO8ZS!3*I0IE2Kbra`KsOG<@{pipGoPz$jIi^=
z3pBWHh}hf47jRwJTN{m9^{N-O!HJ7}(Ghz&0<h$`fn|;4_FxvN9I=P2JS)qwQxoKR
z>P<ZFB0k%JSaWi{sKuHg``^H4#S@FJYXMRmN75z>PlPu9BUa)UqDws&Kx0xT{_hfy
zC2nJJl9=z66hmppHxKn-*4xs42DRBT7u<X*8Pl&#ciDvYi2xFyp|tZ@yJ7K|(unz9
zd5YVpe9gj<k+hmhhHc{bc`6+t4_n?pI?jF~lVUwTOdJH8ND>=afe9t!o3t}qWqL83
zpnae9bK*;VY?lx4;^w#S_W=IED4+Cr9d2|=VER56-KUfKxi-e?0Rc)W!5mm~$=-hj
zHd@o8s;&+i>GDG%z8XKB!{C075xqw51=!~%@bFKy-k6y`l<A~O_CkU6Q`DU(6M4}H
z@+=;?Xvi(BNfC2cu^;E#PzFm%h=-*qV*7%mAQe5JY#X(?-+N~)<2R3GrDw$@n0Kzm
zdfomX<uJ3=r&6Du^7Kn?ZgR?u#NN$g+l@7Zr^JvIX<<m4hS`xM6+y?g!zcc_<84}2
zbbYIvED~gP*l;m#)|{)GDGby8d4EJ?GmZVOFF_t~<LdQEAURYn(-~Fv?t;RCRIc5o
zh3ocd2L1!WhF?UCnM|Rq{T74BmniA6ntAC#X4I_Sn4CYnTU#JY9{Sg5EK6f;87Jfl
zMLM<mmyPIM^kAf+Ga&Y-Ibr9HW29P<(!J+U>npvy@QW8N^Kg^WIk6$^jKTR?o#8Jg
zvl5Zs6FXk7;GAJXH4#k|k+Qnq0c7P#yL&SI1y?QX0`uF^eq~^{-G`!wlZ3XhQphZr
z0)dog1Hw%flMUHB4*K1~Be;b~)%82}=gGQF3U6QowCTrZn5X<e*Vn}RWSz_57@ss?
zn-+4m>9a}6{ACr5L>NMxd#ibe1MEvy#!D68CS%gc<Ps_REI4Hs!dDoNZgyg-+f>o+
zwr%=sIQmD(!(O-T>D%1JOCEK>{)T44?Ye@ISQGYD$-Fx`U;cvWsFaLr{a0w83Eupw
zoeH6oe-PR{6CIJ8t;#9LDL}Gs$l(#BoRr|8xiQ$imiWPjKS3lEy+E4i_{|OKmGkH*
z{Q)O`uN}SO{ZTZCMyuDwX*j)=mj-Ye)H{zQFIQA*iAy<K3s)*1CF>fnY<OyK3e1s{
zALRKp{S0`EA#EZ3-~dJ>-*}-uy{?H<AOG;(Dvgl24Bt`%rGhLilkw&fNZ++{-^VM0
z^05K{lY}C6gc$ieyC*gGxvm_f5a^waYgiHUP*m0uYu_EXAUu64W9H4X`$~tk?ugbd
z3B9efZvz(s-g^y=rpmQX(^Yw<0Fnl;xhAn0NH;!HGTLZ}fxXTuT*TxVtSE`?ld!gr
zEmfT!Syz3p5q1)8R4Z>Kv*kc#D*h?SkleQDu!cAFNI%QuH+L^%+;v}h73yv`c4%5?
z%KO;A69Z`cuL0x0;ks6|D(E_*IDX#x16~&YxD8B_Cw4icfl>0>MW!f1%1B~zCA>@A
znTklRu<<J*(=#9xkIvhjk*W}PtU0rtIOaD5JT@@9Yi&GJr1}~V4(1E75jOyT6TZNJ
zqW{OB`*pZJmASL_c_1U8UhW`}P=p{h(GWolA$=MDgIG^U8Jpu7G41zS@!eLn(qeuR
zEeTM2MBdMVC&pdQRXB$izu)K@@w|#Jqw)X6iv-y}aRA~zCi8Yyz?*11B!VD|=ZlIZ
zPM8KXq3M$rE9mesBVfA>Xi;z^RRQLQ`<6R_<!S`1hg6nRQXiv<^*<)@KLTY-o!Y{k
zmh&%!ncSvdy$b#>+txSioVXwN-1LhGF<1&2ai&|iI?c3XK9TrzK`oTCfM%IRz$^&x
z8Ma<5mHIi>pW@g}L0b6D8-js&UR-rWeK9;M+MNxtS}E_{GU{*7)w6{G!lblh7Q;DS
zi%>KdVr^px7ToE1dZD@J>%rTgTymfqpi&Apj#a4NmTN!oWvB9t1QnowIUXVmJq3b!
zP&72A`nCw1vPczqI*yxzBBK-4JT!87?vmdUic>eZSd@f#aafUh*nsh>dZCqc{|-R0
z1JPA?GNBv+X*eEo`?JMe2yG#z1q6XiBEG!>X}PnUB=thnwKpMGuju_`C?|c`#>{Xs
zy?wUic7jl#z*LHR`nZ^4n3gRBq|}{E{n}eUmp{>S$#EItENZJpit_ba!b6*gKJGQB
zo~EG5AQwoHJ|awK@zN-vn-v$4P!hNaZ^OPE=&3rt6`CZNRkTmpRHJ+qDVu0sUEy$R
zR6LsNcox9K8Mo^b5C)6lyV||hh7M>5yu)8>W#<umZ)V({`HX!!jael?)5NIF4CbsU
z^jX8~(pL0wD*`15Ne5EmrbZN>VUHBg+PUZjOk@naQIh+@^OO=42Ro*=$L|f1h8vG>
z6yGnD_W$hJVa{X};?73s++rs3SW=gTJeVNwtd_QT`-KzN%H;m{Zl9BF>$ic7g3a(S
zTB`fk+(`DTyTxp%0BVADpF_ujxDf1CgDfl^uf}3lRtm#O)$N9p?z=YISg$>_!cb9d
zJUQu#-a<{*#Meg(1_%{BqA#5+(=$ox0}`FL^9j|BmFl=Jjkk^~L@i)VcA!DJmQ?>e
z_?aEzlNovU7z30fuct(BSrM&gl3bY;Ltj1$i0dEm=D$rRM$y1xBnU?_>Ep>|N?_u1
zrM*BhlHM2EB)f0dAzRlax=(&G&bSxjGpKCx^`;XY);y4I<g|H|cTy^^atDfy`4%{y
zsWFIAB@pNd!&`dJmIx>2Vfjc$>Vpbz+y9LjM*M@a2bWDJ-?aJ)l`%i^V6(HK;56Qg
zJ8l^TQyx(mN`b2jNm>VID?2@WS`kw2IlzV_`WKYrfnnKazhIsWrB2pG5Rtuc_~Lfp
z{W@*Ymnt_|1RlB$!<nX)RJB>_L3_l(47+L@h>sB7f1|gMOgVqkN2WOWBd?6i`RohG
zr$hPm=!OS(1NNS-7!$%)cAm<N%Fqa`6@zCwaZ4#{2F>=me%>6X>__e~(&!p>;zfHS
zbV?fNE?~GPJ2m3G>r>UKFQSUuo2{*fTRm%d+mA0A5!^<XxKKp64!m$Vk@M$@A#W*A
zS5;9>m0{kfaH@4N%Lk!FG(l=Z{Hq@vY8S9_ffRb4!ge~HxhFEv2zu>sNh-l<vsz4m
zgI))yfzYfN`d!Ctxr<Z+z@z7RvEuXyc@A<bc%Ax@7DE6SH4WCqU`gDxP;2s5q`J8l
zxnOtI2C?IL>pyHfybGGsswhX|MEmqZ%`Sok;Ng90(pI#LflKcy+ehEr#un8FO}6EM
z|IkQ?a@|1|awg=P^H^hYUc3;2K)DnTi3Dd(%fpxrZ_+>S{F{nnTO=`?AJqkZTwTUB
zH!G*%9}?%|?svbF2QjHaA#CF(A1E_E%v+f_qU=<IUGRrlXsOfE5pX3!6cS7v(YBC%
zry@TLpye?NZayG+;y|QSE=w+~x#b`L2w_jPH0$_}T*bNEd}<nAj8ZxCLunQ5?SAo6
znzPJNRF#kc5be`}=2KRju907n9}qrRJRo2QQ4_%a=To=JxIASL`B@d!{1?ogWhX2^
z+UI|KW>d{ZGSEL&=6$=PQtLYKnen0UIU}O=6xctIpq#9%o~;GVAd2?NPr}hRb;qs!
z39B8Ci&cu!UONa5Z992>x}CWF4iA*D2(-=3>g(}S&`T1)j$ibRRLwCHmkX<jI!hB_
zhyr>h&7i<QMYdox*6)hx+m$7<J)JY%AsJ{eS&c+CBE>^JgZ0n!wu+ZKS=Hfr4@HQt
zX|JjJ%PF@T_UmLZ+oK-A5)&EHP_5u|iXByor4<5Sc*Ok!`v~zHL{2QZ7ZNeA1;J)I
z8oa9@`oRK1ZSk=s(RSKEoe*GJH*NM|@UC=h#Bv&0$&T32$KESheic<rtzH4k1Jfr%
z4VP9Gydu}h$N-}BN_{5AAKV1c?aSk8hb>Eezz{4@wBJE;&OJLq_|+u_MQeD6xU?&&
z=&C0q8g^SfrHUbmq->?7m!k#3staF!0MMQ*G?(+X&S6|^jYx(^nub|MVC%dw`5wzS
zpQJ=Ruc{q&VqvhOlZ|x>FWSx<hcI#=&<r4`XP0yLMK}tavoM3RRolZFu`OzVZIzsw
zmtGsrr}h3VvVbgo6V?5Wv9HS|R=`lhyhxs*+_c3^@o*ozRy>y32vt#Y)0s%0@S?a&
zmskWt%lpZ93^Q3SRsTw|N45Q_q1||90PL%I1UYHnHwp!QWNeA2zJ-6t1LyVyfshg}
zZK=vNTJ%oyCw9rC{rnq3)1~V@D&XYw5aT&-(bwoWC|uI|_ZUf8$*67_#o&SpzQ+zf
zgR#4_THy~q&$ffikSf^-p)Q4j@M+%rAwnXwN@2;VOu?-+<#}!vB+S;YK)`Tw5T5e{
z!=Ur1=H?*`(8J*MB<qG&yhvL7BP=VRp2{2dKcp60E{;uI)k1bh1|O||h><UKDRh%N
zg{^Et4g`cLOh>r_ltlpChK>4FG~dA<TL|m5|2ZuT1WP=>_o1?&QejLO!%F3$j3Ty>
za~>;daqk@1z%s4gJHin4lF-v&RoktT^bit5JQ(k~d9c2N9dGco%~j&luyBdbEutyK
zkpnM6XGr-@pwk4|fRzDIu{fU3qSVB3Z{kSsvJy)j>|@bEwBgK)zYz>hcj|Z<aWf#K
zvlD>DqLVN{XnU!f@o3&`0pmB|E#jCojH|H$LIYpM`=;hSfdr#nhb=3BrZUIn86PsJ
z0zWfoydnbMqZYy&-sm{+jo{cIp>6e2Eyf#(^1A$A(6ow*D<+wW_$ghkir;JS`NAG<
zuuUhe;74^pcbL=}3AKvdL>P|T{NRy?k*y58|3L#L0A+jaedE#uBh$lPYk*(b87hUN
zpVdYL+Y{)bVB{rWLW7|kC?GL+IuuF!ijv6=@B9+Z1H=S*y4?6DypCv{*a}l@-Y4F@
z8oG(cZ*rs?nBSqwDyG@WWsPH!g4&^u4lRd<w%**dI2pl^`2+G(q3#jx%ccB?yoB~g
ztT^#Ym~m~>R|6i<(jigSky4ahd&*r^H79-kt8DI+gycv#;gQ@?SQ(eC!{N2q8X2S-
zSjRXz7-U3Q>G~G4ME)=j7LC(p>bL#W#M@i3F!R!Mm(PH2qNl6D<pO1M&9WF+1%8Se
zkp&z`yrGlam0G9oEQ|5y(=j@F+KU}AREMCydRrQfuyT)j$?7ml&Cm8Bnaa-5Sz?6o
zbglR+5)mNxexDy!#it~!(I;CoUa2u0K_E0{v0SenPZ_yIum|nNR_On%P^Z?<sC0a>
zx}4P!F{4_@PS2<@rT-yeAxdMhfpTaWxe5{{*==H{MhI9Bhwn0`-3zMxobwLbU0(g|
zv_`OH9!R%&!k*JP>X-TSClwN{a_>}CwDywaM-D%|>n!Y5(e*1&qA3ZSzmVqnAM32Z
zBw(vh9H}4)P}P}$9bY|07_N$h4D*u>O@~#sOi9QshIsfZ;5Ua=zu|f_#W|YNDphzm
z441?f^vAj6?1w-@=Fdh|I!X5QEX{P2E(G_#7<YXBgk#AM$%~_+`b<P{fxCCHpm%Y{
zoH*>`r6NjsmS9Yn$s(7^I`$qT)nJ9NdB;4zP2h<|d?gq)?(uG|yTDLK9N%QG)i{?s
z?ev~3M!jDj5%G#JTSr_51-=={R$!yD=<&kt@LG<=pMuP}k&=I%$Cn*ny59*-W&iwB
zrPo8st5Si|E3c@#SX?2|j&}QDuyo~;noIF$f&?oKTci<!w7#_MPSNXPVoewiz^{)m
zSpZkvh=hSbn4b`K(=2Hm02pYni((*4ND@gJ3XBnq5KB#0eZaQwSoW!KNt~2yr=`Q{
z<7;ihnG1UX>VolFc)q!=Gyoj_M9?{_a`}&dA%gBZHN-JZXdOSfQm&;Q0)$go(nuG^
zmH-x@Wx%|}4~xI4EFiqz@@2or#RoRWCiEg;3>mhf=ds(lgF|Up)+}-7wA(xE8roLW
z!gOfS`&#7i)Xcflv?<lxs3ucrb#W%ARLvI-Hm0iB3M;wUA0GJXv+l<*<k#W#uzlD4
z%3NwHSOS=ACFzUlfRuWfx1VVmkA8E4-cM_`aF2!Ol4d!X*9$IGHHhuINmC8^WZm3f
zCxOij39|XENH(Act%Q-0Ye5D*d~i%AdaN5ux(D(|FAe&8R^l;wnCzN2ut}L$QinnZ
zD(<$Om_(jQl5qkD6%mlB%}%zmLKeMLGjyU5q}5N(^&xtQ1!kwM7rk7nsuhuW+4h?n
zn?31zu>Ma(v9r#F>wEY)hxKJ}R@-1eRk;>N0#|==yHJW!<Zt+yrZU88oa5Z5FXdSV
z^owIyg9&Aeo&a#Wr7RB0twvuZcMZ>)Jf!u*FN9YIbawoqJcq2T=XavBCKhd;xb7eu
z<&NxaAM4lY(H@`_BPGwZSSwT*5e2TsJo01pSTs$eqo%oF=^kkIWKGMUgiDJ|wkLf0
zOCnB@ndA6HCfrCsiR(Eg!~t=zWG7Ra4ePui@jVJyCH`5M)hq5+FE0R<|7mfVC%!6|
zWMnYrBO91Bp!Sosy_M+I99jJgF!;HN>&GHm0Z&8>qKPcb`rq#J#n~kHm9X#VXSH5V
z<pcJ}8+!a!ocquc_4XRZhaE$S+^0Pv<Hv(RzBx@PaDFtrWi=`vD6SLz#$}2oX2Orf
zSNn`{Py^5G7RE@DTy4RFws9>n9cMLzB88an-gSKAc{!L^R$zEEUV#y6-`7};)CV#9
zD#xd^{1s&PFYNb1Pj@IdwE@0#&B7pH)YgkZ*~W&KN=<|AN_A7zb3eGEs6M7%9~@TV
z!<{{Y;{-q?(q+;STOrdrOqh8_ZSYURroCoN|BwovtUI&$r(9{DyBKt)`x`|Z=bbk)
z`kzo7BsGqr(Gmr0C#EBNHh!u{x%b>a<x-k_M?R)k?bb+t-WA(~6U1%`22l4vbua=P
zTMU~uA3#)=zsp83zU%RDYDETzhu}S*Y=oH#3G6;y?x$VRu_BW7&UQ-ibqBKjv5#3C
z2CbCRlpkaATd#~5yE)!lHhfSMlM%*&?U(ph;)3JVuB$0GJlm`I>J?hOec_BAm}|L-
ztnHhzX3eG}KwH%lV)3vZUASi7{??WjQ`09lsJR!;4CyR+w~0_Ca*OtiKmN&vo8;KQ
zu^~<+KPrm?vqTVG0-H5sfK90I>e((t>U(jn*aH+oco^y((O7aocC+bA_7HK_F_tM`
z^kxzt++?_&D467)|GdYJX|i{w<qDBQPqN9s-xSl3HJs*+IHY?~)2Ci8Q-<B@6*w)J
z1jT(0pkuYtV}!K!Pbwk=sU1BjMS3OKLpp<M!h?|!-O&3&phGvm^p*^#a4LoPrQ&Sc
zXcyn|F`zp-fI*f5@xxtx?hwJW<;kL;3EjFzGC1SVGxO1n?T>q`s#!)%^dTCWlCr*b
zw}HLG&Wn)Q9|bzZ$H}`(_r}F)jqbcOu{~_{|LN*EQ*|9@R@bnR?a2KW5w23S?FapI
zFrstwOe_5v^mZHe>(D17{m_~CPU}mS&K4SAOo-T)_P5-Cja^1@J<Kwd6btkqm`sRq
z!Uf#FT|fXzO&{t)C^D(Yc*4D4pP#z|-pxuDRkD0k$KStXqgt|-b!0DPSpms8*VeGC
zn&mGZCGsJ>*?=&Y0*5y78T=CVq6}jUe3D6OyZjj6Yl%8n#lsvM7-EOp0D#NXvX=md
zdPnNj`M&nC^V88o^q$vRY2#qfXAnGM$l%hK`hVgrQEhANvLu+F>RvBA?5&gt^uVsM
z#xYKtH6fnN!IkG7uf_*%C5v&@a~CFzA3lJBC+`Yt)nNfk=7Bsqp_=&{77oc_)QLQW
zj&b915`DuhuM&=>Y$Q0H>Cq%Pxd~U3Y#LF_h3(jlX_dCSXMojKnvcw$!6J@Zm43VK
z-M>K<;%rML`d%Ql_J+WV0JQBrh>?%+KwlyFkN8H!vc*zKfa!TAm0hJe&p=N!`u`;i
z+4~F<SOKN1Q!dlYz^KQ}ZC<Gg_uDSx17WtX%t>o51P~5F<J@+C*U5Bzi*4T8CWt&y
z%ggr1Xr20!mEM==rtVBBHl<(!Ru{|61RiK@iL&puTh<;LVVGJhaHG?Jg^Kwamq99V
zaRv94Ae^)9XOa}&*!$12H|E<=nu<x%angnON;JnzU(s?2UPO1JrVp-!Zul_5R<ZzH
zqnAzYt6xB2p%*okPaa%QZCstcYZsq=ylyDdSGt_$!Zfj!cNb{yAeDgyFSDi*%nCR;
z33Kvi5t=^5=la@|-y)VRhlFA586k3nP60%%^KAh51E0rlPLTTnfiG6|HSa1Kl+rjq
z-1+_+QNM|W+wmSA5%J`l$ltXoJSLE}`t#UF?!*Vug*t#N9)7)o(wd0`IM5#7KnxEW
zu<8{uIU_-gB3pDay(jjP3$z+V5)w(6fox6ks#Yy%C+fKB>yjSmj82n;-lR9+Hn(XM
zR|6#8CG}&_;ZCyCXOR`iumU~B?A|5B?Q82vSY^~{qVo^LcVkr)scp`p!V6E>f3`RG
zD^@y8rh^mo8NCa6*q<pg8wp4NF=53GoN-R3?L69CP*l`%KAH#9*@7*7GOy^JhC*t@
zLpN=Uck`q&SHlq|JD>h7G!KZ;Xtg+;I}&Q-f!2LPk+Iy>4|98^t_#&w_opvO4eR(y
z0SqKr56sXR$I1u+-D~OPXn`9+U;NDZVGLRxWZD6&NU>@#HQCd1FcX8fv6;>ev4$L@
zHZt3T(pJ(^F6?gEMprTsjT;ZBRxlYU6M}7Pi2<8j@fAHz(hygsJZ20&);X*XmCOwN
zQtUguC?h%ik@>*&Ic8-y9pU|=R*&%SpiUs>i9Ch4o_`+mW>*^)tfT<KJi`yprE^TA
zS6O{3h$~VT;!IU!y+?(6cX(w=|1as~DcJ!6dgY|6h;n^?*rjc%8Fa!;z*JhF?COeu
z8U?(DvnRYJI#&N{u5yZtRtak<J6&k^`=R(VN!wkb$a*RMKW`7E*!`~+hI06}0~R33
zJvNT9sx96;r+H)=k014cKgSlD7p=MP$fmfu*nN2`{%DRJ%J3QsZHp}G%ws>u_RqF!
zzB)a^&Nh`-yQHEQ*Qs~EyYD;ekEM!`E!<kEC9IWTy&aP~si2}R<tdNAJ(%|qyqo1=
zQvGc}o#2ndvs~-NDu};mDjWu$@L==WGo!+@5%HpiOoY@%|G>1W*e+@3+#esBjVyiJ
z#@GY90hJV}S^p^ORdcu7%fb61yW;m_rr|HU9?}G_OhVu_$U_Rt@zGfra9_$@#27r@
z+9uz08*xYl01vQdGk*Q=INS^@b-evvG<N{8cfE^65A!%%`=xb;UR<)2o$RNyh^0si
zr5+AVq$QfucZp~i^<&;-zq-a%Oau@xqzVN>|48gvb~u`fXd`|A-{z2-tu4a}l*}_R
zT<n$p6}cHpAnV|MtAR*Q2Y7G<^AA0+K=p*Q1UCCOto(IaGG{hSy`GnrE#m5OxCLgs
zkG<Ea_SY$p))!z*%F??bIqz;wmYjrN9>nmrp7Z`DFTlb6&&IV9uoZhz<;(}E5EW@!
zJRg93pXtG5{6U1uTkF>qi@<MrI$5#Jpedk&gmH`yj^7|v!{RAI!A7Et7VCj1_h~eR
zBHOB(OZ%QZBo(W{aMVViJwZ_+oX==RzpxLBRJ$;&d<`H?uJ6BqJo?4l75N5sFV=;5
zID}~(^YSsgj@79P8^KJ*9rB(Vu~L>5=5Nfn1Vew2+|CZZw1QH!J0#WK>|Zl5wB?yH
z`)^=I0@kG5J_HLfjAMQJ(phq+)UE@{6A^p8r>}yUIHf?RHsC|@`PLx!Lx~9hpH#PD
z=J2Vwi_3Pux*K3WF6K9FC;kq}gNW7M3IRsl*Xk2d>)yg5Dm|Ar)C_#8MC%L@*P`pf
zQ;lI<s<}M|kJHHvg9!hOi@C9tFy5$Pwpd)ckz%vWIsbqu%(HH!5gAG9`2Dl%dclCO
zu(;2e@8aeTe(jO7H--mgwQr$ZdG6Y+KN2&T44IZq43^C|-p5#dG=?n4K}Ae4Jq8(^
ze$&@2oL*ntf3{bl;5rSu=j#Oq5s16>D`uRB7RJoqTU@;zKEjtoHFQ#{Klq@kN#sF7
zv>9gzRwHNyjX5D2GO?6CBx^98N0_6Wt?aYE+Cs8HQ)!)FSyjxEuM#8B3azR981O%j
zktOC}Ur^(B-TAB_XbVBHX}Sd#N2uVqsY&By{Nz4q<{e<DFQI=sF~x_mJ4eN+F(4(y
z1w^!7p==FmP#%d(xfwHQKPj|HKFgHKpo>;b*L**T$J*vRk3U(#uX9!qZScsq35s2X
z%V{RJO98mHYF4Ti&v|_ZO6?DwW^Zi`bTQ%kzqgwrd0u>OHXj`0VqIXyBMc>(-EnRq
z5pN2fC7r8ZdW5*cOXKQ2`*p<8xb+%IFt0gv$lttsbdqEjrAc5HE0~)2&|J$lWUa=N
zXOgiLD<?cc;hzu~(qPwSel^zZ+$>%;zBpLrU(3l%pD*k5Up&*&-e7{W|H}pp&)N81
zO{f#53!qRQG|0}oTVZV+fP@>D$9lB>m>r5NHQpijS()pP`Gye<1R<`^%?JQAFddTk
zd7-VPD?xAR-f98fFKF><>LQbu8qgYS1T+?EBdA|8`*gQ$5}C-yKxD!M0}$%{0N?Y5
zcoJ<&4izf>LplhhfBG&{pV&q{fA=VcXq^4Jm4EN936Z5)0h!W6C<9n^@!4NRJ1O--
zs#0HCj@t)60;MRvF;Fw6bGX27QGM&~j?dN0_{~h)Ao^4-Tqh%}&SdZN)grBxzfSDN
z<G3~8(NEMmhlf7D1txj9_w$$2%+)eAwB`;k{>p&xLws_c?8X|#%(c9`6gL7IBM1GY
zW>u{B{pz(x(GtD$c6v@A1jGof%<v<<-Rzc9G6rv5Vp=;Y;XOrQdwpbo7R6NeEOjsH
z$@clNBXcSz@vlP@BvMoMW$-wkiR0mq@)!cHitXdMhFQgxl4WX@M#8)xVMGYO$)D-8
z7j$%0GOP+`{S>`YKLIUgOMj$SB1pNdh=XG49zNTi5kFT`Sh(18umL?p!~fH)O6^4R
z3adQQwT8N1(gD_sV4{`=6K!5`HAtMqjR7ZisK;TVLO{@o`1W*FE5V?x=$D0kPE}GJ
zO{Q$nmRJ5bNvzup*Up>Came|O3_r75dw9Z-R^n5mZ7w%MJ~&ZlS(RkZ-sVm0KxbF{
z&6I9|eT<8(&I(C-NljN~L5@!&RAqshJuM?3*9*#2DmUhmhJ}dWYD1~7+qQL$6Rf#^
zer`p@jEzJ4T5VdRfFVbgAE{hI8dqlSlM@qqrvv_FPx*#=d9yh0^0|>*x418EPdHLg
zzYt7Fee$GUgw66#w4hL6Owo}U4-vKoJylKQ-GM)l0-}K^;=H-SZ0P8d&G_?&IXTN#
z&y%%V`f)^{ftduYI=iPO<Lt5;@v5kS>&F?_L8RjsFgL{(cL=LB&j<j!oD>d9COkQ6
zkF!`b-sU6rjftOqQhrf`gc(0Fy(L7vd9tf3VoIM>z~?~UO~SHzRhsbs2T_Q@Pt%OR
z=w&~sSm%aw1YynNEFd_B(fo8kxXhcFY888N7}e1*&T>>hlkwE(M|JSp@dp>of5B@1
zJ;7M75%x$pcT~yYvE^w4;a=)UGA_cum)`^=HXFJoONbMMR3Tk<;txxp4g1DT^}x=A
z*_<01m*?$4aZX`u*5*V<zk)KOhcGUc@DOF$w0zzwPsSy#P4!QUO#1MKy8{3U>J$08
zm!><rz41f<D;9!<^>XkLN<}YcF1oL-)<K`&#X-^H_FYc<0#tnxH?tyeh(u*ism)*8
zz?39|{gu;~jlMd49v=_58`B3;Yz>8gqa*HVneGWC%rkacU*Dam`BJA(VzPBwH~>pP
zw7+aY4`C95<OrX*J#ztQ#)b>i--@*{JziE8R|I3BZy;xTown1^kIVPT9_*<(ujZw3
z=YjguX(9jnkAiRjMb-U@)}Pd6zH6=r){Ma@0<Oq5F`rBl{J7`LLBffrCswsh57gtt
zWRL>!39gD+H)jfG%60Pl`IwodfU=^~t&gQd+V!|!7P`9WpEuWZHsysRj2Yh<*SvK<
z*KOnrvp?sLr=Za;4F)_89P<1oR+_7DzJIrycBu?br-3F{8Sx!Kw-{_xY#Zh!bSLw4
zi{}uE)skq4ZC_eyNZfFMAxe2hdos?WgK@lbhAejQqcJ|YuUlrJTN#$x=j+;lIsKg4
zPI@(_g8U6@@2@q$Dl<2S;}(%z4}>V05-^Mp3YGw=c&-BVx!oS3D%5QY9H603*pSXl
zedbr+hI}{qM;4`xZZ^o_UuWz=9J!F0{=$3UoO8v+<@<IsXfgMv45>T2B=W>mwdgB|
z0IFFfRTWFZnE^S&OohPMW+hLE$JFBLx)V=5GlhjfWio}z*^ZFs$Ei*LFXd>qXs0L%
zz762|WWMIvcz>xBp2cBC==_l5{VddM1xOEEa<i78r5$Gn4Tt=v`~FbK*9rGd2C(vf
z#E<vUpmFIR#k&-tK7*ATHUWNzKI_hYqaqvz!^`b@#I_0;`J!Ga-dI*t*7<{X9b`6U
z?U9kH^bNaf<Wx%~A^C5iO*Z-)Jb1gXOC~68C>Dy*`X7bhKiR%jn$wRifBzZaD#I25
zujAUK{4bhdfU~qDUK+_B$c}l+UA5#l&6PQKol<HA{)Gys<ptE%BIPCM&#zc@AlKO0
zU7i-caG3_z^YzeXE(%o;9i3cvb~yadNc#dl_6Q?$-VyI4@>)`q$p;?bFq0fcK+bjB
zX$42Xq6T6F*Hcfy%Au|}INt{3=Qvt<v&%?>EE)3iFww8B3tGRbxCBB~z#AWf_KbZC
zTy{Jf-ucdkTy~uN0*%M{TxPA$@VtPHOB+%zXDnk(YC*`xbb+QQ@VhXbUOdI4ChB-c
zBp(OnjpfktE{b%cow~h<k$wa+ARgiAQKRL~?Jx*Xr@*7&uX97W{wlX~F5Q?8a6<w(
z`k#o*R-bAaQ#g}gtN~8@WLpVVK6QV6ky)$tUWUk459rl|H2>P@8F|SVlK_qUVV7@t
z`Fsc)xIaSSybZjY&=$g^K#=)D;#)p}mkl?YFH>1`GZ9)Yx@l4U&t4U?ey}W+F;bOn
zi-4fkI*I0V?;>XGa#7Oq>J!}cri~t4Cb%#jvvpI|ai(b?s5h>H-4qM#p&cwBO>y)d
z;mZP>_!1NjI-%1Oi6zhD|Kw?M>N!0~Z<;u6K}6k_^n@O8f{L0|E=itY2Xh~hwG&*q
zqCALk*lfDPBgxJ{%ZqLcYzEQOBW9GChh>$X#DGYFveA~J)*XzyDAunP&inl`B<%C?
zupzM*lszjX-=-I`;D;eOxQr$19_@+2G>g|wWc0qy5Sdel(6D!6Pz&~kkBH~4TGfdj
z3Lx4J_==vQgV2fEnc%xV({Oz!m2OI>($cOlvJH%TRz~Vp?QrVe?DMDiMh=7IbQ!NF
zZhXE5S{|h(Vm+lC3_wL$k-6gZZ5%NiD29+4F}n`isI*?wf*SNj2NL*9`Vsve^QXdJ
zRRW(9{kDh}Dbc!ANejK^s}{D}Szt2Qn{3rlE|sU*fOR{prY=1*#1+Bqa(&2SG3oH9
zGVaQW6hTDy5Y$v>elFU)M|%oh^bzebHz9*4(2goHZYtva{k8$llSvl4U_r2K!8Sn8
zPze9u+qQY!HCGsXPwh<&FP`$g=0`bgZ*mU{8aj(^jm_A#me?${pIftsPE70MFKqYg
zSeGA2HM1zh)Y*6Dp}r0XyZ+6C__|qpNUL_!Rsz4it;n*YSyV1K5(%fyXjol&_^bi`
zuQoeN&S>{&L-5N&6}}Sw)t}t9kd{DM&0$YPJBY>h$-h3-e^GAvJWyC$`A}V=9<lp>
zW^y|8w739Us4kRpo#^$`ptn=ENtZ9O^NOqCvun-Dd-E0$RP=Zeq0iyDdwklK7SQ7&
zjN+tnNinw3FfK`oI(`DP&BKyGIrY_z>>gB`6G|(9>~!hoRj@X4r!{lsJA@GgRb{(-
z1=CZBw13Vvv|lmReY;P8Dxo6=oVUrIjMU=WaVqICq^g?4;m<a(Cb)U(2)Pz9L~74b
zE-H$*oA*SV9E_lvT26-zkbT7?rXSYy6W$+MlANu12PN2T!D{vxNd<^Gl%A1=p2Iy5
zuYFISxaK4|DO(2|5<ZNMLG!#e=YwYsmWfpl{FlYr<<M`^+h15glpGAi&YG>I>Jr_X
zJ>j>C8_!tj*N?7~KD7sbn<y;itB#^8X!O|K1At;GX>4;g`w1*rY{7aI;$7o+>v62$
z+X<(xfG@Lu4s$K8g6lZfOaai$-Q?4Oy{o3OYt%Mw{fJw2ZCaJKq~rI3gA^Eu1;UWX
z2wx40<d)u>D=Qt7wy7f2{RneSx{E`^n{NDCfJ$2Huy(zIa1^~E+hyo=Ji0`jETZVN
zx7(19yS_bPSYsxVps+!6sFssRYXjGfc56=GND9+($1n3ho9Tv!z!zOL{q~yAr}>i(
zQtoJLdN=*r`sEH97|_^pWzCim<7ejz!fE_^sZ%yJ5a|@*Qz2XR@%YP#GcG@%`D3+x
zQKU@G_v95S*@g%0pmo>&lqe7&YX%k_W2dyV&pD_Lpz-}YRa8f>@2$02%UU>V)!;_+
z@LB<%=~2i20m1kR=O`5tyx*qSaB_Rnlzol?Kn7pJ%d)8VbdsxaM?zx7%d4xx;2Hbo
z5EMhi7lTd_M2zXKE}Q8@z5m8$s6@kruEcgQPr3q_;&{I9p>p_il;kl|m_#pCdJvlA
zSVb!fBlkb?V6GxlMb4Uz97>^~-4birA@wo~iQ?+y^$};gq1MUXca4js#|snp2!s$Z
zZ;YhxQ3+<`h!5Y(7{^Lgc{vHznQO6jF*WguBt2FYmkUe5lI`zqWmcv%fSVcj&_8@t
zS19B1sKB1d8%zr8n__0M5CT*DIeC@h(`h=Jeq(1opbhz5$n0*a(vE8H_kVv;nBM^e
zB@t;q798ZxXcS}hKfn>zHU)IB{!K$RN|TL2$Hh?X8J=U`y=AGulU$&NT!Y^D=)Xpa
z8~K8DevJf61$ddLx`x8kGp?ou3Rqh%&6}>ZFsXGt&CR$gC?%z`!;Nd~f!`!gHf4O&
zpZ*@OZkIqj>XE1fU$t6pwD*$~P>v0GGXw<f|F(|_CbPVUVtlbz0b_1`a^g=D1;VlP
z@E5g+J1bq$X4hIHrPk;^h_CsTnHSDgO9iypc@z1-fZod=!5wsM#SO?sr`^GAA&(Wu
z4(I(EqgqG|BPj1>*_4f_R@gbz?oNZXqm)J+Eode3zG;!Q+@j0?!{AyEpg;Ly1d%bD
zr;^dKb)hV-bK=68!{Lgi2O<N2C^gy0i%GX*>mXFNPNbKacRX;vLNo*L{x0y=tcsGE
zOvI#m*tcHNm<ID;`YSLvIT2%KP|C$skWiq?9qL!@Z@U@S5z;A7g*Dp?WHde(VFfJv
zVhngG0|S0-5k@Q76C<@${;Wgfkb8U}1KH0h`NN8OJd3~KZ<!DqSYBe_DCR|(>i+dz
znIG#x`9A4rClPPUfo_8Pyj=hu`I%yJm9mC}9|{xJHak|P)(RNM$y&;0)Ea2t`WU(g
z!|^s$=1PkPtC=k!yK){Ygw~tdB74s|UC(&7<VzxyIW0}@A5o_yKa|g2%Db8Xp6LHe
zSqMyz8ab2+XfpC?7##e`U7HBz!m|lwiayJKaSmQnej2#$Vk|}Z_&?;{1o3*~G#>}u
zMb+G&Jwg@$=_ZNz$!bx8^$N9|UzR%~z)G8%j|*)D+~8_(9T5kTm6~PKl7cCM3K2`z
zZj(3#WbTy~$ZXWkjM7Z(=Gc`-8?P9HXE)V%86ly@)SQWhjLq~`XgcG9Iw?)1{rvzx
z&v;|!WTRW#BD!h{%gX#e-&q(qy3YXzLmjHg2_N_c73*b(Gra+<o!|;nn%?7-Z;EZ?
znO(NdF9U&FkHHp%C>@6u9VNnt)o7yiYQ&U~Gx_eTB;yx#ES8bo)D^gWWcAGsyGGvD
zx!v%QgQuMBehh?ovs^i&aMfpe&dC#nMg2@iNN1smq-7?I-p!^BQo;t?BWI0xmKQ_D
zwXPQYf&Wa;g;>`b(mFAs!X0obov$68%U9X3andi0(_&*H)03Mred?ulq%x#3+Js!!
z>RX-qXjO(2Z`y2mz6y5I{eK&@^e25vUf0|v+T}X_?QvDbmbFGLV-<D)@;QHUj26}U
z#OR74_Jx&5h`Sy;Q7i@VRWY-<{fb#Za<G&vfbut8erB=`5?DBE{yojS*Zh3+=3Ojs
zA%YP`>T%XG@-i9AJ&s(mc8V-1sba0l^sI^Dxw_n9BRiBW=Sj!f!?#GBfiDq<G_gUm
zepY}&Oz7P)3HPZE(&8*%XZ^ILyVq3%;WbI2!tmkv3o{`5c?o(%wj5GGb}(#DU{Bnr
z6^q)MI^AZH`B%|c2d+ZPd@g)x7=`z`wwsUC?YCsr_Mr5x12|*ukpHNQI>%4$_Y^J6
z8QsVCTYTLf%W?TdV>kpdlqKt^0KV317iGnQv}<OC(6Oz~IqA2%Yi=eV8Ync&|7+w`
zXAvk!<AYK7x<S92A74vWQglFH`h(tefeZC+Tv(fk9FuoaXR+6b$$L%+LiTw#Gjkro
z<%HJ(lDvYU5E*e*lY`*~y6La^%<(o8I$nlrpEk0`n>{F#c0qY^TQsd9KQtBDAvnRI
zeo4$4Zhy~%XoAGA6vo9=lhlH5Y1HBB)gMJwLf1h1layU(th&Y7Xng{$zfXViu@VUJ
zWw26&(>rU<95~dp$3q7zya&kqV_Z)sw1<4g{~QgVqlbx96RZ3>yOTSc`-s$`zt7wB
z7gCy8qr4V6&p7@LbiAs-Erc3j5E1!atpv7Io~eRCzbuej|60r|ip}<nlw@E<9+`S5
zp;+B&EGxfzbtIQ7sDIQ=aUS-k2ngf>CG`ZwdiPxv_499DwGP^C5?gx<80jn;CCX0V
zXGxI|)lAdy%vG<r9<L@l%X0m9A}D&c#m|lQ=ay-SY>aQUW*?Fvlie%gRj;A}bqWIw
z<s4A+PB~k_@|68+u~4B*cx<|3dX`9H68}*n4D}M+tOeNSZGAiDcG+Du(mW?cL|1Hy
z6Kp%keRH=zk#2kn#i2M19)9vP<G=Cf2Ee+htd(lDKXWlu0-rTTRjh})^h*TgKB`9k
zS)48EuVe`EYM8Qw>);{QYmqb>8hLo^HT*r>SR_$9B5p0%NXTlu$L*nA@;Dbky8u$V
z4-w~c(NfZcZ&=~KHc{sZ*PwyNDP_y(i_$yvTDf9zrpG94M2vS2iPST?JHK7NGjpVw
z?T1mk6q$@n9JE)GBD57}S8WCqHIq)S+<h=NxG(RV?Hyhn<#35(-=lZwV-XwziDSB2
z#|Mm+7|{F=OYjq6@r}!0T!kdP18OZ$hj{_{$LZekUI7)+?67v~uK{kGt?MA~T03-M
z->I8%VP6{#zFJ0cMpm$ax1+U|DFIzQije@6m_xX1qU}r_vGcWP3$^>ob`%G@E5$?N
z4vihVu;ajBl-WH34ONJy5({<>jxCD4-N%5z&Xg)gvrlEfw@k*gE3~L7ZIQsk_Rore
zfJm`zX_Vj?TX`|v@yK0em^}5&Z`QvLJ}u7sH4TUDtQt{lEE_obKapacT5II}33Xc@
zU!1<DcacP=J0sQP3C5ql(0Sz@K!Jg@II6IUg*=^X-(`pmh!_-fT0X)ID2g+H4Ru?T
zFb`_!Z|goHk+&CSMJt%%*~J?#;wi;Kj8;^w-IiQUK_7aZXEC`O5nZO`rVefN`BLH6
zl?WYOvBi43kpV31{O5!Qp~<@*3JEkc-^Lz2=0iV=t;_A8{~SMvw^Hg(+F)hBQIrcd
z6De`$14S(6wydx+IEQ9Xjzy(G<70s{^arBWJNpa4%wH-J@^Os)f6p5WgSNk*>A1{i
zs)O9T8z9y;G=;3Aoyk<aI_!sPdqd3qg)(QF@bO1cK@l1lwBCBxq^>k1<${>O=YX~U
zXb=#7+x>YP5m3W#+vZk@CdrKYxX@w1m4nSa@pfu)j55PN9ePD+PX0W<-lhAMWI$V1
zRi?AxOOH>Oirm7i0^wOP&&o{FftYKYbm^y(SE~haxS$(aJ9tvT(JIx#ePmyJXSW1`
zg_|-QJ!Nc6?H%bOW`e_t?hrRly1Ei{OnV;2xIAy)?s|74N)IqfZWQ_M)cFzEiDXx!
zOpRlK`h}0+n|JWdl`Zqrg$AgJbTB9KP~&BZpH;~%0rIW_rE3l><!Cg$b6_hNd`|11
zCZ+S<hwYGMr*2si!b?3y^cvdYis*c<)M~~UW9onfadgHG8pTnW5o96F36TvGed76l
zw7Qd*hmRSAjAntxXJ$7xFhu<2AS*n~vu-P&pusWKNp0XHk^_1x1nR>MgIcm#U@9H5
z(6*Y{dk>~b!eyT?f2annlCDGWlz|P!tGGS%95#vCHQX+sH`%Z^7d_2}03zC&=9Tu4
zA)cbi*e3n8LmKBRBS^L~!89&*FvPwPC4$Lmy{hExM;wZpS$G386HSCoENGLmk0-@%
zdSz#GMJi4x4bcBDo3Aoln+y11^Z5RIuYm4w>3gDH<>d!qFRD38?a?di-nzCn)a;1L
zgP?bJqnr+w>dSpUgw>V_+OxMje%}-vxb*<og9rg>EZ}@r+zMFT(#YClyrnPrm-n+6
zYA2)NMC1dBhMeJzp{}T&X%XT22CGtImZ^VRC-ax>hM;_{cA%I^Nd^}Rwi7EcftX>8
z9&NldH0|0}S&qd%>8LV_HW6pK5xJKl{I&3h60!0@ijc*!mrxOFQ>&D^#+aEuzr_1V
zaJeXwq`BP=jh2m=#jvY9+edtI`ay>n<_7jMz5Rs%t`O=2@LddrXcP_g;WDkI8D%+M
zNn_(-$~DQjNR*o-Krk#j)%W#_H~;?14gdG73{iKSyD(2TyMdt!`THPYK;uETew{4L
z_>RFGM;=fdRo^fd>rh4^Tcs7R@epNPPhRu46!Ljn&K-tSL!nunCCU=S#tBe5d<G}2
zeTKrjTatG=@vSIN18vDRFi{3M0m3}jID!m~=-wz=QB&8@V)mzTm?J1EP7Kt7c8QUM
zcB{<uW~DDmbt}R8#I`Y11ozfX+?vjOL~b&j;<NRa8OBXeyO!GRBYu5D)J>c$^6Ooj
zSd<+B7Ev0r{uy$H-MzBl-rS)dU<6KUj`o1YMhR6ZaO3Ojbi$}Q21*lTWoe|%8JF<;
zU-u7){Im%-Ojvj<>k3ODoL1T2-pa!iNjpgWtzp01D~#N@GpAsMAbpwZ%wCYKsErJI
zfNzjyz8f-x)8%dV7u)%fB}r2-3z&VfCqS~R*YzL=zS--b#LJAh8yll}f1_N2{@y>O
zCcv5pMu)>hpftPNSU6`<J9S5{Icg(}?_jVpcrkVl8-F;4TGD#$D^PFR8{-g?`6B#U
zGgcPDMcEV>yxS3-4^#mSU@^W%;8AH#`FvN;(OYpJE=kCJ7R)+u?N4lJs(36ew^QK!
zv!d}jAWw^&#>kd^v@X6rlyf9r08G!wpm)@L?IMNj>h)*&Zkx_P_6F8R96{vf_ADpj
zS$EhV93He%6&q8cziipm*{y49paPg#C!AS?!prf1t;5xYVL1u!2I}*wxPGiv9_=JX
zwNnHez$oB;H~jV{h>6h-sm^u%WF$IJyUu;h1O=H`$P)uS@Podq&=W6{#---xt<W|X
za&F<sF4xOo_VhcQ8C<0JyHzVha!&r$zS24_$6>B%Bq)!uSDDDa_r7sx^u=6xRDhi2
z*KtUmM5ZI(=>RjZ;meDLi=*evb3<F*H#rE?hRU2!-alPQMS^XF;F1xwg>PyB3X1t*
zx?BNZGwdT4<3Kts*o;@`#TC$ki^E#T6ayAy*SpJp$rThJ6Yf+kW=VL_k>o0$T$M#~
zj@#}9g1~q??6W>I4w&J%luzp>v=a_*eE;6_rMi~d2AMS%ksvEEsqftUIcwwH&Zzlu
zef=#5?O<KsZZ-|h7gXXE^0Dgcq9TujpoY?ab}anhM3U+!k$f&*@@D%zk<ogPRrZRe
zVUl%NBj3P5T$@yVlYKex))#B}(JLNo^6li5IOtAX*C{dhO@|-47hm#D>)ar-B-<yN
zD=4$m;kL|y)70tGJj>?Kg|?jsTeOqvgQHo4AN36Dt-Q*_fk&{9zlwEdeGigxHjwaD
zE)voiE!nuex!Y|k6eMn@IEEb^0Dg<D11U>ozl#3Ik?CyOr|BJF8(fH7O`I${{Na{$
zp?4p`$&jc1%ZW41PoIsW+W^F-4lG;5XNejUti)D$9J;GpGCTeJERuYt_XyIi|FDe;
z{f6-gR&6!q=nepR7-vMGI+0~5w_5)xWKiBH-TaQ)h=TB4ANq6wj&V-{t^5Et)VAab
z+8FWPt8x)1(fZhdstYOLJN*$mjl>J}ad#RnH?&y2Z25KFFr`TaE31%`5BLn(#5S+A
zvKUBo3@elVyh1MFStfNZztoC$v*5+}S-A^kbYrq?8(d34r`PH&HGepi+FXk9jq-Q{
zi<4!own7n^+g?&Z=U^?Otjt4uY>nsT_AE?7linzOE$r8HosA_AU4J@ucn<H=^i6gM
z%|(dF5#&-g1a<%Fn9XgxY3j6T&<#8f>#5+v;R#x>wuu$u@Z1<oz!ww(SLR{sCZS=*
z)|J4-Zy*}Q61OYIZ?XnHg@x<l62*Le(<ia$k0{i3BYiuVJk({aoX;owL7C2~>@U*i
zJjrVu@EC-jq4avl8R_bUExE+2wA@B1X#$k1@etg~DzQ!t8^kaAL{+`sQY1;KSN#`d
zn>}7xq{StD)s}$$ABQ|P%BD6(P@VSbyG$tU+3rG{uTwO`C}y#d|KXy1&(vZFHFZi>
zvkDXZiVQ20IS{)V>a_$>^Bx+h01#opldegK58{Z&7y{0OR=7sYO|u=gq;z*xZ#9g}
z7S_wDku8Fkm)#QK-0yH`GQ~~kAC@bHc$A1Ttkn42)vv%PMB06u#4-{vfgByC)rGG}
zQM=hd($q#8j=c=#eOeU0VZ+J0@LBq=&wZyCfp3b5-#b*WX>0RyBk-T?snCSq&_GQ}
zjX4zv86IiJwtBq`df0G0G;>{Sq1I2QRee0Ec!LkQ)}e~iZ?lu9O6tM|EP8P6!_YnK
z2_)Pwd&3WB!|PEGFC93151<;<freqSy45KoRUbvlf-^~$b+?m3#ZScCuoOqroioTI
zG>-9|@KaB&5oPGPArT*@8%TX9S>NryFt7)@Xu6!)zHq<E0vT8|WAVtY2*21m1O4lv
zTl`#&cLZ1|RxDwt8Wcq3yr_}rmQkn{n$*d8kOC$Zm}#uuJ85ieVF01lEtPUY-H7>L
zX@rF)7F5c)J9?8g^b9OKfs5F+vpd(Pg?68xw5onn!WOCvRN~M_q9m1Mvo$Ptd^Vj(
zkR+3mO@Yd@LVtly>LU=+zEjYhrcu?-{z!FvN#7vyE{m*)vLgiRCp?&l=xG`6k%qV2
zZY+xO`T)q4V0o3JLe3x%UO=(oVoRR){tGr^!3{uAY-J1VC0yp-P{tojiR5U6xO6*$
zSPnLpBYyFW01Eot&*+e%CNp11$m7kZ>tJGN`VPjdUYZupO~mF11+?#EO^#iGZnNW|
zTHs>dI^PE0jqL7lk72La&@8;PI!`iV(Qr(2dp^-m)%n_?Kfb?snG&G)H3FnOsx4rl
zwdj$Hl(Q@l%f89JMp&N&haLvU`j+Chb?RLfxr^Cw!gcor049u8G9X2=+$TPe*vZp2
znwa{l4v~d{i9l29vN534{kBi^--nXIn)k^oQF!+7YK!Xk>ny*2onY|*EEC4z>jT~m
zj|q%Wx8Wu3CDp<0S%eyg&Sv_py&`HgVZ~RyM`WRh>47wHaSOi<SPOtIIPnl71A$z6
z;;upLVGaQghGZfF;F0w+V&)W_`}oleF<L1gWn4Dl+wOr0^4wtdoG2rP>=SH_#}+UB
zn@GtGW~;Z=Z5M#~T*Ju0ux$CqfUp|I2jNDMTO{N2$=17ZOp$G7>kCxFca)*)a3Q^{
zCE`-SDV7woTOg#6To-r(7rQo-2#qTNQWY=jcf(dhzU<P9Yf7#2Z{>epuwBZy$Lr3D
zZaTmxLKyHKhZfD3Bff3lU+WyZce|gX#tIw=-wN|_Rbr2^_>$Gc3Jvuw86?^U>orv$
zbn@RUHmj55eqBNb8Px|Yti>nSR@ED&q&S1}Z9^hGXQdS4sqT^|H4OQfVpx-BV4lfS
z^#OaENm(@}$b25ZzHvDGPjx3CO<=Y?h<RLkMYHHGceT*<T7xi2B-NwrW_at8`B0D4
zGF*k`>)t1CZow@%Sj>gcD%$)=gj_FS!BbAI?{<-k32=|;lgY=Zown>%ph&mya3Rrs
z#shnCe>SLT?J*uB>4>r?IZVL*H$?BO%0f}$l9jHuKK%udHrQ36+exw6?v1Gx(af?>
zCfxUO8R&2MDcE3o(hgjU9UP&cNFs=&B~SFywes5{Qvv5K`e^SV|Lrzp3Js6M0Q(g`
zGa_;!0U?}&V&7m$4d{i7Ipab2xmZ5klFZCg=dcSz9|<pd2u{0V7lQ)xTblu9r?bM4
zr+%yP7<+N215L?@!v07>tcp)Je%IfBIN(-?7zryVT)1a3$CT{pwu%=pZLj9GN7RyZ
zEu>!%JFWL#ZIDbBtQMj|eHWCpU5;fIhd<LZa|ucR(9kw_H%Wf<ju*6iD;8Tketb0^
zrOyp|KkI8QbYnphwRkC8bibz@Wtu>Pyj;+5kmwz%vj4;z-W7S(*lQWEZ#lS+A@!bI
zs^DeG8u*x(!f+!hW$#zlyXl`Ej?xiVw>xL3nIyN4D35_yPDWyC?BoP>_l?N2g<RsX
zvM1WNR;C+#pOZ4L8Iw%yOHDC@KPE*HP>%}~*zfYy=USFj+#&offqtk_D?bf$?Exfr
z)GZ2H$n+)QQVB!kIo^IGbiZuWY4t^;&5)W3dPCpE`3GA#%JbGA+fDUFLSzpyRcvcm
z+^J-}46Kp9jVL=oVU$8+6rbXHT4W|rpr+fVgtJxHth#jK*R8Syaxv%pQcQTMUTpR+
z!&nsoL2rQH2L5%oP&ABJPl9vP+f%8WR)E=#g=16mnSqIPq?4VJRqWD}M)|4~0@l;_
zr{QLFUc>waPcp~J{UR&l(Xs5nyznSGv#hs%3gW`qEe3k)jp;+r{<^!TwpDqn%?Zua
zqbxo&_n`i9O?DK!Z~QTay9;{U3~yQr9_i_!fN5d828o9Htvo3(XdHC=F&35E#OWV7
ztUW)55CO0<FF{?TnALiV#pOE?V|uv;BDN4UXgu!i_dcB0k4}l!??J5=W3ewi4a&o7
zS<EWW$KR<<WP=I8*2z4W$%&$O&2H9(cmIiOy!pcJ8KK+2Aq%Zk0S@Tub{YZt3t0!5
zxrI#o-7FyTEn;A!LC8IkJmuw9hvcYb)L`O4vLQBJ<)-Q`5AmTgfSX_>QCo#Yc*L7-
z2c}yI!lR{JE@H8X=Z=lJ>xfB~Qjc66hMP0<rM^GUC#XT={tf9Lv*t`YIQCXC9F_Mq
zpDrbC2_6%#?r(WpUZyP9Z^NvPq`Yvaku8ZNYlq6cslc^F_oQ&a=vATt0*TPk|F<Yv
zik6EI)ooF9IlN{otWix@r)^coQ`T4Vh|spV5L)z;+0T?y>xYZ~@jbM<4`4a}WJ}@v
zK-M>4p%1q~D0FBaKY-ekQNRgz&?VZ7D1z*4O%(w$bkeg*ye1^OAaWh%P@+6}$_(lC
z>TkoiEsA%31EI>~2m76r>Y-JbSvkcG=1*t~RkyUs^v@LSsx9$ygdn{gN%=$oaw}a(
zAGuqcp*n7ipY%M?PYq;qVY-0UBIk~KhZFhY;n6w{{V(XiRNEGc>i;_Q3y9)n`5G*e
zAeA8aYneB88Sui_34b{8fh{tGdSS8$eqN-z+i%-Xe<&Mm@s!YC^iRm`-%>#7_9_Hr
z+M?h9r1KDn2u{#`N?;JT?~eG=oG&=V?$?+>fv>Ld%59c%Z7BPMOO2qa4K)CJ|9`G1
z6$5_!q3v&P5hvTRmuR#qTlJPJyf5ghGn^o5?d_pPEs5TOM^2^ugkNpIcujd^<Cjy;
zg^8{Aqnx^aa#8lv+=>?DI0d%&h+);fWWe^Zaq;4Shkh{rwp&4URJ)oXy?_^b<X%-B
zMh)JaMUnP?S>>g^NW|<IhPe;RLFZjC|Ll6N>JZJxQKi(Baw^Si5E_9OuND?6Ee@5C
zYoe=p7wd7gU_38Ly(I#5JjvvGWDmR8`PR6+V0u-|MqlRTvPEJ_6UaESNh}|~p8Y2b
z$31y;*Kcc0IAizuXb+D>ki$i-fqa~`IE`|tM1qHi|BM|8QJd9*Z#emCf9oSWn`VSu
z!yS5Qa;n0B^#pyq1RQPIFqc`#=4a+u=(sOYGxfb<<f0)0kTt5Z=xsU-*_~K+VT;`K
zEop%|{j8FcAG5t@T)6un_%8V6GtOIBIZ`e9L?<!=C;O%xAVFv1<?XOlGA&FX6beXs
z0-#G(^T|LdaqUU$*XLcSL=i=!?Yxwyk7@AL6`>$Ujs>qA3hJuTcn1I067S1JFxl}w
zH*;Uttj0EWbu~F<iXmpy6Y-NGjwFLRwTCOD^o;tUorg$Si0&W5Uz2p*zlJX;wD1CH
zn6`oIa8RlgqFQe(y(}ml(O2Eyrbr>xwbFe?l4uxWp}(@{o2d4hM@aN=9M;0U1B%-E
zmnsto)tMNv_sqkc_Z9`vwtSeA+gDhZ5utoUu4scPb~N)m4)4G3*dR1VNr^?BbmB^m
z-(r@0sQlV=|0#WUXQn%gxX?cp8;`UA{FJ@GxY%r2j@S`qqAZZE!Pt1Rr(`^yz?;u&
zfzf_=rKMo-yI}yy#ajOLWZ?;neWUzoDwmbS1M5?1*Es5S9#Ey#0H$w6&5^wpD@B}R
zLj3>2<y=UQt0d)ubnWzq!vMec+OsBCJ!KJR;6bhi$QqNpl!I<6ZSKa0=)HltWqXH(
z4ztq&cl_|GNRuci1z}U@?`}1@JQPlyIF!rsEIKx*Deby36ZN`-Ah@V26ep;YC666<
zA4Rmb^U2_vpT=N{0~^3{PCLRqvaRCrH2TUX#cPyb_wQtx#bgY4_RY40*vPRD5Ql<r
zLQX6}a-T@!s$zR_PClY2-#@brJ6SULNobG;%F@}Z7l!3%ncjfBCDadK>*0L!S6;l2
zZ5xE<Dej<u`7^YKBPtHZseUS=k5RyuzQ#^8E79B@ymNa;H)Sf^nKL;@rxCJ&`W+uc
z1RO|H_tGVa&{tdcYtV#+Z`siT%#keE<+qWmE08}+yOhG~iBfP-iZel?OElhUSttl2
z!OHRUkv<Upvbp;>;xyjPAt1yuHu{Wc_h3{u$e2sMnT+@Vv1^B;?8{pa_48-X8&dzN
zw6{%ES1~BRSHw)yHanV9=ByFHJdk>Bg32CC$r0cJf4?-xFgEm+djh|6O5Hm<gSC^S
z`+mF{ly9H<B&c;lEviHu3KQfDu(nNaQ5naVuJ7!u6hQ}5ar(`lADC$9x!3owL-R9O
z@zby@J+gtJL8SIU7>}7ab>bS2h`BjIq%&)c?+cZY4-k@TE+d4@7OXnJ4Q>R$wYQ5!
z5mAS*Yq%J@nf^}v^m?p8K#<8)%;s2z?bdVjV30ZZ>7`DZ*V7o=G^B0rt<A~Nh>5Le
zx2HxI`q}v;9pK#F=zC^N_AA#N6#$+sL<k4wUcX@v{D%A$gRKT8PO)_FRPpaziz&<U
z%VX;@g|Co|c}S&9M8yLGRrB$~TI&Bft<h`wjw9ox9F12t8Xz++`5Y0IXHZE&kUw&P
zSx)}2wB1{DN~^Sw>ma{ISG-xZX?+B1CZRK?w_^W1AU;CE!k3tgl~4C~0q^@Ky>d;T
z%)a6p#|y1?$6wz=QDSCum}&s2dLfd&VI78JMJxBVdVDdEbV#5ysiP*6?{bTgF->v6
z=`9I_2jgh-3`)W!=S@yJPPuj?m+3~0ED^Itmy|l(M%$cLVV|h)`j4#@L2@JN0Y1O0
zHXc972UHoBjTPk;z$58-QBZ4FyAPC9VGN`1i*WyQSNO)G%eQVlD0Xw~1!(O!q|MfI
z6Xwj=`MP^7wvL(J@rCK!=Y=W``z2COESL5}Pu7?AWbav6GK5z4yYu}31$Brp_8DCg
zd@qaiGMZN)z?l+uY?q!YL)}`Mb`}7|8#bx5s7OeOTBA@|mos|OLP?g-H2D*VRJMC%
zGbffQ11XjHcr5$DG{uu5y_b8LWYcdOw#Qj$Q?~BfOLXUAICCR$UU;+P2GLM(c!m-M
z9{qa%=U!`%{c*T-j?DQAvqY-jePHB(M)vgA*rtw}Y_^N4J&2zc8Z_)YIw`g?kmLO%
zk6$&{i^*(?PFFPhNHM@17#mqtbPU7)2g`elY>YFM;a(XM5~hw2D+8qNIax(yfPc2Q
zO^4<tDC+@;_np9Xg0L<t4*aAds^TI#X>$x!l&J{*Z2Q>gN(_Y9L(mmF(_E!7VT(F?
z8DSx|AoqA7{82WndPq1C4g5iAT<Q^Lp_4C4;{dNaW91!`^w%Oj)JB^V>nYkd`@E#5
zie(qhR|moqAwCUbbked!tfncLN4ogY*Vf8IyK%pss6}FHhGPeQjgWA!nMC1swx~Di
z25l+8$|9e|B)L4;Ju)h`yFCUnn0hYPi21%2vwE~R9^_7xsMkygyHRV7C8dpO5{;UY
zcge<%f~aj?bER<}UkO4-MG;^EPHyX)5zI3xnP7^1G6(%pEBq7>&h@%Fq%%={ur`_D
zu#(?3DI;O8v{a&UG1_%@5#&-61(I`8#Rb$cNZF#H+s~tXhjdd%H&a+LGufj#{xH|v
zQops~F`97{hSTOpXASw7IOm9hW5Ef&j>~9y>LJ||jyHHu<xl;ezH!u6EH%LIfd|R!
z_(=xlyyH|7<Pp2zdhkh25=SnHv~<pg&%InQ@ZTmwqnQZZRMY2DH7a$v&jo7Egb{>l
z=vtk}6NFo3kP1|ZY8}E8UA~sF(tL$bf2C_Ux%ona_ElV2W?e);CtS@APAB;HT(dLB
z#;23vND-z8{V9~ecN|`x?R&)UE~5vlc-B4LQmTE-k)#4U7gGU-Z6=)skb6rcgFg0M
z2&Q>PL(#ZzHbVOO-vn4^vi3Ty8K;5d%3ACo0-12wdd5g<ZEN-7smij=ELS%!QF3Q@
zq4>SN$b&aD#<m0Sz1iJNe?{LGD7s`9i*c6=Xeip80T%$&pe<wlDqW<vS$*NcWe}+;
ztA8<5h^?-AIH4Mk2-<<2GsoVdsXpviHG5M>0Qh=)xU}~or=0)I>y0J#9yub*qy81Y
z!QDE`9YK1q4*z*s6VVvMBaS6>cL9VA-^R-dc@Em!W|oo&bw+K9UsQ22!E|~ZLhFY%
zbS3uS1WgJ9H?5USZHMXe6Bf(iiVDVU_o{ID1DKG<Cz7Ra!OTYZtcpZFnH9%vtJMHh
zH~;QL4UY{?V+PjQPQh8rxNI{GKMI|}`SOk9Pniotpo=^2z|89bmu2!;H!5?)NQj|^
z2kC$vF@$-W1YCnooJ`R1U(|Zy3J=@~bo{$Ey(CDq0o+%R?&OzR{wyGvG|j4aED|&X
z-a$yryV*`l7vrW9apAH$1-NDTo_Od?PQ~cI!Tkk3X#r^x@~yX)PtE{!`cuDa^Y!v$
zwT<i{;x0YlLJP&!IKXii@x}5och!WbjzPx<-$z(drBQO79zk8lQ7?)3+l)qq9;!h2
z>>$}yrR14VF{d7ftr~l4h>;QkTpC@n@s$4ckp%zw!AeRk!qN#PM**7ZcbDMlGJ%Y3
zx((!O)U$EWky$A{ReACwu7>g79r{++w{(*<4qhjf1l%04rSw2;qnN0aZ}KBDjxu0U
z*ZT0gy%Y`bV&c5?CL6M8R?~j_yZqH+*F~*BZEOqP+GYf3bcI4v^>TwlBYuKV2zn@m
z)+p-W+MzlvAq-@>O_-2a5yw*X(Bu>iCj@T$Qv4>WKnRrDj4;yBI|Pfo!O>teHUV2j
zh=uxDFbyXY?-oHCOu!O^d`Y`xXxMC4Nf(y-a?|w&`g9|!uLe5Zixn0R`Ge|)n*n?z
zk!`Haj(os9)=_&B?Au<YrZ+WcjUAyBAaV205bsT@wgH^_T=lH%$}9v7eLRDz?d4;p
z>8$eM^6^qh$^4$!b<=8~p_P%2!OE0@4Badbi-@D>ul>X6v!J|rE^O4J5HF9X@pXT6
zPP**MtEy=dnM~jGl~XbkRXNlA$-NJkc4ibGFm^?V3G0^FZP%tW09cWR{NRbYjMYbh
z!M(FNFN6`-jWb;c=vHd86ce?B5NxNRUk9=vB9;|~wlmGI1VNcw^8*)DOF|9;8PAkP
z61@)xvvtBJg0xf(A#M3p2q$KeUxt5($$L0|2@c|DWEW#uY2f7JIh8|Ix{KcDxi?0N
z>Ja2rWV6y9qq{4yHNNpcmK9&~5CNEf`oquof-Fu`9wVD_NX+3T_6z#f`jji#dwdjR
zKpT!9|BbB7`oXZ2>&9WUm$^RfX99bj{;<A8^656p8fH_y`&0C8l%HIV3Ehwj`}rnA
zqZ;!HmFt}Lq}?S{-xj31e6|N~_*#uOZf@LtZopG>(V-1Ez|4F(`gg;O+#&<vM8xi&
z2$OaxX1WC3eSDT%`V9<qAeEKikD1I09#i+>4hb!~>AJTSCf%W$or$5CQiQj3m>%YA
zmY~HdU96EqhQrOT1+(C$+Jf1^devsT2EdLDF<PK+eNsE~(?+ab_#p(S8x`|HqW&UM
zV&m_i$K*mie~8Mu$-0X5n0BjNT#xpOc^eIa50BSWCH-qO%sx4FafR0i%a$dE%0k}*
zp{f$~3x6^`%KPR^i|4oCg{Ct9{B*GF;oqRQFUp4wbWxI~TdLRuY>Ww4RW_IktX8W=
zI4}0vkvkGm6R+27+v7%)A2fbJ?zq-7<QE009aW&)W~_PB`d2&`jWM$TMy*73&qJ)*
zY??p(Z2pBJ;U7`hKUg(1&u52!_3_@mG!t$KolO4xm{16bU5eN04Litowm`6UsH%7L
zFn9EVMb~o0=ua4EG-_2lS7CdWn^_zGm*4BpUVc^l@BZB4|66$Xy+&!$B|Jj8^ew@C
z!f*e34=8Ii*c{s1UVreGvyFr-!+$e3p@CBu@tS1LM>=U=UoP2=5*quR5+OkHpL!t>
z@SkXhHk0iEHvA|Q14H}#dglo{c7e4xgRoIc0Qar^KJsEp4!`hybg-V}(V8*1$&tr7
zc|0MV_Ts#Pc)EnP(YI9pje}NNq=xSbG|t3nsyf;)J$R7x?SqUuI`j9S5atSf?c30&
zk27O)Y(N+<DBxZ~r-kH|VR2;*8~e^Ma}w2Wh0gw-5k;YJO|#eE8s2Iq99u}MlBs_8
zKGSC#tF{0+ZxJ#^J;`Q^BfMW<Q<OsDGd*_rbQKEupM+oj<;u=F78!HnN4CgK-Ys`B
z^OFzt*?*ig8QVPGU#_#ECc(<`pewhD^2lGySe`--9PKTx*WD<j?}Bz$x6@OJ^3#j~
z)citbi?If&=-vb|KEx<xU1)alg2rsy%2aF{%5Kx*q{eVGp!2BvZvCCbbZC8euZZ@8
z;=L!)^!n>ysY{5`7S*l#xM7JKc}8-?NWZ$$yolncZ96XsW|`}=2$5n9(Q0vVuazU2
zDhc@JeLl^?^vA@F>Dk99kLs(LM*<B~QMds2A(`K7^aZnRUw5Qv##TrP9<jh5?4Vn~
zJoR_K2%!>N&(Aow%jm{WeJQx?8xyiMX*2*t#bKgF)wkPoXdSaCn0T<an+_COTXi)q
zGg6&o&iKOc5Ns}u3P1t2AHZUV9<n`Kq3`!le4}gfk+i(I+`)Z}Z)VKK1O^REkckTR
zgU!6}TJ6n2^HNGwGR_^o^^|Q5g^WJrgMXH}8BIf^2c`-1iM?KH6b@<+<%t25CemCA
zC6k?eQ)}c&P_)bX-qe=Pu)&oQGYN$nD(%-FVbCsJrdpE~P$h>t{G<b?y9WtSl%@3V
zR13`1KOan;o<<Wz1F@-GJST;F;{ueAk8jL)_(t><7_b24Fp_5qe#V%~@xjkm2xKK%
zYya<q;FN_@V?co%P*;1GZ;m&%yLmr(cQQ5C2!5-9DZS@*SfXa?p?^_g5Eg^q>xGAB
z1pU>6uRcb=d)n(E>jJ7Bc0s71EJ<UT|Gha2c%7h;wa+r62Ct-0z#W2N8Q%TPFJQLe
zvyWcjmsNqF6kHO18Fy2MTJh<(N@28Iiq=|oLSYq|KTGvY6=8G#qHlX!kHgi6U_X@u
zAJ8cKD!778pptzT*GDci)tqH$hp_UzfS7C}HQ`~f4v*Hc=^)MLV}++@eG~WPsQ!I5
z>8VU3p4PA}OJzdS+Oaa1)6fI0b=R7VE#t-<Z8^pJcg87B2hl^B+*e|&!J<GZB}c>B
z9z4Nt#SPB5jl{hI{N~IPOQEjlz~x>;!^w9l<)HYE_rfs0-o@Muu0Y!kr)A4zabWh@
zxTqY{DKmSk(W&4$6ce+9SpZF}3--vL=OyO<M@mt9V{M|tYAqn3G8YKK*r?_2{{5zQ
z+=~$bH>pVh)TSE6tnX&}vQ|(^wk5FUp2rHr5GGSGn+=Qy2krJ@d7?%@2cUFPFe|v@
zP4@!DaA|q?H_GlcYRsqgtf)U&t?4t>>DCuW5XWOVd#VA#u}+XSJ9zD8tJkF_djQrD
z9b+eRKaUdH4$dff=j1nIKnvP5w>t2V^WQRLRTBGjl((mDHqoG$O{2(7?+IBAuHB4t
zpvTDT!E$&7Kd4?KT-516001!!0jLasy$B=!*zj(i*cO>bRHeMz4>HAKw~zEy2BeBy
zH|ULh#eZ1Odj94}Ya&ki4gD+FAp17~@_sJ=tMevGP{Ro~iEw^PwO<3_`0Zt0@f+RE
z$ORqJ7#MGtR~#Ke7Py!+V@3kA4ay2B+e|@uB}XDUn!GN6Wk|<fwLo^>dk!}8@u#p0
z=y@zIBuQ}Zd}S3oD;a=a|LQ*SLLERr55yc|)7<tE^v_HEG|Zj4fG|fi-p5VS%naab
zn{Po~>^d5%z1AEEZ-5|TyG^heX2YFslnL|5Xj+Bv1k``X``yW^ooKx{%Dz?zNhS`U
z<^|>vk<?G=%3-HFftXPQyelB-j{8`c8AQteG{(?Qby_Zj#=~hB>o2>Ju*TML$ukHb
z89d>4xfa_!OQsqz-8MeA<0W+C5fKS!><zmj&*E`9@TQnszU_?&5_><^WB)gd-;0(=
z_$3WIpq_W{T~?2`J)@wL-2^8FD?%CGZs!ppb$XT9YC*~-d+lqdLm)TXXp43@eNcw3
zIOC;rreur?%{)uVAd^pY^(^l@N3F=j_TBSBlJx8fvbA$TT{TA;+%EYNA>4VAY!5$s
zFWJ!Nhlc<dB?0{B!3PUwowp(M|0KR<J(zN^g2=+Cgcy)N+x=IA5M0PwL}Tl2O78cS
zrNSgUzw*Bg!DCXGhP`dkp|jKEI*?)X)MsULtF!FEu~c2tOTEA$pSH{BKje0P?{VIg
zkbLK0ZM`0INUf{#g^t~`ojghWuH0LEoIZ%c9@cHr@u%+m_NB$H8!;*(@cEL}+*g4D
zZOrJM&!!3I)*Yq+?;T>2NA(OL?ooo7%K#+3#4|y}F-36`^(-@!1I&~a)ivPE1B}<#
zF-%>6H<Tr6ME@mJ|J~5`=K`zrgq0yGvVEw(dMQ6>tY#wC*(*M+RINGzs$nl$A=ljt
zuUvn1Xg$pvS2KZ0A%+}@EOfy4X3zN#!WNh7B)%)noBVfmtpyHZiU3`h;K)EF#<n{#
zf~La35zCob5KR6?M_?jqUE5L8jI|4SZ=6AepN_mdTbF<xes~tJp&#FoD%Ac^%q8|;
z&77JEs0*4h>I|HNv$AElT+P<7f`<sFZ9j-gqH&)tuFH?6v7qv!F1U{93wy(7s0`hy
zV=2^0MGz!F2xZD|V#!b-D1D`=i&lZ7Mt>Ul>ciwmOF!w%wB)fn0s>c3c81KEfELiM
zgLY2mf`vRps-Y(TyYHb^FCsCg=&D*<H>nQEws!67O_JYE{i1~YDnbQ<;6lg~S!C`*
zVsvC7H)A7E@{pts@^!bGz3B;ei-Cevl9^T!-?j(KpkQJ>s?QG{x5F1c%K_7x-;E|B
zha&AMXSoitC{oZ=0=%U0zlx+go-SSmHKCzd*`|Z;ysc$OlPHn}dqWmulU7K*rxdiy
zHuL9_Ciy=S|97M{^*XPykO;gky@H*8zQ@aNdc{&eWy!3C?DFVzg`%~s{$CRsbQn!A
zFL1e>H+ZrafmJ@o$;}cRTF?F;AY>k5N1L8miClPLWH`g%B!?<J#{@<7|EjhH7X>Oh
zt#T5~qVdNMg5m6Q0Nmx#bR~sGiN6|=aM1w~w)^L0P9%FA58rinFk;EYi1LIyl%v&_
zpXTES%_|@Z1NOm2xce1UA=8mdP5p(Pv#P`LE_Y`S%*3P9$DO@yO*qeo%v*A-Vqt=9
z^{+jAX*POFAM;QI$=ck~<MBg!;);ba&kg5))JHt0lP7(Y=(G|Pt&(;pD(*chVsm{V
zm#WXVdjuK$`yVO~k-lza^hV(`!Vl^0+h(DPGN7Fgvdp%?UQ-<Jv;UCAn@+!l|IIcR
zkRGB5?j-?<CPE?&6rM|ZAM2~H&GC3&JfQr*Q4V(PzWaB!6FIgfkT%lL@M-3vOoiAU
zhXzQAN_YHNV>4+NfaWj5K~og6>PKD^A6usZ$CWgR5gr-<1d72<aR*1+xS|1%Vrc`Q
zn;zus(KPL^n5N?U@rci1Dm^}Y8K!qKw=7337Gi^pWxF;a?j+x6fG29%<of-lsCeIy
zfla0VCfA4vYAr!HXMpcXSGvlqN`8?dYPzpa?iwZ~o_E?I&g{UJeRj0VxQ$!EzH&Ni
zBaQE5i!;v*xws01=LU&+zNy4m+mIwj{f_XCACh(?nnjH7jt9Hqc#6U-S`XteU15`e
zR>6oMTw&_qCXnHMMie~uv<kD+2$M&W6&GjrwsI%b{}`!=F4f*x-qv`r40}h5>!;TZ
z3Yrw2=?b|<+VCQ4u5%}>;P+gmd|%}M6CWapq+<3dN}+TL$&>I|{|a1FlVECYb(H>>
zEDE(SMnmWpVk5;o9p+E7G0KV8(Z^!gQOMpJp|c*OaNTO{5LujMFf;4CR$+~Y$rejf
zQ%K2TMSGZzKasiBuR`o#n<M9i@gmV*Y>d`q(L~I13+(Pn>Vh%l&(>{*no2+4S-^sY
z4SzDD<u9shzI?#<ib#&&e?2Sq!|u`4t(B-01_i<uuA=ryJ+UO<85Y!e#PjJzj{5w;
zN>lqH?hP<Dj3YL|Nj;4(ta9pV|7wV8trAh?oS^zc9ua~?&lKeN_$l@YyT(aQ^G<G{
z8-rOZo~S`n`~QC2*CxD$aqjtW<S5L=(=~4(i4!@geJ3hb>EWq$ENj!%yPsWg|GRSK
zl4t!UaV}_tj}E<~5QXcil#5{=MOdol1Ft|eh8?iP=`#?FygCtRRZn-9_q}|X&%dk&
z$PK8>=8IeJ)vxEQ$|dyz-i?^7E_8LY`unIoF22jN+xg$ikD9Y(5U6sin&gLq;soH-
zLfECY=CR31OE4XPG~Vh<{FQUBG4Z`qE{$6l`v5aQ%)iADK&K<{k!!@Q_w}GIuL5JE
zr5Vj+7+Qb=d7{RSGBh+5)EI>s?*n*sD0$DchpqIWgWp|o8Xq+E_Xi{WnRLI_;^PeT
z48px$;PJZ{{b?|DYn)Zxar{J6n=>R;@4VN|^{N&e)_<_;Do=<np)JB(p?)W#J8Be6
zsJADo3pFiRy?-xTqZ0<ihnS`_LGr>Ekm444yK#O(0Q{H)r&tU6tUT#g1E^%5!U9|$
zgQluG*S0qlcid&7joF~$XQqlLD;Du}q`Wd9zD@rb_aZUVGpE~&DbmIc4@!wPum*c;
zdeNRoEg{_2IM$!M;v!s4$)VW;5|2qnKfr~bwYh?5^0s`I#WKh1omn6{Tnc3<i_Pw2
z<&3R!Hvab~F&Q6f0``nj^w?I`@@(^R;;Hpexe?-gfy7*NTWFGAZ1^!w$Vi06*VuO%
zmdNwQusmwif0~4XMMf`8&ec(OG*ILT)~5@2L!gvHr!!ME3O+*zWQz8%&xYn8)j~nN
z>W~pR>kJ;cCs%IEX`1c%>8p=OP%W#zC-xI=Xq_gU2Zl}iAO6b`s<aPjcdBhL-x^M}
z8ZXTHARnWInob??l`$AS5Q;1*=wS0fS8UO182vE#Fj3@EUxdXIe23wk<Cv787Q2E%
zd=9~7Fd0p9=4%AJEl6uoiUpuzz$j_i7(;k;LR^>AgB{NSC@@htCZGsiPCqI=yMCIh
zJn^H-d%BG3gC^$N=*FQIxzfl1h?D9#kqo$InRbVSxg>%u3glY6KTShKEyRf;S>+0|
zMf?Ijki88pP*Tf4KT7lHVg}Y&YF>u62~jSJVFhc0%N4fEfMla20M;n<n{eHf8K{`i
zHY<c*2CI$uI(SmB9I8U)^eW<EhKF4rFk19$`-3*iIwV3mu#B1;#$EvPyCMq>hRkHY
zC$u6@CyO%%`LWDdERm!PL3)na%J5hNT6C^h2Sz*A$H1nkDSl1vDALY_Pi~VPK$AYR
zCB?57*{w3iN7*!TL4$jtA#{8#@yR)Be5Y;+*}Sc??Ta^vbFmi>j4vZ7e`u*I^AQ&!
zXFQ}BSg@fV7NaX^9xTMjhv5=wyJ0uun?e?{?sEpR*WUl;;oZJ5X=keUy_U5MirE7)
zqIJWczUfLy@UHT2kpv6{iAOR`?zIqADBHl~nU|R~M!(1e8tQ|Re;4{nqthV_pT|c=
z9IwOXbQbAHxChm()&~{W)}XR0c@e8=VUS?URg=nl%rQ$n<Y1dF<@Me=7a$)z_myx`
zmv!ZxV5&pRw|#3N_@;D!wWRYO`naxwaLa>p_0*9o_jJmw{+TuUaqYlF&j~T4hRgL_
z<Hn6Vq0sT%Zw~gB0%G~caNbkyel%;lu5=X_Ga3Bv2`0NbL93!7@V^4;VP$$KKBpkY
z+Wh%AcCseYG*nZC{S~HHC#|6Gw8egPWWlP!^JurBHk6a|8LCN3fi9PFP8o>U>~UKn
z&YjZ%BA9Ce7ww07(EOz6C%saAJjbV1N8J>+1A>FK%>1TVhOFF(zL|ugr|^jcI&kmL
zWRVE1lT*wSA#e{$k$~$*^H!w#qCM7+t*oQSk<qvY)hjQbdkjQyg~gGktP{cyTY9Ii
z*<WaAaxfNh4p)9XBIbDZN#@-y>Q-0kS6%YyIyZbf3d?QMn1V!ikhb!KWUF1IMoagi
zl!{20E>iG#rqIgpGdMiEm-w5d*I!%l#Ebt778#DNpD2znyX3whl=T6BaIi|nT=3M&
zq4&ojciBQ(+SDhMa-)V!c7MLTSD%3Na-0}rD1wLrOVqRVWQ9#M4cL4k03}Bs@{kxj
z`Z0VJ<)Jh+v`k7@;HY-S3Q-lCHAFLnACUW31|8x+5fKS<OHi87^Jw2y;@LKC&2N=T
zS?X;4#}A|JX>s7M=x|0T>))*}7<xll2Yb23m|gN-FGKgjg2QZ<eug{ggG?OUE?$!K
zEFtD?v4|Ci&H`O0yhi(#J&skQ0|^9+S}e4OB>|kJ`Kw#(FB#g0I?z)HLYbzT<*b9@
zYS=(M16(y>UIzKlr{nHouB7id(~sD3Bx3GxXm<AKUg+Ub1N4_Iu&sD5pzyHGt3=tD
z=LK0Gwpu=)SP7#u;n%^NXGG)laM*jVi20RHN-UQmHe>GH#HV8;r}rZXfH?n<(MVSx
z6oysEs|Y7x-r^ox`2Hi0q7cUVimuEZoIwNmf&6E{)1U5c@YI;K?5|w>CC8NZ2kU1o
z4@%Uu=9ujat&>M8T!lZzQeiQ;<RqkqU|_=XrZoi>S|r57uM#N6AC5rksj49_Yx0hN
z`%Foog$G6MsZvI_`o->00gCS9VJ4T&D$JT^GbZ875UDix<g|#CDzyf*tDA(kY01U(
zvw%0nT)*hJMFl6l(;rVv<pq5D0rUaG;fm7;+h!|rCpWas5wf0WKRbw!+Ecl#S-niH
zk)GQai6&XIa~i0gLFx?{f@Row&zuIj$(j$vyMg@DG398VhLed#=BqXq2uxJjaOwAv
z!3_!ACrW7IagR_Hvu>a^R9#UnRSX+qdPq)2=|L90fh*8?yY!1pJ4>KFNksQ=jKfw6
zqZZF!5^)DeU((o*=ah2BeP0*m`y;__uN&%Rn!_S4!5xm}gdUhUm8_1G?ZFO4B_7}p
z_Q9s^M8R5Qvt}8ES!tHoap~<k1(r~9DN5sVN@SNZePFc$>2lyW4P-4<BA73Gz{r2G
zsnXG5;cIBdcPy}f1lDQN%qCaa-@kBvowE#XYWT5riy^)fB1h(b5h8dn9CQ1EFlC;{
zH9`I=;Rbxuu!d}wtkJcIjpb0tTeOG>=9UDRD3K9_GSN0K&Bo_q;(akB2baQ<h<ld2
ztrbed(zgWw9S)JX4qDbWm-6LuSpSE4NPj@m?Ss>g7@T74GgOoXQlukq7ve70c0;%}
z#{59ynXO(39@jAY9|#G))+ZGbGy0li>M$B)#K2U<6s#=<nqX9!OUkad`QsV{{y@d%
z$`4;<kvRWh=dP1&6R+4p$~1Dv+_-$@)49{Q$ee5TAVBo<nW-`%4D6MwI<SxNWKbsE
z*%_fhq98*OaF!ZFLB)S&Bq1MCrR(RxiL*WWF>HS=ex|R2A>p3PA!y3E)7xD{R+b=2
zM!ZQ@*C3tO3BC!0Gh9SZM=wKeVD)Azl-#mq`-J+o1zT@C9}#)*)iM3lKq-}HXc&s-
zqbSBPUv(C8pyrWE@<fJa^(&Ph`L=T&DwJaI{Y-G!(FLvFN=qK0K-^Z@gLxwlspOq(
z@k!tTWV7n11d>tzuCyMEOlGln<;JShn~CrQW8|1Dz|oU7Tn8I22QQx^u<|!kyZ)Xa
z+HF2SRz{$vGacOLQ4$M$g@<hDfuFrOVJZ`3gCvrh7(6i7QHGQrS@+P+!}4Q)y~dYz
z8=33&qL4mU+(MOnfc+hSKiX1&!r(x`MDRN!IbtN#H@$(=5K>5(Akc{l@{W!NkBZka
zuEBAo)Zsp@=8Cw{nExV#XKXcq&H)LdPGS)9j0)Zr0LLmHOly<SVlvdse(Mp}vz?4G
zj|q+Nt{1W^1F{S1TyC21U<}+Dy!PXVko+9JNP9J4{~;>gN@rsayuPmp$94znH|hGL
zfi5%E&3_NiWGZ{Z4)HB2pSi#a`_+MOt};DGZh8($11{gIM>a5n*6jAjApO0C)3Lj0
zrM+B>eN+GixBdSKXrmb_c0CiU3~l!zO|LNaVO!R~$I)A;`n?}FK@fLc*p$QVBmH??
zH^$shqoQn;{JWfzF>JdJCvh?$hmWpei%Cwm&Y3ulY_A#7bL`QW-ed*|{Va&Md*2Ud
zh_^M4H;Z<vT;t=8PWNE^KE;DW^iaQICVyDde<s7*C9rG|P0Bj|3R4Pp#ut5LyfA(X
zc0xShiQDzTVS^u7VYMrZ8K<a$DhkcmVH)3le3s1G6e))yQx@BnJ<t!atftaWYZroO
zz@^RRvQez<qg1NY4#F@eneshnuk(2nVK}#W7y8J8#H~=ljZsXmq{Mj_eQOUkD)~1l
zxjFxDpXDs=!gm-q18t{P!>xG^_NpHM<oL>??DX#CmoHd;hazR)^x&)&01_LC5`hAo
z!FxdA<yG=c7s3{u_vwYq0i_5G%4MI@FTsf(%eHBN@-EL?=auB|zYI6}xZC0O(3iB=
zl<N*z{pVolZ_mnK!6|;FYyBQt(J+bD^_TQ?e*32MP#ZGay`ke12rV*;7}xhwn$xuW
z_hJGtH6YEd+Ht(sprQHXpsA}&U1in8w(e>{Sz}zB57KpGm^|mfAs08ef(tWsNR@TD
z>!kVKA0rJc)f%pGz>HTi<VQ5hTysFuvbs(Rl$~@()b`nd3k>Wc9VW1Us}`MG%E_sa
z&q^xRmYszUd$vVp{32-wKT2U{iVaVA4hnT?(a#E^Y|YO&0@B4SCvA%ij7<wQH$;K>
z`P?WN60!f#c~yg^!U=G?H+GV~Yb=lkZwb|=rHze~_vN6{siRpPabXOC<AM<0=FhNm
z*>D5HxxpxcpF5J7{w-Kg0dxCh*u}|%i?;gGzI<BwiJ$9S^iW6)t4gRZJ;v9X@6PaB
zHdne(oK8FtXb<ZgtJ-H4WqQ@%@Hog4Q6ja)k=x}v5Q^c=D<4g$;hr0l@^waGYamd*
z5+59gf&N7ui8&1I+r1~jGV$it+;L@i$#lM^_W<=rHz~k!Naz*Bf3d{N_V(ZOHt+*>
zxY3B4mssWYqEa4*+BAVP;z@<~rvx&X0d-HJ!HAmX1xrmGw6XeLOd9k+fV1tf)1}B5
zp;1;}e4SD~ZcU8l+h|kqSG*@sHJ&mthhPlizmnD9I07W`xb?;WgpzIuc0MrN(_A4-
zw?%|8hcQ5vuXjZ(f|kgx8Z_3l0@${6n0`MSfgdW};-#f<=yyt*E93>93+o@ivV=c<
zx+a!*qsHy~Tf+#>=wXM&eI^d4e)U+nx_nP~#;h7L`B*-*C`jFDK^`F`n+l63b+I?d
z_Tuux->@5kn!cVN@S?OBZGuV?J;0PqW~{eYaQWs+98659I5FprrUO%h<LPu!A!-6j
z%3?{fc_bK2um~_#C=}11x9(t01E+d{f=dG(d0t#Dr1)jSO`ve0mcx_Z2(qYglBzdt
zaL$2mHTSbFW)WX!hjG=z5-SxMv>^?CPuSFToN(84<5u!&$dHjp^qe;DOrOv=d@-fy
zYE}9a?mvz~=Kh6u$OD;&(W>fNwy*Q=jv*cLk#fWuIg**F*nzeh78%(0VGWn1z0M-;
zh$7N#`Rauj`wNH@&&38s1V!V-Y;T)O84jx3xq{2+hy|TUS=_~VT7i;KL;;cS5ZGna
zV%D<o+PGc(!9co&%*`Fn2JeZL+P0P+hS@yS@BoG!M7DH~Y}Wbi?1qZ}PNGW+Uw@ID
zC)vykqOLW(<XOcua|ezFnpOnE8IR-@?R*s*CRjoYjXOsbfe&mY7f=K5b2(ldLciV<
zm*>tgf(_{}OUfWRH3_BmJ5-Lnz|DC&9pUSJ>To6QIeKI|*kKn#axl?S-en0>@^T^S
zRW^=xTNtX))eL{6uwlqS#&rWYyuUwTi!u_Wq(=d1jw~BEt!j3*rl*}%f)F>*!b;NB
zZvUC9HvcDQEetKvYR?GZZP->4M7IdAF93ev*WyPA>ZW%AZHLHgz~45?-uuNlu44^^
z>z-`f2Qcs+qT+DW50uzBis#e<MGFmPH9|7sMzhQg<Ha+vy&|II!ZSMpE)jxLx}=w)
zWC16q0!-6a8?uLA;c&v@o}m7GR10VskPH{U&0*j?!Gm`#=)U9xS&M+wYCu|Bb)NuE
z$wGkB)AUTmy46kU5~d0TrIJMic_6_;Q<6%ei>>8J2sS7gHSE>49KzM`BrVae^z$br
zW&}ob4N$<(oJwbSt}N^7kWsCFO$f)YK^L#n-4pR(FIz{D&MTA2oI&WqJqyPR>zRX=
zq#tPB#|T^-$Z4-fSh_705F-F&8de6ZC(tKutvQi_VcfpKr|>jZx=A3~uPr}P&WW4X
zB)|;n|I=So?D!cWsTnk1gNlOj8<o`*0q%=eQs<+}IhJ#JYK(JB9YLb-9J9<PJQsL|
zu;N*8%^2XKc^xq5#1+U~R27(hqHbRF%j9wZG4(`16_yVG#MTNi(*xo`@Ax`Okw*R;
z<PZJfWEE*a;BdtK|Jh^_Y=S=z$bd;ZE-^6}SAn&xXsja8ODTP=@_ze{@QM7orf(I@
z`mX0lX-mN8+>zgAit!{=+l0n*K;NG687YDc-i7><viC!l;NSuMxqVeF!V%zdecsPC
zYLDuRrymOa7sx1ThtTKD(d*ri=AAwW=fEcv3CBucO_juTx5jQ*kz9=psi*}_o4az8
z*G&7XQ_^_tw1df$?02q?w`CJF8bu4vbX%#6+}9*FJ`B_3oDb1d5bz9kh})1av_Jod
zeE<KZZ~_|AB&Vn(*+|^Pz_o>t7SZIRX(~U~Q7nllzk4iSGJ%d#&(NXLxl587KgBrB
z;Ln}fUglx62-IhChJYcF!~M<nj7O@5ns1G?5)!t-onaVR4Grmq|F}&vJ7EUbo@9JB
zYCwtD5LV5{IQb)t=@jTn(eUDs0h705V#x{J*AR>+4RLTz^jL@;>wV+G4_6L{aai@K
zJU*@>)R@l8K--}nVNT|1H^avk@%Z#;n0&EBB@EaGfM9V4YD=Fk)|+aT{cUqU0dEIC
z1+i^(%broJbp}f@oeg}~nqqh*bz&_a^zG^!v(W!f&kZou527K1DO3Zp%^Gps)-j_j
znVAW*M#mdcWx<*F4{>AnZJhR~_sgRvvaOV@Odp?)?zxLsy;K@K{O9q=)9qUj^)wtN
zycY;AQyBfG^S6vV<CHZzJRt+?#Ky?eUHrAr93&BsfGky3^^j{Xdjay}D9&J9D+GvZ
zO-_>k5;pp!R>%VZ6Yx#zg0x5crUwUIpB_FAA**bmp$;bV_XAIZA3@vO6xiN9y=RMx
zqssvysMX!3j_0PI$qJTI{UvThF8@C2EG#xN@7f!IkykXFXFv4F>p{A3k3mDHrk`&@
z1uqkEM<T)~#<1A?IZZH>BG|Yc=UTjnZ+>+@b5F*n5gklZu}~0~nDen$C-qGR^E1dG
zGM1xrY1v@(%bUilY#PDxh5<Y|MW0NSzyMpZb#Yla+Eol8W08ox5Khr1j9j5>L1pc*
zkP!;cP50x)ZrJmXO3c}{Y<I#6X(hZ!;02)#ZLU=sjp)%mEQ^cIw~5<&b&ZiOO8Fm3
z5#fpIa{^~LEGX2o!Yk@}SAsk9PySW9IR@3lC8Va7?%Y{ae}GIC7}%+$Wf@F#UhrzN
zqzt1V3g84@Hz)d17Rwxij0lmH1nFjdne}wix%5$}3?sIin#&sv5`%IBkrE*P68mzz
z=u#(dSg+LLIE~!_`7*o*VqpGitpfYTw|=(jTf3ZlHL(q?c5h2If!xSTKEOt3xd(>A
zwa*|!kM1%RkS@juS@43F|MO1ulPt%FvU}9h<FKI+%v&7Ni&n9hM#~I>(u^l1$kP%5
z#$mW^AJNwPrQ2x){58vGRb%KGE<sJ+(NhWqAR&pbc#FO&R4vnN*6=Q1R^F$r1LkAs
zC}^t%dR8GyCf9KHmA*Fz^WX*i!ow!sfLkiPNlJJ$m{6G5#pfLx1e}HeeJ2*~eK>UP
z1JudyG;X4h)-@)QtLGG#i8aT2L0*x;X`@O(HJH=6((#_AnA<Y9Cb!TEMyX-YBz$(e
z_?=YghUvQ?jt#rF%h*SUx&){0pUR&`0XUT~w`zi*>R;ZQHcoxQFQ{lju9twi>Eo`S
z0Ay>uyZ5VAa6Ogv3Kmy#;7w#eVP^eHGBIjSo1ML{9k}>MS|Kjv7X|STuG@Cpt0f2~
z%w@*;FV^5_>S%%wUHl|CO1v1{h2H#p1%w6W76L)fDlQ2!|B;>;7RUtE@U*b|wV4_=
zt-o|M@&yRIe@UZMh13nVC)6W+{r95Ggq(HFYm_+4CqW{id#FEDBNu`t(T#K@QvJ;X
zV8G3~J~`)r09{G(1hcmlHp6O=4OXv~GfzUQ^k*e1%eVCAzGSs&F4hR<*nUuu6WB!O
zPeE`FwktHoeP}i_Rc$Hr`F{3VAT)!)gM^8sl7W^<uNVjSiMx`t(3NgX@gO5saB0<3
z@9THc6=LL-WWH?Bw0;t|T^GiVW{^FLjS1u%WrE(7b}YZ&m$|iv5-j48cCnsF&$g>a
z{mMPXnpiU_+SXDM!~7ZZ%)0ol+j(c=it;tYdO{cvUnGdeS0-jjGzkNi%k<kE`1i`t
zka$4Qcj}y~BjtE2Qj36VXai_m%I>~{y*HX?3xe7xhkdaFOKS1sY4s@j0O<r309U7_
zpKB4vY*wzDf55&<Y{x+ixiwF><bIpmnz}&}$(sc5QzP${UerxHaD3Ee;V_@atj)dl
zdI_5fT@~q*gp9H*&xx|oy>VJO5S4`22?_($<y-{oaY(w*Giv5;0yJ3Zwh&S6eE-8O
zT~3P>#zawH(dm1ypv3ji6$XO<`ho1|4Qk(wY%@PHG>xu&=jvk7j!MT@7~+q1k<4*U
zDgGQuzazIZ`lN}n_Yl8rp!%E#D?&~qVbz`y#W%R3#69siUGVO@>T7>(+Wp?zeGQb?
zEBkW`bjWGlKZ?Yf;VB9EWLtH}RL5<w$%ynd^PUuBfsY5!z@O#U+<JMf&ik1(B}Nj8
zj!%3Lk9{}1O<oh)qu7vny3owN>Fh%%VaNzCg}og*wOzDb8E*voot$(kA?H4I5fPRI
z!aeI@8S_3ls>@MCUmbIR=s9wR+V;Ue{35*=<lX{WTuKQx%9*rX1=nuxx+^hGVdVpr
z4F<}=c%Sgmik+g>@9{vzE{Lz54uEO*GOYV$D#G<sPob%UbwzznWLZ2?Oj0FBk^$K%
z#jp@HMwt3+@Ng;j(K7E>59Tu+`0ya;L%H4;6>`#i8)*Q+l;M1R=3TM8C<F^IOEteh
zP+~5_4eM=G%!W5h=fbLRN5llF7b$td0~r_^_tBlYA@)G=wCt7y8Sh%1$2oSN`-1bH
zDKU{t59ungtZ###lVHX3+pg5g{#Cuma64Dk5yAKPNeNbJnKppY^G_rT0ez>vDhPc3
zx(h`@NfIn`RMf*Bq@D>qjt+<Pt*?#|o8<2@I;OOV;RFu}e8_`x$5lgRcx4O%a{=vP
z?z*vQQc7SV>#Y8zOoj$e>+koz<^kxaDu_|7nf3Z#Z(%TA*mx1LP`YMM<T%?20V13(
z*j*jn4dh|e)2vH#y>Z^@Vv-HOx2i!$zLG_-55bdB0*tL90gUnU1fxh$Z-WDGfe3tS
znN8t4t1BBLA1D(_y3#h(4zd6D7V9*7XX;AXyGt(`)BqMGQBgd?%zNP3u0W&pE(7p|
zFs)wOKgf!D!!l>yY7sPIk3>q@TxovT@1-ekvCayiRrj%LOWO%Dcw!yiw=b=7kf_@^
zj3i$N7MlzW7Wb)9Q-0MwOm~bad!N3GA{W+u{VgeL{S<Gmt}xXx=(wH`Rn%sv>8tc+
zcPCu6xlLReRR2a$J`?|>jUpDVCqB5IzFBDK4S)t|-imqD742&vWA@<Fnv6vxX3w(?
zPS2Okjk;0uGR5k5%X^7n4&q^toPE`FFiZ<kmT4254F>|jgQlf^b|DIThuye6j2<x6
zm$UmK152GFwYGoc{t_RXp%^9r-dFb4va{VOgRtZQT}oMG{7c7AT)V2TtY92<CSCMh
zzWydgA0PGc{hoTT=a-lA${Pz+i2woI@t3zdh+@ST5x!ilyW)k?4}**O12Iy@E=P(6
zS5>YyZ{(ta(uDSNk(&xn+(MNR&A3pG`Mp5V11f@i8Ae`+uB9f>JE-Eh+IWm&CHJtt
z3PdIAr{M>Zl*pfQ;u+cn*(!JyqD5f6N$}7eyVh2AEXr@%`Vp*s>3US98USb=yTb<w
zz|aIiLR{-36t<Iui@3zKZ;LZ{gnJW+V&W!q46HJ<$LF5aotk$kO2vu;o|H-&ztUTu
zqTI0w=!R1?E}VuMotF8fC2ND^JV<z3I*@4Ev(G_&1%ffSvno=zY=b)=W0@!H&8RXD
z|I|p|s?(W-m|2FoB|?o;wL%SNLI@rOADo!|^@E39;9x4DG9*arw9{ogQaL+aW%xco
zfw2Bah~ngKrC?_A=vv6GzS-rr!S9`UpN2Cl!gE!(PsdA7z&6KZHIPCE!38^*7*=ya
zIB7Z=ZQjO_UKsw((sl}@IP+~3o&j?*(B))+i#Uuu2o7G?OuP!pDrA~C#iK<35mUoW
zB)2R#EPZx=YA?f(9ipsYIy%A_Vx$A=#{-E^_o9#7G_1JVAi7g4W;rxFmkmMe9b-`n
zGkqdlg@M<xZyhG9TWC;=IQH?r?=?R|+|n8KR9c-E<iLH<YZGZU)42Hcbfk4<2otV1
zLu=JBfocH(we|8*Kdoi+E$`zMkaB|xvG<3H=Ov*U>n8r9+(=`}4wOJqqmS|vZ{Mr*
z>?}@0fTrf|qE?zkw@q=BCyd{EEU9*ZxktJI&HBon=X9fP;|r6b>t=iPqM48}+1mS^
zL2BV>;Y$ovQa#!!%Wk%z2`>(;`?LML;ZZiZ#AzeVEDr<+i5D%fWR2RT)99~?!H(Uk
zMq&P+1Vz7k5Y#!+80LSVMgJC=U;HU=0kSed=;#$FgTl%}z9@esJ@{)$GS_wgCfgg9
z=IXc-$H9kjA(E(CiSAZaw$UmzECT&~yB&$RU*cGu&89tRFJG}Y#lg(xio22N;n6<P
z@@|C=^PLaN81fcLxKpd9VI&neniNO!o3`cQqK*mBiNsik_YAaX$gG|&k$vpvZt{N{
zWvc;x#r22H<Gv24zwNJ5-gd9H4ty)4fAO@DLl7rAI9mQ$u;7)tt|dC-zFQV3^feut
z_!xD}8NY`UDb9gPcF*G74=$HqRdpc$KSX^P5?Th@@oLOaDO}C9RiF(UxaMZklmn>G
zG44H4jxP~aEC3|83ybId`6Fw01hrhHmKq{Ia0R`z_WzIvc(Ncf;#%MPFdz81vgO_i
zKG}~Re-cF>5$oKw$+}CK9L}W&8P-1J0e5o9`7ZpDD{OJJksFUP$BaQn*BR(k_}k%V
zG4NkE{FN67OsOCn5{$;fmCV&He97uojB~J(Dlz_MKnWv4|I4%OE%z(U`&N8fU~sU}
zMw|M_tfrin=d`zV>+3JeUM%VlHFZ&VOh`gaDD2U*f4n<Fo5#0}(xYT2dKT`>uzJv6
z^$`#nB~28KGdQm78AeBS^#C=_dlH5|L?}B}h>BM47tX$7C=%P^|5EY%xBxn#L@15c
z_%FJP-LeJ#f&kBu;Y9N@CX(+BWZa|coR*V>iv&jnE5a?c5{9_`?XnFIT!G~Sk?=jV
z+*2|i_<WBvm+i?Cq>H~;en$LHh0k-LZcBym#R3Y=ZG15${cSxO$Wc#*kg@Xe&lBa#
z1D%JNOZ5Mg=4_C#FI~BH6z(1iQyTFc5BylreWX5RJ)ptv^rm$_X8Ff&ih!RDhUcL0
zxmHi28GZDVSR&fii^WF4bw8MFjn+jL^r*rhs`wkuO`PVz1L_&)Pz{fe1(cMez#FY-
z5)tYx-hxmxH7yyDS&*0u0y(mozruw1R`j&D5ja!OmRa?Q@d5~#m+driV%-y}h<Evs
z^uLLC@G4(a))*m^NV=%t#F}YmF={L17@8QAB_(z&PDKNR2?FdWIay0D+3Wn{-cSeD
zGr_TNiq(kITBPDuv)PMG;r;rVB}?E!GMGc(mQNMe6}ywC(ney1`m%T?iNP^0>9YJ=
zeWI3O839+DdyUboW97oY8DdKvThkMG)SMIol@f;O$({RWXv(t?3!pNG`C`N&U&nSn
zh5&Y5>14F<4*@sZFU}0rJmfS1dQ8lbD#44;N#4&$hpO~cjwP<nNr>f~w}kDZL+`^R
z39Y*CkCVv{I;6QG<fIy9lkKI$fUNLpYMVt4e`3zenS;ECaGF`4qK|p#1K8@6&GrE8
zDJ8I@Kk9o_iA#0OH%BmJbg739TJ!hIKrG4D-vyEoJ~`s~Wr?2Qr_e_mYID98D%Zk`
zF`q@D(4h#nu%!&R?{1(%KW|e|&~SBiUInk4(^cE<@+`=YjM3J!Xp6u^_VP<QnJIu;
z{OOX^qZ?q)7M+&*sM{Z6Pnlnu%e25{bVr)F)=L+w8;4NxEw5$N@P#^#MghHGz1Cs4
z?_T1W-29~Wb^Yi5d)Lw(7ihg7Jwygtv(+FU=-~JG<?hi&yXH&#<7QEpFYM>fC81pz
zUA#K)?%-Z=5sd6$yN$^OP}vZh|1S0BUhv2{)>=DnYTZDHgb25(=v(Il$=I{K#fm6&
zCKUhPERH~t`}}w#_m%hqlR)}Vrn|$d!p{g<g1s9*ZU$$;cUh(b1FVl~S;T!gmD~*I
z>T6gL<yK7wgAe50?iQAF?d}uUuK>g3`gDGFNb*o<S5&7y^0Y*{XKeAS%R3!lk5Hph
z&}R(Kf=wvT;e}Cli4f*&*w+<h*LO;g`%Io{{P7;pc{5z8g;c0YYZaCXSy+uF0M_LF
z6)*x~N%Kie62}JmY$ilyi(AJfpw#i}R`dpxVK;bu(mZA!ujZlcU*2jN^zIUN%4;xe
zV5PTly?DOgg;lbB?iAc6t{=c^VwE86tfr#y<sfipgR3a_429tlbn$aGwd_9mJJ#eQ
z`<EZxmL|O8nHCo!xXuIhBZQ6(eW9gH?JpU_FC%pvplg~WOua`{hz6*2gn)S>9SRS{
z;eke`%7G*tuTY>mc02yrQ83iW3Wt30*88v;T|T_2wO(5H6r%Dgm)%P8#(W37JZkb%
zq=R9%H?1G>Toe@ir**sH68LSiAv=U7;gx%OolTKTtwXMI{Jti`>aH`E$Mru(`m8@}
zj^Q*I)k_6_!qev(oIc^ahQA?#?beT`G2R_wGaF^@X{pw=xhMVyyp8`AGCSrUQIz*!
z*oBq6bm?J6D!#9jM~RsSA~Kud?5&=&XNXCkKi=V0qHO|h-7-7gn2*!U;d@(gTAdQ$
zX|4ely9yBc5o}%c?obBSHjFP!B4(PeUHn0gx@s^=wSO3CdOhNlxS;@qFlA&%%8lCx
zyl6X`eZF(T)Xden>7E^$1vrx+_IG&Z;d(GwD@mP;Fhg47#aGdz?Oq;?;G<NFTdSp(
zUcXS;DSj%M{c99XXY!7{4dDnF^7r{WYyXo?@QMbp3W$3=728((SRiT_nQfHl-YO%o
z6lMCgC)bwa+E#;i4!=wJmG9lc`wb5;lt1UhP`Ss9MvydS(skk|ep!t3Th;+E#FsLM
zC^#|UdvT4b_Jy!JGns}L90U%9VskJvw8uggD)4vIWj%<67rwgEDdz|r87GN}lxyW@
z+GQu^|Cc?^-wPYytgD%sgsxO=&J?+h3lNy~b8#u?or7{Fk0hU>Q>aTZYgFa0{_rlM
zL@%x#Dl7pJrN&j&G&Pyn0-ZU-KA*vF3Ct|AbcN2wRc|X-ak5b@=Yrj&O6m8rQJ9bZ
zS|xu!(dQf~vo6adKX8z%a*MH}|H;Iq>`9!ZuE-K1OrkmQZnQ`Y7HJjkubzlpb8jQN
zX{1O?^bsyWe=L9`$70*NQa0n|W_;>*#|aTG=mPt#l$C>D4zz`?y=WK?YPl_n3WX6#
z^84L9JZCu=eedB{lrxEV$RrqJ5b%_tIWllXs4O_XOODyu<!V#7i@w^UXcM=w(19x9
zEa&S5LsLV)Qf$@Zq^U5Da~y!9qr5~pjJMic{7q)TTW0A!n#uT-Ja^x5+6L6|)Pw*4
zcVi*oG6Nt%U+j5vGIJDp%-VTu><nC(H-@B0J>>L_^whA&x?vdHG~K@a-RMWkxGYAY
z5<A}Bx@)cfjp&_yuTnOdA&aK<AZ=cugHM}n?h}wbYaRaX9G$sug1|d}`dW6CI-5yv
zOxIwdZ|m>BP?etrM3+)PMWBBVCP}AE5mgb$^HOs*ib_V11{a+1t{T?uBCp?2`kJ+A
z?(Jys+GlH#{HF?Hibf;6b1ZBi8*9~c%eArg=%3QP8$wcwa|mELEA>252(>Q<n}7<1
znTv@R9v+tLtXJfKnA4xP!}B=!BDagb3QK>^Q#u;^V>VD&n)NZ+8slT;ry2Ma|J7FV
zd$wdshQO;K*_*%p4sozOVWV~Ib*ot?CKQ8U3^HGH0AS5C8;smgFuaskgo-ZDsN7cm
zP7JjKaPw&C@^d3XpI&W>gz#Ckf1^20v101sDcpuT=!x)v-+|?D_F$DhHtxnAG=MNY
z!tMWix%nut%ey1<lkLDn?F)BOs+Y=85B;Hq^p1(s>9sCOq!g(Ras#X2M2V}@GHN66
zF%S7%p3yGI1a<YEYcl>@4`A-lao+<~Vz;@%g09P#fqxkoN8vkcHmZ*n?;Q!(#}k_`
zqhY5-_)RJgWNsm`nVoo}=_xVlIjsP~o1JhC!~axvHvwPckHA#nF&eS|T0lp=<W_2I
z5@h|gJ9w%(*w-Fl;&Bf9q31k%U{dU@QZhe9kTHqOLtvr49ZBWK0u)6@o-j~<RQ2Ki
zy4wGj!FXn$TU+le2zS|JL6zjGmu~=P_}~Gx66%t)-Kh|)`%5N|X`y;EdOXl8Q2fT#
zq<T--=bDcuc6nuWE<AXf<kZtmO>t>9Ie1lrr5um2ZcxWH6J1rUyw;@D0UWIrLrf-q
z7ZiU$W;%Dq<|E*1?ir@*hL}$hb4hrvhOJZ5@s2+O!T!9J8!sa^iVw_ZZfV5EDNB$)
z_eCG0OK`>Oc+h2Re{w<=BcEAnMeh$vuiHVV33A6U|EV|cMv3SP{Dc3&tiw!MS$3ui
zLp!<(2?un#`^m|BI)8XVhxKwwL*3J77o4^rgTMz{I{W57>o(|;$wM#LO1~z2xxpBO
z3dC=0m`Uqy;(Z<bKW$hgOt5}fm&d*qKki*s4ivMuX43w3nDhw<BFh|%_SE8c8)6z`
z3-MmARLE{u4csGHwCDfkL~S{K{FE4bi9=yYeW2yLek5_aK`g-;5H-Vd%jo)_bMc3@
z&nfn6tQf)?fjj2TK&*{W7DyPX<;u%}9cqPoP;!5YuB0NNYsDgZ29FtzF|}8m2;X8P
zngS7ve4S%{pQo<TMAIb<hsysOo8)icpQIX%>^R<<&qBR{Knke9@=6QdXa1@#KHA5s
z6l~j2oAybQ>5XAld^3`3s?A}K<_jv^H7Rk-<%AkQ=wLg5t7ohWAYB5|c!~s?&u$Ft
zSP|p|y(zuCQ^Jqkyl>e<;+NFfRe~c%el+t|{80t!_K3gi6MUn!Hg{@${sU}-fHh#4
z*vtX4D#5p8Ajq$Sy1YDmk;r(L^{EdbB5%pX8F+17Xm_*dWZTC&QBsKxB#+=tDqMzx
z^=6fXk+h3^Rgpi3!FX7_2vU>$j~f3!;rAHs{t8aO3^TN{eXiaM<PIWLfx6gr^mEU2
zI=u$Y7&(=kov6{j!LAJnc?v~%HWCWQOXAeBy8JJowxnyf$W$?<UPXY!ie3SL;eFhV
zQhfA(wrw>{*;iK(2va{<+((0pGnPr$(B&Bmu-u?f4PCxeo?iTkCzcj~%QCVATPfnE
z)dDecSbwQ`c!cbG19>;1<jd95I*j@PS37;vN?q;T-d#RrP*3%?-|;VigiWg#&!`%H
zJwo0?_%C}9?%6kR5^OG7Twzu)iX)nCbK3PY5&2#JG7`s(n;>L7;|=VLaD^F(usw1t
zxe^8ktIX%oU+d53E|>-tmib^E#{X<0b4~~9Ge%Ts{%UARa=is6_okl!g!rfA?m7Z#
z_f^-I(szphGnCMZS%Z?Ha<oxmSQ#N+eoAb8`I^=1GcfUmHZyUd9c3|XU^GM~+fIg!
zS}pne%<wzb*$;u#alf-}kt^RhT-b;J1Auus^yW@>dz(80wy`2NFreg>6>?c#2FmN_
zlUaUsj$FqWYSc@aJgP%A!11#|6}58j*%kXAT7t=O9f|{xhNYVcSmy9X%r2_PwKYsk
z(Z;I{Bwgd1azL1&?HvHMNAV?+*hyi^=(%L~S%9@nen@T2hWbv-by~@UA#gDF+SCUM
zW0n08jlt1m_A|>%12uku(nY|vPiR@40PRVtZ7#ob3~ng?g6&2D{57|HoylDGw4r$)
zZMho#Ma$ERv9X&`)QGizhuEs(0`+-ogrE>!MI4}{O0?@DJA$eYVn;hw%)07ofyJ$U
z>YB7>Euf4-icUASJIl#8((`vO(afkWzO%U0qmg{Etm{<%+!B)ZS;mUKX=6a;Y~CnB
zd!cTe(q(=ty(h&@n0aAofQGx_<XP5_C~~GXCIHcL$1#>_OO!sXNycG$IcSD?dePxh
zX~NpZ!+Q9*;iObBfBbvNL;cm_)ok8(Ci_93acQWKeLaDK$kaWxs?=r8%_37PjoeO&
zLzJHSF@mx2>t=!mDuOF?!mu8r9DO4B1IxmIt}t@{N!wwsDS(4KI`YtnDF;Feb!+0^
zPj`SCcfsdZYegX%Gz^w*HfFq+td_O&QUS+-RFK!u%4rrwC3%%GSPk10<Z+b_+DQK`
zT#0<VRQ5g`vspFqhv4{B<(BCY2PSF?=_~W$8|@RJJ9i@=)Wm%zHvc>xfW3w*Qo<Vz
zPk|R39)&>ZDt^*_6)dB|NCJh(XBBP<6(;s9wtiLaACnF7@mzg*@Gy|P-#HPWsOP-X
zL0T|mu~Ynj=G2|DmkOdFTl3I2dT~&8$91zGzxamk140UOLuJ5LAp*hHK?Fwh0)1-Y
zJOCG;@r&8iR1IS&mtdDjmszf%BK4t2o^kr5aG4m3PcTqueB2N3ej@#d?G%7>rp%h0
zA^0iadqQ=Dqsl4hS?NXe;ULbz0{A9BK|zpz9hMIytJj|%L_}t@LKCkWoXjzFG5okO
zv*(T^!aHoVF<xunGv8gowqv>-!FXZygk<6e@t&oT(}=pu?UO%2NgRK<s@Cy?WuyPe
z(0v$0I-(L%%y(O`Y7F9lWJ4sxJ~9^`o$0z_ni2$z#Wz+*^oyk#yz~3q+lfC^2+cRW
zH#K?o)4z3*eWrl~yf(i5){;}x-Sx#8=Zgwl6k7m@Ms$+4@|okWlG-cYz|=TNj+QA*
zY1xT9<EnC3=?sMKPe>SU<w-an!^Ftrwt=>=h)W&?o-Ga|;+rC>NBhgDSk*9#5#S!#
zOJ~<_8_>Uv6<^5i&hyP8>(|vV8q#m)Q~*5x$|WA@WPwukT%W^vD$aI+a&IcE6_{nF
z+&#{i$4Q-XO>VsjwbO}g)k0(~F*KQaQW7i``iEozsI{92|Bi2%wYT9GiG;6@P#wKb
zF?_QI&PJdVl3N@%LeRX8BWFnTSc+%HK%OYcAl)5<((lHQ4@pw0&}zd(KkZ;X-&4v{
zdl7V5#J)YcX$S(J^;5qea>i2LCe~^KLAl$0@{E`f-ds8|2mOW3W;qh{+#G>6HDIsh
z2WdA=AVF_*^6VKeAxo>Z%C%?0x}lm=;kb|gXX9htE;GR0wvIZe#NWxg=-K;{h3%*d
z>8FfH<enCl9;(l(OE$)rIkkvT7#9~6`9v!w=s4E2uj9b7x<wM%E7d!9Rjjg6y^I#V
zh@X-uXn$1{O=rGlqv4}wbOQi(@TVt*89t$Qpq+I58ZiyxqgR6}-OY5PpRPDtlc{we
z9Pvvx2q-d}y@U3o(<vbk+lyu^V^1$IRpFA_=zZw<ZoX#&W4fQ7OP0WoLR?TNR`)j`
zG9ZSbMn>cf3m#@P8Yny;v%5Y$4EilOe?>41hA^C;o6qnvjkmjOcEGoZ_m$yp`+Rn6
zR{F;^xE%~(1W&%<mg^m1@2<)^dQ2A(YEhByM&J&yd+t;mFDMLG$+McUXNb%vo!(o%
zm<v5fd@zr8@F6TEx1=j!y0b7c>h@-*sgJLVJRK*VyUxUyCvbK18oh8xJS2eFefxQX
z4m2KCF>3)kA<tL_aY*tcrkBtnJOTo+)Q~--|B*j&5LkJ*>0~E!pcTpqPnd7f3DFzK
z*hpKJL~>qq`fAx~)TEckd4UiSphsaqSZ%&NG2eVG9zWi_Wm^S*%u2*GLD^%pI0~1%
z@(AsbTR;GH#f8}jn7B?w2JR*~VNWMQYIvIC<bk4}oR?XCN)y{yq{cY9WhIS7F@+1g
z%UBGAbuSo+eMeqNNW!0x0laAZz=h!j{|)e^(28F2CfVxEKo0_;{o2g8Na{*?f&v!w
zU!RK8L>N{Q0M9d4fMO@0PsDPM18=;9<Su~_IlXK9Wu1*)c+<Z$9URjkYri0!*cX0+
zD{B$vEhSll5PDiOyCWMHjZ76QsKvN|Dpm2+$EWu_Yr>@cQDNpIHavg&H9Vb3=F;16
zt~m}_eGjgfs{@4QgI*FKi&gCd!@uLa>^8=NSV0wEwywsPDzAyFE`)*RWQH^PGN|vD
z8(Gk9B@2eXgks+Mpy8NUxVaThf4kYB<pAB#^^4EK1w!WIE28gt(-to^vtR~oQNMCt
zxE$rZWp8o0MlKLN=l{L+D}957MQ`mBCH^98&Df^n05cqRg|ic>@*5$`7>D+LiWzAj
ze5rwgg7g3u4`+Qv?iX-+b%%nJF?_PRL@|>6Ihxk-E3)fjFO`(Mg~Cwsc!467T7ZFZ
zB-dd3V-5qEPCo?JAc{Xb%qO1E(P7xGPGZQ-_d9Kg%Afp=gyhi}D3^NhJvmJgT=QV_
z{jj29IB6e!0i9b8mwkC&ChYAU^ZX6cSxPesES8A8n?{uA>hC4d`}K#Jk%><7NuUDo
z#LBU+k?DRX<Ay~}M8hB;z<Wd6uGq_bC4(5jqZ^($uqV0>#g4CL<P@>t{N{Y6HG>q=
z-OSX~FJ+4C*`-%_%E|D+=)FvZMy>E}m57KtE+`g`d%u168}343fqm}nwy{B^bw+;J
zhsj@sIN4VanDWPwP9kt4HW*KGj`EJYDLXt{B1qapb4~}j##+YBq;oqrdmi3pTzzz*
zlxAtTxekyE6@krVaK7P8#Gb>)+UF+_)QH69`tG1HGA=lrnJ7_2yFyS1)c&{~0dzUF
z-G6t$>WH_y6%5$W-(2LgobbL8lglP+iy!A!j}M(lxg4mPe6!y=`0bp%!`0WuYC__f
z)^|dMk*6J%okmJK`SqU-3DtCQ7gQf)s~|{MUXLqd2)anAZH6v`HGSv57Cm$Dkd2;;
z@P_4^7b9~_{?XroB%594?j*u@ccxYZ$26poNAjSa0Ymt6<8&|t3`gNZk|65lW-8^K
zUfyL&z~g6VfQL)-v_lJ!Rig}wZ0E}Qo#Lg7m2YYjCLkfFKebC~Wafcp8kXa)kv|$t
zFYTRxqD-d@kxWIg!DxM?iS3ulLP+O1<}*=&iXQ%IDb74h3!Uvkv)wxD*{Lb08L~sG
zH8i2(aueBSyF+PO+cG%;1mS)=8dC-lIJq_O7G5CC585^>S`cL!MoI~GMVLS^``3KA
zmvrc3Bl7s(6K~KTEbyHD{_DY=2M^t5$zB6znb*^XLl272K|*YRAF)PO)zdO8CEcf}
z_V@l2qsB`3<X#yXGn~#H)fIa$o#xrl*ixc|Zx|*1$Yqm!_9S|1Kmp+yeLA&*?$9R7
z#h}wORIP_$ci$Lst4QAxtrscR*JYGY9uv(P-f8u^ea|^Z;uw2nzqXp+?q5K)|DnhV
zof9j_%*F`!76wIMAw%T%1T1Fm<5d!{`MEt0lbuxG@e8PI&}8p|*6=Tk{=%LzCCn)~
zioyCd7V>G|BjtM(xXYq#Fos%~=3f4eRa(_Znb3Qy?wMxo*n$pWF=`}R)syGuYSF~A
zz^+V<E&BtA2C!t~F=wN{ZG0rAw7iNG^i0T-oBcEw^vaJLlGOHRVwQis<C#gf!SL-+
z;z)W7q!r5@U)0a?1E3rgLbHTFLF(zgGJNVgtRL_rYWp+sfG4oxbUVHn=+BGV+W^j_
z;BSBcYf!E6j244a<d}|58U4_SCJYELIg`cD-^SOl8&fMaD-oDg{p^a~VY_#rtD>Du
z^WL|@>NdcPf4Z)+Jcv1-#GOe|1GrX2BBLEV>A0f1Bc2(R3G3P%FC@Fw?}6bGxgi9<
zZYM4`e`7(%&-=>%=cO$Z1rNSUkM_8WaJq@5Y|tF`W-7yJr!=2-VE-Xq^|q^}EP+?e
z%>SGZ#(#^|{Kw1Hs&@$C&^4AQkDs~X#1rGTsNE^;4Ax9g>AfVIHoW?FOlE}Vwl!aw
zq(gouJ}&m0Z`XWcIcqi*9$9|`+S<~aO%-8+l2e|qk)vi7AfYf_hHkBO`$K2-vhf=&
zkI{3|8G#yI>rsEmlrMt!mtj(1po?kDnuE{RNmzxZ-c+ZQA=kbUx`qW(YC?qR4Cadb
z_lZw`H{YRz&?(zcf@xb4)*^gDyJSQg@mIdvJ*zK!<tzE03+J{z{{coiPixOCvkfA`
z8~=C@1|5k?8x6TXDCxs^9Uk`rM^zUQ$UwuoFXNkeA&)&eQC;f{*E*qP`wkyW!0Htm
z>-6dMH<JvjR$ImLtzTQhkG!wpc^)cIy^146!G%yWj9DgJG=rVixjO=((%}Y~E^pu>
zx8DTa`Tth(QL#rd2(jNBZzTh>4YEgU+6(fli;1JZf@uH@(%i^O{7--gpc4@<Y}#*$
zl}DNd7tZ6P2Ep{zXBcga#U3rRsnC`VA@`)~qTkLbw>~^Ah)SLdp5ii}SZ+O_?H}=7
zJ}TsHS($I`F~afB#_fd`#iBPxa&m=qG`wenmke^+NU1-raY6((e2lq@jAMJ?sh;^w
zv&6-vM0~>bzD1UF+r+FE$W0g2If)gOBUG%zQxyBX(LNt}k7YO3D~b>f#Y^*M?Op>#
zn`Y5}T<H?^2u0<IdM;&|PoIZ_E_nNoYLQ=`e95XMRJpGaO7)bd62K5g{FXm8%E7|o
zJcY%}+s3@c5B~lrwGR20u0CQ)wx!#xi^(Yjc*bj#>gS$N*;PaRzIm9|T{0MM|D!D#
z^1CL$OGPdV)Rsy~H^rV(?&Cx*`7_!>zf6K2!rI7>W~N(2hkHI7>${xZwHpgf=3mMd
zzYsokO5Wt%Z%c0eV%?~Hn$c|I9boY{H*FzRF80g(PZZQ)p@3xwdsRe$xuDmVQTEIJ
zNK%*7giihc{?7wO!tT*o{hL9Xbn%F7%iL@^m-@gl-E+oNO1W}C%w1`FQiJmvI8`60
zHkWsfHl~+g@4U1%g_xI=+h5O7*BrOxSd~cGpUyP%#xfkeMKVE_CnYrGpi^gu;)2Hu
zYYu1iLVG7!#=7KLb5n_3(XXh5#gTXG(GHybnY1Moa|5@TfN5y%Szq*%ui3ANX#Hf)
z+*#l0e_R5(Fwiyw8rWHSt?St)Jbc3p1#qQSed4au<6{1g^KD7t>tB>lmz6-6Dr)3G
z7jzWuHUT-VrFoOb8IV%gd$EnG#?2@zCC1+}qCB9EI}zPbzS`7Q$%$Q|Cvia(HAKS=
zG7Wb!1s(#L)Bpf*ImZi;^f^Zu+`0d05{N`6ba&-p@$Hl9jzt6r>GPz))-2E~nm>L1
zj7iI(4{}|`(6>;BIuo&-)w#391EzBxYu=!Ck{m^RNu&y>d~oBP5f34hu=z_&1omP&
zo*@F2e-@(Bn2Fgv*y3!ffp}E}#U`Y@q;9Zqk;to_<$qgx#hYyZP&$7+^#ld`=@zOA
zxT*5<e2KIm9U!(}zCqO^!Jikg*|s~S7g1V`*}B;~4zzhD1!}lSnak@bfRb7$zXr<8
z1m)8Lay^HJf$_AOlxitIV*&fX(&6%upwa#qmh8GGy-tP`VE{isz`t<PTwa)BtE3W)
zmo5P2?X>eA(y+at;}W<~vB3T|kViw>>sf+SE%YF;p*Zaee8tm~Onytd-Kl@)nk{zg
zx2xLL89%0owI+aB*F)rs5(o#!Tv<aA$SPb*N$;j`gt!EfOk4r#*Qu_HPi*qZ+P0K=
zL}Lgr=ove)HKU5SGC*^~;U_huaPE03#)ycnW1?diCBB0IZEv|OZ_ct#>$S66_-ZDe
zC5ojh&#G*aNaUgpiAwPZm{voU>9tlUi9mtiyR}MmHplS5oV^)K7Th@4y>>M65|~-W
zZfluUn+c+=(E`_LDgLNDC%*{*oJTc_rWltLhkZKslIKS3l-iTOvOWVZJwv5f?%|Vy
zhXv7Q5sCOx^k#^k$R~Z=_=n!2=`e$vU}EsJJNE*yojors&G)88!pyy=o65Dr8E>|X
z6xGiHTy_-nG{E;+m^15Ia%{D$AGUb_=d(>A_ruq|==3WHQa9_O9;H0-3mHko|7L;U
z#E~H?Pv-+UsZRZmt`<(<NT5x^MQ^(9A>KF+-nLoccMYrCS=p!<Qry*2lCy_D9|X-D
zqteV?BLTKcnIiCT484xK$jeB}@0J)U?7%~CD7H-Hx!|}wAmQN5>Hn4~N$A?VRQq6U
z494{cEL-@Q#My@*z@ewIgSP}iRv&jiMX4u$oXk;h`_jAa_^M!`AMnaDQ2<bz!gBbU
zxNhli7r!Va$X}E*@#PfI&ZM3^{n<1p1k<3oKs9g`niUAJq7(Z!{=xpqc=SS#xXhR?
zj?$I{%?n!%Z4odf@8{2nbg`M?+I~XUk&w|$7gXN~R5Es_y-+&8LTBQ%MOCb0$w4{6
zbNb;z)h=QcJ56**Nr~;iw_8|nbN5WG6Ea(;JM+1A=#L>``l(=%8I`3_MR#7s1$by1
z^~4*^Kn8)i9rl=mI_~kasXQVO(&Y;Ui`?n>D!*(bB|iD7cI^_F=IugjfFfHW`g3p%
z(7*N`U7eJ!kFrPslkUo65?zJHn0a^#1R?<2(07RU6AK(y^n}1PM%>WyEqwNdEPBZR
zXM535ck3j^aHB0^!0lvd2Kz9U+rBt)NZmw&*IvObTX`$yw;z~27TGnvy?gg|=BuBc
z<^E&?<`QGRT?9^=Djkn1et(aR)2rAJI$l1R1paO=0bD)FeEL%5tLuri_b11HxjOUX
zB+1yBU_%ye!F|8BfX}5qs9GquA}NigC;$Q<zXHO4l&lz$HtjfW;Ea-<)-4{UJHr04
znUD?*;KN|&vIRi9GG^#5>r`<!`j}H^#N)K99o1DU!RsfEM1!9Z$W3!sYLI{Pk;>~7
zij%|!!%c$K@6+cbI<0GP5kDME%W#iOU8O_<m*NoI=gBHzR2Mr)ZFu6wgi&z2e>`lB
z=fryj1@@z;Imn{Ep>a3>Kzh8LZ{BwYe}k@cTn4kGeYmU4;)G`3c8U9PwW9h69}0Eo
zHrLs=n;{tT%V#peOI0%EkLWoT;pbIc2En#@j}0y>s~j6ERw`;mu9<4<E9a9`2Ew_r
zZ?%?!Dk>r6bES~)@IcXj^X^z+STxq1A<rp1DCYW0{R92RvoXY-6MKN3hz=z?dDT-<
zzHa=5071-~ZEzSVY1M-ja1=Y5Cjz2*f>ytpblqlj+<t6EnQzHvs$CYhbU%2lC$DOT
zHzidG1wWsfsK(h2jcsho@IbVF@FbY=Pxw64D#OOMa}6W&GwzXK<LUokR8O{8fSrsx
zYA#AlFQG<p3_s3=s~P^_w>`lXdZ}?9>cy<KB}kS59T+b?kwSC!hXk()j6!^t&Ij}3
zC&v^rQH8|wT@fK7Sull={9I7mEt`&(6O3LfLre?>a20>|x9(_vqgN`wxIt%o><spB
z<!^D5_Q7{$T6u<ib5g@sc?C1;yTF!Deb4122d6>IPp<x}B0Qs;C_8qDRnnS2(g|1`
zu3~g30JKJ?W_DgVy#)aLG82#>`l8&ygb&)2KP&m$E{P+Z6*7io2O;oI{2BwkHyp#+
zMG|>UDT}}w4`Phk6Tv1l+sjZDv03HWr9srvr@>*>aD+FJkD_&4D;V{&(4i?ehv;9d
z>oEz)+CNC7pF%9)OmZz2hz*a5*>DOTbKXYEx^e^fhFo}y22wIAv+Q8LbyVG56+DmN
z=O(w?qa;z+<?48DTopjcouFTHTT7%dA@69i^3<RqA?ZI_S2U6U@P;Z@qd`%pI5hO!
z2Z3{-NP&S?NDz^1k?H5_eFO)VegycR2wgavIB=5BCu19yw6Qfbj`8A#0MxujChAA1
zd7pe$I{>uA)&7k~J@gI5u<UH=n8`q2OEl$l5}j&>s!O7fWnYfSGaU_{u6%Xh5bF&?
z!)Jp_?-;u*jw~Q}7DN+FFv&&>{4l}=%L_w0YMn)>NLCjsWqZj%AtD%sO<YNs1Y{<w
zt6rb1jd>t#c(xw={A0njpKrFANe#o}-$1PL+GKEU#&hX0bgfvb)3DIS1ofbUgQybj
zqGSU7*=L2rRMo6rQ$*$UciGSkb5laiqDmKIOr9j^=y#GIVCzGQrq@syn%>o3@2Ucr
zZ{m_=EFLF;cmafU@BS5N{-b(2>Hy0*d#+{Q+iX+Tsiz3$WSlY^vhjEAszBz(F%Y^x
z;o1;Ugu5@%`YqXc$bvtqmR*^~2XCW54pbj^BkI6gsm`WHPNsWFg0{)uai*9ZtFZJL
zki)kQ>)IJC9E`qQq3-khLbt+ivKou_)taF}HYz2Qu)%k;Rr6rjYf#^YjR8BaI`&Bz
zc9|=*8_2@>;tYUfxtzc&<7;^ZK~l6sv1xU<%LgaVYOHrQ9~B$K)vCaho)TX1^Nl;B
zB)n2A$OnYeIyd8^oiOlga^Vtk@CP()^w7tG-BO>ymi~U!!C3@{4W#<jZ_fJM>J)Ps
zFz}*+<w|gs1m4g!>w9HKe4rv!TV$G?mn9r9m+LH{hG1?fGV5i%1o&KmzFP%^{g8r<
zARD|EUV<^j!i(Zu8;jdin2Fq3#KMcg6WUIFzE^>)7Mgu#jY*4Newd^ii2}pi4vgTE
zgAz^Oyp#JxX?ZI^p_HnWhoG;Zz8clM8DTxQ@8S|xjv3&8DP4u?q|scz+LX1XLmR^@
zjN!+J<vzM!KRT~7L+6;<G3ET-jdP3kh~sV*L8;gSh_sC(8MYT=LX!=|<h6h*!_=9j
zHpOV&5gi(~fig!{fTDsRYR{|qUd|RE5-UTZiGCTs-P>1Y=s0%gV~LjwhGMp4D{I()
zwdxZee~k{{-i<QbY(31PJErR@r&Zk{ZlJCPry7@`<esOH2u%{cSOLAEr%|1|EIzTg
z!f>9sM}O??{#AFM2=I>Ic?M65!0^3DTFsEM|8Q;}1;9yZUmwab#>Vc8f2h{qz;;F^
zPp6COO2741+{+zaoQ`G8vBI$sUn`9?hpEgUk-GeO-2?Kx8#@99(%G;EE<YG6l(SW-
zjD*>5JdX2Bj!IKXJ2;pVs2azq*MGC~Pd`8dJvla#>bO~KXZM~xD>+G}yQ_9wcDLQ&
z-7flw-nl(Zzlo@m;m%b8!B-B^Bv3}c#qeI>a;6E2j}dkGa${(WlGp!!)(Wkp5BOed
zhFulkL10shU1{p=jv%@xQ*vDP%)_P(>#C=Rbw=*;a*VoD_=&Rpa>3K9eIhPp!|v7Z
z9ZT^x`iKm$ft8xG0WD<2>y_O<mSYE7EbG2evGJeEHZb3klHXQj<-;|VUw_x`p~ojO
zVCA4$%^1pye2X0UaeKCsCp9Q5{EGAJIlpRkKkh_$P}cO*_$G7I&4%Bn0juNtq)3_{
z1K4Nx`aTWiXUyU7qIfiY;S#gsUc;89&9DE?Y2tZ8xgSg(=#zzTf0Q{J0-zP#u~pw5
zre`3_XY(Zoxjh^w??J(5;NRyt2$^YfZcS(75$77Lv6UBzZZ)w99FIxs-=3^8dh9Wd
z<pl42_j2bK=n*S0afBwlZpANma?Xa;_q~E1M)<_D&EQNQ$^FnXp$5BVkP+s|$}I?!
zWphnn{^nzkhP1sp|Fl02bSHnwbFXg7G7?RzH=Pn{x50Bo%S8u#-Lo?g2pTWo%2P?G
z$(>Yr3EfYh;ZmPG=Q*O$qvQXxkYt||Og|HhOe-ukYU*^Ad@DEocA<VRT1dow!+Lbb
z@v<Zto$}&`>eu+%{#h36-{^IgC%JH<yOvt6aNmyN#L3!It=sd;k;UJS|3B?n4-3DE
z!VRbFQ8ualE3=NlAG|fpGV}V}&M52O|6?t4UBO4U9H$4QF-CX#ASCsLc0HnSs^1(x
z9a`y9`=0j|(3z9rJ7y%qz7vBoT+JWi$NTf4TO<@>rHF3j=1jhLik{Ms{iyPerT3eD
zV(hc85_R&<H_6mu;QcdZ|1tbo)etf?hVK%3sJeb5Nt@^sro|3QTZzZ#T1>S_n_;5Z
z)u+jiqBcf6q+ihbIO5{;aBgl4?(Q^I(lDFwgSNO@R7>e_rFyGr8$NR{L7Pk1nXsBn
z%LzuE7`V67LHZRUWiLy7bY>99EeiDe+bw)Wl^8K!`n3^INKSCXNjZ%o-!)W7NvUNZ
zC*<JjV{}amM#!f;Rc0RQv!<kMfX0Ivydd^Bv_c?jlh1YFBfk^NSz=$lvY$6j>HV4E
zA#9bFF#BV2kM)RT<3P1buJnfTw{T-V&$Z`xjJUm8pz_L%UcV<eR~!Jr%@wh8X&!!>
z=yt_K8o;{|utdV0{lr(>b#y3(hqBQ}U`v-x67q4;#FH;Fkj-#|NlH99h*|&Im!xRx
zqHn`FWfLWPoyKLPtDEDos8u9TSZQ_h214RO>D$_9*N^=T<g07%KS<QzSjlpaXW8C+
z<u(7YN)DKQ`<;5m{@`Vx*{xsVz4|brAT}o!0wTXGfbu_^TSL>-^hGhZPVK2zY4~c#
z1MSByIDvEuh<gT`NL=@ObVc^O-y~363~HG+f{vPX&o68a8z@aL>AlbgyW_)Ytd~^)
zgO)^4IFfKD8~D(PO$ev&u+(cIObH&G&_ht{`(lk)m>ZN?>x{shl9&hona_}K9cFDW
zu=c&K3$qUsL1M@f4G2<)bJGSN$$+Z==Ah&7+A}kb&XY8zYQ%hpaPJ}YT2Z*A(TQV3
zexdDKyWQdkf_c1YoQO2+1n0e&M}!KOo7vxq&+ImHio^%E9YWW!?a}YYzTLmqi(aIU
z#6?Azq}{ql0y!O(MMtu(7oP(w-TI{nnFc6jT6T&rh+@TnkuSDsT+(=>A{efZo_Sad
z$9lkpM(&fyQ|;|Fy6i*?_-i$B!#k6qrWD_7RKS=1S*|-G)nk_u`Tt_1TVSLoB-to6
zSR1ndrz7InW)Ba4Xsy<=$9jf}<BDv=;5!NC{1c*Rb@TsAUVa8E{s&o9Q6$IeA4s+1
zPZ^1hB_$s^r=y0HyOUdM$eNp8@A7xzl_tNmA|P_`1JguLJFchD#g0Ldi_dqn!<m%1
zvD_S>#Adw;B=}0k!s;}13s;M9&pTEsLk{&?7*NZ@WB5qQ!SpttcZrR$)`mHHcc>Nw
zLclqMfQ*sL=>JeTsa6fp8BO($B{0r4_JyP`84SGM!&5}q*Xn3S2%O63!J7!4^sfeP
zjkPyRF3|PloD&s{plWsW_qMVX^hL1CT|7F5xG%VKK{0c{@Z@jrFD=_LzGtZ4T>io8
z1wY(lLB47dp)QB)EDzNv*wGo7py_?XfH;7J>p|b-6A%CeIX!bjH%y^s)CZ1D#GMg3
zShRI8{#9Hy4BQ~3cyvLwQ%X&tmJZ)^OjuUlR|cZGd)?Bo)QRZrr`P999C9Ddi~pcw
zxNWXF!5i6FXTuc>QJBafg^-Xd-IWHZF($@Hlc=YC8HKIQRgMwnI-7(df^qSFuNw`{
zj|TvWI>pJ%?5-+Y1nSWm1aGSpZk)>-ou=HqCjLofRRimVa{`e;;)>F_K3*Q0YQ*8^
z0LXf=5mCYV`e$4c`%luLCa~v52Xb`a0~`l6hXH&wa?A!P&+kBaBy(e&EtBBxf|<2h
z0Lio#RLsau<3&e*lwiB&6W2arZNb4=^k4H`h8c9m`#OJ(6**Wl_V{MlLi{2I&u{4{
zM0DURGKuV{)a{9EZ7k5tPN!-$ZH@+a6JzRYw*28S5lrD&KPt}VJF0E4KwRdM<mq*+
zI=>8|Hrqn3&*{ianB*jB-*d;UOYwe1AVukd+j`?4CH6;>7DVr!#ojTc#)!lBNX;?7
zXWL$ZPHPq6;ty%irLmUezlF=dT&%M!CTu;Xf=j}0o)4QqaRqe-4ikZov<_OGtqql$
zt(&K&UT;4D*P$8*S5K-U(yx;N<>Upq?zzYaG#B64f`JuUXPOh_Vsb`^OLtk0QASk&
zSgYCNEyC9e2~$kGo?SJWN9%u~ECDIFTIlWpsMv$)P$EojqkzRy7_;R&YbkGpc*M26
zFT;^VjbBu#cE^C_cTbGZM88W7S{@}7V0AZtUV1&2SUSSv$qZh9h0|!ws(l*Oq8*-v
zpV(;jefmM2INQW;`(j0)N%@_jK&?OReP_lvdlKGL-;IU7va6=@9hahmI`gq@hrDb^
zye8{1S11D#hG8=x_#gw`c#qQnd8G-gyx(3p)CVR#Jg2|i?@og)<!#0~KDc-e($`BL
zbBA(GYw&|#`r~)v_kKQxExrt(hCwG!atg3-cZ{<&Rm2(){-?dVa=B=_qy_|rj<CXX
zM{B6;S=@APWnLB(Y0CmseYloxqZL81X91|<zU9`fj*70#FGnk(pW=y=zH*ghwLOb_
zYX*+Mt;8+n1#ZojS1&Do$k;Wd&0dal1RR91S~TAMz8IRWtm;g6Mv7s?3<T|M)2ExC
z!dSYlP4;@@CDBX`y?%z$&CWGM+C_!CPMEw}(8W?px?cI#n}vwi#@z+S@S%qJ|3&|3
zvI4GNoXpo7*BBp#fjf*Q(fjoY$)xrS=&Fnh<@_u<Dg}}|&Y(N9cKafq=^NVU5dfN8
z{BCy+^1i_w39XCzK3V>02bU0}Cd$Qy)<X`IL`XebtQn$-?5i1QdppdMnd6^3HH(fk
zwTlJfhu~5-hdgJQXBCbUHk``@bk%~~VBJ*Qcy<PXg4<^tg3I4KFr?F&A@jB6hjL?(
zJUY4RN~plv_{qzP9!j%Z{c0W=4cq|amI_DXSfV7$9e09~M<z?>^`YdE(mRqG=okXL
z5U>ZR+Ea~P7J3C8s|0<~%d<mjd^O|^OTA;LfT+NNpJMF(7pZS|h?dpi!TjMXLjaL&
zR=u#o3zUyYBZCzb=X(1ppQA(7I^KuJtVs?$al4w;VqG{VbbmxWM+_!D%T^e4`rR7=
zQ*&92By1Fw(C>Ua^*1bH;hZB{*GBnr^~oh`X9uow3%+*Y=WLDFJ-GnWRkMEl^dp!&
z>#);G3Nj>MwywW8U9!gnz-wsI`j9q-gl^L6vRk+V9+j3v<7S&1jG}U1fN7o{y|2<G
zZ9x80+cOEzf$xlS14=c`!oAk3y_fi&{7uEJOL5c#qcqCG1`jf3Z4yo_mMy>0BSSjT
z&D`RrUD~BHu+U$kcGdo|uWi7mNMtq6y*hiX61@Avo34MSm54-=2cLO+tu%7>CU{d!
zSjkzLK4BNC>-<!$@lW6{#N5l|aCb@jvnw5dhn^1ZcJY_ObVJ$r6PQwn7i=hMdidb;
z9eiA=|Cpg}<0g|h4}KXt_&i?;m)BnPH!>89d`O)FkbqzK9A0HzXnmr5T(@u?P$UDN
zpnSMhjGQ-Hp{9uSQ%7?FgX~<31;H6%OY(AphANlko>wCNeP=bQE%!7OH7QV>6)U30
ziH+b|hL4CEf>=vI-a~N(1o~C4mM`fK9UW0FX~8^0zAF^hA;ABd+RanT8-Vj5duI|~
zU5&^5N8qVyiQ>zxj)M(smMpp2q|9y8;~@@>MOCe;+o_sW<}JP2=7D8j+2cX2GGzfP
zPi(Hz`^2W*5N3)jl{-_ybJ8EuxWmk|yR=th21e6c4x{kvhbNG;E2G`3hWm$#V~9a#
z*?W!BUUBw_g$H`2mo*d#$8coM<XrHw7Tlu^Ly}7dD_h$QV+aOI-?>z7&1=ccKa1s}
zTq?n8-d~d;PQG3fugiQ==_D7D!z!t#cDT`?xG@F)KD1YcX1KFX5yF`cH}#xWk6Ml|
z(fE&l1klbek;&o|nvrVy<a8Q-3OCO4eaQq0$wj&KqP&^1?1M`v(9|bNe^GfgXJF`<
zi|g`mvN(MNJ-sNV@toxvDgC0TZ7FKA<z#v*GlY@cggdqDr)-b178{-GsJ76+z}Hp;
z7L)P60$McqT8qhW4%wK)rkn+#F1CeLTE=#fU_M7KMr5?wU=54u{7S6kE9qBSln=BD
zCAF@$9`8~D*_7&NG;(|AjoHhU=u@|4Tb^^7Ees40^fHj<^H}&wq#z$*MU2j^L7Y~_
z`di5=7!s{7AuPYBZ*h0GR}X>o@JnSnmECkE%Q?>!#MsaN;$YL@ki+5)2*R$3ZEQu!
zyC@6Mbw)@fyIh3^Y*xmQFtxZ4aWHaVkP*SK_UA?QFYEt3etcU}8pOZ_xVOCxPjbJ_
zIg47BwIX#M<ew}FYY%W)ky6{rXP?!E$uc;`5Z-Y1?ei<7|Ifvww5Wm%*=^`k-{+RR
zk$_jlg9%D9j407*D6?mo3kt{)J&?mCl02<;6R=i!9c3zVfl#QYWxv0*ldDbs3l;)>
z!4{m(Drd+8LCq0Y6g_231y0&Ygys3F_ZM#4QjJ+T?SaCpd=!e27la)8BvJ&wT6o$h
ziwYx4*`82`-+HdpRJCgQd@SQ%74wEOggI)}6($ZY2uzb!;0p8g!2{}O4l$2P$YI2i
zkrk=YLtps{!tP;uFTMvOFu!TRRLv^6Pu$eeHK5~%E&4PiS$5)j?1RZKf?h;qi_@u1
zg2SWS(S;Gtap5#BZDEr&p<KO4=~>!NU5C>!WJ${{Yy6ovw~RWbxQm5SJMZx6=_G9)
zOoiDnIXbCSwt39`N&~6~x@d|MDY-%6r({46aM`?3m?)fUbY-fZ=QQR0D3rmF3aSVo
z4+QG}f(~7LhzDeK8j1m@4ei@UMRu0%3@VjDaDUhQYV3jvg@}Ko)Yz!YQqLo~<CBoA
z`?hyH600zp)OIhd?(9fftG5oqD`E&hf-wec6G0TeZ=xhafQfs!;E2>><$vYAeMJ{V
z+^1o}!LqlU2C?s0)C5MB-Ail#Kyce!bM<V>jdofs3I_PR2qaTFe3Rb9*nxNRxj2@|
z7GQiZ;?AuNU77j{5i!Qj1HShPrGx-bRLI>^o%$}vpm?$m_Dk?IH(tHD=fq!RzJoF~
z8PJT|X56#)VKvsGtn!CY!e*ajsJ-pNqCK1F%z_%`w`x7>WT*1l&k^#6R@s+Y6gh^R
z&)}Ta?SQm`UT~O~E%ao%V}hI#8k`1=VbuGp*LTvY`H=$nArETd0nf5UhnGZrELQzA
zzyfaX(-$nDUA%&N^X0;ZVYw{JDFytV_eI2u^ntArKR4xcxPro&rda>MD6p;P7hBv;
z7Muy;+)?O{niwCMtXb5rhN+i0=!}UNbFWby!^sAFn<5Mgs`>Hb%p=TgTC>C$gMWN`
zRk_+hWr7~qT=$I%S>9r<D^gr5F{<_a%tG<YF5p6|=9HaZggMY(;t6%WA?|Lb50%Zu
zz~s)Bg_91`^<=UL)^SJI$teim@L9#Wa+p4aywMG;z9~4&BJ;!^>Cr8{7+)?do$6&R
zEWXQcJfqxIl0E=OiWw%!SONE-*Pkfpo9Eb}U0<=d_&N{X?8wZ+sbZh_CWYB~FW1$|
zpWWxM^}wdx18@PZ5zwdm;b@KBYWmAZ?d-|a&pPgV37&@>XB+EX&=ApZAkXBe>M`OS
zTNjCnfq#z@$RCXyuBTxYRl|2L!}lH)2b&%>gpRNP*Eai{ZXM7BjKC9!SoW7p!;HX3
z98!S*@~TL5T#W?G8UvsXLzs<Xt(o>#1M5??->8}z0Xz3yoU#_A5{x_c?Pff1n}3Nl
zvI7T<KgS)5twe2Ytc44yXK5=af{*fTdkPI}hhWitcQS!GR3v}%T#jt1TR;iPKEs0z
ziN1?3?i99CLD#X3D2~$LeJ*YB)~LN^!b6RzS}#n4utCV83BJVP#R#x=H=MKzV`Vqv
zv8{E(a$3mROBJ6yT!>Qt+d4q&Ab3ryb>k-;*m^6!V6B=3WnH)rwXO@#;V+YesJOT}
zW9G3W#cfB_Zq;te$CVUu(++0m*n%c;B#Q?TE`9f*x@Hm!<xH-@LcDCe2pu{WXS!kl
zTYzhKP8zU%h{sm+Xo`Ey9fc7zBQ1s?qpA__apZZijQ++6??Ch|#h%Zp|J}I+jXKNW
z{v+u~yu4gpcuEVAnX+-31CJv6(L`~gmo=I2BGl!6KfUC1U9Cw&OvH;Ot<Dd8&be(!
zf=B;-O!Vei-7zit7KaE*4P_*3ikfBNYryj<GnSYT)7a=-^ne%)QHX1`Wn@rshh-Ro
z*}~v&qRq<BwCPb-5)r9_H@5hBY)s2FwFg~XJR6ct9$0|jx@nEo&DQly^sAfSHJWvw
zE~9&w@6X+K<3xgLMU77-fgZv<eVu@?6)dd+DMH13(d;}iHQVYPhf10zb8~2o=io6C
zcPfJ;#EFInKv%9m)PQl@^#4mBmxIcds_J7N?HL#iuwY2pJ2!}B{To_&(7F=08KV{Y
zAaG0&a3;?xJN4<n7Ul5n<v9m%fB1c&a*<oLQ6mlZTXw)UsJ*T~mx|-C;ejrDV-aVN
zWE6-pUv0nZe4C$gJq-H}n_NE05`r98DNkfoQcT*M6!pN?b-V#&5<<{xDq~OSN$7^n
z>PR!b<!whVLc$~=#m_&3H*@XANR<-r&o652O*nlM<HiW8cG3+$S_i1q1%A#Zjn$%+
zsI0nS0q2$B+0XO<>pJLfH^x9DeSPFMnN^d67+{!3PhwhO_eEV%Lf0<<TqY4qTA{0p
zfPSuu2an*55+EWKi*eN*?DZ1B<8L&?tj9X~cj1+8s}I6yMchFS)^T;faj~16)Q8h;
zF&>cuqKlV|c?om!BC1*Mn%o1wU<Qzp5&?{pGc1n+2KqzcysrJ{+9Qy*N_?a}rS{H<
zgTDD6wZlH{iIBj@dU}bkXVVisS;?4iqwS6!Nk9K%V7J>vs?L}<KqWYP4uS1>XzT=2
zOA4VmUfD-OHr2_8A=Es=`jiK`0UM8)Z75jS4dTD7igCv|#f8xHDK+bo<GvOx_`4_$
zj)c=xZ}rBA9|p&&(VMbwkN9}g5V-i#tG#KAH~RUuIT}e-%qP20)8Xw~Q-~=+>ZaPQ
z45*;|%m<H!hqW<k(`vkcaAm{$AKxLxCXJ9X7!PZX1mO(K@h{5Ww}5)yeUl2>xF2+?
zk_{NxdMCZ5dA)>fXJ%8g_H59>)zNk2>t!B<h`sFYSM2-Ya*1yC?(Hh&&$$#VRukFw
z73)%g6U(rJ6cnaI#a=167j^et#Lq6|F$NKNC(Y8hD;NQkyPGljo_!XLJ#o5Re3urL
z>cVB*M*X<{Wml4&i`e`SpiPZtYKaTdO4cY}j_f*X97jN$)Om-K7uwPYVBq0IMI|+`
z4arglbScxgbtu3)@W0OnzYl5Hx-nj*PR}`cGo;E9^`29mWB>YE&Rnc<B2~?4fGM#<
zg1Higd1NDzfVn-6#+d-`*0^GvKs48-vI}XnM}g??)xhsl*6bdSwYM}Gb(hHmZGE6%
zA`!FXf=Tr>Tq2iMREmh%nf9n&R|%wd)m*_361W`s;y6QQ7*!x)M4j`Lu!Ed4E@+Q?
z?j|-#=uHm+uRdA*(+*I6f`H`B?kUgZB&MY8aeT~misw~s$H~GM8Z1_Sx2wggD%v_3
znQ3hkFjt+@*+XPJ8d?6jo<dP)I($$&Mwc4<8kfg@sLu$(*MBXG=7gAFk`EQ@Rf@R2
ztLN!>&(4ci*eLTlbuRTvzfE-JX?(q_SR{2EAx6msHG;+BI5ZO9yIQtFX(T+Jb)kld
zl|b2`)pq3hO#vND%AM;>_0xB%;TPaeGZX?41d}YTX<>LNi##~K+5d@#!dJlHNiS`%
z1b>QKgCf2N>5<?;tC<Weac0gyf+!oQ%e=ser^o3#ipr`v0nw6KlY(g}*lHXYq_I^;
zoS%Tal++vAx}kVzwfp)heUrXwxl$meI5ksaR#CUKPkT}?W+=!e!pqx3Zz8fBIy!#G
zg3k(1A{;Iu_aM-)RBl4W-_KZ})fTp#`+@2nT(XMe9mbWLX73YK2b=||s5JTfx?=v2
z>3~1-Ovzfs#j%2qnp549-w>3d!Tg|=cd3CRPayUM7w48M@}pRBQYZitScl-S)jJ&_
zPA5Dq*m9{)lrar!BK1KKIqN^=m5n&{<n@kx56nuOKb93_Tb?F}b2XUnhfSmGE=^?E
z!N_w5ppn2h2#oEs1=IlHr(=JVIHd8CDBBOUv`{GI)c7vsW#PJiWc;%i|CQKtsXAf_
z&SC**O5$(p$tUo6jLPa-=~fd3uw#&i6YLO)vsVPKG(s$3y^80l!?lI@8*YlQ@<%r<
z8O!dK-+4>x;(BuED!{7LB&O(2`{aG8O1!H{_imBR#`_F5Z8lyW@s!4dB@fb_P`HP{
z_E&=)U0ZXOXCRxNV~3l!fCG@=b8Fel(ie-|NXtn#uSmF?gS+Xd316cERnG)TEr{+6
ziAhKU-+{W{SI6OF{!Q{1L>3T1peByR^-Agl)ow*wGDf?31wA)q;t>w5oXz&zQ<q=o
z_gTL(d47~uDrvwXGjRttP#bCjyh3)g>gTskXw5w;wH*vY@;hdRk=77?TkmZbr0V^t
zw^<q*(Jk%7mP_LRQL~)R-FjiZpYn4<tm2X-CU>$-%q}4I@yTi0GRt@e+Yv~B@jcl4
zG{@mb(y?0&qi=$&qY*&e5mM7Q@a8@&x>PpZFJxj3fv@&;1C1@wF%R!tvW{2&)w4dp
za?JGB6M&YLV^HSbNZco?Mz8pc9%A)w_w*Xz|Nr*;5c{j#NV>I*$%zl0lA!r(1WaQC
z5-nUWRBISrN6`D-q+pLteS3Gl5O<7dC}IGhejIFLh44jTXCE6a`EJ_u+JmVF0>S2y
z{Bvud61VU5<Fcyv9vXbmljZxtplMh6VBCcXZdqTjlhKG#F%@9W9y;O4+bybZTDCU|
zI2pM(6Iy9BmhJS(?3mrobp{rs_envgy!Tx^60GJdgD6yM^a8t>&oD`4F$@g!s(=p|
z+NIkp@m{f4Su*ALRA_I((OY#zdku%%k&bvb)Ta6`q@ThEzetyUeHf~fwt5Q4!`hKz
zbBNme3r;u8Ckj6G;AQhdwi&Ub_+zHh&sX<5@r>4Jqrcka(MTfkno$<eJ^780RFMg#
zm`6Cbmx{a|qDM>Dq6|*S8!F-RFVofGK{(p6T@|c%zJz<nn_#c#t;WC?wWiE<lQQ7t
zcr|w~)2&G*Vp4x9H4Mr}qjaHHGcx_MD(>462yD_9Qyk{t0h%M`b+0STgI3XG0g9%k
zXOFbdfbKJ0Z3)5pIHa!23d4prVvyz!?d>Qa8RQ5)^=SDUI1~RLqOj2(x1s%8J+-+5
z9JU`=PuR=*oXphdTd4d<G+ZbDWcfW`&vJIqY91WWA#c%l`TYW>&d=aXdR{}XRC|24
z(g7&I{M(f2Yms4Y?LJ9D(55rFgz#}Z``b?66~+4%mpHYCow4v^HDE2(rG$#QNl=34
z9#!(q*Sasq(W1G*>Lf3En^ED%+>bRe{wvu!?|vKX31C+1qgI_bEmi`h=8l^PTwTCZ
z2oSR@*5f%jd{gTFZHzp13UE_iLI<qYrI>xr21{NiN37LKx8#B2s<XE@-&hc%Icf{`
zqtt${CiWiY9T%!;m}L=PYX6X4e_Rer8BT`BC1iBMfCELx?sSPh2&#LsX^vW);-oQQ
zY`85i72Zp{9GDYyKG(NW3vuQ?SbA6tX7ZsnQztzgqi3?cE!2~+NbUg0a$-ZU6_b|1
zY4obFLJdnKm7@xwlJ;Y^rlOR$NXHqfq^9;6qepW9)My#2^1R1$slk%X{|=gAG{RKE
zRV(Ay9n{t{uL<I?zth_Q?hiK0|LZbNnp*SGKNU)+ClZID#Lh#k2=;)rEIgpA?0c5r
zkiN7%RiFQCfnE{K7{JD{EoJxiB?TA8EBh*l&{tvQf8XHNK@Nb1=f)QSQWJ1I<mUqc
z0M((+D(^5Zm&Lh~`LVOwOnm||617!BZId*0Jj+)}a>rIQ73)|Wpk<WV1Z57?)NIb<
zYA(%7NxXy$wBJoghPCRKXLp})Pw3sx#+|^za@S;DiAclgTo(TJdK=#nO>VNk9>?7G
zftRWV6)E_h2g&ckOF~@)#msoDRx+!1=&#Ld$~6gz;DUb5n+d%ns-=MW4N&8<VHRJJ
z_)npaINT8j=Ww1Xf(}e@h6V+>-gUw2sj``TJv;A+A`GHm#2MbDuAr_Ga5IsW2%Y}7
zTiD*4EkgPo{id(Kz;^$#v4dWy7h>IM0j#qih_dSNvOS0^Y<XYqhLLit4~OmP>bPZQ
z@HLZ96)bLkJJ~48HU+H~!}WmH8ces2Z8KV08sykxC|Q{U3MBVw`shyJZ6lj62zqjb
z<pUo|k1xYzVJJXDld!a#2BRYsK9D3D(<0Qz1%>thps5@m(t4sJ)**N0;}JmjA0y%9
zU9t6vY26-$g$z0+jK9O`*w<fhw>#8!0dql7(={QRQ#PiqjcNj=?+3mlMwz^Qt2_t9
z4z(s|WN}4GH$C73tdxUf+Wysq!rph>n-)KKI0a)}CporVwlgwP9s32J(nY9XH%RA}
z&hxZ@DM}jt5>2|S%xjtdq8aHB@?`9$3MVLBZ#e812J9JDXrbI*W@y9R;r2;YBugBw
z0L<sDB6p;dHN2K5EaI@S8?gYlOiJSt7~I;43^9%DK;u%U%M(vGvFBZy0d_a*|2Nl3
zdKc@HsEV2toP*aJe$b-=P0;1UK7`?Kf!Bt*60<ZzpXkO>6FcurkS#`jRLxfx)4LVT
z*<0Ti<|>al9~r7L|0KHxR=g^vz0gV-z;Ec;{%-r9UMel=bep^O0$|q6K0S1Iz)j|k
zQ<Wcd+;&tRFbcVws&JT1590)aezJx_pURh>qX|(9<~bw<rm1BTb+&=^4qy1=ob&a4
zOv;Bkjib{PhVv>tR15$p9SeJDjdFc^ix;1o&$PgqR-rxlp&KDmPZP(hD%vg2_<roU
zT+SHO6;WUY!UP*x2;4U#fj<g%;AJJ}cahOdr3Jb1RE}`_#c}r~K45jxW&!-B)u5lf
zoJDT|qNCdtUv9Md*0&Z$Db)eeC$t1^Gyvs+So?c6FRZNHP4HA*R-ZyG3;(Y)Q(s9v
z!Wmf2^`>u&KNKg=N$ze~>+qwuzUP0JuSK~LcAW_JAoVh%X((<OaN|fNsZ=#rz*9;b
z&ev0VShVasY3C2S^?+^e>sl`7K;w(Sd`6q|1L|h3Dxh+0=`824C249sWs4%2&nkoF
z#wmkX!rRuj8TqZ;5T@h4NbmJ+jn3i1-=2wH>J#m^uR`|M)o2mBy2%>ea13U|63KD~
zmWzgF2zX{Q{EkQFzM0fkGh>m}e7?oaC4&~<4c$FmDAkhRIX%m1PEXV^LYY!Z=2?p}
zsVM17)h~_3c%q&7C4mET4wm$#9DUDl>-U0bWE)82;`s}9m-s_sq8Od#yZB<B4<Ua%
zRVt*Kap8ld-1@QlIvmnl0}O-+OIkqp6H!Um7+K@ZHLRnp>tx&#(1(GOBRgpoX_}M9
z?2>jo%Hh){U;ltiOBwgE+-dgdPW9uW4@z0Ru%P;HAT8G)#{G&cIHU4Aa92Y?uCLNY
z(%89Hk1I8!$~D?&SZ7}`C3;(`uG~nPI9C-v_V6Oc&2X^9@$O(_*P<U6n~2W+ca$4n
zfJNsW&v%8Xs1I-YgW7m<25_;5XpLBGl^o=DOo)PnzgsOX$HrKM6*|!`O=v^$)X{I~
zx*TL<N0d}oXjH&C*3Yh2VwZbp<uwN*@Z5u;7v_v#5}!$)!2Q@*btquvoWI09YZ1W$
zrL^AX`&wvRjGxf{oAhVO`rMo7v=FhbqH0-{IR8^no9(s04{lGmb8psoCcHZ?^mX1g
zEtV~_H&~X3FGp`;%I#N&*Tp@A#ekZ&`s*p~AEv~cjGHu@J&i~{jA0ptDnApKWsAcs
z`yABh4fgwU-A81g(_d(DZh3fGnRf>G&9{{HDJ}5;h&Hv>7&jX?7}|-z2cg+JxrQ8Z
zcl;%{!2or0SlEGjVlcMY+IZU1AkqJuYv_zJetT!$gZ|cCrJP!~<jtmhLV{;V5Y2%{
zhwj?Tc~4ih_KKpQu;%T4V0>Mk-rr$^xcE#>IgbeA7FNfl^FY0SOfgS$FnaNKCVagr
zl|_(E1ieegYbg%G!+fFX@hRLtrE1e`IO2rZ`_O@f5aD#%7)iOccNQr!sBp~O%G5*Y
zjQ)u$nkKCq=I{b|F@>-}O3+TF;KNpz8oGFAmY^Szzb__3Wv!jGbrfbbw)flKIz?ig
z($tK@rc&GW^wMva!oQGH>gB6GmKOE&n+36_f-5c}Y4h1&qib)2zlx76Y#P85h!z`Z
zGw}q6bitr`Y8Nkx@PBuog3D^aa>Za;hHzHYwgg?L|K<^%U6=&^?lD!&uw5j;m>a5o
zNcgF)2oWSUD&!lZI09s&hjeG#hKqw@qL`n&R4$fKdGLfd;k|}xwc^Ayg3*d<gWO3F
zk0(39MTUJSs+*kiD_}5Zps*RQJm)W=RnT_7+gBJtWKsK0)2XiXF$U%wOVVqEv=SV3
z;OV^>3@OJ}!x(Qa)1$l655Jc~)?e|53_aI#TaA6zJ>h6IN(!{42_y)7y=QznTs|Aa
z>7CUGhyhnKeeP-Rk`VMQC#Zq|tGr<cnA<=8K7h2_ov!PYHy9vZ<RqW9Y)G2wwmrXO
zV{SHHbF|!I^A0P0qRm|vmfEwXj^_{1nq_Wf38WGbDUiPRuK*#te6bFm!M(yHoR%rH
z^=tDZk6tm`bu_O<zY#a;pc1E9_uN2l@Agf|!-H{fb26&n5U$nkx=pO9;HQUXCX(Oy
zRyaAswFulbX>UM~toUV&H7$e(Z{S*nC{73@Pa8)xPA(HE{x)dYUqo}{Pihm(eY%__
zp78!G4eiQ%Nir#{l;99bBHU;Ro0Fq|Q4$}xEq!|b>Zt}kXhqrBJ_Y1215*yO;owpg
zu9Z&2@Oei~y+%_0<j!;Hv-zt@mcRWQ4%EUQi-NEvKbC+%YokT5a2|j#7iB%$Fa_<o
zXW9orTKm)&mBAC~TUY2*2tC$OKkqn^-@VY}_RZ2p0F+Yc1|{G~P?J^Lk^cT_XCxDC
zN6w2m&W@IQdE_bh8t1DV=a<>fj#wb*lw?qTh$|{l@JK2oA^nHe>E-OPQ85G)k91W;
zQ?E*wwZ+!MLDc3tU|d&<+?_@?kO=rv<OSGbd?T3Tp*8Bd`6#La?Vzp(GJaIfs1sq;
zgl}R+7`2i}IyYvx?x^odsn<8MUBYx5qT4gq84Xxd=+^%FmfwT4U-l{>;nP)8(w<E^
zTRs1ZoJkH~d#26<GG!0A8z?|*APJ^p>)@XGO2pfjSw>oe(2<kMQ8G^o#U6nA0xLHV
zjeMl17rq_&nG6RY%C2P8&Fu|5^pa2%X9?Z~_dEMI28H0(_QP~(KoNPJ;mrVQm9MWF
zVrFVV9dc)yTah>)c>!~*8?iC=k}V-`HejGJ>IsEbpPxnZL*~ur_#7d?px^o&caNhc
zJ={$m-EDJ@cJw|{y1ui=JNq8u<%~~&WPC?j^ATu(l4YZCp?*Y-8)9DtPIcsw0-23&
zVJ=ohtweWxcV!GxLejx>V1p+`Ok7M%?<0nf#$a9<|5#vVU)UQCw5Z)|pIn^dpO~Pr
zJkyX2Lr~(*CTBfjcv1MoJQ~qM2Bb_a_-1J{NJlpMF{HfQCJjfmfqr?OLkm7*V7HuI
z3i`mvRfCFABX{hu)X)h>6FcK#%e6h%^#;TxaAZC2B<xEDr63-CubV1Mb(!>Tdl503
zFzPXkyYo3|8|L{^$AR|TbV4MuDh#)D=!vqu_hcMq#Uk*}<2^18z~8CzC=tgiZG!Ow
zpUkU%%(gpRP?1zOl^#09<pBg(TZ~=6d5CGu1G!>iqgdxnLOyD>^VC5vJ6LAw>UvIj
zl>_pKR87M9c-NtwPUc-atIJwlEvlBSh^3~oONp#;+3<_9yW^m9`ee}u&Q}#Ym5|tt
z`z$Y&aN+s*{yc8(g5$8o*=+A)vlCV+sA>-1MsFQ!&%Yx)yv(~>Pt7r|dz-HW6#^F&
zxhm3^BhjRyd?N#c%j+{074+s=tfOx_8f|&$r+iy<-Tyh_af#gY3rBDOSh7|Kp0Z<y
z+6H>m(n`Vg6KWA;i;{h-c|V)Jrga!x1jkhkzZ|@1$|KAHLhZUfP#sI<ci)WBg4dUd
zl3jJj1=Y1Ag%X|nPI#N!a2xyR5s^SX%8G3@{KParXUFfcxki+KmJ84vKqFZ)c&*ql
zf1xmh=h>T|?(-FmF2K*RZ}j$%o@KD<<KwdZz7i(v8h-<b1|^K57lB}3B-A*<l#c4d
zKAnmzwa3*mk33Vhec2!o3qnQK*`SsHJ*&n<t-AIRHi@*2y8&h57-Od!zm+#Zu_K)g
zzmFhJRvS{^fo$};aYI!IG}z8`Op)*Gnc-O#?fWzxkGT9_Cu_x`^I#5vqqt8TxR3X#
z7DEXkc<%*KKCcwEtTyEasZFKuS%Cj%c#Cb>hXD`1Gx?hk&6gBH2pCGErfsO+wK043
zsfroTh_VxiR*L`T>D(GIf|i85u5v-Z_G;{ZYHtwFF^b?7qi;3CZ(dZ8@Y=f1Wj-?r
zECTroI9ohwdNBonJ#Sw{Fxh6se$dUj?6DS;0#b0m&Hh0PE?{rOui*??kDu5a%)6q1
zsSDSf!<=QLz{?OKT1uH@1~9piT81j{Bs9?q4FsxJ<U@3hVvWuG(<NsiPh0qtuh*~H
z>gzjQY#TF_m)t1f5orP!(HF+1>XS?&WtW-lkb%OLrYMW+?B|0ZoSS}zFTHm&fXV7%
z3M<8ecH9oy)L*$Wj|-{IG}y;U=%vu)A^(r|AQ#MS*}q87jmAg9w>Q;4U#~X%xUa_c
zVjF$Te0ly~WKHGG-Vz7YcOU?W2E8zAA^$yRe&~$`d_#Vb?eivy0NWQD(?V*2W%5<R
zoE<h^)a?)x+kfb_rD~?*2%fqokUX^^KbRmmk|N*e6<?Zyr^Wq*Pcj()QHi>=EO8nq
zmKQEd0f3Na?5({=#rZxAh$I|!N_xatbMrS3CEdi9RW<EZA_-8+#wb`MlNWYPr1zph
zgTQ)dyo(rAGO3GqDCwqj<5@{aCQ1^~AWA|Vyrv9fjILSR0q+yN%Dg*8N*J&;dM9S3
zfraULZ<VaA_0q=53hUYUq$j93dWtvgZK4T)T%)bMVMOe;Y}Wipx`WDkVhp}J^YoaC
z6W9t`yaALyrtS|+eCLSPe*CJkc^%ueS|Wm>S260lFDax=e`yRYX-U+idD#qtal-tt
zln)tNH%$5&W7{kP4Ui66IJN6o^<F!iCVUh6{ZA%L)c%2K7b(~Onq5oWc;;<8Uj2EI
zlc8U-&TCfX>sN*IYz4Brc!i;0Xz{8ijnvo`&ky>>IC|7<f5bKxe+u;DyvP;~wVDq+
zxuRkd0-UD$Z<r_ohSkJs*B=2y^CdmV%i!Q_aJg(BhyCJyZsZ5ern=o2dA>HohFi?K
z*_jexjduI`ugN5O7mjbG6g+}{Kz$Y7^4B<8jW{?AKn5D{EiCjW%b%-UirXthNud=4
zQ63rCzA25(hQDynKo$u7ih485Lz2NP7_LLrv*A6om^S$US;Ul$novAiU>z77o4R+G
z{qfF-FIAQPzz~_o!+dn}d9<`rSN-wA?jl)EH(3wscYDMf|5qFga;3tcgV|mB(8eUA
zE<K3+^<W->oLX%I)17?+39j;q)}hd9h};LTXm+xQfA-lY$S%9AuY!ya#sS#5)@DN@
zXCO(`A76jam1W@Cns!#M_<2K)n7&(#!S-Obw!LwZ%?d3%{QpM^KLzF(Y*T%E1GoY0
z3_^$0@`^Yt+q@ON4*_Ob3aDHHM1>ipP&U(lIWgRZ>*~d5+j=F(TO@B&pIQ&qiFOv!
z<ObLeJYu*(AhaDZ=CkcYpNV$}*NM-VCxc5zeG)(_ZN{bR6^%``Pi69Gy^9+(OgZq-
z+O%vVuH52WDNcL*eV@-EfJ>?5cHQMaLWwo7=;su}vB{yx;nzz1Ho;yK>MbuKm`$PF
zvIf@I*<v1RT^EJY_CFCs+C|%SFe3xX26JS6y`g3zufBU$7S~fIT4uSLO=H-(>PmKB
zZ?k8|v5;r(w}$VhF=FsM%tZE8$&(jW-G<{3_9qH9#1KIxuvt{Fw7N-e^-2mq<Q$0r
zyWCk&+fiOW$3<wBtkfqeZ&S7j#izZ9=52$kvqWRmQ1ALzG&)IOmq+XeCIgURfZs7B
zefF7KT*@OPoG_ysRlTrzmqFw>OnV118%mJV2c7&cpm;keG|_>#xBZ2_3(41>Pbml%
z@PIF>Y5rhcynx@GO$?9+E9=|i-L`^#<Y%&WOfwmD3jAc3%*EbVJe@c@c}g0E@{t8D
zdJiqclmeXtnFsc|uMgzT9Ic7veKlD1f23pN)F|c(uAb~hL}~=WKl+dYXS!McMB*z0
zR5|dFgw;!zcqD0CWzQ4^2+YPxUV4YGd}*cpN+SPtPsdLo2Vny^h|&{4$)0W+EirA>
zP&9TOkn`}19ty(@BH668?txG5@^}|>yf!>ZtX6o4RrGp%hFs#nBL&bTxE$k`@sAx<
zp#QlZ|98vzdvwjJCYuwWd|A0D#V2SOD*i=&oRZvdR<veGVaWK~xqyeE?#|AB4dXP&
zkf(vps|Y-V0dJ$2Apj^~&^tJSw_NL|*BKJQtw?W<v_4r#U`K<G>XckVgO}#R@m&B#
z$;&|+qw4p^%j8Z8jDos8@yZt?42<lySQgde9;1^2)J0E}qXMtVss4WT>;Y2Sbz<=N
zr%ZnFteJPAQsLhNP6+JYaroDB=#-2uEFGJ`bE>HVGR-}rwvFp3SP4{re@!qHUpXb=
z2`LREK3I-M<<h%dn{&u*e`Bd<c5P0&(9t5%4IRxF3}`yQ62e0M6j1v8o?OjPT}b;k
zc&#fNzpp-tT>~8F+z3~T%8#kE_m#}zk`zdFR10bIS;piqdqF#|Hygen2!-pt%g&sJ
z`7SH`4)Y;Ic=z+0PpoXfN}+$uvr$;Mle~o&AcTTv@XRML1Z~PPFTybqjPb-wG}`En
zuQ&8u=FK*cAO-yyJ1H`9c7l(d%9|u$j@D>=2PLVi7Y>C^FICB-$rz>(yZPKyNkgO-
z8;f|ut@ZEy+{|j!JIC-CQeb$l5<Q9~^q*6i@3*OdVGVWkB&tXVOe|opVZx%xlm0o#
zs>iRmCI#iaoN7{>CZzg(s*^F50bUtJI42Be*#{p#-lAaNFT!~)w@*8T+(X)cBfZC{
zPs7#`d;1TeR6tTx6p%1cHt?R3wmG+@g-$+(S2xtNE7juJ7po|5wCb~KN3LnIhPge6
zB)Uyd)SzLj_-VN`rwODJeO|m4PL*wyPGX0i@C;SO;#C(imVvoKxygf>w=jy4uvb7k
z3lhC+6wUU5g=ik^xj%l%`5=}r2^T$tB46bx9lXio82rm17*nWG1kPT7Lu!>O$4xI?
z@VKLKdF;JIkSNjGwA;3A+qP}n+-=)-_io#^ZQHhOTX&EC$@zx&%ubC~yn`A%m9eTK
zYGvk8c!R{1NG8JUF+R5w+uh%fkp4bfl>xX=w{4_g@-Ce{GQlxxdq7;5xr1xh;qh*B
z;@%o4jXF!>dDF1>AFfI*)<~>~?TS@Wg-@mxLuHXXFXo>+0p%K(rG+8>5g?a)@3E##
zqliJ!96tauxW%@wBjooqxp?u*XuX;yNM*sZpMf$S$!>~~L0qg>CAQGr!jP{rcKY}d
z2OZ*w58rk9%g~b{V9d!5eexX>%jQh7exn*e@JIxKRk~@gUv&*XnQo8XEA$R0YDFo?
zobiP@fZ^p45rZ;&i7&Qahrk_bHRQE49;KbsfAufbVl?YvGro%_me8`%*zX#h7IR@4
zwGla4>-BPX`SncNaZBd-7U<?Xk)lwa!(2Sz+0gV!%G2EK5FEI%<v1{00BqWO<O`^}
zvS*-ST*`13K2SDHofHHF{_)?@X^n`iKo-{3Hwfn#`w`(ESfh6K<Ot4(*9dwz<QcSJ
zB}wEAE~ly11AhewgUbzwxcwQat^ud9*E5_S^Q@FfxBy+)Z4q3~0%b6xRKw}E$2j8R
z(^$AX%S#9JtH~!0@jnvgkwV&}Du%yXQ`#=yz1!Atv}t(3`_ifMOi5{mD*W_B=wQp(
ztC@6M;O2R$H8)C)e1pzSpT}LaWKL;YJ)92VF#MP0$zz@L`I-8DXwT^jF9Mt3&-3|!
zG)et97W@yj*g|b81QHz@q3hdMUauR)+w7Dk8dmZP2LB=hPsLd~N>ELso#!~6k2%FY
z;0z1f!I<lif=oqn)l_V3g`c+RUiI)&;%{X3v@KpxYN`$MaUjZKfvg-JT?7J#4ALf*
zLFIr@w#^coDY5eZJ(v%09P~vLr^6%7T*olB`5lT+ND4J1znyznyG+x6$I8rU(gDn8
z=e6AU;KD3hR|h%XBJY|A^>Q%Qnx}%(HF|Yaq7%hm$v7i~N;Xp9Zt~yh_0O_V`<Fot
zrm#KzAl$J~7Z$bRMZ2IB6CY4XdNj+zKD4i}J}|PCh@3!xtS*zW{}5@Xv{&Sn%_JAZ
zM{%9dUmm)T$}HCOJ#(F3)~xqPP#`H9ebCzC7XZ->%w(3u3nfDs2GMu_=SjC9Q|jTG
z6(t=0g6><D<@sVOEgV$YTYsmlww`9hdg$et{t-EnF9E*CKqR0@o{Jx=rWBgLPuGoU
z9o{wss&0hlV9op8LLg539OhYcAc*keyWUWJA>theG*@?2+ER2tLTf)mH64(Ru`Cu@
z>~|07ai%MRGIn^Y!AUu`@uVyjEqc{G?is0sjo7x18N?0AgJ~eqilZ|roiw6GYMH0`
z5HcEK+Qec)=aXqnlw{U|J^0u;Q0Jt}?2;`p*oH%6M=Lc)PW_tZRn5o|bW?MPJ#fm5
zx|VJ$m~$2zv#qDbYSjIVii)0=DOE0CLX$eOjw{)5EoqlMtKU6TS0lDwRMwVC#W8p2
zJ}!FsfvG@1IETNBokVx{SCAHT$PW8LWUQTbx?tmqOX83I7wk}9-krbwQIH>Ys*xfa
ztaLyB=t3)jOvR=jx<6MPMrmD+?*8qM?;q9<e^n|6^>JVS6cxq!@Lb~T-Qz`WP5wEW
zWo55Z;9!VwOgp6Ht|7V1UqoOS_Gj36?pA@>-B`f*(xOIONJK)jzb5(Vtj*2;O39QG
zne;rO??u%!!Vv1Ku|D_b*F0qZ!d_KpTy`v5@~B0l#xEnmG}Kmp!W`OoFLE_vkB}~i
zBzsO;5f%aM_n~gS1%$`jUpzpvO!Ca8B0^{?Lzy4zh&v|UV8?5}Dwb9Fq32V=ml5cj
zt**O&B+m$KjoZD!&V;T%!XIc;5Cgy>j0OW>XGttrjRXxG1)tS-5AYscKSxssZ9Il_
z@+JzE3*G8zWhgQ`JTMeCq(-~NM2@>pwg$%HEo5l$PqvBx*a%mGKSshpg9V0nYPBDS
zi1Pjvoog+AME9=JYPK&<VfYts#uu7>s$j@cpLTn+h=wFgWDxw>+EczZw6|9gS(%fm
zfSa9?j#Qh6<ne$yKaP+z#h>xjim5_jETTivp)<JSCdAc?&1mdh$?FmI5&&E~(J3r&
z@vyV&7ZOnwSz~Y@(Yk##Yg#y+Yj2E)LkJ>sd~t>~hfW8)=M)iXFX86xS+0GD90}k3
zqMgBIwB;I@O0Q5@_(W#;q|G-V`{A8v)=19T_BXuciA)cqq$(F+--Jg2YwJXR9Jndg
z$B0e@i<ALuV@t6v{&j_*<-wcR*g|_~*QNL*HUv~v9PM(^(<VZpAe4oXAKQgLGfXyN
zzf~LV*p^O{-u3_c6b&Nn6@NZS9$CMe8>>Nhvfs3NH+>J^M_-9&Xn2#^Axlzd+YC1;
zG>8_O&OFS|jTREmM@8}2;j_0*l!)B5iUxS<K{iR9qJuFNQ%?QL_g8;Oqo5EViGO){
zVL05ob?XmebVHBKXwa_~-`$+KS18^_Pl-=|4g5=o9v?C>iO)aVWQ?o5z0Xrza5(}J
zWEN=e{%=zff8kYN_b4@3!H{X!cuL<CgQD6;8%bZ^WS#zZ=z|=qDzG1b#imokJcHwQ
zEkhG%-M!C`G~|fPn?$4Kx-O(0qFHk=h!GWdl)GIH7u(^5%q};cX5ns9HFH1Y_ExBe
z%D*_rO}vmvjjhEmgmYl~nb^%;!8}Ig7Tu4vAlLY3b~M|+dWFH^^h>WxNK*2T_?ui(
zO-^~9NP;chNn%fL=P5$>9PAq8IMTopYn-abH1ru`m7Yn`kZnp4s{LQ!5lPgb<PW>J
zF6&Z@aYrR3oF$9j2O(hiiX1d7k*(nQLf9x#8$PG?Gi4Rplw(4<H83Ghp<lUccjb9u
zqdTs)T4qle$+D+?B61fq^SEm{lCF5o*RYkZOt9^1GcrP+R&8kG4@RK)*o!WIC1cKk
zTPIg*{7$7R*p#qDyw@NTMIx&=84^qD<{NEi2IK>F{<x^u>mVf#|CHTTnnLH2iA>XE
z0kfZ-HJ34DNd1m{m8;1(;fu25C1aHpO}&DEP&{3DfP*VE?l-MnW9ZFDKxJqOk2azE
zlFK6e;<RLQM7@)fDO%Q=%uh)^`{}!ipkdYT5!~<8y4=pkcjmiF`nIY;IVqCbC43J}
z&}?yTs*pTd&7Lq;WeS5h*b)+O6_jutJ)sfKvEg#tasuu<eOafr810L1^s)aWg|Ba8
zC(a*r_s}IE?wey?V&g03N~GXX<?F|?&nt4pHonHis&)3L-MEW~(ezXRJ35ES_HIva
zjkb6uef`v6s5>3aF16#~>@R8Oz*$Y~HrJ%!a&}`hRHXZQ;nHx}IJ+5-1<frv;w2*Y
zFUJN7wHDn0DQIYhNefPk8M?URRVjjq=4uE#CX|yJf=riTVx|;bBW1iQjp~B-tEM4u
zw6*`V<w1qGf7F9;LSf9(JHI-C5pl3O67o{0YNbOY2Ao@k=L-8DC>}QYD^~aW{eIuR
zeADQQwm7`bE>)v*yltch9I$sRT~8e<FufNHIe57%gT<_AVl}U@){`Vm$0;B|<x!ZS
zoi|_B+-I_;Sn*k{vG7n}SI#2r;s(Kbx6hvhE_dL8L)wU?px4yHaxwmZQ~m5yF*IWY
z%)R2!+1l`d<k{$>#(VjiR{JlQ^e;kvEi+P8BYH%*zJDmG*pf_RtwyE4x*9AUc5sm!
zXDjU*Uw@+^kAzk4dUoP}G&KQ6qMD|HmXGE5SOWI_eg$P+P2bm`#32#N+ffJBQ9dAk
zLHOW)zf)KO>$nhZKVoamEavikZM)&cF*Gib0sYXe#t8d&ZHYwr_8Xy+p>Kw#PzvMN
z)T3KXY$IxL%^>6&*u?XCA)2x_=~8L@0m10@{3?RVdA||Ft90BkP(t$vPh(!`h@vDf
zHO#ODuR`DSZS?WK-aS6o?>z&mG|S&tii~VE>^v~WZ+XfO{#|GIHMG*F?hxE-f(O-V
z)8wu9u6G1KiUng_n)dO=FN|gQT}J)At!+d`e-pOWL~sWk!>Ra}s@SSUX}UY(?*ozG
zaMP~}H21AypMk)9)g3ouVC@%P-FSP+*l7!oW8T-&PJW~dtY}PJ?PI$7c{`zX1-?s>
zn5A1#Q|3!cr*O6$lZo#z6T{QYpk_XHK79SgDBFW<W_?Ou^*vFVe*Bo>^=0cEz_cyL
zga7Ye?OZ^{YpcasN7~WL5%DM+Ef_V%gQh7_1z*`|z|D@9dhPe$iF05WCS`G5X-c@V
z{1l+F^(>Bwlvk@HnL7>*8sSRU6G#+TETye%%^{_U2g1v-EkNqq6j{o8#hYbFN_s;l
zBjFF?+r_fx*pJ`e0)FFiZZ_N6?z=-Rv);DxT-Bt0aZ}3eUH`>~Y~PA-SM<3|ko~2o
z<5MB?1nZyb+<B?!^3zC|&8rNd>ox#>SYHDTjb{@(NMe?RF83B4$KU#v)i1y}tRvJZ
zF!RxNl!a%c3uK$8&>_fk9n`<k(pky3b!OC#1&;zPNB_=#lVid`UZKT~`I@r>$WO+j
zr`m!M{K1f;oVB0<Q-0aKHgx4#kIU-}7E<%4L7B(Ju1I631Ksqzys_Yow1;Wp5EgSS
z_@;XSOXVog%r=P#aob|N@G*%yr@%0_qL=NW3P!AG(HMSO6O5PSkM#CIFU*rfz+V-l
z*>;284`T+yRwwGm4}uDFL85~ncnj8YpQ$AGJ;EHC({p<usZu*47b>Z0vpylWCr9S0
zn~@(o8$%F@ni&40e<C3YiV9ygj1yHEnjPs_>IU-g8LpZcCi6^GZaP{-#%U>@UNdFI
z&*`#StSskQr9;xpk>|-dF)3db|7#00T1HIwGYR|G>Cf}L?Kl0$;<qZ}9Aap>cJ3;R
zBALgsRN0OBzogI#rZYBS6w7#?4%KOLqk|)#Tp4O?hQXmU0s+Q8B)YL$;+UOzzPXLZ
zeESJr(ied6<An*@BkXiY8xfh=Y@5+q@jT%~qpTud%+d;J2Q#qGDCEEF(?&lsakh3v
z<Z~GOx(~Z<!iAc)WSoLvFJEiF7`u*tdKXNBf<nLoj;Qk<bVcI%i<4SYj<k6XPo~3p
z`kpyj)Wy$sKz)V30lJ*-gz;=q0Gb4C!*csKZpsEMRw|P8r>yWAQ?O$5^(bea9^oq2
z41OC0f#uq)`?T<mQg!>tr1PGAc-rwwijmm5^AkbdYrEAGz4n>|HwFye7;bAh6LmfK
zx_qlRIoj|EC~En+qpw=U<ngpKvq*FTj7}8u$%8>^^&G@LRLtHke?Cv2QfuaOM?yJA
z&N%{kg}_t0vj$Uzx(LF8yGEZVax<=RA<M?^9d5fOMFf6Q-kBRvXU7L0mzhxApC}r!
zr#>~4ZyC|2j;y5hxpMKS0oU^B;J7CyysEnl)(D8oPEWpqc>Zpu&SF@}CZoBaoT$If
z7MrH6%G*%8$w&jdRu#-vKE{M_zY4{CZfBbhy9njQ7Tm&uB&`Dx-A$DDgcy*`{Q;a5
z_*C=P(PGR(@L?eFxS(BA*9P8*E(n41Hu)x;Sc$@_(#*_mhZXo?&$VH$E+aXAvJKSa
z6+hMYj!r93@GkN1GbEgB&;@USIvac>5{}Wb95GzQp(7qz$ZY$7&l2poROWMvz~;?N
z-nvbD2qyr00{ZpyH;aV2Pef!5k%Ualv7G8U^HO>uE^%GPGOXd8k$AW;^87j)F`Kg=
zGp_5xy&L=IEk`Xz>wlV`pd!9SRzAzN=+;cisTFkge=Oa|LSFfLz1X~hevc=wB|P(=
z;YgeWBHReH7qFUiJz1*3)*^dF+fmvdokbP-nQXk#G5E9&u5*zSyo-0p{0oNU&8RxA
ziw7o3PlwtV&kWrF;9?$_@YXTE<}cTVeg==Az0_OB*w0RRc3Ka~3!KMqPWfl=(Qd@1
zrLvZLh%4wf{UR#>aA)~P*Sh=0tu-4`i)Uk58CKo!p^|l>>z;Fu3wQ~aRWW=)zqO`I
z<QJ*2*q9=?=2(4WH!O>_Lb>L7H1fQlca^)0OxHIV1(k2apu*JRK~J6JIxgQ6D#)hI
zjdXkiPl~7~gkcg)h}9s{)xuO!U}V`uNbpcHtMi@Xav%BTFxc{ynK?L1Qq0&q4n9eK
z`xrUCu5R&P7Qs0X{~@Nfg6|4!$E9OumAW6D_`W-@RF-0Y^{Ntve&#}FiQYZyBPERt
zd)^_Irrob&a;7fz>!m_e@kd~aj3_$RhlJdGCA2dQIPSiLGubU`{6pa|welJ(ERoIR
z<-s+zjPTCAd3hwkjnO#tR3Oync_K8V=zQqBQfhOMIbgqm>4$Tg8pZdRK$(ubus~OA
zOayQ^e+N^<KwF|S#Aj?hq|XQ5+=>_Qok;bg%D=K3FGm<CImZ@c90M^sZt{dra3D$E
z({dL>1J-<O28~Y<<MwTVVN>Imdz8K;A(0?QRlo$z64_IsWrTu~X0o+Vu-GzrXC0`r
zVR!u&9Yh1E@lQTujyFPfUK`E7n=e2EfKo~Gze3h__i-A^lt-xCZIuP~p5J)iNa*Cy
zlcve=%<9lpaT`%;;V?(qZKbzHXAs5sO?Y4(C`s*MiKEqQ-TeLjC){dE2zzphg$7$6
z{>1y^`Ww>f^a?&^RG<BwKZJ}Aw8NEvlxen6><)gIl!&`HTZ=v6Wjdn7sSjcmpT`Y%
zfuM|wJD3$L1P}sq6Fm?$wsl@87+3=e9e<5yYI#CppT`Q!<4WB_16h(177b2V?-oVO
zd^y)jWX8QHI2-Puxpu>TVAb#LW3x;pUjD#5*Eg)us)LT;^%?BKjMu4>zZza=O6eiz
zpVpXJw;p!f^+e^z2y;-$7SUGhFNW7X_d_=TNA+|0G>5j&$l1r{EJbPt3f&(HCT9};
zzJlv-dJBhSN*4B}d7Dw0mNT__vaX>vF<i@doORd@r;A-hGDP?txj+2uBgf~DN=|sl
zuXOUng4H1cDHgb>uCTU8W0qp-^9K;>)}{@TdaZPA?{Db{e#OCTt-xI_amVgVq{EVX
z&FT{9W-IZHPsy8Ymwn!+ju{8{=I4$+?z;BFo{ENvFDf--sv}i|(Q_YBFlGEH7i5u{
z<Wf{_hb^;g@})(gxY0*>pKl?A@u`d}dsHdPEH~rvRyij$3Ga%f|M=k2>(8P0+scAt
zz%OBrH+xU0oNa5Z6Cum_v_UL}?1(@%uh{?a0i0jtKlaoW6)t||0huAEqB<RG9whS-
zk1!98r#__*+9d}6$e-{R!&7_-qxGg`;fCsy<kzR6|IQub4ulP(I(`SFNNt~>d$U^+
zI<JsVtn&>T7f^5UIWx@6#a<(O?fvs~LS%S()XE7FT;)D=hqumoZhxom)B5j3ld`7E
zIj9@n-}c2Qjiawu8RY`zmbfEiU<Re_4hz368T@bK;P>Htxg?f>N&_H5aJ`7QfeQ7&
zLc-Tb#d8yj5({;HCgl_s)Q}uD+wBM%y7<PHm9JC}PEnYUsR;I-wQ!AQ8{;6K_WlRF
zZs>O=MHl{t8Wvr7_QamW`myJ8l=06VoR7LHqtOwlq4)Irudv~$K7m;J{`CQr0Efl-
z=q_C35`n|urFgrU;v=vx-RB~ydN3o5jAB(pK3P(xKd!vcybWw_Too?w?U=LQ^!IWl
zfh}ksYvc`{5P2`m+%O(g?u-1Lhc;prGo+J+VqU+#a8s3_>$T!?IiM(uH$mifH{H<K
zYb>swCx|A%8(Dlg?m|b$^3rNP<RY+zy#}=TKTmG*;fN*i<Fm)8tNZ4TJoXw!W;3d$
zM)@eW;}|E_&l^*t0x)%jg7>z<236iA?sJoh^$YBd{v8C^fbp4yT0XZaBbfq?zXI!J
z4<{IE4NfE$AeKM;y;0T*9*_NU1u~4}*ko{|a9k{v7`fP$Pwiz_Q>I;so?NUl4Glh%
zfGC=89ud8|5$aOkvt-NGr=06Yg-G)4-IQDi+V3VSZ|;W}(+igOeX=m?>lfI`T{cbw
zo^Kh;uwyE4)oZCXWv$r>c#dws|B6`d`jol`yR-obWKFX7`$ZYovlamWinkC?hJ<9}
zEm=tO_(;A!$7{kKe1_Y`<TvIv11kDCb-aN(M%EUz!P+oU(aZO78!?ibd-PZxyO*Ed
z$~A!Kpb-IY9Oa(EZjANieWX^7pfe9)0Qbj4snfBc5~24N8L!_mjsw20jKfwIDk$x0
zmHz#qb3x}c<FJ^e?235(CBh*-HZ~d0<M*P(0X%USraBw_Xnc(1Z?GGfnIMQxcU-0j
zWdmmPS((%__xTsRBAPIuWXEo(&h8qXg&F*5-orJ?-{*>T<>8Ewo(u#0t+y^Vu|_~4
zg({%q630^v#dV^J9w5t0g-U!z$!-wCKYz|2&rvhjhGA>ESb>sW^XmY+dlE3rwxqsV
zkcuQpDlAoDfeR`)B)Bl22v}Rc!OfoXv$8h={<d3P#|B`#z^{<(Y~!vl`|eUA-jOzq
zEkD3)JmQXE^JCg_Y3-N`f=NV@!Lz`2D9&%>$&=7!!%GtR28NO%_{e;KIkOAW^wiGm
zDjm^;Ji3g+8V9J@!-v*4Ch_~JLw3l#X8PV)n**e&rlaj93`4oFbSUa;J*&}&KF|Th
zP}+D5{kROHO>+F&!BW*gTMI)ck=YMjr}6NiIr8jRs8oN{PJ1A-#^V+h_x?&?nTrE`
zVlgla)*X44O6px^?TzpkE)&+n&HGRl*YX3^{OovN84E+~{4wy!9)Sw~sDc^?;!cJ;
z=IF=Lui*N-mk<;JY-?@*Tcp&h=TyegPEvu<2lS0hi0SftiUlZnEi@4zX-AWX9u%;^
zZa2Wl?|URNU_%Vztvsq2<&5a?E-NkYVeV}Hx$Cq|>1ErkMlfDazbL=s3Gc%v6~#su
zI#r($N-D>}*rl=BP;7#D#)q;T;xiI!&%9Av>B~1|Rx3#7&j}AocI}n9PNHXIdp@B^
zUZxlfVnrxsCLb$RMX8~XrvKotP=hTRJEF1SS(ai9Q}QOvU)Nd(knmN0=l;q!bp>|u
zV`;cfN2-)9G;zOa<(M!qhq-d6d;>+h>OBC(LP1hJKIrLO9l`T-^C{mSb{&0EV`f`v
zAjAQX8=P_Yr<}SWH3(}*-^4Q+HM)-NEyuMsBc?mFH3$Y1?55hQcsw`sQ69FD?`mGb
zp;`Fr@^-4vSenqL@_;;SjRG0{HKAG`;$DXViHIY{m#bK~K=f9lv@#9xykE|Al!e&7
z8&zqQntDnEIffxt5FSi;<+0FYc~hMQJsGr>M{Q|;{-Zu$-APpslO^$t;1gXZQY$Nq
zwY37nAjlPUmA}E?THM^2axvJub<i)yJlS!9q!lSwf5ALoy*sf<qH0!22(zpQKhK?=
zG_SA>Rbd3~qe5HN7oE;hRiTt#xTQ!R=T=9|s|oNdD*LFEoIYoY$_JVVSvrH1>L|wW
zd+$VQSl=)1_!MOw(E$%BVWokQ>KDzHFpCo%eExtRh8ve;oDMQ_UKJAX{JOy3AZY^9
zFhLKCm>*aDLR=80Hkz?TkkXjx_3dCG!9ZCOEyTh~dM4XVRj{IM=rr007$S+-j^)KK
z@91AYS?R}xD;2;nZJ^$5>u6p?=)wTKGJ#fXLly*es`zEckPoUZHzFXOkos+2lZey6
zbl~O5*)uaO|1<H>R?4>Zfb9A`6%(iB9~QpM4Vy1Oq<LbkJQF$B5%XyGjG19!?X}yF
zP>0<3mV)%1Nd5SYE7o-(rU3mMFDaTuJAB4hPL1;N2Ix+d+!+OrI|npD4>=VT3yT@h
z{~(FIEV>)L0*<uOKOk;Owd*D{G|sm(1tOwxuXPdDDO!|;t6{sY(>lrG^}T7lUg-3W
zk*i6PF>W^oZ{x_N-eZA<+jumm@DTB$NY|>3DPpXvpU}k{_S68Y3M!dbuo_BRr_m6?
zFHg_9kSs~1c<yKT;hkWT$Gl;$fhSxb^o{oG7hW<S!1@DzoT;30%#%>wk5{hsCz+;>
z$N;bA)qOM2R;DXv>F`VP=q0v0zWYOMUMpL^b>j<tPM59ta9aG_EO7NPsRVshBCo*t
zhU=vI&v+f-GT84n$L&sLPVK=S77!Nc!$E7iF!j51v^#3B(mxB7GJ-1~0{t#7e~VhU
zqI;L6udKMD((cU&BV9;@_=jEDy4vVB^5StIcSfU2?oMu_lJL291ESeW@q6>c-6^Yj
zG$qvrUfJ2nxGjo-j<F2uWP<jyA9jtnj@SmeC8=&0W}td~aw%=Ejy2Elsj<|@j!s#$
zZbB%=#YD?lMRlE^jlU-~<mfr-$_Z%juh^L@*mH+tjXp)Ud#`#<QRi1;Q;s5tLi>DV
zEuCg0EPWeU!x{y`&kiCnX*#2ui?8Pl4|knv_f$5GR+r`H{Ml1l0rczYtk&5u>-GJ~
zC8?Tnh?^`$x?p!z5Q5tTcL20Up$$o~>-545m1kv{0rbi<wYaketlz-WT8%+_)xfT2
z!G|CfEw0Jf&&h9lxc?}h#VFC0b+6~#2$oXQH3oy7N(8=o=<-rF;uNuHGQOM<iRq<|
zIOpZ?IIdW0^g@v&ZBFE4x-Y{8ByGl+sPEw50W&P}rj*Dvbf%1>2)|PMqus_-(dI*b
zNO8wX1%780IoitVEu>ncu>EPuj3rzK!N1Ekpb<StmO|(5>i#m#IZJ~ezpOZ^5f0eZ
zweXztc7D2M`g;F6?r3|*%gDCf!7Rd?FI10yNd(`u3MGz7zG2D^TsfR-NfLZ>tzhE^
zxmm1~u+;uATPH3lGM^P;Gz7eiC1)yX4n)rn)Uf_dZuJJepWFWg*_jh7KZi~hnVX$N
zhyV(ZhyB|J@W1Q-5nwO$|9|WM9~WN#WBs2r*^B;j_W#Gk^MA1a6XSnL*#BewpQr);
zTf%nypRoUv_J2v(9{*$gf3W^9?b!bl_J6Vl_@A)<4=Deo(SK{lcK_cl@}E!af5QGx
zCjYI;e@oc^`|kTcp4k6{{eM9DFOB{u?Eezj|LeB@C1L;X?f8Gd{%;A}3jlzi7_bZ$
zU>Jh<ckRwLXALb~TwS3(-d>0N5)2$p-6*Z!+F3OBqGzWel|g4+5ED_#s}Q#i8dwS<
zO$MAs?OhP@wM?kAD!x}AgX%(9I?q~QZMTL{l23Cn1N}ECZt+mdMgZ#3Bk*$lR63g-
zDek?Ek&=w>^IOGw#-;Sil}LH>Aq%qX;rmk@*MeedIW-;axJ!nbjPZiQ;z>y0#yU{u
zWLm@U8;spFyP|b3>Gx-Uvd-emHzB$l+wurAz@+`38~cO<KHW?7y@}D*LJLHGs*3+8
z+M7VSI~GOyjZp{2i;BvP#p20v4X!@~ph0tW>e6QLZY#X_$2+hU3d8^YWEYmOo@`&r
z^e;+eXL_iFfX5{B!Vp;SrtCljNFFxUW?T9b-$iJlwI=DONfhB*c27W9T`V}kY<^}A
zXsI5O?C>q}uDg={oXe->h2~cnD{DZ$T%)|a!>`&sdhyISnq7GA29TH~v9T6gYgJmJ
z*wj!1wi~z4ZAVuB*^jbO&UqcpiB4(NzN)V!mf)ABb&L)!`fV2azerZ|9@QSrvs^zc
zz=aY3Ccy>pGKAT=*snp+U1>~mNrDy!jkL`ru&w(_X!iTstA{VO0S?Sd9BS;9OI%N7
z5S=PYwU{6LED9rOXi{lI5?%R3d|)>=+p70)J6mE%J^VihcOXT{V=H(tPU=C&1?V<+
zQ!b;e)sj7fHa9ry@}vTDF|sny0KL8}LggUcCh`zIfKOOmIH&6_JJWQwgWtZ?A;uRy
zo*Bmg_O@U3m5*@6N`(Q|)-=)Ea%c<kd&UdDxX{#t9p;Xm3$A_Ej0F-@pj?}ekx4oA
zeH73{XsI?WQ(R|cLGz=~d9mj;9(+Dv(Ae9Ys2sm1l}>7`F!!6v&E5JO7!uRW;(z-j
z^}_37E+31+NE4FZU4cJ3Ik4n(FY+|LxfO;-rlR608$uO~f@Obf3*3}Tx1YrD96$MH
z{TW)N)GQM2AZ91qwD;5x2H^PLlPA)8uZ|l0F@V@*R`9G7)zcb%$(kZJmhNPDe?k6~
zUy|RQXDCSU$=uK4W&i#*<$Bd($B=8oOHP740{yk%ztywV@*9#b@7Off)89}+riM)a
zJn@xtr42RJ?4)*)srM1p7w%&ZaFQ$$OXc2Uk9|m*17WwyA-_OYnk(P!tF8na;_CXX
zP=j-Oag4IXpwe)gBEpE=<GyaA!7FN^3*#wIXoV*%Iytq)v^=DxdY6#{buiJyJ`7S@
zs113uad^)ZWOv7_D+(^UbV-Ygwhzduo}qomVWzJkC!1~&C~9oJa9yc`UM>s+XoSkO
zU&CEKUWQ6XI$S1~zV#`4`NPHpT@nJjwce=AvQ-pP^Y#W>AkUy~cc$jzb!2sU9e)1)
za`0L;<!WzO@1JVtv{{Uwn@Z&j&hUbj16*bm0N+w5uu2{|2-LkR7cZ&HZhmsYj`y#@
zZ5$8f_f3PhZ06DCx;uFGwAtY*)T%v&oR{$4G(qE`7vL@dR>)<;I8?DMG)&ozYAlVD
z=7r2pB$v<`FbqRo{YreQ?>(enqeS?8TUEq0hupq7ado)S244MV?LAiALPS*}Y8M=7
z1Zb@dxJ4Ae+1*evbHJUh=nX%f^!}dt&T;+6h_k`_Q@6n~9i;*SFiZTXnz%NDjaO|%
z0jqE7@{_kBU;Zf+n7UIl&slh5t){m-d{kq#ZFAoUy(}Y5i%c3{O)1iQp+SpL1t<kr
z>fx&G4UWv;ddL&Ug)ytTyXjMY*^aS#svu8QwQE_f*kW|I;IAW!sTQXf*!q2Wcn9Q3
zp8ZQxdS2#VIq`Wr;=$Ey**e0FWn1Jxg+LwcVx=<ZxWeLCWyl7Lo6ms4IrQ7d-^Vm}
zx-?h)tXPthq;Y&d=Z2s#mDJn(oX~l)vWihE3mnCr0rL^=91O5=%9*bMmbdv|CFZ$^
z07mnkNSuVKqh@Vt!Mv5>8`Cx!^#mTfe{LZL@frf6(fyHVxq&e+*EdfiAL_uNqBDn@
z4RSEa*v}p}thPxX!KNHgJdX&@8bug8B_)9}Rn-K-%S5jw@K1gRbz@}0`i4iSnQiMT
zL_+;M#co#)@)GJFs5MT=)sxy^nh3kklAJ<=8trmzIgGCWN4C_c8pLx%KCPoxpOQM4
zYdSz<{Fw~;FA3uj3M&x_s7Y8de8e#G=}$E9_@F#7UG89qLINFp@Zaur>fg*wgT3nP
z63LmZWvs+A^dD5A3`3mPOz*JWrON|34SurmLXU~A4DDJ!rnM8)9A<R1c~6tUJ;VS6
z5@APK*On~XSzOcDJ$X!pYAvz@>vpx#e*Qj<95$4}%s60@t{Pu0=|DqOr52#%RoOxX
zL}H3z<x^3!fD?rW;`jSJW})f9qD1ljzn6ZApRHDPbb1ip+3kbwLHvydYFC^xCg&$d
zCKPu}lPg;H5EUFZ^Q25Z^a1(om&(#LQ5LR76g2F~-yu9kq2QqeLo_^8VT0@E^P5t!
zI3$jFK?0nv++z9rO%QQQKW)4-0hHt3yWSwu3j2pggxC^LKV)VkSuK}`u79RoQb-#X
zOWQ+iDdAqO!~<@%tYseA41yi*c2P%vs~PF)hyE->oZ3cwo{ZmYi4JPnf&7uz31!(6
zilf|RfOo#3DTd-5`<U1)gNbnDC;QG-qJ7JAz8TuMXlCJ8)@SjUgoKJ8&7*Lc^N5~1
zIbHhQ*8DwK*yryI06q*S?t`>*=t(g3RWt$gK5Oj4FYTA+Rn@oOqVV{nD(@`-xa1$x
zHl=`F^&j))OSP5)hP=4=@{F2B(kr!oXylT?aYDf(vP3%;ODh9JGUsAoSu@tZfWBC%
z`|?=-%t^W3!z}{>hvlcinSi+6(wdR7*Y-!ARWOuL5JGme$Eb{!ciY6_NlP+gWxwFg
z&SMG+givgVYst(d(Dnf4KYC_V`Da*8_n*6(t`c?7op(`@N7F@r?1>3G6J4k466p9K
z`v{_$3TF;csuhNY(J$1K?Lt0Cq)Bp12HTcX6dA8PDv;A3F^~+=ZAb5}SfrFud$Mxq
zX|(8;=1?Zsg?X307a=Ol_XmPsXR${M0T-p-EMG=<ED{(!J&Pd4D}|TO(t1u~!cue?
z8@6d@Aj|(Vd@9rqK5|1v1^3X_lDwc3B*RT@?wm$ae~56K>h7whj>BJi4;AMBI$D+;
zRcFY#=9ZZ#=D7v{)4WHJ#Q^nd%fhhpdl`AG8GTAI{rg=y+JBBz<o<9S$PdV>S|sgy
zDrR8R>0~<(`eYAmspAM40wRkn5-i~v#F_WE*ttawm$cOS@+?v%icq?gQ*0E40m-Yn
z<&J7cB;QD<Ze>Now3fd6lAZg~e0-w$!TUMK*Va=`=or_(z^#zB?Mo(rDNq6{#MkrM
zehQa+RAS#QZZD=od7-JgS$ycKjiw|#x;OgmWG>>P84`$b_Y3{{U0F<ELTF}ipq2YN
z5Rvz<XLTS(S+JbheQ_DxYuw~g+0<?)7AJi$f7oP{PG42vuK~8GBAS%JC%(G-iD9a%
zOl2THklk0(LWY76L~)B=#CeZwMjD49lIR}_&^xw-YS`MjL`?*lsXHcTu&Zx7^CsYC
zV*X9fU&K59cOr2-yEm5Z0=*UR+CFb_>=rj!d@7I}E2k@PeW?bYn{sw%Aru4P8PgoG
zFmhDZ4o%z&ueVtS=IKi{*xBTY&jvwPhbB=S$O`d0eAomkbs^!qb(Rzt%&ZMpLI#i=
zj<id-m(~2)nfY2uID+($oHOuT8YO{S<vFPL{upAqI^c<)qP&_9KnUCH{=lyk2gp26
zG<nII&KtqY*5j~MZI-lF#{@UBx|6m>ylglwXP@xpd=zA%NsBqf2(>-Cq*!_@L&fCF
zru9wK;_ik_I9lXNXi3+aQZ0U(ywCK5XekIIY@IrE^MRc4rr@tdcl$TaP-mDMh?Zou
zVc!65lI5%JgHiI#?iWDN1wtnQx{J3GiE}Qv^run|{2BtXicxPWDlhPN2B)2o9E!=?
zlO_K1G?{njnOTe}<=*;J_2Rnj(mIW?&>$%%=E0ZOjn%Evv=7X7>Y3zk127?U`!;3S
zDz<BonRwnh?B{=;aY%%^G<P=>=<2{<s2<LLMUv@Bupx~6Ep?F!=ZpP;4W|nHp?9}b
zOW0nMoR?2OJwJt%?F`^_`LgL^{;cOf`5u~-`MCEJ3~{`}=!|$2$~ee5ebAYkh3BxB
z?7vl`ZVIa~5@>uhv@yj_uBSFB0aSt1SyiIaAuZL-RprmDfk>=gE_$QKB)z4de^MU&
zhrY9_p_9j&dmNtJ>-%8q&y|V#0%MeVDKRw%K>-8IC`O$>RPTRhHDZ9CiRv`RLdku0
zKFCf8epfyog1a?qHRVhv)aB!+BpuLl%sMTRfEM?4pyVwO#hjZ1z;KpK$!$j?NzOSN
zb6Z%9Oz2jimgsFU&-i%4*x~{l4Q?GV;kUN(MGf#`dnL+%YpO*MMd~x1BGChlI@x(R
zi`NcJeZ4Lse>lRY*SL#(H`|A#3b(&n(O1~*S!eymb^QTm#?bMjK0uDGdO8Flz@I<-
zL_r5n5A%?>p?-*?*p%j)-nW{URyPKrCB5>?wTofh6OfRWEazXHm$B6-1z8Wyf<pV8
zC59zhzAAhr=fy&}h>Mz)wSHb)kLbRto_^jSNAg$2mm8PYP6-_V9aBxf4=(6&Cmop3
z4&QVB2u`e*V|%F_6qX=pX!HeBc~_xV+i%a4R}8g%yMS?LaeF8OH!>PBb<BXl)W-c(
zBmCI74A94(Z|5n>ugD_j7$fA5_#)Ok5=sc-W*!)OXk+FFQj`v}8h<LFdd%xpt-J~>
zOCRsdDAr>g*o~eX9RBNYd=-qgyb}>nonyE&@!2_>o=ZM6?RZmfL@U{PE%ScQuvF8#
zf(Mg$BRl=>&&ZW;498NH?-NDv*9vLU3s8|tg&9J~hOBSKB;hN4;otaemSnNke0*Ip
z#^vkTf@pC~NP)+XOjjJl&osQ_TW*#9JfvPwY-|)kO6)*rn+7WDpS{-BXlyNay17TD
zR6*#gjUYLpkQt4eR+C2r2n)vFfF2``o{TMAC<1SvYyDlL1)07g^#1TKu!Jwp+^)Jl
zTV?$;I;r~T-w!q|<XyIGj<av^L@$O`6I)2ft;Z4GSvB(IV^c|I=3;re6+8&;rD&n)
zM>XkBeZ~OPvk6J~E3;E3eUgtubs8u3P)6e8Jh;gk|0?!ISCzBSGUO6WA!_JX!J?sM
zNq;9~{D#g37G7!b{B^!VJM&{TP~^|~!|euCxr;N2aiU%YN)}V}F%fXPGEV~41h@Kj
zlRtFtiBKlZzKXhEmOVqkT>`m41s1q2M!xNa!Q*4hl*(v5lKpM9>>9X0LmpIRv#WhM
z(@IZ$*LT!8RHvLQDiq)5sp8SGx>5=_`mFdi8P_6hh&#6_PIRu8<Rpg{I`J#*g<!aG
zoy_oa3L{SRa>U_mF&L&KmRUX>8QJ^S-bJl144+)`S%qZHePdi3Ro$@1fGf^lk|l!a
zg~EJaDca%`nBVnL9DB;-0t%=HAz6E%2ngPHSOSN&d0Io1XGqr?)ctZ2d4bN*gDUXW
zeFsTyJvi}Q$ACiM4|EO1InRqFkW@(7sXg&7tBryvIfwXV9&<^!PbQxreqI56IdDW!
z+}IxyiEQ1#=)X2MLM*BEsT1n-36xkR81@#e<5JtR_#|M{bZY~-I5uzyBK{-EeNN!O
zd_0kY=u3>bg7N@9spZ-QgpGy;iyN#~FYTNZ)Bn7jhC00TE<*JFJ}+l2J7RZRL;MBt
zcta##^%SpfqPUcRJkS}=>o<l+pJ8B-w=S(QbdB*7aeBE9BUJGRi(MR0YFf;Bgh?{i
zslQ5q#$A8@CHIS4Q1%*W-Q~wwlKv!J?Q1i|qUOhNIFbPU2;Eq%suGw<BMSfwZi##~
zi537pi=bPeklUsKH-RY#{Djx$b$X{78}l#sq>opvlE*Cq_2wYS1(4T=I{P7t`t15w
zqTMEQ)TA6C&YR1(Uw<@`j4K(Ye+dtkJN^wohpzD<Fxni9%GmKcMPFH%fRZc$ih+j3
z$dDd*6dB*niPw*ok{LjbIpjJ+|1uNE_FM8%c11O*uUbAzp9ZuUCevvVUV<Son!McV
z)>z`q&s-*t9h&-x;NrM^%YOS<-Dv<4vL#Cl^gLWx&tTA2hu?I=yp))FW{h6~+K(%B
z9m=!XojEuZZ=1wF6x17iGT!YR|0XS<!UIF^A(u&hEh<PW{>Xz?@#uYJxx(y14=Al&
z4R*AT>EH(z0Wm_eoMYRxyIovlVO7w2gW3q^vBwN+`tH0v2WiY5IPdECj40vzVt-LF
z>tNK9?YrYv+69CMoRW-q3=OYqy?%T;(826xLM-xALDo!#`v7;dUN}RG!EpoWBn<V3
zeYK!feUrL!2IdaUxM9<+<vv#l8x4KMzI9Kthl`A})9ScS_JLX`y@H$53|T82!I1f?
zw&dKtD1Rg_LCj1RE{qP=o7N|G$`ddmmU$j)!WE5N1~PH>X?^nL-Y=HHnw^QEVjz>6
zt<mf=`4y<q^?hL%%S&(>^@ElU>u`6a^-(6J1L+pG!?``wTxxu~YhZINIAjNS64S9l
zHF#IxX4|8|xxAFSniAHqDmrzMv-Qtv9>vfru~BoN#Oxg=pZ^=DwFI$B^gxw|cBT@x
zoV$U(*c5_G!Dujr&UlIKMt{5_8b1*xk_)6+Z~-6RoWw~%Dk|z9Tc)=i&A}EMKuLsw
zij`|n66`@oYKMn<sUHM-9Xb@nrlD%ZKxJI}sOg_<Jl(X-C^Z&}0dEPC*C4on!m;{>
zAP(P>p@@yjI!#kVor@Wd&eXlI>8<!K&?Gicpjbu6tJ?I_I9D-_$SOKCzFHZi8<+rE
zn}(V8*H~U=aY5fA3Nd)rzrnBE6Gk#7;bkVT^jKmoFy!`lQpby?UD1hUEoAX)k$eMT
zNP&<dYhnzB0vdW=9OB>x1@t&@s`{E(XOSp)-0M?oKB*lsuu?V;f0xHs-*7qF<A};#
zB?RQB)vq>2l>kDPpVDF0hd|nyU(HH62IVMfN$02f8R9QZx=GQ+uAL!Bp+&K2V(O5=
zb})@x=3mh~@<qudM!b#Jc8i4!D2>fgzDzAgW^3fvW-T2;MLj^W(v&FZo*fkKoI%6e
zSssAw(Q}UM1whFS+_H(FUv%rae@Bt?D__juaujZth3Y@K-HXCHO7p~hTUF5%+2`S(
zdMnYgHM-6#kPO3ZffGOr#QTkP6d6CumdzM;f{93?DulAgZV2-B%7npKwm2&F?`&h<
zduv@Ie@Iq!Z5>qG3z@Axh~h+22ux?L20>Ku=naty!G(m+npDO#N!}9muJ$%-8fEzN
z6Hmb6|AN<+<@jot6)9|{^*DHzx@DQKy4I{Z&NAEddOkX5xmF0Lo>$5$q7K23_v!*C
z=W`U8T<*kbQCG3*uk%g>h?wKFvIV3}r=tIiL`Z-{3NgOcq325BfvUKxa91mpk``GY
z=(ybd^bd08bMoJwc6oF`<I?#mppP2bk$5uEU2qmujbz&o$*3Wf;Dt1L7$O1a`Li5b
zf;))Ic0DNk-pmOWk)gYy5q=KGc5N>e=-WC$HvP<h+EX@ybeKeVS_NX}KkRW;TzlR_
zPP79o|NONN#NO#k%!9n*!R#xn7j|;I-=M5{1u=8};`Fx*4m$+6A~geM(3-%>TC6#^
zw#MG+VFrV6P(LYFw;e-mxb7nYsX>Serc0G3@;SRy?v^;gL8qLt-WN>%HTXvEG+49$
z`>{Pf0A-%D0TdX?mkt2nmgLM$_0mzz4a{z@a0fVkgCtV+H6g$${+;`gR2CTU6~e%;
zD{fk#juU?pzzS`qFXm6T3n$@Dlyz3(5lj{s@f8k=4GD^HsqkR&B4lVRRpl&n)sz7<
zQR#>47<LqKRJ;xBfH?{Wp!g>#J*|OwrnJZFM@6yrNhW2sN}3n%`c28JzHEfF=`9f|
ze?GuviFI0DD$?&;PafzTgDpJ(!L|NiV~>p<oz|>04L{XZ@qIm+w=!IU7SUk7c57U%
zr=paZ1)ys=L@4kmE(LA;ZJc_{z7x4~348;$2n6XsSF<%TCBA8i>Ip6|tdx`nQTKP7
zXPZk-n=8#aiR|Q((*%x#(~bK|9Tf}d`wkDB=-y17hOOK^6WYd27qR7%7TGjE-F+C&
zEl03IL+M{($oP`a9FV#OLJ?AZ@v99pC+)G3G8ny9yaIUJ*ANY2VzO$la`LaJ23D>c
z#u50KoQY6AIeBr8mQR7oth#I|Mo~V^9nXrze6B%qFZJMSzvH$sw-qt4_4c3|44r?Y
zsk=cy+@Gb0ZiK+g+~*{7zT5^#e2KNVIpSwL??pO=ChQOq*ntG+QDims5iOyT6x)tn
zGEblQ<+OArmYb=gT50C&1$C9!O(v50^Xw4>To&E+LeYVpgbpG0(Z8)nIS1{=1DvFZ
z#CMvE6(y>O=2s(}YuO2&AeR2a70ccsFQsJ)8lqjxtl*BO5wdqgI^)&aDGL|oYFQJ_
zFLv1yz#)x2*7HfRWxN5e<l0hb1bXqyrhbiT2XQ|(l|!x4%akt$ktZ-79j7jbU^CQA
zvzXU!GWyPYJ6SIyA78;ox$LT#apNl+1tU6oOh&gxK*}RkQ*<qxdEF%(R^D%Ws7aDg
zy2T7~7Q{9XX}H}04X$##=9>T|54MLbDgqVdN8*s4lS6<v#(ypoQ$*FUN}>T<WT_Xa
zGv{<XOuwKRNee?!I;E=h6-vU~K(^?XlwsOd`07LrlybkJ7^20Iap!=(;hXR=TME-p
z7{>^{1qFcMY!0fIyW+%oBpBz5s3=;tWQXjDRNGwYb9u%1RkpQS5G|N1_mJe_4<gcD
zK|ZUB!Kf%~u+XJj_=X(aB1mfcvf<#Z+1&ZumghHH&ovslodBj01JColNHRcWXrpq>
z$*(F~EGjqj@+IU;RTy`lDEEFeh>Lnt*!D>v;+A=^>G2`Q43{sgtz7J5v^wzHtEc)C
zt&F0-U+QzQzT6Aec`j&&yAil70{V8njuJO@7<)5cr{zyZc$Fq1juCIpO=$Jmh$*d)
zQpBH!;Ac}ZDMYeutZv}Djpx6l<Hr>r)a}5hUf9g(l2kAtkMzJHEi;c89Dn&|Ut*~g
zMp>8QKmJz1@-j;)D;LGhavTK7T`v@~S&710Pe48R#RJtZBt9joQ?LS3ff*9vztTEr
z@8P`W)YU@~=y_=2nMUP%>5!)9Zi(FN#RXn|5a$TlR;6*`*%H3OTUKzJyx8D;Mi{xY
zB^S{udcL2t&ELV<;`-aHR$rI7G8`Ue;r{~g*&lPsaEt`U;nAX}eKOhtV#YNn?QIeR
zrU!>_=aazKoOj*2Ze4E6NUONKnPDk_U;1suRH(U5od_!!B?LhUguHN$i4>`)V-ABV
zR)F}KG@(wo^Z*hG%c>hE9$YGcl6%`L<j)GHz+a^kw+WxYT&JH^+{a5<BY1VHt`dRF
ztof<Gl=|Dxjgn|EN+%{)Ts4&UQQk(bk3_BLoMqn7_;dYX*EXxD0m`1ce*Y?JelwT)
z<7-zug}r$1G-H~ZMcv!~2Cbiye1p60og!}!hS_+N0Y6F_)jfB@l-xv(TWqP=TYH8O
zFgQK(wR*1?l##tUfqNI(wAB*V&x?Qd@X<g28qH;A-R_fQGpPYpe5yCN<CrPMuuNwJ
zB2o4z(Z8YR4_H&l^HVXySjm9v3(mo&=UlKI*z1}~x@A+m&hFg@BNDdb7A*Mi;26wL
zLodB$n<G{8jPY(PYc?yRRz7UyxA62*7;rI}3q?>a$H%coT(sXE`{-47;8qSB5I1L)
z-n^QC<^bc+w{{&uilWj?p$qZbA?En}+09{)(JnTxOG^dbOs}A;GsKEUAI3F8dSiV6
z<^wI!kBD5Wvq``MDWtnHeuf?aQnu$AgyT$Mj3N+R;!rpj?}0Y?Ov(a9F_CcKT!I;N
z#`C7tPGxd4ikl78=4$E+WPaA(TEauCjlPNm8$2q?MOimdcRafiX`6hx_bw^-YxwL$
zksZ2j{|8_7VHg5(>4<i~Hlu6}B?(7ChQ-TB>*PfNoVdp&m)Dnpc$~giV6&YN1A+I7
zW3Vo%)4BbJ?<dbmD;k&p>q!FhEn@&y#VRWno-sTz+YHAj#(sL<jY?3hxUlCG)5s~~
z`&S6d!2t!25Y6?kE%!_2R?bt-4Tg^8qdFQ-#dYP&v)5cr;_&T)v2R!#XueqSG#C~E
z^DGesU|og)K=8`Z4zi7Wp`vEJQm=IVsxxb`zDm4wpIUAE=qP{Px~@{_BUI&YYHoq|
zxCW>X=-}}IrJt<y)Y-+?v*@fYLbP)N6iPMwAH=<V9W)4F!08{|a25+J+lHJY=r{`d
zt<_tD*aXQM%lVH{G2tu<RJWXnj)w=?`<+)ktRJaV!C4Y2kKovvX2iS|b4FohZ9#?=
z=Z5eFpy`BZo!=9vzRr(BBEUgMc#fw?Oo@lwM70gU)|~v)qB>(vI&NJVTY=4b;vWDS
z(O_+@k$kdA<sBc2kP-Q@_mDVxDo=4Bke^-EKGCSIDZSdtexHZR=gxwh8qX%ss9SC!
zFqqfWQS^@XMW~&KGarb49_<oo>gp0oM1#S#RJ*ZoU{s9X!A}9S<D<=b?Sw-2y%Wx)
zQZje9<4j1U+XyY%)k>a>n+Pduk1(-+-%j;(HasnK@O|34BDNyIk%9v+W`3RHzc9L+
zlj_;nu#c0lX{F2x4l@|h5y`%=c?q<j$;HH>@_#Gg1-q=b>81L3{LHv9QAtsc>WkEL
za)Op>cV+F~pyQD+l<fQlwX$Z;H8RssjZ9Qdg&yD@kyqoNV&dnBKc-`S2u^G=;}@|&
z|8y_gp_#iAW9IMsEe~{F1g1Uvy3S<{kx5dRZ5F}*jS_^hyYQaQd^HiKNS^fW*<b_T
z7J=9&w4`eL{{S^W%D;Ew7A1pQdX)**hw4Zv;SWwZLhNi+hJu!MHLfERDB^0J@VNQ(
z1$Viq2$KaS*U<*2909S<Hej2S7=&N*^w_KYs?^ImZWo>UC$bC#2oB0sm^uCc0B$oO
z;4}k3L0{~7b24)jdCtA~C=b8P;$da7`Z|!IT{bD!cW{hVc>XdA{VuAKsfhNRB#%bO
zKV5aM@xgw1H@Ibw9z>MAe#ep`Na>=YOx+=z<QR4S`da2Tt0E+l0mrDPVpeFF*L(4=
z$E;T#TBy$%h>FzwTU7yb=6sG)07IzpcG<VF=Q?J3!FVcp^skI(IaKZ&>k2HizPn9T
zuHyn}cSDOL-@QKdo?rM5E;qFE(a_xK(fM9dV|ONAsOonhWH5x4hCBaLeH0D8^3mox
zllt8Gdzh<K*&hmV2|nL59qoS33h;{IPefDFs8C4&s&yt_cRN?2zAl=IGrdE5WaNn^
zGX?3BIHZBUIR{SZxqIJr0dP!%yo@E>x2VzHlk$Gw#Ufw&n(;BZgZl8D2>#D?q|V%T
zaZUYT^g>6qG9*g<7%n;b<$zvx+HvSYasm_Q|91ha<c)ePTgQ$ChD+kxEZZKa*v8qw
zXPtLqmw!{O3U;?7`fW>+sRb%J<f_&F0iB80CWYYCKC0C4a+C2u+B(>?@Q{pDI`AAu
zJUz_}4&Q?JfYm50Kl*$ZuM`050~c5j-BR5rVs(Q)Cf*kAJ*D4?&86qmK(QN)&mNAr
zmO$1Z{d5#QL1G=)PP!(gC0R8~ji2*I1Pt=x=(biVQGYOkaG|Y@Z(T=}E(TD-gBz@m
ze9t~?mK+z0uywD4C@km(v8JF{DX^8dILxgW!5VD@Dy0N#>{aZU4bnlK{nB*9ka9u&
z0n-m0XGv8Ynd-Qc3)}b7`V=0e%Ly#&x&E|FZ+bQ&X9~a|zsDL)G}R`+02-$vFJa-7
z%64Cdtsw)M@-Q`)n(ElgUKAqvACM`L2)!ge*RgI<KgG6;lj(S-I<L^zGS#wEUmbsS
z`WXw%81!vf>LjeM1&eCF^H}p~4;j-3!n}z&_wC*N?Ob?dG7~=_w%=MqAev|AxwbV2
zzH_e0-B@Rf{TG+3qrOZ1!gEcin`sE_`@pg1*Nuems{m$nL9uHwWnhxv+ZC}NdrR3M
zHf|p1TB|8$l0(JW?)03>X<eFDoT(^qIrcy!Sofn;QFBlHN&aUnD)tiI-j0>OAzme1
z(eM78a@X0nmE+yEXg!Oq@4Mtk0Ne^du5%6>0&NEKvpFutFLLLWm1zrSGU=28^9!>(
zdo+CWcH5L;(Ba&UiYPd+He(*k0(daA32?_-hd_g3nm4_lGt;?wsYnrGE1zebs#?*V
zv?`Q2eZZVg^Pefdz2dQqbM-cg)~5b$7sO=vw|^DS@1HEY3RIc1S-&-!5@7xOvtvj0
zH^OOEMGT>Cw<98giqM#WnM^+>7pk!9+_5BpS}z;-6wX>=yu?S%vp9+xAycKbhqa-M
z6}g+eqcsFE6sT}%xX?=PT;rZ<v3_ARk7xi!ieD{x2_mzzjeG=@>xYQ5?BH;xx}s+W
z%dx5tCvdq^^|E(YlmlV!$ULPfHJ0F$7Vy+Z-u-%9&bzjkO_K>hS~f?<u^c8s&S3|k
zD9H6Tp?rto>pYJiQ(rkru`2}PD1OK|wgdvgX%GI!ZrP_LrL7L8*zN4QWLS3B%DOz^
z+97lql0L`&nmYQDRj)Ha=@Jzg(-4w}8Qe@k31aW;GYD}sG@C#oH%o%eyOZa5*q^1v
zvMOKIHRncaPWYAZw<$<5+-pUv50`ivR(Sp_UY<|@XU>DU2<_AyX`;cfx5O`T%yiFV
zo-HT@kK6_ni^NZga_pwy&r1A`S)xxdf+YzwydM20$}d~*=gDLcX~8_eXt_@w<X%%$
z{AbXl-;VeH*X{!zJu5m+zvd6o-OL-*`bMn!`9|CgSVKvZFi7*=JA5Ftg($=TU$;D%
zzo1Lk<(!$4?*g-PAP5@i@()#6bRIRwoybWP>vBT=pvk%7UhRz+67>H>SS<xfdHHMi
zsl7OCDN1}D$hi^TBAcGaQL}|@@s#E#C}|-EfK&+QBhqefdxGLi9G9=#>1E>-3bBHC
zez71iraAo9ch6J9XLGt~{f8|}P8^7dJvIIto>QpX7g=9A)eX?Nms=3Vmco;a-9h`7
zc-#T?dCwRT{}7N4YpC)<>@CMPQgcaGU??{P5RdbxluEn`EoAouF;3+DY&KJh(@iKr
zsIYmeIHZQq$Tdv6n`>a5c;^Sa<VcbE6mCT>%lob;P=y;isj%m&Q_9Xl^1cKIrFzsR
zP0-9pyXE^L2aW$VOgm(kMjMjy!sr&Q`duyWqM37N0`B<V$+q9wlYYO_mQhwtVvbNL
zIc}`LW^bA-$Vq6{NKkU=4PVvOtSiJ{DCJ!AfXA}APWQ82CC-92@vnDtNlRzHzzvKq
zuGlu0a6;YA)ij3?ho*sS?@o<gNgMQ|RVSg`4CJJO3E_l-Z}cDF;h~vzsiAGO%L!&*
z&KEU+ag@qBarTbvLYVp#_jv^wdxj`tJ%o9huDId(EPI|yYyTF6RY{=ifrXp4W4b02
z_@4=!Xx&LazB{QxH8a|B-yu7$9pW-kw)`AhUaP2OYfH>5=26?<;oerh`Db`RK_1l*
z2<Zk5d(n_(bOZ@?iFtce`NOb=`n2S)&pxkKCk4sqCC<IZ>rgG&@$YIUFLPBk4htx`
za6s~YiUU_;(zPOr>*>c<bGgoa!O&1fs^h;_-SyFGFZqhKcvkw4y3qo|qpn$|9NKG%
z<mLh`qu0c4Uj-s)1fHXNT$p`^gI9#3hoNA4p~td0ZQ%xjn1gA?6_!!y#I8@P*p&PI
zLO1UlUzvzmX(B!6@%)IMJm`hO;hyeUHB2E+>a#llZT5O7>8kpX6MjT>fJMO;{*f)n
zb*K=STl#Gl8Aa5W6i5drgf|0%_-#Tdgjx6VPoTOQm(g>UK(*Vq*&L*#vgauUFMqEA
zXd$m1y1X`Y^L<VHKPq)*rVZ+P4eqGIXGL8mKuxJ~wLWsLVAnJkXhHNtpchu=T}<sa
zcGX|Q!D-uC4*!&roYU#>jC<?KQG9a10_ibLmLgRNk*qr-oHKafMMIZOe>wm9J2*jv
z+fp?!5|PwA8^?v;3-CD?R4-x^kV`_CcI(S&$-;gBsqNG?br~(hQ0YW`KRxqqHk)e5
z@&c?r7nNx1>xKYLpFzBSDmxyYX8jiK*TxbF&lQGmHE1B@lV44ClJ`Jg@&pH~4)U*7
zU8qutI*cKKIcL5FM*&^`N%9J?$wSN7KOJ%k2~?z=MFF2Dbf$}$fdyKIg=p4><k)tj
zW)^~-?Ez6TS}XnCFu4$tAJC)q4i0+_Undw7R=6k59Kde;d;0dXK&bT%!v!T!8=d{?
zIaG>EyRk<pu*tp4J7Zl;y4`y*rgsIgrY*`CjBmRebS*?Rf>$~1qO*s*Vk&rIeU7FK
zL(8s!|KJ5lJj|9pFmyp|1_aC6aWo?1+|S-4`d;@sM~7J9QEM{;>&oSdIw@Q=ICnJd
zBwU;8@O{FP6|sK_0Tq^D?(fH{Y5aR#Y1s)?Vo7ul7dk#k%t2_U{`!7>^a;7zabzH}
zz?`C(nMMoPY>CW5NvHtRWVK8~c3IkyywX641-N?|n<#_VV2vc6R>2KD;T7=uF)C`n
z*GM_3!z6|h94=C@5btU(Q$V|$|NG`Hchv*)kBMHxe24M1magu|h6>sFMquico=Qu#
z{_N`^bP-5Zh^{>1ciF+-a(gIY7Y~~d(sSo?arZjkLaZlskCjrKmN%{py~G3W<EH@X
z@%w{48bVQlUV+vy;Grhr&J@oLW8>N~D7Jt3wFG&6o$vFyVQyA_=>niU7(&VV*;V5|
z6|!1usyB;BEI@Wi8EqYqZ}iu;6Qa!G`1_|1Zku30QOdU4Vn#HJd}(2mBQn<?^|eF+
zZ;imsOZ=0Iy_E4#W{oMh>0#xmEadZ{@>Fd0nhslm`D%4oxe;%k9-?wKvvNJ=F9!Ez
zULAkLAy?wuB9p8c)R@<J+Ra18i|R90Zf(o8KsrUdA88wqwNZj!8)Q-w+bc^chup84
z#j^5*RS|)d8mPI+zoU1?h5-abR(;Y7h43Q!l%CacfxDejjhVM+w_<(4h+>AC_^o)Z
zHvhBTRn2qSWE7p)4q><M1bLmNn%g29#w6l{Oe^>a8>zpSv%q>EKYI^jjabhs_bZI~
zxqq@@y^gUk9-rTz+TQ2_M1#N-li=6horSG?G`OscDp|<ZbIR#7zmaHD4bOJ(m^}{%
z>BdY9A%c5RAVvt_Tpg3;jsM7F9fU0^MX8ahvE4%P(lLx2zi?a6*8(<E`JY2-Uu74h
z9Cu@oFE*|lr2UJ$;xOtn+Rv!a;Q=ThsA1|3?gUUXN}xR+)Wnjv#)4lX`^3K`LbDcQ
z#*c(L85IB*8=u)atZm-T{pl7#v&<e_h%!sBWQWlpHLX>mF)~9lev{9_J%at!cQLOP
zu<f_tC3Zpgc){{J@h8IZOqa~muP(vl)xqxR`K1Nmv)~L$nVLn+hyyDEA_UZx>F~J8
z#!t0*c@K-LHjHy2GtCZba^>1<8X9&=(&IB*f`;gt4a~DOO6aQ~EIG&OrYa-_?gpNM
zXX+H8$5XG(^cLoKlV{Q%A|IL?&U|rD&8kgMVwAktRB)(HRrkdbo&PY;N1PJ<Su5(Z
zMpH)X!)B)e?p7HfFB5jchD6zHX^T(_*CE9>POef!o~ictZFl8THO6i>GW&%z6el^8
z=S{2@YRlc<w2d91C1b&k!Ew7%peX%T060QJI)%cJIUw-ERBl^ONU>yzSJNemrr`DP
zWeqhFiyU51IW5fxi2T^Dt)6Frh<|LI^qQOo2pFoU-Kk$!Y|o7K1r5XyqG@a;NHFhQ
zoqs(a%eoN^9`Q>MMJl^-Nm`28fIPkgmOxmU9evY<V90Mri=zp9PJsc(%qSupmH?Is
z{{fqWA-VqSXFG(V+~$>B08@~5`j|?AF%Mfk9u`C&cU+6Qxh!BJepu-V9xBDTy4Zy|
zkQF1$LdF`}IjA+GJT9IR;;`y>#_EV-FdI^8yefAqeIGeL;M75LHcC~)y=`Jigkx4l
z8j21?-BP87@caYBun|`tB?B&$=}{_XAY3gvwNCcDw(1NL*j^rQI!|g~e5V;$&)#aO
z-TVCCWmm4J-+U?qaC!BGs!u(yIKper3b>P?Lq%Ax2m%x#Ph|EhWbi>sI9Cb-EfJ)v
zFFpcf_@*Ae*nmcZV;d?k&^Ee)geXF>V~O6<uxyhq`g(y-3t6V+_Vz(*F39@46ZSe3
z)VXbDf}AOgZo~sZca~@G)_oe+`*6`Vic%*E&>wO;#0mlgoFrbj1&j`BIyn@6WE%vq
zVbanvGLbeX^|2XoFKZe+IU$+Oy<-Gu>RTG?szlrM`E-M6+sj(wi?euhvq{jZWWmH=
zJq*`@k11U_N3)Y6@)Bj*fL6M_m*QuGMM2|$aVHSJ9&jkaOP>hF>B_c7gK|@FzRwC$
z6@@RcJ4&(6Rt>I{T*Y+3S@uCS*v)$45MlS#o+TQ4v3l;9U_QKtJ*w)oe{H>LnLYPp
zO3jE7_+N^IfjXpoCxBNFKpTfz4FyeqXl#VgjwVE#75&M6Ui7Y>^Mi2_O~viJYfwn^
z>Afxbr1o`J!FDfad8bj-OrWU1Zcho379RwPyY-GHiW5>jzhrB6KKYchJjk#Mz{Y5n
zW8Q1D+l4nLEh;7S9_`etk?Ba|Q7Py?Bl0J$uF4bRGtd=pXMBK54@}N!4jXfDD8CVS
z@NxgBu1L?JI_>Oe!{>Z;cCj+zjwiEASi+-u7_+bb>8x&W6pxk?OPF)ZSEhQ%e=gtD
zwsf5<=J=$FN6db-ZbU&vsZDp9y@&FA=vJ3>=0~w2s`gRBxx{;v_QUc@>Kjk@VdiIc
zymwUmC!@9Ib>;YfiOM8Uv9`72>86Oni8V<q_5V-{9{;tw<rrKnb+81M1293x&iQi%
z+J4TQHywDIRWxY;_5%V{Ro?5cU+M-wBD<mm?ZujNzQciqP{SMYQU$l?btHXxi~y+;
zCT@4z?kD4>woYoGqirs*VRu4sjtlzbwvv_CyLW%{wIE{WGnA-@dyQ?~E4)YRQ|o}(
zFiVuv^}tI8$GZ-x?7%x-*;0O7ra{>IeeL%Km}NI4&<UdE|KVax+@f3YGbZxiy-f>;
z0F2|D6{sa3Ua|vd7_C8)yA8;dr*>zM)Q}!le<8C;!Mwnp&(-?)=Em3r3u{(zVfPL<
z8wZQ^7nxTUFRDTU*<FN7;J8&u9R`9om#B~L+S6W#FN`(5R|LXIX4n)2C&#lGt02m^
z=oZX>xjHyd*uRxzXRyS&!dBS-!0AbyKeCIzuhkc~S;+Za50>QvV`suQAd@y_LCO4`
zvfD&mgFf#njO6m+r4_kQm-mdAq$Hu5B#Eq%u1n+6Wx3FIlxF{G1|TF$czwCPir5%=
z?{V7d-k7XDx$l2at=VNkTJhRXfMeX|7_)lj{bY}ZqHaMYEdGwZ4@I_##O>rPJC99w
zmj%%1=0F$wu122nOibat>3vNgs|#{q!FR$`Y#VW+SxUui9_TYW^=pg~SjC(8%edtl
z^t%BNmf2D|=CKim8ne_i5VJu0deSG+7Kw7vpgx1+6sq7=owt!ji9>GC{O3SN+qW?T
zlha2r(xFsm*9{$T&WhkatGI_*2H;)hsh-7!d#le=+Pi?PwRPfXS+6V4Z{~bts7Mka
z`2^G28CkZtcH*Xt&R9%A%S%0EfZRFD7{DxOmqMr@#Ufupx^>$-{1_Kpnbke+AqL?g
z_rhuWtEd{`HBODaW{u*cs<AMAH=}13-778}9+k^?HuiD1sz$mV8VfcKYN+7F%W;b$
z;3Us;&O)iiyhcB(be0U2E52!uO4X*Ht(0ke>~AxMgAoMDe?^k{V!Ff5GHV!=R~tzf
zUnY}(CXk7*>qbm97tfZ-*<2FB(z(9SlJz_l>|WmPLMyS<T;>Zm04>zETx{%CS=0Ia
ze{Q0s6qcop*J?USqS}q=_nJuoIOY(oDt0zi;!ac5izH1<OWt~9ai{ZqH7?1p!%(mg
z3wYoEFg-bUpX;+4GUy`=tl%+cG%xaDh?~SI-+cG!soTP4#_EzyiDpk2kx8kGUqSSt
z{6WS92=W-B6)9F-V%k3xDv@|x%MC4eQP|B|J7hNAnS}URL9)ZaLV+^(T~cC@CjDck
z$%vqymIV@l;|@-75lev?fJjr~5$xo+D+T+qq+B2P$Vp&r$8@Z^lB0kiW2Qh|CyV$C
zkytL5EEEjGOB&G4G|LYXV+tXWkGnVT$;R-v<*ZpLy%+w*2_}iDsqoeR$}2ySs4=d$
zNYQXAJ6xx%bLez;r$73<BbnU#6XYwm&6*<0I1L>gp<C7HvC&z~rjK=M;o0=?+~OXh
zbUQ=cgP~~#`;h~3WrN*97JIOV`VbNLSCcKE55!G^e)M~%!^%K*8bp`<1M0xAK~Kj>
z{f8J21HYkMrT+4Mju<A|Wy`Xq60KXj+CXA4lDRq&u@9gN1eSjEQTZi_kdiLrhHpRE
z{3WCvs@1R^!^-)`Qcv`wXDzI$yoRb5fxmNZDZ!=(fIC}oAuRZwD&TORIx$yE$$2|N
zxQt^%x4wFo(nC_PkWIaps4n{17!!|mkC8cAKQcWQ^KF#!K%HA!)cQq?I=9E}p8unM
zs$>E>*q<N^kK6c7{X#5#R)sM8fNenHTdPnyVr40xI?Xbwx%JNsYYC{EUL3B$CnA#)
zIUJ&MW2cNi0PGaCHEEVaz<lpGLFW>wgIi>8__ePeNsKJ!Q}wRxo2RfFE9I;ShOnrg
zoj@!FuCjuLI|`+l)t`tPwHn0nzBUSD;bjBhc+<O9ACKxSg?}n#|0HV>F}9pU=WUu)
zo$-V3Jw*95DO^NTB;DMLCm~H21`LQ=`GljixT&#SlNV^}q;nUCqC2H@j<yNp_#|rV
zycASqh#>Xv{P87jz!c@do^M95Q--YXaYO{L0fooP*7cbJp>77Ge=7KJ3E{X-?$u<3
zrg_Oi4?*=vtca5fVm|^@be+0+e(a&|f);_qEKT^b!0Ca1PC*gl2!NcH;iSd#D$vG>
z5c9}idaDb8MKVi}?pgNkR=q=d!1&g~M!*W4&ZGat`TtYv@JHerey%q~H_uZ^F<mEp
ziLc&+`H$qzMWP67g1cpUyL5vyMKC@M;+MSLSJt#Lb72ynUph-4SXOEvDaEKIt_XiK
z1mRGFd^a{Cc@ooO))RpxuBvk-I?I};C)m4+2&Eq_3{_Ixt*3y)3qpA#+B(-^8+s01
z2g2Aasr7T(Zq~DF?E(n(cTrO`eTR6a52`f?Z!3%Hgl`Dh=D4FP?#l+$I)rcBM9#Tm
zTx#cCXRh(f>r-n)A)mzKZ(V4X?q-F?Z0pny4sYqgJj*N5cR?+|p6@{)GaHExk^tr1
z&oaf=GCDyi=~F=3D*Q9H^weU57UmC6rLDSdM}DL&#WC{?M+30~?ZUi&-45M-(NaXp
zZ7PPj{9p2j?Vdw9f#gRuk*!aegZqd<waaD^5|}Ej=y-d{WiMLis*6qp6o4@!%~M0g
zn)<UGlD5Z$6J;Zqn|!^`XT%D}_h~$>wJ3HhcJV}&I|@JP-S?3C1K9JFw^)b%YScz$
zQis6>7`O5e(+|St1*luO%g<2*7?>QO1xz>L&W~1`TLM4!e2<E4`)awQ!omola|YDv
zpYlDTvP%DYpF89dri1NlOEfaQLm1&7Tsg*6OX`dO5{{`B6Z1np=bpkt=2B>|Z%N0a
zmO;y#IUN`U|7ub49@>Rhb~cwK=(?|^5Do&K!WA-vlkRRHjZpgfaz4lCod4FL4?Cr!
z@}EjC>6U_oIZohFNEW0K)BOL;--7f|)cqD`-^*4`t8t28P;QoYhE&bz{;5T&62yOr
zn;&O}e=@+DdUU?xDXi$8>JC;9YI9XGoyv(q(n)mePdjsB4n2BoicZwds~){iOF474
zA$*Azi9`nEwBKp5k~&%j0VItH!I<N)|3`j2NY*H1<QT}LDNh@p6bsSKK?vEJ9fz{i
ziL$K1gPOk0lr!7ErWoB;oOAy4BxL%~yW<(H$Lcp+9q;6Xm~hhgo_>A5lrnmrlUxiN
zksu`fdA=8Grr)7fbhg%xo8b|k+G@&2Gj%FyKEiuaL-eIofr2=x1g{P2ARTaKHr5<b
zWj=YoImD|$mbA?H{Je_ear2$)>oO9`I-9E5{5aFcL%^IXU+|-}(MN@*2ba}0kEM@X
z{qbCbx!nd{7Y8%y?GbkJ<WRuFbVzM4Xj^7H=EXJD#dq7w@Nj~k+JDbg^=u%^lvXEt
zJ**b&0Y@Cnlqy7NARr5vg$~TR)+Md(PCtJqMi2R+4@nex=0RaS<)suq1C9s~%kw_N
zpX?8VEHa|KJp!W$y;GGr&3&4hZQ*Im2a~lJr5Wshx({Z+z(&eTV96a65-J1FppJht
z+T)o}A)WvVoN(PErC0a}Q)W&^_fn3okMKHjr-G7NG^ft4Te9!5YIxOr{G>+)+!K;k
z$X#Su;2$n5v*c&CR2%Sho7Hbsxa|9nz7BFdn2(KDkO7}ouqpr~WQO^kAWUUF;v0~v
zvS31=IfP%e&|$&9|F^tofxX#x1l)iYmg4XOVdNp!WECdmkk7rK_YllPlOiAZh(C_|
zcTwK8SI@KkatFDKh~TyTQWQF}7-M=(hMiSz2QCF(==4oQnK^fC^Y=Lz$_A}x@CFiv
zvaDT2(R%3w$>AtZc!R2_Sp(0uM#;#PmZ2wqN+c7Kuke(}mFuWfB6%be%t{J2J#bHm
zIqTu;zouPMY*P0jM$qt!TC7q<X5S??)uUx-8}b3y3&{2w`<3Pim=5gGs5_U6X7v>e
z1!(+4()0tG8l{^^SlRj?j4=cVH+_2^d|yN#?p5Dzz|FN3<Vrm@v3?RzC0V@K^Ywuw
zVw^Mt#_r;}TBIa-gK`s|&)7V5Gu5-~j`*NE_Dk-*NJk=_m{sHI0y3mtmn_lgfZ;g-
z$ro>g{gI`-B)ihL&d7rNKT92D+0{*f<jP#dk^mSRy@8GaSYZh4zq8Q|6Wc?<;mc(y
zpUSH@Vs?Qtv;gz`XhvYcq$Wi#$S)+g_W%o|1Ocr%a{z4Nzn1mL_sp!PW+4kMA4*=y
zJe_CGK+Iz`C5U40wyr7PnBcd6FHRn4=@yUk)g%qB7=)kE!e3eAlK$_Ldcu^nm0obP
z`1JZ@CGUBqXh{CU7V+g>DV#aWP?ViM^p-^ttVQ{7G6V67u5;IG&Yc879#Vy5BO<Kv
zO0N{V!A~7Hdy8OTZ$cB!Yw?ORold9&1sga!>N<-;ii1z54O-v>1}nTFJ8W$!MMbjh
zbi{zQ37z88kq1E3?N%1n@%Z`%21yhz2{3)|XvD|sp_jINgGGeS9ZJNtA?f4Ba@NhJ
zXFk-g9tvK-a9dJIUIvxMlw|7rYHl{KHO)f`pQUlKs>&zwi|=bd-}h=V2f|$3I^Je1
zUf3cr!y8y6fq8bcm8b!r^nptVzu=d@c6mZM$is1mGR-pBjU&h-hb|7ha>8%B?$T7!
z-H0jJCzNVMz!YTQ_YViG_U^Cci?4DePrPytH9r+WCq%YEOBFptZK)w-t54I~mI9Gf
zv)&$oRp%ZkR2xB(`MG~VP|Bo)RSo+SFQ8V30WlACUPDrGSf%cH$eMjkZ3u@(_>rQg
z55SHn`~4iE>B=tAAvq5JfI&`rK~vqR=`TYJDD3ei>>N`_{$f3f+~4k20u*WBJJAGS
z*0TQfMq7|y4CD;R`Mti;DD$4<(3pYg?$xC@j1}`#13qgJ<#W)X6D(!?U$n=N(9`DM
z_XtM0pVO2(IsNJUwYvYF&4tfrqYoh0mG=L~AwE_-1*_{?u)$^OQ>`qg*r3Sd$Tn7m
zG&>wYXOPYR|ASCc{YhVCahD%&1<|eVZII>aS+|CzN<Fu!;JhGT2Q+!@0#jmY0r9MA
z*Wv#5&d0;WcOJ*qk7`+Tx{eWCP&W?-pSYxSZo7WDC@vk5hU&Y*B#Y9uwx8VJ<D__W
zQ@Kdi+Wo9xE}23L!=M+EJ^lMWzg`^IELq0NCYS_GK;@yE$cu@S<}}pO0WaD=oLHvD
ztHz?xVkwmIg2@dOY6mk>=CN9-W&gtdA3#m33LyCGh4V^3;<qkFvt0?DMp;hWWIl#o
zt2&YwpdpDPt>DVMps4*H16d_hJVRd(+D5hPvUqpVk`7fhUOTBk>R@2>6)0fw#h^Q@
zb;t(;E2Y(1(x(>^Z?&SMy|87XbI*oV-Mt}jktP?{lXj_@2RJQIw6y1Zr}}<{WM6K|
z6WUI~7EXa~Ac~DNV>vGuldDcy{!LM{nxlV3Q(g&}#UOr9sunb=wi4T14@5}eZt!4}
z#C8+kKc93fp~Dm%@X-q~vh4IlV?j>}^mPY;Y4`X!^Wf*B5vJ7k0=}i9f}Z$hfht2!
zTnv^KUCNDXRtQi1h!NNj6uW^6)Xp>2?)&URA$lHaU3n2xQ{@Lld}-*BBXIzIvq|8b
zU)a}Y0G}7Q2tDHP&4Kx&MlX+ztj+b!+1qV3UOF*s3>xqXUl7>sYLI=wATHhZq-Pu&
zf{ctqG|=T~v*XP^JZ5B+{0ZSan@sqzr?@Vr{Xt}nOiB3@i#&$8ubtV66o4XIYZ_l6
zf3YF%6EB|Bo8km`N<1r%-`Ocq?fq2{P~a4ifpAS;$)1A8ANw9jyMDp?O*ru6QK022
zI(2HybhazW*h#?qF~Hn5etI>yYm|%oq(x0@k9S02hPCC)Ee_LXefE+Cv6;c}WO%&d
zR=EV1rUVDM4-$LtQ|^Xv6$2R1C-U*Fpey{*mLon)zsh&PfTAUAP=DCV?3pefr+-w7
zj5*SsstelSxqf$&zUyPBOqpl3o`ND>ou{>Yad~6m7GL^4(=}(Ba48OT&CFJg-<3!C
z2mUs}9n_~1_o|9P-Lh?-4#~eXuc09M_DJJ;Kh)}FpyJ?<h<?##)uK-owV&bs)9L8g
zY#Id$Y|r<w3L~9-_<uV8jE(C&hbAk8xbirslHdU(H>1+YVPeg+suE9Xq=w|RHGA&t
z0gNG>u3JKL1fiFXN!XblSNh05a1zXdS>-xdr^{Z^sK$Q=->tp@cqm^wOfo#0ee3Q<
zlx$ck0=m^xxkvVAcuqF7ooJT(Twkm~3jSx<>1Y}RcdJHE)(p^{)WGV^`n?FmHcWxN
zqJGtfVde+a%&${F5GYYf0AR2Hz0q?LNBx~;TH5H_hE)cwAI0!BMDQhK_3qlS&~NzP
z{n1!eox4~MH-djb1kw{R9LE9o)8HXfDDJYC7$sb;9v-6HfHuV~SLdUZB%#6IUHk;*
zl57H`eVw?1+)aVau+KhL-MmNc?4#Gn#ui|TjsB8E`l&-YmI*0tZVmN-^eAode<EgP
zEYgs^k3Ord#wyVAApLnRC6EjN`f>ez1}2|8Can7#ULaPZXSMa*hKTAWsTz`Kqo43^
zSwk1>Jx1Hp`gS5W_WwK$0MjzuVUSDqisd(DK4*A23%(b%6;Dt>QY#*Wk%uGxk$QbM
z-@A5txF6JUFRi_|ve#F?V~Z(bJ2_fe+e1m{xaJIbDV(!zkB>FWw!MlhSrM;4?o%X5
z`k>TM{RWH{nPegNx|EqmqN<#Rad=PUvwYdaevex=ObB~FJNM34MyN@IN8-?J0sS{z
zS2M^rKDJgz8#QNhDnDFm@^C?smUrf^o|U#0bp<ySt?`Rvc7uFU6${H&^Mpw&Sqnxx
z+{E>@R;Twrd>Z@r*Cnyuy-DFl%&Tr5ifd^xqHxsL#yHRCbMNhCH=y@drr8lFDj~fS
zRSke4?x@xWnYiW)ze3%tQHa|l)8G8;kULApl;*bH`ly4_7i4P{M&{tL#1!B0Py=G8
zvXwhJmXX~8jcPI{w%{wQ9O31L{)7fmzs|hqjc$Y$j+>1S4;yFEbw=rHDauA^L+$9{
z%r18-3k8jMz-bMQSKagi8Y#EAs>Cn)H<-%4uG}xqryh)WH1nNLF3c)-i--9p$&59Z
z3F^WcNwD=Bd*#AIr=;poFnN+%svIrL(_=MWP=P?AE64l$<hjo@?z6TtQY8;13YqQD
zTmD#nLUO!?-L%EzFKX}ILeU0?0|t?DaWjUnrpRroL@<MD94H|p&kaV{sSvC_Hk_WC
zlKx<TMd4bIphUJPQfe*h3q7$s=Ty%&NMd9!gX@y1oe*KDOSu6{sjOqYg$vf(?tX}#
zAwFkPp_MyDTKO#obTQ$<8W8wNNIs_>rB_FTDtYMWa|KT%I+MZ`QkmoYkniDl@dc?W
z?a;1(BOzgx$#9yNiO6EZebyP9<w7~`DmHF?GmZvnZ{x}p3`3oUxRCRh7egk{u{1XN
ze;J|Xk#Zy@6p)>L!tS@u14!A*dbB(Vc~6tm{Npml6=P9*p}fEA!itl5ZyU&_T50(1
z#+~t0o~q~yWWIbyKz4*M2Eht5C%p3-S0yFQVvJ%dt=)m1;+v&Nv}f(hxL#*Ns)SbJ
zGTcmK=j5S2z2a=c=6#NmrvtOX6xsRo<+L{F*pfw55PmWIIl8{O;D_{_{%0G7pHXa5
zCH4By#b@$4S0mzTuAT;o(_(saINH)ZNj)$^WtU5|IVZ7fUYJ&D!Igs&X~Q9%RCP{T
zO>q1z8&McaiOE0D;NOo2(60uhOix$-2JmIg`;fFj|AUu_2A-YIF48<Xr<{w{&pobH
zwzp27nl%O1hxRZKJ`!~327_=HMA7g=sHsPZVrNpj#Bg=hMsnWo0?R0*0cDCdY!-`D
zoGLUUAgvjFy%}sh%=sZTd4F{1REd;t1Li-YLc4)#(6kFpL&kwZC;~{+m$VY<$-iLV
zMG0xxnWx7rjl%A&dTK(Z`o&pI%Lr4D$*n5{J0Kb#On)q}UEOro%#$OVIePh;WAPUZ
z?YBns>ybQ1A#bECy8l<ichVrWRuvH`S+sNMhf34UBq{X2NL3{8R+Fn?^KpJr6%Y5s
zBs04Lcf^YQy*0C+K8<}S{HPs(K^oXW$xF*5y-JR@Y}VLjv{02ir&r3XmY%Jqk}a1H
zRAut}^{EzR`kTkN!qVeJ!UV+1y3p9dF-t;U<R1ZV)H@s)RY2H+gnIB^vQfQA;>UC2
zLq{4K7;jQ$#iX02=Ooyt>-QS5#5KvvKFJS1nWYo9V3r?U?svGY>c-c9Y{nS_2b*{?
zT;u0G@Zur-l<pZ(x5QzS@gg%{#C1pacyOGo*Zag?IFt_zAE8y3YhtBa42(I{gB{OP
zXGNJe3{Yn3yvhUlqz)|x#DlUs61@7XxD`=U>rQ@+xWC@)jg81_HN`50Ui>`yCP=vh
z#$dI=r81qUQXSb_9^Fi#YN?>+CO2RZyQ*AYAgG57p{v6vz(2)r^5{pKt1zXSVaBqP
z_X=eWhzJK8HNo|_n2WVIjx=Gue!lyTotv@XT1Cwb+qV>b31p_tqPq)II%5+Lre+@z
zxXppHZR*O8dcdDmnfB%qr4fNFqq#8U%t%gp?*70xe{XTzOS{pLm33(U{sbpE;C49)
z3X7mW{VMMQG8cJQ>97R!6Jbpw9Rw>Em|acZu_;n&sg+1agZVrf%*tqK_kQ<71pp!B
z;a7qN>pd-*{f-;=Gnoy_nD*~Z)4c1vJuMjbNFM&&(vOWj62d?=d@#wI5;3q!0b@xq
z(AXn10oh>k@6@-m{&e>6qkCL-4Vj+40=zV&q&k?W#SF}Ft82>rWqfVPtLb+t8B@e-
z?lZLr_QH6;JjtFO^i37rGZI<3ZrKz7F6^8<o^3y}giK4>6pGYbV1>z6pnGOesJrXI
z2h79p24UcevDi#I#lzAgZ+JUXwyIn6j=d-U&m2}4B14&_EIL`EKbyOcD4T8doy8|I
z%I35V+HzUT;fHIWiHI%Hohp;o@0zrzwzTpL-w<^xgGhZKE)3pG!Kwa!(1p2xZlkq;
zy?!M-I}LY>Z_+<znMRly*jk4{xBAVInWc1~I#=@_)v(9k_w^#fe;?h5Jl~U38wdNI
zJ_wihb+t-%dq}pmRkReu;{bRb#=W3AhZe$a#7<Ud>98Rken6I!t?~apTm=rT%GB!5
zneE*Dj;{iS=Pu!5MTF%W9|PW#V8T`<7AZk%T`(1w57x@PJ>AujnKbuZicoI5$)>c0
zCqMnnCNMEeogVju!#cbL$5W=om|)aFfRv9XA{PsnpcU7*WJBjTC}@KwLG3OOHQ$?Z
zGeUa@!IoZ5y$JACNC3loG~wJT-dp#{&pWr7U3Kgn?*9sKH|d>;{)pFd{XV@=P!VH3
zsgjHd$_((E{x%22m#%^+9$0Mk3Pt1-DV_*TWJslCI1)q!?JtZ??ZcoX6c19ZsV{X%
zKgPrx%H-ZDWUyNW`bqtNXDA?DOMnG!Fl0w*VT@#j1lRC;N~?;K+g&Ui{%6iNck^M!
zLl5KPX_d%oMl3Dsw^;w+*?`FTwt0)S60p_X&x0^(drFHj?7AJp!)wU3FXlw;!ZJig
zm~uRM*`$BA_(K47?4{4+RtHwGi*>!ur|QljjW3WevsmrYbue`wpmi}UVh?)w(eD@=
z?1V|j)|WHeG{-J;|KWGL<<~Qf8$l7o{4&kXVQq8)jdDR=+;6z=pZr|-HuZ*BUi|-)
zvw<r2)+0F0b4+bJ(NG;f&?KrxbDRZiHu9u+wP4;3Fz=}DSpJ=8(gU(L@7tjffnJ<0
zGSsR(szuUooG=}h+Z|#|n)k~#5;N1G{ClyJlLE2hY44-(Cm?otPH?wMIS4ygZXr?+
z1_o*<bJK>(i&=k9qKzWI7Yrb?Nxf$HhdRu4!;5&8ik1`PQiVJCJlV=)LPiS}F+uCE
zV!0LCZ&_Gv{8+y-G><CMnM%IokHe!L^g<)o(-zU4-A&rWa+?7ul5rk==rY#zB+Pns
z4RJL=T~ciZ>i9iYXq2WVi*1OYMJW_tf5~(QX#f`$c?Q*z<$wfVm`vy|Z`3A2BshZ=
z?dbWM&c9nd<lx{fSGDE8Z7Mz4I5fuAhj*Zl0&Vey$A}x*3j!D<JY8s<$ag%S6~&1j
zj?;>Vdfdr+;j}b5rm_DhI6ai`p};nngoxg12A#14_qSmxY{h7LK^(tSZ<_pelJquP
z5r6s;gHM`K7X#f6Dwx2v9Xx<W^DL{NPj24=ySIOAjE3Kki(}yZfBBDqfV8tK@&y@U
ztwM#Lg{z$+9Ap(Cx(6|QX%+xecyte}`Gk&zG8^8q#iz`@x9+(Y>ii~l&{X+<?f&>V
zvsR<jLGU?8h1?ubxaH)uURttb{n+C*ykpSr@ioiQ7jU|6-*80AsSE;fH+{rSY5#h*
z<emT}m*WbT8w5JOUV!W(zHi)I%A@7*`HrSQ7e!aLBvm-}0ISnz2zjV>ZvzoRqw{iZ
zspz@CS{#4&&E6Wi%k=K7;hqY`@{`P!Kr{;LOqLRVyse&3V9_7(FgocF0subg@zT&p
zRI|9x{$$$Z@=55p%kfSOnAT{h<u+5|%~<F^Am3}WtVNT-R}1-9OgT*_Szlcdfjr(|
z)a~Imk(#VMh7wNe-c}n36y%>YkL=zDq8E4RWWYsZ1g?BIHgnf9)MF5$pB10Z`oD3Q
zA|G9>PoXa!w>mgKMnxM93bRJ62+}WG3!|-|?#ic=j@X@XR&Ep|My@$vMztWml7b(s
zH0JTVzZJuUz9UEM$q<of8OEJmu7xde`OozVGU8sm7og~E<~!(d_JRz1@9y<4*w)Sk
znm*2sG(w2&jTb1*;YLo+20I^2pHL36GSAl$<2TmW)0#7pnmOVh01!vw#%JD!Zg+ov
zIo7=Tt*BE1)gE^fJhkz*k9^(D^IQ67ZNa)_wYwU~Qa-;^+JowN;c;a4nD0m~OoNj0
zYfQigIm+I8g#bsotD%p=f<nxd8mz8bIgmbm^L&dhOnDohKYR`i^qZ0(-A%^mR4XGs
z$&)ZdYRl{M&><YJ9J5%l0$5LE5wpNwxc>_65<k!05V)RhYqRos$MtVvp}bsZvG-Ns
zueGV2ThxduriR}fa@I$HT+cu7X+XGp6{XhkP4vy-4jLMC)MIkwtb{r}Ba)U}AXXds
zBhbWe9K;RZD`GgG<!{rAYcuRNP|9=UDt2AEo|MITZ%@=|#Z4^Tjn_$?{-B37JJ|km
zP{|$^se7>!S382HDm$lsXG>IH(*yQjK4U@ETe}A*&c@5#vLI;4A!!!(VrHY?tjAE`
z77hzdfn*MNcB#eQeZ$flD#S?~1~C+{Y5QzW@dD{1mILRM(2g=Ona0XSJLh6nespH!
z)kHXUH-DMj0sY{=m;0*smPz2pZIfP;O6*IJWd1k?=4&c`{Aw;!xq(vD>Utn7cRtk6
zl-X(@lG7>r@+B87eHgAgWOInpdl4Xc6xR{6v)KWW^fdGc&$nW$o2`Dsh}S;QJmk|B
z;=m57msQqfUDSJJDy}HXQx*|Iw>{cS_{o7BBU0l-i9Ia#3@Z<^Z&wYJt<q|KYu*aE
zcrfTuy`t@W6ksjKe-z3s)~SguL$`vuD7BTKoUsQr)55{Q6t^7nJyYm-tuOcbrQjs5
zi+eNdH8h0|wOkZ$qR>CZfydHw)s5IUlZNf=RZZhhepl2Zc^@*8e%gFqJb+AaQgj1F
z)xIoxdvqI%N1Qv{C9Fee>BF$&7zSmAItKG>rq~`I#<~$O3IFQC0gN#>_GxzTk^<`l
z+f(CyaTt^a8acwpi?^QFfS;86rl4(`ma~IorKYCYt;>kp@NZ%Rab^^8xI{TffOX;)
z(f6|Uj%LZ8_FG4dNNrSHoO+g&?Ggg~lml3pK(R|P8%vnM&@d2HP4nTH@tf9wd>NqI
zi)~d=S`q>fDAxb@;0MrIUd!2>L55%?PTE@rD`C6pTU4<bFH`~(Sb4#<^9(SpiUXsl
z5cdenFMHqRzgII2q|(^#?TywUxd6~<Y{c@Rlxi9l!AKS8q4ov2j#tU&K$Szr9Qu%q
z=YZQuh6zjZi4-Q#F(t8mxh2l%#g|HNLB3H>517TBQ(P&HT+IUe--NQIKDSN=%>zU^
z4Qz`=Nv`2B3-?6kR#f-4a2Xi%w(-8bFDPyV+!d(dDk#Q^%Xf+55BEVbR~{VM2)euL
zmyZEek7mUeNy1QB_DWAygFJGko-`4mf#EGkYWJm&GNLaF=Lr&nq$+1pRMf{H#P%!W
z^0^La-*h!Zqbg+~G?knPQzc2n@4!&AU9i6SL$IIJI+X{w3T%rTW+Q3TRMD8{v40I#
z4qm2c9P{;N-&Y5Lmez*!=Hl88b9m@sxZ4oIdTv^=k*L3uW0E7_C9ghM(9b(y9r?=X
zUAJlrc!Wte*}*}ePSq!M*Gn1?#^%KtN_G|1f!YBOd9R9zsn2V)YPpnJSI-n{WFrmh
zbLplC#)}!ktD9U~>q4H|q2<Q}%PuH4xvrRJB9hp@it#Dhymb==rKE1Ci_6860yWWT
zlz_&L{GL99%)_6dy2#!b?5rEGYYH)-%LVPl@N)J6x89w2wS>bW_f+Meft2~P6Tl+N
z-GD^*z2!inD$hDaK>r{!$(-4T-7{rJP0XnOsF<}ja-XU90$=>PM|c56vFcwj;EayO
zQBcl@fI~2%An71hM4XMXWpS%|a*r2}|M{DHnm7w}X;a1FMlb85cIof&5;}5Gy980x
zg{mjXfgwYuJ2)$;cr%R;8#(u)_hp9CbA9WI!g}MY1k_MId7&x8T9IHSv5NZ;yd_eX
zu~>uR0qh-uXf64aIU+ojvmLYz$s0O+IgHV>*Xd=Dm{35)R@%;pjq56W-V$-EQw#}g
zt@z&iFh1+n_3*cZ$1cXj{4Z$qgHRu8U@|*E4)cK;g6*yC+dU7VNEwe^U*N8fYA_}p
zj_MsFJt)H`A^xSZ+^?u&hax0rpj^YoBl_b-qdYmz33|XtQOTKZ8#6Yq-7AxNk#}LN
zJURX(#S0Qc4%ht-z1+#mqGYEo>Vl0#0%GC&>v4QSuF9(@FD3q(FxT+9#65+*#1RN3
zM#7;%@D6G&u$R;wJaa8j3HGn3s%UHDTQ1cp7EQtQ#_Z;)Ok$v9Z4#fga~ba1AjnVw
zk(rWiRo1kVc~XxaABgc8q<dwzqYl`nFPAx&4S3{M80nFu#Iybb!0hq2rqGU40DMq8
zr`jPG@|Adb%+Fs}ozaDpTp_Vw-Mr`4dQ|_t?xv+K^PjR@kLVG<s$0^~$H<N}0V<vx
zB*|EB4qSALz>0&QM-c8I)d$FhKp^fs&j_lXbD-zXqTBp?Vvp9!s9Kb2P}MF`XVhG)
z?>j*g)o2L>KLCnNr}RBK*BxoG=eZc{)B!p`Ur_9%l9GMP^aP*(?J~~$t5v{<yQts^
z8f<;q;s92Dwv>RuyYg4q3&oF0_woW!8l;rD#hMt?g|44C&?YE2GoW!6<N=fP;CC@B
z-x}gqju}8(KhjY7&~u#u`bMQqJ~KCQ0UF?#QC#yw!kx*}w)~9ab(>{pMEYX0cXtuf
zInCA{#Tul4EffD9X?P^VhF&O{y368D>*M75LO7WDLMoh0kY&2=O^8^7M=Ylus^D__
z7H*)(@Sat?7w&b8@kEJxzEr?q;0)KShV{gZoYAh}OEJZ52gWlv$X=p1YBK5xile*+
z5~w>LHN%1A<+xlB0XR(<w?M^B?T|aHFVrseG7z$|(d*B9n7h^4)*jf7C1C&Mcp<f0
zwtfYIlfgQsEK2#II$Vhnf2b{e#}zs?PCZJIEvkZB!CdW-eLpeH?1YABm+LL6+wE~*
zYD91T=7owjF{N%2P#rz@tWNU1h#|`+l(cbNQ$iSn#D*^31d_DBv-Olkl}>hM;!olD
zNtFnNHH#(o5Q3^kZ>51xG8u5Gr-rsVLLYlO>_eBw%@f){J_L-^+;q8BUzaAtiyKyM
zhXxC)OC6|cf}#8^&hf4u7>|7#dVw{6V{I8_W7v$0v?ZGfJxA(OYleH5^_R!}IQd)o
z7w}3WkT@O>f4avNiah0Wf!MJtV9ya^-|IO8?4^=(*t$(kTG0ceaDdmDYsVc18Rwa%
zOsxmryE&ieSlSMO=Bs9IwA2r@q@^)<)0s|ftv*t`;Pq~U3)p@ahdBfc(^YfYHa-v6
z{A)h&Fy};vIozxzGC1`-Up=~oo@~@J7ak8P$UA-8x1Wi9Dami1^KuejP=&V9W1{Q2
zS`mg{!iZRG;AfaS76_$f4avpap>x@fub@sY3Wra0QK~-v_19Msc3g*o@yqcWx2W;@
zu3n|<;oozMzZF>05C26|SJ05qQkX6-7AFQ9!+e*Qzj%F#PoXzrU2Xx)UyL!)m9m|-
z^AS<zQgRab<6eAimKbN1q1UBEk*fkAPX4dz;7^8!3@RQNvm#bY`+zgFXW-n023M@&
z33Ndw<^g|oUXnx<ZPH2+qbQGdtC(>-MLaH%_%jzwi!)rmT<b3i1|E$qGl_PO`<9{8
z-{S<{-xKt~rJ?zP2}GhXeFVI4%i;ciH~{A!+3`C$FZ4!@0+uV(;0-v}4KWj|4!#>X
zyPpwYJGFCwjH68M{2W0c!@|VimpMtcN;}(aLDuZ>Fh4z~(N(NZBSI|C9@fiMT&gca
z=UZ>4Sp;siTgaD0fLz+v)pawL2*NbQvja~)Ip^C0t~bOVc1}gGCQf}={*d3uuf=QG
z-&@JQ=(nqYKT1{mnNLzQdP8jHQ<j8d5n+(nwY}_TV*5e^PP*Zz2IVyClMP(lHNRZE
zeEs!p9rj*Hb%S}W<Ew~&*}hPojl;@(*hJc55UKBpcj0#SK%%FpGq9s3q7K<+`L-?-
zh12+q$X|oXGLVr)SVcU{?d_&A7-D*q>Gpa!nEbjF{8cp5sN?q>KNGb|=W7|zcg?`D
zv+v9=s=TFi+D8)2pJOHD<~4~IYyg^)f3)Y$V`CvI`2Nu~1k}Pq=0twbS@6~lgiHZq
zme6Q=QVF6KNfLxGba<ohJ9<KuA}`=yfiS5#qd&?c<qd|gmfbpPO{rbwvxXEIF`B)8
zn$8{ob`eT?A<19qhYlnJ+f`a`9=to5OH6w<Sm!`2t@&w1t`w}=3OIP4C4>NM7>qQu
z=ZHST-(VkuYCFnA{Z!Ng9w12|{|~A;Nc^0*W^!Nk@S{y@b@E)x&<=kMF>Ljo{MF-d
zJ06bI?6f*<LKZ1|)b}E!AUJ|sPu6d;P9`kh4ge$pH{YEKjBr%&{x3oJ<1&M_^c;<-
zFau6RAef`>?b+qie%?$OTXA??=noumDlwH(MndMl-3&==^zrJb5$fqpqc~x3A^hj5
zD@YHbjB*o+P8^>uxD(y*bY+=4=`&{}vHS&L(dg*S6F-D|kw5r%_HmFZ>5?0~bL?u=
zi2QvDjcwCScz1Ut7p8fT8cvUM)J?+Dqs;P7juziG%n&HUiox#K01+`|x5uUH&44ez
z>bBkw_DB4n>1MfB2Pa2w9X}1A;LW>m7Bi=(tIm_b{;dbvM8u{<?V5MYB5@-xG}eeM
zVHMGEg-BPn(efezkcGt{j6sUAwO=Duh{iPH(v3Du;NX=`v?~|1nkOR={k|RvYaQKX
zmDbN+f_e}slP;gpGno%)cs-N`kz40R(JPxDaX?GSm*q`Lmq|RmG8V+eK6IqPjq-zJ
zNs7)7b$P+XI|b?|h*9F>QJri6F+k40v*|pw{+ik6K?w37h?)hQ&eLIPJrB_>S$Ydr
zB{t>BDc2J0q4&aE#pDdsNVs@L84Gg{Fun}%L5=g1GS<b=bub)DeR?UH`TvKdp2YSa
zb;+0JNU8<!{Atw22%EP^t*fc1>Gv-xRU+VoZ(kHVKLJ5NIVg7jZL#`eMj7|?&pSAA
zOf|l~GOLQ2i9eAI<*29ca?39HllmcEG!U=(rnF8rqoLA3Sh}M!Bh~0r2Qzl#?o^By
zXq8Ppx6FvQ8CsdUr|+SEmJn_@kf*t%q@jCkZJcXr*JHU(`ilOw(X023y*`dD6tqTV
zqB{V8(>p4ca*6!$id$i)ya?Zr*2Ni)ZfI*v6PhtGv)%Io{YC5@)$Sp-3={9~P=904
zWuqwqm{$t%1TJv#ceV9Bzg0PJbH}H$0y7o#)8p`G(tG>g9w~y8-7By&3|EMLOlBbs
z0|oPU1I`6GtFS1+s#Ei@I2zVsX+-CibLp?wZRj0vH7=4`3u1rS38_8!tP<;8f~p#(
zPF_T2bEZxma_;8*a)^77GFO6tZ-iTsRxpjA0jLG#_EY4^3?#8`D4P(kVH<+BV#yH<
z+3to_(!oTtHc-w**;Mvdh{Xr*#~^~s5g#lb6b(O1wLXau8Bcp{fqv52n_336NRV4P
zgD1VWF(K;Y=00fOL19afsUK8bnxdrl4;Xq)bLxCQ1!ThCtr~KGv*s3}^4vO0Vcv2N
zBLJ73-e!_v?>kTJb<giHGgmk;6Zbdzz-?R`X<Yb(Ng{dRaG;KcaaCE1O0KpW`dzLq
z8FcQxYy8w&j)cT*L>GaJ5GfBJtQ(8u)0ID%V{wu-wsoA60nkd>tz!!fMKV7nHPfpZ
zSn|y&RF&SCdkPghUBT$a(_^q<<s%y5%~2li3YcO*5~N#9+=nDfaXI({*3072bbz<S
zf1)tj1N>uN+&KF_d_$~A8VXD^aN+F=$j!7UX&djry1sHC`~&|o8?hZ<nE~;l!v<IX
zOgq?Is5<%$%7SOvz=>Lim{FXpc7hvY%O?;F7n($xnuE(0fgQ#<{Ac@(_8mt(|8Os|
z*pG|9VP-{=UHeTmUV`!pGcrTMsAop#OuA3tuOxj=Z!pj0Ic;K#nEkYv(M;;a8Dclg
zxrW|7RgQ@2W!2)h#D>$zPIXw!%B!!hMsgx)GpHG@zPdmYAL4$VsGr~ual-bemwqSD
z#&AdwdSgPJDG#GNl_OfUMz`JK&BorfT)5Nppjp;D&;>kqb({g)b4R(Q!GuD(?R~4%
znYfgP-O$IOe7M<87iPyhR<TF&%|IyEr1n!D3D?gdk6mzEPC&k>@Kp?3`-f#n+9WG?
z=2Z3T8CymqKdfm6#gx%_i-YF^Yg3BVziKLE1ml`|Ri6DVodf8F2JX<T!hw(6nMpo{
z+%an6lf=-2$=B`sF7IdY6JRZVrJwpqq@|?{g3m*Un%TKcM@Eqfb?L|J4iS-m_k~<G
zQd!%M=R&A~!fJdU(mW&<Eo0LcuSDL6$Pd$|?KNwijniftc(Yd@UuORDU`@uNoU9^L
zJtigG(AV;1wv6!UEx#2gfHKePh+w5X9P@7nkM~&>gXqn=UniYbrULdG`;ZPkb<vsx
zU^E~ynomv@u9xyx-vs{T^20^d$CyKuce1X~E-q+;`XH=p=cV9uG#L%6ef>7_?H27%
zVW_ZO4oVE7#RNW;y5p{yMYfufntuOZ<UAJvvU~p#um1qnngdXY9<b_uy|~i?rZvkE
z<tz8MOA{dTzUMYry1PmVZj|AgQ8EXnkKrC3=;UvAS?$s&RwhOG_`#<+ur48HFP_xr
z@cW^{jB<i%T!@FQa{>P^_T=|54^t7?tt(8l7`LS)_3bkI+Q2ZDENq7imgv|bC>ZT>
zpk}!zBce>>Zd@|lcoD;i)o(wKy-Qy^E7W_P%7(Ml5+e5r|F}k1uSsZ<wt`}=(Zc)P
zq+EnbJ{h}E?3bGD@{XPHmQThud2P7D!t)KoCd3@gy$yKy%*?}%_)x#(+dsl{%VS5n
zUHY+?dE34CGCX<&C2U54P5$ESdtP_dlo5)rL5t~QNue->k>A^JA0x~P>eX{OhlHaL
z*B1M^1J1Sn`ex1`A<lIy?MMkE&s$3^bR@cW#vH!MM+eH5xwo&V<5TPaw}#<8{_Jdc
z1Z%8Lqyx*-S#DawU$q}^L(0BaHbsY8DJdw_Zm#&T$%I+d5vfj-F+*t}DdpX8$>5VT
z>t`#jnCDE1pClVVX{b9xa3yNF)tUHkm2#m**+~4L1U1@Zn+Bp^IrkMy`#?}vL;z!d
zWNsGZC4D|CX?Mb9C&1Cm9zdCZ4>XKa>MNHgef}J(F)?>pn@7!ITWfp$Fdv8c>}?g?
z+0q$+jV%Zz?EgST>6cGm<2{AkAy1RRSU*)29gJ`m<#lTsN{KB2omsb{of{Qzbd28y
zFH*e%DLP$DZ8o~z7ls=n?S}nx;uI*kQ^YU(L8ao|S4i3Cssj-eovDNTo?C*vuA}Ec
z;HpNkA7;l@BEZ~)+YJ*jeozie;u$%&YM#a6H0n*%HACIRi&R-i+k~{_I8oOPfP+T9
z&eR#$u!}PHw5Mz>_fl|gzb3#g3mDqYNy3%UZIJwzjq!gf43An)eoH%UgZu_;ZnT$=
z-!&mETqe=sh^us1O{Aq!FR4P&*8~1x(wxT-YSEuKpWtp6!hg**nIZ{!QGa(zFJR!B
zdFqw=feX@MtI>Iz&PWVQ3$2|Kx>MYC668r=7C8qG6?jUB0?Zy*HtMgXqz4)Dh0LHK
zp38<tbzG<2spVEpZfy))_@6GLWLr-&m|!0&4hVCnnr3y?DaRmQEW>P1v~k>rszRmk
zGIBL>>p9x#S4uFLP9oUs;Ym{)=7bMihDC&A#D4+mKfQou(kOI~`g=vg|N5*(AYFs@
zJs314OYVzF;TIdApR8ueOuK;EVHc#1+Lv<5)PKf|5wWsnoYYjD2Xxcq_}lXuu3H`D
zL-FL2u*SbVnr<Uki#_=Q;uimhJi?MFTXcs3gMYI#jSq=yBDd`OJD=yt9Q?uDQX7Jq
z#YIs8T}~^R-6z(+^Zf9#Jn>CrhEpwOj|iA$0ih->mLP#_nf_?!CUjsF1=I$_3J@VS
z6J;cjLPb4GGJ_lG@lvYUG!Y{^e&fbCY{e;ieQwqW_4PTc2~V22_a{ExvIUesRKjqL
z5;WP;9GpkzgYfX}Uarkx#ooR)|4GiY+l-cIJV+^lf%-W^JFYP6wIXJ%dR-KWc%Qtd
z;b%xpligrX7aF2caOVMSWNbZ^p`qa1twZyykP#Uw1#M@XrRrcW4dSIs3g|{|-YB0Z
zaD7l{oOs9rj0408<82WyZ{Ad75$px>UG8RQ;btVB#8AtRjtuvknz~?C$NWu|j$3DZ
z?}!7$4*V~esH1E294)bng3UBU!&pBhL4Q<W)`8S6ga}h#opbXGwpNg6l>FY<=|(9G
zj~ZdERB+dYIIFOi!#ehGdI7e?<ibP_sB{@}9zBQfW19K+mI%3(MasCuWl+OWxN!MI
z-aXY{s66Kx|GxB9%2H2LxP%21wEykJk3g<7IhUwNGaT4j_t#iZh3I=09VN35)-3^m
z)uhS-#wKM!Bzy6uo{r87?dbc;y6)af4H-Pcc<WZalc?IH$c@+Wp;vM!E}=6HL35Pj
z$PDCmfg($D(`X{5U`WPtY~2R<8);+X|H1W{Wd`dxyg)$D!K3&|G%6{(H;Sye&`V=g
zBY!h%0J7Cjax1qbYF|%V$z&kr1Tp;?`|(71@Ux?E)a+M9E5qv{h)2u%OFZ<J0hGPZ
z-TtydhVXu4k`kcu+vKLc*cxd3KLdiUrz<2exqa^qwj|wtgn$(Y#;w3-Y}fbxTno$Q
z8C*MZAOBk`=lH$_GDQZRFzZqHGG$1@s(J*ZN4m;LMVQ@JSN#vm<X9Q-&xC)X0Hkn+
zLH_kw%HtFEf(wyR3+r`usc5@AbxS3{R~!{vP|S%p{Yp&zb?Nu$Je6PM_pwGx`;!06
zLg+lKb<cKxHb+dW?we=n<V*lSwflhI=kc>%jH0D^PclZ!F@F`Yde2rF#Mg5|#{;fC
zbMwdOo@mPZG(kp}Cl@6J_gpo^e*bq()iAdkkjCFh=V<vSXw;S#gw0^h_coJ;47}0P
zbTHOpbMwH0lm?OKq&2}C_+6TqeCt5>UNC3xC~3JsMcgCBey6nUq;%3Et{O!%8`D8v
z5RfRU1MjF-q}R$@zXLMz4ryCdYZwCR5>Sr**?M8*o+LFx7}Ko&^iqGz7tPvj+gIca
z5;_P*WaN>Hw^E%&PBCY@{zt%dlyx*gPkK7iI{IuF`U<>Jrtr#PbXe{sdnRc(={gY_
zjw!P(zu-w0&=rKt^X78b^b(=AfWfecm<>V9Mjan97frar-ezn}(X2iduWij+@cVi4
zn-T66tZyE6?Gr+8*dLR!HJ_t8o#;IXhVJ#9$&#>i-A~M=R1-e$N_>Ot>Knim_tiD!
z+8Imk@fi}Nqg*XZ*tD0IPO3Q<8=<_BXeOQN-L4ZACRP#qO_TI_zDMb7Qk)N6bewCK
z0UN<o{|n7-qKl3X@EC2HDZW#>J@U0zCoF6sUSgj05lfWi$ukaP4w<td#*;<oKp-Q)
z)Y8XIU={|f+{KJ0XJiI5$ZBkrCGn;WDJ=GuCYE`s3gEdAm%3qDZLBMt*VC-=mOB}X
zFn5Soul_Zug+jo+8DX8XW*9JaM{DUH$CSVRm9k^FYrW=DO~=KbKBU4>yXieKQ%Jh|
zJOP~jjAmCl&NBfhkzpD@DkLdIF%VLS;cWT!1n@P1-7X6Nk8<gWyJjC|hOvH^?O4Xb
zvCdfo_WBE9(ij8CyA4)QM=RWggS-h0mfqZcQpe)_M^$YR$%*M{mTIVzFt5~aqdj`f
z-dFy?bwac{Nc}HWOk8J$(XXF-7Ihv=l(UkAUaRsGO4tg5rv)SX0-vq#p|aO+vvD{@
z#?gh2E7z@`4wwML8iQ>f$_dT}pvdVu<*j9$mMXC$dCAgT`lyZ=Eq2_2xHaHS8OaM@
z(GvlZaLmto?)XDMHY?S+^FXN;b=5xmI3>BFO1P70hrZ6cq(g#Wcyc8E<3PplwuXA!
zvc>iANT7c+L~fAv467vO*Hv>jiW)|PP4m*hOwOIHrIc*|c)7$I)fS{zw0?SB79UrX
zz5=v+K@A0kBV@c#IGRfu)y2qkpd=a93S-GS;;}g=Bxg6j`eN;O)%n1@4}K($`=Ohb
zm=`EIO%69YbPnF|>7T`ehuf6RE<;=a553m&`L{Use{RXhm+CGtRF?6MXN7Qw)?ZXi
zzNAED+SF4%4^<9#7+MX|G@8(rV8*S=*Yl9@#@#w2I$K>fZC^M<CnGLt9oVhnnP0<~
z+oqC;;GSX+541Su1}M`pr*~;)&}}+7>XUu@3|Z(9l@&1voZgsR<NgG8Rz~FrIJ*Zl
zj6Cg~%c<>&C)Uig9Ejz2C{;MNY*s5QE5}}If=33M<z98p1~h?Wn6=|Bj8vWI6tX7%
zl&7BTK*`2<<<yjcnI(MxSSf?zh|sPT)yi-qH$j38h*ZBSb|w6iX`cP33j^0xJ^T$H
z>zf`&AXe0N#)bJp>Yh%`S2su-t7*VKP%=nxVbpWP+ZFF&#?}a$f3<0JpH=qv#LJ+h
zfVBNZ;-|Q>HbZ%SvN|;P@b$5QR0|Cm8Kf`p<eaxf#V9D&@%4!qc)B)UVRzIpeXQ+U
zIC!H(M~-;QkDB=7rBrSX`SIQPIM5iEHO<9);D{}DfQ8;uVGtJFpZ%PgeP6I4L7i;I
z3B%CQNS*`b^&hOFzU!$<Wl<sDR?1!R4n+Y?SPP7=^jMU5?5Z1~wsP~GKY~Vby3Ly&
z`+Hj+rt!-767OTWr8d|7cvPbbfa*t{Q^zXp%^SIynbE-nA+wiMF?XWj9z%nsDO*tw
z_5?82WFQ%s@C_#L<f4NiR9vb2N|{;H0us?`oO5<dh5Z<a;qd-eIAEM7H7>EIW{k>{
zf`M=ncL+iH>QWV&Iioe_mIiC;ybfda-co7tm!y_YllyA-o)Hb1qTqy={dy8H?s}kc
z9^$eCSwkKRH@sp=?{Pm|Cx>#TVzJ`JN)56;6F&<9S7(nrCS^{h%t!ms-*EwY5Jaz8
zIg*J;6$aG+MKX7zWIPhe{3Q%fb1Uf-y}l5cf=0%@pP=}LdZ>IHxcwFC3VB}!6h9iC
zaLbpgZL0q7;pVek%Uf<5AF3TR|7WLYomsG`|KrDF!Fzn*!%kfPPQ?k9J+7fBGidGY
z=BKEVd3iUaM;f`X)LnAiMG~g0V&5eJkk}48R>?&w@uLYSb{p4iU^IWc4acHl*3Jmg
zmo}&%B<ycT32Ur?_Q$F?Zw<8{<R$w!AP?~T{_~W+UR+$IQR-4!Br;AXTAhQ?)U8{c
zM_z;EkGf6S)R5Dx!ov05QW5yp&NyWgOu>~s5;JUt!bPEE!?;bJ9H4MSLw_Sv&Jl0r
z<#}@7wPmF_qCTO$fmd=n@LM*A#1&%qLSDlJK>PZhhr5^+7k5B2G;2z6VsAilDCDed
z=%0VHi0PeG=nK5FC`H-L0c)!8+UIo`*Rf$G4MeuEH~1F}X6^AWjf57Sg2wQ_I~i6z
zN#YMmDcJ9gMNj*!FZ)6QeKc$Kt{!ubLiVXzQ`n1Q%O;R&pXCn}l#CGcPRK&?J;Ga5
zeTn})d?`C``tsQ?G(*|*b6iJMXRl(%NP+cx<vNS*CCyrQ{f4QlJ89|a{ho&q<%5=-
zt;VZw4<))t@tOG*N41u9Alu3ByjvA1R_3;;87#K@vlTld)AUxJr><@W0`^ySLDNHm
z)<8A4)wOedc_q1mu5okcLJZw;@Mze_q-UBUd>qa($S~5(^xcVP<TxektbeSgW}vCA
zKu@!Af$3kehEO%W-@45ZOETJF3k<1;b<t>BIgiUbT!{p^dA$Kl+TiWQUzk;R>H&uF
z2aLDy?~3I;z$;VOEp%~FZ<}qTGBp?$6^`S@gU*;8r#sD^Qnvet)lmlMq(db!Fz)2*
z0Mr%rW{(<j#ciO?gFa5m`^PI-2gH-$JZx*GL&AO8I(zgKOIyEn8r)nqLKw2wf_>6h
z5H*r}32Qxc*+rMtW8%GX6?lA=kXf8v2{KhhvYfgetT?x?3aQK0&|I?Fs#h>Peo%sb
z1&nO6Sm)wF4<VgfBaE_lMyJ<c-<ERSr!&Z?+@Sxg?5(pnd37k=)uV8{6l#i-AP8Yq
z6=U4%y0Y@Sfca+fWw!xbFwki9ZG2x-)a^79vF~b=U8KAaDXcNIGxHVZcrI5<@i*W9
zJn?YtM;4ua{B?`pedU-#q4>IL*;1F;{?WZk60GE*r6?<c1BwPTOZBZ(&U|)oRIh>2
z6}i_u%4`ZMi8aZ(lwe?n`{G?wpB0)lXFv~Btlpk3nKG1f5e;@1)IDLjj?s#S=h04V
zjLR&OCf5nVPi1p!cMPVN@rlYoJDM_>ZSis8BW9?PWKz<<h-fbq!$U8c4$oZ-8pLV>
zrHw(R0hbsg>_H26`n-W1VVyuhwtZUd%Ui(A!caP4IP=?xM7Ny!pnRFL)oN*X9Ng3;
zoAb&xtewDiD8QT`9M;Uz;cy|{HS5zEGfA20bt;60uh{yWClJ#N{IJnV=!~^0ikSLL
zEsTZ8XhN{?L)htl!aPD{biZF2&OFpH1mvs7LNdgV)hv1yxD@v+XFFU<KkzCYbAGKK
z0`9_xZ8IQAM@bUZqCKknp=BV$DP)J^oo=vLLmZ`{h1q@gtBJuTw_#jSLf}9%#g-l!
z3gIt#7tIrgaY3uaa}$u-*dMZCm>SY`eqao-@X4sb`-;!G(TgyRi)qPpD`igdw!{bA
zA1*UImYg_&+R`2(s^MD!GF0Z=QVS21H$=avYs#6C6==Ng@DVHJ-Dx|x3-lPXB(EY%
zg;flSGeglL<Jlsp;=JYKX!^M$LPFoFLbq5GGBHkUer{IsQCd4>b5o9DfjIv*%Dl_R
zb)KbqIP2;*JuWiB%C6)3jjs-H6Wp^=a*}g$sE&|nya=;z)hw^@HUbBe++Kmo>7})9
z@;(F_x$&feg#o|@9kx77;x|!PztM931RH)oNwD>VSdmh9Z;hy*Lr;J1w0IjkCDK=?
zfi)<as#VKjDxrpdqxEs>U8<CjzUHGi^AoY2Z)qWH3d5=kBIE?9R*<wB@6oDky9Mm1
z|KLZ_M^WM@oev3z7l6TW7e^K9gAEqrx&GP<f9JU-(vP^Or$Wd#8a_*1guR*+s-Rdk
za%_EES459F!n4R%RRg4~jww$=epqPLUw`2)pD~at^@feOjh)ScsO|6yeoW%Ap_pMS
z(nc4@b(5}HX(O&2iKoO~YGTL)lbF#HZFHzMe;`WJ>G9Smk+=Uy|M5j}Exc@wMc|~7
z$lQGZq#4RRFL;J&JXaSSs9IQv-9&)^7qZC9VzX_GffQjoA>BgWAQkitiU?m-D<jJ?
zN47}Uaqt&N5z02MAxU2Ue^0-!Jp$?G24r=I84UrZV_?jBxwhE}AW)I{zw>|)ttMt3
z1W-m_yqP7hum}%29RTvad}m^~qyD7{+RYEI-uKB?u_|k$?#Y-S{D8GN9_L{AqXt%u
z#Ld$<(~&xJYjynlY~Z1;+hf!J3r-1dy0wo-&3laK;kg+g$Lf0dhr;kdPtz1$|1|eg
z;+m4}syqvbP~V>LmN|YO+;A4{5WuwX`n-)E`Oz$omYEc8<eGv*bst%N2ky9dxzos2
zF{>znPlx>oo!DbK?X9`SEii5yw?pNw@}bmgt0|IL|Bi|yjwRJK3i8^K!A=86O!oXX
zboTmg-%^dC8SINCnM4SOXtiH6aSP%8p5pn&sbm3cOhnThf4p2^4#c2>FuJOunMl+r
z2vM220&p$Et;jZ=@{m+!q+A%L{XBVFTznf((qb>XZcg6ZqQ>QAKjHi-;r#x_2?1b#
z8IfzPUB00vNG8b3+t^I_7jb6Sc!Ae9&D{9mp0{60db5Phk#!3z6yjEwY*^q16<lFV
zS7g?HRTP5JjP<cxm)su<VW6!a$1dq}yT!Id$!2Qfr5dYi)cq~rQ|ct+jh(pg=E;s!
zF8SII9r1h~>TVJj+}^^*?pVU)-#D2L-ow?j#8SkB(a9T%j;WUde&@0ZS<VteZE(o9
zGP#^cNKw6sJ(%DRv!OU>im`DWF&Ks|l37jfQJj6Z`)$zT!iDnjlWFPP_6H~%ib$6J
zZ>s`!dhs#LTZ`)l@E7;(;~?K*JNu`OFie~V`!$AF9O5CIhS?KgG+c0ev&-~b0GcC|
zXm@pk<G3xTeiBNsCg3qX>P0ZcvZBDoU=8<gES+3{)$jVw{BsHNIMB`ds6VA!R_vZq
z3?Hh6^cu8)Gx{;xzry#b8hok;jMfVS3%fW`$=gHgg!H>PYyNHeAPg^>V|cRii$Xh}
z&*{*fn%OR*5dbj%#WX?$C{lKDJHbin$HLMxyv_n{WYi*H!@S;fKIBk<TgGZ-nr-Rm
zB!ogu>XRE?9abqgiRKGb3g|V+kv%<1@-~uABx#_fEtrA&fmLI@tzA5uNwYZXQ3W~>
z3sBQo?5CZ3f1st(sZ#g$cyWCaq-waptk=xzF7)X})P}lRFn`8U%L2Y^RXKADT~U+;
z&v}c>OY|GBu>@qc6nq<S+1a+Tr}3IjwFp!7$0FU)DJpJ_wl{8>PkHF)q)8|yD~IC&
zZdpSw_@fNulr-NiZ*59D7Vsr0MWuQF4YLV5#I0jm(!)9WgFfd)*&?>tbtm8>wSLA|
zlv^$)l1fk2jaVpTVd4yz+E>c{9*1Q8Wpw!185%kEoSOG%RFd5b@any$g#3(>4EQ}w
zb%&)~-I8Rbj2ey`4p(Q|J{w#MatW54O~Nf8UCG-^da4W^^;ymO@J>XU8X?P438rvH
z?CY9^w-V^Pg|TiP-q*mx4^6u_y6~`uutC^BWn(oT2m|J}=E1~bXM??)3ZN9RuO7g=
zgbV}FF99_Nj@w&-1ELo@sH^Vfx6KXDNx~a5ovwXE>#IgC{BX}wIRr0@69(MEpY(nZ
zXM`*(*E9bvI8ChnyV5}M`36Ha<K6X!v-pg8WO6X^BLa0kxjn>>xMeVB-Vp>2($g3`
zoqfmZ5#uT5SxWldfuSVpD)+c4UC|QlfUjN*H6X39Q*CGaD@_7cR9XkN6PH4pYroIL
z%Ji~c+1l`l)B8?ZFPT2Z;xau0RX)&@>}^Jxc4C~SR973`&3yJ3mt!ipT?w!HGX&}H
z@i<BDp{7oz4WhXHFa7q1#eYRu@dj+2vozHGXVkB?f<G-@Zhv^G^2S?Tf{MhSiC!Kl
zvz%M{S`8qVQnKK<2iZB%%~l6cb9CZ3xYd#^0~%!%cM0o+!noF_?X@ticBz+ODIom7
z>ej6198m6HU)8-8B!nMSa@Yc^TRPU!&-1z$d<e(8?~93p7CYJ<#(O|V+Q`^9;3_#7
zf~Pk`a)F$^OaO4}j+*R17Oz@rw}^zPuU_nWp|Jd<Csz5--clQwxeM@jV-fr4=5#WW
zOqmbXhfH$Hp{uto6stPa@d46NO^Y@e6rf*cvS}BO+wg9g{MMLo+yd+C%|fI?|0pNs
zV7iJI2QrH^WMVzjsRUiRtVHzz7SX{;&w)Z<fHf!onip@#gl(2G>VokWp=~d0K}<bl
z6JMM(2RTY7evvQOWMz`FIgB^-6z#KIA7&9HS6qgRaY`Wm=1wt1PuQ42x-s})?m`i8
z@f*h1(8_qKNSVrQp(NM;|M-yO^?7a<)&t5mq*wkrPwoDinyrs#XqW@XJ>kYczRz0}
zIbH_1x;vaCR1*!LWrNfe<$;BtbjJuFy(P71;yoefidEb~u+UDL9#DbA(uYE?Y^&KD
zw~vQSi_}b+v7EWsyj013EAK?yM#Li)96aHJa0{-@Wkm$;=0a51ANtBt2@d++UxeLx
zfrE}!p=cruQHr`PEsIV7kzm3`j^jACY7Z&NW!=bUh`Bcq*jldRvCEpsqt5O<!twh6
zPFfxfdfY4~sNU`N9wd~n6@~#eS<m)43nu?FXKyi07L&v)rgR#zQQgi&M8;_WbMd>)
zppfmi*sWa9BOIu^1vmq%6J>LFK?uNdn!Wok$ama=@n=4LUz>1Yn<2~A_!`HU@T}}S
zy-W>M3usB_mJt7Kpb{fWrt2G!6`3l3c80Al4}b!wQUE1uH1!h=ncRItTPMi6I103|
z(}zdfk94`xO~des?+8yLeH*lt)lY>6dv0)1ME$X}TXyh0rE1Y^Y(ZM(2>x#H5!#U&
z9dG1&0I%Uc3~7cyjGVH<s({e#tdFY>N;7Dz@}tFCc%%QJ3#TUUm1^qV@K55s1}$bG
z=1&}qx-bc3adpldo(+%rHCvgbVy!9~lppRGE85!d7!(}Ti9XXhOzc9?UzZf4_nK`=
zjg@-`$~91{O<rx~b`M`yKh+Vb`$K@)=Cm`6#3JHkt$lp?Kl?3zOaIg|;i6wlTv(26
zY%yQlYTpX~(pV@4Qk`%Fz-~u9&(o_Y*O1GrNA;a0doX6wN91EPpGzA;4#bjD=z={+
z?yjEWPo<u=?Gs<Rj0RPiu2>&Cpaann$$qKjDYqmn6al5YFOT>$N970;FDgxIaBG|4
z-`$Qy=?ghKs`#3<oP9V4R|0JX_pfdlD6Oi?TnU&I0e@VqjiuTcT-_}rW~}sv=?^|C
zGHCeJS`9T4M!*Pr8G8uy_0qsd-H#S$&Y5+ws|*_w%0Fg;p_VaOp&!F%A@f|tASS`R
zDR8fKXq{j8mOA!Ao~A#`;Z(e+qX%H=h7`-bXGM(*3U0~fHG~^=n^h$O`CNzwP5Sm#
zp(2KT7aPN^WdOob79Wu-fmDRwA@qLT&~no1pI_j@og?;AJe!hU8K0*i?B#r1C$6kN
zA!!iPNqqAttkYd>X?yXD*3es7naSBb$Z!QUEHa~*8Bn!85<V?czX%ebzwlo5f*nvd
zAH>mf6-aJKL8D4LpDj5N6@rO9$jh;TS3+M_Jwu1O$;`^M-3gE%(BDT>!voaf3SC-U
zgRIH)$nz57?3>xBU=L3tEESo$ZzbXribG;Vmg+L~kBe~tprrvDq>S(pYZZF)4E`OY
zFb@04^i*ia`39_XHWTu{6BrPau0$j$LV9gk&cCLQ&JAP~xV7TGh0`QUCXgb}w{%ev
z7_Q19=N<p58A5MCd#|>wfxm&U3=Pcjz!BG+s9Z<IFe(?DtR)t<eWIzRmAgg0p%4?>
zj=FfvT>q1OUP%#~8Z$Sjy<nCpE<~9|lFP`MTqXiCA)jhG!y$kAvK008X-$w0tElV~
zMaZU5U&xE9j0>N@mDT0*J3E%y*k>=WyXF32@h{$m1YMsNLN=hbK*+I!Y6ThN^+P|4
zp<KQl!UbgoFcFwjA)!)xfwRE~|G6%LkSSU(Uu}Zs(I>ebaSZ16lJH~H5u}<~xR$Bs
zi*v{ZpPgjk^Lkp~U6TmT<uOxB7TmQrp;B`7+rq{PS#eaRQ5Ou4xo+n-ScMlF0s`ew
z-ygWVM!j-tBo_%!&%E}ELenAknCB@{QmLM@I}hA+>*8GCQ`}Z(UxZ&z_h`2-oItv-
z{Sk5eM|Wr;4zlv$u0FT&78EMWsECuzR|J(gd83GkHNmIe93mIS$k}r*GbfGogvMmX
z6%9qQt5(l1G9LSiAV(TYZuP9N)z*&+F`&v)`z0Any7R<|f?Qumx%fi}zdbm1Y3W?e
z|6B0@ughe>5n|jW@@Vkw+&=;|mPU&^;+PWlH|)Dl(P^3J_ZNYx3YudF>k0n!(A87R
z^hEx^)@N_O9sdBN?*cd*t5%pPApHqh^RLrGK1Dn0lxId6Zi^I&Ox&?io*(gKY^vy4
z^0*3c`VNo^=2O|+JOCA-nGdL@u;cB@H@$dssBN8BY*V4*Jk~a^iUeYHHsQpXfNw=+
zXrYc4O_Hy-ljGT#5#0LbS^BDEnJC%!v18JIXYWCNl6aZx1c=Grwi2sI>gPMlwN%wR
zw6%Ie51)TKYtc;Ij2KK<W%AIgo@Y{V3(BF8aOh5^JOA_4#t<r?XJ0Ex*ymILeb?PF
zw}Na9YaT=0D8IdWkvXRP{4>(Fel+1h)q3QUE5PLU!a=R#48VW`xDQ{Ok546lg^M@8
zM14F+CP1>$8(*w&$8*^dSfITn=a8idp#`I=*|{IQ1Klgr;rw4uLG2D%0{9@hbXq#@
zO!wb|+MX-OMKg?_8<vPu)_PCRW*ImEaA6wO)hzf3Wc<1FhoAIg<K5De&SJTGUpMb^
zQQkOu7i8a0!_!Rroz8oz#cM@nh{y)WbZJONlS2k&9EX6s9@wMFqF7s}X_41Kw9<d~
z=BsK29I;Zt;fN$VX~KPfs{()N2@r`lDL4!!JWRDXv~+y0sIHW|I36EftS}UBr9fW5
zt;6fk6K2<Dq3nu@s(pygpV;vByDsLkv;l6O&hmzRoj~)a8L5h5+`FE35~B{*{k2{E
z1UXRS8X_W#4A!bJ`P6!5P7p3*vZKNWKNn#*Si_S#tTfr3qmpg5|Bc&R|B_v*H6^RQ
z!5#Ul4;OJ&4>}<r81?i(Hlsm#F>Nlv%iD*dO;Nw+0t?H(RtP2GPr0HGXx%zGg@TKB
zSaLSb7G#jzM+)n_a!jd{GM#{YVRPzB39tRuN`MjB?`7*~#9gWY5<wt@Y|)2rxhR!8
zTnsImeCOC9Hfyn_$C6@}+;1&-==ub2Fc!ZGhB8X@3alxuPeL4nEVn~caWo(NJwI9@
zUB4S;c61J8iRCS^C!sG|8*zb#F+_h)*HOSK$r51dkT*);HVqm8#!TmhG%7@}a4^o@
z6RMe3f6dKON3%PmDIr+Z$z2NvrZD_9W|y|2=MbS`q4wE%3@KZocG{T*3y((3IK*$_
zVl%j#U`%itZ%IF|4HXeG7l~5B(}p{C@nN#!0X=6#%31C<ksze;^hkfBW`}47F-y%N
z#o1T!@S-L!${~lPh^U<fnA=ppRa}?iuh>mYCnnFq#b$EY8RFe1COs3G0^G2GlJf8t
zNTtThwe2H&C+r#t7Jmc2moEuS58r8v<H@pYoa-}f0aoR~#9<H<Qs+VCEp}28;&*%T
zlfI5saZ`7$f*nV0sbSsdRSV&ZtPn^Ks!mQ?3R-E0X9DR1aS}~jse5f?Ua7|WiyQ{I
z)&_uq_xZ*;#(#LERvWoo^($|`OS9K%Y|q3;u}6){c6&sHfEkU<Zh~n6A^);4kv&RF
zV|#v*DKLe;u78{Jgm%UF6<<#2-d)dNB3u(wenll6q?jM(;edV{>-y9qcPDOTGBg(p
zhU$kToK_oR+uwAJD<HO;E><Z<)f>PtNrD|pva&@{4H14<rzZ;5a7T+8oN1?0?b1f8
zT%{)JFU}fYXOMsyw}%MUHB|pK_{xapzoEjo8A=U;`ZQV~#BkWro;DbY=HyBF2U)ZN
zT^V$V^k~U$9&AOuI@RNO3RaBY^U`jC*(mebP))>CA{2K=TEYPeMS}|M0u6NL4WN6e
zQb{rvinNi4{s9+>2-85ANIxZ%xK<mhB%kmmsHH3nXo@2MrWO`V=<H5<ypV$vz(CKw
zZmTxJ30QMQ2+dD>J)0SnBWo`$b+RB%JKm7Yov?$ErP=a|-6GA9iA}OD?7DqUR40hZ
z<irHKS}C(b$1CKqnMii-vn1{mrV(Ke_5d~<E(iWbdLYc^XO$(_!tKub0BuWa{`Q~|
z)}SVbsu6R?CDc;(`Q6&2j9>*{R)5`Rrr11kIsX?zgqMfA*s&Dv_99f^sQqlTFw1bE
zR>5QF_HoQt5_6D^Xbe=K1a=arC7rb!T7p3{RXS_raWA39*rX3MKK)I|@z$6i;7fWw
zm%_7Zujt1uH^%ei=V}1+fbQMc?}KH@fJDex0duK*dDY@XX)|!)-@u@4NWq3m8%`mA
z!DQYs9jsp)ke-?Y3zAtM`owU8nP)}X1t`nOF)ktcU<M6`M><{-dI^kf%H*-r7RP#9
z0NU^Cir<Mv{;Ox=i*%x*d0DD#E%R|*9qRwbo8uhxW!tlGfm)DI?aCVim20V87v1Pt
zy>cONw<93XqHnX2*Y*B#t6QZZG~PI0l@J9a`+}o2+;PK`{Urb$ipgQQB71M|z04s?
zhBfvf%@J@E6wBdC3A|&_wn9~k;!2#mjDhb%KFTlt2Lm`Gyu7x+dJvI=T{gP^SZJs9
z%ohF7({Z_|GT$5g6$ogugHy6gN^z@xf8Ejwa9z>|V&a@fL{mROljAcw&m??lt)p~H
zOt3~pwqT1!^+t(3`q+efeLr^<dt*wjoXnonO$r>5mt`8kypPyZY7a}N|C9u19A#+E
z76b-lrKf|?6-a}0u@u}}-(d=9wrA6N?hyn?JanB}>E7n(IStkJ?6$fxzAgrC;125M
z{F)=3CISr{GIMoRNoPG5`4E$2LcsS8#N3a!@*_{*R<HgV3&_(nZW_o?K@ak+V6dez
zzVTaiuTrrR2iKFZ$$Vl3KLN>-5+VB)`yMDH`AxC)rb>1g3**%6Sq77XO_j8tGcXNB
zY0;X@M8qBsYRse^qcRt^V7yCf5kGMUjA(}M3mAa4g{@sHWCBE^&y)y&dDh_0+RqP!
z;Q8h>-dbEO9%u(?D54^h?}RJA{BrdXy#3nAFddWt02AW@s11P42qXX4@NS;i7MVv^
zP`QzCTqo-W2M$+an89pxMW5=v-m;f3?>CsCBm|-O1%Fu|>QI#U((B<8<4pp%Skwa*
zV(U|YYk%0z8nDm?Q-D%;&0(2=kksw$#YGDYJp1n1bW<*of#m!^o}z;e{tfVf)L&RJ
z7d@$UX1Aq3)}M*TlHOob*jhZxuSpg?6K45@;}sA82X<g<1KVU{t%bLzl^Q<j%f~W-
zFRki!5}#C4r09KIQY5??-iQu}$z%ZWA;#9I=t^fHvOF>q|J0cieSsm&+MbpygNYRm
z6nv;@^nXmisNUFnx3cfKR`Kjw6kOL7d!Gq6pAu0gLYo=xtXhTOHtLL=p~&=FO@UyW
z`>7Xej!fhHs8a85OI9626Uwjvm28mv^@xR=ZZe2BYtIE;`5x!z;>{@utU-m<9A}KZ
zL(e!x?*lb92J_spZ}mHlATi3OEtl)1GxZB!Lf>4+-7!Z<??I+Yj=e*EJ<RvU1lrfY
zRT=T@i+>jnleGC!K=og{?Zw~B<$f~=bt%!hfQO8<!W&s9-;#=gT}rf)n!%YcrwT@>
zJg{J^%dDdCxj(i5ZQh_hTW&m#>1y@D*IVG#4WG#pT|f5j+AktH;gut}kl41*qMkgH
z=uhmphtn#gj(Hekx#^&DA8+l-qiU~12W!F|>fe*GXpT_wd6p%F%(Bn>F)FM3S^@W<
z2D4a9*JqiL$>7hJNc0P#)?M)KbY>fUK`zt(glJHF)tY4kDV{cY6_44UHE%EAqwWB;
z3~iyq?vww1hk!V6W~$r;<ft+FA;yOK$bom)=Y#rU9Eb6{iJ|ILCjJ7E4-d#8qMs7Y
zrb}$`S1NdwTheL>yxwVeA(tOWJv5WUYeC-UjKWE7j5<5HJ~Dxf{PX5X=WJs3>U!zc
zkb8VzeB=#Xs9f-1*N#UsBBggF(f*>l;IuvuI0w?DlJU59xp{z&4OPb2`ppy?<(G?Y
zT5-8-laNq-B(M<@6?X@ozTs#iC69ZbxkOk}c_GOd`^VfX2o;dZ*j{aunw<&?a;c{u
zQ9#K~Vm#^P<2hwez+F7h90C#885M5&WgyMU@b6TfkX7rhqFz-1rG|aKz5RJhd*g+>
z_B9Jmw8ms+wx}sTo<skQT3CD)uIcv0I#|@N2ZEew$q<;KkW;02RKIcBJ5iuE1F^v?
z&U)C6>}4<zb-NB*@~60+y@t!J;-XTU^V<RMy2N{a11RsJ4OTn7xy19x=NQyMA=6C$
zReP{To5@{Nx(#%B%2SCOjhk?6A3^+WxDs_y>~jVu@UZ6jh>)aWaJ^0P>uTm;mq*+W
zxa5_}Z&kyq!kt{%lY@-u`R<~BPf0k^AcB<zyKcljuXhp4DWaNI`}Lt}#=Qd-uUM72
za6f8Wm^Ymi)qUOUL#H8ou0qe@bg5LT$1l%mK1V|vp77;_p2fn2ir8(xJ)&5F8O!Jb
zNANHN8IT){`#5h*1%uIUUAMrOW30|5@rtY!8h+2?Yo1mRSQi35-rv4f+Ku9zw(LrU
z7-Qx_hbF|Z*Je0O92*Q9v?Vi4$YHu6xN}eYg#6OafKv!vd{94Qgh#&jF5~f>ooXVQ
z0_Lg_?oQr7D`(GsMn3$o-&`L@d*bcK*j~Kf)gKHYwy6t*n+g^xwH;aIWV2H*pu=3Q
zOa^D%%+y-uBseL${&y1syH5}?j|CVsCON+ugUeOM8PBPL%3H}Fl&+Q?0FlN6!SO3H
zA^irXTtC3#j3=fd;Aj8L3ja9AQ1T87r|^8e--?e&Qo&zI_ToX;`OMrW3Lo}~uj0eN
zAt5Hc=xZOifeMJ7mRdRiy*@k%0mx4Dl`^BSw_msV9yw|wSw~4`)y#$kAUE-tyGKz;
ze@=B=_#~Wr?A3~5(N4H&?P$jx%8eyJYMT6)(Qw%2!OrsG+Z4wt&1B_J6>_scnTLEx
z-rR-E^Mf2m!Zaa^J2IcN+6|X*4<fcNMUJ4N*2sj*f!ki$2mn4M)vR9qtsI*TtzQ@u
zaI&#O6pH9;=vPxYgQu~x-+<yKIh;1?YYn*%K5q=SMob=;6zoM?d77BrfrETFl;^dm
zKBGtpvY3>YAm-~pIqbi$#bx+G$VR7LO(L%%rSGtzLTDp9qtaDWS$SSAX550`K{P6J
ziHHTJLWl8I73{27n1pOl=emWLMU#ZkyDwB0OSdL~nXqSeb<nj|8e~!CZ!(8<r-Qp_
zWTa^wzJWQ9g@6BKO}0Mn8v)L2K=ZJxR6d;>Cj?V+ReR8Juf{{atorwM^IQ=Dg`c-J
zc)bQFRtu6mX8r%lx$<WLReIC$Smy2I^OEhxQh7vFQBl(crjwrkmxT?&zlZ&``4$L(
z@Dpr06nkozJkixa^2?ARyHzeH25VK33}l8&ikVoBXrUf1QIIpAe(X&+C)b)%=2`F`
zzI*C-oXxM4m?|?_-G-5)(PN}XMYI@_y=YajQH(moDq{zxd?WC&vWWFPu~!1*+1J-U
z>CCfXudj)8xuvN{CGPuxz-7d-$&>K9QqGbhs#}uv=Svc{lY|x=Z2^C<I9WtCI^_VV
z%Z*=&Z*}+>qW~+48&&Y{IX%&@8h&Uf)z3L;BX8&Rg|uY#0aA2vhr}--_Q5K^8;jmi
zc7LsPrA{|k2Aaw73j*v2wA)ut?(3cRdJ!?z+Wgq`0Q>Knlxq)nW+$tCH@_}WfQt(0
z4Jh!_3WKarNVsG<>UBV|M<(NF?BMvEj~2B0>oJRD0fEcbgv<e|d_nljUF7cJQXAIP
zjjjn~7k;zsvbc~uc|n@9FmChcY-Ln$f;jpS2DZdNA^jPe<IY^U$gxvV6z}vT_*98^
z_JNJvJ!94?*Ek?Y54^0wC^E8TFE3EvI~b2Z6XEwr0-LS%`SI%Ssu^7dDp_AP<np66
zeR_&Q?xLsEVYU1I&qQ+^{CTs(7QcEg;N_M(u9`^v(0<;2;ul+*1}42+>s4-}pRGUt
zs{zVWN4b2^5E`T<;cBZQ<hgzmuZf&<XPJ<*SP6<pd{RTP$a(Sw@jHFBf$zs)yWuh0
zEy}1~FS5zS+U*9w%@m|F@9-v~AC7=i&!DGGvyg!;Xj(jMXxsnK81H85q6I^#mTQW`
zd{e1#YSul<gwI7iE&2JSYV8>q;F}|*7n%^!SFm4%<%XY}lG*K^XfgD?-Akj6f2F`I
z3ITt9+uX+Y?+G-2>3`4E=9%=`3)2ih=O)?D{&@9Ww@2{Is)ry@G5Tq|>YZrcccN|S
zl*6-OkR2~$=Ja#Ic81Ar+!uukAYo_j4wmMt{jd<eMumUxUw%oT<+Aeu@Tt%3hsGUn
zfhi^zk8~4rk(l@_4YwW)Lh`b}2ko0e^xSPRklI5q6!m6~viE6Ap}&g{6&)W8&q`85
zzO3#vV~U4N;yA|2W<m;U*O6{Fs344VxF%#Fm=xppdI_^u0JoTH+88J0rkiB+#&h6(
zyQe#LTz+sG<Mm!ikWC;|5^7|$sDl4m8A;^?ZJICd=;#ff(@LA8$@lGe&h&Qn8|B}U
zTOa=E92pMz>qEj)6Y3lKzEw4g%^WUt<;f5%{*9RHstLJnCq_zh$5bRT-INKvP5l!C
z37Wq9U7+MhcgH~hA-LIM8#2ycTr(?Mm$8F5h>v5q-s2YSQ`QcOLsueuI*bA2zy73Q
zDYAE14!i6RkooBpX;z$SIz?wO8p-3!TB@w!KMBA&dYF{s+Z9r9JM_kcvJ1I4s|M?O
zG3i&`iq>3<^pHT;M=AIOrm`AKp7rAGC}_WBuq5LQ+0)Zl7T?*6d6YubPhT)KI{?GC
zhh-C-!crNW%ZyeR4XX9kkbgJ`QW!BEa^xrHU@9ge6~&<K3*yjdkTlx;Y8*v9Z6Uch
zRgl-`UbgU5J+SqyXc-{)U}Nj8npQfn_epD2<3@+GVymACe$lK-xG*V?k`YJ7R|pRr
z4hB!14CX_(C*>>tW!OjDE)@Z>0W~^^*p~f}>BXUDHiWh57~~>h;vO=9h$X)0N>(bZ
z-q3hNf@|m@(1P*O)gl6m%6*#^RHAhm_c9Hsaw&SL7!+z=(7e29YVVX|8Y~PE$qv^Z
zy}OHDkA4q{{k%Qm1myYUd(L3sk`Ke{5mo_@%^}Pr0f^yw_dS%0e_@s;up|51&3MH8
zerTTt#yGt*P{%!|&XW2hZqcV%Ki{wD!h?T$#E*w1x07@GiDrD93Q5P+2a*hokc;Hb
z5QQ)}2gPRXoQBtg7%r&+on#Fg95KKVFV#EYS%eBIElqs)EIp{OkswoGkit*&7Em1p
zQHzr_`W-bP8llweQ%|y{`-w{Z)zm?4;?HaPTu&B*DtyuJ(8g!P7q8*s<ZJ|kW}1@c
z&uz{1co({y;%h51|7l_~uJsI!3>s4Xpn$ND%0!xb3bV4}2eRr0J!Uy9LL~Uz>kd)2
z{0dJQT`~d;&%|+z^y$ZypBlE-2x%#e<Ut(SQiPiMcAhn0aGYE8ftbJ*Gi#Cff5ubk
zcaz<Z3Pzut6#rKrOLYKlmEKXXaAjHl0m=MFg|18$Akwm=9DrYuPw9rHR#M$wn`0qQ
znMmJmB@zDo5(ogV_J0rO*G_7{fFP!H6E*XZI6sSC5;^GB$LBZ4*b2wHQsqFrc#8P3
z%n;wyf3{3h8l>$l7~4J!Vp3qSz-lw6;Fu+Q5vB(&TSt=z)26Ujp^E#ZZT7;LccfTD
z1Wg%CKW3dwh>TxZQF*t>iAkybRX;sp0rIho-LC~lMEjw>btfYBMVMPar1k(d|8xo;
zP1FrhyYUbAambR3qT#B!4jf-hg4oMWBwLwCLaCyePJ1}t5@w5#h7ySvZJ~D*sF%-@
zlEezU-lFxbO8kW6pYXXcid`CzyhpA0BBMR?#I!<iK|DzfE%>=B*mJ25z|xx;nCSR_
zWuQXd+PM`w+QOMct60oCXx|^IiXK^O$t+~{2*1G#qgDxgls>9m5)#R1-3j=Q@-)nw
zI7?Y9n3r~>3Y|@K*_l8D$38o*x8Xvt8~4Qj2baMZx(;E$IYLo7$dr;|&P!5h`>e;m
zQt1P074+*fvsB6;cxF-Ae}O@(d2!_5fx64XvgV(EG0q0RUMQ&AlALtObM`=1<4#$%
zPDd6FyfBJ2KSG&U$3<)rNGM5i9&UL*Hz<-<rM@b~)S=}V{wbnD4UdM85;@`|^DX@T
zLXAjR_~h<y(rWfPAccoDVV7={dT_??cDn>xaLTO~v56U9c!81qZL{wvU3AOx>?_{o
zgMTlN=cCA5c(LJI8|J|l?plq>;VB<*7OV~m0l~hwu4h2%{2Ea~?Hi5W-fZB{p>hX)
zTp@GihaKLflld5uH{hYvoA_OIy)`|PhXVEv6bNezb^OI^D{M2YQXy01$>eSXyg%f<
z1-&ZEM{~8Zu;t2q^v5XrJCBH-!C=;oOVE>^DhEb;_g_wS%XcwVQq&c4WT1u|q`ras
zo&(jP2<>u_?I}2J@G<wL<ML)o*AC+<(J7_|9#vHqEzl%og#o%15c}NOiZ|BoHyt{x
zIEtvkzjhk87q5R5YM3J&z;R}t5J{nhCUTeYVcEjp22-U_AuaE54>V%`nXpcewRbQ3
zTUvl8hewnmS2f3O;YSnkuP@`_^k+S$BydK|33!!cFD9YDDhvSd-<}DSyjRNqspE8S
zZblO`D@*3`Hk+U8vt?So>qQw=GlqI$WqD0Jxy8u+mjaaxpe3??M;=wWkT}QuoQoTC
zdTs{@cBa-Xx|?a`KJGo?(IaI}hMJZ#gX7Pzmm!?j@{%22V=gmln=uiGiQehiA(HLR
z&(ljyciniwx4Bf(lSFvw(0)qOc|FMJ;WlSmkPB*ZzBO15TV+ot;Va`%TkdCbopdhr
zhq(e7`w&)V!%gg^2_7o&n9TR)Dzs}qaU}Ogg`8A~(e^*ijHMGF%@2eY;}kqSy$Bh0
z`pOyjX<7ORXVO?yYy3sI+~H(ZyXSHLhD@OtXV*3dkl}kwJYwK3Tyn8U8>A+vqP^|!
zww|0bT^8SQOB$ucc4_nGXi<GetaZ^D!~j1)z`r4DjhemG5cOG%L?)f?G)^)d30MR`
zU|(Q6TKW?3V{n)>8NV?8rv~uc+w_bP21stMr`3cyVWAnHI?Y-*75R(?X$R3GEH-?r
zq{?7zmiX3gEM&{@eP)s0-2<*;!>rx<LBZoFj9R{98xHdPNgu-KQQH(Nicg^P{09My
z%F5@AXcS)h`l7LV=o^|>z8i^{#sRqnt;=V?*m*A7cyrxRCpLAj_BkgXaJD6jv4pEK
zUqJ)n#8Ay2lyj$l0bT(Tqn@9=(#;%=0r~sCQcu05UV%K?<Nx_I$>Kds9KvRrA33(U
zBwoyNv)L#TJR;EP0V7p%LIuV#z&PB3x6ECJXmWwh!#v^=ih%!&j92D7ZD)+zT{8jI
z+2)&t)5`7&HFFy~VDO#n6k^kS^3w4prI$_4DTC1shR91-jTJLCdDOv(KE&<+t=iPL
z&Q~e3XC&goZ^X5x5KFCOizHE`(Oyi3S>{WNv#sbUW|}jngY6vu0KDltC+``ISRL?R
z=4az%pEJu;!me%d90F$DGy@%xvuGE~q);L7>|;h|;^vp<+X-E=nSJNXHmtlhgmN2S
zKtO&TuD?`w7E1FxWN+$7{KiLqE>WKzwxbq@lnlMbloTX4uCn;^1^KfOzpZS1N$(v;
z)r=QuYvmtwy7!KeHRu&U*nB{gwKW-jQ5EcB@ow(#!_nXX0EROm;5GwbL0{~7b24)j
zdCtFsC=b8P;$da7`Z|!IT{bD!cW{hVc>XdA{VuAKxfo`gB#%dwE?sr5@xS$XH@Ibx
ze5{s*zm5_jNa>=YOx+=z<QR4S`da2Th)%TAfybz)VpeFF*L(4=$E;T#TBy$%h>Fzw
zTU80R=6sG^uqpWQj(NAS=UGO2!FVk7<gbipIaKZ&>J+TB#5YY<uHyn}cSDNx-@QKd
zo?rjoE;qE%(a_xK(fM9dV|ONAsOonhWH5x4hCBa=nQ^_3WKrfDn&5d!`tN4y<(O^-
zO^0L+ClR}5(g4t!?`cxP$PWDf{Ng+afUop;bkSgrIFzUSl*~Mg$D!@J{bME5s>#4p
z<9r7)-CItT#USLxTmMIA)9-5>7P$<pX4c&-^VgL<aY?q=DHKxd<Eg3ja4_IB5^wEF
zdyOaTh*QeqxY~Q~fl`8%;R(WtACM^c<HRG9<H*po2&|y%cMno*QEaCo`A2C037{eq
z=~AA&+?JK>hG|U)Fm-#6gr_G$vpDI4w>*%TV#*`?x^mNT+gE=puf@6clPWLGhwysH
zn;3z3D&*Iye0OR^Wdq-@t2~<}*>M3-uBb<h-Tlcxq4Yqp85>J;!3dN=3HwSO<hFKs
zWX~)ODsc;GVLDhl?Xy#EaK+JVVjtjI^h^@nl%;J$;K}<es`=lo|NlAgzzRSqqSMU`
z1%{v1-YUF}s`a3nj;Ru#c6atL$c#oLpbRj_)+KV*cjHRl9g|g5WKB&SI;Eh?zc6Ac
z*kz|b@Ei2z-M_Fg#9r2mQ$f;Bojv+&uGGE;(8p=>{pY!<=SgzNJUQB<SWm-+z9K3U
z7DJ&nE%sx;@l2c<{Cwd0vYbPxjCyy_wjLQd$<2S)@wE20v%o_*_n8hX3Ev{OR@uLt
z6I{q~M7a^yu=z^t=j^oZeV(rRVWOse^{zD&8qxVFSJe1nDP6MJ1<4jx;6$*<{1a+_
zj=zHeg@O(Wi$M(F1kspfEkTgIPjpBbb!2j9m$WCR9*_CXt|J{x`tlK`!~}opqh!n#
z+{Oz!1Z|1Vt&tRc3TTabrfh5gM7q7Y)caP1Ut?(v*o!d|d2c)Vm_o)BwRPyJkeduq
zz~VZK(ZLtA5^}^w6dat)De>_;)It7%*rwC~Jv`gH5|{P}tx6F4TYTHIWZdGOn!z3q
zmZ{Fioy!#7eygy-E>1T%<kXeN?SzOn76wQ|2Zw=h0;Q(eC;r@@n>i)JSgGp3ODgUE
z_wjx2pm<dIW}!+}q+VNUY|CgKe$|TZ=IJE0lh`y&d?HBWP)=3<;)Ji8W@P3V6W2ru
zWNU+GR99}F{I_a}A<zH4S$<PlKneQ%*9{7g`VAJVXboT*^7QSB`9@!;W0SyKU@vRs
z!;|SEHjgI9o|UgdIl5{CoK141sl}&K?7(S_5a*FTKN&-2f13<3%nu4hVus@p31L?f
zhGIh&4*q=2?bPUc@{t!IHd>e($K<3r5m?^XZhy28Q3KlzC`#dJr|_um@*QLzq_XDQ
z?SrhTJ=}*kDw51TXvY&AJT}-n!B>~iLo^F<)8Y@ZHn0Li#2xSl>eBAgJChyyGaZC#
z4a--VEvgN0(mku(`Y5hx*YGo_do_P%m@L}|{mr=T@PFQ-<g-g?;bEGMY7ORxtAZWG
zU@MN3>IK|4j5GnUJo#i_0UxXC{K1WYs}-quu-U-(eW;6J%P={PNpHQWGo@;HDYqS6
ztJxli%^(obP;7^Uf1jYjgdKLiEY-B*0!Lak5#e<e8;Td$es?TthKM2-*2aLH)h7af
zNxy#A+s0`WLUU8gc0G+!IjbkHd+~LxSg_rc*%)o|$<}lsFHv&G8dJCh|ESJ9sCT3l
zUE~MzCPj@>tHlO_<qe+t8|SK7wrrSPi$`7F$PHke_FpdpSt#4&MgYFIB>yJ(9WDu(
zbB&HiGj;j{@NT)vCluAf#8lF6vK=9~VTF57CMf567wsW1Qfo1nx$^k!U&CQOB?7>e
zG!fUfOFj@DcxhmaE?)%C5xSH22y9;JkzEvTiUHGL)i*-o$XelRc%J-6%XDZPj8I&V
ze2mCBKoEF@PeC0(EzbM8)fl_-$7P)?%~MWn1_KRz;3o&Xe6F6%&Dp1EHXX&oCrF3x
zvknh92eGE*ci8s?*H7)Tq`Ct_&R}oEN%ov9JcQ3m7DtkT%*y?cZ;vT<dbH%05E^};
zh-+-L*8s9{=ZxZWyuFoW%J;UgcEe7y!0DCI$5T=7{L`p?<}>_(O%q=Kn<A<FkZF}a
z-_Y0RG&-l2(i1HJu2-71jE>fDvu=*4@oM8J+NA$!&|va5fwRZ&*M@_K`D@!4f8`5%
z4wBpS0-{6FKiG$hkZxfK1@ls_<tm`Sd_3(Ft5|-Dm*K+6#OX?rT<?*Mesyy(6<R$;
z_Vw0iz+{7Os!#p;Y)UQF<s8p873u!LsS}+M`j5}wTJ~#_dsmA4yx`~yeb*sOTSt)z
zbo_DZh`eG709ZLY*;Ua05$|kuDeii9a3aEgQ6~2_-ZZnn<aZztoRUFa8;|WDJ&O7!
z0QUJ6U<?IU#JE*m$|G*jVL^S<sG#4^Lr9X1aIuU~`8KVJcVq$a-+Q%sXL74J8D=$a
zJ}obcw@)4Z;ra$qQPE|PX*eY)8CaOPi!6%P__lWU`@P^$4zI1C<?d0|Ll5*sxJ`vq
z!dI^Kly-dYF|>@Fea*3Vf$c@sx04~qz$V9y47=d*z;0)?en3Jq;xW{?PR*X0*qUb=
zFKAsR0qDsflb59(P%x9RKx4;LvK@j?$jQ7kd2%NSykF^_HzAKB4o)7oR748UP1hAq
z0c|LDXYVJ&WJlDJI2M0_qwnl4M<%%_%%dIn=i8%f09DtN00GhnjTZ>^-_fohU#t=&
z@Z;ji*%s28BI&lwwr|x3|Fj#MoZ?|=(~OM!<;(qOYZn|jUkP|!NHk(e^xgBOq$9^Z
ziP*j#F_xxc2ZrskAhSR~^5)aEE8F7op05$|_I()alACb)u0m0ZY`ZB*GuQ>{xHxnF
z0Cw}8B6yls1rjl}kwgTDlgg^XNsd4(M0Hm@&+>>4)QvKX49<mmKAd3r<}pzwG)p24
z00s09t4|D?Vt8pV`na%06zu5*Uu4AjQ0=6cP#JME&&xKtAfnT9@JlUwEzykdFP4Ty
zGs47r{NGJ9sKJ)E;5t@)_mVK!GU5>$o*hBGbxR$5<+`perBW7-)vA5*I<}Pa%rVSM
zW;8r1gdZS>o~r~&suRe_A1#c<TD0~+VU{Fax@8`Kx*(bZv6*kacYu6992>n}-%Jj9
z2&(wZ<o$Z;s$$H}E6^d=tsB0h6gz5Ubo@>QRPRxiD(*qJ-i2Vzzm)^I$%`Y)LQ0F_
zLHe8Sk!oZWK*w*R;ORLV<#qt-!(!R;7O_mo!O1x%OmHd9Y&7Vd0PBL}gEeN=&5`Rm
zk)EU&VDR=-0k^)zg(>=DN5%S)7n%@F|Gg4b_5a$bK=|Lu{}&F(tHYdOPqD{21PmQ5
z6F)Tf*&Tl0ea8~}u$nUJsGM5)rwJ6|cy-Pi0?+#%_>@$*_n6MX7SO=j0kDM>xtud!
z{C&2@^}s1tmbK-nb2Fsu2qdMW`n5DYB63@ENX9i^pd+F2rzp0yGMVo_F9D}zq=qOM
z0NYj)-$UoCJbDn!SKF>j9G&agLA5|k4Xzt~hX@PY2YVgL+#BuY(O}BXT!-@+xJ{gO
zY=)CN=@YckS9V}>>i5%G)<zX<P||ypE!U|J|Mg^pP;0ba1&@bk3IOQ?-`{8fP8Xuy
zE}1l=(*}%G)2sw{V?<X{qDhnq!OkgVzXj)hp<ed2`^CjBolF|X$>}{(9**(~n~l(f
z6det0CgS&RgW{8$pZ$`HW=@X?g6Dta!VN9n*+07wLS{l8P0av{U)<c9eENpX`%GsQ
zWq0vON1*Nhv`J_Lt|GX)Dp3o3jA2S4&p<Am^<+V9?#YueuyRZbo1-wA3UKZ*T-(B>
zCrYa2cxm4%;Y?)7QzzGSB*(OC)q>x3RFnJ83U*!7T`0PzY2zRy!XJcDs!5AR^Q%(Y
z{+685u`jV)O$BUwZ%cF4P1qG#UQa66*g>7e^JjR3$5z4$<B}<lVK(2{kMmQOfgtQs
ztH<fD)6ga~Q@ysopN9oCBZ1pAFpwt-qMQ;5Ua{ZCCGsXMPRaW==(~L<D0(H_mB4s7
zAi%64kc%daHjspBu<|~eu8buKFFg%Ak9YWx=J*fA&yE~kX=i}*eDNGmFB)4u@PO8B
zQWT3VA~=Aivrrkem;u#f{7g)Tgx&q{6_v8E0T-hBnj9g#dy^$zt=u?X<ed*8k?ir+
z9xER9U_RboJ;Ji>?waxbLrfC`9&tiHC%$p!;8Sp{<Rsus4b+HiKvBWi2G1IFS}8z0
zS-6MZ4g|j+R?D*u71;_hPY0Z^M>k54j{Ch`sdtkaK!dY4+?wJp_${+ZM+_$F$1Qb!
zW;IId(SZkmWYv~JDp%wYsUl-tfQKli^m(dNWuS>MOH%h#ly2svcF(=5{jnU7I?=ad
zTj{S~MfFKxk^=;h9rGsrvV1(SU;Ock6$e6-Sztddh$|g6-ve4=_pBxG-N>z4$GJ8a
zTPAVvZi%l{oDuF6+1#%n8Fp7NDJAG-Dl~x-)19c1X!AwdnJHND<ivbPkFQz%Y5^f{
z55>y+Q%k0hlLHzN&&s<}(#86rPbhobvhUfcvY3*BU5o*H@owjrwUorpd8?a34aEt6
z!o5p##TYX2xjsx%O6=-BGS$;e7IM8{6fjY(MUmLYHhv2Y)>lj+_Sb71TY|Xnu)Ot&
zP@3kMiBu$_aMSbpj!$k-b*<OL7n{E}z+isS{PYPDpsM^79pxQJ|ILVY%@_JIUZ+O`
zAPw%~8dF1<%MgQ3n1R*$JRA&Y*gH)y(GV1GI??scGC*7Y`5{1UBU!8t=swBwSySKW
z>(gNt(=)_#m^{wg24ou|!bN2aD<vL1+@8@eYjpCo_{H+`PV}lvHKdyp`+un6?_kuI
zqi=M~MkVQpjLwb{+|>AF6^_P(!Hg;Ft40x!Q0q67&XsF+0M*pDOBoer{ZeB?oYSwI
zw#H+XXQr>gaCt5bho)ma$hGZlRz-OaPza*oVPgmg&nf458^mOkM;fypnTDs<4(|z(
zr<GxI{W}^p0qxZeho6Rc0NF!vP5&=)=-_uWzBD2@e%5QA{O5+e7<$ARx1E_*S{Ibi
zExBhTuqN0*`eX?gZx-HJLHPaP6C(n@!Caw5pO^L5#UYppGC7L>Z_o?Trz;<RS6}Z;
z4VWz6o?eH;pvRXsvhKAz8BS6fa##uG{t3>^e`kjB<X`#RU+r-ZO?v5Gpe@R_&bYgg
z{ZPWq=<0t5SNZ^KlsT_lVa5@k?nEY+Dcc9anF%s~-<JH5pBmr49cjq+f}jX9YPAXR
z`_}mp6~e8jKTp?69U^Su1Gd_gUwQ_r&rteSdxw%3&&AU`Q_>)j#C|5DK~+cAC0F+Q
zIP`vtWK0J0fKoKjy}n&-9Q3yT!nKx%1dJJ1elN?{bA0rR3*7&07}ZiRvIP?wS3yNA
zlhmJ5>_3s77Y%(U6cU8xMMU!MIif#K*L6QuPuckl2fQq2=cX2Wit-gpv*Va~b|?$G
zhuur5m#6d03OJwCau*fTm3u(vp)Q{TggRQ-IJ!*IYt`>740-hD*&wvP+6;IYY&5a~
zZ*)B5u(+<f8XL{Yo}~a*uhDz_CEW|tuaeKwZwJ?v%Xs7I4Q)_#$qO1Yp9VRsH46Z2
zUz8cckEs~C4Rqu~K@JyI*LjHp>mefk=Pdl4xavg_SqyC=SqShp4WgM?J?+tvjjnkE
zwmNdO_k&%;GzQ6Aff2Wp7pJYA*fD0!Q%_I6vUqD#W})!NH)^DA%u77i1Hf~X{+(Ce
zd_^?l__cQ@X`i3+d+#{Io*Er2tJsL6kgM2(IGTdXV~AJdB(iFK8IMkInEce(l+Ef)
z-#v*;whRdPhh%!f0{kt;Z;4c~K%dgl#lJ6STzEy^b!}%<vp=8K_KOLMWY2S!jjFRO
zFHAw`oP?FVr{qc!UVYkaQla&h=k!1HNvon@{6C|$r8A~o?SZutkpl~O^-+eRWn#~B
z88a|uDUHG$qoB`3Y)(1}O;t$}kcguonzls<r-8IA9GlHT#mY*6N<<RK`WopRl#IH|
zSk4ljOY+r<22eA4inQD9lIjCQa%)6##{lAq7l7lG)XM8o5_ACojw>+$mLNc3(ah5p
z)JV(waO)LhRcB}<XKFX20HX}eIwrm8GXI)QNiobrTi)%diq9IuUeb&P)nv<|FE1n~
zLlCSHnGbuTfuNC^(dt$VM*{yrX7*BHb&rjl=g=O~5bV_AWwbQ3_H?G+fq(Sz91&85
zTpTX`9P0iIKyL6^=;x%xm*!u}aZpHXs?hH+R8AGtaP4=Ksf7WP%x)I)25Amq?J}RS
zR!$+fJxD#i*VpJ;K!iDW7MjC6KTY9X_M0Vb7)1?qs*x@5@Mjm+A~vj~5H_R-AJea~
zF|?Qz@L-~y@qKZpvH-6XUcQl7(_Japt^?{FzQW{e(R1FbewpmNRZg%3mrS0y#hoCg
zmzMz87>nyEe5%2E3M;6}2T&819an^@Q*Xc_o*3=<V<RFk;O@jsry5ja<l%T&Q{Wf@
z{(=tE^^Xc(N)6_7$UR#4Td;=(zBlt9!I3|xp>Y5J0|GY<UxIZN+aiaQwnTixQ@J_|
zLDBI2$2)#*XE)r*!DieM_Y;xW$O-K&c!n)5j)(uCt4L4ynIXhBCz@FS)6~P-M^Uyy
zB*;Da2ppCs$qJJxh~KCIflv@yb$xsS&?f0#^bqiO>s{QF1=Q^?l%e$9n`@qe&%EoB
zvCh9!8hswIR*`e80B1@*GP`0D+xm=lL-94yiiVvf*EUyTfLn-kI^UR}xj=;;oVd2s
z$q<a+ErcSzj<<k@kfXlp9+fhtTFTK0Jx*DVVl={U0-ikyVUHKbkfKE}{6$;m?Q`SD
z?zI{NZq$`*9Jx|{N3a_f4|^kBBejqnl1;d%BGenPCOy}J(V@bgh(;R(0mngT;I6^;
zPhCMgKTSx$qj&{&SeJ|MBU02V5cetrBPX3m$hPv73(#LJ@l9prH=?i1p)1t16^m+n
zna3#B3A8p?U|`QS$4Qj12NVhPksaw7gwy4cQ%@I2J{Q;FGU>o@_vPs}$=ugpLXNhX
zSxs_jpm+^JWH280c7~%0WcM#TkNXMv=m4{PD=3T;^)R&IQI)oGv+eM?TUU|(?Mx)N
zQFXAlH0w1gg!4f`nIX`=k#y_3Le<k-2up)_s&zG3M(yK({4^X)_tGSae6M=WG?t|*
zaN1v|HI}P)o%6K9iWB^RZX(4&a0g>3)1(Xgy<^xafv&l7qgPhJG1^2B!iQfH$@Cub
z_!TQpM#uuPfm4srroItYAn88HCo5W4H~rehN<Wuj4zNnt>R&}@nGFx5K3L_twL}78
z3;6#i<1j!uvM&<)^7?|}<5sBu!ISCrL=V^ApY);MuS>sdAfv3_m?46i3ueBtGoyTu
z(+EnNAnk2Uh!}SpLojf1^yCSwU*SJDm$;@R{4U$es;F8&co!V4L7TvwYHd^dk2<1b
zwSY$2Ek;E{P?y2bLG<|06Yw78xJUdf#yjki^bV>F5Le3Jg$t`V7*3qkk6w#Qhccu;
zY{_#vN=1M^I}h)pec4k<Ct6FcOi+q|L}hKm5pgg&v(QE!@=D#U*^WfaMAFUplBIC_
zby~z5X@K4xF5*s(k~x|&Qi|uOcbkfT+ZSNH=AU_uEcj1QleQ%e{DSDlU0j){PFgUC
z9fyQyn;m<44mq;-YT%~;O|oxIHN?udn)dnp%%W;$0M)Cv{m6a`wyl7o#?!+l_6~+3
z28F^>l$|eSt0*cuz_N~L+Gc(f|Gf_ZH1}xZ4FrlyR)^C9jhaL07feC37CN*t^E|QE
z>}#Tel%UNVNH25?*@A8_GHp#4UTZYq!Pjg>g)qT>n=ikG{BAP<?M`MY{5}zR%{`wj
zSR(aH12sx|a?sWzOJl1(J?fHi4pjXk<z^UHO}@-&2-IKqO}m5XWUJIo2JXE3%sfHO
zEq#2&?APx@ML=L-Bd~v<IX>b_P;Q?OK7&+<I<=}qaTpVh*_WQ{V!jq($UoEK2FP1b
zsm{1iFD>+hCF~3=<qf##bYHc8Mdhd)iP={WvtiDf7I`E<-~*U~UUy}Bds!QfQR>|q
zc2(4ff{TX+(ZoJe6%peXHqv&crK#zE7l{F91SKGQqO@VNVPTeL!{?9c5QHk};0-~T
z!e1`q@<l6uq3%oP;V`CJm@I=RM7*O6K*BO<-9k~JR)K-$StOMhX|ltqqgY_hqD&`h
zj8hO@Vi04yFi@lNi|*6;u+jI_SB7{`RX35z;~~0l4MZbRN6+FG^A=h#cvcZQ{?RpY
z{&|YGMG%HX%`rgyH|yIOxcuCwtN8&h+YqL2jfx?|r1@vZSmjYA!mr4gK)A;0vdS)}
zrcX#U)p(bS6Sq*LH^~zZ%yd}_<m9{t&hP)L22kV_EonJkTB#Sr=-Vz1$Wh5zFPqaI
z^A3-JYXWRhR<JL%UoKpMKmRQ_Tb1Hh-_mz^PQ^}M#)#4y>z168+=E|W$--C)sTBGG
zV+uiJB`Gl#*CAd3<#O$l-GfthBm_VMnPVc6?;d-gtdm6U5imHr%_TX(HObxpu4Q&l
z24Ng7Jd|@?^f14*1H}^bBhx;HxAYkj*dy_Te_s#<p80fzqYxtok5?VjV|iwrzEfU?
z)!P=@|HRXg+}9#7<zBH~r`$@VrL}qMtJtL&X(J#urxaMCxw!K?I?<q+-PnfcXx)^w
zFjo3~zEIINGz7rCmEM5lIhZN_9m4{PrOcsD2uSbH$sx8ehgu0eivI=;d@<E5$pj<b
zXKLqT<v%!DUU9SFIxRN=$?Q<kh2QqrPc{QN<QnQ?F-oat<;!V|YuKTTzA+Hf8O`8Y
zHEI1$)zKCY4;~6QOrint%qH||LR~?y3Xsss^MNVx3OtNsr(GTgpkaZY<5x@~`)whe
zRP?b%xzc`<sIRe}PjHK&U9#tayv{p+UW~(uB<vgVg^=~)A3yhE5boq|%J28*ZP<3o
zRNCbHc`h~t_h!3omxRlwviixzVDUYL%Gi2OEDk-*7`30u9(G1IC#_T!4t4FOM-RMx
z!!+KDl*8bzVbsDn2TNTdQowywW%mt}noW1aLpR_YVd!^@7`vI~e8104dMP~nvaUvT
z4{gdtLe)0g^CA6TIc{SvFwvQ<6g&$2t-0l{7+a;TF!UnK!P^FS_=VrgWJ)v^fK=AX
zW~wiQ*23IH8AG5<opRaoW^GN26zKj^gF!|oog`PVLp@S69`NcnX)>bp@Fsf9$b?Ot
zQm-N6wnIoTPGb1?Ey-owS0~eN2t_z^$W;7$4?@O=4I?w}`HO>GvmW8ag;`t?p83&3
zwfpY0s6Smagi8F5B{W17+ig$;Q>|ZK(>XH<3+Pd-WMtocSI9&SM4|Dza@>;d(j4<6
z@XHI1?#&D`UXutJMWk2Vc6BR6KGDWN$_oJzoZIlX-Z!Ga%PI28*9E?XgugutG2gn>
zibD|Od{YvFnh8Ag_)0%mCJNQ7Rl=U&&OmPT&5G%^pO>ik<FION2rYIQ|J!1QOs{*y
zZ|H5-9Vir$MHk+c|6!zrgC?A#UYhSVxh|mmwOVfcZN9dAtwGN5R8R^oVI<ylviiq?
zWl<QmOFL9VUo&#JtTU?S{&1k}Y=*CA14A1_0|0oS-a*lDKZeoDevSIq!XZ<TcK<W^
z6fo0f+`VJEvcii2$rXO<zRP|QMPG{}Fw`ctRYnmN=oG9J0uY&JLY=y;Y<3<PPzO?q
zGhkINUdW>eE8l8ni?Ph+>d^1RZSc9%=Be3=#7@PhnH9k}1P~(`k>1esWo4gCl}`(+
zkntpCeuxe@e21Bi9f)FOC$AuF*u8Ha{!fN)XOs-?dG{u$=n%X{FQ!x(-R&luNvOV8
z2o%8XlJmGV7e~5nMDSNtS}}Tvk<wrHv^&@}j3CCIICv6d57kk}(s%9klsl)o_8svC
zF167rWy->UWD?8Kuxi8L84TgYWn3W$S<02zA_rIDrceZ)hE*kXK-|=GSAh8etyq5>
zQuC4=!BYgy@ZaITGXJ_6LQz$&%&cW2p%h@SWQr<cKnyehf=`SAJkmFkwLJIps5hMX
zjolfy%5K%^?ms3k5Xp!w_g<IS{?6sx(=uIy0kNo3gN;8V$lhr^-wC+T1^4emPZd4g
z|1RHr0D<vBMbzFHi%b1mCs4Dn-K+p(u-{kbc*r+2LqLSqc;U#3`;rUz7j;#Ofip@@
z!RKv!R#75hjsb4D(=z|Ql~NjT$Y(_d)QhTj;A!=LS64Je-%Vq$z~+&vym5(Jw(yYy
znLX;7MtfZr(hLf^WzxQd3&I3KiJWAkqs$3;;Nl_2Vt7BDPu2U%gsa@Enx)gF2Ygh*
z()a8FLUW3Rks!qj1=ZWV<{S;bO6prMMRF6*JE1>6c#1Dy8VY^hwlhd8AZ|O3m<3b&
z@*G-D!-`pN8f?D?f2W=(PA%zJv9Q^>#*P_EQ5AyAk1{VU`cb2DvEpR5y4JI@*4#jS
zG_X7BFF+d+v(4eoma*1l<dGxP_0C@whf(upIpt#`Wo^izf5|1}DV1W8-btL9sQyAO
zSvUit&~YY+iv>|HiiTF^96noKMogAr#4$*BLF@6l0gFto)u-J_(fAG-DXyxW42qmi
z>U7<GB)Is;)ohE8ZPEju=XFohQcYolKq~d><j0B>rr*BZlh1PjY^!lg?0)qs*to1J
z_%;R5TZ1`beaDHWbaXCckL~;P0>#vV8(cnBL0Ye}!PJF|zoS5LpD4VEn3qV57?$oi
zj0;kI$?5yA9wM&wZHFc*h18Hs!x_0GBKpYfX>xEJgFFr$m`QbYvssYcxkBd_QWC6A
z18S1xFl%x3YTxvSqJiwqX>uJ6={jp;B&+TJUYM?gX6FPf%X7FNe=`Vv;8V72If`~4
z-Lc6t25G!!eNE=QP-VJG8)M~cygL?`L!OALkz~bT{9Uo@(=n;D$GFc^*eYL{s*G9>
zrHo(qX$Xjb@8!Ekpo#zB0JKDai0H3-J{CIiThkz9O0Sw6S^iux>{7_{73NQVjWxnt
zB4o*XL3cyWCRT}nZX}4vj$LdBre!<zQ#aF^Z=%8(!N0f|h{xA{Orbq%utTLH2HiKR
zw_q9|vyJjU8N_-QV82=<Pyat?BU7|{B4Emkf`!fv>34!0@}iezGsu#`2<?lr@q}F~
zq{-zGwwa&lGGG4sg(_!<zvMz*%vuN4j~z)lx^<HcAMa{#SvHEKjp+BOq?Ttgj~Yl@
z2n?sbQe<VOB;i%z+)V!=C-C$`Z-Ib(+&~j-VsgzuwO{j$AC6aAVUWkkZ4h24@7;3P
z6#8|uNrHhMMa=Dj&BJkJ@y%##7rVT3Rz=yjL*|eJy^-7(c9am3thKI6Has+Ot=fM}
zQ~yEkIy{qwZG<t&hOHb(8*baZI8|f9L8(;abeZu7a$d%p<s6h?TVk+a+Vvb9Zz_5~
z@3wtR!jb^o1EoMRk?!D3+8A%~Prpm}9-%|4@sn__9Y{(Xw*OY2*QR`3ry$H_XDwf9
zk4hve&EH)t7i*{<`AkE=sK<SR=P3@@93WD%=G+@4^sY$k_w!YHzbGgvW{qIHY>nh=
z8ZTs#^RJ4V>rO)ZrH`EYb<x<e+*p3Yz#>S(p$Qv0$^50C$aWAX#FgCh_lhO~P`E&r
zSHSJ=S~hbvUc55QowQD09p0+OA8K5~-D%xeF3(T^AK}ghbt8|u+k#(U#PCEz1XgSd
z8>@GWyH(PppI9h5aRZKspk4>JiG7wv#CVdZ>-SR^--69Eqid+3g0mKC5W`f<%V)>E
zhsj;8y}@fNH;HoP1>xQ)tSnHc!MYRE+d&(I^6!)6y3;?e%IY}O5@<x!pE6)Dtb=qj
z_>e1%*5(3})CckHx&|pdM$BAWE0+@?){1;6Q>8iaj8*+;)+xb+);)Pl)O2u_s6g6O
z<*;YE$5Ndv@$g9oR-EF+m{Cd2To=_Fk}7x??X4OuETl_`(AAttqdKuK*T=0<@oJMV
z5Ce7Cx}ut|tK3BMi<hj2JJFyI^rsQs7H~-404<>V4Pb9(3|0{uG5=bEG80%|+m?!v
z@^admA(%VLtaS3aITU^^2}(<)WYI<%rrKX+N^FlxV0xIV*%bXR*$<p@JouG5HfH=V
zWe#G@=hKD;A>(mEp*-DtTn9)9wBbgZbU>GFSO?5ZCvomc<p{KTwP7gf*j6$#SE|mE
z&9J_%g8b85@2;v=?rLfa-ztRg{*g5I07cC^-|qFuz(4t3);_NJ$0%EXk7HDYtqSq}
zC%nhOwRDDWXohi{S_ED(pOO2;suU!1(+PU&_g4~s=co~$Kln7~iRcJ<+0M?Xl#4i~
zgcI$j7h1#r*p@p1BEN*4d+z@=LovJ)-Au342-sn?XQNki<VSYi-Px+Q*sQP+LWteh
zz4Nh#eEq?PO79h0F7-^kuYl`J+4y7RERSH5FpV>c+}?z77H??{?;DL0Wja*i`U!NX
zJSys}_qcWYKL(_SmH|6?(K|k89{B^h?bI8HQFZ*Ys=?#{j7&4Q!Rz+fa(!p1<c(iB
zaK&%{v0sunoWBOZuzhP3UAlSQ&a%*pV)EU3u*vz6sJe}KhK?MZ2WyDPF%Idd_2%gS
zd;XSrbSXfi+=X<(gquW_%jB&hBUCr!IfL>6<8ZFD7{s&)^lUUIRuhVrVuJAQHq~u>
z&1IOU<7{avCg6s>N|mwAHmXX>Y|zYL3A|=QqA_DQ@7frV5ZF&c?DfvuYH;FiS4%bn
zzB#MhD#jR6tp&5`-rkT2w`*w(D$14De;j+DmiVs{n`IVc+02Bf4(41Q8wwK~f#ZLz
zlo(x8J4fIA459~l;{3yh@;&dZftglGcxb5ou%cS*Mo!B%>5q_dglku`Jw(a{vY)EX
z=7up3Nx<r1%!Zx7zEHHdfnkQ=+h-pbmabkTiTuN%h)l%m;MmSp&w8SK8Hx=?gBfIe
zT@caZnWmtDk!+H@sj_`e*_B%@OcI&Z;G$nUcN0HHUqE31F5RX?G;RGA{P<mD6B$R(
zM(NLnrX0ErG1IK#E&TD_O1&UFR(B|Cf;-QylWc4hL<a*`rtmagx-brMoJi2E#HM7+
zCOU(^pXQE4cdsFzLGvSgZuc$`k4RcO^fHOeGY^+mvH(`e??buVuSDTFVu{u?KoU?a
zbI?K79-;E-hpf+AWv>oZEH<X=#_KZO^L-Rkyc|MvOc<Ocm}Ad!wNRyFIUDX7R7E1n
zTwXRxW>cb0?p%?+puSg3uwK8oa0K0D%SkOL*}$1}UCdl9U#pOY%Ag8Z=%5FOThjIL
zLlp3P(ROq&$u1l!&!#D5*yZ6v5peVaB3}eOh?W)1!$mVCy_+12_?2k-4lELgIv`Jg
zdV&r67#6dJoKCZ8IKO0w(<bVnWz5V{i;xG)4`nxlEK6GN<*dOLKbo?CX1pj@{(CP9
zX0o{nLGFC6s)d1NyhcGN(IVp)pB0jptI5%`hm6Q0b3IC0%vs9XbR8^1Squ<=*~Vw}
zVazi}+L_P^_92v(|MAVZD068ZLnND}t(CiM)}<b33yTuCz9>jBue6?y2PF8U;*@Xc
zyYCTg>U6S=K3O8ECKK+9hF>t+34p6QN1@t83a2a!w36(Rcf@+5A8Xv4ae<+mYON;D
z$FUX$qfAJr4Wbc*_ZF%Z`Q_rJ*=&92(~FbimFpyDYb5(dv(R%*qV$kkJ($*TGbXMq
zkbU7G?+lY&w#%hsq1*C6pPHLxmwvfm2nqyUK_SSYw|sGK=FbA1((P<GcfYaT7}D41
z4fPRb&}EFgYA;(@|J}#FDdjHANNR+%x4%ft5kV=AotI8nJY~$99KWzfmme1xKlvoD
zAX_qNr>dHk7P$0R(q<Vc2xhH!Cc~#^?6!^MWJ%YwtG-XQQ1vI|Ma_U^KbH|zKKHn?
zI1u%kC#UjVL_R^66_%o+iIhv|=DRG(*JRiq(FxXekz)A%pRwv~gDQ%qsI$}TV~ZUl
zf~^%GM`KKOjpAD$2p7|?-rMjM7BidYWNevVUU?&_e^r)cTMirPCt-}uZ4dUnq}e`>
zL6>IXP%TVz$WU$8$X~Hp>pN6QFx$^w>tfnc@^$lG%(`B%zS|%5&(JP{$GH6iZPg+3
z8nM2zGquqGbqi0-c(ZlT20RGb3Y3kP)X`WUm+>rf26VI~JW6Z2SV;<1VcfN(Frz=-
zu5%IBe<`9asWs`P`0WfuNv)4nxbi}Pn@w+M@eMLBkfF3jE296B^dT3@09P*?JcBSq
z#cP(IOeZhBZ_Dq7vukz{jU&3%8c0!ryNw;x4V_w2E=QDd&r*wg_nOx+(%2w?o}S}6
z;&wI2SrgNTzetCFgF-Du^1K0>f<#9o|3t@wZr;9eJf1p+T_S8~G&AHo1^I@$9@c=b
zc;O5~>_zQ4@p;-Z#<|}jr<K|HuI!nWA78+ytEcL8Y6Qs2G4}TcR{=@RdtETS;J2G(
z@Op^WdU$9?<86B*9&iX)tFTWUsw5xcL>&OW8GH8zw8*>dtE~2?3QsM=fn5%j<FlYm
zl1LE<)U2kvKd6lj-s!&eXQINhzDEcfZw0-p`iL1S22tt1_tXU>R(3LpSNVt2p#OS9
z99`kv4<4RCRij(tTXb#WPx9xYw<XXbg6I^5PR7GIo&sR}V$3VR;yvv)qlJJx-Gb_#
zMQ!BQsd}!(y}(5>AJF~&7RBccBd~cR<*d9;w`uQiYLfX8L6A#LpWv(kT>ah+1}Y#F
zm%ko}%cYh8_iSS1PhY(~c(v@RC_*)5=5Pl~XWcbQN5aTaAnPA46_)=*$DEBajl)hQ
zATIuM%&{XORy5-9Wxn-$<p%-O%y#krp#e*LDWVLN@!>^s@s#Ap9cHrI;vn+<l8whb
zOA4?QIF>VI?y|i^4dZuwIs8C_LaFh`FK;r>wejjOngjb2%Mza+boPRH=6*Zk#yPai
z+{#zEi!@TNUh;#A<Koq;?_y$~9tL?&+w&SO`}y`AcnEP6oiOfmrPxL37O2SHj)>g3
zaFUD*w<F0vVF5Fr_Y_R$GnlLd7wfl)fz)h%0KRE%JWtsTdP}7XJSAZ%E9eM^n&d_L
z-7-fG!^_QD!t7`T2-`9=$s_vS*~?I}r;cv<M>&$?g0isLA9%(g&QRQSL`{Sg`$gSt
z>27m<Wv@qG<*C)b?;llpiC*PWS@U#{R@%M+4%@$4b)l2`PB^W(<>z@GckZK(8!_ja
zVTAf$KAs7uzwsfQt(42xWSQXTuF+IbCV_VgG!HiiHCM=_qL+To{w~&6qPh;7$T47T
z$X094o86122DT52cdCu&p~3uuC1Pn>OW*k4sh4VGQ2CSt1j*b#<ja`)=jCXrZ#ha1
zTbk>5X0iPLphl7S;ROvz@}|Ng<2-l9o>V*8JET?0<0kIpmXTB4l+CSEZ%}Il*swAd
zsh{*IFA=~YIM<4KV2K_6_>6OfP==}-9vn)oq={USdfLC9nFvdhkm&g|s1LnbM8-Nl
zbVe2`I~8MP`QURTg9V*uRPOGF30H3SNzvla!aQ6{P^tv3Hw2iO9I#@&TTw~%#38_;
z6S_e^U=!>JM(xbY2-4_5ddfz9H?be{;(yO%(ve{o2i=Ov4=Fjzgr;xzJPd&O-@C$`
z!raBrBCW16*o@!khTLgsaomloh<DuF?l<jFR_i5R858A0;Jvnv3!p)LExKO{J9aRX
zJ^I>y3UpH9rF;);<A_g+63sZ=??>^DN+m@Iq2`a#P4J;}()24`Z7cYX<mu*)`5X<{
zM2g1()(a%7sS<ED$`^Vicy|FuDFJLA0sv7+0({4;rwA-bxWv-9B`_gk{IZ1gxTIX>
ze{DoMtF?m<%Nan@_jUf<38PKpw*l{l1x7=vxD4K*A0TUU%2vt!hHkUe%IdE)&MD2f
z+a2y1pY#yCBl>4W;bo1^RNj<mT3Z7vfk31^)|!XuB!vVGt&KL%CJ-wn3*G=P#_X76
z460q|YX_?{ui;z9gAa4~kr?C7>$^9)axJ>x$Sb3AM=t`Y(t<JsRg=Gj{6^Y}d}W&X
z3FkJ-S1!D)mFF3!=$1^TL@9_=w7o#~F!4I7&>L4k1Awp;RBb3?q(hJO@W(1sslnmA
z$-uwBW9apn18#7zKQsl%#gDxSb1CZ|pq6HXeZ8c$jR9^l=XoetV$SgeQ$dvftgO+=
z`_cXNfN+XR0jQR>-NTe5VXA34qq37x^r{gwYw_<9G2;47q{Ji7Jy{~?OT24G*N1my
zf^EJ?FEv!m`)>xt6Z&2R<cWjlz<9dE0~r3WaoBlxZ3>Il_u=<X^!(h%G%NJ%x83jA
zd+#fCF99!SK!>&9v}>foI^Ccw8&>e{BDPJcX8$7-6gKs_BToX{Pytsy9o0%Ey6X8y
zbpm|KZ!I8_NnHc#9(!zPQAENwDd$QL_V^jb(3J~NfxTl%694%_p6YTX@P&u{rO<Ud
zQCL_fZ_mrHk^+eF`_6Lj)oWrlml}2c!!`cuK{o>NEklCKh~V>@@cNBG9yO{)hFnL<
z@b7*v(SLkJgc(2=QU)Uv4yogJaM>DL=X<bw35YktKF;gwyT4~g(6Yr$zXr)=I=Y@F
zZK<YL;42i045<zG+UO#Atqc_{QmZdC*qeb54t5IOr&X(KiNJP+VFR!S-TQSz@oX*Y
z@fjzw7`!*bJpuy^!Xc5I?Vb>IH@s9YotM``1@U~np!Z$&*`~lvUbTBJ#a*l@j(W@0
z_O}bgl><_wtoVw|Sy<orapq5{swQe_`a~+Y7)Nu52}^@VP@fs8yS+ERNAkw<R#1QN
zksaygUnM&9wu&ia%XD0os3Vqm{I(w`++E35A$n`E7c7?+%M`X^(7OEM6(~CV<P!kx
zK8Co12Gsmvj}#oK2}$R_;H1%OG+B@P=F5H&4jpy(IK}zUmZm;*2y*kmd54v$mOpD(
z__kAjp(;7|-^Q*x=p#_hwkCcWBx}l++n?Se0N-IcQ>6^TI1V6Cu;M~pbJ-K=8t*qp
z;W_6+BHfsA%jV;8tEs5Q`5f{u3cbGLgkPJ;QZzQdwD*LEn%ibIF(GtM8(nP;%Maci
z@@|rk>Fv`xsj@(poU!nHAyKI>5Rm0;+=JY~_I4>Y7s2+G$5Y6bU!IQU-`jy={R)Y(
z?44fIxjx49c1?GfkbKIox9374p2)vVQVoZ?iCC%d<BPLc+r?+tZ`I2YCy0&Vh0Gm#
zi0b&Fb8n}JT$<Yi3k^-CP*PwI&>&#8oA8Y??WRYTJGJL{0O}kPZ~S%ZatTT-5cibT
znJ6_<nG}k-HsOEiX=FE3oo(cf_K`zio<oVCK6GXoMJ)AEEw6#-<ownd<_W30kJ)H3
z_Y!A|xO{oNr^;TmFSOqX+g-G(ukuZYC8K2WY?<Et@)6fgCpa{Y1)v=H#x*(_##a9n
zrfIfd&B72s=KZ2W8#`3`pR&5~nv?6P)v_0Frcz_c9)9@ge->m#9Bz<#qcc^O($xf5
z*#2;guC&`Qx7M{4N8Hv@sn3k~!5dI3<>3T6ia{i_m2|5J%6}t=+R$5Z04ZF`ynI>A
zkIq<XT1*+sy2<;YVu~^M&-M(D5uX)$RWFR#7Mh=6ScB{Hn-CYaAnmauzE;cUiC1>r
zQ0Az&7sl0!W~>~fy<Is0jmkj0q4>UbcsbblIF)J&8sc>bXKg*|?`?vw**-b06rGoV
zup)$4_U5Prss_x-N*~*har?dXCy+kqmS6H$xcDfaB)&c080%5L?Z!sUto#QdT9W9S
z^GyoIX3$0RKSbrPiy|`7F{fEnrIgWe6N3xFqzyGYzj&<|OPxwneOCI?u9JFM+0e6d
zyCGY-vqAfYjazLW9L0ka_;XqzerC^SX!~YJfdk0vko*Z|e<v81X5j*oOl<C#$H|jS
z+uw0#%|lcr8Qzmt$mjlWom_M}?<U7G|KQ)S5eBeU=hy}TWC@{F^H?6Cw<sAOs@V`v
zUPO%~p7>jZ%ok}0gE!wVV3bUXKc}>wb5!$!#elyV%9&TsW*hczGUZRtg=oWAc(JIF
zvsc(`!hWy2%_-U#ZpeFrf4kMn)hqA19e4(X+yL^Lw>aiN_qX0S=F-g0T8l%2H{oNj
z+%~^vc@lO0Xy47P(a<n-d#srnIFG+%;z2Q@gFWaGI%+MH=kEl2AJ`;=X%;$ZXb`ta
zT<CCVJY`PAHx{p_R})vo2>-lR#hH8KX|+u8{1%F>XR1n*Y6Vpk`jCz+A-G2dbLUT`
z&+7Kv5_MEqOY+yRCJI;Bri;h%2li>wFIAw2ZhGoB*eFayZ#-<Da{r}Ph`e%mny1QS
zf<!&hG_NigPxa>tBuu{{IQ?)|FQi-p<(qwQ^-R`hoQb_0)lBdL$x3?xUdLvd5f_WE
zpOrK@#b9cTKsZ6Wrd>V}OL_-wqX_MhuAVXvlH`}>r`k)~$S|J0@_txz9UvX80x~<!
z`A!buIXON|94Ws`oNPN=y^;IGZ$ph(0_tW<WL-;)V57_8iHzWqf8I4cZ?hsF`8f-B
z&%7bUb(WenVr?F>YLfDRj@QR%Z&hL`1ZV9yk&wcOf?$7d1jG1BO9ww#WT5=bdI5DH
z6g4$dq&g?A?UGRdeb}Icx3l&#HhM|5s66bVaw7R;?p+j-)xhitZ!`#1&JX4=TC5-L
zh9Ix0Htg8it+&tIY92Z1XsvweVY;{hhxx0+29dG2=%^LKq5n07gOsroq865*-iSaV
z_*DC#$0XA>MI^Ye9<IR5rZniaEZJ9oUByk_g|&c<GOS=fSNJskLbCo{m&pJlaqlZp
zdL$HwcSooH%>t&IGA6m|*xtrbk$yzVLEbVj_cd~^FdXAX<lnDJ@I0N(1}~ZNV_BjQ
zCGsC_ruXktA%JD9A<&oct@s}y5ac!#EP=Oy2%!=u(l4wY=`jt(q(OZOMw|@3A=9>;
z12N13)5=+2|0N)_U~x|#2Bd+*fQ>_a#I&jS!*?&1eTLvqet#EAvw_m#x7lQLi$yX!
zS2)3`P%8KhcnBU)>=`zZbnI7w%yS+c!JNpL`^o54ORn;pr^3$x{K)x&?MF=Hn`1R9
z+R7!sk6s*wDUw-h^<+NfZPq?~m7C|c9;>6-SsMWZ`43M%Il0^t-SM+H?75G)Brs`R
zF6&Fv<QmNCbCJ6nE4L&TN=uyI*K1<yL<IqV=2|C-^bf-ri)<U`>RX#>wqR=(gO8Uq
z<$+d;#`ay@E#^hplUo5sAV5Z)yse~xx7KcSvS@RQ+#8~lHrJrA?gbE_=%TOxhI$~p
zFPVM-D$9?K$IpTK?TPh4Fy7EH=q6Yodx3Rse%EDPf$NAoP)k(O>v7!xdcx~xtiDd>
z*!+`-Mpb$593`C+$UK-|qXB>x(L>q-s+Yu#JmSfKh@jWuZoUIdK-nEKJeCrY{p7p7
z(_t(eJqK9hwa;zQrcvpB@!$eHlnp_xe#u^(9T;$d!4B2Tcuw|^+uElI7nqc{d{E(}
zr%0!O%_@r0SFCYVQb4ZTEbZwS>AB>+s#_|D9cqgX;Q+1_Tds@C+WY0JHzNr5eqeop
zI@Q*aB988v;X6s;Fb14uasi|@TwReLfK~{wTkS=#_?t!JBs|3RDr#tTcqgO!MjIxv
z0b)T5f*3zSXA^CQ6lPXgLEs8>|ICTqz}}p11Q2}FP23U9GFJ5<ycZspq}2BPlV8oW
zVC?LUoBA0l+IN@(lr3Nh%CnZ|oLc%=u~UbY2w~C1pbV6uDOf}6Adb@FWg-QXH{4a9
z@@qO3pf0t%8iNvdQ#WWC+5_Vo0u3-o0r_H$h|+KB&{edp3%a}aCSrE%CQn{K*&4Xk
z4+vtz^x^~}+kni6hG~zozsssXrrU!_6hqXc9(p05OE{8Aw_#ZOJU<=nWU%-KMS4KH
zW=Acq1BycI8E#%FQ2O*fx!PNx9oiYeQD+6{1^SU)6$`tPV5lKECgf?C1Z9?Ff)v6(
zb^~U6XV#dY^3U`y_PC{^-%yMjWkbg7vo-`jicDZonfz60SWi$~0zIc=ZW1>4^h}*i
zhS4w5Ck4x!AlHyu+B|`23_N$_)S-!;sskMGif7FxYhSWWAn2i>w3u1=V2D-J3e;g+
z6cK0cTug}WI^R$+GRI_6Ml>V4U~sQNNX(**81xeW&92RtLDucj@36q6Vz`1TdX(`F
zE11kPkzk24cqNJfS&O(3g#p>coL%#S^si9l-)m%QKW}8KCNL3I_JDBz{%hMT;k%w!
z$HVOq{|KddIuH&Y^9jhFvWfXm)aWB0it*aB^Q9|&Dp5I2iMa1+d#~HO3JJ$G>8URn
zC;AIz+G3HiwNi4FxJxBM3;|zZf80ctr^{{_^w#~43bMN*^@P1G7gS@GL>Wx2{(c&@
z7bF@%1`0`J&NuA%rgYy9=q#zn&@@@x$*N|#({8F^DQ$KsvQ$0L+x96{89Uf3QJ9gd
zkULd4&9*n#qr^opiQ4b+^S@T^>#8aP(L=8&DW@;_R$1sJNZ}f18HOMPxgby5+BX0Q
zndwap6P9MtrnE9oOpob?w<|(}8zxhw&cF}_4#q*RUV5g-8A-cI)QC<FKA<#HC39Zs
zA|hB%vsn1DCicE*ce&q=_!GU-*G{p8(bb=H-#;Zst*)F~$&j;9Qs5coy~$k?4!Hse
zN>pC!_W~dq+0bJ>20IPqnt4cjoxF?dTbBtCHBa;Dq1C|3eIAWCS+(F{MQ*<|_D4X|
zBe6q42zL)K>{&@UQY|q|wnA$A+Yur?&hcx-{1zVCcEq^dbwv;%iwJ%9-QrT3<$4W^
zQC$n)ULeYlQKAL>_V7mIzKJO*#*oM8hR^kT1>a+`9F77rY%jo23v=&{sQ@!T%)hG>
z3PXdWp-z%UmXltHh8YjDb+LzbCk@xYp&zzt%9yDKjh#6#%@7mxFTyR6Lek=+K=glX
zO}0>)U*pd>liBCSsl&Q@eq@#OagTrgRvcZAS;Ao2g*1lnsFhK=gu3jDUNxTg|EmYw
zo}YoC&bCxcl&S3s1v-7i=RN<lWuwW=2vp6Q{E!qz3~!N@0&A-KJd~6eCBf3i0%jc*
z7@z(k9VK8SL>_w|1g%dPM@?0U0^GO01jE@NXD!srYu7qjuK4Hd10D(mS{HS{rF*w=
z`V*7F{*F!>VdTwy72gO-<D(5f#e_1}<W49>EbW`tZGf=SVep)Gx@+zZ)6wBtZORv;
z2Cw49NzZAr)jadOWzrGrPWUpswsv$)WeB@y*Jdnjuf9pP5?7rEn6)oVr$e)#+g8r5
zrnaiKM8R~Z5pILS=23QauA^-y*&OrT2i7D9WDyx04y{U(p6@2Y|1Dkyfnbe`l^A2!
zO&FBX{@~#_i|b+^ek~Dspf#jLThJABV9FJ<s2Nd`@o&D(uoc`dDm$#J1=A1-AWau1
zUqknP6q`_<R_limXqp?+CxrKnX4BF#)IF=lY^Z=bIAf1baVEVIh|_~n6jULRX(!Qm
ztJwe!n1CqS$mE$lY3e|bv7QoXB4E-jRrTAnH;m`dn9|uR6sJSdP9%$PTT4g=!5h0s
zo0lJ${rdzJQJvDYn*xKV+}u@AU=&F0Hr~xc&?L#st%e4-ga|gjR1`J;`pSx}d4D$1
zp`I=z|29^8*bqPq6(!YVA+~-h$|_`R|Id|!)}4Dct@2wMsg&|B>40ur@kih<ua_O$
zZ1`N(icDTTdOaGIGmqj~dRs@ygUWv(1-zCIw8sN(55;`%^PFs%baU(CETP$w!mI&B
zARU3&bxQ!gMgCtKv^b<(H{Dv<Qo`9#JBiV21!gSVqmFD&DB>_C{f-(@l6oBR*OtN-
zZ-|=l#JcN`Z|RHR7>Zoyq+C6%WaL9onBrt_ra+@UW<QckKrrJ};^5Bgxz4QkU!XSi
zU|a25RN63NHuUwn?$bOdkhs8unpUbi_TjX_i@LhWVQ?@>ovEIU!C+T-aIUq2m4pKw
zq5t|0r{Vac&Jwl0wvGx^%tkV+l9GAb0h1#O8WKk>q(}1ta_$c$jWYlxDt(C;ccI*)
z!c7q~#;K&fH&uh3Ki9~x8vl%)QfeL+J_LbEc05}&n~xsk<D|QEhnkeh!I%x=a~L{R
z0_^Bp9o!nqc`qHnmkTf2fd$^7KRH++E=B}CyRe>5>`PnDipBvdn7r&Hxj&%3zg6Bq
z+CA0dSwDrcyL2L(?B(2VNB>>{^?^Y6!~c8HMr8ZNYRudL1t^a=i@e8h#ccwhLvM_8
z;`oVDgGECRljbX-le^G7rXL{q1J?=9wMuWpTg}9I%G7!WyKX~B4Q*TB)cePut?MPK
zFvYjBY)1*na4AgP<GzU(W5=Ho5j@p#AFMuM_W5m;aC9GEEw;xz4P!=0JHEcV*90R#
ztnq1^hHyd}wHhUik0%RFHg+8i^*3y&2K=}0E%6&RpSfkHzn2#Uqs#2BCet?_1|r53
z{PYNvvQ*jD`3BK+I5V^SIDxzQ3}AeXIZ#3~xSo)2lm=LnWPq?r6A*8t3_;z9pKR{D
z;1QIT;gDUcS?6JT3vsZ9oN+iWL#0xLFyV+>BnP3r!?2W<35DouER=XzT*!rGk0#4s
z=+1>;>H-?(dAP`)T4RBe^Ohb%nl3s%YyS=rklV%sSp&=bo8h;qm*kJkQe6xIpthm?
z8kfG$-%kFr!#4lQF@13vbkBHNW}15wImyoBmI*B^kRSa8FUUF!nPWl&DDGgtc)*)1
z0dSmgvNa%7Zs;n4$0P8Q0gCho%BS-<mwG6h4+yzjHdN95BqQ;K+(P03dWAJ%;O!}r
zQG0Vob`mb3JH=hHm?qKLiNIjxk|0b{y?f@|^6dSWg<k0H@9gcfTbO#aHm0G&t+i#4
z6vbm$INPc}dEUdc?RF!zR~>fYxM;N}80y;RyL~!&9H0>roy%#{?G1=Qs)ZtyvfJxU
z6vtSGkC%sC%@IEkAJqKI*un=$P$*1%TGOK@M&Upsl)#=1F}1GN+Do^j$5oHx5Q_P6
zCgxhgHgmbD_oh0d=u^i6mASF*UwtbG54k5Q(2~Q<mFxeUcdzaF9&3uGkoOSzRP_IF
z=Ak=+>rP^3Tjv0*lo$on){Z${p*;|92}-l2YG?}LrPS=fgq%F*;`Y%$kpcV_`cV{S
zUX?xxY>G^7XcO!A6p(|A;FG=4mP|bjDJQj%1)_%Xx8`b~rvTaNjG%sTtzD&>+tLU1
zjnL}O4RF7JUpN5GFCQ*g&si>kF5BmGf-Xf(CZSC~`uth^T%>Jq3-yG4Eq||pX(4;!
zb3Yx$77QAmg}mtP-k+G|u}^l!5sr*2X__Ifd2XNB5S%W*#>}@eW>9?4973+%5H$ZJ
zJK@5qz5tBO6&5g;%Pn$5@DWVb=rVL|{n-Ah)B{tNQ0lEd%?&!K)v0EwN%Mt;+8o$&
zV#OZ6ZTQXt!*5bow0vdS9<$7eo0pxvkGCkO37e0X6ePvYl-7`4ocO$UK*~I@90-00
z66&Z9qKN%iMdhgh3ViekV0~k-n&~lR*wwOvxPDZ&NUHI|0nO9yb}v{E2kYOl!{tzF
z=p_sDts2ZVBXB`W4nr~JM=1;ObeuIsSNmw1Ww3bqrDGp9q_UZY=nGu=%2mY0p9HHR
zWYV@<f}`}_G7J>9<4ArcC8<<t5}F4EZ<}!sQmaHsETA+X!0fb>60jDx%N>WJzGU#P
zjMAmJpt<qubD&(&!>+hK5lncaLtD0vdsR82KE~W<q`IyY2C9nIB~_6O$}HX*O4Eo0
z-W>S>KAPLD0n7hVqKjQEkz}V%0Gi*x=;3&v^LEz>0}QK>jc>HKJ~V>NR5UmOqa{|w
zC6@q_HzPyoudop~U7ZKV2ny7By$6bg*)pMcjFCoIo1lQr{+?^@0VqT*?25XaMQ_+=
z0<fe-92xKE)zXSa)2M2)8~kkZ_PB@_bC#ji5S*daG`;HmzGTz|S62jNwPigsM{RFt
z%-VOlb~v<_Ij9!m|DB($erAX;rycU(?Us!ySZ1e+GQ_5E0Shtr+2OP9--Y=F9ttfA
z!t1(TKRN?fLz)o1LZK`$uTT{SGj|HDxWU!z+NbHh{DucG!h1KQ*`vB#j4Ke=KCg`b
zr*SEcG(UA0+bRAQF3DbBH+Om~_SdCx&;UxKIHz8WxVcK&Q}!2x>AhRqFUXN;DhCg>
zUdD~tZEBEQ*b})%E~@&91H<})T(quxYBmj?ua~G3FTHj%2N(7MVz7Vi?C&#$^EQ{v
zt+fdYI|M?4ek`Q+TY+KR#+$fBgt&>|+j#1f>F79s>G3FBF>N{30CeV*1b;dh^hV-i
zw_@j^y??3dIr=q-$fYC2!tcH(L}`k5fBSt~tG$#dQcSsB{18i5{yhgs>7AR`%~T%v
zHme{d1B2<0YRg!=vw(<5&Pm9jJ&Jah`It%=9g0Cs`PpGwkYOt=mAcq)J8v~Hl&v+C
zub=e={8m9;7l)VRz>XM}5afeNUI7n*YDy&jE?UyFt}nJq%YzPlOgDZ)?C`Zk8i-PO
z{8uUzwby)Tqw@Sx^3aEo13cp{TcGQ|B!okQ`mp{FIXi91`+6dDYBw4w0nK_6xSB9P
zKVJsIjwkF;WJiZ2%2Se9L4|EO2`a;b`Ge9m2a|QekcqCj%81^Zi=kn9Mx8rK>trpF
zkVDuqM1l~=Kj7zv8P{)+xv-pWHSte&szFZly3COdiI4wE!mRg`2`_kW^!`Tse1wu$
z^TC%kF9<l7{7--_8%W!X@bBoN(Md@~Dp}B~{?MkO0u$8bY(t|)Q-ncGcbj~X>j_~h
zSF?~$@lL9)9O)p(<Rusnz7KT#d83Z?(g}PIOeJbEK1bp2?U$&Ms(?8Vtz;qwzc7ex
z!(IsP;6)rf`_d2SkYN;x{k7}mo$QZ8lK?)qO&z?(tBO+Z?MWRcV8G`9#BL>FoW~BF
zI0Xj||9-A}FeWIef9FNRsBb=1N~@ZmgJx39$@|;=^o`xM1EY-cw&(3C#($C$bT@EX
z*xNeaymo}}0G6C-lQL*3^l8wy+X4Y-<kV9uWFGwbytm;A4;{l>nLlZ?t)1B%3wxa&
z!Y<?e2S-$%JJUj-*r{>}@7t-33gyQh*L)rm?v4F#=>qp9Y2qz<ZK6R`(G*d7Y!#j?
zy3H_7(F(3GGAIO^J={+Hb5XV?0E)p+sj7&zYNKcy<d@SlXTq|>ATIV3HyTg)peAz}
zh-?M5NXB0eN_kEO2lqV|k7vJo9I-&K1fV*|T9^84Ql76|9j=}yANza<>cv=xjht%h
zdfFR#H0__E5RNv0)`2kA_f!@uyRT^K-<0tN%n|h5h^Q&`Atr82%qLk{4JXoi-eD^s
zP@a}2F_B4R)!^d8w#irbt+iABakt!_@!^51|5DUJnXK6*0FB?4`%0E=e-1Y_tsJjD
z-*=b3_(Hn6@bgyxSe!U&J85n9w4aGIMaV1CVdPSdrH92<!v3n($3S8}<N9m{rTil2
z$pJ2`Pd_hers*E#Z}w8pjm<;~&IXGt`USqG1(a7XoI<E`4%#a9Uc;+d_Zo=q$)`2H
zJFk0KW8^XFsbvR`Rdm%7W2KJN)nUa6Ja6$q)aqVm%>s{$1e=Cb4W5_Z-%bU=^GG65
zpG}qT1XczZochi(&X5d(jdt?Q|4XUTjNST=t=eE<8+j&A6EV($Jj6l50YIKJ)Ok>x
zttdEapCQX!A7G^Ss<6GH9)h=qbcR5Ra7D8W9OrJ~tvCl`pfg^ED6C-zRNNThdPeCk
zYTGob9K%s>*85iy9|QPA*NKm^J_(`2<Hr4prtw<GS5@nRKgX2{I{~(>vq7$Uf#X6j
zob92>&C5rZ{#lt|DFi9#%Q;jgLdk{hhJ$ns#4t(e*bM_Ei4%R(#bq!cmb9{wP`x-<
zS5f^&dD(d=a=cgvEJuk>qB88o*SrU&{?G3UBZawO!YW@Q^Ek0r+kia-P~NXLaF58$
zqq?Dgr4FIoNhSVgspk??kuj4v5c^i1s_il!r*K6}&}}_~_dZ$=^B&phe`%;)3Y0bp
zWNAKRcyEK_9s5g<pr$;hqi{#^wJGs_0}Jwb1TlYNB);B!UhC2s_d6B<#ixlnFf^)q
zGq5phs2qQ<Mr~8KL=zkZ4*ufGA@Wzx1O;h}<a{zR7x!<E$B?~4eu8D_gcE#uiKHMR
zLpbpUq@*;a>^zzs6Fr0jS;AcKptZ|XnQt!iyAvUfr|a#slWsBYL7XfR34b7F6Zq<X
zXct<uUOr+D5sEe?Y}4z-U)x;!ppQ_{o3OX!4P4&zgJ^~AJO5#2F)tTH)82%ni>y9_
z#QOg<9nm~e^0$JFB68(@H6EIPpK?H&qEnJKXoVv#ozqwNUy$c%;RYr=#1GDiFWK^q
z#>+0o7-+%k?VPp8e76%KD)6q0+Ey8W04pI<mfJ0s0_|~qL1&i6LYd`OJWuqu>Ud;?
zEQyfn)`OR^T&=XSdkqiYi9Eeqr%Yl%n=&M9k3ZZBn)2S_vG0Icmc&St_@uJg^mEk)
z{Yb7ofjE{{tN0ON5o6WU-j{(1PNS6xGj);!9MaB1A<rE3!|Ghv2-3d}gO426hBL?!
z)awMRp<cJMFB*iu%)p{*LAEa&X$JUb@Y-qcsih-L%z?j9tNJ;)<4Yd)-;03qtTfzb
z2WKa^Eu{u&&kNX!6ieBw+a-jd*mIMsr2IfZSPcr)c4@N+Y%1y{T&(M1dS57J7hD#K
zcT-~I$2P=2e@?5!x=|MFS9t>3$lpQK|K^`)e<T1s+>*_b4om)8GdLuu0XorFX<W21
zLWGz{(T;<WfEwfSQ5c1mjbX}4Dd;ZPRs)z;U555lw_DwLIe<7jw^(0B#y>ugh%G~P
z|I5c7n|7NYt`G{x;YXjWz^UT2q63dEFu$k-8&c>OU!FQ4x85e;(7x*!&l1*}eg=}e
z87m?g>O{knCYEwfVho4bc@t}s33#dZ9(5M1W>iXy&M-IP9w(7kA^oy0RpgDfRpD~l
z<UEJ@p-~ehrj8R<b1gbtt2x9&mq<(CFovQ+RkBP!_u4?3)HLg?Jk!ia9|}nkCdh`!
z5!yKGjk6PmJwH}L0<bsq$W*>)0b;pg5AZ^oCaz<=@zhDa&DB<Qt6H?qM9e{vkWn;x
zNCa@7rg6P><X3#3-nG)}YPUx`TNqIZSn$BlVo<!)h%~8KeaRd$I_E59N+p=%{#$|o
zar&iw<FIStH-tp=J}yk^N-WzdNs_yI$%i9Vx4gihD>W&!*)N#c!+eb0V;b#jn;tk5
zD*|HVQ~JxdYoYu8tyyL>+52!A4?osqDp!izV6g!h%lT85mHSOgBb*_mZJW2PNcUHK
z-BLE4O(wrG@n3eN`GtyIatKkDmB6BFA<)(v(z`|eS<*Xoh$1^<*7Ed+k_@shNZ(fV
zuYGS?O}jb%wlgBe`>!~+TX3MIvxdk-(t%)@il=w{QvhT?u01WqUbpg^fD%Gkgy{i<
z+>uW~(CQ9a>RIcbK;UsvL&Z9Z&!*@UGYz<CqHAyGClsp|lR1(@J#PU}`lTWSKh2y8
zNAgm2vHtN$_RU=3=}B7XlN3V1*x<3(boS@MALEwJZa^?qomc~8z|GzId~AaOHx6uw
zYO>mp2>RqM{L7Es5M%x$`#BB@K1!p;DPYzK?zOZZ2#42T^1DW5?v+P0n0oXx;K_tU
z(|tZVe`?ff|3Wfue&f>Jc?72;#_ebGonMGfMBm4MK}@W9v)I$x@7*`tRX+fMdiNnt
z%2cW8<W9c=ucfOJmI?4P&m`VF_#*EJ6+!n>Nhwc6)*UVV5Cm#53Q8onckjJdJ|=5h
z?gs!h(xi(Si%L$_EMlUv7`T=^MfB(HjhEOcX|A@bfJQgx<ZA3fczE)=)DBXMo=`Fm
zqOY(AaU?Hq?%Z;s$n}+*wcU1SL*+R?pO<O%-}^RGsi894)iC<y%!b<G$Hpn@gb#}0
zJ?EeH%%dbG6l8efeA$gIT-S%oX;BE+Ogcnm|H`LK@hwK!!i@zp;y%Q;r?u=$zUnco
zgy}Se1hwLkulWEZGb;|il;8O#0Le!MY3N3(HYIZFxak#3Fx6ptnwpYy`pYqB=Q?Eq
zQ?@IDkT`KTpmP9AVq8fTTO5mqG{sPGFFbCA0j~{1&5KPJAS14rtdu4bsiEb)Zd@nJ
z@%0=^$+@77dFz-3o~_%C+_)&!#(I-%d*HDkYS4glIBtakpyh)Zw71FM@eC00BOUw7
zdR5aW*zYDN|D<CC$2m|O2TIGL>GE(RGb2iGLPn4SJqDySpz~G3Zg@nkwDc@4nI1@+
zb;DT<nq|9l(Ai%g59rCe6$KI#{m{a8lLQo-<7=RYDcuJnG@f4b8n05X5+Sf2c*RyJ
z2w)x!cVoAe#+N3$0zuGm9*v*tk6JpOz#I$<%7bLvybF;74x8NkBq<giJI_lUIWWqI
zUuQ<OH>I$Z2A7DUrQoI-TOQIs&KKfN#1tpmRj1_Si}jt+kjY<=JYR?ISbn^4f+^by
zfbFO+g&(H$E!)$sNfvCS^C;~Wz2N@A3k>NX6faWB1B;CI;(mL;O4y-qfo$=;z6$!@
z2yu*&5N2@lt&jp)#Zx`?i%vp$lIIB0?IA%)F<=j_q?#-`Q}Duu=iQFo>NV0^Ko%F$
zB-hq$4=<Imu~1>5y2&c5U8uz2&V8L9qFeypv!n0?%V<K|*aiO+G-OJgVf<VS_c89>
zHEk(B7u`9NlCSPh8_V)XX$Ilo9fnGS3UY1G<Tq8ttXTxfE-cfO!L3AA)FIyhu)LHN
z!k8c%JET|_r!7?8xaIZHI*H?orCA6%M>sG?74l>J=>PImK3YD*wKs=7Onup|;4v1J
zIFugyQ<L8c44+fj;v3!d0eF_}W?UUe0iW}3K;YCs)w?D=2X?YJb_iR#t5nvpMahZz
z_^CJPb(lBt4E0Ii7A!+x7W|h3A})=}Bs}0`LZjGd!|grRD5UAlg5I#(bE^jZIWF9F
zu;=sYzt-+yB<G5d#@Ke>)(A&U&krm`_vH^5cnsUn51)Gw`+QHQe_H|!KDox%aZwNW
znGj!l9g(mCl)u8xj#_RD0?9!ZHUV<URiJ&vw4Ci;3(t!ldMAi$V|y9qZ%nL&`~Mpm
zG!gc5Wqvlus{>ZSOz~C-cChH?OHONTRN~mm2NFwwJ;9$HNyR5j>d^c3|D=MQZ{UC}
z#v8p*%3nz*#<-Dd&!{lqcZitVu%W_hT2U%j4@1ls{j&S;y5bnZV0N-yA2s>^EG@GX
z;4C#FU1K{b&{%L74GA~(gBJ7h?paRqXS>ac7x2o0HzvljMZ3G%Du6QOF4=ES7m}uc
zSO^KL;7GLk4#4?Vp&^?_$#8r@2~312NX(N&6Ap`Ne)7x5FFzynz=0iy7;u&+u%7x*
z*t%-*-U8P*(F`4+W=;|53P$0_=*dN@cx_7Z%tF%aj$`YRPW-wCGF}E3EwXi2u!vf5
z7#IvnR%f48gHf95VNq02oQog(Y#jo2A6+zOqf4`Zas4A?5X{2=_8D+fG3xr1?kVQm
z6_5jvsjd7hAcgqVrCyrJ*p-{HQ{YwW^7Gr>C^}LawUm>ZkJ8WAc6NbKs)LmGSfhS|
z6>sqL)5Z?1rQznVLN9t$0$L{&yKIJb2|ZzVz~=BEjVhjn(;{_M95H;OENVXx6HlhS
za?5QkMBYNeB|5afH~~H==-OVAyuB9RjC%!8*JFXS5saQ$%H;5YSWg%Zav|b4{kUU=
zbj*Zww2#V3A=FcIkM{oFI=hN`;@jl_|2x+%Btn4<Eh!*KQ0=Ka3U@?pJ>dOm&_`}o
zCol?Jet`QFw;SgnG@K--1KxNXY8I`#$(j}0z2=(jKtV}WAUF$uEzp)!ZH&KsWGAw{
zsB5#`k6G&cg|D`Xerfd|O1B@^f`U!J4sIPHXD;W416{4OXRoER))3^xz-pFj?Uyfw
z%M+uZiV23P6MY2WNRQEyaTQRw;kWt>?NV9$@O)E1Gt>iF)=*#_c3-ZGRl_+YgeAsl
zsWq`%RVzO14RI7$g%ApR`h3ZV!c;8xJh*5g(5?O**{hSvm*DKXcX)63EP*W0?(#kR
z0SAYc9W=VuzF#o==F@qNbkJuIOHnv$4GbOb?QUg8795^h@feela|$tuOCUHOyxqO5
z1`CIvPPV1DBGnPOqqS{Tu^d$&M|g)^qp1nAp!-MvySKHSOwccS!dfYJcc``)2~Aq2
zOalg?xL8;UI&?fQ7%{_Zs);GFQXu;n#;<&EfRcA4#MKfQz$_2ymwU1uWQ9IBpTpF&
zkqLz80C19N`JXD(F9~b@nY&d?6<Oi#&wBiI3;eYu+(Mw1=5y9`Gd><47F5^+NH$6T
zY90C_9tq|=DLxSo4&*yF_#vuhmf!yNzP4N(wst?6Mx)w2^!1lcTav%t%CX&Ey@}1~
zi=V(fN8f?hqnFx)wN?Kbgyh{-&&3HW;_+-N;#DOcN}GeHP6TL~p5YdE+j@~@l58M0
zKNkJFcL}W_$q%ex{BYznaR>$%uE{Au>bKKiNWv}&`3rJtDVpLTnhuJG?xmict`ey}
z^otV!#RJYqPK2CscJ-tX!b-!`QW0|F`aEq|*84k5X8itQ7>qQy#1Nt?gHG&=|5=LV
zWB@XA5FfSRKjTwVW3scFKx5fxc>iV+JxP$GJZ>r%B`?QG0S7<9m5#U5jh#HWc2^xX
zE;MD!92Og>THBBK8z~N`@}Gcr&`z%;i)i)$7DlJx{d9+t@F^YdBKc$XrJuFi)WuSK
z%jb0>K%s`C9o7=9B~PXC);poVzAUDlX$L^c>qYJO@Rox*IuCwXD|=KB&pb`3{@aV8
z(MGT<>o>A}nb8f<mD{kr`e5{n=y5za4au@D?QB+dH@lT|zbKbk8Kr#pCGp?Fi-{+P
zGA0a+e!%VcqZW|GTf9oJw<eI!`LMb>BM=h83w3#4!{wJd-w}V-a2e+$Py-wtfioGh
zNR7CA%DchsK;c}G;WH>DUdm*1FTyJ+1;fvR0(u5VLd+0%#DWbvS_Y=(6y2{`bQ$9b
z;$Ml;pC;@J$exY`54o@T54czt3_N#R;$pTCucWBuKLL$|gz5cU&qRv9cM8ASN2l9<
zc<nymC9@-MEl{}!=EVK9i&K6Ghh1WYLj0kJFC$LjEeV}LAlJlt##kWFj0z$(wxUR!
z!;km`=(7MXIJQu^-hV?};6V@+n_6O7xcPCMmI@bpWIrMy$4@4_NYtg+#{z_<4bt2R
z`QGico1b3Zj<$*ugr2&eyIF;9L#l-qsKIW_`kGNkoH<xpyO$j;#{NUGL)J4aJO1}J
zc&Za>8?|3Ck3aChtjEcS?`MZR-`=l8bU$qKs8(-g%m8Wipk2LvyP9OtX1NCR#2g@h
z-7qcSa?ziocH$3oKp5^-=OYie^V{zi@e@6D*>-!qYt5}_Me-<dwf2c-qqVsTwq`)!
z`ADT;2NG#UjG$9%9VO!8_v`iedI=Pn9FH>DV5eT+nbU$y#alek20^Hj4R$>_0k^kb
zd1rKMoI8&NfMq~Mjk4X72mpj}BUMoCX@3+7o+RwpY-w@UD&!ykH^<*3lK<FVSQwZQ
zm|kZUiW-<@JxmXw76bp_4MxN4fjRi7gWi6}U2X9-$&Unz#Q4TCaWFky7pcFdhqss2
zLhPB$hU==GHbObU&-tkpxS8@@>y~7Lf6CBVyV<|<CaAt;jj{=bQs%MlK>4#LX|%GX
z<Cw#8NOM}Rc^x$A<TsAMZ@JDXde3B{tMJw+Xdq<={g#FI<|+e|U*8g~j)-gw^#j$;
zJpos*YLgj(z3wV-&DslDvMqF=2}Cu&n@*o0uS@rNk~Ikdt@)nl6(U0A_}zT|dA$I*
zmI}BgK@A>Q-Q)EZVbg}Tm}>n(LAX<;PTTWORM1s+6utR$Qb`#p!m#-aHk>cFSPhI4
zqbjbd=E)7`g~B!yWQ>+t<j&cU5`kflLxk>K_V+Qsvh|jdur>5^IM7bK-04UUfY96}
z6us&fSg=@X58}gTEC{nu`-|$x#mHTh83U7u5}mk}Y;mI!^q)}uC(g08o?XBXuQXhk
zkVD2)D^!-*2!Q58P9Q~nd;eJW5vp~Li{&%5_@YsD&{*L=;-UX?ptV6Sk&_9}heAx|
zm#*F%?NsCy?;&?UpDrESAyJ*f_n)FdHhn?XvQOQ;lTc5<@DgXh0_nN;K^{?xg2<z&
zeSb75Olg)Nb3_X7^#fGIx3IDcBfk0<F#e*N-oVfs`Qz;FkU$A%W)(v3(n>Vpe`$X)
z-^xS!5IdYK`xYfzJd|*B!8K}Q2W;de%fxeU@#bblBcikGT1WMVhk>i}MO1>7Nez9C
zvahH5D85$>Ro1rFx#3RyqT2x$+%MS2nuC1(p95@Y&opu<4ULSI3(;HSdIa7r9iyO~
z&A*9Id*N>5(l;*pgbTOQQuk2Ad5UWoxxPTdjDQY>O2k*ZUWtl*FMKm`jw*+Of()+0
z*R2B>y*-Pqlc4sPp-H5aD1%*f&iB9(PX!#u80fWN2G3{_FoWmZX5>QA`)4OaGuMIy
zPb;Pun>?l65{==|ur6O44eF)V!#zkp-7!)OoM|!clb_)1U?PqlAnA%Kc;&1k1N6E{
zS7T&G?0ED*mw)^a%4q@-1p)MJOrshEUJx`xRi%7nzOQeFnva}A8#$Q!Ujwa)rJl_F
zd`(g5zDBKQ0MI0+uzsV1MHwHwGfmPWm%PjDE{Q(HkW0%lEXfZU0js?ZK<<)o{pl7h
zc6YMloA~C*CUY#aohywp(JzS2s=;gNP5h7sm~<v+o6Vo3*L(X1%Ia8R9jOW{wJoNJ
zJG_RQQhig!d?d=~%<M?qGtRvv0roBUl=mS37G|5Z%LpZ6$8w)D&o657j^@2m?2l=$
z5?3;HSl9T@%@S!6CvCj6{^wk>jo*c3(1Rbk02Z`v>agobC)pg;CRwAMXbIlqeRF36
z`Z2DK6VDJL8O+NhLP;F0U%f<h{4ome$R8d!xf6`wBtXc2oT1f|uE)=oI7S{8JIW7m
z(o+Rq>E-gkeMSi>`<b+xVQ?jG`l^iEPNx4;@dcG+np#XXxm*cqmJcUM1`Y6!Yuz{m
z?)?sV;u|IN(wzu(UW=~?%5e`x{_L`MC48fe^LKOic^@4yzO7>^A~o&<YZlV_xJFSC
zcvA1Vs^9VZ9YzunvWxLc7PZ^AdCQT7rG26*>*1j$DxXV+{5Uq^*SzGlD(VH@{`}{U
zK0dpoag_k<MRv6a@MYJq-(zCSR)#mE(~Dmm_z!RX2{KcvzL@#XgtH{twmK$xsn5+U
zdUYO1=-%+49Q15}sMP}OcBsh;YheGaY7)yr59eNBOXo(rzRYFE+HU#-qS=y(!uE?>
zyTu#hh{Fmce8(OWXhVSBWTA@=;dOJLTbPerN+;jfp)gUV(s>`9UFLP;ABx!tD=A0g
z{uYoD^VhufUkQJgQa1GC$Ttl9k?Fj=2T_K7V0e@9M|oU!@QPLfU>U-09KR(D$QK8e
zIRwV3z2+0&tWK<0I%Xb1-1z^`1`hp3z`p_!N4gc_+hf9a9Rs^R@5%Kci+7TptT@FB
zzusMG@Q2D#h&29sMpG+}i5@Ty!giA{@qe?8acZaDFkO_S8}nP2@zoX1%!S;614$dh
zj-^$kp0xqY$f=8fPLsXp6*zqyh~3RXvPrm6$AnN%ZywjnK31}eu4j7f?KaYmLL|iR
z$<7pmxqCIeldGnDDGyIk0`cR|Gn_M(Zf=YvtF4z)&w*wm#057mG78ConiNVb0`q<a
z!6f95@Q&Q?E-o-eUXccTU3lW{k{EJ5vN;qIH(J$wl0oMto$)L?q}vN$I+3kswqD3X
zMhM@JHLkT|QQ&*;O7DC<WF~If*Vvq*a%-Cq0i^%GA6u8qq#nSqJSV*~Q<s@61}x8{
zEHOsdcl^hV7Z^X3Of0FghRMOP_CdR3MPL4F5_2KJPUeY)=O@|f45?3yLF0@)gYNpP
zzYd(%o*1Ui?OT*F5nchf;vtC$?_m@fUw@Y)o;3G|hDx>naF01_gy$X{e~si(Y`Y+D
z_%^56pgXcz_wH>y1Yce{HvZ2_vy%}B1;bYfu~<9DX9Fmb@PF*aS2Ia6knLZ#a1(0e
zBcTRWcBZW}c;@Oy0*ER&{OtUi-#K;|OlNhQeT584u3SAxvuNaT@iaRVkjC7KiF5cN
zV%~+@^Q$OoG>eoX)HN>H5>J2r&(0<sk!2hCjhy#MrW(~BjoXUyhgI0&C_<t%uklEC
zHFt$K`7K6@8104-qDdX|;D7yOiOG?WK{dg!;Rcnn%7THi43OXLCQ4A%J|_0)YHPif
z!nWvs)@(;u#Fq#K*r}$}`UeGR1&|%Yi<)Hm+%9WOO;BcvHFIwruEb~App3Rht!?K_
zN>RL?IKk$HigxWPapO_bpEy)2?+HfFD7AAXEjl0rSP}<5Q$X4GJ0>FIMTjSC26()J
zVh|5uGpMQ-<QpX4<;dl~4l~GX<a~MmRVUu83H2@7D|LYB^eV_ch>67WW4&iF<JjEA
z)!bd?bj3CZ>@oWxy`XtIo3f{O2!sfZ<aaYr;O9t>lb=kSHlz}n+E`B$y{J!={b_M|
zIt%9>`<yTM_fm^qeSI7|SJ<)CH=zh8-}t>dV3(_KZ!eZPIs^7s%G(BnkVR02X&z%s
zBzG7;Eui=)=6<KNpCkD_pS{b>93j@q;nOoeBar=6#!M)KZLAN8921=~FyF=MWh76a
zd7u9k=)^ndT5(z*&3wU(o;Qkiuv6z{*dpH7o{Q@l3pQTkzN8d0UCe@As!pprkwAzK
zel>_(;uc6$e}t_R;}OPDSRTPgyU_8(E20$c3c++{`q$mpTYbYNlvm0M-467XQz_yH
z8JoJ`*n{1qmX}2o%80L=v7ETjP8@#FlyK}o$65!dJvqIFm=%^=|9FgX!&OObg!<y`
z#PXez#H>hlbL`6L(j_OCzD}=%+!kxP7bN9Y;nOhH>J}B_q|IYh{^~lU$<+bId1m{D
z8G2&j6D`eVctMLk+Nm3a8Ld_@Gp4GheZjPXhcGjmm7~f=xT$K;Tuj}aKa01JSb{GG
zGA!gp!`s@u8?vJ1hBe8^)-Wj+6}p^J3V+GO24rYOwk6EuVw&lOHjESL1y8RRJX8?Y
z3|*5jG(`V;B-o=YD|`gK>9p3}XJ)2-dbV(JKi+ZDyaAM)4ZdA$*1r^J$@{5(fUgf8
zrp;Gnq5keWu`#ag<04G-K<C0YQ0Q^*SitfhsMmkXj{H8<JFBeaxey7NM1CcC<+c~f
z0q?lQ|Cr#vlA18&ZC&JmUuH_K+<pLD?G6Q!aW8+Qu<47aRO_VU@7Gv5$8PIBo_j6k
zRn<bZ*)&<gCV+d#elgvc?EalZ!5-$0s!wh^8=Nlie2qB^F!Q;t(d&a6MT1<xVokHQ
zDR16${*ig7((WrcEN_{BY0BSc+NOB?DB1)Y-kISxj`mv<tl0I{wBj>jZYbOXvRs_!
zqA_$ZA1?hqN)Mv)4Rxa|VaZ+@{!7Lbpq%C^{T6f~Ju39#A!T=ffuF>PhJen~7CJir
z{-M`b85;Ux9y%SN<ebF%0oMh00ubkGf}u3LW6CkFPLLz`%J*v?d-MMNR4l*%<w2ba
z)vGH@J~P????z<B9V!!AAuF(%!!=0|@L3aPb%Um9>m)%M<DGN<dBiM;A%s^4uItJ^
z^99D8?(0ghMAq&B&lB~b!un?1@+WdVBk>osmC9ns8O-(8y3*r8>J&YW7{-MqnwJ$n
zR!bK|jQrDb5#OYQihtm{Rchz<RMh($lzL|>$V%>&PYS8k<9)V{g3L-oVe01&2cHvU
z1HS;`ADf-SOwEGGgE`E2`tEmytD}?ls;j41OJ#B^e+Aik%vg&Qq`4&%Lr~FIRZfX!
zGM>KR;r;t<1-O*+l_vZ%vN)S`&qMULn?F#jM<e8y1(hqKhH5257&o`sJFc?{<6zS9
z1~6X_4_TFUi+xoZerhA&AN0n>A{v<9FX?`wX0gJ)b&chj`ecVDNJ)jid4ISJNCq+t
z3c`4bUdmc8-VF5L(TpciEDno2$PCMZki^>m@Bc*P;X<?`6m52IlADQJqiLW6uRZiP
zSSs0miDd;E*$?TKF6BHnF#FMO+D>!_?RCzg@@i#SRI#GAv9cHfx%)S7rsA)~@?DUa
zwc2}}@#2wlWt@r8&4r*}2ZFIC2Km0(cJ?8pepr#x4b>@wDkOp1yr~c~=;=E}g<FBI
zj@-D(zYdE9)FvIA!4S?uCe7M!Y1_%!f!RoYSrFXHpm#`6@&i5mL`(m)0eYW?uWRrZ
z3SE-lqlPHg^=JOr*Ya<ic*1b;+9(18X7c|&kD<|#hB%NqUboQ^_PVvzMm43uFOno>
zU}%ACU36p4L~&F=+F`T^NuUqAH2f2E4lIv(ARmyk!8Ef;sV5T5Bn(1nd*M)8Z&<JQ
zkk$WF)N7y8c5mlz^XKeOIx%$|6Pz*C+|29Fk&V4)wvN6AQKHo2Ee5$BtK3=0NA^43
zZt`Ms(L_F%Kj)2KYX@dnHqekoj_6Gtz-IA|G1yb>m>qll2#6r&BElTDIWzxtA~HF;
zNQgMQrui4K^*xMLQ>i|Q^MQ|c1Sy*6OePtMz~o3uDxcDIk)6FeG{bbt@4D8EFq7*x
z@nUL%oyW07k&aHubx6*03d&hq5nStFGT^Ix+T4gp_2xs%AiiUUm}-XkLg(g3D$FGU
zR|8ozN`sSXGipcNx(5Kep=2KV6zRSc){~{9Rl-7g-XYLLWM2f4O87p13WnwoEGC+u
zpbWnR2nAaLsKJ<}S%)pxz9kcPT060?XsmJD%`|wTmZD9dJzbS`<M`PlS~Q1i(uzas
zCBx{9<IV;C$y?Em!y;~uDa;vhGvxZKTZh8Dw-^Z)(R|v8s}4|+x@js|m7I|&(AnI0
zS&VA!9bA8Qu0ey6EKv$hu`-FFZ3Kp|lv(g$fS-P6biYz~qL0lQo>7--7DMGJ<O7E?
ze2KyVWk%32#?(LzQ?YlGTB~}HBd9;M&v!+!@bhJfnNa1kpv!60AOF2f5$C-7`I^lf
zJT)uBB&~$%+OQ}u_7(;risHW=kNm7IaI!@b??@TdrkEOz5`E+2adc75VI&9Pa!fHk
zwX%YBOe`vq#gskTiE5)tA^cWMD|pEP_3Tk*H=&a`)wRObZPDTB{-&#WySd-ef>s)>
z;KC@G$Woy97bGj<DF$cWl_2tZ9S##N`n8i_@PJCDfcg(y6_9c~RA}J!x3r1*z8*+z
zB@hxWhGFE@K=b)iXe(P|m(TV3iUMf$kdtVDVcb_<2L>G2{^0*#S%h=?lH)yEubJ*{
za3B<SB!cu;ijqieX|)F6qIv_b8Y^hKpfL*RZ>BqkQhoomDfTA;!j>Xcx@8Nho{OlC
zKlJ96v4c9|sA8;?$Tt?xQ|578r)>_pCP7Lgb23|1Vpj1cwz7vH2yIbmrQGtY_Yx1x
z5(QCIV@cut<{-mqCsjcSLvGdqsPg4Vor-djv$efR4iq!{1n>KRoWy$C0k~;X)46EH
z!uJ0%(|YNUZ+f+3Na(d&)ZaMn#d<mnZJT2j(EGJm9nbVwhn$?r$|fk>0ymB<HYX-z
zPIK^`QNIfm8$ljfUlnpLqy2B@d`y4WgkPh;6=L5{P#1yI9SX8G96ztEib7PfcOv6B
zot?Ds$vHx)XuaKMk_*rOq{LzUwr=wtQr))e!FaGBJ?*`O>sv_yKOjNO9_ny41axa_
z1va_`zTVmc&f@}n-s!sOrrb~&f<U{7A%(HJWE{Ka^;CM3vw)<s*&HG$?lAvgj8oqg
z!VSfR10DVjk%JP?gakbMxUdIqtmYgMWM#}b=Q1HSOisJu(db=>su{yqo1A?cW*Fs0
zgVwe;J;p&19RJb<mlS;cmGJ4xQKpRl6{wE|CKAGl2=BoLwwGr<J!7pUaz;<l6I{rL
z+T>1#U6!>VW&Q(Xp$D@mt)P@EJ>^~-{C9}|J2*CE5><jii92>NflNuEV+#B3^AzC*
z>4M`tgi0D_`4IwB`lU87F~m~(bY>q+Nz*?_+X}`g2Sz{$sGO2Zds+z>mve&JvIi64
z!)bGS8h<wIR)}hj3;nkWDJLTS@DkX)J`9`kn6;9ZVrNIfqcFo3f&`+rLw(6g8y91@
z#K{6#)JxwUC;j3C6Thnkrp%Rs?2jX#td1zxlAdw|P$~Y-zZoL;=$MyKgw^h|t{KTq
za-al1lOiMwXIdqsJe=FcoNtEPT1kfk6Blbd6spXrdHB&0vfqHU_{m%Q^j#RI%Q1Ri
z(u~@wBaHpRz6FcoZcL@@K0h(8#wpqv9&Azy0>KG)>iKYA5!u&uP8CRK)(q;Y(UyG(
zKt4d-vMMJ3fe2LR@>dhY#-|1{>2DitrI*b{5w7w7|NJHk*8l$3N3JuR_8k-kma)Pw
zxr_Nopi<Xewg+m8|GeR(QJM!l^sQ$e+tNA-UN2U<4<!<xCgFTnV^?jdy;jDJr#@SS
zwHESIIgtY|;|A1{iu1RXH`1y!h$xX_+DOVwAH!t<;mdY1J$*Pi9zF%6kR<R_H;u&u
ztM#Q)INunl$heADS}jf_gvjlVsAI<SGnl|aI!g4UIG}kSe#}U~(>93Y>nA`M4hJt_
zuArN;I02V!wjk~mchyR7!Elwu?E^@B2Wm-l`)DKYc43J+vAxjx3<tz`EW?fQ_D;g}
z=bwkf9n*H?la{&#@*oD$`yJD2;e>UiYG9m%k{$(Qt+MQd_pP;9!^Tx^)@Pc9e+|BN
z*xKT79|g`N{1Ae~U$WFME9?MTn~K?OH)FPC@#?SO9hO*nV^|)&#WcD&!bkbZA=VVL
z-Wh9WjzJ70Dx;1lzWQ`VPTu*)9f?Zx964;M(*RUVY!n@5U*wu=Q;oq#g)4y$xXcGR
zY+2G4)g~)m1=#y^cCmS(a!ti6e+_Meo+HoGyUb7NQL`L=nDBEL*AFhWNE&fY6G=L%
z_XOj+qPK<SS>J3AH=!(v5yVKU47Q&?XM%ocsbV@`Q-WWuO3;6C_dA66wrdXGZ3`gF
zViSW$y(VufQ%<`^+@uFaOqquQTMbyHI^+9Zhdv44y(<&TyR@ruG|%3{B#M&@KwKf#
zf!oMJU9LWN*no)40c>vevK%_;q_50fh$8d;xvpFwhTas)5lS{OLx1Qh-iETb6V1;O
z*jf%lI}ZNESnka3qV-RCimzeLyX$rwv|#Xd`qu(m!4aw-qw%6Ei;E4ZiTYy9PCG>n
z;^#E<#0JW#BX|>sXbIT-Ew+_$SaUvxind&)bvw-46UwwP#vBpzo!e`E7g`KSxTX2=
zgsN|z$cRAs!gq{+^SO+2jeIp6mAhF;Al7hcq3gXSx-8YdWc=b%n*G_&!vKMuY3S&V
zfq0YEC;?<!OY`A|OmwHCAfB1^Z<iSXR@fV+F>ww)(IkQLH(LXsxZ>ES+vWf|mNb+>
zeHXot;zP>OmhZI>rfL)9s!+(#Y>)xxuu)mN&G{H~t~3jjE4c7t(kZuz9fY-+!x5Kq
zv-rffb1ktYX92237FpNRj%HQNKMF8eq3u(IS%J*Gz71i1iDMp%!veE-ej_PiShX<)
z&ok#8<RR@BeU^?b*jRy}4yJo;#vecY_F)#__hthD@c_Kx*xm+~rPmAJeY&5jdQnw!
z>I;18P@4SYU7l0z&~5)1|4-}Fu~Cj5uwoKw_>cu5;IumvBT<bUEEPK^oq9a+uCTXM
zSsW!5Zdlpcq^er^?#9NMI%|LPy|FK)YdABEFS>~paO^!rA<Bv@wR7>bZV}g^)CP?`
z=S>TUUh);#7g*wOEtiWu^P9k)#_^O1@~8%jXk3H(&ct&0IctNVD<6;hUG`)vVpCee
zW(u6Gy2?-)fmP||7aru%IHa`^NIvCk)Mxa@O^vj~l;`?QW?N{@6KoL!9NKQ_8fV-5
zU6|~dT?Nox1P6BGAYHAQjX6%ark99>xhorcI~3{)$u`h+O2vz%@Aw~h1czff&S@Z9
z{vUqm_Mq+2U$Qyz5F^g!sE}A<Bn7R%H~mDCQxH!A0J`%_U6k$+(&b^<ofWiJPXW_M
zFldJEs|)f0rdx_+>SJ?@)TdRl9D?=l(CFhx|H2g|jdJD-M*`5|-p*1NtjoZQ*ob^p
zsw#qZL^I^X5wcR0c~rEWWeyb?E8cMq2M1jLZ53TUz#St)FlO%TNWWqR*X5!xQhp8c
z^fKB;{S$Vn=M?Q&>@F%atAjxq^YW`Rk<V<glTVXjd<#Y?;j|jjUWUy$#E_ATv$Vdj
z+$9&1dy_1^HIiulU==#_;@bc_3fd_&Cp2US!sNaya-bOg43@T``-K0h5tUN@@N~le
z*Pc?C8fih6(d#emH`SV`BGDMeVzHydTkPm&aC7H;RoLq-l5n_EX7jV+Cws<iS5oCm
z4)N3JM~U3E9hmIFEuTMCSG_kU&nllMkEajU?=MQ4Ac{>W*}0&tK-McclXpk|;~%TF
zazbvzgiVy`znAHyspqVO^i=LV&3PK-$1KSGEoq86MnF2gmMG3?Nf^(7y;xH1&jgL@
z+YA~YWqI&n$7&SJ7B2mGkDGBHG<>4TRg$O&cSbzGthj2mb04^oGC!;?N$w2B0ajpy
zp7OWwS8u6#IML7D_v+*eme3)tzypi;ILE6M?f-Qdt_-TJ#bC;QNd=cP^-4s6Bm$p~
zD*FDju@*>l593F_G9vq$?+<F6Eg1XB>4d6CqNuagHP|uxu5bYJYS@%cnKnl$re5@q
z2y!Xn=yV_QBgKA4rAJn=-j+1!xSPM(6BqVQ$-AnCyI=eZJQzuav3WUzb7o+RKe;ot
zS#`Ea)R8)}To^&eN<UNr-sFLXF-i0~$-&7Jo)vOd8a1%3YFHjAV~c<F{rf8n-U)`7
zUwC`C*l*s)Nh(k%+7b^?d298hBHJ}I3k5TqS+PsPM{7<Vw;Mq9qPQ2+-7QecM*j2!
z`YX}nwU6mF9tn-SKnVKf%C2>u6swQYTO9%JU?7gB=69TQ<D1Dr;koyZuEL@3U!%;?
z%h@lq)PcwcAKQI|k@dPCTsg0O{1{#){<C6*4lVBqD+`1Nj;2A!X<T?C#?wCCw1%!9
z17;MG!o|IM(=^DV-?4!Hq#2|64T7sa@yW$o3XLEAY31WA>qfheH#eHe5=IM}*uHOV
zUGZ@Oy2#u(94vjmMYfhyG*k`eBPHW4?c=U0HhJdvswK<xn7H``igaaqRb#T(H2t`k
zmR(XE3U{6Qo~&*e$nrD9*__V;m?tqnB&;xdEFrIZ=CcYtP2Z(t!m0h=xZ>vANd98K
zVt@wW0f*x%mG&-HnKwtWh)CH>v*rGJ$AoNaUe8d!2rHY@$<<14Z<0|D(P@t(Y{SeV
z+&im-Wu0t=JzXdapg&Dc=sWFl2>(u*fI2U8lc)PN&+n?b$%z*S9xUDHV+qq+PPL6^
z2@O|Lb!^&uy^*LK4*Cth;xKz@p!Mc>;L4&et_JSg^)4SD5oAz+Q~eB3u5L3v?kZ_D
zZ*H`de?rRCrx-ov1eYVDib4WD=L}q*Lg9_kE8pK7Fb79Ty_T;Ei<-<96Vv`qZM2SP
zdSHGi>I`aSiI;uId{9#Z8;w4Rwe-9Lq21mm+~YE@gJrD2Yj})1-k^*fgcyUbD31iQ
zP^PiW@tZkudQ=a#;hutnIB8q9+?Ptvw3C(Ke1y99JU~`e0UcgVVWuu9p^Re?+Tx!<
zy^KSf8SF=)EMD)82yjLB#l_QEYgPsUf4v?uNF3U@Z#84{#gOkVB=N<Hp(kIsG;#Uv
zWJB7SvTQRr_WY1C2?1@qHX~U9_-O*L=oc~0xR?Ji+GoEjK0!a?7%Q=Ua0m8V2Bq3w
zrE0^x;uN>vw8;0ex}B1ZRkCX`u6X5=h;E#9bAEo>fq^zx#<6tRYHgRXx!1sK2nZ*a
znsOYHk-J}e$#!QRz(U-%8B2(~2k?$peD#UUJ*KsE!u*AWu!M64Vd9Pi&2UmrTZT5G
zzK#?)7(<E1f|z;`FlLWi4nB>dX6|LF!$UjeH^esWrT;p4U-jgv2%{>mv7}yAG_o%q
z#ox<JyExkZxl(v7;tEiqq?{R$+8I=1ibwi_jobCjm~@1Cv=h_Pz#6ktqnK5s9O9~+
zUei+?sd?j|q|-<8RNux1*1$tc^Wa%~6j1U=yTs(I(4e#N7A@LT2FPL7H3S?cdhis2
zp_m3SJ?AyyWie3opK_AL1)bc@B~=z<{l1i6YH1>A1S_afAN~gv7w}cOnUkRXEdJ$%
zDj=NDuV<ofUxgd`6R0w6Ref8Owmn4D&TOeI$=<V>zzUTqK{z0H1q7#TgKb;Bvef#O
z@27q?@D1jjA|UBZ`SKa9fkiENyNp7;Hhl)^6(gyv<7L3rLzaG+e>Db?w9W`jLu6|G
zTGqn9va<Fq<k@6_Dj6vc{v}86eQq{=_xV<4Y`@Gevxq$j+4!XgdNX_~SKgr#W35$)
z4PZ&nU)jDyZQ%y>1=|%fY{d5!7$Un>87(wW;<1N7x|+do%$E%K`E_Bv!?T&1+amBM
z?*KzUyuYfKG_09>?9L0wvM`HGj)`yGXmnWar7aAB)t57-A7W2(BStshCGaR!>M`OG
zsuJc-3PR@u21RGU`kWF&gmMr^V*UP#vPUBl*5ixLA~aOg+e*O8iKFD?p(?$M#CFy?
zv7Z6#)p4V`nujn9EL^VK=j5IZMX_}JFL?W?7zgPwzVEW_wtBJC_2O*J&xlEAH2S?V
zJG~KWF1S`{haxOm^?CiR6<rC=TOne0$n_i!>LAkA%27P6aYsf;Uan;?>n}pus9Q$m
zl%++hl&1?~VXmPti^4oNZNq58F5C3IT1gl*!RJ|6D@t`%sGjNVzLr~31ac!(Z9(M8
z3|Bz1O#vlB^*c(cHoN0GS@Vi>DTJek_h)MbXcA_V;(FSyld^lRWbA9@mnw!6;l9Av
zxyg31hE?Qw-bakA2Y2e$q1PMM|JG~iN}HxiEzBpSnpJq>>IGmL{zOH^t-4hrh17JF
zflK>;<#$aqTzR51`Yo}N<!*?<%TXum!f+y?ggy_ncR29W;(4o|=T973IDzpBCRu%i
zG2BcIy>%9KujF{v3dq1TKbti5)06=!jjqV<E*%?O#SGF@*eZ@Mh0WvB@-I8gPJgJR
z@Buf}_OdYGs9hwThCwz+vVD_w&tvGq_8Td(%A??--wuLPk7mYIv#{P<#^scm>3!WE
z=;_@y@HF=vVeRti^s`-$`a0GS#F5a`eIqgjG%y)wdr)JJ^=U~TaU(f8x&n+od&ZM;
zCnaCXm@GYY&nyh*QeNeRmrW!R?C>OZly%9oax^?9dM{pJ{u}i|iGQvhQWSeYEBV}H
zM*p;2;pad+*{a(vB#Bz~X@n)VQo1UDh&k+kuR=>wLTWg1URol*Rx*jzZMQD6{y#9e
zrSZ=#rh=lSOageY`J~)6(PBoGPl_cr|J<doLN-i&sp768D~bJQzN=MxIP^Qezd#fk
zE(=hwC78#IfPYt5t}^#dL|~`Ek6_+L4t?bHiuKKGNb`=A)g<H&u^ZGzssSWucetr@
zln(mJ;OE0_#|&G@7;vMjtt58PE&*P&#+oF2(35Sp8pV`Q$7N53Z=<<CJZ~a5tHfu#
zKT8$nB1giP4AfRUf&BWwr_9m7hDtcH(T9%BMwy1V+lE6hTa8`>!bIw0Yy$ACeNl*u
z$@Y`3{oH9@>*jdkG}yB5(cJ<<r$_!M<5i6Hk#+BzLxSxu6>(%IHh32jn@xE}E|1<I
zIT^Jv;GBP4URtw3YCg@uSeu2sBwUL_DV_;<=yD3Z_xNCH6Df~)eTH|rO#K#_&$rVy
z%X!mnfjEzG`7!>Mo!)Lc9MsJ6WwOMkExCmF_X2fM0zmRPS2z}IsdLYnY-n=w>Y?$X
zET@e#Irk1kqq`tjP2@8ncgpTWfcnVZrTnzOU^$&tzVFRIWK0?@F696<d{mC>HBz7k
zo|8!VvRp^vXl*$EU||p;sh!n%dPkOeJ`^~IoWh=DKz&G$xz7XW=~90fM3_K5&gR*)
z?bGR8U|Zn3Y!Etb;8aRN)(D(%jMLmF?vObYTn5@TP=kW#iGyesY7X!MU(e|WTs6WG
zucW2^-pWBdQhhe|KP4%4s5J^2Nf)a~2Ggz!&NzumDeiiikSoi2T_IY=eb7yHl3+}u
zZZ~6OV7L;1=n>}WldGdnFO_0gVhI8(p(XP14orzzx~y@(e;wTyaX7k5x?4xMMg05L
zJpAA*Sn8(o!giOqgdA82V7RUEFf3EUu1dWyOn_%Qc7Ma3nbl9Li&Zt7dyPmAJ4A6&
zYwV50=bsPic3v^7284?5nIVsc*nagDM8WZh<+8coWeK}s4S8Q1U{$guEpJRq1VfL4
zn-P98rM81-bQVZPZDT*OU;~SO9DTzS8mZkk)HiK)bfFP!kaWF~GkZp(6u;ezC#bf7
zgQ*>Ct+fzEAR6b32B0ACYlM-Lm2@k)wLCP7>$|>kVnd{p32BRB;ODa~tpeY&PoFWR
z?kVxBw#kk2REg!wa<#GsUdU%Pt(;f=n28xtUT^*`0;L+Kko?esA(%l!IFb#w(9e3j
zf($>J=8cHgv&~xh>D-jj07qx$WgCgQHMxHP;vUsO4%hK7MbE3lr?Xi+hn7!m|M$3b
zC`E%ulCeg}<Ux9}7KNQn87rLA^IS<5lYf-;y7mhdnA%{91bEAnIS+EqL!EKfpImop
ze_lXZI~_M0nu9X&kC#-!CsF$w1iDj<(vb^Sax4YySDlq$e%4B;!N;aEF6-k<;6KNF
zbW2RIMn(=`i(-C9fbIH#gWBywsnPW_in;?bdxqIqsT@4#$UBTYT~eV6x<mOur{2a^
zjM-p7W=dLkJpo+)@>--=r&dGfc)eWwuV$=#6B&uuG(AF_@r$f1mb)mN3P*c`Id25j
zM}AEa&XWiRju|B6uX4_MFg_tQ3B7^t7*j#?K%YK)wyYf!bVw_W8-}tI{y~@3A;40Y
z|9Gvs*V7d+U&`|E%A8@fKLN$5=UWueQpXe+FE^1u$xBl`!cA;kqa_kt)Y`v2NP(@K
zWsSEYVh<c_ooe9bdS7lqc%I>-{^Ac9(Ger*2fu#6JFac(C<KV8q@A2Yb*%vqHxB~g
zNAI3vP35LS(ddwNl8Pb~8Y=ajfxJ$(h%z+dPQv=;001D<0jLfD)d(a1*zj(i*cO>b
zS5Uc;a9k(r1_usTVwk~fbVZ-)zTUEzFYh;)p(F&M_yvDiAL>w)_|og)65~w*xLDK!
z6=LgCfNOu)&Kj`L22+4icg<m$fsoYg?8QY3434M%kD{4$j7sSA*YqU8ehCtG&5G*J
z-Hb#U`0sPaw2$>C=5lkahp`47w0cD6(Xrt8jEtIbg!b<1QZ;KDkN>}Lsu&6#$e95@
z((wJ64+hQ4%Ub)+fbMjNuXt~9qB*=7o#PV5AzR4!$E-0$<e2^Gx*YtCgP6m4ff)?X
zjgl-VV02$s?4bB#ONwvVR{Ak62TrC9fyRbD)mAGqjc|+R0VB(=<{_VIp3P}4T|{R7
zAFAZ|bN1~VG9e^3?52kPvA2*-xbMioosCa~gElW2DA9y@TAo~C%Y;s)xmKi;#wvex
zLz)?8`odB3yTJRO0Zccg3P76Qy{t3G^fmYp7MC0L9`HK11Mw(teJ7&SyPrLpssd`C
z;vC@dG0gp2#P`WAtzXoTw1q4Y$TlaWmz^*Fn%4~1S)JSxmo8Bz<58a;nq^U8>vG0W
z!82Jm3bDX4#;KRAZSsi*j8CTHY^2lZGHT47SBdnFx8cD$+2p~Jq&&nz!pY9%h@kfc
zTXoxQmmk>0_Lop*-NT&kss25Nap^LlNyB5{V{hS$EY&L<RHpo1ylz(C;&2Pb<iiF*
ziY0|oBCoBAk=paNX>-wdy--SCdwp-Q`jkzwl$#*(OJMM&KiS#l8{C+J@@tWO(WJ8Y
zy~z9H`oL*YzyB#`0>@J6^JT|Lt9VL5u#90}@ythy?Gpd&yNIC;$?-fJ54@=$qp6DR
z@(>tv`93{NP`k|XpS;nCQ{<p<K@Jgg3B?Wd&em)QooVY6hjNAk1R5#Xs^I6mJO^*c
zYO`8_IyAi>JU1hpC>7z!=5qUXbe2SzWtOp#<@PilZC>I;%X|=P0&JF-D@lSX518@L
z5Jsz@+UX1H%WZ&N$$IaCu*x$;4}5Udi5^4%Rm=(8m*8k&>9nAwZu0(&zMuiEhOu-e
zrvR-dv$GSSlN^;|vfck_fa~3K0w{VwNJDz^*uQjg*_&VK)Mfo4pCJ}x?Fr?FktQ@A
zf?El<KEWo1*Ia}!Q!@1n$p|?DT=1hZdn?wdbZw|4sEL)UBchXY<mnWT*Coep07%9a
z-?kJ>HL?gpa4qS{2JSybn_Jc{=7&(x)@D4iI{O7<-QM7zuRs~0u`@b!ud|2Ds!D`C
zPszGi`7N!+6K$K4Y(T0a<zGipda`yb{{&U!1C{(tZnZ8s^gRyZp=4`0y@`>#cU49E
zhs#RfBza{o&0*-Xw^P9N)w@O*-<zYzN2C<Tun{LM2*O8gbPyXE1z-ct#8hO#!;iym
zhWzGc)cxdw@3-*N`n+u2&AGyN3Y7NnEN3FL?#@hUt0_-3ng{xDl__5d&t*cz<7{rQ
zZ>Hv5pt6PinB&VJhKo220F>RP;?!{139!%6|5~s2;U9h>A?CfbeZ9aEkze<Lr0!%g
zPmE&yvxJb(1arqjT<w?u<qP=H<rfwZs3?d*2DwxuyJ4#n^wgl9p!GYvOIR@HanA!r
zUvlF{>d?Rh4TlA76H@r$cFX@;K%kbn>e&<CX^HCk4FJKtMk6l0wol<sp5M~0Ht{_J
zo6=yYny+<rQ>lKw<cWXiN(ekNb00Nhlsgu5arh>lm}4$N7DhvFz0-nv!iNA~Id`nu
z`SnWtQH?J}5pr(A;XxB@!+By+u<M$*J&#Yh$%qAOU9I>elaeb2JNEw~aBWLj(-jl%
zG3e9?6F!$vhjs))tOxufy0Eu;W>A!6lgl4~ReXI;scKe&-$0anX3xWSI{NnoJUn+z
zJ&uV1>`HTqYKBAFVe`Cp8Gg#96+q`|Bl)fiR>l`1QH315hjS(Qoe@dAn`5qmX`kwF
z%G7k1$ZbUMN^9}JEBv0nLMYb^O$Ii@UUy*R2U)crHdc3(&h`6_DSLq+!lXxZ30M=z
z+@|Uqj&O+Yj9G;}^mI-55FgL?F;m@nGF5d?>DWVRFtdS_>5432v-b=L>4<||@TZ<w
zAu2$I=%1PtIXL>N=%>#zaBb0}UD3#1_8imDT*41N&_}^Okp7-@Z!MYQR~m0S3#VUh
zjr0w0X)3kVnpjd4OL(054k-zYcCgBBv!O(k@Qln*M;=u_RAMT;BIExcU~IjTpNv`d
z+?pcPratYtk27*f^?Lg#-;lY_#xad(3_Na;w_olZI055Ayzv_mFTFPku&x8RdeLlp
z66_V%6@lr8{y<)}9OfvlGGH`ZT-|@nOQS7vs>lo_H2xL4YH}*x&YK&NH(LG1Z1mE}
zq5(>F1FNF!MZNQuNr9S!Eqb*>;uE$@VU2XpJT6hU@E-mHGf~F;m(y46On<{XU*f=S
zmP=#}Vc~QR;p+vZze^#(jEVW&S2F(3=piBt&6lQlYnP}gA>I)<j?)Bg7nk<56F-A8
zjNY&?Qc>PKtt)_uusk|FXJUV|*KCptPq4(drARabO%SN-8^LI_7+;U*=`Hxu$C#MN
zexckRE@+Uya+qJ)9A=LP%#9OZDNZ{|5BkFxbKtV~XKF^FVETpNYIZ_-K9^UBYYo}R
z5J^{k4*=@|chf(XMDU`iB%d%|qR3L@tQ@%tIeDsb!Y^s3)xKVbPABjFU{Sl=-aI5@
zO*z`*`6M?#0~*c5vJACp^-q3`<e?%WMla0+URp1`9@kHUf&o4-igaZy-(zd(C+&YJ
za;Ciw2XgH|x&wZFl_TjCM+M%Q^Z)F7qu-^^?}UEman~UhQ*uU<kS?ArOqmkA0UVI6
zqNj)QO;8yy5PA$~y9<Eb=Fr@g@m@bEO0RcAG3w=LUG501zu8!D7z6dBiV=@$)JJl#
zJ58i8o~grxQ=tbuf>}X+%<Q1eyp;<EdtKMwZw9g4eAk#fb0h)0p;d{Uodup$&`tWB
z)GrD6&ha)NF{?NjcHdZw1i!eg>nk|cOEN7`2gnQinQY5_0Cog2Tn|Yx+ua#aM*9&&
z3X<n7s11Kze7;?aSK0^rD*EZL$k7-=)?;_fN~ebix{AOakD@LYa&z+J+)#yt&f&Si
z+$(Ic%Lcwan$*9w4Wx6C`^qi9Hfsg~)!Nt9R~8uZRZPzm=MAtMyq+$N-Mx$)2n^09
z>G(<iot}4>z1{!YOkY%PtPGCj7y5zcmB-^**FKHsPYAFjnr#O6%hA}80q}aod71Gi
z^UVA%KZ<XOOQp}wTVNV~?=t@Z2+L*TylEQowhi(3h!z=FNsmxs)wtZc;CMQ?qVRKL
z5hk`zZ#s<xaE`tk+O8}7Az9$2Z5<W5%`y|)*}%EZdZH=PEmxb5Bi@(#MiA|PBaF<z
zvLQnmv+d{O=T3d|^r+8Oet1g}cCVN9#XC#0527?(*<@CmT(@-cN7W}p?r(vrwv`v5
z!s7E23tcm&9f2T7{5n^`s?%bPq1Y};w4jfwEG(deO$9y{VtpY6WCS_L;77o6<%pCe
zCN<f`%F{yqVQwX1iWsx2+5X?nR{WUYb8U#9(7Ent5DLuhnn|KD*6qPCLeByCfR^q?
zEZ}b;OkG}7><Bany*21elO*I(iblpAe27)R*7$TF!!FicM_BwzRE2Ag;3((Whr+Pd
zY>jtEc;dVW%2f)~{szkU2E}<D_2)>+0UbWMT_aPq8F8>9EHGZg&Afp`gtnY5%WgY^
zilg8cTMT1UryjOl6r<1(HYm+&r9)vDLz~QT8~<=PyR(&qTg~Zt1BB=n1$+d`%uDG+
z3qC+HEdK7;%6$B%!xkXOa`gfo)f9;!0?#J{+C6yLcV2+$SGyLTrmexFvTAtn$0NFB
z-Rn{2UDSMsPiG4;$?A*R_G776j1t~&=M=Cq4eQX>ikGQ*KKPy!L+48Q2SOtT6bYRB
z<6?=yUBZUaEP2as%z2lY_3QN)%ae=H+*#r=&N&Icjtn<9YIq{_f2TFK>7Q>)PA*Dq
z;<1$?8%5!dBQGT#ZP$T0ZJHED1!69Fw>2I6iwa=|1}+n}jg{&<0u5^FwZ!H<xh#$u
z^nGbWpHMPKp<wsXtPzdTd<Vw6H0B)Z9hm7BDLMLeturDn=4eN-eeE#7YBphP!Kbt0
zx?qWMYM0c=#wc&u0#_7$1$R}ozJ3dJx@YEvXoWS0Y>;c|q8NW9!s8O9`nWUTHh(ZL
zk(4ZF#+V@z9+Gr(0Qh6MjT^xS_0<6m?Ccyo-@?hxy$5V-mE<`T;CT)|5>LHZL-CKk
z2t(VB=opX-VayE~)olakgDAk%>kPZS17vNzqBUiPCPjGjyWUoaAd)Mkhp_Gen1^1l
zne&{NUUtn8@DFES{8%#u2ltD2kHakT0(34|o-vh_?RAMGHCbo6oCH5Fy5Hoq5sgP|
z>hKtMk!>n!q)ccN26)SbBKMp$UwKc@Ws>sW-~(ppehu^Ou{(P?rmmH8k!PRGq2<Uo
z%@SZ}EN{6WDCmN7T$(d+<&W0_mI(exqK2sgV%+dBg*kro0!!VqWMvO6{DIk&C^T!v
zwah8%sDEW;cOVU}*p+Bwv%}TMRBeN}Wl4K@nNuRvk6UFoIUGk#LBi8SS<un($@_&m
zU+kHl>4<b)KvhJ`Y6F;A_Orj27ldK5@{kk-yxb=sp1~oXd}3g}eXWdv5JL<c_1xE0
z-V#fSTs(_(`CtGOWex{o-i}m-n9e7<=x-yr3eqQkZYeKB4J%di$UTJ*9ETfD!L@+e
z<KmgUdyw*rn7ypj__ID5n?oai-j1{ZQ^rn~c(~;qpx@ZFe8MU$nbllhaYN!g(mUHy
zQOp)f!3UDZ3&`5`H7{@6LAVWW5on#<j^R-TCxIl)td!zCH6Lu-)z53*Atm(SavmuL
z!@xPux%8|#_nUweSPLmudS4Y_pYNWlxCQ^3hpPY>xxKPH;%{b?Nxt_(DWMq#liT=#
zI``;qIJxn<mTy;{?FQkWkmuA9Im&9tUSPu4JJvJ`Y6u(WiZ`UXZP3fsv#P&hV2AdI
z%|%JfItMK8CLpWpWL+q1nXbFPZ-6$6AXkR(%QfZkbh&HZi=SQWiS+P?LNb&47G)mK
zj?*j}UM2J+4bsHSXj?L!xW31J66i})uZ30E(YEAqM#7F1zr?=TEZ@oaTfCDoN*o||
z(8@#FEE8^}uVZFbie1gmLm+aVBQ5(qz4;zknIg|z;_3$-r3}=5<{n*}_JDT9^*-9a
zK)#B+9ea$5z}&+(OzV{KPSgh~pEQ6iiCy1iR6VfLVkk|WY4#gT1UUqD7>SV*PjHLF
zZ!lf2Pr60i6fHyxT(L_AeL+s_IE(6v%Nj}ej9ESE$q2Px%DLXZ|LW^TmyZGC5k@ZL
z*QJz>bTD}k7FZ5>CK%+c<*O_v{j)r#nN4U0saVhOTC9uuu*bmi8e(PS;*O8_FpJL<
z4Ocafk)(0>dQ|r)hnjPkw-DGRmTX5PQJz`(_HWP8!fIl^UwF<NSTdm!)|6uhMweWd
z=LKE|8}o7R5LfdaVOLp@S-3%c`ee`m-Ds=6#6?&&1D-M5q@zsLI_!DPfj+fv*9lHP
zvAKAyS*pO3Hnq8@<EFk2DodmQ=n=Br=n4O2F|T2A<FC2@5hXMR#{2sJ@}{4ca^Wl_
zF0!#?lpv@@hTvl#+XqS!5jglN>#Ke~yR<;%PzC3ESO&`O_NVb_(R7`fYf0@sXK8me
zWe1Nz+2(PwoNN@TqlWcxoUt271;C2=i>s13v`%Es>=6^MGg{pSka)z{@)B@hzP0%-
z@rJ8z<$O`MQ7Geg?zos($zxWE;4vm_nYJ5%oEem`P^6aZwz>Ez`1fEO7gV{pEBOSZ
znj`d?V$dLgOq%KPpvr`niJ~-gjjd(XKKPddi32x1A)(@~Qn=9=vu;_k4vzNmoOOh?
zq+f#2iR`fktSeFA)Q09_fvBBz?Uz)RPWv3qWk&117*oB7Pu@01Hi)jTa#0DCO_EG&
z#cYn@IV-8J`9S{29^djJ8oCYf_aWOd$F>vlWs$GtWE1CmeQ%7LF!|g4TVC5NYVWOz
z1=g1DD;MSfx%Ji7)`az71NceY<}Nz!attn~^g`k3V~6EaSy$3A@1Cj`Ewp~xoFSdC
z0nnLn!!pBb>I42VBF<GSh?b_XpdVr?8kAb{sP)JX=J>Kv%R9|=?hY88I;jm99cj20
z@>R}xoj(>wEBK$cMiv@NX1(s?M`J8%ZH>NQQTC5D{H<5lie(*L+ZDrqKP$g4TDH7}
zc>Hed*w@h3cOTpN_<mK!0RVQwHE!jxvu1+}&i1zL!l`Kr0~rFuJecT7t^>7Y>6s}U
zagzICPc;vSEx5dp7i3twWjWKC;Oy9tUWHoU52RBV?ZYuLM22m1|Jh%9Ect*jo6RUH
zmV1M+sdXL8+b!xIf`6=7_SYkY2|Vj2EUrqwDE#R}4Ef+C>Hc60!Wm$*uzEe1&|n1n
zcW!+kvdsEkFF>ljR&!8Fi&faGill6~vtK@E9CyqRzS+ewk&I<ax9I}~5KrvQs3!!R
z*%>;^K>I`C<UZv8K4zKFhpSW%zO*Q7nQ4O-HAK8eE=nt4YUS^zzG&NfR=&9N$@4>~
z3EO2+7gE2?hHtl$2B_YAc2rgBb}ELl5*|~?`>Bczfb{1O@#FRjUaT7xDuul1<*g$E
zPC))v-T!=|div(}a;32IzLhGdr<w5?edjsvvj$f=`aeej3-Rhgd^ZmqWC!gX;S;2Y
zvKUtNKlvZuQ9}6K@Ow4(X{W$&ZCrWerc>gdP7EC<RIBQ(wK($rZM#LRd())*$7dD|
z05a1TFNWTg-;By}J}4@-R)wknKusH)n;zbNUZQ{;;3f1IK5p6Ci-dM#SxY~dmVV^B
zVm5>)@qxgv!4`q>gRhJlrko^PbR|xqAH$SLK^*z0O)bE(O?auOf~@`eP-p@?*BND*
zE${#U4l1;$D9Y|)X_{~W$IrvDyqiHU3@}qoMefw(O;<J^{QB#z18H~0$b^k9O^$ET
zzx1#KDv0Jy1<A?t2@+XP-F0|A7Ha0+t+YfE1LDRiH5Eupg<6zrIu%(JX=r7j$5o(U
ztWB??m{V}S@9Ut$&OVRo&9lEAb_Yu>yal{}rib{I4y$S<UtkkyJ$o;Ba6>6%(|vpE
z@w&E!ki;ozEMv_hCh<fNBg53WY(k&hk6ZyGyTg#4(+(NvY`k~U3J)Q2eK=9xdWLSc
z=`e>Y683EVwSO?n;&@a2VI2<)Is_7kbLZh25@b$eDavl`BuP-ypZ{D?Sgi?6kf!~h
z#}%;9VYjXSq#B9ur4JrSD)$|z{=2b>%nHL5weRtuK(|@7vMF@0KXwJYMDQzXe_rd?
zDyiZPQGB&XUVwTS#4?Dqm9Yg2+Af1<Q>>_ol6HWbtkA~-F5?lGxmG4IJCX38wiM3;
z+Lx)Zz6Q#U%_S6tf6v~Ot=HrND(}ln5iEI*E;F+bXW1klcALe)A*j{mn!|QId<jVy
zT)K(Iditgy#S*BwSW)nU0*ix!dyS82bpZ(ncK@<bG7$t1V-G@~GDDMxqC_a1KHH*e
zY3?6@cY}<4Ya-eZJ7nQ+1J>7>8-sw64hk*kZa-!!9{XQLnroZWR#}a6V`zy>{3|s>
zFJ(Vz-VHW=xg-X0ey;ANLW~--xG)Z{3mx+~bhW(ts$uyMF`1nsb%D%IB3_gUD_ffs
zMY1x~YeFlXgj@g^J>zXi9hdB_o)wF53BMyCZxt}w$Ol!<m7TkFrmFOY+P{M~0pARw
z>Otbo67XOUp>BO=gGXCA+~=^n;rSmB(FntIRa%yNo$WD-v`G-atDqNNhlGuw8&rWG
z<>R-3zjJz#PLESv^ZPe`c+}gvyfN<!WB*t!ZvNS)>06oYubfJX5NvJ2`erQk6K-wn
z#A(RCf;@%-PgD{qh<&(N1Gp@)@j#XuE-o}+@D2JS6zYH#4-aA#4m9`aa46<w*(7Tx
zooRdBGEw_Z;ieN@0oEMifMoM`Z(Zy>J4L)05yi}eXob}ntkT8w7*zCF>QNgD04}A<
zzNxP*QE;+UN8bu~mL#fMl<CT!Ik3}y0e3;Fr<IuOcl27us4;h(zep`?Ns>L|2I?b-
z0H1z?YK1n-y?g4WPv&r<wu~kdSNIDB0V!In2$#b>LRTl~$8C!2V8w7ppEd7igsR-W
z;Pd{{JT9xv&3^1YM!7OsdF#V}!$hSCtxx?^ZrOPoE}Hb0JPkBS?k9qFas7nTPX;4i
z<fWo+MBfO{Ks<_%@4uGDS|SVFi)|4(O1`p`#U*<DG+078_&c(;^PG0gDc1O8uxvMv
z31U(r{a)T@D{L&yV1f$Sp4<!es{m;G>@6~+t~L|)%38q7PfagxZkJp>eeJeKIg(Y+
zk%%nkfnw=E_~(z7_<d_{Ft9+i{IM4m&62)d^B=|`vRsANm#M`}*MLXZHpaj<ARku5
zdl7<@adi{fk^eZJ|L2SIo6@bf01-9O16%~tCx5ydFk7M_>qF53`SzM{;ghr27LwM@
zb6ba}+~yiaW0t6+8I5_0KK(BP0=ID5{pQhSPKnukZ~wS#1hhh4XZZ`mugFeIlN?q^
zGy%7>^<54JURpy>=OpNZcqU=8QS@MTeb=<bo8~gq2;d4@i;?Bv3j%T;piDJIPb7iM
z3y(fDY4x$oV?+lP|BPs4ai?oyP!KR2XoRQn8%JjnirxHr^b@SKJBA&8e3?a7xk!(w
zzEwX;FT>@&C-7z!>%zyGFgkZv{=A2zfys9a_;X9HPX4oT<;iMNP+bp_`RIp~so_*t
z%It?=NtuV=t;aGKgyV13kzE)9<mP1|*Cy3FOE32P;n{7X)&UEwxdr#3pxS7nrICCg
zGI@O-)^Qos8&r=*rZZTYMB+kNK?ez_zt`TXg%4T=B1S}<e98W9x+F$F{AuUabuZE(
z8Wlc{m}gP%#b4h<eDc!rbQ=n@vS+F;Jzzs=45sG&yCd@LeNy0uu-qmRUewiwZW?q^
zh%nv(Q;Fweef}#~js8qgWcV>vYxlQ3Zco$L`D2WFXG2|s$dMRe55)TCh5m4ttC?kS
zO4k$>8x*ZD4w5aq$7fex5s8CM6ONsaY0Z)Jz$hnp%!7~~HP<VxO3J(*HD3?u?BMaM
zy@z0T0ie|EJ@}V8=<nK6moRZ0*$>=ttU_2oXSDO^6zPAgmaK<nbh}@k$w)0bqSW+{
zPFlBP8UJp{lw(__oz>YNJ2YqOHPOfo<QxE6!1=@NB?=CW3R@JF;^5@{=+VidaRskv
zGBs1u<=}0!B#WmYJy+tQs=F}<Tpq)trB+QTro)hMiVxyK!O$c7&s0vb^xn2zlzVhW
zzzacWhkS+Iy1%8t0(3~t<78$C9xPUL2SFffk92vHXzY@PA1Cqcj!(nFMbn@a^R2^b
zuTv+HmDt`Fu05CpiFXt^IQut0#i~&mG%#kOr!BF!V?xTyZ9MuQO)=EZ81U*@8^*fv
zr4^4Ss0JT2t>ZofmiLd)#{P|}eJd<**UPmKA+oeg8J#ph&BQ-@?$2=2s$BZ>M@dZo
zrGZ#|_%SVs<IhfpkU$lyf^h5a*{`?HKF++f<~Yr6kWo3-&L}c_<Xa*3B4@kE!*UWj
zUR7J+$F@%Os>yb$J5=0p(9vsrTQ@AY$~WofBd554XTWzOzl$-b9IS*R4zUI}HRk8{
zMa2uiJ#dQy=a-$;Bz^6Id-q+y!))w#2gR&Ek*V?>^_0eCU2^FPxt~xhH&9yTvxxgU
z_oCXqvYP%|whaQ!+?j`O4G3f3g%`|ZNfga4?N}}@F>{zRE~<KUB+RqV7tljpTb`KJ
zTTmZnsu0=16-4UtD1z`dc2xdhgA&}@Mjz3TM2{#0r-|v>?=2n#q<U~H@-B<9{BK6j
zSn^qML3ZV|e_bCcETepz&NOL|0j&51Nx|h=@Fmp>TyI?NH5d)~|2_RjYMfA7t5CEq
zl)*~nNh3`b+RyVh>sr9LS__Yid;qa;P^_RDefRFTK?$bRnN*^Hwrh$C=F)Fr8Uqti
zw`@cn;8s73=LDahpE}M%Fg!)NUCE1bC=}LLBDRW3RFNA~SwC7JA4$$9hmZ&GCqNl>
zM+~R(N#++BXUvT6%XOYs)^eb_w}xF=%d|@}ii50OL}+xqj~Ajb4`sWqG2!Q|rEALO
z+2o9!#~o3x<o#Y^#O)#U&kU|5(16c4O*W&LOH1+XfBcOu-&#p-G5Vhrwb^<zOl3Ts
zco3aMg>kXmdSU6Uoy1DVI!-PM$jgyH|EZ*AQ@vm+j+N}8LcX4OMdf6De}T0OxKwuv
z=v1yIgTGo6P<)vkcXM(YgexJ);!(ry9c05kR~xmdNlz79byVuRTBz(~2ULC0Ycmgb
z{c(StR7U;?El|wRZ|j|5>L*H4kM?A2znYLojPN1QpFSDcz*OdoXc>iVl#)IX2Nj{G
zZ||$y^)c}(Q}Qn2(d1UysA-LS^o$cT`WdrW$Q`V*>(*p@-+MEW_L0Gkf}$c0xwZ6)
z92;py2JzccmVBFirA_s@4qjI~p!|6~*;;rE`ckOSt5l(<Q5XGee2nX8G(F1H`|#~U
z<5_l~`8J@{p$B?8w&Zoss7oYKWX*whK_Z-e#uJp{AjEyOS;kWU?hEd7YDl{|Ewc?V
zsL$;H;8e-SJbdhHVSn3<IT@rSFWz2_8m1~o<fa;Bd*?7o4qVsTabg(IEVRo7u2}H~
z|5$P>1yIeTC(@ncj^s%V97q_6Sy?nU=LB}Q;G7ckhXeZ@fY$X5nc>=YFwx-A-iZ@D
zHfqIOS;v|JOQR1@N;6U8-HMrsoBuX&Shn?+G8#+!Ms-JW2~|S*7v}E%nzBe6kyunq
zl4W*_1&Dra8@Xj-#9}z?EVi{X%L}e52C4dicoD&Dw!Fkj(72iBI8-qcks7_;qJ&Q5
zV;d<6OZ&A!^Y;lBb-zXv>9B9b8Vy5=8#S9j%-W!Ghn@bVzV%1?$T=`Pp8#rIc4`R}
zVHd=>Slnbx9*X-DNFVc~!45>4@_Ma03l`8~P%o)n&|Q~f{c4}(%(I9A2>m4v%UpAM
zS7Zf1l<=$0`vA}^Dh74{0DVOv;5Y+-L0{~7b24)jdCtA~C=b8P;$da7`Z|!IT{bD!
zcW{hVc>XdA{VuAKsfhNRB#%bOKV5aM@xgw1H@Ibw9z>MAe#ep`Na>=YOx+=z<QR4S
z`da2Tt0E+l0mrDPVpeFF*L(4=$E;T#TBy$%h>FzwTU7yb=6sG)07IzpcG<VF=Q?J3
z!FVcp^skI(IaKZ&>k2HizPn9TuHyn}cSDOL-@QKdo?rM5E;qFE(a_xK(fM9dV|ONA
zsOonhWH5x4hCBaKZWWNe^3mi!B`N5>U%#MvU5cAp@1WBznW@$K9*N2rZmA-fxDQt_
zUBG%14exOX<<-n+TV_xhHxK)Fpv}>_-|k7T_2E-wbl%H+qfH^~=N*u_pQ!+~3v~m?
ztZ%N}EU`pYK=KS+&M79GXK=?c#D~~qE!5xIm3J6_-V&yblr6Z2-1FwaqQVoF5>c3m
z*e2Lx9nZ*RhE2^`+Ri?f*rM6MRALCApm^G9cUK@?C3zKzg1f>gdm-~__0SU)M680Y
zB(Di4r%#rJ*4sj#n@4Zq$zt_JL1u?b7Vkb__(22q#;X**+KL^lQ^&e`0TnoMFtTc$
z<J;hK3Twq=-3MFSCURt%S6!+F44-w?$BlN}45f9)qdRXVgP%oZp0Hhu({nRPUed84
zI*QUKh%Q6cbdb^U8D&89@8DOfL4PLRZI&&>>7J{P53-)DC4eOx8}<0=SXY-DXMrEX
zGfXdkkbIkxYff&Xf&$C5_Am&6oRWmpb&n8jONWgp6D=*&%r&pRjI>{x6N!s|Dur5V
z?F5^Z^>@#8zXJ>!+VA=a#?R-}r~m2wQJdr^ipmmFP~StMjYpJ~@62SatX_T#dSm}o
z<W2_)t~=7!n$nT7(p~+RMx?ydOr{JC2D0L7OEvNJhMnSzk8|->o`uKzKT(Ej0}J(K
zLlvWfzg1Qe#cMlQR5_;U)^70M&ks&kSzMTLI)}%i5$$e!96`YVfD={$AJD6R0&R~;
z2HE)&5@vG;x*;U*uisru-I)O@*q+tKYEt5sTIJp=mYZ^PRrGnPYx%}s>^(RGIsrjz
zANpEVjb>*JkCHn;)un;69>{2UD+5y;S;dOlpVpu?b$0lQGf`MU%~@LQAATjP!P|w2
zLl*bd5oGeM1<GPKTf`c8u-$<BCr}>6YT7=Ic1lF9(>7N|V5tX5%AX^Mp^b1ga=^(I
zEF6`HV?qeb>`COyp&ft0#TTDW`YYc4RL<f`chqZr^?^aZpr!?Vq|s(kA?j@rKt4mL
zFwFi6c+#A5;kBQdrDZ<cvyf7pqVextwAcuObH^?RpZ$B5#Mgwk<)|@E)mQuqBq{*j
zvg%8MU+m)5H8<1+BTg3wX5#EIJ|X|n4}5Q;YoqRz$V(t!7)Pj%_`csHxEh1x=UF3*
z(GH)9BuJ)c#8%z&6EeTDQ2N;-pSAd@J3y<b9~6MIjL3?NckXQSh-xZIZT@(8Iz#8G
zO|4JJfdNvmBLo3buFMyycs~k3ScT>SxReVG@ZC@SZ{~fekJ}-I3<o(zHD>UKqtikR
zbTg4UlN26J8XZ8`wpHxqc*2)?{jOH+7K>W6yoR&Q_joQ?nDq7halFC#XN1ALw6%jf
zPor(BBS1r`lDpa@53dOB|Cy7VT}>*M#&9@&bIaO2nC*1>kX$wI?+Nv3O@``)d{a99
z;?zGQBdOlQroL1hC{s^Lz#eUo#maS=)O&1O-VlPZlf(71Q4WkMA|GIJ4-}x;7u>P`
z3Js)@NF<HERkW~zbMg`0Z|lP~QHZPi)1@+AxM7^u``soRSI1tPA%Z7?I~!Oys?O1w
zBn;PTjAWgU`2RwZ43cV@F0A8h3}*M(0%-w{!!kJ_*-pOYdW^O?QeROX%76mn#4bRT
zM@`K{^D4%9&$Y3(w9W;Gt)VQ*M~^D5$?Qmn)Oy4aQ6gK3*Y#Z#wg^ZfZm2u>>0ts8
z3vj*N!zGz;e=|%)zDm3n3xB-90hd^^0$;o~e`CtZ+lw{&i#F^&SWZ!G3QVStV9Y8%
zba5)IP<CuM4`2G+iFGz@aM$_pf#zGHqeJmP(=9)gn#$;|;adh;;6TO4nCBA8^tvY0
z?M0d+xh^M`kT@Yfzkjm$qE`Aq2o4sUonHwwB%!m5XW{ZHHFo|LszY1p_22q?T3Qj<
z`jS{X2IQ6V@fwRp&#P?7NsBouG}}QWRv5UQR__drf+*-`D$f^tW697+uds><u`U*V
z*K9V`8(XgrR3TG-(%;`5#f^i0Lu3rx(MnAx=_tluWsPI_mo>;HeeJ1tjO7twPzO)K
zZdHe40*7vBFmSYR%)U*)$)eCpgxKN=SCS^x9T*0NC0?e4AsP{QH2nzKCTzS1nLI!D
z1H#6rYOAD6Rlo#Bgle=$Dpolb9frKdZ@0FgaF<haQtM6!X=JL<Fef&5|G3%2u;LGJ
zsVv|nU`)HdB>Z#6afZ5kc*LP08ZTcH$`QlfF_!Kq+piRpr_gdxXLi=2)&ELy4Iru7
z%KRSmm!hi}#(zG<P*!~c!6i1D=%@QGTJy-df0d(J=Y^-~JFQP8*-?|Lryi070I5UK
zd)W$3s`$G}MN^(17lK$YPffp`CG1ZxS-2mf+{9|@D6c5qRQH*SfE|DHgTrB_fMAYT
zZl5U^Svs}BK_&Mnj^NCgf*^f@5=QneO4R(UovOH^mqM}trU|-J*S}><2xAvd=F@G(
z_&Nirb<dVd)6c7@#XZe8yo6pKp*q1`?VosKZeudy#hXZ^9e}9<GTLkL^4c@tqiETt
z$J+krwF#mi!-Rt1g5jKDHpLe_4e=Yo@kOL-0*(7E%)kG`x-LH`VEAjeuM#v*4lKsH
zGr{W@CO_<P^0Pjw-=qiArdX(W*yVe?eA=O9!Ihj+vxh&AW6ol_CI3>ErPAU9p5fw!
zhiAp6FB`n>?%BQ07hJP5h0a;oj|aEI<f*RNKpm9{mSyCMi$S)ItyzRGi!+3iLvmLN
zY3N0R1Iow|LDH)%+u5!HDQ&ndJ&GZ+zK}~kW?Wr(n#C$*sOqZ7{%<hEg|t}U*%>gk
zLyvc-9VQr+YTbQizUN;pYJQvhd5_{6sL!h3tUZ(wXQ-GruzYstDE$F}_mHDmJnT?E
z&;z*QEjIlKC$IbrQVMw@-7y1cDu8<kB}0!YIr2B)%Q*ggBvPqjL;a8}o**qAFJa_4
zYt)%2qeYb*RyU0%?fc?KPpTo3P|r!=ArhsEV_O2Q(YsFt^ZXRY;r_`JH~fx1usm&L
z4Rk|i=W=4$?^c_*G1Q`-Jlv(11da>R;(Sp|XB#4iSF!HKdZRATk!@GK8SZyJ74N=>
z&GT-Ls+GiV<cSQuA7C*$%!8ZbIZ*j2Irty-pYXqb9Lh*qm{EDx-J{B_#aV$n+Krt>
z0n8c=&!;5(H1x8*t~hpvM>ip5gmf?zzasDhwdu^(1gk72yhSerh<f+<pFj+jSQx+r
zbu7<N<a8}b(V(_5L%dx}tqKSMYTZGu#ZAeH@eBnd(>Wyb=<@<X)#=Bfe$Ur4E6b&&
zH;qq<1sy!7lU+QwGM-Kwu3X+J!5ZX70HnA1*p8=6ED7~KW1=O$)u}sxR_Qtj$Zk|Q
zZGuEPh-MXG%i=$`XqP6yj1s^Mh9Uopif=N6ny7Er>TlafxI?|kL{c!;D|-5@4Ui0j
z0<GpPVB>+{B}6+icMYaUia;T(Nx_r_A1t>Niz6pn68tMIhK5MO#*j?@*j8brE7z<D
z>UXe`q#(=-vr8@!XmGMb16!$rHv^uy2F$Q4+?j>DJRj8Zdt!Z#l$avE<SA~nDfZIc
z7NP5rEeo!;&iJ6i#oK*rF~Ml^|ER6dDBW$v2#kRrGH8j86|KZDOyF#o^&HOV3L$ug
zGi|?urtwy2bpyc$B!RbUyWHa}OO<ABuVHkYUD6h(Z_@kyd~D1YUWFjtryE6$WXQP7
zMGP9Xuo2uL^pX27e1E%!ADV6nM`{f@wx$002j224n|%DZUiM4!nG>HR#WVTbp|8jr
zE8(pWbL0RQok@y8!=^%D6}!)S-`YokF6yoBxNLBcm!{O_>~43<kwe>2)GXZszQ!O2
zqns~u4ej?2E7xuiV+lShp=u&w<9Nt2S--H21&+-6!CG+l;!TS01rNQVMQ`c(=)eKX
zUeK_%s7IeD&or(EVE@3-P4tCS7b`lFHNnL9s>~vHwIeio>h)Pg_A$b$pyNPE=l4Ic
zM1O{=3B2`TThFQ=JApU@(XR=PHXZ%d0=PuTdQZAq&Bocga=s2IO%Sz_<ZvhiRZo!x
z^Kq}=)|$35?-KkbOl!YS6Yp`F(y3dBy3#=8b5{;T4=&?IJ3-L*D3-=!PdvM8FBwbm
zflIMibev*fvU)=Su8y+;0sCI6DH7^jFX|0cGW#FZ0FJKhLRS$4{aLx6W$EcBUPKA4
z?k90~t7>_yP$+4ojeIbo9FE4cC0F@^)A?cXBuV&arK9IDg7GNT#_K>kI+Z%*d&a49
z=`fNP=?EL%)t|AmDnHHT*_q${*i}7nY<0*ipB!ldt-vZK@g<0>+mcd}_9B`r>;aC&
z5=!gHnvtKo+L6nZu#4j~fUj>`wAnLlbHob41`%)j9WT@bCV#DLU{MQ`nDf$7&K*r?
zFT>#=YSKPb$j^I2vi~&Z>KEojl%u+34oCgl9)FPXG<<74H4MuzNV(Hh9Dv_9(Fh8G
zq$Lb@{0?`5h^sZ7?K5p7{$ovO%gtjGh>8`!Z-u+S)h&&?%#nm(<f-XWZl{isE1CSW
zIR{LR>B>-I2RA(OYghQu4cFMXU4$b_8H7W9G@1dz5*U~c;O5+nnixVxLqX4(5)MQ!
z8BhF`2%t5HrFNR&ll$P5FlGzTJO2MD5D}Oewxviu)Z%;GrRH(0jF<5=vr_7=v#kU!
zqmzLI0nOTAF2pZfiWYy|QAe$$$`+>yL%x>LK9$AgNI1gmNymRoj&8J+CKUS6^rg2Z
zl5+h`BKP%Z+kdaN%J;O#)h5M1`WMr+wfqp-iLrNq@^ZIo;U@>)xj5rlHL8;p1EfgM
z?w?kji)#yn#SR7K(__eLLJWnD6DcUHC6Uo%>{Z~Re<NF~pHt^;{>j0Htt4Sp&{_na
z{JTU2{qOql{)gyFU&v*cFcm3;M<QMUTL1m6E+H6v=Xknu#(CHdkQF_#^AmTvDj<3F
zsp9@oeO%<!25S}~Yyby^oV~zxP_l#!9Uwgh_hYls$8NsOBmKq1JRez#k^%@$eJH5e
zL;x;*^cq^r3p6pd0b29AR+x*<9}?i=S-`?>hf9{o@ALsJY6LFp22=O7kFrYwgIAF*
zd}BDg6CP+u4lE}^wU-2>vOf1Ik<W^GynukXX9**#42*Iz`^_ucxS|qCR3})kVc4-G
z^vqEL+|lSM6jW&ih`!oNpq)Qeyk0)PxPXFMHN*^6kLAxJQ=m)(9dGU~jKwQ1>{|2D
z`m{=RH>GOb-(`6Od@ZOb?s8N;5tU6sNx?F@VitUhf*;xquWcB0Gm#F$tvjA^Du6(N
z_xT$L2H4?I-rrmFm>2xcqZTR&9kea%p!dat^x2G|t!Zi8<47H_39(o7KfHnrE)|g>
zMS$(xSuSA$1kRhpn$##qir{;MwMb7W{|b$8?&X&26EY0LI^a8JIt~~(_C?&@dOAl}
zPU|<iiM+uJSrsNIG+Tr5_`E{DMJ}Q1?&^N6XCaU`BCUTjKFEaiTil1)j@ac(L^Nsw
z10vTGb8%8W<s;hJrd}HAqYkK*s~IcTOL0Pd4<(muR5QzcrheG|*_vZ+5Y^zl4gRCc
zjR^(A%=#mkStH_gK5uqbaA37=|8e2v@U-O<-n2<=0?=2gTr3JqBl7l8N8~)Lm*dP?
zO5}11Z;G^Xx!yaGaXZTz!YRZ27!HQT%<Sl^zN)a~kBVLwEU|9vRb<B*g>7ycp$l<P
z7dRF)dEWG1cDzHkEFWqb?jFW6!_N5Z11OATh5tg(Q5QEA5qXG%)`P`F$5lHWy<3Y?
zhEut7dgAj29mZl!+*%m|uW|846Rk%rbMFvSJsWakuPn}r$b*E9^IB;&xGYXR`^09e
z3mq9gv1cJUB+J%+hB^+D3UK^@q91WelbZRpofs}dh7R~Xv;Ni9;s3ODtMB^6eI7k8
znaEa6=T9@Qyn7|f?_<Q3K#po%K)(_)CHA2!JOgkjg^B(0o^(X036>{_BvsFUHZ(sk
z^MFIoyCqz++N!`wf#a>%LXH~$$*)MgEhR>a2nTVqH>rS<WqbY(K!4w&Dv93}AU+j=
zpnFiD4~sh5RYIa&c9;#~N?#jSZ-CqJ#=C`M%0R6_i@H$5YDBIZUX=jq?OeX7kBpWM
zZ%kICBkjU03?4V^ehX6Kw)|X0Cpp+kf|&X5FXXOHBJ!qZ#`$W2#0bnzmyUdBA?TAU
zV;cmvvx4crf)U{lzdP(l%9@E>K$B%pwa~2y1NP0;`@szQ2|wM<FlQ5tv0?A_hS7<I
zC@{kSM*J&i`_RCd(dwl0H1+y#gDUf=#ly@yt*Ih6?0A!Yc__HgerP1zRg&QfzH~Fk
zNUdK|*FOj-B`U3=_ax1sYfCOfrJH@bw4L)5sVBieSUo~f@c3vsWCMVz#SU2BKs=;%
zwIx!YJfeI0s@XQJOlZ>1v_0AR$0A@GpWh|fHSl!f;O-Z;Z2k#p)1225@Uc6>yM*@*
zu@*<-4k;_RF}XOcWA2Kqq=P0=7yyUrg^T)dtDjm+m3_+w-~l<`XYIBEQk_|lgiO@M
z`)kr(<aIAmlYSUq6EpL0&a|P*u9kejV(NylDb0o(rm?B;soI+e>8xKT1!vsxR7H*4
z+7X{nB)6qrjAAPY>P8N7^;j`T3y#R;d9pN+6k)!3(UOdK0iMJ@lHwrStLdg3fNJ?Q
zn!I1j*^QVBG(!1*>tnM(O-GCZHZt+5K183DDP)-ICm*S2eLQ5@=I78xj`&!0Vxj`P
z4!G5IMX7>+YKDnz?=JVyX&PS~C?wg&l5Mj>A)QyYyaLGoEou>?AbHfN+PD7L!sy&s
z^Z0f1l#$PZAk17%gLxx=|3M$ZfA@u?!#>|J+Ss=)iI#TG)Ls|H*x<I9y*@h0GE-IR
z#?;?~D+mC0A)9V-bc4ZfJs=kJKZ82b_unoqu7q#fBNhSZ<v*u?E1+&$+EkF8!TZ}A
zXLvnbv^tx#e-=AzvIDJ<J8tl`D~&8=6fZQ@%w50Jk`*$_zI?ID`+7dv%%e1f+#49@
ziN)kLn7@7Qw=v+kk#5wdX<%THY^o^<%pMW3ii`Q&8k-TuB{XREH`IPaw!+hpz;^Sn
z3o|f<`v@&TOSI`{8bBKd7~3Cj@C%|GCuP|VkWC(6L<-bG7>(E+yh@TJX4WUdrO#<Z
zSq82x?r~mFysNg}sk#y}wQ^@)I7#WH59J*HPIzhH+sLznk?D3E6hIlNQwl;`o4ZGJ
zvi6xgw`}ZonW1eO_N(ig0MuXY=l47__U41X>;eJe)uaBoqp)W+40f_F2sReGH|9IB
z<WWvk=fnSP61L_0CDxO`0kdNRk-3<8%{o6cj$OqS7*v$D&S7h=)UNfMl-)QIU9n!U
z8=FIdnhUxZ0Nyze+)`Ho)1!z3@a&@B3NgrYt)i&>gPO)#!533%k>3X0E66W;?mqVh
z;Q6~9a2>3_xVy%<DN=RlvZ3}!Z*FR$RqZHUNHN>cJ9=S2Ot8-uYSw<6-WfLx3MrL7
zkU#&j<{OH`)Ur`Q+lCnT9bdA`zq8(W(UIFk&UC&th0f>c1Hg>mZU$`Z6wTa_kgD3q
zUKA|a5Z`WwN5r#?5615xMojHN)N!f7^D@6^`)ysr5xlD*diJa-F5sW8o@pARjl9~)
z93O1)|J19w|G@6I(<360akjX(pV*l3;7<EV-9UcH<fn4m^nwXga|2b5g0ZAa%F3)w
zh^@kUD=Ed&0D&~Z-Jy?pG`gdEjvw<e-~cf|&c6Wqc?%Kt@jkrv^nc@M^o;iB>KRIW
z%m3~L%*=7Fi-H#{W5)kx#$>q7LkKVC>%|!v?bW$%jj5;jq!{9@^WaD8C?vBrgZ-aF
z@>>}pa7LAo8;y}>UmpUs<5@xK{-x|?(1L9(@2#utqes!|XXpZF_g;pynV}Yug#cNI
zUmUEAv~Wl5?8A==F#Op`FvcCzStwhhFP){7s5R4f!wKD4^Rz|sCGVe;eQk(VWQSad
zz>iBiw>|#VC=vXG1&nca)F~Pb6_nU(q8`=89@9!}8!n<7UiDP<^Dg0=0A~%#YPZ*!
zvV`wnLKqR{!+qtHR>Hw?{YZXK^g|=FIUq=kKt^9kE8<yT)=7-eHSu1AhYk)0F0LGe
zXpvRrEndgrEX;zPW!j2LY*^U(FMQSE0sQfo+W<v=TzIbH$E}Z2F(>QID-wM!h)iTf
z5ta!t8P>UhB=rg+jKDWrH#a;A6C$=n2gMcGqxIl~$a6YbiIA+eUr9$zYaylikUH#l
za#rRp7$z4<`Bhi~m$|TxgLrZX&OvNKsccEW_6;e+mg7Zq!yIUO5!-!J()Z_bt5WX7
z*y~kM%yJMTWzc#gc(H6VH4DNCK?arxxYAW4)cRrFuF`SsFEO3wSs${5l_Y?!V)$@1
z@Wck{yTc35+@(Q*rkk@PgMz;fSnCS|!C&<OouHRzglx^&oGYT%m~41Bq@5&9f?F=#
z#4hW8-%E*zfHfi)x_RS&Uh_lAo`GXE60a>=CW;*!AK4+ttLa(Zz$k66hfUu1MGR;z
z*pC`{QW2bzcZ|fNPKQ&bnjj(&SfXY(B3gl)F}hp;DVAA4Fw1~kOrN+rKCC>}X({cd
z#xo@(cn`{~H1+{SQi5y%s7^ffom!5~zV0j!IE>1JS>0`fOaEyRffkkFWjv`?2@!Jl
z5wJ}tSinK@1$hEcRr-8vMLQn@jip)6UA$ViO%EgS3+p-Mk=dd%r9&cDb&23l-Qn1#
zN7VZAkHg`|U9L}@U0cA<LpT|9L@OuEfi=IpRs#z11p4M)wIrlxN|=$DzZW%oOA)gr
z`p1la>2{pOs{GG(sr*iu5FdtC4M&j0>>4`NfpmcMjsU$L2o92p-+~2HiJb)FAwuBd
zmc!%|{vLA3Kod-&wL^_MK*l(%<?*A51G`KFX@W<$`qTNC+AW4MbW(Dc_|nJuAKfQB
z*}ezzd7@>@cm##;jQ6OC()*|=_V9HgkP0|rguJcKu0T?DL0Pea)qE|CnpdH~Py$5A
zfQRd1${e_+^vD4A52<^VO<RS<_!BW)Rwe*cM5f$jO4}7!t8>;FLnPW!wLj?2T~Nde
z!||2L$87qVr=cA?q?@HxgW7HVTxK69Rb^ZrMc4QzWB;=0R3_(<QAxiqDf@pdDFhfQ
zko+XW3vfw?fTM8gbLAjqxG-YG*d6tj(yj*GAGcBe3j^EYzo@k?%R3$Zo7O$*d~gu-
z1EDv%;fZ{SnH!S3M~^859iGfh>U8!PnDEgueJRWl9PX9|1G~djbl)>>ZPR|+=cP%g
zdIHSVsHSRo>uXi`yLK(l!VhaOdJx|v)8HtWK|<<%9bVmy58TB}$jb@y+Q@qor1Jht
zABeaJq;734?_spPm~keS|Nh+bN1yMnx(CBETaDr_u~GZ8-)#P0K{37*;)}ZxtPG|#
zcq~ol@z0=c#>&ymx-t>=rN1t|<rDhOoIvzQFj7kB->8ksVURi9rqeX%VCdmzj3L`d
z_3vTb2eTS4AEk|W(3wi}!^^xzF_0QlP2H0UD5<iib+~ka&S9tr=L1Ep$-%TIj{dcW
zq_Mv|`Q-I}4eITSS~fZ#a;xlLdR^oWHfkLl<Um^iu2HI%CyWyeChz!#1K-EbQn|Oz
z({xzk?}Y&ukyBk1k-cn;f*PGo&}Crq8J_`y8%{sk7QK^IBVO13LdpvsafOz;A}IOA
z9QH|4G!j)bCwm~+#1y^uq+;S8H~)mEBcLos-vdVA(po93I!^!Ncwlz62styb5AveV
z5EW|a1JaPFcC8$fe%+UU^_Tg8AG<KtACit`GFdHjF^hnDTuOG_ZC9U^EuJ4ZCwDj2
zet*-cFWAA3V7E#rwgJ)8Bcg;1H!fV8E@?WL9Bp*PxaE(8+7)$1a5Yx!VZlD+DuesM
zi<gHkK^~XQ^*tN7CWxHb#+uz*3kDR$*n^2$vuc1(wdC(zY5;G?kn+&`^O&#3s5^?r
z91gct5jE(A^oXkawpFAu*jm-coHhy?jskoKBOTS6jhkNe7YXwakwqD=p_HDG-^!1r
z$3&S<h$6m&Rv;}f$>>FAkNU7|4Bt_-&ey(}B(?bc<^&%bQ$F$LQn=b0$*tG~9dTnN
z>O%u|;yYAlBq34Soe_+JqSJpMkQ|M?$X&EEu1}vZcboPug!5rLtoP%<=M?3SUy7v@
zKgA}d>8(~y5%L|xOT+f@T`(sbpd(az8+G9e5jtfjVl)bTsLi)rsh<lGjZ9hf_;j@S
zYR0L?26BNzY#JhiFs=-c=&|u>Y^@Qm8uw?Wth&Cf(r-q68dw_EK5-n~kY|Cz*;5$6
zJAth-<Rot(+-?~TQT^O;beb7TugnA9y*}F*6=J61XBD!=RCvuo@usZb*<n!Md@xG-
zrg(@`nmTzlVG~q4^n~EG%UZeX6<sdhmOoG$T#Vpf4(GS=N?o>&W--*JUx`K2E;h|J
z+(wx9>cZs`UeTz`5*xZ?IeyGn_}b83o)3Z!$32rKRitxc+Yph_Z_UQ08AUxEVvGDS
z8S0ul2S8GepN%DUWo@QW;x*KshQo?{$5{J{5{k9Z)fdOMQsu1U7x3tScTnj>rlfY^
z+;-ir;xI-!1~G|~;P36uvoGh&UIa-pwy=Cr)wQ5&0yXI3%0%|}o4>;P$?*UfHXV_(
z#sYXlva~xRvm>+J(~3eeXWo`69u0U>wa)ibxq~fjC|<GkAompKp=myfF)@vD_NYx&
z0h0MwEOkw$`-wUlo|D}}>pcy;7tWxzHNW~*idN0!o`hEnY_=RuTCw-YJvxQuQirlt
zrbIf?x0giW;U|x;+8?F%)xj)CnARsN9gy1_QjTJu)%l2O$IBPS+4tqjR<1_|{7(to
zjy&=sztPH6f8+mX8;87{_o7znY5Z)i)}z&byx5k_7wL`D(2{I+0B7jjS(&AFbGksa
z@<LyjY>_E6*dI}4h}W2g{?iZmbBZ$kUM^r0<3-gx$@53&OVPrg8XI8bg_3p!Mr)w)
z`aq9<*+n>>xJ<QuCgNm6QUb6tgW+i<>#(LvkmV1c>m<$iTH8oaXsU09bs`c%Nw<w3
zlN+xZOR*XX*f(msc{hWP0Kf>u$94YAp+lojBRvlxW3-Ex;>!|44p+1O`?k++@TxA-
z;cR?K0Y$X`%I<wtp8KWfPYs}t;5hKKX-sGi51dtxGG%}!qi-nHYa#y>n(L1!*CYe~
z%~-1-xc;c0t4&=tqtbRktT!7a*LDPB0)c9fRMy1jJwL8kjS(3$J7?T7=MEV)jt~A-
zlasxokR@)dMCo}HbmY=5<s;I0*`)e7%hB50sPwlsfh>bjR@Sf|(v)=?aefWvAUI-B
zPBFAolGY0OSjK&)<k_{S3+?RkFwtpjg^+a0*>6c+6y<6E!*JRmH)k-PCDID$Tr1X+
zk(8zxzA|NnOlAZ>o<gY=MUx*}NX<YbRhx@*>}o5$E0BEuuB$%>JEYbaU+3AZ+mi%6
zL1GX#qMT-`ob69O-Eu1Mp!#*aeV#PMupaMt9c3~<q|tK>FrhQ*7a$eI9U&5EsEV}c
z|H-kRO{g=BLO0F>_E9LR^)6_-V5sQYSul!V=r*}A+?`vApxT%|7@!AXzmuoU^8uK!
zUF3GF@OafwZ)lLgW~gcM0gyk`-|<iWU|v2Aq-H(ZTK^t}{Uo9}>WDkx`#cH-WL_*)
z)BXf8A$(e*z35bw2;|@O;rr>0Obh3O*;ZZefRJ_n77b-gbeALQb)bUX8#G3DmH<nS
z94;gQd){uWV#r(_Gqrf@h{gqJie&SJj;D)Vvvp7dk726zAcu;|*$sdE)36H5nCF9$
z4g#%y=CU&`Eip%1Ns90tFSg4VtGyH;#C(9oAc*YGq9pL8IB-Cfgp9!i(F;TVs7cK~
z7)OohCRi#G*yscDv5b4s(EFclK54~0xa-7rbfgh!TsWHGG#e3u^F+(B`Rg)^PMl~|
z@j)AgknPY2`*0)R4{(R9PN%tD6rfRuO&^WOiue3$*_Z{BBn0!yDWf)Dz@!O@MpRTK
zM6@yqupU+DdV+L4uN<H-<+H;xEmo3B3Tm;urF$H(F=zXtC8JYENu{^RtYA8nR9G#P
zCJ$wtc@!DPIjvsced`vO*xsU{QVKYj)>D-w%x14^@jeQmw@)4jy7H7fyN=PTa6$EB
zXaEb^t#=DsY^OZdq#{QX<J$o&KcDTlzPAyyp8jlBJycRn#KL0Cn+1u+cL-qx5*5_J
zSVG-u{#;V#wbtOT$<DpcSH)=N=5tigJU4~`Gloa5vedCc7-Ur{$!jc+^{dy*O(Z<q
zJr6yO<xd2wvRg41f@sQad3y?6$z~!raIB4TS{ADmr_j#{wL;)K8<W7;%#VM~Mf8uf
zfx4p~rtZgt>u4ATSG~Rbok1xMfWyiG5`=Zc>cdxso+l>xACVrnhk=w370m)6*^NVx
z*yoR$e9q0btrbMDQVZUln9+8z0igkp1=E{SE873Be?ypEVQG03di}MI$@<=s@13VF
zS}^kHx;p%I7Ub?ss8j?=L|&l3kT{`v9ls>e2dn}$%0$(Mwa|0L*I7pha@g(bh<MRc
z9t)T_dhe`ULe;1nZ`pV}aJYzdwhVSrdy7B-rX4d!9Gf?^x3ka|qwanGXj=~j-5d6-
z=Y3~RBV4Fo<*KjlQcHG+e$=YbTpoI`Onr>q5)m-`za{)uVY8i5!c-4avRNDr7^izA
zdcWs^)sq8?R4ZzY06p0RtM6|Tf(EW-;-MbM-O)mG46(d6@!wTs&+dV63dXwH$Wb)?
zQ%G4ilg?r+=lNtmRiOVoRDC?%`*_Lf2M{vVliNTH&N2mTQR_AjH9yx?{Ux^=#ukGw
z=ClAk<h{-14NU3@I&bDC5gMRCVUymsX^$*2jwh5<t(@-!xT+B$d9vm-2jM1E;QDJ#
z_~jXTdLSajikueT;C~>eb6EP*pDf#eXt^UUZxbh~+JAudP%JW$7ciV4ZBjA6#3+IX
zDw)HG(?eyG8mQKX)GHRtLK3jI%`_qpslR;I-*s*7eVj?B@y(>8@r|H)52gD*RY!w+
z2e8r%tXpv?R-L_R0!;j15azx0>e@__)pk-qfQ~igsk@G0atS;Da50|~raK95UNhzP
z+~dagVKw^>LB18>2GxW(P1!?{n3%<k*XSE5^d@;^$~GVPh8+4b<fBN8DQuwi-I%F-
z&yqxhPNXN;bwsW-H3KChN0pU#+CsB@<AYG>_ZG}kxD6zz;lQiTWID>=oF#!O92yvF
zn>+gEqSHYpsMbe?EPsXFQT{SGx3nbjerf22WJzG*A;JnUBc)z{v5)kV9CuPPi1ITX
zIIK=&l(&9GbnboH)8`zz(a5QaMlLTy=ep-Dv9v|FXubpf?01r^=M}Tp1f)Q`qOtn$
zAGF`KXv;3v%nE?G0R==my0}5D_c(UXwx|Rxn$DWgDTeN3QtqdW2Z{WZsWz}!GXO^z
ze~67Z9T{A;_jI2Q=jNTin`>}!tSy2QrI5Q#9$?3Tn%9j6z|hTye#UawSKWf{SkB8P
z;n&+fi@$zjuB$zMoG$}U{ajz)^EL$ICM=m9%*Nc!JxItiyx3}3g}aOQno2nA7_8Lz
zG1KE8xWT5re)MMIy%Qe$X7PBxe_OkukTk==qQG%=9hOP@>~?0BY)72sZOMVQ9hNO^
zkyJ7JznPbZJ9Mwg%7t6~b`y11zoX20uKAeB06uqb!=ES>Hi&w`>ToXv+Vq@U)k~$o
zl(A>x&PD(e5$rV$D57aaiOrln@QX~K9jG8PR+iNoX*zXK{P!I+HrFbS!D|0=E!+2A
zHtS?psH^Bdt7#0=kt7paGQGs1d+fY7FuTZvp%$HZ$TdokZ}?ZMRT(zPCRxQA@|HC@
ziAxTXi98VpOfA$KX!?nHU<iLA_f>LVR^FDme)_0pfp8aB{gK&43*&mJB|J^WJ`y&b
zGPO~AoYK)fy+`**Aj0T`V%hAm#{SAKTxh95ZRb(sCYg*vIU<gVY_G&=odxQw`sMA)
z=G^k`&5Km0XR8Gd<!(uL_~a$(@`#dV%8dF@K^9k6dtWA(lR$yi*X|IuSUsLgGHf;3
zR$T;62#Z8lvYTe_e5^Y#@<ihMq457qz)QVB$ryjbv;N?4tmocji&-P(8RU7E7Byim
zwS93376NO+Tys!a6s0%V2ec{8w`Ijt=91QgPnV4-!kYtttOB<aT&P$<{W1wykg{Y)
z#)-khHZvL)-B*?6fj(6(coZQkoIF!k`~m?EYG@&Z)AjCD3xm~WPYeE7DyMPWag62I
zkUufC`FW2p`A?l(#J5%0;xPH&EQ`fOR=x*8RCKjy19GL7$*Oc>OFyTPn>R;6+}|q$
zDbCgYCHGW6K)-dECaZ0`M?$NUne!ta{W!gHSH;tIzD&T4LRatGw}WXY-98~cGQfFh
zUnFy>9pu*|qBq4QEpc}WSWr2#PW1*eU37Zd-7%fAy@%gDE;M@}Lpz!>fH{R8b#SwF
zoDDTNFD~JeOqh?!AAhzF>9W^iN+y~$aL^n&{Xux66p60#EwE|`(?>~`-nLlw2EY7g
zFK*%N+IXB`%?z7PgBHPs^=3R>LYptem*BNA=X?6wP(L|Y-8MgH<M8%MD1NO7xP#H~
zQ^KjQNEjIdKpazpU^|tbGY@j*xw)^pKcxzYO1HFm6xL~y=S~1zw2@8M6q2I$htwzH
zmX(zjg==1_Zgc#VPKE){C#R0EHzgBI&}E{*%`)P`td*5p42HnxM>sRSxvgApw0O<?
zf(;vysD_!E5B-XdCS?bVC{|wwF*=n=hBM2mVsz%xT>Hqfhy~L?7RS@h$yR?eOIrEF
z!e5`a+o^MesDbKxay!27p1`h>LJ6O-kUbqR8I1$+P~r4wq?%phb(l2R&}Yb|ZGcJ%
zqw*#M%h06}65pxco~yE8JYV}C$=Mzt1;_7qg<WRsSXyppP%biL1>t9q7Q(^=O~8~0
z3nJhg*TtCQ&tZs@adLMv;keJ_2TN)<V*P0iFGYOV+vD|-r#^L$As12yF!()@x|n2Y
z!ns6)et;gmumIs7s0erd8MCK22$!08=i>`8dYsRr&HA{ZylGF48NOl#%Q`7|B4N~_
zdcJ7sWB66}G_9=RUcIP<=Ag0(l(t$v_s2its{VW9?cwLcTmH=LpsIY%Tf;5S&`T03
z&Ooc1^+Mju1GRZ)Y!cfiP0lWHmkwJ1S$<m{u#$3=K@e&OP0H~vQ;4?2nz<Y4apWR2
zH$<fW-ELNTTMj0X7G;>;JlvR*=KGx;XYGHRJlP*;`HRr^Tpc-P?ZME+PpRS%_e0Jb
zy8tP7+tWEP7bT1ZbQXR>1X81tz4Jj-b_+XAuLYz|QfHEU0OSA1^zLJ&AAA%Plm~YM
zVs^2WlhID8$Ne6hu*9#-!zp+=K{YKmAZ8Tkbp9gu`84T(SLfB_BHLxuVrlQ2enZQo
ziG0g2`ES%sv*j8Ky$-<v@>i*TVen9+1W-$}SorYx6s>Rm%(@C2h9+s_yku9YAe#X-
z&cM#!s<2wfEn3;74V7<4WoC9_pHVjLrWUUlD<Lx^v`s^l7f>mPqY8VdmigYs#gZAp
z|CZq86oIOE&u&7{9ncc-EL{<v-fmny%@gP>H4bXRwq<MMP|Ju+tez)&d2n|RO~LLp
z=uy_W<))DT(y7Vei?*~aqMBGSG5SeBI>A%t_QjCVeY@I{Hat)$ro}a~Yx%oeZWriO
zqJ(QygRJXw0KmUn9P<>OMo-Haq-T`sg9r$HB9AO0Ksx3sL-aHuFmzEr3gS91n7m9W
zMnp_x+<?{9_5<ZDF(L=fiS$;pK>VTkKEdjck@p^)9Br71vR+NRGq7lx>+UHg2b)|i
zPyZfUs!Qpq_if<JW6+#qdGK1!tNFRfvF^*(=t@m#r;0WVGw<+WMB?tMm<<~+T4|c=
zh1zGi4u(O@cm~USJ-x_B7I#<>@o=oS+{8eVB4R|8??dAdPDdfbzHR8mXTj6df${dI
z<15j(F2QdlG;7%fbUX|a0ra0C`%vl~f9KJJNM{bCB<NvTh|TPn1_Tpj@5m@!GsB+V
zFLyjX6Qk;k`kXbKRnGIKraM1!GZX!(9fUB=rovST1QkS2tUllB6|KRT>tftVLoaxk
z??vOJhY>dzMPd_=2x^}^H<6)Z1$r`KwMOVE;<YxyK}t~sB>Iz+#X*WvLejXBPPGck
zVdHaJZU9c1)QKF7r`*e?r=UHr9c*4-R}t(E7}i<u!=E7o2tq!(&w(-$&^phY-UU&t
zLdj{qVd!c)+bOp2&Ry!=-z8UxKzcigc<Uqw$ufyNgZD{VPpZ^>CN@6}c@S5%()st=
z4l30MnC<~8wqmODmtXFgud(?;i2*e6Y8~7s3_!39HwgB{b!dDPlyaJ93@4rmj@=8V
znbgA<NBzJj<Q@$RL>Q>VtkCDlg(}Fk(2ya(Z)XuV?5h4TM6LapUupIk&Nx9;nfFt6
zgbRXMgMf{6l+@0gavAF9oe8cC-YxCKJqdl*5Vl;N(+Y9|3iUmo>?bH<R;A43;QPN2
z42*mpk0030*r!N)BYbu3q`|SH2`SB0z2(B+%?OKnXQrc=&?U?+&t~U0#^K=DdVS*O
zVVnPN7a}Ys9+xO{!#1xeMOTYI$kfSen;V5Orvvq=DF;A12%AVa<v=+=HzASR?Hh<`
z9on<dOvz?HrHKrpsb8W5Og|Vb2)q?e*hXuMXzZ2=+f$lR$uWuOOcAeBZvLvLZN8dj
zH@?eBh?c56!<@UMl~^C8;R+o$II-=)d3fo%$#fh)+jjK&`9F=Syd><Z()SY0!W%WA
zQhs*6;YW}r7$@xBy+wmrZaWfY{(sv)<LmsnP$>VxFN)SI=HS$-TMYV=+j;zikPKo0
zMCmRk4yX6nC@0K;TS6Lgz#gSNWyfszVM;zxZve!I*P&va(k=r28f?qM0=jt^mBOkH
z{aqps8m4kJYF5Id9e8u9A7EQmkd_5VU-7K(+S?nA6Jz{ojmBK=KCZ15cwi$^b2L6A
zUz!5an%5d@M%L~-zCH1AdqK=7wk4&PnjERypeJb)4=`e#J<#f<urVE-Y?IHH8@Am{
zo|=2MB?U4yXgo=j>R#!{$f#7s7AMkoM7)9LKzMYPHD4<Sk;{ki2g&jR;msY>?fKE`
z)rI?VmM}io%>{8JF2e3dnfk8f&<C+r3bjNCKT^ev9?4zGAvTl2Fw{iaS<FfM6z~)7
zHi#^A3Nu50eas_#BRTA&1*WIp@vGAds9w-*5YY(a+EdK!-4wRFcct2Wm$}$VKWnMw
z%V`QAEEHF7{d9XPSSQh{&kiRDdz?om9s6SJSCHbr^ByXG5vlrclV7&jnIAY_4CCn+
zyNF6>R%<<{jD3~}YoMWQuE`2K1Rk4=sc6ES7RbC5`Z#!w$`f*c&04`iDURjrewNFi
zV!Z#k=Np<O0%}1Z79Xwt;C*8jwZa)o(Rcy14F9zp@BY1!LXQFq_q+$G&wa_9u8}AE
z8ANG{*}}sa3L}@->j<Dy1XMiMxsap^wqS|g_JlAz=MzY_CK(CClR`?$HA9%=eewSt
z;xtXWqABXWPeuwaCl46M_w@g}JixEJ$S~>Wf5gBj?nOg!9Ak5~?&sd!=0YdZ-VJ3e
zU#sjVixEu2M48ez1I)G-TN`W^62PHWe+gG<y7b&<mA3R4R9x&sqdr~v3l;K;#JWaW
z%cXtRyN+N4&EvVNS2X-dy@>YP93`Wx$?V-v4|C&dfEZzHAInWK=b`Kxpd&bqcKrO^
z`}@a@^X((6G%&Uq;~|TpDR+hsRveridMXc-sa+>DFTG+%L5DQCWjdH{Lze$og^26e
zTbz}f)TXVb`<U7wAq_^byF`?Dx7l6`(?(hqu3!D35Ry+2Ei<ff*0M|qIyDh<Zw_x0
z>{S+#-(jty?UAxGzwA-N?B!*5e9tClDnoO(XM9uZ6^l=tiZjf$u00j^q7yBdd}&)5
z6v0barSsIx10Hk$>TL)lM9#2C>s2!<>MF!k9nY<hL>Md}FN9lCTuq#GIB;HDY~r`>
zR#pP&8P95oGO<RamQa*$b}vO`F0&Wg!I9Y=G0dFgN#9~pauvfzUl77U-W%q=AH^`H
zYj04t)mwRn2PS@9Lbj?G#85M-ME9OSqYQy-%%?u&HSL_0C}|h96{ruNnvPvDnq~70
zgzR|Bgu*S`!Tr#N1`C_0zaqN+V7U}Ej8J^R0H8{|<UoyGu8egeG0gBa*aq3lH=p%X
z$l$WqD$2v&*;=cBs5wjKdlYCP{$gPET*Cx*%vDsUiZBGEg^IVdkNafl^`=R5w!{!>
zcKI4(bCLC!yD>i=L!Usl+lb|J-oF7;Jg}Wq72~f<vq(1Nd|21eBR%bf@drvbS~Oa4
zZx&&umseMYW7!387X=pQ*OFZDDG1`G+Yrd?dY&e0P2dj;kF1u{0SltyFhkt0IELqn
z(Yh{Gy?V6+HSs2&aJX>k8Jp@ZWl^78!~#<~L!)xUQfX$VQ>_=^2mNsJ&6gHt)TNap
zZd}~SFp}@$9eh6{7XmtiC7Ebw`ktOZzAQ9@m^W3Ph7J&ZDIxZf^xa&F09v<uG=4+z
z(r};8>>6bf2t{@a2T@maVxwxUDF6F|^yNMCmthK;QV$7BgZ((uJFa4O83ZxU1|B0@
zz(e$-+RLCb0uCdy%~M$)la&SMeRRbY4RN&0J)X!9MjW3Zt!L&vY=`PAZ|v(Vmxk=r
z&p!1>^Lr;R<f03d6?;@YzS9W}^#^Hm#biY*Mi1NI=TV!;$7Q5=L)jmZd+pBv%-1Ly
z80`?LV@`HnJQLE*n>#%wIj@6A-ifGj^N78QXH3XGPI{5~EBzG0NTQ@*cXWqTAcZ<$
z9tjX!VS7U~hDPd-$sgWnX2Cqh4if(=xwRyWkJz8dQy!d+pS3AEgiok#HG{EI1JQC#
zHBg_BAsaeQh4k_b^P`D`zL*hzcJChWY!q%~Hg3WX1MU2=iD$z#MJ;@iS3xYLKjOSW
zKd2zr$Y@q{GG5lDiccW+TP8VVy@&WaYEW!hL3Z$soBDtQA*FOEp)=sdv1KjaY{q6>
zFnvubaJXbAox$*|ey(Ki_{Z+;Xt2VGvc1zh?y`Wq25bBlcIFT(k|FwV9!`(Y4~=F*
zUwxbzW!n5I8vQh2;;j+>+CV+#b~HTuC+6U>(c8oXt^tydhY^g5coeD&fEn<mnCS~J
zTh1+UaDhrAYp7mS*_H+Aj_bXjB_1`D^U6cq+^}JTD&YvpyWCz@04TD66By|971seG
z{3|KMO#?by>r7FNW#Su*Hia+;vQP?)V;viuPfuL=U({UD3E@7es<sR_-D`(cL$A0N
zq8bGbnL+=6&6B@7f^b;0d$PaqoFQBk(o+E<C4=pceHsg=5Vc+f?3lB+1}g4VApzQ1
z`PvR>m4&k-&IVER7A2(<gRi~sNWTs?P^??uDmY$YlPAQd1LE!Vx*8(UK!VS&&sL5j
zu*P=4zR8)=opXibq<T%*QbhV<afP1~6mYX`bNlH^6^bC61F{l}p%_04i8`UfCfT;5
zAO7p@Sn0MnhUtRbl!b4vY;5+C(L}o0_3Oyknh?5LwOYRP3Yo2|=1rv%2531xLout!
z{4FORzAy{Pluw^E^4yksoKEr|BlKFW+Ywp@i7^iF&o}T98B3=0e2(-Ry&tyPcaqb|
zv2$`KH^_{0sTRQ>sA_mg23I{^_&%eSp+8B&x5=c9HFwb;H@z-kbejjpX?N&PC%=w4
zs}82d(uxMqM<9xj#Y?bBD7?=KWq(eanp5y<5JFtZbn8y~r^}>gv$?*<@o!3dQrm4y
z9;Mo4l^{I2;w42NTdjXi?f$Z|eXv#rc|a76Q(qv>PIRzP!W<HzgLqz65md6{J|n(<
z5If?TPu5jlYAKE$*UQlpf=~cm@P*5c6vjKl0-{=&Po1w&K4}5QB0@f;8=U&%oct5r
zlZ3ln%OZSPY~qhlK5Yo*umS96`5X*l6$t%|iFd?2V72h<X91u<j8s&C)-7O#bu6p`
zXcj9BE6&e<O={xX6a_O!w~VfMm2y-=bM=3`p&>Hg9J^}Ao9jSBOoSBfDKU$@p7pXg
zJGExMc)A49p&x3Iw76s@wv(sclIWj4S3URcC}qdMiGj}ovT}6cWIlV8h2=i_Ep6@y
zqoGn*qIx^Gr=Zz+G`x;szO?9f1TZ@_<s6aC6REK^(!~%=N)Dkm!e@blaj!QF40dz$
zPW>zr+<d_Ca4EZ}bBYGHfeVz^4|q8DKVE>DdQ294LQ_2qs?rVF5!Eg~szYCA{z9~X
zt#01>tF3R%GS+R5J@ks5YhpC}{&oY(@rJ0!7EA#9_vC(Sks6>NttSn~9eW-J{}W0x
zCCPYwhxt+*j&0|V<1OVaT@x-S+V3G#BkIBh6<I|Z&u%YD3MO;IKUqy(EOjs+{)ujD
zlpCXcs7MLomO+WYtMROdZyD_dk$uQQ(dMuP7qBF{OIz5}QBg+oZZ;>{Aa}mpP57R+
zZC+D=sh3Vj_B_K?aRM;9?p@%MDK?6diBD5I2#!DP_ba#s<Abq#Za7^sH&}tn{bhP9
zF+Uqha34{zL~_gUQ~XeAA$GLM)=3yjqo6<uLbs>@X?=zT1EmXAe>Aut-G)0w4kfb!
z^A@g31!{Y9?ptZanS4S9n>*ZNs*T#@q=Y_HP0+H`1$dD9Tj4Kd798#T5Np)_#i~(y
z&@bWEi;U_jK(;M^D{Vom4<+n>S#$G!V=e{YFc>bfkuzK~F6!g>4=dRcmCV(3AFNnr
z8lY#l0Hs715(t7;dB1f)y!fp{=;6Vf->(BaXc_WeG^A>5OuG<3@ZNA;d{R1{I)s^1
z<=xTRch{Ga<HU!k79!ukUyUM7MCrLei9Br}xxigKeeQlSmxOK?+clrlaHJdx`!@zY
zfi9ItXCguPtrgR@gCQFPsR5?i1aJ?7WW+jq0I|h1HN;wFC}J!4Tid1&g|D$-O!!~w
z%FSzvGIzh3lm~<L9--q0&eb!$7T6w{vAtD$0PORXx)M53geY&&H)psfEI%%z6`Q!)
z<q^GzKM3au-rZdmu<YG|wiKVpE%`|b*zw{eT5Lg^Fxym)^n8C`>-|xo5f5#R1~s(S
zQ|r)`YbhS?|DW&Eo_K=q;muSMFJJlo33js?;}Jq@qRQA!S^N_cn%NvM5Cf%aY~#u{
z?zdL&Q(0laARAheJTD~Qe=@nwDH#@Qh5!(o`RCR`#x@!;0@-En&uqHMRq3>?1?E#6
zQd@<5im^IVOptre&PG7^x-QFYlB^aFa@%~T@U@w_Fjo0J_3SjDKJb+T<>)^aiADJ@
zo5XC;my~KqY8}D>U92)fDA7e?Xn03PR~%0Fq}taZh%Dc3o>VGK-^xT6Zp0E3_>+lK
zEAH&min+dgt&wba^6N-E182t9s>mfPgo3nQknnP3On*S<fKfpgVF6^w9NIerS`*TM
zJR`!vhUo7TwsezeZU$k7-HdN3_=@>}mJ6~8p(_&wwvA>EB3aEw6}GWcMqTi`8sOJg
zC?gPw8avmIlF_QOY$r%k?s`htc2q0`ob}{pvq8-1n%WrHOQsqUJc`!;Cx5J`bY#+E
z%6c9yLRU~J0mZF~YX?3gZ%j1k3y37c=!V;FpWp0aOI?|~$E6Qi5vWEiyy%*lrz<ZX
zalocgL|Ov~gab)|q<2HD1*8|+NP3%r*ZCdXrZs0hs3-sUX;jysVWTl6jqM&<-F<bP
zoqwisMrpTHAGLH3qyq3rrL@VHxatCbLxT#SUuXHr31h{%Nar@bLiN1y`k2V*!>wXB
z8BLUnlz7p$AZBt-7w=H@MM(pN54)W*1Y250s`J_(?L)T&8EH;pDY9iq9B2{eI)P|Y
z$Qw>Z|9f`<#Cf5Iqbso4#LBbpVG#ZAp8JxkEjN2Nb{*X&yJeZe2=0sJYFX5XoHE++
z`^zgLo!3QE<{0gUvaIk8t-?*jj5VAvvea*!a+i7Q0d4^x9>+u$(zmJ-Y4s6Mqv6;=
zzl*WbmfxAe^tV=cWcx#oMfGir*e0C=lfjbJ3f$J!{uzs*)Pfd@wgraxg4nIChv;8W
z<f6ulUj6N2mY1KkHQcB3q+q6#6sOhU*Iy*X*OIS2*;|K#)BW*w3K5FlB484WI#VLN
zJ0=xxMwb?Qk(t{qohq*pV-tdgH?D73=_oovW#8%NiM}-mVt4=2{sRX@p`NR`{hNYP
zk)E751LRBZygy1{&fmkn##2eBAb9Q<%Q2h{&fiaHtFQI>AqD=%mvuWPP`ek_#iUay
zjUnE(Kc?@F*C?si_=d0mu!8@4#}OHLF>)n5%Q6npL!l3ZHbiOmslRB{bI2Hw&S~GF
z#MH2pp!?+e#;b7<rS9JhRaQ+6H8HRzQ*9a1B2AZL+EG<Y$<*V|LSZ2fcY>xy{9s&?
z_O%kAF$|yD6o?v(qB3F~7~dQ8Fk6x-1^&|cQ^x2jDy^He!`N#2+F53A?PZ<T{{4!f
z7O{>O>v&9%?GH3S^RMM?m1>i4X!c!kxN~&-GTJ-526}k?6V1LE`+$w+ehtROcmn!$
zI0AZb2@i_{fWcE8HH`2|vn8&+t~129Jk(L?QNAK$>%YAgkj&6Oyu9$3izzm!cCgOd
z8lA>qcIlbQ?L%0u5U~dI@6bU0lvs9GX$`z)Cy+Bf+yR)%&st++i9%L-276C2f2{|g
z#c4tgH+tFGskYJjfxpO5f-jX74CwYX|ML6dT%W<@HiEv^mF%BjPxL>hwep;WV%0C8
z;fcQuZ1IAumd_#zejaq*;RW7u#z=pT4tWm_jEG@By-;7ujt^9b#XH!u;x=td6uuOK
z{h5iE#HS_pF^~+J1=`wwk8XwQk{OLdNwZe{tPMD;Wtge5sT^>m{Oa^;6&%!irJ9Ph
zEcGs2hst5MweTHR8+`~1OaBDBjSL;NG*Y)<01gDxXJ^T}E&4j;DAz^`ezz#zWlq;X
zUU@1Vj)FfV&F0*ysaNfP&;k07wx6Qom4<_fLaQ&guNKw5DAjd8n!Bd@@SB^D5`}Jr
zhnX&rwCAT2_)qMKvxC#<^_T}J_p>B;@ME*YplU)(F_|@!uTOLNi`Oq~(k8zMg%ebz
zecJJSqXA9NA%BnCh9X&#YzG)FM^v;}d3xC}u!ybpZI}N8RlD)eiNH^tQewj(a$@EV
zR&e$_^4!3)=M0a0I2u7q#X^1(LXhLD9~z_`uSP(xNs^ou8#$xnT9)3Yjp`0U3X+k(
zc*HXYTUP>CEH3QH+u3yRSOHY4U55ug&je~)8OXbGMLud^Kp+fgzJ1a~axGGh<nE--
zkZ7gHnZyj<uJrRb<CYW<Y7tBf0e{aA1_Y!p-^7f~KDm)c;B$Yfrx!C>+kYpP1#3nq
za}<A_F@yy(=%HEy>utM%BYFMRz)}~Icjg1oVw!113ewDHvfJv+k~SUz+`R>YY<4K8
zU=`6qlvufm*Uvc%CU2Qs;I30oIx4K)tfN!ZypvQK5>3cnc=-Gj6b0IG5(7PU_X0qX
z=AF3M{k)IZQ-uKMnC-w~tZ7#zV@Vur3RnDiCj7gRE_CTwa#i#K@{5OvWfw)fTnJKX
z`4>Uuu?h*{?9&^`ZUowGJk^D;+}0;O5r4&VL;4Y!V8t~NS9Vw%q0$YY@Nlf6Y#v_R
zcJso27?gQ5qrvb{Xmff@=5sZR9vO?{GK*}K?{bzRa|CBL5dB6X1>;^TOM&D<Pd`3{
z3|UfSvX4zpMcw{pm)+1>MNJ<+avu#2n0oB5-8d^8N`(E02|Zx9v{4%Bp=Vb;`gf)<
zDIT6Dm1Bs+EF~4^f!dE&hcHgV9?Rfruz=VoEvkny*W|?%)#BXDd0~8&p)q%7>}b#E
ziNG>@cy@wMzC|80&~$hduL7tH-k1LPUq>aHt8nxbZ=_d%g?lfgP}hwn*t`Qn04n5d
zp?)ipjUOWz9eQ1w!bd>~u<vah@m{&rTft0WMk5)jPN_T>He5f`G(Y?Y@wPL&k|R#C
zp@JIJ!ocnq<tVFgAq;!y<tDwT8Z^!SZHRT=%ubF?pA_dRv-pTF5eT(|Vh+{awPC-$
z4$iK$-RB#e7z=y^j25M028m@~IHY?LQEgrM;jo{=u>X$9IU0YOJw`}($0cKG-43UI
zng(*j=29(<5O*@i83Jro$Xz#|b1t%p^}F2`7U%7$Tdiuvg&&t6g$O02;~Sfuk*#{R
zd<C`IhO3nfz)S_6m0<)+RjAp4IAh}3cc}_Uv!gj#TgM7%*Z%dndx$VTB&Y6WYM@lr
z60cot1%IDSC(d`rOX!>tTFjWsC1a~L-_Y3twCnozwPv584fkRcgm_<NriBkY7mHp%
zLeGgsdKVQ_D!;3j><kD)Xow^1hYDWFtGQE4GwM=k_MBvrVmhE?^L+G|`?}8XyeS<l
z6PFa<DS?qU9|0qYH|#Z78LNZD4VPA;+hZ*XSVv_zfTZ{xJz^1v1@}{DO%lh<fb4w+
z>p%U@&QY%kB5FKvF_gWBa4^i_@32VWBWK$T{1vopp;V^SN{g{G$!foz!WhVM(hQL<
z8ftl)z-}y0mEHNCTstEqduW_eYO5df!9^zGkr8uo&v`*lz99rrNEcn$X7)GGHL%w(
z=(8t|k){qhY!IKdvC!PwYNun5-?^9;^vvT19(bCP^J3VKdR_9C=78>$K2q&)^lI&H
zN=T(?Ab~4u?1ARZUYAqA890OsT&Y6noxQ9e7N7mqe7rKJ=>fM~>`itWH_0T1mwo2l
zvL*ghH$)Dn={8xX@omX7dVLI0X48L^%(pR+n^`VPSl_;K|8JW3u2o@*JM{Bti5R0_
z;pcsMw#}ZF!~l@m6Ol4XQuhI35my+HnZW;>F{GUvEogp4u4U8-tL}|`J1&hJXHqkS
zizB3)-9pm3S#rWN3nPd$GK-dS&6#`41HP(et+(0~==rbOW<k_aj-D|vk?$wh69t`0
zs|(TKnbc-qR(2?`{=n5SAC-06z(FS1uYlPl%8-uH8jFUQ+05wkG^h;r5gmDF0hJAa
zyYM#2+V3TcDAT5EBW|&Jplhr5CC}_GrMw_cLuLQ&bed{_`7lez&DlP-DceUg*m!IC
zxU;RVq`!!zH|Y9ry0gs034`mbQLS_4!IKzw(#-yfvJw0cLP*$QY@_ad)d$Vj<6Spu
zA!fRt0vk`|%&BW3B-&QG+Gf{^Mq!{aYJvsGC@#2xK9Ge?vFO9>lD-GZh})nTAX;=m
zg*tX89b;Oyg)M6=mM@yNA^@Ofcoh{3K&{>fdP92YeA|~%WG|B?37|TbrjS*(^tXY4
zrb9iu#dYbY=JWmTIUQnaOCU^D)7SQc?77j`J|<f1CcY!)KkX;u?NTrdvPRz#n4uir
z%Ey%agR;HrSDc{MM^IC8Sy}&!wW6Lr_-9vAXwT8j7~~;GfGh(`V-yLnZy}|g^#F-~
z>3o+390W3N8PZs-pmjhLQJ(iZ>hdMbp}svNXH^oviRsSX;r+g;2oSb^gH3f`=2n+s
z&o>1B(*t428lkD$<vE|ee7e(^KX9xPtM0aqm15MkxADc@`qE6HLp9pll#mkstRtby
zv|1~jPOoJkG#`*iDT{0ySd`b1Cyeaj`O4nNRQ_PC*VUZOMU}R9#{(+ukXEArTpL>2
zl_TJleMn|PR19pI%}fw7jx*|gm3qF1_vRsa`M4g=aQ$AEEDOZuE@3CpK5YLca?SlT
zM8GVDLH;#njWn+Ei=vx*bCbP^j&xrYQSGe63J7NR7aVNgJp8|>-f1ilD%_~3&K2s>
zZ6qepN9D#WlL<hb{P};!!MdjlBaNs2(VlTN{}Deo?Zt6K1()NF1yHGy)sJd`lgMQr
zj*H2Ya@k(>@^EZ?{-Xr)fg*Z@xP1$+=tdF(t`cvN7$|hPp~^c2a#R3dIAzb}Oj8rN
zO!=;vbiY1P^@qIp<wEXy67-LI?oD)U!xkz0TMr=)!BD=dNo07F8{4+S&mMW2ArjvG
zUU3<O-dxAu=VVDg>a7t~-eYu3)zh<dfWZoz9*%K-O_X&g?_5zO5;61FrsAaFYm(-j
z4yoS&&1)aK6B#VLAgMsM^<`J3yT&&p#x!2OU{lAA+oB2V3!x^JRt^Gj6F4EN;4*Vn
zPEsc0*Ku;TNp}VYPfV9k`zE!ao+1VQy<(30tIlCDk8og14&cYJ-mQgt<XsJ|j%+90
zBo%~Og$m8*&$dJjVIQ`K+rA-oKo*N>cmIIgIV+amJ*o4bCA&oCRi3);B$32Fw~}IJ
z&Q6j%nqdJ2x&sxJIhk$0-y$p@#Y9ij@eeaanr}lGrcIjc>syn<N^05%kplI-#YL0D
zsWJn|0j3^^2a<@62({nFJpNbr6f{t0w&7s8l9(5&9AA)J#>4_1+k^A%cdH=vT;nXp
z!8TL9Y!JiXHdLo1J9IqrLs+5Pn(bcVDFBJ)Bt1K&FEKzeohLA#THmU+_@U7!_R`v)
zw4=~CLjv0;-$%nJ^3CnY;x7unNv-%`Y_0t89Zk?Ih3z{*TgaO51m^DwRBQ8qx!Y>s
zvan3$^xM?%946wQ)%AAn<yc)~wAb=(ZFOQ3B4Fs98NRuc#eSks^|Kxlvmt<>LA$jg
z%Xue#utH&3)0b>i=#mnJS>qnVO?|(^F&N)ZM^o1e%AtuCCQq;vGk0e5#mKVZz&ZWc
z8O`MQW2f}swrrbRKRqUvo^_cFNeE3K%8vL+oAB!BqeK%-5TO=&9&7y|T8z&8*U=e5
zwt_}ENmexP#bVu=m7_kRcg-l#v6)Ct!2Eo^<o;2s<k^@$bZ{QF-Z<=tN@u>S8CrH5
zLnIN(Uf~`1{9B|;Y*deqFMdc%s#*S5KURt<w<$##8=R%5FH)O;m6gNhru7V}1w>~k
z(C17PKMgMoftHQ`u;2uSZ)1xOP!e~|^WGp#er^Azjd4S#G_Y1{eWFon`B54hs7uFe
z@&*ytw;kfkiLyv7FsRqMu3fe?3x<%VIk0XdUe@QSe^v5xNEd8@cL5hZ;#MQ<;XoBq
z*dMya9LaZ^TH{1>vS64@dC4IB@RCPy_xAk*C@~Z^W@`hEIXY0|f+4dc4{l>n7JcNw
zyA}`IZ&eoPfTPN=yV8izHJ8ga@dtetHZa#>;N5C6OE%o*2d277dw>Ir<Iwmfk;8h=
z%B{6u0i770WvJ4(c&j-p*wzJ};Fth7qYI&#Vpf4_bwyOuomIl^g-r)xp3Qxth>Tvu
z{W)Q{)`&BNnjTamX<`9NJ9<WouvsC|&2GmtUlWb+`2J^l=NN}sMfq2sC&I_J=5PMF
z+zsmb&PDsikyx5p{?k^Zr-2cu+=^8B*aXmd-uLQbo^maUgMs=3t@kF<s3A6zeF=N_
zj+|+TdSvxF6GwGKi9Ml4N%!2Y4kh1&hgHMmw3m!9Q<uxN#oCc+G*@QWX>e2v2+-ox
z!gYpYW6B`o&i+y3cvo)q(QA0aF8837j~s>2WBbCppusdj$ArR&S2pUGLDi07B`@9m
zjAxhld*40$&zfXYN=4S9aW1@>nqee{wnNR`d7r9f@RK#WIVka}pq<iV4F^-PfaMKm
zoGnA2BARI_uss0lG0?Myp5pBa%**0}9#QgQ*8#ADN$gk@cvqlKz|2|6FB1O?0P@{I
z*8cD$Jf0tO7xLVS(QVgh?YvhZK5R4$11O6Rdbx6zWKb^Tf|7~m7~Snt1w)Gdl~#3Z
z0^1Fj;XSc(IH`6_P|)f`4~Gliqo^_f5eZn><BJF{H~a67UN528;Yw_(36AT!b4&C`
z6DGf9p8_lG>@_*KpH<l5gxd8PgUd@U{&&1$zmO}B#bITWMwtoH16Cie5U~y0pCo>V
z&Y?^vg=~+<#bDSSLdOXzMhgjV`s_Tn)|d~yqSxW1$p$MJ4wq}LYQ6aM|A}T|yOHIz
zX`w+uemzxBkfx#sszTKVMbhmzYk4mmc>ss=<7cPAls1=qi22APpMSizar>#rRi1ja
zT)?gZgIKn%ciud)srCu4x4Yp-O})B4r{zJk4<Je)YrpxyUxm#9`cjwS)40?IeLwVA
z6L_M9g(XVw<cIAyb|t|-rB(Vs=2c02QgYS127HG%|CoB7f`OX5rDL!;hS^dIg_Hf{
z99ru$d*NnI*F;F@9V;v{MJ3?m4^?=PO*Duvhfg|GD6L{~f*xSyE+(5vvGco9S40t#
zxQ<YNr3Na_ok5hzyI@9oRe|F!7W<-)0SwXoKV@xnF_BX~-=Q)cNyJ7746AxIHmpR^
zBcrIeLp<ava=Hz2vi=;H@1+?9=rF1c{_NU2p7A|EX8ttuJu%-{b4F;ePyto99O?rp
zVgi}A+#2gayma^wJ!2O``*epsBmZ0xT}b1soP{8W&@~!omlrdUyM<^^_KKypfO^fj
z`}mzTx*O@Kf2oSX*~V}wKdQZyIGG<2>HTg58G5TTpXGR>>S;-;kKoStwq-^0>sWys
zRtjkCD#D-W0OBBS{7(dIt~Q0s>g4*iG399^sJfm6Hoi8zP_~7OF_T`$U@EaGcEjw*
z1X^)><fzJHNZ<sxV<H8E!k8lkGZ0Z*dVt!0FXTrhqRFh^V{*s7Xqw>=XZfuQdAFlY
z{!;e1GG=PAMO{f8cpLd8`Ca+C8;>w_3^j#y2(2&&Qkp`CJ%1db?)XgQL%ks$gzb~7
zqY{dPTeLjnVVxz12mZA2Y_i*~I9t+4VV(moTCmn`L1f~)Qb3)OV2B_}*>;6pa~kGe
z8Pa1OPHi6Cn?l0JCQmG`wx9uOoD=Zmlw^V$m7v$NOBKib`PHA_#DFWQ%|ZyDKW>N}
zd|HaDRj97jLs%{odGtHRxlFtSFBt*u26&n$2I<DxQ}Ah$O#9>At_^lJiaEbdBx1@#
zFvXW$>7Bm?IbCTY9LWyV=S%my$J6`dnR{t;T5_k3Na^5RQ)3B6(f)lGAr<^%I{W_z
z#2A^VI%29z1vZO2p1thiW{jiR`!9>0O&YT2taKtMrm_m(GG^0@4lonmO<tYywZE$I
zXLPQqt;PIDcbIOx$^`a;VJBf2VrV~!Xs?0aHX}uEHH9fhDWJ1?w3W>Wl#Qmo-*=ve
zJ2WNpBYVe_80h%u>yISIS~+(dlQ{X)bi&l3H2KN|7T^4O5{V7%$Nly>vPoXj71&&Z
zOJU{cE?q?Z(62Ux6bZ=1BgH%TG$PGFK(rqa(yiu+)@e}po_+Bd|F;C4q$-|xMLAWS
z2RVi0+~96f#gdf4BHVk@3<4vQo`+w!rI(cq?u#3L|5HmZWA^J$E!GhfX4|>e0Z8#P
z?6<8C-toiDxuYhwddCG~DS(q#3BL%;_=wH12G)`BbA2wGY|Y*OuXf8g!)u$BZ&_e#
z37b~~>hz_?K+b_~6)PY(Vp#DNZ<*jrM&fVgx~230IY7q0X1vG;8*4?_Xu23COzC7K
z)0`2d%uG(=WEd6h8-(DqO7l$(1e<-Tnp0|sjEqzK4&;unxXyFJl?BY(t<(yXSs~sS
zZ#1d;8H|$P2lWBBn;1MPc-NQaUSJ{MOx5xV4=vWVv?^Hbb=)!RFmKuEM}yEHj6P#V
zYS>BpD_k5vmfDl)N-ONH6{gq98^69+ZHwzxV!@V_{2lnVJET{M47?t9x?huo{WA-a
z0P`3h{y5*;p6k4m{BrM6?H6X=KPBO0^P2RpkL>jB0$gZ5ja#J+hUtkci3HOW`ooTr
z@%WA^gWf5UH3~fk>SaCxmWvq#!>wEAUIwue1G~N$SQ}fm!CW%=0n#nSWL2iYw;0<I
z+vl{`SDF|!2f^(`Cg0;bHlGp+O|uZ-Wi)$06T)o``Q2{G1H2(X#y2!Z$rWe}V*p~_
zab5b9%|0j2(Lq?L7m!BrU67D#(CoVN>F8d1QN?cIRcbe-0a~EK%Wo)T_AKrJ?2q2l
zqxxoDC+VMwx2p6Vns1J?BuszNLbTZry_b~X5o?p6+i$^r-_-;kOJs3isr;L^aS3B@
zI5A<OS1JKmNw(m?H(u3mC*9CuoL}HAK3Gz3GH5bAl1+jU8h<qOM{9#n%iMsAPF)(y
zxh>viy~!LeS%A?Ts)Ob~31@gVdx7n-a&>eC^rcX6p?p-Tv3>tnttoq=XBjYyw`q>O
z@R*{s1jFDROLZkQ@z?Sc%qARk2`PS4apO6>7fZRcgx~!!zCmU8tiBO}%CQqK`X#nP
zy`N?!ypzT>99Sl#w~D!|aLcmOHfwkI(Kw~Qu_9Xn_mi>pVu#)NUfa4PJ=(1NvbJ={
zJ=r8R^hq(-0aMyyCE-$Sn>V51pJhJOk_h;IL|oZBA#D@AF}!tZ$<_1HW0{dMu!O0*
za+sSYm4s6v{3xr4v`)W)hpQM$3&z64ETb`l9(%xaZa3fI#=vMGSR>J>3QG2sPgO*s
zO%Zrf?K(9Y->tBAc=&i?{2t!hu;2Tk0yr>{wEPm8{*Sx$y@XFF{6SE-m=2p5u?mNc
zj)4cg@{nU+hbg1TMy2l)UTtufMwzJ(!+O^}-URlIs9@+L^(xt$0~Z**E(ZE$>-i1b
z&A%i&`mDtP>9I5`=)&gDmb2la-X(7!Zib_p4hmcKr+UADJuyZ-Muhcvs)#~lBM6&u
zO@wh>jOGFzM@W}UE-Y!GFux5u)jjD-i7CWCx+*QtA2y@Xvs^2wu>|7%Bc;EJ<VRT0
zXEr>US$$b@0``Z%hEggswe{`Q9s#lKoHQ$8`7JuYfc?sabAkHZeC5s}*?$&3{Uh}8
zifle^&WzX3`~Orh#sA)H>#A8oPyTi2T~kw*m-!XUtmY%{27Jm3P&C4WF+Yeg;TmwP
z)1EvR)|^*-x6zpb(B^MDHue&nzIcZ+LhyGWZrHUlCAI44=P}%r{SNZZF*Lwej3XR!
zx;VUo#8YF*5hGcw3=ulla!={>Jn!pcu9%z2LGBUARZf&&`u)e_{ub~L6KB93hJB}V
z`}kebYwzruPBr=FwplGu@`bl`nk+m*iJde_34tr_dJ8%fPQ?X3P_<eE2pol>sfY#H
z>lSci8Wui)RL=C}r3`W_V84{g8b6-O3_GwTq>?itY<XR2sm#jsS^`aMyN|UuIx8zV
z?9NIsYy-Og8yKpwMf%V}lwFCTaObUUYgrnZeVTP(FE-E_iQ;t^5RTsOhZxKs1{^Pf
z)sUzRy**x_S3k=qBA%TFRb@Ik7&gVWoCyjTZkvSW?{w`w0UJe6x(_zkG`UNh>xCa=
zf{*})H*Drzt(ogX=}9y<TiXj`yUX3cc?h$I&fh))YR>ZRuOZ8@;Zy7;SPxyWAN&dv
z!AGO3x}l4}M-_`gd*6+R_27Z<Y&Ml%t)9;ijqk>ZHc>YwI`eA0Da!GTk(%q?sx}0K
zeGL`I=zm82RPWJiWUzP#7?AmM&}R^d*4LNh;9PG~m+Jr&-+~x;&W7V=q9w7|K(BY~
z-2+WFbS_yqAdP|X(!LXdbxP`Ra%5XvJ`DV(>$=EP1lm&Npt@DMT%~-BlMT1h9305l
z7>)(4-9M^~O+eE<lFNM(;oP;t#W@&My~|lf4?MS_wsLr;%U?~FoZPnVOjg!b|BCO!
z-?-1VuqTfWAql<G5OS|eh+L2~CDEC{Pf*&<s9X#1kl+5#`ez}koR5le2$Ek84&33s
z<@{5B*=}aIuV6An5J5pw{ZF-BlB-1oVQSr#%fx4lGABm+js%{gi~X*YQf6><3B06<
z|33Qo{_3`ZzW2&NY$X`sgkHiY!LKsKXyGn?Ra0;~TZj$Cs{<4MU{Wrd4)?gg_e}V`
zcY!6=)VfyNEU*#LOXFkhr(k32lgK{*;kEgsIqScm3c9E;bHAJx6H9@F^@`a9Ik|-?
zN%;<Eo`?!pxpcP}LLN+7+>}H<J3@(5Mi{hg-=GFOavbRetrBBI>0Eo#9f+No_xl~s
z^xuLFBc}xQrCr&r#VvFEUxC&3xLc6%VwNkt5yNlwxaN$<EICTgib^)SaM2-fZF8ib
znn;+vKmNhQ%=KJN5w~e}5aktCr%J_~F7ipvr(L0(a~Vq?JsBDlHB;Xz_3wk1G9mq5
z5D}Hl`4mb#Z|vrEFzuVV=cS!CW8_RbGoM|e4=!fWrv<)-M;no!jQh~m->tYpy}>Lj
z_>4ORS}V7L77ywEpQ^c%#PtX=*@(e5g0RqRSfa;tu7Jof{QKE?K>qe)Ob%mqT7{z3
z@`01(VA&aKUDnw04_yeD<h77Td=BTY!s^gA0Syulai|K}I(hpGg(_4FMF0#Sn5XVc
ztscPUoL4Y;G?9)1pSdA)2M@7uoaP$kt8cC*q^W`k9BZaM;`HS8uG_JO;w=op`Z(St
z!A}J)z{>+Q1rT48dx9rE>V3=KSH?=%Ddkh@v&J3Hj2cCjxY?ZF+*jE;w_4wFdM@o1
zNJ&vZg)OCK9F`2SrNVfQk1?Fj-UQ(zoiQQWpM=!^xXQ(Ros<BbH`bRU!@gA)(EjUY
z-X}`rzU9pm3o!v$-`Tfsrq@ovb*v;2+tM6(&>TidMKrCSI-)h8;NNB@mf8AJrAhG2
zCE1j7DOTY8+xak!`P`Iiq^1nsw&29U;w2Afm{9JTyWEX+*eB!sWjH_dc8WBqFRx+e
zFchCx%&KH{LlhZ`0F`ddJ_UDb6xGYW0Hc&&in*kx^H2@OKNix=YR&YXwY)_n_X?N3
zoE}lL)mhglq!2h;3UjE<#jSHAiu-sR1CAeYR7_uV$Qns<(Jq>#6%#GScP;W<4-Y&E
zz)~*2(cVEb*_z!_iS&DQF`p~UBKKt~fWax4-L&Ii2wl>(oka=LjCA@}vo@GmcZ?ab
zQoZmG$eZt5Sg7K!%Q;qtYerInhG;*lh_=z2pv&5rda~4bsZ+otFq3yFATyi)TFt&O
zjtQ^Op8cNa<WaBDAfsBi`S}j8N>ZS42h!gX{XTR^t*8yO@%FP0a|SrE-)r}-oK>wC
zH;R4q3P2ubz%}c}yg+&IXUfqOtjyQFbYA7qzc#R=R<0Ht%PehZ8dE5)`B$_cysnjS
zE}GFA$A0C-TGNKN6raTmuQ6=3dZi)rgOHyNE``+=!>8u3^?msZ-V+GCQ=2!2iC^gI
z+2c1kNGU+pwr`!jXjNIqI2KNWP3B$4iF8v3EEi9_7_g0txkxD>==%}V_M~LHQUW34
z%gp1!-#}d^3&fp05VIT1Z1jWnPD@g(;(J7qL#)S}aLm4!*keIB`odUqWOBQzsIYe!
zJza=gitji<x4^!c!Mf`I&9_1=5J+wENeYt+cGl+PRT4vw8||7C9*F`+@0}8TTc-9<
z{G1Y<nb++J7|AvmX=50wSpIn*0K>J*A5GYvkZK*vBk@c!4-|E+Z0(|FDBYOv3*97V
z4r4k$bvT308O`x>dQWwDP0$mV3YX)VIZ>`qpRS{?z_d$8NZJ}#JMtXQz7bf1G`Ee_
z9Z`&ulKsIfqm$k+is#t&E~89tE|<(|>5K;b33w19K2{!lN<Cg|kxIPp@6(N45Fhh|
z*<Drlm$TPOegNJs4|8c|?nXS*m+!;sY*r4}NyT9I<61)97v(Rp(MYnGCPpKn$9YHy
zLQ@qLWWJ4*SL)r{jZCsmzCyvV3aswe8XC`*tVt}~De%5fnpw`Q<(bn%eA2<GTMdAW
zXp-^NXHQGb_XnIHlNSH#cd95Y(HA6=Tc`;fjm_$}S={YL`jrUOPS_$-3q@;s$a0Z>
z4q*-aB!p!2{Wf7E^7NchCgxrORR<5FmXM-1X-An(x$qa@lrVByR;m<8UH12#`}#{d
zz!;&sAtQxb<<JEXA>GU|cs#6ZWWTAYr@VU|UDqO2qBu8#cDtLZI$hY66iSG5UU_oO
zI9t~+3_h^z0i&PhL1^q~DwRXx+cD$%T+N4U&887e5GMN+n4GecBIs~@$a;?C=y%Li
zO^cx2)~=Acf&LO^fJDY16i`-RgHzd(iD)$O<=1HxtelnkhG)=Hmb#pGB(Yf*eDDE~
z#|93o?AZ07CscLDy|2o(5D#%829*<cW6N$L%UN3hk;jOLw15h$E2x?$-H;fBq^?(q
z)*6#P6W8C>8%t)A?=M0970KII|8f5PCEv)7r4Y$C$r{?|KRzMNUm`t1z13cGJi-?d
z8Mi$9@gBQ@dG;wx?V5KV2-pB4!A)N{ec97ki4_^VU4%-Q0Z;=V?P<!8M!9`7?*~2y
z9oGuuiL*L`a$b?ZPRV@uez^D4Z(=8K2_{FmH^PH)85<l`W%;dj?u!W6x1U|~Cp!Y3
z19lP=s-{p<-O4}m9B|oS6I004c+_zD=$vbPy(o`ct{Ll~^$f}>4}Eo*MVqD-ob3mD
zA}emhlD+Q4+vaK0&c=80$71*%%Z*+<3`#L#4S^U+RB9O8ToI#W%1_DRKS>prZ}=Ai
z=N-MAMJ$?m6^JtOt?pjqh#{Q=&lhOhUeHc1WPg)!Km~L^({8^fLTM*gIzI6<jUX%n
zzK5~XAl_o~B1Q#abFhHcRyc#c#|kg%5D&n*(&F`+T(4Oxrq?<_;+X~4RvTQ^_H4H`
z*L%!JB!KC06ydU*l&FQ_nXP+vp*Az@sq-9o&p80kz*MfP@hr!C66EGd&(v+KhD&yp
zNWZw7yhcbfn8Qlu+UeO6L|`qPQHQxo3w^_6k$)aJ!&oP5l|<!IhhZSD+A`D3GYN)-
zkIcg96`ecS4=dL1Nt1?_Q@F6&EVmdB4nXF)y;aUU&iRwz-MnW{HOXD$|ENP7hjYzR
zvJeFIiX&ieLTiM%^rmVcITt)ov<mrPMk9q-6^2r~T~!6}5jVG;=e+X6z2eNx62OKm
z)WfI1NyG;AgO_BQ9~6RP(z&8&DmL60bInc2Vd=Hwx3OTtsgk}R4X?>eI%&dO!;s&{
zTk9F$Sc3U7vF4A(^(<6diY76N>0C&V0)Y8|Ym{{Mh%*(`6>WRCaFLgIn-V5vvBUUw
zS&75(&1+`=ZCiX>q$@zmmyXaO(HE!o;knhvg>iAVMdg()mqkLk6v|CKoZ1;(jE2)H
zGb<njTbN+*bldTFk2I-FPson=U)py7>?Bu%-2E@G2G}RI9XVr^eW2_JmimH19y|k8
zYV@7H*jBADo9GSFI&$MWrh@Y)iSDPV0BX?DVGFX_;e@5S5jTc(e1w=OrX#PuH=T_g
z6@fyc#>Yhl^S*Ydf{G4l8s}NENKYXS)+U|sr!4=$o<pw1kFF?~JnI!>a*c^hO9-$|
zF_;d-HM2O%^rcNKJjr#tC{$M0EKTT}gMSHih=EfJD_BG6T_7w)&=+*!VH*f#ZF0w~
zc7uLi=|8xWG)GED9L5#J=@|bkU0Gc}N_C(ELuKxRhtPXxEU|iv<Gi^94Q*;;2a74P
z<0aGgH&&w)ILj83ymGmFv3pQ`+s7al#C0>2qsfsPP;d7C2E)JBb@J{cRmJ}1%0!pl
zS2%P52fHdyqq}-&gaIkMx7du*N%{W&UobA^xz_BDaUnWJLp8Nf;=JgKfxQTG!t0Dc
zt#pAax<-2df0ZGEmE@!#KxqU-1*<3CiufFDuZaL}bkV`f(t*kwtRD*H4vT95#^JU9
zy6Ay{Y0^Eu0UHTtNlv2vpZ=igHXp=I)ay1J@MHnAdX5iW7T6Kv%a7id(fpS`N5rKW
z8$6A}tF|_*b<vhIW{|7GbH2WyIcKBWH<u5CL1jX9Z&W{Q>MgY7qmn$2IWJu>!D=;#
zt$uRxC6}_h5h*6MjoiMGt9=US^x;+Of$5*$yR>v=Ov(eWKFr+Gvn=8WUTVa9KI_Wq
z`ovQ_sqO4`J9$a`da^Xb>f@TjmwG7wkIfkwc9F`O^xxJ_UYOf?Ft0ypZ~gt)b?znM
z?EbR<7;X7PjjA6=KkbH;=jcyrB%;=MZQ$|dbMhOzr$eL31KyU`4;4<;kad`d-c>bF
zNhqcVC%W+5YL5_`XqR2dSN=nU`_f+_w3abNU~SETS>xmdW`n{s)05(j?BVFLSS7cp
zl&^;<0Z+0fy)(fXf=$X0@6~vFZVxLBax{n=SaS3Zr!&+tgt2KkLWyfOPDAU@94ZJ6
zy=R#}X9g(H3+iq3v&fwBT90_9ONQxZQyq9VkfX!pOFRcv(KA@AH?$03P?v^dsPn|J
z_)o2%*5T|j#6r$MY@tp$YlH>fC3olNoHZbU=t;Vz-RR0%S)9@hN)G2e1~&rXh%K7v
zvymc8qGk3V45rfEp#Pm`F29Liy+UDDELgb47@$1B$V41Y-;j)qzGwfi{f8}V-(ggL
zObd`l1VXUG5W1^8qI63^{KzZbxuF@uWKBv^35it-TBV1GH;(P?2QJ?q@04!hZvHnX
zu>fg&%znc(g@t_oo~XRh__??AK{V)mP&b6+g1>IYpmasCI8~-!%*J%a38Y<FaB@E=
zXHmPZfTeT~!G6whG-!rAFp1VK<w$H!b=P1e0Vvp!dx*S=CtI>fl=PYIQnWcmw@ReU
zDq^o;>2858kdbKGsQMY6s>AZIdu5zCdlTvMjyRo9*Ajr^G>!58Q=kk`rhmxdnpUJD
z9ygr{C6kfI?lX&6lLXRD<i^&fF>)qTe%lo(y1Jrkt+D>a`ij{h|J+8Xymd5_u8_TM
zSr8XXb4|@?IpvQCfd{#6vzFGc>K*DUHf;Vw4-0kn&GllZz`r=Gzip^3EMMJoX99{Q
z!oo7>)EZs~Dvik!%3gB?VX2)ZD|$sgsEZN`$;)Ox13C%$8_x)CrTVhrSCWLUH6?8~
z3JbP2qyN3oL9=3LIuuuP?C-N2?p5Z-YS)2R?f>3{BCc?jE7CA3ujC*G_ua(v)etiE
zik-)K-dyf24&D_(Y2@s-UYZ3TODjn`1@@l2A&o@>RnBN{p)i*ajSMg{OQn43BiUyv
zFAp+J?mz_pLGsT^GXRiXH3iLh%=_Q>;_v%;V64C`L@1PZ3QEsf8iD3hVWfx@Iq~-W
zXJ+z@zT9rH@M`|T=(d(|7gc;pV=-SbIEC!&=m|G~vWV5i=g0LiqzsaNs6k{`!;R@I
zeu}^#oYl#qgjKC7BE!*TGF#z_`(tR~O)P26jyNG}aPx52E0!rQ?BfQF$;6;(yZQP7
ze!m>P{)|%S;5Q$2A^<>o>(P~rD^{SW?(3{JW^|WR00eAK01&s!AjYS6L1S`$$DEd)
zTIvy#d6#%%(jVu(sK(f41Mk8O5scI`<s$%yA7+7(pjI4n3t=-w(YN~>&(#i4%JI~Q
zYlfzTH8ZVQ-B(lIlI)WYXM}f4Q?usg=JjxLY_8Q8T&H^XohbU9WJz3F>X`Y{U-#N_
zGZb<+i}&<U5Z1Qr-B$#f`t~)b`}<4<GoPqPAkNZDTb07n?mF*uKp=|IWrhY08!Ob{
zI#u#%__zM0YAa(dgPD_OiY{g>Y0KPxHZnC_U=%keFJFgMGN)mrc8q%z&{QxA3BzTz
zXKnxX98+9+pP}vfqBQ(TfmhnAet&MpBpp<;!ODb8pk=6?UcB(Q*OSTuD*_&KT82?|
z2}p)YCNRBcMt}xhe0c8n%c+|is(-<oMFK_=@!MFW-!_EQ)CdK;M^a$pSE?ZfAzrrz
zmM_qr1zqWy(7y<Y?w%zNG~0+qb}*M%Tmz2HC6gj|8awswB{yS2e>I-Lf-Nb`FgN6M
zDyjBu1qf9%@WSo)Yv~j|U0bCn6^CB7Z)cqKzm|@;XK3_zCVNo$z3KT_d7RPE?nn!Y
zm2GY~VO%6JIh1Am0r{B_S8!H(EhV{fR=CuO#JQ4k!4OGp@`lS5j7#7oTZ;G~ci!zO
z&v?15IbqnQi><#H96l#hO8DE~FWl|{gDo?39ae*6<iVHt3`cwwiCYa5vnZbC|D?MV
z$p12S$hFXY<sLBc7jRRsV)8?MCb(tVw?c#?fv0Y(=y>tjE_IQD>pd^t!m+fjHq9@W
z>sc6nZT{jL`IE_RidJ>j+lx9B&sR+&lV30CTo<4{2x`CuehG4Guc)`<oAfXS9jR)B
zBH42hwB#4VThjR(Nd@e1@l&%y&b#<XC2GE{UWVLZW+;&77cwm|@ZO(qd!8*8w!5u*
z5SZb<Jgp;bNd`SVaVU===F4~YP6EGhEE3TeAt;QdnX7|Y(O6ziXmbed@hAN6n2B$E
zKgzFO)u0|Bz#)`*QX&mt1hF?Ie^?aXX-xzfmQKNE4fTYx8OB%I#H8yA;76p7gdL*-
zQRqbD-{*V7KWzN%8fjP3HGfLD$-W5Z$?J)^Tc^~1f~#B+GdHi4G$w%he;iv7;Ux{e
zA&^x!>j-2mjK&A@7rxOWh<-Z3;}3Kn)fT}c#AVbk&r@YxU4voM@;)5dwxK5s65(}|
z%r4Syp*m|(C`4oWR}H+C@9ZrNwjK<KGSfSJ@R4l(cvVv$2%r;Cde14=Aa$?(c|HwP
zj^i12A6Y^_><%z$v_hPfyCYjMb=j3z&f6l;if)4!HcNH!x&l{AkOaOYaMxAUE)<8f
z%2YJyrv*V*tSGr|IwH{kR%+{V{rQJe+Fd3y_Y5Z}+N=*yWBCz(fQm$(Gu>1j`hQ&G
zk8~4<(-tEwKvQmU8p%h`giTO1tpxgdol8|3yHeq_O$yoLmRCxaBWFpQrkP&(doZd$
z#<T%sP%n`CV%)j2mkZ~z>*!}<?{calVQ!&aa$atjTj+>`x(^@ED2b*x{IWleHx5*a
z*a5Z$Z4!FCIYLu#d21__)$+0uZ5CgYE}E6a44QyoP{J1kJ$Y9+P!Ms1I~HU|;f6<w
z8<l4kHZOj*Lq6Cbl7#RJ)hVVL))**;OK}Rhsfa9zqSlh2KoQo{)P{G|)F&pliJ@aJ
zE3Cg>kEx;VTdfOW=+4=oPSdc}p~3fST1jMNKVz=Zj;FM%{FI@BNL?2~m11vEX4{>B
zCu2v|?|AM8p`~heoe<7F2angcPb2(DB9H<;KKQKE3v!2f&|ME?TmIm~#L_U5oL@L4
z(XuoCT;U@ZN{F9a2dukj(tebJ*cOIB8vhHu(#iIjrTFyjH{TU~?lj=sS`0>oZ?8!I
zbj9QUx&SsI9r3>KP${D)jixsK@U(V0l+}>INEJDShpW%vv^(3AEBcdXi181*v*_|K
z@_J6m(Ivl;gg+lSl$4t|%T?J`xJykx{%El$niI$8l{#jFfbel(j5*QhENx5~kF`QX
z;SsXHROxrYAwr_9Ri5S0e?NR;6Q+s+ffgV`wX{vk0}w|SdNah-Cij^{_u09B9FC+a
zDK)4ryuS|AWM14ljcC7UzTr6A*|YtWFcCZ6Yl!gL%5VFXCS=BXS@xS?rIS>dtFgDi
zNINzj_pxb*2tff0@flZZFKvv9=jEBw7TR&U6z|}x(XZf7j|NhR^jBNGTz@`OtEkeK
zH;<wE%3=4^09^}y5`)!ktrNvuX9Y)M7vc*ig{afvhHZ~GFoUr^39d8M`8M1cV=w3u
z*o5ToAetLu?@>rptnKLWie6mWNpZFh#P&`}sLE+i8?I=3<Ehwi1uab4<AY&niqI;H
z<lFjv+AJ>OW*>P&hmzaTCWJZZI}S7KvbvS-k>x!#-^k8teh)WHvH&qv_hO>`uLj@P
z=%anNpYXu!AmEcU<0@n#;Rs@e>5J;AsOc`rh+|rEStBzRF@ye4Z(ihU)AV2zGmxxW
z;cw=I%w>KzTo9#zotM^!0k#Rf$|eWhm`>$YBxyo`8NrX9Q%DqJo`x*pStnk8=A-xm
zv6Gf?EqjhkWi%Vs@*YB38W@QIh<#?os$r^<Bs>&K&A44Hk@%?r_TM`fHKL4zqWdd<
z+^;fXtsGOHTulX?nuTqQL<r{^*>0@73X}Oh2Fn5R8K=W~iP=fzNtFU?b=3De;K7!$
z);7z73bc2$A-EdTKZk41nMXs)$k&~Du)KbX)>4AvMX#3m;)4}uVb^2d>*CiyZC~cL
z6ts)`ux$ei+4?>ksHTmzFqL`6Zu(8*fPzGfPO5y}Ox!@=|3*{(+hy))9D4e_L<BAw
z*29D6d5dA4S@S}jW0x9j-uqi1Eg*)Gkuh(n4lag6kw1KHn$3aF^6^GZ_X#P{Pe>l^
zU?9EC--ynQ%o+8(CDEDl0X+=?>d;>IziyZ>I%o3*dBwK-L$!)MvC4%ZvU#sxcC$hS
z+@zTZ@33e#?HK@3#|sl-*wNVKm)d|Jen<srhxv~!9xBsfpiV0Lr9lS&NLqIUd}5|R
z^2Tr(h}L_j;C>9=$P;mQM6Tby6umJ{j!Kv=1CRBcGLR5wZ-mY*ILd!tCbu=_#wf{4
z{em8z$YW0-^CO`GpZ+t1Z!_9IbW_V~Ga3gNK*1X)H##C<(jc|%(;M3tvgsU)tQR_^
z(#OjFdVD3CQa*GQgm1Q~0I$%Lq*B<!G}b9BRRsUx_u{oyAOXl2hpy>xov<Hve0{ge
z4Q;|eUIqZN!z#xy{}}#+m0o8eCd5PZqgsM;cO>xnF`$h?UmwdijMPy4U4NgYoKRd0
zXQ))s_Mu<ST$RI+EJ8K|xKvGpggE<OcN(m{(#VV<PAfE61k%ZXH$JXE7&%u>ck3WN
zR%)-+j3STCJ^SPkV&`_HDo`ooPiM)}{JO?<S#Lw>d6TyU;{|3VB;%nj%X<BxFoLy6
zX^Zmc_RW8o!Gf4JsE8c2=>Eqs;`&8v=Jz-Yf?d@6!sr3yPrSfzWomTKaOh_Ctz{vP
zYj7)@{ugN4x17i$*A-q&7XUk#YHjm9ia0J^HhR&5DgmUuuy^>qho<DNxTKfpsC*dv
zv+F4~dvnqlODN>z)xm5--j9Vma-NP4x1gItV3q*7yIEii)O#bdS{@Hp&@$yoS0K(x
z?E9>VU`i-)!g>n5d+Iatgh<Ip2~zoEixH~Y(7Hgwq2hPsy5O$6mb&+?o(Csp??ArP
zI07LU_eqj(&4PZ9d@mGxt+_Z#ZfzTVT>MqCo^2B;C;G)*ZuWU86-*>U#ic@e?I)&@
zsQ8C4_>W9aemn75HkzO}Ug)h7RHh_9nApq;UH&>T;(efv3td5wtE%+RRCpHW0ReCz
z;R}H~!wfaeW&FP@a+Vi4rLgfc1tG0qho@9wa@2q+Q!a#<k?W-5a&#6wyXtRJTVtfw
zfD!*9fakq~JKxK*R7@C0vk~q>PP+tUlCBE|2u4+Lw^g}n1w8Wj4Gvre3!kB~MCdG$
zo=NWkjX(LNwvYj0lQUT8iw;W(!c;m-nuQoo)Ze=QDn~WPOik{kmSonJck)cNCKcM0
zo!+jw1Db<x)TU<{PqW>t^p0P4J~-GY;g?7@p7A0PAweNmz_T(Of!G;m_G&WZjJPAi
z@A<>0Qz+D%AT$<vqu}NtTxAQgr_e})A6rGl^3xCr^?110$jdSQk>G)1oR@iJn?WL7
zm0P&s&cIuwp=8s-UzplunT&|&8|Pe~JYTBy`|#NC>m{G{ub<VW^=q%w4=?4q?C2DT
zDP2C7tBUayd1e=yBFUr;pQ#i3!_NA+cc3qG>0Fp79ZHF6%NW@k3yEd&h8G+O<Y<co
zx$px^aSkqq%tZpO?-=UHuDwwW<Q$e+24M=k%vWiGa`y}2=gj}7o21)1{1BR9c1_pz
zg8@4~GY8g9F{Kj73K91QmddU0F7|ZHHMT|+rc!q`*#KPA5_(*qh_q{+Qiv@ULYVV-
z!80^DRx61jDCY-EUX?(B%>6YF1P>49+n?aOknV{tm;GV-pVu&3`0CE%fk@^)F<0>j
zMC^gHf#yt|et}K*+-(7R^`m81r-wuTKD0Lw<gCXeeB~UcX2hmgBO@y?MWcfwM4tVR
zfz7U>H$GUw1j1FN5em_<Ly|J=qnJ0CdkUpO6?FgdfQ<u;tvs<5fXt+{@OlEeZE0D8
z>vKUZRpBSD?omDW_qa`h&NQs|x#WwF75%*KusklH*gVa&g(qH-kWmhTHUfgfh=`3+
z9w;HX`QKu)SyFX-{2}{o@Phe(vxgKLB}6w!`jOqNg!WrJZea5KIMSCPyZs7sD0*17
z%oV5@byCP8#f6a^1#etAsg|QVgPM7n&dfxUH6*XiNQ$RGF3TN}YCHD^FdLm_s70hJ
z|GT(X*W8Ke9>{WL@Od@J`n!Ni8kEn+2NqT>U8(_;eMTuhEzD}qw8&mJTHDf5L|S$A
zv@gH>wweQcT~(0?JSYGF74re84uIVVBmda&Zl2f{nMYSpxsh;OC+h|W4p(BB!EAIz
zpX$EevX?LKH<+O$1flo^e_0>uP?Y%6>){gPO#--B)B_b_>r;Shf7s3%u+RomfKqqO
zVVQxD)a~rWMGFDeJTS-)QL$Ldf7eFmJ#{~JeD&bB%(~kD5=M7@qo|lmqOyqPeteF8
zU_sbgJm;@T7J8kQ$Sn+OI5)%1Qq~<(ihItpKl@(q!hi1h$sy*{*-F?g?cI7WmK9Rl
z@!URYRd|dNzT|MiNKx9^s;I-G#2cD?v8LsJ(sNK@O-=|e5MfDks{i{vpGaN<ZQ5*N
zg`^J8A>f6Tyl^6j5`8FX%32Y8KU0schOwK-{ms^MB#*Un*}LhdBh6g*ll-V2K{sv!
zVMgmdu9o#_h=)>(E6_*`D0O*Q)Jugty4NPpcAvT3t6FJz#lKraL^E9*nI#Zo$`!xw
z>v=+||25s5ilUjxqathEjBp!awnqWJtjY#>`384S2zauP`x9}8N583nE;9lqj4?uv
zBwc1SwBZ9!71ViK9pS+Yty7c#<MD9{UH$E?vY%NxQkLvl*zO!8PMA|%eIrwH^-mjq
zpHLmEmZgmH!4!qgl0hLLe8k$sW4S(&O#axa=MTn4eTcxc&fLH^#I`%>nqt>}2+uFq
zw)92d+_-RGZ57uz+w^C+Stw(+*Ej36o>LWeImCwgh91|Iq@8YX<kh%4I}{U&sabo2
zcXKYAbtpX8ZzR$!HLyg%L%E&6rA|oSj}I)(lq;zd3;`*7QX~PSxqa=GAS5RGE%hG#
zGCFv3av38WZk93dwW!R^0F>~Y<n^TPi)}S*)E*aV$bHi_t#c0A*nJ<W`koIfSd05j
z<?`nBHYzAaz}4A+bWRh8m@*uBw>M>aQjp?ri-`YRG{F<Jmx445b=VwyUeILApppF7
zQD^=$vbWuUOthDJ>#swabpRzKG%7}qI$p_EamiKL`oh!(zm%&D>JahR8(T3<4$T$%
zKrwoasxxNCN=H788~(;17M>n6>qV{~EWyVea82@$U-Vi;dqoDh?UN0H8kc~?drNf=
zNpyiEFJF)||DFjxx9B)I4Kw~e(&pJXUkAbYnK5i09^9P#Kc`^7*T{u*RO^j_T?qwZ
zD+i6I0{)bIq_D9+#>8n!K3xI-ftJrN%#BYlhPF7Lri`N7+499?qeW_H>&^5WI}4==
zuIJLX+qd<vD8xzNPqfr#(d8DiUc2`>I_WTp|FNCY@@-bQH_e0&x=P(P8B$LA3nj^y
z+=$AAmSoL_Zas{*=vjclD<#1kKhoDNAel=4Zv$0w=}T9mCbwWC*xQ9wS`T2{RTZ#E
z6W>UBD+Yff^97oB{3%MIxG|3!{<COlz2FnIDz<B~$Id@Nf=Fc^FeLa0^WZj|K<W*s
zxK~<75)oDRJ(UC|d+&6pR}8AFz7+88%%EE<Z}4f#jblGS1y4a@Oo`1++qz$gM4_f&
zy@+4}uby3A4V_pM1s`U?N%@E4v+3H1d0xOLLd2-~)FVL?5!_@GueJ_2_;or<?eJj%
z0CcuWJo9QJE9HYS31m@*tA@tMgX4d?mM!l#9yOo$yo1(K|20bfWO-L?Jf3jj#PQc)
zVo)_uX2utLcJe{Qt4U-m8Qe6A5Hj|e6IkOS0wMa7ph*_!BjAg(@VDrQ>%!xX<CZ+W
z1vAs$0<t4wI>sEjN(rQpvgEmgGyM$roE*P2s_&k)B%-$wbodN}zO_v_(?(-5b1u3j
zn2z<g!pM=chM?T(8>Z+NVgR*ZcsPhR$WEP%7Gv4d$E<x#aR3ckr6Q;vhmK)VQuywY
zRB6~MKY2#-mR!DyeXeM&XBgHb=`JtA^kp35_W69jnxuB&pq4f&7mL}MVOx=^VZ8ql
z3&0J{UfJ556&uzY-ar@#Myf<pwqU<UyZRh0Vbne`4$-90`G}q)V|>p6uT#zQG0qgH
zbvI*<PG7Cc6pod&nC$fHR0&*`dN2#)fdTD5eJ<VoMCOi3jRH#jQv0)|!F6vb^l?Ek
zF_;I7odPc~)<HC@<_(&%L5)P_nbDg({z0cw^X`jX?=Xvs7Rh3`#)@4*8Gr3L8&4KY
z*=&wYE0W<OAPyabO<sVV?#c%WiZ?CVg!s2cTs2+JH0Q8?D-i)|Ry0e?RvVJ95;L=)
z0KLy?RJUJvfIOrwFIX?9;uU>WPiX!oOq`8<D++yaX3E|EV$SQ7Zp~8%u~Y2)sXr3s
zaF03&c~Wf|$#+fcWn`bO+l+1{(wFPItHl;taeNBA-#=KTTCjB&rFo80LNj)Yf}DO@
zq%x%#QA}q{ZwbQ9&hMU0^viTIe(Q0~f?D!*t>UZDJC0^)d>}#7oa&fnKa0+hg9e4l
zH6qG}unur%>Q??kKD>(8GSM}v{uHz*OrCdn?j4FP<pfIgd!Z{X_c#5Ud%%J1s@8Dl
zEgOZnc(|R%aP_V?;=A;}_i@S7`XGp6@yJ^lyFYyTYfEHW=`YG2|BqZdS5pe4db*)3
z^=+u(=Aty|in^}LhFYxfXeMuknRU8>7*+&Fg8}uqW|-Oqc2M;s8%lGz=3p^-6&-lh
z8LM!&>!%)r0Lx76z9@AgeH={c7<8-1It(;Kp?#vIcSigcqw_O@XD;DGAKwp_2>>r?
zTjS8dApriO<=^;_=iupOF}WbuGee;CoD!+}H1UjCraEE17_fj(w2Ge)6cFLZfupu3
zVospJ^&KPz2B&khB1~p2z0e<TS28|9iUhdb4ii<!di4SZ*U>v+ACh8$RM&=?=dg6c
zq&m$EC*>Dd)#}gGZqWCx(nWKaEZqQFfLc~SHESFePCRam3dp}jfyWD>c;<iUr}yK0
zS+$Sj?6R39vGPq8iw;bBF{1oW%)V5sDW=!12)H_tuKG<N`GY%rW2ptqObfhC7)|dZ
zzyC`%=L)7>l{(OwXE)e|*|f6RtNlh|T8dv&9veL#yw5ET|Hh#fHK_W<L)M+QmOzZr
zJtJ0AUcWU6w4BtD-%gF6*Nd<UA>t2}-U0v;?Ane(E&5h9kDtDTY-kE7W?>@i9^S;z
z=8!Hr-9Ly`;qd`EsqpyT&jL4n!7?Tae?0~Bf3D^NdTBXnXMKTYXoay4E2kDA*Cl=L
zfGbuET?2bAYze-pSurHE^xN5q#iXnoRSM)qh(JP$bweYf2g7)W82vJgT}tfIdIQ-R
z_$~mWoy06XyBLyP6N7jDT?{S|;J2e&B0rMAAg`8k?I1dC@vHqbpW_qWO6czl;%g{+
z#f;SRl4z=aD+M0M>+656u)VpXTjD4iw5om0EAOPw+DB^E&0fFxY*ap^aZ5X;W`Ce$
z*2>=SBa4|otQ7vBcSpUlt=ksQQj%q2S2KHcpL;&QWo=uQW~0es7>kvHWC3xA#LSD?
zsn73JMtC3mGMtdCm2>KuCK720uFpUi74-GMNR15*LEbHPN8sb<C1K=Ma(&TPfg)KT
z85uGbb4Xqk3O^do(&rGw8KMWhTE7zF|F;C0R+ncTwY@v?mvQsNrCPZ5q!IdBSTogJ
z;>QH2L`aSAm0A$;u|2G7WHR|I7T0b2P10_i10fBhBb9AdSq$>2iAtfw)4x{es#Jd{
zZAeYBg^K^GR1Ghy8A4y)IG{K_q_D`@+@5ZR^50z^qE}nbSPh@$UPS3h6Y_LYwR61W
z#$QUQ4q~?JuGV$M(qy`JP6Si6Bgm^HxDtW=o&yJ&TgAxF${(G7^R3a}noUVxl;IP0
zm}9gS5T2^~3lSDH4q2H;(c87Y7N7e;;>}??erzb!DvczyhNP)n2f18CU+^D?#R=Me
z?_z=hPmJR@5oAPZ$TBZ(EAs7u`!>pcgTPe+^j8d&2?H=MW>euKEp>2$u1(8?;h01g
zdi(w|BHxsbAz0zju&!WYK<*I}*5n8sSGi+5Y-?7_CQWS$(a{pAr9i=S*+RY<;2a5u
zxu+MH1TZ+rs+%nyg;U{oO|^!9<Y%9;4Pk0QzPf)*f0W0vUSWT{0d&epBe7r3F?OY;
zq4>0;lu#{jM3lnA3PeITC2!=?=!>R(h3*#O*JiTrUk;z4q6R-JJCo9U=_nZ%$i@)~
zv)pUd6bk*;PJ>r_Mxj8op$TRXVB+Oo+l(s4o>JY!-*HYb)v%tn(+y2n1tM7ES;+ay
zAaZ>;MqvZ|f}D||7eZvPnIZN~6x2pkM86Qf-#Yif;jvv(*HxUS!tK^=2`nn4Sm}=q
z-)|p$AG?yU$B)(;hhrIAS6ot@ip5wXk~(P1KbeqvpF55VEObk3Jf-j7_k$#0F8(rR
z%|g@<y~jgXd4Uw!aaPsc2KfQ|fu;qxawVXbskgIs2ku0wh&v{EfOT`jF9(UT`%1B~
ziCg_=;>#y4T-0BNkLf<ra_}Rb?*f00DhEMsg+(3N56XjY{~%9`hDQL0hEQ*<u&`#$
zx{;mNiJCI)qL99UqQ$^+C0`mm%k^|oR}^J0trCZ*8uoq@fdp^$Y83@QOFEQx(L|_e
zzL(#kql@9-+#vfV08EnD9G`8Gg`b=2UCB~lgJTd`SesYALz{<ejEZb~IrG<+3b-UZ
zw1lRVR~2+Uf>09_3XW>uP?_j?L|;SX5F#n_Q}q7QZ=ew{5C0K@{zTv<OeD%@lMpIM
zmA!f@B>|{6<3UMli35*{R9C*h@uE|1iIKg2(n+xsIf04sm70aESlYb<6Hve(bgh28
zWZvChzGn%y1*^pE6N_5`{OnqO!BoI-BvhYHZ%+2c3!eo2R{#<M+Mxo=wmA2iTwCK{
zV(R}z?h?2JpaF8G9vQV%JvdX69<c>M@8FHx74!=Th(iJ{w$%OO;UNa`-a@*1zDP#H
zlHevXWcrLBdz_ysmkv}M+?M$Nz?0LA1aTBKY50A)xZ=?|8Cz>+%wj;<3H5wIY;uv|
z>I-;S+>gWh7zR>_dHTR^O;w%>rV*HSf|R3FEcR5Rwc=L<^Pqc)Svh9-=+UL(fDH4V
z7jB7wT=^+&LG|siqazt>y8m*bSR!ZYK17eC_GQ@iWRXV@Du&H5A#^G14m}2Df+faY
z<m_bVh(2eF_2w7*{ncW&77&EF@<M&JY`VoZ#ch-2cihJUAM5lJ2s8H^xaBX|T8kes
zEshzWJ0X)DZM%wj64<(8*-Ie|38U0M0+~xV6)W;KT_`}Og=AaXdv$9p^klLdTu+tV
z?g>K&0tAa=A_1*q3V$`H+x=L(tueHv*H{s(&l!-rOJ}Ft7@U_#kg9TGtNztNi_6#K
zCnVaUm?;IxAW?L^J{-8tR=F9?BHsKdIum+zR}_RZfmE+;^tH|LDhA%H1KuNh&<vYS
zl-$106XKa+PpmsN>>?yAtgHEn!h34<#wnDkTJOePpz5GxOhU**Ktx%eR0Oz`p4Y6g
zTSB&rt{n?D<4$umX?gru%&zNHihLIRV!IKzbJ>l)dHX)`znHIRlt%eWB+y{L`cxi(
zRXK;IQQ^(6dFeEHiSE-19`9Y9{q>(7j$)f~bOsJM@vjVDeqVE7&iM*?R}r*aQ&!HH
zay`d9-VjVZA@YZZcsSop)nk6<vy5>9rV-UFG{?P<ZE|``C^+KfBY5;$7mLT7^_}R-
z1Ndf64Xl`WdRvETL$gq@bzHJZ2Pl^HK3+|EjG(Bh(kK7~Q(E<cC!Egv14h++MwIoz
zUC<2GN3>jR;&27|rh%~ThOGvTcyb~!a;S9coI(MWCt8PqJ&GwBeCxyWv|~UA!4f&#
zotJo-8i>MS&{Js#BpwNa2z5K_=P!Wp<2g4eF(G}(DFT0*#(VXFfAL)S#nn2ysvbOf
z_`}^d@!l2<F9+#h$4=le{ej}qleI#)8Q%0(+m`Q{C9y-dIrsbD1(r0X0sa?j4x0VR
z!WEQ8op(nPjI}&UG@qtMlJ0*8UVl7)TK}ps>2u%c$rnU?AED4S?+;hh5~Qv!?_L_m
zxTiSoFGbMACs^U^w!3+xj`c776<>>1XaE*W2N1g}M6S7ej0X^drK!qNX*jn1^*-Ch
z!$#x};KW3}xk%hb%F0%ip}KMK#X#sstc`*k%<25$ps!c8)-JBxv~NaN0ApRc%+i?c
z|2-+IU?8>sE%t_)iQG*0`R?pB_G2Glp)g)^=$HS??sX;eQ3lA>%2q5@@3H;M{FrT^
zkQzmQeCCI^QSw&H$8dlKYs~w-Bb#=BV!oxb3ByNYA7>8mg`BMvN}BQ&P}J@@+hf1i
zi)`=9S?&1pP89mx@kKgolv(Jhx<pNGvZwDawF#Ml8@QmrTSTuH#nE~F(RWZ%Eh|eE
z73}^&kAt3af-wpgaCNLZ#;ye!w0u)^U0u@jtpgqIBUmxH;j3<O8?^N=k;ib`==mDY
z0%WRUO=O0CpDz8|`IxhkK3O7EslXt%C&Eq;a#^Jcfxfk49%ENZ?D>a-4OJsF)(zVP
zr&628yZ555(i2|g6y64c3IB^}D$1+_Gg(BYzr22K9v^I$DaJc@x`fq;ey(xn#7-vo
zDL%Rw6(cdVmjPapNtQ2|Bf}W4yvgVOSPZ1{;Po;kJpXuzM?!bu3nIcRMH^#0V;LJ&
zBh)sK^Ump|;N{WpL5C}mH8WIp{YceS;X@^xE$kYIxM%E}c@eITtxH~NWQGsyw4FSx
z#$Xa%By@gN$;A%TO0#eRC4-6UGvxz-Kt0b(3KcxfU|s0$z7?anujMXNHBrA5TTr|?
z3lcAOoY2#4b|LKAS%^50P8-cEmg+M$;h<pINp|xl;F~N}@0am~#9hMzTrWMB4v3K-
zHvp<DS_qSlDmG|+p|JJ1mnxSLsUa~?pOBRrOfnFT?~~=fNP70nIJaR$laY5zh@PFE
z`}Ypj6etCDpl3Dk&9dL*4u&sV)GoSm-6u^=MxpYSDi~NKaQTnGncWlrxd`)GwecMj
z)k|DKiC_@kHPD{<zKOC79&M-us^2b5(^W64H}xJv+<c;a`3-+>p4m~V<ckh`coFAO
z-Z$O40pt*Q%HK_T1J8bOEOl|%8P~<@P{BX$is@d4vp62Yb}!if*>t%KPCN#ckK^+E
zISWH{Ly}id<ujj4wu>-)bktow%@i?nh>5W*^Njfq&;ip0(WiT1;Mv5f2q#j*b+Mjg
z!)!%_8zp7}3*xqYE2Bc1BAiTphAVt?VJ$HZqdT!PA<;P{R(a2kzd9yvNU*cl>Ok%;
zXkDR^mYeWNJP>au`KoT^Q0*k?`6?*!A`zKC9Qx238QM5&6GNn){{hfFAwFlE^m_zx
z{|Or$sG4f!-L3+|FYljk5_JUH2d9s+p0aHFauF%NwjGu?tSJdqf9uC3eMsC(bwnz^
zV1cN&$?b0#3;kxwLX7-;9qNp({w7C+UO@dzToicROp@=0{*+6;(EQZ*+`SE68=TmY
zuP6eaJTzwo;Mj3jnJ-7f$7-&n^Z)>wh9TfO1E4`)?0IuCa};^bzk?_bzs%xcWwQD@
zkfB{RDb{yzj8%C4G7J4Ks*<@FW}GCCN0csIb*}Nh^?5hAWsrQVmW98L5+X?HqM}UQ
zA)MqGb^iKV<~E2<w9|pdsHb99XqeY~@vq0MR~}lZ&l!k{)cjjj3AW~Zj$E)Q`0<W;
zx3TA0MtZ?`EcN8CjAuDi?i=b9thB^8O;xVr0%><ciuK>UKJ}ho|K2V)w9(Pf-09Kz
zUQ%OsCSIuOcOYaigq4On|A(k^R*z&+<Ub`T>r4`HD--4w(krwlm|;owqxC#51paKS
z;eAuu(SiT!NaWz6-`&QI&(3$zG|ddNxOA%Cr?#^Zl(k*sB%6SN^*n4ru}<_MQ7@i6
z?tI!1JaO+tK96-`m11evjvuC}AUh^Gel>wxJC^ET8Lb4H`!;m9P<o+4tKZU|%qzYx
zXdGN2Kp*(**8dq!#xmUehFD~^lpKBUVN(J|Tcv>vim#6{ZY%L43M*t>)9boxl66-5
zvFp|@jCV4N@U#xUAyUW{Q5z{62yDW3HG^5EH@1|)-_RMA6irtVV1h~EcR1U$NmMzT
zM&WtR*cNv^wiIOI!>31wwM(3}Dg)BsneA*+5mC8Qf|2X+^__T<2yH+|TSKD&gq_6i
zBsnV)SRPbO4JwSO+x(~-TBw@=w-LDASkF>VR_9+2dYmM~am7We`e+R?WJaBJa=1gr
z+uS}rL%!ArtlS>4Z26-+ZRhdh0phAJ7Esqg_6*SM5&^EkFJ+>8J;@ZPMRpLR<I8Nb
z@>A5YhY*;|w2vOG;=QRW@-p&S#{IspQaF_*366b(-i})k%65dx4xw<@X10&3OU}&I
zW*3wV!#;0#u$}_sngQkH;yho@TGRn_-7`t$6r3evumEF%78n@-YwZru`9WH_BOiw!
z3fPMoeMPEJvkGL_ca%WvI|QI`>8d2CpUw%u$w&L<+8VTjIT9U?8PT7#O)JOxFei4^
z+(xfMn>Npp;m(VE&_q%J2f!^5D`q0KM3gufZY8M>wf{~w;G{8xwu11g4GgG?k?>@s
zbw()AFxu|@yxb;aa81VTbj&z&f?Wd<q;Lf%O%(VC|KepRVD$`Wx<AE5PaJTD3BPW!
zn1=^PB0f|pN<UiHCT292ZYK2pliw&7GJHA6k|^q@hUCvimPBYq^(;^=K&XQ0aTT`w
zdysKTMg?XCr=b^2fm4j~n^1D#PeV@BgP;7atWis!P^!ZRRzVEHsVfMh$QOE%$fq_8
z4HGRSR?DpDL7wW$2A!jlkiUJ|A9O9(#rB_lv?F5pTu+w=g5TC0tku)<sL`=*xNWnF
zl9qw}Cl${)6N4L1KR8M;f3Y-ugjVL5?$m9geLJF*{+E&kQbCr^)+*47)_snT|32&!
zi&Ya3>bWCf^Ty!qtTV4gNHV;B@drxgF;SES#d@Tr!lb6}QtTcPb#;}Aepvb~<D+tp
z(tdBDnDdxSLwvZTG^+BKHZtw!-a4cfAlp1HC9<d!Upfe;^QSrr6PFzISza(bIV%o%
z6tSOX)3y1FA{@*uMtCdRJG!Ag)@|?2%PoS+MKIx`|5f*dBbJgiD$-$JO8_}Q#=rQk
z>Vzain`xfRmxinkTrm;iwrNg<65EK*^f}_1lCX)yY@aEvFK=sTp7-OkmdojI^^=T>
zEXOIeS}s6|ksh>^+{#j(V#m%c)9d04&1MO$=;c37Uax5DpHXosE*<QB@LzW+J|MAG
zZfo_Yy^sw$$;0eNTFAeO#Z{oQWCWx_(VU|MMYUv%mWq^J$7{lBHg{{0y6R&Vg7K#S
znerGBuC}H?Q^$4psa}ij!R`c{mqIF-VpmdNlzRu*O#`NyV;!<hu9pUu;K~hmA#nt9
z*QLAAGjv3$QBjI6(FXH(xtezxc42c@XUB0KVN-|5t+zABbL`lmf7JQxio^!;Axz3G
zgr;_GKwY4JBeQM1@r}+I1~wJ4JYO9gEJ*baQFk~_?u^ldnJ@7_u*#2Smnl*=cYu!-
zQV+}LAsEDL-d`=TIrgZV|AO(Ktc&;RKv1V_kAOY&+#p+D)hz)8+{lk*r#tvfJ1Ebb
z`L;MFtg3-fBi3^BHX}wX%r2<~s~O+zc)++^b5LG+wT9)r2kZo?BcVr&gweOk)_ihq
z#jR%Tacjq>gW^M<vZBSFluNe*<8mhA08tpXtGv;0&P+=jy?j>H(U<eJ3`gz|26Lus
zgfadh<Q#g15_q;DV-CGRE`+=1jv5|?a}DG}BCcp082d+!?nd+~VnUpf=;cbMzb%_3
zEn6q_82auD%;VnX!wDjqrH!&G>%mvMtOvzaK#kWaK~K@W&%pL|Zfu~i^#+jJ!T+7;
z3Gj|^V)0HsQM_foxmP2tah7VAH><ZdHOu;1)|PL~!}vJPXAYPMn>o!qEvA~|UVTIR
zscCg6ZamaAfL!ewwEpgcikLst{6l?XO}<_fmE{^{%}OkE^KK}nE==<m49VZ7kq&FE
zTqE2u)$E7yG8+k4PzW(NZ+^fd2|*&guh*P%gCtFChZpI2??s2H#>M1Ub!FV5P|{fT
zyQ4-Y96dzepDsrm_!#gLbRhHdZ0)tX`_*k9eAOXNHx4c<E@$Bkm(la4%j{k-XX43W
z*!Q5Ehqo(nr`Q*3H!!*k&A+rTL^bzNw3INh==y&i`6_sW{Z;RuC8|)M9|rEjE0?D9
z-2d3a=SgwxPM=$DRL}#{U=ZJ?E0Q;Pz9)x9zW3GTGepLx1oZXkc%|)*zL*W<Jqyhg
zffNW?7H2eAle>>`Od7fTwyK$UY(rgXWMRr(pDceh{S-*4e;8_|wLxPn16nw2H(ZNn
z;a-WW?DO^_=AT*FkRCMTK&a0_-=Y2ER}|JjTQZ%&XtTf635F(tPK~eqIg)>OkX@EJ
zln1l_fs4%fX<Sw)hgI$xK35&MrcH!s+gxR_-ayNu@#rfWUlc)qN&6v1D(517sy5!_
zZ(>CcS>ajnEl?qtA<QC#=;TTG%-e8AfyMR0%)$&8vF@TlT5?l}7G0YZY?8u*<l_PP
z>G;He0{PH!3_#^=%*+fAhW{n$kvdY;$XI>muhBwHkP=v-cY_dZv`{6du`7zV>YfOD
z*qfzL-%nNZ-wtemaRCcb-j$JdlfU+nCw#!I1}9!g>qBm_7JK_yz0BIfY0%&#vhv|%
zK{F2Y*)dDGt{TC20v~{XqDbVhd^x9O8$Bn_3H^^4<b`I}aMdBMu0Lb6p<D-JFtF7e
z^v_=T=5~Y7fZa@NB>d_xL}FcSs{lqka5Byj*<89$)_ZYyNM*GvD7cE6itSQzbd>?F
zk`va4Fvcy5$bA`u^S`8nIA+D?;RW9&zYJtb{d(!`F8!!wf&}^ew0u?QDQ#l`_bgc2
zi-0Ei3)WX^){M0Rh&o<W<*0}dL0*6UytSpaM7n>6=x^<Z(c>75sP?qF^*Z75LYuKT
zqS;DQt}j*+uT!ab`B`(L&pqrPJ`{gaK0KV8f&jz}ZU{)w4eDuNnhAO8>nd<>PP<R!
zh~ijqgqWuR|NMplf3AzWvy-1BW=Cg^AthmAfLwo^KK|H~wpG%?UccgqRrurpzwkae
zAz4!GkUJQ4=%YA8RQnNuzaVp9m<Yauomx83l~3S2z`wm)+B*=+Hy#H`70iU#sK}^B
zb1PLekvI<`SC+8e98BT>0lp~LRi-F#r_>w?=3591P^+-P(KL|n>gV6&VDd+kT_+3F
zfqmZGlLU)GLx9li7V7W~*t-^4t6fR!$|UC%b?z=IP_^5!MuzIC-olotM$m8!fI$XI
z_}B!?a0ttz8o^y)T)y|em3jfsNM%P+-{R@ueeSX6IL;yFo>>`2Zk$7y)?d!KhpvXg
zJ8%~w)wdm?$+m=*wRb1{EP3%o|CkC|8<PZ@{z46Bk+j1loOKS$q(&`w-t|B<`siG~
zTq%G~px2E=Gly)(ON30gY+6<a1~|k-Dixd$-O0ZZ(D~DKv9_5AMjIq4)3rDep?r@r
z_<FFRRyz-6R;*MV-{FOlG`$BDi9<YT+=%iF_9AmZPFgQp^An1XJpip0RQxT0j-0=9
z$1SS-x<*7QB-B^Y8pP2z)JxAoDFvNi#UzfunP&5p0VquI3FI0ji%<+;a}Q0#`)(D!
zxbmy5(vpS=%(@vQWTBXvBurp;lF3rm_<{$<qk8!s-}f}h=HViKpDi_Bc%uO{_pI%G
z6(XshX9e~mFb)t7994!mz)DeR&RD)=DYyOeWc`OP9Xa?tHTw0F@CVYUMdT+OXyT${
zD0KLAy83gm-G0ongl@y5)=buHQHIPYWQ^_T#IX(ORKu#rWtlB(@ShbhDDt$L=+54e
zjxk*6j~6J@(`T3wU0bN}*uz6)*I3ay=GHAM6biZ`<xP!bcuLrx%xr=G+U#1EW#$!@
z`L*~fRd*V19hJxl1Q>Xj7hJDN1&HhQ*`%E}y!nasj|Yy_zvI4Ivd%HlNS?0K|GuUp
z{ei6vQ<-dYNurhl#Eodk>9TMw_-msDb);2_wP>b5QTYW|H<@>*U{L*2SpndY1<)8g
zI6Pw^lt`OKj!^b4eiYN0(G<=<cFCaAdvg!ENlLl;KJ1Jcz2{RwZ>=^6UVOiji7f|*
z0^r5@#m84NFIwX!aSvD3&Q3_!IGP<LA#doC`kCWK-CZ!+W=D}_2oD*rjX!SXf+9o(
zvNYaljsG8g3A<O3Z>ZAZ=;#nqRHg?g9B}+b`&CPTbkExpj8D+TPB}L2xbUoZ9G9MG
z&J_b}jRnT|1{zh5N?D%p-e$;`&LU_-zPpfD1lV+TP0n7sq>L%0ePse~H5bRIeA7fE
zAR^F;j;RX_aaZ7U#1FFF;Va&0(FN+Ms&5c82n*X)^Lu;QS~r*jQXKs>+x66}L{o2B
z^4x<6fPhwh2~7oGF~|y$CMA;nD{P4XmL;z*v$yJ<PLh-O;k_aYMguxgsOPS&W-KG$
z@FQ7n4JUA8gM*v(7Y?kc@;^SO{GvN9fOz-ZI{CcwU{C7ph(4R2^hBzQ{B8pE7wzIH
z<pa~J3DsKYK6}HRgPi?$pW**)<$7lYyY;FHND)NMY6BSHX#9~I@FmLpRLALiP<cg1
zAgm!Xm#TXxY&W4$xI2TJ>p|pH-1wvZaA-8vB7x-7%eE1i^|<T=Umt;9tgWa~bt!IS
zfjp^M;VE%?t`W`*HVJYxE<l^m3Yn11l0mo`hYQIt-C%bLO<o&mMN1L@<-VPA^|W-K
zZ69hZ7?6|O?G>0E1)E}d3k~e`R}>2Lno_AU+4k6dv1HKF&qHMRV>@JD>a*_t_hSe<
z{y%biI^gB8J=12xm|)MfawMlsE(!?c5`ElB{W{i~2F{Sov2o0m{Is+nJH}jih#6PV
zk>#6^dH#S9Jb-paw5OsW2nU+ww4qv%V}HZixSH=YDkQ#c{#g(=Ms)0vYsWEhfnyCm
z;hfhct?y=L?ewFIkP96D&{a&wu-Yykizc<sUuv`(Aqq`1qnK+Sr=Q1NQI<O4DM^(M
zlo}V5R8ue5lNaEn&v$?yVBO4rje*7z1W0M(qiY{POTCJjcE2yr(`E51kzP^ctMo7%
zWQ;w^Ih7#wf8f$eE>XpxZ#T6risXvA+~MgBUvYpnd%eR|1x)cKj-cYu&(?}|37t0y
zeEOAKqfcgeLQm`sm-MPWmgRu$(vq9_(U5i*VLdff>ywKX?6aE8lvuEW2DONZ%;Z99
zUdqlDqR>i}0jdc>d&-(~=sZj0tjIw!E)W))XzhYnp{E3NzGilt6X;8$ke~u58zQVc
zaQtCV^&=SkD*SPg&VUd|tti}t@>9||XA|C`ee)j%0QK8b$$7A_>X^c&e(#eI#``%c
z0<er)#^OXk?cY+K&+k^@Fu%>e@Ao&UUu3_6H5ZM#oDtZB?nGIUJISGq<jjCXPq$6N
zA+S{W&|(Wv>0%Z$ag$L$q2HR#;%}fO;x>X+_eQ3erH`psfzAzi9g8p0$v_q~x-91P
z<&}k}mCfVkCoj3vvhl=Tbm?PtG4(zT7oen$By1qz4VPb;Ftp!#VX{JwlnGd;O%&Ap
zqiZo-`Qb^QA}qqi<h=RJlQ#CYClk4PG^|1g;ZJN%D)|X?F={i`zeAdUqN8%8Xx4Ca
zShK%KOkpa@id#RupN?}>UE~7;n-&It#-Gp>=jo*2+o#X`#;IH*_YxOMb5d6L3k9r_
z`_!EtM_5ggQu461q#3hdM*`RHt<zr{(R|vy`r}U-DhSHgDfL`-8$~Z3GpO8KSmKV|
z-<F$Z(TkGJ!by-gSHLAkubE6VJ<w_QrPzft(n^nGUBC#0_og*&DC(_uXct8xK6LP0
z%3@!8+qMt8k(46Z_s#@k{sTd!T8!nc(L~^VRc*iXzQgsV5=7AB>uTjxQugB*s&+O1
zy>t*6?q!l3W?)~Ridf!|HQ&PQRu2MMXV+}Sv+xhEo)T^jXOe24ykhPnW)J+z$?D0+
zFKf2szf`iJX>{Rv=dH~b(X*nI`+-62!lj=tTu{{t^>&TkD<o?NxG5hGmlN2{<C<sP
z6)~>rBiQ5Q((3h?607-17Nr^_gJ$*+v?q0cr1N>8v1otQWlNBp;jXL=+3!VxcMWcz
zV<U-?qYcx%(j$HYDOYW55t@OzwvO^l0&Q0{?Ov{|c}p6SZ2e{XZCB!f^o#A5Zibe2
zp8(#vX1|!T8a=j;k@kjMc$L-K3A7rao9?Yc@eo;_dzGKPtW!n2W`lZ6W7TZgpT7lj
z7rk=dbNo#A(BP$Y&-sB`H)W;6@{C=KbjqMxDY75S+i+p&YG|;6hL*=a%|NK00ANPh
z+tE!LQ_9!-xk*bJ(;4pZ8u!AvUrw+m{o#KU2M^v~AIIL8NVxRlAd0(_mhS}Z&s(*K
zXtTM?f;XDs!@Q{!I}lvebi=&uFaM8a*sHb_gdc3cAB*nuad`)m0;+(-u8`Cq+VEa7
z!G8shmtlQMvILW;we`f~Vh=81$F#j-nTEr)HWHN}=BTdB>zWQ|KtM%Y1ficvUXinM
zV&HV~rf3{Ie#(!(eb+_=dBDC-nB$Y68L_-g(`%VwU&x~v%%*HTc)&QeHZKJ3r635Q
zu6O&m)LPhFi7C=8^q?9iDQ~jO_Z8&?O<s$2T!3(&jpKyu9k|Mz(6{KadV@n82vtGW
zH9`1JHh9~sEdQ}h+VNg8J(Cp19f`yLJ4BIJ&hp|}_{auOhVK0yx!Kim&Ohizf0S4#
zz3Xx@b|UHeyN5R%8?GdCFK(&%yTvPfs;TsO)MGUo@&mVFt!u*DHLiDaRTDfoPBAl5
zmy}K2YA$8r{X#juTcJCJ_|PVh=s5mf@<6&vEElLFj4ZnMK8S8fuc$HJa6?L?*@N<v
z{K5cBU~O01@VLsy=@PY8HsdZwV_F{5AEs4ziC%*l=aU}J3?R2Lnr$w?6&}tD;g<^X
zI(()%Ttl_cGrA>TkkBO00#>}a%DrzRe%*Yted#4u8HWA^ps)%kRGh!(N(8k1{x>7p
zo|C7@YzTRA)y*-%<y|4J6orWA^{DXVnD$>AHBswnsZ(bf8Q2%r^_fu<bkPQ74q`<9
zMbKggGRPrCVkASC!S9l5M3}e56ea?PY+iwz$Uh1TgIhD=+*RFq8?(5^YnH|QYU|_=
zXS`?qnR8es;s5k3dN20uvm&NMWAv6#={*lJ!y_aSg4OeW#fa6ha?@^RZ;P`K;L|`5
z79~|D!qGXc?GS-H=PLC=UNuJG`BA1%c+5}9v2|V4FFw7;ZW1FiOFOsH+efdf3zL(|
z|Ik$Z!lI{1-Y}X8L?jXhaBJkuV3|LPvzF^UKt8d9D-><C!GFRVgY$hEtP99DnO)j+
z`5jm!ZeMwtgVcht?y;;<k*XS$@Qq}56K*GOtBTNb{=&gj&S0bPmr7-TA^;nM3LhAm
zW!{gw^cA76qo=J0vfhuCRT=iNN(6*$H#4-ILKW?So!)st31!(WxhcTbAL?ad4|rK;
zuDTF{bDAGr(JZ@UxFQ(~=_e>=?($eXM>l39Vg;WC2eDkmL!u*w_}fh5uFo&zB&um{
zq=zmMM^uWb{FpfI|J^J8ld&QpR#~%`)Us_n3-A_Xs19M*9H?8q9mrMHLuqKsb}~SJ
z*){zX4B*SGF^81p?Vv)+4rKXecE$Q&)pf?dKDJZdlz~2@g<yqs`V86_uPZK%%>nf+
zhFI4rt2!OL^D?b7*bxN=tR&G0p|ynPEulYLgbugQt7>MiHZhuNjGbWMhM}3Z!yzxg
zjoWR0Vw*1(oui1^X*id<Ju=^Q#K>yZQf}N1*<u%w_zEfcN~9b8TCPQh@0!M#XoLb8
z&B);?p7j5XoO#g}X+F<A@{IQ&@#`8UbX{NXj6-v!l`Px;>-(>(GK#huXR983eJl;X
z{aw5gi&<p?N|vd4KR_!RO@D<_MzhA3Fc}$y444in4i{^)$}89%@O4*3GhI`CwA+OV
zH<$rHplbffYKNB?E(-PzF0-ULNmm|NJ(MHDv_WKi0z*ndr78-bL~_h=ZThyKqBBNJ
zgrP$Gl>vHRAM6OFIeFhgRM(FhPeDRFPp2{E27QDR$v(XC1mh^*oB8xLa^NlZT&`j$
zEQCgZNq@IN-r&)!!U}0-gE*JV1Wg{)^~CaPNQFN`T5%*#U5h=AbS$gjIm_0HxS7Fr
zFWd=c<Q8To89N+yJmjQ|mq@v>>>nXrJ@k8Dq*P%rZ1-&%^+do$&dQtPfsL)seoa%7
zNsz+u+f)w|vH?#4o1-nh;(wX=czV@+{?4dx1V#MdI{jBy&3H)__k%j#0p{o(!d^qb
zoN?qOr*jKgtWbuVnTQR0^;M`(W1M&g_Khi6k&ga2`ZEuf@yiBodFOeZYgx}l>fypq
zNc13gKhZ-TdEfAwJy}_-TA7N5)_S;oyHgdgFqRU%9-+ystO7IRS5Q1;=n|_<V*kP^
zyY=(bZB9P<%H?j}Z9sY}p68<_G%p$6hOG2xI@l+l9Py%9W${Rp2BZI6Aqd?xG^GjN
zV<iwy7<O_JeyZQ}?J%Pr@K@cSnde4lBhv*^7j7V<Z_ZT<YoeX@f8X3_E)}ykmKJVP
z=yG-K1EZ)(Z3qpU>eZHM3Vr@&KeTHdmRvCF&!^jWB;F>j#2Imv)@^=cPht9vCoMZY
zyy6<$Qj!7G|FdUE9q$E}dq+Z<8{YDVhT{*n1Ll5{#58&fE@5<nVh0gp?i}Q{A1i^O
z{hm@d2Ef0<e~qpoi^vUaX6~@6JszwH0r*;!oqCbnK;MB`)tn}kZQGof{RSh<HbdzQ
zCjIxo$8`So-h0rRYaQr|_?~Th@b&&Xfsm1CpTzVzQ-a$N(Av|k>2X6lWi3)$<}HP}
zHaV=9?enhRn@UBAoh})IOB@~xS~Ne)#GsW*Cjc4aIEieG0%T;kIMLq#o(M3XFxV;z
zJW7@6cOGrU*&4LlVQOkx?X`E=FjAdvDl8F1McvziFeCWD`PfwhJOhyRSsAx0T<+9{
z68vtm(rl}eXm*Cb#@vI?se%}4BA^ZX^cvdy7Kv+Fky#Mb+KnJ<PC_j#CVtzjNQ`J}
zd*o^d#>lgga!>!CC}lj%=_}zsu`M+5<n(P-F*F%i??-AGR{IfH1*Uqs%Tpq#h<^}t
zvbVjp{WeY6Th$HuuK8ZcZ;3i-iEtmzmUcbF?DNUWq4k3FS>41-ZVtW~)CjVtqHV>@
zX+>c{DAV1c67V%W?MQT(Cx!_iE>aJ0GEud}C6{}%%R@*3@lsz&A=Xyt99U*d06OIc
zXd1=EJ~4{px<19&jB<>7#*@~|9^@&ZWzuD#(V0~E;HO^61bzF2^R=Gcz*oF;fY=d+
zmDaE$o9fO`RQDU?*X{t%F2*`{2n@nH8Q!+vWQuE-pl0<W@T37wrsfeTtMq{)xP1X@
zt99h_gu!GUrfSJSwvsyFrU;$iU+thmp2Nh@N4|bYFyz*kd<3HQcXz8on#_f$M^0Zo
zU))QC*?cqzmV{y*C^l#LK}kN-1;L*V4nV8`99nP^yP?af1gYhQ2L&(mdgbPTK7SHk
zVux|yDoVpFNSQLc+K5IO9NL4DP_fDmSCnI{D&kd5WyunGnBDl+dtz<Sm&zlMhmDI^
zBLNz5%7|(>7}GMm^P~U7bij;Q;@Yca^DWylL~P(tDc`(~P?rSOzxg41#{>l+s>YEm
zUN^~GuMS(<A&`l?Os#%1mD-0A>?h3c<gl0UQA2(wPO9izA8)b@)Rec+9Ihc*?h}KX
zTI;l!VSHz`r+c=<DZwX2x@=T7b8YG(Ff%=LIFXi_9dE>J%rV1qOhNs&)2hnYjhBws
zx1tli(wh~HC(amDD(q1tIt`e+-g+c}tMWANay>~B^REuWG8e)TPs!62Dt*Sl#l0YV
zkmy0Z#L%e#{|_j4;i-|(8a}lfw3()Cg_d+Ih}c#ymVuZj1r8dLh3F<SBB%6Eurp38
zGjbe{&dtv6i*uLw`bu#*P#+u(_ALDW$Cz}}!=OG5t20qEfD_1yMU(zgG2>JDReS;!
zzMnxvUdx;u&ZMo3hJKJZ^F~Ci%xNQPyV0kvp_3g>UF(YMtz$cGfI`V||D!#aX}?Un
zHz6%oM_P8<pY8|c{lu_$Zn1c@oG1e@ASbPtuW-jjcD406YgU3@-za(7$Pha@uy_87
zTy~C;I2jE5wX1OtdO^(l+HEh6NzU=}0&V2T1}{PlplRd;9dXj~f{GF8uE-`UQ^wVn
zI7mW3&!??hz3?(1<IakoyODDYnuP==S{cw33RwB{?>dU#fmsE5!?)d~Z~2mEEG$!W
z;2z5(QV;FZ=8U9pT&SoI)tN&*?1xqjj)D&cYgF~s!CnQ54Ko;|F(yL7E1+Cuv25gI
z(_|wn_F}t|mOi&yCNkuL`9iuTiv*^;9hP#t?Q>tru{mXu{cf^(3|Df5O4CtbJ2TK}
zYXu%3HqtK(*ROV$*54pGNf*jTqx@D$f(LBCOo%JCN-*_76QcBP0=Xnd=OYkCVf#2G
zspEHCO?i_?0fl7?4cE-&zM~Rd(RilT4S$^96k@^?<QbrPYq7=7?;*@er3r3Mc?JmC
zyTg#Id}D=1L4S6@`=4qO6uiLmM3|Ix!sr*l6*M7$HAb0AsBWc?g6-Uq;l_?1gID5L
zvQ~;*=2|lyZDuq^ze}`;7vp3F(b6p8IW`O*{K70dv@;o6qn>^)HU0#W==ivyD<<9L
zNz^mTW~<|YNn4z9^t(33RzR8zD{z)A%!mAu1%M?!xWnKf8t)1StKXi5``{^gg||)7
zuU)rL4dIjVm8}8A%fD=yDsg^V0Ob&!qsYG+RIu<Q%Tpdx-DvkX%R?`W2Ru>Yn`L@R
zD6n(brpaq!4RHU+NJDn!*W|)^pkpRy%^cSNj-WCR>+r<%`S?hTuS-0pHPuSFXHmzz
zYd=w#tui$mr6d@a3}E^|%=`tpzU>kdHrmcp2r2jny-Cc;4A$veks}e73qx3_EWwRi
z`fnbh$gQ~Ve7WCL*fN@#mG?kj`N`Q9OLq!dy?c#Rq#F@c86b8oZ|vY!sN<qNR97|>
zI?ak0cl9n{MQva+qk5+E9%(QNZk#D8rqum7>f;U;!49}}^Av}Xrl5WV-kiV@+sG>v
zCdlG*1stZhi5f2p5NH!901=#q@6n`|J*Np-ASzD19cqWLI;-Ew5+~@RC8S}8KKk}J
zl;&H!#nx}YucYdV%VzkE+KV_^0kK1>uTDPW%RX!##+0iq*CsJIz4!_WS@DcjO6V~8
z2?{#=6@|yh$qm)Zlv;Im{W?SODow*Lgwa_|?rgBVQ_rv9MxEz1W7!VV9OCI><wTu#
z^ppD6KTnB;edikR)ov07Ee<Fl<aYB|e6vE1lKEM_8(^Al)P&jZsq?wt@yU086_Fvi
zM`}0#Igr|BgfiuG(61YtqPINs|GJ?)Ci3KIU}Z@$6L-|lxR##>uSr@}MJ6r)ixd7p
z<l7#)K`EAvQ`e@W@(hmr4GkQ<?MgI64#LEtXS7}h!zs*mNsy7!iW+ap?Rc+(HF%Mp
zA4#<pI2@lr=CrC+7G}wnE7!m-G9uG?4xD^SmX7C9nSR~$+0A6<g`vrXP@>1|u@QDV
z?2RRwh_}HgsgDfEwSd7fOt9->&H6$Wy^=>=b+l6HJl-_J#U}HIb`$w$S+9NwK5nD8
zXgjMw>zh2Ce**;TZ2I)~vI-FJ=k3W+S9)2Pa-g(biY*V^)M2ZgSzY-~3f)Q1<4j*j
zcIVO!|37(B$0(5sSl9t$y-zbm1y-`S75>sDn_Q_Ql0ww<L7CJdMy5x}0wW6U0RsCk
zJh0qPYax`E|GgUTy?laA?oU7;j#@x`6n9~sD)Et4wY<SnqK@$d46=*Abu_?X^P-tO
zdD#>8k>titADv(Uaf>R$`Z?_@_akXgxa~_O(1ma1AV0bj)s{+1laknwE=KS(!nt6}
z+&zim)csir0gb~z`~RNueZoag+~Ls~toP8A&NYAizrTgf49dEw$XhDx>{B&HXW#Pu
zWmRZI!mQguh^eq#*+#XMpFiZyzc8QMZQB$_*{*)I><^W~#uyGOL(O>KF|g=jxH3tr
z4fW1N!qv>dNJ`0iO-8w^7(5v>?f&@;(Lx!HLxbWGHs5S{M7AtF01{Ntr<}Kyp7rGq
zppBe*+$Q2lViC1hDeh;A3|PnUQuj~4A`bF<1j-@w12EmVYufMHBU^aP?_YKrE4JKY
zvfPtcKwF%suRF9xOj3oK0P6ejL*>)^h`iIcZ|7BwU1JJm3t3XpgrT9S7PmZ)CUH1{
zu;SMLyqCF;u+U&5%qytkjr?GIYL4)Hf23u5MNpAJ?5>*{U{CAj+GBZU;T+mV=R0++
z)5OjQolfM;*HSEdb481VB1JDXx$(Iv%R=KkecUsH;k@?~D|e$jKL+*R1|7QWkHI#W
zz|PPQa3j3A4>c=~PZilQReb61w03U96a~kmtu@MY;~OQdsY?S**J9J!3R|44%I3Is
z-z`{l`gEgAg2#%dklp$1j@m4Q5}L9?wnC^if=q;c(_CGuePaV2UlT4}DEY=1EuYW%
zRLwJ)bS2{y1^ROJtW&K2Xi*R->-8~oOdY}wGo8aY&s5>^J5m53!8S1vX@6xohRSaG
z)2LSBs283Px+SC`=}DDe>3da`<GZ0-ZccvnXJsLMy>yu2U=)C_GmhFtX0v)2#-JQ9
zc11mEwdy2Kw_HNVfO$GeD?omH>WAk9>CC#vz<)2FYL%oD+^6#Dm7OOg2mkbR2YHs?
z%~)@&z*go{#L9L}gT{iU)99+!#e6O?>=x4mzs7Z5bir5v69v{Hv03O>=8Ce{UdJ@a
zWB*U=ck<i=SPm#To12`3ZZu8nrRoVO9VGTXWAMD8pm;`~t}LbPb&J@8sEVjOMEpKU
zGJ^wS*77rNt@4@Vx#$Aoeh2xl_-6>jEch+>_E_>aD<wnO6O3w1w^B#H<x6)V$Rsd*
zf+VPyj`c0nnm*neJ~W*xO)G9|M<gxC#wUz<(1Ssmdi@wOUlOhpjIIVQQ0nD2{jS83
z-E!wQQaa`2Hz5amIoRGzml5VDozm&B)pm}7<ZV>cZhChR#`~s_Kj~bKC#HJ2jqoC~
z0;lyR)EZFAFAej2Y!dIkaAAVku#(-%VsT&t(;Vz`l)MiX316N1$T5G5n&Hy-`JuXQ
z@ZN0+5E0b0eXmhz6KMCU7N01Wxw9xyJDAfj<G3)z!T@#%HsBdKgNFx+@bwAkLE{%G
z@A>3nJ?3TiK@lh&`^LM5lz}+YediZ0fYz6hsC>z$baq@=^Jj$Nq7DOaRaq%Q_Cz|W
z%ZMFm6wpwk)caP<JdP@5ZK@w=x@gxXR1qT$j|$yu15i#6JXXhR{~2z2UD}wde7Dpy
z=`c~j6;q;69Q_Fa#{;tq>RIS;x+qjPjs_!oEU)x8tXtn}hzZ*=u|jWUIF|ceX+x~)
zt<??^8{nrmWp{>*sN~c*x$9L0Q0M{yZ12~!c&KDgGt$G6_`9rEhQ7yH6yogh5UlAy
z6{q!wjnGrp&IPkhfp}_MQDowOcHEg}Sf9<nTa#?3F{?T6<hYD|1hVz9kpID=!8MBT
z{UWmE?vXi?@N;d59k?MZ<`L4%|NJ~0$eXpd6gryh)zknL{7*&wE$<~rJ(Cqncj4h5
zt3VV0%HxNui73v03t08}PUNzLEAa7I{ZzFQW~0Gt9Rv-vU&h_;(^{iu{D1uwD(+Mh
z76$%M=`Qu3S{?>wXdt;zud$q`HCCWsZt8k|thOaTAHfB0w5mD+Fi6;+oNv;;5*t6@
z+o*HPG)lZxt~AGk{E3ImcE66@#_#UNaUD|O#`C4Z`hajWElcK35ATX~nWUIFF2p=N
zI`kQ&?(RrLp{nN#`RTe`nRy&I7XJ?U@0y-8mEUMc8&s+lViIDk2R+pH!2W_){Z?wV
z2%gs(a_hRt&pbsJM?vu=Lj>_SA6S*EM_uewFH6nK`fA|{T;#$At1?$@SCW&3!0KY}
zg886SC5N<9HT7$8LPHWIWqT_ju@u$duDMHID{+3#8pyU)<0bar%1qFA3i;KEK&cuX
z3_xSOF&U9^7?Lp<p<OD>V(y{}GE^82vGGpy^Qse6b}8NWp!cYeXo8s%t1#7*S3}Zg
z2_i>e*8V@0Sn32ne?yh|V<6Fu+*QPC$87<f=;Wunj6NrtIN&N?f1Q;}AE0d=(}3)q
z?S~t#{ijE{61D<hv`!jSrz&kICC)arR9vf+nBsF#St>52j%V+qarRp}{8;MpRmXD6
zbBbx0qvKx^a+5Qt!2}7WL0<gH<7AE!F>A`!Kj;!8%N8Plo@aukDJ~7gg!WLnft7l5
zv}68swi-fb3rqSUi;G$pV~W|Fu9?lHbhLI<o^MGVe|EgDHhK2__V2#7b#;H0iW3m;
zf~zQOzdkJ0Q#?u?@7SX=B{Z^*Y$Um`iU2{wTIM7S(|VI^Sj`FWpQR;cfuv$N^W7|z
zQ{dK}^@wEDGiI2P`JG!AfYV2fvZFFKwWevb=B@2#A-jT9#)8J?3^~srB?^_UJ0e$&
zVGo@hop@VGoWa8uVe)t9;$MRZ6G*?kBWi(nIv+P5;yh(u)c2FbHv=h8p>KrNToo<8
ze4PguR)zpVi%*2<7|EUYE{HC25$#T*Gy0g43hEf3W>tReTCbwi*!nI8=HTgIGGR#w
zW*vG8m#^;j*%w||*ncg4*CFJD-<HSFBR=SG0zF1uBfe{^mAWgG{80gcOf*Ox5fA=<
zR`xmzQp@+EQ`j>>b)@Awl?xci1oVF>s{S6L$Y#Wdz|x9bj$i@4iS4s*{uWJ7t`cm0
z<mz(YM@F!%uuVw2?hz|$*{C8Tc;ms6bmA%!H__)|V9A%<x#UaHR%)M&>O`QDYoYeA
z_fjsq)}x8ZsXso|@WpnK1Ou`2WuQ|)33)&u<9crVrf1bz%bWu@H})+6*E%D~OMXap
zxjV`JVgUG{3eJ<A)EKpHPx#gG--e&m4#cf`pWJ4(H+19F{j`drgNRl#gUeZy=g-PF
zSP&XpOZt|IC(-n(_O0ujzr^=`ivDrWnJXHwdiK&?$+Sl4OUQ|@;pQ);Dx!rSPjWvn
z5@$B{OWARR&_Fek(7N73qq4`hmnKY5@CiT8wLCx5;+W%cO1GM>Y-1{sfijQ7FKU?n
z6F!0?{Y~Y~af+C2ny)^rYEe(8MtjctB+p7VW@lQ>^T=w2vS1pXD;oUC{qHJicPQ04
znFsiLNd2t{%x=$_qtQhb4lD89<7Yn%TlnSrqKXmLdA(MS`>LjYzHdRv2{P%)2{^cz
zr=<bJoeQHV(%F!OG4qx(Syvl3C3hsf>S!_p3RN+3kd0Tk_k*L*Y0?>5-rVJLXg3-n
z#3G^|5Ib(LY&~*_WmL`~x4B_+3Ig%FCJE$V<@2&{Vizb=NXGJMepyk|jQ3nx)tx{Z
zqZ<^55+@s0L@`hYvog7PAQf;tv!GPXiz_`Rc3b?{Ixf-^^eFY<bMw{V;ov`9V)|!(
z^`l`tK&FZ>lnIs}%O6!#$Oxkl&_p(KzCiHjt>%v1A?QN89@f(hPDg<#tcK{7!Eo~n
zSE<}&R+jRq5WC#_$AfdIUbH*oo3|&LKo6P32~JO5yre<Uo*SB@sDUxUtDgRiLA9KC
zlA?dOuR*08*YZrK0<?a9n8ku7+v`}p?C|BxSfP3l7H;WONu=)WKvSsy6c6&#)o4w<
zZ&{&QL>q8yhugS-TczzrFybqjaL*ua@!|C`=H4dQeKIj<pRqrFSsZj2QX~rBEvh$d
zHw^K^=7|782j0?9sErBNC<325()K=c&an4IRy2F&v{!fc<Rt{R6*!RrM4a~elo46+
zF1!1-TldBCGE^+d6Fv|ddYTD}Fs!!2+3P=o*R)|5&jgc69_G&VVZzO+*NG!agI>p(
z3p%eQ5F|J~QTYc=O_Hu_F6_jo(0U6D0+8^lE7K7RZO!!e0EhQ@*KMFA+Q{gSc;Y(P
zSybTO1gT#rKwSSc(X@FlZecNsfGnd-7Vo~sAbLakwT!g}FxZ82+!(0D(^Ln|d+0l@
zwdv^N8EjD6(5G}6*kaw`eT-ogA!(8>2cr5HQUO_jCsLOS>LE9U_*xoQ5|!w6MmFn^
z>qR{ozkoLUCL)3AC?iA$prxkc>a=29g;&;8_nyE4f{|3m#WdYE#o=n)K_gqB4uAC4
zu%9%<Xt}oRbIJQ}#Z+lF+o)1yoCY8VIjPV+MGdGReU6jkGit5*>Uib1jB<(lpR7t_
z+A>n8Cium@IE2DTqCwD<!B575#Zv+9l_ZyMS{ST<NgBb<(WmLa!;a-X@HbTL34fhg
z_|Tm^-;th3S1Th=V{U2qsPOvyQ0G-jj$x#RsbLaMwqWltjDkUsUCcX9_M^>+AM#%v
z2)-!io-1%oe7<u8XmTr0R4C^?I&wnYgxqevfgqvkWqP*NsHG{IN$(bK+^d$KG}jr#
z0T7fn*Br4H5V(>hFGzqSeq2ciFd*H3|1ZhW%jn44Da3b00DpnoDh2>$DQdMWDO)Oj
zhw>#UU0_a@+p}mb%Tb8DqO2yZPwQYhT!vTw7fp}SPmlU4F<WOr%K<#+qcDVe&?<`t
zX5RKSgS2Bz?ZS^&&725SYat+_;Z`8yEaE**zhH1G8j!wq+k>)(y)HydH>0|qW0z@1
zx){=*QNHPPoxjot+g?t{G(Q}no67;8@d9YfyDvRCgm1F?yZU58{+Vor{O;OUa?P7Q
z2~4iEFLEi`9|_YVfhQVxidGxxN$>-`%TEJ}ab5mw>i$A=?hL${K~i`qspM;xq(lPS
z>Q$g`ek&Oh$e39wSx=TXGuu%Gq*`Rjf#(Xh01^Hd{<jsrQxf<YFxv_rnqW`1JZDb!
zR9{R|j}Y$Yh7OiUjx`Af=|qsVLiT$Mshdxx!7|&(LKFnNz?u@K#c<fEzNihImjZvl
z3n#&xu{b>wz5wQ_JRD=vw6`4_4}~Jfa?~t{IF2pvnz8Vw|8IQ<I=!(M%U7*Fn9G9H
z%i7|hDaN?q1lmhiS4RXbJr>wfIwafQ;O-Q*z@(*3AV5N*8V5v*mT-`l9)2;ecHNX6
ze?f>x?60e??%z-pSnK6bOD=mDz^s=1&?3X{@i4I)#$Fmp<GFHIs%~qW0z*Zv13C1h
zJ8?{eT+9SGuIqld(G<kJ3c^=8vjB2U>6jNAM1}T`ai^Z`#0pn+u(K#0$KvZktTpMd
zhtcG&@UEOi)jTcb#!&Z#)Nj2A-$-KJ4jFQNw$~F5`YLX@0loMW&{p);%=E{=tEBO9
z@%Ho4i_4-%RrdpIFwk4kBt805@}DTEpUS{J1eZ3n3gE}V>}#oBmlk<0cm7v9a}~#d
zkpKU(1e=f=d(*z{<Lfk%I)EiRoA$+7zX5N-$tBR3tGHDd(C0E<RfDiux3?rToBQAV
z{LxT4ccMJz%-8;_2O+WWc^1J*$y1oGFO%MQ5zxJgZL#`z*5J*bEn0JMIWPm$F&%d_
zxV?BQpuU_W=7Rst%bvna+|Cz0cn4j-Oo85+p%DLeMBm$^&lW&M#*NMls8~YJinqJb
zeBN8_&hqD2MvjSTS>H*7EMor&&M}A#w2Rnc7gb}tY*IZeP$W|+Vl{Ebj`HH9^K*6U
zw_t`;L9oF@^juNiSpsM2`b_1IIItc6dVdlNb&AZI`n;u^lAxp;uk5E3dHQ}v>=7bR
zWrJie5sT(XZX&3SWF6KH?2gp|_G!g-1nIU}{A@N9?vD<ZvD?J7-CLK<gu)8e)rza%
z9Y*-kHH~cj|NB(X!f{zTIz67g89f;^!#3c$$!XxFx=^4qpOMDkQc14Np8~gHuWHd*
z2zXsa^%k6!ybmo)uJ>&xluTl@$v7c9=)^~=U%f()zFMP|Iv>91v-}_}Yar{WMvp86
z0qO9k^{jUR6*<s^%IiOPOEnehKkkDDQJ&=u3yL%cglEG~yvv!r7>DiRJ_2UjtW;1X
zCXuntZx5w%v84Z&Bvf5}Muj^jA9~aP$NVOYd<L|Is$ixu0|g=Wz!?$6#<d=A=$E?g
zfw}Y%&{kTQm6j2-Ta{IyA9OY<4Q5YDlb1^S#Uy5TXk>ssoUXo`q^|_g85~8nO9r%i
z%UXi+p!dsDxF%NLmfQ>(dzs<7o_3Z5yRmtI!*k+f+mDNawGae+*wR;=^YQ_(UFrX8
zA=s1zHlEV`o>qevZGDw)z<n30W@Jb%=V#Si*CuJAP8kPUA9hU^b?CbuHOkDZD(+qx
z8)^|^hM5S;fIcmnbA_+t5VZjRXVdhydDM<{hfk}pB6->G-&~^%m~SDl<80G&5FE9h
zRYt+ByKzTAB(6vbSRAxI2D46&&4~0hrB~DgK<tV+e{f6h;AtyKy_Ra1C|HJ%+dx8R
zCPqFq_OWp`&jyB2v>qp+g3@1T&4=S`b+CK(bG^{z{3zIo{Qd2qt6+`x9i*C@<Ld{e
zGp3<;%Zzz&pNo1<IQ&|;g_(AH_*M2CopQO6UFOF9f>eZuU6fVQzXVs@>}WDgL9{ve
zXVkB@U(U$GzG3Lfm^{ox3(HjjT`<9+5||i(yiDXs0ubtUJ<69p{LI6mMSk)fk|7{R
z5tTH}EA_FoChmABqX;(in}&RN$+&J?a@x;+DgD!5x)7+X6gHJJXk;!OFyl=-C$Dq+
zT{s}^<L5V7oD{b~$L%#Gi#6=B+3#hCB)jzLs6W0!4)Z{;DoGxX=9>vi9HKY^5*>2k
zCqT4+0l~nbcKY|eU2lO>t2=S8<~$8T6g=*2dnK#OY5Tzpm+09oYOL(yi0a<(Zbruf
z$FB^9cHF3Kz|E{x42`D(TkTQy4(=Y&Ushx;9!wM%i)~z`>#4dcu4KnxV;zj#X`|bV
zrO9&1snm?u!5{XYP=FJaRqThP>p1LgTdZ)ox|zBi{yy(zzy*rFLOKYH1g??4bs$Q$
zUxhdgq3>tx7ZeoK;?=~E+qi#ldf8IWiKwWD5uH$^L#PTm5I62G$KLNF&>WZ(d4UAh
z0tZ4lbss^3blB_tb{U(k&|s15{IavSWIx$sDl8}Dzs*--=**(blT<PzBjskIS(NjH
zc5tKhxQ6ZEyuR(Z)ub%X=19ovCA;V#|2!nh%Tdbw=~RxT3RX0}laVl8L>r9cDvBP$
z1X*Ga%^?id*72-}XZFuZK*45<`7b*0q!G#Xn=MY`CQ^W$w;MiP(bJpk7Qhz`1sr{!
zc4wAjhg>23yy#;`aP0RZRdSHDe=KSwUu>0KPmWzpHQkB#rG){Pmrq{?lVs_b33|(!
zYw(>9^D!T2xAb7ESFOs0+^lwJScy{d=bN5`^xm%A?9dI9i9@Qsi!Foof;Ib(`-Q={
zVTUzF(Sr}}^t$bkaelHrNKd+M3BBkG>$hhXhh^T118aJGRJG*KyM%V9B<jFy#%I-T
zDC=WY;9t(lS^&YBpw<-$vvaeEwK%=YhFlsKt-N5|UDVG<V$IbP!_WlFVDT*T6Z)~f
z@5O8%dJviOENLZ9rg~|Td0^Or6DO{;hbGMR5J0?{HX+k^E^a)qq@)dj({cc6wb?f7
z*U;Y@-Agi(0M2P_r;q85ilZgGSbU7t->(#vj;pP*$?wzjAGo}_)pcFN)UvoN|HXUP
zK~^FW(`xAn<M?B%X9TY>$`<$c?+;${_GKCKwm2jxy*lC1q1WM3m^EQw)Ln+%GXXY!
zPUf*&K9OBnNCLv#%54|xhprfK;OvAdv4tZ@0NXEn%kD9B7EisTQoNwwM#8@>%7q!(
zyKM*IM<hEikAadrT3?K7zQocz4O?AOl6>r;B;mg>9_KAFFUqBnaW7_gmVZ@yf5b*x
z9d{({n6W2Sn{^9IurGK8?knMT|D%h0$ek+w<0+H;9LcAMhQ#}m=pQx%C)zu?Mcj47
z*dLD`gws$lUF$NZ99fQPG?!9zT%)EvuZ<e6?WO#ZWP*14kv$>|-(GFb1JCTYAdwrZ
zaiO?9r5q-tJ|rnm24r#kM6v_{SY^G#Lj#JNjzc5<Virw>*_@_>Lwrx(2XZg9IiH0^
z_9z|ZMuN<JwWNm}X#%7T!l*QR%9(r-fnVx4V(GVAmmoMfZCgv~q}|JTpN=@7O=R@J
z4O|_Vk-5v^Te$hgDwsFtFn|SkF)z8Og`^ln{l-MKI}gv&lbG?iXfLMbsaKu_m=T<F
zE2TF;qpTsqXJ8C}P~Vi34r&-DNLjvpO$#M_POp2n?^)v+n&jE^1Z6*BV+n*qdjsBT
z9vtJ@S*9kZ!DEl+>NzodnGJ}pwIRZS+`l+!)x=WD4Wdjh>dcSR<6C?65V4KzOU1zE
zp%|sVU;r&Z<K0-CB{Wd?zqw^v_rchOWAXB5as_-a({0FO09Q&yVBz)R!4d-wcjUS$
zKxFC%vma0V)_1kz#0b2@aaEdc!1%ZOsS0@%s1P+U`7}}yj2&#PW8jRACHZIA+=2{R
zeGWeRSowN?96@}1)wUk7v|CKMcW$A?G$OlKA-%&QT$+W1!5{js@L^;_G<{gYHNkQR
zM*5EdLo2U{f|a(~2CBU2e-;vwA#0wOMB++V2=aKYgi3R6eOG<-0{Dtsae15)T$hfI
z=)?)QvOTAf+gCurj#{k{L{La|w74SZ1|rA$Pk&P+TkFQoR|mmwW7_YYLSy4DcqFN)
ziQXbnV)n|Ei7@?b-1h&5L3mn`2(aY!E_qs$g=hByoFm6PY5Svqbs`Chc0V{Oz)j1^
zx-r`pgM_krhLo+8YW*mFKKmx#A0<DnTkux2LXJ9pA(S3(%-l44yXrH@llwmF<pfb~
zO@v6?cQMq>pg7|7V+TtdUk<-OKnHSbgXq|8Smz3;efd>|G2pLk*N!~K3ck|i)$BWl
z^Fl^Rzmd1La4#LyQI}q|z}42tJLx|BoT*F9oAwEg_e9?z?<K0TjeBQ4coCQLvZxDZ
zKTsX~#`N|a2!ebs{xzF}9|!WIQ~tApOSq9czRW{|gRen58f@D*;(%w5*=Bj}f|{6>
zzpCg*q1T6fJqxHU=dnWbD;Ok}I)*{_eJm9ynykte@WI{k+@fe9x|CODbAb9fw8sy7
zAD8jSMA<WN!!%F;Uv*ni@(uhDs{C!F6F%EeCaDdnVHiF!rI+UZbwc(^ZcIoM5jg@B
zqwcem>eXsLks-$p|KbMw={~lkt`B_hxT@Mp^XkqGeA>uSM%ORI`=Tu81dP!T(2kzo
zM`TkPfjV<nr7)i5FQJ^>J>clfSWIf_9MhxbTgRM5a!FXD&_A7y^GqsZ<{U)%$k=9C
z`n+TB92buFL{m@^F^X!NMbhZr?nRvgDesQun~52LX=@Yt5(}zx#d7v(#qs|HL9CqY
z$0X=+@09vqS#a1gPOb{T>Y9p{vCWVwc6<Rm&2qz)!;6J4k<L`0^-!^LTW{u%_-<Hf
z6ZHeMjOEfsD>we-Q@|i{t$d>wdXptOlKHP86<usPTbMH`d=Y`GB+CM*iupUFp>RIQ
zG;tc1o<ha$$S#+E#J?qD81cn?SYgLkbp+Rtx2|xlKkke)7wMZ+%jzKlD#!Z@*Rp>k
zJ1NW7Wc!bwR2%*W(hEvNbpZKRkpG+<am37|nXQq|od-Jle-Ns)AD*bv&Da}I$@7Bi
z5-!soDfhoPz6l2;iLC_L3Bu$a#!QCM`}Wt>&1C1g7IGI0oH!iMUgh-(l6$5j6Qb7k
z%a3I;PJVr4u@3!7o&FWQgDgdnz~)uRY@>w$ek{hC)p+DARf?nI-VOJ{-qwFRe$3?s
zB)L@>6dSdN_`lb^X_y6-yyf_g8?q~Rj)VB5x2HwshP9h=$;|`?#r*O{{(n!+aw}UP
zX2z4p3v=c%f(a#2`}8QkJfZ_<iJxDPiCs<E-4QTw$FkbgIh<)y&2}z8CQcGwdwE{{
zdJ4KLXwV*v$(FKTZ$)F(j4j%WsirJ>9s=d>)9m)hLv&ZWE@yPh!4eR5M7AUpb!JzW
z%NMP>CA4^~_DXffJiS|aG<IIh!*Uo!f75lfSG}(fUx26EPStaB1;=>@i&b|D+5*_m
za&q8eOiX9VL3}}w^FtSBhR0ia{LDMGCuINILY`m>*!Ki4yO|ErwvGgj``@!}xs(Xv
z_mtv<<~~!UY6cq_VM`{sE>G-Z9F7e-K%IMjp{v-l9$2juCfN*@^L77>mBuL1j)Gf-
zd=CD9yziV1njO*>8G*~G@ecQ$JwUwADx-!$P#Gn@jU8Ev%SkTHgX#LD^jx-Z3LorO
z*(;UQC<1XwLTw%k;wgVO`8=mWeKyIj&V3y5T<vIUm}srxCp@wirm2*x{}~lF#Ouuf
ziqldgW8g*S3nhN;todkgbN{-7JR-eRfFSYvyH3<V@B;9fDGK%QTUy;l;Vb|rpp-3E
zF&oIBI>LoDR$9UOiit2G`CTJzkvU38soDuY?%*c2<0*-L@g}`-@hcK+OpMG0+hJ4F
zkXEPi=yKR#x~5gX<tA-2aBxoWaMNLXiyjU<on1qpXIz2gAo%ff3{efz2(p<;i#nLY
z5tXm&u;7cWAUphP;pM*imqs}DuAYfl<lNcS%n6&}e8MmaI`}|;YFlDqjuHWd#1%4q
z%r3hlg;4X;3}CND>Eb4;qjs}z0N((qV16$5s`6lkMFNvdPmeo+#(-Q!j0&9~Q#g<>
zS}7fshcTv=Nd5z2Wp780Ermgy<~6^yK+60OJA@%N<ku`QK8Q{4@h>WYv*B(CR4Xhj
zg35WbIc?wPaS>yl9COUm-s?)!&mqesd|)l5ST(A-ZQb5vn)E?x$QKiX(@7p2JYnDy
zI1@kcgeUO;H$ce0MY>0pb#))zng5Dm0|2+7rX5zEV)*Vp$Pjjy4F~54v2pW-o08pe
zGASb?7D|xiLt4@~(o0RAZiU>nOG40;T#hYiLtCYOuvM{@MH$v2H$$Srf0u{#zAmlG
z@nP2IEr>`b(I_?%%w2q^kWxtkueGs|eTF?0t2LpCL&kmO;Ju9+kP)l`(@J|r=B~_F
zO;BZh|9GU7ybKs|e)0)9KPJSg{un(-(+wOgodF5ts`n`lZA1sYV#N<hHrO^^R})o7
zoCrRzy$B;FOw<P#)I<&Ec&g!yx@@V_bdo;>{GWU5p^M=)((tY4#yeAp8c78m{hDtx
z>=!e(9mS{IjGc&Kum6m<6U;sK4*Sf!)eaGU2ju6U2i;0ep+&i`A>if3g12y?SgpL?
zs>RnVB67T)^O#p*F6BHd2gKa|jep>h_a$h0z<gMu#^C?=UTWMAw)8D?gs<g%;eL#Y
z3k+jtY*VxKJG)J%vgbVYCHa&dJp=0LkXoEgW-$5+%uNSlyqWoFM^_TV^M<#);pP~f
zO`71_**-@=O*L9VG6Q^|xpiXO)=m*3hQ#Xiyo(Y&z7+xf&MmA<nQlm7-ZY0)_XoPK
zVY4s!v;A1HbitNaUeC&xC*4lTA@yqpuSi=X@h^UlS)-GIdwUV^NMzy{yuKJvRoyTO
z1%Ycw=CPyS%A?*t?DRC8A^go<CzI=f$a<8VXn@a`m_EwNNq8mV1sr>NF-%_M4A<K8
z)buM8Py}`9!!EO^G>|<?XmF;!k~bsCNwiLiU@;>FwWDr|w?QxIZYWl&k({OVCGCZv
znxkzwajo)h?xtsymYF?ToKVeBWhqCykob$G=}*&@HC)14#VU@i&7$-n=z#l#$YEH$
z!`p4B{_D5tf1m&Nqq}q~XksF7><1rRhnb%O`ppY)lM1i6%k5rU1XZ)oK|Cqs0jg!F
zBcy6Pe)okv_0CJ=^`~kwA>CB@tx$qq5EhZu#a>+W93ZxIB(K(v>M3_*_h2N9L-#Mh
z1!IPXUxj+0ra`#^*U2FsY@q4;<kwV2za?kxt8H(^Uh>iOMis+4L3*Yztu;`jQ~3g1
zg@}giI*&@x6V189Qq5GH<X&114k5W*h$ZF?xdXaJ*no|%%UJM>Uy_v5G^%vqJ~%EN
zlrA7!fDBnYfGn9_rg~N0tilzlwpJaZu`RG}V`NUVd!@cAI^3Rj+nj<^rfjoO$#2QJ
z_Krr_ca?&S=drYl1-B*9M2WV-M8fN!pF?3wx>S}wNEw(}I9Mi)&JPkvpV@m<%vr;O
zqZSO>2EN$qBJcEm?f8*`Z#elh7a{s3>M&5D5}pO1ozJozf7^X*3?8(G%%>qG=d$FS
zc}8p@SGrY(&aP>1d5^o50bRc2$nCA~?RLMnva!`2kKecs4};sZId=T#17&ru`PC5<
ziX-dwCpctMcJ3G7_%TbOjCyN%ZmqXXO5`9N2`qtg(Km9VF-8^FbrfvVNHc2xQk7^-
zNu0C^e6r9OF(%Y(`t939rjO}c@iruI&8t>*tXP$#ccr)rs;-F?W(YWKv0y7Ut(#wb
zU^;R*F3}X!6k#d_Rf7b$WZ~z@n^U|?#`R=U7c;>DUJuJ!#K*@$8-JZluxrY21tGu)
z1Y%271tq}ET{HcEeR4k_nd;6a=R0E#Bo@vkOeQX<tes)qQMC{5d!W+rccC53XVZe!
z2`b)?4{xCvmBeB;Z~LN#=`rY2@6^4}V^o)mq$)Mgh9vWLCly1P*735)E}fc7s7vB)
zjD!F1|Ni|Ux!!*T@v!tD_q9AM7?g~N<R6s`j3am*2}DS_>JB_PLd&k2h1%7Vx%S(b
zy~p~ds^^eyul-sZvryWPAtyC-@m#$e)Km7=c&Nv?z(BT0S%&ze&AyQixii1P*<uQK
zyfql(7N;W-hyt_8OV?}*U+4Me+IyLEtg}TNy9pTCrUUb7eeOuSZ}wKf6_JuBoOk@V
zJ;uy^#48OY8{el0u_?t^vtlN+uLNGmL6HZEdkc1^K>n&W_sJbxp5uJhaOzmkvTUw&
zvZp=l?f#3hLEiF;ni*hO7cM2L6eoRuT}-r+DhSm5GBFPo^L<Z>^VOe_ovCoCYA*_$
z)<G*FfJ3O3HCzK-l90+x4DY1`WbJFK%8z+_lrqBNRlW#9m^@ibL^5)bJ-!M+qb0Xy
zAcLLo43Wu&YTM%qWXuJ6+~>}H<g9~*yubZ4r(^8szSsz(n1~7NCl)Qyhg%h)4*jA8
zJoREqaC9v{fPZG3Urw6_na=x9lybt7$ZU)zXrg?a<25-Zg)fBGN~Wd!#dUTv*4czc
z>0SrQ*WIwVL~z(wY4t&XZc^nN+T#(vOa7pGhSA~w#_A^?)51&GxK)CTi3~fnQhV*L
zpDNqU-24BZR0UE$55`Z=c>tTViL7LS!@35u2OO&BCgGxD?J6JRj<PJcxJhPTZfoz0
z{5fCc2io7+ba%dbG|jea*l`P@zVm%m&WV89p$D+^9c~`BXHoRg#h%6m$W#9}81-R1
zpJ^~RP5GBl<gYkIW!_4FKuEa}RcgZVF5rUHiswYO9w%>_%YquUNf^p}1EPh;R$mpw
zcIG`b>Q3|KvgfbGQyyZnPe8A@PPV+jcnyB2wDEke5(9d%7lv8b*{b<RP=j?hGJ;{(
z1u@~(X`rQ`<aE#Deb9W(hwNh6KLzDT=~rzcFb+3AwMrnTiOdd*0W#V!!$Y_-FS(7s
z1Xr58a|gy>kJudB5&z)N9*;EAAY<$lB6hK)yD-tCd)e-u#)x0Bs*`h88$OJ~qj7Q!
z*VJg|vj2okutUv=${4fPIma?_KL`JDtC=+Jc(%_Jw1vYd@D0rSjkz8%Vho^EL?(13
zps3>*WMKuQxYKV)=w#4_f3*8w7-u1aTYDkokjXll*nv*_iLfpvA5*Mp5QG(|yb;_U
zTUy9g@1;9I>oMBi<C*K-g;T(2JDH>k>AeGL0@%X4Z~TN#I36<sBhk!DWcIuDL#mgr
z!UBDERTyJulkPGrmL<WQfAPZF+{Iidr`avyOL&UEyb;KP5Sf=3Be4C63uth3;;6rN
zAGoA{h`|}><W?S}!>ac>hW;`Cer9rbfwN#5-Y*AvP!v$fe2MPhzwhvza3zSTDiMGG
zKRGXzGTH%_B5|1_zJq%>jeQOEskc2GjVkm%hih~~lJ1)%6^CLLW5DO>*@%10R{amp
zE9EB$Ykm0gg_mz>mD1wBkgRp>Ah-utMZ8upfUU`F<GlDsN2j-}U>X=Z&5G5?Wq=-9
z&k~n46H$wT<&DD90V1TRj}iEUF9Z(gzusn?3BM@W$wjNN0lY?NM+WszEO~+YNpfPc
z@h1QG8@9nF>W&fXUSJ(G#z<1zF44{wAdsz8-f(pD(Nt9MO{YHOO4=u)0=l!Yl%kmt
zgPd}C%v=_QoR<Gxx8_v3Dq|inwfRM?PhiqKUB$nm^rOamJ!~Ap{m#iR0UcYC-KKM*
zga}D0mB#hbfITmU(n{z<qfzA3Enx0xHICRRD|!KUY2(CbD;QtZ<Qx1g#tlfp{)iH9
z4+Iy1lPue<2t0M)0e%FBE*;Z(8aOG;p*G;DjaKEbf9n|p=xwH7{&8pHa7lM^5lT*S
z)icJ_^mj4&W;RA!{yVS;yBnVjS;Yr0rD-hr&4C&B3)+TvU!<~Z4hAna|I&S{%NuGp
z;yTx#>BZX?GnEaRjULNm)0fyUji<nDno^6N^pRQpa|wRsHcMI<jwn)?vFau3T?2JR
zZZR@1IWsWy#lH)CfxK#+CUa}w!s3}6${cUjZ)noO2X!`cE*a8p+Gn!bwIdg$17_uc
zAjL7WHV2N?GN(a=)Y=O2=Y^C0HOav1_KaY5>4UdiZFWT&$(A_K<Zs_O(-oJdL?y`d
zpmhDg7%G}BsGbWA%|+vUog6$k?XXC!+uWsS=Po3oXa>*)ev6S2lNIa<osFIJ2A`W0
ztP}2jg;~zRodaX0ub_<S`s^#x3E~nRYxC0|Hiv4htUec+YO#Cm>T>KaERIsdf_w$b
zxzo%TCWg2IwcAxU{oYSjY#B8#+m1pSTJk1ZwSNq%O1|SEd~(Ra8T<>1we7TysQ#UM
zQ93zZ_oX#D?@(s6VUoCVNq^I-p;c+oeXC`2bjq=_+CJ*tfZ4|$&P2Za{G1YFvt`OU
zOf@jNc*mAqD<cag_<8zB-Ztuysr>T*-tBam%dv<kxwL+V;#gGP@phldcLf1jg=m5k
zgNApph%UmiYMrivR9v;R7~&;&(E18g_8$=IPxDUci!P~7v6bKT;;@Dlt0|XyYX2|r
zCl{@w+0g4WPnsK((_`G3TezX4t)(#=?Rsrky-K!+g+OK+Mdacyq7%6Rd^WTIzh$#<
zW<*h+jtRWp>4o7uK&)-jcDluw=ESJm@N%^!UdbZzoEc)n(C}38PuXwVup`u?*^x<g
z?8~a}Axg(m7Z$v#;K&jlCyJ9dB?iD0{fW&rND@t=NQ~v5yq>Eozv!g*UFvqGLpOAl
zl(hqt{WXr1rl>)9UnZVmL7q=xE#FtzYIcjJJF!)AoF@kF85PDZVonudHvL>QEw&M8
zg9p~-a{CAB;?lh$_}W(5q83cXF<S72zFGfYsjyIe`&Z_QVsYyb3xD6AUR%tyYRAY9
zu^N^QBv2*Tn_PW}2uk5p@M^}h4x6gP-!vLj?I~`~18r)=z==0E^<@49c$^gnvf&f#
z8g`Dx|NIuT+PCd>kVs<20K0$$qKgw_@DLd%H2n8AlO<vjEQEr~sc;8I3stR~_7h1j
zkoGZ(XDYyBaTL%R$?f=miW9^+8(k6CrfTFPrF2;h+Z=eCl6ycY%zB*T5OBG9BVU!J
zvAx;j>c#*(?F~ISu#r~LO>m^UUR*Cyp$c}wCg$#&Btq=skGM9@jCAwMGmRnXdRZu0
zi%|VJc{fThy^n>EKCK0(Roo2Ya+3EWCLTpyPfdW-tH)Hi1^q^|u7Iv2ubA1$A)&ed
zb5)vniUn0WyGqXZ$uK=VSdN0Xq-o!?P!6W=@apm&H28*@!&o5T->Tx0QG#DDI-C@r
zr{Yn&VrMf$bZ83QhCqtL;9;iKhA>Xu**328JmJ))A~*aCqW^vh_0M5JAnes3EX^Q9
zNqg*8Mb^ABY|hj~Q_~`JZ8P9%3kfEc3WD4S(<^noq!h*gz?u90`scv~FC{hF!r!8F
z;v$0UQMSd2zX{31`ZM9qJq{j18<wk2rQ27YCIbTVWmMgQM0Y>vh3N>y!g+jFQRzA=
z=-}RT<$1_8q?8p~8xoU&P$Zw|yEoK2tNz|Q<0Nb6*4sGR%iT>T%3BGtf~OBkLT?{$
z_Cs?dnBL;gXdV(>AXesDw2tk`6<|{$Dp@taDP_Kw4eGX$zOC8^iqA|_+2H&P*Xa?>
zu{h;cs!f9j0$aVvulTYG<^@9Q^5|dfNT{p5_uPewP7st>;f+iWVL6Nga<`N4)=8QN
zq|9+z+c)Z5+bwR{BW|{k(5-VO{}KPfg3!TL0K*0{x`NTSwVS7m#IE%q)$yeX?4SZ#
zN-*q$E77fOTWUjwF>4kiLb+=J1J#C!+;J;Szp!1T8Kr^Nccam5_ORKzO@uLp-3;2`
zU>!R%)u~PGx|62CV$DST0MuCl`;hnzPZppFIBznMz3S|ctdaqhq8L$@G#XrxOb~vL
z)5c_}^(N=6PPnIwZ&^+_=XG<Q2M|y>L1ikjQfEk4zBq>T*G)9b8rQ{*Y&86}X$2cF
zVPP{FISJr^LcxhUpkSH;1_s2uqHm0d*%<~lTyJr*!(1qMp#mslcuc|m)u^!Sz{XBs
z3!rD;%9`kQS_Cye>|1eyMKUQTyv7rG770u*d!*Fl9OTn`j|x0`mEc`tZxvfOXNvpN
zXp{Jk?iANUXk~n{`zLM6dYneibizgN(F{eRjjbmfA53jc-3d@s;!YOpVVIa6kD*6A
z`8uZg9+&RGc_3cJhIV>H>Wa3my$cC1R!>EAx@?F5UAJ^QQ@NNeUXP}T)jn~tf+~N-
z-J5Y<3^@2iryIM7LrzS!>GP+TS5=$5p6w=Enj={RGd|6hsg!+ePgQ{QpoIdCbv<no
z9Z4FB@BGZJ_QqB9c{#E{-x>f&nH<XVVc^gu%-mGz@?-v(5AHBnaNc<WMC2F8m}=dS
z*!s1&42+xG)DnulZm?Z85Vr&je-(D;_~?1Y%q$|2>Em3+B7rZj@Roco9@&@0JRB+z
z2gPL$N_~Ec%%$TLlbk3qL1D+36c}UM+hm9op>KUTAZTu_#c#hHfFDshRDkS$HHg(O
zHiLPM^~`?WY#ROE-OF_4l_b%2mX!KD%*6=c#R)Bt2JO0Z(L$x7*>McaQ^(Q&R!-vs
zME3f1!<d1v-7b(@ToY^?O6vTT`jt`V<cFR6o@I{~KcvbvZ>a0F=Atp;L#UJTFm(gL
zP0d3~tCU__#F<v84t(}rR?_#bh$-^BT{L;<{bmfT3f>yHPMV8W_9T(A;s-<;A)A_h
z4F|~jI2@gtcZ=)cms*go9a2Fsy6H!(m~{r>8k?Y-DTC_H8=FP5Y?8@2jj!(PLy?qq
zNyxN462q^ipM<D|4lr%KpWK!xf}h`E+5OKkS5?>&c-49M;S;IM!R%fq(l<_6yp%U#
zu!rs8z;F6z>~YobkT~GFZghFA-CD6Yj)^(PDa$-t=U=cE*ZWwZ60>HZ!UcV@NFiGH
z`Is`J_el~3i<{t@25#KU(!I`a1p)PQ3FIO+c6vpn@UWRGTdW&fnNHW3(#X|9F`Zpy
zrc<`S{zv{9I?8$F+qNa%hmQ_Ix(Eik$t5r+UE%PQuzBedf3RZ9xEa>UEXoJ@yk^!L
zG*~X15k3qrzNd9CH2fZ^mc6pHi>_<ZcPSGgE3uc|29mjSVyF@&8mZoLzq957^EB}B
zv3Lodkhup$U(7FuPTOm!mK{Y0+(|eH$+aDKf;gsR&m!!m)>8**77ZMr)IB+>Szp{X
zW?qz&1#C_+LT3H9sUjK4kHW}6poapZLo1d;NaR1($8`t-{voh*7i6J%dOFR<RzVFU
zSBX%ph)4$xy}Exv37O}y8+Uutlj!VQFpON*J7QsnZgLAom5MzguB_0@9sVB_>lIG7
zCB_B&4lm_d3oq}6IMmW-Ej<0oD?^FK-YY5g$L}nk>kQZwuj9bcc#$k8RW=Zx^shNE
z%){z!>k3fC)Y-$t<PAWi?pa^X_ZLSN2Z6inLAj429UEhW5E9)p!M=sk<{O)tj=x_8
z(hX<q9<sQE(mL9T#mLWrQ3b0s?GiNRag`9EQXa3AC->LI;NTOoIWHAIFzg7sq!!XX
zeVJz)Fy8&cjIz9sfD3zG?HT^`kQk;KE`}}*lE*Cp0De6lE6VoF{d}V{DAegM0u2b&
z8G3!Pc6`FLql<0Um2^9Ee0F3YNC}}770mYA{{x_2Adds{0h2VlN?Cvfa1t6oM?kc%
zCWLSh$=!_rU7cd;sB`0uA#5-q<qHxc_9jzQ?O11nwcTEefRVi@<dW8a9srvn2D!m~
zN%i=*A+(3-App8!w7NMt(e<IVg}7zw8e1TZhu%T$U5y+kKO<_F&s0NPVILiKv-E;g
z4oT10l(-z&Y2QQZz)Ry`lkWmv7d@V@P*VNP$;ay4t{l*ngFcDc7S-5t)@~?C0iVof
zgT83g;acbf)eBVx)B-$YI|MggdgW;$mv)?k+KQY^ocAGMuz5wPyTAM!!=U>zq(l9>
zW%aXGN!-T26&~p$C>R>gRf;k>&U@jDG!8Au16D2Zn_B*o)O`s5)IHzw{T_PwT5m}W
zUH1_Asyd(jrl`AGeXJ&G2QaHw9?D>qsxL{_yaMF7^0zmg>_#Ii=BjfBY@7_0_Yp?<
zv@<627LVj)yTR4vR>nYi_n-ck+ZC?)$pLVLW*b#s?XV#`#|habXj)&1BFM$IOXp~X
zx(tnklG!=6U4CNKN!tuOrAbP!SUrJd@4*2M8&eV~XiZn`d3!*6FP!gac~tLOy4A>a
z`}^#{euP_UBR)7azVXqoa=sFkgqrv=wyL+!c%O>eK8$V!2SlNm8@GW~zj0ZN=6-_<
zoa-o;(o-}$w^z$Mst>lhxhhhyi)#J~aV_2y0%KMwF4krUmc;?mO29rc^DYI!3D?gW
zxbOp8Gt7R$wh@@0tjIBK*`f>!xbQE@`oM>c<rO9KWL|=T-l7;!gj6x833FxJ^83fx
zAcX7?!LV<QdoU%8p31T8pz4bl`16tE{P%SfHYe0k5t!~pF4@?x-T~`!IhJ8{e~}y4
z*3RBK=r$57^&zVo=a}F$Ljz6bbV`AIIY=jkLrME`AoTY~Uxj<<C5ZjiH`2Lf5dGTY
zHN2e}ySQhWP?6au<<g^L*Pa2GX?H`L@(r1wbIiP!@3k2hg%?jQRQSJ8*HFA4F@7g#
zTGDT0<Jus<t=I){k^vzXfI;&OWTUn45OIw(7<u&y_)Hwzna_ap@B71JVg~K3YPmHP
z=r5y&1=ECF6E=z7I7rBjnvuR!!?kpyWe!R@@le-&niJA`Zwce8Aln~MXzeL)#-1Aw
z$lR>7<e@S|zqsAi<q+2rha=_ZJh+1%aaB#+qMnG9JAZOQo2d-+B_cYH+u8sGwoZ~1
zECv2RbG}TacFb_~B~6X>OxiJH1!r*unnv|RwZe`y7`J*5F@HbAT&j<4kp#s%3;>qe
zbP*q9!Hkjc*VC$9CsG3rda@*Af1YN~zrC++n^Y)zeUCv$?OLBDsSl%1GLZguQ;}f!
z&ibc(O4jSUd3O>-xN(yjFZ-m)gT@BAxfW6l5c?jYO_I8<8i!Vl>7?O`t#XN@LbhF(
zq{DX+J~8o3_*z$&54Md0=+%A~&sbpuH~nJCf0Fb6#@<BY%`y~IBog}e!u<pRk$4HT
zCHNXbeAEm4RiIc}E+bx93y1jw<U+h?i{;v<8>q>#%ZFE49>ZF(+|!sRbP|K*7v54q
zg0`JB3vvo~%nlIwwFx9M-H_MH4)1_z_R6Y&wd0K7ITw^|<dg<UvU6T*(xdcwm(Pdy
zlaGu&H)L!P5$$S+fLZ^T`&R36ag^DF{>%u?QG=7;C+pf-af$8F)isd{_JNva&wY8K
zwx=C&=O5iGU=Zqjxb{o{IGAVw7cBU|q9#Ci@Yl>=+TnGz>rGD^P>(Oqx}bPjjD9IK
zT9ZFt%Y!p9>xj!1U^E9Jv-xE!m*xl;!~t^BjZzZJQZ20Mt@0*dyPOVoae-&lYB&u^
zby5i^8J6)JnncQ1ZKQT3ycvbJ4t*wokUj1*S~$r#RG+16`h80$SQ^geeQG8mp+r|{
zjlMl~J2yO|_FgS+Z%Hc(|F7oLZX+0J-P)2kdGzzHA<$<Hlut|>-{6&2^r)!VNv9T=
zUI4gYTZa@V8HjS|_fx<YdXmf689^rrY6VFNFrNDhJJ#?=*Tui@mLz`Z66Sb;k%Mh%
z<d#d6yVB$q-I@A{eMu;KR?9tm@{3cPPi4Ssviq6-&DeIJ{qt8ct$XJG{9ZfpA8hTD
zZSO@e@yUsi$x&;4hV8E4^i{SZ8PC1yclc*g>Mfy@By;yVbXJguK1>@$@5edQ$Yd!g
zupY<zXKv&OA6C3R7FAqho;z;26klV6hTb2Lgk0_wk&7Vd`&mopqENKJj_>WX)K2g9
z4fFR+?+KGt=QyREMmxmc5RsR~>^xL7qohJY5bhuN)qP6XbbJWjEV`CKO*gYG++WQG
zWE~$96IVI$UPHh79fx70nyMB6%Hu_sGu;wI8=-A<F-9t{=Yn|MvT{27McSR$Bcdbu
zh;*5*S04MGIED4oVKYGb`eCtHf;qch$y&oYM1Qu=S`TV7w*&iObM|b4M?Vz28g+|6
zg@<mFkXdT}a}rdR<M!P-s7FpeXdPn?kzN<|SB87uFmFfpFrSrSJt*seiww|y?t8J2
zMFbva$ZQu1RzJcKE)amrw7TqHf0vC^*^PNUJvPE!{Kg6%arGA?kDHZBeysc29vxfT
zOMb1IfhNaHck#+BOzP{Gq<U)Lt=6YJS&X4p4s{+#o%Bj9jmq}3aoNShwuu>jeZ)As
zjyXqX&;2Qf+Xyo}k^ac>I;3Ho@x~@63v)SWP~`>ZsA6%dj7WQcAalUML_g|uYPyZF
z0wC(*p}^6bhNM~4IqTfwG@X^|wFd&KH~hGWG~&v~CeI|}lSSCtSs2-e68#GKu;ZoO
zf!YMfKjs^)6ZlBRqK=!4G4(Dm71^)4NL0$vWbtn+d12gqk8e)WLeV>{=qmVMIh6=~
zF`<IN^KaonJ*28yXll!0WGVv_-TFo1D)f}rpMN8ozA0LiN<j<rQ}hrElUl10AhPN*
zUz378M>ahgCU!Dzd|ma?RubWfH9xr!JQJ&M@SJZ*?%raKRCfQ-nd9uc$;+4*atUVy
z*v#BsZ?o-_z$z|6afk_3_CVUlaT^U)AQjnV$_!Z}t4-_jyjZ!t%Ujj2LND6k1jj^(
zsU-8eKb8Ak5cl;yNF42~>O~vv7@lUWF6Ga{fe5qZB?^4;z(Zp8Z;O*V(lsz}Q*OrU
zn18%2Lr-_mxvMyJlc0$g4q+(;VXw0V^NWRI4-K6F`R*vSz21k^EVdHEY<l{Rp;-sA
zqSRs$9_(aVM%@o|L7>@xe2r=!x`6Zg+R(`MB@s0Vn3Ew#?vD)5XH}xpHQU#{ucm?Q
z&Ri8p(@9P=lH}7r)F;B^sk)Fn<0bFs025MhH8Y0@p}ABw_mBZ;HC+IbfBm>THnQuw
zNBZm&p#qmXa<rbu22bVcw(Rl?f#;*gS^?=Iq+-(f!ot<?1{bgtSan<KqBV4Y4ho7O
zMa)1BBO_pXU2Fami%A>s#ns^=b|L|T5T;-J68n-zJMl)#IwM`Hya`!XRyxCN9}79>
z4S_)4WrexELw(YQ5A@neF3AP+Gj3XbXhvDtY^w6|b30%pnr=DrpnHdc485LBvjNV2
z&@D@G%Z`7=ZO~B;C>qri62-5MQODfLp3`|emF0HCJYI*zX8q2Vfd1ynvxiGhXeq$&
zCDU@eW1fwt4jZG`@=Reb@x~H>%;=nIfo^)HdGf(#){*D+_1{64GmhBiZ-RC3$~qcS
zkFI-mPiq-FCSM2H(jST)Dcr#k%;GI({kAi|W5Nqquv@vG3pXd{SXN6607kb&_ixu$
zD)3$H^h3~{Ca&#KB9<t>FqtcvaeZS@;dl=qGg?=5v|sacZR+brWhW@+P_tA0oN63r
zp9I<q76ia8&)e72lvMCE(Cc$_hTI6Pr*U932<(XTLq=C_Arcukm&l|EJ!bsw`(O^@
zPLW-$_n2Tw4LXsfm*;aOSQP9=;#GU(&ZPgbW{!rp+j!&DrfRaShfp@Tj{j_98{5dW
zBrPkXDz^|<g&OMApR9X+L5?KK9Pqb>%(Jv9&ja`+hI-dD4O?I?5Q}&L+=xxkvbQTb
z{Vk^+LUGG~pA%@dDa9R~Um`<LCPXiIm=2;wMU4pDhHLr`2qk^WMXm=|p9N3-^cLGg
zrQ|AO%CklB^!7*Ol2BFt-E(qD-4tx5wyRXAOekOwJ3)6L2#ywrs1QQtu;7S~iuO<%
z*3-TVOHOIK?U7-h$Kc$EvDcdgk97~Ba;)>KJ!r;BIk>cYgF8w=q-lj<dg7|YesY)j
zP-YF26T)!f2Di>~*sJQ&2-EpWpz{dmMrWj_xS^tY8tY~Lpb~afMO@fq0LX9}YOBK3
z<wZ@pb*YrAl^|LAXa5u#erDLbD*?r`>@V<h6S|^{eRE~HeDRrPpt>oO<(zNlT(J})
zpBLr2gPZxrvRlWGGpy{7?(z>W;u(3mBt!wc#CgTVikIxOK7Do9Ya#Q#f{96GoS=Zx
z1>fW6S84Oqlbn}C2k2)3InsmSseAZ(UBTZ0MZ7Zt(CJHY-QW<7M2UPCi&*qyR~f)3
z<+~s13CuULlL6>h={y<$$O;7hY#iIUi3yQ3?ARrbG+<V3j(|loz~nm05QH8~Y8O4|
zwSbC^FJZX~C>yty9G|ui^L^!BYO*Ly2$B5$PA1fT^-7hoyupE<UH3E%BL{6t_wx?+
zh?wHfFIA7Fy<;rz4(|shB}W<Vq%UQ+9*k{7<ZwI7u7gH;h7>zA^~o?#)6??++-Zf~
zt2-<t&eM_o7ibR#gA^G+*p8ic{x|me-x1t=xgM;QL{%fHUV(=io2jtx`!{AS0(CTS
zMrH{;Wj;P?pu*9+zsqD#fy1G}B7Y2tQ}T>|E0Sz6l9KhvxfI25lM<Af6Z5=@3#ZjR
z)^^@~n6`UfmlTedj(%`HlZ-_+Nn~|MF`)3TS~_72;(?m|!@#2yKMD!#hNZ`Aqo3;c
zIU=3=%nshOE8W4?ifZRd%o36pa@UDK9ff5C3SNy3IvC17JX4UF4=&AqN(<cW;pRHs
z`YVB15&qg^559QBE2Gr>t#-CfTiR>{0Ag-y^X<dDNL4rm`@blbk_$YRDcqHny17{d
zrz^F8R~=U|n|w=5D_F#@JL+_qsng#;Muwxa;e~lmdotj>W$<g1`6WN{zgufu6PTJ-
zly!ORaLghF7ty1?6~+0y=U!0>o7}eIQQdrCw2ekQ$kEEz9`4oYmF46VXpmWZX}zqd
zi7Yr{_rtiy;1Jaj7c6oY``w17KHWbvRyc4PEa`u3&bQx|M`Lzy>;Br%pP*R@KP1&W
ziVcNcf1wiQy6W<)`VHEWpm{*gjcDxoBJKRca8|Zkd{S+N+PI%f`SiY7XBKwJVuvXv
z)P!R3v%5@h6QD}E0;}+TZYMSh`iiFzVxsjIy+IlX<aH}F1aGlI@5O;v1-mdqm-vWU
z9$9Pj)n$A1t|MK&o>*F}25x4~H?KY~nD%EWF1tajm<H-0Dd&FEr6=kFiDr?y4F!nn
zO#02RNSy0nw3VLCY1=XFsT3~>k(*_qG{iAso`u+Ds+=!_#@)V|1k}$muNpUR!*((t
zd<p^b1C5FYt>F%}*8foq*DM69<_Eyf{-MJ*lG~RvCvN%6jt(90KNmBzEQ;b_Hw=QQ
zRZC>znJz(73YWUSCstkad>Vg*v)9M4E(9QQgo!hw^@#$t|690T4)NRsp%5p8T?JRq
zQrKFwmAm%e-qb_%{CRFY_vc@m=a5;l2-J@LcQRT66!QYqh~}$gFII=M48bk*#Eri-
z)bPFm=$cmrjND&|O@#iMeVwh-sdo?|t7h9=gbH^YX#bUI0_b6QZYv=o!}P};BF39H
z8d*kGPuUsyaV<>;>*4{T{jlQueM{?H-ZALeBl}^4Ur@H{$%UrWQ)!fmh>1t`x2rd%
zto4gaT0pEw;n8A+bz_fy)ZI1@*r39&TDy?{%EMS*H8!}uVPeEd*ulHSp3nA~V|-(S
zAES?@4q>{{8C1*)Mm(QfDpX^|#I<lg2-@1OI{7*&u)BtHgou-4D)LE)r7AJ}xMAGC
z#G2W}Yx61`pz85LhtL5%M;eS-kmuKF`Q#1N;PUkK&F}7++MbUO)dN@!t-llSx``j4
zHij5<V)KC#BqrSYPTWQ&py&!uq2K3_0%>rAELuC`EHF3#4*1m#Q2-8-y3|QU^8<2)
zA99vuV1gYnJ28o0Nc(=_zz_OkO-G1Dw-!X@%DRhosoUIPx(+HhyFx@yc)5EkYW6Iw
z)NF1>=w44$1!?x89QO;`JdJ}D{GQXg<tUTrM*_50Q<+7v7M#OVwv|Z8#rdNn!8swR
zC=C8ikF!LHRy6-3PF<kocKS*5Rj;Y8!D9AV9mvWzFIdG#1k~n{dtemwtIb#E?Yf%>
zA5^&vECNgLTJ`z{de8xjHT!c@4-KsqaTPeHHo>LQ$AgvP0sZ)i*Y^TGcokk-Oi!_e
z|Nr}hiOD=xYTdLDB77x4{KjUc_r&#j8)Sz$HOvGTQ2cVuZ)1m@t;#k`Nf{9cNYi6$
zEMw>u<7enTSy2udG7{W{n%Sw5Ao6u*0}Ji)5tWS=Z^egw*@(L`F(*XzZZF_6)`ED|
z{HNnzf!j>7<z|Y<$)tVgD(aLgD_0Q?QmjeUb-(c4CgNR!mq%jxqHaeZm?{F34%Xj%
zog;D(nv6c_e(}aEq~V%`Uy7-hDL|}NvMP8>CA$u}-BktRTflMLGkgc}y1PfPKfMU~
z&Rz9%`T?2AdMgsYN}gF+uvtMbLn{(cvC}hvrk#i;ZnEnxv9?j8HdhCmPpOTO+4=Is
z^B04DdXJ$b_E9Fv_*w8G+TbZSlz|kKRkx@($b|8H2{G_2oFGSNtt&@}($~N9Km>z}
zGn9*<8lDt9{+GV%0xz8-*k$>f;OZp)ASxwi0mt`m;X@q@EP|p_9S`vR85=%U?Z8J7
z_)9vE)shQWzYmJ5eMUm)zkcK*V2egXLZO_CyM7-H@f`!L(RAo8J#Ds`+Qa%g;9J39
zs-cC_jY8X5`km)FUfJ};;IY1l!eh%-;m3g^og`N!HVeial=!2U7)-c_+VI+SLer|P
z3rY0g`~8A{M^*)0?Pj`30Y-Ofx!4Jh#HKc*w)y@q%#RHuU-4^oPRELw&nxPl8UuW*
zZVGu25+b$Y9{b0?MVpc&cDN|DlgW-f&g)a9JtLT5czgtZ))jt&D<0=aFP!osu!eXp
zz{mOxdbnn!Sj8wdec(W+Qiy$()6Np$Db?BiUX(g+J2j<zHyvbYa*+uiU^Z4X3_K28
zQ(je`Z|+Zy@vuX*%)wr&uiS-|KjmS2N3&VicPLaMhNMHQz~i5L>6=g~TVsL1pLa$e
zEdf$T(#u0wo{DB!pT=)aV$PyJkg3l+?*k|uel-}p2*V<t!dOthFp(8hk!~yY1r5<u
zV!i(S^<^XOIH-BO+~%5cP|!u^ob8UG7P7CszA3v>!GryV6xgZO>w9jv8Q9s)kj+db
zKC@4wsmlYb1D?x_q;4(TKeXNIQfP#mJ2K*9v@80|n(5|<u2+)A9VcPeRMe5UIm$Yb
zfR}*AT8pE;P~UhoQ!*gzpuY*(?A*;H;)^uldmBsK>uI<ijojSYq-oDi&O=afD_L>-
z3|lDjj#VI~u$C?()E8R|rW3Ys4cwYzE^%>RDP?|73LP?^hikJNNc36_0+eQV`jib?
zcTbJ`4~}M>7#l(;=h&^$PcZXUHiYR+&=bM)2yp~lFNVmG6`$M=KjPPm)-^E(g7sR0
z<Qh8*G5^b{L2b<UzPBhtrMhp~B!5M)i<)wG?sBzjmv@1Ep2u1r&e<Ynq-V&lvd1;m
z7nz!5$$9%<-}G%f((z2r1Bcc))eHi}e%h>-?J*0mMdU7{IlKJ>{jIp#!m7uz36{1u
zQ=@6^YlES)mqQ>a&APB4&h*Ks@bbyUEScdKHI{@`OUT3j($DE!ut<h92H85{%G9a7
zqnoX^P_0ZH!VIkW^OuZbFWi=(t<snIXf0DGfZN{eSxd21oJ(piaTNql#C8cUU|(E~
zj}$WEha76;H&j53Yc#)Ir^j*6x{|QW_7j@J0Sf{;ONye*&KK2ADrYqN_4?bx!ahN6
z<{9K#$R70Onj@*N7d#1ZW=P|heo)p7w5GCFrW;7Z18r(SA}*bbQ_t>CWEQe;={6H!
z!nRW??*m#zQee_YxV<ia9#@4#O9GTC=8Rw^G#2uMrTJszq$sGHmgxQRV=+J>`kc34
zELCkJb%8s?STb8Me_wkjNdBmZJKiWfai{tNJoHc0v7=<zt(HTF%-7!n=v0-yYC+Ig
zInY5}YlDWI8)0*ZtW~OJ!+CAQ*Y}cY%MvjwhUl80>2I5r(p;0GdtORqT<NNLw#!-p
z1a-UZ%;Tf#V*)d)Og{Ci-=l+}VKF*)`oy`+%SwwKDLR_5t%DnVj-}4=#>90c2TATo
z#_{<GOM3b(>Jie-zVmiOib4!g3Nv=82eRe~-Lwe^`Xi0L)03wQu#G857D&&9=f+2~
zTtn>F$v0BLdhRM*Vxze6rM|)vdR;&Q;W<_i)JPWQUGb!g-vCB5AGAqnlV262-kLDZ
z(r8<EzU%Uj{Ctm7=kNx}OfOQc(dSzRktq;5%r`%+Iq5Z9XL(fN)wS^@ua21bFSq&t
z^Z`~ew%(1<9}KNBLx($bU&eHm;;_cM8Lp~MQQbYzwPV!$zb%)Z|FrRGa8n+oxrnQP
zV%<{0A~!^{Kv}hgUa8D|F#5PkDCLCLWcv$$+oRNFB;T}5Ps)a+zU}#QS*x0;CT@}?
zuNs(Bvddg#4de$W?OUVphC6wLa$Wh@0Voj#z;nMR$9&5|r^^L9_b?##zTTj}Pft!3
zA27qIwAFKfVvg346mZe@kB8Fa(BtY>ru16%HOErB!v3iQwW?$9MN_78LP-weR9sev
zc6o#Wuu}V^7?J%ET7GM3UKBGDd4X=UpVO<Iqo%}<{cV*$VMzU#ebFtYSDl(hgk~3B
zdK$(_Jn9Sm#QGktHosA+O_jRVVP0@4*|T%^ES5prS-nxFwM6B!MN$tPdrrIo0z|-u
z*(G5D{`!lcv7UCQHc}gHBq7sz()4dlP%`RMjfC9b7U2V2K-p#DpkMRK2nK%8c`(HU
z40=LF&moAhp?QNOCaK9D-uO;CHQPumGg&6ZFs9+b;gsmS-YYT$Emw(LWeP09V&sdO
zy8H!ddS*?tQc0lB%;y^z5p<|xi@U0|gAgL5HYHcNO+~K|8-oU=Lq}1c8J^Swi2Y=$
z6M$pV&8Fgp=TRU?54g27QxpLMcPr?w*dP(~==2}MU;*&z3ujJVqL+_{yZ-hcO4m)$
zHO@l9hut(iiaN70*e*iq1JTM^8I0<pdCkt|Dq&ZHD=TPK{Kps=tPlFay<qu<)f2yn
z_y9d^>&oe_AzngEuFmJf;vr!7e``X^$4z{Z9o|B^7{lLb?>NkgPsSK23hUYM$)5>h
zd0`sPER!9fQLr9ipx{lUb{ux+M$Sqf-{1^Z2?^ifS&=mi2kZbvw)eh9-ZwzTwsyzt
zZJ1TT6?n^Zket#(@UH7Px^5lNYo1&b;|9uHzJnIl@zn65eulp(zU?q(c4)J(SEyN7
zt#s1UriF?DE`yX24L$s8!7Lc(w!J)R=6o^!6L#gRtFlW($LpoC><>P-cx(>gpe?k2
zV^?kt0(dkZQs~WnV+j4RihC2NUOacKtPiZ#bo*f-aAg!UbaCtv^i?ww@9GG$29gru
z<$FDy2<V>4uthmzvEd!#_wOsH3Wy7fC*YL5(-cUsWAmN}`yvrMXMH^C^m&tm3i5Up
zhM5){ytA7AoAQFRh5M@zpWGHvyNb<;eq}NdzwHvx2sI+{))AuP1|(NUb4N$Bhn2!3
z4w1jNQx*DmsmteTvLcsu0UhyFEGPklzCsx6#)$Vey4o1oOu`0~hQY7D#CRuA?szp=
zHj?<^z|9GOd8{UPZ}a+_I*<QFB4@qr2PxUFmeG3>0T(I$EcY@gZ@rw}HhDFv8fh!K
z9$=x9&8xtJD}NxBaaWtR-}oc}gSg0-Z@k9FJE&xYjdXP@9ak9m!y}5pefWdjW2|}k
zpmL)?trrv%RHTgUTVOpLVlKGM-A)CI(nnu|Ikzy>!!Qpd-%t=QlZ(ASW^aS(F3RDd
zPD1hwL@ARrjbiKn{w^Do1`|A=O-zQ{xSnOg4^qqPeDW{xd^1z$nS0eG3n!^q&)WG8
zzEfjQCZW6Djih(s7c#)(N8;~{sk^CP?;5!K#MJwtf~P$*(5S7sEWFG?5Y+sFPsGm*
zJ(&Oc<&}KGj3>=;ZxMr{lohhNM@Z8uk#5N_=&TUN-nh9s&G!-iknnlC`_3F(9w@3*
zG2M$%Kg~71v!&-m2+=``;t%I`bU-YyD^jPncLS3xn7y#fOkN=0FaOZP#{`-}A8q*x
zk^*ME0s4z#O_T@J0)Z8~4c{|co;X~e;rlC-PJ5loiiG8Xr(ngKg(Y2zzkFo8z|1iy
zakqzQ*iT>fhbzqmeFRcU<H~C&PH3bi^|cWees@3NcT#ifaQ{`5-dHy6xIJLmiE(3}
zg+o$z!j^*rgzv?M!k5f%=Vve{_k)Y%iZ1!DsxdSc_+VlSJw+@E(w5q;emqzu9lKiP
zAy}%eD}qU0?n5k8U&xS9Yy{D+PKjR5y?6T|IhewjPXR@4%}m9k{d<CI@tIt^Q?bht
zX+~yX?6Q;I2|EkKCo5;37H6$fKUM3j7jT+dHr+`$DySNkoI+!T5KzfPP1F<3Xh9KK
zUVW^p!o`%Q^)?)YWoGk7avRe(`O+dq2zEGn=+BpAk6?%U1$_(PWrfnJZ6<3^Ak-Gs
zOT{!WQ&iY)mUav{d(VSWh80_=+PXVWtK9@~!*GCrbp(?yI~5=Atk|vPZ9_^ESYj6L
z)mmg5`tE}W0O{-yd8rg%_|S+JqBj-qUiBmPdn)ZMS>B>!`a-M=NJ63AqqiU`Qf1cy
zCI?l_9l?$al$7|KvHZyC=+eKikj3@T(GUkU**;}wkDAWAqt1~f=$Q~{CBc;+KgiKo
za8qE)+jq2^*cp(UJrmlGD89vI88)*fqKe1Fa*xtN*|zph*Z%KwR{cegYOym^#x58*
zn~2PCW>M`Qt1_qSsy6Ap`JM)Ykf>w>iF>)u@fqG5{*alql3}xeuHrR*_Yt-}J*#U5
zAt8SB;al2`Xq%9*F16OwRs0aXpKf=xP@!lZVaYoC4oITWL`q{lKF<Cm4<0oA>kKni
z-ZG9~Cu*0Bm>hNA(^MU7Hj%-nQ<VxGA%<xzWHS&@m$`k(vngl#ty9!k1J6cWRJSy5
zk?Cl~GDhKhnj#_e5XAS(ox0zmJxBSn@A>PPeKu+kw=`#Ua%=;ZFy~b3osJYtsEyn1
zs4_!|ks;V9gh#P0UBS76beM=Xskhe209(rzrz}I}s}4ub|1bQnx(@9$4XVA3!g))&
zPB2N?VRyG3fpe6b%klO}9{T+J;o*{uDSpmB5AM&#mb*j?gpy!1nj^ehKzi63O6s|D
z_S5lTfj;3Cu~dC)y@WM6_Qy;Eyo1V<k%&q82zJ5OSi7!r4h+Jrd+~{~f3&m3En^rg
zD9rMd=T0ovStFj&8nP}IL$)=`kk7^*C$Ne+Uz2A{P4-Z<r)QKm88zi>b=7vq$d3RQ
zDppS(%U_*2hO|+XXW$Me>CfpkokV13*LG5g^T$%8P^K$_*rQPS<jTykfVVq8MF$aW
z(7+C1z7e<wL=5pnvJeJO%Hfw^(+6AR=<IFS0Hg`_^X%*1#&W8PntX`hpSEfll<YcA
z3@lTbI|oNmWewE9BC>Z-0xL0}i@q%cREIPKnC0GJ-cD;#5bX7D*KHINiEN~IZ(PS?
zu-z`aZKa6n{C0bF!EZ{!HUtxalnth&01z+#cxgK+AFz<~#MLg>I<!Z~b+shUsz>)_
z#=ZvmxG1+VWtzcFy?egp*6id8$smFt@}u9*VRY$ljJ7YOGm)8O5w6$ASV`h$VhLo+
zU!=qV`rGA+hNhZPgXW0t$s?c`mW8fsC_`PIfhr49(vyKjbGCB{lhmW3RnWpW#0;|F
z9ia2jGFVnm<ot4G1*SlI{_t7<^@rz)35Yf{ao=?wnkP~>GqflM;yw;GZ0C-+0!hRN
zY~%-)*)ZN=XO)Nv+85Y%F|VoLmG2~Vp@)IYkKRp?XrHxK`qa?67kpZtycp0LpZ=p)
z{F4ygb0xeMayR`K1p6^hW>UFDr~=JRD(wLL2!vgH*)z7LySlkV9-r0QWHzBvyQ1Az
zN9t<SS?eGQC*9WRpiDMl#qA-MxWK-%yWJqP2`_FN?ml;&PFVeTyw@#e&LS9LI`O}N
z0JI;&GS2ASqr%JZMKaZ4#EiFn@DEyp7-vNIm;<sC6$dN+-K--$?vT&fqqVmBci8)M
zE>~X;-{(POM5dAZV<zMUNM)K|S$LlzWXhV+@!Kh{*-8|97>kz+Ek5*oCJC+1QSRry
zn5@<|Zmn)56MNm3(-01AWFUvbd~>MMT#h+^?^alL#&~ziiNd-L0!0@?(qWu-UlN{W
z=UxyRtq+zMi`A>I%C~OjP7z?%MbQ0!c^pGa5hX}~<Uc<4b_&6#m|Nk1qGS7*$^20P
zmviF@B$Gzd#oH0+6|yg-*Crcb&YEk_rfl_j==^azzdAae{&O5M#-BlvfQ?``_fPrF
zdD3QR)dkASOrngAEa}~wsKJMb;Lb4lm@%h}-3*QAJ>kTmeWVa~_)=_#;j#F5ETQa%
zl=l!%z!;ZWV`y$!FdO@vZO;}8r}Blh#5MY*$E;kRPDL%6-j=oL1_2b=*C&ZCZHll1
z&5;rfJYWM;&6{anv2ui*3_NR2kh#G^@nNC<5SRslmo=DoBR{5LwV+ybU732BT*67U
z`vz*JiqfBMOb9>~YQE^lUW&6z5e{0Y6^DB@s{IBwHbWqV-%3-rFH&V2crn&80b#3#
z(+)RQ7VEtVxO@!OK4OyAvk*1G>x&+qg7A1=ps6o@w4r&|r(mhqi3@!XKmLtp41D@*
z)|Ecd4b!6Tp)R@xT*3tGv<-mAkm9MXU(T3-*8XeV{IS6e5J>?W`7Uca{dJ_TL*MVi
z%je}6-M$yE4m_70Ycr$N{XBT0G;g0FO=?9b*yCyhgxK%;$zTlPd5lNV;<rKu;)hw2
zKj7c``sS$zaqwF=ab?+NH|G{DhDU9s!W~ug8)lFVS-<mc4gx*#^^OyF!SZlg`mS2B
zi3ZiUO_Ab<wB(#V^dOrnUZI~9&yUx?PGgjvG{NS)+jE?#Y5Qeq)mVs^zzF%Wv+^ZI
zN6)-r$lO!L*R)ELFD$=vnjaqXhdj@>KfcN@;p;1Vq(lje9}lBr7}6^g)S~mt6xKWY
zQynnQ&XFVgqnMg>ujMOFkJenF=s<~gQc-?H7m)>a&ELA1b?m?Lfske%A>>S9MZ`xv
zfhve&7}4+Ps1E0@{>#w?uCeo5v7@T%#elydCrIBS`wSDENeeb)7WoqOBY&j87D&Z2
z2lQvZ;KcLA{=3e;UxdLw2q{-sMgLamucyF;^*pF`TH0otaw3(>vqOfGnb)}XlRYV#
zL3z03H)KP4C-vb*4s-5PrxseRCf*^BUkd<1t+==Ga<9pu9IY&Nx0wtcaDI%Lj^C7<
zOUjF%(^6c69Xs>Q+;O;}=knKXniVdUiYHosvbS!y1^JAuOYJl>^^F_^LVv&Y8uM2m
zz3G>43UA#ZyQ~1LrXnqrT5t>#5X4PkJm@GX$LY$mw<iSo4nP?qRx+IzHVi{euXN3`
ziC{!oZ}7_y92`NDV|csYigg0k8sxxw+s|rh;r_-`3^efQgiiOnZ#MNyV$gZmtHodC
z4B(dNw?k(9!Fn8t@?}1+Cz42+#Y|VkIK|Inn5yL1;k>cbMe5AFO^LmnxN#U64i&ty
zYyZitMM+iCau}_@AY$_t5NmV%4U#4K6OdEZe(VZs@dK%2!bQGx@fEZ60+P(XE&|pG
zP(NkH5F9-P6g_F;?@cE5q~<B*87&CJMlFxWxICnqYu0RarT+>pN8s~-kN5unZU)ON
zZY~MVv=uDnS=((brx3OEeGF9j!_C<1`sXNr?;<ODAToLLZ<geTDodWwUDU#TFOsi4
zt}R$3|4lQ8ggZ5f&8AzAOKG%+=l|%M^;b+t<(fI`bf)vliT{}&2bG0W#@g3-L!9TI
zXBGBzNqCpmW-R?(4?$HS{yXLJSRVwUL_dUvB?pv;;c{wX+404%p^!xboj)?@#uMEF
zS)s+S2;HU5h`OSQ?J7890z%CIK|sF0KzWPz94fa}-i_)!DeFWyuL~B!&|dDa5#X(w
z2$JKLI9;{A5rIx99hL8^PX$wTwepSwcg1~3!Baf)@pbTtlmfqXmiToZ?WKeg!mSnx
zrqS{!b7k&U1Kixd__eD-qc_G#+xy$0nem)Y>lTGe;acWnGI_r67nxRXyY=n%EnkCZ
z&A!6eR?Nmj#pJN`1`-o4n_Lw-h_%Jm(XeLAn0<8E!{>n|VRDNx0Bv{Zu=P_o;$Npg
zw9L)*jInCm?&ba0eY;eRtK^0yHrTQVYi}`?hA6Q}TbUOPGeb6$*SF&>mSA;gOc5S@
zW(XAt&zM&xe;0Vb6PNK@xy{wB=&j|dby3W-0^>t=>z?a5ou5t$hiYxQa&|q@9=H%@
zmma?6-?XLwGQJX_JrZaaD>Lv)V^7`zyFV}kFVD>VE|GsOpTFUt3g7+z-k18n&pS)5
zUhzjlZ)56>$7YO(+oH>dvI+@`-Kw6j3EhwsWsfK}UwZn}$>Tu^DFkB2X)6#Anxhcb
z8?#TmJ4AJA9OtFl2X&RXRRPAgzI}H{E`>)yCfS$6-NvytqE3}XCGFNT2v%lb(h)ZL
z58jNnL+^0{s&D`FdKZ5tJeWwoY?J67D_d`_{-Dm=*0Zl?22SSK+Vds*RZ+&D55odx
z5d<u&B_9}StS2yDw%%=R_vnuS<ubdLvApLG@h4tXyEg|QN}a(9_WiB?4JnJTxUK?T
zA%^rj#X>WLS78KvR$ZD7s>fV{I8@RIvXmfE2s#7)+!igLc$YVIC(~O*KaHgYJG8iz
zSkGaW8?<Oz;V!|R(_xgZ5ss2c^uTQ@H!+RE4~Xe8Ix1p<bd9VimMDd^nLUDVH<*Q!
zC~#`dQ(QIOLL6mmh~P`{;9A+plzBOeJ)nSxL2cXN1#z(p5w7CcH|x2Mp^14<(<jkp
zKP0!Pe3T-dXVwr(R*)KO_C?_T?8Lv$8p3(I0~!f?1oK?enfD6F{!#$F{%5Hg5_3^3
z0BWJ8oRK~Zh~3zx<wDo~rf}7=<gLRk76Qe5Df=u?rDz%eJco&M2&uDA8pj`gC95@S
z0oyyhPj7stlJy$IucM%klj@wDz_a-Gj00;&B-h@~HvMf!JCo>5PLUff_fB~}rV)31
z(SRCP`(4|WW}vBFqGb7M6`7|6!0}cxRBwvE!;ByJ69S?8`6vI3lICHPq%s$b5Q3gT
zs}%Fm*!=(1(YKIIKqUztOZ2!&zbCaRB@XnTbN+Oks?=FOXUvYV97|{SUBr&Yks3u9
z5e8z?xU$D=bjm1Lj`@bo+ZB6-2U$_GB}F_ydKq@Oh}a3;bZ?(ldj$;tMDJ{sP5uc;
zsk;^>;pp|P?~SWW6H`|Ihe$@vtFR5^>A~vs=AUM?FZVaB#8#8+lnGu0lbC0?g6R=%
zr48k?VxmDv(Q*mCd%6D+4)!{#Efj;(Kh@OZ(H^(s*q_r`ZXj-VC5)tNQ_C7UO%vFk
zSb?kUcVlDY#{c<L!qP_^Lv$HO&=(bQsWEg!+ZO5%a$w;Un$i?(#>b?;B^qe7vldLz
zo?;9Kx+jhdQnU(s2&V-?j)J^s6qQ)D2VzfCb?kh{wL6GuCpGe+d!a;;%k-5()QS2r
z+QcHX6j<>}SfbiRzgh>r-&3(v-*@AJm6Wfs!FzJW)xYk++|PD)LxArkh(WIY{#OZs
zYpiEhzLj1{NgSRGI>+Th=Sn*>npPQC+722Hf%U)<)O=%o40hutSn{d|`uZ<htzvM=
z=5i=njgfnTKMP?!+RT9riDD_G`Baw9B<4@$008Fs&=#es(vP+w2Wn;s$Vw_k3^IVX
zJMkwJJn=f(e35#n;mpZN2mW=tg0h>ackv$UMkeIJ{%AgZ_;|Jb!P6lm?VC`YL_pB7
z>F=4Gb)4_0<`>ZaeYVu&0Fui49J(67k!!mhp%bp}6cJWkG@~TQ;(bXp?oCoX1HwOr
z#p&||dq@$~@I^~PjGJElN&r)f<A$rmI&7P2+#!h=(PyVxU%!QVs=3{_CzL$N2U%A;
zB(c8g#_5keoe2PiKREh<_p9#qG*DVZyr+6$-560_RG{EV?8FSp`h=!*1CZG($MB%k
zto%Wc<#&=-3gf7?5pDifI9;gxsxQU_cGBJq@kP@|Dj=b-f6u#>QhL~}VgfF}W3Z?&
z^x?4AmYG2gXY}j<eY-2kVY~@9BuD9G1p>LuXpBTZh><ncpH9*={dA2|ggNuseA_-T
zQuDr%`oss|>tSL%5_nabYOIN~<cGX>Sdq%=sto<NEvz^3R9}?WU0gxAcnm_Yu>+GA
zn13!s&|GO0P|15kcw_sR^`?e6GK~yDMmutE{rj3t5wRnLOKPFoNfSU6rZPPw&o^5+
zVdZs32|U4-b)+B=s@8)d8D&!bIsy0esOJ;}2H7QyR^a>r#2*p7fm@RxfiF_1Gg`_L
zlhcdTlB|hi6H6LPaMCnL!Sr&>jh;<hjWaWR@x3<y?yykrxhva?r5Zfk5#q{Vg-yE@
z!kB9t^9xjmur45B2WTAb0+$vt8dhLAboev1XB^0*mdGtM#h+3<urbMM+EnI(VV896
zMWx{5f<dqMI+(0zIEzkNnKv=jpO8ii7vSRvS2;a{XLU`n9cOIz*s2F>v3J3^r1C<<
z0SbS;#!snF9ZniH4gz2-H47`!1Dbrv@Rad%Mi!2>@|&<=GMLR6)2t@{{j;nmTahuL
z&Z`}#6zKa4Gw(qc$s>u>h5v00l|q3kk?|Cak4$nsx0d1C>?9pky<t<<utAvs;iNqP
zRTf|c;ZgRYVa%NrYL3!cntk_m<)p>t9<w-N-m~M%ZS{kxDs};`j^mMr+beTltHdQi
zP&$u0>K@2=e1&tIuadiRVJ=@m7rk|-Tg6=22jbP(taMkVr>>BTQJQlCu64Dg^f6xt
zl-{C%Mf5XF_)1ufAKLLXDjQU5A*NEUdq%RPwuNz@Sb&^f1Zo`yR~t^ju;LNJpL5bk
z;rXpaWvHVga4qWgW!X~uYx9J0{#~U&`^%RFwTUdDvE&2TH2q@rzyJ@^8##(w!aJ?*
z`iMA#JEyCvy}BJUMFX0rrVB~ZYD{d|ZJ~}baK(~1mi^X%JAHcpsAjKbWi4gkJ@W}5
z-9$BqC?ilcg3dTI`+uiI(~&COBQvs_Xkv6u9Z~Q7k0rgo@7TNzoa}%1#VUtz6YHKU
zgPq@uFV*Duqg>)})8@U-c3CN4sKDeS#sZML!55Qic)eovX7BFa>ZFE2Li+9a(V0D9
z&;w#t^rgE;!1KE`M#c{7Xsuehk9Fm#a#Jlz4pjm+!kC#H*R7LJXOcIKq8Dox`Q{DC
zF{%Q+7>uQRqC1W%g>bMxA1?aS$7&zFPc7TW3Ad`^O{QC;^U8>P-VRvdWFc8l2PdA&
zVGLCu^Is$`FX~%};bpeUJ8vp)ZiBfyd0?<lp@mG?*Sapo_NX|MyGh$SU|k`<(F{z$
zYvEHeR+ZkYt$~ywI28@)L8;g=O3-*v^;?B?El<czPBNxcOJCW``5b|0s?j4jXxh;>
z_t?^<W!X=k;xa<}Xr|b+05P@}C;YDA{#-Fn>M42#ptnzgMaRmLftmYHVYjmbbsjhl
zzXpJ^onQ|r4qvc+z=35Mutfe{iwL^9f{#bfN;Vo>biL1`@ir&`A&Umku&M%D`fN+V
z(5tJPdoxEl%{In#vRSDXiXKnNdoR--Z-Cc1CQaeHRaDwGpS3W5P~ab^K>oP@f=9*6
zs4y1|N}2=lSl6T$-a#6or)8<}u6<kkaHnponoCI%IE04^ENTa<0Rs-orpTsC|D!1e
z+ruI{ts+oJT@w0f^TI`1Xe;oK(+i1m!30{q@WGApEh(|)t^1ev6bbOJu8k!6Dz2VY
z%x0$umYYgtYxJ01N0~tK&XF2){*y{Cv+_0fNU;x@QRUc>!)#3$^_b0%JB<5*iUIal
zCNTk~<nn<JeUovH=DKA)Sy|00uMz4Zl})Ju+F#U$Q316#wK{T4O3r5C1}M?cO1wW)
z;Rg-Z!g-Dv=d5`1AJpY(-MnKeb=TXAwdYJ(tRwp&h<e17Jv$eP1pW%!y-`C_Oesz1
zqKQRs&`Ey<0U}*1JQ~kMw+OD?obzF_NrkQCrP#%cKS=&f!tek)(_w4`CA3rX^!SQb
z5e-<UHzI}p@z*HnIujYWLDMWORgN(Uqt%YbxjOR3N_WSMQoDa?$_17wQyZN@_!pLG
zo&sk6ij3O~7~y)W{YP2x9Vyh~*bnDRuuuzB`cAF&X|QUd(7e@YTcE8_f`kn8X_{4h
z^hi8l4c0vYLV-!&8bKxx9O1iW5_${*q_;In4#-cePn6Zvt;dsaf&Zyl|FS_L3<Fyd
zVu$}r6dofQ7TWu2S++S~1e~{j^u<o6AyHsCi&GnTYYChs;M><#Y_#|Eq@U-cU$&n9
zSfigj-;ZrE!Z6X(@5dEL9gWv9I8-RC`l{HCSNmloZqdD!;zQ;WET=})pamGK;rmN^
z_xHf}|AmyvkVNigk$q5AsL}%zbJgoso?sYkaZ=#(sO@`Bu9w#`wyg$OjX~=fnCwF_
z$6j&^`)WxlzMZrT&(f4ULX~SD%cq}v@JH#p6a+j?;^1o)92Ot{`t&Ov_>F_$?^4{{
z_pub311nT`MUmk}93`$7{>|})9Sgob@LgSNA2|M7R;Y4(GRfn*-shy?I;TA`>|mSt
zqAHm^EdV7gQmBRbpJ#^=ID2OsG@tKxy>bLP+d-udqiImUrY73xm`uAs>cXj%N)<~+
zaf%rPMc#-X<iLv8iiAhx=fi@=q6IWUb*$Dx1(X!;!D(hHQ$VioqlR-&hjM@Wa*POW
z|72T5pf55pfrO*scqSwfhK_pB{x8yE)hs1D?4`#|YM`JxJU@fQcOj_H-fjSyJ3@w;
z)AqSJH-_lg$1%JOb!2q}xL{tG{rm`r>Bt17>$K84a8AMG*=UASEyOKaIVg(nVpTm~
zVfS+&$Pk$wVXSfq<rYu8sX<O;7sgC)fJHF-RI`6fsgJU9YPn($<-;V;)rZ2cIgNhp
z5^_f3y5ua+G`P`d@No~b|1JNWp<Iqj9fN%41zaL#ghWPTryBk~mJ1pO7q2A+QwwK`
zEQ-dn$jF-+5P@0Kw+0>^UnN)OI2XAD)_YPwZ=@F|@Y-RaOfY{`$M9)*^!Ui5XhSia
ztwMV)Zsdg6Yd_;3jFF~P!=8Kgo0P)mqI|e6*|U1Oqy7n*CE(I@G9wR^9T8pfpRikq
zlyFV7oBBl=DbykDQ|8|vdbB;4TM@+J!wX+1lw5tb^q+7}!q6LrOd%`&*x5-tw(NgS
z+}H%wb+X0nzgW1s&p(<lJT7t%!Iv*$-zgDykha#X0_wb)Zh3ZH;M52tzoJTaI*(3F
z#0+HoKe?}$uR`*Z^8Q5vNCko_Ox|%yKU)}fY2%UXY_+)?0yS#<9ZwD)A!K-c`KjAz
z2u*nS+bkz(H1JwFdiE8Gg>~s7_qKVwr#H7LtntChvv61y5J`!dxuBx4<wP{#F@!j4
zG5etB3rs1u@gsGM056QJPXuN{y=~JW9<DXxkIu5L`p>h?6jSupBmsamK{7%bZ;a%L
zi7p8%by!!;j%nyICGp998DKUFc&F0cp;{sh6)gvKe^c1za-=l<;3<-#ljm;bws)jo
zNJ%y1Y_`~j=80lgc*t}NCTBu~yicg6d(S4pv)*EoWDt2X6O{y3cTgLxa-avF0gm9M
zx|;i$Ar%9g@@cG*`p%E$LBaGl=8Ib(8ajhYtP&n;2&s8#rSgdrn#}`KI7;{5Q7fID
z3_Cr!0sm2g0;R;`R%Osy5mf(gl?nKva`SNY^AD&bO&E)jTfXTGmV~Zl7R_u?i;E$u
zP4iOlCW?vP^`++!uU8>FubWUJ;3jYxOTO@5F%j+ZS|7(@(Ek*EL|tZ56;a-F4?FQD
zGsCQe+eVp{Gg&Lv)3qlYQ`|v5wn2}P$jNu{jl<k;z5h`(mI0rs_r&E)mGYq@^%bHB
z(9(kh>HsdgA4^NJQ1zGaWA5MnUQX(lHGa`+Hr0v{J0=n;E%ISt6T-MZsZQhE4r)jv
zDLRqy_;K*BsRZ~`+|a}N6dbf^r$v=(fBc*rm1vw1zpiG|pe!sYP4*~aQQX`5x(76|
zR+mx>WlqJUJ9kc^(tjkX2}{N$!A^Z;bT>)pkerJiy}K<CUjm`GSFvd(&k6FP<PzEQ
zLBp*^38M&ZnGmciF8l)`W?PIzc)GdrM4;2IAGa9r5Z59i3wF2b!+ZB)@fJ#!gb<eT
z58<P-k?)YXn82Z?kMJV*P31a)lV3ov>Bk2M*q+N9`4zr>jm)Le_(&n85_%4;c6!Bu
zXVn3*D0k9NE9B$+w4Fzi7>Hhsu9IS)Tq78(XFNyvG+JvW-z~{gny2N%MJR&hhVkp$
z)(!+tc*QiI+^!~U^XHJya&J)pqhwS!d)5$@tiUN^cyn;?+K@^i74`-lDnhgL>$}ws
zrl^H!UZ-okC9Ol9fnuJIz8YBtphP+(AabjXtO;|A(_&Rb`bi-BugyZ^DXe-~aWF}T
zBpoq`f!^$4D*z65BSw|f(l-G#;@^tPm8ED3Lox%qpG-jpR`ie9T?GQhU!-ilH0!l9
zItc-%4#^^zfb9kXc7A3LewYw0=fDb?_Xl@ASR;kRl*}b{s51Jgdl>91Flz}tE2EAi
z%g?5wyK=Ky6mK+SBfn0KaU=1D#!Jw>$MhsJ1cEmsv#gn5vFkVvu4?J@W2mR~<OQTo
z6LGSp^6wabM)+gTx4A}gCQiO|W5>o2j$k54u5Q$3MC4`zf-oR4ihDP=z0%W02jo@B
zTs5oSC5`|eKG#yzG$U6mAyCpkrrtlDY|aJ80|k6KKrZZj#|u<fNUaD@F9~ZT=jsoI
z)a}XPkY%7$Z%Dam3y^3%Oo0l|cc2y6_AiAaG7lr+r*6W*`ayU>3v(n$9-WB%&~vai
zaQf>iw|_qo1CS{%r=wX$8=8rUckR>t>F_fe=S;|6AD{6MYEAhDWHNdk6%klv%~S8U
zd=u<Wf&0_q(C>Ha+az@_+4cr6QI`7XUr|Q*d$K#C1D|D0Dli4DxI!w}Y|O@|V-tw!
zi5v+>D9?&mf^k1^sjDVY#-5JeY1W;+xZ=uWy-BlDm7lThx29TVWiq-hqY>O><}`43
z{4E<XA89C}FA|$etn3=R?hKA8YxzAtJ177EDP#et4*=x|Bmda&Zl2f{np^&SA6Y|j
zr2Swp+5Ct7jacZTr`3M!X$0TigRPwsTyA&;e_4p&a2Swjb?}LCw}D^$lqq&;s_ECY
zzwBoqm}mnkASr!Ru%|W%YIT(8M}>gv5*Ta;s1z(^zy1DY8{ro|i!W6F&*l`Z{m7#Z
zmD*Wr1fmmQVecAV%35n!=d~Y{l#yp9iD(IPA26V<1VQ(FrA$PZXR*V%yvK2B&*j44
zskFs-2*Mtg<Q{O|<^v|F!C8PWH7v4p!|L#`!dx-#yLB(9c@kXVoDMvNE?O)j#+Z*>
z%I?f0hK6H*asHu2ju%UOEhuLr1lpz2*~u99?}6M)c_b_#GVVdD9!8Ip#k!QEx6JNO
z?1dX`d0}DUdEtJVYeWC+7eiIu**W~X-|>ed4v#$E^CWnHq@EWl7Dcn^+flpP)1VF7
zQ#T?6%4?~*+B1J4T_ghDTLsx`;Tv%~Cq>Ji0D9|LJParAO3QjxjrP}a1e^(!+TDPN
zEK1NcB?FXB?YpVIzmXq&Wc}YtOr)@}#={$tWydzyp1ESaB1%Ph#1QRLGh_x?vf){k
z{3smH1CoiEJ{8#g<<<_~7xRA>jH?ahASZo?H)s~QG}Kc@zBT`7rBL*0&8{Sjcw)3R
z2_y_9yN9PGOB=Q7=z_22<L7$FlWxOF0a7zW3T3;(V_2zQ9WYH`i%)ge`5ctOBX9t^
z9!xm;Mj5VvIjj$Ex*Q~qThYKix?nv%zQ9C^_NXf<{Ip(&1?KsFs`I7TCU=bJ>xr9|
zVwWr#z9Kd42xwAq;=s4B?|Sbmft~-d)t!B=t*)z~ABTXB++y!l2Ui5zTmz=Dd37e&
zRgTIXO7=zgfv-_l+<RIh%#}c_A_qxC1*L$i8DSkofnxUNiBP#G_;v7LLoq+05*#aI
zJM0L`_A&X?xO&9<s4_um#5+`cGmm~JED`ZoW158~TfP8W8}=Sof%fR9G_SoG)_wEc
z4ciMs@mMJMp8jC1)EIGKWcTKTj?Q8Z^qOsYy!JQ=hX3&bq`ji`;;}FsPfOrKT#rjK
zTn!}0ySlKJah(wLjCv0oEa#Ggo`%JBLK0ax>4RKMx$rHIxZ=K^&~w<KwCW<PQe2g*
z=3IAoNJ`+}NaJc*ubEW*uGPaI1gF=J3;^?3nYx)7v3*CAuyJ!v+ch)_Cjor|!(A*%
zBBQl+Vz&Vr0<@UC(FMr+V)jP~OjJIsrK|p721k;JJRjNRpzIWXD&$jfQ~oIKHk9?}
z>H}Ck3cgeR^=Y*K3uwyYQk!4W9e;qqVR`#D67R8dwF*V233%(I=kio#WDcmaTI4)q
zy~HR_9S5Lg2lODiHorM@xz6(9HYl9rtRKrpz1km-*gdH|;Ef8m29FWlqJT6z3hK?Q
zc*Eu<8KGR&^f7}fLg*+v?ZdK{(+JCD+8nD(%s2~>RYul87n863T%T1z1*0WHgatAw
z13fx(M<a%Ic9SIc-Zd@64*5%66?k5tEP8<w=iTugvvILb$k9mOd}~%TCEvT=*^(Q>
z2Omv5#H&sfJx|%@_@h^=UDv2UePja06<$V$f*1`3u_R)4r<$#}a};tT1YWLpN|zX1
zDz8yZ7Dc;dMu?V6!?Ct7$Ke<4R>*6a#%Y_s40CBdxPY=t?%OK&k24_vQRe!uOQ<So
zXy$HG<9&O>&T_b76=!HoC^j-OHV#&>eRyk=E^S=oYCKjgXUx)!;~t7^zAimoM?|Mi
z_%nh?oAolH$DETyT4Uj2xn^EeT_+KUOc^`q*vISfn>oSaQO``~mtDgW3cZ2Z(<J-A
z#yWW!8$HR5Jbm=5%atAGz1IZH|HndLHZp)Cp+r5??O*Jlps2zR<pJJV_H{R9H@b3%
z@m@op@gcZ@0f2btG1P*yz@q&>Ex0czxDcQ~)Ig9|*LYPzwjwny+cC0$cV68qtpij#
z*ngmVD0pe2s^ADKgoJdaYs$76HAK*+1c0~fJ{RFrdir1szu>|TqNQQoGyph+8a`E-
z^x(rbLKO&#58A{A(UzNpIOtb8b?m)EUZiox^DOH(Y>JaPn_~#A;aDBAG3a&m@fETC
z&37guvc%ljsn+QmkTb=V(H&To@*sja2%u-}!+bYo26Tl<x-keoa?OCPYKt#sSd86$
zfJszR{+bUG$KUFI5P-ZPJvy{f+{gOGag#d%4xCSHLiEx4G81_fCHnJY=Kg1-DN?S#
zKZ#frp`ZsVXd^9UM>6WWJi<+aI+19x?Sou=7V46hj1-A2_PB(>f^kgFb{&r4zC1}_
z$t97N0}9P@ca2~Sp+*hPW5ffDE0bPJ_SCWzaLPBK4UgaSUZlr;I?y4;Sjj$8DKFH!
zWG)&(F@{tqd6Mv>wp683!_t<;6qS7IZ(J|^qB+|SW!ZL0cp>ax^$>yR7RQC4Tq5u7
zM<hx$6h`@M+-s{HC=%cvfs|Sgf%q3J0EO4WXW#rsl|b_ZhyYOsNBfylZd`Pyh)xJ#
ztq($!YZeh0n7vt4SRlzRE>I5|B9c3yj|sQcAAPu;5KpPHpkc!xKmyU(-7=Gwd0j|}
z{m&ae63rECM+7FL>R$v?hjE5=vBO|k)O1y9<_sBJf+UVDz!k>{>sF`E-vc#KL0#M;
z>-K{u-njyTN;<zVtQ*wSEiU&H!Ed%@>j+qSZHQ`Hi1Z99%XIbQdkxoW9%<=a8@5>V
z1OETMG&|~OLEInRaWXtys+F41NL<f`eB7>(4AC18&0UAHYHc`RdDQ|zh&YU3alG*~
z`&&hu|GhO&XSP4YZ}S30?xa=*XxY7;&2_7Og&C9tfyC5wot;4N{m72ul69lsgf-|}
z&2{}9N?3)tkN2OlhFdXpufUK{9k!r_tOo2zT6ouN#~sJyCb0|8@tys?$BePl_T73i
zdn6p8uteY*ECOM@cMuo8YTk`rg!m)4$r!wBLiuoRAy7zW2)t31FDFhaPLrXnR0T|7
zBZl#Pw2B75;p-{1+rtq>jTgh;l!&cQoQlT&c+*l#)-~ek3(ejsfpL4l*POHm0w$U}
ze_T3t7zl>BimWTT!kE?D%U9JFCM4sSX<Ri23+)DdP}=iRtAdq|mf2Lq;Vl<ewPn?^
z(g{7>&@XJmQez#M3$JCI9Ct2wktj3>rRlc=1GiqZd9A&)v0X%<yzmKtv@p}G52Q_S
zPX7NIgXff4qf*X(d;q)D0opIUtydX0-oLon3u(AS8O5U~)9YW|@%mpL%Q~l-GL5sf
z=FcRH-k^(E``&`bbFR@s+AHFUi(Rn!o|+lbGdqpHo&q)7UQd*QQS7}(JO<C`+Zs5-
zp}y8fIbx(Ja6OZnmA*;$g4W7wD*IA}cDYH@i2EP2<&7vy`V3U9KvZ?jU>bA#*+WMX
zp(>ML2=Y4nFFzgDlFlxk4^ia`x#M(B4F*&N;Ac0i@BE!@L&Um-G~g;=l#P%gR)~A{
zAAT^!9h0TCtvz1l+f}<JGF7?AxPtz)mgKaKWs|VLGZfGWqmxIx9>~gZc?>=)UDy}%
zkr^|!z6J7De{qs1cfaRN&J@t>NZHF;T?6BLqJ#FADxAzBA2r%aGcwpLUSDYi6f>GW
zeJ@kQiaa;^Vi5W4GPvnzum7dha)IvN2TQSF6L?~VOLfV&!Q`~KX^1z&kl;zt9CGx7
zKwWlmU7{3rQO@ZtlJ%D?&XH)S?QCQCQ3G8Li4g9gBen}7Vlps-|8AeIxagiYU)#jL
zagG#)b@{=NeMJu)vtqMf(LC@3L3GRLmI1x+tNIuNbnM+R;Jwr&p2?TnAa)Pj!zb~Z
ze;u(q{)pbUqQa7Xb>F1`OH4cMu+FW5*Tc4BX+EadNg4f4habzD^*Ic+ClIS(QTQrL
zzRPF(*Bct_nkIGq^0|>!Q+7tkVXVac_DFtdy>AMtGOYUd(K950lX7grWpb`X6%8kQ
zDXK+XAnl7d=>z<6dSxDd--*{Za<_g?0N71P>LC*SDNC-l71?Aa(u)5NU<ZVT+{AX}
zLxyZ-k98phZh+uFdT|@a&T`$Eu${D^w1-I$s>ifiwQMseNMoX|nAOR$L0nFxCINvL
zwlVrs<~pe{-28JdudKCG)8*~uEzv_~6Tze9mtC0Z9<gtLE#lPOny+n<Su#-cMpkAz
zvbz=txYHEm^B2!lc&Sf*KUUoS=^>@d=A)l*IOCT=F|?fL+lRb&me>Z1k_bo0oNd{H
zSqgPiA=)XQ2Tb-!gmz5RD4riOLJ=RuEgj6_r$>~Ezh!gugwxlMs$ioyueBZ0MdVh9
zAIE*?L3;O2p5X8o)(RWcMMwcS=FQh#OH{AN&Ks2h-f#9<2b^QJfik|=8}(+hMQw(x
zEO0Zj%e?MleLQz6<k$q={!&Y)c_sSk7U67i8U(D)^}my8bAF^MMx&Y;&$?~=eW}FX
zACEcwXQ7<X?`oq0S%meO*}{6)#NT&gLVg?=OIqa4y4miKhtMU;1OkJtTz(4kAX`#U
zH#(idn(I$BlcpgbmnZaGQjBaSD>5p;9mUc>u~-IL-p0hTBAp?R9I%#X5t>U!Cv>PZ
z&%ge|r+K@xXW3SNEc5OV;My?BQrXzE3Kh>XVXlD&0w+t(bCDULNbhS1){856k(Jve
zpT{>FQ(;HAdId?D@(E#4J~T%?b*hf~LiMe@)K%Zz8Li4I+lr(yWq0TjD1%s3^vr_N
z)1s5w+dlC3Pxvn07*f!PZ4WPsnyWYh7!kN+q3nO;HzsQ0Hz(KcE-1@&G%5I0$BKU^
zP(7mdV+&;?ep5d@Ymt6;((~H*0UFO>o>)3Nv$)w<1>1{c2kf;z46lI+?D4oMu^%9+
zz;Fd6Y+<zOrI^1!eI>dwqu>0;;SbMS;wc6SdM!so$`TBkd&@QlA|`(B`a@qsprc^>
zJoF8LLzx}#r=!KzOJ$l1J-wM@_@DpI4S=VrwzXyFw;|etNYy_oNL0v{M|3tz!OjR&
zYW;njd7tqMvm&VaDJ2S$rO7@Zq@PjK=JX6%*(yWp_Dl%SXxJ-^oO=Ew@Fu{uk18kB
z-?R$#UMo2@?82T4e-;0LM;|_d()(2&6}2}OS4r{WSWC%P$*B&y^)cLtJi4zh5Ko7l
z?oj`<=wwJPa&WQs-8d4Us^|70ScCI5VjI6Ol%Yom98=S-Br_GfTM+2y1Y|9p6|FRy
zKTLw{-$|{&*@Ywfmd?o}jX})q`8Fd4qZi%qmD_P<9hLh`O~?`n`Dz<QR+gGI^zY$b
z%%0s$ETMypdSgf*y@J+u?$pSXfW!5RoTz)L*FmH%1I;xks>$KMhA|;8kvPzG1Fy^k
z=rUft-omQ-zDHz55=`#|Y$)gZaM5^--H8pu5dETNfNMz@r8kK3k=Bx}k5%tV+Gs%*
zM{N(7A`CZT6>J0wOqIYxko7Z|@Xv!Eijych7pd~*c42g4-t>U7TgKm+nUBLn{j`am
z#iO!IMU+ck?*W<$=g_8i>+67Jxr>cgg`7xln$mTR?UZ2TwskRJ6O{ioNCVKk7DXPz
zK>xE5o1IX|)R<@J^pJp_2l;j(JZEs4cKo@DI2N~!VQ;KuwYgl6dSzpkfdw^PTvtx=
z-0MgI7ZUUxBYf65p+SqxAufCNgiddoJbE6^evQ}!xUoBebZ{?7B|<m3k?$obw5!^p
zT(Ad5Rv@?>u=I64+SJGvCLNxd-s|<>Zt88@KzLqJ*v&}bTCCjiN+FYLcs91g*fvSd
zB``(s(M06~243RLzJRrM1GjnBnS3M+)zqsB6*oEJz)>Y93`cvnt@VC$dKi!8V6}Lv
z(5Zx=Z8dYby@|+jg0<P+`Qfw9_ffO8e$!h(+-2N>rBD&oQgPsIQw*Q`HXQq5kc^WM
zL?s422OvqA&h${`S4k&-)Id&f*S}M&HslUS2`{U}S;Fc~MQKMV1XhNP&p<2Za;01G
zbS4>s!h>c+PmU}(MByV7c@L-Y)S9CWabH4lWFuN$X*-FPKC3kxnWQ_e%3qX3UM^kb
zmpyTQ;$WeSK}6It7rAVHG>x3o+R0xxyi0S@Qk~Ruc*>@rWKRRbcp-@#zy~_PMCS9{
zylb9Ntqthn2pci)LpD~4IJUky9|`$_h84EOxTm~VWh37L8jT8gY%6J=LdYB>Z`Q?I
z#7<!e+2Qb>Sa&o6&gP3It5dsbTYzj7S7Qj^>M?{>Wq{32tp^%7>nNVw;^9Low+1mo
z#8TJq99GIze6(EN8x?O{A@lns6pbqi+yZc^2^^>Uv-N*mC}8kFv1>M?;Vc1KTyE31
z?L?SB#5Su_3Pe{Tg1OMH(tw&@T)+mr69=uzKPCI$LMPpK)JL2D(NR$@F?@b{EyIQc
zjR$mqKAai4NERZ3pUDZsril>jv?e6lh`OcmHt;JFo+xZ{%K33X^5M@)k?Qqo9gtBx
zh0SIUe-p<NVeqmm#y>=0gdF{koRoT^<_V}^*(7a3Vu*dJEj%XDxUSazbf}kWA!lD-
zy0oE*2uN_iq-?0EuXN;PL%bV)zqb0Mj~?!cxqm!sv~EW&yj-{X`!ehlp^IU7nN{9m
zP79S#dEB$>3eaf|XsVJnhR>VVx7H;<bUKYB4t(B4k;6Gcjnli(v|#uX#VpOB1QBBU
z2gQJjuqO6Gt5Wun5XXXDA#ku?kb&#hTv5H5p9q_P#!IQqBQamLrmR$2na5u}pf1pk
zq602o(mq;h(AhQk(Jscc?Q`+&JTDb6b{phOzB4@G=F9W_I=~T%<z?U2H{;3+TiAEg
zNQC5rt}NX?2qRW<i(i3)pZj8_=`Lt7O^a2L8Um(!tmh`QmAp$*vs#~v!GQsAmbCqW
z=O&9`lZ$q9$9OIhz6dO1e~$=67RQ!+O~mW*WC_n$lcd;O6Z$z2#TItvq}*1Fp%|Z1
zo`T#>-WA+b*y`kIV&aRXhprh&r*ru$sYmHGnENZUYHq8quzrj7=Xe<u%5qoZB39(w
z`W;0Aij)3C=d-@i|7LKZNxRNeosO}gaUBb*Ugkbqda9UokU}sE$WLf<^BeqMuWJoZ
zKHY@Y&FCN%UW4_KQYD~Sc6i<j)zur&-2%QC))>Iwytr&!4zMk<{pD)$M}kmicb+rI
z0>E#J_3(widIQYZv~o&xWL*nv2<m1wDsw&#ZoNdxzBr<qmL!N)O=c+78;}WeHMDPX
zw6=d@gB|(+Q*$uh)UxCP$Z=8#AO6zj%5TQ8(1R6ZZqyW2-`&bd;zs<q0!2o`OCWLC
znpntegGQpy{+=j#f%pr`2u~nuY5}2yGy^RL`9({z*c6u`j!48lp_!4ATuKZ#3|`P@
z(fp*W<e~)`P^V)zKHpjLzxx-m(2A{4&y~k1PS6VbVV0{?FQngc#j3$O{;^$F=lu`R
z|L?o`4Ta+qtdu5qUJ}q#%H5)PrdRh(gG00lAdu(eLGM_*Y?UYsANZRfeh1ZThI>Q2
zy`$I%zq54=z)&8rIR_sb0H}iu$_J|K-PpMIVJ<gMYnaQ8uHzd>j>1F@Tm4>^zT7+R
zOTFyM(`T%CVJU~moFl<a*qjJBX4K+hDTNPDO6x$r?Y}efxS|;p1SDf}iPWfq<Hpdy
zK|!NpegB4nVu`)@E-la5AZK^&SNf}RVopG<&8uW>xbe!;uJS#-`plihO>tOPl6~kN
z4*kK(SV>BCBbvv8?*pWOo{_K=S3oSe6ho4&IQ!HB;2Y!)lz+#eAJw^J_A#~WbIQ7$
ziL_G~Up{!&yp45B`zVs&c+Mdy=27z%oIi%*OK!{oB+j$Ds(|Aov(_Nj;mJ@O9Rl6)
zWowlT{_TznJ}}k{r40vus>=UiWi@5xu)rQqr9Z8btc-3Wl@Nb-j0Oj<c-28}^M+Ia
z%uhYqLv^0G9$_ukbR~~>H!-}q_5aILFj<;`Du)dT@*3Qyfnt?}VtSbDF07pWE<^qU
z5n7;nj=l$%9X>_!+oXZ7In8-99(j+PZEaGmvOC=uP-cEg36geIQn*K+jHmcKk*$v|
zsz^kPTnAk~q6oUx8O8ZPa9+w<b6$5wt8NyuoCM5ze&_*<HW5I54y(UV2li+9hjRP(
zRLuW9{RTA{T$80n@H_Wp4axWk1_wmeIH~OO^+c*ES3nXK(XwSMi7rx4$kiVCi`z7I
zS@Jg94cGM$@(c_aIHF$qouhik|JduU5yqLM*=}g=g1B|X>a|<fnN5W%bsX2Z@}3sQ
z^aI7)Sq1_BCFsb_ZA~aAyMxogrtwYnPJSI*U;|%qe-e9iBSvG;uNObapF2%4PuyD;
z9}-#Z7kNnVj))0NUQgPYKBl})KrKOgJ?K|Xjf#ZOaej0=1|w@nNI8kNOIHXY`pnPc
zLZpCNT4}-j<7JaSnX273j|0Z7+=b=9sdB)qOO(>qS3kvz2~5LiSA0^sB|1yeP1vib
z|15;6UN#Y<SfbvaW3jEphN42bOP*)gR$gj5Z7rcOwFZuqHK)w{cMf*|aL0~vInIpm
z8ang$r?Z~=bT_6dZrs&zGh_DVUk{gY^-njE$G)R3wR{t(LG0+stVUU+r|XwlRw}#w
ztPEX8g783K4|rV2vMb=|{Bh}+QwKM?j&<|@x=J)dYv4I`6m2xH!hyYat6PxV_HyN1
zfJ+uE^Z0?RcO<VzyPl3;sVV#;Z=`I#QH*yeU4jnaYAA=OvnJ>oebn<=!=*;)qN<*8
zIxlL~pNYgtdxz_eRYrytXffyh;ZfYIP_R}aSZ2u>s~*4|8Ob*tc#2%43tM_fA#F2@
z=U6!X?DC#<s<JG+j^YhcENVS-ZPkRd02G+B(L!_<vOwl#TUGOT*n)L%{s83Ho>4y1
ztfQbMx*@pNI~|ZRh#f{cet*bfO;hoX&;1$zv71UTspQl37s?WEe-`9O%CG5HN`Q~q
z%e~S=Rh*TM3Lusa@Yfp~8|X2K4)~B#=5bVDw0k^+|GgePuCa&XqgENaowQ2BC$DfE
z6PylhsE;<Y0TZ2krbd>zVRVv@B>=AAe%67Xb8yre1HFOOHV^5h-4zNQ+NS5VHc{1v
z{9V@`uo=?gK8D5F8%hqW*1PS6P=bcp)FOm`$(AErA)kV%2we&LoYV2!tP2k+TsXvt
zBaz;^D2m_AvB9EQeQ&f8?V=JbBPC<l*EoCUjImYO_bVUIVRzd;79SPql|qRrY)Q~3
zM)gdWh0Nrt*^)~sBW{q+uNcEY?xNYXWKNyp;laMGh33SE2vKR1$8|#OBejJSd5{Ik
z%%5`TfX*82J^fTown~KpR3r>2#qTyf#0pQ4S-27~|GAkn`CQt4+H0X6jd$~V7V~P4
zb%k8rCoDV<|4=pH+%2vAvvBOawDFnvX4O)Erw9H+mx_z{%}|qt8;;h^E%IEJl5}7i
z+0c}Iug_I<i?g^ALw#e=u8ry^6v~S{$TMV%U}ZP{qxq4>`q6J~AQGqVkYFZJrrZ+g
zLHGVaO|=;u3^SINI+t$~jLbf`3v>WrvSB_z3%l#VTo)flEuc)9Fv{1&oSuIWJyuA&
z1@B;NJl<;c*f0ZFqC*58fX@9-=;>vYUMMBPz|F>JKTX56TS06g+;DLwRRoY@txsCr
zA8yhj3tNmXZiG`(YQJ+k*VBl3CT5r&wH^@{Z$cZt1lG3o9U}|hMC%!}JH6Kh0@qG0
ze~X5SXr148wJs-ZF4gq^;Yx4r+~DEYw(RA^l4j#csigGhnyR}L(fm#p-WCIAanG-z
z-VcFkSB?9G6AQMx0M4Y%=*#Nas)BgFY4!a8(Sw9w(!8eC#(c^B1$`>B$IWT|phDBk
zz;V#6LiPX)y>EwNYU~UEOddjn*Y|>Q*ToTFH`k~DwT(}DY_$d$#IuW%avLSc0_c1v
zA^@C7fi+%v-YiH4DN2t)JbV;^UcaINV{2w<z(-c}vl10$DtyY4v66B2Nx%bk+MG@r
zI*3*~QG$|wy{P^^g(c9|F{2;=e&W8|g+mXCvr?J9jTNdI_GYy0NbRPEb1Jr#81T)S
z@C$IEe7PSfl@+MubXc(Pp}S4xtI0wc8yRcmHH~Fm|Gh2N9Rg>buPR0Fu<yc2%8bsH
z4HgR4taHof4P{9;vD_^4Q+NOm!)sC^HoN19?wm46RSMR6+Qd_wZ#|POg49KBMFSv)
zKZDGAO0TACUkqK=Y@#|t0GvkJW#}r!;u~WLx&^G()2asgE7hQiu(3rlD~I-ALk6!E
zemR%P+xn_wCbSwj_9wRJc_I`~Ico(N!EIP?+oy1r=;Sh^`Y*uhQA|5(?X)+%9Mq2`
z$WfvAC<+zwYjDP{#hV@|rm^)$9|u%g+02z5e8-S>H30F2&yA;-Dzxb5{4(VrB_AZ~
z*=&ZZr_&;zd{ZCKc98lV&DLUa>$Qr-3hcHY1FAe$1Q7G6>I{1nf7Lx|YLa$6{WLwE
zcqk=4(s&tm1N|F28h38WK5p}kI=+189?W|#jl1yCFhHi6Kh%s${K%lPE@q$SKm0w!
zk|a2I8#vG}VKWr@unRB_#~TR_Dcj^Ix6^}Iizg;+&goVkPM-kDok$DMD1Ii;RExMI
z4)mCC?_|4$Yp{3Dkq5kL5DdF0TGV@O&f4(+I;_jOQ}?uCPEHf>m1NgO!OI!EfOy+(
zudqMzDY%U_VFc8Ri8+a@b9FEbvdE9`&(zwX8jBm$YrcQroEWnT92R>t8UmP=s#Kf1
z+-s&eGWu4U4UJ5~g9_%ZZ$bXmb?bidtt)aMmRiv+;dZ=@Q{MovMv6fGNBCTCA3&4?
zf+{A}_HUyx`?1=uo^Tq?wecKHi_;c0iQ5!A+i8+uQ5dMXF`;M%f1*P_aN6@exB`n&
z=B|sLGVOHuDW`era+#$}sSJnwBN9I*d!{jisBf;MTZBxNWvDy95uY^Lp8B7ocxXFG
z61?%0cH}UbaTtcqL}Of32Y!XCRLw|ZHjm52eaWTbzC#Js=9RSLAw8@8wNS)-Oq9O?
zhFAe2;276|*C)v1?}G%yioWl8-te`Mf2ln3lA1RgGQV^>=sD+sEt@5ozHdv>ON;L<
zuC%&hb!OUL`77FwU6$VCFvtb@`9a9tA1%R20Dl{N>bCP4k;gB051qG%?F!LIT17nh
z_Q>8ikp+Ha3`N;sc~vZTi(i}<Uv>b7n?MEJ@{<U)90_kCcW2sbMO=-{oYQ#(xX$P*
zn4f<>=c<$i-omr-1IkdmjaTW{8D<Wl)J0*q{ICpTxvyT*Q@1P~UGWR$#9V;`q1^Xx
zqN)7BJ!$i+ygMO&Vh=xhBv^UFH9kZ#%d68@T^pww&UJ)N_Z+&)s@h%xx@PxB`YBzg
z@=2wg99ZN|Rz>K-dyh}v_X8}kT^{gf>WDWlD69eq9asj;<}SBfo6y>w2JhMawB|N6
zBDG|yTD2WTN;wM7BrWJ6p$aU&1+GNuXWPz3bMRr#cTcFWhHi@@zKn`3B55pR)hNfS
zwnn1FFa5a|JHmjG*7{)`OeuTc&Vo_xhYf+;`N<}zOtea2r2#LhPSS~?J^m^Yrl(>N
z->2w~hb-z=E5AQ2M@BB@qP-^dB<8LXS4%gchJUlJWc)ubeI=Blb)F{G#f^7s$iSW7
zK5?(K+7%sm^O>3@HY7HuBNO!h?VOlApRk(T_(lPbYfD^3-mC6}bNu;VgWEZm%}pro
z2P*Yh+%{Mrv9+Vd5X3Sv&UWoI=nqJJH&BFxQ)V5>Hyi_}>w45<6yA4XZn*`ZXaJp2
zP*UH@qJltIKY3)J9h(p??eHicAn<EosFy-tj$psSKGUn74GmgKK4Zu;X-Oxc?A3LV
z0gN|leZIuAzR$Xli)Qidzj`lSKGWz$5NR8i!Jbtr>u1-<(C5q(;kj^jh|{8^XjrUh
zR<z7bS6gwt#kFN<7#F21ij(oIoucQb(h5mb(^PfFJT)b1AWU`%TDgaBK;aL+feGLJ
zE0^aP8}MDQF4}QlCwC$kj{L)(3uDKD?WL$JG)5_2QEFNkqO3>p!V>Y4f23JTt_7mT
z{EJgQ@Ut_;c*2Lw4$SY{q~SE)ONLuhgh_iM4oSd@giGPd8$2Hn02??nZ2wmf@Y|$;
z{^?`zy4-C;@W$>wsA20z9OuA-kdX+lATOG=1cq-6E30rI&2_sO$-{7Pee8R`w^CKJ
zo~E_Gvtj+FJ5c<VhK=|J9=Dy11~-*VQufB+kZjB^f60u9cQ1P8*i9E`na<!3aS1(V
zA}}B#o!JRKA5<acL9$GKSLr=yDLpY3@OIA)#|oO`WSbH6pq0U@s#iNGwTV!us6pJW
zPCLP(2krW~+N<`lpp%xd$O}8B`gQ9+{_p8~$nJzI8`BKb{8+-{KiN72_ytkzQE1X{
zRYfI%8-|Yaf+)d7mdU5Fft(Xa|3#=y1F4u=Yf)vNEuX|76(Puw1QN@d=CfJ8rH{2#
ziQ|9=BsBhI2Y$(c9ta{(84z&X<b_bnKZ~?o8r14Jl@ggyO>vxLrM>u+P0(=#k<dr=
zO5>B#@ohsLEvDF%L@q(cBwk?3w~MIiw~oiPSIBfSgY#$Z#Db|vZ&<0tt7LI1RFU4k
zH7$5)H$Nw#?%mAr$zacYqGEOLY5X!O$o;+x%)5mOO2?p;$OKN)Ivy|Wtk7+ome<gy
zAk&@I3bLcg*tHi{63<UC#uy~fq%H?K0`r+HR(Q6wFBgwdO=lVa>!<_w#J)Ke^^m0&
z3{PV+Q(0ReNno3A<<XUpVBMhLAWSTI!+6@uMp5=SVBUzHo&qcqyp!a19#h+9@Xuz<
z%fH0NEwb~_8mNdExG|ABK=3I%-)N))WiaeY5ZMiu(4}PH{SLjc%p4}iexT9etlf2N
zwZ4gNZrq>scK1HOj7)e~CW9&do6X(`mchU6Ja${z>$xvfZhwiziQIO?I|@ssx(}CG
zhjPbYdG^0eui9u4!Byu>edy2OidD;TCiXpr`cG*Bg$$cTSdy~#`uZqc|3xj_nmRo-
zc=wF_rBsB708h(T06oq4a^nAkPt9q`WKEE9{2X|L$pUKIVEz)XBK+QojL1i=(J5s6
z*K|M84s@s3vMmY(dMK8(_uZ&mx?AwZ3|Pr{V?F&-Em*a$ps2vsm>TAqt^UCm?)I%M
z_Ot}<?g;l^-K-yx_z~K{D4$3gHVENT#Sl5>Xnq{2=Iuy_Q?(*R)kElhjrf%3qeler
z8S>!EVl62f7q6yv$~S+@71wavo7;owR~AJM#y|$LxrPSZ&aBZJ?^xoTB|tr|cgrz9
zo@q?Is1G0>TUhQJ)kpXO*62}3LEbSAO^2m}y4IP`zW#!RX*^^YyNp3v%yOW~BzKm%
zz@!(J0`BM?Dol<Tl&NM1jOV-F+Oa-I$}Aob5cFVb!@ORG{%Q8``Z<4`gPpS=OuU*M
zO=v)WF1!pTQ~9$3*(ElwGMyASub7zS26EMm$!Q8I<#Ni=Tcc`?VYclzrJamFKzL=-
z=$mZhH`C72(2y?uO1l2%bY@BU)GP*zc+p(-T)Mdf*~+QTJOaVM7B7b7N=cr;a8ll&
zg$%_DXh+%g;!xm@3t5NFWn@<(p;Tswb7u%0#+8o!i~Hx5!T-q8&%<ThFe3x@CZ*Pa
z2q-g&OHGu6*u17Zi=6WgC)Z_Cp2|ZcmWIHZgt{gBb9C+Kjp39y{j&L^1S)Z&YJm25
znAuyL<ZxjhGWHiaMLWG%*9aQqVrQa$v-a;Hh`gNRqnSPUY)~a{OHASS!l_;&I+h%>
z^akY8xC~jIo(T6;d#0@J0)iS`e{ZZ;c8KA*ky<Wp-d|_4S{qVK9smG&47UJ?W`l5w
z5qxW0b7gB?L!I6q_rYr77*xZgA6<%pYvq{%*6^<v`9}b{A6V5+RE6IuKB8u4O|Z^P
ztKu8RH$$7b^MT!*MBJu}UkmoHy&6D9{03&hmltrC=51YYb~%T1R%K8R+FuMWf-Lc1
zd|}-tZ^Qj~`CwoZ*qHC}TcPj66X@Ff)MT;x=NJ8rb_So0^4IyAf#RM<Y?qJFBDJJN
z@3*|{AKc-}4rYK(f+I8E<RAb57os8HJOi*nALr5)r>N_Z6cT>xiAY3$-iU=B-_KaQ
zQs-z;ooYvNvYJa~rn0+EU`@gqnqnc7<^%Oa{}0%JAYd=A;ZTDMTJbpr?`&O@g1K2K
z^g6h}qjKY!yTVEU-uql19$G$ATgZzmd3b#*8Lg}7iNg4vd+Kuksko+mFGC?1f}Hq5
z&M<zfGt!ykGZ6WvtkH7q^Vk5m9Ba$Y%a=h(I8m$Y)gaJz_9&?iFqX2;nEYw!3jYSH
zET_z80#C6n@N0@8naOeK>Jf5$(!~9G)N*}>r~=W`^<wSEZNbcjp_R;L2IBmO?|3Z8
z@zZ)LS+t8&@SrggYETJT(i#W$E(Ei7VJl^08Gu5$_*nxV<4X-?vQl2o00w0f7X!Fb
z1h&aZBM?*pnou~0wu-)w*iAHu_X%hg^65{nxCLL0h;(_LV#7fHl&sA1g*ka$j|Wi!
zWK*95ysEd1%ez%dTVAtcW3fdm2xaPcG|hq=4octAPd9AoBAH<e%Iuv(kRV&MuFJO7
zW!rXDmu=hXvTfV8ZQHhO+k8E`lXHjnywS<gjy1@P`1YSGGWU{9Jo#PGr?sKS#Dj@o
zWccU?V^;yI2oUyB2R-qupp)qGM2!%{L{h&iYQ0dU{iJO*6)mEVoBw$OnF|Z<ss#w6
zX#f=Np~chRNSNCW0tpo+=d-f=6Q1iFu*LPoI(}E0TBPvl1Vr)xhLM?r-~ttWyhR4F
zcKQZfSIEbM-QI|6DLc<qW2^en>Jzo_H3Db&>m?tp5-|27aq>%_xMY5R`%M(1))#cV
z4h_w2KyPPgj}FLSB5~81G71gCDCBvRa0dv<(C}36b44uscD4(mqz6uFW}K+^Tg&Zm
zb-VDoBmBe5j6%=GBSe^`9%kt~Hc1k>ckVq<UZS{M?-p1$C(JcMYpn}>rD)i=C#kWK
zsUSF8#XFLb?46p7+l)Xr#ox4?BLDYqsO#6;2lD;iir*q-^?1L}mk?r=B<sc)C6Krv
z9pu1K`!5pAi5%g(ygUgJg*HbCDr4pzD;l>2$=p#>LJcAKjU?%f{=U|?#UCw|W@Gif
z`R_R`u+N<I^=<Q7XzKT1ImJ}`aDox5O!TU@e{4-=q#0j#5NYO<L)*s6*P^BoLKWsN
zw%cAU!`#Mo@hpN-!(w%<2iZi-nOhD<Q+XBOUC}SdkI2jsbectWW$*Cd)8%?i(g$C&
zxh`wz2Ec+y^UAjTg2HJm1QwzZ!%N~Ac-0T=4jD}W#W{8i-kh9;`FB`A*wjVwuL~f(
zI2WtWE3rnvzs%RrT48Vwhj$Yh`d%wn;XvTHT_auQA(16N_`~A0DtwC?{L-^DwbvL=
zl*pkaBx>!X$z*t4h?<M4_e<?K!1$(NpOI)78nI=o?h-Jf)7(Vw9R}H^Z^Q_8SU$wx
z_LVaY6vES)aPKyy;<aKtdm;;-J*yB3rDmRH-93$tB4yg<5f&ZnDy=_QYe2mh1p(|z
z39PRhGw&uyHQDgcZhr#a&e6mvuN)<<P$R3z=ndQPDu79xRP=3L$M!{n0bz(>wS*?(
zywcHn2}!!7>#jpWeYJ5Wl%9CmMF5C>LZ(!Gu}y=EdC<B;eYi7ASC1%jjL*hw7<PxX
z6!S+%b+Nd7sH2Tl$~SZ^7qdTJ6TH5>aqI1t+p8fl9HxM9nPFX+EZ8;LJGdX!O0EZ1
z{XHA7RxnOWrEJ{9Fq8y?iSfOFEHX)SFKBfVfXlNV3a46y=9zUVJi&3SNXu<|-sOI{
z1WzSWfqBIR36-=ImiEeeU3Ck6hK^$xIJGj{?tu2X*qz?x-R}kMq+0D5R(D&HRX-k$
zPro+>U)0m%E8g+oDR+))UQ8sd+^F5(T3^ELg{vn4ACo5;-_$nlu`!xgMVRQ?Mh<hB
zfJO#WQcb@-pK~%AKT-&^Tc`v=>zPMQg1RxO)LDV3oJnGld#U~=@I3}yl))$7UG{_U
zoJwc5l+8m(BYiyufbRVkWwSG7ab<N?G=f`=*bagHp_i~__D|M0hr9c>vPDJ?#QL?{
zqsBzk*izQpTf-021zeaEJc)cb`DMJYzgEfGVj!Qx|1*D@B?=%jR&@y(7>HRn>!hZ!
zX$1t}LE(GTN%z#dc`(aO@w|p}&8)3=mHY}C*sW`ImnN#xQYN0jy)*jb$rjP_GmMgd
z8boJ_>%q4ji!e*y)~@nlh4Fol_*;iT-<|h~m1idn|1i4h73L94b2il#)Fj5AKvpMe
zpTVKQ$Hx0$wSTI`UMALy?J1<p;J5w(t}LUJ2nJa2cGiH(M_<{5LRhJHhWgbL_JT6-
z#XXcBKQDtbwHk?`9S(;L(*a7p_mGkzlJ%`j^EH%B<|OhNv8UnHel)VEP{H9vR`-L9
z`7jOoz*<ipXy%mg<vJyY?<(>4kBW%%cJD(miKCpjUc|wOI@d_`#JU2&BI&kO7QC5;
z+QT;y25Jd<e-pk1*Pv>$xp@b4-o!1O_8K?5miNvOo+B95Q>|i6i7EwHcQ=7;`O}92
z8O6aFkR(j@%eR%x>PJSY%>YsVQE|W5VId(&EhlC2X{Doa2n+CM+Fsn(O^rQJMDWwV
z(N8Oqo%Raj?4?4p<4<bXN!U;8b63oWiEHc{wfObQv+X!7+R)7pw8SwRZz!2_Oc%1I
z<wW{*&-8tod3GT>);1`sLCx2l*u0T!68MD94@3`n7|oQjYVSiZ)N!Zz1=ey^86#{c
zZ!L;cur8VRyVuHR+>QiGy@|ogtAmQsBkWO?;k&a)7FUz%Nf6;PyqqSw3&OBDdS1%~
zhdjbdNo65iLe<5JcY`zuO!%Y-&wWdYuAkYhG;?mX)<~eM&<gGVf~s7q41g;K0Wx=a
z2T07Rxe@D7nAowRW|9|gH0~zb4LxZsDFG1@x3<#*WyWcnEPf#)6Yu-t6GJ5cjU|mq
zMHN2B<OQ0sxmKyCT7ayOwrrwUS--`?2=IdlM`&G}YDpJ#oWip20YS*d+bmAWATF_-
z8=o#_8NP_LNp^}y-zBiKmU&v?9=R<I9r93xBP?}{z#=XsI1*Os-xF9oK=6Aa-ToD)
zvIO-5-TuwvGo7Qp96sXl`GQymG{8gfw<+XNJ=c{Kl*n;g3^0dmXts<&MsCFwD+DlI
zaA{$#>s$hsBR-rK;2N-!XBEozvXT$^SE(u>C#PW+S-qa0S0?1{`j2&K@3r_Uygx+U
zQ$zLn?S{me_!~8tA`%f99(YrEKbB;e<Zc0HFcS~IIKrWgVPf@e6I~#++VB<n`|FOj
zT|xUk2eV>fx*K4^g`kMS{Vp9mjWa=&@isO@x0-l({l0gg0E%q7jo6W<fe7nBVnwwf
zH8R&Heb`x22zJBoreL8taem;^76TV25~zZHsp`%DIm5I^eema){Zy+crcjbt`%|J7
zH+)5@Kq_Dpl@1Scbm`j)G`Y6$BrsK~9?oD``pVcNAp3d-TW%1%8up8*`~FA!ke5O_
z<JfskQ}6fRC}~x?$RVg!AlDPlazRauq(ZAtmTMAZ6A|F+usG(70K1+adhUoFvE*v|
zgQW&blt3hyu=H;nONNV%ffYvlo;J5OJ4`FtiRbmA%s*GtS#muKRwZe-&+h!t#JUX-
z#2D|ICBbO#A<3_BMgq>>I6a3vTy*UCY7CeT@7DWCrygnT`>U-NzKP?iwtmTQQHYIB
zf%a5%g!MF=6_P!*D3OWV!g6&?p<5QeZ?aAkRu?lpE>LvaF~z!`n#8MJeYWJl+wx~~
zrQw1g=?uKl_&*eRU|pWLJYhtZc%xtpcUD-zMQpTBpQc;e1;pT#v34Rb#2Y&#bu?u~
zY%M~_2T@F!kfqZ3exvyg>EGuJi(}EJ0KDivn~g4{Y}f@0qIT{-NT2rtZit+gRI&8L
zn@hx+j>s*QfzGtJ;s9&kTx#BCHKDWeG(NW@_&gzeSX8KZu`kXAcahKacyBmb#2wsQ
zGbm=tZ(<kNMpgv?@DvD%*^H{@@wxe_i&-p2KGLJ!bo;B!`WMvz6oe$u1zN|q+g#S|
z3Ap|2WTIsVt_Jhn_EfeZ_7O^&@61cfF9L@Dp){#!?s&!JX7k*2enUZc(mZU$45IyH
zp#q~)`<zK68!i!$k}$Z$ooC0@;Jo%ql3EJB8|a~>Zb)h8B%xWGZ1+Zj@n<?7uOjYB
z;5bn{KPFt$&Q_t;&Htd6@RlhNW8~Y9K>>3+D@Puzu4;s!_D;5S!cayU86gX^lTf&}
zK}K$YP(u+wrizK07<w89y*F#?kBShSRjA@RU*IeIEIdAJb(fh*0@)Gqk+{S43*94f
zUu(G%LVZDm-E=*I<UB$-5esR)*^%Qd1418Rt(G;LxMGGYZei2%CrZ;5f?*oVJA@^L
zw)%dd8xy;4RDRuKSPK1RlhdH|Gbq8NiFGDj>xl6ze$wyw=Dhb(Fi(1_E#PZpt7yIZ
z>oA{MRW(*P;2PRKH_`#et$K!5$N({T!p|L%Ke0`Gd$xtBjr>j{z<AP-14lY}zGBdT
zV;6o;FSd69Rcmm;T$YR`L81%bM`eJ#p_!|(Wjsa*oN)>Yz*?#mwZt-xI;v<t3DuVz
zDx4pnFJW`;rq8{oRrfoUm=SWAL_TX0_}7{WhUo5Zx%1NWVA>^gsoJ^~X>z`1*Pz^T
zGsDg@yMi%Tc*ID_BtB34Rn}ncIbsI6BsaG4btI&h7azC@v8l4IAvOjv?5KHB!GUoT
z<eX<i^=j3KJ|b}~TC(mufntZuB8YbS{ca#PhY~IR9R>@GmN0~R-ytCe<=#REWRa*;
zhqLrRVt=`v>Rs(K&d38ATgYf?uBPcW2RplQR8Fu*@9T;04ET&h(Bd7cd4zE2(H#&5
zQ^?7qt%tLWKjIQx&=|e%zHnvxNhG`r@CWx6w8ZWS2Zu@bqZ_8$%vOR$)>z2405Zva
zn&vj{4&h>5;v6q8(Wy7p9=uDf?s7saMQVnyC{H(0U^QxghqYg9Advz1qA(<Ou0!n2
zFs8bal&%Gb1tH0=e?d94h>VShH%qtfGB&qo=fo219O3(=eDIGKfZUg_;ZC@^5dmQ`
zmsr>|o!`-it@+xY6Q$(x3?U$z`Dm=nDQ2;H)wm{$MOJ>rpUr`ewL4ksxYvE1;`u;Y
z&zP&0`C7RJL<2<crZp$QW(KYoaZ0Bc<fP$@Z5?M6Se+MaAF#>Qw}#lKEdhRc`lA{A
zZR*_X&P7Id+a$cD<;4DR1r2mB&#Pyx3iMnnkHy;vL+-7x05P8@Fvk`*_XBQst)V??
z9gKu#5<Tdr{s<$r5uW{$3J!s!p21o@4dRHIw`NyqSew3+d0>ob#5LHmF+Akq$TQPw
zNqH@RBOsMvDA0S6@a~4&HR&@DeYr3umk^=Ykkn@hAJB}gkDVO(av8w&Y0V5{0$PnH
zxMYxR^vpU|y_TGX4v$COE%J5B_yn}X^jBd1cq((v;`PuZTZ$?GU`ZpgtX@pmhgrq=
zEgg#>H9qmA@#9EQ{yqf1J4mP`$-+_~+z;ptlJVltSEV^}=+SYUjyhLODD+4@{LyvS
zr|~l)*O%M7&@$U&mtYmhOXpmyql8J;b~b=al&YN|u;TiemMZ-z89Yo7+SJhrk;f(8
zkxZtosCEk}?n-{h?>R8Q^^8o7u_FL##HC_U?d?k0t|>DS-gaz3dfr*B)5bwuNipxh
z7-ipk<>waSm&rT{bW2$y*KL9!@r~4vezZNnHp28Bn^hDIsc<IXRw~k@ZlI8c?;Pwd
zs$=QZh9xdx74AiPe4y}A-00w^n`n0LD0dL<Ow>oaL&4ZJdFeU7fZ^`42ncNr5q%-Y
zrWzw1X+Nz-=d^!1;2RTX!zPW7qSiM<bM3ebDYA1=2H`<rCiB^%eq11Yt?nHfT%r}@
zV5@UTkotzlI1z2Lm|lk>=npT_rC&Q~hlk5ans)gWCU^lMnJy+@K8lM`b53=rjlGLB
z>e5;7rTx{XFs*&?J=D#vZeF#MN?%T9E1OdNC1&(gGRN{xga5Xf2bK?oLvo(r9hZlf
zk>xz2t&K#2TK5$vx5eM&&b=jEery=(N@WtX0ZT{(si7Tl)npB1*6|@TKDxqazM`{-
zE5N8(ALZju9jF_Jli#VPH+_}I$Aa=O_c5j3%M+baBzI$){PX({@;PgN=`2kC4`#kJ
zTDeocS~5U6*$e0hvSM^U@SOGuK*BJ&rSmBA%EHlWvr4r(=it5aakFXBV@mQ>Qz=*I
zBwXoiJa}a74){LXU1d=7-<f>J^SnJw7v+4~(RlcIP~|AjJ*5+_(JsT)<Pp;WJEzcM
z>sszW+Ujat$Va%G`Sc=L8PBb|eupaxuw*`_w|*&l#aztR0zrR!Ypuq%Q^>|bw@!5q
z-!G=%wXtH_q=b`Yvj#6>#;{?Lr}8fyOFlkO#Nx}4XAyn4Hv210LZ2YHM1q`&3Hx!|
z;~H(06%pW@ej4__XQnp<imF%3MRYA&y-J(|5Jd^Iwqcr}m|#FjMb2TQY`WVIrL$Ok
z2>@0%tZj~Y!`$G0Wdf0Ww`$_gMlX)7%q3bt`=ntrX=OWW)Uje~(fvsqvoev=9jDD*
zl1{a~4Q0e`Bg<1IWx2e4UDk%nO)PL+nX$H`pcMpFS;PC~JKlvl=>?9Q*al+pht{=p
zxZ_^w2;`{K`AXAHV^M6`<z|HTM`T8wdAZ{cgHYTph0;qc=XL7!hZ)ENCfqR9yQpbG
znvmpeTqJw<Gp3%vKKSDr#>W#V2V8F0lcX-$-0ncuXshw$Az_*Ntc#2><&sdmajy(P
zAphNj)wZtl#m-Y$C_3HA)cat!Le?+sKK#$U9i*>-;<QX3UwIr8ssn%wbY}ado1tQW
zii<ZfTUV;q#+xvsywX~V{Y_x6eJp2`^`%aFI<ZMJw9}GxdzEte*^|CyJZXr`<{n6+
zb0!cKovMJK*ll6H!Nzls=Ir_R2BoAzli|cCffcW!vtKA?8K%P%){q%YztR+!M+DCD
z-(|Z!xngZ3X80sqh&6I$l<>9#{17hR4(F=#A7&)G(!!$GFmN5v^GZ(=_DyTGz=|_a
zRvHBWy=aoYmob=-Rb*K$N^QGK{E23T3;LQ}X0|jl6r&?NFxW$^L@@=yH7-wzM_j6O
z8clIJhkfkO2;$p9NLcZ7pB2widl-T&3+~@nd+qjxa&^lN6|<7OEH3LF)5-l|8T1BJ
zU?3O{0`|#E`chX!Xu-`Wx}}o3B>X~!cgaL4EN7E^Ll7rO2_+FWWm&R&PEJI^m)={}
z(q8X-_E?J3F=0}QK-HBg3*#5&ZL&(?Aw(D`5Y@w%nOc<WEFGIA=oQt67<TEY?Y7e)
zpDD+x*`UfZ5ifG5dE;2o+RO2a_eWqUF_3JDI_DbY9fC?-HGlD16H=84F)7NzXs6@6
zUuO@(brctljq#VHODXiM%xh>kx+^f1_Irrnnjw3WIj>L}&RY=qqL(OVM;X{uBl4*4
zb6X>Ze<MfM%gl?QCjFh0>-}PKRwyULM1|erZ?4e}$*k$KXlo$!diiLFlziYso6gP$
zym6e+62P-Lv@;LVG7a`Rj|;0RQmxe4i4${;5DdKWGU|laDtX*TMkOwN&lmjQ41)Xt
ztEf`TzOU)Z0-{0$p%iBpB!TbI2Aifr`4tKQG#glv0_H7SDGyPM1>oSYsi$q**XWb@
zVQI=2_)wh(s2zm}ReT9{kkz9-!Rtp3Ro5INF-Z|~xZS^OiY6wY4cg9b8<if(+7GjO
z6LX`?@}q1V?v0?wanK2wHC9MhG3Lm}U3{NYb~TVK#;TN|K&a_S`18i{X6gzGCWAGf
zZAU24T&2Sl!gDEFgV<>;0g|3b?Vsi!#SFwun|m}kM3`Peu;4&!jDsx`aqNi3c5)Wm
z5DlAaNEtn;rIh$q$4?)y%T)+>!opW!ti-K5L3qLv_2TMM(>-jD#%Zrnj$mH~Cg8nG
zg6~kF$7PKTVq2mv|71>23c=?-;THZ&d`CWM7hXvCe*F`~oQ$eS^>4wx@KSM%Y&SIL
zOM<74p~T3Tcx;a<sm5WoQ2ApjLG+UdC7-F8(})M}$?ze`49|cgvO<Y30RkvMF7{6^
zz<<~O5MV3t{h#&!;lk}d*8il*R`^fb|Aoc=KiL1o_@A)<$>iU%{9D3y{!iHd+_Ha3
z*gpTU{$E)COCH<%KiL2OVE?D=f3gPnm%PY-!v5b_|4UxP>pw5@Pul;IupRzm{lBpO
zPuTy2@^4xG6ZXGF_Mi9tw|;2;^Vt7n{cnAW*!}0R{|WnF6ZYRnp@4xRv|Y8)YZFM?
z1=vv|6rgla_yPb)3X`+~-~#~cyu0GuR!Rs%k(ph|%39ovOI&Sa;gei@VQBE^Y^o5V
zyY;gl7ISv{K?<_8of=1a&|u=MbPEMxR~N2ywAvrnN6#;&yBhEowv~AZ+57)QXBNi!
zwcLjIQ~VwDdM9QyY=EQHhaKOs#a?U;AD3Qvxi1Qs>z{qUb}4z0|HqpY_VLPQ|KQj~
zpyrhUf%u+*s2Z`g0D)nBM6blL4D_ty>E&y1Dex<F7%dtg8_wbjp(d(LwtAK-=IIuZ
zM+vyw%KC5ogH)3hsgsFN7ON*qf0{ZqGe8o-w&2@Bi{pEVWxtk_9kgM)t%GNR`1!23
zB4Q5(k6!5Sq_R#0f1P|$<ivnVg`QU?lr{*Hf%`u-;wiSA1Q*VAX*9X<DZkmP2DIyj
zhBevLTr-`AE>E-^2%++*HeqE!h4y;|b*refA+kkvvavt{5-~oVZazxfKpTJ~Oe?Kw
zYo08DM|cEL%<l~hBpE)ZC({oW0gsw$f1W^s*3YGbK?h0wZ$8&|hLc`>+{1KX%iC^?
zw?FZNIl90z{GX3|G^0N~fUu_x*S%9m3e#&~YHGxI3K@bi#^dqtHZRNGNr%5+rCVod
zQ-D)PP|tmLRxlH0>wlKutQn^u2<{}HUHX9aV>SSc?ve=cIkN4*0r}Z}R<B0*JOdEP
zja?d=e<`)%$62^=^+Rgwyi1dtB5s2;;`Q>U0Uz`LS~&N5;9$7AG?j}S*^%8VS+u?n
zpYH8N>DwEX=D0px2kYoCyBQX&4i$N><$O~&`>ws(g*dZjGlNlQw!BC0{ECku8<=^N
zSJC^Wm-I=jok!|l4WP&LD)9-ic3~p7jH!Wo74o=3SM46q1MO-LFl3fJI!U?IN0UrD
zq;_yxphFn8cl-J(3(CG?KS<TymqREb8+C&Mh0l;QYSDCtE0U#{|KWUe12`EP=;;Ll
z!i$M=Ekr^-lecoSiXRmuc5q{8Pn5^f2jxeQD7sY843VKZ`{~@EKZY#AtCBf%#{fNN
z$ed*V0Kcga^rC5w=CaZi*<2W3Yb_IfN22$pE3YBVStLr6;(nmxZQ*l}OO73ocP=_F
z?qG%A6*}R+SjE^)omu3Lu*q3wFPCJ<BdXuM2@!MuVBmQdR6lNI_8>P?Sm#NJ?pG-6
z=wmIVMKE?B(`DLfm+de>GsdMqg~Oj3r!ypB8h+Z1r<a|xfD!UCYV0v>O7dA*W8PB^
z#7YG7@;r!H$F<#{(&Pl28I~t5S)WnnF42M5`VgP5AO0b*Ll(Al=fFRqRYjs(Lo;pX
zTuX0>mRLp_!UOMeiS0NYLxkEIdrc21^n$U->B`)F;zddT0oXXqx?cIm*AYXX<Duv2
zhY;4nc2}qT;{@#eEYs4#8n(A|TQj5`JKWW^MD74+{tiF0&3v$2?qGiIZ?oQDiHtSH
z_v|kc-QG{Z-<*vc@0WO!EBU>N5OS0c5PB{3&iZ#WdYK1RkPCDbCJ^3_Y<)rdSwU&K
zIz{7vF)lSVgQVs@m_Iz8Y@7Q|xn|R>`HmJT8#H)FXU;(}W6LsA;H%#p$)v1NC>5$6
z**_S%I$5N$mdBk$DpI+yFGMf0%|XZ{mb-jWE|Ql$)eQW82h9xm-On5+&HJ7wlXwM$
zq{YPpAZ!HaYpOs((%QB);&@2Ytp=7!6PZCN1#LqPzxk@1>~<LmquJ(Ze80ouo!T0K
zb&70z1z+}wPkw(K<PEf<R*#MwLLtU)16F81Xvb5y%CKnawPYRrZ7bjLTSphUPd{Gm
zNvL#)TaEpcXy)__#-zi}2+HOb%ulz277ep%tr7|bl$Z0UDTT4?YJdBtP9Qh3LVFB@
zd^o+enEf^Wnq(SprroFqcz)Kz*AA|+7Hre@<HAz)@`NfqTF%Jn?OYDNU}9BIy&gED
zjgH_~R0vrvQUVyA4BG_0O+0-NPzGE8zY}=tWW!8;E4`Qz!l=XVFzB`}Lp$AOfWTd~
zg&;XmwrX?@Gp)IIUnc2Yj0-(#Q?Q>Y5}AW&NCwa|AMxS0p+jUwaAJWMcM&^D*doA#
zNi1T~Xhaa;vZoAka!g>E%P8e^rYHH`R6>S<tzX~6d-81&614XBie$jxol7~690z@<
zOFz&X#|YMTQ1t;ln^2`61#d@Kf^Fh!UeD)Y8fp<Eoh&rY={F=$pbeUT=bb}_8211X
z%DmC8-0P4}ahzFo4l~svPNi<H`>syd(Z?)|Mz~udAOKsek&VX!H99vUgQRRd;D}~p
zoNkK4w$i6P;62BP=#|oER!)}(BbR!scCr=%?s%`(?Y+&UJ<{+>DrUG{I|x7&q?@dq
z7-L!l^%nEJ;)Gr9BQaOrDe|l&Kqo?P0Vmgfz<!}#HTq+&LvOxF%Y6EkUO*htCEVWX
zxlr}cHJ~?g&=2}1Sex;5I@g7PEIcMzbR~*!>;Ek)$Jhf*Uyh(;U_CyD=z)_+D<O!y
zGHPem&IqA{33PYg8nA+=Y94jbgMpc;OK%T;GRZwMy98X5NpbjGXD=(NZ?nG3DtA@a
zFI?<D1>2_$*<uFNO5Mx({@F6*h(VD@--S><#gblj&G!03F%F!d{n&Ij2%E8$tWu9x
zID!7{A80Gx_v$2LL#ZGK-PJdASsJY6BWemDLOPMR<LO935u~{at#+HrZ1hbP|DhYH
z9Wete>G(lHlRM}nU!l?Fm}Nq6*?<bOi;LKTAn#I4eY7hs2Lp*w2z+?M!?N4m%(vE_
z49;m%c+0LF!)WCL0dmn%{<#5;%r{rb;<VQv*lf4~L$*$Dm%_EU8#7<M=^n$NuC=qe
z3+dQ3)SnVrP#_y;s`91%P;6e#6#f~A=@?TP4Tsp;$&LZiUUT2zE!E@(`I7`FXY>fL
zxtZhYo=s)aYAans$)LO9_!);oeQP0@C<$0v&FIkg{q*JR-<F-CFN(E4Ky}-{sN1op
zF6eHWro+Z{I0BIxmQ2T8N;skcmSpIHA3aFs$bK^KG1tmk&H%_?O4uOz(gqxyL-)e`
zbB{4uLTfM6dZ=sQS6!nTuN+59t?aKB!B(4+Ynm$+VY>p+L7MUDqu>SkSuDtXwZ0IO
z-Ho=lZ>wZZ*@M!?-DwLoph;|m9N}5aTGkg)ZBQ$dx3RJFBTjm953|wcEN=5VB}G~h
zez<WAiPA(Xb!n2bxO%Z2n}RrV;kFsR$z08New}BFE<PS&bfeKI2%wVc2p=~M2b5v!
zg0T|$NfJ#vM_SewAV>Cszp?27L@~TX=9ipwxK=rBjxd!87=R&TDvafF7ONv+h@v`J
zIdn}+u#1vcakpB}bTVu)W}ppgDI$JTfl1}6y4PM)hwkjk&1ZK4`WZ6VZY-Gf*=QtI
zpcQY#D_Sb&;jc*6^C~3dP%E=$TrkUm3bMU+vKK@pStvsEkrtENI0ehhzojLSHuC6l
z<$lX0*`wxrqL9<kj%|h@T_M%}A&~;!U<-xOgy;RGI}M$Y))O|z8t0(8!gzOQwuJM%
z;zpJtv7X?MNt<5^7AWBE(E2#{s#?2aUj;8GOI|nj^;$___s7xm(N5py6$H1&+835N
zQJ`hOMD7^W(f&CQ2vi{w^W77zZ&Q$m-{ha1Jd!W-;75y!AuK2i_|JmA3O1Eoz3fYi
zoe_yi^$o}}<Ru=S`87$+co4<%XD8k|p8$r+zKA2He~61k9Q1i!P92gRJn<gc`F#IK
zK1S{zgb8?Kcx{;1_9<iFdZL|j*ouwFpb#LMv4vyw`*oY$Ph8i<{yJ7x{M`8yn?C$g
z(dilgAzSBp>sc9n-<v7z$b7zqnr~`#81N=hQW+;xb#2}a&&?nH9sSFEOArAxhP|bj
z&(q;o;kly+r16WQn8AWq7hZyKsUkclr+IG{HhR~4QpB3x&O6E!ZKp%#RNESxZUQSs
z>^}bDFHIJ$=$!F3ZE7f~9p~1+X}$4ps?+%yb_c*pLBs3OMPb{nH`W9*qshqSK7ql6
zjJY+ABUC2}LSlRGZa-_u$uS9NFJE<!&$Kl2c2Oq`^vEx_icsg~i{671^{r9TBAPzO
z586R{@)c<2;<Bw7DS6uj=^?EGxES&YzE}7}<5X-l9diIeyaG3{gUGHJHKKuVGkhE7
zt8#h*i|p0D&G+q!ip{D(oE{H5T>aE{nsb608)1TmMp%Cb6YrD~w!eU2igobZAVgI(
ziSql);S<Q5*9&|tB>$wtv^Ws(MwT32Oc}(^LXepca(3qUt+t1N)^l1Zl~CCnq%5Q!
zEj^|$p~-A(5l*`??V&i{SCc@rMJL>yYoyW<9&iB&*W<qRFU9iikGXSfj{^^pi;(!>
zAq0A1OOQ3RJ(d57IXM;Rl}Q`kxMvy_%R5jO;v_Zw^K4x2tR0V_xW}6&QhhonTj^ua
zh7ND($U3txa=RIo8PxAks8FyMAwTj%M82LuM;1IjyK<BeuKTNW>QaWsD5>R&EUoQy
z%6ToqKzaay;%mpFC|58Q5X_A}DylJ=i_tBQT6bZ#oG^VPDIrzXP*8Vg-3Dz*^gX){
zuzX}yJNl^#bx;inREtQI^j2F6okWY%shO}Gt>C$=fvr3xw9;ZY$Yto#CybH;=X$H}
z{fCqvAETQrUm-k(yQSyA$-10=#KnBWa)L%k_Hpipj|<%i5hwlf$`;i9=u2pr7@kDG
z(2jO5K9;&+u&2_yR?r*h55@~QqS>L3J1p|s1d&qPP8%8!JLkihgSznxNX(ua?DBh!
z&*v=|XCbq#6*3zi-Q<TXz>icyH$}D0T$;`~g?YC;i!8n{^sD*P-CTSNf})mF1>B^J
z>EdD!_U{gOd>b1+{EqfkR(l#L9{Rums!75n46oeR9*%JHE#e@V*&g#p>_I6#2@Mbk
z3{L06Wley!{_t>u(t79)D*+(rIfbv4pH99vS3(>N#SYU^`^H7WjXPWPL$GI<f@;55
zMT$kxyFY~i@Vi@63m<*NdnT_fh0NH@`g&dZkM@LFeRFKq*D6vSM)1wco7G;mrV}TS
z2Vr7}KAk35&UwA>Jxfb2?A4Ix+HubU3k+3J8%M6s)I(1@+J8*_oyamgT&cc_Pr0ri
z#zePvQIW#l2p^C8)?O-S_S$U>Is4vmCkKAmsVf8k0EAXWrA!SRb>|C;bK>#vGs8}_
z{v?F8T*2Y3a%N|R0sT%8T0vNa#!+BCzh^kQy@kDkKNA=TWvF&g#dSWDUGQlXUFRkh
zY4-b7o0r^L6~?1)9^gFf@r0nD%q-4vIqkvULZbJ&N#*ppC*e5<N=4tn8LI8a0a_LA
z(uA_|y!A8~cF={96;1eCYR&@`+Bh&v=slv%$&gf)i^5+!R?w0<6s|_eJKJ2>jmYO}
zXwUd;xkasIuuZ}rVRnA41{)<t`mAOwuJ17s%B9ajj;-isvP1>FaRI=)xwNCU5JyB!
z1D@i|MQY{v8zEX{kUqT|f>E=1KZlqsCYXH>+RAz#Y|=XO36?nI3R2IjS}R^Xa~sbz
zwt8bRXoU{$u?y=s<gf#1!jeN+guT9m7i*=Gg93vKw{G_9RygY0<tqlg;|q1;0Oh*u
z@}nXFT-19BmU_NYAib*_g#{IsD=5a;+zB-vhrDgd@XPbFYZQgpPjy8pGWuTf%*7*b
zEW<B9XCDea=>xXVYFdG~{5xw2Gd=6{fG#=G2X1%=t}g~s1G<DaMTnYo3?%rKp-WS)
z(~^i$xa_gqVoSfxf4ll7sg`qeiqYNN^La70?N1>Muk6FtRTb?L^^+qOYt0B}KEkn?
zp7wa3PR*|h%8S~Xt`DAxQ75}05_obH+~|8peE@X=2D2nGSk=?~V1heK?JmSvP(rB6
zKkyc1+%Exyr?Q&SRRwfeG@#A#=_hG}!Hm!YR~75tW{VCL`EU4!CR0a2iOxq2ptT<&
z{YtpGL%A_JW5gAOp-#StXAa2OH^@G-hT{gyIXv7HZH}7<FnPd?85KLdDG;QAA<^Sl
zNhp`0z~$hC=iPQ)i_#~5JVtfE(WEgK(<OcO{$?qc#OyY*>P`UbVi?L(W3_*9+;E|B
zhCcF|Z*Oxx5_JtzJLZaU+e#ye$|Ch_CzXur12+yN42UJ{EZ`^C5Sx2=Nn?}Nn9Gs;
zVk%{QdQ;8Fp5h-FkR&rJlBSusX5m(&JKy#kW!+?CBDMuoxgF9`5gKW3g=rSdkt|lX
z7mWE+Eq-7NJJwUeru?>+h~40rv<u5oguS+8(^G30&dzov(te9X;1>;)CAf?&q<CsV
zhI?k|C)sF)BVFW!;b=0$SP%??B1Phpg2?$^mUT$@j<vc8k=~Eh*~~3MHKByv83518
z=b!7->fmH{{zn>3h^O9&Dy-lwh}6Hf8SleMV!SqcHUnelcM3DLz-C}uT{7U`TH793
z7%6QPPo<>3C1)f_734YvN=bcQ43{jCwi)k}Z{_zxOUl_8x|yJzihkm;Gzxk9TYD_G
z@XYicA8tbJ*HY<cCTvUhxMz`PqWp$ljOx@!<1<PR10b0g@LSXQI}){X442ubYabf?
zkmzUK$Kq<CvN`oymyR9Bz|QWs2@Evw;5nbNZXiLzUFe_UW#r5*V<;WskS0r7BYnIz
zpJYt*=1#hO@hM_GYzz>QbqCI)a*}Tf7?Xn9Pm=HxM}MH#m#)$gU)dd>O>09w>4f`Q
z|NFPGiqs?>ZCho*`}ZPpUP{Xe=Ns>ygnn&<v`bUvQk(A@=c3fg9rVeI`JfqA;jQ^N
zT&jG^1y2gK`Nb@bteqsmxy=`6=%XTwq8GCpX$lU;$C|SqtdLgE$w=+E#u|+30WY4@
z=*^NfPmVfI&!T4av_jv!QuO@ilq^UFS^O@LZX+D|YzccN?g+!XtCldlKO<#7WNC`!
z;CA2g7E@G)ODizzNP7686+!!sUG{{GE3i5u@54tG8Z&rzZof`Lbyf2tW|IC)Xd+85
zk)HZDe-p(^_U%?wp%+OvF@N|S<`C~ec*caI7K}N}Q)bXO$CI_F=<b!Wyitf4g%^(E
z0H=kj0y_cOya#H&zjAe#NL9&FU;1zbDh%%F*$Rx!CJ@MGGb39i!OZLbwtBFlgi^ND
zuVMIQYJHL2_~I$~`3Gs}fD=Oa_R~WW$t(%$s6;bp)&d9=vZ&V6<Hxe0?cuCQw2B6`
zvs%z0*ZO1{3Bxe~TIn2<UHe&ou6<?1XSyXZHgxmR2ZLSuGat#=Rl{ksVL>1-X{O4K
z&Ct5i*ZCVV%zGn|#jcoN#~>v<eA1$crGdjh{gX@u`$6Gl1Wqz8ZnF6jr*5B@wiM`Q
zD(Z7ceA1GAYO*`a;w4mNxuMss=!0Z<*R~um@EE!6xBHf#=@bjN3)fjEDuKIdizGh@
z{25upH35!d@E}6v;BXoBq)V${$moFajMfY@>iJC~DpsvUkCpLuPGK}>1~_>1m)8^O
z3&xk9FX5dJrR&<9Xh-UrnLjA$Rt81u>$$G!MC7kOr*&S|&sNWk?|qB<C<1h05DMib
z$BO)Hx&|=`c?NWp(DbOi8A1%!WZ|Vv1UgiyEkY^=Di6~|aUbBQn-DK1(d>V>2Y``E
zBKcv!&fpNmkIM;`;trbnS=fi6&wa7Uvlp(@c`#;25yT`T5r}IdGH?q>jF1a-iM<!&
zL?Z`ybbvchIXPNVUkS~6T|OZPvNNm6-QC5XkiwclA1#|D<a}L~tJaWZ(}UBqv8b8H
ztoD`v%BTy_csQhN)=;_zneovvlo03<xq*)dQ?W$4gF7&3V`gtw$5qppUQ#-*44ff1
z$<Gz0j@U>_O7`V&SPYSF6#L_WO-s#Fnjf|Sp?45{uAV!G6Uayt?Ow!khRg3k0)t*C
z*rgk~bTT8JVww>NSQ;rFQ|rV9%4+9(zb0(RBy8ZQ=3CQ?&lR*Y#GnAtALyQPW@HtQ
zfRGg0MCp<q(l-q=5%F{#5m_9`y5<^#xlP5dS`p<EqM8YC>v|pH{^qly7>lc_XVaC5
zWVCZJ7psvM?^&;lC+dPnqDnnLivYF&@Nx<-TFv(Z1SR{+xIh_evX$P$L(vTl#OL@$
zd_~@V0DSnZ;Q?pkmjEPBRzSeWSSsbKqDxoD4}L^ww1?CJNMk$GVngaU^c`55LcWiD
zN&BOMitrZgCxz}jxkM+*)ss}*G{(6kRzlk8_@>bsv49Re`|gD^jU0YlvjS4OVajw)
zdRdx<<9nnC7WtPXFDfs*q|(9OuBNC-jkrMp{+=c6_|{@@6U+Gm7su8N$Rmk8#_5^Z
z8&v{Y9HItGSCqk=HlRn-E$+~W)=Rw_ao}6I1PQp-_o;PdZy@Fs3aUcZbfSca0-@+&
zIxqCF&h5dLH$fLAZ@9k5hwkLo%lRt@_S<9A$&aOf*`^c~xPI<c5R~kA`@OT$c&-ZG
zf<=oiOOJNQb{No`$zGX4vWh$PavW^0LH6`y#r#|>M`|lHeU=A>U5u4@f}tf4(S`1c
zg>9e5uZB!9+G)xVH2Ux}xA&EYicx+dd%$N}#cw%%Yj|WzD(ZUM63C0fEdRp(q|3d)
zMvH5WUK4UD@jr!pNwTWF+j&1@wB$C>^zS1wtX9+pTz?uOK|q16yW}^dsYO~s*%I6K
z>dPc3sAC3ryqLlGLc$ZSe@DpEA|(hV2>zbw)>zqN{Bg%Sqa%Lv>6+DjY9b^0<ez&`
zR|C0*p42*N2v>Z%vB9pO_Zo2;cHz%q#IJw<VW}QC&Cjz5Hw4NxHo@ygU+Q%>dg~o^
zxGVEu7e>IAUv@inpvDg{NB(Z@*S%;f4?sf}D2AwC@FtbLAKx+j9r_u$)tA9*e1oGH
z9d-pDmtDPl5s*#<ogX3Jd-eik7=fqhiEOQf8IemOWnP+N->qu?;#uiigoIrF1@!8=
z2s7p0E_L#fgQCzL-PH~|zXgbC6I?9UcF^%`7&(?Myv1`47*ivKS2S(SBN8N`3Rxq!
znRzd+5@;`79nOzhaoPSR8}!5=c)WKCoR3Qg&O8gaHe0}sB~bwwQAAzzBU`ZQ4~XmA
zsx2k5$||6vPFk^IQIwL(A;KA$vNk?}QY197J<v5n=!%{3VZRcAGwsDl&vS2K2LK;P
zsb%fr?53bYqLJ*Biy_|1ySkQ0?A0_0GQjFT6#p9F!`p82(0Fhq!=<(pT3YkMv$ECO
z%AY`KZ35vFHNVnMNIF{%Zx5V|1YiJyDa?Zg2)$wiIkt%Xp)NZ;(WTfaYnast7C771
zR)XZx=HPr6M>hFY*@o1(8p8cXOf4&i_s#DstVWM~H*29iQ*W)`cvzbv#VF@%%?sWH
zfiH7t$9VfO@44ZAbul6(01yPh667A@2<_t%%_+uGNng4Aw$VbK44fgik6K+xa<huA
zJnpV7Lyj+7HXfopSRy5p>S3m5np`txlM1O_0R~-9*71dC4rAhf6QM=PH;Zz)v)RBX
z+yhK%LElqU6U}6G6mx81xJVLMy1H$Hy-)%=XJdWEM<&o4^w?oO-I2*AjSNJWfQj3r
zF~t#tL3Hgwca&x?f*Z%si!G0Lk-=w=c?pMv;$@e(DB%XrEEABga%eDd^oY;-w7&H@
zl!v;KV9CP%XxBn0%JKTmGzD$%mVYuw+a#Yq`^@)-@U)Q}#5hd%7%=_YKMxB1dM06u
zEOe@{T-y#BDtSh(Cd9L>hP|HEMgn6_OeM}{yriVDkmCoYtUm$=Xtm^OUpWJ%jxIYw
z{^g`Gd~+Zp^Zrwn$Ih{pb{kSr59MhZrD+qj#llFd&>T4+O&;%WlTVH(ZySR?vb@d2
zbt;3K$GmdpC{JkC-ujXWu;zFJs-Wx;mDkYWh3go!P`^O6zz$$|kUgq_Cr;G9*ZYs^
zoHLa`OtP=rMHqomEj=kdBAmKEG2zB^ScucWv8y&}Mw8=@ChrHHM-UNRoC55+mnP!n
z)CS(7^ZdtLS(e8bavY?eZFow;ZQ<Os=5`Vr4(g0S9ybP|P;DKYB+oea&veQB#52to
zeIq&WiZ4hjvx$9fvr(U*Vr7)a*ul^cKdJb11-PbziY1qk`q|i*Kem1WqN_WqPXI8_
zZqZWOO@E>vsP+MS?xo}t1;l9j{x*YUVvlSTJ5Y_&wK$nqMpEE!5L83(L=z!tN`U)C
zg_RrVvbp}rop5ZGJ2bxOw`0fyV8ivfTHLZcW<^e8#R24PAe*IxJCyY)(X)q@sXVa_
zWi$CfB=8tqEa*;)oUIf{AQHJBe=(UV;7D^onlB`KswLbt&WNdOGgn=+h{)G5FIXq=
z5fq3*HAh5~iB5kJq4kT*EoixUV@{yj=EJk#Ylz(zN~R+OTXb1h?WnabX0(ZO#Nyz5
z1)ldI<=mVaT=9-nij;{3HqXfW(eXrb{a|Rkm~g2B_E{7SnCnjZd3t{8@_kC-gB}=D
z0|db9XDH+@l<BnQtWMXGNxfro{FiqCVd4}WX3Z5zX*WT<t?L2hFtfbh@d3LtYQGQL
z6jo4cx-Z2UqMP%z6M$|03fk?jrk(Ew{LnWB?Kv&@$V-|@ZTNGgFgFbRGtEx3U_TbS
z0TBo9Z!nBf$Lw}<ZRpc=x+?L#o?Ep@UWB<j)U^qUo*73yt-W?`24i_B9<9<<N#1mq
z+V)Xj#j9PUm{jR=ncgmKjUs`a0D6^19({JbJs$2YCYw^s5wO!wIQp!YPD>HxGz2FZ
zZZzWrRa{umMeTdxNe@DK92kHEfD@)!YllFxXflm(ONpBzp#e5E7t;cUT58Y7c(^gf
zcv3SrQpDC9w4vdHBr=f1sq!I8hEww-%3c7z$9rmF68045YwMR(2jw!NfZm9J%%!#V
zQ$YR5#Azsx`2nZF^0Ysyaj|iS#xSz$zS#+@J$5GE{)`NE2N~?mE<%PLSQZxn#||8*
zrG*0@)}WN>B4{JEpJ88lJ)0q)K`(3#s63^=0%$GPe|4M(YSOBphAAO@y~NgQ<KHKv
z6|0Zbo(zjr;Vmqj#DH7YtZ}fIRj^$&+2C4~ztrHkgDRL^3E`sPa`m)-s3`+KhUN+=
zqIdC8BVd1mIF5i54`sgY8Pl205)fW}6DlS-O`KN1Z9jPbVw)6J&RMS0V7^rVp<GCh
zn`=McE*7QAbCcp%ozs<6P7v3w(WDU!8B{`mo|d2tMZD@>%kE@eBOI9xXXDWS<ID$u
zW(_s|GdQS@=wz6pN0DnUi<tI#G2cx>CH1#@m+q6BF$9aGJdGAt&_5eWTq^ByB+Dbz
zo*5DUw1*T*P%9_0B)30S5KN~)5Ua}+WMt%uqrjK>>WG621M%KDST5RR!(DIokAe9N
zY%oEC072Er{)8q|$Rz*UaLSj)_RSnFi+RI585oX+iTU2Jgg-+p@;+9+2p_W4CU>Q$
z!#creF2o?vIm$DIT84cBGK9-4lHcYSEgF%~Y;?jKjK}ARvaFZ6bwpFMIhXT<r;d0D
z7pah6p*xnroJnDXyG53{?ADN&Gau5Y=6f(~W;`4ng@ZFTsM0C{n#3#_sxw3n&N@TC
zV5eU^0^#>t*Z@>W5<8gcpbJ@z1(inun<SHlKJiV#jtZ~GT#Z)F{?^#<&DB;lP&dbn
zw9HOb#6zbi^AqQ+QdMIx>GIw1V%G0|Y^}ofC9hnCi4p3P=#Gwxv5xfo4O}6QD82aK
zUH-4hy)I4(ZlSBBZK$$Jr-77iz0lcTQs{;9a2)(gwQTx*qVO^v@jF3U8m)Srl3APx
z`d0!#;6hF^)KP=sD+;CR?Qi((-%NIPf8#IkH1FI`h(4psC2gMbz`74IT)Vapl37T!
z9A&pKl{}?Y=>$2YZSe!hUGYu&y&Th0_fcjmXI+8bb;>0%Vl-S8d63>o@y&O*g(JBq
zlO?rd5|t81ugrijRQ>VUHuaF++%!?VW0vBQuS`!7I>x9pT@I)TLKz#mkyt#at6ATX
zM4V^{Z0GSWM!~DS%rQ!bx*wf3YEk2eU4@8x#nt}aL7??hxpesUQ@8;4&ExHMy%V2P
zKI2XLW?c@o{ey$+U^)J&HYx%JugS(CLeXpbV2h~^N6X#XdN{o&!#XDh<!;XfR|i{b
z$N=X6Fj+m=UY2JcKvM~VZpT%%j`Yg00BXd*a*5f{j-BJ0j4T5R*tn(<rc##OD5Nyy
zX?&tA%F@L;Dhjqv;hZgR`>E;O#bIV~3d0Y}Uy(?Ki!V_hWmc?F?XB;Lz|m_;j1SDf
zNbb+~gOE+HjBf371)2yjFsO`#$z6&LysKu?lS`>UVt?n9tzGn^r0T*d3V2OS6u8Ss
zlyNp&OWkY8@TSu+#kLon>fa;bx7q;v9mRpi1=IgP8<c$klIHQ{wGRd@GFns=uryDO
zIRVOxj`ko%HCx0k<e-gf^l>C4+E2~V8m0lnSl4mYgU`^KVs`-pIK={X@qO|CkbQ(}
zXY%XiI?%2py+IJ_vrlMWIu`Z?W%dL=30<@ub>M90LmcnXEtRJayYKF<fR*>X4GP29
zixIo7!T06ofH<rJ4%XerGes(?UCzr6puh2goqMtgjnTz6%dy4U?p&{9wA3|0sP7Rk
zB@4W6ofe{M)})16#GYNo3olp=UH*auWq~FIuX}BL_lqK0om-4DvDYURXvX3}Y&jK8
zY44um5L)(Z^jHc$P}|{;G7kH#7D3U5<Vk_@z$I7Ao{*zJt&2beh(5HAnAah@)1|Rm
zL&XoMrbLD+2xaa=O%aG9XCop>30scfS&xlq%yKIySCR%g4i@)CkEK+5w$dQ!F767J
z1L|j_Gf~EeJHXsJ15N;1>hC`9NdR|88H4v)U3f&8x9V9+=u1ibYpJ@p@}AG}c)y%h
z>RK>MP$<6&5@x^lhVh{&8<)}f&Hji!X+@1cLn6^94A1adRBk?Ode_#KI^+~u<P6dX
z3fE4Rj3dsWLK}oYF?V+&C8(*b(&wf07$avb!9wp>jjhsxDdYUkl7@ZZ=3;nrr`Sac
z7!Tx{AW(e`g}CZXbq|VA(Wjk+9rh;)9~<ltu-nb37D3_PqbTI}#U-{Gz63SdXO^0)
z?LSAjMjU+I27aK3B1%=0y!pBB*&1z~)m+Ug+}AfzzfS--Wizd=Z@v2jEY&<|v%8Nf
zhx4d>J7>ofpM}#lZ|B{gL0*aVJCQe=YZ;ifCD)Vj_So8N>Npq=Oek^yaYJFjxMer4
zb@*9_yg9b|l}HX^@IcAUUxBH9bXY&VFJI+Aw@tSXnA*l0kij$bO(B2K_&(;>(<wj`
zL9rWQ5$;Ku?1~s$P*e=9P1$?nQQdjm0PPVpdwocMJ0fb1H{2mSA3dCMOdBn&={P^D
z!OWPuzd#kwE6*$aZ8Hez#Cp$E*iw08VWbKeNP@TpSNh_<XjY>}f=G&~4`oLuB`QG?
z1#-}{JTwnZ|3ZH&^&qAY3x*rYomHnEJZ5@r+Gi4w?i%kxdYx^U$G)@BNfpe||3Yol
zYRYrQiiEc9<4~R$O=n9mUXFA=<U}bFgt1GOJ6%**f3ffRA&EvfOVwMjm#Md#irf4X
zRB73y9LkW*jC<xvS+Di&z5p+SE2L#s>dAg}HXe8%>+4sGa!lk!zNj6zaEPD5t1Yjk
zOHmJ8Q|ob0Yz3x8*ow*byJ(%_>jA7v{dL)T_Y8CqHFliPms8(q4JQJTnT@Kk^nD;i
zTCDsSjHgz_!<`$b0Tjk6?RVFtd*Eiqm$#G$=(YvOw2}Wg9k0-D^3EUceEQR>d(9&_
zH#rP*DD&j<ML54aRxZuJ%k*(L<f9PLBM+_wjh#KScypp`aXBF<U)IACx9Fk!-)Da9
z^D2SCvHA{nuoB=?*1$ITEK}SoQ%k!U?Y~+Rkjz_!VrCsf^ePsoMOc!tBk<In7tkK<
zJW)Bt-%|k<;@=$2EVd+UXp71w>(7jq^ShXW<VN(jN`Cioqv@yebeAE+M44HNM7z08
z7}$QeURw91hA6{nj^K*K<_vFF!kClHegS4t&6@<ehNFXA2?g#@F?@Th8dUH~vASF(
zpeRJ<`%xV&K6r91M%3Jc)HzINf6FR8Qn3#ltg+X*=yHgOWh@u()Wgrq*P(X<o6@1c
zSTIPd#b-m{5qs9iTrXLV)}w&m^RcULzF+bGs!#!UpqO7$n-`>qmFLL@VM><t8VXq^
zAsV;Er_q_h$Y}%PPdw#a>EKy`qv~&X_t7vsF{4V{*}@KM(|z&kRm{aun;sjG^jzzt
zHK898{(k@?K-|Bd7(uulskA>FNLyCr2*di#Hu_B)E-QFiUrCIKyKsZDe2!}u-OkKx
zPl~M4i#IWA*KK9AYL_LmUA@YI{7XYIByhHMwKoXnc~o|xGwI6}<vRb5M*|0$M~TbR
zI1=>eh)bx!gj_`t>+nNGY;;ZWHdPlbOJURNz94@>f#|jrN67zE%a@3nS459jWa`R4
zAs;H=)l-RHzPh$XDIMF@+C12<>WY1!(Y3<Da{qK6IW8AUq6$yH?SuRm-w@fr!FSW9
z0EM$()CcQ-w%^$)sXKWCy^5NHlKHZM)#>39;CBd}cbDp6zxZSqv69!%8=`^KG7EAX
zctLQ7JdVnroaZ|k$0*kuSOAnRp=Pv21x!W10u@Fnh4~UNVHbF3u&!D)R6On+6ClE`
zs@SqyLx|eEm1{-H)dltzyrOg7T7BZHUj#j02o_^EL-_%Q!L&ptdZ3~V6J)EVGHee1
zM2qdJ_{GS*icbtHZ}A@bQPBGIxH02yMY<!9h&<(;@X&F1;QU-K<p2I9|1o3D;JzSp
zC(!b+h}>E=3VcM0cSrX)V%={ELayI*60kp}%_-w_dlYiZKdrp^Rw3~Q;9-`{z;3Uo
zzLS_oZzty({SBfM^e~<z5hs@pU{3@^0k@RAQu`ER4TKWh!A!fZjmU%I4j|~<XNdY>
zI2xIBTz!;*w(&p>GpMg9tFx0+2)x_{O$4s}3O;}8c}rt97#d_I3OM5N;#CgB<rKuI
zh_`Dju*5M2=_qt}=^z^)7%OG)8B*M8@U^su<Dkb+M`uul08B>rPeYW={XOqMyjIv#
zU#+(FF-?&bLA~qEBfYV*ztzg70ip}J|1w2HhP|$4@bf?IFn>-*{SNIrcBJ!DW&9b>
z*UTPxz|>jL#I`nLipiF&CWpqDSCdVit&`UD!`KLh9Z@!j9ASd(LKaJ?<bSM%jtn&K
zsUb8$j0YRz@hi)+t+qI^-i%v?m}>j0t@9oeWCoTbQ3juWYK(zj?dQBby3hO^Durqw
zP)#L4UYd%h&N@(ZBZGAma23YF*hZPq`AJI+H?Cc2;281^|E{t>OYrOr{QI(eCAPK{
zT~%-!)uuO{_WLV3a_whoRz+ObKw@=5H;5jwQrwv{P>(wn(>AL2|4zUF7Fzw@Jb-|D
z=9CP~@o*sS3-zwHltAJWwCf6y)9kxi<tD-@U_l^5wO~Fhx&SeF;~~JC8$=(FgH^hq
zFG|;3?PbK@q3NagEa>PsJ3sFiDeR|kE^IyXOU!iFDRy;xOP&lf{1!PGP@%dPfo=gP
z`%fuX6+@4nBV@|AJ;bzSgQYtN_DQ~9t@$^N|B@sRr&DmXCsYV2%#7)VTPIDCW^z8-
zY9I93!6A4A8XvDf0TqHW%;ea|Fs{cCEQ%9lFe7v1b0;YCnA>;84ELmAgzDW*Inc1E
z*gGCsay}he$gB9HKq2Ja&ni3I#TO>fW1%jgD%S#T`yYdgcSLF0@|q=@s0~C7fGgo@
zas62EblWJep0h0ymz`d2G+;1BHmxQ0Y`U~Q@JmrQWG8|HAS1DXN-4x&A>dmOM!tjN
zzE?3eLQN=qMmBdrCBE)IVjbX(A*&Nz0aW&g$piZ~L!30G5jeR#SIYYy)`U!<&VXLT
zVB)my3p+|2J_Vka2kux-g+h4ZMRiuC3GT4E3VodRNg>App$fa#t55l9E-^g0#W!IE
z_q>yE(LXc(GJPwsH6U@VR;gW#`pIQt$yk#4boy030eJ!%cp{guUqyPlaur2Jn7e0E
z){T5X;1Du;JM!FcN#LNEaNTJ`=9tbl{IUfcCvO^UBWZiGHHO$yUYnn0XQpIg-1GB5
zAm!%btBY-~{en+~oUI_uLA!7y9;C`+<vd<iKpux<vx~P`KUu(iELBu7>9>N$F0WTp
zOux22<#%q5#U}^;fJ$h(Ix))h>QtdvEsZ}sp<nR6%W)fu{JzW_2(&B-ME79$3<V2{
zOkSF~sHsfbIxE-^7FsH>6HjT0@>`vu;|zSh52`%s9k|b*yPVH5m&1T<&eOa4_BHHA
zOrt4mR6^3T(!5@TBq=pRWsPHW8ou>{W$`y<{&b?=?$GRF2Y&q4#hy<?wKd$8#CkS?
zam&K?Koaqy`7G^A<bIJz;2V9GhTWr;><8XsCDV@Hq88YwlQY{y#+gSAAhaCiSDCrS
z_r6pt%lk)Nt>Sd4J*ZFr|NLfF$FKAAkIHdjV5Ky%#?Rz~<bl11q~~-p%Q)c4?|m$%
z_n_wuC^nrFl)qYn;mojVXTZA46A&(K&E24s)|#Ntz4;DGEgx?u7>HHW!ScCzdu3r_
zs#nzon6N$dZd7HO-<7W7yP*5fQb7T7wlI`y^t{8g^S)y08E?CxER?*D1)_uvg^{y2
z0+GWBN=08{7~b>nN<wKTvWHW!kg>z}iSgI8>^bEWuH+Gi(Gp$)I*IR$U99MsD;^;B
z`)(p|9f+QlbD^xoD4KprE3UrGc~aZ79{1(#|B@))%_L>5ENDWVJ!U{p^WV6egkY^f
z4UX>5Etq7_vp>qg0vEfC!}(vx<OxKe*$4kC+i%k&;YK{bWMM}fEDV-;E}11%@vd~`
zT=9zj1nFFGAS{ovr=Myk()c<Dc1G92y)p-GSTW!}pe}pgU!q+S^bT|Ue)8WAj={Xk
zw;br%;^mxdiSxdsH#C>1*a?5z2mEXlDf3aNhpy#O%<Ycj{&_DO>m*~3#Byj>KCXh7
z{Ul@5_Rbr`F<5WOGG``U<Qb9@8xxC#T#c%ithS)FfaI=6yiqG)7wW?M3cHnNmCX;L
zjl4!%!1X_9#teCjhg^6cj__90#y!O}9?D7T{(Egr;FTrgygtmyL_(Owr)smEmcpy{
zstoY9&_}9h`P2j6rfH$fvJ0ALd0eLPc5p>Tz*aSe_*(HBSsrO|%lCTWT1X{xUY85X
zz8iHvm3i@&RcsyGG*9B-y({Pac!TfyXrSN)<1wY&O9_x_I*lTc%NQdck5966PgQSi
z2V1M@2c;pjvo5Pfn<4NL0Wv3C7|^~$+<V4Hf2!vRSf??9l~jCdR`oQC5iHHP%?46U
zB<H5h>B_l>Suw_6Jpd0FHFJc|$I~KsB^3l$yF3F=<6*QS$U|6Tf0jpPspkd!Vj<k&
z1hAS@Sf)$JLd7#=@^1k~-`TUf8XRuxE32A&{n#ZR+3U03abXlZ<s%g3egU!pv6cy}
zA5E^P_IFty;m<PHaeK)?Gc^5fLEjR+o?{|#Gn|or#E#%TgO&CdH!47Ei?rP8iB-|K
zpMfzqA1OG<aabp~o5}gj+%A!%Ud^*i31b+zAAqh$Bx7ccT*)DV)M%=NYo303_D7R*
zfaUc?)0L!FwmX5(gfp?opta+-^R_f_FBlI3I8cA}(p71eix$;@ue~$RiMYWkuiY!c
zwt1deN|!yjU-ybBX=3^|WFrMfiHc+9ScU{q9j6&kpfcViTaezXqgqJ+GU_{S6{m_S
zd8Zo)9nxnF(6b43E;UJqDB*wu^u~*u6H1+5-ED4k6nFJjm@Trb3)6Z#)S_Wcp&1ul
zdpyShe~UD(<rFkw4?^nu@Cpm3)V6~8a0#Ht3y0${HcBUApHm0&Gy(`sR3+Zabuy_q
z(MH30RuptY{!Zxx+5RDc!s^xww_ELkpR@GoYTXK*lrugd@#wQdI}}SbnqJlQfs#LM
z$vICy3A=C=*=jeQ=&>Vt*W3&*iF5m<fsg4>HzB)Y?wBHMFIrT9g~;!-1jfVU)YhqE
zc#3MH{Z(<gr~!5$?Dw98_k~a1Cp*3+&&s-y1OKwVJ8W~?s&qjvbCmI~cL^22&Gr9p
z9sWE4nzdQ+hL&q_WW+iuDeQPF@TPDzB3P=WU1-p?ME47zV6=nKP!E62vL1vj3loF9
zwqpLVS}Cu9ttysHg*6KQ;_hwsn18a_PZ9c$=%awYmaw2_I?$z&4@W7htP$6xVgc)y
zM_iD4>fte9bUqn_wEj5Xkh;>6)0}fj>}qQ}on%A2THznR3+_0=rP<ExC@S&AN7&KP
zDtw-0s6YqPv>IMGVr~}8R10?ZO3uVd^@n?wlk+1mSO87{W9OtjBE}#qCi|H<H~KDq
z{xjJ08A*3IJ_4a`XI-5FCoQV0WHB9Y$5bjOm-Vi(2+e3V%=h*2x~>uT8qZc@CBXe|
z)-=eq(N!)`!Zqlp`3r!c<7=(*@ckN4?I_YU4Oeb5Zd4cGI{24noH56bY2FK(bxST*
zBJ!$yt$^>NJ$+HnPmR`d1<{f=cNSLmZXv`VKP}rsF2F?rArd{oFpX2~4Y<^Cn<qEk
zFG8bGKd`dF<2Ay!+e3@Ik>+K-Q0vnM1#)Qy8nPzdLw!@@3Sj!YUy;}NWHSJMg$ER`
zwe3Z{0S!BF`vTI|Cp?jMwxf7>z%-<Vh}&3P)%?X@{S`sG3)J@H<e4+ehkn;!0MoN+
z>BCr2?Xion2m5%{z#9`#pXIqmpVqwVhiA7KUAJn%UC#tU(ou|`VRJ{D<QtKWZJM7H
z=kHlQM{dIuwdaXt8P3RZ(spGydrQ9vl+Nseq~bBOJyE$a-X5b%E}#?Gg$W7wZvS5!
zsmD!10Soef`6S!J8M8c@ZzEtbc951_ljXiOum@9bLJ9rNB7E{BF7VJq$mH;VrfIWx
z@^j|N46xrBbi}_@v@n04y$%htGp5(CZVSl9vVY(bqhX2nQPG}$LXW=ea{<ED8S>4I
zz!L0^%qb#&%*}8lrVWY91|j_6pB4@zUZf!JWTYn$Hc5Z>2C;pMIC6>RO|u0e`!u2&
ziZqxXb``Dl5<$siz6|ozlk+$`K>TT!)7k+pga>0i*NATb$3-{;=zT8VDC`4sEwPrr
z9}<7;gu$kZCr$*{6v5qD?SxqwG&eGT7Av`3Nb#Zmr#XD$hWh4x!sSE7lj?<IR_K@a
zC|t27q1HDYH*`qvvDbYOR6c3UPNW+|Yo2a_Cp<xu5C&17_$l3H!Ed9q1(|(mZ`P-}
z(}tlW+<)v6kBV<e=Fa@zc#@=J{;gS}y*;2FG^=1$C&jH2kXbfuEfc^NDI34mtAf+Z
za%*g<(KFl9#Px=@$jRsz&_s?S0A%I45o9J~m~p)kX#9%1|5B<2Y9WAqp*Qn+o0k}R
zIbsdRd>_5WSZT#f1axlyJpt54szhC`St1ksXjv!6FuvvARv-93bz&YJTw}-SR9~;S
z3)(YJ6x2V`>~NxAbEUhVeMNFp19BdVgMa?+)A9aJ=_g@|nyliUj>&GfdYJzQ97|G$
ze%z+B-CgN?oswkLI<I#CJv|rIX8!A10@W4D1qazgC8SOnxTDvp?)1siX!HJELcj9j
zB?%G!p+?O?Qs|d%aU(KA<P3F|djSu73!p+3#6yGFd&VQv^DcNXAu(Fztt;_<?v(|>
z)XiLBm;d$*+vH%s6%?1qcJOGCAepKe6aPX)ia(?cLJ1HlK*|{JC#o{XyU}xM^_Ht{
zu}WqueXFFo;>`JMO&syCD8Vh;UAA^{SGh?&Z`G;Cq?{f$vdKsE=3&e;y2J(y_^_N&
z|GEQe&P#r2QXl9VKlr#ibz;*)qyHQ8#m|)5*I7B{hTz{iiDPbIWwm1#OvglpnbqYP
z`V5{7#8A4SEARF^#o5pPb_^cQeZu$u<>4>Bi$AxUo2BqKX4<NO%T~l?+`gZ?k3e_O
zPL$CkNv~k|%D5Fb5LNM|+oR<nIL9=&C$%|jMVBGygv!PdmT~t_MsPrc44gJ+I)ZXY
zRmtQ5MC~FH*2F$doJU61$w(+;M{Al%AZ^VbPk*0Du5#yI*MUa>AkyG++$}6>rXY-u
zr-scJIMmX&n+u{^dqe2FDsuC@58L&%kag$8x)PZ*a-&89ZXtqv(nrbFE{fYf)zqXO
z5Opvh+<i;O==@m1O><iByqtd?2H+s@R0HM&kMkqr+x#`3m5~zkh$DC(d@BOw2X&ox
zSxz=b1gUPvdLJ(0t?IGFx`UJ44pDyu&1c$10Bc-3+Dl6y*u6#E_7*kjNR-x?4M1jQ
zJ2VYmuyX&2u=|+K4DPL%F86>9TG(1xkA*1E1rDS)uQ&Y(p2-|6A%P>G{t|!kl78-O
zUS_s5(^~_G+_8po2saB4TTDAM<`0Ui_tXAw#G;(HwOVjhO0|z=oRs)Ea)G@66DsL*
zeKXU9{GTL@7Cmu6rS0b*@)7O-ux}S$6LMLosROpM4iDWvtCj-ZynO#d`E{2cKIz`|
zSh{cRnrxV^lrPC%PzOaaxRAwoCAv^6LmBCL%OiV6e`h&o`4p&J2uWA7wC8=Jp*Yin
zS(DB6b2g@Uad5tH6<-~6kQSMd+Q;}T_aDnD^Ke*F<x#LDSGOj7Z!#HGP)-!o;VOp*
zsf2^!IQf*_p>MRR%sUt$#x7u7&>e~}wO~6e3#4d*<4|tGMb>!B$*$A{tf8sFNjOB=
z3-2GEqyPNk0c7_<?XXFIB$Ybw!Jbsz5}(6hD%kU(ctV(_@6)wN`x$c-`K}04g87i{
zg`FsoI#Bb3__gZV;B00&U(bBT0~Az0$wk_m-Akdv`U{ft|FTyuJG(T(9U~Mm^M9Wu
z5WUpl2<xdVT2OLe(~jq$H)2uXoZZX6v6`rvmtdI}9L8*G)21A|mqHPrKJ>O6Z?SF)
z9nILx%F8lBl5+&frCu&MCNGnZP3#rZ3F;Kv2XE(oMc4J$WvsMkk6Ys|iN1aoSVK1-
zG+*TbyLdO4*s!|SByE(dUuGhEGwTPyxRY)A_oqd`v~*=bXm+(0ZsR$g6)$dPiao0;
zLOhj=Fc@i9=ppy${P=W8tp#eZ>D6@7e4C|$)XPNI798NqHeRIU5%?cOb1j?(1L}ep
zK_b4}9M)1CFNG7x=#IJ(_K1$NA(@J2Jc(;iM9)^;(b?~26xLriyS!PVNGZcc#&33S
zKv$s+O%A}@6b#U|Q@9n_w%Zf+BXvj8IYWD;T!p^%OuX3eJhC5>h{Od0=03Ch)$0|+
z_4k{WWFwvaUd$rXS(GK<zHrW6@uwYRF{3gzz*D6G8BeX3pl^I5TSP?xSV)ofe2-xr
z{QKP$Y^X(*5?uLG6T$|652DS(h{l;%G@7Vge!S_M7-hz#efuZFPc5rn*0|=W+Gllw
z_QP}FNce;2;SX0a+Iuo7ZTh0hP4xqoZobOF)Xfxlu0^rzr1$Sqr<<<lU&)z(<S&8_
z48Dg3r|+YECkFi_9ZCMTave{(9U|0Vv}%6|&!3MSg$<`)E`FN|;^*-N$!w_S%LP%>
zl{rf7Kq?7YSITJ7Zux$l2lLd<NLU%3x_CE07_$tn-)qQ=KbVz3bnBdAy=Va3jt#oj
z9~FWf&`o^+P>(}Kp0c`a2Wyq)gtnyC8C7O_Rt^$PE^8KKxhDn*oU$m?@gev=<Ws`3
zm^>-fNMr%k@eLx3*^kd5c+4YWey!o0a*@DHSy&@?s8e}XP_S{a0^pI#X)2!CfB-Wp
zOwl<aSGK3!ji`tY{kio3H9kLAVjCjCzL-0F5sBi7#30~Fw+6RPWKlGBV8g|Z^9?tG
z(!t|S714Y^;{x%$IHpM9^oQM<q3*3i?@U)ahLV66YoFME!|hR>NLpPiG2)`Ar`(T^
zFG0TTBY*Q@w$C*WtiEm!B?;>(Zyad1eUv$)L)4sNF0W0$8Tk2Gly2$scY-s2<Rk9<
z-_{<RYzPmKMlt24*F`yCUK9^k$`==qTwWEO&Wi#I=v;ksGJtN|O&>SIUNB}12Om_#
zy}!gquY(x#iQWwKYEttkDz-)pG9wJzaA*DfU)J-yQ*9A~QLT`Ych_*9LDtsIyn1P3
z@=jt3i>sY64O(->pFaX>sQM1On}{F3Q#<MdeQ53pxH<RjN>;2rYev_!X#3y*we`^Z
zL@q3RwCW@K<+{Hoe4*O3$e5D_r=vc4Mxl11QjUi8f*d|=as~K);qm3<v3l<2eiYS5
zde&8-sXJin`+MjLhhDpHli0)E=FOMD@G2iZ4Al?8sP$Z4*~~mlwVCGpnp^3j)>Z8p
z=ftsTiwCsQtQ49F#6<2cDkKB`G4oj%j*e_nlj;bgpJJ;73z*!cTN3(0KBv*zcn>S>
z9D4{}i0?RX4eMt(-c~@b)Ux3M6TF9fzXL^WJ|DFGF)5qZfRX?O2`lI82!zu-#JPW~
zW%}uD<f4~^WiNM-MNMBZP6kUsYW`$~3@eimybm@?M5z~Wtk@HAG4>>pya}X>R2Iow
z6Xj$!>VhZ0aW!-hYsCQ~a(@A8c-Bln|9CSNm}ca~ggK7s+XKrc1We{v=pyq5g052z
zrdeb+JagxEujE<H7BKo4=}>{tN0o!KVE`zLUx;?9e;7U)*VGxCvDd54!{<wPTe({-
zc+BW;(bWlIMrEa~RWm3%2^Q3OH$`LvFT%}n|LQ(%JtOE8oiHX`E%>ybuZzq~k$e)k
zm%QzZen+z7>~lq5|7deTcY>pl-s_GS{1z{DHS$j{_dUzi+TkE9C^c34gU>yhesz=W
zPKGDtO-;CgzhfWl_piyyvXX0Rzf3<1Qz+3j_JGRrwQB0Ao2#c)-#)ahL2C-n8*fAA
zhIh~$=VNeh!hM^AJ1ljZNXKjCJ+zVSOj5B)B4vWls8BkxNv#)sQ%JRcyl`Xhe=%_|
zP~pV}P)8h++{6=NA`Oo=RYV&2euApwnLm58-Gioz$1Z=7pgP)RUxCs9kS!dVe2gxd
zscg%wtMEki^Z>MUUUqAFM8HSHI<$iR+TLmBVKrBZ`&wI&#zfTlYY!-;7O!IyPI;h0
z;u*N#dmt}FCTs%J3U&)U{2!KaPawcn%THQf8$K$*cJm!V$BkeVQ$bjcp=uY<!1)?(
z5FYigk~#vnbMEGsssjI7PKzyBy(8Q&gZs5|4GftzqecwYL=ko|{W(TQfD0PPf4dP&
z8nrIwq@Yuc3?89gswMZ?6NI>|_qAnkR!82~1#W!zQ0BzeTr%5H_Cl}Hkmr3Qyx+R~
zAQ_N+_VICh9fW&&4D56ZAyDiQ&kpxQ;!z0Z<KAY+^f`5PR9}XF&x$yfxSgT-%k>EQ
zqJ4b>9eE}aE6ygpP!R9mogQjKu7LD7{}cT--g$rR0x<W`!7ryD2N#3}OTnsCOCT^A
zKrSSYTt~baRi7m}aJ!N4y?{lgir>T2U+@QFF=IIsB5#n%QAo2Se*RmEa{DBXNlH*M
zceqO!A&3KDGRWm0mz?>W&(<-CY0HPCA#q7ygK8AxW88yy<8B0XSt~H4FB<s+YM-Za
zb@15z6))S@PA0fF<UZ%kO$Bujd#izEh%qlh;dFG3S6;)X&T(a!>1r=+KKBzk14=ql
ziWHkc&Hr1syPUFg(6jZic{#FVkk)qwv;ah6;BqOqo^7#v(b*FL03rt4sM((JqH8o3
z-!gVRE7$7GIC<Dlpmb1!O%}ZmKrO6Qd(qka9|lX}lBX-QJ>&&Cys&L(Z)xfAOAJn=
zXbsFXQKY2fl+v1QC++Qc3GhLXuohZPjVFF_=T|^yJ;Kj+Ycc_VstbCzY=sL83*8w6
zjJT0pQI<b(jKJ!vcSf5Utpr;<*L!*ZLbuR(tc=Y{57rZXWT_GAi(1}Fee`z;$wAmK
z8YmFl`=P)CdRQzaMI*8%m(eF>quL4mKOnpi5mE3<A$_&91H+qpUv@~fJk!cuRIPb4
z{zV(eYLCx%SZ2wxRsF2B!McOp58k5x{AMw{T7uNkAe=8z8}ZaMfC5=*!z%nyK-i44
z^K`)byUin`zT$Gh2n%uy%?_e;lZL=9P?n3PYd>1ZAjWEe^!cO#wuckyAxD4&x^}q;
z)^3g@WD@;s!J<1BJpFB&{9FX=9bnGqh&|tJ+h(Fe-}m@O!OML9G={0gWf_;}p!qeM
zpxypu9MW&*Pj39#=YM1Kl}^CA<1t;GMki&tpd{ly$X|fZt^ssId~Bf?`$gv;wkQj6
z0z)Z~wMc>}(lnk0<%u&kBlqT&Nf@x|GaOxlF<N4l6C9=%JG#82h+}HUjg&zR8J@~b
z(TUO1#6~E#hDw94eTF*mr`(3JVSXM9caq!>QT}Y)QBY>~=S0+*+YoMs5V~Xk6c`eH
zi&Y!d{-+ons+9CnAq%ZmjK$t^D_izj49gnH)6q9v2P=X=`B+hhXaT*A#hK=tO$f1*
zET_#)f!;%q%L^(WXQcP@W-eKFgJY=_5Aoh+Y~d@mM**tv|LreC4-N?DFo1uOUM#id
zz|Xy6S^JL+bE}|=!%dP+$d00u<GTcfSAv<)Nqvb972AK=N;yemSwQwh$(r@9*skdj
zHbA&qJ+fI-8i*vYg@`gL9XaXmgvNw!%j-0*Af+*1G2Nk+cxLd#WsRP5Duh;4UQ;y=
z-?;S8$Pa@){c)CHG@MZg0D$xfnUf<sDyvjNP$nRg<b-SbNIxhseyhstkby(M-;^;L
z$}_amvf2f#$z4~KMOk*0n?<N*wh03noP`$2mZabhbpzwg=~Pm3`Ojb5b`r|-bX(cb
z4}zt;v6Mii*5@Kwr07DH<kl!Nzw3_*?D2JtSwrBhrA~PWLQ8}>F8q%X6%T(b2o;wq
zcj{<FTCobgm*K{>ZM61CkiV~Q{GZa>oV{R5D$Xm9^GV+ovS)qZxj2x(weXcWC4zb7
zAE^G$f$*m+(Jf!`CC5}>!<un5*hojk@thv-8Vacg+@Y8-3m06?&mw`|Bf;pQ-jlF_
zPapvH`vD_k#hE8liCk!9B9>ijy$}CP_wiP}LYW7+LVIZ1kbu@E<k6TUIW0Or@pth9
zdP&Ylt>j3<S_^-D(n%(~=_*>cgj^{iK82}%M?aqDPm&BBNg3fO^&ZZ?)hKmi*KTj@
zm-kOgz?~qajbmz<%|55xNU=Bl`qhWP7A&s@&TT<3YKDL;am$KVB;$18^!Yy7ww>%X
zA7+3ne663YyiyB2#OcbLGNn$XxV&x+Ztd2gOs>i3Zty=X0KwZPG0G}VKnOjBd6^<t
z99@vH+nK$w85CraGA5`Tps3u_UjYX${ENYGqRqZ-fSVvbKrx}vXR9nrSUtU(b_gt&
zW|f3`CDNM4!18rQ>;CtcB>aUt>@8$bxN!gf{2%B){{PiKTi~GpEh?5Hk`mnkYOnrd
z{$JRRIu!=Nl?0_Im9V+^<(lg(ZM3NJZ@TJy$h}Emjet~n)B5_lElef*2QfL@C>=K6
zZSFSEd+je|T&@YyoZKLvnq0JPH>@BvKBDtU*;|qADQmHgP?PE$Cph2$0I#Ydoje6~
zuBRVR)6-mYUR$#?>fEPu(T=?QhU;m6y;}Ms(}6m$IcxdK_MXEnGU{QBm1tQ`D+bB$
ze|7I4eNyPb^4B8_lm2xj9pQI$j$Vy(!8%f4uaq{nC~t=G$jQwAv9doYxR!O@k9Ll%
zGMd5XrjI{2S}U?>TMQKWAPZ?`B{jkaR6K-k*$}EI6Kk$th!c_*^W5*f%Dv1wLt#*a
zZju+3<$yml$2O1NHr<=&tQd*M7jje9X7l0ECaz!Bb4Og{wE3(lmsS)7%5QN8)r3<~
zia$qg5vm#Al_?d1E&qhpd{7QnB~1d)dOcPC4p&_!EiKZ~J#D0Mk}vWqAjs+N-Wj!E
zup8-biT-i$v|<M75EV3~)cSK{z*(b81jQsBrv<PAG?-GN;^F>27jVe7%kT<}{?Z^2
zZlx<|Z4}$%)rp6rcmAKnXgly78$s-Ws()wYtoBFn<9Z?c5{|e2h5D9v!$+qH;PgUW
zn#kRUL;A}^$WW%Y>9}N3kGvzA%8_LLt??fC^;;#p94jCH?8CvvCuz37I_vcMqy9{;
z=X3wf=7kl;K^|o?9?F+R=CN8F$erTBzH0d;hD-C+JA0h+!h|Ufm}s<lIYY*NyVq+F
zL@G<ve^j)Vq-kQfQ)+Y`=16Qu23ZNG{DQ)~F#u2aRoZ)b&#R<SXwC0iWV~+>MwNKN
zZco<|rl@$olK+0rgr9!EAlhs&;S<2NhpPRY8i3pHw~pVu)@CmI5Qow*HcfEVu>a-f
zXS_@nN{zXh?t#gb48RLFHBGv#$bXk&4m{_OtJcih+s%W~<z254V`Gcs(qn|ARJr9+
z88V9u24cvJ`$BS8{$$Kf`T*npWKqyV2~-h~ZFnr-trQGtHq=5<+OSVfgo>Jy22b%Z
zaJZ-OQCZuFfb{LDp_6RLP7%It92coZ0E{V9o3CSu5kEaB>g_l<2n#05YfDOVn-MpY
zk9-*pl$aE@6@oKvB{|a>-#448vvk3%LGO1<k6N+;1nW8?j8t#!=DQ3G1lsL2y}-e~
zx3dzQgZ-wg4%F&Xzxr5V$qeRdy^-p$^HR3njTZ1dUW8#*bhis7;+Em-4@|FRc)9iq
ziCYL8p!#|*i&*u_bG{PD?9+MoR(mI%9R9`g&&ZguZb)8_MvGiv$alBC&Zk#c`@`@^
zd&#!;1IiW())x`~p!~2d8=orxYX|=iF&tHJVs}82CUBT5*L1dU=auTOmPFRT4Z4t&
zb=%af`XZ{$_rqb#VPnuS3^}~9lATOiVHrR5YAh*AcmOQc-jof6i2j!LVc_LFfz2=o
z`6b^jM1RxfuNgEZUp12J&M1RWTzc7!z9YTGGi@tLo3O=IdNynvY^zG26o9vP&&>L*
zxuHqJdo5e>)lNl3&Yn|v&7fhTXfhZK!p#4J`zQ3xC%7yxOPn&FPfhuF8YJ`yY7du+
zOr4sd;`iTPL{ML6Zqwu;==rz7aVXISo?=<3xWdOETkq46u50GV=33M-zwo~hC8YQp
z<b;BW-&ga1k8YC*IYA^VZN9SY@7Vc4VBrzyxL_bpf!Qz*J6C`d2e=BFqoUmPqzb_N
zak2r`nU<D?&P0QQ7BDd2X&Y`IM4%O~qT&d=pF)ARydc&3&#mZD9{0rizN%x+Bg4UL
zVZS47ksnoUJ8*P%P9r2J{J5C4L^dgIHc|BJ_~6qAMCG0rW0h%;rNA2&ka5|!yXN^e
zL*oX^3&*GAmrt+7m{<5Q-+J7jBA!7&GbaQ9QUQ}>4hOCl1J(wt1B5Ni-l9oW1p#~c
zz99`fJ-@yFzw8s!pusQ$gEhLu!m{~9tmV*A{5T_Kl@V^bqCEE>s#qrX3#q^uSY;_M
zaHF#%;LgIKiHOxSdGaA#K=Kq6WXB}5JIz%Iy0Yv4A7`M^Y-%4Yc4sz+WpTky!~sE(
zbOwP=bfLVwb|MrauhlTr1xPX`#|AP{vX7`t;MY$|H^9vD)x6TEH((qu`9?-PhDq9l
zL+i@4xhB4`u|h#k;9;)nB7i3KbF@9~xWB>YMw@l3l<is+Jggt3p9!)>*as!(&K&O?
z_#t)tg3(ys7FjPU=n_C))s-_l0TN`&EDTe<9#{SOX(VTalQ=!k`1qXQW>uPmzk45P
zS8&FMgzqMeL;==qjv5wITcxq?{D|K%!P8?$vuq_e&8n^{?k56@M#~i(oKcF`5Gr=w
zkArz3(!euHwf$fF;@L{NsQRvD=J-Sm-7Ti+Q7-N--uSg;tw<nsj;sGSUY<JxcPM|O
zsiyLCcypdUlHU3iHzL}TBcb0?ip7GOZYF<2M)HbKapB+k7`tpMH}E5M#s4aH6|wV1
zp8EGcg{%b+aadsR*K-PAG4!6PZM6g!lJ@Cr)mhNtDsEY`g0DgbnXJKQ!(PgsO__T-
zi2UJVzt7h8*cqERqA7GM2Vv`8_XNPES}pw(3o<O;wRSfGYim}|^H({-oR8&ZqW^{W
znPKAy)^elD$Bc;_Cmf0<g>&%GXH;_D(P{|XB$cE8s;o)k*JMw_jD8jykIM$0@dD7K
zs^zAFni-O2uCy2yO=Yli9g855;Z3S*aH|*d5sb^%O9bTD>*O}m6gX&LAywh@z=i?M
zqb@U4aEuHpR<}3)`8#LdQK(!&S-&K$08P#E$GYOEjHG%pP*STD$b85OSOkbZiMifX
zl$+2r959k3sX(46qhbQ!(E<Xs%H#RkPN(Um;Yf4p--Vila(MKbQwEOB5P7=u<N*)U
z+U)0Gs?4+e5P`B?#ob-b1<o{7LNkPCU@w|sL1@pnFpZf`Qw%}npp3QD2t>*-G%8QT
z+VFlwG%E(quNMj5Y!tUjFjr<wgsM-cPOap<De(2kC^n872a%7W5j?Bm_%D>+iqy)1
zBgfA!KqD*Q5wNt)K-PGlF(&RDU?d`82-#RCuV@B<{NmrMrnUEEH@tK~z+ES*t|}q$
zZeVT-Nj*Qbf&<2tC+^4dwd<{jnq%KMYR%9*&f*pqc7;?*-ujDALAy>4rn@oJ%IE^g
zS{U^(IcA2N=qzlg82B#`>KRPxyU;9X8zdoU9};<1<ZN~v<Txp@CG*l3n9M`iirs^q
zB_g}s{@)628MKsDMdIj6d;k9_5w+YSzPZ$QkqtljU8t*=-yAp*Q{ElvRY%{DJ&L7q
zSD%>5WS+7a=}SIH_iw>VR30@Bg?buKGoRpXiwr+yv+nd1+>e?D0u6ou0@_3;E{kEd
zO^gx93*<MN6$8m*D>b9EzxB=7GOIkGvM>V%IYxV_BOBR5la>(E+2iuTMZSaa1U+`Z
zjMBCQik)3S@^v-;KuL$7#&Z=0>Ou@358oRkToH^tdf=4u;AY*;Y~%QZuaG4j2a6%@
zG;}*VhH<kJhJv!rIxprp_a86yFaN!+^toF`G#|`eSC=jJO5!}&LwT%D;O?BO)$G-q
zLj^F`j%a}X7Qnm_kn0v^V}P3z2~sD7qT20SnP?})lwiolO97#k)Sx-K=8__%vGr1|
z4#UKMP1m0X>il%rK3JK8m}xRxj}NzA_YSZ7U^7NxAdoM(inlu>j&XPUUxdy{%dhnJ
z+g)O(5Zkux$EVkiadSEs+2vS|6wRif+9f0ja|~u#4Pgxeh&6M>g0@-hw7&&Z0k1ME
zcuk7-IuAIw2L<ep&(L(H@hsz-H8c=nAWnE0Kv`Ax9%&G60`6M<MNCpOtVq@HHpNYB
zCe-I95b#zBer4qmGVNT|SoxOFyxchU5?u_X9y3h^!U>e-b74cQ|8PlAZ2s+NYbhfr
zy(1v<S#OkcTSY_h;yz1D?71c9Wv^NKK2^rm+QDuXZ-+zNEmvpvaP3UguW2)KK*d=m
z#_`1g{G6nxZ9lce@I+4Ju(T}yjpthn>New)aN%IOXN8VKM9TY~V3=k480}AmYUNwp
zn3MgqV~zD_9rKZO_KXex{W7EC?)fJ>CZOAvsajgop~0Bf{hGRjb%C1Xhv^RA>36@0
zq&#{wVb_5!B=C|l1`La2yF-q?uHKwd2*~6HKQ7h~)PzwFw*=i%LFlf~B=`lsDo8Ph
zslmk@LS=eGU|lQ6>{p(UpxutLW-#TZz}v};E77YNvb&F%+&&)9Y`08WrF`W^OH2=2
z{?yW2w+Yt}SXL#cAMk>_mA?gPoZnZ0g8_3ej+wY_Tny%A<nC~A{`Y@!kO%hN_)>&p
zqq0ggYZ$PWBtPV(U!H6HY=Yy8_!$)_na^Z~WO6{aL>V!N#?Vl?SDKc?aRIKC*oLR5
zLWe<B)`@X0{xS09Y<pKs!Jquvl#;29ic_6L<vqSKQGAnr`=M-k6r(!nmyrCW8wCvN
zfw292@X?-3*%>zfZmgws9@s5z)5R@P@x}XT`F6z&8U0G&n=BebjG<RMO9*23it{*M
zsoIV{zj&APFFuN!7hwTGCKN-~NBa$SVYbEUo+(i(G+GDeh~zIT@k@&wG+vK4;W+LM
z?De3MH|7sgr2FL{(?SB*^bd-o<VV(TK{{sk+vo)!z-ZHcJ`Yu5M(D*NR0LQ|ncy+%
zljkT26>kf8u!kVy$o{`xsZv7%O>AZPF#BqjXMy)QMT^qyk#5W6*A765k2oAYwstjO
zUBSNVwG-|+d!4n8Usc@T2ybFT#U{RCoh{%d8qaZ-6y&$Ymc+{M((>`v!VhzMCuSuK
zYR3SKyUa#>JO2Kc0Q1|oNYjz=&s8qZIvpr=V7#)Ia38+N<n9~u3vZk~59%r!kEOJ(
zd55)ZG_aF6tn11-sVrau%S;cO5ynHy{T2>V&@OlD6R?|{0}C-7KDexbIRHsMh>bO;
zDQ_#o2-=ukkNy_&Zn)e(HljXge(vIIZEfzue||Rcu5u+;4n|WsuzkV2k^YXiHqT_`
zfJso`0Vy6WZ4ts5&DxDuSY}HHh>0@t+B;Whww$A(Xx75&@yCUZFyFW|4sUBPBR<z^
zks4wy-1k8?H}&s_SD3vP_r2Uj!Ry}VlFU6YR945W%uXx*G{+drqq>wH#iX7ZOrh!d
zX;^Vi2C7H{_8cy)e;NMA_C8|%2P9T^TsK7Pl4(_GjuRYp%{0%Hz-_q?ejW6Ib=Ku&
zLw^oe)>%@>rgaJigx(QOjM}qjF>lBQ@!B$46b;uas}7nhZ6Pm5c)s*Ba%@mm>dm;V
z()>H%k++_@2V(;6#R981b;4-u0^&d)Q=4VJu|m@fT=On<>U>LO9@OLF3UohX<a9{$
z$Qoo6MWq4u!JeYpAt*iHwVg=RPxP-8bFKW45&-J7ON=It2bhj+2<%|^&H)l-;k_hI
zD*y5L23vy@Rrf4WdStUfjEgeFA$urtsoD7>8_U7#Fl5S7=*2EI^$qfNh`e7T%sCUA
z&`7hw0l;*YhJFVK&^?zBS8++S;JPYp(M|}7;&nspp|iC1U6C-JJ@I}(YBjqhFZoI<
zX>}omhHS82Uac(}TWE<2so?~fyJ7DfEV8s9oxgkHiwNHOifD(K&N6i-Sok|q3!Vpj
z(N$uO5DXG1=fcd4*l4sVp)-(0shPOwB*R9G8DHE5Ii)sFi_~;xxiRJR`aM#)hZhk4
zn(dr^<7D@!^#nW&T&oh)!WlgYiSB|u;dnZ(Z5dV>?3%0_LPzL!x4#;`9b&UuO^XEn
zI~)!j>PFuNj|ZgJyj-Hv3)y!o+lae*O{XvSFK{amO_f+eZ5#uzal;m^oY#+#dB`O%
z$nv&Y+`q;spMaJfe5+>?B#9&`Cjpyps6FTbk1x)OY*m#1Drh?v6#%Kp62GmdZ@`E^
z#ERRCg&OW%rFLUADILGeB%81kEqp{r2{T3Z5J8~@z^JwZlCNIJ_FGO|8IZ=cqcxVP
z^8h}r1PDP?6~GVj)lHD@Vc1F5Aw4PZEee^?Pw7(KK>>3*|1#udH&U4=0-Y9~a(Kf5
z4DXOJT`rTDhh&)(1DEaZl3mPzfx4V~)f`5VpVyt9B`87)dSK0~_Kp!uv@66^7Wd`l
zqPd8sze2K34sJ5N;t+}3>u2uK=~}h3>lHdk+mQ73QVME>OSgrh0H*fcbLS&9JSA^F
z2u7<O^mz_ObFPN&X6|-5Ugz{`og1-&4Yr3*?VqU#R<A_6zU!<78p7T7QTde*k&;RV
zhA!ju`#0Mfnx4*e4oZx=|NgzmUfASW3>9;=#*^<J7=tv;55w|ul38TWy^^XaO~yE8
zmn!lX?O;QR&hFSALj7Ia%)zT}x`-7T=Y=Z9iwunvx*C~x{1Z<N!IGnIUdG3&&w8d@
zbbql)o35Mlsenfd5dTc(Zvme!mf==?og_(HiMZj_RJG;`w1&mv3_t-O5gPbS?&U=+
zq7GR);D9Zatk>xY*M^4bF;U}P31tc)2Lxibt=C4PTeAm7tST_R>O!rI>69@SUUem@
z5&Bt$X$!ScZa{&5)2G>s8-IChLHoebgU%C$KdlQ6q7XQxar-P0w5Z9_8hvFp7~CEs
zXB5?wG4(iy@&A&DGvfsg<T2aNKyBu8<@k&ASU(r3d&Xb?{cNG}_>2>^AGwWE@oFY-
z$FBVDB(N+I@d208Ukx$E^S|6J`!1KOIbE?TI((OQ488E~pqbu!EID#392&FxYgWjf
zx%&R`)x-oZA(?+AIQy5VD?Hx|nbPV^W)SUPOmr+x(+lfqE;cCp2T{#4Iy|B*9f3B`
zt4F@WMmye?$kI$(3)9s!j$f5w<?SJj)f@l(&cNZhC1)6(*#pG^pB#=}`<=>j?2(~W
zcd=pREPZ=r0<wYpwuNp%5;&Fy+2hA(X-mgxTd`@i&~7e{g-n`5Jb3^Ym7NjL%%rVk
zN>26}>3ag%*$2u<JFQtIv_uPa7wtzH7V$~J6unuwiAF6DMmjDtG4jDIMn@)CR^Lh^
zN>IgrGS@%I1`~j6{mwyZM2|3t3)6i?w>c`3cL;&WPZl@WnapBH<QGpCA=p|-b=nV{
zr4v-3@6225{Kum)^LyI#_U9=`B?(wa4s2iZwkIiQPlXTP91Lf955QD?!6Co(pXlt{
z4pPJmx^6~eJdXvVlRTMyswgb!jHCkF@Du<Aw3x39tus8R$CJ*7i8#`<GmCP1z^Z>V
z&hZ3#<e!y%g@){5H!5j=5yG+qP{AK<N#PEyCWc3MWFR-?_U?(D5_>~jjGKiAvwYEB
zzg@NjVC|WG<AXzz+>;G&3~XdIRgb+Vhve2Nsos&M4Zv%Y*c0%5$8Rqqha&O>LTf8g
z^k;TF>EfJY^<?GqVQ`cc&Lm~c$oMZXh7@?qv`Dz;Ral=msQ)%VmXH>-{2L4Yl3Zr#
zd)T){<NrOQkr>7g6WRLF#B+Bfk>Q}z{t3{wxhMc&g0@m?<Wc=#w*6Ms1+u1urOM%N
z=wwnz@lZXNqmU9&#|?6r$Lp2%8ixnMty$*gC?_Zu?HiC60@wKNlE!m53jwU<pBR`w
zibsvH)ySGhG=JX|(thjtv~3%cYo=;#n3B&~)lZb$19=TkJQMqFcA%NvXK+I*%qD!e
z^Se+cm$gkr@lg(?N}PDV`6+kU#UUr0rt?P6B})Ef1E33n16BdH;J?)fckY9~8V$n!
zsO0E_myrBx39QKloPn>r0B$*gCQDI8hHhY4GIE9m*3|DzDFTQ|lJKOWw%>Yg3k6cq
zwQvDj(7%aJW5$?j(jp_6HP8n*u}A)Cqz@fi8$?R|l-y&7N(Ok9gMzvTy6u+LJ!0^X
zs*Yz0yIc19i->0q#OR)f;lDNoYS3A2(3YdIjq+mhcMx`~#K@^V`To`VMXMEDZCTxy
zcPE9#jx3cAcI_^9#zdM?DgE(C%7?4}<h}LmQExydX9RN;EU5is!dN$b?GlC5$s3i$
z4j;K*Gu4L!v=?_|E_M^-lL!ZntDGN}SKIc0g=b;(oPLBb_$3vU3Fmgeu>?2IguQNZ
zzdOxp+enX##_MxkPBk`aFj1S_GQr86V30E}x$z)Noc;Za>C`XCcEHh(UG`0g=w%Ir
z!I@}2{_2}|y&f7DBxZb>g#VQLo;|PJCx-oR3w*xV(kbEoVc&r^)#Gq$l7<afjrp+j
z0N7hWC9(LfCY=_8%YRD&CgkDn2T>(=Ge*qR@&s=swbl<JzPXdeyHPT+{C(B_$OAq|
zk5Zind#U30qhfr$N2%eV<stqVt;?^URV;45p>LD3pXRAvANe)$Q@hlPiD#7{0(;8p
z8jUtSV|bO%ZO{6|qlx=1n%%cg9J|FV=2I;xC>yx2k^o<vN+`a^t}#=18h4_2_f+-f
z+i2hUDYW$yuXPzgm+5-<?Ez9!$L!;9Xb$81^1{}66bPIQfIm|6mO@MVLGo(P&|l-U
z0F8AZgnDxjo8x$7*mTG-&4yiVX&mvUSdF(1k2HOa@VfCI<0B42#TD3+uocKg1GnHR
zWQ37myKQ=M|7CF97uTU5)Z7dGMG4tZ57sj(EPS)${lsd`WvLi@+puM>EVmJtEHD@p
z7kc<m^E+wNZUg5zU6ei<$<r*$_G<PHJx2uMr?hSR{pj7RjT`=A9FL?255l&4HPCsF
zmc$Wr>hPNi-`qefJwKcos@SowpL-)B!~=}h#^13W$##uq40+6^Y1x^sRMEm+$<c}l
zv|A@Tt=0&aQ93zZ+D<8!=^0~2C?Nuho-b%pUZRQ(nZJJdFEr6SXjm;M#;chlpWKJC
znrTxtLE8ch<7ccSU+Y{)Lx>>a7^Q{&EC$PG&mI6$wkFO+L#?Fq0fmiQ0x~6>UQK>&
zBo1{=sVzTI6w-!wEfBMVjC=kJnd_E2qiZ9PhwPQ^)8wTFg`2=6iip=GwF_<A&(!<Z
zL8>fvdmC8QBsML*&G&iGF&0^vt>h54a-g5<a9!5YY1=7D=H(cL2OWFM1%@M8l7{l$
zP<!HVeUJ>-_=WZH4L}eNz#li*ICk#C&nvkWeY{e`al2n}1HW|6^q_7`GZy})278IC
zJU8EiUAMPkS6ACYGq<JaffnQ<uR1D~6=Ra3BR(#6nBM2THG<AEWw=<nR%7s`<85Vh
z6`%l&8lR|$wVFzjk9sV>w@<zw<RB`UlL$;cabJBIUJ<UQM{1&d69&&tQITg$V_{O~
zL17I5aQP1^w~$$_P4#ZYd*rNQ6nK@lz~DlB5261=67N3henz+Zp+QOI?!_PC0jekU
zFY9RAIxlM@6gJNc@)PIdz}cv2_5J|DuE6XJL}6G4g!lg&3~rSdF8l*WSS*z!yJ1Wq
z4eQ2$QeHrP`La(!=?cya=s_8)gBJZUk~jxC+;)|-8R#$bV^A@zaP=8ptc@bD1w;nv
zCoV1Ao$Stk{{R6}TQMcdT_y<dJ|fJ89pz)i_!%ipF|ee8TYtKIz!bqf<n|LeIUw%Z
z(|RCs|3JuyV~=Ex9fLSY<_fdIG|h<5xo#ee(S-JGJwl1@$$<LVfaf_H%ATNC>u>))
znY!Q$XX_PSfvl5@|Np1%5{IaL(7uD6Erq6H)2#ZGch}<l5wX3~QHaZ^DWE{z(?xUj
zYapz3r6YDZ(OtwSv<DDJQ$_&8gCJsCA%B-RfUY$R_9*lM{_9(F)U~XhE_3fze##TO
zk&d?rVEx+4T}zt6<h5z3iFxaN!eGe6*#a!cHsVqC9pPc$?61^kLuC%qfk98&2qcH=
zf%KWMZWo(1BI`sMY0;=A|BG1TUMxR|a#0nqLQRRPW0Nf1@>d;!1_yr3qhJ-Qd1G&*
z-yPT`zWavVO~CEGQs`4=Re!gLVuF%(;ogT-{s@k1hri&F@<})LgW}k6Bjw<!FQnj`
z)2qO72D^mqDvmsoF%-lg)I1t5Oo5AU%nTzab<A%w>}q3y0qCl)ZJ7#gW@spRJ#SBJ
zQIk^Nvc1*l`UI_u`P;`a^HAQq(NmJ@KUQvlGyhfN6a&_i$DNK%qXTKvB5j#?&W!bd
z^asp?F(~t7yS^}0fR@oE>pQcH6-=|Df^?-Xju9vkB~1SBp*E=c^?(b8Gm7*BOIJ{2
z52*z&l*Y4_{n|VB3B2U@tlub+(D~MlH@@;L4U)1g;?wU-0-<mnxMR`7luPCF_Aukh
z=P*$r+*K74o$`&%scp4Pbjhq<$0?l6Mfty<w$8ptglkh26tn;AORDg0J+$2@TWb7i
zbCTRdIrGC=H>Y`v#h=i&f9=bOV?$y~IDZ#Z&hK@Q3oKD8KXi&;Ucro#NINW9M*D${
zS`&xTAK2=2_(k~p>rR&%-o9sna$QumGV)0O?e6+aCTt#cvlQ5OZ0){rpvf{on;_EW
zBbcVw0Yj|QGRPYIxR$St6>g49-h>Ycl)WLo9rS_NM}E;NhGTmu&K@bDUn7XNzmfyd
zLzqDZAs)aEZ@JI=zH|SvRQ;i`^B$MAuYl=(TS1)D+WfWJ383=rBGnJhAa^Scl<lq-
zq<2mtOi;2e&;kGrUVs%8bCa>O$<c)qlccD|T!@Q*#>{uwD?y(iO@f{$E)mo)%G3Zz
zK)1i`H86C(%^(oS6eV22^l2=~3ic~&W{O=u$%_!B^6mmXyYUm{cY*W422Mhj$*&#9
ze+vkWzjh_R$>0uE{CAP`x@MYH;=7shrGQ2yn3osF+pmAR1|}0G6&4je{Ff%z+a;^S
zk{U3F$vIX?2{qHx^=mDE@D3&<d&B=i4J#P@{6)nKD5Uo^03;?r&(QjOD}#Wp-Oihq
za3X44wheVdohcjJ7rHtPu3h3;qNzOAtHK8>VMwy%U?8!F`@CYNCAy4vRst3Ww7P^)
zh7y{dMOhocXT~lrF3Dq&E&V{JsT&t8En13tSfJ|UI&Rt^uN_;bp>18V57x?+4ErE%
zb>#263729#j^xe}g@Hv!%pd_}lm8C?J8rT;9};m>6ycr4H#xgT*bt=W5G5j5g49-g
zHkj9_e$mkk%&U9*(YYb~6q_9%;GK3c66R}T&yRjRHg_4;L$G~k`74$Zw{UPiBn-p6
z#7mM(`}<<CAH1T<1m4Qw%CSex)C7Tx&dQEGocI^WI0j{SyH7-2`r?VD=8(#!X2v=t
zmX1v)<JVS8^1;+fg)ZS}A|HoVVFTu8nP}lN2yr~e*gq322#luKb5BxRiA<`y1T$XX
z*zj;49WXK~_*h;#Qt6#`jbCy^3DA{}2l<?;L_?P8#miDjVHQ#2_yvuFjhRg{0V!K<
z=-<sq#c?JbsoQo)*M^}I%P|2NzV8tT-6pL>Jq=>$?spJU_ZkIZYU1h%o|i&1q9+EX
zoxUFBg=xxYhA|xb5L{xpAYP8^!*ey}4xD<8e9`_@^>YR%R6FE}wGBk6SdzrsZS-6%
z<-5d}^bmoVi11E=$#rnZX0`xof39hZv@?Bf^>*zRRP$!|>Z#k|`f4%k5^$5=l$r^U
znKC};T3D`w660dL@?a!a>;x%~Nq2|1>G!v+R}$mIDISy<xsH>5B{2i#-3x{LKg1aJ
z?K=G#hjeo4mStybpS4MC0*2EklZ5`mbD)k#I{KN)6v_@D0RiatCJChel0%+?n$0J)
zZ1$i7WG&eVX|AeB*;(3+-4`4&Cwff->Fw=Ebw8+Yf?N{)CSA1f07>|FT%hP?C#a`I
zE`v;u0(G0ZxEa=XYQiw}2$+Nnw<Sq1jj_8Wapq`#AgSZ<B}*2;n(**kOZf(`s|XAX
zKzeT0{i~H0ybO!HR7GWXc7&uR7J6jjTYjf#8aXJ(fIfNWnprfEZ;L#)^aR2Y^(43=
zIjMg$B}Uo7c=1p8-*mwW!<aRWZc8E()L{JQ&(l9_;sTY}_CBn<T>on^>|eU(vUAfe
zaK+GXDxo|j_KrY64|~M-Z1AIGVL7+?-#LdCSWU9UevmUQ_(f$09_|Ak+sS_HZUC_C
zh(0Csgz7I=&aEksB<svdh&xnI+_uhyUn!6QRxOzJ2b32fBk)A2`o8}?>aM!<8m-{8
zXd=>V7af~%Rd()w&ml|ZS^gMj6_qTsW`6a7uJ72-Y@mO8=$rIC{^h@rijoN1(_i}5
zO13CN6CnNfSu<%nz0Pp6_5o9vjqKmp$gyxtI#ug`C7q+EcA7IiObzAcXt$PUb8<9W
zM;yW{Bh2CduQ0tpL1MK#8D^((lZ9~e<!3dcBJ8e=NLI5ZpDgh_maJJ?&A<j*tdXtp
zbzz?WeLn{KE*~f(eeW-Y(J%V=1o8!`tN2?Li9JXM%56j!e!mcO3NAP`nDPrsS{?X<
zh>!M<8n?H$O%_Mzm$;~!Ia!=x0+b#PxKb}$@0+@)(wCVyu9ZoB=YTPOj9iY;?8+^F
zV<o%|uuGXv%ytB~CdB8IQMr<nJ~ERfH1Ey%@^zPFZbs>fyPotRE)@*pr-$oYm9r=9
zvbK`^G~dhoey`hYRK+gbEbkBh@}2sr)V#(%zbYL_`Q)5l2fxz?617Yh-C}2Y2(>*~
z<o&L#s=*fn&6TeVzoq0#Qfh$H9^?@&+Z+!8YCQ8(`3g<&taEzw2`aW6NHq2sm)q5w
zq^Cw26Hr$ou=Ad(e|^8{Z~!!t^SEFCk7&dAc$XQG%E!MO4IUG=IzPD@$yphp_Tk{d
zNptxrvs>lrF}pg{!3Fa$K^_R}6uy!H!-Z!fo_bW^Tn5c_se4N^%B=vZ7iQ&DvK?iI
zQ$)mk9s9F^ia*DVi*>)h3Iq!8APGjU;0HkKwcjnKw2!HQZ;lK>ieB2ket&3^=w@I>
zjByMs;(fgq4&yjCi&ctM#|KQ*oZPepgj|)to>P00uHJ~HQXK4=waBqJZ?UA)@7Y@I
zEo`V3Z6B*0!3$pAqYTXQDkpX2@=ycr-VN(yxt^;`(6fjC+0v7;$Cm~}7Y9DWiGo&i
zk<=I($NB&b1vKh#q8{RTzRf462H#fFCsFfFZ@0c!=W<PSiMH-D9($+O1DE(6uJK=d
zS%&9631tGgZ#_QOAMV}}7RF^nX;&X1>qhG8v75CVOc3X=p<?rcw?s%xzS`T?pEh{Z
zM@rMrW)e}w;Ch`;%Q#MQvHr&oS^c9ZS*3Xg%BgX$bu@(xGL?8*3vai!4+dkwGVGIv
zm9z<|zY(`BOi_BHP<w(U#|AyWSC&rRV-r}F(HT~|-@C9T%mC-d#WDgFz+&FDV^Q#T
zZ27kU#9rGZPk{#!#uNxa0oa}Dwh!|`M_(w3>_~*wFv&GKxe1M<{}d>V0!fR&jbJwH
zvo&vK0xCNJ;IhmaqzkuhXgR5sG_})uk?e~Xf5c!^ME2Hi@#5Q3M@Ui>@hlVNy4~(f
zeuP+6@STR?gMCcrmfKcQQbqFF)py7MnMhL9eUM?1nOaoy>ByI{`&YKG-pI5vkH+o+
zb%JCTi@tF+J{l+KbYH)ElCHZT9MNiK34Tb~&E~oaSa18laMCS&)65JK3L9ig+`PrM
zSgiPs2%^O9#*}3+58VJ^F&QvX@-&m({<L>KGVYm{M9Kb;BbxS0EFEN0MfL`1ACc)P
zhj@0vwd}^xhG6B}qZ~@&V!Nqdko{l{H95Sf^M)A_!g_K=HnV;gCA-uBS|&WDOh#&r
zPROVG=kN2tBk2Spm0JqvA54)(6|+yN7<aKjF0bTom}Ob0mKeC%f;)nAiRG{9Ph>Fu
z;lp+v9|^iG1V)K(AcmL{UDx5Ig~8N!iyqp5Z`y&VPiUBJ@+Hkf+$kDsNh*1t=DbSR
zgap1{R{XXCBj2H+pdaBl+QIP&XXu^~Q8@sl7+8*CK$mLwa9EW0{5M>HfS__{OA&CT
zE@`fT_bQ{lZ9h~Ooqx#UY_7B5c1WRBS^Z+!dSdWVwdJG;3Tz@vQS>TR^RYvRKWnRT
zM`V*)joK`%42?pF&A?1SA1!LSmajYw!yhUI!}&ER8J>}0kQ?pO0t@c@eFiGX!5z4U
zUZ0stX+3`z`{9;%9z;rH(_LkVB`78cvRB|!O>m*QYp}B<>`YH6`u&A?!`w@C2Y7JD
zt;7m6x{;s!E+({>shj0$-7-8uCt(B^nW!DYYkB#N2RA1GfcXsX|ElB#?A%@@-!sh$
z*E_Q#9GlM1bn{(U-Dn*r7^513C=(u%0;5Vf6j{}VvuYZzbALa_33nM!!gr;Y+Ib{_
zF_O1Ec_^#Ym@4j*6&@gO<E+R~u@5<W4hNjI4byjkK)Eb`zXV?4Nrsh-xH&cJ;Vk}t
z)4AEx?xo-|K!Pa5CpY0YMb+a)Y1SPy%;4fDUC_x;l|cmeE<{bU@ei1*Y9e0xkPH%Q
z)CaE$=G#%F`n%JvuBHQQ_C=3e`bF~8>gNbf2G-haoW`pG0LRSBXI9u}lwgb0f}I_8
zlMz6kMpvUNYAs&MzX*%lS><7JrfN8%I0Ozvt9^Q^kR9fbewiMICa&3Eqf*30nx$&5
zkrPsSvGP}NH~O>)`%aUn2S!)bQnB7V)1kLtdy4T{p~K`{@03u4&hqT&oi{;i1Jq*=
z3iSXYFEeX(EsQY3v6?4~B`B2}h4hqh-bw<Wx^WShF+Tgo<bp{oKg9|DI5*FZgBw*z
zqDzOP(MnFRfS-1&N(_{tCYTL<wqQlbON~pymLJrZh&`8-yI&+BU8E8?>q8A3EnF>M
zVy$0CpRck7#*E=c#Y>(fp`gq%{I8}0`-JC?dt&$untJ_hgI<$Ak;u{vQ~VMjRnvAx
z<%$YLgCynScH4FH@z#a$aga2;#+{Oek7}S-`X>>@3#7}6Qv*Cj7%oI;Qid&#D}51W
z!e$Yz?pc-u62wm^FmeYz;4X_=x8zO@s*@>Q%5C8Ub>t-@834MZ4p?s<B^FN9ibPF&
zHhZVCCkuRR`vVrExIgH(q;<#6lr8$@*JQ+}Ty2N*u3Z^d#Vf<zpAb(}nhGOlvqJ2r
z{P`!{E^HwsHT$RE6;tgM84^D7oVI*4EXEdq)i|+HT|l*ZIj1_aC~dE>FTQW!gxJr>
z1b3R&Xh21qowZL7=x}w~WdcBh`5gUF3H&PoM`Y1^P|f3qZlDUq>4FMXsdNf;`di7Z
z$X*Z90@q+mgDKn4+k8fLB!RtwOSR59&00=oph@_jWb~Q(A3LPnr1acP;Q)~zmTo_{
znJ})aPa9t(prpJXBETQoZSXm?Ku*$oFY<0QbuzorXz`{ZcAmtwDUKap%0H@gjuo8|
z<SrNS9&<pNKHe8cCymo?48bv2<+dq=WO0vIRD7GtWclk>d;Q@kkrBAuQ(tiz_#5<f
z8^H4S$-$|gi>}qD|NrQGoIca^wnJI#)5>@3FLBTR|Nre6kAMIEx3%&A^8PBnd+bQA
zwp)ZNfJd+CVM9ni0BKlu8{H|l%6Kio<Xhp~z>z4IC(Iy6txx%b_8k&P$-8y|O^5O|
zK!=j3)|d34-w<8`_PMHN{#6-B;7t}d5<%JJtFGf^XP0(kjYPhk|5Ez4ZS2$&&42&)
z7#DBjwTc}oARCCeB?F(|0epBdcYqVGvfq7L0&fhtQ7FuWLqZ?{IyJv+777QCKl|kI
zg1eJkfLN4tQ=kmVJx%%sr#I7|{{w;qNJ<bht#^JyC)h!|w3cYdC%C@wCgTQPzSkv+
z)!wETu>Or(c<x3SkD}yI`hx$`AzV5dQ&qCFkYYZvfZHK}yMShmMl{QqF@?O9VSUxi
zg0POY!G&SSP;sOmx-tBJ;`_7`OTOP!PVGN5rgt*4FD*`NzR(qU@Ih|;^>v6=S=YUS
zm7|}i*~ljfdiek<T=R2atVl2)DM@y4h%Xzz1V9b)c{^upUF+*qop^ypt@qm_%eq})
zQ^-+_n6CgQ5^V8^uFsc15f>|YOb22umSH%{0NA1J`0*dbZ@`sKL5qSUY4wh8RriK!
zoIH?|@&%G;9@_>;e8v3IQ%)nN0E*Ebf2!o0%r=@2{QDh><BhhgCA>s8tMYOLjP$*&
z5rcU`SLfRTdLw74q3xL#_0ZsK8~&~)Hz*k-u&W!6OR|f)Nd7b)dDiAztGF)nd`#GS
z+O!d0seY3gx6=a864R4rI<4argY;t^1;lmCpx4`|nxK}28uUtXa2c~LADgB%TYszO
zND<$LUhw133f)rIP3Qa;d;g)OMe)IDBVB-4K(fEP6%M@b$+!T-MCV-q7Cm94pWW6!
zO#r_OqVNimgJU#P5anzOHvMC-tb*W~3?HOXzwq(^t3}J0B6c<N*PL-Yl9fkEFvPp0
z36*iiARdKAEW;i;xo_!OOg?HG6-2w$qXfv0SYIJOuG}NCY_9BnIyvp8a9&re5rNqb
zYIFBI(K*Nl+RfoPE?5)-7QxmfMy6PT3)EZexr8zlU6VuyA{k~2VBWdaH>GNUvR(HX
zit8r&bDJ;PAf~@AdcepCs#|Hb?5;fq{~DFRjrEn*`7C6TMtn=4@8F771UP#cn0p#>
zY;RlxmmE*(t#Fc+I%Gqdo;VC=x!ZdRut5cZ8+y=Aa>K}Ly5Z$qVM^RSuo;pJs6H7&
zOND`;UB|Mzs!3V}?!G!@0g+o{x;Ggs#3rf_UchFoHK55tU+dT(F1=5HOB(Xr5$M;6
z%cnNAX_(_8=JZ6Bi_|>tLqX>I&3Reu5hy{*{gYy2O9nn@!%`d2L9O|>F%M@8tvA`>
z20EYFjhR&a!-~X3SJ6BJ-ez#v_}wu7&L5iMYV^qy;q$ce#~Jgpy5(6o9}QZXCn}X)
z{*+Vfz~Rbv!d=aH5p)HkA#yVm|An_I`23MYAb4E8DFbrO$0Qf2Pr9Nlk$pmPmL3lr
zGd}3Si1C~0a6VO}Pt-onX+`*@FGg-dzRj~U8pf#btr*sy@uPK16Q?fubT5>!r9<vB
zQwtNdGVOONe+m0tN5d3CK<{xoZN4knPnl*{Z*mmwXa01kMrP`0>?nV%ee$hlYT8)e
zrm^m%)d$+0bVnH~g8)~@u@RFG!4|KTeSqj-61CQVFBE9@#tM#VkmujDsZdPXD8*>t
ztB5taQes$_qMnch910NMj(<Z$@ki3js2x4HoxAyT2N8}gkE7oQ1kE+~fC}{D0U}cZ
zE81GXvDWmc_ly!EP|`@C$!pPf2*Rc0pZr`C^D%mH?e>w+@Fxi%e{Tcg2+DX;;ddrL
z#y9`3vtfs^Dc_)xrwGd8m6OX5tU7i?c8RFpj#UR{7P5cdWgRL6xdTUomHMd)RK{cZ
z4TnjSd2O@qf7@J-sIYnP`RRdz|6~9eJ?eWqT|={Y{15a)%^EU-Rd^N9$eH8Qas;ib
zoqARly3!qJip;iQ1RqdJFFEg+^ta0r@uU=Ck1h9p`t}wNd1-P5!W@emk4<IB1h-Yp
ze9RpGGIkd;xsPv?v>ju;ZE_){aqd)Kz0u#U&iKXJKUrov7RSPUlChcmg+r_urz0?f
zdhi6`RhA#A-cPd^!->#LU?Rf*HxuYz(dqmfU8<kH=wDm$#^au}_nXT3;w_IlpUo9l
zBuxc~+|ZJr#nw!yRIs@)<5Q`&vO%WWzupZ84sX|R_ZYgc0M|6W=0^{L&Ke}4IwBS8
z;nazt?s}C(s^!3dRmoXekl^%3r5}l9$-W(X@@BnI&E*%i)XQy~X56Jx@hXn)nPKCf
zt%(};7DXt5s{v13dar<DW2O>>lgVaiIO9)Xd%U<K6|9$B?ShB|V48g6e{&wqQ3sKE
z`N^b)UKTSYV&F8IU%H4|SM8bGbHvX*bNF6K&}Lpxzw0vlwLs2+VtYLg)LnlktcKQX
z6U`Mc*QupX*Y4O@6g?Tt%m0f=B$)&H({#zGXS^~7h(w7k3*N&Z<Bc-;G3A`?!g7Eg
zdmR|ckp%nyH`6}AO@^`(7{+7Gy0s7yfrD}^Qh_er<J5+EICQB4?gf1TVOBN~0?2M-
zH0y0#R!cz8<j3e6+mWYgVYWzSNCg+Z5BA~rM^qj?L9!QrDNutGU<Y;5;}=ZY=}d&4
zC*$d|1)aYGM--E;9fUNd4DSjAoPUA~0=YpAz%wVEv0xVWDWl*PglN;T7%nL{GVSVZ
z)yH~YKQ{wAi4lM-8`wDiU7QeW_SK!<-R8Fpp8TW3cH4e?`WLWt`Ic{+5(Bo0@-6o$
z;=p;;AreeTOGmE)6psW$#CEr4gs9k}dB<?r-J$V}ULy7_XAiAoY8}56L5`5kYpDYh
zwHLaoWQlm3L+4alyPKzJL8&sebN?~)_x6_!UA;WTwyM^7Ksj{VDVLE`BK6_|b3sj{
z|7~`<jZ<EEU<<yQNi&qZ{=NZb*ER(=;WnoS7*cr>aq#h_N$yx%G$9xRYrDqW@pv>o
zYY2Ekl@pNoS$VDOEDfCYK3rB}f)c(S*yQ&^_RAUnyW&a6{Y}RPF-7!^K1Xp?krh!>
zR>}Do?f0j<0VXr%a05V?hva*RKx<9HvPQ@1%<O16HNMe5cKC2OHi-=LMOXy%|H~|A
z5E>S5d<yJt)H`(nu*8%lrX8jKZt1P5a2T&nM~!b#2Y+4xw2#aQ<;?;DOe>H+SnFme
zO2EOQ>E{{tXn40aAB&wE_m5i2cVGWB?_<Y&-x&&ek_FVz`HR<^9Rh;$i6CZEqp7(g
ztGV~cFxk7OECHSOXMjQ6sgYQA9y@pM(k?<==+32v#!Bw2p%*&?RQ%28aYc#caW_-T
zfkugvmtY3rmx5tGm8W1Jl|tU)H2-X3?tVgy%zyvPJeA#JtSLDySd5um7DMfKI@}N%
z=6tFK3-eMs%yFh30sf4HHTlZo(`kW#N$lv~oT85I8_Jk$SFqY5LWDzI<d8;vO|~LJ
z9!f5T1ZSS!W^F7UqGLQwhz7{<tq%M+1aQnQ1uCAXQ-2v9zxRM~|G+ti3?8mlf0FFI
z_I_Q5Ddq@2m@_xvrV=LdpDNRUyepS&n<iAO_4UtGtwA%cou57r<7Z19-U@I~j#WF5
zED_&~g@0M8zdbG2bU-$_(TUzfW>$_*u#GP<9uptxvsXCpv$ZOUgs0C!A&+>AH@!UF
zBxywZ^drr7N~sQPCb7Ba+N1`q#9@SEIQtxg+ieaSJOt-iFuGvX8R}E^D5+f~Mgyum
zb;gQ9k&YzY3pRZ&J9KGj#^qUn9z-O-(c2lg956L$&KvAVY5FB*)S6i}9sByK=|8R3
zUx_V0YHopqxBjGHb~~RZak$jC?>hr(czV=WlIqM_kn!sqZ}}3p=bhUmBF0r9DueI^
zKhrc~)a;8lJqGcwQjI7#Et@j`#nrl4;xl1{&hEqdmhElqoBfP*?3@Dsm0Mz;&{!a6
z9!+DzmjVm4w{EFr1?<eA=!0X3LJG6_r9ESUOqWnXXp9+ry?QUe3i7~ingvALCMJyV
zyb~cLQ0IOtbZ@TsX=?_kflWFh4T<ahmtO93{T3BfBmIwwKi=QWXq*ChYgGrZO24C-
z%Vvd;dP_`W)r0#eVH00K$3)9?=wmL_ltX@(iSe^rY>b0jI50~YKgm2Ht5N93Sy>h=
zOF#X!{+C;$XwOO^+~-7k733reexl1{|E#6PbT7N$2hMzlx{N4->?GjnQv<23pJAZb
z2gk7|-3*(%`JA-1R^*yeYAvB@*d*<#^)WyX;bP<LQ_#GZ)E585-6AJ5h0`~Z|DQ2L
zIEt6Kw3|eOGgx;HTButMN^q7{BbCVethgI|*yw-{<9q;Ut>Ar}zDi*R3b*wgxT_2s
zhwE}=0$FK8&K|P-o01S7+hklo^4lz5xH9(<UAoP=bw(UMITnLY786<6AuT5=8?hD!
zkcD@15KgX@0yNeiLiF2Q<Sk<Wc#DR>sw0YB3lXI9WPMZK8kJTpTkY9v4JAJbEz?j8
zf7z};Y-tO1UAutMw__A7-aEI8z}PY$x64ftj1aWXanvbrJiVECmJ1<ELWew_HO_ES
zs)VTqmo!=ymN(laNr9K}Fg4nLz~X;@RkHYl#YI1t4zrW)tI|iu-CaodK_*)6ke#%~
z(RI;VTF1%CCV@jvLjcjFY%0nqIg4oSv3k~VuYVz`54HU|gqd$DVR9t1JldZ`!Tchi
zET3ug$8gyg`n60T^n@1M#(b+esuMIO+<r*5EmMqV*ZnfOs*+8hnYQ-1Z#29)w9-S7
zC~4PF;wU=|BM|o6cotE2%g!Mh`=Scs7;HwB5_Ea;MLOQh3#!g+j>XKQzi@{ur)rm_
zxJt7<$+B?J!_W1lLtL2GI=}zz1}~@zTV9vZ`iV%Zdmig~ijDeC|2<`gQe16Y>`$CM
z5|C7q2df=T#jrwP)x5~^2z)FnU`iWtqHaeZ4P=z6`q$Nrkn)u0K5)*|aFiZ&omptb
z0j2DvmUSaPpfnA)0}ej#yIoN(f2uEtC&T6p+i|OCp!qRAgw-Q&hu3jL9@cVDlGf{8
z##k0A>|OmLL_oNQGv71V2JYkgbQ!@`VeoVIvL_x!$HzKJw-d|jdyJt^O^pg0NqMX1
zygh<SO<LcqU?jjL&Y>LVOCBk?w_6k^$cwN1yu~E-jNzgx==_f;1$Q@59X?oW3v{{2
z&GlUyu8KDj57F59ut(dPjx!JUN*)KSniW+ZaRTQy(vz$6QND`Tvl6jO$n7Wduk9#L
zSjlq&icy57mA>7<xEvVwA11-~tpVWQD((b9sFU%|wUn-;Pc92$52S5J6B)USAwo(9
zr*i64D+g~P2%u#I*ZC4*GU?<!i<_NJ?L&`)6y=SxXKzK*>PNE8XVb3H%(Os18c*fI
z`=LRaH2aLacBryzYjIx=#YZ_X#C)`%`<RxtwAA3(vS2n;IO=J=GHMr^a~79w0(-#a
z)KfXzh?T{cXZW3h-PN4-XtxtQ;BI+=Vmcq#ro^c#CK-T@Ovw{hhdaI0$wlIQ{K#6D
zf^*wUsvk}%EH5F6i8&*PP;=6&Kv1F13Ln84SFwa~WX^YoBUS`(JnFL_>I4<3wIFnh
zxen0K@0{XadheKE`<=@|JA(A5KyC45dhdO98@S!-y7Sw0wcLIcp|!DDHz9%#PoOBr
zz>Tty0)!OT$&N5N#4?x&4-ZYPjfpE<r_<y+<o|rO?<6?&pKK1r9rt#;6Y&6kTovd<
z2VW)l<7q(1r!KhKRfX{@gjrO`p})$BNj<ifPd?JNC`GvItVLSn>6&j=@pGeFApAOv
zb_F0X!?bG%9}{r_f+wC_Mv)(b+d*bro$~w!9;h{*CBdvy1)y>z7iZq6OgPY;bH=?l
zupS(YnA@t(e}gsM1zuVX4i4_*_errQts0dbt?QeU_kwjV`4A4aVei|Qrt=!?RYFf)
zhK@YuE%Ah77jMy5J87oen8KM@O(dZjgqKs@B1f%?g4Pa330%taO#g*u`jJ|?aKNrO
zrH+-6W)d@3I`Q~z!?GG%6=1{ONXf&RIdsX_<hQC3ZVUmYGn=_(g}^xPn9R>hzO)$*
zz+M${IsK&<Xibvng)O~|ns6kmvuYyV&=13Il)*3NB<CW$x^{MnxjwDhIWTn<BwyZR
zGy_?I<!AE)lTt9~-W-jH-`omvueuq?sotsc4NsZQP)~aERN~Qzj_?APiA5f|QqE-3
zYw=__r^;nX6L>JXP|*nX0;GtBdl}J)O=elw@B7G!99GRezTHcq0EHkUd{0?GaLi{H
z+_$o|wPSg!X|NnzgwlpVb|?9XA^K_?gp@!3mvm`buI1Q}lc0U`cmJRPSBu58)*WmY
zPfpLD!xbn{o&V*im)LgEvtonBSw!je{2>;l!awl?zO&Z)&;LW?E55=ttGq3z0^hYH
zp=VMZnsRmL$#d1aG9IM^gC%HgLWD6A(@-{y0bp-olh_JZ4fI;{PN#u!ZQHbL#oz*;
z2K?V-H)pn>Z0#=gl2w%LNWsW%7D0=op!^y07OC>+5fsJAOTw&fjPR1!GEVFX>a4-e
zuG76LwX=Th|8?B-0CQ(0ZD-!EpRdx^KzBqD)9z)fHM+<l?wzszjxufPQtDf(I)z#1
zaL4ZamH-!NH<S{J;P|KsJ_h>YhJ*E3?1x)i8>57)hx-sObhZ<C;-~!wo1P?ttm2rg
z(1q?xLs}_Gy${S#KC+;_zXbwcbM-&B{Tw?`_<<WedVXvO_=Sq%@gPty|6YfFJ-V}V
z&sPG8Z%+LP3aMCX?J8OE0sY+EPk+}HE~wmeE|HovVTPH7bz}($tK6)nkN%LAiNLAq
zXCKHGFFW1tf0`w4vxjKy7H@uM`nOIlc)0BUQ~N+(KqM6>a8I8lbfRCrQ7vyBxcIHa
zL+Ax??wO2{>1{5v9qcpcmHV{uK4LO0EPBR!f<FZS$wKC=j+sg*h-qvtk1d)5{5B0;
z+NuXHN^5|M*VyZuHu|_-BsBAI4_w$waGkO5+l*^^(!A_aRDSC?O0Rin-OigXeOy$&
zN50M)s~kf_^YT|89nfNt($+AgUV=CQ_nv#Uwsd>*&r`u$Lr`gQ-DriO^-ENkoQ40u
zERlC4sGs}tfcVOi+;C%`#nWR0U3-6Dw-ckG21i698(ELPR@=x_#Bv#K8r(!gnnL*9
z{EKPGB-@koJQ{`b@<&hqcu7m~iKF%gqu0;sKYvz<L$}=3mwXbgrQtHT6BUrRe(g~G
zSTvkHX|e?l`bNxG5`x8}{5GI%N2*XaQC8-@ICa}vAThLn?{_Obo84>ln2o}TkI>g^
zQt4Xh+B;dIKKYFICvp?sA(jl8(s@qFLNWca@N+B$T;-JSa79B8+;W2_897HrR&)^L
z5b)(*UHOuC_6}lU^DqozV0t*`aE-y&nrRL#KR=aCs1gY|jj>i#wxlhP-v<ofeY6X>
zSz6$LBL8rwH|k}4(h>m;IJ-2Qi&K~_F26(xHehp{4h?Ofu!qG1sowg&4Sg3_84f{X
zw-VqOP=63li!tu6S)#q1K8*<F*4+wRSJM~*h~{omEnD2h!k>%C92SmW=in*yPhypX
zM#;(|-D1=?aUSY-fm^;W3p8}sSy!)Ft<5_YT3$eplHAd8d!QJq3V)xK_I?!OsH8}V
zD@XEb$brh>u{oxX$_*7zsY^4R<H$kJu{Qz*RrNmQcYHl+`I#UEm+}8Ms%GF^8hujo
z`rFxm$;1C%e;d7~{y{wAG<aAffhN=uQpI!r!LS>B_HhZm?spOp(5p2;XBILWsgJi;
z!VWc}OT@XDo>&8sJ4svXA+`PL<@{a!jSV(H{w8x>pl4ajFV6mUf;NxQ7XAkAsygIm
zsWMo#09a}FA@C(yMA@ojB28g?WhREb5=PC~VD!CsM%FZssz1`;Vg-p2HqUrg{ufaM
zE;Ab_^Up~)P&m>Cr+r5{hD=3NIrsC{xNZEDrQS!1*HLON$0NIrwtl=R3Pks5gC3^c
z@b|1MaBOik%UEGaAHFEb>3TdES(%y2j4Gnwf{l@aWZ`{-GB$Q!@@>%j(S1x+o&fHj
z3^p-14c7>w7-0Lugmf#(_>JGucL`DG^^ujf5uVVtJuY5D$2oU~)3i29@2qouqLg5W
zs*SH*KdhE_c5{=rII6kWhLuq_W_@L*1Ya*nzwD#2tZvHX(#-v6xOtsApvMNt5Sv~@
zdfzFz{9`4>MC%n_n{a91ZKIPV<Cwu95he1L)N~}h)KL(IVJXMfla@rNzYq2jc|9om
zW%j2%1Nus~r+snGmQdrvgW$T$X1QRli=WHKkEY1II{D<IOcR-fU*G0;pF#Buj~rdV
zPMzJYGj9EsRYLo`QdMn<$S{1@U-GsD@tD)1&IJg1H^$pB5qL2(wFiQPg4*{zu3XzV
zD(?DjcBXyK;~6N_!YvQ<kbKJ-gQ|`$4NO=+%Uu8ykp)BXz-y)hC#@)h;!U>c8Jf9s
zv-U5yf{slrLdPjH7|w_#=J}KSWsb1FPng{K9`{8ahH`+a6HER~(OB56{NUVnV-Ewe
z?{zcNR(Mubew&RZksgXVdKA6d?Gv1tIQIkujzgE3zY%qf7I<nsaYW-}<aiNXm?RMI
z__)Pk9XdS22@?&t<R_22tzXcx?+vm5sne@-iMZ?F?P-Q%M~%5;(Qj86M5ShFMh4>&
za=E7lAz`9-8V5q5pce?dBhiY@CYfz1_^CI)$=;{`Mher2rJVp(P^_Gx!i5cz5vP{<
zS$2+QO;L7cD?^&MzC5|s_)uV(0VyPAetX)fYWF{)<q_{xji0SeS){o`eKei%+z#`=
zCg*Wg{rT?=dYJ`N)$|3KM>-GUR3XnRdZ2fvZe^gSvgT&soeSSEd2rFDZOGc__hE&q
z{dUe6Cn_YO%C@duVaWO4l9MHAb$W};B}%XMVD_Y?mHrH!^q{Fwr}h?^TwI5&9kqQd
z&Nd=k{+Rj2xU<u5)^*O6A|<vMU_?m#X5l;S{T~GesLY`@YvG-N>YGQ!)D}fgNHVom
zU1Q{YCxBWeQ@t;E$vh%Kz9RRdqgNacvw*MLk=pf>R9zD)K5kv;T9WTvXX6qp^vu93
z3sjO&jn>XIrvF++$xjT04+OxvjgEc+0s!SW@x0D!jiv5r0q#&dyG=6_;)yB}wyAlV
zT)l4$TWT%}zSg?;YKQaI9n@(4!$#~UBOwl?%8!$FLaweRruCS7SZ44&gaz<m;Kg-&
z*-0v8MGu0|$nag=Wq)T0obKpd6uq!FC}+BU=<2H`f6#Kt<eMKJiNSX*#ivu7%qSf6
zV_(EP=>oXdIuLo75AKiP^?Yz(y*b*{_5@_z`QofhMg}^n7vmNvxZti?=vz3TS_+CA
zZeSOSv~p1K)xZD$|Noo+{VQ1P%L=U`)~C|9`4d?3VgudNyK%K_yAN3Nr?zvZEo@Kt
zlj23WXfBY)=JxV<cSa1a_mLD?I(FS;bU-ISf8I>cCzMgB&IZ|D@1UgtvCAyS;2Hmn
z_m?Mprq&qFp-xtm#6wDbx3FT@p0B^N?`11u<YQm+QNr4_%;{1nc4V`=xyc$`ucTAR
zVYkMA>G}dlsI3niGq3UYG+bA*w7pwNVo`Ti2x8%K^(r8&-VAp_bTrQv+Tpd!S4rNt
z$#zm6mW>z^0oG${DJVVyd{%{nSPCCe%4e055FAZ|1zI_?-G+qa1;DBy<hf7suXYHv
z#|=Uo-k&Md^BAM3LObCb*A$3CC@psatdJy{%lT%UMw%wW#U=?t&Wu9S=!ax^@wjI5
z@#uyRhS9GF4SzbWI(76*W;b^JYS^DlKFg6R8dG}+^6w3IgAF}T+x?$-1{L3TVy%lz
z8){*e2hm>GW49>y;-i+A-6XtsC~|&SKLGhkjf<UNm;4$(_k$elsDV)teJpe7aCkT$
zdMa*ySl?OG0$gU_npn^1Ro*4DC+J6(PMC2|wDeW9_T%2f*Y+xrm&c75%Y?Kkxi6M^
zP%C9P4^S}C=RY5aC>fG|W}Ae<OVoN)+llcq(WkHyA5mr*h`#utXYsw$VcCb%DLj`V
zprg*xkiuVb(;*@5hPNuJ+Vmd#lus{ok&9Aj+v84=wm<9y{H|UvbWXtDxcA;At&&vJ
z6U013@8{^ooY$T<0fuJXy}-U<jxd;UF}MCoW3Ymtk<*dSIo<{EsE?>IXBmGk(pJ^~
zUmgoICuSKc7OLZPTwFJZzs|m&o`QqbA#C{Gf;$BSw>N~eYjC1=z*Hmm?96+xCTdHS
zp8<orzr?HAleHd9QU+uPtf`)M+w31#dj{hT6Z8CcvBM~L4TF$41e{jnA`yq3!{hJ{
z2Ih1`79azF#s{5MqokI#>wDhCM!J}4oAR^$)pirG6W}>lr$Wx9O2YL>XdnZ_?yslw
zlT`YRri`h<vS3p)GpnopslP9D`8LiG1O}^MoPb(RG2Cx;fa&5Nx+ES%^l9mJOLJ^=
zP9fdJ()x0S;Ye+4=Mfi1&t#S~g#wEvo*Zfnu|2JiONcr?e##^-Xp$p;6aCkX%(BHh
znit<}aJo+_<dNqhePf%m3OBh!l4}SWETuDS-=(nsJNu{=55C$Xcz0f0y)*E~W1C9P
z!t4K9pYx69<u*U;MZHI3*6%!_V5@iO_K$->aS$<fD;Z36cVgH_9zlE`Z5EiabUXs%
zxVuj9ruzs~6ASv<9<SG*ehH=#N;o=84|hvygBS~)$c5o}hIPl-%5HChmub)~mXjLv
z&it|g5y*Zb!jeYU68DF7`RMO`BAlI9pFo{neM<Ua34VdIWzN%+mL#Zc)nh)WWUDvq
zQ6HqpnLls~0cv5ts{Y{T7b=gZ3`ZT3qmYa0?ho^-U7+$vk`CkkF+VP42~0K^hpIz1
z-H@UNs1EnB#V=YQ&IB+bH{6+L<}iJMbFCHluJTO0;$5t_s=F&b)rT3Ul6x{n%1c32
zVa&2bCeLU*&30xt3i_<)uFxG!!$9DMvrr*kA(dL8WSBir?SP<>uPl$*xDDVrBWqwO
z+mxRdp<g?Zg0-bQ$Fdm6(}v%oOc_={rU1Wja6x<sSdmt-|LFFWoRQgRw5dr4W|r)q
z9#()4YA9+gsJl}Uh_+FrU0z*wNd4cIg!`1VV(&Ub*nY{O_DC7-Ne=dQlz5G0>~%%8
z%}%_-!+0l|;!qttA$4no73Jk%#Ld?sN34fA3)+UDO0?o__jyF46g-wFEBC@6l-%_c
zu7(v{n5ZJYqy#-k^BKmT?bXYG)w<7x2023IEZ1>BqCL?atc5mg<kCyU-e0nuUL<0u
zOwgn?pWQNb3Zd$OyP}lBXqk(#S2?0nZFnr<l^88eC;dd7+!4;*pckI7#tM4wWJt~s
zYiv>1-lNRuKUDJ$oZsF1L9p<g(4&!1?GZdQBJ~3a^5@e=WwoE@U7BDrl@>>JzIxF4
zO?WeGto{|LZ3(X6z(i^mygAzJt{t+{V#9u6!IAn$PBpeWw!s<_7_!?tQwJwt`8`i-
zEU7W-&ELKU$w8;h0^aKB-|M094BRln3<8J_!IpN?V=Qe)W7<Mk#_fuX?1ZqQCpj{0
z|4Eqj3t5nxmy(t>6Vn)GoG!vk1?kn)MspP!Q)M71j7Im$+kGw2j0GBe{uc4SR?Q3j
zB;AvO!hg0&w-4Y`BXnG~Z=)tST7?wfgw(IYHzwH7#t#nj{FE6h`6^n=pMO~fpClb;
zo9;>;kd|zxYwfkql!v;@t!&}%7NfGLnjpqlH3Kg`7J^5)M!7D2n-fqFLd2bBh98C7
zJcodSb#6$w*T#r4gNTrK$k7x=y1ZPiP?bkaWBUg4-5F_<?yiYH_QWpJv-Z)|xpyIg
zd3jv*1kcBJ8Ha7HH%B(jSVmeM)|@hGpV`}N!|b3IWQ2R_PPpMO*QZ5Pa&qPx6qI=s
zo9xwN`(5c8pgJAX{=>KO`hBDK<G5&~iNW-v0`Pfaw=OAWz_8cpBig-RMH5bfL1@a5
zxGderabbL)`fzP1?D|4yzJI*YJ)?1+YVT$}_+!a9sLcMrNwLtx<Ia;MCp{OMr?|fY
z{i=vUkaSi;*~*MO1lR#*xTkSb>yj?5<vsbh>=ZL!Z{>8uX;AX?O~}b86%M>0G=tx2
zW9+rFkY!Fp<9i#}k|2c%aM9811+g@B0jx#@UGA6Vj3q$Bb~9&4p46#7$nnK>IxxUT
z04$5J{dEBsqH-yfWx&S{_tNkxv-(x7auk6@*DS-YF87~GPzgaommHnRuI+R|rJKnU
zdLK-AZ}qts|D0)zczG?lt4Q?SA-Pf?@<&w06qm1}huaCOj0I^RX1`-{#$8Y90iwIo
zpiDh7A+bO4S5toWmM6+xI<QF$tgqpJFiKc``G8HJ8%wqkgCP2k{ZT|y)D<(=`n?~H
z6#CZ$N>BuRek3|UiLRS^s)R%6Il_LS9*u^4?wkp@>#{VdMf)oq>cLwB^iep^+NUAR
zj8fBGwJa_Hb1aUG`W4IEwnBIe#X+Be!0LeM?UpITjWPtqcR;I>ag^KQO0D2KSNfy#
zQ*uLmXTQWSO6_j^BBUTj?sbqwECgChu&xZ{;nay+bpqXDshj0Z7DvSG5ZX|EkD#&%
zJO?*?yreA+RkkB=SL4N4pU*yYHbSV(o#tzIPa|CbkfuYcbUX>t8oIdn8jLQ@>j>{G
zhh1}V&db*T`C{!fDy<72HBuT8`IS>rC!v%fMVuWeG3pll?i=avG>70Ok&O6i%=}=(
zrOFGjrKb#{y&2;fxQhbeFi=0hJTbbv03ANODTmy#-ryJLOWk%rj_sSRu2>wgRv<~Z
zSdZRVm*Y#!=!HSK1V?dKvT4f5$kvwUG$);!V9kXg@S0~20%@RrO($0|gEJXQ3OuUA
z*Qs+)FT}3)x_YnQ5rbR$$cL6FN)s<!ZnTQGFBVN1v(c&u7j<YQIVk<<UPEDGJGr03
zN77dMkqEFDXA?|M$W6AW4*tQdN3ur^G8bHyNp2U>{lAkN3Oczyxh4Y*=~-ZE$5?fx
z`)wKJFK*XfIhE?>X8<J}TY@<}E59&0lT?+U$JujsA+}Tc45hL~x8DepXeZl;b`Pt1
zv^0iK&6wPDUs{Ia)OCj8yrRMH3g)0^ycr(w?WHbB6*}jdkUmCxHtcQ+3F11kip5na
zmRpyAXyl%w6g*G)Dx#G`{&cLBN{bY$dZd&>wSq($Ef7TmN;x-L(P<Jq+dkfXU|={J
zB^VUbGG)WPjG*iNrX%{@Ijy3MTvPN*Tn(2zNrATaVQ&kK$oR4|qIDh<ZA{)0$V!+_
z#?S&-bO*8E{OnfI6$bIo1hiWw?gWaS`?4JE%Fw!lwSj^&zLaCpqk8Q!XI^zQN!rOw
zDgEqBimL{(Ws*HhqsdqWw#obu3uh6=Tew0+!G#*;l`O>58vULrTgRrG?$97Qxuf>G
z!KyHMC!8a}`%4n_Vy^7=vcR2_fqSlN!^LJ-rY*tDml0toUdkUI6ow`-z8g?H_9LPX
zTW(M|j3;&>`cQih;*|JHqXg-qlS6?xymXIj?T{S|eMTnRQ%f(>cmm)n9#X!ZYl8$}
zcV2cfZIrwFbFw3_jPq?-%Z-__pH>63-NHxehSZ&~5vcz;m3n$gvT{<fRXiM$^wA^d
zu<d=R%6`XXAV%qLHxVqkiB^k{W2#eA<!0wN5cyn{V<tYw@lRP7GwVp614q4AW3ubl
zz>X2FYqBS1_q)P;%FYh}wRYG!IPI_xFs$mk7Vr)67L}qoh&6GBjmpD1i0BYDiI-ot
z*{E6dFI9}G6&LYVfvUCG3G%1ek#CARH>ZFRvURGL!vtL===cuxR<HJ~;vAWHOP~hC
z^fiLy13QY%mauEo5qLFDWa||6R*bF-vPGdR>aofAY5y0v**xxhyrstHQCOI$2$yL2
z{iu-Z*)crrtPZ^tYC!Cb2cl*wk`6XE?Ab<H2%QuO900et7MgpWrEAZUx1g7-QJl--
zN-8$TOyE#aclIjJA~kPREuf7Trz^mnsPsu(7C-%nIStAZx7?J%>Kb_q_K#5VkdlGV
z$!RqkdYD9m=?=*;T^KxyE@DMNj<zu)_#>rOGg=80!{Ddv_&Z$5PqPzt_ZYH)l$W;`
z&&T5%_l3Nz&X22U<LzRO();-aRGjM~Nat927a$?=ChA$3M@4GZO4Dq>H{~%`{=Qaj
zbDd^Xop|pWJzN7zBI9HVZ0#5x{KhxRU26V)Ddytx)U>FSztraupyilF{PKHe`|ALI
zJq{sXkRi&6npP`v!pC=sW+w#Eqb3M2hRz_CMSZn2tlGAQc+isI==W{UtgjZrpc=)7
z^qQBOEWP<+`}`$WI&N()uY04TO~YmiF6HNof3q`yNSh?!=lwp}SW3$ur}$=$JYrj2
zyd*d3h2V(gM&K=E>tGJO_$|9g!NhoZL+2D58{xW7%Iswv@$eD1rW;?><_mLfeHhzC
z<*q=S!y{d~m^Q0kxTDF&+#%!$5_k<#4a4cn!1*MXa&z6Y51>69*#MCR+drhN8a%?q
z1;x8m@$BGBg}qM;)K#`<xv#ooZRf(t;G+6~u}0;(@BB&FikqqEoMLl9U~`7swz5&n
zNm5KKa42=ocpCZ(7Q`FWRV1EHi5c24aD105#e98AJ3f#arXtf#4%YY70>)i^7?SR6
zU)(wY24=japLsL9Z9V25&7g0|eV+`tw;I%*Y{&95|3mSzbk7eE^D*0J4}#e%7U1-m
zaIS(qgx%}1@`-oz#V5INV5@k*te){7Sz&hr6hTNp-iUxrn{Ru6MA}RZF)HXmmGSxu
zZBGxrPvUKcOnU-x0T8$+)DK-&fGm0eztLtg#Ryqian@awS00z%v3s%RqaM&3MaO?)
z&>PLV!KuLd@jywY3;AE`63B&o*MCUdgzyZvL2v&VsTUYS$F@et-dXv`4|0;rWU|;}
z_{F+Q@vLvBOf|i(^Tq3_5kw?|-AP&15>{ZkFuGSw{Ll)4BCFroT!JfZ8^DN@0pE(H
zGLV~X?f=1Z570_6?z>Dt@FZm1{~q+vMTBiKiZ_NdHbHORBppg^t7EEJfB;gc{TG<?
zPTYJOOSedjo{$qAn{I}g`kY7W#;}S|#)zySn4)_ENPx&|gjqE|`(VarYwYh~TW3&=
zS}uDlZDG!Uo<W0HSJCWBnF7|u_9b+#!|XQTQDwugOR<KH6t)-yiWJ0^n{7ka)z|}|
ztN0;x+Ywyzo%=|>+pUvJ$#9TLZqdiPaFS)B1zY>66+3I$D54*D6WVxBC*9hOIcy)?
zbbov1K)g>*;(HbQj94PA<~<Bc`=+*|n49x8U;qFA|MDOHlL#&b!Ht3}l76guI2uUa
zkgX_kAjTlG<Yh+$>Z4RCvp+VS?C~V7eaAOlq@CK71eEClgac!mbUH2GNiAXQ<v!&e
z1qattF3WC#u_TqI+yQ(6Axec@O=?H9iMZNGq8oYgE5q}Cq*JH!9P;N}9edokF5=<J
zA7{<mA!&w<s`Z*jyvo~g947CHtA?Z@`vE+sJa16-iV0YjZ(lYg;|T7eTu60RDnOI7
zpyO8IVFwKlc%80n)xz5x*0(C&#(s4tB<W-EB@a>(2q1kX=w?$ED;dL7WiWfP1mu_+
zD+|aA9Y%}WHj6rT+|7UE5S^cldwkK7-WR>82(HC*<B((QVr#ajJ9*m|VRg-5nv<9A
z+V%?=bo>)7Dleg7Mzkq7|A@Z`E(SrLY=<c15-Sk&GFOF8UtBtvZ)NcUlkyvQ`5_bq
zbQ^-G4xtnH9yI~CbDXF16P?9j+W~ut?LDb7CQ$e<z{l;8*DZoU$X<3~$di>xK{b1J
zPPkoC!hAE)suxF@Ux8Dn{m2(qN94lYup-RK1AmI#(L*1a&I{_sK97tS>#u{*y*Q-e
z1)lAF51*1^HpYC~(YiU_mNMsE_|9-ZI5Q=Mm*=Xk3YrrcB&|f53<OKoz>eJ&LR5&q
z9g-7PN$Wg!<`9NLuM2R(=<<5LNVK-=Lcm%v<$%l+{>>yJHZA`T?{yHHp<C#`_9Z5J
z-N+iflCBLD9HWp0I|UoSc%)ceufM$K^`bwv1(1aSmrm`aFb+4mQoy@_h(KB9gz>nc
z_pi0S^O89>Wlunf{SRR))O!_T%|)vJt&atuIL#)Zl<%6=gc;6;Z146183%ec^<*zE
zTBh?MD?S7N4M|}9)v4Z2AO{nJ&A9Bw{(#IRHOrldUroG>it@3=c2UwwLKBYm8j!_R
zjV9lXCzA-3!IS^y)+AC-08p9*E$Z%K#=TOV->QmqLJciUS$nl!>E<5iL$yX2VU<m9
z%3F;DP)T^5aTXVxYB;hW&mQF$t0qU0`Ucg&-2vmni}m7E<pSeyFj-Ebn#n*1hR(}B
z?mO%@vDae8FUnR|a;Xj;AIjIb1_AUodPmZ8|Lk>|oO^{GK<qlS$*#epB|klx9tz(B
z=`$JbK^=CxQd1^+a|vWgy8sMn_jXj8i;LoqaQL+OE2O~z`G<Wo(0VWl<|SYgrQYk}
zZL8+;ok?-6!l{OpIHa}~<fLO}9_Jzo13iqP`LAK=6%yuIN5_*>d@<q<Nh|dl1^ACn
zSSX!T_FP#WqWysszH}`|6MO(_Z(|;%hOcyNN8Nh;Hm2#5WSaGk?OF*&`e9s_@6pa{
z6qY7M44xCg=B018y1iCNj<i>lGMc1nEVp?+`0W_MD6fZUOyqps<jRWq4k?)^JkOxs
zM!dp;ez!7#S3*sm@GrBP8a4IpO_gK?E7aS9ZE~v8C;MDsTx^LQ8HL*=@is;dWiR}Y
z6E|;L&!m<s;xdZok6C_vo`orT>2#6A)u}+p!Po)5SEVT&II^Fc5D3F!v*dGxuDd+&
zxt5YAJ&$*3;=Hh=<dNr1ddVhO)?N3U{$#6cvGr0UN1-vC?XUKN45e$=6<M#BG)YVc
z{ge^9&sQd%+RB}UrF7Si)?rK3Cb*Rl-Mgbtbl|RnrGiZ!Qwvrg&xpk(9hdO9_Tgj0
zIWAIu+jjjUUbS-0hch^zczBPu0$m`7hs3}DD?rr0Uw?JY4I2mCMO>kH%A3d8#BlUa
z;J)#C1SJ2uGtzmixYOP$|2{TEh--xVWIa6+=h6n+u#g@osv$TFPvS>nrL}S<3d&Q|
zu!vPPmRgz$>2Jeeo!XyX+O|O8g|xD!xa5KE*yW91+mnp{I<km)-$qff_P=+5afVwr
z7Qrk9J}QGq7y=htQ7xLSBhA^8YrGd^TlWSYL7@EZi47@8xScQfPv9`%y7Um>5;tHU
z?~8^<XnA)9_Js?J_Z5Oej)FA5cc{!*1BV}Cr9-&=z*jE|=W%|Pa?TolMH(b{Vk<mv
zsC^%?WNW6!04P=JstAsr-)iC~q>Z&P#bz^T=Q*NU^}p-VgXEuo(YjpqnMqH?g@`rJ
z8J`2FDf1W!=Q!SUkN(?)I=ZB{qLb{jPuopxt0I2=gsz#KM#yR~Tdl+Z3=FTvC<3_B
z%JQ)zq<xIUqO;Ae-R^2L%+sU9O_W?(Ehpv6tSOtbfu|G%-lk1CGo=F`+Oi{f8RvNZ
zvxk1}%?9Q$SNrU-+<gVn#GNu_ij+nPvP?$$RMW|AI*gz08{Q@&`_<lOzfF$r(2f&k
zGJgVXP(7cZ-O}PUE65QZr@-}RFs6L}td~$Y;+LwmT<Rhl4o5R^U;S>37P@j}c&&{|
zoZv1#4k0Wq*GI6rxxB-J%YsiP%^m5FQob$Uy=)OP&*DuK#<V1kH~xhvYt{x$V}~=b
za%hL)_7Lr#^l>J^C;aCMJxzy|yxa$Rn_nq0V*o0Go$3uOKQz^gs1jD7YihXlA<;D(
zXt$s1aUe((lNz&?McS9Cnk`*a_LJyq$cgCMsYc8b6bv{U$z*Syde3ZqRfg!Tkey}H
zJeg?5VUndEu}^S3`LvaJJ)0K(cV{?FL(T)umu?yFc-PPr5upX>+j&wZv4-f)Kvl+X
z1RMT959DSBY&0N><Dr;pH1qy#uZV?l@^>^$dMrgukf#h)55$X&$H=yHecl2Za#n-?
zr*5oL0Z|0<^+H@PYr_ABKyS8<cG`cv{ILx)EQ20+Xo1hi3!cWlhyrY_Gs2vlf0fL<
z@TI~{0febc!e@UMIPy$ZN9~N4<$>G`Ig$zMd<i#fnN)kgO2u;U9-*vWcTOn{I0KJM
z>^I(5Dl|w}@--=1(m(vrH@+lixUq5XQ|ZR0@8FKx$GY=wHYx|)n`MEt<I%yypo73*
zo!ukIvllxs1FP6Yf;zbl*R5Px-31dDO*N;*m}2u_F&DdTfH{`Pvj$pkGYjPF8*YF}
z;B`qDjS5?Kn9E)ZB%P(RM8dbdny8NDqRD>2^eQ()9x;O>a;209=47kH-9O^+BO(Bm
z)K`N!qvi~~Nj~zcq{*$_J>Y_P!od~jmO3{dXhA2!uh~AwaA7gd>4H%Q(x%^^V~3?+
zNtVm9&pPVmg3T0gis=8!1#MQ{o&r4T#FYI$12O2Alo`0NJnfPWc@&bAe?I<04uF7r
znbEA%H>vQ5xYH}^Yqc5OXe;6#en@dnY7AqS$yeMzbr|7)9D@k=!&s$iE_pq$c6tT|
z;<s){<4EEDLn?0fBC{A(9NJ$`0fj7C*BVN!Tw(AIu|b#{u!F-AfY%lpQ83cls$T~>
z{_$UFr4=js&d~~cpmCeMDtrRNF^U5evhMAbc^3xqrhansA=Mm+%FSPNg=~Y)j1HUs
z=`j!4q3+7P*rUin6Y2J~RPI}Fplllt|3;L-uIm<m!(Nxw6B9nA0pq0^FGkZBLL)Y9
zf=Aa_j#^-&>nP~ug7(n^*#E*O7jy(v)1bl4E*ZPqYZXJ-shgmzBcluHKA-e%kq~EJ
zmRHkV4=VZ&&S2B+P!N}SHQQ>S346|IWziA*dGTkLcEUL`zCBCV-CB$dLEufeE-2aL
zCGA9+KO6nvHi|L+2F}!r^78P{@FP|}IB#^DS4!klD}39;dU6=!kjBSw^Yio1%YGH;
zVdy5S*E*4pzzMr4UrzG5^!vLwOBXQYdF=yb;XP`Y+WhWYV+IB)w>dUbD`_=jC0>(V
z`hjd0=V5>I($AfNlp;U@Dy{X6D6OfbM)>DAELiUdR_ewvjU^q*xSHx&!J^YEuF4EX
z(L(14%P(R9nCPneb#Cxf4M$d?eOgTa8?qluvZ?Wy6TC-+7Y<L?Nrovz?vup&aYhHZ
z6{=QHBr2Q2NLE<_A%Zb4eP@EJ<mOfW_b!Wz=t(n}Nzo%<f>zFCqElAiGJLua0;bYi
z_7_^Ip!(k*qmR9fE;Qazm59{koiHOPI9BsK+2UTOSIeSh^4XLrW4b1?Ff}$UCfDgY
z;aE*4mN}M9ix_hlljl@k#}oMkb1S<Z+$(xddk4(IG*44CKx#~rH8Fp=okf3xrF|V?
z64#HWG?lUn#>pqxSEO3%VhNoHd;a${tWcWk^LM7YHq(atw^af|ur{)m|63=EEIlLe
zJ@g}Yx8!MuRdfZ0xwOcGdGOpsB|YxeDdGDJ_{<9%-m$elO2P0RtXori&e*I}9;uIb
zS0B2J2RO$_h(}e?aL_qn%e~;wzMaSd`s2*{61G7V>|2M|GfYf)M9Hw|Yo2{>2t$g+
z#9iQnwdQ)U`##~Jny@8Q^+z;I<~Xgql&0;;)sg=p%rEGqtU}X^fn){;i$~0LP@^gW
zuLiV(Q;LrhX5&Z5^e@kl*nZm)cH#Fg24G10h!t@ETCERJP&fLgy|bcrP=UlW@gCh9
z3ei>29(gCo*`SiMfr;m!ZuTbV$OC`*O9r4VZz4G{cPy&+MY?Z;3V{>{Nqg6Ax%JZF
z3N-)Whno~jjEIG@{>ln1sa@7*AcFbf^b3U9p=>4etPZH14DB+D3mE4&tqdW*DHMt^
z2^ZLHTOsw?Ao|yw_Pxpnt!?iDOqF7~f!hP<Ya-A`fwAygo3okynq@IJ$hCkz^D=Sw
zpV6X&_)mo^S5Xzw<yMIC0la9L(A2JBI;JkMm>{aQg$AKYE}!TK;o(5u(uc+pXi&Ly
z2QfK8y8p78MyKS{+Hr)f<-MdnQ4PjHC9r%&9Y&25QY3pZ&a?EITK%*=6}VlY51fk-
zSZBxuU~*3ietS86eda*<Yyc9Pk`>BH?}u@Jag&^h_Zha{2!-!fK1xGu(5%@`G5MU0
z`AlgOc<tkfRnE6)`&!G<VDKwtTLwTrF15SWy7+?iZSuwcse-A~4F%cB#RE1nfTFR4
ze4^3-+|6R{0zATvpPYS-{mgREi}30`dRt{uml&zICX9EnZ{G5`6#YYf#^*sRUYETT
zV*N%o^@#{wmbxyTrgAAnii;G9RDq;(?!_+{u!#-H^xrgSz@8TF?p$Qs?>7GI&j7J{
z*>B1PeX&|=vk^J0Pksh<{d!lHU#Q`{+8MACaF(?-jGTX!UK-@bsBcl*+70ui7+ef`
z;bf0;*S~sXWpW_<Q|LxqkHFYc3-q@`<l6rCg!fhh&6~#Q2SUbEqpiEv;l~xxXtan<
zzgEyW#~BQi8s}+A_jOxZ^m?Xm4n<4#HhQ`>Dd9hf>d*tgQBMx>jR9~$O_pxL7HO2w
zlG%HO2WGaNQB-+6|5w!%tL0zp%lgqrUpR$|P&4MgWs&N~sQNz5Z@?k<-(fG{BOjvR
zHRIv9TjTaZFYOLw4e>+T^|bonMho{W_%p)>-{ms*0)%~?-U^fSTkT|)e3wuFJ@{Of
zz;6do?s_dgGK(jn;<qN`OU>$hjJx4w@cKSxM9nNdMz@PKXrYZ~mZ1AL;&1A$$K0bT
zpEeCr%+bP@Y}L7>3|Ia}BjdB2uS&10i;`n#0dWF(&3HXQ?`!jH%Za=5yta%$S-evS
za7)GW{*@{FN^~dBQpQ=-bwTx*zvXH*!57Yl{>BLd<&tdWz7a_X-04?M?Y9SVJ?-D#
z@FIimod-Q_l@D9KGGGJNyXnGVkqH}hD#3+W5x^zu8=i;A8p9xfR?*C^2iRf$b-2`}
z`0K7~4i4Wz-Mn4fkE2}v`_*c9$?4ELw?7vn@VK}HSw)1p3$n}8Zfc;SJSc7P6y6j>
zv<51qoLop?mKP@*wmj|T4!DI6o!AzD_lAXLa`&N+2b=v%q6+;#!a!p1CoNA7zE+?R
zg<F#x$jmIMwlNIa9<|hhmyeW6QW-gYnw~VFFmJ{lChZ4y2}h$NA=^Wgl!QR3lLh%A
zlRql;7#EiBoZLz-UZ0%fxX+Oc>`G&AhFoJR?=K@wS)xw$p-a}MVK^Nor;0eP82>d4
z=zJ4G`d4i24{XVI#4Ptm9LHI&JP)3uv|Otysh5AE*Lu}qaK9-S^YC97YMrqe{zxld
z8>qFZ0VJaRu#P~-uQ65p4EkGIUjhbu5B?m%unNkE@T;m0Qraso*kY^T9kPn|&Bk2v
z62t`<cB)1|Tz=>mv#}*OHFW?yt&srF`XmqI=3+PHLJr!7OI<ZvyG>Bu@|i3=WO0ag
zf?v0n>;o;<hR034jL?o3aTuB{)JKI%8)^w2(DT(vjr+>p>|;eTOM2FDrejbX1468m
z$T3jp-SSvKFNorl9X7+6!3kY>Q)lDl!jrWsEE2DcPmH~Igfpif)U_)<iuhlB&hji<
zItkgUP&&X}h}dCaoDrHYX5X(Wv57enbXm#pm<Y@tly=tDp=P2lk}~_u;N|Hu*Z5Pt
zyq465^EXR(YKv=z|1EA>l`L-dT7Dur=@A`-2TZ74E*MS4*%Pbu&0hJEFG)j2Blo~&
zA_^rAerOu%Dz8$*>N9Uqs>G%nshsD@auh25L~hk_(H%pXU0w8tMWJKrw<;WLZ7NaB
z&X@v=QZ^T+Q@Tr=1EIKf;Ji1L4o5<+r1~B@0wRh!hxkN?JLXX+4tIyA!?iAoV>~2y
zr<Xh)iYlBXQFCj-<=q3xeT`8R8Jl?b4L|<j9Tzta%<~VoHH!m^yfE&!m4kS<wZOc?
zlEWGnR_L~5Sfov3Gk(3cytRIg|4<tpL5!rz!?`~o)!!iM?z^}6hZsrmR1>ia1Yx$j
zr3OdZw8Yr8b*;#2I*J)05Pv##M}PsNbx5a(BED7b$+&>*UVE(Xq)NZDJK$^uN&8!6
ze=*i3aN!d>|5g-J+$no3;#>Ura_Hx?Vqo?C+To~w<*{7<mS1f-)Va{9tJK!B8FrJi
z<ARg!?thz+1IzHSQoZZq;Xf78l|6-(jK#H)maq*SGj*r3NdB|(&C#s;?|T%K$-`wx
zE@xj;&>|Q9KU>ccnhI_Jy`5UP3<dW>kk*ip>9&{b-;4Xh)-<MtLWU4*fzpPm!*&9Z
zM2VH%zEDh<2p2qO$Nd1Ut{UMsrhgI~I@Y||Aw}{cq-E<RAQJ~gAP2=39{bS%zm}!U
zxk7swCV2RwCX7fe=PnrH=W{o*<ZWLnJ_qPHQkN<Rwz10=`(5Iv%7M(6Wzw;p=T1$j
zL99=J!PEnL=abBbIxn5r1akh~pz}_8=SZ6BI6M6MhEqkzdf&c~z@PURM(eN2Tax8~
zbF>|UU*>-#(;fV(<WQ@=SgX&K+=6&!CJtv~y<R)55hf3@`xl6;u=USnLgS!2Og#=M
z_DKI+nt}8gt?;eCwQuG0>_x0(naPk!j?#n=$okMgZj#^kRf>MVrQJ!W{oGT3huv6n
zcaL=|&&1M2$iq|L*~7#O?V5qbs1MTXV2WBlS8L@uBkMl;E7_i%Au87saZ71nv_PP2
z2`CoV65!2kCg?|@dqqfg)E;4g?Ve=q``mi&c7?`ETf4adPy2TA&)CKBB_LZM2Kfe*
z<pAq6Ckfp9E5LU!w@OY}D>;go3W@i9q`|W`9UY6cE3_G8?;N4Ld01@^FTP!0ajm9&
z0}n3YAoD^TQhaECS26AwKwAkkh@Q{o0-#M~%+f~wP<7qS9Z53G*2JK__(j4j#s`wx
zKxSg1jF9vM>E>IG$Yq>5_(JOY%gnD16ncTugL3$!s@q8Hurz6hr;ZCkZ)UWeKt8j<
zQF(s);&=~$9^CXo@__@>H>Ma1^w1FlS{`!l#tNLfqgMPQh;*&8ks9fI#ih8OXjl1P
zO~Wds`ir5PPDOxw4~=M~f#C=e+YzZ)(!CR=)!Jp4T*>&&7;VA1qc6ueG658ww8T%A
zS|&E;CF~w(Ws?>6++%ztd{Ar!ga`A}*je2h1OGJo{xg#BZ&3gg16>dD`et(8WBjR1
z1lAN)&VeZGuu;qU@fEIkFcw9mE5ZdlLVAc0yuswTnWtP1wxzJ9t!5Aa5zDt<p{OkZ
zf&a&3%dZr(b`|-b?heTec6Xs}IV`<DLkKz@NtV&mDm=E*i}HhUafk5|D6m8`l^qA$
z)Ec3vYlt&GZDx?#p82Qou~?D8*A`2&CsqY+vjCM%$e(GzH?L<aM>5b*7?xx4OA&x4
zOC#Lo?2p1`6&N;*^Cs*(&UfeLDtprr@QS(ZlPI5ZAklo`<u55N6Q(Cdw6tWIt#wQq
z#8kJ|>;@rv3(0nvjLtY=EfwwjD;KPEVpcebG_<fm0k*R{NFT{PgzMQ;{*6pC{SWit
z{kZOV){HEmWeF&;F%TZzplfG77u<l7p#ezYrH=*kY~hrr7=M?7u4%v}9xmLa)K=YD
z0PUPxC@*0LYBa+$V44(NiUcD~vt>s7i!Tqe1}%KqTk<?#&{i`Ka!q7ZfAET$wrGS7
zjL+xme_Dnj6PTIb?&W2m!*T6VrABMeW?d=&rD)dUS#-X!<`wMUTeZ+z))V0j^%om`
z{(FW1XkX3o3}UK`^-VY~)!>8ns+rCcR^DL|h6*7m8=Oj4x%2Y^!ctok>L7gfI49OZ
zAKcYJ?68`4@*G=(Dq0dp`McuW?(eqoj7As(o>2BjTA~7xt7*jZ47Y~mEI%Z96SCS2
zC>>DqW)c4!>Wxt9C|Gv`D>B9CFjD|1fd!DLQ#g(U-p=_yD`M6fD8K=~J#Z{K4sh5`
z#xq-jO0VT#CS0O(g}Bq~P^NZI@xC$+uPh1;0FB@%i9<fedDVd#P{&T!xe8UxIpDM=
zxe^wgtImIdhVF@;Y4a$xo+s)(m(oZpDtwTHO!op*K&h6ql7fTa-lM}1jC&vLuCemC
z4#b1Va`19C;fJKjE&T1+*Q);b<mudlh2{os;K1<d=@u<S?kzH}BMvJ*M=H|^eRG0U
znN+MrIRY{w$>>EwoV>`xBp|a1K0<-+wPz#>O|R)>#$RgN{3+k`36KVUPfF2%yBFJ+
ziZyb!kaus#hG!RUjIhe7Kb5|+98?k--&PWU!dxVaL9o9fgFVN+o4XoNXLV?Pi}32>
z<20DW>n{n$4f-7Dv88~O@q^n2_U9+*plMrV?J*~E!Gzz@MHwdfnQLbZ*;~f`B9Gw#
zVi;}L71bd^Grt2i!Q_1V>i=s!kM~>q2uru!xKbrbz&fcr<)k93SHphJN|v>5*|){C
z!LvC5$|(J5D~~)?z%V+#J7SGB#DXXh3IFZUi7%5;zGqK6Ij~UIq52KbS=&9)BP>T>
zOJI1<fhciK))@WxA8N{(3SfYH|5xN6yM;QvZSjWm$(1=PeUAS(0Gd`=!_L?{(8S}b
zv>0`6CTps@fj%i9@p`Ky?KN}6<%(pPYrn$8js%@b;I!z@9<9E;2@_55C;BoBX9>0e
zGO3HX`S$Xgz^xK>87_1caI9p(le$xaKHN`R-{bx`<Y*8TFj^a<RpnE#xf5TZy@<3T
ziA|$`dI+jyLmTeAIZV^Un0%Sfcm@d{veBiO4E5wDALDM2+;fx?r{G$wY0YwQ>-qDX
zoz|sXJ|-rbx6TzN(1oBqz^Z#HC^=Z>$)GaZy3d{^6@(4v9WhMGyQj;1S&g(xH+dWT
zo=aEGvDXR@!U(NC3Jh7sTv`bW$+O|b8%m;&`x#VZvvRRAX=Mt)53NobLM}JKC{~wC
z4r4_c$(}$z2f2ZYrXS3Q;oMnJ_N(%Lb;F>opf|&i*x36Z6cI)&BmDysfTofgwSyG%
z8|c&B+<vPk<veRl;s4{i?9I;t>p7sVpXT9)61-6j>-YbK)7lN<9T-MUQemYNvmvdN
ztYts(VFj=S>tX<_Hq%_vYWWOCfB%8uhUs7j=FdfP|EkIuR9TM+mOpx|5@c#4+|eS;
zP?!O<2{@f@O@^{7DZj9D`eTj_Je#VL@QqFQYI$i|ph>AQ7SI*=n^mI4W%F8b#EFlB
zSYeqZ&lJjZ$UKo#J=v^3rE*6(ftnE<hyf(%(xCv7w4$OH+0yP9?R8EGr<=Y2NFv9P
zh+M5~6R6;GK4$CGVt}NsvI&em$Z#JIxiq2%Akm(krkDa!kv5i8iJS8SnPEJ<mwiT#
zaRGQsSw<t5MgXx*9CiA51DN;57DhgZcmGVUiDvdTD!Gb~TDOI0$F*P#iE(gDZ#n5V
zb#Nh=(!bA%7}i+m297O7^$?nhI6wY>hP-S+`q8_3RvSVD4CeChbtIK@UnaqocNGpe
zPNmxO9th+UvvF~`yuEZ$C(bC00*W{IQDvAD6LJ`gOJ>`DxyDC_+gz$_R1yg<oY5Y?
zpXQ_QE+~6Bb&l1Urd`mlnNReziK+TCp+7nUW;#)dW`=UJE0}M*+L?qi;LX4{0{B*W
zzi{YJn)&bu61H4tt(&z%b;8*s#b#;!PLC`amCBb9K7$jG@Nq(d@|1`zS<wpPf+DdQ
zTVmhON-Eytn^7g<n5culdlM@dO5U0#UK)dc&?!Qqr=d>F*g4VwJy}GwkCjthL9mdB
zvDoQpg%$N?@YZJEfh<pD_LhKg7|ZBDnWsdHD5zkBk@U}t-tF^<9V#=Apb+8D!{Ql;
z*848?1UoI0#TqD>!Fu3<atYquZnd^^As#<L;eq)(lfVZ+t3cXRLVET!PUdo&eDl~|
zQcXqjQN>Y071Oquu4e+`Q9`TZW(YJpo47m>Muzg;TKMJBr9Vx7B_pI+QHIts@{6qZ
zuxMMJ&h+H6-S#;gJLi2Yxa(9rtH~PJQL+c;E7j(xVx;_}z|RGA97_JX&3;(*i&BlR
z{eIl8<3s{Lbh}%e5V-QAkjFKs)7FGG@yUR?p#*zyo$s3oA;8FqBTh(Kt$g-eKI^DK
zQo~iqM1l*eKJ9R_y1?3!*}FmWDOC}sSW<Jotu^kfqiDAzv|p>QB#8Yx2i^cU4RnpA
z$qaEB&B+<PR+b=++3##?#G#2CQ<ksuEls2i?521aZaWOQ^vENx9j(C3V&lSqZ#E&G
zoT5RRLtuE%Wrt8cGTE6j$T?PlWSg5<AsL=A+`231y$*-`pIwaF@qa=5rIdKSjJ64h
zBn(~Det;d1apMs9{1L=*^Cr{wATe9b+NI$}0^2ALt=ftXX(K}af$MD}T_F<w<b!gS
z7_0ddK8h9Y9yhxFii4^M(RbFK-$4LAQAM6vX4F_Z>&3{SG3sgTH_RQXUDp=ZDn^3a
z10wc{ne&t;4yvFS0Z#!4Ko|yHy6mLa3=4qh*%b91OB9TRy?E4Dgq)>stkeD#{61e#
zZ<S$23NTn>&`VQQRQ}$IqTTmh8Aa0N7w2;)A}C8UQ+4?5zS6751^p9W+RZKOi~>7%
zo=zs5dMy~K+W%L=4xOQ9M|O)Sd3Kd}YLnN>$CfJ6RhA$YEsc36Z7hMDtGLd1sp-_q
z-~ba%%SIPi1_4rWOU0|&1DQBhvx*G&5;nJq%8bjHi~VO=Tom1-J|D6t--GwF&ub*V
zgbDy!1bMw->>XVvk@@9=kIkzl75jwJAFV&Ou92g9D~GE@xa9x4aID5HWjH>%l?@QC
z7-`GrC~3X)yRaHs6F;z=D`_kRfJpNn>VtpzC<6r~G0~fp-5dD@;=!GdC4z7x2$|Up
zP;x6Iw1<0!<GIBdN9ZVds?+JCDZjrtdPJQxgV?$--!F_lV=tzcwzs_7<u4Ut=iUnb
zAh?X<%REdFLEz#fKit;pVZOX%v<~}>z^f5|G5#x_ii{B@GD`2%osH}ky-Ea_SzFN%
z189DA?T+|wzwL|FK--&D=>Dl)B0<?Pv!9k0VoBR-K%@ybgVZt5#o)j|+2a2V6ik$F
zZ4x&<S}b^H1zsEQDRo8OCcHjZUHs2YW8a-O0v^fb>H6#P*|!yBqMnA2S-rp0WmjZ=
z7Ux=x^oBKhWJmMSdVycy^GNTpb1>QwZKarkGKPyf^JjV0paC-9ZTggwBm7a-2W`{|
zfdTF7NfnS$514NARGb|TZG@H@Z8gVBXENm^$UPjKF}bbrCA4HZ30XX2;nO(Ovnt~!
z(pD_}yq$?3dMArFj-eaKU<6;=v{I|wbR1QF4nvYwV}4RL`>T+UCk?uk@+~j+>!|3K
z320tnTV`Ti&~c3_pyt!82J{E73}n)x)8w=o<Ir8R`G){B@Xr_}coA=!){d!BM@89q
zs_&``w-O9&AW#1EPUlU#>GC6=;iX~N-%$9QPaA_OM$f(0u*8v$`rjZCyr|UyhP?3Z
zRx1W(@2WXGi)WCt(Za*lk26MOR>+|$t5;4<^#Og(vEXLn8BS*mAja)k@yXu}OMNWB
zvP&9Tp)TGePmx@(Qf;7V0Gy?^mRBZ7S_a=WGxr)O)Yo1(K1Ffpt~H1O_5RfUh?rBg
zkv^e9oNQum9=kD<D6;rK%D=#ZPh*ZBt1DB3TTB_nZ1o<I0{pQ~fuvKS9VR=3BYHh}
zJb<#BlrP8+aN4`WPu?VKJ_oh&*y@>?JYo(Zmh;VHrV8GL&p~xr&PFdzw9_YHUMW8#
zGmVGz#!siZyC$`Tv;dgsZ^*^SnS&w{nuEi=Wueao@)%^{ZO$TuV5pXzwfC~lN{K|A
zp4<2vmS;6T0z=l{uAh;M7?pH`uEADpOFb$SDc_k*jeQ=%{KdTQ$^)v2cAM*-hc$nY
zs`E)i$pjqHIsN3Zg3YsCvP{*AJ~|Zll0ua$%-sme%~r&S#)=!K>)@Y02>DTCrLo;I
zD`#&LRIz-e7xhj~0i2#J{je`*=LW#U^n?|lo2GOTiW>~*lf5FRs|!toK+s9%Ec4|x
zsaQ_oaXlM}5<e2^Bu)eXN6O=d-1{t;g{GhaLql{mTG#T|s$dzv|MDdNU+t@f950mW
z?amNToW}sT@Zta)%thxiBweAVD_W>pvlLptNE9+4jmb$twb`hU9V66TtGWJsr6gLn
zKGun&E@344bV{Y0+XT!knEz9XJ-7?~Z5u~%0k*Dc=Y8K3Uj-<cSR>QKz!q+`p<VtW
z!G>7ES)<|oFZ6=nd=Go77c=t8;fwy7kOkeM;r>oD0Uw3=Vdh*s0D&Tkpd7H7t0QJ<
zsbU86UZQnUl&>&P1ph-EBG#VgPX7142YA>l{)^ZXp{0<;djB{wME^<&hM|+M$tqYn
z0j?FH;TRna_EQSTBacs4$3sTJ+t9RMdZt&;nX*qqA2Y{FYO_m8jqkX#()dexx-D6{
zjI~ClqK?4~<djTnVeoah1fzdBVBk=DkO})!D&K-#_9}I%I^KS*3mysn{EQ19I&5eA
zdo7qYYR6MOPiAju8Z>MrLhV-duE~qXg5{pODHK92I7W<d#znw{rt5YHDoD#ZB`6ej
zd)n8E?i<Wth^Nqq)KnM$Ng3C>GKBFkwJ3Uav^YW2QA>{z0Y?MvcyN~izqwR5i-7-d
z9~mEx1iOkwwy{!71M);)&YF;MH_JH8aQ<Ui^0dg6i-PoO$E^TtFHs^aQR}z?vVFOT
zI?FI0^I#J>FcMwb;kq?9wFbsIhUv$eBI;xo`g_;Y#Fa$?87PrFOfX=fc+(rGFbNvP
z%?Z!xFxR(XS@zI`!F+%v%k$sq8Jj|cyXy8S+IcQ-H3d-IjO>rwS2r=Q*=a#Owwxix
ztI+Z{UH<~aY3r5AXW}02Za}~Z-A>4OB%K-}mBT>;+d-%lBG=(Sj{*bAV>8#vIEv5b
zkAclCFxQ)`Z*uvoTO+LH)sUC@uBIJNlGoamTH0v2RMO%8IaQBfLO=Z)TjP!&x89TA
zG8*4h<MfrFb>KZy<`k7~<B_px%p4)4SPStkk@y?Ck&7K;upqOSBvwrM+X@QO>sqaq
z-)Mjp7&?$@c^N@o%l6bqyyE+sZ$)X54yDgEQj!~F<Jx$YL*H>V-!}iFNZ8M-O^dP?
z;%q?FH+i+{b0HnyN`}|VE$OlxW9*f10SZ>u5DTNQVR_K-m-^Q#-=<7j*rvbd0l-_C
zpgYMT^Sobgof696K+_D*)+`mGNhKhrS)`aHiV+{NaGQ=${?s?uDiiT&|Cq>1S;OFz
zHX<sw=$NN{rjc&hRC9Q~IbZjgBTOM;UPx!~$e!9>Wr?T>K(0#1beD416B<w{e&0JL
zpqJs%pdWAuhg{=2vcC>83`>_+GEQ)nhuXVX=YFn!nR3VxuNfq2unw@w`;t|etKYM=
zbiJr6^}i;%gkuW3Q+zN&3r98%_c$DZ2^E{@OdCt5b%jag$sq@u0cFWk{01pn66!$;
zR~@fg>OXoXh1&YzfJD~ap5fj=+?fzP8g?%HqO@D)z5r36#ChcU@kU^hBPYA{8GY;=
zuW}!Wg9O;$R&3w&3T+u0n6ln7br1(Kt+6M<eHuu@94l54|2h{3>Ux{M&1p9G5I{il
zdjZdc-GCCT%G4LRR1C@dUYKN4drG;qN!Y_6&s_W$FvMCbksK!>g#iBq$D=o}>0~ER
z{<7(w8vy7m+jaLGS5b=jpX<yE_73bg1_4Iq14wyC*v9PYDMXvvAza_Z?gHD*B>GqB
zVlB5{@Vk(cu^EY#C|mz`tp5J!Zu@na)z9kRoIV#7vJ11sb7prUu&ly<5d<~XrN{nL
zR&%+NzO&sjomKe@uR_iBxBA#{fndy9P9OAS7aZqQK`6D+zTARO;8czGe?;l`AQ`<o
za-8(g0$WHQVjT18{SpiG<GN)nOABTcF~<B8)r`iga-LLxl?tQJ!kl)pdW#r^rP;TW
z+PL%Ghi$Wo(`S_(mAb<e8(2M#AwDZ><Sk`iX3i|Wrx!#C&d-)pT+$Ts0|akgHn*B9
z^~FC8_%>pooOkJ1b&ZlZ8!&7<R0jF(ZW&Qvq=%PHX1MzyUwdK_*ur4C-w34+iG~re
zqi5~hEEpUs7Fx-#52oUnXg0eBK5{cCR74A`C7hP)kd>t(GuFToEw{|T=12l;0bhpt
zRZ6LLR5^QAd-;3@rEp39dlia~kD*!Y**TNwEcCD&5>C75`~p|T%dxTC7{&g(SVM|+
zNYUdDuI_6E5^erTN_98*JI#|ec0iYqT%<j0oE>KLSyAP@OJVNzBEZGmk#yXzWA?=!
z@^4vE*wtp*$K@c}WY8A_q`*O>@S6Qpu)p>&apDMdK-SA>M9@O6>=*|r&vJ#V(z_@{
z0uJtF4J|?PUSLCfmRQ3KHxd*C0|S7lf}@DSwjdhZ%f|R)H6n(%^0L96HiH!cZtSt8
z>Q`SR_haui{BeCJ{P3*5Ec%K!V179HW#LUHjut@RD*t!cJmVJD#_KuGh6D<xRaybc
z?O~SMiLPo2H3OydiD5h%_ZeEnU_U;E7(?>C8HD~smp~l9(6e+oEd6#B1=WQh4#=_l
zR(Ck;)?VbSs&_vcz~-a#j$f3f{_bI7^f(Cp$n9z_Lf75>X6ImFwJ=mY=v2~t8ZX^)
z9vzhei)9gJ#Vs_-EghMb;zo=Ib`Mmf?Hqn@2pn6+XnitUfxO&HHS9|a1@yi4Y%gF8
zd;)13>2ju0L@)V4Jeys4h;Wko$Ncnov6fUEvD6JWS6-4sQrIPRno+tcT0$W*LJ)x+
zqXj|*NN(TPFp6+>T`NJwXM`!R&EFkBhdjU1YSRHgk=yJW!T82xb16%ZyH=#(DuvYV
zaCc%Oe?<C$x3r(?muhQL!xJc1yJ6j5$N7f_`RPyd#5!7M1U`@*!`HiCl713zB>3H_
z>$=QPzW#{BIka7zM+Z}(sYj#w%tcb!Dh#m1M$CwHK&}}G{lhJoAvY!`&xoX^t=V7;
zX)|7SKVVq50uP_s_1~HXc!=axe8w*z35p=UD26HPTNn0kikz8-oqDXE#!LIfneaHa
z2R|&+&+uHa6NGbhO#YA=6CKb)f$kG*+lc~8q)mu^tDgG>Zvj3orH{c9{)%bJ73Jj!
zRy?Qli^g>y^1{6u#_4k3oLfq?%ah=QL2oSAF^*`ItT9weTLtSQJZCKy^1*OOMJiNm
z8S@)%<*(mMJmN%z{fb6ak$FS|cNqoFjq_lC1Oo~tO9ju0-ZD|Cc2zDnibv@*8LWEE
zU#?DKEVZc=!m6*#Mp$>iX$n?OR6?aTqW|R_9X&fd_g7E(RH(s=tkCTr>9fthfkh8H
zpFhK6Xota{JeKxlt=O$xzm2vu8=<7A7K*;WXIE)&k}d~j0MA6)xg1Swu(^nnCK*ue
zoqpj>Oypex>v_jvRG}<+;dVjw|70I6p<u8DMM6~GuY)U9og9TIF2H{VIoyF*+sF)V
zS`jIUd0jhM260lg`(LxIHIpS{tk6cnovkI|ylv@U1{t;6rLN2Mj_M_^i~aijq=65u
zgCw>-S>T(u^cL{*W`?<f3&<NHDYyyZ|E%s%;nD0?&|qe#vPx%nbX1m*PI~rV?^>>_
zeQ*dHfRx?IRE6do{iHK(XYB~77m%KpfBeA0{TFf8fMIg>#w>R?K0@T0zb3EUYgQ3=
z#D%HUAQWY23B$vO3fz#pzt`V1odf;gp%!Co&!WAoAHBu>`)x3w2DPsYhvuoa;9%5E
ze3WNLLu1XWA!8quE9oL(fMi_-3>@7a`;pKFkH`Q{9ilt3%7OJ6Tn%IsCVY>D6r$w%
zTihi6g0vjBfjxBI#w)t4xbg6GI-)a$wdMXtyT$b_V?q^AcgbZ$dup*azviLsdFEUv
z<Efb1wD*8*AaPFtMfXxVQRmZ5d`~|_pZTw=#X{6O(-1RoVY^b3B_665NcD9`m=i=T
zyMR&vv!V#Zvd|atJ1`t<C>r}?)C$UjbuL(IJUi7N75AK4vPVnBpCra^JEQjry_pA~
z1a#7DbnDvzT7a~QRF<Sf6u1u@CRZ0a5!Z--0URCj*jHU+R+NpAqNLFc+tvYLD(CL2
zA;#j6w4APYN|7*pB47y<c?qANYPX3Qraeiw+xzv>%%(HzwB>nB8J)XdAO;pP>|jPg
zvxVE|iB!C7dd;%G)r~4R5revnqr8;-4Mv7g!w44`xWmmI-^4rJG=hkG78IOZ^PQ_!
zq5u(Q#(l>yLr5hDCE%$Vmj6&6)7c>YUhmpYWfbCXQlFB7>32OhKTI6P45X-*DGf#u
zQwjhrMld)A!K7>Rv$lr0u=cN3qnLlKxYtEQ;3Bgrcm)z@UzRl9QXWfb2_qZj%=ej|
z#H7xPp?b^1a$J-)tEoi8(rfSYGzJ)mYVaS#`f0o><34HxY04;0ds3DQwI{ju;5J(h
z&!_P{h-~rvk<TZGD5*?g^v)gD27`kSy{bK~Ph^+@NfqEeg-36H$#afLIg_&3cbM~<
za;81d`S#WS%7x^;1w8S!_&z`&ep*Jda21rAffk(d9FUWkwV)=r*T$!gY*-Sugj{%_
zmYFNu;&lbk8E$F(^C8UvAC)mBb|$6jP^@|na)Y6Z`^wLWjjziYhjp9C@NR`2WJ2Gq
z?{GKbSJkr5!qKQJBK$_zTjhmXMi+8dR6j|2hZ@5@qD_&$-DnI<z4Q9zJ*5crXf{9l
zq82!oUrRMC>br9fRg`wZRYZ<M69>A9bVNW*_Co&A21MzZn9#pT<UxB<oTX#1hC~dz
z0eoYZKU7(ehXEW8HFKqJ#LJUBq`!}Qm5hiIvIvWdJaNgtj%|Uxv0ipL#@mr)qu(y=
zjb+Apr$3rqzvLupM_+V9wMt*&=Y+Q~Avxl^KcuG=n{Zk~vA%s+2j-2T-{uiNY;PyB
z>+)D1w2ErO&q*6~(yP0w*+;2e3sN`5tLAj(PJ}RR6XA=9S+^LiC~eVw5)E(ZgMVD#
zk%7m~8LO?QGvU7$yguy$-u!svPh3CCBQVleOb}t7`0}3^?nvob2qUjZgZ%M6xIsij
zTkou}5m7W(52-zdCNPcx*IqQUxj){9Ke|MLr;Fnw_iT8i0nsDJf(U#!viY6<lav7|
zm~D4(9D2XcY~e`-fBvajZK~C!4z3~f%qWfrlP2m!@`0J7`_!|C>CMRYS^dSue)00M
zlMql-9o08H`H?YpKAF_zA^4|NBnlCrK}z~(1-0w0<k&Q`_w_O&@mcg6bzSd5F&ntY
zlfHxzNwK9PEWd>|H<<6}Y!6?HSXphEWo1T>!f4++cIg)D<}Zg+qkZlf27on6mxhJ^
z>@YsY1t2)Qy_8+5U%&X8{YkOo{el**cp(-y7Q__~+uXHEaOEbjj{+l~ym9q$xJ)57
z&kY89Fm+?*FOobJQQ)gPAv?wfLHeoVRX}~^bK|z5yw<c#^zhPpwrrAaslE9~R8utI
z75sWBV)g$JL>6v&T>CY0a@4?A2og1VgK)Phg9VOls^?shU<jW~RM$GExOR4_Y-mj)
z0N*{Nhf<u5kW$h*CWdsR<=lhY=myn|KVyXoffCk3&f8``l8lq&09!S(^C+2!50}d$
z4>!xLO|7p}l_y(Ef+N~}(<90X0FPE-BpkE;%_NdU0A%=&yZO1EX3k8xXR&D#5Gyc<
z?J+kQn}BsV*aKmR`>(rWy|<}Pe0<THVj&YrR|Q;4{mW=8+k%e@!czcWjp8m08-8(-
z^K14-MhmroKa)BsO73i8$iA*9stxd#AMb4V^(HU}j}XwVXGcxDdXH<+XlnklM$UqE
z!$8ox9vXAaIs_Jv{q)61KRC6GQi?31k;eN8C-xHO>pqDz!@@dG3dq^qov5TPm!J1*
zVvHxm7H?rDDyNWO07CixUwYHnyNl1}s2?<e(u5B4x^qApMp2_qvX^1H+>bx>awT;<
zMF9gO-I4bqt*}{sw6liuq*sx+{%ubnVm>8pk9VFv=nH{WC+iNanUv|e5;fN4&R~B$
zE?w%y8V%-=>C3D7$SMf6@D7jXiLlx8wx!kQ)K}_Q_Um7`u&WJYf;=)vOO=K9lBKRc
z9Ymb|Mt8zBp$T?<$;36s<7@xwZQMxd|Fkhzh-tB1nO|@|WE-6#P_z0_!MV}W>lf`*
zfQw>!pkwasKtQ+VOqG0MUw1x4NyS_x(DH?>TnYMV&&qq{KP+fjN)6j+(4!dQI%(ca
zdgQA?a-764y`D3P^L3|aX=N;>bR-_?TWL-1uLdkE6b!@OO0%oR4027Q{RDSt-u&rS
z*%?WWp0skcoIeD^T1pbqw@dS@T~mhZELw!a=<EtICG&h&wxt*4S8KdR{M~dZ4aBTO
zzhbnW!Z|5&3R!%B&q`=f49DcTVQ&g=ts8EvfIRp)x`$)z_!=L8PGTKR-l2lNkr+je
zvHAS6ZplrPZl>WrQZkm`T7jhsP3u_k+J6D_XaLtcAtAvxKTqttjp3NUj`V=_V*e49
z<s1BP-e@4GU8eOr(w4W3kSx!j@ALa=tqatU8Y;<fgIN$s$Ki=AKM4o|Kf`3{LgaaB
z9})l6@dZ|%;ZHahYNa2ox28RKE(lR;oEfB@WT+zx%OO$R!FSiaWWxl=+Sc$ccn-?z
zU&F`xgN{KT@%OH;yfmgqQftbTzEldME*kw<EBjiDD>L$j{#3FQqd05@8V{6EeJ9tM
zeJOEB=ZcwH-<xD6CwEUSd`(g2%=6wS_q?J`sI@qYXSt(Y(sqtnIqpn+U3z>+uvG7w
znaGw_eMPXk<x5r?VFI!$pie^6A0;xTj5b~R@<?ux5l{QdF56F+vN@#prHZ_5j@Kav
zr&Jl^c}|z4M5o%|Q&*8M3Da~}Q!%<Mc_VFe#g%+lO1-0Rhg`RU`*38g&04!6Dz1xT
z$JyM9$p8&cSG!rzdxai6GLhvKmtu}b$}3olg=iTMIxB{~$3i*KT%@cvcsy5t;cDj}
zE<a`l=C=kr1(YDu+?=Xv57U1O&UI#xjr;3+97W*19&bOn>>ml7==o~;I3O*rISwI&
z&o}cGC*_$0snBV!q2CMZq93b(3!zEbs0paqR9=1bg653?%=qpLE?yRPxVm8GstVtm
z)x1zR^p$%C<ZVtc(KCiZMax}xQPp<m34l(Zj4j{iG*3bm0Nf`#*;iVV*kH~6^RElD
z*-s%~Qbzn0x>;Jv&ZLKn<0wVfg5>d}l4IYM=cs&ls`+%TZ>Ef#>Jf^hOF`&6STzxp
z{O``6spew;8w8;w`$A~lAHxjJY%4UhSfdi2W-#TPqwr;vo6C)cZgkBjl^9-H_eBs)
zDb)l-!h^+d%t+{|hK++*Bi^OI&x3~)ji^52sf{rJMmP4P-Tkh$KWSh8r#9c~erJK0
zbRI4b6qe%$BI}3fVDI{W<qlWy`~L&^NljS|7FjyA&9e<eUi>vg-(DL25L@)G<h9Wv
zCnfM4PK{TUdz;+)_(V*=5zjv_NEg?u9fzvnc|t&AK%n_5G%JenW7P`({Rl^Y|Cv&0
z*QFl?C;s~<k*bs7+<4F{<}2m7coTxV&DhU(p-KxPqr4lJeD*LUeD&dyJlFK+<CAQO
z;|MZ!;~u6a@Bj0Q3%MJv<4}S|>w_og1J=ycMBJi;-x5R>N3%YH+MZhgEnUYCNo>+!
z3;2qQj0S~GZ5oIYHEV!AOdceik#azj#y#oojeGNE-V?!DxB0*t$3A_)wrm>W+s?YG
zX~C;+^3_ngUClPK8rOY<qgWf`tgX)xhfMeE+X*WA(ki8z@@gThy<Fyv^w5iC)C&>U
z=1}vP_%+dX$C>Q^^_EIAGn){Vz_>o0!L$`3hjUC;qA)G$X=!HvDkTu6jIozY6&<*2
ziiiQntmJ!H_RC!ne<B#2?-3+%hS!G=*5BO%WMw-|to*Mvi6IlH7)Q?ra)z5yp{-=B
zU@<dRH~ce}sbu_wmejEqTs{x6H)a@!KlV>1kBZSNVx1*0b=1(wUhXc7mYtIBaELtd
z78D8pTVcbG1A+nj<PoqF8rp2ya2-W;mU<u$+{ve@$ej)6MJKI}0hvIh>jsp}Y)wjN
zlLPp$N7!n`aTTcA&MCSX9YeWx^+6i|rksY9#41kA(3HGbJ_48%%`Dq`&U<^}n>nPL
zV&w@bU%t~HaRSO5i4xgzD{CF(i>hB}t0N;qSD8^!RpC3sntWK3&%iYDjwz;1MDS?@
zP)9z5!&VlQ#anVCNL&?ILE3+486~PP0Iw;J;Qd(c;d21!rL4&AwmAi*kNX*N-psNl
z<N7o|_)I6{<wInN#{}CGuHjnfClR_m32qcSE7<n$y0Zpgy_?DPYRg2$Jg@^GgYmlG
zz4#?{^b}yjEcNc!N!mXW^$id1dTcgR52|N)i_b5hDOb&#UB1B0B>EHz7g!zW1kBFw
z(;CJtX+Rb(Z(NZi*dGD?4mT2g|Jb6v#JNFwxDkPp3nZfA#slOZxv@dgD!#9IqfNxe
zh8h9xY~ON>tz<4-iHL~*rn6vSx6=o>fGgdvWBJbEs(nsZa;G$L9pqL-s#wLUSJS#H
zr|M{X39BB#DRWU|sN7lsq}2<ozfJw)arP+CaWm*o=CBxegl~NapTx+aWHEtuCLP3#
zGLk13BW4L*GSg#f_%MBxp-;n3K?J^#$D>m?3>oxBgp(k2oy;s94sFHh3_%#<cXY!x
zXJ}q7WQIGvd}Pob_)8C$`_m}1wHj<&(@vY@qYWqK!f9c+(?%%SceDI5_}A5fOT3Lv
z2%%UvNQ+fDQR`zH0eK(5#HC;72aKUU%Rx5OUTA?{8@EUY3;xD1$(bj`fhs}qT})w>
z1t~!ZSYRi{-*u<Tp-<<D3xu<zn9COIGRf|Yiaj}Jl6s9Hb+2oebIZ>Md_UABT+=g0
zMk5Zkhj85wxAV$p1`<+85it4b&<MZaL1a@ms)Br39zm@{E9X7Cu+?%*lQfeK7Wa}d
z3k5|*Q9$afRJtxSgSZ{%{j;71c&-D#41!XDvQRaZ*gMrLXdesIMC~Qic<VZKT~jM!
zGMs#1uSr(>3WsG+H@CUmYb?rrw{|10H#=(i{4!C*BB`hdOzndgAH|;Sa~lcxS07x@
zhGxHA`n}H(K?bigZZ*2irP#>(p7&+adIKPPCjSDhWMEB){v*oGV_s>kCaSMfIS7$3
zDa11QC%1$+a{VON(1F!@kp4=n+`sKleL43*s^Prn@3<@S>n+z<1)%9K0_0xzo=XGC
z+0zNXjUxG4#Z_2JJB(5p9}QU#Cf*FMIWlf)z?DQ^dI*%Rcydw&mgKLWYbPgU3T__z
z*f){g*(HzKq?DGRi*|FL^{m}1RE;!%9Yt327HU<y9Wb20bFxK!wJUrP<f3#VF=@Ml
zVfZF=^M}0MO1g@#&6nyZBS$W2tmo$J$4e;4wI63<WiuA)x4T!kul4neg0I3P)z3t!
zp)VaSIwj&}C;UD=o|QYj&r}&s1?^|*WGYdL#pI>zGeaZqC-nh`O5cNiW(e|y#%|^D
zV6-kQW|Qpam07lXSRcVhUp2)t!2g)+3ivc8B!6-GrXXpLT1XmR>~=}Y)ct=Do(XHw
zs5VkmNdO0TZh|I3*e<3q-7_9$T0zjMZwn2rJA&IPEma8jUB?r=#3K7Elt|l0u@?QJ
zp6g!R`ML7k5}aeJa-iEO<=RR8$EhHeu`<i|p<uO1pO8SDSUvYlTw#@Exz3qzt0<5T
zf93EW|EZ+S(9$pn^7NJU2DQ6NTepZ1nWhD|S|j``YEv|XZ_t<@w<3BddC3s5T_nA8
zDP@owbo5g8C7Z6Aj|T)c^?YBjvCC2muR<250q#rrcWlv)l9oYnEsk?#?*&B?NdfCP
z#A)4a1V(#|ZMejk<o|=()g)O_tCK;8I&OlyWvF;l0Lwf1zPF2HGJ8beb#wPc?4(Q_
zJI9{>mceqNcBFLhydkhzs7Mt79<uJbH>?Uk<-;2w+b$7Kd4zX*HY>ag{uFt+#SKm3
zhC;0NZ!ANZwO6llpS3hZiz@=JL#rZy+Tjas+4S|})klc1pBj$5!K*>t$$hEuGQD1a
z|51yxA1|xWH7r~*pG5(IK#m~t9Z*-4+T8OiXtp!gV^*fG?K9DVPd>BqEjoSU#NT-2
zIdGQ?^mN(?li#~ZZWqo5Y|=<<MgYtgm5-UGhYdMA;G}VTSbi!#B;<c-AH6#>-R-P}
zvFq5vD})*fo}6L8ZOb<0+m1VrQWVNJxWQ>XK%ZRsobIywP@IdtbV4tdlE)0eH66J;
zSZD$%aEEJ`7Er!qC1mhAIoO9f*?g=t%ce3!$#FP@hwVGoH#FBm6#L(xEWE0Or>l5b
zE#l!*QxgGCGJ?hN23D~1poHl^mro-vk{ycbFu<*q=0S$>VYCCDSyoY-?~E~8$&;v<
zT3T~`@4>-bE%>8kIxwNZ;}%@U`~@`-jdYD~Wq_@!;F254$IQx+CcJ;Z4y_i>RbRcs
z2nUw4hcSM6NDm7K1^>I$1Jw=*|2_MGK6~bIFF=aAy2*;aBVhjqkwy{s<xbD{Pd{P4
zj~C5<hrwRksU&&y{!R{-Dn3<_k`5xkMr_gt8@`MvlMhrP{3z&&6wY_m0IVR3akalQ
z$L@-JRC@_?8B8OEw@KP5Fg~w`#3R^n8!&Vc_uE)9#j7p~`XmA^maMuqG$y?;CV7xX
z?)>-)v>lDHDPTzBJ&+othmRcDGYaWYdcKV~Nve0#%zA#g*a89$C(!HlXFT-zG`dpl
zqQter!jmAf8!Qaq>xmYR^=gtl39}O;Ui@?bKS030QR!WebykEpSG%u|%)r-L>8DS^
z?8%HI5t%z5CwL`H$WFM7Xfp||#fO4Na1+-4>$r8d?94;U%!P)~`ztMOW>r$p<HDr7
zpIqJ2_){i|Mcf1tRp_K;T!=n6c@z(LkV`Ve)B<h&JT>R`fi+dJUnPk(5bew|hOfp{
zzQ(iOjYlh9Xi(FQT}DnanT7tAjp32e9uCr=?VE74>#b-i(a1dxC~6ap)2KhXK6nKC
zre0NI2c5y{14^-%RP{VBjXsdoj$T<5gu8oNs-f<P7HYn9Bg0eQxQd}6eNhr^)%V@2
z4~$<}@McNm5mdjVi<YHIcsXRL63fRmQ}EPgFl5XkKO}EAY5|cb#(700hj<(n`%0L@
z!VWKj@w)X(wDgwPmrKV+F>Q$48-oROcSzI9oPCMdQT#Kc@tmcPNyUMK#cRoCaug}H
z8t?Sw$Bj|y7j!&IA$_+h{<n3TjvoQf9Y+toB_H5ur~UOasmwzWq+kG1gWCUlT8(B|
zgud_mCFNQ+pogw>>}K-i@*kRK7~@SSg8=jvTaQ3}h$wDA&oa?Br+w#!z-9V0WX%Y!
zC{n*!oH!ayDDVt(v?NqS!pgPZR_2CQNhRB?bVydTmE5jc=(|vy{E(N2yenC~^QSFZ
zx9v+%nWh1O>)=(Vu&jTZ?noQue<2GXs6H83)a=h^E(m|Vq19?~lo@L0oKG-M#kPO;
zj28%WUI6VbByD!BW>_WSI7Sj^=SOqp-%hSV3d!@*0I~OMu~MdHiHWtn?qfK$(<Sqp
z`6(!nzS?f&C+`%|6k4fVOAS0UCR^s!5Be`pM~9<k5|zVGQ`wI%OmnTbI$H}ViVrsw
z-o9;ktW>0-y;c;!;Z_N~U@@ct!=zO<lFsy#-L@WUSuD^8AEOX0m;!%gTaYY|r8)Mo
zGxI-D%nKaPC1Bz*lf52tp^sbG#6Rnvi|9eC!gA>{O%U1HXG<zk;a;y-O%Kj(8aCB~
z4MS?DE~Rab57T)?2$}+z(R|RlO@M!w*PAxEXETg9OMOM|VGDrCv}j@hkBkyqih6Do
zT*a+~@`caS&?7NffcG4>(yz1WI{0D}z63s`2PVXgHKnvSwQgsmZX&HxG{9l{gP7)&
zp!8#;kgSQQQ~QPjnJY1VVnn8ltQ|FP1`BwURf9|bNK0u9Q98UeQ&_G3Js+_U6@h2G
zfq+Fv|Nf#j)Ae-E+Y)KMsmzgNPLJE6peE!1yJw75D(E@Rq-vtJVy{CA3@n@O5xI1f
z<~G35XeZLCa$#kF)e2z|@U&uI>jq4GsXmgV8J)`F_rblUM$ihPR6z!n%`BetO&B+S
ze;N8%($BQGh7^mX=w)C86e6Z1jF!tBU9H)mnOT}}H@yq?324^%GNMUr06vcoQNxT?
ztK{B12x6jUwLuBFawIuuui54W5|XnCTlN^=B*MjiSL>7>$+lu~8e)5YAEGNooL*2(
zErL_O;k_msTJd<}iyVNI#t~RD=<ZstQ@^|BgAr=zup$I9&<11p0u8sJa0siqzB9{-
z6klWpX22)k`;2S@<S5C;D05<lK5q`v8zqdf&7#{`50(1m9-IWsw+<w7Gi7oO9_W+M
z3m&HijJ&fSBO@@O+`tpma&#ZPl{G=$%D2*?1wp`qQDx6dv_K)3mlm%+W=1-T^7W*K
zT+o`!qIt^VU}1j?^WlkVs~?FrmoiuZf4vH9E~8rXTOJ(esvYdYDI(nW*y`Zk{`5v^
zKSzt~9VOCgeam^nsc6&Z8fIyb%aL&Yh?gPn#9BZe>S_LMv7OK}5%lDLSwT}*GQ0|8
zN$r-n9R0L2(8ly>Gs}%jOt@KI=!{dd{1sO0z^A26bRNtPkb+FCL@0XpOJA2rf5gxD
zpII)H^y3)Otn|MI&n8S-P6S=!Cf)zmWP)N;df>KG$~F*^rJ96vE1%%R1Ud2vM3{lQ
z-H1Cih}%G7BNPC(PP`vO=Ah!_)JgUfxL9ikrFqo%e***u*(sT-iP6r?na&Fcm)s+G
z&-SyoPV(k_mXV9ny8m!>4#RDy=6{UL2)t;eUKQ2t!SchcmtDtoVE7kQSH0xFB!Gf;
z;6$09mf1BLzSRJh*kQ_d-0jd}qw+Z$W$q&SZdP)mkdj_yUAuTX11_E-iKP2!({p%j
z5pAGzuKlmx29UW8hTwE7XpdA@=ZW_kow+=Hs)E~BI*^wcqZHX+{(aer4v&?X$cM(s
zad!t(d}3p*{>8IzkbZ=-A^chJ=C}H)w&8bxn5|mBZJI3&wm)pFKEgW}X1B8T(c?`A
zD`xu!Z}u*)oD~IKTgVAL?}S~YNK2+^j-%w&ej{wA{nX`Ho`hOZ&rtCu%jL4Xmf7S(
zI_RA6qOa3hEYo)lt=+x%WMFZiaIFl47ve}b(HM|y<CK%b?lQ|~tghoVWb_9p2#f9G
zb<BycV<HKLb`Q9Q<~(95DuO;V7|fHTC_>yMdW}d82It%n)2`vr)SzE#42%q#6(4zP
zGDAO|imHzpk}d-%7!4W>_J6+ijT$+sB_8rpiV5R^BpwGZq^uE!W9|aXHcj`y#Q&{$
zPhO&*)Oo9aBnpu8r|Q%o5f<gPK6p6tT5KE)&%x3(_&tT&rN75=D#S7fA&Y(q7OG=9
z*(YikJJUmlQ1Jgw2LA#LtYLY~ZNu(qlt`E59RfEmkHk-fw8ALbRT-Hqz{oX`=oAlP
zfF5ri#>ID~fSjfrj|ok)Y`xBpG98_fXFI1)${I4R5euG@QLio(j6@j>$BB=;HhWo;
zgZvUGW!`VHG+n_K7^ED)*OL%ub0Cc{I9)d*<5G){IMuA!P(JjiyP)6{#uA$3*}9D2
zTMpgmdWll~PvTU^X=4B*<j*+a=P~=~L$y387sX1I>t^%ybz3(wXZXuCVr(9P9nur|
zklMmMY`m;Zwz-KRS^l&|vC|S~m=m_)?eE21>Na|+s*0lQ4xFv1P^>cPvc^m3^LU{1
zyrErA$X#@X>;vS<-D(zs^}fBOmx}J&_!E8?Y!A0&4axOY&&YBu4&{0!e-}A~tlqRr
z-H{MiwiNCbQ0>c`cq6M<BT58_Le4k}U)opQYEPx0-o>~lVVbV)<z>YK`@D7M;#r;3
z!%<kJQ<cO-eABbp*YL^_X5Fahi0QP6At4qL?v}_>K8k{i?C?L4|2*p{kIg%B`*~{s
zv*~=}LNSW?!4_)MmxTgrSC}kR=uTj*h)YQnJ)pkH`9_tQ7c1hDq}mRt)d)Kik)`I3
z;a@ZS%MrvP(TW8KN3T9!7Rf!tpWV{4rdFu?Xqw)6(*FZgH)n%u{|J0XhYCIXibJxN
zP?y7~hNGG5yw9*wjKa-6Zr!}zB9F72H=B#)pZW~<j=NYS-_hW8PHzU!v}01ff9zic
z#TZv!G`}2+xC#;&kra+-NKSu$B_LMgamR8`({-FQKlVO&R{NBl9ztBKM`+n79LPh9
za{xW9a@VyrtR|eTa*LvYxDOfczghs;;e$9f&~)Y^>R-rT-t!AI<%`6K_zlv7Mb&wT
z)$8xF>6um$BSMsp1O4M*AXc6eClICeqR$@V$d68pA%gvoZpZZi4A2aNdfw(c1tfQl
zRHU3iBU$30EA^oIW77(7X6-289GGIZ9LVF81HwP>Zq%WrCm|Eh*M1r*LuOTGP`2FY
zrXh>VYJ8RnKrQtgeVeUR0-+ERaHj(<iv}UO{Ta5KRph421J3D;OI$5_dNXSCkp(Ml
z-}oEyMM7`6PB1ZcFTJ?}rcU=$2+(bdoeGx_!dO%g3p6&pv2f{4nuerbc%HroM?V+3
zDAp4Cbp)bhz+(u?X}~&Tu(A;EG=Tx+I<(p=R`x;Kbbyl;r7;(*Wm7o*Ps-cb!*DZZ
zYR@&4(j}X=XMQVjQ5Bo^0hdJU1f%~!a7X7o_OV<u=>I`BWh^j_eJwX!50_Ng?`(mm
zArv9~M7^4t@JKDNCE^EcR4bN1SimEi23w5Hx54xDEO&9-q{fqQ1#*ZFE6+iVHfFvi
zwhJ~dK=F@&T1`U=?QYPl_8pp$Y-VL78oM^LbErYVU*qtPs6TrCFNPS46Ts7#SzCIA
z^3`}&n0@Jd>qoch|65Qsk%uD0juiKZ&HWF33e(!ww8aah`yk}?ld@xv)kfoWY)3Pc
z@yg<mLbBvwVDR>O0);lUxMg8(ESrpgxMsX>t~cqaf-prM7NVU5T=^gv<va8s>px4I
znGBnVW+%uhlg;8WCmP1r1u6#VQl9PX3OF-Rt|a^cnd^Ij&wtTj2ZKrB8PtTlOK&-)
zy|XKf?2}eXg<oHUzOj23^-8B%iasTd7<tC_UpWta{Q#|8!Js$_+!7Lc7DFXwuoqlY
z!6s!9O&>u<lx$X#T)-u+Dw9B}+_RFz`Trr1PfRtCe>^Tk%v=ho-vQMB9o0CqQTF7i
z`_S&krnNs739U{BuP^*?C~o6Wb^P?hOBArE5Ej`YM@(UvIggMdiA%YrO-bKz0tV1q
z8avYI9Y^_z-G01P=bVTC-E)vO_#x@!upx8hiZ@GKyUuuKo?;&9t)r{lcVY%K&KCXU
z4n0TbNk;H|^%CH{K$}2CxW5(_>QK$d0X8?hZ+SsKDef#trXY3Fi?nR?ysZW5Y(7%p
zX6G20w?T@bB8b(bmk?y+x_2b}YbbJkFR858U!MTGE8gem$%v31dL`;op(E*f!DU1)
zdd^S?2ZB;Gr4eDpPLMTH$L((3gmG5?U;nA4`P%$GYZNKp_X$HB<z;%db%kE&SsJO;
zUMeo~+_>?0HPS(yqKaMfNUk;--Igjeu(wKM_rSSL*y!&ocNISwoE~8gG-%c{l}5}!
zrRp>h0`Xvso;XY!6^CNtL^B6+1jnphKjmgvYKU$6=_&pe`NxXqZZ&`<6k7X{)8ie2
z_s>m;+#M=#@3H4l)_w+ZytYgiQ6m<$O=iMD#1+>b2`EO<127S<YgGDR?M{U6xJB6|
z<*39^EUF27Q8#I5g}w@j)V%2^TRnN3%Gya(Rqro}*SasFOg$?B8d5npF^+A1Vur3^
zE~v&Lf*a^*jrFZ{dn1CnDQF>!0TABq$cF$eJULC9*H%*Cb-F<twq>zcaN+ct285{i
z0$>5uTG?BoaOWCr!Ru@&O1$3_ED3QaNYiz)Trc6tSwFX5*~-^X^N9D}qn0cF%qjzB
zMQwamm|_tHopU#z$mD{kpz!U!i~t%)vWguG{UCi#=el8ozt=ZLri)YyIk~?A&B2c1
zVoG4lR>tgkDl6D|-Rl*<c`?4il8reyMkm7-OkBmAmat<>$6u(~h)pX$@=<#gHU8C1
z3T!N2L6%JG368fv2z|#lwYCwTQu)#+Akv%yOx4IpH7lybkK>^oJ0KbK=a!S7C1qF&
zow^`M)d>t7G=lP%ZheybrAsN8xmj-1<D`X-*Sd_=Y4hdpR5{y)_sF2v)4QQ7dN;`-
zujuQVzuK#yv#=g{QqZlrlSpo<F7MKkOVj#NfO{Y1xm=<U5CFg5N+%F=b>(yqB_?<b
z?g-Z}-Qk+dDXu9cyHQM%EPYQn(LR}|K%9yv_bvyq3<3;5T-_Luw4&_o0QFVrR!t+J
z9sHA)dZd8aSm!*8t1Cj^(>mJ-r#Turm-+L<L5hxJN)uKM+83O;2gHPQ2&^pvU;i;q
zXTGm5*O5LKd<5VAxhip^>EQ^Y(KXek!>^BdFM3F)C~#3HUPC4@^Wq;Of3?z_r=mk5
zgo`JiyiYQeMSikw^O<(U9`a(O!)#UBjB(R!E}2ZbtsdRmDx66=d1hsdkb8pJqD+(C
zA+LE`0$sie;*=m&k862VI@N7U+3(=Eczeh0g{VPvsb<~Zjx^I?$b0sq?F0LHwXX;%
z*Q;~<u@(x<m){zIS?=?nHi&g|C})qtplEHuy9+VH)tou3tHrJlZ(HdB*B%|BVD-zb
z6_s0$r`P$|xOXg``h+bYXb%!kyLN74g$@YJi$ZmhUb`C#gV;58b1ZjCiMW=vz)(P#
ziGObxMOZln_$wrjngfm$AdNlj>1`Ubsjo$?jaC5;HqaJ~5^DYo`ig{#ICk^YNcBg$
zLjTXQRTXsF4Kt<SaQ9#;G!)LyZw!VG`u3RjiaUMBH>tn}4WL#R7cpv%x=KbF@tj1a
zUo_t-pI_3kcw?3<{Z*FgqY{C|k2`K_VxN7Um{#+(&9}wvb8)Z7{LEvGW2Cb1W$mA)
znt<a*KZRLYu7Er3yQ$n7ef5LEl?K0FnKxA@Gm~I(n~n6_5-wjHn{qBxF#}mVr9?+_
z^S^V4F-+s$ON_b#>>NjIjpM_?{0_WlCx7JNk(1RI@JxROY0Mk?WF<rjUd|+e=zN9v
z3=!yA_9E!=8_BY)a;ohBF8{$Ws<8%UwzVDYKmDS<`7(&=#2&~Rlx%!)jKCv|jD1&o
zWXhj9fJjxACKZ`6IX$-)n2%X-d1YpIdO3gaU8gGuri1m&SM!gm2WHCxwF{wfP%z&J
zQZi|wisL_Mq6Omr*2Pw|oC1@dtj<$S5F%!r9$5=9!YL;sqeOIQqbd1xxkCwI=k1RI
zBl&oCBQ7#+^J0=E8$lLJ?!rTcB9I9iM;3QQD+Q0mzQEX*cfG2X9Pi>dSK%P6x-d#8
z5~g93oI9-sS6ODE|9HY=tBU2*!inBvrFYYGz~pCO0wyaWOCjy_n5E94XFB1Ia!-J{
zMPX~%oUMn+p^ea){Yhq(qs@)bVSIMipCUm-4?6Yy6Nj0lH*%bViJmjMVqrHk%vI>M
zOQr7kO;RvWa{WF{#8g}@`t}Tcww&dUru187Ytfk7k8dwN9xB8l*4sJxxgZn<wyQX7
zAQR^S08_oV4a#ElC?$`P8OH1=v}}gfbJmi;2a4Vk^oxPe-<FxvsQ$dLw4z>1iWd0%
zi|`xgoA{%igIwgGv5886SaKR^X35^iF)g3nV=c-y@My(sK7V_Nlv{u)ML+q)_la>e
zEWSUSG)6n+Q1Pg8{$NETrX?VKe@oZ8;LDGlxoHhD#gEd8?WuUiy3O-YQWl3|3{c9>
za~iAS^8#Rv{vao;P?7v$F|_%0^X5!A1ZXu~fNeeEGc&ahlWY_PZ%BBLqH9Syd=dkU
z?0CrrsCXm^cdCwy4Fm}NkI;b*Ymi=caYYAuRXa)tWEEreVFIQ3o1+nEc5^BdTZBYE
zR{C?Me(NYLM8RC#*LSQFOB$qTovTXG=W$oV#L?5{flaM2_@L|5l)6E*5C(gQi1KpV
zXu%B6$3FAg$W`4FjC;@I&D%q%u#`}!XmfSy8Eky|TgCQmxOLG+qSiL1B559sou2@*
z>$}(&{&dUgkdMsqI-TI6x73LI0yn&^=`e@?%^mUID-`K1qr5`#b#E#3xNwJ&VIuAZ
zT*EEFJNPsc`Y%q61FAZ1BetWnB;4`qKH9n+uQs&c_`sIXIpvpUPCCki6dw+$n)I)X
z)~FQ|NN<mE*t^xtGKtPT+V^QzG^7s=M{Yw=0q4T}mYHntQyV8X;%DvTb+L>nh>m>w
zn+ecwh|)`Lh%v}3kLaz8@D~k$a(<WWd>{t&x`sLPUj55lUS!E6$mI06`?(B1b{?l+
z%8gz?S>j$r2t^a36eDj@Xtakz##xl{0X1;V5VFUzWlUS@u1yoZ!iFr%!~wkBU2%2c
z0&j<pyTb<LZoa%kiA9P_ev^_~oV%y!Kuo<C8*LK{g%0-X#WfCd!%O*Idqk<ZkMCq4
zVi%8dRTI1Gdcxv^)|}3+6(=3KO#2ln8@TH*6{#PdB+@PAv5>&%uHkwACsXfl8pnI4
za%unaK{C<4so)ttYn$1Y4pKt*?S=M*w*kdf-dZCd`GYYY{ok_|Wy5hhDiKj;r?@Q}
zCOsz4%Zs%0b+fdZgDz{_8^mKY*brx%Tj2is=Gcr7Y3WsYMMf`_u92HO%mtD1ky4ur
zVuChrGGNa_{!P64Co_DYu=>4@pm`q&qT2%1tNIsXsjnwQ2cJ-8u`a;VjprT6FvGGH
zGp(W=?w}<T-@y`YyZCylCBvBxQz|6qep2RYt@(P5_~!FG-qpyq)3f`>0@%q6Ag2gl
zPIjR0{|}>jDzcE$z93gro(6xMUEIidS+DnC80)lItP~~l(K;Nsc|r{@yg~dEX;Aj-
z7h17sa=Rwe29hzFDDC6sY<dhiVz{CJe<q13iv|zs+21>lA^ZePd?TYU5P%lh!tpkZ
zF-yx>08u4yS>^;F|BmZq8`sA)o%dqz^qY`Qwf5JA<hg`t+x|<md}jC4o4>z;=||CN
z%!C_n?jt4S<(5EWC~#1Tc`5a4Y>OfAws5U6HZPT%L&RE>mVuw81e%hSv0TMB@-C-7
zz-lC^zY*Z(2nqpMcIfJLLx5r5<Ifl4+%0)l%9utQUJjUW7aZiKTD(qM_R?hA;0rj^
zBFG*f4X~@lRFj_FG*e>_PsOjitkdOW=1vZSL$b<i>++2Dko}*#1Qqc-y$-~jW65Xe
z7dR*Ul@#JG0)C;m;)D3tD*lgEV1{?y3kJ~UWv3k~=m-vVt`+ZOpoR=!(Sb9FMxvsK
zTQN;6;97vfid$hnPCWp%`)<7S$zY&nEfx?{AkQ)X+}|NNIE=miL;2VGIOWF=H5Tmq
za{WuNKnb26&0B|ON0le><B5u!x28n92xhc|zU+0Lyq9gkPNPfFUX*Q=feTihJ(rjo
zB#~@!=e~ZsEQzI#S(LOp5hT-ru55PN(5-VByFxljFH<bKce6hlLG#b=i%xnt9{-M$
zrH~tVfQ!osHp!bFSCI9dQI<Db9#QO!LIl*T6YW0D?@=~2e-+~VRTXp3%Yw6g<c*lW
z@F$#?=Z1Q}?E2|SG`Wd1NY(EZi{lwrR8AB$0H)+o1txA&A*~|v#mcg36eZoO*-i7L
z_ogjw$!U|)gB1$yvR|(s%__bW0+(gai)BL49;mXSu2MMy`cEvLL=GSX#CUpX02-&G
z6wXp{s}|jsSPRh2QfyVQo?kv&m0XO9lHTFrS?ls-`&5?VaP%6~tev>-#(|*3RK~fK
zieK&6w<c}9bP1lR)*#DY3(#Pfggr=7&_NE06*?Zp)OgD;^Vt^d24FP)k0M3QV>rDH
zEp^=j$6DqOiNQzByw<-@rso1O-#j^*6voPlh5Hpg%FYJCvh|VF+YoFx9;0{lyj*QD
zeY)siW5c<^mQdbj;=fsi!}FekHMzN5ok&e{ycx^ij1^Z#&pe<~lh}6E*%EhUQDU!E
zf}>;%8-Gd}APGZ5*s$@=eEdf@%*D)eP_sGWeAMFq*g4CP0%@z=Mph(qEp9y;p$dt4
zGgLot9({N$LLk~OL9Etv;YsAqqx{uZW*2fqdrf#F5!$j(CWYLNZq;v9Ve7ESAIM{?
z%^K#r;a>BeeoV!f$u4S(8h+YR1Stv@_ZNhHn>FtvX)lbDB>$>TDw!8k1!EurC3#xa
zdu={pIGI~ZzR7<6F=u8rh^}DY)C?0pz|s|LuhH|}?ISzXcGb~^$3-m~sJ?<KwoO1!
zOwHh4LSM<H(e!k!sKd5-X>!p5+!r>5l*wgB-gSj5!%b^O2|K>Zok&IutnHok+#<4y
z_1~``=*aXc1f@c$GZtdZ5g4P4@2ypccfOW1Z~FYU000UJ>@$JSl(DaqjDRx&%m&fA
z_JIqOu8c`w**1o(rvMnJME{I$;`Kcnvm64y(k&ScG~Yb0)~mD!hcvq~EvY*TUOck^
z)hH&sJx;n34Ktp>lh1;ETKrx@{Tkhfm${aF*`Y4|{A;{^vqHDeT+_%;Tq@2tfHX2C
z2k-Mjr<isJ05!mH2Jv}vr+cXRbY^{B8<ELT&Kak&$lJ-(XKn_F(~NWr>6x;4kR-zQ
z4#3B>wnv4+cg76ibX@@`JO4q)Fgk~^ruQc$6E#kj?s<}#L7K+72ml1SX#uJ<cmuFo
zJgt;@%*LKvtPJV=ph01exLiJbbJLqhCMi?|)jg&ipeff+lYZ2}+3oz`B0->&{vu3u
z-l9(LN#mdoW)DT=Sej8nC@bzC#YVABO>pd6h*6m-s3Ts-(?EvM*e$bzA~%PC_>^+V
zPb<B%W<O<F?)A1ykAKJRBZ_|6I528V0<0W-Ai!r9Cja>dxmRHl3Wz5^llF-d`A5Ox
zA>a+sPVBW@iDq$A5lNe7OMt`L1VXLG7re76=4^V3=se5L$=E(|Om2T$W6@RRDX#u+
zZGEE~J)K&Ktu;NQ#xj@I?rxO4+Jp&JjbR|@@hAV06uw>X>-^I0aV7y4PP}QR^vke$
zt^}I_dCYlDukJB*1BFt&U=SsB<<0A@n7k^*`)|dzUn;kJB$!Ap8{U#&QQVk1L`=)`
z${2Tw$w&1mZejTtQxQx1-hXWbaLmhZP3-RZvZR%@(0Xj97&eWMW!-q;2=EV(mDjsT
zzPyCNz=PPjS$RC9k8-XO11n(Q7{#`Ekip8XQh@%sU}uW&^Be;7rfw+f{s{0D#_xP|
z$v>hF%QF=+0R~~=js@_8y{UR;HEvu%R!S@jjFtR_2^wM?dzzjK{#zC@<pTtWmIrx|
zU<P0?vQ=7hv1)y}fGD)9Nw0JQWpT^cT@+uF-~rWKi(RnPNfG*bC^{DTzzup8pHA?s
zPLQOx>}HGa&^-|VWc(`Up&s$z9MUMh8Pmu=h3wymQ};3{m`-~*44U@o%)Bi6x&VSK
z<!|@6s?YjgbO%o&-=z6ht@?tUypn%p8=nmeMMb>o!%iJSi<H2VVk^jK;(k++5>dSv
zyAqI`(`Yo?CLfLHYpw2`XUV?h4Ri}3hj`a}PKla?w>1rJ_s|`QCxV*saOf_ty;Tba
zdUMWV?5OC`x{@`v2JB;?>aChaAs14rFP{CkkKAc5Z0Zx>`ygHT^jcP90C*na)^e3(
zi{h^0OF<%T9xW7FY+3)_Df2_g|MZ&$fHz4IG@X(Y9wZ?wan-h@3N}P8xqZxqXj7Tm
zm4aCE#=r+HB#&15psRBTF9<l&oJrNDjJN#HgLftZE`y;>8Jq+%bZL$lDV*4;OmEiV
zVCLI<fCW7E2cXVEwSVEjgoy{HNP;^Ci@@=kYx>pUV>3BN@wZXn)03v$^?#8vqa;(W
zKCV5g(<fnoXMV@U39uuUsPo?;P!Z0a!Fc4Ta-|2aB0g*n*ZT%^CLc-7^4Is;6h4DK
z#pd~mijJ5z!{3vs9ycCzLiIqZ(h5Tl&HIp@;wWi8*CMH2M`U~<KR{PGcu?sJzJRqJ
zau1nO0JCmapk}}0<y0K*pst!Gv{1680yPm(`RYfKK|Rs%3S9;N{?!zV|Hk-eEVoi2
z5Xy&4k5(?w*V-h7<TW9FAEwPnI@z3)hS@=Nc&Y8Uhh&?m2aODwyWJqnSD^PmFbrsW
zo5|0tTtd@GHZLp<Tn)u2u517#J5#Z(gl=(-1YZT%d&U{lqGc3T1qp;qNm!q3ua;;z
z06s*(wY;?)366)yC=Bj^HK)(&ICZhRsHe6SU=e=bctGyU&#kM=J15I5<iz1D&__j4
zo40U~{AgYiq9(yoPfRn=dcnYa-tA|btjRg8a{340(h?-}_I><0gkmBv4V{5atwIjG
zX=EowSRFO3Zd_d?&Z8W{DV!MkG=zLnI=khHnAb_2ltF1Kh+>nkOjhdgNeBayjX37?
z=%~`5J-xr^%9JXZh3+njdP2Hq_^dp?DF76&VR0@-)LB}5J(d~v1l8*+ck#JFUKv}8
zXyvf~6(H*fo7eKkGHkO6P3GS6q42<E7skkx`hV>=LPZV8u)y;BWYf@6NmC>MeCy<u
z3VZE-pHm?>(C@e8?mT#cHL>rCKI~m7=l(Hg)gFN1S{--awKPb3j|2if#`Jjfi)ILF
z@p}IwH`A%!Nc)5eVuIYTg}7ElUmsKbgN{i9h4z^9m&K)p*P-`6p3i5M5G%`s`}Y%4
z?5$4&y2u?`lLy)_B+cu$24ClRe%Oa1_d%b|PfHG5q|C_9foj|UE5VPcf1r^*YApF;
z-sY<kE{c44;n3e}<60N(u7olO7;4Q*-0XSb_ur3>l^*rLH4NSQcA`8L0?{t!pU(GA
z$9bU%uQj<3A!L+wq#=4F_b^v5{>zq5%4l(tJUULQRRe9}oO+|&ctY{{reio%2S)EK
zATpmK*!wM<nft0dgx?B9a>i|?Jj|aLS6~Yd6e<BCA6c_!zQoOzyZN5qN`~>Pg^1F9
z++I9Q_XhPvQlQQkf>E$jiyB3+yae3dM)o$}^U%>&)7%{73qZ)I+>N~KAhmnj<YKjU
zV$_FN<dkVK>Fy&&VYbeBh?J1khBRG@O5U;5P4b1*|6{@D#xJRje6ZVXB9l_rIHgBy
zKN^X>bK7MZW;B2ksW}*1L(_*)ivZSUuVoB{4GzNO)vKx$?k)4znGPQO%oRJE8?-&>
z*ddC+P+u}ux3xpzqCAdceR!`~vVjX;uzIWLUU4beWi-pEZIxLXr=elHJ@K$NG@yzh
z%lAje4CxWuLSMd2^HK;Io;7%t)qjPOQ%$(!T&r2%`?cxMRA`e6lBHNGK3nEAXlj1Q
ztz(w3WUrdp)vB*?+Ov{7M4LRp5lX_~Th6WvI{JO}Gc6!oOcPyE7_;iGtN9@4wsaYd
z3+wg$t*N+5oU^DP4^mdnO@H$t%TYchdn*r6ncTguY75H1_VwIeJy^=%so)L~4dJ){
zt7?#`=kN_5`L`>!;Sa7`oB>|5$>fc*$5gvhRWaqYVqDz<g`*H?j0MFoLLUUEs`H0x
zwL`imp_k}8-=%JgarT5l@u1z7)c#y===UnUL;EavZ%LDpEVW)GTz*Z|4$$|{>z3L{
zdEBImvXO`%#-H0UafB{g+Cft}f*d=mQYYmfpk|xC<@P_h6^dCehy2cnvp|5nLDFUe
z+oqM<*1$sAiJQKMecP*b-yZbol1~CsN@N~%J_?=8jwWj$9H@v=J|D>7RWNn3bOQ!N
z;2<v4*}`tpkDvm~x71v{R~Fl+{(hF3aQ-z_2{wly*j^AaDWwl;|2*D)nv|atjPpMN
z#d-$R-h$?rdS{{(BkJ1s(;#4mF`aR&^dNw@Md0PoE@=3(yAVwoIauk+dl}K=P}o)r
z3|<0N@_c6pOB~rK`<1%VwCKsCPL>29eH?lGEaY))+bB}p+`J7TI$Y!!q#dtG`B?(5
z_lf=P1X+d$FY=mPQg3n{!m$V^1DUSUGP`=EI4oWntFCWMKPl!b8v*AJliHxSC2E?w
z+wKHC+;7((YVG9Ch&~^h%|Vv)Gut^(`xycF;sveEC))MNv;k{2&&uIeZEqY1is4V-
zBQjK?Nv9}Pw$GAk;=a1eZWFSskM(Ix!V_;9$+E^Yv*p>Yj*d+o2d!mF7AOahjL+to
zXTHgoVe#^I*lIt6A#58s2~K9j3exI%yN$c8(~b+n%tY(|)9~%<ns4nB>JS0G)1{&}
z*34nMki+~^5?TccJ!a!R&sXY{#hnu`zpmh29885%3AY5N+|c0lG3_d?XCPl*s$68g
z=DQ-Yd19ftwt{|L(+yAfh{!D%VS|uGoPg@tQRgDA?p{l7HnlU<bL);Abm#^QUhrL|
zvJu`ehG+7O(iLKC_ZdhAKmh3-QwM@lZ=4=kHYa0NfdPG+nLU!udyjuRl;fPEJJXcD
zf+O`X<Gd5INNj4@9lwA>x>XdQWuGujRgfBkIPR1=gsXSA%pR2|V$0T(B@d0CPGr7M
zUauH6#-GtAiJ>n|GxQ~%59BB%jFn*Nyn%mG*-+g*bz$t;FCdD7f>%Fa04_$ad*F!*
zGG>k3Nyu?(h%QO4P#^B;LA{hA*@@X2wGW!A$dq5_2*!+vM%y;fdPN4w{_GQJa`H|`
z3u%97sR^c#-nRuv81;`7s~t|{t^bUcw<LrxbCOxs0-h0|RW0d#kl=}?qE5wLqDUTz
zf*eylYD6s(Y-}2O-G~m#q}wL@<odPdw+n%WUFN92dIKfjH?#+ufTF$6h=4v3Zl&!f
zh9vU{bw;w{$<P2`-4%|*nnBH(3d);8Yc>0tl2R%hsmq{Ra#Tq#CyX$8E#fb34{Yp=
zXxw#-NF}rdI^oy93tYXh=}PWL6*?CkcjL7{K2$KC%GCKuEbjVbtyyKegK4z;5fO)u
zC=_w{g)$2Q@Z!u@H&D^!GfT}l$B{nronz-laqB~8rtU7?{g}DP{!AAbY?oUIwfAVE
zu_8-#9+!rfgU%8@@pdidCq>m*UyjgcFgDhw`VkomXZ6E5^xco7197zP0EB836R`ct
z-uP<dO$iI*C0Hcj2Np(#4hrgfd@1-ciXt@e-QS~V@=QiW52`@{`81u5H#KNlR{Tks
zzHuL{>~v}@q5;KT5~epsE-)L*Bzr|~wK@x)jKyN2;50V#R;TP6y)}{QeAs=+JkHMx
zM#FFa)3pqSOBqWQ>}}*2z9a|hpt>oxX`=^dA>ABrdPvwaac@F&=#i5B43;n)mYq{y
zmmh5}v57a5vHmb9V&|0q?mv*{3wa&Ee3*=i|MR@bG6j{!q(tP9IYz6uJM~TjR`8Y^
zaGu;>9a$>s!(x<GdGRg+l9Ok}X$?>N+ff!!XJqx%6@$0fZFJ{I+DweJF@d1}AP9m!
z*IYg|PRHZs!CTxr>3$RfuVr-nY&O;f+~FB~5tq(kEAurl{=i@%%)}v8vkaMsH7o_A
zJ0`?;s~)jAv$^b;zLR((6_VqwK0}=4=T%50MW6+~+nQ`=qN0~C*hujwy^|9Rho_OC
zplN$$-~~-_nj7&A<-gS^It-Yho4<?}0G8JK-9tPV6xGs+lK8|FglDY=Vz_ge)_H9W
zyuHv6o;sX7a--eEOFG_`bpL9$H=DX;^{%v6c#j#{pqcdZA<amw<CVP}#&QBJ70JHn
zQE4E4(|#8ez(Qw!^pF_IFazg@(xHt_G8QlBff|H0eI_c3IDB3Hm~e$0%8s7k!f9)!
z(`C3nT7OE_<`H|l#gC)Q6K#Hv{>{1V97WIb*Rm+Gs^V(`{WL~Y{&0$b^w1V@dVe>~
zuKRD2O0#>?i}yLZj6xw>24(gfigC_-rnf=u9(LiKWUJ4^&Cc|Dy%r0}qTR6b7=AYt
z&1cjpzF)Kb`Cs39U<jB+Ut`Jy8FV;C@khnqdWSD!klwc1#&fnOM@IE0&QP@@=cTIz
zIPoW8%y>Iz7qOyK)N+73;yL<1*Su`Xar4-^X>Ip2@k3ZWN-q6-+x%$1s9l?wvPi$y
zOJ|NY+E<lz?Mq%uw?^Wotm2$+wTc|l!IjqDE2ZGhjcv)SCsQN5#IdTEB}Z<QTC*F(
z$gk=6mLINJ2ebp)bequDmq9ITGr`@O`u%@bFP7_UMxbj=t83G{MJV$C*r|@#ilNJn
z^EsyB*z(rmfQKAi@@^_qpPc17btesdBO&hYWvcA07J5Zm-?u+l!!{F}4X;qp7cJBv
zFPs=96cf0$+#TaLM@jE}0!m;(#!Dv6HGsvMBrQH^5AL=pU+Dp<4YNZ(TpnMUD;jVe
za}%O6I-jBhyJ6-CucM6fX<1A+B?*jTUR)$3$KGO>tWD>uqdRp>ydI*P>jM$z+_UpO
z5LD=|VEkl!vlB4VQu>s*t?uC+@Z_}j!Ed-NwL~WjO;~yL2Me7~{O@<A)AtaNb?TyZ
zvwM&Zg@i&|<;MX%xKd$$hojmSSssJu#fCq30X3JBD(FFD9egFoIlvr_tHSsCMwB@j
zHN}-V)mZ}qHpA%w8-ahu-q4gh7~y0ZI2TkWDcu_M8~$2P8qcB3H1DYsrMD^lXY`MN
z0pb<l*;&`dS57Hr%1m)&kqWiE@TL$vw5F6Bo$^8)+;q5lN~hP)0_V8b*LRlkQ8}zF
z^^71*qL*s^EKQlG!38t}qH-a$5O7WDj<moz+juCOi{gySel0c`jF?7FY1FsU+CE!}
zKFkXmuFp^hJwrd<BuVjn<WIyd%D+oGFOgh42Ti%zccN(CR>uj5%^fjOZhIe|(8n|!
zj^fPTeRL|uM4YhIgD|fZ88La)bBCpoI*Q&45-|&)ZW$F52g=dW$5O}hK4jYC!lMba
zuqE|7d-1BhwaU-!^^y)*SHx~+PduIu?BNdE^GwNTQrr^orsbQh!lE2)sx%!s4WEI%
zLheugZpG^?ckpIk3-R7KRPcJQB{I1tkqyP5J{o`2n@_EljH%wUiC~eC6?M3^ArokB
zNVqlFf+55+fOZ-C_3~>}cFZnQVdY9VDg?f7q%8#anwBRbyi1P5N-^~UZlsew;NGB>
zi)Rb5vO5bdv~=F224%PV6*NVKwTyB=Tn;3WOSK~goi{bds#_fy+0Fx{E!Ni6m-xV9
z6BP61^$#0gc7dYz<-DpFzv+fj_}ADH4(LPf4YI0jM&k&N)A-5#NkG+HIJ3f)dwEBn
ztPK5C4|GA@ALUBucw!1nChtVA6Otob|2xzg)5F&I>j@h|E{URg@E(&4>0~2nwDM@H
zYRu<K{hAJR$;mrOFxUrDFXZG2%KjB0)G#4Rh5~+}Eure@5>b~>_Y~2{7Q>L~ESExL
zlDm-WMij32JD3snOchp5VxzF$Z|7q$WCZ}__wl(%ht@Ky<`8yEx+o>6ypR#?*SeKq
z?@mq);O!Km8qluq{b<R9shTpo{XM-RL(Lv4v)cz-y7>l+qhsTB_u(@ew?#Dpzx2po
zBK6OF{KEn9uY;RJvCONHg3kM}Ib`|?Kz#)7m^-l_*$+a?FyW2H3FS!nzsZppH<~9K
z80Yv_k}be}i1QX%e^d+2b!%k{r$ELBJ|GA$QF~;?!TaJRg8Kt%I2OEg{=%I!4>RMV
zvR1{`5LQLl17mAiHgo*-xYUzxPf>gdPfL-pvdST8YZILrLi5-LIeD<_&vY-=CPY-S
zmhYeZjPWoo>l2@6$ENGdisM!%jn*Y%nD&!r1F6GSVucZIiQy(9T&@cL3}P2{5Wg#b
zea+X+fF|gXC}Sk=m4&)EP1;^m{KMogIC^?OKQ(MxW=TsbM6C_yg!-dDZ1eZw4LXlq
zk7nq-Im`q+c3W@TQ}Qle-wu_g;o)oIet|J08^YhD+Rcu9b*?5s#R;~k_JO7hvJlDJ
z02=SWqDN?#V#`Kw3)gNDq@DU4CtD9umhKP7dJ&ueQxxw<nU*{B%sZuriJ?+<P|Qwp
z3Um*j%I0`xlO7As?+yln7rTg=s6^YgWa9^pAtRZ^?+2HP6W~!ZqVa%e47cI2v<eNb
zFs?w<2QBvO5>3X&88Q5$Te>22+Ss=&AElkgu~RGy{TtOpQF`vZ<vOQ(bj1A!%Gbx0
zGEJ${k)xU2`RHqM(DV}238IvMUFXWUyAiKH0_#SsqKs3EF>z%K8BN$7y7m>DM@(iU
zJR7LE`rlx69Of*+)jvY;lI_Wj<kd7H-29EHtn$C)+gP4v$z1XGgAZb&;N?>;QPr(+
zZr`%ZiXRQlT4i*EF^cV>#Lo1ALNs+BSH)dls={Jzmr^o0mB+z$WNO)wZBO>VIN1d~
zTiAJGvo=NZU~bs9v30Mi#`c`uF{DQ-m+$z-LhhZ_(M0s<pNAD5qiVBl0SPuvL*P#o
z07A!M+*_n?k7lrnC@6w!<gW<B1rPb%EjNCJ;Ju#Vk=6hWNOLy~emj8NBHYp0e15$A
z%jZ}m)L8qp@^!@2Sxei^>UI;a5Kfde8akx_(gK^WVe$&=0<w%a7nR0l2~ja1!o%Pp
zs?truhxIT2i*A|5O>z=-v1a<JF+r7<#DDB=4@~r~8Cqld0z4jcBT?CQCQ}i*Ai5kB
z3@(6Nyl_30U^kN4sc>x)_w}FDD2N0bhYyS@lzJ{qlYN4+TDwUcemFA%IMJx1^xhyk
z8zR;UFdD!>&|kyJnEmwGypU4PQY?nDA$e@g9<=2!HmmG?FB9$aKnbLhw#T#FD0ikS
zA_W4qb4lVBo<VyB$fU-@g}}*q@o`c})=Va`qg{r)HGo^-`Z=XwhXMeqJ(==m1~8xW
zW5JlAv!mI(U4Pv<!GO$?96k!FtubBRB@nq-_nEQg9B^vNS*<UMabx~s(`#3$5I`P5
zv^3Dptl%iAg3=O++BoG1zcYb`RZQ6Nv&yGUS<@@aO&@c6oQa07E}3l!$C)>c_I@u)
zQV8P%7JQ6}3L7Obf=7U3dC7w6-Ng8$sY0}K%?i*rza)tTMKeQ=Z*$;n{m0X@HX1t9
z<l-PzHRoOWKB!!!mCh-Ml~3HWze|C&X#Hgpgj{f&Jwpe~YiCZTlxHM%@=b$18lU`W
zY`0WD@uGjp$Pt^kl1GO|cnQkz2~$^m0}^rZXk0Y=u<|gW?vCbLW!__9sZ#t8LrVun
z^g)nvO&7`?`M<OasdvzbcUpO%Ermw|ED(fg;oo(}Z6V9n`$=PJ1ZgMT7o~<6IIR39
ztbTM3DV#Iw;fy3cv8wV}j?!J($y4bWs?47;kpyK9>xu05$i0?eRLy{%)(2!)xY2X+
zIYJpY?^!L{(GW8MQ&Y~I)BC9{BRE`!4WE|<3TYVEsGxLmzO}3gD<~(q*xnLFT#z5O
zM(z;vnQelOOp62n<aUKHFpF&Sg^@CkAom7|Noj@PbrS7M_2%l8svT@h5@juQhK1cH
z+MP4Cg2rLUyLWGKmXbP*{aG#;44~t(?p_S2cMso?53O++?R0r>SXfgW>Yt2*%qhwd
zotF;_9vIELG~=eOv^nKf*vr)deim{Q9DTtFB2VG?{`>+d{(3pjO$t=)id&RJW1x}H
z(lKbvm5y9ZG4~|@V~L=-1m8~kvT_rGK#XcQcxW(k&}liZkYd)Kc1*M)Ch+<c?lpc)
zX~5*06vqIL-dydhF|s-Tn8WK$NJL{b%P1-TNPt|8#iPPZO&2(pi4OfAI6kFWQr2nT
z35Y&){1VHp%!9;77UbQj(C9ne-N3L<vj))t5j(q_act#d0+)_Tc?!&wz7XG=WSE0U
z&tdX(k*AK)8qcWwMM@aX;_cn>c|vrbQXaU>l_PpaX<~Hg$aLzIe#bu$<)ST)Q&Vxw
z)ee}oC>Fj+`9^j{-Ij%>gQe139}MrsK;#*wSO@Yk9Q9uTwE`oGl}N?`onfgy+nXh*
z_>X&FPoN|vmZf$9lJt_UpsF@cdFlC18Qu8Io~)fsE(EjWHpA2l5kG}pp)OFg#Z#nN
zUOXaaikz*udwz1AHuShx?xhw7=N*(%^v(e7663THyv9PV-1RHKJ4DnbH-IMul5BOD
z%e@M9rED@v=o{(%h$;r2JL+~<RH`S%)?gj_;fx|Z!Bsjboo~{RoR~5pj=gsfTWI;s
z!M5fW#r{;5vGnlw44YDgMNueF1pWU?y%nK4HzxUBS5Pw0#jexs9eJ=eJ<uy?@}CmM
zxpuq5BAYR@D(!3^6k^bqM1g(eRrbZxnnmfI!`$~de=<fS?*P6+8lU@q(-oZFb}5St
zfvc-5mXcw`p(nJcq_0>W%hh>mp|$mpL9pV}mHff;_fK6Q%znje0i2M#TePXKwnBnD
z_$L~43`o%SdpXhELiU6hb0UwZ^r+g$V&!?#ELOCB(w$&Mv4)~{k$UJo$KRD>UJG!l
z1(GFxcWP?l6iKRJbUwjbhMA2d2(KH?zVN$b4=e&qii{?-yNhjczhH82nf>fxBshHH
zUk;WsSSJ6CW>s$q=wQey(|-d0ikIC6&{A6_fVwtN*DT%Sp!&XRedG)SOrbgRShP0@
z_MKMy1C;GC&_s45t^t933^D}x{aJ~({8xu2-Zn$;ra9U!dzTLNb#(f>Oe$pqe+)@v
z0o1~>t3K(Oow*zk>e(wR`CQFTTAvW=O%1F}_Fq$1vH?)J&0|r`JUBhJvt4+F#@EoU
zS}&VC10niu!JSq_H-DiJzozd7GK=y8W@%jh8bC<QgP*4Szc~$lQ?6juYu0p){aTaC
zu1DeUctJ_x(@c+`WY83&Fjgw$8vv;5<<oI+B}|%eFi+J8Qa8&!Dw>eCPO-HKVX-fv
zHd}+;ps@7u?XL_TXW{$5csrFB4=%7g0RB(4nYC%m#V`*8f?<P&+4VYF_!0h(AGhxE
zM8fXIso^v5AK*BDLD#e<;|FZN*`hfD_){56V{=FcEnB+utsnsc_o81JYq+iwzc@mh
zBEXvpXXOU?nur2R#^e2Dvb(MBO}^0Xp}_IYU=0daiFg?}saDs_Zy}10TSsZz;-O^r
z;6Fu^J#yd#hc@08YqnfGfqYq>pJB+yzU0dnll-6`0FbOi>>wS8MMDw`@y1sHk4`Ay
z9H5pVgpz#$);LUZ9(9h=bLke;DYkMkNdtOc`<Xj*1e^~c09Ho>x#kK+1Sw<VhG?|e
z&sGRhZFX)EetxYJN)pR8R&|4#rP@>Y&Xl=-**mzgQ2~BFM8>e5;nXs>qDm3I6XYy9
zo-`GfzLM3rxCXB<gt-?~*}yInDZ$+t>=g+VFqji`lhBeSn3e+Sa_(~t;9_{fe(M>%
zWUgBjb47}`o0R+G_q}=<59<aD4x!{OalbSky*LLcI6%=2V0NKj`Ii<IEg=Rd@6R2J
z%_PQ|zFX4EJO)g4&KRu@W{tFkE@|5h%<eCTr)eK;7;3qFu_%%YQqAA<n}N)D9%9Xt
z@9%smEUI;a$_{;*ww<9&0M?<JxJ6z*1Xc;i?Rs})BIY!fCJ_BB;zj?`wr0Soq8C?8
z?(Xfms@}Z0n*MNkau503^*)o7*MaJ9s&5XoriF1`A1SN>F$c^b=8FOVWdU5xBK3;-
zpXuuH`Gw;oOdiyCX?=?TU+fPv8HFF5ouWeHZj?<t(hm7C@F=ny9j84LaHJaONpH{#
zQnVMvG43)((N%+m7g7`QA_@FWw3{#xUEc!v(-AYw_*ezbF2b~s5|y1Nww$A<D67{u
zpXV|{U(Xiy@CdWAfc>%sb4wb>H(OZcVj}Nv-sSrX>t09EaDp}A&P$y6l`Y(nbE-QA
zvWq5qj^2OkGUXKpY0!{aJ4+DebuEoD!%-Fjo4JQ%tICva6iq2636O;rmgzG-xHLla
zqo61Kylu%9c%T&~cRTWktw#`9lwCK9+w=ev=5h>c(<2~5loAZZ<<8gCX=O_pks>P&
zG7r3QnEQ*llZ(h^k78j$;);pO>xy-mQ$XU9W&))6Iu~XmkEC!{@GlswRjANGgMp;#
z8#L3VEj#J0zDe(JF7LSVP3>%Sjjp|Lo`Lqe?DV=g+-Qc7avvgnB8C<Z3AE)yf+QC0
zEskKEIv-*&Gx@GRa;i!N1lux1$_eCXWQf6ZBlj8lUDOR)$P)19PC(nvpu~RTuwD0M
zFqyp0f|1tyH`kkvPCIz4FVOT-@hp{+Y(G4oi_!F)QW*L8Ew+v;o@5->7<y<}n-k8+
zgq#&_fqH^4DRX-=3nFA^dI7n7X4n4I;;UcfT15|fO@@lZ<l6&OIE}kHca=f+=f<iR
zm92iGS=9ngZc5XgmfR&vs+>TBg<;Mc55{71FMEO)-ca=v9nspHJ}2|Q?n`yaR@hV<
zxj#Q)(TphL=tuJ%6+wP7az}0kx`BeDEo*zMARWt&+-(8wN%Y~T><Uz=8nN%Va27wp
zoZo~NJyKIKp`Z4syWqpex-am2=zI~Qdx+YbVh&La?rbkJ?uE6mt_a>Cr^FPun%;x?
z6}hpM-=P+3?79@8jo-+-d%H(Lcw0rZpD@fX<>3;eU|@N%$WvBGF`yfjQJsP`ibqPr
z{XDs->lcd1|AUCmk;9W7Rv7~K;^($4%_jM3GV`*0e0UP;s0rU*evWztzz5g>D?rr0
zA;|Q+%9HNz3S4RyZ(x)-yJ-^%X5U-W2r^{rk{5YK>Y9-9sp1#zvLy$kYsHHNt&l#L
zWT>A2S7fKtNtXnJAX;WDf88Edqct*mSotuKxvY(N7(a*H70}$mS+D5p4$p!cEr}$M
z)rpuqL1)0?Lp<NRHSkf`C9sd`uix$a{?WZe*uT1-;{CVkUyX5{HSsV$yI2EQ<wDQ;
zR^#7S%&C+^xvrcaiu}z4T_wqCJUg`lrA-~cPL(Xc`R&>EqGS*{T&HvKSCC!e(V@$>
z`R{tZt|HFJO0}seDI0gT%BGLb;txg<36JLpLqMT6PBb@PY|sf+eDbAS@H2~wR$8m?
zKHx+8N<~7A2eM~|#}dyv;si(KPOGfo*B+29UQIEL%Q|vt>D8@cPrT}jU*3JolMvv?
zxj=$7|J#cvUfRT#KFk!B1hZ|yDUG?7!UKmu@8WUhb0>H~MHWJBR-q$j99O`{O##IB
zQ_Qc3I&LrKAwBQ<8<wvZ99(m=>)vFuwvI0w*+&p<ceco<7LnV%$(Zp8QL`l$65{-K
zQJFi^di1C=#J7SeUkh#izp#Y#WS@ZRnHM>Eb~02cnD=v&eaiA^L4k~sw<SCqU%L#Y
zY$heoR8LT`qZ^4WzXno#_qtBkTIB+fiSydiYRs&g>EO0*+q)X~lM=xYx<mdAKim>+
zJUgoMHDd3{#oFPFMB`;e&^mLD2h`+OsQ?^Ia1N@mbor=SbToMYcd6L*^0nSs(F$cm
z8F9J@Viid9vnVHu^@Jr|kwD3#N!}EXcxya)$KEw+h3>823y^-V2>Hy_`4w8A!tv<u
zlW)>RK!H>(LAAkcTeBSOE~RH#3u!zD&LxPD$*YSfYi711lU0Yz0#Z|i+cy1>nFfk5
zT`UMOIP_52NHCS^qG7R9y<L_~DzZ>eCL*P=b?XoaP}FR8wiIi}FN6411O^W_73rpz
zSc<63)0iHK%wm81k*!PL+5arvJ<1z>n*VN66Thse4bQg`$85u7)I`JIjD@L@?z5+k
zNX~Fl^hhRAO?$ik-x#1&b@8Q+ZsU%731q3n2>frKOpp4x{kfuHd2ozgEk0Ncc3L~x
z)OMLo^yheXKk56^NxDd(P_{2<^*i8x@4;)@IE;aWG|8*C3uzRp^z>jBk`|2%REW&&
zN4LlYnQnd~jL)^tj{sC<^Unx1gZ6oyU;NqxB;#}a0k>C$reR#a%R;4}2_}6HMCZ42
z7WjyE5$!QLCS5d&_<Xpz7cgLG2Q~2)dg8r4%UgiCVeJu;<rBfW(p8e>XK(9f&Vf<?
zMjw(&{}j*5TtFQU<+82)$mgylvzUbzahovH39GaXgQNskQ16h9n49d&py-;}aX>^F
zi9KAz>*?>-;X^;Yo~aQiNwHkLRh^edaAx$a&2?mhj<KAveGmO*F5I5}AH-J&7I_&K
zyl0A|O?L)}t$98JJ2|HC`en5)G)Y_ry+Ll{Yz6Euy5C%CL;UDD<mcg)+A)|hf*rcH
z3zsqEvxg&VB_WZ^tVKy)&W_;Wc?e!z;bgm4EVIIZ9Y&ye7?87qBRRQpN7DFt(<-i@
zC*dR!LS$PTvACg2@!x(^PSXePj(;D&gBNGWVU(!=5!8>_8x=Q~x)7VU@mm4Fe8PX)
z2+aJ*IVqx_y8hK7-|G?qM`nk)-a^Qsm8WoNL<m~x2naRUoFt#xqk_y~j2>R-sK#(n
z2Z>VY#HhGj=3XqzVnv;J8&TM3s}Z>%t%j>y*g-T9VW`bXs<t}d5Sv0cZQl}%dHZ+<
z(+QinXj5nEdu;?;5~$<sH8Io&k2=XGAB@nWkKd~$t?2y_mh9)bhuwM=V}(0ddCW7V
zfm^Z-7>~Pgr7`>nMR=y)O8+Khsk6D@$<G{8n&W#A_%f4IT=ANBC3?t*!W;&c>u_Kn
zSbGOSBT=zKhiZN}ODOx>2Lw^Dkw5%Im)k8{Imf>s+HuSxB!v9{miIRYBo^47x$t7{
zU1|@MFd|Mcr`BG9+4DKbb@pLKx95v>t;Z68^v&8=S)Kgxs9uBKr2w%3Qf6~d=z<~l
zz55b-cH4I%&5^^|wLLJCurkS;)^DV<aj%)^h@h>X2%?cTbBWv<V_<7DAjPm8FHY47
z+Q1?ELW}tsrY=|*O%M5w8r{d{+7$5i3XC!JebHSrj*eGkx#m4i<j#>ZmzbR=<csI5
zpM^_-rLLtGyWU?0ouB~BG3wA1dHCg}JKn*#zSKE9=%(+G{xFW&^b4FK=g~Cw+vEco
z6>FZoMc+NCaImN|$Y}zig^Ye9H`L`eTkC`Yh*(dlbBF1veo5&D!qvpL@OfcttHPU9
zAp0E^JiG0pN?xd%fn}C&*}fbZf^9+8>;Yz}#5at}k<}*8>?zwn<ir<k<-3o`BJt(?
zR5>2?Dr5Blw2+m>RWz|21R&SRrY2A>A(GT4P5RC6Le61|wAQCO6D|cH?n=eS$>s3}
zY7}2!#|5VhqCR1c+raIbu^D|hQU<1S@RT`m&+Hm#^Tog=Uy~{$+}e>4LdQ%+XU8>I
zs#@)6sr1T?FnLSpVsPz207gn7UdLeWu89T;0&>xEw`djSXZLXbiO1`w2UhYr-^;8U
zO?0H<EYowjA&)Y<<s?FYonO0Fj{uueK9?>tgyD|BT9NMSac>=fZmOPwRkI)RyLduS
zRT!&tsnow+X?;!&NRaYFfBT!<pV<NRE8fB%HH-}UK&XOtHvs|Mb|r>GkTG!fOF`wn
zk>fj%PJH@BZZq(j6h5D(K*kqVd8}hvZsmeZ(*xAM*RH(r=**iA=QwZ!4?RdQPa190
zoldryGM)Q*c7sW&1<VDPBOGuIt(J(+);rg(ktItJxl(D&;U$?;<VSGCmWjo&blFV6
z-)Dq@lZzq(0{taUVeW`ZDk5a-WS<fn-GDFaC6uBa<>UAAB@h!<oc7jsI5>rau9qYY
z3~%*e7}YKj#yc-^&(3`@f5tN`-xty2@oqqyv_N9otU>9qxWvybB&I|E4iO@oZ<qX?
z0tc-ll5GbtqOZRlJRrlO)H7jTH~me31RsxCG_%y>J0YuMy!%r~|5m70YOHW>s4uxP
zzDi=cV!&X;DrjQqHP^%X_wkLeeh99}&|XxPSwJ3JW@HewjDVc%`!rNp_eTU2DCqvh
z?!z28vGPBROuIaQokJqY=ohd7*P2QzNYpcX!+@-1bxfpuUj`u%%!m<RyI*JtKY+ko
ztQ^V@T}41{8ol^YkkF-&B;D&keZf`p89fQJQM^k7GRDf|<zAh!HZ?fSvuYHN5YU+{
zrWrF3<v$!OcD&KICmm@(0#5xyG}?llsl@D4kxss~+*Eh(Y3i4nz>Ir3_(GH^Z)ts~
z{*w^caP$R@i&Z^-TlRlA?NRQ+6roDcCQwmg@$+z!QM7`SV$(z1*C;0*LFDUUogTzs
zUo=GsrolEGk;?7#fQ)o7c9_LXDK1GbJY;o2qk>F5!p<b*`voYQ(Qdu6m_%A+7aSp5
zv?-2ksDfWsg<})v^!GC7O(|*;s*m{8&#G|LqlZPtA1X6#_!OYWH1XXcUbk-fZt;?<
zsC%ci2TGP$KL#~o&46_fWqw^UjbRmB!Zd(xB$ON~m*s&b9T>OgKoPjF@gA1&6{ocD
zn^W-WRp*hp6*KWaN*BK9xU9fkILPfI_FFGKNYMJrQe=ITg+hRMQvOxcWt#e&WQ&%9
zy;%XScaCgSg7aCnRHuo?!%QnRGkVA(I8b<_*uZ+k|8Lh_b|cbhhHnW`;Q`TqzbiGo
z=X<@G-4|*tS?>_q26Y7(Qbq!q)gbQx3H5W|&Mk}0e_H%jdKbRm$q)_<YY6nq03Q3g
zeD>!}cJ2s7V<O9Y32-g964^KZqa@v_PCH%xuxt`_$GPy)LqAU^xR5@DfKNKx>B98R
z)k|m`<r$M>`>xNR`1<`BoL4%WXl$N*^>a2i(d>vut@WaSaZpAweS_{TfIu%Xk@?sL
zO3Ct{xy5-IuxSb5r0UJyrf2afnD(7Rse~D?JI_q1<l`KsTxEb|a^=$&*@f!aayn@8
zXh2NzJS0)LY~6U&o6ynX<vurIAx^5W-bBRzaT*xPuPdXe*xiLIj?98Z?M-ct$|APG
zmz6<P^|>4NMR$@HH0awECHnjWN^J3*Y_$d*As93_z#BFqgaX2;j8xI>ge9IP0yHZM
zdtVIJ=j()YF|GJEs=t7yszp<zBnH>K2Q3maH^v)#KMyko;S{u8bI|2k`y=4#JMHoY
z3q8OP)kr^pZQ@ySV&b?@$8$&05eViHzMRuvrI=>*x3vGO;d&P`iSwn-i&tm{mjsUG
zZx3x%VwD?~Kig4zTcSq>tsT08B>PRdAjNtuE#h~do(#&l4*Id1S)84zXG=sh)F|As
zY>w2>ECHWPw$E*6>+2%lUl*8thCWDzpu!ZNUsAM+EfeKvcXkdd&A<^OHLiI09zGyH
z`#9}B&(ynN<4KI_9IzCPk?|is%d`nd-vuh726X})&apebTJ#i_2EutOitNro<$|kq
zC;iX8fnY>%Z3jOxT#kuCz-23Kqyr?GVuE<#t}aJXZcpi~Ner$S*5s;`%bli>eAiNF
z`3`G5j1JfILR<YqLv_^d<JI=gWhYkZb(E@=R2_0rb%H7jkLquVI-cKRdAxgA3-wu_
z{b!1#*v^sbfC7Z&8y4bnB6za3&S8^U8+YmC#aO=JU+jdxXkKE}JId<quEU;&zU2M)
zV2EktpxppmT%DpcUo9Ni{Yr|5_C<vXIRN11W#Qh3Slg|?A%5|I^PoNZHS>zXwh)W|
z|0ICON8UHyZW(KAEM|r7bC<yVr7oQL?ST4F=usWQ&ZHk#4DOBgJb9KVJD;U3O(^mu
z4_}PavOh8T?H=^8I}XFk(w$gA=x-RvBr!6Ofdk^wBvT{lFExs@JLPQ*LVYD24i<n|
zn+Hj6;K;hd80yvFfX<O;hlz!@wrur?VJmxD)48nXLDE%SFlVZzbV+km2*%8u**c0x
z6aCmS#PKTjh#F@m{+oXy+q0C<6++<x()<Us5RgbjhQ-*3@sQaVB{;0O5)46dFmb#F
zsKei4=AeMbd(KFGVt>8C;`c?ubVby`;ljXjQ3rM%yNfxrsyrA^!M*XhV`?QNr&RX*
zG=^Uu0yIR?aO2an8A5xp7Q4B)=^(eKpG8yDD>DawHEu0eUZ76tRs$wcnB2kxp$L6D
zqTCzL4TZV)$ET30g7IUCLF_bT<yLuiN>kc8g@;|?A3hG|RhA1hp64<w;XZ55k@w$A
z6#uo%Ze&_DKk88gqL&37Y8EU<I#ywzMiZ;fNDrqd6OUmE6n0|NR@A!Tt59p60a9zs
zA=b;sO&xrI8Bu~+l*5-rWv)?807qGk2**y^iN*Q~dP$h`(rpHRV+ox|kvl+dh14PT
zo;A{V!gZ&^n#_Rg4X2&;L;_7_qNlIjKL=8WdlVLRZBbPvQ@f=nuksJP>*#x<ehM$R
zf_2;hECruatkKp|iX_`AB(Q*<yH3TpUKlb2WoOpSnG*8)_DdQbj<nFUlNecS7?giH
z_L8RcA3W1K=9jX@b6@jiAQQT<zHRm2ipHnqxLLa;0%yTKR&a$7tr{~whJDE@6ukc%
zKzPKnSHz0I!5`GaOcOrPwLz*a<v3-dPn%p?lL|N2SfNWk)3SsyIcVC_Rl?K|=Xdw&
z)UAfwgdNmp%22}p&DYT{`HVzX?r@-Bc}N#1C@)eU-Yn?dSh612vVgZ)Q-o`Prq|6F
zuXA4S8^1aCBJyxEj`Rq-^4Hr*y51->1TM4FgPFA*TI{NW#prj(UZu-Ckd|CUNsv}3
z6IldTvreuUWm3Z#W7I~W-UT%~6D9)R&CQ@(G-PtQb<)tDm`RUP`Nrnj(#Pu4Oa~AM
zc@7F#AWT6C4i-2_7gqIkkgdj)!#=eQ6<sxy>1(W0@ep~CaaIsKfp<%~g@*7F=V?7P
z;Yw--Zi?`33NV!R{QscyW*(`l<X)s=DMFyc&C+t`-c@Z&1>QBG5POxb2oQx%<v4w$
z>W$5oiGK_OKru7aX;0I;l83qL5LH%44uH*C-NjWCc`_H0g2O7Nr_!?TR7TP~Xzt0H
zD}fyEpm3E%bx(K(d&->of>`3Y*j1WoI+rqrC0fs#SwqC=pNzc|FN>*p$CT7&X6kId
zUIsrDbxPy*9y+G2dS{a4BWO%~Fi0aXU~;Zsm=yJ`ZcdauY1#NKaOXEx(3qJCPHzZy
zmor2q=enlruRC(_zk)@rKa;L}aUUv);4k3xrmS{7(>nP=!lZ?=KFcpk5lAUz+5x=)
z8tfPq;hzwn;GvQSN}$RmozAw6|H6Ho1&EEOKNf^`_mqTwYvySO&K2GNUlg9!Z49eu
zMzmb|y7835h+R<@<BT>VS0>g;Vp0kcBHIaAm`9}C6kPz~pPB!50F(ZnX=Y5J>9XhK
zxPpvXavTzbG%7H4w_-j2R`+}&)^wDG^Q(b#uYpGPXh8PoT96c6b#N<2#GA9N_&HFs
zTXkeU>NA^e;EvLD27tV#ktOKeyIz>%(fBXOHeGV>_;Oh)i<z{n&~`b7z&ox*6NDyL
zbv|SD_V5OeL2yTZy^j(7f_Vj`njQ_uk;Rf^BqTG|y3^0udoArH6WjTV=nU=aV;i3$
z-Y?mSM3$sU1diB7&yncMBWIQXpwV`^*G}^M4XUw#MkYV;q{-}>K9*@RGR&C%5BI^D
ze134hPq4%7wp0Te_rh9dAX8W1s*EN>if7<s$H3{@`X4sIgn^o8-Nb4f_KHgvXt&A1
zGttc(xfXD>)FXEB#J<OrKyCIBfV1d^#GtBgTkUvSk_dPZBi?4q>Js1%8e~&5QLSrn
zfDY^MEC&Co`d=dxM*|4T*Bb&-1x?8Fxal+_5F^W+iMeZxhxXg$ue;35DRKqHh71Hn
zzz$<w(5^OYIxKwdOxEFLmv`WniBxo@xiOMJy3>bn@sj9SK@>TYHQ6ldLv22`S>C=H
z=?7@)zlC9~C}5gMnqs^$*}4IqVBkS}Zo^Juz35X`QPzYN>3XUQCMr6fMOFE2-7clQ
zlFq$RiUY8EZrRbav99xq?KiH~qgvvpIfrLQQqMWz`ea5N0*dG2_@JT*bZOJ`B6GN=
zg`w|8HMEIqb?_BIyT(Qrk*&QtMusnNVn&Lx8rzi#fo<w`oVpQ+F{T%eG?Gl<dEML6
zp$%Sf<)+l%DLZlS%}dnAp<|t`c)gh;y0l1Q=cyLN5ED@9mZ2!6%Wb44ai1A_kXvro
z(XT(er2s2PEL7I<T7<0qgz`xzyd|6#!d$@QD+H}L(&Wm+)P!S5-8<emm0if$xulh0
zJ^6k<a}1!tC_Vntu%Q&+vRe803Q<RruC(zPHq5$(DXoz=uzbrjw0Z)Xtz4$zR**iz
zqieyUC3-%R0|7pjt7S^6Nfs%nR(-BebzCvD{cMwiAKE#18}k|INuU<9u`H{<I;U~A
zf_e;1kQcE_ej?11rXC_pO}?Yh6!)2CnS#RnI>k%a<bh2rs{AOPaD6+{A|cc2k&>~9
zprmq&KP5>`W3Gayz*1@(AP{EUWM6mAerov&`KW@E2Z<|pjplXs0@vR1FKH;-*v;xT
z7nyVhkorR%u&=pY#NLzhBH^Q_4I@WdQWE(O=~mF^<_#9jDUp0{dajd|Vw~4drCLzf
zkWi|cSE&8`<*lRgsGvXr-H2Cu$#*a3^?1Ugls8wVKO87~?4k?zys^HR79z-?ft!MD
z)#D#sj0B|jOKZtT27tqe0dpm0EpbMWA4tixJBRjz@677MBnOAN)?#F`QM$MUMU0FR
z#d>ZS%s#{)S}2hKG<j&0ho{=FuR(H-`*)cinK-|1w<~KSCkk$z3*!R6YsGj8>f?UL
z6O_SS!*!b)-49-74(IHa<S&v_p_nl*-@|oWtEGrR7}vEwNkRF}*XUF>o6I0F*4?~{
znaFeSj%Y9q)x4H1GQ@nkg3LaMux;$DN@~+CF4cwP#!X4CXEjr9%RlyC-TZ^Pvr$9$
z#R#*=p2a))@+`Dd)MGfyUs(9g_g@TSLFs>vx^-#(!BlizzyM65pbc2_A~sbDk^}xF
zGSuEi5<9K~w~$b{&qeO{CFve_1_A$^B_c0L_BxdvDdvK)YYosSydoD8QC9`n%KM^|
z5gMlHqcza83sjG4TI#xky>C8Df5r$p#dMQRps3Gq7M#i8J_b|V%IzxQGa-iENWZrf
z-yr_(d#roV0Oe_31l3xjeLJ~VCwb^_WEfG^(XU|fwmfJ&p$O~`{80wF#Y&E}q5`NN
zXh8Ts8o?h%$n`JL1f1xgZbMeagwf}$FGR4{G8Nj$@nGk|G7zKPqaD$D*#QYZC$H<m
zk<I?|(>I7=oOEws-`kXHk-|E8R0{l-2|g!(F%4XtFOc%F%K`5Ji4+*c32Dkl(3=!g
z{R+Xv!fwZaUa)4mi%{D6T{>5B@GgoSi0x<ln^`8L4uLHb{WT3<qXEbPp=^!M(najm
z^)V)h(>|@}BZJA{qmKWw;txJoZ^MHGzw<EC4B#SXp^HT}G>{#m#0;2weNM*4P`Ql?
zI&<wU6Fe_XzvMNM6({zC76GWXBV2Vci3;dgsmJxw^2ZH%dXcl28)D&ZIAB3R+VXVu
zo00YAtsu9xPd&K&Rrc+e+G0o-R5U#^7>oVZ0wjAQEbD)|4C+0XzctO`^*Mx`=K#in
z99ctmDL3n%9aHqB2!P!If((_D(~6ZwS3!;s7F%y6;G_y6_5YVZFq)`rPr*pV_K{+q
zaQC_;(<TAViEQg(#&g%XLw-n&QYI)H>%hO(d{<Ysr3bTQjcsUIq6H)hpD?KQrYC=~
z-}mezD~|SZML1dhKKl^Z$JU@su?mt)sCy&?&cB)9n5hOrMkQr!y)aDdtf8N!iwBO+
zB-T4@=9vNSt{=ae$0`vI`hZNh<tTiY0p-PJ<v^r8oCU%!a(JKnc}8s(jNgSLlahye
z7d{<${A{f@-UYA&^6G;Ed1H!Y`W?eY186HpMd=anNz+y34tI_-6e(-&IdjGE7Igu4
zx-+*;@}m<NsGle4P}L3!X7WZjloy@U{CCU!l<|dDElR@-jl)|5;#-~RLbC1Lm4c0C
zGA+aHSxMM_777w1zFbCpC}w4Zu)s`ApI4i?Q_2zBOy2~$U?I=9?HO|=_HrGD_c6`O
zINIgXYa143(q=Yt{=V<_m1&0_2nVi(^$jVTJJC$LQXMXB22G-I;NLkt6Yj5qoplU;
zDTOPtvfQnCWfL%(8tIX>UBgqU3K~kpc`FWK2q8&O@+y<PX-D+U4!kO<%xU|Nilxt)
z;F9O(Le_x*QBX4Fpb_qsiv^_UzdVP%k%aLT-FnEX`0v#3Gzob?t_%LP#Ic`Uf-uPk
zQ?_0J5kywehPSBuO&Q|{jTV!*fmlxm7@qQS0)|h@Xnz}_z8ID~_fq65EoW~?G{qR@
zg@MRS-s+vh*FP4vVB%MT7L89Px16k>OeX`kg&%GyFg~%K^NU6nAS|Ub4pE?a36@>s
z#poetYU*J!=+^;<BrW&_Qv<ie#8kcj*=Dc+5*%a1@Nce`IM=+l1+51?CW)hR48gJc
z@Qq5KoD>F`La`B4>nw}tC_E{^n61i{+uSVZSsJ8SbkTq|L${me1w!3HaAIRf#mm&2
zcG$nru}%8A!%Lb>6^Efgcq3h7TfQ@Q+b0kprN|vEVw*yfEipcQn8@tCo=P6vrXd>?
z3>-*uhtNiVaidL=>Dx^a$)P~l>-srogMl;6NZCJf9`85rr@fuarUT5Za+?vFB`tVf
zb!V}%6f~>TJ>gztd%@Dm2G7d7J8Gd3`B53SI(|Ks=tadWs7}ijE$w+n^gr|eN|9OI
ze)#)6u}Z~?T0w1WoncGQ?=nx;jAad0SiozT;XE}sJ&C`bZc?g6FdJJ!;NPv-ieq3X
z?c}!9a79F)!mlk90TNVsN##Z@V7O??6Wo6R3TA40nn=X(6WnEr{hL%Ua%*{p;rp3R
z`c4jc5-q#kj!BhU^Q2XhG?J}Nak0$JrwM(*sVvzD#QFYc3#HRw+X_l4DX@nD0NmyG
zJg}3307|b$!@f~n_f}akDS4K4=7MeJ&9&<Ql_<$HrZ20+>~*`${Xu_OU5JN_^^Bg;
zRk>v3P8*!V+E4yw&zX6H9Gwk|gf2KW?z!XNFv`O!%qznT9+S7A9G><~%yC+OnE^)G
z^bzJ!<CZiJ_yE&r4=4$YX<)B%&S#!fvP??1k8-RdWFFQ*2Ev_~Y+w6Wz2)NdvVJ}5
zHhICOQa5wEX4w%Y1wf5MkAY>7e!#5<(i~~FC=AQWGHXx(;F;z*Y_>)za>Av=9Z2s6
z3X5j&uw`iSh8Eob_J<KUa|(Cr+!DU4#5rb9-t_=G>^cB7fBCyyl43(s4D!JhTu=qq
zvlg1dYn;NS=^&8^JCPbuQ2DTTiR8S}WK`CrPnqFn7E;jC&KXKps?fASQ)Mp*Uk-1@
z<LgjT-afdG*mS;PTL8V!?BCOF4N%~Y<;&f8QDUWycss~%1^YI)$g`Cm2hiDjygl)|
zdL?e31(i|#6lgafgL<+0fHSjKp^>Ho5@>;*3{_Wml8r`$Ht)+Fy2L37zw17F%SOpS
z4n2goJ8Xm`XmPJ3{zw9IG_0ife#}ecnpnIqa|?xMYa$?ROaN~^;aR4<-%Ovu>*0`C
z%UjS?Z*Fb^0NO5Ao!#oQZ0=p}jzd>#=#->hVh*j+<UU)lI|i4@U71~yDp4rs=9WLG
zeFG1P)}qwW+@)mwt~DHXaUtYnK86WV{}f)*InJhnz^_#o>eQ{;ltos20=cm@=R0)r
zr%X_ekCz0iS_!%4{jG?|$<ULr!v3)3fMqzyT>0Ev(4h}rFac)TE_l*3ZQf;O)<(^k
zdgOP@x5$?!K{w0%O`GyhWVSxR_^ljUrh3U4RneJI=${0%>VM?|`i=Fxfp=ed*z>Xh
zl9EO?{mzxy)IVV_rGY<NeLg$Q*W`HWTp1oqK`lP+r6R?80F&s<Srizi+2ou_K`4W(
zVBu;}&ArI}NW*iRxLSx{T~4ZvM?iV$QG3f>qL671%Fdrp@6NvoeHtogdP;-jy*g+#
z$;=$elz;#K#?+Z(?LF{xT^`xPK1UH8X<uM#nI03MiJmVNcyY*2u6zLXO@`Ef9SNnl
z;hz~4S>GsTS8EDV06~oNI$=P=mmE&pAVQAMecx{NU=joSDTzuTJz9Ut-+$KQt9m7P
z`m(x68DVn6gv?X*2J|#QQA@4e0L$@HG|X%1>xPjFPmpDDyI}G3FqF!MAyQKyZ7*ZU
zY}61QRT`($<a?_R@2=G7gDQusxkzGqea4O=MG$0@84q$>deS&nerPkLHs<E7S`CA`
z@<B%h!dkk(dsa^3)yV`Jno3Bd+B6?}=oE}FM{;y6I-?}vK*`}*I#z$dHEdVTjU)Dh
z*nfkFF($1Nes_tL+aTtORLnumB*-~%ehe6Q%<f(eGaCDh_-v!dOU-0>1{BoNjKd*A
zkHkBcK-+Jsl2WWMe=Oe)42{6}c1#W9<JO?Uga#5<`N`m(y<XS^_WutDw2sXH3+w4^
z)9?nU`dJ{X`u7o<nM8w=5{ln4H)+bZPF_lL>VGja$5pN?5dYtF4FE_w!k$Tvm#1`c
zasQchwZ7}kGYTl%HUxKE0UR~1R}(CdT<QjIY;RzNBOnc=3xJ6JlMD$@o+XQUx1s~7
zNx1je=T;I(?^GqtECRviAfWr<4R#=>ln5Eh2eesDT2)x{Bnv)uCF5jOY3nUIHW+xc
zmL3tAJ%9e6)_%(A3siqo!#`)oYnQ(;56C~B+`CP=>n5Zvl@R4^qN5FmSHm}h#(_X5
zO55s3Y*}$P9_$-a0Li8@a-89il*O%MR^t7x@{V3b6lClf#-siXcJ~aQpxvf9`N;v4
z##tFLa+RECzz2XSbVAlIobVOqn(**w0>hp@joBV54i&e}_47zL*cXCiAQ9?v+7(Iv
zd%)mn+zX0^u*g>v{jWC+uGY(4BYmPf&e5nEduVx{$^KHIc^XYiuzglgGp{!WDCkmp
zDSGr|xhdj<t=DmRm*)w^Qq!_#o}A<=nr38-)p!Z<*zzPz)+F$>m^pL^#%cSVg^5cd
zI#LYJd7ewJlCCevcP<)RLL>!wa~?^%r=z)PF-Citt$rnaZW9{0femOTM5P0eD{9qH
zeoJs^=@E$i@Lm*V_PpH%)e8<7G6TY^bzA%E6J2_T2tk;|l>2;)+F7>^?{=<PNM-k=
zsq(I<Ouv8dqw^G-*EYS19)Xu)8YPbgsfPxrMa~*067f^SeElWy{ZaaHe{PQSqVSX?
znu5>ohq{bXBuCo9;#yjfJAS_&GyF!rlH*04mGL@7=MelrU6dGJnpoMzpQ*(U+PQDI
zyOm&kw!vov_UhO^j7$(-Z#9(gr^N|V`AF#bu>7R=8v%4Bw&p3SD1E&TrqK7~?m;mo
zr!9IdIwX&66^wxP(q-)}t4E2c(P@;7bmkS#ef%AXw<@{-|2AmNFtKVO=LvOz@o9S5
z4@j@2z90-LCNJ24f*$tYRwIi}^p&aBuXa=epF}S|@Fx#FOXxMIe2!Z+)(XLeY*k;M
zuezk_iFQG^(P4nQE63e#G*|XZ*R7VLSEM$pz#neb7amJbMEhjfOK!n2ze~{!N=wkW
zwK&M}4W_k7!dzJG#G=QzQK3^xtPn<sFFPm=ykw!k+Ej*vX^e&&6rRyLRo|w0tNdS|
zKBm`WD<X<8!9C6GxGxS91~k9P`gcpj0pb!Xy(PGr+bNdJhkmTm<UL@_v#IVSzz`|!
zcbcpZgs7UetLM}{biMF7l-?ovXaPjh5G{RyZ!F2!<Dndfbkq;nF&PTX)KdcDC?s$A
zL0yCJ-W*1_yd^iMp4X3BI*#7_LI5b9-w*=rG18{L4#8p?$4V+`lCNYs6xu-hC(!Pt
z7@o00hTNK4o05Dj3uH~CJeS!+CS^Q0J-p=<BlX`yJ<SQZK@>~w0B+@IBhZ-#hHtwh
zgfTXDt~5Hj{gN$-hZ|ocA&TxSn9+p;=+8iMe&@(EIjLzo;W%*Gf1L7kiq2=i(EY)_
zce47OoRoO;%V57X*3t<^Vnv&BLVbi(o=CJ%6d7v0jzEW0A{tfx>8h9-*q7DT_hMjK
z;UqK+49?OZ^WD~9ra3q4*9`dx=D>2w$C9}M3a_klIBvXg6FlQPBqYo?vzt-Q#yQLP
z?fV#ULiMaUVUWerJ4!}Q70pj0P#b|lzPDq$W8J7A7x4H{5igYpa45oz{{o3_#k1jk
zXn?Sy%??~$SlALPH-_EX5@Ue3wME+YD`Vzpr$^_Xgzci%0b8QqYFRN75}x!bE^Eag
zC>E@3JK@yOpQNxuRXt5jYJ|3?Ct2ys7Uo9MphGjHmlaf$SLZPGYv`I9Sa_X_CrBnG
z6-`n~P=`~Amr@GaYQ)dko)w)i;Rjr3=$QH5E!833*KbIY(m`{|9_9~t6k)k@{J*dG
zXxzdr$@L=@R&h*|dwC>d=>S$96nN0<XB8f*$I8G_{JFOhJu!Y2u4IHlf!Ec%=h$p@
zon#<Vp4lk#SZbogD>(sHyQ3U*!byP|K;?R{$36FZ9ywAgch{m8y&UB<!L*~s^V5hN
zN>5-rV6D98qk@N=^f4pE-paoc%SJydK3J(~w0hzfsHJoqiz6_IZHA02Jp+JKshw67
zCEE(ShN_%YuEaNy*&^SU;99)K`;?+4=2{lU%dKTB%Gtelkt_cP+?O3_h7EC~HjB;s
zGtCy@ePfPt<HEy;z9`bxmsHHXZV#bd#?T-Ju^-xB7fU5H;*cLa+R0f?JE-=uI7c0T
zVDHi{M;vQ0DrP3oU)_VOh0ZtjX@lF}S+^|1lO#Vx_X+P4DppNARlP5o#{-d(LHC;y
z(FN1jeCvOr|7zC;lnAP3IAd6(rCEkEeJO7dRz3U0Z;s9?2r;!hXKus}s)k$>8gism
zj5o1-plTRZ*1QsW->%*cdj(Gt3oDkV;e!JzI=Ird=jcihA4nx4!&4AhY_{na!mZvJ
z3N?pzM+zZ|xVtjFlB@<Daig2q?ED=n0S^F&L@uPX(H+duz@&$uYZ&!#S+0z1@~@sk
z#j@iX8=2)#ro`cMV5{Kine$!cS<EjrCrjYl0;8JIX|JnChD_3E&mkPAA|qW6|9AZQ
zJJI4~2+m?$h=>Dl>B~};;AON`;SAs@ci&aB%FT@M^T-o>`(Dy~<Rc0I?_b+1m_M>T
zF-uQG8OvZ$F6PH%uUvmT6K0`K&vcf7x_%UvkUa(#I8*W2IDO&`Z-}0oWF-b+Y9>0n
zDMp<XFIDI>?GzqiuGs-ztNV>>uO~K6ef`Al>k3YnGLB~CnK)m~WPK^h2#86(8gQj!
z%dPE;WWe+^&Kl1vodE=)=$yajjsv-Y|8GXpT7;G*9>>`mpY=Dj$wQUg5|XYy>scTt
zuSFRMg3c^&*N*q;bGosOHTU(4k<j+5;=J?c?QGP5<esoCVRKPgGcc8Jy%0}Blbae&
zt~C6OsUni}Vg8L$PCvn1dz?is^ppt`kSk@Vwb5!(#V(|#7ZU7p%{)6oon6Lb4m&pU
z;6qS|vbGQF0;$yf3&stLW)n_Q?>?$x;YOiX>o~T?q~F%+byq?j;>b-@Tf3cIQTk)I
zi2kmSj9+pC(R6`{%~`ewzLY1RJTnLS-JRkE>GApQbjYasxk?1)JB#exn)vHb!%5JC
zajNW#U=2w3GLbyLh-F*bfI&a_u7#_+v9s{^hd~&LREeyN9_QQCR_=MWzzHIEiV-dA
zrssq6;9u(Mf64ut1_E-vBOSEazQyUGA7ENN;7x8RC>Mo63o_nw5>L>)Ih_d0viJt_
zVrcFRCzl(ZtnE=yqKlNz7L7<UZ)1IR?Ek<-X|%k;n1hDZuA`2{C>7M5FB_Z9j!)B2
zHbdwRt*P+%dca&*9t`^7_~^FsRf+*xpxLyn6>~(f>J}e0t7Te<iNHi2LGkN?u{$m7
z>SD8xlqgl}`%7Sf8`CT)zCDA4?4|#KJOnMYi~LS`HI1%;|A|fpclH#=2)s9~fjOz}
zB-;eI#8ENL5q846-erH!r5y!vY8ZhQM1h#Isyxm<OfpcXWPa9Cdx^LfstTOOd(Xd<
z$aofAlQ1pp2u_6xezUoLw$BCCRxXK29+jdF$lG0Fu`JHE@<yt{A$d%3j~j&TH<NH9
zCkO9L@fH2INJ*XDaNNT+fQh7RYV514zT81{yeH{ncJ?=1K~pCXQQg@3xe*Dk$UOeT
z<5o6{@1HHpEquw<JcO^|d93DHy6Y{k$#5<6`<LRjelcpcIdre4tth7{G)=1I6`YH~
z^4{S)2<yHL<VOzm$R0P_nj)h&6aMF*kyT1X7nM_%HRLkv(pjIO23u>RDHEqJi1<V0
z`8OV#m=l{2vTcLsoS#-#SyBhn{UPFp8m}!U2j5MrPbTe{C$VXV4s&*4g`4*qXu^v)
z*8d&ftt>k};gg;Ms9_ZW10Qi~2jbV=mHYG|>S5)lR&pxsTk+pAd|lN@I7C8|TXk^*
zL59k0!+L>NAg_=wD4aGTj1C7mzfA6jZVU6iN&M%w$NrkOvfoT7P~nbH?Lz_8SOl6&
zKpq~Z9TZdI>@=0I@4)|#fR*>TSDBx}`Re7#7W{+nr!DLwN@~nPaAU{(JKZ6%_FTLA
zS8V3c#@=D8f(cAxBgEvStUFw4k-B?UpWUPW9MIz)V=hXGN1*b=sOO;{h8PyfI)gF0
zPb!5UP8RJ13CdA!!Numhy(TLu|NXhpdP)6sHo6N*Bbl1XY;A33#ylw^o#cNlW>G$J
z6-Hn+QNyz3n2P{WVSNlgnDsX>Hu5C`{^PL6XD|fu)uM|(&4h26=e;$8C&LzYQ72NY
zMB#Q!{|uEgY}%ThmE{?=r94~D$w0Ja2~hoc!Msn|dRA#Y@(I6`BS}-qNiF(f8TH4d
z$)~3_{XQ(lfaN0Fmqwu#;#U99{Il!+7loq#ti4@UKc7k{NH0!IK9B&3wb(X&NwjX=
zws?^O8ck{jHL~hhb+5yS#ohqXq`ACcgQUv(N<oNgJ71AajOL=t*fC_m1dMCY(wPdj
zVL$h#47Su~9c(7xL(|bqHYLJW5z|$50c!{GY0Hd%xnLbMa<uGsXvdS}8en`{X<O0g
zl>YPLI}l{xne-+TnB)NG_LQHUe?1h$vV0l9v1g=UT~z<mn-ecj#*ZoClq1@Kq8vjf
zinZhpbf~DT+3L`z0tuLHI?9y=F89iSeGc`z?iX=m@<b?owcN|%^zXu)N<<&Y1R=+@
z8ud$CO(gwV;+>3Y9XvPF53-zOcNa}F=P5Iwh7h8#0k(^ql+h*ty>%Zti7T>wCz9<U
z;>W;<RJm~Fg48&CpQo{COxf0T>uU4ki7Ly2ibbw_FT;Ou+McDL&p|`Rf_rsno@DAN
z)B4$8C+)Xz9|UbO?l(o;Cn?UqeJr3>&ecuN!^RcSKy};-iHdmQfX<!jiURuL<=nfF
zm9MIG`YAbr)lgI*Utyt}57vc{DabDWh!TUt=hqwzU=s4ke{+y<O07;O&l(Tacb)k9
ztgzPS_FkiT6s?6ibIo?$_wd+WF({D|&DxPR`{sM~yU5EvwZpHCrhcTjCpb_LW(0Tx
zjE^wJrK0q8Woo3NQPRGqYHxDxZQXnD#6;l@$@$~e(yoT-b{}N3$ehA|*8thYl-bOP
znqFQJ1*$bh&>+KMi38<5I`LVI)LS_tVHh^=Xkj1OWY9<==_050`_(N8eaE~kLqmUV
zf7|P>DOkq#Q4q1VY5}<a{Fr{-V|})DUVz#Oz?8mE>FI_FbLREuBF+5A(P}%qNADb2
zT!q^9$l9q-U$_tk(g9|VSp6Jm&2eHT>W{|j6sgC=p?lw@%y`1I&KP+>^>clE?-}SG
z=#Ivt@sv*cz5T9{y<W>nB1K(b)r|kw0(a3zV9H_(xPArL|L}ej!(@}Hh1{9v!%hUX
z)V`P>!Lq&Dz&wKNb)|M@L=`IGmI0nQJ#k|`ksdJoQOYtlJDJId<<|Xw3k?e-b9ch^
zkw_2xHK$SfJ>IAWHDidFV1nQ9a|uQN=FVwzVomIbbf7lMkiU$ALQbMw69zJ&$a8)+
zY4Nh_Ku5+y3QL*L8$#OXN5g>X;%?#X>#mTit2RNx75^JIkm$B}(G(>_h;#{3)Fn>(
ziZ94BuyuBd+0&H-yE-+|_L%|Rk#PbAR4;tX5kEs18l3gj^sIEb<ET-S#-ab?5KPv8
zUZe%JQUoOM4zkz1`G(fIDHoPR+9%#cAL9FiTKg&EPfz(b8BJV<5@y(;50pE}Xg9GU
z>ljKJXkucP2K5QfUBVu1X%oTzVwy9CcS!pw3hD7JS{0WiEz=3`-=6FVrCK4cu{J3M
zhNL}<11+1A>1bBKb3q4Y0+rmvAhwN-4Zo^D8yJq|A}xcYTiU0Bi2G#0##WNCcx*!0
zKjrCJlg9d^{K~yBpQT{pEn9AHbibDDJe1Tg7(7*Ke%NM%{r;?qHm`%cUksITb&tl2
z0sFbX?D*@<eK${=wYs&bE;>%|30Qcq$$0o(%Vb^CFA8tm1rP2U=z9$jHb9`^)l)*n
z?u7?gNFJ=Q&=k{mDUL86+)h=WuMUdT8GcX)Y>~>Lc|9*Z)vbzE{TGvfjvKh=9M0HY
z_o|RJ%UCON1;iVknPZHGYq9Rw93d3|SkYOQ>e4|SA@ZDBX+AoAdaHi%cC$#Kb|XBu
z%I7J;eY)=JZg;eZjVjbYiIe^~xAba$f6o3SFI1>2P#28mMzgX5wxA2ZY>CpM0B)fu
z3Ih_^6Cnlm<bV$$v9=E#KIq5W4tZ&Q&oBXO-v`y1DXRxlK-4said<T%zu*9gmZT_<
zoK|iDJ3kA1-JJ1_;yS1WypguM&Lpw0(r<ML+4m%`*{8xfES1(6uxh*_svxd$nntZR
zP~WJ>OZ{%0g=!(%l4VNfX6!@{Cix|MmWK4)&^X;~gM%<|1O|FC^=j#7G)!lVkHCa)
zEvj{2OMI95d{b4W5<s4Ow4seFG!&zwmr{@#86F*Q#13Lb>5KtG3Q$tr2>5vh-I}l*
zdtWO{RI+0>PX`6+;8ZY!uKXk&sb&~Uh$F{KpOMM{h9kJYeC0}{4e2d9W^%is0NTU5
z2^_-Md%oy{+siMSs{w2orPHlN*Q0zQ0m)5^%skC}<<8`%v#q#SuwxC6f~l?cR?o&+
zE(~I{Kyokjqj318Sz=h~xCqzVT+Bo#?T|&G>oPMlDhc&}ndkB}GRMteYE+>aY0F+!
z1Oz<cf2_B9zO&GsIhE}Fqt%@3a#EzM@@2fuM0FQvX0lt`Zbo(ae(IQhpGE85@;!=~
zz|2>$h0m2poh)x-Z)-@_+G@;IM0pBE^sz{$laD?^Jnv_AUzS`44;i2Hs{t2wU!y!+
zg-JYd3q$)V%NP|;)R`v&k{^;@UWapba=8I_Q@sF1eudGZvT6cz6wCFr?ZIlfPQY?$
zrKFl<REgjwz5?`F{HUfI(JTmL32f?6qtI%*k{ORXp9*ULJZsGB-(;rNwR@@p-X$j4
z<nLSmkv$f6;;J4ENpO+eC|<`nij4vMZD>khagelDP5kwl1#ODC8fhb`Fw(2|N%kCg
ztf?|@alB>lWx?!NAXql=`?1><B2zFc*y^`jaT7@@|8JaftJ&PReQzYOmJs}woF(+f
zaM<%`S~VaO)bUWM6}0N=QyRr1?3g$M&bEeSdBgSiQV6y3Hw$!c12`~uVN>s!@uu5Y
ze<iudC6VOTG147`YceBHb(8bztV!d6`9$$sMr*EZBDv6%^PJZGAuUVu&^v)2mF}{#
zJQA~h&%cZ{^0FI9Ejl?8bG(r7fBvX@W#zEzC=s|+4*qiAYROaoI#P|?<Zp^@NPC61
z(2p(5pa(Kjh`XzBbbcWa_wypAV~BxI*r32U4&Y4%gpL2VuK)Q_Ps9ln-*Lc{VKu0Y
z%n}qH07?5RlW03Y?jz9={@al<JOYh2+rmSHi}L&6`^Kav)1K^Jq%xJ>&7(3tET}Kc
zSn@!EB2U>HzJ4j$k6z9**rQU2AQ_eJhGbqqi<y^(@+zl@zYb$BoW(ckJ^CkHmIk8-
zCD1L&Sp3x4&LfKtR8kK-`?Biir3l;d#-nBBo(n{q^k6E@a64NVY%54rA0JH0Q!X9$
zN;dx5fp}la3QX#ViV@eAE?+fO--3Ml?vzgB3c8~D7`I=tHZI`{uf~4f2!g&NKNKBh
zMo_fwspq1Fg%3j;A_?h%*}53cp#j*k(~Z`4zY6HbL9d+vK$sC15RT6&$cX8w{)@&t
z%sPf{inLgSrrJG)VFO$!QCE<jMfZPy4(`~Ng}J12zZ|7F<8U5Zgt{^mB@jeh&@;nq
zu?lE{c~w7b?_-@6;lf&D=9Z;t;n9P3ZKXHQyWzg45%;_}w9bwG3||5+TS~9FE#xr(
z*S?_?8aM#Rc6uv}o&hdDITz+Hb2_^SoMt>ZRRpO8KWu$QT;$J#<tPGihEm}?RS77-
zLij-)7D^HmUQ%E|@#;T;1NWdju2g%QM#BwJy30g|SUae<mfcC9)qeGC%<))24kSX!
zV_jSA2sW{JMJeFO&$}1+Pr~L?R?07+n)`4#S63hQ&7$vcebP6&i7g4xPOGGgM*M(T
z$TO#+HjfJ7)#lKWFZ+-(7(-=EFG+i4dh0LLNOon_n~K{1JP*8Od&!Y^-WYPUWXLpu
zQH2T%)(ZM<Xa4|A9PA0><`$diGG*O?4&VV`Mg4bTs>BB~mrerPllKfkAO>2lEZAN=
z>Y?56P+p?%4g^+9aa0p!I8#$67bFYnlq)8{-RqgfTM3cAjF^xNmhkn4y~hOZwF?p%
zE;>Y_0g4`uid!3SpzX2`-L&KjT-CoXs7HtKS&Df~g(%)=hYxYD?EY>i2A^kI?&Qxn
zN!qJ?Tg27+B$rUyEUke530O5zve|}s(`{&W(g<@a6v5{l9QQ>xTLZwsG~dQ>#N4R{
zhD!=n5fR1BOI*M5gd0)%2`|LKhA5ZZD@0|PpYKx7XAi&-G7SLAh{Y`jB;p#xeK<`$
z_ISA<akl_CC)CG@l_=7RRBGC6i5Zh|y-7vc7XyFj%O5ml0tMKNj)RY#p@N|*Y;UT-
zyKw)N%bDA^`el8lLu#Wy24ych<bziw&EbJ1Cxs(nD@S!gk28=ilMn|T=GpVc<IhK6
zjh$$pIGAPYDqnJ@x#p^kB{}Ya8kk`-v!$q{U@O{ZfH=n$mzgcirgrrb4~Za$XeT}k
zLLE%KK>tB=O<FEy&^E5Vgc=or--8Djf!ILi<JNNv)AlIqT%^+-<Vs_rLec|KaC|tC
zv9df#t5#k7gfoQ3${zbOT3g%UwUqezCD8V2qc#5!Y%63(;@1A7me|KDg2V^U#K&b1
z^UjLM4QJtJFJF>VQp%UhdJ+)Nj4^!NDFY4Y&mM(x;8%}Wm2}2JCTrz^r_%T{2DOQ5
z>pGpRqIN^Jm`<J`GI}o*E>5qo<YjIk|F?g5F4aTlZ;H#%cJnKfgAWEm|H0t7p&0DY
zx|0f<7cPE@BcK3vuGAi{adf>c5DhYtuKQMYW!eiV+y-`f109e<bg$Pvt>y#zzBk;%
zYmXBdMRU44pDZ<asOEWU3^#iT5?Y$2gmbx5eU9e8O3^&0RwkTj!Cf!$6B?HDzY=^N
z@NrJBrS)n}Lsub~wE+P{-TMN$BT9~3@*QOqrSyB)cp^ES%m;mfGg8GzrQGdRxAHD>
zS^$VLINrlv)m9n-DqT%Z&<$7M0G>$+!}mHr3RJ8~l-N`PbuUl?%rr!i0%de%2bbJC
zQ+rEW`q#J|IB=NxL-r&+;;!5-%fLPJFKQ$-m0FC{M|qPQR?`MfC#+<2AkEJ&ZfIPr
ziT+sLo~>tq!Q_%Ai;T6HV;-s<h2MK;wGlIe1a0XsQIzTzrkxtP&N`<R0NF}#V_H$n
z3O}WuWU?O^2dv-N$-Mk|>bnDzCpeugInMreC`k5z<5cQ1efsK|#0kph*z7q?DeHWP
zpjIbRl@wlH3*#db{{!zo0FgpTP9wS281W(^G)|shDsmtwoDdeL4pA-<yYrBAdov}*
zBf(R68fV_&HNN$ScwsCW4Cbz1)aaj&H4S&`%^+4NzCf)8B|3ia=PV8ww=q)O%)}~C
zV!+MGYjLiHfl-y8go7gjv>ON!%=wPhILr!JJaby_^nkv@09j|c$961<0fKc88baEv
zZKI1IYUCo1KD;2Ez%RWa@bgg)A>5|62*6J%Qk)O@lEVdFB{LZ?nHW8f17(omH~Yfi
zh{0&bNnrjW%73K6n3o9-O7)6mJ!(X#I-(V{gB@ga1&Y*;-LPp7&nd|Z$*Ha&0614J
z=tNqOP}{N1m$2~FvgVrBJ2!P`#wB8viD+Rjc`kB3N98$jmsoVtlQn29*nY49ST*)6
zc=h}4z6USy@E+dYqwPZtMf%Y2T!|KemdXjtb7i<tI4+ngGj?IBKD5un9Y1=Wu~)ZD
zvokm8ibVyUsKXmi29gePVd8`_H64eu^JOSOHMF?LzjC9o!7-kgK05);NfgxOv49Y%
z@c!^SWdw_TQz+#1wg`YOQB{|!Jw&+bJ?(q!i3m)#vUOGXVu%ULsa?wm;-roMH$ce0
z3+zvKOSkb(Tx3Wjx2>s}?7V6}+RIB5i#l!awczKFTLYdHcXJC->P((zq3p%KJ%EuE
zYU6etc*Qq>^gG}03u<CTch>Ty&zOiUqYGBLMK4gqK)o*={Cppsz>^&kdt(PECDm?-
zF`Y_jILtA$?$I`QmMtqZ>ro0sqJT^DfJF`guReoQ^S}q>CL;in7A~08*KQaxZKLGS
z>6*jBwMNBZmami#>3W-7O>#V+(+in&NY(59j1;qL0pEgKJ|fKP)mLQ`X0|ltPK*n0
zB=KqFxR3{``-xyD*5bAUX`dUBjk2L%Hggjxyh?0n0Nd*63TrHsLmY+QUpnSdOs%iL
z1-0GZ6=E<!$UXm8xPCz_$cw*j@P8#qJfpTwK)BIh0#R4I91evk^C{15p7F4=PhXd{
ztuBV=o4hdtt{la~1Sg+?WduN##>B$&FL6K7U1|K@U7FvL^CYojnW|`PvK(88n^5vC
zDyCa5iO6a6+7Fv@k~&zq=2MVp0<WRGk3p&@`hRo}LT5w%BIOmClk00LOQ(|s8U>5|
zx_dA_^nB0xKZ`~<I8MH`w&Pm=wf~plH=2ts6Bm+6|3Ybk%jsg51}(x(6L1g89}KXz
zt+I@Iw6Tzllo;oVtnV!Y8IAI0FwAV7Xr%_FnP!=1vmz%^*o0>_`>wYMW%<^Yw{&Fl
zf3p2%;x|fXdyVpKnW^Q#SXI70f`{%0=x3=<ZITUa{PY}wmOwU!yk805LEa609Gp#A
z{%y0+UJ3MdTah?DIb+QXSLTs@GB-OC7x#eOgl5RigaKH-bIO7q-^va?*jtoIF%_Tn
z!NFq1yNiKI*C$5{;n25cRD(CVd9=#w9x;2FWMu-u#A85DXu^5!kCoNy*87k2XRMm^
z2*N}pW^*S(^<2jx@e_)f^Eyj?Y94qWWkn#@R#xt3Qn_$65#hH7MVmJXh|gKlcoq96
z;?(PB?_KPla^&)K57<4q2_0Zob82e*7g4#OB=^iK{NcBpvGjwzI?+)y`TDA$9t^^U
z7|0eW<q33KXoWon(UQMck0N<~`nKplwFu@}*dVASQ?dY>b+ba{2wx#7;%_*la7f#`
z)@Rb7yE7fOFx3)+&>RLKOJ?tRkVSE!cWo{?J~rkn;5Y<-jah|W)ajRycJ8{VK$PH9
zT1ot@9bh&E`4pO4gdF8P%weC#K1tCMC*uK4@^*)y<3Dc${+UoyE;0+hE$qv3zpT-h
zZ6bycq+66Eit%rOyI!W#6l*pR&t|dcK3?;Z!szH{4j_}Im6oOhaTq1aU6R%V_CyPx
z#d;o^K-gzXq4vHBY%P9RE@jW9w|8v0<k>9Nw(|q^wC^4$FpWLKtG!u?z?E2DJLnJq
ziMFR#DdRbRB>Srt<#s1r%z-!a&X6xo=tVDMwE-?8JU{Fl$>i-BG!CXXT=l@~dU<Yx
z8`(+Q^MZAPp0X_I*fz5_X@nEph!3B|k)>0L^?R3!mVdn*dj4L(BwrK}1*AlTeCRY>
zjfwjl>`WmltDZwW167UNZ{mK~7=0XmS6w*7T~QT)?geLxA-ITM%}F)i;j}2HylmZn
zXY63t9;<sCIQ0**=fxI<Hjn-9S7RfLReZ~_E0UX)2whei98BvVZ3aw>r|<cGispvJ
zNoP~yXT-74)PwOIHTXonnz<{1Cf&u4s8o-WK(o#fbNRsW9&=u%Mv1b=_IJPZzQ`Ei
zJl<|nU(G-E39{}*ERz6(q-PPflCBGJpGA{EG0)hd1CHS+sIN+`KEk1UJ*G$nl=A}7
zk7%&~vL*G(qBmKI+jg<TmRzz=I@OL0G&4z@L&KgRJZy&%n1vMs)f`Tr(*B-ui@?UB
z04@Wm0P?1YZ!$yi3vc++_3e{11Mirsxqd$IL|CJKLziA6Lu#TEYe(DZ8eDWq0h4%x
zVdmtK%hGIfyI8`%i^?R(uPm&*aT|`r4!f5Z7fOc{swUL_GClKFMX*Gu1?V{L@loM=
zZ5AcizT1+mZFg5%ReCIgi&VDcts_CMOJIuWQFyxVjr|?RZD@c5lWLV-@QBmFfUW(5
zFs=d863q|l<D9I$0P6c=IL$%l7Vt)u>IrhFELc}KVRKrMTeeu?sDr49W7<<#ZCH*b
z#jc|{zVeq{(@n6wI*Y4F-ZmZEYxUNN7=>1o8o&RBFPM*9&xr36L{1a#nA;VHLvbq)
zAy6ii=QdK)Ye2z;93=J5_g})GdT-SaSq@WRzM@-w0^vrqdYRZkNM6CIAs8QMC}tY9
z!NfOfxnN~dPC6;3Av$b+RFi4FIU0ikl*u(zKuq#mV_>q(2*qvz^(?xJvGeabKUZ5p
z!bRtO=`jr$)z$=()HDTTXE`QhHChc{-c_L<IPjloGS5?5_EgJuGOg-*grD}q{p3z@
z=4Lk&>|sWJj;Yk_bW#hnBUMp6lniH3?OLJq1+_1>x)J5Ccd9Q~fVJv;I*$A4Ym;Kj
z?yaY5wdd(-nMf>H9zIyF?1o(kxN>Q)A{JLH(Fn6}RpoiI-GjoZgTi<Qgg^5XWnS+Y
zs{z-b@q^(LF=(UP5j2I##q)=9+rJKbbxTdPH|Ptoc(~fJ<0~a%#1o8xlczh{oc}NZ
z?($NUL0&vXd!pY`7rbG$tXt3UopqBrI5N(@n!Qf9uDZu1Emfv+7*LwjHPk8De{|}Z
zxU6S6=Vm%Rq@}GaQC2-mfpqw>@yvkwM$vy`KE+%bJl-~Phrm<vFuV%U*0I1pQ4M`i
zg^jmUo1is7;J&L*#<FjAAYKr<ReXNXouTSwhN$V8UEu6L(|X7_EUx$CkNRbFqs><>
z>c%ZEWuiF8Tu%%MyKX{RwW1w4MCysRlGiLUUca3ydq*wHMzuF<x<|D*A)~1Q*(5WV
zlKD;d?V?6Bql<(Kbwn0yX~{2M%Z|04k}HTKapJGhd;;(Vi?*{o@o4Wt<OntqKgP20
zkH~i{+&FCT5<=g45U4jV2=5nIDu!m*;sRtO2a<hls6Zxx>jBn*2a_+U9Z3!4Gf!`=
z(A35vq!3a5{t9^_`+686NM$YmN_q2<jZ~6v`^H8Fq6BUb;bK6DhE@hWq-d2DCh~Mq
zym_l)Qspu3S*&RS-@U&s3zr1DV1xm9d++K>f@8n(K8>jgDznKpG0R%A5*9ZC!iyWQ
zF7{g_PhAeuMpfTfpg_uLBK93jS(%raC_u-Ua0lf*8Nva}K2!`DBue2}7O=f{fYU;)
z2?51mM!vI6J7B~1B!H{<^%e;X$HN~GlbK59o28_4@yZ)hYFy?E@0wk}y1+g97G}RN
zL`)Ab7!UIGJkilM1gh3)d&jKHX*&^nA_G~9Z{&$)MYmN%255R=Mi9LDEkDGUj20_s
zNls1SmgKux{6cIpr5BV}k^zq<C}7j;LQ3FqaMOWNidwy>nf-!b`T(h342r00s?TsC
zACJIBAzX~34K7uk$+DhuXbiR0*@}=Ik>%{nH}w^(x{lN(Ba*cWq%;HLHsFKnc~~9U
zpuSz6W@1IEi+;?itKVmP*Z4-(hTa38I=kKRybZ;!yRQ^rGgVLy!MkC;uTbz}5eB)_
zJ;{+%FGiKNc#v)JAP^TWXjC5}H9r>H?Pr8p0x`Nw1DA;SO{iWmysAIG7rmFW*EGP(
zjj5N*AEjLP26yFO3g{)C9>7?>e3~CbDnu^dS$0#4^;~cB)P^9gM-IyJk2~T<UHfOu
zQ}%kTl$nEhLGSO55Zf&ZL{JKWED2B${y@<tRv<$qvDE9FX3jQ=yZw~O(anq53&u{@
zc+E*dLDD6bE$Jg?I66j+0oTJ-TPTq!2ETzaKsP{nlH9t1^Y;)BQSzZ84Xi5|{QBj7
z{=ec=_=;mgxyTC+E#Q75RVeVcMS~K7{4;TFrv8Hxs$A}$w4T@l=fI(t?J-C;jtW8@
zyLImsWSe1lYy3*wK}(2_37p98*txr&p{z4>^n3clmB%)AHUbHa<CRh+z5RrYqWjgY
z&?m3$W5>7o$0{$DTmpuV@E3RTEGukN(fm$w_KMF70SLdJMOLI6l{MfUeVgN(TdXQo
z2eS*rRFZX*`6eTYgyv6?Q+zE8s}Fr{gwS4-a~+6Z+4Q*uEi|irM`;3f-Q2<Bi)$bG
zgzI-XhNW-a4>`%bx?Oh)dPO1NXD2czXnMrfAZ6Yl8QYWVTI$5dL9#Dv^)McJB6JU>
zORs&OrZ(7dRjF%S6qIVbvxt$;4O+J$R~jV9)6isJq<H~Y#_?|LF72=*0xJFUyZ2fm
zBPW`PT1k;8BpQga*B~Yk(K$Zs5RO~^YR+f0e(-%5+YIe4GX*%;6&dXdBQ#>6AF#O&
zIO$Rzm!KR0GF?G=vA1GLBVJv>4O&M-J4FYB(<BQXQdf_x`pNHnr8V%fIfpF_*_UPC
zr|yKAW!+Ckq04b(=%o@t*BNl3mq?dJTx*?K{=SFb_{79M=%dZ~%<u|H*NvL=jAHL3
z`rsRP?*?|Qewkw<Wu~PDsfyI<d?BT#qud|nc1_LiR8U5<jhx)fm7_}kh=}wb)=U<#
z{)G0*dAR>RHTnY=$Pxv$`wsU^=Ty$|=mUv^NNngu^;4>J)sK$GB2%eaH@@KRNZX<u
zW-$mK6Xl&SHmFK&(}GCRgv!<!r7;FSv4gtzZ_NvZy7(`cx90}3uIY|-yCj_0A&A=0
zb*Oo5F$;)1gsfPTRFsF7df`or@b`(o6z6i`_LkYD^mQ$N?uFJyUm2A(KZ%Et`=2{4
z{k!q$<^nduTn$84TDL{7(6Ev+Z_-!6cLt)N_N2)gJTmNlvFDfqRXwU@IqEhLQ+%=+
zgToh2&ROn9a$`Czqr4aP1hfg=X7Ls43n2R|k4IKW!BQU%4L(!Ai%^1^N~q}oe5i2}
zN(;qpodX+Vn*?%$J7NRC<_MDdP%j^hOrceP*C5*Al=Cn`3F&dwk2ix|TWJ?z*x%ON
zE8eiPSLSITx^)YtfDG7Y?q*+)!N{at<pWkTavggkQ^R&B;M!r5gKUdwgrz_E<^*|Q
zMS_^m3q8*t4FvP-7tniFz`n<rX`fv<0ar+p5vqOyy=jk_Di(-Fl(5X?3vRlzlh6#@
zhxDR~K0+#_mjx{!)Yr!8X<l+S3_2KcEPdgpN-p%6u^7{o!sNhst38+L0Bd4Q$*@J*
zjjrxL%NombPUQnm?MOGDWOH8<%(ly0jP_%Kb+p@C-Wb&I(Mudi3W#SkishUaRRNsz
zl~t=wp?_N)Ajw?l9<VvSsDLJ{M_8UMC2(mJv3=-h)d;bDMpdM&xKLoE#^-M;YrX$(
z-ip@(Z~Z2ehIZn{hh*}!@Y4kDo0D+R2E2=w8FZ|`u~=8>x~BPvLQe30?6?N7r<Aeh
z^+Ngv-4v*0r7LJ{)ei04eSWM)O)roGNxcy)yR&v~b4WCZk`!&;Z}i3gK7GezfxPmE
zoo65dg^c4%JNa#6g2v@DoiA_GeD=U!{g(;vixr?eE%_HC)X`BQc~-QTlTCJ}?-c)$
zZW*nV9iMI_VA~oWUWGJN7s^c->leCfHPy(m+aXh=R1#UJ4rRpT#;PW`We+rq<f~cX
zpmjD<C)z9D9s7BI_-7BYX3^g?+9luw5Ps?ub7r-3vDp|g!WfV#g3g-&)F`9OZ;k$|
zSoe+Lr+`}K@konRy!p)FoXpj;yI#7R`zB-L^+(boGRjlUniGaAs$AP3`~z^e7lBsV
z#(qsrN(YRAUDco&K!8t?Mx+l>PiT-w>+`n6^f2f6_X+T>j86jfZ-rowWex6UD;$55
zyy8Nv0R9~HE3GeI*RZt#$)k#LTxPxWu5+Fn@>Ga65k@&7gV$@qYHdg<7JcvE^ZKp_
z;zlPcvWOVyV3xPSa%!<NzS7pisLsEPd3RgeNZeSvfnenIfJ#{SkGAaSgi5jkej8XB
zMmMy`!KM1^I93c#DS@De-*O_tFmpx&w(X<Dql0TNHAk)}8B(vWoFHzd<9VdCEWSUF
z+-UupL_SoOm~1`pE!TPr`y&E}HH4V9AXkwaFe+dnAu*oDskQjzW=oHU>pquv9-2JQ
z*R>s4y<Gl)#Gv!gJ`(xpDt;7tMoqzyL{M7CCK2kpttOnb#^_j%NsiqJE2=`j#Lv0y
zye6w2;>Pk`0*YbSGOMCBs-oxv8Vx?W4<8ido*2?1!=U@0BDLEZMgW0b=UvOYP^$6E
zQtid+`LnJ3+Cr|RrL-RM$>Qu@OSZW#BOSn>sS3oj`aHv-Y>MMEq|BaGdPX;O-=QM>
zkw?=R!W6ZmlDa+s$ja(R2y_zaXJaikmHGchdnwE-#~UZ0_Mu>vv%o1Gd$$hx)6_!C
z71Fnk>Zn<&HAQH@z2mogUfs0_p6;K#ewq#lKbRWRQHdmv%l3H!Oa_n_bcCj@Tszdg
z5L@)ukPk7-v{1`I9`GhGr**b%cIp<HV<=LJ6SBLlFhEC56pa2!ui~9n5>=qravs`a
zGT2_&AE5ZuiV!86J)APZyDgOOTX;tud&_q1WShpl4-Mntg{9?#v1)62Mt&x1TK;g|
zc+<w5R}t8-q8rP+M2&08zUf~9+x#=7&)Q~iRD252w=5q4as!{RqjL&;Lf$^G&ZV#}
zQrBOG8kD)V%v=5a5}GKqk;+%+z)C{aG863+bH83oXgX+3cK`7CEcuy5?8OOQ@+$#=
zVdJ76JTV<Jx0A*pIt*-SLc7t2rg_Ao@N|!ae(kZ2<ZwjvDe=1HFY=cYCwmrSDc}&Y
zUj<hYs`B-5lA6J`i7u0~0(8HC&aigMH9u|la+YX&W8Htw($L&s(0n#)BMLvc9%~p9
z4`7=WH_P5ac%DmnkDLge*Y|2tN=WVs11SADk2ka5={z-v=_qqF5Wynd5zVHPjq%`M
znUvq6S)-i<&d9I<6Tn8%u(A;wpLBNb6;!-Bz#v@u=PL^(MSi;=69=BE0&Ud_{nf^l
z&|k>#S67}@iZ4N>18zQ3^a*elTa3n2tO%1;RG>{N`TMlwBu==gKNgd%?tOVD1-(k2
z1_6y9{p(Gs_=GP$*{g8V7twwyN`4)#K^xpq$?udR`y<9!G?xVXFkk)6MlNDYMv7c^
z&GgoQ(N0DeeI^^>oRzp<)=X$cg(oKhxDN+kJYdCUPS1ew&T`1AGXoTRUUAtIo(dWd
zHB5}*megVQB%*Y5#dei>EaK;YTKQJ;H(Aw+<uxI{BBvKiW34bN!Q_WZ27MytF~lyj
z7u4#U_=cHxX0SE2IuKevH_XK&7pH;}ekHxEL=*xAs}FLX%L|~XE^z{jPV6k}+8Kkq
z+u~rMYLc~AwO$oirQeM~&3CRF>lr)J)ARRPGX43<I_i$-d*_=zwJ!b1d`Qr^9KyTS
zWQs>KZlCWgcH)-+EP2ZXq^MzN>-K($d6X{^WmYYc!Hov)-uWIjdQ19>Ru#0=r}3(S
z{6I^jI5(ppx{<uq0DDSbjFLr4hQ~#_bAE<Ni1*?Wc99ClSyAB+0x!L&MFGyXoG{r^
z5uJ*+#=&mwKBiIAv+Lr=s%WOyjq4_M!=vUDfj(t57hC@>VV-O$d<EfKt8tez^{aA2
z!&Z=PSw4g<jvMnMH0mG1IB7VBtd|xPN<IZEZPq3D(1!8kp@MAR2r#}MCd6&B{XkyK
z3;|gb_3N5yGf$`^LrjYyAv|}W;*;?2_{aY3!L#;Rq@fAyP^(t935IoobxrZZXmCcR
z-gLKf;qJKOJAE>Zti`(TJ44mCt3)0@ZDGU*OP*9LO}cy9QANO{brpCw0H>Z$1)fXP
z?Xk2hW@Q}XijQQ2Z^UtiVr69?PJ(xcPR(pqW6loj%m3D**3-xSV*3maz-#jP7Zx+;
z46n3ZIC7M?gJ&lgKCe`Ip{Ey*zFLcXA<YU`9RI0mcBzNhcveW;Ia=joLo40kv@Uxk
zt&caVN+76;aNpgQBvxcp!57uzOf;4bR?KS?$^2H1K+`padd@?A1~X>Mv2n4wQ<F7O
z#MOEB{XONTBzz~RSZ%Q1TS~-pB%Y#aZR;13fElnquSe$WZ>(!eBURk(&$biN&G>Vl
zM2LNwa=%^0uGM>i94GU)tQxc>`Ce4eeF#)xjCfng<GJN}s7UKFnz#k<LW>X{sTyRv
zBQMa=VIdiNvLnS<&uRxa$9~JL^Uf4J_k0*=1vvCYS>lc_$APZMD^tM>7k$N`TGQXS
z84&7!eqvA(psn0@54#WH`b}42#oa&jztpz*1M{j~kIN73tQ8}ebyjL3%j{<qmW&d4
zmwJK$Ab)%`qJ>=$cvPz+e}0wJyAyb=;pwSjf)lJ>*{GES<eGDimbLSGV#BtG;&An{
z8BeQI0sAUKM#Gl=uTi%Il*3!As<_dp@5ZuI>a_Bzc3C1(@jxac`vH#kg&LRUGgHD-
z#A#)9KaHFnSn)TWL^-}%`_=bx&ExmcJWoaGab$0Bl(PDqutS5}WPX)`2BpvjM7CX5
z7(BC}@cw~eaQL}TWx!u`<IknkGGu0=M>$y%a<SOmD%Jp91Unk@dE^uYwRgcn9A&#r
zG3@+;2o@4uSgDKS)Du=_>cAJzUPP$?qiyRZ+?=uJqq%N*-EQJd|4^7k4ynqZ*p^9J
zR)K<QH^OE)e_l3G5hkO2S7XacFe+&P%ioWHW0yPK%=F?L0VkEllX;<}F-mpQA{5;i
zmY@2dbwPvlw13yh+Zamw;H3;{JWi0ZthlXA4-Aea*ntLMqFLv^7qwHmRYymtl4bCe
zv9LUvcA*0O;y7n2o==pPU!+-_!GeL}8&~8oIJa$|$(=?>>)M)Ug1t3-Q9Bk@>Q^%Q
z$H$CsCq7bS!;-G?2A*#|Q)mv8*1#ADvhnU|Kg8uQ0cetu{@9-N?2^;MYYi?-l{oyq
zAqL_3k;In;hUhX1bK!HKWivjR;Q0T{M3r<|0hg7sYYi~^JLB*D*?!o6A{`mt;M<QV
zmIBYX*G-oF`mUJrC;E!hI~^+&(EsmD5=bH=3)tENL2&baB0XZWa88vZJaOYKRk`W_
zUsdpH2+z^F3oZjvs;_zwtx9_&Z&>a*M|uvfdY0&nyDEaQs(Jy%cI|BRYCsn1UR=(r
z9EYHu#@j>*Ws&eb$t7)Q{6EgBMwHSVA_z2p2?@aH_T%zp=+UpRgvJL{=nI6N<QMve
zln}k|Tw7<lQS62@drDJ~MdWb3+H@S8@tjhjOh4|xVaEPn<!%>DU`2KkD&|G;M=|@A
z(^uJ6c&@~d;<lxBLK`>RcPqQT3R1u(E{Eas{Mx-RsVFTY>4Xh$x>nXKm=7d~K6m;v
zhlJ&!H9!4btJ-oq9BkO(z}ij)9Us0gHmbOUD@&B!>VKG2@BI<{J3CS{`K-h+O;-jC
z*?XeAFQrBpZVrG<8rNPYgrRXOk?#_KO^@ijn`p!VJNR*iY{o{w#89Xz3#Q|OF^k?0
z26O<`{Cz)sI*ALYf1c3`cU^p=>hB9IAbK)0Lu+VYN&5)0Kyp83EWsbSa~Ic)0nKL1
z3#+-JCoV9$LvWIyWUY~t4g2VSXvMyn(LqAJsO^S4J)856OfETh>dSFsr;m#3G~D)|
z-si<lfi*p6`YL>iybrx9ar7j0{G&7)LRwocDZX=Xo<+r}JFacR=~kCES}&%igW-wQ
zucCip|9m#Yh7i_K_@ct}P5|-pUUVg-0(sq3v`O`r-)RL!A9uFG07Gml0JXX)(pVEz
z7ejks8RN$Gw<Ny-W-yv6&xZg6C1zlGn^&AgE_+d?Rh24V)IaV$Rp!aH?OOCWk>f#N
z%F5`#ac?`#UdLH?o<FW#{jn%bnzrU0YXRqp4H81p!h~RAQ6b8GK6%T1fFHk|fYH}E
zftqIU>gU5(fsd@BCGBfW-_%%gYKz4*xXt#YF$9>%gA-l&C-VXF{-`aVZ~B4!6^f8=
zboLM@*_^flx+{yE<S8^|3|BJUsr%n;fL^njn*vL|rmHe#fpt!mwR5`12~1q;pS?DY
z6&_Ivm!HKh1+|SJ?=7QsFl<LM#ajoPjeke2ku+;XK65JJFdU;Xr8-Y*yE>ZNkqWKS
z2lX9~FG?rh*3!dA_POG*-7-bk_)r%{qh$%?Hc=2<oIO~|6BCvwf#&WxO))Ll;lUi1
zMscv?|JW^4ZBm^bl@1e)Q_;BqUyov<cg%jp_^fPch!_f&q))p)=M6y~ZPfhE9}_oH
zhUL-F+iV5p&>(c`iqanwn&sB}hsIybCLSE7HKg|s7-1rBfu0V{AXiNw<!l;wI)W%g
z{m?;U&ncIcEOhy~p>Ue!Z?tvg80M?TU6>>)N&`i^>(>H(s`NegPEOL2F-crvQc*tc
zmA^Jp6%o>L2^3oGwABL4q;D2qY+2Q&Yu6n|Aq9d$ygvZBdTH(cu~m~MwsgB1uaZ6<
zrauCLK($ef38!KNbli{%Sb&vX@xi@3`rL$(0`A7XUCc`n$~-tnhLW%Ar;m><$Dy<|
z^GO8!(`r=EP+eWrH>e<fxezQZXIizEsQK{``3&-WKtP&iAN9nr!~yrzKs80@$s`+;
zctaj2I;4OFI|EQ-#q4crHMP9T{y#f{CeffkawR{O4OlNN2s%$3a?h@DmVBMkshb$J
zN8sNMI#DclG^E$b4Z$AzQ<X1gK*FakFEhrHlYTYbHraE<2CB|D-jP0x*S{0Y{WB5L
z@$i{3pnz$!QFe$C0s#sVu!5i#UQJfI=qMM^e$ug-NEK8<P-Z98Zh0GJgMG@jb(|5g
z1a*b#gT9G@q?Ig`Zm_qw{!b!63s@1f(QM1v9H(F6`uPryyL}Nw4q^8^@A7Kd$%9`R
zJGw~&|6AY?W~0Udup4N^6@KA3*a0dIiwGjr<|Kzf@)gGk{#T2~=RQL01on*oHxazW
z3aFypLFw%Q5C6`Zg`v7)2ElJH3rwSPQa5<Ct$T5E!bK3PM|+3Mje+g+O($F4$6G&u
z#8U@|YVOX{<SenY{MFCl(93K$v^_fzZi(`CI5u%&I9h~n%+Zz>it{b$ywiu7f$=>-
zM#+cLN8<hi%A|;Fu0xI-ZoAadM(w;L5U;Zzp|og`pkh<3PWJ$SV{MV^Np12(WjqtA
zn#AqqZ?cJ%U`HS3)M06GaWJ(yA0&Xo=&LCc_Op=eKfF;Lk1&oQnNc_<9dwUvJ~{KR
zwT{CiEeGb*FBjp3nuIcYQR^BKT#Q%W>0P$o6c7Hw3zXa;UL`^Tx2Z}J-=>^O1vmmE
z7NOcLPX`aG=HeY46JPYnT?6;*-`c|<{8A6bUz5_!^jM8Aj>~}cX=P1#d2ZRKj;ED~
z!q_vGH<yA?k+Z*&zc5GztJKid=-IA8u~gcQUsjX2a220}Em2MVA3V7kI@I}LO;df7
zYtjZYGttajCVuE4t4C7(&y?CL6|WZ^e?>tUdsa2Rx*6mQ5rwVuiLT<na0y8<?z(3h
zTLaI*%r()@{{m&ejto_1bk~lUZ4u_hX$n%^zlkC_x4vh-olDvWUktTdLcGTehFa_w
zyk&?3kD#j%P6NxU>OW!CW{}1-$3nY(XEmhEg=g&U`R+eev$9#ryFdY_CPw6y&Jo>&
zXXe6SMOksvYDG70d^<J9MGm?{0A%XKTBUwL&WZWYA8U1ri9W3tSkDoXq!`gs&Z9;(
zFi%Y2fpKe?s-c32B0q4_fLsBPROkdleD4wmY{QrAjz0sdsBR}JC{B>KYWZn~dhgB6
z3!p0&%Ij?)^)G;k7zRJb617amP?sZpCx-q}y+v%Q6D~Tn@m|+F?rY2}1a0vlLx3Tx
zhHb<@`A49$MYfkL^vp9yr-*-CiO_#OvGKf6G`1;;Yd(iTqX=|e{gLmHdKNHRRa*i4
zsn`(X$O+n@mMH~gWPWag2CBg=$nk*9IgccfMfyT!FEFBwpFE^msEr-b=1D<c2<HQw
zHLa6XibVs*mIraQg;<bZJ%M=KhBu-BxjpDZyXE|p<n3C_1Y81gVcVEVMB70dmpy&e
z9yhXkhV?bwlg#_TOmp&DH#@w8mP_ri>49GdF~%C<UH~B(!`l9RnuItIG|i+qiPZJx
zB7E%T$K@>g#pt5X1T;PJt7eCNzgRHc_fFrjkpnye-sxKeK=Y~?9+8)%hH+<JGQeo!
zmz-%>!&&5Bkv)paFO$*q3iEq}ObxX39a4k<cy3)$4>o$l;47I^NcEh1KS~ZcC-i3>
ztzgAzHd6f^8o-CcxMtwulDo-B<RNhn4P-9td0X~qs7NnM5wwCnRz2;NMKzUu3k9@j
zlc>F<F5d;x;JIu_k6Z4(JqOwwxS7ddPXCWb*U*g%VcG$3mS52kASUU*6UsM?LVICX
z&y^-Gne`e#jU%O=N15hBX1}VbLWel<0RhFU68S4ilT8amOh4^bh3YgU$o{Jbg1{rT
zZ<B;v13$r`NNT2$nFZ{k3)b7=kr_5%pLhX9T*LcyPp+L<hPsi3mb3Xt6x<w;H3-+9
z#G$z@h37K}w(h$0L4{6XqnhHh)CmeUw)9gp6+%J?t4xzocZ0mMw<j-t=jY3<M~oKB
z%_3^wXJpN%pX1Ny=JZysz>WdB#h;!t8nNGGqdV*!ObBoP{;|o=0@yWketb;>9JpEl
zd#ZQ0cqh>$gpbjCH2q(ptSyA`pIjI10ZmF5L14nB?hs;IzsbM~CJ4S+QF^3AWygB%
zAK6>wq8lYi1h{l#Rq*=)ZZ;8Ah=tH6^B`vF3zM&juV5<ZpARl!BIc{CdaTUYVP7ye
zJTFzXSG13)7JE2p#gKdw+2@DG`MQ~P<S>6QUl%?kFf?M+CTe6ke@YkSVHc$+QxgyF
ziTo(%-o4E{!8|F&-?S~t!AVJN9{_f0@;Iy0tqkIeC`e)*vd&sp8OE@QA=9X)^!{w3
z-{447#PdSY$7wLpt+fjfSUL(K>So7NtF(s1`gOAc6yo4r+b;|&wv+4`bDN;@V%a*2
zz<G86ulsy9p`HYy-x&x@SZ<Pp`#%Ls%w9k0+fk=cd*`SbjIJIawYJXK$8d3DP2EsS
z-yvfA?3bLV5bbQcg5jqEtc$Bb(8Ud$8ZSqrjOeMbXg84PQlb8cwlmiTt~?b?isl_M
zUsz9e4cg2$YZWKRJ>?VYZ^b4+8R7+OEEeQ3HrttVYB0T%zA`;ZBPmcN_dK{Gd&ZR}
z#PUl7{D}wIRettQAq|;s6q$wIV^B01P$)emin$`lAw#|kWR+L8(rWU{EOI>?$bV_i
zgnCb@<I_H5h{g(W2NGnkJ70quo4k&JxS%~+qTU4cD9@CN+=?_<U8Y05_eV4c9oCPC
zGG8EYOo^N?_08`j<GGh-$Qu`HCuSl<3foIUlv;QHf#1KF<n#1`-w0}QV?70)qbO9%
z2o8X-Vr-uNNhZ~lpH&Ic{3#ueol_5!JUP?OZrT~*bHckuK@ms~!FyWn7i+PK6=36s
zP{fM+YlJUbGsIxBSDAWpZozFE`dPx13kM27;jUnSS`lF%^4&j`1V@5$vPKTDBowEn
zrU71u7b#Fz*O<sseR-J~efX*{SS0svk5}O5lSg{WIfhgDIWX6iIN?;9G4dqZJQ;Nn
zEj}3`W~8ZSLZGl+cJ&Diq)ZU`_)9SyDnYPn<1ERsNEsR-Q6Wb<7gDoIcBo4RJOY^_
z*#xyK8lV1}yWxp`2g0U2_8)+_NNuFbsRKRE@*;&RUP+eRYh0}ZQV}-uF72e(ORQ8X
za{)|KtSg1I-Zc+ks9Ky|JeeRGpJQ9{1*~JCwtdn!X=Z5>k!Mq~hM}Y1p3iitKJR|9
zMpSPfrr&I$^e$E6bng{!3r93HKw;?9n84Wp>Oy<SE@Y88RtdCh|8oAarDh5UP{*gl
z8gX`o`1mbF%+kC&=1=YU_LWq9H)Ly(Z)QCHId*I^$mg0-F&C<sK}@{gnEal;QC5Wc
z$re4M_SXp_RW0SXI;SlD7NgppV#ruiSOtojJLK4cKPS?r4wY=>3d+XTh1gQb@i;H#
z+4(Hbhj<e24U88^!$qVTD_})3aHTyC;DO7QbpNpjoZE*OBq&1}W*Z@G1ANZj7G#I(
ze;BKgcY=4L@n8*odgB?xsnw+|*Q@FwWW9Am7IE*1rf2L4K)rOfRaxL4VDL*7Pab)u
zDcS8j^A4st7N-)Eq<58ZsX8`lJyX8;wUkTXW@^wOE}hNjo>Gy~qjP_A4O|1(ojcKX
zOP~5vY_%amuGBFrWV_v{e>UK1BlZr^NfwrCck$;1vL&Gz-#6FH9XN8Gl{5DIp5Q&L
z|BreguxdF06y{Ps5uj+yGeW&q!En%*?O9|)OuzSKp@z0a`-Df!gp6_POw+V05KZ5U
zF}`~XWcoV?;hFlODm^F|Hk@8cjF9B(^>_$+*yEU@kMpg_QStFM+g84;e~KbD*hTWq
zU5WMwqB<p3tXmw16NxT|W_W4q5N2KqB#Np6w1LE0|Ga5$FQJ?!olgIgj7u%Nuo|Wj
zxiQvT%HXD~j2>~4kPOlk0NqldM}<ysTNM-D`>9G|4p|6JG!sit5|_I8O-5eH^k)qT
zB8`5(#CmML{v^M&g2){&89!$It-D+{SS849LB3W&PXa;;6srZ=bZ-@QJlwRXqhEma
zcRO;I--y9Viv<?XR3)|~TUdTsTrb&(Kuhd8OZ}S78q=MQ`J#|M4mW)1+~jKZ`#uC0
zi>kO2W2PoBsCMNApcPo7ZHLL!IYEW<fFYK$s`oQk6XDId%7L9r7ldKbZ7h9ucN0@o
zsNbgWRGaiacR&V)XkeZb3K8ftH+m)ofLZt%LCH?=Jrqv|Ik8rnVjCEBkB9B04p}Aw
zI;cU?t({FOpjO1}+rjw=YBNus4H}1Z^U853Zz_tM1@4*xh_oHypxj@4TgIBnPjrJi
z51vVtMG=P<DK}(Uo5R4jh)+l#@jp<0G8zOBdO^UGdEFG&&6QvnGBOkrIG<r!q7(66
z9QHmbOI7D>4bx{L`B$TXDG}>aPxcIOwF-6<VWP0Okq`<s?=56fsMkP-(b^pE_C@->
zxSf6R^%p~`!EiULH_4w`j91(3YpL+2Zz3VM&gp+z%HYms^4F848Um651s&}JwaR(a
zD8E}5`*dL`8j%7>3w{Dy)5I*v%fAjycfJbU=+6W`r+fn9D0pkxO}JDDI|rFKpilgb
z!GDMyiavW!MOtxZpN6zpUU(QAz5tTtQiwjFiC(eZjpf|KLPlN3drxlG14>%dIEBUQ
z#>!zBk2h=5ezkCrcyrRa7B9=G&vYjvyx}>3ne?(hyHoje#8Z#Nzku?^WldDV{kBY6
z{5NF<*Emh(vzF&`8eqMkOr15i)&7vT(2{ho`-kW<stht_*OHfU7m;U?hB>Fe>v6}-
z<pP2;878u^Oh9roqhnu!wZR(kCqX_cXh0{CT5zBz%eFu;nf5|(ZgPm()n6Dr&rA%M
zm5hX}h}U;B4;}NXyOv#3kg9qIFBVS~B~RCA>R9?WJ88F+wU94F6}W=>XG7=w=(M?m
zWlPn4O8Y9xbqaT}cLKe=n0h_nM4D@W-(!r`8AH^KsRU_JLT*&ORz(9K7KtL>{Nmoj
zR3&86gIC`m<)w@XqcBgKp{8t0&F9tF3UGs=)Z>JIezBu;%)IK;P`j_%qR*Ae8}<=K
zRwjAbHpZJBeIl7XB{kG}op}7AtK{PR=P+fn`1`t-g7QU$@@WU$hy!g<e+Ek-jOEcN
znOmhp4T_=H$h?pG;=y`X&tfh7R`jbhS})+FTVyxu3P|5NRH(dX&)eb+g~==|>p2J2
zU#Iom*ZzmfBOk<qgl<s5hs!I;WV=b1e#)?n!iddVBSrQ0^pwhp@0>}W^CH7aeFZa;
zfSM>rD&&F<|8RzlIdUWlHD1w?D3hY;H0-4*6z038a5O;hQmKDUOU@dj@TNLg2gUv-
z9w>7nG$+cEw?wNUdV^jyl;<RFI!I^i=p6+9BA7dzQt<7FNYVgInym}=IzviSAP94q
zzaT-w8mXw^CF;?SR;qXXz)dS9Ur+MAiU?#-G*Pf_p22bf4b*PD>iY}5JXH1<WPAJK
zS!<o%d<X8laK~mu%*%1>pkB#A+4!YubM^s^PGvMx^a8cTTsKSDYq8_b>vT}oHTAHL
z9G<S>K<Nq;t*`{#BpEbFI7$v|u6&UuXKUr=X6d*CiDp;-@IKxK+Rp+jVV(KG8Q@>M
zr8PnPzI-t5`3Gf7OQ4@jVSgdy$VSsvjT(IRE0_O_AYD%WrVOB&b<WibDlh*~9EbV@
zzl@loe$c+sykhd%DP|duYHl8lTQ>n$Y8QzZ_zdY)WRDQ`wEMW`So76@O>ZTn<FMIt
z9ek`8v%ff?P%fKns{CiR|ME;ub{nz-+n>GIMHjQrcPfR-sZ-mwQ-Nq_+oZfEqexGG
zn63i0z}$wfLW|SaaGN)3dt=I(0+0|DUJd0o#x-a`rJuvd;-4Pl&jYbQe(dSnU4m%L
z*eC(e7$ShjwF<h6vXw(gYqIJ5qfsU80Va5XBX|NB8~|=EbLGq_Cca5OYfg{3(ErPz
zvu&d4>!w=ak^zBHCUBBI{u{^Yn;D+H|IEmN#ZjqzTZDhm$AR<t4u+y+<-v(m6j?{C
zH%wq1|0sW$3p8SMaC+UPhy}m<u+KhbY6}1}qb?C?)z{6d1+!S=Xoxmwq^>GNtia9y
z<sGJPDU0g6W~K}rAMf#$ckp*O*I9DBb8fHBq>nM?8v&ZVp!799TL``3NT4qysMsCJ
zM8~J%uIC+#036bn!rbtOr2fG5N~=uPgdi7Y_LFe;Q{lr&WNgLm!w-mJG>!TE34xbb
zEnFUsmbGY$NEtmODT1xnTeB(s%yT;S3R7x6mYDORur4v(iK+)sO<jSh`hf)k25MBH
zSaU2jht2}KC^!o}Zv8vs`B!h0O%p>kFGDHY2#dEzb%<tQqFyNCi;&-&`(UHA_Yz4#
zF{a{|Ve|p-3-YrOx567NXNuJ_E9fD5Ya$6JrsByHpRjx#FFEw>?D-vkek6c#1Bl(3
z(AzRC!HrxYq(`KvgdNLLY<+o2Fcr(=dQjSedt%6DUn;i9Y3i63T;S%#u9tF!ad%=V
zN)^8*`k~V+EcQq5q-b^ZMJEd`xGJKYd9^h)wG>y^j&alpHLJ^-y|A1J&%=>$-?o*)
z3hY*-#5mD-O`U)_Q3b))?V7#gs>g>B`>)Fp!7ZW0`Py4{dl!XPflWGKV-sc+o3utF
z31EV;w;)L9EUfK#5F{)HnR)9Ma*}vw8l8Vs7^1V>oU_C?tG|P)Wk<htEf}SKWn>h%
zU=w6$Q$Bj6dsa&t--jWAf|4#up&!pIyvm{N-LRde&sEChp8hP{Z0H`knp&!zDTr74
z@N;^=$#f=EI`plVYyW^|)iM=~H*vOMtcc(+1_BY%9!?%$F0#&Nshi?%;&gbh+oif#
zo}#`ME4i-nXaP%xho4xDi|M+hk6=}+(!x+GusAA|(yZG$0ueV(Pol1%4KPevafJrr
zutrzMlOFAy+HOi|hk)ro6ztSPFn1hFCE73fy>WcV7teRpTzM?n!P7Dbb5=s-dQ;>l
z3V8_RU_do87!WPV!E?6x6TiF|c;uGot>-wLf8s~!xKyVnz@%EO-CjJ*OF9+(!h!HG
zoDW=^Md55V`m37Ia~_`t$Bt#cbw}q5=V&;=vsXZ!a+OIyPC2}0fBrvfM`KpLX7S=d
zouQ58=|f=jN*Ko7Q1xLBKMy%SFh|T+n@QdAkOa_-2`Y2Z?Gdx{!in}hJi0MzP4`Da
z2+lrD_8y;FDlXznVv@DBx%>6)CX3tz27WqTm!>Iy>ejg&8zLX&^%n+onwuoe5;!P-
zt??OG%i`0i0+{j6UCPm}hh0sx=h;0Yb=hwO7b?P8)o(wK4;iQ<Hde0yCQ(gh-_p3)
z{_LEVS{K0D&!8ra@w3izBn+^bqyk_rg@6(rT&W{n7Ehg&h`i_QfiA5-aYSASA5lQi
zvCJB>qc}pR8BW64RA$SFcP2=hNOLVRfyp*zb(bMCEJK=UgkGyKAnw1T6>7||5mUaI
zp8-_{=gy)-vl0X&a!psd|NF?1NrdR=|Ke5AFe!qq4XP>{Bi4XKsR$Z+gu|TXUtL$V
z056&G<6X<uEV|2v3Ox>Y505rFMHgLiBQV06-C;^aAI+e_0gJxpN%)g?z4Q0nH0PoL
z(fhYq#B?OkdF6T9Eesv(*E-i!6Br?J2wnR~bUg&Bx(iRAB0KZPV(?6%lU$vL0w4jG
zKC2a5&3$|l5|8q=$D%}}QT-<o;ErQ4>!sqKfG2vyFnYcbI1q8V<R1>1R^$FQ9vGD2
zi)%-=i~%Z(0|;+;)+0+;*_@&2?If|t!O4WMt%uLZNdX$W{mqcR12>#HI(hlUcWkj>
zWQDJadLITHGzSJ1{jeT(0bTc<wtFr|*)xF#!a(hO(6UpHY|n5yIt+Qr$}y-dn{|gQ
ze}eOrH!MBu4S8f`^Zp$xL0h%0XBfsnMJ26ec{J5P+_k2#AY2qSs5%Tyqfz203IRu0
zipFo2)$bK4iHAqbcGD5<YLTnh;}?D?^gI!;ddug`N>+yp)A-TZ&}NInJ*?$-r$8nj
zXV<q<vZDgBaNcMTfJ!En7D|H^$!^Qks<2p;A8=g~XSN{*5kraFE*)FUIG3+W5xYBl
zr=p5v$WKq+H!qc5pFw!01uq%szGU@uyadZWNw$Lh8Q9HZkMI&mLE<5+WN(3_=SF)w
zn`(F|7QN?V#B`}8t32hOHbL!Bn0iUVS|jT7>sNka8&~3{!g0f|yN+^z3_5T7B3ZKm
zM+apoNsvF+m5)2ud$-wI-YejRswYPt7dwxS;faZ4RvlkDTrVHlrd+tdqszOjb&fyz
z_i${D4ilm!8htpI0=~V13er5jsQJThHz#y2iZ=mV_an1*QW?RYKAGjl=H(&?rr5zP
z-*fM%p-E8f6qVrie6Q)wwmWSXAl`itv@8f>2*U4UUDkue_Ml(<91NTkUFNl+otd#}
zoYS88+1N)@3?9mzDwty^YG{|{XY^sqPj&HF+3~_7V-LBCXCAZBzTKHT!Q~0)1(3Uu
z(VPdLd;HBA<=bW^z0S*tCIGzpv>rb)LDgK>|HUBj$q&37iDnZGvlpdi8}eBKk<Wi=
zD>^T%>|xBcu@qOY%x7)u<=uxP+R)ax3~8~JS^UVxtSLc#aeh6$lq!1`<@L1AHXJi-
z<K!Blh3(#4%SWb8Ls$@bJ%eAbJ>VInr%l-)`k9w+FhBl~lkr54^X84QTXwtU-+ujp
z=q*c%AC=qit&trSUD*)`<piE+ic*=WOSu>u`@UIYksHYb=A`?e?fv-3Ml-Rgx+ux}
zEEj*=O}a66>K#|y{}x;L1<^njG3?9uuoI|0la8%hWn*0z9WtnLk=&A$b1hz$9TH8+
znW9AU&)!pitD)Q$KAig8)(Ms64+Pa=|0a7-_UeyFS0cHu)+(X&1T*XO=LY1%NliRh
z<C<eCl8W@iY5$lDpj8Qe1JyNxy5^2$VMUUN1qz>uDsCrcZ&orvmPyKrSUWqHXp;K+
z=yw}wNN0(wn6XsBPIQ2(QDys-Um(b+816iLC;^KK=suu^f2M&lw8R?-J`D5p@80md
zJ`0hJ$I~HBOvPvGtqFx?1%Z@vL6**gX*Zra^WcR&4X6;ZjO*6^{RvSAq@E;pY*T{d
zm-JI%+;z$gx1Gzn!E0GUhzD&no7JK2CbydjJIHes1MSb%i24zW2{H8h$*=-DtjFY)
z=XJRs3H<ePKkj3nws<JRNTgb0HFk97rOeR{A5BAwYExgmf5ZcG=Pl1Gzd5giZyI-=
zLZ{q9unh)C&8fB^>Jo`rWC=4EH~Wd%e=4XCa}~H_J3THpkzVT*Xb5aw$yn#&XYFF-
zgEzhk|EabmPt^9G|5OOlj<lgeweZs7p<IT=tf7v6_UA(7NlON>bZ13hl2nCc?x^lm
zze|2!hK|H3qForMJ>a6FDs8cw<-%>Ppz5+`lc=2#aMd~S@|;(046RQqh^rkbX{0%H
zZjLSjG)>@=NQy6_XX>|oZ-M*}`4c)B7VV9|H1^S7;1pnN&vcUpwyVcr4z@f;hLOrb
zhu>n61K$|i4BOV6i7I$@*1Y32g^d5yVC!`J+6?e4C3N$laYi$V$-nXPc-gl%pIP4T
zrtT|(c)4yRFX!z@_e)v*qKNn(YUR<^pkRA(pp>r!08CKChA$H!1sscrWyAHsX!L(?
z6GqkJ59vsR4*k@W3Ji%MVr}lZ;APLXmkRB1<d$0#wv>Pe1(fRR4PBrKo4*Q*-EWIS
z5=3BCaD_W-00C$(R5;Y3KY2}=CdO-OEV){?z5>3Ih7U-6Url%x{&sF99v793uuyqR
z9N++aM_LmoL8T(60VM2Y3=JMis2j@wYIXYA7*a(fwfWfXuIzJYC4S7qB^7cDH?C4+
z27h{4Hh1Hc2Wkjm!PxZ|0uu8-)=^m;-w?6@-#2TrLVRJ(CuKucrdLx!h`LYq-I-_3
zL9#9Z9^OmEt$y?eg`*?ib@W}1-+gB$97MKvx+{PbT-5>;?AVVmK$v~fL?JT=0RMgj
zL&#0D5SnaW`(Db^NzvFX5H3zOn;)^a_x*v)slLuVNdr{3(?iYriFsHPaA1-Dbd%?A
z*=x1IN;_=0yB><#h~j>cEZhQT8J~2^(;_JVh6c^x$Kv8ZH9gzP)6!2=JPBB6xPs<{
z%qMCx#?+oHkswf01^N)4J41`Ep*pn!@_YN9^MRfEb;H}Uj%EsV8?vJcfVbC+1(i*7
zB2|{wJ&Yw+D(oqdhDjLI*l-|M3o62yFU+`vMbNCaB;%5D|J~C=Z2K>tY1>z$Ms0md
zFmV(~TAHeCQ}m&GeWz3Ia9)11<euPg{-ZkF8~M4cMYNznO3!=TjP5aymSvMGO)U9%
zuFhL8K~0w;;COUYvS(p(0V$(KlR+PT@T4TPY_HtwI|cdP`*avv2#*He>z;Dt4Gpkp
z)yBy%ZM8n2#?V25>I9f^08h6<7Xn$Pd@SiBnbr0@bWr)A1j-a8aUUnpO#6~^GvSD#
z!P01K6o$xPX3?Ogp_0X%Y8om$7C~67iP%pAQ4TFp+WI+?ch}Y(K~F)ia?-IM(VogV
zlN+USXjNw;52OF7jr`$2zT-He;(~13o33S&Tewtq++aPVF;hMhQU(7))rlwhZkb@&
ztl#X$g+#+r*JX$DI_Gwwot*Uf{vt`s0hwQ5h*PnncMMbUjYQ{aP##eWEQjqO;}!}O
zYY=GpT$YslSM}kZ^H`YoOBh~fCT}OwcX4#upQ`Kc*16n)g0A@LGr3t@bF}3S6nm6x
zVhBOQvNZ?k*_K=&Tn&_5X@>aaG-<F1$iz`h<@!E4-~-7msPk|?0pRj@39Bc1W40hR
zJ{18`D9z$xZ8LQ^pX9dt{xltpgD~Ax|DY@VUA^6r+jOsq0X$Ae9?YtN$24m*#5AE#
z<78HS0^KIxQTIFe3X+ZKAEOHRS`A~>&Ov&D0@)b+eR3?ja6WC!{L;@anEs0+2Ee5o
zQ69o4Q4H2KHTE@Yk>kQk2Z48g+c`I~vu$Kdl>OY9Q{`f%epltjO25<S80}~T!KQ>W
zy@RSzMobE~Hd+qD>0>Q!e{psr^kxUR^2g)nRw^vTGRUSA&pBA$TFssS>RMa6XK(?J
zW;-g%vCETVR#Xm10o+>(XC#^YE=<lfHcp6l4`E_y{=z1?0?NwD8#`zS8DtQ7r#VUO
zZRb(jYEVf4LqNR06=38F1*xAZNj8%yot1l}tSL>eNVO`Po;^<d`quUYE&FO{VfDXF
z80w@PI!pPr**)4EZ-AC3N45ChAoah*)i3z4SA!jUOCJvEM*B+j#jH?SX)!uz;dSNZ
z)vmvWqV=8;5HNX>QDynAhSHQsmQPO7IBDMu$6YUd4Q&tn;|?;%z9@qjNMg?kBj$>j
z^2)!c&?}0i8?c$_-TLRZ<-QO7K|yf~U*Zn)Y=aNrgyP$pLkkaGfC*MiZHA~bj-Y5H
zuG1Kna}Rbz6)8ix<N#xTo|O^Ia(Kpj*{I87eI%MWxTU#~PmugB28Dtu@zugTl*46=
zkx5WH3<Z5E`mudC9MI?;EvBv-%hh%}fE6l3%k?Mlv~0o`_3(>e3WP;U{#40b=_tub
z&5O_1FGzam7hn*LsqF5wXQET3X2L-6_2AQ0Ub-ZSeuLlufS{yO1bm|9z8L8cO!vg-
zL@;Xu0qdzLD*4AHmK((5q^Cgk2+%9empxL8(D$Subt!F#<0I3mK{;eZL*h|`^h~$x
z>5IIA9ozlvq*(k0p#>TNnI$-obH?tt`h!2rzgl9i&h>)aScv+w$(l4~at??RN!R##
zDKTRxK_HJVJ>D1ND`GYdkc%K1_mjb;X};>s4-jc?Hl~CHOYoAwL%ZeckY4LC%KZmY
zBmwh;dxsT;`;T2beD#R8n*o{LNNQD^tYa<vv~*+I6m}@uI7$?p<oMcdh&+(s69Hjf
zS(`s|5ul*5+}DpQJXm9Ay72`uQ+$2;f_xU+Myl5hjinH;>%h&+++x0Ipw@UVQU=+!
zwsAdLZhTyV*nB*?UepTQA7st%GdI2P+faAZ_L;9P0B1hrBEqm7H4wNCz=?u&wpta~
zx(fV5NON1R19GZA%crY)I~ryXN1@^!NP3t5z1E@bu5{?)>Q@z*&4I&R30@PdFWY&-
z0&O*6!AlB%6|r2besYGno2LE7oEW!d7@LWz^vgZY1kmUm>ttHe7Dwph7(1$semSl^
zNncJR2vhTt;;<Tilw3xp60+bXVdaudOFjGBVI{1saZ;;iwGJsh&5yDkh@DpoL&~g%
zYGn{3Ug=IlaQE}zD1&Qg62bMP!q<bbgNFuRLb1I4;O2o3xXIi@31}&}de5TUCa*ZY
zte;(<;9!hXzc1HD-|{XfeU-ZQ5nmsheaCQj%AD@C;qm+PBjN0i(6!0Lq)B3E`I``M
zq(J)Emrl*GGQv3yAsh;ru&uq)vl6?@QmVo(W7dqS`6b-iOB2|OY_T=z^#Dj>AuBeh
zM#vglDtko{zHnzA8;W-GK!#Uo&qvEsy||10qQ_mSMAnEscH{ax>G4Dz5~~$kSy3H#
zfv8_af2QQcr;j;;h;A?`Ul_$?b=`ZnTcdCj9t(Y_q)adr34A4(i$uIR$cAlp;4ut$
znsN)@0yS_u>c+~-xa8U_nj!CEtk71G-X<bdX9%<Y2!0xs7eCZ`2@`A6R}<SgN#15)
zG-pj@d`qTk-ppG}Rq^A9C@6!RPRcR1<yg~um4@%D2XSL)n@4AP5^toi$G(8e!E1c<
z?<?k)28+{ydNPxhcFfsz`$P4A8Nb)&K4bteqGjN|oXj!z=jtJGpPxSUb&ypn(6oDk
zhGSM-s@?@~er^3))?(Q0OVvf^j8gD4hlZ1@%KkU%_A*5Sqo)j@>t7S71x$th7H147
z)$SG6f$?)Wyyy1egUZy=UKG=|6S<IKl6o;jHy$*zh&v2snCth728Ylg{Uzufaq%6g
zlyOugfm;CW+-XM2F#{BM#Oee#a=RA`fBWe(9H+AauKp<|>>EHjcByWUW~ZoG#XK(#
z<c4W#*I3GSNhi!)zK))P=36Qew2&6>QE6W>2*h%z2CJ2AU4vAseO2W2#&LEk^k+8W
z?ue;tN?uVBN-NFgrY{>xNpg*@?u!|yphZIS(R<9h^E^6`!|-Ti3Vfjk(}Pba3{q~!
zS`P@(#)ii`?duW+t}zTkxBFlEZa=>PGBF-N8MnBmR)c4IhthNzj%c+$i{u*<f|$mL
zL9-l)EQd^$=ZzJ`o#Hv>o2p~rJUG}7cpM1KwV|)hKZiJE0T~wL9`zW=&8VihXN7Eh
z{o@XP;Ph>2Jyhk?UxaaC6egSeBGq{gw36a94N6>K({o9YqM6PHYC)5IGe=cs7B;J{
z+s=0Jo}h44<I7CbVm#LZ@ExNv{f~R7@TB>EJ#<g%=Xqp=yw>sA3I}X(Fe)rWo+b31
z8yHTeAhng6hYUr{GIH@5E7E){XQH5zNcKhVa7x{9Gk#MemSSNC+-+8YjnvE%)d%hF
zsJxwjk3OwCIl<4GHtNvr;eadWJJXXFhZ6^cQ2vD7J%&xsTsyL%990M-Q$+)4@X0@D
zL%V4FmS$GV{wD?K+!O+xP9VuzNlWH2@l(*ChTqGAA!%K4aDE580$i67SFB`RlpE!R
zNH0qT%W&r%anMxNW(fMVc^ppEtO8u$ayrSmLdghA)%g<mV(RXbl#oINd~R$YfJMZ&
z$7^}95b8zJXD<p;ta{t0T#TmcnJ5;v?abM>Y;V&owz2MGhRoK}^O=0E%M=X&-%p*d
z_~@5Lr_Wg9fO!c^JgoGM+6j&HVopdL>x(p5)0SZ3qx6{a&U%nvNWy(u*kOy$-Ql$c
z>FcxEM?!XI{Qb?3K)eCqY}e%{t_GC58L0dy+Zu0B;st;d*{F(*fmE1(rXTQuLy1Bx
zrejY~*U??qhVR3og(Fp7AA{y*;0`oG{ijI<=ZAB@SRxo&9!>~jJEjg-1<W6JU;0o>
zOk8XRNc?aA{0?y!>RjU89_Akz!r>{aC$M@|mqDcyFj+LVbsj*n#?T<@h3h-e5X#mz
zvq1o{*c|n9LWadyrf#z>>lJEX(!%kQ_3UHUG1f-J+OnR}xK)CHCc?71d-qeF&f?<s
zc(r=J{A#d=miGT6t}fbptRUcFlaM;~$wDFcOzPv;HEkx3>WZDk-w>b^m~*R8zk=8_
z9S7by85CE>_>5kKX>DTaZZ<`BUEOd!&1W1Ms_)$fwS$B7$d9m5Ej~xC=kA*{-!1{f
z%|R$O3B6x#C<CO?+2Ejm{Z&Zs|KkktAOCM2CanR_NMp8Eb$&>E1Cau(UA%;+!ooq&
zvJ}R+GOi6eW=}@odjy@524D$$HcP6ulpF`$65jT_4krr`{bG(_C4<m?1_-ARfK2YS
zJ=%z-D!8$XEZOhsg4BO-Px_{D&*Kraeh`85xvjcCfQ5N6<95i*JtB++u2&OCyb>M7
zc$!N?UauMm_sbMXh<+dBQA!r(Bte3!rHr{icrePN3sf4~e(`#`=13mo$<>#aRn3To
zouEsY-ff&{S>{2jG8%?*U)6taG8gY%jqjXgDZ(zHN8~|*)eK#G0ST;c7()`eT@bi@
z9aUAQfXw#QTHOvXZOpw5#)@x2A?{bE_JyJ(fSMTzKpwz_n{h?DCTexyOb-*iT7~oj
z3^!|G{GL~j{~_-48eC4UMhk4LwUc~p6^OT9(whlooNLlQSxCxC9&yjtG1@<<U-H_^
zIqg|9a`%?m=~dHmE5BNW@g8Fryz3Rr;PgA$_Ufqh?Eq`T5;k7S&1m3~IB}-%8;@@e
ziZp_-Df)Q3^E{`ETZ0u*Zh@HXndYdBe_!Na!enwJtK$dj(x5??9A6TJlkyf2s_NJ}
zG#;cCD}{+yTI#QsM7m&npSdr)fzI;Bfv^$8*H1MC;J!yEHICdYPd0+vrmaCH4JC>I
z-|ApkM8GGdA~@9vzF0?!4o2b6gL}xp1hrETY`X1t$)Z9rafyf;wA|0+sA(q;CVJ%T
z8+E(>26MZUN>##;@zPG=5x^_TAn`Ish~(-__Ol&&SFF(L6;yp}V*$qdXkrytwzXR`
zW5Wu<JQyJmN7mxd`{7)DFom}W!>1#3Lrv?NU#Lag9T!b$bQ=Sp<4=F{67Pq&_1#hP
z#+~Z`%NqUp6?KX#eG(z8v4)OeYLCzi5)mf|7rF+BdAF({`*=M%b=rBYY6*{WlO0q5
z=?zjPTz`x`dlns%Y8LvU^@|(=M|qM~)%R7lR)um`qTzS9Q%u@QWD`gAa$)y4M3{6I
zVgB4sMguR0UdFVr8S5RWv;9)5s3t}LpX!WNO0a9*>s67UgLBv%9n;-j@m;#CR(&F%
z_0(;WQ<^swZz0iebOeHprq@pLGy4<L+o$cN-iyQy9Hm=gYrq0ZeJ=-r-9kuG6}I1s
zn!3<xjDfnn3<9y=Cm&?)W$x+-Wmj+|<V{57Lk&s@<M3l@N2C<6{8WljK~Kib)xz|`
zV_Tex(fL>Hjz9*0J287YYjbsi+%x#hbR^X5WZn>Bjsu-Og89LlS}*O2iNHea{{+!V
zOAu)xIpflM05BI4cWAgsXtKX*V6ZDtK2ECz8Sagiwo^M8Ix**8O|ABKW|r8xNarKq
zL7$Jq*lwL>$@nM{cH?t_Bx%AnVsQQL<?HeHLkr3!-I6GRBA{AfwEKm!SIkj0FZ~B@
z*t2KENFy9!TqI7zA1rooS#|jjmV{z@<rM}Uu=MP4Ta^!P$bV#5LHLnbaHAftNOKL(
z%D{s~Hx6*_^xDT9foq?0KTP_d{lW@YqlEAUM$vH?*Bmz!_&ha!lo@|c1&KqDrZIFA
zL?Gc}=tq=VD14Op^#BUz==cH{(ElKW%4oz&2O^o$V6X9JGCWRHLLosCQumiBxSAvB
zr1^Aouoe_B@1~}-jQPx6)s_a@HtGqIZH)85BSNfJ_MxR45n9Oy{Ml^B8=#Y_Y@CM5
zGQLQTJ{W`dLUXpnk?}E0-IrQ2S}1w2oHFICL50w$6c2;0ZFi2_`2C-4ea+C(Lr7hH
zDR*32g^su+!gDPsj40KoQ|)JI<De*|nri6gL1_AX(YCHHq%;p$fcQjNlASCLIa)2M
zH+SXtQ}H2eW=i>VQJh3!P2z+W2u|TcEHP3)gMPAT(G=@JX&wH?9`ZPNlJGr(8GT2!
ze|*UQ=G^~9S!szE!Csc<{}GKx;+vCabT~DkOzhJ1+G4#{v2NvN6EaJ$qT<gc64azm
zRxr>O8XEyh1?aMZZNUtBOsz=PNjsi{VHpRTdc=g4Aaz}QVTP!x_9PWpxd9ibk&z*5
z>(q4>MIbwL2U#855tI~F=Ni&q;+eJALMfNepcx4ZObw>)Hy(agd}1(_;x(w%)^K+F
zv2H%*0?cyyF#K~rGU>-IhZ`Yg7_?xQS#-*QzE&OYgHM=V6>N|Drhl@PX&eRQ2J&sr
zTID7FSr7oBp!kgT+hrsIZ#-t+;C)-7k~Y>R(aifu*|{o{T`3v=_Eqs3xtnDlnY;HA
z7QFS^-H&spH)3W|5uSV|kWQGVPHP*t2zG#&Ww#@HJg`a5A)E!N@MfjsNJ5liJ5Am#
zH!jPXwl_(D!CSW!etu1atc`ZbKdt|!lt?uH5Q!924k=mqPyTBqw!LG>kIfvJfm9&L
zLFVTT{3B)2zkN74hH*JH+E8@!BQ!#WJ?I_8d`j5jI@BfgyxGJYDzzGc+oqAR3|q%Z
zSUBQ`IhR1v)Miqv|IieqwLg4n^qZE}cm7!W`ntgR={y|01yK%-8`pP2ok|qI17IWH
z6P_FlwrL;a&3?HnTH%=tU6ex*)72x2Zw^hgV3_mWNAigq4h|M#LdLr#SZm-SNe#v1
z{f^WBC$Z11q?Af@!+9`_R3->^i{7A(!=k*CpjFv!o>rGqGLnBTJasO=jHRpk3+a$M
zCmxG*c}8>yRO!)lQ?eP#B25kakQX-C3MbG6*k9b`0CF;CfE{1_wd~WbXJl^tRA|7y
zMZakAPa-j@VBF4RQ<sfIuLweMQvAlNt3lu+5b5%bqmA4Na-CFnQTL9l|KDOAjMSU0
zkO1k{Z&=@>yz*1hT_E2Dy-`{z&Xmyt5iFX6aX$gPqsB`{nRL9?=4*S4$u2=-Ok5-_
zY*g|w|52o`G<f&bTEoV((14?}15!4(8KsmtK0#~fU|i!6pl01-*w=F=(6e)OV!eq7
z2k^;$)ivV@#dIJ$5=`Xa?nif{#}7gWB#Cr4KeX3o*D`SY$jvO|@hmW0&?80|_QKtd
zTeE>EKev_!J9Bj!__Ld8r`Cri!PozSJ?kP$2EvW$E3gR@F)NjfP&^s1ZakJMnHW@&
zDV0nTke78k>^|TbKmiDA-|LsAH!qSu)s7bArF$iin80Sz>P?=Wf{)!wF-KEYr*C8Z
z?DFzs@%u9<-8lbv@k~nFrpD$QMkz<2hg_$(HEG<Hr=2T?lzP$AnA#UhW=n5f_PmVN
zlQf%bm`VX@nS%B6JXCPR`Spz)E^&?#>pv)J`HcOM3|K~h26h^q$Xhpi5Mj>A=}OKs
z`WvE&)X!*<k>5P32c*Fy0Sldl#O!@eS3~?(Rf7fEYv5}*IsC5)U_V7yb`x!$t9%Sj
z2!e0`GJOcmFgE37s~30ph=y1bs^)46`~Gn~857a!;C@CCjmKG{W~|&_0=b-nOCdxu
zTLr0j{OED;g)}I?5~zA?7(Rcr1^n4JSDRj!gta5F9yvmb9f^BSN*dRdB|xqYZGXGa
z6s*Lhfa@;=-D1$K=yYGsV5fDi-IeB*`XGKB7X!KJ)ukWZtQ$X4Q*E}U{=Zg~QmFl^
zCw4{c`KJkK3ls1>W)u-(Bw8>b2aK6#kF(^M($$Mw=6#zNLVwl}v~$?bd9K20Eek1A
z>LJn%Qeq}(r-Dsv@bX9%iWwgW>YQKvpFv9Lmuxp2T-PN6K{Jlbt{FunIxY12;V#4#
z;29wZ%fp)uY2u4#*f<z)6^Q>7SI)oscfd0-)@tN4XIyqmppMpP-4KTJ#2v27>!gK_
z%$BQk85o)q?sw}3RtkHQ-b03+`r5fYU;BY`=`r0K;r6{?BHzR173mO*S#ezJREgif
zrx+#-!#-o4qJam*m0x8-4-!<0rlhB94GEAag6Y>&a8%h28Dl}^+I9X%ThU$Htc<+*
z@6?a6l8jn^^j{)**at<1JZn~*v<sM;g}H|TqIy4y)_;vUg!5?ceRBInn?$_V4saGY
zI$MHmw<h@(a$}E~_l+#ewlQUL+a3@7GdFaiAn<nwh1lhJLM+k^${#^_JVJ`Bn&?;0
zsIQU9Pwl{SbOj#dUM60|=rki?^Zl-d1G6_|loDyKdwrH>ae-sxy`3xLgZ8E~$Pf5#
zgde`mBdnnMrekj6s2##9Q&>2!S_^zw?+}gfEJZM+%C`7hhoU8nJb?fCeURLIZ=BS$
zlqCNONbah|m~a%4QO4_Or-`OincN>o_e8&<kM5A3uD3G8#8imTTd|*q+ku=EjS(2_
zIwblalJ?y4MCq}oNO*yk7Iv3rRGpiZx=7xCD)TY+Mf6%S$CXv3l5RGe1r|NC#GMB!
zUd!}D>{5jGCCzC~38->)MA>7`)EFI+QK$*$ByF1qqwrH3sYWm<9(4o<T!*uDT5Y=X
zdE{7%b<)7@*dPf`;#cuKuW@Uv<{bziX#$>$T7y$;p4El4T0%JkOu(Law!EsSb4;^c
zR_fn0i%EM*^#dZXBsSN%AiZW&$P>+#{YJfFEJpw()igZ&W@%Ib_3NiKjV&Xn*BtKN
z8pNYNw}J@G!Nu0cdGg!Qo>eC*9gkFS>@fLSuh6wB+!_i_Q8ra?a0K>eOLWTTD>0Vk
z4~GnOpsB(qB3p}c=H8_w7m-z->&Fh#<nZ7SoMVf;2P9e7j=$l_Dq8W`oOZ-uzd*Zw
zqw<AC;+7|8W=VF+U`VxXByk)@;V~xtF3Lw@;eiB&90`O+2#4uj<EqJ}i`Yz2N)kid
z%JGW2GQCN)hJS!dKAIA{N0fcT%j9qae~Pn!MT*DbYMw`Dq&_P!<C{0)6}MPGpCKh4
z2YM+g62Q|lgK22OMt@ig+>h1gM_zT6i7t-r$v{eMyj>NRDnzcN8m*YE<!v*;%X2N2
zec22sL_XYKrPK>n<=pn6v;+W;B$cJ^6!edj*zeIc(++)9)IrS1U_NAWOCa6E($>Iy
zhxIf05&9_E0H-bh+er_Zam?>vrOMD*JS?erSj5q*2EwV8DG)f&|4+s;?Dy^+m#yU7
zz}8I??!S5X_sSU4Lr%@ahpW*hV6$DK8Q8qwO8?_-`iIVX&34%G9&l&de?XX>SOFja
zgY#7sWWDN(9IDB&KHV6$5W9|IUd>UFN1k!xb_{-B>)x-=pBKN@duzONz+(jBN$x5W
z{&@|ppj;-tPkEk?SsHm?3`$cgiK%37h}^`T$(5IQno7R{lBQ_>!8{W_=qJsaFUmhF
zhCQm`5l(h*2VC`)W-dX5D70TQHH5q$5H?EwZ~n7b@vy*ZiU5H1Yc|A9H8Lo<DXqnY
z9x^yec+_Yn{!Bg69bUgLzt=>_HdDX{2$&=c2Oc>Msl92|5d)9u%!##v$U@z6D!eb{
zL22ANnT2osCy$Nh$uSGQ7kffpK!iqDONRx&nL%u=PKElg_#IP5!lXgAwT7ty@&g2m
z>fg#*MUtElz@UFko4SVA$%%>@_7n}!{()#uRlVIyG9PwKMI7||klQ3+aYS*ZZ9jDB
zY)$@F+KRqsjpS?aQ2sOrM9b0oqaB3YxlUu^-jw=?LNrQ5D@)tfyz-23jg67Ak9tB-
zRMBNMyP?ljHN_+OiT7g1t8!$xU?24>hnYw;HNGkSQ!bCIbZ&J<TUhvPB}KyNnefu7
zYx^<7Zf^u<V&8i4E2KKGFgGBl3^D_|XKsun?}FER%M_sALjNi2KC^m))B{W~2)p8H
zg`lxbi%mkj&Bs5k)fVNJwnhTbIKSE(5vF|SNL7h8fEo~{i#E(*Hns@vXT->N#c^8d
zGf2s|PFvFX`9>358nuJRr$8}9%E2>)y?TmqmFC`>r0bQ4=i?6`_u5)u9&QPe8=PoR
z_d|MxZfujupnAEuuW^Lt{63-K8S?0&$?XYx8sk6v-o;*5R#_x2x$(UcgJqpzFy|di
zH3DvqQZ8?L!%yGbY&X>KucQdjDffwLCAO;(xa^qm1fauAc}?HG6FuRvc5UlMDyWDa
zh>{z^eb5s<BLboIb~Z48jEjPIs9g|Nk4&MzCUJqvBovTN#KcKKcnzl@f#EYPc`Z=N
zR>BIC$v^NzkTHAPy@8(>uJZcQ(!kdiyPsOi2w?z2u)__nF)is>6_yYGD_$R$EaJHF
zW@zwop;6uZ9^C3prSFgn(hvjbjKvwMIQ7UMB{bV?f({3M?_TF{NWet|i(UO<OwD-O
ze=36|n&n-dWV-?l_`HA`xnR7yHt_>hUi&IuK#PSY8)#Xz#wu1-grCDE0M85VNv%06
z7Q;~0bj@mm>%^axJy^&ZuV);{@Mut8U?N+{vd5(w>yOV@r;;DaytlAe0qQDhHmRsK
z$Bx$V)`zFu!cZmB*Flz|!b8zOWkzLhOJfjGqh3GH?KyJTf_h`34w&B33)7P{M=mF_
zDj`O#CqDTw04oEcPU2nJ<lhBH*p($tk6$u>7tKnG$kCT4&@Ro(i|ZD5g4zJcug%F4
zqVZGKf<{&#O+X9Jw3td{3~G|93HGV`cDBrG%YBFdp?bDt7Jq@Jd;mtgmZ=ZI<U2c5
zvG0Xa4&vST??@}i?~h0bAi!WA?b9pejo9aJb7^XR*NmkO)z`}yA1V-Qo*acy+1hqS
z3y>OZfAL(K@ZHC`wt1!JeC_;iDnO)1iK&8rAZolNi=K=oe6>5!neCH|&BTnj3GKgq
ztzp`a&W^|IC{56?!o%j++1mK%K2SI67)I(<jta_SiO1T(J{hWh7{s~}s+yDCA(h2Z
zd+u2X|5Z&MN+mG09DP{&{q&h8>bvuNUh`&Y4bZY9T9~lM_D{6qfn_MIv5xn+nyV}>
zzt~=wnwe9Hbu9fx)=1Si+n$!1-6rf3BN>KCO&fgi2;@;{-2IaMLcbz1R!+P$l~l!r
z0Cxtwup^03N_`%+ECL9g`=uob+MPm2&sT}i2QM!tmskd{TeRdmRRIX}&NxchuwNLI
zqO@P0=aV8>rpht?6M~I@EEiqz1cF^k!BP|6CLQ(8y#b*21wdzf+Jzp8tV47H2GXsH
z3i4IqzPWs4wUk#%*1`j?^+4VbAx0ITQr7U!0|4N0c@I6XYv+b0-(JZMyI(_MuP9TZ
z7Hgx=+fJuC4CoPv6ep-MVJNLrq@?<eCW%Tf-1WUs<O@hlwK_!;)r>}o)*WG#-JPoD
z$8mXzDLv4Ad(bJ=1V0NS&q~aY?IWZ9F*(Z|wq7bFFAss%9G59EDzQ!C9Vg>-q;F66
zt`mM4(vxWS&+Sy~3N%=m-{9a{U)Kt2M6^9PZr|g{xpigfjAxMnh}b%yq)3JVtI*8)
z{^WNQdcoP3aZbXZ&1}}&kPdne3KA$%#t17oY;PeqnD@CXz{{NIt^4r$R`+18&aALi
ztL1Y7`(vg>5QA=vd>h~zhmAeoV1h46XxNn^RKh|RBcpWpH1*(3ITH^ACa(RBHVMkU
zU<Efa5GH;-=LeYd&+-IJDzsfD&&&pCbBNR#oJCyj4>PvbaoU~ud(5D}pRu7Ui})zX
z6T)ci71d_GIm%^K_vJ1QZJ*s$;2qm$@gG+w>VbD;JUK+W*=ot$Q#bzXwcV~k1o1Xx
zYPs*r3tLj=O$Dh4-KeI;Csu`(`fn>eg$vgqH?4#Cn7DAhHK>Da6#)%Mq=cZwiMBR8
z!o^EPRL38{%xeXheX0VIN<H+JNc?FyxHkC?r|TL;P+uqsNnAy&LcyYSJuSN5UP6!+
zn@WF~qp7w}t>%$mNfjvBW%pWKZe|TI^q`hn7w#JUEiyEj;6Z`Qk)jG(4^CwoTlb^T
z7@4kTTg7ET@(o3#`d~TkkRv3QBmTaJxR$*-;wRAhV@*b8DXs@^ic*`eTl4_($pAb(
zRMRvuw~nTR)x-dtO!29^_Q?wk%qkDjA~|yJE!0!CKyXZ!U1N3?KVUs_zKjgfF%!e$
z_Q)%>DyI=2k~W=BeUf{YDhpUERkSAT>Ekn9Mf@CyjsrY=^=F{lR}L$rVl>$7(&7Fc
z<jSeI=W~>Oe3xJ&hflO%p=`tk7T8RYOPFgVE+fvgaAA}t2eiR*EjKPDjkXG+!yXT9
z)r2m{i@)}v2Ix^b#sC-z>0kC&cIBz!wE?)AHShuRLdUK(Co#gFlhS?erXiNjc}C%d
zD^k@{ucZ@ibaE92Pf18^_&3dkya0sEOL5Ob6AF!+@D=m#5Ud12;NN(`{NA!4SvLzE
z4~I2KqbdeKi{~g6|Cc!UK4_NK85%A%vo0eymSD-il85TxnXA>CdZ!y?z$z1RPfDuD
z*&|n1Y8GufdIlIedIvL*I>4`oe-sA7;j?ZobwUyfkxcFoQVo5Zjf3!o={wsj!xuPF
z-Aw0_&E@JW91~v%`fzd?BLa{qYbe%`;HXhxOu>__-BU<;asy*y7e2zXYYWxV-NmNe
zvQ0yyK+LH1&CQ3cDvk+pB6$$EPB7ebkrwM#xGwW}eRPg+l@FsT{2>*4nuv=P-<3#h
zS4IRYil!T?b}kKtkQbaAGuWG2I~x;`+Umn077tD?$kG<o=6G9j^gJ1k`r(8n<K13U
zQWqC1QKz~Sq%IdYCA!i@ym@(VKX34a7*0pIJs@nYs-pZ#=gEoRI;<!VnIr^SBQY0@
z3VfPC?+CtErF509t89P`y-m+>Lqz8{$*i!(n!8F{K-q9U&n$I2J{&=UW$kA1t%OEL
zO)F-=DGD~qJtptfeS*=K-uyV$%lLG4xf}-If|j>E8&1RY2SMXpw9v16DggJ0=oQ&O
z2=pIs?AD=Aypubo+}v5y9@WBaPLJ82O+Fz{_oY&#T@lNZ>N4Y9vt>{r`sdxK(C17z
zIkdZ)nb?m-l4R*ei|AXbNU5Zti$0-@UF4sb^z#N;#Fi&~{@`!@Bi~g9GXue3{e!8X
zM-Yv&+rxqM`kh#%yq17KSyg%_qHe`{+Bh1*nw>Y9-zAA>(fSvrv!fb*i1MuBw)hJ5
z%MGS;ZaovygMjEOR7g~X8%|3Bkgz*@7nj_R`appX&BSI*9+t91%X>y4uyhTc-*kZJ
z1gn;rR&T5h%gl4H%oSh^e|j=9VPLKxB;Un~C@)xVTAdv(sszC0J^rA@^#X8!&(J(a
zF|7k!8X&eOB&e5jpz7$pFo*!)_6TJD9a8wkdNI>_G>l@BX%{(hJM2|YKdu12?PN<V
zN{>d)r{(YT&{}GRE#N0#x`~<&U{Q#v-7)+rhmkv~=x8&%m*>{jn~hRQ>Qj+6-20<?
zi~<lWbVpglAZqWJSH!oLtsoqAz5hp3TW-yVnC{0j3YlUAoY#Tm&yU0|ORCB!U5~LA
zIG^`M$w&B<(I5q6@ZJlKR2lp0Q>`f`^&S(72AzRUoSwKxYK@YF!HE}kYMAl%dwxy$
zXLb?at)(F^_YqtpCFKB%y^cS6->r9ZcIC213R-W3>Haz!Ann8k713pNBtN7)w+|Ma
zju`SA6Q?P>w)WW6DWbgl5;qdP=S~AjHx2<~Uj`5Wwj_TWoeD!pFr5t=F6sBN(88tH
z#gqXxlxnv%82Gqfw!6Ds59ZT$lngk?pa$Zzn0rM3_|d_xU$JTE(0BdcOpDfnU&5y^
z_GSj@Vlh$m!aN&+Hl>BYnM@X+K~rc#pBXnOIxP)I%Xx5SHu?cdXP00TJD7v$$N#H4
zvbGP`^F0G2)7^;v^gNd{CGhH?rBChKx+4F2B1r6{x|~5n`tRT@56X+~TFES7{Uo>9
zM&>WOpcm0kdb}jl{K>NwLb7#Q+d>y|eoL^$JQBr*u!A}ARrmFQb%-kr;=#0A`k0K$
zD@MyHt!wEQ1+EylXP3rjw{^ZCm?k}@r|pAk3DC;JHR&hbz|-C0#AGz{B-07YE%EpT
zbkFApKAa`0gn!f02-Ad00JC)PXIRTX7WkG&;wyXER!Hg8egT%Ec<5Cmx7#^K`)!+^
z|7gsN-gD>UU$t5Cp?%%zdx+;}@JS$n_3Ws{i@Ma|kOrkJx29v9M?sQ^Z>h!yZrfdj
zh(z-DEDXH++(O;O(?K+=&y)&fgkqY8c!>bc&99ujhLf3e!x}1%e@ZuTAvv3BK!-s|
zSWB_61{s){?$`FZ5wXs~U&ftqCRpSK;mag$w~vT2>CicxRJ0?g+Yj9FuO{`z%!|H;
z!;cWs7yx@9v^I#ltzSP)s#S*%ET`)A?CLm{r+BflH`2LmR#Pv`USUP7jy(6?Jy`&B
znH{|t&}+KndVT*`!DaR~B2UZo@mgEf4}+0}veUO~6(Tx&LdZ<*<B3s_j_}ug2G1R+
z;^<KT+uMmUS5>uKW0;u{={uuIc~6Vd96k;%e(q?adC?p3F%~UjO6)HO+GmG(&X{h+
zHp$!bdxmbY{-I3V-30LMHA8Wvu01}Ujr*1!t|Z7#%HsnC<}C?ovMyg^&-1^KXkxLm
z4bAZ#MfD0)fC2x)D>`!rrI}`sDG?W2ZvBkQT~_bT^`w%of{&Z)RVhY_F0=sGnNkdz
z9D(1uJP1INsY~hU!L{V~4!kcM->0IJWA(;yTLI2LEG5nF*<EJ`-Nx26IYhYxdK;FR
zfMKzsoAf2prGu6|sx!h7w&e!M?<6%x?FKG!;Jb+Cr6-8&@^Q9ya6p~cX{3D)!w*pj
zk5&3K*_U4N=3E%p84f|e$;Jd+st>BBMwFA9Ve2#$(hn)t14LXg&gLnq&mfWT%*@47
z@L;eieeuzpKj=oxV*at_cjbJ$ehAh>gR%T8G(5eNt>zSD2L((I{AhT1(-8BC_=1iK
zk3om?!HLa-d1nBAplGkn?D{3#Q$W>%OhO)St(XXfGxwNPPw>NL{d*>pt|aITWzZ{g
zP+!nj><?|{SX1dcw{8c6nKsgH?SuKG@O$@_mG{OHd>9z@YH>&(JsNT}_9QYbZ=afU
z5+`($iQ}qz7r6`7H2*0m>lxbRAv{A3v3|Va>UcWn5Zo3B$;(3SbGbb6VZfotOWe9o
zsLOl7O?Y^=2)Z_;>hT@B#@~;h2i)j|X{&_3*>A9H1^`nmhQ?PypG<ZFAw~*@F%G82
z!;|%m&0@6|q@B`^$gyN7pNIR_+%^$Q-WJ;taBTLUalskIO~Xg~+O~pO5rd6fcwP~p
z0p28GV=z(8r|{5%uH6gy^9K{#hm(>N#412$c0!;<)PStdK%?ZKH!}xAOil9tZ0E<n
zj7r~;bYP%$Vi6@&dpJUZDHpfqAmN+yLX5+t*4joD4YHq{g5*Jz7TRbc7u*6=by8Jj
zj%5=oUa|e|{P!HG78nmc<CXN@vUZ5rrSRK=o0W7<r>d?5U3cxA4kFjSy!C6vi`n%P
zMpIx>d8&kzN7YT!IQ%_4U(J^h>;S5EA&)C3o^BqnVWt|Y0wYtmgpnkVl5kGBaUX&9
zfgB<k86aP_#x?22qspOS%lW=y5mp=KJ(fp3Z04|=p+X)Grg48MD^CUlFD*tAjOm|j
zO7-XUBBT3Z(D|o1Zup<lS3i~@1$)vRDYB#GzX4O&U52(3j{U3AVtCHK{xNM%*$x2>
zTg#k$!y_r07|sg)`&o?;80puRdRV`K$`{lLgJ$&V+P|=;aodu}zw7AL=?n2p0{Rk@
z+B}YBpM$<|aNqls<J`mc<`rBo!slXrix@`du$O6QEc|A^s<`u|ltyz@ZQP^~5l%RX
zMn5W|;XcW2q3R^rE%1t*_}A}6bK7qGm~*NR+5D<3xUt*;LDFdA2oh2J-YE@8Ib1aT
zSgk7uLe&d!MmiAUg<7cKfCu@4qM#I@gT6=Jx-lcUy*_jEJvdjjIVRX{BL?1ZING^0
zq;a!N7Ac_S+TY>IsB7u2-p?KrUcng;hW5b`ulD%<GN3Qus!4%zo`MBg4t3P6T=FKd
z_v-><3q-do1sY7BO4&K9uB@SY5}RHuvx1r4esdtoKz%k6U8{c8s#HAN9Ono6wKgS2
z9QjEdFUM7PR*Ks;npxx9x21xI*c}Ivwhzpw4?sGFso#0R(I7R;$Ywlb>m|Z9`~Ebr
z&A_cHiRa!>)f0k{8C&v85Bb-hi~Dan;qdN{2?3lcAD0$AtKynxZFRN34Oz@IEMO1j
z9{{9&N8<AW@|(50J157M<_=vaVYfkXd6XV$$3Da|6$Ag#vY6Q}1hC1b{;=NB(Ourh
zjrk(rF`c-_B<AA%Nj&!|Qk`XGuh8t|Lzu$cqlTEZaD$`OwTg{$zY9O7md*k+>>y=;
z(+FymCsem#y=AJzzu+WrtnI5<L(Cg!nH|@fFRBl%0Ez^Qe!?Nm*L+qh8gzS=c$0|k
zmh_!SESnVRXwKOZ_d$o%HuqPWXnhm@e5_?pkZ~Y|@RhBq)gi!bcAxd7Hg0<$*|S|&
zLL&fDWM$zC>L<x`^JTESzyTY!&a$rE{CvKUDk1VI6q%biBilNj_s}o5K?^VQu`lE`
zS!LWwd1w_-^tDcycHu?_@Aa5PF9BD@YxyQaBmpFU+6Z8~FhHPmSdTM=^{!Cg<^OJd
zLZLcx=?8CJhO?VxE5+z9?BcgPg~<}*fvX(0%bNQ>#;yPG7bFqKhGVq~vF+-<63^TM
zXeU+VF`^-&{hvzpwvF~=r{7TkDQGK8#b}M|+Q-A{;Lkdh%&Pm76HyCKnkBE;f+ZR*
z-`g=d+5`J$GOEp99bRdfI_LRdgN4JOw)Jp7=x=6n9-F?po3vt}aTk$_0`<W!*bRGj
z8tj$SR>0-|iuAMb?Bvcakpa1?_Zk=uD6=wJN=6DJV*1cgCWa<^`geM-G22#X02p7*
zHJBa_H9I(i@AMF!tg%bXgek%K;wbo*=voU4=k;2IExc7BeuZC2S#;_K(<qh7Rsc<8
zlhU#y#C2>9wI^A8MJGhUCZJ5P0e+`TFs`x%m_nsH0m*5LZ@<>8=5Dav(<{_tg7AMz
zq%LLf_v~@UH=DL%7MK-V3pc<`e2lDE+L)O2bnEt`+0lk8V@pO8(8Ai&f+tou-G%eG
zMany8^X$KYcy^uVKF)?uMEq$PItBh9LxK}|KPjr)b}_dNdeIke?HsX)>(QO^af2aX
zmtz*<cYKGpVq8kd2*kx~j-wSb73oq6L#JV{lI?x#thGLj88e{!$Sp$al!E5l1=z#U
zZfJXo7!IAWY;h#1DZX?j<7$F6F^5x6gw&l&3lZjgTAz$UD8o(?+6yaa=>93gS*2tW
zdWN~a5O7_Sl}zW1l}i~)oU;aXhkW8tWiP2RNd|LF0WfKBw1jva6+l$8kedrVZ(=q@
zx9nw`Igxq=^JSubahW}8Xa}7AM`Z)mU{?zoD}#>~h{Ew;p3dzJg>1jbul903P#L7|
zV~)b)&lsl5yaJn8+Zdcydr|gr&)k0|4J*bS$X&{9Jsh7RsmAo8k%{Xu@VRN<zCDZc
zQ9It`H*7K`yWc883p+Nmd6fNEtu8?U{%;!-(d^av$?)o6xYZ`MtnXY(YvtYI1b`ov
znso>dsXE6M{hgm0Fd{p_IgSJA3b4!a+N8#(^L+kr5g0iHJXoybib@$~_p?%)X;;g#
zN~Ss6n3ND9JxCy)dC~9w$^;Ey>1aQSJqS`Me)V1P@(gJ7rBDiu7~V!GPPaw&;D&D)
z|GSeVl;OU2S`HM|HvXEA5L)LV$&kyyT<}gIZHdhnyqcGDAv%H@mcG-!U42O_6b4r2
z)rA$JIOL0#Ggy!4=1vS-gxf*3aU$3_3M<F3Kd7Gv4g4FK^eq=vAFm3uyD~mmmcA4D
z22^PtwT5u<O|};ol_y`w6)bt{kOa~fTYex0a<5zD<S##TQNa-7vyOS1v0I1~uX2F)
zumphUPjPk_df~}N^^Y9Sv|GYj+%>Gq)Y7HFAfP?NofX5c4q@IKLqn^KmmuLHZ=xk*
zt7-7?xMet9CNZWcRY&+>Y_T|^@PoHnuA_}=m>HPhS?ZkFvsvQzxs63o+{gAz$GU?H
zv-F!h4ksy+{7(fg$u3$-^+08mAxPL`jEQoB0MjlsUUIMNY%KtR;nQ&N2wjK04c%Gk
zIuyWiF3RmTe^SLbv;u*9LdU{DlxqAErJNTN1E=aMSlAKqG)m3?+taVOJ1LyGGX{;E
z+$|yJ)I4C9M>bF<s4Tb-!Q$`F7P?Lzgyz>>)N6gueR9Z<;7Ual@LfVVfoyuRESAFh
z2miLC`TPORkt5qed5g!XM8I5}nuN0)Hpit;?>`278r@lhhW`*J9@Tj%LyFN8mJCz}
z<F64Qgr#vA(j4?&Sj>KTF8HhZ2A{^!8)6^nmmKZ~4w;n1vuFQCZcI=Rc}9ijMbV(Z
z-f+njA3UQcmBj=*j*t4y=C0nDC36lDfBqLo>E|Ev!t<3WI)I?bHt`|uHa*0~(r6-G
z=#knn-3O~~iAM&3@*3Om<9F)jRk?eK0RyjSQA-6DI2j-G2HF3F<J!;xMnrx~7}*Rw
z!UN<@xvr@fe@vNtMM;OkPPu%F^$o2>9vVb#1L+KC`xl$w4H)!BQJ$G3!;YDO%iPfI
z0nexnMlYDtjUlpok2tKny%~C}SwW+~rL2Xx*u4*jf0kyEg#o_GkH%db-BQYMn>1!V
zUz~5cJ#V;|oEcFHop!NT2|J)rU8s_if+oI>|1k#nz&9t|DXkc;=QFHuP12~|(HnPT
z(+HD==tm*&?(Hq_As_T#tjTV}-~VvedwGGYy%%f>QH2SV5h(%_>`=VL_>v2Lb3LNl
z5nzMl7;Vf%(!0%~Z&18nT>%g(SpMaLTp2Q!8uGpBETrsKTxUKuc9NHYl-Bd|u*XbD
z-z~t5)ghFx%jlzcZ$obkl7-51^pVNKFcKUR$?B?L@2&`KrZqhyoN0Pee8jE9d}40E
zr3EyX2|`JNNiuFxTnIh(oac=v^UU}`mdHkSLA({vqa=13kp}Z8Xgr1HOYUJ1!Nl8V
z2eb+^M(D8cve5i9Nj64@VAk5Xqf}||d#GC+W((S@+W+qZY`^dIN{$JhhH;+HD)GVU
z`x(r@P#Q4aOA{G<L1~$~7yOvHs@^vc>Arv(lx0Er2!w(Xo8&anX!R1HSQ}1;au@$1
zMQIL0?rP={E^FF_azENP36LFbx|9uW2Tr8xlHX8^3U$rtIUnC_k|i-M9rk;K1wde_
z{r~}|F#V{@fN_QiWt^&)mf5`wk*_(G5b@~<+PN03t&BVwJ)L1Aq+GSeX3iA){-Qzm
zMfxuvu@K$8?0F*o_ZxukP~ns%O8i1;XgBz4u%7Xl3i?#{LL|=x{y5MT@{M8SmqN2{
zU_PKra9gwWQ#`DBWr05pQE}pr-EGgCP5Ww@lXvylYaOwN9l5W|bw2kuL?09xMbX<o
zxL){GI9>O9`QHqEbMB%?MHw>{k1C#V7l9JHNq*X3mDtWOIxGH{;@?bBPADzScOmrO
z4n?W-$6|Ity*l2n%v$Y8M?jeo`%L0pCUpsair#mpQ^7Yj2}+nI#+EwF`jE0g1*qlZ
z0BI7gKhAzlKLic>Cp&}b6O#4Z>Y7lvIFT{#nijbj0C(Aligw=c|D|ktc-~nSOH_e9
zzIHg&q;9x&_e7<U=;+H+{B{;b;LRc<ouA6587kChqm-^WzF9BjM*K+8EqD{tLEN_P
z2_?J!2Lx+-RGN&HpqgDBuNT_!4!WQ9E62!_W+NlA85pcIgNqjEN!BbJM_`9^Ax9%V
zbjEh=y5|8cC}eGp+$>$g<c$LRG<AWN>VhAJ#d&yDPMo=9QqNA6`6n+I_69mgv4$$c
ze6fD;cl3@-ZNmq8{I;j+ep)gB2K@v~L5NY!II7&9I-Z778~&D%tt`KCmP?4qr_Xg0
zDM59~q@Gx`4gjR2_eC^0zWy@m#E|(MV?%-iF^Q-x+<5(ygj~*01jzV{Ifgl9`b4ax
zsU6BYr6bB8T<NAX7Z63!C|i$tVkq$QnlX5_*q2jMf>LljY4)JsBY>h<83V%$JeXWw
zv-m<1pAh&+s$7LTKOpX{N5{pPhM{GfzQh;XuyD_Pov<1NR$)I6{!8qZ9R9}1ia6&K
zP1OT^hy?U<Q&eQMdx-ux)+jx=KVAey8ANn<@(-UKM#rZLi7g0Z9zh=(N%m#<6ZYX)
zbw})j=N7S{G4(IP-QaUWPJ<SBT%idt4GI!yjT`KnrEQy$LZ8-4JjAViIz|?f`7RuG
zHylJ9c%=<m*G}{AdhOWYwU5BNdsxcmfI6YT4sykD?P7d6b}lA@=#gQ|ocx(DRX;?$
zFN{NdDML4)V8h;idDeq<-^k61gQQPU<HH#fuhGy!Ww`>BQ_1%`6h9XR%$Iwk&XFKW
zWA4>XF@Cd%5%zU@6a3a;Maz)D^Ii1!*L_yoUxDRLwf;OUz`N~wy8z)@N0M}m{f^*A
z55{HOYh}#AcfcSz8JlIp8rBOcHad6ocJ#@;r*J4EmYtk*Ty5IE>jtKWRj-Q6;GOVU
z<#2HxS}qA0(@3NdR6Rl9a-VQ_-+$~=OGd_N!wmJ{*ziuGF=J~%6At)VgI$4PV$ETT
zydh8Jf6?!SODASBOP8IKk_)knU)yht?)H*zX_Hz80&(2d=0zd){E@RGN~^nejiBUY
zi{pr*moWb|uEe8hNlW!D=3Yy?Dne?rqOv(~^$ld#IsAOvH8|V@Kh1eX_))VE3rZ`N
z)T*lrYbAyAEf6TwAGx^!_}r)*JvhWHz7Cm)-fU~P+#UoGjN+eof7dGu4g;29HVb90
zSc@gA&B`H(9<wHmCbzHM=&+dFj|Rwvw&p)xExGfXaq`?rl@fH1xOZFSS~xfub(%GN
zCR&@qaL)_WyBh?vHm98kAjZYq_lfVs2~3N2LI#iEqE`X59QG7CAJ#`ZLh8=0F9+C5
zyeG=xb`YU&H%P}Jv$V(DJp?6n<t2*M@v-XbR&LuR+;N+)t{DF?Pv!SHQpshx!QHQ2
zZHIVnEJ_2e4xSwN5AEn)H7@_@jCChBqS>mEvYkoW#&vo_`q<S?YhDG({A}VLCCHi~
z&&zTAPuUqnrg^ivm6&e0<`w7!<(}-MT3Y)8gwa|nVHIWAGH=A?z+;tp#wkYbP>@fM
z8HMO|YsJdulosE^5v#wkdPPKB@}H974Rh$1%I!sE2R;e^!~x1io#$YaRpgT!uQ*_g
z0tiU;bUPj5WQ75T8<c1|qav2FrVzvj4WvlGkazg+%H(u0wQ<6Xz>Gs664~SwjWe+Z
z-BgC=;k}O=`YfMKTA?(u<>(|_8u`we{lB$COj>T5XA_y*FGDZ?#xnB0qC88>4CasN
zn;Qr*bm(O83zRMJet?N*n(;ddl_1w-X%kIu{%m)jc&c<+?_XnL=h5^f>72lK-qxPe
zXRYA92*8=Sgf+iZ+tdIdD;Tm6zLpPFLTIPf?V6xc)^_i+&+YY9lMx&gThm;+62IgR
zfo=0Vf5DccZZY5qd35fIzkWe1K0jRd>V5QeK&VA|Nu;9;eSeh~>Die;_8}$~&uw$|
zyIjNX<u9CDjMrC7p-L0+PM>QqpaDq)%^NSG;xR=!ISO}hgO40B+>bc?;j2XbwJD-7
zm5&Fd!OiEfGdpk{)6WTK-C7A}v2`?ng^a)MaL@B$o-W6=QsI>huv5Egd0b=k_qs*T
z5g#kOdO$reqpdZ2=(seAEB!CQZ#^7Mp+j@Nmbz8ZyS>bd#%|*>L{D|M#U<)VGcxUP
zTzV?WYXn>mV<NeQ-mgjza0x9w|EmLe4;c_1+g6Wf@`iieY59JK!cJJ`IDgeimEay}
ziq_XDg_YF;Tokl$$JtGsyys#g3Wxu${^#n#^`x`6NUp`4-_8b%MTDBL0`~U=^<P)P
zn@t|x<ERmND+D8^IoaRY7kg4i8ka2}pkWQ%xcXSAynmbFI2jO$eGZwlfMJa~Mn2fW
zE>v<_OGtiAL##4Us+(Tia03*bzOnng_mneVxW0Y$#M@~{r?0WMn{nsu&|$vtpR$ps
zpp9bsbhB80hh~7b!wNjJsSC<~OhoUOp-3%E_j}}CumGtTYR5T<cm3BpN)`Y!YmU&k
zd@lEJ8F^DFNwxBJ8G+-)izC)_yDc}WZ!z};i^Bl`CHcf;D<})Htbb(1^M7zJ(zT)*
zmeunQr@&7p{(dB!om6*Niy6)=00nST0YtB9l@cPLz>ZRmj}pue&lLCWIDS?LUA?ma
zEPx{AyMm|DwvrK>;!u@Kd47R%>6us%1aY%-1y81(Xi5NBaSZ|d54H05#^gz`UYuS{
z60_U_rXWF;2Tfum`~3mVY2omwf-~pwR-{nl%?EF``Mzmj5CFpDb_G`A3q!;)@!M=U
zJ?9$dgee4`vI?HJ1u!2p(r?Dv-}UY91%{U?l|NzTKLTV9e11NHAXTo}%0|YGi`4=+
z3-1*9=31YTxSM1Z!kTi`$V3&h1-rD^P+Ae$gdjE>$8feq14$k%*1>F<jbqqMcQ#&8
zr);E}Bh?HkPuL*Lec&_TN?j5v*o<JK>(Ex2GM(4l@@JRCi{}&^G7?3Ff7F(}WUV$m
zH7oxP8JMw7w-L{M$On@XW<ulWzCWanp>>qW6J)$B9Zm00XVt;?lK=H8GS?t)D5$?0
z7kxKEL@yI6&DJPw6V-Zo{L%UJY0pkk$t4gHbJZ<2{Nrl9(UYV{n2%ti3fLC6qe1^L
zv)tj{97F@-v%NfumPpLh-jt@%P<5B~7$)cTl#S48SjuP8QltPX)4oUH;|MDYM@8?-
zZWBvC%u=o&mOW$d*+5tKv||>^V8!|divLRdIR*a!H$ce0!#_|q--&p%R_4C%AH<$6
z@*d{nTgvGYAtbvbM>Cq{%A%)EXplmd+4#?Q98+_Ejw)WC6Xe4_SWIDqTyfd!d1p9=
z_98x;$*{kF4G1?+BQDjakzauCzRY)k(U;KynG6plHf3Ohq>H100nH8wOIK<f%2^8|
ze<NlUKlG>(f>@1C^N9rK^^`n@&8Id6pzU^=U_<_OdTH_^*ftM;lPK=GK0VI>=f#wL
zaT@b5y?q{a(s1ua!t$W}5#?U2%5Sd{`SX$E;#?Z|sGz`fF9_EV3KMhX`LOcz5h9DA
z_w-9^h|NN2b}_H0uK<9dT&=W5EpY#KUB@ti&|2+!M^<ZxQ3+nHnI!7$S#SUU32mdE
z|6P!BqPWyWRnSDgWP!qPg2Do`%(5C$a*qw)zyt`jWdFNywbWW3OvW@8EbVYdEv4l#
zd^N7?>@lA))3={slPH)RE3mlt6d)>R>A&K^eKRuYV%wByWo!#lF<J<FL+Wq><wjqc
zeDAL{BEo2+>+ya&zDm#Z3}ey_Mb4~+_?QMr>T`Rj!u3?`Wzu@XH=zvQz!~S7-mJ4x
zJ?L&&UMsbJhj$R}_!XV@N8gzQ0$u>GCJHE{4jB7=+Ny&3-GN#slW=|LVx|>ZHN$X3
zvYzidm#BdhBUS-tK6j88e{Sz7#7MrCxD_E=8#*6al0rA%0DZx>2*pt&l8NNvT8CWJ
z&s(DmqT;YJC5ITk_$Pp%bih^t%0n2}f5-@#?d$pXy<INgA;q|o4u2I|Yq(4DL==z7
zZ`HIu<1`W4txz2xxXZxHcFG~tC}}*jceVvnzJHZa8wudU&({R6Io69J$gLZ)eJI*h
zn4=2ETUuaj5YBuRl`W|Wcj4Nvu^D-^Tn_dZ#kP8dIp>XC%b)u<(bO<=*Ww(NN?AAl
zZUmwE4ms@ePyJ(++w{A#om)XOnn%L|N@XhA;Ykv51+Ek`-6c*5I8f-NG9IIfuSoP}
zZn(OQWiEckeg9o;v<8p}HS`V}js)_tdn}D{i*2b24;+P66!Rh}@-_Kl8L&vcMUz7A
zul2p0-+yOaLwcty`D$k5S$@!AKPKBAO}SHubd?S&Z@(d|xBX|{q_E=CflxThQGl+2
z5w1BqZCSKt@`(_VIw(WE!@I<O0M4LmX1|X&Tf6Io(!kaFq!h9`zh+hH+mm#1G1+9i
z>hUQyJ==-H`Annwt-i|=vWma4?*yDM|B0&Z(hq#Q;6|sL&~1jelp-vPcVs&ci5FpG
zE)BCmnrLf&2QZYk@(?*QaUGu|>gUQ+$2j*nJ(jnZ4cMjg?hsIBR6PgOU_NB*U)XXN
zog;0oqFR<tAHtN1+*%Mi?2`B4jcg)O?hjvKj_(o;KdE>js3kBLzMotkV)L36o0_-@
zG-Encd#%ltxT>II$R@<W?MdM4O{#ldL0%d_J@O9;sG}GTG*v0pCG{H1k#4pPxH9Jr
z4sZ**(kk$?0H==0l`&$}BeM7##O?%$^Uq-m9^hmVu~_;|T3V#r)pMLJ$YZ2G_}m?>
zlP+O(_5o4HJiw9SGw#FPvZ5Yj^t=tT7C_-UT?l&<qbup^>uU-4;2BAIK&484_;hVY
zI_o}dLg=RhOc%vr-MZ@)I%HkKI?{a-y&TZfOO5ds+7jA$ZV43DwXa(dQN0@4;idqV
zcn&{bD9<5^TXC8U*MbU1KMhOD7n%*tA){nE$I8)>%zw^*saz4ivXOX>GaK0-OJF{|
z>bG_MAsmvJ=w4$TE)QOoiMAbi`>=Jom=3cxL8Q>-Q@{6qFzcsSqdpMkex+kUzD#cx
z&B;D}ibqxjpRocu*uERsNF+^YwC{Z%e0VQy@Z|y&|K$TT(v-WPW{olP*ajTV<z-~c
zsj^+U?WwewVerRo;dGMu3P)5JG_MxIsk$64fcexH%(U1desLYi9FGiCb5LEl<u<wO
zX7sH(*~v58OGcZ))(;e8tiqkl^ou)-`4OFLAo}(BLFRA^mu@!y`Oh4aTzX4r4)}Wu
zt$77+2dJhl;b6zY%GDzdb1M6Z4n2k>f*jg8a>&2#4jWd?PN4UKdlK3+68&PoeWfSH
zh#=<$cXEmCc|RvMhYR(s8%?z^@!t}Y5%nR6?#6pbIHBUW4J9*Dm^N=!!>f8N$MnyO
z!WdXLpepc58R>bs32+Li55<4&QI8$M2!ys{-`JmeUK;G1VKchEH&6k-b&FvEO9m#~
zl`EExk^7aMcJE^fOLL^;Qz!gI&{jpfR6Me#9tqcYahRDCD;n0`uZALiaS-*o*vYNN
zYr2E{joQDDSdOQn_Xw>c`lPFh3S^eH@wDGRdL6)HiU00D$s*}+I-;gZ#_G#fbZo9O
z#||1W>BoUjpe$*P`)H$=G7~j!CE6e88Iak=2T&F$s1)_n4$Pdxw>(V0^)jW0vRRd<
ztgHG`n68K7FWkE|>8G5C-^i3rxx47GBLx(}^+ekw(u%PBn|am0FFT6ECI^-F1vVu9
zTd2@*4TTVP7pkSxFy2bJFdmjEm0(={ARE)4{I}%26o!0TBiXp@VoiitD3+o{GP<z$
z*m|{k)X2=oT~sHBO<$UUa_{l~pAfuh#BRYGn&5;LCV%-yE0=`uU<XU4))Q%gCm6kt
z;&IG{r}M%~u=ANegxxYcB9>5VPXtXqzjXIZ9K_OH=v+LuM0C*^Qo8(RgGtK*a;G7&
z79oeFyn!H&HJkxGuidyPPUt0F&`*QW6iaSA#I4(6A9oz>k(z_u;1)jh$M)RobI=W1
zXJN=C(Li$@RU6C+V+|}uHYN7bw$Hh02#O_wVA%b>(BS!|#wbLc9lH4Z$Z~dLS?onA
zuj&{T7oy;`j#NEN4;0h^2{)w!*=5U4^dJS9oX%#Y&iP7T$Z3zr9KW5_aY+RR`>Dv2
zg?x~^@X`m8rmt96!ijzl2b!_ftk{TKNP5i9m(T5iUJ)6cdRw3@Ht?V&Jn#J1kJOTR
z23i)~#wUJ_+Z}kfo0{VJXoopLJZp~qi~Cjh;+8#}y@`puJmIFt5_yB#i`!yBKKE82
zjmpBOIf#gCLEKthZ16lp#Xc7-STg3{ECt#xP;~d0CMyL)S)!j~Q*5N>#Bkk9ulvH1
zLvyIyO!v}U(#8?m9%#8!ERDTvSp*^s`xB0qfF?125AfS`xRL|8l<%rt0bwTYNx4lT
zZ=V0g4b6=g`X;RuW~E^S6r7WIa6<iDzTod2#i67fKo8q~a1k}nAFYbn510ge1qnZV
zd6?OHaW0c4L1V#9E0gkbXCV0tO0xQB)#rq-5=g*QbvjCqqrHwUPCS9|(IDWAXnpeU
zKxC0+2mm!gJG@ywOF%W(Z;s8o`0*S;_HVNbxRXjai{xaj!HoL#?yKvmgbayYqLwRC
z)e1te{1)Rn**ot&OzocARAD57vJC!g4)6u~a2t{g#EE-OUnsS0Cuh8~edqr8Z|(bM
zUeu5c?xv+QwAq9yg7vOUXJID}<=y7L_WJ|VLP_sw;-Ke1@u?D+RawtU4VSLncJ$`&
zh7h$XBjZ|)WMwcPLdb9LGeI8`P3zd2g3Bv^T7Fj}hzVQ0xXB<jXCWS;W+Xo+#@dy0
z+8LJVe!fY8&k)XZ-zfHl7qUPd-1{AX*U`1s7O%Y0Y0s;l-YRxi4Aa$$1Wm!n{xO=5
zA)cR_1}iZ*eclT{F$_;|PUZ?>6t9_6vL>d~6*`KTMBYzZ@P1`94J(XsZ{LZ5su!Hl
zRUYarShWLI`-?Wx;Pp~6erk-Bbjpkw!Q;rnYlgyzl~b#m812@VvAa%M*@7$EV*Yw<
z`Q8ihf>ue}B{|%x7OT^p`DIqziazk%ZQ;}CpGI+j@E9We`=28n`Ijq+!f93CbO%{4
zQiok8t{{<#ypyFvn49J&==o(V@r~GqP4rpPMrISP7(|)g#c>dzzP|>X56Cp?f~JqZ
zhT@E^ut3sv6Pv|07HQ-g&II<4*4#b1ui=Tu9@qfXcY!`evNY5Atyzvbc9iQ2_b#uQ
zr3i_}fstxDNSwt;B4+{%BXz!L!9XY>XVf}X>6;d9`=rfyt;U;U9g#zIBp?~cv=ah(
z^MYeEv(-`b<~LLtk(z!GGIHd4v(x(Pt#Njt4!c5U_gve`Z%PFzth;P$_KvM*zYjt!
zHT#^kw$R>c{K+i8f6FxE<(jzQEN$|(_Cf^~#yX22L5Lz2r(t8KR^t&Yg5d{^f)Ot8
zg;8PgXxu8a+|_jp7G|crDG=tD&2}(9$^<y{u^JmBuh@DT5!x_ka$mDJTtslNamL}Z
zml^`|)4Sb8G2puv+nuOk-bGD&acqnAb3E((EWK{Iwa3roy@(T!n8~JylG^`yn;-OO
zQ&UB4+Cxx*T~WME%EX@MUj35@aVH)p0wV^#bFYOQoda4uXbDdA=Ync`D@xv9{C=kp
z%$N$Lze<L77v_STBB5+Q1~YQz4yK#MqwD`G?QM20vpJf(Ne5KjJevBc>AGNngR=O6
zwX1RPN5(V-_yk_~F%OU@FL6#KVcg)a<{iZ3*vcFkcQ$bc4ApAAtqY9C8O*-<5M$#t
z37iNPv$THj3>SzbH)J!4Bwwp3(^m&k8%~GYroM)~g4gc5!p`sb!Yc~(xiyolX}`nW
zvTqQwPbVJTQz=DPzdsTj;N2<b6qu7Jph6t#zMt*_3sH57IDq*VYc*SK3l9c!TZSc!
zN_ll-3Mh0_GerzpIL0K7sSc~kbmH32gZra<KT4Bca$n%X6my={ogNBEEgee6AK##X
zHqI?<{|#U&WwFPOAI{{H8J5T>bAD_I2v<=p`#{IIFTW^tj0?}5^Xzp!pJyP5u8b{o
ze+5DUPB>WmPgYwXEe=X<Xo?6Uu^@l(hT4uVMEr2krn;HR27=!+9>z&?f#W-^>@be}
z8~%Z6sFEj$Tkv^a8jToM@i!M{gQhP_h6H+J^H!cTnl)2uplzM~r7v~5s1IfE44Ed<
zEY63ON+fv)8qT3VlqC&F*>XknKWBbYe=?nDv-6D*@PxM{Dj$Ra5D?3XvX58XhC&55
z;NSs`dTs#w0i~wXXse^kBOr89DKg^O5y*z!ck_=<oJmCpz5s!{@wmTd<x@&ml1yH3
z9?>~!d#;}h^d(S!USIW~)WGt5*OsFZJNQzt67%ngT!zK;NX0%OW&kA)#06AsK(68(
zui7;y(VQcmQt0R%__ZM0U?8r>$zQTc<>LAGx_{TqH0^*kS{_Q7GyQvi%C-e(Vy^Tv
z$K5Zu6w0ygabWlWli8OMlUl_!li1Bk)kK^ntA#H_UU!d>&<FquCyUbq)l*%e6xHx-
z+=5D~2AMxokZ;>;AZrZCM6jZVPT$@8fAJM1c&BT~`~V&~U1^LC<@FSz90AB>USPsH
z!S&!65OvX{^8K^}R4S8PD<?gIM~V6%jiH8>xtuz?zEy4>WECp^(=8iIuclafMYA#&
zDDWiX>bwK~kqPVARqhYL%tGtWIwYesg~v6MZ<`_wh{tFMO0~Yc^u`lOpB<Is!c2bT
zydH~C!HNk*>luT7gywlO<h2KA@2R!C_^3v*NgHWbi;T6cM8^0GXD&S=%{fbONc^ex
zdW5Qg`B#LY9}PE%HKoqU*9>+zT88=o*lRDQB&FJ00Zqd2f|J8xbgmbuV3)DB3bet$
zgv3bAiGB-mxofM7((P?jpH){HWmi&OX(USL8av^%Ynwd$fn~Qbaj5f9HP6`ZZbyP$
zuqCyhBuC+m8<a5(-ci!e)a^>LV<y$cJ&W51gm!fcD)nM(QX>MImBkfJ)Y7K8U_(MV
zwDWHZz-|>A%1=^!R144JEnArygCPaluy4Hr4H=w6iipz(nM1u|%xQXG%b#H_9QX~Y
z-J}x(*?E~Tyst(^$6j@V9Uh3}BGtxKxxLqC36<>_7IVM#aIB>CzdZ^LRevHa(;dyS
zO8<yQN~W-w)~>}~*q#L?ZX1tUliQh7sV=v?o?2dK{oW>Q2fN+bW3{e7X@F-WM=d`r
zZgG<v-d+<@{BOr@a}ix#1VI<PSHgcsTKMl@NxjybOG3(A`=x0<YHon84+)`h^u58g
z+)w;adq5A1X0@m>K$&If9I5&-c0+cFt^m)n&)2%>Yz6hnO}2}^H`nLoo}hf~sfFNY
z4<su!r;)8`O9S4GQsCs&m#LrRbPVj3-3w839OEsnF2CN)ey&@)@_gM!l8h9LC|nKg
ze2>CA=gbQ=q}lII<kjkhitjiy%-E~cSWIuMX+1jis=Sm1s8V<!VOCv)B%LT?1H)~s
z1x`TW_eVRm)kdv~{lJ4@uR-*D{gYfeO97{lCbOI8QJ)owy;Tu(*^uW$u>ZlWU<+uC
zTgegHZt?AlYb2~FK*6YaIiUkaaw~)x2o+3@Cs3XD@6S$Pu+M2sZ8+V`yQ|P;&Q`y%
znvH;g<0DW$OE>uPxI`o8=u?xIb}%tmP}Q~5at|BLofKoLuVQ{N&stf_Z1knuM?-_*
zQ`)#w9!>xMZGVvX0i#B0TRn;(ml`>{k!H+}!s>$=&dMV&g%>%F^Zfuox*Q;3lSo1c
z`>zl7HvtC99;q*y78})L_H9e6RAd+X9Sbk2t)BOIiPo@C(N>;DC}80mvl><nqk2Fh
zcy>L1$>s`jnWnP@eEP$uSY+0P@~{8)`n>0jestY10Oz0ez2x+;|22YYw?K4bB-47}
ztq8r{oE@q@-cCO$PZ#)RzR!?^Ls{T}a)Q_R=<7kaTDL_{3D1J<hr*jz<4&le{5=%$
zf-_zs7qAdv%4kvSHMXe@FbeM~C&_N|#yx0zQ#i8%Na4WsrATFYi`lmmNpg7rKwa+?
zDv%Oz*dtgv@(D_+&&S<`sx?ytzA=p>Q)g!of4+O2l1|dPm`oD`qF(-*q#CE#oR(ib
z&n*Y_>}J-S84#TB;12nmu#Q&Moc)neN@B_+Lq$>5#_T3hwAGghvE&;NRmC=IiyULu
zosm%nX@8b(!HC~WZag1YbG&2G-%4&`db}-4Pc6sb@}yrG%o4FP8vp$V>SA3SsK^U3
zBgin&4a~EG7J4K+L>Xb=p;I0XStVIlB3$r6i81bTr{2Q<8JPK+to2dLv1aD!>CSc4
zc`Q5&QvFftFERZ5j82S?+3vjPdOvohew}&H3nzP)u-*q>$Wc-};!+BaqbneI+X6Ny
zcU_n~y$fd~07~t|pQbPHz!+WGp2$9x{U-{S*<+htU+)=%?P1IGr`_<GrKO%QQDwP~
zsi{M|SZ%D7ZEuNAt4H|H(0d|2BgMCjIsNI1M|OhTkubOwYj+k_@LWp8a%%0K;i}gU
zvN~AlUm6PuPRmEUDqK_{s(lK61$rFSK$=*1^MtR1?(+PQp4B39K_s)ne(qO?$xBY@
z7M9T?)XcB#DmCz9k#~%@_vLkpX=<KyTFj#&W_Rahi#6f^nl=v#fiMQMi11Dys7w(7
zVakIq`rMyikZM07JfRVHm%C=Hmn=<bzs*)nJ&Mhg+vxJZ_zi@_WPSVautz@4kxEGA
z<iq#4%A=x3c-2#OI2u#+Q7^)Hzk}AWi-dKrRbN_q(05aYfW^5=eUKmMkjLUFNw4BF
z@Ak%it|_!FRS)9h^V6y8sUban_X^{{l<yCUwz-?<24JJ54zUl$-Z6@Msal?&tZwS+
zg<0Bkj9RJv^0J%u_1wxn*gCb<Gi@Tkn1R<%&EtdTS-M5wBW|xC692tdb{k@XL+pNy
z{$ss5Yc?97K%gT&<SN)5rAY&tXV!SWgzwpoEJD4Q=u53l%tw27f>Y|>3<oCFqc!&x
zbo{euv52b@22zYbQO{YOCo~9_jHQt=y9Z_0(B0wQYV&ANMgEQd_eKn%uhI-yJ1A-*
z30NyB;6maSaq)XF+KaqEhLrDGr5Pw%(ppb!FZT+<iEZzJ04VD4ZQ$$Sjs`UH!;fP1
z-@28m>p3eYbCaHM`vFt^e#U<27hz>@oiEuYDHlQPDy3v}Wq2R3>8xu>J7EG>S9%YK
zPoG<ugA&^vqk8^M@?}gJusjk|c0{*a(%(q&dol=PU$^lutfeDc(FE!dpT;C)3z@4J
z>v&pWT>*OINHHi(R0Fzg%Z^z`oPZ=O4Vf<e-({H&D6_G#BJar)(3Oio8EcEBt%g1=
zI}A+UU%2VWPrJc7L#cxEw$~wxbUGj-uU`QnlG%slQ!HpcRRa`)JZH223^KkKPi!JL
zlC5H`aqrLj=;qgqQ^Fvpv1Q5HuzHX6Djq2eug)0Bmz!;T4j#=JNYRX!>Z*io42raO
zIz6@#CUYsnuLkj>@%sBjw>-`*k*!A8$daH@dHVTY6G8Vrr+f1Crs40$X5yNZcw7+j
zvFziTJf9S75~ZnFnHos553zFH-a$@e^o}2b-CD8$sn%IkdTn^gIsW@qbbc_-<Lx}M
z{`VmE>5<{a&}y>ED=1~RH$}HC+m-C7b$DRyI1XtGOZvNR6K8*(b(baFzH9RlR=!+!
zIyOYr2@8C1f9&^5PzliCUSts|AFy^!&t<I@ff?V?dcngget4+KorFYyW)ICE*n+WK
zB5FBkJWZH3>@2c01ehOJ<9@kBV86}P1tgl+X9QVji+hB!Xf<AIKW#5GB|PXUpPwK;
zJ7H2xL$r+VD@jFfy`cq04R2fl{&~71zwF9&6A<YivKnDoL>mBZF|%1A{%p&pmf~EJ
zKSA6A8<oe4_T^T&qBYM5sD<46GHV&GXzymnhVg6I=(qq7;Dg}LlS2ab;s9)%Y>3>+
z)@Z_MqEP6sG3VPT7tafjhhU%dAln)`<j*{MXe=VE^(IN8R%Wj0<LURr>rR0pdV?UZ
zOvb>TDcZ)O6~2?T$`+Mx^ZCXN4T2nb06v5)Hf-J^7ErxHnfrl3{Lb8K=}x{*3=rx^
zB}JcWe<UrUuaJZ^Cb0KQ$DCUX!;N1#ha1f%V;4gbl6qNN-#+PW!a#|`_UL1~M++`7
zGp)7f4-^RKJ~Wj#0hToFln0h60Pq7iDpC~Lc0tPH(&3GPo_3@AC%8aa9wjN`m}8hl
zSbZY2<ZMVX0K00ib6ixMTghEUC!}X6qK_Fm5`QB>Qf`KDTgTF%(hl(V`DZgkJ^4@3
zMFGdr`>}!@+7~XQ%o8jb8Pt(1rJA(993_b&vZ>_v)ed3Ov4|RsX|xfMagw9z*+SSO
znn)VS6ySqER+mauq)YQQPG76>k6-EP2s{Bn)+Ke#BkLwltpg&cGsG7UF2Q|1Dh@zs
zWikoLkz}LwSgDf${s)=Fc@WdJsapon*qc}%8>*yks_~5BveW$4ZKjL%Vv&zLNB)*k
z&>X)S);I4ok42N==Hk4?+#Pm7gpO-_Th3x5G08|6dG#8L;oEAl!?yxvkYZY~yZyur
zD>Kz~qy;V#o~#3O`!0yqfhkE(&$<9a`nZ)Ulz8%}16-DUvKv_*KnJO3TWVkN`+Tz-
zS^>4T1A(pJ9Ew%v0^+>EA$K@jFfcCM28`k@z<h*X$ceI6)KJgL3KbH*Tzv;MW#pUZ
zf{bXn+(dk5al+$pwg@S*S$~*M83mr}SuvF7`sW>D&iAL1x*Z9b{*J$1z~#;<zb>xn
z%$Cx5wJ<AN8kaxI?zIK8eN|iQmqJXW8Icn@N1}7~Hgs6m*3)`%nl@z7*`LbN*u;nw
zdMgn6?5^UdpLo^P8%nq5SWi;XKr8LXbzM3`hWSgozow!}kRL{6n_udmm?frE%2XVB
zI(?4@S8~(0Vqhg-#K{*{AFQp>^<Mu0u7rW-)@8mj7+y1jG8Mk69C7jUc|PE|)d{<+
zZ(o?btjyMn0@@-z<sk1%L-RS3mSVf<Qs_Fr>d!Eb8p>>xYZTV#9^#LyBA08fDurHk
zqZjj_Sj4){cwBlu0@3jCoLeD-f!U^3E313li#1aaap=axB_w_XdIMg^X>Hy}i%qOB
z>iMcl(md%T66(sT%HEe|z@7vNlD#&)ME~p!KikLl)d``;bz?7f7atRiJ!Ux4i2w;X
zZSdCe=Iy-;E+IqN>*xKWtMiF_L|4kD#Udv@3lFaalEf8jvL+R|j)nWVpePb2pCp5Z
zgKHmj`$*jf2;N~_B18<Uu{uSEezzil7avJ=E2^TI&Eey{Y!rQlBj-2i_=cb_I5isc
zvMqHB1^=kM9;CYyDh(Bag*2h0e}Dv*pR5>6<*|uGK<yY2^*5G4%1V7HUF~FIN#y{b
zl^1gW9t0m?E{dZc&{KeX7rLJsr?WJrUkoKwNNS8h0T+faCs9C-V1lXwK!?F5veY_o
zW0}jJwL|DGNq1Q(xUGGk{zG(gaGU*b_Be@d3<clPLz<xMWgX6rSgUE2XKRglFl%UK
z5u`Iwpbt>{k-!^yH_38^mR`$PiI{VZOyU6jF$qN8cJ@KfbdHcazikRD#FcXJnPle2
zJ^Zgr`+sz^=bIU1l~EaiXVa`?4_W;<(dmXMzasvEGOcLGAr{@xU9X#Nne<G6hDP$C
zG{#NT6dtZ5HsM**BJ8fM<_fGxN%FglPCQ7E{&c>2l7n_tiY?h&z+PNO{X3u0Vb4ov
z2{{NANFZD230}PrUIm+T?|dxyV3)$LVC}P5R(tVCuTVeY<KT<Fx#tvLC=Yop!PdmP
zxvtvyGI|Hih`(qSI=;=-e(*7%($u302b_24aD<*oGlp<hJZf2PQt?nRI9bS8zW<+*
zRQS#$5jMtCD==3FnO$j{^ewJrB@aD{tEA85BxiU{wy(25yTFKxMU$#ps{wgsNAgW$
zf7(dK$ofy-pPCi&L-v?Tbv{H+{jKCd(t?65k0uHMyiT8R4k+RohPl6{B~^N&u%zp9
zbu_(#T8CaPTrD^4&SwGHm&+~8WR&pXf)bIZXL%x?jbz?%!fljKP302=Q~A(CyqTy7
zYVmkQR(xn*x1Na##X5ZH>|b;en*@XAbvR?$a5n{7^Nil5#cIVz98X?dl)(o39JMP`
z_{ThLN0b>^fTsr>Gyd`J2oNJ2mar|Ta@FcR?&*%!@5Cp<5j7(wYhtr)D%v8C-tvaa
zB*nP#6W$$pygNXkvNO?>lZLt#1@FF8+r3HI79}0b9g?)*^yLemM08wgmzL&bWyH2k
zaGHqk6GT3n9vQ7@XPJ}jpZ(W{j*PA<Qf~8d?&2)PiTBAH38s2y9a*?KvH!CY?f982
zAOhSkZG-)GwDSxfC(`xV+&oVZYV-GRP(JB?#^8u?wup@<0Q3nPo5YFrm~8%mF4-t6
z!<%5u>raf^4oUti$tkS=rJ`tEs?e@=-_i>mW6$tiByL7A=$p@W4LWMo|C!Iwpl$uz
z!WM`7vP-uCG*JH>h%=+haKmIGF6FowGqRPL8@*$UpuGoyYABC#y}J!zQ?l3n)z81{
z;#FS!o{5~Xzp2Q6e4C9M`<MU!Ao_B(l3fx?40r<(B;I0IBFCRM*V4j3ES>M&s#2Bd
zHBUaC54|t?j%a%$SurK64vHFV>-S6|?Aad-@iBe4<^YbOcPJQ@`m~sLr`(OB3KBDn
zBrG68m=*L@aIaP6B34%qwy_uY=8T4QlEj7BMyX`IVtdt5q&Fu==3r(}2*HQ>*$HMO
zCyJv1HC$;#UIgp{r4>q7q#%XRU3Gs-OfzRhiL8<@q8hPpi}|95!D5k|FqQYD#Kxt^
z_gQA@wlWe=Vpdm%*6>ggZr6o0kr>6(&k~jh)tsf)>*-Jopt1-^E@mOOI6r_0C)N*o
zdvg1Zeucq7Q{8ALSye_`=B7@)!b;Mz0|@V<SzF}g5UscwunA_VVb~0<)P4c0E*dNm
zQie~z%$LEkof@AsX~CdSTWGaz*RVYEc&qPZ31;)3RIN-+`QTGGTUa{UC<EezBHMn|
z8WJ{|fSIYTO%{ch$~1nvKwDY5PWs>9Hb?^etEYar=ZHv=s+g0sCRC+b0aK5Hq}YPK
z{Hd-Q&T$g8aj+QYtmg59l$p+qVT#_-wBz@0;lkUYPrCKj-@+~_{8xCRaLFM=X|Mx3
zSW=`2H&;4$<6J-&Lwhe>GRen96FdLAV8sA$Ypv-5TGCr3zto`H<68vipfvm6^LZLB
z5HWpK$B9sZHHRZz-d?4;uw(owGQzjD69)<`#Z!A_3kEO!%HFbFEYLK)ALMrGpY(%q
zqAgqUx&)?q*uZ$dr)sWHtWbDhh;qxlC-F+hr;z<=MX~xdp_W3Pw&Ui=k0!yy_ma)k
zPLdFs1>c>%|8O=xWs$L5BEv91AW4@QMam@+bP5{R_vKjfnhsQT)lC#%QsGl7!ong*
zcgz!eX4n)b9{lg%z|GGC|2ij7tkK+v)UL%yNW|_klfumPXGzE2i31stI-YS-PmuT}
z+B+z8_@HrG2R(Rno%X79gKP<jB@7}I=7;ZI_lhhvP3pW5&dQrJY<)Lxvic0^MY)bQ
z!qjFR0htQ)Y*bR_;PSnN!@fo~P#7Q%xSOgB6-_Ok01f}Y8gs3k>HV=nh=FZF6)f%R
zdGCGcgX&Ghbvs=mlHlJM@Bd-}U+*^ejT?WfB0^kKtV@TQEj<N|Lo)^2zmKrA{{$9O
zPhy#4h>0|Y7Z<=qH?D^W+j5H?%Et&KUGC-k3T5wz+I8(Ks(iAfOnj*l?03X|IrnFt
zO_RY$e`9Mwy)|+4pXrcx<qdKo%s)N|j0%}sKRG~5CSA))lwv1@Y`O|dv9M#@R-**I
zT=l$6!Y|>9&8`j=97x5!xGo}w^?l|^^{}7mMraW%nE#bubSle`$y~|jJroaoVsYlW
zPNHlNv9(FCk~9r>neLJ>kO;=uf{<M!6#3Er%<)-Ojz1hMDehE*>WHxA!i3!rLEC7Z
zu0D>hFrhknz2&TeU<(7II}9eQ$YHjbSq#r8MQV0=(LNjfjh4?g%|#zJ7(xYJE|=Cn
zbyy+yIbSECVoK@IgzJ}zE@m^I3QKwO3=RM=BSoNlv|6p75^(OUmqybLt~x}{O0okC
zot6o4A%8c~50avISQ^d$(q30)WPn0~|4J6m^GZ;@icenaCD@+KJldAft&LF(v_pj&
zf{6u;orhZzj|{0xm`Y!|PE6*CV8_Ll1$p-}@Q4y~ib&2l9kCao&hGeRh1+Rg_N+s)
zH=#;rQP@M!&<#-b04s)h6zlhfLLD(g)+=iaP}3TDzJoyE^V{dkYBY=JJIzjj>pbX8
zpitv{q)36c`0;)?9EE%Df~a1gU~prsB-sdo(LH{bmbl2XVx;2uHNFNUudBjHo6%U#
zr&|<E|FPibG{3>oma&?0`&c1p%OVW}bvVcD)7;pw$lBj`fgFxWI97E?Ps7dNp<=gh
zZs3IKN3dOK&bx{)I#DCti)gW5!zqpUxjTY%p(vp)^uCQ5;a}qf08jnn0k)dx>|`kD
z!tQ1$kup2cs3z0bna0`4qj2PUi9ZU)`_972p7e3^G+w^O{rpyWDCUiWhg=uAV#OuR
zd{Wgz63^39qyRksv^Blc1kvT`_w!Ajfb%T)bIXcFjT_<wYfUt@0&_vh(m>!q$D*6Y
z=A~v^3Cua}_rFszc{sYO-k948=UbDlKWaA32d(1ks0V8hen(1{9b7g-<~8aE*y>?j
zn5**_?gj2(g&>9B7ZP?B4cfIx?SVWQ{x!o9?zgO+*N?f;IBVkewRGhV=tMUe=Ky2|
zNn{X#aLb%;DJuFE!HGOq9OjES@pCc|cbFo8^sV^83w1)qz=OP{y=B(I#ZgdCkNyd9
zt1D!fmM~|Drlb2HXxl<<cEyT+RF~7EW3U+}TlF?f-u=)MDByw#{K3`?e4o5b_(L7G
z7exFii9hzJ8uhm@==vQ<%Sm%o6Qe08C@gC{CJ4LZ-QKuI!XQFu?QDDd-AVy|^b#+z
zaCz2gC7NC?&p=#LHF@wrN9Z5SN}m{>Ia?J>RKeUQc>hnNHNOuw^y`2WKxdTENcEbp
zIfW|b@nn6Ypx`My!4HPtzKI~>jJHWjldD^@8YK4lRoYsTVVLseY3^tu(SvwW#3-{4
z5A@%gZ-ihr8|QUjj>Kqh6mT7O&ETf%0@e1&NcOsj6IJL~;Zg<{1Bg)Ai`uH?URA9M
zU@tKPDMv}xB*K)&#Ho6g!QuJwrnUJ$W4eF;N8t_UkCARY>SJU5=|1lm(vB14N=X#!
z>~aIyTJdn*tf#)^MZ~W>Y^`P;>j)qhf;5|Lj{CF83Ufn4!7GLG>*)J>TKd0PM!8_y
zfMDMwRC!XZD!dQmO&$Jpr)vJhF~9%(_OHzoJvNxdyf{39{R(_~+f*US7TzpFl-@}E
z(i5e^?vq=fAtq1HOx7g!BV(C}Z?cA=z0?1M{`k4mLsVglOp10BRf9sW^X8*YarKV9
z77<g=6`B^n$bP$gRJMuR4ca^)aAoVSaClg<A50!JN3!SOWAC#v5bdnaz(|_6=s2F@
zxclsG(j8s}tpkA8whgvh+Nl*zEGWOy44hO5CV_ez8OwB1#IB6+yKXls#=S5eXSHwx
z&_y*w_Xxi7Z*9TdR271d#yKh&7}BCk7EiSR-DDO^>XPYIJS#jKJe6GZ#*EBvOf4oK
zgc$iv;yxpTq@A#%zyc8~)9aUI$!pj}Dkfnam<{&749cx(j(2>G$tce*M{}7#P_XG)
zlv-OQH!wTdbk@_4l{f!lQ)s07PKl<wz*_~)bg6EPgq^SP+#6&Hv><tGVA54PQge?&
z;b`m083mH0OQgG7*KApH4*jnGKk%l>+m>cCBTcPEsLOU=Y2TUeVtwu1fd->zYBI*g
zMuXFr$e)iu331{b@K0=YJ<&h?ZSm{I&>^JoZBxaA0LZd`)5jaZxh|-Um;M`|0pLAP
z$g(5Q*exmM%|XnkThYGUTje$IYV5CBy-JQz4ftlAqRJGa;tKHLAIf<K4tgl7X=GB8
z>v*2*zabanMVcbsv@A=Z6XD^D!mL8ov*I4vThfHE0Yuib5RiH=_FNh;2*zuwmv@(P
z?#~pthaw*nbQ6e#+jo9%Ha$d$ug24PifhbCByyCI4h|kG#n6AWkMT<^(|VJ!@=clA
zvQf0X_=h1K7nKcU+;q41H3f|6b>8jGeae909XNtbE(BuGBuqT}YQ^Tk1s!Vv#I=th
zEyf+8Wht0pDjkc9p+$B`G52VG^wW=6Gr8oa9+UF2hwwY@vdL-y91{+_L0Ov(#GMn@
z|1$7%WK1xGs??fcb}ceG`<&pRCkhbbZ*fkMirWK0?oOlAN#lNpc6%pr&HK~*+&I)Q
z%sI!Gqp5%;@}TP-m!BJ%MJ<q$|DLCniy0q{JugIU*APUsI{EfsZ!nAH9TtB2#^R5M
z7!a<?eXr~>vKvRZGft{_=@_~#?w@Tc3qa7Rzu^uv2n5Trc!RvTfJyo4(MPp=6^f<-
zNE#1wwydsT><g%Ep+2B@Z<l1PAbap%`dI<)0UtvL3J5>ie-SieXt9~^A`b6Jy7_z@
zC<~PI4-O$YmK2$D5NBOoswZzt{c>a16;ZX?%~`}(^HK<%vPD{TD*hl4kY7=n6aNV8
zYid!xy7fZemQID;0j~Ue+jgnuvi99<{k+j6vY(@65JBVEkXwV0reeqaG)7qPe^SXh
z@_;11Ud;z?u)Fb8VJukjdE|6>P69{E{XV*#Nw370YCmCQec)4{4`5(h|2k%61%YDh
z#}4X-2_r3ceXrVS^#{&^2^T7>C>mN5W7?2tO}ISd4?(HQuyv@8*{79ucBj_{m%Tu$
zotgD`^mt_%tD1wSIxvfh&8E89iKkPV$QQd&pns{-XG-&T0d!8Lc+J;VEf5Jcl8}K=
z5~clr<E1sbtCimfXgs;pV%SI0B8(d8E<zd>9wujGhEboMV~`#A?qt@?alF$#e+u;y
zLiN(NhQRs~Yn$fDWd-?|gA9qcjgx_APA5!l;p<0Pt;1V0XHng_5U;BNqY^XgJstSi
z?2q1(R$Z4>f;GJjJ^ECJt1b|#l)ur(1O3K0(fjK!ZA6`GV@9yQq-&N^*bSB(rO}l+
z=MwOI;eWC;6$YI4bxW=K1-iSS_VBv(%0R=XvzcwbP~GkjJMV*^Jl@uVSrD;C&jdb6
zKV-N^TQLNstz{sGYlH#PDoP+x<z8=yOWl@5jr^sJELtTpGfT_xY%M*?VYOrJ$4r}v
z8nV1z7qNE6a-hokbc@3LAS%pz)M-4E>nPQgm@8i=$vR!c#izgrL#|lymS8+6gj`Y8
z*DzW`su%XC^r!sDL{L51Jy%mas&N-EkJnWuO^cC|lx_zAV1JE*wkM{m3=kb-6CqQ@
zA&oCyq~6xh0HThIb&Bki5bQV|iA*2)mVb#~-kZ^R{Bh@SCA8F=L9(Uqv@~0yhcnYU
z&ettJH@@RHr|<18C@|qwz~9B+D!*W(!Y0K3u{`s3W*4G`ga_g`Cd_P4oY}uLiO5YB
zHZu=S_Yg}U2^iU6Z5D?ZWGe*Q0(mLN#Ui*?-*TLin#jgGuaZ#_0&)Xpjs{X;wI`B$
z`iAqI;2)&2gWCO1+;vK}8=!YiNZw-Y^knuKPJ(VXi4~Z_9%_$dMq?#kA1n{a9;Q&;
zD_BWpblu;va-$(z<{AxEv}FCBI~gf@^GJf`t9vRXf{3DRaB$Iv7JL3|>oxT50&NQ$
z0@fncY@<mSO+l$e#c^lDWwmNmJ46$x%?A$?Ik7`_@bkiEZ-6KhYh3)#mELtXR(>FI
z$|SFyuKixPLK+!Lf!Y4X;CJRHgdYm=nMcLD2+kyYL?F+{I85g1SVzc62Jn*Wj86mR
zg6?MPe?#!M;>TNg;B&ex2Dz2>JZ&a<!H)J-HgHQyL~n%un}Ib7CgGXcU5mxv)q=lz
zjyFRqop7k37tmo+fK6}40qWW95i)vsvD8x8ADYU}St$aMpLf7=@Ai%=xV^mbHY<Cs
z-aFU5T|m=KzJ!mFSiiLpKUgZ|ixQ7^H_p=^4BfAj>vx|rOYLXaH%0y+lHUiwNsBDq
zF@LQqGUDZj0%v6^6)5>m<R<lQ)TGBX$`K+^Y0I(=e;iFk`?OwN?=ogZ4qxMHl~f2z
zsSxL1k@uId>K1g{#%!EeGV|$0c$F>iCQ+E<-E8vEcvpn{ImlXo&5X-22HBYYaHL=Y
zSkAq0bWT+uJOBUmciY-IZI2@9mQ0-SRElFAn`z}IiN=$X+`5Yiu??MZ6XPG4Hcq&>
zQ&)I26kvfTBxNt#d28fJ(c#G3lXp$REg2f9-=_}E;80e|y}I|g+iwK}AhDvZfH0WF
zGsP0s{(<{9E-C|v;?t`m8$_<W|CCGU_a_IN|MFGvro&1I`FB%#cbM*ETL{GT8{mEr
z6vNvu^KiIQ*NOF1+kEkZ{a3Bxi$Dh6{rMW?StGDS3JDEwi3^vI4)oK_opbtV--ZCE
zl#Rid_V)_#f`f{ma$^Mx`CL<5FzeBAFs_b+6j2kG96nB%*Y0?xG~#j=dGIwo{F{^+
zBi#@*AV9i!l6_Nl{-D_++tSZv`RDe-J$C@&!zJu2=JOtNm7&QwY~O%?SZt8X{F=l$
zI1At}AW^#W2QWwS2(5T8uQ$9h9gB9BxQ7~j<{Fy;3J<QmbKsgNLRNnoS1r^m|HMd9
zo%ikQdKG|KWqQw3Oxz2UXMgI$7HyjTq-XG6som+gE3_^m^gf#swZ0>5KBX<3Z_pVe
z@c{wvOFQ;_o?XCu7Tz>oWjNgsF?s>%1W!Y^E#b$-Y#^w}tLvdwYamhL!VT*fLsX;6
zuI?%wS%f_t8A5}WcHi5oXrk%f5qi-NvBZiW6%2Wa)z@U@)twZk_MPbMDIk<573WS8
zD0X5wD^Hqig*TsNJ?Le~5C-pYu;z@gyc6dKOnQGOn>vLal3{`!6Lb-r#YMHPAmRT|
z!c8YZo%A?|dsM#9lE&wJx~Eryl~1j_<yz-7Xswv<1Z8G~3rdyv-(p)nhR-H(z%nb;
z+e!3JiFD2hvRYMC?nwI)|1^<Nw1j{Ic!-TTM#?Vi857Z4H3HkdZB<Tx%yF~6epK0f
zecE2I4kWe{bqVrD+u^Hso7JxLYVD7xouv;i)9YeaGMj+NLy4Bp;Dq@TYiWXgy7Yue
zd3sbzN-Rs>R8rm6jg&un0?^#e{<9XF-i4JvSOJN9+Ab))T>N}0vpW4Q6p-HRJbv#2
zh_ng9+T$CF-1!Guv4og}Fu4mshg1lz=u9b=HETF-9(leG`>Tvr@L6?{sB<nFsoUAa
z{+5`2hWg|N23E5k(SgUGYU~7Rg++T%{LauqLna8bm|Mg__aM=3_fv14&KhR3Q2y`2
z2c$&`7U;sUyJMJigO>4jy|>?7-wV1|{S0s&120%=Jq}27iXk|%XJati^(bs_?o1o(
z`|5vbxs7xF1xQ&5>)LnxL*R!f3K(aB^|?xLR(ZXnqso(&izqzXkG7@6E>pjiVT+er
z;Ot7)F&QR}X0iqW<(P9<y!ee|WB8OM{jb+V9O|Np6O$snDe!x1<dCwv?=sa+;|?(f
zU3J2ew-N7nNZ>iiMyRx-h|HvuLo2LA_x>-K_k2J$VN>7U56f;3rES(?jRAZo@(kg&
z_A)U=y3{+XOIGOCO%-_K37g5au#EtAp}tWX?R$D%J8X7%q-VGNEQN4Ya0Xum5n;HY
zKL^9?j{p_?Q|>B*MU6eZ0i!A->k%m??U?a1g1rkMy(Lf!_mlHo7FPE9NGl>f=L+U;
zSyw1@UuC89P4OQxIClp9doTWS#l6QnEO>+A@zHCZxgkE1|M9jevlts$o<9#hria<u
z^{Eu;n%jpxH{E2>Um;4NJ`o=vC^k=<KmlAR?91R4v=8KA|K6AU!;M)ByE-CL?Cccl
z2ota2K^U<3sr=*Jaup2`YVlPFfeJ4%=(`2xN<2{Mw)19Wpgx>M$HEG981cVEYGNQt
zb&13m(J?UWT#y>}Fyt8+0j6WD?Uw2GNgfL~Al)FzA`A3}agFq^Xe^vA&|FtyYy2yX
zm_fy_7L-Rz3IaoO{!%@CMMs2z`!}`jN%%+#fDhTTL58tVczg}W!9!ZJ{?~voo3Y8}
zA+iQKEN24ZL3yrS3Q2}Oadg+^rAY-w_VW;PEf$;bFD~R800~~y{PHn$Gd}TWE*3ja
z5#jP?K3M<EL#ZjdFvbisSA+;#zjIfd!i%l?nw0Qw83GG5bflM#l|{oi)sQ?75;q)`
zc#5BTiDOlhD3yaD4ETCvVj=Af2of>RSTLEBV0}2?ix@Ae9Z0oQYc;muXJDdO<#?ud
zdf&+y;t0v=?$d)(PuRtvnc0kMxX72rVd!v)lc790h@r5uTAMiRZ{UktOw`c@G{xh7
zD%YGkfXIE|mv#6M@ATo;WDqH<(tT)C`BHAxJCh7Ai9-C7E#>2wrrhz-plfdk7qE^K
zfy;DsC-GWSkX?o+anY)XRTYY05F<^nzX^i2b3Vj59|%U`j-x;eypO~6U_Q=@ki}&E
zSY#mu9w!Cf)hIXM$7eESjm`5-h1#^Im`A9xF0YxABLFrs*#Bqg5@l==9+w@WUx!N;
zh8M2H`sCsH56TDx`%RE*%K2rP0UP@_%(&d&^5mrxgrd=<Iyh3N)`04Oyym@N19~#b
z{AzQ!FT{Dk>$ptu%SWvUd$A5FXkqM9hh9g_gP_IHDol)mKN;YK3yu#&jom8K(1i?h
zP8I;=0uPEj9IAC%u3PPOQU~3dr&6`$+|5qpbj!Fo6`&Le&Vv$f<FU@(qQRj=>~qI%
zXk8EM%He}^ENR|al)s9EFA$gMlu601R!8I-geFiV{%apK8!Sx;JSjz;nscM-6pxov
zDA17_ILO(<FA=@K3HLud6Ss#+Z;O@LX=cL6H~;UpfI$L6`dOioVdjgC$b^v8mqBZK
zbf;R{lh^3q;(ILjtU8VW^J<C-#ZQNp;Q<K=2_#lR4%6yZb<l#qzY<*%Y{(kzkvE?y
zfJ;RF7_Wx%NJ=Gu0;$GD?OXCHWf5p<&r7Upm+9ES4sn+!!l^h+>;~q;vPYX+p=5e+
z&|{P$AAjqhgnQat<SA~|4@o1bmm_UAG+i61dX|lszLiY>4K|Sa*TDf6Ths$A{u3b9
zlZJQSljc7>o*i~g6h^1Y`t+ahiVdJ?#%h~Xo53f1IaVUN#yD#Qjze*Q4^PT+XnSoC
zaDAYGYAe)O1Rmd*foUk^dI})$o?AA&0k$(kfU5*P%NYQpyB3AOu^qri!L@m3>d*6z
z&kf(E_n@njXva0tdCFoSj=};YjCdl-OU4fnl(}@q0#0Y(ou|F0==P|rm@JuB1F3um
ztjL$?cf5i!%Y^dBg3=GUa|CIj*Os`=^8R7vXpg&`wb(VVq}^&T7QrdiDoVF>mETD0
zL>Tv*uDjx`cI++D`h0-7K3Y4$8>oq>o1q5H*^aE+Ivg$2V;eA2suFO{bbMc8Sre!`
zzanh1NL=ROy2mp3;q(nJ+jPb^8&>k|G_26Yw2-}2*}aU8ZT&A#VDMWH&R>UR|3Pv&
z(hmufe6MDwl5KgzXlC7Dc{^Ydw4@l5_YVnfNa+t226l^9&rMl*%v_@QWVto=cvAFS
z70;k+X50$UQdLzb42J#P9}oaQwdm;y;FCoTx#Brf<a1`AAk(-$&GSSV&ez9wvlHdz
z3mKpY(dsbqkc@&k;9dL3LBY%C6p9FbrS9kWc4BBb+ecWr_G;R-FEb&&Aj>IGxZXdn
zYR~XEXy&P3x9uwV9pZE4l$BYFaPhFGH~MhYYUNmDPnMwTimeOu83Ryd)I{RRb^r)5
ztjsktp|Hbv0%ORIv^yyI3?@s7wzM$P&KG*zx-^}m?i&}35AH6Oa-GZAEaf8Ja67mS
z`zqQB@pG`|$9ohkuvuo8MdYqk7fKwIBJ%)mg8bCp@$(?f(=J%xLF6B9j#o1<3rxVo
z9t%DxrlZM0G=5#M=m$eg^BCo9qOOaW5(c&dke3!x%RsP-PWiaC2{t;33lwQ!fkmJ&
z@nCV#h!bl`J45Fx<ajf27iCFPk~7(ySv}%%I1aq-x38B^w#5Z9{oiT$KdVW>R;Sbi
z>NF6NF)QPE{yNKx-U5nX6equ1dFhyy><ivs;6}zCv)JvF6_=E~oPD>gLqzjKN}t$l
zA#y}uu7n3v$g?pjXUC!5WR#^$$a|RNkI+-2@v;-&R-rAEU{kW{)uVn^^(JI3PBM$S
z?qqNg*yZ#ZzBwRXUp9kkVG4A<f85cjgm{)P{S;%BRrOm}8MvskH;2eIrx4fN?d|A*
z)rJ&$5^^qFtQN_HOFvHde~qm~e4|<;0X`t8;A*I->!9}s0npy%VQ;FxTtyY~dXI=s
zq-0ZxiPg+pFYsjIY*j|ba(^d%9R`u>(NpTjFO*G#%Vpylc2_6z&<(SO2MKD|$;Q@0
zp8k4_@TUoV+MUWVLE&Bbf4u{Wm`VyLKN!P^8hpB%ITw5^`nS9hWk2Yp%MsjU!gb5-
zZKdJW)Yf*j9r1pOIw&!sNj!@L7ThK{!6rpo`F6x9Z^}x7Oqc?A8)zMO(1m^Og~fTl
zY+_45J{n4|dn8M?(@{DYtu*(K%}*1-nX@wH<t7&JJQ4g?D*_H%eQpW$5QSSH`%jSx
zZ!Oy#0azNS1ph2Vw%W!PvSWlwUwm#b15j?$E{-l*nB&GX(-=>juw6g83S$=oAa@{d
z=)z=TZ+PEHSoas<x?H5iVZu1J^UI6dalLI?4rY+4j5I5XUC$=xlI>QU%MN`ue%omc
z1*(|2Xy06`Bxsmaz<`0&Zd*W4c730Oj?wLfQ6YdpIG%8v4J&%wu&`nPU_hV0+l{vn
zy?;b#8}M5TsflV9YKh%%le`nSkcIBL$yyab*ZVCNI}SZ+d(TsfstA?RLg<G#3b@5m
zLkut+D+(|PH@oZp(Dru7viO(>CM1V{_z&EuS=!a4+FMPRjo(PF@+N4iw{YHlICU?9
zfuL{=x%Qd-IH^nsm2EF=4X1Q&Q-2t78$Z^&<fQfq$M=Lf7jLm{aKO5db*AbJIP~4`
z<y6XVi^W|FTcrMUax~Yl92CF503LTnbb1JW7e}1^=AWwQS}eHTbx$W?P=mRwjm|uS
zH;P8;E$X9WGhSI@kTF=Zw~T;w_r^`gPG}VkF-=V16`pbr$mrPC(YqdDieOqjiDxH0
zPP14XBjWnU>;mN<^@R5jn>64!#S~04r4S&X+mk`4Oh9CLQaOy2b&Q5-+i%G4^82oK
zzB*Wvi8s3>zgfs&5RA_mir9oqmQO;mO9byHGPnCKSQxrSJBk3kqe@^)6y`l~?ss(t
zc?{5ZloEUM@hoY`hO6;cEk=nkQ^>5YmKNz#F>a-ZU{aQ{1u;J6m?%vqgzZdO=vWRb
zp#?Pzk#`f-u|f6$06_Hb&&%FG(7$4yJe)U@e`E(ufb-G?2N0N&DZL9NRWgIpn+#25
zeBlPuy=8Q5yaHXSk><vvhyL>RONNcd8!^uvOfxxR4NvdRHOBvQh%5ETl6*s9jA9FS
z$SWj5Cc|6t%XnC+&i>ktVM}oEp_*|Y`d-z<Lts8%=o6lTlrZnE$ZuCdf_f3XLle1`
zk@1OOC=Dz|vLM9geZ89{WfiwgqBAg#&V#<5%BT3imd6@d-NV9swGp|dc>I{D;jFrD
zl*#VH!T0UD#lve(%ER9#nt>QBO_Pn|W)6K)lyvA*c?`{Pse!K>;<-KVSYiLvZlx(S
z{x_fLYy&IEkNtJc7*&~H+>h++%my7V;;^Z6Ra2P#7VVw=hsa6hnT^|n7=yIV30OLI
z2a@7-<y@0s_BIWFn+srKyy^7mW#Gce!E<8rR*&ppwz-avXA`@%`UtekO90Q|o?tRX
z3z|r7wj1w3l5E&UVM(b_7Sp~vom~fMT53YZn#lEwrNMWC$-XR=F_Z6l6i-{MZJ18^
zztYOPe{A~CJ*YKUSKnv&)0B+?u%!R3S?xA28T%OQDeTkXIPLzC)6f6_`_W|=AV95L
zLc4i%OV}?I+=-rARdcrmDg3m!vFL`D9EoJylL8EU=G=4Mj``ejCSVK81kH$}{gMFK
zhNHLF*unX8?@cPpur(<huH{BVL)qE-T(wWKx<kJBDeL0w;8`(m`&!*p1~@KxEK8q#
z1obqrHx7bj@M{QS>06CX^VxUNE3oiO@z7N2&*Y~N7jQiZp+IYB?}aV;QCzzwX3CfF
zgz%}(q;|7fM>*sVeb+#^cY%=o>K?3PJ7!OT?=K0P*YpU1s=f`WJS92<(H?7$2s5i1
zQ^BbfQwZlSN7pEoC`Bwh8xSR1@$RZETjF3|y$#T7-<4BFgMBSOPJ-ioYlVP(c~7=(
z*u@9~bWl|RMRLES<d&e)7xn-L{vjzk;?1&mKY9)_VRaQ9r!%5S)U8tPRtbW$k`c_k
zsLFH^_k=ty=%TCVn3;PuMO|n5>fP*qQ1ybkeFJGf4o1Ha4!|q9AHtQ_1{=?nr)r;^
z&4Z%&&XXsz&^B9Hcq<Ut(#YqIX#B1p8k5Jja2kU}liNF3pxjBH)qkfK5WMVzQQb`X
z_n7C4a9E}YRmRowVc%<sr+6j=#0S8OsdIZjRz6`arA=|hjcDSl*z@Is2K^RVncDb{
z1Zv>+t+uNqs7H%})+|;fi9J?8o(8?A^RPOuk1xNAKJ$=i)QuTbCEFR1TluYG4_ao8
zA!@gs5wB-ucNjyaR3gCI>YvI3)b{mOSE1YRF{i#OoK#*LA*@>=Mq^?@+Ivw06Tt3~
zPE;NyIhvbSl-VDblQp)hH4wgb>kBw+xKU5tmK{xeCfD&3$$E8`ols`Z)GzorJ<``0
ztGT(n{9~OMJV?)6yN;DV?W^U#v(Wn=Bjq!pxA=_mKR6KAqy5QdzfptsR{r3c+0z;Y
zm+>pI3VOg$-7BEfA~SYm)b4x}7miv`op$i%D~YNdqo(S2XUgCvqY-FZN|@hqlO8lM
zXUD7UnuktQ*eX0XQrhX9lA24NjIe?A1-4><+P=p;{5D<7@^t0;=C|VW9YF1X@WC}I
z<q)2vDLbU^J6jx^DY5%W-2yAtU$qBQn}G&lX?ldblhiu@U{IfQ$K1}yfxxJzo@w0~
zgmp`MNBU0F044D}-NNzm2m=JLh2P;Zv8iN07d;@{Xb}Ju_u<WO<6y6rZ)xzaslu1}
zfP}!G<)+)bP8vrfiYO!^G&D0&3h{xp&3=nHviW`EM$0_wMv?iOznu*zhoaeVpZw3X
zkE*+^L2H46_Lx%PY|(J^391jFc&UiV9n_MRi`Z%EPeIocW~0(*THrp7DtT#UVftSr
zy(kd+R)9W?HmfVa?_?t*R<mSo%|gE*O2g4bbtr0;!IflCb*-?c*+90}lnUOw9A$Jn
zE{LA)?<prCU(_$mLAcSAx_Z8lBk0x9R)v{w&ym-9sCWN?)qIH?%Pp#{Rkkslsj7IV
z?D(cdU2@IC$3zZh71>GVEM2U-{`+e!c^WR(kDEi?YKXSdbf8i-!&Ao_!@OuIHQa?Y
z(&#IueY=O3siVUbd&>V-+YmWHMn|)JYZo%1@;<9MBXc@^P4EeKf52(p@nxzydOoH=
z#?O&G=er%;xqoIS9(g(#+4Zolo;?viBR|EQ;c5Rzuz3P)7}7Z-yw)r0O^Y`Y9?rs#
ztMfg*UN64}W4e0@%BY7{;D==>C##T(H&%<ii}%)-xzi~&6)?g-ik*6+oHU%!L$?g{
z<H-IaIMhG7D#O9FCP}>7P{Y-IZzz?IXBP@h$4d^1_Zj-PXrkDzu1x!|DPHL?uzU>o
zi5L?~rOZI;eLj)C4itXGu%$&Mp8(b4Idb_gAG~l#8=q-j7BUip<acc~y%8;aBX=ZB
zn9TH#aI>QehuKw5dY^R*)0iWZg;S3XBmQL$kdA3@en=yrO~N%_Oo&Qk=KlC_tA+fP
zm<<K~Q_|;L5<6L6u|B=7A<g!Cj^meNlhH&zn5yyagIRG>L~rvgoA`e>*2KBe0Q%&c
z&h(@DhIF?(y-&XuAu1c5&;oMK)giPS6oP_&tiJ4TxP(kslSNLCv&%SAf?|PcY&0p}
zyARP>bIdl!P3;ly!v#jd=480mUzkgT>Uo5v?tJ<t+Td+%1#`2Q=+8`$whJ`OCemh=
zCq5o@98b(bm#FcHlc_K^gTRK_a_pSG&w8j#+3--)I&!mtb?!SwvMeXFv;d_GuQ8FZ
zOE4Da%snnnZe|T8Glu?DTgFgxI1=_D!88>dYcct2myXu&Cm4}G#kG+4yJ`%Lh$rmR
z?d*gl-IBUCT48^TET`ePT!$xr#i7pXa#3`gVts={gL;%%&HK^%?4mlZA3luny2{4P
zsvGNdJy<tXha&!R4D;}fXOun=@w*N04rim!dlxxBfg_lcN56HezOPVD!Z{ommKLEP
z^Bj$$Kjdagsf2iiJqC1Te^fW|XPUq<F5)9w8qie%gn4HVlG{?=%r?C-fUru@!$S0g
zT-rK!V}5YYcAau<dsb_*oc>rLZ!j$8B;+Y^ELF+m{>(Dr2<^2pSlC;n@vho^FFJK&
z`$eeNBo|~&WPXUhNwE|BtEQN|gyt|@0(bKiz!N0CPoe9DTsyIE0az|`pG7Mo;il&0
zUY*``1X+msQCfmKy?tXd6%UW)u1gNAKQpMv#dFS@p8rdR>vrqDx(E(-e&2EcG2TKZ
zSg$0=VC$$?8Zk;n#Mj-i+pbp{n>ESilXp|Pe^w?+u7>Ne`Dc4@vcINLEvJqS!MpQR
z!@qS^)!gKIQ!kYe{SHGNprXajG}*Q!u!kjOzU1y-z&2T@zbIVQjw9Qt+<DJO{X!x&
zx#h5I-XRk!bdVAPHG*rPUZN$kAaT456Oda1oXCVKe&cPy2IEM-Dmv>`1VeIKjMuj;
zRNhq2FrVpB>a|#jR#$sc!6vp774G2t)klTNlzcozT}b{cP0-e2j&dfgFEgd3S#o$%
z9r&P=pis{az+3BQ%g4+7>n?1yvGX<z{U8xus^1RyEW*wX!XAMr$7I&5i7Axs)-|F|
zY;N6Z+Hg)e2K)yYleehte&_Q*?In4LnTvd5*%S}kAh<omD8MK0GFupDwrb&Ttl@)`
zyf@PffWa!|9AMPex3iVccG4pM0?F)^J_DJy4I||3rsh5GK{B*XDpzpL3NRn7c+DJC
zNe&5?GBXxM!<xNI(XUT$zoTQA!%q_=V>14{Jv}juoDVBQDO()9vsRHs$48(TOIIR$
zxCqXTS;>8?is@NLObu8!=lZ((UE^^Tm_`{dkJe<QBvtsuurnT15`d+Tpd{0K)SBa8
ziM+n7fH0VNo)>6llr=QzEI-&Q+}|E37t?>(iZ>B^!cozCesDQE%N8$MZv-NAC48Os
z1Jc=s1fbW49x3)M9VLc{$SvOv*y6{63wUw&t>8$87tLuQwzn0T`aO!WXT-cmu-26G
zFgfaX`54GC%f&|Cx1L!%y(Pu_-fblSaG82+>id!ydvKaWWxzGIlD$waa|WxLlfrzr
zvZ#MikS{Rk7BcwE<LY2HIE6Q;RF6*$&zl?i!QNHH560XbMCu?L1Ba@n#A5zrt9`=X
zS>3y_q{h@Vk2cJS3$S_O1}w6d>$LWaJIw$2>Znk_5$@|U`&;mkbG8FtvttmIu6$+3
zj1b5d@(lB}3Jzb7#7jR2uuiYnGjRrYn{T)Jt}y~_(Duky_y4j`W7J2;2~NIcdH#CS
zD;$~JuLhCmm#{wED3XM?@M#LwI-U?+{UFmd67guGn$~ctjVLJ$(ZUrh^*mC=1PF=N
z;DFq2gFEn@&4~#71iQ%+6`#mw-sMK~M{2zk&ab9Uh1c<Bnw%mcj5{I!{HAp6%aZNQ
zuX<av(@4tp%rgFGGPnWn=y=gaK#L&r=+=XxZmq#!KDfVN-#IqEI^*Uk&9MQ8LsHt(
z8I*}$&s1mx*2)WWenvww!G?G+ItsZm&$Ok+Eyx#yr-(RNQ_z&1`*tNd+)`Xt^Ft`@
zIA*h;V}5qv08tK?t9OSdx@iyr#zs=9L=+Y;_o^2eXv>2;8i~7lNmW_~{g5|$gf7{D
ztWP7T`wlD3&wReqOTebyaq&Hhrp(M{2+{xP#`-%M1D{nm$INIrzZLP1;0S{%IhZ!~
zwJG|Lb`L3SkpeF@$8Y9rxosMc!We!vj@}4uZw`m$xfYSJdvVvkuzj2c@o*h0B{(K6
zot}&H2%Sr=qhOX6#@z@>MMEV7@G!P!HieY@S3j^(<&S-#<cj6GRDqYqx+@-A>T>eN
z4BX<`{Vy?GoHX0i&Fbedu{#qTw)#_TUHA_+H1pPrOy4268dhVYSWp)gDDwZ$M}SM^
zE=t~s7t`;*;V27d|5=QoiW!+<D|78U{Ov9jFtLoPJ@BECSU_-Q80kWhzlWHKai^9?
zf*-cWA?L=5YI`;dA6BHNOK1_DpB>~pS)V3OucRZ9L}eKiE;(SV$lP6KdlUY$_f2%k
zsugDC$2DWiHJk6`JUM-cuIGYB)qx!U_uK<v0F<V6$wB#ZG*d7%iCV>^ZU3Ysb8@aM
zYMX-KKThtwMrcSqSONU6{LSjBd)?uzDwsIkGS8wDk}84q|1Akf`9aGcyXFY|Uv^rK
zY#wa7Aj6?kG9k<7xr}()jH?uQ+N2H_>LB)2ptY^<5&SFld(DS?r_hlW)|=2~nT4-q
z=0h)+(7;;j3Qa7bX|68X_JcQkhtFTknd2XKB!0#gaErxE?%y6{4{7qAh(A?(%0Z&*
z=-*4TRh)&pMecvq$l|NEK%wDOs(n{Vd#CA=4B{QQS6Oj9{=iiWoFEW<g+oHyQ54b^
z6-5&z>W<=8Oa9OyHJ}>?EYI<Z81+MT{V^jXvZ@ZoDk^x>&p}G%-eZG?9Crx+s{VtK
zfB*q0_dzzbLYDq|K<QgJdbIBhaS{?Pqr_Y9A9t8)X7ATi7uPAx8F*onPAYr$eIhBF
zeRNu}`}lFKP*EC9A?6s;x#}$-p8%f`690RCP!3!LNCd&6MiX)U(>Q=E8Dy^2i#k)x
zX~t@iZuyuss}7~sNoDkyPX$x&l%uDecYBF7Y7KSysh{jIeQ!BwA|~i!Z+kuI>%nN-
zGt;=~3Retnmp@MBA=|pDC4q+vPW4keZR|hq_TcwcX03da(mK~t6>s6QOh<rbwp3R9
zeFxJ)ER9iO`4@sRO|D8~*m4H#JVQVasjdzhqw&D~+oV64!ClfOSMqiugzxbcTgnY5
zmIS2m5=Z%?dI_jW85Vqx^@Lgh$VR$0E3DtUDlm?ulBdO9NV+xdECp_Yb;yqIlAq(z
z7%+Q92vfN4&#gm$VIj{Q(E%>9JtdkwJosmerKH%xKfC<ay9<IHh%T~fp34!R0!(+c
zm|bCv9m_i$Ph|92d|5P<4{zjX)fR@$DA>{n!qagr7|c4(K4C!w%|SG8uFj*gu@ql4
zg~qJwBb;(6ik8aeDyLWX7a=D$Ef%fSHiQ@M%r&*+uFf}2Q&cXD{K=#gDh-X)9<y5z
z$xQ(Ut&()0fi|Hy#HzmF(9Va?Udkc~*S*Fg(h)+zlNV38hRJUXK@-&?0lh=uO5}hy
zPA)S<=<Z9UL0Rmc66++{CpNfk(kW>q$t?FIjizP=b-=lXiVEf<?CC5j!~2=8Qn%Qw
zalj9dV3wJ_D>o8rDS5+ST3!Ni|1u17MeoAAPB9hvyzf@#7f~e7^6esB{Z9D(*3TfR
z{&Sze`|Ry|AtTIJyQ#Z=H{%J5YNj6vqNsQw4#;vcr3d|pMs|&JuiU2{1kAAlFC15%
z#KkD?v{}rjuhK%LV6cj-_?H5&a`;iFwbsJPnw>@yf7oj&A2;LMj0bcr&x@3o4q#!0
zrJaB^bZ73d>F~96D(8{G@=U(a%z;v!(^SAIszpQWKrxN~xomJnhH~WU)V{3z@sd4E
zW<zTIijDNU9>R1I86MGC>Pb=zi0c>v+bjt1r4K4_uVlBsv&=@%`LmGkqt4Adpk4}P
zcwT?%WYX|OLnzA6Ulj+sA&M2;>y6!pqj@Sn-;MMR(As_t@5%Ud0=h5?Tgy8Q0t`1W
znLsw!m&A2CLuqExB<QVTD>k6cR6cdOIT58fbY<EDs=8ane`21lY9u6HwH?p=J^8WB
zRkT&b{6QtgjL8Lyxy#lm663sDt(NJa7!ITytM{rk6qOu4Y`aN^L>!zB!xZ6CW{;le
znHprW-P;s}L9@PU-3T|2y8-Fz75XM}sSV1<^x|0J`3-6eIsNb1KGt2SifP1Rr@#YV
z)_7!G+RhnZM2wB_Mv|FY|ELG<7*2OL%NfqX$G!7*&GtgPHC9pIzp3$m3c^+8L=LTL
zUs;gAwsnwA;f&BK=C{I;RBf@BRmCj}>+*V12AS1+%^D{H*ZQUN|D*#MAJCZ{9TsOA
z$$;<glO<`9QHj4HTZ}if#m1m{-D`HTKeMu&pu7G7H+U^+Iaq{EMLqq-%IWYzzsE|x
z5m^FosLK(MsRy@<ipw%J9M(e=DIPis;$H|fiU;|5!ftCYq+G9G&xtTi?4|E8HuajQ
zu#$03F_%QF+xdjT-Ow%szciw|ZZ^K<10HUtmNsXZpl^wO!tiSjq8Z_D<#*qBRbCxU
zlz1Sx+iZi^rk5)qBx<dhwu0)R<-m3Wp9QF`ol>5zDh|rAz>`vDCHRHwjQYrb6^TRB
zS>HWQOoPBkmZEx|=0>jjNWI?F3Y!g%r+^flkmcu!isLoj1m~SNQ#~{93dK+K*wMQO
z^hU_ugp)x<LAsU4YlBWA3&JN{WvGY#p8-mRQ;XI=<lMPT-8i34oLAzPjzpP6&({#n
z5Qw0OMCCgHmQM)Rv4-xwHIuuP|E<G|r6U6YuNnro#wDaEAN6O!{*(0mQuh8&iECx+
z4UY!*huoobH&pnGLX33vP0|u}Y>1j6-9qpPWzuFUi_S$GyJ-rgU(_Ol{DHrhC-CDc
zeam_DHqDYCB2UC~SmCmes}l9ENOrI&O|d(r#*!DjAptJ3lbC6Zi|PgH4`SSQ$pF^m
z(-iuXjHKa;3CAGRMU}RnFBUq!1JTx4LH6|V`$_$+<6atmopA(s;`*rDS)(lzk&=ii
zHXAKfo#_Xc3oSrXG}aT9<;`WivjiM8b4-m&pY?Pf|8Ysjg?lmbBMX&7rPv^z@3X;Y
z4l(~lft!N8NuB8+ze<uUk?EmA8JFoG{1r4*m)$Fp!(_;+L^1@C52AN!o#}KZlAKw(
z7V#T5cicL%=4ZqU9>H%Kv%W(6Bbljn@so>mk3(K;Tp0GNm%%qA+P=Xn(y&U-A>h9#
z1l8J5gtjA!1snCG0G-Yud(P2S#?O6@Hm0&vA0^|5f@tzJn}Gb<eJ1foZkHDbgAk`5
zt%C0F$mo=C5G~fNp&lURII{GMV&AC_XG`2^6!;ZEPBz(b-AM7PxDl4z&)|fu|KIdi
zS(zOo`HV}d3XyFLemv5JxCC-^%#_xrQ^RSt%u$CRa?l8R0FxmOSQUCMm<8Q2;TRRj
zoJvl=B3yzYmV-tG@HKL=HZ;)#d3&R7f6W`Z<z6t`e9fNY=aE9jJuW#fiu>KXhe5sW
zJ%KRQK&PnS+!#3c%7(~9QX<0O5aP?A0h{1=$sOjM&u!=y-JX5D`)b-eS-*8`)J?cM
zlCoDB76-?30hZd-Vxknm9i1XP+qlYugD=*x3E>yDf&)LkEaBcdm)W7-F9{a#JQ7&o
z3cV0BVuPY4FITddl1e1-ZGIm!{gId~MHC!+_eUJVJdb-)SFuXBE->MflUCN8Gvz9x
zI3fYUvlvtnT2h9DHkftHTXYWj8nK;*XtXZ;vF+9mI57@TQVl-pSU7(McYGO0igMI8
z?`~BXm5}FdOB4I6=40Vyp}C0kz=p)|$ZX9vTWDR*Ks(Eo)E94L&~sJR-czjH=zCs3
zvfR$VIyDA9!NXgSpn+1Dcs82#J51qc=|<|{LL0XAjWF!;E0hZ7YixX_u&UML)RMe7
z{J$+Y!>#<g1pCzs@iAY0ruH9CSfUe1`rtguHaue36Iv8veUG=kK3$oBt~ffX!L|z@
zi048F2Sm?R0`e#);IEQLFrFT^dh>awF{%b>PsHPfA`}+ov`de}0-1dV&%POsU;iKH
z5ABEl`TeE!8KNs&E>Vk2-ysVOYUT#xE=9*$JUze}PinGRIUXtkv*U<+E9^{7M_+Z&
zpgj<BJ>Nl2I#Wp=Wp#>`DQb;#jEKi%bfNay3|2A54P=?}S=^8V&kT`Bu-A=Gw171-
zFmrN@of><YR+qBDxqG2sFUu3U03rh>r4U^4i+*6DX!EvTcg?K;91hY2=xIM;uMPv)
z#E85fUVhYOD#KoX${(H_UDmCm3^W9W`8qu(cNu-247qRn2t=|C!&fYJTCjJkS$|hM
zajM2b4HPOR%Xx7k+#O%3Dl%CX#~a4RO6fMYPE$&rt``=ClsOEpddR#sO<)8077o4F
zOKh&zr6Mgj!7ZIu4q;V<CtNs$B8Xq<LECV@kKK0JFJ*cvYTeNZ*XYhuCqF?b`{|~S
zR15YRdva!C*iG&~ZQ-;Bi#~|w=E*0`?^8T;<%BowVy623^PY^FO<R;t_XK;Rmy)X}
zIHH2&4o!5K=73d1|DzpJZN3}aU@_xm_bdL*IaQ+cf({<`-JIB}(@2J<p8m?IG@S^L
zucVtck047P-*bI~g)UuD;1hs?ix(P{B1PIONk^#;Qf}c>P9r6mwLdZ8;2I`{hd@3O
zY_w0g`BG4@bv$Zjtg;1~Vw_m#7|y(in4}BmHa&Dlw!T1)Y+QTcU_oS>-*-8+qXSfU
zpZTcy;`ve&=4yHabKs2prbUVCYc}gHk*|ut-6N`CWprv3p4C0o;M1`hEUWViKTX^8
z&WXm`JUo1!o+|Eml?rlcZwqd5=(sAla>@4je&4-1(kLb%=39+-pom}rIQ<z@vN=#S
zB%U;V%5|n*-zimFD#=A7R}r!-2bo^f&Hw**juvy{v_lJ#nt0^xmN_+>Fmp0$Mx8v@
zNhCRhzUPf#NBIMo`p>bM%7E7QYcsfn@3U)h$&gk%!5*-?J#-$SyI{^wbiEh-q7-Un
zlpSft14_s~BDj+lL1(o58E*y-JPIW>%`9$EZ{e~p5KnJiw!sChhF%#6nyf`Cnf$zT
zUtJ;u2;c}v>IJ8YvXol+`V$A?dqenX+`s-^E7g{<rP8Deo(r0}*6`ax#1vn2JEQlN
z5lXBiu+k=vL>=fY2GiP-%+s#-Tk>2+F7q1IO9kmRy(_7p1IJA#jtNit#X;hB-RLA=
zp(6b7>1oIQ_MWX-_wYdW=6li9;UzYQxp1cg$)*Rr(=Mc&R6n<u6`}#~4g+?I@0{y%
z>Mm+uWs(Y%20IDaHGl{ano3#)R*iFn-2COYEoaNX(=q2^7*-pgm}<k-V!OJZT<8%H
z^L+uM*Z3-oFw!1QwoKRjGnRvkth+A`Jqo#Z$-sT4KxQ*5{1E|GUJ22C7m=jkZS39#
z;Up@g(aSW;NP$7O^bYsuVFgBb+Dim@%quyv!mSVM)f7b;+^K}%iLUzI;!^$t%jFrs
zUu{ba@W5*$*{~@D6tyCk5E&tw1ZhXow|Fx2@qhpTTs$G*0stUG|BnZ%Wi!)mA_ys2
zNwmj}uXM#WudAwY3{wO5o*d!j@w@E1{`?%ee?96lw;sd6wSHV_PEp?o#S*0hE<nX#
zYeyBfJC>XERh728f?B@jd_1A$DE>6CSpH<yM2{O^VoK3u72a&!_Fk?#zi-m^mwLE!
zuMbGSL*Bf>$X<SYC{a*v_IL@t?5XPWq>b`Xhz-{rNP!4V();iikiEUDUi+!3sxX|5
z#1wb%9kenj(kGDm92(Sh+sO;_A464gnXE{L#x1W+=<^p3JtvUg*Nl_}h5$BqwE1zQ
zuIJ~rd(E3B9vPrf>P%C2rp&x_kpdmvA!L8RVJTIzV=&EytJ?qf)cUo#9C+?U$}Y&&
z=RQUJeBIuQm<qO6?C#Tv+rzrn@FKtELf=BW*t!iE7bS1y`#5eKA<#sVeLy|I573^M
zgiVFt7YU+4;P6bAyPQewWgnKezr)8`*&Gu>PdIiS;S(0)o(4DL*ao<Q{ar)%dy53^
zN(ONawlL1y!UvWDz|d8|tM`woj3aSt7*rxi<tEu=HZsYMBvq*Ta}zekM&(AUwJ~3N
z)7@4@w?w*I^RbD|YZ0jSk!SEVTIf@kHYIA@taW$)z-W;Dk#y}FF@+u~-UcV=mVMS$
zy$Q{lQ-}%2b43jS%+2)vgNjc*N&tHsiSIY631@Eq9{y%l1s0V!QSvBKehVTn2Gkt7
z^(+CNwM1-l@ah;Y4^plQJt@aK7hSm*cVO-GU|`N`&Q`&s=dXz39cV!gnHpO>4Mzbj
zWuchuj<igZVelm;@l4|AANIlRrHH|UUO*KnG2n?LzlH2RQI0~z>+%AOZfo(t|Du`q
zCy2G}z=%d&8wL`l(#e2~^VJb>dPqPnO_em0t<9<Syl{qpPE&gu_4{_(N0%9KE|2w~
z6M)g>p)41d82cOI&Sn=1TW`a|Kz{j1+m1UO0T%R?9}rf1u6@ews%vdJ5B3<7!*A5D
z;0G(NX^D?ae7SAka`+a0i)k8hN4t8wZXdkYkNQW3j2~bk0q$P9*~AFm^XeP?+k}V&
z3;NziBqq(p;bbUDr%kU%H8UnB&vsdM4!*4r{pdwi6AWN_-87E_HCCBdME(G|)g!?E
zPTwUXTT}$<wflcogG9=E;+Os8`fLfW#@``G%aP(SZ8FM^ZYvu>4Caai6(MTp@4qya
zD{-I@J!W9uKFA1Y+t(J>+%vM2Qt_G-&SLJd!Ne#}0rS&O0x3vqLWEe107Ja9A4qu?
zFf>_KeEob#aq0-W)Q`6xYqlg5q{kCCiH$c`EPu**C+HLgui@bnTh?W3x057BQl+$f
zLUvU6{Jac&C%{RK66EFUa!?$$anITzCYn82on|3Gg`=$cZeHR_i7{yC3vId?bmmx%
zs7{R4`F#63{H7neLR}nYhjg|q&tI%-=!+UU?#Hp5SA>3jp_Pow08qnh&c7#qa;h_;
zkH;v>)teV67Bdb0z8gMr^E|RyOc_9m)JuXx#k8?8{5S51EJWqt&N&;h;l4{=``6|%
zsLrr{Gez8KMha#$vo6cNiB0+WXw6+zf<hd`)>#p=?9!eWjQ(+h?Sc4@$sW<k%W_z&
zX~HRRa?79AJSy5EXKkPDuwD}~zA?<`A$>$|@|)J+CHsucU)txMXKN}y{zfit-+c4l
zkD;*&xmc34$4R*CX^=HdT5!&*jDfUl(#>Nf78LtT77zCRGxEdDA`G7EHAE8{$q>eV
zGYhVo%*tkIo)}ZT9~@hp_<5RF)p@;&|GF34_MBw#uyF_~d#KNWw5mq|YN0VPlzpuU
z4dWis7ug|_60$?FM%T5|A&t4^3B<-Z2-BW7jA9a?*7LtvCO?Bf83-u_H%@;hl-l(!
z`UZX;;x73WxFY>#WmM?)7e1#fC!|GJ!A6`4wGO;8+4rKkdIqZbnR89`G3zh8G0<df
z$MtTA$l&ekKtVOn1&Kw4A!MdLa{*+jE#c=PkDo%ZrAOetzwTZ6l^+dV+g2zRLG%PX
zIx|33r2+w9h3_U@av(dz64UMiCKN&(ZW^_B3fJ86iQ!vP0sFNt33{dJbhXZTsdDT%
z7vG>{#gCGSA{^)TBWq;hU*6A?L;pv$<}&qK_Kv0P`IqIv-BgMYi~O(_pZu1$650n1
zz6jncTZ$@nPQy`5yGKPaaBHz3`t-aY)0J20`|8ZUQ0WA+_=%sHSa3Zw`gg^N?*PZ_
z=vpqsj_iripzYcWsfIUY6Gw~@F1tT2^vN&aR<O4|HzAgwa@uWOMY(Z0ETtwy%ae_e
z_}n8%?_`XalpIMD&&pSnYBb2F8rRBp$mjRpe!T~OubnbBo3#O1aTy74Wp<*C(~3vw
z$`DY^3|+&rtosIsC7`!M6>lCFz~tAG)JU7qb~)<P2l7yYO0D@!%BA^!Vsh&A`RCQs
zQ^JEli-&ULA>RcTnFRqUsig^=0~KXW5Q&}uZNp2o19?fldALfXawp$8!{rg-H^gFA
zV0YnwHxv@IZ6O+H{)JRFt&vaSJqdlXvvWE7HrQ-;gViqgsUuQX790>tGn0GRzmc*<
zl?EH$^3jgzw;9EuCpn{d9rVnYv)-hGMB}z9R|<4#lq;o2^0t|UDZ0Lpy`kMWk;?dK
zIJ0hN#tIZ&D8cX69pV!7;qy$$ONaZMPV7FumCxU|t+&5BB7YSUD`{F%*JJx9@L*ih
z2J(kPS^(e}9QUsAzITMI#P5O>w?@)Hc*Lw%gZGm*G7Uph;f^7sI}n}E{wY25J_E}s
zI7~K2zY_ByFiL?#o2{oEl@OiZi66Hc_0YN#rF!T2J5l#bMqC<ci|?jSuTS5{Vt{8{
z$K8;5$6E}#bO@jz$&&|z2tD9H9Z9bzzo$gqlZ->HW6Q>C*JrZAwZsr!iHGMxinToE
zubf$svYK=Rx7QeE0D47Gf^X{{a>TLD@~F+DDzD+-xsfdxeHuaho6<?3hzzH<q)kfG
z43{-e1%cmt4ku)ZBD=pf1m}j%El6((S6OX9!_?OZFv0$_X8PG5IEed(h9(PKuS9X9
zE^W7N<*bL&P3rIff0o!~7Km}5l%MiotFq0*6yMTkRsKm>DY2-%<*<`u1bEa51b<nc
zj&{@iW&CF&pk)I1;w>DH6^Hg=t=Sp7kdKm6S@6>{XsuB^%lg;k_leYFXKX8AJwTDR
zQ}lfPIk_;BgT#Mc*`D7hak;{D{OSlb013Rfa7I1%IqCm!m0Dqetu9En?<$22H4v1w
z2;Ah#s*W&oq_0G|#EDT0apA~5sisu@7A_PG^!!1r)fFlsy)o-`P%BsAvw?h(FLgxw
z=;yfPA_3S>mWnvnM!&8F$X`j?rKTP5NHxH6zQQS2?kUc_o4b$oYHdpxkJYop2`%Hh
zR24RAU-MN5KgdRT6A=qIi{N%$6?0Gi9bzjxuEksGom}W~Qb6N^HV^MoyPBlDI4<R{
zAzY_+-8}m8G0H@}e6P>lXmw&}#o^>cWk`@+Fye+ML4*{_OVwEw|1M$GWZ$or+|vT$
z@0uNDA~eeO^+d$$fa8#qef((3ft{(~y?`-!#fXKGpCv|(ux*TCor8ZpU_Of}1xI#Y
zXL?(7VX^!LsDQK{Y$##Wh*TqS&d~fI{x+<-2Nu6B7ETr147e1z3(IXNPwEQS_0&_Z
zy|>nd(Y;3~XX4ATl;nmFt30Cy7eo;>B4tF96zLgdrBs981Qbv%!}rRi;3xYD=m$d;
zEs-$gE_^<A9&f*Q0udZp;FM>PhnzW1le+!zBj%h|zE;X~&G+#d%9JQui(h{RSA8O%
zYu@Y=(>x%PsiF$ktO19?Cz_qF*&^sen+Z|~pFL3q_pu@Cx3<Fs(7wS^980qAj3`)s
zwH7h4j#JsaiXf~9F5xbmQzg=1#-+O$lbi3eG-S8OAs3vwa0rt*Ek&F1D~R#mjrn%x
zV%r*yWXy6ZBLAO9hZ`}}M?q(jWzxng>6pgLtEJZY>xxDV0DS}o8S(Sm5N_r;T}pcO
zY{B#6In9?MvG)?SSfx0Us|VhNp)2L4;1Cx0K=e^}i->S_Fz~urnUbj63Cr=Rl7ObL
zs;FS5XONSp=`e;_V^S<uo#GE_nBm@PB4^ETCKGa>%^0k)5A?@y_V06YWRNU`az66Q
zI^CFYFROg&^?C3d2pL$>pEku^zzfEi_z_}FlWy#v-^7WdlljxdIAyh71#6=<;Q0Z=
zjquaw!^E66LXPREI>}Ly4g5Od_ICW)M!HwYxD0H#=EGjc7!&v|mBJ*b=bR>1$kj1o
zQ1Aa)8@X5K$EW(zDUlf$<zsk^a^AF^I=)l@_QJS?_)x~FA2s$g30(fk>XH<s^eSQ%
zpgQ7Q=axPAz8k*G#k=C8UA2Brs|b&Bm~g~XoccPcjq&g1G<x1Fp77^5r465tT(V4}
z<@c?DHP;|IVmV!AS-xs_7?pBiL@K?f1MJj4z`sFdIc>Li_9Tj|NVIF6zrb2Vqr@zr
zaxmGLCo8JKy>;Xm`pManHjvDh-Z$d-AsERW|Hcr&erLqN9)`sM?($~&pXn!FO?AFb
zKB3<OfOI6;X&Fk=h?`l{aX{0wOxB*^Qf4(0K(DQ_AzT1Q2g{fm(dxZs-M8mqU}Yg~
z3BQDGK{+gFQ%DH$oT=t3rs7<twHui*96`!}4C?<7X6ees2Ai~L6ggnneMu%0)(j-f
ziq7)r!aOy%gP#PtYFv@;6l53y4A@)FMehK#coXePxVT~{uQn{7SjR=Y&1^vK#CMRo
z52;B2SJxQfuYp)v5~oGm5&Kr)-;_E|>v6PS*#WRPXH}lai)!NhhHP1qSzP2xb-lBu
zRO(-?t%~#|weKTq4262&9VZTP`nGs;pi6Gb$h~UDgsDXwB(!a8Cgzd%A7`*kS?60~
z-D~7_v&mQaoDC#ui;y(t8CqP+;dIbha(l^uuSbYFYWnpZj&i7wHS3H3B!qEEkRA@m
z>oF2EbI&<SQF*k)Y`<P*wY@WnCb_kLzrEgb5%g!CCMgJD`}z7RKn6M1dU&RnW9w@i
z8@&Vmd-B8ns=nX~Dg7Z0itrWqY{|g*c&;9>NwJq5-Nzt#B6sMA-bCVoxt!CREEPfJ
z7iZ6l=mM?LIp7+4{~_w7Ai#pBbsNt;5=Ax<LQNF|*nY{d9TQHY=pwnmVaD)Gr)+q!
zi$p)yStGdf6T<2wGaa%6?%jtY(={<YZ2GmXLrR)QNc7uBq$k4qG~!`)HyeZjW?JLF
zF8+}srBM%!PkMwnF~c*gCj6H%mwOmLrXNMq*`ZcXIOhe73d40p`eK*7T{n{DvF$^U
zsue`_7#k7n=f_b}xY77dEne8#cGRF&8n`6gnw$eO2Bt$d+025k1DE7pBBhS^?s4*3
zKsv^Bj<OcFd%Ufx;%%P{ox?%S!Tb(gevs%ZSu&}1x4Il5bW+oWS!&^ShBb-_&)t&r
zgr|9ZUf`f|nmQ=T=4t}2j^1!rq2bW(f3e6G(B@<uSV^e&5!XxmWG5s7PGXl6TT>Oo
zdCoIxB5U1kpw!LrY3t3<a;MN0drpC{@-wes@^)11;T`p3ZI&?4j_S(w2w$w0IdWYK
z*iwjdMapBcLEcc%2uA7-=C6omV%4&dGq7c&LV(m8WmOly!gwCXXanITJBefGr7I$#
zEt`yUkni6?r_AF)%8Oru+$kgwdYky$E|SyEfj60YNA!%N?7&wpD<id&ADcg;usJ79
zSt&{nT3aDb{csQ5J^)Yaec_JFOwe1?_p>1i>Sy&;+!cnCiVD&6qWEqVBmFdL0|EZB
zp<C$wUD+*QNt!*vjPMrX7+X6D*-u6{zt(M?8V*!uOFIj4zWfdBHZ37RVPSM5TADS;
zy1h<KQmN+=d)DB{la65lGA9<()Bi_zm!XqH?NB-55GhLQCc%;s<6*OZB@uQZP}-uj
zKjGP1@QR|<Z)NWDD%vtl?Q;}PU=*`gme@i>Cleb<X?Q;0Jg1}Fcr>5M3Uslaz`ZDO
zuau`ZEUB0im&hg?Co8;<l=^c_NrT-cVCIi+VCKEjRk2R~kZyXnn=F7w_Lu^co@3MF
z6lOvZyuq+41>?K3SfHT|*^C3)?s5q!?LR+&UQ9ZSLKe?e1;{8TUt6ZN0dV8nnhqg8
z-{0U(<_ZBZ5<ljUEsnelN~4K`02r$U^E75Ubqb>#;&kp&KKBXD_-D1VBFSJ2{zq;i
z!}!kl_VFVjCl#u-$_KOv@yyXAfxW+_<~YD{Y*JzmF#3855BoQ<2dQuCyOx%Y<i}OS
z^CwW$S<n?3WDeFjb5>MF^b>w-yc|z%CivK3wX*`fY;`O`<B7Wk`&cg@6OM#HKKKt-
zweWPXU%5to`iRij(BzX|Tay<KZH|{Dq-y$KDjFyeF3#r}@^b+^M-MvXo?XuLmPCSE
z({)-I6KW@kB7Zl2?pBl!tS?p-ORrBr8T9-fZ(f14<B#Km=GG!VWFe?e-eJ;j{L3`c
zlJSbkm&KJP<h0ze0zVGl`9c1;To>9Kn_+`2@nwHlq9DFg#?P-X9PO{^4F*j?Sqid&
zoiSK{H}c%?WZC%RXL&JA)SkMg1>T~_>Jo4&af#E`<%c7?o|`cA7FVMz8TjcQN~Jhf
zaj_%M+^coJ<d}679Yd<+pGWVlLIG_&xkPz{{COHvU`ZT2qV%zIOcs(-DLsM2aN)-0
zo-e|2kd!hHc)?$xg@+v%v$qW7G)>@it@D$2uZO(CTfV{=E*SFb*fyE`=-}mjl~;t_
z!fSehTz48K-!=P;5nr0x`rWhM%AVBk=)KS@(-UP`h#Rrc+)0Mti&P&U3Z;_cQDB_^
z_R3_OpoTNRa<!7fko#qLk3@Cs!vIPVvS=g*@{|}cSQSXF+z=c);h`%a=$XH2H)0YU
zZ^tX1Wp%v6>o`?5k8!>HSZeyoFpR<}@Ei1)BN=YcYhQ>}ZIB}<RM6Z-D@UAYqv?n6
zJKY%LB9b0XYD||qW)lq^wz0+9(0XapA_=U?GD3lV(4<&p%3A22$HU4<g0fIPQ?kvr
zHEw;~-4<UkPFm0q?({;Siv%pQI_*5~?9pWCqg|dH>~nZfyk^y)3BO|j&UyTLDnp4s
z3~Jz*&yRQ-=S=$H7S^g87RORxNd^jQF=qON-a{Tw{r@t&9QhMvFOug4zmUX2bPK32
z-dQ%gVg?TsLM;AtW46V2l*Ba(h<8|-8g*<;Yi#QO9{x>wDfKb7OX=JBb;){>3}Z!>
z5hH%=x<lQWX}co_BZ-{^ag-|+r{58&fsc?BFY7Z3Ya0s2eE)!!Ug#vQw1Kz20dT%9
z{V?n>KbZ%?L3=?y`SM4&<k;0XuQ^u)Hu7(TLljV%BJ*s8Qd(kr1r`7I8Ab~9d*drp
z0;=(`icMl9c(h6YDP(TQ^Dc2>|2=>{BDT%7F+lFb7)UBP#%IEg_nvo*k2He~(vzv>
z|7o6$dW<r3v^i{r!8S|&eF?%2U*bDZK}&ADO#~C-#4S(y;5}_hrcPz+=rGTN$dwiQ
zel+DfnT{`Kl{WH9;UHt!sTDC~Tpf1D%<@MNuQNZj3n4q*lce_N<umvpq;6csZOG0Z
zn_=OINg*E9O=#rT4Im#r$O;eYhWSGW0$i{{1V>+2l(>mCNiH<dFq~0R`wL4H$1?y@
zIGiB?<J_bJoL+U43AzH_&<#Y^F@i*W20fk31T=ms&>v)=-mq>gn+43Z&xiF<X2&&K
zFIKwJAE^!pysdLRJ`4rBKndRbXN_D__$-BYgnixvARwhg?iFlTC`x%fd9pQt7-16~
zaHt<%Tw=G51=#4j3K*<nYJz1kWO<axqU%+G(u8)W&r%`_A6~yxVTdEXj0Grcz3nUc
z`HYP!2*8FY)e`+gVxJESi+;e}zn!tx)rG7E{v+AP^*ubGL#s9Vc5H^t?Z&`7GzQYz
z578r74L^-M3n4S08@i%grCxLwQ~rlxFU+*ZY_}S72CIaZF_6DT1f$S1{*nZKoimkr
z&05IvHC+ZdcwceX9D}aX=9O#N{@!Kk?U+2E8#TFSca|_`bZltrhI?Y@!MJULMD$41
z=uDwvIxjHy+m~$KjJXCHy~H^B;c-#O`XOQB9AfkDLJ{x#(c+d-OBSYCz$dk&l;guc
zWOd~-N5}1VN&M=@M_*vBRrW_UdAyu5p+L>MnCRi3>n*g;CO58LAj;J%7_t#F9fdkF
z^i^i1n%o|XoY*3<K;xtbk%<PT9rOv2ii5)_0wZQ#;{H>yNg>!%5~Q_pC;Um<N)tB;
z+1Q9!3V)}rgUy5w)2hHf(0r^HApj=qMD@wm{Av{U>HPGeD5324L2_Yuvs29e=T@-D
z9WB`qiI|UH-=|2`D?38sXj(6^*IUzS3Fhedw4DxQ8z{ilbXY%uzj3FbLa@N#>LkRl
zYbXZuy9SBG7vE#HdmHcBEe)54v$<;^o=cC6C8^#qM^E8Wx^J^n7X3Z#2LQfj-9lC`
zxK$b@noMWQen4U;Hbszs6Iu75k>@r)LFXUhG~U1-aL#BxusC4357`;mGKr;Jj*r&|
zKkF=gD<uDzXD0@iZRrz%hUs8E%t{waSo;!~CaO;}k7;h9=^<WxlR<4?bN2A^4(V03
z)*=KSB03sEMaOO|MD(SuYRg<;jW7xm^Skr0C2}AfQ~e^@*JX)GcR-6EAE;U(9>4_D
z{zI$fF}ET)y562L)UAqFfI<ZaZp;j#KIJ*YFTe6tzQgEZCu=ETWqOfsrFO7#Gj-$v
zKK)qU44c8c5h*bfhU`<S4HN7BNs+h_Yl^5+=v1mq<2@*pNatGbEF!K6-8-Xhht4j^
z{%1zJ{s!%}^M_8)Ev$X!tpivM(ZB9+yHfc{P0KlxQA*>q4Sx!}add-%cW-nKX--Ga
z{tG-?5_+8FjNDR~NGA?+di!7AQN`Kite8kFThGni>Wwg0magh=(W(hFG?!wIJ7G<P
zF6V9?w+IM{DCYVzj}7+cTMvb5N|sjmdo^pnuwQmF_Up<XWSt4uR7FY;M2wO`wuvPK
z48U&}g1CZI86=u>6B;m@bV^NynPD9ebC|L??7JK`TkXnz#f)_fFJ$HhTs6&^v=!ZH
z%=$6|c3LBpnba$^+=|oFQtQBWggQ=pDNf|h7+#CoTAx{jNE$FXdK*)(WXEW(E;LGO
zSNP2!VC?Of0=W&c9p66E$g2L+K7Od)qLzcGASL|)cmq?=7OR9#nCrCNMnAl+6I!XQ
zlLg$;$j{W-3OjBmGk69v?!-7Ub}s{Zfea#jf9v4}hV#lCqPE%XtpuJ;n-nDlG5Saz
zlmC9^0{{#xS0Bv|U(zg=xm&L0w(`_h!}MRrbF>j~>5_Z=dVn`VXZ;z!hqFy*??Uxw
zN7ez>@%-ux*HUgZ)epGfw1JuHofG_>l43Y-I*Bmdx40p${lo^Eq4DE_#*~ZSV{!R3
z|GXVFfUAlj2s5qJi+>^!irNmDqG(Y==%A!j>YN{!L*d;X8ekh)gO076c;<wmz==Jm
zK)IEFApE^&2xIx7>}sco!)+)(j#zVH2qv@_tt-&C1yUGpB^2NM?g@bW)7M3<B88U?
zaqc(I3^S@~*Y6>M-a-M=UQoTtwK)|~&Xg8=(Vt~0U?YSQW-JS2>Hf_tWj)i5O{ha)
z%MBVfI7_k(Q!Lw5>Qu@B2BNCu0RuBs%;crPqIG^YhDGjaMLATZ5oBIQC>BX^ew+!i
z2$&t48FhIAie+sz5~bc#{g4uyNZ`Iol^IJ8hXj<j(h<~c@IqWn3mV{TYSxu=x-Fr>
zcA=%#I`NY%?H9syU!~4+LN)Flt0=l~6$*$l#dh;<P(^^+WpwzAw4G9KdQ<mFEukFf
zWEHpH`OzS`lzv6hWwB=TotFS2G;)f=)T*$hS9h;CbVBZ9Bi2gSYG-ZWn^Tc}`+I?Q
zcq{3H-MFWaAiJp8#Drw(iFOoxP#$YJ))iuLhb8NZ9b{=HJ;=qW^`@LN47ppo=;OXB
zLscMw<C6ey|AX#dv4k_7F!Aaa#JXpKVFS&hP~kx}`e_@pAB#grPh`_{ibmR>YkOR|
zdn>pT?~d@X4U!Qz^Y#kQf2k;7rlkc}?=ng}gMt<7V8hh{fV7@ay@ZNOq+`53;(5l}
znWWD2FazlRL!~qJu)Sk{tt*ODx|P(h@K8;zFHH+m8H*_&&wbcDL4>p*$91<yjy2@)
zMsr*Ta{<1MDJ;C8SvSnvq<AkJH#V^d$!UMw;N2C%1c9EuNTnHz-|`XmOJeJoE{%3R
z^HmNYB(7kCy{T=Q<iWxP>OXiavXg{ka@cfk)j!lZCTU1?o$rXWWGyY(kdlYFAtb-e
zMwWS_%|Z!Xu8stW07csIv}}#Gt1p|MnsCI9WLF8A3FF8C<eiliB7osHHRH=WVEczW
zG;JzrudC5W;v}s?6Fs{4&9~6iFaN}Dq=IsJ#CeJ%FWM|9<}p>r!H!W9*fw5^s&6v2
zS_-XgXgu2<*TDBgALxYuD>KUmfL$m^L(^OHXeeY{*Wjk-_$a|*@}*O5_N1p+dP;4T
zfJeyY+(7+&@FO!6rlA;0G03~A=gciV$VIRal&A#Fj{8SbfqIgf>JkDPnZW<cBmjIM
z*LLRTfK7H+Jk(_NM92Z=)#iwSE<~99i5A2_er7=Vt=t)S`1Mj&II{mIU!>c|+&=on
zSF3rmLFNA>Yx*XTbEj9Z>3Sx!ssToB8@o!y6%J!2acgEKL;T^C(f_V-L8hx=6CHs1
zu(|rox)BOazch7`*tc~5(Fx;pWchP}sSO8NZ4C}sqi!|YoGR&FWOb|HaE*62^YwNn
zx+gN9SUI?6Iwk(N{J&~_i+Zf2ilOeo#0!;=fQT4ycwIZ5TpGN+`+0FZ=R5O!lpT+*
z?ERGbCOhUi=q9c3jkA#+=-8v3j{D{bJFFuGRjHoiw5ooS7_|07bvx{G9{-S9W5`4D
z7&Z`0+9&Pfx4e9c(*$4T-}^kRT<qa@YKI7o8P<fhD>!p#S~Y4aIc_z+05w3$zwOl0
zU~Z3@GPP->c>+9Gs43SwTmuu*kPT?<AM3XjiL8%r$9>6Q1iv6>IK`s(DcgVPCR6Qr
zS%${~Hx4+1z@S*pA2kbu%9Alg4*F-W!r1~ZVNOI&{>HPXEcLhhhh}O9Zh+Z3IhiAo
z(28)Nkg1fDT;EpSdb`I9k+GtOvaQR7!H!+=Xj=N34AyR8?V8mUtaotAsJ4Ap)pfkb
zZ^e(hXi>PJ4UQ`mvZ|eZs|W7R+(ZgvR$(K^v*+&JIN#&BND4_*kq=6?%jN#4Lr#UN
zrjHCpX|}zyY?%irBXQ~__S)iE=jLtVwt2ffC;V-#ew)n7I`LpWBo9wWx|RQTc048?
z#`*&?L4Wib8-r~<pnPbydb0Sa+2b#+r74q}<K?eb4fQORi`1zi=8afUkXsZk9_8HT
z;>l}O&D!se3cwqVz$$$w0;T6E10wm#@$4_E=bu|rsZb>D`}AD!WC=~Yvj<Nm{^iGi
zAM}pK)2y%qTxJG!+LLOnh@FPhR_LXP4vSj*D3pjy&ff`~Uyfye3mGQ(Wx0mj(%8t%
zB;rkV%kPC=^Z?Tz5%g;3KC=3+2Ib-5PcxmNUX-c<W!K`tOgd#mDKR`Xty+8tar;@?
zDDn|7(Lg4`@D!pAvXV5z87*#JXgDa<Cfn#=Q5DrF=T{8?(M|D5qUv=EFPcMRC{r6|
z;!eO_ci|F21^ul3@*GwX3_~yC13){c&nX;Qx|*-_R{)kHC7aB3xAl55axIQ2%Hd7H
zwboxuc@;fd%F;26WY(FXV4QIBgQm12=mxLH_}Wc4&(xK?l`2ur>}FTT1AW0rYi3qI
z(U8aH+xsp4IOUL}IT5})C#+{Sm;Ew|iCo%414hvUoz=!U`E;I{M?<g0K4sDpd+zt#
z8e~NmR2r3jVvxa0POIFvg%cj8Pch<nJn)qB;ije~l**K1j@G>cm#PjBypeyA*Rb;g
zm2+Fy8x$aX9o!gcYBY6j7Z}yIqv_*Cuz-)7G@pgXX$5WxifPuHwKeI_-pHs^KSY>0
z)24VBHiKu0xDrap)B80>8LUE(8`F7g)%3Z{LS<L)P^IA^i~>(eH{|PI^Y3QoG%tmC
zKPXuR&Zn5sMvo!(P!oz^qCz8sCm}EWbpSPk)h*WGs|kWt0Zm|Qh>ndxdfL<nB8Oy_
zr@+xE@kn)l-Kx?!1-c-`w+V435Z)NshkvSeQ3^Biva%#v%MMP3n=|w>diA$}eVS_7
ze>UG|0!d+Lm)t(a7%VPjJz3zurY-a-bryIT`=Dqjpk}Fsqn=~*k*UT}#FbS?=A0R<
z3%7V6p_fd+^BbH)2oSEDfD@f*Ti9G1FTO3!p}8o>hLp<Hep1Wz$-}`z7}X!O+@e*v
zfZxs|XIg~B#5*GhiKFT$@-_j#eYmvfH>coNR`NpQ=;psdJN$rnR67c!W_F4>hO;Ww
z_Fb?o-o@-jdmhF;hw~YrHg1Z@577dBw1|hSvdh~{2~joizGP*WJo5chU3cbP`BBKk
z-E>rqYl&#>|Jj(1cMnI;5nI%Tp^q)87Exh|w<uv7d|QsJK-|8&-^G0UF)tWww!{`9
zXQ6!_kl%-Sr|r?XixHU$Zxo?%5GPLMm*@0{F1+0^EYm@o&kqJ$CK*yjvVq=^&nw+D
z4-qSseM`SmCOlmm7g||)eZ7!9n1h0O?(&i2_W0VCF;;7ZwAAOSRs$WT4|lYMZf>t`
z&Hsy;y{DjnQypzR+~%SAG@R{;bH;MYAK1bgWYA+mfB4SqM<;y#kbU3`WX6)m=Tk~8
zbIof{CK18D4XN~1w^GZJ+ua<%l<kOsGH>xm<vNe70_n3(sfu9_^GeXcE?f%wwe%Fb
z<b~9Jg(Ke`2>~&C#M0!gMo<Rdrhx=p@NLpGq?(*38|BY5o&|x1Z+{<2I$V9z32+^i
z*BL$!u$}4oc}(W)KO@geEun7h3)ExA8gps0=}v3$eeNW&{T&Zd_w$*LLiZ0L&7Gmf
zw%UJ@fO+B+k!aS+DU#LAwZbBK90nk-1DqASrNUrA-_q8yv-OT~&Lmy_rIY?Wn<?Uc
z)Ar(DvfWp|0|MM-=1oGMCGSUy^6<GdTi57~f<Qt$yaIEH?3&4P{B8EnBXy#xSj<Pi
zV-^l_z7v=H_-PHd^<ow~-tVj%I+LEK7i+g%lc+xiCAoncUc_gkr7hKj@;4o(-MXhH
zCO;E;Ko<jD2D~G|P0w{eFjKG}mbJ?0PmtTF=*i_a$HFF5P2#`KC(f7=tWZKL9ab9z
z-BymY1OWOS&9f~HtKei!3J9ExTsMbF<idG|9OK~KX=JCfK;s6Ds_L6ip87zMU}XZ&
z3?Cyg|CNl!+z%@ypbNv4{V|R3JK9W{?a@CGOA*h`p}P;FNPbg5!0tv6fxSPvSa4=*
zFVPUn0}q^}SEVsxvxUpF0N}`YG&`2UDDIy;C|-m4F9kbMN$Dt37ji%PI>_Y0;!isl
zQ^%94bINJ(F&e{~*w>c@g9-+!*V@9!IPqvC{Y0_XMopQdHK+d<pvGOZ-V~;yT%Ua+
zI+@;ZBwxyXs%zoikWg=eed0%7EWg!re|v(rkIsd!3YoH(^z1&YUxHZxXoD0a;+q&t
z_H*kfo?3^%;RBf(+b@U?o4xh$nT7@ZT#$^eRWEnac{~IOCT<d!vG;Kuyu%=G#}}mP
zfhel5O9a&DY|bIxYrj?M7_Y28QSL%gEl5wNfJ>*0oV%EDBw4@#;(5ONGs1!0AMWN+
z%2jpD5WD%CoOqZ6F2RWJuHfkZW?WTTYmb#MY19iE`gdV1#6c=cYGP-pOq4pa(ERpS
zTI>v201G3khIks5==!(Z^HAxZHU}nK!NckLrM_P;jcy_T2)n}VK_)<)2`N2ec;n_B
z)Te_v)QIN=1Xs&_#;s+FeAGjA9sG9ZH^p0trDs@gmLk<h*QMCl#pVtLrYESuZSU#t
z1hdKvs4Y!a9anD{1V#-*^45wbg)0(=9^#3=EAP^aZ~&u+y$sNpDE^*%&Z`z#eb_f@
z8_%k=@_M#`R|XQytjn~{RA~Wi7n?J<?dB8@NEvsj<Kvsjl$K0tU<eHYGV<v(ju$Yp
z_Sz}*_J-zk$<kbP6$hwc;E@EjAR$K<=%tc39w!cNO3Q*zK=lkMDat3HiI-62HXhm+
zlEFq8(c%+9U8(0JJ~6EqD?huID@A;SSOuP1&$OiF7|$c{UQYzp^cHb{aT@F<s%p8p
z_q^DNxw86gdA%NGk7xu<QlipJ-Y?@|ILmhFk(p9`)}|j2G>=4T2;%>ZQ3Ub`mQXTr
zB7m#NtGV;IDRbw<M*OW8zO}YU2)-y?bRyA4Z^NB%Z`+te&p!^KN=^LShS-nOrS6~!
z@5C2;9Q#af`1;&YSU*y&7Hz#4FCOB`4~DdWLlEA3Z2u_V9}&748yIa!d(@{ZzfGz*
z(A<`G@beF|>*8K*KSUqh5o=TdLrzMH6xffzrau--D98y`MAbIq9{1wcd1STevDM!-
zHwv5I3z^y6`+rF&*EnXVs18=+Tal1x`0-EV|InLAyvfqWRJNK8SeP~rT`hNZ^5?$I
z@pY&ws-_+!%rc2)QZyPAVMukoj}5nI<Jb#M@N|PvEPcsENAL$YuvV;HuP-+tP`mkv
zP~--wn7<uEN;1JgTZSIwqrmYBd;ZHVk`*f7Hay$_sG*-gL4jc5(K^=*4pdSKBg4e)
z!kcbaKDxCxwLwHr$n?%NVNu#2qu6AjIq+{j^@RqlRLCDRvY4#Lf;oAH&MCZ|yH}js
zYLk?Z%Se{A6lMG#wP5y~G^j~hy}6Ygsl~AqGI$IOL^{}q^8UKXv9me#4w76eN&#)m
zL-oJG0}mbN+u=T~P!u3wdy>I#5%~%W_?CVv?~qTZD)wjiJ#+$D{LmzCK;u>(H1fov
zadx-J5Hp^vAfh{_G<{c9Sq6})HEOK8BB~ctpCZbL;-g0Qa-|;LYS4(j*rWC{jh-8A
zrD;V#%S%JWrbJ`9B*j6f+rMpVC%A&EfL1_&XMGB}%{$nAz<!l1A=v2zET6Zg(o9zb
zWFI3(bP@Ntt&AF8V%n?qOI6yOzN(rX0U<mm-_$2Gk=N>7TN8RK0GPTPRb#az;Z?!f
zcu%i;`osEhse`HH5JDw?^c$`);)o_=5bl$34T9YO#e}17Nu4%yI8Qiyz0SpeyPbD|
zZv!RD@&I59sccFE;J9R2)j_E&m;8qSpwI6jX!XiG7;v!TxMvxvKq@oDjxQ&|Tixiz
zk{YDn>W~t_QjVzyK+7hnS4S$d3rh_?ci`Dr&|8ILJ^^q;w<X0w_zqI7+Z5F&+ALPl
zbSr8{n|y31&!O-X@jE61q%d1R=wOKGLC*$KpSyf1deDlm$j%qU_Be96*T4>OjZw_w
z3$%P6qJ2Pqat8=(Kopz7<*Eha>E&WAly_3oXw0$Wk)h^05hflF2&}G({O8MtV*=oq
zT~vffEMY*^JwXPvPNQ&%8Cr987muI1m$`4Sd7?n+lM@4yib7MHLLa6M<jEy=8t5K)
zRIcMm0_-rPDSg;aB#J4iN^E5B^6`w?)PDAt4%O|#nk6R3K%B)0MqZkLG-LJyu$flI
z9y|jIaiN=D<!iVt<wqmU_ss)sq+SLLYvTD1w<eZG=IWAJ8M$19-q=QiQ&Iq%%N&%u
zs7PAVFlXJsfIia;V?tqlxK@3BixvbiW18UXVnV`uO#29{qQ`5x2&p|jQ2JV>a`AEC
zyzScW?Km7tO<A4ZzdMYA|KBA(7&M}1?`Z>gL`#T(+4qJk5I!mqVW&+`0L|3R$o9uS
z!4KA9a7x8w`m4rf{3((62%^`Et+znhVP3^{fP!)N@pKd%vJGv?B_O}ix4)HrMUeUJ
z_Iudo<b|@)F?00O3H#59{y!JBZM`vW%qCzr_=+bqu`_<azQoA(W6B4a95nr8NJ2ON
z&<6uHv1eT}B+k$-@~*LrG61>wZjZ0Z)+#6de->#Tj~`4`eT_Uy55J7PBJhf!?{{lx
zcn2FVyrqnIc#=U};T8z|xS!vJc~L$X%*AHk!TD>_1ctp1uNr;V^%&1T4K&Pj!I)+C
z74;!`KemRm{_ukC(AC-L-#&R6Ud?fKuGQOdmAM22U5yQycK&YQ@1?(|c)p)mA6x3=
zP}E|-3#>MxaTy_<KUr(p?joc+REk_Wy_~1*JpVC|P6E*_(;KwS+E}DQPjMV&A*P|X
zrr$jz%`bD+S&t-w-@r`I4yBy{;m{|p1)y<y!I(1Rp#L2kmg7>&P=Z)O5E2F-U#wBB
z-q|rk(ZGmjBS;Enye<@iFN@Zx?3`i>36P0HB!*1msX+B?Y>eH_j_kw&g4{#=KI&>b
z+zQOpT@FTzaG=VZ4mJ{PKlwk+Gij;Dyyx<1s-3N4hT-53I}B;gS;Ajzf45JIRJOV{
zoQrX6q;X|jPlxQyHzI4Ad}4j>IK>*6cQKih<*)7=M1p;Sqy`-XeLtOQD3iC){(Uai
zmN21={A|MM9ifYZtJ)zFW(X^N5@GZ?y~6Y=YO5a*-zQakTu946L0Uawwyiko$w{5D
zpgCfHI~L`NOhx(cwp24A-n^NvA5Gh_R12KYJt>lG&{TXWhmiU;T9%pQ0*J0!_sy91
zli_XUL@yV-_)vhJ>wGmF78MGMGQZF5QU4q|)EHIlKKC_A!s8&;V^K=wJiQhR%YwaV
z@~-ok_68t+CrOy%>k&GQPv40vrN5LD=UUM!b`RBhDHimf@z*K6f{9dhl=XYZ`d!VQ
zi#)39iKZ^qmm?N@af9gQ0ap8pSf7b-Eoo|d8Pt^zz5Oru91D8w6xtj|Z1aW1KxPW8
zhg?n>&1~jr*RczI#{&n`^+deqZ&WZx9qm>t6HTVH|FqeH0A8@Ay+$WU_EYFU6zlL$
ze=Q;<w8LL;`N>TMPCc+(#!v-Hvv-B|Wijz`^EMg+8f6kcQXTYD;?hPLeEe^Iky0|n
zrz}R=u+<Yk{5dg(lt7L|_piy(Wujgqilvh$VIX}}`_@TXmtF04D)fQ+NpOSt!O5cB
zo$PX*oU)4CFO&3!TYJ^^Lb=t&z8~OzNeF10q)z~N>J-1;HI0UMD}sdL3v^mgjZAAs
zu|+uPS}Y4*!=$-mvwb}!@sBCKTLW2-W{`7(4olNexD1BxW8<+{Z~?_qb!t)putZtx
z(oBwu@||T}deFo|wtUir$(E9Onef%iZC1Z|Vz*cx;`M^ahzIJrD3nGI!BkgrGN{|2
zJ=;6A0zXIb%mcp=ijK~X!9LPJq($-6Wm?-t@wy|M&FfISPR0l3D6L@0eW(~^`U|^h
zfB1x$8+lb?<Zy6ors%V+;*e?Tiufl+U$uQKBG{*)FT*u*k*Y8;BOL~PLw;oQr+2t)
zaDF;#m(TwbJMQ6J6eY^3g>XoWQ|RCHM=}Emu^$qF1@eXKh<cZc$8rX>p(Ru0CATkW
zaYI*K-AuL&&z(-_OvP8c#>anIiTzXH4OrfFN@Xj`pGw$I6nqZ9KCbTLVyNS1q&)%V
zpX<o-qyM`vfauYKX=nnqaiE2R0Vsxj4V-MOdm<Qz1I-DQa4$a|73yL%W%<gP0Vee5
zc>QfWX=HR%g(il;3ku9~018INez|w<`0rE|vtcJEfdnCY;E%;d>zgxyDR}Le4tz&O
z9H2*fitS{KWK!(IL@$y?jObM7f5^3{d{<hTK9mb@6XJ`b>)f44BuM#tc<uW~(A34O
zcGY-K^?^$|FwZ~+?6=7S%GRCISxN;M8uJrwAKx9;OCNW4&0f}4*L2Z5!@hdOYWXL|
z2ZWZzn4e3|LW&R@XVf~zgdjV7AU`a@THk=eE@oTa@trw@hY7clI@NWFxbWI*1ZFKZ
z5Td`XD|v^>^6h7aLp8a1VgdBW5kCBEtu9Ge*!T!XmwNGDdEI5<2Ec>~btxG}x+EBP
zr;5yc69;RuPRv5Kl9mIGT}=B#*#vhvxNtf>ByICgQ=tK2`-v3>1IwY0w&51h`X9-Q
z&zRP>@qGp8nHhvFaj;P3AT5E6sMS7Q`hq#e2l4QE@ydNMdE0H%o<XF9!))QAAnuu_
zdTpOCbcPGB2JHP4jD2)L7KmU$aiNlmI~+A4CbRfANEfr=L+}+G_Li{&2}UDO>rY)z
z?l7(W7$C0Cm7&pmzMy7Ug~RdT0v9=XreBBYHu<eBQNzeMgviZGjJ@R->()3m9a4!q
zcfVsRT7P!07#+BhIzUvF6hKl#T-hXlGsfK`=XubC`ee5ObFKTK@#r!8-q~g6sZIfv
zILnX|SwTOyL=EST?3bwL&*~NWkjnrhj!#(-=Gt@*z0&E#Y@ZNN8t@E;&z<k3))JH6
z_oyrq0Q#2&Y+v=~(d(uPePud;aUD$&{jH3F6N}lUy1=O93`ol}SqqWvT_^*2reeOU
ziBXB?iM+{T#X|(3`F?}MLixXzmXbVknA@#e*jObz-qHk_%Wxskt3!+_FP!0Wf~$HN
zzGthaQC$r%X||LFD7ptE(<Wz>QjaeHxuM*w5BBz2<$HXy)*`)9Mu5H`fy|gEY>#(`
zkhyu#sS@tT{ymT@*yIt*?>0->J6gTIKbsp1@NM-+JO*!euUCnWD$>YPRgWK*9>pu1
zN-j=aS$`5g-OsxIhy{HdUS5V}rP5H^$cm>{LAE@FEuXW{0B*Sgh2Z2<*MxCzBL#{S
zL7vp49<qB{JoW5r#2ihAm>d#AiXI1w!qD<)(`n<!=Ki~5U*2D(9w(~{gzpMZ$(Va?
zILWUgysW#=Rq}Mu{r#wv@!3Gx=i3lpOH7i`MjxryCYdltcv&^RZSvPy)rwmX?y|%*
zV&AN~!&Ze`h0fYRn@Xr<eKI@eV(aY{{>AD;C#T#5>EXHys%UaA$*yMX=$CGFPfCVo
zi0btJWx_XZq_X1*Np>1<IL#I;dYMhiE_l{)^_o4k#Q(uv6mH$WA>j?Xv^jNfD;;CV
zYkaVJT^i`P-x&N(*ah(u&<SAHiA1knd*Y{wKn0n8G&cC;lYQ`Q#_b}3kXS=$vmw8g
z-Wnru9PBwkKd4Ek@8B6#Of5_VbBgfvl1K2|F7voQnG<*bhGvFWTZQDTMH1;1lkTYl
zXDKKgC+?ONDP_tWgYhA~(L501qw;vto=J4dnN}Ik(Fqs}iUauyXGY#cS$kcPk27S#
zmkIH9zPdb{lZ&sIa=*FcH}~T|(HbvpAc4_;`fbwh3eG%SMaNr8?x_Z376<sY@qyZl
zBY*(#Qilwq%lcW+i9mV>F0{|TCmhFJ-8u(+Oy!e1Weyj{zgfmW3+g?Pe6v3}m3zBv
z!5@jETyy>KaL0SO1c?!P{N*o!3+ch?{ngOqELZ7Yr0!1g7&cu?Fr$sJTHKW83o|&q
z`zgE_y$Fan0e!<qp{|O%h-L1fPv?2`ojS@|3>1!h@{F6ZSeYe_Yh~tHgB$k11vDGD
zf$xIBXDZJQ)rDXR)7tj8ug;g|kVZO=wEU%5kVSZWt>sHTuP(CIm`+^Mlq_+l9VV@|
zr}u@tM4{^A)Cm(YpGqv%VUu}6<XKJ)l@T)0>tEBcJTTm9^K%T$%@KSMf4Okv`ufL~
z+#d^+>PH`GJ9}3N-P-ZP7j<-~3|M?UJxSt8=V^d&<m`b;b8KJ4rK*TbXvpq3Y<+Q7
zUuHU3D6!$$kD08;8xhxj0lXPwm25M_E!vZ_B-`*~iw+b2I71>zHSJOuIy<57(`%cR
zV{=67RRljAR^QPPAaoAUv*xxU)43C87-O>j@82JLFnhk;#$v!E53Y4%$N6gfQ1IvO
z(}(-o1#Ifl5y{{-zO%muFl`ddKqDXtN9RFR6p8$^#jN8K@arVwJ0P}NEtLeE>UM$V
zjkSy+mV$>(+*SD55<rf=!Ip$yS1cQm+;k~4ZWW=$eY&(=Y8R%ZD$+)20}6uRp`^+6
z)ealW9}HkSod4H!IAl?}miz4|r0lI$Gs*_1DjM)b^1#(Z9AL=V0~Zvv8Jud#dx6u#
z;ONDkB0kjOh;o`55+dI0L%f$5HT|+-fq}yW5SBl6%MK`0V4!iu1?4=$NZcQsfa>bk
z$Hh@s!;&fUD>y2tH)q7}yS^Z2^b*%{Xc-DAXQ7i%Wqv8wUbtyZ{CZZBDQEtt@t=Vp
zGXPQY>C*!*co*>-Zz7AtPJ%^|;_H4tc#&L7<^3tN)lR*X=cE)_RdytR1Vtd-F^N_F
z4glyr;H@143FzF?h{x}}9xXs%CGw}lB4Wq6<q^K|Fq`TM<JOL8x(T25$*|73C<0JV
zS4-|jXPPM|9Gg$cJF|gd7*Lq3#zZQ2EN_%AH~I6plg>0GJ&qZt+BpO5h8-~&Q=9Nn
zkTR%bkiu|oXxiCVO^?&JRt~_JrwC^X^}<++3u3`cAG;vwKp$W0{v`&JL;0=vXT(0D
zJVb5O8C30XJO1vR;V@Pn1HvW+okLAb{IH|_U!XI+2Lf`3`KyU|eel#JMVoQvZlWK`
zSS%?H*GZ6YEOY_7+2*_Y54!EH3!K?!1Tnmo5diO68i&<|j1O2jFVxx6&#gjap$=sK
z`;$BXFJHnhPXo_BwLro2>p;_VVwSOIYrM`G9#1!VI2r5I6i@*O1j4uCBydTeeT80F
z9&K_MN6MCY!k6l`%2VNgCyr%5c;+TXs#kn>H5w1FHv3tUm51A@9piJgt-(y<fOh*Y
zn=1t<e#S(Hi^buSR|fL9PAOU)8FY!%<dYe&Fex#r-R3k4AEQ@K+57hz=uhRaNjMBI
z<Gz1qq;yt(Ete|8Kb&osr^w`(u)@l(1$NyavfYW?bY6P}BhUGgovNL2S9R;^JfB9M
z6&BKD0sFULt$hQZv#dly@jKg;t67U-b;c?iQj8G;R+NOGg}h1H@wymkl39)E3~dF2
zj3}9WVP3m%iJErvbJ%cfnl=0+Q;c5$y~DtS@LRuDVj%jO$dy>f+T6M-m^WT<@2JZ+
zcH@Hey?MjyWeW_FRGhE&0h~4uM+DXugX=VtwBqUO6=qg@2w5i@CTovxjnaV8Cn#u)
ztO*u)F+n6d*Pg_Ow|Aoa#J>GIc)%-%_n44Wi7w+<Q|m!;?@){^c&k>YxJ*tQkO64q
z%2Z7E)swKmyXtx+qRmW*iBx}|WXGf0gkcfQ8%kG<a`Fuge^BIgfBf$?EtMuL29E@L
zVAuCWH?FszGl(4`3L1rW9zn>4Dl5b6J(%#y#vSf20yIKz)9BN-CL?JJ3|N%(MAK3M
zJ~T8zD{Dx>FXTxoP~rhuU<+-6EU(erhSi1sirPH)3ocGr0=D9}Yx&tCyBYb0=KhE5
zuQPKz43LY|E9oo+B<O!LTYD;tuhoGbgMFz@#gB&rg9?p!12ngq<jrWz0k4}HHL5-x
zq&*ezl0Q#TAuf<131O!|AzW-#q*^+7CEry|g{kX56@pR>k4^1>N5Nxw-zv-mM<AVZ
z`uh0r+#@KaA7rNZl~j1jY6G0>NxfYSda2L*$|tm*SC*B~s_-<Ad@W6M&Xw>TrJnIc
zi=SucM99eJ6>H!c4>$$<nauE#+q>9JEa$P2zX>0$vKYqDpzE(e2J#&$mIp%f-gHd2
zzDV$!CotLqY)D^CB(~9E&s<ql2y#70M^&B_DA+W1N3@iwYl_9({)7T$><#%hcvvy6
z$z7XDg-J=ac%9tf1|$sKO-P0~s*$anIZ(FbU|2iSANAARCh2S?lk>u{4b0GvGtmV2
z9d<1Sr|7)_$?c~7I|<8QM5{raJtz}h(f8x{_O&DzZHRwlnph5!zRmvXpGY2=%N&ar
zA2DP2DUG6486YaiV=84~TFF=g{#CAbvOa!9y$O~ef-4e6<I!A$ae+-3=hxFwhUI(g
z-0qybJJP1V$Y*h88<${>42`<3zts&;S9t0O{^(uSB@FW3vW3+@saIFz^*LMhl<i{W
z^{TZixA-YOgLBhjTIef^eJ@hgcjZ-e9T;B<$<+*G;jq|~8I&ifvJJLip$UYjq<z@;
z7z)Kh0EH%`-<`@G9ng^rG!eyGPyO7cN8kpL*Xin8+x%NXagKB*o!np8>Y6|x8wxWQ
znX9OH^HWK*KX>e*C|$>FYvw#kk<hHp^;`d^+(p`fWf(kkRZzR7i=x0;2k{*#$qAI$
zX4@_7vXGI?It&8HD^c&7Be2k=SK;bQ>7a0D)Jtu^xj9ZY7~4hveOz#@?n(z5G`o=K
zgc#()+W6?ep@U%Io~sNRCpl#NrS;=K4t{B4x~xronxcB8>KI6sYs<OU1_cMwb@g~K
zyYj22+^JJlgDfm?)kB7rxN!n{Bac@><RF66a;8@x(yA2j?-M<R#n35=o5MK=X5Li5
z+^Lu=?_;uN2msHS=UZ*}j><1ggCj@L-T+YzymP)rd_f%Z=P$f;#>bl_a4paVu6QPx
zk+YkuL?I}Ku9_Rtt;nGf8Yuyubdc4+i8<9>HkDaQGe;C?w1IjJTUF^#Es0ocbcwad
z;@c1T(uuu6+nI_zKY;&*dsU-A-AEGf464EEgYMssxu1ltRJE;3wu<=sqRV)%U7)bj
zDh3it#ujmw;h2}9F;W#&{PuvtC#P`vd#?Ho9gPu6{K=&!3#T{q$y4O>bP9K^!M^;p
zS~6;o91sfL?KE?M9@Lip<+lmn+Z}3zHRl9gy76xbvS1W03fxUC(}cb$1;v>2K`bN2
z^XA}Mh($sWK6?p_MIz(TQ|JmpB{9Zv`sD?D-xIqSk|*(NyD?)=vg~;d7x402_#-0<
zApLP*HjHlXeRs;UYNs2YTj8*-SOM_YQU<)A@k+T1abImJma7@EL(Mg9I!@owW(v#I
z=FoTy9}>vpLP&27r5_6AFBw9<UZ{hm;O?^z;{Xw0s-%->Zp}lC2Rz^Pnln7q>;Wo4
z1x9E#P+>t}zu9Env0#n@{v1TEQ9AGx?LdHh)Y<Y*&?NN;PLzMoxa6?C^mS?q^ObNt
zcLtPd6+PAKkvz3t;}R!2_NUxSUA`tm2UxIe&o-y=`_3cExxo%=XfSP8sgZ8OLVhei
zA-(5nhoE*0Mq&W+Wzp2EBz}r6?}7e^PetoIZe||g%}Md>idPO;NKC^?DY3NAkUk1d
zWZ=JxZ$0yrCw|~)&Mzv>fVX23MfU0z5T&TYm%4}mntdF6(f|cx%|0+iww&^Qm)f<;
z&U$S$sG`u!UxScS1~s!~G)2%jSn&7ws~N0u9GFYazryJEhk&gmIE4HpRdwD{R6;vY
zh89j|^ee7yK+;<1U?1Jz{%tqe>0WV06?UlulCy~CIl`TcW6T+>B^yc7j9;LATwjmk
zxiDmz6#lW>YpMjPDZ4`=8@t@<w{EIiU*cns8GIRQhmm>qoKxq)tD(2yqwGa{?{yJ3
zRWlIC!Zn_$FHzfKwjRRq;HokJR#awE<f?bP@L-L9s-;%W>kg=3X2M5?-=u6ESPji)
z_Cc^0IhFNN9~s8Lpvf5hyfUM@&wZQ2FUk~YIv8`@n3EYDU{Fo~GP8IRSvlg}_^d#b
zL|xeQRcs@6_zeMQycsxpGq?1`L$Ysgp=D0z9P2E3+Bqb|7T3{jmcgSid^hOS<Y2gZ
z4O(Sa8w<o<VZ~XEd8zxQtuS-lF~87Psly6k<BW6RVh@G*WaKwfLn8^4qY+(@uKjP1
z<UdJ0(bbB<zTs~tsBn=yAA*<#iG_>hCXU{`D}3yJ>9`IzmkE|9AQ8$k`xynHL4S@S
zHjwfI1bG<UTd+|R`gwsSI&1*xy&<&DU>>$#iVm9mk&WzsdcR|!KI;zE+i@DmTUrJ8
zJ(aZeylH_k%wl=+Z&hh$Zc9{H$h{EPa=m33Q$(lO>u+ozW7-Wh341bB-7qsC;|C=y
zs|zzIovmv?x0i^IcJ?CCM_HBraHYn#2J`^jTyBN%3mHzgq*Yc{<1>@M1Z>W_H-{aO
z-Irv|I@p+VSLjq&JWrX^itPYTF_Z8){oZ`bd+X#uoJk(@icUMY$sGKE2}4gGGWS_R
zwe{}y*7-TBEYbtVrOm*;i?<(EDXZy5U1xcr1`5F3{v&vywrk>vD?3@c92MM6V?lW1
z73iF{QJ?>$3>!R#oLcbH52kX*lJw)fm5I}AF8^rt5;I_1Civ-1cb9GIu@ly)B5g$D
zIQuoyO#^K03b-CV;R;N%{fd@NgEc==I`ttd!MGF<rW2*o5F?Jq7X<Xh+seDjK9_At
z&PX4a4Q~pLB@j23BE6R)o?c0RAr<ZLz!=5*F$9~-m95g(|LU2L1wlLeH`s6uMHd?l
z>}jH|p<n+%u1~}anJTgnGh=CR_npC<dK`#`xzcIR%XYw|G&MIwDsGCT=Eb%vYeDrm
z-S=xeOn1LbBqcxjr`JJ(**@?UO9<UeIAe(@GW{6|?xVpsvHq?%9745-jy5Kl!2sFQ
za8xN7knexcM{zm~y$x~T2E6gBVT!DO)4h*9DmruJ5635sf1s~zdkH5D0aK5pTKq|N
zfFQ*4ki0B=DbYi}nSHBo#E65RspH>Q7xEDY+3Lhm3f@|`<f&dSXrE6Hf|~yTX(oA{
zL(H;m7fu+XP|m;&5kMA<=Ty~b1U|AW(iab|ZGRrKa^@CQTdS%wI`!V1R7Tc>`+2yz
zT9e^R+-@=!di2e16f%yQFQ4s@zj)>NMMl{Du%oh>PvF2ka~?wz_Ci%v@$4%O)%dlN
zp;g=Yz)5{`>O{jOCpAbok?O&`qRp$~d`{|AY9O&Ox$|u_{@#C@!lUTx*%+l}Q3a4&
zgB!@)y#2K4Q0*fF4i>pOhm+h*qO_MtriE9Uer$Bi^9>Xk3m4LXM{PG0_xuH{FLX7Z
z2soI;T&U3;SUZpX_DGvOFWG@e&bIaM+z^atRC+sAhHSz(p=ruIhhcZr^KCQaB0(i5
z(gh7g4)-PL`sJIV7{mE_4WCwnPzS$so!eOSXV;Cuv*^N05!=iU!zb`zYaqIUBgk!Z
z=QV{WD_<IMRy_gceQm49N--StPU{?h39`<7!TjCD%F-gb^??`^6y-ehdWlr6jQ?uS
zUfG4wkmv{vtw`ltillbVmWn?yNn=jC!6|g2%Pal;`+nm3&A#beKOe75^ug3!?oEL$
zGj1kj3SEC|xj<nWa^)>lM{k+(@!q2TY<6qc@)fJ=;5V<38(iuNUB5>C$^9{S3RT~-
zHBBwXd~j=@_z5&==q_sPpZPM%avKZ%n+&H2fV7Xa>ri)M(@!}43DLbL+zobZV1RM!
z=O1AvVE06v9(K1sHvvIy<)R*7=11_O29(iZ{1}=!aXbTe<~%QA3bsEEvT8?%fD}Ui
z@=E$mRSHX)x5P_Je9AJ*VsL`GoCzOQdrFwpZ?mRc-Bq-y#!kPX32>2NMIB~_*6bBj
zaUWUQ=MTD&GSL3l;b-QqDuuD3-il8O8grgeTx*g1P~{A~-jWWwaT(_|X!=ziQFfb3
zC%^LUIJ4{o$9=Go?qnS93Mo4Y5Hd`?740+G`z^3wex}eZ!5qTK-oH9!D>l%9!R2p_
z(t>Y-NSUn2guUvJKAkv!4mP3`Aei_3o2LJMAtCQwJTBj#MH-Uee`!Xj>qr9#4qmPc
zq~`v2so5MrMwek~{gPLdVh7jQw?LzOO<-(&Vrf%h*z2zo+ypj76W%2J<O#~1^n!|L
zo>eYgM1*J!ZJ|%K*kP<Af<t)uc#j_vq9=fj3y@9K%Nsh?i)?Iz64cbk{4i+jC>hVb
zz$)BpwbK;$##o@Bk-t;pL@HUggr#b=K7}e+M*9Q{+<JaaS#IcgG8R9}>fT=CP$1b~
zz$*-`Bxb2xi~h%Z#U4vewx28QNT0VfxG?WmfA17rH%*OgoY=&`?%IN<v(`^xPZ7ia
zw*h36l_0OQ`4)C}OjgKbee#z~n|+W#4jN{$OFUO`tK<lTOsKfblXssnK6_|NCi`BF
z=se7EDG*yt=yq$t1lA{B4U9G9oH@i>8fgg)a&bHe3I@%JasxuUFA4LG{ES=fAJ^<^
zlD1o`<+!c%IS14z>B@jk2l}vCcQL~(%p!p}V$(b#@zT7r2&f}UD=_lhqqxjGtCw6O
z-PXe0fS_3rn2&EyfIy--1n~Gjz|y3siX$iu1fUCpk6?6T(uu)e9Vt`2j{u-Hxsg~g
zwPwkk2Eb!FoIEFh1A}jxoDj<HYF|EnZ;%es^=j0!OQ0uK3Os3c5_KLKL2t|WKTrw^
zbTJB3VGw)r>W^*oA1WWivU<3D#7*7AGsEXj7gwFMdE!yj{NaX(5s>INs#%5Gq8OEJ
zB>|3(CzqU53Okt8wZv=M;34<OP$U<aYe}So6y6CPPnQB>rRlqTrqvZqMz0e#j_|xO
z9Fiku9wU-al2vT#z{&Yn=n#fzvPBKjD$)c*G(J|Fo+2Ol0muL;>Juzc@kv9yPW*If
z6a~7R5J!!O%jsdi>xQHZ`m3X=;#C2{(;mtN`rnZ%q(*8V)1Ym_6D8Y5jT!EMHz~Tl
z9W@Aw@MEcC6HZ~NGmO!ms*gR}!JN)ZprxRL!K=v#&GlB%6DU$l{IZLf=Z=OHX)MYD
ztMH>?jK%tH32s0El<R>inP-Zbto)hErDq&+&5(8g%2QO{lw;S>Dhtq)#Ar`YaTrz7
zv5o_mw9e5+;76meE&@<4FOSA{X}+WVUXUE!dFIg(Ko7xR+lKN0mH-Xuup=Ku&Yq+X
zXb0Hc!UalR1^r#hdHj5+N<BQ&N;eUc-$4l-CyK|1BN4%|mLauz2sg*~#tZl{8m80x
z`6^;w<xKhWmDWH_h60TRs62bUJ)$S5$7!qoDLW?*JoDZgU7jv3{~+7vHBcpVuL&X3
zL>)zB5|0ByN<k^@u4e6~3nk%|--sZ+Nnh|_KunF3KKw&KPW$I3%OYyV6gZlZP3W>;
zrE6#Is{P>nx;V?)1^MrxZ+Wf53WaEo$i<08GfE(RId&mP2j|9?!6bC74yk`kWl}id
z=(aVzDS-K`c}4~og@IMV*@r?rngYu|HR=7@0(1`VI+*?Kqu||CX$2gGT~hxWX)~zc
zdB(M2ygcq7^sv1ld8d<tRNmEU{u-p_poOj$$9oMxleeAMA4q%zMt;vv29q3cRIYcp
zk1FrqpPOV=Y(WKcjWSyI<@kw|A|4FR`RoC$KpgP`BEHd3)D&ZbG)eZQgxe3+PaA!$
zowqBf?>IUckCYYy@_ax58|1P}ZEcOk(Fi{92WcjR!1b`XQ&Emd$F?D*3Y#jrRz*l`
z%wz<j`6W~!_Ex*AI$bXoJs<x|ql-{=p)+X|d~vK423tq2`VXZ+q{x*5O?w&9knK}w
z$OAk%sSQft=Shq3^gH^9t$Y+yHD#yrDJZ0mI+eIb4gl9&<cygMDZI=@KP!)`G&MQ%
z=o)*yCi5nuxtY&GQ{Ha#)k$3S1drVLyJ1ui4>m*fgxO+)dr&a6?PB+G!M=%KbJ>4g
z!@*#FmVmn?+y5NU)TcZV<wg0B?qQ>XgS;G+N<}p(p?6sEE5_3#`J@f(vBLnuOm)Dj
z!v=~}rul!H?O?=s17lM(%5cI<0d@FVO5zA*Ph29F&@1Zhw3{m&EMP(znv#2-5>CQ;
zfpHj;Z`q)w+BVUiF(N&zvi3GJ!nM+e&YcoLJq_$gv${mH$yM1O!-w$;KIxxlZhge{
zYS*0UF8X08QG+dU6f|=_Q!(2{ni7$@lG~-J_^?-N0r~+;8$!?@9pc?Ohfg`IL{BBC
zEWFb{Q$NibS2&2tqo<#%BqyA&RicYrRzeOT2QBaao2@qVh}QJTGMIcwMbLyTKi*%7
zrm>_UPL-N`%<}lXOG<aj8i^1^*s5yxE;$jQ^bsWg(;g-GPwtel6#ydui|xZ$a3dNl
z68%2k7!w-LW+fGN@Nk-Ln)8s#PTW@?AvUOAGJTRME#eY+(*zTe9%|o`^`7@Gqda}T
zBnAFnPille?jwp01dY)QM(Q8KE-&)J{tAOBol6KtQ(3)%d(MobZod&j#)vKZvMYzc
zs((&mFFq*B&=2-jo8wt5x*Gd(@+)jX+Z!*3hsR6Frz->s_Yy!FiiM0e_1>$G(c`IY
z|6>l!o-3F2j8&_z!1MYVS7CaBj&os;e+k6T=f$}aky?aJ+8np~ViwR&0R)M#T*$AU
z9F5u!cnhualx2QFV)EpUVglo7J^f$w5NKyTfRJ2qRj`jbE>ulBe3F<7ABZsH<_Apz
z*}y=0<BhCDYR%Mt`XrPygmmwd$b@6veF<M=X|d&;!F4s@r*<IwdQeDa;1%LwLw)dn
z3e5~#>EdKyL97&f_gdUAUGwQ7ne)W077Bk-c+BZ+0dUP;Mh550VXIF{I#WkoZGF_|
z;d5)WX>IVrkOn4lEI3vu2l&!T;;I8cvz^UgPw#;EK`J)7!v}{t3Tx}(=1GT%zdsxo
z)HOHINS1*N&0@-f9eJKvrHfKc4C5u8L8=0tpZYsiPYj0T;cF8&zk}_SAqke#y0X;M
zdBwYm0#QuFP<^c!exbPbJk`CVd;LtG1)lV?{4{6yn9dIEi-Q?#0`oBbMAq}D@s~za
z@TTU=WzH4$-~G4?=0|2{9J?CR*(P})x-39Ey-9T+15uG_nlqeA-4&trj@d4}JI^tH
z$<Nt%D+Zw-6UaQL<Khy48&#-kfWZ-G!gdMFh%pX6^Aqt2LbwnFp5bF}z_On`Jfb6E
zGy~#l(~01i@q(&O(gd)Ep%#wh*{_w6E#RJ#*)fuPDKIy<Wp!yC#j1cD`s6z=<g2m%
zbN)s}epKSyWTJb*HV~bq=-2q_I9MR2lT-3>d*gYQwoiAY;gv?oyguVg+Wfdh&(fJr
zQtY5LFFJ*m!jOw<G5poEU(>c=06qO`A?gQ#f?d7I;>T@_gwvLLE;u{=+2UkAeqbOh
zia<FnUn1sHPQZAj8##WD?tvhtF?l1Lbk};m{QpQ}#Dh}c7bGKdRw34m9!3zayh>Tb
zhwmHl&5a7(dG!EsIfdaEK6~!yK)D;Mg39q`=%dqDlE@^-PteZz_MFW-p-8v9Ec8eQ
zMxf0||LZn%czomTJMRUK06ka|c`qDBH|PHwk~|>wwo3ub>V2C+&Y3BepMn*OSPW5s
zzdpQiCum&H`32X1H+ky~Z8}$;=lXpe;sOqKdx%r<iO}+0dU}C^?tPvo$4GL$UsKjy
z$}FHJj(u<5Fo6K#o<VLd^&*CD7vHg&$va*Yt~@#5AqD7SVNOhow;+i|jsm^?i{xN_
z+#h}^d2`(Q*p<ptAo9z;`63VoZ*H6|drMDp+M#BGGd&_6>Da4#6<8LLVTGmfDUfi@
z8-<&U-Jr^wAKT4KcJa?UXj_SDxV=5V-Gs94-fQx6sL9y>nhwz@zFcoKOMhN~>hD+6
zRN{#(#W`vSuL2cPjab*zwc-TTXIQx{K{C<p844kLHQ#bu<Vt6heF)9Ky<O`?NB-zX
zv^iF~h{SR@FWrCXbrIn9x@#`3rwK`W=z3ql61Qj4Umqcm(+y!3i+S5XY$ZsI6jwD#
zqsQQ@W?fCNZz8pAP=#inbCo4If$-0$$LdI06xS}MqtW%ODrQo9i9?j3Oi8|Dlo{YB
zg{0PElG?QmarcV=2Ow2Ek5_O4Jl0{04aeO-WEuO5O$BOGuC`^poiTHhHk7+c;E@(~
zoeSb>xA*&YJSM7O+++rGg?0@)iF<1BE<~SNn;Jznt@1RTwkAA0{6N4T$Xfs-kw!)p
z{a-=}0=U|X#%h9OFBZK{$tp@sx;q$&ztGUu=LK~u7{>=4__H?16e&@ZM-6997P>wX
zkD$gi7~bqh3Dztyv)(|T0$da5q_cCC;_6=eU_U+yr>FkYk@~J2swl^$W2G=!p*DcR
zGm-9m?1m$#sQcbHG>qJ={D-MG1s5mvWHB2$NE!TK?1sN7{;W5DOVWxrswdsoDG1I-
znh(4nc+wP|j+p|$Ssvr)2d4TR5j^t=nYd)qozZ~EODZw0q9Fij8mL8M=J>#|fIcMy
z``B~M>f{SMefOkr@QT}e5T+{=hf$qQ#3KjV#%p&{l%tD@3D-?kd40=AWx^@?S@3<z
z^rZ%O%Liou@f;p~FPcB&?0vOpXg{W`S(=ntJEJYiSyshx`VJ91ge%Gbpk4Q#L@Xzd
zL-;n3hq23WUF^?&438ERJd`s2M$2NOWrs8LxA1blguXTONUHcf{fPVPr2*UX#t`lf
zW+wpP@Wked@lm%I7H496QdCUqzV%xn<ob+|U76rY#iZR{V5NPWK>wVV!hPsQE8Ubn
ze^?w}v#<Yj`IJE~(zA7%Y=Dl)w8h2GCJSiWR@N<eE(dtBV)rl=p{jp>f#=X0hl|HD
zfT#AJ4;CG<q*gdqDL0ibj<;E{59%e+518Vav62u{!!&i_%$l>9kWm&atw|;@%%0In
zZbu>4+K}b1OIk;f*lwSt$`p*6Ke0*ISlc!f@<fMW>sVgA8Tbs<REaY8X0qq9kerx6
zjZ8Ku#ZKsUMJ?WsT(I%<f`4BsH?~>}QL`)V3BQQ6NgVwUv0Y^d2WbIH&ocgrz~iF8
zX~RnJ)Sj_NRbH+`g5V<s@bOC$F@JZ}2<ZwbUXUDs8?wL-(gg^QO1J%fw3J;aRupqM
z1_|DHa2sMqWL`gw7k#I3EeONVa0{Umi4!g_gLU_l3@$=aX9uDJk7sKpf<88T`p58k
zGZx!q-0tgf+&V6z>QrGwI#k?R4ypp(#NabeI#5LI0wQkjd+Ps~s@ffTdrt2!a1OaA
zEegbeu3f$!osLtTvW7X-rJ;v9jBe`+lysXFefjf5Y0u#?%#`DX${IL8N5ADie_T^e
zmFS@rM_DJ&xMftNNHD^t4042HnM%F|rFB9YHdsyzqS8+!lC50F2MIe&si682MM1e8
zoEhq+D`*GSpJ0sfUpU?>cPFBYGfKIT^Uq%PNbdfX`h~c~Ijh~$X*uJ})xI9GH7n$A
z9(ueKGy{BpI&&Zk|3`1U;%|!1yC3!bdce<qzy?3HciE$9N`J6Z-`V)+bU5rfohIB5
zOU7X%e@?7LV0FbMSJ@BIOE|1U@)F^&`H(!QZrv>|k3))9pj1T1TV$!bhaoO{7bh|O
znTfj{{XB2mk>y7M6zvZfEd8R&)LIA^3VJd0!ZVEiBL<;~rIT`)ixN==h2LcgNR5`%
z4RlFizgcEuQL0g;EWb55HLZKVyoz6UeK?UGZ~f*7@hVAqgC;)eK^lwz01mzZr~v>4
z2wxlIggC3Dn+ZkGgz|<{0%<e>-%?@-5u82%;mkm`jhJoDlWJ_ogT2&d1wn+SUKdHl
zHLd%rt`3)puXXh4N$}NCAZf5U@FsATVrRVHBBc7jcPr>doN*SoR*^OH#0~>vqCWb+
z;4l3`frzx?U0m!rQH)Vjmp-v>zZ$?{Ld^p6x1jXZHFaXH3<L51HDd41T1Rv~3(vdL
z?y``BcxMUSr3FSl$W<Y)P!~+%qkL)kJ6Rv%og!?H*L1i5AbSmnXYgs$LGVwd&brI)
zjuFiYn0+Z3Hm{tMc&YE9JR)fC3od!wJyGcKiM0>g{rk6o0=<qeGA*;(fzZVPC+Snc
zhQmL(%H}puyWJ-ckPTW&>)K!1QXM+ubxbdaDipqZ4>^wyeFfUa0idyrTv@Do;Lt8|
z#%RJ4?hgm|@}aR!YxZ;BLPOTtR|biE3bR+3kvCcnJE}NsBv^XVkl_O;canT$`YRX(
z_i>J6GHA_6i&C+mRH?(WYwbSJnOpdN1U{dY38!~a(pUj=c~zU-3S!-Zu#qRtULA5#
zlu`<2_9v%4ZF?5{rOSi>U21Y&oPB5xQMgWBe62p*+9fd~k=Y<qhC1?ZqiF6h!2Pcx
zJ*{qk4SR*~{94NWmw$-dO!rk%V&?q#f$tCAqg#yKyYmi&!F4^$JGTbZ{>WeiOOx@E
zep!X%F?J+?HE9GiV~`rwH&<R!K&baL7(IdoCCgl8{<^Xbf;l^Mtu*_Pv!K;S|G{6_
zM~IULWek_!2~}J`ykn$x&gg0gqF+{6xK0diuoZU5B^kC@_%v#PT>)K)o=SR@_&QMz
ztIlk`jA_tUR}St$I<df7G@CQ!IqTi7MU&%isVMYvRNnN9JvH?{;XEK~TwhAW@1dWQ
z=2M~g8FJ}s`JO=<Ou89Mi+#GK(BDdI?F8h&t?hgRi*9@}O+KIOu&quzvr1}qRp3U3
zjv;||74cZdVE<rZXusUtt`*{eLiPJ5>eZhoj3fiyET8=UgUqRY^TO$ZNC}X>UuHBF
zL?Jw3t}cRAps`Nq?)3i~1(d6wbWw6N-}HsoS@{ELw_ht}FS~Swi9z0z<pjgxne|!1
z5F%;LjR-|r@B8yd_)g2qDZ7n?|Hq`)v2DwM<4?%jeDtScoht`3unO6xd8T5H^6AX8
z#WIgHT-K!Y4Id!x%wd^2qQ(4+K%~xTxM}M3i6C@0yc+DH7o}ncI$OS?25Qew>;!fU
zWmAv+S49MR0nH7UV2!YTAiw)OM1r^S4BK6$O$4+fm^dQik8L5#TPv>;K%i}W!zJxe
zE<*<NgwlTL{h2h8R5?V+pMNQO%{<47IN87H!;iv2mrajgr$xJxQ5X%VB-h)RZh`#c
z+uCL~%~;6sEa1t&JIgGr@pjRqaEu?TTDf|hRJ6h#N8{l(jpCa2B~edm$;PoYM$+7(
zt{e5&sDuRpP3>p!nqFzPQntF4#8*ybhMG%z1#OR%GXXbm`W1gSxlwC`r~Wt~v=nKx
zt$F}NK)b&;?}SER;go&XerOw^#tN%mO5QC3Q-3Ga!FXi@uW>9X|6<SK@l_6IgkK&w
zv@3&4_EUv=<R~bHl51Oy@@@<7zV|+Z7x~r~<<*KAo#P5N0#Q=tu=@&aR!*uEjU72i
zrRdq`dhI5ttjc7PPtvIA>jKw%x8mQ1o@UdJsR5G8WbDj_nOJ}5PXl?aG2=}_PYpW2
z<{E&fu>oE@*~M-*Wv1Q`CS#MZGmqjB3b17(8qqMACv;2s*lmuVZ>g?8aSGfopJf0&
z**1h!PsioF{}Pv(H-6*rR6lZ1$s`$vyD9>gb{+x(zX~mc0JyTmtH2C_F+Z@&d1Vau
z2Zv!b3z7T2XlCt(8Ev)_DBE(fynGWohT;Ws@UI$e<A16PyMb6m$&(Zn;kt67gE&D0
z=TNw$LS-{Vpp5&P$5@{{R6#Y&^l`wrNfSliJK2xy(bak=O?ezP@yuhfrH$#bm1yDr
zV7&H;j-*m%fD!aYB9Ikg_~@UYtPdz9q(b6wB)RJFg+I1@k1CLQ4_aC`-Jg=l3K5d_
z!~9_5xa3b{ZB3#0q+0a45|&t}<(nA`1_~#1`9gcI)Sl>FVH0$9(>PVr#DY{2iyf(^
zS5}(~`Zn0cJvH8>-DJJmjfhsUEy2L<YlywU*dX@;rNQyW5Ko$&Eyl@D*Yabssr61k
z_zHf(MZEd+<FzsE+X?zY!k;ZR{q1Q5ZWK~IBck>bV>V87IZOXO8y#C`_i6=7-l%>r
zkJ3?;|1eL`KF6{x7!t)_kmkhYwg<`wL+)<leLX!v>e_^oOE;L({w?J5ZRL^%fmY<O
zcDLbv!Q?y0EcVDcNzP7X&bmnP$3U2}i!c76nR)Iv!=90b_Vlc$=!O4yR&2=g;__V+
zTeq+FC}YqB37uP%<?*7b?&qQA(2)W&pHfBEht_gLt-kB5aR!y<(j3d~eFSj*qvkXy
z;{K_8&o|zQKsuP{RK)TSmJ{5(axxqsvn>pMLQ+v65Mb+{zS35ZI6#P(kn0f;D~f$M
z`z;$Co~%-*0W>3hKzSZd3(xzKj`{y`Z#~Qt|AU6?T-AJylH1_57~d>o7LSqfDvp1y
ziv!)CyIjNXu9bVj+-EDF@+-&jU$f!<t9;aNY26C9kp6%)HZVBN*xk{v{R=5liHJl4
zVoDqOm5rtI>AC+x7fGlpv+YKkE_lh&vO-Rl1KfJ>aiLr}qHYJA<<7{pU`$M@0f>u4
zpFlpk6%2tPH$Gy$02^64{!C3ZFa57##@NUiQgUA-Hh8*<ZO7Y@M}&$?;xqC(?kg{N
z)K7Wy-p#oIsQM8eGQ_SO!!Z2Fm=^E0D>Cnpj@c4Go63iT?w>!`#ZhDk2Ni%pY1|kh
zp}4-xGTVGHqcQkZ>$<9r6P+wG8C?2ZM;r2CgZRTd=7hvyM6vxhVrye@c!I#ELHl0H
zWN+N16#qiX#8#tGUcP;457*>T8P>R(5JOAdQX8wTmE&`OhT0L#p2o$E^|_GZ@za=$
z-EI%&U@u7P(d6FVAMGgI)Mc(Q7pl59?A6;6{WwzYkiy#s*fpOu1NL?}dpc0v3v=ZT
zs_FrDFgd=4vpp}+En2Nb&+frM$j+}YTW@|n|99%9cMF>H*MKGgYsk~x5Tk5JW&SbR
z>;$WE{K5X8iM)v+qRGDtuV~eQ^Cp?LyP^GBLYi{<QjVE}5WVA8XcX5)uu=r7QU11E
z305aQnnWcnjned*+`6~4C9MJ74k^$4xt|BfB5sdSQqQ)iOY+p{0jEQtC=_qGh)XDt
zN)_F;HZSCbL^}Ij^mc|OFv>Qz=xb2P2`--~mHR3+ltafL;|c*ovy>8EN{$=%Epy*2
znck`hEbqXnA!NQfwd|D2*j@lkG4Vd0OX^ZW{KS+`@ME><5|>Ciec=k&{|=-7vf=v8
zO+4@ZJ#!eRfhR`(koJu-FGPZ6y#e8M_rk_g`vq`E=(1i_NhWrR=rNd(BnkTKFK7jw
z|3P5%QitQkmda&ZJ^%HCKKXA|VZI`l0QSwDnZSFTlfM_m-ks@!PYO8|9Vc$R#lbEb
zjc)dU30IyvLVVB+n&8r3y)FnqLD;VLb)$J1n1Mh1gzL-5gAtGIhoXZOOh{kM(%-B}
zl?&D<s?Zw;Q##c*d75jb#<UvMEwSd1<U-=+`BW!VDtSJSnx&fg(+VO8iXoVo-MH8e
zc{U2ymKttzmxB+s3r`sPiaKpI!&UmGVpvr??xDYt*g|LRNDlSJ3Aem9{sTpH(<ACy
zJ$XXlM;)zID@>;Y_dGC#hTwG09E-uJn41X8pVIPt1zD+z_tSXM%ghx~fSM8<I757j
ztR~3vzO5^@974NyS>j!H?fA&_-H)ozJaT}omf@^o-6+W?eas9e^V-=!in0Iq2*@F|
zwu1ixUb?7bl*6W%lH2_lVTM<dR{$)Cb6_&o8fqIle8Lnt-K8(^0F{zJV<^j^GVr0m
z=%b~aK&V*jX?oEZj(0z!^g3DP`60GH7M@H>Gu|%OV~a7g{l{l-X~az*<2Jz$0^pwe
z_jZUZGi&qqZq6#s!OL<0&sIS&s%5)r`^D7mW*eUEceK&2Mn@MbqK`o~f6=-v5%qjS
zS7-)ri?^|i7d9{$v3%#T*%BNN_=a=NoFd*HUELZDp8?uxWD|Q=$J3>{iRkh1S$tpN
zz$f)xFy%0F4?t%|J2`SO8y!azY7lFGB{;0RzcQw<V93kAz-~lk%koi>s9kaJ56aWz
z>IZ4cB3nz2VAQ`(oa@!fR}p3;CixB&2dxQ!pyB=35BX5cwn<~EnoW$<%DM0Tgg6Mv
z_<UG}sT;`idD5uaVH}i7IR>|C8~6xOv=g->X)SkUdnttl0lrTfWEC4$u=u-E9K2hK
z5!p=`u3B#R$0lqD!xh)gIaW5&pRHf~>;h)RmS&DY#`Jf_N3F(8P5YYvwg=Vbfh=)b
z{k_+rvH3l1*SG!fZk%y<(nRXRAG+4Va_TaFWf7$`vs9>zxwV*0i4M3RVP(hIbrD>B
zd(-XPirP!XJ#dNRga!S|W`YX;=IceMybE?6w3{Y2<-9+nGr3HITB-F`Om4CmoCc_E
z#sE2B`FEB{8T5Q=tupnyT&)D91){XL7?8JM(`WiscxARna_zo!f02C87zOg9hM%&x
zuq5=ji&pzn+v>{j9~{~ReXSDbk0rbX3U{q+YSm0OW2paaW=kmKRFD{M`4`~3KpQ~@
z?d%#V>Z~IsMiDX)Nu1+QZT!;8%fLy|EJbPKVk7h%a&*@h5;OHwX2x0KvGI?M#m*OT
zeRst%=L4Cab+s5f%LiJK$oia``s}Jxm545FbN>-TmLx>QosRse?5^@c`#Y9sKj&j>
zJ^B>NpE$|AuKkuP9P)PFIXbWqxDq4F)2FA1+#qAv$VP=--20DQG(U>8bhJoN;r|$c
z{F=9vfsEJjdKRNY>9ysSeD(7i=)yY8#i!E7FW>+GM|vUP1OPxmAN|aD(}a^132|Na
z2oluiXrBs{!HuRHRDBms?|1}hS@r{w_jIdj_H+o?FGWZiw*Bmo0d3rUp!_?Rm3(2I
z8R_i>*@;mKa+L2bqYreeZdCA00+G~SPLe7qW>SkmO)a7`M2mpeihJH)Ad7n3p{H}H
zd@wu-gHx$uTFDCA$ACuP89la|?0(l1C1aZAWf|OJSD{6Gdfdv{Q@5#vGkuI#-yQ6Q
zP%oY#!s3}_*<JzVeHP!sa_RdL1Ix?nr(R_<u7l)d5)vwEc@etV!q=0B>QcDu#A}_`
zAUnL6OmuF*Rrkt|d0u3%fhNCMFS<^cf8F%`;bxD8DB@3Y=S+dnyp`^@Eg+t11~S-a
zeTb5+CALRTEEEl0f&%i_=a2Tv&UsodF4Q0)mG=Zul=mH9N~v4=nLj+_wrj4~WOYs%
zIc$;sXSEA(QL5*<3W-~Alcz!A{6D@62{`Ru17cBbB)z4?kr7S%9k_2Cl4fB`4c@`3
zvFEt2+#$v4+*~_GQYct{9=}Gj1Dw1c`M`Usf_J!VuV<*UAG1&7Bil`=cQf7yeE;1C
zFc8LY1iK{btNqY+NN8t1D8|K!p41#d4W~qe4Yj)jjKYM0Ikr#fF|cRVQ~O03Y%{V<
z8hIYoRf_v(%bC{l-p>P<Lq3v)d9&wO*m6{=6~ln!ml#A9Y%5(D-WOyF)xZNy@Hy53
zo8|dt7O&63tJWkDqcljZePJ^3{qU8lp=7UTZV@@1Szsv+I;+c8{k})dS+!Z=g906q
zLIM}W{?Pb}Q-Thlqx+JHPC0=wALfJUR~-3*s`TK$M5Xk(745{FY<>O0pvZ7_(LGHu
z=}{tJIvt%FXN|Edqng~`fpa%Etxpheyou;qF^4}D0bx`YPw4PR0OGBM1OX&LMevzO
zMo6Gh9U2S^YsiIq;<ZHVZ?LiD4ie!WLKl4Zs&EHlQG7QW(p&=Lp;CVQ)jn1Cb!6te
zjNT;E14*)jL<a;7DGe9)=uKM#6B%~)L{<};Ql*7@^OX<3RY@Wq@*r!HB`T>EurKmx
zQ`7y9diDwSDF0Jg`J@Ub-yP4#O3L9iZ4+3>D&#6HtL?J^f1-!W!KEt>4mqcMF-AFB
zoA8o<#FX?CZt|TeOqQYgsX_gGXk8|YSd19ONv!XK?$UUm*$&*tQ|N&AYKeWP(wAO6
zJN$sDUqGlJ0@)uTQz7H!D^p&#LT_)VcB*o=(Pljk#ynq!*cKbzX+wQXCl~>hJi0;A
zB&Yry*AEM6%u=Tvug*!13xh}rat<*H@44pShzybOS1u2VyGxXZhu=&5F;gHReJ_Ub
zN|<+wY}eu?s-cQQnx0^I3>kiqPGsfEK)7YHqBy%&IZWX*k>H~O27|npkHQNbK!3pM
z_M1YHxlP%U5c^XEWV6U(*DyKOV&0fAaPM;{ihQS9@Zmj$vt9_DE>iCPyQvK7PO>cJ
z#pT{^dfC$Fiz<bP%?B@^8_|Du4bU9IV}|?xNEB*BRuJUJt0qZ~?`KOr^Zycr;50~G
zS}g3P41Aifcsv}7la0+;DZq%@l9F;p04V1LBuYmU$I?OC;`Jh-|IVUOJbx__))l&Q
z>EUD?cG&HR;RGn2#>ZqcgiCmGq?FpEW%vQ=2+2>du%wkQFzNoF2w{WjbLyq~L$X;_
zl9El~Vdj0}D#G;SkZP?nN+rL@9`|bX4m<?J&%#FK9kkDKhsVlZU+j2oEW#Ovx)_xZ
z`$tnWVwIN59f+#op6`pPw*!^I3R)u+s(|WiaiS9J*2BLt&b@k@Stm}J+xn2sl`w$b
z*EQI;(}zP)Jcw{(lGnP1_c2o3(FGY*$CHhTvmtgqt9B02ZPZJ>t3rPf%H*y!l$>!_
z1taejDB(0K=e+)1a3H*Ib|~og1UARlQ|>A~lK!3m*ot-GV9J9|73wRP)sj@bUD%l$
zQJ24O9P~www$>Shx#gHh?C2{;7+i37SQJGhD9eSB=gidC8en4bjsI|;t6bYuI#>qD
zc*`aY6dKkj<hs^A)Ez&CrJY9cl1!oPjSy|q*k_8423#f?*kI-$a!&`kE*RouUczsp
zi7|u%8T2!P!k~Ho8Be6smVpnXlx9yT29atYslsTYfZ7%t@U-INpgK#CnzlOGXDw_+
z8H&+bqnBg9_-o`qn)|EOvJ`}Gs=o9!v@dAqmsoX*VRfD}S)LQ2-O8K%Gb8y=8lyBg
zpP#=4Px31D3Hp#*39EXA5l^nu<x2dIXlM28l$J>jQqCkWi8I|J$ozRU!*28E3EQ~x
zi%coT?x~!KPW}|0^uBO@Re4Jb@X7-pj5=Lmf@{@z6(o{M7%*HH-_jETsDkn*tX^#f
ziMgV@to%c;q9y_4E*c*BnqL+CxI>1&v=A1twX(r0Zd=+xjPU;{gaoGTOH|hq7jGTc
zb5sZI23;R@yRH%Y>D~mdLRs5WB&-uF@iotO*9<|6&q*^VZ8tw-q=jk$w!qb|Y|y+8
z$_90tVH7a7UUP&hYSPs0t^7gf{N@vWuQO5T8=%~MC5b)vdX=oTp?asx`SBsm76n-b
z!KAoF%j>2oUF=BgT6x_zG#cvHF-KZugx5r1<i{Gy2U6bgW<8wqCzIj0#6WHg+g3*W
z1yMP3`3i;2!P%=g+waWxbOgfE7jiItl%oNa)S~!_evKtkLM{oGwZLVLjCS&y6o*}k
zk_e>ljB?X0K$k5(*q%l+=4M6}|K<RFC*MJ}uBd(h#;Vr1t3}sR%j^M*i_pR7C?&t4
zmG5~eWU2ozr<vit!>tskyG72=;=d5XxN~)TZ5*^e^B?<Fa#;|v=P(egaO#3KJAiX&
zen=UKqb2Sxdk~jUZdDCeo-0cHLH$Z$O4*-CL>7??Ln2+|V%(g|3aI)x#n|HFZ{bH`
zxEaa>scB%Xrugq&IK0XagqGe~alwJAYZS@O85GY*oxpcFChHb$dvZ{*JAjJ*=5Nrv
z+)0KOtse5C^P&h$8{w4N{zc@l0^qv{ROr0H-KA6xMKfx<<%!N;QqN(IRSD~|$94e)
z5ixUNyo>~0pjwj%I3G1Hv2IVL`$HtU)c@`t27vHjyq8YPUwCf+iigueXVJ+Dua`U>
z>lQ?IZ~fcuX)hfZ;J=<_KH4_yIzBKb9AUqfv1_i}v#`++5)M7GohRg4StO1pDJ?;g
zsz%_j+^H1`&eCA{`Gj7LHyED@9D}rxGRd_%n>wr50u&yo0raC`-`}Upm<)QBSDTW#
z!}=zKCHtu@*ACJE-8K+$?^6CA8Q1J8rDc1+($~_b0ci5Or}|63JGs#B(-lGJzJ}J4
zkPX>@seBa?zX<=1gc=hC>c49TPf;1zDGGJYOCaD3_|Kd<WY&xe#x5aVIa}>%ckac1
ztJMJ)(J;elG~y|3BMUR}4b2VRdAh$*GAD1N^0EEEn^YAqM^*B`)+s9vhTVO_milr8
z3u!QeC<pyA?4?i>o77mV?Vv)PivGq|^JX~8&~p2_FKKhKzKGRa^f&7w<g@5lr}e8Z
zJ&?*C(hH3zq0_|83p;xUL}+Olio+9J&e^oFtF>;>GkZaX$O4QXtPSDvy$CXI&yCn>
zMDbWEcACaNLr@&=uNa;Xc8;@P_)Y%GCO!O=FhnhPm!^vKe~cF6Mu~~NdC1FYi3)T^
z(iq)hgvc~Kg6FA|nrk@3P@t6ZVJN%Q8<%j$nsMq>1OH;A&|0A7NkBnzgMAiLhn#63
zw!cZ&nXGtgF3$W-h*45&Y}(lkFDasjHPks}0OpbSnI(;0N1|aWb%|9{5a${J)n8+#
zgi_0VIUXQxa7Ysw<NvHf;oBi*7HMQSd9{51t<KIzHl}%G#m55npZ<v2CW7&9hOeR5
zSfUq-D#wvD7eHg#n~4i=1id|}BQ!8yzpldkT_dnyZ#l=1k{anR*QZTa5Jt7e8?7B^
z`CJgl2DJ}S(y8BL$lVl16y_pBPr1@~)=%Q(+*@w8I<aZYhA(PUcV%dFph%-L6P}^8
zY8~T#6QTj0p+7SQN-oa%iQl_MnA@1V4EVVtG>#Upgc!pH7*ff;(!q=(qHgW>wJ*Z`
z@(r@GG?$FHRLA(_=O|Bc<+X_YiZiOC3?~fBM1!GgxtW}9g-MQ_DdH|*o&f289mtN=
zrQ0dCoV7kZp2l>U#`HMB2MJlLzW^#w+E>ztQo75w)0q?3uMK#hQo}ll&DT^tK{g!o
zPVb^rBI#g7;}}>JBO;3Ll2-`68pYySZt^7?RLwa^t3Uiv_T8mcnlgdA2hVu?j~%_1
zlNo~`$d{`F&vxl<OX>V3CnbkiO5F8_JC>LOTvro!ckCdN>xWu81|oMc8~_Avwh-oZ
zZ3*y3yoeVP%5r~suW#qC#X~Jl`Q|y$1@c2wSGg>Z_z6-+em~AoWaVYbqx@SNS@_#L
zPzS3UV`sF^snfg4Bs26tIz&J*S;za4hz+fGxKQ&n8o%qJvZo?&!r|A6wgP*I(mR&b
zJkxuOoskY7cxEpqn2C_)L=+3LCV|XiIL^-IBH8$UP=qc^B;C3S#=nM+sW~P<Wp?<r
zNtxc4GM#`HQA?7O6!&IPSvPh=wbk<0_6PJ6w(i#PebHsxe#^~DAKM)U_j?RCwUk7S
zS0A%Wzy<zKV(Zq6(^mPt(ml`>+v!|YNd2;4d(`(BfvBQF9jxY=&b2ti%WEf&$;z?J
z#ehg~r1rh~lnA;p<Vy+vxGLm5$WpaB#B+kisL0IBwAc6Zxi9I)0zekFfaeXME7cfb
z1;S6BVh?~}f~4@ZM|ywZk~V5>KTNL%)`a(>ZPF-Tp43#+Bl6sVjYhc-@daR-^)M+7
z*?zX_-yfytj$w91$E%X%neZ3UlZ*gfCpg;c#>WmgUj;V&G@4o>fuK9+e4d@tw;R0`
z=aft*hJDMwTkD*DrT4~CDlC-1*f*lVa(rAUZm^owi@4{<Z46f#xuu1SxC%iQz5(2!
zL^jbKBtQ&GAvrt&#ye2&`T*Zq$A6{7Ax0#zE}Ej3tPdWrHr%wAvYzaRq2o(3=#u?`
zDFjpp?HSRlF#bFZeHxJ4Cv7?lfQrA~KTYm%IkZ=G8O|CJY5i2W-2U|h=LlqPEy{HZ
z6>s7HfNJ96v`8@hG6i%~mzZhhoyedD_9<FTZn-9cw=ACBMPU0mU-l`#{uk!$>B{vV
z8O-QqBkIS&cPH2teegZ?@ap>WkJtV8k+%tP81(0zIQcDHciO+&mLtTXu&M=Kj{nmM
z@wvbSxd9W7`t4Cc+m;z{7JGWooiwTGI{bm%u0!?F`c8aTFxN}XXS8iCZ8*cDqq_^T
zcY!UBd#aq@Wb6uN3b5kyznlAvRMn#IB4bQYeqk1fe{5!z`t)GqMmI^w%u%h}tVWps
znr|MHa-C`AF{L2n>}Aw;$67`B3nz^SSr2#7X+Jc_Im(PhKh+ZRf(Qw?wId7Wt*LY$
zT;8361mEw&BH9``kl0(of)~_o%PPyrE@wIY32XZMc<0(cfojo2ca^#J!so0fLZ3g#
z?+27m2I0Ae{Kj;RkfHhUQGBUTKGEv~JnyO!L$#eP97Y1t2tNR?sSXPV{(2|#-Yz8+
z+w9i7VsQAN%z&yZTB(7%Dxn+niZjra(iTCaw##QGhF0Aih0pQ=AE4mQcsW&!NTOy>
zwluq8Y=~XLYDCPb$?}YMH}7CPW4o60c-dyL_YD>+&^~e%^FhbAQxgur+Q84pTp=tc
zxE?2zKd>@E6LFjEXn1EJJN05bs?~Ok`xVfMM0-gEJAzh(otRC^(;<o)L!Qb|O1kq@
zvxLRZJS|5!tgGz}wo!MlE(4G*bsAdS;D(yVw}=mpy$j|y3eL6+m)R=gfJ@ry2cT@W
za1O%C738DON^!qpQfI$S-g;gD1|{60crW5|f9LsoKYc@hjd23$Q1Zd{(|8h&elfqQ
zzbG@ul~qj|nWu>jFhg^VCQj}y$Id2r=IFZ=e&CC;6Rph~rt8W=E2--F+KQ#%mDqcL
zY(NR)ID>urGShM8j}*R5MU|vgk+8<0mxqD5E+x!Q60V%97ET(zN3yuPSmRNJH?Qxb
z63_RV@B42y^R1Cc*X}R$2T8q@B=uaV@!LF)Vle05<<OQ`U%0EHffo~}6!V*;WBtmX
zO^Z*|!?xQ=+fF*?e0;a~LXyhjcelNEY_8c$E{BnX<=DgojNK(M05SOJ`cuHF&df|m
zwnW4e*!ZB(M+wNAk?oHpn%ME!mqX0`?%yafdhI03IK?Mwqd!y_X&iPl6TVHuw1CID
zJrmZ-G;|A!Tw)jaNBtA)^wTh&xNLBK?5_dPaej|niQ%~e13YaMaGccgLT@&p*-@e(
z%L`l3%@6epq<=6Pmo-84wbZf-u8T8Y%8Ucm1jCfHXaaXRO2<HvL?EoSd9L?Gv;-MF
z>*k|I8wV9)-r%~zM>D%B*#poo(@-r~ro}llaw?wu;;$LbMDy$@LYqTm4K9kD5G@3-
zt&llj_V$eyCxgkUO7JN{O#Xs!=?Wy-ysehPXhs&$V&47Cw1{Fk)2{7gPM(`&lueZ)
z@qCFI3cg7|A*+SD6rx40nt=1PYZYEckO+H-7B5fT(%@59#YrnY<}h<HJIaT_ki5O@
z+&on=*jSI*Qz$YDCFwXG^#g0mg}EzAak0yoXX((tdONfiJ56&QT73=0W3X~1?R4h2
zY)d>`<+mc=&gE<8e|7P~qGo78qZe+P|7KfH)b{6zkC3(neTBw^Kd<H870e#@`?xzZ
zb8}Q(DKjS?+#dNB9ZtWXa#SM|Iih#7oNiEO%2lf%5`E~%*lZE4c`9H{I64I61HNgU
zx{y$XIsW=~j?3$~xZAzEAh^i=26jMKCQ_s^58z&*G2bSD2(m&qLmJv{?O#7JX&687
zS2)=OutwCbA?=o6L7PV6&^{W!Pv)QWD-!?0l=`jW5Ds4!os+L8;qn8ncu!=dZkgO?
zkI!S1WgiDkXKexh@(t*sMZuKGn}8cQ4skUcX`4Y6ca@M`Li+M%qcB4?;$4T&M2>MZ
z?UH{`%6Fy2e2)c(ETqw3<{#2zQCB?hA7BknV24PbAuz0TU?i;keLY`Qqdi9G9)&U<
z?_WGqeoG%_aFBSOxm|zKH2at@J^WsTdga=FCw6K(SmTqkz?3(EMPX;5#W52b0G%75
zv0cNn2q&Z*d2A-aU5k2XUP10cqT5u>l~EP&C=!wTxS<l2D5FgsQ2*2bg_V;62(r-3
zC)eBmAYH-zI|zN!fB2z_4Ktmpc0>`&)ezq5?7sI6&0n;z3Q3-*W=NN3bumPV7__Ll
zDPzQ*i_))l)nJ+N|54l{(;W-=)ILJnH*ZGeD+cT2d;S_x<%Si@VWAHZ3H~+S7B4ip
zWRp266hjX^kDlcE%~P{SVaAt&e3Eu>IHi6kJk$Bx6J5`6)a)=quX=5#&tmRw>OXgy
zSdIVJ{t$#OwEL$i^pwu<*4k-~`!-V$WLVyHTaFE0nl1!BMk2!O&U*(smXSrz%E*Sn
zrJ6X>dK$+V0UzIHXdThtsuWuQ<+J&yULv9tKP~q)j{8$ie8TYy%D<_&uOfx<aE1^j
z6-K_>8iF^7IYO_51M|C#p?Z6kz(A0VMnY%yBhAN`J*74`lVL8huy}aUNyayB?XC9I
zdzE{56orT|D$2<CH#ZsE@_UVqfdpiPz<QtzgEAg!E<KX}498Rbw}YT2;+aVmc9RH-
zJ)9F8ZAc8f&Ho;SKqDxO9m)-VSLTTikrsN6)UI2>d`~$rmdKH4MjJ!6DiXPh{55P$
zGx5dK&qJ4l^eNLN3$r2~UeBKh{HB<&yWW`7C6DUx+DS@)#h_*}*1MC&a=H)o%6!&~
zfW=}2T|kQU?8$vh(+9JS9bSAU<{94UkhdsMHlu=MN<vsh<=B=_xl)Pq#DsVS=Qj`U
zZtbNPuR6<Vu`bhf<`rA|z|y!&2^tFWrTLb=-A%}A?|dJXV5v&FV}7o$R!sUrQG7pg
zlzd1(<3p#geD#qWUo>V5c%ve;qo*wd4V$^5V-3I6>p5j@Ci)iPqVmF=9!au790nw<
zp1RVBu=N&4-tZivmR;KE$_7CB{*cCL$H=8Db}t+z*S(o88<R`#^#bc1mscEl!d>gQ
zpY-uj>EBon?ULaZ?rEV7p<v`Q<!C&|0Srf+;pw|Bq$b>xNLWM<e;n({nkx@>I&2PS
z_j<O#y2K_1-FKoksev5&0A19TGLtDWbD7-HAj!|e8dnhEeJCHMto<S31>Y8xOkBe8
zowqAjD{AQKwQNO2+5&rQXTE*m?OvtdW-oxkjazRbdAmprw0TG-n|S#s@B>o}=_24E
zVU!;>uh1kG+irv<0U8|eT#PxA9aR_cK%|rOnSrB|IpQSud&}$zmHa>O{gz+5k@P7a
ze6V7qHDP3Q&&_Z!qU8ZaHNlUliq?EX(rQur*231HMbG)+84s0~v5m+crIw&uD)GEI
z6qSRw(>{!W3^do&VOnjHBDH9dGix%5%IgXj=EVs*3)3?g)nh@vXurRI=V?X$v9@iz
zO1Vz|vJW4?f{J#WH<Zfsu|vG%b~iR>z+=ka8jhFK<-?bXMj)C)MuBisE1C84$e0F(
z5JdtCzy8%pB-KqmzuD}CyvI^9hjNt91dY=Xfzn-Plg>oAJHswFCE~t^i9C_ceT$nM
zZ3Zwuo#rV(pV?L@qDz(mQ)q|o0#$rh^7C>l6e?gZVjSJ5xoI;bb+NNtL>=~P_`FOx
zzJ>Mf)6ggs13$c^kwo0amQT|Lp8|uzv6DBM)Yy}~)BQB^S-H(J!p_qW4&eRr0YGiW
zU^qzA3$UU;7LLP8%_qKP>ZCS2T(}$+m!yQJH<(JpR@P-*?u{5O3k{C<`|hUqC5pTY
z0orSPTby80!vO-w60)9>21}zO$r@AbEU4=yXVKRSHjb?)6E*rInoWM~XyA8*l~-DD
zhzc&SzXL;<1mC!~2E^o%e#=qTu5W6XwbToKf*fPc>1;{?fw+L_z|KLZ0|TMy3H(AG
z$dL|@Zp}bvoDaZ6vn>G4{*r(Hk_gW9?8AdsB}#q^(S(^=Yf1(1VPkoP70)>EofGLm
zTv(I^aOf+xMJ*f^7)GFibNg&J#c7FUu|dYbFPX7;?Jd&YBjH)&A*{5ld%q68YAI5S
zyJYCsu;XepOa=0hA9!H{Ojp2#=Y3KHvvddw2A5M|m7mJI+%FMIvKt!<d{755J7kH5
z*OQ-i;CW{2;eLEvm+R1zwYUjcSh^Ph7UrD8Ql&8AizA{*zLHC56$FIVw-rgazo4w2
zf#ZWJY|H6nr0V)+grKnF1n;Did-joSaf?B}?AGmpx`w;9GdLQch8Cg}&d&?DTsh+F
zRTFQrKS+io?tp^*_b^Kj+by}G{SWZH-><wevC{6NYz9QdoqH!Yh&h?UL2qtB)@jXx
zjt!2DcId0SoDNs&b__4+obM>_jnjHQjIY)Hg}63c0Z!qjI$=_l-2n^2LHx5Vw);3h
zE(A1T?xaRR4npY0$soqE8IF$MU-Kgcr4!c!B~_?8Y3nFUFY)x)3(Wig!dy$j>qqQA
zo^2H!7Fw*Sf4U2g5XpiKYO;|~sLi2Y_{exr<j^J0l(PHx3JM4;nS!}l{;XaF<vY1+
zQV-Y-tp<ikKhV|wRiM@kp@CXIUo6^?2O*Vbi-Nu+;KesVcfkqr&xF7-`mO8?J=4ZG
zC);cfh4PLmgFwY8T{Kh&R&>q*rlR_(G5cekOw2m_un7(8kDc#_t@CfDKzscUi4n^s
zpeSCV@A^loItqcKI!;VE(*2;>dbxCu+y_({tL7D?U;0CFc?qk$)$!pKlY0mpx?x&N
zXtQ1WB){oTy4xKxfA56c$Wl~}#GgVdCgU~(QO!hIc~Nej;cL7i@2DyAwt8cvWZv9X
zg1R5o7;2<1Iw|EqrP~Yud{|canreymFY=>?M|YWHq9Mnk^bBaj>~%})RfU8t)BkrY
z-0^7!A}jr-J?#&J!ZR6YA}}xIK(D|bvGDi*Xs|$|8a3iNy<F7WBp;h=N6;$6l2jF;
z;4UOyKh_0&tRfLN5uB@9y^MA0X1q7v^IneK?&alx<dP=-ctHX#JB=Q0vAn<ifE>l{
zOZ|Od&2GIZYnU7gt-&J_I^PHJ?b6;<A$g*Ky~>V;f%{uI0K<T``#-`i?#(;U`s^>5
zlFU1|cSdBg9Q?EzM3Y!8@g)7)Z%HoHZHIr5a!nlh)KMnm&xV-Z*)swOP{du)f}Nvs
z23mezbeqfZ;v!yZlA2*c2q9pRv8HZ7pR3~w{+!JbeqHf1@LtKd@pg5imhpVrKs~|b
zj&cdJWyFhS_R!6CzppFFDEK#}b3C)6{!p5jlIiK}FD100by2#IS4X}E_)?d=+-A%V
z;yK+&A|kJ<^Fue9cd4hWL9)nloZw`<YSHA^3tc|ex3PjtaedE*v?C$U8D}*ck-Uyq
zdr2LcT*A}R-i~dh;5xi<vx&Ju$H+XK`y%*8v0oc=6JtB+d0^qJvx8sA2dZQoPK&E<
z*)vU?ZFEbHm=iM;RJaeab<Sq?V-5Ufu@K5(IWOiZuS51`v~YaqnMv{8xcY5M?OG7k
zjwJ-~#CJvQ;lWlBL%@#4`ZP94bIHD$;t(LAyJdt7q=U*I6f&f>|G}#W+WK`tg3a0&
zpSZbA5cY=25Zc<Pw->ro9BcY>c$>`}r~$;N+`!L}HEs(`ZM|%jk_f%^iZ?f&s7g{B
zO>}?T3k@=(yM;@`_JYuhkLu{aC4R~dfV(g1VG~v@5+t*>qK1gNkgmygfl*QwNQd3S
zb##fDigoqPNQ;kahxsw%)4`lV)^Fd&nKu{^FK+!R3;Gq(zYxQ)=-#<V#Wv!`B#l48
z)MIpgtyp!Yh(;~{r){8_re=w@oF!zf9m)zMmQ3tklR{$*xJ6asprn%xw3kZhI%NDs
z&&YYL<f(^Rfm(BlOzDac9>P;#S0J<F@|f>Kb~Kf6jE}^S2-Ez2Y&)(T|JsMXW;FtJ
z8OrBq_?}w?FbK%V=6B<<lT<WnN&z^sqae0(tfXyu&8SE|U(p(rsf#qhZfm~h7Y`L8
zde_THMIk8Z^*;I~)A+V0RMp|@nWD5nY}z;f$-S+Q*g3%LTrH$9XcIhKJ;Ki(aS16k
zd#u(Ue{}2S!AyQWsOny>q3pvkmX(7bmCZOpJt4!p-R;$)DZfHvtHbno23fPoqO!+=
zzNbgWY1c&a`Z0ze(XA+~5i92_<?>FmrVi0kc6nO96l1Vzr_9)}4iB^pk)5p`E5WPw
z(oTj?FJTxPG{{Ysx0e?9AVqodYf^eMrsfwfvVjeoIJ&(E;t!~~=+@0noBa-S{1j>C
z^|LP}@iEixzG8uDMKdz&&q<iCP2J>=!g><NI2I_NpA1El_!rxM&BvLu#NL<dYp2gm
zN*za>*Wsa0KD4IW!r<rP@Y2AMDTxkGF_xfuSil@0*!s7#Vvb03yZ4paU(m%<h2$QL
z8-$I{rzI1Mt6>~M3&$l;kD1LS9@x1yiBH<lL&ijtbK1XASNU6B-z(^vH)8EXExMb9
zQYnvnmM>7X@hXSfqD>(|fF2*5L{IM6lrK*JQo2R+mi+~R6*0{9wNIGMDFZ2m2GRm^
z{%RQ~s<^~BdmrW%Wg7Qc`2@Ae%!Te@m7G)RboCId9+!<n8y_a%3H7^u=X8mRq@UzI
zANFE6lU>J_c4yltWz6+-`SK;CoftfNU&q_*R{&z<d$NfP=Z8fChU$1Dt^Q!Djj+S8
zLq0zOXUJhJL6uS+I%gh}AdN@?&jH+9YssRzKhB{g>)&1x%5*R4+D>=JxMZ(2G|6v$
zfjgt&@2R$fC1bCc^XcR7eABMibWO!#5AE=sK~txEelk<JjgB!bzf|SH>9!2q-nETH
zt<3uU9bVvxk@q4C_bhCKuYG+2n<*px^RDN3%E8Lg8C9K-?ophQX*p@H5y1FRG_483
zL6;IfNpUZZSPl0Say9T;k?m-V5t7iEgK<wxGPNJ?UG3anVG%a^wrgrbrMXvW2Tl&V
zxuF+EX4LwN0n?9V?|w9RyNwEvh0L;Q^{qmEXdRn_Uv5LiO8LIhr3qsLdZ37o8sw2p
zXlnw^=uqZh)#Wz`@1PhvXx=A_icJaya4B@r_0-*lHZ-NGAJBtSJT4}<3!6dP#?CMs
z?QK2ykA9H7*jiJw_5l~)G#XVg_)W}OLLGlzw`Fa8$|d+v-=7Po0lQdedrvBbCSIzd
zQtGKZ7coVjbh&ry75jd~0|~ZM%-1yRv@$b}R}dpC)xL+tuw_uznoDjY;ekJhP9Yu+
zc<!(JX!obz6b+qdajhrJQ_eS;N5<M#J?iTnFX|qj74;Il<iaKB?38HI^;TKox?RK~
zG)SR6toFy%clD~#(8f2kcSJOTiWiP*9LYUlbOKK(!&t_I&|0GwuVtgDPj01r=7mPq
zREaw1u2PP7@W87-Y&dSQm=&U{=dR4>%Cs3u$KlbDwfDU$cm9EJc%T$gt}P6(>dca1
ze5>z6_SuRBII_o@o4zXw)C4F3CWxvD3@l_FX}_<lHK|QCz=1@LE{cPOpM;coXbgAi
z=AhPfHVwr71AC#vs5iyqM6~)?efD4aaRUY*!sKDgaOk3;DG-L?QmI7fWjc(VUXQ}+
zT=s3W78|7?V2)Yy(H&0pA<da#cMa!F)>>HRe)uX+OvAx2EEOpRl9TxTkglpoG<eSw
zm~G~Go`$`x|J(>^J+d&V?w)?R$NutP4G}80pTCpaluzc^XV9j{VR$?m(lRVGjg^=8
z#g=rsY^6VN0%Q*0r|)H2-e-I>mULZym1N!1My{UdU#@9DK@;Ign`Q~YHR<?{JZ;_0
z-)An2uSb|R_*qUIhT8PO$R@Ai;R}HA*8l%-^E>F#dtagOk%PDiNz9!yUjx(ru?N$V
zpGNfFlt+M4`mby2NYerT2l~!rCrPM1T(Hae5M5h_SR3g)#Si1LxXeJBSSrhtk|Drn
zS<zR?K8;$bNyWrVln_zO?xk!c&59ewp|{S#n}W^=Pa|-L|JuD7FZ)>WI+=|(9qEvG
zDG#=&f#Sc=#H(Rs0_%>7f&7qt`o>lES=fY?n$wOk|KY8EbYBW=bmFV%B`2N!mLL+q
zB%=5|Adb_8bTW63=K3EL367b?@4i`?Z(atjW=u9LuGe#ie?~lAHwjryNmM8P?d6ey
zIk0KS`*VX)The<a18DBS@`xhk%DyDpnkMtEyP-7K8sme}X~+%L!)Ni^0`q{uKhH&9
zjT$8*JsE2FC)Q)*AODGK!Bf1t`X1y>E{JDFDj()6b$(&xBKP!scq0GgcM0oUqbMHL
z50v;9JHNuCbKshZO241|r3q?CBvyWvtOq@D9Pmz=n02{ec*B9bc03{eyTJZyz@3N}
zt-bEj!PLO1k^Du0p&=7=mRWKJk8tQuX&7o3-bm1B{`0<j;9v~h!OAaV^&M%~+x^#f
zM?m@NH=$y9&;&)W@CO653BGL$RY-A3h4e}|l8bu+d?$_0DLYx)^z3lrdB1#%Qe-L9
zCtBoU<MZW9fyGA@+#>}C()EPMX3D_SeQ8n1&6D+m`QUR5G$k8Eg>15mLj3CM`nj&X
z!UbKYnP+W<3}6ogvr+qlQrqvbgH^Xrd%@*$ra7FzUixJ)-9xl0(~kyah7GY%_xl*!
z)bm~(teZFUg?|OAIWzHg>QGKzqSm7>mX@NuP~T}hwC!iz{4Z3`Cyj&9rRMSHOgrj3
z3YdQwx(IG2)i|2HpT+*do){$=C7<DT2&*dxBDBbnd{=457iTR<`(c8)%lyE!AUq1+
zk@5?B@YF23`br(w74oha^K4y?J=2N<m(W0Kfy58@6%~VfRnrU&hp%?Xf|-nd!!er1
z<GGhs{qh&57}rwD&jIk;vG{-od=yc8>Z%~%zx0&lux)Ca*LCF-b~j1MOpXgn%;s~K
zAID1+tSVuqPTnh;Y1#(Pk^?WzpBr(+?@4sS^4#;nf8c*5BCGuQoo7mBw?t>T=7~a^
zkreJNRYJGDnZ<-<3%LT47>E<?w+ob=2_RVc^Itqt?ye>O&!6wb*(*L)+3OLb^BMm2
zVg$$iy*qjw49dpRC{}tXztR=hd!|a{NXx|5N3MW<B7@|7Z}R=47xq@Ic!Nn{)as<P
z=a%104Cw=q7!Hnd2(eDTNs})^L~}l=rvBib(R0(u&bbOQdw$+r0TExxX3z>4uwn{*
zqkQe;s*((Bn=3l27*e1qq-3ZE!kUk6I}l^V2Sao<yJ%+56vp6V&grh~6=EerWoeBY
zkDvu<rpuQFK$_3pX(~`om<<&fl0oiA?U0{p!FyI>J|;87!IZLL>;_%^K(<-WhH??}
zW)j(I69>ewMd<jpRze*-TrevV!U04aY@wmytI-@z(iDrKiK5$K*0}mkSR5Lslbm>h
z-%^MOm8H0#g$Xs3WZU&bN-q$y_s1ecb()lC!}PzGMY@x{Z#N=cfmq-;Wm!1s48QTb
z&+}`(gN5w2v!CrvWog_NaYsH|x7gw_(nd+wN_aEDj<I$p<>IPm3nRrXiU!g;quiPt
z!MvN}Y^CeX;ZwN%JhR8Raw0#(Ed2{)LhNCfQ_IQ6Io<kSW*H()0|@ZbNl7~0Hxx<?
z5$n*aJ$@z}w;O)s0KghD&rr{7p%6@AT~$~a-I|)G7jfc8lU+Fr(q-fp1^Zg1C5A>U
zP;WBeTsGLF3R+S6V`B*{2m%Ti!27SZrzc0^$5bJaD_B;Jrn5~c_?hueKmGeEVx)_2
zx178_?P-7_6lP@Uw9l*zLd)Nlm$NG|$>bTu_KFAqq#SVYjgJ7l3W}wU^AY)n;!BP8
zeI*R`3&hpEMHXQE%4f8WqW_>9^V3E3p=rN<osd%1m=6o97ls}+z!=*@)k?Rgr)uwo
zMW32C%OM33G;wJ)QaXNy!GeTK`fDIfKQUW@W8~@jpMfyEuMggKBIhoszf>-%NVYXa
z)isb5DGH8`BB4WxZvj_({Q{G_%Le}+7Zz9KH+YJ?$XMiA`4?5W2hW~kkmRv8gim>f
zx}B;O5F;G~%3kvjgE+w}l9b31i)sb}4Fwy=P)R*!X^V@`Q>L4|;eCVhe<X1US~)ux
zUc6v^6ozkrl)6uF{~8>_JRZ3=#jM#04XQGp*|X29%=@VxWt<U17_LP%e4n<sE(KhU
z!MsyX%wb9)OST07(KH9GoV1;oJK5g2Y-m)PJmcSt2q*IizlN|JUXt%?l>(I;a48JG
zZBf+uull8lLh+6AYl;<<Vf+t>^P5nnuD#+sc1{*p6|G=&V~8?->s27i6%c?EqDYfQ
z=F{x2n5{qS&UrYWgxa~n!VcRVRc*vF$8q7s1+%|W=2$VrMx1otUO<>~oeJ1(F>6Ez
zE9_W(9Ol#Fz<?Aa$k}h2&Km<ZSR%OWlMOY3%vB*yBn(1TGpW!8_MyZJxY8rL2$qb6
z*d*a!VbIF(DK#v<5qxb+z0_}GUQdA$M_*@RW)OR&287^N0NMI_T?B>+mj4V2@sA4T
zkw4O0bv_9teGfAw>^27k{Br_*wp!gt2Ocar<_EziQtq#^PV8tQIbj|P_|BRow>o&^
zeWj?V)FD}(%hFhb=3*P6W0Rw0Pa_6YRMGPM2u=yT+3~3tq~#r#dek6KOK6qhooG%)
z2v#mjAYuY{)Siacn4q@-Sc#5+7JojuK6!Td{~hq7EbO)_P8l2s0F7ZfShOuqt8^x-
zIHBm)X_qywFR+sPp=3P+)TJJVMXG=8!%ZT1jB>&1AT0RuNSd_Mk?$Y<$&M3K%zut<
z%RPm2b<$MR`?;{MkM?lnIk{B&W^8a!&&E{89jk6=_LlMtuYRg~{5dPZ@v!u2U7jrx
zGZ%QgnGyQPy6Q`^XR@>i%e1|eqEvM?WGuPg>`PR98}eNI+uwa`?gtLp4xgySS)Z4%
zFj}{nQg~@iVeEYw_yDjSBX&p8a?5J`Wh&^GC%NA$`=Kjwnk+pQqZB?}d9ie@r^wee
zMFVJO<z}crkDhTd*HPldw;Kz>RuyNGu5LObI3u`kzz2l$u_w36S|yH*P|#8ML{7d4
z<34u|YZXUeXLH==qtvhmkfL>4AU4^%%4oH%9CSOb38rg^75J{IZrlNx0ly-i6NP#L
zVvZDk@c_iWl9TAN+1W$XV}`i^l3YbE11v;t3-U1i(>Jt9R??_QX2KYwdqYhq0v9!3
zd`v5Gl#NCg)a}^R6zPjIq2WS*KidG8LXpzoDxB;ww(A3)L~sJqIrV8A9|9x^n;|Q+
z+)^y^e_apB$&J#ap20JLUSmPexo^ab<K?xo@*NMHs;B98^*CSqug%F@wj!u#2F_aI
z(_hUckbi%KGxTb_>abJnlj_bq!_TPR`4|%diQ3HGfZAXbC-t&)-}KFT)^~d4rQF_6
z-J!E#qy7uh$BB=PGt&cR*P>YD7osiCr*Up&l#qAiV%EzC!S6ozt}EI6;Uy<l&Qn3H
z_gN_9Yxa0<1c8iJvQ`ij@6g7ZT$u%iADBq{U%^kEoq|&X;`z+lqlI5R5<5H$GI^m2
zH@nf#>5<$;s8aRlbOJiKL+oKsvasZ=h@dLR_>7@z+Pnq*3vWY<WqXtyYYlX)#gUV7
zw9Q-%?#DcXdtiihdC=Pi%`U~{r9Q)gjQGTFCbEA!W{;AtY(Oo=^h7&EQ<|iP<^*Ch
z+B;wbb?j7tp6D?hGK1UV!s;!o6}AOZlEnw6c3HTOWNx~ujD)_>P|FQV_LAJk9>zo+
z(6wv{{#N=aJ=ZWRD@2a&#4%yQn>rZr1MHT)PU0@k*JmMQjfLSa!S%QmCFk6F9oHpD
z2M{v02wagDi(G5!ITg4Se&@k+55~-H8^%AKIZ?Et+~*>8Mtkx$2RB}WRR??iyS_((
zXw%D@9gDM&2d$dgEYaz@00@43%NA@h?SpG{;U98y7kcdbwa-iYpf|JDfXXY>4p_CD
zD?*vr{H@*^!!<<7!{V@&=zhZHN2g4m3Zyqzr*j?B-1O-mOj@0)_D99}cfSRv`zLzA
z<jNC!=;K71z09N{e}fu~7j*X53jP8N;O5|S3}G@xo}Q^g?I3Un>zGaCy9U%qu%1kM
zX^IbL*$xT2jar=Y=3)iEhbw^(bNPqNC_<UPDs`RbpZ&YbE)P)9KC1h5MwfqA63r(5
z|H*_3o_b3k&g$4f8Zk%2p%I$5$(g+&IQYD1(2+x!mZ5mA9^Cs(|MzF6MRv6IzT}bl
zbIt*@aLftHKK_p2@?m(`8^I&2h9it1jSjIBWFSaR0!8X3adQ?}zn%Z7+!8<R1rIGQ
zTrbEUm!g`uIFn}NMBN(CsNLJNj{%Ul$*YOuHi1W?If-?ByzK3<%5E*@f<_7CmUz=I
zqPNS1yOp?Z&hcw97xMQ-(Z%ze&4@;)D&#|DIRL9MMPa-+J9(bo)2oD3D^Nysm$DaQ
z3qb%-meJtJeOt@wU}<$F<OM|CN^PIZNs73Ca^hefIY`FhfC_kZt;ybW&+l=h{W&ti
z(3q2A+v7+)oev4c!06vijJy(q!-c*FFL#a;+7fjzGyeGiaz^m-yCIc^thjF<<@KEf
zHWR^AOcIme6AZqo+g|K;HB;d_dSV{3=uv_Q76C?27sdI5y+t;$uccP=YA!DKw&oyz
z*xbrO<*5?1<bfEAR;rxm$=Bt?Ya^8N6lO|Y)!U0%9q%JbKa6QqVf9J}RbGoa`!xyr
zw*wTvB;sVV7U51rP||JkM&pFy+lQ0tGA*>lJe3_k>^c9981wBM0wu3o{^~mr^W0Tb
zwQg)+r4+z5G_dqP&IB;$zszoM;VJna!~5a3=oyUg;s0y;-RV3%cm_zN=EOirU`I4I
zdhiwHgw0oG45$%#Dno3C5-Rr{$B|C?O~0r-$;qZDIq1&0tpAf+bUQ!)?#v9PiqRF^
z!Qp7T_-_j<N+TrASm==BSp~n+6~Trr;stCgxuShxq05YIp3}ipZyE;si^6`$R>yGW
zp2No~HHioHj~RRMQAOD=7-v|Fw3i_V-7iJjaU!Np&Ww%dcP_rdj8>5;vT^l^GKB;t
zl@(FvTDPfYghvX|Xx|X&9Ffc8-6B>3>#o4wv^yCT%&V+rFNV+hw_j-#lkO>g$qfDA
zC7h+tAuoPmWL?2V7tV3L&VtJP9RI@g7P;~3*Hfmb(FfXEkaYfw21M84^#k<zplDd3
zqN!|Q3SiSY8Hg@wvJBjfK1bA|a`}7m64>+rQ$Vc0VRgwHXr;_TC+5Q7ram_>*x+Du
zxdDzP?Inl_h0}l#v%`3w5M?A-DnZ^838bu1k(;|emyh^X7`u~{@olG8ZTA>dnh(;+
zG&<<9QDr%}%HQv-x$v_L0l*@mdIbKk9QPtBOmPutl3k%4BDBy>NistuxI&d_BVO!k
zg<JgEvc3(R1T_&U<DrVkuT4_3c5?IVJ)<z-`gv_tFLU9W4I_eCL`0h$R{}QViulvY
z=*sW&3n{CgJQLV2=l1Yi>1xy$zQq1c$=!c&Fe*~CVF?MSh$vxZm9b;hH!mH|wK@&L
zzLg0QyTAQ4zXrO^kj+s6ww8(N4WJ0>)JB5<AnWQCz{o&t0|VG)H%j1C=yI8%e+>ny
zoP5XyyOi361gt)$?rz6NFJ2-#<wMaC{JXdBD><&YlJI@?F&V~X!P&yn<*|-VK-6-?
z+5=M<wNuzkfhIel6MZw~vU`Yz3iVLzLjPnwkkvW|tsY8GtZz#t{A!aw|MjR*Biu55
zjojqA;@w6Q1?Wo_#eB+NXca9I6AMvF2`1v&J3m5!dN$Hp3kd#E-AQk=_Z5&=o(wa&
zZf^h#j;HSquhUR+ff-EdPM}Z=n^;L?Gn)*#1W@Yv2F0V-ERSxM>w><juh5fZpd{Gj
z)!eD?2;%h1vS&TWFZBa$W>}+ffU4!GcBoOeLB{Rrw;HP`yuXR!RIpoa-X+{*28k?h
ztuSA>U_1ViMV?#q+3s@_bKO+{8Z&kMR+kXi#WU#JpM|ooJj?NAWYl8()!L8>SN3b`
zQN%LYuZoKf9Vb1_Kk6S6`JE?pu+#h3G8~zp>H$Vu5^5k)KFB|_^|(x!^#RG1;UCl+
z=q7pgC?#ncd}r&vJTI336PhCB%UegO(`-!3?9kZI`tf@V$y7VTCYH~sq^+|bh8$v7
zmjmC-{+bZ&C;DvN=~uwE9O|rZx?lFziza7_w5h+RhINHMWW<V+b1JaGu^-h3DmOe%
zIYSjtq}F&9z?9d*F$*MAB7X0y{AiiSF{ZFsETsBE%9_H5GR*Ab(EP~+R@9#~0bR0o
z%edGG-%^PeR%OhH_8=SL9aad+>5GF2uv|8s+OrXu2L8tp91jCX_EOS!M(R5j5Aym~
z$dgu2t9ds^v@uv+ObS;ah9`C^iKQZ++EJJ2^GtsO?KFy9Qd!B&qCBmlFr7}tplkLS
zdMP2dh^$$3dJ!aFnk5gfhJ-3#6Eig$OS&qSEF=E@T`#9+PGB$do0r!t1@$Ocsa!#I
z3|Lhq-$A1eus1GJp!D2-97$ZrfVsF)9(yLjPjhIQhht$?+1}`xgXny(1Wm%s*jhrD
zTEfk<_iaLaNRtHFm73wo4^MWonnBy$(Wme<IhYnjSpYVwd`d4L6q)pZNRRL3n?gQ9
zX5>?@w6)tP^OHPl!-4{aXBV9Z+lHmr<kV90|C>;`+zaTlDpn|jv<{bvLfZcaHRdPL
zWU8kS-+HF)a@f!@88AkU*!f^@1+|re)gvrsmq@?%{78awtG!u!Qb<PC$iGb9qotYI
zx;dleH-T2)kq%8`FbsDI4QkMWdf7S=mn|wWcGi+R49{Zg4of7E?z|<`6;cqxB@o1<
zKsB|v@AlhNI=)S{D)%*G@5NI;r_0uMHC#rpsIpH(E|K>?^Bl)q!?|t5L0`}zm~pp%
zbjxTp&FFPbC=9@LjS?usl|IC%r57pfGq6=c5HFx1%=8h=HT4lDHTfzfMlR@=I*kfA
zzhYU@{Nuak8=ad7{Ac)E!%L8d+^0_C4yz0FaUvE?a}`i+j30RCnM6o{910zN%nrDv
zQk7YIC^UDWB6hv?TnE=K07?~#=|D6ikOEytwQ-uWc~z<B$t~{`Op6&jF#2B1wCLR4
zfSrx2idbGti10(&1;QpLu|Fl31I1irxT(y|JjKxpEXYzEp5_!G>$+3+t)#uzcNPAC
zJ6^>bi6jK$i2wDGvSJeMieOWx7DQN1kL1x<;W=SXQYqNEmg`^PKq_NHRGm`RAI<XH
zDXe(4`0)&gk4>v={Vs#ajl&|X63K_kVJU6=L(~=Kj%=NW^@(`Tkbx*@Qw<?s7}#!6
z$FaS6)L#1doluDOU@B3fe|c?X)%Ac8@l&~`so0bDt5g}bIhR?M#F)Kf6z{0j(O%q<
z|3?~h<v=mFMjd0025&aAIhpvRJzrVfeODfbnoXw4a^hMp65sxAl@5_OB_b6TeKl16
zmW$>-@id26_Ie_|ecxx|VB(^+MUf8}Pr=3T==OL|YD9VmjJ7z2u6>W+F<f!}HpF(p
zw&nV~?-gqw^(7~V{|N|*Xb)Ha>W3ZjzoJB$U!HD^WF{roQd0$Sw_<j6Ujw~2Aldm1
zG>;0b5DF_H5mt9S0!EG*ZgqbuEr@?T02_BC9wsUu5h)Bsy|pTz2AO;`!=PjBi_g59
z3pTYEaHxd@BHO0Nt}v=KD#(0`uu<2Biq{}cD4UoAjCTE;lWeqYOy*|sT1f!0Z!lDM
z*=RLQ);T3{Bg;=_zYs<-R(e+MWSUx?oBU$~mrCW`n^JR_6Mw=cz8FDtDu2Rq3PIj<
zr?H=_+x#|vcCmg#mMowffeHl0-nHEe<H4B6g?N*_YwQ}5c7BDf4{mva?LCkv?pTK(
z-&%N<dLEJQD3?-VwdS11ZAxY=eZi=6c@@jq)XyQoo?*Jn6N`nP<-k$=`i)*gq-;SW
zh@vZu66fqB>x%Xtl4g~%`@f;^Rq+Z*&Kx+7-Vz6GBZ+PKTm!AjS>Zs4V$LxW^+>tp
zQ`OJ1gYs(b-LH?Sy9^?@>zw#UPF}b%2eUz<fsI!zAl^I`Rs9%rW|uWVQ`E>OCWoIY
z6Mb~XTn<R&F(q*rI1MWNWFlJU>49TOW70^KdP1P{e5_LsN*jw#+oWp}_p%f^j38~y
zi_yIW3NDe-*q5<ihYJ$36B>bX@{N&aj?Q%AW$~|XqqiMNvvR=z14`VP#N>YEn#mKB
z`d~o-7VgB!v8~|WuU@3&d)x4*=dFV!<*^OFw(KQ$<udOS`d+Tic!wpdDWJ;9daHxA
z`L>=;_|R?a8Z!U!Ld*pxD1~1=RqA&pS4xsU%J@+=Hc*DI!hd3dZ7CKe05w|h?iBw7
zDcE9J6#CZdUBE~OBlv5!Ond~x<yx0H+i0u3C4V{A9EZH_!sg#pWVcSIy;7?qoGiO&
z1sEUf^;3=1l$y>q-pwHVx!Hv`_G&so6ox{XY?-MS%W_F+Chmwn3?oF}Ij$6IS=3kc
zBr9V~c>Q^=d%8u#GuF(##J@CUUE|gTj}5pG&(DAgU@8g2%UCN9_1aaG{kK2H?z&^%
zFR;*-jdAvK%go}V*stnsgHQ<M&vjTyQ$&@>pEN(IxdL8Rb-yKLR#H{%(zs(;HsEr#
zP^saTt_$IK<o|OCoct`S&ZzO}09!^cW&;UVR`hXECq@r62^na2z&Cc)LJs4MF_|&C
zT6TomDks6khkVeerK)TFuMQrLQhQtsc(|^KSb2*T-hs)$9$@iHT}E%c=O^Ft)5maE
zvVcZIe3BBBoK%$y3jS3|I#cB+DyL)gwYZ87c~L$o-pMLhoGdZ|=Kr#0N382eJ>F<G
z&9i3dEry3S#K87Ch}oK3A>ezR14gKg3rdhKQ^|u4nT{}qAM}KK)HCio0;{yE)FRqt
z+lbYw#Te1yTp+dV;gp)``yUx3Pggoei|X<$sqzl^B&JJsL;Hd5Gl(BUO|1K4Q05m<
zuyAAhe6f(ahES&Oh6fS)%#gb1eYKT4F>qYVyr)-F_Jqu-C$y*+>y-x#!zIH4JGLms
z)lJa<`KHr!=Fe`GD~0Ry2=fY4&-vTmTu#iSZ5R`vs*gm<o?vl0uELBo87Hnb!Z(Uk
z*`{&9%Pjg|>_+Vi-__>B6});O)^Gc!G_=<vVf1<K{-9Igrb14RwFA*)(k`hHMPXuv
zB0*lK?sOomI+IV1Tdwg~Wci)3c$>W{F80qZHZqUP$InYf&Irny{Vu`MJ-w%c?CKSX
zMMV3M$luQKX7@}N2g?Dg2iEkzP}aIe(=T)sc1Py7Rq3c_W^YT!$rawPTnncUp~I%7
zFnjaMg*+}hFdApZSQI08ts$~(9~-p389E?mMQSk3th$UrOu~6#KwzSBHGY_3qR1vj
zTq+r@6@Ip{!xpdQ?V6Qy{U9rD5}^)&E5s*kQBL?53ElvQW~qb(K|v?w7teQgLTc1a
z5tsVh|I%RvfGn&YJvX>@*)8JL&Y@|U^z}F$y=)P2txf?OS`+bF2aH7diMwZF-E?4H
zi&G97#RS9KZ#_?DlD0Ew7E+M5WGCXSbh-e=lGfrzUj)yunw5xRUUkh)&#p~eq@!<7
zy64_-l+xc9e69W3pAgF><B5@(SSM~12<ThwdW0EYy`miEy00!U(fuI{s^ZUQx^OAk
zvjNL2&3jkjsue5sA&9fq?KD@`bOW9sTI%AFVo7_2Ha_VtnpI0YzKTQGo#GO9g>jzj
z5)0Mn$$1X}VZ1sa5XP%#Cr{vxyo2=CJ|lSnc+YIF5C^1!LN65ZJkV<GQjltbwefjl
z1K~u)Jz17dRZsfC{xIoJ69sGD8tF6}0t#5#b*+Bj9$8KJ=27vAag;Q@lJSF0ZYp^A
zkgn6Ll|I)aQ`aDC8SM*U0NffGzy^oXgB1u|jo5CJxF`QNwJE<@^#z;r>1UYX4_LX8
zr@<*$p?_UXS<3|mDp;jsmz!G?AE%ocHn+|)QEVx_Z-Xo8YDQE0NppNqjf7Q~q64M&
zoRKc<a43I@U0C;HtcoV7O}3Qp+R9-|CVjk$xDfZsh|kx5K`om7((aJLJjy2zV{`Qu
z-oES9zkUtD=auKHYW+C1)zK}@mX}H|onGS=o6CY{`Ak>YpxFnb3iEb0q5I)gkFe@U
zI{6h%C#sN|dz+iyq)I~Zo5LHE6uI0EZ3p0?Tvk(JY}~Fi*ztDrM}w83e%t-NW{><o
z>k8NSHQ;a*sQ<vJ7C0A^U&(6I%-ryKvp23$1b{mYG%V?dN(N}EdN-R~yy3K%Tqz*4
z99Jwt95jpIY~s4x9ZDYsTXseyT0w^K+3@6rvvb0GJ$F@(*O3s2t0n)z$BdPICyoGd
z^MU;TBb``EaWW4yWXzpWzf5<&GPlX;LQHwkzW5ey5z7{U6tWq6vl3-g9!NiAmFXx6
z`F5sHaLP5H){nV0&`%*fuAZ^CTH5Zyn3aq6freXKTJznXe9{1Gu0$6fqd3RQZgdKh
zI{<;!=d;`t|Ho6^0rkz>^Zp?ugR6!XR<|=!`qMT>P%aGrSp{A~qFyaKn!I1a(;t;t
zC?kxDf>WBe6d9O^^deiG!1}AuIlzQkU9ecQ8pPFDAq}O)%-3=hfIcNJbMnym+M3nR
z3xD2#xDQUt>voowy;@$(k?x=U*@sIk1!9E3UjDot%G}sis?AUs8Xd4T>pKuU3g?T>
zG)1BdlUyQmt3tV5Q5HX{)~8LA?1G&2u>>RE|B7zN>Xjf}XCNNMdN==dPdI|0TqB~B
z62JbX3zVFepgVW$3~@P<<tIz*YK3aO6DtE43;1BH*dM?P{mkvDW3-j)M_^WGUVUlo
zPK;8tYfD9}6s_uX2^eWfoT0ept8sCjvkwh*uTqncTvVCJXzU;71&_(*iV|V=(`)>`
zm@%zh9KnhiK<a&b?ZWrg3|NKP6*8T=li_m>=UcjsEn=O5vj%AsiLnfDI9~ua3YNB)
zE}CTHdF?_=8(>Wlo$X<hZdXn*6tJ4+{z`+qWpFLR1FW*7y!5=n?ji?$(@D&^=T{>O
z+|O#F{$-QsZ!8W&1j}1M=Ip5Wz&(WH*1Jv=(3YlKpAUua2Oo|z*&R4yIky2X`^kXk
z9`#@iwr1;zjf|WU7_z;%>bZW*!aX0nvl;fk)8m3dAOHXc+5xBmfDH&=8{~vHFyQns
zElE;~^Q{1TjNwkKDUf#@L_0HydkOt7`DH5}2xUG6xcoRuq)b<C^#7BbsQuz9@fCw%
zX3h`4-6>#!nINl+U|B4LQk!e;o_CDAW=o9BrHR1b#d(QVhTbJGTbwP?bVGDNVRH=p
zCG+RK17d-7GIMU)M^W*#q3D3>bs!%x#|SKX|Kbu&hNX9}xJyv-HhVF0-BY7hbrC`J
z$@R^a^KCIx<d)fFnBPKTade~*@kqM80~l|dr+mWoQGELPU784~E+{(;G8FjuGf)dW
z^tUZg(58jynbn-lP&Kk}sL#5eSj!@-&H5H`XF$awMfQzjEt*|y*JasH&J|zHWE<fJ
zn;O&`0?l=S^Td`oJKM0J)KKfh&JX0wk1~LxB5snMIf)c+>L(CZE0{LavF~QiIMa6_
z$W4)ce)yqYDX2BP#u#W_KHy7@8zraQWT03UFNx)96bhc6&bVXk*Zx#%eZ4j7VP<4f
z-$NjIWL&4q@nm#lSJCKKHt2LgOmd$I&U`9V7S~n?>rZKmn(1n7s!%>B#^T2Iq{MG^
zQV=B~WLYE5?v>kCAtVI&clPMTihSsJGZ+o131@l^f|D_+=Sl)AeOd6Gd72#Zo(@TD
zzVh5V8#`;%Z<W1Zv&JR*bq8*v+-c-w3R6^?09g^mF5%<x$Rvu7s%}Y}&93Kms^VIP
zOZRfrPyFw+voM)2B%yN46!DjqDAxxGp!!4A!pTzC=Kq3Ql6S-177M&=4M&}nz+xu}
zrp=eU!HpNa-$KIcKTnjQ0M)mEn-m3Zw3MYFp>o9TsHPS-96hW&WB0301w~bzPo}>N
z)(Z~vp5xr&l32IPF%u&E#v3u(5sz-Z`U+tzDy_|MazcM2SJ!D7@GsPxjx}6?4XP|a
z*ERdaOFW0&Q#!Fl+;oItTotU!820&)<N9fC#}RC(?1JI!e}mRy<0~_RgZpr7<&I=1
zyC;NPvdKUv*ECV@5cMGso??D^`Nr1>qHQ}B>ItJ10p#CrD~-up#Ikd^Mep!0Cvd;w
z(}O~Oyx)-uzt5}dNLQ4<jgEgiYMiSs1-r5MmWc=tLD0gA2=rX&6xr=r&cL%iOXeGf
z=w<h4OKz+7?tWcG51glQgoP9N(yo~&Lc$QNI@c!}4k-hcktE=&Oo5S2rGKf=N2xfS
zo}BBk*cBYk3Y8-wN2gWM8yF!HU92TG2!vT>{<Dy^kLZIRIsO}%K<aFhMvEo3I_Sd}
z-QWE?n0P`&H_Xc`7|ZlN{_ji-<AnsnZ)0zJzEi1GA8Znxa*ebWy$xAk0ex3fs%6vc
zG$WirV*k<D+I-ZzeeF52Q_+?4*?N->aoy55Zq-JG4kuW}8Qhi$m`HVJz<LPC5E078
zZ0dhdoKT-wzVA!b_aK<7yMUK@JkykacARMybosiH4TIwG1eM!vjhhf#dIm1=pfxy$
zu#L?attXkpdr!ta4{L_Oun_)$De}yU-`s<wNf96xxTM_e(XMFny9Z~j4g!GEiOjqc
z1xNq?4FFZoMd+C-Pd_u{lMepn9z$nME!N>J<rLfC7b$0fzU%dlt%FdMY>eO$_bA}p
z-!BH5W$K%u1@9hb@99@((C%+~vL}0FxBS>m02Uv^LDk+d5ckBG_QI93TyM%;0K)ol
z=YE;)>Y9IX;L{^P-&!D)d7yfy=G<$xF6*vwiZgdne-}7(1E{A)XFE&1c#BqS%EK1*
zi*Q;0%7Rg|4YsbGfRn?OE{gOjgskl%ibcdF!N8+u<Upp?P1K5Nz|vk%;V3R&uo;KJ
z7&{}M^H(bC$6l_&9!WcmH&+dJwYo+fehC?DP8m)eE}D)CwkgVkZ_a5&5Nv8nz8RqU
z6_Xh!2gT;81ewo$B`&&>fOTkcyu^UWojx_m4ZqkYS@L~pe<G}MnJgGN*EW!GN9&2q
zBa^mZJO=`=ExV4h@iV5?PhtHN)1)NQ)r?1|3%+zk-;+d8^r&)(G;b?qZ)+OxkHKSJ
zyhCp};>oCD>o*8^{V5;~&gLSqbBA|pawEehTXiEUgg^G_c#|9Al%pQZdFzGW-0ExS
zl?-eQ|FPrbzpqCeG4sTbC)(-k5>#A|w48MpWa9L*7K`wOwSz}+7iNJHP<;hHjAE#7
z$!R(XREG9<JoV#rp|GAi5I28*wd!{SL@BMzb3u?GK%9ewJ?18@4N0b`CUu&16c+?+
z4aHzAy2$#2))k4A3)064C+9vf8F@sp%me54?>S4mn_RLWn6QvVC{J-K27ZQrmwxY$
zPTj#cp@drFkI5Oy<UO`~MI}rL(n$~i0Fr<q;06F-K|lT#0K!J}C^zADW~=_^=fNvg
zC3x0fzL5Q<uf_lhyzm@=CRi>0+&ic>_lu~Xf0~D#X`}LftXMJ8o>|nG?VS?+<2yRQ
zsr_@_W7!pA76t%&4@-8~`rs?wJq3tKdO>)^w^TPF&ebn*GwL`8ES^GR5k0RS_?2y@
zgov?bxYY$1{?VWk^{3zykiA4P4uipay2srBu@)tOTVR}c@!dQzg=gh+RI_v}8bkqo
zJN9C;Bw&O57ik^~s;T$nRs3?*O|*PGfH|Ow)^K{7ZRgum37?5fm6fYghuFSCF6V8^
z=Jp#TEl%#%l0^{53sA@qWoGuB3<gW1XulL$a8bi(dd&AYSQOoFZ+Ih*w?tv%zp&Fc
zIxv1oOr>Y7WrVfx0@eUpyAB4~?pH2{U0HDVwfA|_Gnu={;06x)f34<z2Z`q8AV(2~
zvL}ld5)$D)V!9lytJ^+v#x=R^zv_s7mr;_q&UAnU{*eSwV%px(@iAWY<_CFhHNnUA
zrJKlvc=ytZ8)xz0;==FKqk=u?4f7|biSmgBW*PBa&o$Am6tOF7>6P&<3(ppgFqA1*
zETMJa@i76oRfhiDH#BzkZ~Vv!BdZavcY{WW1`e7vxG5g&6U`d}`C0o^2huE_TNF@^
zG&a5=u-CwEe0(Ywva?_^os1xZ@M>Hvg}*&!Uj1Ga4!1amfQ0>ZDzm{%`+iB1aZ6xW
zH-m-KZow5w*gkr=K3Z*^wf+G@3tb3vPSZ#SM-gl&kF}{X?Dm3+q(R3LWOfvmnuqZ9
zx_gK~dD4DA38d%|XzAq>gCEON2K^=pLZ{}dF~-}lIG@tqJUw!_dG><lSpc2aI}~Rj
zhvlW~?QZ_oo*Xi4k9{KRmabZ=5`NuLg}Qe6bDg?l(OHlxVj9+ZSzkyZjv=T7cU=C5
zYBi?v&Od%@F5LLeVQ*HofW$fHw|vJX4Un-fuMlbQe>63>FY+kSNx&}Y3Dw7!vCFQd
zw?62{G&VE8N>VWGW}J~KrKQNgCGb~%4N#*;X+cpPSILO?`cdiZL|c^<gk~3+j?GfH
zUtx@0^o`oP$iV)+ziCaD$d#AVH}w7)!_3Ou88k#K)B~(5gzalZ$8Ltu+1|LyOo;M?
zUj$egAK>2eojWp;V1EE_2q>r~tNMfk5(oj0Jx<)E1(N^3<d{jwbRS4fNG%~n2IM0X
z(LqVZ@G{Kl3a+`e!m&;TM`n(BwZRuGp;|CPWV)mYOatd6JKuevQHSFbZn8iKwsI5s
z$XMq2z(@xj*GoD|aGttLIz`~6yMdOH)O=-HgSuNMNUQ(6!Z+gr*!_AX(mQy3J}&!!
zSG&6t21EMT{eO8A>YLPOy4H}3la{Pl21l#rJV8&ocbo<3d;B8xCfEC6+2OOjSPkT<
z0hEm4>;P4Sd}f&tH=tZIir$kERUmdI_j{Td{~HHndaWYq&pujw6a7}J$@KHVD}*kW
zp1iL$19hrMAmcm2=ck7#^ng|z%c0<9q1H<xQL);;oURa5q}c)S0{}v3y!1fr+XmWa
zR&u1?7LYoqs$qPqUUA=d1|?$gAd~39`!FFv$e3(W-4;sAvf#ge%1;S`QFm$)0!p@T
z|6Hr0yG}|fl$ffRj<Ea-&Q&X6#uW#~+7F)HK&7VoJlDTg&FCU2C_|RyEzBaA6+X8>
zQ9^^S3r<9+$jJ&9yHpBjclmgH+&n+g%D=ZrJk!e5NFgA6BbvAv017WAAw+RqVaoF`
z3;on=H<m0uh}!%cAf1_YEhY^VuvW{7v!M%6ac<Jv=%6INAs`><9D8;AY!{K8t)Iho
zY+lU-E{&n!k`ySKLJr&@U6dTRMc6Om5uYG$1WVNjOzJ&LcdC<RQI$ia*QHC|QJ<;Z
zN)&k^k2>t&U^j$~1)DD22>Ki1J42;=_f`n4POBWDOFx4q+aWyPR?0{IUw;~O{hV}$
z><@SpK)jtEiduGq5)X$0W_Mh!z*VP600Y~`UgWeINDwlL=@u6jgjjyN3u=qq@D_0V
zhbhZ?Xp%~Vt&!iju*3fIH#WO*`G>xD)dMGXhGmLP!M9vQ;%daAG}u6jDy)sJC&Xiu
z9X3R}kWs?3hTdE}%!dBi(-M3gSt5AJ;U@XBo>5Dr;Z#tEb4E(r2O-!oaxJk%ySbgP
z<|~+M$_$00UmEhS3l#3**o|}9Z{0|39tWTx<lJl3LlZlX;^guG4`JU0>-DIWm`K;5
zaxP;y$i!as@(C?Yr0KQm${pByO5EyxV;9j<kI8@?iKt$nJycT`C2n}X-az6V-MmeP
ze7NjCI3v|%d?V_9tmvQWo)Loiy9M(n>@qrp<@|%BeXk8{8`AxOp7lVNT)=+Wzv+?U
ztht-$4*HPk@xV+gb5G5yM*NoS9*^~tOv?rD5o^WM&{PjE-px}o>a|*BzIl3=xLd~_
z5-As~gz_sD5O6LAeUR78#AlC-!pcO7ETJ5ym%3$jz{2ZOU>FPW*s^vi?RI5)QVjKd
z>Z5H^oP9PuDBZa|31pHFG6of_|JxcJltV~kn9idj#OvPMK|6%3XIyP)j?%&54QOr%
z!`QcGZMCJ5RbIYg3>$zVZ&DVI1Amw95R{>sz%96zweipe8t-6nRLgBH8jRI6>&C<r
zH5W6T?ynO=(VQ%IkUO|wi^y>Sx4)cD#I8w?;`}16<XspSsN171);;k_XK&jrEv)j4
z%_kc0p=XtJH8nLR;7I(g!rB+u8q<^&+oe&urwnzSuhhG<-5V6B`hA;>>|zOC-6<sp
z>O6PY`Rw$qRHlthLl)96Mfro~@H#qBfpQqigKc1IA4^m_L~Ixtn%HnB_yNRYXhoO{
z|H{yg!(4F6a>WHg87RowfSkSfCcX^oiRLc!HsvWQcK0yLrfS)oRVU3`#`aJr*h5Z^
zKk`ioHC8zqsHX>lsX6cTW8wo(us&m-=Tnb%>}QMIUQ;8!z8L#eKMVxEjGo8Gd3<Vz
zAg2C)#a@R@?(9XTU#IKFn)@$n>M$~}gtM8-uJ?&5V+dQ4#Qa$5x5EY=4On*b#fxl&
zH5%aDu4$g@IN&NPnDXiHAmE=r%#4pkb}3CTubc^8B<#!vD_jKDj$li|2V*=}mUmyg
zL=VM993psMH-R*+l=4k^#%9s{=fMTep4)nMn;`YgxL<TJGvNHMU8m>oZT3Joj#8&n
zbr_WRy&lS_bC|%{9#N=f^P_ci3;uR5!AG2d=OhiZdHM}I{CCg)G$Ea1p!1qL;B5c2
zNbG{<4<!P?^O0K0+-uEbvf~vA8i(-ava1&C#xknOY3;FtI()NC??3$@zWsKQWmljj
zXB}l`)6}GeLL>Vu_XggNi!V@@W#B9Rhpz{ibYI4FzbYiNkQSbIyU2Ax2v>!h{PSOb
zi-4tYtTH7;ie{xa$+|jlk>turM2g)K9g+#Y<9(V_Fz{3!hFr@gZFzL#V%ypL#d=f4
zlAa4^^vi=`(-9V?yKM~DslI%orf%+IsL5DxW#0!Dz;y$^%fK~T+e+uR+zes4WSjT;
zal`sgo{nPD^py6^5!{g3>XZ$b4YLev$B0b@vv$z5b9O&>_p6e#k4En;GMuU|+scEq
zcuJIs1CRI%^yU|#FlB`1rkroVCi)2U!STczf}F`~J7Gz8!M$>KbDlCU-fp86;fL+#
zk^@$estvliN`g?y++csSE`0<);roV-5_S9NAc*<$$GtWFuh6z3aQ4Cn`BgH%o}SC1
z?TU|X%nsd3M4K?Fl6W;TSod>qx}PFUnEJv9p<aSY+@w~gzwDL?)q9A0<pZGh@*pz0
zew3b%>^CrvQ)$-KoSH`=St;Oa%N9Y~d->gP!T0$nFx6imbdF8ND~3~BvAHW(hn42A
zL8$BjrR!<aAaPwB2$>iID}?kd8mT0<vOD6T^pA<?N;hJRWl#@fmhmunv4m^r&k4);
z-2Wkm?}uOVp}qrh8dO>oUAHrN-?6_dXx>&7lY<<EKUE^q<P($i#~l^ahMU=+4Oy*8
ztn$pJ^5_?d;vYqK(dY^^0K&l8QE_6Qv(SmWB$l3F_3`nA03LZ43~ZQR_&r2MwcqwN
zyZ+tzETfz}+*?ShSK0(;-)rKc%SJn1t51k4zt4;Il-sOg+<ZmsdES9gqVc?5tX`*i
z)6j#ANWG|YGj6jJOOJx7X{AC!&p&Y49=5?G3dYf2Ok89f+|eW`bZbut1Y1|@_?v!P
zkmW(x<dZ(zZZA|->97Q_vCQi0`lP?n=xGCXd*r2@SMaz!ZbQ{^Gp?n!F$|lR*(S2_
z3)jx3BI8GQEYUr5JR!XNBkNzy`+nR!qq(hTBW}X@pJpR<r3uO|tWRUdh9ma^J;29r
zbMT<qG#$FH7yjEfylifPkN2@;z(JT2o{S^zt1Js7BtngsEW{x0mtO@|0@76X;Nu^_
z!fh09)}~3)z}(AbG)=C?fYia;ph+gar~JUfi+bjTJvvcg8n>GP#I^;pi7wcDhv17Y
zNWKK>2Ps*zRMt;O7~La`GyxQ!Jw!W$99o$Q`r;FRTVd(p8<%d59~o#!!x})NbYWt8
z$yBAO0&B7Wc*sE1k<^O-ra4x+4W}njuy5rk7*nAB$SrY6Z)z{gtos8B)Ou>NUby7i
zR?=(d)0fM9`R{NWKeK=f5y>j|f<?R`bFHDN<dXol$o#Vq>3RP}^I`F7sp5qpN^7?K
zg_^sX>rF7n#cB+rPJ3hyEfHoCAo<*w2cPnuTE%UPupY$(0~IO<@SK7Vb4{n=DCO~O
ziz9;1qKKE5G7-l}AO;no$5Hcs?3Qem5q%&TSLlK_)7u4q&X;rvBaKWR8$5$cgd@Uk
z)D~znT6j#hGSd&bg2MUisvv$MGX&gCx|by?r6iknZ=SUr!_azG2mdNx2H<y=v2;bv
z8RE^20+nK3>nABs0ZI1x=Ic}EX#%T&BmJ`d>kl|i%eZegQ0(GfmLr(C5ygnF=GRrw
zq6@x4QW3TG-G*kOk^(bXau>=tpxSM((>%7UDad#CK<@laLgOY;wcMj+SpMkvL9g+s
zO&otX;zvC@nc215luSv(Lber|p(9#J-er7+CH>SqpzY0}KUN6Ls`2|<Rg7RBllK~3
zi7Bba%3hSk)bTAM*a8Mt8&i%+gZ%`6B5L9GTO$OAitNKKC>{OcQHP3lTLL=(XMdM?
z^swC3iZm}7W*C<vDH@E>za$3Pd)FcC*Q4q)NB%uO@oOw@baA3MU25Y?!>F3eJqju}
zAl_(V^p$<PkatmWSl;eQ0Hgrl@Kf}4>vmR91>=va)bI4%Cl|gSf|f#ulL$8G`tob%
zRT*4;8uFA2Xw33iB<$CP>PA&i9ALOA7!<rA?;JpNLWm$9OBE8QPS@0?s>{>mssqab
znnvqR^81fq|4;sLW!ZX{E=#$vxUqLOOY}j>$wSLAk0n?-{s9r*lr!g6YZ5m44Z`ji
zgKm-O0?~c>qP|wY*L*KGMm35!G{~iXlM3qCEjD_V6b)bP|CuXt(xPl37<=2R$1Dh$
zO~ual5CN>~dJWq0;8gqQbhd~CEH4t3ZA|0~tI~EcoV+0%fuAH<30>fohQ9dno{W%#
z3wL{tWIRl<^Yv?s`g0J_I1)qonf5#R=L&#XV0T3ycU3W4|KO83DwI^I9~9*|g!oCX
zG?qS+?b?KX0owsSG{BN`A7Sv8DUBv{zQo&AuNnNKf1xZxhgM$_IL)MEAQ><*ZgHe9
zf)%1<+`bbyblCwN)p?4P!bo;D^J0u)S7zbU=3prJj=(w@&OX4BXevzdNAsD@XMG=c
z-`B5SzK_#xsFmYqG8t7s!_m!LY&g$S|H1c)rk4t1P&^yyg{<CwUm*0TtvzxF0-oWG
zBgmCWo4A3Y9}^0RQ~%`n8<(5~E#k5cZqjL@zMcA$vr6WM-V~y({t&5CDXzY=!7Ycf
z?sBLPaHSbrHP<+e>q49r&J}FFW7>)qDO*f@>{FUhL1TM4j_V6s0dw9D{NiU=p@~p|
zOc^~jAYc==2NgoSCOA%807Gc}No^PHpNuw<DY>s!x23q{+3VK?4~n)LFePbMX?WQk
zLzH2qzDODwhr}3p{p7GefL#MO`HT1+d59fumJUTEH4i{*-@E{ktewkgIx3|V&&<+`
zq&K7I9W$75-R2*j1Did!^tGhPy$l&2(M`&3sSY&2u5>b7{2HmB(PoH`ri)vh0XF&+
zPKh`vLM1B3qSe(`Fs8W^YFn_(4Ag?wrB0Oh`y}c(O2@RiA!^{m?f~P!n{JRq>VtDH
z|G6}K`=qbVQK&B`CV?#~Uy1vUsCH#mY#}5<8?F1nT@|);0w%o_=THJAWA|PxvoG17
zNgNNp|2{QO*~GY1^R@#CP0j__M;;R?43TDv$#iD~>$<;;R7SV$>ib8S%#Trlq_bMx
zuLD%gc~pzaK>wLV#<RL8K?`Qb%|S%3&eLe{QfbFOuIsVEs(h=kS!``Fs5}F38CF8<
z_~2`?)6eKTa*nj>mj@jDwPifxL<ajt<eUuQN-t2$I##V)t9SiUa^|px@WE3FelXJx
zed6uw4U0y-sh<=&pjw;iBL=oZPs?*Pu0Xaybe;NCC}ybZtk&ZK-)mNQW$`CIg89*8
zoXpS5M!TM{quZPV!gJl1jtk45*swi~M|F6AeWJa?B6mEUoa+!DJ{4sFk=`d@a`r4#
zVEUcl&k3S0wvd0z{qG~a%#a?{)hv>qdmxyfy4=|4%uaV<<;&2R4Zwlbe7i5U>uI7V
z3oi1>rKew-R|omLr4pj09N7yi_!AQO5h*HZ!|GG8RI#FoS{~DGkvRO{4PYD|FR2yv
zx@}goxCj!L$jGsk?Y{?o0+cLSbMuFlw5~{$s>>E{Yk8zsKYx|kUHrCaDECRh9)aJ`
zF+GMEjRfbti5Om0CYZs|!d`mFfihZabP`v^()Pq|*-pmH1rcF}vFpper*wjpM76La
zQF>0E2H6^G5f85Gc;+y-J<rjvwXq)>`A(6-R=8I{r&+O?cXBnpl>lwh`$V;QGcO;0
z=}7TuGAp#GY$q6S0lxHBEn&V`qG5?$8T{3@I?w`L+VZbmbD@bm2;NrDeSH^FHH4*1
zU-IT(C?CLD=S>mHQKnV#5-e`iz#hHiiwbWQCx2+o4V<1h@15=B;Wzk<Jw#L&e$t~A
z@<bcQb$jf*voQcKWJ`qddrugX#=ePkBGrpWV8BWz7DU#1rHP8^1*Qr$QiXT$pls02
zHrn(GArYq;a?tueo<icx^El-n&;e2Ae2&A!<Uv%xHatB$)D68JX_y^c${<H{|5$Ht
zcIrS|&;9|Ez%CQR?94g3E>hVkrJ(aD_Se(NiL~p6jdNvHceypJ)Bc@0oj8tVFLlQF
zPWML@o~%`8CwkqF9iuT+5@Pf7FIRfF-=7{I=D+5)oHP$$y>S{nz37@Fd=xt#;G=a?
z;*d;4qll0PN=6&3`+$Z4RlTB)eG0r(_zh0#&~BH!!wOcau55BXgRF7T*MW*pwN3uz
zNZ4QOXW-dpSbZcu1HLZ;`|11?<ZYFSnDRi#gCQD(GjZ^6q!fdzC@2iY{6Mdj;2=TF
zJiT-6iA%jYqNoITh(kH>zyYm*|M}ynv6XHs89cmforhxzW~}?vOw=qOfa4)Bx;#2x
zYo*I`3CYB3y)MHag}dNjb&0?Nt|ZF5tz(NaFdPiH>b#!JqT^FzD$zvGX<Z5;(@8pD
z`P=!_D0F^!6Ec>{ANBcVT$5AQ9&cM8^?x8Lm|=q-@s1ZX%!i*kT3;?=Q?ZHK#HnB)
z7Mw)t1^cbx1`2c(0KvRuw4fg?35I;(J_MV$7P&`~uUnH$@}tbi{2~A<?hM^-0GY&Y
z8(oCUCB5*-RISq=X|RbV%NhgfZ(=t$i9oF3@k&%ZL4<wn0%!puVG{#U!M1K;p88Fq
zXohAbM?;7HWEA`cynEVj(|*Frrmk2~pWB`vGM!(8ZVg!FQauTo-c1&*lHWB-X`I{y
zq2jZ{*k+lGRy%Xz8ml(c<SCG1AkirAr(-Ex1cyJCP5*Z%YeE1&9?$K~fq`vcGwb21
z#<K@PAeeRqRE8V%EFSA&qBy3yQM>FizhevS|8?b?irkBiT?IV0QgnaWAz~q;&o6{5
zVr|e~z;b^s36p<i=@f?YM)%a78hm*f6?<_U#S%pcRScXMxrRT2$-}8>)yK5uqTEx4
zn)!L4>~Ds3vkxU$Db9@KzmAWT72byJmkBiD*B!tlt2@DE^%Be8YMxg18)95oEV(G9
zp6cRidrycxf42Ub<AoJA$7CuBmXr!S)EZj&-zyq>V1v#9-QhExA@B+M%sr3D&U+)3
zuKMk4g#l<Wbb%%w!|u4npU?2N?UAlzU8%xq7kYSkN>^C`$-wDsoGY09s`A-WC@Nhm
z$sBM3xDnWm*-ib{N)}by9Ap|8!`p_Z7B~1%5OtDOw!rl;l<r+1dGkti7<9^t(kwA6
zRC|>-%>BEX5F?ATFr%YKcWHMV1JMB!^h6_e{!VY&j${w;U1t+Gkh+ZwlMGL$B?5IB
z*B}4NK8Rdess*Xnd9mS&ZIy(Wns`?OeK%Cd@@7105L?K&Cb3z8z7h6v7@C68IZuH1
zz<(ZEc%6p^s@}wMdg%RCrx`nOLRnhUn2JD+l1nHMy~2V1V+(u^I<8MlX^2-cT(({L
z*}Gs>F?9^I0D{<F_1)l0(a>8=XKT<ahI1-}<n*nktw9t;7<x<>=8rhug&-!m$jNg5
zS@3hxVJfW)&nyWyJ)JZHb0lUdRau{UGn<3#U`V*mlLBZ%uDr`rl@jY&R$fIFMp4GO
zg3ORfrn?~fd-Cj~oOy^)vJ#+(AAZVWoNB&!?$esS`h~TtuV|d(qi784DRqU1>S6X=
zevwCa_r%jDKrar$6Uo{HI^g|Oy2)J12vMg2fSS~H@4=mRUW(gizNC{T3Rlu8Dp^}p
z6;gyzRE7gsPP<$|4`vj#WYb>PQ}8fD1^DW2{PoUyB)$odPT^)2yzc7LDMcyLT*smZ
z8$!6^gM2$q`C+a&rFW9{k`JO}QuHRKcqNkU)etpA8N)z&X;mm-pcs%=2tbU^Ry-pa
z#6XQbKX^Ysk6b^tv?%Wce@Og5HK<sS9W2uOq!Dok2AApNv;)<fDU_Z+he>Nv^nHXI
zt2+B1#;4<NpYDe6s8_C7*=V9s*tJ4os#qSkCDx|A{!x@`ba1MxUG-n2BcS)#$Sai@
z2g9dvO#PZe39)d@ugW$fQqkzcMdA7!gV}ytl*szPBqI*S1aA6_5qLlQu>Y!d_Oimo
z<%VE{9`IWIfv)bxrluu@=Ff{=vGi8~qIF#SI+T&M2<{#?KqqXJ$6E8xPdZNy7&N;X
z5b!2Hfp9Ow5@~w5QBbG0jpDgz_;Kzg%Es^aMjyn1vTkYOFHj*7c9Z*uGGzFGf+WZ<
z=<t0`UH@USk*CG{D$AE!#2|;8*X%35w@-?EgN3cziucB`r<MJiQA}qOdVP|~b`mq2
z{0p+fy=cc6gM<+(dR^ov;O@U5Bc3I7>Z&(H=ff}Emhxsol<k<gtkBHjXH=Jlkt0*C
zT)R|EVt4}CPg#dWP$QsyI1)|MeW@T~f%qDoT|3&Y2qK62(`PPRHG=cptoDVD7iz6?
zGM+^GE+D%Nl9E`|ajIZ$jvL?|T=bcr|8=n)oBYcmQtTcuUvq~ktBF~z*>DhSGLV%d
z=yMf=-$Di3EPX4NznogUHUM@T5p%`}B?F!fROi;!k%L;c@FAw3@OMs@aoi(Y*>mII
zLcIH$0)1F5D1IC<>)piZ6IcjEMOC@r={4qeTrnh6nqNHZdV49bKTv^B5?}J0naF1s
z;`fg=4?qAqW^rP@gr0~-#w-IbwJ`YCifG%;v0OtZQe19%D5k+jo!)W|A0m8jO-Ke7
zD=#L9UuG_rhgBW7T%zu0qz{z{Acx#0`X4NOZ8#Pte)wsDnj2Q5+gFiTt)|3A4Lwb6
zQ~x4$Z}zTzI0lg#feF+C;0wSsus1Da^otLR!jk(nwqqC7!+-3)cyI;sLX|r?^z?9i
zC*pS@JseUmq}=!$S;-}{FySWEN($$Ja;WHTdN7FU;Y_wOydSCL6GXIQ2*D(~s_o`s
z;Z>>ij9#&Q!E}Y?)k_}Q65EwH?t$@+(F8URPY72KJ`r&%-}eS0Z{|#5`uUD`PasaZ
z?}Aixl4_!jY&E-xI~kcRZ*6jaj5RfxO+w0==KOU)x)i|M>{XvK92zyD=_@M#<9;#k
z(MGV_kH#KN5c2smNj78c-MUz2wb}6MSwwoe>*ai>*f>_K`8u0*T+BykcWz+GC&Gv`
zrR`E3+mLx&gnu!V(6a=%CY&F3xIE?%K&k-$trWSGknPAnRSOt~i~}d<fD}Ucu+TQJ
z;x>Nlpf!b6^}z6enl2v&Scn#a0J{=HNlyrLw7zntmD^MTh;F{X#}8inJ3A|bH$$}K
z0;or>wWQRMJ_%iq%{8`XbwQ=CFNl}~vzk7f+sMZ()1vW#BAgC2$F&m7OhL|`WC=ij
zb2>eRxOHy$lL;gdQ_!qVhYh2q+mbprOpG70P~p%)Va8M~r+l>Rn}Q=)RbVgOVf$+W
z*<6-zARkVO`l}?k85r-P@d#=QiO`d;JUQctxkb9}|FM1lh1UBF`V~c~^NSM0wmv(u
z7Q2!w17;49Tn%t=SZ<74c;QhT663b_;x7akr@N;O0?V(Q;rpV|V#0-1b?R3IWf3#`
z475R|8kaq8-~7su<P7H@TL3_D>g%e~|GgpS$s-8{5KEOk8VD8)cBcHIRg>1iu@(0q
zXQ<VlnoOZ`V>khBIpguPPJ7hWIPt5w8I*#uYOCb^OkeA|7Bs?%nwnxp8j|ap-4=*%
z#sklF34_<ST${2ttG({Fw_Tdy9ys#sk+FrPny=@7d)V-e>cr+iICSE?HCdcu5+~M8
zTa@|d@RKKmLSf*LFze=V`<Vm+k?MsM`e;qixaxbEggPNL?5F@qg$DpuUx;d&=X(-X
zL!T8RCxx!gcH0$#YGw^h6#3}MZ5lw5wM9Q4uKwA@KYVJX2hxKjpZ+#eJ`wSS$^o8K
zeWtHEWMRB!$Kws}l|r(=8=6fp;IY_0;;}PCu4uvaM9Nvd+zfhY;s+*_on(KE-%_gf
z$8${|#z-WjOuae4!$crulhhIU;)2|rEW--B-<8|kiC&sBm(PdKMh&um*mEJ!`kDkW
z)6F<qrue66DlWuzbeZ~{C`F380OtwpOhsz<>&m=Uiv82?<Y3}k6%_pMrnG(%_Zmhk
zVuAl()+yVqi6>BV-N`05ISWJy1#>y{`)cy-+q7rr%K}8G&VA6~+hCNOK`20UrD@Iw
zKIkF6YNmKdgF+vD*TkkUp>gcT<vH<S$`D#SIhw98venPTCq5a)!Rrp!K6k$@kM^Uk
zVcC|rFOypcG#Jf<CFXQts92y3pcN><`EEkkHn<kZPa}N!k6PJ5R7l3yW3?m~G;RlR
zm%{wgI6^lv(PZ&K@OC%REHH6ij<&-FnJ4+|CzAK=g}G%)zbQ;^co0H6Q0;al94o;A
z&ok1)j7&y$uz>$^O<cZDuAfC=x3g2l7+t+XVRx>0sk~EJ7%WA~=kuq95d}kN-<WyV
zICNfed~!TWr|<dGhc&+VT0WQH+ef5>th;WcLybt4L^CM#K|iZ)z#eq@RAFTswloVg
z<vl)l4-yZmvMXB&RF%8@BC2)%za>6EJ)d?@eZeXE%*r+sb@>g>Y$FOS%k;uY7C1n-
z`oIr$gYwY9spSRAk^uiTXMitIZXhS!^}pOEhR=2e`yuBwwE>3zz0#}i#gS`BX8DgG
zp`1G9*POBS8+^tbW8=E)k>8loI!gi$;vU6VqxlGnen2%D_?1#!i`UO{A%kwwq;g<;
z?byK-rDesR(jbUov@(!R>xZ0js9<;0e-eDFBWtYn?Y6-JM(dssH-SJ3OB`zH%?*sY
zo2i+mXx~Z(Ine>>cP^D>E=zam(>mvguBW9N@mNE|;`K^`ttGd1CQ$Xl>VGFciG<3u
zM;0M>pU<vEFiP3`j!Rgrj+U2zkanM<lkDH=yHb1uo_Zl$UY*ANY)0)#CUap=os)W{
z*VTg+?<*@U!|KubON5W0y1{IMO29#R_CO#dtBO`nU$uYU3AV{C7LJgp0pL9tc!{&;
zHfyT|Xc0SgAu4oTB9W9VE)`t_pfh`?R|^*Q`O%-sw0TzeO&+CFbAy?pqkxP6eM}iE
zFfeSL5Lnh<sRe;m;7Gd?GsS?Lh{i~8fCeV60*gW#*hh0HiSCn04S3B?^Cw+S*`eIA
zjYd5^NKPmHp!)bs)!(04FOdu3jU|0Fu<br&RTS*OxWuWFPbE{rzaD!eJIo<|YOM8D
z9Mwsge1y{nWZHgvpEq{)>W(Kh03>NJL3G$*-v3|&O1AI+<$n}#8nnOTw2z@k2F|ub
zJ|R*-oR~5)q;0#X{Swk>;#xYvtqXd4x^=w9L&!fEc1dHTrA@n0L#Ws-<kf-(%KxcJ
zOscP@e|3$~7Er3z@!;BkaG3jMKP1)Sr5QxNbbpiohz`f+Bk5;K(c+Q5pRJsa=sCsl
zMl<sxsAvi2`a?kn<uEDlC959#HQNS(A(>Y8lJwDik#Yma%ZLxI3GT)w_iQ`su2B1u
z`^M*^u+221&Z}0((fMT@Ad>OYz9tY*s=?F6C(4)gh$Da)%X917z7HBLM_$o!?Xr?x
zN`^2UG#g3*??_`~DdL6$<bc`P7vfV!B$~hKF+P%-5s+i;W$v|LBv9{OhCRe*s+9Du
zkEFAh-IUbOb2gD-iLnKTnC4<Upe~uc)uKBgnCYvi$OB8d-+XztITpi8&mLSk&c(fM
zC!18iA92Bgy8#MNO<s+6_fXpP)OmOrKRXRG4wm+O^Ph|V=yGX~<^Vn-ZRD_u(#JTS
zY>#gRSq?a(4JOIEtKgvja0;n7?k)fq*6Ti6d&Zo#blpL)>7cElm{{>a%~JN@8c;x`
zl(Kz>$TDEC_Dw;n3nOcLNF{?yZiKGMTZ|%0L@KF5gmf}8+HK<UfW@FQSG>}r9$OOn
z<pqhVqhxf-_3YTEY=$_<<9tj4H!0^MlT0W&z@EGv0S_)tnPnSsCsq{+E?RQhS&Tu8
z-uaM5m@R7!idK|x-J6VYrjwrn-~}ZRog)&}2SJ-%t9~)i>+u@VFmx-@Wn{|Oz9IG*
z#%lo1v0n|$bXg+51dbX|4(fU2Q$Z>d_5mzrt{^;9UFoOf6j};OKeCmd*$Oo=2`g~^
zFMB!baRGT(L+wZv^L4D_+tFedmtAt8nI6nIrWNxUz&9e?W-pH{=E7GmklUqMF9bJK
z?g*LA;sm^xG649Kdbu<p;J2{(GLxZ(pTT=Bg&>g>Kig`^U1?TAcdxW@<>m@JZLLcG
z;0BD%`&xNCCc}+1b40s_!|zs%)gn;rM%SxRKPki$CrehI$dNemclYuTlN4Gf@AyNk
zB-m0qYXrxS6|cFj`W^KEQ$Vc0fR_H%K+F&#$d>iuEoRP@?*D88F``m~$;%`oLVZER
zk0Zg2I>;%pS;B&fTho}G9TPcN?*AWup<fHHp6iAAZIukPisK4>+zSN3KWG8qGT$^g
zx0&BiK8F|q!aoF!00~terZwiNxklR)?Dds8SIED+Pv=mQ|D)8nXl%5{wTmPM>f*>T
zKpuY^hG}$5EO0q~nbcR?9pgeML&-?(l<JI-g#_+L*>9oK2fQbBEIH=(!L9rg2#ut@
z1ZIfQ>|0-c7Ux^!{n8Mwma(pDRgiMKo+p*E$RlKdscUp?CQ!JSFG1{bCM}Xl+yPZg
zY1n7|N|;O2{Q4Fy{V`EZ1|$dxQ__K|LQQpf6nHIH0y4C+(;@cBd&mn2KYe0QiHvLa
z?Un6rViNVpx7TsMRn_m3Xuz&AEDQ?AIhTB3LKP02lsN3T6NA3Rb~fPm1}RE~eE1h-
z_DKumOC<2W8!Ff*<z1I7AVVX4R+-<Ae3o1ZdkaXRVe<SVUFGldYqrnT&ihxF{(P?W
zLJEKAxv;NArw~T4O}h4`Zk`o^P7^^4SGFu!1)dxeTOl`NtH=Qr3HWmkhVw%{i@NuZ
zpaE=dT}gx7V~HL}ze>))=VAi^5oOAHqDy2^rSC^xY6ksiJ+l^Wcfx?~@H&0Z_>08}
zKf%YnNSUPACUrUg^A^*4?3*z5RLvu%!3mu^8nYhDl$R6hp#>%)<@ZWDlh!KZq7c46
zebrqUmF5DvxTan{rk$fRubt^3-_u4^0-{2Dc>%zn1$&@++fwla(G{Rwq6y>BgJmq&
zBDvX-GUj!sB>kc`fxXj0q?IzNg?qVliqEpR0M#pWqKp;=XbRs7;ljVx=AI)#6$mt4
zWhU1u->^8|ACY*a^eQ&6Z+BxYsm(Galbu^#Hd66#RB4+>8j<Xv#wpRcqud?<aq{tf
zsmtjVM>mi~<+UAkHl7U_)%&>sKBs1ExLmtW7GIzH09amcu*FOT2&AXhFFS{vSHHo}
zwtn!OV2(#S+71MIrQ1g;cSIck!KfI<hWpuFa&60{Q2$VcQVd{yL&5(^_e<Gye3>_J
z(E`no9p$yzI}-^b?=ArM78VD7R&7nLEE(c=vYZqDhYC77-JFJNd3YWs@-pbH7KcH9
zm<UcmC4m01lx4d}6S_XkvyJ2`+^kBeBy5jK)rnCc3XXLPtOYr-wkTCUX;2ALs73Yj
zn&PUB#Iv?5Gc%Xt+#?3!ynVGut%`>(#fExhjSihIYK60H4P5nS#ArMwe@Nh|GgdCv
zpd|Uc<z6>2x;Hu~=?$|#JdgId!0<+bWLc%hCr_$(>0?RG@-k??cDU-LUm#@f1?*r1
zI_X*asXu~;1-~(g%Kt-u!GL^!fSF{f5?26N754yG2H+9%2^r*SIoj&!e=#?^`+(q8
zF5Go9Cf!_@)mm*q#(<EP=1-d7gI7GP#X}%wA&zyM3TU%bn*#?rVs5e<bklu1$Hn8_
ziG^!2SH`=;Q+076r`^8Um^ECo%+YqtGUvBV2K~Eb3*IwMVrL@aVTMO33vRIumZa@U
z0u4jG{@q%=H+&o#?|rxfm-s2sZ)qTe+pG=a05xmX{9mg_yiNEyYCY_es&H7XEAZin
zX~WH|rw%C2(YVmY3m?{USQN(L&liwbKUq4czNfk<yjk)<I8>Bc#CJZ`?2I<r(vR#9
z-rcfQ_c$U&TYE6Cq3z~&NKiQ%2KBLIe*ON|#g(_vi~~&&leXJr@q0<*9P8bkC{z!s
z_MVL%=mPxF6Pyb~NSycHXerzLT(!hx9JeN3gGKu|3T1u^-w0g`56&b}n{*W!&lkA>
zR@4Z9pNCuDXA8mbkg#JzA!#k5rvC3dr@YHVrIq@HB=C4gT>MgpABaRxfv6jzP>J%-
zDrHRVNI<-BNeU2NkkK%+d*&vGWjjYJ#rr%7*t_%=_aA>N&{PE;%sMtHrNTmMG&1bn
z9toLWq_619gNk|!37Al?5KT$5ArKZ2EU#%sp>(=S0;AzydNh9jVONfaD!4^Z5J<DP
zCRP$0(zC2N)waWVN$gAPV2en?;`B(O1(oqQ(7wuw1f0s*?C|9P6F|os);uTh(9B>5
zl2`oo)Ys{VET=hlTEeha?DCw7`cpb(m)|?_L!A~*0t{Bh7)c5M6x1t)Toj@6XEn*8
z(h$}1l|O@%eA%v#-0f~qQJ6Vf5*-!dKLrdiwD86O4XEfgmes%Ur1}wqN<7PX{Z7zC
z(dJwyK*cpqqr0W&t!`$g=_^MsTC~y%sb0ZX*0bW(=9x?r#F~G$&M?k2Pg45N+FymA
zW~SpM8jEViM&@~L6hfP;JPi$%&m|GIs2Ff>s5B;E=ZBx}?iJVF*VkL|Xn^e4!WQ#$
zuxN7CYpakm%bNmE`tTjN0IT}|Ka-#(JO}E7ugO|w^&q3^aHfU<`FYHcyf1(^Ol;2`
z<GPuXZ>JwQD!0?%huS>p_f)qqlo_|lw}ND@vl@r{2x|3!KX>NGB5Wl*6>a@r;Q9<d
z_>LCoi81qs%9TxGz_-j^MQ4FxrcnoC%4@Z~xyyM*`rZ?1Vd{H&Yk>s<0|*V0*A93O
zsdoh_%n<nP*61&g@`t#tyFj>cd?nJ>w&(rywWFdk*eC5(<T^)>T2LOlP}+>P{VbB9
zZ!=~i(uggJ7N7JAxB6Cv<lP4JK5yaEf5M8DBU(})X^f0>vmWu1Y+9$`v2bLiacZCn
zoF>-suZG!4z!D!J+w8-^)`v{+Zw9v&qiO@UV^JczDuJ>v*WNPO*7TDqOotryjhDDz
z17FWxmcA}0*HkYyQ5>V=U~C%QoOAl^6xiKGC=)7k8NAOlh6c~wIAEr8{!DctT|}#e
z$&HIitjmyS%&SMn-*I-<qV%>94Q>1w0{}(G<TFCD6wHN?^U;FT!r7TJUJR(#YD1iS
z*EVu5!acy(AmJY3&FJGmNSJxUHJ9}%k~X&)q!AY*6(;JqKGJnYvs2IZ(bqaG)ZZYK
zR#S_O;c0yW<`gm^@RK_*XJ#84X0K%3cOj6%YaX7|K!Gl+DYg7CGUspal8(~l#z+XI
zbc~{nz)hsK1aJh_1MXY3uK3zGORxw#$NGeiV>}cGnm@iK_`vtaZ;fk~U9Wla${9la
z$5=IYtpMrl!}zWi4iJse(ExU!F$zGuaw4Trb43NKi?iiGWlPK)Z0sOq5Env7eo}Mn
zJqV|m9cM0=S1<7SG?NyUds5u^5vnszfoyBM(QMpsUJr$Pf$ee!Zli|wp(WpLPv7S{
zP18Q|R}S{Fgu|thvO`A3Nn&3F@VZtvI4*7T=<8`y84K!YboS|HB;Y#2i;lMEwg8b5
zocsk}SZn44<;19$BKoo~7mQ^;C9Yfp!iO?}n3M1rQl6FGUPNU8U3SOzsLHYvR}Oet
zs5K%{49mvU6TLFm9$lJ7OA|na*8A{PQW?!LK>^v5km&7wqyXhoJDAtB3T{)cQcpdG
zZ6N;VlqgzMAHsXcDKs&F$5wTo51p8vHiI=uc>ax+H&A8hl5{bA_x`1HEl-gzSwKs$
zG*;@XNR+b1*d>Fn^%0y`xY1sgFdn04(R$82E_x(Ag3jX(nfwKIGBNCkR|sl;<rD{m
ze5aG2paB8J3%}WI=gUC`!cm4Nc)D8f&0lsBFOP4vPwXA~_zQa`oGIk;9Xj?%<dgoJ
zOUJ~a8r4vz=LTR@u!CTJ5l$J$sUYQtIR5nFzU2$(*~WEd0Ir@f4fC=WcmMKuOH=*0
z>8xK$`IcfEGV;<Wk;N`M-{y;tToxuCbfGzlq1J?^cRv=NK<`B3^LC^I!_LLdJW;c{
zlCznBSEB_UhFd+@1fu&<D~Jyrxb6}5a30U%1MD_59bH;+ZEt-yO*OBu%iG<1;m_+9
z`k`9xY@GZf{FsJPtZ8cK@gd7<tdLujaS$)S3q|#7N_FTGyGJAOu@PnR7OLQ$SPpM^
zvvyQEM*XoIK1+rioM(qCYnr_dOG+h*zF8@E6H3#VH`Lo_1#LR7rqFlPk}Dmk;;Qt~
z(>ypI#QXka^?21WI`&xGM18aa+U49Qa6Y)vK*=UCa0nN2I@!eQQpP@q#)!e0rGAh6
zLw;cV@T#i?i|l{sOL@}2g7_5RZpQ{V#hb@`F@WYo8S&oDPO9E8-e%5wiV~!1D|Wu5
zjRJXGkh=|#s?*#R@CP++4@;_R=KysF#7K-aDICT9o&P)}l-ugA7MmGDGGnX|IF3k@
zg(!uP%iI7%{Plo;k6}EKf}yk>GQXo+{a}m#ePm46j#PgGxiOon0dxQf;!C&Bfi#|R
zm8SZZR*9)w57qdYaW~?P=CpikYv#b^h$Dmhb77?QdDU)7*62cjZG>5Zy{vU02n<}?
zW_Qt-L`c)8^&%oB#GP2(Cq_}CsiYSC$taVJ3#x?+PPDtgmnv;=IBL$KnwJBLi_E*a
z2aitk4T9+29sz6DH%jy0eZVmt!4#H1^=U)6)aFU_8YN&O&R(y);QiG5moTSB@1M^W
zz(vxMX_<Z^+4I$y8d;n%0OLrjak{h0*VQeikSssfeXIwvD!zImo$x#@w88BF*PxGv
zWv;e`I#)uFqw8a7Tx%eax8ls^hIQKm)qABID^j}}`b2aT6{p{^J$O(ty}96GqstR2
z;6Q8fGdHlM&D~kPGl4YD!<0CVg@IzZq!&po_Gk3H)IXD)aiWr=5<+1ZMNswNGF;<X
ztiWB!p_Dy0>OQ(70^+-v)SyL~|KqRjxtCVA{AhT0_5oa;4fx)-XS3}obF(KQBEnne
zb05{|U%VpxMr6WWGQ%?y2p2VrINh?NS@)l}VEZ||OjhO<*-;WtmhUc)F0?~baJ!9p
zIK$Wz!%xsQDKzX00f2M8+#aT!oA9xKx<MY3DA|9ygyfF;$tqY+9ao0J4Vvp21CWFE
zNhVaKoMO?D*w0vuG|KDty1yT~fHpzGs2W-1r?3@A^K;PaxOqKOF*d%|LY%j!)grg|
z{LJ1q7^MD*&yfMyzRxg<MR^u34LPC%qKq#tQyhrF+au>_uj8N-uD|cRNrd>cdBzhT
zD|<ROy8^?#;p<n{4S2wzuE~F4>U3TNl^@VW)LPNiw%#ulN%A6{(=kS1&j>gZ>=Jx!
zK~m6}_!bncKD&q=*YzKLG$~WbMjGyW1H!y}k!`9i6aitHeG0wy5<9+6EFd=GgBe-2
z?tsl+lAo2TmUMQ9aHr?i|8HOV?IDL;HgbNt>fPo}-}(jAn%cO-!ymj!fA`FH_+ns^
zno5c4n4H3X3Z9wYlqsZyqneIq#NpN6Zh5^j-We91rg9;$x*B7W=d~$5UeVRNayaCo
zw6eKXMQaOqcnfF6&ode_;V`o;S}a#W`|-?hdc@bbYekd5OO-vAIonwKob5Q1;1!19
zQ7B0GVvVQdc4dDu4dSa>2Z~f<uD6A0=3S_aV<K5a54P-pTo!j{h*_qSBW0t6ri;|-
z<g?z(8mr{AU?wYnKyz8i(Nos7<8be7LERNiU2%_sNf9r8T}l<{?yI8VG9MVdw=oCG
zN2UQ{_1cO_(^9@S5CEJ^sjPl!vm(Xh5f2LHmwB|Sqoymb_10I2xBV#CIM;e41~H9d
zd?5~5ucD4E??7q^b1^sFWe+87YH-5jtZ6knTAD6DavYC+7py<wf;PNo(vtfGDNoEE
ziBd$D3_L+)zeJ7Y(VJOyVPaZ8=6QXVSC90|00X5ka5w*PEH}5p8HvhZf<+#2&@028
zol(T5u)*gD^_1WU7vu9!yNwhvndCc?)4b#X^RRN11KBF;+CdSG$W{o`CoSjJ54H&6
z*mdUd7XYx$Rd}~^5}c@;qeY}k<!Z6A6EO^!sj+d#vrPOj5ReKp^O^2(*Nh$V`I{2o
zWWuZnSS#uxGvB!s(}AOZgvexkRXbPLVbdXRg|=ykS>sD`9&%Gc250_zJ6dF|4qbDq
za^&AU%<UhX4uNNd4%xl<>fs1Ty;<^4Y=zDx8CLjZ16hx-PeY!>W-NE#u&A;lYBZfY
zz)lLUrK60#Z;85$|Lil;ToumYg}e1BBArdhaMWF{%hmm2DS5cnYqCgmy-U3Dwyl~Q
z+~dc?*5rdFCGE(}OafUZihmP(oMQU!cuTgxca*`QT5TiriFdt^I;N<LyTL#1OTHVj
zTuJuW2U>}VBWtTTE|4yETG^lyT9Tm7UYurX1euPHyi6y!R9AUCS>@#3u!h1RbNXRT
zeqVTp8_zRaJ$T;HH}O9W4VQE=RFqi0P8P}4IKz0Fka7Tduo!XtA98ol0K;j&?0OBG
za-duq?BWxHZS-tHF`(%=!iW?wQ;t!L5i)Fl#d{G1{@5Xce)yabVri^!K=*sHrbC+H
z)lTiNS6~xtC(+?nx6mRq`UfXBMLqch_vu&kTC=`aupEDv3dA||hOKk3kb;z$_9yc%
zBiUj2idc%!M@%tQ0OUOsPGAl?#&1|RQMa+D%3w{WR%N!z5V#orv?b+DnQf)QU`>Dh
z#P(^Kaib1BhjzOU@deXvqTw9J@}AR1z|X6JUaJFDb0YTS)UO}IlOFhwZre$Av4R)v
z*!5ei7I<uyz-OA9iXXj_6U_#Y1?u5WL{y~n_&@7w0;@ov=*rf&CV#a?$N!`s3!HJP
zn<s|OZ*0~?XGGOy3@yX}`*s=9W^*j-4kn8wry3ypK;R__1XdgnSo?DpyroxWNqLj|
zF-p&!$M4cN?4&4lkO2!y%*LrTg|fc&Fg+v)pUBV&#&T{1l%8w6mt@#Wg{lvS8`X|g
z(<r$$F3vyMIWBu{_O~;v>S5J&8Tj#H4cnU@;}~pFJ{yqf;vwUqT+iMBy5gMQ{pxcv
zPY@Nk+2w3uwM=%G*8uL!4m_>QIM+Ux@-5QstxL*kq{?cxgqK`i;IZ6R<jp^bF-c-e
zP9J3Ih@vPns?z%6di#o$9BIO<Da~`lI|qKuyj~gSycs82>&w0DQWjd`%2iG<5(8Qp
zT%Oy!#6NDXXUKo-jnH30g^Yednx`uwq#J=r5+$=l>>xd;RZj|-L1;u8sU>B=X`myV
z3|aCU*foo2xmxV}!I>vIttz$Ehqte<WcF_zzCEJ5z(-y$%&3~Tp7abWtoA-T8uznF
zm50hQRWK9=5hED7BQtYK)f%)Wis3Vde9+%97uj`XF|RL<aYi!9YB7(w=6@+ue!Bh>
z{#ggM4l;OD^#;`IV&6#uC81CL=<O1e57JG+-{(->Cc#YPZpr(dqHcKQ1GRQLCdf6E
z4Jb$No7}0Y($+c{NISv<nO4JaE`_5(o_bu?o$piGq#Hbhn5M2gSu+I`#P({@Gg7!o
z)l2f&w_}+UXt_K!7oxUUuJc$*Ptsk95Bvpn4N>os6|Z{e4U`&UNU`8!Je_$we!^G-
zC7iAD^!=PA*h5W8Osmh3*1OOdy^t~+@qahUpwtDS)0qcr^d0z3Y8MJ{!mmq<Tk4dv
zZUeSL{}p?201-r2oI*Rug$B+aQP!FU^RjRaqLC9B0RF11o(~R?4oy<_;lsJbH$+;y
zVX!~S>-rTc-5s#%me7BPQD2kY(Dy%BVOSH3<i(-n)4u!&8|u>KHHQLDx~H$_oSGNX
z#)SM0V7*?7Gn1N<R6524%aNCgDPp=3-1NLi4H2cnwV~tzY3z>r>vBa-@hx=XA@l$J
znf1Pro^`}~e7R4jg1(FcS8@C@!o+3hjT1YoO*e;ZqPb=!f=A-KZx?Qo_d3`j(OIz%
zc0jxX+~D!C5Vg<w+o>@pc(%p{B5UZP;WH1^?e4n{LaWCa-?o*Hlw%im9>+W(tb;p@
zYSeCEt8%6Oi~UK6SB5spC&%%Jz!;ri=omPrGjbS|l;Hy!xP*YQVCs2y@(NA5-}pdO
zGrc0B>D9tyM&hV0ON(A@H30ru8qI-#m4JbW?O8gh{baP{6WarJ`_Q-06@}&Ccc-9P
zg<1kMyo7miwJ?D+mS{N@=r`s`$ZM~FrfydJ&nmy%=^tZz_+KaTgcz-YiL<H+-O;kD
z)uBqXiuvs={w_&d2u;z>Lf0fxu)wqT@_Zu`*ySf0>^ur*Zk0nwATL&*xHMahMPK4M
z<nm0}c%7|es~~CKMxN80o`Lkc`(OMyQ*l#2Oq!dj_rzKggNe2Lx5hyp@<l+^ra6ab
z^fIrerLcrDB+|GCOWo{*?3Z-K{ue36<AwhQJfA#QjZ_bwCm(1$5i7LC`;1lnn#G<-
zGYrnwxVeAgvR?>;)B>YBTyRWvJ(AUJEmZ=myKF!XcR%ufyCae~BQa3ds#<??T$B+Z
zLGuL~NLC%^57dc(WxZcwe<vhbR`re((se2wB~ySmP5D1rQ)|7P)u-P$Or-w&JWO-6
zfR9F}pc_z5reQ+TAdd$K+S-`TYYebG5UF$kWEpv1)5125DZZf?66MVxboX_-?<l_(
zDZKCfDrrpRclhq^Fm=0sXleIrUuXP`+aS^8cMzQdAwBr|Ksc{_QZ*`CT=+wt=ZEIM
zZef4J*0+>+w7?&$W`RV1y)&7(vLMmf_8JAdmE3l~1W$;4G$tHWT7j1Q5r|rzGuQ))
zYH;hl7__Ic<J%%E^^zKl3kn}1I4aBzp~R*JW$Eq&ZYG|-Pse+hoJ%kPh*Ug(NAXcw
z#5qKyHp~zim$W@RVS26lI^*7<baF>o2p+4lzM_t6f&Z#DXV^aAua46Dn}6V?7ciCm
z>#tK`UUY3W#up5gY_XxIEKCm3TT8=c9qhs!ZsVS@6wLwED(edYR^;d9a7YNAO+;o%
z?&et!bUMH*CYJ~`6^yOCA~3m+1AnC;>LO_qCsdQfq?*efD-<TW+M)!68$(AjE#Th7
zk~_!VlUXwVs0Nc1#Miy&G0ZtXHd+IvG4fC!T<WEVw#i#6&nAzCq}*GLv=eQ<(Y8Af
z<0!EM9)ag3kWkv`IOxb7Fw+B_BhSgCay_qy{Mpk*66SQ&;AkppbBypYB*`(yu64YW
zNn;)v+-R~baPG(_x#d;ZSPy)ITn@+|<}jQibpZwj>p4_pCF=wRK29y)O6L~Eak8{d
z!C~sdU2ynE0cz#p96gkZd&#3e<VMgD?V7l5;esB^a&k~<!<&Wu%pUdW;>#Vf2>tqr
za}-c6U%h0LHtiD^uv~3^K@F)eI~`@ZZ^;@_y~eWGh#?C!7s3{AbnwGh<Fk9gq4J&n
zsx8RwQ*<R&L_k-zDv32xq7{6*f+Eeg6R;SnhUX!|E}f65|JU+a>=eL!v^D_JAq5uq
zzmVOaAn5~8xFEgK(sWyKo+=GGwQw*2OslXyni^ATgIr4G{^4|$+y^OsticSWedd4t
zPlGGob6EIpfE|HZ_>8U>Q3)rN)`u&r<u$WSE#Z2E@ru<Zf9w3MXMIckx5Z*$N4P08
zUwU7~to!pdZT`ir50I#+6Ixn8vkgnekFV(%=O;=}G4Q*W(rwc=4Q>C^lalvxpF|9k
zpw76seYkp44gffHy-TU*Ju*N@eFz*K{)8O57OQUvS0Hsg3`i+Bk$jig@1X%xpb^S`
zSS^L+80t~KbH=IXVev=GPyP1{1?+RT3moQ?O1(g@bW*t2*+1^>B1*LQygJ@8p`O47
z?>TV16f&30O)76RVBwbSGzpZ!>I>Wq%s2gpJ?`#{3hq8<(Vu8)3QQ{4FWHCxr@Mhk
ztLHAgB+8uxV9W6xqo_K)rtpaXvN5H!MoLu3lw#VsvTA}cdn9fNjn@~xnXpt=4G1c*
zTsTMu^{dmO&gtaqinaMIADRx>^ajal;}^Q~%Y{@HXAcJbP{23ox5krlb-pA~$9I(6
z5UoiosZ-(X-@@S+!e<uKuv7@W{nc+wGC`NZ&@rp|D-l?OU$tiWO2tLrf53<wrUT@n
zyC389<2@(JaEJoWYGVWbf~-=U?BIbAKOW+M>=mHcUMabBKUpxa2E*7804y4$;q-}+
zogfeG%}(oZ)7Gewk=%Hlj*$$Ztz~$o<3e|{MMh{?_^cuOC}aofOb!=YoW<IGeMN37
z?f}+wZ5!B$JAO24ZhQBsjKhS96vDKoe|L*zI#%lPuM%JIUo7pEz^y6L<Hj%8>dk|_
ztKy4I<li?YMi4d3p2x*xti5&zbgNv02{cy#Od6O!%nnX{#JXL!FqZm2@I&9QXE*B3
z?d%@t=z48Ub6?#U=18f@*v}JQEjtJxPH*}r@rxqC#i{1n-V$69*A6jS(e+rvIds><
z(De|lkt$E-kyW*#aiRL8*I^dl@WJ2sfAKGS9gw{xY2({F)e?33w#!Qij_p<SRX0GB
zKa<6PK-K{yk_BAL6XehazqziE<<_4zs8`%ddzBI$Ki<Go3o=wmc1llFJ;G_GstQpB
z0qYDh_Pnx1^Qw`4!5jJoZvoImw=_%D>F0n4al5#vE6Z(GDg&G4CIQy9h6{OVW5g2C
z!j#<MD7sccwm6r9pW?rnflZ<NhGw<nl<;Oj`E4v=3N<%&-n0^)>mVI!rkwKQi-ejf
zgkRM^xh0r&<h$RJ;B8nXdC>i<8j*Gy@-H+H?2QmvvA$fqR17}T2CGv=%cf&y*dG4D
z6SZ?bp^phR#BOdA9(_H9w{RQ6&u??BT8?!)v}2w)oSbx}38D*CVn%%>G6?BPKYtau
zTC*%;EHe@l6`;7Q6&9j&pG^)9BWCX#TV;s<yd(HJ)24dpxP$dLDrmOv$User2m}$j
z)>wRT2WOEH7McY2GtMSZ(hN4Bf_ELuPg>?!He@bl5fegm)I+^PfMktv9^STZlz{~l
zt?qJzpN{b~=)w+^+@X8}`A>T-jF_YYjso#TPhUBGSR%da15bOlrakMo>EmIsZUAao
zUjZva%v0tm>sczOysX{elio$seJwU_o-?^dq3%W`K4*&+t=2KgCae5MQjwMPNmo@*
zZTUsC8euctMQEQ3_hN$Td)B7r9HP4WSY;h=F>HMEcPQ#R+C2+BsAG&Sxr0Z{STu$H
z*G+be(mgcjYUlsi>fgW-trA+hb2QR_V>r-6fOjmjf7Lk%&l*j-ZY=X`NB~K3L&ne&
zkoFZ~Fa#xG@J>r4aO2R6^+6Y$-rZUdOd;M~*iG-^&C(J3W<_dW_UvjiMUGj({y^6T
zQC7dk{mx@#$jYi|&scwgOvv}SRVh!k><Po=A^TxT7xcNN%Cd}+gHz#=cJKtORI17}
zu7j&y))29(k$eRtmzfl+PHg^JqhK5H+$}PaWR@AU4NFcpoK$arg`yrPuTZWG_OZ6D
ziw(&NuT1&E6%jTDI}Z1-3{O;l?@0#i%GIsCmLW2sbJF`gF@0Z*A$zmh>?*NVE}&6A
z5piB{z%P2Im1c`Yg36mEJuXYimALXrxn<{>KhB44K}%m3pOiFfpZF5KwwRk`KK!0x
z>ZFbpyNfujuvBgE*Tk;DZ`QH8No4nq$wRD(;LR)It#=|o1YR9yw5BHq4O_V1S+<>O
zIT?eb#PAS1<Z_I{r-0gpD;;G|FC?C4ZZ~Q>uLrkxZFX)DY{jeDbz;#^YBq9{vvSQc
zNm7i&0*CMr_JUe-GaZivPfzM+d@*HjeF=?OJ+$iLwx>fY!(!{okt+rXEZi=5t3e>A
zl59JUdW5Ht*F<0EE|QE-!?)L_h>CrS>~_-?YDo;Q<nMZ9g=tfS+9j`eM<ymKh~T0t
zDnnV-rH)I?9HU%qFfgMd;5|CW6P+lu*H`~_l2Kg&&`<b%uGn=W%MvQfJ&tIPa5`Z4
znsZ#0DxN}qU)gdG%lp}%Mq#^O*Ua>1S&txz4slb#I1BUpom{-FzP=S8Y#n}==ZaHn
zNO?;g<74IFT4}M0nn3;IW|2hp1-6JVe4&Iku!CgLJWszjr+sOGsdiMXxNTep26Mh%
zFZjkNnxg0hP>FjBrNDef<}kc@r){4FO+~c+oLYbI=sF}V!`}0Tu8oSc*l-N)lJUD_
zuA-B7A7A%?`iB7O8fHG~0apY3ARQu-M_YLcvP2DXGjiMEW#Sh1Y8PidDb*0TF=edN
zTc1Neo|=d|jNnYLsTJx&foDr{lAj1<3F)cgir#y)>r8y&JokfwH@e76cAs?;u&Z%M
zA{_3I4{xEjn*m04A(5z))Yn4ocn({nN#S4Q*let`<bas{$yM@oc@=g4epD;J*@Ljk
zFcLod&dWT0ptPY2l?I<{kjVI%Xs6^JW=Sq4pN&>d3^xN$T7zn|?skeGj!X<{C2M~s
zTHmNybJ38HLxLk+_k>fSD!`ML&phcn>}`eagd47@5Lx@Syz%+kNH9+8-kKKQ)k<fo
z=Sv>iXO^MNZg3vitCF;Kei(WX`HJ#)<yqMY3Qe9a?W`aAZRHaJ*X+0=SRnUa62Yd!
z%diMC{ps$vy<1Bvi%C-iG719dWD<DK(GRqgX>cUnAo-a1X)`&4UIDm`%K4ru5{7?K
zRjQ1l$W9~oJHAb?cPTPC6{oe;uCcIkXgvW3=RISioqXe=$hCEsNg0VaW?Eia=Oh2y
z#Y{|>XQD&p4j{^P;pXET#WP3B3uqE){L)$fee`aIzLk{E^>-Q~X8uV&XmC5>WNL29
zb4fd^D%@fkRY^uAC5&4Bm(D6h6=;@#^9BC(9BW!rb}`Q%6{ZiV5cUdyIY0$3RVav~
zX>}h-=w6zyNEcC^a;5BmYq|p}{@!cmQLILY1f+bqVPGoc!&&)~${7-nEZd%pQDPEG
z5EU{MzM^BjBx(RulrVz&g!04z{#P{x5h7_|G{S%)`Mb$~W2NEmiNl$hHa|+fI-F)?
z-_Mhu;(E}zHUw*Oj-zVgFKKwepa-Y;7aVe))`Bpj{BCZ+LI6e8>QxIkKB!B>OnC>_
zt%VoLk#oBj4<-4p5)6N=2$kn;(D4}PaaSDZaLDkZ{?ky4HDiyf5|70^2<*iBEY<wi
zaM`~s)={jss)z1V0aG_3$Ujwr$aVTvg#~FY0P2O(DN1vsI*mpA`s=12GNLu3UH2?}
zg$X+JHAuhESpu(J{0AAZ!>BONZiqwGj4X``Ix92XNz<KorKaXIec3;0ryZxkwvA%g
z6-@V<leyXh3#@$C*5GcP?y)0nci3T?(-70KqsNa7I_1Ux*p&d)oMgSa+~UpQ#T$tV
zQ?{7T{3}|KZ$|s(c(=M)GPJ*CBoV|{?1F-g0Y~h2&&3l|tmlvDKIi8>@>oNiD8p(z
zHsyc!<y#e&oj8z|i`X4jc=7CQgjw-|drp$)ZQ`}ioj+kuq}q<eE%3wN{R5B)VXi;l
zBk6TKMar{CHRlp9MR4@R9~jQ&U-ay;j9iX_JQllmqcA7GB3GYi0ujk<|9?H&cWUhQ
zV2E3S`W=#9yl&itd-(Q{pz`s)r&r{cy_siDwO5PqsMI8I_>iWZmjdS%6xV?EDFQC-
zpvp@hWnv!bu=9)8Jrk*)FvD>UE050K$j^c;`oX@ovi9GOU=X&ZOCKgm+sXX-9N62}
zK(YiNrvc25nPeR}#kmv=Rwndzw&pVIzZTan`fE0ME7{7x5s*660E|Kf=#+q6uIGDE
zpL{6lWqFk5Kj0(XINj&T0p~XUOPc#!JOtm&D&`8)tiWUzEe8OIz2kUhGf{%r_6Jf7
zXRcydl>7HcsIjHSiohRvkCGSXIm+IXDOQwsO7C7Z7O?Z<g*V{)@Z9Hlu-l}t?2SLc
z#sB4<iBQvl4zko4eLaV{Snx4iI|#Vw;n^Q2yMA}|?vyp3a2;lEy}zqy)=^`9PQD1o
zx#R0Bt_~xY{3)2D2Ub{8$!7c}agy;UCNn#Fm1yfCHRU-i$972qyup9`oge4v3)fAK
z!%d!zJ}Wk{pl=Qvgo&p$0+2cpDtT@=MHXY9o=NpyYUcMBG8xry;IJO)r+H(ru$Gib
z_+Q7<$-fu#9Czfc@AUJ05tjUFGHhNZl_`iOddamC;jOq;wO28NARn-hZ^()~Fq8c<
z1g%0S?Lrb@14sg<p||EsP_7XXbR-P9l)15P@MtD3l@Md=oV&8~o#$cv+4-0XEk;rM
zt#tS}QR$l{vms3|Ko7+5?7GfLFDW#ut}QZJJS2t5*!EjB-89?a)jQz%wq;XuNwF*<
zZ3v0F!ocx}=;roroKcY#)l$I86$Thwj1q$Wt6C&!+kxxtLE)a%Fr^hyQpJo1hKHg1
z^1F0rc%SbJKm!N($Ytfcmo7FRBwcFjhZ#P=S!8|D?_#2Z^40LexHx!9dzO#ZIma=;
zy2o<3Uyqt1X4jnts@4(MzpTyW!-gI2=&Ky=byg_OWn~m{K~bWvPeE-05fYN-4J7y1
zz^)y&MvUa>pl<tCSQ~|t+&nbT01`VU%lMJo28Xff96OW+>@b*id7tf4gOqo)K@8eu
zxkNuZ(se(Lj8~kfL1yyykdi(+_@aOFp1|~Pao>U_O#y!ZKY7x)pN{|ro0d8z(^wQw
zBznZ25UE<OS5)%fk$@dXqGq<}oc4`TrlJ0&XBN<#E1BH!KI6Q`DKIM!xOj!Un2M^k
z0GQ4v7p-I6?Tm7<lx~Y{svIVc&?kt}hq0IQpb95qc!W#^6E=!JfQijO*+9~N;0h|8
z-Q-oRW8U>oKNke~`wG5wbg|j|ap?(4ZC6{_M=`Zw6)wO62;~5M&IYUKsJ|^b<tn`P
z`thNcR!YgO1LV9*`346)tlF7Bo{a(0?Qd>}<hI@l0}!~+A)PJdHTCrK>VWKItC)!4
zLa&uNF}N{Pigi;X&rgOa5`)%|i->x`=TcOV*5)s`Of`!Z)*_Z>76j+{4?Woz>Q=?d
z`<%9Yua6=8TAmmDrefmLp;|x^nBy0fNCUbNB{fl$5Q);D;oalbjeWmL-j8i3DJvJp
z$;HKj%)!`2l7+oqKg6ENf>g+N7aYm{<@7a@9FctMm^Fhf_IRBADhjLSb#ni&z((H?
zyiEZ8C3TezlpGoEwCbL0<x|299Ix#Yts@Q-EeYbm557&=^WQgvG}LZJN!kB_3B}*Y
zXxtX`pq3uDT-m%1pZL1w^i=ghN1cY;;%nx`pO;=}h9SN^RvA5-`>mvF)=!EBsl$$L
zJh2P#$9Op(%uc4X)Q8HfQIwBR`E<YpJ#NtJ<qs-y4jkVQkb3;|$4zOy{o^mKtHTd`
z@-yXtOh~1|cIt&KS5;j7T!>=Csqq=lFeIaBwa2?KL(rOoG9PG&;)K!tnj7&@(e3U=
z1@|@wI1{fkUunPTuF{`8*gv;rdsr*WYJpNc;y5^Lgg!eB()y)Y=LuNR*dQ_ZcF?)>
z#r%Oz`q9hHvPzYKIC)-;f0^@<w*=P`z660bVz@lSS2yvqZzfFpwPa>F7nYRi5>%B8
zK{)#-+Vr#I_LuZ{XovVci`OG^a+8ft(4F=S>IlyAo2PEoMgZn%e|aM8>6?y}SD5+N
zK{|^Ix?QLzIl9B4Gk?h;s4u6>^dxT{xx&;hGyJB;sExuMq0krf-iGn^zf}giNsAEF
z%YiAokNT_C-V&=&oZ^f(c~0MdJoo|_uWu?_#wMdZ?6+`N&!;`1V-xA-UBhR!Mj%y1
z{_%1Lu3trORz{5@HV7u}4X<;ZP%t7!T9z!A3H3EXZ^9aioGteD06W97KLIMISzAJy
zJd?!_QNsVILB`5u42;5cN`^ZqKupyV7IXO!7?n_hIN+U19^(6=Doqb_x`g+nW`vCe
z8MPpszC;0@hQ5c9er-20$cy5tKrac&-r<P^c|mD<dg||hjYxl2)x>G6DIq0d-2h=(
zG#}r2q9T0tta#N?tIj~t0C%7RYm?Wu5QS<b@gXofD>XC+z8Wt2>u)5%>6K)y;RO(2
z{dF$y=2#bHuRKsnDIM=?Y5?S{EXc7tSNPfuwR_QUvOvjTx53snb-H5tPQ6bV+gL%6
zD+4>L6VV8fY3#&B^OU)dl8cBTlh2^W4T)^St9R0qCX=DTuG{OBYiT(&eBSX?yrE|&
z=WloPh;q^xa{0ljbZDp@Y!<{`x-m|?jQCW|-=GG6Bw@9q%~&7eK+%*6IqR>xbCAHC
zWV{oS3i2+I!36)n#0R^Mrm!bI$+0$AylBixnda(=AxJ~2fpwZis-T%wTCDMC|KrOs
z26u*+*zcyU6uBK_C%r|&yhd6O2pN+>?2~SFoB4UO7wW~5c^MV82b{bUvny=g-)FoT
zuV}#bMSGWhb|gQfHLh7E!2P3tw`}Eh7ZKd&F<6QEC;b&s8(K-W|Ct0{f`=VaqO7UM
z_+*^~0Pt{5rD-7H%T3RXlO){8M+u=Zl}m6uN$?#bb;W-2#THPtiL$YSZMXvDtEFm6
zZ}JC~%qzI;amd6w#mOY~QvJ<n$R1(_W2G-W+ko}6aS3G2zX;uL)N^VmO413)PI`Jq
z%x-Bga5XyNbmfJMJ9@Sdz&2r1G|vVzJ@#qn+~C4%)W2U`1l%d)CgSSQuX;vj?iW>B
z%Y<ghGnG?;7ua9npd3BlEgTmTXnLGMaN!7St}g@bT27B49FDfnh?_6a8Uh)tW6OaC
zv%xa=vWcbxu;ZWRkuOsVXC2AuspQ!Zve8M2z6t`~-ILAdXYy?uv~qz}sYCID_%%?>
zPbP}l;p-lc<BN{1`UO=HWCVa!uiP<Jc}|=sI0fjPQp-L-aFw?&Ac3op#%FfG(>X4e
zBo|s@dBO)YVEpQeM=VM<_ZH%vY!X;0+fN<NF@;GpU|C^$;c*=1oP>sqaScmYrMjU)
zh+Um)Z+BS`$&SfX6Qp$7e;k+X)ym`Xw0@afXamQKWir$P94Og#ZO|7!BFc#8BmyJI
ziV8Ll@w@h8rJS~rLaKmAw#gBw-Iu?3P>uI;eLl4vAI2P&w;W|3d5B3$KSY5*3@!y9
zdicl3E(Zk+@%n%KysF%&YYO|iHszfZ<7TR+n&V*Pp(WQurbpO1YMrU)YzNIW-0n|B
zI(AAQkBc)(Mr0xjpE0H7+6KsOSIl~9GDN(UA0~cZeE%CX9edDdK36z8bomb~t0b-V
znBQ{OJj%h)UIi56%7HJ9XDqwACdwUesw~<R1!rc|!!TG|n0nWncnlmUQhm|rUZLP!
zSySrZgst=JqO$u424`M<0JUInp#u`FjmCt-iA(_r;bfnql78w9*F$b>uE@L$KSGpg
zkuXsd5~bKxc%%FSbLnmMMtherd-9pPwMiMOmI_IbqS7uYF8`^NTaYYv+KmZz{^&UH
zg}t;x!^F>KEiOdL>Bw2tFE$Mg#ZJoHtCFO`S9W0y^*G=PNVwMFPYyLcY@MX91Fg&|
z-~X$)ArUUv63FD!GG?P1IkVcQeLdj^v*I-UG`F)gw?*K`PrNX^j>BB?0N2!tk$MgE
z>mzs36I|M@64d{p0_7i$&9?k#2^KM)rlBAxNrdnYyRn_#_HGz@8_VptUe2B2jm1NL
zNed4o$Q6W^`}k4j<`;MVCnUmP56Mu54*1(`8E)y5<rAQ-A_31T?m~s)0H!mpUZz;3
z?hu<|4m38_Z$()M{lxTGc8z<#u;^CWAT;<6T=2p4x2P<(Wo`wFWS4~`k}AXo&$Dxf
z{PQv~=dU#1OihO)y8H$@;8u#R;i0uwiiL0KdmD51@KAI;9YPGqnE+-oL9G`fV7}ef
z1RxOeBR*ZAVHS}&y2Lpib=$2{nZa$d%B+34io)xk@Ovi85RUAyH)Rr#i;9bR_<bFu
z1p$1UU6}YYMpyLkCHOpRI=NfI-~QU4)|@s)48Y`l5`oBnRLmDbM^9TjwV?>^sqC1v
z?@?p34r=kh2AhTrrK^q+l7>E27>iH!ZFe!ba%-e}mL*+yhmICnc}~GW0a(^FUo09|
z8;<PtN*`wH{Ft4-%r+bW^;L2|(nK^_i#t8vfxJM*3?ThW-j>K23z%ETgWYz?tIQa}
z*>HZvo&XMa|BL-OxAbh(^Sl?B==C%PGQgZ=1OV0{4NZoUn|Srwr#Zd__HT-DGi+##
z{FKRwqeKe(n@a-0b@y8rW{5fALZz~&vE;42Dx3!M7x~r_5^3EqLNu8N*Hu8kFi*od
zGXl8$g^fKKle%*IcVLT$Ly6&1t*EfVZ0X0VyAxze3?ZlN{X@y)t#&;o-H~-2v;5!A
zrg7O;#q+ju67m`Oyc&(sn<hEb12&-@yn!Y(c-JDJbl8{auU7l3Zx}JJue$9Ta#1og
zEXNqJ)ARn^G%_lZHL~APGXjJ7KK1$3*xY~U1)rz1lWT)Rb80JlpfSPCo&jroZg<{}
z=z2Apt-%LlFIWpSCI;d-Q)iqIR4f-VwvBRKv{jXaBRnYZUk$ddOLE3Lz4Zxw+?JJO
z-Bpvb{nRmis}Ny-484+D=4T>oQw4`Q!0!ozI3@9$>+0(idwJ%HUr#0QUKOiWdihBZ
ztDs|BMSx^F!&P_G0CpdsHP{y}VUCAw#?)_c9Lwbrdl4gfKznj2Gb~LRlN?WPV|WL9
z_7ckSNW}+gq%dBP)|&T@!1%s@%c<+d#fb9aC{5Ep7zN)ser_s5A2C{foQr`cJqKGm
zn+&kC)6KpQT{q6IBHtN7m1TMF=%vEfP0^vT69L@&xA0G-WiNvj6mVdj|1m|$?VisD
zP8o!Lrl1IVTq}#+28ihQ>@-f#dXWa?%WT|;osmNgfU=Cy<4@?Unn5WlhPde`!q`1I
zX0FARQwCIUsiwFNBNb%^J3dHr8NUW$E4DaU@MnVucfX1cqxrKFXF0KKgWr&Z6$(ih
zbDo=UW#ZyBd}9=F`MbYid(GCLR|GVc&R{{g$$rLQX@qWx#R+x8F6EM3pHPtC`rSpG
z^QZt9bEFu@RfjF=AsT>CzYnRy2GW#^f%_{MlZ6@k;V<3*`7a<iI^-lJ$cJR5cqE1%
zXT>*Q<dDT>g`=W-*FTJXw1pJ^a@-qTv0U~q(|(710>FTle_>Td6bxHuLZHbwzoPfp
zJWQ;AwNE51<f;z;=_GI0H#YC|(JX!)&{iu^8gXb1hnR$ZTLKqDW^S~}FZ>TVoE0B1
zU751}pPC!AKNOJA5N+5isB3%(_`!8igFvS^aZ|<9mxen(l0giZU5WYN{3AUZRU8T#
zeu1Oa0KaN>33L2{T>Et2A%(qcu1%EMH^kpOqt6YKh1|tA_V)`Ba`?SvfDo4kT~j3U
zi0FLOGdecRCztPLA%!8>taReAIY?(#*RiC+0-%VuJN9Cz=T5Z}`9k?8t?_?oV#a;>
zOQw!E))fQ(U53k%Hl<~HNHId136T4KdHv{U%}*ECn8fDlmZ$^ZC{g)}M8g2UmZBd4
zaP8f`nA1mNjE)rH(1Gu99k%FC(7H5g2}NGjH|aE4-70ls>C=;D3N(@s-GXv)8y+tX
zp9!JX=$%kMxTxF*L#VJckO~=7zzSSH&U$3~N`Z-|%3qbt5WkixvV6osuI>;aw_z}0
zWG!rqer#TC7h%eT$<R|t=RAIE2H}mK_InNV`yRii+GN?wDU$qj&PCPI^wLemilBqN
zA%A#bH>r$gBhrMQOqc9t8x%cwMCV3fH^X0_Qa<#C)z|Al^lBQDt*T2aIa-!>s=g7$
zEO}4bo!=C0ebcDTNTIh0i)ap^SR0?T?ko#VHKRBQR5JCWi#FIlCz#*shW@$PetZyk
z>M|7Gh*IFIjwihzEt0>^>XRQOn^~h4*m8IyQ;#O9qz!dMQRv@5wkOWMt8Kug-i)M@
zKZ5WJK&v?mg)X(NH#iK7O_l*Vt_Xu{b?1QhVQ6`-acnRv`rRrlJF{kFSaOlhL2ucN
zD%Abd;9HqES-E9a?+@eM)aGzoG+Yca9>7UfD?SZz^k2`M)-zT!sII#}lT(c9)>Cy|
z-ORhdy;!h2Lz#n0Ne@RNiM=TYd$3-zS`Qzjzdp7!`zGyK!4lcfXgD*XZULNpziZ8A
zk)Is|fYulZMR<*U6)K$zY{+BRtlD5cj!IG~p*<wZV$<Cg1_m}vc(56TvKf3D71s6T
z8e)JaTpm|!{Ggav(GCLr20gGW>>S`1Sr}V^PSk^i>MadgI|o@QUIPrR@IAUI@a4`D
zr3W@d5t=!DKItL>sgs98_bDf~4Ps~*zm5b{-q*My_Y7rVq(`TO=r=0iwIF#|sA%?Y
zzDuPzWXEQWZ^eAN7Ptk@T)?0xd_oatP_T%gj^_SjlR<R?(yzDklLyE@VXn0p+O}25
zn^+g;k#=NC`3{F`cs(PgGr;816@4hGY>1!!6WY*?p@ixm{5>|iI`(p+=u4howi=N#
z7#Re0-CC*f+c(_~pTX-}__zRAq;x7WQy2~Dws+`=bO5hCbF*U2O^k9ll*IOhMB1Wv
z{4Pnd^7@n?Od~a-Rv7U&PAC^6_3W-VfXirs%9WRpX7|(;j#~-u5Dw9rI-2&ZG%aYk
z*^aCEF^%OZfvpR|MBtksL+-lrbPYQ58SnhpbpydchpAe!;_v54MI64op#f~(-i*_0
zln5HGW=gAb%W+uT5ZO<&OYank_%b;9t4(b6n&%$p;LeNRTg^87_qx!F7H(@GI_cv+
zb)#LV_3!OxlI4SmlBbgE3eHw+ZHwk3RaC3n?)f~NdME?7rV+K3bZC2=EwNDa2&^2Q
z?K&-Xc5?k+4fpBs+a0l5J=EAY@tXXYgm6_P1Ytzkwxz1pYqU-?>>+bnp7QZCCAdsb
z>?;9_oPN(oGjDV1wCw^f3^1kQOuGCP_DZ)1ZIat<t{I2{qdb1O!EyAkN(7)4e*<}c
zUP62{2ti*|@GpgTvX8D3K(1XlFyIppk*Y72sPl0aFBHPGI`AEQVlI?T6E#6Itz^p$
z`T<fmhM$CUFpf>fhAsZcVqvrt=O|};GtdJ2hd*@P2dy!EzG0~a#r<ts`m{M|wGp!b
z`?}jZHWAQT;T1@>9fc-_!5@K7v5}q8CXa@X1G{mGyHO7<iSzBGK^N9PD$tEoL`ubL
z<jIatqU&>s1~;0f5iI1%Dtm`IqCzBtV4WKeklj(oK?mh#VO9eE`0G3B6|NHwee`j?
z>F<$7qdab(wBTacm+txIg+u;lB{Z;yt_w=XQ<&xRHklqI3FfhMixHXA0#>ep+8O=!
zj2MYp0DyehK8G0j%OR*>V+tQMkV=Ac0l}%i;;Jw=o)Bs_T2!`G6=+Kk*<S+FJL~;F
zsXMw=01tMTR8~xT+Tck`gA?NQs`5yjx60WF#dpyvPuR<gjfP&fz1+jcvDqMi8bEqr
zEss8y82j+`e&S1}$N~k8c^&X?Esr7!Gn?jU{dAHE8%y&rno^hWK|B*{euAl=!Xk}n
z<n72?3NXi({%T<@u(4rEw1r`sdc_$f0F&>kSE{qIouL_(EipF;U(w>qH&I*9olSoQ
z;QwJjHX!*0&bUs^&tRY=BjtYKqAU(NpVNfHe#>46qJ~jZ3juNCUhHd^eo7ul{ESQT
zMgJWKtkByZ#tQNR@5rLDl5l4Y$SQF+gpi^g&+v!G0x;-<4FagE2wv>BRCZbqmT!~o
zDEwX-hDcgl2x#WqB(Yd4M*X)N-;Lx(XFev^d-O@G4JUiMi;nd1v1>+&4|OA+TdB1I
z7#mvJ1p6Z%buKp%4TxEIJ(i}(?vTfh|NZ&ID0nY|9wCCD><l^5U%MR2|JT~3%T>}D
zD4G5Gd2jp>LRFtlTbf2VKfxs$X%10z+E{~}Ei&SFA_+G!z(FPBY84y_rVfIbge(<C
zkL7ghqpW|t$Xf7>w>zTa@MF}IXmIwlQGXNRJ#(1ac!hND0%TsGU2rfF=17q+q4=dY
zz{wOpa%eH;9PKEDSe?;wHXt$yf;Go6;I;G|HKrK*0ZK(gRT?<p(;tbR@L^@YEo_(Z
zIGI-fPe8E0wFMdnfuGrQFrN+gHyiZ<O<ut1P)@XCbo@kBHDBdpW1TSv5>C_0fhw_`
z&}`bZUe=oSifEXN)>o?tSHZz{R;)K<RMw-`PDJ?i#$bI^dQ}M&=ntB#Y*7CzbjnHs
zO!{!7FQx!jHgzEHrs1so{ocOOW@?M=6|l{^zbluOuI#%KMa%L6iq3IpB#+ltdRqKj
z;4|M<Hj1i+cK+_n%`f%_fNMga-4<UW*{nYRW#SI%N9X_HGUus7fYNpN_M}{hyj<$F
z?z!)2i~Dn`z_ri=Xksmt#fW1;t6OxMy-rp1AD7}!=y;De=<dW22M3zXd>|8|arRd|
zpilR}H~L|R+^8CSy=4yLiZ|(b$0DL;5)T&V8^z@tOf9$iVT<`HuoeXrZ35q6b5<V#
zr<657Nntw!m_DPoyVJs{_(+qKvVmSzmp~zcFUjHCbG5IX=>y(a5w5>f<VLsUVo4bX
z>O>JC@g8dv7HM0Ix?%^fW6*NaA@E0$u8%syC5r06>>SXub*055?~nt%RvicTUkeB*
zk0XONfIQC0F!1}qKiqE67*w{x^l2kqHsPQ2lWR<?aX^OsTdL!o$VYTL75Wx08KQsk
zW^t9kOp4GfEaa!25}QlM=EPY83sFu)gvu{oaEb$_fp=~-dg+5klAgJHjQF@u2tFFH
z=+!p7B`P9-aCxjpFG617ecA}zC=oWd=ji1sJ7f8Gh6H@axZD?$9=Ai>F}thnNbFsW
z285Fv%9XLIwRfN3tNIWn!LE1oZ0(o76Q-RXFXK?2W(U|aa6WX86o%AspsPD-<MMX$
zvFS`5bod2$hWXdQ-Xmk{BwF_IB9T{^h?mut>mM-abuo#7+(&<K6m&sbg3&?{Ua?dE
zpitKteA3FNZC5{R?t5Xw1!_-E;PdeG*Y0>wac#m3A_}xk^OU2=5Pn6E%H7}n!i2Ay
z`MmGpIg}511N56g?=LUio{_DTAn%n&jkw78psc)rSWem9VgsW450hwq{ViGmShOim
z2z6waQB3K47D!O_)mSi1=Yw}}Y;H_gus(FA9oTaiGV%(dl8eqpwwp^P2rMVX1-u`O
zm+m(Q`jMeF?9>o+()3sMlOrrZTU=Zrje*RxpGRYhmaEss84DK>=aa0<i$N4kM}|*X
z1Ri4;#}L}&POQncv}8D;)UdWWk~&N7*^{~5(H9XPHg>}%w^V>7V{#f3O&j)ER)<$T
z50qw<WSECojeVNR4r2NM&b!_X=*@`#n17-e9SLyQE&sj5rqF{@EGMFmXd;^ot_aJ>
zeP*HC#p!?u6j`hx7Tq#DFJFI(@U2Y00o<boCK!2;++dc;{UT(}0>KazN&IFu7l7d#
zOW>(?L^@o)H5i00M&fDIm=KO-uIWg3i#$gvv+_rLWO(7lgF$oSmcCPsVSmU*a)bdK
z*##O#0T*!w4wt4xmAYIJ9dBl+lH39vkM(CFV11QGn!*@2y!gR~X2QDRjH#U=?1a0k
zL_RKF&8JI*-{1pU@q@sD^=f)I5e!j$j`hMyn|P|CrHC+Y{NPE38y5DnNp!1X(k|Yg
z>8IRE=8-=f!RAHzJh_P-jYo0;LXnIB8_yG<sq?<$9>CgSXl@n%e%4`)#6DHZN{#-c
zZKc7H%=!rArC#Z~9$TOrNiishk=U7DGasfY@V+C+^Nf9r(8}JA@`JuVC%%(r&AkgV
zY~rfYc;IV|MC+U;h&TyP+u#~Pq!*MOmI%3mSc`EGceVV6Da9{fxo1v!?obF^eh>9g
zfpS-Q5QpW@s#5z5C6_2#(nxsQp3__4nYytZwQG!fbR?peNgeY^DzoUdd}n)*A$9H#
zgmJP7^~tE0C76Ux%9Q3M2Wn2+*699N<^E{!6cd*PZnzlyS#9{$T6#FnG?x50V$Ro}
zW&Nsf&nZPY-sc!WY~|vTD0;2$-k7^+bC5=Wmu-5ez#WH2?#^yDT8+hue1?aMjowY;
zr-FALQ>H6CTBcsP6{FsH-(qkpgpshP?f1lqkX49U69%gk4a9_L$$;-#r%L=I)V~sy
zn)iSD`@J5Tv-f330(2^K>}E<{fYuIK!JTc#R9rTsW(E7o8iZ!nVNY4`@LH9GK?n@R
z;m>el#;G9<{HJ}<1@@kP2AfRdpFMDcdj065fwGsQADjBBhe%>ChO*Zdgi$<w_BUGL
zdXTQ2a%$rSo3&B04@T}Y3{lgl-yrIxM&rq%y57xZK5=Av8o`g6OC11dPWfyp4t1`q
z&}>dAgyLsC?O4bH$f15-vH5fBe^_4Pcq`Tiai_`+ZL3;E+ovSQsVM4)BZMnW^oc#T
z2cpl$Ptod;b51<%;q+=woXoKlr3JQ#+uGA37kd88@y{Rkn9E#uk?3n6894dz`NNfI
zF!!8~4cnRNfS6i#Nf7)>fhcBxMUf8jqXCV%uXr-yfJGE14K!PUEehxwt32@__M)@i
z96%jH5lxy}x*yvGwJx|Jkyej88XCq7Yd(JsRtMdBH*GI5Iddx+fVsT2Bx0ZY3$CPX
zT$m_b00yp}134pgRudw!k+HR{YfvsUvP7`954HxT9e8r=oYF$tbpHIXJi(`GTtyXZ
zRBofGQk4Rby$*xLvce!Q`f)V;f(!f7gab%yM!z)QX!Vu!D4vqtWQK+{{j+Z4V)Xw7
zs1kF%u>oqV-5&9jXus2tQu7hO0~6U&q;c~?lBQSTWWN*)vz{5nZGNcL=ntbXGp&J9
zSo86t#|Iu8pY3kCaQ!$JUW#|XDGA4=v9&IYtQZi1Lr^^0v~jF{e^G*?$n${%pSkB{
zDhgxgU#`byhdSFEDo>xZ-kboM@SVI3MJ!jRBE@_n0ZJr~=eQI&kL#yma*3VNl~vDx
zYOQNw94V4@ERd+ZzKS&rzUg%d1WKs6TvRI!%y->F(UXT+Ve0JTU&+{EY-($?j`OM+
zQMk0Ybz#iKs}&}-ByGVacpMuAd(_mOApft|smB_m;dA`ihB6+025~Z7&YztIbMX_Y
zfWiyd0<5}WkQtFy6~J2B?w(62siC*EXH0*zwQ%Gyg07nB-SzQ@83CL>dt$Wxl9fu_
zkv(9s9n1_laf1N@V2T&d1tc!w=Rg{A|Iz<nZ$Rvw1kjzH+&eN22o~0P?sg`fV9qdn
z_9w>j>K>;ztpyq1=2+7epBkYXHuuNXE}rSZ#pLh4&9UBMs@ld{%-xg=SilcMhgcZw
zKRw>m><FE~GdOYbHGF+bM+(=1{gM!dwvl&}t0w3_bE4w!t}zBmnuA3e=6fAY9!_ft
zOwZf7TDGwc2Kb@r8ZbsCSLx$Y9kqS4uG0oKvL|p+6D+%<>we@9oukEl(P%M-PeX56
zlF-Oml33<zS_~JW&u~^%>tWjlU55DsKLWve%*=Vu-r$36buUAmIW1Us10~AEj|0^4
zD3e0$DL40$yl|wyg}WC2WQAT-bDl4U<F-UU>f8nu_c~IxXgET{-&U@<{}y%{Whg#=
z&hF9aO>>XH-R@NflzOa!O-`ks+IbzS{S()Us2rlja^;fV9DR3iEIgtFioN5=+Z<KF
zpdj!-R^NN!P$Fd8hG^l4dtoAoId}@`ZEf2T!iemExb_{hHBCct+^D1T2~HMJ*_d0<
zM$#El{Fi+6KUx7q1cW0?idI%yyg0|12_e4|t|l^M$&9CMerN!&SB++LEkit_?#gjK
zCn_+=OxB(zG1~_@#uwL5>K{$UA3pE|Q#8nPN`y8X8u^;U^ncZa5Q&L)4Xv|zg*+R>
z>-=m<OZC0F>r58hFTygsdJy1_7b@O_BiUGK`<H@C5JJmC4FBCkz!Fg&^sL%6r>PwE
z+~LgIdWSf8n@O!rbP&M;J*W~r6bwZ_FqFpts7Azi^~))7?TLZljXIpi=eBUX40_xC
zltzaO@4S8g$1&mT+t|QnN&KqZ)+z54DQb0#3NV4K%{XpT+}*B{Ebq`EC<;7C;G!p;
zsS7!&w}`Ta02nd8(k#vUZH?m4&}^(H6GWi6FBIj<0}U=b!GrRRYEUhwoYL)98PKF*
z=b5Y<w7SYYGPGV7nRdf*w9YP>>oZKIyqIsOkthjSW3&#WOsO4@H3WSquA@GXX(ED(
z`mGq$$avAIET=B+NW;~uV`E0ZrN-BFiZna4j9PBasu;PR{YR>v5P!RO5Pvpez+dVN
zL6JVXUe)|Ql`*EUn06qB2AY_<w}@4OCL~buxBG;^>@s>Ys*<TJ2qSB5Ru68&JR|RB
z_N0M5B7s*W!a{C$vOrB$`=HZq|3YVNIdJ*>b%%w>Za+Hi1m?h&uwb$|J@EMms}e-U
zWB@-`vkaeZvSf~d=7Oo_b^xJIA&XoV4YRpfQ|i3NLsU}hx!@g|rv{E-T9ZYeif}E#
z3|tL=T~C)$3mY#+a+&&h8Ao+Ly(>k#NnzKf9<tdm0zn~DIgN5MUaoz|Z|F&(U_$yl
z4Z*+<Vs|AwAleTK7Eay1WOy4QY7_b1z;U2#GIG4v^r%-o$TAq1sJU?nB{&okYlG9E
z681R_x)+ZV&e#EA5<=YLUR=6&s;p#2Fm^PV4F;~5F<r@n0r5^<d)u@tFBkUcOIXU-
zM3TXG>k5-(pw~4Jl=djRIGsTO2gfHc6p(LOA`^lANLQ7!ff|HJE^)UTi)9{_+EB@r
zCh7bSKIT;8L=f+Vc<|a`61%nT?3Rcm&z;@`y>CBi7<Kir;l?lMIw>RG>$~=9nKmUH
zsbXiJ+H>@|1Cw{f@?9fmg_;#_`8$I;$y|Fiy9h|(t>OA*$xv+05!yeDe;J6&rERI*
znMQ@~pNFo&8B3}`E(lySN**h<<^_jLdA<0$z(bHL*utKSF9I%?DXm|-A*^>@45M7f
zql=ToiTdq{f5OhSM32^yet{?I)ig%WYqa{V4@hRUL>MD&yqnoPuDHq7!oxD~DkZ>9
zx?~Y?bqS!~Zc9{eJY@vH#<JH4Scy_^a7qYb#2&+XK}qVVY_^G(5X>^vysBrEh#2Kv
z(s6np72t%EPj3~6gXQp4YlEGz<?3`udYl^bD9=Se+Zwv3G*Jj-`n;wNE*TNyd+lcJ
zcK$xbmjvl(%&g0%Bm?)?c*Wp1Z@tqT8c><D6^5|e`Q&?Y-zKgk*`-_y){GYCdxQfJ
ziUJ?wo;%0(sASN!<7#=-zuFP~zc`^cVHDkoQzETAGa&8Swvr&Cmaq}(c#UUFIJyCn
zLejh=eJ9(5wH1H{>x&cc27PmXJwj{!DUNa-dhEwOlj4fFe5UL$+qoS}{}^PEJ>OjI
zL#);U1IU(*U0nYAz{pD^X#em1+B+wcpdVwZii#DOU2*$H_<ZCCSV_Sf_@A;+loHZf
zj?$-aY*wn{O|*aP_MdJ(c9e-a+yG<+^`o6IBkncx&sH{qxB(CQi8u60-@2kUkc8mj
z;Q=y)pQPKZ+Yn*R<*H3^YmDlwMSL>#4I@oJHoQ<A&orba1BaxV%rM8&fZzL6$i9Oy
zl^DlhhUeqGW7pnw@Z{T6$8jRRmu0#nIOUyG5{uIF>-Q2TeYvnAAu!VSA}PBgr;j6|
z>2x^<`#ti8$GEg>h$00Y7a$#wL@^6>C&yxZv1h;zi-(Wqh5KGbIQHkZiwa?|D60pG
z(_qh&zYC%K*))^(6Fay4Ar~P15hoeAz$VP_w@RY}S_MgAH#<OL(r~xhH&~R*n|{F<
zkzh9aqWtH9L@G2r3!d~8C@^0HYSfXc2w{1W4S!GbKfeG$KjJ)Dkbjwtu`#HnshQQa
zTRNxZWv~CLiFF~RmHaxlgX<gZ^5dIZX@@97T!1*{iPNXch#q+P8$xc=RC{ryV}^WP
zaYfjVE`o9Nc;Bq40Ir~%o$9__@55*1N<9_!^zMsW;OO%B8ROjtCqn!EV8~FsrvO)g
z1~vJqi!0SF;xIZ$7{q<E&_iu0SdZ}t9x`o)d|uV$uT|15j+sHlS-M>537yMUO~lhZ
zHFE&b-~(Dc__SDH8NRt_{~h*RW&d%c*XSV>)FdmvGD%k)nx9Ilvzb0mDei1YVN-E_
zO;x4z9g4a37coTVxeMBYlrUaUdUs6Tf$%3VzEn<f@ZChb1ZWxqmtmv}4KC2sKy(}{
zNI?QqKnGMAB(IqBw%d$8z5wK{(40uGEh~Q60_hk0ct4K*HJPSX*@^p1Jq4mUJXTv7
zra&XXsVgOs%1^dcvsPu2>69uZRr`wJgiMVlFrfB5g?Sm@SiYmT8owNt*N7LBPmNJK
zVk02rS((~zPL_7u3dEq=5}?y%uTbyn0N)4t&7&7Z9EiO1HB4#z%Tj^fPnLr>MVyqv
z+C=M!jU?f!ZU-=1FYX!XPy&eX>v(zNd)J6`fG?XH$N!nC4{RQgr<%cP2|Atm8_{Jg
zc@eH1AQkl|(J%Zy2dK|s_e)mebNQR0nqq|{m8)hQMR&KNNi;LE^d7w9H*Sz{`tN}p
z+KEz4bTMO9tK}wX(HI7T9_Eo*riuBK5!$KFLxt6xh9g)_1G4jbdzgz+JOeQF+1^=D
zaMX2PmLx(fEOH0_BaZE5j~d{$+5Rv1*Z2_Mt>ky)0@`Xe>pCTI0ZEigY<o2ON2nw0
z4o3DVnUn)hz&<*cFqzYCiszY{{QYs(qB2p3Qt3#m6okJ6yn~L9q;>gLql?ym#WNw%
z-&P!6P)o(a>&~<xBIQt*|Ma5e`G)D_eZOd)ekEc3yxKrnbR7fgO77I8NvIG0kQFA$
zopP1N5lQ|?LIE#6{+7zG5@hqrejT%4fru-39C<lS#_&T4hrPO=ZU%G13<=!b9fc(&
zQ+TV$-NN-iJFh<|Pd9X1i9cIXC+lKD88F{=<k52xxV4FLCq6z^g^y|+*bVv?&0yN5
z1mJvA8#gi;zZkWb#Ady@p2V&9yv8L6qPze1ka_Bo1G~otbe4NNw3N-t^h_TMb$kY6
zuJS6ajXoUq`OBd%n3t^-v50GM*~_7h5O@M$Ybno7oTu5nB=k_krcjy=a+_(Dj_x?w
zl>a&%m?n_`{M-QDJ3#=&4DUZO!=?FKjTi*->t$tOeB4YvKs8_(Vxf^_g+%awvJF%o
z?klY)LVhAp9Rbx=10aW1>BwtNo^j91!I+)nTDVX<?*g;Fbj{Qg7!Lx_O~4oo)}Q=s
zE~J;uG`+sS(wQv`Z*7}zaR;EOD*l(aEI%Vp_HKsPO4r~(+$99Itb$b*bl7fy0pkzw
z^~<+OpDc8L!)|LY7zc;pZp^LiIEnBkl(+4@6lE5M9FokVYpfiZ*vu-UOYj!qN3|q;
zDts+K<I6S3Jx0(zFfOi~uvZSTb;ZPsUe`l8P&^&Au<@5a=hL_6ym@($!*-3N$V-Y&
z%w85!yF`6SyIzgDxQ#W=E1db$-+612948AcPA@MokYCiw<aYPo)K7xQXpO^Fr|fNT
zM>kHHRbX=J#Hp;?r$BekiQhIdZ|wuOv}pxTSwp(~E!!?ZWkzjqBRv&<Iu&!kYUgrU
zRHaC!W*y=@xOpCoho=;RUfa@G#3G_4<^j?Uz#(5^Tv+t}v(wbwVbTNy#XvMl*+G81
zPD+|rjf2ECF6#X%xueKs#@X4Lt$eZGY9QK6(C>ag<jN{J9zCk9fjl_VVc@!1GG^g}
zv~dMjI_(wA6;Htghw97qN3E0UtU39t7tzt|K|MW5?<UtuB%7jEINThgblagG&DV`9
z8BA5Mezuj|B|mhsv^U|?8(*4=uEHc=MT*av^Z-TMbusa(E`y^bpr1SM!48&>XHx+$
zv3??^<kIr>BSP7Zh`U>%y~d_KHBT~bRHX^KBPQVR2A(tU`6*y>vCwrVxD67#0U1cP
z3jc=<KBzib09UQG=ye7n`Vev5mOC>|4fo^Hlu`*g0e32>=9BT_$NQ0VbWW?3B0Q5h
zCB=nt!&db`R*J}bQ!0~n-lucXM+1o3Z+;=HKBUf11|OZG=2uVgszUkA%cBH#*nM2y
z%pQG8O_a_S7L|s5JS|f({cEEN9KWIUp=euBiLb|ncXMH&+>;bhK{C^5wy?58vFprH
ztEN5903gUA3h}v=pBq2gb{7@OfWm<oj`%RG{uy`j+Q2V5-X&$L-m$Wmo+T#WQjvw(
zJoD*oKHc!wv|$~Nf5q{8FH|<s1ye=Q&4X>;qHXRF|LoyWq84Mc-P{{Lu<sYdhBF)e
z=c09BI<1er^OmC?@L3)sb`>EBohX*0dP0yS2Fid^wV^LIYnpeB0N&BpO0>=j{Lp!n
zM^c<W(ns+TKltj%;d6kqU6K38N8mvG$F~+P6&mGSM(71^<=l#b)8ktEQ(Z~oPanR2
z3`f}e+f_^vT4RL-sQz`2z^<g;a_F)PjFS+z#LUwd7Y72GWyjema&;kG^;7h%D>~8B
z9rnZ71O}V6;d3eLv@=K;eHh(8VryRPY8wDc)5%CXloCT5GhWIoNHmW=zP=UH?i^@Z
zxONw6u)-MhOvc8jki+57)mXJR26OrX!P$mERl2%_2-n$`WB}%6a(`D5mkHyZEjO7M
z#3jUA1-R)ZYr01;a{=ityUGLZt=jxuQIb`eT;s;({xZG;|0)WwtaYL7GT%dw);?+=
z3y*X<cN8vK%^3>#CLbV!SRs0y?P8&SVP|co!JefZiTMkX@o96nvv39ATG}(>t`0Yj
zhmmL3L>Utt?z>#YXlcj=-}bkUib9T_n8HDTI;AH!uA0%A*e_)CQaL?Jb;SZKxDnoU
z-9eA2ATJmmdulN=czI{%(#sfWG9^O#R`EkQ#)=G@OTZGxXYra60MH^)KF#L&^1l=Z
znJRXc3gtfUl*FSns9|}pv-Ax_Xy5o-x&?txz#?`1koNOdy9<j)`f@cCdwR5!hJD`b
z`xP!MFGSfaF~{i@<R}bQH^!EvKzX-HPAD^-iA0;ahjP}Q|3C}yQ~f$(dY_wgRHJ^l
zgTlM=Hp<olSL8a2p=lRNJe=o|Ev}HY&5<r&t*iOOmm&qokF2wY<e{-}*5QdjmSWvf
z1GJLmf}KnLi&KSEn|mCv9q8Ia*W$jDwER!_f~Y1_Cf(jVgUN-Cd={jI5^}(q0r_%S
zk@-0W{8!L0R3-yhqFU$ir<&z^r7-8HbOTj@P>&vg@;T>X`Nic{8xMjengGP@C_?wE
zHav$Y;Si9mOwDPE&Qwp(5l6>y2mG~2${Z8f5>O=13UV9Y26_^0jT7^s^Z*lSG@~%G
zk^17zO1R;Y=vf|zO3z~|7BL{hMJ}UZ>mT@YFEVMor11_U?7Mu|sKsCh_TuC{^GeE(
z2Yhl|L}V0?q2Y>1@gmB&7wAl<PPc5z@|4VU--$|~S0df#ok_vp!jn{-$*1o9b3)V%
zeJ@ca<tO(@&g9)YVqFa}u$#S$w#yEsbBl=s5_bu&buB!VIyt^1&`m&N_js{>)zAY~
zB1iY&UdgfG4%r!|8McTTSLB{WR>A8t2Mp5!qln@F4+i^*GF!HD{D(I7!%x}o!5I5&
z(|E0fx}js?MkXPi#TtZbRlI7}&2Hz*lK6aECGmJPbB=x7pVGD;Q0Ct;MCF<t6W?oG
zPqZpprg@U$%};4l|7^;kw{$avNqy=QDD3l}d)yc@XPv2v^|%QdpR3x4uVf;bWY(;#
zrnT<?6dlEro&Wr{pI$tU-*_eelW~&xn3Yn(i8>n7uxN2x9Y|4ScxOfPXA0OZI$%?=
zSHM>4a4IWT9FdcMfVWDwsFrx6Qm0fS$30uw*W-5lkATAtW1WAXnL+B3IY6&3n(WM{
zcA^^xhmZ+Y&YQZ=sXwYC^dP8POVjExCVq%1Hk~4jov$flE7yA?iX}l%+kYm6$`t;U
zaZ;(Op3{JR+@2%|7U?wvGE0-xUQ4fdwVv3<8D^b8Zza4VfgtP}h&4i`M(82mN$^qh
zx4Iu+H*<MA#cp!zeK`-{VKGcCYrs_jGZ`rT0rAixHwppaS4lR0{OqgU&>}8yAFKLw
zu0Y=KN6JWvIzFY$o|=T|`~X%S)T`m{C=Ls}Tln@~VK$*bP#h(m;uS_U;gM0@9!LD0
zQPZLVD{(uGsob}6LzM)cb@t}kOPn*}SVerOc5{U^omgTrIAok1@!BFjVeek)=K*i>
zcRCB@CNLgxwV=bH_wm&h_1;?Jj+;Fsjk@>q@jB3o<I{P10Ca|B*rI~Xu$m&dI`T0@
z5l_{f`_GsY`~KXXC2{YRVMhsfb}1gSWVHakP4VR8ASpJr?DH(r>j-OMjK4ypNaVlP
zXcUN~cK9@0a=_@hvJ@|7%;eN>3oUKF)n>kLz@9h`3P3kMqo}C_5uZr{IJM>W>tJw`
z2)Wofo@LKPoP#xL(U`*0V~zY?_GA9KE9`7i96W-ihk7J+JaVLW3E|s0*PyB^2Akx2
zz;ev00W%5L2fktLAG|7L@W``_2Lx7m#@%E<eq%SX_iH!dU0BrT=%9j*N10ATye5EC
zSG^LKCrtwdm!eXLLjFN{S0C7PJY{H$VpK*pp$b_+H-2F_hlyU%X}&^J_gX%)Sbc8n
z8x5%|lCHNh3&dWU^w{Rt?ZK_k_LgXjFWpg-zhBnMCN>xJl5b}@wH~+>+jo?v5UUL@
z_dE9>A;2-#k%rQC@Go6GuXVNS!$Ut@OKiVyo(#%|nDZ<01-ws4qyThw)5)hIWlL_k
z#Ky7_Ky6C_!tV|QKxUeuDg<L+|4;nT5|vtBj!==Kcf=-1S%)&FFaP@*i5(Q|zS%^z
zTJLA!J2j7@#@#}|i_ec>UxeA=d#~SLpVjEu!p?htCb=!Dzn&#LxIj&a<u@dtx#Fmk
zF47xa@OE|9>+j0==A{OPzly>QqR1v}VdorD3ZL#Qvmnr2-(76vRVXq)<DwIuIE!&5
zjsqzb$~IHvG)pdU1U*R4RhhY&-!64i)CSQXyFc^p2=E(z8;L{y)!!i}V}5)o8-$ry
zQ`ud5nn;@BZO^Kzel$MQ_tIs0NOA+LHKuhB!k#(I*T>o9u+$x56K!lCX+&9Q<ySrb
zqI^e1GQ%cDqTx}=qK9WpWNf_cCSd-Iq9sK)bb%wmjf!iVKu;Gy>sD$xM>~_jFhK>o
z?5ItO%d`CSQ{e57Xk!8s>`u*iyV|pZbvZoNR6U=5e<N2wd$SQuLY|gHRJYb=&FUh-
zf*JLA-|zAd+4dhS>Gm6@3hb7)yn!({Ckv$`fmG#D=x%yxuLG3FUVO5OH>I1AZ?W*m
zpbrBmaPJd$fA2n!%lc((P4i55>CL=o^oW1Lk0Pj##pOC#XedNQhDZW7reH9IGTcXC
z32(4?6}hF9o=z%he;nx|)YV`RTe><}=lo>w$Yb5>h|MiCVR`E5V-~+WwqD-pv-xi>
zV%ho+UB^R7tny*XO)eBs?7yi{3bQp>fq-y^1Om&*8J-C9WZRY#sLu3+cF8OBao2GP
z3fwv{pEwMUOTdT?k4tgA8!0Kwh3bEyK+30;jp<E6R2s$*m!Vz7kEbGx=*`v>aaP!~
zQXanXq{vpXi#a3s>=OB0LwGz3A*1*{ypQ)Y0whZQ(Qk=Yx1yA?*(T;s?7o8?I+3!-
z+9Fb{S*(Jm!YDw_(yP?{1Xt~5xU?Fl{jg*+T;<(}!{+10jMo9#h^<jYxy-u3)f$P6
z%CkLZS{5A<+%wcmerR$nT%<i}#kGp%d>`x;W^&eLDkvXaFo4d|%=z>I;S+^cr|pxC
zkec8=hTE4kI>L>3(US)RPdi=@W~lyvyl#oo&!XBq;~hDJ&rgW6*0+&Wqr-cl{oO9q
zfI>eg6dxucq%Kswd|p0STwu!TSf%hy3LPf)pV*XIlBk$6?|)-wwQjF>bi#%piRE&(
z3xOi9c@6>F#CCL7(>FpArFl6go#7yya|+^*#rvOyy`>O1*Nf52xr<Bo8p?YVy%(-Y
zPG{2Jbr-z(U|9|caM+&G+=w(UyKLo>D@|9r=xj6t#G25yTKlpnbIog{Rf;ERZ}Uw-
z@PN3-Y|6CH^C238LH8i!uBx_pM+}FFWgn<6>tq(`67Q2L`G^YZlTs!sx3!TD+W$H!
z#%m**ZaW%|T&R;ejpAtgMZe^6GSsbdVOInab3ep(w_rG-b!m6OT5oU<Km9gTf@U{N
z@$_0Tfq$I6=<N-7A+<9xkIq5N!dEK1<~!DSv)DUbe4`tk02%t@^w^O^mz%uj;wzlx
z<o-WbdyXcoD;;%W!q2_?<>YRC)_$<>Rv&Wtz;To~b_34J=a;C^NRl1Bu2X9y9HEuW
zCx1Beatj`-LuSJBRRtt^DI0fYTI#`f)PpE!zX}&3Cccd17V63LRDzXr_0WSZ@L-ep
zGf{9iC_rcPLhhEiOeE0S>i`CvK>d5Uzr?uuc2-{6pwmH31~MN>V<F5Gptkrm>wO<6
zyNcF?z2NkHZYCU_aW$*wbkGKDfyD`~_-9v>Z>3R&$Pf>bMS!q@l>z1^?7JEvhW$|s
zc9lO5NNWp22!{jJTqtULZ|{8IAl6~B@FkotCYH=B!Y}LcLQ?cH%<|-e2-EXhDFu59
z`R4&Tz`6qxM_Qoe4(v3obKmNfeYbTxh6&4ql@Ap@&4<~Gv@wJo=`%dC_NBIFt2+8#
zJ)bhHJN{xHizJ*4WAUbx#33PFHP)3VPkmH-o`}bnsiq0a-DCbvm5DM@i7aa#YZs3i
zZ}GwCy=C0>#SW+Z>mpiFJj~0>oXd>`{wpOv37V&ie`v}=0v!B$t4qnkd`@8=H1Wy-
zACTHGq2t`eUB%l?dmf@bDMs^_-K8^}eg`J9@{GD$;u;E3xnohcT<^QA$oO=be(`^W
zzM7P(;jP3LdWZeqE_+W-rOtqATB2|`I}Xo$E_ZSA-R@uzh32?#aF>k4ielidc;7BO
zhi4wnQusCoePS^8x=}xo5DZ2SOm)%&fI*nt%kHwaKUOsCn=w{iG|&IxzgiWzJ<mQ%
z3D9hsf5lKMvWm<yg|rP}d%bD!04h+IBrs*4z)Vu`RJUH;RZ{)Mr})}{i`PDaKmR@K
zN&+sfunUf#OJ%-oIR>M|JQrJ{yOM9&tOO#5tHPY(YsO+!pHr)eVX2lU3q$3!vN!FJ
zD_H!bljsRElQzhWzTkf-uT82igdua{$%NhgHRzK%#H)cvA71`0c8|_j%Vp>SGZ+GM
zRM^cxCp>7S0hv+Hgngya7^9rnaM3Wg>11W8kZFRCyyE^#HPA9<p6O<XS^_1~77m~F
zo$mm2_ayYgQY~S(nNJ*Z*YU5)U5DRb_)G+h)=2{gT=Warq-J4G%+-H7T`Y5{&a2^F
zvMwF={F-RI(6*;CM3-g~#c`h|@cH*#-eF-zY3l%cc;N_TLPUfIl(IlA7h?9-Eo63!
ztp@~>Rv6r~)p)PucKuCzed;gOQhd7f)9qx+F%Uisorf&gdEa)fUmxi#)>HTf<uT%7
z@A_yb4f5|*DXeg*gd?JP&N&9H*#6|zBcsj0JC~xxSF@d!e`Kqxz&9qPFahA>TsGOT
z0;BYUup~44<!vc81s>krSvJE1CKGz4z`NU4ni8kS+V#$=-Cdt{hj|v^Z|p@}8=A|R
z87y8d_FEW*4h&ntDzfh9bFDLV|KUyJj1kT8CFG!(^14nXs9VBGcLvk1y%IK;LEBrk
z6Ij+&VzkwJ;U<45)yn*Ex;zA?Oy*B<p=G|X{hGzZH$nTW@x{dc;9M6i-(u#hB6%Zi
z_Lm>6kNmm#ib$I~F8#>+IR_wb_&`=eRnO7>fAQvDl`d-%4IWtDP$kE}YwB2B<2-+n
z=T}Rf1NMU0?)juCvKoD!tNP#Ilvi5kckBLk_frM@WbV1(%o4>}Incp3gC$O~bT#p;
z(TDrafA9uD<@VtG&vC`QmEh(ujso_HO5==)&q&e^R!e8mn3!n)U^Wc`XOzE)Da3zL
z@(lC&{Ff@)M6d#tHQRjWZ`&y|xmgfX*Q{e57?*OC{R`<biGz<TnnjB?gbjMcn@pO|
zZJ<m8!11j|`u^2q;%%)ard3CW2r$|re2ffBjVMzZ@4zaXH*w;2eyP1H<iV6ln2@r^
zX60R3oKs14Ogg&5GG68@1YNf{fTJbr-^6h0oh>>YN!qqwh!uB4u)JJMSPEPRSKL$t
zo4OxZp_NmW9Zo%3ZU|%(kk#;~fDRucNX`>HHE~sj`v;Ct|9@)xfQIjm(>FKV!{PMm
zWLz@Q<8ITU@nKBvc9(~Tc%-QM0tENWLcwoApQuk<#0!Z@hG!sR-$63X*s?mlI!jWb
zT3u7I+_^m`C|m>1ei+Owu~R)kOuujneDL6105BrKFS1>2qFBI&Kz$ES2ZRWJ+5i9`
zF9E0m02K&t01|=(F+?(8GN1K+ne4WB%F(|-P>8H}#QY|Kv?P7hQ$wP$ATG_5iN%ZO
ze0E-LEc>J6Yj|o$NaSu@GIlqm1{=;s_i9G8DV>u8O#x2yuD9-e%{wukDptgo&Q<}Y
zt(UEm!NbpOO!lUb{kfI4fiGjcqMD=+jumLj0dg1-9tG!<Yk8tgr@MPDR?%2J%k~E7
zi_NL1p>Piex94jc4!CTuAF<2bn?5NW)9mK#u*S#}g4$7}6LOYBtmim;`>nR8g%$`z
z{(iMavP6rD)HbqulnSR_)!S!7D1_3Ush6PKS)Y&#1%6LAQ4=&PX05l7p(YYPgPHo2
z%06CA=n?BJZ*AJWo#hd)J9Rz!#k|eX@sIU2t5RAQVs%+;9M8IZ;=Saerb~MtZlZQl
zF2s^$LJ)I&+4aN?ZLZ>qxQ|+4$;SZy=3(?Zd(-uIM|+93{S2v*TQ-=2Fw;W@6;5Hf
zL^bq$VJ#)HEQ9{}k>Mt-Yl;hVnWXvi%{0;Tew`|db1AqJ)A&e)?Q?e<#shD6m>EKp
z+hR0B`KdFEYz<~rY{=M8kzrKJc4_M1yB~}t1pn4w@#<7R3|aRU+6-*@9rcrXsV7_Y
z5yL9tf=N;M8N)hHRxH2VS}s&Jv?%>D=U!n;fa+3Wy_c1vqRst*&ivg<#(46cAh@Gk
zJqe&Jz*F2pXTh^mTDW$5Q3wMXKoufEx+~%HlY2y(^5WFE;R_lqTa2q}a6x!S<05he
z9SiI8&%QmqXEZ7<gv?22kcsVFpA`B-Fp4{oky?7FihNihVT69=OpNVRPx0JKe^we@
zS83FxrHk)ry#RY@FWE)LNoIU;pI|8v^oCzLQ8%<A9;|s6h07z$7yl<)>61pSp4FUi
zmX=+?A-vqD2x|EL14ES9$^7d$G?%&zD)l#<9n(kN5L?i{Y2Y&N6g1^lfYxnM@k}jM
z>&Tk?gaA@W3;fw>`$k+y!fb*bD#Rlsv0MVxkF&^dUo@4acP5MWY2hzjOF=pK-Tx<L
z>$d`@sq$4XB|Y;^J~5ZdJLcF^DN<byFivfWUcYLZehaWoz<}$3Ns<>eSh4Fq&oyD~
zYP@3O0qK$Q2lIH?AJUvC5c5KkEC^ZzqcCO>PXfEd3)wFe0(qlxHxY}1)kILn9&OR9
zAQKJ9x>&APNJ(Xw%(=w6K$mRQQu&|c&9pgIe4A>l$ak&;Vlr^=5~?e&(-ZcPHrmSq
zHJF~U-teE%?CX1B^7m8=Al#T1<g7K*;F#W`EuiDS)d(0sqjZ7SbI5Bx=a1}-^O;S=
zq>@*tLkSQ>c)DLaZ}~i{s2l52S2edOsqt1)rGkSynbs;sc{1r>6_GuSX6PB7i3gYn
z6rQofX5R<p8sK~n5&DQi3fFBtHX+2jBRKTW*JouJjvNStd1y-e0z=%uXY6-vP4z>o
z9<lc&2WY%dy(yA>_oYh&uX$*YfA!uA%edn8%TUvW;~V$!o82;IO=U{{P?-G7Qn7%X
z`8pNhj(*gwbR<0-f94+q{=FW6({28CiIB3g{mO>-y7*+Hy_FGN7SnBlh=eKdw=q}f
zh^{b|L%q6!t%_CQV51&|t!$A_gzMC^dTu)f-b1wF`z&p_bXO!sZ(s@9ZP;Ah`ErYA
zc^2?x8h0|T^P&X6);66${a2N#T0>Jiv`nT`Cj`QVxD45TX!z=t?nZ>&uqV59kjo0+
z)(OP^FP%_OLH42~DWsfmkT%w<i<Je|I1#6tmHRrg8*aXN|L}+G$Ibk0YNo6JHq-4p
zR_c7VfXzd>_fgbPUIeGyFdYyzv^ajr7=6;jc2_zcC`9_LuXa7k0AO^SMJ#IGG5cUa
zq-pk>$ZU+qj8BicAax_tN%E<d7MmcWM%xe7oG}=zX~A6I&e4qM!;<D$r*%0Tiyrz<
zn#RSGm<JbcoSzrwt?-*x($Lla6Am5$vA*ZP5DrrEoup4Ewm6&NN1uIkM7Ejyto{r&
zaILZ}?|JU8u~6lI#`$BT-uuQDO@U}dl&{HBQzc+h^?6YS{Om`TgNqHDJ<i>UvOLg^
z5MRN<(RrVM&gLf@hj^S2H2z`OF#K~}ajqJhG#rsW-_ld?O^6@yn9X(etJuX)Q3E~R
z6{CedtZAddudm6hq5zRl%R?5{s04RPQ1(JCk4FtD-@9XD2AJwDy%wW71ayh~!l+~+
z#hF)X+Mp}ohVB?&Y;;5wi7!Q^eu&;VDfd%+G1sx}VAIVs+t=N3)yOqDyl5(!TjKyC
zoD$(3{eKk{Flx-B%AwhN$l++UoB<k75qSZ#VDth}IRVHMj>v;pSwpV*mWttS@@(VR
z_TyzvbIa-}$ZOhhL7Kb3LwK}XRwr@hc5xXEG#Nm4x+{ai`uVEg?Wodu5G%9mXa({L
z{{%)%aw8YN()*&LJ=1boJ|EbVm&JhUrhos>OJD4$uAJQa?Hz8DVILdDcS*}x166l_
zvym3!U2j)T6&%IPIw%JTpoY`-Uq_#ruUnn$EqV9Mh%A!!hYyw{*XAT`r06@JW{0>Q
z=udmr%X=wr3?*mBplog!s$|-SW>PK~{(I9dT_tV&csps)Yf>x~t!eWQ;jp+NLKNJq
zPC$1xCSWT*J?PPxW@U53ML0#@%W8+P*)ZfPAy<Fjo?W+d{>ssFV!PJ6##4C<ZG$bA
z(A6XjQ4Y%e^P97Uh&zehTAgy{)pYdUk%-Fw5VC?FOI3^F=nR)7z7{%AC3k%#dk3K#
zL^X9?n%D*EoG7UBvY!17HhyQHXcrf8fm>fJt%CqlzZ<H4NZ@ow8##Sf@P~g&U=K^o
zxC&`D7&)s^r+D$a>^1VzjnCIJYPsC1mPBC+Xsj=~(KCtf$Ap<i<~vTl);X%6?~ej*
z_Z6SD_3A(^{6v?_>vTRWv5Kw9@ED)Jva!YXA%wwlMbxS)^F3q6*Sac2h4_CUdg7Qf
z=J|IY21ciy;E`q0U_{$?^ur6s#_kAdS`+m4$ockqFDg!BPU3+PnMK#x_6ozW4i|?C
z^|DJyIHJiR0<`r<v^k?R)f;Tl2v$Hs+((L}*bXF17YuX;HNi@s`4&#hWlr5oKF*)>
z%wL6@T5k5!f~oHMf^MufcC){tZSHQL$VP$svGfdTO;A#k+-+6yndFO4%hy&CGh2-E
zZq>vQhXlm!`QrydTyQiyA&?_v<R{aX?pi$6hT`c+!6|$2$UR>_zM$3b1d_&sY5q$8
zYnkPa_hR$#NqJQQ!xbP?=aus4ceQ7pO9f{_{bQ{)r0|(&gEP@jhTTMN7Y&<aD}|(7
zzl#)vk5etiJedfAc#8AOc996*2pWH`7`fC$KH|5u_;m7MX)YCJ=>$?p2xgK&0-gCh
zF+n5udH>%g3bcic_!B|(PXO7+hzEpABP#5{Zu-jnEL?l>fQDVmO67B7D4tOCF-6*I
zE>*8)Z`oLcX~(89Wa6jBOsYcA1&dWBRzbG$hZhWRw-$a`7i@XNIk-@LzqF3RdcQWd
zB0h%@*+`T2=-kf@xk9@m@1J-%%R?T!KW7rY;Or>pFb_g@;`}oojo820`$|fK(wZe7
zp4vXwUClH`#B?^=&^0}1A+{h&LJ_$2k>(mgw>kabdtD~oUl9Tp&HBIAEg!|B$Sj=W
zZR@~)J<s+kZMO^vg(hxhJBy3twwY)PNcnGQ`J1YOHwGE*csvR7G0)vQW>;&D6}I__
zUE?fxh@SfR!YL5>t(q|zxtQkm3*!`=;L(za;rNG}5_oPk;~0aaYA3b<u(yyvU5B(Y
z{g&$u8~4OBW+dFY6k_n|ef(H$fNlqtY$z7?k(UiHZhrB#BKSa5g@5;?o_i(554Z4x
zIT*@oG+OiFtrk!kC|9#?S5JKt2h4+b^wPD##gl2lb$i%>GP4k{y&=HvmCcGVI#T%c
zkPpPeQNzD*IE&!=xW?p{JGvponrTr^m801LSl))ugRVJ9HTZoH=Rz9GzsU(ybDPGF
z;Umb-Rfq8)b?5H5B>&^&{Cwcq3wOu*Dyw|@FtbUta>DE|pKn7GPQKL#m@BFIh}$Uw
za}Z%_T?|z~>`irTe{_Q+5(NCv6kNT?^>6AO0mnqEDDcU@^hcX(g!~l+Ns<#}@02K0
ze^52WrinO>YP~_g>x5^IEeZewZAqM!?}9G))F76`#zBsdI+Kf^fqDa8l(GLyjgm`c
z97xA%)&AvdhP#X4cN&n7i+rH_!6IFB+wZDZ3BMw?^SVV6Wm{F8V8}y*kF4?sjhsQ(
z#$(tq5sS+S`>rhLYl1U&FaA;Ge?1kc-n@KkRVDOa(bFf9#x$BAk2NG8bJu9FTolM3
z`1QesepoVm1bL77fW8vxjWR#hbqxcPVgPQ{4B*VY=r_R_$bw|zwXigrnB8bo9PYea
zZl(PwED259q{3imA(p>T(-*1#Ee=Sthn-7f!`n#)*9S*=p|sM#7a$3Wj<eiJNB#L>
zM>N@c12JcOMvU-4wosV}Z6xVZBU7uf*)CFZ(f;dCu|^%l=lt?u9&|KMe`<eCjqppo
zwGy$<GU(lI>by!TSymqw_vr;!9tdZzlpo>xk=5Lg4JhX$HLL}Vrw`~b9t<Lgg7PCw
zA{R>w3&s<_-g!fERxiL%*!A{fhDiOF!eEcqvfLBVRRDGDq__;1I%g@~HL$Hnx5kr1
zO)Q0_*KV*G--$&V_0290bV%yl<CW+2{cHW|(Y^<(fe84q_;*^cGx+`%h_ZqUtS3D?
z>zkPDS3reOsuSru=nIOq<K)TnUJ+K*te{ch>_q`<m=Ri+&Kke~n7o98DY<UKTsD;@
ziBj4Z9u&;+0w`^gC(54D{>!w7fzP;rL4n=eLVH2W$s{u)!-<G=tR5ebS^1}&r(*Qt
z)v2{iM%`Y<ZYv#*Od>{GGA4rGl3+k{PuI{845&@E*?=SgLi!0W{{6u~U!>X>a15@;
z;}Y7?GC5{KM}@ZZ$XMiSSeN}@)A`4EuTdLDL`rE=GbArL*$zEDAV649a;-BgKbTZ8
zo{f#&sEvO{bVv?)px<oBawGr{=S^1q|9+xiLE5%Je0!wY_j;m2Y;bK=-+-bls-#Js
zTFO+d>`UM7z>p5v*6o&b>Cm={yIvjgn%qK|5MRK#rj=n8?~UsKldzr~irF<|EehY)
zrq#orwv;w?aQV?RDea|zGT>%FU@n92%347!fMbWG6yZvT?t|9*V8$V>5z`@HBHJCS
zM0xA7K8hJ4r*3d^XYJceBJP@h!jOvf%kodcr|^{Z+N)*k_6=2|GP_$839H0;YKc_M
zNVjNa$^K8t+yaIi?%Hp58kFS?-spT*doZxQX80=SCH&pNy@6a;YpQ1cvdE;@soi(;
zV^{ZQK5&fh^7~{LX(7WlfQvo1Wny>p&LX|Wd(u*G)67gZ^8H-s;m~G8BTM=`X1;PJ
zwA^cjiqnQqurSu1331_@*r+bhk%oC7m8#bv$kq;_Ap#I%LNDk)!Snk@LFjJG+#*D1
z!F2p};nQ~&(_PUn(6*<Jl2pow|H012C{a!hgeLA0S0|CVXE1N5k8DCvPNvM9%9AEm
zS&zudGMBw1EEt8=nNDj!0YoB$|9FxK6dxpslNJgC>euRuc#M+N+U@`vmxO0>jKpU&
z8p%T&w|7=*t8;tvY?{VWRO<UFxrDO9a^Z?$(eR|=U<y_L1=-d@Of(Z3C}<h@cBuFF
z<2Yn<Ceg&`cM6gU@KLp9r|yWQD@qTP>7J+eHr5S>G{>Oc0;FJEX@r!Vpqx&Lx>Okf
zu8#!!X2G-_=dN&YC3d>L0G%ybmmj_@e?=H@*R;IsAtIQ~ZZU!qCKcZ?cl(pRjd;F8
z=MW%w`C;~YyA|KCyaZ{$cRK1>=L4uRkXQd8YLhNO%?yRx^S1r-HT%?%IYPrRFw?{k
z`8yR)B!%F6GX&gHt6nimyk@3)e<;HhdYndEU}~cYD%tsk=qP36SDZ;7@Y}WyVWIo4
z(MQ)Ig{9~d9W9zmma3HrnN1mmO>2Po=OzSDsmMNoy%xAAd-}<u$qXiZC&Ty}b?kD2
zq}aSZocj+U?luzLq!2}4e&yd8eX@>>u_1eTeN0JW^qm3vhZ<3=$1;L!GirAV=T!8m
zX4&{_J)H2Me8V{fh<@8CqEwz%f;o|M_AMDE(=9vk1E#cc-G$`r$G9OwO60Z}81Cnm
zMQ@Z%&;_=|n@=GW_i;U$3<JTi)KIu3KvQVQu7Z%#5h_G--xKTa;I$eedOdg9I*ca<
zt{mIDGSNOvt>5o$UjsNaY#n4r<_xSBa_r!_=Y@UpIHu7aqVIJ7^_^!o!V9Do3%kjW
zLJU?LU1aT+pGZz=arjWa!HG_CA20k5eU_V5&1l$=OeV_LM&^bl{&Oi@u4bL-C~w=P
z&4sShn&nhYrXTgK@04P^DK0=|j-sfieBBjA^+%;cU+dqkq85!}XG+GPf%%8o$eY2*
zG+YTWm*M5lFPJ0>M2Nzvy)g2;=$K7dflDuSKUk=xE4tF!>U(Z=<*9u6e2MgDfQ1=V
zD!9uXDO6#NG+z-^02@m4Q1rsRs|l0sSLEho_|NlPdXk^}#1)deL|c9I6tDoP{^N!Z
z{J}foa!t%(er<pt&rh7xMHr`Re{n^lak#opD^S@VzbI^>T8@axfW)MqrzP)CIt)7C
z9&LFWTA!lUt#;+RC?#6NPZ3k{>=8r|BfoD}+3o|m;|s(+T{yR%QbOefa!HkjNl#!c
zC5H6&sYbGU`+e}K2zC+dI1$Ff9jUY&;l~k#&lRsZ2^R8P^{qa<(93z+*tS$aOb?Ln
zKd!5yg2_{9$?3jv&#KRw$DeQmP9Kb~JoPr(_lQ$>rHr38b$*1;E7)VoF8HwBSXY0c
zCaNDVKCPN-3D)z>uWmj-MIyup@_vfp2Yri1cbu7^`iJ9K!Z77f)%mGHiz03rPD}Wd
zo;feB5J}p<DcEeGu=3pp6RpgKSM^{q-Fv-eKGbIVDS@j%PWppfBeHv-UzH@kmw5LO
z)bK^@>IQFD!14Y>S(PpOUJbV9&W4O<M<}UIQ}_4Pwi8@B)63oEWJ=QD9KB=V$;5s0
z9Y*?~vW_ZdadNu<J7fG6HiPa6Y)m#{n^qcKR$oWecReoHz|c{(KHaXbMg=#eTQo3y
z12S2fG(()=GO4_DfbebBrM+NRZTB|`)2#j1E<ey$82uXyMBZ&sEpkY9@}cJKNY(9^
zOiPb!_%YH7DNr?4<SK}$EogeDmAOKirvGfP-L)&8LMT-8J`oAEi#9bgo7v2+gCSUM
zGD#7%k7b&7+QR(vXg5?()>0>LQMXS{P^WRx9dQW2LwKryFr*13y)$Tbll6MNiQzAX
z?^gH5&J*G9;B+VP8f{To)>6?+lif3HyEgZ*SQ;^%)1)mKrn3<3rXtESp{(>3Ex*-y
z+m`Bw%werO05FwNHl|ErLmoMD{x!JO9b@5dl`BW&X;K<CB^ICnO+d207ahjvtq0Yp
zhqm!Fx}zMxg9}mp%S}OzBdoLC$bj3PT4oA*<-2k93rv<(zqa3{N(z!5L&k#{43GkY
zyXip3uOxT~RzKo^5(5;Sh1TGHd^e(g^0%pD95;Z2*1w7iAa~g-yy{u%fq=<%Wun)J
zB~gSUC5xacWY+Seo}MaXMttSrkyUJXHQv;!W><Oy--d!M*hOL%ECx1Py9OnK2#Nf&
z;0ROOr#J9_d%yu1Hzoe^2IZOw&c^mm-d{=bswQ=~QCbHphG&L%BQ<z*(zyj7W>P_U
z+3K%!0e0W-XzQ~&a)k93CxouSrOn3rSC*I*73++z8_~8u>z=<)l5Q_Ar?XDeC3F&%
zl1ocaEhH=(UGEJQu^eBD`mh(Z-=pJF<Xy)2tIS|PUwH*l!5nNj<B4gNP4+hTeYVno
z_c{JA>;a?^a{QWS0M))tC67%xaOh4CLv}&*$5kUmfw1_dEj#Wz%NCi0<sUp_xse$_
zN;t^kZpxptjNc?G*x#Agb$oEX3=cmo&O#;Nm*}f9t}JAI;{X0>LJg5QFKPi3JW!5k
z)#4Suuhy+az;_MK{?|e)hzR`7N9}6`gDE=6wcgV_j7?WTonYNEl8B{w;O4pAYHR3>
z@cOD<RJQ9t<4(dzAw)4gTQD85K8rOAE_3xyPgPMy7@kp4A0O2q0S6+^PE)I5eJ;gz
zC*$cpKu#gLZywJ0yrz<b`i{>XGTy54KS4J{E8Q3=xN^CaIF6pim35@k^2?H>43X2i
zP3MI=V+q~ds*PTUh0-ciV^Aa%XsPFnyPi@3@-j)A$me`12!boxt<7-E+!>e8&@1Rf
z-RqAguGV8vBTp5Ha4`!g9ac0TMowE0X}QDxzP*tXtE2E@y^)Rh-vl$|sX=w)f*rP|
ztudwu6PJ_nh~ycfCNvbOw75sMmg2<odhZN(yZlj?tOm`BF|VC)nn{d3+Xm{1jOoRI
z!S2YYz)X&a_B;i+go*x}=DYJ0bQB?Z6b9|JxBA&==>|j44el!f0_&S*q)-XsW1<Gm
zc&-F0&`uz)nwrsC3+vAKa6X#c0FkrtRGlJ7Im&ZXKEy`>VntYl-<ByQpOp{OVCTi@
zr__Oi-CPv)b-veC<KLRk6wm^BZqo(3RE=@0gHx^=DP7?Z=^I-3)hx<k?VtW2HL>T7
zlx~Y2Cc7><*3a!&C~B!9%;>4a_+=%P%8jn;0YK>BcIXhzJB9v#Z}Iq3{}irb$6}!O
za}Wislk1kVm}9WJ^Oq8}Wn;7FCPJPnkTEH3Bj9`U_2M%M)Jl0rd&j`Iij1cVk1Gl+
zX+R=j)m2skwRF9;lfGKgbOPf+P=Up$t2?xCXA<?&FrQ2Zg73i`^C}vUHL2LG%Dhv_
zp~R-pIc79kMh$ZDL~wvc1_le8^C6f7{&PW)U?-}Jt{PIgP@T5Q4nwYij`OUQ>IWhA
zNqlbgcpa1CCc>Mi-%nQ}!AqQBo?CB&3gAwkx`i?XGYcd@gJ^7n3$J9SLMD8-?GR+F
zkS`am)>6Dd46~z}*hb3<mHVcHD*O`eszC$r-EBseTbFTseCsHY0PZ5p3CO}}uxuYJ
z@a~<u+fA~sEau)UEx5-zj^fDti4H<EdY}qjd)o(d5|Ug=97=!rA|rGprk95{erm&{
zP*@z_WUNQKoAVAdClyk_TA-Mb?1{9rHrp++0s}tRb!sh2DoSz%VkuH91_eE7+=Y@>
zCzII~a3@?wiGsYWa>Z0K-&#|(rGGG3xfIu5-?A5Zk>8M*%@1;lfCj_8<!5gs2OB`P
zY=Y;BOoa@36S|bFWixve3RsFoxBYq#!?vm_5{bobcuPKgtEj&Mo$irahz%T(blBcl
zzaajq;13|0s*J-i=6>W_xbllkU)<ndMIZE%nV@=9szcB}c0dZf;|Ps`Fcr&6DCHV4
zVE+R}3Qx&JCRb;1u|gA_|9{;~1{|H63(k)?PVYswnLmZ2U@q#S8}DE;k<G0bcF9S<
zAZ6TUub8C<(OV%5@vkCUuTPeefy;30huiqwBsK$`y<F@ClBNf(OCyo>@A%cFb@#(2
zAHqQ?YWQGshKFDTC8|Q2XTBI5e<koC2>8$Ky6K#YE(G{n>l^W%t+4(ZaO4=w_H|1S
zIa*<T$>q{1Wzf_~gvO7)yK%Cjb_}@5l~S@{4W6gyk_0N>p*zDN*>K8zH92THy&(xi
zC~K@<!QQ!(N8c?a$Ahek-8!*&Q~Kb~h{Qk9fXEyta@o{skCsuZWbWjd+_Oq`R$o_(
z4Ifa@d@>SVf1HKUka^$hw-lp^g;Ua~C%CIYJh-3tyP;HSC~z=on7_@=7xF5`J7`p+
z24-5A2Jw9Ru@I8^rPMma)1)^ewxBnyx)O*YHWZo+>~qLj*YlrW7#m(6XsbZJIPBP8
zzx&JQlinD_|G=6XIk}H+@8?nZQ$Vft<wxQcjvcn1+62h_c~r04;c(v3;Cj?QQGeJH
ztdB9;sd%90Ui5u4$ZwceF-B+k1viQp2B3}sAM?VJnFuG7oP&+fDH|Vv<VcLc=FjE8
znI<G2kifa{rsyG&tJN<3NrE$jHIG~*66XmoHXjrQDw5qz*svw=D|grdi-qQFGp3uk
zn|SizObz#O9IK7adQ<d2s6nAz-7-Vl`P+QAh34d0D?TB7^OyFoa+kjc8`YKEgDB92
zhK<RDYKRqq>))rm?jWsCn)&8@XmFs7)abF%6rXeoi!(NcPW!Vq2}DMrnadDu=OJeR
zH-cxEBpAH9P;+YFJ0~nPyQ#wU!9J&EDu}WL-j&%tb9cz`p@ZVp5hCro0|3F)@~fr6
zD;3c;0yPIc?K5VHfA|t!%Gj*=mwk(&r8sD2@%~Qre>2t{qs6ePsf1b+$N84krAcA0
zNU(t5wX=UVtN)_`+h-2U8HfsyA757ca=nj~WjV)^JH}lpy6$fe#MOV!E`9#M67A?#
z1QTl0IMUyG`k%oVFd1C+`+Fih{<cti$MN=kJo;{k&z)FEvWX%4MJY~W>M%p0$bMwv
zLwQ2Mv`6T~p#+s+h&dE_M-+#-nXk;i9psE<r`1E8<-p2UYw}(h&CbK%?}J9nlxw?1
zRAOY^{z{U#Sc=i-eg-H$qNo*?qGNfil(tzL`o+~_A=J9>Sf1KAAL%QGoF~%R)AyPP
z3VVPMvF%n6&?gWQyoYN|sw2R0>|^}Ej>D5_ZNPuGgGT{wE50izfS3Y4e3jd5eg8&b
zEuPvp)QzfVlbqU9&y)~S>Q|=F9`Jo~7H8(1gSmiuL<6r_v=nM`2SpdUVJ1yvsLoDf
znPU9wS?Tzr%BDr6I@ZrkbH@#drgdo2(2E&Di)lx%l_K}ZBO6}4zWjcY!_aJGBdB61
z+M0Bfvh%Yls)7O?qq}zz4;&x^(tsSIO(h=6o&W%FIU(Q(0DwV1{uKbiM)W8*@|f(z
z^Al8>Cj_o}aRvQgh?8E)kbn$(h>DPVuqNJ;^5KKPZmn<Py_>@B%{ei9aePxnx(IM(
zY>O@#-F4uV_cDOI%32=Y_ou2t(HyYTvc*fjJiCgix8YPU_`$U2Gf~6ry-G1@@ayIh
z?k8M_dQ7B967$M3gTWXSm_-&xHCd%NPzKW^6bql!Y<k!hh+YtVhdr)QQ~8WO+9^Hs
z10hX8InV(mgPlg1)BW3TioZR&Lgi@}-&OJo2nL%GA`qky#i}{&48I5VB8oei<%&x%
z`6JFcoxJWP$`-Z;Ax^K1R7pSNzKM@)G3hi+0)GU)G0nKj>GMqXzjyR?$e14;%5$0V
zsEq!&(H^)ax6ejhQ!i?u{61oyM~|3R+2r;+Q+}q`N}vY12heC^c6OB?koNx1gRoF&
zFn3leYS@AXyzO-2^(nThA!RzWm`|U)xo9-6owKdw>u7kL+%vTHh>s&boo`L7VC7ro
zf&uNl2-Xln(8b$%x#DvN`a?%XPHMP6s}?c|jL=7sua&Lymce7Q+BHkG3_*=wc`HRu
z^o)pAf_EAt8t-84IR=YNP_2Noj#}L~_^LalbZ5hEYiHUn4~^8ligNuEKSR}B=mU__
zgXM4&*$_w9(ji{PVv4`LKkjnxJ?dvEc?@X`Unx9+#8CLrPu=uq96D}zE#efPlJ)FP
z2;u@^`<WvrDiZg%PN1B&YnnmZOFp@UYXeC(GDs&dyx32DlxZf?dUamtSR`^9NYyet
zB-B%21>BYo#|wLS0IU^-Y|=mIz21y#cq({=Q3td|zUv1wfLrBz0B%vm{7e`tAMFWQ
zT;7sKPGmEuAFC-<&p02^LD`fh*_`wlg%pI!Q{KDfnVW;JL4S3Nqyh1ANf0e0?IfJB
zd@y}JjNi*_@$}pag_pLo_ipx}aBe$J&Q9TA9AsV^lW^F;+UOT?cN|`u`IOw@5EL8d
za7O~iE+gAE#u12<XsjP2%j{7VBY4^$ETam%=O5?;_n)k^v+1zH<{@`VKPJYoZ4e3T
zX&4TCl(3>Vo-as!18)LfD2)ykW83C-BND*62|WP_HFpK0#j`5GB;g>qD$(4Am||-f
zs49rV+EYE8r)cS&!1Ty7z0nqswQiEUloPV0W`*(O$f5XoqBxMf0l*ZszPeT3H#di=
zux7z;KfW${%Sm>+Pk>HZ2V=CjwXSxPjdc~-8qlG6%yH@S0V3v(bZ#Y;3+3t$oUYh?
zG~o6KQf+5UEt=baodk5ap`GFAFW*bFTqYVmemx3_`i18K*H2)Ao{sb(2HmO7U3axJ
zl}pO|;-Fs$XG{MCm!<j3)zv<GGqdA2N3C#rujwd?lU@vqIJ~Z|+b3en@i(_QB5q>-
zNa_^Ecetj8Acs3wa`<dTOsL0-JF7V3P`|Wt(d<0ncW?CXz|(#5ljS}RjK&HwqsQF*
zS;1X8<}DC`mDv_!XkOMqwXhPN=dvh4>Q4)33<D)@*!=ltzFws`Te(&!_#%$(d|?pE
ztifdKekkL%nPoV$88d@hDEMbDA4^gQN)2T8nV!z~Yx0oB&KV#wjwhSEP_dfv;)!(-
za|mdSA56dF5QlTPm0}28bMls9d*=;w(r5$sh)8Iti~<!*y{NWBNs)(3^)hoDz1N@#
zMR8XV!CLWU_#RdBv_`Nxc@;LDs*$rCS1-wBc&aaNkK#VdA{>4bQ3y&*)Lh@bq2G_o
z7aJu#zfV`4$$*vCmh*Dbpi^s5-G3|NM`sTpV4iMit&{&RnPrw;_1O3P6HLqyymH7-
zIzZMaR`9ceVq6(ZsubF7zC(uAi+yW)J=&?!>^;11l}o%-D6`)voYVl7GG6N#F)`FZ
zRk`HcE5euS%joxk`J_=Zov#B0p&Z5qRt_Ap<P<BbL46{DWo}!GOpj^eS`4FmGC`QY
zLYG--hkMYEoRI)^(%2;uepy7W=l(z{*~MpirfM#IJI;1^0gN-#b!1<*SiK&OF-1mj
zMb!au)WYr6mIAgPe4lfd_m2mB!j|{tu#k{eCm?d=Z@M+Z3TR-rJ=eVnh?9w!S1M+}
ztd2NB$&Dhh`oRTC<HVwxvI?L3+K;Ea6xzIbjkANVMmhe#jNmy!(JJR9RlcQv`_?-Q
zo(H?6^eY?Aj_qF*^-u_pE$DmjJV;;>cak@UtCom1Cr<VK3&aw-BfU8^a9uR5?lMYh
zv9KxnDKImu71XQCy6IL5Qp_8)e-G!En;pPHy^@+L7MEP=JeJ_^ZjvoKIGSNzFB-6k
zD$AP@)NnB!0)|^tkLn#<EHIYp9M^!GP>sKBnVh>!KS?eAeQ{M;*QE3RYK)8=Q6W|4
zoTH8<B!um9G;HhoKA5AsfzwR&HQ_k&+>x5IU%t{>m{{mp_Tm?ns+?4jcjF>*@?>C1
z*fJyp%MQp~f7!vCTa6Lk@&HVOIpem%_l#zw_yn7<P)$({1N>575(EW{Q&wBdVqY^_
zx_(N4KEcb)cxeJ}DE0DP&{*Zzb((6;<QosbEsn~yJL|Bin0p!T0t)9a>0`m0rb|f(
z8$UM1H@~qx1PLtrf;CKM!{Rfem(#3-nMD{#R#1b*jgsA<t4(GxjEoHb&vCx{G3or+
zYeD1T{y5GdtQ)XaCb+e6^zP4#wq3I!BD6|&L9D^?q`A(ZIU02=EE+licv0)o%D-)1
zZ*g;q!|MAojR8u)Noc$ai)u!0S163?KA1|76N8Jw#-exDp7y(eu@CI~Kw3yU0mrAs
z?Z>AygOHrBMH5Nt@<>vVg-SpUq_N0jZ8ez>p`Lg?XdP4BCu<Tli<Ms^nw|v$?soM<
z*Ctv0XT-ujf%Km)7GRdYx6{L1*eiVi`}`p{_Z2cvS9jc4HrOUAq3nPk<(5!qX=Y{V
zS2^$ZQrojH-&e!h9Zg+K#YdG~y#ox+bG+7;w5)A8FDEB8{uG#I0{UCwRPtA2|7~2Y
z#%JFCm@vZ(pEThF2iOqMpTRwDWn#jW^0fF+HGv~9tu3sZB=a}Og-FsY-#(sbD{Ncl
z(769Las5YzN%oM%qRjp&Ajk)FbX^=WLqJ!Ug-gx(t`=S2Bxh3(Ygv8L7T(bx0*VNG
zG!?#*vbPa<<AesQsa;iRROSGxRxc)(dvWbv9UardJv|Jj$d;S(#_hg>7&6?OcGS6k
z@K=~G<j?H(%W>!$ezbo&e$|eo?p6Qsu=1HSr&km~Fy~X+^1k#i7+)FJ4`a=NnWDEf
zNMHVExBLDz*3M2wa1{ML`W%x2P@r(?YNtWO?ttiv_^})3CCKH}Vv}&xb`f|?M}9Bm
z*$U7iV(vBG{yH6Hjyz%&TIYA{$J%SGYW|xzdA*YYEAg+6dfI16wd*L!A=iV~ZgG_B
z-B$i(o0#>RtcVVU|D>Bh21oh+kPfv)pLv<!YO>laFb?YE5W#I-w6ypvfZ5A(M5*HW
zF&bj>(y2LzZEjT54R4!o9?$CF;FT;?k-SS=6ct2JN<IqPvrm;+dQg(o${}`&82z5R
ztRH?p;8t8ey6NtF!TspwOWoEG!$Id&$|j;pvQO_e6b%k*>T7a`%Kn=*A9bgSiF~mH
zV5=#Q-o!kq6pb$aZl<?*kKD6DXLAdmW+3E_UDPY72BLDvG%to@Kqqj-8&QATo@N~0
z<IXV~B^`A5QZ&EP!`rN|wT;?}Y?-U*lpFET8VnubV{nhN8T8+YZ*HtWC`pnTvFbFP
z5Unyg#qpeo`FELt*U$Z7D@@*+jn2t!QRp9aW=V7YRD_7F=l$*E?34O)`KIW&4QJAi
z9PbeIjqBy38KWpI7RLn=+EsldcJS-|4H61-z}Oe{s_-SY3^&Eobdz+ts%=NKcN>~H
z`#^jO+=JtKs0;#KCsxs3epHvA7D1-d033Zz*sC~iEDcpbVlwX|w=Ncyj?A1_kk8~d
zSSC<+LJe|YVXI0N>nx{6IU6<BVfaMJgsuV=oY^&#VJ5|<YAtwEvCXwl#|-eKV%y&m
zrnu?x2d$W);dzt`Ja&wRy+WQmU=BQ3QLiR!R-6Z?jXe&S--ra2m7ER!PgDn?KI1Ln
zlk_v74rvCXybBYSp2^ct&`xCyXU&103@=;uQb(EY2CwYBK}%a~@;y3i4x1#zZt>kj
zx5${4{ypf$JJexv18*Um7MEhDYgy3U`jEsvMP*vN<J%*H5L^uCj>y$-bk#x;EIed>
z^_to_Jk^2EVfffTtScB_<%TYf>`8CprL`N{og*A(rAC?^^Jrsd_1i&H*c!Tm9cH1}
z0FrQCqaE@3h~4Kko1@5;bz`@Ts9Icb(Kc$^XKbYZjBF(7)CXoJiQdwenPY`$f>p!z
zJzaa-Ph3^VK%H%sK2uO!p+~?&>94Sm&JMP+i1h#2L4#C~|6>!^{W3#Vj;?5(-;#iA
z)_E0?k)Y?M0b#ydUkNIvIHMAOBg{gVa)#P2{NetpNn-+rMEZDiuV&Oq%v{$zx-rps
zPtq1+=c4}Jxpd6KEl5$zXI{@+8>VqluBZLfxEebNX%>4o7jo6?O<a%XH$k1Iuk^N=
zPz#{*Ru#F*)==dQQ?~Gvo+uA*Ppk0Y+(5eDl3EmLJi~nV3V=nhAUxseDgdAWfHtFY
zPic=~cZV+UAOkFWxqU6guCNiO)J9ZhB}WStE}<YOcn$E&{wRjtkwLwz;bZY8OCWv0
z<5x^@U7=>O=ot>p=LU+9!p|60E^R;;iKilnQiu{?Uleb@$4m@6_q!Q0DUBoq!qQ!a
zkwk{qwS~7LP*e+?sEqbJx@s~r*6_{dW-X!Z@~UX!ifug_b$vvb%0?>S&K~7<ORpbB
zUO!i2s6rTxlFI__987wJHbKL{tt*&ZV5vHshWP;xpY(-VD<=buJYCWlloSxCbS+(X
zGJ^)U4MH$aDjgQHhk9MGf+>p>q53VdTz1fypkrW_>pjSK`VHXSvil<+V`w-y4KW=2
zM=k&uOe@Rw2741k!mTED;7Qac)#S+r_dMJadGwn!g6pU4WZlb#7wb}IjAAbS&J?^O
z$$W3hsdlr;5mzwG5aAihhnIp~Jicaqg0Y_>JJm`2m5gm06;PJ%-uKc|r(q>U3od&2
zBuQuD+$wRyMB^rsV{IRadd~p!vfQ8&=^{T)twJ%({~!6M@m>$v5BDsu5zpgGt^0Pq
zDX3u@1Jule>+p;pgS=d^$~G?{eA090?<Il^HdX2hKgv5;7T3oui3LC)jhV&x2jJMo
za?3mjXujFnH$O7E5$f?8dTwu>_m{@@2&EqI?8%GitpJuDS=$P<xe5zk+}kh0ezJKC
zfF02lOk4SUz8rDOf5UE#;D$SQNjnzK<!n)-ri+i*XUOXVr~1(|si3N>zVkwm1?U%a
zx|MyHnI=!I=%7Mem|;SKYL~w{6W->DoiQ)TV~^>$K9$rkHGGRkVz43rDuhPKvFT<~
zR?D(B`i8j&z}R40T&dLqL;2BOo01F=JOmO#hsC7gcebJ~Z|ZZ*BXx0?!~R}Y0V2cb
zaaad<EB)(bzo3I$qd`iJqFe#p15C)mPq;4U=`8)LcY4NpG4140!jQ3w<3!vfrzGkn
z6ZY5=wg*L2z8ssF<H6@B_|fZL`ejiL9ZZRFO1W83MLd5y^dma)NGm>P@mCb+bI2k`
zN7HS#?!R)<%bz)~#VksBJ$>uTiJ`I&vYP;w2?gprm~JYob2PL82(t@u4siC5oBo;P
zVsNhar6OK(_<<WzKeujG@`8T*7ykkw+-o~EHF$Mr58+@xl6L2-C^*w>CpP$JoM8ra
zgx|fhRTC7YsrKsdPP~i0*sP55#j~W0z<bZ3>TvL579?6QuXTjBT}h*v<)b0W=_I|>
z7@v5{F?I7!uoA&A5^^FxK)J9Ch-I7<2mAGO-bg(<Lz6&wVtosQ0Vg7ARp6!6cQOxt
zo|S{1WA;(Ud`TCk)kw;Wl~~6<O%(5Tu7eimVti#WF?QzMFtduGeie!50hbfeq4P>y
zur_82?OQ;g10&gXXVoNTFctZ?U#v6fl?37Ak*__EFpwh6qtSAdc{dN(eXf=m(zo+t
zDN?T`D4@epiJOHP($GAJuwEPFzpdv(HU|4)lcCwWTPRU>x)PQ%FI?#E3bse+dPTdx
zmz?~x@xmkIu9x}ij2%+B2qiMJl<LS`7iZHbR}~wP;1X=2DNk!7Vb$l<dUuGBMGW|D
zsbgWJ1sX!h7w^l>tJ?Fp=T<mu2gz8&^SlImtPJioLbj}w$Pu(Q+b)ZPfL!mkP#8xb
z18jd~6>ey&0Nl?LOoUATPkKcLXtd6>ls9U}w$u`qKW2?4mEt?8L*@d%13yAMr#Y{N
z5+=2oMocBXsX>JEkhxrUgMRx)>@$1(e>PI})Q5<mA;BuM;A+f`$4L$o9vOZJGTFa{
zx2HvFBA0Lmo;qbR@D?!-RGR%zy+f-Db&-`|SwWn%?sK*5+kl@#!NMW=7A(iDDh4$%
zN$&!-1P<l1YNT#WR^ETYM#yqLHcS<rS$V12CX5@W7+PLxnx(8Z37*uk%bcLYz(NBR
zn3tTk_|Xa?=Z8UlG3G|BVX!{?E?@SkfIe-n@L`k&sLnZ9C!&-xn;kYZB!O`+oKP$K
zfH9V%AVqBf`4|MR1}_Dl2bN<%)Bha9PrFAIS_nI%k*i<!N6oM&xHqikVXj-x!ul|o
zdZ>@nk?5IFR{|l~NbSxMeSJaK#birGCK6yW!}pCe^=VR@MOBk_(^xT9&Hp+hp_<|B
z<!o}HG{Jplp4YDccR^tZFq<5Q3+qr+?6gnge>ZR45=wR~QfQ<7N<h@1h?O!0xFYW7
zi%IDw&2LpqrrO@nq^PO)^Mq;AF<aB-5R-3Gzi6=zB;DLY(Yx`l&;;EwQ4m=KWb`7S
zk$hT>2Y3j+qtBRI2q~4+0`_k5%(Z4smW(>weIVlsv9j8q-Dhw!1TLGiKIjD-e4k*<
z4i1TMUb06jK|3{v|JJ%%qG^I(Fcs69_nzKNh<5x4L9*mW3lOR2xRl~o6!Rp359L=4
z0B|_HZbZySziB)ohoRsC&@{H1R^_de>Y7VWFl`rG1frL&@|!2mXl@L|ZjKfzEzCyb
zjL_jk9G>4jq8`+5f+iHU!B(Z@`-1p2sVF<|LHJXUoNf|}1!x=S_p}zzqdrl0diwHI
z|NEWxu#z@F3$=7SOIiqXBg@Ta#%_Y7K)USB<c#<yf^0_sh22}OLokqJ3O403f%Tqw
zxeFU@D@lhdm4(Zhu@2ovR=m@SC>*>hfAGL@C+&;a8p}Iuoz|McZAioV+&TA6@)+Gy
z48^2I`H3LU-I8o2-N$Lu%^mTtyfqpS47IBu3hzGpdHOZ+-Fc*MrdfC~(EX?IuVRWn
zt4WJ(|2JDIT_VM7E5i6dF5F`yOn44`l$Q7Liq#02k44SGr%R~>Wd?Y48fG|{8ai>O
zeH;V|jkWOk<?)RqKN{S9#L=H2f&vIABc08RN%oM&Dg&k#=i+zcP0RS`e`TXEyE}la
z>YH<`B2$hH+E1bcA>D$i%-8kF=1@A$1_3pOT9lHIWi)Hx-bzIyK(s17VKe%iVCfO?
zC4h*+ZhDGXU>#X@*1;wEikcpyiI2-Tw@97?_h@`T+-q8q*qh-Bcw|1EDlWxyWDM+2
zOJJH=FNCau52$@nqxq^P76!D|lRUTED!~vuG}JXIuOaD^f3LMv40wdaA<bdILd+@S
ze+;&5@L6kM(i(9TTo#MAlIG(7XZY#b@E`LoX&S;cXe6l}?S-?9X~{5G1h;h2Xzoh4
zs>(n2i?p`tOwnC^SZq%t(q#6SN7kqDa0nsXA3;Y-Cq6c+iwUQmcUDPjJ;c<@YxHCL
z@wP^(lQ@dtD+TkgqnB%Qv8;47Kfk($y5U5qbX_BjLr^-%Uh@)f0nPcpqC5<``drK6
z3o~Syq~q8&Lp#PULiJ)$GA#fMfiPG0hxTHE6wPpvjs+N0lNHC%HT~+n#)W_D7)UF0
z*h+CkuMGmcM9YO_r=|;#gO^vmgz(8$ZT4NR^$9NynsR{8q7|4Ct-XH5U<!6-x(ozQ
z3+a2Ou^hZ@GOC=cD4{pI|FnRopI>i{Shi0Wew-)nt?Cn1yiOO;s_o*(#w}u_a2PQG
zu|Ai^E_yeY(=o{7hlVS*```agatQLEv|!UQndV|-q@rDMH_NA}A>B1UWocA!mjQv~
z<o0Bo#m6`I1+3iBb`S8aDkWHd^zk%G6gaCDBHtFu3G8O6{>tVOe=&YltQ3HOR3VsT
zLTk^1FjLS)f_JvMPbDQK-`<iH!Ab1B(k>#QHC+IN@J_qTfNE{+@npvxV~0?0<~7uJ
zJJnZq_H6sqaT4bOQJ<AXQtcB?&Rubd2_zL?*uc?*8xKZw-KOBz+S%=?_TFfLZYo+R
zx~1qp<R(9=5&Q1bG}10`d5{6&s;>R)ZJFzQUEM`{Y}lvqJhs_YlM+wIDYik~_6)1<
zsyASlz~fF{Sx=+QDT<=7KrJnOVyVl_rveovnPNz&r#|ntdAVa2Nr+c{l2wS#2i0Jy
zLcWLtAK_`3Q62_$*x)92HyR@K!m4q^^#!`b8bpTD6dwOT1pv%(NhK`yYT4PkR)Am8
zAn@7>K!TJDkIck#m{z08pB`|qUT`x@3cuj(E@7w5hyxCmY0Ms8VYa*o-CNC8))(m_
z+2EyN|8VSH$3IA!1e+GU(H`@_ag5%o$D9c#MHVSDm$wim8&Q99;{+sKL?PXLHPRej
z0M9@QZS^?3eX);W&9$2HOo_?X8%L@^g?2&LhI(%(M$Dvd>W}HV(oSy+Pz+1YQEYxH
z+DR33_huFu#M<_AS+}0&lI)U3U~>&!9;Why$39`mot)xmO^{YPs!@nsPvP&<tIl_N
z$pZcHvIiZ*47ro#TJX!Cp%iOuY>=Xi<TFILho9{>h@0z(Xprg9T<6Gh<%o9+A0hGy
z{fgJ>pX&uGrqV4yQ2alT3v*x8wXU88|IynB(!2IHV4>f<hwJtt>izXxnIViJaW)Xw
zxzY45cC$^q67F2v1bGit?(gS|)~IYml~@Foc!yNgdTc^4L2@j%BAsipRwe@vJJ9=S
zDANQy$Q=?FsjDEOsCl>i3X2assl9HoJF&g`awjt}NVxx9kNmq%{h%{~Y_nx$&YH+h
zE1l2p1>Z!&hI3c5@t5b^lYZh7z8T)<z-g@NkMN~0C|jQIhbLs~8mmvudKZJN*(*v9
zwJMWnY|ovM3S)w2V2SjF(I8t!-LbweP^6Den+`yqn9c6u5qk-4(kYLPQhH+D*~cE9
zfN48qedNU9Z$FZNw_Up*eclrElmGvwoUNv077RYt3IQSX3^n8)pfAg8ReCZi9O9a2
z<UQG>R8Q&q8nFo|SB|{px8Nb~xL7gIYm_2(mM^^EcBgNf<j+L4fx?CP{Vh~E4=Xx3
zc<OEJ%bh&p$poyM+8ufn?tMySNIX(u9m03Cj?_IS#^=cQkN4YlTrt_)BI>Wtz5^vi
zYQFR{^UC0xLDiQQwvlcd2!{%pa~om7lwbzmW%t5cm%r-E0QZ`#<<K-nR7jBS5kR_G
zAehH(NqfNT=i1C>wR2J0ZxM0fX(;D61A&m>+6Xkm)3Hb$hcw6#USX_~5S!`C2G}r@
zXsl<&Wu~=MkbruQ`U&p&x}XWcp3cG@{QW&xANeY9hZyU`PZxAmjV2f-v%;^mF(JM*
z`$p{E?70Ksf7A_0E`lPJGceoNB_$B@b|8v_MFnt}+je~d?4OLN6Z?tk7)}n!8J(C8
zBJDh^{?>9r3nYmKK*wjASF7A`#UlZi^hC)jh?Hmia}SgF2uF2q?p!IvE%Z++gN2&r
z2-@f<a5%MrC;mI8;xQWCr1;&vCp1D9(j^o`U+JJYhXOZF1J7dzos|{xrW4zz14k0`
zH^iWI)N-6!poeXTcczp~P9r_83VI&(^*=rxP~h);8GQ@&9ZFvig^>W*Y1Ds#HZg2&
znk`kJr<7TqqfNV9{Cg|_D%p-5$8<gQv1!XVW`oBCvQ|gB36dmD<&k;g-&S(ZEy$tG
z=gPaHZmB`nRjxMS7Ko|0o2_}HvTsr@MQKKh6<^`<T(tra8>vo*xA4-w26iBQvu(l8
z9{rHYBr#ZX4*mo<7lPt!1Wdkk5zCBngE^+8&$?=zMK{+WH<*kGIJKlU0$(y#R>vr&
z<MC(5Bu_M}HTAN^pJ5LvW>?#XPiY$6#}kqr!0)KyN)7y0_zG!RhZ{lF7x$S-YskEy
zuh*{eFWuK-hNmv_uK(O-5I9pr1s%_zV!=%?oWJ_o+x;u>&s&fC$Du~dVuIc7guQ{$
zl1@zd0hzpCXW(ng9rd0HgIWM6Q1fk{<T7CF-A^ro9}xmqB1eYC@*naR7Pcc0p(#Hs
zrL9p(pZ3|E+7lgUZyto*C1uraA=M$8g;2K1Qr1(`p2`yEZeFR>Z-v6k6@rO`%f%vW
zH-2Q=f!Z}-@dT0mk&RRnHt<9c5dns!Pz!qx<OG_YT~6;{LBYJJ+LR{JAF_a<yQ$*$
zDO6u)k%WJ8i@_ArFe9<}JPbkr328uNKJ3R%u3LLq_T!ZI{5T^<XVzPR5!ni4u*Y};
z%DpR*70UTYBKgFdZ&pj3$BcO9%Jr$fdI*a5KTdb&Js^I0v3o2>5|Ph`1nK4PCg=>S
zYKVvdhr-9XNx{?0ca57$%`_I4k@w<cXg>=g)CfRnl_M)uFWRv^^;<Ub2PmWb8RtgV
zNL(8&6-SABaSmu?+U55dx`Zx5lA10x)M9`O;7SPn9c9Q^lYyX;qlbksSvWqIN%~${
z{O9@l3?QY#4TBG_pH=4&+9!Fcn;B+`=>T&frQPNEY#NA1pN>hh{-Jkgl_1A8a~Qzk
zuUT<=T8=EY;vSK%9+6FmNsWKj<ZTd_YzN}w{XkozQlZmqT%L==Crj@!GCKabw@+zw
zTGSt=$%8=4TO}t^n3=7KJnG(6CIbuntFSsd?1V?@Ptp%}Y&M|C(m>)g+ga0|n`XH5
zzn;GTiK?pf`$l;v5%DO~T(!b1*c>-X`DROt{GJKD@>!mieDl938=e0qj2R1R@DZ(|
z&G-KNehWhk)7I|iR`;x!$4zZgs5YpU(g?1QC>E{<7JlS3nv&V?%m#F$1x;45y=${A
zD50M!0j$)3sqM2(_K9{(Oo-GDQD-mq<ld=^2#<y)TTF4OHJkm>Wvs#o(&f~UGZg34
z%^1@ok2ecM-X)*xl5u_BLQ`W1qncSw&HH6x7Vc=u(D0Z6r2`GQW!L`D+Iue79`jEx
z`Fk#x`Wy8GCr1FPq!bCDn+D$tOLSTNh(i#hfW1!Okt!@5zi@O<xbIS*I`PO$6UD;0
zj}bK*kIi=EnT&WGGdGejX%6WlPh8w`Gozzj3#%5tBmU>M+fRHf>mM{zyvMg^jKS5!
zM-9;`%$#h|;T%2JJP)J@2TC<j|5*l;5`7I01fm~{t}zNFpIW>1Oxn-s9dAX|;KgEN
z+Kf=@S#eKbVmMl$qn=g2eemH>&(r@kAj{EZy_wV+J5ptP&B02g6a}%TOn_#{xSH?^
zDYE`_ty%tHX|F!1kZ1aMB{@-JeWa<ho@4in*cWQcN7+O_&Hk~rzfkqwR!W)d`avfL
zXPLv}P-uasf{3Naj927!9irzN`<RvytSGFe_9LlGURvq={{9~tWZY7|B^$mExesQk
zE?`9n_V=L}nQ_lYt(7YIzG8+k`PTi|<XcT@D;pWi6lisF0e0hF=%%!Kya55@h9?Jb
zCNf5pw<lxmBc*}ywuD|{zujc`j}p#dEbj<2O7F4Z$vqs^xXF6x0@45r^W`vkK|3BD
z_1q@vXK@NU*os5j%@G5P1Ew!8*oEs$(ihY2s%^#LVv{g(;B-6LwBmil4<o~&DXrSg
z_&SjXykX2}6RTrv%XHPM>w)Ieo5shj-#;kt1E-2S2a7{@P)K9X-g-9GXjnz~m^E#<
zjy(qYvFzP!FvN7#d8Kv+;TL?B!;G~b=ELXk^<(rhv8TJDi!Qqw^*6xQt)6dIC6TWP
z$t0*6ka`glAD3gE`OH5i%yB!MyLg8mBw-#e!?dG_eFK{Sg=x_)kkpgHCW2Vgjt)}s
z42FQ@1-a{9KB~u`Ns&R})@~f-u+m&T$S|t2vw_)nRn@9R7}>NcNixuNy>GzVc@l43
zr2C1USzW$;XT2>Yr&<yYFc1)aKti+XQZu0-4XQ`QemM`;I|`7+R@-dWW?f!?J(l61
ztW4TXMU|@1dudT)gKIGlcJeGZv`V3+={s(Kuzey{$t+!F=s~kY31E|NtpEz?=bq!i
ze=u}lSG#~q7FBaL`C@PY`FTb?-PY-h<<%z%JeN9X;mIJAl&q%lA=0DT9C;3m5Y^>w
z<In*1diGFE#MCmm#NfmpJ9SfTh5!0^wt&IGLxV7)D#Hx7ES0(;JAo(p3+>D1`!S8H
z)Nrem8;7Eo2N2pJBy(TbT-0=BdFW8ZNyp+7Nn$G%L~X-VYgV#aw*5B??sN{OsjqAl
zG87qEmB)Ux29TPZdP!sQ9B2gT*4Z@o9$uC(hlJxS@$tQUEQ0}z@2?^^Gk9N24P)1N
zqMBO*7{8U}lqxusPwCUOT_zc=Z_tm`_@_G3#_}&q_5uRTQb}?nT}0YuocJ=<n~o+-
zY_BudQ;7&{sWq3+@FQR)0r9pz6Gw?Y_8bF|j6u&-7j~ykR_=v%=}eJvWbFfxs}=m8
zr8nAb%FpJ%0QiFj`9&B7wO@Hl6rB9~)`ZeC2^X51IweGX?DzRH2^&_w_N78}R0B7I
zBZY|_m4PD@p$6k>l$`6ZR#qgr;nOuI3P{dw&_3t$em&V50oT{K%BsRI4gY}oD0)yh
zM@ayF?(VVpC70?8MSa@H>nEO5t(H=3U9J-or5s}-wGK$n-yIO22_Te~E9KLa`4t?@
zPWJzGAYL6Kv{8z{rWJMiCXG)0pHVMgu}${-3q)<VW4~(&{+R#KC7y76JMoU(M%a+z
z16&Gzu_s7$GsHvzWxO4TX05-YX`<^!iLCivFQW)Ek8c2+3m0Pd=7#4tAH4H-UG`HD
zzWI8^<D>V>G`MkC!RH-L-)WPI3|nCtq)%#Z*oR}HU@=Ko*(f&CCL#6rDiatF7nKR?
z-&Gr(oX=(_&lg^Qvlb2~P~u6$ZhOGi&SrTrm{lX(pjez;S{^?Ymb9Z5%)^y@v{IhT
zr95WzF{cysaW+YESG5CeyZY6FUQG%f5n*7fn%QFq+)S@M%D3ukU2N5u)9;L1XyVro
zNeYkxDh-NfUKW6>m!js0AQ0f+Y8`!9ibiJ9#0@}Tv?Ql3cXN8y%k|nVvj51&-%*wL
zda6L%>F@ae3OyGGah&9RVVf5px%=3ZdRK9!X5tfs?-ZP0d;blVk+t&{Wabu1CDfsP
zyIrs5<cPxS+N-bFY|aX=QD0VrIr>U#I6IH?#mWPJzK}3=VrBxtlSJOFE1Wfi%NTJ+
z4jbf;-LEi_{fqUyChY&PJpLD>?f*9YfcZ%ew;XGvk_<|UOtmANu6EI@$&m%z%J-Pa
zs3$_aFSfO%ymB_|H)bI!QHmKOfeF{%GJ2BBB&JdUOa$Z{cTsHYPwo({FMGxyGT0_p
z`05<SubUB@T=g;l-dU$E10V;o#irdAXQ_BAiz6>kSY4`K<F9A&Tm)-f6*Nx{cXR;Q
z2j17@Kn7DFvhka5DBJa?Ky?O?o+k@F<s5v7q*cr?;CyPlxkj;qzT?PjtRKp>kSD%W
zI;q&%g9vt~TJIj|^r3SRi3{Zf>9R{t^w<JROIyFRT49|3fP;D!3vB#SzQ_<ceCW~z
z6Z8z?2B-{EDj|^B#!!C4{5N9xbJX)78?c4sPQj1wsJeIO5Akj~0qsV!jhyLkHO|>J
zJpV3?@}A>?%bXH6&S94X6+n)?SbqLgGgWNY+7}4nE6`{-g{i8GHdJ@7m!${1U0JE0
zu+A2<^@B_h;KMeG08yEn>sPEd`Fn<>`5~71M6obYx5sImR@v9;Ya}&JR?0h0w`=<0
zynqjT5&QTM7nqbAZyy!eKg;sXXO8}*W1M59zo=^;ms@v~_~NqlcQQz4*H;-x%$x6g
z;8CJ0Xvt<15g0&wz!d2o3q{mnSd=l1ylmZSnCfoyokY6Q%>>W~XEBb`gAwy&Keh4+
zZ*LeJAA~o$B)0@a(rG;ME{Y}I@;+?zcp_&nXA@&T-X`Y!zm|$lJ+Z)$;i7H)HL<Ig
zP<Y@HarU(yFis9pHSpjGb&c&Cw)_{MBP}CO#d!zVs)CD5riCmVWm-jSBX0PsDFp5k
z!ew;5fd9^L3a^s8&AC{27DqYWyLJ{)TuJLN6Vt3A+xIo`%)o!Whn9HS6R=b()68BM
zUz(tp)NPohW-Q>tTV4-@yMTSSAXFNTUZO4cRj)0^@;c5VO(CC|wPy-T8oQR=dtN}B
z$scILuItBUS`41*wG3>kzQ;X!1M5BC#JAm5%Hd-W8=5=NV+P6)xJGZfMipB>9>NFs
z8q&Z$(LV<`^*s@ogA>f%Qrx&IPk#U$qHjqkPAa>qLwgUFL?An{!99n^W$;tBwq4KY
z9r|7>osfE;<)5Id{Y<FghhWN~Y$Xv`me~p$BOpMiec-o*g74YV$y%7+@zhUjmxQ+x
z7+8sd-QZqhfcgbvY*}ta>2!uGC_Us$8ZT5-tP6Ci0z7yKJWn31Bv;;ubq@ashRUOa
z7on@9V$TH+XpX3S)|>;IuV+Ri88f{biJj30`+PB|f5n<+K(m~#3Ml2U6CQwovZ}n<
zO(iR>&%O>+miv*BW1B*H=N{)TuBWO{BK#@>ogzAK!6nAowGo?MR3!d_vUC@6@m|uG
z8i*jclWs3Mw)}LDvQqPOX{e(8nm`8&z%V?ncaKp3?iA=U-ZWfX?Bgq$8|i@09G2`+
z=d6@K6Z9Qz#SO`X-#BOfn;QRw^0l_IZ7rixbU^Kyi%Y9X!VrR(J#$NmLyLeLTe)Am
zE{u21!=?)2W}=4d`8)~RMNKjP<RFLh5hsr#JDznf+}!=Hr6^J#edImp*V0H}z-G+p
zq4!{rwTjG)qg}wy0s5|dlf+9>mm-3S=Ec2bJI^fqmNLQi$)_Exr*Q^>@BiCVAbWhx
zd4I8Qv^R4#=#&gqeFb?rQAh_#-zNfbw%xZ}3{Qpgi}{}aF+J;`T>?kHG)F#pF=Vu!
zjstqm#02#$WQgIpziV`40yOZhOYVJ3{mOm;)jW6;&+P34Y*P(k0R_QF)Zsm#=Jt+)
z^l2Aoz)Wr6;tjGP`{jIR=L2W2{%6E%vq&Sr%moD_2J)<5Pk<N&jF&L=#+wV@qpET|
zLF{kxUb&zUa&U2n<nT!lpygn9;p95-chk{aNJS-adiqaYI4Di*Nk!?DQONL}qOfpE
z>r*Oh?xA%As*laUvlxG?m;w1=wkx|O!fx0Ea3pWm%xjA-gGmB|Z>Gn{TWe1guMupx
zu!UtIPD0V|a4Szj`r%|a;Qn(JFY`NY(~!?dVic=VEK0j#W_GBc@js5Ve$1esY%QiU
z9NXk@e`_2pO(Ckg(0Mf^3%9~|XTCsB>~u#zF2zij@buh+tegQ{$bW>Tek2@asaWXr
zL^Mu)jq`3nTFT1n=UqHhKRX)~02b0}1glq)sW0NV7%PjVWywx4N@(B;QAeN1+s*o5
zL!&^S$V59OYHs-!2&MX9IsUjEoa<@)>5a}Kh>5t`sv##M?nL&MZt+2)Z;t_+)s_`k
zV`D*{47;+VY(?nR5)?|^zEL|*7{zh5iRnc$^D+&!j18;Z&gwKtc{P#%-QkPsM7R$0
z@yYUaV&xaN6%vl{eUd5TK0c1=vC`ffFB{E~j_kVbzcwOX7X~8CbwGAICV>}EW&1Yp
z&D)q^(3D~aDXd_)O?(I8c8?*E>s5Wg7T+pbJ}fn;@Phi|SIr7hg=EIUU@vuFvTWb`
z_&TgFbvSl8_^&AeZ{3FAEOrstay^zSIgbIMSj%qu0!DpXRyKsM6a)0bp`WsGlQc3X
ztc=WtV5JLXwp9tQZ+@CIZTTemt)j~S{+lt0_wZ4^{*#fiSgkfa8nHjB_zD2ihW~cu
zM+$pi{yATV*N5;k6}LuhGjXA6IjuRVp(gbNuA~C3O-<CF1F){s`+<i2*ybBgfN`Wn
zc^x0TC)=RQ>l$rmMSc{Yb~34kiN7?^1Z3ASTc!7=z-uC~$ujm-CI8Gsi(U-W?o=3r
zq<+EvXT3P~m#aF|d3RnBUEdsBhhpQNit!BVJee~b7DfeNjJ3+n943wrj}ew0Y3q?r
zk~PyjjQKpo+32`{4DZlwoybhAf~S8sPGC3D5h0i(6Y|1aC<Agr4MUxfB1HH=TcRwH
z0T8sOMFyFO)Oe%ES6XY707WrnZ`HSox&oNlCW7VZ!OgKM7p|G=Dal1+L8KDV6PR6n
z^a&#}R@)A|$`AFWf}OSNt=Jl@g&KzEsbe|&{Q#2(so|<(;cL2)e6yH@hTAz@LygDm
z^TsPBuu7kr93a@&aLC-KsyV#%RHI?bX#iE^%~OfB<!2E;g2C@SB`M)k7GbKv&p2@~
zpA(lm7CWe}zcAh7myZ8CJSqks^wi|BYU}*ag-QuEf>5wI93;2Nd_(_H7JLXe%03vs
z{H48oS>Zo>%g&)jc#0jN54gd<eGw741DolBS!8(o1J~63CVd-4eutFD0m*5g6TD)(
zEcqTHb?jB2^|W74BIe3BYe@T3m3oABlrd}?yC<i)60j8nHwi5?j9$8WnLVsZ(12XU
z$mys&`!!ThcxA1Aa%KQ$55V<wh=UU9(JI2?9#I*y2oSb*U=qC+EmIQ9a^CJ97HOQ|
zUOsbtYTWoUhn;>1MW%6Uwdv>QnRx3j594KR`~x`}uwi%SBgV2Ms+|O^AWC^PA9tA`
zI}r969qB<m@VjMt=zJLg>sq46cHj-hD>s|lURZO}6=&DZo49O)Y6YAnLN+1k0%k8{
zJ;V>+_>lhk-RgH&@F@|3ZQ2LN91DBDeh-tWKLT{9qkQ#wyy9gP2aguSwPl;!1c(?0
z1&W)d_*wq|ZsnMuFsaDkw5Ay}dX6cm{Xy_cUDAy@oP%Y4r!BR1AIw-g(HIMQi&Dak
zK2kREVo)MfGI#j%ct?-6_Hq<=%uP`MA<>jQ>CzX6H0`LS4!pMApv?S87}0f{hwoXK
z6wB}o>cB~_TeZ!-Dn!$$c(N>k`q^g0%QCW81b0H+(hYR+4krdSAe<?&Q9yeF$H8qE
z8fb`<lO-OS2l0YECqVm9L$dy~qb{fc#*>8p+XEq0Y!J7U^UO0iF6aPjmjO)?#EB3}
zfpq(Qe@#%*l;1Bg2dv$XpEC!cZXW)v29LTFE{H*pxI91$hlhfMv&>WYqOPs4{bxZM
z3OH6KO2v#465V%VsqN{96aObe)tH!8!??y?@i26U7K>>343~we;9+wqH!??k!iM)y
z6KDizvg^LsA6!F&&<D``Yfi}hU{I2qiANt#HmV#J+$(aE(o*72k0Dj?7{Q19gC{=h
z-_jtt3w4Z+J7ra}%p<ZRw#H47E-}~V6(#K-lodQ$Rrj?%Z!YG9`!E<LU-wQ6X<}bI
zx8}cr*>a|JwQt$<RHHT7>7$AHY$+2#9{z#l?%*;umfvy`32h0oVs0(MeYqTIw=ohd
znIYzWJYOv^^CXDs3#01JvARCvr7IR{<|9z2?Ax9Z`~Jw2_Q92!-3gG;`wmK)VyDU?
zd&OF5W{Y+8GELCsEyp=<O@c)uROYkTT15nlwS$mde%$h|X(})ipEG0IqPtjCw)mV8
zHmjq7nUnadA-iT0n=pT9>xx@<yu;O&0>tp1sAFyJ(6A@pWfPY>POzS)lXL;=@F;%m
zLN=FG4R%r25`gX);nAj?Y*@kM$47AxWm@?z2Fqk5n2(URD&;)%2A_p9_Qb;=UhxJo
zo1;r=nERU*Mtl6L>&E{H#Y=Yve4}sn0vqfc+=7_zl8{LqUC_1TdI1o49EZsjC>9Y=
zP(cGXDXWs%WV172xZi&$Ab6iS`FUr)iGnX-e9M4J02hdT9p0pm0hWA~67|?fv7g`B
z46<L9uffdP5x5RUf6ylsNzvw<>9rLcCSJx={R<PAY_ZRnlOMis!p{O?sZ#a%Pgl(G
z({h}C;Cb-S#UwT4ZrQfd&wumZ`!>WdApm{xZ%7-N2^j7<0f`MQS-)=-|J*oLsan)7
z)i+wu1<7IowwI_4@S<A*Hw5ZfT3=zt=A*rBrS}0t_BHC(xz0Ux`4@NG*Y~b!y4ql}
z|K`$?ziV+gEQ(w_<roleUgAGDbpR<q*1vRReuq=<;9DVa6yL+OYc%?0e=rMhORH2`
zyYx&&!U;h1<T85~$D#;_XegbdPc|vt*3wnkCj15=OR*u_!8ph_4L=16$fuoXEX8?o
zD&V)xnHOj2bEThm)H01kBcbdic?9^)97$@-81U`nCX2{6MD$MzlnZSUnI=li4b<9Z
zHpP=9JN-e5U3??h_I;X6Qas09L0RLAEvq>rawehkMuF^o0~%+;GE?(sxQ^G=J<eH8
zxq0SfUj0`_vpKqc7a~_Y+?3vF6SAlDK_)|LQxBTDkCPq%W?WVF4B_GAL$BxCQNWWi
zLQ=R4OOS)S2VRQeYfj@WpE`%x&fV0@$oHF3AMVRfM`W=m2#{7+W&q0~$CVKvxv?=o
z2tZPCQzhUtwEKI|&>^q=YwX@M&q&S3Jt+fgmVbe}UylNYfnB#|H=0<>BATn+pir*v
z)LGlGb^w^t3=5rIxT&yryG_yJN@UR!+EP*_w>F2cHj*Q<;H2|(=@rtZI$0DF885to
z@+ay;iR&^DE<gE|S-CZP;Bnb4{IS<ii2@DkEU8o^f7sN<D$-GxN1o#RSNS%NBMr*D
zO6iXL)S38<!h;6nx}Sn*g|_$XFfnQI=)@(EkWTs!a>mgtV+ZrA%9F@*&4vVh@w~N#
z$QOCtIS7~(@n8?wgo09wOIcCyT1L#mRvr)a=|x)4X%<Ycn2zx+XvyCN#@<MvLmO%W
zN`w#K$yUZRq-K*|=z;7yu2$3uY04<)D%L}o)1VOz*N3A)rU$t=FW4jSPim+B(26WG
z6|Zd08YP+a5HPf*H&J~b#Z}#B;EOam+Wyujy8_)E_1R|qse%yK@UnLLp5-UoaT*AG
zbhs=$Rn|)@R`x+hX2wR~wTx<vShnC4x6+M$rd2_Vo%EM*3-9p~Ukux{fsRPfu9ePK
zFaTh~5S=DXrQYyty6dhT6XC^DCCKL-%f=)F@$SDFXuWwxuSU{t-4q4eAcH+IBKs1(
zb!Io@!!m*al9-`Wg^8<{_+IjJIGl+=)hkXmgT50rDs3)*%$(A-D3Z-Vk@v<xs~^?D
zr;e#+s&>o~$f3H5J?@S3OPyGqj$fZLB7Zv2u|B|=C_O+hy{*DFYfp!op21x0CL8r%
zUILpa4J~wfO}x@=<}yCSJsLW9b^h^xe6}YC={_ciZ+Y}TL_;MVRf2w97F(|Nx6F|F
zRb3QCE+)QHt%=*89S4b_J};RIC;LRg7Lip8zzYep_t)tIBDPHo!B$JsX~pt-@u$18
zE5rd|hW};_j(WeDmAcK25Ybx%_T%-xkEDY)-p1v+n;j3ZD_8df!5vyGq@U$wk}7My
z;;8c2!K25txRaPRObNUbKdkNP^q?&FJvud}VY#E;ZV66<Kv!D2GY?(3`fehVgM{C`
zWf`0K8F5-3W}@&72RjJ&hea*t&HnKPAzO04%xTe<W*F}I$L-SSwr$+eTrM@2t#@8^
zJxsyoI8D#!s~Lt};kCA0JV6G)F<k1*_~<+$Bq;03Knt_^$aYGgdOu!|n(U{%VmAlM
zU(vSuTpSb#<!sYZ=i36i_!qM5{OolHl?f_{dXNCGJbMR?=FvM07>U{#op(;8C`7Go
znbI7i&F!}`a&hGTdLU)jPUe&W{84mJQ8Tn0d*DEb5|?2OYn~qFk1LOo$7TPko6X}z
z4teGV$e{XGoqGHX!%1=IO-9Y{a!^2lzClzYV71;rYQfKwhQElXnc){td>A^f3EW6)
zk{ZRqYaDj6X7VMmytPAa>w~VVHPFytnBVYKkPsN>_Atxy*N-<}E@h7V<+gUNuxy(n
zopaKAp)|E^p>ZBjm+n8F*Lk4%!WhoJp|mR@!L|DM4#*|gxnEq>{gzQmLf4Y6EB(kJ
zN=8+-ZE$!F!E%@DeZX{UdnHbpgQnXeU(Eo(&0N=ptTBEe?q)8V0L{`A?cjOEl*nh1
z=o9Ui*}@kRLto2tuWunKeV%*mCRULXy||m8O{5i$|FMRZ1_U3%{RTe<IM{iiX6Xdj
z5JE_mrCWBYm9BV#%%-Tv7PrGATmzgGgXYf-zJ5;0>gz*?@@JMi=>)?U0sTGQR4VD-
z&vqJqBww<VT^a;`3OVdsgI)um2D`}6BQcdEqKkI=q8G#maE0Vl!$Mln8${bUi4;rJ
zS-<KeqlTk<>a9&1BV)L7l$EQa58uFqtf^-3b*{rGJRkp`6}~+(actQ|A#-}8Q&umj
zW#tkwhj)wmJV0A!2HE~{6bfTJA2r5y+G_H;F!++{L>D2p2U!c{+T{-T?$V?>p%j|7
z=iURd#yWoU=%rvz8&q}YINntB_Q)v5s<qZ+^+3cdx7k-ealOfu?R5kHoN*Y7SgHdG
zn4NJt8LxpLEAX&BD5yzCwt_qyZ@_hoh{s0XQ6|6d!7Eo*-7ZM0PzoqKa}tMKO!9v^
z)u}(4XP}F!0y&4MFeOqb7YAgySIoeStrpT<l@MvF+0I4CkqxUuk|R*EPi=DO@L&rZ
znw~rd%`=)HHxqD8^&cOkgZb>+K%G*R@7U!IZO$0RMFTjufHTj`d>N9xl88}3nBo4+
z)smB^NM16Bvt76CGIC7dkcuO|7iP(iu3C481OoS~XyXvn@&;EOC3&T#^=g=e@8IJD
z^O@Z6wt_4f6X;U5TBl8PYJzV2vRdIoqHnlizj@u&B|X=^s2;PVwXG`=T{N;J{Dt{b
zx*_ZnZneGV(GQ8QAr?}aXHijh)Kpkud#Ub_88{1&h2ZBFRBa(LzT8p(?s{_}{unRZ
zbfxFm0W5&GSZE~QzUxM@o`cphCZdKYbVZcc{8c_!Iy6@L+CwNZ+#rd_KdT%69*`6*
zw3VZ(F!kDu1D?N+vQiXBF|Aek2D%&0G2QhMW8Qt>41Gos_?OT%2Et<OsVZ=y68#aI
zMz|P8NW%xC2Xs=dk{G>@KRU}6gGsp!5^{%XHr>U6Uj3n$D{RuP#$7QSVBMi7cVkwf
z?wUMY=}eFSMw!fZ5yKIAdBdxVA%lox@I<@xS0?*ly0VV-z_Tk7)i_CNXbdAqx@fD)
z!w}L<`P{!Sbxmc;v5)>L;+n=n51CU0vJ!-<I4gZ4%%W&xk8fX&EK7vT#{q;oME$<^
zRR{aK2<dxx^f*vdM3MPGd=KGS&XsV&>%-4;;&#)~YuCr(bWZ%z`=<o-QZL{fMu9n&
z7pjz*?61o$Qegt-LFn?UrQtYzG&-rAkk}kO1cPl%tbfded7X_Usj>JtM(h|PvPuox
z%7*+BPn*ZJ&%3{*Xq@8hn87LSSszeSQ;zo-9vW3nn6S@k_Kbl>pW<C4ByKuh1uCbu
zTVjPTQ?~sk13f%kSE$x3*6t_oa*U5&7Q>Knb1X*TmOK^0B4&1MV6B`0dg_VC{4U8Z
z;v{d|C9C_7k?!(Ko__`dZH)@)a?&hkrfI+s-Gn$>yuQ*03Uz(`pcwx|O`vKEvJaeq
zHy*gyN=9g#Pe8C^VBh2&M)&pjnq#sJ6+<&=#Ak7&Vcv~SmWpJ$tHLb=T)53fy1D{a
zqCvmAu1h#3PamsESP-KJj-AR{<G7YA;mkHuxN>>SNN_?L?S;$#JOau>gp7XH1tu7y
zm2mxLvJ6sROA(%IR$XN}=0Y-DpS-v~Ap_J=-D;05A~4J0mOucw8`+h)cV1o$vV}@n
zYo%Axte1XGUPW-tAfU8vZWa(fK<pwpD_eI_5^ZzTG%Qyvf%?PS4zqjsuL)&f_J@^d
zOAQ`88*ZCfqf4E5b**grI3;klf!O206CvFxL86K4ruHj>_Zv#%%e!SC{bESLUY@C|
zE=(7wh|)qvV5te9?Lx<y$5EuJ2qX`}lCxkB$(&fjS&rfZ^TqPqJfzR!c1f(0oLNHV
zAe*#_U_3sl=>LLz9iIPH8%R=cPH8(Bf-fEsx0IyCo+?F3FAuVlodzukeNHm#TR>pc
z&ezw8@^7EF)sx>Hz=@)c0KJbA2*(S*PmmR;#qlNpa8G!32@Av28!3TRw_-LET@?<_
zCkoPedUk}9aG`^3d~kg;pHtM;%&0MNQ;+7Y%Gp6S?HUjIR5fd^Au^!pZ7U|GdSalC
zE9)tGRFPQgw$vfDO$B7gkKf0TN=HA05yX1~F(s+}gg`{xJ{STa&R5To8pv-t3`j-n
z#n&E*ZZXd)iJ-Q%8}~o!1R%4u7d`Vw=sJ3RQ-d|Apr=pD2bO1Nf;9Mh{__}4JE=J{
zu@wLOn(FDMqjwB;4+xDOPE(NW=e}}?>z~_KN!5RwJ+mMQyVG}vNT8p=sd;eTps&yI
z%TZ>TKNG-!G0Y}--A+drSE`O9rwE}&_a`gfjaYixl~%tSuTQV_=>@g#{*vMK>UVwj
zxh*rNBqQBln(aJ}{B8PsPg!HNFCo>JGo|HA(O3n$rZDfjv8G^L+V(6*kOrkCI`+xs
z93-V9(HiJ0K}d0@N80%qOK$dwlXn`tG)e914VoJ;-W#1GUmIOC`ltA+Pvk^KR+7a2
zvnro|H>Az<$bLGG{4UvQz}NSQgXK_o#e#jOh4v|EN~YTKk6J-WA4d=D`Uu1X^0d-5
zl|>u_3tWBvECRsF4ROP+S+^oIUF=>i*BWY7%<MBE71sz4Xo#Ga4q77lw>vh^>fdup
zHFyL;8A`+)r=)Z4>wFa=-9T4VvtcYmn`^2M=IUaPEXeNWQM8BD1?q|&rbpZmt9hNS
z#x;h1jRjz-MbePZq<qQW%-Co-xr>Np<TFz5s0=Wy5_W23x?}?~@4#PCXv*ScMuaqH
zxNkHOeo%s+S=nV~)eE}@+$uIz_rVdRT*bOLSX9DM{rv%+Ae<x=_aZyTE&6b!>M^c$
zn4lLJ5P)Hq-i0dzJpKDo0{J=B6Z0KI`09VGKg5<^V>@uRgyXAi-68W>I4phrcS=x;
z>04W9jL32GejJ1X>GWt~k|C?;LcpH>LuuVLXixzUKXs^{FuZ%%VNT&|j9Te1ar=d)
zNd^lbS<gw}qtyPRQqA2YBvW{uu^zNU{u7G;*G2who?Te*T>S$GGM@#~vJEx<du!<G
zuj^4V=7Swg*tVo2s&Kn0QzBb8cTg)B&}b64A{}1PjkM(62Q<Eq98Ro(>f=JR>Qkfe
zr$^l%AP6U%Io{vkY!ORPumQ27tr~RSESQUsV_f7`tA-R1*8MVzVcq(MZILS27nw7n
zc^7bH&DBjK>B^!4@>4D`lV)=82-aNjpq5Ov2_N}rCf3~5|1r+4U2f+`L+T%Z))`a?
zok8s00tcgDdn9Jd(nuQc1YSc1z9=w}g*6SC!{O#2h{&h+9^ep{(y#4QRnloaS8C6X
zBTBnh`v2GQIFEN5|0f620?&A?hy@q#Dq~Z=9wgFC0m+r$6KZ0I|EJC<U((jN$p58h
zaxo$hiD{|sqkwpf`EvMqDXkdn#%24E(K#qqj&Zl@Gv)b;hpNJ@6?5^Sm-!d3w^2Al
zHmW5E3lo?kY{HH#>1<noBQ@GAc7t49sQ4az8KsM;IhlbuuG=Xd7_nWBO<n>tCicLS
z5^Ybd?r`F5%lar^=X#y!En!hSZLEp8U}t|P`@tVSW#n83kmsD;-k<qpzM>?7J2JU8
z6X+~Hl1YXlgZB35*uq6a(bfoKiF)unfl>it>ZjOKC+Y|@&J9sM0FQPmU>jPCGjdfi
z3adTRasy#cMZ5iW$-<U#zP_0~gZ*b663y`vW9g^eGyf1{g&XW+_c-=IQQ%8bWQC);
z9M9hf<}*rQBw-&%L)?1D#P@s`?%J7Rh_f5ZQSm&Ee5^|IBX#iW58N&O#n&*OTe@@c
zC>!UFzMqhX>je7G39xZVbHsxZw`Zu)0|#cf?@{Yyea4neJuG!$+PFd5Ta5&vRc&MG
z>x1eQ%pn&hV?|J8t(m<*zBwtYVij!TUmmnHN%ra1qyXc+8b9a}*X+a@<_(42J0#*_
zsu_wtOO#Sm#~^rwOhM&QF~aNhd+A-SY`tVY92+y0I2pI%*OinxQvK?$Qfyn+Tu7TS
zVo~S*Ua~$CArC1njHD+#R;ozaYRR(!-!<N$Y6_#J+SJ`4I){lmwaF$zBaVCzC{M3^
zs*&~5?;B$WYQlVd{*ZkA=YSqSYE3b-#o9#zx(lm;L;-q%^t0?;<X7G9Y%XieG?zxI
z>oM$)%QJH_m0-(zJet8=f^5C5kjhXRXH&1?vVNr&3K_G3BoN1!-F{Z4@C^93_40cZ
zP}7RvTtPvR?*{qeeLe5n07$i#&^ssZlmH&4K2cMFUrF|;*5FvLgWti`YxA#1l)wah
zHc|viHu?^6uIjD@`j(9*(sG|kF0Y5eP`XFr4j_Y5^csQ<_#%>V)*PTq4-M1nje}U&
z;iWF|qc-jtP|v#y>f#8~cz$mkPssvTi+~acexaYGIxY<7skd*IJmdN1B!V=ax#ltD
z)$%UBmYYdB({{{!@gf9*1szK@x)WuQck{rAV4fR(*n2mZNM=4R3X{CTep#rz`^WT|
z_h5j&1I;byYbPAT?T15Udmm)es32=f)Y%l{{G_p#hNX+>g@@2OL8O1UDgjJMQwU1b
z91}rz1~zFufd#cWqdm$tQ%sKE-hJ8pJET=t0PaB($3lll#V7Q8rkF731>q|CGtH_1
z?>F@uzC@zn2MmN~`WZEbiu?KH4*@P^+^E34MSz8(d{HqM;X#0^T>;(n$=<dFTO7#(
zbnZ!}8fkZiz7FPLapj-TBq1Ry*D$Fp_18!s6P?J#9Mgpc@2GIM^`c84C^Ua^mz~Ug
zi|WLU>AACnANGI8cQ(At*p%*E!HZ!JD)B#EJ7~zdHqILeeC&iyy8DM6(X{I_b1arK
z36rRM3tyD=DBz7YLm7qf>l*ua^Q<(ggJz&9w~@=7)F_KQw<)SKY5xlC@+#)Lr}I>#
zPPrMqdn`mB_JLA!YOGQH_vY|Rv7Vgc5b0+FwdykqA7YvhjB;af@UwGRa}p4D|GoM~
zQ&o0}333y4y|tv%79P^!K7qkmvosOwGaHZ+hOv@y{pUALgYDu)zXK$;;{nP~vhPxR
zLm02D$S?Ew3I7^<ZUcMP*_?=K&nv}~{;|UhSG3%TsbQ=K^S}`=9+9=Lj>@WG%--1f
zo!3V@Ndgc#`kNWEndQ~GOfawcEvVrUx}VIO860H$l|2Z~%3xIWG-za$Yv4G5<j&kU
zz#~%fMold(N+_t|I&I;}VIjOonVQ?M9*)=%68zH>YSw~!MTFcw{_E3w72akU>NRC@
z44)qBiqlxD&6j%#UDGDQ0U=#_)nU`#3gR&Th`i@!Td10R9ZpI!n{7*X>Ze0LsGlE=
z5i@sEG`4?0pMnXPwRV~aO!yhC;^>v;m-I^;4{GUM08u+JRJfsTr%!e!Zmm36Sg50$
z@PnSl2(kX7c%qhq+)RT^ajJWUXUXqjF_g4y%!`-1O{w?T%0z^I*30<w0EW=~4<<{=
zn}AHnQ}ZRSWw6X0n-qkEq+NdEaf4%<2FoZ1F?qd|>p2focy95Vhsvb0hAf*-Ju*O`
zk_#78Ot-rvT_v6>sg%TVXw@JVxkH#qL;*t@3X;gjZhztI@oQmmROX{|3|iT|=xAVh
zJz1dji<ByDkB)PRU0e+R`)ic~0jPKewKncIJoZOlx@f9GgYPwsYL;{!p?k4NwxvWZ
zR+VyjX>PRRSo3}1rnL^u(qp^^EK8RXp#}@R?7_jDgCsjnu4@$3dU|;6;V#vsDbrvQ
zON-Ndrv&wF6aZ-FK&eZmUo9+Ckt>c7jg?y;PNf{6?c14}haJh%+wS0$*8oroKn#L<
zycd~3Fqn+`!GUDt)%ZIXdMO?Vadp?2NB0td5Z#;d_hEL?)dLQ#H2-8Q1qP%$O1&c7
zo@O<RtM!M1d?Gg^VQJ`9!%7yr0h+J_mdiO(0^r%LgehOnWScM$a3>^|<_v%AM!ZwQ
zea~h)Lh4-%0bq+Kz0UH}3sfq+b!Ob@-uX$6sXB!CX-h1jQRe=Fp%Hv;EqI2bq#3oH
zy*wS6!_L|BthvUO2>VH6@Y<aYlnv2{g#MD%J@w!|_dJ+(G|GSC*s3ff4|q6i)R|2`
z)z$4HQk_`N{0~b=S58&sFTP$GY|J_c-Uwi7nVOF-VkvO!^(9c!SEyUP&h;zvC7xM1
z2gDx}RWkSEzYrz)_n$~ykgvW##V?#XW|21dfLrUdDY}!_v@V+2ATgtC9+xSTY2)0s
zXFr+(?@s8gH4G%;m{_Dwb{07;E<oES@|CnUImUmQNvSZ!79Y+&&uoL5S{-om)97|y
z3KG1ds<d)+J*S)qR$C=NZi|A97IYW|M;U@s?`Iq_V&n-B*ZVi`>!F#C=w-s6@+kj2
zYfp_0d&2J8b?m}XFkr=&O7T@5iW~#w<&-4FWgqqUrJl~B_2ghsKT~{lbMr4JZ%N^E
z!c!NEo;;j-OgOA58<^iX!mAlC2}HYaIT|vA2aPxle06y~)jMlnPQ@0QmDpff-IAE!
zU>JL2GWu0~ptF%k98-3=!)Hx47k=Fwq#WZ$#*1B+=Ab%prWAGF&10l5V40E}hZ^7N
zm5rg#m8yXf>Sqn2Ug3yA!Ayg~K)B9}Dj))?i^+@<8LlR?6=N-{1I~DT7r#*>6ND@U
zqE>;K(p{r=gFX`UB(&*jLx~sBdq#`6#l0S~+Roa)kGQxqK8$0H7R%6XVtgJTj1Xi#
z2CORPvXC$G^%fXcZVTrYvj-)%LWH@9y<J*Nx2HygNlENoLJHe|4p_02N)2ZaypYY4
zM+0J9o%uRUm7t_(v{$3oM}#0gFZ6{~(NRp%xCF%Kn)p-PY{9zot)c`bg<@CuP#kYR
zw49(&%9&64=&H9#H!NMb&k*EpKyA8e+8>)UEuQM2Cp4a}O#(;kZ8K!-#tgvGpe6Ql
z@`9#3G6)E9QFatF@u~n7mPMA;3tmg;ciyT=xbJv%9b*<Se?rK{Ms-JEjF2Itzek77
zqg#Cr%)*+ab8HC;Kyh;kvX`$_1Z#)291(|A>h49Se^8xDUds3UxiQX!CqDR^bY3I$
zYi`bdyZ^4eJUBgKVmhgd80YCZZ|0WQ*9-7K!=*1FK*M?=R&2tS3+jUkDG`9St_~-o
zskP!BL{l4<u^j<Q%y5z5!$)}wcfY8OXm$u~-5)`<j&PXk845gaCedLY1FWlNIt#d2
zo&7E}Er#kR{3muxUyK|mbS3wZ8Nd{*e1>K*Ud;~2#QIHnO?zJY-;o;bT_HTY^)CC1
zb>s*!n<t=K&-lU2fB$S<O=~G`v8MCZ;GC{D23X>KzyPdb+}~BLQAd<qJ^Ri9V0z|w
z`aGlDrrXJgf9^{`9A5)PG&)}8^TNKbvSshCJKm@Bw-PCSK`-K)=4?5j7hM&DPi!l=
zG74|W%Z*nUFPc@PfAiM03k-@@kGjvwX3I12jSIN?w7`2@IK_UdcSa3@o(FyhJ9RFR
zU`Hk`GC7(tk|PYJ2Cnvxy_}jnot$?R@4B^i6wsW=gJ(hG-I8#3ydkVl!L$e#l%*Tn
z#$z-gL>=ToV{;f}aGTq}25irXu%6@5GnsaI|AGWzI>0x}2$k1L4r}b6h8FRnahPl>
zFD~S^124d5bglxCkm*qZxvhjN0A<0M8iqAU8^Fy<8Ok5qsZ&KUk8PS%U9|Imv31eS
zm#2_jXkqhGo%E5YPPT@sPNZV1QE%sQkLrXo7Nye?iA<J-qJXz(rZW!3hHEJDR_GdE
z5hGUf^JjWYyLiJxh8=eY^c6TCEB~-{sGP}nRCe+Z;%TqPvcgU-<4VKERUOwJhH+`a
zS8!ak6LUK>Ca~KrW)Z&oPA|oIT4h7yWkFnwz-CxulQMO$*|hz67O0Yr)Pv~utNc&u
zk61ybHyqsZHmaUk;vmEUcv)t${Ey&cXQ$H!_}A=95*=&^tpz0}Jhe}_6+gbiiyHU+
z4Vu)A<;d?tWFRT(r`B}x>x7qH<7%mEekUiap(<uyO&!-{Cxr_dcshr}DBxl@v0V4*
zoMc|nJ-|t0!{5l2DcX}-snSmC+2_jSkBPTyS{;IfGY#}_?kRROl1e5O{X4KE$zeY?
z!XdPdm=A{j0Gkf1iTI&!y@|#A8Vz{6hS9>}UyJ7k;IAU)rj;deN0<33vKB(gI9DBu
zsGABgG3_d!l&anZa-c`G>M=IiewKNE;erZA+i+->cw!09@p>LzxA7_Dl0>)5?d!F|
z`ex5VI17~R+snI+dv1!be-9WK3<AJTmM3H^7wdPOtnSLCxk4);E3_Z-4aDLPvC;yk
z%X*Eki_sm?3^)H^)i5}<^>`zFiObdfa+N@HqOEeTi*3)tQ!nbTY4X^mtr|e!CM{oh
zW+AcjV7tg;Y7ItrmHV!%pP(zKINlz}mWTWtc~{Ze1^ms)JQNmx<Kd&rU(Ar3xIIjW
zO`xKR>u$+Yy%re+^clFEOi_6oyf>#YlQ)yQ1j(5rU_2Hys|TaC!f^u>g^8urSQWDz
zKVtncRy`)lpx!j+XsXM0PiLW!48-Z%O$YGpH|<63ms0r@$}Hzcr+~jWAog7G{}YFc
zinLHPIK6Kl1td)DEeu5qH{>Licm^(qBwVzJ<7Y}!>^32!+-?QLSxWv@(s{M)E^_k#
zBw1OF&Xjz77v_LIVYw*eVfY-E>jYYe=b2J<v@cahEtq20-URZ$bRVZ6;CChaLPPYr
z+9iUozC1L|toQ8K=(|EEXh<ykPnedoQ3U}_uHD9Wp@<_{#D5VJe{M&k%C|t5Szj!7
zX42yY^m2S7JI>9@*at3#yv2JF;z{V#SQR6U2jxO)5uYDzLA<Dj(&E8RCKAhBVi2B$
zb2OlACCJdXW@cVyywKiJ(b(Z-2vo<x1a2G)_M6t8%ucJ-#oaP?rL@HMd<^Zq3YIdF
zyb-PfNhjey-7TYRxJ76^xWObQ+cOu4FjUI*d~EE8vaCp8`o1iEwDyzAahA8)Ld!tU
z)L4mWa!b`lStc@0z<38eHK|Q=%9bu2^GVu%3(y$L$9ji=&Kq2TP|DOfiRi3XmLosF
zv4*)@8tjv4t^wBy5lNOpCL-&|ukM4F1zvO74l;Av+lN1IrmUg+=%GMgNsR!!vm&$9
ztrmd+m(;oG+<l3r6{0lqy2SO1CQ<5A0zxa+LRFfD&{Fv-`$tv)W?+c|5Ecd2y@<5K
zYX6>K2#9?rNx(s=(tX}bIoWZnVZCG0J@WWgpqj7@3mvYHyf+enujG4g2wxq2&+A3l
zSr&<<T_U{pQ|Aczj$$OJwyW@R@uvs2o_ZQI6D_7TNYuC_`>B@UA7zgEGpTNLB=J+D
zO18T-Z=K7}I^kxpCZ+pYUmzK>Zb99Ry*;1i;{U_{VY@pz3|AL7)ybP4F5wI(q8d=N
zWn8At|NkoGDrW3N-sl?gvYC@Sww1!Q^z|2SpvW@3p?q96ly?UAQ0jpR3F5=i19;ZE
zf{CTIRr5i$9MlMB4f+mBut>twv53?{p+7vcYSEZ!{e#^`m4R)4*#$O9<$^cZQwZD}
z#tCV<7H1{}JpL;LK2lT`mMRt|zkl=`S~txx<(P^6z0cgp$621HI3|$K<4|m+#)gV~
z2U+&9eSVJWT4l-z2-Jf1J17mO7U8K1&oQ`gkgA05>1$|hIf$@pu~O)GT=OIAt}(A&
z85~~6-=T_rtYqAHT-?Cs582@E$u$8hvEH?{=B&4k2q^iQJ*)G_0M0RMOk~rY>Tk({
zGS?}r!4n{mvx7PjL7?BdR)^_*MOaV{4Yo11%VfF-vK%fP493?_Z0d{<C;2@cXJml2
z(>EA)_bh%<sBGzKd^0Reuyo?u$kIGdlF&(a3Q_~xhHWGl7MRiUKRrthOjX<fMSq2~
zhWS%uRRqMe35`OI2fpa8^&T}EcngSlqgRO-`<R{_Gk8Q)Gu{$>X}3|w$-;C`r^pr5
zRF7m*lqW{GiRJovJBgs@ZyA55+}npCa+g(bgoKJ(ydV`rfD^*g%tTyYF-|R3Ey$L0
zT|1XPOl?Q{u8|~Uv(`D^sj49d`sykjNR7pcA)?@#xqu4ae7qEB$<j5_PpRM~>$96P
z=-~wGl5x1{Owcus-!h5!Hw5R&7(l%UJL)$44hUks6KX0(_O*8|i|IR+qX|Uh$%1o9
z$aVDCstHPDsx|4Aqn|&*md=w_^3{ltk{!BW_%=<WozJ*sBJ5z;SiS*;@1G|s(AHnr
znm(64wWDA-H0r+HjlM8+X*^wu_}3+i3Av$*j@<!I%jI&n9tk-qv~2Sx%xca#G=vGl
z%*cq2An%F*GOEHef57n^%D?q18iO|HCP4V6i1Z}+6A6>BNCLz>7`RwNn}VdASujOp
z)4}T$7!uRI(gPwbSq~Tv!#zKm$Tl}isCTGEpPRg8(02?F9<Gvrb^0ZyF(W1CmUCFw
ztpmnZdv8fHvPZo#;_aO=`!n8@JZ+nv#BkeF7{w-h7l3<BK;xwh0~>em)Mf?nL*)-<
z9HpPo=62N5kL6xfPa0@>T*fp{KQYNoVyjClUfF_pY}10X4Kv7nx4vCJl5yMxCXZ7-
zllVw(6R=|lSWM5c#2>Fz<VUw2%zHgo18>0C(-QtJ(X=)2KJ``kKXn1zQ<~C5<qup|
zjZXvY?vT=FXD)641~J)B)av7Mqn}EX`T;*>D6}1%7w_RDGtT_RaD;|nDe-%e8}2ia
zN$v-bFotG1-ySE6kwrk7oHR?TZPdy>^t$`$(x^2%drdoSD>F$Z8;gVq>W~hFi}NUF
z6{(9xD+V;ou@*I4v`}Ai&ICPDb^mvs{?K;mU3Ne#GIP$hESQo+`2<zceqi80mnpHI
zI&V<kIr?{Y6_>+Yb##ucRV{PMVOR2acW35JB=)3O)#w)xWmFE8UxGeT^NLWhcAM_4
zi^okPdNu+i@a#4h&TxdT2K^gHnQiEHU@csTh~6PjJ3JlVDUY#PQIE7Ys`TnB19#_n
z^4l9{GXa#5N+tSQ2n=I>@(Dnt^!sARAXN7!L%rL@w*xy<_V8q=<;^0cI?sV*0z$@|
zSGPn_S?Pi?(*c^Z@hH+%F)mzW-f$~0Rv}xLBo5d?7|VITmdhul$+dEHm!#)b>2a;s
z=^xTyLx(>E0nlFwuds|EpNOCG?)c={TSWWC%RMKCjh(V8D{B724H)9f7}=}1oW6E^
zeWMR?D=V)4juS-zoSe)e=ChZ$QtkTnbWl0~-{%i2_%|3e>|x7t1>&$@HLPSN6Ka%~
zec3d-k6Y4+LuD-_<gQ0{XtwWImC%30x&7EOsIq%Wip$Q>HbMK_K_{e6GC_mxrd1%H
zE1=bY*Uq}hWT~XxL(7AKn>C-Dsi%Tu@7Ysq{LlQx445v8GJ|SXYsZguc3h(RNB%+x
zPl3=>{(O4;zLdq`kA?(Ill;2-P2w}{-dLdNw+A7(gY98n<wtsIOc&)1OOaUo0E?8P
zS8ua10n{Osp)&2-N39r!l0K#~0=uSqU1;+n=#}{t)W&kl0Bh5HG7xZhCt6L+1G_Ks
zAO0<;++vkSAyCCseo0uQFT%|J;(dyI6MhMO3Z3KmvD<|s39er`J(3>#J#SPyT3!XN
zFmhT0Xn82NP8*8{7!U3}@3z^(H;RBEZ=8H^#{u`<_!n*EKJY0-%?&QV#&6r@D4AWn
zrEqen`<_AalZ0sYcG*2=mm~ZRdbip;7)R)kYR9B~!viL+j=Wjv;-1mnuNByNIz&td
zplwhZ?CRjvy`{TK$7%D|N4AaWp1?`^kfF_hIkV{G*c<N}f>}Nq<t2colMs6LzErkL
z=lJ8Gn<f40to>*o&7;zIK?s$3*LvlbtUO;uhVXguvRGvhW#&b6DgVg&9Ti+Xv~{wy
z6faa(?j_;oPGyEgKnS=>CRNSk_=wknK1l6-7)+uWgE+2+^tvY9lf>-t9|{=e)v^h;
z5A%4d*l8F6@8L6i(Hu~IJx#?2P+JIliU*=C2^$PHkit@LKz2KFvkDp<$_5hy__Nl)
zf6tho%aIPcl-17~qtBi66E_OJGNQ?k-o6oob_yF_KuI(0Vn|K0l}cI?VbGES@_bJc
zW7y25Vs@StK59R3iH#f*;Y~AuRrOhCcGMj^nl7hpHpjyyOy$Y3ua9xE8laP#WR!=v
zAjA$4AXX;)_8?<ub{Ib4#MPDNimkx3^t1hD7Exfpr&jkeaI)tWteHL{M|&K3kwG*p
zbaCGQ=Vg~BdMQit#inqO@y|`B)1fzKN6H+Ul3_}j?vGCIpzXlbn&1QhV{`zq&TS1W
zwPkQE>P+~086Zg+-%kn>3-g`%R)9-<J_R>uA4?o^iTa6K>e6_LQE54V0gTnC5M$6|
z?7F8Vi&pxrbH#f(%vxq_;FvP|?)3Gk*PMppR@O|*3K?-O=Y_Li;uc#mQ}o{HPCFTb
zXl*VKksXFPOmG$$9w$IkKobo_xyR4SQwnb{3?cpJwjfyxPh+4+yha2E*kt%x$IS$e
z+_7Nx%I{#ik=Jt|z4_bYQ|VnL*EEYQ8J+eocuZCJ7GRw>oRFkvQ5Er9=E)V1Q~al1
z-c$?9AaZDgJxP-;A)VI5rBzjfJQi*s_|JEglsORwWIPf@0T!S1^B#~DvlJ4i9i5A+
z{tXgAEn;twzSh@==G+s2bJ}ZvDJtQ!e9Mns@mcf;tq-UN_8a{Og-Za0dT+$)($2kJ
z4Cn@!)NGjzL>5uZ@rBMANf6ied*nWW-Bsg*!;EnBe&%fTR1!n_0;7$of*2j#Oa4dM
zJAl_clX+a<RH0g5MZf$Cshr8gE|2~x{_iIpv)B8=AMwZunJ?@ONn3+lErV4crU;sA
zgur0Zf5BJ%g}r1A$!O5WUA!o!@vaklq|4@sJ7FM`9!K0_@?IklXuI_eET2mcoZEnf
zJBgIjbU13(*;<x!T4^6Ig1PedpLf;?#6vh-c9Arjhsc0hI(Mjy4^<2Poa_C>sm~@g
z=v8MJMOrX{gGGV}Qq3xZbMWy|`Aa=%%k#cSo={h1Lw%PwD2uM43j;(P+Kp0l5<e<S
zg>KX6ZaZ)-r_!<!HO)u_*wHC((c6HFe*Y+5R^6I{5kgyBPsK&J=tjd#vdm~;@5xI;
zhcc`c6sg0bCXB_~sB(E`?^yv*nuP?n9Oq@Maey?(*c(H=QBI)Arvk%TbLg+;Qwd!q
zM$h1Rb!Ll`GAN$?gk0W*oH-Z7oEZDU+s{wbHKgkta8re<BUqW&EV*NFxn2aqCkV?i
z82P5Mqr60i3_YO0ZE?|Cc?}CF_Zs_`OEC#F20xwrQ)7mCy4!fBn8JRWIxrcA_g6uT
zaILdiiRh1uKm3=dM9M;0`(`T00LfQ!dk(Q=n=mfpQlsBFPl4jBDG`3~IlsrR;b~d&
zbJN`za0OBjJwLQYyxVLoMQ7k0Q}jp!ihxW<=wU2NOFT%(T}7K)8Qht(A{E3PHIvF!
zrASkhN6+_5l;leVS_kEH@AfUGj1IR;&p+V8Vk|QcX$C-cK8a5Z;WkdwN^LV?!#t+J
z*qgdj{GARkZue|tgfKFKSMI5&TUq&AHZw{$IQuiQ%fGKS%E*N#(UyXM*btw+_>YH{
z#(1R~*5zl4R(5und5JG1ao0TM8(<cGC9{m9q>de;)!oQBjvfj1$GN|-06Ayzg<M&E
z0_!zXr^Qgsu)g+}NyeEZh0EVy5LI=MFq~;N=2a%OW>6>|V9rmC$h~Jd-e0-uU+a!5
zKeQ(@!#u%Dam34m!}(<v8RzmJ4NP(=%<jGAO2_GdkT*`~3@1*GyKYUMw;^?X!2>)a
zjf>^y9lho&C|5z}bk94^>v4iCJhrdmFgoG(_*NsWUaeo86(*9IPwv%N@u7latf;B#
z>kus+j&kmnB*+W5KQ&Zq3UJGeq09)yy%W$osi4&8H~ShTz>F=2J@4h**1ZFw6ei=3
z+CwHL?jP>t{Hh8V8zM|(dbhATEr&rTXI+(9$v@kDbYj}~d^K>!l#*a90$F56`Fj2u
zGaZ|lN?U$f{B7x07vrdTKR*g*bgWTtnpF_Z@XMX?b*;9DcJAq7?%{!VY3xuuZD8lP
zle4c@k)iF_9C|Vp^q;(~39Zd)ZaQRH7dM3?&R7ldM^Mn{2t&$#W3bI+T&k{;<tAV>
z6?{~pv8@B8L8)N-ZAi#+(v0K7RkiBSggD?t2R^6y5Ph*CEIajd<%86<9+d;e-0QSh
z$bP*@``9gBJk8O`EO^y2tgrHX@YuR&2T-|CwDr%hpT0r9PFZH2p-2=fbcLwr3zVc|
z|3^_-lcmM4%!8$>KN)J}Xp?MG#w5c{?RB9-6>JuLOi3SDGQxfLS({E*`j_sNj2A>B
z1tysOgF9K#5yOhFn6gceY*i(Kxa2KAN*bjpXjT*U10p<pap!RLnDwLz<X;bF{!D3R
z-yKN41b0!SPlsdsn*!v1d~P3aD`xPzL;(<zmO6VEL46E_4XQhvsrKqQ^~#moWKSmA
zppTc7v@7@mASS4p%Va4)k?v1dex+M*F%RiFs_7v-3U}~!o3jBNkTjc~W-f{6ABK?}
zc7o8E$lKRoeD^$~4O)NJV=)$Lp++_G#F{B&!Xvh{EhgW(Xfz8l(3Nro6RZVnU75OF
z>c3i-KN4-U{s9@g#{-Z#;4os5*YkKh&7(GZ#b}Tj_sM?}Sbk#IQ%F@2dRZYi)_nf;
zB_G~Rr-tb!LcPS*pbXaf>6I`|=jT&FM4O+<Ec2HCChpZmc9Ge%rG&G*e>SdMU@&g3
ze!oJu`S86mJb>0)1tL6V_E>a;LN;y`{H%-|e$KkA&XzrdJ+Q|ZWp`8z5ncxOZ(dt{
zQ2D#Wmv$?F2#_(3pHHvj2%4_U7}jc6wLSo&MXEav2Fl>G3M}ierh9Ms8Ee}~FFM@M
zme6l<q;UIpfd}}ZRcW|C5|Y<B)q7un;LWeA=i`yCdb`CX!}iKWWEWP%v3S!YqvIrL
zH!yh-e?WjndqWW=?04QsJZv2#;*Tci%HayBv-UJc-CQ?d+S4H?WXM(-Q_fmFKC6^a
z&9t9*?Q0Q#yQGuQ(-MGlcrx|IK!Ccwj*yCDby~1Fe++}cJP&54Bl$W(Gs6C@=6czN
z6~CT~{y1VNm4ClP78!umUi_6B`r5>{ki}$bQ6HIeMMo67h%TGV|I@ODt))LoV%Qa7
z5vx_vo3&msX89Ozr3*_@XcF^`uzX7)%Rqq<e>y(9*pZpSqh=olqfS7J@zCL@ZYX<L
zcUrd0q}UHOIffowhi#g<CmsUdqV|}9CIM4eHpXK|q-2($+JwXuVI@OCqD5W&^vsmb
ziESA@`a>{1*ORZNRODA?eA_9sa<^ET@~;HPy2TfNH!Qc-2!N$3;obVj&(e})aU}Ys
zLS7`~_sH$D;R)-3EsYecS`k#ko&*k$QoQEe9zo`e1s_-VMX2S|k{D*WAd}tkFQv38
z*}`t&_A_LC@afH!Q@`J}K{9qaYLGx)LV*yG4eEXX7}e%gPG?R~d@Q2ck*@el5Jo@y
z`q%MWtE2XDU#~5~?eS2Sa0`(n)ZvPB2OS9B%I=r~w{t~<91@HsY-@&W6rD#GziW|R
zOc<g+Gf3cM)3+Knul_YI8@_0gPI4eY!Uy`@3cHRLl!HifQ8=tqvk^jp=SR+tNqiBG
zD``Vv@Lk>v<}QxN%~SI=g(ibbufWgu{hqXByQc?T-%wK%y;Jze^Gw%PoNvwWyUccF
zY*kqwDz_GZnx_VU+A)3;GW|WAnjdD>o$Qy68l^=e(QFL2^=dS?UMERGK%7vyV1)&c
zMvst6x?8@}AP7hihXm(yxjZ%XbAv<KhSmN&T{AE=N2HB50uKe(&HYwvpl}oIAEO=&
z;7NP`<J(d)4#W2`(o7)aYE0Y)SIeZZY5I5n3_f^)!qyGH(?UCB*y$Q1ejp_BsnOFY
z-D|?=>I`XXLsst}93<oWr{AejwooY4@dtYaytU(?2}6pCNXR|3j5cy}B&59kJ^5%G
zT_p)8C|HAU5mClZ{g+22h|mV=S>?to`+KbNNVi@f5XH`;k7Pb|{gWc$O@OqCqJ~Cy
zKzy>Nuar1PKIXXpJ0>ov3;6_F;z|WRs1Bo9WzhL8Pq6kp!wOF~b(Gxr-=njamtx<%
zBdgL66*f7$U@ozKO+)gtb3;#}!*b+rrl~5Ubqz=oG=>|qL76CP-563zzX~-$d)LjO
zNA?rq`k$L08<4B7HG)PhmR!%ql2#aWtiJ|Afci3u3nT?U`49vzkRQDXDnDwtRybS#
zU@u_O<+j$oNDiw=m*LHCvaa5ok|jFy;KTr2ThP0Q9??h8JrEuonJVBZQiIZJwQQJ9
z++PK9zI9O2gBq6CfE>&xT2pqN^4ea4>Mte<SX~5glm01F_7B{Up7*Cy-X8pw1Dm&F
zSBF8hp})#(W8!!4QjSizhosL0drp=PBlGUC^@<%w83dRNjIn3_^&S_Om?)uj*b6NN
zlZk96TZWvJ@QmC4&@4L${b^Lw?Oi$Hz*7PL<cfxcWCUOzj4sHQnKb#^)pV4Pv&Pjf
zA7Rg)pouo8xBR*JzfZ*g^=^YIkXQ)F=_Lu=C+RkhFV2F~+IzEQ(8bbR4iVxjb7Au3
zDQ@P4uC9mUPjd}GceB>{rJ5v#I5Q4xpElH0$+6M-pfQ*Ga(>~)zopq$1CJKU^5C%P
z$1+Ff@v#%-E6?Z~)T}p9ym>Q&6L?{=OC<xP#sr`!?8JSN(+IYMi=|Jsl`{#QW~Yxz
ztWF^owbo2v!#B}#>WX@@QBti*Y_T@?XpVh5$Wk+l9;S_O#17B?g^CFlN&j_7h)eO)
zT~0TwGRqkUyZ#CH(8&WgPV@z`2!CVHd1^F<P=0ol2gw(21>As~WDI`{XXoC@4XUf{
zesHK)hd22NdFlxM_=Cv+=vG9rH=3aHGmG7+ZIC(K0(G!pdpp%Rsvz`d{g}60yBK-2
zpZhAc3w9*YpMcZ?Oz+`j=DvVaB+2#nf?U*yGU;s(P;Hv@l!P}?kVc?h4gt>>{7LrO
z142RP<hSRJO8h%7HLL~R;etRn{lzNb^dc~dSbK45aP56lYZq$fJYU2`)ag3_C2ga!
z0UTiBHgLvEQ)#&uy*254)p;~D3L1ea?;WYB<h}8kxV`zyHj*vhv3{SG(37Hf|IImR
zc$!?)w%uP@>ee3*sgHPppj4!zrf=?0$rG%&hP%X`enLbe!dTXya`Av1BJ1%3dT}KR
zeeM68f0=1#N+eN{beMz_H9O7+kZ_Jec8K8URq9pK*DligPiw`MWz?f7h{1yVVgbgr
zqy;u>x`$K2C16zV<g`aT@e0O1%`q%=ABB8aS$m^&hr<aILUPC|6QxS`OSl!w*?}iC
z-l#skl76w#0N4iq7h!m9m@5xutI43kMyhcbxVkrj8CDMHOQ>oVU9QsMK_6B`g8?g$
zB!r_(8dLkwp^A?yWd>2vr*kY5i60?v7%+A*ai&)aQnJz(Lxw&BK~b~aheoXDu(MDJ
zW}JiD1BN9psN@1|V+D`g0S$(iREFUD_a@S)F9F)XfgUsXF88Z}Gr^%_GA88+MHxlj
zdc_PbS2S=q{CDV+Pz1UUQ`ezs*(yVd$)AP#Oli&$*@~}Vt&)<U03fKq?bB_Mq~>@f
z&QNn~z9FateV!};01KJ{r~-f;2!D_cU^V}Cs2SQ<Rji;XkMIUh<a)d&WCvUumQOz_
zYkMKO49j5$=I`>cjCy{Z&#OEcA$e}A5N0BOe)D?I=a+(jCGV7nou-|hUxYl>J|NtK
z47Ba|8M0Tt&829+po4;?a+qA{Sg`rI-Kr3lq`CtvI4=r6cx$00FQb_4V>(lJWQ=TF
zRGqJY=*@{h7Jzy8_B|67$dEe$tpNy<qMTL&Q9Qz`j-`gv(b$u?sdm(d4<QdUEcSY9
zwwa$7$Z&N$<VzcaP8w&Y-WJ%-xcCARpLU^p_THqaVvjP03dnYUVz#p<;YSB|pHsTo
zr|bf~u-nT&;qRe9#f*ir@>iXtWDmKWWd=&CT66t+O&(InL;uIJuiJ+gF0CBSm)%my
z)}}`Pfo7GHbx#^cCiYe=QBIliWLB<c0#&8rT|Iq`=ogF_qmfIOys;<DL?EmqHYIVF
z-gMzk_Wi!oY=0F>Nhqyw#~EBgy1~)M*nPnceX*Yl0X;G7Coxq09(Ssm4YXjhV!XQg
zg8=;D=ZqX@RZl#<2WRpl@}9tksQa!Aj_iSLbss6<PyTrxKs(176f%r11%3|zh55uN
zFL(U|-Z!%&$y|kUwFUKCyF|bK;%6%Mbre`Qd@tR_{yL(AWsi|z_w~nG2?f~(>F;6>
zMmW#&^G|;<`*N)!X!1#7*=Nq%$gowyrT3k?m<@a|9r=ld0-IAlBLAE7?Sq<`IkgB&
zeW^(<Prb+by;FlJrR-QHX0&|t%wmS%2>;U~Y(r4>&2KZN`(=}TbW+qB-B}AmVUb?6
zF6P!Ifx##QeNWaNaK$avC1rP})TT&3pufGPn{k$6qRvaLkoSB#YTYrsGZnI6KOuU&
zvqn!XO&Cb^!({dmhmO)hLhI2?w!qp=I{F!9!3+x_@+9;dh>$MpJ~9t+CR6s{pq&?L
zlzi=nxEdr2!L1<GHLrF=>IJHC+*@?cb_sg^nX5KoIjnk+)GBjKs#yN;?6z<niYYNc
z>wl0~<(TCs<PMlm4i=K`a?QX1p~G<Iax#=wDe9QL5V+z>U~&cFs4&d9<N`7utdS@G
zFmj|yXBvhAYFdb&WXfjFylSyYB|U-u+d|I)q@tIwU2q=-)7*)W!hGxH7g#gL<gdUu
zN<ZdF1OuVY2H(h=_92WSG>s!&ZGY@!WU#x>(q`aCBgv3GqHT03bllNzH;`h09hT-m
z5ekFwOpKnypN2Dj)WsaV6_~+NuZ%8a@7A=+!Mzd_P0q)M%s$2RY*GJWJX!eNhE2`H
zE_#wsoE}70o84$VhGfrqpXcu}L+)GgCF*>tF}vmN3YRn|VdLs3E>=C;=(ADaj^&)R
zB;|fcp$I+(&Nd(-4YwiR#)f{5y6y7$fDX#AQyjha_d#egW=IXQRI)>_YvO|K$G3PN
zGh*&Li9PN2(kPy|w&XA)pYUf30!r%Eswa!(G=*?J&09U+(a(F#9>YdwrxS6msWdTy
zn$dWY;|S7bd?}_bzR<k3sYPk1Rzn(UVopCh%{P?!!JDg&$Z{2^h~Yz2zjmj7FJtKy
zqet7jb*HHou57Be(U#mmr1>P9MfEv^FWJ)1Z&j`LO%&+PsMTcex*z0kL#OsU*p1NR
z88F3LmOuYcVjJz|3LHhth<SvZ$0r?wZEc(%mP4H@K*3II2ibT7j7;|Ly5JWnnnJ=d
ziEUJ<q+z^jC3PQBr`bD^q+VADhfjcwW&ydCu=;`LPzr}KElE?_t5UV>W9Z<x_J_;W
zEmcA}CJB*?lf^$v3Lx%FZ<Vdo?q8+}2AZF|S<j*h!Z`DO{q%-Ir!>Cv1SVJjh_nqq
z0QKTf9&tf(HjQ{Vl}vO&f89>I=L3EZFchlz=;O$@r#8C~^pnq6cY|zyH&17TUCp5L
z5fgQVnaQf$TR7r0HTA{mAgY(Z#opXJ$Z`x)Rm@q(zMl6xpj8f3ijyRIix$z+^KVYP
zUqt>8K4=Wa?K>``s>0vR?T6n=**gl;tl8CEHZ4K8n}VJa#VoK~?5`(-2;!PsL`^-B
zyag8%t8c>s671syEi$j=0h~FEox_qSN`OSW`?hV{wr$(CZQHhO+qP}nwmEM*n~C{@
zT2)0<W}YJ*!}Qcbs=<6#XdD<kh%#5h?S^7aqk<bE=PXbzbvkH)>(`lX_|E?wfVlk@
z_XtfVZPo{hF5?4s(<mr6xb^z}P06<lx>Cjs2=jo3AB;drq`Ymkh*dDq0z#ifqUhZ6
zF%CMA?zi-$?(MBYt0ZGuH+cX>IkKo?4<Ok$SJc?A!Y1VHT4}0?h|uD8aDgG3RZRSK
za2er}{Tk)vA;a5$&u#%QVXbAwh$}eBxs3SI-JEc%ltC-8@n+l<HyO2s4n<AMe*Uhu
z0O<kp>b-b=8wIbRnXP0^Rf+efw(9)wbD#xk7Tt3usZQdV?2nbQjy>1Iq&DD_osP)y
zB#GQfk>5MVsFF8!dg@S35<W@yGg2h&#%>)keTJOTu4-MGlKMez+3)BzN02fFhl+J7
zh+R%m5ck@DpmPG7joFuhPb;zsuxJj@1<)gP>0jF)vc&YeKLLv&i4}Q|2YwsOR~kF2
z^IBTo#87{9@DOP4sPN0bp5*LTF7eN+r2P<8mkZ7kET^}Fu6opiB}xyJ_DO)(LEoGV
z6~=Jru<-W6Bv?5<xT|1ieb`V?x@Hz$t<N@eMfGnZ2oFMB(-XMgQcTZ=N10Zm!j5j&
zz2~wIl2K-QRtZf-Pk3%H+|E(7A!vs0Q9H;`n)W?S)N17+dO_rcI><kC7Z(+BI}MMp
z<R_H%5<7q2+}}=x@n={(+gqs5BQ8G}Znx_^O#$jh7zDRB;%xXP@jY~i`w0XAdX4IK
zRK^n^Ur5i-f}O4vfzJ@Th=5sotj1*c2T22iib^#Yj2e6+(w-XTeCyvFFbIeL9zkTe
zv{2sjSpUPK5&!GKGx{h(yde&~e^`dso(akU>{H~{9}hccFHk48;$+1XJ5vuyv}WLE
z%2*LxjoOgV9j%{MrweDac5#gj5X$`?R6B$WTD9t0Li;ZQZNcr;=KI6M$a66ZMO(1)
zV!9jg5RUn78?x9P)PDM5+YE4Ig=RDAa>BMC=Wo1g{Ca+1F(^eDDIfww2rdLSzx@|a
znrUd#{`3fW;6O+pp^6o^$@%cFJ#N#YKu(!eOx8L-#w7X{KwDxFzV6ptAFG=k$mDKH
z7YfH<C+&N*2FgjhVV)*q%ydcfe+(cU6QF*~<+;lnCJwM{<N!x)J83VR@M<S8S124s
zmkAQ+IQ7^SHw*}_W^NnZ3=pD4eDpF2zrH8eCs6A!wT}3+5EWIOYZ@l%B%@Ha=7OKc
zF0NnPplfTn&j~!fftWb6*7=k*xcqFcJi&Jb2|B#1wObhnJecZ2C%ROJ#7nj<hy?2D
zR&%zD`4Q-vUk3=l_k;Vm9Y8Dux(s~}&|?x&7*Y?1{)#-MA&hT=xJ~&C$nL*aZ0G_8
z$6`*g89^$PBVDzns<`tJ8=j_~d6P~!GXT)pjNyU~y~KO_z4EKdV=*SCc$-o^M(65V
zj$2sT^YCsds;)R-menh164(*E)}wcra-8%GuMLbW#hur{joH^qyjo4fOI=d1SK~a?
z2G`;Ogp$d%LoY*UtqORmf`?sI_R|5FLPdZdYg)S^H}{=cuY5(A?dt-QXRnYXtNP0o
z4_ohwPM;b+A2g~6ng2$1Kmknvg8CNOIc{3k;5vQ8qo>p%sOflRB7fpOYDWsi@ZqcO
zOC*K8uzQe_|8aTh?%?S6#h3bVoX){0;sGL)P<0&?q>)stR$jRIeL@c2cJZZOz49*v
z`j8}!qDG@on6jw@3n;03a;%2R?C_C3n<A%Cy3+ZM-a5xAr%nZq;CrhOgKMc;vo&ZL
zMP2VVoHhMx%F;`rdNA>3+1^Qhm6-?CIKvTF4y}K41xGyqL{a!Yjr>3`T9=C*!TG@~
zO->0%l9p9t&H(`8KMD3B0rLNEwRaTu|5khZ+1UN3_8yuwy7+&ny+@xl4RI?=WTEFW
zCAv5d)Ovu6S|HB#vYv3am%a87nmMf(aIofWxjTV`xEK9`wqOb7hy(SbUSqYv%|gf2
z5x-&u>9wdYi4%W~;94W)asb8^DnXzsQPx}6TgGa}ALJlA?_)KLkK<Mc&w@We;VnNA
z5fB5C;y+kfDVEAp8|$mN+7g!ezmw~-a`!`%Sc|H7sC(tcNxiy74C#&^UI3evfv2ze
zi~KcAwyQ6%*fUzK`%bnv{$ajL8r##v2@QAUJ6Y+9C`29-a;FYf=>5Grk)s)~#yh%X
z=4}`XC!}%XS8!O2g0s$-zX>>+h7gJ*Q3F^d+jDt~Kk4EjV56U68>&T|L=jzSTdGpY
zY*J*~AfR1Vb~<Vf5G}g}#;YugewiUpK;6&6W7n>W#biVV273nB6+r0TWc8(#qu{>_
zQjmI7O!246w>P4)|F|6-u(8dOF(R7M74qGdAiqQNf2HoxQNmF~X42!@zO)BgcH?w6
z3Tc!mR%NePyOoWtU*Ta7Ow+CeWb?|McvoT+jbr>!{S~Azvf`Jm{){KZ{hbLX|Hfm9
zG3YjeNbbR@$sGAYZzEdLsh{he)wTZ+`^&9Y@0=?i^FjU{w&)YFBOKtZrqi(^8hu+W
z8;u{P_Ri^s9<aY0GGo8VH~t3^@i<GUJwkA9Cmy<mALrU!FU>O2Z384p*=wGd{FfL=
zhctjs*#D7j8}yA=Omy7I2z7;P%O>UKR^gneV{Dnu63nt;|7(qHq;dPT?XK=yx<50_
zd1&I4R~lJUij7BoivAquK+!>g*ltwd502iRBf<7dDhZu1GZy<9E-YP{;vT@x{NVfq
z!xgAJ*P&)V0~rY3nzxKf4O!Cbm4UobN~Wpnsb{|B5MBTv93E@XLo}(IznNPeSLu<-
zCQ;7Krk&KTKycy-r!_#p*N5N9hI?LDTMdRCX(kkV`9c?V8ih_d9hwj|t+}4CGa~K2
zqLkQMq4;DlWf_Xr99mwFrb{%*kTX`3ig6!648SjAEiW`%c3$2dF-<nuw<y5jKU3-{
zZ?I=RKu5FO>4~?Jyo1_q*|BIg22WK;K!Qs|M2BREY*TrNaWhzGnnBrHERfD-<XkSe
z<9Qbe8584Ol;TG8sQ7}KcmiQfo?TqW)YMJqp(Fe6<`&!MRI6kz#leo&8|V!*EA`F;
zxael#_LV7<g=S7U#g$N3Hr!GtQ$KlRa|$04tqF;R@ju_xfz76#<^pX2Cfh#!!Ba;I
zkItrf>st7-V*QS5qGG@*De;c=m25JekOgL1%AucM%{2^7%E10xYri_1?56;poZ(2~
zru(C529*u0a>J30bH&_6zfCRXV>ev-<cfp?&H%E4ZJ%OXn7a_0_B${G36rif`(L1!
z5Upe48ZA_UGZF>o3cI0&Z_}u#ASncA<yp{PI&IIh>}Ilp5Jc2T?LrG@4K?cx2_Wi5
zlitxG(S2h_chx~hk2~wiG<t|cC!3+s2m-G(j@lo1I4T4lkZQQsPNd|oDhD&(Z+jGN
z;@ipvkxsPLx|A6JYa9$3LG#{Qve``R*|Av1ESR$T1a7<?d`I{dF5V@Q6EN|eNUr;u
zXz;E=gVpgbzBK~2!yd$0>oCE;;(a2}XBUMdTbr-`sKH`4*=J7O+>Sw88-7Begft6y
zosD8#bP5n;1P`4BIE<V2;ZZ!LRou^oL~gAL7?Yz_UE%k$Y-(Ke&c4L2RJ6AVqnV0)
zXE-D1(c`hVA@WS(rq>i;z91CSb>u&Q*q!lkkCY_3YtoQL_gZ|o@j?wJmJe3Dv=R&@
zCZ_3RdT{3;ie`JX-GG0_{QEAPqMj`Y8M~_}4w03bU#y9oY#PqO1bF|I9X2h&GbIk5
z{-h$|RttuhkfppUu)F5T{$fRh;71la;pKL`6~*<9dwqjkn&Nkx6?B9PJ*M6RiaY~>
zjr|SD=3z9deqfQWlaf3+9c&X!c<j%+f92-I|2Y{X)b8GzIsVWI;IbsaUv7%0<cFg5
zyrt8|JW;ucTU=4;MDqQ`q{XS3rg5rq^9;IgB#^PiTSz!bx2G#)`?mb*fj)IZG=7YD
zifX+~vS!AM7o0x=;y~AG3xC|%2lgKP7k0zzUX=^pI?`|bJX5$Cp>JUa^l^pSdU{Tr
z0p6qb$0+A*bPWQ85QNV{+{^v5*;n>ECV1)~IcK*-KCplRdJs(5+Ai33Sc`GTtwcAi
zZddzgRCr$(dsY1i=H6^7%E?}$ygbb9sxxcpenU%VElI&VCeRllx@`|5%y`Vut9XWV
zH7O%2QAS6ccO5Wwi32NC&BfF_We5wT06TeZ2<mnF=MVCdaU#n*!a2W>tBx+w{1Z?b
zIb86~H~s1Rl8;q3`Kg~au58@j(3mV2OxxESb7V1y3W?8r^BTLKr)rQyHD;s(U<M^H
zS|*kk6r*I{p9<}SN8WkE(mYBYSN@V^brvlgpF%+Urm>38)l}NagVJ+&DSsfKB&8Mh
zk$c5!o7@IPo&{}qzH2nBoc3QZ0NVB>SIUeeW;S(jp#UcO8T+gvxOi@~mJ1om2GiBD
z2W7ITEBLbkhkitoc;s5U7Wy)sh-JY?n5L$-`v(spfhwD5^W1S42MY6{6gaRj@(=Qv
zKs#&!_5;bXH*M)O2&Qqxg)#q-<Gm|uU)C@(nY81iX#A%lX-J97A*2i69|Q{uS<$~;
zH3wJAz1OE4LQCzP$(mhaP4Wj;3H<Wa!Y)+p9m$Dr&d=MNqk*3LA+R$>jJIk+PH5^J
zxk;y>==G?ZrK}FNbl5SDG%4C>Ld`22$8^r!4GGl?usD2tz@GY38E}qy3G33}Rpur2
zyp0n)N}Y<<FH)|9T3wC!V?#vItYek5@o1^cIKIW`U&AV7+yIuI!s$am2Nx8)&17C~
zhwMYm!rCC^d*+s8o?^SBE%B$)2#q)0=zl8Nqc;*XKbcX2+1gdt>wMq9HD=0mUYGS*
zVNcr}l%)wiJ3tsNH_L;?>wx!8L!dW-D`|K4tL*A5GMlA26<XF^z7L73l>1)p_Nb_p
zZ%C=bQ4|KwSCi=E=mOP^^>P4%sl~GBr!i>$e(YmHfaxl(OgTb*?>@UY5!*K*iVOMP
z^tg(*a}8JC+ttsRlX2{5gHqXCX_0jhT+_?af<p^<7lL6&0>GR#8bihV@&U;WGh411
zz#tU}`m1x+a%43@>(myk@mi75X+Q?3k2Xy~HmUX~_cj?^WAmrqE%oW>^#{ft2Z<c5
z8o%=XM!Q%MSz|mh!*4EZ`jVo-Pv`B3AzQ=d0m*M8&5`7fGs~8-;&q!ZxL1NTlApHr
zdJ<Z?*I|5_HT8%hQUG|abAW#d8`LAf1#E?VCh)tdibM6A$h*(%HLp2jTgMld0`3Ag
z=<Zf9l!HfDw4WjQIk-xxjiB$Zp{E?<<p3VQ4#E$qwKT%daPt+{ti1{-K&avt&!~-R
zc$$0@vH@i=;TaQknzrV*M({<55CTHO?#LWS{_n?!r&91Dd!eHPIHhpHrQ;crat-N6
z>JWs0h1;wWVOj*{M~m7$x63Mh$uW-DVsbOk{$P0uD|dxMZEzY-IIdZ8a}8o;Y?rmW
zy~_%o-gUT*)Ij3b`t-)JC}}oQ#H2AzDIHe1Cox(;cPE=H=##MSc98GD+%6*D%k`Fp
zu5Bl;F-n~eF{>;4{fPFNK|P#gHFWr>hV0t)jO#)36|ZlnzMI4{O`vFYbKIrHU7)VK
z=;OiQM*F@1fJ06zPz7x9zWYv*VGLw#4PqUQjkHBv0mEtTe^X!^$Nm+!rD3o3d^OK(
zYZ?Z~6-|BIBc$tx+tU%FGf20M;)Y`FMz$x3j;`8%aU_M;Y854%s#XGX{V%IQ+mc&*
zKN8~1t)BOuGt1y3GU_bdb=qB<$J~(u$q`|}#h4}uCz~?8MM)KN0h3hb3<k{jo@2__
zfW8`)(xfU1pZJoBd=+b<!Iqf&Li&Hij+inHyhcQk3zSPVtB0@!2)m0L8{dcvZbY%=
z&z98}>)6I>A!g6mTr{jn%?`RgLasa;CpAY2ceBo04=WO3BB)rgeSD1&$8WRCy*)X!
zI0Gslq1QA2Nr5|GB2d8Y`!Kg&Dz*V`Qui=M!LfnHrSqa0I&~sUQt_I}B`G(iMKl$;
zv-P8<RC)p?Px+D~>nozlG5fE}ry_02;2cZG{oRAb6=rTGS_r4h$5Yq|Rbl>?a8fCv
zhMKcT)lM7D20xb@`jbp*ygo16mdL)2FOu1NWRMP2qn)2HafdHFL2{HmK%uO$E_<>S
zEY=fr8G|JMfdt+u$FH5v`V(F@EWm1q8OL#R^+a3rDwRwV1bJ(Ne#yif3n87_yIc9p
z&i&V9`b+MSOyZObX}&^cq2a%RGLcR^PKneS6)Y`QxB&|Xc0TDs<s@K0SNFpv3-8Oc
zVVyWW?YsL*ei1O!Kb!SxJ;V~5SQ8iK4cP1S$rzdW2p(fHo-6nL540~<D;_x`rYzz)
zbOhqY;kmPhn0f2x{FI2beAEto`MRDCt~1Y!rgpQ_^v(&?R5V)eboZF@mqAWp=y|a&
z7M<q?&%tYC0-=NPJNmV#95Mve-x*K(ii%|<)KB3jdpRq&vnrteW@@~Ar{@O<TZZf(
z(jaA{?q9<8gPR{M1C!jYx6mPeBX<xm8eC8Yz9N+Iz$}16ZUC+$L#>6*8C{3D*8?iu
zQekh=3uG7*xR!o8|6fd`Y)#`L@!We_9D+;dA1+1GLc)=)-AfS4eKZk>rH+HV>4bfD
zxCMJ|*0-`avI6wc+@HvG>l^l$1_-|D4#PN86jvFh)qgYaEFhCP)JUcXjWyOAHw!^5
zuJ_R|i_^BX(V)!l_o-Ctta7P;-VcbS&T~cw$&?!t#dL4rJr1D}QD!||hHMuaWpuVP
zV#-egGiwvy_gAMvD=hZ-WT24U%avSpp;EN@QLAP2;2vfU&0=?~Yn!kR0@vU-3HL-_
zBeY6#NO~gbfMk#90?<f}sFI?NyZ~W+7v>KorA9q=c0o6-*;4k1f!nA!@sYkm1bIO;
zi{jTj?N3r=I$BtR!vnA@<VbNo$w@VtB!arv4Bmrqw2MiAwrpY?7q}G@_~B?)3!JZr
zH2>d=U67*KO`We#J43;mSehFyn_TR(=#6k80&V7j=tFAUHp6E*^$YF&$)11u*_vHX
zJz~`ELn$~l;Zg!v2s=^1|8$V7d0Rx^zZ+j8{;SD)zoNkK`5{bcg5E^n?CNtpwJ1`}
z%q=I21Ho|0QR%j%#F3DTSJE?s5>65!FINEvpmCV!K@)IaN)J+?Iq1e4J6<hmvqUQv
zaU7=i^!LP}d45ho-6!{b;n76%X~3l{(L3s}QXp~WaR{}<CfRk((>k?_BYB~;;u{D(
z?cKSUUwr<b4+QfG=xe*hl=^M642pxpr7D?T(?_kJx?16xN8uX7?xGfvfSR^?km58s
z0QKMiI;x+((PD+vt1?5|6{QBe9w{EW=l1s3vfXs3InlYSHQa#+{XNS)B4H3UDL6zp
zkOp!SARc7SY-~-z&1YHg<RI(sut`=%fjk<<Y-fAtX7dR+(L``8XC$Dkn-+~EKdT|w
z+Y&Pf^qmcchONi#PIv4-l}2V2?5=~avdDQz=Y|ty4nKk8-_PxS5I}mBAR^AeeT#(Z
zf~QINg7Si=(NKKUtA{45;B<)p-sQ4V!;Fd_!_G}eyP#urL&i(xv(`4b<+`(i?wjdT
z%WjWQ%HEy=Qz*Z3QK{ghMC8xm^Te8Qyh@y{36OF7{w>y7<&86*2z@XP|Ah05yVJF*
z>&kYxK_=qNvsfu^x5EC0X!T}KnAyOxWfy<@1SWWh025E++2>Ns8n0S3Ps5b7FIfMl
zX?BwHW+{{6={pcmt`n|W8oJ8b68fAbMsiDjapl1ir2xftaT}aeX+b!Is?a5MtX};;
zS3Wl%Ho3y4h}m00vjFEV+&y04ptE4V>bH(&U!1WVmIfuO?EFaT;Pjn`89IDZY%Qn1
zxpasvD8FtasLbKbVeVeKJk9BDso|X>1H9_%>Zi^@8yxh_8%x>k-d*Tn>9|i_HEahx
z;669{B}#D83Khz&A}D_Omi&G)pdJEBLnzBfOt~7hW$L28TMR;W#D87AERRd<1YIT4
zPG(c>S1newyV4KC>-K#f_9!rqdy6hK;LRF$UT1zTZyStDVLe5i9RIQfrp#BUpF$HG
z04q>)9~&499QO3bfr!Tv`#A+Yi^WTNRcnH^wxc^BVxr5de8_Y|#!d^+`M^^H0`p{s
zN-)VJnP;Pf)f7hmtHE>9;}&uUX?bpDZOk)(GBKy<xw8k!szVBLla2S8psTtDWjZGq
z0+<q&Qwiwu@s3$IVK0xWr1sSXvH(ru%D~d(O|!RotUU+w+Ao?2ol>P*ug?=Zjn1Hi
zFeGGtm5^R+ZT)1P2*Wc@@98XWZz&TF<E#RE5Ev7~7KZn$=eqMX46X`KzFSp7jn56K
z4zX*Jg6kdflsUFNFvRpfOP)7U2`vWGsNeNS{Zd?f!7LzSv9G0euXL)Yd#fP(4L18J
zoPpWM=-t5u{-uZ0R~%lcBip`<MaN{<(eTnL?rdz~%lFMh4dSwAh{~l0kKXe7fc*@u
zHu`ahg}jEaI9dHketP5ORDimQ$}o$=O$IhfKzs(@9pQldvaikBW@&ZNf8O={EGuLK
zE$S(Mmn_Bf%<cn(lyI}wpFH{Ta}Hh-AJ?Dg3u&K9w*;i3Ybdfe#(7eQ^~2(NIw*4*
zn4zW5V#G6qIf{X9KM<3AGi<~A(rL~_te;5u^Zd5mZ=dfy`V$GVD9I3Hu0$;i8Nk<P
z^MzkqzYHBIQ;gB@yBK!4s8FOr>f!QJ^X?9y;v5*D^$LCf+v$v({yFy=2|xJEZk_FG
z(FXhiTA{gXG?cw@ui9BDXkS9qn!orM`9U>JHw%kR0<tuhy{pUzvIE<!;CQk@kH@8|
zTbSF|Ym9=B-Uv`PG_dxnGx5dK!qL0s04j)rScramJi4m0tbSQi;qOpo>6QI;Nrquu
zz$Ikc!q_PbDV0y5I##(TCDZZ`fT~Dv^PnnR;i23X*g#3mqLBH*A*{U`WA!eOz5GJ(
zq&;rFrDfZaXf9usSu^~{s6+X&DD6mp5L8PyHTH4;t(KUev7Kfie+2(l>vkAS!v%%X
zuor<^sdkoW7gu&kF|P7aU@YpDk)d{84d9dp%i=iLztovPL$hQFhvp<P>gNN$epR7|
zXQUw^-46roq78K6UpmTe@#ff5`6DS%dkYuA1<HuBh6H$Tt!vb}`fucG;2HMZLh~PO
z5~+>&w+#*kZ5UA>&dJqRo*JQh^yAlG@lBOHCQP<eVG(TQ01l$pNha+X#Qh@l2^2`O
z*_C-j;u8SHd~u2h)@O5t?k-#H=#^2t`UEJ(Ks>ZeW}I!U)2&-JJ&}Q>fls%mC4}j8
zN6siIetq#*H@@n+9n=hnmwU<{8sz-p)`h$|IH(cx=sIU4k1hw_JJhjgm+nu-3P^1M
zjr*Be%aI%xJ!qrH@v#hV`6e$zYyuZlBRnS-gUYz`zZz9n;|&TZsl5Cu)kZ2EOHhzS
zlImx`YOHsmvc3?`G&LnOx_4NGfv+<ttDTjOkALzF;d<?R;?frZvZu!MiVdk!I9V)w
z3rFr_Q@b^KX(h_;P~Z&@d}eOSyh-&HcfcirKY<$EEbH>&aXZ~2ViVYsdzsI#9i|4u
zXcQzUKJT|RoEhQY26#c6sXu=oF!Hwm=~Nwt5?GXD<i|k5c!Jx=3?}?xvL;J&akZ8V
zsS2y<L^ZXT3i{x=^y3ITI8JX(qv>!aL$Xph46OPsq5y^Vz|Qm!(K)eShLA4|MP6O;
z5z`pls&udC9x~rRm|yTjD^lu{X;WxMRMM5q(3Gro(2d+w9J2l0U&ymhQM_QLt#>YF
zlPfLmNHl32i=1W(4xGn^t+o;dt;l+H(ydlA7~|$QVxC>qiGQX>DGId=*c;0RHYo`|
z3<Y+F&|!u@M=JHk@#r(920SCcC}2zNRPPg<bh09t8;$$Q;RK_Ru~LQ*%a;FyzfO>p
zgv0x04rO7;&v;=Uh-O=P;<i56nTuiv$05OP9@DW2f~@Y)7V#jHd4pC?mBI?q9UaJW
zB`Bc1>%@Fhznt}wgbDgmPi$5sGJJ>y_p<$44{QPE(eua$aC;bK^nWn!S#!m#ArKL~
zoj^<tmrMjr)T1UM=p^ByB2u(WiKsR_p<k3ftyhVmOj&MM%aZSkdL9ghQW<^Ncc@4k
z(4Jg(mtSB7>_ex+Vgfot{|n2TtK5z)ffKQ8q&S<>zpH;hJuMF}8?KW%d=Xs=9K75=
zpoHo_(iq3=z4XfZUfIZz?2ZT|*|z5p@nT%xk1PzHveFvJ8+)y?31Z&dBYROcigM;!
zIi9rY+5PWu=91L3czphj-(w<y=Iw^UCtsBc>GN;6!++#~n#bg6T3=<n|91Z9cKCoc
zh6;p6jby+4({H5BvB*wuQZ-;<&E;{ZzT|mYaEV@FI0n+uA{`e8Hxbu&i3I~>@GHpV
zh|YnOwi4k7FDP{h71zoRV;W#nCp|tiU9K=gs>WLW$UA(j*;A;cb)mVWmm4n8?2<x1
z6;gJK!c9_@jwU5OMhw%_P(tueH?tCC!dQ-UbGw-w0#E~RYt(WqV8(7}ymi0y%7zaU
z*)ae6>UYb9aqOlHqLc4)0QHkagi_r`|G6K0w^Zxvw2*5%*2fHja~U!o%GZ8afKTy-
zed$4RRyhemYIe*|7kVU;`PB&JFzq$)39?BVW4HhwdB`f1t0tl==n?wYKTaH5VQ09v
z_gEFHpVPt>9}>Oap|N3wyyp^TPca%dw^maFAe}G77oXj?&XMA<N-(4$Y<(I6(EXi)
za0*Zz2bFXQ(?n9^mc+iP;b@X;+77~b!Uzg{nO7kkd;6?HWT=+H*8v9$Qz^N95BEdV
zz%uHPhFofSm!)a9x5>>9uUHxm>dxcS?@)yb*A%Sdu-aYjy@YEpHeuhnfsRLZS|n44
z(q|iOpSCBH9;rZY0ID%J`u(xGi5a-KfAqtlKG&evUO1UU{gtA*V%B_ST8sAb1De+J
zB7U<;qtgJ9;eNyB%e(02e=^SNoXm^(Gqq+zcov}a&ANczt7^Fif}P-~m}eDsAnbss
ztp0uw3;)}f6{mj8MAqlh!{TU0ug5s<dGJ96QyW)nHFI6u0weXf!H$4N(E%YZ+Xi5F
z=11NoYY%^p9O^nD$Y8d**E7#%DW*Ch58<bDIlr5IgYhImIx61av$6XWp;u%?D7T<`
zD;vo+KmeSClW96>m*b(@>!Djq=`lBS5ZQLNY3o_st_qF%+W?>c!_7%-Mq#IBfKLo-
z8>GJ3l>Q{K*Q+7qX%zWGM>2WHXv8J_w9yb0o2r;^Mg&uKQE%)2mCZ{_=1_vD&B(|L
zVrz<W>Q%*ZMV{QCE1nn(B=euLVWE$S7ZQCRMlL~A12<E%C~M-sT{Req(9LbU<09EN
zh^fDn+3x_KUypY_tQT3DJ^YYX|7Rx~%NM5RL_X-i$qe{!8#PJNn@T9zEhHW~Vp~gc
zu&mn(6kF`_+4s(e6K5^$DD4FUF2^8e847~_B6jJP8{oz(AbY^Bbnuw)zDjp<w@w6L
z)c$*mSW-#_^QV9eX(ldSNd&^x!7(9iZ%Pf-3(UcEldWsJHm>lmrlu+gX=sE{is<l2
z2H!yMYR9+R+VFf_+y$4$4CqOE1vYZc!&Rv(RhNGi%V7u;Jq|&o`G+ycD2>^9qt>a3
zh`|y$=3<dH@n|R@Vm#gG42GaX2+r1YLx$;|@pPq2w#;@tYczPv>?@|hH41<<SWPs*
z!3ozQ0%#BWiEU(w)n1`a3IeaNincQpd(~q|v?(!MgxJNN@X?FF6G7dscInYKL(pLH
z@xypSi#&Xj^cOb;ZROx?@}1O`^+-;wO}Kq)-l&1sit~{=S^m})NN=8J-3;y)X%qg+
zXy*O0rwv`%A*Y`P{Tfk*f$TDC!~pKInuh>UCS<IW#bJd&h+#n!A9^&i+Chj?@t;w#
zegH9jdOopK{7OwDJ?cqqvb<6xqtZa8bn-Zh#+kkKBA5Z<+kf>z;A;oQBOxmETbI@*
zHb0n4i}isJWEUUURTPS8KSIX1$t5EMN&4o@lu?WjG@ZUrfB`~g@2@x9%uh^<(w-iV
z=8P6$w4z2!;fmbFlRpQk3z`rYq(*e30Av_z|6dYg(iwe~R&`!dr%(^af9ZT>PbH+l
z-64awsXT#J^2-pGO%;LOVx6Y{%(F;e_tJ^|x@Y*@U!$h+8cj%6JNwPBK<F9Dy!}4#
z=pf;Emz>jQ5@_Qk{`w=7`jSzsUKrQ;_`t=@8+GSspL<kt(eygsi%SnOT#?(hN9Tx;
zWIoBx+QPR%Rxe!&UdC&Z%;={iPN8pDYM-LG;+U5bE>7YMOEAE{yfJrRXH6N3fRDnx
z^vXwomrgZhqaP&5rE9ezpOEX54hMT3U@=_Yh|_wxQVmFs!VQd)dG@oWA-{ODBDerR
zwGb`y7=bHYCfP=E(>=dRX&<(=;}Oeppb*eau!Tgx58+o$dhOO4V(rnKlq}UX@_yo{
zK}^m|=lC4sC}uwG0f@!^S)2rMwonfSxLcBM|3`TD^rZlYiZD2TR@B!2Ws>lv$XzvS
z?K$<JXFs{dx1N;I;0@V^iOF7GO4Z`no;p8lN{vR^oZKI_tABzUVKIvyx;xg@W0-SC
zr5Ah^_M6M6-8Z4-k1#LG$Hx+@Fn@8EdSb>up;xzuv`Bciuu>-FcX2aFG143LKUO44
z5}U%ZYKGJJxUstIg2VYJ&$^}h0Fh}zT+FfWzL2rk71w~;qWxMZ6JBhgltm5X%G)&F
zj?HW`;lIsv(=pOOLL08E>+D)y)C4tV-2O66_}K51S_MYfr=HMoC@;>NU2^m&X@D;e
z#GVc-U}BtCTVx-ld@Yp)S05F&l}tC9RzDk&++3vmO})pNH@Zlfq-_#-?M-2e#h$N}
zrifxudCxlZCw}Mfv23wCc0|M`!*iw*hQYY1#QwKRL**=dbr{xoQO`oiq01Aga-YZu
z=X1Pp_ERZAw2&jm3O@q3L5EaLb$=~0Q*b?jAqtE>siP3!UFwK88+t`}m2UAF%I*s!
zRf=(0S0H`-3uW0JB=b<oN=uU2q<*(%64JWP7Y2t#<QbB0Fgv=?*s0qXYet16@mZ$Z
zEvg~ztnbVy!-FW4mz0~+>?~l>fGqk{$#LZR5gk0Nep_^*%UHopf=Vy?Q_v?>5R~W|
zc0M3K{IFm!>ZgqiTZv#1F?eI90zL1@ux%z#`l9OYfMv|;rn?=SigRe`uBZy6$`r#=
zPM7we&3~;U8k!WLB8bs{KNnozSc%8{?0*{g=L4<Y{;v57+VBh}^;`aY8=!u4U&i&X
zL~3Efy*u8apD&@=DxIgy&Y`q@lyB(%m=P}BQi(XoIvcg6BLD0m%|kk*N;TaYKcGVh
z0hXpGsxui?M?)BQk){9c^=MyI3;_hovkYs}fbuY*Ks$ZcFFR*-g{6Z>b~cs@5}2TU
zfybaSZ$gwwV}*4hxy=WAAE>*qv^A1R_Dyg4X|5pa)iWQihSAVZ&6fJ+3nH=GZrg+Y
z+j)g@dO-B?iyTg#{ABGuB~d#D0^z$iE8(NLu_0AkPtw9zf2JHhLRtkCdP@-kW#LDM
z9hoXjmyXc{0nDz?45BSHS6|yMZ0Gzs(s9*}mccZfz2sl~-wXFI_-D09dd2Jqh}4VK
zF+tlf&%FGO8(3+PCe{&n^0{n+w(7FRH%JI$-6J%(xK*oAL5-nNoyQDi)zKsbCI9LS
zM8rs!{v3$?CB16`y&0~bLUfR)tJq8A#Kle)3i^_|yX<^*QyRm1F9TU1s7jukyicgp
zKDH%Pz_=N_bB8Pvgn7|>VujB2FyV4jsF2Px6u9Y-!r%0frtxfSHo3mg6W^PY=;}1E
z{S0cS;;3Fg>oV?@${6`>R(H{<gl86^frLs;Fn}Sn`x`mrD?rSjbG<}Ho2$bqw(`OD
zr|g$dz6V~&qpl9l5@76(0&;EI*=Y<$OZ<<|Y7(&;s>F`|D%Sp7-+bTRnb1Rk6k|?P
zW7R?x1<(1-g(n8VbHzXZl^|)s(EL7dC*y|kF-<TmONlnV_c?ke1Zm<EBI4i6n6eQ!
zpf-&T%spse<C<S9bR{bdKvK<$?CX;5)YS}4%aGj3^g^|sR||mqHWC6U{_}0bpY)7c
zw3KwnBI}XeDnTeJ5EEgRDThb=i=!LUXV14qsne`WmQelHoou?P2pCy&#D$@eWN%mn
zARq+n@+a5L&w=$rgg<<$zaG^Y1hZQcF2_Hk%9>4g?=8!EMJhu)U$d^Ye}#miHrZ}Z
z_7FRLAfm_tPVc(aRFLZ$!fIiesfCUNn5)~YYZ>p%@wtw!Y3dO@SbV!%9XD*G9P-By
z$Y1`eQtPm<^OOV={lmqB!7m_Pgf~2Q)$U*al>i@jq>oLw<cpHy_BZHRt`YG6AP)`K
zff7EW3oqXNeK*=QA0+^nnNF>WwdLsY57V@iPu=P~3`m)dnO3xj-O$_vX=-5iBXe{~
z{n@c`2d`!pauxh7*61Ci0ZI8IdoY>>t0066!^%SFcWay-$oVJ-RS@UuDLW{`E;mlq
zEI?I?RJ!+@96EM$@e{QkdGU(ez>{2OWM@mg(PH;*(*argm;a&C@K_&F4P2Kao|*{)
zHWYv2@8&%4vBwQks^iM%wPYOEXwDk6pmR<n2^#!M<^)ix_p7k1nZE(R%R3f94TB_?
z4OrY0Q-Aj#D(qDKCimdtSW8reANTIy1Je$ZH``LgSGysjOiJ@$CE@&J&S-2ce~nJ$
zCL}>X%>89mZ$V-$EX*^sr5Hzn3)5zrkdh#On3(b_v9Vp-X>p;-O6CJgLdE%r!~x_)
zBfI%$b!(Wn6#J0|-`!vP6&G8($C_5tMmRCkRfLJLM;D+{BN=?>+Le=u#>)|RVky5J
z%R6igm&~*!-?8}I=yM@g=--|B6lwHka8{bwzXBs|gMmu__dU`m2@7Q<{Q22uct}+$
z8t1S1PXUo#_)c5kTKC~sR2N5N1csV1Zn)4t+U#U&2q;gj0}Bkfz5a7Gj$V&=wf{eu
z#-Ju{ZQup0u27o-ZYeu(Qa@qA6f5S~T#>#FuPjVzec>39Z*xuLoYXx(aB<5b<L^o7
z5E#dA6-kKLD~LEq68ZO6lfkV{0XC*3^$SnYEM)=khAkv-4esSp49O@+4>&bC!p5vR
zk|wMVzN(h{JEI)RGWCjbkDQG9<BzV4zRSTRSwL|<E42PSey)GJ$?{%sf$RR4>yx;6
zwU8{X5H?ZYnIJYr7U-p`j1+W0u|4wm_BiWpQp3J0UW8p2Zo#uh<@ao#6oLqR2b+nt
z@8>B4Y(sf>9S6uAmdg6gYhzga0yXeyw#&ZO0oT31g5adkD-`|Rp1vg<(LUnXxK0Qr
zCf|L#Ey}_LW8NYsrB|8z{baAV2E(xCazW-71^E&5H;Hi1cC^zR(IFySkVWTD;VuRq
z#b`H0H;2FzMU4d`^@2Zga75?4Sp>eQotp(cn#Fx}LXPgw=)}8pPcFY5(Kp9fkEfg9
zCO<lGq`)@iDTSN8ZAnGa?dmEW^>caZ@mtSiGShG~XN-n0v)fjFYrnEYdm;)9fUSF$
zsDjbjalhv%g)(O({hldzQV}pa`ws)8T7u#mRR-QZDkH}fV6P?`PFeM&D_?0?%D4MC
z`a3MBq3$Fm<|SL&Xfnqt2=48=kOK;;DRm6Gv$Ie)VbUhPh}Y3U-e$2Y;%w*v>9k?K
zWO`dsXJ7rTnKMlqtlMFlE-cM(5&%yay84eK9xSWo0Syfziw6aOk3!A;3;3X;8{`T~
z3kX<i07JgMqDTh&qeV<K70oTbF+yTeFWv%x^03z>i-t{+&+l+lSr<Om9HHLoG>V9n
zo2Zp>=a+BD=G0=k8geV#BhHrnhSLQ;l-cKS1KXPE9clM2LS*Ka<{Qh)4`Kwii`<5F
z7L0U<bUn9Y8dVcl7@N<Rn%X(W0w)N)+-sA44e1N=2V0_L=Up~}r(?4fV?#&&m?B{6
zKk=LBiPgkx==IC;EJ7F*dnZ38uGO1F5jRsfeKV$-i29flYucNn4<_%rV6<vqt)ONG
z0pCL)!=O_)wIADE>~wZp)=%y5=2Fw?-A)gleWAy9bZ=Dh4#U&uD=V%lV6oIq`2w^I
zKvR|}u|rR-zRB_|oaPDydpMu?``EKdR3`*Yl93QJ#P<g67b=WD=pqtyH@@*4{dAZD
zd!_(!#u02|F=6N#dB(ujwo*|a4nsEO`3%<6(Kk&wQ<%)*>h#jQ7f!NSQbNK_?i0~2
z=&=o0#p*_}?~!3|1t=E7oeoK;U4nbmhE))FLokU-KnS>z92XOk&4yfvVS2mtlA$tP
zDsyPf<+-ShZG+CjgYivgTfV%~+ItwqO*b}Bo~xNYFrX&q;xo#Olmq6s&_heTleIrK
z<etEv42Z;CAg7q1UkUqOkn6iQ^5lVyz&J1_`h?tD96dnjwu3!BXN#CznTJm08UoNi
zVh1Bm>nwa@`VAd%o+iGfyFH^~(g4Ks#_u0xrXf%56w509J&*O>2i&<hgZHC#=E%R-
ze*jOWW#+$6%+8e2JqK3>_B~p1!+v#>A*`>a`|YZ$aM>5K*B#A;f2u#Gy`1}O57f^|
zcEv|kc$EPFdP2px$R|sG^r9JZU}yH@!&>Fz*H2dN<|^8c2>qoe45qspP%=|dYe;l~
zhUdyPz#1r9#fNp_Kn)fvM<P18iFOSiG<F7;A-Syd#cO#s>aVpEqW;3AQ%Z@`*o!$Z
z6UVG@=<@kD%hKrCedbbv`zD_y@B|HVLpy~KsGKLq6r}hkW3nPd2D@(^+fJ_z{L3)w
z!ir|pZ>(@W+CQ0Hd_%|izvPf~lnl0((8iVBcvQ8dQ))UkQl!ORO-*;Q$2;eeKxq5E
z#N?~Bkr}KB!Ah1gs7<^S@b|@_F%1mv;Eq^dy|drX9B~LL<G=tE_dnQm!NGlIfAF-5
zU69%Pa%{XX+448{rJP6w7~C9IbDP=Oz-PI5`6j#<3F-tr8e-p5d_FFr{6MDv3^uR7
zm-5(YkFJiay2Uw5s%W*#e%t~%)T9%EfnUBJAE96)IyYor_6&y4npiv5_zL7*D|kZ`
z+yx&Ak36=kk27TI5{kx!&v<&HpU?=5a*7d6PErb%RZ}Z~!d?ek6qHD<N${K7w64=7
zd`Y|52O!wYFQc<)`~Xwd4#Igp5%jQxBtKhGs=us++Mp>x`7`$cgVN)Gyw9GZkyFer
zwlw!zMwpK=G9s<Wu~4SQGj=sS;A&O<OLhjd<cApvm8vYEwbmzR58%teh;0G3RHEKy
z4Y5FDG?r~&^V;8sL+VzjsI%uoT%w!4z~wjDr7ld)9R@dD;UVl)1905Tt0xu=C!n&h
zmWjZko6xK-+}IO0eycEOkWIc&h#X-qNsnZPRhPl=Y8tK#&N*E%k~L3*d3HS#HZOK|
ztIoLu+MbKaV`y>!i=5NqlUu#!eMBU$mt$Kc8es8mplEL|@Iv#dqHVpEhkPIrJ88P|
zb@M6Vm2FdEI(v#`eZ2@1c}t>JRwJ?1BJ7;3Wh}s+6Fb?-6|%u-rGQf7Zs09286qEc
zOgXy04YWUFiZdIamZ!dmRS<x)kVp2X_aakqZo4%l)VT+RzN*Q(bFKjr4)f<)oa#+d
zhI}#o*YCK{8(|YE@v+<9=JR-n1KuyH;<p9~4L9I=y=oyBB&eds*c5{eZ8tDXRsIaF
zvRV8YJ)Pd5(Dv?=ph4V2d~c>VJ=#D)uNI>Ryp-wNu|Qa&nv4k@81}@-#F65M^NOC%
zwOG&S-D7*F!OK;kK5D8B$OvTS`ri!t^y5kwCw(j>#%V#O;g1FaroUQ%@Xqs#@mDpZ
z#53@^Iu$MHAG!gCs*$Z2YIGxsd+UeEJ9ulTPPh&vUbfexVPe>MAaV*$L+6rCIr?0Y
z9&Nprmoyftl#x9u3jNi>_JJ$kO@Vtb+@GC6(ef*)??_<~6cf-_D*8EH@HwU0|H)II
zH7`A*<$bA)friCHW1$1Wgd5Nr<j3fB3rf1{TBwefgPhoew+qPp8~SZTvgH7OH&@I9
z?{!m$>)fh~zJmsk7b<BFcRQ`kUR10TjH-mJOA_jj9Keq5jnG?B7v8H)^3SfsJYMT8
z{1L-><XqDa*AFRTTIj8dEj!Ken3`=h0m_gF4I%q66f~2z&qT~%HmWv#HN@C<XBw=g
zNX`E}%y;<qPSu}kcu}q_J1#%&V%66-j!P?cz|b$d;NqFL)0w%W#Fj&1cY!X`3XIpg
zPQvQJUFKB^3`2wtL@#UpOxn&sSyKSvU!CiCej{No8`ATkIcn&>Zs5vX-Af0f&JhsL
z^qD3&45H(23+oZvJ4V}_*Y$FCnLysuFmuq0h5*v4`EFZJ7AZEASg5R4`To^Dpy#>!
za+A)@rR|(Nn1SG^tL7d4;tNO|VzU!P3eQ!95W_$!BoqEE)L{`ra<L#|`47SDV{LQ_
zsTUoXPRwD%w3K?j+t<&-07VHXbn52>ctm<5(qilDA2!JNgzYTTaoNv~{br7t{^~lN
z3U7Zxd$pokzWnszB2SczHBd&^rTCcsjCTj|L#rP<m(TEslxnl6)Hvst4Tf}Q1H|z7
zrC(5)FHSp0{~EhJ3Y3hK4@A2sNys&vy0AN8k(%R3UK?ITRhIFnaIYtFvAaERL?>=y
zj&FHuk6G$t3iC~hqwk2FV6~2~S8NjhIB4z*@bB!ZffQ;!-K7|S_3|VSkB(8g`Or)5
z3n|A<#0e9Jo`%t=UVA6dHXJQVh^ju~sFn+5(SQu{U5*13U=vUx4aA+`k>WC`LU2l_
zzXSb#!wbu73TG`J{;tI5PLwlhcs?Bd`u!K1yLHE{LOH@_i<zvPSA!A>pG^n3Btmc5
zue%M&j-Og^c(cb)Vgggj-UJYonX(M~-5lAFt6jA>g`R3f6H@F7x%3`L^Oc%QlD&Fr
z`=9~2Qj8xEfEW|JC)J;y5$17d0R{4h0mx|BF6`iao`UEoh!@*()OI4=K@>&ay4*TZ
zO#PProCcM0F|XK6xkB|Ugy322DOXal0~!+zFZnXJGZfR1uaobQ_<GDhS4z`)=9w<7
z=n4kPXEEB-Cs)*0$w{oZ4*~by!$rG%-bM*0drcZY@aWPgNu^fT_go{yF7m-B5U<z8
z;@;&<)c^<J<!tP>kUkCE@Sem9x~)o*KkcaEB!&SW3dwY_MP#{<1Qb3yDpYRH!Ob!%
z8xzj}Fj(ntm&{?1EuDzLQd#GVybc3LwY=36Fw)E$0+j>*pZpu<l{h`v{SL}0RV%=7
z3E#98*|qs~f3=mbNyU?9#Zjfp%D*_P%KgX?A7-9-4*OwRd}&VI<P@@jylROoj~#t{
zjqD&QdwTN63r?{lu)1iQtL-t9P=4<webKRG@Iilx|CnaDP5SExFwBzyNTU5DG##Tw
zPJ3?B%|9d^x!`UBNdMg@k&flr!s4~V7bca?t@QXzN^VW$C3vG(zjZDZ!%xaFK%3Em
zWMAHV+Yw19Cee8cVf>fO8G!DFm?~Z#?$MK$>t~?0?MpwnI5Je82+<JljDKF+LXp&B
zu6y<tB9)X?#rY%1iyTVGFASSx<wotlkVUHQ>q#}rZi&Z|E}O)@(yRZ?1|27oSAE_0
zSP~@#;5RLO>dY-NQOnZlu~AI}Eec*S>VmgEq=M4M<Bm_hJWqMhtAK0ru3M)6J2L+`
zht<lww(lWw?V(#6CL}3z+3KLXv<qOwNi%7#=Z5s<MT@U`JrpL}f!}XSUSJ&U2++jc
z@>QeK%IS8XhyOn80ZfRoxaz)Wfv-+7M80D`?1%o|A~+uevHe;OI{a6>EiST<XN^Qt
zrrXb)hCOSdobb4}th}~Pgo9|&=a53lL|S<q;b*|e!t+@WL=S!)tH@Neq!qCThy)VG
z8lGEV9TN%)2X8UPYWgK`?(Q^mtFXQI!2Gd-cNPS7I|6i0`k=phdwUFBYC$|TOZKD2
z2M;dUo^wAERpn&XLkWQJCp=GbdB{6}P2tuVGrwcg&E3<oO*IBWI3m}v?a++7c{v`l
zWYaWa*Dj;F`(Q@CUsck9pID-x39|*8Y*cD31aRm0@}A(g)-An+wtvU5g)4VyE{AF(
z#GnuwhL`bn`ci5s%wD87Ry|iUIXxuM1OYv_jt~ROc_DY}oBYm=H>Ug##FbpM1<DUb
zAhrHN-74o5%ueT~!WCr7u=<;M)M>8rxDCwe%-k*1ijJQ5lJqXmM_G;$T4_4~Mr~ct
zBO^x03dCZ##A}4R?f!qR3v{tx*Q@tZyzg#A=2LN1YNQyk<@fn)V12R39FH`ivX?k8
zo6c2bQ!|E2pNAEf@>SI@hYbz3?)RjVW{%FG1_`YKN69GhL@pX(NR>l|=f1S<S_j%F
zui?M;;`mQOa?Z>JPjN3;E5!G^A&scjm4HDS13-I$Y<a+?p~Hfxylv7~P3U7p$9-uf
zc-kvhhsMJp(VZ?mL>|EFZmGr5C|dF@HN75lAU>TS#vJOtGJA|KZIg?HV2o5t$gcW$
zy`G8^jZ&V0L3ZTV2E5hGePo7j#1tVZrnWqQOV=4hvN|aBQ{*|^X<%puaR=7VAp45I
z?Vwdb7^oJaFs@O>ym)0_WwC}c&I(?b`I|!KHD6$IelnJa@gMWkz?ijkLOu7-k&-5*
zq~ekx72!_sxrQk>lw>LlrsKhk9tfO}geqggNsT%@HG#FpHLJ557i3BDC&j}Z?h~ot
zVZsfQf2G9c$NhPS5Jh^M%QG9PUz4uN5`$fSd@mn;gpoc*<RU5WMd8%z&VbbT?xTHm
zCS*Kq7nG;-Wq9~PW;3{`*{bdve3<38ZavJ#(0`lavTHHk+Bx^&L!|OKA)ULSBH@|1
z3Rep+v>m4)Ot|F)A!g-{Fwo4}i7zy#H9#=^JCb?xnrs({@P!FJ$%e7pbV2vVNtp@t
z>w$x+^OY_)+#bi@&vOUY;HibD@`QYFyhDjtQ=jEb9WrESA91KLI$C3xVB#dC@Pq{r
zdmrvrWfu;7I@$|4>ZV<3J$3pCB2qX;p{SDtjSZ#Z?l__06QJ;|Qb1a;Qx^7Qc@<R&
z7Z+hoO-ZpAX0yd7bWkPXJr$T|e?c|MJg!EyCN2^R<UAG)@bRlgGzoZ>et8l^bPi=x
zVQ@+SBRfOYmk?rTUiKB<?)%;b%wGocQ^fO}zEh|CXJuw~cA)h(xp79hHWA6`juBd{
z5S&$W+f3y-Mt46*1MEQYwhQ5yKfaWUle4G6j4`pE4l@y{zZ$BS2QIoTHy}Y0gZO*=
zY#6=z--a#vym2L}`TUQgPTP)i#ZY$gEJ+Y$0#RVF;I6ELr)(;R9NH7n{12hXGg&*C
zsX)?Qkh>~bl(*N<ki{z9cvw#bTKg(zhw^&cCm5u^F2wyy6~;<b%6e1+BR>*9%pyzP
z6&o^CupDf_6JrJd9m&HnfGyBSoCh2bpiOPD7}1y<1(|uL#r}-YtNB;x)z<K5rKsVu
zEE{fq5s|eMZgb#wlt>`-^M-R-7=^knCY77sca6OIq~pfY05<&r0a8ykQ9T}8=eIk;
zGI?VD;;uH=-M2!O(+rC!k}Ks;6l`czUrRQnN0Q-7!bMiDHLTfwI|3QNAg+&!#5spQ
zONy@s%tW~hyM*s0F$NK=5*wkv9f6R={ipWHs!hrBpj(I`Xb^7NzC%IqNDM3;Zvn4L
zkAA0+)trVY<dF5p0*)Pb>V*Gj)sw{yEo!zob8##(MQ=>PFM14_!D$LJOWXekKS030
z`ZGj)mA$(?uJx!)#Y!>@4wPnuO9}FJ3^%Ew)|IWS_dt|HdNK1WPw#cE-;8^dKo{8=
z`uVKM^*?>HQhc`fs561d>~bYTMcd<TJ98s@brjDBAx%UGOpG1Uk3{$1E&19xjmEE<
zD}FD=b}=i(Z)$MT8?;nxl~5q9=#)V>)PC+zD8!8?wn1kX$x~F5c@)9;yZs8HbFZbg
zk|$QPvT|@jw5BvEqKX$RnwG~0+veikvFVye=0nmvqT!_Xut#)#LRFZ=RIXR6496Uy
z#paluM$})rj87j>_x{TuU1taKwvmJbsM#-2|B=VxLW-rawh>WQC=JOqu_GT*Z`Qpj
z0;P^6loswiHq9-C!eE(W#56#elr2Q4!nur~EE#*x1uqo5keY-{Vk4J2p;LnV<b@HK
z|Hcx42}Z?pVL7rlDn*ZA3)=wz;CZt}ir@#rwF&Ee01^KJ+c9J!KN>UD0rwnP!?Cuo
zTI$?k(`=n)kBwc7XfjWe<S8JNrlQwlE=uB+DNOzi=0Xc$%EiJW0Duo0{Qm`-tp{l2
zrvTPbrrdz2Dcn3mcZ7!fV?iRN%wjhdT4Z4;Q6sRT?=(zR9~q#m75xK~!Eya!V5$S9
z=g5G`gB-vEBbmY+)n3I%%PVJSzk&n;2|=VFaErcinK<fNrPR*N+x$$qwpJ8b$tAf2
zhV+|weHU{b7VJDI<al{y(WwhwaDuqYMu&*HVQs(jb+VMc+?ounle$WeFjXkNECkFh
zg-TRM>iN4syIuzK?UD=6L+Vu~swF_WM;;{>gypBxV-#&G$D6C8HeZywUv<{FYyKkX
z=~6U}g_e@p`y~~PExpNPxXVi&qlzeJr@(a(qZ*st9L}rmfMn|JUq+I&5!-A(a5ZKA
zu@zH)zPH-ycGDTKSnjGYHia1I(r4ANtpas{;xKrTO;ZCMrEvZ|_v<sjYHpoNU>hE|
z^&fiKsSydSEJb``Dri&;KK>PG2YHr}I-#892VW%eT1j0J4<s!vYK$x(`V=jq^C&l8
zEQTi&t+rx37kxi~PJnW!wRMhQwJ)R1$PkYB__Oq5DlbNn$d*2DM`wkECQxl6lXc&s
zZsA-B1YK!`W_wz7P3(%AD`K|I%MQn8l}+Zf6s_h6w1MG^NXyiqiI^Ihr1Xq<Q|t$y
zI$>ZwJ9vZcG8dW*ZV<08cw_SL9mm;)CcXW7e@MDNJi-sY8MXFNP;9yn$ZSP4)ze+7
z7f~9ku-nB`FIic&6y0&EqBZ7#JV;CLvU1{?*aj^7Xw=ySBNB3Oy2#7Yj1|X`zWMa<
zAK)eEfQzYc-n3X$*!pIh!j^iOl_*u`n5%L_ryN60Mj*<4=%7-R8GYdf5isSE(6AY_
zvcW1QonckV%pKt|{O-CyvP5mm0!R;;N0PEdjcg+306!%H;sAPRZwuYWzna3RBz}*M
zuo?cHk5?wn8+DXwz{N8Or<1bykFiIE4YATwI09@mfqrBfm^=syaO0x9PR9g3t`XiL
zR|$x<O^~L;YOhXvLb$(CAh>_N{!PxW%K=Y0%wG^5hFBY)Vnzw*^BRYbn$8$eGKOpb
z6lKy^wX&;N1UBO#u2F?DNYhVE<(Wy{brMy>)(SCgruHu=AT_7eK}xsg&REzhThkG#
zAs(S`f^c?tct!0qz|#6Ym?DXY6Vd*%WxGK9*SKB`DO?`Y$Jf1pWt(~(?d1H2-%-E2
zbOoYn0Ns{Q)*0ocd%=V7Bh$*l6U2_^(=N2yTRj(3CVBwE907(LQ}VsZD#%*d4neRH
z<Fukd(T@b`HZ5&}!$1CrWngT0#UBGf{~L7AFYNgE;Fk~z!)0xrMJ7^CCXr{+$!O_t
zyCM=<71k3Io)EmJzy95o;YiBD9UexZ6V3=0x<JpY6It#oEp~O9)sW$pDU9q*B}*oF
z8A>H+eJt>Uzj<)cyt*t`Pg)zRWWDzod?u-|10{*J1f2<>NA#+-OS8;$A|>4I8TyQa
z)pja+#^DFIT{BUL2nAE`2l0oyt-h-#?PY^R{VM6BB$sd^5803#v!;+Enfj3=CQ1|G
ziY7wsaoP;FVSqcGdhKBwtRcV4>|R=v@o_6y0i0sZ(XuixET28qC7LYW_vM3V@0Dyq
zsPgN8Wz9C9u}F7Mmo@nO$Cp><URm|lllF?%WCS*)HuOryZ&KFC!UfvLtvx1Ow2czn
zEmtCA31y0K6bKpLQeMbMh8i$L1_Cl1n%I$Gkqz#zZI@)R11AIHuh;MbuLz3vsksm@
zuDz+98)B)Q&-5_78x5RZ_`eihJ@zE~)U8=Ta5ZnK27(czOr#*;+%#pim&t7djOSx{
zN_DAkje$U$4~Ti<86~HATT654oYNjlk@Of2+_pi3BHub0*HfloQJ8qk#$RhT{dk=>
z-yZhIIz+!LRz2@HZU|W&Nq@-2c;_IxpoDJh2X#zQ{$@POvFby$0SfJdA-_O|@RRRs
zQ+&L*mjW)H6GCUl@LMs#uvaAyl4&q*o5lhz4&ZELCrD_<*@e>Ft@Tr;W)198%e00{
zY3tpYPhzDkt2GOLGE*!L&y^)5P-{o{pkTOTG*kMFK`4;&hNJl2g9><tU+BqSp^+wN
zEKmOOrCS1W$pF`c!doaz4?Y7dF}|)%g*8!EQh%(!t1@lG;YSC8-XC(PR$>O?C>!jF
zq3g!<I$>WlL4HyB0`0=LFKkI0B<6dieDJ(U%tdPFC4j@x93!)sh4Tg;jK{4dH-ra>
zzL{XfG++bS1b8&xb}ht3+H%1&W!usz)zU~s&gYddXEOrAGnW&*nPAZO>0j^>>Rn#(
z>=Uvkd^7%Tsn475k(trWkB<i9RQ@11xDHcrXK+_IQ@2mw2}KJLFrr6is(-fxn=}P$
z03W+C&cqI7GVI3Zcf*8&-{&irgwh8bD2ZuLO1b{nu-0{r)oTSq<iR-E8x<U^3fGd=
zC-ysh^i%YVusfWd#uV0^_)$axrX#tTY}@gpZ56&XB9k@w-!~*UAm&wxU!va&*cYoZ
zQp!f$ch9<8BiE>7Vpy`Vlw6p?^6P~0BbS8l!m78Q;k^J#&55p2QRsl3hOerlTn7`b
z1wCwtV<E@7?bV9@9$7LHiZ_~aq2A_Rp#K#apGH%lNqj`oOsM|<zyatM6O@rk{Q;wK
zU4GNaVf^7PQuRv755JIgCesD?&mBQeD;2U&$!v+Dcb#gw<G$#}GrMjGT-C?tCqzlJ
zx*H|>&Yhd$H*$5#cQy#tYqP1#!Z*a#Z2fvri36#$%RPb-V940qPZ7@Pp*fM^es)qL
zx=w(@+pW7GHvH*fIvR94k&}lX^1YZV`qnyX9KV&z+<}4)XquIe_BF!~4jdYC21*nm
z?CAAt>g)U;VOUzT(X=HTz&0t}5lZp`3>KGYMP_{F$2b%Sjbt5?{d;q1+P*X@QM{LK
zl-5D}UQ@nYxti)kMPSVd?;Dbeip93Cb{t{Z$jyH&=|;wGK=%oBp>sv9iCxr6n;#S^
zojL%Y6kW5}?eZ1HZWDak{=KVb`nTGjFYh&2@HEUu*i&S)597^-ACSH{vV&4^z6~1n
zG6-FioWsw=0YX!RB;kjh3h5jx=xm-kr9cH!D5lqk(q<LJK5i1BND5uU$vgK1=n!l`
z4KFZWg~bAYT84d_5N;O4DXXU3!1|vF`lonH{pYMCN9}L_E}Zfzm)FMP2GdKkvI9;I
zYmSq##mXMsr{|?g1hElLr}PKr0Ta&T{V5i7eJ;7VHfawy&G}IMMgJgx$Zf}VoyKSo
zPEq~r?<vH?L6w?z09h_?*4GaFb?l`ixtI?H!X=2tDTO%#-JU)#9}nii`2f~cA~;Od
z8gzJcr@J=!_y1@gNK}PKzEZXz+%WVQ=I9rBOdn5&JAZ{$3(7ze40IJye7$qjt>qp*
z<q(|5x9o4-n{iS~yfG*T?AXmVml&GuoiF)-5^aKGgS#Sh04uJo;N@;pj|S%h^WQBu
z@w+XX@u^;H+?7;BOvaH>W}Dj=8`bewUGE(kF=~nj!I;aaik5;2&sZ?%&EoNzQwX%@
zpG%{egH*(Xs+;A32a(2#yYA7`wtg89)`%H{0GG)AgiMf#!nYt{3_{=fi7P*kw*>GG
zW#?{&z7rlyn_6FhZ`+lR8;GW%`Z2S++qf#Fjma3yH_(L0nmIA67e%*hg-Ed9z{-FZ
zHd<9gGz8C%t@vS~I8pw=0ui#O$@Iz9231_0M?`%XL+ZZ0b`4PqlrudPX!V1mTB0^U
zkt7j&VA)<rb%GyRXN_Q3w^)r2aq_y<S8+8RiicCetvM!xw1HMsScfdbm>OW_=k+(#
z+Asr4ib9^1p~%5Ar<(PA72BfTtT0{!QQxEMM_3y_CV_Ej$0U>po6T%;1tPDlJ{XSp
z`SG7ca{SQOKZs*$%B&vMt7=y0m?6j_rMOtOIsUN2K4qY7@p#GDk}2=*SYW*WAx&7M
zJ3jE@fZPF>48%n}dW!d73l^G0ByL?dV<;W*!xYJ&#<UP?X>q>-rcIW>%<R6;#bNnG
z9~JE*bwZa`#<<D{zoO!rRaVu*-=(MI+B2j```|OTryf{lLbZ*&Qh3=0RG-4cfy>v$
z#jm|&b_o|xnn4KdvHB9LP>w1?jQk2H^GiESyZ<VSpM1+O9gQ4=nRP)&ws9#t*w7uz
zj563lYPB~@jAoB^)v6UNB$d}6ck=QqZ(;1I)=jv8qd*Udmk=;Oi_ng4(!XZ#Xx7%g
z(q${&D!a)+ls&AKO(^*wh(skNFu%!dC6zbEYZOd!MS}aME`s1wr}@GVPI5c{z^k-D
zQCH;sZ}Q|DW4m1cRFEQOKfjcfy0fhK_UZ28js|}sC8$u7fY>Ccf-fVx$xB%76ps_9
z`WG{U+sMR8{=i3mPW;ak(^jxsl;W_2_Jpb^aR)1~(F&xsZYw7N4YVsR9=?bMW>_FI
zH=W?h0d%6Op}<XI-2F!7fJ8LN;M7GRW7axZsBBk9S&y2hI;+Lxb#f)h;RRRqyRRa5
z<y*t>Ka-u!B<&h$s3yP)K;J$4zpxLz9ld^Idv8;GZa2;t4#z*dCfUHEH9NCnm*?Zt
zusN`uWE*^a$Gw?B#~Ujqp=|sRUL=~F9+3%pN~#lnZ4K=N;JLgkvhIT^5AWM-lkzrh
z1Vl`!jV8xhP%;Ji$roVpH2O{fdD<el_Z?fPr9mNfI*W%M!37|;W)=i$aX?xe6xdv)
z5#Yb|n>$}}HW~ONi7#%Wx%eeiA8R*WyS}*5_?t96`+0KXV^%rY0i(UtuEt*p5!+7=
zR7h=*uB}{Uhx>A(=2MGTykh7@Ywoq|%AhZ-iP$Xw{zaEV=coQmiC+b3r5L7~ewdKi
zx}76cnl}jF6Q`)_l|%p<1Ubc`F&ir8eY@f=IZ_Lkrr&>2S{sR_sE7ED%x(V7x`!%s
zR)BaxtC7n>ptpmNn7-Fn9vz>R+QtE3V{#;oJy_BdEr=;In3f-U2zKQMD~xLM)L`ie
zLu~hQOn=ScVhO-6PD2Q+z-W3QA->X3h5+X@csjGkQkGkf02NxurEa>5ySdIMyYf;1
zIgDp!4s0DCw)r1kKeET5B)psxMl%boWL5&W!CA@Gv8i>*qs`?9b&)h0{Asgh_JpLv
zJ{wDsrJ2%~;mJrN*DOgj48mzy8R=lCksti(H(2nEx`fH(_GECX{6Es}jYP>_FQ{pC
zFoIZ?3m>N#u?fQucfk*(7oEcvRqQ=Hde9Of`>oCn^e}skkt^<gV75GALIz~?Bsi@x
zzFvNtu@1^1eeJ;Q2<8Tm_9TKr9U*8fir{>0Z#V26TX_vqXh(6<Kw%zgt4XLO|DcmV
zxrYjG>E);o>#Sh9s#aijLV?RLxk!bh88{w2q#Yjgxjrrc@1NajwyRY|f~tX;dy6Rr
z!Z%QN?l?Wjf|sf!TN7A~qcn4SLXjHIj{)2OK0No%7D{DeaM4_3N=o2a@>0J$HmpM-
zE~wIbJ@2348$652>~mZp2ajz#&Nr4V@Gn%5-+zDu$q{Hu)gT}^<>&pU`4&ls+YT{%
z!A!v3Asn~lUf<{t->a48^^(8M6BP8Rp+_zeP*bqcy3Tn$;VHSh1W@w_OhNFO_e#`g
z%ihhr$4Dv(kx>YQkQ%3}NWueI@SB@}>Q*iL6=ZKQ8UtdlBF<h<1dw#to3)4a#KakO
zFS7OOf!=mcK}Uv0pz^cD`k+6;)t3G5mSG$L@a}XSq@Gtbm4y&+jN<QdBBC8AQwf;@
z7sSUNfP>o+(`}VnoeER7Ne9l@$&r!j-ro|Ox#!f{($Bl&WDoZFU}VryiIY9J!-`x1
zV7mdJVuT>ELO9KnM-ipZvrHZVn*T*n!Du03%fRJsa^@n+3Cv5MA-vwXf@gj(I$)(W
zSBu$6{yFh+SqrCYT(_P5A%F6CiQoIe;X)SQK7gOne(GOkM*IYtSVH`S$txXIYKSt&
zIEeO{{Jp~6Ci!Ri9cb7aGJOsblg{jO>y(sQqIM;Rj{qVs8SnNomQ-g2RW_4Sxx>E*
z!*5PIykkBNCuf{(_zFBUlCG=+^ShG*tl>;HC5gCjfI$lAsin7u9;OJl?t2G&eb%H`
z!wZFnK<GMrt-@0S=_-?e19$-{cvZp-Zmt9vY-BU2`G(Lu6~r>SBv}5rrZh7}xcx5F
z+B<`jQhlUo7aOk~K}n|7^6!~}h<X7OtnG+bFsX1_U(%MTEjK~Ffr<N08b-;PGt7kI
zKYGca5d)WYsoM0|uZ9^^F68?fvzLnZ(!sZ#y^iS|NPQkIlf72jHiXPsji_i1pn=7^
z!LDt+BO!k{NXiM?R*a7==P7UO3T__BSkqJh#)qU-51BSH_E|YsZ~s?{K<`vz8EeRf
z9|sChOMzh<{uL;7Hs36kX1~ytttG@o3X|DfZM(z1LpZ9~$_go4C^B5Pk|v4>{GPE2
zW6qRLBIB-*I<Q>vK>o<%LEJ&0wngwk$u=0r!y#@y3{;Obom`d>k;OQzJF3jrQiX-`
zB{r3KEyTYT(*b(E*Mb^^BMR+!bpz^rY=b&*b}aEP5>>1=@1_DVl-m=%$Z5UEe@;9S
z>fJai!|yzafNTashPfV4w)5vf=%-z3jO;Orj)pAIJ&Ce)az+w{RFskYdd+BEeRozP
zP9+AWt2;M@%jPsoT%P+;;Sl0#&u1nwl?q$QJ?StcOuk^Aua~7H$_*@_#U)^B#mzVy
z@!wPYHmW&V9fv?9xpi-ft*~nFE|I52{j0vqI(`qyg*|y`2KjXjrZ_~guFzmR4csO6
zG#%3H<Dn7FOvQkVkYkdkpTw*6Ee<f1z&-eTie}u`XFf6Cb&a<_`*cV9ycF1<jD3>B
zi=s8H_j|X*07<jbHSqN~#LOSg!dxddsv(zvtgaZ|sQBDi{rNh~(&DoN#8n#Y;iL-7
zHUIV8xb*j}5)X{q17k@ZQTYk)uS&Iqrt%>hSBLDO){>Cwng^`IsdXUBQg2Gja6d#f
zu-h!6U3?qMpumY_q?%YBapW%fxdeA}@`<{uT!6S)0n92m-L`j(_aM7(Kf=5?Kj}+w
z6~HYvccK2Pgp}Tx4;|;($W(jHAG5DoZ0q%|*FJOl9?{7}bYW257-o85o`ZP?1k{yS
zH@ueM7)PA*m@~Cv$RE*i1(*{}wAa}FcwMLhq%DY3vCO>Jz<J%Tco(tj0kKeU`*gky
zfQQ1<yyj^V!V6|{kaj6i;F9{&P3Mgw3{!0hT$Us!{Ju~_|FSYXu{Si9bTHQN3Q8Zy
zfZ$@DqAi+zn5*S>C*9LZ>+JLf?iXDB<ZT4(vt^#uM{+zvW%^wyNFz~5o?cd4TBNU}
z#<-OUqS}$Qv#&N`7=-EdK0dTfVb!979c?Sde>yCks9DD}B8rh=6b0jlhJ8q`<%<-9
zI1V3L1XnfL!+JhZVL|dfzJIc(G!C*Pm4^6HkTgQ}t^M;zAu<et4W`JX4xHdSLyJnn
zoy?JF3FaOGfC+xgih8JIJEOqh%ifq=NaFw@z4vJa2LMKY?N8zPl|a+m_up>r)%Ahx
zdSfu{Ld!Ne02Nr3W6`|v10{;*KV`Ygrq;_GzFz&x&p7PJ8SN2r5~oFHSZMuH1VEs~
zgk{xx;L}m+r?`|uNuMW3SCX*8Z-nJQX4N{TIczt9pZSc81(GU)746Eu;SA`<U^EY~
z`2yni*Y`JlWpr@)F;JB-k>G+7#a10gITD>bog|BTG&gx42#IW-(*Y?h<q*Bjrm<<z
zv$XOP6H!v`(4ztyBO$g*fzSsk%NEZRRF5j4K7eqQ`3<qYV-eg4OV*<^s~hiiRKntO
zPTC!S?od@nt=79>J-}4BCwDIDk!N>pN?R0$!>qOdOiv$Wz}KyyFTrZhHqH))t{h5c
zvC1_@YqX~ss9oE>&IVstZ9yOrbi_F6e^L}4wABAU=Z1pPw{{`Ehn77)Pu802HK|$Z
zfb*;hwDtQVjuhqu_ZY}Q7(5*{jq&0Z8ngVMiOGPE+_~?ZVIu(C<AYCwP$cNW*2xoy
z>emJf4A}kg5ZS}L)b$<Ai9~j9rpv>zU_Sk3k_<AahO$3GVrMYa?%x0kh8SyouGt(>
zZRT^?JO@G>nWrxbHg<aOvX&0PISc+>K|8tp;)h1%)Fl7fJ5(c%%QLP_n9jWyBU!N6
zG6t{?xQS(%s=4#vym4`jn6rmNJM}_xX2V%rrsiIhd}~BgRXf^U-UrM9bM9u?8eeEm
z1a*UB86B@hcnE1^Y{|&{b`fYsLc@a#?Q-gA{A4R+9mKmwXje6_09=|VCI^#6HVXE*
zS6mN{1#SP1B-8EO8a<|s>eL)Az!iCp3dV&ucEd1vU~a869YV5BHLf1_mV{=J^Vz~m
zo+Nx%A1TQzp$?2>)GN1ic;#)G2vG%Np)@u5b6vF^eFnRi%?|B6Jvx)BfpWc7>~{Kz
z-_5%35mM#MvI~Ffy(HL*<L+<^kXWi`!jN2~tY{t!%m%ljl;b;cU^R9c-A!fhHBI^0
zHir$*9#JX+pk;?2RFwF2k~&GGmmaE8sx(wAahQ@E%!V(-f%3zW76?9>%@FS70~Lh|
z$L|V2y;$73qpZC$btIS?>vF1<u@nb_W`3GK!(v?KmGTf7P(bHdtpS;B2w*~CbFUr;
z1o8j81x$n5{o=7g6A6=LVPih6*FvDE?-1hLFZrlk`_LU(vh$#E4K`hnEcd=Vq=j_f
zo%C-LrM>_Ar}V+)vM0?Jvf|qD0?UW$Tz~NAcmzF%7c@ah7vJ;-KZx0`z{}j?UcbfC
z6eiuvzIut-ZmYJ~D<W4!j5qC~QYR3tp#>SEqIUr4-9lZYYm;78RhuI8V-3iAg<b0w
zE=>-&9wPnjGh5;W1xOjfBw2xm(uSvdh9O7Q9>~rUR<tIi?MR8J$VD~Jd+LnF;uAS7
zM|DEHNBvCzligCq;&OVU33(JpX2tU|jJ4;Ni+zF`>`>K%YiWq!6mSsF4G^Cl5iTZy
z?3HqTsoWOuwg}<(1DQB$y585@+*5hF&AADn1H;8^***Xd?UyrP1rzaKtXpz6|0w@q
zlaWxD84O&7KhNz_VMo0hE6k;IBXOP)PBz+lS(no}7FuZU{=h4{{HnYp3IUWJ23R8|
z|I0dU8|;0d<&E>7XJ&lRJ@LABeecX-Ynz!Y=6^<A4XwZ-Cz@ZBf|HNQn|P>X<_W?j
z2qW7*gx!)-zDh@y>Sku6$}jQcGgO);oNb5m$3cuZy#d-IfOD?&&nQH-h)&G(THgl+
zNjh-Z;diX5QS4~=^Gv(*ice0)*EmNuQ09t3A|NAWY?}NWYE;+Blg)frfYW_x;%{yn
zQ(L=>q_9w`EM>N6CKJvI!(W)cMcv4_N2PiusJ&23b*(;8fWY?9<<Rwon-U|R$nV<D
zfqa7~%dd-x1W|-v9&d*Ov^VpQ*2q6N*-T&a%PxOB)da3(vCr)T8wXzEs;Ehij=b#?
z!vb*S1FIPR0kxuTn~3}dibu<QYkSAsoS7s;0Ip=kY<%RQyRID4`O2G%#DQ22Ysl2F
zC;jYi)h!Xo%7-hvm1wI$EvfOutNRx<;wVnCoM_AeEa-m-lG<JJbS_BlM;s4+$Z87B
z5HAiPsNIT*L_=$u;hwmkHb7-jeiWdUgIPc+v<MDe@F&%Yl~)e-Wa*UI%dWORC{0lY
zmz37g1X>S>F^V?n@26R^Q|RS96@>CtUtX09#P;M%Vq#jXRs%);a5OqEfg4!r$^Gi`
z7y&{sBF1q@+GyH5$mH<UM$?ST$qTf56cU#jDD|btJyl^kxR?Jotg~PUZpJO@@Yoxz
z>VX-E58GZcXoQ(7c-&E}<wa@KZ`9~359&oH9Y|i#<$e7AMY@;nBu)hbvog2I^n6;X
z>?gx!OVlnDx|h-r=RIZk8%uQE3pqOedr&`+Al%780pIQmy3t_D^V(sSB9lA`WA2yo
z!n-b?Q6nIYzK1wQ*Zi4_;9qhdM%fS%DMio1%&KV$;n3uI<yo{)VX*VEFen1-+hqc+
z)g6gMm;zgt`^K4~B||*(M1Wr#cQQ<CPST0VoTxlNoyw&iT)9{GTb6Z%tK2s>y!vLh
zFT_4(i91GtIz{@QL{{ooiY{{5F%(#{>xdZx@yHi%-MS^c*L@~_uXM!$@jVRwqf#L`
z^5;lS#;AEhj`Gcs#TM&XUIaGr2$7E%HtZ;p63${oQ;C|)yh4T+gLp8jzuA}8sdU*A
zN02;j2ZjgTWaP8;1KWb%s!!3Odr?lJ93?6>ICd--*!6F8LZOK7dy=Zo%AoO=zL0k>
zQMF?ZIa^&7dR|qTk#`wWsO3|lX^lplSJ@$^%TQI4<jRKRjw~h<2r+|c%LB(okRMqL
zAUU7iLG4z=4^4(78<3+i#_{$=G>YLdy!u`x^l*&P)Sw@~<l)LefYVfauJXeDuaWGd
zbom6UaAE6xN}Lzyk|TW;11^fMx2&n&DEAeIFm-o2os2>pG~)kpyuK#Jx$$(d@canx
zM0@XbOC4h{W8$R1c50S0zY2M}wX@GLa_uIVMXGpLi%)$o)EPBrNTQfJ%;3{l;}45{
zR>J;vc5OoVvs#S`p6Z%cBb4S1s*12BH$H;BV)7ihtl>#pt!fW+1gXI^B)|+j-X5PZ
znk_e}lZUYR^-X`Zh^mi9`B{nS42;_*83t$d5~O?8;6zWzZ0#AcVMW$@p!!zq8<qA;
zDafa0qbJdiZ8)k#vE}nB1>j(I)Vkg9q&&T{%|q|Z`0CqclbA_AlCwU5nPzDSKaIbu
zL+bvn-5ilB@$@c|#XMLu6VTzkA*aO6cO!foG=Qr0>j@dxwmw2d?d3sQu0XeSC(9Oe
z&nnK9l)%|gW+ihxb_ewlKW4R`)G2PyIwGUB#3F?&OzD6d{*~LI9MW}ai&<$#ShK!}
z`fD;P41J7nQLCnxkOe}5x4cuMs%!p0PxS0uCR{I$pVv00yz!{kQ`}e*l1B<0NOPp&
zsWF%Od8ut-cuX17Tnt*`e2$f$+>sq(6K?GOf@G}5q!oRdxu@DI7MjA3uN%cP7zC7o
z<X)@~$F2uyg~L&L;WL$f7@hO)Q%%zxAHu6`UNkCZ$qI}hO<-4no}J8`748@~)G@ca
zO0A?S=QBes3&9>-zo21nQk=CCNe?HaNVe8wYu5#2!Q^iWxzH(I<XCY|9s9FaQS<1&
zndYH}Q3MJ;A&*rw<}R5js6upgX_U2~0Vws`f%rUms8Ygx;H2lLPe}H(Y2^_|`5hwK
z3-IYHu7<nQA6&9|0x*^%VB58?z24(2!By9K>(EQd2@H&P1OcN#k3;L-^wc-bH^Xso
zsl##S@V&C%Xx$*7RP-4R|K*XL#Y8D<M!oT-_$*bEjFvG8hD>`lVGn@*4Ot(c%_t#~
zAvz6&LA;_<k#O%jh-N+!S)r8w?gF5)xgnccsQrIGu7He$+bgmTLP*44Y2S6BKQqfv
zD1!h24(Y;}z;-~F0km5_sgvw1fTE<!`z#fg#*oDbnoKi;Rg5(q7}mK_6=Q_{KaIhl
zWsURByWlV~zK_%WTe7AkPi*i+2<W+&hUZRwakq>o!-3r?f_)?@Mqe3}*>$nZUYtGa
zbJJsk`UhL9Z?92I->UjsIzu=p!e!-T_l6a-xyIdZcTbVbfl2Cn5E;{;t}@f%CcBXB
zW-3zGplwF9*t1JCPB-Ae{6?Bc7$Rdr^ghEu_^fw^43DQ7*P~BK`gkP3ZtuK<YI685
zrZRW5MCXov4*2uJDxB%o33wFLUuSKWPAq=#J`2kVYE)esBKJ(pK{WGl#_<d<il6_;
z$3pPSiL8ab5pO}$4V7~W`-%n4eFfa^iG=S)ATRX~@dW{`q}VIb^|F-)v`3db6({f7
ziF5QM?kde>53ot1?i+u#CeMd*84ua8I9%xvgO6oeYzb1l@!WpbC*?IZ@hYcSq`I5A
z=>h`_P@hXKa9~*(iKN&|RLLz9_yg~oh__!b?%UaRx8u}`H0c~4jK`?TvQqnkBvA07
zq86dHF?pe=fvqEr$D+mWk53!STA$L<=-vTBiZ_)jCarI5+XfINRkpp4L#2yafrlW4
zBiY6-u5+E-I_;UX$(u?n6~WiYh?(3I=ZpoT4e2B<1BG|ZZ39<=)6^B1ThKQ9-zlMm
zwHeKP3tmDk(b}Ub0{aKAU)6Nim-=uI@{$|KIxa6wzvF5So#-)l;W8g3rgHj0y0}{E
zS|~Nz5}T)an4QZp39NJ->83S5yTATRjU5=%tz(yb%r{q_7l2?Ph3;PjQrR(ne#w!q
z2&{h7phFZ{LM~6YI6(wSR`gd*jbz!g6+lM8@ZjmTjnWOLVfchB*I6A^aZ)<M+w#et
zY=<&Zm>j@0T=eOGS+{49@C8S9#=5M&n0D>sylYMn7b#;l0NEc|1D+9+zx;tN6noK~
z%Hf!o5hPE(JmBc{(xvA4=C`#8v=FzkX1cY<=VZmVQ#QR{LHG0WG7{crf{q8Sa$ykK
z7D8J8{ZSeL9kV-0+ytVLoo+Nlosdc763sf5fl7q<Q%>Y2)HSMk(7u%GIBoU=_qbN2
z7m@gI6H`;8{kyr2TBjY{v5NEhpgQJqF@0cS*H69;+Tv;@xxQ%^Mc+;o77!s2nKLx7
z(g?V^KWo73@F;|KHv~b|y8T%{$Xk|{BohTw%&CHqA%ODR;>tVD2dJ6r^{STv?}w3l
zsh+RbgRv^bQ&KkXf+3gL+C&BBFIZ*Qeq1_HVUiEX6(LALf-{{bxA%Y(+8YJnnn5+`
zyV+pGb8*r(;IkoLJfb}PNfM!@_S?Fv`S@O(Z6G|f3UQI%mI5s;*OTI0A*X%Q9VK!k
zt6Aor!*Q)Pnw{x7fPa!rSad)qWY#RRy5v&xNVr8wB@8@-RsN@{qlZqA(cPHu7aWsk
z#P#5FGZi6x@J7_mAwIyVPF@^g=`gVq5zt!=scUlh(R?1lq26-GoJ94($ZlPk=6L^h
z?BhFNduJHVP`sfT<`%#Kb2c|FPdjp-an?NS_o4Zk9@?|06yu;|Q7x%V0-Q+~OS8-%
zI$#t6G^5OU_thoQR7oWrQ%(@`=<BLF0hXRGPbSO8xrL|*U&)|`jCL)|R<U%>yF4s^
zJzCwaGtd^nVe;!(fCp6d5Bpn--jUy--!Z61biY7@IH%|WWM*s-{up<Vt3i*iy|rKD
zd`#pJ`t3r-BVULZ9e1${T~2Iom^ThTVIVV*i8XH!3|jOjkc-A&?HiB<TetiRVUogd
zj-UURuFSge9?;oBTXDC3HGkBKpHLA43A);5_IZGVYl)xvh|^<4C*{&SJKfIh{#k0K
z@F)%>9)d_k%GoG4e<3w!`s5;Jdv^05!o3LrFonMiAmgw?wOF19=MV{mxgW~J_7}-4
z&E&e#(tCH2w+%=dE7MfIT#Z4$G`7uKtXzsGjbRT?=+wW>^P+o~BiI<9c0CPC$wtFj
zL=DV4%cWT7cxKn^G#TJLSNk6-g1#s(15^HIrPYNY1>(U4m!l9a)0gZysVZA-l;OE`
zgq>sA`o#6`x7?a(kiJqI8UL2K?kDg_YmXB+LO!2U>04ZNQ>Y($JaUjpits$Cc_>vB
z=Mmdgm%Q=+JSG~W0I>eJT^P*@z~(_cd;d|JJ|}`b@TG%d%&nX`s#9)Vpc|~zqw!&o
z@+(3VpfFn>1TkdMjg2Dgbfj^whfS#Zj4*>evx%@=4sql{CJ&`6g$sm`GC4!*2T!Dh
z=vpFY>ir8MPF5wSncq+<CfYF&B0Sw@uy2PHztKDRWutu-urc8mU`h?NS9qZ`X^;P&
zuC?kNWh7bhK*7B!G-U*wcB(>H>w;M+TLE->Q4KN7Xlga7;h3*pihd`qc%-U^XT;wK
zceT)HYKKCQd$(KO-F`H@>)_G_-R<N`9GCse4CQ;dq#9@cCMzVv%N7A113A)e*rVk8
z8`3C9U_3NV$K5hc#2m^8PJ-`y9V}VapD6kH<57H#Rf$D85`j!g{Q5T)E1$<z<s{Q*
zF|wj==m7-uF|A7TYH%OXt5&>W);-zWsaqjk$BkGhM9Z4ntx2HK(#{YLt`Lau;WcRV
z^OlL@LI%2`nO)dM!zt%9)WH}Fd^UM#UXeTN8#{KxrY0$Xu6E3GYQzRo1xu7e{Eotu
zzTB0H54R2Gw>XFc&%@C&DTu=#GNn8Y7pF}w&s;rj!Ljvanm(%JIz4&aXU7qOu%^+)
zl&Dy-r8x~>DiWHGx!s+8CCpWi6eNM#K|B)w7?*Ye9{Hrx%>GL5d-3=#finbm@?l;|
z_B5;DJ}Or=pVuZJDa3*tEb0{JHk3~ts&@bzl+UEjc<YW)XbQJj9JN8KTQJ0F`8P|9
z<G0S3Ex_@V)T$?TY(h-)RA{yAFxwE=7$OCyEQ-7CExrMd%MBCc@>MO~jB61K%!<Ur
zaBcsFbdIyTUzNpoSyhbK?X_TQM*@P{wTCq=8K7h3rZ0^R(JGm1po>|)a~3ugGn=sx
zlK}3YtqQQ=E43efhaHA57w|$rdnv>cNXcR0RDRlh+qq};7!!X7%kF*M6*iI@tLtI@
zx#d!`3Bzf|sm^J7YE(fxU!NIMjcB3D22ktFE*0a;#VB0}0Q8!bhY&ih$b|Wy8{$-T
z1_B{7c2$+jb@&1h;mnz&8l?$;`y&$=7$%yIb$lE)@Pp~6Q7dNQqp{|np&c|*EIk4B
z&5@XJsDx&v1j;6QI35cI`@3`wZ^~zbH;bmH=>Bu@Q4~J8wu)WjiW-#C8;$8X7UPF`
zImTD}?<2Nd9E+w#7Wpg?!pP;Q2dJA&aAk|Z4Lrb8`Zr9qRk1qtkLqgIgk-^MNnNBy
z{n3_$&15E&^Q8i#=cK!+&>Jkv;gRM81nE?(%r`awT5<M>9uEEKqWtTfn|F5j>05lG
zE84Fm3j&>7*sIqIfdlKE<}7;!i<PvL)-r<7+<LoHQga2|zFKb3PIm#299I4`-L#;5
z)wJ_24)amrKoK1u*Fzv%*nH+`HQct;ItdbQp2~`rA@y(0)0+x@jB|*9)N7#~!^6{O
zH-Gh+mY#hxGlbMi22tF+xkKg!o@PIVt{)ki*IiH_L+mC6tR<(veDuB#!Gd+`fm#JY
z{q394HY(5*5J5$hkGhEaw%Od3{YxiW0m3*naNuyg2sHwk6UG~x);-83KE08XOOEEN
zMI6iP_9Y}B+S;@Y8s=>DXPz9gA<9S4qG>1p+slp*>$IfIQdY*id}ij_VPvUvJnV5#
zkhVU{rG+qUc5iOvEXM`-9eB1+_QGz>Sdy4p8%{ws`aVHd!rcs|5!Heeg__ETNKf5q
zCI+*1lnZC8tNs2Ky)S(4DI*+@&Z3Qb(Q0~^v{PbgwRF{def`Y=Eo^*?nVOT9SxrMT
zW?FM$m2sZ)eK#%v?kY`-U8hwnlA*racxlPUQYR`bJ<H{)OMPsp1ZzVrMX}DBx(NsG
zXP?SglV@(<$?RQqbr@Uk4-uY)ZHb({(O$n7@iJy$=JIZ_bx|dAZR2MXf&i`J(8xC<
zPbw541DTaYL@Hyzz)%f=g_T|p*xFN=-Ws00i%L0XD!a~w4w2&M0&F#O`Ap-xVtusq
zUs2ye)Zba;s`DO6u7Uyi8Jk20_AoA|?H**ug<|eVWN;=?5oSI$yYc`6u`Cl@twKb<
z?`c6l#(Bw>#KkvTr-u+GLe7b<MHgO<#=Knkc9J&mvx;odbHKUtu6FSErAfvKMGH6d
zY;w53{gM}N>HNU!x>ExU(ISsTL3+cPbcJa0I9&`8zMs;7#>H9BhY4gDch4!Dw3T2w
zn<c|<-t$4L3U%QJ4VGcwAfkErB!N%SCk!5v*Ry1n5#0}(k*Dr_NmdTwn5LS|wkZ!|
z?`LwxQhuz8{+A}P5hyV}^?!oWR0u23J5DM+V!0k-#zAU#QYNp9r0ysVVQxG#<$;-W
zL||(?QmKM-7V)Qlh-ZxfG*GWB!Fs|U6#27x2Bnmf>tmX{N;g3hD!~D};x1osOd-w^
zI0bq5OTSzonIbIsCdu%A*ej=u@e>802OyQs*a6O?7CYf5fpB^@CGs^GEXL#m7eCFy
z`hvsm_Jv+5WFUp0w#WBvsKZtwe|gu(Z*0>%J}ipur12ew-oG4d6-8<wa$tL6OnH#B
z^Bhwz-9f9fHAS^CQfs4iU_|b8JSIWW!`|<E4~pzlN0#XEN)?()L-wuY;!0P179g}0
zr>{%3B|wffXfQB6_3HBiGZMr90f)hQz<}hx^%LUbzg5|^yP8ALLZX3xH!m7$fko!z
zHXFq8{Y}SAacE#ucMqy!Yrob05-UeoukyC?#r_#9^0tq)h0mP<`TcTD^QVaPT?als
zD2meA(8mp2N;d}6xtZLaB1=Hjo15ss@jF1Tqv>kJ{ULFAsDD6RsVL_cOfBz#8tToE
zdpCA`*C%<;Im~tJm8G+z<9A@Qmr;ThybP)|y=w+(8iFh{%_~m7uf-T&p6|3442vQn
z|Gm_WC{`V2jqo+&ogLH<{kY<8TrE_fzt>G0HMMSfo&ybc^$*zsPw4%>%G_G%s!YZB
zVsLrYkChtkq0y!`IKQVTq5j5>1~?G*Q`zlV<0EpFsch&&k83ry(r`r#CHe=zx56lq
zCy)I=j?I4Wem=M36za_bk1{NHc3vq$HFfE9quJbeR1eM5;lR?^+-&nwH}-eXK2*Z1
zC|pbnq9l#i9!n*?2O4b#11S5yr(l}PJF%ATW0}l%nEup!i%Ptec7aW>`ESw%mW=ev
z6h`!S<}`fDeQ&Q6$j9iGITo}ti?JlL`kx~s2(&4y%SA9n%|=y&$#r`lntW*pcW2gp
zuvYjuXS@B$cu&5Nw#{yESfmwaW}>lVWAJA_6s^EI(VzKh)Y#-O8<&;gnj5miOe0*e
zHXEK@tdd}A>Pl?5f-e%=CTSsJKZQatx12AIk}{*gAsbJqh;IHZvW9XA2kLvq(Czs@
zW^mOAH7LPMDZtC5DLR<_$=b3F*(5=$w^eY;ric6584J+B5=0)TWjatG$QSv5W17cX
z+lN~20Yy0ogkEUmF|VU22y#z><8jKxEcJ7X`Nn1JtN@2Mu>onpH`yVgtW7x6>4BI+
zgxg;$kuNzs<fIdv2?c%MA4rNi0ku^ZQ>BjIZLgbV+j{?>QI9H0gI#j!Dz^l;e;gV;
z41VC_il+I#tn&9g0VWFIMAAKJ#6v*Ieuhe}ZZ*G2x?;OJ)*0{lK7`qf0F6_)t<Uh%
z)pOQk0b<S=*6ZtTA?%rX;+G3u$=IBJSiFt?tdMDd!3byV{=|U}C%ao&Oa<TKl#{uv
zjIURdV8RK(k!TLsN_8J}WKv)u_$#iLO9|Mv8}5dWF%H$ZojO2!<LB=N|379?=3Bt8
zkiQab%GQA|%hrFpmAlW(4&;qzq6gSd&Y!f>-)>XxfJZ?a<aaP&tFds-P~Lv008}>H
zQzyL-@Aj&;GRh2|7famw_rZnv9a#1i#2t@@lexiwPO&A%4YuSbGL3y~8#8w#@kJd!
z_Ty~B!LRugc7j7^yeeK=7=HRSV=5H=YTi(uPG^CKNsS1Wqdt|1y=BFfTMf~^zq2RS
zLa9?bJ{UQ8uljO+mtNz<?hILfl&U>k<!ndeyHgToX~=W9yyo+`Ae2&^jlWL}UKdg3
zW3*5=+T_bU72az6p~^~00hdRdcaO!cV2VmJYi2LerM{JC?=DSKF)v19MFT`|yzCR5
zN6d7sWA#HK=?{E)kppJOHPHbr=9u{_pLq7&U90`~6l)#CkG0$Ob1zhK8J{X}^9ru*
zyOy`eMNJwO=GyiE#P}8s?ysjd^K&QF5%UG>?94g9nLYuYr)VT*0iU%In$+^Z6irhB
zAZgo?l7rQQ*|eItP9>~a((2j0JxNoa%5R*igI|?Skx^TC1ZVvNtl=?;${Wh~Q<dfW
zU>n2Bu*Sf459!i+-B(SJRS%n`p2s<lY42g^RA<id`y?($lrE%7)t0od-+%M2C^UAv
z%$GDGS{+}nzazF<UyD<PGmtfFy8Lbp3)WF8$rc#=i4T8I{o3m?cN4*x6WDt^cEI`w
z9_(X&uPc`(>Sg0LaL?x1WYp=ik($y`#48H0BS7;PkSG_)r(wbyjYH(V=U5z%665#{
z|4i&lhq$C|>qyO0_7`<3_x=o<Vm7sZZu{(7JS2mA(CCYCMu)yGG&z2T1~YIV;vw@Q
zg;R-Hw>`f%%c-CBj6Id)y(NH&;YRT-HKb4-o61FwakY#J#9qhgc~mAo^ohuD8p~dr
zS_ScUyJ|YTd7HC;oDy-}Hfm87`?W$QNRkV#Td~Y8CR6VmYYfe--b1&A-ZVzkzTvch
z?WFK$LGeT^_9I6dsC!Cvz1u9i+8TKR7$8h@#JUldo`AlCFMzyJu$gDY1mu+d_&EL*
zBxtpC`8W1r9g{a<cZB&>@>;qiLT5-w%7b=jV?(RYC}`g(_RGUa<C76X)-^^BVW$}o
zB&@D1*6drb3s&<5CiCer1)FP@OWFgXI=D@0q;J!}gXnWPw-bHT?QB|^-?7s?f$o|a
z%&<%4nwHHRUD=vh6T`o^eCI4CdmsCGW7Dbt-*oo_oKw5|Jm@d_xObIG6i0Jqe?K{C
z71CJZ0vmZpx&k&p<WEs{f{cN@6|<R<2MzZHUar7a+&MURXkacC?^~vcErF)?<=rJl
zW?2$=g!Uo^2nJpoE48&sXtP4Z4c+&!@_c#EU+(E#uDVY^^7vF<a4pdUa8@X@8|uNx
zy}0E`ijdXz6gj#2k1`dE<2;BrOCOFj;;|F2WyY}!o=g=ukK-wQYZ#vCC;`B7rqi@8
zjQr`~80r!a2S{Dmr5DBx1ctBR`fv<3b^MXzd7liVt>NT$E9mDwMJ_lLCY^#XD?@D_
zZaB?Mv(J0Gy%y&wE?(YZ8ySVU=@Vie6a(fniTrRl+SUL&%ndMIndhtqk8`l|4$xA{
zmS(2h!~j$?5if+OXIiPCA5iOzJ=Ibib8%P7Ee4N#i{&<gwTIAPi^vmo=8>$9=NCzc
zEkDj_JatJHTTPlk+e?O7m97MzvbSIZGz(O=l9?z2c`muK$Z~b~UarN%hl9DGvTc7X
zsGs^I9Qs4-+E_V(5JX@N56$~64)}z>SNSJS^T*%u$&(qUr_a2R_`l{bjDX%@K?*Bt
zaqRJ51$*c*wt{&qlyDo`S(-~OV7JQ!JuF1_Y;2PqGDR&ZBiHbnQtc|btVlxWg|vE;
z%c`aC-PTmfi%0lSKXr}RysmUyFv$2U><AluES93EENxUab}O8tXdT9lQ1OO4nEnFZ
zuJz`0V~wY10Gou2C`g-b7Q1SrKya`9Xr$^?@TPz-HUFw<#nUrAar(cHf2s5N<&OL1
zPtzW`Xb?G8@+usD@*_LRs&1DtRkB&(eNRjDRs&FwYs5K1k~|Lp*pg#ROQF1%0CBZ=
z=(<4<({;M00W|C)5IrO3%o{u+tL4K{zK+nh)TdeOkQxf-AMfd=n{H@$QO{j21y1Ou
zxB`j!_hc+xtH4enOvvhIi*Ak86S6eq`es<>EWC>QK2sVE9qpf!7h6jlH;SyI@KIzN
zTq*=sBB`a~&UU8g>%m{%DXz3K(a=h+>Wxg&m`0^@AN6dm%%Lx#!A3aBd~3y7f2fDi
z9F7~_1xr=g56R~+&Ohf+>q7Zk>T`lQx2D4^f7BQE5&K&d&w*IK4@@e|A$>&^oyOe4
zam*2D1(mCpFOoxf1!tG|2h%NhN6WlrZY9RH(Na&o{*BdhM6a)$1Z5SKD;ot-7Ip#%
zr4r{JV&taNe8l*0bErwc2?~LMmBtd4KOTjH37{gobdfbbh`_Lzr`PU(uY<CROVx(v
zb7Y}}$hV3~oAT3n>fUe0B6M%|la{X^_jR9{3A4LfJt@EiyJ87?Cc6vbwH|WkL=%B^
zN;z4dqfH0RMU9kiy4OgmLRidUAmY(s*p5~XW#@5s&D*@}*LX5guX^TPQE!s3r4sNR
zOK$05HmH<BJL*JN-ZAis{$FD{&5v%0)cv)Y+@iXD$)#nSga?SI^n!1)I1=>94Y&)9
z@~B;ag6&5<Rb<@ZIM;tKnU?P-l2?yv6!A}sxOUND;rRP^e<K)?j*%$awF3AP1h~DU
zOy;%82!?T4f#riirmMh1R-jV~v3SBmeaqM}>3o>cT_2ejam0n_j)2k?=00sH=v=Gb
z5^4^NJGk)_qZ2Dpr?>&kQaVPqKG9qP%)AG;Mw$WT{5}%u(vyDPykl8Z0T(^~ymQ~w
z)t>YSC7lVF^^r@7b-TJbmQFg%>uV)8*D(O*&(QCd&UHB0xgtZ7BTa$!qt}HCnlcPj
zvpzVn6Dv<r<`&h>`~<$&+eVEmsD7Lii`{8@>4m9l`EvPm-;ai9ITM+)3ERdW?|)fA
zPS(lN;sYcgwYujN1A8i2vx{vMC>||uZl8TBn$q=WYKK0lVYgm<<QR|uKzL=J{%ppT
zgKBeJlK_SNK0dl$6fA<!MwD^eR*`#Y8=rAkfu4CCzni9j(-WzF%(1SRm+G~DZ?GC}
zg+<jish)bXbLJ1XIg#4)_WZY=M7KG?WvfQoXzF;oVjO0zIyQoqJtUw=@+gwjzUq^~
zqo{`5pH^K@B<ZlJi!D7q=&%DG)@2as_ve~1+GdA*Ih2DQSXxrdLHF83FlOwru?J_7
zV@R$)7U=v;2JNbx9qacrrEN`;Yi4N=)q7Z%rGov}Cw0+!4IRM@=@L#nDFq}yLWgh7
zz2n5yS>(;&$=gUx<nv`yRF6Xjw4<k79S}OR{@!A3=~R?J*D2BEGgG8d)XwR?Zz!ZO
zv?-x5-mpnB?ulqeU;xZ^Xh$_HJoJE(FjL+9@XNj`@;1u*=$x0{UM;25cgwKyU>Mtn
zls4iFU1H%R*lVdKN`;u%&xz<~NRS;4yCDk~g(f1@=;@XY$Jk1Zh8ZCsGYS(Q0#M0z
zG*xhnLw(@7S|(WCd-&|_MJxfaFwMF#K)r<3HUE8#b*BBKQJk=VvMhf~f7vx&y>JD}
z4%hQG7^1mKJ`ghQh>xW%{AOMY6V{(`F6kQTUWx8<pkaKHK#QS>{;Ew0cQiz|uZ|{*
zJv*8V$Nj{YP=jE8F+lJSJ9@4)vA6t0c%DRv#t6PmZ@0kt_jzN+@)mdabwk=b>0NxR
zhK4$4pC@sW5@BhuUoV*Y&*eV+W4J1x`t=e05%rWu+MqK8Ef~X2B+)!9fA2l$>|RWw
z@oWkSOcFGVf?K13Q*zwwy+e>_OV_nqwr$(CZQHhO+qP}nwszUBUABEs>+gJT^Pb*W
zt&D7BWIQoq#*A1w$KZ!BME+zNi6e}rVI(Bnn9T>B$QU0u(@DP4o-U7U*h-N3AOyom
zFv)gLK4;@Wb>`^c6KsVh>}&=8r9dR(+=wf3sWHT{wd8>7*E!Wgt+glfbYDJL9!PC=
z+&rsRM>zRg+z+Wg^bHNTSYPm>b_#;?9+N9aD*->BR+W^M#i-&4uTdLbG%}<9QW8ek
zutOwl8)#FN4Khq;)Vc!Dc-E3+>nTxKT0MjS57BU?P9<m?g_U*9=?lWRrc`q6<N8T{
zZ;t;xH8p|x%ynC|;qwR>7gvUqVE^?fYhCS(k~2>w0*v&*=>BU-7keLCNrVH>rsc-D
zq1W+;oL+UZ9br8wY_zqnvA|8Msf;&ti;>KXWGg^SRGkNTu;%=cC7;&i2?BX?_A>G*
zwJvE+AHgeni7nD_wVOB<!S<`ZT)75#NN79kdUj_ERuw=nE6qqKc4><_Gi0kBSFk{H
z4_=v7riUp=2d@t6l0^y#TW}S0Jet)&{w3=S0#O}knV~qJ@^S*a8S&uYqdGBavvai&
z%b9I3DkF!&R9B|z;DN2sU-)^kQY~J$a3Ed|%rE(zIgSEli#uc}U0aAnmnZRu{wq?=
z=y3pOvN0%ShvlLE4xgC283gij&{K!eb(bGhqn6B5F5M8BHTIPu2aEUq{aI{93X7XR
zBQ_Q;uuPi(z81KjhN9x9?l@-g_%K|R2&dCyFuq!8lsz<SZunG%gz@O}{M}8_!VI#m
zDEP*2Bdq1v?&A&m!H1FN<tOmxuf#>0A6+5=fHzf<_fs)D>ZH&dIuMRL7sIijjAd18
zrtOKtF%iKQIe0?*b6|bb7Ob$;SWL*$+@yxZ>m#A<AlnmO#TT@T6rOjM#7QmIizo?q
z^K<daidh!DJ}E6H)(41t;y)Q-;`LJ@Ijtccqh%~f>4C3{=4K^mN_<WN&~f3b#P6fh
z8-Ccqd0Ca}oQE#vg~<=VY^`1BoojKDKPg7^@1|3C3EWz;Xx&f!ug?>3YeAvL#0267
zy++HHB$x&R9h?}pj~DNUb1^JBq4@QFGL=P*%ky%LH*>u$s+wr}Wp6e%lKC3M_;N(b
zHAB8?t<<BwQi5dlsj@lQf=Z1j<m>B5_gJpBj4wa_PIP9TY<{!?u>gi?I_MA^s%Au^
z^L?T5?sQE4mZ0pSr7rl1S<>^>EA({alZZ3{y%{CL!FlhU?UUG=1upKHkbx4I=uv=*
zIb5`CryF2WdHU09{xJ`kWjfYFog&lA%wzTBp~mR1w=?sN6-=qkfA~>jGCt}aAhtIo
zryxE@TbS63^lv49>l=2RoZ~{6!&LreImfmD0Nt(_Gr0u2eU6F@0GetqHZZ93bnwVl
zapQQrUMwmYW(o7{Ov^_DV<QW;_YJiu)+ITHv>0J8MUd_hyWOU7K!}SJH`DH&N+r=!
z6rQtp76nw%uG}KjwT!{126dL~`X0a4-fMQEBQTbCFHUyrr3*VycuQ_bNbeVlrBhd^
ze^%120+@Rei)`X)lHIyrMSvN$Azt|*wJLk{Oun*<3y)FAS8pIh-iiPAR*mN_zkV3}
z;p3gPmjqAe{3oWIwZ*TCk(OqBaUjzgsYsw}p~aA;=r^1~4w*<xj5(XdnUBCD0)EkS
zy=iy1a?6XsUxjRo80;U<$y8gqhG}^Wg}@f~MOvHJ!yon3xKt*&(%pL^4c0k!pzcO%
zwj(g_znIdz^=n)pNuueX*C6x<@I46H1tGj9%yrD=ycRQTaVSZb*Y~{}E{$T8VCVVq
zUPJQx7IDt%8nOW<lZ*(=7@5l0u%;dSU<^BOwbYU)4oLKX#<kdSy|!%|2$R)8`|j&v
zJ+oiXc<HfY$i)@Gh6?nS6N6c!{PHRTeeFM|7sgW9MV$65Y_N3`Tx8}VwZ$t=ZHbDg
zEz%y^FQt?k<`rnx--_t`uK@OkiwiRSdC4ow@6aj>x#_451MBMW*fzVMC6FT$;Hyp+
z0IIbQ(GyjBqa$;QaL%B)w#$)M^}-LF=2_<B?ko2w=$qb;`&;laWvLgAUC>_CSG7EW
z&eF1O85q-pkaU&6-WuMSQM{xDfj0@U`_jPrk#jMOyR4Fp#!%a++QP&JWCoSNiMCoN
z=TkLP8{^E&KL$Z%e=Uk7_LF`H+keZZsovFrfI_*ZBU#NAzbe)2?IRe2dtY2-TNWWB
z#=5&i({BTkCkIu+k}OwW-#r~Le(E?ELQXe_Oebc6x%3wh8UQ?sb|-2tZOQw3ZBF_a
zY-X0*sUhK_@6Z`pTROQQM;+zOBm+0o8tZTOve%${5@e5N$^U51sgX1&1LY1jDy{|T
zY)Be5%q#~8w7i%l1uVlbO1<B1XOLY@OPDS3P3TJh0Rb$Ezb>N{ug>+oZxijOtYcV2
zA_5dG$7OAP(4n{3@hwQ@RM35CMOta3AIH6sMl|EEu6VxJ;0KQl*>t4P87z8K-aWx9
zUoJ(wJxTU5i<pZ9x4i|eILf%BHVAUqF~q4e{m5qj*$z~%V%&Y2ld5y*e6o{Ge0nyT
z$WHG8R?OOx9iThE6-#H7gpT~Qv@#*h!r46C_%Ms9c_~Egm+Bdy+VBSea}?ho#)>0I
zPKFu&Cs7`rNXl<CnWNWfeJZo!Tsi)nKICYdbT{FeZ;M}kgMW^|^aOLg6m`VDdW{gP
z*g=sx5{rOimJC+Lrrm2izaWPfe<~f7aV4WgC1ld(&WgYAQT@6=$#!?Q3Uw0%NF-O)
zyk!ahdZ3ePe>e%yYBWckdu?9GE~|9%JvY8Wo!)GJ%36|_`>mv&e0}D_A@7LIUfqj$
z{boFC3kiEPm>((3A9Kfgs<(F`^}SMWE5aZ0mgTIkpDeUUsPoHH-EJ&qe3E<?R{|ce
z1iZZQ77R6&sQifIu{6B%NZ{}6Sc{hakKhLi%$YRpgMS+aC-UP5+6R9%*fA>ja;2b(
zT*syf@gKp(2FC>-;|@u_f#o**Ix;sbMZSg)QnqsChUjk6xPjjw2kfgjK+?2Hw?9?%
za~L1$1Ms-_Vns*ZUYBu_iO}pXaE5}))Xf9!i{kr$>k(L&FpFn%lpl}k2#FG*!fez~
zCDra(74TA7I=TP2yj)PfUNyz~=)a>96_x#38~qqdzP+{`77-#8q6Zy-h^PR$YVex~
z0{Q@yWz#9rmav&Wh6=H~<k64EKzVX<PBX3mHTHFoh`7m@{4x}Ix>W=WG5MX{i62PX
zaLXJUWQ^waC@%BEmp+lwDN7vrLp4Itk$g0B!@02Wgwg14>rOm$XMtQl60s_95&6q4
zJZjy&)w39-GNb9nv_FX4Ln%pe&^RHzTsa?P>Eq5+8N0z|iVaf_obXMIaF;3F13Ugn
zw3tub@+v7R4zi8C6BKenl1(E}XheA_0E{f*q6RWeC{XcZ8d6$FLOhoyYvkv`i8c8s
z-Bssu*?KQVg0k-Q9MgBG4f715%5}t7kA&%r_=&Bo;)z?MHi5s1xoFmzwfO#NsivRn
zMoME5GJW^=dp!Ih8`1%MP;|h`P+)3GNn#v9+)y5wRu!Fdcgs^@vLRfBa6?A->xcZT
zm@v(4jxh70ejL#m@8K#8kh^2`vC)2+O_3minGuMLW1rqiU$=(X*u^U~Xyq1o==sE6
zcyMp;uFZD6W&Kjgk7(p<0G%|S{tn-JJwnDP_Sg`Jfz1^sE-!NVKrjE4Cgirgs$iD?
z=OvQ<zWY(2GJL-PFFWo1J-$#}pkK{RtTMIBP)vB(gHPt}A!@_nY!2LIa>kvxFJ?)!
z5%0}@0K>xh0|%yYbqXM$S$LQQfna~87;$W&@hl`<a(gcHUn{_CLwHf@A3xPk0=1db
zdcy38UxApI`T61GuTxcvfp<euUfHE2Z<fEA6#SiX7&KqG6FCW%${LeQ{L?yXo~B!T
z74VH%1u(Y#C*^G~0@G{wJbJLWL1x?2<UPb!o8%g4^qyNYx$m)1d%^s46F$JClzBKS
zcSsCPWmW2(2pT+B!TbGPx)3!#0fj=nYpJm2O##}McpU=D{Yj6Nz`rzowsjU?-;~sv
zJmx2Q5bS^n>RQfszPIyxKRabAl&|Yo_GucwKDPp&gW9QSHFc<X4S?H8MKj&!p7{X+
z{7VKh`C1O<`Y1CxhI5mDD;Dc^ly#-~KoMch?(`+OE1i=WsoW#2a40a0^1s>x`Aij=
zvz~8K=9$n%gW;|s$s*K@mR;Zau%8whS7ht*uplKqqAdKOW@BH*lS$ihD2kRJuppUS
z7)14XRCA@9;|h8550u&gK(4A<VS#jpsUW>n{8IHqiK-iXz|mYT8w4bWMFv+m<QqF|
zMlwY$pI#zr*{ll~vGvUv0zP@IES<lC`CGntlWmv2v&3h0u3wmU_sdEZQ2}Yl#Oy6#
z7|A3fnBC=6j1_Oel09Z_Eqx}p=bCS1O^35{IC`dt@g+9lNYfI5#5)Lb%qm($0!)x_
zmaFt6kPW}*7F6(n6k|l<ULZWc`Aio;lmx?DX2E3w_{D49;ErRU;psz^^>UrCjuR5z
z!Fs2PMpix6=u{|-GTTTfASe<Osb*WkyDJC^h#E$mU$7F8gT$#M;P12W(jTcH?qvVT
zEW{QZ+&qH6;Be7ocxlQMfisMqT?@;<9<mUrwx>u^FG4T)*`)#i5oUojWiB21P&TO#
zeM7TMRamzbJS#1@s_tYkjN(nI_L$#vDh5X|=j1`@6G%draw`_l4KT{j9wX`Vg!KdC
zeNPlmlU`r_nmD&jO9smZo*Z1qShbX9Q!g5~Ak2OZcGdE@<;0iRmIcP6x5n1GFQ7|M
zn;r<Q!MX6v6nHI8CRjJC0p+$cF`@IcgLf7(W$P>rniXDR_#lmNUmeHls{c*mjJy5O
zfM{@F-rAm_Q$^lkdHlWyp~<cbj6pPP$@AzM#!qiim6fBl*WWJhtn=I05=t$$6h6ti
zC&-i0<-&UqsRarCb`L&ObF3h9G=?Gs;?>SJt<YfJK%d5S+Z<X-^2xi4>!pHQ$$0~H
zUbz<qeuh;kzu`*@>OB(31f3eEaYlKnNXZ3sT<rh8q)%VWI~GNK<o9KWp_2%6<U*I%
zrPM|H;n1?y^wZktyAf70A$U%3iFrH4Qi?g5J_HgjaU_JQbb6o`8`vG(@s@GFMF`Fx
zQ*<~#pK=IC-cqLD1OP#>^5{*ql&e6<rosbBaOiOXm&m-NpNxr33u?Ox1EcBaMellc
z_|yRMkiZZ*pt7&7y_OC`bA%kn5O|GdBM2uPaF=_7@0_~}39}riYDLjTG~}UeE&S7s
zmwW2EjXiMQ{Eus?D<@_x(Tj%Z@n~INjHC|Cw!#H~raMSP6<_innzqQXQUcA!?iL#}
zKnUPOSPfLj^u$tFp;!JC=pCX+P%|Z~<`z<-B~`pWaC+95MwziHaW%R5F_7#(N<T#8
z8rvx&?qmo63a!S8Q_>lGWIG%9&x#Ncr+w18T=Z=LwTJEliMrsR<5Rn)6!Bo&<yvVX
zre_cl<lzyGXLPy?4duj^guG9!M3fTj9fnjOeYIwsf#G;YpOik+u_VtCqW%<Y<3j%O
z(3FQMy^hZt1W=ONWf2T)!%hpnLLRC5WAii24f&Cc48@upKEV9|v-&zoQuW~wnxN|R
zT<lTcsw%Nnsvu76=OMQg&WKYDXx0Ou9nk#HYx|n7(?%d4jk3Zfj;#`YT!{w>9!&rh
zB*nTX%?idfMc=Z!)r8HxHk1v4a=Alp_-8lKQ7&8&o6ZUX7C>QikP&~yOe$GS)p*xr
zKd^)N*))2o7=?BQCz@iFHl0hU6qZ}gGp^_Ea-vC>Ed&W%COU3C{+?&-_Ac77ar`aY
zr(RE{dq6Yn&2H`XZYrPyI(<?~FTD-_GG&`Po_<VlFYE8yz%i^Bh=YPpu2<JqGK~)^
z(G-k}?E&hHWAMkLwL{QKH+!-1ihp<dX&1S8GQ-l5l<BT?|HvfR9jK+X_AV_P8OP<x
zzi}=u6<DsA%2Ketr8xMr#Iz3RAhQh#ILb~Epiy@j-rV4<IL^Y=QXQ61S6}9?+h%GJ
zHyC=5u~pw(90p<LPjCZkl+g^~U9ZO%X+epU$XY(6k$HFpKdoLGu`t}sIJY1>t<=OT
zaBi}~d@o|<r}L4Mh2j5!C>h6LdWES`<gFdJ@589yA9btXA2$sNM3Z=e0>krQOdwWI
zn2VXhVJ4xU{#~9#{$+ajg{DW>p7jebq#)3yq%nURb<Iu~3w5P>I$MZi==-!k6jBPG
zA}l(`Zkjj%Z;=bMRw3qE%S+hdF>I1$jW)|HFle}Y6JkV^e;ZH+)Ldk?lmBsB9fP_L
zm}|~DB)S0(DjERxzJw01j`o2nU%Q|b5s$#y`<<V0fOOxavMNPADaOE3(G<Sg_1UEv
zmzY9gZu=uOKMQ%!J3>N3>lN!?^qA_^rN7p6M^TvYQW7T_4YM~vXD;4nTH^~&Ig;i7
z%>{A5OlfQD28QokNH)yS9&UUb@WX!IVbiWo^Nz*`4Kf-$JZDKOL7ij4c2}i1aF$-{
zDps3FAe984YN^NRHjaVGsq0eAi$U#Z)DzxGoeH-DUBRa5Opfj7>Mj@qF#p-auCH1z
zmV<kPneXnsXS{|1FZx~5GB^d+Rw+ZZE!EB4pR|$z)YP#aO@eI*KvRr^g&LXp*Sts(
zeg-1H*A|^YarDPKaQI81YJfjChGA_yp(eT^UbJ^)8&x#x2#1ctE%0oI78y64k{o{p
zSnrGFBHF*hV0%;A=*9-9nBHcGnSEQI6QBz)Ds<ewa~yUMju>(zZm!IAS#}X5m-_{Q
z-7383)!Ne<D0H`waM#*evELW;5AE*hT6dUAsko=k_;1OIRp9EIx@At@QhP(&VjGsc
z5@dQQ2l;3x)|}sI-DA3E<Wib-Xolu6XJK1gjx#jg**UiKUV^3bFF8>OT>Zg6jxRd`
z<ritcaof$!Je2z?N5tquFK)lfHn(HR%zMnZY1>PMg`jV#wWeAI;<Xd0XleOV7<;sf
zx|{VF6|oamA2mwFAGaBiVkS5CLGHi5y9pU3<CU}C>!*h87VY=-u*z8z*4T%5L@^tN
zRy~TTo&J92y?BaUEiebC{ox&yC&@}mZcgc+Bvp`|F5dQyIgJ{5KAYX^0JqjgmZXrD
ztW`tw*)d*Bv5Z}IRk`KO?+W!+tGaVdIxslLoQ)F7cQ5Y^h?FylDm?2I$spZ2+;v4B
zA8zv1o*@~n7v*~3IbRc`484b*1j-6b-^(@dB{LItKJ`y~cL=OJZhfzFJ9;k)0It_g
zb%*$OaDYUsoRG4j$1kp5_F6#MmunO)88r~rqH2~j&4g10Gp!qH!M|D%!nYO{P*EHJ
z1cV5n00r2;0|5Vh|BnEBalrpu|Npq~`;YbirO96MfA{|X*!d6k|DgCU3ESyEVgFy)
z|CX@*|AYNMVE;Q6+xtJ(|AY0vRIz>kgZ)2X|2x9={EzkjVEr!%`#;$Kmo>nDt;qj?
z@-J=u*NXg0VE@;#|B|ph{;Sykm-fFU?EfnE|7HDeRqX$S{l8fMTdfEH0Lckp1uy_9
zgnt5@0qd_@1?Hx@YE1!U{2iG5u~!e73ApYre5dg<+W~|4TPBR*8Y~&>cIj#fn&Xo?
za!XZ9(DDdWpO@Y7AtH(#ctL{w^2Sqz0BDb?sR0CE|L@-z6S6GIW@MH%u;|**u)@p6
zH<%^vi&HT)J>NtVs~J1wmvuPulD`}pk%&o~i;dPjzxbDBB(*2*;a3fHStXckv)auI
z4}GK0lpwYJd{(rUW06#2ueXLYYE*Ngi<(V*B-Nf<#Q0;7*wKs|Q@r1ff{lG82t0XR
zrfd&KWWzGuTaTFFFuvKOy-FV<?d|OA$M)0finJ9KQ3a$vjg+K>HH4bTlZ4*Er@wN0
zY|mv7(s9Xr<YkHc?Nr>!J_%c9+%LMBYmjJ4K1>7|A0GYlRPaB_I0?XJ%#EAyW)Hp+
z^e-x1uA&Ox(-Wy)li`Y!K$~eA%qJ@>G}ZY8<-$`j;$JFSdw0qy#~y+BCBnsKp0dqB
zrO*q%04xnJki+gG;UFmZT<g~N50>Iy=WdL8CZ6^&6|T`<8t>?7OZ(r0c)JR6627RH
z28j;xz<3+DirgRlo@GmV9`yz&u34OeN%Ts0pjT&pdjytZh(iTiK1^@H@R|*JV~F^E
zR<80ovTmi^e&5UrYI*f)2Y!UcVgi!|g#cq~Tu9Uc-<#_^<)puDwXtddBD99dKF%t3
z#2RSo^WKyMo7V`aQ0dxE%E?1FRgsQqFwNOMoIXDBoKhD$nI^%q#78L(f7$~(uBGi_
zJz?v+`qGVP0YGv`T0;NH1ebSqcOki?Q!sMh`^Fq#UsLxp8W2EN_ki-H$mJKp{QiO|
zPR=*+U-<mO{!^zwpd>SXZq^nlWH*z(bc!e~<?yJDtm(6nR&0Pf+gfom$@Nz-KD$p_
zU<7YlMo0Z#H?851(O@P-E9YoqZL$-mUX6In)3x2(i~;e5hRRj2a<1Y>sRmfjyV5|0
z9_0RtzEbd9G5EN#oiOy&Io#_dB2*Q+Z5I{>?s}Y!(6M+J^oFTX7na}<n*OCn#-B^}
zpW%N-_1gA;Of&IitZs#y+T6;&m3p<ir^BTOEn>SNVj4#{+?blUu*97QX_TOHK%2Al
ztqWx*c{|zJB1K>BjOzKacR&kz2pfOaIp|#!z%DrjmcY>%aoNy^mXZ76o*c+*QQwQf
zXkFGuXmZQ;-~{{J5!dad!r_XPkGYFlyy)V{Lv$VN?RoJjx8MRkF-FzpJk{&E&5mIJ
zXZKG#23r}ery~TJyeqt|Gl>tu*N&_W6<LrfKsA}0tSABAq79lK97g}iD8@gvqH&Mo
zOB_lITrI`-Nb+NP-5g64{~2|_p9>pQm*Ec|CXhJe9d!LGOWKS&A^;1gXWdMX2BBF{
zX5JU58!HL2SDkRZvSC>;7>WISjdy9J9GH4w%Va~RUGEAKPqu*f^h>E|FZ+~)+NPvK
zd(XoTq`<CowDgC$nJ`RBu&)qu6^!ts*yj3Ja*~4yIZu6xkAm4|FU?Z4*2<p3(rH5|
zHn|Q)%dpdt{+~<>1ZmOf-i7&$N+dfsIY50+j@hy@M;B#^B0!>BW&gPRNTYY}LP?Gs
zbSJa@6_wW+N$4m+a{~(kr$xyc2AQSQeeh?s*Lrq$K^?c{O3^S~W0*JvQGIbZRr(?3
z5i9CFGuRDq0^~d{Hf4Y=Yf>BfX9<^AX9?w_%<$jA)EUm6#%<GwWyU}XBNuUM{@*vy
zb-_0t3ed1=wUl#(Ta)_iT=VJEYLBYc3_o$GYa5A9c+kzvF|zE3n1n5qEpd{Y26;dG
zGmVxrb=>q_xnEAj1h`RGFSsvx!MWNG_pJTfN*7X>j&fG6P<hYa?VLUTUp7VA)PG*v
z@FagF1h_|8z$2>oSg#ii?IxZNeKg`hwj?`n2YMPkd>6JhfIBgtyTWlOr`Hdv;N~ZO
zLq(1>M3l)T@J15Rz+9x<Klwv<?Bkaah$OMm`sskQ+aK?%bIIj=-oqPXM=-{V4@z1+
zR{|8lBztyC{f=6XJvKny6J!3gdyL4F^2#@pD=QD8;K5U;1oq71sxb3<b~U6VY6EL;
z{}j?$fAWVX!&J26u&Q8wA$Q%}t_Vc#Kma&<vU+~<xSe9rQ@M013w8CI>v{R|+L-Ed
zAe>}zbCYyRuIT?jo!n6LCma15#49S#d~Q16<6XU(2ovzBa*5#GoE`=v4ytXZFy=61
zX1^e~i|)V);ay3Eky&9;3Y(a=FG6iq29%QrHNAVtpUU@*mc5G31<Z5IDW#ynZH~-X
zNNl)&U2H(!Y5~&l`FvkZW7vh`#B&_Pangsy($W$sYLA=DKWb!}Sad8s&7}Xah0t>B
z8FlC~#DaGP0d8p{*c&EfT9dK|le0@zWp-D*=^?~80DEtt3LY30dA?4$^!9s)5xenJ
zUM~!ODa|i`{~FUx@4q>{4rSUb_gEx)cE|GQNE4m#lH6G9d{^<4#$_#<^Wi^AW;0+0
zF%~0;v_!pPRm?Uy_j1Td3jU$Nw^<cHuqNNFU*oMMA&S&jywy4o9$^RbVVd|m$PlJc
z4|w@k*(XHwev{8HJUFoeZ?!ZfWy3rX%4$2Df^$_W4zL4DDAWi-URY|!iru&;^<~<$
zLxnVLv$Yu+K6=ro`1fSC(P)Yr>n8ivovOE2<Rz;*8l(;^$nQ87<;cX_-OgZki*G>v
zu6AU>xdUU^{1h+)qDsiB;b1tL(H%nkD5Z2<nyK9V7i8s8#uAgQPJ+}xzpJYgk}XA|
z?YT|J8J?f_YrY?o7=GeIIO#9~5>HX_gNfv$_JW92j{9I%DpDiFI2*DCfgz1H@WY1P
z_vs)pPluvNP$X&$%=F#z^tZcG^G`AEnrdebgDkyB>yWGb;acvT$Ug2Uo~zZqWvx)W
zQ14|9>T2F6e;kvY#FKO&&o~LIp!1654)E<NZ{*%r80jWySIcFXYBbyE9wlFw)8b!y
z2ho3w4!I(z#3LsRo*~d<90J88rzQWQe}l1?k>vcC$NCL&xBcR#8s)_xPb5{tLK#&e
zGp|q|_%mZ=vb)Lvt{YkXIY|<@W@qV^FLdZ2nP^EDUXb)H$nOa-2fCy1HZQA-l1!8Y
zn02?`CH*}Uh&OlPbV#)<IH|=`EWT-3*8fX~rowbJO#`%RC<n@aXP%x<mo4&>)63WF
ziMPv0Yknu2&V)25bRS`-Wm$NYTZ<9V4HPz$NW3|j^Tm(=Y20iCAGgiEoa1kaD(kX`
zeF_sn)#09*rGh)C&7|Nk-MP6OiyFp~N1_o39%b-~LOLZy3JG96>9@HE0X&j;=az#t
zc@UO8L;B2g(1P^C;NRs(L^TFN`|trmjqT&_D?JFs{l*B{D+9+kM>pc6w1PD24Vzjz
zFL}MMRM^0M?ViU@SM^=fTE4N-W}OQ|);qYp!-grHJh;-a3}bJxvE27IBdG&jsm1+M
z8%4YA;@^(Yt^2dHez4iWr@L@iBD)JQ8$YpVd&8Y@`{!Zp>@;`c;lY%vC|^L@tn4aJ
zlZSu!I$S4mgy=wHQh<#+PO*(yfwA0}nhb{sI0`(wv1O&RqEoPQ+t&(~m}m_&?~H*R
zDc!$!7=BwM5J3U!q6jyAdD=}OwF>lw!rlWKzxTEoBmS3?dJwV<Mt&vwa5wnLO()EF
z(yCC!-hh=Rfn9Hk6d-c^sRrnLUf^=s?K3BPO8eEyR#>>s4pg-G_ECpam_XeE0Y8fI
z1v=DOX&K7;u$ihseIfX0G)+xf7Tn-zoP_&fsu{0?wS}E43Ww_jopA^@M+nJj8Oz+T
zDK}jZa9aV*naGLZ=Dn*`&;`#i=dF^>=%?pGw+=NjF)6vyB7Or2uy;3<k~Wq*cg+s5
zi$mmPE4zG#@RzfwbDMn%NkBTr#JwKQSRHC=4O(II+iW?4Y7ZC5zMWJ2Xh)$p{L$l{
zfMXuTzTfcLxOe39DQN62V2$bmo!izb{lM=)%BuiOsja%L*@F8uE4)<1zAtx&L86@9
z;px}mQfwOwuQtxVkP03hkd_(fU7$&t3g;am9+%9uP&xLQf3FI98^(`snP9%$=3*^m
zw+vVZ*+PLH#=m^aVxoYV7engr_K-IPM2G#&#6}ZI$h76Fw@-spg7(SRsj~@iN0g^#
z9y7-9ohZ;g&7cwGF&1@gFy?|QE6MXU`!+KV8>@k<)0$+Aaof`iPG**k2!(cZKE>$C
zUPWxYzIM4Mc>=cPVSHZ<Im4~?j1sNLia&RdCVv^m#4{<o62eTtR=tU*EA5wS1cWQu
z&zP--rmuC?QI+PHYZG#okyh5UMiB;-D<_&h<>?9*SmT@kigQhG3Y-z1qi-psBGt-j
z#+9+4z#Msk&Y<vb&y_tBP8V6%nuls5MzG&Idspo^TV-)vAF?p31|-V;nsV!%7u_G;
ze<rR{C2Mkha%WzW0+@*Sa#43<`N8)sj~it3BgIkZ1|YF(k^;9ut)5pfP<t4=SRDm$
zV;7gIHqR$j3)2Vb91|jO=CZ&*k_4yj*C2OpE(&#c;3=tmzNbf(HBRMM%@cSOpL4AY
z-gItoMGelcxKXVz;?UY7&!ogBmRDkkII#dFG<eKOKEIu@UM$Pjd3-T?+KGZE6JbU8
zqYwy&FOl*em$BREqv*XYUT1rPJ9H*jz>{Sa*~oa!Tj5tRtG*kbo4knaQcFC-MdhgM
z%tr(<<=HB={y?whN&FNL_a5q1Z2Pi0)*}++Q#H<KU;9yAP9@0xoI&vRWb3fKu$h9s
zk%e^jkZR_aq6=jd;y1m5vUosSj8Hu4r@p0=rR~@Agkh#@*pn5mDot^I<D<iYW)QMA
z4G`%Vi@s_!-Sgte`g@d%<QUqG%%ga|Wt-$Tus(da9%B@8+%oq!Ttib679^h{`tT(v
zkbY^c*R9ESUUx`mXmg%GG@?lZS>llutD3eUE~YbpUmuF^Q<Sf*_SzB|7AXX>B(iLe
zCrD<n?=tJb*itRw?C7u~e|Dl+8`9sO%mnqUo99{;y6PD*XZGMLkKlSt&tS@29pbnm
z%8g=RUBy{C{l0wpB|LkBig1#88oj{d#ctN)Z?$j~Pdv2Ca1$W{BDnDVWk>R%w#|<c
z+%%Kzzn3D<U9uhIztSRn@cuGVjRJ(UlN&c6OhpX(%mC2cRMJ5d4oCe)Z*d==qX$3$
z7Jn48*zDd(Cx%dSo`q?38^~m(T8XEEc+3o{w2cT#tLdJ)Z*})!c`>YAF|}Hw1u@yU
zf{Rf$$W5*eEu9qg+E0}}Kql9HCUhxV4j%fWqdYGuBt&~tRSz4*dxRBFhaJ}vw|5G%
z590nZJyLyY*<4&K3vVUjrmiZ^2q}<KOoL5A$&vO5xT1W<+}ajF4{O34LMNx>Ff74U
zGL{9^>)_Lr87g}&S$wcH&Z@R*kJYUxHm&Luk7|g`v7Xed>vJwMH0lBa3~AK*dTIP6
zDLi6uD^%Bc`4@KXrS?(L;s?GOw>!aFVdMcw%VqN}hH_<<z?1>5s}V{Sq1v6V!ZGq7
z$_(&v@|ICkj{4=LKb)TL+$Sfw<5tx9&6Gm<1r`C5Glp4$iKxEgQyrtJ3sfR&m0(ow
zVUy#pAaf4}Yd)cgFbK`@d>v+iH}4APh>0Eb94Vt6y^#&;-9pM24A-PJl4ao=6G;o9
zy4af;Bh)cyQ<R!y2zsToC~LEGntGB6nrCZ%XO+6e<NiMZyvRvc!b{DT(v*i<?APl3
ze_gy(Hcw}S*nk%>koR`lJZ+^hkF>G|5MoA?zE4KRuPy{CaoV%OJMG2moQI9Av^{Yn
z9?R;zZ$o{Ow|?l#LXV6tKjzlBlMgONH$1u)2^(M=Ly>$ahe1?-iIa+0G%L0mlH!O;
z#h5neUc5`NHeI^BYdv(>n8nN^q)7!u8jH&3Sk+iL1Z>X|jGv1_To%zje_^oz(no;S
zT$zX@rP@7VjoocuM34Bn*2*UJ@6MiN4MS<nGZk9yLg8G4a89M34Q1qGR6Qk)h<T|Y
zFnVvxtySDl)m~<qUY3eoNFMDqQMpju%pG?LFm~X01w*2h5uzn3Y%EB4Jaakn_OfNH
z|4Igv6@(Q^1~kF^Nt38=qH8f$U8qJ4S3E4;CNOdh6u#+xOi2*tGatBanOGA!+`yhB
zIP=s%&Q!}_{B?(m6{FSS<|9eKuq;<~8JFrK7!cPO5E5%nrfWQ~BuaGJ#Ir^)-_RGf
z6H&#SKp`-{{Z)T7RKmi+BKgN-%WwqY>00a!ElZJk@tV)k<xk+N0R{h)YAAnNKSBX-
z2M?4jIGN<75m6I%paN$9%p|>L&F+S!ycp<I(qIK^X#I;4d$g1W#B2m8gS+Qg`DQyE
zx4>*7ucQ}fW$lm>F20s-7J?XuxG@U_|Cr*VHD$?X1hB7y_Pd3_%VRNTfs3mHv~uO4
zEgFXx=A;PE(L0(bWpe$p5F^N!sXkW`FC(n`x?}#%Gs)gt3o#HqP%RcBVfY#U?3kfP
zd*NwHXh9W9cODfV(@(F|!?n^U<_Mcp6vcd(RlPh&q&~~261CCW5%rj@Ndqr~OJ@6~
zgQM#Q6Z9}68gx(MunNfSDy|(^o<`bYx;>Slm-3%k*B}>wCQuN&ak9`=e^rE#*eDmh
zUsVOE8n~{F)rEcprs+QKYFDdWCf6Ow9^oi$Y+$?)241z-gLr0@X32XO`0D`m>(O5S
zJfWy|f92;CHmgtpmU-1B{OmaM94{icT>;o5ewzZaMh{0W@wfLG&JeKBso&f+{rA$2
zK3;VP^m3dyO6rWmmSST5?K%+<1H?n5{f}OmO?*#SlE}9DxN2chV5|sT6Nn=*(vk$J
z$t`5rb~GZqc6G9A!9RvgPsuJ+z(}t8?v0Co{1$@oK0QE2iaSmDKiz2GfhXgL5BD<<
z9avgYAcMisLX0??t|^H$$GZ6!LmYuG7*u^{ap|+gK1d7`DK?oxo>M@urYZKUhR{;7
zE$ePDTBo9E5Ht@8u9A`hKi7O*L+M^q2h(K}u<n(-y~r9V030@oN2^zd^7Db*b8ifo
zYG3(2KtGD1>{)IO*))(YwwNcPRbm0L8fxiOEyi^Pd{crtQ^=`oNTiOIoc1~78W0!W
z4aJc|`ZIq<N%PShVdQp5iK(WoNLCJ;;GEVC0eNJWYB@KA-(X7d^$RreLB{|^dse5Z
zdIeaT0?3{Soedh2cgb<Cv4i={j&npdu$9F*L0}CTJ(``@r@u_ho(=P7)K+*qBrpi)
z?>8S%hLuA483J+4&E{_aV}3CDDQ%yUoyL0fM6V@lWfuVPU3Dp?NFt1n%)dWlqWfQ&
zwWVG!G`W!!9t*+C*t;8lUKmD+fQ}p3g|K>x?)|1ppY7^9VR-AQi%PCuCR1P@(Vxb_
zCgITg&Zp-?dSySvBt#l2ug+kSu{UsD>(;WNj2E5_@Re`m7ofqZu8N?jZZZCG9{%2k
zYx!QYM5~`_(pxqZLX$M0#KU}{c?ncgHM>>1LJkZ*e&a!ck83%|@vg`@4s^39K<oL{
zK+>(Vv9(@DO+Y3?UoAK6$)m8%J-KQiZsMt%Ny+lyo)ex66f16GzaMfT5A0aaEgek!
zoQpYnlOg}+pdQiCzWD~b#^eIp$BL}~V&tI5ZKk=#i6^`4Mf-q%R4ELPs8G%b4@lTl
zEuQg!Tz&7{LR10kLys8B7_Z`sC4FAYxsxH+Lsh8OMo#Ez<Z6+f_4mV-l8rfuknY94
zp#uF|`-2Q|KUq~H9lTWW<^Y5ZH$;z37iveB*OK8-gg4Gp=DFC*%#oHpNfvfIBCNXT
zqvB5GJY68|`8#t?vwdYPO-Y*6%6vFd4qH3Ij*w8e4J2j3FL#+EcvQ(?6+5GoF}yE!
zBw4~MS>8U@zQO=cD2^qM;C_NJdm`OxO-CFCN$pB3j8r0J=YdT6IpIw`14y6S7Rx`|
zvRR2@5+<JWyPA4?d40`{!W@0nbjfn4wepaWbX=e$mMF6S(x$9Ci_NjJ0GKD}<fEFD
zXm=b>$TZ4u$O8c!sfw8^swGL*yO#>;PKv!Q=^^c~)SwXu+D;V5BD#t&J%Bm!x4=gu
zGBy`cuqXL;m3cXRDcU!tf4UzTiGL!SkZIg?i#aw2)^xIYO{mw6uaMb(N)#l=<TMy0
zJ0ODX>3(Eq8`jg4FHN3n1YMVrb|jIGQ-C$)c{p<?jgMKwQ>L0nb>k-n_g2+FkRw(|
zd3S;A$FOETQMN&&Y!+4>NQc4CP3`%4d*ijgcSCo&r-je-qy|^W%Yl?pRxLSPsslb^
zep`Pvw#X}QU0^!g_dBY=Hdwe$2!iaxsp3TV8Li1PZ04Zlh(dNY5^53EL<Vy=#GUP*
ze+e*K4Ohn`KwYBpDSOFr<+(U!ch?9@!+sX$NsHNgsSx;?iQM1%0f??D+Z|bMdz9@=
z?)Ih}+I@EN^98xJW+H#R>c5}uEPUnbKl$8Ct#kdc#(vzwTl^h2Vs+F)Yx24)C{~@z
z`3-tfl(h?0k%8s24&B_WWmo7J8P)=#w<W^NQs*#|gypt1r}wf^wRI?{bU>a5C)ElN
zbZDAvaTbgD-HiOGTG3kfk)~plIsaPDHLp6%Jy{fuX8U|Eiy@mgnyx|YTAaYJ4Pc`F
zlA#S@H^#M}niIC4)($PB$qSRM(8EvZ!`YM5uvXn$PJs$hz}9fd`u4&&Y=d0k?sAX4
z0*4vco8Ty4^1?ehe(jYyx)vVF)v!9ayel~RH>4ccmBC_26MSL@#5he$j0#CVBt6S9
z+cEVlSpC!uEE(LC`=CZ^(zu8(R5?O8i!u?7;^9{WkI#2XWh~aiK1W*y3Kv$QQ_Zg<
z96LG<fvvjdbb`s_VXQD$k%wlPE67A_k6m!v`Lq+=Z}5aFtV2C;&;IdWmgJ=wN5{_L
z1zq1*6CDCRuvM(74e`og)){Coai?|oQ+>}p=FO*&0Wdsv@oB2K8*CssADP!1d04m1
z?l4SB`|W|~3vX3Cq8=$?57YP~>c$JVgQ9GFz36omjWI5TfqGsWh(>fRIzA|2b-B}g
zk!EeP3J?~(<gO69OM2Eb#C#r5nm$vWd>7ZY?3WqttD<{hqETRw(#h=zXI(TvQ_Z4p
zf`_28GxU*AjDd=iWq?x{^hS=t&lD9`zi`E0Z|Fe}-hxELoIX?1*WFrpsk`}`?m*LQ
z3<xT0Io=rR8LggDt45#8yt;Y*H8<0FjL_zVFRz2V;qbvr(?9Bgym=(rY{+N;ar(y&
zk^F66<6O~r741oDx1*2RDLSc)QnH%&^3S(X(y<C>nG?<&xBV%(Nqs>{X&1VnU8zOx
zvIT{}Fhv)SiV*gdpc3CGUXd3suF#pwolZ-(s70BeP@AGiNTyrXEv6cZuN4C<k!Ll~
z-)BoQN35ls;#wuml`gRBXAe;}dEbnDvX8)<*4%&wM|EC7qR{a{%hTixi+$tG6_Oon
zQf`cfJo5*QRT{A4D6Q>gPw}-_vhEWF%U3};F^+BF2;!FmLdUVy(Y&>|27U&=$5ZHg
z^0;kTjj1gK{i8)|>;17QHN<4x(AS&??qs+@qiP-PGFbIsJlZxbWGSwY8z2tb8yGS=
z0@0xAiDr)-5d9GSk$hWGJ~vSTFw(?vdJm;qm8*GIIK0IEc!QWnYjA@}I(F;|cK4w{
zr>IKnE#_@>w7GC>SiRL5%Ht|G)AnNb5C!w%`V2WRUNjT89UE`vrSQL*=f2m<=e!31
z+Ln~v;`7A*H4JP*ybk=3d!O2hTS;J}Gji7sO-v68%Rha3^7Tbc-s^q{G#do$aDCaz
zwdNxO5^rD#vsCJTd|GpAuDTiXsn|fIF|Nw(P{QM>nY63?5AS&oT8FO276NpJw2qmW
zx~?jrmGTYT{F_<MNHw_j#;^r3=14?GBxZzF9d{Q$?4oVHG8K>Fw;qE?-@{x8SF`g2
z-e?qbx7tXEN<Rov3PeNsXgzI(1YH#f8NN6_@l|1+RQ*+Lb+t`OcH8`MySHhk=K4;6
z_5jCKH?zoqta}Flb~^BSd+Vr5Ao#a;=ujkFMcBH+y?|0)^p28o(dxV|r*<tq)DIF?
zg78okQI7xS5MXR7ZA#fu6Is2JD0%y=H-xpS6E~Lr2#q9?%eYp5QwidhQ#Dikz@5ga
zX~r;v=?WQo^R?b_V3;4G{}$nF<5a*+C{j?-y@DM7-9p)z#J2AVKs2U|h`$}GjnH$k
z1t}UnTxmox`>8yj2&z8~>W!w_AC==RZ0Q}dZ+Bw^BvUCUm|Lw-6xeEBo<Cu(RmQiJ
z2^z8;qp0&DW93iAxaMD{L4W-vy6N^}eP)`idP3cl@Or?DccD!BJ>rqc`@QRrv(6zj
zimL)P?8y*Dzgj@VyHhwpS^aELES9`Gu0a3%(54ESOmZNNWl-mq{|IEGIH+WQNA8C>
zd~+y0sbyx^b()GGIh<25tu|sc^msLU&)S<;CLlV`!o<w_1zjMvaQO>TZs}pyzV|uo
z-=c}sLe-Ho?IqrROrMXX_K_(jmBc^PNn9gz4T1^B=*zf_7_2ZWL41!d1zUSJ3~&zD
z@;U0+-E)y!2QFT`zVnCZn4dJc!4&FwqM5x866rR$>ogv!(+^n1KmMYu(#?G<scmx3
z8T*j8TbV-DyQV6HVhGFYI5=xHmUargb9oicDeqc&e0%ANJ|z!aUO0-jFNdxBiC40Z
zo4-y`adIdnLr&n<`^Qw^&T~4Jvip@8l{jnvxXP9_)3(EMxo3*^DNbw}TLh)1=VI{n
zpPOBk$1lZ@Vml=DWHnVsB0F{1PtY)|;Zd}qiM#HHYYOd1pK1;zyJx*+)MLKi;sMm&
z?-IZ0szDG?lR_o&7+X41Nsg5svNKxjhv*^fpz37Y?Ob1f2RyOr7t2S{+g7>2zl&qw
zT6AeWm2Wsdq$n@%O}%iW0I&9R59v=&TkA<Rre4fT#IVG%t9;aLQhrSF-S~zU^_7&+
zk%M|9^KFRB0%JjDyQA84!no;7YTwYEx8nhiT$z2%$H^+77l*^g&z<Qezmtr;aQFV@
z1OAI`wO1+hvUfI(9HYA#D*sRaaCUiA{u@-OaTg!|7CHzWm!iV7CASMRDC0~Pv%n_P
z(UCQEfN5YzUbj`X21-8ZYtH6YzDcp>lZcw0H**FB3_^ADLY+(QQJ#>t@l7^*WfYb4
z^}|s6Zrur^S`CK+1b!D=Aw!IVLrtaM9M)EuebeWnvpK5@q?(pOV}F?_sIu6Zo58Y`
z#iw7xZtZZNL-#sB-5CWuFT;x<ye+^hDKIRv4jpTl2+Z3Mi)9~n-dpoP83;l^nK;nG
zE^Z}>aN<JUr0kgmO~=eIbyCy~G1UfAFm6qQcyu7$q0jZM*?d>8U60nvXH<MxN`mVo
zZy6vFhE5MRrho~sRrV@Weh0ZIhi%djXW{2o0#fwZ3yHvve9d{nkYo)@C^qRoQN%B;
z!~hHIlt!9?;F+x$jgbc1kd9P`0~<Ykfw~mG#8m*&C<ptfucAXKnjzAQYW$7EQ_44I
z;aQ#oL|&h2mhne*LZC!MY{_!L?a{c(sKexp)d0U1N}89T`76u_7RSH15Fc_;l%1)Z
zdEA_4<#WMB+t^u=A=gOnM)`RJ`t6<_m<-u@QbNoR8QQTc;%Jj%;>T=4Qaebv2qOSy
z=)OUqtze$Qam5j%PlH3~tm1;lIN18W4VsefzWz`7(@9DZb6J4nyxro-1K7!?i4U+Q
z2-uQqO{~fWc@1WeEji%T(P{n_EKYLzqj@T*3xqyU>T1*YQM7n!O}JUyV`4tgsHf_X
zJ&Z(4W^VF5|23gpt7JwB^6aYW?bD+*yE09lkXS*NhSqc2?eoDerac`EXP#DqnP1&X
zG>0N%s2Uf3lv|$aCr(K~1jA^=qR+L0_Z;5*kovR|)9%=tO^ZkamSDW>8QO&+-tV;c
z0k5qSd1Ls4(D`|5wbb^RoD##}$2o89fJuZ85j{-Q?u8P-qh|aPcw+(6rb$J*TwssM
zFT-Z?)j9wDQe~`>tMRQZZ?n$k+h=3fWL)%+k;8`=Og#8=6!!cqdNUDUY`}~%$ufUO
z*S_1~7Mi)BH!tjF*i$+xoN;W!W05Ss@7@@siD>PoN-(+ylO93mvw;2YYb#$Vh{P7c
z^ki(zT%n%WZ`Wt!%kn{CPY%8PW!iEu;(FT-kA+~IZ&eLGJb;4nR6YExt|qeTSK)Jn
zV&gc?n?8UX6W=_=k6L5UX5SFfPD#Z5DtEEh!il3G9jeF0@_cbDmpk`IY&qf(`FESy
z%Ok<Sq<Z+bQ;nY^;q&mt{+<tjXWp2bR(<3u|6lLT=@FL_uakL`r!z8~Cbe|hKV6Gp
zwklt~ljR@6ElU{5v#^^yej=eqBn9#xIuitn6)?}vm;3r4{fT-LreXSf^cpV$*KDLf
zXHqb=0P~H^njptofp^R>T-9g0##x1`tp2<cHBPaqux6(DQmrkm#jwG29IT7+uNLpu
zVW~f=22amb#=&TeZFL$>cu>yD8VlvznPwUthWn*)Ist1j1ONaY0fhT700V;jKd1mh
zVowz84;fb@kH{)n<REpPj-cNL5y^U!2>~$P5m5==4P?7X4+p^mcD440z1c%Ivz(0H
zjy}qwT@VhYHqmsLJFfewuS@|wQ(AbtujQ4=`<4+cF|>cg(RKg1^{IS~?k(IrK4QIR
zF}fB4QiE$X`G+R~DKi`sSn~F!QW;(yPlFNjC5f?gi8K~Vt~Qlqpp#c-M4)-EpX?P1
z6a!4sa;X2q!p_~kCyJGS=uQOh?qT@-Z7kywCvm`&WkXF!qZE3<<9G0kPmM7rUmWil
z1`a$P8VG-gu3=t&*MLui+w9CXV))Gu^kCZE*-)j_MEnrPd+;>_CdYl+MLC{w+VbdX
zr>#5wefoHkC-!(pN~*z?ePSXKhiPYA^5cbq&tk@@+9y>S%wlS$4&C+AjgQXsyAKZV
zh%z5yYbWEKr%S|GDiJiB>C$0;H}<XDW_x%M=|P>@Lg=nZU)f~cKa<2NJAG@;Q>^b|
z`V21}RK@ltL29DP84neW5z8^}B-m)*vo)z0G<oSYd)L6CJshx|kgnjs7!Jq;M>X<f
zYprX8gX<Z3g@!`goeH{Wps0T{_Vx6TuXJ>vZWEGPHm?LR{R0Xq{Iax|lK!GQr`lV;
z^4cVc4%YA8HrJi;`6HYc#RzMaSJy(k(s-#2eUe|QzD;Ifj)L<oI~W@?aIiA}dF2#X
z23LzKMPjuV^jn-8p~Q=OQnh9FG48DbQ%i+xgW4<MDbNjixC!w?vdiOx8LZA4HD`Ed
zAhZgNEKaO_yF?D@{gyD??yGx7XhO9fzDC8+b$B2l@XT^9<v7=p5&TOh@0E;iyo631
zrL!xO2Td>TONu4jbX7d{^FZ-Kx>;~20zzWC1!eOL%tbmgZ6hGB(TFa03G!Xv<DylX
zQ_*^yw{wyULv!LSa1MEmfwD_fELY9<<q-@qj-KmzVJgW=c?d{hq-DqkQ8p8TG83_H
zCQ0tSFXcZcGW)8l8kcGGtL^jsi+hi1hI8DtxyiM4r0O|&CA+tIdxGq}T@YG|LG3cV
zB-%4j>SUm&j{M53+19%HfgXDzy`e9{0CP$%F|x9w>^`B(nxUN<J7rT~2|%JVC=dN7
zhB>0GjaLvZBvsglFdn^rK;{+|fTm3}ic#onRvk$~W8u9^kc-iW0+LTP`Rb}DBP@Oe
zoh;!2+NDZ>Ux<Q<?E<i-NbED-eL4B@5l=-)siab0SmHadUP8aUK+EK^*y^7!L8cym
zGmDK8JQx^Yl>}4#L++@euCNPp_Trrj&${?W?wd$6YaRpb#uA1qRkw_i0}F-X2-6CE
z;5Z|QDWMX5lmRBzo@dI8SSIk_h4`+kXb;>k?<H+BMAU&WYn|dd>p`>`f9VQP2drQ$
zvz&*mx(GO^V>|LcO&VAI<9_nvASNYLq7pgX;{9*0Q_MxrAJZkW8=Q0vDKc}5lI7`m
zS^*TUnW4Fm0b%xCq;Du)k;%fx8Na<Vm>6%bZjlM0Ru29&!L1YY)nUV|7M{Oh)bU!V
zpou3}oC=(1(HGyZ=R?#We_H~;^UV#n<Z*C<FYSyj@z!Kq(;p8j?Fv>x7hY@mtXkao
z4ZkVuZAraT{aHe6v0ie?LT=c~b=hh)x_~1xiy4IuR+jSwA*_o3GB@}R@aoH-6tUrr
z_0179m}h?`)`DCGb1xsyA6{cr%S)zuHtwclH^{;hCR9k<Cj!BKcWTZXCSE5Ast(jq
z6c_6D-2+QANIB%z(hFG3IH${YEs_WpM2qO~NEYe=`&DdM9~Hln<Jl<oJGn<XO$4({
zyP_h%WqkdA02x5$zw{?@J7m0iYLJM+=)->1Q)9TnBvlOBmMnNhZfZ~rWt+gcFrN_`
zF}*+7Fy`B4DU>b;-)rNr*o3G2c0Ff8ybgMG!Mg`O>t4>tfcD2F=`_+9g0<`WqT*-+
z^U3cCyu<euuHA{aKbbgI<j)qa)+Dpv`P-2=gk>wS)TB;rax(P?&8jw}u&Fez6IYiY
zOv0trI)Wl?o3dG#><P9YK%DbVyI7uT=s2DW*XSc0y8@#JSMA)&nNYry2<>@=_h6%l
zq$ZcvRImkJwif**;Bqcp$wYY25X4^!+JrTdjJ_=)5*pg!*qeC8&_Y_|KOAVxhUqun
zDI<x6(XBS%m{5?Kk8gP6eczR}2MV?kD#5;HPJFgLO~utUikPBusW~r7m{kj)lW9@0
z-JEnhdwUgxzFLwQxvFeWqpDkX<K9~DG<oet*Ww-?p<SYn^E{n`5WM~bPpt`oB-{8l
zgJieck0ZO<NKu|GaL|3BPLnA`OO|pG(o*T8u`9tOK!$8Oq%y+f2OvC*4|Q!BSHlk*
zHAa~sjxE7=^~uxOp;)rfJD0DEjtcU;F(&i?OTg??;pRfba#fKJ1tFwF+YoWW>xtx5
zIm>CFl0U1va-k0WmuOVyGiCvk<A?$!KGRKv4q)X>fWsb(;1_0~%KJYK7xs*f(LN?d
zBYt1lmmO>ANG(5^l#vwJcCF15qR<nI9vOA~8Q;K=Urk$b`oKU9w4T!t>ib6j`E`#l
z*(CQjx^D+*lKi9H(|@UYpyp|F5gT*JxK%tmg6?k&U#~2wAEuO#*;h3dd<Ik_<^`PH
zXPL;YN9n7!0g&2YL#wrTe6l~hf;d8z=8HHf1^6P^F|y(W#u*iC@5$O%->@UkSN-+`
z*A^e&;;{Z;8{zuhL#Ov0=!U@GUBJWKZ-s>4X(}fG!9htWDAa7-{p5t)k3erPI;9lt
z9WyUzW}u`Ro|^Ze)=yzLv#QdU3S~(p8-ePzTy=jZg9I%Uk9T<w0zoj^)cUu)olAL~
z)=Ic~FsA$|_$QU(Epo;vJM7GbjjKk}%8)gX<%m-5o55tXN`k&G1I~wo4ly6YzKVYm
z$CZTXAUnFye!5p#0*oy@L`!<8n|tM{tMktIH4Mk~W^b^(iOWw{Y#Y$`hVqwviTVF9
z^!<o$V<bxQE}$*fZvVR&#DI5>+Z23@qYG7yT9A#t3_f3LXn*TtOJhY5QplTap*aE!
zRcguc(DXah={-qJGZ$w%pOcH*oSOy{{L@yzXfReTxS^mPtN<0{5#Fa@LB*p^|0cr#
zU_25FkHS<b4*w}z@BiW(V@uM$7XU8s#`<KlF_*2WH3CiH6+IX?7%l|pt>E&b{{D}f
zhW#lTk+tI_^D(3Pb$ux>$?RYnR<c#Ya|~%^1{lAo=Bz|-Z}CEN*dz7X<DTFN0rURs
zgk)Pu`U*V7(+#{`Uj3*G!8|u9puDaLT-VMTwkf-j)l&D^LiMvKTvb;nXqR-$#KFDL
zz;o{I)9Z@f*=y}LVWtPVQ})QhqrqjQmBTcH4niHGg#FZ%WuJ5S<wq3MhN*hXH!MIl
z(XRd>{OPdrOXXl`#r^E#%^_;=Hwv>{_6TVp3qi>jS=CCnJDn|cA!XJ96OF>`nm@V4
zVuGur>;+b}+QZ6Y7|mXfSm(h2mKN**f7z3bnuJU7Wm)%9s)Xmm^>M~G@I;;7=@N|-
zXNDUdDr57#7Q2JUOvFBnKM;ZjqkF*7wZ8CYY#qx10Ld_;3750u`)wzsySa1|vEy>#
zkHY*3H+JW(qO)8HwUZ*51%uJ(yI~X6vwX$vLZ-V6e&mk)Q~UL6TOvQth{!2+(XbTv
zgSkG!_MbEE^X8?T?pt#ev;lv8f)n7*<&B>{L}L>@#9{u@?{NlzgUlXcXm>@b#-{9y
zZfH*Y1g>vHlk>2}yrC_kk00mCF?C$L5f{)q&2>eTRpyO6AAFTb4_WJP=5|JG5xm~L
z5W9^Sn&J&I$rF&k!V%lG_bbo<b~c7>hMxP?TFkJ!RQO~BovN2Z{>(Ix<DY-x&hgXU
zt6L(POd%BhnmllTfmS0o0Ab8OP4R+Dx$LKA68z*o`4W-ZcC!u!eZ;F8@KaC|Y(vl<
zPgk16t`FdrbH39BQ}T*#WoIBA3Ux5qx+@@LL=IepESSqJ%at&#_zF|;wmhCM;~%WE
z8^3-$_#Y)ROKR7?-bM&h`cjc@811e=q~IR(`5l?kSsRx?DJOd?8cZOzRm19~&Py)3
zvPaHMJ{<XL>RCX3ifO(eOI)v@w!%9-SkO*0;k|4jv5jw(&^r`@7HETr>nVDKj(YpU
z@vu5h1u?eP+aY3=dO)#?Nbsc{V-5E(RNDRe8&=4{OaNqi(d4+A2R_;6dbt^eDHXJ5
zHPSB3VehEY>dw(-vu^;b%)sJmik1E!KWry!e$ovN<ADMct&~%yR^T0C5{%3Lbn6q>
zi40ibt(~F;Zu!;U>o+h;TOJG}oVPY~EW1v~><5C#$WT}hJ+lLw=>mQ#)J6e3fJ<Ie
zdujb9#@R4M9)_40UV)*Jhe5sk3pF`Qcpb0oz1Dv=s%ARz;aI8hX(8DF1)B)-mE-MO
z?JLRe?knv9`@p%Q3|(=*^jdSFU$%$X)!A|BD<{3AAcWs^(kOL`mYO3GT6H@K0b?tQ
z=*kv0-V}PSrL7KLQ<H+yar=x}y)uYQ6lWib@`+V}<pG})=`_iMH75|461U_Y4y+U;
zDXE(Fz#d`#sZmnRqV~--4czD@>c|S`3V29rU38WtNU`23L{J0)sZ22?9Ba<FcPYz6
z?VC_c-%FN2ji{AvS^7cRFcHtt`-Rj>4!w-JUL)Z*6A@0(-WF`<{R$8s@~<d^&d~q@
zVNHhi0}J$rxqW+-P1=M)!+(0z;e)9A&LsiqrdOxyutMK@og(%P0G|whilx^h*9cll
zy^O(jx~0z~d0~{|5ef*hI7}g?(kq1j2Y^ywJ}ii`e;$^8H>x>%g9v$Y`!l3-lsDp?
zC>XnZHbG`hJ*K@SbA1+4p|Bk@dHBw>($+iN4i+Y;NHZlG9`c8BRFf3-_thv9E23>G
z?SKVD>Sl4MI*UGPlnmZa5@3!3x<i2>s$oCdiUCQ_nh$-CFDS$C*2y{MO00|5B||oM
z4g5CjVP@OPhF>h5Qh-R7iX4Sk^*+PS1@P8^MePYDUGX)0@l?@Qhex7Q+y44747o4A
zh-A}q6EMMnnaxxOplnC1*~6Wp_1mM(9UQ?ve$<_v50?uk=L%h*3_zpjcRK%6b1FOY
zoD(U`x~_2i_%CyjLBE*OWDaV+9=%bBeuXsXUV)%y-D3H+T?D%fHw(JPj>*}r))9=9
z#o&b>HBdVW48VKg2EA?wdlSs@UUm7>x|ciO!yD3>EmD4_yQmR~r@yfo-CGSvsg1sZ
zB%?xo*WUKdGT=c0)(Xq`6%BY}1`&|o<W}c6EhE7wpkeDNTCS>oPt8Q%l(4~)A-XS9
z!!brzyfG_mf*JA)NV-#8|1Q<<6?I>OCt#fK`n~skEzqxi*%WhoOK>{<r_MN{hb2`v
zJhpz+rvt<h?@}IMaHAf=Asfd(<u+h!u}pL|!PyUifxN3HmV;@!HK*z_H)2&%WGfOw
zQ)~io7f=F9asFX?8d5`1Zw1$5lm<Y3Y}d=SQU)11#ZPt@qgE4e|5~Cr;>(Uvq@qPl
zL<XJm^Z+X>n4EAj^4<j17JZ)$pcqx|sxB6@b~M!rmWpzVLg<&CI-3D;yR}}B36Az>
z2TbV;j)V4O+A3%={;@7T0|;A~aZQ`9eJ3ME^3sR)TNg1aCZ3!CHuz1G%4^mRzz4)8
znaAM5c-X<BmDkjAfbcQ*Ttfnr>6&FI1yJ$G=L6CYDtsoiDhm;+C+onJUI1=|wM@r!
z4Hexwgsqh^bsHGoDFwe2dKC(UK3xGJf(hiqhk{=O859#q>ID!II#OYxf}KP}+nMu^
z`b;Kmvk24cz~ir)bo-u!LvK_+T=fPuMv&Mnu!E*9>w6x4Lk_(P4O^kCu(iZf^x!U*
z9L(Zz4(sw<*L70-iGQJ*2FnSladuZCR#lv|UJoUU?2a_fa629;Qs7;0G`5Bx`?7sd
zu!C!IVCQ*Gc{R|oQ+5-1>{6Qttt)vY_Y(k%bMam1VK?{~q<0ev8Sl1P&<PE1*f2ii
z(~9ImWJ*v6|Eypb@1zaGid|ta)i#1kT9YksCpN-uP&-MRDs9tkCvuNnm*lq9AOK1G
zLPS5j@Rnfn+=9M&7^l<!|FHlpZDVoKRyY;7n%Kc(XY@@I+m)IKW);=!?#?<o#CBZI
ziKZJgMsN{TFmy)u(&4`8#!a9NXug616~HvuN50rs32)|R-}tkL^I~<Qb22w;d~S`~
z){F2|lG?kq%@yJmU63i37w+u?Bvgu+g8NU;H=Um$$(IHnwuO7rs6!w9jYzS6w_L!6
z#_c}XgxN~8zF>va@Ehm0SJ)_7uE)bfLRP@jhnY(Y38!SA4_2MqKtGB9N(85=nDNf8
z(IYz!Ij>XlWHAbHRd-|x4#II{gmUDPQabMW(Ln8N7o5Z8Msv1!gHUy9kSOvzmMK_6
zpaWgIb~mjhTw^cFT^~@#Vq#i;ht`QdmLMys0x%MDS*7eV!1?APW%i2a!fVWdpUWaV
zTM9O7b)2-0vX@R}%<A+@u5V3i_df`tE9ruDuk2+1eslSMNt20pL3;)x`*-aP7BTA=
znE0>5CwKw|Kg{|W7Xkl`K1wA3+ZV0a{u-_=zX*R3?Ns+W9xm_Eg6h#EXf+V*<}bCq
z{3}{=+RjW+<@@%%x7+5x5UiwC&1rkYIEK3I=zB%YJ`bA}e$5MWr>V7w1q4Dt3FR76
zfZMOh+G~=!us}?4I0<Y6zx&Wcc%Q%dZ~uau{^<Qn4{aHK>$20YC-MEE6d7M*Sx=8j
z=Jw>Hv%AYA5z$vF(mQdV##N5`6vc{oFi&R8;oq<Mc@Zj=N2#JlH6oYg6N3(mOKyn$
zowcQk=2|v(-Vefsie<(gA@p(>fc}w|jXDl$DQkD8I7z8BNI`L?`#{rUDAImP^jPFN
z(ML-%6~ny|QTI%CM#9}z<0?bc@4owi+jXy;S{kWh67}<+EB#B68e*H*P}OU(AOpAs
zd!9TgqnXCF{iitrlbG*Peb8CN4(F3aJn3KDUVD%$0jiS~6Tz-Z?kuFbVo|~kzuhuK
z?)CKJE+^~$q#<o3XB$<uWbtU46cQGTt$+E2hWvdPa-T=%)1Ph@c;OM>dG%xF5;T;*
zee65B$7P(nYLKK8au-A7@7<n78Rwhb`kv@o_smf7N8{d7si{3RNrfpVQsW+GR{Wjw
zZDEYpX=RBx$!CMj%D7S09fE(dPyG)xMjw5bYA7tn$^>_ojaHbdL-6C55HQJ$A(0Ae
zb6aq+OCgiBd+~W;ZM}W>BynE2CrD$r9Xp4WzIHBGKhu4v0XEF19DPA!qO0+A&c4Ly
zc`4i{83r5Vuq3E0*k+>=1qkNssI@e#;H)zfxNT^~kfU&fENl@m^@`J1py~`aua`X0
zW4X~k&<!f7jQ1dNS%$F^6pje4C@6Njfcg0niY5Il;SRAEHzH!ADN~q#T3-<Iey2CC
zALM!5c>;cVW+!x@2(jo7Y^!!s`;$cT|4SHvEo$xf7q1x#46M89uI6TrqH6*FxuBSV
zKAup#fkJOC;#Rq4mIC>_I9)DqfQ$0`op*nJzsrYi?|VA38tEuYk`_Q4s)?l}wb!86
zq(SzrNkVp+*G+e`8+s=oyz=*tQ`oP`%?*TK>p{P15R2UNm<BY#D=N&$6ZqM|k%c=(
z(|TyoETbk*tiENbMXF0Hw?aHM0PTrsI=DsZ_gByHq{qrlZNBO1|8XF#@8gact97?|
zM`il^_1w#w-VO<$;01>?A=%<t&KLlE@o1^rn<V23^FWZ?9CaVtl$yn#MZxrTT9(_z
zyuE+I?lCX(1?7CE#If(Z(1UiBM6@*-6R#C(Dpvvw_E*Ys)g*9FNqoH=3;R8d=;+Aa
zr??Y4>>eF$?iCM9*b<)uesuAtmGkSYUn9M<I$lZpM=bae4Gr0xoo|LuzG=LW{0By)
z%TDUTghlqwi7l5oP(vays|M=T8feVSI>TX!WA+dJIG1XoGr#=+tAyf%B?NpoYBePd
zMH2jszWj)5rVR-?^qON)>pAamo~#9fYV%xVND1T%x7!DKL1h_Z=od5JImz49%YqDV
z`o!ybz>yVD0Jsk|1!f!JI%H(FW`t1*&KxO74urcF)Ipk<;Y;iRU+UH+Nq`6x-ieno
zl!x=0=4q5^%S2o^_xd|ISHow<Y9GP~b;w@oev&k=|G*jr<W!f~lxL``p+9aOa~eND
zz8FazAIzyhVEpB(`oCYpSkfVML?9BV@ZH4%^k7-@q}I|ck)9$M<rG$@aFAbDGhp{C
z$f9i1o!I_j-NT9VNN&z#@xeEPn*sm|k}>Q7muk)sysqRq#3M|lk9Odm{iPcSSbNp~
za__u&>BTU^!>3AF)+@navpM)Y3FSbzMrr~;RrR$_uUN#V2TSA@;mLai3@l$ZxdS%!
za>zAo`JnGlF!@gng~dDy9sYo18<}}@5jntwdetE*6^)@!p~P-&=1{J)F_+V=TLZo(
zvl!d-$6wLiX;v<pILy+UjK(K_7#nI**typ$ldLM(tqbcASvcop4&2ALwcIj2mtIi*
zkKNbr8~}DGKVK};Y@ioe3BXajg+NG>Csr4#TYrey7qC5R3F*QpMm_|W9waWL?q<-K
zVG#cReg}8RIdC<N`TRFZX7Ya?t3NzHs((9S4hAv1xr3cYQT)JZ>;iR;<`TAmnhXcc
zC8P9-ks~e5`J`aUPSI8pp}a9L<^VrfR;>d?qybJ0Btw_^!#}#Ty+15Ub7Jos{2h0+
zO@T8Zu)>*_8-qD$Fb(I33P#}5tuji#>0%@EVJki2M9Sv#_^Oc}x!kx#KV}n9x15Ek
z*UoKePP&E<fuC3{D}zJXda{rF_DqfaLkT=G{CAug7&G;Wff;w9(2Q*28g;ufxdww8
z#D>Nd!8)!w$Le#cXi(p+yGgPnFU&U6#+45u2^hyL08|xFJanx5ZqWR0*YC^Ej!&F^
zlmOkmBER_w{Di^iW@u{5TR=*?Wgpk@?=PogWJWx&i|%xo%Q#4;o%LyI^%J(dS24I}
z0d`avNl|I2C=sE!W-8qKWs>C}hf>mk`e}S0X7AUv8o$8x0?GdY`ov3!;7#ghZb5q5
z=uUIQD<mTyiOs`Y;;`5;)y{MZtGfK6SjnG5wT~3`yK2Jn<R(G=S;Gq+D|Ez1z&M?C
zi0dD~N1=S)7-#+NaRg51(Qr(g@<53xvO$=pLB)Yx!ch`QVGJnH1m<||lsm0b{`z!j
zs;Zd_l_(1?{qPH~nl=#%o_WW8HN(M{qer*&HJQ2VDPR}?<zEm9u29CyFMA)73SWbk
zqg{_mQw=^Efj(~}(B!={2nE1@cTwroe!zvuv>flEtX+Y>8AkpuZ;3be(N<-;i(@XK
z-j$)?J8<(cs{MHVR4nd|UUtJv(GX~{6_rS8{DsoOa@Q&=BVH;)a<pL%Uo>>O3h`s0
zPn}h_>Q>SDI#+rN>?WY9aT7~qv075Jl;cjnO-V?5Tj_9wg6$l9K#9qz)ERH;5#UkC
zOsi?!^aqT};OX=UP<4jALaF$KZ|_9Wgom-qG@X>&?@~mvGwqmk;^KN!0+)MDk)50|
z9M@sR*BzE?w&m?Dhn*!fW6m3t)9$Q+6GUY4*hI-&@-P&y!V;bLqP%LshqL*jg}1ok
zS!Wn6_sWplH>;UznpU9_ZoFq-M!!r6Rer{63yAfp>|gRu*|@qCFSS{Viefe#-8uu}
zDA?G0_-f_5p70`S_5*dVlfuq8)UF^dI-c{t98q0saZ+u35&iMM(w{SQJ+j%xt;Ata
zp$tr2d(L<goILG(93}|W>1l2)_a)=LA-=&N6?gepH4d-baUgWl7)qw?O|A@XyBl*<
z>A%yB^Na}AGgZdHo@lthEE6lW*sB^FQ=En1T2~&WGi}_d|JG))=2#BikMLqi0>CRd
zBcG6$Gk02qwI#15&GQ#nnxxPtA@an{=22**X7ns9&Unrff=UDE)zEO4>q9-71TPoe
zXrGF#1F(_Tf#sLegcNkz;E2y(eRm}uE3Pq6Qq>O*{Y9(<h%!T(`)vtL-L=<WiUJ-a
zF|0fYrfsk^79FiQNGcO6$;rH&UeY@ej+6_c!|sZqBD)1%^g;X)Jwo@$H`CR}ds8oH
z26ZeG9`$LeW#7J4n^!cQL!pb=4{qQT#T?4Gw8OtW3j$Whw!mz&#&Ht{{^RXO*cmzH
zcpO+d9s|HYCDB1QMk>Mv`c81f2^|a^%gYML1Hr0?6kMnfvwJ{NSp(88Fzp(Dp#o`m
zZiys%`e}gIof<bZ>F4lX2!O4otn{N>-$cO;0^yk2D<wK7uN^Vfs<&A%euRmthfr+!
zDsxfwz|=$-$(^}N$Ztu0T^8q>SDOcIL@UJxJ_i{q=T6YE?qwv78^yr!dN;(6%WsiR
z+N1(#w(n2UKMBqx+IM#J`UrBXr~mf1jdXg^?RmpzWRKfgKeo%B;8hmy*?z^Uqvx($
z+qfqakcQq|vUMnk258Vr8Q++Xgs6;9SPyC_Ptpa+eo7sp`Pb_a*=Q&~@dF)q$hD7u
z{R)mDp;Dq02Uz&_r9u;dP#uUS^BJi)E(rb#*yh>w>9<x$1Vg2P7euoorD~=|oMxTu
z;me%9S&igc&y#0_h>cT?%~R>!Q3W~zl#@~S32sJ(P+eh8NKGF%fB7lo5~9lpM-t^)
zMs+l?NH~;zFd|YTWa}}PB|<Bm%z~!nDVr%<=r&dmY~}2!nt*X9isrF$#Zy%Gerd%f
z-zfs=x^H+;+imB<VqSVfX|nH^GCIUJp45%79nichH4?_qrY&!G*t;us8WBr01I6Jx
zNX@*v%bZ?&J7nnif!vrr*}d~%e0J-eF~v}<mruIwh)j9ao<06ci=icv=lf%c1r1$x
z{wz5;G7=+}=m+>yT?!b=lj1d4rTA2E-)h5#oCtyVULXpITVT<sHBqIQwbl~`l&&6H
z61f75PHg)|9pY?7oxJIf*T6XTJH9rLXfnb8mu)xd(_6i(Wm;<H4J~buW*35}BSr4#
zoyQh7T5FQ$RzM@LQiK}RE3}<!=7zfA8o+COaW6H2oi{T)VZxX#l+EB0hi@Ph$V4m;
z6H5i+uC77bYgmbM<q1uaIXjneR^#n=MQ%>6BDWN)0*S7<&*0jvMhM<*5!%qCE?v}?
zth|u#DkjeDF}@D+U$~(zVf^bl<+!9)b4C#VOsk^$lDUiU8$43f*e2i`z)bopV(u$d
zYzn=ljUYV=PLi#4n9SI|n6URZLbumVFlD{E{s!L-WE=dP4>lf{6I7Y1Gsa2BLiha{
zj^KlHii*jqZPO1nU3U@~oq)8Ib4u0yQ-*rX^fahQv>*)hT%n3Dps%0KH~peUTb!Rk
z#zr!`8NeL-Re!;u8IQ5bS4TAM^FadUTY7S|nZ2_<1P8HQtA;V$CoFk>-sS0vNZ~iv
z+WGR$y+^eec+l${^Rw&(+Myg{h<hp$o5kP2fdNe~E-t^JiN}G-!65pWi6Is;!XA+r
z6o55xI!;W*9|1!0zoa?O778Q2`fx1s-S~Y85dNAKHOQ-a1<`g#Sz6WcJrr65?>tx!
z5fUKZsOeR645pg0VNlZ_7%5l6;l)aSUAry6wUQJ9144tnKN(^{&K{K^l_tQc84Osr
zhO3J+Yj6XEYk=Vz5^@dAW^D)W%NFo71zz(XnrG>q4((fOUZ{0F+lTE~a!g<^%h~)$
zwwqE5#yXhx;T0QGop*k)BfE0En;!(E9Y?tsZ*&^1EIe}g^#uyc4gLh$7UN%L#>r*^
zs~m+GuAZc#(r9sz{Ya`U>K>Wk0r8l=b0U=*<eUrrwsIh@<8qX1CrpJQE~L`*zlrc-
z=JU-b6`^iW!R@##07Mt^Po;jKU$gvsY<q49ol{+>a_u@np;LBIaeto{sq)xpp#vwj
z_tG(ql~7#la|u*x{E*0uUf{yK9d^oRfU$G&b`3)Q(rj(d+2OasMN$}zP`z-9&;?TI
z<qzHZeR`f!8_oAEqH(}=Rfnl=1t`E3_<;&z>1-_yT8^DT+a09NmKZ@@AA8EwSS+1S
zP%WF?PWm$kV@AuXi`A?2v1#5QRDi_L^1s(%Z8$k}3?#@8PaB;-?h9xW)-gIi4VM&{
z$O%`#KCiT1SsGS)R{lFlal8>tGB8XFd3<BmV&IK(Qcb>I&D4Abu%=B<x{RkEapfbG
znao%fc7+G(NW0>@#u1?-GU2Q#^PV@aMLT5&DEPyjd9gSt$1Nq6HQf!W=C;qo6j=Xc
zuq8`bzr}x0U$NF`l8(^^CmRHygx&mQ$ELZHP1p#RgYz0bCn*omNlpTleq?jf+M|Zt
zhqsjcpo=wGmvOdoW92^wqQA$)zJ6M){8ljSC!kVzy*Tbo7Nyb}#)Gq9Zk-YO+!N@o
zUl$9pt6G^ejye#QPk5`=)zM*7a|UqRLJ4FdIsrh-bTI$4npO!L?He!fRw5cApwM9=
zdHv+iA@}y@Vy5tM4m;W;@mLtTxCW|3Uz&W1VS1U5R+ICjOuAhhL0Kg>{w&5Y;3$Vb
zl5HUi-+EQ)+iF7lxE0hA@@XJ(<(x_9jXyIq?)~}#7EWaH7qru{yAJ22d~7p`rhHHY
zCPpgfEl8)i1LQPmfO3nN1NFrFY{YhMLPkf7_Kn5;+bJ(`N||-cbVHSM9d`M57LcuE
z(Aj~DV1)-9iX#Fez;!TV>Fw};bmIRyXg~l(GY4*NLT$bkCUz2p4qIiJsN;|%AS^+7
zj#YD?Oq%T7CG&FimkA$v8~)CKbsY+Fb==-hAw!ZWPr_odc|@nZe!x+~$!)pDFga|@
zi%;T*5upzze&9mavLdN%uCZ`ajwdIj70789`)B4k_y<B<I72j{5>no&%5I5FoO`P4
z54RT>QzjpZyd8jz)RQKWeN2{!17C++w}F?24Ht#s5Hxdp#;%QQQz-(2RBtbXp9j^n
z$t8?awD9Bh(_Yu~_c}Q7J}KP46Hy7V5#QGj2>4Vd=e(I9#PcvqdxFT)udPgAL};1M
z?8v9&)JC>ThGNe}FUX&DW{sNS*|W!2bx(8|HvX#lAC0=DOFvos5-%5Bpg!f(T(wbb
z;hVpuNwH_Uz+gx*zPZxQX{m|iEdCC#U44&mIni2J4Fhy#vfKP3_mLr|GB;P3aOgoh
ziK4Mw#XVNV#i5o3Evd69CzqyE@)lzV2DpI)Lu6!xe|Cg#Ik*owBSYu`n^SawK3-2o
zVZrjo#v&jU(U*BncDvX8BC}XkAHunM59BDT&7<#lwpnp5qPHgSMl5J8VA7>2Cj{9L
z>2acG3^o{rPL#+yrS&;f*((i%OfGKLhu-1a4vVL2Wpytb9SD`q!LcHAjAm+p0h=K#
z1x@DyTk1l1gQ&+>89PZuz=$kPi1o{v_if?<+`ubcGQ%byCcGui%ONp=0V3&Zog{Q(
zq~tpstYVAt&sH5~r<e$h#axKswN$UTrx{5tjNl(l7D#D9foJMxBEQyo<R2AZ6E81l
zBf<<Dz6G-L5z4_rv<u0lN2Ys6h8kcjwVwWbQ-Gb$gxd9O#hr2_mMLVThixD)k)U`=
z|6zNhV_aRcs;>s7I-{Ae`Yo+=L!l1pRavMJ0sUa)=81-d&AKz^c!ViW3l*3AW1!8O
zVwHRxbi`du@qKi7jNALLdO9F?fyHXZcUp68r|vV%X|3xW=f7VZzVW)-Q8Fjo9c$}~
zT4Z#TOKzYmGop#8{5jYYmT}Q)5y{o7o&??9^zF6@TJIgh1+k&hZ&>k0&Tbuabx-jK
zjq4c&a9WYn>upb;KevWU7sT!bnjfv1)_$81cQ3+Y2K%4`E6Wd%t>DG03=hAVY|PWS
zI3A=eED;R&%MUQ>v;e|&a8txiSE-)n2V&|cczasrrkEn)#77kW;ga)9EDu>}27Gt3
znK7w(N~a0A|E+9dr0Q|E3p9xWFslhv5$dtPpFB>e{otC|;&yaaEYdfD;&&WHF3-<$
zkF^q)+23)aoQso<MSvGZj!2wnCjaT*o4k3*fhkj!nWsziwa}YsOj7-E>$rt5R1yn%
zxqicV5n~(#ko=tqPG^VOC-1Ec2a#0^?=3Cj<id)KmI1vu{!~@_J#zxZAMSjn&7B+O
z=prJ!N!X@3Z-t*0_{v%rl5h5SQ@HOpaMRf-Xsf-_M=nLZfCa~R5r^A^fU!W8WauS3
zJJcK*e&T3xAC|&UntASumD5ZrgXe@=%CoK!ExN!rj|`znYAQRD*QTZk<6B(eQ4J1l
zJq%>1nwlST!?f{Uw_m1XC#^b+kg+=U3azAF(-@%YlDq%wI?;11_u$9mE&3QvFcR))
zAd#JL&#X!gf3=wVV@fbYKUGM@UgpToKLDJrnYV$Ft58k0!W4u8Ot$JTfM?f+v>6~M
zX^`Ezg(RBxObo^Qf|>ggKl*+unF&=k8rj!T{J$koZ2A|_*+h~2rq>6wfnhc-x|MB>
zUlOua<%F_XWogd-8~A;<k)G`GKCoczlm>blCiJQo!F0YKdTl%M|9A9(bPe|9Rm;(s
zL#aTt8AbU@$C8qHCEbChgF`h*CIPj|zcEuaET)|Ndn6QcyxVi#T@JTQ&!Mcp==_`j
z5aA`FZ=sVoEMc_>?SD*OyQ-#*1Nf++F<!vi8HLJjcRUkFJOv^M8%yTK5*gi{{<KP(
z;wGK5eB?suQ91^T?ydcTMZt&)E``eu9m>{~x?U8<I@@uCakx~%-QGZ3lWk^?@dP@8
zpikOLDyZ9}L0K)H@rvoh|K$GZa|m{=moI@8dXHNv@-XAKayznDaH~o0hDq9*n;!A9
zM~~#P{QzmR>cIvsxiNjPy^EnI<8S6gO&$Ape3m=4GEWaMKzJ!fiGaSs(7D+`kGN?K
z9NnwW7JzpSvm>O+TW4G|v9lnveCYw$NQJYz7Q+-|g{aDclyC)Dq1F2l2Oq1#|GlJW
znv0SSxX69um)H8`ap2I8g7k<-`tSGN<Tl(WcJ^bxDp(+x??HzcwC~80s>0t<Oua<s
z(85h;M{$Isu)Tz%kti81h+`Fy(w(so;Ke7qHccT@y^!eIrzq2-dwz_3HBZy|sB8E*
zz7@&<Cg(-Ml8wK^f01?DyQo^(GK6~>|LbYEQacLK;ji3vsWL(%CB$1M13%%GsLExA
zBAu`pWEE_DcjEW7`y&|sACt<SC*o)WOz&K2tO5;{=hF^R#JkR;`8f`E&t$B7*-2YH
z)zp5=qvOC_WE_f<wtWHoVVDBT#cw%#fl@MH&{c1JxB<OnEc8oGj}t2U6)csi+x?SM
zd(b5YZx@IUq>1pc>v|mqOJAO}nCse}&W}V4LhZC`7TQdzS0}dMEj<-T0$j_9me{!L
z9`{PQwbFFJpb{LmuZPF?bY>uw9Z|JMBSqCPePMzK|8s^A;xR>2!DSJ_Ev!P@8O&qa
zkGYi7$b!Z@V_62{RnUrH@Xlu`Hoo+&_0}Qp|EdHwfEY5~7)W`>ZR=|Q1vSc^)X!O1
zkqcmY&QYxK*Fh0Rj9AUw;M|_7-0<PtFDC6L*az>=t{dfHv$$<=*{ISmBXgFMd(FeR
zmXEX~vTj~@n{&pMXstR8DBSZ1KY_i~G?SXrFdB`A8-hmE+y~kL3x=Uu*D`)md&>2y
zl-oone<f9Fm-?f#;)kaI@@=Rt9!OWHA46?L6@gbQZITeArO)y4`t%#wu)Cs_M|=5#
zhg`}QxG{Z&(Zarz2;4%u4nPA$xR!&cA)qyn7wUnIjIQmTdQw(zb;fhDc7l0e+_&Kn
zI9D=*cI4&7ADd;7O)~+=ni;95KmpNLX%DOndvzsG^xtdm`V4;T^<=hU+e4hLgyfEc
z6zEf{R;d{jP*5PdU>bFHLy+sBA@heRX~DTI#w$aRFHRLQ!gO&b(5EMiG_lYBmH8{d
zGS=95Qy{?w)nzSRCO||w6@D_00D}NXjiD})plnD3DJQ;yxN{YK1i#cnT~|k`un$IO
zPQq^<^*i%)Z+-3tVyj(JIlAb*f8GV}1aXBkz%*WLqEpZR6I-Z+5V=3Ap(u4XjZotO
zc5R&vD@1nlzy!8%2Bsr{w-!qBfB;V{@uQ!x4cPax{QcHP3FoBDOxV@z7aCxRLnXSd
z$V!>|{VJ23-|AO*wJ_aZbx+cdL;-nh-RediQ3IIZ#k5ZJ6t{-iGsnQ^k;<B8i0l;K
zqE~+)5)f1+PGD@+zOo@jZFYY7i(F#Fj#7CuRpKIVSRb``{U07H*stoVxXIz)SRWEu
zFHIdHoaaI`QqP9J7!Tv=Nz<tlaU5i|IL}_55-DX}ElMFNY5<VZ?yVxC4+zV1LcajB
zBHI$_tkS)9@Od|Owue=kF4byoMIapCjtTeR1g(Mu+WqKGb;>%~S+fJi9xn7u8Vdpy
zNqmC+nH2a5Dc}qtHugj|yOZ*!l$m1Pbf2zF?caLCB72hZ^%FmWLA$A#3@>z9j5?K4
z!pFY+9%(AhJi#O_PNw42@eevA&y%XH*jWFH67iuia*OcHx1taA&9w5@qie&?a%cz4
z1uCfouY))9yIH{G_Was)2+`Ia)9SuyK0FxlKb*rYOY2Y0OJyYZA{Of~OPQK}G}85Q
ztw;GqqxlSFi>`@~-(I&8c<uoIIld?W)FoiedqepLXD_^|QA3U`41hm>Zo@3qOQD|=
zvbskLH}^B7>$U#$<aBp2(X68+T&Rp-x{R)u6Ha4l;5Xy@)+&+$nHHl18FID8paLm~
zD?HKkhZBE(QUeaVs9F#mrLs_TTV>&`KzV}#mgFJ2vCzZ_I2XX018$KoB=0)fnX6U;
zufO9SLQd)SDg<yz$K-)I8!A6KZi`wIj!uLesWZd!vNdY>4T(&X8%ZGhbo|KfHNb>A
zjq__&ku|TJ>O7NK(7yHIivVo&nk6qei^-t1r+7*>BChN;NuYR*W<x#M8f3j>sfla^
zON=X_wQOGLr?DUIveCh(ccV#g;~aQflqO>E2fUi^#^FI(0qSgg7%+qENLcHu;BnUC
zGE|D5e+l|(66xxx4zhB$v1!7=FyrXY)cI~3i{N&RMOD$4W_l+a0ApN4zM`zbN=|BJ
zxFHY@B;I0cW7>cW&-Gp9thf)S_SZL_{!$*)=R_Vm7!Oduf1GHKI@O#9A7Db7d`y%}
z+MXBqtBYng({ZybcR09stX7B(FP@6*STj%HtS!U3pqBv~e%4HhJ-k=jul2C}927rL
zAt;!CA=`MODduF7W<!V-4M5bqfv3KOq0h;nqxIwwj1X_q#mBf~j*XL$2!Jbq@S#%-
zJ9}y-^j9nc3($9`|7Jp>fsq;`!;CIzBN0)u6Gixx9N<#r$xuuMy8w56MXD;A@Yjl?
zAU^bx8S`%2llVc@%aN`aZodhQxkw~n@PY7<L7OhHA{(C%7chfWpyh}2)3zt|MTIPx
zwo^I}XvDeZ4+Z{L<f})Rx%0v#!9Wm4oaLV<$}_M{pg;fL($XMIdk#9xqQ3Wx%yA+Z
z`9tp!Oy++yja76!D~?D20<Y9Um=pc5$e#pwuBEr#ErkpiDiur95>lQk-b;M$$Shx9
z(-5h)DqSogQvtGwY7!7bFC>9>iRYV(Ha@Cdc3iN?!iL4mAF505TTx{0F(|84$U`?T
zhUy6DOuc2ABSyb(iar#a5vh1t?iNN{kHl~Jam79b=%nJDRCemQGV76GwhH_j?p5^4
z#5x05yprO=Zh-G@8IVqpGqs5=Lj+apF-NkLT>)mWhD^;1%JByx+jO6ZNcF@%1?1XV
z(6}IBIW+`%GB!M{V^_TOJYrGjmN${|eAKm8qJ0;hvz_A-RNs}-1IO*K75jrLycH~Y
zfLy{`X21bq*vZ6Q3I@3)47BInvNZAQ{Oj4<R8pVeMx|AFaS90J2gPGeK(eK>W#OX@
zq&E4OiB)o>!lsz|SJ^KDiy7}omdOKSW1{ZggXK08esnZO8fZ9IV^l8_=+!dC<RsPc
zC#P_|rmB+c-C2<zY6$Fa3SM{CIU%SGc|g-I{t{i6#iNrlbFiS`g4jHbuX*|Rwn`5%
zJD~QJIay_74DJMSe`gi$+PUJko-W(25JzBuDS#i1csi~bOG+H1Q^$!v6LTtbpZ#-!
zgggy@aTgrCT!eq)vWgw|qZ3er`81tlBf6i9NqrR%8h>2-7UpI@iaUwQL=lNVr#6fk
zQvwYxgvtkX{d_B)C`1jx*>8+o1!T~T49FCda;)vT`^KpNE_@pJBD*NV(kNA^M}b50
zmF|==d3^ws46_T$H>96<en-*}{E*HK6%DM{0#!pn;u(CM>0hwlm}|Y_%iZ;gjm{;M
z*5JwKjIeG7Rd+0MrC^I|gB~EyU6-cpHa51Zw=lwRDDcJB;rr>><Vr`}B-7zQAG&=e
zvx)0d`xWH=`kWeMWvGke56)wR_$tnYgY(A|`;!gDUeO}83&TuUULO##Pt`lOI@%l)
zV)Bc;J4b_2v!(OqJu~s8jpIg30M|sR1gY9LEO1GskjPv|pI_aYx4hOsh5s=Ei0d?z
z2*@i2cHx+zj$2d>3q;9C;XGRB@!V151&i(N?tvtA_CY#^v351htW!6PBh;d6WLD=t
z)*L@Dko7v(zSmzVNGSi@gL8RVM8#wS<n$jsuBc!HmMU}An?OtcDKx<(k`~BE?E1Rv
zfz-Uu3OJ#!sh|_tT_;E4SK(%-Ref%EM8W-=kxHb2yfo|L8-n*K%DW&`eEE`o>;rh_
z<rc5L9S?^5KLtMot+BA%S*ZA07~Cthpxt;ML%1eOr&Z@bT)e-d;yy|6agcB(@nRDS
zp}7Km3n6oP0+cGUR@RkZ@0vXk+#OI01zp=Y_TllIKhlhL0~$EEjr@PpzF>s6*Lc<e
zZr5x6871MZVB^LNH##Zfy^En$q7Mf|;F77pB<!G^6i_39z(E&32k3Rtb19V3ynTnz
z8E`<l$le*Lqz8ahRr#P$#kL)0;(F5bIDk?&#nOyI*RK7mh|-)xs9Ma+ZL@>pNG+A4
zK44hb`Pi7Aq7VE`b~GW|FfwcKEf}O$rhi=q&z27$7c17cvLkzX<7f7C$?_iaiz=B9
zL3r;?BgAgX;p+}MY@=NIOBO(j@t=?-Flf_pJ&28`DsXqmF*apZt@W=OCO3Gw4bpB+
zi#}vc7yXVOeZW^n&KR0@hQ~o-)HHKwR`x5$&oqkaq=do9gZ*47(SWO2_nAaDZ!EVb
zmFE^H_Q?=r{T)u>O4wxfu*)^JgR*D7k~|1=`mhg|&4rhq<S*pu(5!Z*X0hGIjAv>m
ztkhDgH`Nt2vw~GO17sL^AxkJ?4u%_jj^%%=x8GR^hdC0TlR8mba0nxOS9*+07Vy_Z
z56;6H%t9fxsZ!gLy-989qo->|l}_0A<fXX!_<8mF_M-AO^%iuSH2s|UUmhzRck)65
zEJ;JG;S3tnPnY)~>l(^Cgh@9)Sd*uUMr}H<_B09p&E)4(=e1}{-~JyI<AS|oDo`sX
zX5NRHaT%49PzG6O&_7^uDiMVLO{M!^a2p@;&M*faW*tMZbOxonorP;?>)P#qKfq<9
z4^FCjIoOKzxu14cJ;Sz~TReJk%6|%+I5VmswqucU?oDgt0F6aX^{FK8-e4c;D!E#b
zlJy~k!dxe6YCb<EUv3MoJDXQ;bAHYkL<4MIfH219(8Nt{rGV9_6u24bvZ3Ji;J(Wh
z!Qcoy6EHFGwhUUE$}94V%x>}^ixb}P*0ltD{%=c4s8i#ZKTE3f)2e>j+yT}$ZXr_g
z|8OTBHDEH#)yI9b8{>E_FA_{pr9hQzu1R>iRgD$2kfeD%r)pS#S68SKe<G6iY>KHj
zIt+&HPBN2H^V)?~!KAMXeB3Zhbc0EhBhit&!aWld9b3&5Y|FS8yBjqfVd29QzZ(a4
z%4Ilx-ZURo!cS)%6LcT~?K)2Ja38Kd`q>jpR?B)S-2>Wu-bhK0<Bspl|L*<5O?dwu
zCLl!h*LqLY+n=Lt!X`nFO3$e(KKV+}yiJ`Tk9})~8Zl0g^@q8?U$`ffxUk!g6=EMV
z%{;EOtYG<yZ7&#oz{#x7P&^$TLMLLRehro%;qHQd3*1%%s+p;=(YLFHBOJ!&5;1E^
zi}X;Ej-r*rS0d&`@UbTzW5hqCZ;@{wgqi2!zfaX2nRbshTkI$Gbr`X!mig|X+g`Gn
zi`B=;$~4)7z%y?xg)C_oPaxd*Br@EQ*20|z9&RT7b-w3*{{>hBGYu1}6=ZF0DDyAw
zjl3U{FJ47VrhjAJ4)Ke`NhN}1A3)?SbsfFKxt{WA0%Ma92ni-4AnR`x3ZTFZr%%J$
zEt@h`%2${l;cL+(dsjci2S*_DmWeL|qFm}u6rwfaPKAk_?O$YQHU5>8+(TSn^}(|O
zQh;VLTSvTnU{s<8d|H{;L*iD^6YDlrk44vIux57LT_pQFr#Ooa9+f?s2;r}lm^Ys7
zCbuNX7vOY``A4!%p;NsDhb&sIj}LX+*Ud3;a?&3uhuOf40;dqbZe%oDY{Yu`Gdx~l
zeRiu|vSM*DmQg9doaJj|j7;8%&K}kbO0$kXwz?f0=SjM$kPkG$v#fZW5>N@8o<5Y>
zKZvZO^g6)*5n?(N|EQ#XX38XQCNY|xRj;1A<mqvRi9Ya=5lYB;*pV{P!ESH2m`PV<
zvj+bDd$>!<rcK~({wKM1gHFZ#8s)-=#CC9pw58MQureKKC^R0<y&cE}m)-EbWgXc;
zeO6FoWd645g%#Lbx!nJMt7(AQ?8L0&)i-{>qg$b{iMZqsjWcNAGF@BIccwmC+^hNt
z%u43RZ`UGGKpj)-&^gTD&6)1oHjhi|H@k`LeRf19KB4T@nC6n?BD7U=_aG3VjPNfT
z5v~Ov;k<%7`|eR+&t5h#1C3B=EGfMoO3_>qHrMwc<Fh~neSmUs%E%t}S{i<>_j^{f
z3|#?aKh8Y2)#EpFo)%bn)EoBLMUAqlnEJNar!nT>D@8F8EaOC_`CVp;ZZU!&%S<s6
zdej)nWQpD}I_Poo;?)Yn&k`aQce-*HY~qug-X?grV$Owsm^tmy0{ipU>zXA0i(p{N
zObm4~ugCn${q`6!xQ^3d&;SY^zGJ0UTwuM-G~{LTkm3P+04-o1fP(TuGg|@9iE_bA
zX49&)+OrGM2nxFLBzU9<Au`QWRYY<U3w3Wr5|q+r$GN6wFQ{mtb_nGOE^8f(X>s6Y
z#dnBg3q3fPp)|n9IimHkUXu>4BISqj>_3$kUS!-=lw2a0s}82zEhk->xX%d;f(_oF
zisWZzT^)b0JXoK*0r6+M`R@A^0rxrbn(H;bvCvnD?o>K5^Fh;!wbeJ(>WTnUKk_&9
z>6R$0WNQHT(~wQ%=^fAwutaF{AaRVXBJ7=_<08<SdKQC~a+!Cu%}@sd2+#N>+F69@
zh=Hjf69kz(drOq~67GxaUz5;4i5Y0hqEn{-n+@!bM4s<5)<c3(jmB$PkyM4e$7VL6
zrr;W$W`rNc_fpWPq***|76#A+xUrf4fiS9H@?ugSwv>Jdmxvgn$EGAWDvVgx%ca!>
z{DaxwvIuq7Mn&<U6T!9r`p0D~u-I0I!RA-2oU7-TM%Y9Qc{6C{jgS2`5seo5eyH|C
znVDD+M)vjZyQP%8QIETIeL73Qf$l+ju3gS4YLiI_t5ZbH3aZ$Fmm`RH4pESpO2tZ(
zdQfO=*OFx?ZB223Oc2s9mS6|8$DMa?n`uXKk$gM3%ybnWLrDLXLkR<FdyHkI78+7S
z);trAI~WkJH@Jk8L)c<HabQ*@J$;q=xX=~>jS%hZ@$m8Rq!db@UOV{gIO5_Qqb@?>
zd`z7GjcfVsc$P+OjKi1p_;O^YHZXrz6R}~3)G@+xRTQ~nOf)Dyn8RnNk6qDz6C)tf
z*{SDpgl^dM@`<L!H12^jlGNYq=RL&D%uY(wtf52#ZU}5dUyR4k`mjzt%?olmTyPhc
zNi1m@zxblIJnS|)4#S0R|3qW;f-sAWAEDPjPLLxrP`DOu<G=Xe`{@E3i=;Opr&%_0
z8;qXUI==B*Zy*n5VUrW83|-f}i?wTbp2Nr;et*B4WaAqeQ{S(b56{~?x1&9~sS=+S
zwqr#B#(vTBS}Yw$T|`)T3Wuszz-2YP=s145GK(vrMX3kYLpYZkLf(^&wJ8IlVVXFN
zbl{toipZ#mfJeQySOS7OO@yN{LHax!p$$UPI??^ICJG7qj|;E|LFS)p>Q%xeL%EG+
ztmLPWGkAyJNwn5<ZK8jb*~J?}9%pm;IJ_3JB4CYWO-zh&&G|phB+)swG*h(KeJ&3E
z2ZWDoB|2hpt>U%2yDAImI>3%AGb#UN<caU!65(NX%st8HD<yd&P|TJQ*eK%yY3MYk
zG?x>AGg{W%Cf|2<!42`Dpeb?Q5S4BTNV?bDdirXaI}xE^bH~%JI03P-JSy62#J*vk
zv3I}Vt19iP*qkfg3g3Tfe6p>x*uYBL&!4jB05WL3jk<PA-$t*SZp)&a_Fn4*Wi&6p
zX=<y6FsjeI-x;PUCqyfr{&I7pXZPEmpf57J8&3Zc^dyM8LFFT1%DDSBtB26X0EcZI
zj!P|yDexz%tH`CHS_xHeisqe1RCP6|<^%r1Z&UOObLnaN`%w1IXM>S1wa^S=Y~+yb
z!niea*rT_Vh#c%*lfqKbV2aD%7IHI3b4e=2_5tzX8YRU<-=maMK>KD8OX!tt)LVTf
zK1Z)R2e+nV!JrAL<dHB{yQB5_Ab^59I5ZYw$5(wpGK?vU%Vy=#RB)^-<M4gR9_^k8
zH1aoyPO%qc!z6=bEMd?G5&yjeRPnCiW0)TKa&h3Oph|3GC!vHIFk<ZN)M}9#j@GcE
z{%~{@6jP-W^hV9|romcv+Y4n%$b+%Hnj}ata?RmFEql*}smP)yZ-ulhr1G<By|?fV
z_#?@BRTG1N^wp$eJj^_T52vl_f^V-g1zGmZ62a8FTwO11?uziNaOY*;MGu;3&0K=y
zpw~&2&G>(eY*UeV^D@C4u?krbxk~0q4bn*i65cEWQo8HPnNS@TJoa{u|I5GHd3<g1
zk%64HwBivKiTrUy^574!t`{O1N$mTo`BJ=8Q!X-uBpWA2M_4XI&*YcZ7M%mTFTCqQ
zE|*)1z%n{RHy_>Kf8k6_2pZr)dJj44`IIZ6*PG({aLHG^I}J<vAvwW#q>vE3V9n4C
zw<`}b)wOcy>}7`H6bhlzYb3G9T=4>mTw*8iWuRjsdvwFh@!ptWCxiON<S!-M@B`>m
z7E-8{?_q3=0ZZJ^9zv>v3Xa)0X<9)-3iTG%vEA$H27nf1qP{%Iq~w-p=VsZKII7k9
zH4=2S$ks>}9|PvAq2J?}J2Rt%QoC?H1Re2IH0zAGMVKauJ@eF7Fi~ts=cTJr*x$%h
zKcLNOeC3*{@-CMxq4v@3JZREa4?{S*6%~!P=3nFKYp2%9b@m6*T#MZrk?_rP26!0C
zSUA#&W*0&w6ePXu-C8gx1+;9Zt%tK^d$BjDDth>N4gvk%qTGBm<H`U-K)k;)GltcF
z1fZi%=?TymUCjOFCxMPXXC5O3*X*ndwzbE5uh5>M7X81@9NnOmYohkQGmZ>6(37?e
zJ)iK#wQ2xWfT5P_V<3BC4xv!Akc)SZJ$jk5`G#~7IUL+|?@W+(TCT3~f$k#!?-oaw
zXQcw8C&haP-;BCYQK4)r7UC#~3hE)aA@2w_5*700^0Nk{s$|Pc?l)EhK3{^#5s&Np
zZzcy`fuw1{LY8D%sKb$GGty`e%Z6+pmblmPGLCBGIK;MV^{Nt6lbIfNF#~?Muins>
z4X46RBB{cv7aOFIqB-!_$eu!wTswc-*QCHVB<U)R;Y!b?i#UL4bX>2h|B48<=S61e
znGbI@f)gqq+wpV^RMmOWAk>av#SOccpN$V93#SL2hRWO3qdLfXjGQAE-oG@`xzvoN
zkP={l<@5Mz;*8L($E+g0)ZNAcFU0F}PZ6wOKa=GK``U36N3xFO3qSZrG~O~fVEU)N
z6O&J^Lyh8CvgKXLG$o2z1$<mDbFtC|AQ=vI9F;v-neN}KHDgA>|KF!m&mXL1I|xv#
z^?=;g=o9eo0PL*7V3Xm{!J02YgBb*$k27iiIH$^%-K$b-;qu+|5!ePO=^sj0r0Hkv
ziC`)vwKeJ^Gzu9oFSRTjw9ahJK;_go!hD%UCj5Q<G88M%<ha9%-z(RTCig=j^O%C7
znIK(RG|VZ=ULR`}(`?&dJNHn$-uc+*)4HzjxPB{boo>WGK>j0HCf8y21%L-%d|pzV
zwu!YB+VbcrnrY^&ho1mbz;qFNx%vab^&>?i&A>xG#aU_h!^oQmvXF0_jdHOHYo-K3
zAy-CG9ODaPv!83cZ~iuIQjpmgd2CfHK9fCSb62PFQykWe)>`e<#)0;5wV{1qA|yn?
zQ(Q{dwr1W}Cg&GoO5GeotFZIE?NQWr6whodCsvC71eX5Wh`Hh)OJ0>~inxMMx?$E2
zw`+7aI0ea9!fMa|$H~M-Cp#V>oHBxr$IPksiF|tedHk=+KwE-Ak;iht>7-H_h`&k8
zFNk0z+Z?Y9O<`dx*9PN!c040tIVnZw3TQHRx4foDF#oY5@p#&_ZU*d%r367r7yZKc
zsR=-i4<Hf~zTwH2Wg#G9>R0Y~U&Uc`M>Fpc2zG*mFzOA4MY5Cx@^ll}J9FQuKD&FW
z8-uotA5B@f(X&^0=mPyW(?`v6Q+qo1-Mvw9K5#Z1acF|pzG8`lfD%d>cPePgVp%?w
z$GhSOI>a&&@F&zGF%?eOOkH2|;Z9&iy0W8?4x*KHz)XQLkj(s{f1jFE8!_U#ez-O&
zJ(U188`N*7bw}6vHthroBc~2i-T*pQDvtZmoC2e4@;~;TW6-nOGQig&HCdFhxh7_q
z-MHK_m&2Zo|C$Q400x%n?XVErAf~*G8@`0rp@>j*j^26}&v02sPt2M?oh@TXM|jt&
z+<3W4*-)$dr$sBskwb;a&Im>0_Ze1Ku2a7}1DV*LQPk2lUueKoJh@rhvAd1kZntc$
zCOO@XM|xVpZ1;jaxn|&<NSesx-EqZ{^Yrzu8OucsAF8?ilAy^}RDC653=*9|?;)Tj
z-1S`O)!AhCF5I%u+0^eAIW8AG0m9r>yWJ2wNUBB$Ac<tIE_pj?4|4PB``r2x#2~#_
z8b8h8Y3(W0)S#c22eF9|?%31&k2N0zIrch|kXT3qeHN%vzpbU7u=Xc)704?aM$@+s
zwvI6l*_qMT4cg2Gn&^|}HO&Wo(j_Q-yc9H5LZfsIVMnZG{6c`&VV-m<JexBGCEPqr
zC^Ge!v&=L==6)oTeU|O$8o`In`BfJLws2Y__q{diBMzbFn`dnhH_s2C?I~OB<sgs|
zniH;E0%GJV(~Pgg{Nc1Y`L(3FK^wF9jzXRE>?)lG(Z+^k3*y#yJA|03EF3S07#zNy
z-u1fQMz;QTL#-0wM&qEbL&<F-b6_mKWkMKwJR5ZMfq0q1svn@6p<dS+{e2Y&g&il$
z`h()GD$l5CeN{Oh<?rcFDyu57>w}Ao#)cBxZ|qV0962%8kB*05={WG7UwodVjbQYs
z+mesRJmtY7^dz&h#f`Y+TR%r@ih)Ybbt8C(xIJ@epA^?n(@L#gOD=WDYYyf9AcuOw
zl%}rSohyy%_oPpf5J!2(Qh?2Bx<P^golF=+^<}lJ$~YSR1-a33=cw#VpF_<w`jj)?
zg5VgHPm>9Fd|i%r)kf(w_l9^)ujdut<mWl94ez+XfsiofHkE*0VF~A|;GyNIG8z?1
z6$uRziTu$Q*R9L;;rT9o#xX=?JO!;j<%iZ#uGOzV)2}PuK7A8EMrb`Gyc~l^@Hx}i
z=eDPVLb8k*6YOzYX7*Hk@PF*=vTHtQW0jW%E7qyE#TuI#gQYsKv=rWx@7wo)s*SI9
zqT(lxDo<R<KonFe&P>L5riXIJ(R;%!XXD9KMvSioL-`s&qQ90yLEL28PzeJbi&j3A
z`kGTgv5IPr*~r16kap#7BV@rDYyk51EgK}Zcrz?jRtyUH%(^GYPWs{LY=-sEZ3U<H
z(Q2-+e37i#ak!xcwdzn&SYv}7Kcs)<75z&zlfPIcvGS%8(w_&iz=~}LfR{)t9!W_O
z;dgMS|9hY-6vg^H`8R)9%^3MsmR$mlZZy#00O?Dw(v`&3hid9l-_e4`96u+KE+iSH
zAh!ZJ4(S~+EuDEwXnY=VH31e#CGrE3Tqbb;w~=)__%;HTcLe0jJsl*829ce8YD?<U
zzom{r-x*|<rpnB|z@{0E^<EZ1Sn-{y0jjx3@`8f?xLqVB2_45cF$k_v09kxN^|~P`
z5`m&Mn>Qrju5h!vklKbTUd55-tI!D|E8a{S#F_2xS@pDTxsHf2OdJ8AUxpX!Q2AAD
zke>oSy&c&=Xf~Ju=*!Ib_ayAFC?%z^cmus84PE|<J{K=}r>J-(l4n`4U|&`nnjw)(
zoYcAFWBItl6!XZBpeJNRW-RMH-v=#9cEg4_zJES~J&KWcL!LdK4GG%Ol6)!j;JaKg
zzI1(9bFaUG`HNq;b>&b16a9=6LkAFy&vj2+tBRkifoZB5naGm03_{OW|GSW@QCaz@
z^&i<usKWDklhv%}(N?6L6P7o~@My5l<W<pt_PSmNzj#-N(MQT;i5`mV#My=(*R|HC
zut7mTX?kp|NXO2!s%OVf1K`YF&2<T225akR`TK2%CJ4Snz>aah9!woHlt2I39VlNX
ze4fH&WkFoZam3}mg~G-d{@LB$O^{om+Bush0_4j=ugr#A%i<-j0o1YE9v09l;&D;1
zTZTTw1-K~8KP*#IbgXKffZe6Iu*S|#&x{_KAMt3CKp?n=ZaeB<;%J|5(b-`3(^jd;
zMn4r|ny6{rsIP!0x?~qOVil{E+phaM-*9&WCq#ahc0a)-#jXh90YEuntC=1PBEHut
zEb2Yc8<+o9keYec$+2Si`}TQR*%cKgI_mY`zwM}hI7?%i4bTiFZ87nQ{`DxNdR*me
zMjMehwyHTPr;{o77>_XV@gaJ^2xn#2<se_4YeIS}-165*NpW!20YA&#cST-x&t8%S
zJlF0p)V+hsn>WTE3o&(ytr^bMoJL-Q!TlH41qr=?9eEqvkGgho(BeiTcsg>rX13^5
z?*slp%bGidgS2Dg`m&%<t{zi~RmUAezr|z(#}%1v6KJuSH`sB0xBsySqp9AC$=w7d
zVDt{Frd=W8gCrZOR~2;ht<RJlt;saLL^Gza-#A2-C(x=aNLib8eGMwVvFKJFCW-UR
zJ=cbk8tG<HDy6?ATIVn<Zpc82o%5#hZf8V-sW^`gQRhXgvKsSkJT49?1o|yxU-&{G
z-MB1mG&sbpZCfH6bq7lsw{6DIcXr#qcfK71VQ>e_@0*0K39qwRZd%_6<~|z^uU$JT
zxI$Wv=MG1XVHFM%ZN9p^<U25NKGbuq?-XSNCH-2q!H~yDLuPWDR^EN&)sw7r0Z1PW
zMPV6siwi@IbBef6Q;IKrcL`hbGXr25xBdw%n)3+QWRILYS+Fr~v^?!)e~VwL*`oZ6
zlUSwE%?P(Jg}Jf}oQeOGe%_Udb)CE{Ll{)b9sj_&p`$Jr;=9^$7}pPl6;^%A4{2z{
z6B9^4_U}-i3iW^01}<v2-&5Zx6QygEDL9%eo3$&|l{3}@?mu<u6AtuImt%3R(-oF$
zi%=M1rG=mV&$JyWy0LySMNw%`UdG-3F#x4Y>AF%1U(Jag2PVA#`~8K1`pa>{O!jdN
zsj}5~*+*CnlP?sEJ{@%wl@F}dMkZ;Ii}T+k{&1#!#9R=ufr#ZvP&eT3cv}Gm>;2|>
zG=U*8xLVcX2+7vjvX+BZqO1pymYnGXriX;(*X~P{qAGEf(HRj8qV{Lp=`A79LxL*2
zwQuLdS(sdMptHP-*5!D}>_`<sLVl@4LzbLZWBH1AFUo@C*bQ!q6m);Jyac?m40<XI
z4DUK>c<lhgx@^xs0oHC+L3@5gmiF{cSYF%-Rm?=LL|3J!k$M5@@poHS{0AW?Kf05^
z5^=h>L{L#uKiukpn27kQDar7d2EHInX~68W1yTEt>g?T}b)XGizFy%$CJt}5Q?Us-
zXJ&uGIOrq^_p-#Dn#>9$(IB+}yQ;^I6uLFQy{|=y8Pmai$TRpNByMb>d)}2Vo8eJ)
z!ZV82rHPIMos?o8gI92u=~jpASoJ+cwStc&n8#3lRdo-S84({`w2Jwd8OM`vjJ%R8
z1*qVomsIDa@$p6^<}TJkx-cXj>mRLQ#nOoQ80}*GVUQ8CqUdSC5L=M~VqT%6k0Y7)
z(zOR`RY`<+UN2L;Z$GOsJ*fabvHhXzm0Q<tVQ5y|)mCP8vraGR!rF}f<NAN^H<YxV
z5r|h@+J*sCR9sGl>LKm8-O0_ntTysABDmMWg8ZR7#ITg0lNz{?XZDla{1|gp4~79t
zt7~zN%tNSz8pB8dXYCsFd%TzYZ^d(=Uoj&3>w0)LAbGfF3CpADA~N1b9lt2_G21A1
zLk`gz`#5F!G_LI?f+X7oDY-y0$+jFUQVaLbj&QCw-h-|A=`;FvP~ad45+wg2d|FO(
zJRE&esp>sNt9KM$ZTch&G%z(?FOP#KtW!9k5tY=eYFBqbsg`VbOg(H=C4%aOw2M26
zA+70%)$++**zaxG1VBuuh@^&=I~&HhJUMHo3vBg(GDM%y957#ofd*6GA}Wq8EQxSC
z2;6Qy@L?%Mliugiivhg(b-MzRk>OZq3NtrGbSkW&?BctKX~7VUeIkrM0hh~ei7apw
z)27MxpUAsmig>UW*U&H~^|)8mdn%LFC3$q3XIxT;dM%jX-qK1Gv@}a)&k^D{l${p|
zl{50zli(;wS4#zTmDe&$h`I&w=JPg*Yw_#5f%p<gJdrTC$SzIGmIa~Q`816L#*c6w
zr(pdXz@pL^N`OxqP|}=mU7$S9+`IgdWPFe*a9}NHT&GKW@}>IRc@%hKPD#$)xf*ov
zPg^LtPEQ2sZ+zuvPoS@xDPIX<37>)3^yBk9)P(~&-ywyT1H2Na?@PUXNyQ7fwZDgy
zFnKd6*l;z6@w$^qvKK#S*aHeo1ZsM-l{DD*^&k*sC5Jig)`Nn?%)oy1VaLf#8%Jzv
zv0|}OxP;+;i(fy*<(<eIpZG3C00gMPKyS;GCyv&z6@kc;AV+oa2MCpKb>bv*SO3pp
z8c-WUjja%UdUUrwqOaz>mVpvp-p}kdxZ|lqdiEopAJd){I9X4+FlqQ|AbjVAbVQPw
z!XR3H8mJPx$Stv;uuuiOT{EFQrrpqpcb5BJuA)%Yl%*8Q00R-|G>|4D#*kPnte<cI
zj4d`^BD6Fp?`qWLlstLIXlb6BoPZ^=`lH0<>v*&p?g)1yT_(CgEny8kMDvxbQO1v)
z<i}@P>_zwObimrmJlu*9oIu2NH-LEj>L(rWB|k7|(WD!iKl-=>p`RHEtT@gZ;c}jH
z%Gr2P1q4^CA9t|P3_o;xeoX7Cycrre=_IJ?vy>+=T|yDKXX1au&Bi8yltzQB-95nF
z$oW^V4F)}Gzk(4O--n8Y^NUU@>M;%%(Tl?E>@xw^lC9!@67cOm{RnJ}WvmpKKkC~=
z_(l(0F2D3JZA+75$}k+uF&wIn8nnV9sLL#&Er;x@0TLK$lL?sRMFy7bh~SB>$;C`W
zhKYk|el{B-)g{5@Q{fS`s1VYsu}vhF_Trlqpb%3uw98-HMj(XmVN<-l)-p2WGLMDU
z5?%T4#8=B&M08B$N@q@WUOLe1jDq-a4N<W%fN&A6$VvbRjK!fW9&mrp*4JCe@YD@|
zU`(2b8w*`IY%1;WX{Eah?a0AIWTT-Ydhw)-Ew4S~tKP<2e#6@a{KyQ1gAQlZG<kvn
z8V9d1_gp(3&e-%<aDdEdJw66CXO-@ne>m)|q*KbYHNfw4Z!YB-bY^1a71_?g@$<Nr
z&FzW_pdVZo%ve1DWGhf#n?*MU=gTjiDBOKtD==@_KVmOx-tttI6(Ue5HnxyU2HN~|
zs@%uECf@~fS(Nj=WNp2|+`S5>D!S}u{nJ)JB7DM<HPGT@Aw10LWR%yONY+k@*-L3;
zdq^nmAlvElsTO2)lLdy8fsaU<^MXRyzgS<sZFp#Uvh{tRO<j`MbP<x##|ZVpE1UI~
zG#|<et^oASUtiUUiG+Y?Xl2M7kIa*Cx;feY-h`R#jBUnwL_VR}hxiCzE5}(<?vyH|
z&)Rn24xoPzzDIH>hIknGU?E|*EhIy8XbKv{<o?+Ry^&y}w>PMOn3V1Pe)4nLY1j#F
z+a8g88zhr`&2dI5c-p}i0rb^c;PvnAEhaF}W^>S_w04Pha)wc@RUY+xqU^THHDX*2
zo{(hKrYu^Z46aoqz+>sSVhCdpl;3*KJ~>heNbQ<6TmY@9d=Go<@9`mOI;oYXSc@#c
zOCcu3YzphrHY>YOSf?=7oCI&7C=%2q!Za^<^bUk`T5Pol_EL-@{zBbeN53ct^+=S?
zu~`k1({IBG^u5CD?hmM~_eVtp^W~1_Whpo{yZqVn+xcHd7&7Zh+NBbZQ(qmXrOSqf
z9W-Ph0qx|+=wl_Txh0G8(Ip@7P8Z`3huD)zSCJp9Fyc5${9lh&L3s#spa8nwFOPfo
zf$ySJ?QFf&Q*WTcShhIiLy>UY1gTOxWf}l+>+_6(BY)e~D4&4Drr21n;l*@Z{VzES
z+t=QW0YzZdMBGnV`k8v=wm262G77Of##)rvis;N{2~Pcqno19olI7g2SLROSWm1I`
z>~R#_R9sVfCNK(9!ka$mP1TT5c$*1wym+Qt2L6>=n{xgy%AD7Y3`|H{U0rEVc+=d2
zf3OR|Up{tPkVtkCOony5Yo|NS@u}t)@JdJ>Ax8aN^a39LTQwNr-Qfz4Y-le_JU80P
zhqU{4kax2A(x}jqLhUf`%C7~+fax(M@8f88i%?R?EVrKDB5*)wASoGNMX+|5lCL|Y
z+!0>(^5uo^+i7pleNZ!U%Y4<>Xozh8i}E4LDv3XWTZ39dU@pWh{1rb-{}6ijL^2k2
zcVxT8+2i;3>OBFoL&rMrlr_=#&bUS{ToSBS{q5*c!${*LVsbWy9XCqSeAmBLocRHN
zS}>ZoZC@?t9a8~oB9#}g2Cq!+F6imxYm~Lo`&(4?{RKFXx_wJBlz}NSY!twwGqVCV
zovLKAgoiW8Ar+>B_b)-}uO=uoGOrYtV6g5K;8WQ8TWkCW>Adlb*|sFQLYKEntjgDS
zLt9hu?>YKwZ1VEb_vvTYBVjQA#x0JnMiJ|>cU`;L(D2#|CFlm+7!E{e!hm0>w*)+0
zT6+r)nDL?NHKi#L^(&xZ3q5tLP!9`}oV_9h{zJv^w*W;}ic!M@#Xej<ZHwzW(GJ7W
zG9R<ms^=V&EjRN4*3v0h3j+2qU78>fGVxmkb+@9_>XS<}foIA@I&tS<(Xkco9*~EG
zrHmK%oRf1SmY)5Exk0+1Km*f3V@`2@8S=G}5R7aU3|kSR7q7%?*gJ%;(`wlj1Wr)i
za*KJiK63@F%R<~@6M2sWU&<B2a!6CGm&@pO(30P#m%)5HVHHBGdyp&*Qy`?)-p(#8
zL3@-rmKN*J%3)nhH&F#y$0usu9G1|B9V&-n5;qBWS~2QrHc>^}J@4`do6NJAmC|kk
z4@S~!rW9QkQ`^-{!kE#)=Les<80QR<SN-g<QYnla&Ets~i<SJ(b~@vy>d6JJZ%BRt
zhNk_bh|ZR`qek|}a|szH<Ex-c2Ay)B7>8k6fUV@9Ds}-+@_jfMDQ*=D(acuV<YalV
zsjFW$mP!X7vn-Sqw3Nya%OrAQ<4fR?7*&E9E*lzAUM@JK`%G$z0un^X7b-;Pi{cA!
zBa~i$?JtyPuy2)MUE|lBj`Ks=ADXjPgbo){h&x3NbnYN)Uy_|6Ly)AD*A|A?dx7XB
z-OHj0>W_UsnIouJiL7Qn5N3(vnRovzY&7J=;LA&|Ybihj$7lr|*N5ta*CKnZ2vOnT
zrOP`uMWx`)#&oMF0cVF!!&VRQ8N-Bw_u;8^Euctcd7pmYkv9KWB~5DL>*knczTOqq
z=NZ?W{|w=ScWg(b?lsdF`o`0OD-cASB&+NSn7iuf``4zLKc$<8hmf#^aV@U)QwXGC
z6=Jum^Qytl`Lu3zWg4Aa2dHwdeIzkSM??@jA*Sn91#WX8azb9P9xxQIwEana=ZF8)
zbz2|_(6GfRrv@IZK2>vuEo*>eQSAK$5j`t>>%d!dh=u|rKN#g`BZRacsO`pp{(}E5
zk<%X=bGlu!&+<@S!V7U**Duamo~-Ng>LykRbku7%26Q(Ii&0ucEB=@$8hG0Z`tvv&
zUhy(e0|<1Qi`u1}-0svr>Hp<Dws)KRLud;1rU{TktKN)i4X~&ko&5a(<I3iSA5~hi
z=3%3EfBs<blFcn^BRX^0zI+wqxWi@diC(-yN6=xCq^*bD3<S$pAa7-5Si~_v>TXL*
zy(8yG^8+B1x4%Q@J1S<NksH8LHnzA6CxfpydBZ-~(E)hVPKU_$DM>+B!p;9PG(R2z
zDLawB(|C}+sqE10|3shS;CpMm-W0VEHAb1M!W*;HbS{R_T6~qGyL2O`?!GqX0eYz~
zRXzEGxPF>(dRcBdp2PQor7z5HHTOkxy{SkJ_)2Y_Un0qGoc`ZliG%CPwlk8BZZ<9l
zJuh3#Pcm8Yt26xa+j-sEX-w!&BclEbB0nHX+AxW%gE=oAbteg|ZCWE?BnQ4hW%44E
zT>SHaEsebSbdL1FA99`$4Tna|BvqC=dhL-85$KJ$Lsg2RMAAWl{ZHtVPY$lVz+Vp&
z+)*YfA~c~)u+T!Rr(8QqmQqohe57mYMH;p^rWuGkPpXHDZ?B87BB)k4ZsJ_hqhP-L
z9H%OIYJ^%5yan|uw@a#NvsBq580<3qLDF6Y0W&#?c(lHxV9|9#J=vogbnB*QHa?hU
ziMF7#kGS4_3;I}o-$VwjZ;RKl82Q=r#3F@mb>aB7fD<Q|YaO@OnYX*fdgb+e7x6?y
zU2guD3nmallAeJCT0E{~SG;^JN>ccUgq<jIYN`?0n9)9BM^W_YYmx;hez%)pd3GVl
zvYC`N&ccugb}HBuQr`QbS{JCylh55X45nborJwoFQsORx;yFq+=K|cBFbwpXrs)JA
z+%_*+qlXW0V^w;-JV$JMP2N|_X1h6p+3dm03VFaBgsU77g4qZc&08B<&CTtNNI%0M
zU-I3SBmK$B4X7oh8$7%HQ?^T#fqjq1-kk3#*^;zKQ#Y(4Roi65gp0yXZdCW2kKB_2
zNmIFHP58_Q);OzGBAR4Z(}~AyhGEk%18ApYT49V@#XD&|-Y0>59G9gJAM`TIR8`DQ
zb(Mo6C0ws}dP|Xy=SX&4#$B$<T05=&8O4k4vwwmFm9gIzH@q|?ja*49_FaqgJ2_LV
zZ{*p(OvoeR6|bn4|7*^Az7S2|1&nyJaH5;surp|og43_L^m=9>Nl0wlNqC*XL%f(9
z+m;+E%Em_yW`p9+z&D9u7FsCi@MIbPrlj1PKbymJY-`U3mTKZvYFg^1x^6u=DC;dK
z_q}41W|)!QH0LYeE#yH#SxVHD!>^|Ss?1J?Q|%l~oA;-zK#Pu#Z%c0OQ1{=jg8RJ{
z(x7OMRSapgH(f|1aKj3lYEN5)<$~1nQ&+*&fUIJA1o(a*$RS`4=K0sr7#1lcfiM3+
zL8AR;nmx0243KU!nek3+JIoc=h{gj&lGvOSj?O5MqwCwN(4=c2*1fU6T!;4ko46^o
z#%`rdx~*wy$j}I8up6heXK~dCUH3`vGN?hI9ZOM8pi7HgQ{AbUzctPQe69i;%BYHd
zg~S#a@U9z%z#itQ2nK}OxuiqJ#~gy6Z|)1fD`v`4brmp%&@iAjvvO&3IZMzC%AGLU
z^>=+ad=)w7#Sx(s_<p_u++g1xD}$vza{gyeF2xTn^dQy--tG=7ZCY9e-q_fRO*&Bv
z5-#eDz#6x=tjJ09y>FzVeALn2ce5<gZYgx-M|JaW7xZvFCsn!Z98N}~C>99s^IbZx
zC#jP%hRM(KVN81Q0zG&-1()mWYF}5hsV(S>&h_g5|CQoy=4p}Uv%m0)C5H_Dpfoo2
z;e~NZp6$@$HtX!$%z^Oms5>QrvPgjBG}&UuJdF*gEyyUdtR(rc+Cv^V<QjP|Mp<7m
z65RfQS%T^*K}MAT3+}2-h^h4*sIW3!4sut?@4(@nMZ#&bS0L6tyE;^;79u#hVpdLM
zG{WsHs-~=!vCV<G@%JiuV!YB^2N(`Bar#JJBRS#T%h{KuIKW%UEu+f-J%NbgO>Tw|
zG`au;-Yw6`zTdWX*)(fD<>U-A1TN25_%ZR|I@*H5&&|Q;4hcYhp{=NbZ;-!LI^HL=
zX?-mIJ7<LKqwUb9vGulT(N{^ffum<NxFu9u$DNzQW=rTw#pA>b<7BFAz$af=&#?*1
zOb=)JfhQSzUxD^g@vOT9)&tLlK5xIEvqh;#r`sDOCFG{Y7)xu#JzOYlC{f+gvE!Wq
zMt`hQr-g!kj(v(WsBeo8%E;oFo3L=7zTih#LQ6~w%mAsP@V!oU${_R4QMWp@Pb~|L
zC8CR<*)?X%4Luw50OZe7JFhP36R}0)ngMk@TF}D(vTg0ra&{N6CadJ3mDc{d+wkjM
z8Z}TA9~_dL;lm*bU|l4Df9g<&hDk2*tQ_{WOgm_CHKK=Jo!tHYd&pYXg~=xe4d}`Q
zjO#{^Aj8cCu=nu3QWQH6=co|f6F^Gm$#PlohocS}u@l-4%ZYPeJ=aqr)}ChlT&2)`
z*iuQvubO7}Dq4iKtkv1$WRES^O=o8hvMb0peq;gmGUQne$b@-%RnM4f`CaFU#vFV3
z$(F_TYr;R8wlvpkFwxb(6_WFt`OKc^47r7u$7Pm``OiLF3m~YGGm1S8<Cv>k@?r%^
zhXS5eYRb``XUX`$W_uC?W@JF_=bnF>i*}g*vi-I`HIkAyNDJIrM3Gn=I~bwSTDwj0
zv?lK2(J-zeI{+Ubjp3)fu>L&fzZ)mZ?9Cl=VR1E}`Y+8K+oIxv7en8!AgNa1xpRKz
z;Z7E%Xq9Boj&yn*WH5NDd#GEJgP_!bOb1Q&CNyhg<`W~Z#bEPkTl)_*!}No}C!20b
z1+Vr*rymOMn!wzk%{`SS2wNX#wwXjRd?}rO&rA-`g{2Xd@~WppLX@vCL+VLU2GhaV
zp?+AQDE$o^*)nlWu-IjE5Mq-$6pqK;<=p1HU&zfU)g;JMdM2TII0P|&SoT94+H#yI
z(Xp!-?q{JqN#u-3>FdnA{cBeXtMG!fBhxE7<$icL%5IjnhCMRFN0{O#Uy;mh3&UU?
zltD3o8NqgPXd$B;le`!j1V!In@#$jd=w7JkoLO9vO{fxNv;x#%M%BIE1oY|28ecFW
z75Hh0CJuj;q}c3G(>6aK2NmNY$~?f^P<hpIwubWaZGqF^+$0o|#i1YWEXgD-+w6f1
zwf&~I#25Isz?bL%u<z0__J9edT;k1n??|537frY*VE3BB2%F{2NCP-Xkyn?YK0ql0
zTrXF-jvSgIhKnY=1JlX4$<JT4pD?jP>421+(0Xsb!$QQUoz=;(Kp`vb#(`dQ^1FT5
zAqjKl9V1JZ!Y?T2Zk~BCU8*AB8=T4&E>J3v|L0?@Xur#^8=v?5T*Ax<G!WCRm-6hx
z@3E)}_U%p)H_=|-$9F2L`e*W-HT%sD35=DKdFy;xd4V(1RjF%jpqg-fpJ6XOA6XCz
zg*TCzUoN+P<_~_d1Z69}KrY5tc?0L9YdcxsuB$m0S~|hL<<t6fauN~}8r$&MK;Q{$
zV}hGqz}o*I4)?Li^knxm+Y6OS0FN%)KP4s3FE|n<tC8qqVNM4BD>icQo|gyIYWeHT
z-7tZ<!m{1I2#wPMvtB03ddN0E?2Ze?zkBU%xYn!RD||q?H59_gtK7gXM#2BTfTJYu
zfMI57l1uda6^V@daO;-|va2g$K~&s`w|f`@Gs>FF0XOyV+P+NGXIJZk<`O$zRYGf3
zVz!2!ACs2a9<brX@X8uZglorW3QD<1JQVxcdiOA~!Y3FsW`c;fCj2`NNCi-<4@U4$
z^+FGP$q#E;bv0prB41xLx<w6?BUjE*UQ2QULmw^)#KCtZ&bh9{RBxeAU?@!?$)C}q
zq&0PqZNsySU5Mgw56#izstDwWB_Ewob@FQ)*|FTAKrG0TF5~B7vn&{rR2L<BF1%2|
zpoO{&kcFX=%+yUh@0R5)ESYyjDO%QGZOg~%KvMj2YlRD=vhMd5<m`Q8e?}UBN?^&F
z#Ju6St91G{t@Wa<Frb5hZTMl7uFyuGH0#47gbkZHIk>Zo2PX_jfQ|}Tcab|VPVT05
zEiHg9VpYW~0-EQKp7IG%*+4H@;!)S)Gi7a^x;k)=ok4aWO3`>UtRHtWaDaC7QlyHF
z={&s(MfTF@<(YGWQA8YdGR4OGwQ~jWeZ1XHtjwA^Y=^RCIwa$iPck2r*^oKciSurJ
z_cA^R`Ti5BS@~@~@goEU`6${j&Q?@{@sa#NjUhUgjqqz~%p_^<<S(Is_zst%PqaPQ
zv<2{sqfyCZT}wBlqYI8=<DKHa$1Sx^xak2I>a1D|;b4$A(SjLo8o(eGDe+`ts6_c*
zH3V+(o^eswt_WjNsA<|&wv!IgLur}DW({{MP-f7ikxcj;ZBxNI!+?~t!Kjaa+7P_@
zv9%$QRd_&@0mA&9)A3SpqjX`4^o7tpH@^FZ*YU$N98pS-*cdOYcg(#!n86-+VW{u`
z8TkEl%BXYS(wve&gxXiE3wp9hR^dL0-9h)4e<;kRp@|xt@oaiSZ01dSYauV^O_4~=
z9aO{&;*>2CHK0wjT#6U4^Cn4%PoF|Uve1nL?mo#b-UR^GXgN+p-IM#k1ye;4wR?ok
zTZIGOtSGUPIi*3y9w$lh0)J6AIA1B7JfzF5V%-Gtu=n*Wqm-PF-m8Whg_+|_Y@#q~
zX)K#=sw?#Okw9lSE{~Q!ko!eFtO!fOm88x8X|cO#5dyXt>3GS#|C0C|z3(58bfq8-
z*Yu5}VPY2gFomU%rWzkX9g|HjLm5e-d=L{%{Y4<yxUexK60}zgy29&hhJu*R^V7?h
z@t7z4-?yTz*lC^}KjN(q=IfU(1BcS0Q)wZ6V?J7ubiFwgYv?aQ1>Ff3f*VAuV(t|}
zq!y|O(!0~h@?WpH+Q(5a-Mn8(*Iuo?!0H-uX3q@M5^WEyJMCE>L2>`<!L>n%k^1EP
z{9gjNYs7-0=~@wf>VVyvBLlQ9Y&&f-bJ`u&Rms|(C*5}RQhl43nO(gjVCkGa#DE>1
zSjG0n3|}p<fSrti+?Cw)-KkDkzKkFJ2(yk)-TU+ubP75(%^MX;#f?-ikCFk6DA^c$
zJ7kB&><>2BIG&p;)1Igd0xA9|i2@%hi7u`>E1q22hiYRad+CT{FlKWBky0p%xjspm
zfTqV_(z|so&KvMd>~3Vy-&Ve<Y-0UzvPEr%O1`;{lOFs@e1^A0Tcr%ELl^+K^AEew
zl!O-WSv4p!SnD~{GGRTemIs;iGtLZ`pxg>Zf%%PY;Aq+C)NSHJ9@J%8M?QeN*_@BS
z6R5O>T&czL#Be$Hz;fzV;5mzD+n#p5RW(9OUzKVhQ{;q|I;%AWgv@M^8}aj&q0`ys
z41WT@kF4TK333w__A#oq@}pz!x6NL~sVq-+HFwcGieOc#D=r5>RsZ=#6sVfITUxyw
zbw9R6zm-Zw8r14=IhpOOL1yR3&DMT`vZ}>@CUx!-r#Ctt!RO2$xuX*4M?83MzO$8c
zccV!`6=i$_&DvqBfo*K43{)K1#@~AsTV<gMYe|-W@hb%s#+wu*45#tM_D3D#v6W@J
zbUw`Vj4F1>hv65beeKbhz}1wcz(Fz7*NC?lyr=EowE3gOYXhP|*bKfRuv^237%ygY
zEyBM(MAo;VoSo7I$H(<CaQ9B_{EXwW@N%SIMUp0UX52l?L5WF)+@~6HrJ7evNt|!l
zUkn<(aPicDg-nLBHQ!p4s5Pujj%+fyo;#7tSjdYQZgEAA6th#Pue^UXf)%TO`x$r!
za-L5dDaDy^_FkB>ZbjH8TV`W5CuM$u8NqE|C;L^<XM~)(<|?l60wUg~wpYMi6>Lfj
zr#JY4#{!1e_hXuh^KOw682m5pxaCL+^?QSBN_L>WKId@O(`k$?kdbR1gsK67E;3^;
z85pXWWJMBet~xv0Kh!HqX~HM_q%yn%yq<$HV+blYIM1nG3S@fO29K>#1x#w!4?<Ri
zkkT&L=6?pKQRn3)XbX`XgZi5x-l%-)+W5n-k~GN>B>&y`=@9uP2Dpq-8aX7kZux33
z$Kx&_0WCs|w2FSQxEVOzJSW^Kw(58YZi;Wd{cH6`8m6w~#1*7RA2s~1uq~!Ws~+xQ
z5YI1TQ`)t;j{U&oMuJn8s0nH5oT6YuOvru-S3w}D!`Whn3QE*bANFf*G1Kj>&%62>
z0r0KQEpy8}Y2vhf#1AhXY(6!@1|y8`>Y=9F3YIuY2!o9lKotI4@Hn#RG$}%1JK0z^
z8l9$p!7B7rOTmHn?J7)I8KRQxDKcxX7N{A+{7bo2Tfe25W<CzIm}eU6Zp<&1%M(>S
zgDEpu)&k_Rsp$^ouPaGh^BRX`S!NF;xbo5FxS?74|8)n(4-6`jX;<WJe6Zzh`Y579
zf`_+GQtVrU<O-sI;K|`R4kB*Q#w}2w=RZJauja7#G!5_SgFyia#)gKsjyi_6q$+v3
ziGI;LiShHK{JH6^n;E=DwnCp3N@fql`GgL(_6%poeeHfB`?Uhy|Iv{CP9boGEyUo8
zGyadRx$SK_2*0rTHz)HaLElrG<Y5{oA$f<|VM$U9abf=W<hJ+p63sSktDJqY{*t0T
zrDIn-)83z@A_wO73rO`jU&?4Oa)Z%|k9;pLyT$umL@S9^Svtl)-tGdWo4>rdpso4+
z1Kc?4R2rdnrZFZPLs3`0UAC@4NY^OlaCcVU&hQnvSW9Q1T!}>QoC~Ut3VxO5b=wYj
zFo^zY(1IOC#l1ohwl`P~XsHl;%uMnmCihuxfvJx61*_PB{JO#D9kR_1L{OK(MW_Io
zykl(lOw`EJFizfP8&o!YFW-k2QsVS~?HczB0ivumvxlDXNZeTii-Q?0QWdwm2Qb(H
z1p0r8Rg!GEffb0A|5>*M^Pf5re6YQ0w9G?5W>q}-q2bP(Go36d^#14K5&^(dL5e%1
z2*rxDb^`l&%@=?4e{bo;oh~-x2_d7YRAJ3KfkwMXNuMO6+S7*NNjCf3H7U*YHi}ak
zV3=xr8#B1SM{S;jdF}+42i<5SG5?uVc|fdu_eA=e`&C>4hF`=QW?+RHe(o*Jh(e!r
zgyTxhQpAKJ4q$^5dJC?zO5r9JPV?{mUvA8{*v(f?rYqC(Yti*?e;LFjnJSLmmbI<M
z7%-o6e<JT_|Nrxp5&kbRH1};LnQy%P&-lJ1|E7Gn?_erN=*`<KFO6VRxXg^bGAfn}
zAvB@HUkJ*g(~tS^r?C6E*HDbvBcqW)*ztc)!6kq0T)F;6^DOXOR*uI3P#lF)Uof3_
zj7rGfVM7^#-*+Y<MzsEHZ;&p;K2>7@HV>ooL(Zm^;OhRWI;|>&E(+-wQ{;wJPy3cm
z<u`*T8fWxpNq=@B5MlcC=E{h{)k>};ONp-rf6FSk@Uw5#0o(^JHGG__mLRTs2phhG
z`eHVL1l4~n1fn10Y_=-C$>&c)Ns!<|y^AA@*^G9?BIL<P-`Q6e5cPKu7Mii1)7ky4
z2BW?IQ%V}$av$5lWUtUqCqbdcqml$Dk4?KvV@bc1OUK`MK@v!-qU6;`>~V;NSvAPz
z3EuwrZ@DLb#w!Him-y!6J-;?(m|&JQ*?iR6+=ViYBGeLUF*C03X-PbTNQcM_d(SU9
z%%wN4t&s1EzG#dK9G$eiOzfVMfpF`>P*MgzCyW4Ng&?h}Nvef3x@|4a5p(ijvDuCX
zToj*%5hMm+R2Bd3I%cmjI~r$B?o+VPa7Uk1%GX=D?3K4H`uo9EGZQue-OCFKm+y?)
zbuoBq9I%Ap_!`19oR&vKav}XtkMH9x%O9BO?}O-)^>5l2>t`w*D>v+f&*^iU)m|Pd
z&me#{u9c-u3U7elDuM{VBzVL3qdL|t3b{`n(vMz!e*Ti~=mJsY)otnl3yTSV-~)zK
zv1gHsRZ=d`Sd{2aVW_6u(+p^~R{}om>jCRYV&}(>CepoXuu<Y}3HJ5%GlzeJ33xIN
zp_EDTsSe@|s)4gtx>zPAG7fq09<xYQNW9Jy<Dmrr^Prruiggwqd{gZbnj}MYRuQNL
z!e-Zakl~}JTy6teoXJA0-Eu<E#ZQ1v7dO|2>=~(^!gj7tBcsMZ3C4kq^h`orVp4^*
zoJhiVls__9phdHWOJh8k_PFL(vJ~u_*k@`MP(t?(ZmDmHvF9~<FUg9Jg36f3b`R0N
zY_|ciJs5ON&0Yl`^0gmH4G_wCTmwZ9^pyZAr{&aarDaC%qr-w+C;$>k2G=8XMO5w{
zL1Aw|%k(>w6tMu_hOrWCK-!ag&1c%Myx2L{a_rCUE7mO>QWEiAR&HI*kH`e1hne;u
zUplS-LP)2fXTrHiw45hKo17jnXN*w;g^UO=%XW`2?;%3`wb0|s?_-N&ua=NTtPD_Q
zn(pileQgL+9-pzwGUfmP3LXKd1Ar|Ee~=DfHUD;~8QND>te`26@CHxhdb}oN2V5JL
zM7Grlf<I3PXe)ZV6w~9A-=Bh8dOCkt3sKo9=+k!>fQW>@o}}RF->cAwR8vP;W5BqL
ziPcMwWn&<|1+a-1b_sB6lxit}LY)g=6wtXUaO2KSkwBP{@+`OLrh6cS-*5ffxi0pZ
z%uZHMJ+Rh#PujhK9KLT>uBZ!##P!YFb}z7o0^&y&E4Xdt0Cl>5<)jHVZmyvq{YrKK
zMk{3q6UhDgs9Canl+RJZu*+h_x+%NY?~G?ZY%h769S{CAU3M`tdojcUve^CiF-lRW
zG)5U`DSoKYV8+I>a~jT~gb+8NWmur&k<fEtI0KLzDuqAgHzi4F^ubZmy!q@r8K~Tr
zMVV5Jv?MnC<=VTT?X4&8gq2UXzA-i@WH2gew&|i|{Zjr&!Zw*{F+%C$F0|&Tx>0*{
z#6bLHIfnvFX6kq+=GoyW3=W^3Pe_0_3SS|xMW*-jkwci&Z{fpwD=JT;(GU_WcrImk
zdp1=s1HR!s5~Pmv*`Z;#SIwSxyV7h84Ix)``D^xlT8S4Xy~erkW7!iMY$z(4##UQF
zN`%41{lz&+#grq&(PdGORoxti_2oy;^L^)B%l}|51rkS-bM=ycXoNFhYnXD3Tregy
z4Y2nYAaRN^#T_g4Zf&ZbMCAN48{OT=GbPZ$=|Wh;q$B3kip5NWS3=s`FD+YSJV}%b
zmWV5RKUkZq8J}^<43XX1kgZ~u`DT5fJgvT*7(FbDdg`(Y=hr~xgNH>CxHqOA*4HvR
zsrn0>YOP5AzcmcnhRschTr@^KvhmZE(!pSnFsRwueR$FhC{@TmB%!+!5EM9e>f-%S
z*`{4`z@j^p*8F0?Z%6hm5%;%9=5T5g#5d}`h%GiTRNx|f?Y`7XkSl>mgwJc{4Lj_g
z+bM3-iBMFWoVc19j~g!Jb80o?wGmV>pB}r)WCQlbqxFSQhmVX|Xaqo%<T&>8SM#YE
z?WKELFkODaWjYQS*jM;?*+ag|-Gj9REyBZ&B;^INxlf^uU>I!+s%hQY=?aGDN=|0v
z9js@RB4LmRjHx(P^ONVgr=pu_Ns3Lvl00C4NHw?ona<_(GS~mS<JwKFlZLEnPD8dH
zWJ;D%T>w4{#Vwo<P|ppX)oPG<+kcAooM@O!*L%u~Z;M-H&7|>Ns)vPQ^D&|v?`04P
zyAA)e_Di>VWE{o&B$Yt^a#3xmRNZt91N+itE*<3c69*L+DOOhK?2GAVEKMkT7Kg>G
znq||3EnG^7<ry;DTPWoSMq8~wO6HBxJ^ZaPX<Q5w8jvP1X3Lz#v6Jdl{I>lVQj;UA
z?^A$P%_$sw@L4CeBYQc_LrAi{i&#M-c>gAvo%M;>L|<?be@9yPHy8gAIL|L^jQ(2~
zk3*mvggrGS0&^#IT{Xu<u%V4EdZ|cw-(z%63#xvMCvC~|g=0#;fqsZ|`cc$2<)|#8
zsm>E;GDAMf-Hr;PSZ?EW9X1dG9T}@xVZ#{nXiAdv-m?iBEdTXtU)k(0LYaJ)OHO8$
z{u6Cs`;<R5nkIY69<H}kZaE*u&LYQ-q?&|-XU-)c#I6E5PudXXT{zn}-MDf^s#q^S
z>|-GKi7*2DdS$AqlSDK%H9D^F&@rN|P>t`5R0i(Y<<25jYHsL)k^juslg*tNotT>2
z^B2>ygM0W1zP9G`+jZ0DRY~vzdkKEBC<KGIT)z~)!nH+0pumd877xmmz<=o_=cypK
zyx(2a$UOtz>X(z}hkiHMRij4O(SB%3Q4-s0{1FmJI9X<XF$dR3X+bFt!}bGBw7T!Y
zX4qJ|T&lQFG#q$PlXeqkw_N1UC?y_l>3=Z`^h{&c#YdH0e_1yJ*MGtqrNOuI;9*SF
zDPBBT4an-l5FuZXXI?pd2LK{@y@ofMV&))g<cxp!P?p0#yeoUW7D`N7Ap|k5Yr7#8
z+GFGuaIOD^d6RCx@e1^tmF$g0hk^7&LR9Qc&YBMg2*oGLj;#1p!aTlSj36@O4A)7g
zP%+)+=oaxc>+{qNYg(bfiq*-<uj`Id;69$W(X?KCFma;g4)fa(uxF8Xc7kZDvt8Qd
zHIeG=XAt^Z9LIFNvlUhg2Lw=D`gEr-$hNz!9$msf$6Wp%Mu1N%kS2DvvYtS~j!7er
z8Gkc)@bS73=Kd-rQ!jlAc{HdwO*1iFzPLs6$&sb4f;8=PPR{Nu|M@;F7IP;$jR#YG
z3H3D?p~v)rpax<p@pq7NYr{eeygJSAhf@lAvI_p&%xr1^_S7D=AQK_lGUFs&<?U@g
zL-oTk|L$S!VNHg<kTa(gQPBymUnK~Y#|uUHmR=yIc2Bzf{<N3jsA4XAFmVyx&?5gC
zwn$9I@ybHvC0`;lCAnI5#<s#^B3KXFcLdna_Ph<{eeU`}q5pFYR~YL<z}$07RnyW*
z$kNo&Sdv<^S7vkWK#jm)Ey(4PI#zFX=n$~-hs41B{yUp`-IXo>T3QY;LpFS~TG2$j
zR$p!}Cm5mz$r&Tkj#k|4COxKL{H4BtP3Mf1`GV~+1MB$x&GQ3$j?V}2f5R^Kc-?dH
zYUCzr5+@VSPXXx_({_@uOH>&8kW@jG_OGZcg%G#SPbJ^K1T+LIwl?nGEX`@)(?$90
z<KN-JQ*En>#fUh0|LElwzuGWcl(Ea{Tm&wjZm#n~jijpfLDLiXR0Pf`$F{GTkK)$^
zaNg@P{^)F2?>?dhKJ11D<0a+OGAstpFr`%63Q;3DFOi^t$P7It6-P+!?H~-w8A$+A
z2@Jb3z$z50WITc%Wz2w_?$f|%9;2OIvq$3?0PDr$bX6Ud0&kbGEQqwFrHrvgwA}>j
zp@eppe~VtY3x8Q74hJwT{3|)xLQ<1q+5Uo)p4OH{J(3D^f$yN%x}wXxOj%DZy(V3K
z)EU%as%+DPy4t1=zw91iZa?>AyQNc*6}l(`f7Y!8*Vs1qI9(DVTO_|VmV-NHBT?gN
zmQwwholcDv+*zYXaY*;-PB*N6I8Ad#9V6UXegqkBE~9_RX!dp@&B}%I@f+kmWDD}7
zx^A>0>B!vv3nh_mrcgw5nPMYlF(kng_^fO=B{Y<u4RtocIxhPGPV^tF^F)ofzW)cV
z^Zl0n%eVvbSf=S_&du$J>gC%9x!zDZ;HE5H5;UGU*P#$-N;!qR5Lvl{(E+KTQ7RdN
z4C0TKeF<Xe?#jnZ)SA7X-{~g7S}twj6@WWR&1Ul-dYmN_t34DdEUlp_54tBl9Lv2}
z-->Mmt^$NN-5R8w=R(zJEPS@P=~bIL0hdHERHnChFTr~P7UI?;g22c7s?FBOewmmi
zzqbVK@0b+y)Z!Q1Ak@R*2qe&wXhw*s0TyfFN9ri_u!POFytN@h!R)B(J}TAl_xzG2
z{RVLBSn!lk005P@A>a-G;6XqB6#&9U^e8v-nC!&!6I7Zf1g?2;1^r-%lU~V-91MGi
zijaG-Cf<_r;e)_`ZExbeo5Rjy=`nk8d{afb2ykU=i!K@6b>NlvGJw3wS{~l_r>Lgp
zZtpu$6By8Dd5U^qZPJ{tZIL9JZ0Im0dOb!@<~7nP4iLpqd`!9%NeL2zM+<4Q%>59W
z;oaO=;aC_e7|W+{RGg5l6)g;la0>~xwW^kEUYbp52l=DRR$Jk4tSYnYpnUr`=<gyf
zDm%ni^j0^+OCd=B1rANP9u-Qdf$0z`mt3{cnL_I%=U1aTKgG)9VXUmNU)Y=a&Rqz;
z3#cp)cN42cFJe%9({d-Qxl?r5zgX!YXZW(PywZUM-TD$aNPGL`8m6dId2zPqF)E)Y
zt$splSd%(-ffWxj$b2Y!pNrn|;2R=D%DLl@@>5{HgDb~ED_yd9^d)Yr0D1<f4{ELj
z)2TqggOia?9r=v;d`pORE(_v5!UsQlvn`BV4+|-C1{(MBG39RvY_%gp6S$j~S-ZJ9
z!o)&HI03b1nPdrZu;9!jWZ;}$n8XNUX>)q@XF6Ns09(IXadK>zTEO4U#~a;L^(1K)
zCKc^+7P;Bh7)mVOB?qeK0hDKOp)|$J!{&<ve1k;(EFH9*pHqgm*0K!$o`;0YYhIpc
zMKL|Y@Gm6#)oOx9g=d62{EW!`OXdcoKY*n{_p}Iz`u7h6J0`3NX&decL!%g7L|J&H
zmvSYEFQ1k;)aVRB9Y9BY{VN8w?I(@!uWbW`Peku%&a9C4T1p&1AU?OGGD?b<!;tq@
zb_p`Q=YpoefEmp3D5eu{k0iL-(=^?6`(hT#6N1u87*@YzgoP3)%Y1(!bd<cd*ZAWZ
zJHx<l8|dSz`0`^q02*l6G!@;6Lk?G&By--#$RmoFQn!>%Jje0E5X1%P(q5-|0NBp;
ziUJ`~20-zqQVd|h|DJl1yT1*>9k5k{u{MSDPp(Pzjnz2+jU<mGdJhkO*yjm&!}GH{
zFbz9}9f2BH@~S0PrPu&JK)}Cq;TUV7R@-4F9B|iA@f(XK<W5ZaZHN3!KlDV7=P~~n
zY4|S8CYqUIlCDE1|J$#-BhF&Zit+5ra7EjicnqM*aR`5f#$Z)>oS<wKNwigJ<o7KH
z!->V(Sn(;mX&a8_ElHyHgX!|VB63eBJ$;NHe8np70O()knSfDd{AC9_ubyJ{==pQf
z<=w|6D5sTa*D;G(#qV=C{<4R{+d+To*uh2OX!VBqs!T*QCd=nmQ;87EM3SLby1$wR
zg^Oha9lbYxqCYj$*OSAO9`D9|XTE2+t42MtDSeVye~Tz!=UDE7zkqqOfxas-vm|{h
zPR5$os*F}oF`YpdR!^U$#~;>wT*)AhTHrg*STKwb9bx%`4k%?r9+CFW>4XTr98Arv
zf^+_JXFsB}n@0O?RFsvPFVb4yVi)`h#NSiud7Z}}Oi`!Xu#QH1`8xkzjcJz*|GhUx
zfU2<aUfz65{0r5a&VUBk=(@+Bw3&0`%;S5!83ON%+&^$Jj_L4NYEtL+6WKqOr{Qm<
zO03u14C$k+ob{MUf05Swy0&>EIe5m6>H86<I6Mnr&}*a~duxjoubHp6&24c*%PyiP
z`}w%xt<=?4Rz$c$`QSXX@#Y&wS8)R$V5Q3vR966Rdmn=NOPJSpZM{?&n~<-300^z1
z-oB|r?VvR&_cwe1mXBEIMo&m&z$BmbM|LmrJ~<=2Z4X48T`G}l3{^v4LE9QQPadC)
z;<z7SQ?m4NV+#9Q;J7I%ME*lOQJZ!vX2In4pR9VEQyq`tuzuRQjc!|QVH%UpsW<tF
zdYD-MZE=Z4r}j1a3Oqy_PPc5HcXRs!39~@{(V`07l7^>tKDb@^X2Aq7a!9;BBT#_p
z&a}gP5fxL-TB#GqYM4I!u10raYhdu9<DQ^!Az$s!+?XH(?HkC16K&>A#e0OO$+(t0
z58Sg!+lRQwQtM?sK!nZR{c8P1h*U@)AQe__G9p7GtO_d|Z3%9+Ju)_YCn9T`LcH<F
zvNpWAY_&I1;Oh(G<fC|)x5<qZGe)J^NW0Ix{e2seSaO_tfW<ae?Bd4i6Bw;{P$pi9
z`08jo-{J4=0&=-h;Enbg)rNnh@5Ok_F2rk6Uy~)E_#4PA+x|crp;(K_ZC;?Txbz5K
zcDQbKdYBw{<pa~X-^C!btf45S0974S#?BH=%1@GHCYh#!$d%Hj#wGo8>X;d&!Sc!T
zNYp9D7r4}_^R~1{MD02@Hpn32Ewyb~Ueu0*-oHE<f;pb+0`?;+ybTpE#WD-I491$Q
zOo0I}>`V{nu7{@=^pU~sprNgA$YDVc&p(ae7&!hRbJP5}_aU(r+-2(Maqadb>x{$-
zuKGdba-L`L`nX%|9_75FlYt_-*fvrjdIgs|XqQjUpyA}O-aG$YD!n(wvULYBhebY(
zeo&UH2mvO3-k&^MIEqA`q@3ak9uf_&tc0Q(cmpuqPX@vf9lIF1)4p;P>V}PzoTM$P
zy@Qy#SO%6Dx{HH!D`UG5F)GNHl-#s7CF#LQfp!9d+FD;yk^mUuFtT~$*befnW{^<Y
zTwEv;J7dy=j@5PG*-h-em&KfcykK%eN7F`GR{WUqW-Eda@Kkn3+@}v{ieC^nUhcvP
z*O7C_&ujl)SI(?xD)|2jCXe&0#GYzZ{TquqbBGCf<g6QY4^e~B)wc3-a?4lLpgN*p
zy7$R@eBo)=?FCU!7a*-8L<XT&J-67wn(t?>8;&_t$zD~fNSBVJsWx&p|G%*QQIngJ
z$BqvZR~V|JF+Jjc1fZx^q(St~Svb+27PcJNC@&d`S3QWkdro2fp=9RA)u=1jV{A($
zSxjTE=12rBEy)cDA@|+P?yin!p#dPXZ4tS-j&qmo#3IySaKDq~llm`7n^-WSc&+n=
ze$FRzrmGE{R{$u4-$5Ly;hR5U_=se1we9|&NvCChB_8GLOVv{NA(&iZ?z#*G7eR0?
zrM;-6D~b4xz`kojYhQ&U0%g3|W$k|1AT*dNk8^uqF?!lJhe`0*fE=vT&)E)&63@cd
zkR}loVsBkw4H3wBDCI0g3*4aBvA`nP+JNF(xmX$_+moI289fB{0}R_T8dVu{Q+&}9
z1*`M4B~1_!p$H$;D1Ca-;>YmH2Ez{o=Q)nNNJZld<Aq3sW&WVq<s6RkwL-2M|6*M<
zQVLT?kQMcnU?uD!*KOQ@x;@!I9t5JPz8(_EcM5rW|3JvokV>t$gOJ~H{NWWsjc=L!
z*c%Y-LvCXx>u|`|Gnz=m{>D12bS~yS+!6*=m|o6k;d807Sx{RRQCDr@B}2Ouw&Lv*
zg;TW44UW!B!p4}L+Hzh=sD|z#kn?z+Rw`-c;#_p-|MCN9)cR$cE$5sTSONy}KC>d!
z@_H0T;k)^DMmIQR29<5d3qLIKLM7r`)QOHz=!d{sLN)MBe};NqgBi;kkxbHZH@(;&
zRDl7`88MEh>70=JQS=skH)WCAR8pFC4WB%m0c$Kfi<=HmRB<f5J=qoocKV5_K8khg
z?CPyvLRhE#TkYdR<Ge@~R@D!9{yx7Dzv?N+5vBaJ9%X|?0Abs451BLC74eD7AZYKP
zNsqXqI>n>T*0!E%t?9}s;X>swjpXzG<e@jZSAeEertcE_eSNnibf%HGoyH(nI&355
zJM2J=(L8Jw|J4%Mb)){)*pqU~%}mg!x{a6<<bS8N831tNud3$|yZ4}NS*?sao1+{z
zonXUpPAp987qmeO_VLZ-52As}nld$edMUc{wPzj+o$WAX&&@CLISaM-EfznvA8mUW
zFG*iOS?NQj1J0Eb!A?#SmEH)Op&p3{rJme1(Zz5^;Hs@_SNCpNttrgF2hFqInd)Kt
zj5hBE14J}Tjc;cK-aWJ!$KCI;-DI`?ckpy>pXHCnv3A27GAFxjNVp!xlztHl4s5!5
zRqynd^l7x&4hLG?LJ5A5k?dm_;G_d*?0_Wq($cXsT?;6#1<g&ISsrHB_+{sMtu-T2
zg7M_yWW&Wr4thI&1f;=8tMyBjh)Ae-=}VAb)L765RYnzro<oY!gyFZQ0Y)3@iWzEx
zc2*1=foX{x86+EveA|klNTI%yxAp=WfTNEK%A>|qK5(tt$t})h(Xlsb7j%H&6+ghB
zEYcW7(FS&n)9rwtfnUh@*2t7}<w^fY;MGA(D1k&zPUymoRJT>7NCu0KY?(yA`-#vm
z4AzQKk7X`DA<(bHjtFP9L%M8YTu9Tn<Vg;J99Mu1r%?T*JH<OZY{Pp`(<1tqJ5%hZ
zyr_6h3i?v1N){ws@00nV+uwFc==^FF9cVwoq&x-}G4;t)6)tDrQubHs9a;9Rvf$JQ
zdkS%M^lh`g-<~L;gaecro^v$lDHzpd1-LdWEJSR7#4{*76ryI*{;feqRGNzul*YY-
zaSGvdJ!gX|m14HriUKQ9#`BvF)}p{k$wd_Pn1bWg*>+_XDr{-CDhTZ%RIVzMnNavQ
zps93meFHfq8V?*Vw^AXm9T{oERVToh+SVHMlf6yF#&aTZh54ygxt-Gq<^jU`3FvKc
zDWf|X%IFi+y!HmWvQXJ3BQNbas>+Lt4CeMcF1|FHM3;mo(Qlii0$^0=G)?!J_m3*~
z4J5*i<L|ogJDT?OuU!(P16SGZq(OaBjdnb(r6zdpdL3<3D*;>+a`pUgbN~9J4Mru}
z_gfG|qwI9KT1lE(rfji`-10}EA)I0JzpYO~jvuW23~wv+;RFN7wR%o=R@g-jOgbZB
zs@lG^#Ze8<sY_4Yv9~GL23TU+4x(GAH&wAKj;|R{cye3(Jv$jtha%I22T(3ReW+b#
zYbll-^c6b|1PrJbUc4{!pyA?Pu3nNURz8lu(Yd?y`KM0B){-`Csun&@uQ+3L0c$dO
zPex7G|7gTrf7B}v>&I3e$g%v?!e8uuGdBbKRy%#|DVzKool8g$ixDruiW*nvQks>A
zL&%C+a!c=(UYdCO^K(S`Gbto1_;Q)|%wk<7dS0DJ5B+h2CUn(f9+=94{S1?;3MhU-
z({Y()y>jbAxrQXTsN@sF5QOY)HAN-Ayzsok85H--J;-_>fK-aKf}&1JhF5NS%F|{4
z8Ns7xQHn0N%X>#wZ-KydMVUiknkm$*sh(;)J{LT$^&|^ap4+hb_C^?9p)ioE@KjVm
zxs_asu!?rd65zh2sx#7Ep~I_EWZsdQQ39+jcO7}jblQ|v^m>n|CZGe<!bxKt*8tpv
zDB7+nwBId6+0#}$n}Fuloa!z#tiPqesbx4Z6~(++r(VKT=*VfY&>#$~SxT=t{%OiX
zfdv&Jq7IP*Q?+=CD$hYl;Y{?NpZZ6q_uHI@raAIg03sBiB8WCP#CW6_myuj-Ok3&=
z-nbTe`G?I??|GCvHEtXLgW=|{zmh%bM_!I6oB|+OX;k5Kk)PSYN?bt@vw=Br0mDDO
zbirZ-HYv0(oHSbgJMQKYfxJtJ(^>0|?pM})Ka>Z;eT8$IOgVa2nGX>Moyj+U;IL;*
znBB=Mo}S81gXG4Hu4Y^Xd!x4*I>eLG{{r%(-y#`vC8k_$LjJ9}jc4k0F{g)EH^|D4
z+4%5x7hXVz7IIhM%U+EBGY6dEJoJO71fJ}lZ-dK-yXbcMh`Ka2K$-|-YUa29Cax7B
za_g;=kr12nRf73sMX-Uv+tInRQnAo-`MvQe_F5{ppg=(jyDCp=o(QYzur~BwO34bz
z9$(%oEeUd|9a!pwz5DED#8J+6nS&-dLNsmocn*bmCoU3D>2$&lh7O4(JoK~4(S4;-
zP}L}ZOk3I+8`UOhVtpnU{`IWu1(YPFGnfE8K|0mDTLk*@qE$Kg)}lH5bVHvq9V?VF
zx=p>=BdKDF>v9p_nqucVd<KUq%zSI7Sea98Ha5bHsRU%KP^=XH$#aDW&xzR$y5-tG
zKeXl;Y~Xk4TywF=Ml+M@8J<?3$p~o2fHhT-br>v`ji}{q9UTGU6{ftPNAu@w(+V6%
z6g=$$bA%L)r5^vepwOB+L<vc;R-K^eW-K&Tm0ics=1}dyP(yrY<M6M0G{=0flCalj
z3(iiM@6RlE6}4i);yruZJp=q$Jv=Pq_IBX|Cr^OG5r`*=cxPoU8gp!(kHjC{kPQ5;
zHR+go89-l6?E^EYcxPK>v$ll8OW@}Nm<uAd*&g}}D(SJ|C5dC{*AU0lBShBUCGy&2
z6rFkBy=`&nLypMel8Mm44Ajwi@!Ag3)w~V%#^dW@GA4ed?5IRI)H2)2pEnv@l$&?M
z!t#FNXl02v8S$G+67O~vA?!f!gR-j3pP6;#k%N3~T(@i}AzeY=jbtbL{5)1un1xMu
z((+~LB~R(^rYz}v8x_pg?WdymS+*rC>H0+fvlw9**vmmm+a7fUY@Snwh`F7X(Pn{k
zPI=ut0r8zJmaiHj4o&!lnId_0RvWVKBYt8NBXkQ`w4}t6U70AOsXG=qXQ-p-3TVif
ztoX<xy4U?o?Fkzs;yP>ESRcV+U=q%0-;vvEfYTaj@(3>M@FRBFw6yd4BtgwVvP-zF
zz?McNxyb)cFDtS&mY0FEBRl^1=~+IdO|5$bYrB`Wo`2f%cfSb{YJd|xKhTL8;hv3l
z*czn=zo*?2&4<f~>WsSGv_HX9;92=FW8`2K1-?*trKE24w^(7C*;5aaACTZ9AEsBa
z&-_GW`*W;p_;9&o>%$>#WmDR<6+sd9Rbmt$X#B~u`Rl1Yu=*E=Gb7dwz=4QXto}n`
z^(etLY<&u(>R`K57OBvknTOR8Tt?soKy5wS13#un-vqAIZ2($IffpsHgSV#K&Jh==
zNYke)vG7Ej<N&Kd3z<5K{>JVq+N<xvlnfF0eHBpa>Cnn&ur6YC4^cRc$N&@)tXO1X
zl5BJ;meECF?YMRN{aN|`1m5qkk`}ltZbj)Vx?jpjnVPq}vN^N%f%;H<4fW*{siyN{
zA#Lu?z^UV5+*0EfaGgYZkFNeeBL)@hz71A2vo+6KCi@M~nI1rYbXgzXI8K6glmcn3
z#-JH?HVU!;f-4(Avd>+-thf$2r?Ctm(3|Q92)2f65?IAE&y(bm2Zd5-3lxV9P`7k0
zmrkJzXf8XqO^f>@PV(CkpNQa{;OsUI09DF$KA?BazN!O(8U5j~6zNM}R93e~1XMM2
zrm2p2bp!W=%N*WFrp<H|tehFcv&M|677BlYFxtp@xD5>;D1rfg!vEeBfO124;?OR|
zcasg<t(F;SBO+%Zia2DHaJC|5DC63rUTLA4q4-9JnIe>64k82&ciajzrr{9-v;)d-
zm$yC2r7xmE--JK^+<f8DjDRta4OKiZ-?yGhQEjS#>u`ys*f}tX*+pm1M=BzuI+9xp
zV1*>Kn?_%)aOeIHv8AuD34#5){jBX6M({n}y1m){4n7M>4zi9qY%LGG%#f5+Cy*@1
zQL?jGwaaoMZe{~JJ6){M+eGEoHMJaCnrBz53OiC$dVT_|Im*zXq(d)AT5K+3p-(O+
zX3a%9({p#)vJ+6>-hCO7mq(o2qq6q-<TruTpMsZ6FS)Fc*waa}Of;$#<gVB4X5i`*
zfW%6H_-?Y-`^1n(!;!26<gBPMyv}XgDe#YumI?hn$Ka~w4%vt+EY=~C*c6gUJUAV@
z_dF0;*l&QDhl}8QUv&?mXln}i40@Lpq6KF_tbZXrwzYU#l^{VC*dr^aB!w}q7%bV(
zKwe#o3%@CI%l9Q*jEW1@cc8UtjlCkIX(!#`s1Sks@Q8u&KyfI}*p7$9(7IfYiPBd7
z%_G8UU?(YSJ(Jrge|1_59bkMV%#0Fwax>I+69gW#Ev&-IZ<O+37s&}ykn|S#h-{d`
zaoIIxcnMG_gx5$$0^68Xqms~{%8pQLEA*2qE54funDkg)#`y|=sA{{okw@yU%US7I
zO-LcJEWp8X=hduU0$!4?-o+szh*(32NCk7>8?EDk;((LI%FS*tM0QK7&XQ?-tu=Od
zEbjrASFqjs;HxkW$1a_#E4NgdRqk-0MIA)jT<Zg~bGyhyRvjzA3-Ow{e=3l)FHLz+
zJfyj0kUM}hmep_<-=IcM6QFgI)E-i#D0}W64UJ`cdiqj2?%XVT9Ehjfl?oGH6h0Cz
z8~xiO4pTgW+s>q$W%Aio!#QXoqDGPa^nMChoYjr-&ItGwvM4p-0v!OWF(UTxfIapW
zxXZd5#Z=B!E8Fn~Ato?1V*(C@j*p%+i*Jg<NUqyF^g2~2gp4=yTL|S>zEY<`h}_l^
zh~Ilu-i}S45_xwLby-Hp%uc`{hx1GvsSNRbq3mkx1-xugM{Eklcfd>K+Nrh)F=SN+
z$9GDkC_+LQvYu*c^rEwDr3Dc(EK}9^NdvwN#(G`F74}f1XqZG;KqiDl=wL%W^342H
zK)x@^NagirI?JyR4UAb@-GI7rJ90<tXd_@>or!hYJ6Jso2>>H!w*Wflgv^Y>Z5=t@
za0D@e(_>{TlRPh7Z`j>nmf}6mhb@R@Lu-lm8b6@etL&0<@CLI61rz;A&@FsZ9%T!Z
zvs>L47{||q%<R$oX2cFVtl<1Ng8kC9)Dj-LiSRP#&@P32Ikb3LY9_N>fYblFtGDf%
zmy<`?0&0+Sc~)?leI0eI+f(1rxbs5ou6L^>UvHkfmA{DwR+|DB(Q4;;0__95q+#L!
z`6(+{IovP<zf2e9@6%DzY9uwL^iKH7)!5r>VdeqZ{}x$^x}R1K&y@&^5pap&#zgfB
zJO9{5sh<<;*S_6^wg8Ca54DwggITZf?*o7!EJUVEIfaKmuA#=>!%LuO5;-Ilb15GK
z-`P0gcEjG^KtY_e?2md7XTi>ZH$Jvc|BwG~Q5LmNpRt^9zdlG&lvmW!({HKa;R1EE
zr1_i7yH3usg;2c!G*^wqr;&hq{WmYyl}O2*%f<OyzeJkubjzTN4JE@!haaM^>)&6v
z)los~exjTT6xL{gjKVd0hEXw&Z*>3bFJ+{0cyicB)_)#MJmHV)=#lokH;bb2${>ij
zO;hNzw3BB2Q+8`{&os_0K#n!^N?k7<qTZJBQcnvb=zYDa{n#rZzft;nTj4VCo5MYN
zE1bdDmppORcfFQYxR<~&Rfy$+pA;w)tyDR8@DmJrPin|6_Bctv?NJVYwV<asaqM>k
zC@K&8yxqq-A1pe`fK1tA@ecc>PYR;4@6RP8gWb`{F5j|<#N{5LJ)3<9;M|X7Q$pTC
zCIq{%Ew^QPsbcdk@d1!9Bl9X#Ot3vd2mbKvdFh+dy;Zd6W-jr;r<XTOqkqc34?@;+
zBBO=TWZ1ckUd~cbH5dlasEoZ~|9y!Hq6OWYm@y&W%t$_y8k#*m2}|0llDr9ey8}Ni
z@6}kj58{topl=r<SZ~x3Dqpe>8sFrFGIsDAvMXY_WPx(Jr4BOH`R6pwugYT0wtZ+=
zzp_*a%zkC8l6C$@TMAU*V7!h&8O4SPAx<qoE~jq5?Aq+0xmc#EFn&-geQi)gDlq<)
zu%JN0*|BZ!ZeId1vHt7ig)@#m7gE`^3Jok0qn4KOnpL@p9_uDWiZ@$6{nO2(&B#Rs
zBLO`G661n0AUBeqWi@fa6T9itk#242JlxWBgzsV(h?BJEX#7^`>HkL>AT|^^ZxtGw
zYRYDpWw#=!np<MIs{qwW=cn40FnvUay_s6FkDPJIcW<O#hrHuBZI%&@r9XKyk`%qV
zNNWQiwDwh@49PG(ylJi)I|GBE9FwZnMxx5S1yl@}7dbgGpd}GQr8*|wBwQC+QYkz2
zh{YzePA?VYj#wROI7`wr`jOag8dN%+dV?2I_hdRMWH@-^E1<JWA{72YpU85G&H9F!
zEqyt}+EI(KY&kZJrW@khRQ!)~j0b^wkThPh(rCf@29-LaCh6o*p&@A^ozPX>SqQCo
z18SXw6FsW{6fZ!;&!lta$+W>M6sBmidn-*=j3l@FH`N2XXaEFLcUUwFA3Cs+F9du!
zKk{r0wQAh7P?FtWw0&w}pbtZk(RZThaTZ*gR|<^2IJvNsO-^W46vGS)zlqu#aSa;&
zpt!j&T(&1!LCbPjD^7e2pdlbiHbzupa>_m0a*;<FlMcG+I)hp>pf2H|{18Nw2Pq@N
zsVP>}s$AM(xT=)pc3K_rhp+S|Fx3p9QfrZ^zL|u)*|PiDmzZ+4Nn$N4yvMgQa%Q%`
zB;7Rq%-Ul5UcJ_(ugzB;5Lmgu81=BPzk_iZ^H+wUui_ZEus03yI4yJI%s`v8oxH&G
zCq8z;s~{TI>zb0JMa8(k%4n3flF*Fuh|x2HA?A2ev%_9qDo{#e`aH}bU{OOjywge%
zoT(OVq(N)-Yg~L;U4A!$$Z$nt;FjVnC@|#K?q=PTK&eu<je?@b<cDLaor2uHx(Z`S
zEgTPG$N52nC1$h>jL2|en7kYw+rs2-ibVGGgE7G^7D|Blr`x1ZI-fbT|8<jry2y2e
zSszmYIdScSyc_SoN=WpE9gMMOz$2e^v+K7wck<Wk5^fc-?BuR^`ad_kruOs?)6N|8
zDFQPQ6lcuVwpv&6&<qHQo5=yFV{k5}4J+Tp8?T?c)?NSzc0XIHE><oJA<i_s3Fg_G
zIVXVc+HGztlG|aQ@zTh6K2P!CjSHu_OWuEdJlK5XNGC44K}K#Udgwh!FH>meO{_{m
z{hkFOZAbs#asXU<5k=vwmILDdw)Kyx3S8y+0_o2AhF6O3M{P-+1aH{S`b&pxzl`jr
z?rGT`v)ABmirIZ;A>oX9$}dWq`Y4B@B)yI(V{;VDA_ME}oD*4WrM#Z`mR6+?g9>UR
zF!g^WP653n+4S^xM>{Kt9hWdH6&+vT?NF)lFgAx@7P|MvugDn7s)v#f{e_gi?C#5`
zEkt{wz<mN-ZrxO6VKP@uMRvNRjOGZx#qsKW1A;8C)bS_&ae*ROiF*RH+@^H=B~8)D
z48ylXh)2f16lP2rP!#Wvmq$Yn;5IuTtWGmML`rOB6}Y*3bZWk8`_V{bP(Lp5jsylT
z<FBe{G)N)F{AO|F2m24;&Az-hu0R(%YBk@u*APCh-lJ4&IGgm|3x8C|km}!A{*3Ai
za^}$ldK|}MGF!k91;nyXZWwKYVx@!ECDG<9W01TE=IlN$2vXm9|LD-T^<B07g+ImO
z+lve7iWG}Q7|(}Tn4zE*{NGqZMYR07hWS9`xebor9Ctc<w?7O(7n+NGp!#LTL>m<-
z<O{n*Dqzkq66IE-Rd2pJp?l%K)D-ZNKe`DGE=jYh_@)b8RBwMwjUt|DR}kP)Y1r@7
zY<|NqIHdf0N|<LSnV})}(OWW_a9hnzMe1YEXFteVSr8a9mHl)^0{~Ii)BGs%5+DFU
zWK1i<$FKPx<g3xpMF(DOg9Oo<CL=;&5QJ3kl$1*SKI_;+=(scHP*pp<=xiET0Ms)o
zDsptpSQT2VFwp?5<{DA_!?o`~-sgQTE!}cT*Kw4Or$X-C;d_e)1xiV9JQ%n!4{_%x
z3$1;|BwS3c0e#c@KRNRQnLxv6UbH)G3@y4%rp0~JCuE-S{!KnRV)c`1<#rI^<JbJh
z3PSZZ18MYOTOkroHY;WpygMR*Yg$Cu&xGu^{&uC}KQ=m*a{?WiN_yJkBU0mtnAaM)
zj^y)msd*NAft}O_i0K_ELtwO#a_V{I@I43K0^DEAPFJPF7(Gj+aJr?8w3kR2?jlLJ
zVLUp~5*33PSg8xA*+Bmuu6h*6o8EF}vkTVRVtqTcITzHpLK|7XQ2lCS+%vUG7*FzP
ztRSq+(QMxEM#@(~cC7<;oGoCIo3uxgA}*eoDYtsm18|*(g*DsQ3JJyZ;%oE{oZV-B
z=b}TWZ{%z6A4>lehj$puUH$Ynb6xYpv4~A>kXA{DTnAlxI^;jE`HJE4b4dOjO5h2U
zvE4~Swq}X3@$W+?(gMNoPqW5M;bi|#LcF9FARqDw4_?w$W$X89ox%WKqP|LI62>HC
zQmKxu<*Gt<j3)Lm5h0pj-oWVdXl9iPFDLohjtN$<T1iKc?=vi0la78&X8e*%Em)lo
zV|l*jyqmJ@6v-PgFmfKxEaLyYZ7@T9iWrAeBnSx<uto&x!T=xDCkGGlMd2;kshRn;
z%00)(A~SyGyEgd|k}V=|;Hm?9uD=-NU%n;_@z#3Q4KBuf{a+42t2aoB4{mcZBui(v
z_W}~WFUEB;0?t*_a}MT`Sh0?WSKP4;Cy^f@Fzg1te2wELs#{;pcZ{7dGtn%k(8ycH
zLgQ!E_ZB5nx&_q7JcVesppGP18phQoKUJ8>{=?N*kruxIbqWq^QfF#jak({ulqr<D
zQ83)8e*J6We*RU&lU<U9m<WY}VP?x1Als(4^DI6v{6L%5z6Ngd7%P3u^|wopEEovz
zd_K5zZrtdU4xnq=H+NMn+AZLcoL3`d;is5tkcU7YR>t?9g=qsPumz_xJAcd|H)4;M
zLb^%>X|{7&!Gy75E&s@zs;zCflaYiuJ9fzE4ATtom2?d?zQ$}9)wP+t)KDqQfz4C&
z`AD|7HBN7DEc2q&<EIu0`&wg^bd<tWNY$^$+10g5btl*KmE2>OSRhn>B{RDZ3z?3t
z#YZ7xLu!1H&<eFp?hul&3Y%Rr23))mglex`IB`r!u-@l?znx(M*aiK?z-csQuo}tu
z8Tpt8H~COQRn{oHhLz>hVta&Yz*rB$hSF>$Oqg+~s9a&A4@``p9KM;&uYRJc>L79d
zMugyo%B3}**=|dzq84p-szBvsX8+qsWLM~}MnL8f@0P!~Pa2!IpC_58<hlzZD(e+A
zm1a_tbdkEZYD|EY%4TyUNCsu?6ZBPvwP`k_tx6y?U*(@zC{>B;@`U8-w+4bUgkO|;
z=jY4(Hh+&DxBxPZsZ0swH+yL8B){*O-7{Tgt*|mt5cKSl)v?ACMU5xE1u2MsvXRHU
z<yj<D-Z$bu5T<ca&9E_Ega^hdw~_EkX&Y*uGj53?GZTnf6Eo+Y%Yd4yTR7}3Txn*7
zCCR}}o3|M4VgXnLs9;6?dmX1VH2&Yq?E5H|#W$nU0(|zbxqZ@^SszdTQVk^lW^M)U
zHb4q*X?boA2fxLvJ$jW}nCrxX7!3LIexh55|1s0SINFjB%ubGUFL0G<AsV#?y%jv<
z5txk>hwnXZibaniC~yz^GN%6)%i$4IhFIYj6u_mwsb((3poYW=YrXF`OnsRsrO`2h
zk<WXL`I)Y0O9rducQm`MnmhrI3lwR0kGyQm^j<yrGM-yjXWu79u-JUQ4;eyD{AuZ3
zOP?oHCficH(r5k83u)$6k)m#qejT>c0uio%0`lIDQ>JnoolHTooY`8;pHK8tBaiId
z@-`bsM>UOLBD=)|gxZS+8*`xJ2qKhgQ0hdu0PfG=jdES?av6j8b6!r-pi=iMW(^on
zr=BoTEz$jFr>PQza^W<sjSy9nXig&RAu8(e*7K+<_E1V<@?lIGN#8rqxMK~<ec$pR
zMUd>gcHXXFWgwX*kKKu;?p6({<G_ZsBf9<ql>PmtW5ZkGUz>K*{l5BfymbXeqHaB<
zVVNl<0CX7KFy@??$^&0*VpJBJMjZmGnGi&2qRP?f9M0nIl*kM8%`;NWV`_O*dzb4o
z1eIDDFLoX7oNFXHQpq_gW=F{VN%p}=%33Iz(?5>Z(zUj|)bsXKfQw;$QBRsbj{v5M
zo6t2Q|D%&b)n}5YESx^rVf;<-_BA`AL|#e~*l?r$N{&a`vd^Q9aJAqqBzJ})@3eR#
z)_mYCa)gzwU3BCZ;v%dqsFNp6x)G?LkL4-8fG}ilpGPh>Guph-8s-Z$Seu-O80QS^
zpSzQBqk|{JQ47n$oa$q^;dDRXH?Gbp2{v%n$;Z#0NzMwa#?5pH)0=fYgk%xTv6>eB
zA$DTP*MUO?rHcm_Tinki(hwbiwj@qA<K3pY;|nVjy8F`nj2Iy`NojS#DT}fTc?XQX
zQ-@*6%v#qI$s_s%<GRyg{EYspyzhn6w7W47Bz>7{{seIS?M_pGJc#1(lD~1X>~6Pk
zhkJVMnh4sqK))z*{M(P^z5*)Wa+F{NbEB)Fe80g^D^}=H1x>QPcB{^pHZd?wG&wG1
zA0ZeL1chB^Nf7gSFZ3+8`>20=aq%q*u2(xOBkRBM90#rcf*3PtHp)sumXDmiVASM-
znJES$oc-Bk%u``ecrlU|%w5HFc)*2etN3E|olYlzTjy+Mw^3V9Qm(|HkL{p9DNZ;<
z+bDWj)=(~a;@k1h)(v<kUky6Si70*R(MoLmN5nBwWXNKTw<r{cKi<n%r3*&_9ZPD!
zq&`kkx{F{QD1L@(R5$29gu(2Jo{EZ$bqd3cQSM^as}cWnCIX^`+%34Y!$R4H;N4Ka
zMrf(jLp2REq&1^1DOzaRB&r0NRypSR!uc59!6(NNsm-y&0LAT2-G!$MWpj|Gg4%D$
zccKC&+v9Tiyu_bt0aeJLc5K8cs~+VaeF2+r@^ksp<%YbP)6T?K^a-yUI{%2)vsu$Y
zSNPKnmtr_eeUNP0cHK^Fmk42UomzQaGN*x!3O+8vG5SCLiNfnW^(!J5boP$5^MtDM
z@oA|`F0|39GfYsVOC^~sQUqi;a7K3EgAmz|*DIaoOS!f4D=ayl45iYuATn3*h~YJi
zu%Lb^RR|)7Fb*g01v)<hKcT@Lx6)*X)(&ChJVEL0CetQJA04wAyUXJA+R(bNbriK*
zn}bX{1D^s%y+~~)!G0qv?dn%w(vzlv!E^ZmlUaDmUw=(PkJ+4eX(Hl4Zr&CWc>(m(
zf0&vChx5KY4=&Zl8pXlR<PITU=|(bOClRKtipJJ<nn0dCzwgmRtTjW%iDmgNFqW&X
z>sfVZp}a`_SEeh6IYs@O?qvEu59*~pGt)y1duZoTok15T9riH0tcNL16x!%8?$T`$
zo<jXEyZ*Jl|FP!gDsO^w09FV`=m#~lP%Cf8E25B7NIQ$Cg2-&r`ObT86jk+rkepY4
zfb_=3)&5|?PkKQ5vD1Y*2dWua8=u1Y#)RFh^wY*<H_0qVuq0V%A!<i=`m`VEc0k8w
zkhlUz9Xk0Qyn>6k1Ceb~3`!W@$n!oIM7sOQ>Y1fFeA6JNOZajt?P}@<h3o~|!a-}i
zS&|?^A|1SZJN6gRT_9es|9fT@8WEt&HVa`yt0vaen8ayeAZ8Wwf83|r>}&(&9HSIw
z?*_Jd_;*B~J<IfrZ$iUK3;n}@gJ&H~=%by8qj7>TD>Ujs5Qf#m1zAGsDW<+}M$;Gf
z9!eG9A}7m)^9|KUEAK=Qkd|xcRL|Ov$gQuDXQ^=jv7p#HTV|bQ3<g9@t(aATUiqG$
zq9F*@qEGUv7Zy;ho4fAi>(T$fW@lWAB$J4*Wfl4C{nb6>H4fLi!|ag+dNyNg0TT)@
zXX_S47%BI?X=RUpCb=8O#RAZpgl^erERJ<)LYP9OQ?W~A)?Y2|ttj;cWL8>+fGd=$
zPkq#?VxnS5AVFO<Z3BVgelP%*hcc^oQ!ChF;F(p3`veOtkgA{%2(PguGbsakC6(P!
zdoRm&v<`%C1Ot&YLol^Zo-*Er{Lw<VxD)>kE?)7fDvBT1)F4h1mHqJvE{bxr&3WDn
zS*Ew7$m6+@vlpz@bCo6Kzb|(hIW-&hh_NNPIe9vI;db=75u}F#<MfPpoG~^;4Z4~J
z@%<Cqccj)2;kg>JMeJLeqk)4Z8SU*VU=SVG$@w$wKSa7Rjk(c0sKF7ptb2Q{TKKaA
z;FjUB+Q1YG?*ECujovFZbp~&K!&Biv+sy=jg*qNo@cU6UYXJ6thk?bq_WoxEp7WSl
z)jpmo`p&9v?I1wm$V)nsj(AmBWO_Iuk@y1~x+q6SSada6FEwvs(In^NuO8myXzHVL
zN#g&S+o_FlLucW5vQCKOl`9;G#~8q*AHrxh!e|cO8hSp3v3S^{aF_&9G(%Y-q6M$3
z6mQnhTiD7NfxKAd^V1!Tqo1ZQsXRtwaeowIsb}D1<t!CaB}_XPzB>a6BkaN3@59DV
zKP?h?4dPS0U%bS(CpPSn0E*>-K2b=gC;cI2wE$m1=?p-;x-$aMQ+VR2y5-Acgjq~Y
z_de7+7F>8JRr0t!Cp$sJg49tGM^YgIupXVA@afPT+>AA`7geke0X|Foc^Bo{y2ppI
z4n~o_kxL+y?{<%zHVk|)U+~iT)wm!Tv}mNXXJL>ay1e&>(Qv`9G_u^TLZa8;l<h2T
zpM-1r-DTqX%vf@@)iAgdH<L!q_`0V2Dpv|Hz2~4O*T)fBa7(*@0^is+R+}1WqBJfb
z6!q(h*KlH(vH<q0CR8zs>2|tnz}Bj87_9?>iduyy#uGKie8;gQ-7#i_IY5;wrULqt
zMF`(wakh)AQsKYUw)lK(W}(tiuuAVtT1BQo>L0*>EpCI3nE+56upxPJiYibIhH-M;
z+_>r_uIE8sJS%;5gbJY^?|hDK`y>eAPDT<eAVXNbTE1w}okav^`!3Oh2)};MSc6ie
zDtwo7;ltK2*u_x_bK2K`qLzdo0d$7my7if%x&cjZl_oqnXZn}?YF{|9O(<5{8gD7>
z0gI11epYHr+gufUrZ|Apwse)aizEzDXnAb&PhXJAkREmV!^`y9?JVR(KqzRqRj8%A
z>F%|<LEZ~+6apx;%-{Fm$t`G!y=gGaBLV!b8=Xk-;npP6OKCFgp)#o?M`%6gJ+Y#j
zN@q}6%<`S5A3A*GH586Llq2fy1;2PofOk%Oc5V*hFD2t{>iTvRdjz02+(ifmPaiBK
zl5+pLA2g~j>DtZK>r)QR(|(h)1qF3iycc5l@f<ELP+-*Rz!5tW>GtZMyTwZe?PvV;
zYyTYHt6lni2BX!F1$yLFnNKC5e<}fpf{)4(Wy_sx1u9V_Bdi)vA&UKKcVE2tpCrRe
zp1a2NNLA*&cR1<OhvuQagxDoHJkR6+2L!eyELaqDkv+1$GO@TfJI3AicUy=T$qL0;
zVPCeI{1zAjcn;b(1>OUPvKk8!(CzcSvde7%dc6T`-|;7RrG6_hRU9z*3@xFUW<AR(
z!xmm`X4U`PnTU~yZqjzfE^TOmViS13Q7X|D!DUR3pqOZtSW*3{WIMkK47e|%=we%+
z?aQ+BPxlbH@JM;t3hN;Cctxe9QCKQ{7)U37)#zvIDl_})=%}PiL^yOCL%%Jlrp1av
zk@67@ShTJh1FCn>yhDApu$%*aZ*Vt~p6tJ`v2jUnRKV}|aLUbsVs20t4^2cWaZ6bS
z%GZ15+s0?u)o>8U3LB^`e5Vf}z(1Ta&X|iih=Sr99SVoIHX2qHUq~wxos#m&$<wc<
z2&vwS;CoqC#SNv7rikS>J-vgsYFWG@%6KEU|1dTQLTie9a-JQTGtCc?mZwONKafP7
zBRg8E>irpJ8@4=Jg@d6U4O_=AnwEwC^oQ5?SiP3I-s=%gkm2|3eXM#z#|wG-Y1NJ+
zABM;tx9?WNm!NyO!D#Kk`lH=dvMU?uZZ1e$AfQ&;DDSlN=E@Sl@e3k&ft*4L>%)GK
zoZLP|MBpyxg#OA>y8!RchtGhxjeLUzRx~B2)VOdzb3Q@RZaQ6oeI)u;8PT4tbm}j1
z%T0&Lue)?k7Kzt22FkBCyX*ELoH97$3E!`4Q>z*ud|7c<0RRMugO~+~?oA_52jr#J
z*Is`Q_IKAg`cvUqIa>AN;Ah5C*87BcOFSO~1Z>a5;&`wWK(?k*-FqA^fd+SE;C+P(
zNG8GY;j>YK4;W|8ZUHGb{hy}5P6!6dT}Smd0c+Q1gyQrGUA5zgm`ev+eyZKS8gK-q
zqLrO3TfkLN;+&_D*@0E&Kk%LeAKd23%Fr*W-hfCq>@#Kk&$-GEL$XD3ghNtK(b;m3
z(vRVhULWsSAx@9Ttj40kvv?6OO8ia<+=1aXWBQlTnwk3QnToXJY5<p(-}NIXeGrql
zP?7YfheK*odD5fYKHeBm$BR7*h5K4_CX4^xQPxW%NP!K7s|$Kk)4xz^N<Qzsr$#!l
z2$YWN>Z@7&Bm%j`CRT&CjYFS+<bBNwl8ZpQDbW10YSWMA+~p|cJh(43?XqK7ed`vS
z5@!1<w4$Q8a;_ScQE7fc0Bj5^ju$?yM#Eo1n%k7xDO~f>u8S!{O^FLP6T=|R(Mo9A
z{cV48>oZ=emzO$U9GN@*fyk-=CIU7Bk?8^w=zVi7QQ=&+u$^jKm^7nKhFe1yIOPSM
zc^}7ZFBCAMv8KhtS=^{rg`ZdNEwSXIdYAAR2RA~f55}~`tB;zSRS1N1iKZ;jd6n34
z$_eU7w`O1KJZ$b`YVj(qALH6uKs_)GqKGbuWEJ9zXnk|P=N>7*<u?|@99N_toB0UZ
z+BSaYQi;88(lW?M2v@U6USQQ@pgFx;4DpbLu3bzuaqodV&?GDG<JTXxIWu}x7(E+n
z{g;4EJ9K4KT5n(uwW~g=`0yl)+Xs;^Z<MXO?k(SZ6jhkac(A9=k)}Hd2=_%-X5#W-
zMZe+!2xVvGyL-5C=iusO?WjM1WPFqw5W=tR@t={HI-{mhZ@hzI$Z@~HCsh&M-UZ}E
zCja{x(Gmk6O!Gq{UcJZ*sj<VSsvrT}tIE7?H0c-88+dsG=SwxT`zL4=Oj$P^3FmMS
zs^zOHq`sRf8LLbCOA~tzX7uhPp|67=2=|`BASp4s5q#$opXUtviFW0LQ^B0qCfC8)
ztO@nL`{k5q3M3chMucxYOrszDMwskx-SFuxbNz^GY5{IRu+7QeWMnvDk|OHBSPfMP
z!JaF_#0@Jgvm6EH=OH3J>VZrJ*4teeON(g8%WY)|_0<$c4Bqshj~mW0v$ho=WJk+4
zQ1g4CjLx&CKsB2t*{8aEM_a6IrFoq<25@}?R^|$<aTSY6!7=S-_oF(k>R4F6y>Ig>
zy$C^}s|fzdbP5~0V;ku^mH?tA;d4J*uF=9zODu)rPlWx;(C<4eR1oh+E(;_SIUxE;
zhjQ$Px8XaKzX62D^mn|cvZ{x$C~CGPQ&h(K(YS4a5zSt0VGwnL@OFaDM5x00Tb(B^
zSwhq>;Ovi?MYdA=la44|qkV3QR9I;{RQ*dDbY`y<*w5S{5(yi$WamLu;dB%=m#r&{
z7Gg6o;2hD|Pl1a`V8rEe(=ecQYO>madMra|kc=4Fxol&qp1Djl-l*J5L1*mVNAI_j
z0v=E{K~k)@I2#Waa!ST09`m69jJthcG;>&X8UJdsWqC%|V-c*z%t|16k_#$DZ$MD6
zJNulvDo&c_pwGA>|IX+wJe%kVM^4?d-KotdhzC1Am3Ykt@T3*63Xs+4wXc84=IN%f
zGujZ!6bs}+z62uNyoTkUH0BXgLyi_+gj;psbu$bd*cVt0Ob#({OEq@tbjunQ^f+%V
zsiePk13@Q1G?!Gvjpa^GMZM#+y>H8v>{2_cs+H9C31Vm2dK&_P74z!QKE;I9I=npH
z0^q@+tP)fRAJR_78yUC0o}21@pWs*nBX)@vGxoE6U(O-^^H*+|nZ$717cU3S$iwpB
zrNb5)Htn&7M}J7uPnN*kd>LE<)*p~hu?-Knd3K~765>N0_#i&w{_tMBu0)B#E;mD_
z{?|`T2nR>P9iXuwKF4O(o@PkCW>mE`nk#Zajf*-R!bV=BV2*XAE|AP!c#C(AHMkBY
z>hf<j6rZBboR<P}95SYxaNdf9RU*6CwFf&E5a@%$=GK)f&P8Wl?t+8<C#jc3{%UI)
z+_89@PN3Z2cNzmroxWG_LG*&8h)+#=@KT%pr{)?Msv4$sqPwfm<|Gw}opD~`4(F!w
z^mZk(kI4cu^v=9Cs9rjL?3qu`?=*Kj6Z-5kw}>`<7xCl5S)%klKn~;LXx=U6Ck*j+
z1jo{6qDf66lmRzhyHsfU@aBUFLqY-<zB%*iMl=*8|N4#J@zX~qmt)+?in1r<Z*jqg
z@DR4b?T!AFqcR*P4INsR{1RoiFm~~QW}0+(ke0jOfc469Btf(Ni9HR9+A@?GrJQG?
zoyyKFZSrJb1-%_nT6B@Mx8+a{R~AL>ZzIX*t`2UYh5AryOV+AGN>QwXZw!kXIVE|l
z(o19Pab(9TXUywATbnloUHbDoyawWKsQx?uzVDahwBiZWMfu_~E^Q$CP?aoRL|~9v
zCA>@)cNeV$^<lEf?S4od7CqSM|3xsBVz;$F!Uo0S|2cS}AIL^oyfz&-<aOuk^&c&e
zpj=rYXd8YgymBLBQQdD&3<})E1^jC5JTto*KX<K6nTl)Dc1Op};kri9Z2|RBe1H74
z^5u@Fpx#1F{A}})G0XaGl;8(htyr_%u5Rb0qkI+xaMflVzp}mk;K=&=ASb`%F5HA?
zy&LFHKNSKHsj#8pZGchil1!G{@EZP$9i?<&aDxHXQ_LQ>!Y4PXeGA0RJw?maq!N>$
zzUWGEtO=c~ZkJ4@0KQU&iVmWb@CJGPWu42(5DjxR3Hf4@73@ljx3sO=P~*7{8*#h4
zNV2S^K=aC1us~YL?whASsBSxyXs>!8+b^k<Ld(5tXtA+v$?y@QX2b_!29f2*w`b8F
ztIxx^>gJN@=SD9qctO&kwnAt`w*CMQhKjrSzkV?%L94fSCE!5}Jd%R7@cAhoNM@Oh
z()>IFo-vf744^;xA|Xn7bS3&7MMk#6_Fuw%6=Xu?q_R{;L5#{mZ&qO0w|}D0oaK(j
zO7wkH>H_xR6G4pMHluFgUk|E+d0p(Lgv0v+Sk0PhVpzY8`a0Sg7yeE-Ahz+P5zdkE
z7A5$MwHr0S6;&`XW5z$n&o#T|EV3^rBxn#CgU<-%nX<r-ti-U5&ndxoE?}t-@k_0Q
zTh8c@!MjoA%Zdi}oxkzBEol;)@u&;hh|KR&9b-U~s)-f$owpN6jwd8?p)WbUqkDDL
z!iLh-P8t&dS5BT4dwitMwo;z<9-cQ#tD&c4(w(h>;V49?g$mm+iAVB&Y6?Rs2rsA~
zun9e44H<Wqp<%3D-AEN~6Qfk2&Xn(IJk~AZW`as}d|{bmQCTW=)brN91xB<zmhFnx
zO%tcDau~>@z-3lvmT-x=)Dd4Gxq~49=f7F<SXn_(O8kE+)$vy1aFfr|PzmC>y*Uwu
zXTEo_JEuBWb1dze)}a?P(*>IBQLfK-GuQ!)!*RqJ*Y1fGTqygj&dq(ivb(p358pd_
z!D}CJB6O=SZeyJPagS*JJKM>Hp{UH2dE)V<+($041B)Ka&Ms{^98^OI923(IFZ>-z
zAo=@zvi9iZ#yLMZCa4q5kPJ(2b>11rZLK7+{JKn+^>Q)1q1s=^P!@)<CXbS}=GmE7
zj;WLQ9nivQ1kF-w#ebSVvJBxK+ysVZ6qpER5|Tcn;@x<Zq!0Gd>8}m^LB!~}(;C>6
zVR7ArTb4JJBRy%w$5tX?3jy03<v3<&CAdDJk<WSgEbphQoM+p9gLF5|%du9s2`9lU
zv(cNF#-bbw(@V;-yI(e?T$F*G;KZBNvkASh3uVmmS+rJlQ_im$hZ;4;8(WDgVKdvO
zpZF<lfC^&l<>bqAYD{kPS42uvgM>E98j1i%tP+nd0#8(9+kQ`)2jL;_>GJ=#jO3Z5
zyepTtrL4iLC&mGP*M!YTt3}+FDHf94RYD)#684fcXs5lTfO0tbhXKQ@A{Tx^JS}#`
zqISajo+#e3ul0vWdPBYGId<#4#JJO4vWAYRUPRr0F&t|k#j7sIIFwy`RZN`Lc1S@4
zbHM%$q{J_4R#7M(Sbj`b&(BQ$0J1X5?paIm)*bC}5J69&XvJH}?V@2SV?6=+S7O3h
zd^0zUhcthZ^w~wbuJ`gxYpWy(k;Lqehp%*lLl95p{pVvaXua-wS~`eIr&QnuE`u#h
zd98R|Br%mYlmDFeQ_)1gSmF@ho|bm2C@jVZZk<Kt?cf;Xt^Qa8l$$*vs!1JF?-?u9
z#t8Ug*#+^ryIGYu?^B}$-esYH_0z9FOtL7LT!F$>IsN_PUzP3jC2g_33?y-vW4hDS
zqgUm$*^Jf0*riYkvRFU-$@o|~H7m9HKA7@X4fd$ewm`5MiJtfaeswGYI{;d1s6U~9
z;vpLEr9!*+-QoOUZz3kcuY3QtK@#m<Cw*iLD_wnEzhog5h_`{_arAd4m>M?)dj2hN
zS|~6y<P@3kC2SJ_KL;S7AJGGx-S_t<uYE$1R6P%MZtU=vv4wbS+AuWwmY$6Z;CHyP
zEuxS*-2Qn=$R-M%gbC~nxI|?O^P@Rq$&5|tjPjN1H(nF}=O@PNM>zHvuVeS{2{VXE
z8KJVKs_h(JzGlou7=QY0m=dO+L{n!ZDdjnf*BJWkBm^MldSizA%Ulx<wyKPkT~s8Y
z@I+J4<C>=ST4t2k1cAU4H_g*jZ<y?{y-`PVUjnk$%+85-u6?aRCGO5sk6nKjYTf0X
z4m$%RUq*VF|8_(%am9B*MaYYR&?pw#2)l?{4_*=kAbr+<eE8{xj&PznXMXKQ5#TCk
zhE6~M-m2u6bxyd2roKhqu$%z2Ng@t;;RjypM9!1|=wCt_M_JeQd)&d3e{T=Bj|wbl
zt<1i)Y9BUE=l&tSn!fG2yk6ZTdYb@I71{2$F@f+_#~*7Y2lc&0LD8kOJ&|gH-Ug*)
z<5q+dmzpPrd;!4jtv$DW-^N8Au7R;bB9GDffQ?9gMcA&EtCtj=Y`DaN-+jzAfI;pM
zwoU?t_yjerSf6otoVg;<dkel%e#qP>+0h=7D7yVMJ5vBVK*YZT$-vUd)r*OmT&D3v
zsYl+1TbST*Rl#SuwlS(yjt28eIQJqPzGb3`WRi25P{#yP2?bQ_ugOK+1kNX7OsE(r
zMH}T}=9-e0{00<m9Ny9zXf!bb)(>S+Fkha^&C($JOHotaMZ7pz38E2>5SRW}l>J6R
z$x;nYxMqcY{lZZ$>DS!ID4r-bGVg!6V?DDLwdP5!>z0$`6CTUo%D|p`2?@f)X5(Q)
zh-U|@_QXvDsmDY>LWWbvL6EZn50==BZsf&a{AQrCF-%#Ie3a~QfXQfle|eH@WQN>&
zySWvebb~q$yibPg0X;oVnNu`uuY>A<K8Rf}(x{cC&=Qr{M_xQV!HNKLpuU4Qnz?ni
zU~;GhyACn_)2~13C-W$+Or78~DqbA<V&cKgXh|8ol-wFuG<C0G5I8i4&PEy9Vde|W
zB%+D?mw^qn1_Zs9pSx{FV6dzfe-;mFi$pJSkvOjaEkdwE+#7i=p@R}&%-Guo!XS?S
z*U;POue5A)A<Y@f=GIV$rzb@Sl%a}wiYSN7_3oR!#zXQVB(p3_OdW|ucA4cmB(sI%
zPzCMSS=aQ!g%<8he*E*V&WtVQF|svP9T)Gi&yuBT5L=->$Zfk``fXG1XSo3c<4Y;n
z{w?+er9h-vc8cLNoU_g*p@mK~T8ozyDehqQBRk?UqseLCr;`yB9L2Q9)q=^&<8npI
z9t#rC4wn+iK9}WUfk19Mk@!B;t!BTnw1jafLnL!_69_&a9Ie2umf1Yv4qo9Wb~5`(
zj`ah4b&z&^dKszJ>F#`#i+`{e?XY$HV*>e@CiUv;^pzjmY}MZijOJ5#tF@&8cu?z=
zC8L@wPjG>^RWSeQVPfit3zCZEq$nsXhtymF4}AFz2uz*2yqE_=LGsTET8uYBq%v%F
z{3*>2<YWr)ZXe=J5|~S3`=?sWh*HOkB7G9x|CZc3nff$dTfj(9O&06?ZQKzz2ASsQ
zL}d}17?X5-e*DS6z>@c6>?CV>Qg27!5?iHl0bS6T<G_cJLzM4NHYkXSFs8nl!B}o#
zg-HEA?dzI|zd_{NzTTs#a1?N+lun2elrCWFTEyO3;3{$70Qn_y7ZOzaMeBaRg5KTK
zS-x-xd3!J3A_>T*59^KSd@!+Ac@&mL6=Jk4UT*X6?JYd3kUUL`=a8~%j0x(LgHPy*
z7@GjH6!A2;UM@>vj^Tp;9F!UNh`9<VzKTAmBeVgdy>aSZS0oKP<^`|q^nbZQC_=hC
zx7bBR3GUwVpbCpT&jc_HnhSRsRo@PY_EMx3%<U8s-x3p|t}ig+XyI}+nIjVO@*Km7
zzQr!VefSwrfW+_()g~oKqmUCm{QjQBGgu7v%O+FLJpoJPvXCtV{~5WST1mW?B>w`p
z7U%8>S3vT%2ODCCTnC3vp776u11RftuB7|u`oEma8X~@&;@GMNhQcl9uAd7W`KYP3
z*hf|-VX<!`iyn|LodwR6_M8N`ea&7<84q97JH}egh}JhGzfZ5Pfk+52X06NR`#o*c
z3{CzMJv9Khwo&5Dk=-J*hT@thXB((Ix3j%)NlV3w)Wf+;Ul*k{oiQzi8M{!B*jw?C
z#!b#{7v@2~SgQ<5Rb_0USR&XUH2=t^%8Dqd*MQ1qEgNUxt7jwrys}}a+>_kuS?Rd+
zgZtX8&4n@o)Ka6#q%nyEAY9a`&GCkwSj!?~o|`=X`Et8CDSu7<ccs6lF<qaZVN$x7
zK1K6ySs?Bk7=bPQ8=Ur+LnI8EfGJes`oHP=hAxIa3tV@e62&ajr#@lKxFMubfL>XR
zE7Kz|BMZB=u2(l+YZ^oJM4gM0zL23-HCdfV%thmI?~u}5cB(wj<SY&3-{zTxdwIRV
zbI9(544(pD26%AU+znWoVY4#4rk1tTSja<2uUPrRgrpuq0<Pi_ZPX!}iRhPQp1K*!
zxLLJ=amWbDXWjXXc_i?pVw>eADN^Noxkm`5CUJhjvyVZ(Fm7wo_w>*5$SC=X7{{^G
zglPxzBrsP@n`7!3y|aHUl>q@fh?8LyfvG-L%zjGm&8K0<jrU$n>)~?@o_nL1ZugLC
zPk&MP+DcX*8AF02X3qV(6^P2G7tNR_#QK@9jRGT?dbnu5RW4O%(GL@KAWMP><Spgf
zvEXtFtf^Tgmi7nuxwO^mXt{Ah+Gtvv=Uy6>n9@~rS^id9*1~~?J#Y!H`f4ZO-nq`r
zBl|pyc4`PPKpxKZJ3Y#W!(J%ep~yr!ckF*xom@x-N+sqk2opPa3N}EnvOS7FN_u?A
z9}eA{7SkfKAAl~qe=#B92$>lSxC@r=vi!QrnGSwITm=2AsM0Lr#UY#la>NQhzi%|3
z4bldgqqe>50^ZG$O%huK_8!?S_KmHF#*l?_s|sLXEG?)=@cl5mgMWk^)X^QfV<6jz
z*rG`pcP4x`Ur?rLIL1e=EvcWal;>rw=S9y?ombA(VTRtE5`FrB#l7Km1<edUJEozs
zMf=LG>u-l^6ts4>zy%YMd&5L9b^Em|eqMncYgH>jj1Mot(ZV9JgIWagI*ChWIfZbQ
zNUO108Rx&6z6R>9R+Ifa<17ZjVnH{PnbGHel_w-*o~@aYBV?*fE92H%E}5o^c)K0#
zOf$7BR{zMVsv34F8t&sQqoCIqbUMDd0jv3uS;LL{@kh0k=tljs|6#2W0COsCzEH#M
zdVXHSjhS(NkBRt#jPzy(TpHX;j=IO6@nu3z5}sBw;3z}`)j1)l#w=iBn_p?!J5tus
z{*FCm2AhdqzTR?KZu}VfBRWC-|C@GfB;LjBA~JT_R3@F-FPqVom=VooRB4zv$PL@D
zl-t~<>42y0R~E=m>FY?EwC3=H*oBD4tzUSbC>)s9cM%n=vikQM|Gmd7iEpdtDidfd
zbY{w&Sie$oS0{`tRDSZ>_Iyblo%kY3<Fs!}NL08m+%xw-#>+4EtSa@o(bM*<{^E*`
zRYJ)GC&VdI%N{sfW_D#ACD2+$2$)YNW0vk01=;^GY6_Yu^_)#_qvQH;9^z_iWTaA!
zet4lJH8-e12+(_p9tSIK)05>wQ;PAbxsoG~m&*D~Ne^^>W=%`3^uZdj&<GEr)##TD
zp+FNxXY~&wAOmCb;YT)A*{Hfq3|b8^m3aU%wIY{T!q>*^^gr=G@bP$qvx?MH8+2h>
zNa99ziB(?YrTpkj8e5M{GxNZt9XYzZ=+WnNg{OvRF!m2WKA2)yZ;Tv-W+Yfvk}N2S
zGx$7fF85J%%u)+oBX+hqVXu6w$f|db93>s-eb-SiXAnl=-NWX<)rlXzE(){JhMa?&
zOz8JIcs&J{o7g!Rm@h?EzY}+)xNz4E$bLY1k{qaf6(5)Z8?9K<4jLQFt74LVD7f1V
z6m*_d^dW*&QpIazhB8T~^29yTN6B(c6$2fvOG!RX43;z4b7w*RMp~u^98Gmx1#mG<
zgv~%=%yIx9&Ac>x2s2pwW@pUWWH+2n=fL1;Lc^3yct$d8_Q$MV`s}A>0oeAI?*!OR
zH43JgI~RPlI(H2Eu&eD%8=o&`Zx$^kP}2a5%YhZe6CBg^qZh$|p8!+OVSx#yusi5m
ze{{hvB_jy!%?G=INdAons@kh*0C+>08f}vlmJI5_n}z>N>(Sm}24642Xr)28;MsyP
zvsS1I?p6@=6>bbcl2(-8)brx%|GHEIH9dKs4`@%dJp;lei(ln{9oj4n!YWt_rCqgb
zG(erki}JYeiq_HiL!9v_86<UG7`%dU`Jx*D4vK>NWW}4lC{G`kWMEQ0@67fTeTl)d
znI)BA4Wv$>%<uP`L7VC>HV8tJVM4YBpg&NL;&}6UE!Sqq!Pt-d#>hQbN4|(K?J^rz
zF#G7@kdrhEXp}Hxhw0rNVs@(lRHaH0Nm(ox{`*d5%F29H)gE!aEvoS)^^3%q7_+Fk
zRH<IiZ)K#G(1w+MmKeBxqX0c=QwT*y5nR?W+Xy^e|3J2UC^zSl<-ASYh@vDFg*!Mi
z%7wb}99HN;?XjYLjk;SpY5mV)W;srp{R^1(?~K{df2Wj7q>puc!jYc_YJ~S@tZej+
zR+S`vR6asq3fzcvFjA{b*!PxRqL1U-Z8qdzj%s1HpGHtgRcDl&9_5vcH!7q0qN-~f
ziC3(1Eym4EciN-)($#-F7uPV3Se=Dh#r?KeqBI&7eH(jGqmspknim><Q?8eL-s?X7
z^8Jyp(|Y^$lHdi6@VKFY;wYeOir0_x%<4FSFcsxBfSbwm1lEJ?NAaGk)DJDX2T*F~
z@9x}9T@Pf4)E~;kTV1W=IXMODM!j-4t_F8A@x5pH0o!nBuxLXN)(=)_wVB31Gl%)U
znvF5LX~6?$0e65DcjR~9q}r9~{;?pU{}kkFwwZ<DtYW(#126tN8Q4~pkbpeqHY%KQ
z1ivj@16xIFc(`nuLnuJNo(k&>67XJ`Ye4@uwcUx%o~KxYRnI!O&faiLwSwHqbF=&*
zr!||Py3Ta89v*!v>Lyq<rn<rx>@lo^j`SdYb1`z9)CUly@)8W++Mo=#6LC3;B>+o2
zp?njyT}b#LHIT$DQ;ZDZtzgk?sTt-_XUQ@`h~5!fZj>l&WF3f|$skj^5!vrTzC6`A
zql`HNxp_T)D}IIZHW=x)o*CYjFM}hxzASQrZMQ>aFf5TzJ4_5Pcq6dQ8RZWTAG*ts
zeu}ZX--eZG*^CHKl2J3Kg=F_@b($yMEEmb{xeq>@(~F$U3^P8WER14ii;l8CHu%MS
z9~`Fr2kR#08<vE;`7ia#5k&i20q+_GUywA%u=^)ox{`9h9wy05<je~<r})HhVxuSF
zvi4Mey!sLB-NTV)#2%BuM?OF$V07b7Y|qJ^KjEyNQ&h!Y2Z0d=;|bo5@kr3KN~BSF
z)@+@hYorz-3P^U#q!O|;h`U&ucpV)~1BS4CTi?X0GfTXrh}vD_%Th@AU5sU=zSbo%
z;P=(S6o^Z9as2Ygc;kPq@3Sxs@pQfb)>BC?bL`G>qwSiZ?hyvD{_hBfrg&VV1G-!N
zAWpi=<b3)WKfv>jqR)-&?dBrrEi&3PWjK`?#4oz(15w{)KA<3Na%twoodaQSz5ZXk
z<GwfVP@y-t1l)^IW{F4TQ!?s|LzjJ&Moy`_CC|e2TD_G29G>6P(kE+EHdds0x0j9&
z<lCBW5(2B@0~_*L72whIKYI})eJ1;EObxn1QczWIv{+c(ng0bG_lnQw`wlTdZhwX1
zCqq&A6KA%R$4T>s{X!^k83A<F{U2VdYhZO97^Y2bN1C$~x4lTPY?tOOXCG%V$09%+
zK_nzMN4u%t(!I4KvB}QCZlvD7{#<pNY&IRxCf0l{Ug1w%hRINa3nR%8?T<f85$BrJ
zFwJNXX*WD|0Ajok{j3`A2+;?i|Dm*Tl7X&ukfM&BKsD_zo9nRT!-=>|@wWEe`oC)9
z5*g>8S^3Z^;*yoTr1(coQLD+Kjx;rWz0@c}uqQKqIpk5!!Z*<sAUuCnq5yRL>m9JW
zG74PDZ);48tvyX9t~?oASnb-z`{ZC|k=|-0OoCqpn48x7x~Lp{>Q7~A2Gb}UH*A>#
zRjQs19b$QxCfFu9(M=0V%je6OQSmCp`Zr%GgSnL|X>pu}hGzg;lSlYXxL=d+EJ3fa
z>eTmHnWbXEb;~(V)6AjF<V8>x$etJw6x;uA4A976-bx<70<4fD=otac&L=x_OkMFa
zwU=u61m;7_zB;^Z+=DSuO^B+kNh<UR)Mag0OaiWJ$Q_}EYF{1V9A^L-`k^EU#ph%y
z!om&1y-x!$8G^cYAJ67m*wf00=6I1+>VxZ!YElPE$-3}sr#us=tiYaDSqxL>KMdtK
zuced4lA&py4g|)>L%d6h{g_b4c0>IKGxbzCOe03KpT$~(CV<WT5Cwt5L*r@q3ttGw
z=Ok}BJi}kmlL8t979pDuBiVNVV9sK>x)*=6))FH55GvTn?agqQEhw*JCZC==>+Qt#
z^YOJK_zG85_WjHnnTruY5d_<Hsq#G>8P7wov$wc<J|*<r&zBykU)igtrh7YS!{WER
z--&|2I>n*_+w-E*>(?+8O%M!?qv|d-OUod$oY`v-S+kf8fka;Nz^G7&bV4@;8utD;
z--$jGjN^?jlPFDH?W9fSK0+VD0TpX14K;$k9_e*9Y@HcU+ky|sh!J`J89>!HZ<2E#
zLWnH%NM;I`M^%CJ+l)<&Hyks$hh0e|<tMUUb^%{E%2Y}<KrIN2aDC$3kujeog6NL-
zF`mOj)WFjA<Eq&xO6De%AOz+!%z>=PEI1BA_6N%6W^(>CvTPWV0=C5)wfEu@O82C}
zW=4&*7BLR=MQrQYMO`BgfxvF4c{t%fMYOmlPL5TT2K;44oithsI#xE%7Z&GzeO(D{
z_W%kOy0`2XT*Hr;r4P;(ieIk7?yqXPQi(g}xyLUAip#5>6tG<>FgS&<5N|Lrn{77n
z4y+u7Y>d9-Ac|Y<`3IsUhS-qNylk^edGT!u&fuq6UW%2T0=d}IrtOC5mJyDZV}#Bs
z$_zwkJz4gO4Q~Xit93K+NU(H2AEv{GZ9@gWi9lD}Y@5eT_60yewwtFzR4t5>ZM8-O
zfMje!Yo|OvpU&en4TMjPyQD(#$lKXE%G0530$wxWN2i(?8_ViuXHl#=OmtQ%K7j6A
zqFSQ2Y}-;J#BX=0?vr>&s@Pr+D$%}Q)PB(K{ewSp<FYZD`UGZ>(suL5?WV|Ib~j?I
zzDkb;c-97RrR<FlwQ@b`N%-~-U*GRI)`JnH)qwQF`BOf3u?gG9awK7z<Oj|hDELC;
z1`^JwI5Sf;*F1>+jblVXH~34gu_oi!>B$%x|0Q9F3It+>27-uv-Xav$FA+`D2@=nZ
z2F+AA8nESJu}QUGBUmA_N=nWzq3ZbyLs4BBL!swFSMPXYychZc(W`JrO%}5rVY28~
za6<d4hC(>;_-KZE?u#&1nNJ!`O&BsOJk4*LS1=hbvsA75;wt?lRB|SNtat8}DM1vx
z`>~3VQaa3R_8LKr_BxMB7~NKu_Xr4dD_NS$c)E|+KcfVJ?gS+TO_$D)P7{R76X9(<
z-dTE^8MBqC6$Az(4z=h-?@6nh0K$B<1aQ3;ua3=2lafM*d2t5jxM2X@l8g^uToG7!
zOL}D09)t8QPUA`T&X<vCB$ZUO>$wCtd9cFl$?{uRS!3ln!iaA505%!35KJ-B%)&F?
z3t1zb)=C~Ae6I~@H~O2u*8H#g#M13;1%-*zX-J1vW)r9D*^B6iE{Qxlh-)gbLzobQ
z*gHRX2Tda1EMHdd>2)RLEfLz)p~H63%D0e$nMZv_({VjX)Cbdb%>ZK~=W?+M{YGW4
zh)LfZ)Ahndonu2OuiO%z?2PZ)kl4`5Cx(e{WE!G|VhCFjhBCv;d-zNtqN93_Sipm`
zla~QzSw%zZq2Yq3p9=qJ|5$n%jEvMi#{KqA$2i@DwkU2fc8bG|&%hHzHYSs@7V3c$
z2rlT1*$nFyJ9h%`&X5-YU}CiJBr&J3M~zDV+MP!}c+Fizj(z}$ZWiBSXZsa^Z8-@+
zRvcB-EHYu{Lk}zrW{H0USt|bbcnlIs#EMzKs&6{|fA=MVi5kdDW!O~AC!v3}Grz?$
z|0o;jYvK+#VTtixh<Qy`umh3lZMX+WhziyghQPcjq(@yGUO$goWT_Hpqd0La2+Dog
z?Fl6z%NDincf;#AXP~a<;$?F=;D<Wul4Yv4Ifngv=AzlqO6i!DufP@AXN5{TV=Lj`
zPO2?K2+uvz2wv#cm^HshPOc0#j#`Qe^|_Ndu4~Irv$+`FU<ifhSYoZhi1q|s#bPyt
za-|O$?EswJ0+h@cBop+FM}no`zrq%x*b~Yhy=4>m*DCSyht?gl_ahp^|8wwc+9sQj
zdyBaS<jZdm(C*I%<Wi=o83agl!VH5GfUC183oQ(?)Ocvu|30|@R>8cqBRj0qS|gX=
zbf1Psr!p&x#vK9i-GfqKFnF#hfeU>l^#~&kBygGeswnRxUM_G)+AF9!$H41{rn#)#
z$y@sk9|Su}5t$XMN>Z|LDJHPS=AP%0C+z|^F-cO(+rjFyKr1#T6$wFG4dN%ZH1Y;&
z=RDi5_migvha|Kq)^uY15`K%RoP2^1+||0w1!wvBbC=B=F5$&~B{39S*0+rP`c)D`
z{?&vpm*Y-7^nL}muuv4BB>v~Le>@{y4vAt-%@C!qHjjZ!#sIL!r^A4|EN}x3^m7GS
zA{#mvmbroAl0}Q{Dv8I!jR}zjtpoESavf+@Sw+|696egq9Pu2+FQ501Gr_>KJxU2N
zNy7+J)C?H|+~sq~6KLN(X(E_{G%I48I!pMT=!zL9{^dwO`}%Z5^oew~#QHAS;+G;6
zM_}R5uLhKmWoE-WkWU$NL#h&)kgp7Ov`7Z`lI$AIpdi;&{k#h`3pQQX5c~#(lp>gN
zwz<MF$gvh*)6B`TI+zvJ*1k3QgASMM0aGZvz$Dz7)E^ty>;UWlEhf6Opic(aPGb-E
z5Pyz?>HBqqjm~kQ_Yn+eVkYx9jibkoFj=AlMM-{sBo*8foHPVSK$)YRofUGEthgty
z{R#zVW$caQ*K!Lz$M+W>m*|il;Oq5o&S`dZIIQVB+#E!K2h`fW!auNAL634oPV_=0
zhMOX!h1G&&U#<xi%9e*Yp?n$$vhpZycHNW%A1};sOT*PlUc-PFIL^l9Wonr$!mE~x
zq7DjO%^R6`d|)|iVgQME=DknDBT?)G^;DE^li|{R-ztBddYIcYnrZuqj_vzeftwzZ
z!HbgtH76hg^gEg4%shlpqM@dE_y&ps`KJW?PpE08+92?1G%{K8%TM-cy-Sf1*hMW|
z;>U6isO4!Kwda|}(4NCpf!m$)<A>NIO;_=0!taha?Fg|5_9ET?=Lz%Bx*kW5xbgx}
zj*b-ku6L{gK?`#vOGYtwqVoyE6@(qftqH}D@BFP6Ib|M^n72)<U4dQn%V)rffV1Lb
zsfWuIyyncZ%DIBlZ^tDMDxU8fjEjYrRg9I}cOZ?vuGQ{?`b4C96d%O)elWsY0uYhO
z>7Ko;U-G*_k^br=kQ-YN(M9-58)5w?%Fuq)8{lD^HzCJI2;@$bcu=)PotTY(azLT(
z{&@{&Nn*@hfnsNa!%a3B=XkH{qW;Efde|1brzVa_)v!`o>Nb#ldSC#vne&UCEM-Go
zEe#Pkr<?Aa9jwfEBeA&SG?A((zghTpDbp5c46)*`phT7yBfpY)sOzt{9-Hpm@k88M
zImGaDr=<(5xieyPzTgb^3AS<r#lgD9ap^ezQuxs5m$=_9^k0UzJMn0$2P+zJx?n@T
z*#pZ6g~2{jvN+2@Qz(Pxch559txDZ!7n~MG1iqopCRMzyWW^Li>IORvQ?V=x5u7UT
z>9<P|tRhAlBKv<rq>uMA$Li>D)yURzT?JMNX4WEbXYt#E7sg$zq!hwt`I1BNP_^AW
zaLlv8G~ZalO$d>SJA`vDHgPA@W2N)6$K*<BGj5l`ice4^A>rVa!7?$F0nDxnRj^Ta
zl>VB0Ew5+a^&CIU7IG`kfoJJ?yFcfVE#F#sb{g@E$XY~47n`b9e^*~gShxgbf`9d+
zlniBHw}d$&0Gv3CdQ&>c%Ub%pdTe&~7DTo}U}0(2?S7VSrixjIOrf=5+%w)#41Kh-
zY)kY|CcOXd^tU8!5I9AqryN2B1NignXCd)um=uWTrFrn$uQN_M?HOBSr3lS|c&mbh
zasad`ds{ETh(tUDs~`{ov!;4ko6a`1TN6BPfpki|D*>ks!h13K^(~gS6fN=OpZVit
zf=96p*=N8@F$QjC%#W@}3ObD!3=aXh|NoZd7gMrO>yFvGwh!KC5+8vQCt7uC>ECWe
zm(gRQRr_)adl@a*9pnMq9jFLj^|bDoTHoh;M~BLtnm{^VWH3I&?vyWfewH;bYtM;l
zK>gg`dj(wERo7}+S!b?F#6sw@&Kslr8os^>SIfCcFhWP6hjZ9wi1GSm1Eo41ho<%F
z?wFg4b~qCBt|N>r?fHki+iY{;jX}*+L*C&~^U%-#V`O1Yv$vDSQ@4bynx4-=N(`v5
zK(ZRdmX9-V^jmBnJ(ZeHj7>0M0bEu(meLc@;G}m-znBXHSL<o-BEN^VMMQ$d-G{-%
z)!J4Fg)Qx><}sKTOZA)WKkqvg-6}mqZ4U>VOD^Q?2cNpppjVev8Woq1rf4_~)?4A@
z2Cd)a@XGIJc9XDb3$l8t;|Wy*1A?fze9tb#*x3iGHnwL>K~s;1&1SjWBCT_(4KBb6
zN<wl)Z<tDBV0InVnC5YR&|(b@hlCi8_pPu5qCOWW+F)C+QyGf9rK3gl;4vQi&Eq!N
zCJhEIJc*_4=XvIlRbGC747n-;n$%bD+rddA_d^scxoQ4&#Bsm_N%srjw?m&C7Jn{h
zc(uT$!<0%9T!2hwd;AfR2mjw1)2G9xO~rx&Oqp)^ZAuBVgFo9FLsD&|2Q}B7P9A{=
z7<VS+ibz*T8|(b^;9%8FrRA<&3dVkLJT^PVcj9%&if0ooy}gJfW=pN29%;<jlbImg
zi~X!k(>eX<N495~LGb4RW2C|I4khc$7}6#<m9z)WS}D*}yl!WR2$#UUDj6wZ0%db1
z;uQy&jIeo5RkZi!!Z(>;v0Wah<oTn>^Vrb8j<{m&X|CY%Fh@1u7SoV86uC-)cL_|I
zlk~1&YwamGPL`U&(AlO>HZ`4iFzHa1@?wJ(V}iu^tU_Ch?=j@igJ_T?UuUFRRP2i;
zc+C$G`7g!NPwa6Wb`|Ic(I|ZBgs$ofC)PsKp)6X<YB~^>wzZQT3X`*Avc_r*eg3)n
zB$7#Vpfd@_K<eUj3;0nHVrXPmN~dY4RD1-g)UF<{QG34$54Wfg;MO8|$+Ejp5F7g(
zHtD*#r>wsv3zRXkigFY+k{C3jaTU?y*QU0mr>)|L03|F7(jIp;`ro{SgW6;s<0_kY
zlWXf7RT)H0V%326Jup2X<<Q1$ZM3JxJr;KuVM8y36C2?PnR`g1f`?^0<7%vnLV|rY
zpV`qIY~piJQLzZv@>Te1h_|g(s{T1KyexNEesgUgF7~|YKy-YOO4J+XZ?QU<5vCYb
zSPZ7Hpd?eCE|sv*7Y4qGw=5y1)+^Hkc<&U>QQ#12+dLTknN~aab<p$yh`+Q8<Rn)Z
z!<$nalW?VkU6r@=4~egYKu$Ts)>p<oSK|OYhJ#>0`r`+=S=~{{Iv;i)N;^_;>HOz%
z(J*zS0-MtQM+Z;synP^o^x<0@mCsU|;yeERuJ+zE4l;sN-{pQZ5xG)4@626E4N9MI
z(_#J_=X>|(Mlo!Za5Meh_7&>2DHRVyj`I+3+SVWac9-Jrx8~5=h;b0Ju)G7l<C6YA
zqACO0>j#EhnsYTa_F($oDi_?CuK1uD5tMSqa2e|4veAk+QD@N3Y{680#!U*8F6vP<
z>A0%ftB8#F5}G#7R~svS(*nU}aqnR)#0m<GTEe#Bhz}&jcvcJd=LDfuRwP!~nQV2p
zkb@uSME;WHzs}G$I0VfxF1|JzTW{?aa}ZSR{DQY!80}q(O7X5M*833E%|8Eoi_!>y
zu~AV`!OZOp@_tm7#I;-B$&GB<WV{NLO1yL1V6$G({lUYoc3)2UsXX`P;TS!D0Yq@I
z9_SAWN_wA*?YbmQSzJ&X7g>oo<Gl4mDn>==^;`gGod(0XMMV^Pytdqrd9OB)A0%ry
z;f;dxmtoZfF&clWA<?;FRZ7d6W3B0jQT0G4;qv1>Yx_0PU4VS?V|f8W#)a%hYCUVZ
zo7|M&k7W3hB)ZBTb5p^1sF!z)<^E4I7$378WNtdwjWT@CL)TX_#)5n^Ni#n;)sx06
z!T|U8rY+g@j2?)W!7LzWDiQG)X_7hu7*LNjrq=aiqbbvS9R|sI{CIw1{XUI!6nYwj
zhsT;Tm1lcvGKb9{2muU;DsFcNeCZh}N=g~jDJxutgTB*yOzw%z52VADr+rvqOJ^1<
zYVRuX+RBgHalsu#damL`*J&F*32Y1jk%TZ`KebM6?7bKN_0d7j!yu#J({3-o7pZpb
zGZ<anQ^Yic47};+GGvSBk8_&o>E7GNoi;HI00FH!rRcm(SFZ)}rfKzjX~cUhzhP=6
zCT+YRO!Qwt*&OCEU6s^;DjV<02@x9gqY+!*iv``#tEp{#MzTVVPP=oK7|%5|Lcna2
zVTFH&eg0ohkMl24b9F1P1z*BK)fs!Ed6!_Sax#X7K$bSNvO{Ttlh-PP*VSL$XcH-)
z7{O2}z5_1cEJnH5XYHF<EkK-t));`f51_Bi)X70u%r`QGU4rRra=dl(bh`CL+S=?V
zLEva#QAr#)>82`fd^N?;cPqA5XQBhB`N$Rlkq;EM-wob%F8hkNBq%B050x0c*D`ze
zt6h{=rYY9kq;#cLI5nD~bzD5s#JF+?QXlrmCv1JLP%$Wx`#T+gP==O-d8}FjgQdCu
zNBgNEeu^<rsHbq-o}e}0+ST5MX|X)cE}lZw7DY=J;mEuMV$bq;%dz<8+!^L>LVxxe
zcpNjrf`!`iin-nPhBxpo4ZpZ8@GPrxZR!2wJU+N*i;ErO^2n4!XMZl7{d*~eLz}jW
z(>r)RrBSEKzK9~_RO!v(b-+eB#;3fY{9=PtozLs9x+~B@G}j7Gdu*_Se}R8ub_)~e
z7qL~KQY@jQIWMLQ+4_+XgjZHR<3|kclJ&J8aOeVk{?==Lm44L(BgUd;;nESD$4157
z!)FO=EfV<B)WW`-i|Zug@NRa#R(TjWkt)*_M@}XX-lRAEOfZSw&aPs3?B>D2^5nXY
zn8fsqMk+PsNAj)hK+q43101`EsMv>nA6&m4Yq%43+n^$SzkhSy=gZY|4<l?i?n?7g
zM*P*<a9TuP{N{-12BFqs@{5vqfDJ0>yzfV6wC%F<WgY-x!Gk~@TN3f`R(6E5bdKXu
zL?KyzE8UlzBD?UT&5Z<E#k&}_qAye^r$DMb*!iA^5MX#bKVvD%Y~xN7WvzHO)d&@-
zuJzx@m4W3f3P64J1xuG$8y`^VyC7eV?H44o{>Yi12l^GI8hQSS8eXl3xZ;kxMk=bv
z4|Zs3718>;V>I?R3LEB_F}F^WqM!Y)#OhHyhYB~Ju%gJc3`TZzO@NjYIdTwegk`c$
zUJKrdUzyX$s3t@j&J^gjDn@HI8ZyUvD8uX5Fk7Y`U1<hCZOdo^t1w#IpsCt5_157V
z^k#}4m!5M$VLL&VBOlrOQ^-2}k6sVef8sNSehM7%yFI%SHtZWrwMl@`8m)b6RkKBc
zw@ctwGrwV9OdyDTI{R2ScJ#DKsC#3iY#vmJv9u(5r!@v*cZ|oW32^!70t^;}Zo$w}
zdaJI#xg9r7{3kP{rH?sQp{r43O&UUD@bgJv{bw&Wj;UD+yH1~UL)WUndmMsYvtMK|
zDMGT%yamo%(v9Bns9M&n)Aa7_9@1oC1z&talW_GyO~H=$t-7$w=SwNNJ~vo+9M%jR
zs--ZS?QTGt+rNw03l#I8<o$!XUD%uFMXs;$Uz*b56w6rPLxlcWIqIpOdGV1QdNt1M
z$9id_v;V&YDyKOr9v2ng$4tbg_yv!rKW?Yy3z_)k5YkrwYWY{4a9fk9+4Y>-S4E6R
zHT=xh-P-johW^L%>nclSR<=$Gy`H#_baYS?=}b@!7Z&JtM-y~!q7ik(L!9kpCu2_4
zglDP$t3W>BJ>7fj))avCEBoL;I`H^~ML(}i3?<z+nAJ#4@@-NxP$DI;%s}n7KeglZ
z^+d4XspGZB4O-IHH$jUFOFGp<N=OM4_XXqh2L|oA*;KGtzue408fZc-c+A1$_;(t$
z!*y_N*DgoyQzhW{Algd~oLZp)-{d2{Pn5Xgy1;jfPk*U1<-}E5;$@qcEDM6rTb5bv
z3}AAWFnUaL^?+VCWB%PW+g^mkB#$S)q_BGIeEJkp=66HSt2UahP?yzl>uAwW^P$i{
zInT`>TLS;8x9^RRzKdR{+nQ^SjgQ6xltM~YAuT7)XBhBtRFKFpchltMCnyAyp-iJV
z$8+!o^=eAUmL06$<Z_PwmYL@jU5Qkk3#<7}{DHmzN?dc;*<eNafQuE5@q)j2g;)N7
ztdeR1y$|^(b8R(|1tqq&AFI}EY{4W|LHolGC_8oXIMI$~4w$nA4F(92z?gvA1wvTH
zmEoIk3^`i5-45p7iyjq+1StfD*ExiWR_d!`=6U+FiZW(#y1!GE4g<kiXq}=$cqORx
zBDKV&V09ma#QPIPfU+3m7Coc;Fa#DJgT@^?aVH{Jx1n{3^BfyEhMGVj5c`#_+j)D)
zX@-=+wL|MlE`fz(2ZHL7uZ(Pyv-Rp6p$KYe+_;kX|7vjq438GSOjG^<=p7+x2MP^L
zwl$BwPg*p#N$%7mlVOD)8OsqHz{seTdp#03&mJ%<{|YBod}6Q0Yvwb%7q$BAT3USx
zA>Zv48J;N(oEVadG8ts^1+g&MF`(;ss1k-#6;Ni-nsX5!n@f-v)2}cIiVu`kwF!qQ
zyfN5g;SSLw(D7Y#?!_YhrA3vGCMA?HIk8lz%Kz=B^*(gyQTD42Wi^>wl3lj-UL&C}
zVV{yPxU=O^p`J>~2=b(_p&_wJgr57FC0B7QC$gP3rw*61XsPHVuqz&wAOpfT!DnA7
zb`L?ha%7P>;^7wzl5zOQgWL6_7wAA)o7l1e&1aD0b`iGT7;>Y5$LW<O)fsAbsQY`(
ze8kDQk>)PbZaqS(acb)F@5VPL^O7;>bxVcz78mk6vj8JqFlMkk6l)+?QJFqCSF03P
z5aCIfX4`=xis<W9JGCSy{`x<6PEj+|-%74cG-q-_B+?zjm`pS0NZ%+5QU-c%-1GNz
z$Z)r+^bH%zpC^>c)42bUa+0ZBJi4A?1a6OKS9fi9^3W{Mb1OQycZb5bf@I3b$j}44
zcrB+~DFd{9C$18@?DOJU|ESfVckL7QQC#J>eKmb<hzNgqaF^-)Ixh(R^ZL!}{%H-<
zYjN$s>5Hu1w8i`9s>M$0Jr%|LWD(r+9lsv0tIp?cvWh;-C4J8x6qnd-XcbN7@Q3ce
zI-W=POnN#(G)$ERUlQC^Gw=sOqUM@pqg0oY`SWLLRHs|Ap1jmd>ZSC-#qHzkMLJ)Z
ziL|gPZSUk}vo^~IXc3KJ8+Yf&reC-hN%3fv6k&_9AG6gN0h@d=GhMU<5j;5#>k{dt
z>Uf${<`sIz_~}>m;u<$%*b|!om`12HVIOQR?QEzTCx@t-Bi*#`3xriiW`FcxA!hOI
z$Ys*x^$n?#Ui*_j6PcP?SjBTDz$=u{O;Vcg??V3Mlg13P8t2%Ph>WGbhkLtgwHAY+
zkMX;4U!;<Lm*BWT$~P2X&!59k%n^=-Cd)M*^`7vpPo9N+9tj{3MZYS;IwaMT3aV5&
z^njw&N>ViVt1d{Yr~PY&1>n#$;(J;P^2s;(3Hm`v1KjX9C^wC6tG8)&BWnmN3x`Ca
z?U6nG$y%N_N*73)6*Szob3qf8@4Q-0$B#P^anRR577GJ4;J*ihB1DKzpYzior^6C!
z7$R20hnDc%t(fE5$Oj~@M!1!e3Sn^6u;tv*74v1#4XuE=@X25dPC!W<QJ8moaI1Ql
z)SIg}ShVfdm$WXH!*b~s?KZwIV+a^~_Dl-neahCqjD$~}`)xdWSv%DKgS8$I>2rmd
z{?5C<*Db>>bDXbVp{8feh+{gjw$5jd=W)jrD3~?t#MJA+9#vSOEZ&i1-el*EaMJDt
zQL7#`PlN*YIdYu-D*2)DmhDl1cG@#t5tC{lV^_PY467~?);z1h4vIQw7mE)OI{5yv
zUaQ%%K+}*`o`2y&uW+5cK|=7AMrK3P$F8s2aUwK&Tgga*JZ$i?Bq}K_3Pk8hi$Eg#
z)RrMS>ggp1YMgoy^Vc{-Ph08-lC-*1NGs){KYcG)M3f+MEA>sIL&BEzjP=H;j^@xE
zT8=m12H^l&s-AHP)XkamWsK=C+mW58yFrq&6r?t-Sdt9%>)lnPKID<y!!!<5_WoxF
zU$@ZTz;>vaW?DoRS}m(gHxdG~D-eUSkvCagzBUV1{S4`nNx6mAjd48W1`&Q{;Be9`
z1--!J3t8}C2%n-6W5E)BGGERRqd!8t0T1CV2X1zDl-rSJcY*~3mtCZp?)IM4%?ZNl
zGIvLc*&=W7KvLO2DMrc+Ln`6F8z+WlDMLq{8OY!yeY#HBM-ciXCG}7glrZK`WO7}B
z<Q&E1gdd$p*U!uV3YG}I78~R$W;=Xn%%!R&SF_#&fSdKzJ2GcZ5Fu)ysx?y$K*HnI
z?>LRk*JKPkhY}Cl?4DnrmeJJZfT05!hmQ(AjsCFH`3wGC;SDLl#GAsU2uC16%w4Eo
zq`z$Ui#{B*uMx0YuV<9uZcr|hB7vUN*9^~iGc$a%^%2yNs4n4c^zqTq<qW?r-cd$x
zgS5hE>bIMUqJ|WOaJwZ88Pn!U7*)i^h&{+G9pZxqzQj+(EU8vc0Ngl^40FS$C&F@R
z4(!4){>QqsM2I$M!-!qes~g8bg|j*>M9}DQ+vgZy*CZR_MWdKmp#MsHp7Y~;`Mfec
zEEJtD1Y5OlwYz-{Yk*Vx9vB^}S4S&W`*B7>)@5j-uH=;~iYYFsZ-6e*e>z2XwyL5{
zt;5ZbsNnrQQ&NNf>}C~@z;;(Ud{yqOJoqpQMSM_uSnb7gilY@I6%7-x;W43~<=?3*
zq<-CrY!-1s{aj^-M=Vf<nnOCCK%hQpih7sN3GOHNrN`Bq=p&`F5wEs`(IoHQ!KzoQ
z&P($}W2Nk`uH{fZ=8`tdMrmpM+>oD3IUH$rIyRkFaKm1}XyfwHy7$36nE$;ulm6Tl
zpF>vx^XPjELTz6&xpok%7uP1KiVOu5AMQ_CT#uboX`)%#8V(gwV#o9B4q7wq_ky}u
zro*E3iy%%^&a~mtPzX;_XokpyYRbuP@#2J5ovM^?6K}OtF?<Z=w*h};z03y=G_dnR
zkHH*z;xDq&w@%-dA2($yD%7W!+&FIwcVEj7H%ioi1{+mPiFG>5(+JF^Ij=KE#TqH^
zV0-Ei5l5dzOTe8+SKvQk^wy@jr*{-uYV*@c4~)?%gx?tcw-d4g{^&JGEywWAEpk=$
z>Q2@J&$Vh=UQ>$jhp?rXz1xYE7lEP@kNQO{plbzl$(7cZhcX5Rf@?5<V}t<`|FN_*
z8HDLc#?F6cf09wfE}J@Z^wn+Ovk=JJjPk2|8EN%WqO0b9WKa#rtt97`2)0DP%3{ao
z*gQinSG{Bu{yfjd=MHTfb<NW(`{H=uHR5#Q7*|@Q453Bg&4kj!$hb?a=vG<_LN_@O
zU?2{M!kjHzYZ<v77L*#c+VhTheGzS?^`mwfJhB4&>aq|#*X(hJG5NA9bPdq7B;xh5
zyTE(;-MWS_+A%EK%ABIq3VEJg<bYZYgC>GrCJMD}OujXjM4&4dRS!{o@-wE{>DRRf
zMMo+>Z+?%`nd7h|vOmT0KG<qKW0QLHRgQs11}`tJTH5MDs5N>|4>0DWO9<KLS9nHF
zm>Pfa7l+dz^Rr)6=D&<8n6j2-!b_Q4#c50`tXo4we6U2L{KonIOzX<m;zo_&0)ePX
z;O=7m3zZ3JFp^Ra_){88ZoSHx+_OppJrU-ed8eB;WdQsyBL~%k^FqXv-?5Q<FPO#p
z3;zX7b4h6mbSZ-<!@!q&Y3{Z(sU3?q{@rFuq;A+QYw7rH>#v28Wl|@<r?Rp|Dq!0!
z4);s|fnxDnt3g^hF8!e`yB&S#tbusQTrYh`NBIe^6aTt@La{%BMZiPZ9$!*zE>j=v
z=dZvBbMU2mnL^Nl%Zk}v@$v4x!Ct$5MAy6(kTO5Vz|Mm!u>;yeCSvR3Ukj9vsUu1}
zhqgt`M<+A*E1bq(ci7ynVQhr!y(QQ=^R6BIJJ16i)%y6~!9FBQiUS#g>d)pyYJ10J
z!9z$X9O<97rW~Vi?pKiGer(PX?qTtv)&DIx9}|8+S)tkdt-~`~gO<?+?A*kBZ=@su
zv_-SAa@G7rGJ`na-_HQGBxbxoDon6wF?huMEgz4Zr><(4)<u?2)vjR?+bFk@TbZpo
zgx~aflfV2x$44+lG9UN?Nj9_L%FcTH*`#1E|I?_rk&Eh$km5g(o~Dqez|lQ1x~K_$
zvyQtf?eiSXq|hSS*tP$2hrl(M*NW<Soj?W09-m&#yPw-tE&67&AVtU-wT>yvzD76Q
zflAQlQ=0{$aqh)juI4DGE(DW4WoFT;YH&TFL^z8g=7u4swE*+qq}#mAGYChY5DnSC
z#z`ee;b{d?7W|%Pchoxs8aRxmbP>(4(!bCDVR0lh*7$uVJ*#UpkN#!-vPVzH?5Obh
zJ@N<;Zl7u#J*CmY5;f3h8S&pra*-j$I#6v2Ju}f@E-jo5XgZAw(YvV^ABx}B`i3a-
zrIK3QIX#IE&6&x~d3_#u`HwvEe|g;wk)$t5M*jx?Ltjbh=i%?UoNZu5;v#L927yKt
zn=Dn}(vG+sbqxF!JdfHjQy)Lwg%mUAAT%JdVdGbc#Q#5>;rekDb=g5X_#E{uWNE%H
zV_$$5>UY=B0HvDCT|5>s@?19fjw^4V9_ITi;YP{`7<b=>6RnR9L9ASNrb$C3ZgXN|
zpYSc+^(wOiLc>>gqP<UT)m=_LU&LRSEKBk+LDYej7#`0e8gP8XZ#O(PZi5n7IY@=M
zvEnI7FLp8%y9ZzBm=<-tn4#RQS+14ItbDIqsHB>waxen|%=a@YrM034KmFsOi0EVA
z$ndzE=k!0E8z(K3y(B%4y4%@rbk{BKu&k$RuJOK^(o?S<*&zWBoibO6ZV6;P^&xKu
z)~g*LHY>I9hX-OLz2Jn_N}>HDNbIQ^u8KQm$rgH8*TTnbX4PlX9K!9nfrQcUvB9zs
zF;97Z@D}a~(|pf&No1=up6cY49S-Pm*O2eAH%GfER?Gu~R`p~DN&EGy_3q+Fqo0{n
zaJV4Fn+-D2a(-dr-&Doe84FPuJ4-fza0?t%L+NNJD4-X>>q-)RyPFi*@W=i$(2Yw;
zl%8vvGh%qF$HfcmN|qAXAEcz|Gm19__sQ(vi3y8-cq*PzOgM7HgL~8WM-*fv9HbJs
zcsOb)gel#HHM0|benFE5*p_=hz@H{gRS!I~%ErL0J6mRfF(m9(9Vfw0Et~G~{%x~E
zwq9&j3W%Vi6IL0|vHJXBSvBGH|J#%4@q?>HlxK_%7vJQLNA(mO-v2vrtc1hN6Sda4
ztOJ!-cC3r3wy$=^47exfGZR^cmwPGkRs#e+lK0w$D@ho>!?zP7aQ9ATF55j=T4)9F
zjtixt@``8tAz?SL@<nf9u*M$qkVAhxA%fuQU!236mf~?V`C+Zvmk;}=*n>#FK>yUF
zmNQ1}I|BZ459m>7O@|bP37vi7a((vh1~Q>lg2@hg@%Le|oJy`oxMi(VihX-NLB0}T
z<oilgqTfW{(aUO5Nla#r@%Wx#S2+k$!#5=U=wPnx7lu}ECAawCfUuRHxaQ`VpBzLa
z?$L2f7KXMVhJkZ@Dy|^GW*G;CUWe|F1lZ>?Te>Cjd!^B}O6spWIWDf%y}fzU;V>ff
z%@S>sDhMFE$RjG<Ho^PhmC!^0%rzlGX}ev&fI`jAAIShhXRik?oOs*n@!9KgM6u~}
zJX<>fJJK5SbO$npX1GrG$QnUQ4<ROMEyp1${KUfdIqM7eXrtisMMgvqOr`0ceSbX4
zVQ%9$6SN7rL7<^vm_|Y2$eln$x8A{_6qX>-)vsy$QbI}K2;=|Hr%Qu$Go?sjwFQi?
z5qYSF^CjNxIi(#lf=zc*5B7Kw{nt-G_-jY>ZAB81=QW1dwWw3LE{Q4IG3rjtS<aTP
zOe%v~w{{@A>I1%e?&#9Gz$sBx@6f0epbh>0XSJ|8$6fm%&M@<71pW0qDT+f28PDjw
zH3qDBs124ttkoY}QNOka9S_4a9)(T(U+F(SIOtHetR5=i@-+u$CT;4SF(ov`(Vc^2
z{ZMQJ!GgRoCM~^Z*Il~{uIJuQiRw<93v|jsQo7fi3O-hr*>R^p#SbKV>XKIRCh@=A
zjCPe65wU>ZKeZQ-rH8z?ts1ezY84B{<d4D3>U9Y0vXelz-m-Gsl(K8n0lN)9SN4>#
zl3bDmX`Th*biEuX`e4-G2&c3fav)2j;DHO4S*BgVbLu-b&5;$$UjcS-0X|m_-Hh_W
zF=ya<=B@8UAoVvq;vMsi)qY6~(9n1&06Rn21Kb+E{j3PjRiw#s7;B*B3TIIf2u0sC
z674X6-{si}uXf77Dk!4EksON#H0CVoEnF<FN?$A>VvdqibgkG#)@}vtUcD`Rg6eyg
zI4*5>;=hVnP>c)yW^S#*8+c9Z5J8T;vQ&2a3~O$6PZB1MT+9>^z=T$|i|Cabc?JfH
zmyx)2OOauzyZh>H+q4HPL?WuMAnbrv;BR&bnNF6X$M_GJY?5jJ_>Ch%re&17<#+ry
zjRWOv2?wV@&Iu~qB0Mp%@R;ARz0>9vjc>c{;k?2SC!v%KgSfP-PSpv4wwx||L+(Q$
zcr+dzuOKMlG86K&k<;>df=CwG=-Aia!vBS};d;;`K1E-W`clL^ZxA}&dY%<+&S#=S
z=ZuBV0%sBVRj<!j_Eiw*=yu)qK{kW37j=mZ=ggCqc!5SRBJrL62--BVXnNU85Y!m#
z@wfNrae*YvIFVdImBz$A(~Dci!P7n#&lpyum6UpJTq(6@!JtUA8XabF_D1V|m-&i2
zQo@8K2sVMsWLPgtKd1cCadc8(!S*Z9HJg5_)JmDNb=0IKz3c09jX7g82ju0G4z1Nw
zYuy@0gZ_hyMxsRtA9>*6!$`U*j&|pb#XoW2^t(6B%CuFc<NzT=G3hu7`V&cSMaaav
zK@guw0ZzhN`YqfLjG1^GC~dSh+hUW+_2CghpByueXil<c2crv_c;b|{^8o6}P-n*n
z0d~_FQrJB8Byr~^8%dlI#2NoKYo@z7j4Y&lC=hNuXqdoCxG<j#8#L%AKrko3GAYQM
z%)cY@xt%AG2DE?V3K|hhcQMn&Q?v_N@g*z6jqRPSoL9AeGbunAodE6&UNesbBasY-
zJvqg;g%EPTHcciI7`N|yfMij(AMfy_7SO&Mx<d%8V?`#h3gQ{g$fri^*|+w=<VQS$
zT}sk+>Xa$7tw$w(U%!2}a|Qt9?W(jB&Suk#^U8*@^TqVskrY=@QgqF~jbfY3bNw4p
zqsKkIDr+=%@GQZ-#zoM@*|{xR%<*zxCshrDBm2U7gEk=LtFpeia3>s_ojnv>=3gHs
zsi^B~nowe?L<7V`pjZDx@KrVY&;#}&eo9r))8bmeA2X$?&Z>wsvVdZO-lGULusopS
zxjBbit!{H|+xiWgC~>=0d<QV1lTwZFwJ@3C!Y>ITFFtc{PEH&lVIR=jZ!W)9r1OGQ
zFDzH}LvInqHNR1LVvguobg+SoR8n1I+&we`@v1vu9of05+aTshHtT(Dli|PqOq#vf
z=;0{xA5b;;XM?~qN=Y`j1o_ERR)aD4bTGFe$DS^$XxQaU1ilkv83*^j$#rO|o#b$g
zC5mLExrT&c;&>)K`S=xTud0y7iYy5)iE~mP9985+KsJ@6DPMhT>BW>$8$`+Nc<ul<
zK*+y`Fpw2E8?v~|pp3>Y4YUy`wZr%O0(xNTt1|?ykKU1FC*tlI3fnuY1psY2XCV!2
z1Zzvku};9L_p(+Av`OCZ%RAYmi(fx9)f&R3ZOrp4<x^g5&P9n6JdCii1UpO(hEO}N
z1*M36Hmf<=Rl_Vtf{fA~To{?8PMb8@S|0*fwDPSOqCF`;|NhzFYA$ge`*;3$bV!!H
z)+IWjJiAN-H3b0>e!2K;;Dt-G(z9my1@5Hd^p#C#sSt2A)ttn+4odJca|l<1Zn`)}
zjlBK!fwmjE%3nVLS^Bh5gp>tnF7u+iD|dy=AEC{v_c)b;(=nkCFO8uI!cw{IO+Irv
zj^QZTWA()&kb&ssGCn6uo|$MKGL*vl&_Ol??i8xm$Hx=e5-uzFEvhLlVt1%+&tJ$C
zhgZ={(><rnciWB!Shp*joQ&s9qr;s=8xLmsw#cScL5A-gkQ5%Us*U)+7mkuhg~6~z
z>Gwm4F^n;PhJ+QFu>wiKfTApX7!L!S2*TJo$+W;vHf<!66gMlQcr7j>Tww-p0V7y`
z5oo*VTEcj=Bex*8uGtLS!(m;CQ2=tX27|>b&wTLg%14}|x2c9v;YMuAI2s<^hcNs7
z;nNkF{4CCKrlhXU5FA!@<4FPZxbd6z<eB|C?dQU*&dZZt2mZ9kR<OsBKMCVI=m`^Z
zU_Lj8l76$;FQXQK6|vibCu!@GJ8m}5Vjzwp14$5L@}MhR^of4=t#kMD7ltBf&fT|t
zrT{u7NK8Q|fZk2(Sh7O)H|ZYP!V_Bn9pJg}_m9N4TD%7qe|b9~!Tch;9<+%x+r(IU
zH<B_a`m$RO>ikvGP@K<Z0fz5hV97t4UvE1dyLAkRPN9KIa<F%g6!7R!?@^#m2pWbZ
zhz&aIAFFAV(lOm0-}bRD=r3>9DpH5fd69AKa4mMD;7)LrEg^m^tUqtx(VH$B_zj-v
zv<4M@Ri3{V2!;(XF-xAeS7l{JEe#+5Tr%}ix)#GS_w*Tkjr*_mmHZp7JN`*a<P7>Q
zt16s{DWr{P1ho*xI(eNDq=UdN63X|l#7Y9A7_>tXE4b7aDa#=^-g&_=^$TuMbHBG(
z?M>)^VlrKSj^8&kWLWU=%-1jesl<N@3t!CE@<>Fe%rZ|OY>k#r`|<0>e6sg%5)Ub4
z-3Kl@WnioHUloFtfZz}llF1FpGizfWCstNxW=^56!>*@h+CD!a>V@a|22Pd{dcrv5
z?NB8ZsTUs>+R-a2=EyocOi<vK1-XY}`?3f+RspigQzUy^peiO<bpC%r6rYS{qL5{b
zi>>NDb)wLBAU(d;*h%Ixce5-G)aYu-$Xz?@cB7lIe^fdRXWJ|woU!$r!rKmyy&q|Y
z&9Lxp3g~59KqZxH1KWKuOi$Lk7CNEK#J9#nZ$R!VUv>C??%X5i#6S6j%Ssjx7Ik+j
z_c#g`8L%XyzmWC^rq~7TIA$2075@N|KXVGCruGG#8A7Ow%arHdsBKP8K{b`)M@YX9
zee9ZU_3=ncjq}zVp85OQ;Fx2UtQf?CN<AXZl>L|$ISNl&Q|{R(-V0MBs@@p*q^w4_
z@a`&e243tDsjh^=kt$|(w38u`vDC+fx?yDJTBF=Gh7g0S_cMWek_$2IsBz~Hnq>S?
zC@%>acSW{LD#p-`5y5HO5@l4#PA{(6{LaWgiq&Q2bhbsvUp-OkeR2orsY;M-k}CPM
zWkRFG4Jp#tJZ6KnnUwDYsl47}IhYOw>fcZM&E5{&*|w;_%Cg%(0`IJOp?kqlQz;wP
zJYs`*N#+sasXpsWssRE_?@Mdq)e6v>ou?q#^`uwjiGxp`gzR+)DYnpAF1-ot7;{$6
z!H#ZxbUP_a+5_=D6-H16Y+hnKwPdRp;i2~M=0_+A*oNs--43Eq&vMX*=?UvI_v7hZ
zWYoxR+{;!Wbe0^au~lkuvmAhBr8=+Fx*6u%u>Xli!dR9&GS7#7_9I$UJ(tL+;;*;)
zLee<w{1AbBkQHo3t~6d4zYU|wySq`z#d!IW3`M<atNui)90oa;@Q>@Hx+1G5L_;D9
ze<oPfvCq7}<e$5MHego?fv}$1k2@1OZx>Aqcnus8!}X74UVZNKiQu_C7e%g09kYtA
z^lboq;(QR3Wi3dd7!^GWH4fGVOkxXz`bG{AvTURa_dYPbyeTiIVHGq9_}-^c;8v$_
z>mjAfjPapfQ|1F8b*%`(oEZ<V%Nho8r=(kqf|r-T9R$$I+(@i4lG<DOK5y*aeFPXA
z9WAIcdb-f3*g5&vn^te7k{AC`H3J$sscNTJ&x|@jQ+Mfacv_uzhCaa?mi(SerxejP
z6NCGz;{w3tEsFEE{tYW?ea;g~qNv(IZ|x~QrLa0!EnPd09%7SXw5z?OU<fmPq&JZG
zizLUUtiIAtZb}TD|NlSpS$ogRubd#Kn%`(=H<;7a2^mJ!6O}R}7@I}K>Id{simaph
zK^~Xl?n_oZszG*Z8rz#CQ<ZypXzG^6$xr){1zx&mUsaNLZNHSi$Pmh?>AtARLxO}(
zlxsZR5voYKfU9dV#!p}bj}F1b-5fKurj;K-4y}(~dhSwGU*6dTQvG#2T1#DpCVZ9F
zbsv~-%+igGFV*R%{6c-9jk{zg8&3UHURDMv$BQH4>jOiyO_*7cj>wr8<XNU?PGVWk
z#iU)I&{esVuRs}Rp}hN!2F9miq8F1m+)$4ZVQy}DR$u!;n2odLLv0W$2jSnXYbdE9
zianU=pBD1x@Z>+9UDar%SM_c|j_=hSk00;g@!UPaan((u#FCUiFXsTsn+l00OFiTQ
z_t%l&MeFAu06)OA`xB=LG96PdX``*h91_}!%@tT#pDwzfRR(k}avXdGaM9oW0=35^
zGpB_Xi3TmWjNp0-{G=s;B_YymD5}QmnP6XYeX057FR}8ffhfuGN-S^T<lF)C1<@R=
z7%i<Pie$q7FOJ37o;<i<p7k!Su4OL~_$^FeZVJC4qL4D7%OC@?G5%%^FN&?7=U&*f
zz$7h1!q`+^u}`?RNk-{UXJK;!Y?1*JX@@uiRd&l6EaE+e;cm{z?uo3Su~NITAKets
z2cANyP*i@>o7v|9UHj&mP1cfXtqk%9iX?AA;v@jl-OGty{VPr=WoUuPVe#__9Meyo
z#g<?L83F9uXfrrYb=)upFs~6y16bI~o`6<)tVKX{bGOj9$b3ykqzpUl@UL+g{zRb?
zJrK8oS^?rDL|AxXI(3heM-!J(#g*)?8Kh(|Tu3iv=ThAPEDl*LKVd9N88x#*cQ^d1
zLyXQKOMN|Qr1Q#kDqokxf=tVablC!bY)SEoBc9LB0gTP6*X!Ha`#U-{O)5jQTP~ny
zgZMfdlZFO~Jck95+jbA9)NgU9CYUP*55s@|n~Q2h{CiTrly)lXit%LvpgtR{GzQIo
zX5QNV4SQOWmt@)`%`!wzQ1KBWpVue$7YTqc1HSLy8~)G~;aT9O3c-1GiA9V9EY&vB
z_{f(;QIJdUf}W}Q-6KbUENL+f3IXm2(8?OhEOYtB2yI(vTB~83!n;ocr5uJFz3Xgf
zWNzT7NSEQi&X$9eLFTxV?OAB_$7ay*g868FiVN375Z10tixhm!w^#`&G9}~83^F;L
zno*GbFI&To*I!vUZu(<&&s*YfK^Ab19~UD4$Jl$5K|?`O?}#3~q__{g_0c4Dmf1O3
zwi^zsI}H06Q(-s?QWJ!nU<yT1J?p9cyn27fPKg((`<>G>Vf|gX-P4|CP>>KAQliqF
zK&CQ=r&Z(>pmqY?g1E}|D{}7No2ISRMNNj3UFGt51I0j`6HGAWh*e$_lLjvG?4CqW
zyu70rp|zbnX~Nw}d&>dwF-fzNI#3NB9s*ktGAeByKdqJ0ISV5<AJ6ZuCA?}ag->BF
zvimTxY(v6qUy+kMEZ8kakVRH7WG^a4YYlSI?|9kC#vatXg%O)Old)!Q2?G2D%*{5g
zAHZ8`3Td&w{KvI|7oyc|<~ZsAYnu|4j>hfm$u2y61-*)3g7POkiB|S1ra-h4^&^D(
z=3ygAxk`YP)o97V|La>bSMwhN4Z5DQX-u{8!eRk{wCm^nHVyBznX+VAA9=htfedK(
zvzch%3@E{20{3<{*%D<uLQw0A)5oCeKAj&(g4h4u!@rcG)ca-XXeSUz0%2TUkS#ff
z%k5yPbXC%0z}>wJ>Z29KabA*p2XK<Jle~#C15gb*VI}O+>A~e$@!SEIH%AN5W{@c0
z?|e!Mt+%1iJgiSoUV~eI9>>Yp@m<6i^2d{Qo0U+#Pl8rn6KK(IRzBW^E%GjSRK3pN
zMl;H#|6={mOZO9(c?CyhTV2Yi=y**DREX*iuW(<{+1D>GGf83_OKmNZ4mox_(RhNS
z637|RM|xmuL0U`dC`#gc^13jfnsCbMrzm4vc@}4LeZOL-S4uLVyU_+UiqYW`G0MQB
z*7%2|FHD%?bEY9@>=SRCM4IfRyMbUFZ&-w|g2swl4AT|4InBeNV?NszNPtqOqmgT&
z*`1?Y<$4z9on9Is)X7+A>J}+7eZXUbc0y<=NP->s89W_^b<PC%jMk>im~-_w`L-{r
zPD+L_vGWklG7lauId+L~38w)cmMloFqO9??Xi-V#E(VKoyq7x*H=B`vbrPPL&YhmL
z)NO3UhYfV)K(i_|Af%=+EneJ$RG!6a6b}v+HUU}XO9cutm#)|H@*bVTMKTmT(O}x_
z*ZDO!??a+kQ7WO}Fww`H-LGg*>mY{U{@<VugX9YXGO++37hw0R5bSjsMl=&O0I2_>
zkJ8}w3_9cM!)r6ZulTA9BxpjY@F(xY6>P<zBM$<U3L5qdCANngYdM~?#|51I`g#ES
zcZN{#DXYyNl8`XMKsxitkKA$Id7YIJGp>+NPjhcDUhn3X4H46xd1@fE8H9-#NG?dQ
zJ$<S{fou5JErm{;n1hr)Ujb?^w6E*a1P&STSjxx+QpkQ2(=kne!-JA%)ZyWc{N^!*
z`1Ri3vf?cTidY@{F2wt0jGI+bf$>9Xl)et~jm!J6`RrWvhuw=@(y*YxQWH<(j|ou@
zB}PRY{$PI6I*A8q?A6`&6e1+p6*O0mGr8c*c*^Wz0}g$BlE%HUGJonbcYif8S-f~A
z7?1;YLc8qq)OEEexF+k_MH-`!dw)Cz3h$)6UFowh-C{Ov&aNJhvBU4yk6VMQZm7Z;
zAJte|?Jg8)ATbR3%?E|qr3Z>I;OhL4@=FGIU=T)Fnx8WYVMz)`AFA&?%l^#nQGZGC
zhwH)6=$2su7xB>=!%a^BYN|EmJgsON`Hpp;gkq21TDYg*P015J8zc-Tc(Sj*@h!3s
z5~0CeSZpN7Zbvb2L7vbxv^pl8!2{jc%>9*Uo5LZ-36TV=rD+q4l*RNqc+*)*h1!FD
zj>c$PL0M8gwHdCCsoUro#%ddd%WubYJ{6-gg6rO>whwDxjd~S|_vYgFW?oZn^Fw@w
zT%3qx6+I|3W`e-i8JWAGgKC8N-H`Ev(bYKj;uAOxAYR!vA@eVOck!5Zr9sJSr`P50
zjX7YPgdTTf3<aO>$Py6yVLV}*V$SgZlT&k&kaehPx0$)`L1{b2YuokJ{QBi;waqo&
zs?T!(i?LQ5O=FeO8DIshr_f5Q7|Xeg>6e^8&qKl~$5m{8tdx1l(PTzyH8|nZG^}&0
z!5wmI3a$G*_&d*I1vHo@*O%05TVui9heC+miu%ZoT!WduM5bJ&W*-kn$;)&e!*E``
zDPvb(B+~UfrLqAX!6R2*Z>QfIiVY8Y0*h22T$qn6BM!qQYTPXed;KWKqsi8)n}8~N
zhmdKTSgi6A%&Pbo!g+Fwxay*z<{<+W<cFcU4FLqz$y2ZUfC;pg{-NGOn_TccrWyQ9
zZ0aWt=uxI+m$VR;*#o#qg)0#Xmu_ZtxJ7Z_><#;AgToRsx~4X4Nub#JYL&VRvfg?|
z?HJ3@Ue*591J;e*Lq^4#!@UJr%HDtFfvP-6L~r(=v(QZntGby@8B{*u!nQT#@>lKd
z8u8`)rEieb^CMI9UyZk;?*xQ)7oAR2PJk~QwOj+>&~&1S`W6)95}wZAd*&$4faK!}
ziTcc!_H?=0!K5_UcYmxT385Znf5MHqqUMWF4)*{6C6fWD1OPP%e~=DfHUD;~8QND>
zte`26@CHxhdb}oN2V5JLPd_SahJ@M*(yrg`*Fe2f<$x^~wqgOcIzD{#-N%?BCa>rz
zkyEXkmY>hgT9m17``}x`8e>koHEVBs0{OFzva8@aA2(@TZtkcbh<bcd+W)b#MA;;{
zzAhGp!@k+fNZ`N)Ga`y*bjmU%phkURMm%Vzy9n)rDr&f8<R_Hc9lF|p;~vi|3uK)2
zkV)ICaWz{}@qTW9uX0)6gX2P=tB*=hE9v4dq7C5h?76=tVc(;r2etxsAEZa0V%3B~
zJUQdh?OfR=E5}w|v*$F-^7W|b--~>EGr@x*%AGW!3p3;Rt{kJ6$Np~ib2=G>@$s)j
zqradvCJhm=UmWHLE?n+nCMyBfL=d#V%fPLgH*20y%Dg#%g8_YhuW~`q^Cx3aGlj+7
zrhGHDOk=qKocOh!@&V<yf}BAwv*#EsnJ1FzS#4rRH-#3Zh0c>PU}wq+rE8%(4r4(o
z{@%^zq56f?NvO5rzTDxS&bJ&60{d8z)7K()r-e6A*pX>BXKNGzRNG&&48(tScAe{P
z^B!6xL()sJq>U-xa%Q+M*saIpS=5{Njr*iu8Arf^D4GUZE$UitRhnJ@qBb3PzP2zT
za5S2&S+7<vD*P~UOtp|~#^hQKz`YGmBQtdqUhUG(CQklncYMy@sdBLjZ1M>*qTuk#
zjn=rT=*6#gKwoc#UFCO;N(-b^^MciSVFS&+_a(KmMBUYopRh%rpJ4KG@*f4+!vej)
z0+~O=%A3YZUmoSz^Q7ap-HMnGf1mZUa9bd)eqAZs$MNZ=Tg<A`_i?nlK2?iAzgFL5
z>J$8<S=6r4_+b>?HmIpvO9^NPKT4AAZ1<oDVUEOy!gh`CoF~{|qbZC%E?xxCKkvZQ
zZ*m_9GBdNB4w*cUWR@ey8Uie}apm>8gCF4*{rA2>SsuKM<;aTGj1~TzGnPLDZOqU8
z^B<fsZ6~8#lIO!uu3b(8tWCBM?EmWUNDYnrH~f@fh6tjl`ZizEqmFkWV%RI9<mXf2
zU?$)hk~XUYmTq|&9bImp78VxDm2#tw%Mgkq)SfPU*7-JuG0Kox#ybQ2+dR_Q25R_{
z5`>>?w-FMF5a{SF5PDr$*a6Md?);xaE43jU9`}m(-W3i3Ok|lq{F4;7<9ZSDc;wEk
z557uULYiVR5@7ENwNBHFXB@8<bP2F<BE1P&V<PBUN6x&4$(TDI-4T(Z=2}4SPjDEg
zCPrqxCs&slX%$T(qeOpH=QX7ov_t@y!E^s8dQFuGX^qf*=WT}Mrr&?AqXeT}i-j~u
z))UVy(No2|)qsrzHLN8^=QD!Z2L{gE<X{(*LU62hp#By^wNm_jKRkEXc@~Y*;(_I}
z&5_C_dv~m&{!A~*NdO_hGY4|Wo-s4!jax4jxzy?|Mux}sl)g#+|2AQ6l1!B!{hpV}
zudDNn<Fx9!S(*8|r4a>*Px#VS9G5sA@f1=uSy}~|Q;6SWe1*qNpoeQ+^24B)*nKBf
zBd^ppUJ@{8dEpqA3)dvzAf)>hRHf8ym?_wcRy`SQ+D9siP2;Qj?NU;Zc)rt3?RG)(
za@Pii*G)L3>9KhJyx6BeM#GbQ>ja>(1Uc*jICpUqMqT08a7#Jnoc338i*dWMc>&g4
z-tn!IRxC1p3U?-b`w+Xj0_nWXRp%6yo?Tduk=^u<Ly9$QyVZDT1jQ4%WGSY02WpHj
zKXQvvh!2K`=yVtqs!sA#=Y)XH%HZ7vgt>v89qU8++(l$~^H~~tQ550Nn;@yk6B(&q
ze<3$+XbNi~3WxeGHk^&*zc8tKp~&4*dT3iUa5~fZt;GDcWN+jZJ=9nT5c@nNKh0-e
z_CzWt$xH-_Gg>+WaaD&fxWErO=uVqkk|_X%a#fJuSzy&4<WC=IVj%+z%!Q3=E@?d5
zxxQTUP+!IaXV~Hpg=W$jIA*q1Nw@POT&U`uMQa0_TGxMXi^70h#*07MY9;u)bBe$9
zXg0`bMS;hXC2`tenqng)6&uc>=DxnaC;qlHel4$2`tnF5_B_^7oD|4XYhvNSSNB8$
z!tT-WzuW@iuIZoT7b@8LJATYOP9K8dTyTm8Rg{U|7A%Sz8;AC}4=t(qC^uWLNA(F4
zu)Eloj_X-}YS)F+d$8*U<uYVpdKG%W_xC&e-ghiM;r)D0I!XAt;G=Qs>ExR-ZQ)=z
zoe<Ed39O7oHj9lmG~();r?`gUGFPf{+n!~WRi&f@oECAj4H;s+*ja=e=6krUuCkY&
zap(QQc+~y~y7En+%eIc__nwEzX`E4DXN*DUgv6R|^}3=uo!G8lE7Zib2Wm!!nDzT*
zS*>5}ysqFql~m=>LbHlDg%waeJWxJD`Xl3><o~zG9(2`t8%K3)A1k5qItkwLBrqhT
z84ljA(X1dn8kwEU?mv`$VIaS9Q^Ki^oHQN~-IdRJQ|a$9CN(lfzk#U((V3JVrHY%1
z#^w=G>D)2?%z1{uDUk_?w}L11yb*#L1e-?$x4K8SLYa+y6!(lVupjVwjr3XZ>!!Se
z?ya-z?bTn4;Jp*>666%n+iS-KQ__OE&;VE?7h%pv=)<eBjH~=0zuD>7G(B;2+uNhX
zMn%`z3oQ!TYm^y~U9;HIg*)?2cS=v426B4O)xLkoES!i}%?u=~dX2wcP<bwa{^!n`
zvU99l@aF>-oWxH7kt(sY>}2#1TZM-7liZ&CKM8rpc*oyBkBflI-7PF%|1Lj#ncbDm
zl>i*U7RZvmdn1uXzIF7X6N!#}y1$K^Z!Ll+)RGL+x~#kY9SM~LEugP2^YUO8zUHT^
z6Y2pQJjla2v%x2f|Au(14g0{}z5X((cdG`7=<S`$ALid0unyxA<3_;Vnfk7+cULr5
z8KmgyH`Kl{I!zG?Xe#?=X6e`{>ueO-Dvm;zq(os~v87pBK^T*{$c_83bQx>h{nht6
zHi$^89wQ614GEu=*>n3=HK194dfQxvmWOwF<2E)QAhf~SYTH=`TNWhfhrD%`D=?M;
z7*wrp0_8L%T3(e(h#LO}j(RW)ndS_7o)<Cw%_FOpdC=2ME419&`V>cX?Jq;U`By-b
zq%z0ME0jp^W6Vpf6(r(&us`!-_^l!MAiYjsuDGLq4w9xdeg1Q?E)8)}0DF@Hi;Awm
zQ-hm-9cX82E6-Q{K3#Vqg^msX8THcW8;o}Dr$jLbD+l8yhm*Ho$V$AT(5300SI$A-
z?FCHUqxSY4IN;Xbg(3BLVvn66G5bQsOtN~zVJvT`J*jAsESTof^kU9`{s0sxw0z7|
zROBEa-<S4qoGuo7#+;l?#4ZOv>`*=xL<r>T_}jsSQ&a$(&yGXsP`|KTQy45AW!P9Z
zbuVVBEBMT3QnU{^^{Lk`x0DCPA<?}-FN$U@_v=N5UuqeoBlAXHEkM=UIj~%#hL(nk
z$VYwP{Lm`*66oR=^OB6Ta6Ul7qWCB5`DBTH@tD2QV=djaWDhEK@QR-wg9sk%)Lm6A
zOq;5;v^BipeUwe8G3VrCVI1%Al%oaIvhAEDQbEfj(qaU8?~kn^FRkI``SAK<47Tfx
z3B&^B-W;=o{RoH&b(C@xZ}ih#{|8<5^eK9c3zqL<W*}33arr4)_p}07rV{Oje@8-b
z0jtMk_No%)rJ<^W>d$xVNb_p_xVyMoD8gh@2-k*3%&GwVBOt&`aGC~UAafd+7xlg)
z)A>gwi%UctUJ62nQ1CJJ_5mfr;TxIu#$4>^&pJ;XKH{T0MV@40d3PE+eXj?}=jGb`
z_#+*UEJ4mA16AlJe4U&CKK*XnvH4-W+2AF5S03SOyU+Fob1xhARQ9uv!+EpIHEs8q
zbQ?Lp=gM^0MT%qKMN6_e?nU2fwlXkzmg@P$6?9H?tty6FNT{soGrw~R!T2V)RFEVg
zw|a!)MAOW|!L%EjeCjD9wGHA`sJX!iEp==eKh5;rb04$+v=x^M4y+dk{9v#K%yAQ&
zSqtO7LW`u|>vWu#Eh3*?A&7+MuN$YO(BJD@vidV<gm_>+E)_B=M$>k;1|T2E{WqP-
zIZcSeWMY+))m$MfbS^%HN%eUo&kT|2tA~7R;XEnu&V&Jc0|ri$>IY`EU6B?9*Q@{C
zKJbA+O@EAHRV4jIvu5l5&pVQ+d~OYO8${LlLfe)23&`qW?iv}EX-Pm7R&#gVTxoCD
z(b*YHP911hNz$l+%I4Xg@hg@ZTD00b<8LQp=0#P9x5$}=6>0WBOJp0a#_}7e<c8*`
zT(&t}`0%zbG5t^<{k_r*IHqQh2wKLpn@Oldfl&qtu_*Jpo83QcP$z)NW?q|58`3kv
zJj)*W0c){Igt(Lxd4MSt_<rrL|EH3&=O%}2^X$v|qEd9BhQ$}}1ODg(n@)zauK@86
zdXL4d&m>z}>tiI!0D(;#sLqIU;Wnc?#NhE24hbF<Oy@utOn@|Hlo2vWxsVxX5gecu
zN0gR7qX{}a#jh{~8U*%QLbR7{JA;mExsWYVOjZC#*Q9~hg-twv!RMMGz)Y;UL_ZW7
zSHKU)<9GKxg6?+SK}gqyoz~K7Rk2y{ElV+R{@qN!WWclcE+<~m;z2mBR&yQ!K%1%B
zD5J*c%dR%YCTh$KQy}*Xbmde@AOv+s-=@>;Eepub<e^dABM7(;+E6rT#0j3gLaQ}l
zURg4bS_nAbrM;>s?Uc&ddaFB>$kjA-it+6(1q5Q-u#XbD@5%S?c#lmUbLRR#dA-w(
zN-0IqL@58BKm0_K@?rhhfG+n#=RIGzYvV8$8Rc#K+>*iBec#;JM6)0gh;jg}ay=Wx
z{0f@Qyv_MJd}jKuH67H^6;=AvP!GP0TvG<oKNA<?p*}0)dZSc?3q+tYmFnlVH=FRQ
zK8I*_oi=Regv1{TEQIRVg;M_;q?xT-PvA2<6whr=!_<9)BbY@p)|CBhU%!t<p5;3;
zH?N~rPx+n?*7=)!tkKQ(MP=(JV$iG&lo|a#+5p!uEXfKDcSi*~exmwjv*lFE3KWeV
zOQ!aqVs82lHvR81VJVMm&v6`i7ZR?$?Jv$9ofpY57(b@YAsv>}oq|-mc+gYx^8Kg4
zg%IM)X+GHCqV=y21Y)dM6mwE{S;XXd4&vHS9c}_;TGZZ^8*|i&E3N{s{l=gzbh~ST
zy<ukVPR*fGgA5fWh{3lw$IK9TKG~$MwN1`3!Iy$H41)-HEqES&aHT5`rp7T2qMtiZ
zOObdb0qc&y;+WJ^mQKOk=)x?ME_X+Uqpv=#{UV_s77jcxY(cZtVF=!wI{8=cR&Oh%
zQ?08X!}PQNhi>8%kZF6sf&`ToFOEkYd|b@LLo%Ly0hL+Ca2kZO1SK)rF!OQ;dAsxA
zWS+b5gz18p7kQv<JU8e4=v8Xhnb)g)v!;iGCn*6T=Ksc<aU*|jnx4{KTEt5j`m`(n
zd1Vm1s0EBi^0M2copNO947S0#tj<+ocB(hbyF(vIm!dovW=`%=Ou4_$=jf-&zT$c%
z63lu#V0AW+C1lX1S>BADf1qJWpVXr#ceXH8OCxT=d~TrZh2hP2vnYUR=J?o+bJ@pd
zWr^obbj1Oahyjv_uYGIs{<lcMRR@NoPLKDv^R=Z5aVECCFSs#JPQo2ivJ5w}@iol3
zBr>l*y**F(2ZzcP4lExX8k4ZUGFr^m3<UFV^tv%Z!pGq<@HkDNvf4kUJdNkdZrfTe
zM1}PAAhFYyAT9LS_*C{cEE8h|E4W{=F;m{Ll{lDWy!bJ#RJ#S41dP9S1@v@P?^F6_
zg2;X{xs^e10W%7gFN3h{S(i7<y>=3^;)e=I=-4g&JAp*k)Mb8^$pq{XQ0Y6|-Lmk}
z-!z~U;CWmoKbJtmyvyOd74a6MkDBj^Sf!<~2PP2$voKj~G*z0mL}DyxBUC+qEZ5kB
zIW@~%{W~ix$+<>S7!8l@v{RZ&RwHnMT^l$SsuIHf41CEn)<<4RubPw%uJ9}V-9&bx
zDZaYjxmOT4Dba9EZtGAevQjTZ(e4N4`TT^p-2m{{Rdda+=fE)M{viMo>y%;8)*3qe
z0!_o<1A;Paw1e;2{LkchQYq4v!$l8;N_1VW_}%zUL1z72A`mh*!*f5;tm}T|2%W^S
zULb{dRLMO;3+t>bxQC#;OGYsL?5MWd`qM*Y!CQH<tEm4Mg7a6_bO0vq)Pj-XX?p56
z_jKxJ;jX?g2~hV9>-VRl*~6ii$ksQY9!!KOP~m{9vhd{xZ2xOD%0C%_PhUqW!w1Os
z+7yCgsJM#Vntao>{roK1yg3-<)5&acH<cYy!y%(eV;jng6ev{XaZ9~-ozG%{2Je~^
zHY7ipJ!@aTy^0R-Sxr?t5MzZ_F9yIypitn-c^oIbTFYWEvKX*xY@=9vLE$M7bZum5
z`p+;HQt(vFD*#VCeIB3Hd3=w6p*8kmZdZJLj!t%f&SR+GS&FOr2{v5vx-%eJ9XGp{
z(C1)~mVSH!_4ic8XTkZu<HqiO@UxBXr2N^IBgfXj4;G&HShPsS8pCI9S@nnI7>u5w
zf?Q7!&vxdR?d-4#Jn2@DS}>Lzp(*~3q4h?_tNcysxBJ??1Def2JIX4{mFBKz76<gq
z|9391XK_q;!LWUaLTfYgXHfGJ6uL_6a5{?A9Uf<Kx2NiS5ra9;2CVF5==7In{9g+c
zZDw2l{kg~j^nsoG(hX8#F{Ho1xnC`A44CsdpbVdEusO8w_GfOXwpo6CF)dbfK{0lV
zS8cxtAskyxyf7Hs(i8?^SWR71r)Oj1a=8E`^uQgJ31DfW8L=Abl>(5q>S!Ux&i8bJ
z&z!E4Kb9n@{1O~M5kJ?KafmxWwL4BxzUS2qcBfDj(?Jkj)|||QPZnk}`a$bI|MRsf
zTn!$BJ!=2xy(ea>a4Fk-B`((Bc!j2RB03^uHh8OECKy_3UG3^c;sr^*a9-F-74@*O
z)6_B#f5xwaO8!k6^p2B2UuEe-Ymb^=Cc6On58&j&ye>*ws?b@@sV<`(M<9DVUoF!s
zU@%sE9%ZSeR%bk^YKtgaZ9t>7YCvx-RP^#|ISa;xjyd0zP*|COh3D(4IHjfQ$Ggt=
z{N&8wisPfK-h>zn2{wKrwVxNQ_eZaQ^%UvaN}4hDKLk();r~?XSu^5SffAbMAZ2;@
z?O5=bd$X_Y4QuQ;Z@!2AjB}$#0I=j5MMq-8BSdpQWC=vDUllKqseUMtAe_~<U3;OE
z6{J;I$W(exi-7~_E6{x4-!OppQ;0=PQ&nB@k-75q^<{rG=3c-$;jF@><uE+Zd4a%x
z_^-VwNg$1Uvnp7`kZn%{8rH;Uqb%4fd4jySE>jzAa7NGc38XBmq)4+`tiak?S3KSo
z-)d~be_R5TmZ1fx9{A$5`}9<ui39nawdqBx!}3?yrE3J8U)j4YgKV(3*e*e=79OvE
z{h}s+{|Uy#J|$r^A<~U0qM|{Zg-03B5+7ef@P=_6ddN=EyTeDFvHJ$BQCoFSxtA~{
z2)j9)eRPA?rP-?zHLYRQpehZ~>syO#s}C<NF$BqSVmC!uA(Z^TmkjJ$-$yEbb)~ZU
z4Fj+z_e;t7UJU(#v!)%wSq*yB?udRlu2rev1Q`~|#c<&1V5)6hb_;}ont=%DCujo0
z5*h2?gHAw1q*)pk>r$+H@p#}K$ko9i);>H~iUH$96R(A}x#&Ev$<8mw0Z@$>5!&-w
zB%^M~KywNhbxGZetAHK{=03ZOqEM1|67RSp7a%^R4FU~^qqyFK*l)>@mg2-gq#I1p
zN_f4HnTg&8lEm^I2n9#Mb$La*cpf$}s{~2Pl7YmRC&p{Xk@2js)UjEa;s;Ycvt2|y
z1krCAr{lbPRrzz_{k`$x?-I(bL@nvP`R9+wEEST+50TKRzKJ}6V^1s)D{auWD6b=k
z)8kh=X3I73gKI4K@5js_sH7*F#~^cHSYAh445#WX9IwcujC7n>N{P`NO#FWrCP^u$
z(Df0=3qI(Bt$BnuB%;MlRw~_0L>6yfOv@wGQ$(6Bg3AFJ6I|O)`qT*HFVhbx<REk5
z|6mhrf;TnEMPk|KB6M)UQ8NFXc6g6yLA36glyF*&9lx8J>!RH8fDw0g9izP5VnG@C
zRq>eh)#cTrE89A?^p3uzGMOzpd#<)C|Hi5wpM{~OLV_^}s=0V~ZN6Y4T-}t41Q7*3
zaEOHAm%Z56t4ZNy!-%cs!(AbBZYNSj#gH#xW+%yeDAxaPLr2?7m{=GG>LSrE@z*Gi
zR)VqBFNO3ry5Dc1J!W^rXF-Y`a+W;VR&}`SnMGDp+lq*z6D>*Iq_sH9XVT4S3`ulo
zxrmJ8)2Jl1y5pyiT_mjEtmq*lo5`eN)%O0@gy7n{$vd?4T;)GkazJn-S?7j#5t{Dh
zt4wj54MkwK)2~*XLNJhvY7<DjeTrPg6Ba0peRCV((M^W-``273SvKTzWffc_78VG%
z_Wc^ya67DFciSgjEaH;{6haV6IrAIwDePC&sTw;&Ka6-<*8kNBd>Uso;L?JPw<Uw)
zYxwE#&RI44V?Q?}cI>+~(56?-x~@rkexHH5b>HEh1f=v%Us#U=jb)RxsDdy@wVJ0H
zpHB)!yyd)N_J#PRI@L|v3pe*7Yn@*|oP!Q0U+{{ydtUMg@KlKh=7&AuJYbcK0@t9L
zW1XHX<$76Ux_@z`!U^BwIZDFCmnR{?wjBGwS!nN}Z}v8}@U|e5Ir59edXUyj8k0Y0
z+x~deR;XMP9FpI_Ztuvn)Df%l+{3<lc?$*C!=Aej3&Ja_6Rx|#U$);z=hS1ZH7%p>
zm6n}j|4?4QTD|r(Tp9BSw~;+P(DouoZ}vQ4)4RNo__Q5WK)qkry>){x#mMzEV;(Q%
z#5tXi#<jU7X-!oKjs{Ag%D)@qV(7AP!3(W@mr+nUyPQJ-Bp<NYcDuw#F)_W69w}yO
zt?-*40P(lO5Fs}yB9HqIK6}_vGqv%*NxK`c!esM^>F9xzc`C}p#6RLVA|-AJ*<IpH
zth6xA@l@iL*8nvvKzUAI>CadkED{5k#Ga1QMmRn4Iw&$NjJ&EE-VuquJ+AT^GZ8-L
z@?jw{Z3O`<K*l-m)48!?lP^BEu81^pH-L!){`~Sc>=RJctL_k`b-3OnsRL3W2egI_
zi*;o0oYBa(*n0wXV5Vxw%6`eEajRn0wFNNH-Ix-|23X(20=bm|M<x(RK(C{dVFhVP
zs%q<f9U@<y(e*Yrd!*ZM5FU64UP9lu+{<<vKe<uEhG2&x>a!!e3U6`R5M;Ew@jUsT
zYlc0|A=dXmr20aZ>dQY8kg2wfhH(7;ce-c56=;vR@1m4`YYE<rNQI&e@jU_?e;cCy
zSOpESDzR4S#q+u`2+rzy%pkWs0~VhGY`(o<EYn6SYz?>)6w7#(KGIY-d)~3B0anys
zFVC7qVE(p54qa@fPm{SwG%jR$K&mC4V=o4NjUvfI_*S^_u()ap?R~Mn+1zZ?58ogV
zOC~v%9fI64*7J<pc)++u+ye_{h<31Jcu7^I0-8nU1(2q>eP)za<|{L(od&HKsX1PZ
zcM=s6ba_PV@yo3fyc!}2^*dI{wsqa$mSc0CNblmvPNlESfg(#h2Dx|Xn$8)ne{Abj
z(UOh)FewU?o7p6yAGwb-#Fi|tRMLq4ge3?j#K!{62WVFDXpUA$ZlyT$dF-Mtkm6|d
z_`OuC(5d*%q)`sD!8xg03@JZgh*IcGu25uKcCR{U<Kgk|3_Zo7T2U3m;=^6LDAu(e
zLW^4^3(kINLnQoU^{Jar>9=Ety&K3eJNak<#EZvkeFHN4nf38g^nf)0I?F77*76;B
zgpzwLk4-4w`nKD|S1Oy;Nu>`Q+M_U&!AuKrnQxoS-2q&6fHhdY6?ovA=7BbexJTl(
zNH|(Tqzk44zSfB+G}P=Dkxa>vK8;@1Yu5D(k&_v*K`M;h%+CzbE6AfK&LSPtbN+8|
zYhRg3G0#56kVMvS9@bY---qC&-1EELZ7EPgV4jKCKBk%l%sTy^mOTa%5t#a<95K@b
ziv@f7PA>Ve0zVcMspU`Q>am@MhgI)vgohW=0h4kXU$$*5IsLZ6ZKsUxX7!*(pePQ#
z)i8mRc7O-zNb*Amcr!tB{JN@SBt<r4mk01Aef46}2QXE&5L7$@U+4+5E@nj*dRc^1
zDJIA}Y9_?8CTAenGRr;x{v&Rw70~^&pn!EGB35ntRuowDaDk4+(_arJtgE!NJ(WST
zbexm;JVLKBw;9i<o6^6E-_!SM1Par&D~q;xuHl^Q`#b{U=Ckx2-+)4li0xKSm7wG4
zxBQsHh!ZkTZxRZ1c|{qtWwrC@ll!;5V|h38-Y&6+DuTg!8BWP+){8Gx7y3Vpn7cwD
z6n}2IgdQpP*1;%jc=G7(B6`?^xhp|azMou(d7#T;d{IFeV)aoqX^C3~yojEI(5Z;g
zuwezFL=F8i$k>9xoJFpVwK64{ke=@GpkOyJb8yG|AWiBJKk*Q){F@*6QpL)I+`SP(
zk0v|Zo&GAi)q+Wf3H9_0J}{QP_+G9fO10wHng^(~bC5)|zz&$|>dT?x2$%(ZRY5}P
zD`f@a2G-wz3gW;$1CO-#qlaadjXVYh_91qcR_25*6tlK`Qf#Niz){v|L`HE!sAqE#
zo!2mgYdot_r#~&xoV~)o{sUGRzv-y5HbX;nPwST>bm?d&Y8xaR(l1ojJA#^z97O~o
z+lo=Q>j7MBwRbU0wzbswo(Pxo_A;uoJ_&C99G5(IwdH6-G$q%^NbRh1J#?q;Ok3g}
z!H^I@L{w-n1gQm1k-8f<NgL<50;t-x?j?Q_(Aq>5Okp={EzjQVvwFP>T<{JeDZ)Qr
z-matqAobNr2GNmXJUYBKK_C+B1CzSVbCU#t#VNB2sTIt=21LKTYI78|Mgp7_j3n>q
zr)RWQbcZ^^EO^~4KqHd)HC+{NYbcfl38FM$61uPc*c?h*eS2klL5UV%;QA7Vm5q5>
zB?Z{ngTlggC|uFYab6MaSGPae5^h=DIP5L^4Qxf)Kvi=;dKGDov+c9vy2I697UW<A
z5`by*vMv(Y$aQa0yqb`!)uvmK1U0WJR+t?@Wgq%GPGW>D*xHE-uMkW~?WR8nHC1By
zz(x7m=uD0=4X8f$NnZ72-WumaGVNhqDUB3Qln20zeCWk`H9`1i@8gkHG|&7m0LReu
zoEt#UR-0tIwLf4Z(C_neDr(|>zX$&=Y#0jqi_M3zJEg_8fvQJ)6{=>mW6AVE1Y0Vf
z|7tt0{LL`rKCkL^IwGUvx2!0)$8`A><|~(wKqmEE4^UqED1oHX0?7`kk8sy>{O*=d
zsvRbnJDr>homZQ=1Fne>cAO3Et429_lg<?A^zX-dWuE)!PM-p+HKTfDiGSMZCB;W2
z6m)}bSy)m_8?@{QH)j=(#E4At8GwMK^k?V&m2fBY?q`HwtId@g9xgl!3U)y#u^DU|
zKnq7C;bwNcSYuAq+V5E<r5vrF(s6#@8Q+M<)dI2OT>=QBPtGI}sM^ucxrT9GHk=X=
zS^2td)(#UEe5mxmsRfJeF9fUw{#74+LU<u9q&s}93vJRt#Ly5P-f+{UW{1DEVyNub
z0prP%X_YOoOoe!GygPan(l-IQ7-Oq=R!sUO;jlDzLJ^$(YYtYaYhbVm8JBG(7pTM-
zz?q2J{kGOy#jkR$AEe9d0v!`Vrp>NadfE>DIuT?0VNH_CW%3E?GVcFtxkxa4zImyg
z`1!0)Z*ckHVCIC@l38ih$b8V~WR1lIcw6wn*yOZlMmT$27d&#!laZ29he!DflMj=X
zZ?<vVI=4%p1D51F4YltssftGr)a5ElXcIpE@H#i)Q!;8Jw|u!Z^TkOFK~48NbV3OU
zNKsnZ4(tv_Fs^){Re<Cxhj}(+gX{U2yR@l2#j<Vc!86<ZSvOJx^lCDMUhD$E6}*U&
zNhO*B!o{?5ao0PPtbtacC>M<t@prO&5U*I?ItKufpyF}`ZJ~Ij&9`Jk6r3bNVFCpv
zGh7R2RHMNQAN^tJE4!RwsGD0h=yLe!HgN2@`_YZmXKL`^Q5QPa@r*wholAQPyC9CF
z)_1Td+laP6PBEX72X0ySv{gWZEjS&F`wfWc=D|<gj3rrh8m?jJP$#vlQt`cfMFxEh
zQ8Kw<rL^uPUR6d8{-Is3G9z54?zJMZNrJjnw*_$|wRyqY5xo$Bf$Z(IFCwl!dt0=2
z1{XG-y<bGesx{@~Co&{5Bdd`ww+*v)8)0}%x38r?1C<k|XOm>g=sw*eoSVqZ5ge;2
z_YiBm!nHi8R|!lLP&H@zkyZu-j6Z%{ZIe8@sS`1nWSGW>S8)D(g$C`c>mGSXi*tz>
zxc0tmZf15CCYR~0pYj!(9pZ>`hW*(bsqPhZG^zO@v^U;7D-<|CpeB{D;v$z1s9Wkj
zx>b)LX8rCtz8nu-0FJ;R_|EUC8RYLE47!|sft6`vc?s-IPFD(bRh$UcaGMm*|6wpU
z6jfCt|3fE(w&!d!4rK0q|GEQjFw8`;4$O0jdbBMVVU=Jkdw=uL+0Q&%Hl5f)AI4Y2
zg^HT*UBKhNTw0=gD#5nNlTvpLr)rtLI~koqSpqU#7uTs<5F*XFIE)BVYQOnNrmnpO
zk`SO*l0`(eYGQn)L-1K8a>+QDepUv+x8(oDHyoc1TL1ugsUhGH0RTZi{uKbiM)W8*
z@|f(z^Al8>Cj_o}aRvQgh?8E)kbn$(jw%A(0$US3Cs0Ph39HTF6K*mx$0Tr+?_1oo
ztv#Wq$ttecABM)T;3+{rBq8N3k5@HGuVjfS)Nu)<Xftv}1bzEEA+zVFN@7{)3+m1K
zN3Vwn;l4{=d<q#N628Ei-kbuG$L_tl?+W{>bZ*@nQIu4<II}Pg31kP!L(JNwmy2=_
z_Xj$KgpBx6)|9igWl^s}w<k4#S|+W)mJq-g-M;DY6GNF9izVTxwHMMO+7u+!HFWiS
zJCQoJP9p=-#1_Ka=-g#-tr?o;Achbyvr{^i$t?TKXJoipOfv_cW5|q!td-TzIKdGU
z)SKDM{+|;S@47D|AOTqN+E*z14F#w{O`>wKV|gKvO*UJfD+^C(>U*bq6YmP}=L}G8
ziTn8nh^e|K8yTUe*1M>hw{&JhDB}ssg4-OTi-)_G-_R4Xe-Gg6503ue1z|@p6Ox3&
zs7Y71GkyjiN{kjf3{tM3JmFAwgi*Zcwg&>;Z0r#E$==GeW+Ax5(r)PD+r1}9uS@(n
z0&vQY;B%JewLTznX*Fj}{!!y61e&ZJElI&5i(z`2;{yk6qZ)WQaEosWyARDBLkcO=
z$l%Ulgj}yv`NKsaKywYsGdtovwIv~D`c{+}bNH{Phl<bNzU+hb!`Wqp-!XU9w93_j
z>&6H3up~t24D^!n)3V?2P%xs_51KjG4e7>n40EBg@ROq+AEh`<pV?|hpPkal6+hQf
zM<KtG3s{Lg@4B3FL4G6rI@mmVu);t}L0T*pP33VV>De^?#mx`89@bzY)Lxl6P0-O?
zdvCi@41P7Y{~+5u3gWtq6|!btjUaa(2e&z*PJ_03Y!;)s>LGa06r;Ii)4XcA^k=u0
zrbFx=Gt#ebf4|@KNdM!uV?IMN9iqlT`MM%g(g<uHr#?Qnp2w%R99z_E_&f35znoRB
zQ?!&Qr<!!8XuJx?Y&CjmOU@!$()2F*QUFgEVGb$i%|W(wrncy5Xuhp1)AexNLVyq@
zz8TO=*fS))snBkT$5kKI?iU*tDI72bs!`aY{CpKcGi*{svtjN$c?AjE5l-4hi|6#m
zbk1F(9?8{(NbyrY@BGic!r*HlHkYLVQt<SV8KffFno~K<W}e<2U^O<i4{tQ@xyl4h
z>d_?WL+X+OV!^RNY^=>Y6q(`EO{f%s#~7NaFB9o0cOba%!;FvPi979%evYY*me%>c
z@)9KL;&qz`s2kwd9x<$K%vN=Sv&Y~}jZX0uenpyQgNdxZe5eU)0KVZOjFF*>Sd3&q
zj*5{OPj!Nq3NLqc%R?-O?@j5Fux}W6>)9-~vjypgk`w2Qf+*@Y7XUD+YLGLpumQze
z0dOBH|M>APe~X*nETBIcP><C(m1To-KegC8F6oL3OZ~9Wxohk``hrVIBvv=bv$NF6
z@5S^kl@Y{5ni}ijdJY{|5H2~0Clq1g>xt)b#YPOg2iKY1fCXIp3+0)8859E$mBM~Q
z4%38K<aL-L07>EhEpxLQ97~Dq#Ry50R2+)v#Wd5M;+~hyMYi%!Vxa@~VB_@Yt$q{v
z@6Rpi+PGLH_Wrg2GSD!%UGxw6z`m(i%A(>Vf8v<EQ5Mx_rc_p80BB)N2ObJ7Q;P<6
zxxAD)Jn8^be=p>*+8s_(s;>xcod8e(!S<XEfCjf*-^x*9S7Gi0X6BbDb_Quq1S8T(
z9)IPzV%S=2ND>Uwcq5L$#<U~^b^Ib(JU+2^F>EQKdJ;8kuI+U8cIz<w2J)UcA9y_f
zdQO7sV0j>cKAVe+S8PQ~4Q!JNS3~iTWWRM?ND{W>qtnTTaf4MlR64mJ5+A)foXO*s
z@X5pOeQ^EqZTi6}+N7uBlM=Q43AG;67xUjFdAdYke&5FBER!vV5PTfAE=b%vtWT93
zn?%m+@00Pbu+M5i545Ru|H=Ldy;$|*tXf#wQ1c-u=(D#IR=~&xqcAQd_)2fiso?jz
zHkw>@Z0xuVl4p#BPCP5#yzu7y_}hLL$K<)>9tgt@&z5Fx1+!{DmUoupTmRs2;3e*;
zX>?|=y3&a4LNwNQe2%{bl0bSBMKn!3R~7r6RCI|AHc*RYGvyU;QrZdYkB;$auLTjI
ze+7V7)VUlW1D{TmU17JnMY0D{<76Kky|Y`C34dS02;<ymc9_`XnzPgrllt>6lQT9C
z=uI#ob@*^{Bbs%BI&f_0wJgH9jr!}U)${h3Yj0@K%6LE-FeBY7d=icggW)2R3N_vq
z6|S&qx$#WryK$05(d_q<hCb^oZ1d!T=G=GdADxta_!0pc-agecqO|FRyr{`|te)Wi
zt6T59=W<sH8_7%BbSTcNCjQErAQ@l9BbJDRxyMdT58d^{?-&n^?_9xi60)V%w?{n7
z^uA61S?hEqh`gqyCHm1AVV&)PDug3&&b@=xfd9-_t(Mz&($+JMwcc~@$&i;Q8DQ4A
zU*046E>R#`dd$Nz1F|212DZ%jC~-TyfXGV2T!?{p6vQ}7FaULO>UK_BB2d~Lnf}Y?
zVwx{7cLg?q&<??S)vT#PYy+*a2|6^0!EgnA)e}j>7lt1VrAOXdW|fbC9O+^J)fk#!
zYyd!{XXI+Q%H2uBdDfn_DT~-U+u^{Q59hWD(=vP<>i)sm94_aHdNEuwWUOncN#XX6
z0;K951NraoiS<H&{I?zqM7N(GKEy3zZ^3p$>i~PT6ROeg6KH>FJ7;?6IH{d2rW?K%
zQ3!wsojK6_)wns?QS3j1oL*7U6id@{z~P)4l4_}t1h4#0)Lhh}R+IhZAb0>3R{^(_
zN}jy{cM5S38Xf>kK(xQcM!e2z?uRD2cxscMgmrT?S;g5;a@HlgNNh4gG{7c<*bpA8
zwH3hD&`p9t87lr9y}Q7hzC-gGMo_P=5UEW8kTJNk&+dz=n9HTA*hnv1E4C47g^joZ
z*DZ*K8v#NCc9_CV|6VyWu%J*Q`&oK0UL^4b8OnIhg}qPb$@g6mG>w0AvL!^K#L8EA
zwvon6ipzh+20r555+_DZ;n4%ssg3LtQ2kVMgVy59AouZ;;ockV83*cpm#9;%eaF*C
zyXM=rMj7;c(Xr)YDre370G{YHz3XE>M;3neJFp_6t^k0DYj@h7^89}o+C7rcX1{2=
zA121w;H%pB8lCK2E)sv3fH{YW6vi+AVVjc5N0;PpXNFf_uHf@8;4cpy7tjX2z~*?U
z4NP>dnC!lUZFvl#{r1;(UtM&0pd7CUt7svz*GLxGs~K&+r`1MLU<U1Ii=C}Z<t6IM
zF6nz2>1LhC;xQ)uDXFTRV~_DE2x4uP5?lMMLW$DPFzBSaktmu!>1UpZ$c~u`z#(3K
zUM;ji2C#;$O6bJJET&6?4fLCWoM&GpS8TeRRmCtbf#SFrF#%73uTdhgxayuSSN_b7
zb<GfU(pU(BF&jLgX3@1y(fDb~iic<{3qUEg*)@0|meFA8oXw&ClgWwwXdG7HdWgyi
zn#G7GNhT8)1uU^1m2)tgpH+H?>XpO45{~z~qa|hM7}z)84SZTz!m;AC4z)eV9`}^z
zwR;}N3cJzNrwpAUb7?H@j%=~acvAL^-ZzcH{)U;I%V}J*I4%TzH98b5#zSZj=^w5~
zIWP5k;dh~}okKk~w_EhSFzKq&UdFAwiu-Z1K%F(~r@O$Uy#`D;&x`gwW<sAO^PD-b
zou)OBgOaf86DdMi`%Y~Httnii`%a;&WPvDK;3FRckec>VA^lsy<PV;)jokT1Ck(`{
zFVho5JzC?>NTubd&9TJuzfAQuM@VCVvJQ|x?bbkak)sbV*}ZdwJ;Jg_y9N(Y$0Vb-
zFXJX?w%o9|Zw2A7W4+$k1`I0FpZi(km;?(a|7r|-8Rn`DCZXGLdESol6!Q3&MfDVR
zc=TiO126HSo6*tw;D6WxS)Yq;27(NOku)J#j}wg|k(m>T^t{~_&Dl2uL5c(*r>_vk
zC;fN*##8<6%_KG^rwjb*ERGo_t`0kwvtx*aELx?}bZLlHZQ>Kw_1#)h>}2y7w@%+O
z9X^tRn@bS&=@yTQ+Hcq|#!tYhr8JLnuBmp}B>O2&vo*nPsX5&7ZbrbKBgcjGGw9PC
zjwK-A^YfBml_$Z9jd#yp_x%w-pP078wtIll%Q*=z^ufD$x}=D%EalG^Ppj|VQW=Mo
zw+I9#T?>6y8`|NL>K_DbO1}t@d@Fu-50E@F(0D(#qB>@uY=pus4SGTQpPemSTezVR
zo0dQv1Ko*V`heqoeq{n~p%YvodG1sM7OOtU_3MoJw|uczc%W$;kLh?p7Gw5HLVCKV
z2&t2@8-@w|_YhiW!XKFwb%KL7hOC0B!LRRk28ac<O$>pOB~>?`_4q1He(YWisZ*$=
zr-hn*QEJjjwtYpp-;~eQM=F+15cAzGW|_|#Jz79dj>aDbfUQgtF-8D7%V49M*KzD2
zb-N*mK!oxQt4ufIyuebPqs18r;k~FY!qdYH)nC|;=e1JnT$d|M&yCK_eRLEM7#-#T
zcM!8>YWC&N>&jx$ATq7G=S5~&b`;XQb6nYJmPqpuv(z}^umtnt<%2>q!BXCBzYhx0
z?%Q(GqC`fV*H$s$MK<Bg+8$+M<8r|){~>?PQaL^HG=tJuF)S&Ehb(fT9gbtoU|w;2
z4z$$#FR!<Yr|8<9?r`VY7T-T`5?keoBZ90RKbF{qZQ)AUP<>^>A^pN$E9M?4d3iLi
z$Wb)O7C!-2Ytk76(v}uiGW^CQx1ML*MGr%GgqeSv`n)!(-etMbaxPH=|2R1KKT_Yr
z=tUJe92y8_<$5|8-{e^qR0;M0-SA4!_nyL@==gu48s)mCT;}DJL44r&Cb`wGeCnTM
zGnpi;9iM+*@i^*LbkJF;h9uDrq@HtrRV6Th;3{h~KeG>%J?Vd3N&C5Zjn0tl_+B4s
z(dwcR%O#1UX5|}L=(b#{e>hORY|3mB?5%+M3OmcQyK4=uf<95fWOncvPj9Yj6vUj^
zl%K_}XmA*|B+i3ZoOEiO_+2FZuKtA%U3{^n!(-#56O<Z`Pyz(H9da<F9iM3@0HF48
zL4H5Lgi01=(p8wkA?+Xp*?i(0C2!xXUA+sHs(B2315*ea`omA4Ick&<HSzPIu{p)$
z^yhJ0-!fMHft!o|0s_YDMau7-Sj{Ov@H`?Lf1zEv!y<(NafgmzqW%gojJ-74xrH9B
z2Q#1}1@@FlVM*O5{a?fwCWkI@>edF*h*~vrkjuxTok$0bRY^vl;jIAy#{-!q_@)L+
zF2#!^9!iQV1()EjcN{LMTn4xq^fDuKtVl^Lqw$<!#>z3*2k-ufmi7xEp|fp(@`?nz
zK5mN&TF=-Y_gbd}lRvqWa-GNp=4Q}Za4x+vEmLuL9Bq}#jM&g#l`k48)5ds+Pb2Kx
zA>$KRCHyMfAysoR<66uAdwZOAijJWiCw`&uXlEdJQ+CDVN&o=BtCR)ls}?zs3Vts-
zxZ5~=p8U-|pigaWZ5&N8^0};#^N{|wTSMk`<)V`IGlm|UNl_RAh4-rlhBBgbH@q>i
z1oCs9F3={q@~NhFKdu;{4*CDab4GfhUDcKGlG^dWu1Zd@1{XOzUv5{G%@qIt*FgtW
zk(w11>psnA;nam7y&sfuX3<mEg#g-~`E=qgB5Tf!qXGB+CMU4TI8-@6D;9%T9`~sy
zbH`Ok5tS@hFd>qum-nObReT8tqpS@AN@N30N<6Uf9AU{L+U}5VWo@=J0STB7ldZA(
z({$GWvd#P_v~z;Jh2@(@UIo+15oeJ&H;kwXQx9M#;5V0<cLSm9Zx!1Vun>2-dZgB@
ze#gEfqZx#%=2`Hm#D6L@ojx67X$Z>k`dA;bLRyIh2*>CH0II0<!^}%`+lY=dk&M^K
z+J8Z9q&0UeKYm=|)=sGCKw^Y^vY6#gD69QPhI-G`CAXs&oLV0(BeWuPTd>VfL>lE$
z!_&GU+&oBo(?(3DWfiQdSV^D*V^-?334+e9lIiOO%Q5gyDwW0&qn>D(ue8^TA}D+m
z9FjdaEi!(lpCE6(Lc-s5%n>T~XeS>tR%;Oaht!F99>%yoO8Qu%r)L*iW0N!6fz*;B
za_&*rX)evBd=6xd{UH8=GJT+I#YvXCwE%8)khxVqm7whtNOyO{9w0Mi3clfahE>6%
zbC#l`ab3AN-{+E-fDNGo6!nJcJiM2wl5c?*z#1)w<m!)9iArOi-ke?VAnMUZ*ICC!
zGUvg5{}PyCeBV0(6xtyST!f?h0bq9N9XsRXk0qLOR9rx<no=WTZ|>$?)UCc?1L$K4
zT^4R3^}*I(ekv=%L%gY|35YDYBO$8+Hvj|dCgYYs?hCiX7v_ni6`94-(#hN;Ed3MC
zBZ^VbfT2|06*{#=_fi(BYa}zTai_XyQX(<X#$`H2C3w8b?$HhpH10~A;w~F-(jexW
zk9Pi1?bk&ph8b9V`x>$L_#x~+ivV8LoD)_(xU!C$87%R<G<W$zGEahd-B&q-gJLFB
zO+k$PI!y|k8PeOnw+Zdcb}A?T{w;{32IczxxM=cFVpKdPn}<Zd(K3v{(Ymhq>Kh(8
z?x?{RkPRxz4J6)q(Ytq%;v!IQ0OS^#VUV8@L_iz@&gj1<Vu`MS-gv6XCL4!E#b2eE
zKBA}5>Ax!@mK`H^SgnT8fT@^<(ga%P={vp(=9))&WBJkd15<r?gAfZ>m_#6vU4N^2
zom=?`HP0+7wgdZe+H+jd6ZCZi8MV-UQbxO4q`5OD&*d-SO`>>+e>=T-@39*JvFZt3
zcR`FI*!5s~EX6NQ`U7x{n?Q#j%Ej&3>M#>`3#oGeqC=w}ceD-!;Q~G$d{V0&9ba-a
z<8V47z**G-d4dDfWFEE8k1I=yESw5J00J`sdIY`?QT>Bgs9JqHR;Bff-3`lb`OsP5
z;-jQcTA$a|4P?F_F@oT)2#jehMEy8c>6nt<3WoZiR4EC8OYKECIKsYO;}vbLyTxn^
zB3>hlr)3R({UI|7y2>Uh`{`5OGjeX06HxTlKGxOgcN7_FX-kH2=cwqQM+fJl&1`U|
zrarf7*$$5};G9O1hLnCD^%NHY$Sd3-o1KX(`6PoL5+ImE|MKrl(A)qin|E1d$a{dh
ze=MNiVdcH*>k-e2An6Y5+WU#q{UG%Z@^>bzMyJW^=;n=;XbWGRw`+D?7^}h8r=o3z
z2}TQ-5_tS9pW72Ohd)KvAHCQwHTlah<7$)V&1%j-k8vMZH!aFa#=#f(Eva=%EX0Qv
z%#InAT2swZU4~IZ*~v8=uRLfgGx0rt_p4^@2DwuB&T?;?Ys0mj`oI(5+e~G{#TEsf
z%o@S?D{cSr$y~F`+WnY;G|$*D@mB-^52Sg?tp`qeG8mM|;V0^?^m0TvG+VgGZ4egy
zUi+Ri@w;DFuZA7>Z6J@SlPb>qY4O_X>PeGGI_9OdW<mmRZH$Oyyu$l)_8TrD6=T4W
zD8_%!%aRAKFt>ij6ZW-e8dEkiB|G94ahq~*E5O4@=CrBrV6JeD<H0O_d#k~%NeMcy
zB|2Uz0!@iJ#xEbU`3l!XVEDVvrguMV4z$G<RFK7!sZ<7M*JeYQ{imoM9*{Wp)X8eL
zlq4lD<`b-VKA1V=id90lpn&zes-cG0wbZl+ma1hCG=gKR8tzT~)*_sheHF&)5PLS5
z>v5K1hPCEG6}ttkPpUJeN>Ci|M4>f?L*$Us=h6J65I1S^Kf~q9pr@isS_Um_v$S92
zDcpb7@efAU?qwlT^bk44@1Tzg)dMKc|I$L^B!dqU(`mkqzbRn@bFO3lj}Z?R@Vau%
zL!|W-N{sp-l!zer=em<c4Jsx1lGvy+EgM`nkJep0rk6ILX++MFtWOgBSHMDop`{Nd
zQFv2z%)+9@Eh2F5@k0&^XHF%fqhAj4Rt<^x4r-vQ7suT1z}=#Vh+YCXIynCHF!ZcL
zT9n?lqlU7qlg!x@x~jtX;JM!M-JGL-|NT~^m7k9}^}SB~)*kC_<czaFHsRZ_E)7Qg
zn_caEO8RcVW1iBGf6oU}oXFqV;W*0yPqJ<yq=B9Vr@McrGLnohwR=0#c}U=RD6Wqc
zj-B$X1w-_)>kD`>7rWJlZ9$6X7aA+kcv93zRfN6R@NR{Ky|ebCHTDZY{(JXqy51?X
z!BA1Ts5zb>!7~jhlm?seu>u#@8l&czu>L~on<^hZ-Y|5!4-D=U<B1L!H!Xkut=;Pz
zT+!WJrw%8U_pDodjgSp5WzNsnU&ViDEj{S$G)W3?J?GKuukpAG?yqC`5mG!v6uf-H
zM1v`6ZalIqpDZI0d-c2)G{IRhfZ7Fadz3`EE<v)UXdlvTN7g04r~d+>vGP7%3ar7I
z>oW@ye%~AmdR6AqkWQQkW~0E4kwb?U=Js}J@pM}MbTcHG_1`AH^feMJUTttK5M_OA
zDr`AmodUj5n|I=PNAA*KcZwx<?LTuPz^skRjkPj<WjKe(%gdk7W8vO%Yn@FOn5wBS
zv^Nq;gulpvv#r1?sG6fk4vB|FonvE59Oxg`EY4H2z)|YoqY##<?dr#oiton*EQiJs
zz8V7dbtsmgG&-R2j6d-kN*m!V%QD7NMY*YnmO@5u%so$QZ?cifGOc=`JH*cB!PLG>
zwQ0HT_3he@JQGhe4S-9g59u4D2_tKA)WoMF>}2tJCVThi{PDBRqAmEYVP6>~Q94|%
zSEUK;G`wI+zh}!T?bTM~a)7xM#MqF7%In0*GMgq62{jvtJ6bZsLYKc8K&<7NP>%Cm
zFpbNr5Vh_H7&1_VEVTMzT)ViCDPG662pDO~?h%A=q2X^aR|)!ZA(j-Sb#~;6bR=`L
zN4?FmvA7F9gA<>uU?FU+QA)O$mx4`;REKOjejg{C0nVPwJoLj=I>EvL4rq~q2RDOm
z`0BVc7T@hy?Pk~b(JC1A$f_*ogdnSC>0r>7M^WtPSH7%F5ys44)^I2<3KY$t(D@H}
zw%AgQHNIxM_5hAOKxgxF_Z^M*Dcn-j(3yYf*4hq0UXu>20fV1KLUmFJadTy=z)c}8
zJ?R3jMbp?}^JjB4oy7kqoE;=GksLx{4vgo#+vu}k!$v013cMh!uiy^I#7$c^v^--r
z!eKNNzbjdW?JI4u28{&x;W#nq&fv%jxu&Z;nQVoQWPj#!&5jBd#65kJ4yrGU58u6{
zSUBg%a+4UAr)plvalM1=vA6Sga<u~gL1=!w6GMD=AZE)WhF&vL#ymz6osE`Fa2w|2
z4TgVg^0uDHV^Lzy(|+Pw)5IfnQp?Lis~k!&_i9h?Y(2YXVfsBy+T)hb0bVj+<`JM7
zi#vXNtx4v%YXK;3A~pQfvxG#TT;PY<CXaJ);fJ|mF^yH8uzj&*e7V|==0Ay?ab@LR
zD|l0@{1L}LR{TIOysOG=dm_hxs;z@vMmFhHWzig^H<KPjW`tqVCAK<DadzW^$7=u~
z*rT6dm!R08nGR`NJ68Vj*qSiU_G(ycX17IK{)WG(zIm$+fBiCefa8KfY9CY`z_%hw
z1E8nl8FJ>fw7~tM$>_z6bDmbak73fdUl7?Oq1i@c6qdw@^xjRVEAS`qs#?<p)E6Yd
ziI`D+u`>M__CvRjw`fi#jY)fB2WcWvBT=y9GO^xn4~ua%q}RCO;<vPU@X5$KvGIa`
zjGmhhl3Cb`YRR3>P2u7H{CY_TVGHstolZQo%|V-MtB>oBK9>(SS@gu?wYL5<kD%4)
zJWp0~313NnvUIIp{6rClH%yRt&mI1R2}5KHMopNZhnAQg*$xbrU^hfvmrO|@ULBxh
z*VU~@KD123sil&vW}nsf7(<40y-XnGyC*s~P~)QC7sYcmsTVgNaE^-NJYbm!3|c~H
z3-o>twYONOwfsck$|ThvOQu>KxRI3&b?`8V)^+~C%+51>g8%rJ(iR%Y>ZqN0MNBrU
zmP{@kR1cK3slj^{Jb8Sy5*UK>RKFAoJMK&sL#}lff!%Mt>O6Ix5ik&nlI3dpuGYcL
z5#~?{ST60@@?X=I81IQ;Yts6R!^!Al^x-<&&!@r!!c=e6yRPoZe8iiL^wn=yDa;Xx
zk9;JqBy-xQ1O^E_q|)y2L<J5LX8=a@`Tq889jm#(gnDDQ7TCl1F+jrd+{jGcbPYL)
zHj>A*UKF4xvP}}pFgX`;5Dd~UQhmK+mT9+rt2x4fP5K-_0zL()(P{^2@WcSTAA9v7
zMCQA1w2ma;{r#itJL<lFmbk>7Ub(;*Z4H~J{g>LC5)u7i*@_#5&B;aj>)eWwGv@;X
zH>|&Y1b4sOJ~~HqH0Ni#RXoD%JrV_94?nU4A1mo_`o7?Wp~yw^#Y2`eUrp6MW{ngn
z92*Z=Cme=c1mx5<LC!6ZwM+zI-Vd?tC7tox#}S>VG}op2a<f$h>v)+2@mq26I^;La
zPXX^s%|IX~nZz5o1~)4)<?CNe)=gS@SYjuSbs^E3BW7awDU1N!NzzbwF9a7R*$t<^
zI)-0UeRmL-)oMZ4l1@5Fgpm-eO{$Xd)?iv~hP?r)5i?bQZ1$R4l+o|9!L`cr(h$Ou
z5kbtAS(_Jdp1>9qr$&e+`alo@vx`L!`;FIMr3U1vr1R=!tZ`LmZIhi?w6C&P+baim
zbUN`zSai3BgJkvvrfxP_%&t$Bpemy;#wVj#Jcu`_0SGQ>GJ1_d1^$1ssCo{32vRtR
zBHi@rYFp@BpO|ir>dqhns1xolPMGxfQMwB}3ZdFOn|77R2&IerCdeqPPnC6$5plM1
z_rdOev%#gx(X}&vX>uyKqLSo>#*nJQsg*l>fduZczKdR`YuAXq;(0oEmZcya;pHs=
z;z*NN&Y{`E505V_%2_2gmh9*Hqi$+htC8xqHo+V_O3I#x5Y05&7y^s#9P86TvwyM2
z$e~D~9cj=o)@#?*Zx_jhdCq=z4SWyGGJaJSCk-dLNx^07%4tt>;@Vs&(EaKkYm`#A
z&COqgy9TjiIg6UO9Pe(-T`mY@zeL_HLl$p?j)IX@Kpg3u1mG@Hr7-F$Fbn(UvJU?v
zI;utio6OJY$?v{=SHM4vX&vQhed4$;QknH#od9A9w|44sk{obG0dtM@CZvgXuMYOi
z^i#38%D8`eNsCoV1(jIf6V?*hRV9ly!~@7o{SI%>{^GP!e^PAb%S4m8i?AQ}7&uF9
zOKOoQ6w;expIk_oi(nO$S>@ox_l9A#O#&6P|5vxHzE%1vgE8i@H?WWc@~I#H#l<hQ
z96m$TxfEaZSz|C;%q}|>&Q%3`mGaa{(p8SNe_r}V2N)D9XtGn-)>2y+k={OuC7{dx
z0p|aK9H}5H8~W0pm1N#h6cqhG#}ht|1EYo)lgl6f0!3X5LAZYLdiJRRCo#A8AR=>t
zuZnMkUO1pJ25;Gm;ZgA#F9AAYguRdz_O^w_a2zH|^!DaywSoqCzU5S6ekG3=s|!QH
zmLCW^(JdI5yWbVCCX+3O_3DYbBC<kEekiG+)wJ6Ha$eTz5(8<Wt#Dmr72*p6A_X|&
zue5T@SxVO4oc^)zX%~+Kd+k2@PT`+KRmgF!_{wCI!^BFoGO@B&-}@(9vfw>2N+mpX
zA>RDIw3`i1JN^6pL4mFAbSep-s?uD+N3vakGJ-8Fcf`+pSvv3bK^dtsx==Kx;cDR*
z<23lb+dKbtXO2Kjx5hh>jQ5XDj^heqoyuwo>Z8*t0WRl0A-Xft1|{)FI68%>-W5`;
zp1wG^4pM~Lts+sdlO4L2rnMig{4}*`J{}y|S@XcX7p6l|$^&e?Mu!wZazY_uN{P};
zCe5D|Y@Na-S*WnxKWQUT$r=AMUKzs`i>T!x)aHp^I*755b6nAdw5hEysrTy4cy@j2
zz)LH58avt7bb^T1zV&r%AEf*B(g>QRKH^j`>3cw-V)$C%RN>o{*MrMjF^u}J&>qBq
z=`QvLapW&JIqBhD<gMkehc>l!4P2NY*4e<{!a!6kF%@UNQz?5}9r4CJ;C?~`xYqYE
z+4Wy6yLO$Rb(;l&^8Vxf%AVMA&?5*~$)tCtHs6|>CxAN4A;qBh?cBDhXv?i^{S^Wu
z1UPS+w`c5A>KSvgLd+j%BXM4MfE&tP(e|Zy&Ol$6R=8?{2x0%9ufcfk0=){r0H%PB
zG@cKPLi2|mdD-|>9FWF9l+?~R@3A!xq91)M06JD;(usG?kl_8qmfPcl=kBbrG_~q_
z-_(V^CEwj)gee_fv=w})zw~A6O?Zx{XGuw)T$R6C;9GJL7l7;EnrNIx=)-bez!!MM
z$0RzmE5we`8=-9}iZeRd<L61XtL08wX*L$*obj)SpAgnr(*f@T7F}FvzLhXGTSy?r
zymHCNF_C_szXp>qcSTk47eXBe6flfqc~z7W3_kN8f2zDs5<`iwfsgllel{-L_F?R}
zLT&P~f%F4*Q}R0EZlC#da6SZUFSGne_&=)~0SLO>x8+pc&beWX|KUzRtGu*F9gq`I
zfv7dH<zIPxp=-ze5paS{^91i{$_}E3UIH+?Cg7@PYQu03GvFsN2ZYmuIjlajNyt`%
ztpQXlo#B3cB2FGS+=&~*#w6o;j}NpmizXjQsV{IOmSI*}8D!zEf|znw)#t?x4l?a%
z@(h6O@+aEg<TZ5PExzEIqcp!k6zU4~1I7yoo901*{Q^lm6Mwy0*$;bkf`o1?fNiNM
z*B&8D54tzD=w0%00CFB}1nEL=mow|yQrVQ2yEb7|9D|aoqi>E#KpZX*J(h>c)Fw#V
z^)~{9cn9+gy{~n#b(J7(kQi6rmOE8)yIC&6JSx#19u}OlAkOTSWD026K2m}e(e{4?
zY@8&?zJ(6kJT}>7ND?l)X{-g*aGeEf&X}dQ8CW71g0Y)!!iic=MQ}Y)J}y|p5J+V=
zg~jbs$(?f!e2zi)fo8w0A>#$3S)%-9;*OSHTNs~-f68wF;~dZM$TO~pynvwx^o-j#
z*KH2g(+H5?%4S;N+ddSp#$d=vQXTQR8;)Sd>L_4ggE3(j6&U4dvI<&huxVsgE7~tB
zUH@ZJ)T~EH9?iF;!Y~^q`Fj}b{lOz@#rAm07i99Evo`SJScj}X1QuenXae0{A!J*_
z03*~i5ep3EW|;3mcq}#NAt-3%#MKzAJC*v=e~WeObHc$8G9h;R2(O7OI13$d9{P_i
zy+_w+;#~X<WX}pmIqkGuV;Y|a$4>dQ?o*=pr7#8sO7-&TG<=NG0Q5OuimUBC71%~M
zddJbqG0w<{L2?wgaOUN7+2oc#h_2geHrf6x2(Votk$a`fCZu6}dJDZmvd$g<*O`7}
z?gAevRiGC|o<dPzQVyw%VAk@{U5lj2KFqIrQS?))T%XuD#2LJ-O|+fs$;4rO(B|6=
zUew=MknZRD0iJt*luLZND^&+B6MR6qxxz@yRNc7I%$uz?3|=w}WDh!Bk|jj1u?eU$
zU{s4=WEdHCFb{_go<o|ZiZ&0Y3Nk`EJ4+woGyuH{gg3%`!b{h9<pCK<?!T{(fMuVS
z6Q-AcppJBfq;`D~u*N)kPUdTm51@!#5ykXJ4hc+g)MsTp;UTQ``v7x8Rq5Qvw;sRk
z!GaYZ9~K+&2+}Mjm`+}<10<a>Dc=|keb#f%6VD<*f&U?n)*G%@$uD0K{~u_?y-4V9
zNN*>nk3dch!FiPDo!LYn{$LUviQx-3x^pe{?IFe67o-$V%H4Fiy^3OlPsmWYzcci)
zNrtl<G^eBGv)vbpYdcMlcEU~7P8e2Mhej*^Z#G-3B+Pu@O(Y3L>W&U<L9H@LuD|9j
zeS}qc1o-j8Me6c^G&;H#V1}U@C=C__KK#@C_MZTzYz*~rM8E`#^08Bw-DgmwVaEb>
zL(9*Wl>+>&l`0azEi(AH$NS<ct;|lbC9Jh3mZb5iduc$|oXx4|>+acp98(g4E1><+
z{m}*&b>d$H4PQ57UppN=`GOxQ4|vKtcsJ30-N%?nMvpZK(MXRc?(Sx?1Ou>U&w)UH
z^IkbRZl1f+EJ-Jja!-BFi$}86G{(0f!tq&^G?fTrtt8yj=4@^~I#!}#DSRu<EIeu-
zd>|e+$>jdo&-UEP2T?2&I&YtzYaN=C!Zb~40slJluc&#8wN9^M7sseD$bhySremGo
zd1h0a))#n2AdsR~vJE{5tk{9|lXG!^rO1x8v>(v8bOYAm-x6`aUToc*m-Wj%2skE$
z(YDwD^~Sd~Yz24+avh`$*fGKsx&_ROk*GTKq3j)l+U_g@V$pio*>D1{QrER_zu_lV
zW8M6aRhBNzx0MIBQMLT6O<NHtpmp=%{BWO4>h+CHa$G$DE2%wZb~1Lf7Xj^m*<p<m
z!Q4S#k0&ZDAAnEnU<;w(qDA;a3%BZT8P9^_ZCWY$;o)lkvo(G?E6q2}2RrRj#@n>^
zzfcX-LlNExcBU~u)j&tV2dfns)a2VnS}o*KOP=G0>E(SRS*4Pv7MhZQv`f<bw26hs
z(szW%2-!r~B;-|WxRWDszpviSn&gANtb9`^HDcN==bd|6K#`{sgAZzIjnb->9p*lN
zyy^vHJ<q)-ocZhKL!{UGF<r6%Dj9CTCd0z*SoAk|bnES=2Rv+Msw`<^D8F7E5|87U
zt9K+q3-K_DJ8f>@2i)7~Yd0Jtku+_5epDvqsz!-6Bra24)>s3@^R<7%)2#PO=CvU5
z6(XOa;H17ZxKZv5U&xYuHx~pC6S;!#BiPNHzc2U1<5VS*|G@@T(T(qA6kvP!Yc3*6
zojDLDu8U=u)k<?zwL>*knuL_L{K+W3eQKUEJg58fPDUwLLfR#NS-Cul{TDvTDnz3c
zS2=LIEr_fS^s%ktn(L=Fxu1FTfudhcZ<SMaSn^Yap&0-fld6ZN)t~lA=DWRz<?P*B
z%YQ+IMQ@O28-z_q9xP!@HBHFmm!_nuOksPXVWze-cK`JG*TSQ~IQ{!s+JeEhRr<Ee
zMaKogBe>}oj9?LrmnQc8VE&$fs=nqbHG<x4-%*O=I{Ef5-fkcQ1OCMiN3;G@TE{K|
zNJK=TNJ%4;b!>lf<Rq1{K|@Dfull5dwTKB_J31F!Ep(lkadDsnE}a*E!A7;Jh3EK(
zUua78^#pkd8-6aDTb|sHJl|1x`Q9ZejBA<(Zx;!j|DF3J85giXZOO_ju}NZ)<iex?
zUhwf?;}G_Jt>%1v-ZfN7svURijU9;?4#2(?za3ghS@tT9xvNR17u0oX0fDV*ng`};
zuxGFU<JjVu?FFj{1scy>Rr1)!j$t&iwJ#zGRrLFq5f9rC){u-E#J#5y0Up9YQ<MF{
z9@7k45R9WtwiQZaxUUE@ix8yQ#^8f{j6n}I$d&*fNdO-^c4s;Tp=GJkXu2Pv&M|h5
znvm*7xE$E+o4&TqgqS4H5_n40NV|87k6XGgWTi)tRF_T#d+qW%emQGU;<9aJo8e7O
zHZnYCOt#B-nV(M!C)bIwZphnEV!nKI*0oJe5j`hTz-j@M7)F;1xj1?CB&Yz)_J2B$
zV;^zVR5KU)G+Fq?a<>N4Gt_q2RP6Y|6&C|6;=LhBl}(Qo!w`{c6<8(&CYC`Xkan;h
z2@Bz(fJkqHT+~3U(-G^?3`jcjWEPff0XZVGG&mS!O7KJigduE&@;~uqm}SCt8jl<P
zL(F7Bbbo{HQ{|GT-f3Wne24a(FE+%7qWPgo&vCkk0-xb9NeOn?k5A5gksdCP$MCtM
zmzUPt$gaO2N-a5V{7hUc%Dz>lx~q66Oq7N@77xA)(=5>RcpYfD9?wZlwdJr~JT;#e
zAguriQTKfojO?wncb)ZJ6s~1uM`>QQ%pEb=&5SJB-l6V(*pXB_@uP3n$;^wb@~AJb
zy0IZz%O4)%qbgG<3=KZqL(?mS!gTgA?EJEg(uzpM_ZrWt?r2R9EZ5)#8MP93VA_$*
z^za6C6dR3}*(Fi;C!Z5euM;dDFl}0bNwDf?kR*-AX2}ilQu00yh_gU!eaff>uS!W^
zz&?Phs7e4#{(Htu5DbULZC4F9G57O>b0#pD7+Eja)Y{#m&z~l~!yEJMr~k(S#Wdq;
zm7j#3>zw`<doW^6e)4dr)jA=Oydosl$^Hi>%zm=ed*8YI+_ly^A0V}!i5wu>lpDlO
znmX>18d_zXINdSXG_SO#cSiDYjJ*f47^8uB!W$_SY~mA^d|4PJm&L<94<J1~UhX)N
zbmUPYY1Fss6T9dqX+&*s_)8PqEZ`NoBZ0~!hc3F%seUbQxk!X;ef=h>a}=o%-*kdr
z!%Bz|%)%M?h>OlFIVl&riyT}DZ{JS|t;&+)**+&kHjp-gxn6RQq0oagk};->Q(ty=
zSj{ZBg^9|_h^yzT4N+UJrkhu)ZQrw14;-u}!i|M21B36`>lfcM#fw9Zh`*-sAD3Oi
zXDc100_WdMMM^&;7&V?8OeSsa?bn*WDEQ*y&P*;u#phj#Clg(xtTeH?_R~sDVt)0c
zM=o=ja2z&8+*WEzy^mgNS4X*##+|#;8Xo%g2EVy{Md^6D{#!(->s}y|WvzTOiR4nf
zHekPo@X_~GF@iOk1&w+gJLQlht6s4m7kyek66jxh@~Q_-pk+z<hph!v=zQjz{mqM=
zrcv?w_F=S{#Ysbse`jd_oR)zJ8E`}a5sKzwl09pi6xj995ee_&7k+pA5B`3#MUHQ)
zYm^(mQc%GuL4oIRoz)ZTOL|Y3t^UXLa8dZ<<lTAd%o|E>823kvb6*F$L-Lz|0G`El
z2SB4V&RGfIG9|$_WaJk1(cdg_&jheVBBNaej^_?YxGxu|8`Kj+Q)bUnGcGV;HgYb-
z<*pqh_PQf@kE(HnOTT^|R<>BiPokp$gqxe<Aw-RraAUHbjtVe;5Y*9KCxSAd-R~xQ
z&PvOH5hPtl6EUd!_eBVW)goSipnL6gU*zpD$GZPRlekxKmEV2}d?=7}odzL>XPC1}
zY)%GD6wJQ#)U=&GS{26yaPW5M!d}~9Jb|(z;{^KF`{+Z#ht8TYVMx%K_nYuodv}f8
z5vY65_hQUd1w1XcWPoHbFM_}M@U6oSDinn-EbAMPOx9B1%mQq#pvIQfyzyxAVm_?H
zU5|w;C|+slS%e+&S2IC=s#jqbEq9s2hn}R;S(xBd?1eWlbvx61__6Oby2bX07iE_Z
z@9@n&GK&f-s}sr=s=OoR+MOdWP@c93;Zd1^bFWj@CtfG&@?|Vy@7)vdUt~Siiw0Ok
zuXVw!HIr<OQ@rt0lUUc!`9!a8w~<+~LXHq5s-R<L2{vjng^!zp-v9L0d1!O9VRiwp
zN$+hJM$H+uh8S&|x=^_{w*>t|XV2^!54iKDt@76nWl12E@v-59LW4Y(T7fP?)z%{9
zb`~G*l2X(vKc0Jd+7<x!4uh1$Ot0l}aLb_GMgXnK9~fb!X%Wu7%6K~t`;`(+)`^cc
z456MDngI_c<0&DfdA2L0e4@m!`ZU^IsnV?Q!X?O&qPb<8q@(SV#)*Ri-TiP75?;fS
zZ_+Hp^t2s&I)A;$l^v(HgJCbh_b`U8{mp;Rwhe2jk&`h~O!W~{<-l`1HPjr&UBDXV
z)gdFoNMWZp%MrQyQBQ;XodI7*v+ZOxOC)ysH#hAb!rO~Nt|?Ej2`f^nim+!XMl<e&
z=xpdU)I&sq;GkMiQ107_RBZ)1I@}ADJLavzybwGo!H-66bSjg+c#b1SS}EJAim7ZK
zLfB1tn|RDa7h){7JCc9az{SGQi_0Z)D^(Gs<zAA8K$f^WGh{t7Ea@#+;`<ULz%90)
zv<nBnJzzTe?ei*-Ncd|V=_kOFAWs?dZu*(tfR;cmX-dZ)L5MaesXj2?4DfKK;~@ft
z&|4tf`)k0Q#IMbwD8<)$V({yjxn0-3fyjUh#lQ2l#7W_ob}J7nlJhaTbrN0UQO=qd
z!ZmE8tkyr?&#j_f9QamGSAf}!QB6KCL0vASvAz(~s5PvR#;c@tOyrosQpLm~BC>0P
zOLs1}Y<>)~cwQOp#u{`*<-^9GSM}!3wLJw`r>C=q7u;Aa{*Av9JZpDHpM7EK7|m4I
zn~%NG*-ZJsh&bdj8~$Yi&+j-)r=5<cDg3F!OZ4#)913xG%3;ELv(swj050K$w;73&
zCZqmTqQeMo9gy|s#}q1ozE}Y0mrDRfj=QMmFq3bjEh8hhqX!Z=8fPgorqtmn%|!nb
z5SS5wLo{@)9klPiq8S9+;1cDQLbuA)L;JVo0Z|8*J=RDXzieLyq0fb<KYmL7;P9TT
zmRO{sZ~IJzEWHsK-4gu0cTo?jEybmHfxLQc6sjsX-G$q|fYCfv;QhU2!{PvV>2(A%
zbYI%jD~jwMAyyAnaUwM9%4gg%td6TJux3Ykxy~s6LbsSQnnbMAIbBfeP@t1*1WMUG
zEU#SXh@;i98x;)h6B{Hz<x7@*e%~GqPm~ThGq5rkY9PU1{&vgj_7m{%6a?4wMrsUp
z6?3PGU>1g>7KG$2fq+B+UHQC1S)dT;v%y78`XePN0_aRjcgnXc2-FgEzUb&33;~Il
z+w>>tT6wmW!|J-#QE_{7hk$;YTNv+&@4+q;1nw{m$p^d;Z<p4tx?E2i+Ng>lFnIo9
zbyN5F@W1-41;}X{y$@4A??>K!vfGSzSS`W5C|W?&|05#7i&BD4%GbX?Za0E2M3xU4
zMr+PYcq_C=0@w<=ixFTWH7c2qr?U`|iLruDaHxi0DAtYf)JEY<&xQuYh(|$)*1wHJ
z++NN?aySOR)2!q3!uKFNFu0U>*g?5JHI0aDX+Te8%Sn>h+Lxrb;vg9%llK!6;VD<y
zpvYwx!^z;p*(2irR+Ch;l90#Ic|i4;kM-0-{<4ghyVifR(}37O$dK9wbQwL8x}EBI
zbEvXFfhz=IBX?6mG{f0zLrs7?tOWW7pz0`MsbN?59Dh3(7^kD<QI(3f`;arrag40s
z5oe;*ZH}6Zi1=Va5zEg_z?i11(m0Y4JbK+E0q>MS@s_*@dI#vy?2vBy8;^q9D~Ai<
z03DIQF-rp&D^CoQ@4KvU&9h7O(y`(wv(WNF7ThF}AmeJV2l9Tph__zUwG>PJyxNk^
z=qg+LhYgv9>lL*uz?YGe3L(|2(g6JgNqV_$F9GN95iQH)et%nayd2Y`)K#0x8wuHB
z<k^Jnm>AqOsrKG&ZpIPw&*YHG9=qCAqS+0vegve3>7O;PEhHg1|7=aY{U=EFCXjlQ
zG2^VxE7tz?)GTNx$(l(M{~3@o7;DTICd8eZq^#DGYi_*b9M($C0KH_pKU~xj#s0mQ
z%Im3y3ybc4kLBpf`B}^zaaB{eP|k`Y6=AOGXu046dqvuTxpr0zcgiYVB3tdI{+0Qs
z>=;9x`v)|!HC@X8I#oAyc@%g<W%}a`gXWw37@;y<n8YE#-sObhd^2J7R68ktbS0n?
z>MF6mDX|l}Zv&#@^#)8A{1r|qDc`N)JR|EKuAIzECeHUAHJtO3){nZQz^2RFrN)q;
zRKD*C`z5p-LKkGuGo_}zA60uTJeV^wkA5YnkeV64+n`>14{Pr&A7!oQtGHqq$j=~=
zTBBa&jrLpUZDB9unf!{O*Mj^>#!+cpFYcge_w+@s7Pe<$X7%!mBGhl;h>jCM2&q-|
zYQ$<hVt2np6U+FzjdSU)AFS&SG-jzluK(nziS|ej;eK5$=zfw>h|)-38;18YDa=UP
zX-ya6uL4)<T+_^MsfGQ3&&>LVpET+#S>iLnP9;nzLEj?}3Hv%|5c@TLiSa_LTYi4q
zMgK%47;xG-uk1LhuemNsma`fk5}%ht(Fq+HV|DOaCJRjWyoH>BAL>eNVO2qG>Usdm
zNw!VtDZ$$NL~SuYE5UDyHOrrJxIq%Y-CCmcXiLb0XEyJdjjshbnLCQ4_UR3$SlI-%
zQ%{>ThkWr>_pTE4vN3@+Y1KVVYO%eOhk*kQK%*KcGtV}tY4|XVX>u1&0QZ1H+WHoO
zq$gmD<2PLz(4bqtx!;f{97NT=+_9_iwQ<hUnnu|7f7or9IK*Zu%_$VmY&B)xcdmrC
zF|6IgO9~Op%?nRziLJQhj|J#r4D8x?R0l)Mk^;j>mru1>#DQ=U*O8_<hIlXUTZSqm
zy7z)?kU5W*%hS|#Hf7}HOFvGQb@PU8r{tPVAJ!fhzzOLhxX-v#76!N9=ujb-4@-xL
z=~={PnH(t?%|P3QiHNWWq$OVN9Kw#ZU%&|UE1wAxkp_sRV7Wep-I>b2!H>eFQOCBK
zz4cuz=SE;4sGx_bjs+(H>ehCeu^TErWLu9%p<-$F<Wvij0mQ@I9pv>~^n5x%H$`9d
zTN@SwHX)U!yJfu@lvvL#ziCxxqQWT$SwpEq=x~R9P@j+4F=ffO(DeG(A*TP{3yd!P
z$Y1e2Z?+tbkbTnvpO3x%6Q5!jqlnGvSk&2YPKv-aTo&FH&_4jZnA0`_G=^+~^t)X=
zvAwKy=L^BLMpaV)))_5?J|G9sv@QS#8oX9e{<oCpRHN-H0v91Qm;N;mQ84}IX7bNG
zJw1dt4a)oUmzy_^(($b&!lcmz$&}fpLrwUiQ$oaE)cz;kV85H(t0sb_Gl+;s^;xlm
zOc#p#{3OJ)i%m6qTeH4JF$^L+l3OVp@QLDe>-m$B)T0AgmXW|>g;$SP15Wd-od=eX
zvMwATfCj1JL5f>!fppNz=6Ej47+B<R-{bd1AT_v$cAI`Rj&xSBe0n`!WIC7g%AK{f
zjo69rzgiNA@Z7-u<KTmL3vVX2>{aZkCB&mae~1nTm(E!M(m0jnlgh3~qM~K^2tFnt
z3OJ2_PB|y4B$vWXB2q%HM>=-9wsQ~p=y`v(vf}#R!i(LtjNU~AJMOiPKMYe%M5D5u
zj_sT<9Y7gK4Lrm<4Gh3g7#(8UqV$}eZS+6W<8~!ISE`%2*~Sr<N+Eu;^UDO`n{VuH
zr-Vnnd<47;MG+0~+qvI;Tz~!lpO)~Z<Q};8d@!f0rw$c1<^LL%#i8*n$XKQ&2Xfl@
z{yn?~CsDE?XIf^_6Ll7b_r=oMYd%0)7dCkQ#ZhR=2A4+91;xQVcP^ZXV})j3)<cY`
zD>>Bp^QnPyvXPGwB_>dm4qw(CxALA8N-}T-?`UO41JHv%@2%~E%pleRpR5%SHl6f0
zOo!f!^7*I~c1GZl?D)A)x<x{2NjaNF9N=fjir8W><Vi`t*d~cp@Y_zFL1E{JJv6oT
zGDL+#BbPrI5n5PTPW#w?qB4yT44}UKlPGr2N1weii{l0$D(z9rTn#4NnJ;UlmvbmX
z$i>kTlBl5o?kK~OZ!mij=+v>6y=DH7f}gS$oO>US(ynx_4seyxj!iGaj}^x@z|rl?
zh_`2xs38)?2kQLcoP>^TmbG|ND|e5<UE=6$*%mJu<pT4id5N$Ta8j31%}J4JowzYM
z0GiTCeTi82b!Z(~+X3VDWhLMByFN)&Mq?G#K?0Z$Z1J^~Z-SQ&0z)%Qt(WO%f3lFw
zEJDBMz7>5Er&4LVq6c1hf2(qDbn@H(M`==kSE6X*=}LO2AzyoCMq5?R<DRpy`i1?K
z5gA`}R(nh~g#0_s&goos$czbs5@=p5?hdX%srZj~o;ZgTCKUtiA~V3W-8=JeGkkTb
za*00CAle&<!wkJ5=-<LDCR9a|WcQE~xCtg70-_b_?Kt%8J3xawNALA^TCBlReGF?w
zBTTz>$&;HOd`)BaCT{ZCy0xJc%k01JY>-^&tJl2C(+3D99dM2s02MboN9*k-+IMMG
zs~S7mY19_fIFzeF9_~c3d9n(`@C&{ZGkL!Nl-0ubocl<1kZ{?1G09ETjvv1bLbXIr
zVydp5@=KSGxm1|Fxq+^jjMF6mwS}}^l~~y(x7Q;*4>|>zX;jo3TaB_F*?L}0fsDXR
zE?P8>{1+y7<<aL53EiGeo=YLCY&9b}m-X>hJ`xuRO-5e`@n_*9QUo8wTyA0Ayg68=
zn^AS+gAFxD8hBa&({ejPo^5y^!p~IJu<q=BgdV})u-Esq9Emd&e_b?NE-lSO-bs)w
zw{%A%#yye}*d)V`to-Gg$f&klTfMGlb@e6;REtwHCC>Nx5D#DHk$AXC(7wl2cgPpv
zDP5z!W!pai{erc7DD?>vZ>;;XjqYcbXg@WUvBuElweOdR(h&D$etPO@-2ZM78?log
zc=U}g?~(Io5D`6htYzjsAorBn&ZKr^24nu6vV03seXXHpXOksxl7c0=L4n&3N%3Mb
z-|5d%O}=?(pv%dey13glnzq8gTf7hXTehz5jw8842~)2)ZEKn>8}nI)Rej!keH0TC
z38C@*QX;%D3=jJe#jXaYgL>@t1_CLD0eSof+e~*29nv|pfWchYVBIRMp{zsn%rVM%
zw+2g4!h%t7<yyEyS4oR#G27mRMCkor%S;+Np@kt@CWtyA=o7r?G3$kZG}Yl`uvI1l
z`SY4bW3f2GjhxB=T5#<WvGHJTKg!EcqQeX0jXS0$h?53rX!6*x{CZm5fL(ky4{Ko_
z1LDMIJ)Cx`lB+=eA{5dX(72D9p77L)d5U0r^(alC+qkEiXggs6+CaP$K-<;1h31;!
zUigWryvHU`)cqr*Y?`v<%@1CRaNmQcGoW9rlqg-bKvsXE-4kf9(dXGg3e}35PQ+N0
z4wUUUU)^mZ<^hM;<>Ofvn*1K038P9RjrHZ)e&!mzGIh~Q@IP*6`}ErWJ)Irr0_YNb
z_G>93ltkz%gjB;4&;~vVVG5;Ggzw{t+?fR8N$5L|!Lxd6zOd*6;-YZ=neD^)@2f;A
zB#!dJvp*nq@QJWzju-EuxSICXpubdFVBsD4X7GqaO|pNwbtm%jANoMfeh9#leA0-H
zKZ@j}($}DTu>hbxVP9)7;{O~^$uLFA=I8?!JIs`IelUkxm>iS778ee&({^-F+>W7t
zQ3mBLje`_1sp<iXW)9Msc!)vI%;xRj<=u0=1FRZW1`n}GS8zM(mFw{_&9O{QPoE~8
zTwD#Y-lw=OUZ!G6j|Lo1Bt`Pv5^B^h`1(CeIC81&=!K<~yHcxj8*3({Dw>mI%+>7l
zT?}E~y8B0aEw$`xe|G5jj9rzhJ+pkOs*gWF-jm2l^RXh!^;rb9WHCs1W6Q$cg?AYR
zubO9x!=LT#B;P#f$DdFMM(qqn;kfAg64i`b1+aWxQfoMThcEf<T)XbQgBsnm9xPk%
z!3PF7q3^Wr7`28%fHgdPz@(9(h+9m}Nh$j*qLYn#c9{Q_PDrt=-Z0b)dtjYDsiMRp
zZxcAEsQ=MD`8ti$ZD5n1q?j2R=)Jeoic!2rzRf$cvZ?s>g$Yu^STXUQ%PzqokcK96
zGfQILM5MFVoyFo^Z>=orgrOq4h8*4iedic@5aO(z30R84+95~ZtDMvR^&^pbCv>{H
z3L^`Gy3uf&%6lW#D-?g2v1fK#G9FzzZcL$7d2mE(1FPHlBbKhU;Uw)!$EazFJx8K9
z|IeVS#ds$+k@F^&0RKSTi_$IW0wLKw#lvLA%J;?|vsY|oMkDqQ^s%>Em6Y`u8|AmX
zPU!ylmu~nC%%gwn((TcQ<|q(tKr3n&-2?yYqU(bvf4_Q^bD8!$%6fn14Zjl6Fk!ea
z<YDAM^vKsS`!Jn1E7BS^cWE*;T!uY(LGC)?#mtW%-Dl!!DHNIOu~u%jIO;(QYvFes
zTA@=}$(8__d|~UWFZI}F*gXb^^O`^g(3b8)!TtMqr`Pz1s&e099;B`8C1Ne^4rN_2
ze+^Me$-6Du7K?uDUiChQfSR{izE@wa#xLBKHzZ#+lRx5U#yAQo#v5vh@wueS$s1#K
z<_Ed3zz1sQKHW<OeE18}$HVso=Kq4to=Vw{#Ogqy6*ylLEJ|py8(MljIWk8j{b9|!
zIYSts{!%p*ktDag87ID{?FYW>ttV7F0`|jRN!D8>MPPBpvb0B|935SU6*4mJR$mzo
z5odhX%YD?wCYG$LgBYq%mB?1!<*CGa9#lTmAA=jH|KTcOgIC+;%6e#*&GI1<zdvLF
zmE2hPN~Uq8hIT0GfALZ>XG4mdmm5bhggv=Pe$`1$YrOKCTBw@-=*P~hjYaWloPpEi
zdjx`{e!Izzo5>(>jjN^K0|U8{0Iu=j2BnF2p2=uE6_3KPV>ql?op$F+?UjAr)!g=?
zK<jMy#U<*}ZFKe?wWF*Ofb+hX2j*YkeUJ_#tWWpou3;z1BJSQK2;dqJJ;ffk>64uq
zMw=IIi)5WP8_%IKgmVpg5qvZ5tDb~M&HHc$-lg65TLnd(L>**l1RE9Uz$dy2n;4L?
z;b%E_&V{xVqy3L{-0Ca8P9@%J19gTBWEV(&po`ayerDp2jks}}d;jt_s}L;>sICnP
zJq$)^+_hc`LHmbgLN28+7O4#s_#|wRz+<CucEAtUPDM!+Ap)@qg++)mMM(H2E1*2Z
zfuctJVC{E;`j%<ohD$BF@QcA<3)rX|1biZXJ2~RleYJD8>*350hUFZ$)jPa0U%zYX
z%A}A8Qv4HJeTyuI;`c3H&=um=1^ZnoaW9eAjXWL1wxAH#y-NO=x-0-gK)k=-A?p!N
zgUXRZ0<{92f*kGVFdzG|w$IQp0TupQHiUw>S}p!~$4++tPv?Z3Gq-1x$!y^VZcC#4
zU>3JiOhK59owE4?GdxGW{#T}RyiH0(rsPJXisx7haN#~oU^o=Tm8WvdD@syf7)Bs`
z<%)1Bh5T=E=sW6eD{`R}sIVmgh1SMCmhHfpC`ha!i4j}L?N@MgWE5VDI5m<T&6(Yj
zI&V=Ql@4nv_R4>4Gz#<It-(_8asFII8c#AZ?(zn#)NSB#*@z6|qfJKvLpwSvn=2LO
z@Qo3f9JhDJ7uKj9FZJQ8_6tg2J*09yG2Y&Ii_o%m#V0q;&U4m?C&h0B(ZKM7F0H?Y
zAM8xIBrub~%R7nWEFv8I7B8xpDLeWQfNnEy)Bv0jYBX{AZP25D`Am0A-u?rR51$l;
zQD5vPqvE86jA66=GCFB!kb3$d6E_Qwe}pd|1E2?L$tLxZ5;@u-xw{DMHRdkZ8~C%Z
z6l=i1i1-502;q2ctz(&WCV=zzAI)hfVGEuhh&paWx;l4J4VI{DYN(U;TF=`rGGi@u
zCq4yjV1*9Q<#~=-rrr)H+dY_HGe#(iDgBcrQ6$g~Uet-k@K!N9HP4N`fLqo+ved3k
zo`$=}T;>H!`mGh-vrrWX9@mxP!0+veMf|@pm(Q2)?aE-`SX#SA-z$hXDUf%8lLyHh
z9=k^Me7lX~J@BF%pk;HrGhwsbt!58dHMR*R92(0pj(Q;DZZBNA(i3=VX&9g9UnoBs
zlX#Qj?zuP1I+mZB_dCYl^1F;igrUg5Lge2EU-s)8G0ku!sIv-14pI;;4WJ5M>ke`K
zJR=Y`KiNy)PwwG!B5W!}_Y(5fA^35_x4-yMdKKw3bfRmLLivkRJwp5u*#Kt5j6RWE
znsVmR&~lg~^c|R4S5l<zPynHd+QO(sR2Y*iD=HVhaQO~P(FG5Uq%Okb&kL+=3eu-a
zCW0|rTp}DtQnHF^c+6*>ba)ZavM~GYtNCi9dy>Muke4-TZkk*H6%tOFFvmT&jf4}+
zgP~dFBzx=PS|5A1X-YcJPOlVJ+Qe7jGUZl`s6_v)$JEu>j5b9g89N=orQXIuXV#n+
z!Y8ghc0zWd7c@w{W1SF>ULg<gyqNZELAAFjFis~{3j~E(O@Ocu<J;I$ZRDXW+0#ao
zH+kGi*K^0tiK8DUp@iMppN@fck*1jUOjeaC<e}yhEbx&ye<mIrtohDi=pAGwM!(Ju
z<*pF`Mb0Sc<@(h69TTA1IKR&<(ZyAZb#6cQe|mTqA^>zYkPQ)?Ku+X^!H6N`Oq;0p
z$=AOX>=L(M_GP^Qz@kh~ESPfv@t0;!2@20`m0Nd>jI8%cFOji)l*coa=9E1JIAeXR
zz8b%{_@!?#vbfLV0Y+5T)KK4mI#$j3$&E%|vDrj-(`zl{xcd@B1Nm=Ks=*L<2p)|i
z@>q;w?|b%p!a6Y^BXNJ?kR#GF5%!p5$8!Y~K}0lT(p`qzv?Ed}a89s$J%UB6IDG6k
zy9hY?6$Y=*k*zlGhe0gL1ycKB|C9@{TH|361PI_-FD4YHlZ68;So>)DMGLYIhsy4I
zst~IJMmkQIMXa+`7%|HT@>!&X6jGKEmz)1v=hBquIzzioKa}5RqiKi;U9BGEnP2z-
z$3pUudAS0FGWB|Vx%DAmQst0ljp-;$vGHa)f(Rcee{S^frFuZtULOHM87;n(5<=nM
zZkEooB?(SZP>0uoSZU?4<g4z>$^qCwH{-omD0GLu$&-zPQ2mKFEM4dJn@r_BPj$FW
z*`V|N0+5MxUF}&4=w8dxV6SW@zUxZBgs1)zxLeI@rFAG6rwhMzs1xp`e|MBG@9mfs
zS4D03klXwl$4??k&k=tLg2CCHX-@YP0dO4Z5EzA%gk22IGhCx<IQ^%f4Rn7Ji2?wU
zz2c-_6OK-{tQ2$5f1Rk~d$X#UT=}W=1G=&`@Sc=5mE&b)*9fqW8Ma^TK#7B14t=;n
zN(((=1f@>bWGs8ztwEp|a{YJn!0ndsb67qZ@y43+(G63IQe=7<<MWu+G}9R`Yj%<U
zI`6ky4J{V_P^_fM&q#prN)HEs3+k4b%;Jq+cLA|jCx)gPYH(4tzd-s-qt^!td1aZd
zbk2K=9M4!!%r+?)Q7M@8+O`mL0_G<db&@OC6k*5Hng_c1)rw-cA95Jg?N6sOFtnP`
zfHzS3(Th`RNClJ3*RA^Jj2&VoR<lz@k;P!_d_=fH^Em0TK(y4(s!pyRvbAXyBRdvJ
zYpUa)%4Q}zR2wu#+4YWM)=#X*PKyg{YS_b}9%wY29xch~7+8phN`SJ%wGtS9WXJ)0
z?3!y`0I&0fOm(eTX%u3fH8xm?-Ro^=<@-0n_i9X-fGD|pG7@_1OVksuBFY`Z21VEf
zM3QM~ladF=F!ND@9zFjr%}HxG%57|Xa<VduRYEOi%B?C_r!2hN{8`8M{59dXesmd7
zGq$(yyNTh<nf2v&UX-$aHQ$gr{qluzu*CKdNUnmGpY4E{pVFy7`dh^3;(I9YaY<6?
zUgsEqx>0L#D5gr=B&lJKfjM<BdP27giFD@f@!YY>x6cvY2i|b&i;nr5PC+JFYIeNQ
z??_{`5ijBGff5)HbmjGAif8#`e6K=oQYp5H3zrb10E`q~byV|u{ee`9c|!S5RswlP
zrI}@+FCU(xxV4jMj=yEjWx^Iuh$s=@j@1Izy{PGq(zi3pK*)$UP@F55*rv_-0TwW6
zfCBEy+_hft`bnwQ&`%7gk^<xf;DEHec%e$Qvx9A+p93pB+#DGBuQj)-<9T2d6hyb5
ze?Q{Gv90PqOsw2>2Q>gOmUC?xy**E?Yo|ufE-?Mw4~$u4aW`XH=L7`z!*~7Q?QY#`
zkst%XFwilfjo9p$8~mCk)gewvkpWNEBIOQmrTm_<a)mCjHt2}1qFgz02noj@ammic
z20dHU(OxwXSsoHG2n;{&5_Jl`Z#Ui?EvY?Yl8ZEKZ!}~f*2+v*-2#*Q_4f;K$!?6s
zVTocO8cRs3jdb}1Rosg>i#ypo#MqMtu_iJObS&hTqezkwAoq)()qPcOd?8~pHL(#a
zJRG`<!}zR0(`{UA#_GTKrs9*by14;NeDGTI?;25O_bbxTaKYT0t^K1P%1t<!*J|VC
z#q?xv+AxB{Bc=8$;_$YYsflV;3zNSIW03vx{R!1No&oGc9WN9#l2!UJ2usiws;`Nz
zEi{49zm{tu7I1oFtFcABC<IZH+PE_D*sa*ABIwsf3uz54hI~Fo0tbPKWuK)4mK>mu
zclkh*w1=!7-*!{y3lOC|?Q0UrBr0dRUP)P_i{pToe!(GQ*&F`7gL#T}P`Rx*mv0{b
z)PEfTW)YM~qhU$}g&la`HM5F=S2-W7JmcY{_=UWH{hFM$p(jBj?qRKgo1Q$hxwXVv
zN1cYFAH1Y(Wnpj$;0xXnQZDki2Pg~tI}}bAh0@-w8GnQG54~Pc=(Tb?ayfyUKv&!n
zf`r++WJT0j#9JbSDjCk1rHnYRV2;8mQ^AtasrLtF@#`!of~0(yt4xQ^Dp)Cv!R45A
zAytq~pj%rCt7%vTGLO$^?N8nOp=-5J;#K~d-w3hr3H!|df2#5+e_PT{CIq<-x6|C0
zcd*L{a}+!x!`rCDQb8942}^`kJtUo_WSxe_FxW1=Y6sEno^xCGd)fSOHTA0mGyr?{
zMHeOX`cFN^+C(Ii*>DF%VnTco)Ctear0`8E&G~L|sVt~fg3bo2Jm8(l+`qPNuK&II
zTXvd)Pdh2|eH&;bz%n`mDi^$6h`kM|A0Sm0il$dmOVJTuC{J6Z9|m~+R|3BI^EYE^
z;f1x({_=1tHiMPu7gRPD1cLiMN1fc<@W3V{iv&&Z_1r3O(89@J>Pj~Y0w}xP7WWg9
z(0FR0P^pF|ws-q*uQsZDQKwa_cBe3XmP%ns4%1;tg27xyV{R#}m1gBV5j`MtShF>L
z6~HVY!~rSG)j6)&qalKesIV6~8R#VgYGaq0Ji5eV6ezYBhryQD9l9s&)#gpYl7nZ8
zGt<f#aSKn=G+as9vmfAOYJ&SJ`d^WNm3xQiR6;?uc}4KR45I{hJ7FB|@9r2&xJ!<h
z#&|*cTa&S--TtldH;H0~oxBs*I=+4B>cDjAB1`q`-GinnOr8IN3|&q97q4rF!v#iU
zQ~b9oB#6`bP>sd)MfhTfIS5;dwW{dLm2t4hbOtA<rN$%W(sB4=o54;hRpMaC0=?5L
zo;~g41SQVV^Ych<&l|O;xY&t$W|h&8G(r^oMK7AQ6Hui*Li_U@Xtz+7cZROD&rqi;
z`^T#1ayGkB_a0A_B?R!J;dI<%$BK6&k)R%9i9<yrCvhr1WWP0*WU7O!Htblo261EC
zxv-)IGqzLW?AFAImUws<XIV8p9x&F&UFwbrh)TUEmwD5>O;Wn(BN>1mitIQFtvO>J
zQ7vx>i}WDEh~JIJ`tw@*Y~K@3>^B8P4;f%d+@1z)GCQEFd@|v-Yar(lj;j3$NQU&j
za24&^k1;${`~w2=kdSF@!=86G70}k(T|Y?k(x(4RA(iRbcZ?xD2NqBlcFXgZj%c9`
z{a{ABG~uBZsxZA~t-z?SE4O6ZX~I~BKbiVliNTh+T!$Hin$j#zgm6nVN{5@z`$?kd
zC)RQM!W)yOL?zJSyw9TLfn(zO^8(h3q7oTxZu4w=d4o3gQmLvIEp2e<o#JT~{*%@1
zg9TRT%oR62{?@ZwWHBa9e0bw{<(`jxi$vST!5`o-k*hfNfLBJdrgR2wfWjWn&gpPN
zLg4);8U3vY?^<#VqNK&}FrR(%US$Eb35a`2h$>pFmGlGZ=WuJj)&h=16cHS<*v;SI
z_ldM2y)CUDPu_L8f5kb9N#P(EQzHs#T39)-EfLorW@p2sG~sh^&npLAN?z}Xax9R7
zbcu$Hj5Jd)p`1&8OGUivX0kr=)3*ddB$Hsr%oid)mvsf<q!==u;+UwM!3o<HFJVRB
z@_!ip-4~Nn+Kl80M>^R2wr3t-kC{+klPbjjNqn23s>0B&w{JM$vt0J_rX`W^uZN!E
zI_SnYr}Zg3JD|4@IMypI3f5fV)hDl2Mc9hBU$)c*?QGtl6P~PKB6b;yHyZ}m(Kh@q
ztNbOP(}#pEDv(;hf|M%46!vQUJw6MCzAz2ffJHd+NCk&5`F#)&^y=cf*o}1eT$i1F
zB}G{LUpJU;Epvz;M<7sE_poNoBL}o!NkY+Gn#howX)y?XMVkjfxDI?o0q_qOeu2(X
zo3xOX?qJ}&p%Q5b`o{zQ90#Z9>RX9?@cyt1G&O$I-33AVM{9VCs4J(^)@<zDVJCm^
z0u5(ovC^=YB0$PWbj2lV7XmR5wQ8*noi>K{Pb;UT4c3#8I0m?sOp)N=7QX$E0@Ytp
zNd6;|zuiw;4Z(T3qDD`OshiDZ2R$?&(?Z_s6Ab+@QL=<3@dkGrv;D*O)ZC%h@ov)#
zkI(4S%Y#$9+~L<b81+h}4HhGSBwW5k6pf{|<vk&UV59@Q`kgL~z0!PTQv5=md|F*K
zk=fdyRsF7|_0ZpPfE|$x`W^n#NCY>e?{aY<v|O1LpC*(1zQt-yUE&r*eV2GRlOw~v
zrrq(?691%Jh8gJyfB)EoVH2LZ5Cfox2peLA<~@+vf@w%ZWA1%1+j})eHR(OF@&pT0
zoJuF>u<%7RW+OYKSidRt6`hw*eVn`UAV<kOy)vBUkl+M@6^`8s4=<}&MgwsXXB>f;
zJ<4CG2Ld07%h6R*6qm`UZRMYq^s=S$TD2fZ&l96L)5zn*%G;%62pNoy2A%A?r4pIw
zPmx?kEflv^W*Jgb4{*6a_+FWXH$oxuO;Nsga2q!jeR*rzA#Ch+pyqaKDn3H3<kvwM
zT!us4v1iF@SCRacu-a<P3aEP$$C@I8i$RmW8gL@ZF`i;;UNnZf03As|W0YHYRB=F*
zN}~bT!~SN+^WO*~VD-kEA61PVFKw04VTb~<wHsOCJV@qlKyVi`sbs2%G#g5shdft%
za9&OIS%xu3>y~qLXXimM_&_(Fc)ibQ<_*f{A-Ia>dFNtoWv$mC`F0it4Rf`-*gw2;
zVk>u0daA?>gn&XdV3zBI2AM7@Fk~88Df1d)IO;6xH^gZ~?H4;E{!#7)gwIQ>y3lQ<
zhd}ZEY7VD|QVWJYRXZ(e<L4f43?Gf-HnjMIjC2WxwMp)ojo7dhDcvL%8pq7CAbt7Y
zMy&eXjg!V*A<Fz4HF<Vuuy+NuRBP*WJ_!k%X1$7Zs~fC0)B`K^f<!Qn!uCub8gFeO
zlKsdX?p-sa=QqWb@T@Wrg4jX5>=f{>`rt3k3xPS!>VyJ>2$%E~PQpSFgB@epl6GIw
zZ*BuF@mO%<)bXjBHX=q2!?`|GOFTrI@tG1e=Nja7$b~9OTsr?VfbZhaj}W!Vv4P`P
z385g3Gt1uUKs=W?m&NSBZL>#Z#(==xzmpv`<sd{<ac^8AWNQ$-Ka+kk1%&=o9qqST
z=izPI02C13Xox%guL-I2XWgW$8y^W!i3yvAs<eEm)D!vBHTua!{=`Q>WC}Cv?u|SD
zjTY+_C9C6-eMg{wNdCt-a#94VT7?!`kNr0IcupKCCTE=)8V#971cn5>=P<^YZv_G9
z=t9Vi#s6oZQ2W4s;`W4&<IyBB>172^o1W`w{MInt8@fzQ3~RVtnlH~YnEXc>?+hw-
zjelXW_Zz0qH(0ly_zar;9UTvh5J^6_4DTPQ`GF&}ILoGLms(#VG32XzrQsRLF2iRX
z9HOVyb7c1(s3S{~o>B@_R!ZgmcLc=wp@kZs`K^e=n=15sENz{npEadLwqAZxAmZbL
z-mW6cz(@5jp7x4SP|Yw;%rre&wU0B_TPyQ%AlXzkzuA7vRuAlR7oX(ISNCw}M~UN1
zAfhmrr1yfApEPTjtO%bU@Y;&03|#qEWd>@y6D-B?It)}}Ga>#%oI3zFaKc?EToYMF
zL2glB;BI^2;)<2y%0IksMn%&cj!xARJeUJr`O|}c3@1{-*Y+Spe_ls!U&=Qg{t8y0
z*f8=eSxYC*8#rB=z38Jw<!QqXBE;n@XY%-U-jIoiy*xKakjX4;rcK3f_8g!e&WyL{
zip@>IiLa2j4)*7lOIg2xwSpu2AN1JW&>mQns~eQO#_SXyeCU$rSgXPdCTs2#0{H19
zl9t(%m!Ky?Ix#<0%BQr^8_5WKH&-7mT;ipyS?(wqcae!tdg>4&$)wHy%4n~rdXP;2
zfnC9j-@=l%hEW_OQ)JR356yv^ly_HyfDncRIcgHy4#yvzZ>gNFCTt=4`}rEK{iSw+
z?U21+5>H6Fnuy5;Pg1o|j$QCXJY_(hk&Qa1c#_?RdWCx-4Cf72+&wE;gmsa-#(y)g
zB62P0B>JtACAs<3U8jk~elI?Ef)y#=^LdIiIsZ~l+!F@44On-{A8sl7z6PM+M}p#E
zO;PO?S}N+LzqC9_AlN|WB;GI1ONnbKAUkr^`ApyWyiq{S6wOblbtYbmIGOh3u+kl1
z%Gj7x-DiiW(=8ihTwE%Hm%O;W)S{ARS2S{qC+?oUlaO^4EL+had5lH;PG7I?*KG=K
zp5(q?L-4I!_o5ZJviD$S{in;Brsl;1+GDCQXdf)bI^^`e?^Y*)NtjZp`ujDlB2Ar#
zU0WjH5Sjax0eSkz1UP9Pv)1r<+Fs+ZL4zLPS|(eVIdXL2iQS&OjH^MUN=yn&bm!lU
zq2)FzZQ}@xf{^O*SkSGCHk@RZ@~yy3NLaV9U!5<7$w|&0*D!S~j;kCbN4NA=h@O^L
zGJ*Rcdt)-~e2^a&S#w<EZxQpn&EBgR7M<)zgVN4Y4F{>!57$q}`-aH0os_TCE|q?%
z84~S5{SiBY6lHsMCuJ7qucuF1cE<#UBIRe7wpE%XNFKTFGLd{Vt@0NrAGT)FuaT9k
z1-q*uric-8EFdlr^wYk0C%V}Xgpau*yzylFMK2PT$bv#;C~-9K5U*7AkpNzZT{}#=
zW4Vs;T?OlKu7C_wMMV+_mEgmKs|fw(#7y>eV75g8^lXli(RUgFa;`60mo$V66$YVU
z`5|Vw#e*eK>ZQ<UEQccyq+-pyjBC>hlsG}hWvh5Wxmq;*kBLrS?|dwTQ50=XYiux)
z4O4sj)#334#!&S*=}3Fb`MfTRn_@-R7>&<PQ<(U)Lu@n_h^BT-GRSm5@;pEgN!*Y8
zfhlL<Y0eusOqS%T{fO>(oY7jSyA7%g#khoTE9ggsvI|Ic-c+~I-=r~nU)hnucXx?C
zk`$j$HneI=Qn(YuueJ4I(mA!oOcu92f44Q)z#n90D}akk<0wB`;oV2kc_`C}9H2Ct
z5Hz1GUUg9LLy!!yq^;2^7U<YJu!RzzzscOZZSqjaew(azc!D~Sx8OtAa(SSBYm(#%
zqUhb05ED4o<Zh4d6vj>=H#Gc=h$BQxLF>F=v3m{_SuJvifHwHpm@^Fb-OU5OL6H+c
zGTb+-$Z`t~$T(3XL1TwBtpGumCnkZ(OrspWh(q*I4ZZ1ztk8G43^;%#2r=6hK-^R#
zByO(T1_HVk5%a3uo*TF?6r&@RJDt|nq8dhYUMX7GjG-<WH+Rn91JaF-chx{xBTKc6
zsAy4^jO;Pl7UFc*qa1w^t1l+na@aI&u4Kzp)N{x9bOgC}4TPF83I;AGX#`bRr`X*;
z9+qUx3hVv#90Rxna+I+A3YYUs{{`~#>@8jU(~sE|`-sl$BCa-}uS8fd=}FxSQFC6f
zq)b)JFySFqjm#5o=4PI3a)@W(pW;?H9^Kxo=q?C##ewdfwLSUm%jA<EQ8^$!wQB0J
z`A~6eYmMLF+Os%;k>m#2UywMjgXqf=(gs-lAd{hF1C`to+d*NgSiK%S1nTf0oaG;&
zRz<r>g!8Lof`Jz^=$@U>Is?w>PlVX{<MNvR41~RMX8HWpWpsZ(eb1vSguk7OsB3(q
z59gpV4pQmYuiRO;CzRx0cmKGb@&4+Agl7N5qAd`4;Yw!M*l%~qfD&&i$QiZ+GZm^z
zBK1)Jf&<j!F7?I~doQR&f)oUn0ExRp#STp+o5_kw$2a2I)z1_zWR)z*k_9NqkPAj=
zVpz_oeS_ORd;N5r?ufZUO4~7P!I29kQ>>_EI$=VYSxD0-k%Rrv%_q%C0x{<UjQuKx
zO%rHs_~%2Dg@CGHQOEmRmWfWy;VcY*;q`0_4A?$*S;K!MuvS*8q|ym`t_bX#rnZ`w
zAAUzkL>Y>ia6Y_N)C+L8=*r52P+Z?JU3H|l8FywiodxOAtwFn;bmAodk)*IlT{#z4
zgC#M*tkWdf3{~tC)xLs%jOBx4Kl&4+85AT#>bA-M#*C;1vg6dSMk5)#I=hZ=ID%yv
z#N#>J+5u<(wP&9({}d3>HTHr+Y(LdDCCTQf$6tx%Rj5<_)`Pkx!PGH$(mNmBQ17*N
zD1#Q?`jS2r2)~c6NF!qoj``)$DnZWu^efuFTr5zp7u^)#VnXcnc=H)+GVWbCJ2>I#
zphN$W0eHPlrOZepY$Nf<Gy_9;3wa1-z*)cnP5B7=<tC?bF)lZ#65q~Ap|lN8DkpZ|
znf7-qEoow4u@#f)O33atdKk%RCM;~@LfVtoykAZ}B|oR<V?ZIWl@Rs!28{Vj3O@rI
zuUk!*MgCwTloHH+-keXaQFvRks5YdtsTny+Dl$81b?G`-++4&<gSz_Gi#|a55MSjX
zoi$B=J;~mCHqvB%tCmyqPeO*JM~Q(9h~4)pMXX@uSs4}d!Zw+*W~@DGuZKJJO^Q)h
zgthv;Uol~q-cj6R6HjnvWs4dEO<>4qt7tdC7h@qjVg%E%K>tFSzVmF+QJw~s&X#Yo
z-a?Y_Cu3oM|1Js+x~_yE>K#hrLY)%ztQ|?H-K7*gth*{JY4|Q@D2BWr<M7&cBSQGq
zmA&0o(#+@-0KG3a7Jj2Jd+FVriTg#tvn_UkuaDLAGq05N=`%3sdBtjoMQ7;;%FEIg
z)0*jOWo-RVA<DA+tM7effAib%p24I*x%UKqt>2y7aJPLfsO|h{#55EI$suwi;gg+0
zY7hPwt~1=7LbnSBGl!mt_!ZNp?zlY&ID|k{MHd7V=`J$K=LD!@qg*k*ansDsBAE)6
z1wTt{r93+NpBCprWH1h8hQRk00?naKU<R<N*?wZ+4mawM+b487i?vKLYT=3Xv(pw}
zT8^Eho2c!-)vtXJKHxIlJrI4*m*)o)3mYtI9=qk29_CqhEF}+~LEhy+J$mPWdF~XE
zQec;3$iwW`?-KO!v`e{pEUM@9wtTfHlc9W4YHzmKmzI64{YhtL;z&q1$6uyVcpJbo
z-IJ@Zo?WLF&d3m*lpkaIxH+BrJFeq*v8sw=*~O=J3Jy0h=z}b^c##|D8rMM~@#8vE
zfPM|pP?-T?hEd>W{!HP5Pbi?f2TffoYF(b}Wn$bby>+9ztcQDepk(vg^pg91_jVs$
z5$&+gnOU*hvzO84#+kRAA{&;#0PUSE{YH|~-lH$4zI!|J<&ZK5hFL;k>;S^OSkzp9
z9>PM?VC?6KCo*@PqK`u?9ZM`sMgCV6){OWCo0$s*rd94jV=V|b_=t!5pO`YEGia5F
zVK)s+1>z?ph^|`SK*;%PvFr%W2Jz2k3LXO8oE~f}hXXUAPRfqLoQL*7{N>q@Zat`W
zjmUB74fgVT@=}jVXD-Gn{?YQFQsbFY=1tP_x$ZvIE5hHVV^TuhzyJTEId180n&6F4
zsq%r{G19o*4YD;Pl0Bisg{<(4G-Tfy0hDFDXVuyy@Xcq0(%bN#pdex9V$q8zQS)4y
zHi@AC3;fy+H=H051duV4l;v-R(%_jBT+j?mU%>S{!;U<^;VhxBZ54aZ`{jIn1TW#v
zXJnhiwz={sN)DGcC;Kf#^0=mfNp~0}s`DWjDd*cJ@NMJR7S){&?FnKHK$r2cSO!g*
z4xAJA$URsK_R&J?(=Qq~L4uI(1FqJmo6397M>(F)b%Og+FhTkw{G`pVJR!a7uUh#q
z=*P!w5P1EFY1m7>^0qBNV1Mv0#w3M6&ESSpGS4COlZ{rz^$j<MyI^N^9l6sNByg9x
z6OM5Mf{1O4R?o2PjW<ftFLTUVtOWu-aiqQE`@BZ&`u#uqy&O@o)pwrPxMlkR)9=@4
zfvi<6)eW$k`-sPEZg`kBuBOPp-<iIDE7VL$eibp7Er9+=xP29)l`UJ9*(m=rcw_WI
z(>qJ>MzKa_sHKzv=s|6?MG3D<4b;w61co3)Z^T9eJy&ErvG>Ys#VyUtT0L*}5*RIV
z&^-jLIc@p%o%L4h{pQg6_w+iW&;Zdn>cBiFT5BeKA#-^|#BW2haqY?5Bd${X?s;4c
zuLvlqjs4mmGr8P;(Iz0cFnkkh@QXjYbQR38m_2A|8f`V4jJ?jG_Ke8Vt0?2?!;3g`
z@f^1l>RP=YrmgXZ<#<@5y&x|w@=b?W;8s$O%$UJndcR>wP@NH`=|f>Hr>@cF#yR*}
zK=1!2!!TO)^=>pzzctIsLYa(FE%cmSlUPsv_uT)LSPQ-YbBR@fN@f9gMJ_j|25>aU
z*Y1YEQy<^*pbpG%<wDDp&fV(VPX$<_>`akB3xqRvcB~$n4l;0^Sc#Uue=IkR^=NOm
zSiUa|IL&wbCe$;r`N!A=cwaQxcDPgT8e$zP*l!-T3zc@&kjYfv^LC6{eRCVtm68k&
zz)&e}FZi$i)rAJGO7r~AlFn_^x+(fpUt=S51j2{~ZCs623_8pbFVvP0_JkEB+rW*i
zBuyK^d>Ya7`Kda|D`i83M}wME#zgxg4w$i-=`cD%mtHxR|8Rk8F8=Ix;A^Q9XR?%-
zYib^(J{E-yJVEAb8*1$hWb0Ji3bS!ltck~OR@DxN`!keL2+IE1nIM31)XElHGoKO`
z39ZBP_X{_mI{C;tj)PZr#O$nRp!mleh?ooTD8t`E0g5nHI|r2*EXd+j|HaECqlVc>
z!NmuQOj+~$JN-}ozr%5J&2~-EX0lZF>TszZ0@=|dB!GA!8wvhKG_G(~g`znEP;(Mp
zV)||fjJgH|VYegS*^^qQ>{SIK_TxEH3ag$|HPW=x*n<mA;!2QOX7<GgU}Lfcn3qD&
zC!m#_&4!MZwhc{}rmrFIucVU`($M_-cXqwsvIQ0>O*rc=p`{st4*8U}(O9*L17c8a
zGPcq-T%&WH&+a)Flv>%YQXQFIg~B1?v^@AJ%fi&?|B00HDR>e}%fxiZ$Vh#9*0rHy
zVhYi+E1fN(M`}o+RAz~*H3Ag`N%#j^YXz7mvFfemauuUsfumQ1S-2iGrOy}w5=}IR
zAqYQAu<cIY-_M$)TA0<urImbnmshE2q(jL<YyBZN`Di=bxY;Tri~hLhg^faUz_*3|
zL)19Aun+2I+U!MON3@LhDju$Evn?jOR@SDC8xcBx4!W>iT(Qr9zL&AXF2s=bm_9Uz
zRnLfs_k2VqexBm{=-UAJ5j6~d`xHC#%-4TK?7#sZVOi?&m`U#fWz9-M1t6dgmfu_4
zp9~9IM<a8KwML%0R80f|r8S&8Dbpm@WsEeyL9!CI*F7?Orm~^Q^$g7s{>n#FJ5<}A
zH4*P@`tsi9i&F+=C|QAAl18K&C2gPfI`ykowj&c3D@k_o;WK5kM$3KspbWGgn<ZIM
zS+*xzK^X(UxgM@~;NTJ2eRiV!P#lNcISfFT3ci@C$rfpY7p}7Ba_nLs5};IH5TfJq
zNOO3FCcHQV_t*qw!E)3T3EcAd*#_k<&f8f@dEj~-vRKhQ={v{`=QL?%20b}OD_@sz
zhErfx#`98hb5j_}Xx$3vMfstO5&`X9g53aV09{>qhhx;^hRZEY^W%Rm7zF=~4v>3w
z8|?v}(sK+`oG4@=5Cuw7Zw4%JAl+??GRE}ZnAIN5co2gD<1@A7dn&ETzaAUFy*2@?
zZ`sZH1FXUymD5QWqJ@^_>IoL@Iyj|29Y!8;Ou0l0yX}}kXgH%f6s!F38<&CwO{`~f
z-7_WA@&4yf^3CeHoWEV4*i*lc2G$1CNHt0fhp=sjT;Vla!nvXp;?wigy-uy`!4V49
z%{Lvd)@$BN|KvNb4n*r~G)h(w8NA4i#OM+*?sveLr;C+&QZ`C>Q8$u|(*HLK+~!b{
zueTi2%&uK+%FY7BGO?!_11?`EhM7N4)IBfp+5E4zVwEqp{ZH4-%RlvlBmX7I?iK$H
z=Rq`5a#V-b7mSWHCVP{H+`;!|1HFr#s;g`*945WBqF_u+21~bAM7#RRA%X-7tQb7~
zo|hbw*Nk%yj^O$=6Y0-?e@GN&;L@_ASlz3b%k3=knVWb=j`RQY*abZBHqH(Lh;KZJ
z^QNYdVWFNFDub^3&Ip!CZz8hp`5}xb8BX664#V{K>r3b4%n!9KrO$c-+=txLY$beH
za7~J`jN-|7u^YmrTUiaB_UkFUQ?B|<`~;5uGuQHEIaH$+44%vex+$;xcZH#sb<*NF
z(uVa30_p20lSfZ`F_!9u{bkd4YK0gs@ud}<D-`oRM0_Q8I<(cMA2m5o!m#=XJ-UaA
z4l9dRf+6TaV$@5t2xYa?f?m%Y(FwXL*x<!7NJt?#qYY`{H-3vAg3?Y+9pT@!@H8fC
zA&@Xp|NbVqjmBlLFTyTh9b8?~J?j-sj8l&%3k;8GNIh>K%EAj2ac#F`BPOLhCunw^
z5MiCM72Eun{$%(+Eh)q7suhS6Xxm$<XX}ydAoq8P2j}=430@aMtAwdlQX_i|wd}va
zr?-0Ho<**P&x6Kd1hji7W*dWMA`eYeDDDD-@j{DHrqpr?$Eh)YOn@Ow0LfMQ;~@`A
z7g~-lg&H?Cs44k~9~04kx}f?B|D56%^;7U~6xsfznxJn~I!D2z_=*Itq$(@oSBK}r
z^xQAqxrH@&76}mE!;cu4Ot6b!jeb32Zg8CQHEsKxEUVxb1Gb}KVSp(re}y-}n&Cnj
z`C;<a10BPM&>V^s6rJ8OUM+8e|I&OQxp7QHIgp+AU2>_gF~$>!G;s;=!|p^WBFlaC
z;K2tC3*eqy4fGn&KW3akLUhi#<$C9hQGa&&$}hkrQ8UV$6Dwa@s^eFlDR8OLIPES7
zl%HHFv_`hFTHQHP6E#r|=O>?@r?Ee!uhsOWZFi>^#9>597pdb2Ihepa5ro=iM;sWF
z9W0$nP)=NDkK|^}Q=1kklK|;3>kJLPt<I)g_WLf*83V(4eLQ>gXqmyd1J4P~RIE#^
z(dV8OXj5=_SY*AimF~DC+aI)ga908$VQTS@nF?}Ddk;<px;bYB{@~YKLz3eT;vr$W
zH*3&ro3Ngb1KI}m&iiI=1acFkZv{nJVz*|Q?_i_#i+(TD!z=ObAl2&l5p;Js798Ft
z@mu9Ip-QM-O6qt3jh+Nhy-C^aiCKf2qe4Ld3VM{$G~;A7VM@V*nY}u)6sZ0*@p(W_
zwkpJmy_fw_2)D@=Dj!i}iq-Og5kuaFy7}Iugij({=j;_RvBS1bG*R|n9zY(cfQUST
z_<VM52C7`4mLl}HXGZc41TjXa?Tc9VITM=SFUc_c-v1g)oZP4bkUx8Js`Z55bhjnJ
z-Z3<?qaS-7y$BrxLatX;ON;aOonYdktd853PX`6sEI0}?V_isg*VPK3-mxHbt3aV6
z2@h9|BV&-Q8>15?s^Z!0#kq45D^VR6K{kr3W><FUQ1P>$$t8!XZw}L<z1(M|=Nu0P
z>UXM{mrWoQ{NA*&gxMaZ0MC;?bkuJ<I<ajH-2$LrR!~SkNlI+TB!x++gwmUmnQvtT
zC1>~DnsoEyiSjxQ9n{gpX?f7-`P-T_z)S>zaM8cneCzARLf&izu?U&L;%B4w;hW2F
zjJSW~dkObTft-e_C94_@qf;Wt7K_I41aD79VT}iOysZrlK?b!#2;P)WE-ikdEU{xm
zN9jDu3>Y1|5^^2w{q3~!qlv{oUyap1Om|BEBII+T>Uo7V15vS+WvuBr^--Z`Na`|3
z19);8y|l$kTQV_?T$pt=UZ&4EU@q?{gTu4JkGaL9!X6E}Qm}X6lO**6JD^{AC2`MF
zE<&HiJk9^XDXO~B2|P2<NB<-TRdX;`3dxdp;1#&De<58O^KmXwTb70?epMDEvqL_l
zxxLl%hJV=eSZyj{@k#n{g}?#~JA>sVa3bsZf(1->e9}_Y__y04l4_6<x^Tdy9h&Kk
zw_j1bwRm~59^6D=_hRFDPDb8x)@%z{(H;W_X1Z`GOcqZNA-Pb|t)1ZPT=4gR!Rfoq
z8T@J;(S8|WA%2)4@(TX8f&!0b!G-(r|D%3_9gSwGYB<S)4z;68%>64=gJQ>5Mw4&v
zvjBRwKo@7TRhbz@@k_FILK1Y(i^ar?ve@U_+V7V_0K#aROwon+Wcgu86Wy=sA@uP>
zcA`KI-Awu{bA0(wtt*<+vnz|vU;>_0T<0vfxFLJ-Ti9;$TrDuJnfChkgma*Wux1H0
z=YaCw$_Qci6j_@*{4MwUC*hnG@k1{^Jwq|K?Cq_A>TXR3En)Kn15ia!D7I3zJh|F%
z`6G8#b+2=lIz(Ycu75H}4GC}@S)NYJBGAYTy}H-zc#y=|1O?qrG}Um(FLcpgzJEe$
zeM}vEb&q}Y4GdrqNf?js#1-ORBPU?H<P5OV@e(=^En(*iS-|sX(~(j4af$jmD)PA6
zbMd&VPl_fd$e}urlK1?VM?Ge%TmN}MNbXAVIBX<JOU}v0sfh9NKPbJ3XxoFYB4LMP
z(Od)vxz=CV2%0({HjCh1V6{lO)YCNn&%IQ2R@IA^UmW63-A30<l!nPd7Pr^hjHq%T
zm-s+Ql1oJa$*EF5h!i76iJxH;$nAp(J#DP3P@-fLCpd2A?z3GwLXtwyIMq7z)X+Xz
zT1zs9oO$x9--eR<GrpO+VPH~(j~7yQN*ime#ZLw|_G~3CZT&~*;k7Txavx53Djcg8
z9F$CRy9;*Jxf2eiRo2K!hn+eJqdF_tCfQ+KOzs%5G7MeSZoz%t5^5X*kP5&TiQ=^W
z)WDyI);TkWACE|BkwW6uQLeunxyJ7@kQTmAB)H0@I%*q*(Q#%sKZJFt>PTLNB!6f=
zPnG-~X`qmHm7vnnM=zEC_-964I?ikzMAcDjr!Ac+Hyp?^j+Jyb(G_~%WMm|;#;9}*
z;;j;(#^!mR=FRH!dU50OR;(Jk?at8DQf5BEgK}91O*D*?3t^!Jw4=j?>)~m<k(Dpa
zy^}Si`3g1<o2SJ!wIB^w)mGmo$RDY`trbgS=%1?mS)wz&J+nJHcWA*aU}TvVJM-$a
zVNckd!9JM$ZTZpD8v0sCio3R@f3jdV*7*aXG4W(`k3Ad^BAqX(1Aiq^&eOn6HAq7V
zWF2KospR1=i8b*SB@(tITh3%ka%;)2@sY%LHc5S{lVrxD`EU^IQ>3-n1V7@TD*u8n
zGYr~Z-oHv(w-`_fnHuMcTK%Y0d-f%kp(QKDZ=*})(^8H^=;-xlu-POq000X90jLCk
zJqUl04q!F^cBmQJS5>T_DUa|5Pvm;MCS(U(8<tN$Dr<&>+6vOH-|p8yy;J3YEf%(7
z0k%3meDvMNm?9>x=qZs=UWv<EOleZwx+QNjs~<GvWk5xvF%~cxqUk`R0!37E(o+J~
zG!v04sqQncNBoepSx&gY07WjBht_+K7eU_LbggiByxG-AT7u|up>bgBMqM0fzFSBz
zUzK+(BwijBzLtD}OQ>gPCj;HZpq}7CPyX{mFe1RniNDbC;(PcA0+URR4d~GwqGVO8
z1w**?gj@dBcTGt^1mzH2J4nQHj*&qamUNq`Lfsnl)?h^VX(JZ0k9kP;N8V+&7YH9W
z<_tk=-KhW)Z+811cI^FcsKmvzE_;GXW2;i1Kdp-m5%ul!aT1S3iqitoAP(ZodTIO#
zIPbr33YadRpIyNw485k++g|6V?*a2OcS7j$Z;4GKhgk2)34+4Fr2HSTHnT#ysnFz$
zexDv1&l4duYp-!KWs~Xd;^&0fmmU<X4EWHe+gF*6&AG%Ez-AnRArh_fh_U=qO30U!
zqK3behYGH@!ntEVI+=(=W5gX3XjxC}%i+r!<UuHnK&BXKS2HLb`C7t^rL%6M3j!&M
zfjS(Ft>$i+t|XyARN!MwIPMnn><r9J5uxz*F>Fjv+v`W(M-QYLg$J}#yY|Op2$M`o
z&dYVKDn~cU*rx5UyC6FdslD@5`v6Q4fHirM`!EsUvoP9h%Sjrl^Y8xZ_m?_RgxLZf
zHq`^9U??5RZXpQ7GYEq)nM7J)Rh(s{_&?oSlb`IwIT)#WpkHrOkp;WdU7H$>UwXX%
z*dNbFo@TG-kxZX~P~Cb&OD=MwRnAnTHE+TYgonQYI+jCN<5p;FIvp=vvJQ;3osK9)
z*{$1)eV97Ouvb5}O<|F1;_+X~pEkpooF*kNVmt{Np&!B9On(pGQQKFT4iP|q{OkED
z_gs3meal6KpwgEX=c+L5?>4q)E-aeO%?3J?!feiiV(Q1f`-s=o23mCnx<V@$)iYaf
zrM#;uJfbVT^W+Hd!4t)tV1Z(D9Fz{l7C>ol66pR}s@!7l9L*VWwAS*$*|wH@8S1RQ
zDqOd#-fb5{iOXe66ZeLqd_QVQHMC<}8st^Lo4`6a4jIc=nnF9I0dQX$6(Bp-JBcf{
zY(m9(sUXy0hw=n%*cL8Vr|q$CXlm;yEFo8C;BME_Ne=?1B|-iQbiy$Kxsz%+Gu`EG
zYoJbdIQDk@3p4z}ic;JVhART<?5y?rqA?S7-eg1ZiB|fM!^KT8uFcREcX^Fr6IaJ1
zGRpvZ$yCZ_lFYU2dL>LoqJvedtlNby&s|sJGpo#b-PzjRm|J$K3uH4tRFJ7&ZgS&#
zfXRp;^Mov`Y;BBCEQm}o_gc~rlZ#;tn&Spt;sIfiY7Wb%Kp1|kzp=L4HxryAQmLqf
zIi7m0-Call^O^r~M@l>ngavG}by-#gwK={r{7z}OrU#kc?ShQ4iOc^YPq8IXpELq3
z%cX0@)c9UnYtd6%C+DZ0ilCd15tb9!{_Gk&ds3ZMdUlEa-u)G_2A~Hzp#q0uGGxz3
zy1aVGWDz5e$$&F-UB*fuc4a?WZD&lg1YAjsy^|(#VmDLXw9m{{sRI{PXibC_LE0tp
zy-9o-l8)8$=pIN#e+gv%4PJe*zjyty5*XE<4uFUf^+y$QCwLEu^Bk^)|KOm?`*e(0
z6uYUcfL>;S%kuz;2a#!xtDd}aBYZt+>yb#j1rN))tWcKTLHk(cx|lXoZbrVflV(s3
z8uEj=b?0|S;vw#Ykc(V{fXAj%L?du6Ka6}U1@6tpHj_X%!-#!Qv2Tt>4lEj|a46Cb
z#(cJ#F+@U02juVnfZx5Lq~|#bU)lv3I#qAzSr=k;+@kXlg^iPv-Zdvlsam-T+>gFP
z1~Rl>!Q?)|5PXK`N`HDww;+zgX7<6`CX!Q`%Q9Y#Et7kR`;N+KAky0~H8^5?D^&Gx
zNmaNp^DznB5XcFZ69SQdhkL5ka8`f)^V+w?Ih=PTCS2wV@BeNPUS`%J*KZ$zh^$S|
zJ;`lq6Y}(uDtVS>P=MZ_)H1|!8YwyNcq*mlGs?~9Wd=^9NbBaU>u4CzrL`jr09A-!
z>d&(ynO?W|Ayu#|Zq^x>4W_TrtR`dR7lv5AN{uhn3dNvJSRs@_HAjdW9$6o$1i3>}
zA!lMNF7pO)EwmE+-&ftUoKXM%*RJD7_l10%C`pQjk3HA5g`S3QunoD@)Kp9&!7J)g
z-Q8<MLTXy-a80X3j~*{(tvoaIS`*bnMxq^|HI|Z+R5Y#WRzhk|hE>^`10^Kv!8db3
zH6jmgzxBxX^T<uRE#znRUL#{)$#aIw1yteGJz2-YlA}<Pap}8!;$JUv?<N|9IKIT^
z4JHS_-`$Wjoqkdx=g+nDa>sIJj=%_7;_txbvtjhIQuXI|msps!q>KOA+TZm+U~uyA
zJeDM*8ChR`=U55cyxtJNtIJU^{Jm0YmON@D9+Ff(-xJ_QcB+7-lc#wey^w*l%&b3l
z@VXLNvNxq?c!9_zD8!7wWhW?6+A2o<w!Q&ahca3E_%c+RaIZaQi9iRGhgK6&z~v6~
zu3>_%*+RDGpK7<`Di+B)<1~B!URXPb7CPJzUD!#t6KnH4dx&wqOT3a72fL&g63miF
zjQTG(B6j?#@fG=}GUyWvBnxE^QM24AhC9`1*>SFQ0~7F<W-T7?75J=%K3hB}`mxdZ
z-!nam9~9kICwGYObjgv$bi^fXc}y2iEgmB11-h<^Sc~q$7o71^*%s<j)JK**%!SsK
z^qa*Rgd2n*)gTwfmROZMK*j`!SZ#Q#@i}JD$eRetSki<Grab;dKpsijmdH=e8#9yn
zWAbnWJaVHxKA_B3&%=17<J*UDJ)tp3&@Lz7>xScwrp0*klXQ8}ERCMHPe1bLL;o5n
z@dJ5nExHPz^yebh7uE=pZ`|wuxL7#?q_%yv6+|t|{YI3&Ls~v?%3jWVz6R^7@I|tq
zHmLOBbizh+I0SonQunsI2Q_<3@(TTW2<77_CSd}Gy^Tj_dMz2M3m{p96)M&=@5U|)
zGx^1b*r5I8On%pPhI2L#?5TaMAhgu<U<VmV4T1-~bnkaMB~ZMf%R@v3kDi&h4hOPL
zbR0;&7oFyZ<uAPMy%Oyz|IaMLkilSoQh4&I7h3d-N`7NA9^EWN0pVO}4gA=_T?rYs
z7M|g#yFp`YQa4aQcB{V?h0MU1U>}uCBf&m?@|1+v*Ol<)nS8V(sC4#(ikS>2kRL!%
zoEZpceveMx3MsnglN8l-<O6$WQOaw<*-=Sz^rbQTxpfU{b#H;0dcIR}CYcSg(9tTX
zx8cn@Fj`D?W_@*GjC!h}w=o$gtLVq)Blj0pPO=biG8@Lu?8E-D^uz@;jQgYoHSHF#
zqp$ItR~L=6mZ0?=x1dKUsZ!zWrlA_-`8|ddo6q-teTS^-Sm>0Wnz)+ivP#s+qdV@8
zs`0=^c$_Xg>||<XU&mN5<bC{_Zm5?A71Vj>wxOL!0?e5LRH4VZ1JrE{_#0E;KVcb;
zd*Kx|J?M}kJobGRoDZ=9HGwD1%M5pVU8(ko0=M&&I9Mt<pyaitPy^Fg6k&kMkuj@D
zH#cm2_Ctc!x$cR?%n;IL&CBMCbV_;3hmn*J#)-%gyVFAK@uAU^>_sY~<FV)!*>f*H
z0)PMjo2((=5&<AVKmHW}!bbEcH}aV5#PbtWnkNLVd2t2(V2G1m$%`Bedx(mV!J%`-
ztl5>>#(JE_oV|TraKpaH<yz6|UxKk(E|esh43{6yDkxJf=t2O<S2H>3hJazF%kA1V
zB{E9OvTx<#KYf&43H@MWy^<Anm5Pf?q2_#b43Gsn2)>ZgMXEUop|koL(}3vMc_3ie
zpTs+}on!oN9M4$(PdL@XnsN^RhwJ50i?!N337lz#7&z5OjSc@g)@S}K5z!{|Kq{B5
z${w=p<y6iW^Ww9C?+i)z3|i(XW0M<-s_)2UY_hmr^W*8N(u<dJ;g~f6^I>LsgL(bv
z;|vworO9>UBq^j_K&N>ed5qc#P#r^xyZ1gdg866QdCpP{-kDtzjK>*vA?)f`NwToO
zf?u6e+3Lq1?rwuvy?8O>`J9hO%6(fQW)wp%2iWqaQ}J=G3FRfbUnG}`&ZTnKj$7-w
zb3N^~a*(9@p@B-+K9qPMAeb1Wa$pa(y#8Jn{x)0y+lRiVDJzc6nqAf3-?7GF>naI(
z-V%N)zH)ir<Zfd~uOti7w})&+UMvv#m97}--WMx`%q!Z(Z%XwxzlxGYtw2uF{~v00
z4Rxi4E9?1jN4YWa#eEwS2od2P09D8z?jLAC*~nP|KD!^t_^QDg*~b3}&k7QmjuUd}
zDwWZ&41(D+C>AQ@MVv{0kRWH49vS*b#dEY{?)5t0P&@I5^>eScWBvu`k~x@TwA05O
zqN(7S?9`)LFjj`HFX9K+f8emxBIElZH|V1EPr!TLEst%Fw^Pp0t+<qH${<#ollmfM
z;~YYe;GrD>tJt=AGJwerd6vSmEtft&7sO)I_><0lTvq+cL748t3t!9C6szam0r1hb
z(mj>I_sAo3WfX(u=oes1_tYxc&1P_VzzW^Hl177jT6g+g$J7j`Xuc-?o>Y?gvvHVU
z`SSnjw*Fs?gc!37>1AiImMXa(A5@Pr9nbI*whzv+fcEj@ma(vW=p`7OQ=o81F)moh
zXu(bZeWr0lD=y~K=L*zvMqCzM0w~gn{=I%o+j%WQxeS$M;#!}8w>>b?8<|H&xBvVt
zR3`W=+gAv?rc-On*>wFIzWAL7j_ZouVViL2Drt#;q)E6?g(s0jl!Ho`khN{zXV09?
zfVmWj+z#ODQ+6GZAux62QpLks%h1iPE}SJYZi*?ms?+vX-}>)gL!_J-3N2bfo&8Qo
zV$r{XL?!Rl+Fk~^1V?5b9dNIa1H)O;gs+S-0^@B1Xpz8Xuo#Y#Gjd`cTIwK0W#IvN
zpzwMJG)!$To|}YUWk9BWW3rX9b0k!4u;VIh9WQ?Z_-&Zli}dxneS?|485;=^hCgU|
zT>KYJgCgH}SH14r>`)g{AjR93zu$|Q#d%ltmU2r}Cb`Qmj{n&_L<5**typRH2wMI{
z0LPWjB6daiGjoYqwSoXmK(fD8PDs)t3#hV;)(S7}!W?M2k&h$zoC^Q<-gfc(^-VHp
zFGa`4H6OPrNla|Tq3SbcN@G<oxH&}sOHS+dwbOU8m59euJKn*3Vi{lfS86JvE~}(q
zXIb6$pm0mF<#4xAuaG-wv?^Nl4&OjZi55KyHU5G+WC|8<6&IuAG>7`mW4HzOe3@ER
zj4q!UI*Lm|?2XxYn)RqS+;^v%D4WJ)bML^Qhg_J^KNQy>S@apx%H{?0wcEL!b_|+&
zTU*_Kc*ylyJvTsGOUFxH<-=X+%ULn}F+Otu?w;Cj2Y|T`j+a7O^l$F?vc7QwN+NT2
z<x@j-w6l-E;y?qyhN7Cskrzg$s#R^it?EDa^jm~-QLl?5seu*bjNQyqAO|G=m7UNh
zTh1#W+x!*8vmr{^9}_?t0@xG}ypx}36U(<v)Q{nCKeHIH%;qQ<y2_JrM~8vZEg4!G
z8>1nC?AXubK6Ftg23caN0_*0}eMYrKp*ck$A26|OzpKqcTtGz%vJ{S_v+f8q&mOJU
z8mvY>!gRCOpv_D`pN!XibQ0Fi*$jqI-SRR<%<dtucAyg0?MIdcd;MlJJ=xd|Wwgq?
zRY@DTG*0J9FHD5vDGH|7?CHeVvyQQfr*r1BO9cut21bYh&-r9xTcIROLoh8lmE>kR
zq#+@aQ2f(IWmR(!jh?0TTNl5o1N;c1LF}p{f-Ra?D%_wIiDdl#!Dko>aKk^skg2*Q
zq<HSx1ZZq`rA*lW9PzyE*p%T$4(%VFY2_a^q5^OJm9FRYQh*M&Vxw)Os6j@oMsVh+
zSXPW$Vd@~=v>p%s#PneFWpnZruQAJrC`BNgP93E6F`?dx2ynfD;uaMaKmls}sDC2e
zp*?wVCtN)Zob!LH4&g269Y|lEjGFf%E>HVSMrJH$O*@uer5m5{wm!MaWC@c6)o}Y!
zKVv5)?31}RbrME|Tx$!T9ANeJ94ARgRUS)=wk=bJ<M7tUL;L@(25c=sNn~REQ~V8A
zyx}z6I;oFzXyka&A<28DD&xT)Nh!Ex&?G!g^+$%b>_02K5Guvjz3cKQFYgO28=<gn
zh_nd5{8ftE=(uoOVxlAoULzXh*#R*<U`|)|v|9bUK$Nm9#OzYHbrr4_(#^{&32h%n
z+C$%;!DC2>fXAxSLmOxuZ<}wxS<7#15_FD!s&hx>9&p>8xptH^VV63PX#nw!je|Er
z@E`&o&<|A;=(PDPu=Sy>rOp;>=lD)l=`>RNVxSNNKy69uwl|{CYb2hKS}iuwvi>Ju
zLEPLqaYgS5MHiRX0dnSva?)D4Q4&kG2R58moe$tF4luq7-M=20ahuk^UoB=cI~I=?
z1WeIpv~)-=6n`QzaY_Zc{x+tM*{JmgIlpS11<&-OiEUC*a=VGS5A=Eq&kZ?Q$!GMG
zzF)9Xp<wc$Nsqjh)0v@5MY!~3EBvMmqdm2ss(*LmpevPg2Q(Q*V=T;4F*H&eHv!}O
zr)Q%(n%};%Q{c)CKvdF_*zNrpHOLYbNQad8IvVk-kaVJtY<o2WQB)yKmrAD4o{Zeo
zj_(E%`~}OP@2h>%(}}iYruhS&YSricpJGfBp+yEaIj#?7nKk&zd;mgzhd@yq_m@%z
zuO4wN=HJBR=zbg3^iiX?ojr@pYu@I3cR>1a0T*1K6WyQM!0aW0A<&*du{vZ$8u%+Z
zrPFtdk>vaqeq8{L-~R}yr_Lv<37HA6UAdL^)eWcH4KI}drj#fxZyV1h2*-tffqHqF
zPZtyvgJ29@{_6wQA5`NFATvDbRLGEBzF;9vZ$M;wd02q&G@!6~nv81G_SCl%eAz4f
zv$7u*s^A>htSHCteEAZgRq&wP=1kGFT2^{i#US2rs>^6YRja`{cwo9gG3s2gzieL8
z`jVi`ypg-@@Ll73USReZ!EZGFbpL%6sUG%cpBI?zee9h!AAb0cNUT_Zi37U&L;vjV
zK^nRA(M;BJa0VLk!+jq=!<(*CH9Y|2qJ@DYRScjBl4=6^cD1MfK!0##q6!p0I;EKA
zH03daj#?_l+=(fwa}{GKlPxNMQvU|izBoM8!lX34_>bcLW_LVS8OO9xVzcgjJ7Jdl
z(mjfe=1Ok$eKZ<Sry(dy;#>0=OxKy-B8X8I)!?xVNI(2@InUQIit}y)T;Rg|z`ley
zpEQnS3=?=q+6;s&J8X<$h>^sv`>2Uv6D2&Hq*f^vJ~OVDdnQud?fA<jD6(KJ0oMN-
z$rI>e#*_XSCwSYdI&k0RR|kSoD6+X5pwL%W45HqAk6BKmQYG3ZTZVb7Tit7wdm(Pq
z3#`gT`BLf#uBUlGcT;}>kReA@vU1jr6=l?QXhm!JQ7MLZh!wVfNVH3Cr%S=6sa0ky
zm8>g4!knIkIP*<64vHRQjz~pde{V0yWwfFex>Sn*0pT?sk~_ycl*zB4!gErj+1a{E
zGViIKdE;Bh`qb_G!(YkAJKht|h=6Efrf|Zpt}ql}pIf15u`p2e?03{=>>7g@aBI6V
zf!-zao*Ao`m|j6q^2sL0U99-_PP@DXMMgN;PE~3XgVl{)#p@YELl~dH6Z3W8Ai6$H
z+j@PS<=)gg``|dOXx+-pKJRf+Nomt-vAxhzw%{P(O+jNE>|z+&exAd5!fINcI$E{u
zd9laD1+1VQKQ@OOw_Be{(8zUufwk>wbNh9SAhuJ6cjeGI`6MnIq^6~MR62ncrE%*`
zayeB~&J)1$>|FTQ;3>_{ho~r8--Js+xG?Gm%4}RPG#a_TC&6!zN$)@(TGxVrWR)b^
z%m$N~v}GF1LKXs!;}R0<2Z(|XoFNj`#O%+<gW`H^?x$$@`i4hyPlaYmc9W#w`J&`z
zB$96cPI(&N0VehV{OyIooysK*ThrUicn<yu=<VT^k2q<3@;>#P%c}?~!?83^hbUFN
zL#+yxBYO>ebmmpO;ook%srfUwCPm)zuH6-UZ6mSevT3a)_sP(*QCM~dvjBgNUfSfK
z-Ht-=ZD{GelH9XuHm_CBWmU}9Ef1aJupGv<yricI0G0buDGAPlsvfs|uQt*vsPI$e
zU|Okt%n*@5=1ORs+YmsyxMhaJAp>y7s&z*e2l-F4AqX>iQs?i9xhLDJF{C*U$ej2{
z4PuP@*OM+m=FCljIw5HmA622e9j^iSf2z<W9UK?5hRW1-VrNJ)*sva?ljtv~rLXpw
zNa8QdV8aGBUy{Aa11Doj#tfPT5gj?k-(0$X+-fgbWpqXYj#(qNy|ma$sxZ1Wleym$
zgOm=~*oId}YDJ~d*iUi&*c}@^ZN4qzY$S#A5|x8uMiqssl|xM-&Dcs@d_xKpMwIHZ
zmu>x3M8%kMli#Hl<={GBvuoU>6ah83ElksYEV70hHMcfNhg6;ZLG^0`l|*x~#5P_L
z|FYdvrbdvX?b6^h<9vU2=8l_4gW9s25_Pr-xZ)Q#OTuu0qs&qxE=OqC<aHG)rm4&a
zRnJll@8?1QqL{!ONDSvn^!C{;%p2GM+e_%<O_eLyo{|&th@caO5@k^<o?@2(Xj>sr
ze#m>e%pKnOTj4PPB~c&Zf6%8siH?ar{tCl3W;e=zJc;kc)Fr%A;t&VmxewI0wKSV(
zXe%BfBOdYEOF6-x@%X<QNfD0#R+ZY>NBT*EbKaT2s&<@d{T7Ke_hxqe!mKs7u2NP*
z1zVC!B1h|J`I_=#k{Hu@)_G-eaiBX6ok%^*7|5I|3Gcjg5FDG++Q}XG{Z%k8lc%v8
zJRRT;7O)kMTK=Ibo?r$S801$O*GCBG8ccUOg)iu(=jgj4=Mt7SYr?FeahW`iq5(`c
z&K^a=dx~iS+42E%R#5iqtM;J~jBQBr=!}|_aF4O!R|b~W9~MDdpOqtzD3<jahI4`-
zT7dnHZsJipOVT4a2j!>gG@W;jb(DNef8Su1GZ0iXA;+DF&fp*WqGjZFb2g+-16^XV
zVJb*qUe1kL-|n*CI(+}xy#??NWy|2%Lw6SQFRvb`59S^5R{gL(VgV1jOI2*;D+1EA
zm?lFxEK*)MPgEo%C2byQ&JpX60Q1RE)6A>HHI5APfNrwOYegRF#e+xeUXwRS7y7vW
z;$wFD%~U>1A$>Lm$DXYfT5YXsX1iv}?Ho7Yvv59ZR|QPp)<;9*8TKY4RW`U;lH`xy
z53a=LpS7#*Ra<zrMTPzI+umHVe2QhPP=W@5dhj|K*}F$4MT(Uo4T*=*7*nN#LR}EV
zcuIifZO3Tm$@O1_K?!T}ba~O`J-4kA$he10!p?4WhEz_^-QaDoK`D3naLj!FL350h
z>5Di8X3@zaB+lh+e6n1iycH`wj3}-OyDW!3Xi5ALrrKB7in-lq!xU(_0pjYibb-T$
zVJ*zmgtEVw6ISSWs$L7LJ`<)$lX=kI3_U22@$1?4P2c@Qk5hQMI!D<W(#?A+&kC+*
zAQVXTPouR_5swRvxkQn!`mOyl>ObfzBkJPRP5>sgK;;|zEI1SLDCc0XD=r_^P#pKy
z$lhrd{50$hF%}l(h&NUe@>#e5Ym0Dy8;Z@8=i}-2K2jY0&fC1r{=!@UOyiHyXJhtV
zRhM;(zI|2*pPn!d-Wqz|y&mn+=<%i4IGk|;YCLt+h*Bi3IN$jHX`rhKo4R-0onUN=
zHN3ng*{i5hCvQ3c2yqzdc;(fB@_>uAm}Sw4CdfOh!ku@yl0eU@m`vGN5V;Sq*t_QI
zqfe)|!Nhg)p*M>_2}&qtwi)(HJP0&9$`jH%=aJW`on_<~@13nQaLL9&6CabM24v%)
zAx#k0aZ(4^9cd^0)C(Kyxk53qR7f*AdWLzR@`Noh4gWI8N^C*Eiqo^>c35#`w7W%U
zpJ8_W^QYTG?~_yYwj|Wa$2YFv8?R;9fFy7Hoa>k!;LDtn<dQwshh?VCL<zqsWIhha
z8Pzfzr#gy2F?t0LeavQ$;8*2hUuhXBnV$A&sGw5do?hyW3sK`7E!zOYZAopQw+_1A
z(Qy-T{V0YYy*gp^G6dk~9S_6SX8a8fSc(ZN5=D2Fd_ZAbpAmK*L?};@hn1V^0i2nu
z!jZ&s)D@n?jC@h(eJek&DiB(=IHeNM$y_{hG^rkKrcxHb^3$GHxk}d%mj?`bp`s~k
z>9=N;rCA-q?N~BRgMt~Dcv2I}+OT-%kxKg$Ihfe&tp_Wl15YyCZ2<1XFpt~F)<njC
z7j%lf<1=g_$Wpc$h~Yr38Mjcb?)otcO?%JO1!h3>c}>Cd#0BSV2ExQLVizem27AJy
zRLQ#J7MBRHg7J@&hC|(C8{_TUNBCyw%<ac3U7WwiP-verz9h{k<Cl4+=DQ7CGFJ-&
zqiYT)E+V{?WXT{re#Wa0RIwNn+pHS??08aV1!W`x4=yKOh##Q9KHEjI=mPeeTKfXm
zjKm}fb1a+d9A&6VVf3<|6E6o=enlbAGSzQ(wwCFQk81W)YsKfO#EWei{&i$#YTlMz
zskjD;?mup(Z51e3(4cl<YnRLd16bQ}ash;HFZZ$9#EJ?Vx)%T6+OeMNqcXQ<C!I-@
zQ!>?aF4ysJm{RjEz;T-kGZ6^>>o{MeRdxm~yzP`RM=L(?+q-ae;PQ1%8fxb_d#?s5
z7v$}L!Nugl!?-$#_#%EJt8(H!+=sG|I}=CJR*8vk1?OS<Kkl^Me+1d${(1gAL;Rcg
z;W47}x)ZtTCe_LGP?>-8J(os>Acd^~kk|5rLc6pRFL*9+F}|&169vJu#-iR6NR_)=
z0FUt6BD+2vT*EX*@haz63j!eoLw#fqLQoFZAacnxx;tJRBkIzDEKqfS4B-M7lRhLD
zrE<&<Nvv#Yj!=LO5@&bg<a!dJp~n>U61WYcPq8iKZIF%y+{#DUM@<xb(cwk=P!Jgo
zjUbzmX{>lmNdJ$$%b%A+<1LUI)_a0TAD&`M@z{0-RdT|r{=j>>7H{%=AxYdUJuevr
zG?iM~Au){MN>C!fZFi`pt;n|c*`{w2-C9>KKa2lA<aszhz?vjz9+rdWSWafZOZ<LH
z6$fUf3HW$~4-W+HyJh)fHz^-atoTu{woR3kpN~$SCy=qa8(>CNhPX@d@i+AulyIl1
z*P2g3{&Q%-Re~3@;TUDF5noZKoF_R^5M5@$%of>5+KA_GJM%X8n{|Va7(7VqVsq<`
z@KGa4Qh5_PN_Zygul@zSNGC5IAT(F@DDjkaFK&WUk@A{J2`{oT9BW{6)JdX(V!TYs
zCY6iwwV$LoEqJ2%e|BjX)4g}j2&yV3xLvM{v)`kDnxv`>V`c8d4rG3?J-XrGnbbDz
z>YwS%lpR@IRkPF^<)vvTtl&=t#WhcG_<}}M9?3#S651FvIhW{tPgw#^L+=t(-DkqF
zidNYdkY<U-2{17@V%4*79{Fk$N#MXC=5vKQxdNEAV8^Iep?z7e3)k@i0&oBKF^QD&
zL(eX<!&K&%|EGhs@4jvU4ODYve|D=A%+3pqVC7k*!>worIQ%rSxKQ(Xn%N&YXN?S5
zs1Zq8Ev_RO{$1&v6)Z0k8Dul^phrQ#1KcIVUe#Id@BamQ?$*-yXY6~DXr$6T{&u$H
z0hO1-3NwG@_|G}d$6nsKI5R(2?DJgo$&=7tFXR|wny6f!N2x9N;C3+&(*aHT%&iHN
zl}!BPDB6P#s^&R(49;$v>FBUP<1jI<2s?<K2h8>OP;<3|4S2{<)bT;3*=WDP*VYfc
z&O*Caml&vlMSmU605arfwe-ki%DQaGw1i>ex^S&>Hze4#P5{=SK;iIJ5BU+4qUORX
zvhNipCWM$IDd_k{;3=)KE=0&o1TJ5c7{oVT1V`dRXb|JTV#COE8{9h%8Ts84r<*=T
zxWwGxnp|~eHI$+&Om}s^_l)aT@PY6{g6QvHR9V5BIGR|+fnSqk2ob|~%&u}Fo&}Sn
zi^_a<>^Z$v7NL*LDMFj+_;wyLvh)h)&c8)S0cSYi!0s(xLDwfwE)1iLk+uXpm6#8o
z5OTd%2o99v(lF({>)_(xeuHeaYRBV6<dsXXC(GYGw~O1Om(XO$-f*nd*;3p(h4@Op
zS!+jKs)&;{4F7ms%0Oe6;<}1la_?TTHj;oTS2&E%(1ciwMQD{$ekTi1fcU-ZM3LG*
zfC<G13FJ|g&4LVGd6ooDqrw#g49dUnmeeSkuh~vc1nxF=bag=L=4>c+3G`+v_6eu1
z(z$gCsmE{Lmq}h;FG!UC=1i#AekSpqN5<v!kP(=)h=M?&sE1zTY@97sbTWq?m!K?y
zf=!GK)rlTw$&cVnAyctfMY0{g8tJ(#l~n}e+?&DOA`TW;dg`M2Q6|)B`JdBr=6hRd
z;4_U}ns~VtEq|+eL|qMG13Mu1pUnR&u185Wl+z)d2v;teb`m6TXQ2n483F7>P7<|(
znQ|INvPy;_*?v)z)>Z~iy*WSrdmexCav7N$mDr^!N_=uNC2Y?O-T@;<na1BKGfWC1
z;j=7NvUVfTIen<OW6M_?=$W00Gm<m&POvQO4FbPh&u_LtAb1k8AO+T}Z+G*++EyiV
z->rT@L^pnB18Em3NCQmVOEpks7o>zRVGvtStWCiA<mDkh9OqR`)-rY@AST`&rJXg;
zdNr?*x0%j0k5Ggn0Qn&&m13^1Xm_&TRD7Hb!=A6;qOqnfs&L-}*HEd*C>iX?grE_8
z*gXe0p(QD8V=wqw0~tLdLDr7gvTE}cxyZf?m`}Ki%mI8TB;|jB5_7a_Qe68*`>q>J
z+LsVD5|n1v?rNSt&FT)B|L7=#{Ny7|9u<N_Vtu_KdV#rA$B}l<=xgbX9%@yEW(;=O
z-X@86z-P(!n-Z_NOWSP7Zmy`im#Wqn=GP(xx9YV0`ranb7X^P*x(+YG4Iizkuhqxj
zzYe#1URxG8)s6>*R2G)A$U@>)D?8{(<zT{ex4yV$q_}z4t<tmPwQ>iZiPSYqUNa>|
z7#Uw5Hx-|+!JJdb!nK7Tp3(+7d$Jt7tGwRTp}j#FOzKv!&M6i}L$IIm6As|J53#Xd
zd`=5DV5xTHy{#x%@U9SVxF+HRrdH?7E0cO4$f?^y`xzIY_OrS3=ArFRv+7ngX_w?&
zq*=m3(qZ_W+G#Mw5C%0WhF@yk6~|xc#4p=0lAHrBbUG9cp>3|+cONs)IndRfT^_J+
zbR~Etap58Z<mg?UCO~p08w$yaPz=mAiLzJjC;L1GIC$)%oyd>;^S~_}?1eb|&Y`mM
ziWI(s#)(Of{tzDPaL6y{_5|*+rV<dwJ04X82i4fc?0s^h6qw6dt~MO!Z`?;Xv_g7a
zU+-}a;*E-g;Ki4556C-tXfROUsg(z`gP@?=OoH`F#+e|Mp!@j7$kF+8QYO#Oa0;Sq
zqB|#~<Pn5{S<o~3-TUvcJ$eg__v((r-Jsd*i*`G!;T81J>pwi40&<JMW$4&lL{-3l
z0FtDFgxVrMl-$Ql&!B>Hqr^_h5M#2-`(0v_>PGUF5r|wxb|gD29k>=3$G?LIfRmQo
ztGQuf!AJ?E<o};@xwu57f6hPuTgsPe0?$l_+Z-01>9Z{meg+~6;P<Ddp#sp7`S;8{
z0`k~tKC0>7u*X&)){X#|tSd>u%io5%8M<+H70crpUCwgh-`M4FlYSR~nrQwrn-UFN
zPSjH4MZMMyHTD13^gpO!Xwxz(We{E>5BRNm7Yqmop!}htX|!m`tYT>*$=zfPm>tPm
zU3=yXjj_hMI+;I3g-p&vw_xZBqxqzPpZdSp=(`%^o>ko3NPidHgR_XmA=nx?ontIg
zO~BUK$YweLq>_DBw?lqh){u2-v@TQTZbTvXLF5(1>(c-rd04cXkhnhT$6kGYktN3c
z37_ksWv<C_bee7Tc#u(jV80x>wrycNSt1AX*vZj|aM}=ksvm|M01Bsq7Pk(|y9n{i
zYU3J}%_!<JPf#-fYcs_FU?XlJt%7g+;<?9Uy_UYVB3={d=j%)(6dCJr(>qj6p(x$M
zk@~KNmq7QOA)v`c&L_xV*I>c;6ZBopZ>b2i5BK9^u9dMvjF;f?*<x^B{<J#15cZXi
z?O2EC&ScN}sR=(~0r($5oIL0T_3InC^e@t$f!8Sq1rNza)Kr&=aguSmSG0#6_)E)x
z)A19@wVNi|(;lW5XfQ?HNaUnEBLhj({-}(*&PcJnmT*FjfAc0vMP_;FUiiY@qvhx}
z3-tdfhmvHS4Xz+wULNSthNLprA2i*V)x$t}GJnTkTIfRH2G)Cr+G~Xcv?H{~Ro03Z
zI4!puo%j6sIObA}3Xqw#+aFr~n1Q4g&8ps=&JZx&19klj<L7>MXDCEQZJ}%D=rm{h
zrv<rnfK_*zQ0x+P<!H3I{B7MVrsjS4O&Yt6r0-H|B68TSAsm7<TF|J!=gR3Jdl@F~
zwio0i#IGY|3;ER{Fv*cbABF@DJ`E!F)N;$;b#WRB3r&e>oNNHZ?EEgjVv=d8Q$WxF
zb?P<%2m$#rc%a2ZF!tf~2#Xqko=?Y#Qfg+<cA=uN%yQcor#J~luex+sz$Gc*GlJSW
zXcy^a&rN~p^>-?nBv)cg^*%aGHq$<%fn47J+-+p-gAgTx!!eE=9&&>@JlVFVZ`)=z
zVLm0`s!(Pg8>R<_)L(s4pFmx~>}ohkd9S2yL{-Uf&-#R6GhUjn`ES(D`>rX~fww7a
zS<kO4moYXUfXf1)za%@+eMl-?lik{E6<)gn7^?{D6cqh}PEVaeg+W_^@Ze;0f$=qq
zAZt?YAahTd@(N%UW?Wx-gxgrMzs&gfYq4oRmkHozflM4K($j<G3p7)_RiWn5O#(-V
zFZR%8m{{+vF8S%LHrmqU7^+umEGGI6I&t4Unqw+%q<5hTT+s(2z)t=s6~|%G#NV?g
zT?lVR1s4wqMV*o=VR?hyU7^l8KiPUPqC$<JvPY_m;h;wrS?CTy3}ikEXspIL$E1Ol
zV8VtjypG38&*9Yk()I$Ikh5lOl9GkLO{I=JCGhs@Q{y8s!n*H~aI201tY_{m7$)-x
zjPQ_e!=xgOb44?H7W?9dlZcf-!SZ1TwtZU`g?wG=;o$IMUWjA7nAtEE%#;6vA3cQT
zQwDij>Jxevpkq2?5j8ND4GN4X);q>!F&#9TV7i;P2FqJk*o?frH#g-@-iLj(w6^PO
z>1O-%ZhylBjn7C5CmBSq*pCLs(*v-AMO5650n0L60R7s%W7KHIKpfVg*QSCuZ_6?n
z?6yDS(kG_G9^jk;?0Girv~B;lICSHr1iN|P^17}$ABV)M?Jwa$2XKBPdsJd74|oMi
z0!T&4CKey&B=+raQH4BMwFuW-LbL+on>d|!K+OO_YQ^C`1D&LE4Za-#C7Q)wYbr3p
zeGhOoS$;bixOY|T+=gd*MY{}*o&(Ed#W&ph(6+vv=D{zxrg#@3r$I`!>mT&?049S!
zj?A>!w&;{)XOk*rGusN8DAxan1smvE-sb4MYPlEbW>qOB^K*0*6u6P}XAus7YcrlX
zh?A!>`=ZcNqIIzWmc$tG+r$7L(8Kz05d`+&6e?!^l&H$5TWT!<m0Yt}n~<@kQ(vS^
zl-Z~k|Gev~YB3W91s7`^%^+BKd^$O_MVx<MZoZ<!vL38QY>;J<V;~TIh}X6H(;78#
z)HmT0@0&dO65Qfo^SA=y37)r%Eg<6-D)*D$dgKN&*bFWSQd3J218y7lhaHm+lO)iB
z7xy-es#CyM6bGtupi(kMyWunqo}s33!$bNl^baBdDJ1tlGKFQ6HyfQACl;>5vJt$E
z#|h@=H4#H3wRzOKC;)o$2hVhw$DSS_#Xnotj<6M85}?hzjJu_K95H1elPe}M@U638
zEl=)TghL2FIGF&G*Zy+x+j8;+)63|L9h$B+U*8IU<r)Z3CVHQ)K~5RXx}?&$x(3=g
zdUVXniCdH{J<=GpDG%zerIfEfvLkve1FR3Pi9^K@dRN#v7P4$8sy;~h+3QWL2mL16
z9*KLn=Ox%-Vs2AD_TcvYiqId2*6-ZoeX(pN8yN_bsv8u+?Uv4wG%DoyOtNM0u#Pbl
zJ7pKwy$U3=7fJN(qQ{laIJfx}%I@7OXHn_$k28r8g9>%u#yX03joC>zA{{1j^JRO`
zSlH%}9nyyiOqP`AG~mggVP9~>A5c<f%rUR*sU>*L4zeOIGVyLZU>Qv@Np8SG1)ut>
z2Egi4LI8b*ET<`RkRS0<Cvm1@j0W#nf;?!NY3eOMhp>0?AjvL>=(~;yUaSY6q`{UP
z)P=yO>SyKIg0zt4pf$+d=H{f^hVDmreYY89+rh)PO~o~tQ^<T+c?bZZrr<;bUyQo6
ztO3orc>_NZ@=D&bKT#ya31*rWtzpT!_Tbuw{u#!4?567hShhQH-iSW2ljCQ|9Eb6G
zf($~{k-oZSx1)TPUVx<+)oivQX*MdF$`W2}=)$JTNvg@%CQ9MK3g&$*;qcEyXTS1Q
zBe$?@(qh=QEKqx8beaN)EAg+UD5C}Oo51Pn>sA{PLFr*kpRTRk)^GpxB+!qv82!Hm
zo1#fNZi))V{IshfZTvr`_Zt@>VE<$w_!*6y!|Y-&+6mDYb?G_RvI~FfoM`VfuVk|>
z;qPz~7&%=B%ckQq%k}W>W314+-A_%rIMwTq+5@BT)&_iUx13<&GA4%$ibOD;w`B8!
zk#`GD$swn4c!~uV@FJ~5nYJPOCoWMo#};zt5D&WD#d6>N2_(On?5xCmDj^ZqWi1;l
z!Uc(_g7Pmi4d%j<A@&&xEZZB?=TVx+y5h5;Ly_*5JZ-8j3VUy14qp}*PxCrB3wnxc
z2+RdyW%WUvet$d#a3O~?d{G_ey`7p4OjiW_u#`WjQ5F1(7JqzeS9fMvp#tP?ORi~-
zHvHd(E~?nU#^NtDx26x?*+fN30up2!Y7}0e1^rOr9K%2UqB|tF>`~y6)&O6du!CpC
z212Q!)m;VdsEHMgXl_|S-nUgnCt~j7lDq4Xz5Fvlab5T!$ZkbiZl_#fh!&PT1;8J1
zIo7f?W)t)V_cndw;S^2DYjw@b7YqF6g>HFLT)?plI-$6uyLNL*`3?L4tKk-{%P;sc
zlhpMRCN@|E7q>ju|NAUu1xyOrIT8~TV2@@T_C1-#>A?t+slLVdk^4pK?HU@P_?iG2
zn8#aoyUNc?PzHTkV+2s${aaH{KJGuH6aT#SzcbY$E<nZF@Ez~Sy&ft(unNSfAoD`B
zFO4bc3s@9TJ9T3Cn&602-a+s0*ZFXw=8%M7(1X*EgNmpyoh?1Y?6>rYZr=g}O;3vf
zS)DOp^Se@=Pu5VR#Y5OE7L3+(nn{jnGVO?hjBc)O0PVKJY(gr~YM<U#aK_3;e~LWG
zR0lLR>j@zb2FQsh7Z(~acA`f+M~$sTDxuCu`S-Ee6#@CmKx#YVpZ|g1A>50epj8$H
zd<7AH<@)Vukvw&O5TtSd{zQQ(nh8n=>H<zczo_E(YkP*hnKOkEK5D<Ng0KkUy)7vD
z)@!yn!68_W?dER=|3LCFjc#<23IEq4!U43g=0xE|0h84ay`m_b#ee$Su0FNMgZ|!H
zP`T#Svx)c9d?{l6e{*s_ae^Esg^spj--kuu>qM@w#EP7K<6q|fnn~5ozwFw&eLkr2
zSe(o_U;$tLj~KUX!p|4r0Y0oJf6GTj2TgfnbVY^iQM&f?w!8ZEJ{}-bEJ0@ULHYOv
z>gn4;13beN@%M;?PSL?!Emn)Vl#ae#i8}WcW3sJ{3JO4_ddxGfe}=fJ@RV~*xt<&o
z*Pp-lbGkIrJ~&>+Epl?3^6E}4gvz@YbsZyFiO__Vx0S42vHzY-kSm#(#5osdQb!ut
z)L$F<`zl>ts4uTYlHW@k+(`S9Q}?kgDBM5uG$#vv#<2h;%N{%qE5gWhKay09j*2dz
z(3;s@Mcqv7ut75w))#VZo!V{jQigMgwGb|#VBTik5n~+j8GnPblYRCDvIq1zI;Jer
zC$*%uqOM9UY(OD&xd<-37h`x0i}16Tjw`Rj98P^P>c=dw7H>@{7W&m|G2F{mJE(&&
zZVG#|?rrkv5u~Iv1pxn1C~;1j%3&@aoQY=Z8ZvnVk2oO0ZjSLCMgtp`mTrD=CY^D3
zYy$uK{_B7#QXm{xr1(@VaUFa5EcWlw$7SVeHUgjsj`i|(Q3S>wW!4q?oA6G_)61Rr
zMCvnwfSrQy{n7Hi-f+jL@FylXs_NxZkLT`D{&W-Kw$M*bCnBLR4RMCdeWI{V{{>D~
zp4-Rf&6cxWNm`A~$=*+Fk_0fbbkqV5_KjxxX>3bJm$(9p2vHulJV-+@<wBup8lo4S
zwhTOJ;+;>uY~$=O_vqa7&Z$)}*jBXmgc^J5b%kp!hncAnW~5iXKA^k*Et}+2xjFSR
z!bp{9AVSK7yeeu}8XE`M8`qpg{Joq71F`?mFNIX-m`YxOal%ZIw0R5}-3q{ZF)#R`
zqD?kio?pmbPBLa&%ADPz1Q)Ea<x2)$z?Hw7E;R?LTTe6+-MHJ+%9xrvSoL8#A*Q%Y
zHswYdqQ#Vj`Gd$@U(K-{L*}WHDjI$0orQChp0L9XVF%etl>OB*_T2sz(RY^?@MwTH
zo*~!?0YN`IekKh+Q>}H6{H@w4W+Fujc#Tz4sn0~$^`o;U@!#FybgYxL)Gx1C`pTRJ
zwG#n(Mq;-A6t?|^?T2zcGNklVXI)2{CXMk>WoC>FZ6q0WH88Sm;!88N*4Ziq_Ba~e
z&XboBd69@TdY>;{vCy?85Zc;RYT{=}&m);W-1eJ&L9R_$B@=w`r+QGtJr%$t0t_-a
zAHRB`->SkuPq2lQ)NSil8}TL-p@m+pFLcoXV<*7y`4o}70wqN?gi2i89wICPdkXy6
zCbA;5xBzkA>y79CL-?gq_?#VI74}l>rQK9qabpv*Y&2T2b@w#fP=XX@5pJZU_}>I5
zINI>&A<RGVbf$oZ3cSE{j2hfT1|n9>ZsmRU<YH3i_|r(QhR(l{nkm_+??UzEhcEny
zgYF(y|AAA_Ha3t^Pk8we>ZhH8rf+~3VTzgDyh&Rps=GK(QCbFKny?588E{Yr^;P?m
zjMDxx#lA;(F32vUsz94|_d{$JNs%X(Qtv(=v}N_w2a?1;@d{XSB^}dY>FaTR+Ecc?
zRb0JqFlkRm&?N-A^Lh^imw0gqf=9>uQR(Vp7U9>~_FQ}G<R7@Yfl%||*0z2gKC#8e
zg`<8bL1-*oy^NT`^i)6C`L8k{6MHW_#^XC8=^OC=q{;Tp5dOAq(9vazf(Uc~MnXvP
z4GLqaZ5KCO=;w8mX8K7*qd~x`zH&jdGm&~+dr@sPlvG!}339IYL<%h^Demn4k%;*~
zZk(U>_|C(C!M|o_i}A6?)<CqBrg+60TFOr1I#q5XcNX=kP7c-D1@<D8!OMBLaH;TW
zjGs}bSCbAL5~LawV>ZYH#=2jL7ABYt<Ei+XXOrqx39m=}xc0T!S!!OYg*N^nZ$z(J
zA2!yVz0`<Y;kNtmv@*>!1yynWypy>oKdu2Jm<4b9&weOr7B}x6G8u*YT@?uRSI8BR
z%yd()H-EsSI`niQs8qy2aYuc$>~}hXEu7JLi1F3(dAhpBC~wl1&UB$RwlsdRSLs@I
z&q2emIxD)uS#Mg#(k@`7H@jfTjRW<*RZmES+qKi5wgxfkbeI#uQ5b>wrK2m%)>TZA
z@F_nQDFCvY@}itvTGMf%rWj)k+F!LQbszFPQE=&5k~M_oExKdWbMER2$3r(`_J$!(
z-?`=-3yE;$vj&_ebz#MEzs8(6smb<X$pRdvyptZzUFc2!v6T%DDQQfFmC8Itzoe=Y
z@<f>Lr)`(99w}s4q$Fa&kVTQdo9$^HS_wa`;hdGqgGYINP;&}nxKbAB?fg7x<3DFp
zWp;U4T6+wBU?rQaPy0IkK%0l{tpI%Qol)#}_TDC}_dnyJiZl8g!AZa&Tvty;_;hgv
zhW!DCEi2Y85jtj2tgutZN=z^ko@)5sDDvy|g2G;{RD*zVi(a%H<U|I^zHgUkz4<Jg
z5Tjh8XaMPP$-H9i#_SxS06GY>b3vf~k@-(3LjDdv{zPE!&JEFZ9t3#!K$(mF&(Ld8
zfxZF5Nf==ZxcRak!K#i^FE{FKfN(AXJnPLL&J;`CPAgDWQ;Y<S#^dy$S<Y%a$gM$r
zX|9IrI-$7S1Fdx1DYw&;KD}yxaLL6g|Eor2_}i5|(iM-LL5nh0;#UEhx-MFl0bpa(
zN|rr`f^eWy>r9sMum0cQ{e-+!vdH33Xu-H&ZkJL(eJKVNVUXVn(h6_SA9~9{cs~8}
zgQHjh`9^FOzau#Zo<W6=BrX?4&}zQj%VMdACYw4WsN<c#BH$#B*o<#at#byr0ofmf
zI8c|LO`yc9mFiKP@k^vYdB>P+nCac!!xFji#54hRl+V1NOQ(wq|6v9{XcetUU&nM5
zt8eL;<swQRYUid7*<Qmxn}C??VX$_5_YV2>%Z%vgei;>$tT+=FEu7QW;$>08TePok
zu|PU?B@nFG{Cdxg!r$MzKI9O4!Uqrgk0E44pw_^XP0wp3P&7OVX>!Cjp4nIh9Jm>X
zIFg0>GX$hE{s#H2|BPL?Z6r>>D{gRJBVX+F)Sn3>PK&30#X%c1HF5a-D38$!#rpJ7
zc``A2*)Q1JQQQt0-)A+Fv*nO{(kbD`lB1Nenm^)%dRa0Vi8puF)OO!Lw=rDr8?w?N
zqrYK=7Zt9g-1WfN{O4{}tvRtq&CV_iyY=Wz+aLP;?);|X?a|zLF)nurEgWfca<nFs
z^dp=>F9Syp``lpu-y><dK)cdP+=N|0eg3DLR+aA0t#0hPucpVMVy-}pSR^&8FYxlH
z0^X;1?I0PZR*`!$X0+$9zM>oP%_pUedpwY%)#JkRI>FVoafaqqX^u<o><j0vzC~vg
zyK)70N8A?ttT-ef)Tb9pt8F$2v;S5iKK6IX{R_&I>VtiK0k1i1;546gpIH`r3!61K
ztBceF(RJV<!qM|6Zv1*Tv4*e>1&7UD-CwQ91xFA_lmXCIVfRv20*gNACfJyJuHfX(
zAHd5NW!W-X!jPVPYsyf`7;|X^AT5Tal0_yclv6f&Qq`g7@uQJ#qVvjc{&yV4K<#%w
zAjI{s@orDq(Z70k6G$Gm%<_T<X}P&lw*t$ALL=a{I&ZMJe3Q-P$O6dMLMdgHx*1mm
za!iACb=n5bUKS<Y5iajnSYXgT3`olM4l_hH)p{F=__i0lRBB`hI+=M48-P%Ah%nIm
zOKY-6#H0ks`gz76Z<iy*UN80Xm8;m@qfBZ2WY04U+TS}X^JspEZ~FkJomvnr-xt-U
z#R@0pAzH4@je1_r`#;q^;2GRB=doksFT2mo#KZ(|S=$q%&$}^(#HT9<wRIULfOM#w
z=5peYID4GBN3D?Sqn+bGbwQlQ{J2>FeS+dU90)^ehcmYVS2Vu@TJO#X3vu>#v$$Wn
zZUeh2vD);MV)e$)t}3YF5b}0%@+7oVi7(Yhq~NdJac2aqN)%`8#1NjK*o(AqbXMMs
zBMyi{I4Qa|VN<&8<Et0~)wK9v&c$P*!lbR|S3Jv&Jpt?H+#*U*sAo@Y^#LV=SImB}
zJd`-z<pe}Ad0O{tFMhPkoeDN!FbAE568fJS4B$9c1Hi#+MXMHX?6d>2ujGi((@7cZ
zAC$UghkvUUT}MHl=}V7#I+G{Bi_WM@)`nQh?nJE|vb`)xrSns%&zK+i!<8-@`7D@h
zC8By%wlHKG{n+yqJ!WLvn#KH)BYjs_`D`inDIR0+;};K(kwn$Tm&XUa{;lXol(({A
zG6OP|18Qry1$O)26gZ$}C(O5k<2Q&D;k1<9yE^n}u(yy7o>IEoO(}MJc?99ju=tgk
zamK!JP{7Ofg3_wn6J{I}u5qzc!y6@qFD&^E1+;6<iWZv+>gYO*3$XyYB*Z3_*?kmG
z=kHu%M82qJJ+vdGXYqS;mZ$_CjJ@T2+j)b=zf|fMA%p2j$$p@VRI&F_4mimh?Dz0q
zqCpcqC(%EdWU<YX7tLJTd)>!XlDn@GLPOq35F<CW6NIhg?(~VZ<A&KTCXaTose3O=
zF*3bE*K&J$gC&ny!1ns9KJV@iovYkLI=kL@ja!c^mG+DvFmRj4tTcqDs`6T+l_mFD
zqX3tkrGJrrsrNp;!+MDp1aOT1k0)0NF{(2!ggYH9=gf9O|8m}+(m6><A*5MURi72O
z7xYT(a*<I_l|+C&x|#PC4za;g${gu#oqk2e5jEFhw7AyQ0u!~d(k?GZRFIH7YrK9p
zz~0^Z>r9}&JGck8FCMf(r|-H|uc2cFg0dnixH@iPOvN=gs=0T}7a$_ah*PDp+v=oV
zG(nM3`=*y<GNc$Xl9fj_H@!k2q)(9{e5q-T7X+hvv<R|4Q6nZ3QZe4Ih4{n|qmdfB
z*Pxn580xy|CU#(ovIaH=1wxK(rlRhxGy+@$U20TfjWvT#{6p|zl~Fr{ugm|~=Nk0k
z!mz4Efd{oE_4_6(Q;js_8+iSROQI#j_{uoKNGB~8+|&b6G-un(@{4iFN4dZ^(V?_K
zh+R<g@q<@g+Lm2Cv}_o{y$QFZkm-2gStm4%72GZl;qOgA9)i!)SO(?tw(fqxUO0sk
zz4DiJHQRA<@DsRYY3z5-PF=M{`6sQ=Z=UR<OQoHM8fQa(JvzA!F$Md!2bV2~3xEyy
zT%Mu6Yx~@t-_}A`XYc(~EBbVIv05xrYU);Yoi2~x;ONtl)bpisa1Jw23Lwtu&Of;!
zXJ!}vrg?uAaXko+Na%h-X2i%0$_?Twi&}ki|LlOJi^{^HUU)A@HYSz7uZCj(g{-Wf
z{04@S=*Sww((v+j4&hF}V6o(NUFvqy71{d)KXb|VuWx?%X<#%-_P+WyfCl#rbTk)n
zqMaS{ad1BQ%itfeC^m`IA#e+J1uPJO+@V-Fxc7eLJgu`gqQ|h0fMb)Vvo&z>{i~4H
zja5@%>>-cjZi0kamPLVZ5DyE=MMC_B&^9Idrccx)zZqF13^IO85+0S|@_dpzlFbc$
z2kSOT=lW1^T}i|_cM3S!O@0giXDg7DVIZblZqkDjezATXMPqq`aG%e}!hipj3Kw9H
z{jA`tshyZtN@FFiMhTP@@U(ZGJd{tIt{J1|5_Ip0(9-^9w^Svy(fTMW32}#|FZbp(
z^(_U_EA=%`=4<lRmR6dAC|ryZ+xPOzqo7^Z&6?3x<_1<%>eOM=#o7_(B^{rbA|q+B
zyg<_MHwD(oP4AsjFw0>cd*umfZqJzDo7$+b#RIVlEVC-zQ6v{e*7p({pp=|7NTCn+
z|0&`=)<RN0zem(|>H7>*c+o`rfyXIZs(mY>1y?AKnlLNr`e%`pRlk%x=8~|$l_DNu
zV9FY^mZ=Um`ez-jupE<IC#=E|fb|rlVR|dMP;)OZPZ4rw<-zRKo+`Lkw_H`c3V2h0
zIgj{@qS50}w_dQ|;v<^RqtC9sPAp`NdMy&g^CWS;CIu6rNbRNb;6$$+P>2gFZJPtt
zOwSGl7m*8px!T^<5=T3JVZ+}!<xoDwslUQ-sO6WB6o>RdW|4vvxXN}%g4@?Nx8g(c
z2!;SjxjC=c?)~9JY3btUGcdD1s*3XWJ0XJ*Avc<p8Bhi>9iH1h8sO6@zxwA-3!qe(
zUUXzBN~qXi85Ia(rt6E6_YFL5Y*<=HGacsy3sO0+z})*xkrKrfa{8TJB<TQ6J1)U?
z9_4@S^NZk>Z3Hx{{wRpF4aspeHp0;Hb5Fu*=q+Vhaj%?XCiZeI(QOMQkQkQc;N_3z
zzg)<71wj~$n0TU3|2oWh$_&QHrUg1yq|N+?3;8Quzz31cFGC)nCt^%nK`a`7u+tDF
z{1_a3OzVG3p6hrxH)#aJp|FsKnY?>{1x~XP<0z3~o^Yp^)&o%HSn$kneM{+9U1a`&
zx~2-h!p7w=b491;U8?uL1NJqP8O&`HZ1kZkEbRqQj&wPK5Hu=MP_A!CGG{-^Zo>OX
zroDN?3W0?SQ}`U>`U2!F3Y%-oJ1z(^g^!7IkOHJ7JodnPg)qZ`y^J^E76IB_NH%G^
zEePW0QGO;<^&OpekT8$e88Ri<C8~C5<R_Vwy+I#FT>ro2tQ`3^mo(8-HrgvC%+K4k
z75A#UDB$Vxq?*%E`x&~`@G5=pTm-fOSx!|=Ov)af1EG^@W#-jVnMbXb#c|++#zm6{
z3|`<~a<s>g3=h$9t=oD2?6hMRV);jZT=1A%kt?&71o~<OCyxrcxJUYvL(Ek6u9WbF
z-pU*W#r;74RO=iS3|?VJs-?V+1vd?toQ4lH$ZAqDaX@Ii8DV-+OcOkGd=xbAoz17h
z9Ch^K9cDYp<@_mZ?S6QBu26S$l!CdM6DW<`lg*(efasf5&gsFz#w}5^p;#(DSHxX}
z$&4=z0`aw3M+um>D+R$u?^c{Q_3=aUMTS_lR!y%20m?u*(5u8=>6%w!9Pt*cb4@RP
zrQ_8hd|b4X(?wiGJDIzkas!ynu&^>HdZa%WMLE-ATd9@NE<t)U@0atIV{SvPSMLfU
z+gyst$<<GFzK2Vz78dD4CmS>w)JMRIR)cH!phc%#fium+@!Qa^(YZgr6t@mcdD-UH
z#?ebJbG>wBi5V5``7rZd-*3k*e%uSNmY0-0Ni>aPIZXNY_rO(jFiwUz7*2zx_uOzi
zzQI@p2K3BpCA1XZ;2Y7UQ5=Wfw<*!!2T-&fI57td5t0FA`8`E5pM?v<t6wFs%NN*V
zNURZ1Su#C_C(D3J)S9^!$Pz@?`q7&<=0aKHFmz%(pM|5gnEwqYT)JHcIpMG1S~YYe
z^wSKcRo!k~SQbl$X{^gonRt9djOXeY$(>)($?TF2J*UxVPlu6G(SmcEbIkdV1191{
z%=2~4n8-wRy+8`&T;agGuQUPzj0468hT2>fp`kW`Jp}=x(%H7sFSQD7A*$OacSK{b
z5sqr*n(Y~<`r%l(J^|ia3?Tj=+Z?)g*il4K(dN>oI=iM6MoEk2@jjqIB?d$U+R+L*
zb1qNcxQ-AB40QR}30MP$y7>aP%)-NA+HsgpwF&=%YncWL6y9YaYmZ|)2W4pS$Av|R
z4~GDAbzkE%H&CTP9Ln8RCh*wBGHqt&B6$LPE@plglf7(&|NBLnN?MlDXz3N4eWqdk
zYqKl=@519C>D>m`%ddRPW+Qf3b|}@8bYoK@`GwvW5ZCpywUT8Rf{}xwp-wplN@7f*
zb9<C_!IHcAaxPVQXFkJrvkjWq$;)ZPCDvvX*0yI7YrL}u$Ek=MU_aDA_gEd-b%jr}
zRT)!YhGhn+oSw<m`!*sUk~96g^lV=;r)4dP%1RSj$hYUDg}Z}(E*`%EaW6u;w4_wx
zpsvCa3EDAZ;`zZ`B-a04y#Vmw69C=#R9t5m`a41|Gr*795fkf<_M8m>3kB--)L#4Q
zHpOr4CEe-xSacDgkm@jE+Jxtw0i06Q*BXBgK!kA|z}$;PrXLJUhCsrLH4C2-eE9>Q
zM+p@<d!`7eU|nRN$Oo;E)1_)55H5w1+2KTFYmWRG8aLwDu)A2cw(QAnr`3ku&ENeP
zTN&06_R+1!MV3G>XyXNZ_(uHqx`(N)XvTo{)x)^;s~;l&6=kvMK20?h+DOOhfMl{P
zmo<h$<uqdgSu--PxJB&Lk6minPCW$by-zQucL<z_CqNaq*LwmJWBN%)J{jyS(d7F!
zAbSXa2qD>@w@9Xxp$Y1Emo&QEIHss9c0$B|y6@0-sZ_*X|EOStgq83=Y+>-=D8b5(
zWtousGVn9SRSsoxFD@d-%-&3o0oA{b4lNYOa>*-FzwNZGwuk?}fo65t)^jV8!y`}b
zRY~i|q(7L*`?gHx4V4r>S+-UcGPPaaHw-8?zjKau@h($cEL=ctx=%FuE*kKRf2}*0
z(695C9;hOmKXOuhY5(9-mfLQODv`0+XkycQ%u^FpaSW$92l)r^4xf`i4R>8=M}Jc*
zatH1N*2>=;V@jXr{T13=5wMi@C5}m^S-bWwj`^!5CSEyT{4!xTW@=^5bg)aJZc60k
z=yW{Sss}+-P&tjKR|KR0oU^W6khcEUcGekNrVD&=&>%Hs?oXjr4Y~=5&nHZOH-}~9
zRtfXx?zWx86|hU5%TS6U&t70H#4w*Vlfyj7`+;{5uvyRx;ZNgD@PV1lL(G-USsR~t
z<+l7ea@80P7J0g4^|K{NJ&@O^30YNbB2f`}TlkdW)eu_QR;<0J?nlXBdn*xD*~ZUb
zDJ9C}J(;6GX*5R@2o!m{%;v2#@>q%SOnvpe$c(QmZb?`-Da04#_pW_S$ZX->5oQOE
zOhKlxw2LCN^*k*zDCXEe<cr#*tSsJ|fG1VAg)jvPX*F^1B2>CB@nwBK+j`dNTWb|w
z4}xIkh^Ua->mXZ}XI!Z;lA8aviRMQ#s)@zXp|FsZ*z2S(yIz@hrH1BB^M-GXo0u4#
zgHTDTIyTUm$1@T^H#$wB$2^N1rkxMLcHDF!{B7NfF)_;mF*dqV?!xS%i=;#k4EPO3
z=@8c^NLi9hIPC5@{X^<3r1k79I_E&=#o3z6XIaq_An(I7Qs3Arf^EL@59C9Fr6lgX
z=stSbhdJUoi3k)_7=yvEqm`hzk5F6rQJ#~K1D(j$*`)`IW~?0sK@*FMXLcO|P-8EG
zNt(dkQ;RoJq67{Vpp+HoO9NaD1vTfoJBEwpoJY)RDL@2A_!9a=xho+eeH64V06{>$
zztv<e)V%?Q+-dHeB*w$veM0=Jc+J(zMv3+hohIYpwAuuL4e)io&9urBGMLe6NNZ-<
ze`GF2XAf=bBQZclpVd1H{%&TIgk~#f$Eug)4|&^6N8^)#K1qEJifxsnCUWnXdYTo`
z+j_AS7P+9Gs1tO)-nTHPXwm*?NaHdp5c&s>_`UiFN%}MSmupbbi`>EYF}I_a8}1EW
z-<XPkDpkig%;A`tJn5Biz4};7djs}uC%YN4qzl<Kh8(4?1KQLUeEFu3`2xWZhyGOb
zW5t<&jiDwJMQMMpk0$eba^znvwn7D%S*wp*6gL<d6^-oXA}5?#1aTQuD+kWvAZ%hG
zuiCo3<^G%Shw(ik7C4nalS_YKcW+9T^O0KT`zDls$%mPae9U?)Rz=V;8?<b$&e3o;
z066}aVblLyI49jBx8eQgBsoaC^2flg8ez$Ml})pU@=#kVP{Qa;o%t*WXx>E07_q3M
z1OG|nP?(Kc<?Bj2dIm{dREz+(n@~j|Rza5t4F=5DEK@g0dKcvDWWwMlgl}swIkRLl
zYkySQCo|@DS9%~+QmE5usLnq;0?Wwa>>z{cy4~N}w3GcqU5qR(+tF$P*<Xwh^EZbg
z$odyy`m}~l7TZ>_+I#{&@%j0b)T1QQ{%MF^V7S@u@j|3${63zE?3EWl%F~Xp6bOfB
zvo)9X7b36x$`xfm<3Ve&H&J0dWaQ|^VR`hm-uPd&A^4)*IZ?16JimbxwO8Vmy-!sJ
z@W9qfev8M%(wwTNO!EO>?Ii{_z8jssbyd7PlMJXv=60FE6+7q;y~vqUHNp^ARZWxD
zI3tIy2NM#EM`}{KL#CNtgn%w7=KJM?9B3xp$~oFpI1l(roZ$4Tg~x}`=N}!oB0d}h
zZKN=7vx;#Mg)TSH;k_8K(-`C`px^C7v$M$|LOZ6u@j&7w=)N4}-NnF6as!bc>nk;v
zPF?i$#pq>f{i#5wxx#B@kAG$BLbb!3c1Um(5w)r2H7(^b030fg5!hFvZOO}PgG<7E
zO4)6wIki84lpkDS5^u`7rmv%G+hWBZjbnD2-pd~!rgBjF0zLFDNHscC7Z!|hFhFx)
zy)BQ+6xo)L2#$7(<4$hpy-Km8OZGZY5ij{*(!{*oOu~Y4@NpQ1b}f4t@NK61C-S|k
z(fgwp4hSOZ-7CJ8aOf3DKs7Uuk@Xst2Mb`mnT*CI;=j(17{n~u$y<#ctHvTZa8g5I
zagJy;ov318i>BJ~6TW6fC_L9X-cIIPypc(B>dTLOgV~vu4*OP9o2`g=+_FNey8br}
z)p0?#gfaa$ODqfSXwoQnIjt5tetkjCd-4{mBpHenX3>L0Kx!Hr4K^@Q<P+`AJl#&?
zjdqEbk3bs>DWmN&+m#fDxM&pzxO>eL4v&hq3dhILfzF+W_Pz!>F{Z}(-7hoVfS5e`
z$W#7#Wg>f7AV=S=pp;5qOme$^QX(KHkO?&z?L1Tbsl0EMEhvkRj28N{6x5K509coS
zR&6{G4+XN85pl#e$Wlq_;?#~$6MxuqP`mt`3Zqdgtw-c(gIObY9TlM}VCV4|TG=4u
zGv$WU00o>1g#Wh9d!V}6&bS8FAC_}y1SLgh5_nD4nL~@sC?h*IThBl#e8kFyVZKw@
zFOg^584~W<#4cBp^bEt(<RE!q<y+P)=ti<Y0dF$aVj9z^$DkEyY#aToAJ8fJV#aH*
za<at?(|I~e1elcb^HX#pbFS~t4I1tLC1&X>UKKJkNsT)!4Ys4OqN#|6hs_>gMwouh
zH0(fN<Fir$W*87$D|Fx`cyaPK=_u-QlwXxzL6@$sKyGSUftS_9pV|@cg}o{@{N{=e
z{aq}l(nbFEC~Rz+xnbnQt#x`Hp@X%mBh|H{M3->hF6<l#Bn+!Z@*vPQ5O|Z7F<e^*
z5o+h9llYFK%qyn0%p7KtKfp13$50N%>6#B2D;txM%@Uc`zN|N|^YH$<((TT+Zd0Rx
zjuYt`sjcPK2-PCg=PSqR^P<4n{|KdB@s@ku;F7cK%ELzc{{cy_NRV>B0=m5(**Y)C
zZ)Sq2<MSXqOa0Ssqy1u?)cfL=O4Dp{nkAZ)h>9e~s%F1UXNIfZ#!XCK$qb|Xm^-B(
zN@L$Wqjdy6=W`z1Iw7aEmViLJ1f+Tn9@+gza<pPE`<$(9IsShvd^*^70T0q~@1gCv
zzL%p5$tqEj!RN)VQ@H~gn)a_9OfZZAHZOxoNeZ7PY-EV#LQP<TB5_tRWeGvS@4Xsm
zXc$b%5fuklPvxLnRgF80AuLvN@MWcZ6T~Oadg^!4W1|eaQg;)NLKPt14m@bJy|50I
zCZ%GGh5>Y6XNeX~0gDtuOGaKsPyN;sg9Rri&zItwH1_`z@iT1l(a*ew+DX+F3zv?Y
z@~TKT48S4b@C#@#0fj?P*{|NRZ?=R@rn8f{Bc(>Tu=Uu;%=*-K=j(#FfShU>b7<%1
z?2`SS-fHNeqsFmC*crRwXIp8#o9JbXgATTk4#Gr`G4IG)%;~B=61u?H#2y(jDjWn7
z?%XDaxc@>gLyb54MpjouOnfqiom{9>Fb;B>NTJ8KxxL0Z-<lX1IeXDx$E;;7Yx_BY
zXjg2!A-6U;%_+B-RL<aY`52F_QUiqVt!q#)oP?sq>E&a^bywZA8F9Tud<u5u)z!_i
z-sgx<WslWO>r<)I#FN_(m21;v&Z_?pI;O4p9whE{>k^P3TL?V6Ufu?!%S4)bf)^05
zBfB~Qm4$aJTD4P*<*J5kHP6)K;;Mm4$NSkEMCG^`^hq{x{1Wcxmc0enhXqq;j+e-}
zP40X4AX~FO;eIg{f2wVX6NA>IE3ohp_z0fiIh6XC_6~BzZ<UILH<TWCJDLU8c=vgw
z`O#{bDiQqiULJ`?>z-A^)^Q0ia>}dA9;g*DNbDPPOpTMr5*;agoq7x}JR%6_L&mrL
z+{g*VrDXYaynq)#M=OT)6Z%Qk=B=1szBz`fOO!yvi5jq$WBs5HgDYioK^Db>86zR4
z$@8zpw%lFptw?;|c7$mHNMjwiRkXm!i6zpkriM`NrXh_fLx>yj?tO3I1G@kzhgL#C
zbJ&_Wd%Kg`Ens`TXJJ~EH<xUy!lDxSY;N!<<u@W?{M|O?NFGrwK;2rK*S*PSaa|Rp
zBHT7b#jF6ai|T<#s517tF5AqSG$lq{WAao){#`!iZxN<`;EW*!w?i~}jqtV#_{KQ&
zY9L$3EM><ffy3LRLM-Jx9eHiA9KknYu99CoSf0umZQg?V;+u#tabC~$F_mDSwjhd(
z_>!`>Ktw^~?hB?c<NUOwqoP>uD+G8)?W6&Pxxh*s?nL|wSNJDgOwjcYd=M=Y1#hrr
zXm6UZrfkZ`&ISH`YAf=i>Tvy#HYpadSV?@?tF5?uw@YrGc*iGAq)DytMviKf&HtP9
z!jcj}NSGG?<U=3RR&(YB`l<g4PDNI;9D7_cTUWxUV7K=RvrOwI{JYPyZ00-Z5tL5h
zRp0HU_pvqgj5AU~c*_)BD$#K@*C~t1|0IBXA&cAd3Wg3Poo7Xw#T}*KKd(G9ZU^h(
zRRxnCF3RSsN*Ts|)zKP7PR(S}C7V3#^)h@qD`u_%^{40x%-@jQiyYoIl0iWfE9dM6
zHfM8_;wj+AN&2TP*5h7muC5Xl642>RAO4-%;_ELa5vg}(Qdcam)$91Y{0cvJDLo(;
zRNPYNyT|!>H`s*s7@SB(UIU@_isj{w&3_GX$X1HtjD#MMT+pyf0JDOFBa({J*yeM3
zF0TRv>0hm7t&a3&?Y0zuzN+D3IqUqu<oA~IFZ=92G^F$@g46?F8nC$BhuorOt!Y8n
zin2`XAj|Wz=54Y!+8RzddFB@eYp0D+Ftw!Tk~;r$A~Tl}??*NDlmB}h{cW9~1roJm
z4{9p$${z*8V)yBmG`P|5K0?3j6NO}Jnm3FR>{uurtutNntL}OptA3I^t>1HjVVis&
zUrik*E0cVje1S`FyI#PQ3lpxzmplO+%?LXo3JfM$4xtHe>bZ~_VhD4V#51d>Zj3%X
zx;}#k^6HtX3Y2nPz*jHm*T}F#r)ZR9=nn%~E==tr;rd@7kseIUB#^~sURz7&>x)HQ
zU+3S}PbI>sr6XaHgI<^jgas<3l;{R^*xg5*FyPLxoi{`kUXQ?9VZw!8j`myK^<)MA
z<VQ}erp0_~7P2CvlavV<q^V$OQw(Cq37AJoS5XWMb1&`PSOO=LE^<{9ra4EJytmYC
zi^WgYh&>13*bsX#`$~*g-jsJeN5aok#}fDY^yk~0Uj8fw$1UnJJu$jZDRiy0cF!S%
z)Tc!mEcBOG_d^$5;#ia?MT=XpuL-zxtC%yLs2EQg=y0;lW+DCYLEYRlQF`*ssjR%U
zB>M`5S198fG-?|G`F|hI(-cv4(;Z&WtqHP%C(^qsBrw*0idkw1X4J>iO6c_}A(~zA
zrr8QC&nBvp97yCLdT5hDVWzz5Y(}OuFoj-3fZ+2|;LT29M^9Mlcc&%9{nqdcO>dxq
z1LfbCf^cUPum~S;=3Q<^4NLC5%?29UjjX9pDAQbT=KOL&O-qY2T4_`llcFwzjDfB9
zx;$7i{g)!&8=OZS568oatL13R8yfV}jghOLz^twfPd`oT2krl}HayCo*3c`I_1plj
zQvusv@hg23Y2Q@{S#LY<@<5(1qqtB3EdOdVRT~upte<Tx<#rSqV;-PEtCAUQ_@|Gg
zREUqZh$QX1qe5>Za<7WCSa(_RM-`ojCOEl7@>*2<wCK;E2eT8|h0)BIb#yyeip=V>
zdlbxCgx_`hMZewXk#trWfpfgJbFLULhJ^4Sr=MVQp|^IYSEkBpf-kzelu6nh7z#TV
znq@9J*OfW^mi7W&mv<-Ghyo>Nv*lw|)Yc^6&8tb7r{l)2Q%?B2650tdZpQh~HvY$s
zjK@7pVysrLA8rG;!5&1Sl61bIoRsWF6!DtRw9EE^W<;na`0};-iM&6QAt%AGB_V*!
zInTvovXKN+)M~Js@^5}=P9>kp636A!w-QkRUmHeNWK}e#!NVBKSY0OFHJn4s%Xge=
zlT{@x`T(#c$p++(oXxX5H%$rz)Nysk_}U8QhKsSgRWW_R;o45Mta-@I3zlz`!6K^u
z5l}AP{^BlEGE{g1vDUlt;6FvHtQ*R-xiD#AP+qNYNXi8gS-c4$-3-+fi+h0SZ4h6R
zoB5lr0V%E1JBr}zvy6wO!6j%WGn8s9VxPtk@+y9M8IALJWt5CpXcxX#+pz1<uYL#C
zvtHcgw!!5*2ZKq2wh&$aB#9IkedX;{r5A4DNFrl1w2wJJWxkg2umFLSg9o=Ez_?n`
zMPr*+MnF=0VPJ!NpU^(QU(dX;xRSBOb3aib17s<W@ZzIrT{||RifHs)E5P%n-orS6
z)*Gf%1g?$o#(f!@t4w=exA8iPyR)D~0<ObdQmMa~&~qz<Gk3pDrygkyacDA!X@3b2
zI|9><ahwA|(s|#l$Kv2?&s3O2d`g8K(y94uk~eWnYgOmbNY9vAV$cs=agJ!LlunNm
zO{v$dz06f6KFd{M<@*82W@E|l1&0`9?TPvXis4R_Ampb|hec7uS7E@v!1y7%6@rus
z96jd?g^I|it(3;{69NlAf;0^*AQ8$OYK{+@)``3uOaC^hFkCvgfLGkU;PVzJ)W=1-
zEo$rbsQL9>gY&gup*N6@tU2`@AqsVH6Xb7_1xyC;C2<I&s$<j?kKZPd@zMWNCa>6`
zi3aWh32?k%$~~08`-`y$zSn_QYP(N=P>ub=`ipWI6U$xEqTP@Jtj#%HWwGeJ5x4`%
z%&Q0&I=@K9TfES<#ggVyVfXJYS2|~JwM=Smn&XYEmZmb|kt|TP+?l5qMl+@6hoU=&
zeT4X=bbtZbOa4`6M=cp(AX`)DPV>WQ;O_-4xV-J%#((eRAGNxGSS7QsR0AVgIrK_<
zK$z>EC3r9;!&<idoXecnlI;?FVuHG$=_iBQsSf(2_`RVIRlIep(wyz+qt)}v{El1T
z9F0`A*a0Lk@e->~v}bwL;N{V0x>x1qHc^s*KEK9x#Hluz>`npiZDPu2KdBg!fXJ0M
z_@dIY<!FrDhgC-n&ENvrnk&#gSv~p_mOfL_!z91hyQFJAEczMcylv^LoJ?Sd-iugn
z@uXE=kBkDHwv_vOwml#3bp(3CWu5NKR{f|xe6zz5ZB-6unBLzm^Zh&jBp>HO4Z=@O
z@E}@ff^^gim=9E%K}2Or06aUQ8_b=e&q9b_4;^h}Q@(qw=>IGu^0guULO2#^<<9Fi
ziL~*pX`vzi^*9#Te>#}Kb(F=SH|0FCq-xVX`M{=_c~rZ^ZoU@*$KiKdl%^w)V3a>4
zl;6>2u>}4$&R@<(sVoM@#EZFhi)l|l2kF}<fS+6K7y;f@4J!#pK<wZxo=z3KsUn8#
zpGG}6MP6g>b9t;|FGrdmNZ4{ct`hQ~dsL2n!jIC7pc+v=hLnS0-bxwZpi}eLhD01h
z>iOEbSltSn$Lf8Lz=zS@rDRc%Yiq_fK%0{>7gF;z-T=MgW;HUU?u9FL!B%PV&<>+^
z-hk1f$E#}-a<vpXuN5#Av^~G-MRTMaj5Q_+1Ks3hL&y018DZ>=^LJJ3q4d}PDoMVt
zJs}3$Esh)<m0STPhy}>Y^BqQ?C_FQP`2v6j8@&z-sJN=R@5$VyDj7wMIZ|0B0+Zc`
zig-STLi1+`PD5$4us3M(yj!);M<}-wXzIus@#n9*B!r94o#WLlXm`rYZziI%LYf;1
z+Vw>LoQfzSjl2FJpj(_P0UKMqddQXqXAG(1Po?9miwrhY)-v&CkWW4L<0F*kbbicO
z*;~WqbI5{CUdb7x-*#1hYmwWIQ7&5f6+Nr8=LU6|u$-sVWb3}Mjl<niLw;QkmzMB?
zl>1<Dux&4l6m&4p?XN|K{WENxUJS|BW(GBA_oP5V)X;_azCe--vLlnm($Wm4Y{8;S
zGo-e-nY~KcgrwSOD+z1u!FujMTzaKJ*wriD`|xbG`S;dYf`oVW$dtViA2*es8h97L
zmWNKx#0kr#SelpZq#FBGHG=K7xq^0zFy`lZXyTGJ>@%LI=nDlAj+R)tzYf_4w~s+(
zN#mV`tKBTY<`XCGL#7pnId?*4NUA5WR&MP69XCFL_orA6Mp*de2==R07QcOWT7)GN
zAc11%5MOjY;1dsV=&WZ8GKGcf2DWj7NduHcm3N1P>BUQdLGN?}c>RIe+C)`%Nn2|F
zJ-wF#evCSqo|xb_(ZF88EmC2T7cF^0JB_xQnlQvHI+zC`eU$7w#LbORjoeU0KWJK$
ze^68T8Gp}AE&&y><L`Zqc}l{g94X$%n14V&zS>EWwl+@h=Rr2k;{(VpL;)m~UTo>w
z;y-fKw)RILWK=)G)HpRXf^bb`8&|pFQcvw!sRfvP1CfX6JQQYY;})-D-s2Jvnj?1w
zig}wv+M`>k0htA*R6_I>g!L)N8Nmt(hw`y?U$K>S-l%5!M9-4B^MB87JbSFptH{8$
z2+VQaphu+d%QRR`OA1jGMV49fd9s<z^YUAF-UK~<-<<}P)2c8j;UX_0Rx>l}Lq`TM
z4ylZQTjDpGk#6lTAQGDXOK-F_!!mTkxY)3EIVd+>`rEGw)I)Q%Rk!YPt5s^BL9j_*
zuC~-g5--F`F!UfkicP5sh3(`H+%{EOk5oBMG%X-R@BS}1jKQ6M52t`kk?YpNr}?>f
zx$v!IDUpc5$h_3?%3lX>#B?5u(b??ipaT@KLvmYLa{nXIW0j#umdijMa^7aj%|**%
z^`{@H`Md{N46A-L4s_?Ze{?S?+FBXvIA78eee*7romMd74F*o4qY>sFM=@vyjM_-%
zX`|k<>ZCNyD4LqSYiT^j!Ib=eTbOZ^-a4`N^@ElNa1WTU`^*Y7+lhW9<!8>5Vn$um
zgHo#(_iNMy)uQQt|3(#Cz0UX>8ltK+Y2UDY0o(c9TFDtOHIKvJW4@j9T}eyR^Tt)o
zSLSvV*r7m@i=e<FAjCSLzk^sVMV%@lX8Ohj#Dybw;X(iHN`+Dz)8nFYc6*p)5ry<1
zgw*n9_X!dUb}k=jyv#pFxc0(BtPsFN>o0PI3%H!9mUBcz<5h-gGkMQKu+lZ4hfeTE
z-c)W$<A|tCM{y}}`j@%*F!hO(jI~5vkhy~o#O(dX?)jQ#h(>{8C6?MFe{6l~xr9SB
z+oqsY`s3o<j$KgKrjF1UKN0Gdnja-o;5!x<Sy=m#CBnLM7)_pTM3?Q00tnG_rc(@F
zd)vHI-t0BBaErQ5@&zBB6M+uizGMcz>Fdp$f3XfUvT)XDk8Dm13O<thW_KKsR|^KU
zS?pWEsdL(Nn0u;HVeR(+t0X#sz}B+229|;c$bAT7jSpPvFak0+jHF<r)Y@y%m`wfl
zVvGRbTtDs<AV#>^ji5?_BW?tm|49nO((tKZyYe@5Fr@uL<w{tm5-)4)O-F1qv4xw~
zy5wzMC%M|MOI9RYcc^%kd%xjZDV<?Im5D3BZ)@#0SbEozyg1^b*h>ik=GiH(G_QK=
zK4-j*z?r|cdq?%Z#$Brc*Tj?)H1Af_G77!oZ?pp&VJn%4Z{0<QUr{^aXLs#YWe33t
ziFYu@_(F<!x@v#S3SGkYV+s%$bP1z_ShEP?tKQ6I@R0Jt)bzE0|NWTbHm1}4W7wHW
zZwz`O!9Z*-IG$w|@D6rAsynSnFBq55xOHdxJxoD7ros%(n}%hju6oN=(hBRoAQpy9
za0@m!`F(~DgLb$lo!D5|bca;B3&!dbujjpL$r@z3iGf?T)_A1ob#yt7dcIRP_vk=H
z@Sz%5-ZHJu`DPxf#MF|}`Rs%mgVGA0|F=PK#agIzp=dZN!g5$@cq2|UYb-|~r>VfT
zD#Xe&=&n%xJCpmSlI!l}7y;4cdGxF>;C!OtW;CzB%?Oirl(J2896z1ZA!i_5xc=Ta
z$ZZnQL-MPf4lat$)|HWT8um=-LPtal;f{bW+D8lZ-&aySA{AjeL4zVu2jKZExX=5U
zwb1Ht!nt*I!7aCTZ+TXtC__XJ&}yJ!?D(G3OwL1*UiNCj1d44?D50z2%ZeS)nV^v(
z<@~+>3^7Ua`<b_wvu`|OV4T{kyK@VJh0C}ApqKX1o1)9UCyrc^vch`sq0W9OE}DJ>
zV3c9ZvRK5+B4-zfpT`9(ALEg6JzrQ?;F*R1?dAuJB!rJ)+|k0iw;2@jMusrXea@0K
zJ&Q_F6{9lP8C68!P%<^EQp1o(wY)D*LICRaiVft>vQWw0x|noNI+@F#P?v}=_M8a~
z<lg!b+CG5c+y?K2+|?{h&7aFk6_*umDi+fWUBy%%Cvp6kr@R;njKn=_=e{~I&<LJ<
z#?)sp2818fG4hV#bHYzrm`M_-w_@DIzXA8%ZUR=9UUubQ5c!1tF`}lfJ@|zaycWan
z3VNSZS>^hHhazW5PUXlz!Q)8C_Xx&B$!fTCc)Uk>qJ-sTl=^LUdwHB4-H%ry3EBKJ
za3-vw1DA_@vs60BQ%2x|zOu}U;?KUf1qyIJ9daX>Jh}2?&fP{{k71zQU~@q_2)#bD
zJ4#6Zf2c>Dk(LDrF9blbucO}#)9p203K+#-VD1>@Cv;3Mm;qh~lZ`}l8E}7+fThVU
zMLt?Z6#MABE&6-s;W+2=S-mnYbmqk<IFqBR#1x^EPZd#ck7wj~j;~AF(XN@O+Cs?P
z{M&qS1+#MsonA~6aT|?2A6ZN|x{dAYv^DdOA3+YdeZ)%!rLT{XN;9b@n!U;rDl?|`
zy3EvrAK8<cFzwv&d`vU~cgH=Z(Ag?trR2Wanwo3FC=8*;dL-0+-Pyn%%|?$nQJ{b{
zcI-i@lBC5}i?LIvGcs7?{_@^KrGntV04bRzrvKOezK!Xn@pdxAtj)6kYiQm>5I3;z
zvS6;3)0;9JG2Z~bqT=f|fOkA@DPRyoa@&>Xs-%oaZ-7<6hd~>P{&ip44xsCXFy@~T
z#areV>oks)mbXcvpXAU&WDhZPi<#zuH?FsFx0S-d+G3H*IzRc65K!?f)k|r_v}doA
z1J+G}GDs97i5*N4V1VFpjU=$#f{Ojf2U!=H@1yEF4<dJ+!W>Px1l$86l^E}f#!&3O
zZmkHmR!w}b=-lI0mspd4Cnas{4lFb>|3ZLV8}gby#mP-Mo{JS#=S5A!9n-VBL@m=)
zid(jMujHFk!jS=atfZ6_j`86-0fR3Q^Xg1nnWpT)zSI{G03#0_$x&f>Qo`)QWo~Z5
zb5vCyuK>H>S;)S!vDJ9pTivgVgg=z`IPwef*RH9IPEjODuZ-j@>twYBi5N2x4BdK^
zBc!~>@SsGoxTWDo>FTBtE91~8M0JK2bn($Dj#sufwch`|ja5a|BI@XUb^|{9B?2uA
z>fFClYX`h*Mdb29bImr1>U7~ND0aQ5Wuv0n>Y79%@AFNX#UPyGiV*V_6^_&*I4(kq
zPIC*Bl%B&Cz$l3ywBNPmlZPij|Ce?%h=wC?!Qs`0Yexl3X2C<PrBhWXCq6vH(0pfY
zbb{|L)~uLP@eyQr%4p#PS8mb{K~V+CYUU1CE!Y36M6gc}4);Q{{?qr91qlDw6j5~>
zR5(vmJ-mLL)}d6tYwxRonzl`MjZzY~KfuI*de^n)CE_$R`v$BYx~s`3XZCa?98Wb|
zVfe>e9WMS1MONn7hDtt5MSTkO%%)xse3d%_YCSiK!WFB(Cp1H>6*Ygypow6~O-Ay(
zh0qorX(D-vemZ^@@t<AxeUzSt^PO%xwQl4YSR8#9kzB2Y$p7F5KQvQ4bmVOA1g2BX
zbrxLC>VEwo(~$N?yygVy-L`lCGo{Kpqs~nKRzQMnKLv}#KyMQmT&N;Mf?<rVsB{e%
z-ACANPQ8s#w=(ZW{a(Nrt-`o*1UNlL;W`NL{==)@t0m;g;xlR_h|^#9q;P~`kLBR~
zGSsm*vSoY*qp-DjL9+{;S8U!kt{4cKO(yk;mu**kT^Vg04na8V{W+y4&djvQ{G*$!
zu`va6s$s@KSU|+#8eJJYLUACRp>@bU4BXDBRDH|X_AvcJgrogY`*aQj_kwg4P~F!H
zsL<n{HbSRA-InxiU>`!&JEvd{KEmEuN20xG81hUzK)l^b>>MqI$FgOnU%O0CEjt-a
z?|(f5jzREpSe><>2)(H~S7jD_?5u+rfZ{xl@PI9<D+ViGK)W}(S0OGg^B+<s5@N{T
z+ph&K)y}iQfi(iyAQyo&ZY!A0JJ&(it}Alns%T4_VlS&HtlNs=!D`%{SZ11K%WTL8
znTvZNvP+7FJ-WmDoORaf3n$sA_|>W9w_3BW?7fWl`~Z|%#^+c$s!#Et7GU2r$6=*X
zP1h$V&ur^#QZHYJqZQq5+Y_ihJu=wgLg{<AVBPm3&StiR=$!#CpMAXYWX)EWSc)n1
z`chdMu+zKa@!ts(NCiU)09`HoJ?6i1VM?HwR!^6JMQG>}1xNezVpf5Y*GKyd`M&hp
z3VG2}&a0n7l?~4G+$I;E8MaS|r6a(l<1VhAVJu?F$G-yx&2TBlk@#!diC2#|bh$#|
zJ%lZVl{CS0z`7`uFhM|U-AIyNDL$1)^2I9Yl>(mrZ}Y6jzEt=UN*vm<u^5&=m2c|=
z!{>P$pQcz-EJW9|$L(T^wvoIwP8XBZ+kL?ol{3=)P_%uzX5@0H`J?5!mb5>A)sJq5
zy=m(Xa+n7F<*A-i)85NrZw2o9vjtVyB#bt!@~2<Q+x{sE3Yb=|e|g71xqbtfn{We9
zP+5tPO%r73teCukTj-_WF|X{>y&F<P`j@87F$n&FB;xd*rGmvD%8UL?geD~4flO2M
z#IfFQnL^t5j1@YK$z1iBq2Ya1I}fa!Q)tNxURdHs_5&8H@kMzk<PbVOKOK*s)%m|Q
zR7M*Eb=IUwD=QzE;y35J+%B^LsFoscd6kj{T{k!ROAj2kJws{_oteilHYk3!n3B(c
z4AQ2BPc}Rcy~z^5u!kIn^Rz0Fn%qYY5t+xip!XAlgfyt3xiI0GKjRk0EON>tbPb)(
z)+<Bbm~5z!y}@J6FMW#5k}lBoU<|t@A=DvoQO%W*<Tt()BECT6-ezu3&i;sQLDLZ7
z>#+a;c7MT3cD8kr4hv`88fIUdyf=KbwT7)f*rd@0G=SI~d3@Xe8F3UdnlGd;=Dhcc
z)BSfbJ`fbMGk@~J?b4M_It1)PlAyT>tMRQQz{N1Cnvh=Y-sTkDUjcN>+*lhV9>ej0
zX7*8(N`!t`;O6Lhc4BnZDG`SOYDmMvk_EhTpX+s9q%}hH^1IC!YLtmsl~m>ky%vrm
z*l5^7(Y>zyMHQ;mhmZ&T6Pns`$rU~?5g1Z#!`jp8uHY>?KJ@M8KR`=gU7coD5wcQr
zi;GsA)B2(pZ7w%AV}BwAbWeY26rmshzBVQ$g07kHSP+8~5Hd-SIEeKB0RCk#QM{3p
z<%xI?@i%xYnJh$YCnV%&a^@C3`}gH#48~PxrO=<*1YP#@2~(D+B}wgDE|v|Hv!U~V
zQz^n)<h7NN!Sqvx7`F5@b{p+XkAJ;w#M=4gO~qD&!@jb=QYa6PV$zxJe)r~Swc6n<
z5A$a%+)I^w`WXRwMSr--^Ie;0XF*qd{~~EvwY@=5PWS=$@=%6EHdF$MmPscYGSG`g
zYApt%K3$J!8F27vqJ-SPWkOy^%DwoJUKM(}Uy^?V_Urxes4#sbQb}e4=0lgZ6cNGu
zCJzNt!whh0$W)5^$*Lh1w{>StWL>K7VLq$O?;IaRtB~y_;Tdx68KeWAt1yWgRG}o{
zZ7F<d`Po;5tOD&(2{NoFj0YRFJuE5PPQK82wIv|H)bt80q@@N0-&wzXf3iZbO-~+?
zr6YN%Bn+c*2T1F}KHfSO({m*-KBS>lF=HC#bW=~eu7i6_Mo+Ef&62b&V^D%UXJ<w0
zLM4LfotzdEvl^(-3@geZ+J-_4^rgn0>YqYUB^oYBM9FQed66Q?W60SxUn~=_Rx`~4
zgCm<CuC`TmLi{{Z^+iFnIy`O1__G?i9h8*mSyJn)SCg;A)@86jlRyv}fJn1Tbw^(V
z@cPO?vY*>6JV*uNM%xbIw{Rm*G<bv9Zf{Q&{y=uVw@0XrHqnZ>`)DtPAUJUp>Ef+d
zXH&Pc0cVBLubshmG`ZL@pw@O6{xP<LvX*EQ=^_SRg`o12^bABmz<q#u8-E2*!rwE1
zl5vF9Z#8@Z^N>kX3@5onKD=|2TuJH1jqj?v?l&@>OcEDq50_bfiND;xLLf_Rm#ErY
z@06RXQbBK9-H@26w@MgngVUECpn6W9P7F6xb;bs=r*E1+vwy+|XhQ)rcr$ag$mL6M
z9}35|m>qc-8J=y}gw{yj_U9duG6z7b<977kq*K<oZ`2|wR1K+6wP3FUPLJrh9T6Nk
zyc+funab5E+0A&m4HwE0Jle@uBN>98*vWH7NrZ)=Vz6c9KABwI{m+rB?su;oS^*U!
zlLP+25h)B!&M2|?H#uKs=KdH$1|6M2XLzvnd=Rb|FDUf6S+MqVc5B@Boji96dDR~w
znM>e=8#3xifGkH?D5OrAq(VDwdj;bar@oFEnP`?A41V^;Fgl@Uuy3g05NrH<_nj3(
z8UjyR4d9cLsH7BsG0VLqI9dBuu@(W8LrA)8K?6%1zeJ>8_%>87z`T5zs3SyTex14=
zym;1zv9?C<eM8l)`2#hUmqX-P5H-_d2tnh@BiB|8zSY2pn*;_L{`187hk$pnDua-3
z0<2bSY`$0u^y!BnOsx%f8(Z0(J$m2_Yl!<Z1B$=GRwRi>c^oDQVFw2Z?eAMYjSbYD
z^YS?9?aiG#^9hFerhRFENVR38OHHmIpguEDCvDct26ZfNR<AE&iiTTJouLZ1>h;~_
zn?EAtbKip#!-$bm(t~Hvx&3EH3GO`Ry5We<{#A$C<gzLPKVXk;=GGpJOzfN0PymPd
z{jU$?|6yE}I%|r{Fyt82*wQW-MZw^nZ!yejEh{GP@T&;r^(jZJXuf&-ODcSzW3k+n
z_}CV_ry9s8KC724uhe0%&u?yj2%s;GfInZ#LP*r+0UgDPinG}szd^8q%xI^))qR;R
z@mE}AZ7xZ@Mt0OP(Xs~WAA@pl{9uVP{;>1)kc(PBz0oK1T?B*ISampYu#sGNKN&G7
z0tE<Ri@t=?PYpcU8X%Ydb#+F<yEvwvBkdfzG4b5xG^)$>?($?8)A2f-VJs8O>~HJH
zqvaeFvK}rD;lnlXh%>%2qUD6%<d-kdLg~M{|6mUg&;CXNk)^Vz7$x(JDMWI9b)XuQ
zPl+Ofx{bFwY8HjinXn>p8LO}{euU1m*n2>Hpqis`3iIlMfQw@i@uD=l!7Im?BKh_8
zp!z}D`M<%MEz`m)et=kAXn5*5poiwL-@%<Js;DVHUY^G=jo;Uk7%8o$9AZrf<$N)}
zHaQxzc;rt{206>fdr@1K?T?@9UaFx{5y-67Mr|Ka|I}qO0`}Hq?=1l?ChzqRsUz?^
z*_RY+cwsXVK`8TFFk!2ezuv!%!!mm>le-|FA~exE9-jAdEbh=SMWuA6$i()}*x4J}
zz>f~<-o;Rt!0ap>m5o~_Es}1}902M0H&j(^Xt6C-K2$geDU7C(=%87t1)HXvW?z;g
z0QXl!S=ay{6S2;jZ7iJ0$QvM2LEWPV9_GKxqQAD)wyTUtz8?CvIM3)K-Ud{A1V;vJ
z{gYt_Rpmr5b=}eNlsN?BYPIPHvCqxnDST(2*LUBT!TO+{EG1rB#F_vU91VEuTt5fP
zzf?sEwqY((!T*<9EzjQ8nw-+F*{noslF-)&Hj>!GFk*t&f!T&H5`ifvpnTjo=t37M
zsfAL0Iq}-c@_~t0fvL-VUGkSQ8u2db#`O6H$4zF^YTu*1|2K$Ygk2;<vpH16$eOZW
z`K!XTNmY8r=ad!sRG0Y)4A;8voEuDB<72><S1M4FqjR(a0ZREyJ?B?gi%lQW_3d6*
zxPO_jDebjN_pt-vtaFi3{J`mjue3>m*2rQlT<5)pm||~MbQVZ;+d8N<B-m`2F<~Vg
z`f+gKJs-PGYMx$Vlgq6KXx+OURNMlg01sc+6KJbMJlG^gLrBoFoX@;KrX8j`WrVBF
zwFaUtvOZ2J?h=gJCr@677rQ9TP8D3ywm0;u50y8gHY~^KToY$BKcO|?h^SSEeIN}R
zuzQ;dwK=+(`9;H3Z8Txo#qx?{6SWVz1&xjP@4I{h#**v^pVLR_(xZWMnFSZa+n#;<
z{T%p*p9tR(#AF2ckpeVwghXa=43B}y7*9+xpcsw?e}taQUxn*&-X_MH>Ruc3w`j`m
z*|^xZ%8W`ZclSJh=01S>))TSjwnGcyvcZH_M;-X7eVQe)05tKU?hpY1mbW#-f9)8z
z5f3MRSSycsEj=dr5Otd$!dcJ7@1uW359=MPAAMi_WwZ2Pr%cpsl$WgN-mTImtt7fG
zhe1|mo%jM*wQs!)ua0~>lsYrhd$6QdCB1s!ZX*dK*kg5x+SUpJjxU!~n<s0)F`mD}
z_iN+1untNoO*L)#$TzY&|8~Mw0P&!n4-4#5hn#ZEiC7U}Uq{+uO-KP=fmEBA*GBiN
z4HB|PtRN^^Hoe3^IBm@oSA3bt4yCe^qrc54_S|T<h+wu`IGrKRy!W@ey*4TMSy1m1
z1vOnCJu3Kvt_Zaq$6Jo{u#wreoOR!D?4_E)`{dihMuN*NhL}xstaWZi+t2oH6Cr01
zk8?jO+S1ID==NCArjPzfe)v`;7V~6cAlJX6hi)N+lhm!6nx%7Y8eqg>qp1kO8L$EJ
zFM~a8cqj%A5X0RJ3g5qA3u*hn*Hdma7P_(tU%VbF7ZFDtkiMvHlV;%RHPDbgtz=e$
zaQA6&o()#8QM9<KJV4sBN0}|V5hodLndA5LOgB$fr^0LVQdIEYaexQyFx@cg%X$!h
z2{B%-$oX(fw5CMrKHD%B0=oXK1TBo(0Uf4ofzV`Wl)R@Nw50Q}RMemfN7y+Ei%{f)
zqZWRCK@cXcEg0q>Ib8&ILVy7SJ6$1N#J-PnT&^k+r&8*Ewk=0F-x@86vD0?N8J!`{
zdy;=Crxj+{lEOXqcS$6IipFjgZ`M1#Ng_r9@k3}jq+rIk(!U95J7dZr9q|tpV0Jc>
zDcJo+)(p@v<eJ|AZOx61*0AgkUKpDm5{2Q2eEG|nYkvKc-^WuEyzw=7`h<C6uwE?Q
z-H?3qa%ymA``hCr&w00#nObcW1gGIj*YXCQy#%bzU48<>4AW{U(lk|)duO3K6?6ti
z7e1KY408&v0ckLstQY~UH4ZcV%&NR(Q)y0L#BpZL&_jlJB^jcMF82*N2<i7p&9^E3
zSi|i2-1jxAOJfd;%srf@0j<eCLJ_G}Vag-R*n+gnIB~3JOP6a-6bYItoQSL{_O%Qc
z={g3Fa7GJh?Iyv@rc(gyZpllymXD66L_J`|d*M<QiR*|yoBZS}6~1YiF9Ah~wP|aX
z=@reu^=8&jzUg`)<9@w|!PIUx;x0v=C3uqVJlcUNop#M7i0;T+KXs{spDUmlTsgD(
zFtz#%B*Fe)V)o6Mb$t{jUZ~dyoQK-D1jO=zKv~FA^{sq^8(VLPl&}J<oy7wh(&9gz
z!3IC895*ft>qh`<Ypq6CTl3lJje8UM4Y&-|YZwYiu&8w2;!=o{0p+R$f!6%<kXV+L
z<rrDTx{NK?*?{8}D4ObjwN`nE5e!0sMo5MeB<(d8CFl*E_2~Vl@-`cYYK92Ro?c0l
zUOcG7yb^uxrLzX)6yL|Vl61lX(zXvwxu?~YARt^tZaZJ*-fNqI*!=xK++}d78xtKa
z_NYZ)2KCI3b1V7O1h?N;W9cN9OvlnVU=Gt1kJgIu1u$%S-$)bFpFJta2`9iiu0u?$
z`1vGkt5aZ=YV9~r9*tie1f0n8?XE&B)=#<e41}X#uS)#^|3hn?dzYu9e;UG%k6k5O
zPHKKH&U_tjM6Cc+s%iHx%omaA_Jeg49rmlKL0tqri_k`FE5_puF-9kn;EG#}Tt-Z5
zkDE2qbGlaX?T?`D`yvx5ST*NKjtcfS88YCD#Ovkdb_nqNq{=t_f&*G%`o>QFwztsI
z>VM4;ke0Pe<|D;#uMjT@&1aH&AzNtk)P4^@q8!E55T3q{SXdwKa~_}WGSb33FRo})
z|IyVXTx^lI&FjQrXgWNiE->kZB`348a19-^buGk@MZjhYOy6fGUDgtVQpDATZAxB_
zwmiNu`*WBG`+yMP&Eu$?mds_cw>t+RnoGC~0D5$!_;{_Uq%n(jrxHgRloQ%V!cM4p
zsQRE*(hBk6V3!dIJkA<w%C$Lx>qN|=2leoP*kM!k<<C&0T{I`Jo5%;5l-)VPx4BP^
z&F(|L(#Ri0+brQwTr*9H3@b1N4NXred+iLTw#V@%fMIR;Gwz(}fzachCs%%{W$F*W
zz#-$D<}59tz^~UF^p<x#nX$c+M-QFb)GYlIlq&sU=W491zcu2&L*?hza=k@ckwyW<
z876Jt6c|;7uK_1)>)mJ$)-86&u3pB|sK^~0AhUox5j-qh5B{uo4N_dysGyQZ@$b9|
zvv~ng#1Zuxi>}gI$C~d!a-^#p_UI;VnNhjCus7D6^)dr=3RvFViUqBkuz~4nNXZf5
zt3Po6ATSe#6qG?$D&zxrKyFD@06s$YY+6Gl17yn%R%YTxhLpTQ_OZvdpCol=I_IyO
zHu|akdz1llhuO5FkJi{aYi9ADhb)JU!d=S$F#%?^Y=ij!NVMAWb(RW!Qh!!G<aLx@
zV&#JbgMwkWAuv(LU}BmT@-i(^k%ahLGWy5|D)k5^D#!Ts_H8Q9)|^op>^JE<SDwwK
zmEk;yS~^N<{-rvKWx_?4lPS^`^~D+w=%D0{AS2p9XkmAvHcb=8PAWszr!LOasYERS
zav;f0MVD$n<*1%7fLDi5089CGw0XCJ&}e5$MYeYPK3P@kTGaC!tWfA>ZS3wfj;K~|
zO@sl1K;_RTr8MB_an;@pmSIdz%ns2(OfcQ6CPB%lhivH(UC&KAn1PT4&E({{BrtO0
zEU{Q=1%)OYgeX)Bx^w!aQI^cfO>G(B7_XPXrH=T+dfsCQaHfy3IB7_({-RKdigt*I
zev~x)dkQud_!_ykGN(3p=7t>ag-V#RE&2k+4g(|cUGQbTws1x!7WlC>Pb3k}osn4@
zp`4VDm^nJIS^|_67Oqs6wltUnvI=efV`fZ_H_vmTB>ViMl@u^C=OHHNI{igxN_%zK
zrW*MiHh%6uMohriNhK&~?4DU;0tIUs+X;3^VqId>8R(0E=ZU+c&A*`Ur^+uXQsx`F
zPIYaVF|vb?@-)J1&GjPmO_$4bAK`?SD%Trsdso#DBMAqI0nrRiBq9H9@YxO>bxcuC
zdax~K&;?L(HH%w3oa4FbX{@BYya<=V>49K;)VcVlt(;gMO&T^=BV|f;V6{>&uXkFd
zw}>oEKEu!|6^bAOXc+OH6I#v)GnIj`s%#%EWd__2E4!*^AbfFuj>@o(8-tb|oyAt%
zgY9UIJSh}4)rU>n*yZcWK$V-nc&jav0(?`eruNjfBNF#(C!Jyiuob1r44ywT<T$Fe
z<3UljkB}|DTtMfaS*9GVFQtK!06^J=;A=3Z7ttO?D8Ems9m7*zRjvN;&eCAgt1PeQ
zk4}Ew0bY00jq-nTMY=_o=vC?1g%6wr;rGf@a!Nd5xCww~BxzeCYW-$>dq|p$5EdQ@
z>WH<`b1J6}SK5ecn$lm&8Wm$8ZXpbwO@yR|(a2XBjO1hwPlYH<#m_9Y%o8{#i63^O
z*%`=p2l6)M^ujr{;o8e?7Lh;1hJ3^ZO*mi{ta1ga%1rK9mWefb!XsH!JFe$%7|Th2
zj!r;KD4Vi3sSLk#imBmmpD*R*JRcdW_+)VhOPG?X80#1G67I=UeX3I|qR+4zLCsm5
zjdd!&X*8_cAc^p&56zutWiaO>7-}XlZ=I8=@wsBLYw7uKw^pVNB~}<pN0F!81s=I)
zM5_)R`VP1$a(!xe8J;2OE%%h?V|<scK}(luAyTe3r)ixRqwnYLn<Jq|`#?a>(02br
zi%iZWH<LxT>3uSSRbk8j#-DjOBTdbSYL2PT&llOhwn=6xQT8QpgTZ~iOqz$-p{yv4
z5ZDtG|LpdW+fmt||8woQfbb%Vij&y2v6|E6<nUHY17oDy#~jE4TPC~T$2^cTNe1Cs
zaE5tX=2oCA8zUh{tjnS=YWF=_8F!}Ja`^oLoTVo8<%C2!BuCM-N1gGQxq}y2^Hy>B
zi^IYVlpyx!HjA~<^awbe{#vD-exNX!beImMXB(gbWeEJ57B+~SSnupSD)YmHr^yAx
zmxDS)`&*KnolI}*gy`U?C9}no+n47n<cQG^Zt|w!9)xbXqsj0Vs>q1#y4(|#-IS+E
zT}ZgWcHQc1!iRjVS!zRBt3v`lUH8j+pv;(0>`P>>hdM(G5-gDaNvB~kVvuvuk*iq6
z5LsA<?jT)QdgY2}K`<2J$5;7=(@%zpQ$O#4qgE(3zq%G*P?;{-UH?bSzy*q9*AWQP
z#4KsUj;!M7a`s{3jSgM!_=w<=;WHhXo0|*^Vo2NQ-(drCpXF<(aNXPb8pUE)AgG^B
zvDl*aR&LM)0(6S+B)Vq%2O(VQzOd)Z6^K-)zD_%Qgbv!hF(aEF)5&$_YB3#GMrAS*
z++Y7#EQWx;sB3(j0QBtCqLHhQTu@a;WsKlr#Vtl4#Z@v?AX<l0glFoBRwfG6sb$vN
z0KNIHcFfFWm-aU0C56kA3)2i9m-Wt>Stprwz)82&`KeB`zdoIa>?VGKMU?Hz_YM>7
z!nCR2L=GZ?S5>?z)mg8WDzw4nKO>gFl-5kZ?LVayY5vGM_ic>8N9m@Y8=bM_k*S`s
z{rK!9lHNCX1BM%Sxj((i)6v)ctN*?koMEbZ>T9|<BLgJ2F`iy!#2juNz8R7(0E*b$
zMT`{&Rb%6(>>PTM>bX8yoLy_&pZt9=(hyF*jTfzxJ`Y{rXl05WBYK5f*w&0<u7G3S
zyRc^&QaF5`e~7Dfy}T0~w~Elj*zEM~0NnKPZAf7(x;aZs38RHAeM3Z2kWO+0JNt^{
zQv%nv?;%(WlxAfn3vH?r&E>gDwqB!j`0@Cc`YrtHq)MLco9F3kl+x_8M%fvj<|UpK
z@=9qtEp9`xyP5Qx#8a-NGAO{q%GxO0OlU&(TtNhG8qx&IG3&~DneC=h@^Opu27v}!
z!g{+szREbC4~P$@`I+ds{Agi@OlKyDtzZIxP5YOm;rpW5lJ0-WIsSRFPYdmRZFA43
zPw()%4V?kS|CUM%@4xr<l?NW-Qxn7y^Sx=vAn@Mt>y&^BpCsJz&*RwE2w6z?KwZMj
zZ#ahMxo&9uTSNAp7mU)q1lbb23K^gh)*x8%8IJg|62mXapF2!X{;S7b+=rz%?Lc+c
zgLKE3z`AXBL=B8SRazreorwQ~UOi<+E+Q3^FW)|m1lOhO;4*|Rou)a4=oX>z#*;XL
z)(5?<9lroCeDJVHCP=>|fSM*{QHX%fHMwMjx{yWK{^FCjD@!6Tj>6+!4pK|)NERh#
za@WL!2JGMxJZ89A#;DE;SIlIuCdq2`^4IO`PqBw#DBnl7;dsb|ZtyYn7Q0_A>MY~!
z$X*gW^<D;}{KY<$a<7s!2#FS@C~SdU7Y6d7VXJrSmsPw7GHG*@F_&}c>s@>LgsDt?
z+u$E6=0yR0_6+cjqkcn^XQOM$S7Uo=&-#F!(tDUSe*c4?p|s3iL<;NjWqK$OT8A;8
zHsUH#QKnnA^qutN4)9LLKx#E(<<gt(sb;yMp(n_JV|0-L;PFPYm^a1`VYo9Y<jvgZ
zOcFQ5kpMpNdTv_E;Ip?tWIi9az=Ph*oLcX@7B{)LUwP0{%f7;<@kAAr4;67&A;LEa
z5(pk$3P0iZ*t9}qqJDB*dNzpbP&9Y|I+wK@XfWbYNqzYc<Fyz>B!>q^hQb1F-(xZB
zX3=Y0#(&iovWDuN&gPku^n6vI(*c(&vLJ>}d~-^nmij)mb{+EPq7;)3FHLDe=MCpv
z<JG1`8#eY}yx%@hubtgNYf95+nCfepqWtq!bE<UDS7Zh(j0-+^V+&|r{UxLT-cSE(
zcC3Eel{d_~pTFH7o^`50VS}T^)pjkJE|)ftZeZ#6mu@qOgFoFUnxV8FHAP`dd3#AN
z#R!2VoqiC?P!Kigf|<JXS$gM0ys%;W&7*v(IRWr7#5jPolSZ)qZ^aq*v#HprmX6wQ
zs(ks{WuE!rK{BmJxDjhd{T`)!oF3E=i7{XBqCAj>miDKM6)zI~`T43#aM}y-*sT&h
zDg0`>DaCDg!SYZ(6H<?=nL3tasfu}3YGE9Uq@GvHng5zd_IFgD5XjaNcNl>L$gmOB
zKjzp-if;;nf#kh}-A3vJPU9Qw{rTEJg?3&IKnt%_9^ABOb~R*57`%aouvr%w(cYzo
zf8F@49soq(Qpr2kG=G#Eu74ucJaiJi>rH?J;{Yv8p>~4n?pGTHscX)#Y)Cral&PHY
zP-2)|#vUaY2j>W=+)3gshX^~Q1`xOI90eI9sq`S#+lOw%V|XdRgUOG<^iYJR$T5G0
z;<Au$M(;D)5&Ta=XQH=b+G_weK*+zbp;4)J6I})WG{59~?}I-cq$9*)bUZ61DYITT
zv6239hJ&mp^a~<D0foSht7x}~2z+*e9=q1H{&pMj(P!;$Z!^I`w;%aL%dq!bNif+X
zblf0Dw@#}v0t;1dR?`GM;kQ14(T_~?BLI3JSF{gG^wO%yA)EJJtsGxySFj1kF`m5v
zaG0^R&DNIh7I6K+-#$r@;xwRzeTr4`pQEoJ*jBc`w9|xNGhbaRxLqux4a#jfpR4(p
zTDLrQ_4()Za<W5T*z%uTg0i~aW;9q_w?L#>WyBX<@>Q!xz+}NU3z!X8lw}z3MR?CK
z-Wa>;6Pj*&Wyj`s1>mH2zvdo|r<X9gtJQA+-_UB&#qYVG<6Ah{5+<5&BuIVIZMZw)
ziSuKnK5HVo^5fk_k`P0!MRyx0oFBnGR}+aXbfQc|lyMnv{>H0s^Ac2Q<?)=v7a-jR
zFvBjqyrky@ER?(wqaqKr=X_|=*rhMgr(rZ7?csW+QR6O`B*2%KBUWx2X01ObLCvoM
zHv2$hUH{yveuc{Gv3m55g#}a~ch8G9SVQV1m3ij=?e;2=-U0c+W^~^|+>`dfE3;+x
z_}{Wind||{7oAGVVBqD~w^_ResS>u5&IHu<7f*BDgJTW)9^meqpHgxi;6J!R%e)N_
zOq&7nV~k*jll{2)?#U-PkgWK2Fsi)Nm0FL+EC(EygEm0L9SDU}8UmI^ArA3N*_ato
zjAHf<gR|T$Lp}Y`olx=I!abf^I7=xOw;QlWGVHbeq9RzD#4z6{XZ8Oa(Lj~i5Nb_$
zL9-^np$YA<4((|?W!i<hA;XyX#%$a>&}r)6KZkxUK!Zmfk{eY7VlA4Iq5D=1jH~=B
zXu0+?uqrS4Fg#1|YgO54&;bigWdN{|toS%l9ds|xN;!Bb5vwt|jzJ`Si<uP7>X{f9
zO&$SoXPzt?L&l};u$aN#!UjPU>c{+O3Knk7mgfexYb*ES7fszrd|++2!eksBIwJg<
zSz0c_5W91D5FePEa>GP=*z>ZNEvJi@o}?pePvMF(u~A$MS0yVXEMlrJO&+RXsI)}(
z!H&oGhdHh}`qe;ItKSvLkblr>-S(9GyYH3q-GHtd49l!$&6b#DX6lj#oy2vBLn_MD
zf+p@DqH!0RZ3v`R8)Tg+K1IHCzey4(5)=iG$dhAfm?%N5&mvtd(WP@X!qk>My=XPP
zk8w)o`u9v^EZvTm!jbIsCSz#i&Q-Y{hO^8M>-%%s?6{KOg0&Jmn|u`4(>Hx4&BM=P
zK@bFWx3Uyk0EpsyC>12;SPgIRZEWqzHnJah7|pNwbvU4r8R3?1P|Pl?afigc&c8Es
zXLC8`LV{P-GTh%ron<CI<&Qo@AOm1kZ<h}=u;+Tll85N=ZIF>?`1?!~5hs-U4dXZ&
zDDF#hx9U^ImU`vomO`_yi0LGiqR#6Ac+d!f?K>i$%F#1t<0@$9CQmbhLpx<!9zqOM
zbykg~y0Y@}i^eK70Tx4pOO6%3io$7Gy;7@lX%~v~{~$MR`&@f#YG{ADyq)!22q$_R
zkF2>9bw%@zGRmUT=~+Ndvs9Lph%Q?B#;G3(s$T{UNX(jD7jMvNyhP1viPBKi$uaD#
z&SvEtyyMED69(82Bmk^KaNdo+N@tj(jP4X!*{lBf<*3rkB!@(3W->wK&ZI;3fhWn6
zrA8xqy5@Ghw=}w@wT$A{FwWig@Zp{6kXWjK+!qTNV*;GBf7yPP;2FOr<17~Vj;nbu
zz+nPTf)Va=$h&a#KA3xt#XEU~70wcQ{%PW4t&yv7HE7xN^cds?^+cxW&LUJ`n*5VY
zav-mHQD^Al4L{Q=T5kWW&^p7n@Gi=~^rljj-6G8cn1NFSB%>@yyxm0@AV!7P<cD%P
zpR7aZSI%l#0IIOdS~ETsoAtB$?Y04}J?-#-`{Qc`ErN=qw{Yg@o;RR|&Tv;uhq`lx
zdOlZ2XCIV(vpc<UNsN5jj}|q)sV1@{N!rx5wFfvDX!g|Aj6RAviFm~{iw}yiykeu+
zTGhNU8%535TBGzfg<CI4n6Z4jqn({kp(gjjo4uk=WyHDP`*W>YJs}xf`j6xQ6fwpY
zRWDh~gnqT%eAI)ROv|VfwuJ<ul???;!8GBq5j!=wcqypP|7r>mByxa(+fP*06<s|`
z?4II#?bu;O47NB>INsxba6T9-E*$2j*h=+Cm7FhE%(<sFi?>Nalo3D$^c8n{RUNS8
zU&Nb|U48J<0A_tz%b)CFZ+7%<ytMg7R3x-GE5M$bkdq@s(<&NxC;`5aU6xA`#d?nw
z5d^Z$Q@V))&Z_BKeX-P2if?Jy=cB4*{AcB%p)SWUk8)v`0;#2|y6x$QWQm{XiY7b@
z#SX0zPUXD87R$9Hhq?5ElR&V5w#MK(Ev>j*<)=td5Xvj@Y6|gL6FY2k&HD*tL?QF#
z_*D=};jcC?O2c!i_EW4hoB*noMES(*+h(g2+u%$0v4bm;v_fK<Z>0Rf>VfT*w#nQc
zz9r7JYm{qzP(0ulMlZqI5dt?Xet-q>a~>SapT()?;)IXqCT0>(!5;&k_)Q6~>Ru#E
zds@BqGlO)Wf5&Wo@0JDC{Qt^AzW+aafTW2Ust-`^?)H%J9&lIn(<5Kenuyc1a_K!E
zmlWs9W>x8$;D?0jmDOb$jXdBwY!XM!y3Kp@l`E~bNJ}%mgI6^i8@ys4r_x`r<KgT4
zY$;!OkX`*E;3Msiz(*L>j#E4*Bgp2abBM7q@{0ep3E0{#zX`GbqG&1vw!m}KqbFK9
zzE-Sh!kJU-vK#~$omECSZt^EPfZIpZ<R}!CEXWwTGhdlAP2_nfngY)q`s9FR!WS?!
zu-~@QOoa>|k$J{SsG7|IT03e?q569ZgYu29ltU`<phFc3HHhAM3j^V)cw60h|A|}<
z;flUd;Q7ci*Z((gG9g>WI9|eiibo6-14XF40<6Uven$k<wuF3TSVzoiJQ&)aZ_r3T
zGAS>F)Nn%9gp2^ANo96)U&}L>SmKp8^VUk1UZ%^2YC-Gsz+_v>B*jENy@TwjTW2J<
zzaAir;t~t<!X<0hP{J1;rprz&TV0r52o*!BnCAtfQS}p}m^@!M071{z+@<4A4KxG?
zpIm5DeONML_`ZjK0U>Xf;|MfC>SEV(Epn{%9yFjrf-$gogc3~_d|pu$HkW*o&+D;3
zH7VqQ`Y0|x2Hz`@IMm{t*>S(EAX0q!1pNL{H!OazE}!yoJ9#ss?nNHb3WZxaO}_V*
z6%lQd&>*Jx&{4g#6IVTVOHT(ChugcT*lcK6f6x*3g@OkmR_Lis6Z=2bJTp9JDLdwC
zdL5KTAmp)wx6d{~qGWVQpj>Lf`Hve=6DxZjs#qznZ|O98Z3wJZOc}!GNY=`B0qdd9
z9PP8vc>d`ic)>v&B}Fu2iV~oYrC(-y664Y7OvWJUF*0+hORjy0_aHGK0Ortni9yG%
ztR|p&C^*{5l$;)TWQ3!xj0~YKw%w5<Bol`d3yK*kfXV8sjs`?^;q24TrqnUh9fzrd
zRQnDs`adCF@P|D%J=KSzLTpT@ijRVzv3c&q=M&a6M{U`JlW4bMeF{svYair3mn)Ae
z1UTN)g*%aGYcIwr-amd?&T)XY?+=eMWpq%mZF35w0?R_2yS7bRZ0@w$O_R^vS@B9A
z|KB`%RWs{Kk~64RxMfH{@BVGWK|JQ(@As+|l)5P*FFPt<;7h>=p0k5MdRwbvoQDvb
z)}z93RB*cX;*va4G|#$G=oD}E1NJ7ZckJ^<C5B(cTifzU7H9Ta4?6vIN=ak6mmdR$
z$_!asB>>T7xL(!MiX~FatF|)#?t-lQG5|uw{lDj`Cvn&(h7bBC@wvBp{W`hA5cK<<
zRc;1@-<CBphOvWR%C*pgF=;eB7BiHep~WBf{ov`6pNK0YsMReYNcX#bN?7E_CA3Si
z4C9G!SbH$NN`V>HibS0ZhZr&&2SB@djN^;(DhX_V9`O~J@w*YsvN$#FZV>-QYy_Tf
zD-};a{}Mam+afK)^C|ZHG&G)FH`ZhrBbt)wOQRVCxU7$}j`uswc0S`=eu^Cj04Wf5
zwhc%uY$b6f!=HeL+`g3;3uzXokq$LxrHi!a^})5zfaAS1`MkdM2h;%n8BVym+t2Cj
z;r4edhabJ`Q9A{nPV(fi6t;8J5AWvBc1L|L7Pvk=oLEm+VRU5t_ZCJtV!ex982B{0
zcVM3-%OfaPvu12_U2ajRBIEYNQ&2=Sa-M8O=kXleD?P|+9_753IC7+cJ~s|Dc*J0f
zI?4^}6LLW0i$hJI)zg>w6hf;?4#5Q+Cqc%sHncI3Lo4)QYsv#M&WfZOwh~)aZ|a}U
z7NhWv^NXE3F$Tkz&uGz8_OX?P;_%e#jd_38_>V06YcGtXAn#bY!p}Jy#J`!B+#x}5
zjLY-vwiZs~>y5VJ#s*XQIisBS`e%Qy;mg7eJxxIkQ_;;~9I+bK%IE2lQwsO!07_q=
zG^V!PH=De$3bm}_>s~pgT0u}`ELu$8&Jh?_6;`YZjW?o+VkcL831_UTi^fs){zhZe
z#|syTgBws*=%&RTix#KbT|m7S&9!c_(@iD#0GnOj{{{aT{K?2Im73R?+HBg3c)69!
ze+HvX*k~>T5s*>UNyW%GE~#~z!=8N$hO<PR4O#Zj1}c_a&s3NkIW0F|PM^ZcmL>CG
z#oZj5Ive1eb>L3Rnj4HyrBsY`hBJqcl9qez;}M=Eh;we<w*4p=>*G+O7c9*0wNUh}
zdb!j%8tSV3@y4%9VqtO2KrOmYrjEmj5`L!tuD3JDk5IU{!R~D|C%2EeIT1H?@vNuZ
z>uc_dYj^YC>-D7{_bMq^dWsdd2IHQdUZeXC^BAQc--|&Lm#Lg`$p`~ySWtA!M9mug
zd(B{Hi?qHgKF~Ai7$TWxtuXVZRvlq@iL<P|iNW=1{f{xP)Kj#O!`r#mw7y|rY*-^=
zjrJg~PW=b&xsjvs(qj0()SR-c2pn0EKVJ@#1K^cidwfS+ye5t<GDOrvOvYTT#Y?vA
zMEO{(DkYszK?n-FKDta+g2(~KQ6W2<1Ok>$fd)(-4?4F?(VY^2FXn>-)ic<&s@M2;
z#%YEjFE^UglhMxbAhk@Dv>X)D-E<f@?^oCe`>fbd<#LsUJ`5#DroMmA_qp}1u#{u0
zRTitgS?lgP%wPCnY0B@IDiUyGqW+$ARtRM904FbogMXoiLWM#bn7)b09O`0Fk&Dfo
zjfwrL4$JC8=dK@y?th!?ymtiPAdp3i>TS{Osj6FwVjV%%p!dM`ApGtf(BqyweACi)
z&d^S?(vZ1~Pl!J<%b?*&Y<%(aQ9Li}MX#%c6y@G`L=$&)^#2Q0_(5TZ-vJ{v$+3MK
z8?M&mo*{R-@N-OcK4Bj+JNO6iGK#UbbY6a8_RsW{)W9^4PV3SZ%yToFm>i%Rs?zFv
zFN2%qyC1AT4EeJLp@cEtf4CElw*VfpaK{~rcSTy^D%+A5zhb&>VO3c9-Hn@;f7)ro
zPABl9i<LV{eu2<;Ig>~hx6rin8N6cQ<DCl_@<kee>%*9k5@z*lT*zga5abJ0Ays|d
z?Ts6+`{yGAWL?Kt{p0;7rPDs-r6#-qolJj3Z`tI5p;Esqw@-lt!Q9m?VTx$Z_+z&=
zB(xgRHm=C8J>S1yL3<8bPK_#qD=MkYv>3+k^6V_)L=qzNrX#;uYoPO>h#qAtOn&f=
zu~e<=mHA<`BpvE=BS=1_dME<j)>xxukFWsIHkh<Mx241Mgn$B&VmtBK9qEpIwTV1E
z?udjIFD4>CCe(0G&Pjsp=@?-*7p)AvTe2PEiK%q9-)=R7Y{|Y1w(7lt5FAnW6k1Ga
zO6y1(ibZ3pr3lT{-C!0CT@=7(>n?_V&`JfLMa?hF^tJc`Q3Jh^b_h-Ezj#~ACgZzx
zLzaAwdm@=E_&1Sc27-21fD-HeTZNAuWSU-K?m3&ZE)Mn!1Nr7H^%K(>%k`%1h!oTp
zLup{afzti;E-5j}rGZ`V=(Ae;iPh$xeYpO;ckU1coG{ne^Z50YP+C+hcOwdeoT@Sp
zJ`vQn_-F}`a>5hWzfvm!TETH*d#3u?9{+d=J))@o+O{d>_<~YIJz-m?E-fz<2vY^b
zc#@u6ZfswI@F=YDj<E`+p_7Qs21d_Gl564-ln|AobJr9{m8Vq>+}_V0CHGNkm|#Pi
zmt8<m8U9#9;I<2rVvu+FaHt>&sW@S+)hD$IEjs~8B!6|!2I}rU&UdFoyU4Vp!%KTg
zCK(}vQ3l-M9vhf-?7trcvKd~P+FP)SQo1(O$X3}oi^>RJJ0FJfvJZ7HEuD>GN_Nbi
z9RN}n8hqM&l$PIpx*p#WMor6+A-Ue(>j@j3WYcG=7E=DQ%_w@RUkFLvA3ZrXA=ls)
z*m;zns9VQ3_#xp>3HBwEtobF&89~ebBj`YSZ_y2mEVSn#l<{x2mf*u+Q|vE(mArjq
zbD=94uCE_(gP-BanHn2U`3+##6(MBlM=melyd@X!10OHldF%jmP;ni|J@t*cG%1js
zn=vgN9g5Y}pxDl%i$g{1)ahNWrz0(0;kmg1d+``$ko@z{Fqfz=5u!@<4wlB#dHn%G
zfyqaf9R|1D%;AStl;R<~)Q5RH5Jcw-xF?k^$XupLqN_2jc+*dRkA=?&k295W)gy`y
zRU31x_)B|l3*ni_;dtt0n5kScV2M5z_0XW}D~=DC-9EqG48puI`v1u0v(yw02>tl|
zKcr+|v_l>wLrW2PAJ9n{jA@xwY3S^M)@N@I)?R!b6|9=qE-of!c_{4tI^fRWAN*BK
z^k$Wn6n*%(_Q93as~k;)S26-MTN8TSF*@aDwVy4Be+C_eFS`thgg_Wo2Y+Rj`_OaM
zpKl~Mhhb3LrZ{2wxuI1ogVRa4>1hACa)Wd;ILh;L!z901@xoyu*-yIUb3sGdz9Agr
zZ;mKi3_o1Lz9tw-YgbhhmH^p+2GAh2=X#Q^idltV6^{#JmOke`k41*u91B!h+DTtA
zhz<V|o~5x{|8RYbDlM1<CQy8gpxe9i*GMy-$<$o{(43XJMAPmBbZ?N&K~YSwJ?%Xd
zbpE#C)|9x?w5DxL%tLak>K7+vvlVWFMZ%SOA7pr^)&vIuQ4_;u##JHungqdg=YJul
z+36oZD^*L3jK5x5%ud%G0$W>Pz8U#q_6g8xCG8${C)%P_iFeLJVmo>E?>JgfDSB!t
zcs^bhlfOgGBnFrPfsNW8r27-of}y<x1~GuCG4nbhG^)P#3x#<A_*5lZv0?f{hK)w)
zC4>O36hav)$sbzD&*0H}1On#^WKRHMCy0oukA;5VDrFi;{b+q93=f{P5~bV^6e|8D
zYWwH|u5`QYx{gg6Y*`Z^5zNyiDL;c`5~hIK>{14}j)4SdZbG1G=+SB^945uyIjlcq
zGNPJ?Hil%mbxQ+8Tt;KCAM+7kJZwq2pX=FvHx4LHl>~9ITxI87kTshKo_)B7q_`|9
ztEB4SeWXzkku3{3N4rMy9bp?ql7U@2O#aQlru<%J3M<H;sS5m`(z;fr4huFbvU6=0
zM#_89(gQz9qe+h6kqCIKlR+5XNqV7F_r-SJ1@B|%?wdHFOFVgj$=<|)6a}XQ<fl2U
zFjM#lzK1#ZwJEvD7vn>A^NPOmnm-AUDnKj}Rmy@f;~@=-TNuTLlK=oF^#P~_07VFY
zkPcuq|8}Su+E-Pqpec{=22bRAye4D^TpN~8KPqc`A-W99VF%{#^0AD1ex1-ATfg&^
zGHJVrSc|2n05x6@itJOFrFwM?Lh*s5{d3w$iQ|B1i5$ZpwT^>iA?r(%-jdv$dX_g#
za(-V6+U^ng_6FuZLlm#ld@H}!1uOJit6|_m%W|35n}{KO?4yf2D09@f5S#0j6+yq>
zn{6(Mjmn7reNjp~w98r(P}tw|N0DLi@2r8=LT}V1I%vc{A2yCyN8psknP^Pg+Tw}w
z16mY$@3q^xKIj$R*^1Li1M*&kz}gA;Gx?TQ)L{xUpHX!NBXv~3?Fk=gAmwe0*i0{q
z^C1clRjzUo`^R&1G|^XP(Vma5byyKR4lSh@_yr7Nt7`l|gLv26xjbX#$KFkS8Qc!C
zGoQW(U4wG|DbQ4#+~I-tgt$T|RTazgcjb@tN^-je^y*ncaD7iy3)54j3<Wvyld1uB
zy?1W5@%LmMvA!`5FOQDf`wnU<>o1{{XY}XqhAb-n;xlniwsYXL9BnL)rJj%uATy|#
zJ!p(2{#m;AxuFoL^aK_>>PL~KN%qOOZK71ZeM?F3&uDq6iJb|G0QWLmJ->s>5gOvL
z-wFd6QnT(Nx(HyQq*Oaf6R@k*qM01at~X-SCTcwMzG!j;@yVk~iuM8i0BOFQuUGL4
z1}ta;F&?cjjNvUY4f&*!&S!g~lP*=&8$UK5+!XSZosHpkGz{~1+o)|#&Y<Zw&p0VZ
z&-z<jnm9DD-F`2)8gV$?A-TAxh@^K|5hZrCgX=QB&YAoG!(w5zyT}(~z(a9xWy30C
zS(6nP=D&nuy9uA}70YAF>iFlq-^%{1E;6W<Q5_HU2M@!k1V}IKG}KEzFd2C>DBR0K
zO(tO(EgQM*kd9wUKb3Bh2;pc@oK2r>IOEZHcU>4Dro#`6VrpJkUEr0k)=X)F;+Di%
zZEr`mpuS!>P6u-dnl<xNCgSbBG2#%WLmvv0Hf`|F0p(8%NZQtJAARzRZVztr)B~b7
zNHZ2s{JC@6z!r@7wrHBP%6!4yw+sJc&_YfDKoKlD@-wQT6$V_`ZXOjsDkD>h6}lk0
zzpi*Y4Uosx!%v*rZ1$t4)slc^SY{M}7t<zgUKRMRS0P_$pReqxE-yIivWRzV6LECe
z=ln`0$RxR&HE_Ue{G#(4;nOi$LW5loRMvB&4sd;Fy75igv&?zS>`m+N{?hRj<90Qr
z!i9i<!LL31HmT2IdA|IL=#8ZsQvJU_#566vFgRir3Dys<UJ)PR>@hR)&0|j0Qv`YH
zv`V;o_Id+IW}or5O`sm0&OZQFO8`!7TIQvf@%w;v{uz;$V*rkV6nMlzhrBDFS0Q__
zq55}1kW{e^XwK>SEFo05c<krwajbG1C|>vE&eFy^vQW>SxR+N}eu}TyUn9VG#*&6l
zcZ7_XV_uiz?Qn6MED610Z_JB}{CWmspqkYZ$hh%ocO>0r`1IY+>W1X*T@pm|-+)o3
z9uixwJyi1+;=T#UU~o?Klecp0{ir(F<T)587%kh#$*q}m03!~Vye!3z-dmFwxU9y6
z)q%lHFAO#h+8kCOz-8L=i}$u{ayd5q<LXoY{WZ}jy6nR(E3L3$3A(Jim@IH76b^H3
zlO7+|1HUYNw4eg!J-WqND(GU$_(sMX^3)($cGo@F#<(N6k2UhwO&yuQ*xQ&|>KQCh
zd*3wkTRIyU1C|qUQKfK*M9Ezq2|82}Jl;>D2;z_vNpzK7j)lJ(!{$>nM@e#ZmR^f2
z#9wslobpQbrzJg6YiX0+XU_#*goJ;g_!Dd5{<2x`aK5*y%L3xJIu6O;?`rLn$5&FX
z@U1$69)lgN2_j+W(1q4doW_R>Wb4M-r)6e`k|?;MgB6VuD(EFOTL9<IY!Xp})n3cm
zeEbdA={BY&jPCRoa#8!lMlD(dk$!N7#K`}LtewYrT!LT18G)i-FXF1VZ20xsFb!zY
zWyK4j4iWqBcF_nD@9i+48Own1#dkGS>nv5k2ZeNMOVaf`ZSY(f;gg6MBr;(yGISw6
z<`VN?{mO18{89;G+39)cTAz8xTc`ft-27+(WT+)Sy9eL3>d5pCDEaWfzgvo@xV8G>
z<u&TOQ~q5qSd=pu5`!+TjzvCC#Sn5GWD_@RL>uajS)Guuib;*7cdmEe7TjQZnH`qB
z+zKF58ix&$`d49EIaSO;s77*i=ipa7F3Vb}W=z!lKz0_pSIhM`d2q>+d15uZbEnJ-
z48Z15CGDA;jxbACn+#Gk6lqJTfx1ij<)T}zz{wf9nJlqwTde<`3NRJ7@Dgn$%xlt~
zjT#`nzGq2W@DJxQ&R)QIkDm74Z+2SWZG(OqZ0rKR&gGO@ULlBx9a0z!j)^Y@NzNzJ
zRoZ{e4i-<VXA_^~8u&mQ-`J7+`9kzHuk=<-P>#kdY%f`&U^G9mwl6c^Au^4kQcw0%
z-Z2hxmfPznGv-5MsE~1^dOqFgl%i=#Yu`G1C-UX8odd0B*Iie2b8FpqM^Ti}$g05;
zK$(v*BQXg3-huCNCq<Ii7)xe5bTK$A`Wl^JR-;0cIpR_{41k$A`l}B_k_1!=;%wV|
zG3A7`YPgGF&OjkBf!7kpbDz3geI@WXXjHv}e%5AR6uF-r_0H8w+E;)K;E?TCH4L}M
z#)VhKav`I|64`9^tHlozz0sMwm$~n)+dsM@3YB#Zyk3cFq*IMPe_m5vPa~1=NyXYz
zs(CjpI?6cfJCc@Z821PG;yiiOJ)69+Q=W1qTYU@<som#Ro0LUtN4RR^`328b6-Keb
z*2cRqQrfy%{<trDe(dU8C)ZN`nfO=^*K#WY+cTHX`44$UE&$<y*FJ#iIq!d$+AC?P
zH~>|@Efs={yvyT&5)JMd!pLu5#ckdMAY~Af{assk1TU}?VD2+JU4-bhgOal_CvrsV
zAmdp2Az1}M{&mO!6E{q5Micu?39`5exFv^!H}PiJbbxXDU>0`01z?D0nch5>s4+X>
z^(!hV$KY8Zj*^IYcV*`4H8wO#*;zi)Z$wA#HX-~Z<jmgMYE1g$ZVkL>RxCcAD6hg|
zI;Az@Sts;~yC#BCdXj_R%_s=;?rg~4md5XiZbg{XmgPi-^dk2v62tvOfaqFqlLctG
zF$c9DyqCL?&hg^!nO_%Jxy>W>gXEBMCnL4d9iG&weFISLEp85t(6PkV9uF`}H@P{N
zKgql1(0;3F=-o)<dfUGY!>GNw|3+q8$(eAmOp#fei7f%*|4_@~=I)V-#pE|_yKFUa
z7)%jp!ZQbj%Vk88;}9BROlR@%40`mC<e#(X7?b8dSZMSQkn@}#o((%_omb0WV?08E
zd)?(P7^H9)N<=ZL+vARB4Ey?nc#n9O569VU!Kl+-hbv(c{|8sWai!~f#z?_wmkea&
zq(Oj~Y6^pUq3wI8c??l^&HS=!>&&#xpNbFFn{>3`PkZN!ReZ)ip9Di4M~qC|1P(-9
zY(JhOD|OV}LSc!TmIIv=5AXW34wQKxhsKswTLGF&(2X6KKG>dRSf3IG9P0@qpU7B}
zddWKJ8#o4nu4Nmn#~hPVeVl4~4Pbp9*iPv%{c{j<m5%Ipxp41B@$-a_vs&)E^PuVc
zx?*%2z-IStN4?*qkDJ#a3WQjNjat+-ZyvEzn${X5xE+vS?i`cZU4^^VMTQ4@Wn^i)
zB_X&qO`6h;T4aj(9#Bwe970Ezb5i;j7e?=z*HDk?${Gu`=>|g2F0yB^KRd&+OCEBt
ze;_Bo-$bvOc7{ophYF*vZp~Ww5g-CmTPZ|ObK2CM*(<=s9chk7@Y<rl8I#q|(f<^J
zW-t3AQ$?(WZa1(6={|xibAfgc{tQkCcJx&<+2HI$kVMv$`;NpH{FNQypvbO)^M=;`
z|I$w9878j0)!&smTaCBfs#K<D_lkCl+oH3)eR$>o7gD;>*~byMbo`FIjS4140e`OQ
z$u<@E6{LgF27=q>(tU|5A1=10bnCwBhIJU|W2(_3&YfEc*R3iSdXvMEQXV!_GfAnH
zjc2@b2|-6eIvv>oj7OH&M_36rD%PS3?Apn*U@5PAmW}>#nKL(R1)Z6?p+2U?h)Ja$
z>%`ek47)V*4zmFn{ikW!?x9)xiDK$R1%~&}@nPOsMyqMWC<>KdS0^FImy3#RkNQU%
z?ds4mf27NEf!)mC_@dzF)QNwLk?GC@1IKx5egL*#5G9Q%56WIl9rU0;p~9p3a0Zz*
z#YdW`xP%unKV3~OZV%BA{Tqeroq3i`QTCZNWA!Ts;j81n@aJ8w{2jrVby;aI3hHb)
zZ#mUOEv_70>Dn$rKApBj_9vjL=dzE@=Y7y!=udpQj%nx(m!pySo$TS6Fq!>z0<N{q
z;{hYHTYdwqwp<1-p6b*E<U>3r4o#!PHWx);GaN`rR?_+rW?X;V`c{}NCoMrqNFqA&
zQ)A--j+J|jLy@86n~Pv(6XRCc6NUQC^ssJ+X4ONqLl{Bxkr8{N?b@8Pf<4~2P&u|-
z7@53e%u_F{tKiYcHHT~YB(~|;Rw_O7bBqb&w%NvICraShfKpDWndym>_BK%BDqROp
zv$JKON*CS7n#tg}f_<Ci53nWv8PYP7%%grPJ0QgFO9ppJk??!-?cfD{3kKO?{(CkM
zrRX#RH}8>ul_dUOYg=XX=nN*WA2vCC)}bTl7PCSQOdkJS@ln)b>Qe9Uzk9MyN$~g7
zfCxnlBxJlt`e}A&&+9qf*0&7dzi9TT8dt){rQUX(6(YCXl!Xg*n~p3X6bQuO&6`gz
zC23D&n>V%zI!g^q0`V(7a2hC<mH}V+Fe6R}i}(h6ZHS1+X3+8H_`{^ZSM^DtN@iyj
zR!&{k>U6X38&ZP()a4~-xc>jKV%gX2-H#=4BD~V5Pc2;hTjhEBTDU&+H*`6m>W-=G
z?T-!rh1?Gl%2!pMs`9Vf((!@zTt3i^MH4=?6%p@Iu_K1tt4y^;tEX@cy>FJrsTulI
z#})3bWX!oY4*OCjYV5xPRNhBn?+gc;&g>yt;2^}@Xurt&4Gvvx7ED4Etg6lp=Gc7Z
zbB0AzZu&}yfEj*Sk<ZHE)tBqYgAZP&2HBMuO!NaVDEj?@GxpCPU*^~2?Q+dsH!Y9Q
zNKl$OGci9U5+$RBdcZ&Z(Ll0^34|OUgo>_i>=4BT^W?$G-_1I`N2|jB#Pj#|M-w-@
z`$k@2{SD57)(fHt^fwYalT0kd{7rlfo3@>Qq#>wXpuqE_h_Zy;!<aGqeN6GP%-git
zeuIJwCuhxrILm}Pabuu_7!4?N;a>g%Y=_G0LExKTeUF81qbKa(ZS6jNbGXz4IvWs=
z_X`)!-}22px_9W)SyQZPMY%ifyV;`vQa2m-SUIR*7{&KbJCc?AAYCEQ3wV<e)7W+>
z_<^&7zr>!%pN^J*nK-Z^fWDuPN;V5=&JgA1g30D&HBBHRtBUU-hI@ArE^MaW0o?Q3
zN;&V&ujY@f9LZJqf){(*1Ie$=zq9O7&AaNBWgBj||8e0RV3-grufjVzw`4V8#&e&C
z2`z}4v;`?rUVSBU0g)N{-|3H^R9~oM+a~jJ{lS<-2rRzu(@fJGdTfx4#!MmIkF^~Z
z_g*6RV3eNGFWN+KO7$v%0>5kfX<Z7Q?5IC1N#C|;g{V-;(h4&Ol&84@PT)rxCYzp~
zjnqo=wsv${X}GH%S&m1Ovk53TRn%cx6^+u8Z@pxRTrN0MFV*?r$m=Y>@7<f&qcyA#
zd*C0XyM9ldV@c$Oz+v&VRdAsm&u~6QjvkibbMdf33ZXHE6^t54La?O<hEIOulFS%C
zL3LbDPs0ZIDnkGn{IwRe@8+1_YzOG9kdjI5k*1_!A*Tg2IksD=5FujMDuH3VvnF&X
z^bgq=l`!7j?A7x&<lk6g6u|C;E+fUZQZ(aA^R0LdvPLd~1G5h<TnY?G8UZUcUlGZ8
zKUFFLV}P4zNMq>5csIHSd388hD1uA=iGN#~QO+7BeL1V>!(exWKvNRM$%=-guvjCw
z1d`G9<3j9dmCqyM4IIx>0^=v%@`;AC7ggj%-lroW{cRpKlOfJkYGT@4mNau&0())q
zgY`d@1M!X$Mug#q(86i&gF38Wnd%^0;z9R<t9pNVx0LfsiXW48n7A0dX)7jr+Ne-A
z0s9~6E#<(J^&*+l=lllZQQ$Z<ZM%vOMg?Op@XAiljm0X>uZJ!btD&3^J5<d9G_<iN
zHZ+fTw6&dIZ_~WQq`QoJ;y)QBHLe6FFS|>UXx`_Q>b0?&^JLtkHOdbUu&`C=ofs)y
zv-jW?n_meaGeA5rQV!feKUnJ+f{+nD-<l}^f-<_-4gPC!d9+ybKTt^~)TfR^k-Z5e
zDN0r`{>KbKdi)9zSP=*WZ9CD@(pz0tmwh+gAQYfusF^S+5Zr;L-^Y_%aOz>%`NuP$
z*Ek;La2^wOjtfY&F&p|rbTb5G!#b>aGR}@zEW&PMwysKq#$fd9rA<|mUe5T-M>!wd
z^flQaGgoP%77?@FHuxM}Bc7Cev9(;PI9(E?|H)N>6Y$vN4aYnJ`S2Wb11K@`#@j4~
zZJ#eVsfP9S>-9>1B@bpJA8vi=w-MgdJ;Pl_b#C5$o6hmTFjllYDhJ<qY|n+PmO`$l
zb$X}OK$v!!<XblvLvWX^bx+xXjJIc%P}xH>v$_^}Xqw$R`8#RN7L$$5iSfMHDu2v}
z1}uzz?KQIq_MQt;MN%g?r%ykm<zFa`w|?in($E|NwnU6YJe2Xj*r+#)EBwDO;;TGC
z3jvtDtlgHoKAm)z1l8Xk3n2VKNVORqKGmYqIEP({lcQ<KPPG4Q6v7|dYP0n68JEEy
z02J4lSOMG%z7!!f1^i*YpQxi|lb0sPXcQ8Ogt3l>I`}k7qCX!^L)3KzEV}fiMc+a`
zBpG?mruxCcy=Y5Qm}nE9B4o~2#@Xo6+`U@a%sJOhL**LxO(L+78LypamOK128@*wu
z0Y*g6j}gksHxG${Ru1dqWrfBABhxIlO{C&A+ctu&56BE|y=m`BFk9~?s8(}xvCiZY
zqNup{Zw|eU4el1i3ncZrilY%AU3-?V8MVpOFgTtluY^N|Wc!~8Nc=nGStSguI#%4!
zhy5mP<%Lp62~#RIH?)rK^Kr1IpQ|xM(_zR^hrsB2{u}NlQkRWD*yp|p{N3=|ROVl&
zjJAS2IB$a-;Q9*M^LzSWP{0HnmFT9orOY!p+i|gaSIiVsKidHt&#RiAr5;62Us%Lf
zPyk23J&y20|0$YG=-6+|{fYZYylJpMh0?Q9yybIhAK14F6Sf;o#o!~#l;BPULvFJW
zbABkL0IzpBL*!dpB1<VTSxsiuu%ewuTXd(_jltBC5aJi<iN5ErW@Wv%b*@p(7g0W&
zA>5{FCx1~sHW~Zw3?I|3$1o$bN6S~$rpy+mlB<sq2+9@83Wo*&X-yW>zE_~gkg8SF
zEEi$4ySxyJf_BD!TPA|SPqvlk=fWFj6BlAara>^pH1lgQGduI4JU~V}D1=r+TZW)1
zC5tbKBkJ0I3upl>j*4Z6o-B+8P?oZgl4`#qU@02iZ(agM!8C6!1V4Xpz9?(vT7ETS
zZrdi`F7lTWHk=YGGZf;KOqYO%I+Zn00v^`0o(6DhR0~>ainB7SZ~Vyww3-eR>qN5%
z5X1>ydroPez0s+Y&IEXK8w-L8^9~Fcj=3n5u<p==<4k<PrJBOdzQkScq3Pi*%azJ;
z5r8fU5iLuigDE`!uJ>wBO8dG@`h0$=K{zKky9+;$B*EE^f=-AY+`-?Gv@X3&pVgQT
zy($v4K7k#C0A$($`^CRmdb=dMx@jiCyvTLkd<LY76bN4_Tywd@zIq^VvC3#F3|N;(
zyd2F%RT=phO7M=nV!^&kB@D1DK7Eta9VXD?-KI30lp4VNVuJvUJ30{#^9uQMCNuto
z)n`y9E^&F^kk+IVO6Rk`dW;-U)C(9+mLkyI?9z@e=S=Kf24=T(Jd^W#A>z$nnP}=Z
zgM<k!7iMR|+ue@=^aqIC>9E-N*dnXN@KNs4c{~5k#pT)Rcn%+EW524&Yq#<R0MZdR
zB^Ry|G{5HZ4)Cb;K33T*bSE7^wHnqK6foM9lIIecfBZpjYr|}E#^Nk-)KHVg`|;&C
z@W-JR?@}IQMyH12N)p2_^$ttHT^q<FcSpe{^e%^KucS3SuxNK4BwiI{Gu;^uyz8d+
z5CYVoW4K@YgAsZ2P`WT&sW<!ND<A{<mZ`2Ss}Mr4Y^B0T6RA<t%IFNOMit#q(=b`I
z!_fy&_ZnjFuvV`0v;p{O-z3rB2c9B;LEZ7wiD0vkMyl_s149&iw8yrIB)@U5z2ZUr
z>K)?e0SSFd^Y!hif#B}k(kSH_{$C7rix{v4i$fyec|nEk)fGcsphG6%b^q_?IngA8
z)1pI0`JXx1#lG=CzOre{@iP1DPL&*gayT+^k+2-zp7i-pWAfL+aG%SxFfa^nv+7yD
z&Gc0-y%nvks1cXaABe1p?GjdsS_!RvPar21C3hUK4t(s85OAPmbg&=&g{S17`tmYx
z`liU`f%b9@2KdvukP<1mm$%X742ZzQ+BqK=%ccYUE^bRAbE?Vod%TPXPR3j3jh^;a
zADlKOnVq_rdHQUX*5tNbD^G(gNG|=J`pBL+c26ybrj(oL>|2S&{=BCgE{3Kr#;wMH
z<pFZ`-y#DqrSv`0dVxo5;(qOWa9&xgbnTpZ63s~BUv$rZ$y4X9AeIi>qHlmg!qDqW
z6j~CDJXtH<<N(*?43D5tl_jdf4Cj*Zr(l+PrY!3O>EM*lQ=FgSK0$gRbd?2(Vp#24
zck&kfz2D)1|KK<pb{|AT9q;}<$1+I@$WQ+e>IQ&>)-80dG;FKN>>BZc-78hLdOXy}
zr4Z?Qftu&=a*#w(t0LAPCL}i%C>DwYb;tn+A-UY{f&O7czt!60){Cu$Dho2vX=|X<
zK8~Lkizbn45c1B7e4|e<n&x6DLLg-2HvI*)ybdd@8{9>b$aBs|<@79nbiR4(FSy03
zFR{oKA<-I*s_|r1HX)FW{o(F}CG;$Y{M|pf8H^*TNPG9greS}Lt-Wl0YvQP^kaJuW
zN0@8SmPBgW$8z1zqjz)BdElT;*`u0ZcdBa8QXHdMDBmUOnto7*huD`H+WTZB<LRDJ
z@W0hfFY=Zf_5i-GF(;|+!x$e*?wpfm%P7LHW4~JuzO6MVX;7)&(NAM>pIR5!)YcsS
z@NNddn2k*hAqwIYw7mq|@_?#XH`^X%2~VSznXcEA!|CCW9%mi@S}k7&cEtZRX($PB
zb?mt}wBghHjLt1!hNdpGraA@OM%ac5YtHx>hL@7?eeo>*%LTuv#}%_o1i_W;&y(6V
zmpEc3??&g14~$i{RU+=qb`vL|7`7Q{lQX6M^JTQ`tUj$?CqbjdzGv%QN81M4-VIM=
zketPc@v6GX81VVM-L21mO+om-dh1cg?H7DyQGU-qpJ4w;4*J4ex-I+u(9?b6HNM`>
zo5C1A+5xq)+0ya63+l|7b_*TAwPq)R*s7M1ei#gBwprfeFzQ!#Apqx!g{+OKM`z8t
zHNg@Kn+i)*#-R7|qbQddf=LZ@^TK__>=~jbR2>(A*8|Kx^=Bw7U#>`$4iKkUO*_YA
zV;W^1a2o8EzVd_RkMlT;%o&w|@y~*SJ4V6rXFtKt7Llio{6|McJz9LVA)tG|@LyV*
zgvFqaf(Y<=!vyo4_5*%W>QDA}PvioY#;pdv+GK$$h-XF-zKsRgXH2PN#{yfB^fJl6
z1!DU2@)^C(u3m_<aptE{qF2(Is7MPJ&&#)drT&WfL_3nc+`ls4>mAf%m1V&9#1tY@
z{xb=FWrV=2=sT_3J>DLg?a&U+5&Sf9+e^ntbzD&A^&YS`aYQv6djgh>UMGYAfMZMA
zCqQu`vHiNUe)z1`AXFMGO@w3o3@1RTG_wZx>?Oe!s*cqXvt91Q-#YO7J^6X8inT^a
zluPaAY$gj4X_ugZtu{12?Mj#&sl*10DG_WQnTd-DOS(NITg#I!zUjZPP-@fl&?A_1
z+_-+_5lj}pYk>#fbRn_<)F8#Q;j5WP`+8QLs-wkGq!th(l0w(g)o(J}Pz#+S5PGHK
zk6=;u#`|&TcVa&Sxpt>$#ntC-Gte-c>4HO}NIJ==DX2TZ!Z9*G!d=*v8N^*pE<Ssk
zf&oD4x$YxEn3l)3PA8yDcdJx*3E4+=yLmi0rAkS)(y-_9Ap&ag>yUh559QHmr!~F}
za%>AT<MI~azI5X0+Ht!FYo!=+m#b8<+Zv||PW_(cq>eOfOv|slN-_}n`WGD~C{cl<
zGP<PSgBdnH554gcv{Zy%taKI;!R=*zc~{*uFelIOq-O|1S(Q^4YO9~mXuzW-NZLE}
zFowFi2n|aGWmSCjH<>=aBVj&IQSpfZGXuncYMb!{Pf{Q>yvzK-Om)<fP_Q{!4YVwZ
ziJZ}fYDZsoM<Wj3C&EC4$=ZjO2J;25(N)?hdP^jD4PV(1U|3o{q~8n{n^V{KCZ{O;
z)(sO)PqI`?CZ(F3X_j*9m!aNJM{go6f+ti1M0qfw7%fU++!azmhx*L<|1;8wbNR$q
zue;DgXW20;C*c21GwRBYDp>z*bs$FJAcQ8N`D+KYY&BhwBk(*tORMCG`X8GeBM8Cn
za)9V>O8Q|%(bnc({$rgVLiR0Qe;<vIE4Xz{yXE&JzX@gQKU|PIHvs%Do2BvGgjJ~u
z*5`7PcigJCTi?vff1NIXKX+&}YYe!8-m~80CA}h7=3SUiSgQ%PG+bidSnOf4n57^{
z`}7u-!O&h>)Ykpjd{fxdv1aY*Qyd|lRqw!|r7;$>s@{YZDkhJ~88{h7;f{2QD_Zl?
z@I)0hBUc5n7D+xK;t%apA~PQvL%!?_KPuglCH-Q7Wpg^m!N6`bMy2MfbaS@!=zbf|
z^tQz-xYFZT7h@?0R@SG6g#lGQ)`^-FcF4dt{MDw}l#?Hg+9ZZ&fn*x=Da8HlJIM2o
zbP_3|k=trH{93V&Q3q&|h1s_eSVeYpK;QyGB+Z>`J~H6IbdNCQlIygdUMYgpzey8X
z_22!NG$>8iL)7q<ZEGWR6^;v3wIKg7ADR-UQy1JR_=px#XQ%5BhW<WPiBX$D)|?9#
znC4^B`A*z?4yTux=%&z4fER**{ubrP<Jhhr9sd-X?-2!M@!iq;L~yP0+_Da%2@lU=
zR6sXZHQ1I-_!vS$HTu8!954JU?Ub1~)h_d4<a>O|VjLJoU8WG;H6FRWq71rghQBMR
zZ5osn)MIN^UuXCcyTf2mIIg1>%)n~S?6K$*Bg5-rhiTD2*Uc2WkAAWIXYU&<ivF`t
z*wY)bpnvvO=-YfT>41Ps?T)(Xx&I*bUjD@X7`f?2!{aliw5J?^>(=Zxa6hovDNu>q
znwIF0qxd?%`cTpQ?2lR>64dwqUto$I&mueLjiA?@y9<CFnCOgeOwfRCb_8bveChPf
z9CfT2Sk?Cw>J#>K4b+APJOfRKI0l{NEVs`l@vQQaEl7qe`mnF8vE3WoO~hpjVu}QE
zw9yv~d!;7**FFZb;hC1iZg*a)<yztxd;X!2^JI85aA%l*Q5S6Z6yVNL%J>Z)rEv6j
zshM)s26irKIaw18qV8hhf5ks1)mI|yRo}Bul(03;GvmTQovS7ZL!e6*PT~?WcTu<T
zf){$#SOk3hT}e)WK&nAJFrp>Q2tQC=$V0$$kXj0oEidq`MLf^*`#)s12V{}|coh#b
z)>7|kR3Tg-)ZVa6%_b-kPw-2uo_?XK|57B3?Xg4N=&`)rHLUI65*$<^F8^cJ?yM``
z&Pt2;!1XQ?A*nbQb*{ifjnS(KI&R;W9U)FRHZM#_>FgmJBwV;VtJ}yO`GHkMigF-}
zwqwm%mJNoi_!Ul=9D6RSe$qrVXFoTT4fmOoue;{B`#|C`10%(SGU=!m^b?|drTP0Z
z(WE1XAoK&LM>9||`N4R&_D-I2#tAMg4|ZoHH1&(bOHgNRx?-B6bykv&nVwtQYJW$^
z#vufz^>rjV<qejaB@y@vc2}u3$VqPkbFX#xR69h3`<9PK(blWQ3;q}<qgJqx^i(8s
zz2GN(tYON>#TSyj(iL!YGn3_#RhGK8+Mo)a|0C3GpuAQEw|l-Uj4vIapv88R?tqkv
zGZVy3!UlU1a_-WW)?F!6E0Ml7C0cd#?=ao~G9n*jv=PHmfDT?vDdPs3+xiAOrHc_C
zTI=d$pcP^B;8<wLpJbitArP;13ohM$KaSn|`oCtL1yw&BYEq<`FK!woKPo73%V+j7
z4>z|b>2LBsfe$0Jmic`#mwazso5DntT29~stS@yy;MR<GtNhTZrp-iQPbMbT18J=&
zmjgkIBt1y1Xdim0J*j(h3uJJN2MMz}?iMVZ_}b3^U1x6gpNNVx^S@opMW{o;IY<m+
zSU<KpUeOe|&V;uzH_lQxXiHx*$2C&oF6V7Wj1d%@y>A3PVXVej{urQet;zPO*jw4U
zRr8=j?(gNl1fte)KtPTI=yMqesPv5yg<?cC+sQ?d5~WG_-mlCxNUh^OLjC+vc(pJ(
ztE@O`wIJ52D=_j7e@zUxlQ;;eS)H2Z8L5R6qY&1U4=*|^&0?&3c!MJUqZ((b##1k>
z{s13NFBzwcDBVwtIid$j_DFI%kR{=BO-L<k+1x>~Ia4npQ2x{R{e`l7a;(r*>U%n4
z(rFhSF5MsVd;^xhGnx4E@uC3_YAv8xmCP(rTYMd=C?FR`r0=)K9?}*I+0oM^!_8dA
zA!>mWXIjFg(f``{BLOWg{9$wXrEWR-uSoR+L4DFKea*Dg{yp8m+x5-up5<q_95YYl
zvpbLEj#`dcINDk!-BctILic4;g~bF>=pCY~t_enPpi2b`J?xuTv0R69<N4P>;;p(-
zpffG^=M3jtMtQ*~&+`F~_Z~Mv{R-9E^a;I>&yG49qi>nTz6mQ8xW$o&c1G44u()RS
z%08MtBeJc$!7w{-wuUgd@N%glm4T`s;iAf5z+Fd>2MBE-1EjNSaW5(7_>0GGm(tfy
z<W;tG%?nr0f9uks;}w9+MVNF6kXoJqj1^hC0e2Iw^vD1JesLk-6ahd%KmHW}!bbEc
zH}aV5#PbtWnkNLVd2t2(V2G1m$&i2ydx(mVd$1<nlJen$z;3N?;=P-~?#($ddvSbI
zMY;%ZWo(Ns8Qpc@mG?4$yvkZ0-uI`drsb_Hj!nCo|4dAT3^+mxoyhGTnMKN6z=6vV
zqMt_~#Wa+-%b5L_bbX;;dfeoeFot>v0L=~5`35%1NWYL7vUpC)BzBF&u?oTk{_@I<
zUFtuaeSE4hjyg?3jZ8k9(+71SpyihG%Ds!hkk%595u09Jy!pBFip}VxymICuccqbN
z!ZbzZ1KHGlPy%Da&69tp>>?$qIscLf@S0nf?)4uDdtfkq;Y1}6nNOR7-;|4qwFPn}
zINwm^ZWYkD-kfT=pzrgMy8PoS=glil-2>zkN=&-ZarLSOD8WOKxfvL#Zy@T8ERncJ
zm@O3bL;T*Xhxr;(OB)99Dy$SulR!khtZtC`jr>}>-4|JV!9M`R#*UQ0P_nNi;=m#Y
zcgNKHe%ib3M{;wm<y_POl%Bywt*L-6r|0DE&Y7yRp1P}5qQIqsR9?hbPC5|{M_3$>
z??Rb8>?hnm8ycg|i0~Nzx~Vi*rDVi~VGe5NwM4&VVM1Yh%o^BoJhK@lv8+efUwtq+
zl+>oh-Umjq2q7(}n{f!1_V{8IMuA5_HZ!v}LxIT?bJ&6~#>ixplmm2gFDJZVfV;jB
zspP$V)iP7Pmf8xbJtJNLZO$nC_blkKT;5F}+n6DmDePV#ULkX#hris@Lu$0bh6>r4
z%!g;Fx-i2jBbAJkKM2YtSOuSV=u4$_A)=U?%SZr4K)Sy&3c1XVMsbWG<GUy`y|DaG
zNeI$dPS*(j3@>7H0v<O(pYL|?^T<4*^I3+ujfd%WXecOq^S^GsPzKO9RmjDj|AMm{
zX3F1sI+aW_h{NeI_c!UH)D%NFxJ4;8%4HX$A0`$E5kryUcH(GMmy+YBDJj@WXe2Sz
zvo?UbnbEi=5QQLK{xp8<2~j%F*xS5I)kH*IgfA6xifF1j&~q}pv9o%THM&~2Z>jFu
zV<K{9YDToz`EPf3ek>{2n6L|{d|}A&%4!{ryWS^R(#AnLF12kTckNZbO0Ct=Z^alN
zKhnYM-0x(Bp8!&y#}N)Nyg0U59YCf0{$OmZ2-xUI2x0Y1(@q{LC9mU0Nzcnbk&@AU
zMk|#@49b|)-cL_9T{cs(U*R-5z|Be=t|>OABoBB06u9(hY(Hx}Pi67#Fp7dF`MF(P
zuFTRey;%EVPBC7)Hnp@;+`f64;;*&vwUCAKoaBPZPmCVdN*q@4OXm~MnDr#&ABlyn
z6FaVq1z2qbiN!A`gRi*~$xwxygg8F0a}SwPz7rIX?$+o0i2eqqN9kBob~5^(w_dc{
zv6#n^zAdxT+nR~7w4a9xB%IY6O9gTFw<GC7G?~5y5`2YO0n6}=0dL^^2dI@K90cI3
zPA2!4GJNtIiFqk&#)e=Ip_v_#vU+QAGYtcSFAVVLtw>f25D8-utQ#Qx8@Y{(lJ>lZ
zo%Fw~5G~G*0ZXiQXk65g@10`1n<tw_Clqs|{c@V;W8=O__kygn0Tw4@z8W;Xoqa9X
zJ2oSjrUMZqYDty-&c%CU?9^lzTpw_b+r#QAo+_lTJ0~{fAw(9I{J*vpYfkW;#dYxF
z1h73Kb)_)S5v^DnSmo991vy%Er2Zv2BpG7~OfRs9Jbr&n43+o0EF@G3UEyyn8vfmy
zwYwi~r}mdKQe;?U*?>rI+5H7`YINsc+8$A{&AN$-eysy;5nOnko3085>y=t-&XmT_
zv9XM0G45_+8sWb3XV|rs3g72!$dcre$A?p+W|`Uvn4K%u+eAqe1nwc=luo53!)EJR
z8zbido=_RSaO+<69?n=SJ;+FniD>MksBJk$Bh<&SsbUSEmIX^;UhsKy>P5_qlzoXO
z@#<&X(|C7=1kUkUUO5~hnR!l%44&m#tA}OZy!)@smj`=}mpFs?;79b^nD+cYPqn_f
zGyE{oU0uH4KVTa<ZAP$BUS#dQ+-k<8AYl^kH&}n;75Gkf2*E2rFg`S)0rzuYf~*N%
z%<?R!#3i(YF&$@KPa2(3V;<k<GjJdg+mAJVodHUR=KLEmndzxCg>;7nJUO2pGvp*o
zGK@;CJ~#+q#1Y9U8-^H}-7Zt`%rsi8+ZU;5|I~er%Y+&U0*Rc{5L2__d}Wwdda8{h
z*)|#aOFVY>^q5+rmy^vjgZ)UrM$6KFBqEx*mX1|AA3Q@}3#WFc`36%&wMlT=6V&CB
zO@H_a`?TsoIaRY6`1w#td0FO#I=-5)I<Otcf_P154JW`osc!;SL??~JDLh9Q@f3#t
z+8{b&pHOIkO^pOhvjFr{ZA`Ik@Nq*02X#nQXl|6!aEqO|>gihIKqj0o*eO2hN9IMD
zzzbEI`R6QA>DTbS>w(!(s}hIcFCk`bz3%9pqn^&T#tMe=fOAo@3sYUb*$?o%<lHoC
zMIdY;igcAiQ6Z4jiELBko=jAEEc+%epeJ8YeP`M}s$Z+5y_;<k$JH{e6io1S2Jig^
z1@g~XqnIoX|CyhFPesqek>~oVBrs(5HXZL+Jx`&6AF3`o5wS&HB=SAZhV*0F0fEB5
zfd&n6QH=0`8=SiQUFGLpF2YLjdSWs<Q5X$Gc=n7na~$E<)LjsF{3Xd(5rZqF4}t+?
z($pIr3R3HV`R9i}0UjUDxEW<Fz#c9;A4QA;s%5Pk57O+4b@9Ntj>@vhfbNx3v%c0$
z0ZAs+W`#D2ABw1?uCqHJ)?8EvvLFgrY@iOy`ord;SH#Mt&pk^-q-xE$z@<xW#J^^R
zuq;`INr7lvytEdWp(xNoce3Pzv1BKr;ig*LiQH?t*#avpT*1+d!HXtu;tM>UQoAKP
zL6;wJ!ftnPCA@|1azxpok-i>DgfO(|C7Onm0r|SwcC5}M&0L<PJ(p_xLVABJgw04c
zR{#ZzS=W0iM94qCV*jlflx(KRPBDF7e-4<T#*+<#^bv2CKRtw147dc&L63@%ME(U&
zt5@`)<x|pKa%7a60`y=!>8yY(cha^ixsUF*Y4^M7w{s{IIoWc`f^?VQi`fJoj95HM
zGm0YaLxdBz(KYMcWrYWLPaLmCq(kc^1g4iSp45=yqM|H~!XVZ9L%irt-YR8^_WCEn
zL*Ya3anRf~5ZXY%PWTrNj4=I<R>IM0z0l1p%X>qeQ8I#tkG3&$14+^CF7}j|5bQtI
zV$754R`-vlcl(&*BUj~do)eiGDWefo7L~&U?QsjWpwE7!K{Jh|fy6CBDJ!i-X)Co<
zts|2rjYd(ij$M-Z|D0JrLA@toV^G1i5qXQ=c?9t}-N52E_vkOrgQLE)rgluT)GqTo
zDYSBB_&j7i9L2f)J*kyCjQo>a{RyK-(S@(7%{0fDAxXm>yjV&jB94>Xem#v#If95n
z?>3?ZF2kCOOG3hV&ZPz&wc<=MFO<eu<#MVDnr;`&rL+SaVmugqg}ogyv$W84K+#`n
zTAWfbdX|_>*isZDr>Jw)OxqR)^mb&6t{Ic<Av{M4Tno1k*>oli!w9bbpTsD2rkx*O
z@E4`>+Bn(8c{#ndKCO<naTlo}qFSxb`QKsl_`(Qxhe2anVRejd2Po`g!6T>myQ35E
zco)Zq+ebp01c=VD1nPLL!676Em<oo-UE|k?T~bk&PS&J6O?EM!x$M7?nV;y5dg;Pd
z06UCu+pi%}fO!U8kKRylxrfPWch)B%Ffj)@T?*g0{`^t#>F?PDnWmL~VX~-$MG${#
zhvB^D$SpZFK)1boRmVnmc`_kQWkR9W5Fs&!)4{R#I~s1tyVws0vk0Lgyc^LdMo=*&
zg17!d2rOK9rV=4kA6Jq{zTkt$L%q6P*ZE)SQ`?xEq@t6)iEQ`u(VbWRJJGlJ*x$Dr
z>N0!Obwm$Tz4OsN?H#-B?su+D22!gUC$GB#NcB;$su)Bs=4H3^i1oXo^IM@P_z)Ej
z7u=p7$&;fvTMN<QzJzeSj2?sWuWr9E$`<1_(q#@86$JvVqhWgdv-H1rJy*`0Yg>GB
zaxXRs%$2=%r0v~F<&vMc7T?u7i@qn=RE={OgzfI1d$POtdBq@-a;2tF{88Z9rAvBf
zp%vF9Giulc7c({ntPsD#*N4c%oF;J)O4=-JR>|soVs&AdWgO=8AQX3DEwI$8dIVcw
zLKII9Nj)j7y9^q6Ky#RQrcTf!tMv-hrmCbp&9D#fS<&<;7H4j!6=m=5b-wO#z-voW
zB5eVBnE={>lAdQSGaw*io9q*HnO65uVk9M`%B87nUfzw8EjYUy^p5|+2~28~8CyqG
zYr^9r`2AwbzZ4;*TS#LL*^%(qCaK3A`08XKZQ|fcQmMR-$A-3M)eVm<2$27Et5vOn
zuDo|H3_$VM8IZG-ZS+{P<Zl0>B**^E?JCPFdZh1i=Kq$&Q6(upmY4GJC#ze!(w`UP
zq)YS$?)!(Wha6<Qjp8d3!unLjG4t4O0xV8F7R}&naBW6(uT#=O01SN;i<-NVM+Z%u
zb21)C_=IMH%~XU3X6{`(avq*qKK<$f;iLgS?djbS-I?U0wY@+B9vQy_bOSP4ffgT%
zumos?cO3B>+Lm~#``=U16mjH<%?^&_(dit8J~w?}r)sGOtvG1LuAb}#g&1*Z$sine
zMdDY}n4PSN>R4GZZ0)9J6^e|sP}0Q;{yC^Xpu5KG#Z(WJV9;?qxCX`MpinC7GI28y
z^YBWyxtJim1tgFg)8SlS$U|g(*l|e%sO<JNoMw(SKqLSuNp|fL=Tcq)$fBP($U1;y
zzo(-bM<;LR1w<LcE;&h$1CNnhD^BwXz!*Tc&{)2FluY9l&2DomsdsX3LjgUp=&fV~
z6h@T3nH)Kur36#rfdbeF>bg{>?JRt3h_b1UG9g%_vTR9;G9yk(XPt-%UR_o74tiGh
zhIM9ZKtL=-%IqI@m3^`j8PvK7DAas8J=!r=c@s;OOg>WaB$oKuH6yusdACcos(7h`
zo@h47&B~(+J7f1?CiWcogt7OB>lF%vbAuLuR6cTF(N~)a(&T)>%lU_oNmPhtQ-2kB
zt&|9M<59*mi(GCYJBs9_UUA>{bSCF2>wNdA)uOUo`iQneFDYK*Zto<U2ZIU&MxLPO
zh5xo$R~`4bH_AX3FjJmLT|C^vgA;!DXi*&ul^)uK>_o`93={S1xb_v?F_MiZe#pE4
zZwmoLMAh5!W=n<jqp+nvzZ9XNGz3=t`z)PwDBQ)c5$;FfR&s++|Aap1YG6=~!ZpXN
z3j(p3Y6Akb;*{G<69P0!#3xu<W$@MnMFK`XeP^8h6B|0~i_rS`Tg<{0+GUO#dBUV8
z!T<HY=6I%tzVIEBjPB`!Q<b?`MI*)5C^5RnZ%BRF5sPgg&^7tWh@l+8HK;gax?bqz
z8yq!MwQzCQyMDGbqjM%!Kl`t!rp@mcOzErfi_dw2>#(;3^?1zRrvQu8@P4EkqNB*k
zKe3=Xg*x++Wl!U##_-XS3l-{2fySphI|k>eonibTaF?!c5jKRv7m^}$iGO0>c^#Ow
zW>%E&cchjjrY|52Q16w%V3doFxJS-FrlOjF@hevtY;-i}i<fj__rKj?-#_kNh9f_<
zUz6=_D`3uIiPk-p)0{iPd1e_T><RYgcnSYoqN{v)Q2U_|mvRo3!`US+r(vg^O+y4Y
zV+K6p3ep^S78;A*W95~eUu$iyO?%TcA=2w)CgEv3@pH0G?)9xm`dpJzN^?2ZX-zsY
zKz~n{-m#VzFxMPyXP5#=d^l-}Tz7@_uf+H@XKhdi^32rvmk+mMx{lcc_tj|dhab_m
zn!<kM4ksAR?<}z&!azvl-AvDD`Ihl$?Oq-9H0(E&*Ut`8Eh&I%OZ%xQ8mIJTpweu3
zJuJcEqHNSpH`A;s=(%h-s_z-)OG1FPhk1CCtw%@a_4Mxy?|Xak)SUKRA^UQSYa5+m
z^a{_Ba8DI6qX`9x$aM$mmutC6hV}1%SK?hox^HvcKd9QhTNIl6iB#|<i6L!dhm=`H
z#w4h}hNs1-jI&L;c7UARi>nWT0dAD@Y$BF`%zh>+g1in<3Tgf5unZpuR$ovyE>5`%
zn4r%oF@un!dR*Yzd3GnH$44VSWv$@Ln}H@U`}hz*Xax0^eDTLa6O}f`qi$fM5f8|u
z0`ip$;;N*1N&8YqRIv)p1e>*~dINAc2LuY=b|>v~=nzDp6H>J5<;;M=@1sN&9@n_?
zaBp*v5bD>6tqyln-9>mguX1~~@@1Xp0n`8GizUqCNnY+O6h}cyw=(OSn^;21oQtzx
zU49vD*hEv($WD!EWGk>F$kq|bGR6&T1h_BVq^66fqO*9)1jVf|*&Mu6z?`dPJhi_Y
zelan=C)#=gufX#sNHB0FjYMKxMsRb1rs#V+#inmaJ-&9{IhG)*gCQpA7`o({Z6!Om
zeDs$yi#!+CGj6Lcw{QOD@beOUqwTM@oJ3}VD?l@2{_S=Iz6<}*DnY$pD={LDcI{Hk
zJp6tt?(cv$%<;bzSv~Dj#jCBby;q5aG)*3ExX){TcsZPZg=SY!4hh*~%uT0PGm>a9
z(%XX?%lux6)pwWcbIjqnUqF-8q3tNf?iUe#dz}dG=WMLq^5PwnR-1Qhq66)h%5Rg9
znH1o{RM`$#8xs@9n=ZpjfZZk@z5!}2>4$o8W(?_$m=@xj+id|P>wKh?d(j4!s=||X
z{1d4M9gb(Os8m_Y#?|vKEuCVUljV-@WMulYOEms9s%USmdjn)GVqxd7;jc*O1WRjt
zf)bau<ooDkf@+q5X(e+g64HqIvF{Qr<%xX*G+|2WAAE65|5mIP;Sr&fXXa1VN@pfG
zh+R&TR`Q5|PBhqU|1r4>(eP=S;ifZNS$~~)ef@JN1%QlS@((*y7p?Y)$T$|vX#L28
z=fv(4?;G1{Y8m0^?yEjW+Ysfy$FPG_V9nS>uxIxr(p~@@`$Q{r=}_#aAT2g*`@qvR
z`)Bjj?0Sx?sF#JMbVB;_ru01Z<sbz?Qqhw~?aA$R+Gxbjt#L_nBjF$O*46E&OrAen
zwKEsFd1Wr~NC_T`8l+5Hgs<68!bRkr(&*{{u8%pVMi7u3H=;Y$K$1E_V-1hOstqxl
z_*yj73cKit<nT*iQ@L7(tI$K5#z5kHIq&v~P|mzY96io56d!e9IS;e^NT}*8jn=XK
z&VQrP*ZLvuqV9&Nin_d{Wf|1uNS5?j%w6yxzAwbABKS_f+x8xzVnKzEkcko5>gJSZ
zoN1y?_68*}RkzB&-)E<7Kn>!6Bh5Y3;8s54N-P}_^SMYe_$%JDPTRvQeENtWQ!oVq
z_~Esc@kgjeL5K0GWoq~eJHx&B37iqxvm})ZDUn9}?&xz;;~qCG1_*zy@+U$}^i15u
zs!5(l+FnCy16Fc3%+;O_5S#C?5bqA0ai6Hpwh*&tLXb=+I#{S7G}QZ*ZBxd_f%wfi
zPOGtPdpj95NP&_t=i3_l&Vx^GYk>K5C`d2^QdrQ*d*P=SsxrJ>?=$|SPL~ZR&5u3<
z(LPz*jgjRs+`LR?nfXa_f~L+WbZTU*ZD1Nb4skGX#2^ucGbm>=vMt#9)YK^lx5x$?
z$;V|nnh2h9T!)e^=NiwT_A8dRBQxIX!+%W8^iq$WUTpB<r6SJFkno&YHwES}>qIPe
z;=pmdZCxc)-r-?&5b^&Q=d>#sp0-oC)^)(VgT{?+5rl_!Irt~Xc2EBMna8fYN5;bh
z)xs_Q+ZzYEZ^D1wL}9Tmh{tAB`|aFtfZLNtU)85!WoUO!XVEJKm7NJ^q<?k|FO)`b
zUlpv})A(#jxABJq)Je+9f3CyQaMA~zvB|VQq|PrykZnTbiy#{)*4k78YFHJ0jiQ8U
zKeKZ3U|XnnVY7mdnBvh1n}sI7k!*!ar$*MEjd&X`38Av3jFIivmpztU@aYj(qY%A+
zphLUZ@5mbC0Iv(`Qm+fyg%%U3rU&l>$SD|?fhiW&x3ldr9|ykjJ})<)SkPB}L{Zpm
zUb4}R$Y0?uN8P9Z`c=2gpq#A9<2;{$0Sz!0aApCA4$dLBWnl?rC7h&uFI~J^x7a(_
zB`d)j6!ddK-lJ7T%L_<i87N!8j{H$Fy~O$=|7-TB-9BFCi={d&-hsVDTAo<ZwFg7f
z*g<SLwC&e{Z(24pyo!f7x3}bLkd9ya9zkTke2_vaA|2#u?iy9L3{EROOZ(M7HbM)t
z$AhVmPEkHqzbkK&D>h86AWPo?p6q<*6UEj6v#>+7{?R9oje4rtB1MoW-wfTo@vgkg
zlPaXxjzIsd&d=#0cww4;-gFsXU7I-Tudo|2w22@|IeZW=P#z3Xj}|M_MmLP-4Ekn$
z9e5;pUC_os0ypVxD`JiPs}uDVNG2>ImM}hmL{pu@mN-o5XzQj-=|P^R{x-3yfnFK^
z77E(!V%p+OXfwGbww4mX;A>CrSitHKx}RIXSpQ15D!=r(<`oYAU;1gyx1_EPzb$Mr
z0Y5u-l|{(5RUf-zPKk=JXU)YQoG1QzlJ9kF5t+Co6@T`=#i(G!68U|iDtj<R(Xwjp
zOtOrIjaqzpo%BhY{lpZSaPep+yB&lA+IDQ3L|*~SA5#faP5&h}yz@+fn$En>cHYF6
z!k%&KMF1{-jrnzq#<&KXscS;a(F4Z(P#9wB2C6gKDhBHMa#GE2#(>9Eg6X8zG;#vu
zW++C_CglnFNzu6+J(;Ub)>Jh_7F}WuWX|N}Xd(y~P2rhm^k%|K<x*bI#;MjM&z!S2
z3v0=;aiv9Cp_d{71PtgBLMZ#8t_*pm%>-PdoJ+g4CU-aW=mPNv&K-7KT0(*68j?&?
z^cHxENxJG&$y)OHXUMowk`!6CEm`%rk1e1GDI+2Lnyh$<UnYfUu=#&~Q?aFotvZrH
z)+$(jT+?243TjwC9_xO{OK7i$pv>^gKoKTYHTW+Hx0liEwTezP?QP5qU}#c6^F)NB
z4~`~>pO1^g5O5LwyNin3+B2EqF0XFrE46=a{DI8v6{7xmTOA`|flx}CZ3X=8$|2!T
z>FK<na%m{&Q$(Sq<Lg<{`ycz|g?33|hn3NL4=OY`=vFfjt#DULBT`jo+{N`KEdkh*
z(F~)+gDWq!QyG%fhztJ<n%#etVbwQM?nK1SAzr{iF*~Dm6=5<F-jl0`@OCQvt~ubh
zqL)hU{gX3R?TvScckiO~5=5<jX7WT>bKJ8hmk8EX6D%i`dWdjV-n5`lzmJJz?+^bb
zh>UM>W=G4Cv3Y^NLXII_lm`eqB?_^X)21JM6WZOrfW$*ntZARBx(iy9|NRezJ9bH{
z3tx9I6!sryc!I{z1@@3(A78vlHtGJK2H2L{AdP^!Fml?oejBUDnPJHY!FWF558K+S
zR=gZ#fu?7X7|r8~7w({`OBW?+lZZ<dr=*fylYaxfo{-41vu``y4Q@T%?Vh=2g<&Bk
zV#VK`+-_9S6EV$XMLrT5`ed{v7JNbLHyyEcplA;b)SL)>;<EVq_JMG`i(mGtWUK#K
z7e4h*f0CM|?PRvG&Y-uy35XlO!qrjWAFvD5H?VI1t_axRMjxo}$Sm14tm-<inh>aP
zq#=DW_eZb>dIfKpzt)$hN!GUxFZRA<?sH|-ZCkRTI`;LW7b>nz06M$fut~*F3Y>b{
zU$?$|w{${QtZjvp0Np2-e^Q5*3b%=`&MxPzLy5F4gfT()wB$LOZ8q1RRv`cSdjQyb
zyN3J|5L)C10$P(LrgTLn@}rn9<1yr@@Oi>z#1XrD15woeooA71$vxR)sG+P9lhmDG
zxV&)8fVR5D&^<~UPND;&<oAcD@WjayZdQ6W(wPsEm7PjM4#+6)_Lrr!$Jv!85ow5~
zW&f-q<MCcXSMv&r;_j=q_j{iXm@PWpI(IvqqMpAKUuD(TXajv$3YK>;y8tN0eY4m1
zxr}!o<;mJc;QJV@szx|7$CHu|**YNLHuvFFmtgG)^{-VS^x!by=gH#2E~)YVc?!1z
zXBW_iZ_q3Xc;(%I`DYuEA+lXDHh~_)`d*R4X{SuCgyPtKqt+MP_C#!$>Z1#dUD$cP
z(aZ7LNi^Zi)0i)PL{*Ccc$%?`Oo}v8ysF-IwKajPyXM8ivH1`6m3QwX^w-`V6qihd
z%{CgEw){gpD$Iq(E9>&mf|RJF38&R057H``r?so*wkK|q?W<-*jP%TxsA6$7-Csyg
z3wlF4he0zChiFz0%8I&k-Dg?_Qg`+B3@9ZWY+rA)=HzauTs(0|Lo*YuuToO}uHOhQ
zlXDmfL1CEnzJOCGS%QOFE&&P-g2X7{%#~L6IT27?12vDowF0JxXt}%U#4@3@4?y<_
zXXmBb416Q7+<v_`R0XFArbInxNI(C~7f-$ye3PrWlE{HR(<-?$HL(?A;4Lh0`hQi8
zYdsAiKYMBJB<iEXfmvEUfEE#_4_6G#vP!dxzy!T?;EV9;$#$Pf3pEm^mQgzr>8HqC
z5=E!=T;eU76EiDNj{P^MHG5D?YqFB!%KDbIS4RVAAZSHj8J>U9tEisBCIuv!E4ET_
z4ICicjuU`Iz)?S=7Sou|CK@nF3**JW9RP0S6P2P}bfl}p*{S<A4rdIdD^KD~t4vY+
z!@k8e&m;JGPN-?j)TKYPM8tn(zB)gy0BRT6hQp&l#sK70KQPnM`4(GG?QRl|4l%Qo
zwKKxN!KCq)fzt_M4+|``z*_DEU0$fgdI~(s*6K*?gtH<vNGwxv8Z_s${z>nQ2+Hk^
zWAyJJeChn$0G>Qm`Sxhc24E}{_H{1hje+CmIp5gmIiLO;Y3cJ*G+PiqRk?r#$Dmf%
zJMgpUC!cGF+dbXM61gMWwNL+qKno+OMs8DI)g0AKJI+3+6StQ1`=7d)l8N`a%uHNS
zmK(t(NLk4<xs6{M+LR=}@%(|+)plXcrDGNfkDy8pm%a|a{A1JaGw2k0Yrl3W#XklC
z1)$0|Iu`>}o0#8zUnS74R0j;^vp>ynVN-U&CO<us7EzQxB75)RvvRs_R3&6RdpoXW
zQ+8p>0tr=qidLNb<l*D4KvHsMYBu_ui)rJ?4w{{Gp)MXSk6dYd34qwLNn4At(TYHf
z;O9eBP>@AmQD7p|5FGh+alt!1M4i?Lm+y=Ux)&$<{5tB4-{Wc8?HTR){jt~o;y8nM
zF)6PTO74mUZS?bcp8sAK6SVlRH9IP4+IF7Zfwm!t=?w6VT7z4I|E+xNKV+Q^bk)&o
z5ImF<4_&laigY5QFM_w&ur?tHN$nShC7YYC=faMPKXO60y<YkDN-be!{Kkxs=|u8S
z4prS&fYm$<Fer(&#qp=fk?5CLzXWHWWKhd3X1mHHo53?J<YVA;kov7wm1$@dR^H0{
z<Ow)Ji(MxEu)>y}4mhMk=8Ns>VVw&Y!*k2C6&~*ZHu9y>o#JsG$^>V*aqT>Jq!%4e
zK7h4H_M~Un0Hq?JuBFyw?(Ul!T>Z>Bp7bWE#hB;ZsHJUnHh_%%wQ_Vb(!W74!?{2T
zK9(Ier3}INo&LGZ=y?w&d{4cnex<1uo^0a60+GfRmbq>}k9q_cTfAa@IQ0OQ^^D*M
z)}I>YU!9|V?BJsJYzntOJ+nWKJm=A%y(EdwIY9A~KwoNA3_2i)f1$(7Y$K`jOmP;k
zLPpux=bK)xF3&9d{=~hFtK=WeqW@Z1i)gK0fK>`L4liM7&A%@3Xw4e>_N$e|1cbjn
zxC==W%T@(nC#@e6xPjm`sx02!PwP8>JEQrgNEq8CS$(bGpziHp(XespPMc<6BoT(K
zdSns`Lhac$?pDlGuv{DA{L>8%Ij!MI9R?1S=w+?;-b%XI^HPcEA9cg5c{2y*@IN^7
zOlqkeM|pwt0EK2xN$!;%UC~195RfrjZ+>95+ET%ToMkCR7-&Q&keJdLUN%8-U-L<b
z8hV$wZ}UDZ1`sjE|4Fs7@dT{<4Q4wmhagXzO-f7Fux&J*LStycH2&zJgqjs^{8!s7
zM`>0ZkJlC@$Dk}IblCiN2)Lc#u**U+G>T-Qha#YrTIZ3jq+kfQJ-;%$**v$Voebd_
z({K-f=#!77**A<Q6w;R<05GP%_>EPRn%1&a68p`Zlr@GU|J?Xsc2vQ>a*;!E+Zv2J
zdWJ`)EstZ3l+1Yi8Cu&(;w_V)p%#B$tHMEQP{uYs2gj^;rKnhul(sa+37_FA$7!fg
z!a_{wVEtA|$&6k~JO;Kihx^X+TE^p4$_e6a#+MJyX<GqC>xcsrOz@2}2^R)1y0{lm
z>&c9PRryYLy(Z~vbJqjHB$7CMqQ?LTJ*o2iEl`7Te^1bcY*c3y-4skWC=hX;(oapk
zrPDvF68iz9WsKRy=-7$P`<IoIk&YjgjZpI@&Alum=p0Y1xx)}Bh5^dXaoPG>UxCJU
zO0FTUH?eJ;;;yr+ViFC#zoiWSs3v2fmpth+4KA=k%Y|j{25ydC1Dc=W+i61Pjo9a?
z32>9#P79Br?cwZYEQ+o~9_d`>DV7QgI$W_w<3x<`yBm+6d??21J1=_>1D-{YQhPwT
zPn$MjwOl6`-rDn(q@I6AtJ(vOla&%_`qIhZ7t*r0Svpl$ueQ8RXhJj_IE}5Otr*u7
zWHov%0gI8%G@D7IC&2lnEBJ+LF^k}`>mu8>Zh^sJWAf|A3}^IxSLv!`D!yaaKLviV
zm78P?=GZN&<Xqgghckm4Da%y89qKa$8EUg~)S4yTepN|X-Q2yL!95#Gm(;RJ>GW*4
zIqtl;5Y?(UN>*!en3)SzWBLU><}sk^$=NsNmgK;EEG446tW-RUU%1T(#ox`|tWXie
zO#mu9uPZ>Sq0WYwLR-;`b|5H$Idh-s*Wi}Ig&f@AQo^=XX#D@4&P)1;$>#0TK+tmI
zZxjj|n9Q9iyoV3Q(<5%(vd5td-wtW6&jOkBD4~S@oT1-7X_lG9kRZe3jXX`h)wzd^
zGDYTP+1@m2rHBs>D7P6I;?b<R3M)A<Jm2;s9NLE>wK6E)F1qIOrU7mvnv*?c@=~b!
z)hgY-;Pj|}N_K4Xa?zsqf@+6W2=W~7QxHJdjCS<-CBG_DPcp<dq7IrUM7BW`iYR>*
z`9j%yXNvYm_P?9As_1J{<H|+cD5jiRXAtscgngc=pwpm#*ddZ~x-+q8OiDK7XZps#
zkcb&0<V17_9YLm4_@mZpGb=J|@iy&vAc=`(7HJ_KwHoYq<Stm{Bn*X>MLy(%I?m9k
zn1eI+;!<01^zq-Ll1$7gyTkB_L`g}(4saU|w>=z&gM%PG?rU&9kiK$`-q^iNE3*Dv
z_kyYkJGNZHI_@wEt;&}Nx~L5(OwSMpa$*Ubw5uDbKHg{B_;Vr5-OFb%wIAqI7MaLv
z{?^KA)^ZsQMB3=x#V!fJA$nPq@HFXgh)}&!-z2pJkzrMV$ewE5Ht3VEA`^BJqe5uh
zq2dl=rJB)>7ykC(W{_MDn4IjYM{mXfuI)LF0bi7t&QMH)6itT=YjY)5M-F3C^^Owj
zr%gV<-S7a*If7eMDF^WUm34O>qz3CGaEUCU3>w_~a>9H<K&Z+q^udL>3ow;EVNdF;
z28DUg9Vsi*u|A-P4lwvvVYOv@+3SvfwP>u-6wnZUhR|KaET<E}@x#+;3hX^1tXj4j
zU?}s!+u>L_qkgj|<jhj`GuF)cxu&xnuBIhEzU*`zT`6Ta`i)UEc=*2&qcM4ISKx{S
zax>UTrex7FB+MJ*+c+>S8r>2rb0L?6-kp4fVLW9Fbs?`zsEJ0m?N=Wc9Vne^VXHIY
zq#~*$g{(9*WmuN(256&4nC$(eM#hlqdyVNO{|l?u4z`nkmrsx@QjflM?P6`S+sPQ1
z1*?#zI3<eE$z@K`p7V*Z+?=}dNgHdJVunmM3ykPj7E6L0KU~W&N$>2}?S2vbt65k>
z$e7JW@3Y;kZ{p|WtJrMuBsa#w5_p}<9nG941DU$wJ3<rRfOl$a%*iw;AVDw0{E59-
zz?5-{UZo^s22Y4z*Jlb*=TQA>+l>=dSvGXtP#C7Sb1O`E@f1Wv*cQ>aj*cq7fG&Wu
z`|BFA>qp<Eq!`%uGzVNR$Ar8fbDCa<`6!$ZZImK#2>WIxeaa4XH0n;16jSC@ddSh^
zBGB2pJ=uzsqr6Ahl?hpyJ=<EMK!uZg5{d{sLf@q-*jFJLdf;lpu|Z1?m7WGdLMlW$
z3w#lCNbH3M>wp(zGi)y~)A$HwhJ;3+qN`dvP(UqRUKBtT5<}n1;GpB20eh@dc$nze
zG)4E;!%{;+znDBkJc^d`z4g_KUD$jL?O3il!mba%V7Xy&>Wy<lj!B^(y5$xM{<n<)
zGa%=HC)duWC?yS<m8o`LbWxmVC<YL6PcbKwrr*U|avVxiy+HyeeSgQDtC%lF)A_rt
zrin)#OVnmI;~&MY3Np+{ko6o3flhTnY6>cj6?}GTVZtD7kEe@cKD`b{Ppf_DeSZoU
z?0+>Y*(HpTo7{2=Hv2uwXc8l8?q_&4`dwtdO$!_E%NZNw-<0*Ar>30k<)h!8km`6B
zel$EJqB{Uf$ifgWFHGI~=il6cOrU%O>guHAAk&brF?jXso^TM-T&PJ-M0>wV0=47!
z=RADF72OuyDg<E3&M2>Ay@+xZqYVsUty)e&Tk2WTT2j50QY9ng0HMsoTzlLuZ^FWr
zDeL!<jon`4Q4uq9UP!NSZXx-0`cej%{;Z}hR#dM8nl7}z&$M}=K+q=10Fp2wXm_7-
z7)5yg++jXO#n-(vj<1bB_}V|e7&`%_i?Kp)xp`!@fu<Co4JPpmSYW7|WB~9tmClaW
z?aEjD7aizmxfcJ=CODTyF`ri{6n0Pr5R$EzKGJk~QYA{<i#8)2+E#fTmpWpH;`b0&
zpR8>35=<-}U_<b!C*xwn1m36N%p>JQvmToGaA!?zfdZ4e3@{)a46EQU0SAmuzmy<%
z5@78-AmX!q)ns}L3k=EUs}mZ&W_^$){!Vk)3A{`0^5r0o>TIDvHdK&z5Kv*bzLI72
z`85Ni)-EM@W3+N9$dK7O+qbxx)U#_wl<&Omu%V(B*|C4t^_}<H@A*2>jWVj`=ISjD
z&*AVY;pTPN8~?YupL;vO66Qx!*V#%x13#esL!L!otddBu?y11}oN-5o#gaeSJ00hP
z^ZtR3Ip7+d5V`DdC7m$&IM+rqbn<tx`#zqkDyUq2w`<PtZxNe=5is`8b#z40P3(uW
zc&55W57&Kak*eX`NR2^Z7@@G_C@t}Q<MtVt3bW-NK~^u1);4o?SSK-~{aLMZlW@`v
zReke6j)2iJy3?eX$#98>8Nt3+2?A{{SO_+1^>DHbxB3Cb_6xH3r@Gs*`G`CnI{@7s
z;Jrg{=Z){sF;{v0L{xa9*|4|Stu+Ehg@+FhBx1E;o<{tG*fOrd5Q`y2_rPM%qhr+H
zgG<qTXCQwYw#xxYC+Yg(9X|ybUL@#qgkJQqu6{FxTe$z{4`&W|<vc{M`d7AFsy5L1
zohR$+nid_W%Ya>P1&2pX@eO*vn8b{kA6uw@X04Mt1qYlH-;Za_X6O98PY*!BApE-M
z+?>97#LAE?I1sD95k!k~%2cgSKkCM-<R~H*bJw5qus(IP^({<Lds81<F8|vaO_`mA
z4pF4Yl15j*qFC0=RPDBB{dE8pWUz_q)yBBaVRVUP41COCOb^jCbk~hAp(o9)&d3dC
znIUm7hQd@RdRrAU$IRB@w=~Mx#?mP~O+#)*p=FJiOW%aHWfZoR->hHE=+v1^x5VPM
zeMoay2T+W%{LU^N;QiOZ`}R^;@L@YO-~T1zs%Ig?k~!R)CGQvBeJ_eRsvPyg`Uz+K
z`=mO?nIl0<=cu0lxQ>3JMzk=C#&^W{87axRj>HijKnx<qP`#th=e}s87bNQF4R~9s
z3ur7-T0})#aL6U^lac-nodN5m>0!IS40SDu`ab0rl9-SQyB~g<T31dqc3?n9@U8}x
zK;!bCLtA1JqrK+y8K1;*F$(O~JKPRIQwJG^wQJ2maqdoRqpj&Qh@NXFzfYAl)cpyy
zm}N>Q5k|d!DrdW##`3V^RJ2OB-NlOc^imgd%bsmu1D()^zCF-tmXE<qjlRNw5aQU)
zkhGWDzy!1MAltvxR1fKfgMqmyL(VA&vN-Q?v;-~%od@Fp)hsNt<=TS%<bQF^bTE))
zgb~V6d2|tnQZ;&-L&fdKVnSrL0i1h&nlegNR(_Dw5qS^d#Y36_o!1y)-TCx;zsglh
z{iY%BtQMZ?@Yy5#{O@u0<UwN6MAEw@7J+^ZUNCf;k4Tr5bRw0*_z3^(lzR!bkiFT~
zj`CgCxkY8V)!?0Y`?H&g(hJqz3r$uEXo0zl5Fvf#ti&tOGCbPfV4+dTbP5&8D9cJq
z0*SNsM)X81->n0a!Idu3nt<|(Yw^p^*iw7WsZs<mKCCA!E@PjQG!w0uQ2BRKt1u1|
z3>|HH+(EcZa$D`Cs7Kn3=Oe;vPKsP(ZQKcR?F3PT);<{3n6$n>t(9>&^RFvcyAQAI
zho!o?xklZN2l8jPAa_~}C-eubI#WrHWE1AVpv*$%Avay_tl-?QBD_(9kp|}>*I()0
zc^Qnj&FQzAqo*aV|FTlLtT=pP^don*ud{WM0nIS+9~_j`mpVatUO9;{rwI?=4?9jD
z{P!*Hi1^opDb%PgdNs}Re$n)3Vb?U4#u)CwP(L2bBtf{5e=SZf%O(UnGuZ4PLA1Lh
z70T1K>cl0p#pRAfCv|qMbb(b{G7Ls=I6G|rg(YTM$&3&z*@tCn*^IZ2_a1^LultL6
z@B4rDg8tvvM(Tpt^){@+E1=rPb2dcXbpswRAQa!HuZ%~oDFGY^O&-_QTPE*emO&`L
zrt6`D^Ag*Xhuq9kro`ZJS(VTnl8p<P6aBGaG)+R1pmOX~x57wth}lf#63gV|DzB?M
zi?U51&p=|mSq@Phu$G_@PDBvCfWtaxlo^c!T*P1QD@qKsIu5*sccCOIKQM^N<~{;I
z0s%U6dh*Bi!xhn+YiVBIdk!a7xBfq5K4Ppne}O3m7+N<>aL+qWv6BP$C0^v*KW1Ho
zq!^f3vgswq5BL?Pd7VVE!wwKf&QVgqxsZ`Cxi(beLbwd%##>4)uTzgOxHSzM*H-bb
z0|#*FNQ~w~p|4q&q&0P#L)@AI4<IoKgG~%_GMB*EyVl1{n}E$fARy~hGP9)t6tSBH
z{k9za@9eTmoe#m&!BT(-+~UU%(-1loog)PINr!g+<jbz}u9KHz1F&%)2T538c0c+6
zg{4h@fCSEa!^KC;vbJ=y^P!wYGegiF;G{929-A}@S}6E|)(DGH6C=njdSrf6#`EK}
z-*c>EJR{pyyd~mHdOjWJvW2`cKB6VHSs=nAH;qfzG*<JIE;$5V2)kTW*!}ieIpLmv
z5wYISfJ<c};I4OR0}{Z4oG`wf0MSp4=7Pmw!7-H@ob1NwcgS{M0U>w)?G|SEn;^NT
zNJQMrC1W%quWiH84CkdNdko&EBjsL-;3wK8%nm!st{u7V6}*rZf(J-;z)?O4BiS6D
zI8g2k<Wq3&&5nJuA%(tB?{W>_HTWCR!!7)}S=39(pK;@7jYW`?E3E@oY!%g@TIm0Y
zyQKF^>dDJLvxr}H2E?Kd==r9&SD>C?yrt!_14ObmtqPIEg=dx>AJ+&#!7+WlhKw07
z5egr+=Ic*_6Q^$csb0Z4VI(I&B8*L6+gnUn%EQf9irW#2eLYXxE6%2c?qJ63OX4#@
zjg>&rkc+fFpvJL&YByVv_(!<n_l0nX)nwzFr1=q%Ggw|XW{f464?7qq$e7$2r35G*
z&eoP*3duE!%$HaS>14m(MbvKc&XSxX98uHsnX!O(7CX7&Gly?^hw1T0v&=N^jdR%U
z`<WwZcHuxG#`2EGXi8fUtcBhsJ)5o;8@)adXRMQxze6l7V_Zfzp7Kin5v!0Oh|V|p
zSOvo2Im_*cGd?Oaxu3?{sg3lQ?t?~!(YtH`zrEG*QB9!D!(pNUvtTxxMG1l}+C3N^
zB}!_4Kups8O3%ouOcyG_oqaICJr9qX0lVZx=VMFw<P{l)BhqTPYy##|tdoio#~N4o
zudwM_MZA-H=r>0w_mI6Pn_sLmLLW7tl)|Uz$5p~sxXfGy5d7(t3S2~o`EN$dUOS5h
zu6i@p*JUld##<3DusR+n(9gEJrkXOp35az<!S<^DCV^P)-Y@hBtIm=zeCTEJ%c8J_
zyGoz(FRijq{z>m|4aERvDJQRw3zNW2e4<)7>$iL8U$c4tYaO-%uV5$}H+g;ktoN7!
z&{--E)Bh^2tX#Jf)n;EB8xf?`xwpP6kdxkLLi~TQ0oo%&pT}JC40liXO|Pp%mjdUh
zi}K~p5K8@QYf#%5h>~<sbO+j=EvHDQ!^i9Y<Y4q(6eI<ox%?`!A+(l+jqI1jimHN+
z-1tTDzk06(GjvlB<_9H%Q6o^SN6bybjCA#;#UtR0;z(E7c`dNPg9~NFes|BEP@<@(
z`u+$oQ82TC<A>rT0kl5gfDIotSc{tG7lIuHgyzk&uJYa?@?|VTYx_iB6fp57pocfb
z(Losf_9VSR5e)hp*c+QD+V8jujs<i;R+I}j3>A`xcV)7;ARGwrRoL`-EHCZbVx~@H
z&G=v_o>`jGDlrMwg&>Y8=@9qQp<%lC3YST`DZ2`X4{~f5BQr;Oiz|)Mr<ak~eG0Qb
z8O8sBSiXzJb&h9O2-AO|Nqn<`C&$r-Mtba=pfy-Hh>FWgUJqqW$f3xBs%x$jo;a}K
zn?a)+(LLw{EQ>@pUq8Q-Ja+9ocXygZ*LxI#--o|1InX?fDNk906^`1stmNY%dAd>N
zf#&*Z#-pJZv{ym)FJ{+QA+&Q?{DlA|aOY@BAMeM0S(16B<G4@nurKr6J+CYWwR!R6
zTN)Y|Q+p6ADj_d%m%Rm=YbwhswTdd|yB_eZaG1t9Zj)%MSTTs^A>1<9HnScB$B||x
zI1Nt`Udw}zTVdbN2y+xpA=`C*IG<U{S@cd`%TJ*AMJA4z8bxwM4b^i1z_GES{3-uh
z7Wv^G1igM*)j8^yN)z)R$K`l$G*=XlZGz-O@{G1nt*SYh-=vJNFOfS>StgrG?N}8l
zGzo!O(>Kz_WFF;+I%1hv0^+ZY&}#eUn|7^kKPuCJI*<E%DdGOA{nt*SF_dU2TVqNr
zp6`t3h?}7u{ooy6fpiBZ_)%TZ(d>XIViLt`l^Ip#AJASb7#|7ft5USitr`HyUbuz>
z6wEiOI$Clf;%Fhjf~q`aXfCf0ff|#kXk5pvAjV2@%bJp^`!#Z6xc7G-joya-&QcUJ
zlR=4DG+Ol{7T?K8Iey8-FuTgex9rWqqcqZl9FF;{^Z<G}r_f$DrVoXLQ-K1kBS(#n
zK(+%2q&3Sx6O&!4cc4K4+yhE3+V>i&+jULYNjrjAW8PiZowu(Cnv&KD?TS)xgGgLu
zc9N@OEK3bAKLy3Ty3PzuJ9>tcIab5-1uQ$X7{Vr$b_ldF;CW0J+viymUL<OPKC5KB
z-cei3zH$>+fxc+41hb(sI$rJ76;!y4yEVbiBTj)kr8et@(vAAK=d?o&sCK|*C+P<Q
zo65@5GU$@zO`+{AYzAUmsHgzMFvr8L(uKZkE<JWA6c5N(ogARlt1ouQl|<o}K=q}-
zn}s7qf(BcIwmNH0{g=GGRn!@6SFu*3Tvroqw?*hvK%DdvalyY}C0mgfiqC1d6V60w
zUUB=`a$~64w&uN7`;~IExD<m)mtFUP#A<_6CJCyw*=M{q+pFolL?J<WV6Dp;0tU<O
z9_v(I=R;hb5r^-vmdze8<k?ga-z8Y_vwgSk$9qeGuOlU|`!5M6iCWv@)=(aP&Bd)K
zk86~`%dhNPV7bf>1L=&TCEJK#FqCpo>QvODBJm0iQJ0{9e$oEd==_mL{M_9Yp(6u8
z-bWt0--wjS;m&c3bWD~lX}Vicd!_1f_d*gMi7iroP#OS%sFf`UMC#yr^$w=x8hla;
z{C!{1CRXOk$;UK8u--IO%=PB2UUPj^m#ki9Y@)J`;=OQv?lz01l-!|Mxn8337Hx}M
z-nEE0OIHXG_6!6`#zZCuWg2MPzlJ(N4@!~gLeE)>YPD<yuo}%_yDY{*6bz*RObx<Q
zskY4^W-!;t39=!@4a%A<jHW~wOq1JK!6Grac7VXI+x(6n2?t&%>5O)`FO$Z$?ZCq;
zt6K`v<VA?kI)V1;!EGsAh?joSD<`DAb3KEY(X1q((t)*boKd1OmT|$a7HVn&)(#11
zBDp9LqbJ|Q0HzYXa!mls(#pTzSiDUfE`};7`eSIxUEQ)I0m<UaD>^DFytuwPMGes$
zX~5lR$@FGS@J{+**;^^QuE>}b<}KM&A#yGRzOu@r6R$}e0s<9AXZ*r{SQz3~!OTyu
z$^zsQ^0hEX3?XNxLpH>h^+yl~payDz6Q(+Jc}2K_r|`TL@+Z)^eq>9IrJ_C#ZTuQ%
zc57t2W@`D1tgpwfEx=J^+n9wud>-(>tX`(1SJ2m!F2}>K=lgyRIbSqop5@m|YCIhM
z>G)Bg2Ol;ClNde96_lSgCOC@m<Dt|yqp3=aP}l;%UZyKXvaa~8zqGl>X=FEKUPO~E
z$9+>}+4UtAcg>G<&z-PM%-nHGj>@6zmZO$v9EmV`34$$a|LgN!X6hXAackf2*ty!l
zDCw23aQ8p9jdW@!R??4)GKByWNBI%+E_8n6m@>9l+NU%w_hb3Ic7_-)=OW$;wIOat
z-dv*#CM0-Ng*MKU7I>Kx6LujXTLbuY3|-CIx3;#r-+_!;bO0+^&%fm_e=$tYMZtg$
z;S~B<=;Hp;{P{?~@kO{f;+1r~;DZ@&@iG!y0}|E>*@9PvB8>DkFmHVhe_dQTeoE}7
z#`bb(Umj)=8WXYM(dR^8%Yw$>-5NiEg^}dTWjM&cS|7(R@DCzaJ4%@{SKmjtt~)rZ
z1+We&c6fNT6I)wh#}^Tx22Wr9TvmX9L1`l)Q#-3?Z-=?_QS*f*PO9bnLGzoKfW|4&
zhJ_1LK&MHTqtVjA)y5rO5(ErEBs;R53NIB+Q{uT_!lChs3tk&mOxV?>o54UxPcvZ}
zHEkrj=#@&qK^c1&sQfaaJl-PIV8~dVYz}MFp?pL<tl3^L$B-PAUs~xlXfO0+VhYEQ
zH+IJ89E<sd5Lkthly)DGE65L7MP0f*-5Y%+MapBYS-9a{M`xmqRBS@+#bPMmL>F^T
zlv7SaW;rF-x?$#owV0}JxQEP2xxHv4f9@QoWT(SW5N_7<l0=HOpXadG(_S-rDwv22
zh4*cODbWR;SZGt<MoRAANLY#C<_{7YITe;FDr5u8fwZ}LWjM;zROPh%Z3z&=9l<Lv
z`NT{Ni{t6I!AIe+T>uV(CioDS0)(xvbtjp<{~UG20Imt4+(k)P=B1%xo)wyL`r?3n
zD#J$DtoFG(ro#h=qWkM<37fJZyG|OIkqKbad#y8#YYm`QN7LtIJ29WGd{h-ThxG_>
z_IWM&8f{VcGFO;4$N#;qKbGZArqJdMzZ8gNa(jVGC~Bt%`q`IIILznUnR3g0slG9U
z%LQkg8)hYHu8utA71`}5^b2G4I?N~!)G5`wR4(CQSl-K;BIFfzZQVXVpuR}aVJq&{
z*>19?#){M8pnW4dEd%1Xk1<7H^qpsU+4I4Cep3Ln!q*EXKM(fSEmZtz7e3G|9gYr9
ztRZeAJkmi~xHda&Ytz*PMuDW4NGv<J?k~R?ZaoV0I`c*}u!cAA{<vW4L9%Yx_wO|8
z9tl)e3b<nl8LNH&Bv5jA`=U1#hwpy9(xfFGoK_xQ4v7$9_t#@z^>tJn8O1l*<M_E`
zGFr44sk__s52k%E{bo6avL}tIWpnH`i03}`e@Ls;odnrWEPFgEftaaZ^_&^m*yk)N
z<SE1P>0n#`V6Of#0w|IgpR#e@3~jSuQy-Izh~*}B+G~6_n++N)D2+QwEb{RE62|FM
z**+4~dV39>ilJJh@Emxk-!sqmAI%$wAW5K_kJqnBo?e+-xabi~HhP*?{PI?6KDWl4
zu34OI=WrdLtQI85qYW-t5)o*8Z1=JH5&V0g&52MHongFhhi!t;!N*ifI9`tCl#?iY
z%v|6Z1(cH~0fqIJavXubx5h(p&b<kZ-d3i;tAO`maMNueaf0+{;@5j9BSa97KA#e@
z&`9h>Iyvu)(yKu{g(14Wl_so_W78HkK!Mp2J!fpk1<$1#k)$x3g<M!+ez9m@y|2Po
zv9AeI`QsGNwVqU`uXC|(^_(pwJoGXjMa8+AKMekQK$A*qKB}}#SO_f*C_p+IWD+Wx
z=6aq;+L|=HUv_~c@IU-2*JAew&muR#86RAqSR(8bE!cjY)obtaqYc4DGW)ZwiSjTP
zmr9byo}0267?R4;_DQWpeIL?)iEn*Z<L0QJh(`Kue<Rtt9438v;wD+*BQ>X<#oQT6
zRI6UJ?43ifAWPS^k8RtwZTIP8+wNoAwr$(CZQHhuzenHXzQg~{ZjCZBq9#wQ$lN<C
zYpr6R2LXDdC+1DZnQZjz`d2Er+vvczwqD20VT&J}i7f!O?~Ynij1U~l5z0`kD}STd
zGVMV?UrY@9AY<Huv_Jk+oJ#;zpyJDe0>L>wq&GZb-EoL_@+FRV;mV~{#?&8!RK)hB
zKf&qcAaBOvw-NHWq$iDRmJLs}tGqLPkPL{j1_=<PCcihUCO*YyJYw|S^`$Tzj*_Jj
zpfnRWmj)SSDI`#!BlVk_;iV7bk`(2#orT;(h%oU+)mN?Lr$Y;ttO#Ow(h5<60~Dpq
zSc}k*9gs(pFJsFl>I@r@!53tw-WW-}8npQys-SpAgadO5;2{PWQz>UVE@`tR5|Ue^
zd)?B`?1mKL$T}AyK99G>0V_b9%v<moPfx44r=DQ#MnN8sq4hLRfFQ@qT_-=asG%Q#
z@&t%E^zf~;-WtOPf%i_woBWcqn%iCQokDSDjxJqVVKm__WzY+aMNc_xN>fyB8l5hc
z#~2GbT1N+|C69M(<c<-qv3cpJnZ3^don(?PS9u55`T!P9|3*p(mI}O{%>(ZCdiq_<
zKFdVBO0KY#_}s<{&il+^jD%5=O0m#7vv@r^9(LpBWDK4G(DL?F;=7{GSk_KI@6I3^
zsFjpO)dmy%p&IE$OFr`k{hVOpHa!7+xpx`~UFW?T3J`PM@;JqcoXF-BN;}s2U9`o(
zDM4i&XcdD0=g8Ns@j+#kptQuM_^M03!vk3@7HJ0S#bvBFLuLr@B0Ep}3DYPN?z?`J
z<WnYjUMtt&^sYYon!mqVCcR85(&lODuKqD(4905C8%qh7B=y9-brSdk5=AIedUA3w
z#ipYeotQ>t(ITth>rgzHvigEFoe{;H3iKOBG9yX`_D4)ote^zEbD$2K-~AGa%N7#g
z<6#=^3!Sz#ukE}?*ySmxi)yA5M7lx{^J8TuMR@V7Hq%Y9F0!-X0|kKx<_6BLNa6IG
z4wKpnY?GE4FlBUpGTZsG#^oFiUGOwAs4IptK55$FkqM?9Dv``s`<kGE=_w$WqSRGo
zVesX$S*Uwy_oEUJ8ehYN4*P6PALeBbj7cr&LLON^kX4Q<wP+|J1YGHHw5j91SaW=S
zT$A&+?6qh$kgzKN4rtR1Dl%*ATV^J&r9y``uI-8PE8y5fiv!W^J+usBJaO2UcQUKU
z)eU{*X}iI%SXm0!j@aZ{b;Co4G37XL-3xQZU~s4**3zP^c-Ax9j+}_O<_s8<y&ZA~
zLI$$^plY;RA^`DSY^NQinWff*d*ff}08x;a@sn^jfh{x5ZAE#bS>O{YoJCxGRb}zI
zniQhY*X~`Aw6CB1d<#0$8!Q23Y*H3a(#`QZW+TW-{!gMQT|tEC9Li=ZTTdvO^0pxe
zCGOgc<SuM+%h)$L3kq$7o8R<<oFpJ%ep#*wun~-wBJHqpNy=(hCdj`O3H+1xnbOQY
zmPuLkp+12G)<T6Cph8AgJqvEk3wAPJT2yoT67xXp<Sl9xkU#StJbb1g;n}-3>M6Ku
zE<=+qrSs)ByVHLcgN}|)O);NesvrHjUoPyhjeOf<fTZPuPCDKUV~Jwwy}@EpkiBED
z03$SZetoU4zjVscQ>`N?^Y2ybwp@NV9J`8C*vterd_Trfh+)gc@qa57*Z58bYrPXo
z74j*W3W=QP7vd#v9&|;Myw<fvqrgB9f3N>eJnt!F(?*cy)QaS&(fT0%^U_c~Gol$X
zVysD}{AfjEpIC})HGm|*VHb3ji|d*w06lp-vJY|I{Gn}ifM~#$6wUR!rE4-?#K6M?
zyA;H-5@4ZFS}JX~tD|!5_HS-rGU0q{M~3x49{L}DVAECkL=Pw3L2>1(hl^p2EoIL4
zL*>DAA+vAK8w#!SP?v5dbg?+K8%Dblz!DM3Pp^pfiv$yB{g_NS{gD<)3~)c&SrrI$
zY~9QjZ+z^bcK?hNxN-%tItvyH%)^`4NspTiYk+Hxo*jm=Ce59Y8+|xyK#{MLj}RPX
zi>nSC#vwUcff4Y46smC@zqeXG5&0DH5H|rwBS=AF%nfS#fd?NBC>>@*U$hPQ!p|dW
z6{fnZ;)VIFwjwP<he;t7(N_bzWSC-?E2r^4Gt+ZjFCv_>9=GZPL^7Lri1w(@jlqVo
z)nIF5(0AKQAl0gjmm;z%@gkbC8u@gsU^tHsrD?g<B*PNQ9j>vxd`e%|b1~n*BC(b#
z1SaLb6&dJ@1S5x_vSA{k+RgSWB4ZtVCVuM)KAto9g<w4fOM5$Wf@B|O0H*2f-@p7~
zTyTHVuuH*>9B+heus#OVz}<(~#VFvf5_mwn+$~)|yF8u@2$^6A;^-K;YaIyQe5r{v
z5-Fg#-E3PL@UH{9j2u0y%O4XxP9s44?h#0BEJ<ODs&0NC*ny%AG!FVUeJE`E@W1Ts
zDlFS{9o)h(wd#`2se%q372@pYwqdy<^FhZ15awrWq-$+HIc+p<iu;kqm=<1=EIiop
zP(@tMogtTqy(u{C`(0`{esSgLTHOQtr32|uLw1Cf=7RD_H9Nhx-8+J>=DA5Im5Xds
zT$xHP1DdL;-Q7I?wkS+z(%uC>ruvc8X4RL`-Smo!AL1P|SiFnDSO2RsI<<OYypYe4
zB{{<W8!+gT5VYZ%`O$EpB)f^sGaN7MAaly(1BdENOa)5JqZ2b0?!i%z5<lvM2wU4}
zr=9-qyTu;W0Y#Jpk<=ud)4K$v&{6{el7yO+6?N<0vxTV3E!wd8(}@!)fv%(&CGqf(
z5_)59(<V>gpIy0xOqapLQ$w2B3j<hZwtPDG_<=xrpo$3z_W<Q80QDy18K#2#StIcX
z=ph315!yZ;xAF&R*#0S*o)vv7q-$RTDp(z4Ra9SUNRXyZW|NTJy~i&v@x8Arq3M6n
znFGb2G>T{hA4ByL`I49kStvPGomd??bm-$915FfXRitDQWs%=$A(9*RwgtVp(OG{p
z`CGgxih<6<=ojE|u{DP?hy{6pVJoHO_f9Bl`}h9+?}D_yDe}-99Z~eTjQtd;@2~~0
z8GGxM<4A*XJJF)M_B_;qgfHVJkG8k38_{++YhPg+LlvFrClK$hdtU_yK7CNTsss7a
z-DY`MN<V?IERS`;-Ey;(e=78u_b~R4Su8csc6ohTvbX_YUp=`yGlQY?3uM~-5+r1#
zM%OSr4IXb_8{Iyvv{ywB?`+2YC}TDSPh<mtM%QT;N!t%K#q#76Q4j3z4)swwVU?0$
z1^Zw<xhNlfMbko3tE4^s^fljz%zk4F7R}7YomxN3F-J!b_s3dN@Uq%P6s_%ZMH3+#
zqO~p>o8*<H95?0(?E3dro|z?QoU>he=$y5oo^7_(wO`iLl|Iza{Wa}YKwAN<8#p!`
zMoM@di)mfC57K&jA7%4np&d;Wb&}x(RajEqrnFu?NAbVRy+{bzVSk$J4e0d!QSWMJ
zgLEBYbb;4FxYmiK$XF*WJP;avMF!j^CKm@%2JGn{ykyFmV=d^kBYRY@R7%pE6@S|*
z%bqQIkgH3KXqP!ECW0+EM<};FFs=c^dfe;?c!t@;1w=$Q{IV{qV6`kzBrA2>3)k5R
zckp4YBm4n%yMnCIUj_2q>K9ILRu~{{l~XB5RMKjJef2*Wp=f>4zI)i_Fue<diCX(E
zX-1lj?uhLNe2xJADJ1NEJet2fr>damW64FtKL;O*vzkVZbPz#HZ_kkj7dE4v;W1g$
z-dGNLirSh-i9|`jH+~d52h0G^fUq<*P%r>bJQJN*wY)<7CA`?XX<={&(r%{ACN!vl
zo-63|$TTgDj<Z9(Z=05@DX+Zo7Ufqj=A@65c;{-CfIqM$6#KH(6(c4jV7NwM(K6|r
z6AyNxbd&*V;nsDa^OMAvA5gIosEg>e{>?~+s=nmL0dDV!_yr@tP(vTMkm7vWywVm^
z9WMUOGg!zPeRc2?64pwrFeL=@)-q4`mW|NJdQ3DO*gO9iJkr!*rD~or%@Q5N%JcE<
z%sz2A4|Mbug9)5wI~)XY_g0mfE0d11H|VMyB<HMDKj@D^RwPk3V@3*IB?JBRG*u32
zdsd=z<Z`T|7hjKT_EO?#b$l*Ez&Rh5kuY(hHSrzv3aI?<<BV<0psP37QdOc!yPaQD
zs{1M8Z+C!C<EmAFBjO>VD(N_k7B(D~d!f(Y>i?vbifq0981UM5GU@tN71es`0MH+S
zer2-vefPP<RRYDv*91lq-ih@ZYG+L#|4Uj_lvTzf%*ll3^X~=aQM$i3jZNDp5jqU=
z0=E<k*ULO{-rt_~GxmImY_N!#RL|&~&Vk^A(29`Ie~;nz#1FuK*hI4E?Y}er<S6$)
zEHs69Vy%b{s)IR3>3-0>+Rc0ukb*69qE7XIK=hyf^aIif6BjLUI%c9;F5JxNzHW&j
zH^<gQr_080-}CJL{W?ZyzXGt99NdETF%D!Z|7uDO0C4SLe<!}Bfn}<UEPZ2q2B7v(
z>?c=o6M)$HyQ&xKsV#g@;3hc`hOL`n{~H841;7qWgxMif!ut$l$O$oGReOzD1Ys!u
zgcq6HYh78Yq881ISKv>%5iBe|@9p+S5q{hgGRrtq96AOx=>48g3dx|#&KM9|YS!r1
z$4?}rQG1u6T0iUc@UAr*J`AV3>xW1a9M~497;6tW7e7wf>EC!Dt)*Oa(DwzJ1ILM~
zz9g=?!5O~|^5m@v>fBK(kEQs1%d)Vb!Z&g;mFI>sOpm;dYPcDlS@5{Md4I|?2P(G#
zG`Mp;x0BlT*w+R#Wl1}`=rFGAI_RNFA?UWTpZwweDvYCLuTY*8s$}LrSCMwV^>Eua
zyaz0Zf9nK$R9X_06_OPwIWdH?NUb-k+o@N6lLH~AA_LCT%J9<xk+{1O)x?(Lk<_A~
z8#C?7&uQ@%lbQxk!C$+SEfU(&y@dp^{2>p{86SzaMcOWBx64*YwQk)3T8-j%2Js_O
zV$B{nm;bIMe42Yy>8ejB{w1XlFd}{lgSvaN+?jdtprAUb{UvB3unXy4Mg!1V5%8qe
zsU@9%pzk%uc7BY=gznmAJL{)G|32uH)(N@({Op)DrAf~)RV(?ORJNpsbDo+jpTk}M
zz<>SZEbWz(AZiB*UaLp2<DbqgRqalkxE0f~9Z88ww~tPtme~E3EBmEtdQxy(72e4p
z2z&MN;y3-ApyyJ_;3jYT9IIOc;)8p!spx1HhqNJi7F}GPk%a#iaMu&acps}{><m4i
z!)R}+m(!t&uV<=(xLQNk#x6;Itk6UbVH!~@P&u~4j{l)jlei#G&PIUS$`AX-4z6Z)
zYu0UQRoY#e>#P1i>(%?fel~<ba2L4Ae+>qmiH5u@VA?_D&mi*Y)KU7#k^SAAYyIYJ
zfZCEtBfUf_lrY|{NpZv7Re67}A?NQTZ@`SzdrfNo;yMrkPELK*0j#vjwgwGSE;ait
zd{9vXlM@4T`^EZ1Dj5QPg(qk_LuUsmc-sF7d7DcVcj(CJC;D#V*9aBt*8z_Wu4rdv
ztP)-<%v`puh-wNef0CDw`u-}qpq>%ICm?SoIzi49)KCd2gHqhJeRFVKdOrjtSmbXW
zxhG!pnN$aJyjA(W2rdwn){M+gOwJT}u`lF$qtCH?5H)JOHs)`}MFO={Y^hSy$d8H#
zpCbhhH@hWlUXMp0!rB)(edI3_No=(qEl0b29g)*Ab$vrS>-%7uq@5;OBDD0ohRglX
zPzdrg|ETWwd@W*$Qug??$jDc85T)~5@S7KXk6nv?jl2N-6p>CigriG9IJ3i_L{{Z3
z0QOX1%4+mjkK=e|Ytqz1uV^{^SY{sQB-#Z^8(Ox{x>*>3#52kPGtpw+0Da*H84bN*
zcup>m!Uw_0RF)Nr2`HqNA>p|?{d}^I$lN9D?6EHsLKN0<{8s=-n}mr=PAk74u!Y6U
zn-Fu3@Aevf`6s?&ES64;Cjdj8@BD^1A5D8>RB$WNiG9HPLHAumm$=^X1;>N=sa#ga
zj<iv#L{7o3ZRpT|>R4LtjQyEdGz@pU#G0H!Z~byzTtP!|t1;3h(vnEf$VINi4IhNS
zlt7*>QR>nvBIHP_x4z5%b-%7Z%=^Q!`LOQMENO5f_cIUSd?{gqyYxQ5gYaE8qav2$
zyAag`N2H0t&~R$jQ=~aw<b-bunLat_R?1(vr|%6z`3i10r@!=H-7c=jFMP*vuL9ox
z=l}!DU_iOFl^t+YW|2ODxJ=dMH)0C`Df~754D|9%+z(<CL_S6G)0La(T|6-;884qC
z&P)xt`O<u!uW@5k1+GJbBNpblNY4fZgLl2EWP|c<8QrnFhr)q)3H?pWX+0yD%}5>f
z3Xubp@rvkbj6yDfoS9U~>tqFAevA?FKJ3X|RDR=tz`AhQS$48(6HmwPZG^J;_+D*H
z2>oR>Y<zXMYumqR%mo)zpNya)w`iv~_qkIixHws;pfpG44rufWdQ&^)2le3pu9q)k
zwq}0EYq*(f&Z}PFbclD!tSH8CCO*^(bxDA@3HvcR1S{tD7#e=JZN%bTLh$_KSx+{%
zUx6UQvLrA;T;TKN#GYogr*K@>s2tFcyg2giFuE_x$P95Y2_=)UTag2NEkU*yN#Tm#
z@Xj>#vW26%qI^8+*>(nOW}FK6`thg|%Mq!Si1fglusLY&Q{j<~9BRF=*2(uGyrGEI
z?FaVz2b;%DCiyz<(VV3seIzNxkjqPs0X!B4aJ2Afrq>KZ;cxy8D9p?yQ<Q~$0_}~z
z#x3KzxhY~ut-Aoj$EOuc#}f>PGXTx?<QB`~XmYW*GmJjy;s!Hv*io@3B)4yfvt1mB
z&<xT1I20ZPUW%ICh6-)FCeR`c&LSKn{rw4?oW~#TyxGbVq_C}qKp_{lZ9x9=I4y^5
zn_P=E^<-`ftNF&~ZViMBXty1^Iq5*mD|b&<Q9o$5%1)SN%8$5GDcf>6T=W)0LaQU8
zZ5z1i>>SFH*J$A&z-3}5j#n2%XjS?${>U(M+ZgxmnYliuS2Eri0ook_lRkR1xFFxe
zA~km)(6(=CYam8N2A;+rdWQ#%>?tR+Va0Kf>{bYNE)ukY!CNI70f_J$2^$alk<SVc
z%mU58CpxyB4{7)dNJ+z<Yn5MJA&5p}DOA$I9MnfIVrY#?1?HL=n`S}RjJ)TipdTS}
za<xf-C?(C@eJb2~X@aW0&1&pd;w|nuZ#mm!I)}OsVVR+bu!Y0k8MxmUa0DdaqVOcP
zzr~;TRHNx@y_w-Dyu8G~gGY+EN|)06Dqk>#v0fJr3UfAG8bzzVKz-05K34}vz9`iW
zX{YH#ZAjWrInB@4<qiRO372xSqjzrvUbuS@jT=Tb5tU_1;}R2jylOz$)+NOPjDF#R
zwNV@ALK}5=SsT#mhsyyN*I{St)K@N^m;YH!%RoB%lP?MCS*^yGddSER6Q-dwt^kaG
zCQw^izbZmNIpU7^)~Nb?JPy<S)1f5FMNIF1bW-&P@@^(vIRkU+SOfP+H9O$a)8-c`
ztX0pwNCP_hczBpTO?cKt$0a<XaX+E*cLF_dlS=qY+bj64K-&?r9?R$)M2*X4+}W(7
zeV;qJ2TwSB2UZxN?r6Juibd^ZUwiMT)aeg`Gkj1Yg$Cc*u?~z}(4(E~XY}KcWwX9H
zJFQ07d_gVxW3V{Z&QF{8cYV2bmkXaZpn!;sK?pqu|Kt%<@5i5_2jU7)6QrIyKC^mz
zg>NS<U+s$t6SQqY2rXxd6hJhn9kCL!d?E`y=U3Q(G^3HfhKP=*EL}(C=b8wPD9N^8
zSi7?*L<CV^wv-q{N{PK*E;>4wV^YJNSyad)lMwligJ?s5&WmIs&L|wSY56UtJ8z)&
z*2^6jF9s6elbx7h+N<^Efy%qUxYvnZWsuh!za$m{LczWRUc~z?=wS4W$8)FJds8i3
zvv&z`#V3xDZGOv_FQ19~h`aN@$c@GGs+ETCGBuEO!$;52l22*C-ByN@q_w-4Z4IGd
zc%~yGWC8M)$n1`4jl|O(x-MOgPWkBcWegDsqQ+W5CYLVzbEACOqNdh<^ZvTQ4mdh;
zi?eXMCiV~cJv8wWKR4{6p2KbY{jFj~IK6eM`+F8bJ88&}zi!L8P5`lNH|Vl4;fhu3
zCfHPF+fTl~82B1IGWeGYkmi~i@D~bqz?#X>J#XwDL>pGiPIh<814}HvroFF;^c72}
zVu^T@Tq3s%rYvb!d#O0*O5>7XEdw-e!KrUJ@HcEAjtS5t01pMqBCr69#m~NV&55DA
zN?CJgp3QF-CNWSu$4)0xyqxbb4VJs}<Bg2$KcN>}XEnd+j-JWX*<91HBBZ0&AP$h0
zt;nVp8A~ff9_9qMQ=g)?!RlL%B6hataP$&p9~r&HzI1ylYV4FiqFo^g{CScp5hqUK
zD_-Z$eb)4ex%yVfJ6_A2m>cr?JKOwGZDcjEmctX9or~kT3=GrQ*@jh-pmTcerBZH<
zi&c@dA&3&}DubiE(ln$HMIL-_%xcmWhJEz3-R^L6Q50YwOhPETG_Wk;*4ucMX2aFB
zh%Y`Y@Gv9298WkEA`Yd5_#(D%`NUF{Arx}9xEHqLip2`<T&yI`2`nC_=gHp4oiasB
zBB8++f#9Lxie?@TAfaW5+YJ!a@bs{oQ)%f2lE=ZHXdgS}9H&0cC}w}Pr7V_Mx(iEu
zpqALa$S6)XbUX<1==8Ud?KLbE7`S$86{Eg81i{_ogakMxA}AaNwjwKLfmuu9nvSL#
zS%1}_W0Ci@;%0TW+(jCX1MVG{>(%!|I*a)<=KL*D=z&w;K{Q?rQTntJ^u&A2%+=C>
zFmL;CYd0O4;c)ft1?}&`tS<W*cU@F;E^`hozRIs=YQZSJzYvO-)ifs=mkcPpo)wav
z!P^fy&W>9{<R2daT;b8O@`3<{@I@~(1?zIH=Ce_(q$q#Xe7Cy{Kf_e#sn~jYlk#Hq
zx{7dQDyUm*dW?lex2Xx5=fILb=sVW>0B0RU-nrfc&6{?%Bh)_L2d(keXaBZ!O?^c~
zCD|?}P^Zt=fxfl)FkB}nqbYDz6~9Wlrm;jB7CifRy#uq?Meehe$+U!!dAV=DmhFCS
zlhacIq8ip*K>Sx_l#}16+M!)ll^(Mh&-zK0NkRwk1EPbOL9<NP#Ql+~S+*y16`j&)
zc+Na5OIA*HM#}17uf~$BebQ;9VZ<OuXo~oa3>Du7OqbHvJv5urq7td0PFk?XrtzpT
zxh}U!iAcQJjqZ{#Q|Y?7gQ-R6o&yd%JL7vmMVz5tpBX$hE6t~{wm#EdGc_hG4scdV
zA<4y@t?nS(6-uY0O%M_);>O@SpBwhXC7`n?Uz4%WvB`E=JBpJp$~Rfx8VEm~2?(pm
z6D~fXq1gi5<Px4#$#-HANbY`AXh-*@@WR!gDNY3-3UUMmwk!bku9KPzW0&7*EY#~T
z$}4ke)9k|RNnVRZG1wcWxE`0>W_!n8-WJqEsh2MZ^@>6;y59Yzz#al<Pe#9v>^V}7
z<cWN(Hx3$=Bf&@et2p@(&M0Gfm~!f^y>X&+gR6`#kD_9Vykbr9b@&CL5@t@EDpc?y
z_$WzG=>xri`^$Sy^lU>bnbJZb<<h}Zx&>_{`w9AL?c!TxP%U~ky+oSTHn$Fs(8`t9
zHn<L(xe%*;a!7aQ71MS)(@cgEM0g@LF@|)Ak7rQ&dxaZLCWr!Zk_yWh*-GKxdF511
z%;xD+ARB6;PTAwqcS<&-fc~!k5--cS`m}k~m(1{OXz=Y~v-FlO!zqq_XDad3Mc@nL
zGP!~glG2jA1<<VD@i99`urW5MigaEu-w2$*Ael3DUn|$*%5X8uk-UlOKFA%uPZ{-&
zEwHYPEUncM@Qt^2b=C;E&B@@$lGh^?(<kDGALIsi;UsD%pnI3oToU^{)?#(1i03fm
znsz{#ghGGd7>eJ2sF(lVQT^RNLmwwSVXN<OJjJAbHr1sNsplWa;)ncY7@sCUbAE2e
z{)66wDh9LSadq_grPNo!ag>k09Kz*X5;WdtUX(?D;mgU1a7PnmDbOVJ%wrPI&#E@Y
zaHv?s<CbD1do-)JZ>RqvRrh3oJ1UQa-1#)Zwo0AEkL54bbzWB=`aUvli@AF#2D2Ti
z*hO#jo>Vih_TZD2AgW43_{jtlh~)ivTbvI1w>#tA^`wcnR~KHn^NangLI#7I6)3IO
z?f(Gb?)1qu+wx`&Vgj%baqzbh{?nmVxxu6A8fcO}`=-$NRLJxy$+5Xj)$ccxYPsY`
zZLQ_V*a;I}RC=b5TX{=8@)%s6K>#d;Fc>7h0)N>hYQxE0WHMurSU^2b2HA4hV)XR6
zI}j}1hR{%3j{`QuC6NrT;_?<IIy64pL7g5yh|yT={nHxhH~o5kae!S2;5LUN2$oT2
zowOGK!}3-hfc9jKmVB`m3-ADcF7SbR6R{f|=8L~D15o^yLnHsr7j9~CD$8<qinp-y
zR1gN~jj=sU9I*O_KdTWYm!2n=uL{kQ+6AN=|Bz9Dl4E@1Jo*VrQl#^CF@)5+-9o<i
zigWig|CXR65Rp>23bTF*B8i^103r`Ii`d_)17^$u{Un=@!C#=+sF=U$B136S0ce+t
zf`U76er(K%+IcLOSAo>MrYE$XxmU%?(CSwZ1*8))%EV4X9EUkgUaOm*cH3h3n#L$I
z6apBEe9@%BawgW8<vSM*yiSj`PF;Z<rDGN}<6gji^B2=t<|mc#2==mchMfgtAY}n?
zE1}B>XkU(5qhH*nCq<Q&bdGr!t~}GXZa4}yVu5fCsRl_@7A;zTiiIwF>)SFEQad<H
zTC<z!^Q=^@*SF32lws`Ng|@?WG3o`K`R8KcZK7PqYhj-}>b>8Q_Yq2;IT*b%g4Xnp
zt)X1QWW$B+yG-5bln)F>0yzZnJ)rw0@(1-Gcv4mauTLkDeDj3FdxF6P&|oJf>wH>$
z`V01as}UpeLv<<o+!wXkX2o?y{o;YA<APZ+R&9}#+E!_h3VRnyIkiSg+(fVwl%Dzl
z-P|>~3=^w2<YCbOEF$Nx9)zPTEIG(VYkZ}xIWOO(jrVdiS-4Ci%J-P-vrOJ3)kdv$
z>GH12H15pns!Hh@UKBT-Tq5^)tQ0~q1W|0nYT4LMQITkDwmG;;ihcH9p^;_5(8VVj
z0JRll`--Qpq^yLP>sEo+D5;i>)Uk{6ATY;d35o}fV`m(o)x}_FLwO66^H}$@uy+%z
zZ|iMB>?Ndt_;wOeF74(&K}lxJxMU}@wg98A^Ab`9uauD&zTUx(zgI9jaLGD>gCCU?
z$pd&_NtfPyV!!y{H}-G<Dq~k()S-^hqWbAj40PVcqc7Suc7u)h{l1~y$HEwnWUgSQ
ztHe|^t@`!I5g%EH6immqdP=%UL2_aQHB^pw*0Z2%CPx##;tHNja#jJ0M3ENpm2qi&
z@aAYuP~@;|)}<#10&aFCgoxJie77I~L*o9-4y(uZ_X*)dK66gjp=4~R$}%KmW4{73
z7+JLi%%zndQJf)wpDDaD4Pj35O8OHjYi4MgrMtJ;3_fI}JI|=z193)xn;1Q1N){OF
zaoa%}?kOR7r17`9^zaydVei<8q?QWC3XU1K%>~_aZ6lP+^EXWhfjh;V9#Ud#a!W|o
zxid(A9S4-^S2<F_kiWhWf-g+k%=Ct$`9bjPtRF2a3E#OX3}nwcQ<5ms-MiUPTUcKh
z*MRyi*-ONX#^Ap48T4r7$PZdmKANDJ&V+scWY9W0V8V?}{UIs?3&eTw0tC7=;$8s^
z?yB&#Rb;=T*9eM%QMvgUYjHrLT9#c1thU9NB21C;;^Bh{3gK2hc4?Y&QPizk>sO8u
zK*@Ycw%G|&D#pt9ze4rw_Jf%sq`yc0aTgCM4;dH`ZE|)6AuSj31gs21m`P@e%^Jc4
zHoda-s&JPzTuT#2ZqDz36j<-cO#ri-bpe^QC+C48(*A4&lt}Rs?ee=liTLI_N5A%1
z4w?4-Th5CmZIUG2&&Mf^l>&6os5IpYGx-^*8sdOxux20MQ!tQe)V{}k%R=>E7dU%P
z7Dr6XH^oMyF_u~7j;1p<Wfj_z#L*b@Gy@TeMq9i8!JuAvdSGVdYWVO{wc(e;)S4&E
zf`3DSfTs8aoXIrWwt3M~ju$iE20?FHesUv?fj-q1z2?*8sDj@vjfuhOx~i=d!X=*A
zt6<?`c`B%U_PB{LyXc6J(9j_qxCC!*U5HXGPciIe!?@2n&`_e`qm-e2qCTfn?Vt_d
zJwGgPm-clq>R)SI*zPH=!yJf>dY_vHD>so0hD;wbx(^HZ)tE%C!izujt+U=anRMFP
z%kLX3aw|9*wd7=d=igbsqcHc%1i?&#+`aEOde;-3gWyC)5gyCf578aUPV6fsRIR#6
z1r3N0{ARntn~MMS>K%=4$&L(NF7W`&doGzXiU;)ewEkkXwu6~HdN_{#3uQl6yilM&
zDX0W#QRK9vY0J_HL@p3PoiS^w9x<Rjrr9|~Fpne-O=(|&t&<uUH#8i-)h$1Q3|Mdb
zkHE5u$+?|{jPyMF)Btqa3*7Wgw?Pr>?(4!idr{$c!2ru>hqWY7WUY$SnrY3apx4Y8
z@$yf5Y~y92{D4DAVtF;4avkhC4w&LY74roB11_;shWBy>awCwq&Ty6UT`r+Z?KO?E
zpUqgH5#W9z_)_~=lj@;<B5{kft{>Jns&_Y%!1Laq;h%Q69S-BrZdENr=<*UKKHnbj
zkUP~$x5bf=^yjl7ZvX94wAN6OgKXV>Pi$4*>ddaI%VaP?LM$F~REDP1x?-jg`UTt|
zza_avr^Vli?1N4eoeFfklVq5jUOcZv%LT`n_!;+LGrH!=_-$Rvb1Oy&xmshyYK`#G
z{+PY$jwFeFFYZ?4yc?fl2EKRSRXGS`D>;DlwI@Nx6LU#MzP?P<H3GoUWT6S5W!j&o
zs=q{#PE;ctQXW9Fco~Tyyf$u`Q#fPz$#U4OgKa+yj~S`|92yR$jS^}#Sqtw06@b(U
zEMe1$+U><@!T-%DUBVJEdmw-_4^|u~N4%pep-$r)P7GeTkFm9?<;CZFx5>~b!sx2T
zt$7e)Ar*bT6jvXs!k4|=3<8RONhlw7`6>?k;N4a~jwAr(uYVwnyUR|`8}5~3VcaXN
zmD3;(Yw;u@C@w%LRx`GZ$sA)%J&Q4(!S7D8fk4c_d2Pvt8lY2@%-AZaXXEW0yt!}A
zxutI)%li(_HL39XII(`>P#cVpL@_K5G=&6Y&*#bx?<*}=yDet<qq}JUp99C{e?R+n
z&eMb-t$v-p?iy?HglA4&Ivw+PHPH{sqUG~4WL5s<3JMe*Fgw1tNB#(PWG6B7n+ByT
zL2deBxkHyw!9-{yw;K?kmI|x9g&f5jeeeuxbS*D?<6CK6A2|RYkWyRKJv+v~UW*Ec
zf+K%k8Fv7FR!tAglJ5Kg`Dw}O!uVuye%b>h=K(ShA2Brw6T%!Tw;943NLKsA(Jki>
z*5*kLYXzs=)N`^Hk|Y<OSG?b@%eDleN<Zc)_*2+5)AG|@wyi+i;GZYe90^SPwfkK8
zDdJqpQaYPrlM5NXd4g#H3|I6*q2@N8O%RaZjn94nExxp)TGPj59XPj1iQe1WNr8)g
zN0(|x50BRO#YwrTu_kV7D|mRUbK1T?&K}#+r>o4+4mCzSw6GjV6SwQ0Jiq=}lcO+f
z>dGQrUD}^DQ(W!D7WiJoigf&KQ0dq;TVxqL5Hp8_feKPNvg_=3l1`pVIci{%1Eo6w
zU#s4*Vs=q|o0yPy82F<T%k+FVwd1siqq!96KWH2j2fZ1athWuca<{E6q?cb;Wb5UJ
zoj?xN4FsRb*)kZ(EKLQHFM&fTldC6Oo;#<16Jg(0k{}28^rq_?;ru)nCEe3R%si*b
zA*u2N4-CZCLJtSf6c2^)U{{U67{VYC_`2>oiK_K4hwOeN>*u2JSu#RlOFRQ6$KU}V
z=gW9>CRl-)C2epswkUO<RcD_Cf(7hWQ8c1IKA%{wivagdx!ttcuN{p~2Om#mOCwl6
z6|YpL+;-x@PM|A2t~1u`jH>5PD8K$;uOsYFUYna+zz>CipK4KW`OQ7$Tvr(14D{*0
zIv{?yLpq!I3S$tK&hdBmape)E<N`p2!16(*069)?r0W3fVMUym^^Oo|7W8fD(hqgw
zhiji6o?}-vL8m5jLOj?%a0W(y7d*BWA8XRqk*?C5y`Br#TwPxz$RY`{ltnMupPYL%
zuSQy$bE8B$YAD1CCokSK#@DFY2hjg9t2-H#oICG(1xdZ|dwI1B`?@M+W%FRWumD`O
zMyuLwHffMqva8Pt#+EuRrK#zjeEF67Q|#<brch*i$debeX{xMny%fYV#{#Eik8<vp
zM1vHPFa&`n;mf?i_Q3wfSnEaxo7Xvp6hkEfya^eBXj^utSVAUnqU&mdryOcIvc02%
zthzElo}mMU$51LMuX`MQL5v6Jjlua9RCMmD1LiSW+kC&A9l>C`uJ}xVg5p^R<ijnT
zwafe)jmRZu6%oQrdB(-^`--EDQQGY__m_=jN_jRJQz<n{4foi>+X<C8>;oLuuMnQ8
zb8l(cY3pL*x7GyPacRqn06(*Ev`b%?9PKj0_3d|2#y4~h_FqeO=VfE~hCY4mqEwU6
zafH7sM6v`VReRd|kMWw6U0)}-+8$fKNiN%%Vkyksmmu4h7Af1Q<GLI`LR&fX<XNXq
z_be63KkABt5s01bcahNA+`8*H+%%@2A)k!P!48_Ay0x>A;2btH2x-R$HDXC>;w^=y
zSN3LYZ(6a)K$o^qq!qzmbw%Ii)7b_|C({v2ZCw!LslfKl*0Cu^m%$!S-SGr;A*kv_
z#a5nvW9v{AUmz+Z<c8CqIA)HfJ{~Y?hFqGnSj6Yo;4N<imkzP56ArC}e0c4mVO*fu
zJ^iZg-)8wk1(!=xwYU2IF&)G-u(4u;2SrvokEWvqwF*55TYbeG$jSE6RGh`4ECX=5
zkQxgSXmUbGfuNv<aHtR#YH5X1FjRJb5wZcZY%*qwVKsbU4!nB0Yd*IHB;L%U2)gKO
z|2Kbe_t%&(ZMt~$O&quf{EqUTK&Yw}9K5j;9!G}ypC)Mc7>)h%)vRzIIX-mX-iEkE
zX^)+)9IyMW=Xg?W(1AM2CA|LmwkXOP&&(K9ZIVPlVLzD3DP83w3gs@c_}ewF%`PbI
zSo!wdQ{>Vg0^f@%APb!F=?}%j!M<mcXXsqEzN1{IY6-Ftl*uPlYL00Ia;0*vbe<B@
z_BWp0xu-AdVdKN@pTVmB=>V1^;k0AzO%AtKzf+|$rQcieaXjd>D9Q#$zp=~P+)EK_
zl-?Yt#*ahsB92~nYfNi|K{8rvo@#I<A?^QA(ryJSgR^Rk(i=>23sS!qcS<(wRA#9U
zg1<cWrDrkzyi3wbB-CQK5wBkqYMJ*J?UrfZ{DB`9NU9UUJstnmOedu^dTc>ZR<}&M
z<8o`E2-@)7X)`o)Adi+Tjd(bVvFfe02RT3T5$OmThX~_%kN%Yrp3wnR=(=YpW)B;r
zg32&lLj5aczJDBOGeRnnBC}$Vd66{j(~mx-sm>zJB+|{zf1^z2P^s8T6W8zN)LOad
z;^W+<Il$;V>K6J;Tyz0RcZaPU00?X?o3@xH-DAO#PKffBavDvlzz8vfz?WAKYdW#Y
z?hTNFsyNs~*RBm3>0B>8tU|Ja-apc~$N~o|ja3ID5*K)*g%G)K{<-v887w-?bT-V1
zB3<i!`VPunYxNmsk0a`Fd8xAd7XvU@%5+L0a!aP-K1g{LmF|&q4b%uIZR!(ahLkFQ
zJQp4-{ADZ>Q58GSsTr-}me*>3t^C?^4B$5AtkEa`xKhF(E%z!e{t})#Y_ZoxD+2}e
zr3Q<B#X>pzV<^Jf1@Cpp)J3DqaTu;hoGl~*5|#=Vd@<yFUVUQvL6e|<D;*<8Btym|
z)}epoyKR35B0z^vXLRC3+{#}&+#=k%Jy(o4-eU7fl4Nsc$W%XGbsQ=*jC0O&ZKj5_
zMI)`4rffIi{SielU2G%+tv(M9Gwe7HLKjT9fu&ovtFaJh_zW^7a%;w?$~s7jv@u+f
z348b%P00dYPE28tQ(0iZ`#*bVM$&4Unu%A2%<w%NW1SJXvJ)oQb1ll*P;V#T>P1Rw
z<L^XlFY&hfeIgMVpT;7^>~q|4;`i2zAdW`I9(#QfO&bpz6oGn5Q_I}BH@|F0bG>#n
z(lLVe<ziwW`=jbY0LRz90w4(4>3jSaZwEo*Fzlz&ZrPi%z21I{?)B49S2B0c9B!@R
zJ)tO-DkyWKp&f5H>@1xqzXu2M)xvY5nqom)$6Kx*7abb+03z~jXALzszCTlx7G(R~
zhn>6aJj@2)i$@4e@)rs8j<M)F`|WiFFe54EF#!+96}x$Kq>d=Y7s`_6eZDX(iasV<
zKm>e_Z4I`z{+g|fktn%cHr;+h^&=j}v<T6Xi1Rb>bm1y#V0_D#5=gUF*29ZXOSi?n
zrg}F>MVOO=hoLBZjyMkvtspC&cJ#|7g|{dLcO51(gIvSmMY?ULROHYjP{<U%MS$L#
zdqDEpo%MFGXb6b%g5pYYp6u_dbrOHJe}*MS2c8cDN7oAjHz6m)|C;WgNF=KquUZ$n
z3WB{nQXIkR^^MG@{ArxDEmxY*JZOOM4;*?G26_B$PolF!6i}|o3(=B(;%Q%XXvH~D
zWOKooXY>JX`5XEakS#>@zA-IQUrMm2vbdj0mLtyKGAhC=T4R8h430>{B^Xstc7_a#
zEQ8N60jmiVrh>uTLhq->kRng+FJ`!9dVshKi5rvIlwz+S-V6S0kbni?xwz)Lvn}mY
zY9`4nP61{Xng+Y)P!cv_8!HBkP7Y2Dptxt>_o$HPK~w>hMQGsg$d;i>AVlg8?Ka_{
zZ<AUa)yBZsVpHIR!yj?D<;XnR3Bvdu88Pjdxd2!`Q4wj^tV|XR*cBwNQf2><*(KoX
z1PO;ZD<Q|i<;C{^JE)(Us=9JkJnA8mVmIK6Dx^>bHUkE$GPNvkm}xomQPrv&<C)BW
zq$HdGXdAsqmm$k5)@yI@Xl?=8Kn~>SUOs(o-8cPqTY!yHO8q+a3Z?H?#?(=_Vxhf$
z(T!&Q;E2c8<Qtha>#X|MRba&-yhtan?+xj8-3CT&wdCk6%<gd_3oUUVb|&PJ8)3+k
z49~NSw^eX}W(={IQAx`gqNRk+D+9(<i&tZ4_@<Wf0W1!o%V4Mzpl}yaCTScZ390hz
zifY&fS3cHSHD*sOz|zr~XIEt8Cf<*157Cj=NSw<2BJS1f$C=A`+&5H?CbQU!s6z^?
zg`mGm+AqB=UDa0g8E6Qqe!73;GX&$3XyYns=O*oJ;X6w}2=D9jiPYSVu6e_AFlXro
zmJH2KnJqKk@R29AihOYzf3~52SJ*4>a~3cKsK@61SQ_A7rTGdKecuEV<#XtfH2=?&
zGxn#+{WPsM1>nGM)G5Tsqg1}yz&%m;c&n2Eyz^9i|0Hk-G75qb+6D#wkDt|3-1V+8
zj-srk>Du+FD356B>CQSe3!$7julWAf{rMs6OK3T4u>t}m81!^jwoWpctsELPD?~&}
z=NY`fqh&m5@;5@lidJ){H#qWNGMlw{ElHHkp$r0-7vk&}DnU=kJ>L$y!Ob33$SB)a
z+!&YTjWu2ULjHRQ#ATKot1m%`80~wa*q&Y3L*~t$KgR`6Macu8RSQ)e%T2#QrWK0r
z!Ku@+;-xKXjrfid6}<g0ZtLMd$lZH~FLNo&jGQfT!4*==Usbtvt8-quh@-BgrQU*w
zSMylyRBJEBw=45zpzml+Jj^@InC9#S8rRsbyz%YR;viJG9Spt1nQ)aKlgOOyE&Z0J
zSi=!&RAJpq2>OEI?2`oFl@kXBO{2%ptkq0G!uj#nG9tV@^N`1&BPlFf_?3I*YK*8q
zN5YR+948}5(hLj5N7&MSuiyq7Lf$`|u;sroP5B0VcJb3iji%;skBw9-S!mRMCEstc
zn@5bBQXSX{uBO^fk~s17q{EP5dM{5QKr9j27vVFX&vKIe;#T}BuhV7C_x8x>{I(q_
zT8?Mz;>gA~c9vU7sBl)lt$y5>`(FH{j|6s7vW?^CzKTtWKiV*55nf!guI1JO(8M0X
zU`GAsH=B9(^cY8lgM0ogV@vIEY)iZzhenFB;D4%Cf7-rhMdvv=IZ_|nz^PHlZhoe!
zfex>e<+ozM6Fn(zZh*=|3PG+64xqrLH8w1PII<E6%D6``@~zF|6@s9Drc&s6=YTYi
z<5ti7d;U#@Dp|f|WYrWrjF}O&UwD%lFT%Vr#w{8mprK^k%B2mu4d%mAcn5>0A~@)L
zMR|!P^23yJn5m!}IUac^4xoq3{rBYi<36#duti!KRnD+}J%!6S%Cxmm?aN#|8T~Oi
z^~X6`bcFmq|JXo|-<L2aUa27)T@Q6(Bzlc;+>3zykd;pxWpIuJ^*I8b_mLF3`p)i?
zS^)RJ<sAK|^cNSW>8fZt*J%b<6?#_1v$03->>j-6x?rY|g=_pB8sC-VG!gh?pQfZd
zrubtME@Ia^j54r*)Dgyc*Q2)Nv@eaefcq7k9DWb%C=|6<FA%CwP8CE77>PKd@*y^R
zW<j!YMy|EO(6Q3EQx0_ItrcPy7k(KXh<AE-*)75k<N7R+`jRL=qc2j%WWFJbaA(rv
zDgImg!s~-|oe(?+1K(>9-G;Y&PruHfvspX2J_ppEqa=Bkv6S@A{q{Bi6WY-(6IH=7
z%v1J6O7QFY<Wfw;YL$4|)i2_AuyL$f%pM2-gnnK{wb%kl-K9Vte)LvGl!wZK9O?7L
z57aQxLe%1Yam^V&Uj%$wRl{GT^JP${wCw!%-`f%6DB_sX#$MXI^n4#24V3g-Ap;W+
z@BmRtae&eD>x{u>@1Srxx;*Fw(C-MYr6&cS_50q+nz5knvi3`R04^-*3=9(M^OJo(
z7Tv}0Y|9mtdm4gSFq?`8i&Hg4So+O#azW$km9iAxU%8=0Ub!Q0&?lElh?WR82ts6*
zr&_o*xXmmioL04g*E*Hrh)5cKE<|2+>2U3O>YT(Ow#Afu5ZySy68XK(;3V{P76snc
z-jt{u=9>DErK*(&arDpm3AfRomIHut63N>oHKrS;P@B<vQd-yH&XLyzVnB@%q?dCa
zQ}8PF`5(n*J&T)19`8)dY9l2Pjmo@aEOB_qtV}WY#w6%1Gb&dh1w@3a5XQse%6S^3
zM3*>ZFIq<snd^?Yd8lhHwwz;ml{GBY&m5yiVz+$JZ*6^+y#`gAR&u~h7g0Npwf9TS
z!FfcxL+<Pe{XnLa17y?4$+fee?Q<0Zayi6nCIltwb*}>}tcM`pP$sPCf$lAAgIH`3
z(Ifo%JN>%Vm9%YjxvR+xL~;9J#`Nh-_DZ&qRw4lh6i~_yAU-F59o-j*v?y)R^zx7|
zZH%-n`ut|<YWUF4)qL#}BWQH*x)^9|sL{&do}2x4JaX9A`diptBoYz;8;@1LCeVfr
zW-bRqNCjB=7japGHBw+6*bbK^XatVi{N0%~umbA&+?a&6^<QM3UZt%ymUjVV<uJZI
z?69Cd@MPhUZ_w;e)68`UJGW)qBoe>wv^X({XO7fz1+&a6)j2fqp=Q{tf`CG&l49Oi
z?a@xUt_CbMp)B+;;1!28YmvTkHpc~NR+OTAflm_Dl^>F@ResxxTQqjqrxbXaw3F(^
z1@W1J0KNrad+s&7PR>o!PY8=zfk_uWnyle4S_3>pe(CCwoTNmKdDVM~wwf6j5EL}j
zZA2`Q5dU>5M+gHTS;D_;bYNo3H-qp%l_dej9213%2TdH07}Wji0dsJ8HOqk@8;P_`
z9WS>mJNizCuK<YGQaWXx7C+1fd_Qw@g}LVHGDG<QF&Ss8q&-5pJW3IV`FPbR<BtU{
z^uUPIKWa)*xZA3I8wLq$$5zKEGUTZK8@&#vd_7JW{hrl1MDv*)B{J1z92NrtugiHT
zY#<`bPO1B0pXQV*-7gM?5vVTOE%hPmg}CtCe{&?6gT%h|l;OeWXE%=WjgI7Y&Zh$4
z5#?2Vw;nfw>h~s|%ewWpIgWKTNwB9#^@3)D0Bxr7i<(!rFiE)z7>WS)`JreC2M<6@
zS^T7lUN1<APS%K`Hmy%Mp~WUpuh~{x4f#!sISll;umP6Cf?{mIz5EXqNW6!Hw=E*S
zeC8@*`OOFap=h-a*Dz5uU4M@wKJnA!Rzs!l7ZF!4Ap$5sF7{6^z<<yG5nwOy{lD@5
z$ASHStp7=qz3`uN|37BD|AYNcjQ<ww|CIet)&T#~D&qN{u>T4B-x9XNf3W`t?0;u_
z^!ktW|6u(uZI8D9!Tukx{~ckw{m1%$u>O~X{a-2aPuBldDdO{=u>T4B-zr61|AYNM
zVE;QS_J6GZi5lSF61Mw)!u}`if2nzN2LONq2P_5km4@(%h0|mGaW2JNS5>aerHr`+
zlRb3rBr^in!cLaur}`5dxDGX6y>q=H(4~0fON-WQ0Ms+dYtdP8QhY6-j|j2rX;Zp^
znK9JBb7^my4gQXz%J>sb`#~Y5=z4K&T0{XuM%iG4oXfbB@S2&+PNzO-x5I}bj+D>y
z<DXBymf!yTlKfpou9zLvbiugda~7x{Zz8SUpFOtG*aV5V`_4)B$7uws2+3#(cE6<y
zs#Oa;$3`Gyf(^xZkT!ZI-OS}+lI$Y8$t7r4b$mR8p8S>eV@Z)59?DK}paE8{!u!2{
zg5chgd`g{8>5KB<RDb!A2$q>y-xA)+8Pc?U=&#vi7C`dMI!;fG=l&XY=fJZ9$SS&s
ztb%V7k<Xug9NKsttpiOOHu+vjS*;0dB6egD00sN<Hp5ICB&b6cEbq-$D9US{PM&12
z1!Kk5?Cla&8KC85(Q*m@CdXGH6qlv@;Iik)$MIoHsSw%Ql}s<=y%y@GwJEXbxU91Y
z#{@l-GlOtt6jTk74Md(x^&9Z2A}djvd1Dwq`2d;1QQhJrFM$AjJw<{X?v4lGi6hbs
z`CCZV>Q65!Ji@|;r&Ubi2x8$kU*?cW*84Jl`|nht$^5A6l!-(>88u!uH@ElGU0z!g
zVld0OWYebIFcE@ii=@2}eO`%X7X1B|iqXQ6uLP4G*qmr7hDO#%{{xjNy^OIdLKH@C
z^>IT|7-jn7C%BF!laTiS@5fRn>&(s&cHoLd)GYVJdg{S%41C<IYSEUr2#;g^iAkXr
z3!onGpvaD(o-}s8$Sa_;<7GXM!f8R!S4tPeWG?PZd)3))l}*}<yyTn;;DDJ0<B`}T
z+@j0LK&^XvxD<(<NuPjgu4kiLLE+%G$1pN2jp1vTcLsckDZMn*WXE-lx(;HBxQ~5J
zRsmty=bGCJRZlcSNYrNIY9dHZ*CP>py~a(V4ALay%J8XM{Okv)r6Esf&F-v;krUfY
zyyx}Y=@d4~OxB8isF-V}hL>KllSLB?Ch5cafDBvzKMd0Mx$u(E!;r_tybK(L=Ia5o
zo6DXz-=PXChiSJ8;!lS#TL&RS#cA3TFa1unOXCs<lycE}-M!~kR|v(3&`n^Tq64&U
zIOvD;HXoEscM+sXjK+yhi`{v0q2_Kox62&Wc)afvzn3>*?+X!!BBHsq6Ef5=DB-0M
zOg}-#7FrTN5JS*`-Btups1c&?<OU!vOPgi<e(rH3?!77D+EiGUr=ds~bu-V&y#*u@
zOy~WHais|4t03W%Py~fC_r3$Ndw!@@MuQCAA_+F_5ZX#)X-;BW7apYwJ>hyPY?aN$
zDjr-Jjb}C4T)jMrG~TWQb+NaMz6KOdRIwn1?^uf|nzM0Ikq_nlNN7eUCK`_X`=F4m
zk&<nfgZ>`?IY7q0z~Q4iLBjq0>13sFqcbdG;k#fIBK+wC6|_Eeg54G$1S~DI;^!)Z
zK}L2qjb`Zothgv>+=21_D?_3%4vQip%?i=j1lo?!bTn{k3Sd$*jB4q5eTN4D5O}vp
zTVN;&Yokkj6XoEz^abUAlXdVLas8c_F<lK)+z9wQRM%YAjuiyb<c(ul$O%VN;xbge
zWL4JImh72|Klos}Fdx?Pby88$<R(L|4i>!#wzJgef*yfO4+dCl&xr{TPe413s1><J
z=wMW$kw-XLG){l%t>@;ma(i?xA_jC<0<oE_ARa^Hwg%G0a}f-@T|9oYc#fxv$qpA#
zr9P~|>BCbk3m5-xa(mmt_bQFP#m{vAzm(r8mL0+Q#I>I>1@zIj<m}Z4DZtZ{8H=Oa
znJyGu#4ph*J#O$@B8!3o{hUru$gIWD>$GrU`+}j0s2#t3Y5Zn1^cSqDXL*>}rR-JL
zQ>-Q23#jWBO{rDCxQ?DLo^40y7{c52nCzi+Hpy(NmUHbkelxtbGImvh`kTxXJIKlm
zD)o!~=jCS@9CTfWhE`Lj5wE8$o2X27AKxR~)zi%b-%D-k=qKV(twsnZP`(X-2y<jP
z$z<K}qFa_&2F$YO>`r2!TuG0tzwUDE_h;W4nOc;Fax>(Qc+eW1;-T2-nDOk}dPT3z
z_)V#+b*RSm+$D5pqk_>Pu+CcB98*I9nQX!(_s@VwRP&QFf=8p{@=3dt%_xcFig`>^
z8Zduw$G_t|pZ`$)#4r2Cjiz+Yo|b5ChnpVNglXmCp~FjlA-9zk#tI*DoC&od<jX@~
zv_j~^s1J^LWGz)>Z&A8k8F$V;8og(an)N$Ji#z0Z9vw*89fcD4u0O!@)+N-qY2cRI
z#awi;7s3IpLI`5SifBQjZMM{rQXSl-%&j7t{)+92-n~DI<%OCA5<PqHfKOZL5x;g7
z9k6iwX(W;mIuES#|29O<Q59nhgmC_a7c|V-L1<3Q11nsWyj)Y?(QzRxn$E7X9ahik
zAL9rKRP$!AD*NInA0G~TGn<(Rf8+64&WXc+`xsb(ZBm{uyGPO8DvRh*y#XJ}YxH_Y
zf(&)C77Ah`)z%}Wm;^Nm%wh(IYo7-&AKggsXW<H6ACd@7<-5A_Lc?5AHN5N$)+;6w
zSA$1Wq3CrrNi?^luywvq8v-tn>+fz}c8b8ZMBZuTtnt@txcKcO>;}j28Iax5J5b{;
zGnyf4l)vvc*S+ki1R&&Tpg^67)#=PO-SGm*6@42Z*hUI~wV{z^PoJqf-sP~+aW>rJ
z@9zNSB#0Oyi&*tIpxz}pPY6cB@`*i4-)A;$E<#m+Yib9fz%Zv}Ftli4HI8sBeNzK#
zB{1F$(<mkhnXz-to!1Q8%K&z~MwU{?@&oM@VJ)g~jSiHza});fEld&Ydo_X6^7cta
zq~6%RFJ8Ba%^T94Q0eqLeI#kNKisj9cGs=uD+QttTn3E^)wn0lHiDQ&Guvf3So>0y
z0*szi_77Ke|7j^*L*DtpeO7b09oS7-HmQWTraPo%>kB+^0m`m!aNhl_y^K7EhOP>q
zD*^@aigNP1T0w)mP>*Ev-x5FBom9;z*8!NUD?;3zK6u#609j5;NP=oIQ!&*QtC)wC
ztLA*uASPsm*zArOYQ+tc{?O)GJS{1IL)uR>-+<AWi2+?4a(%NYdfjtpJ6J|!L(hRH
zXI;`mJSwJN%nEMi@qg;>X0$JfFsNRuJ+uq|l-Cgk`ULjo;X&)<-uF$&^m@cQN(NAI
zB_OCEBj-6e;Y}^P8K;*cWniBsK&i8T(ogd=yIUC%UXud$zH#k$w#WI*Pg#<d#E!*c
z&5j0rB*1ytE7p(vQNIa|%BYn5I%;MNOyjA*eEe-MBm-tbq^Wxiy=#D1NDG!}gI86%
z(J<)98&+kN8xKb)ena(9<l#c#+FZFw!iH5ne-wJ01GWb@)>vfsYY=(j<-Eia$72<6
zhve4)0H1In;1&U3K|lT#0K!J}C^zz$?8NgERGKFQu6c0<{a}cbUdf9b410`N-zih(
zx>r%HgTtcZ7Zu{l7cauNE3F3O0H%#ofd_X!6Av7;h}9^IrgXcK;&J(^2zv^rZTjWF
zpWuu!{>?e@;hs1--)%g|N`+maPhZF2WxZ;}Hm!~}!aoL@B;7$&SF5jn(mIpt54HsA
zhLSY|V#fynM`jZ&I}mqSvkOR<ZFjX^iXXjYBHKqa_gM+Ht%%^Wy*=|c>+?Tt9^{nI
z&oE_)xif#D@BzhaDQ(l9&>d2-ltx@Evpr8g(z;!94m_{D>)3Eszfx94qC_NO$q=#7
z5p+Hf#LP#B;6kTo`{kW9N$|6klr7#_=z>5A+?sgY&9c5WYWVFN-#g5M1mDCLA8|GH
zm*<WyrrAR(ahiM1(V!k>c!;f{QJght(kEHSZ|ZM>>f6Np3=<y$1=Z0m<eZ+3ZEOGZ
zkhD5ny;2#SBQGx-d$`-#tP$hS|FJ+OyFTN&u$FtXT6X(j0~f~->RHJoQ%KfPkUG2H
z3m!e%n5Q|SzWf?ICSs^B?z5lD)hPP-7&V#@h^kgQ0>Y+R4xG9l%}{}Ayk!$1*}B3%
zvP_Prf9)XcopwjT{Up<0yPWV4hj@a%(8ltM2c@cUTNdCEPyAUQWz_!Evy0(LybdiL
z{@DzVZPBjJise%cu$wh~ZYGvX(x01BC~gWP-_!Of_=F9xPdubX5~6@78$vr*-%5rr
zsqkQ{|15(?^8~UbUa}d9Sh!wi`s`I|MIqop^Ari?*h=21UjZwe?M?P`3;qY)<og(T
zZ)Ljo&PiqpK32FjZB?WGwwP47lK=vFCMI_JPDp?mi~u83K&xs`Qhh?5WNvyfiroLH
zs|#NAe&(UrfGXj9cQGkAC^FL5wH;={Z*HPD(0S%tZDco8jsVXSMf_Q#yEAOABU4_*
zB_OZu(t|zk4|*&v&gq>r@~)nw18{@V|56b9Ja@p#p1{tiycrDd=%I&lFM*yKZcg`F
z9a;Rjp0s!O`xxZHN-kL8%)l@LOPS;hCl^#lp&163d@)m8lfXa9uPCKKA~AGof$osV
zfp;xSb8qjK^oG{{IH&XK9H#ZBA{`L_h&Fa)1HFm}$wppY(}g<GueSwS{PSubc1dYD
zK>RkICDcC<N{)uLEa_Wc5dS*p-Fvkt{y-D_`~%a~cYdSZ|2FpN_Q>`-!vA$M4Q$tI
zj^)SOc}J=BvF(xQ?9Ir$VzB47ysUk;C>!tcaKaCxuCyW~%RL$!*R9ti3j*DloF|GR
zh=~435hwE`1Y&dbU&KLhg`hyj_mNVU)EF(1bxQTJy;-3H#1YTbBmi76e)v8ETm;UF
zwgeBSCzzPB+Pgi76T|-sjgm&0e)z=9ePDE-NY`ivl>9==Rutr-7V<r|OhHq+fko}k
zCtQqYWdcre;r9#Eg>TkP*$tSvg|Sz`01<clo+BY6GPcY1-kwN!(oQ)ZQ7R%ypmkwq
z7~9AE@|y6qg2EBgUgJ&4ZkgW%qg8{MF_xRVucp=rjLPA27v?j)|GrUmk>DzpC#bVp
z0532mV^;@LyG9>@J^&x0pIIz|01$k0mqqFXYZz_v;Kc0+6I2rw$HX-^jFlBAjN)Pz
zvGB7CmcQx5;b;J^!G2In{K3rhR&%Jz`JI`q2}01t<+JYxz|^k=Cv6YGO{tHE{bfFz
zX4Z!$B^V+7v7Ja(Z*gmy&2`4r4e8GjS+tjbKPHb+rYC|{RwEiU;r0rV%A)895&3#j
zdr$#AgJb1?L;+nMnADurirbU2*50g=+T=?1HmKE{O}kpXL7gryW?^-4g-`X@hB*-v
zN$V~9&ys9i1j7p$cmf|kjyhe)DP7)ICxyK-&Mtaq{POaiN`%u&BF-hBp&D{R^g{RU
zq}LB1I6tzyE^0}m5&i;<e%&5n>J(7FJ|11*4a?Q^2B$WDa%TePDm5fu+T+-DW#t1Q
zo=Z>};PPIqZJn{u;zKUdFtK|?k5h4@fKBc!-FA(#l_6?l@R?902}%aKR>i!+Jf|Ga
zvHI4KOjl(Pr&7$xxLIfkW{>;iO;@zpumFkxYIRX0Vc{vu9i3Z36(aKevFoXG(ClSY
znseUzntxVUV-=)5)(eHKEFKM*K%JU;u6#O+JF7fN%5QoZ!OCB9KWp5ZvRbBLq&Q2p
zUbUrB{geaFb64__?mbBoQ7!dt6{)R3#&EQUVa`H~IGro#HPj4UM#G=2f;*{BPf2o|
ztZ7@<E>)|<MDa2E@n5y=QcWS(S+_W>9;fgFK1u@rVqX;}iZIzmRuLHJuMem@xAh_O
zXl^9&|J&72gejD+&H;E+x(}cVLsn3G)IhC|RN$v$jsP!&G$Mtp3L6C(9qcCx^7Faw
z!Ai`lU(G^Ve2<h0wNQIIGDjTK5lFJE8%eO9wfr?Qb!x+`X-(hk0Wys|#tlM0k97Ka
zKU>I+Hok&#Fgzfy(=;tPF!n#ZACSnYSs&vcGcV8U9?l*#>&*Bw0MF~1n0XTzok!EO
z)9kUheFA`3JuaiwvjMFfc3yC7W^y=U-<t}0TFDeTLvO3@X*=moix<rrx51LOc$1b*
zZ?Y@AH1P#{ksGjN8xs_a$&_H1P?ah+-$GQ+vg;-+t?M_Np~kxY(xz;IIR^&Ji+c93
zf;(S?UlEmOi%FfJf!|m(*$w@=>KH4SRuZg=6TMy6M95r(0b1X1@LMOoSbQ(E;`i@e
z_aY339*aTW;&q6M9~^7ROpM>1v>kL0-Nxt8Zu`hYjWpa@xX*q_$sk`{mW)LI1~HSt
z;YA^`PqfbiR_BC)cyv#`TeKGfpvbpbw^_4bHWyAyF5_InxMozrICE?x@`@`BQeh8*
zlX8{TFtmJI+FiXR0~4RDoULM5izPPMOrvV7#R8=q|I+7qJi6Diwog2(L=%WGG-ie-
zhR>d5pEp1!tWjKKOM@qr<9ZDe5V<($>){E4nA)+^DZy({yu`f@uD6B4AAC_t0#sNF
zGSKndm9<&ZcL#`Oc-Qx&+1FeGr1Fk2f9h(cYBYuMR=_@%eYhZrUqYZqyyO!nWG8m%
zB8`H|dvA-2Jd-BpXayL?bnR!Z+29&_{~fyTX81%=R=_?2804GlnyEo1MRWMA%&I(g
zZ^-K5BIDGWx&0Ew?Qr;`vbp85`QRImEN*l;Fy0~vc(wKKAw<6n({e)JUHN2~N_Iir
znz*geLDS93^PBKmY`ofgR{416QF=W|FdJAtazcC#5t?BZA&4@`DNbZB=^2DYk=p2(
zgP<4C{U>~30k%74Z?5A9nS}{#39udVe7~WN9QHB7ps3kEQ8ISY2|rJI22P#`E%`-D
zwN305@n!J{z4-BJTu9%D!+kz@`VX`s2WFK1ByL9vEbci&PJdTFalN>vzcs%?GLy@=
z;p@vcbu7g$+bmi~MioU{S`S*-6%ikT&V!+!2t`&>rd+piNGrpQRAe(O$S7gM_2<iH
z*kIpa<}+w++Brnj@{6$hH*!<$E6(acxR0;4ZhHS_z4cQlWa&NWU$Q{d-M}J#&>1JY
z3Sh_p_33Hv6QZU1DYLZ%0>Zb*eG!Gu>vh2hw*>Or1LakLFs@wM2anWBnWdo?`~Fr$
z3ZKVZE3pJ09uy>cjo+J-n$HOT_am}>ugS=WQ>Tbkq@KCCW9b;_TTmhuV^Hp3WcPKt
zPpXknH|{3zNXUZn{ejy^&bs>AFBD1s9hM-G_FUe%OjRrg5Z#ZBP4=Va>cQ^h*Lss{
zj@KAbzy4<;Vq>`0@agMVq$03aDU3YM0-DBzI*-@cENWGp;cCVC$fN^4_p|&P>Gow<
zxP0+Ewwp1W1R@?9X^Sd0jT16wKjEJm8tJ?H<Vyqop$_%7vmsv4j|d_$e#pzbhbNGb
z_>^UPj^`B}Lon#Nz02fzP#JiO@|oGzHxam7r6J@~9Y8!$aB0qL%Ee>B<zjuylF&$(
zc%0iCe&~%1*S=+@z^?9dtq?nd1Q#TJx(bY~z#>$YZmpf*I~$d9&;3_U-}?0@qSEff
z7ADf|ejZ}b<d^%le0lf<P?%ep(1Bs3$CkLc@hOeX7)jRGEak)EAx6QS`B{4$jkH?7
zeukw+VVPg_V+^(X45)Dedg*g1>Brend<<{ZD=lawpRcIss?`q&D7UaOMqVt*#>baU
zcDt|KX=DC72`Yw5V^dn>P7j|&WA};8BAUgk)<E~VlW49b^@|r{K9RAu({kG_Nb^F7
zC~#b_&9`*cBa+z~eWso-0irc4l*+{SN`0KvMf_LU8tlW}z4eTVc$CLJu8woLGK}=i
z;M&+DIzwj1sX8`V+H`e^!24C((tyPX-2X@85421hTd9I{5;s|(PFXcVm@?gxGHZ?N
zoESYQ9TbeG(CnT0r%tE?-~3BXOx=$CKT;Y<f!it-Fp-tGFqMF7aFak>{cJ<rVn#*2
zS+S<BBozJ?t2Tr;>@jD|#JW4NQoNnZgy6QC_)BY&qgs5MW4*R*d+Z#gkYU;RC-D0V
zRGxsGJUE=7TEIi-U-to@X(*kVabegK>Wvl}M4pQ<M2DmS4_2Oxx%wd+n;%;KVP0}b
zGS=7wmiBd#(@lj1DnEBhmH6Ab*4Y4}>*TAo_*}-MPzi;YRjnNLtB#B&7k<cLfEKCB
z2ei6~vdNWinHm)uGy*0<3V?-EO}Odj-DC+i`H-|$^Ht2^S(~4QpApaCMqvc{^v>OO
z@JjiRz9}7<Rj1#rWO~36xc=i;z@LJx_1p>`BE3CVZcdo8W=xC2vJCSJ$OWXhuM<hg
z-|p+Yyj|X1)e<CFXd>K$trpJ*^8jG|d#Py5P@<wUjam-W*aY&7vaODOE_f2by1Xn<
zN!R79K`|2`(0ZTeU!o6*`A32{XG#6eVpeIlJjLe3Rrt6k9Ou2ZM{*~4wH>&IV*B{7
zf1;11Fh-E7rM$0`tKIud>k2yo3XGE(A@(Ssi7IN|KtG)CgbrmrqyA_FNtn^!o?ZCc
z3s$cvTv8&fv-4fY_{)wH_O}s7-1hyMG?Z7_tbekBX%%%r%kBz%?gYx~3S}<l+-2#E
z{@>G*`y`p=im!`u6%5t7EXJ>Z$8!r@1y_Q8hj3*Nk-a`$>1i--#ET1&Rk;t5Q?QrM
zEl&LZf+}g=cdJqEUL@Mo$cC4sJx+zSo_OaOqA&yU!I+rNPv~J^7;3|)0Bvh2b{X`j
zkj$ON8FHBdF){D;8u0uxWeG-;=5V!$4MVZ?E{pWRW{<8wYR*VPyQqO}N<(5vzO&)t
zMa<6~QnN)y56};?4MRhYEO53GByC$(>1&}VTH^~265?F1%AwnW6vGpZ2=*N1J?h`9
z0Jq|WjE`)_kJ3~>i#GTgGLFfVvR^Rr!7`y|reByQ(CF3XHb_Sj=MV0~0ff2r_HaR{
zXgnHz*!GVGmz8;w_b~d!u;c3TEO@`$Bhn}XEE;5j@}{!psxImOO!?$8ZDsfP57=bK
z_%we?wV6xi%(Q+)SF+w-z!apogbOr#XC!*8YQ~vxNz!B%4W{A<Hp-L-w)h)(`_89*
zD@(hhLsK10>Dx-QTTU?CGJ*mqf&1TjMoB$4bueb@qT&SBNZ2dMkgKr9pIXq<XOrGg
zqZwk#H}rW;Wvg7{%#Qf)8ashn{dd*3Xm|z;`&F*ppI>LIm~%XNn}OPY2Yj|EA^nDx
zC@7vyC}|9o(*TS=h+qM@{8VI*vrlH&ZJbuSE|C?QOx;uaBrz@7>(>yZRSaIwjh;!x
zyd@<1<N9!JdA6IR9N!DJ#Ayc9)CyR^fE`tPDK-1K;8i;oivbZEA0Ai_n22I*Ce{XS
z`GO=*@adDazRkdq=|G6qcN|=}=0wvSlFZ6lg9_9aHol|uIhL=EJ*EsE62Ndz-RrJR
zEMxbHm+8i*r)c|P!Upl{VzXt2Oz3c{9M~;1qhim$ICS!CWfeKT0{j|qQh!d)Ta#?4
z#LH(-cXuC5;V_HsTj0TCoTixRReQil92qi6R)MxQ%6wYm7`ohR&_@wel^VI5H}nqX
zMsC+eDeD7iB|qta2XiEjS{U3ikx(4V9DZtqv`OFr;M89dm{WT+vptK)mv0fLb@2Db
zRJZq~Pt?tt-9Icm>+KLc=9aG*VC)Ld7}4rm-_HdHZ(c+2eE&X#c?CfAe+8fz@Pf-Z
zvfpPfkxHlBW6S!S<uJ{ub?UUQ&pYeiuhxG}t04^yg&`WJ4aAvi*+HFvoOp5PS{1`8
zPfoatX~`=LIjk5=tYHU@`n~oHdi>LR8v$gjO1Ch{Hg<0!96pMsxf#1I!~wk()9I%Q
z*-|Ts(jJyMQF1@%hqV16dE1<&0w+TM7Q_$bJzfP!%`|cdY=H`-xR5#7rR+y{v#2(8
zMrEh`?1Z)Bwft4*!k?Yoy<|)1EqI1)tYrq|!>~L!B-m?`ekauD)b*d_D5R3pspxlU
zOqS<@`uV3jXR$j}4(Or{IJwNORx$2R7#8m!Y`hv@tMswSwLI8T4!VH>cn}cGxhm2+
za>E`QONS*i0U&Gz)+S@vLOcwb+qAFLm)?nFS!wE8xwe>s?-O>T>rnqyK-Y8P_@|TB
zGyXP;ZJ#N(f=Pqj#>s1;s-O0tvKV;@v03d$o<7R^eKi$uNOzESE>tDONz+A1`1Cjc
z7hXTSX~AA+kPl|OFRA1)%k?@KYtB;%mbsvErCTQu%U=}_Ap66izhUX=Ux^?$RanC!
z)-k9*GXoMnkwi7^L8ysD3G#Aafa?ONEUF{|aoD$YRBE20^GEitDy;@&8D<Q-;u0jo
z%+~*jBRr?fUe#|ea9tqwy9t^0#qa2C%jkg%3DpWEnlm>iN6VM^quTMG3{F`1?TXNd
z?G|T^AAal7bh2vh32sRt%{Y~B2collY9SJ~#k}~k1Sz#}7_F|cO;+vk=Q9G8)S!R$
z=Iy5{KhM{+cnW=k{E!0Y&FZ!2eu~JRuSpJVUoIiuW-V|^)NPp_6$1}jgT{;zy+E`x
z>ntn`O&OI-5PiTP*|EJwBm49eHu9fvb;{E7DFZneb(vC^6va4O&fx4bvfr3roFI6H
zCQsU=OwA74eMC*)JObE;pV{Cof5W1(v;_u*rx6x1szGmHtqZA~1rlBL&25Xjg2N~x
zTr(CG$}wA*Rvl4dKfZ<FqPum$l?!G>Qc|6gme|174?3^`Rd18h>Jdo4`qdSq>t;`l
zi1n1PS>lNxp=gjHsx73(XX7c_s&qy=IjFv$O#plnv(hvI%3Q}U4`TR_kO@wxl0Jg|
z`?!YF(8KP@{h#(|UI9eLa;XZlCd10u{s9taikZ91Dg++CEI(%!iqkC(Z*ybA_F4Qt
z)PU&+|M_kDgj-zt*Q^has>_HSU@>XK`BDEHPS%ey&$^~aC2KFfNJ6%*iHvayv439b
zrkdgbb7V<TWbd#ilB*{u7AkBj{)yZirRT=d1jf9QpctvvDMMe(q^;0Fqs7@I)PR-z
zAUJKAXe{)<)?Qdm8XrqzLCH~Yxe!4^Xp&$9L?1+CGBL{C&34*&$3I(AS1qU=1?f{T
z<Bq8K)eynP@`~^jL`JV*QP+NstcCqa0PA^FzOC=UU}|H4Dz-7HyOHHi8_3QNghoFZ
zr6vJD>T0wF3ov9m@$n>fb9n+6Fdd`Q6M2G#rzS_wm`rIe-;E|GUDyN{lgyvrPBAcx
zY1eTc^FpY(ugFuDdl#Viwl#efwQ`5xaNl9bN}>Fk*i_DvkAX{sMoLKRU*w;>3|>{+
zs1EV8UVI*4eI6H+cwTt?Agz%vF2DFNUzTz-)jqi{b3!442_X~f1&kf(j#L3jh8^Eq
zrnEvcDIYwI%%E?e`2x^4YJ5S+H!!~m&e){jng8i;ecI4G_YQaPUXwU>6u@=>b}gC1
z9UbX*-#=?WrB29Ol;V#!u!C_D>S<G;*i|IA>kJ{;Jib5iM}fxlvk|KxdP~Dk<2|N;
zffj}`$)s$pV-k&PM{iMFX<~ZS@1Yp|?&%<d%T$}>jvf0QyN>t^?TAJtVigM85SNpx
z7}Dpt!JX5BW~q%Aiz3RDh%z{jBB}U_Z(cyanrW^5WeI`WxTyKqYH^29$-&!h1};Ja
z^P~^AHJR=+iMW|OID+(kP7jz(Nv${QYIOly>6*2cg)i36v#oZfcRFiI1WnS=trP{f
z6a`gBw0cz!@uFFQgFO0#A2Mx~w}VxUlUb}JnnwS}>;xwz%K^7{1n$<tVSg)k(|9AS
zGvh21#mrN&<1LrRvqEODxB!F}4_;|pL9G-Kc7zi~5*1^g6;%wgqe;6f*Aj-x7F~ff
z2*vpD>$gWrr-t$h095GtC6T7-?euTAUh6Id32z4>Q`oFm(kV%12DT}Zf!($gx`o8R
z%hgrFD8ShjJ&IF_olNRA05FSQn!!<Ii!D&ekPi`A2c-c+_AR44)<Bn8t(_IXjF>lT
z|Fz`+Pa713?4v0E1P3m<7m^<!$TFce!o$k-C-<WCZ~a0i^nD*5Pc$>qLGrv5tix;r
z<=GDkkviQxYuv`3J5u}e;3GnrT-qS1NV@QcB^%0g%Thpi-AJub^Gv(}lDCsIX472o
zoTvXcuhj{80@hJATK5(Zmxj+wB<60xF1(*Z$d`H~*q$h&=COH_tGC81Y|=sxU<V3M
z7JpFk9cm}Vgt2EZSd2CmlfesG=Sq@gpO>T+Bveqo1-;opK&GGL*Se-3`X6p5vk6-T
zWd0oi_z}|~5+IhxVNwMu>d5zj;-Sz<GH)_UhG#^I*3*nEkip>P>U>WX+`xfZJRNjE
z4rTav?=?VTWq12Lv-dPieI3^xE@~9?-_d2qf0uA}FS`;{c9P#^+b(Vu9Y>JA*4RBD
z*$oNDERa#_Y_cSY5wokD@+M^A9nukr8|8L{aIuARAS9&tsDz}NvSHV1Z*yU1$@mN@
zmP<zQG@oc)dGbGd4}Zx2&BfOFDPb`<gwR7q-W!pDyCoF4=4euh`i&*bX^_Jb#UFOU
ziK^0%-p+;XkY=;v?xRg({_%X8EIak}Zl5N@rLZ0DUNBle6o)2<(Htu{!R0UUUwK;t
z!Z$rE&GsChE8Z@EjM_sf5c4s8;y&XrNe^tt%Pi8c9kl<Rhw(R~L1vXeC;nBrC&prG
z6~qFg*hD9vwin(LNge>~8_v9;H(kjxYw98v;Q{%Bw8jDz0YNMzrfTV&2(aI5t!w7p
zrO$?cW!pf^onGP7Gp`E!(BoD`hYVKik?(W(lh+QPA0-}Q_>0(0@JKD#SX=6jzn?~B
z+j96t65`Q^Is~z6CUcSe9yIU#0oSEgDn)T!=gWccVu;(?O1Q*hQgUchAW*P4sMzxO
zip>;VRjs{Z&PPQ((sI`s(1R8O&$w-aN4D_W(pzs+-L3is7mCggBTGKpa?oWl<h>U!
zdd*C&rPBUg6(3edzOq~*+5UB9EAT?&<s7x}V1(qIrWD~3Q_7d53|+U~O|V0)&0%pr
zS`*OQ-0*Yw+t$NeL~c>3{3rR(aiIcKhd2lX7*>4$W1fUUk$<0$^*jg%2@S;?Ab7au
z*lK+dg(w@CHr&Wn4WqObkXN9flVLU)^yZG^D{G0*Cp6^L^$dy|;0IpNgj(xEr1+U8
zDj`6PItn}!aC2~PuHhh(eyAxp9#&m%h7ZWx1ltG}r8)(~F`k=;P5!tH4@V9eZ0m@g
zsYaVD&j}vjQ6;VZ+<f$|xjjX8d*a5bEg@$coQHPyt^#_jg<t&^9whzGx#%a_KWT3G
z@Tt}tDR;ZJGC$Jrkb|HT3q1igQ0C~gFH~jQ^sVUb_{ho#DnW8|Hs|QEfedS-z)LB8
zR@vgI`nzDhLn#d-lOLG_L1TL8RX}^*LHmH6@`U@2JJmAFG44v&lQoOG!7A)|R-aa}
zP7o&$j0f?XTB9zHG}iJ(X_XAK()^^57zlTwg&iic^RG2ZzfX_h#X9=nsIj5-aJ$}|
zC-f+ZMB{|0_LW?AR8%wUaTAC!<CCz|E1_i=Y|)}`ef`}|<WzXtvs!>EokU^|C(=3{
z1|<OM78GCTKH`rd20JJxrS@kQT|DSsu5I!+L4^Vk_Vajrg@*%tM)q=aJR3W6mYV}w
zpZ(!FGxNvd7zJF50k>j`=JXL?V`Ybe6p`zkpzo_rZ7~OCml9L?buciJRL)9`CN39&
zQ*O(o_+=!hv4Fa)64FHfKbAUIO2aL{W{cx29M@LSqlaU8j~uEkXeSwJM5+`59EDf>
z3-v~4;0FI>(A}n5RCec`3`VPF#RY`s@4?g1J52!4h~}0W_6!&bKQmR5JRTNM{h)oD
z<&W!=;R&Qe!aVXYUn=I*efOk-<44}bb=<8obcIA--0Lx_T~UwgO^FxW<<anS(sEo=
z8XNpk#+83Of0|$$8p@yG!mV+wV#(oT|C4|tmZYT2B~xX*#ng}qlhm*<^tIo@>^he~
z5RLO;#l!ibKvE~Wr+`KH^(G2v&?1gUm}}Kg`}~5rP8bI4S$!QKE(_{}SnXg>c{Tf?
zeggppTt(MPhv?F7r55CsjGoS)3kn9H@GQn<xyG;n^t4p9<qCUrSXMeG%e5(j@XOnN
zAkmMfD4uz#0lUl>uJBSfkd)9cx-BZf4%L<dC*fh*%^tf=r$6DXuJx<8v2rfIXc&oK
z8I)P?oQ^{-yGozlZ%}}1&tN)is#WXFL%+VqNpC*`0&M{qs|XceiZQ8%4EV&qat%K)
zpX@CkktQ9U4MyCMTv#=xy?sW%kTS)r7lPHYwc#)!v{XI`dyx@zlJ2<m7wPf+;}+r6
z@s&J~*azt{F=C-v$|-EZgDO}4)8SNuwk6wO&O+EFcTL|W^*LBNPe`S#@<^|x4@;Qf
zRI{3N-Wn%dtK6AzP7ioa$m9+#OHQL8)}(~I@vZR=`=Ly|uM$Z#sABdBYIs~$Q#L?;
ze1m_SQ^0BxN~?~QGuTqHkso4)gXkb_btQ~&-2!*$SEjacS>$E0L#4l6vb^lMfHf*{
zdfWQAE&t!*MC{gmAm!L#jCc+CeU9xM*e{I06tWLlEyZ$3bHtXZ5m>-@ETdddH<yvS
z(dO7_Fl_;yHggXc+oPu(m=4BK=C}D`RjnbD(e?y}@cR?BgQawo_gm`aE163N4tN%0
zMZX^c3^=;o+i7|TwEgiqo#<!k<h2j-oWfyb>Db_3Ux9=}AoM$R2Vt8@M!2NEH<G>D
z{-CboV&AdaD()4KlB5t_<}TN^lMlkaziPH0J1iZbM{3FavM3*p=T8ASyO#;Ok0y2-
zs^OSA35lz?Wo|UaRsJn+3&ti^k|$yPmjp4X`$ERRRGG~jmzWv(EotW|X8DKco~~or
z=h6)aA~wr{h}wpWjjvvyT%a>eILTAjW8dn}J5eI4#N!~g@Hf#WCro=m>3HyI$S;C+
z#k;n~&TLz?7z#d$vdvkHDnz8rNoSrwdRMF_M-tOE5MX+F*4_$>Qls2<O7uJ;&6~s<
zdp~g?mRFyQzhVx2olkrfdkY-zj603Q4)0LYzq2k=wWc~Zf&f2QC=MIVlHnC4Ms$#f
ze*<GSH16XAk%syVx;c?aH<*gBOP#46NLato!nH>OMVfSH%<I!DY|bE161$j6OySj-
zf!*5%HrG@a+@huwY8D9e7xn^op&$MZL}>0-SdW9KWGk?7|G8H4eagXvX%K(>!Mm%D
ztL_$peyQBN-CW`w40AgkLD$5yexitP9DoD~*sM|$hXuqS0weRJgbr_;8OphFTDm$>
zctKSIAUV+s#XSwVkijD(N;80SRWf%rnh)Y4+T&p1S7HTqn;wVd0Ye=|;_>YFdH~!i
zsm;6c2>niPiW`&<JhaNGKK`ip7M#8er&(8y8BP>>W7XwM3LtuBo8C+JS2x@ysftDf
z;%QbLK}YTpb;}xCWYVu}D0gOY&Y+}T@(njfFUOmvk51COL1-kdW9@NalKjEA$kn?;
zjT@KD8JDEl!Te8$?4@646uUMv{|b^|QP6K&9{Q=~e}?x0=8Hn^$Yc_Efx5LiBVVaR
z3hljF*d&nq;&2VsG<)Rexaq;J#Tp)S>hq~fHSNX4gr!Z|YbV|;btV+Ed7$m=hTYWb
z7)e~?3QkAgg>*OrF{2xePcW1^#`}mf_Or9gizE(yhu&PAuJKYv%?hqcH0e=c*#{7(
zK3|4~-Qv^koq=9@t;g_y{cw%Jb^&-HUuFWZOw2h`k53%C{t__H*^0y@l<>$L2+v)r
zx##+e;t?=VOY#Kezjh^demuc097|s4{*{IXS6Kk>{u8IR8&h6p!Zu7Q5#T4Pmkh(}
z7X_spxo-lzF}OUgr#TF!!5PB7+bv)Iz?3(7b{aqIhR-pt3qI>t#m+Fq56&Ai*ret|
zvj1Xqk0AITA+Xb|n0Z@?s8I2q=w8||)C&C{XxAmF7^<3TIu!(AIdOn=5n9zRvsm<(
znBy_<s2*rP3ZBX7F#_0WHTX<p<A7$$(1w6iwuo?M!GD)`^uc5WT$8T%>FaaoD*eKH
z&_LMNu<1j|u!nHJzuzedozkL>FLAhch(drMI}x({`v+LC@2~uEpUr}+Hxq>ufsVaB
zHl)IMW-*xU#(Gj?$f*K6+-nBKx#Q1V>E{DeKrAOnb`Rs9SU>&Z^?!xU+oSvV=gvu#
z$ai0e1e~zxeVF{B{Nle)xsU$%?p7y3e}2JP^_D3Uno#A3NtxX4)Arw2&j$#Ia%=%T
zKENBZYN^|%oeZa_j(bCubkK)>V~7NDY8K_iH^Sbt3?mzs+Z$`g6|$e0H87a&jKz^L
z(FVaSoA85PP8O=2@OfNcx2gAnhmqf1ELAGVZ6^8m3kk<d_h#hyw=6Lv{M3(kB~ub4
zOl4rQLmV34BpS)Gix*4a4^_FGiS$-6PkhARWz)WSSLK2>`N#o4mL{cUd|+-o-`m{5
ze04lwSP9M;@~j*lvCnt5mW=nq&_@-*0BYoBVz@YJE>P2GWHDtPD|ENp%Flf`J^CMO
z<Tgbcv3joHRRM@<JofKhK3TZV5RPYT#avM=ku1lYP#@BNMRXk^yU?_t3e{XE-f9`;
zPK)l=41x$*2{A*q_C+-_L#24fo?gIC1U4yxHJOQk#5ucjKvgWd_OR*f7n?CPjG4_L
zlx$maRh||2&WBp>3<r*!?&%nD;6UyVy22#iM?2UHC0orb2j<ZTmu8b{9WpsZLjoq4
z(R0$r?Xk3m<^rQx{}8(CovMmq?HW1Y<KUa74Z)L{ZxWWoVkFx<I%(rM=zJN>&<;rJ
zqS-J|*rL0;0pyiR2J}g%ZvBMxE(fPH1`VG4yt}%wWP5S!kgHvS!%eE$RCDKvNZWyi
zF6@w>7?8nEQE6RX(>`nHM-<S4X4%|cYyg-(HY;)y-?pA*+q6Lv+_LH0*e~cIC0630
z&`y>)g9ujbx8RDjspqhdJo^-6@dr7xoE=g7sX{a7B^gEx9tyL8vmA+5W7@pmzDmnT
z%(!y~i)#+hy_+J7Ak@4yUV8Y`Mglk_cKBp@U3hD230L0o<7>-*)ncbpcWAxSGM1PK
zvKa}>i{Dx4bCf9MXVfgtH1UiFZ`u6QxwH2@QE=tdnxNB$&gTO1TI7%co1d+}Gb*Zr
z$PGrOYMLn)_;n9kKTd=Hv?MzAA$VzOjk5onpM@<Mi1&L26Z2hBOQD#f@_e-1{2TT$
zjhH$RG(d=1ChXTy`DL%94GQ?-+Kd&liA0H~<Y=DXviuEAkVAxyEX@A>XDXhjf9*H_
zQ72W&e1sPM!8Z(V^`cK2_&FMdd;ZI>V?jc%Dhaucxr`*}gCHoL4lPW(8v4uW9)ANi
zAikwXS%3WO_`jc=I$}TVnG6P5ui%(qM93fN=i*r;|M?1}?AGk0NOt@)(zUFUBTC*9
zaqzAT$_He>ziCVOg^gG`2!`gIDSer|N0y?<7i_-dfq+~!+HxLt%YUP1xE$GyQxPZD
z*zXy7!>j^|nr6_gC=|xE1BUETRS;>GA(}3>F13@lWI>wkl=eOs$6+1KFFphdq)}b>
zUa5E%Oom_e%kUlGa^Ihe7KA}$D;cV?6s2mG%!S^~qxvly;!@?w=yz!4Y5wnfXdA)E
z2@e%QX8G@F3?_N0r~88LvXb#<wnf|HkIfHF`6RSRwK{al(jQLtmS*ny$FV!g>z`l7
zJ=`C!UYRL&rvhkErh16U=IXbFqhH-~kK}g14dBxR{*E#cJpz3ZRlS|y<32*|(OE~J
zvm5VlcV9CI0UntGcO~hZpmv-5@g}sr`IK4L;Qt*>P9G$VaX<>JyNhx!kkD(D;7<9-
zP`Ek#J3Dg_o3S3V%p}Nkny&>4qp=g6mz9S}C`}eA=lxlsKlqG#6WK@JYCF_2MDru?
z!eHnI3jAyw`cnwB`tj|;a!k7CdMmWlo4c+?BU>j3L#;&)m9Z1~5hr%`+FHd%D>_(4
z7Hq+PHp^zma(cLbY#)z4*Xi#85#r}qO3Y`4XKC7@$TFSlD(FV7;JC^h78VSS!N%XI
z&P_$seUr?^Tvd7o3jYYXdt~fUN<$DD0jxP2Tpvy@+*zjTWSrY#9*`$^;?y`;oPx-j
zq#IS?Z&v0LdGb@#j>zM*-_hjuck&bU)k31H=4ny&-^fWA%TF5FTu+KUKgbfPfOyf)
zy-d_4(!6h`6^I~=NtO6N-{8U}CBd8-4`2X^&jp-By$)>QyEpgyZ7M5(n;=Vx^g|E!
zCvR4PQeB7LSU34Sp@9o(y72e>z{*YvX0v6gA0>^YsGep1XiIwGaqzozT1RrG7_}30
z3exNc_n+g-F=LtL|CUxshtym*DD$Iacz%@SvLd32-1upj%rjzF3OTnh;2m{pY}+na
zr2Y_dv$G$Ivn|%zQjXhszn5VDo|W23v_G_`9@C)z9=aO6Z$<ZBW*>p<g2^vo^S4Yr
zfIAOoht;mHVB97QM@HDvkce;d;%he2Cv4rt`Jhi7)Bn`c>~Rhj7iG#KA76;W((;^-
zzF<HQn7GPMJ^Q#@+P`)xl6C%BPA?qIj<1Ag7N9$ry*PmFN=J_lDLI6UHKOYGKasj~
zgD5=26qH$!i*Uu)mL2R^NSQf^*0LKx3AEpHwvwrC1ZanAt8feuEDu$lwvpp^8bfWq
zjbJA$ol%RVjzPWZ7JnU#NL8C!&=djFY_6HzBDoz)E<JO*#6weV1o>BRmNs#}rEu(?
zoDC7XZgu}n(Pk$ZMAZWNr=-7@1CzMLysqA2a_Y(VUE5lBC&XuvNw@8>d=kzuo!gCR
zshG11N#EMb0)v(r=4Q|oW6|~c0zSsEoHW!ID2LxAVU`cORoGm%C-wy+*snkVc6j2}
zvbvSByu5AQ0Rb@D6X#_*D%$V3Rh_{z_=VFN9Ml;4KSn`jGldKe+(7;HDKknl{Gqo;
zt0}B?J~JrqP+G>r?cZF(W(kr(D(TgSl0M&o%w`8_gwCFp#d5FhH+2kKIii?cwF`9%
z-RS4I0t49Wejo~idPn`-$Yqe_6-ND7&Jydc)8WU}{QihehcW7kPH;!=8OhFxB!TxI
zTSH>Mex>tH6*F#saK2YLXr@&ZdQDc7-1|*#K!?o|iN04!%~(Z~(4eJZT^V_Iv%hSM
z0&{LaOIiM;p$(rakm}oi9-2_W4hyNhINkYyrDD`k@4@*?n5f*-48ku9uLbxh`1|Xd
zZHJUT+|wM7gH=3#Tt~%gv^$Ue?`*swlyVm@vgTg8KCcnPbp3`WoRP=X6d%@VG9|=c
zAfF0$yz$$>`?r57`+411<$vt@uH9PmLjvV_XLS}FRAt&(`8zAn1^mBjv^Yk=u{J!j
z{vPu&+s-V7QjSxU7;Ole+XkDN1c!MgUGHl#Lkyb<m`g?Eqo%|`_k)iFl?APzt!b@#
zvbnVmdYzz`0V1kj+k3^N5`(lYqYkBNe=4eZpy*60LNT1()HDLhg^gPz6ZKdY(+WYZ
zzk`-n$l5A<Ck%kWr}DZ5k?ckfj@m`O1R}Y#oY{cCVa464lT@E2mdiicnhQR<@kS)h
za-4j!g?8})o{HupuW~VR>(sT-CLGgbWL&g`TXCU4hOg_}Jz%E!*yZxtB)p_$anyf|
zcc8ONI#$0kc7D>f^g*3#Nye|BoMNKlal#+Rb5I=KY<7-_20;=1o_@Yro67kiM5jby
zhv*k4S+Q`fmjTcb8%8vyI$fY0bW|CWze-6;*IN7sYZHk?#L<L${`-JG_yzEJI<~=9
zHQ0XE^Q~}~w;?E<S=&StyDW%ot*u2u$jS~Deft}g9JKFuh{cXVvNmJ@t2EW#7CYTx
z7ULt#BbQf#3(x}`BN5DNR4)Q4@;u{AI+ZUSUX83I)|;5>XRYo<zn?&~0C!xbM@tw=
z0OFw~0Gd}n5Y`yO4dlp*_-_@~bX!!w;>+?!4XOzzmD5cAZ)}a)ABtF?(JSwpzfmJE
z-EOl*yg%RbwU<p~Q64E#;FQVSc>o0HPA`r9e&;WcqoU)-J{r0Hjoon|#5hlNuMvv}
zeqmatijK!|5LD1~7Hvi|o*g#4xJBvG`2Q?%nyFx)3+|JizU9lX#B^x5Tz$tPK;<5f
z4=+Q~=M%^Z{(&G4<~7`W)bZ=3<<Oh3qLY#0_$Ww?8)C^82A#jonH`I$iJosq2H_!-
z0)F3xvDqBVVwdr1)xsaKn2q&gFOIh6Yyoyh2j@0@ZC3Oq7F|A9?o+qrHXLzo&ynTZ
zNPQl-9Swr&0|RjkrqwIEsH;L29FCH^U6-$(Wcu6?hj>EdE47!|NTZwq;<!3k-6oqI
zM!&T3IW9r3jJZbwqjFr2SLHNNK-&66{)tbnRU!Mrwj^tkzk-S$Ob1jsVMzW#hA7%N
z)#E+maT!hX{6mzV;FliP;y<+e6LCFyf&N<4vTLWX!80$*{5eaOJ>-G>Hev=mK)*4#
zau}b0>?`u$(RAd1THS3mX7$FAZ!=KI&E#KK?L3-SttN~!YOu;EER=nxBS5{)q_3Wm
z6V&Y;NSeKwN&8R4f|HpMLXPp)`2zm(XHr3I@LSUri4fg=I)g<!0_<c{f*Y+0cN7-y
z>F>6=(bf~IJ51;M)OVp3Mj7PP+f~k3jXmq*g%%gG%YF^&g#G2$v9RlWGIQxT1XUv9
zCbm=1MxlVa$|97_JFkl;QCi$&<8YWLSc3^-FGb7`>6~Z_t%atDW4xSN&~37%MWUNZ
zD|LI)Z<~|3n+eH~`e&UbYp-opiK|vyfbeLnub>rlePJlWAJH!DgKYl*jk*?_e>FH$
z6~>f%Fazy3$0RITdoN#NR5ETB9^q%JA60|oRB|+Lj8Exbz4XV<!aIG_dAC2Dfa$Mg
zgc<962m}2e48r6Qn;>2>Uk8bM6G3Z*zD{fW6ujsL%C8ToNp|O?5aCG8mOB&*2p$(x
zT!kl2yhEc#b%TykhXmL+IoId0iSq${$+-)ZGJl-`sML#6!17A}D6HMw{t&8K+=c#c
z8emZtZ#5@&>w|-;$%*R)d~G-S&vP{Z%ALG4BjUzt&wT3;*>~8`#hb5}VTN(l>J3m}
zMjr<M?-nsk+;3xW)$ZINoXH$WL6~5LT2l!$ZJ+w=<u+h@%R)ehgz4<$I9F(v2=7}>
zqQ-V;ca^Fd29Q*_tnUdI0tAlTv>Y(op+%G>{X@b$LZj;){eG{CgQ*WsQ^rmK=!dZD
z7-ATqcR}p`#fDn2nrriHBp8z4zL4@&U0V9wd{|m8wph-c#@C#~0KBsCaIvE2`C~Ab
z*zy=FPSfuVa`;Fwvp6l6LEOZzI4D`>dQzwqhlUQ%IBq7<!}@f7K|K(jRlKZ+6XAj_
zXeC?RtQbw_o-wxl4;IpA3(VtPiN(ZOGmZ`6tV?ET{T2#y!jUf%gY1O*gyV}7>$xhw
zIS&iWxhyRULSC7*J@aLNrrk)KtAN>cn)kwkzGuF^qn!6eT;l%5<j+wcKQ9om(Fu4_
zt8zYgec{y3;IEkR*d@1M``?g16RnTrHdjVnv#H5Yuhw#+6{m09P&?HE=B{*rCtl`0
zi9dX2r6JIn!va}0@Rn+^Nd^pDH|GdR;Y`)9_#WzwwF;7xo|rn}h9U~*^EZZH10!Bn
z$M8w!5Vq8TzC0?8rCl%BF>qP!o^vn&E{2^K51!8;(kVd3@`Sm=T~k=ho}RsfwPr;B
z0hFzj#<Lte1(T1N%K)eOt1@h&wCS$;2RJc?B4ayE+_~F=XUPdZw#dYcpQh$nJ@?Ni
zd6NViN7)!J@|B;Xf6!tjf1f>mImn%@lOhFY%~SLL5i~=V?rh3$f3Y4Ks0xgc|2|Ed
zdtcTdXiG&l1dP+>{frXm#vzN9E~>kxgsdS*8<sc@LFO=Dm!v#c!>^_fDSmz3qYJak
z_;s%x)owgWt1H~siq&0EhJXlfR#&rBxDD5TjD@^nm3R0e1cTU-{0Vh-oODu$NB$hf
zf7qK>xQg}wwK90&enikfO6pklgY0hWzYTdH7U|!sEe{Fw`Gx{|);R-*QPMn>OD!QD
zkCv9XwEBWh3uGX#dt3d1hRxEZzD1h%*mp)G)j459Q8Xv31*jU&{$DeH&TMY*RJBzK
zfCOF7bM5nxPv=*2!Z{e8QZjG~aLshdJTGyimA64<^9WdQdER`qNQ~0Zb_1-Lg;E#j
zBoY_WA9w+ON{Mb+J>K21WWI_7llCkzrN}y3gh0^@Wg9h?B1r&ltEc4lBH}Z*LjTZ}
z!w200VPO}U#H9)<APh}>?m2KVTZ!Tc2T3hU3pmdfU#2xQ4F4CTruF!&KyK@HsDltz
zncG4Vtdyn2jd91FbQ8Mk`>|`M;)>jlcL}=l@cZpm{Y0|penAND7frdfd5<9hG9vL9
zu~=ylGMemR%{tfAPqvZ$Jh!uOeXZtfFw(wXp9`4g(~h0md;9{n+Hn?!nI`kUDj#7r
zQ(QOT=_K(m`1LQ^%$u(dsKk&pY7<UsVgMHUT7q;=MhS%&MEH)4b~a`P`0V8yx4j_J
zxlwWo*K5DX0J%}{->-_z$ivfnqfPrg)6c*9!}t+MO7$SdXI5sXoHXZB`5fy%4tX8X
zil-O@vsu|+0n8bbttrmal1c*ZO<5ieMGQ)u2117-sdH(@du!rG;8{&TZYl;n!`ZvX
zc&_5|w2~xcP|{<XmELFR2`xh7*vL$3HqS`~&G9!zrIlD>ix_dg3fG=Yd<)P7!6{q?
zQC>0Jbbo5E-UwAN`#=NZCR|YPY-mlXt0y)w>IUB#4^4*mf??||eJ@bwBnfC6J0luV
zg|b#6At6Hi!i*?7kRp28RL@Ppn``8ao6OIIYiPWQ<B|gE7%0&!*p#b3Kv)D$bA}Z$
z(oX3)(tygvp94cVug`q9>X|fCa(u{#fgv7M@8jcjGuX@ooy$?Hjh+rK{!}opisQ8-
zwD1A^k)E^EN;D=pdTLx2+IX(AzB2kr;9vH+d>U*I{v9@FKZbZ^oLpw$x>{CU>0UY0
zdrC3)8z&Vj`a=5y4IWXbigbbBbiJ4h7H)cDQs8T(cVWyb)jp__L!E%4om2?&X`YWn
zC6JGcmuybmNVKGT%1H^}jQKPp$jc?=OD*nmUcxw-PiHtxd6kc>EP~Q({EtSI))u(e
zYA+kO6pG-3#7Z&v$org}*-rS_o%OQ0dQ&3`-^90un>MI{KY$L^P>j^GClc4!TD!+!
zB_w|i?&7dA_BQEb35o}*Ml#?9^_RLYq!TAQ0Q(rl*a^3urT4zJ6TJrZ6cuUf#SS|Z
zD6iVC=az6#eX?v|(XnVwkqNRo@c=nM#=lig;)avzk&IenWg<nfg<Nsg#dxoz=CnH|
zJGKu-m$|k+T6^hdV3o36{#u_YjvV_FsJSy(H{je&L3O<kDMwjK)K|{3akrhXBk9*`
zX)A#@3)S1IPCptPA8k}qc8uI&33Od*_WY@^Z6rmh>Jg{>dBJYGZPwIj25Iy&B^bAN
zQ;U8Ut!3x@i|2DgDiz;l+SqURp`9r`JQY8DsUD>jOR=y|&sUPC#1(0@MEJAi?>u_8
zLF8PDZ@3eHrs7-yEd*`6j1mZMW7pkn6U@?HW2`BY{onB0Kold``f9M|$*4i}6hCsS
z4ez1dkU+8*Q)mHAz5B6wktO*G)H%eq4eB+J1*mloKq?|<`b-PX)Hu1k#ZEu<Mm4@g
zaSKQE>Y`jOYVQtnYrQTB<R%O%Sj$5UyLzm+wwxN=0!y~r$vf^9)EBS7`_teY<s(ky
zbJ~3Tl!7sRO+^XKvJES6r&3&b;*uC`!Stz5`lf3{gkvxhG@*nU6we!LcdYrLY>O_x
zaAWt{Coo)8#oC#l^>+K-6-f^S&qu<Ul#b{WV3Xs+qL2M=Ti8S#1=ciSHXDMOs&kH=
zK8dwl^lce{y~UBna~fvct&jmz{xgQ#h@A&x20UwBMjwlC;p0rjv6CrQ+hQ~E#Tz7;
zUFioNJHc28o4V*qPp^V`7P{--TZ;u>Io=V+@lmq|@Ct|y$J13Md!goiqp=*(RLaom
z+heQRCcnVDv2Tc!L|t)^fE?HX3UJ~jEF8#c17OfnXYHu3qoW_&t|z6^If0Q&#-leN
zxC<PH3tx^6$X(4)rsTw*#s=9Nyw21#86ip}*L}kS2LfXa1?*=<2I;+7r*Z>EWyk8T
z)t>iw0HhEi<yh?`ngQwrP;)aJ!5PhA@C*;XzdlY$Sg&__q=?84(e{?lQbEp6wCZCx
zZ^NLTa?%1k893eN3ivSna$LgDEi8@v<!>8(ZhIn0+^ymiB3I<{U`^qLk{fhmsgtnN
zg2GYlFhkYWtd0XmrLXFvllzpiU3%{AOS>4$qTB=tl*FBnm%CpueyNr?k3vq@T9;r;
z4hxQWJzb^{i(f98G4+qK_#G<~k=k}&)LrBfwl79?%zFuji!Wj2uw=zrX{2}tuIv;m
zE5}+!ELJ2_xB#>n7uIya-Ehw>?t{EV&oUMAox0Ac6*mN%8IB*AOq+_%4i$fVo((RZ
z4cGzhEF-(u0e$FwyZwq1GG-B73x%PIUp3RWf%}b-oTBNTbzf*#1heaY<w{xgQfarx
zXh7wBpk%uJCowQfyxK4a3pKJy@Kz2ZucGj-D)RPUvGwkluq7aQ(_J)43vXV~(7$Xb
zc~3ZmVV|_NY2oI=^&N92$6ng{#3uSa>K9S&iwmLMikr$pywz9R_4dGiY9br380XYd
zrjcN_>c{*)SW{%;tGrbl+Q2%_C6BWfRr1Q61qBSGWOOQs02BPWTxH$qRvSMOQ0SvI
zmDGt_6QfkzEoX!qQAMj{J7Xg-B?xG>T$f@u9fnwixx^~r<}ASfc4zav(9k(a9s0_n
zbxVY+{1>X<URC0nG$4s*i>?5fg3#@(Ym<H;jGyxmv@~@u{XKu}0GtXp3hdk_Kh3Op
zsPk1!K0yLv4LlinJwRR77`EJ>YDX~0iSFGc$BHwQeR|?k*Dh$ZlcJbpyY%u>CK}EO
z#`u756o2r0ae*-LwHFw|^X44_z?c*xitlv;97iTuBLza5rD{MnK!DB-OH5&Tmg2BL
zKCZXbon1lTDPCD8&Rb3{5nxwxrx$pu-c3u=EMY$oKeymO<C6VNYrVuy>L@rI_eeOE
zs2r1ge6%P4jqh<d488g{_38+_O`DAh1mpvk5b&=1z>@%bjTPNMRr>sYi`}UrmmETJ
z&{rheT()W@h}_GL7h>xJk$&N4!KR#w-F`3$xO&FlcPQn<U)p#-tB{4~ns^M(<nV8|
ze*ri5$KEX*y>gPRetOdPm_Qn7aiC!v3b62n-$=B-!oBN07liU@Pp1hGQJajbfeGI>
zI3(#Hfz=a2Qn~0>-ynad!p;UD5q;ra>b~R5(fEC#{b3|+g-CYM>9K!jI-J;*>f|C6
zf8)XfMu-bM=W|4>B;2F75jo3n$Ki5J^NGBjHpYX2alZx>UK0Z~Zl4UEu%61b=K?>=
z^i}|Mg>LSS4u8PqrQN(Z4FtpO{u19{w)jX>8+Rs!y%Gex4X_E7557WhoZfSmTvBL<
zj)PkE;RM-)YAPnxAv?;m)uM#&v70%eBe{~=w`c}ch-M;zUGr1#t@{un-f$KaNeoT@
zXydPGQMP%PXn`1Z&E5~TU_vuf_K~l1>uKY#-*<w_JJyoNx7wip8owI~QLy7l5Y#FH
z_6Fm;TN6GIht6!nyGg(;GOtTrtWj(M8(uuL@^e#*;xjWK9`oLcIEuHI3YsahhXvD<
zKkq1Aa5xTGDWo2Ds(CCOqn`gyHDP2q72W76qi$R0$YY3sDx>$nMFozI6+`rer0T$r
zF@unnV7%uvUo+Nt4~R&*gC@Ia08wuGEJDv>RiP!KckVOc@cnd4EiRhPjE2&t3~!RT
zZo2YB*&Rx(<Q>Rhq(Voh?HN>i^m=8*bK!mKT*+E|JwwN8c@m?`=phUox1k|>`)ewW
zCnw6;Vmn1b@>1M*1^PAKK*XlzUNx!y9)Wx2aP1F<C7Vxsv{h%T=7#wQV6I_-$VI%W
zhu*xf6`{EdBCQEpw1+4o4TzRG!QlM_y%Z@Nfvjm!_0b9_Eimn!rV1U16oVZKx$Am0
zzB7;eF%zzTSooQdLz|9C(|Xp)ts%6148>Wrbu4<*zL$RS;@^^r-g62F$b&~tNXti1
zRmPJkq!!|@o~21c(OE6R&JPni|5XKJm31EDl)~uN%N_=`^-ou3y#F|64F`F3H;azF
zNh(NUrqxB8#+(?DhzECAnjb#bNqO(0&QZ1tX(gghz*Dp{;bq7aRN)cBM<`a2FqV5a
zHg8S^=4==9y)pj>-#uTZ<ZgNq$v=43=JS<|(q^V3`-ByAtoINSj-}E;1tRu(+-B-Z
z4&X`3PXk#Q@&Sr3i%YnZxhF9^X%ZJXg@8J|qjC(s)@6Q?W_Ch}m05}@w<%IAmk}uQ
z&rGe%m?$4}$qeU@pX%Fp7#^XYy1DGRoU*i$RmyQ~on{IbxM70W!M&BIrM*dGP;fWg
zsKDvQkdQfl)P8hwZbFY-9wHtGt@onioEoux_zlC6;lOK4VizQ0sc_hhItWf0@@y=;
zTS(jboZFBAddwz7P;7pj#x|nx!L_4V?Io7RTuTCLYH29q`u;DS{QYl<Q;EnjM2?L5
zQXd#CEPwWeyrRFQF!oK;{pCdQ)Qr(}SIP{9At~DSexIi?i+$W(T#Uij{vt6Mr1GX`
zer2;GSjxokNNa0aACJ&JkD3tQI5K_sGi*B!idc-}6iq89J4#4~(h`s_3Daan<ESAj
zak%I{@E%&qKe4$Wx0KO^>XM}^#af(?h>IC05i<HuH^sNdNcdWg)uC<1v))@V?g;lJ
zYXwKul~R`;0mmS^wjUwb77csYTPLm;lH6poiv)>)6aiW>g%RnaE{Ug}<xrNNgi66>
zB(qH1*Y4|t6Gx^CQ{aj3^m<gF;~1DVuA-@A0;_wapl*==POsz@Yk<}KpYg@EEZlo4
z@(e=pE`C)Bb?6RH&4tP?hPLY$8s$iS*W#_83-8fU<oPW@V;|SjU>C6nUEc#eB^!Z!
zIg@yXfp|JGULE=3QbYFw62aI&>I|oWte(d{*O-!?DyLC^5{g)Hsvm)Sb(k6`C{zU|
zMISp!F$QZLTRFy}u7~S3WLgh~Y12Bq`aq`aU=OtXE2F5DJrO+|#~(RD%5$c*oFSJO
zpIbcGAKDl2hmbK5GDGJ~+68mBAe};z6&+}dIJAkcpEKbLNPLO))ifA9ctv8`=Q_3e
zRyrGs2_OIn=DT&$*?P%i=5C8o4nql?ilQ}eK;5o_dK%MyEuKGRd_6fSr6``ayfI2`
zm!C1mk>r=bOt+tPHdzYSZ!z0os@39Pr4{Fh`H0+ey1JW&Ya?BH%b5t=$_Hx}_At(p
z$U`U&6j|o_j<;9dI^5yn8Z+9k5hsYJ^Yv;cbZJw;%loWD<iTyUqCWKy_fPI>f$*MC
z>uhlT8dp(X7}d9r>m435_(&fWK9omJ$(*jRg0~zFUyF>b8%CH^H#OW)^&F&bbtmbB
z|1)4!NL%Q_+Cg}7R*lN7HctRHtfg=(GJp;6k=g9D^_OQbNjrVP;$ZDNsI%d<UvVw3
zjAgJ-YKSF!C}~GMy*}<J%MAPOW7ZG5C>5`H8gns%ASYM{Wffx<?CPAqi{i&Zvc5#S
zAM@grhZ6hZ`|2A=IP&jEDF9u~PPLWl0VvzLL%s71>On9dVn-9E?K=$J5?_HS@GgjC
z<2gmOX|e_@7s*~<a$2&Qekq`M0b02&$79i@JEdiEj)XB}!A2bCVLl(nwZ{Oc^%q{G
zr4BJ38Pf(6rVR=Tcq$I1Dn}q0nJIED;Yoh&j#{L;#r~O(H#K5S)woT<bp6gJz7k83
zFa%n07{)i}sk>Bp&!dBE3Wu4uDShb(XV+vWyMW;^xngTkpKA36K>}Pr3M;)B_T3Pv
z!ZEEq>F|<XJSPrS<=pM~oxo4vqOGCaNu3*0yp-hGjYI&}-7;`2jVj|~R!91Kbt`(j
zt47#-mQGn!C7@sTqXYN<Ixc67QA%hlGd4;?Ed_kdt`Pb?QCKSKn0m`Om`_F+ZUx1@
zXJkk~%!*-!rpyGmZOrmt1||IwWyGKYX_(1#!ClfOT`X-!bi1t0pcN0~@U9G7M6pmM
zx8NjANhY#+Tb;EguIWBqr)NmjG{E@9w|aWq7Gbz0A7?tt@T$*QYz(S{RzaWq<<1R?
zF7w=_Q1wj=aibq3L;#R@A+z{R*Fsrr-Ipi_F~=oDyE?--w^!+5-%>pXO4fgOM?b1J
z7mB3Ip{1qyd0VNbMN4y|9IDlB<i|tP;BrA2dum4Twd(5|&CtcMWEB1;5r5Rr_6_(y
z@?Bg5>{~<{WE)SIcIYlcU)T{l13BdbOFSf1X@bqW%+T(u$feQqXptUMsIE6;s<gEo
zz|wqk+z**%A%(<V4ww}d8|8#z1O5n)-|5wq_t!+v9}!J1f>7HGo_><Al@`+}s=Fc)
z>fuE@&=ZNPw^A~|b(-5^Ul{&mOvtJ3_XaV=8w{B9u3DMNXdcPT*bHOwCH6vt<xAL8
z9^YvwG3!1GXiwaJ5aSm#EDW!hcdL8KZT?0(%`9q@LWBQ!Rj;ihi*R0jAh|w9Dqjr*
z;K58LrA$73ghG~Q@3=@fDjc{V>?<BHdNf^JD<sy(e3zt4jenpkCqJ>^eS|f%z^b1}
z?L0OnYFN}e0PYo%rF03eW``_dmy9RL!PpF9SiWO$Rnzx^6N2CVGVn8ti6HqR!Lr{e
zNm$IlrCWL04J3>Y_PlTQBMCY()Rao#0C;&c#^DhHi1w>d66zYit-=-6Oo~8N0X2wt
zlt_zp>CcxrZRU>+tlyP}Xp?bo-FyS=)#XVdqkV-4lV~27>bHl2SpfHh)`v2+af?@@
zs(e4L%6i)>arZ)+>ZU4_^TOKkV~&59sI4aKDtf7<Ov?Ec6*1I<qXcsbybWrN@}r})
zK9Va1Vzuea+$G{KAuz(dCt+wx0}PTf5@hJM!_Ym$@NLD~PJ4gdKneC0>WsDo4B+4a
zyaK&$r7{<71ehCHrpBx(6A<D)p5RWR&E@cy*DY5nL1S$y24+Ki8l<D{M&Up_l>4W5
zqHKd$a}Pt4(Emy+mCnTh;g(rpQ=(H#C^$p>4(V3}{QVMAw4tdOaV{_T2rr~b9Y$ue
zin#{)N_|^{BQ8Z~R2*=rfh-SQ%s(?UZcDWy)W9&QMO}-+c2mU<SW%=r+ZM0XWM0C+
z<<`MZ!t&mQB%cPJur=9p!iBY|-e8IE5P|p>{Yf~IFy2vlBK8({ZQ!~rx@7IJ!7#`@
zBtPjni80rXRBj>mR<q=*K+sbsVYVVz@vX(nt5g?feP*O_$yLWgZ->pIw0wb1tA!W1
zsM_dlApq0@!G8-!#j6>%0Avw?^sHc(?HSJ0Vo&R=CvX|!-KLwuQHV6r5}5&h=<%Dv
z?cP+IMZ8+5&Lfr+s2Bx3l2G`ICeRhlU|-Tdyh{OjMLnMg#qA)G`<b@k|FQ@>CH2#4
z<McJn3UP?`z4v=dEEdV_oLb4^nE+KmL?tB_GAihENGB#-<19G2%Biuvp62IS!Tbt^
zZ-<%sE&P7#)&(9z{-!+5RyUt;{FdgNZ_^@3d4o*eBA2yhnh8MB%Qy%WZ)gPn7ySYZ
zy<Z48*i>3$v)Zw>i%Sdi18bdpu=}@2>Nq$~>?}lRDRNJ*Hc)|#_HHS@{Y3?0t2=VO
z^kjwei~p<JV1Cp;x##>(E-{yM3I^h6hjbmWrb-so9sy&XDZ>0>>c!8(&Un9xy<b5@
z3qRs#UY#nx2}hnv`hHzX-u;7@!E)dwZQ%cYE91NkxJjFfLm<wxH0gMB=LB<em6;@W
z2s?rYCV&PooX9cQWpjD8aO_j}lC?iK#`b0gMdvMa<BUmuLGWcG`at=p6e)_Y?}6m7
zovPL{|Mh+!4PK;tY=ZGw_?WfC5-2)~cnBTEP9a%O_8QjFQ!Kzt#13xO^PqrxCHm^i
zCl!@$krcn;HejyzJm63uQ#A?CuNt`=I|b{9^w~qXX@(*<Fl(bnEOV)y97}|jaNlP*
z3zL)~&k`MGhb)gGPwbd}1D}kmrmyP6i`SEV{u)60v5^UBW0>RWb|UZZEu8kag?atX
zoity+5Ow0x4j%bxDh62>F7+lg?$Y$ON}~*kH2JL0Ztl^UxO>|+FD>!>hu7(2dFbCe
zW>8VUS$|vPQK=BZh<zvoex9Z6e6+-#98tVR6q%{#9?^@0>60b33ny5fBB8`;AhED6
zetoX*b}O=vXT+%0K+xH*vn`lieI&mjGN)p5k##`g=_T{f9K_bsPbg4yQim7FQ1+(b
zO}Q-i6&V2GY@=Z8v1b2S<j3ZqmXRjsB3=c9w0%2mA9Xg#Lzhv+C0o3*DmL*zLjnQ|
zQ`xX1lXwW7`$aatmHAi;AQ1$Dew(+`bPY<(p#-9(u79(}3<Pb!33{8Oiw}?O_o1a^
z7);*XkI2WXvVA<`yvFb^@LTz%uGK5k$Y#o0*XdB9l7Tc~5OwGEdS1XgJ3JTEv4g?3
zHlY)L5l?9k3B&8Q>@+KpXJ+wWo6P-ru;gv4Tr;Uhzb?!~&4&IC;z|#4-FTM1aAbt{
z+HfpGpn}s$<>>7@Q~Y!IF*f4IshN?70p|y{!`Iy@XL#qS<U>o8sng~1-`!&L!(q_3
zms{}Kl-;p&AD5!|IJnyGY8pSOKYPWk@fFm67N`DD0T)28wDzC`?a3Fwmc0ubqi3d`
zi?4y_Rxf19l`(3SY`_nw=iErT_M}3>K*Xrm1%#qhY|K~4zhjVsmq<j7e{*I(y+}Q6
z<>yP>M1g(V<{5@y>f$D#9qZK4(TwS#qC#%z;aZz%h)iddU?HeTK|PeD6>KdnmB2=8
z*Fa_2UYTzRnB2wrDWPsCjJy>*;1)Fs^V)*^C#qgCQ7KNKA5?5r$^r;5dE9ML_YNBC
zr-^Ens~*}#!al}=6U#j+s?M9mM^9n5Mj%;{v0f+b;0iB1_A(-=%0oC4PW=X<_E|bY
z{1u!kzLkOVTr%p)(YXEtCSZFv!9k&0ec#=WhqTGvn0hX?t34#Z{0>4HNZ;ZmDM>}?
z8rL;`*Har~)mVGf&~Zk7w|>bK469AhRX7*<#@QT64Zc~@<I>7to>e7*HK-s6SkXwT
zIbb%&6|_L~4tqaQLNDqxfA)s!Tj?sEq!m77Va`YsOtTd}A>nd?1L@kOfT_fJWx9ju
zU~nozOsl9&!X=}CV>i0RuDuH^67%2^5>`_Q`<7jXC%4An;*1msKvCih&gSs$z$1Ez
zCTvfIcfg@@_pw}Pa?puX5!c*6q?jX$)G2%<L~6p3NtZS9M-@iMlg6E6zfpr{_jbIk
zOETY6v3YY&sy2>Te(5ba*XA@`>m2QF3ptD_gk-jpZ5~?o8OzGv8}zF$4iRT`kP7dk
zP&VC?v1=KsE{#XRax@5<q}V4-RZx|)F5_{avE1DH5H2sBf5dM637{(Tj)VOI<6#zd
z^L4<dk$l9b6@2dq*#@#$Y9J^aW&re(vJMM2jQVA8eP>v>^e4Nm_k5%u$_<uapX_f=
z?5%kZ9OVD2yDyXm{yXjVV>@JaX;NBAVHxPLcw;*tG?2bLg?2;*<gcml*R*V$_#fc~
zOxyvUWpU~~Q1B!-Bb|w|hljR&iU&SY5w5nGg)<9rggyYN<cqss+(!_!PC=P6h*8)E
z52C9{URJ97S+JW&HG~qRFhkQ~Ta^hcrlqHkPRmN=nXN~iPM1YXTj!9>T9Y4J<LLv|
zYr*RQqdGQ6vCXb1=cW}e{ly3!RpMB?vXC#YP-L1Sw29JyNO<^K2M2(R^XVL6gr)A5
zwaB1~1X?qWby@5<Alqt(pPA>eN@!6^?72vD+~|6O_5s$pGPsryiTtI`9PQ_1y5M*d
ztB3?rf;fxk&B@$K$rqGX!z93vJ{<)sUn2a@5QrSJ;B;ife$N<T2V)b0Cw*Uv7c|@r
z=gMl32P~%;BtZ+~hCU+4;g^7)sA<IO*<=xS^uLmNdSb^bRD`CVC2TyMyWw80Adw+q
zEcf%M<bL6U?Fa}oyV5}yst@OrO8e9_+<C`S8SMu18264KYRhFn^?$?DPA;l>C%*p5
zj<m)0>MfdS{t|tXZ)qa_0&GUbovDR*Hbja!(bj@a2Hk&vjG`*|#tdwPFZb>LnP-H%
z^(1iNE5Ox!sjnjw593}M5xgW;{G86&ZoeKJQIShDjR{JAc_MQ3+XkvkAEnA~TDa5b
znKl8p-NPRLQ4alevqV5ucq$n4r%cRjQfwM>QI|cjCW6F>7o2^W_IMurHTOUB1Wy*?
zgcW}1WcP>LS)i>&I?UrF05ju-=ztr<b2Mb}BDn1wz1rz=I&Vn%1Q1Y<>eum8B<XdY
z*WT}nY~(S7W*_Z1ehuJrF+s#Ms)2xOx9(aI!eC#uV+WWJ)`}G=t5-XSD}PxaC@g-j
zb2ff@*_eS&VtywIkg%GrjV@6Gmp9ATsG>l!<Xr5jj6(SmZ9mHmUj>;n2L1}EEA-$5
zgpfP%JU+@26O{Yo1?_n(lA??mmyXSUVq>rHOQo@ool6eJ(l9Jdq3J^jHPMMn`?Fx1
zD)G$yI{j)GwY%KHLx2~KU&8<kD>rYG;sz<u|H9)?D`wsYFEjEpn80(m`d?JW*1%j6
z@vkaY`W*SLS0<y{e4`8?Y=Qacm(e`n&@SVjK|l%(7-^QE7N7DG+ujU9H{KRr0gRwO
z2ipbs1Jt}Dd1t*s(0tkJaj_4|b;fXK>wfjd&iHnbGA|qB?QB#ZfwjrDDK=b5T`^m^
z{9uMiaq21%X_&Ql3-nyhrs(wR6ZO;7L~wge2ZFTVScr?dtx&OLh~6KZ>MyXF?3f3}
zM#hO)oYh)02jc;g7uf2iMTG}bbF+%BeO&||cz|9alkYy-A5g}3?PMx>Ts2+!<J*P6
zKZT6)NS^hTK+WtqCzeUMP>0j8ee9X|q_^LGk2c``{{}$HEi^<<8<dEN4E->Cl%$(p
zm*jib0|JMW*S7eXUjJO*Y-`cA+hBf)qx-;$zG`t1PR!cpi>V=Mi4#o0hX$9@i=2=b
zKUoqz#Wj+7vegyo0LB1pEmB%}r+FRfaX>dDk@l^?@B6Vt`9H(`{f=t0=ccbIYqA7Z
z43?#&Zhrv%zpfOmWUyQ~8a6S}2|MG$1RirUUinB3E@S+t(4}JP>*!MZFwbFL?uA=A
zyblJBB^g~~9Rv3GehH@EKwDM}QRsDlod<BkJi?V8$PvN?6>Gr*2>bX}r7qWWf4AP#
zWM!q3hY2`{rsBGkbCBj*)G<U>1cERMG#gY5XeBmAsNjSZW8POt2Cel%KtSTW2gLn`
zva5+kNO0+hM1C8gD4muq{I<pRC{$X<i*N=k^(u)wO2DxX#9Hh%nHg$(o$_^ss{FfS
zV2OB`oE#?iW+U{Ss|;2Wv&lJC#)$>_TKYl<{^uQUNy2&+*4c>^YhD~-hWoO9W{I2v
zWuC+8=ahOlZqF!XU#PSk9^H|6wmP{#{E%c^g4|?!D%K^EEFOl;v~|!^=!d~rlV6Jy
zqvq;pRw-rIso6E`BQBaU{O=oKMNM)70?4slKzRFUYd^pwyWev{Orb3AhHp$x6ce8?
zSnSxFrFf|H^bSkVi!loj^MjbckzBvo0{_Gxg*;>Y!)hCNWVTlcATI>aUi$6}V9~{S
zP#($8UeWg9im@J&*po#!WS;LtDL~^$2LJak3&%08&EpHQ1T1t1O~2^<{WyRq70G>6
z&e!F0p$8=+HlQ*UXYh=8IvRz|Pocjo7nbc1)LH~067$nFPV<|!GAr^aQ{Kx?3Ki^j
zwQ|r92rK0>XE#Hv3^Bk2!73!(Hn{L6ML20EMZmPenA3P2n?h?uT32cGr#XiIJG>z4
zT~fz^bDCuDh->eQ#73P3qEh!YJ|uJT^!6Z-at=MdgH8uIeM22F<$^7sHdYnS<f9r9
zqleBX&ur>sr!nYZ=}IS~uTX*}(yxpW`R}&%jA1~Rw$E8ZHnY`!YNVbH4oY!T!~XJo
zxU69Pfyk|%hvkC@{2c$$L!RNOit}t*tK=bqZYUS&Hc*WJL;3@d&l9eGch?Wgdr56u
zCMEvuFGYMw7AE-N^h26Y`LWY^%D=kv9~vCC$SFT;ExCnAY!ouIlgEb3uoXSLi#0oa
zl$NKunYvcic~Oe^fzeJ(u;%zmf)PWir#J)ImU;uwJ}`<uIS}?3sjlq?#o(7wZxS*t
z)@t%%_lL!Df*Xx%w11-E+TEZUb+#&Rs0)py;HguR{Bu#T#GqLLhz;dj(J_boqniyg
zcECyiL$4;q#&SDHK^hbH6eR*vhdd=lF3X9j306&Es?RT4W+N*4-*LM#Ikwf#bqJ@&
z7!_M6Pjx*L_X;~T*3xteoIhDd&mUp0({^pGXt_tf0s1{Gx$Ii-5yV+X1zjs>6LNA{
z;hFa8t(tktJwQBhb(WQz1*^wyQ+e&ghm~{;s1!qyYIbJD`v55QAG{8sjh@UrzkrTU
zVo1Wz{kkbZZu`GfC9AlcgNl2^>3%z448*3UBUskY>^RVecTM;G6BG_iycsj)Xh*Pt
z=wS*&03!WZfioIq()dF(S=z@ibJ{UGEgqs23tY!Rst-v-_a|L2OF=u+za8f(9@pq?
zq;1A0(wLfsl4W^R!pfM?qXno4&wk5nYwWXJ9@Ma#zmTYiB+-M2Wga$5=sf^4S%g62
z%v=GU=J3!i2*<am-u0C%Jg?Cu^@^tMab^^Uto!uiDzi!If3)IZzg6k)cuol{%MxMw
z;nR@9brw5Etmd|^X&v{j=WV>|BM<f7c<C02=E^hd{PVYiFBKCwN1YU$+k51-L6_kl
zh&$xKGrM7QVi7W223gzwOD$PR+h?svz$*V{@9)a?e6gH6ImxtuLE69!NB%Y6etTcS
z&UW02A@Zc=N5fzUD&5`zQ;U1Y#9E6<1;;^v?Xx*^?kPEYD%<ke0#d&M{r7vk2fd{b
z$Lvz*bNKoj%xuhjfrw$K4?5E*msBKcMpOan>PK#%IlIAK14wYZWsw}CCr83#1ca&8
zaeqz{2hIh-VXo$dD6nZy?c3OU2+)lXK5fb(0mQ5Wan^$V_Km3payJJtUQe_dVpCI9
z*02PlBMho+v-k$>x6U2cI7%PSB6ja34>%Pw`%wxi*`I@t_9CBg2w{E$Mf|zan|n`h
zJ00rL-kJI8Xm64&aG(+p@bMz)lG0h<tY%$1!-SNSf{Y)u_wzNKFkJn?D%|E(1)gh{
z5nO~zwzJ0qi1k@PqYtBcPT@a`8Sr~>{qnT96VLepG7Ee`&@q4n3gHJB3lR(ef)!Ep
z2!Xg9EVw3ha;h<hGn$fo)qq|$F4o+7S(KIx$V0|5F6Fd;^DWaY*1@P)N>1aj`}@mJ
zLDTX&IER2Ad|4PVi0Rbog0K6GRt7f|JP*+_(eS0H`^unb*Jm6lBG-L_C*&6ciU_Jv
zb@uK|ePF$O;RK~_AY;AFgE&!EZ`oL=IfdMKkJ^Yvnps+RBJ4jgDErGrXL^G?_V3Q?
zF#f?&_c*d5HmlL*g8yGhWWXVLmwU%IECx&CM57Qjx^b)V7R@$1O&5DggBC2{lEj<1
zmQ}EVCYXVMEX1}<<6hE5;Wlv4mgkY(C7xAlweVJunZbvqJb1Vd;6xzfSWlC7#qh3;
zkRiI*xoa&>K=5Psh$o(cLi*8l2;L6SItNGG>xqi0M~mnuOLI-^z)zq-7M?U(*92H)
za#Lf8f_?FPR?lAjVDkRg-eP|}d7S2nn|Z%rZmododT|A)B!gE$OUs(<HTTuFau`)A
z^;2JttY5$9MHe|;eX-b-PNq~woJ3l;>rY6&!kHhIqoyioVcc4Iv7}mHYRG==@B|pQ
zha&;cxiV9RbuFbbEILLY9R`rcsY22&%&8p2=V<yI``iWjGs`N7EW>r=u`ICBidcYU
z*e2J#NcJmZuesIW9V7GH3eU6P#tE(Tjr)I8=<gx{$l#h8{(->=o61?s2bpKvlMy@p
zcenzR)d)=xm;(G0B*Ybasv7{8o>$isBdn#ouba4)$Z4;o6(Rj+ad$;eey^7ujiyS8
z2#tXVW!T>iSK>vHy%P$GhfOwZi;qF7qV$}+q=Meb!pa0#@q!e^U3d%cLI+pW&v8T<
z(O<ZTe_78=R6yY35~?}`FFblbhZ#^_+D~cj5d=X?z&HoWtJprv^Gd*o4%pWeN91}+
zI9OQl)s)YMxCwI;PG&ZxBIhk~pE)EAgk<O)ee$Y01&CO^8<GDKGibg@Z#RK74roJN
zjPAO$5s;5kX0li$gj*n(56EJlOMSixK`(0to$+y&LBy=C)XtpFFQ+mT?eT;Yp5p2C
zdW$SH2FpU1i~+UxS8qv?7^_G}1aJEitD*{m&*bXOy{VR1ykR(Qa#UcK;bwEQWfvDA
z4=CoD0QC1^Vz1_t6vt5ykuH$fSCc&`OM4f2PtQOtpU8|M&+L9o4vM<c0`UUWSO?q)
zJq17pb%Rtu3B~ZP8{l7cnzNL0w=soWY-!|*(K5^(Z9Vvozy(4-#?IJN;FYUC#SX^`
zZauJqEiZdMM1_Bfs^DGMCXv3*_?+87$`_F?2wQGrkNKWaUm=F64eL8|Im<)sl$vnk
zb!Qkr<^Uky`?jue@oc4Mn3F+mnAz4jvuW;u$;AL7ZuRF7w$j3AbN4}cFQ}Iq1V5nJ
z2D~j1!d1CUYq_PJAe3$@zb+m0tf5vo<RBVdg3fz)jr*8moO*+18G1_CDd*OSv6h;o
z%@nuwIje#@GQU+m|Dz^dQtrXmxC>VpO1!u=k?RsZV+}zJb$?xKW=vmKgb0PG(rrGy
z1+XS($w2G&y>_rt&ka=}@9CVl9h_U7?J1HKauc!T2uYD2e2VaJZJTdM#4!d62X4(O
zzdcInqmktigmp#Z50_+ngWmC6utOE1n;T{<k**s(lkQSY@a)7)v-xy5u{Vi40*Q;n
zqf7YG&G+ARE%Xt}@Hf@MNg`Li?!3=DGvnK>E;i8<j}qmfH(nR$JdFg^YU91kjRRW)
z9Srxpha2w+e}IC@uuF{!PI-~$Kgq&}b0Cx)w~71w<+_Y|<?p7&Cydrni#N4_u$=&M
zTX}Ux6pE-Z&9#D=;&ff}i*QiTN9uE2r3K=%X9YjxlfV%cS^kfB?v9#ieU{EMLzQy|
zOGPWoBHdXqdS;C%6p<2(|LLDY4_wk=q`tC3I_xaQ86KonFuQDXq(%}*lo@qPCC4$&
zcF<olvTuP(F2ZF<@&%e*Zr2<|1~!C?{ikE~UX}}CLn<Br7w%2}q~qFd%@h6~_+-Y|
zZ+w*XimRXi0r&}~&Y4V6oB>a(+~$JSqrG=9Ofr^*xk?&kBZHCJG%2LdZ>8hSH%)R0
zSL;YWlHK_yZJvw}9R)B}GYfH3`qO!}3{QXpU~wm}@CNErt<G?<v9pt6IS5M)e<%RB
z7G_|IW&EAKT1Ywx2fvhKX=*}T_1I9ACol*D?EWElUGDhFkd}x1Ilf5~q4A&2gYRmN
zJtpmZy0lP?AI*UGLxuH+cqZ~C_G$weisI6NmimemxoWyXn3i$<Yq|J-*jMQOa-~!c
zrn(|o^bzA<N&O*bjnY6s9<4oS@9JJYqEtjEJtvZ(ank_49icK|319iAiqvPk9DIo9
z%3K}f%tfbowsTC4iBskPUm9p|E)%l)Yf2LuJ&GaD%zi9_!N)f{fjfbzNQxbi`1?qS
ze_j!`zak074E*h(?qrC5E=5B;s-o=~R1uI8b%cTm7|@O8r}<3Rcd|QSklJSz8kgl6
zkK7{R_R??h3kq*mV^u}Yo(f1Y^7il7RNKHW)#PQiNOyle61aYuD3NpGT>}e5rd7HJ
zrsPuE74L!=4;o`o7v0j{((@d9!g<!wXjk(>j9b^E@3eX|DMMFh8<Dbgc%;3;tnZah
zMW4=1U?@SCeB8XZeLLEN1lBn_W%S$LLXv|*ksI2=+~-O|bK;?hO205K^d$W+a#Rvj
zw<4UZoq{i$dU7Z229j;sJgx%0@P5*iwpdst^wQV7B5jX!#$xOw=JvtUxJs?We(@UU
zvgWQ3P0*K*;p8_{P4FwIAf#q(&&qV4q7adls9mh2?NCA42ejx#{Hgwtvk^1k*gAQ_
z@xKEEDs50yhM%I~&j?a?d!E!0XP2^d0^B|NE6s4oS%9+w$%*XoCYcxf6_pROb@lcl
zIiz_6=v~rZDE(gRn%C|XmecLgCd0=34$`9x?7496gCKd1FRs*MJ;rC8KHpX+ERYAB
z^UJHjYSE>@F{upyzkIf+2(h3b!M=vWG9PC3BeETP7Xr63$75VTvj_d3YhZ^dUW}Yl
zg$`nf^b7`}c7JacVu-=iZKp$;HU#*yy7#G1u%^a7bc$JmIx4&I%VfCH*F7|%^=P}-
z+l<BXR2l*qVtQ!(fZise;z9tiGbaK<&)<wZwGIo?E7%#HJ%Mc3Xjr1-bu5g+_#J!p
zCI*ezOy#AQG;CAyQ9-H!sG)^VX|2ft&5!Swp&3a+f~j*KEB{s`VgJPCe7JhvROr0j
zTl+Ir?i@vGb%(*j8j5goduc_RP{^$+|H5&d;3F{93o4#R0x_gkV{vvtOj9fb?t1Mp
z{ckYnK`uaU5q)`GpEoMM4b8IyFw0V#75^DwbYHK+?^v7~$YhK^Ir1~;eP+Qf7jZr+
zoC#!QYn5%3*}lEpSiL$^cLNKTJ~B;y6t<mBYE8mDVUCKk0qf4VyVqVlo&e0veHc1~
z+bYoo0D>AlOHPdONV>dz^#3CMowiS5&Hf#;_!?Z3R=-tg3w-_d@<dk#9GI}IC_rcN
zU_>b0qhJNuFv3z67!3@~_MKqX(gTSRiI0#(l8-a~7}{^d&dlDo1dPzkIZ`S0Ve|-K
zByLEY*s7H&4`tIRyHWrgSXyT$(Lq+i*bEq@pfWAl^fzI|##S{dletqui<s@`x|K9L
zmH$2$zW4EsO<m&YK#WwM0Ba=6h`^rfZi?VFVk(|ZG?(LThIVtNBCEDUTG6x)6a~~@
zTk?wxK(R_L{`D>(Z6eF3o6ZBsh-@y$<8s0y7~v-$)>SEk0LBGDIbECO233j|h-{%1
z@=@E``Cvr3^844w2$UcNhHcfyOrP~^J4ba3{b5?Ng}cLrDkASo!S*QEOHa}&?=+wH
z8ih|X5tZb`BGG8_Zg}KUV`_vG<MG&$$+f4%JVy-oeIoucfw8Dev__uvgOt_G6YTM@
z<-y%JKySk!FD6s7#JzWZ9APE`{#DQBI2GOEGb*SxWTRo_t$-Mn)K8!^1OO<jqs6t}
zR)6xsGy5gg{i2Mba3Y!%ewmJtc3_b-;L+t?Im1<VFd;1;74KYJB>Fkt$!ZuxmgftW
z+$fr$bKsPsRk1z_2KH2UU$kwjoE2w-@R`*#MD{yuC+a99VJ@di%}3bwCPK-KlL8g2
zi=QiLYn(q;0~|Fh{fYk$)v~`}Pew=^CEqbQ-tDC*>R%xw1G1-oizc|xs?*54eW*by
zO#VUo7*Uswe%ww1TRf?t7tBG}|GL8FN?%g7Ev8Tbq*uvziT?c$7Ni70Z~XD+CJ;a?
z!{c`et%jU>$C>k1jB{FQhgh-BBTWxGsr7Z?gH{3AY`~j$)c}c<ozuDqDYAn%ZQMM=
zrwFlz0m1UNb9s8&n*HX8DrZY4lK9!H!4dE4RP-Kzdv{C$vm<bB<^6Ka9=O#d`p{*U
zMq<Vb+5A*FMX?UgqP)iZbz}jI*t5hA>4Gm1op;M`Q4@U8mf!wg?(lo~e@>S+bYu|^
zVkqr(d_ILJ0~1$u)4zM>ycpJDl#5U<Zi1?8GicBcN?wrv8t(F4ZK325elx$^x`7LT
zlSRQ13y$l@wOW_%6NKlWB8@DGadQxcJy+&kPn@85B8NVWSl<=ens8%WIaYXU!|!Bd
z{rKW|YEa=HX$P4(aLj~OJD@l0i$n*m*+}|PSyW%DcqK<?Uj$Od1(7K{^_u=%E#WhN
zAsrD{3$Z-X9AQ~yZj6S39@z8tSCbxV;|d{|(D!ND7cV#Rq+^y{`Xm^C>r*<Dt1{wV
zh@zOhAT#C*d7tE%`8&HPF7dGI1W`dl&U+BZo_mN;&^ryv8NCj^ShkGu0dC0X)-_oy
z9?edKjk%~aT3+)g+8d<<zgyp(*%3&;<3oll*fr9a8Lf9HqNUCMy0Y17Lyx%=VAFts
zdS`oR{uo77w9j*kT(btnE<tnE{fy8n6B4JEf9T1ZfOT@C)#NyD;%kAqXV`!Sb~(#d
z6|YE{%7A1zk=!S7z!p3k#wl3`2)vHN>`F~5>vx3pQ>vO#rVKG<)v=p<2_?{wX(6+d
z0+SwPRx4`x11aGo>Mg@Moj=3~PqZ}z{5f#ENgz#&@$!5{#i7O5Cj^TF_I2E4N)BwK
z8VgO{IVaVJuV2~~%J>?1x#jMnbjPkE(BWBmtfN3=ZNo<9IND9j!k_!j7Z~w@z}TQZ
zqENab-SW=4JUwCj?_pa-bY%yvd~<uE7(A@Yv2i-@`aPTi_?K^3TvxzZUo1~j(O8qx
z?dU&`OQlX)bDMl1KQTs@V;^Bgt(zk^(k2Sn{OY9R0omnrG3@H-o;`ZecT2N{B4NcQ
zz*8T}3X2*3dpG3WI}Mg(Vm+h;-fU8fZJQT1#e{up`<B$gakBL$XnUHJYVW6#kqY2^
z?RgP?Bhj(pH#93}hDX8Jk$;*{U!qGw5h82JzqDO^t2Vi_>%@E0fAziCIC_^dz_1Jz
zWDQQ{@oFE``-jNiP0VaDAql}bZp0a%3jl{YN^+JS2A9`|MKWXSQu>ddr+N8}D=hpr
zq!~U&g5_a>`XJ*HS#7FnA3d53towudb5g=w8&x?bIC|54a&yWES9aflYM+XJ960@U
zdBty(Hx|7*B+mR-(fDYV54_(Y7LWpB7K>I@R9YL7V8)IfS4Ha<%eUmLxUk5~5IGHm
z{PHW6y_uMQe5$1wOky`y^O`myLJ#oxhnXr}37ft~;3P_ec16H-r~yB8xvkgxgz3$%
z(i}Iawt$}ZTHs%bSHN@He#=a0;;F~`&W%~CA5J=Sx4po6Tv$c<aEZ#W{c`Eib!ei&
zrC|g5gf&P!wz9UW1^?F9v<!{VJhOG%`p%w+%QHSv&5Wn5A)0a}Hhrb;q8{<`@EoC@
zG|ku5(0fL`O54z9B<p9wye7Lilzw_AeT^<xA92vCP-#{`$6c-}0*(Q8lb)dkS&w9C
z#D=m=Koc8g6pacm-(CRcz>TzO%gU%*Mgzh&sj9^UeTF_<9j_3%4iP9U<~)c;?NXxm
z!LQTz*_F;lRLZ(=8mZ9{e^N4A6#Vll5u}j&k!~MtLHz@g`(=zlvYoC0lt}Xi1S~Q7
zO*`-;lYvdDx@cMZTwSAtY9%4fhkY@p)tU3BRDad$9m8bzB&<vAhMsDtd&T}{pmGLo
zyC3FzN`-9h=7y-<gpd7LFju3VUe#l$qE^A;72j>+GX>=r>a3&Gc>hVCd&b|o{qG)$
z1k5$<d+FSHOkH$DZ{s<X^zml+E*r1JOB<7rJ1ydz+TXasL8IDbW%UwlQcIBQnf_a%
z3Gap0pRPv>qEnio29=}QBAIh%<i(KMhADt$v_$MTnQ=sY;3gIs+(9rTaW$^nagpV3
z7`7vNgdOmwY?PRCfE{6Df!CMt*D2W&2Y`Fz5z4p!bNjqQl96&G^_XzYK*-E4TUO(8
zJpdTjQ9q5A%j;>5dU?V@BPh*((1l7}uty8A-SO;l#G-?7*`~Hbn7y-?NRt_iw1_Za
zT5<e_zSK6hch14UVY3`XyAXueYk;Q;-__qW55IIg+4E{VKFB4QP^^sj>n1dl21t^;
z37NOlzVvRG-Y&6NAS}Gz2p+RD8@(#uH)aJrU~2>7*6Iu;L2|j{L$f$!)f+UU>1G5P
ziZ0Bnoa(Dv@*rZB%PA~3*UNi%;XXHpXHD?qUlGOz?$S0JPmb*<KQ=MQkpf$n&CgdY
zp$sPk6`)@Ez+U}OAwm1Y?}c2lHwthr$Z74lhB8=MrhLg}?@CN{z5iSOZ3lIv)%-25
zeWkaMBJmqla~}0gAz<&42zPiaGR83za?E=?N!kiSJwkr%QKE|JF_ffUk6qyCYqpWR
zq;OE}>LDlOw86&KTbgLM2m&Inyd*gA)ppNgEj`VIxY;<@?8+W+w!C*!rD4WFSm*SA
zpTPVfO$MNVsU`hPCmN2hnA3P-Jsf%n!-7G;08Nmd6pWI<j|y)oHpd5yR@`SG9V@}z
zz-?9!2K!!G(t?RB8vUjW)S-m*gVQWANOA({XYO$ZY%~GW^dBh>Itux7?(ecZam)}<
z$6r^5Bj+c?T-Y{?*<BsEQN6P(kE9KC>yr}WRODau{RT>A(a9s9x&HQWOlidf@?nYB
z-n8{)-B}TsQsxN1uShR=5XKH1YsDI)pElWICU#B^&&&-qg`o8Ux79GlaNtKxtGlL`
zX*(C>xc&P&hcb>&Gnmw5;Id-XGme?=l%JN(hQN+uu_sYXshWJb^g=+V6)Cnlry)LJ
zZo{{vI*871D4#E0C^sJgjn6><1m`ji<SH~A|LCUTegAVnB+Fj?9Eqd!OY;vW%ox0)
z(|JPsHJR#j5?1GgBJV#1zr!^<j1>IxPNr0S&cVV-q?C!81xHt!+8SVez&gK46O+MT
zK^)-frCKyI>~K;P=&S?Lxs7<U^lnZl1xo{zt3baW-F6JR=2lAbXkcr5@RgbiLeh<g
z;3-!HwEG+O2*%5gg0`<7*_ATX)Ax(`3DscElB;N^4`S)-J}d|;%!TP8o6HdsG+;&g
zN^g$U2B*H3B79@(71#Ef96^>{CkAiJ)5_V@hs>5+Fo+G4X#HNXbgumMvNIKCf!E=7
zeehkpJNr(fsYH#<OFB7GaekReu*;O_aCJLKj9%yuYk0)pO-O%Ve5IwrndRK+o(evl
z{rYdr+3(`%iYvRu!o-h>yAL!)w++7<J4rFQ^F}qQZH#_Mh&4EX%+2+);=IFeFKrjZ
zi`sxVH)yEb-0NK3XpmQ!)ww7_uE}eLJ{}+L<p~t=1?TlhOznVj@9_s}K-zb^SJa$j
z<6aU3yj+N{OW?DW?O18WmkB}-7M?;`Px4_J%TtLPJsP?9W1&&+>z8WxeSmiO=|KRN
z!9uLNl%;~t06b<~C^kLnR-<@-o<vw6mPK@@{O0kjyRi|ykpQwoQ08J^MD-PFQt0D}
ze!&I-SD1R%?^-q`lfpoO32yJEw9!p`G6EU{!g>A{i}n<$V83f7zsKAJvaw9I6H~t$
zD<N2vM=I#}n;8U{t?z)BuC9)Fvj`fV4e7jYuV{UV)=mJeZ&4NC4mx8VT6QE#?~vEq
zF|dr^c3>F9MpgFC492T9!>Phy^1TncgYuJr{5Z!FQIu+3SB{VNjn<!X=OUCsrob$!
zfCnfkB9X?1F6O3@@_@d}e}{h@q##mOQ?i!g4qEVr%+G4~)#KE1n{fb97?5)!1rGt4
zEd8-3<S?B@I&7!xu1zvrK*xH6n?~IRTtF1lq&wUFVwvho_7*r3^%zU|AjmJ}U#ga;
zjrFTbpx3m1A_mD{>R?DY!+S?^vE}JmFKpTYC@@>EY%IG-v8lox?PV5lPf?FV^%*l&
zYXshx8vD{jZ!o|q)AI10HrAuw>SCtIo5sPx>xvTaG%W{C`D=7pUemk;r6Rd4353(S
z6bzFT2imw5KAT<e2NybrRz&@F0W)L3rQ@JX>4_SkraWV_>3M|b6XmE{fL8S9zLGNh
zi8K6==~vo$4NqZJO*-DF5ag|6U>za<UWg-JT@|OTUPpY8rkP}M&H0CLM;NaaAZx8R
zK+ZlhrDx72rikOt{@#gvZKqe;OF>sJajK+#4`pvHG#~2kwndR4Mqd9J^JzJslxlsM
z_^rpxR?a#;3&Rn#6~f{;;<cQ&*KFN^KWgBJmaIjD5t9hmjsU)!u)$8-tNd7I(i&<2
z1LfZmzh+{W{YP<t<a(BeS#QZ9wf?<`<;PR_{uK@etucg2K?6D=dp3`!k%YUD=QMaj
z+sr&(D)yM%lD4oCFtz@BWGU)W3Ap2Q9_@rH$Tav>X=a`K#yfG{0EBWMWPv;oxPH?}
z@{UKqUwU%@v!f$x(sN&jOoIF)-nq+b`<Nl()h{fuy>S%k$)rf_V)50M+DV7{blMMO
zS=QKGgzv*Lnj3)d=<Ii(t2Y6E-muo`9c(G7yn+g-{=cjmN>oG|)D$a&QF{^Rs09z&
zlzWtv4+AT<_WB2l$jgFOkHks-O`Gr0V1PO1?Pl?wu;T=`eZnq?Lui83)lugY=k-}O
zkJD|OXrEnHk%0;&Td~5VSj<gOH|c2Jl%qG}+H^es=~lKH`laN*r9}Tz!bM~8ME}aM
z<wAt^B3Ve{k281`pu0*oTs$GO0OYuw>04aQB_;^G>Bx2n0(0tkBfvk0M|SHC5_gEJ
zbm6holA#`UKFQ$42HrkVJpOj1yirg{_A$GQr4gh9QHIMlGkXQx>zKT~wIXx0&v<bL
zsjO3Aq54HlGb<?xUxSAqJZLdRTsU&vK0u@}#P_WYiwvyZld42-9JiXzk2E964V-Bw
zg+r4aZ}R%le6l<(dq(kh97=nS9)68f1sir;-P`+|OCh;P#k~=-=r#f$Cp59eLHU&B
z%}3`JOws7c_7e!1a-OeI;rTgE5djezKa?%x&+Jp^w+729X8Z^aMn2Lzj2oVp@hC{!
zQH0@oLt*W(>a+>Ow-IPNyqGpt`O*NBPB?Jazl8(6;i)fNSH}zDER_2aw>AAdXxd{6
zi|y8Zyo5)9n*hN|(PPBeQRa3EV2aqVyfER!H?xqv7%YI@MNlGCyFJvq5G$g1q*tEg
zDi!H57_o}-i0W-amDthgDpiq_ZZo5l4XMs;^4Vo)3`Vw*Nxc;=i!h30k!^`@@!HUC
zJo)$xWA+JaR&VU=%cP10+8-7-bo7l3b@?~f63?FrF~!yZK|sF0df7@c#>gYWdQq+>
zh{o-f4^)r1QZySpG6(U)>WSzygs7V#InGtrdj5cHqRWWsOtz9?C+jldzM5B_-Cw7I
z2c;};juq&!An%mWVlU?z?7v#r0?(yOS<ig3_Q5;|6k#M6a9)aerPUss(~Xw7i8hoA
z5+#)ky*^Fl`+W+bC%vy;v}3_2$hlonwH_WMF946(z1bN*>9@|JBp~I6IfbD}+)_8$
zNt4_9XV>Jt%{qc)z8AiKy*hdNW>Psnn}q)iCR|WOxY{-t^{(==^>X$Fo?lBBfx^u%
zVm!Ho;cT%xXvV`ySe<(EE)f-zm)yWIg-%?-1hHcVhsv!Gt8?ZF_|y0{1le-!^HQH~
zm7!zdAAr52L2odID0)DT)yPElIqNr<xh(dK0uH)QFjZ}>Ia{yXJ-sRZ&$+OceoD(2
z%6F7)zc1u%EE8y<1I`Shf~P3f>qydj8wtp??%GV*4hYQ|@_*{)5lXwnHwi$(eO~#o
zG`^&qL$u$!+57IBo~ut+M8Z9@!f_eoL9~s#JznRV$Sh0dVunI?`l22+wK)g7``}N*
z0O5JuV6GuHpF%X&KImRMR2wGSe@M$^m5N^GPhg1-qDFlijh4D!?C?4EoKl2yC}sW*
z8YG9JPSQb?@|mO0XXAS1=XsoD8wfvZWJBKwLjljJJ{A8808kn76*;L~#pM{JhzrBc
znF-Sw@c@>$XrGwPpX3OxHJg0P=aaQhbiTPCb%zyUi=|hs_TvM}8b0-nKIqAVr%*T8
ztH3Mk7{@$0H`Y68_F(6>;Pk&|^}w`LVSN^VT~i+iJ4Qz)dXJmKl5j{fDRy#>Yx_I`
zRe4c!w8z}~Sf?faH&)^ZB{ZaYLm)>W8TcKcyk*t1arAZYG%l=P6FeG=vxqSwk6oa@
z5e1B4RNyHYsGn}$qX9!1OZ-rd1UVUv_!{x~I?O@3;pyR+Mk%y^$#YKpuo>+A2!s*B
z!yTL!eHxI9Jm1yMUw>0{n=(M~unA7+j^&Lq;O$Tj_6A)MV_JH~u{ljI(3Fv?r;Wf}
zFAz3oK;En@(6(c4ptc*+dSi5&l#yR?p17-&;U-+0>VHXe<vD`{UXSOZC&4@}=kN2Z
za-(HEdCLht^cjil%WT2&VTIi+u@Q~|-c4wT#wUGlG}bD+i2Y&h=Q(Lq>9ba2$$@i}
z$w=$)ao9L<cMHx!v|ozlmL0OR!d%c>h~>Bu!k8$t&j!RiZ9HK4+zHjPhulFaR>HZR
ziYi*fzDWs|5Y$=Y?$O+0Ia$n((}+Z;+U~ZK<(0@tPqt&4<pLcoay)gQXXDllrbis=
zlrau3bBkbRd=i@S!MjTj*IKNcGAJ!v<(DWGT;oU9-$AxKudv#^19VeJw!k%+Iawk4
z!MTcF<iLg=+pU7<<-t}sJ$Fiy=)Tg+npap3nlS1=WmeB?b2TcWX~!zjvOsq!YLYmb
z?4F@P|J2ym4Iv|A@aEM<&twyKB*{T@01&Mkfx~i5(i!X-5xmI(Y@hpwEq_gFujZds
ze-`&YO<C7TdH!yofBQq~0lKJ-Icedsl0+MUfwMRXi+J}7j3Mj39rNc(uw@_p(|tvq
zy&J_4?sX@96f5){B6CuGyd2}XLDiNLj*uzEqyxq`lLw_DIk5kF&sPMJRuHhP<F=U1
z;q5u+Z?hv1OB9rlLroU%%3sT7SC4raPvJ&7o)q1f4$arwNS$5%_h}Q^_JUOcHjNKx
zf<)pqv9ikaxONGu#(KX-cx{!H@4s4u)1aOqc~|E-#c1=NLohz~0u2A86i{x;eGz|H
zS(?jfu>Iw6<_d<`I4M~E+q*XajbmF_0&&Yg=_H%OrM1(?8Qnsc|C0rFW=y15YoXmq
zanP}3S?hf=jnOZ{^q@vXIuc+M67dDCw(M~=4+<wRwfL>--@;JvG*#J(q=zjm0D03U
zgPxj0mTeP3mkb}#i*~-=IjY7)Yb}NTN^wY2_B(Al!34GPYLorJuK|UZvqeDRbggMy
zUmb+!(lm`yFO|Ij=^=JZ3QR2brhlW|>+g0EqB<<WT{;OK(4VEgXG*}z-^x&dc&WWQ
z?AfY=l)@i6Q!zXSaVw&$pJ;WC01|YcdI<+~k}ypa4T@=ASX}=~EI=7%mb+gUJZik?
zfd2#-VK$)(3sa?oh%(9PoY!L!&12kE2giiKgHn-f1!)a{y=D7~YE^A0IA*9aHs%{>
zTz&abfU{MXBxs5lcB&mGHUg?mgOdmdy*ZiA+&$EIe%8Y<u65#Xp=9^__I1bEd|0nZ
zGD_#(40iha0g`4absfX-Mxll?ab?tl+{sRrXDYMw@hfvIfE#Z%t8bv`w<~ay_s`KZ
z5z4p2gy%O)WEITbtY+T?Z#{$1GO17a_$td60QK!5oZiUhnjVG`mArwaUlsdI((u$F
znzpc3{Xw~Jd&Zn+0v!>7(iW~I|6_EyM}=A>$B@!AYBrEZ2rTAT;IpnvB6x$GKJEal
zIgCcCgL{0p;9qq8Vph9kr**Hgdy}C`RkGS6ZK2y-hdcAjz8ij*Wr#Q-Ans9nE`Fm2
z#tOMYFzJ5RRlMn^aDwZTbqC)|p5JqP?xQtE016ulKg=4h{rYd-8SIL%DtbBy+k<1Y
z7x=2pZ&5fwdevYkc9rKXOG)qH7-X|xT<tfZD2zDp(fvA8P%aBkbVesb#Z6DOn=zu>
zQwT3L_w_5vf-&@VnvHZ!LhmcO;ndHLeQH>QX)+l5h4%5f$=`g0PWbkn62!Qk-Z2Fn
z$teGio_sl|D~X(Ni)ez3BtbS@johz)yxCD&)s8k|e~SQ8XTMc|?&N3kLai`im*Ho?
z9f)+<*J?`8>U>}b^OeZ^5B}Dw*#gi$PU9LAJA~<11Rd0bIU!o<%S+)6>Up}70)~Ki
z5)|GnBfXZy+QMh0Z7%A@TA-oOT5<m%AC}xYfVs_F&_nOum%L>Uzgfhp>yWi%Mh)g-
zwN(SPM{GUJWv~N|ifJ?!9@z0r6RAi0y{?7!ee<0gb0_FfzFs}P0{StI&reJ<Niqo=
zgU0mTlDKbo_7({h!!2Ok8Pq?6jOb>UW#?tfoE~%Zay8M&MU~=awFSMkpcDPqyA5u>
zsrSj=34m>Aps#+>2eR3dx>Qg)e%IDFr*e4w(mI4VfbxXq2+w38*mO~z%9R(0kPZb4
z@<>F+9qd-aM`a1|lX+pkBydN+Dy1J&i_DMhztu*#Aj4DdLihXwY`a~<6pUZqAu$iz
zBb4Lnd(fL;gkDOZEImqFT&R)9luHWoC8BjNjL<_`wQ&mLSJ?o4$>QKO=3R15oJZ=5
zAM{Z-(yb8TAgZv+syF}X4#*(MO4}l*$ts-qt?UW6hiY*%!zgWaW>M?M<E4$p>(7{F
z{BE>0m$~yvme9Y!D>IWVE_JX%<O375>f(y@^I)N`o#)WKp{f&f>D>q}yUxSR+vbu3
zkFT=**A(nC50V6Z)%#`S8?3u^GtI<ngVXa0t)6Ri-%iVE+#jwUPT7=x$<I7k&TMMY
z=9V7IK6yZGh?5UQ<H`@iUDM2jX>HMhQgm+4Q}g6O2LgUkvkMtaX_{hF!$^3d?gH%9
zt8XZp^FiV(%`)|9_k=L|Z8mammz04Xe=~!Q{>!ce`R%#SwH42^;3n&H%gFJO09Ci#
zG)_pmk{@^=MhR$}g23MGR**h>JWVwv10^UXlnoB_sun*tWL<^cE-4f^WDA6Rr{Z{<
zSbYET++p7eQ@v;{d3HvynEunl5zh$e_tTqJkL7?-3DRPxPs!)ZIzxux5~FctjmnEE
zkS4@gM@@A{TpHE$4zD$OF6uyt`HSTmn-q_^IVAh>Cyv@;^b(ZW2`qqWY3L+OPUEkp
zE3}*$g-aPa%v|G@CM7{6oE*s$U~yNFLIOq6q2jtDXYh(3*FCC!6~-2tBZCmih^Ugd
zC~VpLZdvCMSmVZK>jZOPRL0!#wh2D93z4~-?Zd#-4{NheHc9iD>R=c?o>`C&eloj{
z%CNWGdcADw2ALN+0>C9xjj#y3AF{6K;x>kkHfn3wZ$M6Gi2hIUAMT_aqAgRwTYQZ{
z{4V;dH%~mfl%G^*xrD+k0JhL^s7iyl=AsyexZ>3+Gt?@xaE$tVgG98f((0K`YkQj#
z(olQZKI{+^&{CtfvrDl~5j*<yOofm|b49Bb|FC6)_SY*1P=k%tuX<X_R$vv$Gbh2%
zl(&N-wn<%GEx$5ixfphhwK5qRHElGmuR@`oPlCYvV41H$-KW#ech~@_P?75HwH9Ot
z97yWy{g%D7PXKsODCk*f@2neJ$`+C1`~W(&j+fS0Z*<9Erlv4H7sMpe;>lV(npwO7
zt1tA*CR6v9QS<X+-V<Axa@5)I80tpl?RV%yxvi1ir&j!|X@|=Gnr*C2jU|mb*e8M<
z+Yobc;qi}9Xs{VklCAH7O5{oRpu0donH!}sQJ?WSEeVkjIQ(-eQAJw*4o*+)+!l=t
zi^g{S?XjqV?M8O>_I+G)U`?Wl6x6Du;pnzHEqJe2>VUe8lI+NVL%(34hxmp*yH29f
zfY;m{#hV$(0*jVGs104qb(73Fd<W6_oqm1F<DUjzsH=INr>#8h@2Kc(z!@m=5*_vw
z=EuRI%gIdbpULpKm*M=(fSGYp1o`9Qr`Z%gAVpP52T9I?CzdcHW;4&yFV~UEYuzj>
z%hGfyb6#$sNI|91`RI~Vf$Hm@P+8M{YnVdX;8&qB9!_HM@_QKd>qzMKAT$Vt{%^yi
zw<x><UDsf49e`J!5+V8cr$>y{ifK?)G@H6(&N=C)ZM|Q-tXWAegQ+n+L|2I?3mcLI
zU9T$v5_~&ZX~^St{IEk!8#fw!t&^)sFo%oX)ukYcPnw)6(dcJMJ4LIl9_C#m+LB@o
zg+a^y0Wc9*4Ol^`m=)$V&q2vPY_lJSPb;Gu=szTXZ~00N#ifC`>f?rUFb@$#A(Q?}
zjmd1-qB<!ni|3N5E5G$rAGJ_010r{oF`i8Wi1rZ`SY=0p(l*=l!#c#S%t7$2IYctU
z0@m_kRaf9sPy@#$cz(=SwD{;2cFC*}oh-5o8A9lBXN<h2!sd~;?pSn;toAOe4}d!|
zF#(_ahReZ>kcn_#*^w<tMuFG33^AZ03_^7%`I@=^jm^W0i%rwsIY=IF2|VxuJyU=_
zOq=POA3lOCAt1{daokL9k=()zra}pH07TUez<u=`oxn*mpI!3e_!se}ub17$+5mdi
z8U^`}rC!F1XP2|3wY?Ev^+{k8<CX7wpON$!x$pRyhXxAVCUAXY!uh~Ek{_o8&!siq
z$I(3?m?b|2+H)OMHEe~NJq3LNPG%)Ja>4Q-RjL>ZKtnj@M-*h)NO2cgMKL_IfDJC&
zC4OkH2-{B3L)fz@;$TAY+qKyhh^mGeIK~W~(^1~wX@CGjfr{teLGt|gxH732s5LeJ
z>e!5@+P)gYF_i~9oA&xnEfQ5of5@7H6~u>SDddybOksE9H##1sRy#2JZm!r<-b*))
zp=aJq(0#MY6~MD71~`ncD*|&0Jb}K*HTCb4Y<e~50S-@t_$P%EflgzZ?JcDoD{BXd
zhK6<w#_Dm*{|t`%t93TfT>y$XReiyWc2!+c_0=y}R5oVYi$#z(<7F?&^InzF54B-B
zOP_wneYE?WCuq8^aWv&5c~t`GOj*Kb8xf;07)}(J>=B6(?|&BYETqT+J#Gq=8)quL
zlV~%QxFKkegHQLp+*b4`KcEAZ&W1Bl7`L{0WlCm!<I0IF3a_VM{O@GpD^ZkP5bsq^
z;L>>0DzQ$r8F3Md%$vG_B=~mKw~k$}Zlp^uUm|9NbH#FG{I$ScWQDMHmYyz9&!8?y
z7Yzu(LFmWgSx25X0IMcPH&7dJ`XP{FIl-6AW-NXR%_9`>UBsnXvQbYh-o#BFo+}PB
zlAmSF_d^la60M+^Q&c2SFwlqzZB<7MV@U*3I~l`X@160c>VQeI>W|}_LAp#?LxkZp
zvIFX4NKdy)*Ez(gFC}bd(@;hD2B!^4qxpEKIqj)l0$wxNcO>OJDKT4z6NHwA6s=#>
zaV~liW0T7BZCrkiOvp`C61nbz6WGe)kj)B5;V=2BLu@L~DYLh9l$TJFk|}0e?tE1c
z!t|U3<UmevkcEswqJ4r^?;o-iw=V?NOjISgjW^Z*c5H%(`1foPwdt92cGVxC7{SuL
z>$7)pw$XLes8}yH!vLs7)oXdKyaX8cU`wZhrn}oOS3F^4U8h`qq|bBr$16hz0D-Jj
z_9nx-FcX+slIq&rGWKcBt+f)WwDc$7dp)F4wHJ*q6=t)XRVe(C6pUboNd7lR!86jP
zvy<^oMMvDEN24f!On(kJ{!$3k9-Mst@kg&7*uxu?Su&OejK(iGW-PaVq`;OV&?Md~
zPQOSOzDL6Vkq3YZ7L);`b_#=F$_KiU=CIbwaJdiRvFaghVWOAB+Pb9hE>F1$+u<Gx
zWcq9Bln8V!^#6P7*NNX;TC`5wMi~Kf!8;=cGtHW9BWt>-Cj`0$&-kDsjgmMEhV{;G
zI*(gREJE<J_{>gQ4U>$%cq9)$(5?R*PtrV21xHJ+O(i(WWZCBdK}o}h`&f@ax-9@a
z839@6*62tz9|WETPNRrs1t^UEgKa7;G;qs`Vg$luNdpR^f+{fv`pu&GA!w2O=4e>9
z_X*GUE;x<<zJ`j)WHC>lhanRAGvdScezCwcf=6kUk9ivx?Bb1bGmfdiIK(crC{HzA
zg3wTIagJ_vI3G^{L!QOun6<mhTrZ9<3tA><KwZStL+l>`O8?&^M^iwCKGkPs?+@m>
z%~oZlP#x|1M7sXcap;Rkk)4(3Btc}VrS_NgHi-*K(>7AChHLMgoX3hjapYWFx-;R_
zc?||ELMlVi`9pPrzbYy6&2((^=rx0g<6|Zwp_WI8kBkU^dqc1h?C1!CvoF4>-DyWO
zTf}3qMoFr${m-Pa%X#Va)-PdCFAZUq$z_X%Xhlm>rPdkqHk%chaRk99n9w?d$MVD~
zfe2G)UOVqVmTS&#KIIb3Qf;oBEP%qO;S^mScOo5*VrE5x_aAamaqM$|&=4}g6NZFd
z{Ps~4a1e`GQc-KP(%?sjsbGsw7vw|bfl$*hyJ*=LDnSozk1foMTx-WvhO<I<Vm8Ji
z^lOjYaU!Q1Ca*AK=6GIKuN7{H{!@6rI#%!?#@4=W?K!*Ab#&qKw{a^+S#~P+y8jYr
zz-o{8R8N?b$zsE|vaTaUPI+qv_HWL_SA@+U?*H8wNhJI*w-V}QK2*Ra`j`G7HzhxZ
z_RVcFv<NDq&ZA;R+mLzmFWAW9JDhCeIa3w^`nRD6O@H*A5LORQBK+-K<Xfr$R~)+D
z1;%vn<Cz=ad{SZczfN~eboIedNy)x54s4VN<LD3ys<doLq-fW%v`%9Vuibo{_^#8@
zDU_oV8(F5jCu!k5Y9JZQPk6YJf87RltEA$9kO9QesHEv6Fsf!|&z2Qkk%yK)Dd#54
z6DQJd@KO=`A>k5i+zWPJGpEuMq@mXmi+&Euf2#!3lHUz#eVq_><i18G1ELba$|p{z
zuY0sZhUX&8d&d+u+YfAsq*eVOePpBaXH0Th(-Sz;*9jX5^+pOK@Sk>%$HUbtWJo4!
z<)1sIhJg3tw5Wc%ItKQP6&vT2(Mg|&0!j-;xMmHJuUGVSEFJhkrDXOX;|+ixE-T@c
zOF+41WD<Kj*%##fqwFY40Ic478Zv)P<}f~j{CjVc$woD<9h~T=9rdI>cT{UTify>Z
zhC~n4!!mOIN-`<hcdj;WFq5O%8*l-mm_)&=C>Zi4k(S~T{%OFXL5IieF}kxJHQ9F<
zJT^8*r@a1dEGGR5-O>{n^*DbKmLs>(762Gi+kURG8GtC8zhWs&s5Miz2l5BvrVo~Y
zu9gu;+|%0`??mk&9ci3|0-AyDnR~Dn8TA+7Pif5$5GbfOyZBcj$WcJ>_ROkOPI%8b
z7`RbX)q8-WP%Sm87V6=zWtz>UF0DPy@6`-zqVnk$aHXs4d1804s5rOoO~}nhGrj!p
z#n(kHtg36OlQeMxgi^C--(Z8n(t6ScEim-C%_6RE9fVu)zs-^>!X#jzZRX-<WQEzV
zNlj+yw|s%j#gY)Sb)L@;HSXCMwAn76MT23F?TCZ!6|oEY5B-P300r&XzSuvnD6o$1
z3#gk@?y<cY-sS%Qf8q7{!%;lYx<Cvh$l6ru@E)uKxhw=|D`khN#RhfrmaQ086oqOO
zXJ<3rj|%O^bFmuLUwLQbeHc$7Of&v!XxGn#OQhu=rar`NjQfS7qGr8Cyh;mW@#$Qd
zvjfEBOB)WWY=m){R0H~}oX=%Q!dS9m8?B#yN*B<U6ZS$2ICIHp{lQILE8_;WsT`Lh
zGVUfgJj^J|i`1UNXsuEoKUm)bh;}9TBqQ7L+WXh<a+f*p1ezpuFByatD5MQ1QLyL^
z-?OW4@$8mvuT%fnMt{%GGPnYl8|oH5<P+an5faj865SKl@5E>$XrA4@V~4@Y$p*qY
zq=s^{opT<p|DaEi02fW{ck?_~SbFlpTQtlIa5q;JwQ2y$*u&|Tt`P}m><*@b))pae
zVzn~=cC4&a!f;04xS2fA6HCBS5C&#@17Ha~40@beXS^#f%k-k+1Zs~2-Xd|uJ#nch
zBuN!G?oTImg=A)LIKR?SVR9MIR$ghlxpK_59l46XFIPk?i$gKm;>L(-h}JMo;GJ!i
z_V0++3#g%f-EP<9e!Cb9l_rthC?<)IEOv3{T<F-_I}>!llPzqRHLvUaa?vtooNL<1
zjwA7=MYYscI4#U6>lL?@Uji~V7+QG?m%GvbDKEnLFVM)zNT=2{E(*SSmr-*#(Q+`a
z$3A$ouY>;={NN!CMX*<l&LdnRt!4@BF^D9b4Q@oW0XSG%j5us{h|kOG_iUkoc*Emt
zM|T2nthcuQ@@x)n<asIO!2PMR{i=XBacUZzPo1oZ1P`3V+zCnvmoQ{&;SxGEO=$yC
z_94?R(_c`2c4^--A&YSU4f9C&Y61f@7_>=;xn)z7^j`a+ZMNimxc;_F8e5q9lGsgx
zt$^xN1TrGdME5=*ibiiJ)z)^^925qtzyCSJW<v{Gsk{>Dta#RHOmK+RPU@guN(zu|
z@$Y@Q2WVpMMon$mqJV>aALf~`76CN{b$9l;(R8Z3Eehw!S{;ISK@e4K=8N83JlE!S
zL!iS;SXv))Q(rc{z>qXUgCF=l*x1g4d&0QP0HB;OXHwhf7>fUAX+LFia_4C+H6O^z
zQfwLh46O3#c|W2roF?#PdF@L4njwJFGf+@c_PYZk&2j;w>lE0ulV>-fegUHIP1SAF
z{FwR|h5!1r^%7Dpb_ptc2ko3~4&i;cX)V})S%+0KCZZ*>b|Op==}#59YLsSb;W7}5
z;EyiVr|19NVY2Yz)d+9iaXyzAiTR?n>rYi_sB!KC5;i<tPXT$Rrhzs69V=}x>*h-e
zy||KNhq~CfgDw9t$d~(^$ikDr0hHhzT({wE^B71M{3OXzS+dsPm+@NDnh=X(xJ%5Q
z_zv}Re61t_SkvgR6&u=&S5G4$h2^%<o)kTPm}On!LRjk<Hbh?#D)@z51UA<iE8O4l
zFbB$_6dfXQPX$*gPx>w9pAA<<c{vT_zHeun1IxeKJTf2BxS#E7xM!KYju<g{U6<A7
z@^g^Zx0exYP&w6BhlgjQdh34xz>0W!PpicPKsp{vXXS;zC~-}6?JS#Cm<14alz}y3
z$9Q&esE>5dBZDLq<gm6~bM)ZC*s+z^0J{Z#>${XC(0PeOgv8-er>Xis-O)vLPR$<Q
z1(fP-lNU2l{^+GH7~Jo0IBLd4T*`@cI8?Em0R-hdXA?`^E@h*CW~+`$3d%V;+I5YG
zKs~P&Y>0~#057?x<3Q`3asroHHn78<6`YGH-&N9%g+W(q++5>B{yTZ=sStLBrhkFy
zMckbuurYfPf%TXeqWkaP6$yim6xf4M_33%+{M#x-+fevQV*eGG3xR><XgLpe%`q*o
zsXrqN+?sI=F5`5fngoQPE1sQC5xFI}s`#zGEBd3d0DmbeDQ^L$f&xR)G+vgT4yp4U
zBOTV%NWQT>X$|UDp-8+rRJfQ`u}Cde&+1P(L<1qJSC88&d6y{Im<1hxTPj)>NsB@W
zFpPA2v#1xdVo5DE&{%c{>`Qe5Yu^tXSJu+Wz2~F}KN)hN4uz)U@*vX*@=D`hE*G5o
zrJGTp<3uoC?R$O`$Q!6l3u}VkJ=`#d5@&<L3Q75t%_P93<DRT-)2{g#jSFsXa)g<x
zu#}QPWK*rkaJ0fe#KRxO6+b|ODKvGJLe}0!Nkt|UCf(Tciwr#wa8Kr^D1ZO4Jl7s+
zrsFHMed$;j65bso_+g}HqK|ES91}GcL}&_lH~e?wV&Pk@-Cm`&AmX%=o=rY!T2Vv(
zKW%xRRWX1Xq!L!xpVrAayWglx8FjmL>>8NwC)gNbkvy4*R7{fiDnuW|jG&g$V2+Zs
zel%_70MJDbbg(!HsS^`P%3jTCK;`dXy!XZ~2T;N%%EP)F@EVE?Zc(w*vjc2`TIYjs
zL}ZkpTzH%Z9i}1a#MAOrk{f2Nn37~DVJ5-vUDbM~Q?(@A&+hY#Aft5^7<wP=mzGv0
z2p%v12DCVg^@O8oqBk}5Q+5f4LihJ++ht-#TXdcJ7-Af;T!^>EBAuYC47y>FXdNXf
zqoNgc1tDZLDOVWbGua7C-ZRkxh@xBD;tvaZ^AI&=S&1C;4sqndUd@gByOYd9!N5i}
z42OzedycaQ7=a~I!=@9KC@gfJBBZ1fZ^E9-i)V%9rkEqdyUIPyEt{H2JwcnLzXZ5g
z{segD?G&yPQYsB4eI}DWaI?}#9p2Q!Q$fqc{M2VZPDyc85~1p#kRJ2s*9mRMrtNJN
zy^23ot(i)-eeIikY3pCnnx6)%ICvTrn%Wu_E)2F%%m$OGZXf0o!i~+7(|2ucxZQ=~
zxg$fFE&Rw-T?GSSv#(n6uyFN9d3%Et={{2pHO4U%SXO<YY5DG7G^Ex5xi<h9+3Eop
zqatx|_^-Cl!#oE_@MiFr578(1SVnjxcnw4!q3xE?E$uq?)s^60n$U)d1C_EP>2x0E
z`qf}l5gd~`zl^NyB~$;zZ#CBW2f@-i_~d|P{`yL^!&7n`3)lb&@UeY$vzC?GDxQxG
z^6b<3i|K7&oe)AG$ZuIacbrRNZtLA}e*c=G^>3Hv`{fHh^IuFKnycKS;-osIFltBV
zWaz^`mhj74Lzl6_f7T&<Xh)FGPDSra1A4T=_IVXTuJmT4(BJPv{8|V1JDWnnd5c)g
z1U_-D_;Vn|Ml(@xX=Ktn`zq#b#nc%`Ve_o?XEMV%BDNVq<u|;ZpAmS;Hd9^a1xZ7C
zadnPZd4C+#nb?S+Ngq4zSibF`6J4E_2vijqj8tnM7kIko$RI%RVusQTb*P^ylG~D#
z;@J;Dyi-Ge!-ao|(lcoHM^BAkoT!(mj(qgrtUBr27Qi&$(p8G`L3LxC@c(DU+}V6&
z9RltslZ2<k(G_#m03F|Db?;`jVv-Dy#_Z^WAjPQP?thg?4+qzgn7d<8E$Oh13DL>S
z>|?2iuXYB%l=%1W5)n8SzlXSJqIasAy~66YJn@|Xc>SL|Zj8P|>8p#jf>TPA@LlCQ
z`#}ik+1J4jAA?~0x1n8#HqQj6HSaLDz4s3Mp1nXF-k9C?3sQC<U0lqGS;0i+B>PDw
z!_Gpp!G}yY7~=o0vU69znHn|;IG(561fM+L<08D6))F+Do^6rYsm0a9MR6uC=%tpe
z-ds|bD0!4<(t+Z+zpJwft!UI6i`sul(Aglfd)0AZ(}L(yoG@Hicfeu>G+J{n3EXd#
zm%6kpNdEbSss*Y}5&hR7P|couL}@g~=?2^H6;}(j@Bcf?j6>cJRQ=&qrr+`Me!|8{
z={*D$O@8StIQfxSBgu2Fx)2Hzm0zxvA|x1i;UW}RJg`urFb`<5x3IW0{NnK0h`***
z|7BYE(Pux4ffvkMe9*6_E1^lny1TZ7>*T);BMP1;7ISgk&c-jB2TNSW6IG9p`-#yM
zj?Gt&@3sM9`|0JE@roLE^T?SAA4&s{n#cP|6N*!sNI}ES@q7#H_zwO?E(ZE#O(+CC
z<!-y^eFvM;-&)?lv2AM@58)cTI7iPGWe1Y%Z#<i{mF1dKUYs%tuSTQ&8N4tt`NmV-
z|4ZeC<M-3AquUTfIoa*|d7q>{VCh-SU@j7?*6%Sm*m!`bFGdd$>f|K{Zw%sT`H`$t
zZz#ql+u-`>UtXIytJzcc8xfLeSQt?NZ>(8P8-VZvKRw$vXM^@-vRbflI?B5arXZqF
zc))1gxv&S&1kxQ7nL~>ZQY>zJd7N-96yn`n{Y%Asv&abh8h?4tv>7l8hz&tVnq`0a
za*>$-vahPMl)%4*0{{RgyaA{N096QokPcuq|8}Su+E-Pqpec{=22bRAye4D^TpN}v
z7d$DP0?P<OZY!6G29N;=`DMmpEsnwZwm~B$nX?NiH%;6|$X%T`_B3DGGJpuewcy#;
zybDHr>P>=(o-b4kO?%Mmry1O<yprd-@R5@$ttwnW??`q!`3#7H9Gb^9NBuXN`VPq(
zUO#L;<XY%V^EiEag3PYWP?=yNk=$m!R^=?Oh%l9Y!c*)Xj0+;;VGJ){p2s%_zC{Ze
zHx6!E1v(xFFxj;B0m4V+__)<`92JhCt0vBghCd~4Qm)8x2f%B$8T&fS5!uT@=rkI<
z=PK<RwWo3yi^MLkb~2Rj87@h_n)vJTyvJZ|TnNnFk4{I9|8Q_!e1y*?k<5vjoh-X<
z1M*hGuk*1nf#a!{DQT>1<@mW38Va}cS~p18Sxi<31@?Zv`bT(F8%9OCR2DNi-;w30
zh}F%a9yb8EPAcRRD?j;Ue$D60fve-W8fUC_{I>HL5U#*9^6o{}Y72^qE9N_TSWUl@
z7(Nm4){3P~-+jPzIhtk#lAiQ{J%ZmgLgs~N4`p-(TsyU~#^y%T?Dk1;scs8rHKcZJ
zF?eb-PDGnJd$V+NAyf@r|2TyH{BRuew)nMhvs}?<HXHP<G4-&(WOwj)tJ^=9r=3v9
zWIa3GFh6w*v**Aw^2n}tB{~@}Rtd6#XEM_`9$%5|oNXmwcFptbX5(vu#hThj`V7%e
zY9uG6Yc(RFTI7LeNMLu+M+z28)Ke>=1GpM95opr)<DIV*d#6P-OI}d&Ro=WlFXA;|
zsh--a*jNh5pfJ4T%5k_x8Hf`ZCd}(%P|02_NSKgwYQ0k)Q>mQzAPc<x4N>_U1Ot}y
z8ZcGycSHd{xy%W*d(ggYr|?>IS)mZIGPF%SR5gbA!Tj0J`HW}tl#GX8RDC^M>?DPI
z7+^oucGbxKO$80pj0V}&nT%r-M@AJdE~~rl9=wEUNXvY5MK{k=!QR?=PV{Xb7n4W}
znn~*jGe=^45}dXuz%~c$Ue1v9f*D9)YE#z%@6&H+?NLtU>!RXfhL>s;HT*-~)Z0QZ
zOF0+Arp;W#<-*#>{(8JV&)V$=Z2(Eu?SqO8!HDDL$=Q4;W)pX-N^^>X&?~76Cdh*2
z&oA<zmKWDo+nLbDAg5eHqO`CQzK|@L%C$i_WwB;Rl{Fv>7G}dRgL{+i4i4BVs2ld#
zRbixrp;fmarAa7TDD>rOvce?M1XFgkH1?vS;+g}J5W5`GkGy3Oub((gyY5uthw#ba
zoTe$$>P!kxGx&BApP1|^06*l}XCoQkm=F@n>mDci5l0uYIGk*m$5hCuUfX>E=OJnp
zBt2Tmugu2wQw`e&I(Ie()+?~0ontkVIxXpF(i<2HI$$T%xo3KL@3^6o$zjLM76vBL
zmf)p2VLUQt4Pb{+TY?(*o~;oN7Fj$0I;>on#W?;Yp#aIf_QyO6Wq_}yOFB_z+OB_!
ziEW)W4E5eN&&(*eY#G1gb95N`LaSR*dfiV4+0kzyzfqUTG=)Uqc&`tn;<y_?Il*)8
zh>!x`NgxnTrBFxg$}o-*G1&QHra2-d8^yp3lYE@5!tzc!aamin<h#vw$bYF9wUBDf
zIkr0;5EGZ4ewXDDq0Ji}<F~2WiREfDXRypmi6PsVO}^}tS{NRqm?eRlH9VnhO43e&
zGZ^8$iSY};KqUA&2Fc?Z513TH{aDDH4+=b$CQcnaC~rLn{>@gj{mw;kt*FYTI|<pN
zNuL*!VNl&AU%8_WF|XuD&C88oy0z64eSy-QbV8u4g2YWIOp8(1uS$oH7IiFnaY+4I
zdCci;I{+$!9dNfi%M2x2UU5OxXqjGUlLR#8qJvYFKAoD$nFD(obeiYgjKD3<>8bJQ
zl^RcwLqtEc^2JC0w;vYUXCr)fzU0kvYe?b@fo-?`)n%fv{hKUBC~{aDb!ya$8=^6H
z81-)Q-ZZM0KIU+^-@SBV1=JW_ekxb#1b&t0#-ZJF+M$YKm&E4i9s#a8WBZFo$kb2t
zXm&0uixBkVeWBxZ?T;bTHD*ThZ3;~@0+WK1W}WK<(IK?JXxoCJ-3R$=SGST~q($t-
zAoG7!u#7L(h)u_<RuK&{&saCT>D?TEL$0KlK4j8!HIkc><KX-u_~{n81-TS}Uc6U=
zH00d`ry(D?3Q?&l9%kamZ?-L%@Vt~|;gJ6no<Q)Jnrt<W7EhoH$lU(d*M+V$jZ;69
zU6sxm;2XU(7@7HICNFAY<ysH46&$IR@|7g8VP+Jtc`tI{u$TPz)nB9Z1t=|!+;W~S
zlasrLe-%q0`C$O21&GHm8)V)fJ8FzuFa7O72cm=%*!OG@a%ca|+-}ZP7FM#$pPYsN
zytDz(6bk`;Yegx1r31*BQ0iHC*k(v=VLi6}CDK^?;XQ`(8e)GGan<HDWy$;vFLEt}
zs;0)26E@{4T(b>_Z+XvD@LaSYCNTe}Uy{x=1vbTUMrN?{SMP?uLlJz@wvJeFFX2`1
z&lmTntjyUF)#;FLh~6WSNn7B_d4)5{;`A^F8{y`AtAJS6!RRxKnIEKhW+~>yC$Z=o
z7&!?`RkQ+DpI-Cf_WGa3=4T}_@gWZx8@`pFz4%0cnJ(j|jAv;I(`rbqN@Wba;jII9
zop)x^eDDt*yDd;s4_M87T@xJinW~v*qZ4ASkcw7x43UVWiqUf9f1V8P5fT3!pFA~2
zfOM$w{IEOgX8dnYkR#ziIRiA0G8~~4gC&h6#v$$xCBN1ufS~8Kh2KLdH(S|ef}f{=
zcneEs8NGa<*g^?5*R$2TK_G6L!_H<Z!Sv2c^P!O~Q#cu1+`gdA{A|4VAdD);7M9Hc
zE9jiSuKGa`Sbh;0&m)p`xyinO5kp|(cA(#BtyLHC<O+Qp`VoQ8kF86)1y)SGiM-Ch
zTw|DXAEO}ZgSwOrLCp>R*Jlx5K2rVVKH%^kNym1rD`65f2w^&wfJUJNWeaPcD~j`}
ziV5UQ!GAhfIFoY)h7ixQ&tOaL_9x8lAyQhf35kA+#5jpzp&no#Jt;A`L5qJ=<xe2I
zu^O$ERMN$Wk@-4V8e0-|o2sgf)5o>m0=pbQ(G6P?Aby}u)LALN*qSpfDcDT;R`XUk
z&(f727R$dSYqj>TAOcph#xSJeIo?x|Xo0LB&5eJ^0*D}>SRavKjft%Q^#+#t;IMD3
z0{jB9AbL$d;NsknJOrw$-4s7*_y&D~%s(?s68VQNx2hRlxhh-Ww6?Yi*Gy8mvuf}n
zI@aRhwY@IBZ0hF{u`hQE%o8)mS5ds&ZlERbUoyph>t31Dpz0rPQ~KF3D6~#J>S&O_
zlwoWm2d#<UNc{r(h<+bT0exqz47^IVioGaY?EknaHJ%ScIIO0nz-?K<3vJa$e(N!A
zSbP2z9;$^yQn#Ek`$QVCYKMtCl=@7={1(-mn74*1xnE{$w8rlehb;P6-4C@Ik{gsG
z_DInQYtCMBh$9JF^a{`!=8Nx*65&GM<C*VxTn!d%sV1|33je{?DBu*s{+qKdw}t-G
zP@T0{ycHurhoQle4eJRfVrp5gZ%FvT&~R~a4DT2Wf$<B(638h%Q&{@eC3rhLxPXHm
z)1Q6=%<<5S(fS|u*ggP{s-Rv=te1s{4dTkNj@f!Z{w`MN2kedK+7yPH<6#u3#NsMm
zxg|Di3y($%P$^K8xU-x9Rs?>~p1tPJR{USf(X{0HB;sUEu)XeH^tug<M{2b0v|AP1
zWbRu+yLrd_1HoS_+*&zY3QzX6|DVRviQxAu&ujp9C&HEWLnRKa`oGhTWeMAQm-(hS
z%p2G3v#EGmod?{b*xF5jb3N8Q(4$59J2cV&Z%wH>)J)9KiPm%Ut@#Pv9CtKDGl2x3
zfP-25$#uK#lVG#tAoayh4MNkqhQLehT%Xb$xjp6rVMv|>evtemVnZrNu*^Ntq9GJ!
zJ$Gc{JY1AwBmZ|DCD0OR-O9zK3$^5gR;%X69Y~1Ompmp`KbvU9JdztAGQ%+Lv;eG{
zISO1#`ROW<;u~I7X`~PM;7zT@ke-s;W_sA5guxqh#Zdtr|0=CpK3#lIsAx_!!}hR^
zXdZg#4g5xh7g=Nqx*5K2wf+mAT)Ub{(#?6U3o8Kg1SLGPu|@P_eW1fpSM~MpC6dxs
zIIiBxY)Jt5!EE5+upa@<*6&uRAS==1*{AI6+g@RZr9Vlw1g5{)mmb?7I;J8sh19Wo
zL7cn#CS7#XQ)tw1<Iyguh_~4;Tui=R32yRCTrGqBCq!AMKI5%;gksU`t`a1&DPWLA
zk8b-!)uWkbZk?A@7iLCwMK^XoD3vg4&hJY8@Kh;(c*H`eIaVtDC@}p@p(wYXAODR~
zu6TyRNhW3<QqFe`*<L262IZdTH!OWyX*SxViXY8$cYQ8XngM3JL1E}~9Vx%Nfgu1x
z{Q)wTxy!>LJBxN>5-Y0q126K~eEr0X5#}NA^_9OFi^J_`9gM`6(NET18Ab+c+F+vo
zu+L0`{95*!ub=XTf;aj!RiLEY__5QxBxKG`h(veJ(OrOxT|=M1XSU?jX$)M#+Y8Ce
zF=-!&2x<0+XI7_q1sGR#Z_US)v@5X;c&Co)*VJ`HHakHJD7j8rYYY^@Ls@)}yJ>C1
z=e6^s0})>oOb6fw;dS&uZ3llHuq`s8etXDAhJ@8PMlx+_F*0s-4#I*_Erb^`3f_}h
z?8-s9S`!y-{m=I6QOR+_bO+gjHN{SU3XaJ#!`$~0>GW~#bt`YF(~gQn9LI$+oPl(G
z`brI}KJO<jjw8b3Q;)dr7BQpd3l~FrrcbYp<bg+J99*tPF<WQo86+}}r3F-<yVoM#
zoA*&@QNwnRb*lrT4K<B|<d=ua_pc`R_5hC5(jLUZx2Y)I_S?)|^!Arp8&vkmuIhm$
zuAiG~=D1kKQ0wK)403aq;}q}R=F+0Ec}KG<20`C1x~1c-W}M^Nx{_6CAbumevT#}B
zeA}9l&P^gCc0E^(8rTny{-g!`JdDplBQcI&TAT0#xHDGKO@ZfBO*U-td#!C^etsZT
zmPYRn4GfOoP7H~1NcY-SbROfK^ykq143w#pj^@>R)Qw1OOk*P?x?!PMzAeu0`cw-N
zGU4RxNnn~RoC7f6T)@TY%KXogRk|kLfNT<Si{;m?fDbj^$Sj(8F~C;j$>9h&WK^$z
zkhG?P6%J(p0-L`CSq(ioACZNOxNN%{=Xm|a+^XL@LT8N2?r;+&NfQS91Z2`Khr`Zu
zAb8LBmnHT=vQH>BIJ87mL~Kdg)mpO1kjx~ic8AYRFU!4eU66a#FhUsmprmyL1-_YE
z6ya7~Mu*OyNP(h>Yn4}i9wwK9d(W5rf7D79e5o`omJ$ACo$DFY6Flo0MjiQmvcO^q
zs9jmzZSU3D8^WiFLjz#tdT0x)d^Oms%gwO9s7@%$I3?UQeyahU<{7Yj)b|T(YvZM}
zkN)s3sfwI|scE!k?3z6?+W<8+p>>*`TIRRWJB(S8O`^YG5))*{s-uHw>k65PuGL0G
zpO)sFo)R?<L~O)qxw(Wv;fZTKVUbo&EiCLv)c;NX3~9chyJ{<cE|ZdT(lifE4eAmh
z`kjc<j89UM6Gt7T)c{D6Hz0Uu(m}Shf(?}JHh=hor;Z_>RpFTEF{KmHt}KvFuoAl0
z@i_Xvs*NC{`Obg5<4I05MqYR(yV|D^ctQTW=Wy881pN(rSq-;66z0BCVL#$!6b~zU
ze*D8cbWC!5v^f-Uxk!sWs>59B&stoePml2<49H;hibfr*M82mz7d3r-ykgz4I$%fW
zaGk8^9>0Xtb|PPIU<()lrO4B$Ed-5d%`7DxhOVW6$S<0fqbygv3QIOxU5p9|3^{~9
znRRNAGvhG$XHtpzYwqNsS8K475D<gGD4zm1FJf5Wt^yBt2>tisn`rzWhmm&7|Lb~)
z_tOsC)#_>zCLXoKj$u=OZ5}HjP!~&WjzUp&j7ybxo^*+6oW-ThnbJ_0mn^<a3<*ac
z>9{xDi09XvQb$l-jkvJ=1Yr@3hLuKO#0cX^>mlJMNO|V(u)n?(Y<7Y9SP5RFzp&zN
zai8bcsayyvgLP&!`d4-^{1Jvi{5%4f@o>l1>e7vT{3{DtpXeIHtlB6dpT*88>IeM-
zlIV$JclQb<ow^y|FbSHIo>`mrjm4CYUHB&TI4{aLq~7%}oG5GBs{n!-#OhT7ELX?~
z^iiZp8~eYT3WNT;dX*9Q-n)rYo3q>QQ$TLb5U*rkv8W=x;4H^jvU?~DXXg5G%iE8y
z&-jFnS<6N*Sj`?iWwrMk?_lJ09@OMCW}4hr@8(RmxhP*FvA!p$IUE&1kwui3CR!1a
zi`uY=XVp0mpZ4<}2*5kXqg-5t*vC(foS<tR6`46DeI5(rt6c%|LcUawE5EK~1~s{=
z+O2$p#{@kZPG-?A7Wjc?5EndwnUXp=7-Wkq;Lfy-OliZMP`LpC28{au3J?4YF`!q%
z>htz5zuZd&Q3Mj+jjWv&k0t3_4)z?TXy1T%D{dVGjPX<GYt36qHdC|?R5N|y6sd9R
zz4`-P(8~+y@Vy*;1hEkJisXR=Az1<_X^d5r^gcCQ#-cX_;FHUPb>*w8pn-7Kc8&1E
z*g}Yspb|*iSTrY8R!od`Z?%D#WU4KMK9KWH?#AzcmTbJKwZNhsP-Ph*fluP;3xg&5
zr_fL%%ngYzXP#jJ-mIbzcA3{^K{`;)X#!(PyaOfM<`+t_OBl#N08l4hnW6ptB~Ecs
zT+tU7=w>PzSX1UoqiSx>=<Wd=%oo$@n;)fY%3~ISwXyS9eph7zxTv_g+S3mfZWC6k
zu&A2DfFlL0!Z_vUPjY0gnNo=erJ`)OiokLLmylNJXTM}+qD)$(@Hx9l_}BC4Pvpw=
znWMvTIWO(FWOFm#g;c$^@hxiSwZ#l_0!p76#hDo`_*l6=k>DNIcn2**gmB(`+#f$Q
z+MgSHx#zCJn-8WFDPkT+K5qh8BoMYGjkk*a4F<&&IJGI|7V<|78$cqHPQC5y!^sYc
z3x`U1Kg(=Lx4jI>0>l(pHc_Fy_k6ur(tE3xMzI?JrT=#nEVxW7Drkq}EX#AHW2^r2
zW!4jJuRk(>Ns6u~XHQ067E#%Zsk2Ovr<h5i=ykd&Frm(;2j;#NhkNsNW$TW)>(%vj
zoqKto%{ZG{rTd0TC~{@u3#cS2HeVsSE1=(;uv6uMImnCKfH)fd^flOP9;v~rD3bql
zbtF$;q@QSRu}AXKQApc^>-7%{lA@5wifj*>2w<E#R3I<qTr5;y%_^WrsoL)u_I*|(
z(z>v3F6ZNn#r~&x(<Yf;!7HIIpk1s1dQbw!6((y^a>#olj~CqK{QhEez0{QC<73PU
zlsk8F#T9O|*4*lG>C+#?8s8ATSf3{LH-tfk$ty;+#ON7_9#=`dpbJ-&;Ba|2Ju}O*
zH)v77W2uf)g)rIn6_n$#Vc+ZZbsF6C{`@1sxaoGnz*vjOjbkobIPqGnDa!9=$xH`N
zDjmE3m$jYgEZb@UXHMg4D%1zeuq|k{hi>x$&2MG2{{d7zS$pmV)!l@n-jeDvw^2Lp
z!Zr~EZ-N;wk<=G@aL4dQa$~MRU#*9LkDGJvd|)l0%;E*t2^Y*|y=gY#h@Bk^x9lSK
zrvvJ^_5{=(dOD_0X_2<I8a{S`n43w@<8}Dfmo;GurbG|ar(5BdgrMgKE<5B<{lo%@
z6|fZ;V+FKpX(D5+Lf6;wLS|Uc?7@H_Z8P?ZS!LW^=B6X=W0Vv}B{}T<4rbKsEyb!u
zrO^_%`9*&lwFEJC{~7<y`@1)!aT|5zf&X$ns=eR<2a3evEjde_{((L9gO4#H^NeKZ
zv`y6?Gp&m=3{@@xPVPtKpN%16vx1o0%;S~FX5^z^!5F;GjjW@)dFR^77sB(F8-v2_
z(aaJ`@0&dUV_GAsU(nYF>PkDQ%A}i;h9bS(0Zp_qIT{I?<NaB~TlH@QjHQhB#jlZo
z1UCO%fW9U;A%4ZStGJ7)XYG0=AzXuK=nJ;dV;(zOqx4&JNOo&Z(WeWX21Qd7*CKmf
zQ(YNs9iAwGarn^CV9MgqtYBse>paVM^=34x(95U-PcDw29zqf5DCILKYlJh-ZF2Oc
zbRDsm`n4vMuVxF!ri8x%nGh|`Y~@^4Zn(RJfMEP#`Z_62C}Oq5)eq#$`U7w<p19cH
z5+{22B-k>)<o!g#Ur$XiO*)FEc#N>(I8bU}Q0P$F5a>j8Y3R%tQB=q61?G6?U4alI
zDBtphEYL!Wfhi`fjLxCBfQ`q2X#H5>#uKLI|1)dS;;ey_NZ#cHo+?5H(zoy8T`vV9
z0@f#D<FQ6|Uj>M+-08?{Qma5X=xvqU^wsH<qYfO@S7cztbFzkY73{5eE&Y0dhw!-_
z>SBx?N@{%k-CTpcU$0|J0gvs+ibxoN0Xt+fAorTeFfeEh^VUtJaItz{@|#>e2$P~Y
zzaSe54*Ia@NhM?LBZoG?7^6NW@b$`X9W4IiO5@;fY&AYpuX!~&bQ~s_nY)FRZIEEE
z3Xw)tk{*`$ENro79&>QehX9e&PvBDaDB3ZO9hAQK{^apK25+`qz&5c7L0e2w4(zZ~
z0?_aC66UzdWP6)ZXS<lIrkKyW5vGxM*p{zl0bLAuD*@BcPOwiVIwqJQ?;Tn1l{Y-t
ze8cesqe58+B9z4zI$aLTS*dzFoA&#Lh_#KiRr$<@8%wkqN0!!Ve_|2+XaTs|`8<D`
zoJ-lU409+cO676SJT%<1I+%JOv~YJ8yUA-_X<O5EGy;MHPZu?r$tP;(Dko$P;4FK@
zI|J%$YZjf154HkLjk4l%bY^Wj!57-@?^*QidzRj^{2KwuX3l3M>Z7><*enJu9Y(lM
zJ%YHKF~R)!T5vsd4?(T{vDCd^=^a^{*B<m5DGy=N+o}g89r5j3FXf;pl{wjcfvME4
zU_gb)f&S`GQ;>e@e~b;(&ES5R;08O}!oqt{6s-JLQZMNQeTsnkbSkwsVc~v8&lfX1
z369I8=@CWf4d&mXmayCWaO^xDwHIZYK^&-Nh=`BgPhpE|{#QdXmGoZ~?8-t;PRUNG
ze%`{KlygDnt?k-kdcu5UX>PfMGPuV8qVbh9U224Z><iXTP*2oN6@dk#E$3BvY&K4t
z;)+>yt2bXQeHYn%c)1=fN~V~^pgm8OOVL5W=tWES5vw+7cfi*sA6f!LinDH^-!6Fi
zlqyk5mjEk3)W6f8nx`?oOk2;Abt4b1p0~92KzwlCJ6tdQb<fycaFq}TC>T%)1r}2Y
z@tyCAiY~}U|M5M1cGUdU;ZBCAh=XBW7z?6TT2`lf@miWV4-UT*#P^?s$ybG0m{xTU
zt`;2_QN*AhK-+&8#EMx;@la83L507}gx`nUuh;~I`LOHLAAi@Q>$bbCr%WM$v&bEZ
z7v>5fR#Q>5j>uZHn>z<&MIctN{}aua1SgZEVo8kM9OBFKFdd5`+HC{VE9F2Pew^}3
z*!$cfm%pyS&`NXZCw-iq;VQ-r;SpV02Q2x|@w3$oU|x>Hz-A!H(U_be=fgvf2@<<;
zZ{4C?&tvHu`v@3k_h)?V0*nz;p!9u-PEbJzcsu*{Lf098iMM^IkP3wV`lr_6Y0Gic
z0kPnT)48Y+(4U%%h}0t?u||_W4#|OQkZ$8)49IM<S<x=1+4z^H-RgH%_4De|2YM_>
zb8c`&2V!Ek4LH!Sfb@rw_6c{}Zg6VDgm4gE6p5ZJ1mS>q%2ymSn(KcRAl3AByjB+8
zwl31>J}#vM!h%L8ics3@vW%4`ru(*DV-*dQ`sfr%ky#5smA(7{S<`{wNu1D*AFO1R
z130~etr~TitUN^@Y>1JOfLLp{mK;`aApO|)wnJEkmqyz5=ev(t`!aXfLSDpAyIS+2
z%S68A!gM&()qQ$Vxx7H|3t~yGwfcVfV##PUmJl@n<!~5mcZiBp1OtH-l0XUE=y<Mh
zP3^#1w4>rTi4Nhpf5=!D<_96Er*E9;OGiY8eMa05yu|yCg!-d2dcZTwmh_u^rP|#j
zL~{T>HTSRkomdWdpyBk9Bm5t&D{9Xn_ZvN)mXs1piT-lgnUxjmakkmaLHu&Va0!pl
zFM()+9Xt*PaRfcDn{?KMHp92Fn&?XBnJDaB5qqhtpxPo2$)VBu<kh1>8cB*RL@ijc
zxEzr4plm<I(z^TtAUQ9n6H^U3j{)B&`6P*vliE$blJ%b~whS~j5y-K^hUg+v)KqYl
zp&t}GxW)6RiK`+AzJ(B&>YI%*VZn+cAZX0GV9vZbK<dx&a!r}=0c@TfM!<PcCP7Dg
zzmZq|+;}&$t52&ZeBkCQkCou=sUcG;_$u_Pqj=AsQS1EZ{SFsGF~C-{wn`)KLxe{n
zI8R5ROFyIRW^k^UI?8wKQOIQocux$Sa)-88@xm5gSPu{)oTuumz^ZV#M|o#YvRolj
z<Hfu7gx^XwM%Q@=$c6w^^j5=SON_|=%P=G|b%Sf<@Z1Q=PR}Nn#NlKepk```VXy;#
z0EZzT)jF_oZ@BY++|>ic6OL>yo9xS2`KfP@0wN_nU$v4d-f6VCAbM7)OuTjq*%OI0
z`jtkCXOoypr8oU1j7es-F1%ubPWBItdwXQKUnVpSAdei5lGj-Rj5-H<)$N_9R&|d*
z4aYiCTN;57&P5rxK{ZM%CG}!3&pA4UY}0+JODquM;-stGL3=XAhHtr1B=8A4cL4|E
zHdd6?Wj6P~+spKVwvm|m$GBd$wp~gbq-q$^7OdpWE5qm#zP+q2B50l9@1la;$>3pQ
zo{YrIz!UpM2_MR?pobZ`J@@R~S)|pJ(y7DGgAXhes~5NcvB8C>w4Gh<I(sM)80VY2
zASHqi&zVzU3cjk_&`_fVATXGX)uvst0kg%G{7P^ql=iD11QZK23zVK+{0fdTjkVDY
z+wGBCLjrXVx_yZ$;0BqxN77tmr<<}agf#&k0XkI-2_LjtZC{a@ORT4UQn1(Mko&3!
z8una`Geu|wj5u5H<{JipPr8ABn+_&LO?*6b$>=Xix|BKB;IgdOb?Ix_ObIB5A0MhP
z|HaC)QH9%o5x*nE%bn~>QZ7gX0y_gkKdh#G>IPE9W&Y8aL_>TL=`J$x^T=T!mb^oL
zMn|bh$ynhbmTP-?)gu&GH&~L7{0K2YL5bX`zVho6{K*h+3DjJ_Ov2wz<b{c1)M3}4
zivAN*W``KJs-I4<qAmh(h(f|9+0?3~AV8_Ib3~Vnq}3ix3jia1L-5K-bgyjGuWQOF
zSY*()cisiUV)yNx{!LKbSJmwJ{dH+8VZ_7(ks2uMfo4C)gSWS{5rS_g(#M<gTi6;x
za#K`>(=plG#}5I0GR;1t2QXQiae3x9Z4b7uLQr&?=p?(kF(1ysZ&@Q8zk<_+3gn*r
z&BFw)fP*3vJf#u;j(dCyA1J-0E@3J;hTOrC8I$$o)3JNFw#|{{Bl5XEx2oh@ZD7^W
z4$R3~P<>}u-fj3$d$>E!ZsTFJbF02-PnLkzknkO-8~&GNNbI0|pkyDH<-IPqcgF@F
z)C&c(DE9VY3~=mJWwQpBM0c3-gEZ5-TlyY4$8GC^6Mol-txl3k=v1zQ$0tos?f5I9
z2y<>4NO;Z<u~=)|h1$-j#~DJ}reTE^r~DeAamt{(tm((Mr52beZ0ROn5;h6&SM9L+
zMU#<jHPKa*m;ZmLB{uCJQ9Vu?ZVk}CkCAkx9L1SK**Ba#9`@WX2nwH*J=Ka`;x&9u
zdb1(xB;c?~D%vEpj|nhVh4x5>w&s>){kkuJZz^$K2JxmIa;J+pzs4RYB>UK@6Obwx
zR;v=}X<&)0=h-7=(Pki$?{Ha=C#POC^n7mWP1_5$j}3VkXn?~O{rV&5K5<?C0F%Q9
zkP~Atuu#H~v|_-m)12F&q<W*GH>!N4i9E+rZELhGU>OlRy`FC`2>%Hb*V8NJ1c=)y
zKoX@BiKMl2=#8lL$L17AlQ#q98Csd>8w-@n32+wOLNQ=z2H?CwX2r5zL}d<G6qCeD
zs%J2qh%(gN?}sUY8rl#m%8d@a0rP^ep^}h1;{L$}oK9lraj7vIds7ByH>oKCbAZ=d
zdjo8$)n92zUDe04-ihM@fEF5UN&V9w#;Yb%qlOk*^XD`^$&}|xL=4JIk_5fz;m7NW
zG-zVAoSu$j(DQOltD54U$Lm>Ry?b=rgX9?n1hcA;{Wni88d`TwoqHv%H1SmD+}%-2
zK9fx@ToM%mWPO4&t(raBgH@uhe)v2?fk)Nq_)za?RK1Yk0uQAxc71F{S>WKR?Rsjp
zGX;rN<W#yKp88@e{=tn*4Vz7Zx)xv3MHP&+J1|-olT48GBH1dTN7s3ZRdplQB(2}Y
zWBQ+nrcqn>zp1L9<M5)Ig5GJV*Y6MW+*cr{JFTa+6D`%(QcXZElImzY{!*Bnugo2G
z_tR)D)Nzq*Zr>JC%L^swFYz`UMlXBl?VWA#?#ux=98tE^fD*(gJF0WO)-L1x?QI_b
zR~^?U>!d#g@-(c)RTRBfIoh(;kZ4*=Omx4q(j<`g$AXT|eo`<H(Q`BEgU{5-m_xXw
zT()no(dH{W9`DTvk2S<(MK|{kLk;Gf)yNM7P&7tE^7T9bM(=0!(|KP4jq^XY-qrXH
zr$RTpfISXydjuAp5kh(a3ljM-hwnTZ$dIbV?4Lf0W#_MUdP`x=$Vi_v8u3PxTg+Z=
zlHUPde@>`CcIUNBe}DAwdzZp{IGdu`(0H#ZkPLp#N`QecYgx^J%92+*Q2HGvpQFZq
z&!4P9+fc|jiZAbR^NRm<>eRSn?T*W|cngd9!_k~f6esf%$>g-e(C2%a2m$rPW@GWF
z{RP6KFV&C$h_5gHGIBQXDDM3<krKV=jDX!<QaFpKeB|Y!y!gaAMGG9nZd|XvSrYQs
zpvr+lu;Cw!G3`%bVFFq*z^l_*077p3I3X~>4szQlN!;|0D+BQkZKqf@*41OXYC?+@
zMg72$<mgXSK4q15F^s0+8y;w;RzW<xBNb=twH|_kfM*-}nzZcAEr(fwsl0IYk5ulj
zJj;GiJ(L(YKZ;`9-E$#|+wjx(Cr(UaN6KYA4UQIIe{wkedG*d2553Y-F6H=RMdfs=
zaAC8~MEUYYwl_|dffh4X!{`)CfD7Eu^_uJ14EX3Tnl?WvPfVRekD0Fs;y(K()iWX|
zlRMU);-?u3G`;+n+irBzD!`!lbf}{;PH|a<k=Wy;J>ug>dZsVkLSMK4Vgt4~C2HUb
zVwt|ugfS*g$+3J})Tl!tnU86lA3LND2QPk(C*^v82h8tvTa|`7n;zDLU>HG1Dq)6f
zGdDDnXEP;TRxe!vlIoT0pWo9nJrYH~Uh$UF^|~^|?_fnL*-683kAs+3=@XsQE9fgO
zGe7_Uf*&E^7y*DmKmHW}!bbEcH}aV5#PbtWnkNLVd2t2(V2G1m$&i2ydyH7$DO2XU
zS5cQ<eutGQEBt>OC;?GtF3%Bx42nWk<<KG&v`rja{hIJWCY-*KLAuw0_Pez#rJ2fR
zlY&H1jZe$vG=*!w$4&(*U{3CT;~N*|N_uyaEd4gpe4?r2$AZD>zMrR+O|ZA}>%g*H
z`O-Jy671VD%`}R=85u5#jk6q)tH~Q|&>b2~QLDI+40>@{<_)JhBslziL`@!va^f_e
zSYI-oB0vlb4U_YXQ7!x%FdRmjXUZtKhI<G5;mX7lK$vn7K%;N1ZJtpFi`ggINIGZK
z+(C(gM&%rSj9Iiwlw3y}Wa2oQGZ&H4+-GPhhMh6pqikPv%0Fh&79p&dKfm<8un8LI
zPZ{og)v-+`FJVTPjef<k*$gNth&JI|@PNnJb`D<xX~JL0GCBCR)SN%%vAf1OMFUJ1
zZ&07Dy$e}2-I#f~3rFqOkp-+h^>tNQ-=Ik(yLurkL5wf9@mXt%6@35NW-0k|kws^v
zJT3F6^W&z<z4{@g-IErvCRmwmW7t}Ar9$V2u7e9{3s`$diiX1W?XmDRyu0uePqjT2
zet}8QK;>mxMKs2nVcTzH(KlU6LaY14{{T??4#P{s^FE;}(SqxCLD(&nDT9FOzhM0L
zA(*dD$R}D@`H4J~QV>G2izTSR`{fRo%y#y2d+@iT`|Om84iCX<oL<2&kW>YCRO&7#
zv^PDItepeZX+XVFd6J^M=YqzWQQa8`OpA?OEmOB(f%Gri(TM6RgI1#N^H7mBv$3RO
zFoANi#ZP(txY9=+`C9~C!zcNDyGM=dfb6S~>D{lg0WWiDk&<aDnM^I*zD0nDnBo>1
zcmQO31s;z~lNX2Zu3G&6(Y&-9FxfvDG|%#Rc`S5EL4DESo4_`24^YcXxAXN9(nL;R
zib%PcW$zo3ox<<EgIbv#KN2U?ifF+p`a9Gbww`Vz7E8T(-7&IB`s!|*gNhK`x6{sS
ztXmuvon0Q}mI5Fu2xE<XQu99TD(S`<g#gXr6r!%uR(YUds#}nK|HU!d*@Ayov>n9|
z+=Q{zf=_jEI(sV{31XNE;@tqVR6aj1YNo5B8f1~hrQznbI>H}gyJm<4nJmluhS>HR
z+qr@}sMK55vXtz_RzDOQ7ia9+K%PDXaH{{81KPYM5Gn<7zo3!w+FrhANmaS(sV0wW
zKl25-@c*OM8;xlX?^p)u)!drxn(p4}tKo~asF29a`KXlpji)3}aCgCkaU4oUu6+h2
zB^|THV{Ca%TPJ9_c>}b{b!+Ns_dED212j0I=*pD8)<-(X_yU;-wP+HXEaE=EA+=8k
zLIVDjKPG93qfi>?X1jgtHL!Vdqx%d8=-%5*u&2dxQqo3i<?b4_h?5(7LoA%kv(5h*
z9*r4YRY$5QqL&<f)ah$M5=1wz#<g);>*^#RC~cQVVa{7yOpHK=dWx}2QX=Ak>giz<
z$(M(7Z@F%f-)NACCLS8?HQ<LFht(GDynFdm+e4jO`bD=yGTH%Y>Faqu2WF`@N>B?6
zDY&5&b>&Z$^n;@IkZF*HR<AnvKmhwnZs;tSvgwYdv@q1x;41_eNV!3RhB9)k=@cGp
zy8JP0fYMvRJ49-yBzKMDGi_(itfuS8D*Y<o&wQP`;n{r6lY$6*w9(eSsT-=l6-y@V
zJ;qZ`xmWZ8$@f+4p~Alk*2CmtQr1N7boBxbqD<_r$xo>iP{H>dAp&t>3xVcaVV*#C
zC=&LXb2kD8rKuNQ8IuYy-r2e_ydjyxsu|aMgiL%E{xl@BcX3L1J#)#uPOaLT1#%6(
zjx1{yr>t*0jm3ZQAx(jLVq6RBmZh~LdjjEm@(7xgI6p15v4wr5$EH%)2;o2+r;J~T
zmFP|WUyk-oEfdF`*L0U&{-k*DDdMTY@kiJn53my{J*=^VormbCamrkb`P_u(YVu(W
zpBa{AaZNdxyb>+@uQsgkeoV|Ti+b%Q&Dh995O%#u&I^|m9B<}!2%B^lNnKhv{HYkL
z7H3&*fR--gYwYK{0HY%F;?Z_3E>Fy>AyCbq(ZBGq0-bF8nnu2g3}DeUF`ajj7|{{A
z9KtG+-r>Sxy^CGzNkC+pZQwD@Hx?rYF)V<pG*%nnhr^CTzkHJb?j65{Wn-|>EbgL{
zBldEi+@(dF;%26y4vHm1G*v+F31+36(-};BQ2oQ}V9sK#U9ZvKAG>NkXF#2TDlK)L
zdzq&p)^H=IdPg(?5YHAU3puLChM=g=*DUa-hpFM8Zu2Eb0Hvep_#0y*JiZ3cqK;8s
z+=dp;^53|GGYB}`fkCJrk|QLr+tCnkLZeg}BrMy7mh$WG0<fA#8@q}1H%R7o-2+M+
z=$gg7P09CnU{1ua3ZxPr0nw+Bp_Sa#Gfs+uneWTFq=_LfEm2r(pWu~E-g(u{+tR=%
z587+8n6GM30yav2nQ_DOxloIfT1w}_ae(SdgfTMc$rRJ%J{Fy7h3NlLVASyYk(sHO
z#9UCGvcPuyS}b)h9GU#F=;%4?(23_MKF)GOSwB_$ztk=DZQzqiD*i}ZU*N=DAg_3P
zofIhU8o28hWPlh5`G>>6Z`Dz0Wcoxp#XLBA!gf{&DRiyh`nQe<U4$WUrUIymtG!)U
zsD+K5h!|r?{z=7&g&+YAf-%jkdQ3T?7abn;hcb&n7Vf|S?1`G&6jgAe&(kP!#QK5R
zVpmOq4J%F@4C5Q3b6(NnDRXOfhLrq&$PiiJ+ISr<HQ}@|O{>6WfMEj|Ft!{wO8S6D
z$vYS~pYx*;F(5&$Y*%og4P&?;(5`GJH1=2}DH|(f9cllfW5H77h7jp+N<jDZ8!HCb
zIhO1v#Y^9_J`Pz<IG5-a^4cio0k!Jpz$0HMXv^Q;#eI%_LnP<=RfXw1?tmChxo4l#
zPr}m;WZ$5CkGy<b&BIMLdTBiVJ;CbG!2mhVlxgOmJx=@tK2;so3&khTIM-vSqKDN9
zl%@8qfKTLV{=AmLQ^Jfydo2hLL7AwKzEdcIG+}Y6p4k9V?*p6cb@_Yq8zuHun?g?V
zCT`11K1oVpv1J#-C)uS=e2B#<DFwaLk`<tJBgKpkajc>Ks@Yas-@A}<SIWB!b+y?!
zU#y<{BV7Zq(bj3y<knOen)$O`^l-6Ry?j>G=CkH*M`V(PjgYpjfgy5gS&Y1}TD5$N
zL~EjpyPJ`8{%vdXOdA@)XjI5XzTk_My(tg92lP~&)vA$mcQ*JxVIcoDj&phVoMlkV
z-m)?$>0JjuSv#SI+kS9G;${_<8Mo1`0myZlmvcSZaf>H-Skmr)<X$f`*~}(vvz7~E
z$F(pr^~0l>Ht{H7UD?3Yk2Enr85W8aDl>hUfS*L29WY%ctc3|Rml<_IHms}_H=?FI
zucAn*L?P9Op5AN1<8BK?$@f-5Wi~)|*S}d<w(q?Fm!u3N9*_1#hj0FlCko|j#49S0
z{E2z@S(si^de}Lb60EskRIzcIu3Azi5-a0Y<KZ4)cOJ@)>TYjQ^?`t@AS%8!I2OK$
zVN@3p4=^MUA2=S5Fd3IkQ6~KKh4hA_PCg_a>%q_P2MzxB+$#0$lj3f%0Q=Y<Tf8K>
z3uR%o{M(zxxU0ZUstZsF$letNCC*x0sLjgPhZXL^r#KLN37-Pjn*(+Qi8_kJn1mO*
zGLJHmd!E02{;X>OaVr0HMK_$x=e{kWsfwsPwu@K6i^s8JH~8BB3?{>0c9(T%0_x!U
zA5skaY?@{Dm5s&*axJz+{wA>=9A{<j$;~-0nh0V&TOu^so()&B{|Bp~L+CKKFMaPK
z{_2p97UDg*YU;zqE#do6J0LE+<<@a-B*&mWdeuyAR118$4sEVpwZ_?3G5iw7!jyO+
zrhV^A_d7OavzL@Ry|RKv5Uue8VVd&<qujX2fsus(Fs!WMI(!r<^81wTmt%KC>?tcq
zwri273)rPC;N<~Mx+gx{e%uOorrl7HS84hJZR=zr<lVFDMyYBS2B?yU5}8iJsvrd#
z2~WRtp~Rw4I?H^;N8lbEsfA}6@Z`#@JRZmiT~$q^iv4CGm|SuRkydzigaRbTqlxdF
zCI>pwAS2`zHzT6xON&<}G}|>(^j#*-YvkbEj`-kdV4NoS<k&i3&Q-)ZPAmiQz+@_!
zQDo#%#T4>L*@dA~+zX<)i1g~hGmf9OdBBsCOOiw*#qmqy9jvetNhl@`hPJvV=X{<e
z3##;qc<t{m{5~DVi8wV$b%piK=5>72uZ7UN<HZ0>1}v2acmC&eUWCf)D%+a$_5YNc
z{+pA3HSz9O3mI7_J~yp@+&Vl8K|<4*V;80Du|)d8vZ{{N93fAZ7AOd5{+O>Y>~iI}
z+c+<p6LsOsT%?T{U#7$o%RCpxIEn|uS#O(F?Xw-ifRON-v1oTGU=$AN7m6LG*%Gf3
z*AZO}15ic0Qf=!2)G8FIt5p#4wX)WM7S&oU!2;AZDQU?*yEek|1QpjM3x};nHulJ@
zUNe2YYsN+rn#gpbK&-3S?;aNZTM=piGP`oga8y2q<+&~(Ercuk2N|D+z*xOSP7F2B
zbXU+MR24Gk4GS!|L(F<$Ymgc{O14===$%|g(cdqgGwkfp>yuhzyWItvqU5<eS}KLS
zMNp;E%x$#&zUq0dLi@g-={hdM{kmcfEjD=s7K}X~GS}_%qbPi2&2weKM6^_*2s>QO
z(tI2Y_IhsLt!eD)J<H^tAv0WM#6yJA{BIBtZ2XXa(@XdF)8s(>x(BJr$IvQ|ryTK(
z^*)dn&*;1M8V~AJS_Ml<-eyCVUzF?OPCnf@Bkw#(X<)0UJP54FAyR3U^O6S=fv9((
z$)Lu4WmhhOtiQUAmT0|z2ezZc7ZT5o@OxBj@02Us(wF!RU6I0YRQDxTwqy6gWwxne
zJ(4$B{yoCp2F4+SV$Fgfk)6F)#o5sKATWR3ri4{6?mq{rpoZc=9W;{;{+7_=0Bm-8
zTIVsS2bGc>j%?07_}G~7I2WJ9zU)^?o4da{p`)~hOe0RA!9(;}Td3;S0$%7MvSu1p
z%r)~%z1C}jMdItj>IskK<H}n_Wg|K!W>jUa`9VCdN4H;-XXly7K!e49<Z#;b^u&WV
zfcKg!Wf(aK)V1K^>*qASG?siVN6{nc)BeH*nmU$C-90;0i-LqHP7or?kh%)J?@h=;
z?uRpb^z$mvx?9+*R=>MeuMojg&9v&FmjISNrO9)$mz6O!s0-6xvZdF!HO?D2Tn*(6
z)9{$XOMy35x*cwU5$BG`2lCK^Dz7!;!}2TJ2RDnfs2wmnQ)BLgS9*aXwkmNKdO@p;
zFVG9@*E2}HrX|1I`N|1RQI8AS9nEC|g68obiX^NRR{sXmM^B(Ok_VzM=vxO;!g(XA
zTXCpFM$g@@T{w=y-mtCJ;wABAj1Jb;XUtH%ZM%Ed$xWp~TnMYM;%$|H%pj>iH08CW
zl`wc;9rWCqmAD;ilASc+MBa9bGztjIyAUA)=2_I!*koS4FPkDnheTKDFanAOeu8X?
zJ-8;3x--qMe{#&raqpbT0}?V32Bp*K%gV@Xv{>(~eFyU$le6`9Ub0kHk^NvP$I~Oi
zQkTZJ@`CO*N&2R8t6PBQZR^*EQG#jUmjNTCmgm_xe@f%ao|ixdmO!U-K&MdzjzI1C
zeZ`VDh&@tk7*tI$y~Q{8EMOpl<A<sncFhNqmkt5{iBIbV5-=I|0|3)HE&n`!*9%wb
ziQ0tiDf~zZBtI2rNb?y*ED;9nS<}-cshI!}mTo16d+o^;A}lMRu=*yJ_6z6cmOa08
zK!aOo#M>>KM0JiMkxOWHkmWcV6x($s1biD44@b9M4W8+7zCTlXf&Arxtk1q#iaGP@
z?&cpsgn>XH6j{-FIfGKpTE`W~m!BBJVn`_`dmfq%F<|3*4sZ`)ZyJ{+uTS4lk$N8<
zf?4J?iZp}T+lcZTD`qCrCmHip;t>Qfe5CN5ci`COqKQo@IHyck=n4h^NQ<}h&VMp2
z9q5zA{(akc@>9vN|9pbDyyBNwjPoy^7at|`zy3I*%^_Y}E>#?5nvqVH%ub5yp1o4N
zi{a_!{bDx}a#+k5){LBedFvmwAoDt%3zkp!9MJqbu=%^t@N|9XqU3GSbrldnfJZO3
zy)cbq**C6)`eq9dH$r8u>@0f5KgJ$2A7+_ab={g1NB%=)y+l3^{N}BmS>la#P8OA!
zT5VA+vr%+5k}$KF@E_3d`C4+{>MQtZOM&^r`Tzs77)BG6j~Fz_cH6f0Uh9U&_Twx{
zW#-{I<(jXpX*Fe669iI9cjV_FHp!d^R->Uc_-&t{!gf$)kb*Qcd$!4s|8$}1RZrHs
za>snBEYU6o)v~4gd1F^#lpmKk^JJ{j8D2+xx3YtCA`haXy7$af;3D~7xw{96i({LV
zNy~$w?C3h&25jfH9=u>gA$a2`$l;(sqR~;rSFPyTEJ}VGeeU2ax%A+#zzl^^^9?g;
z%f)n0^R>BO^o-_hi*C^xUAlak9hveTCK_Z`v$2Ma)hUQ}+RhBUCn6ppG{zdMH@Iba
z?Uf?*&@nJhlBOogr21{SzM!`RbBNCXzaF8~)ZA#8I7vsf?FmWrcD3$cCye(}<S*!y
zriOM}Fl#ocJ(M4*xMVVZyZugrd18@ZJ*U(en6?v{g|1VjuPJ7#k!qkAdXE8hr;q(^
zA)V)$tXNe@TDS%&K?$suDSfZ;LrlW#sbwBf5a)+ml`vao`O4W2A5QV=BVzRAc+0Oc
z@*~7W-sN^)E(^i$J#AlXas<xBJZ9elu4TN#nbts=aNtU@y-AgjA?U8e&A$t2>o5;Q
zow>&a!i1vGIQU4M0Ns}<0ZkT6N$UwC;c)`NOU}r8PhSm9zmtWX0AC&v9=V}V|MS}d
z<!~v={5@ev^%P)pTm?R6Kk|K;hjHiA_HrwLt|Z~|5a)$U3F63DZ6ObpjSJmbpCAud
zIuJkobDy=aKCm#Cq(c2bda?uvvkcw{=uX^1Jf1;5V3PO5f$2wugE9gWY`EoBWs68G
zm+ZLMZPm!l%U7S;c+Ud$xpfIrSC62;i&Ln63WR2qS}fj39;16$kl2D-rJOWc?5u^e
zcV-~(g;4=~%yI|#2{J?OWFD)O-O?XC3Mr`#Sgd)`t9F(<>~E{$GX*RkIzK}B387rz
zsAj}lHSE!2g?hhFx(^tffo0S(E1*19EeK!Z!1HrK<i)Qf{x9cXY=cr$1Nfm1;bs6&
zA7CDDiAxfypxx@fn#%)x#my})t0brD*@KH=Q;lF>CY=Y)4=@!A{)?()Jz4~qGg4?x
z1!(_mvw0VTn&E}VIMq~<o+PA>!@smJpT;O^_7+fi7p~co4EEWqcAaXjL{5NIcGs8x
z`@0rJ(hbSW3FOU1Kd1y?T5nE8_Y`K|00QMz3t4_NXFuy`nl4cS^-qT>En8eu3bO7Z
zWe2=(J|V4H2iv`auQTmi>Q3$7uf;BAU93|<my&ISFpvOXZ(?V90z{)_8;~h05{lJN
zp~I7yvOkKmZRJqGw4Ge$8gKh-3O1ni^u>X-?6_)$Dav`xb=3XMIE97aF$Y^7hmbnJ
z@jR9u76+y{inOvN#E|y!n6Ygc0x}TQ@IwB=FIRM9LV)0FQ6>Qvp%eS|$vz|nP5g;c
z9Qtl**er-@*UP>^RUYHBhn|h+>&2_Ta~R=VVNd^qMJ|HW@YTI7GnwyBa}{A#J9mo~
zO`1dU2`2pTiK9c!sJ4b>Gdnne`H(XU>gq8Xe_}>emJLD;mnCY3aS8P;_P+{aQWFzH
z%*&6Ed8&W~mtv0Hhp?2=$d?9W3MDx^hPcmfKsR5$U(JIEi$`@Q*|H|Ahs@iO#uZ8(
zCjWNMR>0#!d5Y&MHm|j-U2u#BvXS?O`Ar-Yf)gCoUV^2U^?j<p>*<uhrBr7W({HeA
z)G~pWJIRg_utWjz6VIIme9iPp;V8tzD@@<@C*C2gNE=F4!GKA+ITRf}ZGNxo1@}3q
zC17MMYBVQrHG+{?n8vkDd7p8eA{xD>08|NepD->`t$W`Lq5x{MSN4D4C9b54E%Du6
zqD6h{dgBB!+Bogc8JGaNhw$LZ1Bl$e7L{$#5U$^cVCqa_p58jWdk~|KhCTt+9%U1f
z5gr*;$`k}vbOkM%F;9zUTiF@D;Ky}C>_?|VnpH=X3V|b=b>Wbfw#@97XDlF{Q2*j7
z7s-PwPk#a0yPZGxL37(b>kaO3K08D5Bl|$>G_PGQJ4!y$ao^JjY1W&Q@`~Rzl+nk%
z!HMaa_Cj~Ea(%A$!HnY#y@V=(3vgwGyYZ44))`s$x`){)Q-!|ZNr)W$WDg}!G6+5f
z&zM{~b8JP$CBN3h@l!y922)KxrOI*6JGubHAaawRpd#Guu1Mz8(BlQi(_cu;1nRkT
zGVrc#Ee>JWJkC2<a+dGlZDH?Fe+v-PDfr`vH5O=9ZOyX=o*N)o(@~I=M8Qy>a#yC;
zUu|HpujFCIW&O+~OZBT(#i3zhc_p0Z_&EXX1nFL0QYh)-{u^M|DLyn%rGo7AJg#=?
zRi8YVP=6M}w?5`&IdCwun;^k?)YiL`r<OBEnuJ%`-c|5U!4N`1p|XkukwkuE0V}Fb
z3}vO;Z5l#~OTW2wD5woAuY~W-SDMTjAH85h@cgzMyiK<;Pv+a4a+?ULR{)7{sjC5B
z2V)<<?d-`{FRPRB(L37Y=5@5RL6Ai}ddr}o?vnq9QI`)ixuwM^;ewIsnKA%(^y?vd
z&38THNrs(1O#L2&5QU0}R&X;|_T0F5)6onQvjg#c-BIgdu@y3VU&ES!=khIto)p~*
z>6Ddlo8I-I?O5&s3Mi^1Dpaiz*Qy4_H^8r&o-dbJJa21C(EHKrtN>?6KfD#OK2*f_
zNJeV-@pnj_3p$!V??|@E_x#%|ZigL*Lo*T$ElJM_*Rbg7r153CaYCpJ|JX$*T#Y3>
zHNX`@;&FL5K;tOA$`JWk_(Z$gv}{+;1rLnP`DWErN@`TEjAuXN5=YRGmUiCzX~>fD
zH<LNfwq(!O(}{OUkY!0jsE(ZI!{yCy0DeCZ-yZFT9HwCoT`D>{;pcm9h71rq^916C
zgOJDSH5XfM$1aORA9Nh#63?4xBO7N?`K7lAVx3i=N2VJK2H$q#ELc!twVO%X?}iQ*
zX1>719*f@1!v>s?h1ke`-<nZ%`l~2_EeAa}nTee!_7OtB2_74<T$D<^3V|3QU?66(
zyh(Ev`+2fnz^d!(${ER$DMWWbu|A+#N#}Itw-N*GS0t*Tg4Us#uD)-SRvL~Mv|(X2
zJ97X1AYc&v#7kCV&s+MoxLo#&ipyLnFU)=bbQAgbez>!xCOzP1NWR{P^3HN4EHH=`
zffR52QL&4<#v2IRG~y6Hh!Hx=Qz?Nx<lU=BHhlw6^pF2Czu!Z`kJgVg-^F_K78>D*
z(*#sM*Z-7;x+$}HC@65QX42^~{6p$P%a>2oocnFkIk_Dt&j14j#}QW|@6Otbt}E`8
zql4K|f|#TL^Kl@%`S*&O90~`T@`)|)*VdkUT=%^MS=8(4PwCn;ok2WD^kt4R3QsQE
z>)rimAu!+adIZp-;mQ&3lqdUj0nVpmC^ur}f*Ak@TQ{@);1zRG1U8z&g6;SU)wg3f
zCrwal+z9?_Zqa6-0*-fUzEgHOyHU=0N)Dq0bsR`G&%0-JN;M3RSzzNCH%-=Ngubt5
z2U3PF&4yiiW6O*?zN{wUXuQM*7+1FAHPAdeZiuM2G$_r|sahMx_$E6aD<1rF$97Bn
zFaiWOTPUlKeHnM?O&F=_laIWP71qNQ_!DxZ-+=cIn4u41@@P|IzD^FuG`#h1O)XbK
z*-LDKgO7~xQ_ae5>gA1j*;o?I8+af+K+Fv=VkKRj3Uwy$k(2MldYNNA$*mKCXv&Gd
zZCR!#sT~6lOpN}D=nsLe1&cTg5$hjTfKOgwJ%Ic%oaBnE`!GK#G!dN(ff~FTAZnuX
zETg&^T>|3%23smLGu}L52!%06&SR5?pa_-lH2S(>$>wQ^z0aIhXS~DbCX5>OIe2!E
z46Pf6Bt8j$H3CJx+WkkuxySD95h`m$E^apa7+DI*Yu{SR*GawN$J9uVhaxll_?gsS
z65NpI%v!&6*Dm0~t`X#CAYVrvl?G^@y>nuaq0V^;zT;00r^dJ~MuUv_EN$l;mAA`3
zt+D$mQ_`B=pDGZ?nF&0X*aR@Kdev1kbru^FQOfQ-?>MHDXc!fw0;SHKsn0PdjL(4M
zWF-B$iNlSHyJ<|A!~P+gOE$~shny4XEDu-=<SPl9K??@PohT)E(f@MVocU1Lrqeg>
zOl$e@vfA(hAB*R%n@-CHap{obYLdPqzHqWVPH~P0eIobU4|PEYGB^hPO+2L8cjM5`
z+n2s$wv!+gL*)39HO|=Zy=uTRMg8|b7rnr`WbNn8;<MLXmwBeO8jFjqe)2tr4zzUK
zV>4rjZ_OQ^!!BAGn@RKY0OSP8UdNJR%5xw8(!XX}?yzmzp<)J4qyP3n>h0yMs<KKK
zz?*^o1ceNC^vxJxjU$)W7vM(G3OzcR+Hg?cZklT-YIvLYJ*8tnK0psbKdg1Kp5tV{
zD2F<n=|_$Fh=neSWf81*cp1t7)Uk696%Q-4&upQpFeM1WV%7K?FCp@Dmea4nAKRXL
zR<oMj=wEJU>J!^z2t*~x38FBhB|JS*gOJ5h4S@~5vs6iGj(iQX$o6Ue-{cK7|KT#1
z%<pkRm<9VA9Oue`vq6STS1$>g86o{xoQn-nG;o9z;|yv`tqR}vp=$~{xI1jA%9T1!
zG%ir}88m8&Af@a#rMP|5<En8MejDtgg0#~Ct>iCjm6pxK(A(bElpi-)%#f~T8<XJ%
zb2Jk*661&*zSYyz@7A88na3EH{X~g6Q1W3~7AZ<1wj}=)ozXB<6C^wmDl}Bw;zfM-
z+c%?&OY7Pr{r8m>c5$%pWyiW#t?-Zdv*kdryJ39)34>4;aw0hNgQaMz%ni3-9O)U5
z_2s-!G0H-~CTUvKMNa2^9oyITY}a)$jRn%S^~YNd7=<B-&(OG=nbSM(3gQcj9!50N
zA-Kw6HGP&^Se-0~Q;!<Kj@SwN{0!sFy2MRkAhE2dVI;p3{`Z8G|N3mO#ldnmAgNu8
zf&4qKTyn|OXbuM@fV1Izfruz|L!^zM!zC3<hR&vS*Xg1_=H|Tii8|_VDDDs9FP#5^
z(F)Vn{KLU2LS2$=_(%DqR1<oH2U-}PU8Gx@IQLWfSZV3IKP0AW0r-@kN_YIY!%%M)
zE`bv#c2j>1_5l$)G9xp>7p_AGuy)FQf8Hwv{^T7jx1*IWMMFJ4U)<9cHf?)0dhgiU
z`53q`#j(JohC-Pw6pqdmlr)l=2J{LO3CR6q{n@cdX(rZ&LPe63w(KE~4&{r6-U5%8
zi-NbYb%8*KYxVD8^sD>i$vHcYCO{EC<(<N4IY7efD)Gs%mcUuPNr2z(*)~rGeeiG2
zHwm1&=&9}A=1lU{ZHk+V9HpXd;ZYd%-O}3MLI7Ciy=UUz*mawr9=ev-4J+IIQ&jvH
zxtF^NEcSuy?4!^h#D~29TsZkbK31K~aRPnPtsVUIYkQX^6-LRKeLrg&s~r<+q#ea5
zYt4PP=lOkhavu;4P4M8fpU%**zIpQ&Ug&(N8AB=m8-c)}<}MOnf%bXL%`?%^H3*Xk
zI>FCLnPM^>7<)K?#i9o+@$QZ4I>+#?Tu-P>56p%3<@y}0*us3K$-x?|?Q!Oc@wIGZ
zZSdE6)^h&~S}@P(5HxTm#0U`$K<h+ST1E=<%+|b$N=LZ4Tv}wvWOTIS9kr92&vTyp
zG|m^XZk>+L5DS=1;d*l)WwUA-x~yLno&Kyk=wYeD={%8zgbmIrqB+Ag!a4{z85uO&
zwE*+72H@t9(8b{YMJE)}Izf;0(e=IW5Rr;l)C?dcKGj|H_J3<Nzr%hvC2phtfuYqQ
z!js=sP8fo@G%8bnEW8Ke7&mt@8X3Am#r=ugNhCNTDpOB$^;sYHP3_bNAa|AN^xes_
zY~~*f6`KyS1x06upXChA<Y7ue-;5a`+UY^dpYbx_6v1@^Rbmnns#9>B21F$vyLlb`
zSVV><%Vc()6F#sFz_227sheWR5aDvu;CoyU^koGkYoTdO`<})xiuej%bzwF+>>^e^
z6F!Ron?LX_P42`1)Ie{b*{eI8*-(Sz^;coajRZ>L!#7jsdcROvE*8z8d1{EaixAP@
z^gH>ye;0WL^=txntrvykOsO8NGHS1v*!)whNmfaG*`y?+dc8;qQLY^!?)#aK_x#X#
zXv4GTG9bNJIlwW4Gmi!HT?Lc3NoA&Vx&2;(=G@m))(%0NJ&e=~>)RAm_+qM`)itwy
zZxn4YL<2eqX=99{dv4G9=G^~G$(W~{>KC*7OD!y1TokDCHxDa`_UvrAUo1uWN{dAy
z@Qa!w@13NO#`qbk#65QQQV-0BE`+iVBUE3~vj>(Dy%eECw^CW`fk<?l4%%`Z5=Q-Q
ze3@Y+qDRr?-`=a4K%#)!U7su4+_j9qg3I_*CRju@G3n*nrVx@Fy^8XMG%p6RM%vz<
z7(0^`0vQtNqdpj~sjch|f)!e|TXU7%4f~s7Pg94Z5x)n_c!uM`-wyeh%hQg<{JNn&
zW|;BYloaw)om~vp&z$>8vX{xlYQl*XS2am(xND$%U%zi4NI2g#=6&+cSuK|tNo667
zL0TEY3m;5@nRD{Cry|@u5j~!cVury43v!?<mGSEfS^3ev(<xp3&@cl_an7QPfODI$
z7S88yWy$MW3jD2`(9V4`G#y~&f12kP5rGsDSjTH)5nC<$ANhYASW0M78IJY<i39Nm
z#^$Z=c9f!1DEcfd1xPeYRyh1r*NR+q%vow2Btb8?G5@QZDhpfSrIUiXJA6!L^j|90
z;`3uRe-=Ol^MJ@?I(L9#o?5SrVs5qu9zq4xm2hxNlTMRrEacaUWNkZAEB-4-0Ag@A
z$cK*ChW)5>!yo6v=N)5}@QDhx3<TsaJR-3E8s(J2jDOOKdJ1w%y%q0LkvpWl$V1(n
zLT-%l$batMFO>)v3Y`*C9O;|Xtp?tV_7tqBpB<5$Ki|*9vYSopC*-Zx5a%sF$Lh-H
zoVHl1fXX6yYl&d-II>^7RN|C9h}B+8p(C$M#>MKk{JW>0X;3?^k_-6?>=l8#ouHM|
znLkwCDEm;ga?6~j*6(t<#Pg7h>jQ_Z=ff8wRPS8J<>o>oFfK#qNPnkK906WmI(`!a
zb3pW_{JSCQU=@v$8IoZS2;zS=2-t0Q6b*>9lkG1-C3HS~b3464E-#GQu^`h~2}i%&
zn_#bO%XH65d6Y&`k{L*t-ms9<A1#7ui9n&9+*HwzCFFLmpT$Jl!CXD1+%Rp0XHt9u
z%G;R8bc6I0Xek3{22PG=cm1u<nV)~uVM^~y1tz*oAsdMjYm^_d`p{4Hs?o@X!Eqmy
z>YaF6v@oD)XBhVTVV@poyO@BlkLyz;)OU2V(|0q(>i8$SsZ`orfg7(TpHQUePQ;FJ
z@p%5qkx;m!EOc5XC-MIb$o6nX<W6g?2^vCdQKoRK4qKqh?%W&i(Kd<fFsw0*wxk+8
z&QQ-QBqX|y&#!&w;bo<EqUfbk_9wJ_p8CYgwClhe!_v)VkV~b@Xwhd>-{?7gL+aS_
ztJYu>f+MX(uH%g_F3$rJ1Fz}BQ$cYdx>G55WRm=E2u5DYW`864l~7E{?MjQTX1;P!
z@p;YjPTmi@l5<)7a(>4J06|ug_*@77AqZ??gvn5J42_=;YlfBlx_#76*Z8Lh0}tYm
zT_+n%wH6;<^@&h+@j#4|*EeCJV6W&pTr3W0R=WwoNZhE1LMqF}7X^csB)^|{*yjWc
zsB2}56)yaKk>&H5mFyH&L?Y?+7|st!zyiSZ;yw23x_X1#ghUOuJ<o&|S9sJ8gZOiS
zYm_w<wI@C+QCC}0vyKTj8V;$;K5y>iS6{4NVlnxPn}XoSK~rQ^4YV_t;W9W##=DO!
zPI3|5cKiHW)z@}fYICyq^1QK&XA;}|dm4(cZJv*LDx4R4x42LAl9biO%Zp^3c&ysX
zt+=p^n&kdjdrKbtVp3%60LtT?xV7!E2Qw!c1nQL?h@#|t2O+a1l(v^KpqL#>d?4af
zw}V074H-jjzvV5Jp=`?1yW->xcPMnxw{#W&=iFx52h+J_swTbqhQ#qsu)#L}%%nKS
z>#j-$a-ipWJO){6o}t+D@c7g~<RNdr6G~-KM1(c}vyTM-buwR|bGkZzs^W=eEv7Q3
zy&|>bf3)T}I9hCeaEt|0D#Y%`FnV6c{r=*i_Q<c}i}>S+3f)lpS1oOZFaU^K#2xA;
zjc`l<IdC84m_?&pni=7QWn{+++53ucKD9=$o2_Q)xs&g)+%x+7nLmiUx{kaa_O(zn
zaF7K*U(UOZ$Z2i68lm>q<O{)U#=3#$kaYKZJc<09z@o!H&W;ftZHx^MH|ylHcM2s}
zsiE}!7fw*W5-RzqO=2cRF(w%JVz7lsgbAt9#;)0_c*S4m-?NIr_E`9#@1(Nc&FDhn
z>+IWQwMlOi7J1b4NOoS(t<QNiJE6TAD_b4s{ZL;V)p-f>HcFy$d=$iri@}v`Q0vXQ
zj=7#f&WC88P8^6{mKLAq29%!3tFn(Tr2BI*;;HuR>nq0Vyg3;*f^nR4WK}!ZhuZ48
z70+CEz>lojQcR`-kOm7UuuD|hcZ;HbPBt#BIJw$nm02yPHxhTWvnnNsz;py5m1T;|
zX$`zFLEcoiJ|I3b;^Wog^DtBoEQ6fePWc99B0uqW(e$)mkz&p<lCJXPr>$B!=!>49
zl6JM|A|AEV|H`1bu>fc|0ZO-|wNiWIn1OXG(-WrmDjzYt|GQmf&a%8QL`#hH)oDJR
zoSvfW6&)DQ>5ofMv?|ksQ;+w)p~xWeva}#Jv7g114g8jrBRjq&3c4Hy$l>4aMAs%M
zH5mp`H=&+Ws|fGluEyE1;m^)%f7?}e9M2tgN%Q*cB??<cpH-^kUk|Z@s>cPl3hxQK
zbOT>ARISPGoN}OMzCF(xO278*{No=So&7*>jmOVRa=>8(JUAnworcfAONN&GVI_Z~
z&XOp5@Za`ZGxx&o4(s-5yo=h}tn2-;Ch}Gqf*&R7%(QfUdIBxsX*IJ>8x=i^LA)<c
z<-VO5`K@I3hNDbnqAwmJOW9n2Geg-`<@|>O@R{G3XuQhyuf2MzpsQLXdx>*|K-pD4
z?Bxh;`@$}X>KWsp7D~jD^wKs%HKG_HdjFYTu6Z_k$s<*FowL{lbP!%n1+>kjj@5+h
z-=q#)<S7(hKQZLoN(OFok_MzxVPQCftJ+wWuuhZO!Lw!2rI=hKdseJ$5b&L^NTwd5
z0t$IB$!$hABH3|zj&LUSztqRb;TY0bRfW)_QMP;j$4<i>7}(QrAZKirv3Itkqh8`z
zF*8ntYjcm2^&-%z5pN<gaiYtz>-6I@*K$loIT6Ec1b^T@YGts8HcEBEX%sU}EiOa}
zil!lG25NSPLF1X-S^_YR;pWTNyQ^1HcHHM+DfIX9)bp<5^=btyfwVtQm+hb>ct}qU
z7y?22-lWX_svh|c;GC2bVw_jT?gEz8%9Wa>#>wW+BXcr#sBMn~pWmrmdVuTEGD@Cu
z&J8+A3N$fHp=blnF!)X33dJI_bA9|Uq~kDqxlJ71eN13vLwWRJw4^H)Q~OJ3XGTCL
zU+4F9F1UxBuw*s-!FZ{$nd5G(ZH#JCM!`Y%&c4m@mE|iT5)#yQ%(%8r)O+3_rNS1S
z5!EIK*|-KvGZ#qE?~5pN!m<-YS{L+XPNI4o>rs6A*jAE~Va(%?HeFrgJVAcl5K!#3
zEYGAN3MI}yAVhDCMK;Vv%z<Z+O-`aIhL(%Zu9_N-0Bjn%qb%8*w`$5d5o^#D!m#O=
zSb5U3Hyv6^$&=-dOq$A(iGKTHu{bDRARu+0<y~mMJ@(6Nom<&?D|3c_vvYCxsCuH~
zWLKmLd`qG&KYwmg^77=*(d=;|t3+FKvc2nQW;(C2?*q`hM?e_c?PZM_ISDN$P#p@k
z_~u?I9JQUXFmP6VF7&r<-re0+v%M-1zMn>1F9{0F0^S`5uPGuO@KQT1DpRsMD8%-g
z-y-?3s^L5ef+IF2Z}W&C-J_0Tur1j}`x2b#(b_Otd+gP}O_CxwxFv5wP?-8Tvd%<-
z;W}VQ3XDwP4orOGu29QEW?$DRx_p*=?0{x_XbIxRro(5@>NjFcMa_1)n>PXO+duV^
z8ds>dOfsSIZVTyDC4V{P5VdF}lt4p+_w2EETD#v_xFT+@%(i*h*UW$z?6$UkR_ILU
zhs^D*dA7}!x&Y>CYX6$Z%*T!jaP-c)R^<-XSG}*$<8JtUU#8T%{9SvFSIcy+x1Vbt
z?c0$E@V;{=Tfbli?F+4NP^$OS7y(-DR371z&5DV-fZ0<BgXb&8qQOHNvpk@%`kZ(E
zy`}Bx2@*(^3FrJn^uIm;{MVy3bH`I3^=<lEyu05+tLJ5iPgvU1)V#eI4N$=&F)qhz
zIX!LdHM60%1QU^z;3NNHOS>j+2|sbF$Ot#(+w5fYyXSz=p`RrN$`ygPQuXN!4yJ^Q
z&3JH!5wg-%jm$!3tdCddd-z>D_^%_VX1U3O*x|r9Di5usQrK4p#r0Ml03|mTLj3k(
z8#xMQ&)q0NVfmZ0_7i4(zWWcLUnxf$>&C`%F2LEC@fh&hK-2cYsJ_26kB4P<=Ko^9
zw3y>fktqZV$HjgiY2ZH+oYM9lWlWy&|JZOxjX6+{cLDsXq;-S(#BTZ)o8(I04YoM`
zsHpWGaRf{hau4_B*RJHV73a6z-CoKel|}~GqxcdoML(`VeUq0U4}&>d4o3|{wFJ^p
z#1r>^mild8Yej&^`zrnQCLNaauSaOaR1s(^_3~+FZqI)(@@sqlx^8l$1Bxgm6>gzU
z)A%cT?^WR)0;#)GI?Mp%Ax_v*1AHC*f-x?>_D{iVM`AV4*PEK=cYzIe;=F^<9rL-a
zC#w8zZlk`7zt`|)eCT{TA9K@QzqdUhW1Jn6d}K=^0!v=o#zUZO@QbbPSEF1A8n;QG
z|4fJVOe3KiFUF~FwJi`Xn@;Lc*``ew9n_O&k@|}s@?Xq-Tnz`n7#h2SrjHu%`vuXp
zA<`!>EKPAE&cOjxJxX_eX^YMc0kGr+2Cxxg{`-l_E$`a>HY8K$5vtOK^EzgyWoN`P
z9Em8%vF)Y=%9)Xk!ihZN#&9hP!;wh4R7--D03Vx?v+K!pO-INC#@VtmZNWsG`0=<`
z7Qd=gV%+q#2nM&ZwGM3SQz&vC4S$ec0Ji!(NwZ;pZ<(<zSyAGc27Rvs(Bc3i6Z|*<
zs??FuCada3axz_mwhd3TsNgf8_*nihaqywIkA^ERgf3vk@kh1s6Vlq2=3SB2Neux3
zEw=Mdy8t#o$-gBCq=POXQ4Jmf;|Z_4Fo9){p-46kgVY(0X`2K1r#Q->_43@vQ6=Ls
z_;bUNXr+pGWZKAdg&}MdbtLA8u=4nB&*cz6ivb%A2dqWaAiDQPSPF_wq%=Ic!B<kv
zTzIYt-6$t3)VT=`x~jfJc00m`%6l#};z&f?lzQxEO`DO-sXyU@q=tn}QO;ISW_X>9
zzHo#4DQ!U^JcKo}uiALVeBp?=f)l$41P*OdepU`pmJ7ygHWmOKrJ{eqvt&m-aX|eE
zoLj9{<^n#xt!YYN`f^lFZ|f@@MKkBv`Ao=uzg(5pMY!nu8IkGVN7!i<`L8XWxtogr
zk^}Kll6nt@J{wKP0)<iji=pfg5+vFAg%z+DiIlvIQ*i(K0vyF*(hv3a^cJ>ak*aR*
zvJArBtDXu>RHdb$0ez_JZgNJ}xX!mbXY3__PhCePp9KUnFa#8h&r#D)-kF713ET*O
z6z{rkotZikd>0L<N)f99KV^(=3~8d#$2O&(A{2x?Q?ho|vgncUi%@+I$lVZPp6bd%
zz32XTREsG4wTQX)^JO3%P^pH8M=9>gQkIGm+O(65QP`z3S)lRFNeO4mNFXO)6>`g7
z4NV|5ei|w`gcYc>dGt(70^7f0>;KdBav8*rbA|a_|3;dh{|nPm-+7{+ch(QfyTva>
z-h8P^`p5XvsdN#-82pRe6(%GZdQG<sAtg<~vPIx}qv+=4GHJgXAzANSa;<81QJ`YK
z7!&HI$(c2S(_ze6lPeJmShs3@EVH24Pf<yHF}UFIF|Hkv(o}PUEKqU8HCFT{!#4?K
z8`ulyT%-c}R^1J#XCwlvd}L#Unt1uePxK6McQDI5&{-!VQ{frNn$=76fRhGE7<f6|
zIK#(CMsB5_c8&q7rIKu~r^8{7N;%K2r(=4ciq_;Wkqt_0F=aF0fzcaw--$uI9;a?3
z?H4lSYzz)$lckzjr($na=__2Uad_s5%=QOT;=a>`s3aJA%G<Yol<#R5)JgHc8_~@v
zDL$Fi7O0T-Io%iaDV0#mujoc8g$PtU8dfnPD@j*k&$ztEgAS5>_|%89vT;ejm>IkA
zkAWb$0#i8SimVvhAc}E9;S*5m-OZzEZq^&|kn4xGT}#nUj=+gCr`VLdsHx2mIU#-N
z(5;!FO=AygL1A*+LUF)`BJlV2qsgs~IXc>PCc}ZcFZ86h;g%$4>b7o%9}B)cvJPTd
zefv2P-*PGB=bJf@&K$yeRhB<_0PeZ?eQce@dWwcp$1A!_`Zx^n%wPj-Nve56HE3yT
z@xrFv%CD|G!VDO(I><T{?_yRtpUp)JyI&-T;e201>_b6o9QyWs=;41cmgbDZxcXWG
z4G(ODRNE)QI(pb|2{qmj5N)NzrHsD!jZgdCY_uJVTHydm+|Y=1B$Q;tk?jvSB)Ix{
zw1m}aT$OCf&T1Zw;B>W6;D*_nn6^YE+|%IXoRqR<pSl*O&yWfXl{1JK*ub*G)=G`b
zf`~2KIno}FGCnYpb3#V^Yd}k{2!^tMnY9aRLO;;P#aZwCyq&@gKW`T7eoj_DekWx0
zlg@U^`^>7xvPsx^bcp&P)!yuMMIc^vs%-kj7NwU!!E*=_xZDDZ7Q_C^r|f$YrC?3j
zyPk!ioEEuwqh|<x#BrEJEB7VV2H$gWq4MLm2!1LE6{fSlwlQQRH;OH-=kgP1B*KBB
z1Ff0ECSMV`)NKpSmwF_Nc!TwI0_09lWc1dCXOQ9fdI=D;@=1BGdDo7Ue5`@}z=s?E
zm#Rs8cv3jP^hi>R8cdcD;J7i2P86c}@#N;HmQ@8_d(JYb3{I6Gsiy^3(C}`-_NxL*
zonp-K;BULYq>vsOg^Ph)K7bz#NJ2)YX8A$_OHwym^q9d*QA6;Kx8G}go|SehymJ6Y
zB8CA>R*5}Jm_pU%I~@Q5y{v}3Y9ELEp@dH>n#$&BX3Yasku45z<}AKIf_rT1rOt6j
zXsG`^^#7tG=Osksgg*a^Q&t)7ORmqQgvRvve=5eJJv-+KaUm_hln~t0iIQ63xTU>~
zxESctAI+-TOK(?E`Wy)~VOVxbZtWaIibl`DBYU=?{Je*#Iy6juPeNZ)Lg&5mRm%qO
zHRH8tv}`2g0{=_jY>e!#2x3eT51#k>p@mIWX@EX;L0!{TL_W#kQ5x!A3x~>@G&E$J
zXPo)3^8N1~3vh9O@^!MtlWHiqZb~aIU!cgzU$X7W8-)AoEyKk_^+*4u4i7K#UgWUW
zhDFSPt(f1zF=p<h?A9D#jxmQJ_)Ju*eWs{<P@SI%y`w;P5JS|-AOZA|R9@#M59T(5
zN&ubyDOOsH;wvP%H}EDbepy1qF~o<x4#vn4SAYDa*bEv^>^`$B@4?wzQxK}2f9B^K
zcvL>Gg&+O}6Zwe5WnR90!y;T(JIyA%L%&gcN4Xb)-ikv4En5Y>F$lew^V~0~iL@R!
zlXsWJpTZ3>cMaU+md2}hr9`z<5Hi?m-Gg${S^yZcLJm)XVV5fn=S$wusmqu5(qg}R
znvvY^p0B6OEoI;h(&tq3nu7}}UPmh_S@b(CJQk^A==$Ik+~z*>9H_}Ub8n7QJE`x&
zb~cS?oj8Ct^`WJshaj$RrN&%Cw&!2qtYp1`n&D~f+7`_`^^S0po*}u-0VCgx!U}S)
zmRvt;f<V<c4D`bM2hHf<7MgQ#<>|9anY!+W4ddF>?)?qkCrFD1WR4fs70Fhv7LJSB
zC4xo%z`FAzz}Ie*nmEZ=;apM|ls+(bV&tmF@GU7WouQkmH*Ftw+o@dOGu;iuA=M(1
zW^;+3vnCbx@>J_H_{9|{NyJhzJc|1Y#CqQCb($JyE@Ze45IL>5X%lU-0%C`o!pnWF
z1s|;pgvdP5DQgRv*}rAmnFGg*>RwbI{MT2QYG^}JXx;}fZzSpeN7-Q;OswE=Ofh8m
zFJD(mZ!nrwgb=LKyk=S1*~zEv55`g~1y$BSN^Pr_JNuvPSiO^WqsQ32tU$g|c}jZ(
z7Sx@5k|Xd8W@t15sxo|T5(;XM$M&1bQ2(8|^Up2nwz?8?1RYuyN0>*${QT<}fV6)}
zid7|F0qrAjY*v!7cSjEYuO}kn^Re}HukRQP;9mF#ybk`cmA#G7)Hlum&c?~q;e{-=
z^NmXI^nbalieK-v?{4r&9<}@?rG=`{tW8s*=*yH{aG$zNXgg6L*qs>9DP^^qR9qah
zd_uW)l?p6x;Uu;7^f^-xC}m@QPUU_62D!Z29hGr)C#J^sp&$MXeiB$*c$PR+KzwA8
zDFj|<DG7@xp{<{{j#M#loY+0f%1eH5^JBPU+X+~)Wp7$^>8`|y%f5yzg2jp3O3@zm
zRw)!8q0W?jr<ZsgDK_UsaAujg8n1Dw&6$TpjC%+{sGk?rIDFkYH6C-s?fpQk=WUYD
z*4}|59vgS<AEQs@jqlVktl-Fy6E8GZ*Xm58Sr)qYYz50jX|w<+aRE^~?6W&4J(naW
zp>Q>wuWI{C`m3?40=6AavsnCjb*IgQ|Bp<4jXA;?k1pGc^S?>j6|Z(%_>7o$a6HC-
z>grRPsme?z%&ph1{?Vy2{G;B=m2g9Fa$5zYYISk=P^5?BbErgC<jltzOF*}Zco31h
zRuVObm{tXzHHw7oZke%=fIKiRTe2mHuG}wMw&z;{#{+eFG_4}K7V7cmf<E9@)f2e9
zg$a{2avD%X{&=gMEeqhB*)=P<CDM51<?X+H@VR4sec&w$VaQhj!6D+HRJFlBtGft3
z&abv5*FqzQ(eLJ0*s*p2X(|!mH+Tlo_nN>LYc78!?DTejTkvrE9z8O*Bv}*Y0BxX&
z+a%@sZ?zVPd;dR4<cFLcYXYy__&4uz4VSly`e&VQl&3Uae=wU#0Ciid@wV>Dwk4Q7
zK}wr=i=?4eFa4fCGa(;NyAd^nZBSKKl<CUBZiMPKxej1Bp^JleZ`;1Ifz(*Seq>@C
zy9`0{Lfb3U330L9mrk_QugOQ)c}y2M#DorAM{IZVtWJ?xIryjU3x@!rrm<ma9cBN6
zPk{Ny<#aVyQB-LeJU1ewOZ#uR>)jrOzsR$nR<50Oy{o?1JSX>G*Lvv+Y}(q-X#scP
zPyo^Ac+OuGzkj&=H|Pe9irCF{O3NBRs_DxEd8%QU^}q)p=+*QD3z`jBC3E&{L0QC2
z9SuN_1KDdCd0e17OY0H~qL_K^;4NRiuC`F~b&kO>Y1r{Un)tcFaf;<HL`!%Q69H8+
zTPbBbgVZsmK)oUDIO*&k_pUx;ONR_%ed2CEaW^-M?kYSNcx-@SSn>LJ?<3TV%!u^p
zwIx*kO7kSc@;9E)q3|%K3B-D!d7hQI9=ju*!uX~|%JJJX>OBF*J{pWp&9_JvOf7u1
zeQ;Yh5a$ldjccrpxEmDXeFAun)F`Za=y)Ck`)VXe9Dn@+`5W%y!vkMEE@NSh>-F=)
zHzz@C-$XQpY|a$a>2x*5SdZM|9e3hbFAEMubM?gq=oaet6G3Kn+`ci%VZc^IYc_MO
zuYp9|N_wjBA<$)QZApBrv+%H}FZqg44n@N93xfSofc8f|1ms>E_)=wVW`~DbazL)~
zM$3y5%N<7RsOCl^{1D$*PF=r~)<BVF=AN=Pv5~nc**`@BGMlUO$1oDg!4X=-9BcHm
z@W+47m5k9}ydcZ@F41H`fn>QHHK(oxx=g_K>C#A`Yf)Zwo(zwRzsk7?{zH%t;b9_U
z{R?4<#(~=+(;JF>+22sN{q|NyZ~OO&AS6%v8v#TJoSjyCDH1B@Ki>)Ao4kAWy}@Y=
z+iYb8^e#R#rR)o?!Lkf+Qk7-mpbW21Hr}H3__KOjm~SvYTtujzwT^d;j8yeI%<Vd=
zGBknH0tk7^Q0neuE^kK!hh?Y_NSB}?dxX6(TXWV9(I1U8=@Euq$>`Y&XG$6#!>*px
zyQQ>+Gn(rOnJx<INcc^ya;knf?}DNXlRwq>P%x4k>C#8QJ)%>#>iw!!W}jQYN*@N@
z9X<5d13W`sB<~JeU>?95LQ#!urqpgC4{=0U?@JC#$Mdd(lddo2TLz6SIyLQ6Qrf29
z3l(lb{R~ht6_$5i^W@wby7)V2r1+ZIhpE=bL9BuZ-Tnv8|9@<a{mx3r$n!`|XL=H1
zf&LuWY9TMV8~Ot4%c^nZrtJs25pyFEYVd=Q&S8+1E;cmP0Hr|6pe$1@?vDHlK`kYS
zGONr?CkC6$ui9`Nz|4H3f}8$N*;Ki|UQZ!VBG=Xm=;Mxkp*Ui95HTAqRKc{VcJI1b
z(+&O2nP+=T^EH(j_LsK%5SQI&2o1oPhN`%x9eZz*U#Q=<j%jGZK0u+`!s^L=0O2#!
zDpMGQf)td8khsI?iCZ$35wSX=lah|um6S=K^Br9aqgh{locw_`3JK<uU>T34^Ul6R
zzinzslMWAA`Nex-W1F}-=5W`({b_tA4tFIx5{`2{I&l(Ux1FvQA|1v_8#^shFd*<Y
zrujL+@y1_hq{TKrG1$}!#~%XqMRLr@I$-hZASTv40jl6)8oX$(<|?W-zgr4uID$6F
zz90MLJD@L@n&!{r{MVchhDz%lxPW`Gr<418D0^+#LUdsay0lK)^+6GXKQNF%gb4C%
z>7shF8%{=^_AZ1Z5q*#f#<|Jsy*bZF4)j-m1lQ<b>HJ2A9@@h=KBEGB8o7qrtg4m}
z{v1=SzAp5bzPA}+9|=?)YF7lL<U5P~iA4;T0fm(x3BUb2PnY+LO6UD8Kg*(JZU4=0
z2j|Eo&vKyloVhh5$yWa0)EGoPNVQrygjd5{1?}sfcNhnwo7MY=^(Su7)j(fRIrtm~
zS!du{KiEwD_N#D^#Njn!ONzyP-ceXjhD&Z>iWvjC83CS>Y;~7gv`^fi>X>kb4&_Ly
z=RBLKl)!{hlgwfpfT-jPx*O587(11SZOK`vAd$7c7kwyv!n)qJZz&zONyj|FNp~Vd
zNddlmSWGJun*XiXVrG_ukw0aqd<Zm&7hU!&j0Z0uwMP*oz=Rv@<ws5xvWhNLd~u_o
zcOZh!M?65bGPA!S&|TcT%zs}@LXv4-0&5??6s)pa)aFrV20$omt!8RYX+6b|X3gWn
zr+ezP33?-4(_j|Qm8Snf<f?w#OV-j3y7U&SNd=u5{IqZJfa6FY6)STY6}LbJMk(O+
zY)m5tGcgqY+-#!XHRqUU`812_Rs@hrdTnz4zY(||)>h{h<>Y(&CEr11R!ULWoP7OQ
z@t`LNj4>BZ<8MDV>cw~|N1##AoSww%z~H2Wti4UkqiZK=4RG?nt^*?!|2~3R@Zi9Q
zJp~NauV2)`SqBcUK`=LI3N`Y^)S~@fn%Js^6VsP(0O9fgFn~1<YOZVpAF@TIkN$Lk
zIbpRYFYeno{ZzOy;p1y@4{!WY4*!q)n6mj65c_L>MB;Qx;|?q2xm8kf7u|YZ`psB-
znoI_cr5kart~)NCk>{KT3x+HAoeC8Z3{jHXJ#Q-otT3gBM=(<{{$fIw*zA@Ch1yNp
zL;YyzTeB%qAM{`B))~Bo@B)mexVev7n7NaSh89W%eRuZl^=Ueuv@_#V$dP?Gnq+UJ
zDVLvKox`F~0saYLLgxrL>iabO8OJQk49$v>&G9^f{-aSuHmu{l5IT4nfSER8fYkMU
ztET<U6QO*%FUn=SWu~pI46a)sUVV5L-kY!)d}a2}vxw=D{jOxVS)lNpuKP+1QCWI^
zS<ZGZlUpFC_s2*~uT9n7MI~x9W{%MLs063E67~BNQMbX8d<{U3U-PKlPmK3^i`QLx
z>G+^y{-!pcTrm5<wDH@Nfjh-6NPg~D_7LC;dP|KTntPz>?GE5YuI%Lgol{?Su=a81
z`9x!`fx|-GnI+NE{%BeUA&B2TY~kNXDfqO5MjSxkmTlZg9J1WI$T{H4%;>LQ!3XwK
zP;iV?!RG=1O6S48#8Xm0CPEh;9E58r!vunxL4|v62<arOtc0^)vbBXW1lO(a0}0@L
z`x4d!%%*}6*W$mu^G5$<k3pp-Ni(9LURR7>sQG)*Vb`4Z^{nA0+5az7+OvGT2pK%W
z_e)|0=rnw}nR55RH^iehPp&dTyZf8nD4df9)bM-!k`F*d{;ssKJ7XeU@nxe6)VX=l
zMqjmhYj#~~P#PF+`Y$eNBE3%p0557tnT|gfZmoK8(<<Y)#|~gT05;6EuRfp*dKj$a
zVj5JkV#zEvS=MvUIH}0_G?$}HDR9wt);qy90a3Z_SkGGOJFb&JZ;!?*Hcf#I>mpMv
zh)NHwFd!LM7w=^@$Pm_m$+5%mr+!gwQR6LV@Jf^dmbUw`GIx%u!(9P?yu~qXXkQ<b
zQMOwWBf5YPv^8Zym71U+hn((a0lXaDO-EiGHIjREp=9!J;tCv(Ku5DSaY@a}xxiF4
z2MzLEo#*4EQjcysUCnC-(#De;i7%hDE;CF$T>+*3at?LKjkIyCKz(H7yu8dMkb|uS
zv&t0YFEs9RCZo4?n25-+J?|VQKzYeWQj-t#Ns@1YJ!n=9L9`(bZD6_qp6MyHgm?A~
zzQc=GmIuHKz+@g_V+apPWT?a*Q&zaBa&C*Xgg>S+1XnbsiTaXQzpFC%ft9FUN~K~S
zXKPXmHr#gJKcEx@Esd_SwmtDLXV<Pa{C|aDp(wgQtq;aYK73XvvJ~SwI>Wz8%QEey
zq!X;R6pUtax?tr_00j5?xr6C6*gL=s^QTk~s8!YiDQZ2rZu*0B`gDgjj&ec`$F4zV
zAmM3YvV6PBxDi!WCP_@8K5)YIO7be+MHO{y^jE<?7iB@VW4o~3Q{5n}3DJevUCWu+
zj%w#_ofe}05=IZWJSXc?a*3;N)feq4*y-<rtRtVSO#H?+aP)%vA1zf%(au4T>ilwy
z;HF3pjX)?Y#hj?H+!_s+N*nSXM0Tg_S<Xl*bLiOAKJGY39Gagh$X=@8%XrG&UIf6F
zx`^i?qB}oHnbYYltQKihySmB`p1dr>Fodw2o!aNYepzxMO_wOOH&Tu!CAu$oOE1D2
z9~~|*&rDGuI}c#88=_=eBPm2#f<B!b<`Jx@x+)3=|HcX%PI+^*_mwR0kerT=fV&b}
znQDVPkSLpvx4GA`<dc1qIJGDmfnNIX4y<|v?m&v2l<;Y#c3(%&UuP{EISKvzN!%BW
zIXd;=kwKg^oGk-q6KZ48>3Paxq#Udf&zQl4cL$Up5J>wF2)Ilc!>#4gsBHY$;{03J
z?P)y$?wv<5x->9lu4WJ%Q?|GA3#n0k8xVBjEhdp`ikkZJuMgwRF9Prr4v(v!A;FB4
zN%YJ^(E7Gs$h28<;$3`&k9(=wm~)E&c{X$7&2HZSR0L4omz~bufvX-L*001a;IS~M
z&Q|e7GLZ0ANB>@?d(o2JL5Z6s3d7Z~26k0u!{Ut+7mgDEN~)<FMCIZ%)4xpxdT)~V
zXKNLeaws2r6ItO=dloJUIBS9DliL|d5Vy=JZm<-;q)Iy!Ks~h(ty(}?ST%y|{$6c}
zs<e)y83EF)sghr~A;4)K)5+uUJdXj9dYWJrNR3B~u}UWu%h77Xi}Bng6p`=y@BOY~
z!8}{P30}|2H9Z&X%+UqDxx6vwkjJQW9#nE9O6gU0JtAohim_~pi&nC>ShHtS9WOBZ
z4CY)6V1!@}Z?2qvSg(9_UZTZT+2G<xA877gZtJ&o&}7vhWL}`7G(}I5fb4vm^$AX&
zx-z+(JE|*HMLhjBg(|&Q+HA@78sA!Wz?ryV7&}^>wj^V6yfXSXg%L_Mz+3?v5b;{f
zs<xE{cUIG7wu7k}4Nx9JcGp~7ebzLRN3|d+?VC+dUCe@kSD1PSW8yM!)6|~!ifJkB
z8J!Zc6Kb@&zCao2u>!3j%P&f!c#BOM3#W6{STL3|%P&P*ldgeicoYLAZ<{BQfq9oQ
zo@TpYBR4V#7)+NF&Op31ejxaDqBWK#wwXpQyvl@JS3ZNz$6lF#SR(p~B<bq$X47|o
zfEnO`eaZ6sDjUo}&h+2|`cmkm(S<aR=*_B>$IXb$f2L{19&px@MxN62xd?wh8=kHP
z(mwCt>MwhT-K)``2P)fB#!{(IJ=;3XvhXYK3}d2&=|}^2hQB*82g=*JpQ=JJ1cxR(
zM!pRkzoO73L$Vy}g__fV+ytxVSw;-B4w1Q&_!0|XYrjF3bK;p)hFwc2e$mE$9Y~G^
z#8F*A;|4uU_4e2W$Pj||=VORQ1Gz0-5~`c&yx#3}jTw0d01a*Sjb~-@P_N_T0s%Ls
zboB2_g1%Yo%OUSKY3~OE!$G+!!G3?wV+6Vr;{ukR&6(N26G98`68YFXEQ3M8I)QmY
z{M)T#9*~960SM{z@StD7C<u&%e9>-+0#z}emXmBDJQI=wyrcrATS{_<@U2zWW=`?2
zKHC0Ulj0KZXG5^){VUf$yJpecfgQX7dQs1Q<mW3KSzp3B-3AJT&_ro%cq^WIm7>(g
z*_xRhY2`ps?+VO{34`oeYi7F?Mz;Jf_;)+uwTARu>D;0{$?9Ar-^4L>jc+i!I@kvy
z<n=QTaiHITxbiD7mS|n?LBMo^6wz&iI?WE~<T1-;<R-ZudwVk<yfY5tUGp#tUtRJ$
zc}wnl0Ypiui$VqJlFdbdMAy^GfTtK%kuRtzNfeFxR|xw!HTLA5+#Tj;O7w{0yaKeL
zCKk*7-+vwV;|z`Mz!e@b47u!fx@0LM#q>?J6Z=y8UWixRc~>GEZN!Sc(zy-o^@y;l
zGFpE8l9|1&OS*M7uW<H<NtdwgzD|%p$u2@qf&*!urj>fciVPIXLfWF#=RcESGb(cZ
zM90E*N_1tULet8!4;}kRWP*2BGqmRu*N18`d>&@R`=)fkqo!YX44D4vG=S6n7|O#1
zQkU@tdfOE|joYaMu0R^5p^9ZXKOxjuJX~bNy*Za3xA{zz)F4wRDgyKGw8aJfq<!V!
zt7$$m*W2zW+7iLVl$h*A!OHAXu?qtB=?n)uXTBM<S(p43Q~mVpQw`VS$4P5BY=X(S
z9~*5I)q6}9+AQE+8etB4K3S^oJ}3wyP_*hPo6akXA6wjJjyxIivD((<mK%35;j>?K
zHLWJUe=W<UA>=!9k;iw=pPt>wrGd&v?pXoZD@Z>YR@XP{x>Ju8IchB?Z`OQfI4GWP
zeqMU&ny@`XO>oE4%Jhaj@ic^&Fn2smjuK3~`H6oqMT=zqAc^6Rav8hHX@jBKp~Mm@
zddrdi_bFR8RX~`ljSG!8Sux}xZ^HZUsYdt?-_#Jx_2cUNC2if`r#c@Csgr$>;$GWF
zn3j!q(K0{@(+wPZhwbGJYRT%UBVepHiQB-lhm*@#92?!j4kd_tBN|N1(kz<nVEh8P
zT@itrm(ViY(W@2~b2^UL&W7?6P*CB-$t+!kW@VwE&IIEBPD;HCA;?#pq5LB>l%%n6
zUt*ZDGElc^K>bMrXRQ02Hf$RrxaorkXv-&atasX;pBRBN)0fIUNab^+LO~XN+(qbc
zYYflfrU7KAKhkaGi#Fk0<<*d%l(Xzx6U!;YgR#Sba(91QnQ%B3s=Vj5W2}!woYHY<
z<RgGX0r==4tR=b-%I_(a@djDo*-^dy&1m=2b8S*Vz7R*!W9ru+B@)MU$av2vh^I#p
z=lOoHF!TQ|Q)7B7EgBDIlg|rDa~ukE49rqE0q|<c`~gN_9^TR_m~KQ9N}Vj!$NCg%
zGjd|8om_5*YrkV!-nb`{;t8Q-DyR=@$6A&xk}t2u1nKeeu^S-1o-8?&&Hw*2L1BhT
zJ4{JlYsP{{8<YT~zJrF(<ge_yp`*z#TA%7f?0D~19-W2m;*Qi5M(E^ZpY#q!g|H?Y
z7IVvUiTEa?P5O9i#5k)$bM=^TL5(c*#eQg%%tQ{)0K9B&QckgH&%b*Q6)91e^y@+z
zwY8Q^v;+7*MVkC0;$akd&=GDVH^riRH(C)$Ebgn$;3;7=EMtf5<l*YBp=ofS-D(&)
z;1rV*l!%+mYgI2|M7&Roe@erZ&H&!a;GrUB+QutZ)sZti7gjVo6VD2iiF?@ZLjO<C
zcM=bXXKA94S}LpgVsf-x!dzp?e5-dITP+jn+yT+DtTZ2LBM0s8v`8g$L!AB2nSmPw
zB^JHI<Fuv<1X7kMKX%XDJLFG;kWjz=tVP{nQR~P`KEjf$q8MkXzwcWMOn$kSznut6
z&$PlSvYB`!kBs1yQtMM&w!&v$4$Y}*-M@gNy7R@<Z8dfUBg%mVGF$YKJ8ogK4oxTM
zOg>dI64qxSg@%r9pg3KK>Eew2Yo}aI2m?B%Uskh*J4uYV;`@iIQJ#3Rk@QJAD9>h;
z=pWoa?dnd#C+hgLIQriy8-5>Ro0}Unos~>|hy*z;y3Upx>9$;1vB6rr(!DfL5;ee-
z+CY=y88v79mKu2R`s;<u)i;{I%1xNX_#D`I-JHA^)2uFKVcBDm<$UXASpC+QkG>u>
z*wITf{WgDj0mPWBG|FhfRLl6-(>?2_Tc3s4*-AeNxL)Ya%XI>f@G2X_f0?j2{UPrJ
z_Q~~>>_)Os5OrQ?1d*lF>`At8(>b4QH?hG2(*zB!l`2E4?G9~_W}w7T)<Bm$yZp-J
z8VZzaXm6L!z)bG+0_GgmbaHmu*U8-x@pHoHMb}{=A4)~c48-*PppQruydMcs6fo*5
zpzH&=uYc~`eAsjtPm|8G>5WZ79$w$zXr8MwwFIZwB+U1*QdGywlyGUyL$D{x$~jcm
z5@8GB;iid|vk7jrcF>6`g{57;RYYr$Ad@Mf)C&<-9mL<5asnK5=Gg`b<5j)NgU#G5
z1YCMR8GSg8s6_@>Cn>g)HMNp?(7wRPEz2*S()=^i+t*;4g-i@t6FJhE$73MC#vfFC
zm~44DNh8T^G)6N~cU4%|ubAuT>r#d8Vpq%I=@tN-)=~O*bxCl$Ac6mS+B;DimH<7B
zY|<HaBd5bCs6sI%LEMJ>3*!`sQ>ay>?ntu!0V8*ae&u}9DRrofoUw|s-9I1WS3niR
zD)xXTZ5_Ntw+7?0o<XG1LFd`kftee==WK^Uso=<L!!5^O0jPj@3(x|Dw$ksRA!<Jd
z?MdoUbt+0wXSJT$XnXN2_=LZP>hV2@|M!*RM38%?YwDicj|1?5#*D9La*aOC0aAtI
z<53)mTs(hkY=J#`G?d4WKuMf(=s1xT>zcPiXg^m<-)S{J6(=loP33f~Q_Pd)1`JAK
z9&dJG5@V;5lxNU94u@P*M}%e=1^&!n24;m9?V)zEZ|7$JVTh|L-3?M(hbVW??`jt3
zl7b2QXKccURNr)noUbSwc2}Q&0`jt@091h&ls?XkDJXNQ6<?m(j?a5&4lOap$(QcM
zJoBub1OB<~{2x&?+dNY#`TgoC2)KD+h~;s^IOj3%SL&uR3Q$Xn-rKl4T};0z1?^7u
z!H{F0dZ~u{M$Md&s&PeKzn$1rs-(g+eKghdo>2OqCV?zBB8XpTbEC6P2O1B(>Z7K$
zAXca<92_R;KvkvL942%23vF4^%lQm0kM?MmP>pfSC_?BMn$r3*#=;(+HAZuSxQSby
z)Bt9Ju_a8x%{5*amL~1Clm`VRUtPBsCl`ChvMc2BVwVs%j`7<?ulPd|2pu=q`0Kxy
zB-7k}D-1jd<X<40kgXH&v~l7>rhD!NaKcZalCy`!Jc-Oa+(kunr*i&(Vz$tkjtTi9
zf=gUpHTPA)QGCyzEYDZRIF&Ar<pyf)JSnLW0&8~>)3=&F-}+3PY#F#?@AWkP`I$aM
zig8P{C?OiQ^TJ2?sbnmsI=_zvgTK<bd2OT1*T1Xf{m2jzx3a|G{R6){fkz`3_uc*@
zWo9DnRm`Zg={sYD8|#Bl#7KGrpODicXTkY&(uReF#3-$b_l$N1Z*yCUK={^j&cck~
z0-R)gb&?h*!C%2fVADX9sz_G#mDhoWQb|>N{%I3PjSrMrU|R1x`+_N|5naNqJq9|i
z=|1;)zTyp$Dn{^4M`6_hU$799JiRC1D`>Z3Uk$y|K1rk~t~DJUiWp`5chMUlayO!^
z*RLsr^`gWl0a#JRw!?LzfOK5WmDLv^Mm);QONx@EzGgS~VELbc4<L`A_5yj&>R!&5
z&C1Wl@s2bqy&@4#Apx4*I8Enwq`t5@^kNCh4NfTjPPnkel|nvp1&e3_QkC|=`Dk}Q
z?XPVs8^w3umuHt6O&5)%Q3MU!9@A*s(>CzPzPsa3I9-Zp7i2bd<h6ot0oV4%rqg)p
zA|;YyY?i}Cfu(~HY`9K5E>`Mw68=5v^`?A#Y}d$)PE1KKPec-fgJf{z=60fIwKU<W
zbQ>vzI)jUG5Zrm2G=&DCvWN+I8!Mv;V%GY?z7S``4SoW7k^Bk&>=UGXVWSm>9lPum
ze#an6*K<YoshO<&)atYHerjdx-WrJgEDIJ|yq#xzKyNl7-7mG0fv%k_J1U{kgUtd;
zHjRlnB=qQ%9&PU2l9<OXoV2$iho_yz4}R_Au|fk_qS-4O_sPpUG9Wkp{hz80;6sri
zcjB=V(J;mB9g~TjA7S_VTb^*Axaz6vm<Hy|)t_wWd*v-a6g}(P;_1<F#m#O@qqx|q
z^YU(j?5P{Qs{LSegg95&vAKJTKh^o0Z7TRWonL?O1MXIwc1I#9cHeFy)A*LQFRJf5
zl`v@3=aJL!i?N%njPu<+7HU5AZ=ELDncGQ85r#ftgLlcyOfWfhDU>$7E!fv0a72K_
zqpsf7>sQv9c3^0FVlPL>tf1PNZxJnT_qa3gOI12bMYSbb&h*dv(~K`P?P_MNWpjSQ
z|4vHCMo;V+`SKglwKiia1TJUwNtw1{@RI8BOytrH^Q($!BgN(8l}%6ML+Tn2F`3)T
z=ks+}fmb$86@?hH*?kwDNBp9{6e;1dWpNvu6{1HLeM|-Fr#La3XeQmX!*ES;RxN!n
zA!Gr96~kcxR;87uQECcXH}}e@ttluKRO!j|h}rT0|G_L$yKgN-i0zwy#J_0Bl?KY_
z-+uw;y2|WPg8ZqD&-ac8pcQ-v%U%foD&2#=_)g||J4Be{1!U&B@H@Ff#C2Q?aE*C`
zvVN_gX5VpUt7qN!Z28Y;AqV$(2T+f`1rW0VL3d-Ic~NHd6El%)5KaifHvZV@V-=E$
zp&f+LKD%h~ekBnxV`AE4S!|PQ8DNbWvMjq4yg!Bqq0Wx&<XWI9Q7V4-jbH{Ull6N}
z_9ULC+uWvHRy;oDQ<<i&kMpc`Nyb%q6(utOTM2@a&tHUacD$s7&vANs%uBvS&R}`)
z+9~e2hULflZ@s>z5Arc)YCe>tW1s!tspcbR-nowSb67@t>lK5vo~ibI{<jfhLb`P-
z%B4~<?RE`KR&(y}2&c#6;kjxDH2vA*pNpiQ5&CzpoLx`3n=gOcXCxr<mbzx{dVG0^
zd3C@O5_5xce><@lux*fHh^lH>iYuBI_cxY{yn}=7%{4df@@gX|JzZdgR|*x-DJP7W
zxMx%LOhG(tGEXk=K1q4yCP4W9K{zHL&t?n+M$6aj>eP?hsZAkvH%*dPe}UfkDDiU2
zfID5WqE6WLR{Sx8_`O#~R+uSv3C^h}q^^rvga49^c>rT1KfIp=3Gn~xOHB!&fjC{w
zEAey9hp~zCDGQ^w9gygXFSE9xk*$>ZwFTdt?3ad`6SfSc>xo0odn6|@QAm6(;gu{k
z-oHIL-!psno+GH+vbz6Unc!ald8+-G@AuU2_E#C-4hj~-9H4Iiz|}Yeq#bYDu}%m!
z^GL#VN1kf4ehR+5C%tnZa@Ww}EaQPBr-**c|7)lLRQw8!QM^Ke|EP50jR}nak}f?r
zk+&$0+zGMLhrO5RvqoSiW0)|jYCJ!`$OG6K9E}*MAYg5X#9E3#nAFtkk8#Qodw6kP
zs7=&lBs$}cVatZ-Cu3+?cyApw71RVHaA%k`qFN-IziU&)YlgN86<Rs`W0)0LPsJld
zO~LF9tJ>Hko51hQ;5=KWTBq>--s(OW8gkL@G@KcFNCPj^E>Z^hG#fiM=9`4=<r<no
zH#Zp0o{Ve_O8M!q6LsrNaYB>ni8GIlUIqK5keiCnGiU`w?TU7ulqKO*wT`|g$Hi7C
zk}sY`%o#jGIIE9;_N{seqjr}qs{@DS?bN0#db~GTA2OvI5bh0xCldVFUF_lE(XQvA
z9c+zNb#zMqR{y)ekVUTa<A!?_&f!Um5)A=7exU%FqbFwb&zhZ{mXUI<)LYWp6=qY0
z@iHq8-LTo&(V9bcnO9WxpGWut(@TV2VQ~v=)iH<K^bMFg{=TU8(Gbt-bpJJ}3QjHW
ztmN!__1B+-lS?(kHT(GhAg^D5k8r9pM7NxCPt<^wuw@rn`PZR*jh(dlYK$bkFz`k2
zAOnUS{t;4aei8&fPKh_{P{<)IuK?efUHgazq50It(OLzM9|GbAx7MnHoP7kb&zH@R
z-Iwo`9mk#MEIM&f3rnH;0;cq<M#x%C4F>iC<Oi&c$V*KfoT?PEZK~-Q#zPBaBBy}G
z;%(PoHOu~JvhEN!B<AL#7PGTsn^1%$`vaxD{<3G#6U<m_5!j7#>qpgQ#G(Y0zN2ZF
zja_fukvHeL=pz%NOwa_VEPqB1rN2ss<!01FpUi<;_8;J8y$91{R#KbClimDiFZn*7
z6rMLpLv964VP8q^dLQ89^L}(Q@Wq=p_&7Zcal-@n|8b;arts*9w`vjDXapQPW|WVj
z<uO26`OuuZ6R$oagHeHvb|-m1N<$pr_)o*$=tt3_>vt6t@=cs^MP*@H(jGMo+!vA4
zR}xxNcYgz*%Y_})lWFMcH1E2K$Xk~9kyA}4m|OWLd-Qctgx$QVS*(K69OP-Qr%)<P
zqZ~s(f!MB1v^{m?26e~{Lv2W)h>O%%_TP1H_rMh85{uk3&cT71V|L2+iu-`gqlW!k
zg^9fX)U$DAOE9&Fm;r)DY^F`~LmLpIJ|)84ds%$$`$zximU_JXrl6hhw^=IORXWY9
zd?3xm|Mp+-O707}2315l;7@7_8c6gjQ$vK$^U6c19f~XG@#0@ZgjpCF71h5c7uCU?
zR8nTY%#Q+T9&5TGH6u63e#8U1#`y1fQnS-Um}CPmErn*u!4|n~7%-_v<xUz@?p!<;
zSTdSc886m_06hMT+_2Ex6K>7-Dlp~Nop|VuVG{;-{xkOc2-rk9Npq6|h6LIOR8(fX
zt4?6a=Xm7|_##^9bMZcA8JwBjd1i=E<+s7IhWnIk7IsrIE~MXmzl?{ID@AK-YB1JD
z4&{veG|IU5x$p&>8c3ZRlDI};l@eMvy>scv1wchpbwaHH+ovN(*R~7MzUNn7reLur
zKacdD<ZtMD#~bqpPo%>}#;@9CCs_16@~m+Iu@QrGjZ;3f2VlVd5JZHWA7L$^<q^>u
z`k`{*!fa-M`)v1JS?pRBBgp!dUAqQlwp=@6A-2y4u$Zx3T~2ar&+Q@XYegG*ln1jQ
zU~S4tZNp(A8;<9W0VSZf$l%~?ftq<$s_7-D<+%yGf!J@Z9xztUDHR2%3!+e)d{Wob
z-X$MtB&qa;A<sMo;#3d~AgI2twyds#jq_9^36Lrxt(V0O`7Z+cGy*^feNvop0b!}A
z&R_6Ye^WyaPJRJV1rSpf5r|SXb;qzHN~chscPdgt9g8bBvoH+MHd)KW0moY>8R5!S
zJ1fv@<N?Lx*9D!{YHfoBoaK2%fhl0wd|*hCmRrRu-W*hV@)RU-B!NnM(o+Q1%1HGk
za}EfStBTnuK6_xXe#Cp+jG6E|ZYE+L^a-s^SO?jEwjvT8v&>DVs_n(B1){Hm*rmmd
z{3k<v{*A%KBvXH&wXS_=dRpu80W8w3l?hfs3Vq+?4=?C#{O~T6otCzJ64}I3dn~iU
z?0(JDw=o59@5va`*dXmhdBq4n;XP=&q?+85s_V0=24#nV-Z`B5yg!JAG;t5Q1YTuz
z$NB{lfifIqp(*$*Ip$GQye5UZ6^yG_rBMcsYEAePk>dG||048}Ad9#N;4OY>>);$q
z`yvWFI_yBvFG@6N$w(^1?bo_&@lYXIca&n4kO9Jk1kR%dARY<{(#|^w%&G&CZ}r8G
zpvghB{-AkWz*@**{QpwC*TL;QLPcHU;FFw1T^jTazH){MO+H)xu7ZXCmA#gF(B)5$
za_(tEmibH*%V7Xzn|707<OD;5gJDE6^F9`>Hk?kZO~?RCCx{Am4Ir4-Qs%aYi?Gm@
zoc(ev$dAMlF_KD(qJnLDCg0lM?;0L@s$L!PmdiI^7Q_n0Ww<f%LJT_4T?a$K!)a5^
zB(glc|L=;)V1Rp@?0$WcA#Up`g6RG_T3qU_jN}Ra!!OYp0u6U3=&(9!(~&1^(h{Br
z%E5z8`f%0#Ky4Zm0vXAX#&x7dJ~NcgYiajLI#@cZQQUu@PU(8`nf&TjRzgPlh(6GW
zWO7h=v0-*l-t{`+KP$(u#yrznRc0qR=~}V+fwrqjD32J$ufz2z+Q`HGhFp?52L%-C
zS1Py@vY!WyqPQs5nopb7cGQ}!e(e^5MNGd)dpQGnSh7zrhf`qTNDk+&S=_csdj8<h
zd;DWw*qk!R;{!{v?A;XmW`Jy&PLft&GbK;WnF(E)l~h_qUHcS)sI?JYML)~xfaW{H
z38Z!@;yk!}gUUYNjN+A2y&Ex4DvK8<hMPxJk2Y+*le7mYQF6Uz)!6Qj(O!sd*C`wa
zCyLZ5;Zw_--{j^kS)ZOwqmP3T>g~xSxaI)GIKYxe#Q27sKUU1ge6PSXF|i?3Fp&zw
znAI7+e|No(;5d3oLb!O$m65Nni>mFNxXCah!9}IW;m~zZY{y^3pV9VH%iYF7GiDg!
z|G3&k3{To=xr1%#g~Pl;1N!NII3&ksETYdFl;}grxrHg;^-GH%pixJ?p$XNU+0YU{
z3W*8wSVv(c9xKs)ssq20b@CkILSKdf`8pfU@>6R)NN!@@*Z{Awyd3EW%QqLrvRTwf
z@k1NxQw0_&<74;#0DDLN)ep~N=bTxXym&0^X9CW11gnh#d>ksB=?ggC+bh+PdbJf$
zdg_S6$I^CAVm)N3``YY5PH!55SlHZ)6#n>j3OeTDg0#voGU&->SZP}0F8q^V8f+M|
zCzeM;#&p_hQm{V&CS7kp!spR2dNfQs;fUWFE^ruju3hl5*U-xMs|t<c!B{M$2+4d=
z_bX57dt$4|vgk(Dah>DzMa{4HKy}TOO}htEuBjNTZDs0CHykff5?Qe`-;CI3jP;!k
ztvMdRhImCqEnRv!@5gQX`6XKqB<CVW!!1WXDWf?5^C9ph)dXdGS7<3H_33F!_>tQd
z;AeAH(pg=b5Z~CwsUL3<Vqb7JOE5I~&R&Kcc{|b@pLPu*ESTdOI^7Q5%j`c%2@1Cl
z*{)`YNl0~rb=e;*%-)bang_gcH&nIMjxr5pbi2K7dz#^gD^-KM+)$9HU{IC?%1(<l
zFu&?lIe1tQ<9YEEhV`fM^r@LW34bvW|DB{+bz8r98TAI#pJZGa=mC}!#LD@9wL8|$
zzBR~C&aIwqO|Qfj-rZ$?kx2yw%C)|dXJqPGV>NBqGL^99cbKkEJ)zTw$Jdgj`Y{35
z!(!Ee57f+N!_K|-$~FruZOBmZWM;1llvb8(r~H;b4sy};92d4nIN*QYEP__vz;lNZ
z7M43o?8PVn(7>7lnI69x3hP73vVDT*?vW)v&480!76`StDVZaA>1>DEXcn*|KKWsa
z=`a0|sr1ZM976-o>SDJ!+q(P%TT3BkM>)-x>;xlAdEX{vAr-YQi-`&~cdB?{6G=1C
z>z0DS|38}ap6)x`tN79+9e~=q_skh$A0-$U6eDr?l1s9Nm!i(Jvl3|6wDa3G+|`GA
zqoA9n?|GQC=5ql<AG7d&r4U2i1VGI_E1_A5#q$&~=wslGZCa4ZAl2A~{@#hwVr<4Z
z4z%Fmt@L3dX<`>{hK8MLezdFT_I9iex^Hb?AlN6blOvh~NYN2M*j5(1Q#_OaO;4>K
z*E<H@BJQix(wF!13UtVLjB=-6R0YEe?Gq?+ko3%?NS^*(pC9TAUma8#YKU$Tab=4<
zC11CHI~<E8C7(+9*!tzv9%4z$k|6R=O_o%T0G$uUjxLoJ=bRbceG{KjrwUU${Cvxw
zbJR;}y$`dilY+}(tZa~gB<wLcp!B3`rGCPi%j2+&;aqzR@;3yyV}pIA2##M*?bhGt
z%RHPn)fAE8a&Ak}91#oN^IL^Z1keG1w=yYnB7u%Hkt<F&&Pb=ht=T)x!S11t{+Q2c
z8ITYE1?ZtYN6S;8Z>O;?Os$NJ1Jy>93nx6L++()5CSH3aWk$-*%nQ*!^AzrgYnDPO
z;707|qGX<nYrmvU=SJrtQx7<#^E?TfFe)@!6p8l5$jX-NB9D<VD{LahElxuzLuMYv
zu{je<b>FXKR7n2?CWlW&Lz&Th5UX`_r(<vAX)_rG&ywQ3U}w6HmtQ1IbWrj>p_WB)
zz9i`w@?&F2k1I?;xjX4;-V*4epI;Pd9MI{XaMa)Od9V*B=`U}y1q#?(7Ft|N-F&71
z7GKc`7*RhZH@jXQXfS%yg1RI9NH)j(JQM~q^pvygh}F%-TPw3b?iN3a<KG@h8zut3
zc_C+P(b(sY`^+0f#eM=gnZF)|=tF%EBEn1<mg0|g(sWm75yHx~6^|AF_EZ&j0)SpR
zGD5O8B4&c^C2g(bzRzB2NMyr9Dx}MuGUB1xgbL)FVx^!0u<PutyAs_}dghO!)U}q&
zCAbx)i1pgQ8`w4Z%dbJhgicjZsBjS2?Jd!W47s5o^y%@Was+uySv#Dj<*2@Ds+b7c
zFDG)96hM>4>1=ePjgQWu-gsyL7t^Q*_uGi_i|+*GL2ztDVk4D6QBP~WCV4DKOR#-n
zcFvOUz~FBeQ@Roga>n`T^_`tL^PJW;dHoYp9kKGSbJ~H?5U`(+v5|R4efu>fQ~PZs
zr6O_{gk7Fu6EI2dI>Qj$lzwVQ+A7<kIz;t*^<g|QRoXw>MoU3}YrZ0O%G%3AUER;w
zT_498D~=nzGktaA&V4@9#AO`Yr&0Qi|Fm~By?*jzfaKKipp|@1C4oT$rkf%{ivsVN
z0H#vBCVbGSEmWjU=?P%M4r(3VFV!}}M7<Lw{PRq^Eb7@!o-XGb8L9s(AZCA59=0p;
zi4(AnPWf1hZ2zk!cxt+rDIsvV%G5%PyS+ZBOZi=D*~n|}>+-#q6fG?P8Mlk={_ntR
zaCyH(_1i6w02k6U+(5rH$(Vp<9=-0DJt9vqa)C*$kFrljZ#EM<$KWR0K*Wu=t#q`W
z6XiCe84g&AnMZDdKK{mWQV^<G0xm|HfuXaEdUx3{iMNqfIwC5(_eB*e@*<Wib)`Q8
z2^LcE!d$9S%thN7_ieR7tpE7npzDPs&e6<GDN(<8?_E=^qD;T9i!)9s(c7EyOVc7j
znYC;hvx0kAQExt8DKi}5L9-j<3dKQp_MR+THr2%Yh%I6V$OT5cNF24>8m18sl#+Et
zOpp=ZgZwYiD(ZC3CVe=Sz2T1T)mqg*d>ZVrsSo^*E9(0fV;hv19i@GfI-i*fF`d84
zl?c;M7rOG*>oxe3Bd{0CR2S)67y!D=9#o33z@(%0o|TcgdRF8Cy&9Il2@lbLi!xl!
zZS+6WC>aWKKoz;|nU8mzbbQDx;L?@*j&laMHsGWRTVJU{9(VO}3yd^OvTE`0J`{(o
z2<HC;_J9+%L4|#YrFy<G$1ES~g%6m$9PP1&Tbo6cvC1;ZE|PQ{c>j(GB(5I?3Z(qZ
zD05|+oe6c}muu*k@NBav-(X*DlPuT>$Qj=$1Q1ilId%Y>C=cjd_uyuvvNz61AR;{9
zUu<pJ@PSu3WRBh<{IOcKy$S24nGQ%0lw<mqggZ_lvTBN^Q)dfoV-p8sK>7i>^AeRY
zx~trQsL`^cNmp4#zZ@7&Rx;;vVQLu#w5^gA$g#Ewp5u1RV^F)^e&_=lK&h0&3vLTu
zWd9Q|yhDXa50dD?D~+wB&uOUH3=CLa3yHuH9NkxA;+vR-btUl3Jf{CinY#1g3!wkP
zWM#)Kr8OoH*5{I9y;oMk(xpbm>a|`5T(?4rmvMRwu-g|2-Fg)GJ|pEcDZ`JXzqoni
zFK)KT2{1EgY3u`@6^xfiDd%vLyQT%Mm$xC7orf&nj2e$NBDl&?^a=*<K*ijk7eQ_@
z(*hI36#bV?{>=5oHk%c;@Rl~TUC7W7-Ms=fjLc0rUqDn9Z;gTe)lz`DXQwx%#@2+d
zW~Gn+7{4Ld*a%^7xT^*y5x)x_0~*&_oaFbhAUql#X%92OyB_YsJOg#?zBIb`fcVBV
zBT^#w{bEilCPL!E#TskcPi7mZ-sXnM?z+_eyO%t@(Q*2aTUya2F41uwh#|=kDY~t<
z*zX4PY#Pj)`P~5?OzKg!{L>d&n{V;iGu>FGjb-aTP(qRlaARwy#|suCq}&BKmpQe)
zEhdsoGaLofIt|gR4<5h6q=V*7F_PxVF(r}p+XMB+JW36DVoKxJsPRHby*QV0<BUJz
z<jc((Jz5qrI+Nh-2r{5}Lc(DVyqfropz-{yRG5?{30wkyY~{R>;H|h@bG)_U?+wL4
zM6BJc3R04pN<PbDwO+P*{JkG<<HKBjtUv_5l$F)PJ2$d%Xm&MuLifrfY~6o2s%i4v
z&A>y{bRpr6?*l@^SrJ<X07*c$zbL6hZSWKU_0vYi<z7NM){qA)4-WYW!ucAn+iqKd
zVBQ=N^fVnpWEy2|vjgPqS+58C29tIXqtAns!gw$Ce6o6aQKp2#-GqoT0qSvUSW1B9
z)GE=MY;;-&0j@Q|;)VHEs}~e+bWchm=J~ix0KEW_n9)F=(CUm%7{!Evz&;9oVda-y
zR&gHP;?i!B9SI_2JXf`xY$m1EbbFB}T&2tPp;!7Cbc&()bgP&PD^^604kqRZNu6Zp
z%CSMe^BN3*M%^KE&fhZuyo1)*AoVt%+!|0T_{%v&AYite<RbhT7;HrIP6+-Zs`u0x
zA^%<mF*a2#r<t@&Hw$QGk?AZZvP{}uKS9ezUpm*o58@Z)HKr{NaTdP?`+Fx<d+f5S
z?{#YrwmWI>U)YlT*;8n=YvkcW{;M$)|MyW5s2gJde{Lv?sq|sMjiM8lruCs5htS@b
z`l&(KJgQ-=x}%kIM*8&@Y(xWX8KgIKr=0)gSo#0v*2B5~npG*Vwh<#uMTU~^CcPh8
zr};VyAvILp#Ru8Er?5Ux-Pn->(7w0-E)olS3mViyZGF+>jxM~<&cxfruK9+~8-i^6
zTF#_it-l_1q(;{98*7XW67@^-sk=J0?!t^AEtNt%Y;;$qKbAEfc@^ULT@NU{lht|x
zPB6tt1OVT95rAg|>H*eqy6W{=f*)xY3`aVZ?wY`fGQ`fXA4>OIRiI1x#AMd_fDDE%
z$tq!iJX_Tls8X+RbEx0K;I!aTUl2e81JDi9aD&#)2WFb_W@}uF@|0kPf>L$Yz#>=e
z;}@GyzEeoi50p{EGq!j<=<>Epdt9(<w63xxB5k-zp}o!dC#F!^Y{Gpl#<lp=^rCE|
zyBkmx<pE$#aI3-l-Xoz|gxYcSWG)W=%carR=AC5etQ(YGhch}Id18Mk^-^e++_<O^
ziY@HhxKhLiOOy3?4i-zKjG@4%D)MPKN|`Ifw8{@7jeVbBq$SVR!&K-)%pCLX_F^?i
z!=WjrEV&KAj+!ujykEj{d?84vBg-h8pz?5j#a`ZRb`!NA>8GOdy6=IRY%pb=whEL0
z7Y|mS_@h)=(zadfB<`mzT_|TV_x&&cyRvcG&07lA5*d?MmUtJ+hgL9bT$aq;k~TFg
zY5SUm(gntx;JVH8SnKAT4lratmVIMuo`0~7n=-}KOn^~)6DXnz&+$sl1Beh#{Ig5e
zJqKC3#7uZBZb3<Y%lry$_jR<mfW3)J8m@y!<GZ@v@V8PfZ80YK(#06b9iCME-;la9
z7rxp863=5X5U=8DF?+PzaIs3jKS)xfesxWzll;rM^-A(x(X0Gp6(QE^R`OPHV7K{}
zFisd`H5SGy9F+JJNXOO;Y2xn7{3SfQJ8YV?9x8PII5&9pXBxq>t1Rk!D@T)?fOO24
z5Lr~PrL(K>V1+nGZ_jFxEPu<u^<ADp$`pe|bHvYsP_bPt(<U70&6`}0!!l<dCOiK~
z44UF(XeSfg)4!Qn=3mpv#?dyQ0zKL9sir-f<J*pEzfkWs**7hP7kRPO#3R<XSWEv!
zwp2{K4Og5>FT?*NF@W#5c=RY$pY~$lm}y@G!&FY&22f2&139t}x|S0^P!v?u=B_Ff
z#jw>zS=x>iy-)$bbb6*($zR~2^(}jhkr4cj<?PAwhi5U0lYv7}S2!&zUHQX~(U*p5
z!)$jwQ4EUuVN^l-JJ9>~{aMA30R=JInGpEMv6Up@?|rfQwE*BmawBp2N|hDRsqI9>
zV(^l>(kjKS643GRTD_uz*t`gMp_(rr!Unf>%NU&WpCZ?K&mMI%gQKFgNufr6OEu6g
z)5E|)<LOue<Y&5^CORm&1AgVIO(`bkfWijC${1gJV@n6adP3J;B@6AY0))Y14GDY{
zxN)(q#*MeEtq(n<YY3!djViI@<2I%m_zqUA%jE{v*kM#<NEQFXBhHr}<RCkfeD)i(
z{+0k_5zEQ=(o9wO37qpIiL_vH3`)wvP-QR;K57&eHOX}aCyt(S>}^bDed(HsA}t?Q
z>$W`%8%vJ&T+F5EO6Mut>wLU;Ylts{aAiIszZ*ntwG?l>cZ^16FhRJeM|K2k3Xn-_
z!yiK_E>38=2H%%k=^CSZUM-`8Cn|IzxyJx7tCa^yna`(24`uC$N5!mh*4;A10nNCJ
zI}s*xjdk0)sEIRuW1qQ%y|hhqbNt@{HTEthftQeqoHK5Jt%tQOqyv>~f9lqf$@-wi
zEa{a4lFB8rS<MK5PTI&&tz}k`R->Qpb<$~;h#&S@Y{i=%+LHkK7%`8X4F^7Hf<QdV
z`AF71K8$7qOW>TgAPPqLc(uZlZ`!>CV3JUv)|+E-a)}p$Si5aB3X=aGa8r0}>blq=
zndpXY_J);pIU(2S+yMnscW}Ft-Op;_`C4$|A0GTp3hBr%|1Xb9@aVa)LFcrc-YeQI
zV+I&M2DK`HD;V3Ee*;Aaa59suv^86js%@d;7cdzBdM#RtG)~6f)+jM{e~ASdfiO;J
zD+QD<;+Ps76>ISFclh&}|Jc$6cmCchv2{75@w8G0CHKWU&fk9J|C6iY=fs}V9ndzU
z!ACI3WygC(f~U>EbK>`B=+i=F9<SLRz@~}D#VyESaL495b4XVvcqErRg6ROj%V>B+
z6pnkRRm$y9>VPThg-au*nkQS+Rc_C!iVW};e?FuL%t!zUzuzu0x|OfkT6(%<U&EJw
zFXRN>b@t$DSQI<y({|#HK4&ehQi*c`P9A*_9c2t`=R<Y9d8b@Bx@!H4xmOHVwj?#0
z&xxMKX#*AnBySUc+UgU6O^|1(M=7PRxj;HRpNg$;w-_`_ZUr{A0Q#dJO5?Qb#Q2XB
zG0nMo!IP7BdHjytn((eT%mb<=7NJisH}kQ1449WI%9tN6^Hf)><K8`&;L>iP8(Fu=
zjHm~B_65Iz5~OA~jidZM?cCQTU`e;l!1Ae$FK--0sQzLu>R^0Zq3S?J7>Ux^r9qf&
ziTZX_*F!TeWCVKE_r2|hWzXk{RN?Zl9v-3(6}p*vQ6cFXsj0+t!GgybMt<*_Z~Z0~
z({%4zWZGWb1H|a@fnwthPlCFEsb3?sK^q&tEW}+tGLKOSt6Vt8_-F6HrADlP>6yp7
zTv-o))6|^ZGWYn=eR|q8@NgFUf8ww9SoPOb`15ev;0GQ}u|+alJDOL9DL21UsGy5z
zT+cEVi$ug3AaOp#5bbO!VBY2Tpaa(?zXW;Fsu;fTa2T?x3?ssMFEqPKX@9z!9lV4a
zW{RlkLi9q#He67u`#JKgi!-Wn;ab?*6}=~MWDZ=Y-2K$dJ+7nBw4~fZ(xdSm^a?sv
zV?DCXz0waWE}ZB#Lo5d>Q@f0sh30WxhwM`)v^0~fd$C`dN!AU%(UA-4ACn?ZEdMaY
z^+l82FE?3Pg-MDK|H?X}xpG2QY+_>(@Kk%h)I{ZQjRyvb^Q|r7o$emFtveXIDKg3E
z37Q)X#XL-2ivH$Ejv37kRY@b|n=2pf2rj)JVmuiTl7&K)mC1HLQ2B>WNt-l-YgWsL
z<SpGlct*jVyavC{vWl?mI*Pu_uik6NaX9kzSbu&+?k6r?0;sGcb~2*>x3)H>ua_>v
z2ll-%Uvi3PKB&F{-C?$Dy?TEPsACJuJM!r$hn?xEw94*T7*7oRAguLiCa5{!5Ept@
z-YpPrCru)b2rjG0X9icnq<;Bb_%ZGrGa+$D9os@YVw#f9oD(D<W~n&ATO|O|i@HJ2
z{fx8HRgO<V&Bm~9=v|yky{<sR1?c6ag-B*{-VRq;AtgMLpv1y;>Kd5Sp<R0@8-@kC
zg`{T4+SWK~9(Ig^AOZMyZ)J@Jpp~qcCfq_H`MDf&&(NZlF^DdQzZI4@%t+^UVlvlg
zMX31`n+LK6b}QDAh>@}*fy1;SiWdE5+X|hKr^`oz@Qg+tBr$jL{4_biDv!!&IKGuU
ztnN;nB*G@+3w8Z&Kr{+{Z*PLSw@a!@$#ah=RjBy8QeoU)jvsoBBabkc{hL30H=B||
zp#J%3DPCwM7)a4_qt!{E183F7KcZ6v04V+uMa*^<X{S~7Ypu&U&dcf(=H=XLDrIlu
zRD82S4I}w+U7?B8io89};cL336)mTBS;9olXblU;5j=cOf)4~+GG;4vfFh+Dp}vY4
zZnEg*smrOpoq)xO$cy2kOhZJ(&h_ljHmXWWFdW;%psQqE%iwIkDZIU;^D}6^fl(EV
zc(>jjxCvI0wcs_OuiC9(sG_XPYMV?Nu&Eul<+snCEz)+?t!f=0eP`v`9dx%BScX~H
z;$R8=j5qpj+7nxC7O?pS1-C<E<BTWt>jfIhUgtgRtf*my26k5ozEE#Jn*+YJ472q*
zYLv_Wu@=UeL+l9idJ`f;*?ns*kdBMlvgWwv;qiY6++DXf^s9;#>(X%~XZ)KJ`2IHH
z6h9LdAiHbjgk~a`3$CbOTl=A!Q*eJ;Pz=Y%%uqlv@sCfjOXZh6KX;%5f|cR<r}=AN
z$r_au0$0w)a6*}XE(HVvEX4b;^6XKj`kbF<HJ)U6!39_<0ki1HjTO0%-sc&ivrBrv
zAs3pe(#INirtaXHNHRVuKag9(WqTFG8B7pSVIot<PjHcE7$LkIadKq$sYom7G)B)_
z{dKm67(gHEDoTeqJphm@^L{+emx}<oFp0^p7Qe;<70y{DcBSSudS8mNKtbIzci_Ah
z$h*U8bOKWg!XU&l1uLO@z&?o8(da#aBn=}_>^~N_ImdhK_IUu;G>!G0ps8>G01EE`
zs0M&t2!D_cU^V}Cs2SQ<Rji;XkMIUh<a)d&WCvUumMa%LDVzmRv>|d=TT*?oM$Tln
z`D+G*9mr}#9R*zNDxK-OkXZ|}@cga*f_=vI?#NoOjN_e7c{tNms8^~Y)Y8os9w3Ld
z>P?u+;x}xf4}LVCP}W^{wsr^+G$dSZ%lEYPj9YxItBafV2`p9{-fX0~hOTvlm4+D)
zk0T>`u}93|C71SJc!NvZo-?KBpkqf`XRO;TA)#Es8d;PO!}fX*Vs*!pb<udIVx}R}
zb_!EpFf@q=qhKQ5?l*Zt(RLXF;43TfS&&J`aV2M+1`{kR)cGJU2L(HOdevH=Q7bSj
z<FsDPMk{muE85?Iw8x1w76YFX`0e{sLinldBUu-X7V|J%_o3*<?o5xCNDN)iFhibW
zABu?I0z4X-B^urP(2P%sIBqC2iH$g!ZqM_E0L546V|8OXw1<Y%s*}W`na-(hbpskk
zw*_*%Ddt0N81!Cx$@R56*Du1bqk!Bif3AXxy35Le%0G<GrWSSyzoYzwm1!7pxR;)Z
zBQwXFrjYWbGsW)5uupKn{I9oB6)DcB3ugFhpUCp9nL_pB8qO3~wB7lxlBz?ADBmUd
zK7hYOxr8Q7)-}w^tl?%nFgO|GZib5!qSr2Iu1+AG|8?SOhkGf;fS}>$P);2S+m@qK
zpa%lQxpNumt$7>zh6b|zQF63gT<3rLFRdN}l<SxaKpbb8&=O2P^L;}Qr>8Osd}MF5
z0zkmfg(P7Y!&EJ;NH3m^fYK@Z-c&?JOv&3(th5d~<gt~w;TV!V4xAaY1;xI^qbab$
z$fwT>&f>ww7>fax(-2;v#`?KgttWMQDXI;%9Sk6P?0pnJ$;gQE>-|{XHL8@st}KjS
z@|W{l%C>_7zc8rd*J1_9HcJXLp9F+^2bz6RQ?3sj*Qevc=TTPwX#JjxvnSZg3|)y)
zXvCq`R$vRow<Cna9odnFz^CFBGmR&YnLEu`lNI&iy@$*ZT;<c-y2GPE?S;yru)&iF
z-+w&9h36)|)TO1L>@&xMfB);$yiu!}oxuIZQ!KdFAjN0nJr}$;tir-DK|t%YP<n(F
z>E9bJXR2gu)2Gq20f~_x#Gs5CJ<J#wRK*L=P=Bu5F6Nhnz{^P6L5I4pGA@Ozo(Npv
z+2*Wa%jKSq$Tg@Ua2>w@3)HY_25Kc`0{8TaJS?mZ`{y3+mzY$^vP>TG$^%m}uE*eW
z^Y9H9y@!ATDK3NjLnz&5Od)JOQUY7+e9=HtQ3^;c4EM=!!<S&Bx4b(Q-f+QZ1>&u$
z*<KB!u@Cs^2JoVqY<pt0>7oK=y@#kVgjJw0tk8#j=vzoW&Hzh?i+=g|DUoBTUSO@X
z<5MMMxuYD9yA%qL^eI;hy5(Zk$}GsKRa$#yI1LviM0^o2=e&t}KJ>IJ%&2Fys-W!_
z6S?Q*wZlb|`WZu--@bxu)}GV>H^JGVia)dMhTO!JC-%XOcD3Z8Rpp3c7?AwqfhU-|
z$qIh|NtSG+0b5-Z*?-4mWjm{%`@%auLZa?4-*l>m4N)e^t%W1DPZ1+dCOy9btad^6
zX_z&)*LGi#v?wtp#*a4<OR}F^yJX0_DosrWu+M4%)A_T(Ip4w*{C?~p;#nJ&(?p9F
zA6W&r|LS5#eL`9Z%Gm4kfb()oh`R>%Fc$afjTJ{;%PX)ZllVmcHp#D9UZ+LJEc2*@
z$fTTY#j4LooXixTN_UPhe@7GN1c*PL>II>-HaXw+NW8Gw2wqG4M&^p7<3q_bKCEWi
zf=lYstf<SEs$h5nG9-c^<1++BZ92D0c2FXmBt~<TR?><w1v-(lWAB{A0bQch!}Ru;
zmpT2Zq?~~dXq7d<M7+8<BGDPNPb97x!hw0J_@Rhi9jB04Ir%V~T?FA*N!usKTlq*<
zWq7vLgp#YfwuRaGfjmPk7=+|@v-mp!io_Ld1vOw7ZY<x%A(dq+S3HdpH3EqSLq1|3
ztEoWXk~#L#x^6X<a5tc9E{?tFWRh5XdI}JbNq5B<8WHZQ#+g!^Re?FaK_cg$drUDh
zHXw3ui1rXKf;#JSK!w1p>!KA*Rw2e2`HC6-b3E05G4Y{_I}W-TQ+`;ADV@{jZh1@?
zZyU9$mhzn%bEeyGHpha=h-jl}%p46mKG%*G!p3`r85(Br7rQ!uFuRKX!by(R^CuFQ
z3A<dVz-U50>4$&(ijV()?+i6LyG(Qa2>nz#w)}`A@a5H1Iv#c?x~QTN@LkDi)=R_+
z6eM*PhJI7NK;TszEoCEdrx2<%RKFWwN-fomD~Sc4QrpkuFR8&{x&)4es~dqF1YvHr
zYU`fMg;b>!wM}7UL}%x?%@5P8L(=IvcPBSDN)?CZJbOCGC5CE`Wr1Us1xyKamXy5E
zZQHEr)f~6)Jwhb}y3$4<{zi*|?(%RVpt{$ot6`K%*{*sBxqK3yjfegG<-9ZM+AHzm
z@0@4(h2~5@%(okVW|I=*eq@Icv&{8RKv$w9P6k}U4rW{+AO<=P)WMCGAcKK)jl9*s
zoUQ(Lf>H|VbFKZ7C~TU;ZAD^R{5@&gOCu4ynJpXMZpGT;*!~e`L2%{q44{?*h!h&j
zXKNUu#A<y`Cq>{qgi&W~p^cQ~j+`nC#B@ladL0pozHxsn4Bd<9?V?LaNfenwS7ftw
zss@j*)UXcC1z#HXmhGImLu&;uih#-b5_R|d&R)zJ2F%lbQRmc@=xQ?tb#UpCH<~u#
zPIjVxmFzp!D4B#1kcA(aG}R~Yq5pEEeGEAJJq}SYE$4#Y^C~e_Y-BQhQx|mNy+%#c
z@A?4=rbg(q+ugk+8udeOu-ia(59hTP+~52o|JFAuT0-qCNBpF?^|s#eSm$fdaxqXF
zQhFsuRXZ<kaqq%m>h?u7GYzC?sG!c?r8tn<LFT=nAFvq!0Vcs-6QGV?nq?@tmFK;c
z-jkGGT`UO?XccbQ1(u6n@iufxD{~E&g0~l*A{{eXEwTgZB+goQU*e}u6h!Q>#J4va
z1`w{2EfxbPb(G>#I*`b_rWA}g*T2kd&Ha6`)I$S}1J<S(TjYvGkShU=DUyraJC$YL
zZtp)gD8ooF`tng=o*fun{f*ev`Tu*I{KQFUN3$9tbT31k)0v7GPx*Ky&k2{oZytKE
zBxW=#G=1a$V4QtU8n{+zv^o!C3=pdl!FRc;CPMkYbEy_I9?U6*B#$1l`6BHbKbyJ@
zau$H2;JFv*`)`)aHprFwR%8|Qa^1dF%GZdl^KuusS^J?{t%cjTCie@`UfIw6A6?o^
zZP$_rPyg!KZmmfNVpMe*xPTq&yZsJXh=r{zsgYNbvXy|ycA}X2{mn7X^usKz&)Ipy
zRKn{E;O!LXOUNxvcM_ZH4z|hE7~S7+rd|xyyAuH65|oxepA7n*=zz)vVDG>DxMT)5
z^8wSHSMPJekN%RQ6{e{!D{DP%1F1a)9=rLcmCrP#bG?DN;^!ohD2Yi??*<`U;hwUd
z@ZF;B`G&>0kY5MbFHCdYV1mRJdQ*eq`MV8V6H77c)M`G1?+bSDLc5C{-<=GVO#R`v
z)3VQ(w7YNnh%K{DCwVNt3+?lXH>n@`VFE)KM(FMC#XH(gx>GW;$nmR&sbsg_BS&b(
zqea&$Ns`e=-&^KjYkQ3S%u5NN0VkAE_!84)k>(y9*1Tx0Mx)O1xbOe~op~YP8Udg|
zKmHW}!bbEcH}aV5#PbtWnkNLVd2t2(V2G1m$%`BedyH7$DO2XYl+3wwtN>DAmDZ=Y
zSv1kqsYru2T1O!KgrIGCJ#3+c^08yt8AEi>(!<AnfWeu-FDMS8oQ$XEPTkw4nzNXU
zM(KBXBEw}{yOr$J0LCB2oC~L#QsLz8KnVbCSq#2hXEfc7<UN_tGO*`NEwVcEIcRMk
zI0^obUn!xC_VdxpX<Uj&b6B>~O56aIgzXJaLW{XBEL5ZpyJG*QZCJA?8w9%q<o2W`
zWDV}T$3O3PPg=uf50YMEE{oG%LaF>SBg`%`9POM<%JM(=EGy}V^uIc69HO0h7=6YT
zJ}&Y>rp!JIXbm1Ppi`UPK5p&t7-GVJuktCHN{ap~S;`7g4NCjh_0IQV0&MFj`7b~l
z3l(H|v+?j1GHv;xH{4=e4)UMU@7K)iK6~IQM0Nc|xU&GiF`OPDv!NBtERDJ{znLl0
zuiO=8n-J*2NWwbcSYdMb>W+7#7!QGxHzHN$Ey9q7eB&a%7m>fu`Z3Ke4%2ykK?lXN
z1JcuK)pN$aNe-Mc%@qHZ^g6L=d4cLgSoHA}b8o_;@X?4ObTxhE_{=r^<{l$CynOzG
zv6pyMz%;{3BnyG#sqjL-47S_4v+)H9E2jQW#BnGPM%tlAUAE`nl#<b2eo2rXxKRpW
z(``Iwlg0AKB05N8{T2-kjh0cf9gD_i3l?Q+y)Mz6QeCwJh-(k=RUs>T>tL4zm0`5i
z67weD;w@QMzK{jqY#D2bGA4X4h_m*&f0=jfj%(r0tSZzjd%LIUUA-rU4EJn&$2zJ~
zWe$}+3DSTV=ngt40qj4`B23=^!rb;N+pBJR)Q0ITPt7G+<w*#6VAH(_V3V*IWJn1>
z%s*kgjKLL(Etd@fpn(Yh4FUPf601l<oNC#x@waK6HSORoM-A~1_exap?xl$=Kn7IP
z3cSr{CLLO3+EV3DiZOj|2k_0UZG_Thk;N9rA*8QvqdRoY_`RJ@T^~x@yo3~%!trSv
zzuHT)lf7~NtAF{@kY?%^N^zvCD?BNt(v!Sh5ntl#Emmt?-W<nyFz8Z|$egOBg`fHT
zJXvr7b6rvELMpra&f+%JaS9{@tBGM0+bkWY=<oZ_-&Hd?hsP)cbwIHwE=V1~l1Tj5
zHo!s>ovtQ-9?SWNTB}&iwjb|w3J*R5(F|xXRa>Yp8|D!BOUxE=U_lKA;y%Kk{1bGn
z^nR<C{~fjtdR2pq;V|{)UYD@56s{^~L(Tqx1`bOT_-d=Z$M}K(3kZ`sfP86D6So+>
zVxX@KLPd(>$@i^7kGzLf7PT5XgL_o)X~h!+O3n=f#n>mQt&5@uwD-ZA=J^OjP#M!J
zud-Nh5tga!z<2Ui#L-VKGa58Ue(2b5#ClvKP++LRVG1ya!l)?;-eFj&rfHAucyJ6L
z@g)2)m%rm3o(yX;%Xm+<rcAGXQE($3T}gPm@ea&mPDD<t&1`C$Z2JBHo~QU<Z>DoS
z{xZtgKMed_$+fMtmHm!*)5xjlGVqV<T6xodWZNwpVkGifJ^xiQv;-m)l%>U>W^8Q`
z;FfMtl9Ir@H$KTZS-rZ^thwCYz!oh0JwYKiZvNzdm99&5_Zwn0KQn%Y9^2A<dwe4v
zbFmluSm*;d9-=7a+};tWnq2SigzceN+T()lIohNT)}CG}gd_I~iRf=q=k$*=_I5s7
zw_{=hzAzCmc1aY5I#~@AsAw?h4F)*N?T!u_mi5eX9Y#4oMiQ1Mi45vp;h>~ez+uGc
zgaHD8=$8#p>#Z4Nx62V+$%u0ubzxo<5N#))@;v-IV)O!e{K+y%?jAiqVhv0vD$<rP
zvlA?(pr#rlb}%N;X|yrP>h5BnVz!3+dYZ&lh6fc+k%~?HzR#;;0?VrCU|Oj7J&7{s
z$L~?Rtbb=HkIg;?1W`n-Q7(ZUh0tzN2WnVuQ|%}uk_1+u!12hzQTZ}vNCUWx^2CX^
z@rFB!&hBBUHJ7%<w}>%GvxtPQuG0J&<dW`ZzB+HQyKL%<!YCp`O?gnqd7y^X7N3kZ
zfC6NgJxQ{~%!d;L2(urlP&4lxpVlm<+i>vekN`{aROccw*+S;5Oh#=k&<NI<gP-Q<
zp0_q1Al5KQ6gyzm_ml;yG%^IJu|=B`h$~H_<0a>FfU3<Eb*Zke3y9xIF9c;F4{R2?
z*fAjpTH2m;cJ^7u_P3uC2VSXDpn%Y6baaNC@Q|>L2P}h+VygEVyru^Y2ELhXiR^xy
z6XrSdhGt~4@sXg!;Uo?6g}$K3`wWZY!=2USnN@-lkf6hSac|Ux5_tITSMy^>Y#2dC
zw(tGGfWH9OS_OX$vNK)51-AA|GTMD3m1T-YiX_b8TiFl|DY*(<L*<%Wukv3*^9t4H
zuZTPxEAy@&f_EPoJahw@Qc>I=q>xvpSfgL(FIJN%p|ij71rU!FDq!OtHB<A3Q6OX!
zQ81gDe0PoWwNX%mfeW>#i`jF9;&{edSCVHC@}#>7#Fg<e^v-ODO@A6HBBX>^quT%L
zfrMv{u4!q6POzN?>5DxRm%pDM2!0td9q9m2;kVnV^J91Iup_ua6FqkkOFbM_qo-rH
z=qtA_&)W0ZlhQMal#Urfz}MPpuF+{5`M)T0UH!4w-1U_*%3~?QA})5RbPPY+vjfFt
z4@9WsCShuu|L!@Ma91Ud?wd{o9)m+4@1`*`6n@;q1-BzUzGDFm2RgZO6FI)^r7{S2
zOQa+)$9DNt@xi4pjjf`(wr7;V0bbmS)$Ua@!_=wWR>{f3JoQEOJ1|3=4z=&7?Ix4%
zxuR0zdZ?Gc;h=E*nQ(d8(7{;v*Ccf4I6&l-L44m8W-U|HIaZASiD^|IzOy307B`Kl
zT}tkB_FG8L7*21f5`moP9-6nAQP^ZU(a$_zql@%Y3gH4}u-7mi(xcla$3#k;B^>n$
z^5Lz{%4*zB;I^>W*ACH!*6iP?8LE!NX$GTwKfY2BLM}dQ8hP=}M%9alz;4e`u+G1R
z*u43eL#Gd*9)<ET2T6!1ieCdilZxhxh#%8Z{H6Tf6>GgYBz)!L@u>Hno|-X=MbF?(
zC8K^y$6q&V&!XVD+r+~l6}7tvZ>f{Y{Dc-RmL~G_&bBxO*~}lfTtT!rz|#WTk#GY}
z#xGp{PjZ|j?Y}kJHll1~ufuH#LxU3vYe7;}!PPh2rN5#m&rmG@2yikPmGAA-&EhM+
ziHMrhmZdbF*`$t6DIRd;95&pQ!$v=E%YkWw>1&8zc}mT>sJ&<cIBUE(t$;gIMI;FU
zYOScdLeQD(Mtb%3Cjta&na23Pp`BXhHTS<rUXn!0!v00ZpXFT~<g1s{9g}LeXaU&~
zYZ+nE^&dVK&h6p<4x=zu!at?q{JFi_-#5|YIi~gpiwJe?F5KUR*4!5WZy<TsFBnE&
zY107U<%Zhj2P|<yxjbY1AZvyqz8`*{HA_h$0H~Z?o{~MstZ-WxWmpb=dd{as#q?7Z
zmnJZuCLN8xJu9CET!NlSOahH;BfYEa3294eYP6-vWHLu@e~;jbFbahg{oVm=tMbQQ
zBtpPBGrXwRVEeD{xgM$)SSM?WPC)*CtL{&Hx0VN;$pA?#hTS1eI5vzTIpon=MIL{h
zB{SemqGJehQ6W}hEf!ty&vCH&2fxH^PJr})9S2pi)b7Jk&Z_Q*n>soRKn_YPB|Uy>
zhLz}?x>Z{EG6X5*;G#sD%?R#C@Bn5fyX!l2t)T};=X`Z0!%4Y}{t@H?4p)D#|BN?N
zzl$1TEVE1se06`#{m|T;?*TQw5%PpZ#Sj8S1Ni%8GN>m|CLGtLVRN%H`wpx>TW<vC
zhm1%hv6V2v?h@C{m-8V@mwIKeEj(N?on;%|ATmx=gT2ovmK@c4J;Y(l0Eh^ggcL_X
zs72~G7?1N@{`r~)iL&OYAnXBxklJXyc$G0gVb`n!`6FHOxlmr|0ZWk1?ipHOOR3_t
z50u!rr0X*}(R5+p785xmOU(;r``S@$4o5p5uk{I1N<x0Bt0!~GIDj1h@b8{F6G?Up
zwb;+G?x7OipD=Kgrbr198YIwSBlhpuA7EA7@-nY8G<gfeUFvq5X)yZgwByON!5|V!
zWksix98wNWf8${7sVeJyXi6MaDm6Hs&Hs^;XoKTTxUa&uoMhq@>!4!c=2>zGR=d^~
zwXdV;$h(tGIE-~Q@N%Z(z&$97lq~A~Gr7%;NgtBQlc?&vhV`p<eXDrOgzsKY3r{Y2
z^{J*R9-T#$pHA){iGfD2zHCPb5i|7|S}Lca?s_-b5Q<A%^bmyY!M8ya_NJKDprvuM
zVKg_mz3SK_MU|B`7hV*~6=S()P`TACEI6e@(oMand+lZ;dgfOZv@3loE{s41K*j+^
zRnuxL2iQzntVGP_R#Gl!yS;gD7O*FVFw5}{PT9=y+jLiY2XuMsqXXzkvP=)v@aP{z
zTXWFB(ld-uAVDHYAK8!l1`a{(?G>M3x_H?I+><vdmN>m-(yUIJ!L;hb>Av)-HWzIb
z^MX5eLbR^e+o+jt1%lxl1^>-O)E!B+qWu^Yrskd8M}K7F%b$EBHcl3ML#(rL*hDDN
z=*<{*&;OzQtghe*q9PeXH}~+S6>fE1)R>dUGdO_Yoso)E7iP0h_xlaTLBE^hLZ_Yj
z|KSh$7<9Csi_n>rTgpL~v>;C@NQNW<An0T1Ne*xKwv@pR=_Tt|RO=kJOy#dPB59<v
z6nFV`_!b$Yn#a+QYiOXUnsy^Fs|Q-VZ66<WmfGjKXGiBiMdR@YNMmQjU@vLmF=#8i
zNI}63hf@pw$^lBdl`}qyE^_26gNZXsXontxHJZgSGpxuWi>l9eejYakj8~hVvTvEV
zq~}JT5EtNSmOz?VJuYhgh<NG|qBi<*d9%)>rxNRf<k1N;YF+S+E>J<F*3jVTV0GD&
zv_D*ej9ezSo+51-EJ1Z=e<x7T>oB<=yzUW73E9;JR#SF)Zqj^N5f`8KZEiEo*Lh*W
z0iM%})2V_LFrz<Hx@y>d)U>}MMk85nJHpHe?CFTU*Cf_9=cXLuR8d*CP`q#LC}0(k
z0mOQA2pqsEpb6UfL?h0S`>+5xaF)$_ro8dU>lH>~-^c5=>dRMcHjY$o6aCGu=~&Gp
z%SF7BVtu?%2s@<1eEo&QRfbs`hVWc*9+mkOULmv2a`wo>yqaN<xWxSk!Ajp4+E`D-
zZ3M%0lJfE@ikgpNi6P(c9a?;m{3rOG?lK%jc7&z#+Z`TDaZ%&LWuk6)F1EeO4R;^Y
zEmPzBy~Ypl6~yv{K5+EcBXcVRtxs(FvG}51#Bs#X`+>~)B`<+krr!a-^e!fW214oY
z4So4=7_9~MwAHh#cSWE_wKKU~J5dKh=?pl%Wr4C^Nh?trA(z?ED@@{iJ^HcuLXRxs
zkOjj23Yc)q#V-*fysny*iZ4TwTviS6RFR@pQEj47gWqK6M>PV!e?e({!PqnPbgJZa
z^>*#d%NVtMnN9BVrJcA#bQ)I0cM=FZW%XKjHp=eI%pFENSsKOF<#!^gBzGdZ<gOqA
z%(f4rVtkxa$S2n31YwS>&9wLIQTtksS2no<5ph19M?4Yr!drnxdnW8fUjkq*KB~Lg
zFbEk1`qRw-i4A2Z@c}0V>3OjR%G&&{?X#Q!+^#{`DG2aug0ddVj;K;(Qs0-d@YoTU
zhP!$68@db^NJbO2WWhFvTb-#~*0z8i<xaLNb61J+73YH~Mk}H}w${7w)&5xWZn{{f
zZjpZte4VwC?@r~-s0{4WZ(Cjgy}^`Me)_vBzRA7671U@x{yuftirFhkBuQ-7!DBuD
zMMVvrY=MX<oNE`)Pf!<@NCexjW^7^O!Oz$mSqH%U$!xH{k{Fl!H{O#-#=pI9*AdhZ
z<{%!8W_3qAFH<>pk`Lhr8zf<nUgQLcg4~jYc%r1`Fr<$rXPYOZhF<ygss1m*g9_ao
z04Gs>dxxCUw4lh~e&P+!16P4s!VW2Z9;pNh!rKH8ho*clYYvGA$<pQYyTded1~Yz7
zG)wPi%N+U0@TSvMCC%5BTBLC)>$3OJZ5QW|Cd9JLkAs!Is^6yB6*MS>kx$Gx)zstI
z91>7zA9MjB-d)e9BfC&cRC{p2rrX>neoF(3QwvTdyuF*+)4hhiGCEg`KRm}%T$=2^
zD@11|>X1=VQT<$0J4&)YIpk24UuV!$?{L**3M76-`x=4JMpWb$nO{H4cA2{W|Lf%A
z_gHtgjLdSg$Dq{w%@*|f+|lyK@GFv<wtax5W`=(r@=kEpDnD3ryhI;TWMe(M=q){)
zCy$OO2tl#b0?$lmK2zb<5{f~GSzldTinT21%D<JEUjf&fs;npR2>zWJy^k(8EeaP}
ztDW?&I0{o@7Vj}Kr{0rXcw86HPbvX$#E7HFbr5J5RJ2heZT3!MTbuHDqSByyIGpL6
zJ^AmmX5N%yGqhG8m>88&u>;;fc+t^-3SuWeih4i`V?i9(19A?5YY%6^0>I~HRg!1I
zFku-3j+O=*p-kvH({^Vg??PXA5O%IQ(=VI#+f6(Ue>9YyCyutRPU^6q0W`$%i!w{(
zWW8`%w&5DU1itG7=?~^bYio*lK1u89gYQBm$HWVb_Oj;!-G`clCKMT7z_P=)P|m05
zF}y+KlPt|z#LhGiG;Ai}2)hs~stAoN1-R(GH8)YdDFIf}tGn|I@Zg-QxX%ot(lL1~
zfU~pvI=>$%<PV>jgXXxdJNClX#u=MmKkP}i=x<aKJ0caw<~p?N@FAx6hMz0=0QL`b
zoy<0XiUuG1{)~`k4e{qm-!Hd+L9e55q7ySvQKDubsHHx&ZCWLXi>PeXAWQdx30q7_
z-=j{)h9;2XF6-~H?H8^omp}@_+SgUFc-r<?<=UaTXA+91-e~`X0`O}5CD_4`;=O&A
zgjF#acGln^Hs^cw$2K$M>b1~xepVHuFyl34Ngq`p;ivzfExs99Y3DZ3zusuaAA|!z
zlxNY=kK*GohQTH*Mn-Lq)DXJoIu<VAdtQ8tb$Aj1C)N+$L^*c#^&_$x)WXp>*}&E<
zl#`|eV)aHYyx!oWC`cHo;0$rbEU8k%@NlL?uDj(rmXg&($?9a$TX#MLSx^70OuWaE
z8H9ftONC6+g{dZiy|xp$Bso7j?!o5vpe#CgF7_nKgRh<`%=>hdf?r>BzfAOm;(znK
z7L4KR4YV<wwo?p;!XEE0SbllGOZA@PJOFe|(P&_Xz`ivI-STa%j5--NyWLTsxt3Xg
z9DbcZD=frWE~hmR5RQQ?{co(Hc#FP-hR^TJg%KyVOTnP4zFWR;13sLal%{kIyRo6$
z59?aB)PUU!PDZ;-#!%-y%qnb>iu+ks<&rMrBx{hn!0yZg#R`kGuf{Jke)cLJ#j8fD
ze3HT;+Oyo<qlT6RZ>*eLo?*at5HJ&&droE|Pig#z-Ss<z(JHP4^kLWKcDMJWU+Cu3
za{^k1@QOBNN{#RcKw{PW^!>;(O~n`LPN<SUdckY(lX1yG$dng%(7FE0x(Po|<}gt#
zx8JbxaZ9apB%ACoZNrxWX1sg+zo{iib}3lWVdfQN+s~oI$yL=$7OqI`TJbjibxm*l
zB_OZ?sNnzu$9S31EY$&CytvbHe*60=ndO7UqG0IDM_Iq>5taYsR_meY(gL;cUEg;@
zNz2kzbFqCvU<;FfkItQ$-x%;iQFUWV^6XJF9N1l4sFMA`>!amjQozApx8e0krfPaC
zk+wcP*y9UbJc@bAV{HAYE@q6E*5SVx!c)rxe=8U-_KxODO7<OWyiJ=8k*82_c2(dI
zIF`I_Rgi-6i8g$@rbRmY?$iVutshN4r{}~gz+Q1m>aNri`skW|Cv)OWv0|#GfuSin
zyabJy_$^tZ4D&18z#td_NHX)}Qu6UuuS2Gr_Ml~#rj#Ykrv;KivQ&bh9iL+iO*G7+
zu0@V+p<^&I{C$3Tse4*kO66MLfv+afF^+?!Q*jwOp_vHVPROkF&kDNwYW`Zna+Hg0
z8`+@r;Mc+gUj;85OfaHWVeF^6b%yE_hQ<zi%H_CDK3f(&#K;t}*$$uQ$pIF6*(NIs
zQ3PVzDSCur%W5<NJ8mz)8%7u9!~D^ySWDZ{6s)K3G+*FvA);^?R?DSG#St@Sul+}P
zWcBYWY|p=gYvKNxQE{apD?c{Kn%HAxBp)v%3ak};#pqPE(1E)s89K91SF>`1eaFAY
z8z=IFzEMIzguru%csjq4%$4apR+YKFy$$7AA8^;JB*|%m;h+LA0+2{>O5MBsk;_}Y
z7!pLJUQE=D8e7KBqMO;|=R=`@E?gGln8P?6U<>g}I&LT{)Plrdq}jezhLM$}uC-7}
zz}E&P#}$Rn=a2=TR)0z0uxB4RGffM_E_jH$rh;FzvFGmLYFHl=#HczI!{Y}ECw%}z
zh!UOT^hclMl3E;T{<1XvfdKqoU8TG#K8_zzS6dh+pM4DpQ`7||-+GzH4E(k@*>`ZY
z+D;oRDAeeVa+<82tMq%%N%_S0i>;%kP6oUO)e}+-^IF-}<Wo2savO#*&$m|6WKR~9
zId2Vnjn!B4Wt9eb!dkeZtdf4)eKw_H@mGB(4e1z9Tb%tuX0nREaF!Fdd|!scmHofQ
zo^5{VC6dSBG8)E2KlS7e$drdL7<zNztnt1G<nr>YPRdi36V*@aqT2TX0$D4K?_q{7
zIw+g(Q{oNf@1l)ru_El^MR}Z`ixE=RAV;c9qEd#n^JOOIt5&(rEQ#miT<qC+xF?oe
zSti-&ULoK;-f|GXR+`{#&gHHo<v*XQQ>|KwvI!-W$}TC}-~XlTLC3|pzWok_%!qTj
zI1S@99_STm_YN{HbZ<6^N$}7CV*LNywp$(d3ZeNYF;C_*l>fI@uszL0cU|~t^0%qz
z%QgaVM7{#Iv7z|ceI48a&HOc5`xrBS({p1f-1H?^16A%|l;sjhHbrYUwot4aXOD)T
z*G>oYO|{Zo@=uT`A%EToi*0p>RFv|p7GeGEIT?kJEHP^rzx|8L$jm;Xz|2(4?`uE3
z?cc1DmH7N4cxD3Dd>Z}Go9GUPD|uJOot=Mj`W8H}QWxmW^3>4ZA^L&1F-Aw}e}x=x
zK8%T2^XR8jWTdj<ds=&ZA!3N9q@>}swyuXWzcJ#S&6~XNjU)O4>&U+dP_O=}nV*Y%
zuaD3rEzls#A1k=4g~c1M24O^yY2)jwx#Ucj9zWxCeM(M*R|{r+NX3{%L--mX;rxF&
z%)?wTY4%fTM}EY6upE-kIpB}jokMHb+>Qe7NwB_8B4|;LBBP#~>><dv<Q;S>)KN(L
z=YVq~(msgoVbF3rYvSEvyWK%L@^caWNTF3trxHR4Do+VP5Xsf5UZ0#U2>1!W)(UUp
zJRNLb>(V7OLr|uUZFp6@0c4f&!l}gMG{wg2qs3{vhOH_a4y(<~$$Izelpjnrk2B6$
z7fAF!O=!w<v`(HjE4F)@oabRj1nf)rhFOHdC;A@#6Q^~eJ`D*TMdsMCWxkZWmve3G
zc<YS0;`EF@uD&iPU))$ViVPoEbJum^kYHc#@Z3ozK^rto((h7$sY(`W3T4P|`F|sf
z8HqPh1pgI_PEde%|Db+A)?^yC6WXmBE{jb}$#@_%i`u(kN%Ja|p$e@U9CN}EG3)R5
zGEFa|Y>HSy=%@`b3pNV$)?&o3C-wr5=hwHu3=h9(^7b*`lo6(;u`Q^1I>GcvbqtE@
z?(Zl|v$k5`t<DloVFb4VXV?I=Z9ONChg31l2q;p}=ymzlI%M9kgGr!9IKM7TfKArq
z)>iuW71rEkZI3x+m>$-i2DF)}WVPXdtdAXFL<2Zrz_ShN9z?DQJ>9dvDE-0PwX!%$
zQ9$r*OA-LBQIW2D;VM1{YJQFhsEj63?E~e|4*(qy5p}NQI8uJ_^{b-A=7SgIht8(@
z`t<Zeb2L@X`qpCA)RkC|4Z8w(mZA|>;a9KRw5?Bbh;Q9}gZBDP{7>{wz90HO4%PoT
zsq8Oc1J)VbWx&dKA+siN*2cCXJWlcQfK)7YmCx4|xdKic)zN4m!mV?vs<rrm9UG4`
zlPHcvdf-Q2&sYrShN(^$4BYrvoLP=L3zg2PMCWBI(wU6^|K;t$o8q6SWPi#P52q<B
z?r~P)yet};o`@h|Cpkf2nxD=~IMwFv`dvWB8f8daLl>Q_B_UG`yxWWZv&uAKXP@oS
zgAgCn7l3<lP;I6Ib+<7cWKvc;f{q&hPogkUP8^Yk2b2yt%l^Bh(Zk|3rIAE+pH7I@
zlQV%|kS~-XXV<vWi}j7TCq3Y0cfpOM$3I&ejkQ@vp<KCuAFLFHfx5e~Ef<Hmec^|9
zj|B#bAs?^u6f*NKMy9G^X2zLdQHaJ)gl>x2(O0)(tg0IZZ!Co%0tyCO>9^H+?8pLE
zrvH;v`T98KxjA~QP4gr509=3OtpE|<ll&yc*Ue49Y+xJ@A&?_1&vJ$8H%9*;YxQb7
zeiH|1<W66)-h3`)&!=g(yerXV3zWpz8TQZbEbvXw{`o3jG*j)!%(`u83CUew?BiEX
zfreV!;sHT)M`>(V2Z#m+Lg>JL!ez_{;o&@r(5N8x9N~p;ilOov^!^Q1y6WRSMBW_S
z<~F4hU+HtubHr-YdIZCgPnNJs>rPw437&))?LC|JC49lPGTf&u92_uAs5A1Ph}LWo
zWzv;rW6p|g8yy*w5T+%&>=y)IESj9)RFr*ebXq3k24}Q9c<gM{QF-#0-q+0?bN(GR
zL9tK1VzH0O_C_E#H3_jMv8twy;ZNwlg*<V7NA{+DUZvFI_a#G@GwY3-85b6^AcPGe
zTR^ZK2?f8I5>p9rbPz<az540;(&l+F%LDfi7`o$M?j6+MUq>w9YVc$GFp|<ie^|j3
zXYP%~uOWQ=YaYPM>J6@kLn#P->HbF}-1%j;|K{KtchyX)=wbkEy>(x0<4ymKt?{d;
zFEd_6?=3nfp);c8<Q&)4c-p)1-p9nH<LzhKn<U0#^%BF5%*dfid)g1V$GgYc*N0p>
z@+l)V@YufAGBYFy6Bz;vZ$t@;e*noxL>YS!(LX)~lL#;y{+?_r2xWe(3&4nMZmMiH
zOFMVM$qiE@he#0{_9@OQ3(1|M8oihVsNz`#Gka5$vKT|11#`_n#r#|bTXbTdo~ZHT
zreMhO_piHdXkS1_U~!q!Xp+g86Pr;Nxl~mrt%8`s#qwn(&0Q4LSQh01IRNmVR9C5t
zjdBmNqA=vGhzYb5lvL$u`A`UCTl|g<lJ=9iIuF|V6UTe8J;8`{fSLNxwF+v@-=0(4
znyd|8Pn92vly=*{p5EOUkq|VR3ZhQUD_cJn+dMr7c_A2!x0U@R_$hM}mC=ZQA3k)p
z0tMjI!6F~hObp&n3|C0%93V6&`{`0K+%6l#Ud=+-ay-LKJAo}#Calyk{M-*b%PWT*
z!B{q6W)cj<ntCwMDzE_rs?{7B{9)t<&LmX(63Ygfo|6FH<Tw4f2!{8k9tXi>TGZY>
zyJz}Q#4xmXw3mQ}aKf7?%TES+e6>NL2Gr|^TqrcSUq{+8{<!zQ<p1R)I99sPmisw&
zAG<WK>tUDQCpbGE@@s{E-vx_Osff`yphb4Mk$xP~@N2(#I$3xA6YfE#<VU`;OO1g#
zYUW;uh$zhl5g}LYM-tUQX5#KpSyu;_iacRH)BCUKwsOE7|IL-^aB0ej1OoKOh-YY8
zYpGNDhR!iqlx;T3G83wCH1|gkWHb%DWi;d`H4V-$In`{kfE|`7iZh7Mf7*Nz=#Y2h
zbe>?!0Lxw!F+6H^|Ddb{+rc@GmugIE_<h6q1WOk+DohsW;7Jz7eSxJFA^Vft->9Ao
zovqM-LQ{AhhKiF-ch-TqDcDTrLE21{C1n<$&)NYXM@-J$<gaB1za4Wo1KbjaAvIB~
z9f9N!9ueO*iZs6oXGs)jlSBMY?vu?4v7eJuTh3rCs-LU5gXKC8)Bt)>l=OCZ05gxX
zZgXw5D(WoU7x<Bb=BG#0osThUs?QC}n7ZvkEdggL9d09%@9P@DFBuKO?DQL&{E^Uz
zwPn?F8z%xA$13jG+2V7Ambg*!D|KCcIm*K5s`4C9110AW;0;SZDkMEnrCUk*3Ne7Y
zz5?-`u(=Nfx8`QEdRqt<p8CM}<YjBw{VIlcT@9r?hc-Lt0^;yb<(XeJ68P5GxA!<+
zWZ-P7fY|ugO;_iJDov9y+Y{vpleYDcO0=q+n|T9P1lcH^4MS~oN{+wLx3t&`<g)o2
z3&f@2o%|b&^$oa0I?~-5Gm3#uAJ#9D`_kbP6`?(4;l~h_b|d1*O+j)=3jGw4akgwB
zQ}76+gRLU{hJ_%5#i%?6hxG8ITI{Z$^+fKv=&rzZ62eWfQ5XVWoY!>s<aBg`mhzjY
z)ZVc9^lq-8H&FK9Zkbf#U#$K*zQX~TQ`!B{vH72jR1r32lK8!FC-}P*3I>yJD)0aL
zi;LgQ$0b;)rr6)hfqq9Ct^AMZe_WFxA?u)*(wEaid<wX}{1J**r?jZMQ1M8MlPC|B
zv|pGGM{qsN+UFT$SOK->+KL8J+t=8T4gmGBad6IlA{2e<1BXyrQh8ZFO*t8+KqX!O
z7vsL|EDwI~F7G{gR-`7S%v~AQJS96_Jq%+ih3R(nQy78n(<}m-X@r(#s!C{^5%xv~
zVO+d{TXV+bC9mxPH2A{sgX8eTpN-ivuX7hGDp(<Z80)HQ5yWCleYyFG3}3Ao-M(!j
z_#Um`Um<-BLMl%?F{fliJ{aQESU^zq0Bk3>_XC)^#%Mz^vJwC1!|%)VnlwgiL{!x$
zzk*kGS8HyKpQ7<G+F6|!knU`q5rMWS<^_Cw1)_zDk1vH<n@A_#J!uN>=2)x2)m;B%
z$lh+0Gc9=03wzKi`-ENd_ma3BP7kYSElX5&r_cz{Kg!<M3ueYyZWWU7ICLm^T`c4$
z3n)OqkTDih+<o@7U)#iD?ar3#bzQ0C=2eI<Hy^CLqyr+48yp1oazX`)WfBvO-RTY>
zeQ6za`A6X*aCBgow09=y3g3t<Ac#^n8hT!Z=>3vBs+p-EpiQ+2bT1VaKlFxMpub5q
zjE=!k6U2GG^M~P2dbKhw?+@C;AyJs6=F@jo-&2MY)iFZ=DM8#Gog>sIR<&(BkPeVo
z_H6ieO)YesdlJ%Y8J<L4c7|R*EC8y4w}mxLl8l2l6B1xYhnFgG+nZY8H39%fK)Amt
zGqubMo*`9YCEWMI9<k!|gw_2o3>_ATT7-rTxgl9xqnqj8zjLX6&SX-re?O|U<c26G
zAWNh=nw|RJbHGKD)ppNTzI*wbupS!(%W;91vv%qt3E;AWmE@B*R(H)R#O%A&AwA#;
zCC1o2FWggFr^R)y5$RB9PjxQpCruo^r0|KY$payPcTKoa&$+Cmn&J9-nvmQzKqRh1
z0dg(fjPaiGgDJu93bXQ#Ai~R&A0i$ZC&}6ZC*ndJ$$Y(7Akcy|l{PSVtDy^;;9m5q
zbtt?rM;qEZDhDzBpo2bw&f|^5krw&&7WQ@~3t}&G-i?S2<(daK7Jzl7sUlcjIYEy3
z5iw#}bpW-`7#VTHb`x8)QV-lAanBSTY<m1^tVi2Qoay`}IQjxlgiFCx(IN1N-p3;6
zHMnuYr-Nesivi5n-vZs637uwAf7*MKY2Pc<hFW{tir$r&3Ob&U*(5M7jMlG%<GNXE
zi{l&f;kA&VihG&q8zqJbi;qM%ckv>hQC$IY>#P0wh)-rKgN6BKs7H@Kr-H3RYajO6
zN<Mb6<dp37xdl55F?Pw5D}#MV*t-8gE|_#(&sb*-HLd%zSe{-|i$nETPLQBtt<u12
z!M=%Z5!6$b5!c6VMyjQ0iH2ppbm_1S+f|fOVY9&x@&7ux0s0h#Es&w%kbFf^WOx9I
zyq@cKi;W!?I*R+BrFhz~u{Mg7q6PD_3~u$tmVR))z)M+Vg>ec59f;f4V!^h~5qM|2
zvF+mCjC#mdbLO$juTxK~0fKBvX8m@ce)#sf{K&V>J_&34IqS}gCsP^XdD^W+ff@W%
zmD<gl!DEwl<5dzd$~Pzu4vvqQo`grHol|!82TU{T3!&NR1~*s#qU@kq9F*~t;WsT^
zNr&ZkPVr8a;qJ8_N+=4k6|&sX;I>lg{K?x`@um5=6D|LNRAhhV6UaK^oRuHGBWfcp
z5^Vc240X|55yoiviB}qBS@Yal7%?2Jymz<9<k19l9sH=Co&E#{nT0)}Mj^A1;4?zv
zTrag<Z5S_W@PqMP*)BNmRTsk94IxqNMa?b6kdpuuE4V~x!?nuxWDgSu(9_B$7PMg?
zV>~L^3^aZCIs_*EJePq2YNAg~<B7eC!TlxadL+gDh?F^oY+|sa4{TLKuUfUv@)1Ag
zd4crlj>l>gNeVLT8CGw=cDYh)pstlHOgvDZ>3gV+!dP>NM!<(ZJW|0WYbLwbQ4qc=
zm<ySP_mdUmZtCa^lgUn<kw&*=U&|{8qB>3rH#v_vksX6x92g#8j`B9-JY+@%prlxX
zWtj!}wQB$Yb{hT_(|$J^Y5WOxA@6&U%^8?`R`63hJvAutWxC7R#Fpz$pc>OK{w~ST
zh!D(pP4~YaZ6W3Y&t<^S|E$<|C3Tt7)2ml)c5<wioVPI)spPp}_=VP@2+JKj(qylP
zn19|PaeN(q`fn-T;}ebSvl#nq3Z3qNmzowK)X>X|$`6jX4StJybCjRw%K^f%@Swth
zaVd|iq9W6nLl}trP_j_f7RywzkK_}t?t{ptr+>GyoW(#WxiBD91ePA56;Z};yt@xV
z0)oxBbO8uL0Z4IjJ4k;{q}=p>*+_R`XD5@MkmR4VulBBXI>kfQJjXAQz~F<Lynj2(
zk1Z+aPE3ZVKr6P5e@j&uyS8o+W5I8wYx<9*8p3wOxDuD$hHF|?u9QTFKTmpHm*~*_
zW%yoDhVIKY{pd)X8Kck`<Qi^u__kK2G#><$8KF_-_fOUUm0;N|xmDceKy=lUy88O+
z`?jXj0~L)*G&goxFyW`mz(|PZm!qw9Q(V+wNGaB<R<4zFFFk*yEsXQz06y@AzNz2!
z&2ZHi#Vp1T#k0TI#{?dbI)UZ%Z}v<Tq{k3!u@A&uK|pa``c%QZLSXG$6?X+bgdsK4
zVq}^&EwC&do6f>4)3cX;$nvW}8R3AYlkGAZ?&IVIfU*dJt|0Kn+gl}m9B?^{ed@@?
zEFw|?p-=LmeE(X2lpynpV9rS2iy)a}S366SdBd2S{9G<|Hcj4|Ii@aFU<*K-5J^VQ
z76hj#FQx0Nd%B_!;PU08^ptR*pfhh$VdUI@!Dn&)6?p*!TCgUo$D$UZYd2norj`z3
z0*^MIV=0j6>~!r#Ef%rK>;PfzI>(rB-j*FbJ|nI?`DgwOxsv1lv|kQ;KN6Y7{kugS
zG9N=3hF$yYcgqq@_Cin0Asw{5D#T}l8QjsKauUh4Hw~6U=V<j4WoHyusg#-yUKW+z
zs}UM;*J!A7n;7186^K>)fzk-Ze=4SUIgVC{D;Xn!W)7;(9EX^HE6q1_H{@g{%&}H;
za$M-Gae7U$3}#g@7~iNPnOj{H<eP*lD`K)SJ}ba01+k-_KhlVNCYHU}37fan3)Dkk
z0Gyh#;2@?+sBAZAJxVH1K3S13JdGa9i;VSki?Nv5PM0BpG>+6|%{@T4Bo_QQT~+^3
z5z)}itV%iYGlYDvUw^w1rjF!~;GY+0d+CRoFodE`&0n$`<9q?7LbiK_Fz<g+&35v)
zX_-^KA?BAoQHdR9&`ZOA8X(pteM>XyOW^H0;Hz~w-JkAOTCFvW8Ti}(WukqQb{E~r
z14N?rgl+o4#$d7|yhMhLMn4!u;%X9A@!xtUR=<bzUG2vo_rT-7(yugOGO_@tm&45F
z;0d=fF{6aWJ@toYc34BZ>gvtPt2mXZ3{ieXBaT+Jd=&5Pz0%0D`ibl@S_uCtfgK$L
z<2D;Y0|wEajTii9Q|tQcKvI=vwGnA4)!uZOrGk&N>j$;ay<Ic4$9~c(ZoEqhJF08q
zSHi;T`1<47!P4spTMpA|l3C6<L)g{RF@+Fu@}rt!pqITsm4xC#Gq9_1u+Hr;zqxQ<
zYzf)&{R0?m|4bLC8FXg@6$P;01M>EGlg3q$5v=nZnrm^i(m^Iqyqp^F)C$#Xw%&;V
zX50M^e^1hM8cNbf&G`1}h&lk0zcwuRNAbDFiH=)7W7N&ExV?tq`sr4M;|P)F*a$5y
zy+W^%$AtJoUq3Eie#k8z2}tp3x;i9B=^na+Umr&rWIwx}r(<Oo$X9_CN1tB)@kDmz
z7IyHOiBbKgZ_o{$Fgg%9Jnf~bpz_Cwws#xr|LsHIae2lUoH~B&X8@)|hWdeY5b<05
z5G4xy+L$%~&+8Lgq!9Uh0#Kx^;#cRI8}`$~UG>aUcc#%C$3ZxZ+1?KBnV$#mVeo;#
zj>4`B(|mpVUE<yCBST#=&V3mlAUJt>eChrnjR&lfK+LFxtXa4^GT%2n_lGeMf!j}^
ztsPpHP@m?1Yv4}svtjv}RQ7M(nEDwzalZRX1<@q%+;^9a-nFQ%=R#WKocZ;R?5gEk
z;QcVoXV%0YJ?*q>Q941ds|TY%;HC<;#T8ogEMO7zp|O+B)MXMDD`}Ib!Ejfu*qVcb
z$G~VZY-4;7Ba#JTPYhP>pgy0hu{Dhc!(@Rt0(wck@n7nA8)`^7bD^H=f5s!Mp5{RT
zSJX&442X5(wN{JSB@&t80kLnb>IkgiP&reIR=K#2u-MUv{*2;9OEQ6X7rWW7Q$j*{
zBm!wTAJ`|PG*k-V1Z++&Qi=<}>35mBlM_5)lZpD&Yz`MbZ~Yz*k(9sm#8pqN=ecEX
zHq+Sm{ELWGUAa4N2LXBhkFdkmr2m0;0K5$zAKuicnNOh|V<-S|53^WAe|3egHF&E3
zE?gd1cW0}Hy?FrQ*l~3KHcTDJ?Fz-5D&DX@{?cmy^D{P!i~R$yaFq(q9F^;RE6Kpp
zW#1+VOObxFqaez6FmS(}&txf3E?HwX0p;Jzt@X*&vJ7O76LIYWn~}EnBQ)ks^{%5P
zIG&%DiXncrz5n9w+8~MZdM35$7qxCG-t!$X2rAKpWc#~k0i3--1<Z%vI<4glmc;7h
zC1rMvASMTy7ym}Htmn5f?4pGPK?ntvDM8czgw|ux6sCn=tMW+Kv2gfKdr7b@fLm*n
zNIu5)F}~*~qutU%wi9(fvlRZ%PR<RRls{=)((l=w@vjZ)Zgrm7S6fVmC#xd_T|4yA
z$9j@mkIW5^9BveslltZo_NE4N8!S-;)?N#7(_Bf>t&JScUtmgl^rq<a$%@gHR_fmH
zA}3+D1rfSBf2xr;##E#h5)^%&TtEw3h`L_QWl_Ev&sq_S9QzPILJq8vLR@e&oI=5G
zpQs^5<Q3~?N3$`XP>eR?;fM3tT*qmAIxgd}+r3yfSifIJ|M_cNd$oV7(hL}4B~IWI
zCK{tE;$+EEDIn}5V#0yW(bL#1)75;eHnh%{P7wjpl_x=x5vwXvYr-Gq%!+!qe)=}M
zx>zu~a)Etok`~lk?%rznDfg``)nrCUgvINU{`DGNumc>*rW&^Xjs+$e3>BO-o7q2U
zG^EZf^)GQkP8iEhK1i2?H<~@jHuSLxO`3`;R+ZC9UA|eZYS8kJ{HTdnoXpK=v|E2>
znd<lN;Xr{gA9tDX<cU39IwHzH%KRgJf2=To>=8|zvojXq)J)L1oVe-`%8;c>@4>q>
z`clze{U|NDtU+}wh)G}&cMd{>PT~mR)cxfj)2w5wV`-=y=e%X($DpK8AL-&qWGaH5
zUX?wR-H-Q(OY_4|&11a=alJ!Z*>fPBot04S_4f(t6m6`~aGaL2jT_C-C^sPO1d~r7
zFvBj?r_7f0rL%IjY3JdxRd8rV?65m6o|{IaWe%(cTkG|4{c(<!s=+jb;<^{#u^-50
zFeBfc!i4n9pK%*-ePQB~!-ho;XTd+)sQtJGj4f5iWrFG=5wn~0@q+Sw?A-g%u7iO1
z(`f-j@ifG4CrlDYk#6d$HbKRom8%YwGL7#+xSAA(_$+Om|98v%DZHpady!*9u@g@A
zw7)+@#l_R7cR=7ujRfEmr%$935Mwo#N@~0K?3x#i&j-EdegmT0<8)>X#&f<F4IHoS
z0kZtIpLH0L&IpGE2l`wkN}bMFXDd>@%lCV%AaKlP2e`)NN+BeRat=GpntPVwiZ3!S
z519|Ve8tVOHKC7*e%*$;7+rqJEKRyP<aU7T1knq*`FY{+T%(6UR_{qOxgGqF2rSM?
zQe#wWCg5#c3$?Z=Bx$5EHucHP>GfR?51qOGLFswY9i^qle!+jE2g!wu41=zu`fL+W
z)a{(97Kpg3$CGw)Mk9~$$Ez1rAuT2aX|ys*>3dHL%L2;>Gg+U=D)_LyBKI~mT733j
zIz!S$F$@xal58r9CuC#%2QHPGwE$ulnmI(4lvGUH>|qBBPY5C+uzE!yr(9+8xIMQE
z{-Ub8r*w7)kS(L={i6_yDzF>0hzxZoMHfWr)NN58V;b2zj)yRv@0f*fo3Ny51+!ux
zd{9dqJeTTt4!qK6k`EP@5i$k;t6%)Jag6Xxln}5x%qwE_w=gXTao8F_F`h(8UuXQ3
zTNXv+o#bD;c^eRYX~gJjokNtC54*3hBGd+?oEM&1(x%{~{|<a~mOsaBOx~zVPPX}K
z`9jONHC>5(oerA-CCsz23z?!u-xgJc(EgK=&U1N97XiLEisvxMcU%?yi>VnD28*S(
z!MyyJ)Wr`51rF2A$7vjWr`=$E(zj37x^qqfkM95CQ2DAFf$m2QTuz;>24}2YaYY^#
zII>kB@!~J;8wTPbXc(IY@|pMHl5n*XPd`=h=Q?L+z_ZUMvLD=#R@5kDce!u2xqxXy
z6ajAiobbWIUtm@?^`p!O_rG_OPc}SKty&M!ZfkG8Li-^O0+*yv#_!_kF@pc2T0sDm
z+>smR%f%J~=r2Zf=x0it6jqcYG(oVDOVuSKBtl;_G{R;|7?3kCF^pKDAm6lw9;{L<
z_T%sU-fVgqH>%Mqt3&B&>IzpQvD&>2u{C28v4(kZaLXao4NOE2UhMPq=z$ITtdNfR
z>LbkZipl{ZEjotEY0oWd(n0bB{eyAHG+qq)i^M}gvq2!xUMe8Bsz-$_`TV#AIK#w$
zBB1tP_uRbm{uT>UAW^$;`!n5H8e8Qfs=B<FWP2kVr)GQzLFq0=vs85~QTTjvZzNiL
zdpSfrEJt#3%@(*7{XQ>1z>?Hkw}VLD_r`C`WcZbYoTcv0Mu^J1tL+eoX{aA;5mn%x
zdhU3%r^=`EKbp{g$~3HGkg9)mJe2jZ&R_LpCpQFdQ=!iL=a?TV&Yu;25J3bF3O&ES
z#aKxjGjx1#7)y8N;6Gh5&TSm-vCSpPAsYD<{v1J}*%e|G-whkve;(z<e+aP!;ZS_i
zy}Zon$JYxW@=|fQ5lElH1xRguQ`zA9E`D}-W9m^R;VV|wb9@ds@3?=)OInt_R+}8!
z5Un=?Q(*Fyg{iGGsT@w1v9$LqnQk=?e2|*V9jb_Q?f-vUcaY(^RMMbJo9$^OL#3?f
z=|b|%mFhm=QXHWB9hkEGQ{EJqZ1hkUX_ZRWCD`7G$!iZ&ju+pzC12jXU+;$JgzgXH
z)49cMvN1c96!|k;pf!<kH+gkSb!DwUrBz**;K_rPyFaTO#bdmDHqZY0Z*|>c=pEEB
ztFkOHx0+iC4<{|Bh`}qAS6jK5dwx4;$)5JWrX(=O;uRpdKE-OyDckqc*S@0t&*AWE
z;wVq5YhnO)n`X%26*N+vncQ5u7m#eKu?I0T+FvSTn4JIfuAFQe73XRdH*rXBiv%AR
z;v;|jwVQ-kQYT#>wNl4+0!NC^KY{zkw-hpB-0Y$6%6LdE2CHJqXlb`?3R-79<N<-6
zYgkaWQdTK7kr*#6_tX9-4p@14vI_53E8gK38I6Fr&SeuGUW5U%_KYfOs=adok_xAw
z!1!)*Eb$DSfG1@9g%cAbQ(+4>x6t3&ZBT5ZJhU4N2Su-oK-%_3yKAvTAlg+61IZoZ
zK(3{iu%?m$C4wPDTUK7`)oquN4^d_fnfZ=xjX?;~AWiBA>t?#V9&q*VNO&GncL+w*
zDHg%DIi$o$7Xw~qOYmSf-?q>tU|(^x>@gf3Hgn#)D=^FfEZGfr04-RLC>zr)`>Yv7
z_!f&G7*owDKbvcn2dmFBXs`4ymTR6M|C=Ea&3~Mh-hw_U`!+tkUX7=Mge^h&2|*@u
zD@8^)GML}Wq5?iFF+#Wy@5_@r1>5(wKuQ2RJ){@%ZrkSzUY=LLj5CqSGtIcpGR>L@
z_?<F(;2pub{p>Sr_Y)NqsDBf_>X&33<%bKk)IAwaHqM;ln;wnOPG&)r9<Mzie*vYB
zED<ICzU{?W2!ZO$|6n#sizR$FtXn&IGgw`(C@l2OEs$Q^OWm3`yEEy5y(5$@<>?+-
z-b~p`G#1ZfQJ9ByXh~P}t@rg5UJxSxUX`HlB{I#Og!1#a0o6v5!elI&1zVeOCfQ+<
zg(K$WNY}4-C|=C+J5TXiv-&9y+a0nYoW_R_%`Q}4N@kZHsbnXLIKQ+J^i0K^7pz+d
zuLbKq-2X6TF36?GI)L0rq8)&X>wxn@+?P0Jx9#_J);~a2DeswOh<nNT+}LmeF=&5{
zRSxg{>CPx4HNa%IciyaAxc5B>UsK(P9<SKC`^WR5y&;74!D|Hl3sYZR=GPqLP}h<$
zS)tin-;)~MWpaSy;HZEB4k^3?lQmBr8fX2P>K#$o1MsRU5QX;+hqT_D=&9o*;5S-g
zf+4~<OL4f1O|mS?DyHB1cJ3T1dH#6Szy7fOHmkA$C>l|O<kT)Y266OSVAmJc^vu-=
z^u5DX3}9@Jj*$7&jaDW@XGW6%emE&75e6kDg2hu@*ogAw$kSFXIIr}~8u5f@YUx`v
z@Kr{$K#YKbv_s6w!%zCPA9M?No@@y;t%ftxo2nyM@C<5<8=;CQd~emp9AIh3<DZ8x
zKp^YJSZovOM<aXKYO`MeJa8qf9TlhnUencNdA&bGZd7~OfgoVsjy?EG%9gJ$%fz$M
zkPs-1g04|nR9Umelg=HS<Q7ww8k-1G;Sjfu9;oe7B<DyOOAf>Il$XJD8&INbwV)2@
zs?m%^cA=fMRD-rUPFz=|q`9pRK;^5U1>vB(ghn@~2w5R>3jmAy#zj3O9~z;z?#a%B
zH{-MT`dKh^$!9BcpkN4ZuiB2<ptA#LrBWUm&b9>G{IE*@g=$+ij#Zt*A$n{W7b!^(
zF#fUqWixJ7w_gVySRZnJeU(M>_@Y_ZpAQSCL8jqwZI(w`Bo?e__LtczHw$C5mp$_h
zm#htCCj>(k%ylbl9@OQlF6E1;{DMr^qXb<X=koq=eoYM)Idv6NbxXe>4$9q(z=8rh
z2C9zBE;%MJ=!3P>vw0?jzQbIw)uYVi!BCE1?FB;`ynLI!4Ptv&9`<F`3+t2dh?hQF
z)k06vzcLs(ykYN_M-@4mf*gPZj8vSP_zY@b{G5nIv>YU{#5H5CS!mYR7IZn#@!|Ot
zAcFwV0b#e#;Mv+h&1Vp(<<&*3^+X(FHpfCwlIi4_YnK|U9^oJTbSzW}Q?{E#!{*(i
z!)&4rG}y&qbG)F4*eG+d%V?X}Eg-MqP)7<=ggh^~0XBB4lG|rJpBNe)`|*v7ge_y9
z3yI6T;I<2woeI1|Y;`ZCml1c1$s+=sM8zG%$?3L9i0luCk@N$+|G~eIP}5Uvx*UWJ
zHnC;UuEvjL2EH)t>*{$$pggU&_4~)?FaL^SlGypFZ2FhVBsrRsDoh}7*Tbn=<*Upm
z0C3E-E@0ZK)`gbBN06U{21CC%>8msuT#Vd6C<DpGIAqMOZAUE5?3C*~^$bJNxu;<q
zIwcP-xsi;86Se$+<eth32!{BzzA4*t4P%i8LZrd=TF=duyWa)T^|vM1G_F{ZnVRi!
zndODN;7eC_s~lWcZ6P#(qxKE*6K`;<iHA>%PJwj<7*ZnOiO%)o9#kughyvUs?U=Ud
zcB38eT7hS7J(C0`!@I#@4}Lr7{h=6YS|I2jyBS;;JZS7Q7}V$j->}N=K^XLyfHO+@
zZ7j@mLzWoAgc}mFF<*BgY$Ltr1_0e2$v*kzT!DXgN)wJOt?uGTaNnSp-aFmgC;$IR
z$U(~0`>esO<%XI9T(LiJ_PP8iDd5RYh^DCFO0Mq{LzdX}bl(^Gq@o)QYyArI`WN6}
zbhIUE-(46qMN6pllQb6G6qs+9gcxsIA*d}}gGg9$YpulE``YNr%a5L6wndgx6EL#m
z>2=#HIeCbfKrO{|@Sy#91%*Lwx-#rgO=umu*CFxY8zUg9fM$9P`*T8#>E4gX>c@Uy
zjGi(y#>gePAslWnj6M?Pc7<5v{o)c9<+5#fTGVKr$0wv=6V$Hy<9mN0h1*8xD)L{6
zlJ-yN!>m%<v)2CnjN}$vv3=9UdQTdCnbBFVyM2A1y5m?m9_oDM9t_qPy?hyh82cU=
za4JPbCgWe;<ELFvuMPhrjAbQP^w`p3in`{&*)9ip6Z!0nDWfXak7SMp8}<oG!`|XY
zQch|>r`3YWCg9@&S8Of{euDfGs7T~_NE&1umVem`a8rKlW)A_BCDxHZZLR<r>=YP#
zDpZ%;Rv&zHzO;GJByMdlXNm9Jp2x?OjgE}j{T8%%dYb;iwBo-B@c65dh9Wf)hT8cq
zAm4t~h?5^>G$zxM)3HN+=GNN;t0Ts8=7i8KVjv4V*O@W)%N#{J1W_@+ZNu|N_|!b;
zT02R{qxGV(J^jRh;$Zc`sH$@Q>QRC*B9eT1s^vDYI#rMd0sgBE@iBp|9*!*K%kPLi
zB(3KmV#B?HLi=5qiKnV&Sll5$aWYq?+9pn$pvI>U#9S<HYuc(n-~jNBg$@Ko6eOfg
z=zC6z&c_9CW|Wi@w`?zkkzf&E8m_ndr1Krn=5H8NxOR8C%#Q8+X2$_<%O`n61QBbt
zp~-!w`g>e#yTX2Dx0*4K*^vu2GUil`MUG`!mY&#zS<KRqxYLx{c@j>`k=y`-DcjCj
zi}n>CyM=a_Vq-wnIystgJ?pWX1KTnfYG!C~kHDNL?ISGI(?r!NIGY2yt!fO+_*W`y
z0jc@m6XYL1AMp^Ox*c%t_Nc6!56g)*R#d#I(J6Sd<Avv181J6s38Z7onf%LtV`&Y4
zII$`jF?IjS6`2a#Y=)0kMx^zwrF^gy;%XxV*RL4#cHLwAZgM6|39V0RPSW~lWq5SE
zs~L5x17|0ucIv)_Ik+HDq_wHu!}C_`k|ZMbnomN;yRm*hmKL<t%T+48jFLr?#jGXk
zIY8Q)J5C~O_A07m1%SQ#b{U1yZKHQ)ZpiPCl0n}#%)+Ce@og}M?p%AqOg&UN99Opi
zVzHVmG&oKt_Ri6~JZ9j}$XGtz6<Kke>3(&E0fi(0%=%vkJ~UZaIr#)z5-w@|^}6+q
za-z2!78E~ZSo-aVbJ)ZTjde6hnr+>Zqd-miTPG!uR_8;lt*Hs-Sal%V_<O`Cg~hdr
z<h+2@_%gFj&ahU(@pF(mrF>b0c$|jnc#R4fA`F3YXM29mrfQ(zOwD`Fm;#$dQiN{4
zTRv%;hm%|(`>xf3sTij=?~cb`Dt~*P+~(>OD@9|~g$EWL%S6N?ZK~#L<&6U}S6ibK
z=;JO{wykrTv0_NA<v~^f+k(j9CXJVK>}NS0Kl>xdVOsm8>gk{R7>ZDopPadvjpqQt
z{7zWmQLy=QGZ=0#JON_{)f1#3jg!HMA4)0#V(E9W-cU>9KB!K?h{8Q$4`6sSuF(We
zZ3Aj-oeHQb&#4KLK#1Gya`2-Lakd6?_qq^_9A=E@k`%Z`sDe=ZQdqh_ns<1mnk8!D
z$78J(^}@L#VAzRUS_=!$ZA=B~1ps#;rycpfZ(#q0RR;@Tc`GKDeCOp<nLb)?!_R47
zC*=8y*CLq40v8g+n6$Hlw*`W2HQTV)8AhzxEn#pyu|Y9fIRc7F@q~t1c&1t!*V$;t
z^cRoH-@MHkae>>ACB~pf>p8*Cdgb3@F8M4*^Tq}Yp$TudmOu6F4MHS&aiZ<6g<y<{
z&L2%ut!!*-M^gr#2l-_DoZmgP>}PxR6YyH7G<NJNBkxSfLPQ*o82|6gqQ{R@g{bYn
z$u34b?Z{gORwz7w!r8`nTwBlVS&Zxf#=M}@?;`-#PT*0K8j`{O-+lO^YL*}0mAA=?
zYMG!+efhh?F<+Jb#sp2itsRWkKzbtu*LyB>222{J>NTM0bGI<TUMCwsgQU0Oc`qp-
zVIKrQr#(svB(gT^W~6t$lzf(=t!40u@hNs_`Fb9@FcN};N>FLpuU8Wuf6SwO#I{8(
zr%80NFRD*@9q>zV_!;Ru2QbFwI@nCXtctSwT``f`VRLLbQSebMYBCb?f=6cH1n{1r
zoRMY6X?B~ule#}AuL$sT-ME-azE?%o#$gHuKY)<?)eEgLmTslk5Y7hO08O>(^pvy2
zPnlAB^Mq9Lggg7$u<UKlw|~zAB}~2#Dl8JSrMvPuB2+pTFb8>oDF(Q>G8=}lm2DWx
z!@@PK)S{O|A!x%|f&7jgP@}1ujjcCw+>J~D;vfD&vn>6l;A|v5bW-QwumXBbh<nj_
ztc9)ZIgKhZxQ6*to&3+zP>RHFy{%K6ODS&b>M8I|ikh7?_pPSi7=)-1ilU(p2>svU
zS*%d1(g`6K!_45BbM9J^@KJ1nT84g=O~+eXl@r<abxqFa8yJ+5mD3g5)k<4@oHH*M
z#vg>Mfi>0?@Lru=%N4zYK_5HG>Rgbqx`Y70XP)ggHH6#``i^si3?3@{Oe`?-@}ps;
zRjjMu;Ds!51?U<N*%Rm}U$R*OXy=-E)k>+Y3yvWF;hiB;v77ew1Z4eq{V|ShyoAGG
zpXiU3^YJ|x8rzIA?yTL#W0|QC35sgl!nG}u{*gdkN?3vpD=y~G6}^TZ*cILC0j5gl
zC{VX}BUU7~yxo{T52T3SDFj=2JLF#VrmglWbu+G9|Hugcb?T@WefK_dQiU^a4`8jF
zj-GEb3OYQfli}ux>w?#Uqbj8cF)@F)qh^US!Xl!1F<Me7e6VxLd%&00Y)ZpUdSz}W
zjQQ%sgbE~lk?OvyH~e0r8edUdR=~L1oJE8)uoPV_B$z6eNyFFSv#Er))M=L(E7SDO
zD1GAI=DIK@NPWV@&*-LO0ErmZRWql(LrXv@vw9v2$Dg@jWz65tIX^)zhMBu@)cO<#
z;sK@ZRQDVgh%|r*w8j$sgMsjuEb~LmW6IOW!QP>zWr(P`v?wDZD!I~A!`~qO^0ye0
z?avx={$>JJbn|1-!-Z!<;<sod=kodVKex8>o3;EY7dR^E&i`b*R9w4&5lUGy)Q=s-
z(3eIL16v3h$P{WoK&1-SXC%m40nPS84=;}k&YR4Stgp-MVl~>OOa7Kcf80S<);qf=
zD>;qotUduM!$RKo(bef`Xi(-B>wl8X^_gNi={fbhDjGILqffSriU*CicqZHosBbW$
z3jQHbA9>flc-35AV8RUEKcbu!V4LpGe_@}^KDxG|7MS9xj4}t=b;K&{inQ+Nn_jDD
zV|Q9b-j$kUK)I%(63($J;^!vC7xc*lcm%W4M)ZdppSD5TR?%X@tvtB?x5=4~TNG3|
zWl{DMWzb@42?bq<Fxcn9Ox3TB50m`$^<m;q0v~rlU^~$?(9eEtAK3Qup-aH(Ro@e}
zdq4L*fkLi6XLeA5TeU=F+L2SrVFM%8gSr#!zSLyeABvEtUN_QOh?coh#K<1T!jQ_x
zsO~!VY^9vRnweNc+wMA;byf+k<1uPPu^&Ye?lyIYDrom*B#KW@#6lPGln?nnBElzI
zFy7(AjN75N;!6tty0=+3_x_jG_!QflC~^3=#}=o{JMavQYZr$tN$Ootym?C&MFr4J
zOE2z^CB+;V>a*P_lK0x(L)x7SkE4(ky9Z=dqCv}{Jb0lRd;)!*rLmRds^tU*s4b9S
z>)Q05WODoZu9Fb?4Nzeg^hGeJ`J=m9pbl?cibG)`IGnx7mZd21PMlD;P+XmKb=gm$
zE4u|PW?dW9{g<q>571&p*~yl6cGqzm05mE<8pxQe0uz`yhUqs2tt(Q_tWIAQQersz
zsxZHTH4*?h8nVZTf@eW7w--P_S7#Msg&U?-f0H55C2IgdjzpDcRf;Sq*c!W+K?$Zu
z0+@6fFWK48Pa;3<@nU*;5LaSwXyYh<z~ipQ?9}u+46mZCP|<j3(7RUhcT@-yy&hx$
zaLq4X&A1~5&Kn}GFGwHA-x{U{oif(cg-3gzd~>M{+{!251ijc3H1PVOonz?JIn;;U
zVk*Q377yx9-160`@qYtw6q320{fks5nd1uNW&vKYYnE*#8jkS>BqUUD=ZYNxUp31i
z5=aih!ZNBL%&QWSgHF%8M5_g7NoUa%n{Xe+BMQh;Ks&#?J^#W<_iMASeILdZSOa(H
zMTuO_smBkwS?PtVaB*4X0qbce2sGwfWE1FVzbmwmm#v1Yg%a`8^E7~Q?-6!HMk0=x
z*l7TtiFv**W@(0jr}KK_BvV{rcUX@HnXl%KU!fPN&3!g)R$y1rBhl#!_sS~MrmJX<
z;23_O$lb6rm;8K!C*<XM!`??t`H{y^SsM@WS1_2~-c3yeHIDv`+V3TwzJ_XuJjUGk
zgg!G16mLbZI}>CdrpG!&NSNn%5_zBVEAplMr#WN^`KLYk;?etm&+?8&>_*D_QIh@l
z4@{Q$!6DPLVW(@g>QO(mLepMWGPfi9EILkGlu~d)asjHQfHdlkQ|^9PN$HF!+b1p#
zO~cux;eC7rgNzQ$Z1e&vhkN27#Z+C3%Z2u)<-Z^sp)R79vANafLZ{p&C{99|+mLVF
zPdc)a2s$$^L}q0uOK)z5pxqx-Gy^;72p3FYULpS1Q2y#(KNA`Fo2Q9IOvN{ra3$TT
zgkux_Iw0Z?gEa!PnRIA~AD=70-_uV#rTugHF5Dfsd%<LYYBp6jJB}p66msU2`Wpbm
z+}mhc`6J-g1$E8x6d(hL7n9iHg&c=5ZtBA`19Zt~FA~+LD2f*O$>c3<pyh~5>S^_L
z{1Rl-X=s*U!ql;AftZ6h`drNsNINHfXIxq?ZJ^(?FN|}C;nFhvGwf^EEI(gxocsKs
zt6)oGdP!&E6tiTNK~+wljTNhuMD)8o!2lJR%GzW5<@Z~0<5}+hv8#m+%Y&EhRn&Ln
z+P0%!wJ3xnbgoqsZ1XR`g}*p5(?ifPJ==o^uN~L1!&C{7|MU@IDcxA85}T`YjI)qV
ze-CFMkkzS_-qx|TDlrG*2=#gh9dsS=B;MQX3rVgjjZ#TY=#IG$BAJl11~L}h3HyI)
zQ{Uq9NwPBSW?8EdRl}(LUfQQ6nh_ihHoZXJ16gyBT`0@HRDccDe=U5DZ$N2fe-?MT
z9$=b?_zVA=B-lB}0(kPj4%*cD;@gI+LD+qFO9dajXt6_ma9_~vIMbeHzQ9sAKg0KU
zN_we}e!~a?HE=U#NF;4QNSgP&CLDCVcYomFgera7AqhlM{PtXkCxsk9huc`2&S-hk
zMIcM_9B%0NJZ~}z57B6V2vuz|F96hL@!K2w635be6f;J8pV;OApb-D;vc<y0fR~aq
zC8RG9DYPqW+RI38xf6D{@eNuD4TDdL`^cgVW09v)HvFe11~qJejHA9+DNs19afy=T
z*3<)_6PA{R!3sp;7{LFt<Im&o(mIrQ*k9|mE=eb=j>UQ`2w$XvMbyQyB95;-ke&DQ
zDjhr-wvmh?2m--=^q_D^AKPlAo!$rlO|65igq)-y@O~-|>aspOH7RTl3fB0H(|xeB
z%u52h-P(0CEPkUf9qOtIBm=+%ZC4h^{JEbdRRCLu5u+ixGb_}%LI2Pu?$jo92XkyX
zu`9RCopOnaioMjbdPH3Q-uXU+at=--Y3}P|or)q&7A=a6_TNHn(c3l4P_*TR+d6om
z)0t8(ADZ#4!U0t>2l{+%95{Qi{USH)vJaEQe5VznY{QOO@-a|i*6`;d16iZqVb16;
zo6b%&w-l6OUDgD2M#(C?k~q0_nlj~-O<bm-<-h4eFq@zdS(a9PiwuvFF99m!b^hq_
z2HN*@Pn|?Lrgx6qV-b1@g_;@Xv#5#LpqA%fbuTb4zeyTAAVqj#W20kW_5Mm75KgI8
zMw}1ixab{*T*pL``_*Gv?V~Rj>-|b?x7EZk!QOo=X8>{ZSITL^+7+>@gX;?AR#Tk2
z-@p3d`_IJmd^tk}d3MJqNCY3_5O}8Ff5x&vXwdjZLF<w!cJkiNK(^nFq8yZiQPJ#*
z+Wt%_pcKr|7E6^`RkzBRq=*SZK$Y&k>68Vuzg<7C(@YFC4Y4V0W}GFAmjrDu(1Ua8
zyPR6pBArtlXTJfqs^h2TF`s3kiZbItR!5>KX~8%TNA~A++(u%%${3P`M5c;(^Btwy
zQv#LmHR_mYHDCQbQd@rNGou*&Hw;?uK#DPSj0t{;Ix2HUIab&wgXTwjx`=U<m-soN
zUJonRxL8`Z?kGpnIKqnjZm&DWOaX_KZ!;mmAYa+^V9_l%s#NH{C}HP)PZvMMHjLmG
z@idmM(zLXkg$d8fE(mhtIe(0lb7|b}mPY+grpOdnjahlWc)Rh5eQm6YJC^)myK}tA
z(UOP5iA6`|oTR9ZL1x6lW=f5m89G<fNMkYCT#xQEQ;g#6wY#0RSPtBV4@M|uw($Cm
zo9MoOqaO>s!tMLn(h<HRYe}StbuE(9jYhxdbHju_+oz0VITPh$ejojx;f0bW?X$Gj
zCihZ~;v>~!{TO|~Gdd!8cpD)ezeW5-85N2Z)*>toN01Jm<6S-Xpj}#4bgd6;@*B0P
z+{5^VAbyill8oVzm#nj$%P6k)(|}Jxb!&*S`0+|YDGfbhDU*<~a`wnf=8Wf{pWh_9
z7h2mY0GdO~H7LyAnBl=g711(O=!0I`AV6jE2I!W6rvFhE<AUhrWXp>LrG__;)x3Yd
zY2g?Aq$kZ){+=gv?G6F<z1$y`@-eCaU3<48_hclBCbL$C;Xoi>d{DpVcmdqpGK|@^
z@daYJeoP8#2TA34)5XkSLikq0SfKax#yX#>^I7*Q(RPRq4-cu{Qz_{_8!#+NAJX4r
z(whn9tB-SY;IMhWGB0z9NgrU;QCm@I5eUj2ENp`$h<p+=E@g(5mrt5MC>AiNZ|T*f
z$04a;?KoF3%B^Qjb&z^Qh}wIzin2~?r9Ia{x~INyCy6!#e=Zv?ZciLq=$6aEgnrbb
z{=<1@0B?aPr&<{A%|l7hg8|61-L6lu8?5)PHI`31f*p<OW;IXnI3QJxukazllHzu;
z)(IyW(B2~4@poq@pn1_7**+EgM{V!LWGrH@;}Tx?{A4)w668^0ziC+%>g6vQ3}M&q
z#%D%3Q;ALuQ#QYZd9MRK<=X^@dt~wL_Ws9_rHol8;5H{Hia87RoNB~HZkVtjBo*4L
z`y4Z<2`dk1A#3dq%e#U2!8uAVm_OWDl#d5`E#lfC|Hpd)yYu9%1K}IXcXHwxo)2y&
zddXitT2qbZq>Nj|6sN7;_{%1{p_lUftGjg0ctY~|u$GhAJh6HG4YQ5b$R_WA0_~gf
zSbiVRRdTq`^upxem}NWL6_XjnSXsnz#Po4f_a-vL_g2J-L*+&@()ll?+`~HUwhH{U
z?ZpSA%H?DejBmQZr#nk_5^5|N4D5YQ^jLHmef=)T;_KPvxQ@B#pLa6UIm5}bgzFL5
zbuOt2p8%;vUVbu!xu(eCX_x!e&4z#!pIgm?EzO4c6QbInFbad-Lv%6l)ZuM%L&`xl
zJ?xt&rf*X?oRGogtfstRbIEXvqlIbjuz?w+yH@ke`a$xnu)VF}mkzO_F5t4_G#C+~
zyXq6T{4%%%dzcu-sig<c*o-9O-s}D(05O?F1(Y62G)`nsm0^ywQxub+G(~ePN~--=
zsuc9af|T>L`BppV@K%>$U2!CtjBg6L>=Y0C4%6b(j3!L#^7#wto|RFB%d?$0u*vGf
zbT#6`NY@JY(V<wV{VfG;@I$#M#!zUeIIpA#qP2`p#C&0=mwgJ~X`ASdWsD}>!_-~K
zqm9!<>m4g5$nRgR){-_Jp}>7Zs<G>?FVw`}iL+C_02<cB<pq%5N8zg!6j>ABu2gC!
zY(Y$=Y#68+n)L7ViLaSQLO&RSa2^n^cp@;rS+HpCCaE*&3~604QEB3smjNV7ew>n}
zf^}W9iyj*o4Dd<3TTGQ2;-~7JXZ$>XZ;MI&?O7_?_CoBQ<(GN+-T?=MLR_OehBZr2
z*Ycbie${}909p;22HhQuwLBg7sXYg1NC|0M+Di8ezNUIBr8!RC+)OG0LJTgL%^3}(
z@C4YZ&Tg^OcAAt9)Y7m9GIY_2`ek1@lPyqp7?%hwgGCOLlIyAeLioLCzZ)(Z@%VTW
zB|~zHcYta=W0hYUl>@=e$i+MvoXUx@8~{f)Zx9yB=1cVS4#Lee9ISQSaKN~Xr`W6^
zL<GH5RiXJ`Lb3M6hd?x04QW(22RKBSk2p~=I%Ct>GK+Og6peDtg1I#U18}flt2``d
zvtyKudq^C^y$790xGeZhxMSjK#aAD;$65ZD8y54m%PMR2ePIfIsV*GZGL=jdbP9B~
zuG>?2&ce#{3r`5k6V22bo%6SsI*gA0>BG{d)eYg(;ih}dss}lzFoe8?Zr7(<!cb6X
zj>cZjW;fks#1shADwoI|D<6IkILo6ag&z+Pj!<YASg+qC>jV%KI4V`7eC+)JOhm{9
zjgLPnA}&h1%iQle6vr(@(~!Ck>W(l3Ps2p9lu4a)p&`p8jl2mn#wE)aoIcX@+kWeH
zuJJoo_hnSLNj$qg-pZ9EXnh66o%D08vYGNI)8h7a%F~~c#<WS4P`5vvyJ_UV+&NDf
z+Eo#6lUF)pryO*Oc0u|z-`<q_@(NyFo$n%zdu%6gzFR-H{*JWO%0g2jBu*2p&(Uf)
zj)+LcXQRusNX3rlV5!`R3IVyZ=5W-yr`tenISwly^NyVPWW?s*rO)g}^>Jd#V(r@c
zyYPG%kq`WQDCPTG4ySRMNG8EEw?}3B2#4w@91VJ)Ds}+NOvzSZc~U$>#6WAac_5xc
z{c4xcA9t`B)<u#1CE^#uM~x#<8+WJHPWgIPb@m7fT}_PH5$I_4q&(jE>&sd6rd0pw
zU<|jl%cy9q1J=05F}&x}|7(;w#jB`lv6Dk9;P|19@IC6ilzrJ5pB}FlVky^dOLY(9
zg1gfV`>@HeuyVVYuo*_zY1D6j>$<ZUHN8<Mt{LI%^bdDh``pLH{0v7w8omj?mh}Yo
zb_CT4i+5SX+?D;hzCq{crx#4bK7!|R<aI{RmC-;R(*+y-R&(Eo=Qf#s8?pPdq>$vO
zv<c#oZB&&9e_9bT)Jh25`BC{*H!oKf$h)7c{=~?P<u=40Q*z|Vnz3IF<Jf>!TphW*
zkI5I*85tvBb4Xp`G^1x%sh|}n;q453B`e;3*aaGi9c`MQP3i<wuV;e*>W?AI1U@N!
zG5H{>VxnB^>;Zrz!nrJVbsp>gJLFA*Y{Z{mwzdB7Mk^*|TID54aU=<i2K&KGKq%m5
zV-U-k$}sh*@6D}Ef0_2Pva!MGGe<iUL~V5IVMOT_n<>&_cu{*)uGh$Y+5ISTH?u51
zxdE9&<kG43MaN%FKs&F`ZSW+u9qZTVvvn3dkcgR1Vn0Wz0$Ztr{v!9=lCV>bDA^e%
zX!z&SuR9qy<;fn2iNYn+{W}9e&N;HBn)30#I~sn)Q`Gty?!SH@Tk&-y!=>EV*j5xS
zwXssr4@i*{%}VKk{~vl+rY41M8E5us+Mfi4FNAbct=MLR<qLW{tESnS0T-~JckAj9
zl5z^L=}%kpAba0bvNEsC6|8oW3a)Y5*u&LCYG1B%kqU+sCte<kS7NB<oI1=I20Mi-
z>Fm5>h*+?0<`4k^Mxbv;m`%ORCne4lYkqrzUhK||Gl}myyuqUM`Wx!4J<OzNZEE5a
zK)5wa2oSAk*UV_kTjR381UKZ3x@@kokH6hw@jk{5>f0_QX=3vl=t^0`VP$5#fM!e8
zw+`H|t}UY$6T|g3eG^PpIIk_nf>Nd@+M3HfbS<KPLL-x0w=J=$ovoX_C1EySg#K|z
z766*JPjFt#0{_D*u|T!c$lv&AP-rGGku*p^u3Wby7>NVapw(PK*|n25#nmmyk^bcG
z(~X_too5-YM&mp8VZi?ki+pk!i{uuOr}zKU7&N@C>?ehQjSw$7sP;E$lmFV@;f@C!
zp5#&aGwp0vZVOXp10_Zv_H)O<wEr}<i4PAqt|?<H+3c4q1`9LoYPuEz)frtKM@@US
zvj|?-&~9+rXyh;A4o2O6@58H(r&6WeTz7y7wQsmj7LZ`PHN@z9IAqLzFz%LxEfHc8
zDq+YiOZbaCuc$I;SQE$*ip9Pb>}M<47-&3^h3CM}W^Gf_=<v$s%DtHW%ovS-Nwnh_
zB(7PYje~-yEOM@}#r$Z3cJ<2-0dgjer28$PSwg#7N#=?d<7Thj8GWcte3JCK$g|N-
z$>97@A?we{^M&jRW<HNNOe!{G$%n}P1B4n8eOt;vUfCYNzn2PAdr2r%1cIb|`>+iq
z1o!U%GbgnNp+0Y;8~2Qe&qxBpy4#pA{jbd19ovv>N4Syx{b@oo;d&>{NrRPpA{pzI
z(q^Z_1c1qE*@;GmbPkK5zbPA#L6Ux^p;#D6o_jXasiRjAs|bc}z_QGLVhNw?dO>+f
zv+T?l(2e9gP1p66R>0Qfbl~06e+wTZ!hK2pVl{e~YRLPXEGrfHsWHhA@qDO^kNJ3q
z9i#e}9c62N0(aAWiVXP6?bc}zs-Pe?roLWBG*{ISKb7=N3=fkn8<AvRQZ21;O?{Mx
z72OAC$Ygu-a5#~%SxUrW_Gd_^AWqpwO7aDm_dbU)g(=RAG^P*TyTI1}Q|I<QULL;X
zl-xAA&{(^foN>vZv$}Ak)$bx0)SR6X2qP#)FEECxKbA)uhJ+9#6YoCqZ@w~Nu*Xbx
z<o$#CSN#t=4OMz*AtCdsy>LE&(WqYl%d^%JL<m`SY^2&T>8thWeu~+et+1y4Ju_e$
z{gs?xC{eJNb*p`k0DZ+#_rC#Bp}eLZH;Fey03LA+bHgld?MMm+J~k9ct+e5l>&Pd(
zmuDh05XT1dw5aps=KO?Qi|P86M6qQ}8nxb5qE<Us{gS728+rp@{m*knULJ0jSn5Cu
z&`)ZI@X^5L_UP8y;b_7uG;AlNHb#cmz|VaZzz`}}dmxb(t2#^!;^D1cqW*ykg=LFK
zu7h~&A)YY(cSl{0t4a2ew6VLZ$}!4V4Sy6Eta${U{Vy#Zw@S2zWe@wqI_4x%!)ITJ
z*eFyL3Y*}OmU#k0T1#bC;7dNnKjphij<HDK?ObA4&?R84qhI`1Na0aq-MR{XW$sZ4
zD=ZDzB}$Rn0}qVl-i_jFM=jS2DT74fLf#I3Cxtw<0_&6?V^MA&mtbJsKt+V3<|bs%
z5NZkDIZFPgYjJSAL^eDyYILb9i$4IB<=u-aA6t&36(S3U|6dtROx=?ouZnr_XXZbs
zIxT2$7ienkJ*12iC!k6{Cg(F;P`IoXf>gw&!vDm%ShlQ&1{V~B5XayPH_TpRT5D?B
z70JeiwM+rkUIhbE@X4illGM%7`<gyhhV;%zsQLr6$;3?lpxcq%-jL+GG?H#fIw6nK
zA-NajA-RD=L0s!ZPGGO@Ju`_^l~ff>rXhI7AEzQ_Ja2Z9x9S}V?xTNS_0@McCM6<j
zD^aj4r4GA=Wa>lO!l|<+8<IiWB(acwle|&5vMFlu;-q%UW=vQlWj>&K9ckU6@Q7=Q
zG;s^NPoS|Mjr|O)q)DNUUt&UWHUqX~_-D-V@Yo=n%aLZ!>G4z<FaF(6!);XeXe;g*
z1mypjjD6)-6nh~nzqJvB>%Kc5pU4B8=|W^2n3#6XOys~ih;-DRXol|RAnPcdshA#8
z@4;XgIL{3I;V}YNS^|}_ZX2?#o><rdV>se4gm8XB?BJ2rGc_Lx(8CgptF1+FekVSx
zj;xP~6;YvGN`%jb7KkF>DQ+s%v&cg<HDZZA$UR(M7dJ=={R-FbyGnlT1*)c+XtneU
zbQ9dg^C^kl9%(?y?`uvMvqlF2gAy=qzuOHklleNgECb)D6#J1)P#+lScBk_Xw(AgZ
zy&CG<?5F0ud<Jv@JY#byOtH9ycozEyAz%U{7H3FK>ex4ZcwUiURFGmM#B-Q(xE#Ru
zXj%z@3oi}^MqUsGD$NmzSx)}{KgQbfKtkz~S%>b#VWgGeuWJqm#F}j^)}04$2wVHq
z4#c%1bs|ReKzpG#AEZIWQufe(XK>uBwG$x9kJrZvSW`~HIgH$dFsnOa{k_MEjv?I4
zT&sb2e`8EP^;FiA!_7}M_V1Do2|(w&o!$97Vubdr=5*t=xMpn%$*Eq9*X={cy`xC$
zKIWw+{w~~>cjR7QtR_PDM_*dHidccUhA;sOxa)afOIf?e;1-k)x9f55N}d3=>ttAf
zssf%m80EA}nv-aD%Agb}{h}O;gn&Ksjx14E7-(|C<TklVSCtNaT{N4ng`2Jf>z=*H
zj>iLn5LDSyVP17e-a&^(b$%>2Af<aFB*X&=M?Pq#-ikr!H|+kA6BXuREU%{**Au|k
z+K0YWuy!3b44Xt4O#grDvIR%qHhN@7&xp6X>1F{?Y!2YyQRWZQ-Pc<kKAl~1RDoff
zRXneNvk5r~NXdJzbp~c5O7Fd4bQ8u#&~CaBds4TsYMVc~g`Gs7x#MWyy_mbM7h^yh
zfPq4FKbqiw^)=wG&^w0Dm|H6cwDABvK*GP34A-;yd{?LwZY>uY%qW)2DDf{9)ECL&
zx8`lk2j?PxkPR=}rOr(+$?y+nv)?S$dT<#j;Wws}Zh|0-1mR~n);3rANq$T1JTp&5
zw4YgYwr?AHg78Vu0EK)(^{ckTprgll<4<^-HBtn<riaX3vb^F{HhvE{`iX<Z$~GoH
zgWdpILWbQX*2}a?zD;Hqpky<1;OjbAq2bfHJ$Fv@$q&*c_IIp)<+$oz$@P}T6UDr8
zT$dzt%ti(wRiwMfM1D(p_Q?D2Up7owixg#S#C<78joe{sn!oojAi2HvfqLSWCFPr@
z7Zes>x97*Z{1nV4n(7Z53zO<iCO&~?{fje?>hop{gRD*SGgslOYwj_>{m)ZVs6u#t
zVd^X>Qo3zUIrS+m5#7*OwjBuh4Jjb?f&GnJ+<AkQv`lt8qF1<SxwaU8OU34nU&JyE
zk!Kf2h9TLoK1)U7aTGH42>pTG4X083(>P*kJL6a{bX_Khm!RtL^$K*)W#HA8H_J>@
zOf>zvxhtSE`LJ16Pp_cXSLZUD)s-9)w${C0r10huXh-WP`Rmb^`F@Ttm9wLwjHYBM
zawuT-sRL3Or(SK`8++EE@;y!fj%Uv2@yR1PH7=#90S0Wioww+KjcIb~QK|yC<H+;b
zrxqX;1m;b%!TZR8gr)4BeE6I5fts=AD<2~<rQ${9_Hs+&L%t%7#rbB{p;O+_a<0Ji
z5qxI*d_@rfJO8Bt$eT;GUX|u6q5UG@c@a&-^I^KsF@5XA1~astxxfEX>GRk^wY5&U
zUvQ4lFk?+)<a3<a<h9vqmPI}MJSRn%e_7d4CXMe_K2Z{Xvui08T~T9~+0~l3aIlt{
zsz#<%AewuTt*>YDvbGG0OU!$p^mkp*RIr6;>v~^r`oGA~!n=1cDN!CH1_An)9c!X}
zVsq^B-6TnT!vK0o{QE~(lrT)d)H&E~5Kpasl5p-8yyK(B&e9t5ipqh2T*l6;)s<q$
z_A>f7%@t5v`Gd3ig?E|6{h{0$OE1bFr#u4a>Qw5#*E~=?=F!BsM(VPSSh@#srrd9r
zWA<Xzw~@+Vj7ph#EfKKQb%3o={Mw61oB`6uy5c~>xsihpr`$S5Xypeb4;um6%Ufe<
z9@?u32JUl3Wk+p3W$2wOHPJMO3*I;ZXE@P~7RAp7;?UYhK>VWHZS@>fGf`_cST{(k
z{_`u)MG6#g^)rN7f7ylaFX^a(vkC}MY_f<>E%NuSlBS3M=0<EIqRaNwK`C)+1YuQ_
zWAdR>na-xvnX%4`2zn7Z{GD2W>b@%$iO4MK&ljgY`eHNXd5Ts3X^&O3V7nBsU5k8S
z^92@Nmmia|vRw7sOIF`mScWFcUPwFsWbJ!W(8t1)raC}qt~-#=R2UZD-LmS=dU*(Y
zI+idDx!g@PDp6pI-;6TLQRPeea5@otbtCC1Uaw_wTJ9M^B`ZlXe7EJd?9{~rq!&J!
zOH`9k!mEn5fH<ErYQ!VHK`GvDS5~d0Gl53OyqlYfp?5_u+H+ngGsa-n1|VsQaz&<<
z`-i_{?{<LIJ*Z-dWl9`e+tQX%oO<x5TuH%U$SUij6-zD&66*1H^XrGO%ArjO#OeEn
za+qBG;P9GgidHob+^&$m<OHYnAB3)kqAA9)Lzi6d^*2dk>spF^s2)_c*?-px#!mcw
zg(QQ_$A!N)<M?6L2B+{g5J!nnp`h|zMyzqfc-EPjqq4?n1>6SzB_g;EeOpB(D2QOS
zhn)W}4tfkw5O3wcHZ7*X0zM#uiG^x(*f`cEn4%hbl(tmpJ=@27=56SNwXKcEF>S1r
z*6V2{DV-;oPX^=S8NS)K<q&gm3LUA$46|Pv6%zJyfUB&ZA1?^XaHN#6(2obof*l4v
zs7|fmf=1Jx=rWC4y!&Y)uMz``RC{eah<zZj8r(IH{Wu?f(<NzMkxL<ZaWEznea^Q1
z)JkCKlG4(0sQVKaFZn*6c6Xe%ulnz_O&@AZXlPR6wMsmDpi#JRVCs*W29c8Qsvx;X
zfHnfKM@H?AXjhN}Z+==#PMbS2_<odJV~-5sPzRNpC&ZXI_Qd@F07yxC(vq>f2DAbD
zVM-_jpn@Mr)&F|h^h<WE{vh2l)Dkd7aQ{1gQw6P28+o!vOnba@$xb7rSmzjo`Fi06
z!***emP^ndr7$3%Fj9@9i)u|UJoBcJoLdHb6$uHT5g9JUp_9wJuacT6!cgx=B#BfE
zw3@~dX>OAWFlbb9P(Iah7Bek8v^k|iby=AV%D}Vt1UbjlT~*}X`>j)ps`H|5>_LWr
zKZ|nx5BW+ZNLQeuJC6vRj4+fi!P~E3kf_Z^H=&utPmKbiB)^cH4-LaP@fExZMOM5H
z=Q#ZdCXA~6^$2ZIqX!<w=AHkfDI5}%a=R;1BZCC&jHa&76QYhTqehca?+*I?O8~zp
zPITCR!;dOYddo+&_h$i^An{E2U`4LB4W{Y$^F_Cil5q5HG7}J08UZ59{jK`me(k8Q
zn3iuoLR7JtiYgyPz@zXCk9%2GH?nV2!kRA&iq26#zvF&N|FBMHQ(&2fGSb8ac6d+`
zdm6WMvM!U3=&y853~kc=e~Qkiz7WPZQ$qzpEX}2+qb-qko_Gkv3g=3omMhtX)v@pH
z{TRIGE>K&t)L<uBsO?(~Fo1v2iodp~-cC;O*E)kZq5*`Fr#$t_(xx_dZ(p~$ukNQ~
z5qw!L3_#F`8Bz}*uI~Y<djtdIklvsAm4D2Y%@g_&19aEqD=&;H8e1YAWI|i5Jq2FH
zmx{EYD~YPxIbDLwX(FSZ-VM$#sMF629;!i?a^z0Ir)C;q%_N@z>tyQ4eQnfwXVVS=
z{CY}ci56YOu8F;RJ8Gh;`%`MY66=@r!H!gR#gMVD*PLM9VF~^Wo4*6wmW!5gsMNrQ
zU&1zJcLao1Je2Opz>uF-{)qaS8zZXI2^6qEsYeC;*NXQUXjy!mnn}t3qp2XRKef~U
z>dlfQtG^(?;RmD~dr{<>VT`HmMN){Qvt?+?o&tg|6W_=Y(RyJ6Fq2PJQphk?V)ccM
zQAg}c4&9?(Kf1=uIcZp6E@OhJ;#1BZOtEuUrL}Xm?X<4!m6b8BkEn!)x2Nb)piv61
zzh053El(n~Ufv{U%r)*j?lu|3s!dft5RQ6m15S~EhMAcxqnOPf$({!%D~bS`J<<VF
zns@C(O>7{8Q?#wFSXZQ|gueI%QjvBj)X^<em&~b$!S&!&f?d)knsIeT`&4$(ZBk>J
zx>JT};R-`s!24sQ&Kp;8%)#ABdb*K$!*mqlXjvemE&3<K$@YC@LWo>F<qFiwq?krk
z$7`LMo5c}wzzhcVYvWd~5u?#kzt*9?QM5*WX~M}#a)=WCo$Y9x6h^PzE&kYef~Bt-
z-=wxg%55Sq#Qwpx6l;xmnHB|%mnOL_WWe^3F9@%#YHxZGaY=a&*=sgQjNTErxF&hV
zbD^7W%WYyH^mJT;Z^(^~DY!y6Iaf}d?4gpAA@-*X86;<$Y}+9Vajfm<l14!k2O57e
ze$Mafm3Itz56AZ3w$s;Dq|)_Xz)DU-p}5|9C&Tk!5abyb2n?qHj6L>c$aga|UHblI
zGm1l#OcQ0dkqxi)*m?;ziRj~I$b{yHTf-%i6`hzj3>BGC^mpR|nJtnbG&tvjzLog!
zgZ$%Uc-r@fzYi{g#C?C)+i0{DzafA2#)%l9d?vvY2*91^$3()imW?o{8Z$0#Mg5T-
z+lk;vTU^=kd7mW4W~nL`yPFN@5oT#KZ}b;Hc;*@A0I`NDD5?dMJ;*@qnPou^i(j^z
zR*A;mvtU2Q+(baX*BM;FNwwe?>y|nrMpVgWSKOAyvrFn0UHVWT1=uaDi{{F~^3k+o
zx3=+%1k~t=MT+LDmla0vB>I?5=C(_vlNW(8+a$_R#{=hUNDgyu2{X(hav##JIgIZ?
zNFi7X<PcpC)5qngWD6Hfw9I!O8-5Vj9e}t@4OY~fbo)a)ARUKlNrPF!n;~3;a7shi
zFdjKiNyy@Nh_(u?DMlqA*<k`DyeRR>0&h+F$?R|)OI^q=7E|s|Al$Y9N5QuJpo@Dt
z1}A<jQx|5X!z%N?zJlAYo*dOVC`E4C*v?(5mM1K%`7SXg<67tWoX8>VtQvNTH9aXX
z6*f)5MrvSBn;bB)cl!_n=>Fg|yb0pg3^><Ncwv5K?;E7QRCJOfYK*uldl0UfRAvna
zG|U(@#KM_do`2d=@t7}D->%kL0K;3@4BFPwCo4XpkyA&_WT*0UGZ8LNZW=n&<6y5R
zXCzBDsiC4{Ff%qbldr)&Ch8Xa>xN~bUQZG3I{EQy;=gv|i)f}>naklsxf5*`8b<s&
zMZ&-LFX~cT@KO?%AR1l;lNq|m-)gEDYvhEqe_V`ugAf7QtqWnPC1EHVlEvR@;FUEq
zsDc~N8Izi|S_-cNteyxJVjve8LpNn$cl>>-Wy<(S%cFC5)|<YJ-_=2is-d#E`TSa-
zC=TP%(hk#AD%(RA&pXC9b>=zeWK$gn7ARf&1!vc%MhYB_dPML~-}%^aOpO7jo%9$p
zG~Tq^qCf65AI}rl1tBPR+`BX1^2jpVz~t|{hLBx{=@8XA_`j$hchbAiM##4?lm31n
z>hPKI1;1QtfG>U>@Z~W~X#M^^YFP}Ka~1U{GNGH*{2}RCzT@)^*hKBaw+2lnrN02c
zR?hm4I@R2F-&=x#$q7D7e<0F?E&C0bL}XKEms-<RGHGSJkixuZN%zq_Hu7EciD5MQ
zFR20?h_Q}Vopk$c%Xh>BNK48DLqJOITi?IR8BR2ipcal_Bm9`Zm~F@iYfi)2oY*$;
zRefeflm!nxxp#c#Sk<W4WFGx*6ebRq3g5u}2y<dlt%n$Z|1_h$Hyylti%g~S`jBud
zLMDU#Y|7`x*@A<tKh0`m+gs7>Y84)gv3)q@fu`b>l$f>Pt;E~!H2{cPyXi~QdE}z=
zAv;V7WxZyG0V0qgZceWCNo1|0rNp(y_Vb(_3)<kvsSvGcBpe`Elq$7Ug@{_F=RKu+
z%LH6y5CJ&j1a*6qOc7>1op9}*4ZhvLC8dSG3?okW-%Yh&9G<@|1wRI}5)z86G$Ran
z%gT@UdBacRN?M<jY)#=R;GfQs!LgU-03FFDNe9TJnxnojaILTp&l?<I*G(R@O@Y;A
z^<FhxspiZ_)%5)m1^no#lPQ-IkWhV@X>=%#IpX9kY5&6z&=kG_e{K>C>48<iZb=|q
zXq)q;H<XZV@?LZ6WWjDjS@FHkS5bTU`if!DFEDS0FZGk=@l!uPm~LQv2Ak7EH~fvq
zR@-W=-&x#U{1UaQ3sZEzo$qIj+Rb5a@y&1xr@aSOObo*4$5aYhtbI@yKPWFg^0pa{
zZ~Ok<6}O!w_{17_=eTNkF_ZPM$QmBPz|gDJTdL9DZh=wwN@Dmde&w1n-ml34Q4I9k
z9k%0xPrG-xHh5jNpL!tjlo10IN@T1*FfEhqJj7mTr2wc>i-GSBzh(?zV~E5^+sop{
zco87zxn7)Y+n;zf6Srg;^6UIX;0pQn99_g!lA|x5f_aryvIgUDE<{Jb0{pU{LXnL9
zyX~(?0R$iUvZKs6dyrueexqX;>_z!MzS%*Hih5Df^x$2-E!d-!8{S2-wxAim$^LpA
zQHRh=2>qu<Rhn}mpulpa|LDfV^d%wnQc^qstk@8@QWpfutatPALvI}e(*aCvbTE|C
z;>#tGRW%nH$MFRT2r-vP>;aZ6m>5T`^F!OZ$%HEl-$j>AXqGP^$20hu<mZTC%A_<h
z7Bj|1;11yz<1X9n*HHy~`uxb)Sb&glr%Sc#ceWQiAiVcC8>x5CwNNHTEGhgr7iYD|
zt)w;j*8^xR|0U`H+ABpV-(4uzMGqpWXhk3Ld!5Hu_*C!pL4zpg=@fTIQD_OSy7KzZ
ztXLdS&~|CRVlA$28k)sNPliTn8u-|Pw-LqD%7h;?tcEP@QHyt5-i<`2TPmkX?1_aA
zx%WXDSi?{E`Qh*QgG}l>wA=(oQ#Z;uIWN!x8^Tdx-;=S{&vh5&WSGS6kl~4Tp;i@l
zqmK8g_J!aS=XXFvt9f*XYhQLXcxuqT6zFFBkX*&RMT~Hq{r%9I3J0%8;Ffn)fv?yb
zV4{I~xurmHf%__&m+<xAE(Eh%;lsq%w@8i>zt&xhoKMpj34%QT2(H5wZTbh5)pP)2
z&XO$Ka)oWNp$G?XDe41pfn|+T54CtrIr#*#Mnb-fCE`$6-XBp&$VYe3z+v1FB|TlL
zL6bE#K9-XvmNY&#bxF43A*CH=ge}V9bht@pxf1csUyxhaztQ{%My3liR8R}JZ{ivu
zx^du@48-JaP!0Ht3=mLM0k=yi2llL>JovXjtp+}4K2lj1oU}YN4;ySsx(9!G6Gzj6
z2tCzo>w&+^Vu7|;PwPEAAuP%{g?A7;+KFUf&xoj$;uF`!?4rIxH)nqGfo4quO%!dz
zvi;&gd^F(e?UHN}q`^|M<^!50-T&iT-m6traewhi&PfBPJlII9#gs^BzyVGyR#f{@
z)Y7J-l@dx{Wbm~7G<gB|Xr#)!D&d)K)c%ZcdU4TkKY8*PXQ~o>VQE862>&3`RxpxY
z_6_Tlp@g-N7F0$Z0bDihmE<J*`<1{0=y3Ois=fCnTvvqsGORCrf0$j-zM=|pm>Fca
zvJfK)4Hg6k-flcx^Sslcf=IPpavVU5<fk>QJIX49Y<lt_VcrjY4-sjfl>NTAF66aQ
zXZ#I$lZ(AxGcq1K`xzDsaFiavoctmOnaYs7%sCyx9}r?7fRZC_+$H(@&Y%2z4h--C
z)o9whk@N(QGiWf`@9}PtbU|v4%2YNqn7iY0X;kk#A>VJupnJ3_@i?ry@e6FHc1_VW
zge$E`*-DzZgl3r|eH+OIyh2<qJD+P`d#cbTy`eo=+y3<=k{Nf18Wa8}0hLU$EWnmg
z)?4ud`9|!$e<&y=xV!`}>+h$>ILMv)@T@u4Ws|MCRYrSV_2$pHMiuS*Z*IMq`3@K&
z_b#>!n+*)6y2>5Wp82v*ky_ItRl~FTg7+Ugk5%?$zEHbhu2B(}{bil`%WeGI#BJys
z%r~31=Ml9#+CGUY16_^xRt7`b1zw6_)yt{#Eq=wVyCgF~7lt+&%rlQCfA7LnYe8|R
zJh0L&Pa|ay0!J?8S|aAFcu<qCt2_Hb0uHpw%Y_%}-P}6dH7>L`nNJES`877@m3uRK
z{FI6#h3~12o%H~C%1}V5>SZ~CMCD3OV*2s>vPm?66jVWi@rlk{)GL^LVC#_4b&F4R
zX1)E~1sbmQ@qC0;fu9fSCD;lm`Noyc9Y`EI<Cml1kK9@uS*8>V=aa097E*gbp@GKx
z5_zNeGe87K<O%C|yk@BN=!JFbo!GHG0*UDNZyiAqExh_zgy3wTO$@h_A&!~UDTiqT
zFp4^+vNfd5{8h?20B6a_tP2ds)9n^L$4sVFUB5aPuo8DoG+V8G&Z{=2HwDGzc1mjo
zw+o_nX9^~=zCX_KbvD+g9g9W%)wlgiLIMd2jNjmzf&&cD0I(p+A54@pvq(1VS3f8q
z-(ElMEd2EM9*r%>`>$-=JIlNkhG^BfFZkhQ#R8p{nTz;1Mr51z)zHUa<D0Xrop%w6
zrzbM5rlpReN)RGL1D>f|j0N$ZI&qY<r9vBBgrIE2`@`h5vZktpXIk$?tg3-zy8bBN
z-W@)miQ9w!1vw@JW?k%Qy%SLB>ouxuWtaBtSQ^Wdjw3)|U(Uwwe$p$TfdsPQf#zd~
zAmgUFsV6bhS@R*GnV|C@X;`9I!#6=K-8F~$ecl5G?e+~?zy9``Qs!#fek*u03LApt
z68<;daWPzt<-Le1hS3bMg{Xn=-hjzgZVF=lpz!R-M;<t!_N7}CvJ!28Zsz&K%h7Zg
zKUL3Den&Rhy2ch7Y;W<UQvlp_ITtm@R>Zcmw@+2mZ4+!Y+xPo~bo2}j2}4MwE*P81
z8x-zm$RnMf(ojo5@GJ6#M{kNi5S6&kw;!zsRV9OU69yQyu+T<w{i6**f&pYE+)C<X
zm@@gQwu?9L>|oyzGo>Xc0l)Y<r?6a(qXKU1Z79RMi`Wn-=%_JvMqXr%%73iEcJxw|
zf=z^K@M}1yNW__1Vw3DB%fn_)PCGRZd7WhOEvYz}?8qYlh(bPEO%P?Ur>#pq@TyT}
z^&yK+g%TXa?)MXER!{{h3ORZS2j}3Bt@k$xw?h7QGJ@l64$i;TzOS2QU7*}`fTIV(
zJaXzOW9naGdh1=F@4LZNFO&oScEonpfpbib9WLFbzLJpup$`5tQ&}u_cSUIP2dk7p
z6C72|d*fZT>G0zl(xE>GF;re#QuD!6Keu`2h|miq54utc4RMK2Sy%T5CH^Jxtw!c!
z6GRVukz3v8?Sh$udV-<$_;y#F*+uGrUwP;euE>fA;ObMYNK6v?`sy1)7Vl?6r5unG
zg#K%MEuK*)MJ8ScKi4X*-#yNZv10|;^|57v-^0cCG`7JLy#yvirRM06r_tO|0cbdG
zzWzvj#WRT|+4D3QpBHhs<5}6NaA>U;w0~}SWLqM(<5&vds4G0V2!mkv)iPto=M~*a
zCQ{1R126L<+5T$teJm~c`dBNf1A9+LSZ=iF0%96H@4?NMvo=qLKPKauSn%jacqIP#
z(hrE*v$maeSn7gGk!O4%W(kn4!x|Q>Q*z_Y?r*>%dYml62E$h)9(o4@tDPw2i{Y4p
z#XnWrWuJ`GeeEi!p>_;_Bl0tJU@~7ygsJXiNPra#yUPZsq$Wf<?i%lZu8{>-jYa%X
zBe;RPX|!rzrIHjy6-e7)Z;h%T&uz7L{)eH9ZtUd8*mvb+$)g)uE%Yg-MsCJzK>}w8
z(%b|AFOiv=<t*=LXuMZOepcbNsYv32{4)yOG1WT%>iteD@$y7*S%Poo=a>6KNG#5W
z%N=KVG`k`dGojXuoM%~;cuvhEnio?@6>we9!;HrYF9|Ws+c0#9WZ+?Hi#{VF+p=vz
z!CMMhRcU=+{^XPHg6ZCgW7D<=WK&KnBEs-4mA5xaVYO|ulovvnVmubb`Ti}6I3H8h
zK<K0JM<#x3q38A0Q@GF}<(svrUUsIm@IGmq(4PM(*B);5V<_suzrdhfnkQ^+N47NR
zEI<(PO3s8hV*LE@BIpN@lQ4F`DBL_)dDru7tk1)Mm%^d|Tx6g$XxFpMsd-lV8kU?&
z{NNH8Tn$F(&+P6}TpY2wRDo>jTPf*AZ;?5ZIlYgFVDJ<-9*G5(3n}jV&9^d0ih2En
z!^n$^TjXm1MFGYPr%OMa1*lQm*mfe>lU3ipcc9)r&|1X3INpKHk7_{|auoF0ab!ea
z{-#|Ps?Mf%_yGc7@s2>>5l_Lu`82#O!Vr>pITa6_n;IC=;?8Ds40)J%ID-z1ElcTr
z*SQlh|4zT$FVOv&Sk6pzX0yOWyz9Yls8XcSE-gMbzMQ5K=YTZT^@{9tU^$$cu^Q?a
zw8vM2Q-%TxO_}IF`Z)9~yXU+D17|TB_JV=)^|UPA5Q8FbeYd<!yo`l~TI+G3OYA3#
z7s(CdBsuuLtL|(T(+mL-$BrjO*nHIo^YvmWX9XJ|dR<<X0aU|(RrD~II6L=BVDcWh
z1!BH;@GPfx8C(DoJ5eo%?A{(FvT!%Rhz1H!1%2<2yXpxHG9J-9p#zc(%pB5mB5{ZJ
z$x1fCy?lAnQ^v%n!6=NPZP_n`a$7f&qXjYBCpgmb4fVwu(5p)4|K{#8dG|WuujYv@
zvC-8zOw~IxD12G$AUI9ZvBVKm-`FkI)MW5y2%C@ncT5<C5idU`aK$yZ+n_gl92d<h
zYm>dEPOrEYJEP;hwca{|kudsr^T4ekJoIKK1xdK*-XfcISQ+B%Vd;v_r0yrb8FqaT
z)cV!uu0R{W9U($Zc>I7<pcZ<<o{0ouU^U`L_mgAO<d55A3dl)>ji$@yC#XqAF${JJ
zY;<lhBFU3hZh;kTThY{NB_UyWV)eNIt3L>o367*?n|NF#CGfHjvsXv%!z<N9;w+n_
zCX+7r$#$C_IgFO1*%n%s&+ZEcEBk2eZ<-Rb`zrpR-5#GhZBp#4>9&L0h~=Q(ev<B#
zimGp%)jOxL1w)i_g8L)8#u4rXVZ--qMJDv0g6=_nnpZ<vKJ7UxJQad0yRu8m+iaVi
zK>v}#)UeB)=2Bzwisg4!G!H#?tw@w%VdeNU4u*J!Hnf~2`omvJ*`(lI0PH^IwuL1-
z|6#>YT-)>au`W!!BT${kILUlU=Cn#{2qS!EGI>%-a%1P-=SH-aA+B}~m7-!eZF`Bn
z{aS>=&IZiqT9zyB8_A}H?cXEk2u1FA{-f3GTdB|W*Xh-Tp>!H7dX2RU&fJ-cfHB8P
z<*+ogc>YASZiAit0h-~d`xP(NN(;YPN{EVSs=KQ7(ir7}Tw9S=yc%20#Pn;g*Cv?I
zi2IHULHP1gkF*Nzz_rf9<hVh=0+HBiijq8}w*SYyQw*-#aByyl!}$k-KGc8^U&X_C
zZ=gKKk%`&^C1*cLFq>U;B%h10#w_+16xgbyxQ2*U2Nmei3+yz%6$IubQHm@|xnzrF
zl==8&3Iu3qqVY9PUJHfVQ}>2E${<4LXYWQgE;S!;UUZN_F(7T=Kl)+<S^W3M>gEr;
z(ngd#64Ii`!8;#stVz>{{iZ2`Jgzkt1WA&*hy_%*fYU5llEO2D*I0j-PsQz|8copf
zz_X+pEn_AB6sklQl7-=<um*=EWSr4bVbxWOtJ7lqsoS|KFSnLMd~>WN4xw57q)$nO
z=eOx)>!Bw{dky?A2G^=>m+bBmBHM|Zd%{}cu(H|P-Lqwbb17#B(=qC(;!QvC?m!yS
z7^x?^1EtGV4QSz3)tbt~BBBRU8+|SfEEzd3?(Nf`VXaSsn|<maJMHVMf&|)&AHs2W
zxObCl;itcsLIa)Fm21WP%re6mZ^10@li5Nrg9C4J&8L+(i5AsbrXi|PzGt`RJSDal
zrUd-x8InG^^alm@V_HSi3KYB+f6+Q}yf;6jO*M+V`UK0#5;pl51-^J^aQUL8<&X<r
zkhF03f?Vq7&a|vzbaI;y3-j}SD_Tz`#6*gfqwFW!R<_vx?9hChEBMistZqfx`1cZX
zLjT7|J?OyNFRJ%_#B&ELe6>Qu<KQI_?KunEr;&jp$&iIF&=8b}Y08Ri_0*po%w>jy
zN8auHOT%6c!ca)x+be5g(k07%kA$eIu07FcqM>h=8a_d+ZrlIn^e1?g{?q7W>a-Ww
zuc#}uk?DynIpwI1b&#TC@W(@g-a4rJL~1FL8z^gIlX5Tme=bK>w>Kk?>0q!id1AIZ
z*#ueh>l*Q_rs+G=C?*|KO@Y9UegNx~gT6M)0Y`4Hn1dCAEcDL*NL2MC1oxOQ^nd1X
zSsAdEe>W|kox)lL_~3%4C7<rw76=Y40^|q7+Re84q}>niNzv6Ud+d$)9#%%NOu7W@
zd@an_&5%5FGk=r8<_s3-{t|+UYJPgL+Oygroq?<*0<uOYrK342kHPn`PH=+wlmOX;
z7G6{*oO|{r0b=E?)8hW`cMMzo^O>#Me(WC^7m@*9$;kiWLgW^ah<=os)i`I)!zX&b
z1N=f-1|wovAmJE=Q$vZjZynUotX$^C>q1ksyy6?j&CYG*>P=VxDi`tSlxdiwFxtA4
z4w$1OS&s-5-Cg1k+z(8#YtPIH&c)h5_z}MK5Lv1}1z`NW{4&pA60Mq)i+$pcK&sjQ
zMefej@YtgI&6xUI8S)1byNK&j4qqV1|LhiU!FUu7Y+~i8w3+|Z$-F(3`zRf|A?1x3
zyj<ZJ6uHn*S>FR{nlhW{tju|jO6Ud4ykrJ1@9)!B<va($+Cz(}Qiee#6X*ZB37mwW
zbLIaeuK1!u)ObRv;Xa`Kp)KxkKrL5t@>r|Pp7)faB^b?a0&1h-2ismVNxH8<5P4fu
zZdY}Ac8I3%S>a_4weSKgMZMgRWA}fo*n@JpQ`c1J`!-;@35{#fDjPlrlBpONx_Tcx
zfH9-PyKuv4H)SUEuL1H6|1w^!8UE7=PvmR~2ltgCQ%IBzUcUXSxkGyC6TJTT$ldZs
zjZ`Xx7eAtKi*%?DZ`Z-Zz%f(?6K1gxA{{}86gvc-{DjdC!-0ep5#zSx)jene%lrzm
zVDa3KvnFJVSD5U)oKJylLCVMp2*EN_8re^D_6HULwQ)_ViIoZ+ATl3?Ws2d3<o<;h
zq6ppt63^_73^db{q7(AAdAd1Ar>>Kf$L_*Ki18v1*%Zr_&dMq4!NPlwbyNPJ3N9vR
zCpr1SboX8ULIL&(yksx&6CIThTvuTWs}WR8s!*4T%w-z*WZnge*Smo)1zJTf?6h)6
z`Z~Wu+^(hmCas9>k7Ea3J<<x0$^6B(tVR}X9PF4p^SnW6o&G<D+}L-CtsaL8Z<76D
z*@u!wdQ-eyb+3$<AtlEbS(4ifsTU8Fh#s*ImzOwt^=-QnFT2GdEErUZ8c?zC*DqF~
zlsYb&IQOvjfiWo#rZ9NLIuaRP2Z*Dx^HXZM&{2GB+uDCipAS{QW~d3*5jU3oFH&tN
z>ra{URPI#dhRb^$pIX(O3&vgkeLSMeSbBX}0?~Jq>XoOYq@b+WKDLwse>geclv_gT
zvbCISf=GNSH<0s+ervRJ6_zZ_gDbXQsOO2cur<+{dW>bFH*S$(bFZdV?%no%y8xMO
zRt)r&Q@o#wJe0(8Gw|Dze4Ws;t?L+D#C9WT!{*U#SFyj91R8Z@CgI@XVd?7#{K}e<
zu3Vmx5BOj65El{$<5O!^8kLbfJGQwyQ(1Qr^wH(^j8yf*1+&_ANpM2Jl$`+t4X}pn
zFM3mr-t6UXuNv{~yi*PnV-Z>ccQjEFj1sTzXrcO3Y9WIfQ0`{S{e6;Qu!wPwEJ}Sk
zzhYt_3f`U-YHnI^bGG0?l*VQ?pKpg1BEthEyCpi&5^UU+@)&#dsq00VJpLkaK>&?E
zFaH3iA-YA)enFL%>RUoC>}$qt8_q|+sO-#<1|Ni*u=rA2$h}Lb{kL)nrQS_~)e76w
zA&%w*fgp8Swc{Q+>Tg42rg=Iz^%9Tgd8?Sh?pt9c*1n3)AIV(D`X%XmWgz1<`P=~!
zdE~uFgW}Q{Ka~WKeDM5Gn>8f(Czfh0vC_avAa87_xl-Z<SUMkzW1n{{ul50XTl~6L
zpkIueu{u*6VEq%DUM14q^Vq@?ueVEW%i7g(;LW^2{}EvXRi;B2cVZLhB|mc(hdk3_
z4*<r;dwll`L$~?$1`j&%^!r8STpid2QEm<Un~ioTISi=?3VAn(rmbX1b^F2z{r~Cs
zYD1lG{uM4)5`Vp+Q=c@Gz57|m@SNPgC{%j?<qtc5$Mt%IRBn>7MQzSkIM(oxuCZq)
za`wgJuQyf*F-U^LY1;_NJ(AK0x$Q`MAbq#X)(<lUpzs4{RcoQ?+tZxyaoi=3dOc>Q
zcb%jbFLtori_}^m@&~-y<-k`TS-j{8UBWF1c3;zigsdOdfO8a1y7@rMCd9Tj?G^GQ
zLAMd=;Dkgz`@{)L78!@ymbfUYY4b-!YmVY6k?yCu_el+*((MFbF@J6rga2*afXN3W
z8f=AhRo%W>YZ(1Et@%I@myeV9%QKZS0jFIjb%=K3u-zdGzNcth)IC5Zgds4rXV^g`
zntq|4iaI+X{YX8sLDFHT?<l9HuufI><_;#YyB(i*#|%_n6_EwQ=$vkB1uN9@vWPa;
zEu=nxp767*N{?2nr0_fruM^DVxcAPW5VFUXLpwbnnMFFW0AwSAa&@<bG4#(IEQ-Tw
znS5vSfmM>#+66GoIecGgz^Ai3+17*d3ykVT+ceR_g7K~_dC}zL>tK))Ma*WgaEZ4P
z&HRX(i-<1{|5t3KIg^|<mmsO%HT#UAP=Gw^ay&I{_=TYmZ$TMGLR&!g5gNa81ax|L
zlo;fi%8Sll*6mt0-A6-@=vG*E@5xmmzk-!z2JF2Jiw=hcPH#@9!~1@oqw{_;`ykNk
z2O0)It<sB%!|-7HN2}Whf{&IjaevQN#;Ig^$%{xd7qv1dT`dP!Wc9vJZozM$EVb0u
z$~Q0lo$G>+91~>JOSUlIkf5oET@*(zJmN<PeLqAe%|QRyKQ>DIucAb<Cn-m?i)=tN
zKWi*iM0KpO6}j8q_STwpG<@p)4u#lTM|Cw3fgGE0ofFih2`?B|GrWZG;q<{DE-blg
zv6Sm$3|G=>!l&}uA5QWgplqVIOq@;@JGTwkxP=bVK4$zgN+B$PHoKypjKMkDW4*mi
zJpV`CKO?#qI~uhnlfDj)W<TY`J9AbEx`OfvS6WOSL6DyTlpEXN@r}8QUy~`0xG@g9
zdckLkD9906YnOfq$GPdF9wxG8^b##5xyw8XQLf1ixdGYD0U(CoPT&4S_8IEk7uc(5
zfzn-0BMLMkr+FdtVYt``gJczCqbaurYw#9pOzrOsMy!$5e`TF12n(VWLN^<+dQ6+R
z4_Y3u{_JoOsmy7J`g=Uy``TAWn^1c_fAV%zhh4zZ-|CzPd)9n8;n{lvDaZQ+lPB6r
zL{hV6y@(7sN$W7SUn|>RGg(vD@^R;SHq8p@#~%zBW+7ss?g`?LQM9LLCQr#2NtUOr
z9wgM>iwViakP}Y<zSERqI?>ZbV*M1gv1=6CJ3DtSd!kx6gO2;_Ruk#ebJG@>9^ssD
zG7^5FZWiD2tF<@S>#f23m*Soei>k8QXv<wEm%*=`;i?L0J=?fVGEVxQq5uhdB9mn7
zas@0PHwhn++_%*|!}v`4NuEx6*DxnCJ_h}ol+IQ_+KJeBlhoHrItaL!egIuK#5we=
zwudZK1Uaf|M=(B*3oU$q*P;UN<t0xi1r|g4P=#iM8*l*N=srn_1=`qR5P!8qw+eE1
zPm#*aZebUTt#Pefd57O5e`nS!+G~7rd<S2|rxpxHJ0OZCm#8-5s<`o4sGl6zQ%C;`
zY66qud&5qerSQ%zm?!%3Z=g!<kQQ?AyM{~=v65Ui2pOZ%V74JudqM4?)T^!8`EocE
zI)y25TIqu9@{IFRt88yc;-mf|<i4esRk3OQ8%}MjYe8!Ro)nv0i?>|2rQ-=UAyT)T
zr`*9LP{*>Q?WpwegOo3nsEtHL|H9j%+hPK49gAfNOUTYHk$HGk2;|?JrW`sN_#-LU
z-9&hVCL!9=Wokh%yVkocC?8KWFNA9CueKB`iol_eDT9a6Eyl=EoC4-l?(ncgBD~tJ
zmgxm*Mb=i~PN6D=>A$iStKIyUc7{fXYehRzq10}xnZz~q0{|e@D0>g#6;u)oWujX;
zH#WOSvpmoztsevWH}m8O44pjWfeQFnyYyYxWYeYhoi<fgS6fqt0m|w=aOm2>T_dKO
z;quDS2o!+eJe7ouVJqpp!LKYECNTOltg{m;nR1+UT)Z~PCH9mLgo8~0+mo4lkpTo@
zNz#pS?GM_{-d;ABOwj(h@a|Pb2J*85+wO(LB~gYr#ODB8j}d}geA*^;+!XI}<<ytQ
zI0$(|1PmFUu6ijNr3xE5u*WIedmKz=iNOfP?3|%2Wwg9slFAj#wgUI7EHycA&RSkf
z2WlEScR`HTK8@*~0{lsH=vijGGql*Iu;Yi9%H>XZO8kZ3G>XES;}X$P1^hP9Mo^~|
zD@>Uhe1q;9S8^ZuV3^^>W!1C}>GX96rL0?Wg7t_v&0Xt0Ge0TZ`L9@{7~jnQHKJCP
zxh=0#)cvP`t?|MMI5f<nXYB*qoIDclR?dLlptu+nGz{P??1+xHT6@Iokd*vmG008E
zxHcotfNafD@vkY?nUOBDU<rpWk#CHnoRA0sncZF0ROvkEdhyDFthZU&9dtEzQ!-{*
z<*f3J@#526WcSJ`w5w`Oampx!|6Lr`$(=WpxN^$VVXSw*<l@h2K%oD|l(BJ{Nj**L
zj&CS|%Odw0(OMNb;5C?^v?}uIAs~?8^}n0btlMPfCdH;P`mPYFbgmo*;m1p$|2vd0
zN!6{j_#*?6S&h)W&a00f8tH=%Ap8uUUP7|8n8n=#tAy|xxG3s0#4l(jT)uBG%}GNt
z`(yKzYHl>C?>l?xL6ZTQ)N`Gugx<zn*jkC6s_+R$gAOsKD8y(^rB;+gZ=LGW*s$?_
zoj==%vndK7+6|VXhXRmwo|29<s!e!?N8udz3yy4YfMbcA)vNnFJT%{pav)d_(gnK(
z&ZN(EC(i9~OTg$LQ!u<Bkz)EHFPa@@UL!5SLK)FpnAAqa(mr?(+0KOkj_#v9kq1x8
z0#E{WYZ<J0hzU?K%AqIVj-`Bh1Pvt2YK#CuSlZIoX-qM;hLtXD$F)SXe3kO8$>5;R
zydGglmv`_JZTZK88EFE-y8|(~tD^q<Beti}XD+DLy>l3R@Qw2aqDUt|q~BUH4h9`g
zc5YeO4=<04YB!N8J$M_IzXJA%Rcru8_j9i!2fuxI0@t-EzpWk8>ryATg2vE<v&Ln0
z-4l^02<tk2T_aC@D^z>Kt(Tug&P!i5?MXZ^`{*ZsnIMwj-wl8B#!BYFrdxl9|G@nx
z=oh_i&MA>Z@(%_SJxWKAxoAAlwsHRKE31oPa<xJXDG_`72~`C&z&hJy^wpmPjOw<K
zU2a#N8*AmETS*s6#Luq2uFIGAAV*WRxyW7qH_8IC2QQC^#Wm3Qu?K#@+Or=9NrZ=C
z{r1%=@dCH01$-c}zA?JSG(d|*jddvRI8-QcV^T4yHp|WaJi6JK0eD0ZtMVLLvV7n<
z>*l1fkw04IP!46c<b*d;X-l8>ESA-*^%nb1gwQ~e;?nVd@)YdYL<#o^u(euR)HVtN
z1RpuJN=gAt3mGMZ@c6T{iKSme6sud|y@?ZTf^Yicl&DWAkZ2dA@FLtr^T_O+|CuRg
z<YG6-4SE49rZqwB8{%)yfUo`=V|rcMH$o7W976C)yN?*wOi~q_3*_5wMqw4hm*ICb
zrfk<47Dc|q>2)aCMLg=Uphh5PWR<i1(chRlEzJ9PXcG@pAkAs#>SNDxm?pL`TeGcx
zL`$q6MK#SD`YJ^S%ao72k)}-v5i04(@ZSpcl?HXR@VgkfLfw1CVkp7sQpiq)Hu8aD
z>;68uW3MqY2kGv0bcZ%gRCyQ#<d}N9c^69uI9ZIVcsLJ}waPpl^KNqkx&(_2X+q}f
z^*@KXN1_9u-Zy4xbn`d<c;C_2pK&X*r^#}*R?VkK0moRZTc86J;6uu}^ST<LBU1xh
zL0MN*q<ugP?O@{3v?Zv?VU4t8m!t(akSV;)J1jnR(to>%9yNw07(m8M;C{3YE8B*H
z^RBI{cA2H8AJxkh*FzZnFxJao4mr|A<32`>)-iDL2(W8tjlQHb)kHVU+WEWcw68Vs
zmffHPGmEDEJTmVt%;bQ1RCK{F{}NZOCt8+B7VXkNv7}!8^N{gG;t%B6PLf5{`r1WX
ztJ^%ZjVm{rb3^eMC(9;erj&aC;>VMHv~k|5tVv#c3J9fU9VaApUC<9iDGl6;6=~^*
z$JSd#?IL3iM@!%9IepX&T&M)}^*E*%JPmeb%8R6tXATCAqWp?AY(EAb4t=)>l^Aoh
z?13FDw8Z%bojSoI0L1i)Jt#+m7r}>wY;mrmnIkyO($vvsWMRm?y9*2xu^%G=949BW
zjbuo$yQ<9`;Ope!6owFJ|6d3fBI)^qfxq9Go08V6dBKLI!xb#+68S>|T@MM`Skj3M
z0CwaS@sWWiiSU=@h&Ut;n6BW0J$Na~I&i4mci_yB>hJkN(Y{0rD!OA;+#(F+Bpl5d
zZLo-tUot8^ufWdFKt#5-O#`8|1SPcsnNs^@jiYg-gnf9HRu+js)_6MvLP`tAo8=tr
zBW#~%LyX+_tzF3-7H(N-=iY1t8H2ujH2G{P`I#-iGz_)w_Yn_RP}W3MYhlcY{673)
z0Gzx4?`vw&<#W9!%HDtR|Hih3GN1!M>N%|wO(%!Ogc&QdXso~vjo|RY(7fR(Y<5gu
zovl4d1$mnf2D-(3=tt>>5E#4{&gN`f)N1GcYnUC25vocc6PAq*bW-HrxiyfXMSBHT
z6^8@RLBaFSazU$ZSVSaDo{W-oiez~$4^9y%8qFD2vRvZ$1-)>Um#ealcj9s2%K9;<
ze*AM|#ZJ_`#yHR;wv((V25~sP!<{zSZ4Lser7e;Z+<~MwY>#g-tzqfh>i?M<v<#*)
zx@E`lM66#%Je0?{@@Ni&fB*m|69K3P0A&b&kPcuq|8}Su+E-Pqpecd-hq%N#0Cm8}
z;KrPUea?mTb0o;E1#pn~Se^qfmV|$4=Ag~d64$I=yqdzq^JywIms)Kg@rX3c?EYF0
z>kv)KIak<ENe`WFR+Qq+RA@eVNk?^gIaeknQ+lIv9)>EN*jwDG6PIeDz(GBsTMX?g
z%38Z(hRBn?HM7>6-f}jhnVcjT|Cf~5bLlfLXc(_)VbXlGKpCRp#$k#jqrmg`0rZ#u
zfdID?RaEkw-9i(qU~;F_Y8J@=XW%Z59J)8==<;B{s|*bd=p*54SFYcEA^n*WjN^@e
zp^AyAE-jXA6wfrop<Ay;t?q3w98?adQ_mS_JME|f9@lgwKr7W;wI$0n7Ur)T_2*-^
zJS;+J?JhA6;2pS@+zKVVF}i0r3r*yV#mz2k=_~M)G@OZYk$I2&ut7hwg1D{Epzwk9
zsh)U~bwzN?aDgpO?d2}M(?IU1cmX>_XP4M#(53t54BIa>QNfg2usg|19wCb6fkaf5
zOqy;oP7g|xZZDqcn1@*tADSXE?C2q23V?ZK=#b19WksHylf(%LuL#2qI2=@1bBo~$
zd#n>%Cl8;rh2ZEYtGMW;4^GSkzC47lFJU^m`$}r1pWtA4LzfKJt3UBAQ4Gqq2B3$(
z+Q?2;))d5&&tViDVzX8OgAwm9$a|BX|8^qNNnza5_C6x~mXmMS*6i%)Or`rbMy$(q
zMG#oKxV=A;YxxQmmR68hZ=r)z4|-L;nB8u4%$@(etF*2&_~)WFQ^K@)-Oh&rq$wed
zm6VaLD{^|R4dzO|&|KdlG;c*W7o#x_AN&KPxe|<2uPUPbbOpq)oix#W>y`+@XN(5f
zQf52-@VfQ;@ofa+CR>}qPoLD1RA!EpkADxt?}aK8M-|gN;f%<SiRqnCYY~*L1O902
zZ`A|?BCq!QX-y+LU|sMa4)E#JX$n324zDhxL!g?)t9xsKf^@T%@-a-C6=^KcKg)MF
z?|UCm2>Z1$d2D#h<M(KFB5QQLLOxxDX}$TTlMljSvgI3gzx@0hGm@)3Ge!|c$8-dh
zp5bYgTpI}{-rMNcfjL(rwz9cG%o);GW$;kRcIB+pl2krl6!`%&*whSeI929k8~TUB
zg;KyU={ob%e1^E?mFGpya6RKfK+wYi%}KQFE>FZ1c!Fck%r2f3_F;U}FTmuFUBGrk
z6KE7N(#-04KOddN`+DTFbr`C2A6gYrrSJS)x$F<10=9wg4Q!KFBtt`q9V$AHIV{GO
zVSx_gH?-0OMo!F33i4%f=a(0W6Hiv5f110i`h}g-X!t4|rYOJtTYs9>rM(Ex#H_oF
ze0wINpLQQwaF{GG4$#q%Z2A{$D?K(W=lrQB)d2toD8JJHRUkOjrk2}h=w}&^#r9Dx
z^3_FenR;hykIY;AKJ}Xb?`muA6M;_xSY{m``VV8Jjg0bD`r*B*^oNl^$GLi{C$tM&
zUMW{Z)wc^pmGALk3NnVn-;Hc?bN`KjhngOTe&ilv``d#wz(J%#1SJqL1ddC`HI{p{
z(U1|s=~YsIK9Ev)GCsOtyx~~hnIKn>)fZklJq+fTIk>Mzy7acqNTz>QYqAy(OSf1>
z3OCfAi?2zPB2H^UIlLBOZq9<(joadL{s90I+ke_0<t~ygaMdx>8(JYp^yquh0P3MG
z=9z932f1aCXveT6cg*W}#{;f=MnTSBPm~CW;?a3s0-rdIJ)msQo&j7xes7LJ!^u25
zA+}lL-kymWPjzd+<ofMzrqK8qVC>>l<`kLza|6!G5SWeagfH_5Nue*48?f@0$K-EI
zoZb%)tex@;>7K#g);Nog+ChAUTNr&dHrfFI(%n6|CN<u2-`a=ga>DTy#ypcIrt*)|
zYRb3&=J^l9aK3i{0$u)A9)L04j7gN^$>UW7HJwLV_ml;ImtR=kbEcpg8Qw9xtuj;8
zC|o=SjB-h@CD*7LfoVu3ka>$So5V+RlH*J(XibXJ3DqQlu;~F-bKXX6Uvvi_K!=>z
z&9w&-g8Ad&e0`8>0L51d2z=<aUb%Vwuw3(W&O_>6LBA3*B*w_=;*Tv12qU6fw)<#j
z3QK)#7++KA>53Tx17WY{ro|;F{z1yEI4_+6(iAOoDT`}-uEx9*nn^<Vq`yb?&`Loc
z1bSncY{)2`O6VU{ac*IE)yU^l)M&U6N3-pX2e9n<Orv20Nn}&+@Sp3S1{n5R@cH?O
z)HLU^?zra7t4aBc3#e!h@MP~vGNyxWiYs-F0XW+<$tzSB4TA|S+AX}K3Diby6tkqn
zpK!@9_sD;Veq$PH8H(t~^k<P1C@`L|@~hpT{0MQJA6w`QoAbSuFLkb*2{&s2{1hI)
zZ!LtS1JOaDaAmOGHvLQvIg?+}!Z=)lPxV7SYad+p6`rIgvkY6$ct_@fI1Fv63_llC
zgq`ukWx3hk&ViTmO5~st$Du>4pHsq|$5eczE8p-0ERG3C53nd3WPA!v$++zvE@#1B
zqfi#~_LuoYDqHsTxOI$V%-%(}neonRT#cx86`NLeJ{!h_2jY}m$FUbu_(BH6Y6Dks
z9?#g_0Pb_kj86egUKiaK*&?MEL=Aa8t}fHM{Xt{4_#Unga2wWjQZ`F#^UK|FsWRCo
zw{3yRD4k0^>3+vN@MmfKxGLsspMF!7YUh}MyNjDni4(k3YI-(c?7KG2_-YgzJ*kWp
z;huJ?+SUSc#YK~~&P?ShShg!0;>dN*>`XjUA)C$6c%a$N^7EF`4ur$Q=~pze9I;4{
zjK<r{r)j?W-LNO)U+UMD?3jAs!k+MP_S{+gAAiAldE=4VDpy!MB|GFv#Ap&SoL7Iz
z?OTVD)Wt8#?zj_^)<=)H*XbVr2WC?9t*s?-sn{P+YOWkMm;L8^sB9VwF&4)NXdv!4
zxA9d>ROQhgfV1^;U{WCY-ajZd{@7%J|G~T}vw!H{-%F@i#B1xF-dbM83V7p=QTLju
z|C|3^f{4a{=hkKVxCO>DnkU3<K&z5Jtsyfd?j(#netT9k9_x3Ki+^Izn;pfyt|;%Q
zUKj1arI(^<7L^CEubQLwG<i8ng+CA2|D{qMv5;bo;HKuH@OOYS^==r}+oLWN@%xO_
z>ma)&`AGC^(~NL7@AKchz%y)3TXdFdyws~dw^ZxL|67g!)+G4U`n>@%2iiKJi^cpX
zH6Qs|_ctFw$~{K_g#2UEfmlPTmM>;;>gsRh6z?-{h>dJ+c=R&{!1<>L<ZMXXhebIB
zT|tuUG{{|65{v+UIY#R*wy+Gh9GLCRiVTtD?l}U$v9$*US&($vGbr2Y3@Aadin1ac
ze&|$JCH53{|EK3Usi-$MTQ3|1DOCOsi9iHDSg)eSu&q4Vc92>V#;Bv>!u`x7mtJlx
zoVCP~Js)gEP&UPQL#R&<Kv~p4q1(E+m)4S*yZ}NeG}NuIV9EDj06jp$zfbz46pF|M
zwb;AZ2^`m=%Y>>YV<XNfcrZzf#b+Vv46QN>(g5?~D1-UN%C;~9MQ7ltmP0iM5B`iC
z0na-p%G0glT|Ld^S%3`Y2wQt<eiZ08<%|(QH0)M$@qHBK0q0!$M*!8xvb$X07h|jt
zj%Uvr7HMlT1!abx&U%HihckY;(#3MtAH|cn!nu;mYY6Q8EplA`N|2lvi`$rk5^gGO
zSHZLKKus54o!@-?eb4;Cq|#w38(B!kjJQlGKf`*<9t!5^oz<3q;eT?+?~}`3d4j(G
z8L#!SZu}tLUw0D9DuG;c<#9^e7JJ2dHwVZmo=9Ff8`#3N^R^4f)Jz84A^#Nyi!~7K
zemnXx*1E26quZPDyc%(YXtiE9^(S89cHZYzbv~!_F{t0VWgDKfeo4$M<)wP{?nKfU
zo)yxxD|ZzcZQ@ai_i(snw15zQ$U9=fJdNbGV0JjQ?YOE1FE?Ae9c`d2jc$Rdmwmkz
z{y5Xr7F{V!Y{+8OzEDywo5^lNiV+v*%uwB?Xw4KAL3jFLD|aBNp}j#+BV=|8#6F1U
z;D8qE*#B$^&CoZgXqjGl_j}}>cEt;myWRxz1TM#-*9e!`h8y3PuaoqT46Q;TjZ<jp
z=4~cDwq1tc&;?8A@2igrd;UQT43c0Y8u5^ftlbepRDH2>UM1>Bz(*657uOLaCe%pk
zM!FBPLWTfmr0cv=O5Hu8rl9;^4?3YeVm73qI6_9x!CsK2d^j>C%*&yTZS^IgB_^{;
z$mUw9NR06U^`d=MZ;S0FggA!pYiO>Wpuxe+h$Z|7sW=YkP_He|7s=o{h{_K&(B8oc
z$G&YA#$tiNB@Q>K?FoyNu|IiN`$kTyM=jbv9pW4g8bc$0tv*6}?jf;zLU+}_8Klm;
zgQdty1mQsY7x*Ej?P1xZQ=9VxfCX0lF3`=#+s}{k55bGfJ}!HX^vRIyn9K7k&WRJg
zKs2tX4@0Uk*C093(j8t{!sNeK%i<cgH)xP&)rV59rAEbVSowoL+`nb`g10xnf7jry
zst&P`an;Vx7LxEt?QLX?_*a=aq2|GxD~0Qja?8Da(CY4w!{POyj*HPa@d=XXF%qe!
zvLAyJ&p&#WYQ=f42yO}ag$(1*PRS12skfg_Pup#i7(iXBXoFORzb}72M#$v3;wx=w
ze0(%AojtL_9bWg^Y-@`RWiRN<Kc?|n&<!;m_u>W;#v{y)>N<r6F4%!cwQGMz6@RSm
zD@XcMlQz4O>Zvd&c(Sz+SLq)6OZvB>wcU!yD!Bev=Lwwy-YV%0<B+gHfE}%Zo%DnA
zRayAU$R1k1?!%8S2@17t9=`DgT3uzMSr-5)Xy1iRG=1c`!!&?<dbqDW6_;Dgz2NSS
z7VD5V=^2z+3T*E&no$teFfZ}tp}aMCW)Jk}$%z>7zFh~`w)`G9@JLHNK)-Is-|B+x
zixb5iM7FJGsLV&hb`)Y@I{^Tn4Z3TTM;ZRJ59AI66MxX1?tkmx0k~|9%U1SSBCm;G
zNrXC2;#b9M*5pq0_gx&Ufp3Jol{mcNM}R`(=eTAJjbShg27{5F2j&MTS^;`(@7tma
zOUI-$)m!L0wrsKwR4g;3*CNIqT<7#X<j1fD?(|}95IM7<zVVY$V0<QTh4(Jt8)@<e
z;MCZGgD3qT-7gPc!C{Eu-2+b6&lI;Gn7*Mop!RCL=^u4QPTDDC#Wt~QZf;I)g#%e3
zx-N4GRK<cL3lM9cSxA`2efw3xQsaoU$(YsER#XtN2DQ`Py_;}OE&8B1QU{j;zrQ?w
zf^7t&8RxoOHYwzen(U`N$p#>I7@W<Z2b)pw<1<QSwFBd|*c?whGN03&7ua~x23b-j
zrzPeM1PKe6yCEdy&2|6Pb<iFjuUYDxp~wXAGb=1#y$oWHz?IMJ2C8Tv(`q&Tr2FlU
zmi2$UV~^nD2Et}!-G0qGi^)Q0n~GU@)zwNhN;1cU7^C&}zj{3&ZfVQWJIOQMQ)bJ|
z6vqUt+Kj=BEzwhK`XL{AJ7`>y*k9k6GTtzCs%-l-e_w+gPEZIy*9|7LFnnM8oPHTM
z=ggcF77uY$?9SJ2=h&fDgC|q-C2a>GJwgV(!^q@*fD|QFD~HLLhL;@WF!wq>C0Wt3
z&EM!`_3Xpu9WF{oj|;OD9lWsVv&P}^$j)G8=KU$vvdSd_eJU-2ll1U#^LIc5une@0
z!p@2)aq~w=iP^difksK|ay~tHBlhIsSMcLQh*D$|$c^Q32@p_KH{k(l4d9`!qIgpC
zpm3B<(i!-HY9Ho=K%>*_d`p=Wan_VX*5L_LGHcc<_G7Af;z2K;OXI39;||HQ9zKiL
z(Zp{SO)uAE7%`{h3r7&444vNf5$XMMOlms}LmY|2JaYml%~hBXZB~2b@uveK0$hZ+
zW5BQy)M;!k_a)(!Fj?@=MYt0pO&@X-jtc;TlcXdWHN@{Q#ajI6JEiaUL^W8kYs0fB
z6!4Fzwa=T%JIjuVH3ckB@wQRwEZS~bE}2=Km+e7$laM2_I&2s7Zw;|i1sJ#^8GN2V
z<DHI4O@0Mr+9Kn&7#>JMcqjQ^fds?S^lXn9+)Sqct8ZV7uZE;3@N*Z9GvtKnX3mc%
zwTJmrW`8~2YKfvLHZcv6+m_kW{zv5cKcLU-k@Sx|Kwn#2p&JLc59dwN*B;gCFwWUA
z^`ZKLXR&mfY7Y(%Y1MLKi+{EsJ5xV}N|oX^r!H!er7x)Oi;}daY^6zfgy7jiX2?fe
zffcdb6)2i0B$ZCsOirBa!8G$($v4)$a%~cA7KG=enIdUvhVlNpYlW;(DJ+iylvhnc
zB`CMM?&4FU*ov9GlK%nFs!)KOS;cUUhqI>8pZ*^5$=#-w4o0t?4N{9~z9Nj_J%9R<
z1?AND%y<w>bI!K%Uj^#1(*c%@4!?=cYyhcdtc-TlzGsjh98)Mi#$k+{p7jRMc)zWm
zjcw4{{(XVVuMIoZprN$%F<}8nD@aXV!+{|@7?m_vuS>d4f;j5<*!9ARJrYt~<%>YW
zGV03kQx*MFD?QN7HZCzG5NkuKbAPO+r4I$<Bd>aE^KNfLm6diQkS##XGKd=V%3Kvi
z&h36YZW_DMYkowhaW1*Gvjz{TYQ=)$e;me2bj(w@4Psz(#hn3+9Ksj`Q&hXY7mGVX
zZ+%%Xy2%?kYT77`tK8+rK`OoolShSLGp>^oKr$E%QYoBW)iw;eE1(i7if46OXcjW+
z-OrTKK?Se@0-TH47v}zm_(W0LlK~Ala1?(zRdf$nRG91Q&e;nmIl<b@c26)w<iiE~
zY~%f??TmB5IrX{Lhqk27vA7|9ud<Wq#Dvn5pX1Av(2<2!zVUTYVQTCaN#u<<=%d=+
zma@T%Azo=o&HilB!281oo$=x-&6&%z;LeL#t89k*^>6;m{eUfZJBn4~hiY$LSL0uU
z!D7(8oD$&SAfymjYfzf*%WMAf33Qxs9-$8o>ARnHs_b#!-vBy`(Z^z5&f@JGROaO%
z*ZFrq{z5{6_ujwdcw8`H&3Q!Ss==&VoLx&L+M{6~W%&U#cp611?40zI3dLuu=l{P<
zu4@wUJIf775!nrV|BDbS9fu!H&u1Vp`H7Lv86((+7(63DcE~*<(KGs$9SKM0GrG&-
z#=wF|o_k{gR92%V-w`kIvpvU?Tih2y3y^+*91mR;$r%s8pm3R{10J=1k;E8YG#51u
zo1j2hdN|TdB2WxrH~m8wWdJc%#ka+FT;&Ny;+JA|5>R6gGTcz7V)}|)MsQDGnRw3m
zNR{=|+Ks$<wzbbpl<gti{xHPs_Zj@1g`kw<vLhJ4IyG~NMMUuD;gs_I^1mgx(=TqE
z%y$u|3v?<0xo%2MqW6&zL;OXRg{Gjk(M8kK4zG#ifqEYC<aFN7HWi}zi*W0aKSn=S
z@ZV>T4g`GKd~hdD<=V}}hRVi#D9_rk{+s1}gNRzu4MTQPcx|xF1oky-xDLXi1LtRT
zN`6bEK^IN<1L4o}bS7t6>9>ZONOH1RK$KJrX&ulc2otd~-6%ZzFiQKAu@fbp;<MAC
zatDZ78onkQ+Acv{m<EDwGxBm7|Io}hi00V!3wy=7k~HeFUHpaEZL_K>T#C=g7JTBT
z@H|=&Vbm=VS!WuSfOs_bkKO@l@Pjkxi0WaL8<TS~TDlH>gQ{g=R5I{w@g*W_&av}4
zX*)lEtU)lKIeQRTQUE+9nzk7*-VrE{HhV6KRgaS-=4r&vq8q35x5W7*!^`7)%fT$l
zG_w*Mnf(4|%P7$$+N2S)4=t^Wn0xM|BWO8w|L7Gf3*dsvH(YBu`_3lId5&uW#&B`8
zaBE>Yhl|iSiTgB<&eWGLp$P8c)tgwV3ZM#<mJ<JdPHN58yc<xWXliLEo$xC__Na?@
zIjYH2WKD1Sw9btgtJq4r)%~*mplF4QqOBAPORjEi4zFUSho}?bomc1t(!F;(aVgEs
zN-)dC3q&K<I}MDZtzL#{c)|8(pJ+^@mROP6uD#v6HmnZ+q8<jM_gy?gQh06I{?a`8
z`BO%OmPq3U{~G(J`6KE+84+PL=1%UF>1K~qIV;*l+i(o2i+-^*>il>Nn|L25%;YTP
z9FJjt(vRAEVF0CC<RJ5Mkdq3k>99oi?L~`LO|YR8AM1}!t1dDi+&O?hAL}@Bw9Nf?
z@wdLz$@s;Bv;Va&!KDvY%9tbj?rpo(toQJ+8ov~n&uhKOAgbUsIbb18o3_m>nVo^V
zvz#m(NMao2FkZ`}0bW78$giY~RjSK()y)UwC)U>EKj*CM*<&h!^7M_!`<ZbvNoZ2*
z>5e|<@K+r~NQ%rEHzHoB4s8pXbHeL~e<YS)RA24Wlo3>FXF*zXC5?8E&9H<F;mg`p
z_lfE;qI+A0i!sTclD9K*EW2^Ol@|xuIW`WSeZGWNNKopTlMT~(0jik>TPkB&jvQp!
z!E?VdGlo{$1u*14A`~H-C&@L3Iw?tTXIM?e&;`c(>A#9lcTLxY4N7r*t@H+bfN#9!
zl%C<vJvQ}sp`8TybY&Rz3E>*HJwB3$l*~2d4cQ<t5)^*`HZV_a0OOB}E&BhIpp!ah
za3vQ2Q3`JzQx9qe<HZFKaIJA|DW6@12A_|PJx`}(76Kqdx$~*9J+m&|6$~FWXQxZD
zLxE#qy!;>W4F1n)t$DgEbjghgU&V^~tY?|4AfWs>ZhUIGkC-9|&0!e;a6FPox6(~p
zq8pE7g#W`y8YvgNYVxo5p{sD;u;>U@DJM=UxtvGHSeMajEGy5Lta$>+J>=Tre>81J
z(fEP)p<N<^H;2rdMH*JuqxesZ!wZ87mPD{BrqJp6FV`T|;F<8&Tr(&TDh8x-G+4x{
zQ@9?qMDT;@|8FS;CDME0bR};lt|mdq6$=aBw!y@ubeAc%`1|UsdL|@=z%{0_rmd_R
zBMNA(`mmyfp{v=ZqO4m56G&0iwH7zTog6kMW3<M+&(TiQrcMv2SXHykJFxi3=!~Ph
zST5NhY&SUf@hQ@%s364K3nHyGaq7hKdCZmcgsK$T)<6y}7Cu*f&jO9y#7$DG=PuKA
z3ouW2sLaaaFL(fMp6BB2OT1_&$%fVS4L04=L@H@4s!Pn<uo;ZGn-A)mhRsiHonr?M
z{H*y~I8MAZ4;u|}?d2wmksvG!;8*j$3f2dqpYd1*ZtbLRDO62eKFBEGd8)*$R^cXD
zwiqc|pGLB|yr-HC%#=INLWs8OVdH~hMFxV|gZWME8~GPg09OuEIuxWG3Eu)y*L<qU
z^Eiuo<wPf2l(+CCyh>y&?3%<L@<FUC8`=`-z?T2iQK|)gvl5nH3*9SHSdr1;VRdFY
zFYhD^2E6M5q^)QD6tY1i39hJDGY`b7I%NLO`wOS96c2-cQG)DF?8YYH6xyiYq40FB
z9?^!L<xbQxgI33h?4+b=lCj~_3?At(15@^n7zdb4f$mjM`;Br=f<JC}&ma>~irP=c
zt9U$Rz40TT0rcU#yV;?u1J9=DsV0{?j`kwwPU_Lxr~LjtPIhR50TB9&Jvnv`0auZx
z0B`yaW%wfSIWgp$Bg$SJRSF3OtrZi3V<?w&w`72bTISz)-$=|Hgk8PoRMXVNKIWu7
zep;L|IR}O8d3>n(5w$jG7qomK;ywfYZ;C=IVxcU;I^gT{C_6-9Qe&qnTpq+Z4(WGU
zN#K=^iGqfnY;8&hx(z;1=1CsGBdU26w*f)g9(o8eIAeBNrG36@$zsU7LGr9?V4^t}
z7ngdi5=Th#pzGrn?hnjEA?~aa(t)i0L!)Wuij3vfhYPjq)-W!A77H%{NPD%kNCA3;
zw%p?jIpj_JDVKsMuY%aL*!X&OTtVn$kh_dny?KcSaf&^2p~MIRq#5p6l09=0-0{`B
z)}PJ%NjD?%m)09Q5OX}gW5;31H_KCV#P)`*x<aH<wCmClp&6+b#LSvMyNv8O=Hx<T
z%Fm)(CVOuT`f7@K$7b(YaXPwK-~L8$mUwE0>#@TIZ*~$J2A#1tU(2e*j5U@V#F}Xq
z&0IojKq9a%DdHN98A_K&)=jBk)dqJ))U|&@pYLQA$FXO>8Nm2-Y373e{4~mzM__L%
z$_wm7>X-e`oj3l&A&AV7b`+KtV7TFS+9q^O--(_Ku_0Tqy1@5R!M?sltqU&g-NyC2
z!T=Re_`y@w82@ko_r+ya-#ZN&H7bm@ipY|(%qMZOD@s9xVL}40=+N86Z7A{8IO%uF
zMSeRaN=pi-L^MfLtknnVawsKnMlWxK2lsql#=qDYHS?fCu)v|JHveYUdz^dlvO+S3
z=N1KqQfcAp^W4wo;n<V|5ZF)dfmUjp={$G;VThexo?OM{UONG;k0Ma=yp<wddEfJ+
zhwE*Sd3<LbfW2;3U3O+7-4#C(DSh$GiYmg69uxYLtx#R%{Rz}IXt<8HyVWk}XT*`R
z$m(Ny=_$dB)&pKdcjnH$p}e8!Yz^<xd_Op07TH#93HvCu_WwlFTCj~a^}VgY3}9LO
zHrJqFp~6>lzqCyFgq;D^F+X<)OLnZx9;Nt3HDU|S;weB{2&wq(x|Y|}Ry$%yaA=*=
z>lxDUR@MXkcD(ql0mN>%l9Olvd&@cz&9((v8HP909l{k#h%#vdJsiR<$8W`%89_U_
z_?9ZN>(I$)@F+r*LyHO@b=F}U{GOzTYT-xJNA_JOR=x9vr~=iowf{sZJ(VEVXLLz{
z^w*KSTXhi4<7Z6y>AWPRkrz1$EFjaIzFCsBY;Fr;<w4}^mFDjM27sS~)NDt*FK-W}
z<(0Jmq+?CzAYimZJx#q7U#;rUx}dNSlzwRuz~8H`iJ^jm|MH9G$1QeiY#AM`#dKv*
zR@?_2*6&kv)>iYSIX3qzEv3=2?2)ehxwRQJM}R=drhu8bvC{;1zD7U|Ip{U_kp`7+
z^#9FN>oOSg$q4LYes$<ICg>^rXZ*XpzKK6xv&%W7V#N6YOUDC-W<Ty~2iRYqwlBVs
zUQwB#&=e2br7#FVu~JAUK=VBmf=ke`G2oc+zeU91_S-Rsk_T<r+1_$$mJ?d=Do7{_
z0?Q;A2c<vl-UGQt%L7qg`Of6+oKYsiP4Pl!8Ml}6cchkQ4LYFtMJ34B#BXsK^7pO)
zxUlN!1(uuwPp!V-3=WDH0g4t9^cYC%hJ$OsS;C$IDEE`wVG~Mq-7DuyTwB<Oev{l`
z3^iP!Fd6<P)gd;$;-$-qzbRawP#Q)|vWU)co?+;HBJ?HcA5<7vvb<Z}D5umsT-x2(
z#3y96_c;{uodnhr|Hsy<N(dRP&g%?xHq$8+Wwi=o*axikqa|Ms$kpB8z-9XdY9Pqx
z17EX&J3aCl!sNlAXM+50NfAPs^q|yFM;7q0UZHCNW5xK&kNXt1ra47ta!_hmeYq`e
zV$NKNM@_M$$Dn^Slxx>G{r9OBRljFfGdrZrBt{sAITDs+6@R{kr`Yk&2R*XUV!+@=
z>+he(t|;+(dker(JJt#0vN(8|vZD82DxS>D83%edLR4+_jxnx_QnLV9)`;aX-%u+Z
z<_x|3r_htnEw{`WOqnji1D~4{#8aY^|Dzv;Jv?6>d#ylW$R8s+(@u7Wm@q}Ym>P<A
zn*v4=`J7IW=nXJX{;7qlR(|->aqjKJ8EnTJz=GQ~J*g{+L7&uB5C0ZqsIMfm#fg?~
zTweh7!wH^2zjNKFNQY_vbrK!GyYPzVvWQ8~dEK1{rvt6W6%8y7TJ`I@Ix>Hy3>z9l
zBwkQ3GuoY@q|v8nP%eS~hVS`N$pJ>OI*Mz*F*l_Z>h2r+Sx4Zb3&EFt0ZGbuG{sS1
zjY-`cWD3NyIdTsjUyLdq4zbDhUe%r8`#Kj=#W!a)A3wiGb@A!}4_T;=&=mZ8(Hn;O
z0>@(LU=b)43KMv1X!cM?n=K9p1MF8=lktnvg|;4jt46Ofq#`!{Kz0|rKdWR_4<>(G
zN<w(yNZata@R|i}Q@bxD5K_f1c<rNeX@dtLTq3~Ui|e=GB3_BMQB;*D!6@oFz>`Tg
zg{@xe)HCbfhxg3;m*wEveGY-MR-GgrYO}GFgI(Z%2rRY$Xvas5*hzCMYn;@kaE_pW
zjWf}y>MKt1DliQdl1dj+wy)jth%YQ$Lh_QnM!u^~A=^$WNC~h3V@3NNZi&4=Yrl!k
zcKSq1Xc;-YbgfkDgqKNq#zpus2+#5HfSnnCxWKu98PNr!k<nvXqbgZHC$t-XW8B7f
zeBu8JX?H{97T2XXHulcT)n3mrTZ0Es?IXy{ODZLmfe}G$?wkyEt6qW^e?~YHXc1<-
z+#9Kk?mXDt0av!OKh$P4h#BXo6=0&TsTH)`Ulw(^Kk@h61qkTs{SiZ^Dy<<w{W`yG
z;Lc+rVqmr#wG!vAwew<9_Z7cbJRHvPNygO!<E@`Vc1YRXjT+l?(iRh7{$3wla}3X?
z%>8hJ$j80K+M)m$ik9=y+d|OtalPzF+}s?$*5=d^NC-wx?Gl=9CA+j@{38Z)S20fq
zX%HZKj03m8^v>C_d+96h%(hX^p!;p7zR`X39yg%v9k%-%&fLI)y#0JVQS@_))LG6e
zV|$plZHAv~j${QynOCvE^PtO$*DoRLf)4u$uiU8L5fzdd&ZRLHJ++r6(ZX49VCn@g
zOIc27##odZhi4&hzy!k-S@qA?=tuvyH57-AOL=tqaS`4Zi^UmB1tQm-sC6%CZQy(h
z53C)?xhY!m6;KE10Kms{T`g8d0tI4O`P?;5JzzfZQ?(s`fdS;`#XKzzoy=rvd)Kt?
z#5g}wv;-ji*FZ_DuqB18$T(I6w<kNs)2fm39t>yDPh<yKLZy5C<?t8aA;K8FSt=le
zb>it3TW@e2i~2pO?fFVO$i>z)R!`&4o!S1goAW^({e<JpdXz_mQ$CBK{Spp;k?}UE
zZ^mDqA)I2U;C$&!fm8CJ4rFR5%`Vh7zsv{GdDLqFRNinFiMrCW&DE6iqF)VE5hB5O
z31dJts9@U^E2FVqG6GZc%j2!8TQj-!Md%3d&poT$!mKIuTgbf?IvJ%%InP_Mi*8a5
zcsPD(VB~dPUJU39B5TH^vlSuj9WDN&>qo8~zVJwK2EljgLuZh&(5^1j2kvPzrBa`J
zjk`uBoGrl8gii@6;bU)_PueRt`C#dZrM6dLRiE{f?j-=oKz^2H-^`Zqi!b--!0XN;
z7>>yGWp7xbe=LS736C9*73>$N0K4}aRx$a+7)$ob%@9Y-7=gQ4mlGSo$N&I$0U_WV
z0l+~&{uKbiM)W8*@|f(z^Al8>Cj_o}aRvQgh?8E)kbn$(j9A|(Q|7Ff+^4Wr%hlD>
zZ6zVz17v%gfJ#-fbrQ||3qPb?gm%-WT$*+<r!#$q8oef+yqEG$?W%nWo)4x#KmV8W
zQDikOp=UUTd}`mO8@D`t2l}PjJs04A<sR^5yDZb(6Vf+}pF@Q**V}9IRvm2;iMl?!
zq-bV9WiCtPR*IH{Y*+<^+g7_iu0h}A&GfDINYsxf+OKsIv)-~!Mxig^?{lDq>>8U+
zJ(uUAO>oUsM4wp<{KNjNf(tKpt0roqW_72_n}_Gba{A0c&=AGAP50E48ZJ2WB^2eS
z%ip7CI%Yd8Ik(;m>n8&CM~DqVf7kCl8FA>0)He}J)oUQuT>ZVYXa<79b|_w(8CA3m
zuQ5~P@{tjsQ6O7L*}@G_z(j=-bSk+^KDfDAdt<_KMPJyCZDdQvAKlTNZPGKE`aBHy
z5|qZLw4WtC<x-b4*I(a{Cus{GCxg5YZ&ZS8qI%fNrw;BOiB<vbta?iUM`LQ$pknUe
zD&KFpVSa@2`2(Zdl=x9RSWvO}<?h5VnWiP$C;qjGcTw5<jv>WAnp=x$Mv^-JE(9w-
zy?xNpsTHl61S=1{$bN*WeJ|=-<NJJ_Q|Z#yGn4v&fBZ@D$BxV)1Jw;hE}20-p{9fD
z3qF$@A3!cs4Iu3y;6qtzFG>#0>fNgDenR(HH;{a)`bGCvZ=MyXOLz5z+Uk71L?XX{
z$&yjbCvVvzTAV@UQ7Qg?Uh;S>A&7|{lpU(I(^l8|^~EC6Y_O6K{?o6uB_AzfQ40c5
ze=_Q_iI_Z~%`UToN6b7$(-e_e(l;RV_nPDorq0NS8SQWJWS(Afo~Ag0+V{^X(-~n6
z+{LS81Bx6x#=p6B=vW|98dwPD;9ZkE5x4-5rU$p5<ArcAv+Iq2TQ{Fn8kQZctqJsm
zDuHLvh@?BFg=`dJ#LJqB#W+k#QUFxv=msWB-B5L)?ppP`czljTgt3Hl&BRHEb^!EM
zrv`FV2_qvrJf9ZEnKjcY<|PF9ui*`p3m~6kEJ(%V7+$-+SDvQt0GWc(ceiy?Pag29
zrt%ZGlw8h8jfBrHyQjsBUhNXw;%HFBSbSL-2g0HvUMGwF`&LE+cZv4Yg&b>_Q?cb@
z00Upq1WAxv+;2$^0aY4l^<dp+Ub@94Zy3D9NWV$zx*jX)AZBKCll$NrtuMw8a6%fd
zcKHpzMNur=9K>LlwGrL@@UY(2VcGPQ7ux7i**g^czbIodD+905xDhVKbW-&<H&;Dg
zyt3Z_oX|#8jdUQLO`6Yt+(25X>lLvgzBBl9tE6+iyx@7NoyTHQ@?N^IUf=K<s^XRF
z(4fEVUiJY+227aX-*FJigbO%E?9r-l6fu2UG*WMNSRT6S(%H>BeT%PBwhiyN6fi>n
z?jI(GFe2Nvhq`_Yzz<PNm}6f_z<aGf1Xn2;U;pj#7jmr%^)L9Ek0hvRpZFeN>J*vy
zyvW@va}9Rt3g(w{es~+J7mqn{G5tQLc|BZ;(~a!Zbu+ii#zfSZGGw68XKcm1q=*dn
z;2+@R2o&a)JH`!)e61^-?0)m5{-8@Vk2@yp!(QwH%DF2|MbPrDIp@jfNMUad3XJ(@
zq)TLhe9|PYrjyLVq%`9udIL<YguQ1$gF-&MLQC>dH8JtR72G<Rk2Bm`jVI5qNXWX)
zY3$0Cg~R;TI2VR0JfL`pkimC`JAEKXdPQdShJ&@ci8b`4;QEf6bvf9ME$04~=Ts&h
z)9X{y@3k4K@bQ@Xg(Ra>lus9M7O(BqEo1*3c&BwakXNq3?k{g%!&A86t=kK~T1>Cx
zXhkghBMwh}f|>p#L>C*PN9rjFVLD@JFaf}ZXSH3J1VJmBfAU+U6T@;GY0-+pRed=g
z+~hOk2rC^?WP)Y3=tNkjomIbU*S!1TUcMP=N7XB&hS&7I@MfFX$3D77D#DY7iBy;^
zGAXKx<tl~*`JaIGI7tUr!M*K`SbeLqQ5e2sD5(|Nzgic8lv1_|-}6QC4)KJGBc=?3
z0C^lN!-`*NJzv7iDS*0`uDxR=L(OdGvy~o+3<9g9ZtkdO3(pidmXF5()`2&k%j=<6
z%WaJvl6UhxSvS3Y3v&eV`uV3L@<?@mKgX?JI*NJ%|DDGFlMLX-wU~Od+$dMGwFqNp
zd<$S7X7w#)lpL_XaN0U~)uV>D>&m&bB<inmwfwot0EzIjr!_}a`4psd&&0WSqv)~w
zM%W+>9nZ>JX;fet7xOFYa$HzZNX$tVC>&OkPMCgn8r;2Mxu-T#x;Ru3taQ$1E_I%&
zt$5XQL?$rNu+HtIv!jCnMLnO?97oUTRtKhqM+dyn$$!up2x3|$Ju1_1kZ!0grf|)M
z5Oc3Tf6Fu2)7V9dyN?MO#aBpZW8=r+I<ql6x1ij?E$Zz*H?3luHrK!PX)s3_pe;0m
z5&s123P&7~rgCVem{)y)1+wc$b#S1~nVN3{GERMAH0#0Pj-}AUkDOX1vgdqf_3{+H
zIsU?BS{sVce<#nf1PvXh-MAXpxk2?r$b~;$Ah+cyJZxqX?V@kl+UMzsB-ebyN)su=
zPqC|78k$9Tic!?NnH9xIImMn?7HujWgz3nF7*g>5)m%_vn!!r5u1M)2uB(%S(aa`N
z?N%b|WbI0EX|`b%;iI=qXGUA11m{A?W^JHxP`0K9Ld>1rV_siP5Ex!0R>81Se}Ofe
zAKiqOO$1MLLym2q&@%IpJuXqH{mxXj3kZKv0AsG%aj4JWJ4{U=Vlzu&Re!O&th$j>
zruu)kbe|pD6EUYmKQ-2yxK>AJW80qk6Qk1*?+T8Sh$-;-M0RUIcBTUSpvm0ALdPVR
zV5CO0&EUyzrnxc8oiE5$;&7)IDA+&JR{cmD9Ds>@E3p5?8s}w*wK&<qZ<+O5nh(xH
zmd4Ha3W(tFeZBFwwUhm5??=jln^iiqte5gGELT|#L);$Cd2Nr&GXpDyuL}!-0}HTZ
zD0=2PwD~VEsx3P{T2HLIy%lvE9R^Z1jCf{Fi{ZO=&l=0#$Lh#H>tGrH97o6=0G>m3
zJnri*7d6qLY5|X~kiCFp>txF3mj5Kyy_Og9rynNyT3FZH;sfX1erv<5VTH6}Ro|r;
zz$INJA0}=f0utrc%-bP*n(v%;v!<!!#C45yRo~;kLfTN^D1G}Yob*UnzFWXXxDeDR
znV!;X*cJ~q;*V4cLl;zCM?90aFZnOHgV^2k@<WLvZ3UKpFDo%wk@>>YBgyEMl5lce
zwTQBY84zZFA<P4$gK>INS@K^Ie*fk(pe{fEJ6JAES=~qI+Wfi^Ns3GZuzE^7mJ3Tw
z$J~;DB>(jglJv`F^n5b!rT<}7Qu1OqFp=%lT~MzihHu(q(lVBMe8$JVn`5*pF=Tli
z-|3*+iKk!xCP1qTg!9aaVj;q)!>8)ZX4QY5(@=<GM|gm^dq#R~gmpn|cx$8Xp^5C*
z`mS|}p9ojOLWh*vNgEJg0Bc?`f6$6XYnk@*Jmi_+lL1nnO~1noA<;`@I3DZJCO0PK
zapocSnSD(fdVD=g64wS=^JhY9Qt$`>GAcj}aJblRLlbK@+x(gG925`});7^(mXp0;
zW=V{iZbEf8kiPxcNh>J;^K`#~h5oci+?K@YdnM>Ix44>;;EF>3o}obvxB4lcesEz%
z5a;b?p+=(<-kS4iV{+!@POdVj-CP05b^-ySB?Q~1?*&d#3mG5!C5TXuCE*_M5EnTP
zNynXiRii}Qyd;-t2l!<QbM4pBUi2tbr-ny5?phuU<XhmKkg{KM7L02(>45L2j3J-N
zx2eQKjaEZw*l`S7xd%vyT_S_RbciBl3G-QqPo|>m@7bOz?{+Je1gf?CmJ0bbP%5YT
zWX)t2yr6AWn-6HQbxC;UI8y!%(cGoMhe?V_-`w!6rm^11ga(m8T`OuJmoz{7)WsJv
zs(5JUv=(H9s?t<19tF?#O_i@0EerTrCDB2ENHkfb2y0=+8C%5J24qd?{uiZTV*E-R
zb+v;E;-N;N%@vgO%bIxW-@+wIA=lK99hA9X3fyI>I*C@E6e`l}hT{lw2PyDTN}TRr
z_*@h8<IVn+)2ouzyz-)W(PF||Far}+)}rS=#EjR%{XLPFwjw_n^pkfgs<e_S9ggJK
zuW=g`n4>SRU9HjE8|9+ax{k8A-~UpJx5v&<piy1pdSzH2uH?Av%z>1`4<t0tL_uWN
zxCN%LVUpVO?tF!xRL%ibCj(;_-})C-^15xy@E2%!g$5mD)Y1Tx!K8&jE8aNI88$Ez
zr5H$2SaOQfP$`EuP!Lx~SwiM@Sd2At9K5|kLz+!V<8+YsQlOeImj09<GmkN<$|0Ux
zF@k-sDpja$jMo>8cIkJ5Hk^4D-m3djYU{{);OrWrJAe?(5ppjY2oUz00Hec<$H3|$
z<MoA;J7*dFH;Auf7k1){?)gB~4M!iyZjP&4$%+&?&vR0Ydy2`&ac>HXoaQ{T$$HrS
zFU?2r%7|gAGbZD>Uw;wdI7r=USnZcf!Ub9QvW4kE-O)2Lm|kJK65D4S_Gh+doZHlF
zv#sJpH_HpfXM=juHr~3U#_2L>i83eS5C2}qT=*Mm$&a6%muTB0H82vZ1~Nvao8h!&
z3@;tGb5DL;&+g~R*x?i^K&HenLwT@LGf1LU(@j{pA@cI5o+v0D;UkXnRWo&dC{p|e
z+9e6We|)pda(3c862Y`DLiMbtmsqv>9gY^YhU|nxfX&Lyh`_kcB2aIy`Wf9iN!V7V
z(~U9Cmcd_YUc(aB?W^#C8mh)tzg%4hW{=hcOTS-!n3gbd9XQH5X@TnB3oTe@xJK{x
z)}&${`wt<LhWq{&pS*NwG1~E32elf=YOqJ)__vbQ*&OaWcyIuw(`9VMXy5mze}1Q;
zRJJc8j;agZ5q}XJ-BrBXJ((f-VyYRPqohH7@y`#}mI87A5G%VMqR7Cp9u=KG+7i+L
zaR75q-XjYx>kfCDc~7Z1<Ay_nmc;>u!<^|1IW_iEOKs9?{>?nE4R72^WgYt`tY%Zd
zb~%J9l_hket+dp9yGNRE7SCDQPM=(2ntC2fl$S4XxB?yDy%QR?^w?Mu?Yd$T*(31K
z^I|`>XH2N9W!6;V_xU5EMdcLBzRbqXu4i1YJMcj}7^Jr-pWM5^f?!UN!q&bshrX;{
zxIiUX2jn<6lZQzDaNE7Ggl+ReuPL3k{EXg>2H7e7JhJSdOR6VD^S!cDA4OmeM5@lI
zey=Ap^bRkIb;=bfm7gN#04??Y^tnd==wD`4#1N)=v!8BLH7F#rnPqzCO}x6N+#Jsp
z65Wp3n1M(h_+h7O;$BRdu7vhh-M8>E`!dSthtbP)zw>2>>Q*5D<40;MPU<)!vE+DV
z6VsYS>QUh3Wt|qk_7mfbC7A;wYoV+#`AGVwU|%K`!^so?C}<Oq8+pZ($juqRt;Z<z
z!bjk%fBz)vlTRM5T3BOs@u|*8Y%-r`R%4y=WNLu<aO^B0kVTL`eA2#t&RKq-92X>;
z;AttDeejCKM4liQ-_n;KTmie7mMTfCgkwz0`ui8A+Q8cGed2*}!6<igEEUL<x@_N=
zPP|v39AUgaE82`2FsEQKvV__w@CT7dYzP1aZbR%ZSVBo;8BOhpexfv5+>4!Ujcd$(
zMSa_v2?x4xB%-AxFlKooA!FJ!PoOEDTH^@Nz*yDPQTC5Tr3`HIT?|>FaGUtMz95*8
z&QLm4tov`bXJjR8$^MgCiugVqASC*mUFr<=lnZvx4!Cwh#x5-bILGU!oZjB2v-h#T
z(x%^Q9TrL90-RBiR}S3-Z(LJZ;mtg+*^A6X$~Nm4QIHP7m4AXm!ha(Q;>_=Nv#wZz
zrDrH&5@6`!v<QIazOQg>6x-?UAMf?`Aisd9ZU_l;?_kD4HrZM)e6;{jk5$-SYtE#k
zr)V)hKd*0%B$aT~CzphT@GiEZ_LQr*1oW`%@nn27#&P5HJZSiEuUTpMPPR_xTk3je
z{4Pkk6utwuT<-}7(BtNJw$D@D)KDr!8q<$5C{!M-`~b`Rv1u(L-EdkJEQddZ2_A$O
zo~|e`@V!+uwJ+5yU4Y3!xeqW1u<G0Eco4-e`zwaP083q8bxz6_vprSFLfZeagJdEO
zB!_n$p3M~DUO#$sI1)_imT!OIFt}}RMZeLGsVe9aDFYVKn*{n$3)jC9inKuShXVue
z?k8;p;c_w$UR-LGrw_}l5#s2$ixRCB#{m9w<+`;R%FI4Vp$8m<CZRMtoYo4OLvSLP
z*rakmMC12kV+2}@-g!3+zK~n{&VCFdA|66gsR`u&_9fsb#{%&$xe?GfC^SES93A9x
z#218^@XE)1qWxbbtlI>JS=CE?RNRj22DCbv+ZQJrWtcYo&kh_B2`g&+hrp@dkVj3A
z?AIqf-8Lwgg@cSd8HtvBGH_e6C9E4LCjHbe!}eUe3)ic;vJ(VYbosok$cR?+e#q4g
zyJ&uT(xwn1`Xp%&Ucg7udO(Kr85Z}+?pzUlITf#X?*;W}XMH4Oi=ENr!0%j!C%aG+
z(CL0f9g#EZOWxT^4rRWHxwlWjp>Uc-eX;fl5U=+uxk!YrY;JBT<6R?~SO0A|@+r+U
z`&=X47*xWpo2?F>jlMhmt7Pz4C8W<*J)`J~>8wf6|A1G|{FnNlJSa<)uZ}6f7+`d?
zAB<fGh$RIHo;{O(sq2M@I-?LefbfJ!c>Z0{O7B8=`E9W=pwex1Q#+@YU|kRd4G0GB
z<2)WI6+WUQA(8=~o^zInWu;M@n_Px;%~aA$WraO&5`5ZdP~ZCuR*6|nPgKXiG|byl
z1A~W7j1?s!?HsZ-R=PtIt0uPzdq<+CAP3=QRDL@m<4x=2-^*w={_&Q2gaVaBuI&Tn
z%~u=+d*ROl#DmBAHjg^6Q+I|eXM1Z95ss8(Rl1~_%$^!c&b53Gr19(u67y8|>yJW*
zwV6J|f}PJwEhy*aFZQboiWGNk&W$k=v-=)`U)bgi{;ec=Sr0(~<-ck1bFL-S*Fo?r
zqP#W;+UezMU30r&#Ihka{E4}X{WI6jf)Y-L@@&Cz!d^T|V8hmX-Egp?+N2l0Kvqb^
zxz>9`?>&$r^3Ij1<V8P9sQ<zhBN&1BP2Ap4N|T6n8~#(-|1E?qSDY|g_?a?O_}`_m
zu69WN?NVWzLFZCX&K+9S;)7TfvKEU=QgRkwna}&Lxx!jPQi!@ds`{vs+h?ZV{w=JF
zA=)nh1uk+RgrBdlPZY%UC2X`JF>xo&a1~C)Ar4?1-R5LH>VzkGGqmTtvtZBXaoV6|
zg9P2!8#i-XN2#*A+3BnQYt{_glp*At{COtkoo0{gKcH_yZUqJ@7P&_qrZXd-nGmQJ
z9dq>dS9dum{#L(}-^+}LZiaJj0zNCznvDOUla2Fog+F)Tg$uk0K-&NX&?bDw^N7x2
z6v|E}a=Z%R`EjkzoUVpod*WCRsM{#nSR2*Soa-<}&F^GLH58+xt1VzqP%p+M*p!g%
zP>xMmH#G>EdUMz_(pj|lb=@)eAZi)&?Rh*ve!MgPw>>>+nQ%F^Q-H9dBvy$wMUL0K
z{^OcJ+ufooZ1(ZieE<p(9mdn(S3B%ZbQDtTf!K!h%ge<FVz*SL21Y%$F0ubf@oO|&
zxM-X+Q{@kRJ*S<mc6AsTM9_H=G)LK$(ijUxObZ1w*L~2G>FL+br>J{U|IM`$jpt!x
zs`weA_Ob3f@nTz3WvQ1m>1YrW%7EfR1$mY-p3XEUE3(9p74#(ZVf|Rd#bUjT>~NPT
zFnc?G`8L&9$(6JKv=8MXG0Ml5N^Wc6W(zmUPC`&eS}A|k)Oozr<Z;-%kBiS_v*&}%
zPEgO2PGV>%>Z>%M`^yiYJwS$j($x8ei4FpX^7rflXj5QsQU6SCjwBwz=f(YxA2EN~
zEBV_57wuaAOm=H^BXwK}S-MPL9b*2THp0chp<H%}bqf+H|D=Q*8h7~!?9Y<y`X&%`
zi|fvH#bv>_Es5m~`LAnSR^O(MYeR4Vs+6Q`_t>&-Hv0T##S^KfV$Z+S*$QoI(`81`
z?tw_&(3cwAo4$?0ZItAKZako|&+8T;^UuHdFS%!Aay7K0d#?!YRT*33ll}C>Dx5EH
zXG6mZkZy0GOUa}EYUGBeOM{&C$(x2Fwd_`hgH2sgNT`2gqC-#)Wl0;;Y=f)-^0kxf
zc+}J+Atq#R9JT$=?$>b<>i->x6;=QihTsiyNXD}QdTi_NY+qN1b%#$J>p9(1C->9M
zP^%DDzl`Gf*nS20xke_0J4;@^u~8iTlNQX!&2}`6C2TTOn?Q<VKPWFK_5duoubnZ5
z;1qM#*@8HEIVP&KZPEn4Yqx_N9mZ}H3E3IgzWA!-C-^{lBz!OOPDNZ$qT3=|%eS-!
zC6DY^o_isOuk5ua*cjP<I65{c7g`=Il#b%+u>vJAv{1F7XvFPuw(N{Fr#1ZbDRb^-
zNE%z~BG%3X$6H^4Z~)=PngAl6B5MPGM;W`=_*L2%nT!O^cWIGsEZsI1HM?u~A!Qe6
zE0Fw!;93!Hi_%0P>tr7+Z^+ykO7!8>f1*)z+AWreK_IsOfqi7bM;RoUevfjTUQ_in
z2JMOfAQ1T}G=714lAKEMDFIemS@PLgIg4|A31199%mWJBgKAg8Bwr_96`sQA!NNvW
z-RCNfHFXkL^@d$b?a1@p7TrXsu9qGfv$4M-KWjPx8iH?1K>DDEUL5N;05!eQJL`ya
zV`FOc(`DF?whkXy{Hji<g6ARI3sT+|siVIKPztm-Xy1x;{cm#$a-68eQBx7G#>O}P
z_Te1Bv~B4^S;<bISAs}03scG?->^1cW^FQW4nEdFgV!jOBcIr&kpi?R7vM9<@pD{h
zVUZgWG2M6WyJnGuSXi9<v`@Uza^(Mp7z8u8)Q=vYS@wY@+{&N*U=Yoq&k=-4Owl$;
zXGNeI-@|>vG4=c5MG0iBOXhhK8~FIp`fD1!5C@F4$v(c^?KXZwIOdRyG0J-sR|8@K
zw{HQSV%-8F1TVs0nV#6GMt(?XB)ZqVifd~;CQj!O;uk|Jn*4b4bz<0|o$L665py8=
z7>|_tu+c`C;6%7c;GPZ`F}D6R5Nl&Cs>SI5eB?d3N|S%SrE9Nv+6#+IYLI;#srH>$
zJ>Ddy#zF)Ei3EQ&033Je$i+|R9`jFh;4C=Vm!L<-?E9O|$Dz)PTn!xIr>2r4N!iHp
zK<|$0Wu98hA3?ip4|bPdY3#!RArN1bhwb1HR4T<O@wcFrnfaUI1da3YW(56I?n8_I
zB?+K=;c;z9sS8_Zl)F$Mv66z&ioG${90lt}+qxU{a`u&b34&@mj&>JldcIhR<go)y
z&L|afuZLPqy$|@H2Dj+v6{`?fEGaxJ>JQ2`S|G&ie;hKDz77Os>d8f?9N}dwuWWM(
zWXdEtBVf(@-0JzzNCg3i$HFBrsIW66p34f}W>}7mQ;Z_~X*&Ys*1_`?<2!Z=fV;_p
zPA3vl#o+`PzLMBnJaL|(CG@XGr^!neVamCC#;J1}ORzPP31wp(fa0#~TCunEM&C?T
zn7pyNg-`#8XSC4-qdgp}74WPux)Iuz=X1k^rN~asCGej4awRsA1k8VDckJB1&_yzz
z4%WMqhU27<k5u|WQf4{!48Z6`g}^8p>c!o&wuOc-`DJJeC$~EaXOeWQnvSOMYGld%
z0uX${fxd?M{@8{^I@pv@%ZV)Tz9LdJD{?ABxe-S|4BN;qf2s~GMTu7N0Q!rxD4|Us
z6D=|_v{g)oW(sKy)CEj1(L?z%h(&IelAlh!^_5sd1n@%oI4-r7_m+Ds=)4<GX^n&l
zvw@k0W$5@>o;l%cOFH)<MYqT@Rli$jYt;a8VLodlasfh`Dg*dsL9>k@C*liv&9Dl2
zPX5!Sq6xNKxe)P;U7ne7@b5Bpy0GEd(A|D?pG~+eOZ-O{*m$GXHjT^ON9g7QDQ>By
z*7t2J(+lTj9t0b|{q(ERwoKDs7rNLHaw!+YUYq9*stEgCItMka_5C!(gSWk0{39QN
z^Ni)c2m04x7BP`E76>HY2JcF}EQV&<0!pJdnxZ&KuFGA5Zy<VOM;O4bKk<WqE60?c
zn!yi{DPV{aTaDg<<FMABkdezNpA61dNSwF78{*dMYaGrqFyaOl!s<o6vo>{-*ZPE;
zMS_a-nQv>?0}6MxwiMf|GU@rOwWpfp8SCYC?yk<1@quT#{a643&wZ*8&CKN)D9fPY
zS%6n-T(*L<bLM0{18M)q=FAkG*3tcgX@HeR@npmyKa#B$6^m#GiAgG_uy?>rLUp1J
z0*r8ZUQ%I|%PYJH-W^bvj_jps=)8+6p{*>oP9esIj|>(8JNY)ZR8H$VZt5Kap-i8D
z_Hz)Lg<H~bI5IHA9E34t*ZF{^vbXf=EcOJ)WLCvi0`3~eJ#7^p<M<RtPDi%y$@4c>
zfu<|qwL$#t@F$##nEyrR9dD_HMXd_!HtJ2dUP7sWB&+d`Nx#++tO-Tf_|kPSc1}%M
z{m7+SmP)PUcve86@!Gg5_!z;}ov@gc!JKqj(;8rk-s8}&B;awPFjDt}#Mtvc9C$OU
zy*|g)1Rk$<QUp8ZL^d;Wx}exf%yTX-$fg%_1!%iiMJt>&B<I+JL2Bjy!eptRAccXN
z>s?CmFeLe-b+vn*Fennb;=WV?0;L+IAb6Yn0-O^OMH-^8-jizWA9~>BnNT`JxyD&P
z+66{#=)TZA79jeauI5kzo_Jd?_jhZP1m+^6Uxcg-zj%`<voC3eFy!KFBD+b^h<F}v
z<X5jGA|_$XQJ7|n4fVgF={vSbal-|4Ot5ER_gA!j<e`Y-1uD|}uf6|bLVrS;#&<<e
ztFe_u*4q^d+Zk}#pucV^7}uUKi<tzh^fLa$as=w6I+$t-^xejC;kn;%NqP9BTVPE}
zh2;gPVGS=JiWE@*9)WMHB$g!@1QLYY)=K2+WVeN^qp?999Z|lAkN@hY12w-q^~%3;
zzREzQi^a^PjpJ8X*x@@Ip7#g^fkP}M{{E97RnbA|h>cHYVN2P>;3eDK7)98y>6|RE
zP-)O@WWWjJ#qy&@)12k$g=kffPBOP+T=n~>uTKZTjuIXhjh;@`+M*@xRennYSHoE~
ze=?ePicG(fJUrOkmmdeM4t_V8w8l|D4M|l9C~peObi|@UHa_(Zpliv2nMt;h2A_V6
zaLYHyslIJ+_GVY3SwmZKu9h_St~?Yj9dK-%OCaXbhRUoYXPb1Q!)d|p{EkrE0iVr9
z;Z~#>OwyxlALG>X1h@t5s30sR>{Z%-lHCh{4tUP~%XOMFWvu$T!XNbb`4@5Cb;g@~
zXErQPA%kZF#Ou;Y>soB9<wQLMdACmL8)oy*{vzvl`7snt*0k;ayRUHnsE%lem4ul3
zHukwHJ|l7;yKfN3d;Fv9|M71`%08v`5DVX+=6Cj^(}HF)^?-vE@P`e%XIa`_@=IaA
z2Y5zFhcVoFvF@1un!G@aTZ^n7@CUkIZ44MDHrQ)H&Ln;_Z^I>i=%KOEDQNZ~Yid<_
z*odY*3<#lrUL7?Z6FtNX5=@_(=h6gOrdX<~xj{0C9TC7=Y}j3k5BdnPj<|*J@~FOG
z>T?&iRH=K6*Y+H%LpJJoKEMNyxa41JXiKUw4mIC;uA#2fas;`*L&AxU%X1O_4<%l7
zDjX)g(MC!G4qmV4ap4}puN*b1eAO7P%92t=RBBYM9PtkN{3Q}9A?1i4NHCFN(+!YK
zb6+S`-oIzf$8xO#;4MG-`0S4Ij$B-}a`AVqG}=t}W*(OkGkG?>ry~?v*06>Hm0|ua
zUE>%_F>~*1^=z08E>#cbU!}A=X%ui*0(wZAk<Q!`9ick)HB0O)65&xrP_%6?tt7Z#
zba%oO{~iE0K*+y0%4euojE4{dpmg4n;$d$ld>r>s<lUoj`}up;(EQ|`?zqJWQ3P!o
zS5c2c8>fAs3xFM|wud3ncpNEKUL5-b@<GN2uvTVSI&ut`H;-OLo5uq$6G%#@XUM|T
z<KH8^5r@LSO$RLKMvbng%@Ye25RLz|8!EC|?7vY;@+|~ma1>Th!?f*@Frc%LEQL)J
zA2Rk@%<dHt5g%pyC~ugvR+!@E7**y+b~?_FAP`?{qV0oh1nB=o80q|phOczmoVN)5
zS%Rbg+h%f4C62>DyicAzW@9PJ*ITWFnn}(F$o6BcPpUGr^bbpT?^9-=?`~N>ivjNf
zG{payM3q}T0dHvXC|%2r=T}%nr=rxlwwxc9((s!NLl<?&a&4t}CPp<+9VysYM^8Ua
z<h6NrHlb{2SizCl;7E!tQcsrB-ZD_!RzY{nMGQ9}-)Oanwr<W<;{+t%qWQ_}eU>9%
zfhK@uQ0w@JsVq7X6ck93SdlKv0dj5yH{$aO#ypMQwR6vXwO4PlAo8<_pr;(oRJ<!K
zg+Gz<K1~FA{ac&36b$nuu#7K}wf=b}=|0kl>)R_*8!t<fr{#Rhk&i1&MmN?Hmmrd$
zZSw@StTc+Pb-TjZW#5`}W;G{G4KK;xN3Sjbz~1q`YeUOW9*p3;*_jpAb<C$-zXar@
z%Yj^K?w$#n%+M))2r~)@f*Kx+>~zdPs)lCDN!bD%MG1l^ml?MJMG2$<-&fhix;3J!
zo2~h%zTYP$<{v1&T!k*L9b)|mYpKWS0+g6W!ztcce1DTA4yf!F)%^450B;vMo<P>n
zxqfY^UrRgSvZ~sk*J`iw7+du8KGpoU2>8~m_$>!I47^{v8}fmWx{KXnVf;?D$9ij-
zb5wyfl#Ds@XqiCwOemx6zbzq9ON02jy5Y!<wrr<RspUq?KD(CV-T@9>Tys@=1xA(a
z{g_OTIe*^Bl0ITxNzeUFNYDaJ+LipeE?KlmkpE&}ois~Km;?$6kZ?kvo3ELEF{iI(
zO~31zu`dlSwX4PRKS@o-g9+CK1pFQyFM)}r=k>Vg=qWA}+O^w@&x9?kf(lpPNG!tB
z_-rEZb($dlb}&K=mN@n!V$7+liD67kaUeb<ao<Iq$59cVRqjx_Qxa|mq{#K1;!RTW
zYU|A4eqZZBcsEAO0FG0+fKtoTiM?yXmU?CYo`76NCTwFE%Ss)Qk}l3-$X<}h<VO6=
zcPv4K8xOFKWfx}+&h6yK`VtxMP+gWe2Pvkf2P;glu={yjxBEnlfY=S}k}aq@oiChe
zJ$65oNEjMtNZYKBj)OcDl-{ZU`Ic<Mnr7ef1)jwKTkBeSlEh9c!rgkh9Vv07q~hRB
zE2I)X$0mmzy>2FMDs1LgeKy?isUXZvsT5?R6Oi$A5z_p3(j2we&$U!{nxd&~(hDWB
z<cFMH6KsCHw*GtQ`(4a%E#_LImw<-)p;<<|s#-W`Vx^`9tBsJYl|=+o@vN!w=qPrB
zJ8}M&p_K~lo|q%uIG_bqw<<YJU8&|7h~+dZSwH;q5S>jJowLIzhQkvQHYDXZKgJjP
z6&D_0qGAprR-yceLN^%ss%)3!-kD7hy0x*bf5$m#qBG<Q%#x0vb~MxwC+=ozR6N%%
zrztJ!u-J~GS`J5Ue$2O~)`sneZ{oLk-2@@&(<Rw=CM9(#-M{SA#soN5A(Pyt(q@(f
ztY0V#=<Mn=&`YCgf+q-v;WKrE5}5;k556tHc5)vrxBqzEQT0<DTn>{#y5VO#HE`@u
zRS3>|EmRo>H(&S4b!Ist!e&)?d`(mUw~K^k`puEXG`Hfvu;U3+^ns+NAF_WVnGJN8
zy(*fG6(4X<1;=e=kshPLR0ukf6b0JrsGs9ewr|Fmr-*MT<i^V*rFH{7BM2$UM;>l1
zgnrLqRTZHD)|N1-7)!nF6Cx*Yci6F?Y=CQjN8Mi9k`c5fM{Wzf1dkF%%h7Dr6ay<W
zNB#{JF<Dan<;(lxxQFd<i?|WJaaW!aX8|KY({!e`GdQSZgSwH4Wuufi0443f0MB+U
z7{b)`pN)L0fi?=)n;e1Usaol$8QAVGX0bTa3X_XNl%2;Z?3dQF&5}JIWa~eH1IDZL
zuks74krWKjzzFyvS)a$#?*1hxYcj-<A+3dc$a$}PJ^xqG>M~R|l)p01aTr87i`FGz
zFm9Ol1%kf3!aJO`-@fjZTj=C+RJ*mm@O~sq(mmhmM9RBK#TPfaUx>E8meu$4cIEP`
z&ey5@Z*cwsMM61SQA$U}1pfbG%qNyTx%-t}a~4Q!1isCuchr{Xgu<fUhGSd}mIHt1
zCPPhLceHp;fe>OC>0QHN%uZV;3H8RbbvHuHs%$vIHaX6VlL#(@77K@hIvVu+xq0+n
z*q9?%E9m$%VC)gHZK5EZ4J{$NwebA2ChXJBZCcvRWE!h(v0U&OE$o_sg>K%71)j1B
zKYD+AV@yJz1~CT%!}{uvap#Z+7~Od{WHoL=RJvIn8$PxJ5SJ$9S_V;^3=2yPRw2Uh
zM?42Y7-9308IhS%v(v<TMm$b1;&eC0wDGd_`2RJ+H$#)G2Er0~<PZW$_ey3}Zwe^Z
zt$0}D(#J?$&ACY`>2-%?w67&q3!h^a6Y+u$bSDg_=%QxV(pMF?p+UW&wX9>O_wWj+
zVQaPRXO}o+F$3~SkGg!R<`a@gR4ZQ(0k#2w-ro(isB)nq6%olm!{SF*5k9-X%E62N
z9WJhjDnFJ4_y`skr)Q9@lmE|__T=(YON`Vn&I}O7ve;9pIV+o~!|Yy#VHCrwxA`<(
zp*N&dXDT;lcqZYq2$M-8==ESM?I>qY&N(Fv7<stYjdYci;nXJwt9Kr<o{BrX`rOF1
zCPz`1&^iU*uJDxidsNNGzAv%fMMe$i2g?SJMG}6SIo-4l>-oigEsy|rAk$-G?2XwV
zm(i;N^Gzke!_X1n?MYv!g{lpEceQ-`lF;6?YC1go8=4}=L%bKghG`g|WwjM}b3IQ%
z9~|G*B5pKDJ`OI(Wpwz<j5myK0@p?*Q0J00eyX!n_zy*Pl{gJiJ_>TT1YA_@O#M}2
zB8ai@E8&UXO8!%X;3p*K-tyH0smBb%@joM3<VItzm6Pm{2iH$daZA4hCZg5VvZ9o;
zcTfuD!iSBVe^R70HZZ?E72RZDy7qnHdJnw*0knbbW`d&qOR^t3;4E!w$s4$#nY1(N
zfnmpEHUQv4baRAdtzr`JQFg57J^+&9HuuGkh3ZX=R<M?Z&g?mce?R9G|Ik}%Kglai
zJ~&IU538II4mbk!-ZWl|sy2lJXL+>0`u#~igIj_JDm^Pb{UKJ9pN_7nvC3;Ubmro?
zMOY*lPMnu_0|Xl%HW3KTRKDTDB+oyxl7CpjEW@VL+3LU5N<(6zg;NE$Zw;C8=hsrE
z+#7#IH4P-9gc`Thc@K01z8eGJ`bOnTbvDGWXWfL?V9@Ly269^8unBqIn?5AG!oa(p
zkdX#bS%Is{@5Fs@U7Hu#hZe-Fo=St{8KI`gVGoda(2c9az&6kIIY!=64dRd&HAIc*
zzle(|_R2Q(r|j5WOpqX>8;^frBs;$e-YYEh{>l4;RlmCNgI{RlZF!qjIAYCY>}V1~
z*^6L!T@(lV1{#Ot9TuC3vKR~7bwhF$f68rS+hZy5KPRP%dH*jq(1%t0Pr}#J@FJ1x
zqm@F<bi3ct!U;Q_pe1Q1G46V1dccdM=LxIugra0pL<0--L>!#6Q=I+zq~XlKF6%8p
z;4v3fDgPV$ab=%%MGhj}`PGo@-)L2lMP5Ev)?)+q6!b|lpG)R+Bgrxt3!GmMGP+*a
zLVPkr<uhv$DT`Q?FXaQ6o1QZb8;s^Mz|Z9rkl^sBEEGE~ERyfDTlnp4!f`fcNv~si
zp@Jmj=|Pk(SVDCq#5EP@%g^28D9F4`?t=bc_;x@NW$7k=g(2O}{R}6aL_68}^LX*Q
zTKvdrMJ&76ZLnT&{B>|X8GpFB>MNXeBG5IOhvl|joDGmd*gRcka&%m)96IWLV_fDM
zA4$k9MG(Bp$T8Y)X01z+PIoFkguBZl&kq!`(YM8!kZmk!3xD%FI7=xA2nz2yvAr8B
zE&vaanMPRx!O}{vwX84*QFa>K{O4Y|St6M}&xos$4SA-}mYXq=ppq++@G$*uFj1RC
z%NO^IYe}28`C})9@AuqgobHq;3njZJkU2V^$KRPqM949ehY6iO6@%wr7N9d0GWUJD
zD&lu%gNB-WJap0PmGRKQs(rWfF0|nl_~(&XePCf0z*eb9rsd_E_9G$13NDB8dR#p<
z_&+)ijS9i^n*Hy$@N5ft3B*Ym4`}J_R`W=@DOLams%w6<^!9wd3kpbeCdaG%Wgzig
zK)+fFnS1aib>N<D4+DGjurk4x%CM2eGMvP^ng4DV+7(YF4GU4HKTTo2GLe7w7`NvO
zw~qE8n>7B<g<(&u?n|yut>;N@ZJ&>EqCJ5a@TvDd<_wz1mk}XR?}qcYH(IwQ922_|
zoT==NXv^S_{9F;y%DM835D}c~eU(X)?w~hO!~qe;b(E>bI|d_NOH`h<E9BQ96;Dpj
z3c75y28xNw+WNlZXZ}GmW!T+9-V%-N15l81T1oy@A+3kbQW|RvfLqxG%NXDX7i6qL
zSzA;4Enk&*M7e~ScBG-5AHN<?HN8(61K^ygi*Fpwi;~8jPMIKEfFUB~P6t69k1ELh
zX{Flm^WryMy%ut5YI!d$8WLQ>{U<aVwyh@E+5a<}pnG`j;CoL8cbqx&uvBcYPg&QN
z2q681+(&hkkR4Cun??=kwrV4k2O<6Zh#dWQo+;|!7MKzzo?F|KPF;t`^8{YEhr|In
zw3Rynwrz+C7~dLVO}q%<uFHm9xNl(#JIJa@T7X=gSneD;D*}OrNEI6yIQ8Dw71E~@
zVD^N>Q)?L}<LTBfA3mX*BC$2A<!h-@jYe1(8rmC{5|PD)k97kLTLpZ#o^$<AP_+5B
zK9n)0sm*ImL?s@j$NDp)ZBkp!IvP6R&{R-m(G%z3&e-y-ua|rfq{IG#ubx(EdKeiT
zxHhUY(dcyj%^5(?^H&ncGva?Q&$u*mRI+1NHjisZ;>g=43TZ;kJjg{CTAQpulsvtv
ze9ZNB3?4^??U5bW;_ivt#5y-c@!4!RBQfk3S5*+x2{9AZJdX7iK+BpwhyJ9b=L9QF
zdK3xZl)<Z70OXFlUIlaYXvK}s=*gg<n{R};Z4vGAOmnxf)woJ|j;1}!v)yfl-!-$p
zcbh6p;mIUNj33k=UQ0}Ea$k;fk@ciY`(I!g;h%Y%<H@UneJIK0((W`!aGU|y1n{_j
zBzX45mbqF)5)vHwa@e%LTji-6vAVDtuImT6lkZN_B7~$*hKc^noIAe#%dbL$v`Bm0
zVoMw~>6eMQPvZ^seK~<v2NAhlD{^^wN|jXkCQg}Ba@=}p6Kqu;z*^xh5JNVrjzWj&
zag(?yb&HZXBRN}VI6$vT+ch_$WhT!Zi2UTYI-hcMXrxe@Xv_Xv1jb%()w}r!ZH5%z
zryi4lq;%*ayN5F;I9_a@L#&=0E@p(3ke*&MNr1@vJS%|emT98_2Nlbq&gwI0vse59
z%Q!yUu_E)HCjnh}n_()!H}=bS|9vm&R=3>`^}y5U-uTZix*QlJ$vrokvGFuoX9G7_
zma&(ExO%+>u#*of{5iS7l+;u#da6HLjTJ~ayyBm=80UJI*(J<M>H8v2hOh3VDxw4)
zSm_A{bHpli5Q*RXXFK&|;cDmZ==U444?W?J%A(WkW+FFcz<Q_);}|kyrwKh|zw=Xi
zyl1ao?(Wt{#kSi*5`KbvF?i<agG1^2<h#df>(MCmLr~7`%1>CPwP1Nx%c%1W0eKya
ztoHA)Z+O?7mWe*pNJjah?JyZ6J4V%1nHoZ7x=;Fl>z4s8m0WsrfCwGEhwY5~=U|i%
zOucG{z@hT$VWl()m-w!Qh#y!&v5d2dsx?9?@ZA*lj`CgsPVDE{!6T<u#8-S@=b1k%
zYh!hsx0MjYXtiot1EEmGi&g7_QA<61+p!~>c$n5BL^w2m8yPy-fb5SW<+M@E@Zu2q
zoY0yzIF|@>zyMp_wGN0xnYq&>ZtCYC4-jJ4v$UWR_G4d~gQ~ZIU8Hj*`=RdBr&S>*
znlwi<pFDTg@${KvF_$+Gzl)7mhxulHZ$iw=g)R04H#JhNvOhS$E?RuJ_*EIG^#=`5
zZjfW@;B^0%jnfY5N-6Rh6uTj~L_mQv%3wMpqranNI`Lr;Z)zpsR4Ljo;AfIS-^=Q)
z`Bf{#b|(d6xK}Cc19A6alQXxazytV{+uQViyR8y9A2p_!D@6C^9}~PlVhq7WGtCMr
z9h;n@F5Uukw+>IxqQ{6hRdFf6p4*hnw)YmXYzpw=xqwd1zWjOFEdqTqgzuaj^tQMc
z)u4}2&)7^<8#k<TF4t4_@{M37Ti#*{C)Cc-qYoPJj-}3N@Tl)sxm^$3@xh)wiKR{l
zv?f4yy7+`>UuswDG~vQU$D0d}V>RHGPVdwf*Xe&qP#M}rokd}R(x-UgipGO)lxX}7
zgxOPvj7BPt3=<)!eLvSa{l<2lX6fp3<ZbGqiL;2RWo$gLzrtV;4PA^{^fQ0}ybqW@
zlNpn#NQmj?t-EQ#+3`Y5cW%*J3@J2!)o>#^*wpVgB9t+Ya=cP6)rWsxS{SOmxoheN
zCCmLO^?n8%TE|Yf0+6od+5+f~#NLdY16tUX*L)#SOKM)Ggw#ZCILYEN0L8i(z$9`n
z3M4_X0EHEp92DXE`(6oGYAon1i@sSJ9`{8_HMG{cW4<Zn-OPQFSs>R??i77PLMB|Q
z8QJIAgfwALDlMdnenkGQZ=`gIPa4jy%2ny-%hAnXJs*#zV?hfOi4=BQ3fKJa0O75$
zFaJ#FyIA)7n){&_RcbP!9$7H*jbGZFLLDJ_{uDlj3)5C*j2?N`Qg)8SpsMg-NLNit
zEm;&5Zg|wsFR+MH=h@HC2Qp-I2Y=ZDF?JAM7A=N{r@KzrZtXVeF9vc&Vti-A+K>a*
zE6tm0{loY(-yyV(t-hAqP$lM_)5X@x{d|VljkxwsFy*+(rH5ifw19W@0y=+!eI9M^
zXZYXV6}|Sz@xF!Wfxo^_-E8v`IXY59(!K}WNuzD&@GH%F=T%d@D>$%Y3`VE?$ly8k
z#`<v6A%pzUde|?r0_KpP?(RmnFdYYf=0hSei+*VhydpS08k@g<0)Kb^pctr--{%(i
zj)7S1DKvk6B-OR6%1t1<l6+M5*dEG{IM`(EG=ck~Yh$Dbf4yKgpN1xEq@J$Fo-RM%
zaUSLQA?W$UYUei5yAwQw!4^G)WjX75?r1<A0e>%@kxH3_`pV?|Oi+x6|9N6Z)nGvb
zbE9FytW=?YghoK!Kr&_ylH&>IRn0m*q4^`L<PBg#HDDd3;c`1pH_&2WFG5=3-Lfu?
zl?GKg0@L_%8Wzl|+l`iK>YU(I?j$`zD`}h*UKk!OJC6WaBm?*5=V2v@r+&CT3l?Fn
z><qVpWeB#s<^Kn0c^w*R2hG4DY_RR8oKvhgG_j8m)365Q&Mm>06ViVa(Aae8prR9;
z-$H}r7RpQFVLkyXIr;t%<aiv&lAIoz3Lw23Mb%UHn`pG)t?QKMSY;d-!{Z5sz4cj1
z)9vHgB*Pv5s~5UnN{8Mv3oSKjTVf4th@g+l7LK_;a>5srx1Id0HBW2_#5awz6*<*m
z&O1{a9C+@o0Uql~FG9haT|Wu^ek3GPJba#bA4z*851|y9PotTFXs{mNh^_im4*H*1
zh#z2Wj>E0O_)3tU$2aRq?OhOpNy`Km+K!gcddDRZH|R@@JiKO<bNwK%;vuJ}u6B=H
zAW+4pQyH{x5Pv(sR?U&aYWBGmI%`jFKkvL_GI+(HMMrw^kdCZ}V{HSrmoh8^e=y%*
z;S{I!D_>T+E3D5zF7k!m`h(6E{)IA`nCFT#!wdwsI)gfQ#)CB4>A^u%gk9&y!#9VD
z*+-@2t123P#rGV%$3P1w#avN*XQq(o_Z+NlfOpcJibB79x3@f<H_yT!G(#4y?vqRa
z^0JA-`LMvfGjI6C*`Hy>F4D_dL@7@*ZyB1-hIYY>mL36{NS`2GQv$>!CN}4@kckL{
zmHIZ*RjzO?xZg6jz`<84LK;oFI33CsY)V}>kg^9+LGUen=<<e-wM1*fiKNz5cWaH>
z!arEB#AJk^gk3XjtZXK~7(nJ|ZzGgwtc2l*Yf<FHPV;@>i$ddb5SBPeizFHwnRnnY
z($<mj5U5J#I%PUlIuT@d#G`Bc(tTnE5kRhnn8z)7Q<dSDj7`Sm`+lM?+)H8IxVByn
z#Eh83NjUuUH~k)3@}@56f=zU;gv%BrW^s!UpqPra0`s_+RnS`2G2qa{jAo4xv9<96
zTRkyw7n6-RyTjmR&xKNjX2JrrFSJ;|Ie>NZ3SbB9oHE7lPe8ggdw$VEqzi$-cfxXP
z1F4oYke;X`bs|ZO`?fcEAw43O28Rw4gQ+H*&~^w|^Y$iBI;FZpO}b)6R*o9QCl2)y
zZLPmaI)3xVxYG2KY29(o(kwvbGP0E~RJ4Fl46pHH0tbtKH&UKUarMFI`rV~D;m2gs
z#Jx+;1<1MO9iV~SLg{o?xrXK_n&QfG=2VW4ggC8U{V6VXHa(^rBarNcAJwF`VCXj)
z(q}`w+zfDMGTiiH-WSEgR22rT#ZaAL@e88WgUamzy?y>F?q94eEg<ZVi0s)35{wN@
z;;3eblVu}<RpA|=Y+vC}{Bzl{!M@ZHnlM>Dbm0w!w;SHl>tmPrv`nZ%J&2uvSVXRM
z$s<tj*IuOK&n$ZNrcLh|p#_VQO0L>mRYKBnJ;L<75VH9wXO`j30TkM2!sL;64IXzM
z5I;BRS^8}k3wFxF*1X=gFAzU8__MNj0?T00R*LkB5sCDE53Jb{Ym^pd4elk+Evo%d
z;`(Qp(mhyA9UA0jPw)vdtydJ8@#P|tWX+WDJJ-d$`TEu1GunNs%G?{Vd2i9azadsC
zq_|C9l8wIW+2qDQKRnd_Vo~e6bbz+(QZwHR%Wr)k=O*X<>uih~Zc8JPj|mX_I(K$m
zC=eL=9yvFG4vjt^T`k}1WaO!Or5}ni;rxXJQ;Jte7m1KN_~q$!S<OsFKQr8q)T|VE
zcS;MCFljdf1G2~smJaqU3N|%(9=k8_9~bJdu-GwiCr3?g*8{d-{#{~o0#YBCJFH$l
z+6JAV+g~g)#d?B9a}T48Jsj)NG?3_|Q>XZ<HNHP9u#Nlt6Y)2=Gs_Y}i|N19s`BjT
zynHr=Rckt%Oh(DfxfRXEGB0(FEeX&K_T@$#C?fzKW*4x(k8cQe%-J#kp{O2mP9=Vo
zm5pC#c`KH6fj%QZKiBjM`&Ek?=%r<GE6L>>AgS2<EU`e`E$VFs8@X@7eri2fuMB_(
z*aL<}_{A=6g)0v~G>n(X&~vnWxVN<AudU$Qq~sF7;ePvn(0YE_D=(||<Wr=X;6c8%
zIBlk=*)RXV4%lx?yBKpjvN#)-`2-5V5<(CFy@hVX#t86Arap*gy}bvYU3Nr#uZBm|
z_HUCS(320fq4tuWaTdGFZVCC;Z}DY74~^XQhq97X*|(p=V8lM>h_z9vri{ObMiDp6
zj4qWkgU70lisdeZ#*nbGx`0)sM1zq<gqPac@)4wSM3sqAAVrP^TjSiufoJHdd@74@
zdHwb4gGaI}?sV}wCZ-1R^A8HdxGT?*l5+>}uN`twI8QEWLL8m4R~=6c^VB!FTcm7`
z52qh=pUyC!eLH~IGC!ji6#HVEf{1Q_`Z6$^?JIWkhicTh0m+TVXBJ|l)CP{bUb|<G
zTL&i|3qU)R$^fI<)uTf%pMOo}GA{iBzF{!kwI^IM)^=|P@D~btPCRO|S8eMM%rp!6
zWr7-1@?(+1+Qt~mu}%{YIR0RnfxoL9YfO!K%6G?t*M}g(xMmfH{^Sj~RsOU&xTTNV
z45{}x#zGBu|GJ){e&Ew;qgu&EWHy-lR!>YnI4t0lM%g?DG63@b(E;C8ik-~TAvy(R
z7$4MvMY=u_TttTzh+ga%bb#3p$hIeUyf!R1(Cf#{DsC$1VWLJ_r9ETZ<|=zoRxOJq
zN|f%IC3lLu!uz?mkieeM?)z#t%?lyPKepGYZGx(RD*XMnMLD0+paIKc@6Dsd(2R}%
zo1->+!rqp|awNt@k@>D8(*&r|o%HyW=diyKgEE4mjl$}zMDHmEdYK`?m>W!x<HKnH
zY4eAM7gJur=%Ow$*Wgc6)(FzRqpRq{9*v*(c9~7C{8#U=qnW>pTzb|K7df!qo@{n#
zQ_V`|Lw0;JQOp~T!;d_4k^)LzYgjd*3wnw8BI3pdQ~+Fcj}C&GULzR`*tHCuIf+ks
zLt%rfn(Crsq}Q~Vv`jjf<<-K~=BnfYO+9W@L(X*|X)as1AJ2mlLU9aXPUb(R_YP89
zv(9O<Vr~Qp${Ceush=4_M-^s{D@KI1<KW-|xt}E;GAED$i=0!<*w%W_FEq9RefKS&
z4kb^>A!|{_{oni{wdRJyg~umH8}OsO%R5F&Lh_^ZjL%QGupzKLP>iY$9nISIgwu9`
zxUoosH~(DGc|G9rq>&81y7VC(7l%PNiqorb;v_zC{DP2$@4>kiH9cadGPaep7KHbE
zR4c}1#%xQMb!$unZ|VTBcCFu(3wYeHDrvLut;;I~vHBEm`&G?O9S|TEh0V`MKO4Zj
z`?AvQkQJ=K)3kN{MKozlxts~E$LtLY(r-G9oYCK5jY5~va#l4kmSxpc_aRjqR?H60
zaB5Ev%r}zJb^|ltvTS7R@@-o$rVDLKuIHYhMb2cTpDw-h&v|$<xzc^s+lof0n;^Ve
zLT>)^Z~f9!Tmzg!+^hnsTg6<^@r|@W2R9v!<fVJxtpBahI2u{kru3gi1`&Z}*q*z2
zik$yw+EJvsuM>O8HWR1857ZKH`DNSpab_Uo)-FZ%Ptzgg_5YL(e|f*iuS3{mA#tbH
zrgQ%u0t8GgfRq)j139dEDfnTMn*5SVB0oMxO98<<?3gNl$X96OiwK9$MVl3^WKrRo
zPsv=d19Vnx2yS6&LAT9_4TeRp<a_hHk7Q0}RLjfHW_2j7!F6KR-LKc)>!RiP5u)4H
zcKn_PbK(RylTR_Nq!~V8aX#b^g~_Iit1FcIS{;npz)XlyPcu&8eCg7D>vYBJu^Fz?
z&w~P_F=FiSjUar9zRIEC_i1|C+`b>#h<ydg4J0|>La_K%bd?RRU(f0S{0bgnxr5q(
zIO`>i3F-TU172g@R?`}5g`sb55d2fWIt*tnAl;MU!R?&^5k<s6LjL)y|8-)JWGOcg
zd`Scc$qg!admWw)@l61z56cU>z3KPuu^uFG4km&4pLl|{fZ!m4z|cAWhmLkZvxZoQ
z<k6i{^i(K@C*9avx9ePSoHCANu4-`|fQmU`X&l(pzsO7Mv|aWS4cg&*OF)5%)gr1J
zH&f=S#gUEhOU*0PllMGZhU1k{==eV53NSJ|9Sg%cZ5E8GA?eva(1Q02YJ%+_59GQ_
zmHQ(W2AwRQ3_g^8WMy2KvO%>u;`anZs0NYxQIIg>#y7)2tjP@#`2xdpsaMy!z&rcc
zCV`Z28kHPxfwzNVjQLDZ7alwUYG4j}oPn68iDJGI)pb6qOnOF#QJ6PPN4jI{L0?a6
zLMB<3k4ifQ2=f>4_Ea-4(S{t&TBj}aRbzp3`<2J|#5n&EUdI<ZfJx<O_in$+LFxY?
zwcA?L7uqxqV52391a2PgW(K3TH*Q7^K}t^HK|oUR8nyMnzv{!BGS&tAOeD=cg1q1f
ztKI^Jw6|B)a?L=Unb|y82zM|?3;0{4F13N6Y5GTv)H0ohB8O|azZ*UKZ5fKFY+eNs
zHaR$}28hg4I$0v3+$0E3oWJ4k(pz+}j}ZZmT)8~TVPj?W!qUGjG*L_nRaDkM!AW`>
zTPfBQ|KPRP!SyB2DAjlQ0gw9xf>L63(g#{_?J;C=quE5F$({9q14Is2w-B<*E${%5
zvALJJ?OVHB{ahqS71|&?B)Q3D#{Um%ea+5w!2A-wKQJ*jo2&C~2?V1_MbnZippykG
z3(4*=o31+;v)8sW3Mk2RR7`O$!sCmdHK}2%Hll@%F`(bR_8V^x+7dz@6t@Ik<7np|
z0fwT6mJVaLtPjVa>tYLJE%(5zDZcerZt|xab<5MR>f54$rxD6NXM#`tE{mG#0@()E
z^i<u<pc$_QbkTK_pDt7#hDjzs8jo3R77=RQM%rh5FbmTxTZzw4S>-f*bw9oIVZph+
zt5oUPE7T=vta9D-cErO~eHF&h#}6PX-VFc>rDE-$O~%SB*oCu3J%zD!NF#$4I9F!O
zzlz&h=;rY;4?SRKuAwM82ZPScBLb@Z5mO;w*fHFAj+1TA|IMd&Cfv};KWF~0dXM+E
zH1EdCtUeBps4%4!HpJ|(41Q9xQNi!J^99FaBPJ(N$m47ysl5E15XC}jA4Ger^DQ=T
z^a~_j`sisFg8xAhhVg|4;oC9iS6>_l$(Z^xdkovIOegQ2+!fP1!{JCPEviRtD>#cE
z_o(w}f_oaR62T8qQ4f_lWG1j79Kg$9C;YPEp|1~#|8F8HWSZ5FWn2V~6a9G3MeDZ2
zSzEl?67{X`!6Bd&Gyk*^G6tBJiUJ$0$UMs<4nvz0O0K_hE>=C&b~f4PLx*l-^7Tw=
zlb$IOKDklvull=HMBpYw%nM;}6I_M3^FN38)B>V)2{AO8Akz1U$U`K3z&v$njhOLO
z<ild=`!A1JS^a!^Nk-iqa_J~HdOt-rm78su@Gc*}WD~V#H$G2xB=|p#W`^Kn+ybh>
z@00kfHv_NSTFVG-8`3A<IJ4UkA1P&w>X&${y6?NoMwl249|Zoh_+sOXZA;$n@By8q
zC^#U3a|*~)1Zo=37l(|NuOOE?H*%viRO;XgaND>46+Ho-AH#ho%39@ZP<VT3Z2~sF
z07owVka34wSN<?(-TM+p&q_?Lk6EHA08yAtGVTHL`BhFI?j01rJa`gLM84=`?P-t3
z=B4B5PN0lNA#`+G-|eejhU%*G9sjvR{7BsE?|496V^@}Oi;Nii(Ld}4fFuZD$*cT9
zI?9B37Nc<Dp-skCjUVuPfS&<`8OlRy4&ByyX3b6C{Si2!SShNdFtF-UTGkB4<$VK3
zHEFv=aL7rqvXgB?7+`ra)!Y%Nkf}7wP19W(k;6~6C<~GWJhpY3O!|9v+wZTD$Tq3o
zlJb@3xB_Nq(n7vYb}irNBjKS8hsN`q4MPd5c@cWC7{Q|^`=*`X-Ae_`-^ogEy6p2W
z1X;4}Xg6}Fyem-ob9ZRqJ^Pn*@g1Lot`X___GD`JL^>pmLX}yZKuYy{{|qr)nfDKS
z@YQsiIZA;Hb`Q#}aB`B7Y?R4tMkwxDSX^_klizvfF~FFX(ukJnjJRq3>xHITsvd_?
z9@!1pes=FaTsR+N+phlhK7rGg^|f)o$PlgGifLhei#@JFh7#|(v8xOai~KcX&u1JD
z!@8`rYi(@JiXyuRm{w70^EOu}Z*A_1A;90R#e$L?2ku`A^5u*C=u8|VCp8vky>;ht
zy`b&Ev(S)Wg@C%S{eL%_sQ5USma@JVIFmM*RbiA;hAYCSm&8Lb{YT$lwM5{M4;6Pd
z#ya*?7RTU7j);IU>QDLY3WR}!HH!TifNY{OZd5Ik&SvQIc(y^0u9f$I);Y%Uh6(7<
z5DK>A>|mjkyDfS3Io#fiyIOU#MJn4z>O=J55n`0d-4vHdNVDtvx&`FZWV<Q9UN^4-
z&MTR`HK@}yiwj}~zw%g~bz^E|u^2mRk*J89Nl}j}v!0BvL{!R<kS^g=$GSGz^$9yt
z(Gua*LNa~Lo~qQwh(I^qYW)e`&=j_J9#fzG>12nrO2V>4U=<yFCV80cu0q~bEtIb3
z)Xhaz4W9E3Ve>vU>@#fS7~$tTfWh?hA}d&VK{6E@)qzW%wxZg+Bf2L3OPi&qmLhRj
zOX1`mAyp&-Rbs$O0K+O8)jUR)xIP_?kp+B?bJqWI0e_e-jQ`CoxcRWe)#&czfMM?O
zE9s$uw-~+R&q8(<MI6WgTA!t@SR$MY(6A%%6DDwxrdlHB6)L8En<vP;&_TR^Hu|`P
zx-}pUH{&31tUhu0T(sE{|Av#LT!|n8=#f7Mhx-3V^KbN^w(+8g<4OuP!`84x+N1Y9
z5OlCO>MkY6_OQwkE_>8qT=ICjAORq7WMq@O5p?$Z2PJ*H+|+)3Jcd5lR;xWo4rO4M
zw0^6CbbEzP=CZGp$Zq|^0{84I4cLaHF=0`%9NU25_CcPIUSyEdOpFYEvrsN?5aPE^
z%{?skGmxCgU8ZPEd{`HDci8b{;dh^m1>58+sO%u;quTPlg9cPCV!e08_Y7a@Dzjn#
z)ax7-8~gP9Wda>3dgqZ3HR_93GK-*XRyf2;gUM;rK6Na*&ID4`hVrG*_`~{d_4Y?9
zy%}dg`k7_77-j9@!#Q|<DA{q;v1t)iBx8p72z!0?1u2quTxRe>ExYeob=$j)uVmt5
z77SWhmme@8DO9lYG?x=GAf4Y6<k}Sqb2o~Btexu-5Z5Afs5((SdN;TYN{I<i@(q$|
zFgq)J2!|MFZez9SMnXqz0v)EbuE-@bc%ch(xo>o6^_9KcH%ZqEe7#*R&RVc_%vO4p
z@1F!(p16=@ZTgd2SAcRb!8Z0`@=P1VSV%I5W}*P%6UnJ<uX<?O&`eN$lqUzXcugHE
zOR6>aMrgn7?Ps29m9F<Ka(xSNt)p$NMH!%xw9%Mw>>5HMSoY{P%VWcMxvdx{Mv|2>
zBjd$o0~2Mqeva#6OM)ec#vAUdgLB#7TEB7CFY7JZubXkMAxOly_AS_dsaSHw#DR$(
zV8>$PZ+jxH4C59`hNfp*_ccn&eTGxE?GJ7Ew7;<3m-njf+_$9qd?M1tt>gTC2}Sz6
zA-s;oUP~>*GmXMOS7_~T8($|R?JasDF`qcYSLT=8`T1|;BknDa!)JuJm0J55^T`6b
z|8mG{CK#OXgl0E0I%4razVyr_gok7)O9`+6Hk`UbqCJB_+cEv(VS7JNi-h&e5TB&6
zmN(f^)<nU|CoKL5-KM4E^^pm*++UXSI7^wwae<w5t8zW@Yb~k=fE~Lj+<yOr_G;|e
zXx0zaH2?L<tRt^*cSyUl0s^WjZC!1rgtddOg*!SUG^vt34u1Q+Iq>|l^<vvy&FaeA
zVMP2XVNo@Mbba3p0-fMt105MR;UMh}3pR=LVH4WN1k?i8L;Kvo_gXv!v+r==AE7nj
zCQI3Ho?=c*9GI698Ps~|RKm5@GXqP_m3Wy9pIme+iLG#x!>-tVMn?Ihw_Ixko5M>n
z(^cPhrDlZsB^LpiMtOUsKhES$53NXrE<QN-SF{CT5qyzQoAXj%R&iKV?$<&CFcQGk
z9tXcMq7Jg}&F`<o6E104XKp1m$V<RhqP-e|b7zErkn?yUn%mG0FfI-+#yAO+w+AnF
z?nd=jfzFa5v?Hd-#Ve?VquSFv=eu)bpCcK<GM&E4T0_@y2RfeJ4N>Q;1LqnV#!ivo
z53bgbLFXzmf?H+O(GMki=h|r*ohfi9PcI1}hWpH*(dgVk?&uVo?D;u~QPISIhn_8V
zI!>xZ(iiS{8pYP788l;e8b4u#%(9A;rHD?4wU`WC{|LTa0a~_Fb%t;F?yu=0@MTkA
zTH!{?IQP^e!hD2C_?<jDP{^7P_YGDOAW)!d3%4~i8-?qal^|$l4iI5u^JlLiM;w8h
ztmZHNeAgmQ9vq*1<mCpCr=&IwLLj)PSO!;yP*+O0fk1J^6zwfD6p7C|A2}x{6Pm&%
zQoY-Iy1!WoH>^_#h+|$g>GB+bgsYmA4;7%rW1~Z#2nUD%pB538fbnbTafz81Pn4gN
zH}R8H`m`UX4G$(>eT_Ei<MS*{XoxGo&+9I~uWMXvDB5H-@TNfxEDD1Ql<}+IpA@c_
zY3JP-gK{V7J|HRdgb_QDn@zRY!W4|$MVZiHOi1hwu!T;mn2ss5-YW?jkur+pv3mk)
z{QvWa^~40$ojRfYos>gq`<10l(kAYm2;wB6-(8xA_81@Yof$v>(X9n(?jDJuCzznQ
z-6L&1$cJXNz{2lXgGvWiB7yhb&)%+mshkd{hz9j{z-x{UVL?6O56{6lR0CjxJ5G>F
zXCq%^wbRz31gA;s=Z?pVk)cB4I4;(77cHK&gW>rho@eI27crvz<{$j<2e~1*fPPk#
ztPbaK*h>bfyn?JFU0D3kC5E2gBAHlGcnMU8t;DjjU-3?}e_YA*YX<qBRgwhVn4jq6
z0<u1%ET#r=avle3H?Rn&&xnt2SIYnTn~L*MJ4qr$U4e7StOu;QfxODFupt!dY(0Bh
znmVuu9II7oQPw|RquZslV#w&5Ov_^eJ-@-A0c!Fjk8iPJB=$XKg^{w_Xv^;ND*UfE
z;hLSr9$eWKR=l`PF7t8gTguFK(=w$8Ywu7pv$YwlOGH-koHeFvi_7?%0-&t?^%pDt
zqNww!qDk`FA*3h^joUYZZ$G8Q&IVJhR+};ls+Z4VoeBgkYsDQf9~|0TlH?km2|N_z
zS^BCC65SY_d<n6l(NlP{!eGEzxram93CE>9Ih$M(na`(#R(iIxqufZflC{JI9T+wd
zD)HKcQfwF~;_u_zu&jJJJzdMLLVT$W9@qg!;_wKq*V>%=r#V^mia!m}5eG*qzI<1|
zgXJr2H++klTQ4$b=BZW!Q<b+)*Xty7U7OtrXwM~G`ezk`09e7TMM(AB4Y4={GbN^0
zPOyFQ9~v3Ubs|5K))z-&zPdy5vhbCgS{fI7vSXLIo^B5nlqN{t?$gQ4cdcNuWv<D#
z{&T|&F+v(~#}glY)`R$j0)MC{odz?Dr*u;}Iizw>#VI}pZhTuIZf|AfiL8l3e~l7>
zo-bZ25ns*{8WtYgHYu1*H}q4iT5g;R7IUv~7sQ$a5l^%1??@8V1gL^D=E<iKuwgr?
zmZ(<*&&Rxf1-D(d6pF`g*k<Q6#*C+9y5*WIBb@3+mkdsCuqVWFZE}#wr-VX;^v>Bk
zby}N_Ogu+6kWkSoKruD+%N_D2gmxP3&$zdC`yB3s;-g)cMVr*mgT&sdXrz0#_qFFn
zz_87HD19uD@mPe%wDEviv{q=JJ(_5(K}OHtKRI?NLRL8Dy5q)u(Z?CC(t~54OZS1i
zO6uk2&mrBcwN=-RGxdZlA3aR~l}&}`H++&>5xCuubc<SY?xKC+ad$Vm{LO<NQzVp%
znK25LYOo3<EcdX<d||uG7{mshr;A}WF$@5i;8@@gD39{zGraa*#)RVi>YHSRcf3{s
zCwG#;7#V=TN)_2ALULSUtJKS*<hO|B_~)snrpA*<S}WGNJg}6jf|16)`R`>ozo$th
zS1L+io}PL)o6xn??GHbLO@;lLQ4|&ZTHX5>&#|GurD6J%9bFObWtVXFdl?XR0_MsC
zqSibt0^y)2E4uJC=A+Y3m>4n(-9(Ust7aiW%+PDHGeSj_%Ts0th9f_EClmX@^h|~M
z4Op>X<%(1a*t~0&X%KOt#zJ5ro4~_L2GC3;vFXikN#HVa<>XM*WD>n2?Wnizj;4^R
znbO{(i}v4+AxNU42p8pf*9^^hVBT?}yots2CVcF&_zR^)ndB?+Lw?jh1}v$+j?g6e
zk^GM1p)$$QLcMJbu*?a9JgGZ_`c_D64IMyKi0SBoVB>!i+@8+5wluTj6X!Gqj`iS(
zlZEyqr21$Mf7SqlL~FU4(ws}n?1dh)L_W1l$W3Vpjn8-)CA^;!7D7y-aTwH_#aV{b
zAb4oA(%rWKsmdHv&SFLh?mTl$Yz)8Q5tM>~3Xee;X=Y}i!eRMSBQH9U4?h2an~JYa
zn=5wG;hH;7DMBs=17sSAyHH67#Ef925XKxe-2CVKG8k|2OM||@$_|*yAtl992_D1f
zDKrbe-?8*ya!_*~vK9CH1P%wqXb|XSxg9F-AK=O+Kjx|}i<>oYs5>`(>&;Ea)Bp4p
zER5XX?lpa@e~H)&TsktRSuvnN4?Aa0o%|8&ehVT76}yWat6OPs3m-gXOcG~Ij}*8V
zWZCc;;p=5|pH1a^?kPi&b>UX+?j&xQ59L@2fP{Mr^|{6O2gwBm?f@7Q6mo=Q*pk!l
ziWTSBQO?}r-_mnq>tPO@tnVixvH9nL{Izb&!Edm07aPzs$WTM=JM%d;ms{q(r`U!$
zabt9A(1t|17#2Eq-C2#+;*qaNpi?O$D2oPdRz!yUX#y3M(f>n*mc7bzY_m3_UB5!i
zk<AWp8(O7g%C5UUW1ut+BYX@;9tc`SxPTY6xrkBXRSaw`2pyQRH&ckIeCvF)4CcAZ
z^o==Hr?E;6IE}_(n6zAZvU%Z=jC@@sDW2p11ex*3DyxB_B+5ss>1bc?CIFCK82{j8
zRJB(_NQ)f2w?>w^U>7O7E5<k8lXV{~%8&xfdwGWZhaFM1b&u9x?16X5r+s_pZQ2K$
zGefEpp*I#R6|__#(ofN%qZY8IPpo%<tuDRRO1pL*69U#(Hh(zn!M?iRzv=t+<c9sh
zM{{G!P#-NC%wq3VkG`t&74jF}(=c~!Y#Y`nA^U8y24qzW-P9z%Py2ce`J0JpSbRY^
z&`lJVd~Y>+pthKYI^pb7{^8>P0pR_>G@QUzghxJJ_&p>BHuiJ6lv9Ilq4mtLn0ZT#
zjUh0Bky2qyk)b$Kk$`%BtpBO}?qLgw$5imp0qrscqr4ik;TDS$c?%W~MB!j1bi>NY
z8$<%J#fE`vkRn-ei(o`vRA}F-n{4vbbtY^);mHF>*E!0Pjw-QfW`7Olc4p^<Za!6D
z3<{ff+HtKab3d$bPV%6?N(kv^<J>FMm0Z54BSpIg%z>gA75CiJ2z}CKD+q5JWFsp{
z){DJ-i4@ADKmX{QmNB<T*#Y*bv1brV*zjF89C^ul7MR)K!cl*oV+ma|vmy{wC1to}
zQ>(_eeUvELOyFWjra;X0)U6!;?MFfjkZBBYjD-J<&Ib};mT=9b3$;Q4;-n6#&hpa`
z7ih<SCg6Zbcv0+FH!#IaOce}#F1Iu?CqKNDM3$8Kg9+0qFhgjCIAo@@eilNGDb{A+
zi{_DpJ<9yuo@O-rfeBT58LMQ2fm09LLrl}_h#$%iWw5$PoI5f8U7UL`*LnbF*+t{1
zI8Sj0zH9-$jQ>|{0Hm5w<~{ksdh-j@cbyyyxyi`dJOYc~2-{z<`Kb-j#x>z+EM=Y3
z(B||2A^m%)nDOBu$h|H@M>4^a_!CH|K7|D8I7VD3MwPk5pQ@_??snoX5t1i<2&Y(k
z`*7nCM^eI%g`c;WkMnK{5+Ay6iwiy@|3zTW!Q~Q9sw55cY1ewr!uyIS)we)JfFCV)
zmwf&wx8un{)obb7qC2W|*lgVCwvX#uf(MtIaz~G|ts0(;V`>?VMrhtCm)AVgfIad0
z(kM~Uv5~l`P_VG!q=C9DAKe_cK>JTGnUmo+(Dv2*YGpA`xsxjbAHTTp0cnvV)?YIS
zibPzs5QzX|qpS5i?&P+{pf4%9DycRP4vMw(!JG2wP71H|*FfU+tHTRP*%(kk`v5C~
zAyu>0c@)$^nbn1HJx2aW$AHtEjYsRcYQ@M=HH{hG*`=9FHz$r6L&s5jB0Jw*(beui
zO**Ui7&_k5e362NzlZlF_i;n4Kz5t3eqVwJx#udo)p9j9CpuFFIhAOHWOWBjjD1jx
z3(-0mA|V8BSwEr~V|=dV2)&O`oEj<<CWYqiRwb>_sKM%(X*A}G!f4HnsO5yF6U&bj
z)|jUg5J&9o=1GcC%6Ev}hZ}(rFKqL)Kv%(#6`1;bDxKx>6q2o8f3GiZ_GKfmGJ@(q
ze8q#Eb~YXOtYBLkIwrc}<5-sTetLXRvTJjb)xL;kKqm|%Vr;Wb3Fh55BF@!45;Ca(
z;+c7`ugvuF{p@Su`c~(j$0rhBa@wy0G{FV=bxrVpvorj?d|r#O7z_g|(>MC$z>*yL
z7)5@TQEKNn=M3rK%3`YJ44Q{%dzR@{iAt{UT*;GDF^Ni7V5E2InW_sOu|cAPX|2XW
zo1I6nv%-m<Rmagj9*7rJ<lAT&rm2iD>VSFkBN}hjIkdc*j~_PS!_+jYo%oxB*JkI_
z&b1dhtER$<399zfUtzTJ5{IFiJr#SbOd2Z?eLh~3{CB!G^QlVBu{kQVZeErpjoRWQ
zU}pd*EcKbwky|SaHzQwHCmeHMeJ|WhU=|nJ``7U5_%|*J2o##dTxOV#3c^7(ooH#%
zb-;WQ)B*CaCqD2GO#S^yhagm^p7X%SmmHB*YLbC;1`MQ2c9!@?4}e~qnG-zw3IWA)
z@<wXLjYsk_xsT~2kE`yJFuJ143xvcV<%kJB7{6-{SP5?ULMjzQTLKrd=m|M}llr8i
zttGDiw;m1ns5&U&5*t>wqDjGH*&}xz7~<a2MI1Zuw)Z)W2vi{lwJQ(y5tPZTNHfI}
z10V7l=|3(o%hzHgrV<yfyc^Pa*8cFYPL(yNr1{*bJynNFRlwft-{Gn@l&Z~rnFP87
z!0vn^)Shmm>Jvv%ufx#k-ChdwL9(ODH&_diZFFev6LE-lm68(?-@Dhuh-fV!1P?7#
zB6=`bM2V~Abp8-S54j)iIvb9@A$K;v9@yUB@P{Z7ocJ1zl?iSH^%<MG$D*spSvTgr
zh5OAjDPag~=$TS|r__P=(d`w~E=F3dU}VxLdaHk_Q2Qxu^|E4>F6V)TWis3GsFM#q
z*?Za=oowRZGokbV;LRR!k9xT;q{&9PD=EQ3I+(H5q-A^H!BPL>0rpZqs_QV?%xE2`
zp%wvkPJ-KE)KB?NGhVG$c*qpzg*wi)!m7uO1*5tQJgH>Zp&=UNbd+{J8JwT6iX%1Y
zndCw+z01>MRjGcb=J{W${e22I+4XOrcxya81@ZT<v}%zLUot|<?Ps`^rI4Nh^G36^
z%fWwVylbC0{aDPsS%lM?<;-7dhYwbEQ%g(EKK`1iy{KGY_|SL0={A^W!$<2|0YgfR
z*HBSb6HPt`UKADRvS?hMkfA)eS1FsEFiiXzm3thur%VS0+KI{}w=4Rj9%+Gn1>vpx
znR%~8;3^7tdv}{NcDPt9S;!#sHtDmeM!yjU#lu3J><kxl9KFu`6n=sr^lF<HlKw@!
zW8tLP65OzRw=J6~WW6^p)byT@NyOnca=SC44n6PGyf?Umo66I=AyEE3*LOUx5eUlW
zF*t%2FGV5S`!Y88tNR`-UGi-fC|Y?PmwV|mCvqNjfa%y45p(PFRo(orBlq?A7ezDu
z@zMk-$znXW$EYw7oL4X~v!I?sR<~(dq4)#oXNOJ*qEyH;(GXCK&9{wb%fu3*U1Db4
zAL);aQ&-3668$ZatFO(FdnBl~8%HTP@1-s!Jf?4c00?Myiknm!>E9fN*8STT$lUH4
zZWf+a(LC|O<GyqMJB0>0?r+R5#N`P$2*89xtK#mvZf&X(qE>yiJ88droy|<Z20JZn
z><xdF+v0x)KD_;hr|zEIn>v;sqOjoNppL~aGa?xq<aciq_)>G<r~;~mF=y4jJn(|B
zp>|AJH71b8wzQefXj4G(n;8H<K)}CmfT*M5c7Y{{rxNSg$;gcc=|dIMvJJK6q?rT5
zg$V@mLk^E&b(0mJU(4<>HsmM2?>Gj0vA$c(Kv=Gwwu&OV4y!yeocb!A=pP}g!_HGw
zXgLIi4r@A--v{;HZP-1ofC`G_;72W+mLNAI*<M8+-mSg9T#zWRkI4!phzSCoEd6g$
zGd*0)^y#eoS%4gljH0FGNanJHjAgP|f4S26i<X$f1+rFIB{8o~uIWeeFzU*X(R$K<
z+mxjBIHG?nZc4)770z`(+Lp@mzTGXpEA>18`iU?wN02eh5Hn0W-h@tqAqqy@JulTV
zHF32B43r^Q3vuk%&kHED2pJKvB5cpTI<gA}cl3!v9H}A9>eRJPh%x_ATj(Cv9X4?l
zeA4u>u=jh&T!h7^rM%nP>tfEW!~hEJfTB{QT@#9d<W~;FTQaVNb}d6hSYJ+D-*r!H
zue#Di%yqp(e#7)B_U3?tg#$)b@{}H12{3qeH+QM6I<P5A61u!%Q4e9F8J4=k58IhE
zN68cmhZOG&5J+^2pm4;HZh!y%jfdy2Ht48rcnx0Ce{86&e`%O}mM=u{qG3s^g0<EI
z6e|XUhosUEMnlnpMnoiCR{!#h3jtC8-*TwrDvS&nA*VFpvFYVLXRC#+N-aPM?QxbS
zDdMczc2nOPh6%}?#<!_KKec9Hv8k85-v8A{cLUhP_qRu0TV0(-&F1TMv(k~sHKuvb
zr2qeTTOO>zj(jFmHcKJD1KFmI>Bu{}^t3cybvw%6Rpk{#e_Oy8#>pd@92)jccPRrM
z#G5me{0%4i{*cp$f@M~R(<S862DZ35I|1*G$BA2O_62+YUof2eHU)UTJ}|ird`|*f
z7<(WF|H0Qs@tI5mn?2Oa^F}6+KA*`P5J#Nz(s9SkC4#th{#a{Zc$!_!yIV3Hf*E8h
z1EfU%%s<%tjAaeCJWO*5=#c2ECfqppZX2D@s?Otjy33F$GT79Nq(llGyuH`!U9e||
zDfHMWDP_@oq5ywqF~o2Kw8R-+K14WhfK!!Cz%LsA^xY0SR6#g!Ak*b}vlPOXrV0ea
zc~yG1IkQ9kj(n=kZP1-2ZTx+d;NW0vU(nK759ShiMc`YOTw14fZnl~9L%UcV=2f6!
z8c>*7RCie0$n#7*ecvbnxV!INL@lPBWwk<@H2xIg*Av>*P_vFWqTp#YfKJ)5B!rOU
z`Hz3J6GGBe+;5lf=PX#P3?UxJIVvza13Ah`U1G&p=tKrcKvbIP6WfPdAVu5AScycq
zJhFQHU54$!1pLC>wycoGvF7u`?1u}GYwZgs#Fm<i?Bwu`-g7_T<sxnIYSdtH&cvrM
zY&t*i+=DEfcL~-!i7+f9BtcMbobrlh=vZ<28U%7VDSeaIXY;NGiQ-FghYhgfkxIvM
z^)X3Pb|!1{?ae_A9qbtcW8uIUK7^~~12az@eG!`e<$nIX^#&6^M7l$4fB5?Fn<YsS
z*ljBSY!L2_NJJ$AXF$CP2DQhGozGVBYs%|reEbJ~?-UZ!In?z-i|##<oxDy(xc+5w
z73Df$fZ8QjFCcQXU2=taMV$X583DZ2;TE$2WDZ$2D<sV}HZ~%ClCe(@<BwLQ4mPIL
zbQ<+szr<+~T1Ro|pfI3~2&m&WppyS-iSnUH2)xl~0c$+2x`q(Il+-X|H6_imXS+nm
zx?T4=f8CCySe{E=P4w6h2TeG}qj+DvkQ4s0>a15-PMo;^*loSr<>2jQS|*=Q7j<QH
z$W}L)w;Fu{En6KO>>`;B)6$-Hpa;#K4-Z&cLSLmzgKQ<mpGb+3$|?D%lSEw?OE_I;
z^7?{qc4LKV6AG_2ZI}OSZIPY@DZ?JWso2W)`1O&0+tsy;$S>ye$V5#Qd1Ob@wBNo=
z2?ZBHy@U{WgV3NotRa9%lS(QKl!Ks)ShXv>^$g=acr>%|yN2&vJ+yPng$+-OHb&ve
zYoYs@;fWN#w!PYFNHXTV{9t!YTKO#Uyh0*F-P&D<(6qLuDMt|F{InG=A=o7PG>YZu
zoAkEP&A%f+L$RURLewyx3Rmv;MJXe-ItDl~C8FLx$pL+N?Q%wfqgU7>rDMxr)khKX
zyZ8KblNSsB7OzG-jJh_KswN2-NtZQu=>uny&hseXTqafVY)78E3PJFVzoW3`%0k-w
zKCMc5qAEeEi3Qwt;Z!?s(Np)>QQr*Dja$s|reswMnT_xR0_^ifwg=^#>_HovWsY~m
zDi;cdcT8oyA~I68*Yfe6{L4(U8QyT{(p2_VubKCHOl03Prw@agxAq2|PLvr=IGK=c
zslgeJiuKGA89Ho1#sOa?vZWr(BSX-O_V|jYy6Ed#wMt7tero)yV;^i0ne2%%V<7#A
zrt+@?Abm`kWCBdGt5(&2j=UD1u?~Ix4b&tn>zo7;7hNCQE)P6W(MNIc<9qN~aI8fL
zz_-L#leVF$zzK!W54%J0Xjqy)G>W{Z>S=DrTThNcA|P_HmC`}~e`ezb$EA1N3Sg#}
z=k<9O*<!p9?*8e0HjNI43xe!p=_}lnhj?vjt_@g}dt>9vXd?d`cdA_g7rmET8$kl+
zD*PMpiQlfzrvm>_$=g;}?j*W1E;vxR3hTmuK1)+dDmxmD)&1S$aqkdTsGBA-kA!<f
zVvvZ?ijR`|N3RmCEMxyH-B2FF=ZgS2JB-ms<Qk?dZHF@(Rgx_PG;TW<$~OV(K)zB)
zh|kLb5{@;p4O)AD^qAJEl6B?fLSFztXQ!L)6Z?YCrmqy!JCT<cqWQW+>{hfxP;dv%
z0oSNhAW9$n?iE-v;joJ@Em5QaVr~e_^?1Tn-5s{J!o@;6(q0J0F;i$uhPAM;u&~=f
z!7_FSj)D{l0mq4@8}~*X^hjzqC+#87*mV62)GQ(*_L+1vx}8SWi>pI{5gfr;VBUnC
za|IwRew%rugp9b=nky(5tm_8u!IQ*e5NmxOq>ZBELcj(P)nUZT1=~lj?y;8`?=H_g
zpfLX8Iv$5>F11(fV_t}+Ofb0Sm`A`vlWW*4BHTsKYXHW_j`%eeB!GzgyBje+!tUBs
zXZSq;fd2^)05>%4qNE<_7&lGy`P_230YFe}@12|`vT!Ml(u88Rt#iO^;LY5fF&ZlB
zY-`FG+EYL3!XnN|i`gQo%FqE`E9%6==<Rl1<$%W$%~A{|hk3(=Ma(!LUq{apc=;Uu
z=G&yU`;JQB6(Q#17k{Wa#qi(1sYG)*#9htVZe6sFap;p_uyt#aW4XHAc?FMh^9xVL
zTb%xskv6~o)6X8Ix8e1v+2L7e^;O6E(qTzZfoni>5=t(6Hi@Uyl^>)xGy388h6vpq
zc9i=|6wJ*^edW)F-qEFqG(<qZV+uShGsg*{!Y+J`P$zYW`)cb=hX5|1QO&Pa&<F29
z$JqcG;RW(WImf>!YKa59d?fwB@)5q{sxh054=RIbT5!Tu%|()X+yW`qN?`R4HskA1
zZ%m=XIWR~t=<9=pWPs->cmlGq3|8FPqTIHxqq<73`Hbp;yM%+}f0*kjIvtnXZp9%B
zh>LM}%(j1#v)ngi*+r;rBx@ie)Fd|K*v<SEXeCMi($?Lm_}DVo;KLuL%y)wwa#{|R
zL!w%}WXfdwPGvT8PJGwU1)HaqC~%x(E<?lqj5Hn!q&FlC)Nfmw;~h|`4EaFnRUqgh
zGDWE0+GF2nT|8YCm>QCPP&B$4uFSYtMR4$v_ESjuh!bGtFkAtuII2PS5m-LmFZO4o
zv%dGQlao>h40goV)_-|;h&;ZYKU(+u&LUYYH^fHa0{A`PC=LW;v2`PCM<`@hsl6-M
zio)f}%7*)WB_D{m(g=$|LDK0dQdDZW>b*C6zqtA{Ugz=khtGcBv0m-^R1U3UGekj+
z2jyQ-zv8c1{}I<Rh@<xR^_Pe3Q`F!BO`n-US*L6y^KYDU`kE7<mI?)j?*_lWReD8E
zY#xB3v=2s30t<9B*eo(i5wZT87UxMU_`1o@ees}Q$2xU!<jh|a%r$yfl4lb%P_D<S
z^?d`^aW1l?F-x#`MQ8(eq~utjU?J_BDZ`yM&1`DYJ*n8t|HWijuq=D;mC(FzWKcw}
zO~cuLAG|DC&w83%MHm6Tc=W0;rW{W@ZjVp!F9GHM!tyjnkiY}b?;RtBF*oRUb2t;9
zU8Z5v?D34G@)wq!*~M-Z#CFerD(E<nci=sR#w^8q1;NX|4xWU<9hGdN$*)#g9><WF
zzMb3_bA+Vku%wAo@yHA14~qW%U$`pP;Ns2e6GMsQWvc@GO!8h&=-m87gj~<>zJMs4
zE>QO6fzx_Ul{W{@J7ivDpJjS+)&0Q&8LlPBH=N_<SfDXfj3Jd0U3o4NAQ2-0FsO)}
zcy}$cw=8wFiZ&Cw`kDcql-nX)_?17l8o==x3WM**@%%Br;zuE<t337TEp9(6u(R2E
zKMQJxuf(8JL~r62p}W>jPI41O-QZ2=WQzbGw2Opw#f)S9(ZTgJBFhvp`o0(p@CqT~
zk`Ua8Sq|qOmi@A2nW%3R#HvPk<D>Ud%Z|+{ui}ulwG!ELtl8UA4xvrggcM4T=84Bp
zy&^cT5NZ~Mezqux3n7vY*2&oY4B=a;wktwY_qR^HUbP~7(J}tM@lHY*_Re(BQbNNw
z>;jizi^a5b+^Sl9CCRq@DA4#T^54U><pT$V<04*4^YT-FC5^>2Hy0;nM4s@l%x%>=
zxl&3*D>_R)U^$z9VdIiq)=a+)_4e1Gq)U;Eeh+<ksq0y+3aOO-gc8&f{$!YPzOQWD
z>Do*weTvEYbS@pum88t;R80f)OxMbs<^`Gz5Y(#T;OPvCc_6%yot0Al#K+C-nSV}e
zX)?yT+b!8XrxRjsIHrdj`4Wh;PbxXK5O<>w0vj%=d_wLzCS+fy;&v5rqA2=F;hF;l
ze%95Lb%2u>((<&k2f{#14j`V9-WCl9cXgYGtlOxEdBjId(R5a2AkOadnUcUb!*Gz-
z5Z0$l2$Qrh!1B0Syb!BV0=wzL1!SNAcyVK9Dx~$gsA@U<4Biy7J03fz@AYXcU@+l3
zK5gSQ0t|?zmx39qA80yz#*Qup1sp=wzY>Up!+*zt_=H`rHqk>5isx^y=!4h_;)tTa
zpXAPi`G?vtG4X+;q@=RC&r56k^0y7~engFzM`Mo5SCF~~jIDL&?WOw9aMf-9=~4se
z@$#$Os*5t<|0Qpi*3+F;fW)SByNGChkL<YSIaN{zW-KzHUcTx1Y~JEyZDaLg%Z9mw
z{$nT82CiOjqoN6`nKtJyMDx|g6Fhd_k?+X%K!f<u2G_I}Mb8G-VSR+j^RvUN#A|&V
zx`DwXn~ey1YrUm|b*)TvqvXt2VhGD@>S0&I^M}{<yJ7{EskcyP4Q_255#AFIOjZ2x
zBc_l4;=fSf%BO1*NF5L22shS&8%^~kdiWpZvX6tRzj?TZ_iN#75yO(pU(tWJ1o|$A
zx-&7jcmF8$4lo2gD}9>4BsR0(;u?#k8$K@3yOp*;=2!`=WH*WF=G@%D>PFpypDrDI
zIGC%Z{p1G)f)=F7gHB1qJf(CPD=&e0{g^es&oUQx(1yCy6kw8f+5uWqE9?p`CrhPl
z*mLtan^EVN%r}PQ(21Id*6}fpAAuMAU|*~D;9`!0LQ|+&68h0Tm9H#zhpEcS+k&tS
zplGYLKG)83KnHuti8Z`>#3zfzeCUn*E2WXsr`OS>{cH2u02hTHTCt@=z~D{1TegNS
zSh6e~vMyCkIpOcH&y_ddJlpyY-03dgDvE^I58zCf>Q22PLylGQMu}(7HzCk+%vuO(
z_fJX~Q<O%<j$+91L+J<U|1B<z_lE2Pl>1y{sZZAKY(|3ZLC>_AE$tX0@tx$9A29AY
zR;P^ucA}$@dRgg5zSC(lA<Td}eT*Tvp^1Bd5QsJ-6X;24=C#b!BA@&9B~~{kgxUwx
zts>!eG|B?%iPe!vt<6ffmgTN>_`x~&<PhsES;Vdztvh-9+(*`2In|I@GHu%I_E-wB
z@ILGYGN-%^9pnBtS}~v)3c49CcER@B=(EP@77BTbhx#4Yn?U-}%$n+PoFmuM6ZT}r
zEsy{E!Co0q39@+DQ;a{ORoLS02`~tDP~SVbs0s?s+6#DP-fkO~6r{){`xT;+fr=XG
zt?rYGtN!-Lz-9<K2_mBld3LTsC>(c)@+vZ`=x`QD`F4oLLp(X<4;*rDZ5f#p$x!>b
z3TC<_HgMT!;}l#hfL4WYCNW9FPA2PJDh>s8_^1jS<-_+Ag?Y(-YJF*QOI0q+#D-@p
zn;)uAOd9Rh2gmT~XoZNk?b(I`g$5~ly-2zbLu0GGC{U`|iTO1);G6h<L!lNpa8^N*
z^s+;^w}SNwH@Y!euqU0emo{+*DlHt<WV+H4pqE~fv5p1uCF7L^Y)o0vs>zJo<4PmS
zXArs*4dZ?S+9hELfb{AR?S>97fWyj=@-i~pcQyb#GUx0(dTue)T#HO8Mr?i}&=WF<
z&28qOtW)btBP0gYR#)dt&@&MvDr^yTaebR%f&oiHKQY1PdmLHr;ID*G^4EP}c_WHo
z000W^0jLLnZ3usm4q!F^cBmQJS5>T_DmC^U`lBA%F~0vB+RuX`ZcukR?K;P+rL7Tg
z#rRlVqc4C{{Ed_Z@~%!JWX-7D?4soN|5mu5K;Ch2ubG*xGmBB(wM`cH5e2vZk=h*F
zkp&@Q<Y3R-1lI<KSS=|*;=Q2JcN9ltX}<P*tXndsL(akB&nV}m?Md04g_ZkGehY&?
zOh4f!gOs2{-%H#Czzktc+Xc#yEq&`?qRdF}{0(zRXD1vzscY$xXv7v_#7F$d5m)~D
z4`?};A5kZ?3<Gh<7MD)2--iDHr06pd-1{m!=><eG58g4Hehcosl=D`3rAlA#2F8Ru
zlXNWL(jI>S7Se1xHR#P>RQMuiR9h#?bQ4ul!L%&QBc*^+CIC8``OLL#a-c-S0|Z;^
z3M(QoTNdh*b8z6T<AsuWLgUCHm(ZBT)|kHDa6Dy^kylebF0OsD^kJ-r5Aimxj?1Y2
zF7MhRHLb&4GChKjNW0z?1c^HLuH@k5<C{<7$ZI4v?1C@aCFh=%mTyk%U`Fl02$d+U
zr}v+<{Z*Ew!?a6K;bg;0Lr$)`^0Y%*p})WXn#GcR9CzDZXP}Y_wETrv;*eVV*EFE4
zjOfuJ3)iM?cIRlJo0IYe>s&)yO)vw7RIfO+z!9+edhSKJ%lu<|J-L`#2T+$M27$4X
zD(hgUXjCIkjqZCeluZ{DuDFU8`wp#sMR3>a!UyQ9$`<IV;rpqvuD^e^#?{Okozs=(
z<M^KA@f}V`Q;qnI_gJdQ%4^5Ad~yiM!MU%@YQbL%{;I8Z!SQ2zFN%-D_t<DkUQd^q
zfic+S1?8?dm1FEk^hx^TJQ?(=ew9Oh!~~VOm|U(qsYb1Zn=`u~c7OVCTk2bnAk$XM
zaW+@Dv!VccIb(IC);OEOD6W$RBioTE?R~{!CJdA9tp}gUZ_8RLZ0;xv4%Xazs2W3%
z=`~8uKV#CRLQfK;lB@tOCg%b%EvSd3hCSlx|F2Qmx*D9!-_`bEAapqSjv(S^$ER}_
zvCy|)i*}Y|!Y#r7dihM$sLW;~)h%6SxSqJ&6Q{Niyw(n|Yd{am>V+0ppCgE%{)40j
zWa(r{&g#tvqM14FaMSqaHj)I>r(5E&W}t}-h*CR3js(ylhi`4APY}dZ*<I*uS>}v1
zOC@YNr#VTY_y?D-DyY$3D%WH({)2nfvU3*hZSS#1Ow~YVGx8N`cPlx`3ZK`D-(IxO
zK}eF~8dlFWbfV#K$>_fpJ#jGZs59$z4Jt!!#YSbdg7f({7sNk~&_$-tqpNX*;<!IW
zRmN=k@-sU}c-G)!Zv-g<xg_F}VHJ2=pL=WQJ1ymG^90oWsgZV;{G)Naos@bDT?jCW
zI8L$8)n`OiFPW0<Ge;=grH4DrA)AhxvPLcp{bZXjA7>ecT31H0TqEEg103&}MZ83^
z@^>lgvOo@J`rEUkN@@MQx0R6Hv&YX^S_Y_)fLUDWeSdwziNVf?iepaTbkqw?ukamd
zw_4vny8LGQ<V^veD~p#_%tq>kDmp#SjB7Cq)_3O7A2;EecyHKI5HE;XsA)6QrJdnB
z4IK;5+@RtQnKdR~(7>8_SH$fUrnS!jFi{~jzddD;lD?W5n7-?fAr8X03TR=+(#`J}
z*|xyXj<G2K7b%!%tjckK$&?56<T$69qmzznj)GKAEn*dNFnpf{!^0L!f3f>GK=6no
zQSC~^Z;bl%SXJ2e4cv~8eTERaxYjY<eGRey`hyJLFDw;hPm?sU(UW$Tvt|xA`YTiR
zrX)^nmPc71Z--sJLxS-wS1{hZtDqEqz~Da&ltDXj*8;N{3vb?@N{s$TAa>)suW)br
zr{W;^mY&IC1qiPH(9E(%Ra#rc(!ROjea7`UGZ!cGe;XtdktsI5ZODY6o9C-wi*b9}
ze+63tL%Xvi@VGLPQ+LNz)YwnO*|2k<rKf^pe#E`iavEFsizf`>_}H4(%nvcC%ZR?u
z&`Iv3No&jDk+HYD@W^G|+&?fwprPRimPV;7qQpcWqM=yKSuUu^ld%U*8hd7V4=ldn
z6}x<=jkp+a=^Qfk0_{(cN*Mr=Ij5obDqPoU22IQ|FtG9w&h77o?wSK4AfbQF?x=8n
zAF&c!2KdJEfXio!yCC}z0%t&}!sRn9C7iCAbhIyi+9j~AwX_2j0P^<PXvxR)yBqi>
zCubzdNy1PA8%QYG`w8U)JRYJ~&S_gAbVITaXnZpF&uC2|7;jc!#63DKaaEf)R!mEK
zVkr;M(+euf5S|R%twM)m?!d1eODrbgn|nX{UI6wDPRjygP6L>D^@qfJI=m(7d><bj
zztT#JuJ+N+f~ZDzt4C-s&T2fA%MPsQp^HTJ^i--2x;V74WZ96}@=$qD)`ma-_fU@c
zkM9dXy`<DDFEeBKit%|PD#wj7OZhoLv~>h815|PUtMth(|B(Y3VfcD`ILGpoACA$-
zYl4!5&?Uy=9`3%y@$PJqqraS(ZzR<pZF7;S9hs$+s!;;u0NRTm<%og!qn|O3J|GY3
zQ=527?VyOK0;WRs))%gbeXf>(71pm%vrVpqUP}y?f9nP*CX2T!>@#$(3u&3(n<960
zJ1ZYPqU>}noWgS@T@-^_UK?aGcutcdg^pJ-;CCv5tDRUHrFB;X1&s8R`O#n9ok>ez
zR(z2J5nT;QA3v$M-$pppI%7-|v-64b+kYW7k1_&>X{E@QRnhu1c#qY56>ll&dQbhG
z>KOorVft!@FD4j|-hG#N|Ij88ExO^Tb=gHx5sRd}(_^X>*K1Qy`Vx>q3pTn%N^bC+
zSICQa6;Jpl1(ekCqoQ+9SGPwMXNs96gM?%=eUg&7Wh+)%a9$kpx*k66I30lSYG7N@
zft`~aONK2B$0Es0>~^`7mz_U960=mXSQ07Q_i46I$0>_3=&^PQZd^|<*?>)<^Osw&
z^5_cE@43a`A|0ZZJHZk%tZq>;sJjZo0!!hfuR9W|x2S@D2UAE5B+m&d3gh{{mYsAk
z|J(xUO)`zTJTaKR2@;Q!OgTrHRP8AF={|l0|MaZuxsJU;XH8JFeDZd=oYG35mh3lC
zFU1qG4U_<;OwoJ|f2BxqcSjti+zlZabW2rMYBsh7DK8{Ee7Y^)-)u6&92g;_!JyTV
zPUxkd{qzr((sM(mC-xnHz-a5CPvH~B6M`w5=-1p>h@}`ONXZAta=BeYWe%b`0DmBM
zX{cJU+s<Ae*xbisH=7HZ{-R!*e%F5u{=CEkX-e$6b%zS;f6m#bKxIUZBbrtmDjV7;
zU_CdHPFsAY?dv6fM%=5>f?6-Q&i-<bOEXkBDZ_mlTJ&Z!-@-7?$^!Qt8#2XwZV48f
zjAr}il<MY~(5Lbf!ayDoJnx5Tr@Cj;#(2?#SE+Hq=Mpz~E>L>Je<FUz^TeP#1l$OH
zYso2#Yr)E;Yvj29vH=m8Zj$DtKi-&Lu?-4g^jWrfZ;dOF<2UbNjQ!#a0y$K^WWCEE
zHm4G(uk_3R3~~4OoJn*DSZCZjB4vkO4!%gKsvxUZ+FK<__*+BURx(PopIBVF`uO4>
zn2YznQy*Be@B8iN5c^iX=kleQA!36NS+2nHyH-PKLI-6wy*!1#4re@y$eE1ZG&pi1
zb=t!F$*Y@IEAJR!zT-mjAa~`F?KsqAb<+ddu67RPaiezOGyX~*Un1Hv8}I-CkEbEv
z9s%G%KmHW}!bbEcH}aV5#PbtWnkNLVd2t2(V2G1m$%`Bedx(mVKP>UBJ63)c%{lrL
zpMDk|p-PzJu^kIjJxxlU`0XA80Yu8D27SH6Ho?9=xEM(K_L~`iO!AiweKdufwbv%k
zr#ss|+#~~x+b!@D0CI26WpGlk4gW|M!&_rVRp06{qe(0R{Kf)*a3O`cHhaH8%)ySe
zeS_I|9EonM23m@;>luGYkK8s-ZK9fctdQGQ(@Z4Fn?=p$z~;tn!V2GdHK`~L*H>CB
z`Wmnm+!m~)8bQl^<x{Gi(d#bEvM*2q30sP+l41umj`eIjeE4<+&Y4z-*^$pS9Px@0
z(UwXtWHyRrN9c9Uc)QbN&uek}urxFlW6Q1mrHT1qND*x(IiGD5q_k#i6RWqdlZUn4
zE}$yB#@xkWtnd!I@;lf!DyF1EzK7Ux+7H1|lh6)Fg(lw79kJ|SvCeLHhPRX6IFZ_q
z3sJX;UHR`Cz@OhkQVgt7+z5T-WC9JQ_#~b!BtOxB*EQhZ>9zv)gm1pLVVA;s1dNB9
zC6PI!xE*TC(ZUs!4;t$cNhXM@+{`RTc`2&mzCWpTen2mP?*_T0XA2c5=A(E=IPT{p
z%!KkUjNF`W{NXW=B&kTAEKK7+aioBU^jwzTdQPkd^OM1qPT9iIZMOaShbwKP5MT3r
zM-eoov04s`8y`{0oS|$}!Z<JQeDfOKxNX^D_VCIRFcY>ikYJ!s^y!gEkKZJ7a-Uc0
z+cm#D)96l9!MX@;MLSy;QzGS!9mY-+d&!UXs!&uIKxt9?o7pnHk`N>`8|S+}p{Bdy
z?>SkjvoE7&<4YvEgHtDK(#K&U;Tphj`)vLk58Nuu6=Mg1-4W}X$N&R>eQ9^omN06-
zJ*N8Q(4Ft-$!LU2oR?>Q(f9+i(#D(Wvh1^3j;3UcJIM2_J27G~wsE!S!z>&3cy-$5
z=u=#xaI57CDJhUY@R5-)vM39$GRyPCfUmea%{UmjOiL+{fld~g9ojXsY1_o>&3L^b
zmv@}X<z9bIn9quxL<IaMvYFWOryJ+U<#~ie47OHM=mv(>mSxQ&TO4MkL*j6Q;5D5R
zENe4`@0P_D8j%rTf=(Ddp+p~AJlBwmE>(Es8eUQMKt&da1<@nZcCERH*NUh6V5q`<
zKse2%-_N!gW22GNn!8y9+^*F0pk^7R(}^;gCs`48N$Mk5PvarS^c+R=Fk^#GP@DIC
zi~C`7-@oa4#eAh}CG?%6qaezK`f)@0-Ee;FP*`a+bEyOOAy1yNd0}|$s<Pcp)Oo<a
zxEGP<wJ#3^)l9n;OJ3B>Z+h6Y<M<s|*$m@L*Ue1icc}DRXrzq^xSmf(?tmJ%beID~
zdXDox$i9D_`y+Q}E0PF}tswMr0h~Dett5G|y^~Fduc_7Xy0s*<9_u;CUbW(C8<<Hh
zAkRyKKp90Il=Esx=!>6w1}KP=aTk0ru2H<jYnuH5(>reAhqQd4Fz4+tlmGbhTzt0%
zmhw0%XZZzs#F}xjz0)RYj@6IN4El3vnv@j%)nio#(9y8{4DPidqtgXio5|g*rMTWz
z6ma@!%DoigVL<k$q|v2o4xq@9z*iV1vD@4eIKcpJkGC{`%66lSo)p`@4ek$``K505
zCz@`9(qbAp;+NDnQiy8Na!7b+GD6;5Vsl{M4v)w$xm2TnKf^UgNN;|FwW@+TF*Ea}
z&ODM$@zkFg8PMDKs(8J!>nW>-nX!MYb{<f*oa&)pQ`T4xwc*=G+%`N@tSLoSwxQ=%
zNkqd2KJU96%PM&J8vvaK8?HBZq9z<^C?xcHM2%R6{syMOD~GMwmqhNa(Q%Z!j6D(H
z*gdZmF1^sUqH0_JrDcC?3R?Cr$gN_5)Od|;jazl~(d}x{X-tF{O`rvTyj>q;UcVm?
zDbjx>CQ~g~wNIyU7Km#D1$6!P-_411Q4F@8o8Y67tZ#ZLIrkW}kp-l|TCN@~JmcL7
zJWW~4Roy3_9$-RKub{-X)jsW;{&HHBLzK*-2erK8`(LlzC^LOn0v?Y612rCym+diY
z9l2v_)>I}~JrW>59G;_G`eIn`%6mM69BqZNo>agkw?f3u0$o@Dq3KZ=8{~wZwcCEm
z@KjsUR-|c!nPY|J?71r*(O@jxV0!f>=cERzy6<eg_(c-BYS+$)+FYm{WR%%=06g-N
z!+*-ppG+n9F69Y}6*zpW3T(z`nn1Bg0mC#>w2uO=bte}l2xy8?>Kp)DvNy*1nf=e=
zK^8#<V~CY5%2Z*Re0n$kd-te6ltlMd>nMc)mCXy144I~(7!t0oVd!Nj(L*Ghd5GqY
z@TdP+fM0N9S)(EPs(LR4TtJ#yutDWTI=mw4bpvVwQ=lwzOQ`i6qF*Ue3O$j$lQ0US
zVq+MfV0Y>4V5$fM!eWAY<j#+f)N(|PJ$7QF(QTJ7f{yk9GnM+B9`0GPwmhapkpV$#
zf*o@MK}fDsp$5Egdf`EM5^{HXv11$LF6Ew=)5G7Mi})d~v?0%14QdaxsGR;6O{MJ=
zYWRoMiwyfkgzy2a#V-;)!L1kh<72Da)l|#=_jKVBnzqSSLyd=fv?7LqVFYuzJRwCA
zH{|*k!>YdR=mO9%)7GiTre!6FM=H|&{exFs?nRh;G!FL>tx2tm_5ECg8#y}^!ox!A
zTnEWAb5Hf4#L$F}?onUlEu@(?j(PXBH+fO4HBarU+@*zZx-x?^QD9a^kxDr}Vm)>F
zYwhSADk=C^<Gb?U4RaOe@vYUQnbzyR5}YOj9z1?mN`c9M)(5g#*dG25M@!(oj^kOn
z9IK>}=?5IE5&=ULTq5u8Nd`o~hJ*%_xTOY-JCOnC2Q-c)2qqF4FaHhWIdH7vu0;U~
z(lIVQ1C475sFue5)1Ps?VB?n4&$<*Z+=shXs)mZ5ht!${&nZ~XMF9s|&@Z%D0V$39
zy#2%D$VN9GSk6KUdN_goDv@f#D6Hgx!uv%~--6YHBydCy0Yk|WUJ5M)i#e@kb;-PV
zo408IWVU57iVK3MNmgUm34t7bcBGagJ;DHVhQTkLy1bXYZPK-08vscN2fqX(c6m2=
zqf)^gFZ*o)-?X~(;j$rZ&&E>|VPa<A4(n~*?7>4)BndotvY;#wbXuIY<7E@K$ZX9s
z*fLNuT%=+di^+ak`=_^jI)eV?7{|R?=1ZrU966X)q1nk)Y8hV-r~Z{!-NIWLNumNl
zBUVhDZfehR4=Vfb2G3j9U^jgKt|3HfU?c+ET#=<jZ);_gFKp5x!AxArQ=Ac~5+bE3
z`ntE-ajnt$)lOVj9}cic{t4jI!jI*xIO>BiOrQW6mNs?pvJ=G?Bd*jHBHUm|RV*n}
z?fY=l1lUDbMkDK}Fk+HwG$swr7h7FB7Qz9<qBr<X5~r}0MrCvrG~7?Vp6vtEu-%&r
zv?|+R=P?H_L~)tD)mfNzpWQj9?(v|HwRjr*DY|auGBR)b3w*ey?%xafkU|0u=XD7G
zMfn?a4-JP`T~Q-k<hy2##_|yCNPaaj`u4`?Kdk<pw=vlDfS;}RJ=<i3NCrhHCt;qo
z?z|hsp&Q{%fh$ZQ9{`vH>948v6XUnbANk4gaoe>93|7}gcs?1eWL`i{q+X)6Y&iw%
zfDsYNX^|JG+kZ}0h_^MTLtqw#PJHhKF}ipdwaTJ0>FM52Ne+EQMTVdMs(*NorG4Os
zyIzjOGh(_Z`?*E}fhvnQA@1z(n0kJOK@lj{1N~$G2|2m$pQ}xoDhhRI_QL)6Ip*YJ
z38Hd@Up;!yB2rx8H375{LxBz<!}<I<O`+^-HSLa6P3TcL)@x%j9~7<>m%8EH4)^u8
zxBm>G%DlJGU?qcbBb7VY6U_eMY{PDy#=JQg(NSW$QYyAQNGe(U%EG7W-mf}09}V<Y
zU;H~M>mv)8#UNHBBYMszX;%-9oYH!<fJLvIE=a11QZYwPC7d4X+cSwBh)h68=;HQ@
zDn;g~B6}DgiNby`HM4M4W}4+N5QKa>3|G)ov>0kt-J^$QUi|K&)pcN<%^d-+tkj=v
z%p!QYM?UH%wSIVX=oQ-f1prJazQ94UfNNyIny9=jaF`SjX{^dMBKb{((#5jfCLfli
z@QPslx0lC1J^cSb;>~4rbkWU@QyU-a`=M-&{stLB{?xR!S(lECpMMUan?&T1=Kg*%
zz=tqn0xCCU@B{%HAsgtiH_az`d>?rFYF)zbN{lw5KXFvyAp8nxCrxf3NTEg@Y}5a&
zCI8Y~`;u|_L?p~VrD}ld1gM5>gSfxfTe-NFQ!QCBKak`*C89+YyO5py2%YK^D!zH(
z4nt0%YMq~J^O~}Me=$5Z&4ctz7o7SlK|RJduehE!_{zg|DEgdQMr-4xD_H*__*BQf
z1>?P1X_>NjZjWF7k;e})IzE$@@5IZm&2Zh?=V(_7g_P`J^sX5rL(FVoP6|slMVUv_
zF*&s9k8mmTqUJP8;v>)~DnUyBX3|s;lOC9(d9sD}v$n)}cw4UO$$Vv%5tMs?GKFdr
zS3J96IjWy5TqA;&4~R|@Hsa2H1vuK8zUIbFbJLZJ3O&##Sb01viT(K*ywsB9ftYI`
zHx@^Bkja)pUOK%nzs7IpBL`GWvymEO$HtYddZGt&or|vX9LeOk7?L#y-?^*s(l2Pg
zu3VpK0niNm3Ek&Z=$4;??+Tjc6)vPVk3Pjm$(~+ZIXvo6i*QhX&uuJ}3`-CCyMp%F
z_aK|hK)or{3O(g`?xjElNdB0dp-ek43!oLL2f}d539gH|*{e0p)jhFrCCP#Ye?ju4
z)sl*gpP_Umhb|UdhrlK11a4E=zREM->Zm`Wbs|@kyix@9jF}tdEer#GZkZSjTK&4M
zaOyC?8Owlddur^G(F2ynM;yC>Tpdx>0Gh*ga{K??{$tEmmsK609c*{$9eAU|U}=<X
z&jy?t=mf2et6(Fy_8Za5HEl+gL#e$R;%vyy5$ec~R@n0i-~pIHcwR0*t8QX2Gu$W$
zPW4cP9}grh!S;p!x~}dm^<~(>OOm-cSlda}n<f7OCmpmKB`j0>eMOMtf&03T>W~Z4
zLNaz`UCj}G<wN&|aFE@1cnh=@Z&DKXG89K$x(ei))XPXh&Cz5JE~5y@c)5t_McDL5
zQc_v-o?HC8@v=TdulGOk5l;n+i&9^bt9)tjqvq8@-^v?~I`>`y(-6yulO6A^F__T$
zR#E+)U-)?~K6~E+tTob@le7I=7D5@EeyY-x>k*T+<=i)m{jUA&zp;hE2G-AP2OnZ2
zYoKtPl+wOizBKd-H<Sz9v4}lvDyQASn)*#{?ggaBHQ@TMc3=x}YQNWHAhM`S*;3dd
zM?#y6iPAKuH2e}vuj(l*d=>zLRLPPK^BtaEZI*^Me$ndWR+q}*p~U1a^}P*Kmkc|)
zkO0E}-0ZvI(6_1;O+q1kr>i7ykN2lQyXjYLHQc;MPjV{qf8x*o*=f=GY-4cA=6LlO
zT&n8JK-cwElwT^KAp*Z`S;7E;*K-{M?wmS-v|~l1Ik1~FaW`ZQuk(KTnmp>wUz9vI
zWg?`pa<AL@1{|K091zif)gw=MDmjq5FVS52D+Jk>U-M8FxSro1xb#-FfFgZi0&2iS
zQC8-XfH|W|2BpR9T$%{@{k`&<%AXAuZs{@iLSZD7&INOGA$Il9g)&;Yob+Tp8kl(3
znbEHy$vwL;WZ203xd&8Jf2feLmi%(amSBr6$h+6kK(#rmp&WBThV5n0;lLTC$9?dB
zoVL>r0sd>IlEFGlL}RuuqZvT*RYQ`bf%59rC3?tSL{YqF2HxILMOh1n=da;}L;-2|
z+~#w;%&bYi<nUT)CDv3G<ZL4ORnHLFkMsL<P8}q?5WKX5zY!DOKKgzQ@73}Y2!|ck
znfF23Fi68Y6cYRs>Cb3e7$KJ7wihb#1=#hOanUSQsSuxjg|A?$qOjB@s8M;3?0ptK
zy8PfQUQ1t`RU=sxG)K7}O4Y~fWwMj%%MtiRENptch2)3wFbzMh|LaG9qQP1x*>Ap2
zT3<`PTR)_`w0A@`vMhh6Uj!Y`awBguUFvD<=jVoQYEN{u(fOs%RdBm_gNja&_qu1|
zxC<y?x7t4{k6gE}g$ZpK0%=~2E6B}s4W;}>n-xzIh>~#NRi4B~S5dquf_?|TR&uo3
znwkz!1|+t#fmnyK(;bI?Q}XlQQ7k)sWI!M|Sg~VFMo;=%QW>mqU`lU$xfb`z+6_SY
z^xL%c2rD(=A>kc7oxIwHyC0;=vDLaGYN`s>%6CJulEd);9X+mnkuf8d?r;B^2U}o^
zC{HOTy!?o~gu7E_i&MKF%DkGgGhUtQD<|!ujc8fyv}aIg>VZ`)Lv&npY__qV{zd!N
zM=7tT>-ky*{V&S4+G;qx@{=ujyzw~|t9j`G2jOkA@0@vw?~89z%eB7>Mg_J4B6`?B
zB@h<olDSGx*m9ByEX_vtoATnXO`IQ&!{lvk>YYN*!W%X;bQbZ5QjwZb$Hb+yO}WN~
zce@>GYsIBR>%}O|mYc&XALkZRzL4pEmARl6GhiB%=4-QZ<UN*|9RsJA1*{N%a|fU@
zj>>X_fPM@EajQP+e!`z7)J|8W&-f|#W~_*x%A2YSe&!o@X?Bd|n#FxLZty)*H8Khr
zSuLcXrK?jOEMkVj+A}lm;w*i#Abmf)fg|_Kuak~9ZORkFC3FqiMQ0Lz@9h<rX3|Kr
zdsLv<h+9xr5JcrW%c{FA)Y`|Ee)a)##rE$cV~P>#e0tIs6Jw3|M!a%Q91X1`Sq-mT
z+XePKSW*Rdy9S;sIXsDPtcEPpsCISAK%eU(^*u2q{|0J^rGf_Mxgq2tk?Xl7cFcl$
zA@y&iZEDbxk9I4FkcrKeUn5Ry^lOvivx}L_x+0w%JuI~U?-Hn4w5H7Qi%7~zZR41!
z@5_oE@T8{TdIfAv-kbC&6>92ZeS#riIE*CU>SvJafIq2g20=6)O&=8#2#C@2N{X7u
z0z+1`i|D@|+Cl0GECPTE8p86IA@JmUp*^SA%u6ISrm+r5h&s`efB#3`zy%zhk#58M
zgFgrQ9~QolP}+BgWFbEs_MT4zbp*o&GEhYUh)71n@!}h(eca*B9n%guLtS6L45M(u
z(?MQPzhO4TZNZrQ(odv(5d2`0u2xagMEmVRNE28nkEB5vk?@P-o7B6PchLCmgP}mk
zH#$NH2EY60I`ZT@Apm&LiaHMh0XZ1xzQ4d&n_*cVq4Xdh1Fx#DoL6C-ew!z_2G^c+
z&g?i1!qtoxBBI}~4QSh%?>o2|D7wG8cv7fqp8)+O=UW_GEgtO7jHV8Pr^%QK<$1t=
zK%>Xkn!UJ?9Z9lBR)xNT%-g8X%OI>1RYQxU9m-4b1GT-kx`L}!h}NC-TY*;rl67Dq
z%WD@SVToS-sHxt}=F#(9x}Cx+nbKUR<xtyJHfrS<$i?)H<?Y(d>s@F_N{Brzch=8q
z+_-?7#b%Gd9~Wu&ojbrtf_A(SOw`sqqpZ|pZe9A~CkF!IHPMP5Y^vA`y=`B+uNMY&
z(XH#{u|Pf2=wOBoX-M_Ld809eoX@Hb&y83ziuNTa?D4iIWt5c9`R@?kYmqV9g-Ahq
z=`}8~w`YuKXJQn;<S1iuDh{-~$4~l2?(IFKE8*<f)b(UHc<f8(jPed?f6SdB*ezd;
zGbR9lmoPN4DLuLt8U?FO_sAb`<>?a@+dE;FLzfv(BWyovhd-;RScs;((&eTn-a6J=
z;)g#p%kHUYSq)rq?bis^NP5YRWmwYzI@S=}P2=pFBH$t!mb}ER;xJJ|T~_+G>wL$)
z53y3(Jw}PdVtcXJ2W#e6?vxei#<K*F_Lj51owpvzQcYPL{1R{_$loJD(~U8Rm(Jy5
zvaB^Iqd7rvl+XnfMsw8|CH?7&8m0Z^zhsKY@reYSPH>qrO$hd1M97!IRDr;B&-K59
z;2%Cg=(t+RR9l63C<XOs12OD2*Oy7^ZB5{J_AMk68fb0=I`4qj_NP#6Xt~KP9Dj()
zdI?`Wx~crHB4qBok!;gvKX0~(z8Vsb$igNkyY6eZtUqAZ&XOX>MzA&;f~@My#uq6E
zQ&qRp3`8CJ!T(ZF7@+>DFD4sEa(A&zSoE`P3lvblm#k#aXHHvm&N)0NOpMMo6vRP3
zPTtYbs(c?%Hydy$dS=-ZwTye$0NB=gP~*{v-M1-8z#HSO5v4P>t*!l{a|R}clw+nu
zhzr&9b&ZYc_C7}Eq6xp(Rs<m0*Y?sZkbzTh9#H&lW<@W-P$hL|31t~K{{=9f1BPHg
z&I`y$yj9*-t68i}r>LP<l-@dflKEgzXIj?0N)xA{bd>67=~2oY!|_RvkDZk(+GHBw
zsxZBc;P0ZS@AcM6oUw9?-ey11wbCN7+S^p8^X->*{O*(Sh)ac(<d(``15Py>N#+a`
z>23KEQAjr-YJ*%_7OMdKu}S;+2RIiZ!?Ye*BjGyC76!=N7^j%UR0BOfK@K0lsW4qb
zwN9){0w0CMr2Ypx7C;KK{r_GiJ%<3qJAP}DTiZXPswLYt4}s1gwFV?BDbs6&nr$v9
z%>|0=Wysqyt(nTG=-v=uUn3faCR7?vq1lj`5nBGHN=AAcsWh~#-;7WwX9R~&6i#Os
zXSkEeF$SD@CG}{ox>1Uc%(@xtVS=iOVFF^kt%oT}s0YF9FH22*lApCW_sUNk>Y=Xx
zBaa(I*f|$Ha6LrPFl=EPXU0+ryk=kb7yYuWLxtcI;|FW%9c~=sg)n>?Y*mV3Y-`=i
z9|0^RmA_n3Z1zM3Nr>NbhXT<d#riveq`_I$odXPLgfZUCKDxv6n9<vKq=)Om?|&bq
z^PwUu*m%iyGj3O}O!*?gNbM@*pN(8Qo40NbG?Y^8DyRg5AY9mgkH-1aY$Rh#yb&9E
zb{6%lD(t$2QH*-`NSgy^@KRx&sGCAmTOdB>?HtVdK(zOcjCTLpn;82Xny!%IuU@h9
zY3_o)G**H8_G=^eE*NOcTA@!)=tAr1!YHjSR}4So1qO*xR$(eJ0~YQ8nXN{-9Uh_A
zk1uGaG;nd?H>vBzxFiG-AF&}PXE|9F?YT_7e4pcW$4gLY(%<Oe^Gn%pSab_#psTDX
zHcT^3-wRrz@X9%z8&s@O=9=IdLX{HMB(aOu(g;t{uX38o3vaKhYo?cwlgxYMvRWYq
znyrm=5xlr{SuC>l>pp(iD<|;h@2^80yk87%Qwf@Mh$+r9s?)Wo^JWjQJCi7~ly)iG
zs7LTo11M@+K=Q^KC-HuS8$F>ootP>Dc}y_a*D0Ke({f)G?WUwNJ&EHwleD^#?xmKj
zvvIi?tHegtD-ah<Kz``#dr4=!)Bo%*AFjWOLL@*?j+fm0IT2L~ovE;Gx#74*|GBB3
zC^l%&zuKT#w@+Oa{8kt^6}JivF+$&?2@q7`R-^Pv?*vxP!ruj13H|_-1xvRY6=yH-
zvXtRhNYi=4)K5;zi7yH2{xs#Y&U6Q>vLm>GQ6VrsZ6DDDiU6|cNkxFUP{uF;C$Wez
zjOZXbi5JjTBpfr=Yro=Oj+&sp6Y$XkLD2%W9<<cxhaEv0JIw!2UqXOTb{G_+O2G{v
z8u1ZhQX93`ffcN<0A^}=_z^e2%(HyrV=5^V22i(yr~+DlD}<U!qqW!I*;NGs3#Ftm
zA6}1k3BCTZm$-(e)Im2R-Fgbyk*d@Ci=p&sCZ-lwA*+9zAsvm}!hxoxBMw7I+6pwq
zKAIDoOV*wEe_uh@Q*E}abz=Z@zWj5Vd3*$3Au{`l63_=u>H$Hl4j9agEW}ZaTo_v9
zW5|HZ1|)<|JrjVF?-=4DHYr-fJp=S!N}@MXwg6Q+yDF5fv6oiP+~$Y=&FR2EO}BAK
ze>hMWN%H{8Nw#QJC>GOuf-a*m&Al0g0&I?%86w1j_%L;Fwu;6u$NviQ^&bd7{c9~{
zw0X}C*W!=BEHw8Oj25nt??BITfLTN8Uj<QLKmE-#LecUUncnUupuHUm0cWUaFO;A;
z(Hep<UiNdJn^g9fyVn;OBMxPsRzO^WJwZ5F;B}ibqgN=JKHDqO+GVXZ#LzrW#)q6@
zY#>A}R#Ga5z*b&6UaAMZpRNhL6r7In+1ve{Wtzo6r>6tjbbg6j3NJEfjiHzj;Q}Q@
zWc2fIF-q9bN+EB%$ofFK4aNczgArGD<Ml?jec5n{`E`cABpawO&;kreF`v>%EL^~0
zl=C!R7JLD+h^OifcZlz6UnL{6brR2OJ_KdMl~+@_7n4nI2qFjERxh>mBx-kxdv_o;
zrMKpZ|Cv;;d~P3DTa0ZC<+vmDbwmM7xDNR-<F#KQh9N{^dk$B^_}$$KB8EQc0r7B8
z5@o0z;K)?9AHGRYo<iU}>t46!Vw=Uq7}1jFXD8`O!Xc~G#jt$OJmVO;WO|&nNI(YU
zyGt!9e0#DtjJs^IY~S@|p+1CV*>aKfQp9UiraLsh=)i%)y$W!6&Y8%~I6!?g+HD&2
zK%;bYW!J-qq@Ni)zNEY4__7w{bg23*%f3V-!>Xk*@Q_QI{R-86<*Rl(VZTli@RiLg
zu*aFnh-3g;?kyxA(fqo&Lai48z<gG{60OzV;aTz0_%Yu~U=+_!!J~S@%VqYZ+Af|v
zLK{SrK3#BP%73?kf$5hMV)b_rCDdi@n~Gyzwl!3bcp`4U?79D^RuQkCFSMBVFHYEn
zS_lq>+fLw$O)XRq=7a^snQR;*qBl(Z^RiI+AlFaA0zI*o-gK`J6*3x*%%8#t`{R%u
zb<)+fnucUJkDT7dy)0Gu=7~7BqjBU(8f5L5mAf~yM(q10dNopW>*PMh;68&o^3U59
z3bW{bhRHjq$(PqVVb+tA@*G*-0^Ur<=lg;M$hZxYoV@ux@v+d2>O*{_<Tr2&a&~$!
zOWc7TFBl*iz1{%KxrVxVc}SL*ybxlkrDgm^L3|j$G8YXy%R0w8ovIY>zK;y8JzDW#
z=kJD7Ha?@ZGfw)xYq-Rq3oY(1`snE#(?0P2?bD}=>Y+o?BX5a&9;}vSt7k#Kqu%;0
zKR=Tyum@2_c^o&rPoQf2$YYY-|MLz?B-p42g|lH&E|hO;V_SjoK6l2}<}5kQ*1s)t
ze_KSRxJHFKYs4h(6J|+pvMRQUCr==eR!3^eNJI}#3dvsg{@(hc%jjSVtx<p1y_Y9*
z=Kv3=p`}#}0QV@jQynfPk-2XR(XkZraoeJwlu`!KZE;Ud^uHPnN@uPE#fnrJkt73k
z^VsT-_9o{@mac)!py&wz%J1K4QfMbcaDN2;oy<>Gkd;a(tmf=qtX}y=`e%SwtDz#H
zNaxUpB9<h?3<WUvPzT-f*jf#m(py4)tq0)%_t&AAwmTWj0o@VZZjl}w+P9(Xx>FJR
zw~rLa)5SE#&0UX9RcF~kRnup3*3IGRO`8;Aty;pwVLf(?7is`YK(xP~pr5L8?M0Fx
zael9d7{N2P=nH0|rS6n9!a5(`nIa^d!p3@|sZNZ0$x9r9SKGI8u}&`mq$dCRphC-1
zy^+Z~Ciq>uSFZLE@=@whx<Z~neIQGVqKaM7=!Xl!PX;j2Rh0BRxf`nBKzXva$d_W@
z%F239O#NtdoFdq)E<F{H?#40gBHm%m!TQt`8q24m1h?P)lvJEaR4Vt}X>(10jsk~?
zFM8!=s>UL0QeIQ)k?-NOn9XAhHyrzJQVzigAS)h`o4+Eqr4fxWv~xGC-&Tuv>MQT#
z7;#siZYO8%`K3S4wss^_Tik6at5Edj@1^EszNJ%Ffb_Y}WR#Borav4~*Z~mB+!+r*
zZorp(`3H=kB0Z7v`<LLLemlYC2^&QT&rL44vl296YYrTLhudk2hhBfs8oHe2jUe{$
z3t8bpo3l~=mS|~PTg0^3gX1@!uHh(S1pHO(u`j=SvK-^<Z3yu^QQyaDAWs<D5>!n{
zNid<8?gsSrj)wb85FeGy!?i7H4eO$E1bH_v=_U){si7p|XIj(SA$iTrG|6Rso2FTP
zd_yRT67x*KOBXF<caOYHD~JXLDoN{{UL)u_6xTH6yo9lVYC5|zX)mSc*f%hfC!J@A
zIReuOUP9<*l?`D6(cmucAqSHmD63+L|B8>*EcD*kQW%8w1)N12u~a0E&x#qi=hbv>
zGzH&0mS2=o(c0)eWDUhH1VvK<OE6#;d=hMd*5vZ*sxwJJvojX?6IP{jXD9L2ks){E
zPurO0w`SNb;eas?s1PsMHZOeAJ`@i9Wa{4cSxr5P2yo10geFAOPo0zq2FjvHlGLce
zY2Y5LvjdJ^)&3&j4<6s1XkGDKUv0?RE7UfF97&yMwqzs3fJu)l@Oz;v3SEs69g5Zk
zLwUkGG+4Fx2C3?WivZbI7gIxeMvnk<_C^cft$rPu5NzN`LZE+HL9@?cG5y_+;XUF;
zCpHJoEJh!@weN%!)y&F|7tchC78~tp@G2~~fK$&Zg}J3GP)CcOZK4Fl{EEX-umDol
z$c6Q){?Y`-=12V2U>j4#KSQt<0F0=>{A)*^(BCDVsx~I#J9LS%{EeRvY8a9_wEYjO
zZT7#26S6ANrncMXNMV92paxXxDp-|7&*09Ea8BNg?6~<5`47#uis^<ZAHF2Rsx|m?
z3VJ>GE`yjWD}qDLd}gg~=&xxB$gbe-FF@>bD3;}HL|kVbEZC|@Cigv^;NCSJUvX{$
zc+c%@wsqxe*66PO>riuAvuzYW^|E-y1PCpo#z)(qZ{90Z`q)&2TxS~cVzH59JWIj2
zj_{zXEQr?Zn8sa4Wo>mZTD(>SjQaeK!^4rDjM+y(Iosdh`kG1XO4As<hoTS8dVsHf
znesh#cK)1?=QVk+dKO;3nqx{2S})n9c1dFtavh1`J`VuU20q#te70AtPz`lI?o$ja
zI#O4%OJ=aY3GH3=aepgd6ID(|L||}PHUOD-afexdLU%uetqgtHMyTIXPSZ+M?UZ5u
z422$t@~q8F0sH5{O^x=vQmGK2pEuC4P<~@l(g%40aRSdq7<;K9Ur1KRBdo_`fWLuD
zzJTQzEL<<RApah^%GL{^@=cWOA=!o~w?eAbhulX(@ObhI7G(4v=<aEy8V<1&3BB`m
zu|+qz3+WQ(GM@NVaR;SPZ}2-fi&6k{y`1^AF;k!zFI|m<2j(Y4%+JYKE9nCLSz~as
zHVp6%fmju@YfMtWt>!Ggp;M5(>`r)1o4&~8;E&zCe|)KC0;p#oBF)KO!_e}?Y64PO
zTF|sGPT;LftApzD$u5?GzPZ*v!w{WcglO@Ge)zhRKybA8hGDCW8z8RdGQg*xzTCqD
zEmbKTm23~)fjWd~_RB~EAsQwdT76K}FcL1s<I;&dDId90w$k)bMQp{@wO@&vZST2N
z8^kAB#rp%yz-)08xvGAG(xV+|D}4PAYEZa^mtVR;sSRv{QCAk|>f<z{yDpb=EvR2m
zEH?u0Y0+I`*_zo9zV8bxkFb%-ChY0w*!iKpwv!g{?|jd0n>`*q;3`G5YHf~(=-Q}x
z@1Ybwd-+V#4JSjjOPt_^{c(XuxENz`IOTBx)*C!b(ach?WV94W$Oh2gRp@%NN=OH;
z?r^m9RMKr6I7pQxxmolD%tv>|<v2v45rf6#AB%!BRRg1JZWA>qqwd5&AWY&WbZUy?
z8|5*T1KNb+neh?G$-re&tWQsNoEv;ul&;Az5lIfx4?{eno>Sk}&(U0oD{VXVu5FG}
zwbVVwh+<e2gQfQ7nGgI_|NBlz8fds+o_sp5QR-iiWJ)Ptnb=G1(Vs_IvuiW6B*d&@
zyLqs*Oz~v=xTaf!5qa9<!w24+Pu0r0xQ9P$Co$~{UmB8~-d%0Yvk6IWR%?|EfBMcB
zrczS+ex8i>aogHeE8_8&_{{dLX9k!Xc->ta3f@8gRaM}C^fPvME1UbTP>?zz$jK~r
zI{K2F13z0~!1l5&O_7x?K=T6e`;hG+t)nd9o`_1gO=Cd8-=~?iXzf}1Z`N~0dgL7!
zbI500?#ruVfOukg0{W}R+0phGHh{BNN62gWhVf?5_Zzp^(SdHBnSPc&M!6v^WfA~v
zt>PF8z5S0jHetUQU>HNNNTWX=0(<Hs-EalzHsU2I<khP4pz8e7#WQ*j%5vt>V4zh@
z-X9EHVj_ZdgbUz9a+_(iQNoAxZo)$T$>0DGlsMWi_`B26&o(SI#zg*EPNfXlQk@g~
z&36sQzEeZBD@)62ZWQ1V)d=WmO31kNdQ#R8kZv=jNcGJbvBXne4t(KD?Xq-~Iyvu#
ziRcYa<tp+akSXugrZR8ns*t-X`jvbD7RY*p$wJZ!a)`jMmR9MhmeNPS^%eZ&m;XxI
zXdLqzzf2H^%~0$%pt6-$LI+SO+#^gF0woHTP&EQbE?rGjb37)#D)g0F^N*OBF${k=
z*y%J=!#%6S6~bkGHSBX;aafVzFA7U&7Of+wWJ0VS)2^p2-vu6SvMs<q8c-<B%OjAR
zC^%ocR~T>I0!*ew?DfFOHjUl$g`lXC5zj20lp%%cYLcW(RbGf7_g4U1vuXlshij9G
zKSK55(1cq4^uKPsn*Dd3>bkTp*MJKND^Roii@zqFuJEmXRwC-7J=41Pgn+<C>Y%l3
zBQ^Z>)KtjU`^L3n^WYTM3pi)jBk?-NpABp7ftX<E>}kuDh3~lxym~8v^@Y{0&!Idt
zynj<w(RjD27?C~jEQ;&xv9Z-K87V~*9C0r5{j&J>J#fBTXI^U!z+T{W04ytLF^QqH
zIH^{+w6>xP#*Z>qq_oBY^8mt!%$Px9qTtKF3w5&;KX?6a=y}(V`t))fw}bk}X%r6e
zJ2N6}NbIOXSD-NKjstpM`iEWLP8Xxw9Z{qcg>50IsJ;ynzq&mbU1l>wjQQGUZn1(D
zJW(G`V<K;}khbf)`jNW%yiE-oTjE0F?qt&HD(wAjb`Y-<Ofo@K*66~vYy=1&c8g$e
zG-LMnE(nG+3b7Oi0-tml>f^z#uy^Nc`8`Bs{55<$!<^W)J8ogXUH2(Exdnw=PTvc#
zzy;Mka@SngNT-l8l=L=>L7gnc20e?Q{5|+4%sX9_q8Pz{Qul0R5`IuHv2_FVD?*8U
z%4+Od_{*bm#69%MBrC-U=~js`=nc~85`B|OhPgU`bFEa^(nB3Z3}!bT=S&dtDA=|-
zI`lIddlKCQoA?8}DeqNHqg-MkHE20Pg}vXM9LlzYd25Pg(Q7K7)@G3Gv$3?&`ee6(
z3!c}{LVD_H=n@YJtXY_-3X3tD&??L@visQEFD^Zqc9J}ke~k+f5Zzk4@tem#EG;Yd
z*PG}un|N>kLum`elmWubFB^{=5?72_S>)Mtg#_ocFH{x|B=I8;k&u9ZxU%k4ofP+Q
z(dfWS(3H|o)3Gqhm&@MS%OW8Oa**?(!i55b+6|2kBGaySIB&($F@(tS2T<+rj4orK
zjB!$6vPBvsB+Fh=hIL9S)Y;H4!TUzNJT-v+N$T9|^;feHgMB*tTbge)ya^92%Z+!P
z=F$M%=hy;0(!N?}r2l&RaM85$dI#&>NpUvd%SytOk?-MW)|Ee-m0H>2WLELKzt-};
zyU>DasHKK&cZ&``el!=RCdK)?6?Bp_zm7K`ROaVHuEf3^;WOprhvM}J<?j(NQI4Av
zdw$fi^u(KxSKGY&Edyi#Kpb4c%>TvX$Wjf-af6SqcPa2|<BxL}Hw;?kR-y?jx!Dq;
zndFrgrDUp#iUCF)+RLya7{_XQiJ@aGt}1n|78AEbHuY0m_007<`6T=|;kAqrJ}VZt
zyRmH*HO+HJ1m7r<6ImKiEY!_F)1_gnN0Gjj*^kp@>q}$jiO>Qw?|}bojhl&!OUE_7
z76JCztg3HJ`tjIV&BxTk#|lzY10+^8B?>b4Q_yferGGdqgU0ccI(k)DfA#{%sY2M6
zTK*cY4V?6;1=3Agzk^smob5;Y-xDm$a4qzBz+l{0GQ(`I72rc;zp36@wr~D^HBsY+
zZOvNBnV-%l$y_1O%DzBGHy^reXBk1BGQofU$k=UD3Q-EU<|qf`a>*<_W!r|BfQ_|r
z$VFj7wY)d?1fP#^!Thj-WO`(FVzEy{q=q(fXY2$NxJBA*4@B5m;7wTP19wbv{N-U#
z5G{yzKy>SJ=hTiYFN3bRS{U@4{!frDPp9R|_uDe8*>@*I{LR&5QI!*fPuKiGG!aZj
z;}rJTy%nd<UT0pFOtJNCc48>#HcGgXjQZ_qOv(_7I}dqr%(<2q9bHTNv7@g7NK>MH
zqUoCxhufSkBMxI{O;O|3mN8S=II>;a4dtSuoS+qxwi}cs<ghQ1e~WPw#%vJ`2!Rv5
zk~HRcAZu4$F{9)S^ZQWw-Q#$*t+^j*bdD&huiyy_tGc=mDPG0;{38suavGQ2GU%bb
z8+>t4jT`L0A=_ARenH<L+iPhtN1b8UvYOGh<-XNK6>Wuwakw6nO08IT$Ze>2X+dt;
zCWQ?8wpPv{kVdvzSYG?gUhkjUl#StAWbKbX=&o#TVjZCOSabjDvpA&r?4o|ZX~?6Y
z9!Ue4F%nS>tRpnv2x<1p>qSm-JJGU4LAlO9^h3U*W|M3XkX*O6k7HwxW&>qdRjcL%
znV0zoXf@E-q_+`)cr!3$8ABF1Olzj|nMo%-p%4n%BEhh~z8RscCxTi^jGos0o5FpM
zQ8l*0DI{)3f&A$RhL<E8^TNt2ZKU3;m)d)r#Bw`i!%;iTJkb?o41d}#Cf{BBuK{WM
z<n-DtSQWDM8);rN^w7+j{B;M2lzhkC|J=I?om`hx-fCrFd-Lexw2B5ja`aulX}KbO
z%m8q5`$aFT>C-41jmj|n0G&<l`oI$Qh7CjX9%TrHyJ;v&CB5P71SzsAYkBgpnn%;t
zwZ-PwZt@OVJuC`XaHz3V&2l$CsDCW}DtAxbQB?0Fw1_^2`jR_F%6^?qH6w$or>yDW
ziPpB}taNf^!|iK@Ue-WXJ|MpR>KLzF&)gC!#en3i18nymqNGue2Rly~m6(z=27`qP
z0WcNZ%2|ZxB^FY8V-%j<XB}5tW?<!)vB{ho!@tC*oT~aVt0d0z|D!G|<8Q>Szy36i
zXayIT-73$gzTn&7tKEvW`Yy;bS-lV`Y+UcpEU`g6LvSaLqnwUpN(i}El8Z|ThL96u
z?D1Pk)<XXZmn2X}bQtgo<PGb^YSCe}-a&sG_-3^%u|T-EmrG7@MYO;kE&Yq)d+dZB
z5*H5>TbF}6O*YWJV03pcr=DdH8Rk&Yh?f<?0abi<$OEVDR}na-Yu>5t`LE2FMT{6w
zs_##`S(2A<zZ)()rL#}O_!17WJ8NI^JV4M%16)mjuj+MSzNne8WZcnp)P{wkowHT|
z=M#I#-M?Fa*my6b6p;8zhGG_()h?cVviB}U{?>O*L_~V}_`bE=9NE-gkEN&s&lUxi
zC{(ND)fLd1LEDOq#SzIgRCSA`7a1e3p^GxGmTol<GMrXL`Eof9$KiewCRIe?h$D9Y
zm?>Opj9QE5ij7ctN6cs7mRfc}e7=Dawe(wp#9*A+dQRSZF#WwvD(0xg%SDtSYPY-D
zc>rTt+N@3!DKJjd1JZYK1ZWC8hfm4_fdzw+lsw}~N5r`|qIg8AsQE-iFjiIUC6-D)
zEr8n=H&DLPgrkejO6=&to{@2~(fcMZ^iV{74;4d)E=lB&6aIa)B;Qb`+fL>EQdwjO
z05PBruqsdnQZ$Aa6k!GVf{uJ7FHl5MC)TaxU~jbVr!IpO@YeZ0DB;VF>TCQ%Le}AN
zMIOl`nv9vr@Ee+0aC(+oUl6^yCeQKUD*>MP0i+^6F^41(e)n+}#7v<%Z&U`-jg@UB
z4{>jTDJ#d)x?W8cqvwFH&2|>b-Do5y`1t?ns}rr0yB|3=q|*ie<;(FS*)x{NUyW*y
ze@TXxQR0-$Hdn#`w&$TMm_>{(js|vc9a()`W4b*RdVNcGs@T4HDf$Ba9tv4zbjM1l
z&(FPde~J}15q}-Y<TSYeF5{9#BUCnQ32-NIDtT#Gqpg(%(Qb|(Vz9W`VqvH!lNobt
zD}hPdozsSiuvlbSmZnp$Z3H_w7L**eH<L_<sff#Z!4i}XYWM=P@h-uTsfKRsr*EP#
z=F^ePS{v~PLdDdP`aCM`B@qE$yZQ;kIsl!l^2+BGU$TE}tB25cfF%HnE0F6c^?HDz
zsj#!Xn)!T2anWp*dC;et-F|J@OLv#gd;9IamirOF1|5jVzOy^?3M6i7;M7w{j_*Z|
z7}WpH<jWIMM`3ZQ&#AY1yjI+u<Jp?z;HOal`B74U`hscSf70F|-_lv=&7(LZG;U7|
zIA44iLxG2qvvT+X;e&UFnjunnycc0#iMB+7)<X%oUb#lwkra!*dkDJ?CjdivI?vQk
zrv@ejzj?|M2{9B%b7GHR2-c*Ag6Do(J_orLG|tF_n<Ms&&pDZ=#O{m&EwaLHWlA&V
ztkmv_Fy;5GkCn4RKBf=Mt`J=UL-Z!}HaZQ#fOKV!n)NJHCCXTRg_9ws&{jSzXl*kR
zO4g<J!II)4EXWBXzv~2<k7G@aXT1JkFN(0}28L+URotuSToAX~ubRL#+u6Nw%*eq^
zfU)~Nhrr~;BqT9aW^iJBX-Isdjs8K>{XbCy5~4)Wmu>KcUjsNeq%ck!2YIAzEc``Y
zEI8*yER_TrOQLc2HGbu+tPEUzlcW`a@R7U=!{Q|8y;<x@R^^SolKLpQn9W<9rIao|
zaa(i3dk#snvQdjsI=Bq$eQ#rS&Xw{w?_Lb>;;}yKN6c0EZ^*BJJC@wTqBZo_8J$uK
zX^ykTv&FAFOE5~gz!10s|4vXF+koH~sm97F6>OC)n`f@Vp8L+RhBY9R*Z4QF&{Y6f
z_})Y9H}~zS`t3HD*{d3?TS=Yyz-B96n?1ofjZak^%5T}&0_1(|z)pTTMN-fc+_)|R
z(~NaGA)Cwi84YNHXv)|p&34(Su{|PwD{9xL>mD}3xm?^aw4C<_%Zz^$3S5gbYf(7j
z)}qeNj12-7(_}=%>^*9w4{q-3EJV0mK6wcMq}@y4u;~m(v>K$k*=%U(ou5BeYo0SF
z^V3*b%*32jkF3N-z@PxxFPyDgws0Q-{yWU*v7@dx`d=e$7Vt$Y2tebwjb2n)A?y<A
zG|_!K5})ei(jtPzN!qYXTm_+@9f}f#J)731YxS<bop*v(ueV(l2p1H9BZ*O4^)yts
zrOv9LlBjRD>=-w}z}t`g8Ghiac-gp9(i}GOwv4pp2DG5D6T{*v0G4oaVR(!$yw=Ng
zFy7+S#I&jG_}uMDiGhB~69fD6NY^W8zI3O_O4b^E<^Wm{hbi}+J2@U(C{a++w{OI$
z%B0VgpfYi$A%vkYqluFg_BgBYMb^<=Luy@B?h4E7-nPF%WE_{C=jF47owc3J^1|qR
z!a$_{kGi-Lq>37P^)1TJWY-f9!lHYL8t-E&W(3eO6JX8gbCaqF{k{$>B#%!o-XQbS
z#~;oVeio+awZV)Ez!eWzKAWljle&Y8FU4QoLuOmoK`2n<O~UzvSXqz@X=!BnyFsvs
zVoChUuTU5ru||2uO0}V?p}NwbfsL3ku-M%l(cJeX?DxSJ7`fmnqTR)>(=&ny&EopZ
zes2PynLdqfam}Y%C>Ai&?Rz62Yb69yqL?l(t>hHybMCmu{Nav1UM=~oQDD*`0A(?(
zI}d18GRcHkiqo?$y^M{;m*4+?r_HVkQ8pv#+ic#sWsDvdl!GtL0Gi7<4~%LB`t@L&
z8uVm+?)&>E;2Yh=oF4*lAD__B2XhV*TVFJnDZ}#4cn8%;>Wi1^EaG^^U0vMeF)&$+
zk-x0i$5IW?hlRz9TXiS7(~RHRD1TQDJVkl$*_(}ba|U>w3361+(z*}uJ|9TcwePqz
zYzVpKWM>Fa{wJh#HwJ?&;&k9SZ`RHmdYYkph$h}CURFSo5bBp><Y=#L{H*b?cSE<^
zyB5e5kOw+#=pILo%Q!-v0+W}*O`>9xjTGFi;8Vj_TxMEDB(x_`)KhFfeMi=Eq84Na
z<ZT_K1mgL64lyot$JiYo3J(jbTs2r{{Mbhm8XUj7WJ8+5rBW$8mZXj`?Jq&=DyOUg
z=*D0gKvvDt?nLj5)jal<aOktW>&SWj0;N+$@E$*Tt!}xo+Ktu*?j6@=G5j%{1PX6J
z))@m0mE|Vb+}eRPKW%lo$MkNvJh$-KxyLTx0l>F#Z{)ZP$wl5eZgR+Qb-gQ>_GSD_
z0luEUay8?}(=9XQMXs&=D63ZXp0fsaDXaA2`_B_SS1>Qq_dDhSHmN8=5s6AMa#GI4
zLF!0%Y}F%DrN1!u;HQu)S%epLX#Tu92)n=uYT&4}?W!Ya{%Y8KAy6ky1k`tsxil3{
zIVtjpkTF)^Cy`v-s%V}e1dEkc=mHyXzi~GUHERV3Sp!LhS|$kifs`>Yg#csrbEc;9
zjgT;BN*p3=7ujaYoYWm+fH`v33}hLbke%BqxJU2CRgd0ZgBG{TvS(%0$V&)0@f?xb
z^2puqSAcVYskMbtH^+QWVHP-R7Nczbj!dN`g;0TyDNc$szd4l8P%rw4-5J<thl);A
z>t7Q6YmQ;n?Sg|~&8PqfL{kaz6>}@@mfRX8=q_ku;+EFxlph*-tZNyEXP*y7p(Eb(
z&9Q&KQaht*2x*Wf%J-YRUi{-T<u08QsM<7t{{+^$OEp)|&+#UA!V&X}vWgTJ{%Pub
zih9w2G<R4hFlIfIH98=u(23=Gt=U=^N7O<BC48~2Ri;XJ3>C`Ne}~$CP!wfG=cz2Z
zl%h`%k*wR{Qk+~D;95q)aNk5BCB)d1-Fk;$9$nW)tF$UE5@el6zQo~O1vyDs?N6p}
zilo()bdx6`)I7^`4jQnYxBARam{Ns%_IA^Wq;2$6^=*EWEw&P=VZ>KREq%XyB)8@W
zkAw({jR_Bz05Jt<q6t-S9^spZlNz5$k*V1cQoQXy122t-ip^l-Z_uW%JP+sTUlO<_
zDBQuBZY1rYU%y`qoP!fw)b&FHt3gFbg(&W4VhVY&F5Xh8_43IGCN}chAPthA@s9YW
z;rTu2a#`gliWipm{JO!HU7ld<+xevsW_qw#ze9Qj&WXU;3N~w+9e&mNHI{!2`;P^E
zzAr$dOB*Q=9k939gX|e}BK=~r8X@9e9tl%Ld6FpPPfzrih@iBAI#%jJHE8|<qSoV!
zE|wzY<(009-C$xhVcr1&P|`cPW*-gsgmji>-0N-aWGC5V38^jR60RyZYrp@|i#N$(
zuvt`dYDFXx+YIbWKD#WSxdE+V83#vVC{lYNO*5VFt()V2mfJhASaZF}b9_zkI)H-0
z6SG%e*ObC-d-BN~3?0Lnj)!YFT;y$#D<ESZCWho(D=US=pppx}!P$IqFV16TtmhOh
z*x*oQuMd_uYbj!-Wx3;?k{<+q%c+7PnPHnauFh#=KNlHpM%u~uFh+M#S#_N$k59bi
zW84219$?b%t70BTAdcwH*+cjsfwS-~so`batxy>mm}C4X>BZ()roho%2E$5%u)4b#
z*bzm=2CMiZus;E<yATp%myA0owtRtdElT4k7cVSKB@0A)hj-qoCE-}5sz5j}DR2&u
z8R#sDM%W%fkB6--2wQDV{>fkO)w6Xm{HDwc-G5(_qg5?pC*-7$EJgtfjK(!40@&#@
z3tpf^c;u;!o;p<n5jgMFpUE`R0!AZx>d`oo6m7+XJfjvKvczCWce+VsHZW7FY`qaF
zU5~+5s-?CxH`urysLj(+eI+0o?({4LNj`NCMYP?lgb-MhrV0b3&?f#1A@avQJ)CaP
zS)QNSgU)T<knB6^^yFv{B^K#o<Zh0l_KN5<6hi!BnN5Lb$bMV>orD8)p!Hm&y4@li
z0Cb~jn6A#ww=lkH0}rv5qu;zAlp6LIz?WT|Y72?LOTMQNNNSo>Z82d`z_(I+d82d`
zyZ8?vs^-=|_2$v%Mv5+#Rdpup7qFYy+3{3x=!9#<`$%$6DgZ64x1q3Twy~-m!MTH6
zU%ptdUl;+r`}gi`!fD-2O3$8W`7Xh7XHLjhE%_wnHwCP73qv~_G*a&<kiwe-n8tO_
zNX4VEL$|{`27GkGLW|OsS3FLC*(e991}IjuIrC}MXMgWCn;sNa;pxbyD8_c69Sw9g
z_qkWUYh&PA4{bRn_nT;B&b=p181p;rL?5p5ePH#NvoG0FVd#AvGVtWFv<EtAH>S<2
z2TO#ho4C8Qs_Q02or#~b2DG1bF;f{s6$;lwnrut+G;jXjO7)F6|AP1yeDo(RZ5_dd
zxMBW661Ut`^FTHKZvB1udlmb@7+(-QEts4OEAkU}_HJ3P;it7~!G#-Ga{pDBAI8+x
zxMs7ocX6_jW0=3k``Y-p|6=CCZy>iN3}6J|dm0P+n?qGVQ5sNr<gi>c;V#4snyyi3
z3hiyVXP`vKEP*Sb?CxPX66P6j>Z|{Jj0qb;(fG2iD=pZ)URx7~hf*P_=ftxuu1%!b
z@68C?lIAC%OQ@p1$;h9_1af0$Y>QE<AXsd9IfV-h9aOyY(q2*A+xOCtYk!Uxt6>BM
zKh4`$(e~rD#3~%(<MxN=^7JDcr-=i5L#X<_-rW8~k@?0SP=Y;T73)VQ_-X5m4NP>q
z=w_%&a@j*C39tc`TevnTUorb6XPUy}fzY5Ox(8f@l2S&c&FO?-X*u>ONU)-YCYCtt
zeH8!k(-ubzg-|Pqz$3^~A>PIOzJ~ymS5QhPc!q;{0KTfzJx#-_xjsP?t|AEs#nb2h
zz&q|n*@U6s;rm8!`x;Psn}o;wL}+$`wyNN+4qPQNO-8P#BXh``Lxcd^zoF}^AdeDj
z^Y}||tcJfSIi`F$F!`UsPla$n8O1x5(KE>Xq%E_3*raGitROIWo`5<>qIT%IpdlUQ
z?>ESQQn8-3NMj)Yv#y<?){nt9uw9KA<P-V0Ny}o$2CqO%41{PCya09a0=~vf+@%`D
z?JBaNjk?CAGBAt~sX!Q;J5coH#0g;^+Rq7(fYvu=gfUf}jh48M#%Nvt{)sFaZ~P5x
z(_&}bJm-Uf9u9H(7pKnk)?6~wKaZI^#zIe_pvo44MtFAp{TCHV=Aq{u>Zyz!!v+9>
zJH+4C*eV^$b(pYTzsj;(U-EAB2GFK~sfKKd7E*esm~`*j1<{U5iS4hyff1J6zIhd4
z8})j|^~H9wvjrjQ)}3U>4w%q1IBJy*O0GYs@tw5bBxrArM|$?hNVYE=9H~THRM*dA
zm9{|{1!0*GQGbblC6zUSh1&J<*4S+L`zkB=3R%}^S|UcCkpvdwdEFb|Z5;IS@lkkd
z2i0Ajj~70ICllg4q?4eO8RDAQ;N-#xcOu+D>;C=D&r(1sQjHo5Q7=^IeYcpdk45Z#
z?#e{!2)}IANMS#(z#s8_!R3a-yZe2FUSbzVD^YWCSxDJE!g^<D<s8run}74Rv0=)M
zaP(PE1c@{X>^wLhp+x6%0Oa-i=a`yn1*y_8E?#mx0YoDv+Yxpa(cm!svc6ISvj?$D
z(q}LyLU+4L*AaFvle;t@aEwHiPQU%iZjy6zwD;ofwg?LUJ_h}FJfnebDjZ&{pCcWH
zGW9|&gz6j?_}5i-&Uo!xvq-2WERsFWn=;<4ZcqSLw_7dD?Mg`Bd(47cqr&rRgb+Yr
z$<?g1!nVC6gEVP#Y=zf85R!^Ap&~<zrh`{%CBo+0=~3xxRccT1eR~C)E^zdCW&vpQ
ztBT2V3qU~4d1bV_<9u4e$a$FmgTxkp@#W;h-d(Eyz}!1;%`^J>Yx~9cO@xJCfp2w3
zFCzWL7|UWr<jND`Dip5V(DdT#!Ody8=)lOTD5BZ|?Ja5@*98?=)g!2ER<4z~NU!-r
z9U2|rjU23vWOB-UFEo}Kep0|<h6(n8D}HsC1Tce&BQ}kZBKfE__QQL6M<xn?b>h$e
z=(PLDyF>%+!8dAO4WI{;V6m??Iv6Xe$rdg6jUnC{xbCj3c0qW0*sC=#7VS7VTSY!a
z@0(vjwq~^IO8l*aGYLgzg&&uoF>brw4;by%Q29<I7Qd9je{>BsIJsp#2Ay#^ik!`)
ze1fH=@6_vgSJ72+U|BVeg!EPx4fbP1_RA>5m;hus$#a)gCVX%*0-#!@?6K#uxR^Q$
z&eywz`dYYg26gvU?}JIS6l&*VKS-8=4d3G<1@fe|5nGqi@j?^qoJ&)Hd2BZJevXBK
zBqz1uh1GD((P`or74h&+(O?#P3<><?0Kb1*NRd49m6$N!OHnTo$oe9$i~=+&p2crC
zmt@-7-yuqo?^phbROuW=aK|1KW4<Wp3HXkQB(ws!<RTzErBKK{?c65I%GJNFbl3F`
zZw^N89+FNTV9Y^@Nk>)CRaW6SWRk(%BWPI>|G%E|N%VMOcPtg<+cvDhDwWz4_~*>;
z-ylwYDwx@It(>p5KQpn+q_o>En`;Z?2B--C#IlUI!#r*Lb(t9hG@tf3-d^VSk;7R>
zw?j;E@gq|C@xWb-^E~~Xa*MYasv%CeT#4(VY;`Xn005nOY<QkVU83@tgs@*4$@+a0
zFha($Hvf2bbL=M{s-`Lb9FV^F@1+l2+tmYuw3}PtUYS>p&OL3;2oOqG!%hs(MFA0m
zOc&IEb<XogMJ%>h`4}xcO3g+BZMh5t)r*BPjxMRK<#-=*1E-|d*H%|74o{obcc1%Q
zhs`3>DGp{I@}{_AwXGy|Vcc=HQ9f4Cg(S#Yy{UE#iJFbN8Nus#f&rAZ>J`su)nW;2
z2cVx>?oA-k9G=O4z}1Gn&FekQlq9Wt^1$9O#k-s3HWSjVwz6Jy%lJnLoN<;GW7*U8
zt}u$?lpgofOsjj>w0*138n4?*Cvk-z)6^xQzddmEHC%_D#DcF&7TCkb=Px3)WqZNE
ziCF{M7Efp^4tfFnZeLt6cSvdh>Khn9UqFk({NW${!Pl2vhV3CgXm~6dmzT_%LYBuR
zYVY+g6F{+O&|pvYF8RsH|8NhP97+%EI*AJZ^d`-mT!ILWU_v^@OVO*xbBNR`#Ptca
zt3t)!0KO-xQ|9IVBG|6KXA?2(x9JL=o;O?jPqJCrr`=W(!!~cL>^i~HN=VmoU(vR<
zF2htNjLJ>yi|4F#mMWDOMqA7RM`nqHns<l8WMc@?sNpMPG&flx9_qgNsBy!KF_v$x
z8C^2i@+?L}yJ^63^M+_J<Q=4JtObS({I2;d*gdRXLDr51&`gixwEqOxzt-&kELMoh
zMcZ=apQzptR|fh?C@KL<4571jLE7S+@;-I#G|RP)0sg`-R+d#i)w9WLW{)SQYE{M8
z=XRrL!J^#&TR9h}_4<U~7GC!P;*REW_^!3RZe5bxg*o*e{7*$oZdks2Sqsh9&Od7i
zAh#^n&a9CiK;<#Y<YxQu=ayf`$FJF=0<M@+@tv!e_<l}?Kb({jrU%a>E8IBfB6iAW
z)#?F#`St6w-+pGXpW+it((dHD-->!avvEz|Nx}wX%trZlM^7Fh)!NV1J;cxT>PC~P
zM@~_kpl@8j6l<A76@$Z*G;u`0MA`h*fHa6HbQOt7@zK$p+_l6OTk-f9ZeiBE4+12`
z=YxceyGe96Ji{wwO%1LB*d=7xy@r0n%tR+oIkZ|_UY@0%-?y`Fk4<3UX3ybXwd#!k
z$u`f3r-9l2YhMtTU@N})(-`qQ=E#xU*G>n%OwJihQikEqzAU99zMqq;dP^I0xj+fN
zHWTtg!{fjnZZ+8;bzP>8`G&#8Ej<sF49Bb<{w5_GaRf+G12Iq;@^teG7gLg)83m92
zwKUV9+FH{ev*H=HUmBA!fwNOrkT^R<kd2Ao)#WV$_~n0#GLHr&FcjPx{Ot<RL>vRB
zVv>|r3>1IGn3Tt&!dX6?$mI5&Ae-0m0gei*Fh2jr-*|0%4`$M(dkE$IzhLKv0`J$|
z8h(Idsiyp~gP0Z)?X18SVd1+p_;?M>B=l+GRFrXb5&Kef12UWAJo0k`&fl+qXB6(E
z3pYtEhc4|A0r`^!Jf-iA>+%yqP~1e<BPfz0wlNu`mT@R*{!8=dy35e`a$-Y3_A!=!
zZO6Nb&4A=p86!<zNtCBKIOi6eKikZBw?iC$Mqj4_b#|l^^KwDGcs4)Mr&YI5U%lF(
z>Ok43S!(ow1;q)AA#0LO?$S|>qes*_{%h&vP(V2V)tm**WH+|$>BW|r_YKN7iUT^(
zW`zc%ZPP>LdXJVjSe-nVTgG+bJ_O)VOw8^HR_UiykbZ@>0mbL5QX1kIwj637^<=tT
zl246Jyj{5{dQI(mabk@w5}FsZy=}}0=e<jS3^3r9n{)>Q%GI#Gj^{-Aa^)30B@I-%
zoqT=Uo6PR5X7P34&d!Q{f{0DpIXb)fRy_}v-Z^IGsz+`7LJ?M6?t>b`B*F_Il!5?w
z8fR@K`T98k8ADhRCO>wS9SQU3`K-QsA>m7`cn5PrjW}X44|A1QZ$l#?F}yDcsLY$f
z?+z1VIln;JUyRKqVHMI5QB!;Zdr`*`ksYTeC@V)yIYLygGZYgVc^(~wxBP0GBUS5Y
z^`HSq6ZDC;-3ZSk{S4vaPb#Jil8dgvGWSzL#zNJ>$}V-Yeifm3|2|rLdpuPp9Rja5
zx91zWtdb7F@AP-ef4W`bBcAZJl9zce0js4z7<r_+HxN8+c>g{JHuvRquhm>*E7pZO
zyU-k5y(&+h+ooaCt)8}BK0wSM1b(RN$|l~wg8`;x#6OyYS90dDHa$G>J47I*4VmNZ
zaU2mCK0z_w@m#qGlx5E`>>LxWXp5u>kcj<Nj4D?ATL-irCJGV-?alnT^RG})#(jJS
zGn53O<^zt)jmL^*OO7p1ZI?G1t@v@H3l!Te`2I|J;!=;mJZjv=p27#WnPL}38sPfB
zid%!kpGCiT;7~OD8jd0&x&4gfm3(8QV&^o7+(z(bwg4K`zfa!JPZary#^92=1!iE1
zzC~+v5H}4#pLA!<lqDt$-0TSJa4}^52|4K^j7gb)Vv)NeAxfNL07ak*4z_`MK=9s%
zps6_>YY3!}sYsr22fv^n3iRZe5Z$+g7G@qK(BzQvRJCyViTM0Pv@{(u&l8`ih=LAv
zrbUt@ivY3fZdj<iFcH@NmCM^!I&2VQC(k_s+pD;914&%v&ZrKAK#raqul@P}f*RX}
zaZkYSZg3JTiidA1r7O6rZ$*xE!~lQR%AH`$n8CWXjIA}VlS>lxDc3;W$gz()D!L`y
z1qK*!VZ5?{$(kB<w+n?)2umLfNalOzUD(dNC{jQq*>xZ%i1Xy=yJ1*NVC6!ls-zP@
zKRXTb50$>|S0%c2YgILOf{p!6L(6H_8Xg=E;v4ZAUX-?_*CVGQ@<Zzq5RP1gX<q53
zb#dovbt6uZwY~0Yh7-;@4&AH1A#ysIyVKVq(@|aL;%A1!MRn*#4F)Y2_$tncv(o=@
zax0i!2!$jZ-?nxz!La=R`oayd(?t54-5e8{w?9HiNNa=>(*0}&@y-7x0cmUZ!3O+y
z4Y_`G6UzNBu`AG_0Ii26niJ1n)6SJMUJT%J=$-{S3FD%=NxbzNYGdA#KXwCvDAmy^
zWglr3iYO|;4fbXk?8@~U>dcv<!e;X1#U{LH0dCC4Lgk$&Yf2?5qSW+oO)xddcY^8q
zqW*L0^_$3$#KTugGTrydn2Tue93aQ_No{SXVJB!uO|?X$j=1h@#D)gj9@j`+<F7HX
zQqV;3dINx|C;=LgUbUevGu4ni08%ouXN$q-N#4%}U?Wck6NC4&=_lE3yKnj=*+N#r
zc=vZiUj}vrdq^6Ao2O-3WXA$TLkE!&-Ok5&3I%VR$k%qZQwm<qI)wgA1c>n!ucea@
zWYb(+F;Y=n<Y+ie-*Qf~vJ&E0a=sv-9jiPLt&;*_ET2wXXWe|6r`-cC5XReVh@rP&
zly=AfoXgf&6nKw|Mnl2I20Ug4n=*ZK7IskRX!DI(J-F}NmN%XKR{<|r(AwuVUke&^
z?RAOpzF1aSt{me{wlki6XMYwh`we9}W$u83v$~@mLQC4+HzUaWD3B6M(%g2TUtneW
z-cY>iF~67Y9RJiFjA3S1dv;7C?5{Ru6z~x`Da|g=rLA-7@TwVVS#exaBu^DfO_Ynk
zKMPn}1`f(-!ByM@{;W1gOk~lYmAp)1Hf-ydaOeSuKKk>ituFBba->4Tql4YaKw)28
zS1ev|0}Ozs?u3Tuk4wxpTj>FSNHVzCnd<cqE`&G!%>t^ee$4I82JDbkeU0*X4$0`e
z59?J)@*5D0RA2D4&S8>8)~)ZQWUN*lvMF`3nQjF1TjlG$#-24IQ_P@aYVb9?%7W`&
zq<pg8+Uh<}S@gzy(0dN8fxW~uT;pyP`NQkWi&zh-Vw*()wVh^&laed8UK$<6Qs-S1
zY_lE-?K{oL4;!Vzt3064J=+FfIFG?A?wf)5G>-k*W4A1bjRotk@7QO$dQ_k<ZD+R=
zKb@Q-{w6&~%OyQd5AZ5Hec%AfAfoJ(2l>%m#Hzgbah!+b7q34;wa7;?fo*Rw4uXOL
zHSaOac;{>sek#stk%AAv^B9cGVNwtQg;;fy_Dp5e@LzLEV@$f1#G5k<a$zrG4RG|X
z0JU1J8u6>9wx0=}+DoQZJj)GsU2KNQE~`&XE{R%$;dFZh%#QFsI^$gdeoAxs0OQJK
z*56a%`jGfC2mz~(y@rd5gLmV->kn`YPcaeI9D!xg;&=Y&hgrQwF|)~3n@G~Rz|Jj8
z&2XmzEXG&yO9&L)(6{)(q3t+J-HZvLM*qa`PgBRa!^vQAA5+jh;$SyS$t|EnR^fs~
zi|+Q<zDRYz*R#0RSSWgQ%d3Nl;ukXl(z`~M20i9~CCM1B!^GCC2|?;ul_B-vCP-x<
zk+Tz~nz3g^!Ut2vAU2dbNuv&IOkv2B3CvuT`vk2_w4<1m(4G!yDqNM;I|$wWRCih%
zRuDm{^vNWiyqMi=M?C4bfRdiS_68y!BIF2VUFOuYok@Wkr`a^mt<XiHxNIKm4QIhk
zirbmhIpsWkE!TH)PpJIQ$gZWKT$@`fEbAZw*}tg+hwh1B8jq_KqS4w>TDl&jyEipH
zfl4l+qmyBssM;}a`u-u~+q~O-3q<KSKY6q0eoU1!gRViBoSc8$n~bYbrD^CcE~1{5
z9$=m`(K(DdU?zvVg=_Mxbecn;mAsPIq-z%J@n$10w#KP~oM`y6S*JhWQ5d)3?W6cV
zdN%b6eeGw*jS1zLYf5$2doJR6rI3q~FY?JQV+Q%jG5f7shz6@S-OHI`=yH0y81?V8
z<klzw*rm=i--KoCUwi|5koIrN`ey!fXzIm1K|wRy3(-5cCDFV|r}Ep8R-Yhf>N<rY
zG;91&KfwmhOT}*$^ap_23rzC&;mDY%#ynBpri^TMb|&fCKxD)hD(m5n1T?1fl5;sz
z^3VWb;3)9-23y6@gVoJqxL0puPLOXoiqbi>T9QEMMLjidB!v1+1kq$-+?g_Ys>I=P
zK_r(VS7ihdlRGD2Ly`gk6nmwEwLmq2CM}wFDxmHEHA>=4L4oMLdLE&^aX}OEn-!lM
zE=bR%^uQ_MscSdr*T!-Wr=xn1`<kq17A$!9y-z){V#r1?V;AU%NwxQtQ!I*&id`iX
zl3h{CMb;+<-O&uVig&u}p{FrsZ2;9^V;SzxV&=k4aw>b->mMm7PLvax()wIsQU)l}
zKhVTL8)KOu+z@BpH$q`~LaD*tu>luLtZxPok{k=ZUC2XV0Ode0QqbjqKGmIN9uFEk
zISoXd<G{JD9XU#|vW2>Vz!U6<D&v#RqBeFt=D{-n`Om>jA!pOb9TysULwXeBM(CD<
z^Si*!%go3-pXz>_t+zzq8GKpWQF%@?*_lJgYC-Nj>E6EmibhzWn5Ol|){DC9Fph+M
zqalmdoCowBmT8__B8$LKk^*@hW?Ll}2dcnP<s_JC1?jm%+Z=q&gF6DFY0Uz)<2*me
zPrxeV5oQS`TWfsJ1atz1fd?m)frh_f$gh`ro9I9vP&>U}aVloM_&CB$ye;INyR8~L
zP|fVGb1K^qThUKc*I`hdDtFM7ExqOXU)N)WE_h80{pe1#=MPl$P5U8hSpJ1DDd~Gq
zx$uXI$+b5kM}$W3)xhdP$Jp8Ej?i7Pw*W2{hkhWy8VYUg6<}tcBGBZ_$GMu{+sl0n
zId3@5S*{_NSlchW3wMgO{W9l7tyiv%C9-9uI&!Lj5<KU;wf@i&e-AXYCihlPGT0!O
z#oTUH;RB|w+oC=q)u-Wl3t@=yt-Z%^RIPDimUpL78OdSaC<>yrE)p&|<*0bY;>*n?
zxA4^lKFBTLS8)RIlJQiH6fe}v;N0!wfijHrsX{aY^o6^j!T2J7UN$IZI%o(N!@|{g
z+s^Uz3vZ|aN_wkTez(x?w~^_xW)mdOHn`1?6Df5OICAEV{k)lOJh>XD>w92m{+jXq
zIVOt_L*b`Uhvx^7g3=C#FY)9z{k^1-HNDnYQYJ}V;omznSbs<n_rC#C<el$iM*Ou;
zB~PgmF+9uiXaE#IOqtYphE|{k(eR^o{;MC?*hqE=XoujHq>3fKr65kHiM3ZJ0*2ah
zfhj9LF717G_8y%G%2%7OT<@-q#sbCe`%06=(aE6fP!&87i05g<poRYic!5c)KEebp
z%@;nIDUo-mwx0DJr|-AyQ8()L_kJP16Be~OMfar(04*uzw7^ajtY+LMr}IoCb)+MN
z&Qb<XG?8)ZxJ&3f*9vL+TBwjQeXY!-&_yQ;D(B<B{|k_=^V0s9n;eOP#krDWctq(b
zn`~IAW!aly6~RhbY$7+QH-UG?uBQY3W*7c`+4fqm0Xa+`_KfDFuNAF8!ENcR9#c}D
zVE|)?f;oXF-H0kSl1w<Q#EX`BH*wKND4cnt8mlJ%nWX>NKzQt5ivKbBv|R4cz?H%B
zVOWq>am>A>p)HaGO(2PE_mwHruiuCcPNlC$*DI)_1pmF}giBvG(?pre)wC8bOHJ>=
zdy9uH?9gy-0APD$0N-*kdA>~<<p(H!*0VdD_&SC~6=(l-sU?<$wN|z1m)s?*LL8RT
zwCAu<ey}0QkQqcxnkW#_nLYetv?MI0ko*cw0_N!yvP#k1)oFqC`?BQ>XZ(=!5*%x>
z>Lvr0;v_YcWmDo;(zg1H6RW;rs!V#mx`Gf`OMgPDsIa_WJ86@S;<0>xzm&8zF1&3B
z)z0ZmLVh5bV%v@{x(!`hLwD7Y1zmEr?VX8!q%DaDkMaTCs^)CMm{HbSt)ve+dcE33
zz=vkn)h0{GC1zg<i_1BYWloijSYs3fU%ynop_7aY37vC5!&X&zj~9V{<B5*H1`u^i
zm$k`Sk97PT>x=ZOS-_`$cwsQ|W%5St5CAjY)1&5fpYtE3l#M+HdjRJ56sJTjgnWmg
zbl_b*!>IqS)mLmj;Xo^kWNl8+3Q4U0clvNWqpVgRaDfco1XW8LU{H7wYZq7$lt_oU
zI9*Cp{&lBhe9Z#RuKZ$B>0N_c+w^ZRfk7i6ltp4lBS@8mWNUGx5n325@E2$4kVJ9Q
zUh5iz<-P$*+Kuzr0RjuHS?_^cW;G5gxSt7xQcfJsUlXEN^~hA@0>J|9#01jv+mQ4l
z;3G6_SilT1gB?M~LEhti@TZ0ZhK`;_uHpo)<FxOS{9(D>b!e}sCvG6Pg`2^z3e1;{
zF&3I0O8yuqo@qjA&o&zlNGo5WU8UGvqUm;bX3_{yS3z@7x8r!7UgXo+dXyY=Ra3|#
zcjb02d~Fr0uh~0O{F+0~^63IQErqzYj<J&}@lyQNdsOBUOeHE-8Gz^3r27XfWPoow
zT`~NL7}X60`x-ZO9-!(l{^untw{g1+){)mW@um35#96;v2HEy-4pWb%i$FI_%qH?~
zha|ar+J0|c>I^*pTxR-ZMdFh1^^3La=t=MaZcnwx?~VMzX(}CJ79z~j>knA|BI%xV
zoQFonr#Tse+tVoANvo?<#7vE$Q7S_J!A(X#M(fn6O%N79L8LQUz-TKf<)G+?l}s1H
zy~HcZYoD9;{}-N3N4L&m%sSf|N8*~<H_M5xY~5Am*Cl9|pSe&ZoTm7GlbLykVRVS?
zN3O6GE?iu06oaStv-BNj$+N+M1f)3siQnvM=5#i>uxtth;?&Wb8(X+j5FzNDt5#bJ
ze#X_Gjy98qpT2F*N38Zy?k<~l>O&FXO4g#i&|>@ctKjI43(JxfK{Qgqf?lrXrhmVa
zZ5X(n;Wqg)iwYY@O_h6Ez|59@_byE&a`7d0q`K4lo7T_ZjHxB~P0}O);!xclFfB!=
zQh?(Enh$h_jNBs=CyYmU!@y@kfi(}-uQCp^7k)*!L;frajrAq;o%Rgg<iO5n!l4qQ
zw(N=Ame40+rio62FFL87N(H`@H%c`A8h}q;DOdq6``wMN+;r05(*S#yI{FBjlK_xA
z52tev40*=BznP~an7?dV#=(Yj%rfDf>7B!evjSj#QT6oA;4OPf7^zLr&FUx7Bb#Rb
zoyHRx+Hr>+3;-Yn;WYE@CV<K9AOdAL#v&@Wp~6!XG@)(VvkJI?N#C^o5{~xQT<Utu
zdF_(XBgWenNeqkgX!g>21*D$rn2!4eWHOr6m>D6b+NrVH93B14te_<_PnK&oFv6>N
zc*b9J^&wa{mM_V|hPQMF8=l`+Jon%<^RLkwuhr}*)MpN~Blw}|RiJFyUpz2fQ?IWj
zTE^)g?>$l`>EFLoVajH?Qf9NaygJPpZ~u*XZJlECwMcR`-`2b{?{^#(N0F+)pq&c8
zqYI9IbHJ)j?Py??x)ajZ4@%6j2jkY?5yxMWui*9_V?pL8h0)-@7u6g6<-f*nIzJ`S
zuP{^P2^$3U*=a-eMRyiHN6T$7ranwKqiQ4(8K64~VOX6Y_hJ5&dra%8_X<gqeRM{$
zPQ+m6993q@HDOt;lT?D@12dsDr35mX+8MoQ^qGD-pv)OK(t0=hxMnDwY|{?d2_Ett
z%^XCtV%JsL@$M-LzOKXCJ1`G0oiTIbM>X_Nb!wCVD=e6Zpb&qOo^lU+JVx{mK|>z*
z{D!sD)3r#`(YwqS_ulw3(JDk5a?saWHA$2mHF~12I*U@`QKBKt;@$0M<iq4_xI9L`
zpe|QKT~w&(I@GW&Kly4ar<3fRLy%xw6Rk^Kwr$%syKLLGZQHi(sxI5MZQFW1dXxLl
z-n+AVMkjKx2Vbn%J0mi4rEVyO{ru|hnu@GeybN5ckwNlZMcQu0S2EoAJz@&H*HMZ6
zp1>Cohr%kMDch{9-?X&Twh?Qbx;=hd@3dZH(>p)aKe8|W4#E7-!(j`+6A{wnzy$ah
zKS>J0G4k!0zUo3955gO30zB&D{ZTe(o+OVH9yIMX)lZFd74g-Yy=njeN=0`vso$5O
zcTohjT6CD{CY|6kka<t%oBgNEumx14C>fSLi+&HiarLHs4j0gb)_N>E4JUe!&&F-F
zXGwP^tA_}SQX!J2etfQtJe{eoyfe&ji)|1U-NDuECln*5(nW5a;YiPjZcm!tk0}QB
zT>(5i*!Gez@ZK^yLKlOsBH9Qm%1Uw1LZ!mt1Y%#EsAHqC3_W7ko>)tEkP=0?MOyS+
zy}>bgY~AsU5~5(TaSzp>xiEqlp<?T{Ud&EwnXZMdBAi&Pd?$_Xt)y~@>X<FlwQlMq
zal&D$J#04mc8&ZE_-iiZ+`XrT{;m?tsWj*yxrL%v_^NA@JzF`@+Ug*K%>ASv1Y>A+
z54JpP%28C-IRIEG^K-w$PQg++M8yG)QXIne=s{h1#0`q_G3XPtt%(hC=0X*bbY#US
zpb@u|KKo5#^L%4ByWwco>iyfPZ>763STb8WhtVyV<?YF}%D40z$%9}6YH$4O&5;_|
zGdI8x9>gUmvij0dsDn1GjbQ$!*V-VJk*0BDCdK$-l~lPuK|5{$#|uE9*9=CxJfMb+
z=3u~;wssM~w1ZQ@JcA-enA2?j5zRz3=RijMO$yc@9F#NT{6A_&optLV!M{;k!4FM}
znc#fq4<ucG7E>qYVM^2e_Dfj%o$@Kk#N*bY9Tf6GHSL&3$~exL433#u)bhi>XQ6=y
zXEn{)&QB#x#|j|GHTY0DZJ{man*2^FY{LUuL>Va3^SUReasq?fCpy0vm3hdxe!b4}
zaTW2?2`z{GY(4$q5F@ZRzMvSzt3VWT0Rzlg?D9+G4Y5FY#H5_6lhqNBFRXSjt#wwE
zqle{fZBf^KV7Sj>9_U$25=-Bt)ZNP}yus<J$4kFth8?V4*7Dmo79M*Bt6!MThZ$5O
zD_x6>zr{|DL_w;NU*CjMVrhS{QI%xRwE|C~*P_(CWQB$QuuK@uJQu9w>jd+U(lAu)
zsJ*UJwzUlJ&+X*mhwzNs6`F+l?PhMNN`?yl4Uad66uEm8ZYq@i%;+^@N0%~(#y*BR
zhY_g}X`1s>LRy89<k<gaxa&va&-aDD`PYXG+MIC~69;0oheM6co0L_7QuyN2MeuLG
z&ru)cE-|@F)=q8&rRE&xdt^~o4vN2Xvgn)iYG3y2huROhNy2J;QKq5Rd*RbLQI%Ek
zx#TUlQaK=BQ?iMp@m}C$ylM1ot_uy0HUpOzR3IMkfV)Mkb%Y|8ud<IHx}zj~ORb|s
zH%fBGfg!4=TKytUk`5RtIeN{9Ll=F4{q!Ve_j(Au&Sr9|B$YG51FqIcjn9Wt@ay+8
zl{=@cQ&)w)4gfi!Su=7Wmc85OY$ilI*cxvES71W(z2#ljyXVt0XurgukWNhk&=Xb<
zO>V$`O#Y@s-4fe&PSa*U^Nx@gS_bd~TPJQ4moa6kdH0M#{flg`6O1S<i<?`Zh3qP=
zJ;~&pi760Nkz6VLz!!CigC$6nTk{Zn^csh6n>7}Bbd@p2ku%s(c8#cf->g`-7R20R
z^(~Ml5qM_zV^PNh-r8`IY#uzTjq5@V4+MyB0Qr<6d2vtc)X3-X3W6k6gJ+zMtO4pC
zZjS&|L`HMU%XkTwRbdr&8jN$26^-2?dD<J4PlAqL8U$)8NM{+12ihrv4jwk*v=v+#
z%a*9)@-A9$<*kU?fyO4X8k0m^yW_0)?u>7aKwc@PP!76By?kvJwtmMKZRv*J7;Djf
zOqt}~daGwQ_?XXRX!%`K!!*Gl4@hxATybKo_RHHS&ZS}49z3~-EYtJBYP{6XSc*NE
zNzB0?0xbZ!Kf2;ll0{_JJMO%6wxq1sRN15hdTYa27h<#!=X^<Ne4@eFuSK4uP#KAa
zWP?gbV900yEiH883ks_i%_Pv(65oYao*7jS_^>`*o7&aIIx4cc{w}w(rD@{#{9sNP
z$NR*W#<q#aR7pNe+x}RgGCG3gQ5MeCCJZ&n9pDH=)aH<UauxXenMo~Df3&IuIbWQ3
z=2}T()hF-@wGp(j=4pl5%-Uj4CSl2e?%GO;8fo42Gu|bbIBb5Q=2R52sU7Xg&6yvj
zP02CGUJ@7~eGBRKM%}pn0yMe-W`vavw>3KTO11!lA3D0(Y!)KNr(pg&3U01dUZ<-#
zb=jCxGbc$dY=;$3A9vxqC6=h;1DEH9mp;(SJD)c7*&QZGs!&;BaPt*|pUYA>@z7p5
z4Q1OMA$Q|IAeXypKfmoqn3FTg>sG$##Y_?Ln5bSBNU|7H*#xFLVrv1~(dieU(t7?K
z=DAdsegn^I)2CouJxAZ!5|XT2*3gco{LvgoI=%E&Fx0VeU}WPt<a965sTg?qhGzUx
zTI|^N`&${Twy~zv9y3E?$|r^Fx-A~u*5W8P@9ui`s?eJj*2C7VMX`v=SysB*zR>Ex
z`enp2;Z6pHgl^4(;v2Z8kOx(LZrob>Z^=7&1Q43Hb{io57@Es?mac+F(55pJL7(?2
zopP#_lf*ZxK>~oE?2B-%-ug5JZl!`dHehMiW^YQuJv2r$KXpFug6w=c+g-p+FdVP%
zdYHcl7$)1<m@=0Nv{$?QURf<RPz6n3r4HI}fY_t+=c;=?P(k(s5LK6>pn^qM!Vg<V
zvc>)&*{1Kc6Hw$)Z;j#orLf?p4rjb5HqQ#K6hL@C62j)!NwLsS)n08?O^oQozMIOn
zSVJkEJPW8LOGZQ}FXFHf?jUe?jtYMPy;9Hu;kRBjD{J(~lY*KU8-$^$37-UJ!yTQA
zuFcMg{(Iu36-2(AwcFf%zDhQ2eU`G1Cvo(|8JL8WZyGcjU{*45qz*_Vh6-tvXpeDs
zQiXDo#}~7la9OElcPMWEG*L=|nf$;ie2<OND5amBkpVnN^pa6m5JVO~2ZIgH?Hzhc
z24W9YAmcBU_=Xdm@fgMt2Moe-2AUJIHB5KYI^>V`rfB=G4g`fmaE8(I;rjc2VGg|O
zE8Zvgv6EhXUN(QQSMc3Q%m^jX_>iIyEy+4|#cMsV2Ekju>yGh51P@fi@e7wcKr0YN
zQ(O7>o}Xv+;0ZdRsi7YJ9ToNstFwlIAwV<lg;r(wxSy>6<0M`aA2>zM%_ep+nnOM<
z(8VJbl;AVjm-Lhz2*g7v6&e6F?q}MZWbO^9fbH<6Fn+xl1YH$|Bcr=OorEr2ulTq;
zmAmP)LA=nZfElcY*xC8_NDaS-wR+;n_G+CUlWXZLO1|S7o9Va;#g(DXja@pZX;H8}
z6^5O3p->)203^TKj7!SZQCa2Lb&JBZG5VIkv%3oOX_cQ_IaDhlSBs9gZ~hcmEP7@5
zdGF)b>vSA!MLWCQhDWA-Rdat*)7Oa}OGgN9qL`^GQR7%coa0teIVyz}7yw0&3!3VR
z90wBdzVhPMq=IE~oB4)8UvMd2Ln|E(1Z|O<mihH=i=%m#pVeIHz?2ch3hg4GfxbQ&
zqu3@`_tlh!<yyp7xLG!(o-gml0z62ZJE|!J>!ReBz@HJaM(ejUY>g}|@>53~9rg)G
zQ1~spJJISk?)xe3wbds)sox!q;le%^XP!;ZBuk;$zZaG7nm|U<jE~Udt<*UnZzp?y
z$V84uHo*X|LklvHi*}S5I1-GzRw>)qPE*T)W9anXszfdH32tP+a?q#ete&gEfQNA~
z^q|@%a}db%Lus~1%=0(W{N8yV(=X!1sE@|3CSCf95bJ?s7A+2O+T&iS`sC!xvf(ZI
zrgzlsC9%|+m0t6|LM+?c(xhgng+VeB6qJ3!EQQvpHj%oIwUmRSjGN+hcXQ~}#C90W
zfe}T4HtE9na88bmUBIw@e8F}?5$R=0DVlRfGR}fka-}Pyv%KPMAP~rLp^Sof3FD6J
zbfuZY6Nlfh^i<p+7oVW;=(O4g-y842Mt_#EEYztf5pdI-K+6YoFnfL_y2yfxQPII5
zCLl0db;Fi{d#M*=krhuyjA4u817`pJYNpg@$N6qX^Jy{9dV1L<4*14DEaq^g%kxxt
z^(XsLs6reKz_#%ThjP!M4P-Xvo^MPN)BViBm$QDqh)&Vvzy_oX1UY#jpl<8GVN!6n
zxTGG^FVE2?`$Ev3b05}Ex)Rf|ljn034F~Z^!*yfA6)?g_sJ(Um9qMac=^iB-f3nWE
zyj!+uC%;tkDAJx`U;t7>C{t(F5aDsG@yM9rsh0r46K7*xZ|IL?OC?N=f*Gn4_zl?I
zzxNIbLP;MO4{KkCbhx@eN8-;~hK+PdF|2TLAelTfzKd2F`#B}YrRp$t;E&{466mnw
ztzNI7x3QPetx8?Zj2Uv(F-pH*?#eD+5WZ%F@7^CnMtGTGu$o1T<v^W1HFno8-iqY)
zr;VM^{ZIoA$A|mI&h1f{Ey$B5Wx0nFmWKG%pC#p&&@YFw-|g=3t=(v8kV#`(bOk}3
z(Q^Gm&}jtsc(!^lIMk94LwRl%xF2hEuariItnS&FnVH=?jLS&R_g771+ikLdSQ4mH
z?Lh=m44D!wqs%#H1v^w3&%Djx{xwvq#ev(kOd8L-@_KZif$1CxZ*xl<Xu#?t_G&jm
zN(_j)aTikHT`fxK3HgD`@3kY#%ozbAPD3S1MtFc)?-Xn%;m>QUOO<m%P+M@xqJb|_
z!+6>;RjyQT;6_%}6FJSq)t@LQ8LRn2)Lblc*SF<E0LuBQUzk}^Hf};>siu6{Lq6{e
zKGmK2gBgVp1seBl#UlBV&G$M*vBlNN`R0I3#6&eHxk_$}T|BB!;G1JR*omf7;2{=&
zvJC6=BNNf98@YG?NU=1kKtr9#pD6F_xk7AXYlvX4_9-9rQL_nYEeZPq?3zC&pIyiE
z8zUd5?p}JK8LkD&Jx!vkE^Pc=Vyj~qpVWve6o?pv?hA`F?17<Qy%SFIGC}uSIZB}8
z>@&u}93vPB#)p&)Zutu190u$KzVn1_n^8KY3|#{4OUkQ2v7q|M<>_NlKoAah%$7L0
z(C!1CdB^3`u&aSe5c@52vm7M+Yq|qlzyNOKTo%;&vT!dsvPS=&=DVPEH)=4qqO06Z
zz;fRPky$*9dHoSYs!`>1r(j)wAMV3-7qHX6NkO~3gkG2-QAt&Ev1HKt+-m_}%q$y$
zLRPi-?0hn+GTxHwScTa{gdZrLTiye8fk=VAj96Wgr#un-BYMaZl=<&O1;LWhjF%-}
zd&l>$+G6oODc;Mf6EE}e>KmJ`+}=o3j_jm6X}|KT_B<pxTJ(I->-KiFIhn!u&_7yQ
zcQb8kSu&$;jZ)AuqR?HZjq%_iKWjPL3{c4dO-I%ja)!A8&O8^T#?@sed)xIDx_c(F
z%*OzN`#dyDHWki1gNSB4fjfvOvY5@p!3<;wT89EuYSqomHd8{6!IZ258uN9bK1;Dz
zwt7K>77W=B!Wwk@`1oEeTuE~JvKV-z6FY}v5|bW;#d=ODmn4WIOzTVfxSjx05rW8P
z924`0?fZ0SS>}7iIyCFXQ`lyD9(OQi1n8XpcSu+(@O@;K;?%kD-Uf$A%%l$fUu$zz
zv*q=YzL5!l&kl?Z>HzO)*9Th{26!VCW^|)Br$pK4)<Mp4u+q)o@T+_`j;sg2R$l0x
z3BD`N>YRRhQTyBd7MOll7WwuJ8q_DqQyW2}(QCyd9>x%uBQZlPp}jtJGN4NsO03<p
zXm1tyZn6riVsDpHYG1p-X)uIX635;Jd~4DyEcU0giR923$8VK2EUgvnu9((1dz|xr
z`3|y`d;@L<Mfr=PK+->kCD6p=O}xI7O)3kSYtx$2`WuX-TFkO3uqG*Hn8BuO9NpH%
z@D)fnMeMT-JjU=Ywq{L#%Dg@Xqx_w;5DcaPl%`I9*Y&YA{0`$VV8y&XVcDmpV4i2?
z_3@yxTANCW49K1FwxUQG>iF|>fszr!9ZglMd>I<(%2GR_9MGKnj$NOur(vLg4#~Fb
z*;F85Oz?Ue3^biO6|=U*ZAnl&%CThM5S<8_=*xrYqL0vKoP&F4&?1hOe<}L2O8FGV
zP_M4aC$KZBl9piNYj8yURm{&MXXlvXM<s?sj=+Tqq(k6pg9S6$9C_B4lj9XsHQLQv
zj6y!fz%&M!X1;Y1YoI63xi{_M52e{Uz~`m-5nO&H8FiUT6%_}XT47aLs8B>AdF<Il
zXFWp<d$?Wzx<5hM6(RCA!cdT$<x2B{HIx`@j_0xAEu!<jk=SD>DJG2<TSyty5MxpB
z;vYKF?NA;>9wo7zFj>UZSZ1eIfyx)^pYX~;p%w%$*wk(B-#61aYEH3&qu+kX(-r7c
zYzNb_!p2~N)Lw2U9E~ul^W|maJ0~_dSx-BBbt?#EAIu<Y2C_hU%u53X*RG$9x%KF_
zXOq5sMH6E1_5j+BMc=zzDAnwFDY`+Hzi|v#&z6c-AI8QSvJJ1v+1XytV7sxRxD?~o
zI>^|LCdeb3`V<71eM@Cn!I2c~giAzQ417f^msJojjn~qqibzya(LPJJGa*m!GCkai
zRq<|QAXq1Ey67GypCt&rat!+vK_*JWexdDOR!^+7Pb-Lb#8+&^?)hby92=t_ZwPS+
zr-w`1?-vpt99`S5<NTmH0{4^BvmoOeiNxm&<;gq(lrw@k#{Ss-6ZVJUo3J#{!ySku
zgJt=P*yOh2b<~e#btg{r2^3TeI*hRwR%rx|r<k9#y_wJ7gi*gG&RWvD;z73Xjbi(c
zqOQVmp4PS+lGn}*lkn}hY49$4RBA4=ZyV#x4y&P~U9O874epFo5YN@yvkrUzkEZn{
zrIK`iT*z1wYaAF~IjkrIHRmg{*M&}6uR5(Swk_$@B3rW#5x;=#mPaJj7sNZsDJL)K
ztSAB(HatU4T;I*Q#k>x1Nz0b1|I}-Lq~Q1K9?0mIzdUkqF(52_&CfOn;AT-TI+k@-
zdA~!HXrt%lH7YiG0D`2dgY20-fO^onADSysgl2^9iGS=qOd=)5BkS=|3l(sdoz+zq
za_J(>G((6M$;kvpy{}F^>S9xC-gi!pQ-_j=<j!>ErhLd6UP$-q^Ll@0bx0n>XnImy
zPmn2mD>?Kl{_cEfVK?hXrg)^GvDaLu((!w7BHMK>A=K1*<Kml0Kxj8!Av!0n&n<H!
znpIe8K_RrkW?)Xrq-LiSoJ4!)IWYC=CeCXxIkAZax)))6!4*`8rPgebygDp5Z+*#X
z+{F=#od>Y@;4Gf|z-;kOz>Z_K%cW*t7dxnpHJl*edQ8F=H^IGeYF{~~2_{=H`+OZd
zp$(fg^ME9~&YCUB^>etOL^T9UhYofYVEcwK1Z9duOvy*vKFjg-H8yB<jh=St3f<9S
zRruI5cKc5N%^^y_U6mI9BUc+Sr|~8XR-6XT%J1mTp(XicxbbsCBKu5UlC#5*SyZ?W
zRCA4#BvE&7(i)k>y7g^IhKz*F8wz2G;hL|FQ7ln-4Oamkk`Ozac{4vz@3RE^07_+M
zOTs_!+$QSb<o8fL@U3_Nnh#M#smpYRz0sn)>egsAlOYFR8w-yFA|7Te3HqW!4U*X+
zfjIE+?D{z&-1WHFJh7l7@QAd0;v$di$nzJeIzQomxVWPSeNYgsb8Eu00J^If*DbGt
z@J%81Z9Y&saP-0LRgyP}2(@ZMtoH%$X<y86n-E=Qy0+Kni6VSc@!xWDi(Vfguv|vY
zOOY-S7c3Ic&7C?1gbh27EQn!#Q;##^CV-M058x<g(Borz=OM7O+v;2*OC(eoDy~ou
z&S3gc{KjQNre&_p0KER$E8Vq4k_(1|4AfKuSe{h*RqyNJ^bO{1z3JT|5*N&_a<rYQ
zRk|Ir72VwEnXV@UH@xD!=5nn8sCP6ZcQ*44R1)K6Uj5T)h;$FkCj`2z*uQ3%TDkQ=
zu$xgX4dv9nt(`SYEy63|eMmRQ%qRf<sauH7fa?|rnHc3lQUT^HWhtQbM&BLl0~E~R
z5yR*+VI={CKFiE{WmxxyGu)$EZ+!29aD?R(C;&v`nxkI`IF7Ii0)HFIWYVv9A~R;v
zlsgoLPX9^Q#J(Bsy7z~P4VRK5n&YI9D0m%?hA^soS$<PWYqAl5>OFtt<Dz<kQ|@mj
zBMb9Ev``(@Mjv)qDU=`b0_SuKX+V*P=TaOr+tUsvK#ip{dX)wc5w2Y4HgZ$2Uxce8
zwLiEys7?A^&H3x%8pf-J<+5z@kBdi)c@h%YlT4Tw*l2p^*P`~GiN?C499jB#IRowA
z^3CP}U4!};CsvWa+J^x}RRD__9B~;QZgGDPB?2{&<04aMVf*QzN98xXy4WoF;6}hP
zb8Q98beje{eA*enmJ80$l;-I0!$+P#sp-t%{QKpXJhvOs<Zt-hR<I^#&k=m0XqluX
zXzdBAI^(F!GUeAoa00;A9&~t`iJ>`1-fh(LfxA=l2-_)ga?Tn=!^jv`K+v16bI?1Q
zRaq4FBj0_zEj<MOo`ZbVhF>KWfMZW}@hZx2mlBCz{j(gTXlZCW(p~X%cJ<Rfmvm#%
zr+l_wx3Rn^tEcUBlIoH@CaQa!_0-MG)g?_@=O|k5)ji#_U25y9xQ>%q0+^`8LeB3%
zB;ma|xe9@tJnJk(94-}rqWd<ht$XNAgX)gHV<RnRE~dsr-_HH^KUE;@A(#ugb7=Z6
z?Z2Njk)h6yCn=NqAr*bHOi0lKVfWMoeMFrUE;;VYQ)UwNZr#&eqC$~DC<o-DUYCwS
z+C5f9U_|o={PLToawhZa21fb(#oc-8{hO-?w@Dao=^a8Ms<eo`2rW3HJUtset0E(s
z?U&9iJnfKZlq!;g)J65#7jBirwcXj0^o5?k=?+K>pZvMY<U;jHi2Y9LZ^YTXsK?v+
zbduOn<M{82eTfZ4YkxYw=#5xhcYz?HJE@JBy3FXT|7`mFc478D3NoL@9rL5ur=vqG
z;J#CA?N|~Igc>Je=CGA@qS>mb&ldJS<9&`$|9)`}01Uzh`>h;Z7Dyf*C{_il*cX^n
z)H9HlSqM(JJ=sc}I~)DLGz2EW=Jsh)fvn66k)M~yc88w)b99-qac!PPRZg4ptCebi
z^8R;>je{e2CQLkXtls9s(Dyk*NjbJb3p6SsJF=wwm0b1(5Ko+1>Iw}fyA)Yq_7kD-
z@c|^|E$chDg$~e-r#@Yp|5821iL=ClJD_TcQ5GqheB68%Ou;4{<308+@uFdQ@cFKL
zW?y;NEBqQVtjKjw-4JIeX4{>FLz0zv%y_?|0LvfGUuOjwsk2|)(ZCM~w=wLZoWHYx
zaV+XloNZKjV7LUG_SBGSfN5ouL+HR~mTCHPY4jo#VmrRb38?Q`E)pNRt1Qn1Lyz3R
zwDw~b;WM<Ld_4FnW_Fv9T*-@cJ04~RyZ}mw_U`i#tOqfF4fFHuEb;NjX|ou0iB4zd
z3+ZWDP$X+BSsp&{K)~S(oxv2(8be@%E|&CzW*CKvWHbri7n5$td$jpi=?dn?p10gu
zkxewz#Z|G)#-%d#Iko#~p}sN&M+$4T{^FFvf|6Z`D}xAJA*^}2LK^5UhvO`-LkH_E
zzi<K!%x$L^a^hGtEo%-<nMMKl96@F6AdSAPAortfhB06#OvDyiaV|b}>{mmj$mKR!
z(w<oYsU&rsqJiFY{o7{Ydzm+}?7nlq0skSJpwbZ>Kd()6O4Md!9BcqDfnajo=LG0!
z+-@&mv?`orPNZg*ofhEOTjQ2NR8Sac)EPLnFN|t=lHEckTfSn`m}$m;nL?}+!qRQL
zix&z69D__7vCuM}V)DlalBp+A9<wM+{xrCeSnnAL0g2SaLYd)&b<SI+*h6{WU>`n7
zmf5b(0vq=yW&!sYuf`Ts^R#%&F`g}Rmks{5duDo|O~PLQ>jcB{LR!mdXWwx+AXP38
z{N@^qj*YS!Q*&ijk<;RjZzHjE_34_=y}R}TFjPD8G!|HA9*z@I*u>j7PpPL=t&Ryx
z^1u=>$D#-ZbBs^AT^2#qr>Zqgaud8OPhFf>wVZU_mL(b*S_9l@l$15&Cz`6jhpzv1
zISEPoTD6KhbzS4}?{bP=7($~*zK9la?-Dw{-nGP>w%DoT*luuRR%)2J<l$fUjC)=+
zSA*0IV;ef_Azb(j#1xCc(mS2}n)<4of&EN%0bG3cG2Lz;BhH>n*ahSAV?4TpJV8<E
za8OB{?Ncxo2wqnDq01<%%sMj<an|DtNSYqyzyqEI6220NvQd<_4|;e&^;kFs*T9pY
zqv28>zfO-6Ge&cs&HWv)@b|lNpfZ1ijdcWb$0^#7@`1wWkP@O!&mfkh)Ipzqc4<3>
zQf+yC&q+t4Y$*8htV<kc76z3^3o|zzS!)CKxm8?ktDb5~+G)c3kQVSYjXNY{RCs~Z
z`{3Zy2Df{pmPMF(VMv}r^lrM*jx}47IvdE1Z=5Vwg-!FUU^PS);7z8Y&&;NG=|Xb$
zp4}ny5JbEYaZTgo%+e>t&-5YtbRp|cA1XAd=|zhwX>*|i4N4|rid!McesL@ink$@p
zQMoS>^QjuJx|=9IbXQ9%9T;i8#bo!X<SjGD0=bpl9ea3q^cvQ@B`M8p1L4&Os5;~L
zuqr<`*n7CYQ}qi+-g&vW-*0a%!>T3iMTp!xZi*xhSeFsx2x?iYy$P)ztQ!z-gOXuJ
zGj~-%xPyC_gicZhntGuNTkuh|THNTX8_*lq7s1TgJ|p=50{A(`9Hm&(a3^P&6Grr<
ze5VkWOIy`w0T(k&QfZ6<V|Va!knE*1CQbyCwCw+rqB~Y%%@v2MBE$?hch;OKz#NCp
zw-y*?@imTlx-F9+?0-+XGDc#4dSyeBQ7!7x8ZD8L#H(-GG&U3B%Bu>+NrxCjsO;1W
zXvBLesX%c1`wdPg?N8I4LEIix^KSk$%xOE7vSc6r4!YK<W653kk$mJZediJw>kaVY
zA(uKe6E*HB29OeZJK72LMoR!s7u6ZSMlG+^d>VI@+&1S9GClY95Ma6(En}>Xm$>kK
znapkh+2C_^Puk;$aal17EBTS_x8m0YElP7q#N^$jpP$yEMf#;oEi0lG_HzIfdSM#n
z40DXMshB)c3<Va&@$dtU=$%LZ--UFknGn({Q5s7A)fMT~m7*Ym9!Q}M-jFrEBmJJf
z6SpRc$}w~r)8>dh&nMNjz9BonVDv4P_y&o#iU|vIH!t6I6|Sk^Z4xxpKS@BlxhhJ`
z<DfdWm{2^!DJ5h%stSy1rX7ci<7f=iKf?49Fim^6d~IphhTj)F66PHwH-rXbvA322
zNzFs}pAwOA<R8D<<aX;I2febsik%85J{AM%3+WtKz8LHCNwIms6fvQ!QUAIbzp7`L
zRcKba;wTG0l&&?eP`ivmZ1=9O0*qm=5sfm3C>4k)<Kh;<8CWWN>?yowZ(Y>*ao4>q
z8RWOee}(i|Wg5hVy&UGCFHv}y_y2WBQKA?4Z7J<>K>nC?yEEuao9Km#5Xq!kDx%qk
z-5_Wzv-Atfi~@OT)}sC6Mj7pasAFuXJm)BH2CdD%D{MD3da}y5j~Qv|#;VvV&Ne3r
z(VVx0Gt_n`RKrjpu?sgRH~QH!B8a`G2Bjdm?&fgS6J#`F%ak}${}XXj_d2T8HX-Vd
z%AyR8gYq<7d+~kH5cI`of?dC+VWtSNT(n3bKF?u`^@7G!I!=H&<>-s8tt*AsnkWWD
z&%{XZOr<&sV=jkjF(GypUT0TXY05;rWN$>V;#>JF$wr`1_Aq!cK-Bl;ixc3S%w8o5
zkcsAUaJ5eX6;EvC99IUO?Q^v~bQ-Xa8!4E@<#c;uFn-QmgNo|5<iPP4aWzcUJx&=U
z^4p)8@pb$cG#eWk{kBJWt+jCa>(;@&sp!|V{`n*w3@`7_xd@%Yw`Cz8DPP~#F<}6k
zSPViLkGyPNRYv$RX{%toyEit@bQ3($F*FoHl<)w^u8G$7Ai#$jh_4xr{4Mm7RC78@
za+4+w4Vb#8?fPvEt{F{eZxV82H?>qO<n?dJ&&ZvMMoG_n!@jI4ewmY!EJ(uRtj{&E
z)M68k!#R=s+aF>xxaC_p-YkxqZJN9yR~kqv;iUxD2oNIb5tzxHL2LTU%Lqk0<0GP@
zH*+_gSGdtc!Sjj@i8LXbuQs<xas0UHpRjM(O-BCHYtUg<oA7Vm3o2T%@$KHmo~#tE
z2V_7zmIY+j6;KG6@p2vtAX?WHAEV+KS=i%uk&>;cNC-f3Xfrf^o*Y}tcw0L7-zk+=
z5$oAzXRw?AAPO=RCo%NqEZ;fVZEJprK3hPNnl6FRW}9>lY+36#nq{T^Mf$d5t%kWF
zTq4b!M(u(Y$LF^;lg+S9(+F0U*^`??Gtg|%N6Oze+sR5oOGYR6{qO7!i@sd^8-2II
zM~&6GV4KNy7+Wgvi5I>@AQvFdwHD{<m<Vv3SQ3Yy`@hTHBy`u1(YNW7JHJr;6u{^0
z(W!rE9MqjiM4Y<5V=D7Gh_S|N)keV2r|+ABUdE5(2E=xjtjrLB=&63<d@W3lGTwY(
z7j{6yvS=HS4WX8<W#^(+!10QJt5*t3LFMzqdTDHSTns{bKu7GkA<Np;@rXT9<g-W0
zJ0e-c?fA-o)T5$-NB7{Gzt|?9uHb?SAdQRWP(S_iu6gNoZCvzdD`@;+F#tHR3Bb$O
z0VkKJGDej=YWL*e9}x2eOC2J-w9@Te+BE=C<R6RimTd*>IxTkJQ$OQEy=sto4j2a{
zoS5M1A(<7n@5Xfb?Ys`j4EaC+#(7%^lI$#3u)!7L0Ay~oiTD-}o07LlfYfy%K;Fy+
zJU0<EakdWT1=V-$r@sw{ok!+rokG|F%M?rv3tiLg#C}G5=Oy_~pNK*kPVSJm8yDY=
zp9Xd`x^yWcRrll@Ce$m^@UNjvgtA8AasryvZ=tyYfS<{sGQT5f#$n@Q!L)PLW-s95
zhmxhLbb1lZ%P{!qW_hV_ywj?#fR!pP`CMKWfB<+2tgA1B3$PDXy$24KQ7>kIzqIv>
zoHXg+^m{Jor=JNivGRE7YqxQvSdXQ{yc}|?HQ{APiKeKH^@$0jO*v*Z_Qlw}sl+%U
zTYf3hoLvpV`ld8RLq@G+glbI=e0=g`@aPr3mNqdreuU+J2jobYMpdn`0b2ZqTCZLf
z<4U;R3j|sBz50>(wyVU<l+vxG51C+W(@L7^6rORB4_#L;#RABKv&2DW@VfO@N8(Z8
zq4!Q<2-s~;xqrwsTu%>@3(980Jf}pX?9PMNpTV3sL#Y2oHzyj2LihDs=d{s|Oj2|B
zX2Dlxt&5H9g-fV{IsaRjqH0P?abB#T#KAG~OtPd-+sD-yF#g@)U}f%k+Sj0vuGZ`*
zr9V^o%Swew7ONe+RP6{J%w*Vt*JhaJnKg5Ev}|_WQ5}ATo<0}~sdu(l!<*i)hTB@<
z`ICQ#3!s#5skc?t@mjZ@mXIHkQPaoLpUQZokiJ$6WEgOo{Veu9i$3aCGp>C&XQhU7
zTAHM;#~NFY!fJE1i}|e+j@|VdxC*dP4ZaNPr6`%NLkr8Pam9H6wN@aqnNn68MtE?+
zFp_HwKPY~s0mkUD1%+VW7~zMR4+c3GAdJ#$a0>17uF&1o=oBN&ekPDuxcZ_h97y^^
za&4xoOMF*mt0?1#Lr2;L172A-Y*3rp6YA&LqNL67ErOAX)>WOuUj6<uCF?I5qz{6;
z4~%WXSfP1yNqA}hWmgc=iFna^?yC?GfwuS?1(5i$&Y@C%u?QVPc-^znFY4@ieG=`U
zlH)*#0xLdtLBzLgT!rM8>ggeqg~w310;u}?N8+5ps}y}HB}aPGV{<dOR~5`w3>%67
zW5p5?zqt`!<hC)H$#*MN(xh>HKb|JKEssFXj$Z-ZU`8}A+ro>~OOrnvvuB6a^q@!<
z@%E9N#&*=G8%bFKELq*ws%e*JDgM+q_wA5ovJvPBu8D!Em%Oz$tO|3&k`B>Of5_c_
zd)&wbcq~|>$%G^AZ;qTL73$Hheq3K)fa_GYwFvX?%rg*vlL07cCL{7RGLdOpOsk!$
zbWdNj^97C@4o08yr`!$5ph|aOrS2X#JIngHowH1tbyLtKR7>OKNRr4Snkb_jzdF$t
z#UGOF&Otx`A&R$IwmK3mVNPsbg)9&V+GmK+(hLET>d*J2WaOzIiS$Le!<YYE9Ki$L
zW`^mu#4|V34?dZVPvb3sC=W0d>M*HRxEmQX|DF86M(NvWb}vJSlK<|H0ZSo-XnS6I
zPJbqys8S(5=@euE>?;}c{v8}GSaV@Ye6-qHl$)|^dytWJ@k6l%(<p>pGRKwueLfKq
z2C&M5;dV+O;f%YEc`;kFbiTgFp?X|v^o`K@*1}*HY|c}sYANLX>@L#ZY47rNpxT-)
z++#8>h<c;fBO!&PYcfIg+*XamkoRHN4UXS4T{LkZUvsaDI7R{}`&IlR?GZ?zsWgEH
zXM@>mj6mUkTII1p-t_8I_7xd}8d0sJ%~+Vf@lmevCDeLJJXu}xHOShs>`0LPp!pF#
zz{9I^bWwNCcEfOr4oo*=jwN8YzS)Yt*={_j`oo2;;om3|782b_QeJD^^SARNJ9LJi
zb+j*j+r+_hW-YMgPcrqaEB#nwDHT?tl77N6CLC^xZmKqsBd4KI+u3*&NW64g<P{-o
z8=h4~c-NOSIgGn$OOr~x23T3B$}1Q()_G2MGLM_CpEin}UePb@1OlcH5C)!x$>8`W
z*5BXtMg@)4x1^HI^q0|PZ~(=Vy^WwUtlqI6V(8bp61)yr<Uc3{Txx&`K^1%@4CHUx
zuin2KNFKKUoYXvvOZQ<~E2ueXBb!{39aI+gu6-MJaWz6wiD+jO<9Ek8BZG38BhG$S
zJ#ARjuN1xO%F1d{6MT;?v{;^u2g5vLZ&q=%F&c+f0LR$)@qYz!8w>PJ1|2b-R?sg=
z+eaF+BR`qu@W%VHUdQdjRB0-Crc63?@O(Y#4m)ArE!{H7K(4n|bL+T2es3#;BAIvU
zZ3+RcSgLJII$&;obj`=p0eCRBw6Gwk<wkexrL{|}X8f|TN8HI#&>oxTWuE<w!!7st
zE)e$o`z>&2P{2RN7Fw+wH~2D5lUxPdD=L}n@AHm(j#ykl<UH=0ml|15dDqP^oWDmQ
z@;tr3(3iGK#WwN-L!l{6B=LqEV6hCV@EVNR^yqk;X%-uV3&dD@(}K+24Rli`+iM?J
z-6)<%-1y7%JzQz{?*tcpF;>BepoTyj55{k4IC*Il%1I|I$yPp>J|f}*SiS}v(dHc(
zaW9tka+=*V<%eX>&m}xvaDSY}Wl&$xs9pm2UjTVnKfM6|egBsLThagh{r~!7_aE$k
z@?<OY`)Ba~J>vc!>wiN0w}kEaAMF1D``;0^$A7H<2kZZC?0-V}w<7=D*#8#Uf1dl_
zjr~t1|61ffVgGAr|8elYC2WWPp2vT%2KbkR?eib&|H1lSN=01%gZ)2X|2sLh_kXPa
z2kU=H*pC0f{vWXa9btR@$NGP;{+ER92>^iq0aykO;0*2?2dl^O<5GsPuBu#>N8$ew
z`e%?6z`1v1pCXJ+?t!sHp?$P*P=%*P=_glrp?i#h?R>;acq>$O3}22iRh!YW|0E0d
z)&kWfNjugpqV%5bSM0lZIEVg*_ZelDl8wwmOp3LaPYtSGK}PLXNjmJx5VB&$(pGYN
zEmsJ{32xEfb&*%se<<^;RP!IQQZFn&+>;xN8}>O2o2Afy1snF>G24X`_Sn6}+X(o{
zWN|7>ESEiUr;vLMQH~P@U1p%ECRt4IW}QeQ2`HsX&r^6rJ6k|e%NOaqi74to5kz`s
zdIqzdN{L=~=LKYR0%zjO+J)N%N$g!&d+-b4v+;@2rE?~-p`Qi#CwCA_JO46S@YRN%
z=`b8u2bv~N$y>{VCR}ey`KpElV0>*#SI`0IZ07})#jcp15k$lR8ZL6rXY6p>nL?Yb
z43ZjXHN-=zN~P`1cJw_xN)U&ef5vHur5o_F3QOk2?p40jj7eB*81p&==ZbF}T}<54
zQs{kN8s}cQ#7p%Z!tj<%X!^snZX#Mo1Xh5UUe1f{tbX`{5x_?u0^{KqBco*T$qez3
zW-x+Tg#$2$a}Oj6K8iSSj*#hFl-)|Ic*+s%x9BJlIx9rd#WccayI}+3vmZU?$+Czo
zs%i{=N@sTUc3y9^ZXNU22pXlxhaw1KrKe@nA%@UFM-E~W%AV(kokDJ3n;%F!ktoV5
zhl*wDbgCZ(V0dGED1#EMW$=5F=|woQKC-pQ6n()vMKWk}K&oDunyDB&az=#ZJIQiT
z#M-`NT$y2dx@FXs_6L(P^cG;lmp+1SB6xemwzP?BEY7eTp-D60b~{=*6uTFz(M%UX
z7^y)LS8Z%r@v<}^KV3!A5{LH(adh9Ftk(pVZuio{b&ihc!!n4VHOxPyMYk`!+|>d9
zc!-N9zwzt$xuA0hGp0z^FWm6Z=@*OcJ70H*XZ=aJ`4D@E9trrC_A4&}57~YEwm&*l
zBqhq|pBK_PS~XtqRBa<AvPtPL`4GD2Beb!>@FMiRQ|i#igS+4kq(ED#{`eO*t9}*s
zCP!C5V+es&HFfyaZIY7?>84Cb4+48}YKvLkLZ8}?_F(Q_5jpQaNj=N`>8O6GaWy(J
zQn_Z2YNwcv1|I%z8Qf~uP0%dPIP^<a$9GnTNam|sfep{&{=FPFW@vvv-{s}kxye%~
ze#jEVXW}WYe$~ypSm1Vnw<a3b2qj|Z9-xjw_Y@F4)+63Ise`(|VAQ8_IzGjGT1ma8
z(Wol53kLEu;+G@vmaN;2p=oR?YDN8Wi|G-*_x53fLa2A(?_|F+X;<lRa8gnt`|aO&
z8dh(2CtYRLDECgjOr0q+4?HH-pcC_09BZ4WmV^KNX?@&9LUz7;)fJwqK(%Px-FK_e
zZB6`37u85wBe7%Wc*c3vKE5?~+a+k?sjf&dp{j<p3XPf!3;`8nrV&cz#J&qjJFVYE
zP2AB~)y&zNQwt^dUZ&0K(q3M5i^wHWPT9M}vdufOLuV2vVeq5%0#p)!0DdM40`d2>
za=<rh3PO)<a-C9voQe`hScF@ZD(;q~6GF&_CKY)b`Hb}L6F$R`UV2niBazl+#P4yl
zeA3NU!E%1YD)Z<9AbX^z-jbfj5u0ItG7NO|MR*czbuj)`!-FKAlTJuE0_-foF?S$m
z@RQ7%KZ(6uVZ4sU?<($^xKn6(I_}EEK}AsN7X=H3Yg{6KHV+R42wEnsS^?GHtpX%m
z#FWXj{afjC6lytyJ0lyW#BB39($`UVP^Kn#@rtHHK|Axe9<jm0_$yl7Sd!*M0Zw2h
z24uZ6cg;5gQ=FT5m*&bUx*EL|s=SEG;9$HQdK_`>$vg<<CxvZZhY^MdwtPFAi2r22
z2MBdl2Oz@0^Jxx1v8#&cGGkRRADe9!B7RX3cJjg{VNlD*pa@dt?|S*QwZ^r=i6tiO
z1V63dL>`H8+BXa~-5XSPAye^WaYwYmW`YKU{t3q-m#C^ERmfmd0ER@N;&$n3B)+D-
zqNojyvQT)J;BOuz)VQNGp(XuZLok_6RU{Z39asi~`l%^-b190XKBT>kH7)K~>tyLj
z0>%x8kkK=vkCB@R#-D5iE5C=T5?kPO*3MU&+<lnxgVSEw@oik+{#yt(RYkJIt|nZ0
zT3rLSBjb)al<mml_U>s6!g&-}YWX7wm7JTk@+Vhm7kT#T>cOa3c&0d7b}J3V>^Yo(
zcE1<B^>AIG#-V#8g)d#pKS2re(K~}d9#Fj7XhdGSc8yWV4W#zy?c9!C|3^J544`|%
zYuHVknoNWKWBf8CC3xLv?JjzNYkRJQO9lY(4YXt3tZYzGRLji0lREk9yl}p>*&8e$
zviROqx`}6iK_iotzS`tHI9q7t=`_EV`PF@iuy#R1{pT>>*zVxO`1xhF{s_T^_@{fd
z2Gf!OyNIV0SkDX@pCM;pXk1SUI^z|c(?p!Y7In8{_Xi~LHtcD4D9TMNRG0G{eYFAi
zGH87ZH>Gxxr2(a-@7T8;wOmdt=2fb&!dZ}y=;j9JRtFz*T#ufl%TzX7d{Dp$LZ0yj
zeaCok%i2^<k8U9?#eGN#<UEdrox`}>Mkl0b<$VUs)en85ywBL(vwxb-UBircg5&+z
zlRAL0){RawKJ#M?fiw~M)V+}sG0l-*w;%dz9O8j>t}BQSFFR!9RAD4OEbEg|vEpG$
zsS#c1qyfhJl#<t>Q}k0M(-i6jKuY&@>Vbxsg45L)HiUD`sI>kC^@y9;o#JE_CvzLk
zLVs(!Pe<IYa}(%B`h4{+Hi1woV#)ZR<c}bw@XF9YOi@|Jdf8$5{&ZL9U>J&7c&)}g
zxmwcQTQ;5W2>29}$+ELJIa^9|J4(mME8bW-)w)WQ6sw`qAi)o%2vYpjkzk$|cR4mx
z8<qEu)ai7@ve!r4H$arhGlh}RIQ==nT`fU<R^(h#+CjgbiK$v}e&O*q@`1`YhX)AP
zsXcH=3J=K-GSpxgb~2_yXaBKd_1j(oX}}%d4oMqepI|;!!^Mp|h6O2z)DJb3f(6ve
zg?Y*79zWeMW~oli-ANxgP>RJB&Ry%(SVCO5_mvDOU|HHqyGnV5`ask2%O%$a)Scd4
zhQ>)5yjrDxZ@V<PPx?5MxcTc(!PTuV%|sacVo)T;nQ(VQyn7=*irP@s;M;0FW)i{Y
zxsAb;H!wapWRpVW4CLMBEQfPR`i5x5i00v133$8timbIJw1BKOODxpHHD{M^+UVn-
zeh1K>oba~1k6)9Zk);?a2w6%9%Z50L+$PipCSC@Rn+KWmIQ*bDda}}!_Epx@KmO<H
z{q(D~0K%g0a^X0M>x1{Lt9iu^O_X3Ezp2XUD>HxB%oMudF9a**7Q=4GK|u{*u5j=B
z@i8QXh>ng1Y>sd)x1&daQI_)rX7<aJ2@iLWsrQct@WsTyk|^;)jQ(C4VumWg$wa?=
zbM3Kdc?R7fBdH3>tFyT*T-Xqb7hJ@te7r~0@7=ANF0)gms5&dc6s!0(jOe`!E`{XJ
zT1vD`Cjnl`tg8u6G;I%op;$N*)m#lr+T*H#ly=h&mlgWX-HDKVV`m(i2;0NJy$t3o
z)Mn=72i9jkk7wr_<=1AIOa^VC0xaDS6MduRh{Y`i5_RwKkgaq>B5gEh{@tGqP)+eU
z$4eaEaY-7gNctvH2OtYW;f|``V!CrlPIhUpDqqlAAW1$!)eGPcpW8iYM2R5Wz4ba;
z3sYWfPs76Dxvu@!Tlh@iZ|e|qHE<RQv}3jIr*ErRr|kZX4<D-RDdz)t(h0(8o_;_`
zK+aD{Yla{xo40S`I6cNae8n`1OS+V$GLtmdfj(vBahfc!Xw*7kS~Sr^!Jo7gE@^L^
z%?EU%L1B_@x`ZHIeP|jy{brnqTpU((%Yz$JVI{>IcybCTxI2$ftjmmr5HNsTOYtL+
zWB9*mp-G>)NR5yyU_T{P^_ln2st#7U|KH_%eIjm%Yhe(_wu3wae2jhY&GS68c8m$4
zo)(g}`vu+{(HIgp$^3Bo%z(#2z6-b3F!_naM{YAcirSW3>HV)jV8fw(mrOA@dKUAy
z8g==xN>-#j6!B|mKSH+<^TD?!q+iuTcop`+yh56${4qrE%_kM{)==imEVT!N`ww(o
zz}+<ra29I#1`Mj6w?ywX;d-p0km^-lb)Ty75n?$TO%$UgQ(3|@;AekU7dz17Y*|fy
z?sCG5#|rD1UTkcRm+qaNGS~=_Xv939>3KF3D}g++;E-%rjH2uL+!{S9I9n!)I;=9|
z))OrY*LZ%d@x-RnbPN1kNwaDFc!TmznpW)Z5cySX6e-kr%D-e*hbs0%C&2g!``vDj
z<!j7Z`3=^k{I%|_CxswSo4)YA{Oea6*e~Q|G2hr8*c>~DAbUc!H)PhqJzAV`I3_&E
zSXn3r6<UVWWB<8k?8c^pf^v&zOYnUvr&hdP)U>2Vf}GoWKkQ?mK)B-lu<4w#l{w5g
z)hpKCF;lJaed=s%bmo#cYc)I-=pwVPuWo;1IoIM-u~SSz?N;-^3V6EHAtoT2VoaTa
zl3o#QynxLKE1pnf>qz##^nGK>PO9ZR6zkt=nZzMg+(In!+m0;d_9L#8tJ-Lq<Q@$M
z)Bgvz>3k$1p(}ss67CcNgBVr%qKLz<Z^OPpl*bezj|;H!<oQq0ua`06s=Uksa7CyT
zyRNw_(lPw%x2)%&DY}xlh>3Q)0JEMvztWLuLT)EDp5`MlM#ug=!J}|qa?R*&%{^3r
zuGlIg%urb<0Y(Y{r1ZU2QbVXJ1b!DCkxmDJ>Fjkl>>cfc4mZqwUA>$oisfOf>k4{=
z?m)ujaYhLjuvM)>oDbtVdug7dN*qJ`d;C5=t>IDbP3qgmz2H$OM5O4Z7R!RYfelio
zZhg~5WIVMiAVFHhw+C-S(yiEbw}`I58nZS(RgN2owTufk6kh-%=I>%?z3oV}0uK#a
zPFB8sfF`RqXnWDR1_9$g(%{H?(TT%Xn1AHQM)zzXRbY!x3e4}2yI|GDr8}xz9NSMB
zO-}ZuZ<%8YluIq?<w2{}!*te=L8*R^Czs0@5R4e?Qy$q$gWO0V9#q8D<bd9{kTZUa
zk3yZ??K-%otP@iAfNr%*S7CFJgleZyp3+1Iro}^dO`h8WBHuTVfHNqC+#2k+Lwb1k
z!qXR&m$rr2dH{l%JwZec^v0-!)h=SxGaZmh<GQG5n|0eP2Zp*3wGat`M-g59T*V@*
z-FFiSJ~RLmDL}Q<h%aS?4y_Tc1Q^PN1O_wr7Nw{a-cNZNxv9H0fd8nCUz45-l_@Hf
zVJnP<^)wxH2uQ!W3@t7cQJksE`xJQ+US{QLl0~SfzMsjOHx%wS0!<;nd$dg>R2M?C
zmIjc;v9hU812$w+Ph_$F7^n+VD9;y+?tHZCxkoO`MPJGw290jFJw#KzGk}51L$JaN
zvNqrW&%=_{xA8v4)^|g4Y92J_p^;74YiUQR*kh1ZuwrlHa3*jVtlc9sUbP-ufT9<K
zvJ;|65A9)^r?@Ci6tK3ODmVm4DktZ#8+s$c#t>(gFRRoitDuR2*v;t1qc7WL9dWQx
z=}#^$cHD{g<Ss6&<o|A2`Dy{Q_bi}q%I7*C5r7S;A9jVCgt}!NL0_;0BK(HYJp68^
zrBVPxnVAP25bs76_Y47MP4*h){S=f3Bo4C#PfN)H2!G3c^JMG4pDTNrNl!)q%VF6Y
z2K$wzVN?yrm$b@h`q}D-Ks-@Yd_7<?r3yZmM|Zx&Cy~pM{0*9MrAZ4+>f&}*GQfUj
zca|QyJk)|uXp%V*NYR3uR2v0GKy9*QAZqDt+Rk;1_zrMzXz3kCa<Bl~>=4+hLoNgJ
z;vL_b^Qwf=ovSzPk*_G<d7r{N!GbW#HU||4%{;5W8NW%E1&RAwnkt!||HjvNa3qc6
z{ddhEYQ*bp1bfBuv{Kf^(sKsv!#4q2Uz3k<)3CKQV7uQ$<t+o2PbuHABdQNds=3y(
z=m|36BVe6m0o_3zsu`0g@jmJwAFn#)Gr^4H91a*o2jqxQ7<R2F{na=LB#KT9{5d4E
zmeN@oUS_R^@1?jV>9_O89KP1yyI}pt$o{sKR#m#Sy$LWX?6z6PRmB1FN-D$A=o3s3
z+Hm8DZ|<{Y^Wj&(bCPhF87~e@KPyk2flHtZ_}pcgvxr6RuexCdeNTufS8rEp0bwz}
zMEDe;wGtkgmkH(6%wO{a2eq%O#e8!APkZ;UC5i%M2{dinwr$(CZQHhO+qRu~)3$A!
z{pQ`%>QVi|Suu(gu@Be2m53AN9wyOATxljQhuYvaQ*Qgee6M_NyZ+vij1KbRbG+37
zNzGMf$W>;_!yzXmx?VmYi^*&Tth5I>siGynomF137jvIYn+a+R@;$b`?6FoMUi&|^
z43f7^F%==@qPp4Yx<#Y71Z$dg+-Y9k+<y?cw_C#+q-IpO(sCpoFq%;!tO<<wxaBnU
zW|jROZA?L??AtEDy3NUXFS00uq~o}rB%>78t9(v8y$pW&0K0GhymY&Khx|#m15(;t
z1$CIEI%YGj){NI@H^j(Dvu`!5=Nb*8crRg%InG^AZlkFLdK?FpN{3<1manvITdu_k
zlCPwO+Y0F%PFJK;C<awhbN*|zPm-I9R_z#xyO{3UXTe>O9P!twMU<QD8y0nD`%!#v
z^u_3qOU?~jA^(L|H&G6TdfOQb{%A+Matd1$s=r12V*%sf7r7b#fVQuOZm02`P`6Os
zpxdB3MZYquBN*9WNb=?Gwk~hYG_DvXlUWT%x6bt(xr~lWb^o-e^;-L`G2+=|=e_4^
z18i7+xPGCMDll!^!K4X}Po)1&ctr7lfTpb4cf>xzxM^EJ!ZMTzGzY#ewL7bok%Nbd
z0Z<*E1s-O7!%fMSSI{k3*5;+M(ajDNSsPjCUW6C(oQ=4141{nnZ5)4Bs0pvSd4*lo
z=cilq_L(>VUN_nKMQb?4)F0Pml#I0n%uhMAH7_{ZYs4&qJ)ywJWk?kfVMOl`)_FY&
z`kX^H2)Q5MdU8-Q^IjN-q%#yq83*)M$m-tu`^2Zp&Brur-S!IS#=1!G(4gKhI>}Q<
z0SvWa&Cw}D2_PgozTzrsec<}D$jy1_c5u@}BYmu`&rIPUgx^bQn$XmSzjU-dh7wy?
z9i7rU*`cv8xnmJ{5g^M!_wn%Pj&pDAp7Loio$~`RopZ2HggNM_x$hWweKRO1Pol*k
z57lgfgljra;WZsT0P-Y1cR}lG<F`eL7}QZ{>8r~1#UO!Fb_S^@DNsL_d|9L1oRn6i
zp~n5=J*odRZaKHc7*!M^7_+&3cBCq8gbWpw_Jme#t<#4cLi`BG$}%^Pl7_5&L*vIt
z$6K&H<ff85dQ4!VXkL=Twf=6ANSDMaWc8JoN)imJ;`Rf{kFBS?g-W6J)Sd+&T*C6|
zIzE8Bm3C@4nDDvgcmLzr>Or5qwhyhgh9o6?xLd0ljoN(29~l9W=QkrkX0m_v#>?Z;
zV;64A4s-6eUS2bBpr$x#atR<`-g8*~jwN|!c5sOeMILTY-R*G0<M%CWf6t0P+6ZZP
zej*|VSD-3WD`RmoOvXyeC1QcER|Ub$3WYq)mb?Yr8{^tplM}ppi!XA3F4#xv$qZYF
zA@F+Y{c6!wC}nR|N1T&@rDA?VXu6&np`i-iu0^zr<p`VzZC3Efmq~wjD<-0pFjqk`
z5b%+al*c(>U4iiQ@pP|3Wv#8P9a>9x;R0?!RtE3p6*V-Vd3dZNv;<hVYLa&C-32t6
z{FCK`IYv(42~rp4L?gejBov0B(Nq=?F<!Ddnk4?G7Av?1@_evWd2sZ|yuSiSH|6Q-
zVk+gqhzw%272;X$wbK5Nnz%(n>r$(2r4i{$x~=-b?Om}EJ^9YcDKucg=3-m%J9n){
zAjq45?Y}mG1>a%!2v>TxK`x2kc|+S>`&5SWY8p6{++se`lb%$XS%=DjZJ6Bvy-B(f
z99Sd{9Y#T41#|3RTg0atr<B&_Hcv!Nus77}xOeH)$*xJ?d=GkphJRQ_#r8qK`&}pb
z@5hkhgX0fhs!H1}m=m635DenglHnT82hML>PJaq&vg!Y-j^Wdh?3bFRp0Ug+Fud4(
zRw?>g_O=F^BuLCL(w?Uu!ABdZZ{zfM|4d5{m4EVo0>J-`s}Wop;XBD+y(k0Z`>YIp
zGe&2ALaDvA1BIc!AsscC=k>*(NZUo;<Bg+hOAab<;u>TLGsViPH}2%O8kJ>KR);i-
zN^|0)hk=^bzgOlTP1R+>`sygo!AE>wZp6?7ZqD?7BLB)hnIJ<jh`Lvr08ye-%5FtH
zj{M!>c9xyTvTa_0kC0={1M#0PLU>wU`QK2b8d%TSW&nr;%ONot*S`+Sb)CDz^;U|0
zWbP;GA<z;|Zk|gGnc&H1l)W8vVGop<Jmd<_Wq8O?$r}_fwOhw@dO$|W>n0)T=!ibj
zS$B(ns$J2Z@A{!FA&b-?q<M{v3S?SP3J?nRl;5&`IhwUH-jmE?{|%`~hb2r^h#f~3
z+^i@=orA8Gg9*k~g`jZjFZ3tGj0?F2vDjt|aaGl?1~6T5aq4q0Q!8gVHKYIgu>X54
zAE%H69%41fWUB64jkNx6kNPJl;O#r1);r^^^`cd?HL-PKP?SCAwq+dN-T_vWZO{52
z2fLXMKR(^*)6c6ups=+Tx+Yy`pAj)Kl+J$gL^XURVORcp{Ty^InI&6c%`Y+^d;?ma
zUpxBuTYBud{RH{V-VcuRxR#o-R=D)j7%OD>rH3N8m8dao-7I`QP455*9P}pc;X*=Q
zKYhH-AQQXNz`d#)9b2kV30hWW?TSJHjBfaEZtEs@Gl!pHgXVA*2k|I6nO}6TV<Ciz
z+(uL5D<I7$JIIP~ibsIXFPDpEe53(LT8O^=*JidX?=*FFPX%SwBzFnw?Opx&A;brq
zAgp9z)7J`ioG-g{sdhM6nXPS$?T=tX<)xE4a^u$n1QpzOcY&%>*eoh4^7TF&l*bbD
zq5>8NxR+WO6bU53!7@mN(4CHEZtpppc0Kb1U`-{7j|lSq_EVQbVsTlXcYu@gO-LZ3
za5Ezrrq_N*?Al0MZz>p)Jj49ogh4$-__WwrnS}WoIL`~7&Fldf2V`P~7dITHVasa8
zi>yfFQ{9EKdmRtVKEp0%&$_@FB6@ByUc^tvE(rcbkjxbon6FTkhxNh35GI?q$mx(7
zz|e}1J8fL;B8J*Qgt~&IAY~9v%@{=mDEp%Kv)nTB?G#yTZLTzMI$=iLz<$)qhv?c_
zw*4D3d-UagE$fEE#I1mGAihb(61^FEp0;d|I{#Xxe&-T;xVMQ=SiFVB5N5zP$7kNw
zbFtXvb=Fhbx{#Kq{&EN3dBuEN*HSY?;zRgr0l2uauBcjZJOqB;gQ>8`@LDxU!%xVn
zQctQ->g>2=zN&QeX`>5wE;$}>%6p?Exga&5(NOfh^dA{QQGxPWoi1cuacx!E#21K%
zi%<5hWxP2yQK!lKWi>rAm5b4(8~;GB*52aNI5*{oIp1Fsj@ck~oUks-$3|vXEjOZK
zsRDbo5$pFc24}f?YAXkVZaJFx9RiY3ptG`}zj3(>86pt59lqoyk%^rHKhe*7j$LB`
z$=^PbrcmHdU!s_=`$RyD_Yo-QRq_60Jjzqq1ukdmRb&`_`N6-B(J6!yrIIdK%q6O#
z;TM!zX`OQemV@<-9ij$q7W3@g+x@Evdc(iu8PuH=WYjjaCe18#s8@B3+DIQ&uM2(U
z`fPKW0QS|U^otts_7iciu#Tyw`d(ZZX9A)R|0TGbZewtbnlhteKwxL8cF#tM#-^3O
zy_RodUDs0|Gr(d?-WL1n-M~EKqZ}Gh#X+`BTxv*t58?rU3>3L!c(R0JveaZvwMl`|
zWj6Rpi0HiJu!5l!u4KzSSpswU-x9I>MZL$nqmn|eY74oziSQjbXSVEs;p%yOBg-UF
zQf|`1`_#TY<2(pd@^kXOKw(^kEo)vBh~R-Y8@FZu6<~lXLQnhr9-@-+Sg$osNgq;}
zh?K5XyeAYl9r@~GC}ffLk$nYmbHdp22^8)lY|_Xzb=^njLT%H!w6SK)od|-~2~Md2
zdm$aYk`lMyW2A_h8C=%`=c|g+ZJ)olU&zgDXRAzAIXp!*k~d?Z&NF3&wT(3SR(*0l
z2dDhbV4>@>l(&zVeNQCY6i3nswe$Hay+fOUP_<bw7<~^;+7B?NeXs+G8Qdkk)WTzM
zAfq#oFP7rgwA73d3`5bRohU{GFxmVnQ!q*s+xtHNlm_nm<4D`Az2IbezPKIy^XMZ&
zE~T6rrw_XJDC+57^Bt4#?j}PIx32_hQ;{tZ1(@Di%Z3{F2el7~HcWzPk*cl|?u*=o
z%B&SWdg6dgX%}mDJ8=N}@_#){K~<3_nwD_s_g1wn$7|H{8}cu#u;9f?!|JVlgXY*|
zq4q@N(Q92}Hu2fxiJK`S1bXP@^OQYibeU>#^y@u#8Rj$@Gxv}0Y@;tny+!K}tYSwA
zD&dAH*f3hgkC<-~HNr!UPxMXMJX12<AxU8s^4W!YjK>+d;$bqh&{cr<$XtRa#Lo9R
z#5$w0?|zw<5UAibuV_XmWL-+4CdZ-jAJngmG63L*HyUzgnF}k0Pck|<B1=vN#1(wU
zOrFIhY}^-nBThqm`5RW_{WvoL-XE-Ua$v1*A>8W3gO?n})85vV`5A-wnzP>gYezTv
zU;kiJaWh_yQLJppO<B0AB0PZe`3?)e(`5A*C!mYKb<!lUUNV8z;^xu#NgqD_LhrV~
z+Pe%0CPX4KCMlz|l`hUe7L`bb{m+FNaG>}T;`dY@kqqz*q$#FF{m20iWW_G(nJTiN
zTr*87-1_F>RM&1v>2Z?aT{ETqq5EIbTeT2_r}X2axE}>{udUo1DKhm?eH-li{BspH
z%~CNRxjpLjnmyz!bVR4c4Exa(Xoiy7B+nIP559;J@i1=`aL&KVZnr%JN^e#iFo={v
z;6=_tf0q?JlF4?0AFB8i2y%36ip4=9zQ`i}yiSj;fx?F8@_6}{W$URei1vyZ&gG_>
zX-y;aeDQnHYrg{KxS>w`V&~zQIpWFPZ?v{OZrHj=`r^aw@*%Z3-1+{9qIuP5aPs`u
z-hjn{{<hB!moj)T)BH9LGpeORWecI+F{ovRp8;0Kb==p+gQ@F%FMNG*@p2dd07&Es
z_Xz;+1^Itb0fxk$DcBz~u1B7bRkFxI>O37me+(j$_5LLUz<5VQCH$u~{gcJ*afo;k
zCVdVI^oB<rs066itDcrtHA@c&mzQlb7;0}nT|>Gg2l`&DiKsoD6WN*5S0Zf-V!T*-
zMlwG^Zh$IL8c4$vxYi=TrlUYN#ZTNBvDq`D?QJ!?^@~>2GY)CSwfX{Yy46HO)4=sX
zAIpZ8UCxOcO0+FX`vgtc(t7kW7%NPjc^>%lIhwDJUvM9F7a0HUWrHMGB8sHd^P8k6
z*%|G&N`FR)ZNkI7?FP|Sm!X>2XHO=ku5vnew$tqj0#=|N$+^ni<i3{|@$S4MP&Fb+
zh287}81F(pj2mmu0R$GvdqL@$T;>etRxvyUfFIfZ#X(SPnVo+)ntV#Kv={h@6m&DH
z1Wc9U^m-bBu3qT;5d@my-plZ}AohII4fVqTk(T3b$zc$qx3&`BJA)#T8=i7>n@;F=
z@Lu5;O({#kMvNq7Nd&R3@x(V**|4l*ICb6caXoF;QL%y%r99LPb5)VGjx36dZi`L#
zquK+hKA6~(^dqh<HPV)0A&*`4Es0iy$Gdt1h7`szq2X%Lq__bxEJ&bE!IfpvW}ub=
zwlK)_;zi#?yrC2;to&S6i5JbZ!|AM*-44?^Z_opSVicJF`Pmx<_i9`djzbhDz7}ZF
zv~2ow%F)X0R-JT6P&r2ZspVga9196rCoe*<6d{NzAZNz7=biUljwTQBVVkS5hia;V
zr@z@o=im5OE&!nx8$yz!VP!Y3I=iKgS##cC5LunYutZSf-<-pJm0vk<%(RW*#_T$h
z#xVKnKd=CCE74|*tY&iI^=Xcv;8?ZVaK6jDo5dt0I1duPuCMpB<54muS9y241ZY8Z
zVBf+s0|c~Y(WrS>>q0~_xoT&bQx88{xXppX?3sASMaAd-Ye|q3gpeJx>SKg5;{EVy
z))(qmi!aOd-HLu3Y*5f3T^mk|NB)riU0vU_OjT3rfKAUUd<#w40GBjNqS*hBfru*R
zZQpHDO%(NysVp|#nbtI=C00FwZ-kPsMPRFXL;|!F4HW_+x6K1sGaA;S+2M>W%Tifh
z&YTi1LM7O-11j|Hd`$k>;mN;yj6Qe7ZnTq`41*(6>0<4XK&`56abk(p#M5~-0O^X}
zI4h8QR)RloQx-eq2H7gSzAY0fd#aU=`1(2hc_+epzN?-j+GTWj+`q~t5TkHVT9~h2
zSRvB8gSiSsm^7``F$-24rhOW7bb!6?G?@~lbBqck(&R`QCLxY|uj4Wy4eh4*>gh)x
ziykz%b{ypsWUGN5rV)t`bO?*ht}ai{%L1|M6}kL!Y7Ok*0#@=}ih&=hCrnTY=)5I1
zgD=KX_LTSB;KiQPH)jIjIq)aydvZvJg_FDEW$~B4D|66H|Et;zNki`OwCH_T0p@*c
z$LZiLZjY(%6uIeB>c=8b?JE{PXkqmCqvJKD>xbPfN4EK~BXExem`ow92Io-^vFhc_
zaHajmrb^zy)oSitMm+LLukgP`)M%z=g+`+J4>JCU{8Igok$xqn|LzB;3x#`BkI&j@
zOp4GQj!FkyiV@T9VO|#N-&yWyMn*4NJ|+=)-FLSZaiqaZ<uVQWeBLM?@yt`O#B^b6
zV}7I$*!>U1)6UTn;myg0#m5zbR*Kq<yd^%Z*|n}*5;Mh=paD(xfF)0E>Q6A`Mn(iy
zLt&FvA8FfT*6F2uu_5Ll<KDls+GU<aRrPMw|4KL#lZ8w&w<&|BFN|qwped30`=3pZ
z08*Dm&ErFy7$lhF2A?Oc?iDMW{q!=@Rf|L^%67)4_&oM2kaRIaJhZ&D+hXdT{~<-*
z%|Sz);}8v3_!7J$_Zp2+$MWAWp<#vaYtYsD9cU?YE~JXIlHwKff42Rn|NTUDud#)c
z%WJ6P=B|M1bphX!m#Z`%o3vvw0;0Xz?7js=X4Mv;y(zWJs}RQ!S5&GAlka!nomv_k
zgECJ05wep$H4R&QzSB)ojO3z6d(W0izUx3ne61zxlgI1HJpw@yFDxqvY!*1$uu0w;
zYU`xfW$*kEaDFjF9(hgR<dh-QRgxvVQJAa|z<>O(b}E{u<lDDFlVX1Dafd5T@~io;
zjnOYjUVq7a(BeHO_LJupV@Nv9R66z(=nu)A%tUG1!n8FGSLTPA)4^1D`lq>1xT-19
z0kQDlW#KI|$<ZqUkj~LMmH+|*&n8y8=h`iK#3FaMAu601XS>6le~bEeOa8FbhBW_p
z9i#0~%C#+v?wXAFi{Xz3IEuS#*J5_h-kvOX!ldek?d3GZwb?vRiu_qM?VKS9W44ZN
zN8p8={^0Sqw%!*4n5P;MIaKaT6<m_q5TUvGFYFym$xh;5Z*`|hgqXUQah`iF3u?{4
zJS+<87MuhMI-$qhR~hg0qF<}z$c7*s;7YHyG5}|yg#l{l1`^K`pQ*vzi>(wv%*2+n
z&27?yw`Xj3Igct8%MljKtOs3?(35Zg7k~>}X+$Gb4_8mD18%DJTVG9K9|(itkD<uE
z!LpkfIPwkh1Cc1>2z<eT@tjF`{S_-Q8}Wh)?`nG)7PVKyi6=j#{(>L}bA)9b3EZ9A
zaJzs>&lsA8zF^8QT|AMkJ=jI#c|Sa^E01GAesyUKDI_mW4%{M~FxJj)gF_O1*>Wye
z?LRg1mOi2~Ag5O9^)Bn2`G^{AU5tj!?XUx5Tk#E8Bx0mqFLS1*t6d_db~?}6MBLIV
z1B?+MF5rP=fs@$wM2GT8`KSdHK>R)1UuHVk2|HFa`@SdQp%Ap3Tu<&d8H1e}A$k!5
zaF+r7+C=0k9j1Xl8}?i+aMjsKj#3u=c8*egK&moKAa{Dm0cTb99v=>Ghuh19JEvT_
znnlN7uV0Yg4cM|{4bpm3{4`6WNhPGL27p<$j216}e`rc@^Cz;$GoJWKkk@G&;$Ur?
zG6EQ0ePcZ!!5fOL*cdmJo)c_>49lHWO`_Q}tIELtn!|ybTiYli4G=OljvUgfyD84u
zxf9tPE{B=8a48r#W?nokiX;tw-LxxPi>&+-$QbRE)WWni4<{Vg+gMe-Lht+cbG|uB
z?_Ga2F-cUDM}oQc9@_vmcT0Od@qH7^GNi~j$)ohWlx-^{i7P}}c?2ole}zy~UNpZK
zc0`pjhx(kS*uJR@&OHr5lrzXoD<&`fynQOc@vl(8q??~|r%dhi`0~NN(f*0#yLj<4
z@rZa~Tu^2)R>|JEF0amf;0h8CWAS}tA435c7x}Hb9uMGfoXYy@eYG5nq1quK^sm2u
zQ+?kNrkk$#TT$;(Ub-y8r@XP72(raWclqC1MEa&BJc1WR*u5ehI-M-}z!2g1&ul!#
zy-EW))Ztv0R``@m*sNzXSW({x>9RO-iF4nq8&w$Maq1_lx6&D7c&^c%nf~kgl7nY8
z|2U}K8h;S&2}o)|lf8_IDe_y8#3v?{b)y#vnC*xpkm4+MjX~P2$$s-xj&(X<{A?d1
zjzUuaEJr}dMf+efFFECl4<`5GJ%G{-UKq49Vp;KHwdi~}l@^#p&BvfRu@r55^B=R#
z3G*e~hnxQaV1Q#zw)D;w8K>(pDXP{Z#rNSa18ov!>Ni8VA`FE(F2WjRJxH^sszT@?
ztBNeA{tP2{;JfC0nr&=5l6eOC{A!?Tw5_FzGsu7<1U=uX3{l}l$kp?CmKJ9Q2i331
zR=b<6$jiZ*iP<T`CyZ5Mo>@1*HBIk+^cvL9KW+X#-G&sviYIIGr6ZiUot~2K<r+-_
zxy<G*Cn#cA%do<~{B=DwfYSCqLi@EU22l4BvTEP-R)W4rm<Z{)&P>uGtZN=&c9Q=~
zzf}Mgu?^zreYiL>CNlSJaDS^*g%xUSpCT=%ajiR}9aEvpwKTD00c0&h#M-}A+(c~Q
z?7e*&hmk&bK<cr>>F?$Up3v+uW4Anm-WwoJS}h2F+E<S<75Q=&l;<|u{4GDSU{Y;d
zxkT)Cl7+%);wsd`;evsn!G*rVe%j~n4@Ian&doE4(;#))9p-$@T4I2bo-VWV=4k3W
zQjPC#3h1A?nLF0yyuc9M&ZiHu5(Ep2N+SpXfl{j-Bn1m}(+<oCPn2b%`<wa@rJ{$e
zS?}dunenp35#ltI`^D(|8-JFm6#NPj>KL7ueB~7w8{5xS3S}-tre~6T!A~}!MA~u#
z2@B;T7fK{rZRD`G>=?!r&zRyQv%s=7+$;b==qN+>5S$sSPwG%5W;+G31jPcGJ$I^U
zWhMd+kJYX<8O<1OeiP1hG^t39EFh=<<om<%>nI~dh2lC5(d_@q=_E)~mlnSgFn!>P
z<OstOcEalsz}c#(M0>kdqdtTMzWNCf*v{bYaALuBLj!sxOqAKFj<0q&L*3d<%Tf9}
zmOKNg9S6hPy>J{(@!|J8<-IjlQV4_R#9WU>gdQXtJds^q6(_O3r1}p2@F=(KT9p<S
zL}cN$HB>!AS;@*wqgCH9xOV9K#x~w{fIIjU33^AQtG<|oaii>sFv3&}gs-Ah^Jba9
zho1{!J-jNFdKAwB3kxDl*eh`e2^M{<oFGja5c99&dmyL~qB(oF{-HT_my<~UDYhjr
z9P9+{xI)GFD+De&`4E+p>IR#AB2&TmacvRk{LA61G;)fVpIwA&v-zxkR@0BNiS;xe
zy33tP0seC(l{5AF03T-^&UxC7-g6ZD>KO1O0Z?*vk1;8{?V!%%*Rlb9uN}Nh1bLZx
z4^&Ts(17)^Dh*2qSJ|vL*#)f&%;@*O`GRTG?=&g{8yMR3z3`9qz>)p{)Z}Ck5lQkk
zpqY=}^q!7&Kafpqp+6H_F1?RByclTpC({l6R;K1Lbh1@$gyjR~2)n?j?=c31+VPaD
zq3y%vH7uDO*qd3eVUz5X-s`>=Jgy++M22U46SxZNxNw^aqaj}~WKek>731Gh8@{5q
zKDibFK_4cX9CIwM*Ro@J4cm1FZqVKdmM*YXdS>mA26Qhr7kBlSHtk8ZL5X7#)$|4*
z>K=F=;t?WywsXmcgO6P0Y8~OA-qT^ngghxsVwKdplS?-T?jLd}9}|``Z|ZVZB6U0e
z7dR3V*Gmr5Xfuz1Ef@ZEr+c8`hD%6F@JMYxBYJ*!<WFrbdMGw=vFYhqhcR+RKiCk+
zdw`O@K8DWWWZ;r90v>Vvr?#9@nLIcj!xc187J}la-%z=5faIojjBqm@Va4eDuMv!=
zDLaNJwwTfu&&HnRpI-h&ph)w2bAG$1<(??O{ZY%p_jjn{mfInYp_xvY+o8e82iYio
zhQG$oMaj3x!u^w+Q%dG7A|vY?lU<4))Q6_xSCi@WN+shUQPReOL+(#wsN?Q4ZeYes
zmH)47HnZ#3w2~PRT;kx5ul(;I0GVmQ!y_xMmS~#}#Oc^<q4|+zngZWW|3%xHzpjv3
z&tH!&*5JOOq360jn^lgOs=$Y^s6rG(I8{VUwqYD&^%5KZy}QdzTv}|N#-3L>T_;(E
zRZ3+-GBDcE`^}8JeBbLv_(o}RmWiuYt%*tT8+$b%hLeyU<879wY$i?cqDAN>B^JSr
zngtN~+hscJK9aO24*w#}C13~oBs-a0|GYl_5t;*kYle#v=4#Uy5{Z-<7yH?1DJB|!
z4MU?BWcO<6JtvvW^<+R4>v@sAKFgo;rqe3C`){Al9Oohsx&wV*Lj@Gfr;N#Zjaih4
zPa(oQ78srZxS}_a6}ckBv^b`M0A^mmo5IuAOo8C71G8YSwk!bhoT8t5K~aJLS^Clt
zN1g#gVsb(ZPn3frw9?}#0ifBzkd`Ia2yTPgMg1V`Ctk==Yi=*E%}E_6og>RkDbxg<
z5$~-#gbOZ%Nu@M+gr8~`Kzd3_>ZR<j7QxO=%%c4f=UjC9<WZwrM#>Dy_%S}}(6$0<
z(&o+!jIJtScDC7^dA|i`rrzww_Oy%QSZs5t($|)k6Z70rZrqdZ$7Qnd_)S}F3ONJB
zU@Y{TxD8KfG^7n|<$fkg8~u}pJsRN1WxGuqAdQkUg*2EY4;L&=Hv-DmFz<aQhH=25
zCqV+V79=YXv&%(EqA^Jv`fX7%KULJ!46R|s>HPe{PPO+M{5dRA+x&F=Nl>E0cjts!
z0Jk8@fMVSyAtaDrz71rfed93ti_GE8rqnYdL>pZtkcig8+|BO|@9zFQ>@1Vp9jvET
z#%?LUzvXeD0{27>NZUL%06I$lIkn9{2tI=EW~TyIzC^_q=TjWWLKc7bL03a~pr*%_
z7b-c?v*teH{Xe`g<P9sMV*t!}>~@L<&8-dATyAit4_gq_w`u3++R{Cd_->=L1#>v4
zBGG4GOp-FY?<Zb7^PpY2xImzoAmkM6OXa{3{uW$Y@lck&PQ|k<(VpdW@rzjQS#&;5
zfaXNMH%xLrp=rQtHeo*^I4&>LC5t!lRjp}$kr*Jy)A6ue_j7(ZO6hwy)_)oYn%Vm_
zv1?Fr7XSc$ZP(><>Dts7ZVG6`Pf0C<XM|E{4P<s~ROuhDq3w#p3Xw?E&_GWZ(tArQ
zuE2-@EkcN{q%V<_hKa~@Fef4nHy4QBF^x&q&Mj5DNhGT8bR>_#>fI-uBeN!C?^Xue
zZ^WM$>MGFQ_m<IAxsaD&ToQ8A?NO{q14mIQ;*rZo{ik1{EE=++Ni=__#6LjJ$QDqd
zM-cJ%&5^SCzbdn;+vS(7t|$IWN>HL*N04^NVxa2v3CWl_OZ}{D)IJOjbS5UIbmaD=
z)){&8dyH7v@Bv*5L_jeq79BcK^Xb%Z+R^vs&-Q=e3R{;M!46PkJ606^h|VA#x~0nv
zRoc&-OE<Mqby$xs$h>AJ-9McnveS$1r=9L^ua;7d9R;GNdzM@^st%KB*@amj&0o3(
z`MtmcZ{!ObnN;H2u9^azft>HODdC5^jIng_N-Go~-|b@<%27E;j)fS=CEWpXK~jH2
zgTa#VBZKZc*KC-)2S*KEK@ui2q^)Qb@EAyf+TQB^jkm_4ZIT<lOvGEOYnKk*UtQus
zN&LA4FWQtqo+==cyXNXzn4D1O3SYeb^`Jk-R1BpdVtI$}7zu_YpswI?Uya+zwxamt
z)8Vi3(F+L!n12%*umYaPkZOHe60Sx-!5L1N_!op35G`hrK{kpbxcQh;7wl4I?)lL?
z5BpO?I!KL&>3yS2qHKlVLOkhO+Jf8_*ZJDVc#9~`VlkX*qNHdMagw*jT?{)g{%i{{
zQk3!RkQOR(8(B7#i|LTJ_)k?8DtUjr`0r^!aH}#_1>+44$Cc0P6K5gnhT>w?M#D8-
zbcF*quech1dr>&h+0%LDi<Kn`OM^FN*F=U%KUTV2Jb!Ta^K{Mhiua{8hZ1euQ$Qzu
z>|&E6_V;T!o!^PA(bgdGC=F>-GuS`k+YXv#>7|14yEQ<>mT8cdN@gV|wmb#KR6Pe>
zvKk)Kx@?yvjXjiNUc2;;5f2A?#jx+c9_%JlI5sE~g7Eg8B~N-3cgz<g?$wcLwG`yd
zz77_fs!FTWLhyYEJd*Di)8Q72)h1`~k?VX>w3ip<$|ea%NdX#k`iy%0A}iez;>}<v
zhb&XTWVfdaaAs^I7&8#B<%JHm<D7HqgT;rtbp8h4z>)sH9B1z<gJO61TDoTf%R>+d
z6-+%tv&F5)R@6H^AV8!A4MvJ5$1TNG7{E3ANeG~d33F-F^f1XNeDi_lT$~hFGZ}Vp
z(HpR;Fm{&u@#7+NqrQO7EIgE3jr~I*>3}dAMTO6dvF4e}{{Zz%mnL?nC5Dt94`G}C
zMgZ%fEJi{G3;2&h$%<y#F8&$x!7hcbbGh=~2h`saK3nlI{b^oFf8?s7NK<m>0jub#
zt`I2m^Ib@hU*B*>Bw3+S6K?BWC<v?WoaPtSYJ~kRVtH<d``e@Doj8+Y67~$~R>Y-m
zAFO)*klwEorK*U9jOc)XfMA{!2m(+Ehb?F{C`qEj`*jzb!R%Bv^%3PkhkD%GebR)n
zDX1<QCTed_ceh%3B|@#Ua37kq7!N+KTNqc6e(ZR{e@H1WHkj4QDl*x;aJCca*FEsP
z0QvQiBRrc}uV9-=T0EX6w|_ctyE<Mg6`5_Q^ng9=YI*)P?cI~wwyMq-b!a#t6s~yE
zn_q`#9QxjHR-$B2np9|P0!gs5NwT6QPY1E&a}<7Ksvmu-^zQ{uipvh2^tf2YnWuyE
z$%*aFIvzUW;3?&FgEY(rVr=5)8Gw-A&P<*d$p=+njCYC(>xM4M)E~!H7MjQf31VE|
z>Ps(Pzh0ypxy@uK%np3`pCYRm*4UxD4ZRt?cmCJfIxH9yp2scvPGD9`!dI?$hEyB+
zPlI@b;yosY(hz_F^F*75*Z>))L!KqCL`X(*1+osK?CKN0O4`&<bS~8~C|9UIQ|WS)
zU!4$GyAhNA>QBDr@8M(V^K%XBJcActaC0tp1r?UlE^Bn&umI9oTqm!c&)h&)`Uht$
zoa@XO&RM4#jP<Vd0r{HaDId(kD*^{uLGoVq7PxD4(8>iWF3y#-H>!RaS$c>)_>gR@
zzyVyX3W*OKAbGIUVZRqx7O?_9x!Nf(lqf>R%-qJWP{bVLh1{{<1G}kYDoyHaB?N+_
zcnOQ3T^x9xJQ~bHje6Ln%y~kxd-X9@dNlvs#aQd2;n2V7n#&0uB*Z9vS&!-(Ahp>p
z$8ExtXiEsz3k5o%J>Yi*==F$rmd~S93~nFeN46jV3*IQ*8Dkje)C?W#-2r7EXbsFs
z6zUIqA9wG`qUWXPY|TA&&Fd7aJ9gF!R5{iY?xKH(L($?9#1KCd2x6Xo8Zpxc;k=O3
zoq%*EkDf(b;8mxz1Xg~$6j=wvP@(siHd`6o+QG|ZCbs6C0&aDAFMu7;c_RK0)N%pk
z6-F3*ug#<+EPAqO2y)iUO$UrpJey-#5hgR^;rwko>_m1gwF?Xs=990!@XjaiuS36z
zjSc3W!uePx%KPso?4|t91dhnzjI4v5))a1at`Dcaio_Dicw=*_MT55CR~m|SyNYF^
zv`y!)(|GZHDeXt`{$rO@PekpK#;<`qcuE~CuZ4=xDwh8UxSX9)$sGJMIVE#AYFLHR
zQg6oot{j$YMZ<8>5XSU*tj)Tql_X>i=lV@b^_Vl-9<NR=d>Y{7aLFjmQz#@*nEj}5
z>#AwqS9n(FY30$TDn=9?GN(6tp-sMSeT2=i4=1G1yw7|}VVz1|Jqv8h_fu&W0EQqA
z_&X5LYf?l3SQa}BrC#z@6?UFus9mGX6S8`pj)Z!rHB4eCI`mk?mvjS}oiM9OJOc_d
zb^s#G&M=pL$1crm;9+9eMttdEt$w#03I(XYV9Ikfu}#POzhf)G^h~U_&jv7d5RC9h
zDuvTrg$pV(9O;fK_rC=?D@sPh!!Q?8wAT3yGd!tiY^eR%TWtHh)9|=g=Pd2gd|F+H
z>N(lUdvX5P?=Wuw*Rh_eWV=F-V~wxD4V>kk<ltR8qyY|?K?BIPqF}0sRXyRB6U|63
z%ygcR(TB|jVKmedDGN_#CfRIzHRaLy)Zz-D`X$#MAX71j@yNGI$qEJ(1afW+SLltq
z+ge+`>S_Oc!?dO42ZuK$ffo(c6PB~dKmGBg{F^ptCzMpw)<KI&hX4Xs4O*6d{T9Nu
z8$U3SBbV$9_>X0QPwQw6YtNf=+O#zP_mwDnofIE+gc!{8OLX4kUd#ltNH6Rf`6y8B
z+Q2>))X5skE-JEx(UDvPS#9P1#pdi6A<#LfAU_UwU^Vbp@vBb4r#Rs@D@qSR5GMk)
zODqoK2Ci-MZ6mLyvrtgfqN|4y$7FL6r>qw!`6!g;dKcAAsF?oFq=r+Vx-(O%SAMsU
zv#&%bTsPkbI>=_@KY;|LxFi_$34Y;wa1SEKL-9yY`-=l)CV?0dMbB1IKh0y$Xs$*o
z6@%LRuSGs7z;V|{Cdwrs1SX<4NzluE(rLgkMXm`22qjC@5vn4h8_NTEKL|Be9G)^t
z2yJ;i``KIgciZ8LFU%$^o4u-h1*WZYV8U6c%LIjMyOJ4VbY+G$hjk~B#rHGR{TLf}
zZ=>4-4v%cK=Ib%llx1qYW*T!nz%6nS1!l|Q>{I(dx~-~8hj8}Xvf}}|l%c!b-C9<(
znrQhAy2_y`{;Ew=V|RV+72#?=CBsiH8_pUxGUX5};n($HM<nH(i5f732bZ198d&qP
zm|!xt39~u;Yd@ILV4LgJ!g>*m=d~-Tm~06d)PXR}(4;Y`%p}I!;Mf}S>mwQXS+krU
zpVwk#gg9ZNxURTlRUKv&;#{(kdHo`nqzQ0;lQl|oV1Cd>aU(9~S{H*vZ#v;uIp{!e
zk8itOxVzG-8emRa(Nyg2G(I^JMtWk+{$v>;5+7HzrhG9N7P+#>#4c9-Tf|iEFVpsQ
zL3YSf{o`zIj2K?C*YT|m+D-87Tl{T8Uy`8f5HJ*IMp0N1lmL*i7c%%kq|3)KIUMvP
z0X&+Nl`q2MDx312rW21LZ-rSX&EnBK4fROO_d>#HPI?MdegRZi#bb8~-O$#1#q?)o
zJc@WGE1d)A@bQ|D<Mdt!kbuxAchsj=Kz2E_KGb3NXjK5f2JiLl3QCPT!`J8)mOUjs
zwOWr*hYEg?!QdC5RWCy+bG*c%5M?A7qvT{<adZj&tsk-gDaUAP)!FE&wq72kUe;BT
z4FC2OGTqp>7PU`){GqtmKJ`tP<ZVXe@dW&wG&6x9IrIpf8Od{SzQ*z4J-1<JF#7@=
zL1ue3J}ep#V!2nMX~oLlkL_-w$X?GW<7ys{UGP(Hg6+$x--84C6G-@M*{ED>=Ah`l
zS_q$W+5TM)$Ogpjeluhir#MF$?E8GnHG6|yF3Gd~kXa>Rm4V+Fcx>Ju?6oJ9*Sd;l
zfw&0haAtGNqtYL0hNty-p8D%rCL$z2MyKGLO_0*)E+hXZVTG4x4ohNSl8w&W2-3}k
ztIqT_U7;7|R$*%+3B7HJSbzY}vZ+c#jN0BIbv*;SjXAu0B9Hwpl^)tl@Fjr}Anmp%
zTB+d;MmA?zmodrdOL09`2#8_S=TX*0HZP^YF%qs5ve)X3GhyOcQS)UkXBuy=E>$_v
ziYumEGq<!*t!}s@zK`cL>gjMbnzD?Z&pb^tbLEGpf8>wxO(Feq(w=8lhRS=_EsR6|
zefm;WOdUKuZ9duX(e2(p<7^a6)-RY-9LOK!#2-TfMeZ2i-Q(}B?r|~=k>uj-JFNek
z<2gR2r27-(60~_heT~IO8x|t+)doAh@zq-^h(t+A0%m2+bH_8*kz+anD>|6wuhyxd
zU5f;Bld#Bi2Dn!w(w%_p2w5*6d&W%a_`8HbXo%vvhWnz?E}{^Zq7@e?4XQGGHKf~Y
z&S#Qn8$f`l{Ot$Uf)nGJzi|cWPIhIWLMX-{P80Q|V$f``Y#YFBw`N#R*e6v0*L{s4
zJc#AHT?7j!q~i;q9LEJy(DkRoZ&vq7RRndR4WAb*LuvoVP}322w&HF7xOv;;BLzk^
zCQJ`gfKmIbNYg7uCsY;dmlhLcI5$&pf#p2kD3nKPHP;aR&3*#PCE-g#YglDs+8d@y
z>M~2-M>JYp7;P<N^5(=Ml~P{0xQ&LQ{Gs=1H>={Y;Tp3)y*Dx5kXy28(^DOrYmp#Q
zFs~H`2%o26+>6IVanE(@Ji-J`HOFjsq<qm#Bl$^^OIh5jh=TwRoK@m>@HIUNK&(w<
z&%tVGcH)NfWeE5}nsh&O+}Zhic?f!p{17=yIT?~HKY#8|a^Hwis}~RRA#pKtgdb`(
zoDfcS#((QxsXcNHM$1~u9Rk32-@>@MFVw?X@=3PZ{a_7mnt8uMg`_-;a~rF_aAs$+
zX}3hIEWFgtvWL`iI9<4igoH6uggSsyLYexYt2w=v($&GcyeW43gQ_t2m)#fSwxRl%
z=933NO{n8p3R){UWOWw^Ces*58_eBvV}n8Jv&9*(wk>Y(?0~||c69a#H@8(hf2bV<
zXwz+{%13geS?E9E>4TfFpa$x6u-m)Lh#?0v9^A{;pDZ{<M7o0E8W$MN$+V5NcWYRb
zQnl^U>c?3cPj_7$Vb2RDYtFMuTs-<V(jSE<Db1nFF}wje_zzhjFjg@&=qhY5LIdww
za`I7^k<gw17H<nx++_XHR)R`pl2EIq`5H!+Wj@DO6vZ*mT=-P4M<$rR#g;*T9R<DD
z!-nQojbuY<+tCMMe4gK5JZ;O)fyiN5h8;h4<fGz(EyFtcC(j%}JbN*Fq2C%Ld`eWQ
z174D|g~>{kbUJ5q51`nne8*P9O9uHR?z&A9U=&lq?k<BeUd{6di}`=~n*V=%&HoC@
h|995^Q<C2Qs)hfrtpA5xrvDx6|5w=mGvJu_{{e+`KJown

literal 0
HcmV?d00001

diff --git a/oxAuth/Server/src/main/webapp/auth/cas2/cas2login.xhtml b/oxAuth/Server/src/main/webapp/auth/cas2/cas2login.xhtml
new file mode 100644
index 00000000..b5f38d09
--- /dev/null
+++ b/oxAuth/Server/src/main/webapp/auth/cas2/cas2login.xhtml
@@ -0,0 +1,10 @@
+<!DOCTYPE composition PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN"
+        "http://www.w3.org/TR/xhtml1/DTD/xhtml1-transitional.dtd">
+<ui:composition xmlns="http://www.w3.org/1999/xhtml"
+                xmlns:ui="http://xmlns.jcp.org/jsf/facelets"
+                xmlns:f="http://xmlns.jcp.org/jsf/core"
+                template="/WEB-INF/incl/layout/template.xhtml">
+    <f:metadata>
+        <f:viewAction action="#{authenticator.prepareAuthenticationForStep}" if="#{not identity.loggedIn}"/>
+    </f:metadata>
+</ui:composition>
\ No newline at end of file
diff --git a/oxAuth/Server/src/main/webapp/auth/cas2/cas2postlogin.xhtml b/oxAuth/Server/src/main/webapp/auth/cas2/cas2postlogin.xhtml
new file mode 100644
index 00000000..b00cc99f
--- /dev/null
+++ b/oxAuth/Server/src/main/webapp/auth/cas2/cas2postlogin.xhtml
@@ -0,0 +1,90 @@
+<!DOCTYPE composition PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN"
+        "http://www.w3.org/TR/xhtml1/DTD/xhtml1-transitional.dtd">
+<ui:composition xmlns="http://www.w3.org/1999/xhtml"
+                xmlns:ui="http://xmlns.jcp.org/jsf/facelets"
+                xmlns:f="http://xmlns.jcp.org/jsf/core"
+                xmlns:h="http://xmlns.jcp.org/jsf/html"
+                template="/WEB-INF/incl/layout/template.xhtml">
+    <f:metadata>
+        <f:viewAction action="#{authenticator.prepareAuthenticationForStep}" if="#{not identity.loggedIn}" />
+    </f:metadata>
+    <ui:define name="head">
+        <style type="text/css">
+            .login-panel {
+                border-style: solid;
+                border-width: 1px;
+                padding: 1px;
+                background-color: #FFFFFF;
+                border-color: #C4C0B9;
+            }
+
+            .login-panel-header {
+                background-color: #D4CFC7;
+                background-image: url("#{oxAuthConfigurationService.getImgLocation()}/panel_header_bg.png");
+                background-position: left top;
+                background-repeat: repeat-x;
+                border-style: solid;
+                border-width: 1px;
+                padding: 2px;
+                border-color: #D4CFC7;
+                color: #000000;
+                font-family: Arial, Verdana, sans-serif;
+                font-size: 11px;
+                font-weight: bold;
+            }
+
+            .login-panel-body {
+                padding: 10px;
+                color: #000000;
+                font-family: Arial, Verdana, sans-serif;
+                font-size: 11px;
+            }
+        </style>
+    </ui:define>
+
+    <ui:define name="pageTitle">#{msgs['cas2login.pageTitle']}</ui:define>
+
+    <ui:define name="body">
+        <h:form id="loginForm">
+
+            <h:panelGroup rendered="#{not identity.loggedIn}">
+                <div class="login-panel">
+                    <div class="login-panel-header">#{msgs['cas2login.loginHeader']}</div>
+                    <div class="login-panel-body">
+                        <ui:param name="client" value="#{clientService.getClient(identity.sessionId.sessionAttributes['client_id'])}" />
+
+                        <h:panelGroup rendered='#{!empty client.getLogoUri()}'>
+                            <h:graphicImage url='#{client.getLogoUri()}'/>
+                        </h:panelGroup>
+
+                        <p class="info">#{msgs['cas2login.pleaseLoginHere']}</p>
+
+                        <div class="dialog">
+                            <h:panelGrid columns="2" rowClasses="prop" columnClasses="name,value" width="500">
+                                <h:outputLabel for="username">#{msgs['cas2login.username']}</h:outputLabel>
+                                <h:inputText id="username"
+                                             value="#{credentials.username}" autocomplete="off"/>
+                                <h:outputLabel for="password">#{msgs['cas2login.password']}</h:outputLabel>
+                                <h:inputSecret id="password"
+                                               value="#{credentials.password}" autocomplete="off"/>
+                                <h:outputLabel for="rememberMe">#{msgs['cas2login.rememberMe']}</h:outputLabel>
+                                <h:selectBooleanCheckbox id="rememberMe"
+                                                         value="#{rememberMe.enabled}"/>
+                            </h:panelGrid>
+                        </div>
+
+                        <h:panelGroup rendered='#{!empty client.getPolicyUri()}'>
+                            <p>
+                                <a target="_blank" href='#{client.getPolicyUri()}'>#{msgs['cas2login.termsPrivace']}</a>
+                            </p>
+                        </h:panelGroup>
+
+                        <div class="actionButtons">
+                            <h:commandButton value="Login" action="#{authenticator.authenticate}" />
+                        </div>
+                    </div>
+                </div>
+            </h:panelGroup>
+        </h:form>
+    </ui:define>
+</ui:composition>
\ No newline at end of file
diff --git a/oxAuth/Server/src/main/webapp/auth/cert/cert-invalid.xhtml b/oxAuth/Server/src/main/webapp/auth/cert/cert-invalid.xhtml
new file mode 100644
index 00000000..95734e0d
--- /dev/null
+++ b/oxAuth/Server/src/main/webapp/auth/cert/cert-invalid.xhtml
@@ -0,0 +1,108 @@
+<!DOCTYPE composition PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN"
+        "http://www.w3.org/TR/xhtml1/DTD/xhtml1-transitional.dtd">
+<ui:composition xmlns="http://www.w3.org/1999/xhtml"
+                xmlns:ui="http://xmlns.jcp.org/jsf/facelets"
+                xmlns:h="http://xmlns.jcp.org/jsf/html"
+                template="/WEB-INF/incl/layout/template.xhtml">
+
+    <ui:define name="head">
+        <style type="text/css">
+            .login-panel {
+                border-style: solid;
+                border-width: 1px;
+                padding: 1px;
+                background-color: #FFFFFF;
+                border-color: #C4C0B9;
+            }
+
+            .login-panel-header {
+                background-color: #D4CFC7;
+                background-image: url("#{oxAuthConfigurationService.getImgLocation()}/panel_header_bg.png");
+                background-position: left top;
+                background-repeat: repeat-x;
+                border-style: solid;
+                border-width: 1px;
+                padding: 2px;
+                border-color: #D4CFC7;
+                color: #000000;
+                font-family: Arial, Verdana, sans-serif;
+                font-size: 11px;
+                font-weight: bold;
+            }
+
+            .login-panel-body {
+                padding: 10px;
+                color: #000000;
+                font-family: Arial, Verdana, sans-serif;
+                font-size: 13px;
+            }
+
+            .info-section, .info {
+                font-weight: bold;
+            }
+
+            .body-section, .login-panel-body {
+                font-weight: bold;
+            }
+            .body-list, .login-panel-body {
+                font-weight: normal;
+            }
+        </style>
+    </ui:define>
+
+    <ui:define name="pageTitle">
+        <h:outputText value="#{msgs['login.pageTitle']}"/>
+    </ui:define>
+
+    <ui:define name="body">
+        <div class="login-panel">
+            <div class="login-panel-header">
+                <h:outputText value="#{msgs['cert.failedToCheckCertificate']}"/>
+            </div>
+
+            <div class="login-panel-body">
+                <ui:param name="client" value="#{clientService.getClient(identity.sessionId.sessionAttributes['client_id'])}" />
+
+                <h:panelGroup rendered='#{!empty client.getLogoUri()}'>
+                    <h:graphicImage url='#{client.getLogoUri()}'/>
+                </h:panelGroup>
+
+                <p class="info-section">
+                    <h:outputText value="oxAuth Login error when validating current certificate"/>
+                </p>
+
+                <div class="dialog">
+                    <h:panelGrid columns="1" border="0" rowClasses="prop" columnClasses="value">
+                        <p></p>
+                        <p class="body-section"><h:outputText value="#{msgs['cert.thisCanHappen']}" escape="false"/></p>
+                        <ul class="body-list"><li><h:outputText value="#{msgs['cert.youHaveExpired']}" escape="false"/></li></ul>
+                        <ul class="body-list"><li><h:outputText value="#{msgs['cert.youSelectedInvalid']}" escape="false"/></li></ul>
+
+                        <p></p>
+                        <p class="body-section"><h:outputText value="#{msgs['cert.noteInternetExplorer']}" escape="false"/></p>
+                        <ul class="body-list"><li><h:outputText value="#{msgs['cert.ifYouAreUsing']}" escape="false"/> </li></ul>
+                        <ul class="body-list"><li><h:outputText value="#{msgs['cert.ifYouUseFireFox']}" escape="false"/></li></ul>
+                    </h:panelGrid>
+                </div>
+
+                <h:panelGroup rendered='#{!empty client.getPolicyUri()}'>
+                    <p>
+                        <h:outputText value="#{msgs['common.agreePolicy']}"/>
+                        <a target="_blank" href='#{client.getPolicyUri()}'>
+                            <h:outputText value="#{msgs['common.privacyPolicy']}"/>
+                        </a>
+                    </p>
+                </h:panelGroup>
+
+                <h:panelGroup rendered='#{!empty client.getTosUri()}'>
+                    <p>
+                        <h:outputText value="#{msgs['common.pleaseReadTheTos']}"/>
+                        <a target="_blank" href='#{client.getTosUri()}'>
+                            <h:outputText value="#{msgs['common.termsOfService']}"/>
+                        </a>
+                    </p>
+                </h:panelGroup>
+            </div>
+        </div>
+    </ui:define>
+</ui:composition>
\ No newline at end of file
diff --git a/oxAuth/Server/src/main/webapp/auth/cert/cert-login.xhtml b/oxAuth/Server/src/main/webapp/auth/cert/cert-login.xhtml
new file mode 100644
index 00000000..641f32a2
--- /dev/null
+++ b/oxAuth/Server/src/main/webapp/auth/cert/cert-login.xhtml
@@ -0,0 +1,13 @@
+<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN"
+   "http://www.w3.org/TR/xhtml1/DTD/xhtml1-transitional.dtd">
+
+<html xmlns="http://www.w3.org/1999/xhtml"
+      xmlns:f="http://xmlns.jcp.org/jsf/core">
+
+<f:view transient="true" contentType="text/html">
+	<f:metadata>
+		<f:viewAction action="#{authenticator.prepareAuthenticationForStep}" if="#{not identity.loggedIn}" />
+	</f:metadata>
+</f:view>
+
+</html>
\ No newline at end of file
diff --git a/oxAuth/Server/src/main/webapp/auth/cert/cert-not-selected.xhtml b/oxAuth/Server/src/main/webapp/auth/cert/cert-not-selected.xhtml
new file mode 100644
index 00000000..655f1154
--- /dev/null
+++ b/oxAuth/Server/src/main/webapp/auth/cert/cert-not-selected.xhtml
@@ -0,0 +1,110 @@
+<!DOCTYPE composition PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN"
+        "http://www.w3.org/TR/xhtml1/DTD/xhtml1-transitional.dtd">
+<ui:composition xmlns="http://www.w3.org/1999/xhtml"
+                xmlns:ui="http://xmlns.jcp.org/jsf/facelets"
+                xmlns:h="http://xmlns.jcp.org/jsf/html"
+                template="/WEB-INF/incl/layout/template.xhtml">
+
+    <ui:define name="head">
+        <style type="text/css">
+            .login-panel {
+                border-style: solid;
+                border-width: 1px;
+                padding: 1px;
+                background-color: #FFFFFF;
+                border-color: #C4C0B9;
+            }
+
+            .login-panel-header {
+                background-color: #D4CFC7;
+                background-image: url("#{oxAuthConfigurationService.getImgLocation()}/panel_header_bg.png");
+                background-position: left top;
+                background-repeat: repeat-x;
+                border-style: solid;
+                border-width: 1px;
+                padding: 2px;
+                border-color: #D4CFC7;
+                color: #000000;
+                font-family: Arial, Verdana, sans-serif;
+                font-size: 11px;
+                font-weight: bold;
+            }
+
+            .login-panel-body {
+                padding: 10px;
+                color: #000000;
+                font-family: Arial, Verdana, sans-serif;
+                font-size: 13px;
+            }
+
+            .info-section, .info {
+                font-weight: bold;
+            }
+
+            .body-section, .login-panel-body {
+                font-weight: bold;
+            }
+            .body-list, .login-panel-body {
+                font-weight: normal;
+            }
+        </style>
+    </ui:define>
+
+    <ui:define name="pageTitle">
+        <h:outputText value="#{msgs['login.pageTitle']}"/>
+    </ui:define>
+
+    <ui:define name="body">
+        <div class="login-panel">
+            <div class="login-panel-header">
+                <h:outputText value="Failed to check certificate"/>
+            </div>
+
+            <div class="login-panel-body">
+                <ui:param name="client" value="#{clientService.getClient(identity.sessionId.sessionAttributes['client_id'])}" />
+
+                <h:panelGroup rendered='#{!empty client.getLogoUri()}'>
+                    <h:graphicImage url='#{client.getLogoUri()}'/>
+                </h:panelGroup>
+
+                <p class="info-section">
+                    <h:outputText value="oxAuth Login error when checking current certificate"/>
+                </p>
+
+                <div class="dialog">
+                    <h:panelGrid columns="1" border="0" rowClasses="prop" columnClasses="value">
+                        <p></p>
+                        <p class="body-section">#{msgs['cert.thisCanHappen']}</p>
+                        <ul class="body-list"><li>#{msgs['cert.youHaveExpired']}</li></ul>
+                        <ul class="body-list"><li>#{msgs['cert.youFailedToInstall']}</li></ul>
+                        <ul class="body-list"><li>#{msgs['cert.youHaveAlreadyOpened']}</li></ul>
+                        <ul class="body-list"><li>#{msgs['cert.ifYouUseMacOS']}</li></ul>
+
+                        <p></p>
+                        <p class="body-section">#{msgs['cert.noteInternetExplorer']}</p>
+                        <ul class="body-list"><li>#{msgs['cert.ifYouAreUsing']}</li></ul>
+                        <ul class="body-list"><li>#{msgs['cert.ifYouUseFireFox']}</li></ul>
+                    </h:panelGrid>
+                </div>
+
+                <h:panelGroup rendered='#{!empty client.getPolicyUri()}'>
+                    <p>
+                        <h:outputText value="#{msgs['common.agreePolicy']}"/>
+                        <a target="_blank" href='#{client.getPolicyUri()}'>
+                            <h:outputText value="#{msgs['common.privacyPolicy']}"/>
+                        </a>
+                    </p>
+                </h:panelGroup>
+
+                <h:panelGroup rendered='#{!empty client.getTosUri()}'>
+                    <p>
+                        <h:outputText value="#{msgs['common.pleaseReadTheTos']}"/>
+                        <a target="_blank" href='#{client.getTosUri()}'>
+                            <h:outputText value="#{msgs['common.termsOfService']}"/>
+                        </a>
+                    </p>
+                </h:panelGroup>
+            </div>
+        </div>
+    </ui:define>
+</ui:composition>
\ No newline at end of file
diff --git a/oxAuth/Server/src/main/webapp/auth/cert/login.xhtml b/oxAuth/Server/src/main/webapp/auth/cert/login.xhtml
new file mode 100644
index 00000000..4e122606
--- /dev/null
+++ b/oxAuth/Server/src/main/webapp/auth/cert/login.xhtml
@@ -0,0 +1,150 @@
+<!DOCTYPE composition PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN"
+        "http://www.w3.org/TR/xhtml1/DTD/xhtml1-transitional.dtd">
+<ui:composition xmlns="http://www.w3.org/1999/xhtml"
+                xmlns:f="http://xmlns.jcp.org/jsf/core"
+                xmlns:ui="http://xmlns.jcp.org/jsf/facelets"
+                xmlns:h="http://xmlns.jcp.org/jsf/html"
+                template="/WEB-INF/incl/layout/template.xhtml">
+
+    <f:metadata>
+	<f:viewAction action="#{authenticator.prepareAuthenticationForStep}" if="#{not identity.loggedIn}" />
+    </f:metadata>
+
+    <ui:define name="head">
+        <style type="text/css">
+            .login-panel {
+                border-style: solid;
+                border-width: 1px;
+                padding: 1px;
+                background-color: #FFFFFF;
+                border-color: #C4C0B9;
+            }
+
+            .login-panel-header {
+                background-color: #D4CFC7;
+                background-image: url("#{oxAuthConfigurationService.getImgLocation()}/panel_header_bg.png");
+                background-position: left top;
+                background-repeat: repeat-x;
+                border-style: solid;
+                border-width: 1px;
+                padding: 2px;
+                border-color: #D4CFC7;
+                color: #000000;
+                font-family: Arial, Verdana, sans-serif;
+                font-size: 11px;
+                font-weight: bold;
+            }
+
+            .login-panel-body {
+                padding: 10px;
+                color: #000000;
+                font-family: Arial, Verdana, sans-serif;
+                font-size: 13px;
+            }
+
+            .info-section, .info {
+                font-weight: bold;
+            }
+
+            .body-section, .login-panel-body {
+                font-weight: bold;
+            }
+            .body-list, .login-panel-body {
+                font-weight: bold;
+            }
+        </style>
+        <h:panelGroup rendered="#{identity.getWorkingParameter('recaptcha_site_key') != null}">
+            <script src="https://www.google.com/recaptcha/api.js" async="async" defer="defer"></script>
+        </h:panelGroup>
+    </ui:define>
+
+    <ui:define name="pageTitle">
+        <h:outputText value="#{msgs['login.pageTitle']}"/>
+    </ui:define>
+
+    <ui:define name="body">
+        <table border="0" align="center">
+            <tr>
+                <td>
+                    <div>
+                        <h:form id="loginForm">
+                            <h:panelGroup rendered="#{not identity.loggedIn}">
+                                <div class="login-panel">
+                                    <div class="login-panel-header">
+                                        <h:outputText value="#{msgs['login.login']}"/>
+                                    </div>
+                                    <div class="login-panel-body">
+                                        <ui:param name="client" value="#{clientService.getClient(identity.sessionId.sessionAttributes['client_id'])}" />
+
+                                        <h:panelGroup rendered='#{!empty client.getLogoUri()}'>
+                                            <h:graphicImage url='#{client.getLogoUri()}'/>
+                                        </h:panelGroup>
+
+                                        <p class="info-section">
+                                            <h:outputText value="Please folow next steps to login here"/>
+                                        </p>
+
+                                        <div class="dialog">
+                                            <h:panelGrid columns="1" border="0" rowClasses="prop" columnClasses="name, name">
+                                                <h:panelGroup rendered="#{identity.getWorkingParameter('recaptcha_site_key') != null}">
+                                                    <p class="body-list">1. Enter right answer:</p>
+                                                    <div class="g-recaptcha" data-sitekey="#{identity.getWorkingParameter('recaptcha_site_key')}"></div>
+                                                </h:panelGroup>
+
+                                                <p class="body-list">#{identity.getWorkingParameter('recaptcha_site_key') == null ? '1' : '2'}. Click «Login» button.</p>
+                                                <p/>
+
+                                                <p class="body-list">#{identity.getWorkingParameter('recaptcha_site_key') == null ? '2' : '3'}. If the certificates list appears then choose right certificate.</p>
+                                                <p/>
+                                            </h:panelGrid>
+                                        </div>
+
+                                        <h:panelGroup rendered='#{!empty client.getPolicyUri()}'>
+                                            <p>
+                                                <h:outputText value="#{msgs['common.agreePolicy']}"/>
+                                                <a target="_blank" href='#{client.getPolicyUri()}'>
+                                                    <h:outputText value="#{msgs['common.privacyPolicy']}"/>
+                                                </a>
+                                            </p>
+                                        </h:panelGroup>
+
+                                        <h:panelGroup rendered='#{!empty client.getTosUri()}'>
+                                            <p>
+                                                <h:outputText value="#{msgs['common.pleaseReadTheTos']}"/>
+                                                <a target="_blank" href='#{client.getTosUri()}'>
+                                                    <h:outputText value="#{msgs['common.termsOfService']}"/>
+                                                </a>
+                                            </p>
+                                        </h:panelGroup>
+
+                                        <div class="actionButtons">
+                                            <h:commandButton id="loginButton"
+                                                             value="#{msgs['login.login']}"
+                                                             action="#{authenticator.authenticate}" />
+
+                                            <h:panelGroup id="registerId" style="display:none">
+                                                <h:commandButton id="registerButton"
+                                                                 value="#{msgs['login.register']}"
+                                                                 action="#{authenticator.authenticate}" />
+                                            </h:panelGroup>
+                                        </div>
+                                    </div>
+                                </div>
+                            </h:panelGroup>
+                        </h:form>
+                    </div>
+                </td>
+            </tr>
+        </table>
+        <script type="text/javascript">
+            window.onload = function() {
+                document.getElementById("loginForm:username").focus();
+
+                var displayRegister = #{identity.getWorkingParameter('display_register_action') or identity.sessionId.sessionAttributes['display_register_action']};
+                if (displayRegister) {
+                    document.getElementById("loginForm:registerId").style.display = 'inline';
+                }
+            };
+        </script>
+    </ui:define>
+</ui:composition>
\ No newline at end of file
diff --git a/oxAuth/Server/src/main/webapp/auth/compromised/complogin.xhtml b/oxAuth/Server/src/main/webapp/auth/compromised/complogin.xhtml
new file mode 100644
index 00000000..4736f226
--- /dev/null
+++ b/oxAuth/Server/src/main/webapp/auth/compromised/complogin.xhtml
@@ -0,0 +1,87 @@
+<!DOCTYPE composition PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN"
+        "http://www.w3.org/TR/xhtml1/DTD/xhtml1-transitional.dtd">
+<ui:composition xmlns="http://www.w3.org/1999/xhtml"
+        xmlns:f="http://xmlns.jcp.org/jsf/core"
+        xmlns:ui="http://xmlns.jcp.org/jsf/facelets"
+        xmlns:h="http://xmlns.jcp.org/jsf/html"
+        template="/WEB-INF/incl/layout/login-extended-template.xhtml">
+        <f:metadata>
+                <f:viewAction action="#{authenticator.prepareAuthenticationForStep}" if="#{not identity.loggedIn}" />
+        </f:metadata>
+
+        <ui:define name="head">
+                <meta name="description" content="Gluu, Inc." />
+        </ui:define>
+
+        <ui:define name="pageTitle">
+                <h:outputText value="#{msgs['login.pageTitle']}" />
+        </ui:define>
+
+        <ui:define name="body">
+        <div class="bs-docs-section">
+                <div class="container">
+                        <h:panelGroup  rendered="true">
+                        <div class="login_bx">
+                                <div class="row">
+				   <div class="left_form_bx">
+					<p class="info-section" style="color:red">
+					    <h:outputText value="Your password has been compromised! Please answer this question to reset password"/>
+					</p>
+					<h:form id="loginForm"  class="form-horizontal">
+					<h:panelGroup
+								rendered="#{sessionIdService.notSessionIdAuthenticated}">
+
+					<h:messages style="color:red;" />
+
+					  <div class="form-group">
+						<h:outputLabel styleClass="col-sm-3 control-label"      for="loginForm:question" value="#{identity.getWorkingParameter('question_label')}" />
+						<div class="col-sm-9">
+						  <input id="loginForm:question" name="loginForm:question"
+											type="text" autocomplete="off" />
+						</div>
+					  </div>
+
+					  <div class="form-group">
+						<div class="col-sm-offset-3 col-sm-9">
+						  <h:commandButton id="loginButton" styleClass="btn btn-primary"
+												value="Submit"
+												action="#{authenticator.authenticate}" />
+						</div>
+					  </div>
+
+					  </h:panelGroup>
+					</h:form>
+					</div>
+					<h:panelGroup layout="block" rendered="#{external_registration_uri != Null}">
+					<div class="reg_link">
+							<a href="#{external_registration_uri}">
+							 <h:outputText value="Register Now   " />
+							</a>
+					</div>
+					</h:panelGroup>
+				</div>
+                        </div>
+                        </h:panelGroup>
+                </div>
+        </div>
+
+        <div class="foot_bor">
+                <div class="container">
+                        <div class="row">
+                                <div class="col-md-12">
+                                  <div class="padding_spc">
+                                        <p><h:outputText value="#{msgs['common.gluuInc']}" />  | <a target="_blank" href="https://github.com/GluuFederation/oxAuth/blob/master/LICENSE"><h:outputText value="#{msgs['common.caution']}" escape="false" /></a>
+                                        <h:panelGroup rendered='#{!empty client.policyUri}'>
+                                        | <a target="_blank" href="#{client.policyUri}"><h:outputText value="#{msgs['common.privacyPolicy']}" escape="false" /></a>
+                                        </h:panelGroup>
+                                        <h:panelGroup rendered='#{!empty client.tosUri}'>
+                                        | <a target="_blank" href="#{client.tosUri}"><h:outputText value="#{msgs['common.termsOfService']}" escape="false" /></a>
+                                        </h:panelGroup>
+                                        </p>
+                                        </div>
+                                </div>
+                        </div>
+                </div>
+        </div>
+        </ui:define>
+</ui:composition>
diff --git a/oxAuth/Server/src/main/webapp/auth/compromised/newpassword.xhtml b/oxAuth/Server/src/main/webapp/auth/compromised/newpassword.xhtml
new file mode 100644
index 00000000..637e4a62
--- /dev/null
+++ b/oxAuth/Server/src/main/webapp/auth/compromised/newpassword.xhtml
@@ -0,0 +1,117 @@
+<!DOCTYPE composition PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN"
+        "http://www.w3.org/TR/xhtml1/DTD/xhtml1-transitional.dtd">
+<ui:composition xmlns="http://www.w3.org/1999/xhtml"
+                xmlns:f="http://xmlns.jcp.org/jsf/core"
+                xmlns:ui="http://xmlns.jcp.org/jsf/facelets"
+                xmlns:h="http://xmlns.jcp.org/jsf/html"
+                template="/WEB-INF/incl/layout/template.xhtml">
+    <f:metadata>
+        <f:viewAction action="#{authenticator.prepareAuthenticationForStep}" if="#{not identity.loggedIn}"/>
+    </f:metadata>
+    <ui:define name="head">
+
+<style type="text/css">
+            .login-panel {
+                border-style: solid;
+                border-width: 1px;
+                padding: 1px;
+                background-color: #FFFFFF;
+                border-color: #C4C0B9;
+            }
+            .login-panel-header {
+                background-color: #D4CFC7;
+                background-image: url("#{oxAuthConfigurationService.getImgLocation()}/panel_header_bg.png");
+                background-position: left top;
+                background-repeat: repeat-x;
+                border-style: solid;
+                border-width: 1px;
+                padding: 2px;
+                border-color: #D4CFC7;
+                color: #000000;
+                font-family: Arial, Verdana, sans-serif;
+                font-size: 11px;
+                font-weight: bold;
+            }
+            .login-panel-body {
+                padding: 10px;
+                color: #000000;
+                font-family: Arial, Verdana, sans-serif;
+                font-size: 11px;
+            }
+        </style>
+    </ui:define>
+
+    <ui:define name="pageTitle">oxAuth Wikid - Login</ui:define>
+
+    <ui:define name="body">
+        <table border="0" align="center">
+            <tr>
+                <td>
+                    <div>
+                        <h:form id="loginForm">
+                            <token allowMultiplePosts="true"/>
+                            <h:panelGroup rendered="#{not identity.loggedIn}">
+                                <div class="login-panel">
+                                    <div class="login-panel-header">
+                                        <h:outputText value="#{messages['login.login']}"/>
+                                    </div>
+                                    <div class="login-panel-body">
+                                        <ui:param name="client" value="#{clientService.getClient(sessionAttributes['client_id'])}" />
+
+                                        <div rendered='#{!empty client.getLogoUri()}'>
+                                            <h:graphicImage url='#{client.getLogoUri()}'/>
+                                        </div>
+
+                                        <p class="info">
+                                            <h:outputText value="#{messages['login.pleaseLoginHere']}"/>
+                                        </p>
+
+                                        <div class="dialog">
+                                            <h:panelGrid columns="3" border="0" rowClasses="prop"
+                                                         columnClasses="name,value,hint">
+                                                                <h:outputLabel for="password">New Password</h:outputLabel>
+                                                                <input id="password" name="new_password"  type="password" autocomplete="off" />
+                                                <h:outputText value="Specify new password"/>
+                                            </h:panelGrid>
+                                        </div>
+
+                                        <div rendered='#{!empty client.getPolicyUri()}'>
+                                            <p>
+                                                <h:outputText value="#{messages['common.agreePolicy']}"/>
+                                                <a target="_blank" href='#{client.getPolicyUri()}'>
+                                                    <h:outputText value="#{messages['common.privacyPolicy']}"/>
+                                                </a>
+                                            </p>
+                                        </div>
+
+                                        <div rendered='#{!empty client.getTosUri()}'>
+                                            <p>
+                                                <h:outputText value="#{messages['common.pleaseReadTheTos']}"/>
+                                                <a target="_blank" href='#{client.getTosUri()}'>
+                                                    <h:outputText value="#{messages['common.termsOfService']}"/>
+                                                </a>
+                                            </p>
+                                        </div>
+                                                  <div class="form-group">
+                                                        <div class="col-sm-offset-3 col-sm-9">
+                                                          <h:commandButton id="loginButton" styleClass="btn btn-primary"
+                                                                                                        value="Update"
+                                                                                                        action="#{authenticator.authenticate}" />
+                                                        </div>
+                                                  </div>
+
+                                    </div>
+                                </div>
+                            </h:panelGroup>
+                        </h:form>
+                    </div>
+                </td>
+            </tr>
+        </table>
+        <script type="text/javascript">
+            window.onload = function() {
+                document.getElementById("loginForm:username").focus();
+            };
+        </script>
+    </ui:define>
+</ui:composition>
diff --git a/oxAuth/Server/src/main/webapp/auth/deduce/loginD.xhtml b/oxAuth/Server/src/main/webapp/auth/deduce/loginD.xhtml
new file mode 100644
index 00000000..bf54abcf
--- /dev/null
+++ b/oxAuth/Server/src/main/webapp/auth/deduce/loginD.xhtml
@@ -0,0 +1,144 @@
+<ui:composition xmlns="http://www.w3.org/1999/xhtml"
+	xmlns:f="http://xmlns.jcp.org/jsf/core"
+	xmlns:ui="http://xmlns.jcp.org/jsf/facelets"
+	xmlns:h="http://xmlns.jcp.org/jsf/html"
+	template="/passwordless/login-template.xhtml">
+	
+	<f:metadata>
+		<f:viewAction action="#{authenticator.prepareAuthenticationForStep}" if="#{not identity.loggedIn}" />
+	</f:metadata>
+	
+	<ui:define name="pageTitle">#{msgs['pwdless.pageTitle']}</ui:define>
+	
+	<ui:define name="maincontent">
+		<section class="pa4 shadow-4 bg-blank gray mw-20r cust-section">
+			<h2 class="f3 dark-blue2">#{msgs['casa.login.panel_title']}</h2>
+			<h:messages class="list dark-red tc pv2 ph0 ma0 f6" />
+			
+			<div id="panel_list" class="pt4 w5 dn">			
+			    <span class="dark-blue2">#{msgs['pwdless.choose']}</span>
+			    <ul id="list" class="list-group f7-cust pv3 pointer">
+			    </ul>
+			    
+			    <div align="center" class="pb3">
+			        <a href="javascript:hidelist()" class="f7-cust green hover-green">#{msgs['pwdless.other']}</a>
+			    </div>
+			</div>
+			
+			<h:form id="loginForm" class="pt3 w5 dn">
+			    
+				<div class="relative mt4 pb2">
+					<h:inputText id="username" value="#{credentials.username}" styleClass="focused-text w-100 pb1 dark-gray" />
+					<h:inputHidden id="clientIP" />
+					<h:inputHidden id="platform" />
+					<label class="focused-label-big">#{msgs['pwdless.username']}</label>
+				</div>
+				<div class="mt5 flex justify-end">
+					<input id="cancel" class="f7-cust bw0 br1 ph4 pv2 bg-orange2 white hover-bg-orange2 hover-white btn cust-misc-button mr2 dn" 
+					    onclick="showlist()" type="button" value="#{msgs['casa.cancel']}" />
+					    
+					<h:commandButton class="f7-cust bw0 br1 ph4 pv2 bg-bsgreen-success white hover-bsgreen-success hover-white btn cust-primary-button"
+						id="loginButton" value="#{msgs['login.login']}" action="#{authenticator.authenticate}" />						
+				</div>
+				
+			</h:form>
+		</section>
+		<script src="#{oxAuthConfigurationService.getJsLocation()}/platform.js" ></script>
+		<script>
+		//<![CDATA[
+			 $(document).ready(function () {
+    			fillClientIP();
+    			fillPlatformField();
+    		});
+			function fillClientIP() {
+                	$.getJSON('https://api.db-ip.com/v2/free/self', function(data) {
+                		  document.getElementById("loginForm:clientIP").value =data.ipAddress;
+                		});
+            }
+			function fillPlatformField() {
+                try {
+                    re = /^([^\.]+\.[^\.]+)\..+/;
+                    result = re.exec(platform.version);
+                    if (result != null) {
+                        platform.version=result[1];
+                    }
+    			    document.getElementById("loginForm:platform").value = JSON.stringify(platform);
+                } catch (e) {
+                }
+            }
+			
+		    let duration = 500
+    		
+		    function showlist() {
+	   		    $("#loginForm").slideUp(duration, function() {
+		   		    $("#panel_list").slideDown(duration, function() {
+		   	   	    })
+	   		    })
+   		    }
+		
+            function hidelist() {            
+			    $("#panel_list").slideUp(duration, function() {
+				    $("#loginForm").slideDown(duration, function() {
+				    })
+			    })
+			
+		    }
+		    
+		    function choose(uid) {		    
+				var form = document.forms.loginForm
+				form["loginForm:username"].value = uid
+				form["loginForm:loginButton"].click()
+		    }
+		
+			//This is needed since JSF does not allow to set required attribute
+			$(".focused-text").attr("required", "true")
+			
+			let loginHint = '${identity.getWorkingParameter('loginHint')}'			
+			if (loginHint.length > 0) {
+			    //Populate input text
+			    $("#loginForm:username").val(loginHint)
+			}
+			
+			let users = '${identity.getWorkingParameter('users')}'			
+			users = (users.length > 0) ? JSON.parse(users) : [ ]
+			
+			if (users.length > 0) {
+			    //Populate list
+			    
+			    let li = ''
+			    for (let user of users) {
+			    
+			       div = '<div class="flex justify-between">'
+			       div = div + '<span class="dark-gray">' + user.uid  + '</span>'
+			       
+			       if (user.displayName.length > 0) {
+			           div = div + '<span>(' + user.displayName  + ')</span>'
+			       }
+			       div = div + '</div>'
+			       
+			       li = li + '<li class="list-group-item hover-bg-light-gray gray hover-dark-gray pt2" onClick="javascript:choose(\''
+			       li = li + user.uid + '\')">'
+			       li = li + div
+			       li = li + '</li>'
+			    }
+			    
+			    $("#list").append(li)
+			    $("#cancel").removeClass("dn")
+			    $("#panel_list").removeClass("dn")
+			    
+			} else {
+			    $("#loginForm").removeClass("dn")			    
+			}
+					//    	]]>
+		</script>
+		<!-- Sample markup for list:
+		<li class="list-group-item hover-bg-light-gray gray hover-dark-gray pt2" onClick="javascript:choose('0')">
+			<div class="flex justify-between">
+				<span>Item 1</span>
+				<span>Your Item 1</span>
+			</div>
+		</li>
+		-->
+	</ui:define>
+
+</ui:composition>
diff --git a/oxAuth/Server/src/main/webapp/auth/duo/duologin.xhtml b/oxAuth/Server/src/main/webapp/auth/duo/duologin.xhtml
new file mode 100644
index 00000000..8d797df1
--- /dev/null
+++ b/oxAuth/Server/src/main/webapp/auth/duo/duologin.xhtml
@@ -0,0 +1,61 @@
+<!DOCTYPE composition PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN"
+        "http://www.w3.org/TR/xhtml1/DTD/xhtml1-transitional.dtd">
+<ui:composition xmlns="http://www.w3.org/1999/xhtml"
+	xmlns:f="http://xmlns.jcp.org/jsf/core"
+	xmlns:ui="http://xmlns.jcp.org/jsf/facelets"
+	xmlns:b="http://bootsfaces.net/ui"
+	xmlns:h="http://xmlns.jcp.org/jsf/html"
+	template="/WEB-INF/incl/layout/login-extended-template.xhtml">
+	<f:metadata>
+		<f:viewAction action="#{authenticator.prepareAuthenticationForStep}"
+			if="#{not identity.loggedIn}" />
+	</f:metadata>
+	<ui:define name="head">
+		<meta name="viewport" content="width=device-width, initial-scale=1"/>
+		<meta http-equiv="X-UA-Compatible" content="IE=edge"/>
+		<script src="./js/Duo-Web-v2.min.js" />
+		<script>
+            Duo.init({
+                'host':'#{identity.getWorkingParameter('duo_host')}',
+                'sig_request':'#{identity.getWorkingParameter('duo_sig_request')}',
+                'post_action':'#{request.contextPath}/postlogin.htm',
+            });
+        </script>
+		<style type="text/css">
+		
+		#duo_iframe {
+    width: 100%;
+    min-width: 304px;
+    max-width: 100%;
+    height: 330px;
+    border: none;
+    border: none;
+	background: white;
+  }
+</style>
+	</ui:define>
+	<ui:define name="pageTitle">#{msgs['duologin.title']}</ui:define>
+	<ui:define name="body">
+		<form method="post" id="duo_form" />
+		<h:form id="loginForm2">
+			<h:panelGroup rendered="#{not identity.loggedIn}">
+				<b:panel title="#{msgs['duologin.login']}" look="primary"
+					style="margin:5% !important; margin-top:5px;" collapsible="false">
+					<div class="login-panel">
+						<ui:param name="client"
+							value="#{clientService.getClient(redirect.parameters['client_id'])}" />
+						<h:panelGroup rendered='#{!empty client.getLogoUri()}'>
+							<h:graphicImage url='#{client.getLogoUri()}' />
+						</h:panelGroup>
+						<iframe id="duo_iframe" width="100%" height="500" frameborder="0"></iframe>
+						<h:panelGroup rendered='#{!empty client.getPolicyUri()}'>
+							<p>
+								<a target="_blank" href='#{client.getPolicyUri()}'>#{msgs['duologin.termsPrivacy']}</a>
+							</p>
+						</h:panelGroup>
+					</div>
+				</b:panel>
+			</h:panelGroup>
+		</h:form>
+	</ui:define>
+</ui:composition>
\ No newline at end of file
diff --git a/oxAuth/Server/src/main/webapp/auth/duo/js/Duo-Web-v2.min.js b/oxAuth/Server/src/main/webapp/auth/duo/js/Duo-Web-v2.min.js
new file mode 100644
index 00000000..c087b80a
--- /dev/null
+++ b/oxAuth/Server/src/main/webapp/auth/duo/js/Duo-Web-v2.min.js
@@ -0,0 +1 @@
+window.Duo=function(e,t){var i=/^(?:AUTH|ENROLL)+\|[A-Za-z0-9\+\/=]+\|[A-Za-z0-9\+\/=]+$/;var n=/^ERR\|[\w\s\.\(\)]+$/;var o="duo_iframe",a="",r="sig_response",s,f,u,d,m;function c(e,t){throw new Error("Duo Web SDK error: "+e+(t?"\n"+"See "+t+" for more information":""))}function h(e){return e.replace(/([a-z])([A-Z])/,"$1-$2").toLowerCase()}function g(e,t){if("dataset"in e){return e.dataset[t]}else{return e.getAttribute("data-"+h(t))}}function p(e,i,n,o){if("addEventListener"in t){e.addEventListener(i,o,false)}else{e.attachEvent(n,o)}}function l(e,i,n,o){if("removeEventListener"in t){e.removeEventListener(i,o,false)}else{e.detachEvent(n,o)}}function w(t){p(e,"DOMContentLoaded","onreadystatechange",t)}function v(t){l(e,"DOMContentLoaded","onreadystatechange",t)}function E(e){p(t,"message","onmessage",e)}function b(e){l(t,"message","onmessage",e)}function _(e){if(!e){return}if(e.indexOf("ERR|")===0){c(e.split("|")[1])}if(e.indexOf(":")===-1||e.split(":").length!==2){c("Duo was given a bad token.  This might indicate a configuration "+"problem with one of Duo's client libraries.","https://www.duosecurity.com/docs/duoweb#first-steps")}var t=e.split(":");f=e;u=t[0];d=t[1];return{sigRequest:e,duoSig:t[0],appSig:t[1]}}function y(){m=e.getElementById(o);if(!m){throw new Error("This page does not contain an iframe for Duo to use."+'Add an element like <iframe id="duo_iframe"></iframe> '+"to this page.  "+"See https://www.duosecurity.com/docs/duoweb#3.-show-the-iframe "+"for more information.")}q();v(y)}function D(e){return Boolean(e.origin==="https://"+s&&typeof e.data==="string"&&(e.data.match(i)||e.data.match(n)))}function A(t){if(t){if(t.host){s=t.host}if(t.sig_request){_(t.sig_request)}if(t.post_action){a=t.post_action}if(t.post_argument){r=t.post_argument}if(t.iframe){if("tagName"in t.iframe){m=t.iframe}else if(typeof t.iframe==="string"){o=t.iframe}}}if(m){q()}else{m=e.getElementById(o);if(m){q()}else{w(y)}}v(A)}function L(e){if(D(e)){R(e.data);b(L)}}function q(){if(!s){s=g(m,"host");if(!s){c("No API hostname is given for Duo to use.  Be sure to pass "+"a `host` parameter to Duo.init, or through the `data-host` "+"attribute on the iframe element.","https://www.duosecurity.com/docs/duoweb#3.-show-the-iframe")}}if(!u||!d){_(g(m,"sigRequest"));if(!u||!d){c("No valid signed request is given.  Be sure to give the "+"`sig_request` parameter to Duo.init, or use the "+"`data-sig-request` attribute on the iframe element.","https://www.duosecurity.com/docs/duoweb#3.-show-the-iframe")}}if(a===""){a=g(m,"postAction")||a}if(r==="sig_response"){r=g(m,"postArgument")||r}m.src=["https://",s,"/frame/web/v1/auth?tx=",u,"&parent=",e.location.href,"&v=2.1"].join("");E(L)}function R(t){var i=e.createElement("input");i.type="hidden";i.name=r;i.value=t+":"+d;var n=e.getElementById("duo_form");if(!n){n=e.createElement("form");m.parentElement.insertBefore(n,m.nextSibling)}n.method="POST";n.action=a;n.appendChild(i);n.submit()}w(A);return{init:A,_parseSigRequest:_,_isDuoMessage:D}}(document,window);
\ No newline at end of file
diff --git a/oxAuth/Server/src/main/webapp/auth/email_auth/entertoken.xhtml b/oxAuth/Server/src/main/webapp/auth/email_auth/entertoken.xhtml
new file mode 100644
index 00000000..ffba4cd3
--- /dev/null
+++ b/oxAuth/Server/src/main/webapp/auth/email_auth/entertoken.xhtml
@@ -0,0 +1,92 @@
+<!DOCTYPE composition PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN"
+        "http://www.w3.org/TR/xhtml1/DTD/xhtml1-transitional.dtd">
+
+<ui:composition xmlns="http://www.w3.org/1999/xhtml"
+                xmlns:f="http://xmlns.jcp.org/jsf/core"
+                xmlns:ui="http://xmlns.jcp.org/jsf/facelets"
+                xmlns:h="http://xmlns.jcp.org/jsf/html"
+                template="/WEB-INF/incl/layout/template.xhtml">
+	
+	<f:metadata>
+		<f:viewAction action="#{authenticator.prepareAuthenticationForStep}" if="#{not identity.loggedIn}"/>
+	</f:metadata>
+    
+	<ui:define name="head">
+		<meta name="description" content="Gluu Inc." />
+		<!-- Here we use # {...} which are JSF EL expressions, they bind server values to this markup -->
+		<link href="#{oxAuthConfigurationService.getCssLocation()}/bootstrap.min.css" rel="stylesheet"/>
+		<link rel="stylesheet" href="#{oxAuthConfigurationService.getCssLocation()}/style.css"/>
+		<link href="https://fonts.googleapis.com/css?family=Open+Sans:300,400,600" rel="stylesheet"/>
+	</ui:define>
+
+	<ui:define name="body">
+		<!-- this is copy pasted from somewhere ... -->		
+		<header class="bs-docs-nav navbar navbar-static-top" id="top">
+			<div class="container">
+				<div class="navbar-header">
+					<a target="_blank" class="navbar-brand">
+					<ui:param name="client" value="#{clientService.getClient(redirect.parameters['client_id'])}" />
+                        <h:panelGroup rendered='#{!empty client.getLogoUri()}'>
+                            <h:graphicImage url='#{client.getLogoUri()}'/>
+                        </h:panelGroup> </a>
+				</div>
+			</div>
+		</header>
+	
+		<h:form id="ResetTokenForm">
+			<div class="bs-docs-section">
+				<div class="container">
+					<div class="step_bx">
+						<h2>Authentication Token</h2>
+						<p>Enter the token received in your email</p><p id="msg"></p>
+						<img
+							src="/oxauth/ext/resources/img/ver_code.png"
+							alt="ver_code" />
+						<!-- This form field is referenced in authenticate method of script -->
+						<input class="form-control" id="ResetTokenForm:inputToken" name="ResetTokenForm:inputToken"
+							type="text" autocomplete="off" />
+
+						
+						
+						<h:commandButton class="btn btn-done" value="Submit"
+							action="#{authenticator.authenticate}" />		
+					</div>
+				</div>
+			</div>		
+		</h:form>
+		
+		<script type="text/javascript">
+		
+		  window.onload = start;
+		   function start() {
+               
+				func1();
+			}
+			 function func1() {
+                
+                user_email = `#{identity.sessionId.sessionAttributes['useremail']}`;
+				
+				
+				var avg, temp, splitted, part1, part2;
+				splitted = user_email.split("@");
+			  
+				part1 = splitted[0];
+			   
+				
+				temp = part1.length - 3;
+				part1 = part1.substring(temp, part1.length);
+								
+				part2 = splitted[1];
+			   
+				avg =  "..." + part1 + "@" + part2;
+				
+				
+				var text = document.getElementById("msg");
+                text.innerHTML = avg;
+
+                
+			}
+		</script>
+	</ui:define>
+	
+</ui:composition>
\ No newline at end of file
diff --git a/oxAuth/Server/src/main/webapp/auth/fido2/js/base64js.js b/oxAuth/Server/src/main/webapp/auth/fido2/js/base64js.js
new file mode 100644
index 00000000..8b055fb5
--- /dev/null
+++ b/oxAuth/Server/src/main/webapp/auth/fido2/js/base64js.js
@@ -0,0 +1 @@
+(function(r){if(typeof exports==="object"&&typeof module!=="undefined"){module.exports=r()}else if(typeof define==="function"&&define.amd){define([],r)}else{var e;if(typeof window!=="undefined"){e=window}else if(typeof global!=="undefined"){e=global}else if(typeof self!=="undefined"){e=self}else{e=this}e.base64js=r()}})(function(){var r,e,n;return function(){function r(e,n,t){function o(i,a){if(!n[i]){if(!e[i]){var u=typeof require=="function"&&require;if(!a&&u)return u(i,!0);if(f)return f(i,!0);var d=new Error("Cannot find module '"+i+"'");throw d.code="MODULE_NOT_FOUND",d}var c=n[i]={exports:{}};e[i][0].call(c.exports,function(r){var n=e[i][1][r];return o(n?n:r)},c,c.exports,r,e,n,t)}return n[i].exports}var f=typeof require=="function"&&require;for(var i=0;i<t.length;i++)o(t[i]);return o}return r}()({"/":[function(r,e,n){"use strict";n.byteLength=c;n.toByteArray=v;n.fromByteArray=s;var t=[];var o=[];var f=typeof Uint8Array!=="undefined"?Uint8Array:Array;var i="ABCDEFGHIJKLMNOPQRSTUVWXYZabcdefghijklmnopqrstuvwxyz0123456789+/";for(var a=0,u=i.length;a<u;++a){t[a]=i[a];o[i.charCodeAt(a)]=a}o["-".charCodeAt(0)]=62;o["_".charCodeAt(0)]=63;function d(r){var e=r.length;if(e%4>0){throw new Error("Invalid string. Length must be a multiple of 4")}return r[e-2]==="="?2:r[e-1]==="="?1:0}function c(r){return r.length*3/4-d(r)}function v(r){var e,n,t,i,a;var u=r.length;i=d(r);a=new f(u*3/4-i);n=i>0?u-4:u;var c=0;for(e=0;e<n;e+=4){t=o[r.charCodeAt(e)]<<18|o[r.charCodeAt(e+1)]<<12|o[r.charCodeAt(e+2)]<<6|o[r.charCodeAt(e+3)];a[c++]=t>>16&255;a[c++]=t>>8&255;a[c++]=t&255}if(i===2){t=o[r.charCodeAt(e)]<<2|o[r.charCodeAt(e+1)]>>4;a[c++]=t&255}else if(i===1){t=o[r.charCodeAt(e)]<<10|o[r.charCodeAt(e+1)]<<4|o[r.charCodeAt(e+2)]>>2;a[c++]=t>>8&255;a[c++]=t&255}return a}function l(r){return t[r>>18&63]+t[r>>12&63]+t[r>>6&63]+t[r&63]}function h(r,e,n){var t;var o=[];for(var f=e;f<n;f+=3){t=(r[f]<<16&16711680)+(r[f+1]<<8&65280)+(r[f+2]&255);o.push(l(t))}return o.join("")}function s(r){var e;var n=r.length;var o=n%3;var f="";var i=[];var a=16383;for(var u=0,d=n-o;u<d;u+=a){i.push(h(r,u,u+a>d?d:u+a))}if(o===1){e=r[n-1];f+=t[e>>2];f+=t[e<<4&63];f+="=="}else if(o===2){e=(r[n-2]<<8)+r[n-1];f+=t[e>>10];f+=t[e>>4&63];f+=t[e<<2&63];f+="="}i.push(f);return i.join("")}},{}]},{},[])("/")});
diff --git a/oxAuth/Server/src/main/webapp/auth/fido2/js/base64url.js b/oxAuth/Server/src/main/webapp/auth/fido2/js/base64url.js
new file mode 100644
index 00000000..42054ead
--- /dev/null
+++ b/oxAuth/Server/src/main/webapp/auth/fido2/js/base64url.js
@@ -0,0 +1,64 @@
+// Copyright (c) 2018, Yubico AB
+// All rights reserved.
+//
+// Redistribution and use in source and binary forms, with or without
+// modification, are permitted provided that the following conditions are met:
+//
+// 1. Redistributions of source code must retain the above copyright notice, this
+//    list of conditions and the following disclaimer.
+//
+// 2. Redistributions in binary form must reproduce the above copyright notice,
+//    this list of conditions and the following disclaimer in the documentation
+//    and/or other materials provided with the distribution.
+//
+// THIS SOFTWARE IS PROVIDED BY THE COPYRIGHT HOLDERS AND CONTRIBUTORS "AS IS"
+// AND ANY EXPRESS OR IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE
+// IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR PURPOSE ARE
+// DISCLAIMED. IN NO EVENT SHALL THE COPYRIGHT HOLDER OR CONTRIBUTORS BE LIABLE
+// FOR ANY DIRECT, INDIRECT, INCIDENTAL, SPECIAL, EXEMPLARY, OR CONSEQUENTIAL
+// DAMAGES (INCLUDING, BUT NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS OR
+// SERVICES; LOSS OF USE, DATA, OR PROFITS; OR BUSINESS INTERRUPTION) HOWEVER
+// CAUSED AND ON ANY THEORY OF LIABILITY, WHETHER IN CONTRACT, STRICT LIABILITY,
+// OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY OUT OF THE USE
+// OF THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF SUCH DAMAGE.
+
+(function(root, factory) {
+  if (typeof define === 'function' && define.amd) {
+    define(['base64js'], factory);
+  } else if (typeof module === 'object' && module.exports) {
+    module.exports = factory(require('base64js'));
+  } else {
+    root.base64url = factory(root.base64js);
+  }
+})(this, function(base64js) {
+
+  function ensureUint8Array(arg) {
+    if (arg instanceof ArrayBuffer) {
+      return new Uint8Array(arg);
+    } else {
+      return arg;
+    }
+  }
+
+  function base64UrlToMime(code) {
+    return code.replace(/-/g, '+').replace(/_/g, '/') + '===='.substring(0, (4 - (code.length % 4)) % 4);
+  }
+
+  function mimeBase64ToUrl(code) {
+    return code.replace(/\+/g, '-').replace(/\//g, '_').replace(/=/g, '');
+  }
+
+  function fromByteArray(bytes) {
+    return mimeBase64ToUrl(base64js.fromByteArray(ensureUint8Array(bytes)));
+  }
+
+  function toByteArray(code) {
+    return base64js.toByteArray(base64UrlToMime(code));
+  }
+
+  return {
+    fromByteArray: fromByteArray,
+    toByteArray: toByteArray,
+  };
+
+});
diff --git a/oxAuth/Server/src/main/webapp/auth/fido2/js/webauthn.js b/oxAuth/Server/src/main/webapp/auth/fido2/js/webauthn.js
new file mode 100644
index 00000000..fb0983ce
--- /dev/null
+++ b/oxAuth/Server/src/main/webapp/auth/fido2/js/webauthn.js
@@ -0,0 +1,169 @@
+// Copyright (c) 2018, Yubico AB
+// All rights reserved.
+//
+// Redistribution and use in source and binary forms, with or without
+// modification, are permitted provided that the following conditions are met:
+//
+// 1. Redistributions of source code must retain the above copyright notice, this
+//    list of conditions and the following disclaimer.
+//
+// 2. Redistributions in binary form must reproduce the above copyright notice,
+//    this list of conditions and the following disclaimer in the documentation
+//    and/or other materials provided with the distribution.
+//
+// THIS SOFTWARE IS PROVIDED BY THE COPYRIGHT HOLDERS AND CONTRIBUTORS "AS IS"
+// AND ANY EXPRESS OR IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE
+// IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR PURPOSE ARE
+// DISCLAIMED. IN NO EVENT SHALL THE COPYRIGHT HOLDER OR CONTRIBUTORS BE LIABLE
+// FOR ANY DIRECT, INDIRECT, INCIDENTAL, SPECIAL, EXEMPLARY, OR CONSEQUENTIAL
+// DAMAGES (INCLUDING, BUT NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS OR
+// SERVICES; LOSS OF USE, DATA, OR PROFITS; OR BUSINESS INTERRUPTION) HOWEVER
+// CAUSED AND ON ANY THEORY OF LIABILITY, WHETHER IN CONTRACT, STRICT LIABILITY,
+// OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY OUT OF THE USE
+// OF THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF SUCH DAMAGE.
+
+(function(root, factory) {
+  if (typeof define === 'function' && define.amd) {
+    define(['base64url'], factory);
+  } else if (typeof module === 'object' && module.exports) {
+    module.exports = factory(require('base64url'));
+  } else {
+    root.webauthn = factory(root.base64url);
+  }
+})(this, function(base64url) {
+
+  function extend(obj, more) {
+    return Object.assign({}, obj, more);
+  }
+
+  /**
+   * Create a WebAuthn credential.
+   *
+   * @param request: object - A PublicKeyCredentialCreationOptions object, except
+   *   where binary values are base64url encoded strings instead of byte arrays
+   *
+   * @return a PublicKeyCredentialCreationOptions suitable for passing as the
+   *   `publicKey` parameter to `navigator.credentials.create()`
+   */
+  function decodePublicKeyCredentialCreationOptions(request) {
+    const excludeCredentials = request.excludeCredentials.map(credential => extend(
+      credential, {
+      id: base64url.toByteArray(credential.id),
+    }));
+
+    const publicKeyCredentialCreationOptions = extend(
+      request, {
+      attestation: 'direct',
+      user: extend(
+        request.user, {
+        id: base64url.toByteArray(request.user.id),
+      }),
+      challenge: base64url.toByteArray(request.challenge),
+      excludeCredentials,
+    });
+
+    return publicKeyCredentialCreationOptions;
+  }
+
+  /**
+   * Create a WebAuthn credential.
+   *
+   * @param request: object - A PublicKeyCredentialCreationOptions object, except
+   *   where binary values are base64url encoded strings instead of byte arrays
+   *
+   * @return the Promise returned by `navigator.credentials.create`
+   */
+  function createCredential(request) {
+    return navigator.credentials.create({
+      publicKey: decodePublicKeyCredentialCreationOptions(request),
+    });
+  }
+
+  /**
+   * Perform a WebAuthn assertion.
+   *
+   * @param request: object - A PublicKeyCredentialRequestOptions object,
+   *   except where binary values are base64url encoded strings instead of byte
+   *   arrays
+   *
+   * @return a PublicKeyCredentialRequestOptions suitable for passing as the
+   *   `publicKey` parameter to `navigator.credentials.get()`
+   */
+  function decodePublicKeyCredentialRequestOptions(request) {
+    const allowCredentials = request.allowCredentials && request.allowCredentials.map(credential => extend(
+      credential, {
+      id: base64url.toByteArray(credential.id),
+    }));
+
+    const publicKeyCredentialRequestOptions = extend(
+      request, {
+      allowCredentials,
+      challenge: base64url.toByteArray(request.challenge),
+    });
+
+    return publicKeyCredentialRequestOptions;
+  }
+
+  /**
+   * Perform a WebAuthn assertion.
+   *
+   * @param request: object - A PublicKeyCredentialRequestOptions object,
+   *   except where binary values are base64url encoded strings instead of byte
+   *   arrays
+   *
+   * @return the Promise returned by `navigator.credentials.get`
+   */
+  function getAssertion(request) {
+    console.log('Get assertion', request);
+    return navigator.credentials.get({
+      publicKey: decodePublicKeyCredentialRequestOptions(request),
+    });
+  }
+
+
+  /** Turn a PublicKeyCredential object into a plain object with base64url encoded binary values */
+  function responseToObject(response) {
+
+    let clientExtensionResults = {};
+
+    try {
+      clientExtensionResults = response.getClientExtensionResults();
+    } catch (e) {
+      console.error('getClientExtensionResults failed', e);
+    }
+
+    if (response.response.attestationObject) {
+      return {
+        type: response.type,
+        id: response.id,
+        response: {
+          attestationObject: base64url.fromByteArray(response.response.attestationObject),
+          clientDataJSON: base64url.fromByteArray(response.response.clientDataJSON),
+        },
+        clientExtensionResults,
+      };
+    } else {
+      return {
+        type: response.type,
+        id: response.id,
+        rawId: base64url.fromByteArray(response.rawId),
+        response: {
+          authenticatorData: base64url.fromByteArray(response.response.authenticatorData),
+          clientDataJSON: base64url.fromByteArray(response.response.clientDataJSON),
+          signature: base64url.fromByteArray(response.response.signature),
+          userHandle: response.response.userHandle && base64url.fromByteArray(response.response.userHandle),
+        },
+        clientExtensionResults,
+      };
+    }
+  }
+
+  return {
+    decodePublicKeyCredentialCreationOptions,
+    decodePublicKeyCredentialRequestOptions,
+    createCredential,
+    getAssertion,
+    responseToObject,
+  };
+
+});
diff --git a/oxAuth/Server/src/main/webapp/auth/fido2/login.xhtml b/oxAuth/Server/src/main/webapp/auth/fido2/login.xhtml
new file mode 100644
index 00000000..74b3efd5
--- /dev/null
+++ b/oxAuth/Server/src/main/webapp/auth/fido2/login.xhtml
@@ -0,0 +1,195 @@
+<!DOCTYPE composition PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN"
+        "http://www.w3.org/TR/xhtml1/DTD/xhtml1-transitional.dtd">
+<ui:composition xmlns="http://www.w3.org/1999/xhtml"
+	xmlns:f="http://xmlns.jcp.org/jsf/core"
+	xmlns:ui="http://xmlns.jcp.org/jsf/facelets"
+	xmlns:h="http://xmlns.jcp.org/jsf/html"
+	template="/WEB-INF/incl/layout/login-extended-template.xhtml">
+	<f:metadata>
+		<f:viewAction action="#{authenticator.prepareAuthenticationForStep}"
+			if="#{not identity.loggedIn}" />
+	</f:metadata>
+	<ui:define name="head">
+		<script src="js/base64js.js" />
+		<script src="js/base64url.js" />
+		<script src="js/webauthn.js" />
+
+		<script>
+			var assertion_request = ${identity.getWorkingParameter('fido2_assertion_request')};
+			var attestation_request = ${identity.getWorkingParameter('fido2_attestation_request')};
+
+			function setStatus(statusText) {
+				  document.getElementById('status').textContent = statusText;
+			}
+
+			function addMessage(message) {
+			  const el = document.getElementById('messages');
+			  const p = document.createElement('p');
+			  p.appendChild(document.createTextNode(message));
+			  el.appendChild(p);
+			}
+
+			function addMessages(messages) {
+			  messages.forEach(addMessage);
+			}
+
+			function startAttestation() {
+				console.log('Executing get attestation Fido2 request', attestation_request);
+
+				request = JSON.parse(attestation_request);
+				webauthn.createCredential(request).then(data => {
+					setStatus('Get attestation key data.');
+					document.getElementById('tokenResponse').value = JSON.stringify(webauthn.responseToObject(data));
+					document.getElementById('authMethod').value = 'enroll';
+
+					document.getElementById('fido2_form').submit();
+				}).catch((err) => {
+					setStatus('Registration failed.');
+					console.error('Registration failed', err);
+					
+					if (err.name === 'NotAllowedError') {
+						if (request.excludeCredentials &amp;&amp; (request.excludeCredentials.length > 0)) {
+							addMessage('Credential creation failed, probably because an already registered credential is avaiable.');
+						} else {
+							addMessage('Credential creation failed for an unknown reason.');
+						}
+					} else if (err.name === 'InvalidStateError') {
+						addMessage("This authenticator is not registered for the account '${identity.user.userId}'. Please try again with a registered authenticator.");
+					} else if (err.name === 'AbortError') {
+						addMessage('This operation is canceled by user.');
+				    } else if (err.message) {
+						addMessage(err.name + ' : ' + err.message);
+					} else if (err.messages) {
+						addMessages(err.messages);
+					}
+
+					return false;
+				});
+			}
+
+			function startAssertion() {
+				console.log('Executing get assertion Fido2 request', assertion_request);
+
+				request = JSON.parse(assertion_request);
+				webauthn.getAssertion(request).then(data => {
+					setStatus('Get assertion key data.');
+					document.getElementById('tokenResponse').value = JSON.stringify(webauthn.responseToObject(data));
+					document.getElementById('authMethod').value = 'authenticate';
+
+					document.getElementById('fido2_form').submit();
+				}).catch((err) => {
+					setStatus('Authentication failed.');
+					console.error('Authentication failed', err);
+					
+					if (err.name === 'InvalidStateError') {
+						addMessage("This authenticator is not registered for the account '${identity.user.userId}'. Please try again with a registered authenticator.");
+					} else if (err.name === 'AbortError') {
+						addMessage('This operation is canceled by user.');
+				    } else if (err.message) {
+						addMessage(err.name + ' : ' + err.message);
+				    } else if (err.messages) {
+						addMessages(err.messages);
+				    }
+
+					return false;
+				});
+			}
+            window.onload = function() {
+    			if (assertion_request != null) {
+    				setTimeout(startAssertion(), 1000);
+    			} else {
+    				setTimeout(startAttestation(), 1000);
+    			}
+            };
+		</script>
+
+		<style type="text/css">
+.h4, .h5, .h6, h4, h5, h6 {
+	margin-top: 10px;
+	margin-bottom: 10px;
+	color: black;
+}
+
+p {
+	margin: 0 0 15px !important;
+	margin: 0 !important;
+	padding: 10, 10 !important;
+}
+
+p {
+	display: block;
+	-webkit-margin-before: 1em !important;
+	-webkit-margin-after: 1em !important;
+	-webkit-margin-start: 0px !important;
+	-webkit-margin-end: 0px !important;
+}
+
+body {
+	font-family: "Helvetica Neue", Helvetica, Arial, sans-serif;
+	line-height: 1.42857143;
+}
+
+.step_bx {
+	margin: 0 30% auto;
+	border-radius: 5px !important;
+	max-height: 80%;
+	margin-bottom: 100px;
+}
+</style>
+	</ui:define>
+
+	<ui:define name="pageTitle">oxAuth - Fido2 Login</ui:define>
+	<ui:define name="body">
+		<form method="post"	id="fido2_form" action="#{request.contextPath}/postlogin.htm" onsubmit="return false;">
+			<input type="hidden" name="authMethod" id="authMethod" />
+			<input type="hidden" name="tokenResponse" id="tokenResponse" />
+		</form>
+		<h:form id="loginForm">
+			<h:panelGroup rendered="#{not identity.loggedIn}">
+				<ui:param name="client"
+					value="#{clientService.getClient(identity.sessionId.sessionAttributes['client_id'])}" />
+
+				<h:panelGroup rendered='#{!empty client.getLogoUri()}'>
+					<h:graphicImage url='#{client.getLogoUri()}' />
+				</h:panelGroup>
+				<div class="container">
+					<div class="step_bx">
+						<h2>#{msgs['fido2.verification.stepverification']}</h2>
+						<p>#{msgs['fido2.verification.usedevice']}</p>
+						<img
+							src="#{oxAuthConfigurationService.getImgLocation()}/step_ver.png"
+							alt="step_ver" />
+						<h4>#{msgs['fido2.verification.insertkey']}</h4>
+						<p>#{msgs['fido2.verification.useit']}</p>
+						<h:panelGroup>
+						    <p id="status"></p>
+						    <div id="messages"></div>
+						</h:panelGroup>
+					</div>
+				</div>
+				<h:panelGroup rendered='#{!empty client.getPolicyUri()}'>
+					<p>
+						<h:outputText value="#{msgs['common.agreePolicy']}" />
+						<a target="_blank" href='#{client.getPolicyUri()}'> <h:outputText
+								value="#{msgs['common.privacyPolicy']}" />
+						</a>
+					</p>
+				</h:panelGroup>
+
+				<h:panelGroup rendered='#{!empty client.getTosUri()}'>
+					<p>
+						<h:outputText value="#{msgs['common.pleaseReadTheTos']}" />
+						<a target="_blank" href='#{client.getTosUri()}'> <h:outputText
+								value="#{msgs['common.termsOfService']}" />
+						</a>
+					</p>
+				</h:panelGroup>
+				<div class="login-panel">
+					<h:panelGroup
+						rendered="fido2_assertion_request != 'null'}">
+					</h:panelGroup>
+				</div>
+			</h:panelGroup>
+		</h:form>
+	</ui:define>
+</ui:composition>
diff --git a/oxAuth/Server/src/main/webapp/auth/fido2/platform.xhtml b/oxAuth/Server/src/main/webapp/auth/fido2/platform.xhtml
new file mode 100644
index 00000000..71e96762
--- /dev/null
+++ b/oxAuth/Server/src/main/webapp/auth/fido2/platform.xhtml
@@ -0,0 +1,214 @@
+<!DOCTYPE composition PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN"
+        "http://www.w3.org/TR/xhtml1/DTD/xhtml1-transitional.dtd">
+<ui:composition xmlns="http://www.w3.org/1999/xhtml"
+	xmlns:f="http://xmlns.jcp.org/jsf/core"
+	xmlns:ui="http://xmlns.jcp.org/jsf/facelets"
+	xmlns:h="http://xmlns.jcp.org/jsf/html"
+	template="/WEB-INF/incl/layout/login-extended-template.xhtml">
+	<f:metadata>
+		<f:viewAction action="#{authenticator.prepareAuthenticationForStep}"
+			if="#{not identity.loggedIn}" />
+	</f:metadata>
+	<ui:define name="head">
+		<script src="js/base64js.js" />
+		<script src="js/base64url.js" />
+		<script src="js/webauthn.js" />
+
+		<script>
+                        var assertion_request = ${identity.getWorkingParameter('fido2_assertion_request')};
+                        var attestation_request = ${identity.getWorkingParameter('fido2_attestation_request')};
+
+                        function setStatus(statusText) {
+                                  document.getElementById('status').textContent = statusText;
+                        }
+
+                        function addMessage(message) {
+                          const el = document.getElementById('messages');
+                          const p = document.createElement('p');
+                          p.appendChild(document.createTextNode(message));
+                          el.appendChild(p);
+                        }
+
+                        function addMessages(messages) {
+                          messages.forEach(addMessage);
+                        }
+
+                        function startAttestation() {
+
+                                console.log('Executing get attestation Fido2 request'+ attestation_request);
+                                
+                                request = JSON.parse(attestation_request);
+                                console.log("parsed json - request "+request)
+                                webauthn.createCredential(request).then(data => {
+                                        console.error ('rinside create cred');
+                                        console.error(data);
+                                        setStatus('Get attestation key data.');
+                                        document.getElementById('tokenResponse').value = JSON.stringify(webauthn.responseToObject(data));
+                                        document.getElementById('authMethod').value = 'enroll';
+                                        document.getElementById('fido2_form').submit();
+                                }).catch((err) => {
+                                        setStatus('Registration failed.');
+                                        console.error('Registration failed'+ err);
+
+                                        if (err.name === 'NotAllowedError') {
+                                                if (request.excludeCredentials &amp;&amp; (request.excludeCredentials.length > 0)) {
+                                                        console.error('Credential creation failed, probably because an already registered credential is avaiable.');
+                                                } else {
+                                                        console.error('Credential creation failed for an unknown reason.');
+                                                }
+                                        } else if (err.name === 'InvalidStateError') {
+                                                console.error("This authenticator is not registered for the account '${identity.user.userId}'. Please try again with a registered authenticator.");
+                                        } else if (err.name === 'AbortError') {
+                                                console.error('This operation is canceled by user.');
+                                    } else if (err.message) {
+                                        console.error(err.name + ' : ' + err.message);
+                                        } else if (err.messages) {
+                                                console.error(err.messages);
+                                        }
+
+                                        return false;
+                                });
+                        }
+
+                        function startAssertion() {
+                                console.log('Executing get assertion Fido2 request'+ assertion_request);
+
+                                request = JSON.parse(assertion_request);
+                                webauthn.getAssertion(request).then(data => {
+                                        setStatus('Get assertion key data.'+JSON.stringify(webauthn.responseToObject(data)));
+                                        console.log ('data - '+JSON.stringify(webauthn.responseToObject(data)));
+                                         document.getElementById('tokenResponse').value = JSON.stringify(webauthn.responseToObject(data));
+                                        document.getElementById('authMethod').value = 'authenticate';
+
+                                        document.getElementById('fido2_form').submit();
+                                }).catch((err) => {
+                                        setStatus('Authentication failed.');
+                                        console.error('Authentication failed'+ err);
+
+                                        if (err.name === 'InvalidStateError') {
+                                                addMessage("This authenticator is not registered for the account '${identity.user.userId}'. Please try again with a registered authenticator.");
+                                        } else if (err.name === 'AbortError') {
+                                                addMessage('This operation is canceled by user.');
+                                    } else if (err.message) {
+                                                addMessage(err.name + ' : ' + err.message);
+                                    } else if (err.messages) {
+                                                addMessages(err.messages);
+                                    }
+
+                                        return false;
+                                });
+                        }
+
+           
+
+                </script>
+
+		<style type="text/css">
+.h4, .h5, .h6, h4, h5, h6 {
+	margin-top: 10px;
+	margin-bottom: 10px;
+	color: black;
+}
+
+p {
+	margin: 0 0 15px !important;
+	margin: 0 !important;
+	padding: 10, 10 !important;
+}
+
+p {
+	display: block;
+	-webkit-margin-before: 1em !important;
+	-webkit-margin-after: 1em !important;
+	-webkit-margin-start: 0px !important;
+	-webkit-margin-end: 0px !important;
+}
+
+body {
+	font-family: "Helvetica Neue", Helvetica, Arial, sans-serif;
+	line-height: 1.42857143;
+}
+
+.step_bx {
+	margin: 0 30% auto;
+	border-radius: 5px !important;
+	max-height: 80%;
+	margin-bottom: 100px;
+}
+</style>
+	</ui:define>
+
+	<ui:define name="pageTitle">oxAuth - Fido2 Login</ui:define>
+	<ui:define name="body">
+		<form method="post" id="fido2_form"
+			action="#{request.contextPath}/postlogin.htm"
+			onsubmit="return false;">
+			<input type="hidden" name="authMethod" id="authMethod" /> <input
+				type="hidden" name="tokenResponse" id="tokenResponse" />
+		</form>
+		<h:form id="loginForm">
+			<h:panelGroup rendered="#{not identity.loggedIn}">
+				<ui:param name="client"
+					value="#{clientService.getClient(identity.sessionId.sessionAttributes['client_id'])}" />
+				<h:panelGroup rendered='#{!empty client.getLogoUri()}'>
+					<h:graphicImage url='#{client.getLogoUri()}' />
+				</h:panelGroup>
+				<div class="container">
+					<div class="step_bx">
+						<h2>#{msgs['fido2.verification.stepverification']}</h2>
+						<p>#{msgs['fido2.touch.verification.usedevice']}</p>
+						<img
+							src="#{oxAuthConfigurationService.getImgLocation()}/touchid.jpg"
+							alt="step_ver" />
+						<h4>#{msgs['fido2.touch.verification.insertkey']}</h4>
+						<p>#{msgs['fido2.touch.verification.useit']}</p>
+                                                <input type="button" id="readyAuth" style="background-color: #00BE79; color:white;"
+                                                        styleClass="btn col-sm-12"
+                                                        value="#{msgs['login.use.touchID']}"  onclick="readyPressedFunction();" /> 
+						<!--h:commandButton id="readyAuth"
+							style="background-color: #00BE79; color:white;"
+							styleClass="btn col-sm-12"
+							value="    #{msgs['login.use.touchID']}"
+							onclick="readyPressedFunction();" iconAwesome="fa-sign-in" / -->
+						<h:panelGroup>
+							<p id="status"></p>
+							<div id="messages"></div>
+						</h:panelGroup>
+					</div>
+				</div>
+				<h:panelGroup rendered='#{!empty client.getPolicyUri()}'>
+					<p>
+						<h:outputText value="#{msgs['common.agreePolicy']}" />
+						<a target="_blank" href='#{client.getPolicyUri()}'> <h:outputText
+								value="#{msgs['common.privacyPolicy']}" />
+						</a>
+					</p>
+				</h:panelGroup>
+				<h:panelGroup rendered='#{!empty client.getTosUri()}'>
+					<p>
+						<h:outputText value="#{msgs['common.pleaseReadTheTos']}" />
+						<a target="_blank" href='#{client.getTosUri()}'> <h:outputText
+								value="#{msgs['common.termsOfService']}" />
+						</a>
+					</p>
+				</h:panelGroup>
+				<div class="login-panel">
+					<h:panelGroup rendered="fido2_assertion_request != 'null'}">
+					</h:panelGroup>
+				</div>
+			</h:panelGroup>
+		</h:form>
+
+<script type="text/javascript">
+
+ function readyPressedFunction(){
+      if (assertion_request != null) {
+            setTimeout(startAssertion(), 1000);
+   } else {
+       setTimeout(startAttestation(), 1000);
+   }
+}
+</script>
+	</ui:define>
+</ui:composition>
+
diff --git a/oxAuth/Server/src/main/webapp/auth/fido2/secKeys.xhtml b/oxAuth/Server/src/main/webapp/auth/fido2/secKeys.xhtml
new file mode 100644
index 00000000..4c6922ef
--- /dev/null
+++ b/oxAuth/Server/src/main/webapp/auth/fido2/secKeys.xhtml
@@ -0,0 +1,209 @@
+<!DOCTYPE composition PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN"
+        "http://www.w3.org/TR/xhtml1/DTD/xhtml1-transitional.dtd">
+<ui:composition xmlns="http://www.w3.org/1999/xhtml"
+        xmlns:f="http://xmlns.jcp.org/jsf/core"
+        xmlns:ui="http://xmlns.jcp.org/jsf/facelets"
+        xmlns:h="http://xmlns.jcp.org/jsf/html"
+        template="/WEB-INF/incl/layout/login-extended-template.xhtml">
+        <f:metadata>
+                <f:viewAction action="#{authenticator.prepareAuthenticationForStep}"
+                        if="#{not identity.loggedIn}" />
+        </f:metadata>
+        <ui:define name="head">
+                <script src="js/base64js.js" />
+                <script src="js/base64url.js" />
+                <script src="js/webauthn.js" />
+
+                <script>
+                        var assertion_request = ${identity.getWorkingParameter('fido2_assertion_request')};
+                        var attestation_request = ${identity.getWorkingParameter('fido2_attestation_request')};
+
+                        function setStatus(statusText) {
+                                  document.getElementById('status').textContent = statusText;
+                        }
+
+                        function addMessage(message) {
+                          const el = document.getElementById('messages');
+                          const p = document.createElement('p');
+                          p.appendChild(document.createTextNode(message));
+                          el.appendChild(p);
+                        }
+
+                        function addMessages(messages) {
+                          messages.forEach(addMessage);
+                        }
+
+                        function startAttestation() {
+                                console.log('Executing get attestation Fido2 request', attestation_request);
+
+                                request = JSON.parse(attestation_request);
+                                webauthn.createCredential(request).then(data => {
+                                        setStatus('Get attestation key data.');
+                                        document.getElementById('tokenResponse').value = JSON.stringify(webauthn.responseToObject(data));
+                                        document.getElementById('authMethod').value = 'enroll';
+                                        document.getElementById('fido2_form').submit();
+                                }).catch((err) => {
+                                        setStatus('Registration failed.');
+                                        console.error('Registration failed', err);
+
+                                        if (err.name === 'NotAllowedError') {
+                                                if (request.excludeCredentials &amp;&amp; (request.excludeCredentials.length > 0)) {
+                                                        addMessage('Credential creation failed, probably because an already registered credential is avaiable.');
+                                                } else {
+                                                        addMessage('Credential creation failed for an unknown reason.');
+                                                }
+                                        } else if (err.name === 'InvalidStateError') {
+                                                addMessage("This authenticator is not registered for the account '${identity.user.userId}'. Please try again with a registered authenticator.");
+                                        } else if (err.name === 'AbortError') {
+                                                addMessage('This operation is canceled by user.');
+                                    } else if (err.message) {
+                                                addMessage(err.name + ' : ' + err.message);
+                                        } else if (err.messages) {
+                                                addMessages(err.messages);
+                                        }
+
+                                        return false;
+                                });
+                        }
+
+                        function startAssertion() {
+                                console.log('Executing get assertion Fido2 request', assertion_request);
+
+                                if (assertion_request.indexOf("internal") !== -1 )
+                                	{
+                                                parentNode = document.getElementsByClassName('container')[0]; //.style.display = 'none';
+                                                document.getElementsByClassName('step_bx')[0].style.display = "none";
+
+                                	 	//const el = document.getElementById('messages');
+                          			const p = document.createElement('p');
+                        			p.appendChild(document.createTextNode("Platform authenticator (Touch ID) used to register this user is not present on this device. "));
+			                        parentNode.appendChild(p);
+						console.log ("Platform authenticator not present");
+						return false;
+                                	}
+                                else
+                                	{
+	                                	   request = JSON.parse(assertion_request);
+	                                       webauthn.getAssertion(request).then(data => {
+	                                               setStatus('Get assertion key data.');
+	                                               document.getElementById('tokenResponse').value = JSON.stringify(webauthn.responseToObject(data));
+	                                               document.getElementById('authMethod').value = 'authenticate';
+	
+	                                               document.getElementById('fido2_form').submit();
+	                                       }).catch((err) => {
+	                                               setStatus('Authentication failed.');
+	                                               console.error('Authentication failed', err);
+	
+	                                               if (err.name === 'InvalidStateError') {
+	                                                       addMessage("This authenticator is not registered for the account '${identity.user.userId}'. Please try again with a registered authenticator.");
+	                                               } else if (err.name === 'AbortError') {
+	                                                   addMessage('This operation is canceled by user.');
+	                                       } else if (err.message) {
+	                                                   addMessage(err.name + ' : ' + err.message);
+	                                       } else if (err.messages) {
+	                                                   addMessages(err.messages);
+	                                       }
+	
+	                                           return false;
+	                                   });
+                                	}
+                    }
+        window.onload = function() {
+                    if (assertion_request != null) {
+                            setTimeout(startAssertion(), 1000);
+                    } else {
+                            setTimeout(startAttestation(), 1000);
+                    }
+        };
+            </script>
+
+            <style type="text/css">
+.h4, .h5, .h6, h4, h5, h6 {
+    margin-top: 10px;
+    margin-bottom: 10px;
+    color: black;
+}
+
+p {
+    margin: 0 0 15px !important;
+    margin: 0 !important;
+    padding: 10, 10 !important;
+}
+
+p {
+    display: block;
+    -webkit-margin-before: 1em !important;
+    -webkit-margin-after: 1em !important;
+    -webkit-margin-start: 0px !important;
+    -webkit-margin-end: 0px !important;
+}
+
+body {
+    font-family: "Helvetica Neue", Helvetica, Arial, sans-serif;
+              line-height: 1.42857143;
+}
+
+.step_bx {
+        margin: 0 30% auto;
+        border-radius: 5px !important;
+        max-height: 80%;
+        margin-bottom: 100px;
+}
+</style>
+        </ui:define>
+
+        <ui:define name="pageTitle">oxAuth - Fido2 Login</ui:define>
+        <ui:define name="body">
+                <form method="post"     id="fido2_form" action="#{request.contextPath}/postlogin.htm" onsubmit="return false;">
+                        <input type="hidden" name="authMethod" id="authMethod" />
+                        <input type="hidden" name="tokenResponse" id="tokenResponse" />
+                </form>
+                <h:form id="loginForm">
+                        <h:panelGroup rendered="#{not identity.loggedIn}">
+                                <ui:param name="client"
+                                        value="#{clientService.getClient(identity.sessionId.sessionAttributes['client_id'])}" />
+
+                                <h:panelGroup rendered='#{!empty client.getLogoUri()}'>
+                                        <h:graphicImage url='#{client.getLogoUri()}' />
+                                </h:panelGroup>
+                                <div class="container">
+                                        <div class="step_bx">
+                                                <h2>#{msgs['fido2.verification.stepverification']}</h2>
+                                                <p>#{msgs['fido2.verification.usedevice']}</p>
+                                                <img
+                                                        src="#{oxAuthConfigurationService.getImgLocation()}/step_ver.png"
+                                                        alt="step_ver" />
+                                                <h4>#{msgs['fido2.verification.insertkey']}</h4>
+                                                <p>#{msgs['fido2.verification.useit']}</p>
+                                                <h:panelGroup>
+                                                    <p id="status"></p>
+                                                    <div id="messages"></div>
+                                                </h:panelGroup>
+                                        </div>
+                                </div>
+                                <h:panelGroup rendered='#{!empty client.getPolicyUri()}'>
+                                        <p>
+                                            <h:outputText value="#{msgs['common.agreePolicy']}" />
+                                                <a target="_blank" href='#{client.getPolicyUri()}'> <h:outputText
+                                                                value="#{msgs['common.privacyPolicy']}" />
+                                                </a>
+                                        </p>
+                                </h:panelGroup>
+
+                                <h:panelGroup rendered='#{!empty client.getTosUri()}'>
+                                        <p>
+                                                <h:outputText value="#{msgs['common.pleaseReadTheTos']}" />
+                                                <a target="_blank" href='#{client.getTosUri()}'> <h:outputText
+                                                                value="#{msgs['common.termsOfService']}" />
+                                                </a>
+                                        </p>
+                                </h:panelGroup>
+                                <div class="login-panel">
+                                        <h:panelGroup
+                                                rendered="fido2_assertion_request != 'null'}">
+                                        </h:panelGroup>
+                                </div>
+                        </h:panelGroup>
+                </h:form>
+        </ui:define>
+</ui:composition> 
diff --git a/oxAuth/Server/src/main/webapp/auth/fido2/step1.xhtml b/oxAuth/Server/src/main/webapp/auth/fido2/step1.xhtml
new file mode 100644
index 00000000..fb0be7ca
--- /dev/null
+++ b/oxAuth/Server/src/main/webapp/auth/fido2/step1.xhtml
@@ -0,0 +1,198 @@
+<!DOCTYPE composition PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN"
+        "http://www.w3.org/TR/xhtml1/DTD/xhtml1-transitional.dtd">
+<ui:composition xmlns="http://www.w3.org/1999/xhtml"
+	xmlns:f="http://xmlns.jcp.org/jsf/core"
+	xmlns:ui="http://xmlns.jcp.org/jsf/facelets"
+	xmlns:h="http://xmlns.jcp.org/jsf/html"
+	template="/WEB-INF/incl/layout/login-template.xhtml">
+	<f:metadata>
+		<f:viewAction action="#{authenticator.prepareAuthenticationForStep}" />
+		<f:viewParam name="login_hint" value="#{loginAction.loginHint}" />
+	</f:metadata>
+	<ui:define name="head">
+		<meta name="description" content="Gluu, Inc." />
+	</ui:define>
+	<ui:define name="pageTitle">
+		<h:outputText value="#{msgs['login.pageTitle']}" />
+	</ui:define>
+	<ui:define name="body">
+		<div class="container">
+			<h:panelGroup rendered="true">
+				<div class="login_bx_1"
+					style="border-radius: 10px; margin-top: 0px; background: white; border: 1px solid #008b8b;">
+					<div class="row">
+						<h:messages class="text-center"
+							style="color:#8b0000;margin:5px;margin-left:20px; font-size:2vw;"
+							infoClass="text-center" errorClass="text-center" />
+					</div>
+					<h:form id="loginForm" style="padding:30px;">
+						<div class="row">
+							<div class="col-sm-3 col-md-3">
+								<h:outputText value="#{msgs['login.username']}" />
+							</div>
+							<div class="col-sm-9 col-md-9">
+								<h:inputText placeholder="#{msgs['login.username']}"
+									id="username" name="username" required="true" colMd="10"
+									labelColMd="2" autocomplete="off"
+									value="#{credentials.username}" styleClass="form-control"
+									style="width:100%">
+								</h:inputText>
+							</div>
+						</div>
+						<div class="form-group row"></div>
+						<div class="row">
+							<div class="col-sm-3 col-md-3">
+								<h:outputText value="#{msgs['login.password']}" />
+							</div>
+							<div class="col-sm-9 col-md-9">
+								<h:inputSecret placeholder="#{msgs['login.password']}"
+									colMd="10" id="password" name="password" labelColMd="2"
+									value="#{credentials.password}" autocomplete="off"
+									styleClass="form-control" tyle="width:100%">
+								</h:inputSecret>
+							</div>
+						</div>
+						<div class="form-group row"></div>
+						<div class="row">
+							<div class="col-sm-5 col-md-5">
+								<h:outputLabel styleClass="col-form-label" for="rememberme"
+									value="#{msgs['login.rememberMe']}" />
+							</div>
+							<div class="col-sm-2 col-md-2" style="padding-top: 15px">
+								<input type="checkbox" value="rememberme" id="rememberme"
+									name="rememberme" />
+							</div>
+						</div>
+						<div class="form-group row">
+							<div class="col-sm-offset-2 offset-md-2 col-sm-8 col-md-8">
+								<h:commandButton id="loginButton"
+									style="background-color: #00BE79; color:white;"
+									styleClass="btn col-sm-12" value="    #{msgs['login.login']}"
+									onclick="checkRemembeMe()" iconAwesome="fa-sign-in"
+									action="#{authenticator.authenticate}" />
+							</div>
+						</div>
+						<div class="form-group row">
+							<div class="col-sm-offset-3 offset-md-3 col-sm-7 col-md-7">
+								<div class="forgot_link">
+									<a href="/identity/person/passwordReminder.htm"
+										style="color: blue;"> <h:outputText
+											value="#{msgs['login.forgotYourPassword']}" />
+									</a>
+								</div>
+							</div>
+						</div>
+						<h:inputHidden id="platform" />
+                                                <h:inputHidden id="platformAuthenticator" />
+					</h:form>
+					<div class="row">
+						<div align="center" class="col-sm-offset-4 col-sm-9">
+							<ui:repeat
+								value="#{identity.getWorkingParameter('download_url').entrySet().toArray()}"
+								var="_entry">
+								<ui:param name="app_name" value="#{_entry.key}" />
+								<ui:param name="app_link" value="#{_entry.value}" />
+								<h:outputLink style="margin-right:5px;" value="#{app_link}"
+									title="#{app_name}">
+									<h:graphicImage value="img/#{app_name}.png" />
+								</h:outputLink>
+							</ui:repeat>
+						</div>
+						<h:panelGroup layout="block"
+							rendered="#{external_registration_uri != Null}">
+							<div class="reg_link">
+								<a href="#{external_registration_uri}"> <h:outputText
+										value="Register Now " />
+								</a>
+							</div>
+						</h:panelGroup>
+					</div>
+				</div>
+			</h:panelGroup>
+		</div>
+		<script type="text/javascript">
+
+            window.onload = function () {
+                var userNameField = document.getElementById("loginForm:username");
+                var passwordField = document.getElementById("loginForm:password");
+
+                passwordField.value = "";
+                var userName = '#{!empty loginAction.loginHint ? loginAction.loginHint : ""}';
+                if (userName) {
+                    userNameField.value = userName;
+                    passwordField.focus();
+                } else {
+                    userNameField.focus();
+                }
+
+                var displayRegister = #{display_register_action or identity.sessionId.sessionAttributes['display_register_action']};
+                if (displayRegister) {
+                    var registerButton = document.getElementById("loginForm:registerId");
+                    if (registerButton != null) {
+                        registerButton.style.display = 'inline';
+                    }
+                }
+            };
+
+    		$(document).ready(function () {
+    			$('.other').click(function(){
+    				$('#social_new').toggle();
+    			});
+                if (localStorage.chkbx &amp;&amp; localStorage.chkbx != '') {
+                    $('#rememberme').attr('checked', 'checked')
+                    document.getElementById("loginForm:username").value = localStorage.usrname;
+                } else {
+                    $('#rememberme').removeAttr('checked');
+                    document.getElementById("loginForm:username").value = "";
+                }
+
+                $('#rememberme').click(function() {
+                    checkRemembeMe();
+                });
+
+                fillPlatformField();
+                fillPlatforAuthenticatorField();
+    		});
+
+    		function checkRemembeMe() {
+                if ($('#rememberme').is(':checked')) {
+                    localStorage.usrname = document.getElementById("loginForm:username").value;
+                    localStorage.chkbx = $('#rememberme').val();
+                } else {
+                    localStorage.usrname = '';
+                    localStorage.chkbx = '';
+                }
+			}
+
+            function fillPlatformField() {
+                try {
+                    re = /^([^\.]+\.[^\.]+)\..+/;
+                    result = re.exec(platform.version);
+                    if (result != null) {
+                        platform.version=result[1];
+                    }
+    			    document.getElementById("loginForm:platform").value = JSON.stringify(platform);
+                } catch (e) {
+                }
+            }
+
+            function fillPlatforAuthenticatorField()
+            {
+            	
+				PublicKeyCredential.isUserVerifyingPlatformAuthenticatorAvailable()
+				  .then(function(available){
+				    if(available){
+				    	 document.getElementById("loginForm:platformAuthenticator").value = "true";
+				    }
+				    else
+				    {
+				    	 document.getElementById("loginForm:platformAuthenticator").value = "false";
+				    }
+				    
+				  }).catch(function(err){
+				    console.error("Error in detecting platform authenticator : "+err);
+				  });
+            }
+        </script>
+	</ui:define>
+</ui:composition>
diff --git a/oxAuth/Server/src/main/webapp/auth/forgot_password/entertoken.xhtml b/oxAuth/Server/src/main/webapp/auth/forgot_password/entertoken.xhtml
new file mode 100644
index 00000000..7843c0bc
--- /dev/null
+++ b/oxAuth/Server/src/main/webapp/auth/forgot_password/entertoken.xhtml
@@ -0,0 +1,71 @@
+<!DOCTYPE composition PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN"
+        "http://www.w3.org/TR/xhtml1/DTD/xhtml1-transitional.dtd">
+<!-- you have to know about JSF facelets to understand what's happenning here really -->
+
+<!-- this root tag says, "for this page use /WEB-INF/incl/layout/template.xhtml as reusable template -->
+<ui:composition xmlns="http://www.w3.org/1999/xhtml"
+                xmlns:f="http://xmlns.jcp.org/jsf/core"
+                xmlns:ui="http://xmlns.jcp.org/jsf/facelets"
+                xmlns:h="http://xmlns.jcp.org/jsf/html"
+                template="/WEB-INF/incl/layout/template.xhtml">
+	<!-- This makes a call to this method:
+	https://github.com/GluuFederation/oxAuth/blob/version_3.1.4/Server/src/main/java/org/xdi/oxauth/auth/Authenticator.java#L524-L524
+	-->
+	<f:metadata>
+		<f:viewAction action="#{authenticator.prepareAuthenticationForStep}" if="#{not identity.loggedIn}"/>
+	</f:metadata>
+    
+    	<!-- defines a fragment called head - it's used to generate the HTML HEAD of resulting markup -->
+	<ui:define name="head">
+		<meta name="description" content="Gluu Inc." />
+		<!-- Here we use # {...} which are JSF EL expressions, they bind server values to this markup -->
+		<link href="#{oxAuthConfigurationService.getCssLocation()}/bootstrap.min.css" rel="stylesheet"/>
+		<link rel="stylesheet" href="#{oxAuthConfigurationService.getCssLocation()}/style.css"/>
+		<link href="https://fonts.googleapis.com/css?family=Open+Sans:300,400,600" rel="stylesheet"/>
+	</ui:define>
+
+	<ui:define name="body">
+		<!-- this is copy pasted from somewhere ... -->		
+		<header class="bs-docs-nav navbar navbar-static-top" id="top">
+			<div class="container">
+				<div class="navbar-header">
+					<a target="_blank" class="navbar-brand">
+					<ui:param name="client" value="#{clientService.getClient(redirect.parameters['client_id'])}" />
+                        <h:panelGroup rendered='#{!empty client.getLogoUri()}'>
+                            <h:graphicImage url='#{client.getLogoUri()}'/>
+                        </h:panelGroup> </a>
+				</div>
+			</div>
+		</header>
+	
+		<h:form id="ResetTokenForm">
+			<div class="bs-docs-section">
+				<div class="container">
+					<div class="step_bx">
+						<h2>Password Token</h2>
+						<p>Enter the token received in your email</p>	
+						<img
+							src="#{oxAuthConfigurationService.getImgLocation()}/ver_code.png"
+							alt="ver_code" />
+						<!-- This form field is referenced in authenticate method of script -->
+						<input class="form-control" id="ResetTokenForm:inputToken" name="ResetTokenForm:inputToken"
+							type="text" autocomplete="off" />
+
+						
+						<!-- commandButton component makes the form to be submitted: it triggers this Java method to
+						   https://github.com/GluuFederation/oxAuth/blob/version_3.1.4/Server/src/main/java/org/xdi/oxauth/auth/Authenticator.java#L117
+						   which in turn ends up calling the authenticate method in script.
+						
+						   Usage of msgs[ ... ] is employed to lookup predefined UI labels you can find at
+						   https://github.com/GluuFederation/oxAuth/blob/version_3.1.4/Server/src/main/resources/oxauth.properties
+						-->
+						<h:commandButton class="btn btn-done" value="Submit"
+							action="#{authenticator.authenticate}" />		
+					</div>
+				</div>
+			</div>		
+		</h:form>
+
+	</ui:define>
+	
+</ui:composition>
\ No newline at end of file
diff --git a/oxAuth/Server/src/main/webapp/auth/forgot_password/forgot.xhtml b/oxAuth/Server/src/main/webapp/auth/forgot_password/forgot.xhtml
new file mode 100644
index 00000000..3c078538
--- /dev/null
+++ b/oxAuth/Server/src/main/webapp/auth/forgot_password/forgot.xhtml
@@ -0,0 +1,95 @@
+<!DOCTYPE composition PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN"
+        "http://www.w3.org/TR/xhtml1/DTD/xhtml1-transitional.dtd">
+
+<!-- this root tag says, "for this page use /WEB-INF/incl/layout/template.xhtml as reusable template -->
+<ui:composition xmlns="http://www.w3.org/1999/xhtml"
+                xmlns:f="http://xmlns.jcp.org/jsf/core"
+                xmlns:ui="http://xmlns.jcp.org/jsf/facelets"
+                xmlns:h="http://xmlns.jcp.org/jsf/html"
+                template="/WEB-INF/incl/layout/template.xhtml">
+                
+	<!-- This makes a call to this method:
+	https://github.com/GluuFederation/oxAuth/blob/version_3.1.4/Server/src/main/java/org/xdi/oxauth/auth/Authenticator.java#L524-L524
+	-->
+	<f:metadata>
+		<f:viewAction action="#{authenticator.prepareAuthenticationForStep}" if="#{not identity.loggedIn}"/>
+	</f:metadata>
+    
+    	<!-- defines a fragment called head - it's used to generate the HTML HEAD of resulting markup -->
+	<ui:define name="head">
+		<meta name="description" content="Gluu Inc." />
+		<!-- Here we use # {...} which are JSF EL expressions, they bind server values to this markup -->
+		<link href="#{oxAuthConfigurationService.getCssLocation()}/bootstrap.min.css" rel="stylesheet"/>
+		<link rel="stylesheet" href="#{oxAuthConfigurationService.getCssLocation()}/style.css"/>
+		<link href="https://fonts.googleapis.com/css?family=Open+Sans:300,400,600" rel="stylesheet"/>
+
+		<!--Captcha -->
+		<script>
+			    var num1 = Math.floor(Math.random() * 10);
+			    var num2 = Math.floor(Math.random() * 10);
+			    var resposta = num1 + num2;
+			    window.onload = function () {
+			       document.getElementById("captcha").innerHTML = "What's the result of " + num1 + " + " + num2 + "?";
+			       document.getElementById("ForgotPasswordForm").onsubmit = function (e) {
+				    if (document.getElementById("valida").value != resposta) {
+				       document.getElementById("mensagem").innerHTML = "Wrong answer!";
+				       e.preventDefault();
+				      }
+				    }
+				    }
+
+		</script>
+
+	</ui:define>
+
+	<ui:define name="body">
+		<header class="bs-docs-nav navbar navbar-static-top" id="top">
+			<div class="container">
+				<div class="navbar-header">
+					<a target="_blank" class="navbar-brand">
+					<ui:param name="client" value="#{clientService.getClient(redirect.parameters['client_id'])}" />
+                        <h:panelGroup rendered='#{!empty client.getLogoUri()}'>
+                            <h:graphicImage url='#{client.getLogoUri()}'/>
+                        </h:panelGroup> 
+                    </a>
+				</div>
+			</div>
+		</header>
+		<h:form id="ForgotPasswordForm">
+			<div class="bs-docs-section">
+				<div class="container">
+					<div class="step_bx">
+						<h2>Password Reset</h2>
+
+
+						<p>Enter your e-mail:</p>
+						
+						<!-- This form field is referenced in authenticate method of script -->
+						<input class="form-control" id="ForgotPasswordForm:useremail" name="ForgotPasswordForm:useremail"
+							type="text" autocomplete="off" />
+
+								   <p> </p>
+								   <p id="captcha"></p>
+							       <input id="valida" type="text" />
+							       <p id="mensagem"></p>
+						
+							
+						<!-- commandButton component makes the form to be submitted: it triggers this Java method to
+						   https://github.com/GluuFederation/oxAuth/blob/version_3.1.4/Server/src/main/java/org/xdi/oxauth/auth/Authenticator.java#L117
+						   which in turn ends up calling the authenticate method in script.
+						
+						   Usage of msgs[ ... ] is employed to lookup predefined UI labels you can find at
+						   https://github.com/GluuFederation/oxAuth/blob/version_3.1.4/Server/src/main/resources/oxauth.properties
+						-->
+						<h:commandButton class="btn btn-done" value="Reset Password"
+							action="#{authenticator.authenticate}" type="submit" />
+					</div>
+				</div>
+			</div>		
+
+
+		</h:form>
+	
+	</ui:define>
+	
+</ui:composition>
\ No newline at end of file
diff --git a/oxAuth/Server/src/main/webapp/auth/forgot_password/newpassword.xhtml b/oxAuth/Server/src/main/webapp/auth/forgot_password/newpassword.xhtml
new file mode 100644
index 00000000..39f7444a
--- /dev/null
+++ b/oxAuth/Server/src/main/webapp/auth/forgot_password/newpassword.xhtml
@@ -0,0 +1,72 @@
+<!DOCTYPE composition PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN"
+        "http://www.w3.org/TR/xhtml1/DTD/xhtml1-transitional.dtd">
+<!-- you have to know about JSF facelets to understand what's happenning here really -->
+
+<!-- this root tag says, "for this page use /WEB-INF/incl/layout/template.xhtml as reusable template -->
+<ui:composition xmlns="http://www.w3.org/1999/xhtml"
+                xmlns:f="http://xmlns.jcp.org/jsf/core"
+                xmlns:ui="http://xmlns.jcp.org/jsf/facelets"
+                xmlns:h="http://xmlns.jcp.org/jsf/html"
+                template="/WEB-INF/incl/layout/template.xhtml">
+                
+	<!-- This makes a call to this method:
+	https://github.com/GluuFederation/oxAuth/blob/version_3.1.4/Server/src/main/java/org/xdi/oxauth/auth/Authenticator.java#L524-L524
+	-->
+	<f:metadata>
+		<f:viewAction action="#{authenticator.prepareAuthenticationForStep}" if="#{not identity.loggedIn}"/>
+	</f:metadata>
+    
+    	<!-- defines a fragment called head - it's used to generate the HTML HEAD of resulting markup -->
+	<ui:define name="head">
+		<meta name="description" content="Gluu Inc." />
+		<!-- Here we use # {...} which are JSF EL expressions, they bind server values to this markup -->
+		<link href="#{oxAuthConfigurationService.getCssLocation()}/bootstrap.min.css" rel="stylesheet"/>
+		<link rel="stylesheet" href="#{oxAuthConfigurationService.getCssLocation()}/style.css"/>
+		<link href="https://fonts.googleapis.com/css?family=Open+Sans:300,400,600" rel="stylesheet"/>
+	</ui:define>
+
+	<ui:define name="body">
+		<!-- this is copy pasted from somewhere ... -->
+		<header class="bs-docs-nav navbar navbar-static-top" id="top">
+			<div class="container">
+				<div class="navbar-header">
+					<a target="_blank" class="navbar-brand">
+					<ui:param name="client" value="#{clientService.getClient(redirect.parameters['client_id'])}" />
+                        <h:panelGroup rendered='#{!empty client.getLogoUri()}'>
+                            <h:graphicImage url='#{client.getLogoUri()}'/>
+                        </h:panelGroup> </a>
+				</div>
+			</div>
+		</header>
+	
+		<h:form id="UpdatePasswordForm">
+			<!-- these divs were stolen from some other page... HTML+CSS  so annoying -->
+			<div class="bs-docs-section">
+				<div class="container">
+					<div class="step_bx">
+						<h2>New Password</h2>
+						<p>Enter your new password:</p>
+						
+						<!-- This form field is referenced in authenticate method of script -->
+						<input class="form-control" id="UpdatePasswordForm:newPassword" name="UpdatePasswordForm:newPassword"
+							type="password" autocomplete="off" />
+							
+
+
+						<!-- commandButton component makes the form to be submitted: it triggers this Java method to
+						   https://github.com/GluuFederation/oxAuth/blob/version_3.1.4/Server/src/main/java/org/xdi/oxauth/auth/Authenticator.java#L117
+						   which in turn ends up calling the authenticate method in script.
+						
+						   Usage of msgs[ ... ] is employed to lookup predefined UI labels you can find at
+						   https://github.com/GluuFederation/oxAuth/blob/version_3.1.4/Server/src/main/resources/oxauth.properties
+						-->
+						<h:commandButton class="btn btn-done" value="Submit"
+							action="#{authenticator.authenticate}" />		
+					</div>
+				</div>
+			</div>		
+		</h:form>
+
+	</ui:define>
+	
+</ui:composition>
\ No newline at end of file
diff --git a/oxAuth/Server/src/main/webapp/auth/gplus/gpluslogin.xhtml b/oxAuth/Server/src/main/webapp/auth/gplus/gpluslogin.xhtml
new file mode 100644
index 00000000..1e28f742
--- /dev/null
+++ b/oxAuth/Server/src/main/webapp/auth/gplus/gpluslogin.xhtml
@@ -0,0 +1,202 @@
+<!DOCTYPE composition PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN"
+		"http://www.w3.org/TR/xhtml1/DTD/xhtml1-transitional.dtd">
+<ui:composition xmlns="http://www.w3.org/1999/xhtml"
+				xmlns:f="http://xmlns.jcp.org/jsf/core"
+				xmlns:ui="http://xmlns.jcp.org/jsf/facelets"
+				xmlns:h="http://xmlns.jcp.org/jsf/html"
+				template="/WEB-INF/incl/layout/template.xhtml">
+	<f:metadata>
+		<f:viewAction action="#{authenticator.prepareAuthenticationForStep}" if="#{not identity.loggedIn}"/>
+	</f:metadata>
+
+	<ui:define name="head">
+		<meta http-equiv="X-UA-Compatible" content="IE=edge" />
+
+		<!-- Google+ script -->
+		<script src="https://apis.google.com/js/client:platform.js?onload=start" async="async" defer="defer"></script>
+
+		<style type="text/css">
+			.login-panel {
+				border-style: solid;
+				border-width: 1px;
+				padding: 1px;
+				background-color: #FFFFFF;
+				border-color: #C4C0B9;
+			}
+
+			.login-panel-header {
+				background-color: #D4CFC7;
+				background-image:
+						url("#{oxAuthConfigurationService.getImgLocation()}/panel_header_bg.png");
+				background-position: left top;
+				background-repeat: repeat-x;
+				border-style: solid;
+				border-width: 1px;
+				padding: 2px;
+				border-color: #D4CFC7;
+				color: #000000;
+				font-family: Arial, Verdana, sans-serif;
+				font-size: 11px;
+				font-weight: bold;
+			}
+
+			.login-panel-body {
+				padding: 10px;
+				color: #000000;
+				font-family: Arial, Verdana, sans-serif;
+				font-size: 11px;
+			}
+		</style>
+	</ui:define>
+
+	<ui:define name="pageTitle">#{msgs['gpluslogin.title']}</ui:define>
+
+	<ui:define name="body">
+		<table border="0" align="center">
+			<tr>
+				<td>
+					<div>
+						<h:form id="loginForm">
+
+							<input type="hidden" name="gplus_auth_code" value="" />
+
+							<h:panelGroup rendered="#{not identity.loggedIn}">
+								<div class="login-panel">
+									<div class="login-panel-header">
+										<h:outputText value="#{msgs['login.login']}" />
+									</div>
+									<div class="login-panel-body">
+										<ui:param name="client" value="#{clientService.getClient(identity.sessionId.sessionAttributes['client_id'])}" />
+
+										<h:panelGroup rendered='#{!empty client.getLogoUri()}'>
+											<h:graphicImage url='#{client.getLogoUri()}' />
+										</h:panelGroup>
+
+										<p class="info">
+											<h:outputText value="#{msgs['login.pleaseLoginHere']}" />
+										</p>
+
+										<div class="dialog">
+											<h:panelGrid columns="3" border="0" rowClasses="prop"
+														 columnClasses="name,value,hint">
+												<h:outputLabel for="username"
+															   value="#{msgs['login.username']}" />
+												<h:inputText id="username" value="#{credentials.username}"
+															 autocomplete="off" />
+												<h:outputText value="" />
+
+												<h:outputLabel for="password"
+															   value="#{msgs['login.password']}" />
+												<h:inputSecret id="password" value="#{credentials.password}"
+															   autocomplete="off" />
+												<h:outputText value="" />
+
+												<h:outputLabel for="rememberMe"
+															   value="#{msgs['login.rememberMe']}" />
+												<h:selectBooleanCheckbox id="rememberMe"
+																		 value="#{rememberMe.enabled}" />
+												<h:outputText value="" />
+											</h:panelGrid>
+										</div>
+
+										<h:panelGroup rendered='#{!empty client.getPolicyUri()}'>
+											<p>
+												<h:outputText value="#{msgs['common.agreePolicy']}" />
+												<a target="_blank" href='#{client.getPolicyUri()}'> <h:outputText
+														value="#{msgs['common.privacyPolicy']}" />
+												</a>
+											</p>
+										</h:panelGroup>
+
+										<h:panelGroup rendered='#{!empty client.getTosUri()}'>
+											<p>
+												<h:outputText value="#{msgs['common.pleaseReadTheTos']}" />
+												<a target="_blank" href='#{client.getTosUri()}'> <h:outputText
+														value="#{msgs['common.termsOfService']}" />
+												</a>
+											</p>
+										</h:panelGroup>
+
+										<div class="actionButtons">
+											<h:commandButton id="loginButton"
+															 value="#{msgs['login.login']}"
+															 action="#{authenticator.authenticate}" />
+										</div>
+									</div>
+								</div>
+								<div class="login-panel">
+									<div id="signinButton">
+										<span class="g-signin"
+											  data-scope="https://www.googleapis.com/auth/plus.login email"
+											  data-requestvisibleactions="http://schemas.google.com/AddActivity"
+											  data-clientId="#{identity.getWorkingParameter('gplus_client_id')}" data-accesstype="offline"
+											  data-callback="onSignInCallback" data-theme="dark"
+											  data-cookiepolicy="single_host_origin"></span>
+									</div>
+								</div>
+							</h:panelGroup>
+						</h:form>
+					</div>
+				</td>
+			</tr>
+		</table>
+		<script type="text/javascript">
+			window.onload = function() {
+				document.getElementById("loginForm:username").focus();
+			};
+		</script>
+
+		<script type="text/javascript">
+			//<![CDATA[
+			var helper = (function() {
+				var authResult = undefined;
+
+				return {
+					/**
+					 * Hides the sign-in button and connects the server-side app after
+					 * the user successfully signs in.
+					 *
+					 * @param {Object} authResult An Object which contains the access token and
+					 *   other authentication information.
+					 */
+					onSignInCallback: function(authResult) {
+//			      for (var field in authResult) {
+//	                        console.log('Auth result field: ' + field + ': ' + authResult[field]);
+//			      }
+						if (authResult['access_token']) {
+							// The user is signed in
+							this.authResult = authResult;
+							$('#gConnect').hide();
+							helper.connectServer();
+						} else if (authResult['error']) {
+							// There was an error, which means the user is not signed in.
+							// As an example, you can troubleshoot by writing to the console:
+							console.log('There was an error: ' + authResult['error']);
+							$('#gConnect').show();
+						}
+					},
+					/**
+					 * Submit login form with tokens to server
+					 * For more information, see:
+					 *   https://developers.google.com/+/web/signin/server-side-flow
+					 */
+					connectServer: function() {
+						$("input[name='gplus_auth_code']").val(this.authResult["code"]);
+						$(":input:submit[id='loginForm:loginButton']").click();
+					},
+				};
+			})();
+
+			/**
+			 * Calls the helper method that handles the authentication flow.
+			 *
+			 * @param {Object} authResult An Object which contains the access token and
+			 *   other authentication information.
+			 */
+			function onSignInCallback(authResult) {
+				helper.onSignInCallback(authResult);
+			}
+			//]]>
+		</script>
+	</ui:define>
+</ui:composition>
diff --git a/oxAuth/Server/src/main/webapp/auth/gplus/gpluspostlogin.xhtml b/oxAuth/Server/src/main/webapp/auth/gplus/gpluspostlogin.xhtml
new file mode 100644
index 00000000..d1e44ed9
--- /dev/null
+++ b/oxAuth/Server/src/main/webapp/auth/gplus/gpluspostlogin.xhtml
@@ -0,0 +1,90 @@
+<!DOCTYPE composition PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN"
+        "http://www.w3.org/TR/xhtml1/DTD/xhtml1-transitional.dtd">
+<ui:composition xmlns="http://www.w3.org/1999/xhtml"
+                xmlns:f="http://xmlns.jcp.org/jsf/core"
+                xmlns:ui="http://xmlns.jcp.org/jsf/facelets"
+                xmlns:h="http://xmlns.jcp.org/jsf/html"
+                template="/WEB-INF/incl/layout/template.xhtml">
+    <f:metadata>
+        <f:viewAction action="#{authenticator.prepareAuthenticationForStep}" if="#{not identity.loggedIn}"/>
+    </f:metadata>
+    <ui:define name="head">
+        <style type="text/css">
+            .login-panel {
+                border-style: solid;
+                border-width: 1px;
+                padding: 1px;
+                background-color: #FFFFFF;
+                border-color: #C4C0B9;
+            }
+
+            .login-panel-header {
+                background-color: #D4CFC7;
+                background-image: url("#{oxAuthConfigurationService.getImgLocation()}/panel_header_bg.png");
+                background-position: left top;
+                background-repeat: repeat-x;
+                border-style: solid;
+                border-width: 1px;
+                padding: 2px;
+                border-color: #D4CFC7;
+                color: #000000;
+                font-family: Arial, Verdana, sans-serif;
+                font-size: 11px;
+                font-weight: bold;
+            }
+
+            .login-panel-body {
+                padding: 10px;
+                color: #000000;
+                font-family: Arial, Verdana, sans-serif;
+                font-size: 11px;
+            }
+        </style>
+    </ui:define>
+
+    <ui:define name="pageTitle">#{msgs['gpluslogin.pageTitle']}</ui:define>
+
+    <ui:define name="body">
+        <h:form id="loginForm">
+
+            <h:panelGroup rendered="#{not identity.loggedIn}">
+                <div class="login-panel">
+                    <div class="login-panel-header">#{msgs['gpluslogin.login']}</div>
+                    <div class="login-panel-body">
+                        <ui:param name="client" value="#{clientService.getClient(identity.sessionId.sessionAttributes['client_id'])}" />
+
+                        <h:panelGroup rendered='#{!empty client.getLogoUri()}'>
+                            <h:graphicImage url='#{client.getLogoUri()}'/>
+                        </h:panelGroup>
+
+                        <p class="info">#{msgs['gpluslogin.pleaseLoginHere']}</p>
+
+                        <div class="dialog">
+                            <h:panelGrid columns="2" rowClasses="prop" columnClasses="name,value" width="500">
+                                <h:outputLabel for="username">#{msgs['gpluslogin.username']}</h:outputLabel>
+                                <h:inputText id="username"
+                                             value="#{credentials.username}" autocomplete="off"/>
+                                <h:outputLabel for="password">#{msgs['gpluslogin.password']}</h:outputLabel>
+                                <h:inputSecret id="password"
+                                               value="#{credentials.password}" autocomplete="off"/>
+                                <h:outputLabel for="rememberMe">#{msgs['gpluslogin.rememberMe']}</h:outputLabel>
+                                <h:selectBooleanCheckbox id="rememberMe"
+                                                         value="#{rememberMe.enabled}"/>
+                            </h:panelGrid>
+                        </div>
+
+                        <h:panelGroup rendered='#{!empty client.getPolicyUri()}'>
+                            <p>
+                                <a target="_blank" href='#{client.getPolicyUri()}'>#{msgs['gpluslogin.termsPrivacy']}</a>
+                            </p>
+                        </h:panelGroup>
+
+                        <div class="actionButtons">
+                            <h:commandButton value="Login" action="#{authenticator.authenticate}" />
+                        </div>
+                    </div>
+                </div>
+            </h:panelGroup>
+        </h:form>
+    </ui:define>
+</ui:composition>
\ No newline at end of file
diff --git a/oxAuth/Server/src/main/webapp/auth/idfirst/alter_login.xhtml b/oxAuth/Server/src/main/webapp/auth/idfirst/alter_login.xhtml
new file mode 100644
index 00000000..ce3cede6
--- /dev/null
+++ b/oxAuth/Server/src/main/webapp/auth/idfirst/alter_login.xhtml
@@ -0,0 +1,156 @@
+<!DOCTYPE composition PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN"
+        "http://www.w3.org/TR/xhtml1/DTD/xhtml1-transitional.dtd">
+<ui:composition xmlns="http://www.w3.org/1999/xhtml"
+                xmlns:f="http://xmlns.jcp.org/jsf/core"
+                xmlns:ui="http://xmlns.jcp.org/jsf/facelets"
+                xmlns:h="http://xmlns.jcp.org/jsf/html"
+                template="/WEB-INF/incl/layout/login-extended-template.xhtml">
+    <f:metadata>
+        <f:viewAction action="#{authenticator.prepareAuthenticationForStep}"
+                      if="#{not identity.loggedIn}"/>
+
+        <f:viewParam name="login_hint" value="#{loginAction.loginHint}"/>
+    </f:metadata>
+
+    <ui:define name="head">
+        <meta name="description" content="Gluu, Inc."/>
+    </ui:define>
+
+    <ui:define name="pageTitle">
+        <h:outputText value="#{msgs['login.pageTitle']}"/>
+    </ui:define>
+
+    <ui:define name="body">
+        <header class="bs-docs-nav navbar navbar-static-top" id="top">
+            <div class="container">
+                <!-- start logo-->
+                <div class="logo span2">
+                    <ui:param name="client"
+                              value="#{clientService.getClient(identity.sessionId.sessionAttributes['client_id'])}"/>
+
+                    <h:panelGroup layout="block" rendered='#{!empty client.logoUri}'>
+                        <h:graphicImage url='#{client.logoUri}'/>
+                    </h:panelGroup>
+                    <h:panelGroup layout="block" rendered='#{empty client.logoUri}'>
+                       <object data="ext/resources/img/logo.png" type="image/png">
+                                         <img src="img/logo.png" />
+                       </object>
+                    </h:panelGroup>
+                </div>
+                <!-- end logo-->
+            </div>
+        </header>
+        <!-- end header-->
+        <div class="bs-docs-section">
+            <div class="container">
+
+                <h:panelGroup>
+                    <div class="login_bx_1">
+                        <div class="row">
+                            <div class="col-md-6_1 col-sm-5_1 ">
+                                <div class="left_form_bx">
+
+                                    <h:form id="loginForm" class="form-horizontal">
+                                        <h:panelGroup
+                                                rendered="#{sessionIdService.notSessionIdAuthenticated}">
+
+                                            <h:messages style="color:red;"/>
+
+                                            <div class="form-group">
+                                                <h:outputLabel styleClass="col-sm-3 control-label"
+                                                               value="#{msgs['login.username']}"/>
+                                                <div class="col-sm-9">
+                                                	<h:outputLabel styleClass="control-label"
+                                                	value="#{identity.sessionId.sessionAttributes['roUserName']}" />
+                                                    <!--h:inputText id="username" value="#{credentials.username}"
+                                                                 styleClass="form-control"
+                                                                 autocomplete="off" readonly="true" /-->
+                                                    <h:inputHidden id="username" value="#{credentials.username}" />
+                                                </div>
+                                            </div>
+                                            <div class="form-group">
+                                                <h:outputLabel styleClass="col-sm-3 control-label" for="password"
+                                                               value="#{msgs['login.password']}"/>
+                                                <div class="col-sm-9">
+                                                    <h:inputSecret id="password" value="#{credentials.password}"
+                                                                   styleClass="form-control"
+                                                                   autocomplete="off"/>
+                                                </div>
+                                            </div>
+
+                                            <div class="form-group">
+                                                <div class="col-sm-offset-3 col-sm-9">
+                                                    <h:commandButton id="loginButton" styleClass="btn btn-primary"
+                                                                     value="#{msgs['login.login']}"
+                                                                     action="#{authenticator.authenticate}"/>
+                                                </div>
+                                            </div>
+
+                                            <div class="form-group">
+                                                <div class="col-sm-offset-3 col-sm-9">
+                                                    <div class="forgot_link">
+                                                        <a href="/identity/person/passwordReminder.htm">
+                                                            <h:outputText value="Forgot your Password?"/>
+                                                        </a>
+                                                    </div>
+                                                </div>
+                                            </div>
+                                        </h:panelGroup>
+                                    </h:form>
+                                </div>
+                                <!--h:panelGroup layout="block" rendered="#{external_registration_uri != Null}">
+                                    <div class="reg_link">
+                                        <a href="#{external_registration_uri}">
+                                            <h:outputText value="Register Now   "/>
+                                        </a>
+                                    </div>
+                                </h:panelGroup-->
+                            </div>
+                        </div>
+                    </div>
+
+                </h:panelGroup>
+            </div>
+        </div>
+
+        <div class="foot_bor">
+            <div class="container">
+                <div class="row">
+                    <div class="col-md-12">
+                        <div class="padding_spc">
+                            <p>
+                                <h:outputText value="#{msgs['common.gluuInc']}"/>
+                                |
+                                <a target="_blank" href="https://github.com/GluuFederation/oxAuth/blob/master/LICENSE">
+                                    <h:outputText value="#{msgs['common.caution']}" escape="false"/>
+                                </a>
+                                <h:panelGroup rendered='#{!empty client.policyUri}'>
+                                    |
+                                    <a target="_blank" href="#{client.policyUri}">
+                                        <h:outputText value="#{msgs['common.privacyPolicy']}" escape="false"/>
+                                    </a>
+                                </h:panelGroup>
+                                <h:panelGroup rendered='#{!empty client.tosUri}'>
+                                    |
+                                    <a target="_blank" href="#{client.tosUri}">
+                                        <h:outputText value="#{msgs['common.termsOfService']}" escape="false"/>
+                                    </a>
+                                </h:panelGroup>
+                            </p>
+                        </div>
+                    </div>
+                </div>
+            </div>
+        </div>
+
+        <script type="text/javascript">
+            window.onload = function () {
+            var userName='#{identity.sessionId.sessionAttributes["roUserName"]}';
+            var userNameField = document.getElementById("loginForm:username");
+            userNameField.value=userName;
+            var passwordField = document.getElementById("loginForm:password");
+            passwordField.focus();
+            };
+        </script>
+    </ui:define>
+</ui:composition>
\ No newline at end of file
diff --git a/oxAuth/Server/src/main/webapp/auth/idfirst/idfirst_login.xhtml b/oxAuth/Server/src/main/webapp/auth/idfirst/idfirst_login.xhtml
new file mode 100644
index 00000000..573ddb4d
--- /dev/null
+++ b/oxAuth/Server/src/main/webapp/auth/idfirst/idfirst_login.xhtml
@@ -0,0 +1,89 @@
+<!DOCTYPE composition PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN"
+        "http://www.w3.org/TR/xhtml1/DTD/xhtml1-transitional.dtd">
+<ui:composition xmlns="http://www.w3.org/1999/xhtml"
+	xmlns:f="http://xmlns.jcp.org/jsf/core"
+	xmlns:ui="http://xmlns.jcp.org/jsf/facelets"
+	xmlns:h="http://xmlns.jcp.org/jsf/html"
+	template="/WEB-INF/incl/layout/login-extended-template.xhtml">
+	<f:metadata>
+		<f:viewAction action="#{authenticator.prepareAuthenticationForStep}"
+			if="#{not identity.loggedIn}" />
+	</f:metadata>
+
+	<ui:define name="head">
+		<meta name="description" content="Gluu, Inc." />
+	</ui:define>
+
+	<ui:define name="pageTitle">
+		<h:outputText value="#{msgs['login.pageTitle']}" />
+	</ui:define>
+
+	<ui:define name="body">
+		<div class="container">
+			<h:panelGroup>
+				<div class="login_bx_1">
+					<div class="row">
+						<div class="col-md-6_1 col-sm-5_1 ">
+							<div class="left_form_bx">
+
+								<h:form id="loginForm" class="form-horizontal"
+									onsubmit="return nonEmptyUser()">
+									<h:panelGroup
+										rendered="#{sessionIdService.notSessionIdAuthenticated}">
+
+										<h:messages style="color:red;" />
+										<div class="form-group" align="center">
+											<h3>Welcome!</h3>
+										</div>
+										<div class="form-group">
+											<h:outputLabel styleClass="col-sm-6 control-label"
+												for="username" value="Enter your username" />
+											<div class="col-sm-6">
+												<h:inputText id="username" value="#{credentials.username}"
+													styleClass="form-control" autocomplete="off" />
+											</div>
+										</div>
+										<div class="form-group"></div>
+										<div class="form-group">
+											<div class="col-sm-offset-4 col-sm-8">
+												<h:commandButton id="loginButton"
+													styleClass="btn btn-primary" value="Continue"
+													action="#{authenticator.prepareAuthenticationForStep}"
+													type="submit" />
+											</div>
+										</div>
+
+									</h:panelGroup>
+								</h:form>
+							</div>
+							<!--h:panelGroup layout="block" rendered="#{external_registration_uri != Null}">
+                                    <div class="reg_link">
+                                        <a href="#{external_registration_uri}">
+                                            <h:outputText value="Register Now   "/>
+                                        </a>
+                                    </div>
+                                </h:panelGroup-->
+						</div>
+					</div>
+				</div>
+
+			</h:panelGroup>
+		</div>
+		<script type="text/javascript">
+			window.onload = function() {
+				var userNameField = document
+						.getElementById("loginForm:username");
+				userNameField.focus();
+			};
+
+			function nonEmptyUser() {
+				var userNameField = document
+						.getElementById("loginForm:username");
+				var newName = userNameField.value.replace(/^\s+/, "");
+				if (newName.length > 0)
+					userNameField.value = newName;
+				return newName.length > 0;
+			}
+		</script>
+	</ui:define>
+</ui:composition>
\ No newline at end of file
diff --git a/oxAuth/Server/src/main/webapp/auth/inwebo/iwauthenticate.xhtml b/oxAuth/Server/src/main/webapp/auth/inwebo/iwauthenticate.xhtml
new file mode 100644
index 00000000..fb33dbd9
--- /dev/null
+++ b/oxAuth/Server/src/main/webapp/auth/inwebo/iwauthenticate.xhtml
@@ -0,0 +1,78 @@
+<!DOCTYPE composition PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN"
+        "http://www.w3.org/TR/xhtml1/DTD/xhtml1-transitional.dtd">
+<ui:composition xmlns="http://www.w3.org/1999/xhtml"
+                xmlns:f="http://xmlns.jcp.org/jsf/core"
+                xmlns:ui="http://xmlns.jcp.org/jsf/facelets"
+                xmlns:h="http://xmlns.jcp.org/jsf/html"
+                template="/WEB-INF/incl/layout/template.xhtml">
+    <f:metadata>
+	<f:viewAction action="#{authenticator.prepareAuthenticationForStep}" if="#{not identity.loggedIn}"/>
+    </f:metadata>
+
+    <ui:define name="head">
+        <style type="text/css">
+            .login-panel {
+                border-style: solid;
+                border-width: 1px;
+                padding: 1px;
+                background-color: #FFFFFF;
+                border-color: #C4C0B9;
+            }
+
+            .login-panel-header {
+                background-color: #D4CFC7;
+                background-image: url("#{oxAuthConfigurationService.getImgLocation()}/panel_header_bg.png");
+                background-position: left top;
+                background-repeat: repeat-x;
+                border-style: solid;
+                border-width: 1px;
+                padding: 2px;
+                border-color: #D4CFC7;
+                color: #000000;
+                font-family: Arial, Verdana, sans-serif;
+                font-size: 11px;
+                font-weight: bold;
+            }
+
+            .login-panel-body {
+                padding: 10px;
+                color: #000000;
+                font-family: Arial, Verdana, sans-serif;
+                font-size: 11px;
+            }
+        </style>
+    </ui:define>
+
+    <ui:define name="pageTitle">#{msgs['inwebo.pageTitle']}</ui:define>
+
+    <ui:define name="body">
+        <form id="loginForm" method="post" action="#{request.contextPath}/postlogin.htm">
+            <h:panelGroup id="loginGroup" rendered="#{not identity.loggedIn}">
+                <div class="login-panel">
+                    <div class="login-panel-header">#{msgs['inwebo.login']}</div>
+                    <div class="login-panel-body">
+                        <ui:param name="client" value="#{clientService.getClient(redirect.parameters['client_id'])}" />
+                        <h:panelGroup rendered='#{!empty client.getLogoUri()}'>
+                            <h:graphicImage url='#{client.getLogoUri()}'/>
+                        </h:panelGroup>
+
+                        <p class="info">#{msgs['inwebo.pleaseLoginHere']}</p>
+
+                        <h:panelGrid columns="2" rowClasses="prop" columnClasses="name,value">
+                            <h:outputLabel for="pairing_phrase">#{msgs['inwebo.authenticationToken']}</h:outputLabel>
+                            <input name="iw_token" type="text" autocomplete="off" />
+                        </h:panelGrid>
+
+                        <h:panelGroup rendered='#{!empty client.getPolicyUri()}'>
+                            <p>
+                                <a target="_blank" href='#{client.getPolicyUri()}'>#{msgs['inwebo.termsPrivacy']}</a>
+                            </p>
+                        </h:panelGroup>
+
+                        <h:commandButton value="Authenticate" action="#{authenticator.authenticate}" />
+                    </div>
+                </div>
+            </h:panelGroup>
+        </form>
+    </ui:define>
+</ui:composition>
\ No newline at end of file
diff --git a/oxAuth/Server/src/main/webapp/auth/inwebo/iwlogin.xhtml b/oxAuth/Server/src/main/webapp/auth/inwebo/iwlogin.xhtml
new file mode 100644
index 00000000..2bc45baf
--- /dev/null
+++ b/oxAuth/Server/src/main/webapp/auth/inwebo/iwlogin.xhtml
@@ -0,0 +1,132 @@
+<!DOCTYPE composition PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN"
+        "http://www.w3.org/TR/xhtml1/DTD/xhtml1-transitional.dtd">
+<ui:composition xmlns="http://www.w3.org/1999/xhtml"
+		xmlns:f="http://xmlns.jcp.org/jsf/core"
+                xmlns:ui="http://xmlns.jcp.org/jsf/facelets"
+                xmlns:h="http://xmlns.jcp.org/jsf/html"
+                template="/WEB-INF/incl/layout/template.xhtml">
+    <f:metadata>
+        <f:viewAction action="#{authenticator.prepareAuthenticationForStep}" if="#{not identity.loggedIn}"/>
+    </f:metadata>
+
+    <ui:define name="head">
+        <style type="text/css">
+            .login-panel {
+                border-style: solid;
+                border-width: 1px;
+                padding: 1px;
+                background-color: #FFFFFF;
+                border-color: #C4C0B9;
+            }
+
+            .login-panel-header {
+                background-color: #D4CFC7;
+                background-image: url("#{oxAuthConfigurationService.getImgLocation()}/panel_header_bg.png");
+                background-position: left top;
+                background-repeat: repeat-x;
+                border-style: solid;
+                border-width: 1px;
+                padding: 2px;
+                border-color: #D4CFC7;
+                color: #000000;
+                font-family: Arial, Verdana, sans-serif;
+                font-size: 11px;
+                font-weight: bold;
+            }
+
+            .login-panel-body {
+                padding: 10px;
+                color: #000000;
+                font-family: Arial, Verdana, sans-serif;
+                font-size: 11px;
+            }
+        </style>
+
+        <h:panelGroup rendered="#{helium_enabled}">
+            <script src="https://ult-inwebo.com/webapp/js/helium.min.js"/>
+        </h:panelGroup>
+    </ui:define>
+
+    <ui:define name="pageTitle">#{msgs['inwebo.title']}</ui:define>
+
+    <ui:define name="body">
+        <h:panelGroup rendered="#{helium_enabled}">
+            <div id="inweboDetect" alias="#{helium_alias}" action="authenticate" lang="auto" style="display:none" />
+            <div id="heliumDesign" displaytype="inline" container="heliumForm" top="10" left="40" rounded="0" shaded="0" skin="default" maincolor="#28AA28" withlogo="1" withactiontitle="1" withborder="0" bordercolor="#28AA28" bgcolor="#999999" withtitle="0" titlebgcolor="#28AA28" titlecolor="#FFFFFF" />
+        </h:panelGroup>
+
+        <h:form id="loginForm" rendered="#{not helium_enabled}">
+
+            <h:panelGroup rendered="#{not identity.loggedIn}">
+                <div class="login-panel">
+                    <div class="login-panel-header">#{msgs['inwebo.loginLabel']}</div>
+                    <div class="login-panel-body">
+                        <ui:param name="client" value="#{clientService.getClient(identity.sessionId.sessionAttributes['client_id'])}" />
+
+                        <h:panelGroup rendered='#{!empty client.getLogoUri()}'>
+                            <h:graphicImage url='#{client.getLogoUri()}'/>
+                        </h:panelGroup>
+
+                        <p class="info">#{msgs['inwebo.pleaseLoginHere']}</p>
+
+                        <div class="dialog">
+                            <h:panelGrid columns="2" rowClasses="prop" columnClasses="name,value">
+                                <h:outputLabel for="username">#{msgs['inwebo.username']}</h:outputLabel>
+                                <h:inputText id="username"
+                                             value="#{credentials.username}" autocomplete="off"/>
+                                <h:outputLabel for="password">#{msgs['inwebo.password']}</h:outputLabel>
+                                <h:inputSecret id="password"
+                                               value="#{credentials.password}" autocomplete="off"/>
+                                <h:outputLabel for="rememberMe">#{msgs['inwebo.rememberMe']}</h:outputLabel>
+                                <h:selectBooleanCheckbox id="rememberMe"
+                                                         value="#{rememberMe.enabled}"/>
+                            </h:panelGrid>
+                        </div>
+
+                        <h:panelGroup rendered='#{!empty client.getPolicyUri()}'>
+                            <p>
+                                <a target="_blank" href='#{client.getPolicyUri()}'>#{msgs['inwebo.termsPrivacy']}</a>
+                            </p>
+                        </h:panelGroup>
+
+                        <div class="actionButtons">
+                            <h:commandButton id="loginButton"
+                                             value="Login"
+                                             action="#{authenticator.authenticate}" />
+                        </div>
+                    </div>
+                </div>
+            </h:panelGroup>
+        </h:form>
+
+        <h:panelGroup rendered="#{helium_enabled}">
+            <!-- Temporary solution because InWebo not support id with ':' character -->
+            <form id="iwLoginForm" action="#{request.contextPath}/postlogin.htm">
+                <h:panelGroup rendered="#{not identity.loggedIn}">
+                    <div class="login-panel">
+                        <div class="login-panel-header">#{msgs['inwebo.loginLabel']}</div>
+                        <div class="login-panel-body">
+                            <ui:param name="client" value="#{clientService.getClient(identity.sessionId.sessionAttributes['client_id'])}" />
+
+                            <h:panelGroup rendered='#{!empty client.getLogoUri()}'>
+                                <h:graphicImage url='#{client.getLogoUri()}'/>
+                            </h:panelGroup>
+
+                            <p class="info">#{msgs['inwebo.pleaseLoginHere']}</p>
+
+                            <div id="heliumForm"/>
+                            <input type="hidden" name="login"/>
+                            <input type="hidden" name="password"/>
+
+                            <h:panelGroup rendered='#{!empty client.getPolicyUri()}'>
+                                <p>
+                                    <a target="_blank" href='#{client.getPolicyUri()}'>#{msgs['inwebo.termsPrivacy']}</a>
+                                </p>
+                            </h:panelGroup>
+                        </div>
+                    </div>
+                </h:panelGroup>
+            </form>
+        </h:panelGroup>
+    </ui:define>
+</ui:composition>
\ No newline at end of file
diff --git a/oxAuth/Server/src/main/webapp/auth/oneid/oneidlogin.xhtml b/oxAuth/Server/src/main/webapp/auth/oneid/oneidlogin.xhtml
new file mode 100644
index 00000000..7c28b778
--- /dev/null
+++ b/oxAuth/Server/src/main/webapp/auth/oneid/oneidlogin.xhtml
@@ -0,0 +1,79 @@
+<!DOCTYPE composition PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN"
+        "http://www.w3.org/TR/xhtml1/DTD/xhtml1-transitional.dtd">
+<ui:composition xmlns="http://www.w3.org/1999/xhtml"
+		xmlns:f="http://xmlns.jcp.org/jsf/core"
+                xmlns:ui="http://xmlns.jcp.org/jsf/facelets"
+                xmlns:h="http://xmlns.jcp.org/jsf/html"
+                template="/WEB-INF/incl/layout/template.xhtml">
+    <f:metadata>
+        <f:viewAction action="#{authenticator.prepareAuthenticationForStep}" if="#{not identity.loggedIn}"/>
+    </f:metadata>
+
+    <ui:define name="head">
+        <h:panelGroup rendered="#{not identity.loggedIn}">
+            <h:outputText value="#{oneid_script_header}" escape="false" />
+            <h:outputText value="#{oneid_form_script}" escape="false" />
+        </h:panelGroup>
+
+        <style type="text/css">
+            .login-panel {
+                border-style: solid;
+                border-width: 1px;
+                padding: 1px;
+                background-color: #FFFFFF;
+                border-color: #C4C0B9;
+            }
+
+            .login-panel-header {
+                background-color: #D4CFC7;
+                background-image: url("#{oxAuthConfigurationService.getImgLocation()}/panel_header_bg.png");
+                background-position: left top;
+                background-repeat: repeat-x;
+                border-style: solid;
+                border-width: 1px;
+                padding: 2px;
+                border-color: #D4CFC7;
+                color: #000000;
+                font-family: Arial, Verdana, sans-serif;
+                font-size: 11px;
+                font-weight: bold;
+            }
+
+            .login-panel-body {
+                padding: 10px;
+                color: #000000;
+                font-family: Arial, Verdana, sans-serif;
+                font-size: 11px;
+            }
+        </style>
+    </ui:define>
+
+    <ui:define name="pageTitle">#{msgs['oneidlogin.title']}</ui:define>
+
+    <ui:define name="body">
+        <h:form id="loginForm">
+            <h:panelGroup rendered="#{not identity.loggedIn}">
+                <div class="login-panel">
+                    <div class="login-panel-header">#{msgs['oneidlogin.oneIDLogin']}</div>
+                    <div class="login-panel-body">
+                        <ui:param name="client" value="#{clientService.getClient(redirect.parameters['client_id'])}" />
+
+                        <h:panelGroup rendered='#{!empty client.getLogoUri()}'>
+                            <h:graphicImage url='#{client.getLogoUri()}'/>
+                        </h:panelGroup>
+
+                        <p class="info">#{msgs['oneidlogin.pleaseLoginHere']}</p>
+
+                        <h:outputText value="#{oneid_login_button}" escape="false"/>
+
+                        <h:panelGroup rendered='#{!empty client.getPolicyUri()}'>
+                            <p>
+                                <a target="_blank" href='#{client.getPolicyUri()}'>#{msgs['oneidlogin.termsPrivacy']}</a>
+                            </p>
+                        </h:panelGroup>
+                    </div>
+                </div>
+            </h:panelGroup>
+        </h:form>
+    </ui:define>
+</ui:composition>
\ No newline at end of file
diff --git a/oxAuth/Server/src/main/webapp/auth/oneid/oneidpostlogin.xhtml b/oxAuth/Server/src/main/webapp/auth/oneid/oneidpostlogin.xhtml
new file mode 100644
index 00000000..de4f9a4d
--- /dev/null
+++ b/oxAuth/Server/src/main/webapp/auth/oneid/oneidpostlogin.xhtml
@@ -0,0 +1,91 @@
+<!DOCTYPE composition PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN"
+        "http://www.w3.org/TR/xhtml1/DTD/xhtml1-transitional.dtd">
+<ui:composition xmlns="http://www.w3.org/1999/xhtml"
+		xmlns:f="http://xmlns.jcp.org/jsf/core"
+                xmlns:ui="http://xmlns.jcp.org/jsf/facelets"
+                xmlns:h="http://xmlns.jcp.org/jsf/html"
+                template="/WEB-INF/incl/layout/template.xhtml">
+    <f:metadata>
+        <f:viewAction action="#{authenticator.prepareAuthenticationForStep}" if="#{not identity.loggedIn}"/>
+    </f:metadata>
+
+    <ui:define name="head">
+        <style type="text/css">
+            .login-panel {
+                border-style: solid;
+                border-width: 1px;
+                padding: 1px;
+                background-color: #FFFFFF;
+                border-color: #C4C0B9;
+            }
+
+            .login-panel-header {
+                background-color: #D4CFC7;
+                background-image: url("#{oxAuthConfigurationService.getImgLocation()}/panel_header_bg.png");
+                background-position: left top;
+                background-repeat: repeat-x;
+                border-style: solid;
+                border-width: 1px;
+                padding: 2px;
+                border-color: #D4CFC7;
+                color: #000000;
+                font-family: Arial, Verdana, sans-serif;
+                font-size: 11px;
+                font-weight: bold;
+            }
+
+            .login-panel-body {
+                padding: 10px;
+                color: #000000;
+                font-family: Arial, Verdana, sans-serif;
+                font-size: 11px;
+            }
+        </style>
+    </ui:define>
+
+    <ui:define name="pageTitle">#{msgs['oneidlogin.title']}</ui:define>
+
+    <ui:define name="body">
+        <h:form id="loginForm">
+
+            <h:panelGroup rendered="#{not identity.loggedIn}">
+                <div class="login-panel">
+                    <div class="login-panel-header">#{msgs['oneidlogin.login']}</div>
+                    <div class="login-panel-body">
+                        <ui:param name="client" value="#{clientService.getClient(identity.sessionId.sessionAttributes['client_id'])}" />
+
+                        <h:panelGroup rendered='#{!empty client.getLogoUri()}'>
+                            <h:graphicImage url='#{client.getLogoUri()}'/>
+                        </h:panelGroup>
+
+                        <p class="info">#{msgs['oneidlogin.pleaseLoginHere']}</p>
+
+                        <div class="dialog">
+                            <h:panelGrid columns="2" rowClasses="prop" columnClasses="name,value" width="500">
+                                <h:outputLabel for="username">#{msgs['oneidlogin.username']}</h:outputLabel>
+                                <h:inputText id="username"
+                                             value="#{credentials.username}" autocomplete="off"/>
+                                <h:outputLabel for="password">#{msgs['oneidlogin.password']}</h:outputLabel>
+                                <h:inputSecret id="password"
+                                               value="#{credentials.password}" autocomplete="off"/>
+                                <h:outputLabel for="rememberMe">#{msgs['oneidlogin.rememberMe']}</h:outputLabel>
+                                <h:selectBooleanCheckbox id="rememberMe"
+                                                         value="#{rememberMe.enabled}"/>
+                            </h:panelGrid>
+                        </div>
+
+                        <h:panelGroup rendered='#{!empty client.getPolicyUri()}'>
+                            <p>
+                                <a target="_blank" href='#{client.getPolicyUri()}'>#{msgs['oneidlogin.termsPrivacy']}</a>
+                            </p>
+                        </h:panelGroup>
+
+                        <div class="actionButtons">
+                            <h:commandButton value="Login" action="#{authenticator.authenticate}" />
+                        </div>
+                    </div>
+                </div>
+            </h:panelGroup>
+        </h:form>
+    </ui:define>
+</ui:composition>
\ No newline at end of file
diff --git a/oxAuth/Server/src/main/webapp/auth/otp/enroll.xhtml b/oxAuth/Server/src/main/webapp/auth/otp/enroll.xhtml
new file mode 100644
index 00000000..3417f1ed
--- /dev/null
+++ b/oxAuth/Server/src/main/webapp/auth/otp/enroll.xhtml
@@ -0,0 +1,131 @@
+<!DOCTYPE composition PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN"
+        "http://www.w3.org/TR/xhtml1/DTD/xhtml1-transitional.dtd">
+<ui:composition xmlns="http://www.w3.org/1999/xhtml"
+	xmlns:f="http://xmlns.jcp.org/jsf/core"
+	xmlns:ui="http://xmlns.jcp.org/jsf/facelets"
+	xmlns:h="http://xmlns.jcp.org/jsf/html"
+	template="/WEB-INF/incl/layout/login-extended-template.xhtml">
+
+	<f:metadata>
+		<f:viewAction action="#{authenticator.prepareAuthenticationForStep}"
+			if="#{not identity.loggedIn}" />
+	</f:metadata>
+	<ui:define name="head">
+		<script
+			src="#{oxAuthConfigurationService.getJsLocation()}/gluu-auth.js" />
+		<meta name="description" content="Gluu Inc." />
+		<script>
+            var helper = (function() {
+                var authResult = undefined;
+                return {
+                    onSignInCallback: function(authResult) {
+                        console.log('Get authentication result: ' + authResult);
+                        helper.resumeAuthentication(authResult);
+                    },
+                    resumeAuthentication: function(authResult) {
+                        $('input#auth_result').val(authResult);
+                        $('form#response').submit();
+                    },
+                };
+            })();
+            function onSignInCallback(authResult) {
+                helper.onSignInCallback(authResult);
+            }
+            var request = '${identity.getWorkingParameter('otp_enrollment_request')}';
+            var label = '${identity.getWorkingParameter('qr_label')}';
+            var qr_options = ${identity.getWorkingParameter('qr_options')};
+			
+			$(document).ready(function() {
+                if (request == '') {
+                    onSignInCallback('error');
+                }
+                gluu_auth.renderQrCode('#container', request, qr_options, label);
+                gluu_auth.startProgressBar('.progress-bar', 60, onSignInCallback);
+                
+				
+				
+				// render the details for the manual method
+				//$("account_name").innerHTML = account_name_manual_entry;
+				document.getElementById("otp_secret_key_manual_entry").innerHTML = getUrlVars()["secret"];
+				//$("issuer").innerHTML = account_name_manual_entry;
+				//$("user-name").innerHTML ='' ;
+            });
+			
+			function showManualEntryDiv()
+			{
+				document.getElementById("manual_entry").style.display = 'block';
+			}
+	//<![CDATA[
+			function getUrlVars() {
+				var vars = {};
+				var parts = '${identity.getWorkingParameter('otp_enrollment_request')}'.replace(/[?&]+([^=&]+)=([^&]*)/gi, function(m,key,value) {
+					vars[key] = value;
+				});
+				return vars;
+			}
+
+//	]]>	
+			
+        </script>
+		<style type="text/css"></style>
+	</ui:define>
+	<ui:define name="pageTitle">
+		<h:outputText value="#{msgs['otp.pageTitle']}" />
+	</ui:define>
+	<ui:define name="body">
+		<form method="post" id="response"
+			action="#{request.contextPath}/postlogin.htm">
+			<input type="hidden" id="auth_result" name="auth_result" />
+		</form>
+		<div class="container">
+			<div id="content">
+				<div class="row-fluid">
+					<h:form id="loginForm">
+						<div class="row">
+							<div class="col-md-3"></div>
+							<div class="col-md-6">
+								<h:panelGroup rendered="#{not identity.loggedIn}">
+									<div class="inner-form-container row-fluid">
+										<div class="row">
+											<div class="dialog">
+												<p>#{msgs['otp.scanQRCode']}</p>
+												<div id="container" class="container text-center"></div>
+											</div>
+										</div>
+									</div>
+                                                                        <div>
+                                                                                                <p>
+                                                                                                <a onclick="showManualEntryDiv();" style="cursor: pointer;"
+                                                                                                        target="_blank" class="sigin-a"><span
+                                                                                                        style="color: blue">Unable to scan the QR code?</span></a>
+                                                                                                </p>
+                                                                                                <div id="manual_entry" style="display:none">
+                                                                                                <p> Type the following key in your authenticator app:  <span id="otp_secret_key_manual_entry"></span></p>
+                                                                                                </div>
+                                                                        </div>
+                                                                </h:panelGroup>
+
+								<h:panelGroup rendered="#{not identity.loggedIn}">
+									<div class="progress">
+										<div
+											class="progress-bar progress-bar-striped progress-bar-animated"
+											role="progressbar" aria-valuenow="100" aria-valuemin="0"
+											aria-valuemax="100" style="width: 100%"></div>
+									</div>
+									<div class="row">
+										<h:commandButton id="finishButton"
+											style=" margin-left: 20%;width:50%; margin-top:10px;"
+											styleClass="btn btn-primary" value="#{msgs['otp.finish']}"
+											action="#{authenticator.authenticate}" />
+										<span class="sprite-green_click_icon"></span>
+									</div>
+								</h:panelGroup>
+							</div>
+							<div class="col-md-3"></div>
+						</div>
+					</h:form>
+				</div>
+			</div>
+		</div>
+	</ui:define>
+</ui:composition>
diff --git a/oxAuth/Server/src/main/webapp/auth/otp/otplogin.xhtml b/oxAuth/Server/src/main/webapp/auth/otp/otplogin.xhtml
new file mode 100644
index 00000000..c64639b0
--- /dev/null
+++ b/oxAuth/Server/src/main/webapp/auth/otp/otplogin.xhtml
@@ -0,0 +1,75 @@
+<!DOCTYPE composition PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN"
+		"http://www.w3.org/TR/xhtml1/DTD/xhtml1-transitional.dtd">
+<ui:composition xmlns="http://www.w3.org/1999/xhtml"
+	xmlns:f="http://xmlns.jcp.org/jsf/core"
+	xmlns:ui="http://xmlns.jcp.org/jsf/facelets"
+	xmlns:h="http://xmlns.jcp.org/jsf/html"
+	template="/WEB-INF/incl/layout/login-extended-template.xhtml">
+	<f:metadata>
+		<f:viewAction action="#{authenticator.prepareAuthenticationForStep}"
+			if="#{not identity.loggedIn}" />
+	</f:metadata>
+
+	<ui:define name="head">
+		<meta name="description" content="Gluu Inc." />
+
+		<link
+			href="#{oxAuthConfigurationService.getCssLocation()}/bootstrap.min.css"
+			rel="stylesheet" />
+		<link rel="stylesheet"
+			href="#{oxAuthConfigurationService.getCssLocation()}/style.css" />
+		<link
+			href="https://fonts.googleapis.com/css?family=Open+Sans:300,400,600"
+			rel="stylesheet" />
+	</ui:define>
+
+	<ui:define name="pageTitle">
+		<h:outputText value="#{msgs['otp.pageTitle']}" />
+	</ui:define>
+
+	<ui:define name="body">
+		<h:form id="loginForm">
+			<h:panelGroup rendered="#{not identity.loggedIn}">
+				<div class="container">
+					<div class="step_bx">
+						<h2>#{msgs['otp.verification']}</h2>
+						<p>#{msgs['otp.usedevice']}</p>
+						<img
+							src="#{oxAuthConfigurationService.getImgLocation()}/ver_code.png"
+							alt="ver_code" />
+						<h4>#{msgs['otp.entercode']}</h4>
+						<p>#{msgs['otp.getcode']}</p>
+
+						<input class="form-control" id="loginForm:otpCode"
+						    style="margin-top:5px;"
+							name="loginForm:otpCode" type="text" autocomplete="off" /> <br></br>
+						<h:commandButton class="btn btn-primary col-sm-offset-3 col-sm-6"
+							style="margin-bottom:10px;" value="#{msgs['login.login']}"
+							action="#{authenticator.authenticate}" />
+					</div>
+				</div>
+			</h:panelGroup>
+		</h:form>
+		<script type="text/javascript">
+			window.onload = function() {
+				var otpCodeField = document.getElementById("loginForm:otpCode");
+				otpCodeField.focus();
+			};
+		</script>
+		<style type="text/css">
+.container {
+	margin: auto;
+	border-radius: 10px !important;
+	width: 50%;
+	border: 3px;
+	padding: 10px;
+}
+
+.step_bx {
+	width: 100%;
+	border-radius: 5px !important;
+	height: 60%;
+}
+</style>
+	</ui:define>
+</ui:composition>
diff --git a/oxAuth/Server/src/main/webapp/auth/otp_sms/otp_sms.xhtml b/oxAuth/Server/src/main/webapp/auth/otp_sms/otp_sms.xhtml
new file mode 100644
index 00000000..b09b9366
--- /dev/null
+++ b/oxAuth/Server/src/main/webapp/auth/otp_sms/otp_sms.xhtml
@@ -0,0 +1,152 @@
+<!DOCTYPE composition PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN"
+        "http://www.w3.org/TR/xhtml1/DTD/xhtml1-transitional.dtd">
+<ui:composition xmlns="http://www.w3.org/1999/xhtml"
+	xmlns:f="http://xmlns.jcp.org/jsf/core"
+	xmlns:ui="http://xmlns.jcp.org/jsf/facelets"
+	xmlns:h="http://xmlns.jcp.org/jsf/html"
+	template="/WEB-INF/incl/layout/login-extended-template.xhtml">
+	<f:metadata>
+		<f:viewAction action="#{authenticator.prepareAuthenticationForStep}"
+			if="#{not identity.loggedIn}" />
+	</f:metadata>
+
+	<ui:define name="head">
+		<style type="text/css">
+.login-panel {
+	border-style: solid;
+	border-width: 1px;
+	padding: 1px;
+	background-color: #FFFFFF;
+	border-color: #C4C0B9;
+}
+
+.login-panel-header {
+	background-color: #D4CFC7;
+	background-image:
+		url("#{oxAuthConfigurationService.getImgLocation()}/panel_header_bg.png");
+	background-position: left top;
+	background-repeat: repeat-x;
+	border-style: solid;
+	border-width: 1px;
+	padding: 2px;
+	border-color: #D4CFC7;
+	color: #000000;
+	font-family: Arial, Verdana, sans-serif;
+	font-size: 11px;
+	font-weight: bold;
+}
+
+.login-panel-body {
+	padding: 10px;
+	color: #000000;
+	font-family: Arial, Verdana, sans-serif;
+	font-size: 11px;
+}
+
+.h4, h4 {
+	font-size: 18px;
+}
+
+.h4, .h5, .h6, h4, h5, h6 {
+	margin-top: 10px;
+	margin-bottom: 10px;
+}
+
+p {
+	margin: 0 0 10px !important;
+}
+
+body {
+	font-family: "Helvetica Neue", Helvetica, Arial, sans-serif;
+	font-size: 14px;
+	line-height: 1.42857143 !important;
+	color: #333;
+}
+
+input.btn.btn-done {
+	background: #1ab26b;
+	color: #fff !important;
+	width: 100%;
+	padding: 10px 10px;
+	margin-top: 12px;
+}
+
+.step_bx {
+	margin: 0 30% auto;
+	border-radius: 5px !important;
+	max-height: 80%;
+	margin-bottom: 50px;
+}
+</style>
+	</ui:define>
+
+	<ui:define name="pageTitle">#{msgs['otp_sms.pageTitle']}</ui:define>
+	<ui:define name="body">
+		<h:form id="OtpSmsloginForm">
+			<h:panelGroup id="loginGroup" rendered="#{not identity.loggedIn}">
+				<ui:param name="client"
+					value="#{clientService.getClient(redirect.parameters['client_id'])}" />
+
+				<h:panelGroup rendered='#{!empty client.getLogoUri()}'>
+					<h:graphicImage url='#{client.getLogoUri()}' />
+				</h:panelGroup>
+
+				<div class="container">
+					<div class="step_bx">
+						<h2>#{msgs['otp_sms.verification']}</h2>
+						<p>#{msgs['otp_sms.usedevice']}</p>
+						<img
+							src="#{oxAuthConfigurationService.getImgLocation()}/phone-ver.png"
+							alt="phone-ver" />
+						<h4>#{msgs['otp_sms.verificationcode']}</h4>
+						<p>
+							<h:outputText value="#{msgs['otp_sms.codesent']} " escape="false" />
+							<h:outputText
+								value="#{authenticator.getMaskedNumber()}" />
+						</p>
+						<h:messages style="margin-left:-35px;text-align: center;color:red;" id="messages"
+							globalOnly="true" styleClass="message text-center"
+							errorClass="errormsg" infoClass="infomsg" warnClass="warnmsg"
+							rendered="#{showGlobalMessages != 'false'}" />
+						<input name="passcode" type="text" class="form-control"
+							placeholder="Enter the 6 digit code" autocomplete="off" />
+						<h:commandButton styleClass="btn btn-done"
+							value="#{msgs['otp_sms.login']}"
+							action="#{authenticator.authenticate}" />
+					</div>
+				</div>
+				<h:panelGroup rendered='#{!empty client.getPolicyUri()}'>
+					<p>
+						<a target="_blank" href='#{client.getPolicyUri()}'>#{msgs['otp_sms.termsPrivacy']}</a>
+					</p>
+				</h:panelGroup>
+			</h:panelGroup>
+		</h:form>
+		<div class="footer-copyright text-center py-3"
+			style="background: #1ab26b; position: fixed; left: 0; bottom: 0; width: 100%; text-align: center;">
+			<div class="footer">
+				<div class="row">
+					<div class="col-md-12">
+						<div class="padding_spc"
+							style="padding-bottom: 5px; padding-top: 5px;">
+							<p>
+								<h:outputText value="#{msgs['common.gluuInc']}" />
+								| <a target="_blank"
+									href="https://github.com/GluuFederation/oxAuth/blob/master/LICENSE"><h:outputText
+										value="#{msgs['common.caution']}" escape="false" /></a>
+								<h:panelGroup rendered='#{!empty client.policyUri}'>
+					| <a target="_blank" href="#{client.policyUri}"><h:outputText
+											value="#{msgs['common.privacyPolicy']}" escape="false" /></a>
+								</h:panelGroup>
+								<h:panelGroup rendered='#{!empty client.tosUri}'>
+					| <a target="_blank" href="#{client.tosUri}"><h:outputText
+											value="#{msgs['common.termsOfService']}" escape="false" /></a>
+								</h:panelGroup>
+							</p>
+						</div>
+					</div>
+				</div>
+			</div>
+		</div>
+	</ui:define>
+</ui:composition>
\ No newline at end of file
diff --git a/oxAuth/Server/src/main/webapp/auth/oxpush/oxauthenticate.xhtml b/oxAuth/Server/src/main/webapp/auth/oxpush/oxauthenticate.xhtml
new file mode 100644
index 00000000..05669db6
--- /dev/null
+++ b/oxAuth/Server/src/main/webapp/auth/oxpush/oxauthenticate.xhtml
@@ -0,0 +1,83 @@
+<!DOCTYPE composition PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN"
+        "http://www.w3.org/TR/xhtml1/DTD/xhtml1-transitional.dtd">
+<ui:composition xmlns="http://www.w3.org/1999/xhtml"
+                xmlns:f="http://xmlns.jcp.org/jsf/core"
+                xmlns:ui="http://xmlns.jcp.org/jsf/facelets"
+                xmlns:h="http://xmlns.jcp.org/jsf/html"
+                template="/WEB-INF/incl/layout/template.xhtml">
+
+    <f:metadata>
+        <f:viewAction action="#{authenticator.prepareAuthenticationForStep}" if="#{not identity.loggedIn}"/>
+    </f:metadata>
+    <ui:define name="head">
+        <h:panelGroup rendered="#{param.oxpush_user_uid != null}">
+            <script type="text/javascript">
+                //<![CDATA[
+                jQuery(document).ready(function() {
+                    $("#loginForm").submit();
+                });
+                //]]>
+            </script>
+        </h:panelGroup>
+
+        <style type="text/css">
+            .login-panel {
+                border-style: solid;
+                border-width: 1px;
+                padding: 1px;
+                background-color: #FFFFFF;
+                border-color: #C4C0B9;
+            }
+
+            .login-panel-header {
+                background-color: #D4CFC7;
+                background-image: url("#{oxAuthConfigurationService.getImgLocation()}/panel_header_bg.png");
+                background-position: left top;
+                background-repeat: repeat-x;
+                border-style: solid;
+                border-width: 1px;
+                padding: 2px;
+                border-color: #D4CFC7;
+                color: #000000;
+                font-family: Arial, Verdana, sans-serif;
+                font-size: 11px;
+                font-weight: bold;
+            }
+
+            .login-panel-body {
+                padding: 10px;
+                color: #000000;
+                font-family: Arial, Verdana, sans-serif;
+                font-size: 11px;
+            }
+        </style>
+    </ui:define>
+
+    <ui:define name="pageTitle">#{msgs['oxpush.pageTitle']}</ui:define>
+
+    <ui:define name="body">
+        <form id="loginForm" method="post" action="#{request.contextPath}/postlogin.htm">
+            <h:panelGroup id="loginGroup" rendered="#{not identity.loggedIn}">
+                <div class="login-panel">
+                    <div class="login-panel-header">#{msgs['oxpush.login']}</div>
+                    <div class="login-panel-body">
+                        <ui:param name="client" value="#{clientService.getClient(redirect.parameters['client_id'])}" />
+                        <h:panelGroup rendered='#{!empty client.getLogoUri()}'>
+                            <h:graphicImage url='#{client.getLogoUri()}'/>
+                        </h:panelGroup>
+
+                        <h:panelGroup styleClass="dialog" rendered="#{param.oxpush_user_uid != null}">
+                            <p class="info">#{msgs['oxpush.sendingAuthenticationRequest']}</p>
+                        </h:panelGroup>
+
+                        <h:panelGroup rendered='#{!empty client.getPolicyUri()}'>
+                            <p>
+                                <a target="_blank" href='#{client.getPolicyUri()}'>#{msgs['oxpush.termsPrivacy']}</a>
+                            </p>
+                        </h:panelGroup>
+                    </div>
+                </div>
+            </h:panelGroup>
+        </form>
+    </ui:define>
+</ui:composition>
\ No newline at end of file
diff --git a/oxAuth/Server/src/main/webapp/auth/oxpush/oxlogin.xhtml b/oxAuth/Server/src/main/webapp/auth/oxpush/oxlogin.xhtml
new file mode 100644
index 00000000..95e44c9d
--- /dev/null
+++ b/oxAuth/Server/src/main/webapp/auth/oxpush/oxlogin.xhtml
@@ -0,0 +1,122 @@
+<!DOCTYPE composition PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN"
+        "http://www.w3.org/TR/xhtml1/DTD/xhtml1-transitional.dtd">
+<ui:composition xmlns="http://www.w3.org/1999/xhtml"
+                xmlns:f="http://xmlns.jcp.org/jsf/core"
+                xmlns:ui="http://xmlns.jcp.org/jsf/facelets"
+                xmlns:h="http://xmlns.jcp.org/jsf/html"
+                template="/WEB-INF/incl/layout/template.xhtml">
+    <f:metadata>
+        <f:viewAction action="#{authenticator.prepareAuthenticationForStep}" if="#{not identity.loggedIn}"/>
+    </f:metadata>
+    <ui:define name="head">
+        <style type="text/css">
+            .login-panel {
+                border-style: solid;
+                border-width: 1px;
+                padding: 1px;
+                background-color: #FFFFFF;
+                border-color: #C4C0B9;
+            }
+
+            .login-panel-header {
+                background-color: #D4CFC7;
+                background-image: url("#{oxAuthConfigurationService.getImgLocation()}/panel_header_bg.png");
+                background-position: left top;
+                background-repeat: repeat-x;
+                border-style: solid;
+                border-width: 1px;
+                padding: 2px;
+                border-color: #D4CFC7;
+                color: #000000;
+                font-family: Arial, Verdana, sans-serif;
+                font-size: 11px;
+                font-weight: bold;
+            }
+
+            .login-panel-body {
+                padding: 10px;
+                color: #000000;
+                font-family: Arial, Verdana, sans-serif;
+                font-size: 11px;
+            }
+        </style>
+    </ui:define>
+
+    <ui:define name="pageTitle">#{msgs['oxpush.title']}</ui:define>
+
+    <ui:define name="body">
+        <table border="0" align="center">
+            <tr>
+                <td>
+                    <div>
+                        <h:form id="loginForm">
+
+                            <h:panelGroup rendered="#{not identity.loggedIn}">
+                                <div class="login-panel">
+                                    <div class="login-panel-header">#{msgs['oxpush.loginLabel']}</div>
+                                    <div class="login-panel-body">
+                                        <ui:param name="client" value="#{clientService.getClient(identity.sessionId.sessionAttributes['client_id'])}" />
+
+                                        <h:panelGroup rendered='#{!empty client.getLogoUri()}'>
+                                            <h:graphicImage url='#{client.getLogoUri()}'/>
+                                        </h:panelGroup>
+
+                                        <p class="info">#{msgs['oxpush.pleaseLoginHere']}</p>
+
+                                        <div class="dialog">
+                                            <h:panelGrid columns="3" border="0" rowClasses="prop"
+                                                         columnClasses="name,value,hint">
+                                                <h:outputLabel for="username">#{msgs['oxpush.username']}</h:outputLabel>
+                                                <h:inputText id="username"
+                                                             value="#{credentials.username}" autocomplete="off"/>
+                                                <h:outputText value=""/>
+
+                                                <h:outputLabel for="password">#{msgs['oxpush.password']}</h:outputLabel>
+                                                <h:inputSecret id="password"
+                                                               value="#{credentials.password}" autocomplete="off"/>
+                                                <h:outputText value=""/>
+
+                                                <h:outputLabel for="rememberMe">#{msgs['oxpush.rememberMe']}</h:outputLabel>
+                                                <h:selectBooleanCheckbox id="rememberMe"
+                                                                         value="#{rememberMe.enabled}"/>
+                                                <h:outputText value=""/>
+                                            </h:panelGrid>
+                                        </div>
+
+                                        <h:panelGroup>
+                                            <h:outputText value="#{msgs['oxpush.beforeLogIn']}" style="color:blue"/>
+                                            <h:panelGrid columns="1" border="0">
+                                                <h:outputLink value="#{oxpush_android_download_url}" title="Android" rendered="#{oxpush_android_download_url != null}">#{msgs['oxpush.androidMobileApplication']}</h:outputLink>
+                                            </h:panelGrid>
+                                        </h:panelGroup>
+
+                                        <h:panelGroup rendered='#{!empty client.getPolicyUri()}'>
+                                            <p>
+                                                #{msgs['oxpush.byProceeding']}
+                                                <strong>#{client.getClientName()}</strong>
+                                                <a target="_blank" href='#{client.getPolicyUri()}'>#{msgs['oxpush.privacyPolicy']}</a>
+                                            </p>
+                                        </h:panelGroup>
+
+                                        <h:panelGroup rendered='#{!empty client.getTosUri()}'>
+                                            <p>
+                                                #{msgs['oxpush.pleaseRead']}
+                                                <a target="_blank" href='#{client.getTosUri()}'>#{msgs['oxpush.termsOfService']}</a>
+                                            </p>
+                                        </h:panelGroup>
+
+                                        <div class="actionButtons">
+                                            <h:commandButton id="loginButton"
+                                                             value="#{msgs['oxpush.loginLabel']}"
+                                                             action="#{authenticator.authenticate}"/>
+                                        </div>
+                                    </div>
+                                </div>
+                            </h:panelGroup>
+                        </h:form>
+                    </div>
+                </td>
+            </tr>
+        </table>
+    </ui:define>
+</ui:composition>
\ No newline at end of file
diff --git a/oxAuth/Server/src/main/webapp/auth/oxpush/oxpair.xhtml b/oxAuth/Server/src/main/webapp/auth/oxpush/oxpair.xhtml
new file mode 100644
index 00000000..611004cf
--- /dev/null
+++ b/oxAuth/Server/src/main/webapp/auth/oxpush/oxpair.xhtml
@@ -0,0 +1,95 @@
+<!DOCTYPE composition PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN"
+		"http://www.w3.org/TR/xhtml1/DTD/xhtml1-transitional.dtd">
+<ui:composition xmlns="http://www.w3.org/1999/xhtml"
+				xmlns:f="http://xmlns.jcp.org/jsf/core"
+				xmlns:ui="http://xmlns.jcp.org/jsf/facelets"
+				xmlns:h="http://xmlns.jcp.org/jsf/html"
+				template="/WEB-INF/incl/layout/template.xhtml">
+	<f:metadata>
+		<f:viewAction action="#{authenticator.prepareAuthenticationForStep}" if="#{not identity.loggedIn}"/>
+	</f:metadata>
+	<ui:define name="head">
+
+		<script type="text/javascript">
+			//<![CDATA[
+			jQuery(document).ready(function() {
+				$("#loginForm").submit();
+			});
+			//]]>
+		</script>
+
+		<style type="text/css">
+			.login-panel {
+				border-style: solid;
+				border-width: 1px;
+				padding: 1px;
+				background-color: #FFFFFF;
+				border-color: #C4C0B9;
+			}
+
+			.login-panel-header {
+				background-color: #D4CFC7;
+				background-image: url("#{oxAuthConfigurationService.getImgLocation()}/panel_header_bg.png");
+				background-position: left top;
+				background-repeat: repeat-x;
+				border-style: solid;
+				border-width: 1px;
+				padding: 2px;
+				border-color: #D4CFC7;
+				color: #000000;
+				font-family: Arial, Verdana, sans-serif;
+				font-size: 11px;
+				font-weight: bold;
+			}
+
+			.login-panel-body {
+				padding: 10px;
+				color: #000000;
+				font-family: Arial, Verdana, sans-serif;
+				font-size: 11px;
+			}
+		</style>
+	</ui:define>
+
+	<ui:define name="pageTitle">#{msgs['oxpush.pageTitle']}</ui:define>
+
+	<ui:define name="body">
+		<form id="loginForm" method="post"
+			  action="#{request.contextPath}/postlogin.htm">
+			<h:panelGroup id="loginGroup" rendered="#{not identity.loggedIn}">
+				<div class="login-panel">
+					<div class="login-panel-header">#{msgs['oxpush.loginPairingRequest']}</div>
+					<div class="login-panel-body">
+						<ui:param name="client"
+								  value="#{clientService.getClient(redirect.parameters['client_id'])}" />
+						<h:panelGroup rendered='#{!empty client.getLogoUri()}'>
+							<h:graphicImage url='#{client.getLogoUri()}' />
+						</h:panelGroup>
+
+						<h:panelGroup styleClass="dialog"
+							   rendered="#{param.oxpush_user_uid != null}">
+							<p class="info">#{msgs['oxpush.checkingPairing']}</p>
+						</h:panelGroup>
+						<h:panelGroup styleClass="dialog"
+							   rendered="#{param.oxpush_user_uid == null}">
+							<p class="info">#{msgs['oxpush.waitingForUser']}</p>
+							<br/>
+
+							<p class="info">#{msgs['oxpush.pairingQRCode']}</p>
+							<h:outputText value="#{oxpush_pairing_qr_image}" escape="false" />
+
+							<p class="info">#{msgs['oxpush.pairingCode']}</p>
+							<h:outputText value="#{oxpush_pairing_code}" styleClass="bolded"/>
+						</h:panelGroup>
+
+						<h:panelGroup rendered='#{!empty client.getPolicyUri()}'>
+							<p>
+								<a target="_blank" href='#{client.getPolicyUri()}'>#{msgs['oxpush.termsPrivacy']}</a>
+							</p>
+						</h:panelGroup>
+					</div>
+				</div>
+			</h:panelGroup>
+		</form>
+	</ui:define>
+</ui:composition>
\ No newline at end of file
diff --git a/oxAuth/Server/src/main/webapp/auth/passport/img/apple.png b/oxAuth/Server/src/main/webapp/auth/passport/img/apple.png
new file mode 100644
index 0000000000000000000000000000000000000000..d852c10925f8f59f5bb1579c832554099b2d68a4
GIT binary patch
literal 8171
zcmV<H9~9t;P)<h;3K|Lk000e1NJLTq002e+002%11^@s6oqb^G00004XF*Lt006O$
zeEU(80000WV@Og>004&%004{+008|`004nN004b?008NW002DY000@xb3BE2000Uv
zX+uL$Nkc;*P;zf(X>4Tx07%E3mUmQC*A|D*y?1({%`nm#dXp|Nfb=dP9RyJrW(F9_
z0K*JTY>22pL=h1IMUbF?0i&TvtcYSED5zi$NDxqBFp8+CWJcCXe0h2A<>mLsz2Dkr
z?{oLrd!Mx~03=TzE-wX^0w9?u;0Jm*(^rK@(6Rjh26%u0rT{Qm>8ZX!?!iDLFE<x@
zy2uIqi{1<YNc_HK=;=?Vga1#`tW>@L0LWj&=4?(nOT_siPRbOditRHZrp6?S8Agej
zFG^6va$=5K<fWf|7THnE>|`EW#NwP&*~x4%_lS6VhL9s-#7D#h8C*`Lh;NHnGf9}t
z74chfY%+(L4giWIwhK6{coCb3n8XhbbP@4#0C1$ZFF5847I3lz;zPNlq-OKEaq$AW
zE=!MYYHiJ+dvY?9I0Av8Ka-Wn<g@86Daol!UN!)WXZ|c1ac$|MB3qhTTUr{L8JT`j
zsQ<e7Hzn@vBE1Uu+%t&Q_lNDT{8H)wV9bhYv+ECA%zgkmwgMn`{|}qyApj&reQUq*
z#d&Drd5ISYQf-WlGcz-dxEz*|xS+r5e>(gPeepdb@piwLhwjRWWeSr7baCBSDM=|p
zK0Q5^$>Pur|2)M1IPkCYSQ^NQ<?uN?QADU{%DB8ZQM-9;u7I1uqjP!xsfqtE>`z*p
zYmq4Rp8z$=2uR(a0_5jDfT9oq5_wSE_22vEgAWDbn-``!u{igi1^xT3aEbVl&W-yV
z=Mor9X9@Wki)-R*3DAH5Bmou30~MeFbb%o-16IHmI084Y0{DSo5DwM?7KjJQfDbZ3
zF4znTKoQsl_JT@K1L{E|XaOfc2RIEbfXm=IxC!on2Vew@gXdrdyaDqN1YsdEM1kZX
zRY(gmfXpBUWDmJPK2RVO4n;$85DyYUxzHA<2r7jtp<1XB`W89`U4X7a1JFHa6q<s5
zh2FymOoFMfGOP_7!wlF7_J)JuHE<l92Is)}@J_e_u7i)k?eGQoI(!EnfuF;(2tbGk
z4N*f35eDLd_#qKUEW$@NAcaUdQirr4T}Ur-3mHMCk#{Hzih`n}3{kcyPgDqsg-Szh
zKoz4ZQAbhjs2<cU)F^5O^$ATzE1?b0HfS&ODs&t=6J3BVM>n9`(3jA6(BtSg7z~Dn
z(ZN_@JTc*z1k5^2G3EfK6>}alfEmNgVzF3xtO3>z>xX4x1=s@Ye(W*qIqV>I9QzhW
z#Hr%UaPGJW91oX=E5|kA&f*4f6S#T26kZE&gZIO;@!9wid_BGke*-^`pC?EYbO?5Y
zU_t_6GogaeLbybDNO(mg64i;;!~i0fxQSRnJWjkq93{RZ$&mC(E~H43khGI@gmj*C
zkMxR6CTo)&$q{4$c_+D%e3AT^{8oY@VI<)t!Is!4Q6<qXF(~mu5-+JG=_I*UGDosp
z@}%Sq$!RIPl(v+M6jN%0RF%{zsbQ&EX^OO|w4Zdcbg^`k^i}Ce8LW)9jGGKwCST^T
z%te_o3PRDKxKLP>EtGo7CCWGzL)D>rQ4^>|)NiQ$)EQYB*=4e!vRSfKvS(yRXb4T4
z=0!`QmC#PmhG_4XC@*nZ!dbFoNz0PKC3A9$a*lEwxk9;CxjS<2<>~Tn@`>`h<vZjb
zDWDYe6#^786%Hy~QkYhxD%vWt6bltkDBf3smGqSYmDVX8R_arlRaQ~<P)=3euY6H?
zT7{<KsFI*krgBzgN|mB&ugX;|Q$45pj4n%eq9@TS=solqH6=AqHKAIqTEE)7x{i8?
zdY*c#`Xdd3216rOqfDb)V@6X|(^oTBvsv@L7G8^?6|c2Vt5<7ITSq%gdz*HL_N0!S
zj+ai3PP5KKU9zr&ZkleL?rlAc9z!ot?||M-eOTW@KVH8||Aql<U}?ZLIAAca6us1X
zDQ{`r(qTiAp_5^TVYA_=5zWZQD9@<F=!LPSafI=1<6h%WCKe`1CiNx{Ol3@0nC6*w
znf_{~Z^kmKGP`X~Hg`AQXx?f5a+$$0&a#8c?pjbRd@Z(FbX$D1w6f$|wpdPCX<9{F
zRa*@+s0@EbG2@Cg+S=KAqxEU)cQ%$b0-F;yzt|euCfYXHPA=D3&RJf+e9TVWj%inG
zH)2n>kG4N#KjNU~z;vi{c;cwx$aZXSoN&@}N^m;n^upQ1neW`@Jm+HLvfkyqE8^<m
zTIkyECgT?3R_XTGUEMv-z1e-n!@^^o$9Ye*r?=;B&tWfRFP2xM*USp573){@c$2(?
zyeqw*_~`raeY$*M-xa=ld>^jVTFG14;RpP@{Py@g^4IZC^Zz~o6W||E74S6BG%z=?
zH;57x71R{;CfGT+B=|vyZiq0XJ5(|>GPE&tF3dHoG;Cy*@v8N!u7@jxbHh6$uo0mV
z4H2`e-B#~iJsxQhSr9q2MrTddnyYIS)+Vhz6D1kNj5-;Ojt+}%ivGa#W7aWeW4vOj
zV`f+`tbMHKY)5t(dx~SnDdkMW+QpW}PR7~A?TMR;cZe^KpXR!7E4eQdJQHdX<`Vr9
zk0dT6g(bBn<C3G3Pw`}UiM*Z^m6WWMfmDOkg4B^To3y=YGkkA;LpqecCcRTY75z;0
z33Y{Ag`*kv8C4l?Gea{^W=Uu9vih?1vv*`q<hbX2y$-dGwXQo?Eq8P7=z6F1wHu%f
zF&nx!YHZBkIKIha)6va@&54_T$TP_+&3nBiY)e<Za{i|Lv8^6kn+qfg_yxn;Y`4{H
zM{VbB@84m*WB-m%h3vv>MJ7e%MIVY;#n-+v{i@=tg`KfG`%5fK4(`J2;_VvR?Xdf3
zsdQ;h>DV6MJ?&-mvcj_0d!zPVEnik%vyZS(xNoGwr=oMe=Kfv#KUBt7-l=k~YOPkP
z-cdbwfPG-_pyR=o8s(azn)ipehwj#T)V9}Y*Oec}9L_lWv_7=H_iM)2jSUJ7MGYU1
z@Q#ce4LsV@Xw}%*q|{W>3^xm#r;bG)yZMdlH=QkpEw!z*)}rI!xbXP1Z==5*I^lhy
z`y}IJ%XeDeRku;v3frOf?Dm<C_>Pgz@Xmo#D^7KH*><&kZ}k0<(`u)y&d8oAIZHU3
ze|F(q&bit1spqFJ#9bKcj_Q7Jan;4!Jpn!am%J}sx$J)VVy{#0xhr;8PG7aTdg>bE
zTE}(E>+O9OeQiHj{Lt2K+24M{>PF{H>ziEz%LmR5It*U8<$CM#ZLizc@2tEtFcdO$
zcQ|r*<SzT}<h`VOFYjmEpMS9FA^KtABdJH_kCh(R{iye2>xkvZnNio#z9&IX9*nWZ
zp8u5o(}(f=r{t&Q6RH!9lV+2rr`)G*K3n~4{CVp0`RRh6rGKt|q5I;yUmSnwn^`q8
z{*wQ4;n(6<@~@7(UiP|s)_?Z#o8&k1bA@l^-yVI(c-Q+r?ES=i<_GMDijR69yFPh;
zdbp6hu<#rAg!B711SuW>000SaNLh0L01FcU01FcV0GgZ_0000NbVXQnQ*UN;cVTj6
z08nXoWo&I>bZ>GXGcGV3oVkSn000McNliru-3tv23mIuk#PR?D6!1wzK~#8Nt=vb*
zb!XMa@nelWQBhO`QBa9-rZ^B(6ciM}HVC4`iAF3F2T4TiCHCIC(Zmva@4ffl6+sbE
zXNu$VeZM>W4=bDV<c;~h!IgF2tKDl|d+q(~bDrnT?w7y(<^I>d{`JC7fBMt?FMjch
z{ZD@KlRdq4cI%)2{O6b3hhP2bSIhRB-~49(v!DI!5DR?i_yC(d|LjTUXX8hTDOdXT
z<qPS-UM@NH^Wz`?c*WDTXCr^~qaQ7qo?OI$px^%Xw@a2F*<lslp>&g^VzQHBpm+yI
zBowE(a^-JduKcrg@qpf*tutq%<*<hz{_uxO4}5>{gC8vW_rL%BL)@+gBrgerJsVU!
znVzhP>1!=sp5o~8p@Z!C&$#x*Kux=NfBoxU_y7L)zxTiU-S5_3V>N_eQf@jq*u{VE
zd*3_wAjdk16nZ}5b`mg>f@_4Xf;h5Ez-I5N+gCU{WUr~>t;LjAEdOF>j`Hxy?+<_Y
z!~Q@2`Op61i!a_k@PQB9pMLu3``vE0f6|klv}~QHG5%eB=OYFX%WkcX?|%2YYfa|&
zo$q{S*>(=5tO#ofIHhv{Hfu-`Kv&~1<M=wj-a6zbp52;%`Pu2KgZ$UO{<VL@8{V+L
z!3}P(zuMKVw!hx>uD8F@jc&BR;SF!NKmYvm*VG`QdgaorHNAYKTI9FRpX5(Y(smU>
zV!GfCh%{@G@3c)~tTjjG4{Ys|#aKI&e(FdQ_WR%eet)Ms-D!V~Yg}VZ$&GJ(<0Wr$
zlbh_XbDit#U-q(>EkE({bh}u$S2KI-Z1C-GfBQhn<%p@Eiea#(hsh{A*_vOZMiQhW
zAwRj<+2qXDS=Nd}?jQg7$NiVT{N*(vCIt~^oN>kh_Sd@Bwf66M&wG}?2@zXfXQ{KZ
z+489ezV_9MByc;eiIKQwVKygmdf>+v(px*I*bYDD*FL}2&eD)6`OIfNvz{R)q$vpz
z!~U1Q{N-?tJY8`OllIn{<wy2xu_wRvt#2(t=(FzxLrjweWD9g1o}7LPsGyn0K{XG^
z+v+NoPHdzgf%Hs?n25T=9qzFI$3OnDV!_#@CauY8r2qQYzkX<3ZN-Fde)F4$*xf9g
zqJT!+p58hsCOsKR8nowQU5;``0$q8WRX(=A|NZZ)X}1qjA_Fn)5p&(^UU&bZ7rp3k
z8)--mxinwyh|qL?HP2>RvRlK~zV@}to-sL<*q(#^#5|M_87aU=bLq-C3z_ls$fHx-
zpa1;l{bL{d*!|V7e)ZLSlj5fjL=e4+GA(k5h4RR+{`$yA^L)sNU`uD8ZC65&kTMb?
zB%6cSTTkSJm}2Rg5<c{FZ1T)WqVthL!%ay<AZ6Z4*S_|(_fLK5Q`e7t@fwnM=C)4%
zjc<Ho0STm-uYUEb2V$mOEd7oXAV^Z{l4_)2#di>2ei~~pmS6F7Af|Qt2+9|{vz&YG
zxvOc-HznI?ft%j+ru%>X^PekDLtRYGdXA{WIc^E(=QI8Juz%$%Us*9=EeHD|hEoMv
zGbp}hB<DAq<5yfZP@q@`k$m#!yCv8f{`R-Ot#_3sV@^t-H&GfATeHrxuDMADv`+GC
zV&tL+Yj$#1VGeSL24>=ln9b35)%ngTA%UF@QTFoDk@Rwulg}qV`N`GvB*Fu@X^E6K
zzVVG~x|}ITHInjb8mzne&ivAszO;1SjgaSDallTW|ACm2k`V(AP(XWun&79|h?0oj
zK63J@NH%M7Yx4lU;DQU*3mXFFErg)!U;p}x6dwzGaCDwn&2#}lec9xtv!AyJn>~E-
zi(fqK*&|TiT?K21fs>-Q%>bRf1Ni1sVPG#lazG65r!OC!y^kUfdeDQ`XQ1tmXwMu!
znm_#E53e8bvw68S0rJq*pr&h-&e@S6?(?7j{PL&EKT;Mkl;E(MhYql=h-~()i&t1V
z@{jCDnl_+Ugekb!z3#P$X<|%|DLLnybJmAMxy06_y!PT-Yf=qONj8!_eYUMW66tr8
zHZg8bO2}CQ>8<H&j4m?yfL!VLT0?Q<^tbkf)ZOlOw?%{rx#J!0xNa>U4ZJ0b`N9{z
zunLyHGkUg_w=2$WZ3=*nR4+u1ocR??XPS03C~<+D>?@pXA6fRr@Nq>o_@_VpX}w=a
z{(%pCVE>6vd}8@|M{&z&#J&q5pB!Sm#UjH8NYAVY;49XrXufZK>s!}b?}Zm$xTL-F
z*z=J)GVL`VA$0sBf^Q^#?sK18a@|TZAg8W4k`!ni?2)5r4^EA|{q1kxKls59-rwwI
zH(Q^GUH#xq_7=Ce#r|Ord)WTXZ+`RPI~ZrxL<BjHY$CiX`AOs%<oQ$1?HS;ibpQL`
zfB&v`y=&c`YSm~{Ag?{>)dy9*=$DTgKKt3vuJyW=6b76bIa`zLWW}d*s3~~*)1SVc
z4GMD`_z41@6Mo#b_ua{9r=7O^tRMNvN3J4FndaqlF~IbE{No>AFMNE(c*n7J7TG#<
zR?j9E!bLDa8Vv{n7XYk3{pn9H$sTb#MvO&9Kmr>=*t?>FHRCq%nWb;k6s5RHMwkr*
zBx>NSv(8%NzW@F2-@p6a@7_QA+0WkJ^PcxyHb7=XoP?RzPq3tT&n`sksp-)dX<|qh
z2<-K0y`C{OO({4+1W8DbQRKO89{>2qABwJs3YysJ=e~vz<W`FaFdeS^HZCICZ}nTd
zi_!&%41H)^PbNiwB%7B^<nY-s2tp2pJ((_v6wii-KJ=jnQYv8EK>Lc^79FAK6yJL0
z-Gc3k>_MI;wJBD!i>^0BAm>w``qWyxZRwF>f4G%2jxlH*DVzlK66SzNh=5~-9cwgQ
zM5ND$lrI9p%r*DhymOBjQa)?sm_!eBKPgR&zD$W8n-+udv5$RhziXV30NqY>-FrUx
zJ>@A+IZ6stSg1fvAYtxnjNIz8ZLzgYe{cr0=TmL+lgLs3*=L`<E;@2d3NlF36Hz$X
znGT9>A4J$k5<MSDy9zaQ5;0-kB2dvMt&cT0vDN46c?2__Jz^r|5s!Gpy2u~-$VV0d
z$S@sAgtXuJPt($bc%C2!t9~Tk`qsDJU-O#RJdjag5mdoj@Ht68ZS89;q<41BPya0;
zGmc;NA>|p*c*gp4uO~nPiHMJW^rP#u7_#g?^q~*!cahP9sfUp9GBK}u)vGRd3qgg2
zS#0~MJ83`lb6<l~mwu}|3FTD#bD#U%^?syrz3OcegcO9(BZ+=Z3{uFZL;}*!f8UmM
z5X=clx5d12b6;Hhz{iz0853JSu_sN)JO`STM?d<}>*IxnHQ$7gZmDEI68jDbJ(aQ7
zh|&3FmgEYW(-J8aQN!B;+h;!sGX^55eSY*aE^PhEam!oYa=rO#Uc(yKo5uSb=eB`J
zf)9T1gO?H0lo%zW#>q2hzO!^IRYa3>jEMFpVK#6KY^R!>8Q-~qP2K(gK%*Mho4zzn
z*VIIewYP76ix{_%4PrP0qP(|AULj4)EQUUL46a&Nxj0DQej7)JkQu+VZ*@>D-dFB?
z=R2=2wjxDeO-$sNqSkDD)9onTK7t!9Nw60&9atlQeqw8{U~3I-CtyoZIB8OXm}BRq
zQ}-)g@ru=lCP@vuee|a{(mq^z>7~nugk3BOMh>Ir%afn{<aIz-%%QCV9oe&ITWAe}
zt2i5;dA4yA(?0z>`<Rcqy{{l8Xr9zGQb6yKLL%&a?|a{6#2|wMVoVPQ&zFZh<RJ%Q
zx<ajI5$(xI1R$digkYVo*scFD@NZq7(D~KI*Qb4-&V4A>WD`>3O^Z+RblKng-uJG(
z!MNm-OD>xjq;wnEd%?TQUGB0D>A<egMEZ)H4MD`@3)Yk5V+|M2f7<2BmVV~r?_xgj
ziBDX8bo-cqNU=r&G#!8p{nMMQ12F|tdPBVV&2N4<yr#BL5IGB<5Km5@^07_Xx-+45
zvb<aSTqDL?t|sR*L&M}G>YeX==jyj<@p|IhKhv~pO1g~%`H<z)Xoq&i$+;%kCkf=l
zF&#w4Hh%iECG*?b<*+UnVxITB=dGSJs97Y`uyxbIW*s64c37nlfEWSZ6f4Ss^LBx3
zVO#JP*~LxY@=e{=-~J>5)0e{<F+Kw5qYE7Y5oOJeEPd0lxt*+GCpe}^0lt5&NQXy8
zh0bOm-!N^{UUTW>hUpWgj?Y#%*VPp<Pk6!;)~%#L&1xD!dh?|{otHnd32|FR7P)J*
zND4`Oty#exy2Y^~lfJ5)$S-21?{+;w4>N9SX9E{Y&4}^F?!{GK`q4BJF1qNVrHd@G
ziHfNFcgWz}v~V;repTUcw-LD|Xck%n+kM2e-p19`)NR3blFwGxd45Bnhj+Z=9g7T8
zK)U#v*1VpP0d(-Tx4muonyMYPkb*6eqpurofBW07AJ>h0#f1u+>l%ew=oW1Gl-K$s
zbWS))-`S?d!&grl)@%e!nH^E~kw~|rj6o!s8b6`>6-K0-s)1v+3XYKW`Tk$?ZuQ;%
z>VC{)9&@-|On`MHAfVfajUMRP*TlGWCUgB{@(VEsDBPi^Y5*#D>vwEYpojVu<z?eD
z(HUK|raHZ|d`$68fhIK^0d6mA@C&&)CGe&<y=m>&#2}^-17!IdxBq5hCMvM~BnE0E
z-}GB#>-^T`pZffZX=*%I5TGv&M^d+!HL@awe9K$jvfp*DA;?-lx0K{P?JKAvt_WKq
z+Rws|`E9{>+x(o2F!Q7nqka!m&HBavTqDFEA|b`^#_c^$kix#>h!9NnRJQgtr^F7c
zI0shXM8!<ZhON_ipda(I&OgviVw$pTJ#x%E`P2Do)=R8u0MmnnCMU8GqIY}x^;3yq
z0*gLBoq6V&hXZFJTU1y$$-dP?jU3CJEznJQQa$w9T-@8<_O|P%l-^7O5)ee{wOi;l
zuX)WPhHb}yy%^(Q?>Xa(<T*9lLfUJ(VkQC8o<6^cnzi1>W@|l>PkHidpPwo9Zlf=c
zj7f^y30Z7zDK_Nn{D%@LjTQ&G#oYfAvpqP}aCVr)Z0+s0U^~|6d_ZTLNLQZpGjBfi
z;V-rP<bD0?U%$xFD<H@o2W*!khC|OAljAw#9&Kv2#m&P*x|8f%<P$NlJ%h|PF@5se
z?(>!3UN5)1-R)NMJ#)bNb+3Efl1SPi0Xfjar_sXR!yo?e6Q{=E=_k@}?G-$AQ(q(9
z0yQ)3(}$dO<YztiGsYC^2MH!bzsLa37^JK_Me{kh=US8YAki!&%pyXCRMf=unK9|g
z8zIMt$^RHJ$1vka&zsxa<~Hkf1OZKsyTv-}Oh@Abl#zop_v2mfde_6$NFI(AGz(G0
zMEaBBA_A-@G5H+BHrE!@S0Cq{ciy@y^cp!Ph<xp9U%Mt}J!25SF(9gY&&2r4$Vp7{
zSW$HOAY&F4LE9LZx%foP)^=4Phr0CP7XSz_C4M*GZG;PQO^hkwK*<?%-D^N^>~3|d
zTOG)$(e2^ksx~t7w!W&lwvb2t{&G}Ldei5tU;XL@WZ3K9e%(rqlmKf%jTrEG+S8tP
zIbya4AH!_!%EtVEV0$j89lW3EPxA)B`jxMI<st=|q{GA*ryQG@p4_C@YA;EWci6F_
zCc1U5>@Bp#l|5&R?YaFV^1CvRjiw^_t)-p~fm>_+=?kYwXj)=!>Pi2`c@ncNdaK(O
zm{0a_D%~;r6`}LQbuRcKuF256eoRYbq^H|8I>6DsTL_a8gIO<scfb4H7dbtAXVH@Y
z;CBpc6@5hy@nh>#LH=^vThsX(MGu<Smp%ar^oC$g&#q|z<ZvKg{_>X}CPqL6`q0_o
z6N)%SOu8_2<;j1G{Epd9!mO<`{4-?F77e@j4FOU>uT4smvu-7eCc_%6IbkqXWAmBM
zeC9e(A@hpY2+&OuCg{U#Doo$<<XgjApY(IhUz}e*N5V^A`qI_cOJ4GlB@v`2Hj*6{
zF_8cf1*RlDl)wY*-uJ%uI`mY;oC=XKQT#TKJxMo_y?r&%`7>O#BY@O&Bp}B-nu%d|
z@qyoAV%#<q_Dx3jA}P43A${9*(oZS6in}7z#3Up=$Wy*6gYp%7zx&;9ea)a|Way!F
zlM^8?e({SBSQ8T&Hpl>uh%!kLLLajdH#xJY{}!fA<JOay+1ynj#@e6Ydc#$(-m1Ne
zi~tkEme17f8mk%>h%98#H9@g#U2=Y)keaMf`+1wCpZj8Fb3udCZ{|-YmyZqQr4#E9
zp1pUy-~}&Ob({KXCn1s$!G~|t!nP(RBD!rNg%oJbhZH=MBCgL;no(R|SocK}9BUx>
z<=%bod*AgHhd*h*$35<G_~*nRSMk>6>Ac9|>r6j^)Cezp;R{!@YE-YDtkqBQp||Gi
zf<OQH&)@Gja-xs`IVCMYYoypu*2Re-6|Xo_fn=D)gZClve#h*^%SRBCOZt+G-g{Gj
z*%cyZ-fqGFfJbb#&W7!4n%;i)#K*<AH$CeG&sA3>he)#LhyafECAW5f#MUIe=hA)d
zbDzr<JK^`>k9yRj4u84i?^xtllry@zq<`<&751f>{~3no#<9F6&L0c;CO}>4jFg(T
zcE&b8y?qeRXFX#$XiUQP8jc*&0qh+tn4YhF{;s;1$35<G`v*MW0qfr=`mN@(p7pH5
zPl&D>v@UN@xHB}Pcy;+a2T1T^SWGXW>@_d8e@H5KIrz6u51rj!>`tLIg&f7u#WX32
zWbAZFNyL$K4iHZw2NWy^J&2R5rWIsQ`h%Ycv6rWFE1F(C#n)`UWLI83GMza2t=UK@
zw|d$2wDTXuM~cxUK|>0GigHL-rv@Z<ThKv;inmt~AM0}D7qQtZo}V>aO<1#m9OcU2
zI-g{9$pOwQhnVW%H}foFA|T1JqOeF-7&}5F1j%ZuBC}88z~Ox4?woY9!2IP(FIP?0
z#5PXj)l)4bY;}CedP*-3-7W%1!4Bd$rzIQE3pQc%N_KGhrcO?<moGi3AimFe&U2RJ
z$5w+$w)Dlc_b+eTi&r1G=yahopxhBrPR~NVJ68fYDq6A#0SD0`LNGs&uqHYPDfD#t
zve_e1Vfo8lp?r%;%A+p(Nmh+?#qFJwjh+NePCwF_eChL*uiES{yzs*P{{Zo)?V7}b
R++P3y002ovPDHLkV1h^~L0td<

literal 0
HcmV?d00001

diff --git a/oxAuth/Server/src/main/webapp/auth/passport/img/dropbox.png b/oxAuth/Server/src/main/webapp/auth/passport/img/dropbox.png
new file mode 100644
index 0000000000000000000000000000000000000000..505335dd1e3d22da39cb85efc093319564055c0d
GIT binary patch
literal 1678
zcmV;9266d`P)<h;3K|Lk000e1NJLTq004Oa004Oi0{{R3DkOe;0001iP)t-s|Ns90
z0RQ{@|L*Sp{r&&q;{W*g|AB%3m6iYJ=l}BZ|4>l>eSQDH!2k60|7&aiFE9U8RR6fR
z|4U2%(9r+c+5cNx|H;Y!jEw(rasSlR|E{k8kdXgqX#Yb)|0pQ`pP&CeKL0j0{}dGe
zcX$6EAOB%t|Fg6IsHp#khyR+I|4mDKpa1{`$Vo&&RA_<io7a|`Fc5|<Fvj+}H|%wx
zxxfDd1~8y5%?Kw~`L1$ucBBQS{?hh(|M^eN=&u`SNXV;?G6+fXjeUa)A!O&l4Q4-u
zLH65u;}fY^fM4J?|5#iHo%W4l(y)P9JX!;?a^H70Aq)?Q$%(btxq8|(CLD>?!khCJ
z`4izEE&i2=*j#+HmQ0pg^v0`PT7{7F%w)1rnUE9ivHiPh5kgX5Z*x?ekQnHj6;I6~
z1=={B=xq*T;J(|7ei2=)41P>Du(<Gs#x>L~9>f--o!!$mvVV%aB%hgDZ3uarJ#DZD
ztU=DgcS|5f<YG$Yn+0eMa$%E`XYehay)Kmxz)O&vezuv}w>WN7<;E-c3I)v?Ta*>K
z%Lzf3JG3MYzi!D>*w~Oebc8*jGyz$&0T%2WRv`D_>|#d9u<<kx78Mfb?ZM5Eq|wJm
z5YEX^`RT@(Xbnt?lmN;dGEJMMt58<^-rW8}3Kq2Tc`ug*PKBkdK&W_gaWTRMWRne|
z8`5kSh{+&IQ47Rdr{6h0D)OI~C_5p|Z%*@AAMwV|nof2EPWo4_Tt+~v*wDRiVA1&&
z%zS%8P!Jk>Pf!w9R4aQ5j_p&LEjh%JbCyIFCmCAzE#I9nmESe3fp4lCOXY8?dH{Vw
z-D_tQy^r5ip`>B()FcSw8dJ5=0XG!-stC&?vyoybBe}YJGVv=#SZ4oPQURDa4gV|t
z?dg1rgKygxu7XGZ&8%{Q+4ziiCXV}-jN6t4{<)fjAXg<EpHb<CncgcO&p{KQk^V6z
z7sJf0AXt+5SCl;eij_)6;Wzdz)fS+4H3X@<ro?b8Yrz?1(b=&}f;vbts9Mo$8&c<B
zF6q;fnFGB$$Y?yj%)Nkth?~Vh5zY7R3w+Wp8Hs~WVl|mbb>@JJ$BLs|^K7xAQl!us
zrAP(}c1G<|)5F~{SybC!m^5;I&zyiaj`S)|t_zjGqzo-!>gCux%&WiK!)Q~u2%xxI
zMGr*->xDKW659f7tMn|MgXm`gX!tjFf&<uew&rsaM7S(5bial^n}?k<`Uu5BQ^95!
zv8L^ReVojaC^oivr$GJY&@!G>!2-}A%2KA%K3ryH3|TMnT!g@)|8`P#*a{Y9_8(Ue
z7TqCG(-xS2D%e;))q)To%dj51X>pZO^T6s#AHt^aLUNCSUF0Oxk~Qn0&`iP+`u2>g
zKooi2b`ycp$)K7N<s~NrA14{tWgeM@G%W_;sH%m|EQqkow8hR-G;V6x!w8MSAu}{}
z&@i9L`2HjSiGS8!PF6VNHN-X;&{cricIBBj18rz%!L&u?5O^WQ*j&&z9g<1=Z{L)?
z&+u76uOTkmMXGp8>0@i(cxDm81T?+Pp8i1nKlJ;l>wKP|_AMABa<DLx98Gzzwi#A6
z2v?W!UsCBWZCv>5i4WCc2jUyQ;9fN4H)WSOv}tS0mvrV;@DuP8cg2c>S&61Cd61xG
zfSLNiH!9RL$N!9)raI|il#u!x8PE1%1m#Y1>PDJd6uggj5b@X~JI#{z-}=UyUMdPw
zwl~GT^Amg3s9i^LUKYm3nSJ+IMQ^B*g)Bu$aerZzS@jXc&g3S1tf}<`aL*f5NBJ&0
z3s(XlL+YCOs{POG;kI*;{hFnq*GAf`)ueIPotx1SepLK<<J&feyYF1J6PP;?Kcn85
zN%`2Fx%u#byAlw;*%vgiZ^jYXE_{Iz@61?1HvT$N%q74Ed-&Qpxz$Op>tiqQmp$9Z
zb{mgt#B+TV#u8x$d|<7^Q3mPM3Dt~U9=q$YVhujF(J`z8aW%1I`K><?DA^#Ky!$yS
z4^+CEck6Xk{6d`E;YtF4zFiSHIG^ZQu-y7{JkA3#Fv+?ThqF8c+OHkEj*W2Ck3H$0
zEbRoT{Dr%ZZ!koS)Up1%z{%3<fAzo>%vIobx4$XEQy=Q3?hTJS<<|z?(EC0?*rope
Y0Ux+h-h`XKmH+?%07*qoM6N<$f;N0qmH+?%

literal 0
HcmV?d00001

diff --git a/oxAuth/Server/src/main/webapp/auth/passport/img/facebook.png b/oxAuth/Server/src/main/webapp/auth/passport/img/facebook.png
new file mode 100644
index 0000000000000000000000000000000000000000..6f2d7a0f1eb0511012e8114ee9805eb67db29f7d
GIT binary patch
literal 4822
zcmcgwc{r49+rOov1x?77<(;XBCo0v9tkq2DDU^^HQ`S-pChNp#V=Ph1mSJ9^6cIDo
z8I>i%4B2;Mi<pUFWDLH0>UoaiJ-*|4-}ig|`Tm&Wp5r>N>pZXXcP{t&yCW>jjK#Lf
zZv_BA%+v&V0RV(hg5QqK;EKi=ObL8!@iMW+0l+p%!A}TyMv?^=Rh&#NoC5%lBmlt0
z0Kkeb0Nif}fFKG0th)igK|280@xX#^lMVno?M;y<E(Y|@3=nR0EC$!l`JW_?z>%Vt
z?ru=uh)jp@QJHO*ks?nof7|$2=UZ&{?iUGx_HMcoxCHezrbSj>mJ+J*_~iK*4mFu#
zEu2Bg&hdDx{*EuY<3jtM`;YEB6Z-Kfd+%S?FpTT3A0^Wdsfx`>n+NkMONX#^H5s;)
zME%|2Jw!+ZZo0ij$J>#)JDLAuu3ojpp;FS#+8O{dv%<n^Y^{<JaI6`Lee*0S>&8wu
zQ`7lT1@SI_AL6~-8-7fZwyO7FKrmA;xI+0jP)&|^YcTkh*f+mhSJT@e==x_mhGyWc
zx$4QZFMxV?b_Msc_iz||vF4=52snSAx90jCqm2M!=hkg@+%9ZLJmMuCaVEW+;#PP`
z*_=ezdx8j;So*jDKs+<k+wYwh^1>xQi#PlB0dtsNv)rf=!I{?y0a2f|ecjcWd%Xu2
z{+kr%3C64Wa|EtQ_PH={YtPHn&cexg!(+0B`=l%r)yOOKn!pbhFi_<DD(&~hf%llW
zwIqwP1Bl7?FVR~8Msg;PH4HzaXQK9Euy)3OhY)bQ_##{Jhvt-ZdQzDLb9G5U3{Xkc
z^CEm!(o>PLgg5%7C;*`ganm#%ocPYjSE{c7;8B`qNtKn_E~!0c<`;wj6YS^{eMF&(
zTqK6%C<Oq|&Lzifuf?g#3j?99l612$=BEu#0KmA}{?%Dcya5j8SaaBz>Zt-7tYA6U
zjqa@G>LMrDjizWn1OOwu`%nNl2?2m~Q6SV}BVeSq0Z@?=0(L|KfGC)#e<A)qZu?Wq
zpU*$Fg<B<T0ZdfU^M@1N4CD`GJ62EPH6uP@;NLO4-=btITp1aIvB(8>Uw%P7lPE-E
z6=xW`AX!ntK4s{gt;KKsO^bD5L7KBw2IT}Ky=OqinV^x;H>)#RHYooX-Q$Z(j3=+H
z^kD`AtiHrUj=saobS54lRLo7)u^#55X7=}&7pyT8$U^~E$aCkIoEuuN%ipCR&RBcQ
zTVB})eLdMB)oF!1(&X`#wtk2BtgQFJBHg&%Y#{MRg^L)6D}%g9&zHm4K+Y3fPOaC8
zK;7Nl+1VNq*{_Dm->xkapN*02^z&bMVFHnh{AXKyr6Kr<j_4eX*zBeu?dwAn2p*Gt
zAX}M5rnEqv99wgHJ}Y^;AKnBg@*3;Q(J!1QkWx4G=L#zNV5iqtB4j4wQKbIW`=#}R
zyS#mt(s8ksM;$NC4cqa?k+)1k48pBH_OGrgBqA>=VbD~pFVZDsF|*eV=0{#S-#n-a
zQ$Nj4qrCL55z&c{Wz8y|4_RcnE#(q_sH{96$8(@(9MGK9A@RcJ78^s&=e2Tc<+KkE
zMyn<1&$J1dqey}55{FY;VRiWiE(61dAkWEqQyCS7r~F-FpFjWF-;+qdCM)(f6GD@L
zQ0^WMv*}qh1!{or_=*X6ah%DQZ0QYXdrHKWpG`WxkU*?rFY>;T=844Y7$PybVSQx2
z`=&maWw)TJH+fB_!Su)^1E2Za^GhiE?`K;XPgaZ<%5~<-@626Awj+_qh<9LSGPY#p
zNtvn35#GN|fokfo?q(bsh1Ja}`%Zd8AX>;1dakMhjX|&cWiW_Uobc&>Y46%XIgY`K
zMa{6Ua1@@_&9t<!-3BIg>ZR%CeHhsgF4mkR@4Z;873jwACGs^ythf!)L=6~|<F_GQ
z)Tmc>aa2;PQ6s8k+1SQGdoF|6>XvpX84iQ8C}Lnnx1EX28t8JHL^XX2T87g#A13*+
z1NFB#5I<caotN7-D|`|XO2thCJK@FlN0-c&clC2h{b8H+;&k8C2SW<FkAc-;qJfU0
zB>460IF$d5giS-s&&6-COh}s#LY^fOwP${*==Ts#SSV9xlFdu6SIZbitH~bEy=s((
zR#9|$280rc1*MzVic7a^mWIl;N0~l%L`6}dRR56$Q{mHt(sNhHgxmhTnM4B)etcrA
zZ`1cSZKK|@g}QBq_+BvxC((Y6*CT<d>CGlOmV@0u#bdRZaJ$rQq@8$UzN+lXNhhSe
ztK>gD9D+8RNK&+txJ#p+5heTBIYZ=w?Mh%jFu`jZ`mYVPIzc@HJh>U#`Uf_FfslHr
z8$86QhkEYk_mQPsK>e4-!9JKS`lv1}aeL`MmMVzYV*_um&wqg=%eb{WlU!uLAZNZw
zOZ3HfHO)eX0=?eT&Y=}rovs%z_OR{=d|HSvIOb#}WqjMoZElR?lS0nj@cnwJzPOQy
z|J*93|LDXt(Uem^DL!ybLZGYieX{Tn8!hX-8csPzwv~fGO09+NLyhD=Um_iXjW!dp
zBzwNZ6LR#Y27OoiPL7|DxIXQ<DC7OvmG^=ATOEk9DY`yiR0MDW7ufDqtlrNFB=1-H
zp&#kL(*ebrE{Ccy<CkpWSG-ex-0pR@*lwXbwGC9<J#`+Tsw<9|Jei8YHOk^aP(w3w
zxP+{!1zl*_F1G{C{a1cnknbzZp5~a;Y|5I<Q=B8|gN@jz&4yg^J<U=ZRyO9MNe}n~
z;^2v;#^#3Dq>#n2j!m!`A@E9ZFJhnR-DnSn^u(j#{<hbDsf>Onmy>~T<aInDA3!uH
zRku!>*#oo45te0`nC3&-ez#$CrE-CY*FtHAD8uaRYT#pkxFE}1|IEWz&L7&-;XT6F
z3@aA4dp%9{9qJY|f*^iIA8$qv56p&ZL;}V=nS^I=@ky$A0_UE#my_tXJ!amWa-fJX
z)&i#FhShWeR~fl$DNvt!ZeUp-hYR#7+eit;#A%n2c$9zG^a+7ELOtx)`$>B<+ED}y
z*Q2Ke2&dC^DG(<I`2r_KDtJN*jE2{JF^v`sLrXQIOF_TLIk5+Zo=LgvZ+FV225(uU
zM_s8UF6~-d`#6w@x;b6y+s0~z=qj(DVo#ew%2k7@SavK-UET0gKki0NTHw(KzS7N@
zm+qXjH!B8C=3p+oJmS;&Hh+77`m&5f_jAgAjRP1P-_tcw9r=~isY0R+ZOwW-VG)AW
zUujX$4cXm#u=px(Z7;;z-5#=pLe^}7K<3`8FQGiKb9;-!4kE#<3xCpLI8y4g(pb~N
zl=%|kTUS&JvyMii7bc=0`C36M@89I3j--CMW&2wcv7e|GNi1zOjGTF3v2oZOQM$4P
z?D8GridNH+BbD|1@2!c6rz?1^cB)ugWr$X7%cn>p4hkWHjpIjVn6!ighzrz#iZY%b
zy63RmiPwfz;ihR0a~v!1-S^IFaj)MAwGCdP3zvpGkX%d1DtDn_YTv=*(W>EV3qOkU
zV*<RooccQT6k9L$Eu?9LWo|337ebueoUeGx279OVs-DeU+p+=<rqn;*U37G4oj}8h
zg5f@OfG|*vT?(ubpB;EHHhY7$`e8m;D;7colQJe$h}MYidEO>IYxU*si;hE@%oZD^
zH8Od1k0XX%Hmcy-w<%q;8p5DqX?3iqS%$;vk(`CqhdHogF?d>@W41n+3cF9#JG3vg
zDSez}u=ZfxI6p?|{E>$P6JU9GNsU!?tG?{p>vs)17{pEO^3#)>TN!a-hm^D^fw08f
zZJ+hNhDoD2H;4KAcZ20#-MYPY?*N9*!iIBQ2fBt{_f`ywGj_rIHzQ8|oFsI$pe!m1
z{}wl@ocCtUw}y)<=U%LImbexrNc2yKlwGl`LeQVux<Fca$p=Xv@P<?oxhQQ{=Zfp$
zTt`d#fhT@40#io141Lwfm^{lFhQreXy}p(mKDuCo47K*#o*R(vUZn`0G}2Jkw^%$e
zYyC^|+Ge)2+%x@`#45*q7aNxY1xrIPfBm4eSE7skXbK+pKqZ~iiAS6I*angRd#3si
z1Kb~q{%Vl>H(LJPI7ro&lZ<k0cHnwhKG`4ov@Oxbz#Cnl82WMY&0Vo#ECJ4}6WT^7
z<^|%ZHeeG3jQhFC<@2u#X9adH_jH!vu8jxjf=-267ty^?=fN#h>Byy-vRCe<ir_2R
zNW&$naXs&X+E#GO)3DN&6}V<Zb~ayyGGUDu9LsDkPfgi%<c+7in*=znKH6G~8V`a0
z)B}lRk<~ymy%(%6SLMxb|HBNSK^g__WLT>WqC+S{=cPbYMY<=lCdK!D-Uw8WSX<iR
zje|{*<5?ZFH>s|%F(0H+!0_9?km5e3z+%x!@7BC!r5;sKwfOd0x$@0{#T0N#MpPGd
z>rm&<{W8;U`11~mk=p)>s!|W2K($cgna^F;r3A<DQG-aJ`YLDSo0X+IHZ~hwf;Czl
z;C{Vke|{q%o>G{o7l9Js@cv;Dc+RLV9r2|+Rq#(ipusB5MMQA@$Q4xqCdcCA6KK=T
zzk$&nj+H07PY+Tx9VhD|Z{!d>egZ<h(Ztfh2N@qBQE8b4ol4+FmFp`R^UI!5Fo6da
zeoLB5=08E`4e?**pGg;Bc3DGX@vDKr&gNf2k8ox*TKGW*=;)8<JaFoj-v(8$yM55j
z9Q!K{v)YncI`E$jj1ms+GI_up7>8RKxc|KEnVt-^C-s29Ak}Fi@5EpY^p|n-Qq@8M
zs>e<iQ2EmE-d#VVVes*Hda5bN2|~?p&?_n*_>M#3u~xCK!Em(v42R|K1BMX6^*+SN
zo&1UPRlAwp4$ChTkEcXOpeU|d_>xx*Qb4%P)MpKHNnW@3EULAXqP3o8-1MG27Ww~8
zaQ;Iv3fL5gz~3lF0onQ++)PkvV2Al{6z*Ru|8F*kzaWJFs_iet|Aj9a)r;4LZMGE9
z(<)85NUQid0Qje^ukT^0;+sbW1h(krxiF@#LNw?ZMNA<s{l~ogPcnP!++nHpoEng|
zAJN!v8paG8`<+e;7*GR%shLG*i7HBZN3fJ~P&Wcx$SoDId%zsk*g45QCbtEo-8av0
zha#m#w$$><Y68DB*KGhPDSW8EP(*?!O6$mxoNSCgEew2Zx=@)oO><S|<W4fbNlt35
zcM$;~)$}zxubg#-Ja;HPDTq3RBE%yI>s9ALhF^G*p2f>6<7sWLefp-sn14<W?p?K7
z^cWPyU8H3Nd48)m_@KjivMSUUhxty5h~Pv>pB4eG(Jxf`aeEHnS)(p%E`%%7d#7}4
z_Ov8pz|SQ#cDNAWbtKCZ$H~%qH}mcut>!lIRKYv9G&2(H^uCsyssx1o)Fxo~dyrG`
z=QVZNc!b1l8IEea?=@O$d$4~<NyWIW#UsSav!*0eLt>usK0|{&hTh!iRDMw*pCJ^w
z(9U>-u*@I!93&y&o_~IvVV>2GTxP7$gaF&ij!lY3Vr;>0Qh+JS44HTG%H96~^<p^`

literal 0
HcmV?d00001

diff --git a/oxAuth/Server/src/main/webapp/auth/passport/img/github.png b/oxAuth/Server/src/main/webapp/auth/passport/img/github.png
new file mode 100644
index 0000000000000000000000000000000000000000..228b09acd4249ed0fa5d53891e819ae1be108358
GIT binary patch
literal 29968
zcmYg%1yodB)b<^^8$l6iDQW4H5TsLDIz&of$N@$|DFG=#hL8qn1f)Z{C58?G2}ip7
zyYqhQTmR2mEOh3cd-gqdpJzY&+51FlYbp~HJRkr7fcS-qqAmbnfd9k*@NmFC$G(%7
z;2$hc`4{?l;13MXHUj)VzPpOCCjbyqqJJU47X&Q;Faj?WpXvJ|{w?|;%%I74cW2`D
z{$(X2<L~0JDH2{W%FFo^l1E07WUmlNl(Uey3Q7FU4(fgDrI@C($u5zbOG;yQpQfwh
zEjG>M%apvPP}WcJUOpmBVQlm&h9^tVk-a!p`99=gEh4}zV{=U)4*!ME)SznPZt>_M
z-bh2`n*Ps*lP@YmANKndQwgVL^PbX$&5~u5Dc0bB(Us@Hp9;|-eD+b$3162dihv9Q
z4|j+{E*|i7-#_S8vPE>*z+(x$9<B(ykL7k$$6xz!W5Q3=DFXy_Je7-Y(I$ddeon%n
zNScwXJSmU)L%4yE6sRU~FGmc!I9AZ<Nekn-mvCe~&nx6|=gKC0;Uz<R1R27-t*(m2
z=@5fM$Z&u~!m(WVKmC0Ap_$@5Nx=qo@0_;aA&IF5k3X1jPo<XuJ${5@G*2n?F!etx
z6hC`GNA*4C-7GTjJypnu@XAm;N&K0w?Ihv5>P5RV%RZO9D;o%Cp66TiU~Ju%=99?*
zc;?r30v##LJZ_-W(mexes`wG|!-9$K#cLK$w;_Bt+PR>!T%^@V_d8NxL}Nbr*<lR5
zL-oFp!ATmHlwQOL&ym&<8*3a!vyOo%dF3aznIBoFOPfuUi1bGc07CMe@yD`3{nyF-
zP>%1RU%4UWRl6QqY~p~a(rX@}Mf|>uv@&VavTq1NA@J&elK1aRsD`(JeP=e4ZaG|d
zVrk6+5#A}mwmDHF<`W<Lkl&A-m!w=X{+Jn^11ke_*U8+8EI)<6C7;LxG^_16Z3AM1
z)V;J=(u@t1QIhf5O@gM4xTU#>npI3Vw~!&u_8-Z4;cS}tEkfWgklWcfkft5sjB!v_
z;_=2?=TOtjThl~Y+>lEK_%V|nxN)KO*fWujb&L?px16DLGxj-SDA8@LyxTDTqR9C2
zNj5amvwIyA9?haDT#L|pV20EA2gtOdUuRbFO5}IN{8gq<yg+Z%7St)x-ynYoY485I
zY9L(vrC;rtFFt-7S&Sd@1+R=E>(BNbxqX}R;`6qf^j+VD#{LG_1+c>Wt<?|eFaMZN
zZ`_b$OBchbEZyurnL6Ge-+h=~_=@t?WfM+WA|f510Wix$e7Dwc^77cq#|Wav<byL*
z?KyvZb|QkYsBfTil-MicV_z1ENaq4CJ+J+)pH~y9_Gx08W6k3(Z?E&k^Xy|GyUQT&
zh~OyP=~yEgaUUsg0mf8C>&xGd(<vUS+GoC5TwBnOw2Uwg#`r@g6o_)gWJGF=NN11&
zy!uX~Vr~$%eH`k>sQbf6=@II7OzoSwuq{L7`V%Qj`n3fn89*$6hljfOS)&=goAn9>
z923R586`*MPbX*5&s%g+Y~j^sd<1DvD}J@)@1)f3_HNaQOtWhDZMiL0K>H;WXR)%a
z{>=wyEVmYDnC_aF9;!R%Smbfwr{FmsJ59(!c^IEV=)bsYd!_Ou7~sw(Q2({XHRRwi
zWT~Uw1NCULQ~8m>J`H?fv!(@gW-|Tb9Gr~W!2GA*U^wMnHnX9C=UiiN!+s(;ye$$g
zlhF`to(26F%?B=*PTqrgUj3B^j~j^q(=#!eXBeLtxKV}GEvUWkv2PF7K(}I56|QYl
zWV(y%_*QCzh$e*WKK_cTxj_ZtwH3g*$-tZ3nwW5nUr|<IZZ6^Ory<2hx|4x<09L@8
zcy*a6jrvd)VD=q+<MyuoU;Z`@{1)ZjzJk1R&R8>RAnO1=1r-$JoVH!xV!9T9&o)tS
zs{w8FKQ8O*zv}otCehna%{D{W8EpF;be|<m*GBLfy?S2*jmDQtINet_ozf%W5vx{m
zvYEen+rn;d1yB!Zh{08)eDk_k#cpeu^_tJ}N#)4f5&CGUqJe2Ul!wL7%M(hZFz*6*
zr{1621;}Z<a}%5t<6g1Ng6E3f{2_66ms(f%+&xDcd&3h+f!(5U;<C?}$8MGq^Nro&
zqC(7D#M#p%r#``?L6_M94;X+2tG{37O$@gE0UDF~A5wUau_SP|#6o+Myv#_igg*-K
zlTg3&$j3<T(#8MHWu-5eN3f#$PG3M9-<|C`MDtVrSO5@YSm(1ykL2N%0<8i_7Si}S
zuHP~@<J|5sOJS{H_(ik_Jewi31i~P4XBZOM*)0H$zCgBWfbw&{Y)9qL3gbkToh4b^
zhm)9*esCmaDsFbB{$K2;aqs*&hB3AIo)F$QGfcWCDipQH?$K~2-5Pk4Ri=lK4$kHC
zJQ@Bru_kc<kz2-euZ3#OlBZFvJbV0)EGGl&ALE#&!M`C+@0epB=`cLL#Sw|C5OLZ}
zDe2xsHGHo|iWDwKPRzn+OHQE#<i|hC&$F+K^+nF`+fudtjv(1EoyMviVj!?nYnxjJ
za$2+Xn9N0gO5?$P3c&`w)<WBPhlh*`_munYi=oJTZC7o}{DgAWE!DP4ea^m6#bd2d
z)222T^Ht|_K>NKDok`Y<uDju|DJ0JUi#X6iwp0}MF|SdeNX6NI^|r~!__I=fX$@a$
zBHexSensx&E$4UTVPnRv*4n-p3-oeJ!ZY&|E{m(GgSc?P1ex5jM<KzOTf_U9jRf*=
z7pw-#2Me5EP>*^j({JRTC@DY(4S7C?Nm1sEhK$$XdGMxEBCQ0n2^w^aZeRNjN(YqM
zn7szgdc?7~5R|;W&oER}9~=3kBdl^sLEa~1T{DAd_u*XCE;*{yLnQdmfUS3FV}?E-
ze7q)U9VWZ)zM;rUNfzi{S#fm~v0ugR>I4HK8uV>?(-be2&R+*kJZ8SnAEY(lgW>Ps
z&AN4pD*Nz=JzZjix$hk{#?<EJ4OhWl`_6~A(7LuaHPC2oFcPggft$-~s;^CMUxuHn
z%#&H+|HJ4Y@u@8}5ojrEUp`hNRmha3zLBU>h^5*6yG#vR+1TOq-ZD?K-xmOxLh*Z~
zu<AJhrKm}LSO#!)|MCs?;upPEmpr!}SJY!eDNnjNRL=`O<{ULh!{n$)YQh!c4~dE8
zTBJl5bqXmU;4vO0T>LBYlUB&S_xbWpRirc4#Hju@@?YndreCw-uQS%2SwGiHho<pj
zuZJ_5;kjEbQt9TjZ@!@rzPp~;7%7Fua1$-7bSYL>om^<c!qYy3h9s<N5wt{Nz+`Lk
zo2Dgt!?j9&FC@aF49T{+pEctI6%3J6oeMo%O4;6Nm}>0)Gl~n3kaTBj>qkMFXB*jI
z>p>iW7Rjx9xIzuvMdrV}RjotHwG#|6V36yULw*9-2ctWtn*4zF#_nOnU2bfpzRi3%
z(5j@UR%+TQuYZ|({+Q|Zb_`jYUK(I_JoU8PB#E&>7j7t6NpRch2e*uiZ?-C`*qlak
zy4qhecu)yH)z9}Gfnr@Mp9``n+A@$Ya+EAT+}*p#g~ml!h!2`*rsIW7bNzM#G3P7{
zUa}%IJMa(pTK(PD0ff=oiEe%rU*8RDViw7>p&zUqRY9aVxfEiak&6^BFV(It-tj9v
zzQ^(EZ{gek&eY1(Y%BE4^z)D6BM74e$Kp&7G1cA6B{z{n4yt82<{wO+ca1Wr2b;PY
zJVz=QZrNVKv<^mRGoQ$@m(q83E<&J@=^%bFGdBFYPUP$hOvL+aR8LE8a800U(LeI#
zy2=948*Wfibu$ZZO;f1=e)Kf<h5)i`_k;E7?v{E>O&1P8r}2Oi)AMPMEaL6MP${~U
zma^YqoGSXTj=h4-99v|9r@flN6rIw#`5!;0aw++2QIb>dWqb40*kN3Fr4xwKq~lP=
zAclc|doK)p$bSXD)Ls3CX}ULHbS5V1X^7KbKyMho9}xM=$z0F6q&?WdZu#n(B<;8U
zOS+VzqSuZVLos_o?yXQY&f;uS<8p?-(l@y6!{T66B;cGHYkZzoVYMQd^edpEq_m=M
zdyrwd^>!4=v+Hhm6vxj+^5g<l4?);2>N0b+YrQzpn{C})HtiKNbl%=T+H+W7_Msr<
zb-SGS9j}=DYAu8q&0qi?DM*KcBjBXDQX@MIn8)diH(vH{Mqi?6H&uDi3n`v@9iVd=
zU_WVkMwPWrb==|XcE(<&wg8a<!sHgC3_R`RTg~q&Ul2ZSzpQ=n74`hG>CtyELYV{}
z{XI_AY&Ly1&CfsBScv6XoYzHnbN(nm2B1|FsgR&+=w}c(+D7tpvx!3jxgnP`w@c;p
zNa2z2;SM3(CGMO(>w+YxmJWU$$L6b)9rLzsiG0KbV97DH5EQ<#Pi)UxW*ViUe_*aU
zRvYyD(Wd5;sYyYtjy?9VWlHTgi+WF(6PP;bY67L}jp~!Q831SZ#^N0t;HCzuLe5Dg
ztKF@9tqB{^usA%9y-12DCHplG=o_C=eOygUYh`0N77A7cw;shew^tdDruz3DN>Ov9
zV4X*D$vj<{uI*^-ZYYxU73~au*EeOUX>>-_U*YHcZ{Vg$M9PX@R}%(se4Ta3Y-1Ho
zyW+%iFs`Qx-+FB2f2Qp=?N+LXh)zeNBRuFm9*t=|)rW;qs%G~)Bvi6YZ6KT!U`udy
zw7^bbfWWGuY908eT*nHtxA_(ac2b*B+>0}}%sQ|y_cf3_;p}l_?iZGBTJ_Ku;`@+n
ztiKQDEy`Feq8F89u_#q9mpjhSl>@g&8Ys|y=@8<Bw{L}GZ@Nj9fbkP}mAJEW`3b7F
zZ~<uB78jh7Qo5HxmA~SzJE;HY;agopWa#S+N?};wZcPEWNNH?V?Le)9imMtV)7uS9
zxnE}Y^XR+-$z#5isS&8{vge!;x$fMCLnA$R;kJ6cs>p@lkn;x6#JrNb<Q>$lGGM((
zp)3PXb)a*A*<S<cwAak2lumH#nx~s<2S`guvX{L<cq*%k)V4;w8}0dP#PaD*jd=Ub
z**{}h=L`x_aIDdPKsk^_o;%!_Z>b-omf$<MQdfI}<Q!>O`(|3@<m#$h?y&L^oHi%K
zb@<mG1xchdI4?UmcC54qX_wg5W^361Rb#^2$Aat)pLz#^04pvk-Cs}_4O|Lh4wjk{
zJX7@c2;m)Z-rlWsjf@tfe`?J&+x*uVFGwwH0{mM31XuSR4YAAiZ74L#)AjN(&Z9Yj
zio+zjo|2-dY<fWHk~dfJDP2iLX{yg0ANVb7vXPwxhMf(J6YqQrTi;Zd>TP6m%OT~Q
zSat|#x*e717B{4=8QF3q|3wEN-Yh2Yk<Zd#c^#}EcORirilUDdX>s~{keh`2C|c)h
z>M=ex#h2$j%MHG>ZFY;7Lm^*8!h?W#9aJWa|7Zd6cc-}L)WNh~F{1)lXPTP1^w7QK
zrA<ci_>uo(8e1kht++}C?JobJ`;p#(V%vx8U<$x~Z@iU%+bZlCMAS~iMkjgu#h?wd
zfB==!9C6J+@#E>l{0TdXYSZlC<KBFW5A3$I!cf(Y2eQeM!+?cf1pH1mIJ)QdkYQ$r
zhBf`2%5Ar)nrLm?qxcHtivd$+TITUH+pESl>%~<>%_nE)KpE~pN_E0AQ+st=T@K$H
z?d8Tj<3dFZTT#oG<HI{{82iF-=Bv5l><^UwZ|mykKaU`|Z78oE&Aoyi=D5ihleecK
zrG@0X6n*`snw3anN&nsELN${Vy;<zR$Gv@t(HgV$NQzS%CMd~$)_9;H9fxMZ|32;o
zI@-c4&oq)x2z|bdDJg!EDu@J{fB5fq2HIRb`db|vNwAE~uT<O<TTix4L%ulu4?^u1
zSl3oKA<-pHqq!|K_r)urRU_slDkY71Dwy^k>J|Z2raC8Rr^-v8U-sHh3}zL*#khW2
zRMIR~W4Ch;b#K$m7d@@z^|4;7j`;J}%qDh=LM)1(^@mN5;d>-vRVuDys@v_5;B%au
zhJSnnW?&4vqy=hY-;O9LS68i7eD%i!i71Z{W6rUOEdTyF3=oTL>^U{$?*FJGHD{s!
z$f5I%P>XcENxj%+4yWI9lrh;QQ|N<I(*g}!if8*#LrAD>ohCjAeX+mWm4e(ULE6VN
z!A@s%aCj3aJzu7V@cbp>U_4lQpy<wm`PsC7s6DmFOk{HU=nX2KKWc$}URTWB^~o|t
zcl349-;cAOy3~5Ty)SfbM;e+x%CtH-TU(x;aiM57@V?{xx?D-s&NtK_mdy8rS&m{N
z1*|CZ+xikzM88*1tW1BJ-(yQ9>j`-8-z4Lfv5JT;Y%Hi#^C(%4oNLj-n#r<kbi7M}
zqRLD=yKv!!V(x0o{Ub#;Yws;dF&da_YBzb&4%j^G<RohjHzlhIz>ly5O5VJ$gDyKP
zQrwdP9zOk61x@2vhV)>dQeKnKis1+SQVE_8MMJ|O|9_PA`(@K7NnW`Fetg*g_xZUX
zR1*I_1du~xN)q>;J%|f~UL5P64fOrG+mTIzNS={~>Yv30b$85TlBEg-3h*7)wQtoo
zXDK&tb#<ibTe3GQ%+j#9g74LSl*JOYrD3&LrwiUhkoTW@w^6psVvwOyi>)owJXU*+
znoD{byG_!vu-)z8#%XtUIh#hG)k8~GLuYTx&upg4`>w~tH&<VS{y8_$KqyMS9sSM`
zA+D6&Z9whObKb5XYFcl^g@Q0H#$O7O-_$~TpT<Ovqdr_VwmQ<UB0N9D>;*Wgoh)Ft
zVf<zTl-7y3OmvLfID};?uRbH$UJiHzDqx6D#hW(rQBTIhkvs1E+6tAecYQn3P)Ijl
z@8F|xvwCOH(aktivztbM@zM~<2lIlhe0_wvM`-6qw(?HxdQ}ohugBIdVjpN_ujW$$
zjrJU&A4TUUEV(xIjDk%s*>H(pAvk}M8rq2hd31Az@BY*ShNkuEkz0@Z4+!6Tmj-l!
zNVi##_w_4Rzo%R5!0Qm^F9uuTKX0V%ptv2?5`>ngX`6hI!ML321H)&e1~{V!AKN^6
zbuX`a-`|^Tei)Kos#g$_rVH6B6eiw@E;Cgvc76%`O*bs;wL9b`8>x0pqxdDsCC4{6
zy)5hqx|pX>7l`Y0v|h>3zN84(62M%WcdzMBHAZ``#6?D*^YuH6!uRW|9v8}6h-jYs
ze|K(8v1J_S1=-Xc;%b6u><)kbcrt>aB3f&%oZVKtn@Ru)N=Odm8@#<})d4p*f;;Ts
z-D3UAVRL=rPHZF(yL@&}Nduuk>)zL8Fx;E|!-ea6UQuI3^&E5l;B2bgFgRahU<YHr
zXL)?j*-mSV$8P5fX8%m+AU=6n@t39|2iWqi3@XVw>O@ev+HY#MuYXbJM{R{%o6O{V
zpfI!73yn=gdbyWpZ&UVV7LuNwxt;QzdL7B>at#;_jjWq6wCk;>%&0GjDK|{(5vf7q
z^Yb_N04H;BCAy!=R0f#;L4?PV{jx*y^eV^+Q;il^nCzE1duu&0v|Ez^+`IpU-wlR|
zpyDZYra;oPX!uhU+~<Pm=gBO&48ITOt#cLU&AG5iZuSB#H7(VPVoJf3D=EHFQ1q>V
z_EIe*?3i9kSk~}eNp21dfL`kZ`jIXMC`NfmDH<6|`}}UL3M7SsYh&^c2j2KTmIm&Q
zDIWw2C2$>nX<N}{laUDSIdKOon5B=y)B<)bqkjr?@GYlwo5vDo+kJ+aBREu*Dcqk$
z+#Kxyl<f>1Ol{=hfA<7gItUL|=Ey;aK-8qTI^Rj*1v@OhH4Bk$=&~K$PYF0RDx^|{
z@nTJm>vn{tceWnT^v(T^ni~vU+e3Kb+Fmv;eQg&llZ=h7VoW7!jY~-(KqbjX4g>Lz
z@=&RjbB$|QyBaYXW|#jZbP=AQLSrBB`I?7H)bztcnhES}B8xW}IviCq*xJ)$w}t~h
zh`-)0vz&cXFYiBHzDfl-(MY(inwpXz<wB=isunqwL7;10#nl;->4M+@$I~fca6~qZ
zl9CQWa&U259iZzw^&fJvjfm4YsUh{*xs_c>kD|&kf=POMMrPaI`~*?_BI1%4$YDGy
z<9EAOVolTw`s8+<;ps}?4UMJv^NLx{v7%kM{k5*ni4rOnrsNN(h}Kysgzdjlk+&7J
z^#9{-F^z*>uIMP|y~~z|WBJUqm9FBCd%lf-+;OWM=~K4#flP|jWl?f8wikVO6~AZT
z|EA7u@pG9Z!jm^jSA(90?06a|DK(9Kt|*A#*>H8`Uk8Q{#ixeAg9jxTE5V)32OkE4
zL7pPMY0o>~v`eCE79RhKD<f?pvFi@g?0$drUnM~aVYdtRh^>4ieQ(}*5J)avkoUod
zhT2?t-xYi8=HN4%*)DoK#X^_}pW)LlpN;K-p^e)Ebh@e?dFD$B`Nk`GDj&PvH?Q8`
zG+k4)jffipYv9<gP9r(pj0lHC5B<E+@-Ho0hHG)MRK=k!EVYE$piFCG&=wi*P53>F
z<Ba0p--oqmAQbC=QsUPnA8fby*6ShOc0CFNmNK;hmL$4yoBPxKs5HM~XzwpP+xQoJ
zgQw-oZx+FARW&gyZp`Twj#p<=_>fpAOQxLiE(_Z073OjO#xdbz*{H*6yk@XAHkiDi
zsW#|2-Nq$VYw8Bu=)`7Fr-%y)Qlnc-dO_+>Mi8;r-CwBQxmNCqiQN1^zs>UV>Oj<P
zA-ueLR}4qD+i+}*Y+&ME7B2-Z1gB;*_<h7H%f+`(2`=pF>NnlU$0zi`cjMZF>+M!v
zYLUvUy~RtT9_DADuds&M6l}BT!Ti+%q9Xjg9P)byNw3VpEE%~i40M6~cXQxHozJ%H
zvp@CV=WM>gXz)SaXQ$YOSoVK$VuN9Sm3sN?Ikm4Ji2S~M2HW6+Lp?R2hX(Mly-CUE
z*!r$=ef3peW7P~l!r~+8z>TE3y#wNU@b?k-kp_?CowhRpM|W(jH6)K#uUtT5!&(OT
z#wk0skhpmdBu7}M0u=lkmig@co8%izJ3(_az!beq5pQwvLh-4o&L=Tc<kjAi9q0*G
z<`Bl5h0mQo4rsEu6Z={R8-I##E<k2m%lYt+QAm2NUiISsezPr{L<M<q0OVyA80WL#
z$L!2$VFTZ){5-c((n0)1<d^g=afZA?#TK%3vO$MkDr$GdzKrc)sAT<m$(Q&&`Thx#
zM_D`226V}Ev`cQr>Q65qOT-%qV?bK`6Yun}%V_P^oG!Cc)2}29+D?vjcW>Zh+e(3Y
zu%FxY8^iAz6fqOJWPg)&a=9Syl#}`K^4}>MbYotLE*|`V7J9x-HuJvif1u9Gx+R72
zm+BcCN8uCN_v5d~mt?-%EV3XoUgFeypMhHTT{1kl-c_8)=2dz1p#`M5SK?2xd@Tn5
zn~Rbo)_B)2x9KiSDUmus=Lu6zHoEye+fIDGMkeO__DcmN>3B1YW5iQt4X&0b^E6#A
z2^!r0<SwImJV%z5hY{u48#owFTIa(hZG*=k9l%Pn>fSCmT?UM7=sjpV!aQ8<>U?hQ
zp^_9jp90#|RX4H4&bF%R`s;qPx0#wKGVcC@*kqzb{v+jhM2LvoK>!)_rOv8110Et^
z`~^2M@4090sNPhx%DT9v451&4Ot(X*`o=t+FqM{bYS2`R7-Olg-5HfqsM}En(jXcW
zpNAA*K#DVSi$m5~-&KCDSWtn&MBY!))!4~mUilItoo#7m9Mn4?`&)58u`-i+%}ikG
z>32TO_|}K2d^r36<TFq5+D~Se%FpioJ;>phoxJ422_9`+Q#tHZcN;B3Qp>5}z%MtZ
zw%?}x!~RW$o;mqsRzjKqHLYb-Khq$nBKprCh{5jm$1yP0>RKLQJ8t@!-o(I*JQ8y#
z^H!SY?7(`(nO9-&jvICIsMJ?%V!9U3E-38~6xiw`woZ`rAIP0S6cMM(03#XaS6X0P
z!{v@dyGX{4n_s<jbjW#|WbrjyzW(&2cVvj_(=t`f<X{cfyTpMlo`BO*2HxQ#2}4Eh
zm-+=B#WV^hTp_QB++VnMJ|5d7J@H<C6}3t54Q;(nM)T))U=aVn<nLpTYP=I1tt3gU
zDgE=kAIk;%$6Vu|V*TTt+1uT*SM6W*!L?g{yds<*^a^sC_*aypBWrY_t-NA#bkD5S
zUbv2za;1#1m7x6v8>#k%Q$fY%-vn8=zPxl(Lxl@cyk8xEat_6CCmjR%?jO<EGUMG!
zJJSUN8Q{(NjFnSOt8#Rec<X(gaO}x{HN{Vq6&D~a^5{(Xl<{s`Bz&0BNp*t8jx71A
z3|Sk)J#b{sweHG*%EDnws-S7WuI|baxHY@GJmYiYjD1qefl1-|+7jK*(B9v+RO*{a
zSL3qaN8j&~1%s>>-$q3IBZ`ob7Nb~zqpMzLVrMjOkgVeY?{6Qp2S8+cB{s<*ybu2F
z5ZnZANAKiOztLq$WH}>u{{kIMWMxnC-S|)OBv6;tDIPz;o9bcE{u6i6a|c)nUmOQN
z8EV##lu0koSV(hnzS{&vO?zX}2EqU8GF3Yax&hDYATXO$ky}7+?6a|GScgrzWKAAb
zHQkT5?cx_PcJF3;L>I^W#Z!ZwPp*~O=>!QA%B;jBgot!Mx=2PkMnZe5z{ru@#@MhT
zq%gl1G}+jj9EVM4;#5<-vL|==3chK2_AnZl|KQ)0V(Js7R8qVniRBOSd_D5x@s6e4
zdFRY|oI<*}UF?b3=cB<?2`o7VU^OA2RIQWoF8VGhA%<h?2!SUf^TTfk)JJJ-h=~ne
zXI}ZhuPNKvO*hr?`|tl(w-xGSM3*O`2Cja3HTY3`Ib1c(@np{1(#SOyp9ue+JICa@
zwrD*Frg+9%>zXQ2&NLR_nOH47HFMf=!EN}sEZS_S6fDgM*R8V!O8j3hK#TZr%@qVD
zAqc)<Irm8DGb7upy}%g!JIBQX{Vqo}QJ?0S)dn?L;QM!dyz{vP*}b<BeX+;dy9!A9
zugp~CC`YXhQ12_JdsMdYa(d>Lq|`{KlKWf3VX~7`@N18=zO0C?L4dDrH%;V|M=M`D
zxnQ9AvTh$=nIuVWLtLk&QtLXV9G8L{$-L5i3@o>k=#hu-lm8ea$%T54lJ^_deRonq
z&wi6ky(<9y<ALeighp8#`^twQNAQlEOeUDJ;ivo%Y&YtTcxZ3pIRZ`E^MjD%tpdES
z3=+#zT)LY}|9KUI>2K?<sF6=te@ByGdHpU2)w@#Sh$Um0Cf{-*d!B8LI5w_vd=lMf
z@HvF~OYR?Ez9y5gCW*rdLerR-8Sm+;$6L!Y+9-Au@e{M#dT<mbrah?+-P&WQxwUvn
zAUyny21oD!pV^<@T2N|(YLny)s<fV(IS$e`bIcqqV;`v(A`bomBhT^qmJu9Nln^;|
zy)evSjW5SoWBoP@syw5@NMj;OMG<OPoWngka|&IjV2D_~kNF?uzw0J4$zzR9awniV
zdX}n{od^u+O^KICeD*Um(GDj7;PP0ESh)4JSo<Ai4+OGt@9sKebusXW<T^^otjP?R
zKQ_qep*X@AaIJu`7T^@)xF|t}sQV|@Qby>mrv5(WCn?$*Ft1bctoXICE=#Fb8p~oe
zJ_W!4-zfDAm`H=Hucz-zA73SN&-rh-_1?iv`lCjT+ujEyU%Wm#lTHu^>mQ7QK|Buh
zeGO2f#RXbA8*^!~W=6;2?8grq+!xok2eQkp=5^i2@bYoq@fup*Pvj-v*TrFm4r7uN
z2@LX5FDZ@fSkB>m3c}hN&hrZR@#+fmtho=8WuqMmRTDT@-TakLH*bN}sRg<Xd2;L5
z)`?Lp*OBDa3sn)2C`c}0Pu)G4I?4cHhPIQ^A!V?7!;3Y2u0DK6>|+R}Gt-KB=#6>4
zG;L9SKC`&u@Uz&_mz_dDDX>n2$H%w6WBF6VBWH$Wm8aB0w*9PXKkHQMrAtrw$S>U#
zeLgqoTIQ8Ito=h>8Mp2J4KNr9m2!7-Ow9z*k@ME=o)dl*wY!`SY@yOJ_=2Wff4#c<
zPPKQgXd0R4+jfJ?Bs&Yxy#;3MXDpAeWV95&E>HD$HAPpMTHX#M_kaEL_b6gp${_IZ
zvyt$9g8hyuzq6+aq3#Sudj?|+27fZMncr%?^=1bJ+jQ?1Jw@3b_2N$1pe+@yM767q
z5oJ|jZ^Vl)^LQHxyA-nb$Y;f$s->$|slH4Qy=d&I^WpmCpmt!UH<`A*;~xuEq|N_g
zlBtBZTe-`@Mn2oCI1Oe`ZJ&C7x>pykJ<*l6cp*tUNwT7T{%hKg(o&MJv11N<yf*FE
zy7WaU)uhOGnM8aGrqvXA@AsMGCF;wKP~?59Bqyi4Cy>4GyJCveZiA;#>YMjo-3$P_
z2!DU>QO=PATj8AG!gOE-R0W)UZb>tn&&Vg0Y(X;>hO)eqp4U9DjW(QOO{|Wh8hyMn
z%RJsOv`wKe(eb15_7jy4#2?q|kaYGofI;&28IQ4EM)||Wdtq+?-lnE?PIqWsJ?a~h
z-bx=#ofj6)Z5f0{Yh57#_ASC(yQX>Ob3Wf?g0g?`D%6sAu!jL?{Y!Ue!;)V!XmfDK
zK}*Bws|O<W+`o`H6zSFPH;zTBI47GmTSwWKW^!|1wRUS9PDwA>eiqqk<Koc+Ex7uT
zUJ6(DD!mDg>r+e5cP4zc^T5^27d#Xu6E(I=*E_KRVy)bd<^rJ~ckW8sH%m<cIDF#o
zqX!KhWaqA*vI>hh7ROre#|TATOX)GU2PGWza0Z%i=%E8I*?C2&r2NV&jzF?JjglX<
zVTAZawXq(0Ib=796hRt!ZMyl<ky{xYM~ea&*Iq^S-1<J}M9G--UQ56}0g4LH2Dwmc
zCem6)SqBs@^sdzK&#eTqY)tf*)3;HrOA;(YU_#TPzTmj{8^QgwL3U!EGU}tL(bWG7
z&}7m+j;O|EYSclr1UWaWI?b#fV{Y7CJyfwzfcwMgX&a~-KB*<aYwEZyw~%*lg7#WC
z?zVKp&U1)?;+{If`^_arakAzmUKv?O!7wnzCmh@~^V%FBp3WO}Bph~eSKy8(HD!O;
zxk6L$#U!eZu*DG*jxkMzswz}d^tMGkR`ak5=TIxkbXr_Na6ck{WxGh`4Te3R;#Cn;
zY-j{4$6Vca4$O9RAwb>BSm05><J7HOtEOW|4)W`Xcb)?G@HR|E6(M@QFCp!|fnZfA
z=emX34(NM#`_(8;+MIc7_?V~VS0f7r*wetfvCfJL;h_Duvwd%h!PMuWemC`HthJPT
zhv+yOa`jI%!h;sl2(qVB{`L@jQl^TEwiMfpQZRA=rw9*`iNQP@e99hD&u28IyFU?6
zC<CbTFHz-i=PZiOEZ<0@BJd6%?G0jjv6JR(Jj7>E7q}D0F3r!FOZ6{HM*F=y`)i*7
zCF7D*d^Q*s+{i~UJj!CLr$LNGe!P)MRe#%pJi#S`Yw06~MN?rmrkuInd^gb(zIB_8
z-%J0H<=X0QpMLukd-5XnwQUy3*g*O{Ob}*Gofb)#sIfE3vt@Jdu)`y&p62l2@N2s=
zS;CE|&a-{c9-||s;JJtslQ3Iq_*XaHe{0k#Cx=MAv}2`k|K?`AI@^GzP7f>xucGtx
zP|vD@KmOk;?hk^M6zqK#R4nF}U3hb<UIz|53cgH{V(QGbUHCiewoq%<LTJ<a<Fy0q
zv5JgchPyU(*phY;F82^HHm(clp2GGkZSK#VJus2o3&u%;PBwOk8!DD4wY0&^?CMSz
z*xDD7^tdV=b+y>{0o_n9alAsR)vCk%l~EhRLbpEq9t+V;>zKaa9*3wfc@K8uSD##6
z&CTPLxw=9*m{@6UKan$@VWXmonDfa|IAD>Z$hxnQsiYcg2;yk>Mv(wye?lG-rJe!W
z=-xfrA9-W~7i(_z0n>Z6<q?(7Pyjfj@-Ajm0i)ZYlm*<ch9kzvgfpd#!$*Koh-ldQ
ziY(*}$E`<>TA;57?+EQxDP_)+wBbMv#UTp?3@3Jq>n|_{_C1JPc=^DY09amP$JLs4
z7kVCNOauB0$ENJs#Y~OE4Zl#}uSQG&FX_w`-i!nH@<ch=Ki#C$!Bc&hGVzo-I{ru$
zchmYw?{OtmVe${f`9rt>X!|Gv`dnE}hBSVe0Df;5)&(odmPCs&sMw<P(iK@#QE&=&
zm9bDHv5shS!<7}J_01v#5dYQIzj@^#gC=YdTgewvejWU+wi#r&=xhkmrA6t%`(E*>
z<PX2Hi(8b~3L<E>5dx^VV;|1Mj-Jy^Ty0a>i?junM%X4y<$nEPtU$yO=3}BPwn-3Y
zTyHGerDSh<wg~Lj>;g8=svFii(}J&tvMy?c?v^^O3if2G-{xk`n=s1%#nqLdQ64ZY
zqqN?@K>>i}FT;`Z0Ea^j_A;YH-JU-}f#dSbjvTiXt09ph#^93>XyK=q(OHL|JP-SA
zDVJaf7>;b|U*9JNauXH!*s{GJFPj=wTUFK<&Nnh^DsF2biANf8W-RH+*wc6xG2ypk
zjhHKmi6131C3E)>{i68i20|CD@|63ArF5(BF&lc(e&<V_D1JA~%MS^+rt9hwnj_}l
z2~e08t<a1^t=j-4_J?8NEG$wYRql7?#9A}nT_kLDCTH(|16rGAU;A>?mNGAp)B=kA
z1*bANDW=aOEG->%hB>$XA&`rY3R^JvnG!#Dz}84P+-uyfqvi3NM<hDM4dqms8j@Z9
zad5Ue(RajLHcI~-%{o2PIHOBCrk=RTT*Z^GI;K!7ZL8OGAE74e2rh_L<T^%?r6Jk(
ztotAnOT_$T5X+8`6ccQ7iA8o!v5tFfhZYBw18${s2+#0Dy~f2xrt<fqKC(nPS;juV
zu^`C5#WVI&kwE;5Uu;%lmlom=KU>9o>u9w@De+sP@gL~^`7_X*u1siEU1hlb1<{aZ
z9Q&Qqmt`U1u+Qo!RCJh%Yqe`ceY&UOkKx8n@z1hME!1!mpDyDP|LZ~mB2ypuasI@`
z;WiPV-pPls*Cg+IKZJbLmSa%G8NPD;a?`BUsMEdNzgfEa?HXC}?Ls4Fm|DTnAH7Ea
z*!i&;D&Tgh6rMk@T<^+(JF9cqfOkzXIHHsaTnYKEen!&&kxP@WbXisE-!O2{y7*Rj
z8J^c+Cq&5g1o^_^mM<JkAIY|PKv}0D%_f;4yKVW_qt=d5I`zt!R_5uafh5w&tPx(|
z2qO3OjOcWE&F4E;IH(BgnmA_sMx=|gNf3j1XQ|{s2f7vT{&_JJxA>knkUF(cMHN<K
zpQ+EWo^`9nnugy>)T4x?2Pa_}BLox3>-VqOa#&BBAW4}9%gqwf$$S~(Kzw>ng1i7W
z)%(CF2cKP?ukbM4zVEt^{E36Ny%4UuiH0hR_r<aY^X3>&;63k7)zsYnIiG|BV6-r{
z<y_;B)dr&)K`HI+XJ@BC>WJGZPz^H_Q#}5KPGOMrRrTLIlW1kDMi|vyMBAxw;M|yy
z%+GGxtwvL_H#EjBHdo?Uw_l(iJj+*9JkOt37u)1RRjy|%^tl~X3o$d@LCyG|la1xe
z+ZPwVwHJKETmQZ+{i4PtOY}4OQHE!DZwza8{g8>r2&mzR4aQC_;Pge<VL}S?AIupd
zwosa40Edmq=X+0Z$d7mTP_wR!<Tk8{4RmQ2UMMmUGx;mcxVYP_7Rlc<NhljMOh|-o
zbu~f2QSn6=x4{zboN9)wpc>^v$$@3)=QTo2|4VIrn0~K%Btl3Yug=(ObrI;L2kt#_
zEXFR%bypJl8DxH$lU56x@*{(Fq8CEGB<pw$62*bnErObLbS#osqIu{8(5nA(;^!im
ze`+o$DE9J7a{hg)Npp#P!g`aXI_h4+NJHN@>nS&_v(qY9C$Jeg0K0O@#XNb{xUBao
zWQ_z+Z!V~mo+up1n3)oHS|nF4c4~+PJ2B`-#4*Ea#wm;AOdPtXxk0@Gz#5fU%F5iL
zg%c7Q39@{h`Ang({l{gKat(}DBjO6Idu4B2C3g!IMHSRHnjren_n7VP0&zF4?mk&E
z00b`GQL1Et#1l<4VV=C+Vq=J)sXZEP->GLOZj7|`&X)O8y*EcTH_xIrya2IX2v+yw
z_PU`P)a4VpRSw}#jW{tvrJz#J)ZQ$3Ggg^Jt!)|SvO9#~@!>U=&8x<S+KZWBnDZ#F
z{K)spq6-Sug&||4#{;||bN9^!i-=VgFde<w%?f}1FvNwH!Bezd02g30F+ilg#_x!x
z;Y-B7{cf={Dt@Lvltf_LsfEkSkKYBOsVjQrUMefO0kof9-LWwp;;y|ndLaxo1ID<~
zw)|F5tVjo=5$MwhBA4w3EydHc=Xe@!*p@GCP=WwEHIE~g;$8sk>hh+5SRl6~>$|J_
zNcg=Mnlg6u<U#~Jiz$#HM^#}&z~s(_4lXc7_T)}z@pT3n`}RgGjnMBO%3%_l0}p?B
z{(Uevymv>zo(KC3#r$ztw0EOS4}|UT-4RBR0^tf|H=-!KO|x@+uytOcwCJWz{p~Rd
z@-Pq^aFPM|XRei^qtWD7P7EzA(*&XAi`vY6O%GS6>fA_PyvI-IjADbN;kiVBAr4V(
z%Zo6}QFPN1XmU<FE*enDnXjLr!e)HkcOo#(OdjJMKLn1Cmu0O1l}u3ihrdzPg+9r<
z-ENcnuRf5yh@OTi#vwo5^d|MIyuea{fSwb$BHPN>x8!Y1*F)p1^tcxgc)0uksHdzT
zq8b0ZDW$Xy?Z1|5e|SL7eWgqUlz^tkGXO?pP~uG<_8vAg>To1{9+Ek_W<yfHjaOjC
zntv*NwcX~~1<1j-f$aAEm5_A?9=cU|u><dic5QK<BN?=~4GZh0W!$TlwkUJb;=jCu
zIJyX5Y&r16fX2u#^0Cm7kr#vSjf|=bOq9y2L1AAhtrZ{a5=T;3$?-1|GphD7041O6
zGY8uLjkD4BUpn^xP<ct*5|*}U;sbUk#B3G{c0`wQTU&?zNfgS3L>tn3!|$vx<?Q4}
zIb6ndT)vY;U}Cg%fI*ffu;edyB(~f@dJN?c-ZV*2bDRNfjv7CG7zy^KuXFnO_rfSn
z2K^*94|`NU521T_k@PyEOyVdA5cSgs^Pvb3(dmyZhx36lSkN^>O0(}<JE9WA)ovhH
zP*h~YhkSTqt1c54%eS-o*`IwO2#G9S{G=DQoPOQ!j#`!!;wrgg4;0p>SxnLL^JX%m
z$zx33;zt44Ku;5p+V}bHC<)zf8&8OK>w{-e(Hl?Rq}eT!`ziJ`LC&`@<#z6G@>sf?
zZ--{)?L!#d#LaNrEy36kP5!*wH-xWlBtn9%mL8xzLU%D{UXLoY^<jS$QThP3O9p>7
z#ueLK{g53bVYxIkiUovf1|Lr2lIw+Pj3gR89=1S4u;>J4LP1anQrWryX&X(<$1e=)
zyj^OfH<$f3fc|IGu7}JyvmLhqb*3VU<}M1ThM)t6O*0*S9(CdG=~-Nl?5=!Vd@<TF
z3&^8b41w$(ZXo6gD0;2Xh22Gircu^0f5egaI)xbXLJ;>Ph};VeTmZwR26ih(*7*R<
zkYS(p!@-%AwI`BY4W39Jqu6nQF~P(yp?HlGhZk#brX4i1qO~cl(~OYH$w<+v&;mPa
zz!raAEK$gu)y1`r&r0he*xL31Oh7ctUcYJ?lVBc5ssab6+2NBcJ<fz!s-Nf&G6LEs
z)Nq)(YWXnQD}o~ze50WXNmUn4qK4C%Z<jc6O#m#&5H4JfLb8l5CkE?QVH?3MVJ9=%
z$TXm6R|r+$Cx3!XLIUK#zPu)83^fQ17IBSu%5+304%V1};!L|mGP~KOlK>@t+gUlU
z6)`|&p8?qfwoReWtjv@71qGFZH8}8uLLX(#ziL>J-(Mh`e+iqhPFd;sQiAZ*b&{tf
zSfz_d!8E+Qd48B(xw!FZTz7@95K;oF^r}HPaxw{1HXp?fM`FRsq;E`A<9ipiGNGK9
z$#Z=<OLBKd8u%7$kXA7BeNL=rqFNb<9)I#Wj~fL9Dkl#6lXXZRUQYJ$(*u^USGJR!
z^I6>>^J0*%o&+DSv;rHD5(oI<e!X{d%zCpnm)GRV1K`1pP1X1CZY1%i$CnXrJEVXW
z^l>R5{n6O763moQ2IvOvTM#Cr6D)}NNxAqJHw5?zK{jJVi9i1*7yzA>FHfu+&2weK
zZlu{6Ozb29K<;of_k^gbEeOW=eHxrP2^tFx1#4&#JFaUHbUkA-C>(<CnUVa{-{ox&
z4|Y&z=^~1VDDd!60|iChqO0QK#_$^R7hxC1j9zWw7DC3EAWqi9)Ih*}B$<fvZz)|)
zY#(gia5T?W5@^3xijcwqrFXH-fe#$xXeU!dHbFK7@MHi*V>LBwlBM}s@lDlt_l1$f
z0+vlXER#ZAzBIrLDKPZ&Ix<of?Vht%rAEK^q%ZhosLAA{x$o~`R0fkXyLibO7@_Yw
zdac;G9B^m_BZ7x)2t3nEA!j@%kbC4o{omrbS^t>Z!%HO%*%knZG-@cEcvzAqwIE(2
z4H5WUZ@L<p#;FSCWgrFu_-P~n)&p=?6cIl5>O?PD&?CC#ojqy4UvCE;*j3m<T?_#%
z{y_4aa(}Rq9OMT#H@8cPxNNDdL0IM15j)!tu|V&Zk`k1XdX3gABt7=;7Ggeaf3SdX
z8GkecR9q~=`i?jk#0~v#TNBv@U)?-*q^8W96O>nhVKd6gL`rU|s&@HEZ>S|X`#?Ah
zsyWoPSdOUSA^Qx^H_f)=Nr4OI^%x(B3U#QZKQH_JJ={o4@`LFyaYI387-0I)DEORB
zn@wTH3m`k^g~J36;?ZvvhBtHivQ9wm-H9=v-#xU-4Un_<&?JHHiY7$HYLN^oepCbG
zMKP%uJtvzn1P;4ze{LbT>2=#e-n6Q?#6jR5;Dh@>)=MqIXc^B*b3Mz$B5o9vGmXFx
z`SYTzV0;%*itV5$;^zJD$aj0*L!V0y>f+Mw$0O`Q)k~I#c`epuV@4XrnNAjCFLbM=
zu^HmuzOUQ{Ebo{Vv(6#nBMrLDhi3>WW49|TsUFLDY5+yUM1og$mh26h`SJw(3VTd-
zaMQsOp=9YVlm>^<$hE3$GohX1g3K;>v_CQGq)w}c*14IGag!Ukpcr37Bi7-w{WAp2
zxFU$q7s0e|4v;I$d;}NSQN9}&j-HHGu!l&vg)HtQnhZDj@5B$!a$8%kw;pj&#Yuso
z`oOg(F;;^ZA~IymB&R1n#8E{S>GR@-uqfqUv#<UC89h<4Y$3FaF`o1Sw27T~vSelY
z3?T?lrNX?{!73o)>FbMYqWd;h52|8-ZRd&2IDC64OLV-K)eWxT#Cms7r{#+<27L-o
zV({?7M&Xx32Kq~;V-wLXj1I5)!cv=3+hz>LIzD-4ewSKJFxWA4EWaUm7p4ySk{9Ad
z|M7|d+dK^uuS$0?M}}v2VJn6<Sx-}2^6RiNH`d&qLB_Yg^%^|Osh-lD2WUXTEayer
zk)jD!2cZC=Rj}JMuiSHV^Tz>OJLUgYuvqSa-UWRB{9<_TudOt8ceq@`GMKK?IQ-4J
zB~<)aA6QCj89ze;ID_9stjhcsPcH)0JNTow>-ccz21~Dh*o9%7fWE*Tc7ntoX*g%r
z4UXd^3fX@+2w!O@fPVpZ*d!>XtTsUi<Y=YQujt&`0K5dgzD>^_>avH;AGz=f$Ev~(
z3sA?31Y^=$?c|^SfD@RZMl*GEW$!LqW{~4PSRbnQGswYws2*`ao}p@eYu(lHE*;~7
z8j|6u)P7ERd8M)Uh>iwQbs<vWj}>t7cIhqxiWfR$5%YubG!WeRIs1R^Fm#FzM6{lt
zg1yK?V9|z>)`F<-x;ugt1BwQ#Rpqa@OS&Akw_kk#fEHlne}&B-EMU#TK91hn(F_DL
z%ccZj|74G4K*)~X2IQPTBYNC}M_ZVyN6`e3{m^pb78(T8c^7f=;nnY!_OH~yAL#-f
zB;WI9jvB4MBMqH8`ODy|jyxfNSIZDQd<f_tWZMx@YSzMTe=v3bm&zZ2{+lGv9KS6R
z2hV8lfWR>>YwU>N-5_O~`@tmAg$qhm5H^q1Jx*+o{Z1ctW04|jTz5xoIS*2!9w6J+
z+PC4Yg0t;alZb+4qiL@=4Jn2*$jALrq>)uj$&olHoN%=L9sU4-ZF`&3MS#*Or35=j
zl|vXnRj1#U<Rg;!9jiA6E-t(uYnBvny36UphsdINd^hm>u9R{$j1kG;ZCB~EKMI;>
z>FasM0yy&>s5sr^bPZTqZ;4{uM`yoEX;NQyP>mCf%rE<3wE?0cZjW$DGH~#U`rhSY
z3`blN$T7JrNoi(h89Rt=GOM5W0$ma;nv<|vQ}0KY)OUZ*j4pX}Np$Q{#T-EqFj2Ut
z>&CTo-byMOCP@$wK*|na+!sklD2&E+gLz@Kb40rB)Yd4-0?>~0NXJhq7qi~fr|SiH
ze&H!tJ{5@{|AYyA`%(@7E3DI^bfR4YEOeqI<ZHNSqP=Cc?{jn77B0+W<6t7X;>ZoC
zZeRkmV68;qUj%GX0%R`IU4QrJu^(F=xgbh*r9i$E2f@Pt^##Zg4ZCagjdTV^>h2QQ
z^Bc2@J|Y%SDzy53GKkKQ$$y<dZe#r~J(>CpD}4^POO|Y=$_X8MAK)?F9b2&WV8Uah
zz@u*#yEjMRr4E~{v@MS{a6j!~a74ZM<%W?^gI-OzrTk;cJDUu01y<)PCd2T(pL&|8
z^`CcCXUP&<?l6y?s5(7ox>W}+(@{*|VyYS8$)1<DO!wb0V*0m2---h{Ls3uYlDyXR
z?$Sx`6r6coMm|x9qu3Hs2Y&mbxAi%G-!gX;qeJU8DgRLwE)ai005Ga<@aaCZ1N(D%
z(E9910~zIl4Eo%J1WUnCy-UbiDZuE^h5>{#;2E*9%FIe`#)ft;vw#vUKM=nmB7M?E
zN(WR&JNYxw^0|!vrW$v>xPF_mV{xVcsWbHv+mzpK1?y-oNb&=_W*5qT{a{Ph)#S1S
z*k@nkscU?vKVDR5wc3L|!7%uqmh$CIDw;FHlH7TK+TDm;^r<CG-%oa-6e2P=XXo2(
z&q{)yXpB^S8Us1?+vIIie-_3w^fa9cU(amoy)W#3M%zlMl-9ZWUfu`Vb#MSC5e7ic
z`PRC7dRUz8wh|id$t#6-$+xd{r=*a#!QgcN`*z=Qz@^*zapw5?L)?z*?x-42dA~DA
z2Kz)t8u;U7ZT$mWK?zy--NlDFgr*gZoQsDuOQuIYBO$?etKlzUb_zqBZ}uTzwu+Dr
zzYKUr&I6VT)Z#rgSg<I6QqQt@-#iikq|gExqp6x6)C<H)f7{9Hq)0Kke->xlK)n%Y
z|37rw_R@(DT6=rkU1lkAEBDQ`((j1e;hbIo0N@yl-J}vS!;u#WFBUY`*B6;-t3jVh
z&IGQY31DY6d4O%(HEBVu^36_e@X4>XA4yM%_)LaAx}yBxMiprHN`95i{vetA|9Sx~
zzka1hJ*wJ`ki?#K8`O_$9Ppfk$SDrv0&-cn@KWwo-t-g{(~LE^)3}QRaIaE=IwY7+
zk)<zy>K=(u*3?UYe<AqtIrjVLbT4L@2Ut{eo_{Y`8FYiCzr0>g=v}Uk_t>Mv5F&at
z3j37L@W`pY6_b%Mj>y$?KKQ$=cn>c;-4p9-qRZ$HHj?-cV@=tWD_rI^dNvt0nC*{>
zE3oIwBYR-9-W51c#r1n+0|42lKCyb*c(0ld<6jIaQ!)L(3G*y>RD5e#=N3tN#U`J_
zbWRp<d~?@+fCI=}%7i8`n?+D_bCn4Vbb<$OwS(vxbJ0!aos_?vvlHF+^Y6z0Yvhxo
zN79eoF9qD~x*05C&loYB5*xnXkSEzO&)4q;O|6)t-JsK^ppEWdn?pKOxq+6RA&7*Q
zx{g{fp*US?V_;VR7mhw){*bxA2L}syd9nzwCGD7=*%iV5SLh>v@lMP`b3u(z2UNt&
z7s5|a?6DVxy;m>ocAvn;j`6@VNVPFC2WMQTG@%|N)FIbQ=_BSg<~ptso$f^QRcCjY
z>|n661$B?_!r;lN(Z<};<Fh!8l4gu{8}uVdMaZyHb|m*+QEd^pjZ~*h08&32*L<(;
z-cb?*v{!*lruOeKbz6rTa~5Jij{sQtux-)(grb4WU;bdV%~YHk`ZvHWtQP?}KiF~k
zT42XpT)6XHOWZT7ATWUa+_z527(!+?$#qy<DTN@SX*(1F|L$8J)KJByZmfPkEIt4H
zZocWL{l{OAyS1#%v=?)>_Tw5U%;Vu{FYrxLY#-+{Kcm8WCZdFW>;Vx~{IeMn!cD;J
zLEhrtjZI}XgQevCDSCk`$^Nkw=jXAZu#{@*FpS|LRu{odzo1~iu!}d%*1pxjK65&2
z4snDm5Z4+(9NqlIq(jOaA0lsuM0Npyprr=(A~AOe*J_iEr(E)Zj%(%FV*`n9=m!D&
zPO2yD#H9JR|0MFrhg0i&)h(Xf5jF;z2HU4&0+fhgO7gJ>_!m~s!h4cN3-}DSM9qC@
zZ63>=9GeyF)t3uBNY-?dnFM18yfgh0ARFknfH-rh{i2E(_*72!z*r_x#`Il{891a)
z{awX+^)|zgT}NB4UAMdF0kw;vP8Zj|^}`U$#l~CmBIlE5Ax@TKR;h9o#R%Br6BmP<
z_b3vZp^Yt?qqND3^8ab+D&wMhy6|P`ZlpmvL`p(hB@9wpSU^HTB!rcQMMOYa8l;hC
z5fFi;mQD$YrAwri?&iJxfA6RLa_7#>oipd0=XuV|3NpS@Q>!Xu-joSy@zAvH=puw_
zCv=~60l+WfuKIWSN?rSthYyM5N5E;V!1T2GZ2sIq4%oTB>lni7XLg;%T9b6X!KP*g
zl=ljXI^x6DbP&`eF@t%7x*Y|ZTYwcab;OgSc2h~eSPTs|-$KaScyA5r`Zrp3fTs=S
zsh5L;hOXK@wvT=!3&dxR8@AdCk8yC(LY)sd0!fH_eB34vX%QwQ@PPpy$}2dA1R#$j
z$;(XdX1lj&*;}LjE8q9@clPo2m8oH};c{h>NzkK>K+DJTj-AQxV+)j8{D>!;ZazRQ
z%_t|8@Wl@t(Ja)BSLE?x0H3c20Bo-BA(;9V9gW7O*$x|=re#sd8x$S;91<RP@C@ZP
zksS@J7fVxl$gPtbbMZwicB%3ANf6Gs7XoZ|y%c3+QlTEn0iO1-8|t%_%O=2o1KE-6
zosUup20sW`A2(R*BzhxK;Af9>FQk5(!s3a4LE;6^`6{nJzQtB$B+-mSQL&iilJTPD
zDFvEkg%l63^L@%FzxFqa3w(NAGmg|d-67x#+5f7DzKM9Y#|KX@H|Q(&u$-)1`gG&V
zkI%c%`6sS7nx?6C%<@|Qe%g68kq4G13KlMUq?FajtZaLC#G?#DSLH>-yoy|;b$8<r
zK(_O4G&1?^ZQSX3?KYKkz5snu_3$ivRO$W_4Eq!z++-e6r1H@<*uN?!<>q*%*u4`L
zHQ6xqahoM{c@`lHI6Az%tcVxpvj@6u&&}Z$#`YQsC?P8`|DPD5D%z{7zjf*x7>YSV
zoa45><Uew)kEVDtpJmF&(#}T6GRKo+F}uuSjVU%t$1~pl_u{#KfmsSd_~@;`$2BfA
z;hX9APl{-98)}ULov|v1VbP-g`KZvxgWW0(jgErzjM?6m7#x6IyN8WZr^tM0Dt1Ct
zJFj3d1lQ{+-9NkwJg9AQn0@$mV~O@|m$GLxhR*6z6`qy`2^?&?T=RPitw|0GQ;vIq
zO5W8yN#M*K3CiBeWHU+>{#Ww6DKr{1s^G$d-+_RV{Piacp15n<lM}_n!F)1<1-=U-
zR5H37pb4QBD{9+XGB^1&#*1c0mW_rhiuBAch3(e&_(JRWT_8Eb_6S*Z`~8$rHezR|
zN$A}I$i4?!zEk?HQNd93su(fdDrln6)#N|@Q9RQGhj-B|K$hP5R)ED<Z1^f}`BB@*
zY=82IYSq?j)T^J4#-f?)^?50&xkTT%QGJNGh$1}7Qo{~(E3R<rV4iSQ$fd&weV-bE
z9c=dQ$H&$aX`{fyBCM<*=S|HemBQm$2HjmyspK9L#ag+f!MrAU4G}F`^WX(sv__}i
zXF2?i^~LeXgZ;_TI?VWythw=+IxC^VIw;pBAFcHG3u~M|Qh*>*H_?f-d)KkENGpVR
z|7ZiabOW}!^KakHO0%KvC@;HqJ?o4Q2BKp(R^M~B;MO^Ad|Wj^{A79X)|6{}mUN{9
zv>GMey~CTgJo3N;w_Uu<duPv=CZTZey_w#GU{ju>w$`DK;JG+9lsQz2L7bl>0Be{s
zSY1Hjn}&Hrfx+qG>UVzP!8>T?K$6ve9fZ!;2ddo7c&Fa6M*FWQ6r>ZZ;)4jrYiJvw
z4qJ(@r033f{#a0Ph0{DBAKKERgiuoMa`0#9uUP?jX$h?NV6h?I!;D)~f~do1fvkNC
zlHlSvh5^D=YY9{Ym;E0wC0dJ~t7!y>pV-E)4aeq}tJVY3HqrP6p4aBs+xWnn{+{5|
zd2QnQVVL`aknrrdY;UnZ*+)chv-Ea?!}HjP>%I91>IYOBWFK8>sJ6SKcQcv(NqvdU
zZo&tA9kyo%gqPb+0Rmp^i9uMBX!*;~8I3G+nog4&cy*s+O9`^G09d|UA_qz@(~5kr
z;=vfxg~Ksit@TmV!=WohhLVKt^UHcHZM2ZdpIiGE$@hr=Tg8d1`qY*9DWcovd>df5
zd0NUKzSM)8vDB8g|GL?i&X#cio5+-!1P4)la>AtiKt`xl91Up*!q89}>(Xyb)9Ti)
zXt)9ZM+IUh=(JB)Ueh?VNmwersRP!T_~~z034yy~U9=#_+vKyQ@pYzvxlnTYV5`}B
z%H=28^1Yw2bYGJTxM0VczAcH7%y|0qLixw_9~eGRxPd;HJoG4dA5laOY(clQ%_PSD
z#s_zszklMl^FF<TJKOF(t@xDS2S^KX?`ia9equP|k>qm!>~RWj$I{|sPd36M`0ysO
zXH=vmnQ9xaM?-~N%GtMc=NbB0XZq6z6;$fZZnIdShIuPcRs1AH@q}D;FEDG>zUL)O
zotXI7NcSKAF>_Bo>-*V?hq0bZ-tal|U|o6sAz@lEd-KwXwcZab@{5swbLENTW1f=Z
z)V9Imim-CX1=lp+G>XT^HIGlVb>xdZu0VK*@1@^bv7WPl^@y7Kk+cm1(7LzWgJWtC
zWu=ku*gt*nFns}O<<`14P(uwl(Zl!_*XH&dDD3^&xaKW}X)3<8H%IEm(fH7K;=?`Q
zKV*9kol&Frg1g&*D-ENY{70`O#bW%&VexyJE)TqzM9ILQn&rsmk@PQQ{&tYD6|Lg^
z%=}$@`N|?IxZwwC2D8lru-+ALal#1?QykK@l;5jgrkF||VI0z{41U7yrIcCCy%d27
zaut2Sp&oocYa^hBg9(e_VJFQ>>XMwTf4%kO7fJPGu}i6s6o(&9(`oRdi~$?Ee!(uP
zKQ<R^)M4BKB&`K~u!bV-HQY1xb9XdL+SueI&A_k_jzVE-fqr*6=R^4pCtD||b<K7%
z&2Z0<yj}(VqZ4366H(u9-919&9SRS@@f2Y<yV)JOimpS5Rr4~xxc*GQ22Kvp{+8aC
z-((#1B;g%EAhh8vNPJ<rNK8o++IV)R-Ykqx$ds+AlDM;|NVSIA$S`IlqC0ZAc$)QK
zaV=xo-ePJy&kUas2LFk@Fsn2%3`@geKPOR&7Qo~Jc<eI3xZ36U&irWNFKCjogtjTJ
z3kpUI5aK|H`;MmUjh$_kbHbVf?dRXKy8WS9{a0Be4z+dEQB!lPrEmHM|6A;1=@k`9
z#>A?AqJPqGWUG1cr@K&!jys>8UnSu|Z}EXj1w1glMQ$wk7YPtbgX{T~Fq+toH1IQu
zo@&^!un1-+c9F#-u9FRx8<5Bh!|-=|-JoD%v+$m!ycAo><bmrqF{tr?m1bh-GURv5
zSsS*Xnfq*|#G=uDiLx}4?nF|y9tR%|JU1ldWdLIQA(N(-mPmusp%}#XOv#~)V(njW
zU0Eio(nbX>l)u++x04~9k#y82QvR5&oBZgy$+SxlqhecI=OWJ@AiOHd8=k`XDt@qj
zdm_<S5{6JB|Cr;T#VXF3hx#3Ryxmp;8&IV-liGh$f2ze2q#04l)JWgtdD{DcQRk}I
z{QfmuE-6!|q3E01y&dOtY-}s-Yh&Z+hqw^m51kG2Z;;?yAM^MnZA@6|2w}{(4MbBH
z*N<ZDmVOkcS3UZ)6n0Q@mam3=s>hYl&<^`#f3J$}!!~4ZkfJ<`Ew?$K;ak_ei+8r=
z&x8XlN@u##N$}oyj^wAWAgws|pO7n<cjrg5xA?FZ4)lJB;1PkcIqb|e3#`5c-c_{Q
zGAs{DX**08a8$I{K-H2vbx3dqcKe>^5JgbrZa#5QaViP63Nxo3RugpHd>PjJVkCYQ
zJ!*htVfh_vxpq&f*))<@3s;PUX#4GSlBNb<h8+BEz;Vw=D=dtri_})vuzp+QsEj*x
z=3zHIMC3PUKuWI9?x)FA&xDk92ial~UKUb;1Lnz)7})K4qe3kqB9hpb*IfJ@UrBop
zH<Es)Q=sNEoxAM(VzEK>2d)p+-D4m2%J1DZrJItdsK=1$&L<yE@Ah@DQT$m7PLOs{
z!Gn`Vm({YxH0v)-#ATyaP3~-M`SvZn{8zQ!?EM>A1DxnDx;sD8zJW)Pna}JOOPG#=
zM}8VHQQm4wg5uC1yHR1qZyM=@Td5Q2AUQRu2v;<4z$*FD=$*g7rnfQiog+(v{T4E)
zcXlhCPkwAT)#MXssvxIM{2abWEZ~>nO&!IpV78UO!o;{(Mw$9<5Ieb-V92Wp8OM7X
z{hS5)wR~KgE0r0r(!m`Rb>&dO*&Sz`YfIx8Ztt)VxL8$k&MQ`1ty*WgeHF#4+QDOj
zi1JE#oMQF7HA;^&*s7LpT5CnSzw*z1Sl3(SiiQ}C#>SUj<;zRrL_=q^a{l(oLE6_D
zm<ax%8SQg%NZG`L(*WL=$e-1mulr^+m9tLe>rZ7-%p@_Un=);qceqbiQ*q&0w2ho5
z!(*%O#lJM;E*Cw|$W>NT$?4%naOUU4JPR<!rS)Q8mgrBWrti`c^osJP_~Ie_CMUpS
zcDVMGWzh&dj1W}!BdFn3L}fXlS;{FB92L@<D!#53Zthos*(_jqXsItoXRhHH7t8kC
zPe(7ncsP!Ng))jax^(TKL;7?5Bp1n>;;BBnG?}pxYQ0!DsBHr)<rM{7Z=ad=CS*j$
z@9&^WyBcQiKz3uX)nKCND2}MHEQeR;YIvqDy^K~~Ei$zN^R+RhJMra*DA~t*?f4*&
znHoRt@8(x$cAMP`z!6?ngBa?aKcHm;GEC|!mDHPz?*M?_^5cF?$~MyKd7_Y@W^O+D
zlb@F1CltdCzR6AcMSsy^uLqlDH6-a@mX*O2BFaDI`Z%pp`gOs&F#L;;<*F@z{#h;R
zEvw4UG37$_jY*@GMGijh{v1xd$*%Bs@rp``DqLfs`!_h<DtP0lDpv<6A5T_kQMlSl
z&uvA&>(=<K;~*1_#kR%389-j`*igu5Tigrmg5i!7=XB#f@Ms{pZd&00G`6wN>JA$4
zbx+_`EVW1~MV5I^K^L#AWu4)t49LaIr0wzuf>?daJ{-oAvZjn?xru1HxlIclz7;tr
zwx@oXi@tQf11!)D9$X&5m$*o6{{%pOT9!+T#gLRUUA_7qWv&atFyqT(>^6$S!dDY#
zBd0`Rc-O@KQx2~VQ)Zqn@Q%qq$ME1u1}DxIV>hMaXFO|bzwAx|5uCkurD~2$AX{al
zd(W0J@AeSN;M)XStzu6C_jo`!7U_wUDw|}*dq7PW#jDBlx!gaWaHMYRbn`|+zcI4M
z%1WW07~nhPaQ`4#x1C&R)AyzSR7y$U;CCDIAr5-LbGnJNagDTsbqCqv$Qr1yjBFYG
z%-}rjK}UGz@LC!-gAeB*$>89dJ_{gO>bGX|r?>2_9DjsL>>|n@A>MnpMj#yvSK!!P
zMqGGTwF{vf<bN%H3nfuLAm|jLm~1Yy>TyIfblzCIk4!ez#}#;!f%vi5tGD=uJ$kv3
z?a`iN^<ce3j`UkqpA%m+%fA?=&BodsHe3<1u=cnnZ=3vAk{c5~i<v@?e=~{Vi>|PM
z+v?PWE7cT|uWRbjkO4&h^KfWvm|8762Yxs~Z$c>sijKW%J~Q0aYRs(L=A+j6t_4}r
z-(@x@?xJQZS=jRnQ&OvS5;5Ub4gr4@#)pSV63tPz9-_v3EcZ+dO3%GY{2l{*$_<&}
z-Hdlu=cpiTG-2GAKk*OqBCU1F`A@$-&j`v=jBNiJVzAGw&?aDQa(&KR#JYfNIW@GF
zJCuOSntEJPw-lRxm`k{?x%Gx<V~5T5&3u^%Z}FYablc#4fKl%W9H$O7C`-#{7^H!(
znCYCJ&$WC5Mx%{)#8+y!MW#_dbxquNpio=-8^YVPBi^^>W5JJaxTc0ZvcF80Hzl9m
zk3&+Sf)E4E5BufPu+5;3qDU}V62>R6)jz%`2Q_wb4Cmdrb~D^NOb4lhc0OFeUjfJ>
zW0FO4_+p7vlirYF_u<vR*csHHj0563ym%%Rz1#BC#{=rPFE+Dsr4H{B@S)2<JeK;^
z@wLm~SPoGnBw-?`7l)vZXjWe88KK{uJ;B9YexT<-izakAXIH)(cODMZ)H+VwJG!63
zqVcP4Ai47TdJn!PCFswpT1AB*>H6AK-)JD2cTuY;Ld~h}Q|}~lEy|f;nzf4#S_QI(
zO5B3{`k<210aRZX(#c|r6|ZVxmn#~jO;hz2m7hcYpn-imT1^#YX(=i#(?+P8RxQzL
zNvbiitOr)@{R~ojf*j|d%tQ}~`xQ$5D)91O5{4G-)bE?_ri1rzWv-j!#_X82SPg|O
z8X3xOp7L<%b*v{TG`KoGU;&*iV(y{fTRHlPK3GtS^c$kVnRl5`khVH$-D^+6@(;m8
z{gw`J=R1lAnQUwT;OjH?2XBP|^v+hx!jCgBNUP${AuHyBsEy+En2J!9kwwoXCRjyy
z*2c6cZ}Ok++IFZEea)*}s84Ln4xNzhLf9oi<_;2jw+DzBJZz>I67V&Ea=ht(E$sQw
z;rhc8jP;Sf_L#0%D&b*z_ek)yw$I76zPty+?^hFb#QbxAk!|s+?8gEYoYP*<Ucg<y
z&u5(D1N!IBC8RDV8O=!mK;&C`0HLx0a@&)WqoF`3QEm*@rKj@VJGihx?}%Dl_{~^7
z=ic&8+i+ep-NMAzj0}ss#*1BTIWITSrzI`c&cG-=N9roFrIy+$VF$Y*4HFe`*IVoE
zv`-`^0)6@h01yZ9YgGtANwsGK<Xy<ClizwDVVH9@`oaxOU1ygEqSsPXFHF(n8Efw+
zD!6IFU>+fVdu}311?5P`m>8r<7T_2WT^ZaDA7(9P?814-ITpkbvXW08cHa!b+A(L_
z;~%6mYQHG?`xaaVnzmz918!<DF+Hib&RTBJgp`fMU*M@Ophz0!(;NWuT6nya!)re!
z`?q!07A@o<7WH<c#4XUe?9qCVY}xp7?|J_tO2L+&ahOCYDljiqKj#92=xRMy)_1>k
z&CN)1vA7*GZrug^Gxd!Z2-$oNW{o*j62*7Pm4w9sFI$CFw00&=jppNMWpzPR`f<{S
z|1Ej^G5%}C=0;ZQUgg8Z8EvG~oU$nO<7`j#Z<6C#R&I{3BX7QdWQ|`nHDU+6oj9~T
zE)(A+8?+;xg+h?rR711G(MEAcapWl0Zck7JlEwZZ`kXJ9qxPT>oBJkreVuT?^TXeP
z4SVLit>T|Xf%1e#B&u$~e<I7fN9xowXNT?CK^r51_zl9kR``}jee=t6n0{(}7RCn_
zl9i;dJ-;k8(>CIGJ|x&|yc@Sa=Jc5wbac%8pEDsp(lPO2agh-JRNO%U5%o{ssJ>_)
zJuPC$8_8zGvLgHR3wtDLx221@lZEp4ozH(L(Jc8gt-}ab%b9<DwjXd#RzAPnfwyr7
z)U+3110q&B9tELjOjonE{`w%M&$(-8hzBhcM;XT5jNi(Dkc}u}|84W~5wIlFu4iEP
z=!A@U6#o&3h5Ft&zWm;}KRM@6+WAUs{yOpJYklYDj{%z?J`JrEe_R!?hP0~u!rVZw
zq(LU!sZQ}befr@n>{HQCD+u!;;&{D-jp!Q&9j>_W7YhLLb#^guY4iK8RRjg28)Tlj
zL4BElOG&rg=fz4@tGmrw2nbS{U%aEZa4T`@xLM)M5YBw&8Ci}GKMLw|qX4<^u0+pb
zMe;7$J7AQI;J_cmYQIyW!=Otzm#;JL=WEx?OSL0|gEEAAI0h>1xi&XTZiAJ2!22ib
zCVG1&Ana^YfBh9jT3rj<74*P5g`inF^}a;mzXJ+&V^zXx;pHE-GOctMx<I2OLbFUS
zU4V^i!?c204R^Gz**bGX$4hiLZ_Jy_q<7K_P}H|0$9YF-ZpPd{+J8&S^Z(Hx=?C%G
zLn66hD#txcdRV|q>N{nNfwaN`ha(8tU!RnANIR%k!H748gk5nikNiuD6kRcAq25g`
zfc}p7faW%N9HS+#_~YIVh+7;iK?=fG(hnO44T2*oymZzuUd0V$u3lZsTpCSnFUX;H
zI=+xb9{X}IgG=&)rdA+ny?z$fr99RTUaC#7QPgzBw?LbuYB@WL;CxP-JbuXlB$#|e
z(_7{9QEe&2(wn=?R;YZ0!97wj5idtaff$nnGxDJxaHN)udd_zC<{R~qe81kbwVgEN
zW&H*AOl#<^`k7Rw>JuU7x@Z=YY#f=pnd<>9u&4YE4&Y!-f1OAw1%R1kIK3OT*<SR7
z*Rya;{L5wW#uMPs2K?Og2j1dS^{Y?z@D+FdW)~|mvTihvz`*KeC$RPSdRi0v5XfVi
zJdRK<?5M|+&d)b{(hEui=SK-ItknP7V~oU1<QiEPSWIgiQ{>{&NdxXsQ3i>JfLzUc
zo4{a&ja8Fzb$3s$>ssL?vAI-V-D_*0?^fAhoEdoWs=>96frL%?7f-H$uW8vfv2Gj~
zCYC?H6wGpu!bFwjYJIi}E3ZTF^`KDn&QtDOaC~S1*pyB!|4zAO>r3=q6V8Q^gC|8;
zpkL6hx@}u|Fo?Hn2oCs(@~X0B7`3TKyk*-|h?xO{ECI#5ljZA(B6E;iv=m`mM_Rqb
zsr?@FY-|QPhb~#i0%`{YiK6br-hn1LCT!Te+X_3W9pF>(Uu#*lk=xY_Ep?x@jId`0
zk-R#EZ~gAH;PS(-6>+A9>iUu70BTKpgWvM_#2m+M=)mPF0-ChBCG(voSfX*zweRo>
zw{{RD?(?rzmU^P87EM7@&cZoAxf}`_tS3t;PGti{)XZnI1UlyPUtZ_`!1+?6HdXIi
z|LNa~qvvTx5>eVKGWe1Q!X!fUNRU~Jm5_4YSr>r{xJ{Vf&+3rDKs{H9OxRB+`vhbH
zWae1E)W2y*(jo8j_e|L^xlN9SWS_qSeMuL+uKCmy_0HXvY6~)?(<CG4e4HJM(vDtk
zya7-{L;3IxQAoq4j1A`Ww@L?8Xn1)5@#1-2o#XjE4nJWWiR!5Y(az>uucqJFGDv&{
zzzN3jgEV%!z+Rv=@h`5x7%FLfVIV$C2#mt|#zhW%@wSPC){gg<=+dO*lAChr3AVF`
zrf-eb;Win~$ua?sFM5lp0G5mW+><gGczq&F0szW4o$x!(K%)<4a3$LaP^05ssdeHX
zTU*$--A_5pCc3J<*{P+sx-68Ks!kGdvd#a2Nqnc%fqv^+H2<!s{?@}xdYL~FDt)8o
zS>o;8RT`WwZd#zOsu0&i(xFtZBpfohg9O`i{(NhB0-O%s`Uo*BspYDo15-7<$51i=
z1<QyS2?4x%VLiVnTvv@^uJuZuD7`-N3lO&c!yD`Ug1xp6)G#{dABQ97da)XbBc$q_
zCg~_iBz1>Q*aWo<(#e4GhBi%QHLRrzd`bESYdIy4YLL3yLfTY*uDU9k(cYMS4Az~R
zrw`NrRek&OtuW15z-43IprG;tEoHSbHq#8Z*_Zq<unZHmYk?$R(5l@|Cg9i}tyr4P
z4!&^QLD~oq1r^o1rRb5z^3ZroD1SkuMTl;zfUc$e^3I#lb~i1WEb4>FIiwj`BLW`)
zx@}%I>x{91j+$bngPHjzGx7MlY@KFG@nVa+IVd>}yv?ssa+QIrnMyHO%@A~b-Jv+z
zE{z?$%pM}%4=TbyJ@gps$O@yZAhByxvMA3a%-1lAHElPYxuaVq^e;7z3jokW-Tp^_
zX-&K?IHhu6Pe=P9q(2;bl6<~`3)=>{31c)%<b4{9w-n|4Q>7A2BB4&5Y!cLk-6h?*
zCQUdAj{$(+;wS@GcSl_DC4>pjV|_GU7QSQmaoLC2mxQ;z%7+6V@{^6=g7QZ=h6kXq
zkSLie&%#eW^tbdkQ@$|uNcl4fESPa6%F%G4vE^oAeafL0B18QzLhubveS+%5?2|zQ
znfd^wIx3v#>zCO7kuE1hBbO&qyYw2(ogn%4_3Hh<EhsbieVz`>m~Ao(e{MPgN(*f4
zlDpmTSlpOEb|#vg;akk<d6oGtjK_maEaRR>P>~!HFyru6i@BT?N~Q`XO@!VV`iY|$
zVQAWjHa4)^TN#IQT{WMS?i&d(JzWmH)Xuy?OBBLg+y}R$hrl)Wz_KF?eDl$rC;knQ
zyG&>@JBbaRQXakjA2~`|npAvudMZycQ(wufpH6LdE-V?ZL}i8#rUC7GN5F-b>O}@w
z>xqsyntqaC(F4pi1Wl9lbR#eS#T#-Zo_bI~w~@IxY4N+Us-Aou&W=DKR1%PWv}m*x
zqU@fEiJ>YaVu@qhxN5}2IFww}0Ft~(8s=DQC!qJVVB|-<3+GnA$h6a2NeVKi(}i)D
z7gdBSW}Uw0G`kGMV*!0v(z5^!+Gg0S4#XfQoTFmd%Wg<ks*^q-wfcvf>ZdnXgrCTf
zPW)j@Uri-pffy1)#t&fe#hK&|7jUyBlgIU`{1eFLWmi=hu$GE;j#k_nCT+?!QO*_U
zRUWg~tW+K-tRmaKtFi)c5FEWBVkKR8gy#Rwo)fM5`E0PdHZDsv-~VSvJ=G&;IcN~Z
zTW*Mv#IKfe?r1)>lNA6;!Oe6~dupa%R_2!xc6=vWPdateB^~tUa@j^FA+$z#`L9gs
z4tqFo$$k7SjOSpXZ%Gxweb-%lfu_Xx0CGFX?=&R$^b#+?xn<wFVbUOuz2%4M-Z1X*
z^+LWDVgYGScb7A9gzhB@4{ms?S5E#7!WG-RZRdo&nE&*i7ZQ{#)%~Vl?=5MAd?_mm
z4Q`U>a8lOgtV?YNP}Vh{0Cr`VSWR3N`5Vb&2!(0>Qj@fvEqd+~Dd&!ucF|jH41#W~
zKEm;vKRG-X{4mdPaCy9Ty0z!A5hj=IcyOt1+mV3aeNl>tdMAEbEZ$F^$FoO2(y~N5
z6(4W)c+dsKLw*!s694q5ijWPG9t(Lum!u>CN7egj$OHmjfC4S_-O?g6D@vZ?3op3~
z80(6>Xrj0WtrKLy%lTpIJve_UWb$L4U3I{|uuTF#aN8zF$F$`c;NZ%#I1i%IL2JVN
zPzj0<jT8C%?qYzbBTkBP(G-r2@OjRg@x!0%Kg}u39BfJpMie6bD=vrk1OWB$<f7gF
z_^&8#iOP#?(N6L=_cpfgMLBKSE{K2`ah~?M(cQS~bPR=J6_y1PSgY_IGP=ol*)Fa8
zWnampRD2!TLH{>k(QZkX!&_Kf*kxAC7~*@JAaCA3J^_G-HPtt|00l62t0b6Ek=T`*
zR_~^-;s(WW)z*q-=g@Utz~T5EM{vg8#-L*rsU)DTeLwD;(!rAe$TbeTPt;NGL?|?4
z>w|vSNq-ai(?e*sumeAAml7?cn>{2B#-bCb$0!jK@I0n3&p$6lS0@cTxdG7o^5J)}
zMJZEPpHF6p=9_wZe*|+5S?$Y&z+i-1z7p<f1oZNS6}D2?eoE5|htn36;oh+Y@*$Ph
zwKb?B8lWXQlQ-T@!=63(>9ovB(WH~6b=IsZSD0a4bM?X&8^r|*moKutsT^F=;Zmo1
z3N&k(6@~R9uu#!_?_24L)r(xDa2nPZPtcigYUH!v{N52r&I4;Sg85j?!v*oKsXICN
zH~elhnT2G=YatYUl~6YBtSrb-C{nmEhzCPY)FT~n77H&eHe}G;)xCIdem-lTa;)K4
ziCPboqSXV+#Tgez4QIYN=-Uf#CMzCxsu$NxkU0RJYgz-|Gf4zdc#xzqyMg?kI0=ZT
z)H&|F`+|A|aRgUKUwNh{$1m1%pLtrZJNaD14~?k#l-o0{bV@6ZzRa<JI4;1Mt@|!C
z(@6mv5a!S27GGe4GP{s&ryXRsnqbhEz4EOk8@M3J&vIQFFe6y4obA%>Fm+=BGwoQ9
zsZND|;L)O#2<s7Y4zNyLc^pg}$mdA0ki5)V*Q;dVcS20TY@6qPrHRKq@OzU72K4t+
zqUCM&^C0rSzB`{y0NSc`YCcuFkPE&;f3%QID~|7d#XpzLzntKr66~P=i{fp<8uTGR
zfk#Ao*RZ0)XV0=n;g}e2OR!to@k0ePmE)F9M<%$viNy!;M}C9oR_NVuqX%r(D&ou#
zG=w3FLH|!m^H{YVFs(X*<?;2F#4FYRM86k}6<Ar246trtaA$O1A<%3a`TZNcZ{hph
z*r#${k{`@oN-0`I6xrM=z}cSrJQPl^vzqYSJG6*WaMk2)L5j?G)=5B{zb}!NIOXt}
z_SG*;yjU9E0%nnJXV|3_V}};)d{F8oKf+njZVX|tSnvZUp`LyI9aI<X7i0!u>W!6H
zS*`CU4~>=2DS<R_64aExIhW=`{z5%I{Y?)yJ)s|Y3ffp~c77`m+Jw97j+Xz&oh#t3
zen0Ix5cAdB7F&syggn0-rw0qj@R)t+grgApi8ZR7TJhc1)6F$xSF$%<7*EozN=NB}
zeY;_Gu?C-<!Y{RVcAy~-AWT3pm()bfw?HQ#8eBTr6?Ub}JW<9k?Nsw~h}?qCBzlQX
z^V{GZ*-nKHbY)9EhRx~{a?o2RaQ_Dqg(6$=-~v-I&&uqn?&-H|Axs1U8SYZ}xmi{0
z8i7I(ZF;%}m?#z5+=`9Cpv0PB4JfmLqYxGFz)$sB|Li#LfaZ?`{i%SDE1$$Sw&yH(
zDl9uDzo*4_&9j-wKTXGV0qkg%&e5-RZn7qA70ZSRK~Heb`%47f$GL;eV*2h&yLei3
zgd<ECBd;tz@X=`b#waCG4}qJZl~pg>ZU0GQ0FZ^SdOl30vCV8Pw~lO!A0XbCi48og
zLdZU^Xj|&YZtYwzpxWgIrt7wgxF~<?!Zj;rFJ~%b0Ww;#^?81~%yVM}&+uceaSZ2h
z`x8)$4EnJnYjxdoD<`|i?Ipy<u18bv`i)+7um$04{0eV2IS!hrc%1LSjnAJQqgd}$
zB%NO)x;FK+0kinaXy0h!B-7sI|4uQ5(<(QbdQDDbZW&ob<dlrZ_0HJ*WRnxPS#Xg%
zBZV}D;nj(Jv4~-q|NZ-29V2LI&=W^Z>AAX43eQnk2tNxpv6S`8riOY+t2tKj#+4Oa
z{UhR|A1XUIVFFDVgZTqbBK>HL${m5-lv}EvsImBwKecCq9PYpHj~OQ*YkuPF0zL4K
z^+ewV=2yUvqe*-5ud1lIZrihwVQ(2iei|U)O(ibTkE!G^Vgp!Y<wku9Fmwmxq<d*^
zgcv~hT1BwQjq*d76o+`=EnbSQ6oB>`Fc8XnRfP(BS%bk5e@L>qh+LG2HS+M_O03mn
zH-;#npWX@3Uw3vOa-Zs$4*&<3J)AwN8yt$pPB<7=s_9MUS4XYle2r|UMuX5S5$OaO
zrbJNpFMEDEk=6u1jF&Z6Y6E_rpqW>6CU#U>@iW?5K1I5zlYeSECK#E{OTh~Q)aq1D
zPf+|nG_bRP?7$5?u3Rdp8%9-oI&|1c46@koydwJNQ{ttmtNPJZ*yx+#);nv?a4NTj
z;jqW&&+t@Ayqs=gRtXMw+EUzS9mCC{!7L8z)@y6WoxFvxEh9T<vCMeZoD+_0gZ2Gx
zOoDY^@+CHe5N_{0PJX7lkmJh(dnGXdvS-KG!@Pu^ie{4%Rd)$ph<hfUon_-=oOa^8
z!HBe#_4MAE3SSekY88e)38yw%KOm8b^b+yX0~ZXKDaz6{R9%u|T&xdvk4=Bo)KIBq
ziaJN9i20opYVS}39(qg6)lXDuPhTpGc!Xi7#6=~6(d2QX_tC(v3B?>(L0665CK5SB
zx1}_>*F`beYh~bc*!&1!gFVi8L$q1{`p3zh7)uP8u3SBHg*;LqaCwmuWzx2MmsVk5
zZmV4A7#l&Sk~`8WcTtby%X-Yt3n<|*@H8?$Y7#rKbN=uWe-dPNYdbFPQ~EXadv!ka
zVr2BZ(c8xPL<eh3koTo&?}B)~VEF5hQoIlX7WJjj)6=`LSUm^lO-ig*@2zwwc+1~*
zXz2~9MF=)#nTf|%FRcC)j&$7bjK*Iixwxs!2rF24AxD%UB~yEu66UM&!m%d}o2x6X
zd(XnmbiFl|!$>WQdh@7h$_860G7Tj3BgO9nyRK-VYfe^_N6E$w#V|Fzfqg*(%dYC<
zuOJ7#N3+U*ut6_co&Q|<%X8m5k9N5JB|P>l<}>quB|<@e(qJ5@v>;Sm$rQ$lvvT#?
zWAZu}Vu&?of2Mvzj4<h62E9EmC@j{qdozd+dfaAhT10Y>VzmB=`PI}riRz-ChQA!G
z-a8sBO=&zxyU!$uH$@N+C-vw|-lxR9??m{k;pV&k$z+f}to1$>jF0(6(-YbxQO<2J
zt<pVU4P3DL&#T_eZ`dSLVqx^zTj%Yxtud7$9g(Nl!e(DX_R#BE;aELC)l^vWv)+tt
z;x%1O-mj7cVE6ybjge(%ezXe!%RQ4B@75ZIDP#;DPZ><W`tjg+Al0b}|AQM@{riV#
zJ`IF{XQAIWe}~sDE3%t0!4GGMz0=HhC3{`A>EE5*2avCgSe1q#ye+5HX*5k+D{L)p
zs)u$ZZ~Tx2NDCzrXE?LY%`K+TAji@v+S16JHzHZOvE`9&S=<M9H9nppZ6^PXJU{)G
zcqra}rgQ%OKT@9J?`N<llw?`J$|8eor@z_ZmkcT@oCkGIVx4-45Kf>ejcw7Yi*3hm
z2o~+ywGAHdDKGOflS@Le1^b!P>n4GeAGNQ|e+mcP-;Ap)shd2IkuZesVpBAa+!8)=
zpe12F6aoX<3@m&PJlD|w1_bCkxL&J}h7b@C^m7p!5cU}dtIzLPlpm!?{lG#wk_KDO
zvO#(#NxmSXL_5_Zfar=P*}BaJ!9a{0SkRW~2#8FNk5H2+R_$?d?4$wBldve!HwQGH
zkfEvrH<R-Jibv!-=fUTwrOIu+O%A%d^j$wU%GgCjhbnNYuhM-ydm$<!vLe$pipK<~
zuY+}scQdX;KYzp89YDB6*n?NNdz(4wVz`a!9dj}Cx+dV8;_gIh5+C%(VO<kp)z=P)
z=D!Bht=8b|#K=4HAk)_Ziz?EP1d@v|>x8Nq4Dw{3gs~@P!Eqfu*Q?BPf9-FzU<mrT
zLJX_!H2AiE%CUCn*FXSnL`{8^Xuesf<-<q9AbgR6P@v`W6(#@+0S@LJU)j66Du5dB
zBOO1IKOH#blxt)MPxvUHK_cz;5eHDZM(JLae$D9ruhj1}9m1Jc`|+pe;(s+s+oDH(
zcz`bLZCvZLzEr;JJ5EO{_Qq}bA?{T&ebTbQcXT~M^k@)#=G`cr25VuAF3OV)^^5bn
zy>-qP*=%=vf7Lx6uq?iwOf0eu5BS?JC`-}XMX>K`@_Oh2ofl(oGYJlMv*+3H#W)fn
z8rcIrf(;h*ZD}zR#l~fM^Cbr%!Xx+<_mtNS3`|p*QUmJChMi5Tuu!MZ?G_cL-F}=>
z!ZkmZ@mp-bLrd@Gn0wB+pWRYiV2*Xb$OJ?<SA&RFz#WpTKwu#YuDp7@(&uOEss`7;
zceQr{+I}rbC|F~|_nJW+${M<;q_3c<A8id%VO&;oPjPVHG#Wobul(zn7Jcxu2Nox4
zVucMa5|S0RC#<F;x7`f^9?~z+p`Yc)_VC3!>F3X@d~P&Bmtojkq1OG%lYoW8_-(RG
zl$Ou-xOnHz@RO8>OURxFpER_ur~?t{<D>5n4zT<75kV0tB%l%bC8NdV#r*z0%6ZTA
zWS)4J3=yY(MPY$mGDkS{`_W+i-uJO9CXiSX*9Wb{TlrnZz$XqDdV&xvP&<q%dPWZM
zt{0fim@oRL0E)@(EY|7|!69tSl@OD$sDH%9YWR;|6T9X_^_8BAXVv&%?L@`upOm}J
zTB~z|PcoAJo`Ch3nW1DumC11qrm@uBSZuy&2P-ILP1DY8fi?5Azoet>xxmglCBZ#W
zTQo$PfAzFbjp2e~XhWt??_&hy8|2VTX=hR6@5wu(i=jS5NrY<$9$;lwURA}vFXmwn
zpL@h{0nCtgnxc*0h%G;a@8BMq@y(~b6`XTU+oC@pmjvjmNN;PP#ORi}^Nez`oH#b^
zJqUe4yuBtMQU>2><O=i&VKWh3mg%Dh;VdfokE`??gDvUizu4`LtVZ^U5!U;qR4p>x
zrFwr7NW3R>OPTF^6~6=qilXg1N2x%Q;Ex-RYLC)u-^Nl2q56RT^9fG<ZQ1*~>SwC@
zr<B~#o_;}G<kwLj>Hjo<6wxCTI0J!u%(HH?fAaYtG{FvfVL3#~cPA1U+)Pg%ase55
z%dWWNF@G3=w|Yl=Ji`*gW!nK8V~SQ0MF7~Js~w0($4znSf8fmLVEGX%dr&S2;Y@`Q
z$O4t}pK9=Pdth(vtvTU$fYOj%;@)!)2&-WSV=#j7>F(a5eVf+AJ0Gi=3M>@;O)iM=
ztE^2u;NH_gUUWqRIK%3N19~~e@O~~AW!f@jJDo>@6+gdZB`^qaFyn9n!|YXf?92e?
zY44(qIx3Bx9@{z&-bG(Yh$^|MbNslQT<OFyENa7u`-3&>j#0%Nb|Zy$sc@^$>(sUL
j^<2*u$qv!Zn`=dQ$m@Wo$V%|A4*)z<(Nsn}w)przcCP>i

literal 0
HcmV?d00001

diff --git a/oxAuth/Server/src/main/webapp/auth/passport/img/google.png b/oxAuth/Server/src/main/webapp/auth/passport/img/google.png
new file mode 100644
index 0000000000000000000000000000000000000000..f92017b3bf7fe2e92e12bf5bb0bc2727a5377a7c
GIT binary patch
literal 105019
zcmb@sg;Sf|^FADc1a~d&PN5VCQZy8oLUD&8#fm#5xO;I4PH`w!pg2W}7mBvHySx0-
z=ktC4gEupooH;YO?{ikJ-Mw}r)m7ziFkfH-000~Xd58u807NW-0CY6O&xP0Y9RPsj
z_fbYhT|q{MPTl2`)kk|v0Dx`0IDt>8SDiRitx9835kw84dPNNSD7En8-M)H)hGLcJ
zZ)SyLZTW?Sh6u38H;<iyHFJ{ZK*u#&d=#l1$i%#q6bk$4_ab$C>ORV)HrnmK_h&~)
zcbQ?fB9Htqy{g4qH${E+YQ=oH5PU#FUr43Mj2};0cg<<Q{_iywo}->+^KV7M9Qfo+
z<K?MFtmBFGS?)?s$zmni8-%y%RQ0!#XN?mia5!q3{}aAF*%?+gw{q%F@c|T0@n}7!
zM)Rx>!BhgVVGI88=}eVcX=&-K?VEJ*uQd|#@&a+lzc7v&7F$bPGk@>kvORd$VlWpp
z8uyChAoiWZiFT}BY4s_;Za4lC^m=+S8RHpmRn~N6$bGpaZ~|#!-u>@5<LqHW;L01P
z`Mt|o{f6^UpZZc+yud+RCy&Xg&qOQPH1QI;U%7oX5-QYY17|f&i_l|!?dLZ>=iUc+
zj!$+VV=hW=Va_drN_1)Uo`DZnZl%4%;9G<`Fr4J|Tmb;wzJFh&6i!@90N_bP0V4I@
z%lM!jWcoqJUEGm!JqSy%{o2a+-nP+pD(k1m;vD&u0xSVvU!Fd{#Y_=~0_=pMe`E@j
z+-YjI_58bE?b+U5eqEht^_p?_9)A4C)B5dKY_uv*?U^@i@TIKlrD@OO+YZ;^7VGW|
ze(SMpVOPQ95e&e8t1Ww)Od`O)y{(aXvDd7C|5h3G-ZrWLFk%n!hx3VSfYX1gv8{Yz
zq?LbrW7(rJuE4JUJuWMJ3kCLn55^n)|K-7Y?;L)~j2#4K@Q#kGMpE#uZ>pIQsR2z2
zo$jZ3t(NV!4yR|cAc7$LWEaOCX_|PfuMo6BFLK6TlKKgRG5Rq;#@-;QdX=9|_`Oq;
zCbc<nyR)jj7qcuE?VJ1?;_)zeJe=R?<o4F+Cg<kwg{aSR+VbCf2dn-m-p9mJ@zPps
zWx28Mpe=ph_y8#7HShZVI7;Judnvzl=}&|(v|krWj6@MJ#qbj+kjvxieNsB+pbWL1
zNqe!KMNqUU@QUW<6T|jrS1b5NhWFq#Glex~Ldy0T$xZ8-KGDbH7r~K3e5ew_5}yO!
zd)Fxh`j0=%d>5BsG+Fc;Bj~P`)_rd*J@|@~TnXc29D3kSKEnOH1Q!#biI<DjJbC#9
zU?+U94Fc0ekCp9C;M0CM`SX|%-)Yri!qeU;dB<)2&h0_z#93K<!Kwvq-;jhi?N$5z
z3$fGciqk%v{krSB-(C-yT3+`4!1&78)m4FasMoYcCc%GQ9FN`YF7?I3#~p5V?k6v-
zX(7X`5;4`CcjRcDCpz-WSKi72>)OhG_s4<H5A-LU6379rWVPosrq?tpHwt-$n&O>)
zS4%XvJjh$3v1e@<8VoPkY;M|FQP0|xRe$mgexmD4HrEKK;euKpZ)H&mq9WjBa9`Q#
z#&C%-l{GaOV=yO4XXIx^mgvv>ZczrI3CZ{j!d{1J>|funYg3^%HGGz-@Z4j2r4ZxZ
zDJ~Q-NhkQg_v8{T^7L!Btx7P$2I~tb9t)hG`-Lmg8h~BWjIzR(-#<AD;VG?nvl@Fn
zDU^UV1ujLz!%;pBE$1byaI-ME<YYJGX2*vbYOuE~`QbTU7Fut##)z3<7!C5gVY(;e
zwhjUCOGotS)=-hTs5K$KagaWe3ml;RadS0F{xBauarX%ANvv6l3O2d1`*S^TJm7!a
zf^=;J6*%hj!J#p3ei2_?)ywGq+pAI}NTyMWs_JUprYGE@4wEW6b={_jSWbr1N$h=4
z(;i0yE5{_kOF6j)?3~0DG?!{dLxx3-`P98S4=K3@>FTQK?UNRq)f6!MK>U!vfTgeD
z(t1d?gx+EA=>qT745YS=CvafT_GB<qU#!6l=cvu&jfbJ9KvT!L{=wt0+Ip7?T&`E*
z;Z5t){&GUAX2>w|H4p>`WU2yW7#x!r2;XvTG*hH3+kEcKLT4Zpg{p<3BXbii<@}~K
z3h;N(;~f}zq`S3FdGKaE{M&G?pyKKEQqM}cg)jcix_30YRSo}UF!XSLzxcsIjVx&3
z0>}wqQ~KvBh6tF@n;gM}vC693vh*<QOmOd1x*BU`jbCb<o1>^XXSsf}vheUuAWKKr
zY(CRn4&SIg;aRskkzuwR2mrVIIU}f9EshZ!pcqp65U((Ah01jQj{eb%z8;Cbk%s=R
zm#}@g4f$qQjrT-tS!!KHXm!q7JW?)X&eMqV-EElu!Ge118%o=gzE*IqE_FYVyEv6G
zbzgp_3sp?&iqi**xB;EKGArhVy`PiXoDeF`fuRt5_wSf03@G{)$S!~4;}!s|`#_u6
z&-p5Y1`5W59h~2#CmDB0^Cu{Ik_R|Rh>^a>*(9&~Ies!yHz{rJe;L#jPD+4ES|y-m
z6H_he`k}><(xMnl@v`?6LJ_B>v*P4HlAAEz*vtYO*zcKZ=ZKQimOYu+Bd5{J>gv^*
zH5>Q+)RidljNba`N$l101NF+R1S(Ant<4*Zi%2ke(sF_k6|ts0Upnu#>Z0$))1q%h
zv&z$lO%Lbc0<*>-S?xY)eMe)CtnTzBs4*SolAR+)%aKCufIBC&VLxb7ErF=g#fIfX
zBWV13<g*>4Shg@{2?EqBZQjD=$!w&cLl*s>nJk8HUF^ZE{V|Jac5IaLC}&*8Bdk+!
zvVs#-*DYbk_AXzXWBTBLP=DO+;lusK(!>XhRo@E?zT!I+>N8#53GCN20Gi5y2{mZM
z)o}n(oA_y|*Mkgg-;rkrQM`#O&Q+CBII_E)Q>_mPu56)nwsg64$Eft!C}B#o;>Hqb
zqJx*PK63PAGMkjAABE4F5=!($R)WPT>Q1C_<kbnV0ira?^bV@oKo~1MH!A&SRC?p;
zlKj#Wqg7#x>0vivpZns)r{QfkS&j)pF0J(0<VW?4@1+sJHmD1s7q=~U7FZKxMiIt8
z%-se^hh5XqQ!!JA?IKU`PwLfm@u|<e7uN%_BW|3(i^N#CJKq|uc@+sp-Rm&do@X}B
z1+2TzozFr8Etc<Igh4O)O~(r*4H$U`Q-QaK^TiV{%{iHc!mpW_h3rNcE#lo8W&2YD
zd+tRZmk6)C)llyr{vdf14!oW_#c3hs44U19zoH(?&cXNxUTYL@@-K@?b3Ge?u+eV^
z0&1A|ap)i8G5Wio%n84NjqYDe<+RA=Ym%*R`Z-+Pmy-xe4K`A=#MP(<u(FBGeaMR5
zOO}zA{Cc=Y`t=j==mzy9_&EPs2^t+t8$e6b;fPFQtP?&k^WNgP`~_8cRe!fUdiaAD
zc&kFvwd>`ihy0*W5Yqe=>M$R^Zaz724^70NcEMwyF2>!ubZ$N>Vd6`Cpb_k-k3m-F
zfrEaf8H3&=a_k%As7_HT#j!0^*EJ$#I|5Dst%<-2-rT{6`l9}s&FhbGp@BCpe35Z2
z$UwRcw`UV|aq}z}3q=RLnpmR~ct|iGCYv2nEp2_maZ59Nd5<r{V2c(+vvGeFoxXz|
zg^zwOdvP;Kg%d@Gx$;3QB)QQ!Th}0*(N1SI@^_=x`+xzEj*i83Bc;<BBdzpVG`#nw
z`S~5Bd%bIjNYb<P4_OmwZI<lOc*vg`jHVHF-Y9$Jcr(BEM}^e3U79G-f!wrQoS~b8
zsnnz|0@+2qaR!}Hedt5KTr-K5(7iMiR_$^lIcf33x%UwUyJ|E2L$cGDvH0A?L;=1Z
zN-nctHAdj8ucKZ-SmhxGpibJPTy2wfe;SK^!273&vt!C8H$?*ZO;XI--1JDt$E*3$
zxfm#+*Mm6I^R<cdMoDKsGW3DxkLM@{m99Y{!9k)fK#n<6g66VNieb@eK4}`wmO*-h
zp56nFAHW<Y9VAJC#;H@#X)YWl3&0N7=0IcqRf4`l6r`Pm`;vsgnB@acqT2|p3d!jA
z*BX2vX}9F7qfFpb(Wk7t(qyQK?h<48FRHUyVzF^M>Yc=KIk#c!>1q`Eleh_u28F(5
zmPDwpJ%PyD);U2tgYlhgpBsp*khS*xB&}{(KxYJ{_ff+4G4(H03iQu`>LfnFS}w5>
zIJa+nq)8aCe{NnPqI~1<@dD|2z8*x?qDUGd&78S@W>6DnUg0-RJv(ha4)37FF?lkG
zdAPan>b;b_H*0}XcO}qqo0}@9OK=N$zCXIllXS}_rDw-)VbIZa^qN>~whWUk#22#~
zdA++Gx%^oRdC|ub(v`d<hlkJy)&J>Z+((lWz$Lals1$RaBZvljm-g0J%n?23!Qu7~
z<an!idf+VH{Tpgc#kN<F$~VTd%Ay2W6I!PWHmBuw`KL#ni7PT_T>G(ZIH<zktFn~}
zq^+a)frG%`2sQJ&)!|hH#RqFM&_d&FT7k?239$<{2H)Edx6o;Y4yL)dJVVwGX^di0
z*1G5k5S|ZmPMtCZn;tDq-0B>Yjbdu(Sxlc8FW8y5kCogMiX1ZUn0u}f(6cHP0_zbM
z95k_OMaMKiM<>B_F_e{gzx2{LpBv}k)rz%!%JnDGpiieMc`dfy-JV{rT0?d~4?q)&
zJO51v+zsEs>;2OjNl(dKPI%{=Z;*~-4FV(}0V(zG;RzlaB`#TuSkp&EDkFn18Fx<S
zye6vq{ReO@eVoN{I}Pj8flT_%a|g10D>9fq$W%VWP#?u8^#K0)UZR|7l$0gOts`a=
zWBKj9aJP+`{-nNo>WHgyGf7*;S#8Z>iqMnu#_<6*FQQN&neQX|I{qG{IV9s_)Z;U~
z8<%t+@`e?PS@?3%l9yp1(oZz-nr5cr9HJ<8<CJF4toR`W`mEjHf1TyEwodz_ch<hE
zcM?C2g~2B3Rs}Ak@P?s?>B9$x<sWytpqV;hF)kG54?no?JAKUwe_*v1`hADQy-Yoi
zc3UJO;!9W=ymx89kZP(|Gt9fEX=O-J{QP%S@dCmmO?u&C5-|lMa4qXe>U?`h<GoKO
zL4SVqB?2ix74N|>$1H#*=pHR}cEeaEq;HxuL`*pvkaa2x7~H16(Q7Nz!t_u&@jVf3
zjEeY}c>Hs@j+<p!bAl#$fAjKI|M6_`N^WkCu2aV*(q5K#=y)a#pO3C@nZhV2F5=@y
zy1BiH7eq{?dBRPSS7gKPTlLL%srj;f8cHg}po(5E8!al&<yxBfhf6u<HHps9i|Sa0
zGhBH+n`D=1PE*f7STMN#h&gUT2;vxp6&*_|lPYWw#s;vzZBSpA^3A6>um&}3+5fy8
z%O)B4uMV+ju)MoICrE!Gq>ZghZ`y6)_C2+4U;`#NKb)$0-0z*BdH;(%hic2j8*e^N
z>AjlV_|^)&R518i&eQCm%|vS0<U1{%31#=Ad&*oJ3yjfD8mw&;N<{cuP|0nPC9ztt
z5$lYJ9im20hqBDkC*!nSU{qiiG&>T)J|16{aLv2YB_h476w#dEcOOK>S^FwnoL)G$
zneo0<QoJyV=#waQ%lNi`jo8TT!}V)AKDF>$<t<nIb_VqK<b(H%<3DCMuIrZLms4!w
zu$ZDgsd7oXHYR)n5&Be6*+naDyzInFycb*A*RSg(#rIcvx|#~$7p(|HCXFAMlU5I8
zozYtDcDI~s>7c^v5RH06>kB%8FN0{l(eBs_{zWAYCSt(kW&7bEKb%M^k|Z$9On*<M
z`z06)YnUl3&t51g^<9guH9ET67QoE-C#m(3sH-;Df5~c0hy)W9)MubiAX%F3+H__b
zgq!kVoM@?z-5~VA>=$_ukd6~Y?JMmuSx*|e1S2`gz>*iB%;XUz-0=>0bl(L!T?uoy
z>0pU#%G8KFOUrNcK^6JXDSMU0EaFIzG)A=P_KIne94IiG?vM*P|8V#D1ic!c1AoJC
z)wgch`2Gm1E5HpCsMHXe{<L%@s;f-G;XNruEFNDAw-7mF=<=gs)EKewjhmgH<vUjC
zPL``k5L4(Z+ftk-R3io4QEZ4Np7;iDMs-Mr76|FmZ_inp=NT~&gT5~z8%WKCPLS%A
z7@@12wX!l`P3kgU`^u2F71E0t8iX4icMw!H2O!N|@Uyet!#-57i&`*H>E(h^6aPXq
z1RK98+^)kWo##vDZMx3n*I3_fKr|!?x&}h)k^2zV=uwi6U=pINN>E`NpU{-*h6J|p
zTNq70%hF~hRZ(}T@bVPGe+w_WBz`n59#HwI5Qj##{f6${Q^x@8`G)K@bR)j5wE6`|
zhk2s516OX3VUCRJhr%*L!%elcoDH7{#gJTDK79i^4gr1MLduJ>1@s)0vJXtA4N5?o
zi<-W?gu1_(JAdBx8*8>)XNw7ME9kdjZnSfqO>GB=a@DE&x0lrxITjvgnAUi6Y%E)I
zlq9uXdso7|73YqHNLr3*Q<tU9WaAxfYpbxOpMnBmpg3Cm4b(sa^n(}lZ0J4~Bs(j*
zK`;ual#|$7YtzWM!ifw}B)Pt=-DJX-ZlZi%ni_-9xbX*6mgjwwz_4IRwP4~7NA_9<
z6qX|5SHAhIXh|r;1*SHBgp384@&{r<-NcDpsb7b>HLKM22%WYn(f?P#Qs?cqTfd^7
zQp@CbPQ6GgawF{gW*oRXWgQIL<-uni`TR9AN3PoZT%3Q1dOrH;`9}Q8|A5h}mM2gq
zl1-mc$}O~ff`UVHV3~kSx~#fOzCclK<@%P%76(%pU4dW5*te3{=(qjTI1#ggz)QfH
z${Ex1uFCl>%c-AhqeCjoh!>DZ01us>z@M;;u$}5rf;)+a$xx;hEi^=eI<@a``{f_f
zfR{bSCf`Oa_I$~D0^+3ST(4X?^Up;w4m@AiGQpp#O3X`Kx0+u*JhG#)VRPLs&g0vY
z>_lqsNe=V0R7<=MTy-J|gK%MMrR?VQb}#T|S}y7~QT^@UXkm$&kwhQpF*`6Yigu{5
zJJ~4}kIJQuB%gccotU-#sryx}=~3hD)Iw}Z(wTg%A8vfSnOin<E9~0U3I&$f7{YJ;
zga2P(8sDLqe{FlOQ1$6z5T5wn$HfqR867nzUQM`5K8CR+<5lYXl@GIs?+pRA-@WME
zb2r|4-9qCWWz?EFFD!Wyrb=m%D)RQ68xc;kb%RoGq+{=rpA?xm{m82?%$QaNY`{gD
zQ}U#L35Sy1lu^_e_z7%3c|``@hpDp@m-Hq)B(D(gNbyOXCR|Wp4~yqlVW1Y6x2D(f
z7W8~qr7uZpW_CM&@~|^QjU-_WUCc1{Z6#lI4~0k8!c*Xj0igSw15YOTKg5<J$P+w$
zm4i4zT-V~X5^dK3#+*Uj451%o+3ZP915CVmOoEZwZ)x60(O*kSip!t}cjP@R(GvvF
zH{8wl)Du#>YwZ{lNy=53fH(zzZrfc9xmK*(L=4nP7{~tI7g`w{5RaOK-twH>Aa|KY
zf0pqea%0Fk`uuf>54ljoQ5ZH65%}FyU{eq48w+L<Bj%f(5xsZ+Xu}`;A`+D71loWI
z3MA9FHx-nd7ga^z#iE2aaz~y*$OG5;hXy9y`D#xYaSO{vnz2N6C<{FV*pNc`-~FL^
zAt;2FJC#O}GntzVD5Ql7a>*|z3AT(<ig&If0r+RMn0KLc94?x_(1I<cH3&c27G;tF
zn#yuRAO+i!-81YfD-F_KAsYmpkx4lDNlaKn9r#Vm`RV{-X^dIMtzCnjj_`R^W-qKK
z@sc4wjz}WKBh;Ewx?M8Z?C8Zj`u)81og+%2#~9UMatCvO%+u}iNE45j1@p#|-WPOr
zKGP$REbP($@_xw9#R_PxW>X!=L4WsC@j?fc7yoSk;>VR2#*5x)=RQy7I1pJueJim{
zqj-!qXky^(on9bKC*Ej20JmReu3a!r?vrk`uY}v1w*jZeU3GFr%2DLxDK0~SAw$Ni
zSMQ4YGrrlDqx1T`3^fE*YoPBSS&v1TBPdtS+{s(LU)NOm^oY|P0Mb{?MW{jqI1-;=
z;JHE&%;W)E1^z_r(H8_}8M~=XI7<8ixp5b7s6JaSg6t3YV@*;SmhZYPq8yxC*4Je?
zYFDEa`}h7PM4Cz6k(9)JvRnV|io_V8s#G6*#0KEXNcwC~)XMyueM6Y&<3be-Qfv@k
zd0<zj&IY5e6PqV&GN6n1OADFbk_dk^<aapiI23{sZe-_PH(mLkrSI00&y9;PGrW|1
zYWsP~P;@8lJy#9nN9%GU*twq{PuyQ-y=l40)r9w2cvRds9h-=&$$8Ba*BbKD_Lv$T
zxqo194UQ%@%9q_ac{%-l#3)kZkkFR!bqFfMix+Do;CGaLPg?H|^i9II)E<RThT*_b
z6%AF{N|%g{81)Wf8$t=xu4D*cHN_VpJ2O?lh;KdifpFn&x?||}O+#s`D);k()kHG$
zwb+5?`ODt%L;|&;Za?MrMdSt=P}2jNgU};2O^e4Hni#ZN37Q%2C8odt=auaJB?i?t
zKCV7^!l0pidqtS*U}#sU{hY~2z|&GW;e6(kDK5TUlAYT7mwiKh=C5bb`G#G6AlOd0
zK5d`gA(fH8VqN7gZ+_RoJS2AJKg~~2Oh51)utMCl1yqJ>e3`5yn_t+@NJYQT-14^~
z1gL>p#t#z%964*ZFZGZ8&jz8T58Hh3alwI#Z>JsMkH(?PY5Yh&z0pjBCM#y|0?FB^
z7)?9Lenh4r2TqDL-{p+H@gdwecLSxvhTMpDj?+z9WC?)EEW}2Y8_S$QH9AM`a426G
z!!R$~02^9*P2er6KC#jS*KG4oyI0o0;pCE6SJ4T?^ggc$`j7V5XgW{dx<McJyMpmD
zinEh7;@o#FqL6-dmSGWpLkqp^o=Ns=AIi^*+uV!#d+U%siD|Mp?<dF#*lL`dpX+cJ
zVRJ^mz_@rjBcbfcCMGA*U+Sgi`^(){Y;cw)xs+Gfw!`Fe#VYG2w%oZZjFyqnJ<Nje
zu)Yjl=6SCV>upQC>#qXe26~#SeZ!RNC29RdeSaRGoM$&I(8F{~?lLC#TQOVl?baXS
zvorbF0d55naqE(8=j9&A79yQjmRof#>GE|j_X#n)Ss-oMFa3mNx_sQ+ag06aZ>)5N
z`r*^K8gwlAgc$y*<XC#6(=H#zMl3+OWPQ%tj@oOwC!lF&EF%#Q@`Yj@pC>QRnwIR}
z-j;Th-d2x1&1HV+JN<@tZyP-4I{M<^X{9ZY_7PMIP17SuvQsER(I5kFx=TKN6_1hM
zrOlKdN;N{W>gM#Iim}!c{jeNIlECppkB@`&gJ^$LudNjc%07b`E!oU)c7{)euaW<O
zeFvfmbH0F?9q71O=T06vhA4VfbwTIvXE#+fP@DofRT6E{;c=hb#DY&T<|&ie*cn&y
zI>uO5s^O~>CIQ%@`_kYJp8VjO1?1udKMA%(p~9A#K?ZsPqK_QAU~smh{Jez{!4Iri
zds8K%DG4D^YVa^Wd?jhX{hip&nBBxfqXA6rnCx=ct&ait%8D=O^XErDJ48;))YbQ8
znqo$Q=fmgjJ_sq1o^V!*T~X!&69iJ-F~4_3ym9Q%r<~&k?4lUOfZf{ff%}lW;<^$V
z=xu@mAfqCLNLj4HsN-C}Ead+xd#&xGfB!MNoBd5RHBo2Nb@K<y)S2~r<BZj48Y0%d
zFA>9SN6XRO&)07bZo5ErcBA@KhFZZyYhu^8im#ImG*ybPx&_0Pm#cU_5SbSV23vSI
zfpK`NC`vZJaOwxqcwh{jUP(rd@vQX7f_k;UE|<1q9+xlvw6vn(`9G)yE<XTmR=@VQ
zYe<1BWcTpMI223rlql;t6fRfXq_eJr1Y!mnUY*`y^qy5lTcyU7b^64TH>1>Wgmi%O
zt1y=+g|nKsP`dmCwFB;u=UviN!xDw5ahu&ZH18QlEByscUb!wOKnU1lelC5<PO+{#
zUJ@ZW7Wl2=%*qH&7m3Angc$p)Gdw+suLS1o-0Y2dt+d+JRg{np5DC~^gimZ;o7IX0
zRfo_Xx(B?TNnKBe7*egwQg9CBfoB6c^|m}%whvZLl!JkJ0vb`NHf3YFD=|SG@+}cl
zubf7JvkE&Ekt;S@>{lR8C%<0X10s5-<xG95y9p5QMf@`1sxSHuF_IXQv?*jyEz^B)
zT2|?)gy*cbEI9ph;d<|x7i3VPbB)eSfBr0}D+-8ZJ%)+Ur?;aU=2RgHvZ#0$<Ob!L
z0%SprOUWgN%8~~Eh=IQz{Yz)aL)kc{rZmnDQt(KRM7=bAEPW0SAjD%f2kTOHM|z=;
zBGKLjA;tXYCC7MQQ2!wxx9OMGC4=&qX4n`6wRKG^b0hRGu!(lAd(|x%Sz7q8URax6
zx{E1&tvn|9>-dI-;aR$-SaPBwHl%!lBj^(HTagM+d(G=LthbIl&cv0G#qk-mGWnMw
z>c03ZQ?Yn)@!MEC52+dIYGsER64M{%)a&|WRsu2}1hq?bs#|0|uP&3HV@wmaeJ&IG
zXB(>gmgud|r?Ua+1N}cu=Kj=-Nj`fehIN6-ag|>^$MCLrGvbc`BwA^VtqX7jj=o$c
z*-fqeoI9SMj5v6H67uNWHuB;kmYpsCO>U?ayY<u3M!!Y3@NQC<*@rXDJkJG#rQDyq
zQa`GroY`u+5gjnL??^DPz!lfTPcJQ5x;lE0M@^NhuoHv-$x_DXl$U7$Ih$IYW5Xnf
ze)&}lTAIaNGvr!s<1Wz#6%F$JYf7F3p=8#}i1rRxwUYD2uu0ENp{J73YL8Z70V)_(
zdk??6^>fOdfSIhY4p)N%a*1kYweTXL>0VW?wQHwJ19N}c8b8L7XjUh}j>Vc-g@H+e
zIUyog<IWMtb-_0-z`$9rj?j2_Uc&fY)Yl>$i6n){gqKS1UEL%!Bp#5io=<&Gbj2dV
zAOLC%+J%rEg(HQ?Y_x)68!T=@bCV*wc27uZUhx{Hb0%j3VW|kmq~@<?;9qfisP~`2
z5YdW<l3jPS|1)CPP_&4-)=q?WIba7r|ED9ns>}ff*IOZ1j2qHCAvT~;E7jv_u}w{@
zVz*QXwL6K8u~uX<gU5CMgO`^(PMrVNl;oq}6vM<U=VjtwphkC5K&<N}J)d@?VY|hf
z4M82yp;Qg7+Wzr2r<e7)*3A5OL}z=euI_A#0)G$vMlK8Mjg!Q-Uf%)HjxZab61_Ih
zY4B$^U*rv_jd|@;SLE^I8=BieU*}JK;Rp%1{b)gZAdLK6P58?sXtj$F`z8%$H`VOw
zJ(pQ*^M&-R#<={vQJ6M+a;i2WbhVr?HrHoeykT&k3NHnWw4x5FgiyBSGo<Vg5J*aO
zxik5gGXPPtt9}s~uxzH(qe7;mx-8KY#E;AzLn8DrTlfNsx7c=KQ}P84db`!}+iHyC
z<(@8jyB@F8k%HOBKAZg|tQAo-8qpe;e%tJx<UZL3t3oC|(eB&c7xBy<wRQ!Xic?Z|
z5u=)Bqht||(lH1t%k@x;kP4E_JpuQ<>}i4Zxy2zj6sNQc!DFAG)Ym4>xW4=5;KUO<
zld`eGtth9-e|?rR0}*jivQB}q%T=6j;}AZP9{pVFEh}Hwn$i(e_|a!-Dpl4qOFsB^
z*9bPRLc+nXfhOg}^({kRd!z+fz>Z+k;50!KS4hPKe)P(u4OJEV3EOElN76H#0Ju((
zL;9r`ShV+13074oSci7K32p>f?=zt?8n@51j-4+FjBV8jBk{sjr~|<$MswLQj`swk
zI~K#2KGbTyedDAGXbgAhQ)zb~SO?9@Nk9Yin6~cx4#$g5KQ!676Ws5TQ#~M`tGBGY
zbmjNt!P6+}KlE1`q@PZq_5%hsiUN!tYzs7t&$EkyvuSkS+0rI=oo^hcn6NK;r(-91
z#G<#=CMI>-`!bBgd_z%q)~M%w&lMu`#381x6D$LN#O`l)K=D~9TGFHMDy}V#+6wtL
z9~U39?>uAKq9KJO8CX;0+q5(cwLYIkAj^0^i*yN_<;7UbkKEu|AgnN<3V%Y+&pzmV
zywu?3h^^o>ZuXz>rDK0A(V3amch1^}zs)X`rpH_ET5WT|jeml;U#y}J**$*@xD>-g
zRn6frd<er$QB4ANmkbrVTH19<s^dEWyYdGU&J58tJM>hm(nr(W#|-)G$kC-q&cK~}
z^d`|5q3LKD?1>Jx8;+fH8d2J1YWIXvVzv3Wpr<R%t}D^e0^LkG$vtKTqrFWVE9HI8
zeW%XpLsk{WX&&*K4m)jn@$q>-0fZ0L*PT@`<{=M>BI6vO&UjDcJJHdxY@qX}$13!V
zYu$>(7w(#L238&G1s|R&HaLEf{mK(H*`*kBmu8l?$8qtN)J9W+k!q?)Eu2kt+~6ri
zReeZ8x0<sL=WZBLoz|7XXEjmgQUMOA_#iv7U1!9-zNoJ?+tCrzdB*P2@J5qs?dYRH
zOkj%~1i*lLL%#9-{UN)LSQ)!4`#46S-Mk?D)TmnB$X*Q{j~ZO_V^B@+(s%&S>w%ts
z$x6A;t6XjGqyC-)+GDZ>$BLe3X~Wv?98KBq!uzf&L;^OCP}gk#&tqX^QH}KQ1{J<$
zg5-0i$4MIcC)~V!Fj~Nw|DVV1{nNocKxR$ky6$)E`=8a422L3~UB9%vncos+lR2P?
zf0Xzl7^v7sOYrM@#%4RI_LkXvzH*!tF!dd7qCOy^DI&ja>QI#8*?@~%O55UMLqE_k
z66M7_mt?8m^t05Ij_yRqbWSH!3h4)uK~E+jr(0n8R>*Y54MPK3bwcY`z~iK4tDgX>
zbMQ1DF6^%kWf!7%5j}J4Cu^|U;E3B0k$Oz_Yn)E@om%~G!`me>UWIVs-thRGQ5^&_
z7*oojW_=9kSBlV^*_OE^ap4(?=p@^51Oz-Td+qeju2*|uTve7stYh&GJD7JWNUfWA
zU~#%-keAHl%Aa>_eLUWgP!81}C#&SPe$5hjOYa-G;lA)0_hK0DYPbePhYii1r~;{t
zs6^Bf6h0LueMYu1?3nui$0Tm+6>sv&a73EH!Gxg&?w;v$xc@BWN7MJyQSjG?bqv13
z9#Be*iZrdR?ps~puul_dex!Dnf1169J&_XZY3PIt`>XF&3puhj|2Asl2}fw_?>}vo
zVAlX)Pl2PMnwi+b@-|@9i%VqD=GDQ{Ct^>fivT)$ln(8J>r9Q;I@}ZDiXt*&fk&}g
z`6>msq;Py+hrtVf%vH{J6~Tt(c3t(BFbiZbPu`n;n}J{tqK(3GX?oL~3W|>oD=09T
zI<w(TWy_S>*$fxEkP3?FpVi25iG0H(L~s9m%^HcJw7H1H&(n?2F_%Y&uiK`}<TV~R
z*i?M)QRc4X>>U!JrTN_2vj0~IC~<3&SEvN>U3h(@pk?Jr0|L6(?RixzNUr=>1h_8g
z2I73#(wkRUAr;Ki8GbWpGH$nnwnO|)VB@8)VXvPJxtHI|1;=)r>zNr-wdwFNEdu_5
z`A>JOpf%}>Q<u?Sv%4>)D&o)c{CDC&lT@a0Zu}Dp_fpJ0+b<58o_p$$s-z!Cr%=1x
zKn6R?)VHF<l%bZcEOYzz6)73iUF?A@J<WyBTIlLj^{C3|aBiT84et>Vk~&LJYahBj
z!D4$Np#z3#bC;<-Uu!Vd$hmD0_(k;E<bsyXZQDzL=d$&lQ)*f8C`>YF-KQa!EZrHW
zpOsjD%yNg;u4Ho}0-cp^>nj4;OJhkAmBPLTWo55aCV2psKmX(*@k$~J&-fx&^ONq4
z85(9}v^rAW0RLHp|DznuK-cvX4PIr%jN#+xJN{y|oD2w$pt()~kCU6nL~`WadF{3e
zQRhdDT7vQ9cQ-z`xZ}9GleWX(xR0CeyD*J|%Pt4S#yUy&@!=H(dR?tW1&r_GW+G_A
zD;V`X4LSpeocwCQ$YoO&!7FErmHQVsy?XVwtfL#xycWp)%z)ZHwdH&z{Pgth8-kXo
zeW=q9;FSN4eKn$Hb6q$C!h!=T0j8*|r$m2_DQN_z9)7bVs5&$AiH|n`zF2P9^2|&v
zhD|=-)6+Z^dYWGU#-OSy`_-W!Xy>v=eZRN+#s2mB;6isk*z_;I5k`sXSI0~d+x~^x
zBO1SL{pn5%0g>m!wl32&-cIxf0>vl4Xj(qOj}IV>H=>E%6FU(HSo35_o!c^AIeI8D
z(F6$DrXezSVMp!a?W|)iT|S%!jbT3AJB5-KTex-hESzNR*cJ(mNqX)Q9XDW)$jj87
zJI<*6#k~yYWCEK|qz`843aXANuc@Rpf3mBKlarTKcdPY2{eBV2R%JzHePvs`4!6wu
zCFRM)f|l2V+B1sRh7<v?y(?k*I`Vbcz(9ilER{ypjO#~jp!kn-)@%XO`oO6A)iC4G
zfPwixLWmIZtxQp<%_^KEbqe||Z0CbMO&p!5FaybK<xZ(|AW7yMBtu_6$%3F{P{PCZ
z@k+j@Vf5eMd{h{qiNV_&s=k55dqT@O@0%DAu#fOACt3RB2){5Z2o!EjN(?BWaj~Uu
z!#ulvr92EXB)ZNQ){P`OMfYGX`1X7_YkG6PjFgFs%t(wxQ8dRrsBE%E8lhn3oqVD6
z5OIT_Y?5v;W&7nROtFgyb!@8|A<EfU67|Ss<RPQvyILUU@bE_hU~-{GS@=fw`w!Yj
zMLSQ%kthMToi<O?;im}+kGVF?s$rab>O?*AJ@Hp5IzH@v^Cq9N?njBmSzghPz=~N#
z|98?#-&-FWv;|vgOHbIe-pt>lpR%nZ9-sciH)YmZ5&fayk?S20N4I}${D?!YfH{km
zH5H#Q{pLvMF|5#qjU6xCQi-09)eGmI6vKGUe(awe{>2=E*Z$0&7zxmeiMblm<~ZKq
zo%jpHzD6F1UmfH&=^>h}oU!T&4kUD|!YmMd7ddwF3Oj;G0TV4)i5MB7!G%9BRap!J
zo8(gpoM7<a;ND&2edB5x#hed+KTum5HC}q??ztpQdGroX5^_oT#^SNArL?}<u5NU0
z@V^|Ew5yN98gz5te2^C$q6>N!7VL@utjlbGe*}_XTu6*<RU)LhJ^HFMUF!su#O=e}
zmn-GB5Xn|ehG)_b(A(v2*R42nI$7%5eB?FKYTvO(-?hD1CTs|)`8OHj%n+S$k@Z7i
zZdRUkimIZkZjU4Ti`CUDRsa=M6w=I_8L1iB8HE{@nRhc<GkP;dTMIVWMuEwRs5Viq
z<=mxM+NSb*eo9|}h}Kdq0)hdak3SpGVsIJX2v^q!izHKRu$DNZXa$0an=rkKj=w>V
zvJe8Do1?W(JNo@|5YY?7S|sdZhG-IA(gqOwieEe18*L8cx8my;k}P=68MKi5E0=2;
znN!I&g5v}@CkWEkS7lj}(7ArUZ;uhlwAfs8>pPuJKd}7&?6lIiGPp9jGPyFVvhbfz
zjWkcv80WdS6njvp_LCMcHenle7w?qmhUBZaZ0&*dse5|&_a-iWX9cDbt%)YdV}ilz
zkC^@u4rkjPH(7jA`gwRcqk4$wj!P+=i{qLdJ8UU+31EaGc{cj&u|0dNK%p@*#{py>
z_rsI=WRmv_m<Kgp$-Dd)RG4!3S-bvA`VV|OTDJ9{GrR{x*wm@;(gc_>;m0d0PIr01
zPv3n8MLxc=@VP}vw<zQtE}8kL8Gb94%x}u9U!Gdf%n~u<g&)r<4Zb;zH_b)_P)Vm(
zvCbZh3td4SvNTB-a+^{bdBa$uS@npblS)t<BKZ3qiVgE7lF_<>t)2E*(H%_2*Xd&B
z<=T=Hxf~~FVoa!jqD|V4si}W47&qBt`f4)^+p0g3yr+47c%(ywyd}&(7Gl=Kk8t@Z
z&`f)e&&}scEd+Z9x87^j3;RYD>@0Dx20840b%6VMt-E<P|L}epkQpB#L2%q7)w|)1
z#EKnb_4UPL8!4>i6M{8%wt%Ufm4dBxB(40^LnI}5rvryfp73Z|S8b{E4T4K_@pCjL
z?;nfFvAG6d(8%hA0g}Nvk}fHTmBP}4%Xc>}x7Th=Ga0<|=x}(sejEXO2!r=8pD-9K
zc5eFDf|^N}RZpl2oz4qqpBEKct*S(A9c4D-9rwH&k20Z0@BZDT>|od~Olg9x#`S{?
z@xAy}z)BZmmt@-w`P+MzG5jYvA1;Fg!;yKzf9dzvI$+W*M$)rW^T9RH0pxs^+S$Ec
zupzvV#<ZOE1@fs<xd1@#@T?K@o@=1?{R0n=O!@FRDJH;i)YdYTKpZ|y(0^c|e7hll
zg6K7Xi9v?4$s6OXgCav8p-q=@+j^dQ;d*H*IiwPF?tf-($DBx7IXU^LFim+`wtJL#
z@%3S5MnyKlR}tjjwy7%;o<`%D^L9Q@Kqb@R{78L&)p2SKVE6xX_B0jFf-kUq`n(#Y
zrl2;V^~r0a@HZH=ad)ZoEi7y){uptg)zUJT8Vx$p7AG$U=6<F~rl?UPZ{t%s#dS)p
zCKWSzhnBoBvMr%-R;L3Ik${>0Q#j)w#bZ{hjj8^oa{K7)dQYpvzG&7{vX&NkIpJCS
z=K{t$s@PLbXNEIvHwdYDUK5bpnf9oRL*{%Gj+_~fT!uh8pa)iM+aw}JIv})fxt{&!
z^OrL-`llyB?1y2`T0T-l{>hePXZLx>K)ZwFO`YYAu|Zhs3va4Kd3uewcP6M|ib~4$
zrcx&2AoPqt|EW;e;iv4@gmJghjej0vdUwO#mr>eViEO%On|q_u*;zGPQoXnjCd#W&
zd<cSKED#P)wECdx@23`WH{j=JVNICSQI$1T)V7JlfFw>-S8_)szsgPE#l&U;`sTC$
z(|W8DDwQKL?w@#n_$|@&EQ<5mo&e#Y&Z_Rb`2}lvLS?mdJOn*wQ)jPfnet#(8lvQ8
zDZwLa`xb{%L+J6*n@@7*#U^l!(UJ7ELPHmKJc-DE!bC=RPwQao$Nk;p{Td2d)4jH`
z^K9k`asybLK=F=oBcVzlvkjX;1n#oSDbXf*M5Z!)V3@41Q3QruVexG{Q{)2ryeMf>
zpP?^S{TM&C^#y_P1{Or=q1K_{*dt<(4}y52wJbs-+M+Y)_uslMFkE6}oLh{ac{OjJ
zKpu~iXn)e!1}1+KyoQt)eZ8N^ImzeN4QfIZcKI4Hm|=dy69$dS)Y2C2?5a^~pRQ40
zNu3~0KqWst*dR|J)f4=m1(Q|!PVF=9e;GT-KvQ}mtvo-hlLhPflf<!-=7nko6pvkp
zbMTUXnXUt78iVx_hUdyT$$|8vdynqOgiLPg5RMvmAZP?6MpAw=Myep{Fad7-t|BTp
z#XP3kiMS4>1qMs70V&y>jGz?W_K?f%NST3aoVNft0-n*#(r@{)`2>yMsW>smlm_Zu
zRVfx8?ZR&&bnbztR4nR4-1~gNeV|V?386E*tq`y(xvKrT@X<fS;f&LM@1+~I)shp9
z8_M^v#a%Wxj;&ko@c#_x<o%^H%Z_XA`*HS_^IIe@m4Iy6uE<K=k$hRuROqh73%hbB
zb0hLLM?*X@AKHm!o{mUqm=TZxrBBULPD2=O!^f9885(vou|=}hQNNZ!1gPgrHSWD)
z(M=n;mC*(yT#P1t5AnAjkB_ib-S2thM=<}DP~{a!2QA~2I84)6M74asA>mnFqIR2)
z>UPBXMBYf?#hO-$izpa@X~+l$<31;!@UP3;cfFbTO(vZ*$&^qeY!9S2Rcrk_opXee
zrOd`$+yS4Ivl$-?w;A~fCnhR{k<|SV@ky}%my#E1RzD6ZpwLh7c3bJ`efqHFG9z?~
zgKk`YxV{YahQWoPIH<ZOg=CF(w`b!eG)Qjwp65WX?FEPtDQDb3SC5*Cib|Ea1Pj0k
z%p^+j;-cw```t)>voH%g!ZmHc`&iUqnT%2sH`Xt-cgJ#x|JT6k*PWF04@9zHWyjTR
z%-+<7h8hCjC#yHW^NAB+9QMhd(6_*?3mc>@Q<N#FOm-l@9m1=1^`~k>3;|ch=A|fI
zk-onC@9sp1yVo-0aT}J4??6<r<7a2gjt9ii8ghv{1!6A9)9|nUP(4p{S~Bm^YU<^s
zuD+MHmPNR))kov`Twr4laxShH;RaRO;z(R+4AWHvRC;d^Oj}wMR1_AN`?lfFgN_&7
zyTH`nX0PS6S3Y=^*`GgN;vzn!F9a7@?Ui68$bVgUD2&+SIi2X<M-I$Z^&<;?2YtIX
zJ2g;HjxeDdDskb%F<R&g0gJyC34NMGOx<I^^vH*Kuo`8nxyVS5c8g5Vg=^M<bC_LZ
zd2~&Uq4$i0kF;~~a?d;MbJP_OId_swjvDEga%U{5dEBjFA+Le%?(WqLNwa!rJifRT
zLDzR=<iJoHPAKJ_cBqrsi>|u47h=wT?-OosYXSqsPhAVw#$J(2DL(xgikv*2cSgEM
zM9c#rP_{?c<2?BByEv4FiEC(4+L14KUUQu(z*vo7;tz&>J7wFfQFxP<-Gqi-P@oNa
zlHKqmfk{O54$uvy`Zc3Zsg^DX0sfjul!pe0aU*R2FT5)<YL>A*A87Q%yn~~i_cF7K
zz=TR|+8Fs^5ihWbXl>-~ha9dsSaju9;WP`|DYu7KMARRVfN&{eeI>SGnBD#~{~h*l
zn4h7K#p1esYiRZ~@?|=WM)_epzSg&Qags_kZ+W}dCIrKuv@ri{l<?Lhv}29|F%c{2
z3RSB>FgFOb0GWIpMT3T2s{q=>ZV2YP(1UN`-(<OdP)E5XIrh!O;dYM&#zCZ3;o*KW
zQWfaOJC8_-10o5blBZ9~Pfq)l-~JtFB%w89FU`V_hKmkL>XK`zK0f4+LVFI@nO@tR
z=ZY^1eYg)iO5VBM;-1qYlC{WFeD9vJbs%`|QmpZ6jcju?RMe+;X^mFwXax~{UgUeD
zn6u<3DDX7=IoGu6&PNovay|5JetT+xGI)_tA_Csr*W&RsYT0zxrHe%n*^qkcB?OHU
z%4Z8_0DymX!X8{vjZBB&_l4^pV|GP4mM)0_GSrgC7za-ypwqs^!X5oXp;6mRUpPq|
z2`4<uB)(+}iqH*1AP{B~&6kmYM1)1bXG)4miK(>);eyG~J~OV+fk280$th0q4>ZEL
z7-QrBy_ooT(KCtI|L%_oz}?_yUSM?VAp$VEj3h}Q>aZgq`wrFL@k+hSUpiOuw0(b%
zp`urvZ-O2ZIVbVkfDXTP@`dZ<IZ0D4^E!dO9hlgIsT9xp7FLPz862g-h~kAGBg-<O
zEIdP{R)B|r&QTu){I-m<6}|m8r_(oE`WJiVbN-J4UC5$8*rPi4sb7uesdZlxBb8WA
z&+~u$XRiTi0Mpy1zE1_v8W~gR2sk&OP{Fj8?3*X+5p-76=^|&}3EY7_Du5*`&`IG?
zK~~V>6IgD`bEtsCyTkt%c$kP;=EZV&tei6Sp9i4~!FR*Y?eMs+XI}6E5j4|6Iay(0
z3Gt{FGx%Lj*PGcW^tpz24@-Gqxznh^GQ*7;O%$w=MijC0e<C_)_CShAJet3j0Owwn
zbPc)>A-w}KvXnyM3D5l|7PF#)rpM*zxU3uy_L|R8U&&bsbrd)CB9=}V>c>30xK4)#
zJ5>hZ{`Rf9;b}FC{|@991cXK75%^UqVecpPy+v>6Pun5fQ2X4D@n)aFrXqS>mnrPc
zz7U}EHUr%6NQCa)-zUi<JhA%^&CI4tHBn*n#F&8Gq0Kv5GGSg3E(XcL&I&RMiCexS
z14^0kHtluYZ^Ypor1|Yl8fm+S@|BX&#~jSh-7vlVtVai{#+sB?{n^jmf&cjtLCNzn
z7u#nOrx7luzEp)K%-7+m`Gu|6+>x(d%MMRc;}u$J;Rq_yB|j`fQzUH?s$Jf?8Ue<?
zBf>Kl<MMVXk`D+I1wdQ!m116lDgwPW5o*9H^0dwR1$x|8*XDy7ce7k+=Y8#b7+`{`
z(ar0VmS#FVP65!!C<?0k6dRRU=qTJ(@{-NgU~K;PBO<yW8XI8b$f;*Aqk=UG`fk1Z
z*Ed`NG4*LcE%`7%@>tXfp0$;bh`<u96fdz_bcg*O1h?Qmc(53}w6sLQ2xSH2db<K)
zTn?*xtMte+C%09BktbN^fCv)fghhENRi%ybK<Hnio!ch~i*<q7l|U`NY<VsjGNSvw
z)O=Cha{q_kO|A43IbK7(vZzddJErFul+s16#3*Zh6wI`1cPA$&aL&r>jqVi&?2r*~
z@z#yv>w$6z%8e}GhK~*j8^qn5#sz^^V&_Odfo!$cBDFTb-^GIh7drtL*X7|2Z|Qmc
zxnT9yV_VIDS}s+uA_qJ@^JbL?&E~Caq#C$n*y#ONEw5<fc<UHb`TYoJ<iq{q#A)o}
ziIWj|l{=DKSm*<DrVy{@o&1gc0&9b?N?gWdQwdhr1`@9(GJ;S<loeRSfZlFSKJpe!
z>eFJIsFVVBeRg0TrcpkJ+x-tHDswFcw-nU9%;VEh@_D>*+Y6QDCrsWy%yEJeXkGKW
z2#yGQk@6__9U@hM`@DgYpd_~@ynL&n@IiP$>uNwlqxRO^zTe!VbIgkB;peE=&fbfL
zYTSaxi&%0Dmjr}QV5bcKGje4#0|s9R0N=j*pu8F)*AwnRe;a3m>O-`-LrgoH#wHbx
zA{s7TJO}Oly>qiQ3(KdW6JQemC2&qQl?|X1J1f;gk~9|@z2ol{(~2-Au1xAo5QEEE
z@TZEWRXkWSpB+2OET%d3_tt@NS%6^rl+yZEl&WsjmceDj+s$~S44Bu41(<ma81EUv
zZnAocZDM{6q?m(^qn0Ew^!+%UocsmipzAC|xBO(1ZwHqJuE~D?AxES&m>%3M+vxDA
z`-{B4KI&PL9zh|;7$9+3dlv?7R6|VfUV`k0we5dXd@N9akpR704Q{@$W65}}H?-vE
z=D#q&BGblV_YJHk+!}1TbC$Aa+BqX%wuQEG`{7UcR=Eb1o<ZzW%`#UaG#c{czef4v
z-PcQrZMhth-mP{3+lDI^B3EI$%*Z2Cqf2?Q8kh9kwey8$O8hyjcjvjSvo~K7-Qh_Q
zTL&bI!Zr2L&j>?8Kd4wk;m>PvL?CDZ-Br&x2``wZut+G>LQ0=5XWyH%83)olE4qD7
zD{%g6`#RuJN%HF`imb=&c{ZNAHdodx5N0|4`kHd%Cxa&!*Zeq&e~@>Axi+VOcQy&Z
zgcI?A#C7wW$>xAO6H|(r@LStq_m$<-6dig!GTF3FX^tc!00Ku`@rVJVNRfB*+a^Y#
zSGp9f1;smQ>&P9i8s4X_dKpopIi?N5H{dCQv?Y!2lOOcJoSCD(Nb2BpH3TB%H!!Kq
zSwQl=2YwZ@&!6<fL_WmRN)MPk;NZSTn;^o;|J#hxTk&&}z!=uC;}WBNKcW2<h0&P+
zjs718MYYAS)An<;mFf594xt+;wa{+!75017i6%$n)(&@3-Z_o{XI;M!XfpG!-|krb
z_!QT63YA4zdC0d&LwKj$-WC1zf0+pQ_jtClxBpYP^BESr*9=NNWQu}3iK((Nh3`ix
zLZmc7X&97S{zLvP$E2R#8VU>%=dxvMAdgjn#WpxEWlh{seUL3}s&ymBDr#h}x1Uu(
z4=OQN5#uAa`WNp`Q-qhARi_b2p*s@#aJ|zOIUIyF2nDB1)*DWQo6>JtM8OXFz8P0*
zK7toIFPTKd&nc)dWQ)v0WO3><M!3?3Qog#qgHO0%qX@?@$3A%?VCa03nqA8+Op*A?
zOU{N}Bm<TAyRO_lo-Fehf-{LaTN07ZTTA{0sNZ|P5<P;H4o&J35f!T^#vPj+lHsiu
zz{%FB0TQo+fJCZhE(K|UH4;mb3)2ugR0OKUGonbpCHDNpL-ml=DQV%(edn)1033E>
zA9)a&SKe6H;!uSX@JW9A2t%mennQ$1m!1u9x3>A>)Ie$?O*gVBA!B>IEP(28+2v9M
z8+s_{oO!rL2KxLU49V<BrqT4TXnJ(5eVvam`k`z9zSwV<4r0LjD&+NyY`{u+Kqj$`
za+E;n-N&#_Rkwg$QZa(q!s2qOoD`)7jRsay-^5PHBT_vKZ^}~eeU>&-$)!86>mTCC
zs<~P6>}`ujb{YjyMg<v1-rd_mm_pKa#h|K}!?9Q6xF1a|A6X2PT{}{S^VOo3KRf-z
zfUO}2+@R&AT<BN2JKD9K0OMg`c2dtUac7PS`2VqV)?rb0PanT`0ZECarBk{=KuTI#
zQo2Jy>5g4GrKL+!q@@v98l({^=}zfpfp>j=@87%EwR@j)?wL6=-}%hx1=8>egmDo7
zS$HoE^a5>`4JU{V%SRq!5F>;B^nk^tonrZbJ0?<SfPC?bgWkZ2K`GZ2w0Wlcr5CFj
zO|nUdjjfxwi-<dcS4n^QM(%VT2p)f~yh~iM{O?jk#E${+VgV#(TV(?k+hYSztAX;p
znaRj@M<}ww6zW_j8WJlDh@W7+>Bi<wW|6ZcPCXO!z8jGyH-ay7td_CcdjI4r))V~~
zp!0(medX^LN`MuQycWnk=7}q^U76@x$I||EIu6t$2kxc3r7&`Fv+ei3)6Bj_D`-2L
zcw~WAiZ#X?WF~~g8+UrPf&2$wO|e?yA3Jzj9^jARi}vew`otZ)Z0pZ*M?=Nm_z?f9
z2c7G1cA9nITwDHDk4MZs8)qUe;XgP<CbWdJn(fZGbwC=kSB{3LxZz4QzTMC20`5Kd
zR~#Lr{8(n>(n)S=k)3Es32;h{QBUwnOtm*s1wRS2p`d|bc>GC(ry5FZGiTd_Ix&bJ
zKD@_grt70mDaO;j%2qwHeHeADFo~2m#r$PoHc@8<`V|S|nlIbGnNJ6X5zjXych1;_
zxy*{Aw*T7;SmD?q-~kfQ<I)5<o&GTpfNqyTa4>J;qD+S)xT&&%)XQzL$Acyxjn1!>
z@n@noO4LzM>*?R+SzE-TQMP9$z}up4XbDg(C98)o$+{%RbZ?sc+d8TOLSI(?z>TY{
zlJl%Xm650nV?w1#8iZ6y+uvZRo=)mmv&E60z-8rvgzl6#)K6(Hb&&nNJobpnkBmRu
z>gcUf(jKx6J5{PSk2$2Rnk(f8b?%2<);W|Ri~Ncw2FxPkRh-ptOAyXEQ2Roh@F4ba
zxBK^Qe!Kk4r!+Pnp(ptpKBC(D!c*QpU>M57?6$fsJ3VY;tWsy)^xtb;59E<q(@{3C
zmNNId`{a6HV{EG{?*0Z3N@piZq6ByJ{ct+kBfG3bCjYXvAyp7(dv<*GI8n{O3cIb=
z=CJM8h?XUITVLlY9xz0BR+afZHQafn*smr_zxu9}y9t64=#rgo(RkU!ncCoxar$m>
z=lqK2Xq`vz)fx>BmlV{BPSj#(oW2vs^{!E2R`6ZE|LECK1c$t-YAM&1udq?%;!HW`
z+p*l9QRV>WG`AFW3pbI<a`la>)v$*dediIRbu72bP8*<4T0JHfk&t*7Taz67GuNDT
z=V~cfq0%^R$@4?U!|98BhW58vc@(`z8e;Jw&{RN!K*~ZdF&7I9*3}={^&1mr`(nZ8
zVf5d6(2vCO$3b-;RLx=>)H~VCuz_Z%i;Fg@l%$iJ<RNtI0&=6^+`&z3>yGw^UbzQT
z6e$`q5)-Fykd+|z4$8&kZ;S1&MSiq9eU>{Tbc6=mMOCzP;9~$wdHlT9tmN1C<`H4O
zYm>SIiJd2Su60}p&T<py^Xjq@7pb844QtmRLt0V?=)Km(+`M9T1!~m5U`hS`2ZDzq
zANBBNP+R{;@kj3uXGTEv4I3+&T#D+W9}C#b$O{@YD8$a@xx$DW@K7+@)((C?ot)?V
zfmJPp#GGYIK~FzYD0Ni3nUXT+T|CUU*W7Seb~pvGJ3enQ<evAwOxE9Hp3*ip3Srr%
zmS-WQ!2&+8SBI+mE}4Jqtl0iXAmMQijR4g2&Bu@G0lTwlspn7HeP2==)j|~PN%P&O
zz?7fhPb&n6cvsl_BgW8ivocCuM1;jAtF0DDvy=ux3$q9TMkwT7AReIuc&)hixPi<}
zXWHZZ$GWau(hQyUZ(e3zfz4EAO4Y~(**B_;4Tyk6|1`uh&1%9Pt>}#Qs@?TdVf`~^
zf#1lG;hK-JjE#o?>m_pa1<0fu7!V~`FiPHSo80){m`O=%rDl~sB}<Omu*{cVTuI=%
z;-4EM*X_pP%m7H!?#Q}K{XAf*RG$b(kiSNGdDzdO33}EY;Ow$SxlfY+Zi?8h!niQl
zMm|`FjN^rx(-tyNJ09+i{hh1!;GM?$)q7TlWyC|Y*n~ZPX8bB07pVr4jP70tHXMTn
z%!`o%#q9Q897Um-BZi9411<YcW?LEyST#RU)A@)_Z1q4o>CZ84u0m5Xb`+@cT!V0X
z6}TtseP~~KI^%kpk+;ZDmUKn<d*h0CTJI2)EE@yVldhW6Pjz=(Un1ynHryT5yrR=3
zg1gf(eaF1;Fnt%0+vAYq35v+r%#)nk^8pIlq!bva@5X7qxKA12pfc=Wr}^DeGWNE=
z;X0J5cKjWi%vtV$Oo<SN7CM-RO3|b`ZW<81sx|S=#rK0MQnq2}Sx60Dm=$t_2e1zL
zn|oIxm0%#Lw`)5Xsd>gG-TA7r-72|1SBF7KH~1W+{vXAmwv!G^*uW$XZIS59!l=fR
z;<2^J3}FL*9Wos4Et0>x2^Fe^T|0{C8cegcqOQHJPQp|>k<l`76~8+Ti3%8ZyI87T
zvW(_n475jpKKdfG%twD-ND~<^oYshyX!QiCxqqHv78SnN87DU_-BC&w0r`b>b1hh2
zy+-`|@#%keBY(i(Xtj!zLGtE>*jqx`t38(60%?SVP{QXjfb3Y0l?7E;F9Z7yKNO`1
z`GUO^b73Y>M~`#$-djq;n6+ybh9<4)&}}xobU@=8YI>DwG)YC6z&^GQsSA@m2uoFe
zWmw3F?w^}3k=jiTlE2qQZMr~Yt2W+n0%SLMiW`yw7!D6l58FJ5Gp0kFzay~DbyM?X
zFatv6AA%(qfVAg7bm+Nai?_g%|NH$HvvKoWW<)c@pZV+=+~}N{y;d{+j$|D&*+nK7
zybh77#Rwu{_9Cc5Hmf8avm;Zdc936=DccZ^ZG&k`YjEVlru$2aEOs@5YL#Wr;;{{<
zEtu8V*WA1R_TobTHmsaw&Ybo5F1I5G4~qZeH@OSf0e#jv{MGLoa?X(ljaamQi8xhC
zmb(Y<EEI4y;Kah*^sI=gMxCGoqm8K!XJqY~LS`s*d}xBUaEVq8{^d_NVI&)6*?&Nk
z?i02^8uZOsIuXyhu<dV7`7Pk*p|sB+o5HLcopselEMc2D;Jla2N9<;Vr~e(5K*O=+
zImcS$a`pX^T7OOXP^NA%^XD05lukZxJI=j*(OSqdJ?_N^Bo!d}V7~BIJVJz40}W&g
zcH({N+{CXVhAbZj21E|ug{0}@zLW#1d!rJ3^ga-a>Y+OuQ9kn0om<vRQ0f!+BnZ+`
z8d3E<Owk>D?)TjbYFTV#jzO^xa^Z^Tc6a&UE)vVAn{WM@rb3W7gST34sX(NOtRk@2
z4v%YMIy_w>sXHA#QQ`;6EZWNSnWxQPeOjQEnbn>n!GKNGl~{*ksQelC<e7^Ad#HC4
zY4_uip;t9C$D4T5f+E6Iw4F*q&A34!zt32}Xxy}RDR0tsi2k^6{vVahjOH$pVa|Br
zr;MVBoT1clXAck}f3{1;UqY|lg@ND0nPckN>>;gB7+gPMYh3$m2|gY6Zog8ZvXriw
zd&WM)>@9yBvq1iZrt)N6qe2!bIzJ#>3oxqo)gg<+EIrbv>3{Gn?>)gYirbRB14Jb*
z2x1maUywE5AI0DFai$?ks!$#goGYgAr--{NoQM6pCz8qc(7V{2v4Cxl!pDbbvirg9
z@jK64seW6DsJ^&%^zdb0&Px;1aAS(K*?O+1emRu`W8$s=0s?gV;M?Zwn`@B|?BIQ(
z{ikSkH^w7JX_<*T{+?&^XP(wix)8ekvqZ45?AtW@1q^3#z2lc8u^%)BczsQCiQ|us
zkP9nBk+}|r#f(DUWmKHUF?oyhL0^k>yyIvl;ZV}!vQ9q$4iUW6h7@nmm2K@wq-)gr
z1s)9*EZI^^y{6x7Q#E!k$kFY7AImfr3lmG*4zzHjtp*1NZvNTpcBZL_l(YM)4=dh7
zYta?Wc7n?;%c|R9wlFDewcbjkFkOyJzEMyj5?exo626#WBH;|@cgk*iROs0*@g|wA
zjs*@B5IRazs_w%*9%>W9{(HTuF8`yJCvgGi_ri!?xa^fDJoXFCBL(x}GUkE5k>U68
z8BXgT%Vu8Vw5((`WI|;ASR13HVzyo#z9S~yob8o)3VWlG3>`WBJk7g$iuXIq6SsJ#
zoe%JP0qUEitDoBoFyBhG6$t`X^>SioW35Qb2~B~aqYkd<K%~s>Now9$qsC<sb!5|_
z62=>*lrMA*ME#c0PW0_Ws*y!@xD=pDM$)&1@QXa7c?#}V3TA<bV!gp5&mzigk=k!m
zN5;NQSRV-B`BU?!WMd~enYZ?+14qH>LmJK<%RT=*htMSlK45iG0s+YB9x-uZh6Kg>
zlqd5I6?!767DJ6`TIDkpY`+=do}ma~m0<9IJ1DNV<ld-U7t+Hfi+fhzdusSa#y`@l
z;>f)kXGfJg-Gv0v-*z#HmgHD1Z@&2H)xvbT7paQ{(jByq-x&&7K!u3Ylwq2gwqnJ}
z4W8J2lAW4)P4xJjMrzVl@+sn462=K9NQ4sY*zt_ivzawh|G+;V&qKA*tkysLFqa!I
z88RJQ+9wn0B`PE$QW|aPY_EDX2_gT!o0cDF5iI@1R911F*K7u*BlZ*7-L~VG#|C)s
z&$xC9U!(-ICWGyug0+7_N5{^9u;)ZJJ>H*O4eJ?%ee(t9WL@3g?_;1({!`X$&lIf|
z=_^^l2KRcewSP#(Mvh0tUq8J$d)T>8_ARD|!E5t$dWbvyi`xXR+}~plPxh)<e|<Zi
zg4dV>uhpN;A_a_way1H|gP6c18qa7kC$9@Uhca2Q7>?rmxHfhyWvp26n9i2kT}u-K
zkk8>gNqO(49{!DC;qNzZlg7Ar?F}Q}m{AH<gXcML8$?<#I3d=~R$`g@;i13LdqAEk
zoHA@AT~fj!LU6oKpj_ETbINbg7Ds!+)CQ>?j=BmpXEI0f>obnvfO|_iAG*=Y0_m?G
zq{|(0K9J^r=F21wq9XlHMfz*RAR^6r!{(<cUFdQm9J#7Cc#^%lB?9c=94kKp>d^r;
z1B)(R>G$(2p$&dZff9l7PYs_NsDtCgVePqy=hV%cN7WbVOToAM_9rVXJRZnGHzNuD
z7otulo*=8wG{Njc<Mo>Pv)_o>@`Qf`!kv}v2wK)%miIyq6!*;GYPK5=R1MP_<rk4}
zc@{mRWve6Y@F#3$L|6RzyGAiu(<2^AHQok9J^gT*y8JH!J;19Mk$eJURQJLYd%p9R
zkbz^PSlmo(q<EMb=V8V7TJ<Z|^B2E&lE40MVTk~g&LTFTsh&XM?vfQetmJLPHA4u3
z=<wm8mIUMO*J;pst9_c>nsRY&w}zyr<Trmq{TmQ@$zV>&$=-irN2xGf-fOu(y^>Ql
zV=<%fh|#v3!s0N=4XY#}D9ol;d3`CJ7;`WwoxzBB?O{^H%XR9mGU#Z4b^6sz7E9>P
zbPn}pr*?`FJimIF)FR_Pb`m~Wj!)}Gn?`Bb$Sa8_*C2#FPr8i~l&gN1wuyz?$~5cK
zaTsaoyXkpN-qP-aecATtKU@1=5LXUjht(VUdwnOm5A}^(2;0O4DLr<|1_WPFn^VS6
zIO0-6vGQV{BRjA|sV&uiRqh{kX>|6poifH6wl+rEAu0ie^n*Mgmc9X{uwhf^4f0TK
zLB=j4U0Zbk%Q^2JsMKcn^T8{3i3K&Yv<Yq9to_kXO}55Vv6Y6O2oFeqGk2!5ry)-&
zBg#u!)y(+0@;ywD{M!~WF7(28*iy}E=u9_p+P6$f6^Z+yX>3evoTkjEjQO;buY74?
zNpy6Nf2O>wE}n@Y+CA6DIdl7us~$;(YnEj%Sy`hQq^}Pw)iEb*dnl4<=Zt&b>FE=c
zOJ}4H3-=W&l0rDmlj`is5GrYD0@y~XwY#bJTog1kxxdaO7qy`S?+h0Y_D?JN`RGYD
z@<!>CDz;*3Nbye>c^It(x|XFo2I@|L@1FNK{f-Zm)V?z>Ysy-l^waY;lk(z3;O`K2
z9mV^OKZDdTO+am%uv$#QXTWBPi#WJe=gZXmoB-<84>C^QeQzh)qa*r@U9g#`jnC*V
z*s$o|HPOb>)dbksD*N?ArP|ClG!y*;-OM`V-jlM60m*Dp(Cwdy$57rZ{r&YLGR4bd
z8t?e4MCQdt0uAc7vJLNGDetFfum(W;hIa)!pPxw9UMwc|&$GJesZ}$2B;Ram?OH*C
zo?u1~W{iiT+TS{0GH8~fS_Kx`v>zTO;TW5B%Vn>f?9g)I;=C(Bg4=#ygF`+%G_KUV
zLs~^)9U-m@Zg!5bQp?K<%z*6l4j_5$)&Ac?1a1;S{xlPLM3ep!n~&qx<)V5xyxJ>k
zTtEKwV#UmuGgez~T|+pedxF+r&*D#`y0bi=z@orbdxr1UtHUqNxnYRN*6~_?belf6
zuH4x49M_hPqy7K6@=2toJ9r{qR9dHgO;LCucNN{g%&6lj-|*RTSW@G?;N{el31g}*
z-pJY8y)Lb+ux<nxGy4q^oK{7^$l#X}j?flh02HZ-(Du${=*hf4d{xTKHGHpUUL{*{
zg~j{#;TV1Vj{6ZfXhtV<h!2{hL(|Ux<2(=LF48IRWlb}g9q!egEmv>*)}96}ynf%Q
z`cqAF)M=<|bUmkgOUC0z8Rk0QA6rkD{Qad@;K{hkwSNpJNDHZ<`$PpPF3ZO!OnP^d
zQP6dC`n1R-*0w)>WWYJV^Jt`bb*eDn<A{dI1LV|BI-m*@i<v-;^@hq<4T$?IJBE}v
z$K9XYIURiyJ^1!%Rl`_B?KemNPh>*|e)UkF0F>g5?cFVQ<{j(S@V#Ky$KvlN+ANGv
zi(-2<8kMr-f8j9A`!Oz1UUMlcxG<#FsjMpDewday;AGj$%bzma{gv~RHB@Qq9sD#U
z0j*6JuZCb$bEI|;L@O<o`No|YrhhYWNjiVCC$@}V_3P%)R~OwKe_7_p=lPSz-IpDQ
z3L%9Cj1k1&>EC_Pi!y~1br-_gt{~p;l#{b8=FU;sJhe2H(tQNWp1(UE2hSJD{rb%X
z?rci-FpdcwBl5DkWpt9^KAJn9B!Le(K%uMl`kC=Z-61tb93H>Adl(Ic6n7Cp<<U#F
zQ;N%XYPW5DayV(LKN^VRmUAl5ZQgRv<f;!zLQ*kUZa5S6h+Z+m9dl)CJslOcUwrIt
zXjE`|6eRYt@<+R@M0#U`Ej3!!XCSkm%NPK)Wpplvc=R$qAY6;uf%Tt1oy$4`50Kj3
zyv#9eatUHc+<hYqZ>|T$EqGNFOKuLn%YFzo@V+y8e5|FeXlF9Jos^(M%LGqxMMz64
zhWa6uW^`m`8%>Z;ClCQ9GP=s~`eXEacC^i%I8?Wf55dw8FFzWE$}A%&7>^#CowD#D
z3_2dX&MVZJ*R?Swb6Kk1Y!g+<3M6vUs@Li_321uR)#L;38398StjCiZ>U0R33)=8t
z@x~zO-C|#3I%ch4`xE$#R=dqAW)RIx&~k3MRY36qwsW_ZX0&y#3+(w#+vW@FA((9K
z?Mqh=+3(~Go)7qVkDK96M;Gq1aEY+uKQID-eyK%<885h)M@>8b#o>%I>OF++N?Yfr
zKdE_q{GFjz>BzRxR$2v^gP-I1<d7CGDok~Ch);QT{oe(!w%)dvwu3-TTr;)Prl0Yb
z<r?L6T0u<st@BPXw;8f%qh`#eXhbinmR)L4XkU<9sdS)0=`=wos=6iH82x2DT@wd~
zN7;DpGZ|6;7^8Shev3Vuz^9MCD*2@udC95xxY{}^6HY+C#OW)QhcP^u<qug~q3EN7
zL`@-%QJq2K(Jxp6zexKB6=z(lIlfTC(<Q}*QJR&9V+jDlweq=-9bZQx0GS~0Uv5&q
z--oD&nKO^ZHun#1!+&gi-UJk;$Eu>kC4WLQ02aTD42c2B1ULbd)E{E29uswK5fIXU
zs4({T#cIvI?)t=@5~b<7g3Jez40|TF*ecoJ<iM?{&7Bh+vmP3GJ~B<v_?l@D^9lMw
zB7zm8+$_r^N39Xa!=NjVa7X5wUVauTL4##%Gx2H0le1crkw+-Jc4gC1qU`1lh|K=y
zyT~$7hMXDwhz;yjrW-(ye1A!^O4mfhUP^_(Mprs5ncT3X-nRT8w5SoA^rg|xf;=U1
z^t;>+k%H3NGR@PKPC-FC_<eK-%6#A@p|o&zzOdZe*w>7Mr4FJQs!>L<i{kC4dAd$8
z3X?&*7{m2=ai?Wp%}y;W6|U-$9bGe(ww2eq*P{I9x_zX_Uc%@S4e;=LwH~cjUeCWp
zAvxb?j=ja+US}-X@47F{czlrdNK3YB(mR}VW`y3N9Ncc8A9qYSAC#V~dKE&%d1=Bd
z1913FVR2{cpYW}^=+rn52u@}QQ%@mW6Dh#QlGKt(P5{|gvS>@*Fm(H0h%mj?0N``;
zbQUsvS5>y^p_aLjc3|F!n6dP&KI-#a4Pm)Y(81KXembS>Oy2^$elwQ!_!qUKmO^On
z`N{mwPoW|g{MnNM9lLMFVSTd}REkrzLb2Ub1PAZ{6dy-I+uLgyDTM+e9-$NE=3fC`
zC;5yoA!C!VW>1^G3~g!+82hM>^7^9ZVC9TB?XXrH|4HXzU&lTkI{smp$b9{hD863s
zEQdMhh5s+Y+n4cq2S=;-A(v~V@DaCTi@W(Ve+3pW%OENeX7dj1@LD7Te*D7AN`~{Y
z@7s9VF{U}z4R$A<a^W(GmBkk^j+0s@vtm$Ci6KDbVXVK_7zE25`|olj)NcqB9=|6N
z2#k?JN7U%owY{bf#67tCWolu{7!hcOpZ%H1AmPdM-9%5R6y*M??C?tE?&s0fITTT4
zh~$y@4-m#-tvzh?vua0{!eTWS^F#oKr*W!O_ti)AXIEH}Zjn_)^sC9@FWZvy6zU7L
zyc|S#3^C(SIY9=;5M|i(o9%%yi5Usgj>c8@)|?uO#!C@((vk%mFXuC-_nu)O!e?*3
zQWUx=6Li=Qd)7#9Yuy)$RXVQR3weBvqh7~7!ZwYOJoqZcz;snvMM!w%Km<J|U-0|@
zzT0D)7!_!i{_5|pBkI%6$`bf$N}3qtfVlz_jSAe|+;zhSQcR<C4-I+$d3ld-4u{wP
z>%rW4^{C8r*RT~^cksZ&sX~))u<U)kxtkt`jN=qv;hN6QIp!`lsCq62JDx~aDBSkB
z!*6x;!HOklWMS-Q{t_r9UbJGXY1YmT)DLgRk>nH~sT@r15@3_yi`Eum2(*4S$IEKQ
z;bKM4Y9orDYdspYy`#;kb;29xOMyZyuwpr+lLE92jl}x5!zkJrs~Ap5FZX>?#W=Ix
z*UCCR5tSg<daNn<cq_>O8MaSb?r|Z6Q*<6VKxwG;&f0O}YUz;F?XhhXETHRQxHYyy
z$TIjD(Mlkv@WWi(syTsQxL&BUcD^lF?t+$K>AK`BRUV2|+eg^0^}pr#=ZtKB<sd6h
zA2rOj@LtQ|dyfAOx~qcY_D}Pzjw#iJlQIyqD+s-fTnfeJd4_*ssudgdObBJn=!7yy
zoOaIDK2xg#-_D4z_x>p0`ICTanY;=e^q73*2va02f|qG^vsyOc9jo5nb8*{J*OjS+
z#Jbb=I{a2Q(HsX3I7gk^@WNInImjk4%bIWOAo?W!D*tkPva?j6Jty+?X~OpF))oHw
z7Y*T9(82}J>gTpF|8}|2;k&}nh1t&<*ZXfuc+DZk((gkmUYx@AnVk;gHF;*EC;n!h
z%$oXx(WgTu$lm7X;pYK%=iJk!?vyyfZ5-JjL1vvUL#IRE5B@s@2RQhECImA@wo1Uo
zGTZL3N&b4N9*yTyxaL5qQ#cdXGcwukipDjkZ0*>*cs~abQQgn^6&3`V4=%L$Jx+5j
zb-GpKsPrn&__RV@g~hAq{s`;XGj9(DsHqOGGwrY*WKQk7eQXSDFTV02aa&VK7<3<>
zZ(30)#ENqbZMrfEuYo`EjnC4C@GwdwzR6Ff<BK4YP&H=XRO^H=_xJOy4`8guC?{Lz
z>#I%h7uquDCnnG_1{;aw*ldvv)wNdR4(1my<9yNw@#vr)`vm$pdhfIeo9^$fX+JX^
z3%Dv_gx<yHPWcI<-0659vhH~tdeLExQV=kQqalhk3H4(J1RJbF97~I7v~vpV2_oPt
zDHUKMKlrsHj^AnAiCrs1y@ze0MKtCz#35aP#l(gWjf7TD;zRQp_4bf!yWbzaL1+0V
ze(l~=oVgjcT^-4K5_<W*BdTVDwg2Kl{&#XDKzRp80{C)s2uh-uVost~(SaynsMvg#
z-ENUh-{>Y`LbugwuNyW3@B3muonP;VmI!jbm42q0e_&_{xesOI(bS18j4S+3G!lu}
zGedT)y7{!?{jFhIBNCxaDr<87LbA@Yiz@OWSF0&)p?9IbRQUo|{(k2&6<H$cH_Hc)
z7_kYpkhPU<wuh7EB}Ly1Tzr}$5PSA%?XaF={3`nh+#idwD6ToXL!{sE_MsJgEzp`z
zmn#Ok7eaU>T_Lhrs+W&?bDi(9X>4!NLQU;&n|Foo5h^oYLX$-y28XcL(pz#ohh6iW
z_(L_u$Gh;Rt3J=Q1X-NtYjl52X}+>5xK0t1l_z~CGmK(h{`@Qyudi%;m0d3GnlweH
zwirg|PF$9w!F1zlEnO)ra`2)|&1KGli*7Mv<qs-S%h~=5X|v1iJf2_xY}z2~nq(!C
zL2@*Jm<#>-XT1>LS}CI|P%VJxrYI*7*(dqPa8UL(tWMUaAb>w3wWm|(@omi$ux22N
z=Bpxzi?OHfpY(yBtLf-aU#^M4JG05ZTWGMzYJri`h!+e%Q!XhWwoLj>7B1X-`OVty
z+grPQwn``$ZhgU@a{jS)6SZx71Y#Su=o=^@gc3)VJMewoA;3^mG1=}zZ%1Q$p!m#(
zj@3Uru{WvaUhV)@0G-{dTvTio4tJL#3}q;5SXr=%w&OHWHMpYz(CGO!6OSmthS?AR
z6_IE=xNRf<J*Y0Sgx1OvnO*qtdP&;9mO6RgjW${eyY-#HCUv9Y>rJY?-W9wDOgwFL
zCk~CM1W_)$78Q2J0!5vvFIaS>m1OcDvlM@KaGqCQ!SAU{)KKra*9Sy^(c(z)$B`mO
z;?tQ!093WD_>mY_`VysH$EI3aW2H*UG7n2#yTAIe`v|4s!62(OLbkG_#D33~hj(}<
z5^Z44uU^1aWc;xjjdzaqO?`4gHih#VAv9`TuS&+A@vC)d<2UUfbh`5pR06@xo!E+T
zF-Yj<Op5vZfx2Y(wjFz5htT6$%k;IToI*W@PWETUnSZ60Y#a7=KttMAz%k>j1Rs7_
z4LfTAN2J?M6rM8Q!Jd0q&bNqCA_d?D(^a2K1Y3noSwj^SS)S=9`egwuqT0Y$soLtE
z(Ve9qrfjn~4rM?AbW)EE=@Fkl(=R8`%oH9aA@F{>3aDw%m_1I-Sgid(_8zK5bSFnd
z4jt38_Og94Cx~f470Jx)<D$IHZci{_#iSIW4T?vKp^6H~uRE`5jxy{g-Zm<QNMTe!
zE<CH<l@!xAD|wxY6gIpGI$Xr-m!UrC7pUcWTl4md$Q(kHZ7(sv(fY^JI_z{a<NiXp
zu{g*@gShd%&jOMRRdWuc;nwXsK0b--FUZgGHwcXFC;8IccYab!|9v-?hdAN0a!4Qs
zK((MHrG#68*NW#B#u$Lj4qz;?i;g3LxYT36A~i@nO$|7oHnE*rrL#_Mr)KK|IB^kE
zNXHNtEpzmOQ#K24^dZ2wgE^W2&tNHQM7iM6j9d}(S{;oJ-75CA{)Da^>r3>j^+<In
z1h4X&T)#WTIE$=*{y7#7V+yMZt$6{I(BbWl7m(<WYr?MkDmn#e#`JkBuE8DHH?Mbo
zuk_I=|Ga!+?Hs}z+DYV0%X6nmpea7EglxTK*jUzo{y90p(t-&$v`T7{tu~7teGNz1
zIv=2|A#?wbv2H`pjO-ZO$KM6cHgY}lTWx%jzU}G>#!=kstuj*a61J9qS`VbCd=hX$
zSQY1{fi=qVoe_%bdzob;n$!hL{#q!;vpF*7C$QwpO!q8Dg+crk9wT$F6(56()KCni
zGWM#H{@}v_+<EL`zuHy@m1>{<4`P|hfPT|uZy<nT&Q<QGSb5XM01|+>l!xEyka=%?
zO8GAWSeqpu2b;w^f>uCm&RrOQV=+8uOg!9B-t80m@p0}#MDPhl3qq%bUf0E)DOMi&
zy8N{$P4fnIup}~eW4(5vt5JE*7(R(DbU`s&tSOS?TI_vHM#YH+{Dc+`mj9Yb!dQ)b
zCMi_)bY*<zfyB;R+OJUfpwoku;b49wm2~v9VA8YjsC?Y5)N-uKF0SyPHm15FVm~^@
zUS5$PIh?w$eas(xAw8`C0T~;@%H#}q2fq(h!nUqm1ei|kV&~IAH<cA2DB3Mp9(6}b
z@81*A&!*D>F2t2)2DJ8Th3PhO&Sw0%Cp8k`=;6plXzt~%N_&VMA^i@i;NrGvRAq;>
z+cc+)mLHuDy|OkCFFc#2!gPq*kq#o9^F?`J0nW*OF4Zk;^u5EU2hK%W)jD`V6$Fx(
z(>m)Xcx`y;%LqlR*U?1yTd!zRPLuo6Mk`YD6BB<ip@m!jLod;WS+it9K&5DdND539
z<<~O;C|^z@`e|;s$d3q+f~GR$Dy*<00%OOqX9xPgPaV)-??q4Y%C||$FPas8@ckDF
zKmhWH&!u88Yr#;tv7WQGM{-1o|6PmaYU%O7M3!`ySl`q2R2NnIM=U<Rw`8+tWB9@f
z6>)sY8b>`J>RVaaXU?_E#%7Qi5v-XYtvpU_%-B<-ShDE!o;)-DHEl!WC?uYVA$$^#
z7zl*4Ny?n?o%bt^Gp|)-Yvm%fEXp7a_o9XFqMc7^AkD=x8DTc?p`tqzwGl<{(tJAx
z<x7^$FM3%;!aL={?_=osdD)o0=EW_G`UKsLdW%|;=VgBR!OB7^rcy1KIH1ONPWJii
z0Cy+Fh1vS=!=2MuxFjQ3AS|T`kE(`^ppw{*)wEpoT1Hd;2RPcrqCpi*kSK;;_MO9(
zsY@+)SN@--f;}Z$1T2MJPXIW0@N<F)(^lToxTsAvjo6L^8ZV0PAolcXs<<@qCtRtU
z2>_(@eIwzhAoEY-frgO=a2~EazG)ayxngn7xFMm#t>EdGP5`(#48T!$y+SbpA?|g)
zj21p-pYg7YOrI{$y@5KG5Mi<s_Qc0aHm;Kw_9tovsT_L$)wQ_Eud0jhH`vG;F|`Ec
zW!4-wC5Jz~$pjT}DDQcug)=f~XKm?@|BC73MhJRTL|Z`JflraJcqq`uo@&X#2zouI
zvvbBRuV<Hl1smOiWM}^-=6pjiKIV?z>izI<cYCY()qq(v+2OYU@1V(?YMeSPKi3pY
z`JV4j*>X(yi*f~-g(_JK`IU?SiztA3(ac^d2Qe}&z)wNYF%3(P__=xxyE3O`!+k?v
zr0X2=cX;@1n+ocpg(~dVkztHmHBNWC%elPFEa}%C6pHuN`}{Oda2HVAs0g03;>J%H
zYCgm$z4{{g8&tTK*ZWROB_p}bZObG*Lvt%@#NIN&?8dx#V$Iwy-nd3%2-kI|Hfw^E
zX*1s(>0apxf<KVmHbOi6kzkO5{h1XjZxQ+XfSA<JD0I08S_2t{mPl2Nz@1%zEP@k~
zcmB^C63>nDfXoJRAJ6F?t2eOw`Zvcyv_p9#AAFxpoX?FZ3hYe2sdtcW2<}tlu=$hw
zg2xu?CR4>#%<%`<$X?2Mf-u?6^f0qnnt1JbM*1@y*#)UOoVEv-Ivt%=S+Owj83(EU
z7a!3@W0ggA;!k-Z4)VOLh43cu3=~E&-th(3oDhguWi_$t*r-HixED90jBXX3JP<a2
zH$#OPH>6oB7&7caS%8>IZ55o?oyxACU(p?K!u#50jDx4`D`kF2hAa`YCwya(Q9?a{
zJ)w|BXf~+JlYV(MPQTgK=7ZL<&-R~#wCSZmRV?AOPMaV%7MOWDCOCIW`KohBAG99x
z(0j6c!XTzi0TDDVeZyF?Hp?7<+w(Jy<%QM*3y#-QL)2M5B<na(g!0S20Vpb(geFsJ
zGvKwrZ-_yNS~It}ptUH|H^Dcd1*=GyzfQ2i@`=Za?IU{K3ls)=FmF`kYv;K0`1549
zK~0-k%^n#CQL4n#E<U;NQ9f(et9_bVRcSoo%v4<s+$Q_;g59eZmI>d<epch8^Yw;?
z)ioVUr-)#wj|{wEq|ck#z_}h!IQCj(qq`Gs=>{2>1X+T81YB1vcrM)aj9EqZ2HlE&
zq0s&3TJ%rQfX#|zTix$<h$3KIdemjqHOF!Wh5XHYMR@i0`cbcm{JCZ+QXy<I*$#oH
z+YbGP57Ui>S}C4pVaA_x>r_X>HlW}CV8Sd4IGb?p1vh;j|M)8lOuetd_+i-z5u@hn
zt}NR>o(*5d7IVWJXIP8FH0b-)r+<bw)c^IsiCw<rHCzSB+M;RZC(IggJR9sty8g{h
zlSQxiLVyiV{<ngvMb;vS;f61joKUc13a$CK)1-4&(=N7`UH3D}O63)+YH2M5uG~;P
zQ{D^Bd~EHBM=`qj{!0B#<n>Wk02#uWrKbc9hfx0hLj(#tXmkB;KiEX6er37xd|Bas
zPpNJyIbU+1*EGe8Kq3<%(%%5ih6oDvesj_s2w}@)9P1VSrK6m1N)8&Q-8f1?;o_RL
z=)RZ{xi1}S1m6=6C1Bl*@0ymD<xu&}JfTD&p7)d<65tIpL**6vKzs_=Lt*d0OpBSt
z2A7w3MGCxGgJgkuxY`{S)-*%d8de#K|ENhzz70eK2Do)*nB_;S?UX}Sq1XMYYLLm#
zJ(}_aY`!j3+Z(ognoWwoa5QfzCT_=|ai8p^g|$g_p#smo%IYE}<Ev0V=tK*?=;);Q
zHgT-}pKYq;R|JR(ZR-2QIrEYlMQ$5@5PL$8eGU>LY8nkNB%L+|KpkjSECAa$Q58Ni
zD37lP!!{(>_}78AAPUGw+LeQjk0eRc+J<Is9ZZw#+uJAm*VsAO-mdrc_I<crMwP)|
zZa1iLu9f4@ku(sZt_d?@+$AqgpQepnse)vbtz#Pb_la6}Vl+FL0Pc8(l_#L7s9tCV
z??@-)kn~GLqZx8egd-t6^KWCxyzmWh9rV8(v7Sqs(3wZR{uHP5n&R_z%pjcC|Ecn9
zD@P`I0=66~qhZ3_HN5FD%v~5CJHPQeWW6&!`HU?KU($WexL(+Ks02np(D0w%{myTN
z1AG=Ft|#&^1Z`&JsQnD&ePxd>A8?)P<>!vm-*!_gQ<F%!8t<oKFp9u<TmVx^OWWYU
zUSss6fISE`SjZrmkqeXoFRowSP7t26H}5A84S?PHkT9n;EaSsEktTeZsn3e?emiAG
ztO@Nf@3C|arUo+q8o8Yl<H*24CbEbp&ccvB%NgV71MUF&(He!pC;WK{8~Qvw6v!bm
zUp*U4GS#x~CWlSzshTAm2P<p6-?u)xNrpVbo23`5Xno5Mp2Q&%px4BEmMgarMf<ab
z#;cn8$^^=(_QX<AerDyZHNLM<xpcRu@E_Bjzt`1brh`?Lk@V`BmjPR7`t2nt(2p*;
z^Xavc<5Ao|UH%E4&PSwPSgwNDQi{k$8O6f{4(f-zim8aSkc#+G8x<L#_&^eN@E0ca
z@^(1_l^<IQ{i%;J8Z%8JApjL-JS9EV<7wG8+D2A+)mwGYkjtQCoM~DBrF&e8(j1u{
zc=cw{xmjTXN$NEY{L+Kv_MELo4|Oi*Y6&=)1)n=f{f<ZmC4o4%?OZpRa@o7mYc0~~
z%&QPJ@qCP_L4%q<-Lx~>%MBF+jx2?p?mu}I@<sXUnZ`|5EifNess?3}G)H~wOs`#g
z>x>3`s#i>3Qg$%U7JF4Swn0%~ymQ<6VYa52NMX%-Csx}`V<2;+Pvuf(t!Cq6W+D0F
zzBGRhzL~3=3C1ia*rvE+cw_7MM_!K_FO%UzU)KHti7DgTyp1KMt5B=uRl~qoDRQ3z
ziBAu6&n9V%Vh#t<*fuiqH)nrv1))p2QB@xWM8=3R-X0OFv*BuQpZjjU8Vqx839;|;
z)OE1DIg@31vBXs`rAadwctAV;+~V@fUCo_VuKbzgLolj<_}=9AwWHy)Y!UWYVq;)D
zkm9-8&9H=t2YSTBsurayTKQrB@#KD0$CoRP?ukFW!f$F6UEjrpu(#Pj<sZZ1RchTr
zXL{6;e)wk;FwgxVq;t4u>-aqW$b(np?!%$0n){l_mibCkOeKugB=qo^q-a;s4i=Xj
zUy}-&k!wddO4)no$8bl~KX?P;q_*iKD$JXb{CD1)uySs+Q0rja6vLx<ep@*{EWll}
znAS)7vvtyvN(qtX0H2<eC%e-r%Q#Xl9&hVR)Y+6`j)W>(%Ml~{?U^&yQM5i>bN3n)
zf?@T$!cX=cyDf9Qu&IA+K`8a_Mct~nCUk0NvCLAZ1bE5@i4&8VZl#@!U}!X?CP&A<
zFiUQF$gTpZ-9{CdmKn}nfXHi{#gsE>k|s5OpR(NYdH~L^9c13{ECeC^w(-fG<RxaF
z9;H<a6+==sM4YLJC?<UY@4PDIq^M&yMOOlen$>sy1ct3^y`@*RC;Guvq0VourNoAQ
zv@7~hoSC$pCg0&kh#U_i_A(e1cywYhOI&Xrk-?28{}a`2`r7R}SI6%D+FICU5qqNg
z_Com3m%%4Q+b8JNIjZ#c3eD4*X}|*$!yySyRZ+<a2IJzpfmeuNaL03{$s-y=s{r*X
zv|_!(a4yfi?S*a4y0Fw};4N~{1D1fi?i!L#dJru?eqS`tczX0C@qSGPeLT+mJTmDZ
zNmD9Ok8XhKW08haDn0Fy8S;pvAo1xXs9S@Kk6xRfQ%1)Nc(=B-w_h_smBNy<JgsN-
zdH)XYf{))z>wX(ZiwCy<fS(8YL(v@~!EhrmVg`&8aQRu-<Gx7P;7YS@8f!O1dIw9p
zKsf|>9a%8$o9{?$WPT|k1mi?`1vlvyX^zpTz;FVu;GzG}LbfRr5t&e8OZ_^+)_ymH
zL({0o^;;XBy~<=4mzwAAj&VmQLD_60?&H`@zO#e&M1hfq&s?G;_);ZCku|>iyJYCW
zW*jH?WepOz&&N*zV@esPhH5ca*j@1ObzzQ%onxkKbLhadYDS|R{)Jpa-fkaf`KQ_K
zk`%7K__`8V!u_5eXX=3@eL0We(Fx7>pX}~-*lS8|<(MaPBY;nbBID}xnpm)<0pgvf
z+z`mxS14T}>>cY$ogfwM&Znnok+YOJ)Yo_Q{V4-S?XpnY*delWSEph+XcTv4h>#Kc
zOc?2Up_qg=X_t(>{e=HKXG=bVo=)aUp$)gipj8^wIICD*8TINDw~nPq&BSLt8{`zU
zFmh15seO<ia;DDGI1oy?{&spI#;Du%vUOJkIiA5z*AHYyCBh!$z^{Lq<c>uxHxmhe
zb(GQwGR(z8w${qR9H0#JE2MgK7k_8+Z^lf+Wa_J=3>PijesjqxZ&cV}W8XYadH;LP
zgw;^KFhJ7BA9Q|=7N|tUJx;OZ5cG>Ya%6QE8Dq&p`;onJIH7F3l&4>QSdh0MklYnR
zE@=l)qP^1Q5=S551Vqfwol3O*L?^GzP%M9U&zz_5rCU^pmuBp-?ScTyJRPXE{vF+F
zSk5#%H*!+UPz*p@Tp^(UR=$}t>t}u(8roV1(m*3aL)i9lJ-ySPRNN;HDff?3XNLyo
zj{dyN4LQL-M{Ld4xNe#ZO)!4LsjsIfU^J}+KgU{0KIy^n@90Sjyr=dj+I%oGf}<z4
z*n1V}V*?^@F{1!tl%+aB`Er{-dEGR)k*6p|f6J9f#dpggbRGQ@d^mkfdw3?HUoxy`
ze;}sp+L%M`kBmaY3?<Rel{O@K%8}O|@dCfLM-FU<v+Wgik)Q5#Y1A3g9Rk%@J1WQw
zW7e6QuGJ9ntHbJ9h}K|{p6-Wcck7usa;sh%6tkD!=?cCM8o1TQ2S6Cb1M0|CD{k;h
zuHLuz`ee&KBz*MXM8n+Z^Gjtp)K;?DYqk|AGW*YM61ILMN{T*h6qZ!4msixHL_f(R
z>c>lW|CIm)xwr~fMjaCH#xJRI4_C6G6$~%I#%(#MN?xAQi)^o^F-}mb3ss)T#7`jB
z4+}eO%oF^M@oAsU`RJQcT>!G>+BHA?$$8FMLuL+i3F;V5Ppgdn4kK5!JcI66P(SDS
zYvkrkU_~xV#}p-1=w@MkjeBb%QYP1sb(fp?eb~IRSymePjn1fLuoQ^~b9{tTP?@<q
zwnyImgVOo(y&ulsCX9ml+~CN+wsb$%IdBFW^m;l5ifaQ^w^2OBX|8XE0-=7y&m{ar
za^Bu!QI;7;rO4tx)sb*}0v45lx&FEfy~bq5a{-%Onkf&)FNat1(cRkti<ro1WA8p<
zZZ&wZ#!ey2@)vXhOQ+<Kh)l)>Te#%R?u!jcrl3I)t($^3iQB?c*`ui2V#w>GLwbFH
z3U%#E7{h}|cDf-0xb>7Ht}g@;E|%tse2RW#n9|x3_*&jm`e7Em4odZx!ZiFOo0P8k
zuQ%i(H*UD0mdE=_pRDbOg8<Ezj)~sPWqvNLHE9t{8jbITa(v&I_cy7kmyp6FHh2o+
zU&$q->?I<~c)I-uq=eAoLvMKns|6VXVfpmmzv<d}^f5p32|P*3t1YJdG({}jE)*0#
zqi6YO>TfgvCnx($`aHewy0Fm(8heapp^Nf$S46}-Q>6`i*GLsw7K(I{4P7oA)|s10
z6L4anAt5Q1cg=QYIv%!Yh=k6t7ZaNTiWQ1+-=h@e(&8})49Cv~F31+nu~a^KQ};C*
zN1dlc$1nL%_cchOlM{es8y*~D93@G~8*m)V?K`kxFPBgecb|727xtajjJf;2AhRG^
zBZh*nRm0;0Y`xNhnn6umo}Rz!fnk#2gZ|Rw`ziVcw#r}2jh^m69J=00&K_-Sz+qKj
zrLLKmMo=#Am<TwSyf!go>tbeL0QW0jtmfnR3xkL`+US{0Ipkp8UVhFpfy0f#@9+LR
zZ!Q}rp8Y;F)Rg@l2Wh_LzVk~1PMjZfDWp)Pu2LsV;5g}=Rh_5`_t-V+AKNJz47n6s
zhC&AvH{w17jf}nWIlEC@_GL|cnG?QIe8%g%UF33K7Wn8(_`MNM`RS;QOjQpKsVJ)y
za2;pZ+`&k<lA>%zrt%ItjIf>;D324F23d_Lo!^mIz73d(eM?OJ3C#(?Es2&T%<M1*
zf<g$2R2?67gthY2ybdSM|JIuRmc7a;l^F?En{1kHWpLjrPwV4Ld+rhShBdokUa1#G
z`O6i2&#+?M!1E*MpnSjs2?9_SFdt5KCH#`Ew3=Q4Ok%f6kg$=hTUDd%c)5w+Hozf-
zhNeM3Uvi-Ys1h7Y$4o~9vzKC2IA6hLL*9yxE%^7D+#M^I+vZkxH)QjdMj`<c)h8}1
zB~`$~Ca3V_61LN6OKQQpk@<1WHWl<z_pm{;640K}rCmF_lpeO#A>f!I6;KSEJ>e<H
z3#IfW*&tv+#Kvr3LVhgHBs^qI9??M;T}Ez}n_GxfSJB9D(ia|(bIT5%>X;wVK&3uz
zQ=2ie#;Vc#I(vma#7>GomjifGTV8c)vl+bdUM(KC6@~8}sPGtasd`(@)o*ZDGu)SS
z|KKR`_a08KrJv(K1C(p2(mxD-cm9pA)wJ5m5`7`|lk?5n<GDx4C6x0AoDcIP7H0Dz
z9UgS9k;gSBXaf!bf%phl-tX&_h5NbD!@7}|n+rW#*t`wMi5`uZ8(u9Bl#YEcG3dG+
zJ+%oIVp(VB_6Mo?ks#^H@we3X?XZt@>|E+EX=UXg_GQMghiUPKW@yOaEsApficuOn
zl>(6=$%t-ZJ3PIg4NBCh*zYproVLDW(4J(X`8GL*XxRISWURBdW<4<aZ(Z1WNETlS
zMzil4JQ$rT&_8-S5-aLd^;AQdL=gd$rInpBN38_2&o^>Y222Oh{j--oRyBP^;n<lO
zTQB`I#vQ_MYa67>8HZ+lQ;PLXd~_&h@0snWTGEIKu(Q(E3h=C@fMM)+#2lVK!H#HB
z=AAR^GN(QF1Jnqymc}-c-M^<bAp_4}WCx$9rkXnpSxZ0IntN^QlT}EXVlHFA&Uh;q
z!OXYF{#Mt>nh#?MXD*9l+%L4y;HL&zen)4{O}C-aCXU@wt(1$>mz?xZGP;rJY#ipa
z=TiCeNDa>wr-JC}WWpiitJ)T`fY4V=4+{n;{DcSTvFWH%wO9b17Xg6CVT9UTPPRUr
zzSJPnV64Nsas9b$<;43dflr|FZPeD3eYNX_s9FD_l#9kkjuKI4p5(XfPE7;-|0Z#d
z0x!|P9bMOMlgMslqXsnC(o$9~*q#lm1vX*&<>F9qXa2#(O7IrS#e4(_TK21vzlnMH
z1mNc{+YID#q7oYBFc3Vt%A$(RL;xZRF(2AAdOGDgj8id@Se^5VG{oJDy!&qM-U)Z^
z-kR(E35a1>pdJ3AMC1X=&^SZf5Avxn(l7klQGsbRZ6Id+H34ZlnaFFAU|6YRGvaTp
zIVWfyO$ua|aq)EaX$Ld3_=<_+#(p0ri=1)$Bsl1_cc+}=)%>6L3-E>~gpzl><MUjh
zu%Vplcgy^VP_ElC`@pXJ|IHp(%N@}~;xzDE76r|6xy0Mij3pA_@{c<LRqF!+{-FLB
zrje^u+$8j*F1CBiKe&Ej<o2k6q>v*EY2s?Da=~W%B4D9Aq=W{E{lbwKIOc6I1|#;o
zgHpk8eE@L=uJcD&d#z;*ITs#Y>_nzm3KNYNKQxR>BOAX9Y%i4DnAyg)n-@0l<99r1
zn<!Df$hCB6*g6Cz(lV?za{&&f@K_XlkQ9N`F(s5x=r11D?9(n?Py=rDd<ZfDV;J@2
z8=pWp!plL1vju)9Xx60q@r;(a3Bj6f^05Dbn-;p{(SS93q4B?o?7NL~*uWS^DSOR!
z%u;Sn?#+Gr@n>W3@PSRS@2+<w5$_F)0Zr_ezlWse8;3&)e^`3jPS8Zt;wHrJE?y%j
z(Ro_#DL*Wg0OKD4Vqkm65)xn&O$?aKbQIUdFP>BKBPWQY0`LI-<6K9%epT-NgsXP^
zr>isX!#V=5mFnbDzOc6b<FF8bH$~0H@xR1Fomg+Bhv}*nGusUbjUEGD$8v1bD<X_a
zawjBc=2L(!zwJ$WplKkkc{&CUKM>zIs?c=BF!0NtX9uOKX3M4zBIDlLWNiwEytcx&
zJe>g#&lBM36eGO>v*Jj|^1m7K#Qip$fI!4mgUD$k-Z{{Ql<mExX5Rb*26ddEq~qot
zDG0aUU+nl^ixqkph44lqoS$pmM**`QBz+B;?T-_;*a?-k*g)oeZgeDP$Syb!;8_Q8
z%reo=d=$qfe3?@)Q*<P(ZgM8qk@CW9?a?GW!Lf~+>c|J}kG*MJ-*M(RrEz)B@-xCy
zQi}tn2*B(YZQyJA9*M^yC72PKx?Yzr2?lUqc{)29uyZz$i-ba^_S=-B{1BfN@3=RY
zOx3UKsLZ25m%MzlvQi+`qI`5#9s77J?Y|Vz<@+{`Ze%3bV+(1i*XGJmf$SHNS)JMG
zKe<<4IbZq&8H#^20ERW;HghV(03kh&W}KzlQHkK~5&V%O#^EJtQf4kU^6^5;xsib1
z^9F3*mcJI0aQNTm0WbOv*@qBuk64?hb;u#z4cWoxHUub!qcS!_aswaRWGj6GBVuO2
z%K;2eBp=>W8b0z-mIV-szE=_~`ruiJ!~AX>;`X{n{nv|;^)Rsyg+_{BU7v>j>+U|t
zlTv<Q40w4M$WJ|-@rYRRdr+dRz+GGNG(lfzdrG#Oa3{iYCCG^?89VWNHrb^^Q)+D+
z0$<3Oqcf2D?*!`;I81{(3j9ybOup)|060U~!erwDk7okr9w7pWo_QbaDZArZF~l$E
z0ihv<KhDh<Fl8R^?a)coj-u~vil~4VO0MOAi7hg1N!!2S6CKlP;=>RM!wB|qEbf?g
z-MqjMY1sAd*kXr4eJOk%_dW{`JA-PF16<*Nc#K<c*tyEN{gb{qBOnW6JKYN9s~KfF
zzH@S->Ga3-uu76d7D;nas4+dDI8Rcru3KFQlmiyv5`hW1k8um#CgxWlRtyHR%wfBH
znx*A~uMV4+XS%iU+@V`dfai3q=w_<x|1DDEhymcl*!XVHIvKf}Y~Vc*7T~S2Ml+OA
zzs&Ck77R@6agO=>sEo607-d3tI`LzyYh(1R?j7{BavMB9$`6Lgjy69SjwDO{UB1G|
z89@w#I{vzWq|&&8wzoR$uYIt*M_K-lskaP>>ifQj&kRE&or0u*fG{A^NSA_?fiwaF
zBHhi<-3TZhf~bUol*AAcQiC8}(g@O>&s9JF@9%lZyx`t@&ffd1z0cljRp8orQ*7;4
zvv{sW4Qy>J=Q{o%#L)S_Um{!~NY0heEUw+~o}-fUlS_eEejTk1g2iBJyT=CD*hCRC
zl?aDEY2|b0T65uj<kzlF_+AN@e4ITD=NmQ4YMFv1Yvh*~XQIcw=}_e&(Yq@oqy9~X
zXA=IjS=@|gckidB!d0jm_@2Qt;E#`rN&I#rzy_zs*e+)waGB^k7j(60tNfft2*zyE
z@12uj0l33vZ!dn(PWl8WEhX(QoBDK*rA_(>Gso@1XXP|NJz!Yrm^Z*hIbXP%Feiax
zJm#P2QkPuiLD=|GI>v_#=9|7!I3h;j>t%c}zvFwe6G-KbFus<L<IDL%2Npy>a1_81
z#;D5&$elP2-a#j~7_t&9eFDsX$Q>qzX_b%DSN*D<1^HgY2tl2sK2%EcJP8CkdA@HH
zE<b<vSm~c8xxMkyyZ874d!g)bI7o6yetO3zTl!G|q+kiz?PD7WMMH3=&kR=f@378(
zvp>kqVxwR2+KiD|Cc%7sMiyFaz`fwd^+_Mu9!%=tR-v$|cFeO-swG8n_7>Donxz}x
zfTN?Y&=&EJvcP3b5a{Faj{Zs5YlMn3wj}N-YuVQkHgjX_fDE%kS?lFv+7HtDxHNMc
z-2wNJxEIH7R*u^it?HH(t?(L*mRk>T<yK1f^7G#j8ETOMp*L2q=7Yf99fqx<2h90O
zfPXB3L&{WD*+p!8_(NOsyK1Y%f?+2zY@yE{F0Ed(KQo<>-U}Av<{C~Kp8j_hx^Xre
z?%as0T%D182(gCrK*&My;{#UE17ykwQR-99TTAu2yIuy2n9FpBc&+*Tm6_9`mGLuf
z_Kk>>ZUHVtKb~*k0$(S=(}_Z_q{(GdbKwXu>htQ=X}`1F1tp9dj0!O?r-`T0As!(-
z${?ptGY|K~NxNaC!dSFH5#ZQArt<Bg0Pl*8H`P|_i0OiJ8T#Wsq>_5lyF&ERN=L>L
zbG_|(u~GEWFKls92M(u9!cIcK;-vv9mDQ@`34q|fJ=eIxI>RBaqM0osZfJ;k_k0tp
zwE-P2vr$GaX<x<e643C&qV@rK6SHckSqe!C?wF|a->5tK0UNcw=(6)1Yr~5;s}1df
zHoJ~5wZv{7@{yW(->h=-+E-?p^I~b^@I&&5Go<GC?Bveu?(<jzmKS?v4=%IT$Rxi2
zKB3-YR)AMUUcQ?BCqJA_oV87oRz%4e8SCQ+e|r&**SR4|lkb!v$IP|)a@;SgO2K44
zD!{mr?x=lj;2?lz-em8Y_+gX1>zmS>qm&KsYd<X9&}s|foTLI+=c1SdECw;0ocjo%
zh|=9e8;sn5=RP+?kd(yCVV0$^T(&MEM!UB{cR~rD&`NF{tl3i2I;JID3!nl!*&|y-
z*>it(6k;#!y$3KKW^_3FJ<l1Lwn&PCW1f<7U4I1LDrr6zMO0p1({nS37$_kxv6s?G
z+BX+|{np>-RO~fz8r#9$3vN&uaamh<oP8gPL^8LQ_pf`Z;}(GUT^tTNQhk!q$Q;&y
zz<?3Em&?{P&5Ep23%<c;V)6Xm{k!~i^Kc>?N&VET?Xfy=_j>%JjkSUOZJpU8oFus#
zp(;{C1N^u_1R=g_X}}asT^6iJ)M-20sZxpOA)=ffB?wn)c`2$}OL?jQ)_rDv$h1na
zT*^Yz=@wpcWtzajtSfWCpO3zP3cNlZ$gtGH6iNKu+CjStYB0Q=E^7i$Z1UQ#6g_@=
zJQ1Wt2ASjSo0M~%Qqj|Qbn@pnQVC^^W4rE?yLz8rSfH|=_c6V1dJ-{Kx>FQ%wjj#p
z-3wPqoOa1Y#d&7nqk58MGIxslGb3990>yb|OPvF3$+tIaD93DRnAyvU9}ur06|{|z
zy~%A85JWz@vT~8$?QnK=ke#3QAh(J8ZT^zw^${@;Yg~>WqgDy^_njH3VP(9#q3G{Q
z>RwhVcTmbikm}xfKY1nlFmbZ<P#g)YCezF{3OtPz7CA8?`A=k`RXSI3|Abs;xAET)
z=N<_*+(a9JracMaOS}45O}>@!XWUHAM?bO?H-qZ~7rR15mj$HKZV+(EzDTJE2@mP1
zHf9a(JwAn0d0S8jjXaTJ)ZGg?44e%FpS_$N(=*W{PCi-`a*9HH<Z1pA$_n)FtID|L
zOS%s_KSG$hr=_5Be=mPKkUW;8>GZBg9F5Tn_)V-~JkFyqq@LGstkndMhg^4heY_I6
zP6zfSDR7=w8j6}=7AQKUsYiDolzQW^Z06&~B9<f;zJMD5=REM+Eryt*f#ZE7=%Q9D
z5Kk~av6!~psheIahNIf;SOi7m;po7)7?9>x`|q&nb^BHaoQN|o3}wUY6E88pi#*hj
z;(<N6{rS%GFOs8QVq9YzS)Q>wC@ncjrp|_Ge(%ekA1=7;HT(AYlaRSI)nM6xBb=a$
zaqB9Zu*>tOrW0eYWgX_!$*wkea&1M4z@$AWUQ6vtO6qx2d;Ox$7tstIMw=#aRF8-C
zd4OvH+?fJs3m1zaGvPZHRJX?vAvW@l>M*1cBY*xnAgB)E4?5UENClye?lh0k&+Rqs
zyyt&NFX#LSe_R3KqRcZu!>8z-L)rV0pRwsDPEN_)BZ-)8A{x(~jb|Gc(k~YY<YE8N
z{wtFTO2F~WtkN>w#o5o#z{*$=jrb%-9jp{U;cm9_@sO?dm<mlz5wfguTp85Tj0bqQ
zT|U6R&`X-HWe2SblY#VxHz6Y5mM?zr#Gj3*4xGPHb#VFd%t|#47GS_0hZv{ZA*>A*
zAid&EhZTap1IzK<xV}+D2?n=&2vFuO?Bm@uxymX{JR9=LZ`Gvy=|ah+DzBe;6bR#-
z?a;^=H%;qIE4j@JzRot^VQLurW0gxbrDIS~B@eJE+FRC3!Fc*-z@WJYr(9a13r;<^
z(CeT4YWoI8{EqSh;3ngvFe-3NjT#!R*sCGFYCeqqVsxE#_6It%4CZ&DL^Qc0ciVRs
zTlA_w)p#IO_AYHhHNo!$+}dk@S1Fbmv^F}aE>}c5Tkowp8#>C{bt$Yy11fNh?fE&f
zS)K$Aqw1AEGue{wSL1eL7)x8G)0jG>PVeS4$=glELvOC-cDdHTw4C+th!>{$os0+A
z;84XVZa10u$TT^vIarval4a~j_qLrcVS9B0V)QyfG9+F@y3mEG{8)Mf+oYW|+GcK6
zzE8A<cAg$dHrF(%MrN*xzE+mpVK1|jj+EU!H3|=Xt%F}|6vDzX?1xM&1SU;&bTlR@
z)Wg&P&)e)wm}u;Zj6^cqETg7X@V(~Wu!594HiLKBwO_=8g95nMYk&SmLwNmR+@w;W
zXBHaMmbQA5olO7jG`(r{-+~j5aZ!OnDoDXC64l*g6^bTG4H84ec8KJdokj^X>gKJ+
z(A+aO#JC$H(zbCw^$Wlr13UstV)JU_@a>bRhX^&B#QuheC@RBHs0`M6WY0%Iw#7Yb
zY#h50XB<xPo=@3w9n#wiQ8|A$-lnl5!VAkV)?hV$7qvzjIz*VhTV%((Elt()*<Unm
zHhi93Z&C2`gN*VYdBUNF@2wM#5B;@v`lD~nNK@Q-2B}v9HIqsGE#;qoPbH{z$%{0H
z48}lcf&e<$w^`An1*KRbHz!%HC)QJ3IYf4#8)%+7&F=;)^dlfULO>1DbT_RmNz8-K
zTydIH2ycs^)MY7I_-nrw(5uh5N|oPNK&Q~aF89fad=I`_`FvsC5qAlu_P%b5K+!!#
zw($i^FfV9~?rLBQDw$a9a9XhL&*0wKzQyj>hggY?c!IAp3k`|mN^dXA=;u%B_095^
zi0YET)PCK*oz;eTZ~{>={dsZcVf7fW6^_OOrHA&zXCjl#%N?iY-U#^)JH^4Nvag-K
z{R2z>lU-aMij+X^h(jP=<dm5ctXIk=UWTaHHUPHtenso3@W7H~sIF8yZq5Jkx8&@`
zGE0S)QIIO(ria*8RO-_$$op3B^ecD&8d(h#H)N4N!?Ezn(RI!aI#X#2Dd^v&4(Yhl
zlJ%XJ|8zC5;Uj^I^1T6G(*hB#*icP&#wIV`ME5fyT2<Ejom2C7?pr1~X$;b4tE{%D
z$DU>W@zjm+b!-$n945kXUZ%?!&MHHXr=+*o?`!3Ibj@mFTdu(E+k_oii{t|Yii7DB
z9IYl@xnM8w*dKOFqECd5pgNN`Z}w)i?H&48y*q|g*_>sZ{Xfau_i4J_y|Fo(c5mJG
z+0xE<vdew@5fVcOSF3)pvo6>@O%U?R-#A<jwq;J{@D5uh-Cyj)Y`ruGyoGr7`C~7B
za0U$c)w)^`EUSbDNs6VLA(Ein=P_gLn1%4)f`C|hl$$jIM4)W?O^k)rV5)PN8(J@A
zNcfL@E2oVE0=$iK79#G`go7HBK0IJch7o`<Fge8X$=g^Eq)}tJvGLy#NV@uTUJ-pQ
z71rc&?W(jdnR@*)l_<40;p?+*42@yLMdv*i+-``nBbC~M!bjhM&W4qRxcxx_>EWuI
z1!RVJ>YRHsG(KekPuS}o^T}Gel9Cu2Vo7eJChM=`EG}7F5^v^DFI3tflGc|54)rvk
z#fEZxG0Xn90OLIFHwmvi7ZTs}#7dOlQ*!GTQv#IUq&ZYT&;`a%wcWEI{Rl)4rB^nu
zlVje5)qc-G1){hjx8INC&Z{C@w&{%{3Wap?*nOzP<y2kEuXP!oP6>&{$9q-|dEdl)
znaif~9chD~1Ik&^3;1d3D@`OlvkDam2Y*Z$g%FvG?=Cg|u>`-kKp?CkwcZ~-ZMNh(
z8>#+jvE)$#rvvn!kahQ~X9A4MjO2A=(i4;!s8HswyS(bM=^>?5_3ABCdUjD-Vsjbo
zR=6~-SPBK~0osfb56<Gpf&cw^;64pLU&?Ys+EYUCHHJfUZp}EH2v=gb2|xdG?;eBK
zrK0Gk6IZJevQIQEn{hAm*i4<atGlXrP4!?m5GsAP&Ezb<EFXi)yL<ku%yQSsI-1{)
zz^`~OF72CHv4*fri%%=(|3d79;b(CWTKfJ&@wHYJG@w#$IMr8bh&}KX-VI&?W=|%s
z4daM_-*Q>{eXR@Bk$|PAq@N=3CX^Bu;)52_Mk=^llO{+rfZ4!u@MtHjKjAyQGBten
z#CX|9ZTei2=t9qLNx}$mc2r_@zVPCsKP3I0=n+MF4zE;%G-ymCOz8Alql8{*=Hhv9
zU;|us;jcW`cSz=CBx484{1x*q`D!6?u4XF{Dkn-0wO=Y$ft=295C_s9JE(n8qy#XP
z5l`aH5K57E$0}jhE+f<<0+rMB+`Gq6@!a`lhBHl_aAu7SoCj^7dCfvR#hb5#Fe7fj
z3rnic9amD>l0a>v2Emq&lyRFUL>V{YV;TG46PI{Oska+N4IfQlbia^JxvCE6wgv>M
zI`hJ=J*@)qN4)AKz$&V=ZTkr}acNom{HCvn!`xdulu>O6UFNcM$bzRmA#Ha0WXYeB
z6l4Z{Q00vXpP!r3!OlY+0rl#BvylFNDit<uTh=~$P{IH4?)0Y%gWvj0V<(dAYN~I)
zq9V3-d(R$pNl6Pc<N7j6SKx}ZKMoi;S-uL(;e{Ew18kH{Z3@tbkDdrzbVD!RKz7ve
z-eK=|>b$}nl~rUt9q-5LRWG;={z|wONE3iPfE2wS;Pxx5YtYyZI59*$`Wf&@tHA$^
ziTtSh{GMZS(_~w8dBdc#;QQ7uZ_dne+tYvlJ6G~D;V_d_-^CRNITC^!KwJS##ti=!
zVb;C8sy37zayL`hJtc8b^ZXSLSYHPcDwyj;pNfNO{ZP+$`gs`&=42Y97?>u!K33Un
z?SI!-*t5AqI3}^+J>!}co}CKZ>k-9F(2eS0wdrh-z3kyHo&j3Fq)6a~>(Z9`4wxin
zSsH+cr;aOZ5M@I)LP-&r2M>h_zMF~vnb=1c-F3&p9dtPV>WR(hbcUm$rS4mL2bHiX
zOON{=ek{O~qGl6Ot5i`qHe<MahTra1Po6Zvo<|LnVL@B$4!s(Mqvsz3wPt&0h}&vU
zi~;i&KFfOS*LK`FoLvH!`GU9s{G3_Jw@uY-nw|usRRb>V>9n&+VdX!mM0HQ~Ds_w_
z4z^e`xiA#$tIp*{j6P~)CL<KHCUV|A3?lkV3|3~-uuU;Zb;?F{`FeO<Nm=u#|D}xG
zHT@S#l5;fXi#QgZ(lH=j@IeRSzj}f5IAkfEv=+Lf(UMmw=;BlS<tP{wQ*3dFeTmEt
zjUt*Q_!O+86uJ&GID?NF%ti27?j_scbY})^>A{`SoU-!1Qt){h1@~4uhwu_`D5F-1
zXNm9xcLVhK1kU7Up_=TFj&T%)h*7M3b1K0xvL#+&*+BEHhDwGZykwi*O7-T;b8_}`
zh(`HD0r3{hnvGeyH8-PJP706iWqdG-D0IL-p?I`X_9W80hA7ifj7Bdy;I$LO2Yi$6
zY#%%;vRq+~Lw=r~epx>*E!Zcz{?|V)R8EGlgLfLMwnlOPfh<1gtOP~D_is$BNyjoR
zn+jZ2w1|CrmT;wW-2-1q*oc|z(v!CK)F(O;q}4}3yrmDcdy<yV;9st2PxPhC%#zP8
zm*F;^3-6tG(L1nibKgFm`S5=4Gj8h2!)6Glmwf!X5{pzeZn;kJi@aro0j^ci!;g(F
zpSdYAnfxSxLdc@KG?>L0KhfZqNI6kv#4X!v9v+WK?@ON-$4hUfnyB3{LZHp{+EDSQ
z3kwUBrP(cq8sh(IkxPkxZbw!V%f~HlUUKkre~=N&p_@-U%&l&`7rx<CFm~JMQu4Zc
zB;H$T+)<BGJP;AS{1ITr;QC0!MxBaZ9Axi}*hi_=IlB*#9Y3!?)tRI80qO)iDZP+p
z73>oqxdSOa{z`_ak4`QMA)RL31B|`Za8kpBH&!u7svYA<YBE^Kz%yEc5@<ljG{*@W
z=Y{+zlJ#kSm>n1&Cpxa^l5XwHK6R4jB>JMC1-<xWLiY~tzXZsj;sG-_3NwS<8h>bW
z62S%CT$M8An+=*4j2buoCcj3T`axPlxhLt&G4(lhb_ByR)+kjDe!@l_n0L<#i}+G=
zd2d$PUSWo21~tFwBXpJAp1Q?2@~4TI65{+q+vP;n1sFrpmL&p%BV}tuR_<tRMa!Ye
zs}Nw3HM0>oVdGH%AKFx2;zf8M4m)@f&Z;-VRp_bbQYDmk`oE<Fs&8ax;)q_Wy~YFf
za{lI~=`V!6VY6h-M+<2LsAzIHHd@v^ZYHpl*M1o0$Uv7p?vrZ)U&s?5m1~*5ar&yu
zQ3^HVJJ;uovZXOK?Ql+*^hvppdh1WOH7LTo+bfc{+D?-vc5$y#r;&;+;9h|#8Otuv
zYhAR8&<O`OXg)loWkK@=K#~_oIUN_Ws}zKf5al5z7~|M&8KV1*q#IwJUUTq4#;e2g
zStndPjROzkNP5Zp5u5L)`hWkQ?;?Su8*TP&RUnu)#1{~exiWRmNVM*8ttOH23p9-T
z`<A^FHhSSP8KCdaT87Vxu?F{HS9Q-{gGzlJy0nvy!b<KLVO_ncSWO;Rw&Kb<Fv`ZU
zg>9+>bN+-b;wEijDVo@NtS_x%BJs*e$<QgF3J?WT=Zbui$#SRCvrf$stS35ebSl8Y
zXTbmJxXzPJGq)K}FPzBf|I}6WY<}lSHKUV(y?e&L(^JeAI_;-1TLLV;<k%xovTiEj
ziyc;VU&w<bjEM|Y!puOG!Mk~Ily?8}deiYu;1Y`NTV`(feUr%knH}Od(@komCvkR2
zHa2PW#2QL+LUNmY#IBZk)5U(B32(<}SB7v8FcN!h<@3&^mgt&<cN3973~9)EP=aro
z5KF&u<(nrN=qUX{=CN+~^uW)#Rg!f%M_SL#)BwWLmvq=NEdNY5qv8R?=zTkxP!!MP
z1EGpPJ!f@2br3}DYA>e$1+=drbztaKl&(_a{&MdN7+M#|>-Wi7hn+D>AZ0>%+4cJs
zt1iS|^E{Oc4&Wdi-yxs9oDObIH;$m#^y7*x@nicV8^u^GW7&!1m&;K-IE7Qu?v=Hf
zm=xoo6j#ELLsWRDE)hQgv9hV?MR5}*<8pqLG1}6zb;0e;VC~y%IO@>34rtD+|G(F*
zgi5{~AuLYUo2gN1Y_~e3qc^@7hyJ`K=VBlkHnu$qFYis4My8DnG@(4<w?p`8?(Xbh
zJ8(U%igkeQifyjYK09bD>BkjrfKkkNVyRyY5IR&IytFE#AS30GcOOD77>C&TV~28c
z^RrGgn{auxstzz2$M&IF_l|UOSQc8b-oH@vuub+Jid$bOpA@Y4WXw`XA)QdsLRggX
zA1v*%K!Q$k3XA+;8Cd*uTtWjqrh3;jI)3sYNDDyS^OLg~>~fHjdw^XrX3Xj*f6;a<
zw?|{GBwL!wU;o>N=(i|+m#yVfQ|PL%%;?HlxBkH4>c}kS7fnv?L5UR+Qo-9wEHv+B
z=e=a<U+-ny(dLMC669d8EL3n{D2bX4h-;*=x^q*+M&)hxl<;x0p90G<#eqj30W!;}
z<<A+O(aWCR0JfB3d357R)1-u5nY=c+I%W@cgC}cpVyQp|vDK~RvAr*XWb^d_O6MFu
z$}I>ecR0H&N3}mK-io&SLfLBYU^Xi%e%z5S(LL*mjZb5E@CerBvD2RKPbUVyQ%Ftz
zRH;&@>55@4Bq~{}uzc#SToa4J1OE6YK9J7f_S3_0QFXt|7llz4K2H#+)n(+u?yAS9
zSIvQ*|AWeu5JfIAeCu(v+10U+b|zaoRue}S?7T{s<H@`Vg{$^=TG);STQd7uWgZ}$
z%V(&YEj)XC@EMPbs;|Q0-!;*$USrK#aKAcr#89v)N|WUN@#U=P><9!1N2bFIN$L@}
z6f{uj{>Ms`aY)rS9?Xhyc<v*=UM7t0XL!sHSxJ{xJ(HO!r!O@No3!8OHS8{mdezQ`
zA+gH;_ILo=<9ck=4dB8rvveJEaHsO}<TLGzV^+jb$okEJq^+87S!5t|l;EzTRI?gZ
z0T5MY^@qsNUbFc{vbm8&J4gJCS!VTJ#)ht!@HPF5B{yrGrgYOLodUv9B4#@h_A(>c
zhOumGeCX}*)I8t)M=Ng)BZtx2L}5G_I;ckU8pQf<56Zk#+!#bnOCZN)9`Zbdg`~-y
zg#7OXxq!+k$8i|}xagG%SP$sWJ?tAX(eCU{%p`9JhsD|y;b{h@FT+tLgH6Pt3%9#U
z$bS>2@yMpqq|8K?uqWxi5<ZqI^On){hbjH)|K29MDv`|zpX){YL&<BChrofcw*YaO
zH<jKm>YTA^Qs2gxR&m&l_J*W2yG@E^u6Xt&_u1U-Pbc`<jw${hHsK<LntZP-@4}gP
z@#;3tL8x#8<9vEwcZrYX<8}#L(w%C!iOa-Sh?*FpHu+xNjhl2-+s3bd7mt8rozzBJ
zztdR7e_oe%%qJi`xEpHy(T<*U=2O~8oY_w;gI|;(ipy@cWmPwk;s%zrb-upm@~A{6
z2oGh*<RgJO5{>_rGLd{cNT_QjWwvP73-XFVzO=pnz(*kj#N*qK6vin)tJ8{z)i@>D
zC$DSmoBR*PRopBpPsQ$CAUY87M-VSIW@h$#Acw#F1)T=iat~aOv%Qrz$yaj<uU#^Y
zxIlI|K$?q<%5BLE9hs?-cpgFFC@R`ZbuMw~9h~(zgV2NV>bZ!zMNz*AW0*YodE6C(
zv=bdW8iC9eOL3)zER+BG33}UCq`NYLm-T;)IJIu;2ETgqrch$(Btt*z4TO_A!)7u5
z$JswL2H|`Dum*|g$cUNxhbpV4zh^jP1(?uVZiD0|OP9`?Idrt56k>fO<=C@wSTPri
zX~O694$-IpI#FHGtUy8T8}F19u4~eo3}UkaKCBJsU`&4>f86|H;P@+z$z_b?{D@F0
zINc<J@pCUAbNz=Ynfri8;+Xcc>b|TW?Gx*>vzkN>jKloxoa{H|pNJE`Eh3IjVjDAx
zUY$Fkd*kC9*sgyU+qXKiS%^OUGuUdxPfeha2#lyY%(w3#3<*ZKOB&<WzH!e8$<6Hl
zI;(zgN)L4`qE;Ex)FX*C=qLJQ@A(;5QLp@pY)Y7M9VA5kE^A+C*D+aFM#@j{ras+V
zPQ|*08+^7%T|AnR+#;CECSswF%ILN2u3r2@tFP{`pAqf#w9t%ZSyCWiI|1Lkqg|1h
z2oDFlUXJG-C%8e4^YU!<TR$xfy>E`fT9K|{ytAK54|6C|D1dG(tRTJaBFc##aroFt
z#Ur3L&DFHou9`5#+H}4|)4h3#qju);W)ds*!d{TQJt^j<57cG})lhUDqf0&7<i|gW
zbyyVptFy5uT%?sZR)GZsy4*xFPK&l@*gyLg%wz|)uC&JXbZ^)gs%R=8CS8jOPy%Iy
zXnfQILSkAqTM2!?2atdQdCelZq094y(&eY?v4s479WMkvKEHxFW6~~9J5#nxpk`$Q
zqd;f^zF@O)^~KGpyG@Y7#&hMeu#^H_xv&kfR^9!%<T1JKuKf@Bl39mS>u~<NlYMxw
zocEo-I4N{)If`7}<ZYcj=;m);xhz$U25+m)Kp{SgP6cZ14l=`mGJ}E7@K5ReSig`;
zZn&0|<vg>J=2i8w3L{@o1HYZ@3pzdDgjDwLD2T%N{bNcO+S51N$Ms1dEzt}M1Ltn3
z$*tP3?T`AK?Fs6RgLBbB>7~rPePbt9uHOru`0{hBL;{l$^g31z)H8IBu&Iv6bKbhd
z_-NpVZWe<06@NBd*lVrdY!lg030`bKG(2Wu6Kc)O3BqyDASq=|8@nD?ox#~uCRr*{
zfmEt$r0Z(%XBT-MH_0UE5M2G<q1f1RcO;G2`uBa@*(O)K0R2R}wJJOBtJNRVPs=Z&
zetRs>NCo23ql{QQmCke>d)Bo_w)aC8%7`=WBQo6Vl}H?JH`~}87y|2u?3@C_d$yGu
z2H^{RstFBio@fq^;-4$~70Jm;YrCudF@QgR{Mv<sd9`XKvc=kTZ8v`UW&tu#RUaXI
z2e%=8nqcqz{WLu>&&S@ol;F0YT`M$aM}XR|W|Ud!mJgpyanY}Kofxc%nR(sz3mId2
zKEv4TKRFmCRUBtTf+F{SU1^Pta-AOk(Wf{GiNr;dfuNmcsMy}zpX=N)!T)KOJVFIY
zxznVAjp{nTG@!`zf~Mydp~Xt5+cjYKU$3D|I<u`kkUOuXopHmjtA5$pFvb${PBrpd
zaMfU13%mc~rH2v$$)AzVLip^`Io^yo<lzpl$!ecbenhI9w3bZO{9e9dBd_c)9Fove
ze)7y>SjUgkh7cUCetCJ(4`4awdGd6OO3PUO!CBYr+sfnb;6FFbzwf$+KnudE^2|lD
zNQR<j>((SqPQSk94=)bvsA|N^|03M!I~J2nbH1z2HM1MX`@{<k5f-ok;z+@(j*wu>
zR1JH~Y%lut#OZdzrc|(7aok<}!S6}(deR+Y-}+CUw?u;NF^20ZWDXGF$+1Gx&H(4y
zfbY!2fX*d1k?N3i?L4cwuyn^wXCCIK2}hYg)HMgplDF7Ar)zqEKo1ipOt}c(B0ndw
z_oZ++qi_m~T~tb2>dcx5Y+11Jdrg2!Cyrpds<^OJIZ;<Kk=1Uyl|pn@4I+?-Kc{Bu
zNqV)J!ahIGhRfh(-LDc>sbEE~5%BXtC2hppY-??)lTHmxL&a6B38TDoi~+ub8mm7K
zP`hUWIW4(~;8d@I4Y39!0u(>v;xy<<5E-!DyKL&RMmX@Lfr$3R-^qWxvS)!HUg&fb
zALaQ%jmv32HTJDw<W#cbKU=vH1>V-#lIQAwaqKNQG-*<>&Pb8q^XF8=8!gonik--7
zsxpJMsfVm(y#eLfZ^>4U`MlQN^H=U;a|5VA{!(QoUV5ZXWNk`=1|08I5jROc1U3>R
z^X`sfKX+ZZXWNDe`D<3GR%$FWCsRw{_9sk)SL{>Mgy|i#9pEO@SM@<@<7)hYqB!L3
zMhN@+`8(aL2)niBI;3RysUEvUlDJr`7Ay?wHQr2()lXd>c%LN9fx)VdszE>X-kv9&
zw!v@vWii?bJ68Yu4|tgGuEIsRLE%!h`_Xwbb@JWg^Y#sKLR~VrnLZz;+5b-ZO!UE&
zKi}cA>f}T%=P1cVt4fqASm?n+xmK?$Z&k@cf-Zy6=u})S&r`g->cgk4Gzaq|aj@38
zG$DM9`8}W8gP(O94>M}6Ob$6o_?Kt0!W@W1&vaHMd_ok?Q}LR!Lk50Bw^UHuEL1%5
z<pk<13)S6`qxWo=(9%nwMzbn4*Lh8j=(gX3jqbZ#cbuT>q~Q3(ww7mus$O#6$0UW=
zKo+U;5R$lf#&&AhR%3qH-&^{f9h1Tt&$-7b&Fd|sJGh(su=Ks4lvp7g<u`7AHlKw`
zpntBzRwF0_%F6<yK+NxR!M&M%4s$V9LyAj0f#0IuP>d8oL8lSv&cvIssZZxN(N53M
zClCmC6BDm4YxDRu;$-g?EoJs1krRks<7b~`$#UX_?T$PIlRlam39nKXs-Un}WKSPo
zvRMUdQzWWC-<>+zIaH1}jpxWQ7GC>IduXe4MmVAe%kl3+!1!61?04`B+@`{tzZiu&
zvg8Ux+!G^4J-2=YY?efU;7UKAzv>P&g^?0J6FbE_FOeNIz`Ok7up2W>1NH2dPo^us
z!E`n}P1A@`@_;k*LhM;^6TkF6xWgd0#t<2pgVKfNi;$R{FXL>}%&au$h%OLieqv4+
z;{DvNlfEEr?R61N3TzUYyClQ=Y@d-w7zN($@;mkHR2eG6w-%*}H-lHvJ6t>MNl|V1
z3>c342`EAOBK5b;-p@1~RrNT&`(@3T3-_)DvBHoJOg$w-;rZ@2LZJZirVB@5<6eA#
z8#dSC?@XSXu3Y}B>SpPeMbXy<>Q3WTb+(}wbNQ=f9c^J0VofEaVN$A0egp^^ZK)Nv
zy&<GR3fm?7J4+?;LU`7sPejC7b!JFHX5ckSKx5`J_zXf(lrVm*Vlhcy4@0QCQ_7)(
zaKYX8THV@Aqzl{frO1o19P148yPrb7QqxAlG)P6$vzH)AEO|$=8umBgGr|Ev)r?=I
z@DIiCHG_PS0fd&eF%cvh*`9D2sl^3meizQVYQu;gH{tE<{MuDPdPQJU`{eYT3n+!0
z5n=-!L`K38LzdL2@2C3+od!HqOe$N&>Su94ie;SOJ^109<Gq;#YU;TCTIdL^7yhe6
zPpFPv0K%tlh1R7L|D5I%q|(F&`oIa!?94#`{8|`uPL)^2+(NqKkp;<9ZULp({4D1E
z0^l)N=>cTe>L7!4tGZOgjHmpVyg;M@Cv*R$-1;Ruq&drh9b#S<5)z2w6*>4=acuoh
z_&7k{+?%ihtMKEmrPia~p9LH%-}!*s1y2V(%;fPUMfdT>n6d-ZPhe2`_R6cmOOgit
zY1V=Bu{zQ#&I3ilMmc664KEyyI=>Wyl^<)fK<&{MS2RFDbw*4?FO8}B?hB0Xrd};4
z{TrLg8^_B8(VXCRE9K&|Qc|(>vj0}Pp6j_b){J=Qk7~vaf61YjG{6R1v;rI2;!gZ%
zhGXuNs`|ST;kyH`*8E)tJ;%v4Z-DUa-p3&0(p=8@s3C!>`AyT8brM_eJBeSUSPvKd
zWWypZbTyx-LyN|n<B)_kEnv9|iSao&+~B(bSgQ*wv2!+taeQ`5DfEy(JRcx#bT|v6
zbT4#%_mBYtoFnGYgLB>!kp?53yly+ox|v<}t9NuN28+R{7sM30zig60I1-MR15Dn{
zt_Ck{ojwhu1IMSs(zx;xGm+bDB3-^?oGUMHEhN<cCXAPBy`7XqX?IhtHgLg43X<p|
zCRS|kW#a~cA~AVOOE^9o9k>|IeWyT!>=!L>0RQEX(}J-J41*jE$-R@^hAtdoZb*Q-
z9Sf?m!V;j#Xm^w@-ijFQdn74<C#FKG%(%F~sd#Y!Dyz*-hsexdCc(eoIDCe|1Mjcb
z{<yD=X6J;ISvUVJb+ZsGj}^RYOjcM|<=kHNp9-@pPNh3}v2#iZW5#uoO6Oc1wd90b
zZ~-sGVgCLGef;FvJ#$GIKdaXBMCY?2Jd|_t)|k%y_<HDn-bvG7soiFXp7thtEn>{|
zEYIkkM$se<i&rf9Gg(t(DDZu9l6-+JQ;HHxkNa<{8(b+rPJGAn7YjP#we=X$VFC^A
zk&_!SJ4I0z{6&2AG9Yaa4UG#M2J%`pd0$f!Zh+4lBo|(=k^vg#+TZJErZVXvA5;z?
zGdImBJElxb@9XGnNX>nwT$~(+8!{o5a6Mm9p*x%tJh5wk2+9d%2x1}nfbqYZ&&XOG
z&Foe|2BQQ6=@VPANa;xG;#30)w5UA~sHcr38M5@QsEy<S;|mYY$ulM1CrqDdt3gd@
zkSQY24$uH##S0ie4Jvg%jtBnh9ZK#3(s-rrsq*+3UKYjgvZ*?-?eLj0wqr5NAt$?f
zE}IHytM^!a*AiR6fr&#mHqE(d<#6U68&q`+i<2{M=@(lP;^=Uo*`(HCYjC^Em}JqX
zDs@JY<m{)gDvVi=eP4Rz9m!Lh-6#Q1n)DN7yXHAI?W7;IwnYC90t{YgBhq|%fGCHF
zg{iZL*Q~uKnUaWMC`2R{)O;?|c}I*H+g!4Ywg?|AC7C|v;uWdYUi{Ahzsi?l&vKA~
z>LNwp^7D5!V++>r9vl_3tZVXHE`yd3(;^PerL-X~^Os{q2#}FNXWj?Eyjszucet1a
z9eVJcbh~;yww(!gTYtfJbw9O@E*3SlwCy}yYRW`OrcSBT1Z{0A(d>uaG47LNXSe^x
zHCzIe^_VsYZn_n^#oJJ`G(11*@q}|U>cxScwd;(a6lMAGCB)(wBhz1vseSf}^o%ed
zW_d{;q@5b)Xh~PVy;x1^z%1UutFGRk?y@uw$zl9;i*KwZyx1}O*tML>@vqDuKy8%T
zGVO12)SMi<KH#A~tlSf8cbflSXvO6Ltj1R#!$|8slhE5eN5?S=tfG38ZRNKF@j*pj
zl-Ok$bYCMgqBBtINybrKzw(>_wJZ*Eh%~{Lv0mfBe0nCpe|G4k5qtL||C-7R8gxzh
znP_^V#}EP7Ecib&`vCC#9r0K+z=x({{L4?ilN6w<7@=Y8Yk`lNmpM(vG_3N<?IBwh
z+6m*QEpTAtd?2Z)v79gmYD{FF{YyO1Jd-5I{e8bowl&3xdEeei<7$!9X|Td2Mg9(&
zh~V}M)!iCgPOwx0NwUpq8noHpXWjZL8{Cwkw6f&)p{|zdvPSIvDvGYu(<VD?xuUmH
z#tn<|5nzDDUT`V7)nm8P8>9A?RD&@{S&P#U+NmC{01jM$Z=C;#<T{evzi!&5h$6jp
z5bNuY0=(kflCrjllOImfZUkPgCvUm<3%uG-0|Q&kN=!z^B>!!07;|;Cvuw`wK;x@Q
zy|(#pFPuoEE~Cgw(kYV2O9x&J+Ut9$r^_-5=rc*F!W{5K&y;D$F7$}({REV%3}W|&
zqlD-%qlM1=A9=I!ZfIOU&0n8Jv_Q`vEKVVJL80H@G7DXINzAYu&TDaz-F<M2qo7hP
z5$Y8UE&-oDz6mW_h|`MiTY?ngq4ki|1PD6~R)-0^JY%)IgW=nG#v5OaFJ{6Ev9dBK
zH`Sy|=W7;#?-3m*Ag+f5G?l6wp&WlOA_I6(z25XMn~duyQ1F1uq{E=FaWM2ZbZtW>
zu+^O(?)w}eRPCUZV{~@xzfTWC-+RXk;QjXcVZFU{EZ~#3y@EF0joL*;2zU$%07~$x
zS593F7QgvtfP@t-blHCunrrz!r+NN<;CM8<^W4LL-w=?F`9wHEH@cR8k7N=-eAMjy
zsiS;<JH@i0`}@6T@;Xqr*;$hNa>Zv|LeySqwVB5nRBwC93sPA=?|TkHO-g$r6~N&Y
zu*Bv8RSncZr&4ThOv@&dv>qrqonKBH3_Qo~!UzBTe{NuxbdD?{UA9JLftqcm*i~)`
zs97gO++8r|6mmh_cpr}jg-fKY^+Z%KCOd8~g-`+Db=gauR^tJRa|sx~YUgI^GaB@P
zh{@hcYJmeoytnoZpmHI;ByAjDhzF2{<rSWg05+uIOY#^5+o`e~yrCqoj%IanCMmu6
z<>wM<_ISqTNNNT?dri~~f!@M;A3wP#SFpwf__Sd0#nL2Wyvr*$T+`uDl4S{YPGg{M
zp`d+xrGtf$0tJQy?^}`hDX|#<qn$(p82{Yx{DExS5H83wW>B27h=r}Rj!zuq$@^4>
z+6~)h7sE}q8m+I381ofe!tcYA6Ro86{Y%LQj~+(?NM~8V18$OYQIckL5}O>3Q_I=2
z+c77*L*p>gl6-AySswDU>VJ0Ca|76!@u8-yXxy0CTJ@XmD1x-oi3dNwSaN}bTzktW
z;VX)-v6w%P#h)IzMFM&C$AETj`4)QVs;Wt?Z`ceI^d*}<e09Q&WLB5%T-R-#H2k6f
z^PdlR^#>SymG>i(xtf5CHrdzVAT__0qkk}0{;<!05Vb$S4LtUU$U%byywmOr(JC*^
zt0jMy!dKAb$qZDVA~-((w4?8C=SPUyHshk1a?-e^t$u@MH~&&Bb10dXOV&ts?*I28
zlvUvDa@`l(B(vkCYhvNg0<PZ|s#B)pC@~xX-CJEf>zWfbo?jMkfBbq2@%pw&)mIY<
zhJ3ZBc4^JgrapnYGtSHDhgs(A_gOpoW0yFTnWT<a(@%TF1f7?Ov1OdxqKrYk(R2jB
zd>bc#7&hG98*p=OUgd@82L{`BF_o(~<?qQ|H1b-$1$d+>6rkhUV_<WXiwBASA)mZC
zZM!pivZ)3-9VK8UReg0uf7YH<{0S^RegM_%OfSIto=Sl3hf1Fh74oir?DL7weg`8n
zlA>b>bc)Jt`$o;qONQoG*C58PjS;s?Tzv3{K*%s~N$Z9LMVPPwjKN3cEKmJgK@eab
zJH2*;8CX$*zPhr1PtgRV+pGI386&|@>3aQOTa!``f=<`$hR41galQl|bjre4<hl!Y
z2kHkDE|QLX_0^r>vj{YfHsjb3y=bLw&CJdH)<=12IA~^A4&(LZKdn1|cQ#jE8ODFT
z1pnhJAy#12G0!BE3jZ#C!iJ5~NpNqjy9tQx8E(L54Ja0y#wyQBpmjM@#s@s43{r$Q
zKuz9U0<SNsRsSn8+L?h33~3z6-)0}Y=jAsKO<VuX8su;j{S7#lFGg6nz81}j5ukqC
zS07=cglC^v;tDOOGeTV)_bP2fy9p2G>n{awi}gxVfP-lh2tK<&r+xggkGZP!?27s}
zp}0cDSw~;Kmm}%moIAvkV)@s#Rxn1O(h3RUxPWluw1YJsN`CDW8z1zYLfWSa%>=0Y
zXF8F<L(TgrjttDnLY}|Y^9OR_T?@oU#}8RtK|F-TZ{rL%UA+#DKJA1VgA4_EpbmnG
znb?7zlsa&Dez)H~1FTH{dz=i6G+oQy0@m~X$38Iqz80Tx!MNdH`1r-P88+%;k`kz4
zL1BL8hk|i@Ahw7=RrEnJkho!(+)SWSEUT@TiHE`=1Do>~Mf4DR3y<TJ0OkrdFl(%{
z;KSRZ3?+oS3{(99WGpU6a(F=G3O}?8P$Hb^`}n_K;dlVjh)9NhjX-7m?^jbi)F&%8
zaPgemga<AOlM#hsgtl~Xi{J;3R9@9QME6O(`e#NyEC@8GF;RG%JsC6qWn*hm7!|M+
zV7AO|{<kWPw0A(ZwU`Mfh~-&0_FZs7+eYJVeRgLEgricQ{ok&JAyL5N%A>d|ioe^-
zT67MCZof1{h2B>Jv^$nYfDO2$pwI+>9_>a{Eav0XxjXM%dh?V;&;8u6ei4f+N$L6a
zpsFYlMizLK_;2iD@KGDKf1+|QF(pXg`k~TetqmiUt|o{e)Dv)-p72-^OX~YwKm&v{
zuIIb8jto3GxWckW*vl{T>J=Ge=F3DH;Ni=2(7TDGwD(l~RxrJ`Q{=3Ph~NGS-DiS*
zPGU-EMKb>;^OyiQGxz6qBp_dkpxr{CTl=eXWVx4<jKGl89qP~N7uZ+yZ-B-;c#h}$
z__OxG0dB;Py47w1P9TNbxoh_Q&AXBr#q$ZSIjXX|ufhRy*C|9Za@~a?t4JAIVzqzU
z4Lw7=<T194sdWhfDtO(3NYxW}&DchQ3W27#^6?|L7QUqaCG1bJpN>>&UD^$V$Uq^*
zAw(q&u#|u~NHX`AJ?nn{c6w*#t=Hn=928DoAqasRt7ijn$uL6z=X(-srT@<$(L+r^
zg7mIu#$m8eKHNa~-XkOA{@z_Acy0VTV4U|dV*LJ$CJa-v=tBmUBLV5$Wf44wLfiRh
zp&XvG-sG@VdzrA~p{2Rzd1WjMjv`ggo!_d5ddMaJSsav~%cA7JuYIOr7S1PQ`#vo{
z_Ci$13v7)u4B5V<UQs##K38JWk<cS5e?~LIm=&n5gV$9VG3~bsKmHCLVvrJ30F_R7
zGKkTQj%5{3NzSYREx^x~gT$Obe*6zw1QS07ZG^`pRAi)*geD#OMUc;~i8q0_6MK)K
z%G&ia_^kBS^g*#UV}GQj2OK4KIRV-0!N9*YfDq7!Kd~uX{e4GgG|ATJm%?MWL_)}t
zHqRJbC-`K0y`G=j*K2m3%N;3zA$!UD&M+4#1jGjE&<e7z8Tb^t?$W)Tz6sB<DM;>c
zYt};IpmKsdT7hKM@*To)*WoMwEJrp72wIc9)QibojiF5(Mx`Z-NB13(YShojf*Y|-
zu38{mZ7e(Q)ry|5KbGxU{{Ss&oOe0LYvTD^n)rh9ZJSD{b?+e&o~Hna=NS`&ZH+ZA
zk5#QoddAMQ;HI~rLSJfgFufa$KY2N;KXy`<ip8yjzDd)z%a}p1QuXgsNz-+MRz7e~
z5ohVdwbjPZzMhI)NOs?f!{Wfh49$P|qN}?b9`CE~?*8#&BM%&ridI6r7aA;i_F%1l
z$Xw>fv*jG?)8}s~;@3a^G@t?q;n&Xtlt9K$gbYnipmi&@)#%ygXhkuNW`oMNg=<F&
z@c0!j1csG(P>#2&qSuOa>utk5hv94gtp~P@8@6f1`vlQ4{0Ncb_~fx@t=;Jso-j2M
z@ZL($aKi1_`@t73@Bwcn(A5wy)Ly|A*{5>4JmI7Sg)|VdEtL;@G@KoGa{n^YHyw#Z
zJbnGy4z<tsaS}YRok;EYT9}W*1{+nxoC#Kj|9$`LCam+FqP8_#q5^`b&kDUVB(kmK
znNxl61UCC)M!^ajZI@#$Kx{`Byc9DdGr?xOLkJ`gGM`8o;VV$vB%5%U2EibfCTIVJ
z$=Kn*-UafF+O*7z7ZuB*(<E^#t14IKWbR8st5FT1Zw3arFcTR6Z9~0FRzR+8Eg*b;
zzuwraYlfL0;h>F=x+5bGBYycc_xZfY1U~9rNm1@oZy7L}jDAcc3OO;F7DcGp^wX4K
zYMb|AgZTY#3qq9<pgfjhUC@P<Phg;}k6k=&`=;g8(7(|80fZ;~E|0b#16RVcbz<;!
z?aksI4m<{F+^?zJaA9b|Tq<z7KtCN8G!d5PINy}#dcJDKCn$>&dRCPCd}1{Vnhs6>
z;O}+=1xJad{PDX5T{~)6xt796{$(VV1_@P|ht{_Otu7<q{2*W@*N`zcgl6V+8s`1C
zo6SgY>z#mP1AeRauY`ELkYd7_ud>CdyvOO>uU`r^6F?XC81}V1AbNc?_*|kr$F8+0
zf00c6T!P7!6<Aki#1@uV5HMqd<qvE1`!UhDqB{6J&=v>6XC;U1MCo1QjH2&M;DpCX
zas?Z+FV0c8laYLc%hX3)d=J(Wd&C2YM7g;C3pr2$3z)cgJ&FgSk*}&7<D5K2CaN!f
z9~6)SWkj6WX6*B~Q%6i&B{Z<|eFHLJnVZ6U@kxd?hvUi-gnB%J9H~C9^~;>+FPj~<
zcL%Rm<8?E|I~6MuQou1$(Ba5-Ob=sLUw}6GKZLRbn?3S>sK*}qMko@zl{X#N>S;W`
z1CbTKJBH@)r~;R@&f_i>7enoH2PnXm^nSUiLP2pn)SydG)3d>2f<MJBLuLK3F{?=*
zj$c)N_*4>QK&oDuVP2jqmD`cxsV}*-Z#xCxeM{p3pA{8LsCe+V=7)C;N(&11nX(PT
z3OrqDZ&eepE$RF`VfWsfy8TG-?hFCY>zFUqrNNeY>C-);b^h(j+tICSw{3F(soc1e
z@Gs%4h$UW2uH$MODXbX%AOyOdFt}cgLB_IRX{&31yT8V9aCOI~DfpdjYR+*lC0D8r
zLOBNHl*OOnZ{Hw52}>Ym|8EVNK&Let<N29Zyc*uRoI0P%bNK7aD(9)&ex>_{DD)C2
z(z_GhZ@pi@zKQr6M|A4ArI4PEy`6DLfl6=DV3c(M3C}T_op1@jLq$QaanB@-Pfp=s
zYx^JstJNObUI<%fofao|&ujCYzTExc_@N)-45wx8>_G)M{|`!!K14qTMCm#aKgYth
zI`Y_T^r9fmBJStI0~cQ7O9)Y^NA5J(AiwLdx%!1btX&=AemWQEqs#~j-Iu#a??0u5
znalx(I&hF<BPJh0GtX@;az;ZeEw1;?yy5n~`-D={@lP5c6_O>v$hfecEcDmMq1p@i
zt+hvhNTV2C{^4B3zXsan4@E(t)}I@z;OKBvsUGyuBq~N2G0j|OimDJMuAnWYDQ@gi
z*q9kU+szHqC_9lr*x)8&2_cjE6Cbs7-x8?d*IzU_n5fnqsboQ&B^O!#&;0#gWb=T!
zZU4X7ZZJ6|5P;^10TEz$#SLdR6S14Yf4D}^edZMnW<z;uuaaRNLGG3#M^>VJ&QEM#
zOVn6mEH}6$h|%U)XuOcTubnRjBw?DIR^(a`267C<0|#~d#2~IyaB6Etw5B#}XnpsM
zjT#9`cSoe=>!#TKczLn4tpDOD4WPTi4V2zIGPOG4`{1*kgb(uG4=cjZNFAOTXP(&P
zeVN@V!AGFdR*a@ME*y+{<l+HA1lkoAh%M7y=qw~?Qq%_788bY`F^TeLN<~0eBS-)K
zglOd=IW#Bpf-8OM7m{~;QA3&B65ok+KeO~SuHwPy|3aNcS;y9pSG0OrOMK;_)?Nw~
zi2eZ;57&MrJplZcKa=VhQTA&gR+KFr!xaTW)`>%!pwdoQ04NMD?f#r_N$4}K9)n$z
zqCYx&J*-N0iv=TZthifv*^*E)Blm+xu)t=T?4T%!A0M!sJ_d+Z-Rl1~n*cTX0cUKO
za9hO0T!~7l$NL&d<NKfcrn39O@15c{J*}{1blz|A5rAW*5*x$D=+I@$oL>o-VJV+>
zLl)kAM)D4Z@>*IEL9@#Ti1>2h?Dr;XF9)$)8NN_BIUg-!EKj#qSwWv{Yx}OI;ek+c
z>Nz2?O<byzr&92%8nRR@YGgt-oC_HlXpxeh;Q-IkPydr%=PDXl+{qiXCd(cRd`kB+
zZEM7G`%D&6_`Bo?RgIST(57o2<!CiR1ZmYt<wGZF<@Srlkit~IfJo)WxTQ~o18sc%
z&wq=Ieg?uBy!>1NcQ1M<(6i7N*WpNMNM47V%<H}#^WytfZH)S5Yuu6WDM03{_%@`}
zljIR28rOOIb}@)IW9q(7h|v}K7Zam`d-U20Mp#($>Ev(4nzq+-ZmVN!a&8tDS2VmE
z7oNO<SO_Kq4AU>24a-Xj!Atf{V1GfjNDnngH)-NcM;*<ytD#^pG;}W-%d|IEDoxS2
zZ<%9p>Um?vQOerQAi6c(J8$uK`WvePgV&-8W(;?+K}T}itCfd0#fq^0OM0z`tdKGu
z)^|b+m|8x+>Njb6I1B-Yz6<Ddy|o8!#MBe6e?t%S`f4^Eo8ETl@js;t_=+0+!(YUW
zQU?qoX^SuW<>uLp<@RHD9b8Vu-cC8P5Zj(Ge#<_8McH5ReO!c4bui&7G(@s^lt2Nd
zrv6$duj$~s`1q+C@Eq#9&ri3z^^M!eij(OVrYhkm*Uyj+(!4hXmcw^E6iEP^`%f#~
z>+eMT?{{2|os4|-7j`_$R(M8T`h3z98x;jx;fAirrAY3RKpb3d(DG*nT_uBsRh`iv
zNTu9dYzdZ8u1pgr0OU=a9GR{U9>C&HLX}t~TpqZ{-6Q5C9^iUJE7^3{5{u~mL=b&S
zV+28Q^4PhC#rX}Gi3L2^02*oH{t{3}&M+-S`BMKv5%SBbih|Gm%rb27Q3~{4({F4P
z+hwVYw~laDRMi#BT%|1A9|sj$4f{k4V;4f}ew9thU514=l3{s*t1dF)iDnme_D~k)
zqV(tK0>wXG6Nvixv4s{k#wot>)?)eLoIlim-LDD6E9oo4FpqYMTy;U^=dO_#6UZB_
zKRY;b>(`~VDprXqZ6%nb)M0xFfFJb&nzM1}Hv40WR3MJOan1+A-xOCM#PCgB{%ap$
z`P#?L9Jj-=g5YV=+wa-5wBE5f-i*NAW8y^A{V5`2=(xl(MEUVGZS=0-Am6rPJnc<>
zEO8Hc{HXX1!+7cM)^uj+7-uWMQ8O!VXP-0p%!xCM9o!kRAu}C!Bhwp6Dp1q$Ps%Xs
zhKf=1xKx0|nReFac8N4aiA2Br)Y714#r#bMpS?BF|Bt7yjEd^}{=PGGNOwph-AISD
zA|Rr4gCK%{ARRL_(t^^BgbI>^<P4J1B`w|EIn4a;_xG&zyq_1d?mB0my+5^4eRRBO
zo7g`K*$00izG?9TzP}0JuFn7edpw>|R2%%Rwu0g#&bTEl5BjFxgE5h8c=B%#w7t)O
z$1U&Mtu!$>X9*njmj#~VGELv8PP|2s4Kfa6J<I`D!UcoBfr;SepD&BA(dS`($|>y^
z7T;wT7n|H~0h$}mX%I84>z-;$GJ3J7*EE-fzVeoq;3FjgK2PEJOid3~#+<2BlhV_2
z@ws`UhDqNMqx-*UKHY)DX$6tXE#U6VOiNXkfyc8KNTJ*EHJs@wz=JC_@-5xIzFKmd
zuH7e`*uNq)og}(;%g49QUvzpca4WXc5B;C;M|o<r>71#q*YoY{dz#FL(bJ|d22&}K
z)fIZ_n&T*Bd+~EEmY78e+>eSr#@-2c&9(Z#Q>_5XFmVQ^CSF+%uEHV__bVn=sDQU+
z4p?F9TIsUT^0|w4WeYVZa1xdN;?g$F_ErDM@$yAm*}v<T)^}Z@Aat9JYei3q6-4j#
ziWnfK0di6@J066^e9LhxaF|PzIQYG()6jWSOVt*yq&!FjBXjh}d0l=Y-~V3tZ@->w
zY6|dgiU;T}Z4(lF<a90bUi&>Kmo^F{;D9pVH5p`t=T$XrN^M?GfMiMVWK82vo!!^C
z?z@CPYI-UVLy9DyeWq~W!Diop;M4sp>rLesZbiTq!%=SpACL)7i7vM_4&RG_r6+I)
zLHH0DUYb%+y{BC^`wo{6gvnFIN1Hx}Y9B=}Eqji(EZ<JortCuHg&4q8ivV<&)7FbP
z!hAcYW0~F5|K3}!qJ+-FUJN!|RfHFu*?6I>Z)rE?FT_Y5-<7uvrFvyKeaZ08>|_Bk
zC{>>(2MZSHkq^H?K?__#ucsjJJ3c%L#Gl2W*55&q-}ePw0RMl33@#yjhq;tDv)%(`
zg*|l>J8}ZYhvNyWotGRg|LsX09Wmy6Wl*r**~TDC9RL{H_OwT3=M*|b0t?8cIMXQC
zm_+tqS|WESE0k67GcTMmDd|QixO(qx(1X9G#U(Tz_wa#|y9!$0ZI~Vn#2OJzuN!=C
zy)wRiv_b_<8l<X*?BW9$iX%*0|AAL4zNAL{negyr!<_^rUe$4+#18~rn+_&)LlBeD
zk!TsSFUN6o79d41!=nGYRQ%oCZ)@c0lJbzQh21N0p>^uc(wAV}!%hhV(a7}EaX}Lq
zCKw2;nnblb9WHfy;nC{~pL@i<7*V;)1(wR;4tl`VDW>+IKK@W>`rS5U<gn0cO|WjS
zm5_Qa0>um5zj-1DdG_<aKSnV0<Mlrtbz^Sp<l=kTxK}z82dIY$2Uj%c>T|@qsW8lk
z0X$qgz1?Os4tE{$*J?_RkZe+|!PHYyq%&Q%$^HoQNB!6@*E(7Qu4hCLa9z+8){#sH
zCGc1vD$eI!&yd55)2<1Z3PomId>TNI50EBi{i1!MM31ffJ>g|9?Sya*UfC}K&3X(7
z|6&M)l)ooYnSEt~md){1ObDhT<H)SNkqMoXIY_vcoZ$0ub~E288G}Lv-`vaC=wv&W
zB=&js>G$_{qym}o>Vrt#6c&ig>QQ7ctJ}OQry(iPn~lTeh*`&HLibf2pO@N5DTnO^
zn&Pe8wYz)wF{ClIy0#mn*Ka8d7+>Yi<=W0Ab`|=pwOLOO2Q4itJhiA}ETX;N8I40t
zmubPp$yvzy5?eVl$>0sv${54b{7g+_5EicaiO((;HH_<5FM67J)|faHNOV1%<@221
zk@>k)qZzpKeT}IZGiVs6q#_JlaWRgL@qs(O@Ub8)owr#OBlXL3NGwii3ItcJ_<Ic?
z4C<wyKS=9q@9@J%D(Q-`A=}MgJ)OZM+MI3p4}~J#{AI7xiTvX;4|8uC2C3Zm$a_>q
zn~(dghWfqa-?Q!X3AH;XYO*y5;DQFHsPNBeV9+L~h9Gl{`tD||=S!^*e~U8Kxr)~>
zbG-3FI!H?A^6G}B4sabylaKdbMReo>-U?0oUw_`iHA`r(x@4vi(aB=@&GY%>pl050
zU#I=koFcMpfK-J2j#a}${-y+%vlvp%D;TYF>6GiA40~$$*+uXT>Nj$^mJI~Mj!#3t
zE?b0aUq-%xwk+l56Xo60zkN>(eNg$VA|Z1v-BQ1ty_v9;1x@F6z`^T{Q!v9VOEYdf
zDNHkZTOj9lI2GYgVfUO>4@f%W0Z<i-;Fa8g;MZLZ18U0p`0fdaL$-Df$3l}_3+<Wf
z*Mf2uxnLtFbSvD_SRrhvC{1Qmc@Te;?S5t@M{(z&!S1w9h4TG-?n~<SxcC_xMgD!A
zT=B0sGIWAhB3tj5;B7smX5^rZy>=u$=mGVK%4|?Exi?enQd-`iNBN;#rQe~jCS;M~
zspS=gMoDV|Iqz+fKn12<>Y+_EKHN73envwLaAMNS2}#+3Pe|DZAeI7_plJbCwsnyo
zx-dewSe05)Q(Q}~eoODlAM5mjnynpcI9oByAb8Q+Spo-M2hrbin~(m6hu{i_)#C%>
zSjb{{^=O^P9aPyA@y`U<qHB{+G<539y8kiOp1&|!72GYt&_DF-_=Sb{{hf!sUOMIP
ze?*7WO4Jt`nxbEV;ZzHy!O=Z=TOSY#M;rs@UIZ&?mnz1V^0+kdUC8<4=>DvbE4fnE
zL!|07$6Kr?Km~_9W(<pHI8^Ui4=)cNoekPtRP5RhIc*lTX9@u85jrF2a&B(@CB8J%
zuTv3`hqu(=^Gc+u4o-&^Jxh&>oFxW8ou2~W6$}yqk3rDM7P|?mh}epwA%3hBo+lUx
z!3)0&14Bx6iTW5F9_Wfekg)l{SJc2$!jTh2_a#@RwnN0v=BD7?v=`VSONrW0asGUA
zVC>{yU>ljuB@Mvo;l1klG!L2|eA-pE=n+E5d67Hera-#RIIPmeu~|^C$NzdRSafzR
zur{#7f9~4%c2v76IKb-50)`{b>iVr(#ZJhUq$=4@Z|Kc>LI*P0i7rX$o(+HLs^cqq
zU!yHV_N(rbl_iSU5l^8A$M(`tU6z1?f9jyyC+FGjl@Kms*h86ogir0!w9qTuj1(n0
zD)X}%eE7ASc0WdySX++M{zYQApCT6~z0RRii(gWs8KbkSG;%jQ4HA}3P-<ZNp4QNG
zB0|97u$=kua?4_Knn>3b94pxub=u6cgd{kUYi@#>0<Z9nKIiaadq>8=X`C8sXps%;
z#5rvx7K<+1-p-ICE@qkneCsOCRjxOELP<23uCkdEFLG?!esQ~4jEjV;94+;$P20uP
z(|7K3U1bYs>OH>|Ipf-|!ofL<l*h3M{t7f2zgddDRl7UiX94?6Fe4$?xpZ|b^fBEF
zX`&7z3{|3JODG>9K*O8`%+C^rZCU5!qSJ4|90_msK@Rwmj~LyX`dkOq3LHT}6*iBU
zYUnA8Q)hG>sfa+3QskG<9HQ|bw{_S7=qjcMAD}SyFT#5OZGy&p)z4sAsrQPKbPX%+
zr1zR<C`=0_WSEutgAGsLv~SW^qV#a`CH^e;`<a<H%}#wzfyInq))1{&3JoSz_!>vq
zCl7**4(`^#HhhXoF46umXX_6Q%o0-R=Wv9Y4L>@)sCCyeMK|YO!LF7fw2x8shqhjS
z8jfl|8(D9~gwTCr41?@;=VO|9f62qxg@$vY7n~he@SIDQl2;zn8H+Hhrdh-{-?xf4
zO(1$0i&fo%Kir7IuhG>7BOUg>h#qp01jE8?7TuI=(sO~_Z)7N!V<BSQe_@>ys-aIT
zvbimz^VV3>W=4M8{?|{(GY}7zBg^U<sxC|@)Bi-6&ZKV;@56zl8oLm`O<f`I@LT0u
z#aJaTe&2p6fwE)btGCMc+u;QQ*#XmsVmo;uZXr&t|L#+%jh#5U;TN<gGa@*xhvD*4
zGj1T3_C^Xuus$dJ`&KWQaqj+pM7dY1=y7g8S*<iwzsrt1=<q!;Pi6wYXK4Yf-Q`R;
zBcA_B=}Oe4Zu_fZO0rZr0=rbJ_(cH>7Ky|m?Ud7r+{@A}>%1kJ|IWJmDW7#_5br)w
z-*|8W*@|P;Lx$oXuIfcErVn3YrHEOnn)gA7b-zzcAgkGd6|pR`lm)o)kLQ~|(RQ_c
z5h(soby_zBPKptfAb&tW|B^1#3%|$!9pWgBrQ8?ZdRNy?Bm6og92DWx4QHITe6-&U
zS`s&%!T}IjfgHiScL{uAN@}NaN?ps$7(GgW9>TgNENDu3?h2N{AVH96656s`Ws`nd
zxHilSdwNtmBd~AAR=9LjU%ApzD%{SI6&$Wqfg;fm+zz`c)Q>ioqYfe}DV*B*vy~=p
z5gkl|yB-VhWG5(c8I0^MJpR?<4#s%IbtM%Wh+e14OkXeCy-tdOk3;^3xI~c0kxb4A
zg2}=|DzC~>3hx8i8i%#LpPBG&q^7=^shBcYzlR)ehJQS@G-7}9X%f9OprKZ(4@j``
zwbong{&xxzJHhpa!}DR)o_U>kUdpYXQb=yKXCx&WeANyK0KtKj7r+sb)K7o?5+);8
zdCp&0hi`A(UVP3;jMOP5YJWF7Yc%@8JC_MYFqkzo!P<Tx0ObMRG$LL`!{%fx-y`JH
z1i{F&e1|)yvOtux?|C(g?Rt<>C#HNae(m#UbRTnMTVv5^r90mZ^#Br%GNDV?98fl1
zkO*Jb>qLfD)4h;j2wGc+mZT*AC{EBpGu(YRRa`(Q`P#*<H051>3AZ6pw?t!#v132Z
z=~EHV>q^778nE-ovfKNR)5rJ2c{Mfg_N5B?Cj+YI7{kTLCnC15s=5MYoObNKi$Kxu
zl|F*)-AMhzfM5rX%RHH~QBt~o!rIxTNI-inPuj`rx<H{<o6aOVkP$=4h6h<deu@cX
zq+39}M*IHphX6@ho2dkRaM&oJu;?f`9h8tF2jn+?`OIyIH@AX-z5$t}yaz+z*iM5g
zbdUZ&0D~_V?IT~iu5^5ve7MrIp2lJ0M|`sxuZ~&y`paWbfE*Zie+A*VbF{W@b0I1r
zJl0c7PlDN_dDPZPd-6kVwrU+D{HfzreHWg_4d2PsGY6{hg_`mzrkKRoyV>9<JC<DH
zwuA1^0*OP5&uOAZx_vSSRVoiV(9c=KuZ<KK)|HZ#2sRUA7k?ks-KpHf2V<we0wBl=
z&>P%B!2@Nw_91voA0;BYtAh%@&f*4=);q;gR-9d(PNNl#0Xlu_q1w1skAwgCprg6o
zR8N|7{*&gN#C>Vhip#{OAjY;D&lkXitE^sWgQS~+*&hVRa{L2rer|3HM_hGJ`Vql%
zGG$a_mGd6B-x_k_`*N&04ju%<<IVipi+(-e7Tk_cryf<=D;g<vhx%8?B793O0CN+b
ziaXSwC#ZQu@+pQ$ldXl7ez{SV+)|bz?KAi4SU^v~RO?9wcsqQ07LmmdrrD;aS3UqC
z!*iEett0J<D|O)Q&@KB(3-<S03cr`Q4kk}kQp}yHMh^{6V5KzaikE)i(^v?BLCCG2
zV|HFBg|G!`qiAv{GdoIEpLavz27L)GUA~S1%1)|`xo%E>jRD<nM4)7;Wt$c-h2#-K
z;a1P<iTMm5`8}v(S%w9@p3!?sBjsM%bC$Ik<Oh!1eO`Mzt{)BEd=jzBU|a9&T${;s
z5`(BU8*&m==Y%`arD!6I?-|7>*R7Dn@+Ky`G!nJ7n09>r40x57!DzFu*pJ?<(A=?;
zLkoHGyO?gG>qJdsv@bCa6F<~C&Q^Jp=WLiI0bN{l)UmRBHF~%D?mB3E#O^O=obWYQ
zZj#u_CuC*`?y3*ekj1q8d6IVyo)UOdypv6qnAf|77{7mMr(7es=zEegFL3A|kuA*`
zMcN8|+Hx$JbK^sNO&NSb%6*rxx#t%(9Lh$2E6Tmj>k_Cf!N8kB?VhrSf9iR5ZVa*Z
zz{)j;DkFfL{xw0dSm<$9Y!)-`?~hRdkNGbHB|eE7Dc~S8W(NnqD8Ef~zcJhFoMuKY
zAsE;&I~BAA-k=G5_C|8gA9Xu@?aLzIU&Z3Eai)s;#uL6ytZKYK_jdVmI4^vmX8)yt
zigiVj-?s0WU@8r)-8g)c@fr4!dF69k;vYQB@%^!yMN_8N=A)d%d>J3g=C^wTU&)YY
zziO8(VW=aH_jIcE?|`7i4v0aoDp3VaYvO#>=f&TWCOl9rGH$&r<L`S9m&@jV>LrLh
z`6eRjB^>$X$!@O2^?uXoy=qTGxcZW8Wwj>q_XqfJ3>$rbsL;7+i!p&jlGsliZl!6W
z-Oro6U_u1f0H3<fiajcGLoOo__?yK(+I0NAY%WmoO+!vpWQAja(<%MyId|@=f`DOc
zFluV?9XVe;etj@yz<mVvD>Hw#)-pWqayocf3+EXv`(cAajQ9TK;K#dp0$KE8!+SA*
znnZ)-OCos7aWqxcgM7D9H8%8zt!mdAU97cZfP}o9A?nx9+Vjge!E2laass4mp=Do!
z3jClOu8VM@hY|l*CK+~*gcv-Q%m&EUO=TXqi8rb~d<smk;+d0eskVDbA)@r9?yEdE
z6$$ZNWK~8l7$dAWL4QZB`O+XEKD%U;UV_bbz`MV1g_p2+n>7dl!?uB8cBpa`uy(XY
z1GsFD|1q7ua}(2*>eU+(U-wbnl|ve=!UZv*-{Lp(Gx=xUu1X+<opxCmn=b``EP|vD
zu!VWF!aSl{3jKVVw21an^X#NOS|I1kzuTZE_GV&`pqTFEz7+zx{LP4YPmSI4V0D-C
zl&c5qe2!x5o)4TwtSeWXezm-3@GsAZM1zI*r$5C?nx2|%8-DcPB6}D&p{1|ZH{v0Z
z5_}P8{(_?eHj_B^2>t)Q#OiJ7dHIag+B1IZ7#1*_i6l|U)XYSxVTTaTs1AAB?@OzS
zc`gJ+QnV(uku|GaP_E0@LT6vYBB%jk!U5Sr1FRh2YL70pnh_>6A9nYgTSq`X_45ND
zGcf}P$vTt(MXJ*7{lbUW8+yxKuOUFQwmzcdA-kCmR^=T<g`AM;b;o95<afw{G|}KI
ztFa|1myOJeoRrlMp?|ckJt((ixOpj(viF1KdKE%G--I5VVumj0N%p;B?rU63rM)Bn
z;(5MU&fg4Z`k)ytVS7=%0at`5k83Wiwq_QJ6HQhPErid3@!1ed)B?_`WGKSunC?u7
zDPD1G_RvTK5*EX~`h+bQR0yeJb7GF>ztU+X3ui}a6Fn%>+kStRc1i`PuA2_@Rr3K9
zgbu4WFQu&0>WHLSkOK7VKQ;*9CAc4Pg7Hq@Wabn87xT~d@K%WMX%gM5z=}O_5@dkY
zXHioxjU~(WeZ~u$9n>A2*c4fi9Qfq?cE0oB2G-iV{UEYz4F^y~e%F1fCyc7?o3?qy
z3;e@F3wBCr*=R*qE0|iCSdaim9#v|Rl4-d1diYmc6SxMpF(iMpRqWFBW&k9<lvioL
zs1$Vk7xf_AfcKiGJK)mdL*!cwTPLhZ*UR}YSIF?Ae-63?#1^vF=(%&VAzJp0OjL>E
z?;n4Lsc%rbr$oOZA&*oX7tqQiuz(zPIE-jYip-{V+ohHEq``J>`}OP%*FNOyv^V*i
zdf2_Tn%FAGTiEhK>FRM$RH3NTD;8oa>c}sl1<}2XA^e`2yw$bEdR0V=br*umS=GV(
zK&U#<eDeXhIUrj3E**(Ylweel<U1@-?tdHn?l%Ky|9I_kegdg7E+#gKGuQ2m#*%%I
zGhsgN-}T>XF5Z^^ri3(69JsPP5#)ZG?#;RD*w(=g*k8h219WKfKRm8@xVEPGz+QK(
z;V5r2i009yw|G(~<#_z-mBPoPPrs~H<Rm5O|2RcOeKF$jcco_E{L8WJz$)8HaBLDE
zt;gFFUN?0#fv4=3^LTK8<?Za1?K-22{KF$!sfvH?j<rHWK#Ec3kM7CBDccv%@R`Vj
z=R;b}N(<`u%$}es7<E;%TpGui(;Dyn1e+coDxgWNQWF(9uMoQFRr$A){#F(rKr1?&
ziJROFO`791jpfZ7A+FzxS7NGRU1(-Z$YnnoOYZ)D)b5lTdz%P(m|-^?yAOV0j3$S<
z>Gd5^cRuU`+o3hjjB^@>PQ41as#}_9FMByITDsOS9f2hs!|~*#P2-))O;+hT4=`O>
zM5(a9^vV3_;eSQ`^R<<-E~nj5UP0g(etSOhq0SwLWZnENO2~Rl2ZKDi)+Ea{T>fdu
ztVkqF2-jls{!Iw~a>hZI2?j-d{TcoAEp!S^s^_F;Ye-44asT()#AfyP=Y7$!;(j#Q
zVe6|W)l9;2Bv7O{$;~Ozsod`4njZb@T}##R?^4TKshDKLDsq5F&Y-z{=7yvKux7pA
zyw=JF=mFT2i0vlYUIqWWx`XQ+9U`S)v3dV)si++2t*8kG)-g$_RykoX1UFIs<kcSk
zE#HFwh8UIWc5Gf{6O(Exsq)nhHWy~=x4oKJzFu@IOMxI-nIHX&2p;+&`cFo})m$m-
z<^C=5yexCt)cU%bNdaT`6fYu#+<)P*C~O7{B^HqAPJ3phHird9T`s;*<);Gf$#y^e
zP-Pp$k&L;5Mmn&lzi{{oN+W=%#}pB$mw^2w!SxjXue>CEHfTPRsu<tLPx{{lF=c0l
z;e!=DNqgMHI{y-PUHvRl#Bj2PT2A&pkpaQA;ma71Bwz6uyoF=QNE=@SO(egN%8jfa
zbR>Xeb-C$gQbQs-b!ZXWJ5pa<qphaaA5_O$JDnj7+qMr%eMMIC+xGg)=AN)whlgAM
zE;6L|c84GBZ&VhdJ{+!e<tTMpI3r?b`h~leim}Mj(%`>VK1TD?$M+WM(>=2`#nd;0
z^DY^1-;YHTLY5<k(_uK=K9Fs-EE&l27Qde63#&=M^vQ&nB+kGBU?}tkV&w(8`gsO0
z!5(qb?=h4iMkxhgU@Wjl8Gm%DE^OnnBd66XANmW&VW3I;Kf?GKBwv(@+u7E>UKs~e
z!B4RARy<J$x_|(DTQO6z&!DQ}GOlkr_Uw7LB|Q;$FotT6(z-_zOufMMyHEO6&5JJo
zam$YjQ6|4YR=x(p0uMB%#1nh7!0XiSNq!E+$p<)@{Nqf!n{YOmFg19iyrbce0BlMI
z6Ns|$qkQP2Xsa~Yi&VMEfHk*@1z)y{w|9E-)vdHO2aM69vA3*&+sd7(ams27B3!}y
z7sD(O!G1*}h+efDD-$u3-bGepz<n>T725(N@3Er$^5C7J^wDPW_lR=MLW<ZSbOSSe
z*JY8X_gZRR$%Q==#{skKYM;?9Dzs(QND9I@hR#1v_@vMVy?*U#P&k8<6*-7}AnJ;K
zMEOSv(M|vt0@Fy76=-$7DX*aj)g1q{B`Jh)%XEo}s)ifRl2hXx&nTO}5yu@C?7157
z(LZb1{%oU-u<OT6{I_N1OuTaVLzE%W7G$RIT5tj(3yEq7!tpX2dbHbJ3)**hr#~<7
z%H#pluKwbwZcr3-4dyC$^5A&xKA?&&!3*0Q@FTg`dwA|odUd^16RTf+XH|9k0YutX
z*RT3xSgfZNu*d{EncG~&{E5KEQm;E7^>OwDA!fz;WuO|CtYm=prUD*b4HE*%zM8g}
zFH48?pOkQI8du4TM2IL)f<w|~7u1<|^v$d&d5nm7_3AkXq6_Kz)4))cnGaI8XaeI!
z+}09%av5GS@@M>BA{>L`go>S8pNvEWPQf~S?{{&;4mQ#e&rzLoXAht4ZjXZ<NGJoW
z->i2|&~O${a`2w=tc;PuwfTD-iLOf}Y>uo*t=~*K`|f~fBlG?Q6>z3}lkI}~*V&>0
z8L7dWzSU%!zqXigQDA9{FU4XUBF`?h%@_AjBo~1y--kGIyVz18J`hxW(LEteYNNk(
zOpKtv-8?*s#KqpYJkHM8=<$qdfH4azdC{lJyYv1q{Y&)t`wCf#5)|vCr@#o!$#(IT
z?wP#)hxC6p*{gadj%iA@cjS2>Rgajd1ks5;@1(%A_V1OCE{3{hiJpz~{rGcY_ed<-
zm}mkYP$9aN<}Cd0(>O|)UG}A(3x%OkQ03FwUiE8)p%8i%Uxee-ByMOn;_5wH@t&;O
z6QaKa@L>{a;H%=lZhID$GnA?<nk8$2eREC?kYE>8?KJET?i{QfEl#C0U=Z<G2u5Ai
zPaTDPivOxD*FebzRWyR+FXqV!t^|G7uG*{?d9ioJ$MCRUNgHz1+xQ>~uqH)v=dKzn
zK2{o8X?RB{TY{L;#fXb2;G*I(E=uzj14ByA{vlQukH*H+*f=l<5&i}#b`Q!?1FbZ*
zg$Ctbgf-s{?JyaHRq!sf+QAhewK436;lu=Y8OVdnQLUnY_ozie_{BJ&B$%#Trgw~Q
z-snK=znS=`bLT5v^IDH@A(~phB>wdqic9-zeL$<dMtYD8ATrMvSFoP~-}?s(bqDJK
zuPw*nz|n%vjJqK{)*vAm+&F*5lpG$nvN^>eTV$vPoML=*T}ko)6%>J!;3MdgvNG@m
zc+AUAGDc$KKKY0ocp05(^udN#GF=wK8r-m^W0BGhp6DRYT9F6+<Fy7H_({53A&lZA
z#gyGIh<S`AMDIH7rf<()?9E+xNw_@N&c%}tL_cN)T8?3C?&HO7e=tx5hwt}W++qVA
z3De?3&!IyO)9+;i=Y{3;J|H~q8q4Oq$w?IMnC0uX@vbZmd_--}m7Q!zRS%Ozx7sIK
zxVRsYQl5vei`%jM`G>?t;dI|&31Tjw$Qbx48z3ai5EFbE|EMxlKUyF&GMw7;Xf8_Z
z9i61g*-Gwv6)=^sKKUbaswh$Y;0E#kyJ;0ZW}_?O1h!WXCkZ~(m5E3};m-X`H0I4m
zTybVqc%n{G<PFFHqeL1CPiQ{T5jM~uI)jITvRV#t4T?jp-EV9<9hsF^RLISpsI_#z
zBG)E-k}$rMe63<c#RLIfe><B&!Qq3o_o7&yrj-ru*gJwR5Gf%Ra%fNwNl@S_efxzB
zV8AZ>huJs7%x}uXuRWMa*<vAg&&#Ldp?p_$7Z`t1xo|@LLg}2j<!-A%ziPwk`1{|*
zj<ObabCc{i?Ww2T>(1#}uo|J24z9qCQ|>nl=%sLl9zr-=`l<z6c`-n<=yLYsmYF>6
zGP^Erd3NX;wNiVNk5s-P+WF1b@lej|DG_aIodiZkne|>dFenu)Ka~q_-#&EiIemNf
zfpz3QP|YpVK8e8^hNOrujQrhXA4_1*9v=%w+K$PQfdEGsA&>|9)xP3Cdju-K(}`an
zp*S)nMg14p;&c_Fw@)p9r?8|SW1dar|F*S|lx55T75OPOBMhJtIW#7<<Ahczj`aRv
zRG;Rs=G@JxZVVeh(c-<nI~}A9h>Rq*LS5G9q#;V-sI2}WwNpc<V<q+qOa&%%=K+RN
z*ah>@wfT}_!2Fz}v;2NInu`M^hyhXHH@gTcwyAxV#G^nqb4bq-7Uv>)<k{ydxugba
zXiqkVDj(Qt1%a?=t>r@1uwQlV?VRDl8KG7`8p&B~5xCe7cVJ^pOX*6n&5bX?h?IN(
zv1Up1%^RIp<9jDL5{&>~F@uBDDNE{J*H)dy7=r?z-~>bXs~66fFmngh&HsdPWSqdS
zhfpjCFW@W0TRcb%v46ql^hmOBEP>Us7Z!MPALZMwEzODZW%->z4H+mggx7@pCInv}
zXf9dZw;}Q?9&F2w5Zaz)<fL2St5x-}Z;AxiaHSiJ3mcjQs(f(Va3O=u`g+czY2(b1
zrlaT;?dsA7ChATPMW*N4iXD4`#-dCmxTYo6zyv&a^BrOI$Je43;iC^nbr5#rYuH%Z
z+`dOd?#)pm)HP2OEul*>(D9o?qpd*|vT6zod7_TPjQCfTRL&mxPk0e0lm3DxccZ;5
z4znL8W&Uf5KWyJVP?|Nq{suiND30f^N$<rlH^X_I-0ak5ZHOn|VPw@r{dBxjcK;`W
zlGthc5uYE+0piAd*W&m|*MRgYJ9iNUs5G_9{-ka?<ZAKlYkSe3XS44>*{xEyGjB~-
z*^e#pSS%ZsH%cfXMKJu#v>p{pf|cHTJpwic;y5GrC$*vg_f_Iz#pi$MJqX##X3)>9
zVU4bbZ0H<J0_pwRhYLX^c$4yHK`8IPq@w<QuudA14&+bDky3l8kZ=->_wic3A;y>s
zMuCB|vtbHF_aDz6n0b&!w)S*r5{Bu0XgkTl{qW2N4T%AS9#ZMc-m|%k>-h3=$}Zp^
z5j*tFySks<pM<9>CTfV^OUi=$Nhjl?=J*!H=^wp&_%3P&o~;j?fAyKadB?0#dZ4<}
z!Z-eWkdyu;M~EnJD*FRx>Bz~3MvDRzITSA`dSWI0*C9(pk9_;PncH&2(>)YKuCAB4
zHlRcNgQS|77K{u>ERs9zWW3ji!Qy-FB)HSXkk5w~P~TJVt{)L{eWphOB52pUDA+y@
zK0f?mWj`X`^HwT|Ub7*X8t*=aW+BZG<EeMit#An=RT{olOim?HQ(MpqugEB=xU;-=
zAW{00w~G4cXGfNi7gzP$o(mH^wzDCN&iUBNym*;-dK!qgqIe$)?;s5$eBh*^T#xRU
z^uYbCbtaeuVyn?D0b;=oHi{R~mg}Y~vjf(Th%)~M{O2+gc+t)GS+d-)f(nQmb^8AI
zK7gC9;6+E5cO$FeK)76rf6dSK(#GAPm=OM}Zs;+nvk8*{e(_Kc<SxlL;H`=E4`7K%
zk4KeF$f}hZ*}UFRd^+TNfB3%0;0j<9IRqNiw9wuIAD-#5ZpBqZa%QfRa`E7fG-3T6
zwuqmN$NV6_;#?l;y;g%`>T_^=1>p6x$f4UQHekWPyTtPQf<HNl;th-MWi`vv=)J{u
zg-eSVa77m9m-|s=$@Xemv2CyewX@+Yp-x%6<u1?n@xck_nj55=(gAoeksyewa!7GO
zf=|xBJSTI9o4rDtzRAJ~#ZJB2uX^OziGE!0`-?T-4|7qPuqO|kht(HD?a2k%?GLiJ
z7XxII4;l%%4qeq+QFtu<!=HpX5<%{fM%M0gAA{kpg%H==z-6uJ?pmvd$8uPJ=vueb
z$4?9J&ZlJn9ec$K+>)-+mmIv`zcOdY1k$9xB$v5xOS@UW0S2I2<YajV<DJTTI9g8@
zBk}};Nm;aJUY{xLj*-Q}L0xMwOq|5UhTwM+!X!8O#i%uAy1rp4V3nK693#l}QoLs&
zsd})`5r1}V`jYbDFrI~Yp6D$u^8w|N&+IMq(vzGu;hLxqTn2qigCU1l|G=R^Ex)Uc
z{?t9_Soo&DaT;-Ib$l~!WIbMVS5<ZtMTco{<M7z$F|T)}@TX1q&C0e_rShXo=^mDc
zqwO>F)A)-ixDwlB)$ir88`{wICbSAV?jCr4FXlpUBCqtqfvpA)0b7>r_+0Zy<F-vW
z*ajHLlC*mCa5$_#1<O9d7va?)EjWdJhBJmObsA-Kus?8!?IB3_Xv2pNB>KK?-;(+I
zK(_`4ZaYm4l_uE(1jl~3{4n&m)|4^B$cc)5X9`1`CVs(Do|tDK{_{-@<o(o!6ux~Q
zW7d96l84(K3laTS>5XwF1&j#GADy+B66Y?4UX|k#_g|4^IA5;t#A*{(taIW+w`zb9
zC04pKqr0MCgw#{%mC89TKU=lF&IYPYfbxUZ3MoDx^XSwHE6Bs#_=mVNZz<VnBwS^g
z?=cQXfJ*1cB!wEo5ap9a`%pZB1IA}mNk=o^t@A$w{Bk+O#XS|ht0Kpb2bq$!#ji8L
z44L(LVX|!3CHKs~Y(0fz7Px;H@*rS6I3TAU!Eh~=sCc2%ay&p<{l=5jy!A$`Qy}(H
zI`>XSnf(x4mdly#C6@Ockyc$W`(-yOEZY1}`lhT)^QYxQ17x7mp)tnd^zNo_u@e!0
zO;|{)*R3Px)+NOBi29BG=J(GYpK9!NI9?6fa<${}30T&ts&eyVV@~nznJOLM#)v!q
z8%G_6saQrE`uR-zvd`kTX$R`>y)}HAm1|@vS^2Cr^p;rUwm+spRMfda<BMjgDsAB?
z{`mk$G_CP(4?jRrZu)MxQ;{>EnQSD<Pmqp#Ns^NGS;+L>o1Az5U4o-E%Y5_qnHyK4
zT@26V5}?ZFquPo#^2rtI+$l2bpY&~P0WCUnrm}0NPY8)eSlgNPfz)pqhg42A>VNAv
zXRB3K9Mup>tmKCOd*P6}@#@>ZR2^;@d~m^0EkuU<kEiqIrP(ulcQ6}d&^rb${%r92
zPHt$FD<CW4it%AKFZ-H2Im>2Y;A)0+)44oT@P?W1GFUkdxiASb+KAXMfAzP_#F&-%
za*I~)m>-|NfJVfU3-5Qq34ua)sI9gG`$q0p<LcYsy|f+m2RJnwU(<f4di-6P3~g9a
zH+*KEGmwlR2i~9npGHX*?~QV^Obqo1vmdV(%4N`p47gB?dCT!79$0GB$gz1@y2*oO
zIZygjJBXlYZ2B*$9{9AfeMGH__kTteiDwXuyf>2z^mi{;Vg<fogAScpkwDihTs)7E
z{41Q7_<9P_zs}x}+q<piJTZtw|6Y3-?#&bl>@6<Il&=HVqwH#<Um*5BOB&KYl2Sng
z-2gn-&V~K7qTti1@N`7n#yyoGmF__*h}p36sUcgi)5l#?6twntE*ZKccBJMQdPh99
zTe<k8s!Mncfeu_+j)iLqsqEr9wZ<ARIr`}p;i2!x5aQnGOK(XiJvvRT9jV%9f8mB9
z<ZH-|l9l-}^N##N;qI*q@2%qVC&AIY+QOPE$?lyS>C`A(nnaSiSv~#0Pr#B4E-#6x
z98PO$LT6RWcTul%;iDI;{If*JK8=2vCBU}C>o+0auVg~$2-Z%L!-1JU_WPDBK}u__
zH6uRU?uqNM$h$hj38~5LTaA;=353~`OY4Dqm9|^+MVX(txm$Jc5#3J>`encHLuS{V
z{)6bP`SbqW&Hl}MSv)K~g2f7j4+jRvgJ@q}*p-20qr<B@D01T^QL)!!06RN5;fc57
zVkG8^ESIDcrCF$aJv85mbmUohs~n~N&ugm@5Tk?>jkX*!fef?C#NeyaqTm!RmxLLZ
zNdQhDBcg;I{_nO;j1BV^mk$U(J3g9H0|J=^8QV&>{TdaOns0WoTl4}b>$0qZdo;+2
zPvnk9oXUdJRiU)`H`Q)SBlVRwi}h|Rccnt@cUiD-rS)Juj)NxRFi#56I(x#xlV72h
z6t<Ib6u<XolUoWR!98!Fx82=jrR{qUt0?Rt_nLVk#w;cBpR8z=eqS2(XDaD_^S(5+
z^<+pDR9WbV^R{`5vL5%;dmFP*0N(qdty{HxlKtq5%PT9EfMo7?q2Sb){2ZA61*k)b
zV(jtPTTy%0&m@qfwV(W%Yr-RU@7ZAFxX0TL_nSK$!!mHJn{Mfer8$fBk&=L#^{Yva
zI8i9kH<7@FIUc`9o9&OCe&Y0rc22$mlP%0YAQ{7+BZ^D=Ce0nm^2tJ(%F2p?*K0g~
zYs&(!X{GCql|Cn#^|!^;4~{i$PPfvgYl>Poqh+`kIl~X;j=abrw7V0nG>sbM`Ag4`
z+>Juu0=m_yh$Zl9G2HDzKpp2E{p){7H8pm+`!cGOsH4TND?xH?p{ja;cyd1GA#yAS
zVPCa{yN>>T)EZz;*qYam?q!aDbY0{ngrP0ML&9%4VY&n_$d?GP*x&q<IBN^Q*4VI$
z9fctX`>pu8g5Ryb5%lDJUFoo*ah?NLujo#ZKk_?5{Z5JXpUJ2_cpXTpwNTPC;Jr<`
z(TX40DD^t(yxhes$mLGE-|E7LAlP#_fKK6(nK*4yskA_pC*A;4x1QJa$|)n&Fkw6#
zH4fUkXpvVRl$q42DaOBtqjX5X<+${UXL?_|j?CVOZge{ymGDSZTrxCfXFh<cxb&z4
z?r~H04{3}c%1MmrSV*}E=ROkq5Ymva{&&^}dJ|gCE&9C(6a40vy$jt~%J>;;KUx8^
zp}zrI2eP2t^&j7qv}Rsm`_OXboCo=ilvTN4;3Bv8Da=F(M0%E30w^WAgrkVC1sR7%
zm6a9~JoRs{x~6ZhU^a6bEUb2e)afmSEbK;|9ObXs*`JgY!WMkbmKo4ptMBO-gK<_9
z*d`1JQc-f$fPav{4UL%g5?$vfT}@20hE3qXd3w_dt+CZL6-f-f^^T*Uk!Wi5F<xa$
zMOf06$pI)9mTbdkYMi*u2Bp{z1WIHa9hU{G0i9D?e|{g31#aRyy?oi<>}Bk2q(Bh&
z#1Bh#gL(9oW6D_O&w$KvG=&(cFErmA8(#OMF~;H>ILi=D*HUD>qA`5(v=W&l@#vep
zTZ|Anu=k4o(?Z;u`paLz%e4&Ie<G_koX2V&+6sRH&#Sd*AWAh98(wkNI{R<StT7KJ
zuY^3Ukn|X~D+{z0_|}gmddWEaXnaz9)X=+x>}>n>oNp68Fmq|TsR1NS%V4{QkOR<r
z2Xnn%*TWj;58E$<of{AY`1VJ68MelVbM3Mjhk98#kQzO=Qdzwqa<|{bIXT4ed%wMd
zOulWRLI^iucNm>(s0~?jR%Ap#{0!dt9blgc<b<|e>Zs;Prg%NJ(zv!Vng03Jw*Ul+
z>rVzn9fjXh0YQYCP9FKwx20J)ajCj$Cp)_$j)N>m@(U>xn=YiQ1NBgY(hX9xlu=rI
zFR172IT&f{U@~8az80D`>JIHeUw)`!sZR2YDxM8$WcamHFD1%;i~oDm&`ztq?!X{R
zLRpYE2Z~g~INLWR(MI9!nO@|4%<52z@;-KyVrOr*`~&lS(<r}7=vP8ztO2Om*Rh*~
zPt|CW6#PlebD0qz!WbVE)UEOWEo?w;-RHK=);QeDpAy?#KlCbKp0VaG0kk@mXozGY
z3Fr}0S&`FKox7<0R5y2@9J=U{nn9fpT?*6#@TDn1zicbEEc221{?3DTXMWiCY{yWR
zdq;ArMHs)F->j^F?|#3uxi{N|{CQAIb&*ueVJj428YB~0xfd0U;ye@nNCN{UhC^9#
z{4u5ZJ+s?ejoy6zG@c3=-YqK$_2`ocY9M@nV{;Mo9zp{uVB6B<kUuAv2`ZSD>gb`o
zm}u%0@&*^04FxY!k{Il=l#})BMD7q-38Ktb^VQs^feOEpS1X3Hy|jx?#Umq+NWvEH
zRo+moDtJU%pN>kfQQv!>SM$oR=jIJ(X)DP_w&QnkA<F379+_=$Ro4@GY8BH+)Qra~
z{+DLo7U=3bO7YClSTxw!${yf`+bJyTJ@q1PNQ|x<GCl6{Xhn!uh=#{czptV#<0rSw
z=%=8vr^ZLMj6otx<(A@!53Z$-6S>ad6>2F|y{BfUMf>>AZpkj*>Z%NiFCxj=Ze&Xq
z{@uJ}+aemhIBJ~j1JN|U8{y|{$aIL@RNm?}_q)UlYGoUw4J2#1Qb!GlqMmM6K5?7n
zgN9A>6fS-Ae0DxjJYBu+@ui}XYTU!$?kdK&bCYoNBX;bAr5H)OciXeoTQ6;C&X!Hl
z=0j6Lv*RD1>B%Iaa5(R*k1}JhN(6*#c5HuGSRWAeXT==NJ87AFQ=crFB&xDQ)7g~A
zamE=LzP!~dEla5>CG|c3>_wmwgaj+DOCW(PnSYPZmw1bkY>TdW#<wSye}bJ;KD0U|
zXECgmJXlPb#1tBl!N$#^O-8~MK@&$Hks5XtUjERc;M>}<cRBzwgBERJ@>|EXjicd5
zkdd?wfGA5;zJfv3P5ukN5cfdkq$Ge#lngqo14idEZx^3)64f_-Ajo=p=)_ae4}~YZ
z!G=G;@lA$N3U4iTpT0NNWfs@&HO15XF74G3TL#<4RJrv?Jv+W~dOhvIJ^L_No#VPX
zcNE<Yh3}q;izaPPI<6reQ`sj2qCcxB5P=$41nZvDuC_RtQaL}40V=YeW{A)y*OwRa
z#|q_$L%d(bbq^e9h?QMjnSOhA+gdLW6ZhstTB@gfLJ3<)X&784Q_ZMww`oC<oV;SH
zKqTs3C=Q$)Vt1BpDV!d&^|DsP?{8&wHOeU-uPjx})y70hQtMp+JM#P7^l^s}Y?a?u
z-f4Nj#7E*raq4NcS20rqOwc%w@Ug^;^ro7M`)#;Cj)V_Wh6U<^)f6wA<t)2;5ooMG
zQbw$ALP$Tx!mH|V)k^;o9%p5refYYNt`vqDWAqv@wZqB=t_Jb}I*G;7VR@M%nj-aQ
zTn=d*LRqbX>@8#8McKVb(HB~^+i16>rcn+=WIgUzO1)z?fB_?f)`65#*W&qyCTnIJ
z;fKD1?(tUHb!p7p2l|MP4<--uQBFf$X*6h#>|u-!IbbCz3Yh7Qiv|ylR~kU?U3+Hd
zb+Tk1CvN)bohOV_#Zy7%uo=~j<$WK%kpfMgipQ$*cWYd|GyXVe$G_C+HDVMTY3dxo
z>d9nEe}Wl=gmXf)V@tOg(3#tn(k7=@o{#d5LiL|~;-;>263qLCZ_g_MMgG_Rg8;=D
zK$or__cRshMECv{Tu-?l?@Qyh%=7I_A4S2`3l3ej&uN=<oI!?$*b(q1oI6X}xD{}1
z^}ms=+dxhEf&sf+!WN3>N`%|ut-?6U+E{Y8gZnQ}!p6~r_uqCLEgp1k#r@N2D~8;;
z%ElOz1LPSh&s3i5t>`_a{H+&)4_x6WhvMSiCofz%`#D4~w7l9*2ghf_9L4$XzoO?2
zXUTg<r@xK&%8U!TMAp4<Mwt6gxU2W%ZQ1zAM)Ey}rZZY)z_>Pn(cO{(BTe|9#=qhZ
z$tD3{=~hw`L=%vwJ7EcLVzyH6xbciYAsnzlhB6G833BT`l1W@tI}yLqGrMDYIE{oO
zYJZl(+u@qyuVe86Ad}^>+M^fu?<o3wazoybleyf56@uI0SHU#$<EsnBU+c>(E8hyW
z$s70x$-ir`+H|>dmNW2jDv>BmJ^lR(lzu-ahqT6)@Y0J#VUUG3D(H@vfV<x!VB@X(
z<AIzODkLH*4*yrpNV)av0BILtq$pHbjr=fPC_C(`xb`S3>iJQD2KI}`^x7FUyEPx)
zyYZFVVZ-YKvG<v~!2)7;7GxNX{r!o|2Jh(;UoXd$k(Q|&H`g-BHQ_WZbYd|6)7(p{
z5`pPN{jnYU21P8O<N2GUs@|xpYi?xX>gb2D8!2{VENXb|<{XScz=<mc%S>GF3v!dw
zHzE?n6r*49$a1`lH_@cpw}6txnHb63$=lRfz50shNC8cU7YgS%%1FDrW?W)?j%%|c
zJ#Ogb7HP8bZu8N8W~`5tWn|{t#R;JxogI!ZgYuZY6USLgm7Zf6Y~<HKDu7W9AR9PE
zT)Rw&L>wk~zPkdK3d;>^bPN&cbA=W<bRY^)qiw!{&eCErLOtm(l~n9)!c8)bqT~8k
zB59wJ*|Nl<)hS1s-&6Qk<dh3qP;d;V@Vu4s1?7bi@##v`kH$#(>54>RNsn6|0HJEg
z&+6tKa8V%q`ZiuV$<aWbTEB7pV@n_jjp94ni)HwayCs8BO%{=J#t(TSzx4!s_s0Kg
ziO=rxFOhBh8_c3qHvYgHd*_8>!mm#<_78RR#}O7cgew>n6ZiaRbg$B(=I?oixHkG|
zlr#0p7q3iKsB&7F&Sss2#$7{t0iaRlXz29Kv^l&2%szTtH4%O#z!K?U%=MGu9lfS{
z;L8{=bE3f0syjI<vCuHa$j`DbBLps>nJOf{=C1VVKb=s|PZ1bh&Xj$qU5PXwQ!=7)
zfn@S3WKvc6?ryr-j;gN#omB#PC=MB#tV8Hz4I7;}YA9)(?y4wo!l;1_OYt^6$dV4;
zytmM|220ktN}^*J?cv^51Rl%Y2fs##V3?XElfUQR=H$m)2J-h>V<Yy69xU~N**z-J
zMl^}z_`Y%)KLmr>v<RWpIAb>ro3b2J1`uW(xc6<q+G0a5KH!<xAW@AE)aHNu6Rbr(
zVi2skm|ab0_+By@qexkNIG-3MEl?3ed1w<mXXsM0wM}|L$a4njzyFQ2Tp|PXp8j*n
z|60!rd_o1iKK}U)zQKwNZvTCIVPoI7s+EnP9nJV0on;pB#qS;+8}_iv`*&Zx<NbxS
zI;eN0sgS)e;m7x)@N1rmWexR$P%fLlrDU>LmMAA^mU8+@*OHI>jwpduEGY3)*Qu{x
z9$72zGxZ<~R$QTHERjPAVE|d^C7%ac6lEsE9LEbMSnaj-_>S(H_a{}=88+(211<i$
zQp-oFn1|z6eRS<GT+@f?Ut!+oirr9=Bt2Rzif2r(p{#7d7bNc7@C@kHtHBGOXQt>%
zmu99$M*meunKV`>Ct*+t{mA#v`?K}uzc|lUj<>pgz}RXPRl=VJc1)u4*&R@)y?Q?~
z4uUDxUa)ClX(yMmUrB90?+UesSflGfu928J?xeoODmW^-Xu(;Hry>L1=JUW#WmHe}
z`f$p&XSvj!>T?+-eZGZxeaqeYkV>hQZyWd&Hb}JLG2v}+n(7uw@&+|ZKKeVRQC|7U
zr-WMZtHXDkr&qPdZ>>@DIdn1@K{Y}7IR0^dQCl_<TTA|Av~iR^@7S2$*KshQr!Vmj
z-;@(P?q;(b7`jUwIwP33Rknbrznq_cL)?GD=55Jb_*|V>;G3%2jiQ?UUbkNAz6SNK
zT;leOu4}T`8k_cIEE_QWo0J0BNL+>0<H0YZ-`U{+HW-h)BvitND)J-6-l7LD-{X~8
zB6rZHC0tRNHa3M2g4bQ}Vy9nMmh3_QbH@_mr7*%fpkp_Ss65}@YRIqBE6wz_D?F{<
zd#YEN`de(BlN?dsuLd7}d7!32{vYXbLm)A36_NzYWs@J@k;MM`2c{-1@(?}_)$@Xk
zn2^Ggl_C<X0Bl<v;_IyY<U!oUt0J%eshwFVFo^PVbNKyvneH*Acl@-&nFnti+b={&
zU^CyNl>hw=bc^6H_)Zy_&^VP*Yk(|Y^ggp{qb=t!G0K!37dUhl>!gPuXX}3C#(v9~
z#GF3Y88SJ7Y7`?9t_BpMTN)W`P9sL#zKu>|!k=1C>*z!`e<a^_PzR0q3D?eRN+}cW
z1)0Qz0GkjP0VWQr!%p-pM`E@bKSw{V=o~T2B$shxi4>lXFsqk%GfxS^41FCGKVSbe
zr?cG!(>snU@ljmwJ!I=676)*!oad!tAZ2#>{Y26?dm=AfZ^08BL@7vW85fBsG<k-o
zFvHFo79GE>7jIB%z7kg1-yo7asx%3Q(2~FTI0^e3DPA3Lidebsxm}GcUTiP_OCHV7
zRPiOqWR%$4Ql7FkCZZ+w0l^=7F$ud_+|)Ax;%l=NPTuDdbl5|AnfR!ji|o7RS<Kt^
z;jl}FICZtJ(IxZtXZ`fNh1TpVu^X&AxxBxc&h&gu9dRe}EwPk~leS69$G^<Wz%nYB
zIiTgF1n;FEAN({sZ1JLY4Fk{g>%r4G5}LiDNjJG0;SX)PXgiVg`YXR=#J6Id`MeHj
z9HpB+#n&X~=CxF%iYtI)vz2cxSZylbQA)A-)XNo-HXl_*5Ii6P^jtqiIq)bCd!lAP
z!qUhk8wkVJWfIIM;L(V^m!e71mw?8<Gh)kfiFbP3SO18YMOfguwJkp7yV=h`?OZ<5
zMk_(Z9__N?0uD*39n3^e!VN`Zst#DMPQi6(v(|&A@<LMM2MF9Vqr+?6UznoXDrgJi
z4e+FLK0IMVpX4keqx4`bmx?G0l=m^hW_Aan#Y6W&QROBr)x600%1U2M^-rGQoptj6
zVhQOwagwJwo=K3jo@m%1Gq+_GMEtj(qCA55a*tahpO8ab)+eU^mUS51iRl1V*lk$l
z_=8!<SkN4Ie~qL~KF~@)zTw@*9;e7|^Zww?>#9ZE4s&N}4@X(LyuCm4s|WW*t2X1@
z?zyW8F@M@edEJU^re2ClypqBdey#i^sg2{9EVTXe%;4BbWp`D?&*-cGvd6qX>C)cO
zAzC*DnSa>md*CwlXTJJVLe}8l?o1pprULHs<CQ2ZX?%X4c&b*BvnO$RMBJ#r;jSU%
zocK&mv%a+GmBQ2>t&7|}9R^Z&5>RE1w+Kex39Kzvoik21p9c7zjpqIeP}M{IT6)eY
z&`3<sNPy2zhl6`?&X-Yc&9B4<6R<s*{>(hz<Z~sF58zXdC6b+#rZ>I+>wfm>6ieH&
z5Ht26y491<b^3j6Z&Og&2opr{N;>^<X_{=xOuh;I7!m3a;!}6-#%HLC?jZy`S$wi(
z<gN#rHZ?=K1<lZVH=7e83XdA5cx%o*empjdE2k#11h^d#;o*#nDk^<8alNi;sFpXd
z*abFF5#Repy;J_8O62a4oLEO8?wHrDV2fAWEbN?GCc%r2QQn)c&hoX<aYVO@5RlIN
zY&P<w$~1y~>!5kG$%lYM@g&Ha9|s=TbuSWS=A9ck$?Uiz02#zL23@EirTU-o^q?mg
zzAsm)w$ao^*Kp<$UP-KZ)oS-%l(Dvu`Ts~d3%@46J`8UICM7VWJEcpcyOC6pM!G>t
z>DcJ*MoJoy1_9|5q>=6h>COS~^ZUI2!9IJobDnd)_kCTdN0f!}2Lz}F^8&&%F~06<
zPB_%KI4D8Ymt1s+ZU*dv7U^t0D=lo+jF`rjIg+LeGUTbh%0VZLWrNk(&t}d^lUZ0|
zU+5B2d)bcl^A*9yt=ciq9Z(UA<F(34cQwJ9S7`eFMD_Ugj5q@C?0SG_=l*#1xk|qu
zbO7s`1_)lz`r2GR6;jaiW^|~)vl0@!cW_xk)9PNTR#GGymf0YFTON0BPFkJ*<Q5D4
zq+>;z&3j7802ljRBaX3GiH8NM=C@td$`aIKd7t}yi0)btM~vtt2l8`4JzSWqu-Axd
zbA@Ki^@&>O*(Y2-jJD@Hd3WLPZgO>B>Ou?cRoviIlZzVvjM-4wV=B>5j|HQKv)llx
z>gEewZtQB$ZoDi33KUFvuRH(%H;NgJ(hqY^<|RW>3cfhbiJ>aoa4r=EkeyH!`5$Q!
zn-<z;M@9No)PxzFjiu$_^5<tE{aBJujtWOoT&V6Gw+r5r9-RO`xH!r)hN`9hetlAS
zqELJ(WLsYCo)@dQy7}gxZwFUu8|~)VOS%ah`hP^mPV(fYesF?~TD?pVI-?+J;&Q;v
z5I=S{mqolYdj4NSX}tkXisYIylQ~<@uj}>P+qaTo92Y#GB-t~HAp9T-l{1o6zSr&7
z8WgjS)Fq3~RJPP&&-p}9E$ATp*`d?XM$h>DP&9!{7B0~%`X4%Q48Qn$Uu>g!6j)j4
zH~2Wk1#6pO*sidF;Vb3lhi61D=~-9M5$IAYdE>h*RZ?)AoaYbcOf)|{A}}HdzPZYc
zGs6tb#&(v&8(%Z&R;bDh{V65!nqgl&+k8bK+td$oi{abLd-=s5IF3AX001^_dl{}1
zu^`_WVF7iFQvrdQlAJ{3%6I5vMgvwia7Pw&(2cHKDP`}5WxCDxM)`%}ukoS7<D^Uq
zad;Jze7}T?AwB+1B)9THWV}G~T6OEhUFxf?`6oaNu+Pk4RcmJHbt1dV4zO_GB0@QI
zl2l5{Y@r~J^^ds@j5uN<6!#4eBH!IJ1Lpx8MDv<*$qJJ1^`|G!7>7IYY`@J{=1bma
zMO%h3w2|I)JdWIX5ls2+kFO03xyezE9>VL+iftyS0M!jPnENaB`Tgf$37}LQ5Z+j0
zjoCF5-v5U@GP@~%tjxGTbS9qUW|iTBoirM3$CUTG21cUiL6|^1D%F>=;H=2dA+_S?
z4Cm!9Iu7)G7tryXO@<B9xFzID0mZWI$jt^~2@Km!->Jc7Tk=l~J>Cye<;$L}FUj{;
z%Uk*sOQ4kKzH8`C=k%^5UK@6bhHs<$n-t=|e8z$<d3;D5jd~!*bCxNm{Wj7+uy+0|
z$5$^B6I9V6$Z+V3L>?78N&cw}0sBeG9lGO<qRk!;KMi4*jOp&8fn?|~#7We=PODv+
z@i9lgtz9<FHWWSs>HsLN7CZSqe?95YA5o6Qrcv~%_k!g-#kehP9DBBzXxfZX^90@7
zo$xEz(_;)L&JJ|Bb(_C+pQ%o_J)&)VX@eiHhwp08m1|XQ%?mXNA$d>cE{Dit!FHB;
z?nfR$scQ0@dbE$3-_Gn4$K5$Tb4GR02oa}9ke&_}n+=I+n{|$eIO8esagY57+ah&8
zz>?|bQJ)j8$pW2dfA{JFqE94CTqJz~nT?dUFFI$;>D8A0^mA8a(Gt?SU;nw?QU~$0
zdqZV-ZSj&P5Z|!$URSHz+X{s^J-;Iu*>ZHQ1xaJzfD8Cdt@(*{zxS3zHB@^n7#==a
zjqe@s6V<xnbbSUVNW9n<0(U%HR}JM(7M+re&Mb?&UK9FYPZ9I|`BV6>!<C+8h4ygb
zoK^}p>Lv;}`!9U@qrK4CMe{5;6{jpgwqxF1`fTXnHU7_F^%~Ov^5!Cm)O*S_2~F>3
z!uVginNV_Aa+o@?!wGaVbmJl!34zKA45$Pt<mM#F<h1aRG<rcyQ`LH_nl0%zszs_5
z43mW?^GnlP#lM7T)$uqMU1B-(a@{NgkmCy|@QsY6U#dDpJ5KaSd>U-m-Q#71Q#B~c
zwD+QRP8@`8;oo=O5IOx?NuUhn*$gQz+~VRuzNXR2WxI23nv0^(m}GiYMg^Nw`L~ZM
z*$?1Xc)E*gc|zW#tBiP|sVjqPo)wo*vAK^D*8OO@^n#LH_g$zTfS(rzi$f)i2sDy4
zP&5et!B#@%eLEx^B&TAmTb^baJ@)=7SMB;cnq7TArnS)&T#x7@#V3A6{gzuZ7*t#|
z*J~G`T|s|qw`VAED+17)-h#NlB@luPC|H!j#91AaIKQgE#@OJ@cgZpG$6ez<SeLZA
zw-#3K!`ioL6q|Gi@1{+PTr5kt4zLNlb$i{deT;_gbxM1ItFQfiaQDrqIuHtrCp9{t
z0bM-H()Rf){qTX=FwAIeX?ys~6cOE<!1KOTK+C&PL-jjN{}1qnr>2)S@r!_==q@fv
zt5EsIg|I#BR+A3Y!XTLy5A0YtYMm+oGTFtABV_pk=e=@l3Brukim^(obhN<!K@9YB
zKA{{2vh@1Q%uxX87&_$_s+zm(O+_5SeRT*xu9}jUG9D)P1fnPAsD4IwPuxFO6~frU
zrB^gD(7Cc{{=?$7+Uwnf47qw`G`!ED+!vU6IrtD@fG^Pt3LpG$XCeeKCc4rxiYpL;
zn#^1y80A3TkUQd-9t5A+c)k;X7eQ2KZoT}E%a6i1Zz8Q|y}LgNveM=1G5KpL-_E=_
zjYPL5xN6{v={U;xGYuWX8_5jro4+sczm?J=Uiomg)3*5S#lx`0@+jNlD`M!r=*XoJ
zQirjR(~BrP{g`gO?|~$Nu_p(@F#Mw6CdtW^mklrLV@&_80_v7wO8W@LpS5!|Ubenb
zv50UiHlFoSb+f-B(%SE1#8a%lR_T&AxCGGLHoO2mjy1&TDWZXlK;Ho&BhV*CJ^8k)
zv8E41`5agOY4e_zwfK?L>^&p-KvoR4%v>1d@y!aYSbDT96vvN;K7=!qD4Ng|tUQWt
zfM4E?Hq&&B;)sj%Y2bB2B;$8DUNLO-)I;tFqQ`Z?zr1pp`qs~_Ob)VYPw$cBRYu<>
z<<Tg5VJu#5G1UT+Lv4})xxg_Mw8H!!b7PuVH+IhVJg{JtwM|#=c4FGB>U&yi!y7ky
z)&t?WS9><SX7wZzPeRz)?Sq@gsVNqwQ0=Spe|vru5aZO(QFwlvJ}@vH$h0Ol4CJ(b
z8wyyRWG4RbaM}_3x$U!&Ar)}Uni^j71fnSGM4_n@(}-HFg-~@Vf2&IbOfI2)nC)`8
z$-+69T(-hP-O@OfCjFGBBxhp`2Gy3LZK?DH3A|K125qVPe~F(FmGFGLv+Sh$`Fd_X
zc8Jd(!NAdncEQSb3Z|fPf~?jCj*bNUCPV4a!Nw&({ng?UpQKT(YaPDJL5C>glqXV^
zI!Fj7sr^D!G5o-{+($*Ri47(Mi%;IpK4*}J3vR1cJ0<}IEuQ@p!z>4b4{)6o0@Qk>
z?%K@2umN>;_V6@abJS;QyPmpRE)$);(2R8f(RwNjQdLF8Qn~kf(f{tO`XmTJmzJa}
zLzvNM#xYO--;~T=CGf_YZW=xLPZX<q@>j<dE-t(-`AdFcwWgoSeUvM1_V6-^Xq^`H
zcYVgHs4@t_BnAjNDSvdAbaiQ`(%bhk*hr}<#IBQu^?xnusd)Dwy$zUlDLxje>E+w6
z?KghO4nv5JK)DAWukg-}t1YqbQlidG(G2KvH_%kE8Aj(iM4uj|&wL9F!oa;Rc&d`}
zRC}~Ltzpmd<xo|mzl@k;e-wXF>jDoio;U2IWjV&2{5OVYlwh3mwq#D=53s<JE>-)=
zIXp~s#N3`!{X~8W3>C}1-%435*5eU>@Wjr!rV0U?Xr>M*_%;4OI1rmCPrZNjeH+A0
z0PA0mr4z=Ad~6WKZ79CMM`y)7LzQ74H1FX3ebF{1o$Yc~5W0!rXKA?84BaHrJdGsJ
zIo>91z2-n|=~QSBDkcG%-fiSmKfGCvO}%l)R<<%b;wIEDK&p4<oBIgG1xIG#y9Wjz
z{5ahjx1@vE_>|JRE9IAY3IpZ_?}RlQqA<p&0`u0$3W}rxr5LtP{&nnF<<NRVW?M(o
zKq4Z!@Y63BY-t4;fzZuZ8Mxyiq9g(1J=DxuZd?(&(eYJY0e1dTCStD4FR)x8JAR@f
z;k^LuH`}Y|HRS@ejaD0A9U1$f4;{KI1UCco$=4kYaOFowsviocFMwk8p-_~;hnQIj
zYVMB@=X$Wq8F_}!+3@eA$5z_yaIvRJujlBS$n%>ob1s}-Oq-i0w=${P+4ocqhK?z=
z4#wmugee4KO_9Fy@@E*L3f21=C8N8sV|x8)2=Q`$;2np6Nj(lX7FQ{EJW)7mA}WyM
zS=_k`EQE`&#)u!s_k0^Y{^^5WLJdcni5^m#nc;~W-+P?d<}?<zo)ZRS)d^KJU>zNN
z5kWxS4*;tF3W>!Bxw%PJE}qU~0mK?;m*7>qux{cjxd^=dL<#)XBkEA<<bJJ@UPU3C
zHg9OrvaguZvInZdJGSIPUAB+Wj~!mg`dt}fS2+U7j-cPmrfWm#eEYc6`^23iGN`xt
zVipPdXnJ1rcd7TYm!l5rOYe)f>^*T49lX$GCYF<@{rKcLAR!o~zaI*z-q;KS{BSuB
zGBkwlD4-LU0l%?v1@J?fAZs!`;Ijq=)yeP9W0G3VZR!XWkF6^8X*=Bn4>Erax48eI
zIyxA4Aw!aLg^LWV-eWhvgAiuh?`M!KkGznANDiTcgdDTzdx*TixwrwiK}!rl6z5Ga
zpAx<61|_>HvSU*&%N-;cM%fN}`jGrFl0_P6iJ9RhfdxyaLh$@jm!>1VWH#A{XC&aG
zfhu{}axI}3{ex>a9X+VrjT4A&9w<9C7CqT(qwdy?)BHSh;3`PZ3SD+HOsDZP#B%$Q
zBK@mlugNfB$3@Adwe1hhC*z6N%_X^)Is8U1^vJdj@6)z|hT}=yYGl;!L^56VHLg#M
z^)21()&!_#e}z|#^rYlaoPTz$>FzZeKvDU!#GZ3HfadlD94m-9``MSGc|Pa#0@SSd
zv`%LqXcB1v#!E6~S<0F7nSCN9MVuTopO`l+pM<*uWJgz(`?Q&B23>zy*w0Hb6ll>1
zVTHB66KCqOpUsmG8ZGYt@a;|u8Sd{Gw+5kQm$*h|l1Q}7-ZWT<|Hj*eH*}z(iVU&s
z1#=^AA<MV3w4T9QZLT?W_*Qg3jZ@q>?7p-su#=&eY&!N`sYXt^DX1qtAauA({iEOR
zDw^UjL0QL?`fUHKirZ~@9HL$fr@H8iLr>X?OqE8|Pj{aEJ;4!|4MzT+1B*Lj{!-w*
z|4?3eL(7$d4&r=0InlAkuxySd=?#-SNu&Ne?aMLiyNgR{Qd#Q!dwM5G@ST2rW&!Vj
zvnmRGib_E0JU{G*ONO!DEat6+_g0(H(kb+%RU3WzgG`uesc1+Ng&M$zq<)1PK*Uf2
zVpcGBi$*|lrO_lOkeEHi{VBCP6ARpe^*HeYlwBnY8Qd;MSRQAp@m}kY^7m~&)z-y_
zzaqyw11Nz7U9BWb7DA&)dYabk6Spk0W$n~ty{}zOK2!1V0!VMlnLmEvnjON6u+gPr
z1KH!}{#TYkV**Ksw>8m^w|it_;3RR3K2JC!OA<i~Oi}9!)0|oV9<XAf@DMp0${LRl
zf6d*M^4J-nJv1{^tyOz`&2-6P2A<-mnrZ1?z0Y)YtgV0{PQSW6%G3&kjicFp)!U5o
zo@jCWk!1HWx9Mk_k~c(f_;^mHBWg00TUQUs(=HLTc{@CxaU7LKp@tm=vbJLa<<)*i
z<ueQ@1lXEJ<=tG>EPNyhQz18#mOV=!Vt68PR#TN%q=U6XU-K(cZnDU$o-j=3EkP)U
z@8adG4*|i|qXN-IlpdKN<|6A9oc>BtxypD2irwtZzpgbhX75+jtcxzExFUO{50*?L
z=%8Tb=0#D7^-t$l>~vxW_@X2ybGXKPt3X5OJ<-FN{J+~O*S|bYhu9axUjrW5ifJ9D
zrbud$JIu4KXx{I_$;!3lNPm)`8Gj5@E){rP^NRmB0o3*iRWm?Ze1<M(22H2MJJVIe
z?6yHcVI5b#YTR4pF+uA!@2Rp~{f%b1VD`a%<5+SX679NmGJ=Klsbh91Fs%6-nVG}3
zw0JT}b;%{kdly0HRlE*vTKKl!2^Of&z^R|H^&OhDj~64<N}HCyjB30zIxO-2H>Y*i
zNxOLDy%FygSIim{yzBQV6%Rltd^6;2?L)H7c#d-$I2wwp)xqZa{vWkG$MSF5#VTho
z{?V!^-0koyi=Wa>?+}*p1V|rj+?O|8_c|-@B?F-O*zL5Ue)ozLM)wE0^=4nfJqibW
z!9o^FRrtbL?jNwvi4uyr6w$d{YAPC@^0Ir_lU}WreE7w;PI77O5T})T^K7YCtH0i*
zV~qS)%pD#V^JcEDo8sfpM4@}|BjXn$R=XVvYVh(4JkU?SSC4&+L*&3c`v~^%y6?~f
zm)}cdtdeu>)B>VfpfzGwqO~&e2D`QXIZ7c~deT(TZWCv?I<pBX;!Rx-NhFEQ11}DO
zhZv*ulOjP+ffhY$KEzqz9xsJ%M-CK~;f~tgxNq^XrXs}^_hZjz%%5+3u<!5yN_=9P
z@7GO}6SR$d-dOdh9Z#Ck@FkW@I#3$>RosV13x({SMv+RX3tL{44%8f1Kxrt$FAs8R
zq@e)~#Yrgu&j$btiN50%c8SP6B32zE1*b;l?t2~+82oh0I8g8HNGRhm9{3Pt;KSjk
zfz)nUyuiGwKOiKgO~*<W;3=%b=+Zo~NGfkLbBPSN6k2&ZB0P@A0qimj)d&9wrlo!)
z>YV(N>#$D-fZS8;c6xS~vxd1NKCZ-0%4;UrPfKiRRaK-i+YNaus)S+Yb}s&Ss<w>y
zAE}<=0%W)uo@iNKrX_H|BS1%q$n+2)+I%od@JYUd!vtCyzQ!J4imP1zrad$%;S~;~
zKB4aSBH;giFg7>bQGg3fQvLMV${SBLmEw=bb_uKtq4XsLu($ql3&iv$z3jBEiGPjc
z5OLy(NFA7DLUp)J8d;hR;yG}p#Iv==%S}S-G|cd41W=yHbd*X15zTW!Y#(EOuPrrM
z*-mU(_UxceceT#h=AG3xG4dYV7+Xe__7Vqve{CNYyL}&i=om9tU6D*;BM!eCqje~8
z<X36+0mqzvRZVrA4A!#kb>MK>51#;+(*_xrm5>?4Q|mpAJaS70d*+89uzx#tt$zIq
zi+3X#Ck@5RaYY|!NC-3Fk}S!E(A29HYt6GqW_or$6eJO4(RS2Cs#NxN{Lt&+DCw<A
z3cR`e=<OtF5Ip?M72{S4^+g-JSE2pX)C#>kivl9ap#uoD`1!=?k6R0Vt@CN!Jf8^g
z{`TmKZRC=SgTlQ*9lm@4K?R&Y{2YGx?ZLEgV1>mZ1WoK6(-*8%rtOQUNJ?Bm`}wXg
zxudy5Q5z#@P*Cn8(Zh^*$=BGJXuU39v)l{y>pTgx%w2p_?9z+IIjO83CYx(BgWM%f
zfs4L7YJTxi&2r_+uhhAr3`Rf8azl3`87<8S!VtWu)2FZ-a5H{?B@)(bf(y)BVLS0~
zd#ynGGH$^#Xkaayg*O3A;1EU!Xh%N)y0_94p>6du0bL@Yt5E~2C}b=k6QON@Xpe9x
z1SHLsBx%1xM%6uvttsr294OF^P4*NiR=Iv*h#Z?Qr3JBjyyvP)xc(<y)6lAg2-4K1
z_i2ig9{+MNNFLZGmybs8Y=IF7L4kB|qHZ2PrrKq}61&5}Xox;XkCSJg|M2x$1!3JP
zY{NDP-GUX^C}z(S8_kI-2JR`9R`g@Lg*C@|pw<Essd_KUZ0xn_N51)IO!H?Ys@iQa
ze6m`a*13B={L<*_$_x9C-HAc(BB4?OH5In_M(ZpIPoKRJUoo#tXBQjrzIvfnWBH;d
z5-}1VnK+T2U+sH6PRy&QY#6{3;@&WC;E{1x2Bd@ooqJxkqIwcAO&-m=3fvKU7;Glu
zB#9M!a6VF~K`ijPhj<r9uia;zl_9M^0H!Arj*9Rsg`7l*_^A2(J>cDF`f2HTx_652
zW~Mj(WP0+xf>(m{U9Ser_38D+A9Wmj5cUndzs?zP0_}hQ50|Q$KI|2eG-EaTF=o)v
zSr=5)GToV{cyK0Wiaj=-u@<kvo-73UiFM+SLtnE8bv+$w%<BW<R32T_(q0x&3<geJ
z+vX2_vdHYVjz0$1z0`uK`b?oZsJG|>6oTs%@T`3<L56<cbs+=aa~Trx<9FCuaC9Cl
za#+eznA6-|LaT1*7s@AwqL@O^*oU@HhQdavLrh;v###I_!MR&Nn!OWF08%-(tKg&E
z>(h&Bt|xp0_XVSIO)AQCe})Q2?T|k$+6VuIeXAeCLby#2bg!Yj6gITodMinP^(L~?
zcvL>>*S;-qu+tASC4&;GNggBLHP(E|j0>lI4*V&A{BAi4EkN_GVz=MVzAv(H?5MHf
zg7o$KzWn`P!MD+Ln1m3Vx)n2d69dCV63A$c_T6mFe6t?y7S=$NVNOTDC+jEkqNNzJ
zxp>|#{AQLK?ag#m&ldr%vOWa4HgPU0pic2-E>AH??9FEsG>tPnPKL40i6C5%`KO<d
zr{B=hT3!(b5_8H=3@>nRPG7^4eeu@*g~Ad)+Vv#`Tc@4I(v&(y=-RUqWQ;zMn7Rn^
z7^ldw-~!NPSX|up-&KjMN2Y-2F^hB!J09A7Za<%evYWSyd0MOPR1Ol;0hy&5LDOn^
zG?E#<%vxUFxc$p!>Ym2jGqfK}V_OnF3oM5eEEHudf|_1lvZvnjDL>Ae0L)CamsRX}
zK%YtY_m|^yih*|RaC>EyTU1=Mpq;O;N23mRHHGE1UCkXOXHj^a=Dx=_nr>M$R5as+
zmu;`^;4Xy~pMJ-|a{6P;yJMAjD`r%~x%K0oY%qsUHSxnH1N`#YJ_%&{*wXS%?TENA
zy990oS1a4utDVC7v{s~cSeq4op7sNQ^I$FP@|r?+xdrXCp(Un3?pd&80b064Uq<px
zlTT%4<Zua~Q)2)X-#gD!(?9WXIDM}}YWV)Dv_YWpoU?NKnNZ3<oa!ctW0{cO$>u`~
z*>Fq$`eeG&l$+t{VKsrOj=%EUzYVxw2{@`2d3>SLJfMTn6J59w?t3~E#@6M>3RJF?
ze#(2ZtNVJs{YU~MheHVqSU_><K`K}hqNC`wtA?Ne8A!_vy5QI5&Lrybc4O>2f++dX
zb!ULsM8QdTI#%nHhaCAwQh%qnc#Fh@g?Xzs54+3y^vOPIPtTNvmXZtY|J<%rYN2$<
z(4QY;=JN?uM6i|~4Hovc8->AB!v<VK|C~g+3Yg5U6wz-Vv7obMMl7Qxjyqnm2bCi!
z^NxOD@id5r-P~51%=%RJR&uD0@DQ6%(}r|fN+X504?;lFP)v~8p!t;q&hRWLIO@5v
zG)={`xHQf1P0!<Xz%&>WD1GO;PMaB5A@#T?_<B%32bC!`%LkIXB+a?)Kj%Hav@fx`
zPJa2mH`T1y&My9>p)|~Zg=;&*CPY>iG&@~D2u=|NMphh(dnyAz`UL_IJ1h`IBxNun
z{5iLDho3`kSg1dc#ClqOvwPoRZs5FvYVcAzm-rm>M`qZ!$l|rTfT!-FR(-ivZN*?i
z7R_JkV-Xq9ZHUu!`S3J7B<l~O@kUIkuWhgTRrsh=+Uc7X|0a>gkWEHydgohg2ErjJ
zk4^%EYyr$v!q~~RzTF8syyiQuFy#GVnBEP@l(+>kd)v&19{0~8pO+j>oOekD73_^-
zKx4cs$wS1GLzgR$*1=tLuWF|L{G5-(ncG}SD8cWE;b)6UK-hC8z6eEZKnA$^_{Pa)
zZh!?O$T}khIx*3|k?5wr+-`gLr10U}(`FmF)7Hvwnig~6yCjt{PE)!@VxSD1$WlfB
zpCy1K4>u_qzZo4IeZ|Es<sWrr#R&?KM&x{ZYa9zUdq#K0M4RXI>aKz+IGZgr{S{{x
z!jEyoTm%CJtC)r#{xShzL+0>vbk#n0jQH?F+E>|C1UTqDS7jq&f&T&t{Fv$$6sz;!
zT+yoFcw*!tFgZ(j>WpKo<taE}r8GT==f(G(i6UMTf<0I)@H(P;v8(qXGUvj$?s!eL
zRwCFO^`rasbL2L=TEm9$&(uTf9`#>y($JoR@N2HT>2f~@xZL<if${i_WF`5nEW<#G
z<ztL~zy?h-QgwStlIe=quGge}F0xxd_Y&Xk)3gaalz<Ia_t~ASVADa;Kj52FzmYKG
z>QCW1prYt~AdIE;+;Sypw0(6)5CLK)jisUkkqBCzL+}{z^LYPT+E&kTkG_2qtc4){
z@(GC`{-TtlucqXfaDmW3QfJ5QUhKeZj=snP^RArin=@n$psEt0(U0r*Nal3C31d%-
zF7Ym+y><NT^m~Kt)NenO4u$oLXr<hDpFkYmx5B(ny{oChB-Cce1FKHr0b%6F&d_BR
zGfJ-A-jQr~0GT6FR8eKAe&ROw)06foipf-IMOcb)?^JEU&|Vx#u+4tY(Z|tBg`sRo
zYuamms(RXxFktyoX@L0xpW3XotM^A*kCLy5J7$H!<qK>b9$b@a0-A#>CcJ9v1~<M1
zIZOOkLc9p`7n4}I@w-yHk~)W@=e!lyxoo+3f0LhTRA!#yCRrH@KOeLk$oix6vs8Yw
zaa`+k_b1!ub)66-O#L=frGOA8I)Fb>Fr@|?fGF&;B-rnl@jIv2&E8ef=*g7{tkc*!
zZ}f@8H6D;*_h-dWNt5^<<%CghJ(p^q7!PZ4jCh&aRAc_V#4RBXgX9bPb74%Lgl4&u
z%h={)owRJq`}FK4voA%GD*seuD>9?{z5C4eei_l-&ox&mo13+I;Ji@gDf13ggeX%)
zfo6i7)=fE7FZhIvBj5QZ`t4kPprqI1fH|-5>ieIhdQ(qv#0HwcTV1bKAB-~@+=gaq
zRyaJ!vG1=v;i<k9SMN?z%#Qx<(24vOwG)R!-D)`cVBVa+?HDLW(`vWf@1J}hIqwg)
zw9iItDM`LhALJb?eg(SV?aOf?jm<^0Zd2^4ulwYFr>PnIjnS_<Iw2$I;}W6R8I^iU
zehT$hc95E-+{ber<PFPy^8fd!z9Y>WO$YfNAJ=Q)A3Wq4qk-b;MN^r0AeN_nCJ=7>
zI_#}qXt=RE-D+(<RAzgI*7nE*Tg^n81_n7NkK=A9GWm>aqS)uK_|^w>e7;nCJm$Fj
z;SwA5bwGT}XV!%`%pmcsdd26T*q#$XiC2AyLwOudM|lcXna*A*DZkZwLZOPA-uN}%
zXs!!^CaV$kiofuc9scSHf%L4O^g;$R=FnK~(oECtTU~~}2X-q}^hNc~m|gP9y+1w1
zuPlXOmJqYjM3YpEp*`b(!M^;o%t4Nt%eWAShm|WbGJj5FgezO`<-9&RAu?P&o`QFX
zSeZzS!I(;2uQV~v>HCG3SHEqPnyKB;;uiCQSBt%%?ypL5c_q?zeL4Tw$w}sOVBcqY
zCL&i~zbi^y=1>g{jXCI`ZZJ2!d2e&bm5xZu(_LpWP+GhYhh<bLjm){qL4roTdM@6k
zd(fZq%w3IsjqopnhgTKqhBdNLk2i?M%-$Z`f%J@_2!(a3foJ^^X+MTsf9esQc|K5f
z&QOXIk{npM@FvkaRMcJ7>cjjr$~i%=+3&eunzu)kQ)l$UFG+=ypB2F>lQRMy-B=e`
zI6ybzi5KL)XA%1hhA~U&B};j@{Km8EWiWkiEU|Ni4NOaDi=(L5X7pI~+T(5F1*02e
zH4^uuzT{5^_)%?HN<i*Tf;q#F?7-cHBGZXKMynMwN+(5QVDI?vn`o8xmP3^-2bbcn
zwPy0`rIvk^Cw|da73A&wP$%=NmX%F2W5bNHu9pUM8yh=A?S!@)?p4AsNvK`LNo*I_
zy4O-h#}}Uaxn14P(UP4n4yWu~H2rZ_j-=olq=aA!$e%B)m<53nrK>|jyZrYRCY5xl
zdw+?MpYA8Lo6Zhv;Cb(R^l*I*NNf3rzVT{Zdbbl?T0|V7%RHQCdZ>pa07;3VT7qA}
zKuw?Ve(vp{8}Z}5b1#>_DA$M8o>2Y`C`Pa1@WTXWvGxn?8txm)fqOxL&{n&Q#*iGl
zbMYCWP9YyrW)QTPdJ2i{{4Y6d^o-UeTXe>AiX`zA=hd+Y`=iPBg8+K(+vBqR`Y~Kz
zYg@Y$<mqHRR}g4SdhCY^dz9rt*%B9;cCdtaQn`jJ9cHm@R~nm=0{ua!&2IYFDDdqI
zZf3^-&v44NDr38q1o2oF$Sj*=Ro9U|H`=&erJPSE-+LkTzo*MTey6OL-pzCt7N_3?
z*FvKvis2Xs1*bH#AC(<i77}8?FSOB&XXv=|R`X5z+diiqzwqK+DSY7H9q(UpX1}q&
zxIb^5V$49B|1MxBbmAzW;BVFMd+&MQOun_Da(JM=ZUz^kozc^uqwh%ZOH8sVR3qKC
z&2y~tLEJB|1X1ri;v{Mz3FuP|f;W@3>6>=RusO5QET11Xc@_NJz9)*cA^!14xO@9W
zbvk==yDpe}3YU!tx~(oVySERk7Da=(bIDAu@Y8y&v4zpz7Vx2iHOT`;UrAXXTA`z2
zp<sf9rd0xl=vM&<mI5Ju?I0|<hB`blgL}7#)#et3ew(uQ$L&)G79j#zxn4c;`yc#E
zDbed&W{iN$1A?C#fb3Pkn>7m7Vi2nF+dBPaBN5mAav!$MoE%41NZPZCzSy7}Z-Q9)
z*cS7iA29rW%0tu+VhRQyhfiFRKw1Fv@VO2zhL{r5`ZGEl?{J!^<|jP{0>kJuZ%bpP
zWyiRh2Q|?tBviZucBr{t$Nkb@6aHeyOa-w;uB<|o63Y%La6k`V0Che);w4mK8sl`5
ze&mzzU{95?xGQWuHvhf*V0Kw^cyKHTE#h0oL5i-JJ#sFuKSVF~6ISv${=^<US?T6*
zT<sNR3HEBrpJJMluAh9yH^E%ef%QHEYni>{=H4%~L{r-a_wCS`O_+}GJK}WA!K?yh
z4ZCaKe}XcPjQL;e0>aXxCk7Qd4MDV5Y*?t-=()z+t4@eajZWhZ!2o}u8DI#Q1N*sY
z8T8aT8;1Dd8#b_P@iSeabq)OUF1R2d+(_1cSjXxFCWD5PgQuye^VT20)0>@qDknLa
z!NgW~?7H!!Ha!i&JiN1_Hm<#4Sc;%a+IWoqL<ic<C#d-5^Ar=9wax=7KQoF<@>g#L
z%G1_K((w`bZKY&WXA>*Uc37sws`ApOe0l>$8BE{(4pD;$m6f@3ARTTiLO!t06bX#>
zhA=TI+*K6_Eu8Aw6#rZO#`tyH8?vc~{3&{;-tRml41``^MpR^%_y{rJUt`)+mSTpJ
zN7uz{WNNf?^^oOKndP-wr7IqI*i9=x?W57T@BQ|j9E}&ihhZtJzO=6%+Lo{X5nPF2
zUO0*oSuVDr+`jP1A(UzuZ2v7I?w%mgkP#O=;~^zpG<Mued9^%=s1>8)fRn*J1Yf*S
z-llowh;x@b(&w%nBQHU_b&^LK#+ns=l2E$GmRd;`l6^ZM+^RmXqHnkuwg2_Yq|%=K
z1M$#F$8;MLNVM7*HSl4P`IuLOhvt|SyZ@Fth(lR!ld>@E*DX&EyAO=#e1#7}Bcu2+
z5w+UY@f@vROL0*BkpS{5H?G?XEm&&^s0@&X!fJC#Pi=r0Q#U7aFXrPcJx(79{)EJf
zr<3TdJKW2&oIAD^i4ipHt$TNhgCt^*tXZO^6@TzrqOI0%Tm5%Tf1XM{fCMVq(W)b@
zlzPP}AEs40llNcdxi33mvlG3KBj!)zrfBo1D)+mBRPE=`A$IDCC4-EQTg;u%2BfZ)
z_8kvpOOXnB4Rw(G>5;D0gfiDV<1R|xlf;RyRcF!9PNesr&C*M+mW*LFpHJbwarr@j
z>>)(WzCNP=mxwI)cw5V0X%d^<FC1u4cTd}}$~AIKh%I#Kd;*VA2iCkV-1ns3Lc3{V
zJmsncxc1mpc@C2uZ30zTx5r`uPoCU_&eub-Kkyt6e%Z+)qZMK^$HN*Oi$<WP6D3ql
z>-2IP1xO~d)n9KiW`Eb+0jAUG_G#k7y{G}8F^QE+hbZ^+<0O4h3c(2Z`j9(1c6>(|
zBmV?!9Y&7|vdg~2c@Ewr<B^8aU#9)CSWCtq-7;6&o!;gri2tq_p00mv4j_Sn0=Kno
zIYHZ2B-vWwbLT5PzN0)CNq_`ApIKjDNN941!1SUW)BSFh=lj!St%g46WX;=TesOCe
z`;iDdl}@1LsZY4v3sx~aWs~K~3HA^E>l9pvyeIhl$Z2HH1ZwN2IZZry18iKP(>A#-
zpW-s9<G45;rAu#``s2|3v(et0q(;EG-Ge?%_?~aIEwTVcl;}>jN@?VZmDxo?&PE^Q
z^=hY#I_B`CZSPn~IjSX*`N9X0;$DeBy*dV2SC!FEt>uqZ;&#`8F!QI)GYo;pd!$If
zY5Yp%MzHa0`_jVfip6)M@_@_P#a*c!rUi?G=r#D|#6)GU14UooLoB_;`C(cWk{G~3
zK3ikkY90OR|9Ez^pVpGps>)J6(Diye=_ca9t|KQ&<gfB)zIO|U)GA0fuTm)LyqzD+
z`0+U*4g<U$9q%2@^(CRizW!^7uQGJ-l>4;26y4}lgdXAmCwWH)G2PZcoeTq6OR@jH
zZL&nfT-R<<vxEMxs8L0&%LT*cE)|s=rO%!p(^_0E%wHN!?Ftp$F$WjgJne%F?INMj
zGBz(i@9*<KdoAq`f-tDutG?z0GjyrkptWrCK@|w;3d{b;Ec)}LAS6?tfUC8QvxF-g
zGf2bne2<PL%-Gny{Mk#wSEQIsbnNP^`-`OLqp<h7zR&Sfj6zEX{lXV=45O{S8vUlC
zr5<6dB#7Ne<7F8@hiDN&qBY`Wu!O(o`WiZ$T@g60m7m$rHc8Gj97=IdG<>%EYvkio
zUazUQ0C{xq6Y!(12sPUHbW3@7y*d4uo?)6=X?vo*?srmqvaFkv`>mdok1p4Co^0#7
zN^|rk((6`$WW<Vf13Jf*y7NGFW!gRdJN|LfG-~vT54t2q`H-rvV1CL+cVf9aEArwd
zXh(JOAl^VH!kE=2p)qUO>aQwW^<N40f6u016f-m4mwvRD6S6Q&nITskv`wSJ^CwNb
z{v8!{#0(bA^;d*+AK{6PPZUep=OTLhtx>$T*OV~#6q>#59Xzq8uv9+0Fy&&9aSz=1
zU<K2EBy4z1r>AI&Mz~O^0V93rWCo!l)f2!kTQp-ftNM(G?b4!!{=kT_&6-4x;;;JI
z;_0%*(RpUJMExPqUMY|^rR>5CGv+D%=UTDyu{ge6H<m-{BI_?+wuGwDmAGA#LDhAQ
z$QPM7<Zz~gB~=0X+b%AK(-#ANw7JPb1K;A#yNdJNVfx;@adGhHdB@oyvm!;NmYq-Q
z+r-+Y`rV&zK+oiGJ}^u1_>2`4eZ#|pTP#VZ*b&Vt1vPiYq}1IeTH}q6F&x-<P9(IW
zp@AgK!qWw_ubkUs;n0-^TSvQ{r59KCQw=BgwP=Jl8dC=t_o1gb@n+r;GHeWfP{a3X
z&cBx5-KOFU!sMnGK2aO*uQ8qMT&6d=Egi?V+zHE8ruj?V^71$h+h2U-MG=c+VrfdO
z)BQQbZ8HFPfj^ZGx*q=0hI5Od9{z-Q=de5toOxU5vx~p`ukI#Ez2*cOFydiTM4kPH
znjm5IB8??@@z|(;>xTmQ(_j<T+F*?)s_fz!B#-#uy5^b7qXfz$2{G_0RV-!TRgUjx
z>ISS~*N63K7f@LXa3HTO&t1q&e8W^|{^UQUGwiFad$JQ%-XDz1OMQ)?xs%^44#jPt
z6INV@05*CpwU*^BMdK#_<bJ!^=zXQfpjkp*K3vK61Pq|rXjkQu^PNNX>um28WVVCj
zuM6)+$4~N9@eOqx4PiM&V`$gR$KY9f7>cxXAn|C=R3TilZ>0I;!?~TuGjCb+$uLKk
z_uuNQ7iN?Dm5OvPYyv0Qir(`W+K<h5nahZBg$9LzVq66T>X`*+KC%_j)I#WV6u(S8
zrsuA<ce!)y+WoN_+JWS3X?0-M>9T5V9~#@r30X-vt|fZ!1>FH%AI_yOvVI8{P0XX`
z9^_>!aL^M|frQQNXndmwKb>sQ<sZsQWvOe!-d$w4FuWb!DR?nN`fW=t@6i5T6{s^3
zG=vKo5VW>C3!c4w&=3PN>tB(0m_29{;a<xkZjx^%L71R+ytJ23oM=G<ERx{yhPPz2
zXCimupj{)uE+671_tm|p&RoKCJik$V*~LfnJV!rDp1IJWID{pL;h%RcssVO~1e!i_
zF#(C;9TTQpCSw|cEA#Y=9By#N>1GomLAEmNRaeJHnow*uudT8CksfEr#zEcU9&!Of
zFECsS`51$}oC`A6Ev-I^zqkErS8X(p7t7xk^iH{=Gq>=?mrj~|qzHbXj5~-8uJMl?
zZ0y?^*GKYEBG3IFb8t9n!$#*z%*^Xc16~}7e)T>^&-b^fD)Qz7?6N<yBht2bxqY_y
zNIYkz(wf!<8rRn3m_6=kk@<(dA3w$nga~p(FU?w}2*1lWcJ!wdKH;1CuE>49*_-}v
zl;{GU1%m&WGxXp1q-Aj8zCT3XX1y#jd*prE{0H3bT~@TmSI&x}l^0cHxfyg@HaAf$
z`W@e?;t_n?q&$BYd$1Dom0CYQsO*WD{wT8$>x`j1Gq7>0mQRjLPAA8^5c~M+OAa_o
zJ92!tSy=aHK6h>pD!|<q8Vs}xa3a_FI8k?``8teR=O!2t3Irs80yfEe?e<&{^G|6>
zBt4uAx;YFppkLWyJ>+=R1a2868sUZ@@)FkHlha`{o6oP=@mNnC!`d#0WRVYsvP)+K
zc|<M6(g@EzzGQBU5ex(z^XColMiIoNk7Y=nq8k~{qQHGyq+PYe5q3<fT~x{6z?~f`
z^U+07o8Rjra{h)>{l9T)Z7{w5QH@Vy6w@~g#?{LrGNnK*8-JcdE5ai$7V7E-RcV7|
z72n(cp4T-<|D*8F(FntbjwqA`w1Ns9Gh?E}S3!=cbXV?-#4$1jJ}+x@P#FU;3JK@o
zTY|EiDpCfW>=*4;qNc%B2`=!co8%cfzqzTjMgZXRH&VH3Zxz}Syd>>bAkv3ZHLTC*
z_h<29tHgFg6h$U!p7PCZ9xCMTkQTnytLcorb6}X^x4~&A#Rh3v6YLYI(hlqyJsvsr
zl7GkhGT_s_@ErcKQ7H!!SC&ZZ?+NDg;c~#OI(sLd9K0h=#L^^9v@*z|7S`aB(pEW6
zR{`aq4)tf-Y}x@v#uW#ZMEJv`|5dSkgM3IAy4PB>?cUrl0JH5%V#z^)szw4d#7Cb$
zT^E=n@G5SO8=PDkJW~N#&b<7fQxFD_VwQaf8h}H$4THf=Gyf(fMA-50@cUNSKdAHz
zE%R0x^Fz0gkTte#+VyP43_)hwakj9L<xoI!H%zxX4Y}D-%vdSVPZ0M8dDw?S68^>-
z|1mP^9S-&`w6O+MpCCmf2f(_yKuoUP3aFFt4E|+WO}<||oFoFh=D?^OOjx(Ji43?m
zWq(a%oTz)cZ@ggQ!~AM>^eZtPa=IFQH2>FeCJjZ~Y%XZb8O~KkK3Yxp)5a(;JYXkK
zBEJl_9ZLuyD<?@};}}_tM<=Gmt920W`j0X4{au)j02WF_QNDV`hdZH(jG-J_h$&H*
zixrLS?H7h6e!|ZwPms?799???GbVP2e?3(Hos?YRIURgu7|0B=?4)~voSxN-wZx$;
z`3!$_!@m9NG0RTKXth#z_F&rEU%*1KyZXm#=$E_fV+cJNZfB|ILGXsrwfzR$>=zFv
z2TvD_#~NBJ?VSg*{NpxEnd6M`o~>GLK?Ow#I1aQtJHW3jnBenE<G8v^`e_v@kJ7ry
zVD@gTmo#nGWTvtm|L`Z+yWjU+Ma^7FaB`_kPq#z&!#!$I?Lr)}!S35ALA1B4<^HE&
z-k{trAQu()5qWm64Dc3lHLS5Q(9q;0sjO(j0IcEX{(&&e^ZOey>>niPWJRlELFi#s
zgm65VQ*0PQL1jJn_CC-H0w5y<;|@OU=WI%t`>T)gt~`Z#Qm<b(w1&)FrF}EIqT)SC
znyjpoJ{qHJGwa0rdv1CC;im@R9J*b2^~!=?Lhw>4a;$)0N?2K~Ve+d|L{>~_A->nU
zc|%?-crbHm(xLM4*l=zE%?Wx})N_656ECQ+8w#7J4mxR4ltNmr#P4)0`MtBMA3gU;
zF*01Yt*w{^n%_GuU2=T*zdPZZqP}a|fHeWK5lkyA|Bu1DnxDU9?5%ETo2V?0I$!>3
zUlqW$GTmy%U4KLY;<zjN(wPduvgvTd_%Swzy=-|Um3WT2H#i{L+_xnJBuo#d5>QrN
z`4O@GqUQPyqixEBMNI+9!~|SD>`Cr+n%p+Kb6sF&oom6NyWZ|807FPZ;jCu=OZZZW
zrUop9z93tKFkU)loGyhfvdB8)sBNMq)_@J@n<LxM^2h0|f-1Jgi>>SMMT+;Gk?ls0
z1hh+~yIeUNb*jU+Z@F<$B2n$b*&tiCVRILE%<<k9>eSp)UO}`QW{SE;0{(e!Bw+yo
z99};UT6OU6;+7NHO-Dx<U;s}4k{$+HZl5VOkGL850LuV8N{<|metv35?j6=FR+8!)
z$FN@yQnD+^nty1DRt_Km?2}Q+ng%gImSqoeU>aSCR>-!V{4kN(D-G`0@?|cYTGGU*
z@>VYNH!yL`oPim?DSohX{xe6c46-IJAV`Zq(10aRelZJig1em9-9*Ga%-KTNzxpfM
zWL2}JE&1I^?<+eRYr+*!8_+4#RMRk5>}WA{SZebu?GiNlW<_LmXeGfNf3g9~5$&Rk
z-q+S-)V{o@42%q+n4ZebI!lT>OpnFN9(r6_o}wJfSg9||g0wB+yYzm=V2g=}1A5tM
zZM_y0Z8e3Vy*ZME&*jix&)auwquO?Ur?qVEG;&_6-weuNIWK6G#h>pz%r;%?wm98r
zw*0M9(3{s}#fFq<N*|%CMLr0kuISTFsyVGZF4LcRUk@zbOP{NMXbE_JpDlU%HFovL
z3M;<p(gC^Ro1Rv?cTMv7TAk-&q%8i+s3yS1Ngl|LqnB3DyIw0Rm|};7l{?`yS;t1=
z{oFRBY5LP7W%qJDLbLmW!E-&kg!7X*+ZZU$C_#85KE#69X9WT<;CeEw6ti1V;^h**
zG=@|G)%e>g`{8L!P|CN{&=DBTmND4an@Ett*fJPT9+d>lU1i<qzpM^hea_|aWSEoi
zhD`BKd-o7KIywkScy(=wUV<KHr3AzC+-VJKx%8Cfn*9_42^vyylzbbDfMR%+25@+^
z(Tg8>oz$xx3ki8qLxf;MnBkq_N%*xH@p0n_!9Iw&b78wuPcc<rk3Q>ZvxWD&@)pqK
zKuZ37y$kTfdg0hjB;c`^j!-lN<>7m^aXTbhaYfdd3`ptmwep1?4UyFL$C*>g!-9)9
z%HN@IxHDtIQFg%1)WjKcrazlYU*638K%)xlC#c6<wNcy6&&aV7KNKd2+NU(k#W+xG
zeZtQZRy%m%AvKn`77dwH|H{<uG}2+A+ZcV|Ch;L_`&z?1PLf%WS+vfAJ?u~X^r>xy
zx+5Nwq7Dzr8)Yjxn`(RF(XOyUZ4-kLb)Ni9fySdwiH#ldopr9*l_>I@U(anum%?wk
zxOzDpH&<gC&Q7lzu$*>8f*bFbAiW=t`<ohEocHb6s#lXO`h8BR3R<0rA1`*Lk#71#
zer+aH6-`g-X<8R{QAWOE@|^8NGN~iuM_zuobPk0b_kPHVcS3(JnqMGAZm#Q&HF-vB
z=<Vlj*2E;vMFTrOcaFxOv$m@v+@4}`H{7cMv*0!N7Rd=IiiR7shHGZXSDtzI;n5qV
zYGtM4zTw83P(JDVlk*Lt8np}_4Q6|a0uS=S+^oQP#I5<fs6carMvEB#JGYcW>2R33
zjhwVzWQQ7M9qI@v8pE4}Us;B;QtZqS4cvvLjfWVw0D9Tgm87(n#x4a>fDIy*-qi0o
z9q$5O7LM%5r`}b28l|J?feQJq09I^ePjU&v3%cdfns-kjRQCJgk|&F_v2nXXEnBKj
z8#eVCUy(M&e%O-4QCK2Ah^3qMd&h}CQRNBQ?{BZXt$$*Ipzvx}>*RLd@Y|YsW@G(-
zf`UPiD8AL%MmMW{%+$n!OA)!|iH!)$U5Egz>?OVJ6hRL<?eFk0O<1)HtErYspYa?M
z{+5q)jF0?L_(zU{*7rT3KKvEdM5b6)bg$sTbZ132T0Q<kXUERF>{bCxQNm9Eg&&o2
z4^QIOyXu<T4WSD?yy$8HoK(FAvWsmP@32<nFOb(N2xIxCggSh<Ejhl1KI#yS^$ZS;
z31G`1N?Al(l#mB`&`BOwLpquzWC2B$8meS6CI}~5))G+G(g>p{_6H%e=ultzhAE0f
zY|4f5a2^URK2ca@d6=(6m+NC8EGZj)bV$q__8xStn2sgb2#f7RObpzZjG!O7na^ZV
z{@%cP6I{UoFS`J^&gish+i4^^f^P;I+rto#o-X266nB+Wkzq)dh+SkUw8=jGD^+m+
zlm=d#4;`JBn&js9a5CH%9H{EDTLbl?w08!#O977oU^>paOGCwRT8=x@#H*jR$6F_F
z#=qg5CbpM4Lar5k^XU+C&}ejHN02sQ)XhDa>=H773B<YpYlg4U(Awb_e5$uo1FLcp
z$lm$AKelJ4CF#t;;DBJnWB(XiTN!Mp=WK>m&vBrupPD%7F@`)`%CWZ`gK*H#Ys&z2
zrGx#!#9E0ZW6b(;w|;!xrmbwUL8P*_qFwtJ%sb*JDUU}WUK)iD!xP<}8Hn6p#e+DR
zq_+hdoare3Qk0cEH9v$^(b&8=ARSu<b5;14dqS6<|4A=debp$ux!NmwBf%uA&fPKM
z=6ubTw%N&EeK1CtX0=zTJdc4Gkwp;O(a<4;pj}!I_-o3qV1B>#fRh7u-p=tWXK)60
zKm8k8=>#~$``N*y6s-~vp29sQ?Aok1&V)#JBuIF_zVS_XPtL<ok0Uby>@pj8d9^_Q
za-3$yhs5u%A##+1Yh#N3<z9OmU!zF7w_XDg$P&94M%X4Z8_UY>xg##S!uJBhu0lp<
z?Zbtk*n2cdk51-bj7<zb+W(#|PXyBquioA7xGhm)aXM%Uw{&*7+g}-DZwwXLUvcm%
zos*;5Hr0S*{hRS!jj^?6K_95kdq64!GY&xkVhvXOU0P4LT`4PwljdXj$#N0A+Ew44
zS(|`#h6j4-gd#b6y*_ym2?X~ge0c#z0LcnR#PEQ>1>8EQqz)awvNxnp*qJi+m<Kah
zP)Hsi$!s1{&1Ah8iwawVhq=;ao$ViZRROio(wxp+d3i=vkd5ATIQq?Cihf+9Jx-UF
zS8^Vn_|C<5bUdDpFw^XFTr>~Dia;6Wv36OXG5y|{!8w;dwBD%bm*X@wTAQa-LZkm&
z7NIY^PJF5EfDwaH2YV>xw;hpNHGlwp#t!J5$KQc`lF;Kg<T7yvH)}@jvQl4L2Uf6_
zw1VgEgL}$BRUfxIH~(QE)HxvbDv~8=h;WOr(-7W}!buvTLP)npEDg&8dfs2QxFk;k
z`lmbm$45y*+qu0|ubfW!qXEy->@QDT#EAro=oD6?tuf=(I(NnJtpqklqr3*%XD@sd
z@SDeXo&g5D<^2p17<G*l6w=_2hSL(SEu1V)1?AwUqsCH_@f}owY|2dEop#$T6S8Y_
z)$JSuo-Hf9gZbdb3SCxfgFjQCOSzt9QHVc(Ob4OkLmo#@43GVqioky|g}Q=dge0V9
z&zjKNd2!<#L_<ijSak|zAcv+XK_{vz2!(@)*cT|BbgP>%knqyz*R$Vd36FUGP-xMB
zyK-sI&8_!oabe}!gObdnO4-s_7j`mm+v5$Ed}eKrr&}^k^HLe4Q2~Ty3A@gU{w*5d
zi@gE7N*u;eL9LX`XGf?A8RqfWO)eU#3nt*&p9OW3Vy3Qv2Qp7CiJ$7bpdkrq=o$T-
z8Cp4m>NkOlkHbn9kZYQkc)WRHvs%Bq5dUjt@0c0Heqd#hBZPlP96No(kmzlkgzisD
z2XP>PRbh@dh?mnzhN3EF7&f$qW6+c?d?rd66XO|6M_(0V3IxT$|3}hQI7In8{R589
zqd~e;K)OS^L%OBAyN;4h6_73o>69)>K@LT_8>G7qc%Sd@y}#hO-JRK)*-tEKJi|}m
zu1CkIr$4>0pcEgq;tp83*5ke}O?>KY)obSCuEf<D{w|EL?$Y_S;p~7=;sYYLpJs`@
zj5&7JS9s6QyjWu%1+&J3{iY8Pm`)#<XF^<pMuE-Lfz~vQi>R6aghLzE`YeISfY!;_
z>{s|Bqdv~{NPx8e)-PVY=i`s^aK`6JFbKkdm`sFZq@Mfjh*O>qsuUx;T#06IFB-Mh
zLYVg5RqhIoi<f73fQ*K5Z>LK~+cb-3XOs{l&~#0}7S|eyHbsS)?xxU>hdA0x`PnEY
z>d00WRwMhql_Fs(&S(l6ei=;qdT(U;jO`@I=$o%iVC8l<gNJQ2wjgHV5+)So{<kbw
zp*fyf5*>!)`D+{tpqzv>1T)d8)XAsp6xU-iS>Z*NdX5wd@^-9@%z#CErf>jOjjA<)
zqR$c)<&ac8-hQlx%vIi#MDc%_++ivXM6)RVl8gxDo=YYIjYVi_3s`w8(l`%MtGTbc
z&><4{e8@tkrW1GsZ8oOFgDM2T>I3>03V1AF=PD6@A(}Q4ny76qixhe9KqM5{EiG#a
zxt13${qrvIm0IOMtZ4X|WKWVP)y2j!l6GBF+T1`?uk)?fn8U|&*niob5abO~`=V|?
zz}!@Uo@u_2gkjy?hR>5=N5|nujFK_=XL*a<GEY!%uumx9cZ9huY77A?fI0m49y8}c
z0GdLAJR27IJ#S-v&1n)fj5=lus~2b`!3hysRMzH$U=k{ANd3RPScB~73eig+2g^x(
z3wI0W3=#@b4n*x}IC?xNU#AiK1i27Y-wi4v0eLK7$69=P35GB>?gYQgBfB)NL{f9D
z#LTgOHL{a~b#w!YT{%9Pya>*%YbVYt0NYy^TKGAC{n(3j^n<{zT-{KRP}G`>3AA*%
z01(dyEU)u%<W)y%a^lU#KeQ=N(OTaLy~m+=Y03`=jro08Ut5B7tuEYp3Qf}dUOMJE
z8|~e)>uN(hMrX;2JzK7VG{Bi;ml^4xI>;p5@$>i8bP@?o;Q1Dqp17P;Drm|Klnx(b
z2W6oMzqzhQdBKL&${%&1sNM03J?T2H+GX6$1ezj)P=k$q<}<fpR3Ni|le68(Ae92n
zu!RS-h3i9*`Ns}r&VO=Xiov4@NehGi>-}EGbS9IH#yXSqzq%1PMNxT6)L1&_sES?U
z5`ez8-TslNa4?1eo#d|3h-G-;1_I`NF7`9;-qE+HMjPk!Ircu<aOpqx=rBwUmQoc=
zu0Vta%rz-E{8kRI6x6nHlR9&UI;W7K2(^Cz(P^`DUuB>Sex;DoUX)hNGEcA!3r4<&
zNoTu$*l)3Q%ZN9V1s(bx?-R{;^oSaNCjr%%+$gnrqp-adi4j58z}sZwzgWX`Ikhl4
zaZ7#Y&i}g8uFbH<*_4^<Yvd1f*~cMk#C=85jB3dQ5ZZIs507DHd=Mq14Q8H97>dmB
z;vf$mJw4LTJsLt$4AK3Bb&ULHy>E>Mp1%YMcr+SZeIVT=>EWPT7uNvK=YwA1ky2pU
z8^3fhUr9p=L0W$nsk@|-<#Mr<RuUS#*7|-OwwbiXoxTCXqJ!Jea*sTSq4o%-n`<UV
zv$MZqKouCTh9DDc8VoNe=lCMA=1f0Z+oOLV=+5h1@(tH^5SLK(P_3Ea$4K0M0dw?o
zl}7%Ei%>r%XcWZML8dpr0+)Sj&1u+#q@)MOtVSl+N6?*#BAvZR#K2J4K^*Y8qs#9B
zh!K``$Ul=1es<X!zhGe<>C<hSi%>kZ+h{<S%Moez*rIBl(djZ*V&_GbAz|YL`Dp&Y
zG^xc$12QEIGPu~|sbdFph+-8X2p)zrq}}e4p}j}qN0vFs&M?}r^lte2zdA572zLL<
zf5ikWgaGKm+W3VfXvHF4qX!it$^8-`bvKy9nvdET-=pdAZ?)BRx_yIMbV;nUK7?J^
z^hiPRER2XqQ!lckfDTQrx4wjdrMMT2!7tCrYhxQan*|skOci(@I>;7`6^kUwD-{G%
zRv_I!%?P?Ix3qYEcZ`iTo)@`qvk=?Pj?44CPGN!*MhAFgMIxzf(%^HVOM*TsrB-2Q
z2i$}r6c+dQaqtn+?63Qvi>#_-AqU@eVq>+>IR%<Gwf5d8w!@xZ!Mk-k9yaRbW@0rK
zlE}Vyr<CJlfh21>(JMEV9<H?`1xL|qmRLc}EzItSg#coE)f>Czn<QSS)+n_%p-d=W
z944i-FitVzp~P}joS#X|hRW`~4BJG<?01W1Cd-3NL1jpb?VE>f22^x}03O|<rkvMP
zx^`yPK`D`d=`{4O;W=t+-bzr{S-?wZ%%sI(+~hw@dXz=e%Y^u3>4<#$)DXE<!lsPA
zKlf<8O<>4(iRk_4Q`*3Ovq5X>H`B;Xs&kTKYqs+$%I9OPJh7=rWcOJabLoPSSMM8D
znPi9{3?8AA1b8N`S-p0Oj(~Bg?tWtrAt=o-32od}b{mc|_{;4N4507Tsl39Sy!s*+
z+K5Xp;YA{E-JL`x*qhwK^)}mH>f_%P7Yf)lo0r~B^-=(v=697L_5HXLrxi00>4o6d
zTjEe=NOMbbaZOS;(vghg-!BM{vS`bX4}poj$Bw4@-E-fpWovQ(19*9`?206IW({dX
zeapvfM&6a`-5tW{6V7dbCuXcZ)89`ki)T62%cAtJoQE{^Qj)Yy>{a9mo6O*`D1<eN
z{1;Zl0xDjPO~gx<L>3~H{X`3drw4Mc=!*vonfPV?=wbleNw)Xt?eVC+c&Tfddi1Gl
zb%=%XU@39BcOX7m4mpVeqXbJs39PiWf-J@ei!_a%Iod>%Gb;JXmGCY*+9cjWZKEeO
z>mY$;Bh|mXm3v6oVl4u~bXUW`pAANX%A;CfK|Kf=!^r*om0D{!B^IvZBCd+G8Kl1A
zp#HTuZ@MS#@JB%*nH+}dZb4dnKa^=b^~V>Xh1rV)lDyF=ME|qVTv;F7<c_+xM-EvJ
z1W^DrBK8f2>JW6fz+&oWFC9GJCbsJsU6w1@91My<V#DLI&Pioetkb%%Rmr6ZKm|*6
z<A<o~MTaJfqp3=(@>m3-8o@n~eK`?d{tT_2a{mCAeTVjPy)GdGCQ@nKy;PATdh~B>
zQsDXYq#Ynqre3S7<vsWD9|{e|{~Xlss|0hoQmJc-QN+^sG}u9^lw5OUxa)Oio#pMM
zARojkFglM2vZcnDgq&1Dn<l_TD0)*!{AhE!yO;TXH2q7gkqEK}qkfUXi4eeMChk7T
zgXTMBDXgeYZx|tN1Z*M8gR^2yng91U(Pt$o@GZ)w<48X}T0sy5Y2hb8*W8Mvg=wzf
zeM3ci5yFPp%nbDaN!R!xqvsB)$=G2@--HAGF^#+C9PKD!8qHiu6QHlLz>=!hohl*s
z;Q&%Wz(>#XcG6D&@YD*C9wV(Zz=!mDt~)EU6SXsXM(J50Yd__hzoack4!xNNIu1sx
z|4=Tlt|x3B=6@X`D8LMQ#~N?E?~g}Y&goyN)uqxZR$I44hmVDJRiyr0C5yc}g0S4|
z1NpElj+w@8Yv0<pdaFLf$Y?cn*@M2%Y3$qL!QVeBMvpj8U_tK-G-U4XXy|+f+zVh#
z$J{<^tkIlE0H9^H{&UU2L~3wt&i+P<2!V{@vPAhpAd8CzH1An=0hS5?Ee_m%0L}lo
zHM(V*uTvhAd>@KD03dDwadlY$=bd?7GvZErUv%ln!_b7YQK_)K>X`@+ij0kTQhXkF
zh40?H^;gI$kPge9%)90r>s428{ri)r93hJp+K))XjRlm#4Z;XgF%Abb0Q7<mq;?UR
z8T`xsh9|Q*7TStZ^y2s_;RX&u<?%aQO9dv5Xs|EQ?4_UAoK^@;j6}%0mC2GsF_7de
zb-?w^&>skZWz55S5g{R=;8naod+((4UhgAgWRoH5@T4{&%c24Jr@61utcbwV8aqQ5
z%=^?1y&(b3f(wd+j8>FGgwmZDz8FoNg<L2j1rAqZlI`zvN?YJZGuE`>?%g#&NY#!j
zGHi*RtjK`P{abuS4-3Zb1;~T>{^o6F|Mnd>0wwPSM-j%>^f~tyF+l+R1aTKErGP+V
z+iw2!HuNqC!9O7uWUdn_$(^bcK}vA;8fSwm$L;NAV-=oGF#l^~e)8@)HJKECD_L-&
zHl#0e!uq5!JRAr3(MH^W+?DJhh^x<^k031M;ecinH;qP=)T9rZ@i}S~XAgjr5VQXP
z-lf*Aw<$=)U?@ZTBa4N0&%E#1MPw^x{t=xgrx2FAg%^QC?~aX#0hQ;P*D!jytdhlg
z7tV{y0#dyVOF}{R{M_5W;1a8rwk3Hw06UqFxvtA{eUZnxbV5?o<QiPlv;>1lo`2Iq
zrIJZho{j33FuHS$Z;3%yU<{Bbm<Fe)JYwoE%ifN)SGPa8c<lFcCh1p_%*@}07T7dn
z^v`LZn|EvnSA~hr<-DfqEFw~03^c%rzc)aSjlz)i^>sW)cV*^}U&s(>us;_U#Xm>W
z%YhZG7{hW6HDec$GFKzcM5*MrYq;n<e~XGR!3rhVLHMj7LS3eLSZ{r5EQmIE`k`D3
zpeIU)I-e`VgQo7EMP&Pmq6(#?AZTf<GZ#VR+;?@T?lW-Hwih|Y63hylYZWUj660rv
z;MRvjIq<#&vJ^9Km%S@7G@Ag#5E^#4CWJW>&jD92xkc%x(h2#g{!viwjK3?T-R3*Z
z^9?JhiIBn^_P&+~l_VQk^eV3EpT0gb<Py9d*Tx=;yzWo`Z5}fslh?Ye%TpETto502
zfSf{z49RQHV*Q`_`*omO?hIlba9xU1w8h!>?->RLC(yJfUD8~wg#LqHq|PM7+7OE-
z42%XR6R7mN4>T=CVI!$n)aj+y)H!<5vDM1=PuFNLXL(s=@egGbLlZ~1sl82xW9Emp
zDeFYayI6Nk+}l*D&rv+9uv(<m5tyI37oyb2QxX9(YQj`YG6a;@e`@-x(SZ<MGm_-c
zOxkhbS8ThBSn;LpdVFrfe$b0IywIPo)_|87>9n9Y0FiD^-M1U`-;s<|qT0Czv2@95
zC!({c&qha0@Y#Np_qUkT;C3IvCiTC?h+1nUYe+DY3%+rkZh>V;mfwB7PXsBt@ejHc
z@q!Z3>Uj{f945BsB4}kU8p1^4X%AX}w^C^R1o;)L`t4u10G6R<ie*>;#Lw;hdP`;I
z=XIaNwW~#PIzgYdyg$cv+2VJn)3dz<pk`MpB${1FyHA$Ig&Q--ezn_IKk50$U!6eu
zowxM=WWim3u25VTJ$W}zv%~j`tK9!{uV{D6R)<*UL-$e3O59Eq|NkODS~{*XeUX9Z
zW|(kuf+jJhX29aKeI^J%rtJH-#xjrrllyDR4hcEb8+;u+p4t&6ys_>YMnG7xeX54s
zER2Nz<}fYGED};Vqi9Q47@!-Qug}T(q9^-0>IM%>CG3@-bM2sOrJ14NA<UKuXvD>x
zR+HBQFm=pdrQzX$x&YOv6Bp?yb%lmOH_FjYXJ3)!s+dhla)wa?&YCk_os#T)sNk7|
z>tX<E@oDad=kann=VOXr1i%ajEL;7hlr>T`gohHixFy`&iJ^knQ)nRk7pzFQAsZr}
zo>CCPgk~SKs|u@&D*Wton9QKK3ZBoBz#zvR9#3u)7oF4|yh(w^NpiF4_F?2n7gXAk
zRVvje$=68)2@`>C94PR(YEiy-6H9FSYlLMAmYrn0?@egGrTonimV2Ua9A@y(u+qx-
zYeoh}mQOt+e7$37b}d|FnLf-+3&G;l6R|KT=NxCnAcjZXic-Gt2UyIZb!2(zBx-qj
znWc87kO!g8g5<gRoEWReNnjvT?XC9)hiqM5kyfkftL1})10X@11(d`(A-nsgyTo!!
z8x~&IiG!T43GV4oSU@b`W(DYBZsJg3aOIrdGX&ySCp+kpLg)BQ_3<udy;%|m*E)=p
z0r6iV$U-9=Fv%v0)NxEr?Et8IxSKl37P7wd^0u><qXnx{!;AFuoHLF!g+<Z$QbsQ>
zCPU>!H8sbb51d~KjJPlp1FqW&&LV$z|3U`^#_h5C&QS#7ypIHPZc_{)P;wY}{9`-}
zh}iuQ$Q|Gg5Rwp*9rK}sqISSF(4|;4OyBh>4r+o|7#aB%t%wfFj(joCz{1Nt=VAtm
zjFW-?;3@QvWd;pfSo{WK{p=);)SGyFC(e#{{=FvF=nCUK@zJa^^xRPT>=u!mz3>Yi
zso-~FdSX6WwjI3UKe$$dHA%4#<EW(1nR98~t;BBnU*sN*O3!CXe?NT~d=;X0thhS6
zWOjWh2@87S3_We)3v%-lWCm65fyIVJZ_o;a5jlj8VTU4{h%!kLA`4p?cH$uxQJ^iA
z?LxEV%mBpIAE6T~zP$3)Z5VMt4!4T#Qv6B)=gN+Z1lmF5IS@@hfp4^wsN9!(<@rTB
zEGfJzBPr6Xp<lKZ7Co`hnU|PY#ss|UTRPww7VCXusoZJHo!S|7`K@lidT^NZKdn4z
zytLm@Z8_nCIl?b5YRm7MU%Bb3=(1fqgtYTD8I)sKd9{6>@$zZX&^SO=IqLUmqq@u{
zIU?cPg)OxyG(Rc|@-c%x9f?K?rDA|whjiO?W72DcAo>tz{8YG;4eV4EE`7o5Uj=8m
z{aix9pUuPlG}dc%wlbZXCHV@;OKs3)?R`n#FHHNsEvcwl>5<Iad9VL+cmW|bBS`E*
zAEECg)S;S%1+a`PQ;-@n55i>n=e-w>Jk7(hXNP8<{~=a1fiK8n0{+Cbt`Ygt<p5;^
zP56!ukVpLzFI0IRwth$VudZ(WgU^nC_oVmZ_r`lz$0vlBYU{7+*GiP*D@;k7c6k&P
znNQc>PcFsc3f7s?rh}YPu4Y}G)q(l3p~8iz&Y6IFoDB3#J?CRS7u(>xd7nSDgbvX+
zfzSZ%$-}h#L@>C*i=<DiAye?kg!UyxE(`Agx~xU|P6!7{nYl>+x6l<ES>3*|wGQel
z_vhEJ|J}T23zmnU3cY*{`cinPRNsDGv6CevJ<E=xUH=w=qz@;vyoFPy`8mr^{BrwO
zENQa9MO#J0bATPIe4P&GsE~U%tHod)9NVx^x1mwBHefse@LAo+7K>M2v+KXz$2biP
zYWnQXjo4c<o#M?4*dUJ+yL0sZZt9xu8D<jR#zUA!nZtaV+eD&}IgvaWYToJXE1daw
z{zMcP+vbM>h+Ij(i>o;3YS_;cC4W+8D)c+|kEVUFxbQ>l1KP6YdT|sz4tqM<S*3d~
zZuc2Ci0|zhp6{WNELWgX5YqcM0OPqHJCdaNecy6PY_54Stsu3O=WxQ^ug%O-Tk!nW
zTHkPYK@k#q2;!j2(i!DHGrNMHxuE^V-w0pa7OxQRLNY|V7?v_@<3UaF7A>QoVerwg
zC1Lj?H~#6D<nx@+I4Ttdj04Q`y_C1}<niGi`@MmD1D7NJ5M_dY-wmAaycu+xI*;}S
zDsUmlI(J{+auuISA&xO|PINTi$3i}Be@>=TKT`Kc6WNs>^2k$vEQp~St=JRZrt8gt
zf0*jeCDQL_{BYNqpn1lb9a@~*rT9-C`bKdm9mh3j^?P|fzkrWTH)L)GG<?8kF@Eh|
z^L6wmLS}j}-c^Dth|o2|W7xi1Ud2~I3V1P*^fct}I)wK>N^0@C$?a%JHOEG<gcBh!
z8P7FvmHZdR06GRJE0wPnrC6z$5G}ICXjtY@cmGoX0w8*DRyvZksQDm0nwy)NSc5Zs
zx+XuX{bD52%xk*m+)IHQ#pAZlRh27xA3K$9isr?J#~VbbCa-dzA;|<f^z{Ppv{<Kk
zABlFeXe&I`M^r%Z#>#>}`Dd6hTS4EpZm+E8ISgXv|5<4?O%SqyOz;U_axtMjV4^+m
z`~6GpcXcymR8(NX8WAV5t3iv0M#><sgfv`=d(slj_g<w|`VR1yT0dE%ahQ3}uzCp^
z;BB?^-<?)8|AC-o5r%hPB7Kv!*E=K+LIJF_)bl8*fs?30j0aja`tR9kYCw@Vs4?x)
zQxXu^@l$c4%$5be8w=yw2$^_&hqS40mQcTJxZmw4hC-+@n;|(SnTv^rK7dh;hlYg-
zbR0st?(;k^?|J1?uhXfKDd@5)eq=`~mv8=D_8_f)PrjM)!bL|i`D4DfW(bbm*`WV#
zlz!l{b*cAjnO<lrTn=KtNezg@Yy9^~@^5a@x+6g})oAN3$FDUv@Zly-yxBtw!VG6r
zIGX^L2SC|T46eQCT(P8+RAfzq@3qMg@V;n3`YMc30H^E!Drxf6yT@83&H5dfUYNnN
zEOI&VzePkq%vGTue8owcWDfzO->UY1`Wn_}sv#DATl%0AZ}-G<ZEajKcj5Le4O3wo
z0K!(%8%8%SHg9WGI3OQZvjg3XzUr7b4G8V9V%G5Z>Yb$jpA*3`1mxFq_^EkDf458_
z2xKrWh3$AlnTu&Tkg6V}Z&t$i#g_$IT<8~<fcjq#itP<4`XehH5w=_~2m?t?YX378
zg8=B{!tZ}gwVasfU55-*4c@$BH)s27l&tg@njKilYM3IRA~*ks;hIhk6lcD^W!(n_
z)oZQ-+65l7M8Jx%m*umn)~-B!m^moa1Kr6%`%dfo)yG3HK;7+XCoX@35jr)KJ0(mK
z?mp|IZ)hmIz?IOrzI;1Gy&6j+sqsd9SQdq3lB5vRPTi0Hf0;pVg7yqJW*|nFv?w&{
z{{~+fiIR!WC5@zD#1yS{|BxfalAE|l%WA$5`P9`3QTUp_<;W_5-;+H@_vZs4yKMLg
z>S(X&OeLyW-l62dQBxKH$du<=-9u(z9LX6OWSX<?QIB+}0M?_ZI1LhPX}ue~&Upv!
ziW6_E^JJE<gY$eKGD~<?8KJLsXDg=4N?N4@1+Ivq>sN1_N$qi!{THTt=qUHsrefqu
zw`MW*o2+-g|E2ARyzrTH_=@%9WX7_el31n^MAHV)^Z3ln_}}%Z(}vl~f7X+5l4`x-
zy!VqDc}O?r7iYb-hp}6#i#|I4x4DUvc2VEXjfGpw0p|kDprqQ<-jjQt-;2sKDrA~f
z{o!>RlqNZsVX@soBE=ZCTMFYN>lc8@NWdxIm6_lWItYl(R2q)3H=BAe+3iM${Z6BQ
z#r(V;_aW0~$D5G0QXxp%ZSwFL{C8G&pn#dZKk|(B<4nWA$A{WD9!;v>sB<ZlmWOh^
z2k7_6>L3b||8|!6s5`%WQAdx&zkDh0J7V8-zkMp^@<qq${^gijlKnN0p9K+4A%&pp
z<E!^4`O#VYl7RZ1Lz|c%VqgNI-x&12Ar=D4<4|>O{3sDGp4oqj!oP-bF-y&i1kpDR
znP{BHG~pM|YnCK8N?yY;C?6g$?H(O%#sh03LG?am$gl&K*)G^!+}gl`9WayWc;BzS
zFH9#m?D4A_<YVAtw6HJiwQ_@JVE6se<wk8iF7W>M?hnYCWkB?|`pw7~ZtDYnavIW)
zlCLZSY~v;;&D8%(U@!u#2TVZhW<LF3zknAB>0+1W+qNT?fe6l9ebpb!c?oA_e@%9@
zw;GJLQo~f}*##<5zZUcQlvd($I)~V&%=mxQ4@0@hqr?SPsET+y^}h;q5LWxmqGB4g
z3=^dn>>XSXAPH~a?wVShjZ%JR1>h?NR#GeiPwG;;E{tS3b4uB|nlh*R`};R8!I94>
zwK=gp(OXk?JN^Kb{KFvQG`GV7|J~#C_}89qsYaOgsTj3!*V%fBM&m_Am9tfks!w)@
zeNx@~E48B9v=99sZGQkVZvS0F#fA#lz9v?i)eOPAO|~dfn6Ei0_*|w&--q8O_;-e?
z;s{H&R%)sL<GL<Vx0V7>6VVx&=Z~m+miwCyu@gJZIg{p^|63u<+<f>kpl9y!Vl7*j
zlXy2Y*5*5t((v4^;H}InT;P%wSUK7T+nGKzCfAyN$E<5q^)5ziyklxMW*F{MF&pQ(
zDv;lWxje6Nf9iAd<-fa!oN_8XOccR_Qr`|ewn`vqsgN}iBOYP5Yqw2OV~lJ4l!q(v
zKIAXfL+4a1itY@NKkDh$4PY)m+DI1r^Go7c*BJTdsw!mSFLIH5TB)cxBJ-uVt+yc^
zt4NOlInh%#bl&c0oQS91pzvEs(pEG3m&vfddq^WAvk+VH^ak7fumkUfg5=n*^d3(k
zy#tdME;7$V+HNhy4a4OwugEi1>zpgz{jq)0n=7n(!t|GC7t&cU-0F$g<GhLwT@7Ws
zqo0)M7DjNVm^iHp+%`N@I_!F`>2vd(6zTO_J!$P!!<{#s<#@T5#o*gyan$VCOM6*c
z^{XH8Fj;uczMXAVgo4rtyzrF35u<US5=P^6n{g+vxy}oti=VCe@K0HBe7vOA(0BF4
zUt4CYI2O{0oVCXA<&bxyuyXxiHMIx%2=?R85*`yV9d|e#<((ZtGBe_Pda@x`D1<BK
zabMF=@_3=+Xm%8pGLGh~+8woWCw=l9WYvE@BlEsRRQkA}pOW}&#Cg;zg$m)Kz?y)s
zM&viPvBnWlMghr89~b{S=SL%)mZR*Veg-?bmbE@r7QIS>D^iH&fvMYxr5p%`tpDm4
zBw~+(foxM$`v>FbKD)y1I@2}hQCRbp6w*(eqrsGdo>yFnF9^(i(i8NgdBnTru#08m
ziK3z0Y;j8uvK*h4+?ZSdKnL#Ab+)1d8?2iR8@E~B>2dVdp*W$oT6&ZszI3`^6XUwb
zOr~L!%FS76?X`@?f1=T+kn+_?5=s!U#`#<MV?B5^<18|kIc#mgJp|DlsP9#Q4#8Z!
zCl^$qrwL-YzXb!9WJ0HD1|QTkEx>&P?yR*39P+kq(Xj~a3Z?Icq|D5T;upVZcAknv
zg$hRDdT0m#mdhPtd0lCj&K*tpJbK(3`04TIqItw!o+$)SnqzBaWwo~RKrvU`5KY#Z
zzceC=KUt32$;)YY2&Yse`15RJ-;IXA+J&p!yk`D-M1W2Qco(<Vy=od=ts~|ub;I)}
zmIhPC01N#&nlbd`)uw<2A$8)mOH%>oNUN$2Azo+_6hhcBi$?MQS!=kfH~bhi{%KFn
z(Pw`xdzR^Mi+POQWKUv>cj23{7rIHzr>5j|HBc6DE3T*b20Ca7aNhC!g$}KnH-MJO
zIu+!JB*E;|*S&IoY?T)%gzTvqgchPNxXc)wPvPX{Upl2>D;@|Ui`0B4bP#78rNU!=
zV^>No`&EWArcVf;ckR0eM^j$<f8QFu=Dhc@S2$Dgj$@=ubx$7K-&M<vQ~QxYDD`5(
zyLw^ky_LyIiq}*5RVJN}MM->IM7}%+!KQg<5byI-T+rFY{F2NANz?_G@-j?4%!>R|
zqDHdi@T99i0=#A|`<;+VEf7!quP_N8i4?=%uR#g6n02G6iR3~LKi(EsKjn<Bm?tFG
z<N1bh{)zdPDq@n{T=b?Co0z`4AbPp(85aZ8`Ay%q*~pUQzOY1*q}*~{78?1su`sPi
zc2_nP?h-{!9~8H5WsLBM2myqTU!tFU7G?XKd|210Y7ctVgMXlKP_f7<SCB?`CmH-+
zO>7KV8|=|XJ*$*|v})rH(1YWa^I3(3(R!;}4~!P{uo@hnrbz<p97X{g2}c3ecRKW|
z`{Aq^^$v-XiORnzevlMTbf!o|{JY7i7igwL-az3vsr~b<>u>lQj!y$2YA_Lwe|tY8
zLPvTFFV9NC3gGR7%wu6%Zh5Z%y$&ei0Lri_3l~o4Yw6;a$WXxO5<#<y5;=fc?}_(e
zZYLy2Id!2OVGhToUmKl)yt5~T8P*jK8|uydlogg}4bxK9*^HD|;P#4hx=WzGpnLw}
z@yr_<Z|kRaEt!L!3sP(a7P}?qQw14LixxyG>yIBgy-;|Qzt`^D<>$Yy)oq<P?T_Cy
z=k-(mp1cXJG5-7XcE&)cUaRV^t=YW`kNdq8Egf_wZZW@tA2eg+v+oEz+@zxtfwZ5U
zjeFOU3lyLGwM0=kwz^iSS^N6>?m+n^P!<gRVxbP?@zZa8$Gr<lw}U0Q7VbP=O8aZ6
z!c0+v3V>;G7Vmv75y(m>i}Z4AZ3%1vhPL+^z5!PGMMHH)puNDxG2-X)yQT((lM!v_
zpp<8fq>Y@^AUENRYiIfXG+Ve%n~>faD+pgsib5>rt%6l<@?4bxC2SezCvdk`MaO&M
z_JGjjA0*C~l0!JQTDwNV`9YqzuP>UKn{b?P`AZyMaInJQr8iugu_aCT2J`%?W&G>)
z5(*W0yqRM?dRTXGw@rLphOjj)k3)_x|D`Thc{PHv`pN~8KnwgWZF|@jVyNUZGyH6$
zz-lI+i38UKvNsjgoR7gl$ehNOOzTo;B8ujj>xNT)_bKEUT{RXh_SD%rZ_>GZdwt#g
zYu}quCXwk47~jg5d^p4Nkm-=(>FeK(IXv~~2imRexpy)Py=8TTWC{$ReZ!PySJvC#
z7=%%d4M!IA0xf1Kr&z1W-#sV_9AR{m;sei5(*xHij#oSx)8Yj`)KafPF3JPqbZPMd
zrwr49JGg4mAgiKup~!Y|i8oqJO<g0mlO@_&d+<K?X7+3P>HWIaJBkj-I4&PO^Sj7_
zA{6V}ISZ{)Lc=G9+av>0L*`A3$kg5gZ0BgH_cc&pfOgUMER4eRAZT%!7xzGN`{`R2
zjH-5k-<0vL{49_*l=cab(8kf-4D+d-`YmO+@uoW7Ro-C)=iSj0F;0&N$Drf~*r1aM
zp2C2h`~wlTU>D;!cG~pstRzN2jVR)oMIDrS=i_Mp5@<KZ!wjl*v_g0<otug%z&iBV
z<wdhTTRj@|F|nbf@JKP6ciPT_oZdfV^DTV4GQ?o52iq`cJT1hXAmi3$RsxX>^7g7d
zrs@;?mpuZ~F~hbniAZ*P?te*6AGhY@R{p@=&h#`3vM*n6hpR`&Xp~qNBWO<)c9Vu;
zP30h~?3RQU;kiv&`!?Bm&X?cvS9i<Z#u??^k3m%YOO5sItBTg^=}b*f>I5qY>;6@0
zF9CXigG=B5a~RJFp0|SUn&F@SEq*EC!KMsHEFePq!KJp(Mh;5;h+2U~!YJvXgt1qu
zcR=}r>?-&I-19W=V$f6$QSsHcR5GU2yWzJQlM*M6j&Bj5nZ+vP2b^5hI*SijgfhK6
z-QDjTc`^Z4fF;1L@8YLp81Tfi>gm$BWi62~@OgB<_U&&A%*G|Q27%?oKOw*N{hQ2}
z?zt49+-#vk@+TR8mF~&kosA~?lbnlI2dFXxV+K8OTxdi!m3|=r={Gf;)z9_H-<F|6
z<MX!NK0of45*n9Tjr4ga6}kA)0TMz=9q7TYJ;R-RPeb_Qv%BX?3@G~ly-gYwH3;8{
z%xQ7_-F*LQL<ZGr7xPR3V`3*4=mvU>z{pUtN~@o&qW5WVbom!UBwdjL$?1l%I+o?w
zh#Qpc(;8`|L!6_)&DUMEA#j+3pyYAUX<AbUX$NjNt<M8)KFR4D@z;BiYALo~yq1{b
zLYYubLz~t)DuL*napsU}O^iEd#4I$Y`Nd=EJI(H%IhmJoY)-m`Wkw(*5hAmPy*^<k
zDRja6>1ZY5dV_LQ%piHW*2sfH9y~bwstWDw+bdv#pN``4n35(rUU59*7WnA3cq*6o
zb@Yg3<c~d4hM&Ouu^#ejr=^IRr_QODegct7+#F=#Ff==2O6pf>>t<r3rJ5ag#FK|x
zj|3vG0*1;)9A?GRuUr(Y4->%+>Y>De4dG2;r2kbG-wnPrifYedbwx09$;-p6-aCrv
zX(|lAwsem8?E60Z!w+NyAD@0Jd?fFl7d$q4K?@su_6s_nO^b<lMbG|LuyZg)8W4$Z
z`Y!e{uYkmb0qrU>a+ik{YjWy&|Fs-iHG0>4+Lu??vZ>p}e*T=LDOq)1?%@%r8i}~Y
z+{G>PNII1J(;Q(s$YPqo(uu_?`KL1r6Pn!^KM-*56WA3q;KvBWVw}Ojmc)DO7^WpU
z@9xXu)%OmmGA}>wZfbcTnf%>qi-nSS5c>6!4Ru6v0yilGPN_5r;#l%5#(j>Z0t!$~
zIJ`OI5mj3^sxzcTGwwW_<9_VH!O<tq98Za}>BGv|X}^18l{1T_y0{)7*}bs1H<-U?
z>O>zlc~Ep2Xz!92d*zO-=j}E-6eMu8l4zO&$I{3PG9$qi<%}q(x${Q(_z{0hh1+5|
z1})+Xk1z+Aiopj3^NN{bpPE;M5?2|%I{QF<EiJ~Rgyv?IPawL@q4d8*9`3o*s~AN*
z74>%ZD8Ox81|}yi^pS>g(8(%nfGdA7Aw4L&-cdt**4Ir=x|xcV*5l2}rgaB<>WqHU
zQNN?912<zM!k0**QDKg{peKh9AtS?VDq;KS2Q?GFkx>@=r;@FR_dk^(h6TQ-j#HoO
z-%ti9lb02l`o|TdyFQ|C3rsWSRC5{W`d&4;q30c6C7>vKk2h{=96J56manQ8(oRmS
zRo)&I_YC}IZJtlbso>iCNxWU4#*b6GV~#GQ0*g$6twHLiW_;<`sat>Js2)fAcN}B-
z&a*yL4TmqgT{P3vnNi{0W&KdY7d-tuH%kq(*)G2RW@)f<^4rOD3w6+hR|1i2XNgT7
z@_gd;&Jlt)d9Uy#eoxSyWc_yLXBNkrk$?RzEEJBzbH;)+-Q_YR*dkmQ2)<$uMk9`S
z??&YX$ycTw0$nm%x6;W>Q-ubnFrW)j)KNZzI5=Z{<^({ZdTP0gTQ3#wG7CDqg%N|w
zDr@lXf2gt5lPHuXR^p}FDSTD+QEES6lP*JpP87Z0mh7YLv}r2~$;+s*5$9x?H;zev
zJ7;xE{cy${{CdY9Oj5?BtSM=!a2^o7wh#;)(%tqUFo=^0)D=>Loz=&hJFOlOHmu}L
z9foynx+cBKC1~kjN01@WhJ?u=qj6j#Gi$-AO~-JN#1dSnN0CeRnly5cC8>!|{Syus
z+7^8GgOb%ZQBHrc{ZEt>wG0!Aq>_@4_cK?S4fT+2V7uxTE}|ltQ=bmiLibej%1lPD
zLx@IC>SRtdi5gMauE>pXv=<Z7X4=uKI>;N|hf%UE`EJfKpAL_I%pHeKJb7p-^Df=H
z1Qb|b7BmI802^RcLLcjtfQbRp0N0DVtIC2NQG%IdpkAn5^g%9R6!JcMNu!I#;RE5e
z*7A<2i%f%(Q?c-Hkx~WaH2UOm*(-^N2xxLj@-KM>3DxUL8Kr`Rj4T}W)})W@<c;OL
zlr~eeqCzH0^W?QO9ywwTXlwEhaf1cSX<ZPI8F|0St@<&W?&h9m&sDx>NH+^xfO+a7
z<Mx_vjg6b`nn3ljbANWwVf|sz%b?q2SFDDIOgX5RMM%^`UAe&!npwYfQ$y-5@Lx$B
z;A}1rnn3f<?~dY%B@|*j*)DDStf7lWF>>;~vw`(Wjd0ntmLQ%ZiI0Z;UG&5%Imb!e
zSs+7@^~#8iyh`elX@nR;mHGmSg@;BSlpdP{;74G9>g>GELaPOQ5c_BiEmoWEKc0=P
z3E=uiaosPwZe{F!wt9ZEWHt>o+nf0mr#K1u13Tf=Z^(T;=Ppxlg`gz*E}{Av#rnH|
zh3<%Y^~!h3Iczv7ZrDTOs8_}xOqnwho;RLGKQE#Pty!nEGdS<P^6?^UmKNauovDVj
z(?~?<R2V}TRVl1+B=z|3-$WeBZH@@A6Y^v{-W`Z~L#-<Tsm|}<rzQJo)sO5m;_Wy*
zMf3#F)Q<ddeB?Quls=o4In+LnuB21XlCro`q9u7o-UyK~w5i~KM~ko;WO4k72qZ>D
zABNwn@Zh^PAP{-~es0@O@35&X(I#?~U=x;6QQ&pGr?QAh`;@yH$bqA>9ac}wNGWI;
zbgF?T@*uQIuqjDf8fM1L$mngGet4;Z(5iBstl@Mi=_jl-FUNWa956R8M2q|!#?XX$
z9JxLlZhjsICJc!Fo3A)~VD(MRF5z?L<tGzSf#bC}#-PK7V!Istpg=blRW$C1xlz-;
z3i&E|Iq<xCcp2N@0U@2~VaMDupTbs*&wG*T3qV4XMuw)g9_+X+J=6engdUfRH&ba`
zGFL`kG;?65&g#CFUp9oG`!r8NdA0@)lbC_G{4DeO2`!XM_3ba_Q%{ow{y`7Ctl?Hd
z^nY@jg0u^B7T{olfjfHq%M_I&+xySh>`2~G`2h#cR5=8oN!uJEgeZN2LW?@f3yBo6
z=S-_=MT)eyN7mlb?^7}TU3SHn?}J~>o~}md)^M`?bCz+<j5|9xQa!aN;7>bqd8|km
zE_ncLj+&zt44TtSrsD9_jhkfdX91xOt_IbgAw$RN;%N>r8xHFwA^rUg53Ob6r^}9i
z9G~sB*9_xk^04QpI^^sQmRGwm^AxBDV}xoFZUD=19JHK+`AOKlgivvqW4!K*wpiS{
zcW6G|RL%bfc~H}lYnsJuxIv7x0RkQ-ZP|_nMKZ;9MR)>!OfaqX`df+-@t2kO<Fr$&
zq3&xIk-xFUt2K(J4t;`wvS?T{m0KlV+u1t~;<iHXhNapg9=|l25^_pAS|fP|vH=ZS
zLa}{~$k35yw2<MJHzh?n0;5}9`_ERuAxe1@MkoWDGO9~bJm4IPcz(k{x?F0&0xnoE
zt)<I2hLeS)&#~gL;Iky7I;N7;ynPNQH?2M#?x(ie-`~135WV$)zSe(AMLcLZ&1tk3
z;K)YlXAK;37U{t<*>VmA5IUEO`$AD;oS$Zrn(BLKCl%aB9`L!+*J-=iGGdvTd4zxX
z48r0{I-rv3y(!6pAExl15HgMy5*asYMh{n#qw|h93~1Hs-yutN2#x-gkPhP^zH#Y`
zSiM%H&KR|?HxVUlBxz2L!EyOxh~DmfZqi*2Y!wB(;VJkS6GU*$_3w2?7dxGWLDYad
zKQWH3MZXjy@z3YY4I|3wf;rQo7UM6bo_X7Q@K8wG%JryA-N4UQ+u)ajm&ksNg5g(p
zO|$h4FG=YldxvQ89>n5x6rOJ{zGv|_q{O4hn2F?k2a1F)0TF<;rAK6hQ0QHY^Fs)C
z%Q!ZxZaw)nLOgz<C|3V~HYj;gF1b-Aoes(~E_z2;<QEn_JayZ!nNRE-YZfz5FVr6^
zG;UuhD@HUbqFqy3@P+|0?JoRWX(wJw#`5_|nIru&*NrBrsmN!JuBrU>u0ODY;p^2I
z4bLo#!8YH{y;A<#%fhbjdRKKh0t_xr-Nm(04;wUNCEY5h9P+*z<+KD^VCu<}Yq_7w
zf1+57$f16~6$`%jE(53b&wCv9K7U<%HuhVXqsJrmbEoW`O-=|>1ovLvFMS{}nB@>Y
zkI#bcen%1^W-QHE$2<~(Jgnkf=vL)hr>8%9x@uF-kqDI}AGM)HC?r4O_K3Q_`YGaP
zp%jGeY0REVT`R5bhyABR4x~u<S)^HMv_QA)Rm;z->~POgEIp-d2KA;o987xKq)XZI
zBcRvCn+yLu5(RfrkPxusJX$P#dn@$Twsw1|`dOq@>7iM%MHb#NnlNi6XP!{|XQZh4
z>!XqT2=DFILPGEK#lXzH0uLSOkNM_<Rl5XI(TmCjB#ev$u>Aoa%|TOTa@cZqHiF&d
zOfD$vRvr}({0j}*3wHA8QRpiJb-Fp>><6}iA&;oBuXJK;%Sl7wSC@D9>@F3!Yl%d+
zbCw4^fgG4|yo4iJD>{)!v~d?P-+aLRf(+j_#r7(nJ}Vy9U5J?d^8E=^tr%fyAVM+C
z@}^rGUl$o$djikJs?;UD5=tw5h1L@HFv^VMN(Ge{$&%|l+PIrFRJ&CQq9QSR8=Jt*
zbe1D63z?r3n7Y+s(%PwmRxwEn1LZ@8&j-z`4>J9YD$+352-)S9$=y7FrF7J28~f~u
zr*pc|eIqtDF_CBpQZ<_vPSQ|4V2!A?d+#Yb>9q}dWJ@_9{93RsW|kLBP3a~Mb;Erk
zojY+DZhXQvSeS{rdiyGknC-`=t1lMeW~MzGqfxw^vmIqc_B1O{8nCjQqken&btX~A
z+<R0W72gss$@MO7=eK+{j?3`3NNj_qItb%q>*g+MSbVru?{Mdx$<Kb);5S|}r99&!
zd}RtFzeZnSvT9O9j1!5sdomv)Dekrg1H%z%@OXJ2#--tA|3Vk<e`T5>wI$CuJp&V(
z3}wQ#I(}w7S@?Lg(TyGXzetNfAA>SBPm@6qE^l!=!;8k)i{vILmC&>K{Pkd-LFaeK
zA^k6we-*OoBl6p~^^u>1mh8#i&@q<ndH0b4f5O24q3`LgD7cJ?M!)!_c-5$S-?1;g
z)u>v03R-rObC#fwyLrz0LXUWtD0@+sU6A)E^eJVhpO|`btE9$Dtk5Rz#bDI{RqE{8
zxk+vku!d|0+Vud}CW`25;yC7A#IfLPaS$S+)DmU)<%iRqE37i+gMRxm@;9@IedFCa
z)#=-^OeTKoS)<|lXE-N;2Y9|XPrQ1kl|zjoL<TcjF*`-%90%1hmioHRR3H)aE$E(n
zeP!R(UxBj`%bZ<s*kO4ArobjIWzX)11MJCW+o~Vki1oMiu*XK2T9kNx)=ib{^5tDX
zWZer&7R;iT{Zf4BB(q)(o`2OD9|Ds&>W<6`sk#64q*UIexSFuL7txa<J9@qza-V%W
znxt3EZIVQ^5lDDa+1K%ubKX4?8oxi1vaU-pq_9Z6o4b7v8N1gGl~ru&#S*=3*soVK
zu-9s`iQjQjjxA`h4`&Un8A?Y#Y6+h{N8eNz%1PM;Lz{YkRZqtX<BnfYMNBfr_Vydp
zjQvxK5BJ)nN!eh?hhHHtpAWkJJ$@0GU0I3p2{NvK-9==$fk7#m$Nw&_xkycsjALY=
z$diNg^~fBma#~=UOiBZ@Z=eQQV-R~Pd$OdYQ8<V6H=3_?7`6*~w9!4};Roh@ld%#?
zgC7x?1GE~?1A}tnjIo5k6O-Gvb`e|N^~k0Y81%LRZ&w9{z9bT{^T?dX4yPMCM|>eY
zdW;JTBkp=JL6dk}z^g$1zBUN|`SPykF5u}_5saR$7@U7^_UqQ(?x)VEQ;_6kNcN3)
zuj5MJ1dGF;;o57w;GU5Dr_f&v?{Yu?;h64Znc%;5+U_9VzWGaMu2loh=j_!gDrH?~
z3%=-iQ_N_vtXsV_(W7mR?K&vfF>5LPo#G>3z>{rq{8!2r1Fw3>D_oZ!vs1V3FDjN@
zVv{`FB+*wR?s^wD0b^Ua5(xn-T#`Met^51oef(iX&QH-glev{ZF5qyGN3|)TXjw;q
z^)6ha3W5JcwM~@VVa238k%YQ$?-}^man63oNu7QT{>@~)WSo>6Zp4A_X*6$|EcZkA
zE>MHD7E-KuNK(X2GikO*$)cdH-=5rQ3p*N$<X6V2)M_72?-BBj*ybUDkQX;H@aMoe
zA><Lfv7BJ~LAUZZyG=*$8udUEjEF~15x4yHr*=0%3>*l|bpBx>!xRp&?I%iun9z2-
zg3z1pnu_;EFOQ9b#{_LD02FxbW4k~;oZy7WzwEx6>0-~%MK(4y#5^z6Py9{C_V<03
z-vW=h`D`3yuCjrOqh=TA`mGbx)iV95rI}rW?d*RBUe*8GASS{zjQOcKZxsFc(MfZr
zhv2)U7j@|M0`Hw>`Ctc&j4u`m1G9OmV!^eIfQaAje}h_RQ>kI<snulaAT=REhiK9z
zFUip7e4^YRdz;EHi68ynE+4LNosRfXJ?Ot{aUFShN-|hlgzmUp8{pTD{OS4CA;zQ6
zqzYlqXG>#ZCj3cNE4^E&?<Lh3n-TX`a8O#oP2ap}1Yi37`IyU1zyLD^b;h!lH8qs6
zj7Iu?&vq>VEq!U3;c=$_1&%@pKCjmidzH#S(ErUdl)A&<6RPRWLa0VWyF{IYPVG*Q
z@LmF#o#N=!0@*+{IKYB4@g%5NQ}oN5Kh)KFXF=wqmcMZJ@+zbptqHUTb`){lWNe!;
zgjakF$X#Tg#diz>+_1li*8Zr0!Og||FC4lOw(yS&(k0cSd>|A9f~?JM!z&3qO)9JT
z<Tf9_2yagqzL^00ww0QMk)eAOHK42wJ@afLG~r)oWFA$6O1Z=69!&*t9RBB<rylD=
zc&>>jGCL<VZ8xD1#GrqgZM_(Bv>vl`D5N`_=`01w;<}0weg?TA`f;gRJQqRAS}fM-
zTq9mWtZB0TaWi948Uh)g5M4%;l~JVeZ>#b`IIg}G64c?Y())8gcF7uOs}fgRp!b+R
z3h&~BOnUnxM((>g2=Q${cL79lox~a<rLM5e+d(fc4CMQyV1zy<(#VL{(#_!L#+~%P
z)suTzpN?8!w#80?@#omW!?&M2+7MV*E?!;F(%03I$%+3mAa@;(zp<@$bdewHKW^I+
zd^{UHU)vNPi!M;C6=MoGFZDgLQtyWHKx%mxf6I;LQ(7~(&tSQ<s)K}7ivJgRwqPh(
zCItY}M5|BsbTkUyi*gpqfs#oG)pnN|R{lgA7h1Z^=k|BHFpV;&9^j0Wl%5ICGw7`&
z8^`%uRMCy2!r;ih?}m?9DR0yUR*B+>mj&T5d^j2nw2rF%d`XA#L6M;>qyQ{EA8kU2
z->~@Ag!4#yIBsMwLQfKtmDpbm@%&7QSFuzYk&l5?BQy>z{dz63{lr0flYd~?N#oW+
zvf%0Uo$&Fa8k|GS?$3fvA=0=s<^*477`8mtUFz)#x<Idz{FGBh@#Mc1yd~T5)2vzj
zY8}mTN@AY#LbNpc76We0B;=5m(IXdm-wO2m$HRt;=U?{Dy<{)<hb#V9^KNG+6C>$s
z^2k={heCWXj?Zchj>E0o1DUGTIyZsqY}rS6RaQ2PaX^cfZvWr9eOmw+f}z}6V3utV
zJqslPKkXxZ7DXpb-A<|5M3DP%KTmG9L;}o1*`1gxsW<LSG{)mH^1DNM^$cou{kIU_
z3?Dw4x*B}pW5!YEPU0_lhiP2D>6}2MPXxjtJ3Mrjf8CY}SP@m3`DkTm3;j1S@JLJa
z-JBGEr`V&Xf39^O{brxuvx4EDtH>}x<NstbNFhsC^iq>`m`@CcGlb3BW}!X5k)b&Y
z;FMmv)u5Hf|Gq>sv3E7}!{qFg4EK@>iC=(j6-#+Dm7j&KOo8sX79W_f6}*mM7w1^>
zv*XN&GSX}=M=*|gp$u9*`oT+L{v!tepa8$aE(%7@x+{;p+kHfq>DCTDt)QUz3>RTy
zjU>2K+(cJDD+!qU(zFeLktWlfuReK~ETbeQYjN{14NAP;b52(huK4|lVk%Zy;4d)k
zeczS%1N|VE%Tl(=N_hF7&Vpw~OLz+P4;PJ<n(ijSBe(v=qT`OTzT()_blKnlVCa5Q
zCvDq|m_Wa(?80;B^0QiRw$-LiL{!kRIKb7)x`sg+Frg&VrgL~eOVx3I72`kf)QD!L
z09JY$r#XLU&zHW7I@Mn?HrUkYB9Y7t`LHm_<Q^IpYK~}*S80I}%V0)*o8M)}9x=id
ziM*jr<e-9TRNv7_=46zkIUPXh`gm=+|1yo_PeP5h6ZZNOY~fxglJP};2c|kMI!P5W
z;XRSQ)i}Nwx~tPe^*L-+BB!yeOw}}VtfcJq_?ISYpqT^?PrhGbgQ#VqdV1_Jo&fq-
ze&(oNjNJHZjTDWEir0k=dX~=FpBv@T+|{p}@Bw}mzb`{D^~gE=uW{ScwLr620Q+oI
zYsr}fQieC*dqaEPc$r2R&+>*5q3pM4caHu?8L1&?dV1xz+p5DPi!;%&07@jKV2oEu
zi?-4JS-U8`!~Fv!;2!R*guiG(s{{CtnR1)gnL+ZY^)7o|7R=(&3U~dBgn++M_*0Mb
ztDY66h>-<L?jEEfW{EB%u=;e)xbQ7K3i5`?y&Cr2tGa*75l&03#WwpfcRQz|XMdwf
z&Zs2*tTL9QYcMhPPAKC1QSxiP8H1H1K72XPLRI63_77HUzr{ch7UaydANrgb<wt6>
z`iXvd&%<sq-R6G@Den7UwqTFwe{$$+hA2hJ=`UzZTha@E;yfkzL<=-0iWZv#`}lCr
zQaoNcp|%M@mRwStbO1$r7Mzz#0<O)TJrR%Tz7(yHv%u<}I>=nBTYtP}6TX6Pvz|Vk
zwH^O!<xfA`Q6JbRw1;FQa?1>=(t_G>g4>f>XgqBsHAdOKFL?_!=iyvFM58?_*V`9@
z6HpoOiArym{y8*dz~3vCzg>wU4Ja_7HFdqT$r-VXU)i}3d;M8V@J&$r_M3850om@h
zoH^1`C-AYtir3e%{f|yusI)%vn@2x1|LTSh*thpN3&RlCtkj!T2cf|zln#~>n35#@
zA(!2s97e_`?BmL8L?Q~ry`U=6O=DlNDv?kyQOE10daB$;{l0ohV7U(dUu#$T4+YzW
zsVQU`W6d_qSkp68OeQn78e6g}6$v4e$1)-&ODID#g|R$j7kQJ6D1?}?gvgqC>@l{;
zGGSyNyi@PL@ZO)U-}!KVI=}O~&UIhs+|AsOL++4<{ekv{jdt2g6UmX=hd?Xp&2U%#
z%bR`|zaPl`cARiDuhY4D`<fGZ+lU^bZsDa_hH~kI{MYPeZ9S_OqioX$88CRsu`X~$
zNID*pejO%Kc5iO^@}DHd{)!ldtNSJ0+;~HyR|?UgCadiE5G(Xoha*vk%S_5vRT*`u
zMx#i3Lp`R6P;&sve*_ALgyCjR=7M+RBG#HA-?o4Fsy%ahQgF2DW1@Kk{wOO{hQL*l
zG~ufv2!(i_*b#ORi3w=Vmlg59UYxAJ2PaeeVrE%TnM4_6jvzhsa$^5Y=yd+S7o01u
zqdUl2$7GY+zw)9rA$D<HtH(WJkP13ZaXz*939cul1B+}Phof4rb})?SN6JB`0lZ-e
zuAz_jo{RE}iR?P+7v;`lQ(*>*B-(3pVqVG|uXa7$z)r>XJOeTBdG@h!k?$rn{6yh7
z$o74Zk<$M1Tfw>Y4h^~9GhS-Kn!~*q8o%LzQV0;U>vY{9#t_A$-aYTyZC)r+%S`?F
zaW*r-^B?@re+M=k(SB`Y@WHWBm!;2$BA2E*)|lO|9OV(~yys4?W)XG;p>s+p4qeje
zfhQ5x3i3PqHw3yi+I;MqJ&mDo1D(J$rNASN4lE05fwnml1nV2+;ykLFjb0*^ThY;0
zS)OT#??MmHf-GFgYf=Df(u!)$-LJ!9F<eE8xncn)TTL;dK5$o9)84i~uhoIj)YkDe
zoHbhjmXCXRqu@*GR5vDkqkV~T(GQyn_sVA27a^L(@0%-)+LL5S38*!j+(fVZM9(B%
zfSlj(6}Sh?qZ5LiC^S?ujS*4OfqvPb7%L=&x_bB~fkBVOrtd_?oC`6DHJXWAt^!7z
zPD*!#6<Xa80YWda2~@a>Sg3CQb6D@#n}gQdAa#&Xk^8@Xv6jipLCwlLK2DWhNkl35
z3dLNvvsMfQ0BoHC#0^6hI)fflB0>)9of~`Gdfj!dy)r&6zU-61xJ6E7R^7nA7FrVe
zcWK3zP7^&3-T_7IG+#6#gPS@<anpL?(1uy5of&P=TSKq3A-(g#JswB0iYdvJJ1w5-
z&10*H-FAfH_M)ira%_Fp@RI1%cSBCS@%mkFa*GwkthXfrjZWnUqfj_&x;4}Vh)jBD
zxhjRsp%&v4m{nI;`aY(ZV76P;su_q|m0&WA40m+S`DdT3oU9wbI<@?;OtLPwR<wJc
zVdyZ1r05LCRXxcp|40RuptEe0KwiNmiC$wW9?vedFCpnY0lN-XcK<*yk0$kXppJ?D
zW{V%*ID1RfR8oW$OAaIvUw)QK*d|8l*EaCbCFFr3VQyD07T8Qyh(nds)Om09BY9Du
zw?5fRnQfXhrh5waR5xab2RVL!^f$1IBjRxD2)^1FScn*WQC#a<8bhll3P%=&UxRZE
zIE$CGxyb$9l-VOe@k{abMhsTtjE(n%*qw$3O+T?)GgI#5=`A{LviI_)>i6qt<pw$m
zvL86=o=50S2y;q6`^kl8<^L7Q!y*R%b;nslCZ^kJ;*`cj)E9`_5zcyl4PKPTiutgN
zKjT|VMn&Nt4&be!>P3CYEmxVNsPN-H-%{K|hE!xJG+m85`1;{j7sTRApep5LA0S*_
z=^0-L92<yO2d3BZ^vo=u(|LL;@p|?eGtRDO4|B0WZ$ktcsr$Ij+2>P`VRgZ~Lmo9I
zjl1My@C&u~;<ZVhg?Oav?K-2uTbAul&p{QhlDqt)jp&3#_d<!{Bz4F@DC8^0oK)Ic
z5P^adGSnyg>ck)xCbJ>q_V28S6yI`yW&d1=3{{kr)WEpnLUeH+yT6IHB6&B>`{%Nc
zfYf84Hmp5wd)>mP3Xsb69Abh1Dv#qh{3~R|3k2CD*8dbKAg>|@Av#x885czZ3gV$?
z=~*x<<K<jf`^vYt@A<GB@)M+|tJSt2uriLLv}d=TM8@tN)QLyq^a%5`2O!fTeVfdA
zd~Z+aai12{8PEZWd+SUGu2p=qO#`hc;u@+8myeH6DZFFaC`cZmG%AO}Pt=?(>y~g%
zJIfbx0m#ZzW-FxgM7uh2mjN-j#V&_{KRwU~Bk}{3Q=6Ofj`=H~beW*$k%u9x60Fc)
z{X~b3zObIz*&1jXah$4JtC?jhEXGH1n<F0GRMu9}R_~t-NjeTps3#20kf*RXW6lqJ
zb@#^0A`_+)mfq2rSv8w|LKNTeSS{w*yN~Xt)2gapye{Q4ulrD-@Qq+WB1qy-)Sk%j
z+(0UXUEr;3u;tC`77|w@rcV)fZ1W1&32~*u<)DbfRoKF3xe6`ri6Dxt!kRb2<Oaa_
zwbOG?mG|iL&?~uFUzL^4w2Qs(6&h0Dn0CTJ=VEd;&~Myo6L%LAVA9kw{oy!!9;CaV
zx7qAEe0+#dC8uLEj_0TC{P5kbp5L6LRqyugt%*MPHM{=6n$~Jv*<%cN9$v)ulj^Jp
z1jk5q;6ptHL{k*gv!yo@)}EX*P>E4GT%WH<&z@e@OG;xkgDVU;-~G+vHWVVg!1Ezm
zDx0iWu!Zp3=P?g$pxLPZHBrTLd(B2g3#c^*P^zpI0lW4je!ZGlhf}bd5r{^h8RaMg
zJ(!XKGbLJjOB8Hr>Az5rXgN7ZPeDM1UTJ73YhEa@G_+r~)>m)QQu(C?tx>xgY+F)P
zYte<p_)@gC$6F01hw^lzY1QCH+Psec=aj8!7x|Az$1vw#=C9uzzJFKdDe!~qr~K~G
z`tn5%K?GBpSeIaFMkTgNm?&tJTa;0bI9&2wqwUdUaop&d)JV##R8?R^7=QdXJ%BgY
z16V5oLpZk5tDL@5|DSQz^3PDp;@>UOq`4u2$Jp1XD&P1Usw=qtgKo8vI;kM$&~4LS
z670!GWA{GOx7-+~Z{KeS1dzjb&*h@_q5AzDfd=+Zv2rKs=5mG{#oJcIuK2{}Q#3t%
z_(uBc16E}xS4<1?MD7NXv9iw$^x^omgnL(cBUJ}QEV|=5SI*$?j5qjZ_RpO%`!Sv_
zqfe)i8%qc3Ju=&x>w8_})5tALIjFkiKN?78P<jQ)QP`9%@s3|Wmmgd}7ffzgc&$9N
zn6~w+iI|kya{qH1B(V3}69v-n!{jf7v%uSX!mG$oZX7P3#7ra2#$ZIAoh4o*VoiQv
z?SAxFsB}W^zA}3h`HImbB`f(f{Q7HFkZddeOxaWiqStMEc!swj@+5vgUmRagldPr%
z$Or4;RsAA%i)wzplfS)WSl7pHguPy-a*OK?xw~&|sF8d=f9wlpLK@zeN}YC;3F^!M
z4F&rQd`~rp>exz*lPt#>{Y#m#xTZNp#-|TF_^Dmf$il6|sfvci(lZm$W1OW>VG}=E
z4ys@NU{9Wn)sH-4?G!F_rmLPinCgz(v#y*c?8p`YWc{!Qc>}#@jlgR(o@*ZvKauaY
zy3T3*<U<^KSGrUkn<u>Qv&tdJ0-M<>OUg+TaQ^_e$681}`qm;&DLt_zn`#ZXWdm51
zV1M_aUucGj>v~R&+q>?jo?Pwa$SED1G0yD$qcUb!kfawQOj+cf7`1x5Cl&;DSsZ*`
z-SVu~(x^F5Pz@t+3DZ(|N#rqeXqk8yt*9xzd0Y7t3SxOJK5)BWJU5NGKwzF432+!a
zQ)gM9JJvEU9IhWWxK0)3Z2e%oTzD`ad7KW$>C1r5V<QBbR#YbDb}z#YocT|*)?i)c
zAi+Z-^?2<bpUlor!Uj_ut%oxui|xrq1<v_^fAiPhsB1)*Gp6|mWmJUxZrM4p3<P$)
zFPqE%59*oA=V%|lV?Ej3h8*to2cfc_aFXhG3>An3{$DS~A7>j#afRG-h?gqn;v6$$
LE2Fm<*T??_<OEYc

literal 0
HcmV?d00001

diff --git a/oxAuth/Server/src/main/webapp/auth/passport/img/linkedin.png b/oxAuth/Server/src/main/webapp/auth/passport/img/linkedin.png
new file mode 100644
index 0000000000000000000000000000000000000000..73a55b30a45c14ec65098be5c0569172b2486a35
GIT binary patch
literal 33375
zcmeFZWmuG5)HY0aNJ))^v`8b(3@E}NrJ@2-3Me4mU4n#kH-my0ND0#2NQcrx%Fx~U
zUe};L_xt^L|9{8v{J0O1``T--z1F#MuWiVEbtO_F1|kd$3{qvd!b1!UY!(a*tR@0H
z;5Tc-CY!(?m<|t>Ze!&4K$d{N;F!v*$zxy?MG~Jr#|8dQXbabIz`!7D0{_Eov-xC#
zf#J8StRVl$)nIKBzuZ8{Yx-h1?!Kxr>pQ#{(ost>LgJfIij*-JqusD@QOcP5z;CH)
zV$?4Bx3u1>6>$14bx&VkLh^Qevm8yBsNy@|6z}-Pr&D8bF0xT0eEU<{$#N~Ks~VMs
za%1*){E;R(m3-u7+SBDIRdJDQcl<6rtJhuGbSy2=DJQ(PLPXTv$kc3pw<j)|S6WkP
zeM$8iY5He}If1ib4W?%p*mU(6c!Iuu$8?LW&!mk!on21#DU6FZoC5=45aUvxMO9|6
z$EM4hq0&4FJ4$3G>Da7}Qkn}F_u|5QmQ_;`CUa?rx}(WOERHWT7^Osd2-BB#?wF2M
zAF?s+Jr=y-;1-Tag5ISbN(UFxdE5OkOiZ@*)npQ1tMwf=-pZnhT{q^ChugjB?<xw~
zrO4vT6Mom1;0i>x%COy*f)F2Ar6*I2#a<2SDME!SE77j9L$dGu{)pKOat)AXF~n;%
zE~PH}K*!%=&t)LGKV|N)5wVnUZLZ>Tde+=9-+8;=n8UNhFqG5Fo|BIfCgKcvM-BYh
zTzYhv`Vueup`T;$FGT<ldnQN+za68fs9yeTc=#rHa|G&5I=#b%i|MkCz!zCErzU{6
ze$zS`qSgnK8@REK>~w>XjwFh>S?@NPgg|ZpagH!!^DL+o87@1jBVMUpt6}rbaneIA
zx+&g$nuB}hGx1KcAR^}^MB=ox+TrxQ&~)X%O!18@*}#Fn1k5<Fd9JDoJ%3C3v8M*6
zZgTOd;`$kRC;kQ59S4Ix{hC*;lAV>d9CJTKu9KrhaH&IQQ<j!so+oKgSU1g)HY&-j
zPVmt08&}!{1m2n7opez5-t*>KiWS34&Hi@mOO>D%?<IVtE=*a-IHd%6rsspKbButV
z>BKT-SB^bfsPE4bh^$ZR*N^BvC5sOW#QTF5OcK=qKmFKWnh;4Zq^+shuLAOyeXF0z
zp!hj&?#$X(UNFJRDytkk^?uhk+sAh+++b{*#r=!4NqTtEyxnB)w}iGDg@|Pc^kNC0
zxv;WvdcOXFX|*6xo7Noa$#_-M%NtkR{>T)Bs31LwBdqhD?yWA_rirMA{vdyk7@lHp
z-lt2mJ$9%_D=88B%!)wIzqkN3(IR(TQa9cqd$G_nG-@MJKK*m_1**O;t!_~jhRWEw
z#!o{@!*K~CP=<0oba00|l~rGQ4QXH}KDwjwB|`@Z*qTaHW68D8tX$^r$jAN<Rxq%g
z1O-c@XO7nwezEReZIj9^gt!j6Ao`MpWo}v16~A-%>LuHr*q!xHM{?;TVa@SRs-!>L
ztf+<ynFj?>zoe37cQJERJYBs}dstqlbS+_pX`B9^l%GA*z#A}d7+hFebPoGSX77V1
ziXW&rMPudQU>X=rzWvx#BgkWh^si)V1f$qZS|xR*@30NR+gXm4QdUKb8&cL6Uc0l-
zWB%u$WF*-I_AfK4IMy?uqQR`L9tiW}H1XE&iCQkh&w4OL%{Q6;agBjjNs=we`q|%e
zeW6Dv%f{TM9tzihzCa4JJkRr}jP;^+{I8m#*s#s*vdwpxmsFEa#^i}w#t&|8NUn@N
zkW!Rt`w(t8JJu=L$f<@T{tr7wELP+~qV`^>q#1;b;WU(6Lk4hKE=`FgC)uz0{tI&Z
zmn>FKTqoWS*`0sy2^&PnaI?C3WEdYWBAVTpS8kSB{3P8D`Qvaf@ZLUWaY}PR1%y=>
z%le(L$Sn2I_lEKk>X{By{K!fA!HGiBnGfm)Uw;27(XT}KS6};Cx;g4JQJ$cCe2e4`
z8<$JB5UDYb;P$1Fp{0^3iZ|dH#gjEv41*IM3p*igT3K^{LTiMN<)MF#xL&S^L>0#6
zlw%W4xxGMndviZ$Yx78BLp5FGW7TWlesbAsANCyK0x$nA7)ke=n+w?GVbgMqklf)K
zXPicz&uc24L#<8ggwE@8v6}ukJb)4IRKN8v+IDw`-}PtNlQ)eg*Cw0yM$R0i&k1ld
ziqgC}2>K@i!NO2K<GGh(ci6<8A{e}$OZ%UuA>7U81*8XiN7n~=r`)fe<b7;aH1_|q
zq&`ycijsUxfNH9XcF#N4lYs=WSIJ^B1yxI#uX+Eg3cL_MdOIh81>IS)B^a_+4mQk{
zA$(kA_d8e3Sw{R=UhePF>g(%;1o^DhlNS6*NbC59ZL7VOQl#8dykL*Su(d`>9`=Tt
z_EY^)n}h`3KqB-G8_KEnWRj~yV5D~~#FPvsUK>`m>aH$FK=2PYblP|Woa1-cA{}$O
z+^no;0A59$cJu5Ws-K?z7^uS5o!(7?=tYK{#`^q;aohB8#Ip|_i<(NXp;}*985dK^
z$zBg(0+NH--SZ#d>wQI{N>k|=bOt0}`h^oRI>Z<U`asoND~hUiB#RUO>jC_`>ceoi
z&U(Dq*S!v;!&|2E>bBzg>)uvn*n}XS@mTunjmR+8{*N5!u(=GVFQn~FR%A1aNRotI
zUZS!&h_bQ%2eN{FWWf1hcbY!BAU(D;8ABU%J?7|9vK-d!!s93{?DM>=A0^k~KOd~h
z8ec;4i%=A_=^k%Alh-emrz@D@vWI<Xw9Q?0b%SSD)vxgXS7lG@<x<=Q*{oG1ybf=L
zx6I_#Y?bsUx+EgiRAMOpFK63_hxc$*x>%b2%up9ivt*{O=){fqW*sR_i0RNXqd(?w
zKiQ9)WwN(W5%x<Pf*fPiV3e#7ktKtv-NG`$2@Zb#*J}K(3PmZ(1u6zgZ%FMa=Q;T)
zGI=hy(;H(ATpy9iJ@}g=01)px!?Bpp>G7zu;Q0FVu8G+$<%v&}0M^@oh<@5u-{lbN
zD>Ec{yleWC!Kdu}<sCLVS~$Y+dw%`WUjNEpB+HG{CsEKErASqN5wV)r(%r!M{?fO%
z;1SfSz*DA9_)lmt<H9z^`j#W&wQe(nCPt(uO`LYHUh_x1f_=_-F}@_>`D>s*`z0-(
zN8jhXDO2}@_Mew7iS^s%=<8ctkRaMlcsjT7Yf9D6!qjgES>y6I&W`oSX~`*;wodj<
z{dDL0bPIcoECZ!=^jD0&e$K*$DsnmD)mgs|tM<e-r^j@rt6es({q^jnB64yJ58svg
zqmCZe{!3Rf(@Cye!7>scV`TX!X-tx#Rt!v5mhTNYiCO725M<Rs#9z~12S2|px9j>Z
z?fcKy2X{8`|JhbONCHP8@;|?kvjSH?WVCdb`M(JKKS;LS`7eS0CHc?A{I4wk{{o`r
zjjbeMN~yNh-{RC4JttBByuWAzh-a+++a5B3MwPK}hzLYVsh2RF%`~WIX3J&dYoFWH
z=(`={VQ8Do*~rn1d0UUi=|R}sLS*_*#^J_Nxud7lM!Rcx)~tZCN~LwBH&uL$$B#b_
zqy8CS?*zdt#lCXV9da(BY#puS7Y3W}-po8k=u@6A>uLr0q}Pac$sCk!j&>%z={2al
zndaTJE$F`TL-5<U4bqCYNxZ;=#dAN#RaIuae8-x6gQ=FMdMQ=w&6LF6>}D(%KON((
z(KF~$t-cTsOM&Q9|4B2qI-~&L0sOY<Sy*rad`%#aKGt6ZOGr_?m{uM{1tKKQ(>8zf
z-dumH7!yRiVL)T;W#Z-fY;B>?yK~=G(C1gnPGZ40#QJFk|4oC^8=gx)P8#dFDut?-
zMN}Fi+fJa8$U0sQ9$6lJ28@3hqnrTfRjx;MsmcwYG<e!05sKFsU<mi4kF-H$2sbY+
zf^~!MLY5<yva1trf?pn-O*kULx4g@s)lkp9<&&oIS|2ahBQ61w$=>oxgjEaTh@Amp
zz`%@}25S{Lk3UCYVX1-^F)-^NhWF}2kh0%I(<&VAY8SidIvIbOX^+b&wth+xk>;V|
z>U6rhvh{!hVfMX@l|sSw0PSl9Dewpg0Bw^J!HLEOP1WqS4@4pm%u00m#8crrV(W&*
zpYh@)4s~yOSZcaJJ5uYsoLpa?s;+Fgu_@jaRiH8thJ@0Bp<vC(*B3bMfUj>hMWpB$
z1@6451{4O7-AE`D?Wr00=GE4qE03);QtqTwe%x?tM%Hd<f#YKujPttrW4_p5<3BSA
zSgLK%LFH2;+Mi~>#9UIJ&!9RV=Mo^|;;YO`>W}zh;Lw)E*w`mo7I<+Qeb<;WCZp`$
zi+Q@EfXhH&hK~)Xmw?QIGODD+ilp7}^xaP55N_F<-J=1P3*}sMwMZ4Li!Nn5oheZr
zSug9H=h6RQ4=Rg$wb(biUixiY?8jc>jo@6J$<4ko`TYoHw^ED50z#V;q|@Y!0OqO1
z`*T@a4VP(aNg^iJZ8-usGw%GS!=nciB6GJ8x|9nO+xJH*vvT$vL^RX##$5tMZ1j-&
z56i18s=O4&#uo`Bsy)!BMFVnIUT$E1MPhkt&W<_Km=?*zG+M|Z!ePcKN#5ouaYMb_
z=M@8~^3EO6+kdn5J}9U-3LN!szF|K0dtXMzVfN!cUS2=z+DO?KKiV)CWmj(%7dMGH
z8jLC{U_I!maUgjHr1xlT$I@Z6(jdq}vY0PCTlZ#=xA(Wremq_ekKMdDmmUuDiin4H
z-pJdIGuR-x4AXs#Xt|zpD$C8jeBCQ!?R_{BQ>80CZ2Vrhn6D>9a_e-wsd)C|t4Xg1
zkLLgKD0qmrfW=fC%#a;=gWZNVGalkliGI3?Eg}3`pSic2v*c+O2EmFhn~eG!Bhsya
zK(9yv3cM2Ke<f<`TKAx5BuD3y=n(&QztD9Z8Uy!xW7UEY0VDGI*m-{7*S>xYFD`MH
z<(tiNv^hFcrd}g)Gdy+u$YE2`cB>}0>S$D-H8g<4x{2-6rZt$amZV<lD-w(H_nf#<
zq32H13ORJ!`AwU{^uCgKz|^^CTvW;JtAyq**c@_O=inL=PVoF!qL^^lf3y|&tk2qx
zvoU_U!)!m@!_8Wk%$_YxN$C<ZjM4F@{ZKzG2zt3`>(^M6S{C;Zgwc`Eq&DlsYSX>e
z%^&LqtWVk=DspKn;_~=YWxFOKIq>jeL9TGbsR*oRah42^4&TgF(pa1@dR4iL<MW3&
z+%`C#kq|ojRIU}Q2>;vM!t+Nja;Cv$U*Fl%+%UXy6?sG;`$-6&zx<?sGc9(OvPS5l
z=xOw0Qqd>q5Y1wWhRx7pg5_E3$=<Nk-(GWL_^(K6CSPfhd2RuI?cE@%<=S9)0Cxe+
z4~w4g{1QSUPy!?P*{o-a1lNg(uIDr>_X%yvu2+xK%iobKbTB2*q@9rBWLfh1RQ>x;
zEuN`|7v?LP%|fI`|AsTKo*LzKx>r^}W+7%{!+q*J9*50XW=-z1zsIX~Ps=6lfs3mK
zk_uF(7dkp1=g-1go89p1PD6;B(sOT?rTXJdG92i+ZFQj9qOa`8$Bn;Me1OY}^#C*>
zSQk28C41or+aUqV?Itzl*N?ul%11gUxtX`ZM52)n6?dFHX~<`RT*CQ23#d-+@)PcI
zyWP2|phTimkxoB}YwV{89q|aSw=X_AQs!t;pg;a$j0V^@S^&e)^A#?BqRwHfo|~r$
zX>r)%1$xW|$I&IQV2z@<DJ+k39F^a=D#&D)K)((&E-|~9Fje(lEb$b*KiYnL5V9}Q
z<EJT5=VE#HX0DN%byj9{JOb^9`)n>P(}MthT7puWs+6)Ed-*dr>@2J5#xG{C-}YH7
zXV&a`hAgkqjxM$v?IKOYF+)yNPY(%E0Xu8X8O0tl8Kpbx?(7f-@nBJ+SrPU<I&|Jk
z-3)$CwCd`oMwK$RoxdS<5_tW!O$f>J&i(Y6bW?q1sh~E(rPxX7IrnYqKPJzNMoM`&
zF<kH0-Y8cFm9?u`-bigGq<k^s@r-1f0Npr;{vFo8RoD?)bD36pa<f0QE^H!RxDeY%
zT0bn?7@<e*pRKG$<u`QKHS9%Hvw=D@zRcH+<b$)A&DYz0l7HplJ5N9+VXGvxJcx=7
zd(GX6>veIHfFc+uB&=S7Dv(zpc}j+$L3+3DJ?|{NhIM?~VOpTpEuN-mY$D0cxd8&=
z$DR)Gr`da0_FZt-<FJaEt`EFKq%|DUzw0N)naMO#pu=yq8K&(So^AZ7YQ(@B`vD3j
zk2b1&qs_+qe75lAj##v3gJdD=I`MW&ufC<QyDp<hFJBbcqPR~6qNe02Q0z5Q&241g
zb)km1s~qP;B!0iIy3NJU+4m~vRy`7i7WsS+nljn1*;?jaw~LCI2qp30S$r1!d~e(C
z5fh*r!ho1yWL|3G2HD;h2HXYQ0yn#AYuffOwm@GJ<6W5&T(S`A9k`cc)6%gh#%XDj
z#hJOa4jSWpFGzfiCTc_l`a%LUTZIkmIBZ0%qmIOUyX3oA98EU%e~J-8)AlbpOzs(c
z*+X6?Q|;~BXcK9_<dxe*3@s7l@31i4{gq(Vpy=HY=rWrQsHX~4Cfve5PU2$jpw3Z8
zySQUn%RifMN#yIW*VaSCbMw_(`)J@s@uG$DL~eGwin)BcNB(V%Y^N((wds6Lks9F~
zk!jv<>0w2sO2NxU04P9Vxlq3)s#&~%tg?LS67pwco;#KJjhd!C#S96G25gaNgiE3&
z!i&qE@4Yvx*+V`oU?}Z7Q>Iku@H238f;>Z7j3~yqh4*i_tt1)rgiq-+uR(cFx3mgK
zR>~}C^8nhbVZFORW*5<UlPc;-!iJdma)$o>P)w4zdbEB>?jv2C4-aNOVAHvKWa~?A
zMt(G;m1=8_FTB~7E5!d!C_ym|L?D>mMExR!rzAl<S~V&b`TLJCQ1wcQ6S882lM0UE
z?x_q;y>EdWHxmam8}oGEW`iwLh>N;}#nM|$vO3wZc0S%VhIi#tDl2pX@3x{9^}q_*
zOaLuCeu+@Vp_;|{ohF(C80S6aX-N6=mP*_9k_sFJ>?tH3Q0W4C_tOJYzHBEf`}wrZ
zPUbp6ASoNf2%2JA^ShPWv;(7aQP9|tv(NMW&{>7fP5i{rLR@)W%(f7q<zubvYFT`(
z4_`;~N&Xb2!TC}N<yA~`eR>;X<Mm|RA|R(!2CZ_Sa(W&Jq=4E-S=x{pd<*qs-Q!IN
z&$W9VesM!A%DEUsfQOKiMq3)dO!MmIN5i^@QP640Lc5iSO_!;PKwq=2@%|)_UZe<M
zHk9Zy-jf@M`D&+LU)NiN-|l;&G*WG4>e`k(9HgGMGkBv_<&|$XO)3bfu@1Cmh<aLa
z=VirMA&wV|(5aBnb&_<6*`GIBZ!I9j|7&6B?<R4wX|U{1k6f-qO)#=9QE`J!12blD
z<10~5nrHJo;aHU7Mni?2mjSvx91RzmOgc>S_+aqRUyk|8Fz&eH)X>$}*P@RG#7w}*
z7!*jaqqlpOse{&RmTyu3l8jsk=mKRw-b?lUGU|Kpywiu|ktqm~C%5_(<;I>fZSjDP
z@0^dn%#z-Ka^Q=UI>sYej2NwLBJ6IoJ?1i?-qD4%c(I=Ek8722Ua?v69}A9hE%{<i
z1;0fL@9=Po^b0{-;R?f2lWEY@$?ONK@J`*Gi4`z%9(Cug2IN0ab8X`8ou>y~$T?cq
zjJWgPFYJ_q4HpkZ>LoYZ1Nmlt0(F&?68S+H<xhBrAv))*uW$aNJxW-^@lOo{Y9_rh
zH{T|k$o=}1?irN2B+M}a@Qb{2Sbib6SlcSzfIOWpxp^I%wGfclT)#VpKO8)OFM+@A
z?r3aze<83Zj)GKWk~H+>IT<>F?6;xyNEJ20cHTADOIU2<Z3b>py4j=DdgG#GJ2~+F
z-$Z8nIoiH(O^cLH35B?2_qJcW-^J|l>oq8~RD}}2p`;P5Q&pGOdFWV{M-_#0?$JxO
z!DJv+54Z(s&)o%y3xD5|Z=S@qI1(U^w!x?o^#qSQsF%p+c#pR!$4XjZ89N2LZihMX
z>1!?QG#BjEGglaZWnHvk#bZ%&y}uay$WP>wKPH$t<5I=E((paCsn>f^MrE_~`}3WN
z*HWPT+|ZH$d{Ym$+wyM3Otr*=QA9(h-%%M1l0iYsP>547*{7>hM_9d0R$a}!fsefa
z<U-8X!j16!`kxm!e&nw(-F$DOL9MRms3gJ8S7$+JKw1;XgcjSjaXkV24$*r-QA4^}
zQ*EEKwcI(GsI}Ysm_Pj1>_SgqC#~`C91d3(=rwz4{-&Fem+?c%c$P@H_hP!ycFLF$
zpZj#58*ui}>fJ2b0QHHj+V7SYtADDF_Dg@sm>s@Bv316n7&?Z}jbCfq;*~JfUC|#c
zCQpF|J!lzEF_mei`<rHL>KwW;-b}4|$MKE31o%Mbj{8D(Jf3!cZ=F18L+9dYXfgiu
zdrBQei?H|BF0xjsVmrWeJJy{;X$e4&JUcfQCKlnTnFQ#Qf`0P5Z}a1r3>hy`&#ku}
z`0O|~2gaUfDfnGyeT5byV5ob>;(|82@4nes3|cD3Ky0KJ8>gu;^BAo(R&qTvPozI<
zuj!A5`uz{b?wBEn=V$ZE#Eo|kzTS|+u<@7`sIYNz{n6#NfByd^T;m%S`5JO-W1+Nd
z^DgY7uBX<{61DS=M69B#W;PMpK!_HEDB3CEm{{KWn&|ENp!_VF^e+C4mD*`H@9-Pi
zbWelD=5CHH)%rhuuw)P+!MCLh;E_q!KrQPUAHGL;v{sbeJ%VR3v*BcSF!3F<GNWlf
z0>OU;OPHU<&UBYHqgrqRh{x|u=8<h;Zw!y--@K#3rR+>TaD8kZ2k|!s0qBp8|F288
zGWqs0+BAwD+El`R&({|b&n>n^&)<>cG(^Yd`y`+Pq{g<mCVSnEtf4o<-k{v$XRH17
z&8r`G7lMZ0pnRtFR5pG+5SuXG^kA<s-k`&#`xFYgMuK*0Sx$4@58SMPg^kS?)}|?4
zB<cVcAZ%(fT7i4+==QGM12A4Zq%L$yayuni8Exw!4_$XJNrP9v;Ys%xZ<^r|0kR*v
zb+W)))o6x%{a%B9N5OAW#V@=nt8S|^G3a}0*>}N`-izqr=7Vi%!}6g;rE9m>nQ$(f
z(43dWTDt)byBZuJObPWE{dStQbv0)bn|4C7bk*8Z>5%VJo5eRq!Qmz_^YRl0L8yRH
z7Ky>{{dVt^oS$Tv-*B+;3T#TLcJ;iiF?7~ri6}Tw>96a#%<ttVyxpVba8NLbwQq&a
zp&CW@_hTM2mIY3!Aq-kH=4~zJvC)_nyw45Fl)L%_XgN_KBq)Vt*Ga!Qpn4!in@>K@
z6jq2w@>Qfh;T@dg_?v&d0Bti^ZXKgxRj6r3r>%z=C{OyAr|Xu2F2-(=2YggbWz?$K
zUWyl1xx81(Gy@UO!!TXx4xL4^z+8SD&9nyn61x^uwtY@Jv18`iqiomIaLBazrN0F<
zJWLX5bhb%k*K*qv2*)cx|6$#8h=0lHY2R9;HNnN1NGM;0ZlYxsc?WudpErn40?g0c
zEav7&AUUWzY<)b_FF`+sI7i9-Kn=H@X@_|}GAWrN4O}6<hX(aCVNi7ezN#$cjEPZY
zY2H>Ng-#w9Y@1i7p6}&Y%^+%hCX+lzHtzU~)01XcOoKKq$8?$IbF#2}p1s$wDa6K_
z*Ir^36kl{a1J4z=BDGQ5rhs{{F;mTJ&ZQ{LEz7!+gFxB8EN`-dFa+|O9pMmC$=3m@
zl|C}1Zo01H2kk-jqjxHXMu-nV#^Nr!mFY~_=_L@$xG0}=FJo7erUYg3=5g1CTMwY;
zLLEvI7z6D}k$SH@JIy?6xHbrZ<Ur&yIq)ag9YATD8y$-m5Ru15`P=7IJ+UJ2Im*jz
zTky=T5VOiplC3(p%t`$(3(Xp!Iq^s`Tff4%?^MaKLS~}c{!AWs#!B`G(9)Z!qezw8
zs7(o!zo(faentPD<>7z(8q`tw0b$_*)u*wvZ{D~-2cASOE>)l=&uv|ol&;br^|26M
ziaV3<kLcv(oWlbklG3MLfIma=>;BRdMCQZ}5E&t==QB1}jZxz!g?ywDC~7_QMTy*H
zA5K^q>s#(aS*iRe8dPBQP8VaNzlC^N2hR=I%A{Rw8_auStUS#wt=-2lZRef*-#HP#
z{mZt6O$;vk<IKs9rQ)VsXfZp<)b{;C-S(tZ%c%+x&x_XIGj-mlw>><~%*F@%+=r33
zK)Yi`7im}n_?V-&1lakxPKJ_qnx3<X2T3ze-ggUlc7?opEt+&@>g6O|hNu^EgiFhO
zyOv1juNjV^vxV37Q2a)_;aySrGcBmI{NXIk!JBYh7n1jet2@a9NG3#uqt0QAX#d1H
z)0%||&Q+u&8vd)7-Z{G$ICS5KY3U#BjC1xipqUX7COZw@nQ=0#c3h1uDX9zkpXLer
zsF{VFn4?zK?Sql&v`7Y*(^}Wj<wEb3eZQFK@GZBi6I<}Z!2&~ivUCbq*;|L_tFH{$
zj2WCsrP147)_6GCe$#?^=Z-_RV1StsnB!k|m{r(o6SLxds_^i5FyKVIZL*6zS<1z-
znN8MoJw9{SP3ez2bVoZY-w|Km)h~+!AC;E|zaCyp9scfYY7?mCny9J#+Oh1?%Hag7
zKFr^29pq=utqyY?(hac?{e77P$Dwb;aI)nwNA(rRm`@%p)irl4Ur-;k)77la6iP+h
zSPfPgUfAVYXQpF%TE_vl(vx~t8U?&0)cGSl5RL$Y5t|<#zaCgg|8vo{eA&4$#>4uC
z3WlG0E}7e%H><!ZxvSSshJ%1MCI#3Bm#MU~VB`OG19`9zztZGV;3HVQ@|CeMR2?cH
z^Wyl>^vNWLQ%I0~+yhBU_z)w!-R20m2~~|l_p8+D@zl*D!%94D7<A|^&YB5{8yRO!
zpK2~lQPz5|VLw++tM}e8PUZ9pU=J^wD0VlN*yvGe8qTkPsp{HV9A*g^Qe-#`R2Ww!
zY~0g4_UtlXVn`1WlZt2~L8}FbNw?*MsiS0hQPhhYPk-ze>P!-@_MX%?Zcf3f*iUuz
ztd<RD@qF44J|2ey@ds~o#9`Dubu0ZqQ*Wi|n%z#*_`$Y{58~X*;IxbPn$Pl!&c?1c
zWkA#3&g*cez>vmZE4hW0P{ZZATjkUtWn(}V#uL$124{3?-JXsPpKw3<7svBF;R@_R
z@Yhk^b}gT|dXpG4+)gEDKF*r8glb5_s!d>ZyBjbj4z_C-&E{JUUmR-=!VPnIAzK%W
zGkw9ok-^H$ieL&9hc*qIY&pzP-506Z?BOx&c5vZnMFFy1m9`wi1BV+s5^--Zd5B*}
zZ@;G4=#p-dt3rp_K8{78$MGj6q5Ficd0zReZ72dg#cG=k#><H2>sJF-Bm|iKbAFdy
zbTH4pkM8&m;iVc}sbRT9EBb!|5#Y)dS*HK|<~zEcu_|2J>iaK&{|8AX^8bs#|C0Qt
zr2m!WKM<W6J>$lUgl#j1_>`e+WZEajx6baRuFNw1>G%G-!Z+!biwWl0a_O>Ngvg#t
zzfxa>NS>=)cpUhQJE=;U+SKV^)RtYWSH3*9sa(%D9@rZc&@bS<mDG_!kLiOPPy&)O
zA_ca~zN(I36xIp#Ja{=c`p#kGYmwn;)g2?bqg`WE5JJLE-W7>|H4seq4_hJ)u6Qr8
zg*Mt`xZ538Z5U9UFN|xs`1r`4Pni>26LY2eC`mj&Jvb*`CkP5hLXf-NxlAzUVM(8Z
zbc;ryqr1JS!mLm2y<|)qZ~^gwF>XY!$9wlmou}EFRbNnj?7bEn#m>DUE$v7axujw~
z$-%2H-=KL_COXQK12n<-fIuv?{k}3~!Cm6f*6=%-5%Se&@FZC#m$mi=vI%~II;Ib^
zy|vCS4ub{@NC#;r7@*!;lQX-F2|;&VU<^PzSHIk2ueH#st*5U5ChfdVasVymnV{Qn
zYPw_5)Sk!NL@%CC@X?_3Cd37~HZ$2I{zhD>|7fnjfC6_hCcosg>!g=dBSXkW6+W<&
zeZl!aIg5Kq2e%ox{z12Q-`}Rb9LJC|q#xO#`oex~D^XF@`^<qh$mba8^nCeLw-F^!
zCr&c;O<1qa)5_KCEWx{?CEM^|hE%sn4JfRL-$OW*k9I$FHikLa5c^zAS~P9=EPdNV
z%yM^A4YYTxBb=OIOAHqZH-AUgKVm8g0e$ZycPw(WD^7C6duUr@k)cRZh@iyYM0wjj
zM+ftlt<#>rx_KKPlYb>7|2hdN-M3>m9<VaTqMfL=QgW4eJ7g94l{^u7pnZ4@<maEa
ziVJr`Mtaljy<OcQd`sQ~@!PKw)3PttsQ8727lpxMDO+61-@r@;5r_%sq#g+jW6_8A
zP97G~>0NxJGpU;a>KyY25(`u3wm?zrFhcFWU3xKE?WLss-Oj=#8<jge!F)cI_F=}Q
z*4F&+NVA7nBVF>GP%Gsm20D42Z8=r`s}10wSy|jKr|>el@SMBn;57$!!uy&)=Hh*_
zL+gUQOszdt@#@aFzVYo|gyOwgr%CLYb~o`LScrp)!Qs0dZ$YITUN%J~_gTj)*oOm%
z5CBGRbfzzzemp&VplCd%Oye!$%9(r`YO{fOgJh>wNs^P=N!qnQGD=aIzwV-FGd_2N
z{6cJ{bu$-HZDx7>WW5tBRocig`w;~&Rg-O>rFmn%Cfj3}GE^ytM)h>N%YS6<)#KzM
zrv9Om34N=!f-RYm?+^=tJ@s|esu5q$iiD^)=Pp32P&$zfw<EH(H{^85kgOTEqVdc^
z?9I-GyC{T;Yvtkx7e7fa9Px^SLbdCI8(YN=n-{VlJ@oT_U@QwIBKEB}tW)m%>8h1`
z3vj=lc=93<f2pQ=RWr0nBtqKsCWehg(^Zf6h^tx@_Zr%HVg5fMKbC>qHoHo^Mb0i+
z0mc{0=z;VR%3s)xoT?HFYvnK(w;o5<1&_xcq+$cjWMbkCPj;}Yy_urDkBBju_nLE1
z9DB;_zW#0OHh{XPjMZzo-`>_J*PXmkX-o&IF5bCi4&Gl!zY_pPCKx@i2eZ4^Q3O_2
zuCv7#+ie0Q;`!RN1HzdVH6O)txYTZ{pWLN}xw)2ATnhpULIY-4k<^PV{TZN4*YxkQ
ze>R!0HZwj9qdVvD&WRUOhm2GA*RthV(cUvBCnUgp06(C^43YJ+Io*B%-07TK*~aUf
zJhrq)UYXJy$DMy+mu>yC)vBeoNnZ7kW-B(^2$wyaJ7Qz;>?>6dp-o7Y|HpnZgm%3A
zvXkB8JdGAvxcACVqN7WMkEe?>ule_~tQ%UafPMpfPe1uqpO<vrUVgmIH3b==<T5*d
z?x|r#8@2m+`i@;(55m)ade%cLk&A^#?%Gt*$s4<Z2w>PjAKvhl!(nIU)pZ_aHalg=
z#VMm!AR^+rWN8~bR4LSfv~fI*ACMvd@?>~ZLT3>UyFDYU;W|sjl_P&gYJi$xI5FMn
z!?Y<O$DX{Ih{L1LF#lL=bA@$%)5$9t7w2!@#qM8KrWziH9J=qzAYquSEH|!WJv7o(
z0q!yKC$6%xOnz`|dvaeT6}Jbt*5}i&;2*vjpRe5R*K+XnZB^kEL&k|8_w~v6VoQ7O
zb937xJAfN%IV@p9E8Vq3u<h==cmpZufvN0gN*!s+?4y2IXE(de$C;qzS?q5&@_lQt
zvZMf*@hF_e_jpT3({B7IQ*FZ!?Cac?yJz_X&{0SHxFsNV_vVa^5}#&6pOxh(X!mHe
zSkmT4C&@y#+I{xxHn6$lO{xb9Rh>7-wL$`hc;s+EUk{vP<?<Xad05OVmL-Pgz9Z@+
z(uy42@^!fMN$2aU$DafaBb<*$xO6zb#70%JqnF*5V=&txJ5B(IKtvV1D&?MF#khY5
zM$mh`fD5U((DmhYtNBRChzLH@cnM#c`%%rz2WA7&Qlo_aE7u2XK#K<GL{X+1W8Ids
z|1Cz0sf^HVIg`nN_y=F?ovk$P@%~y!(I1F^KsHh1ZhQ!{Yx(+7JyJUNW61J8IqUT^
zN(x{hpwo^|XSr$Az|S|D9`5)7H;T(O5e;(!-i{9>)_^PLh!n)s+K*npK^tu*@849k
zXV1QW^~QadKW@<Qj|CMp3#AV*LmXtuLaLJM_B@8)q%xO&wayQVi^>;eh<T#yv0but
z?Pterj~DNlH!}Xn-i+ixl?{`XrNVwZ*f*?q51!h6)<$y>m^Yqh9nZ`B;ls+xF!YM|
zOcTllwj?5+-QXp1%!;XI5c_An#T8BWOYM!}vga94D?!f>bF~6^nY3dqO5s|-UE%IK
zC;i$=s-d-PYjzXi<~M(pPJ6lRDK7i|J($z+gzbEFYSS^_xI;JP5`!;9`@6Y?gyn9|
zX543oHZj4pFqWZPW2uoi0luFU2;d=BmrU!1`ey$OF|u)dDz?YCMMdv3FQ+dV1>N$P
z!SA_t!X7Hu?r(rDB5`laEx#(~+<^iFR5>+b-STRQ+l7ohJWi25dX)LzeOy|xN9%gI
zPswgp??i9%GS}I9enz$%7s!9w8B28mx0N7(f9K>X$O1JM+RmJvQ-CE5oto>Os^F9<
z@pj19VbSMn_p_Ko3WH8gnIL3Y?L9gy;bb?L#sEmst5{3*ZQfW%P{V4Z+>w0Gcbuy{
z=8w<E<MQKI$^u{~$MNg|0jhep|E|IVqztYK1y-$*rwa*qp3ZtSlJTxC953r8=Ld;f
z68aoWTC^oBsv+=+T7S#afUU6yIshnj)v!QNIu8JC_ygB<WmMpX-o>;0$ea3ny?&&+
zWkCmF6QZRG1usDDnZx<NOqBlUv{My%a|m2+?S0h0`b%d(c!e__WB@b$5vHWQ^I`G<
zf^lK8RCu^8o?o)B8|b&2t=A~u9-yo-7gZo(Bj0cHrHHyw+81O@-Q`KliOKU`l7j_@
zUF$xVnp{NEH3K>&=+%jH+x*BI`u5X7_AEa;^$C+HIZT2Bq6*JeAsTYWEVPgLm4S>i
za3#|oyq@sK`V`5f@zxh2%XM0&p-0DGj_QZz41M@rKaZ+ku##?+?x|#TBtyJlSNK}C
zp&jY_sOSw8f_)E5_-M~NHy;jqw|eFh-{$B@!}CMjnd6{e3&+6&9QgaG*pXIaSI@T@
zwVV!em$KDFT4c6?Hy6O1(){}$95k(-#911JZ_S>9Af*}dr;L(7&AHk2w7r&Q>e$=L
zRv~-z!>>ePgR#!j4MLclZsQ?v)na|}%H{FprXaicKRmD=ezr3|W&sqD^3vAuU_(dF
z$Yv|Fa{GCYQvSx1O3nmq7nw@d>SG6$SvUcq5K&1RoDOrzU++=Hyx;3*7s#~CD^Vfe
z1xc@|0q3~0cx|&(mJmLHV&nTRJr%Hny-<Mt<A)#doJ<a_=k!EhNEmUWSH!*qHcs|i
zzTFwR*U>h273AKUO@er(86pG*6-syMMNn@94BQO!BiR8RWZJW=J>Q8dkACSAVz3n{
z11Gr>1#Q0@uX4lp=&Br+{e4n3eJ(1%!O~h#)$|77u&*cD!byHWfp$v>vUSTo^AkkE
zy#LxvREbQ1?CtGvpXD$$LO6}?Vv~?lt;s=(_H!<lyP~fE<C!OV^#TYE+HsK=;-==>
z%q}teN@OJVWZ6<DKxZ^PzNp#6Scv}e@az~|oVZR4v;clc+0ppnC4@gs5mlGE*eQRs
zgtr~Nk{g$=+~ZfJWkXVM+BGXg__<i$rQmcs^-}*?g7aE*&NWn6!X0YrKKwul1NUi{
zI?R1S83i<R4Z|5pk;j|I{&nwo+x=eKKWj*j3^2Xs6QR6h6^TuF34n1jgPvXuKzcte
zrH4%fKV4mR<KiPgwa9fbOZK%wlDyaRjIoTM@Y?jEvxq^0%X6Q37v)cRyyIlKTM~pm
z_p&!GyP8yForYoM&Ea{KM988C+1C*14;TGf1%k}k-9-$Sr#4A_*LgNd2%lm^bd+Oa
zva-ZBJb>jFX<#bvK#k6}OC=~=PI}VM%D-Fu@H4WX9{X+4v;!^d8>p^mQ#iZFjQQD!
z*h?bEP+-W(gZW4hKRYRqmm?0eUcbqYzK~lGgRP~O=Q?S@E0K^WY*tTpewbIgkexa5
zUHSF2!w>pya+lWkIrFz}Uzjg-KR@LatQg);9yC#OCbGAz#U$)ke(1&W>Dy=SL$u3Y
zcpNqj@`tkd7jK6XHd~yziT^>J+yVY#N4pl*Ll3s0PEx>nmfoaF^^E5FLWHCtV(t!`
zGmo#?)XUxjtcR{i15sZ8MLU+FF3yn@XpL5UvhRptG1q-c2&b^31w>Hs`j`zILjxxU
zfmutQVRk@%W}^5=Y5T#$FWN;07P?*izfc@3k1gMkx0TS8Q)Z<4ijG}*Tq6mreysEP
zq@0;DDhmauR~pt;`}<vG?2Na4W)cK$e;x{ymmKUp_&luYQLX+y8aUbH_78r?Ov}2u
zp2P>?WCtsTg3^=s(vurt!nbQfxn#I`<tqc8FG`IJ9C2-Z(k#p>J9TI#Jjajqu;uEp
zZI?-{!f?t&<2|`==282JU~XfN`<<7?Jofvc2QZrzG`{Mbv635;A7=l|D=q3gP{5Gs
zgV+9i>5@^l%ucNDt~~!2y@!77#d6sPK#T5G%ziqU71-nM*<ps%R50t>yX1Go0SxGq
zWj~(H0GjXD2F9<jQC>QoF$}HGy>Pj27IFItpwF?#by8-)bnDfbiAU%_n8vI5hE47z
zLfZN92e{i)Yuz3%LSE`1{Sd@=E;X<7$`%>uNENlpz=8EGGXA*{`ALD-_WRAgO1`_*
z#ii`_Ti+hfd@jnDISc%4<z~{$gU`u_-&3^$4AN1}eycWz!WoSsN}+6jkeF8=zd3<p
zGQbeyZO~2-OcCY1?IbviEU{85M-{0(Z&R=GhNwcN%4#GxHKyvUEt!5sy>P>S()h;%
zs}MAgrzm1QRLBL*mm>3CHUL|y9=}dz*PAj`(nOS6F%}j#g%^9(<i3pDW{#kDEWGCp
z#S)%reIG&v*sS?$>4P|I`^*f;;mL-9h0AV?@n`H0>6bFzmJ?{L6CYlYms>X1C)?)7
z0Wv`L+v<tf_AGM{ZC4cAOvs>-Y~ubP1r@0Q(;uf!o#RPNh1pTAd@MfzY`}x{C<NT#
zBLvQCboR3>pDdkil~_0mOYvVAgKIqg7VG>Qyyw5?53ui_j%_+oE_14#5^PP)K9%%&
z*frtOV-2nlI~ZILzoUq{{!|pu-CK;u*MIv$7A5hY*o-lFZ-gc~ixV)lKkyZ6bNmBT
zt3dt(Q!W-+@vBZ5V4O>@u1Ey-=$@}vx;jMz%;?C<hrK3A2>26`?a6@}0*W=D$}7@P
z1(>$5ya|LKe_qZ{(zbUwe1;ZU+5T4B|7s$|WdI;!fcx*t09L^H7O;Zra`A9U7JM=(
z{Bx)MaN{f%e`<@8Go3#!&kA1vh2mntpVS_*13L`M(_OOjz7R7gK7Xa@W7q94H)zuj
zN#_)^u|K-yI(`o^H0;I4G_U>sISLC{a^u<T6<`BA7JM=5Ns9B$l1|`mUr`?KC3Wzn
zfbMWFQ@ssYxCO+7it9kRL2#erAz8bha);kwex-n81Sjx2av`@|e#!pKk*z&KV$9^Y
z*7sAiK!Th-6;@FTNakq19;`bBB!7ES3UhB|QbYxonBK==XhyNH9F<6%C=&vDy6bx*
z+Fp)K^&Xk!c#%l;$|~b+RH4qE6P(N_EVfgG0uY>FlUwZLPe4;c^y*nH*mXF2*|i5K
ztDP6W*5%Fwz1NstY(Ez-(tP`JR+p}Q&47RqZot<AeR$`8upFC!%{y#ESa8@i+b7xB
zv)IyRjRV|9lW&<Y%3vm!w7y5sf(J!-R+IwFyDiiMsSeaJA`DAdbXN0gM}*IEH50Ho
zPBQ^Kqr2-|^DaO-Wa3^i@G*WOw&_&Kb@26p80S~btH*W%Sm;7SvV0*kxfo3N0%cs{
z0q}M}TrGD>H$$1LSk?)J+X&#W=FEHx03N{S@YrzWf&);nTFz-)08~aLHzP#mUTL?D
zP-QP3h6A{GkGUT7ITib%LZ`xi4wiupTrCNS;hVg5V`*u%1y4n61Dj{lkM&h`H|~!l
z2Ivov=j&+#3Osd~uDzAoxC1Ni<A&GGW=iD)l^g-)7U7fg?(WE(C}0!Hiujix_@MY=
zR^t@s$KzUUZY<EI8)AWM0B_o^CodKi<;ZHCKFtsTTMhXp>$YP`Mwyd&E)RIj<}dDJ
z^Zfmi5T4V0TebrfE7QQlU0{2N!?O;+tBsmV8tlmZ&?5~4i<4QZuMoyW><>T#C<<F>
zb_&of-2}wdaV}xAQo!Jq)~>fx>;6e4uo=4cr23EKV-vA2pr+=F)izI(*)Yz?HXZ7q
znCK!+)xhEYR6KCB&yiv-F@U3KgB&&jbru&{OJ$#__HSjn%kSn#3L)HT0BuMx#RXuX
z_0LfCz|`AS;0?&m>f4MHvo>^37Q`Kg*aP6Zxb{5JPE1KbH_5{1EBl+N9}O&-00na=
z32c>eG!7()>IS-OKMjH!fX9K({vH6}O&x>1A+v(V#=_BRswl_sEs^rMxk?HUb-T#`
zx_@k7_ZGf-)pG6TJiS9VHV>a7Anj%@ZD_-?#Y*4DP#`ND;40C30toT7{WN&VRjeVw
z<rq=K>;7O10#d=$4VqyD>~#sW!9Vs|yCC<97~RzE>Bq_b<Qf5j$d`k~E3aLpQUW~F
z){Q)X!CfwV=hn{Jv#ymkMPM+l+Nqgv-EQ+p6(|iFm#My<ixQvJ+yFj5<LLScsE3;a
zAL`U0i<2$N11J|P${#W$PYwc=1Yi<mMk!?*6ZC*1y$U`X_&Qd8YvN!e$9Ct3)6B1+
zVc2;U$N9!M^W+t9?2l=(@Rkfi<TwPDzNJK_s)()z?J(&j4>OJiu#O%MqTvZ7XZ;vM
zUZhxnvwNA}eV_}xCxKJi%}hoH4%)a1dP?m}F#7;K;i(`SB6Ip7*!fsIx~4jB)5<3R
zGuF*UVDJJM`KfO65qNuXLJR%IUA-Qf7$~0R?B?2(C_sL3ShLbt*JHqdtXquOtN>p6
zNCLNT{1q-vuC{9nVy53sH(2pwR-q>WxKA2yC@TWM0>vD3T)U+S{A><s#8j`pW>+#B
z_JOyN@PY98zVvXw)JfxqnL5wY#?8SEn9J9oBd_9C@1T!Ut9_F8J>=d>Ef?vvZBsjm
zoP-~N%Yjvjt!l^flOD44rk8I%_N38fFt_{$r{&Ip?$nzmC7XzE#WKM4;~WO6L@6~4
z0?)EhwyyGwrw%BS%mb9b{T0VVn8CNQKps%TWEbi3S?SsceFE@MXaQL&3=!H`*aYTT
z*iS7XMXs%OJ8kZ9SrA7KHe46w>jP7JY_|7?)rK{UV%F(5To#LVnpB{U28aFv`d8J%
z*f<iAWtArti7@+T2apja)AtwSX&;;wHk2w>hi`#7r^=lHfoCh_`7c~U%|-!v@L&yv
zQMmz+5*l6dfvZ@Ne3so)@(kLHq~&3DOl48$a3hjEWw9?qzn75a)GxH$jmChXE9=8<
zO#w14Ls!%CZNE0*9)0CpX?&=+U0QHP^LHZM2y-X`ApJl)+;?d5zG~|k@Rwwgh%x7I
z2}7AMWTkMmsjK<n??dIEbBH@1<X|02v5j__nSvjz${xg^(j2W_mEt~*+O4<$8p2)I
z$aR=rZEuJj5U$p|*`lkUcbWAteR`hK<s%NHL2Qa>5BoBvy=~T1<-)F|X2!>R@9pO5
zuK7=ox$4k?x<riuYL9A!kc0POmc-|?6LEg>@i~;qd5H*qex;Av!C*tr12OiS*YiQQ
zNpPP_Q;^J&51_mP`Y(!1v9$J*iM7v(0>lC*Lw9F71{Yc>A|>jK`kcemd#SieVOFgZ
zn~8SY$1yK*8G4+`Y_8)EZ1)ztC8l#!+9Mn4IXPI^2?jhO?oTdlHPNg19vXmkkR`m6
zhr+^fJO%Pu_A1NWAET1C+^(Ia$YiJpCMqfzZ6<T(_v*Rox^k~e&T4qrvv>s_<k%R{
zD7CydK{aMOuAb-vKK6YkCD3K#2I$?JFO3j2JgQIG9G<Fmw}dJ&Y_+=?D8aBw>?qvU
zPy&QIHXh{>H(erC?Wd<^YlS)A(+cAUUUr;>&80cxNB|<7II6^C>Mv&JRMyD^-gf?S
z_AiuY-WowvXLq#QMMfjSQU|>bfsysGyh%huuitLIwB~X7BS%<3Mcyz_k6!ltI4-#{
zG_M6GuFLF(=A!gd&%WRKG`dqU7%-p2g>F{bPJHb_H1zlZugru>ebg9mHSxB4uz{u2
z4}q>_EEqLICidC7cV_Wk3!F3`##CA{?Tu*FCvUU&kRCM&7+y_~eW|tQEtu4Ks{nX-
zRx22eK{j@q*q>Vy<O8VCROW=D9f2Q&DGc!TMtb#2Z=N>Wp_;E{&i#Nb6=%tlJmQ>7
z9*{{YZ=6}Fbu}+{pdq9m+Ae%GSIWF<BSJq>u6VHw78#=2K$of&P#_R*)4N2`?yK$L
zv%Iphr%|F%fqC-x0TXv`b5gZf=EuK0K0W?StHfGH`DDN78YU~t=$)r7<N;nl*`s<{
z_PoXTP9CD_;Q?{z$upLQ#zwx{F3P<|&rEpK#Laq;H#!tlHW#CYs-N;kr4-peSFkmD
zk+rT36kNcgW}NILysX3%Fu)Lte?SzQk4J3g7u(RS%&47s3|$i?X*{cBV=Zn%w5Sm?
zkC%LRWY6}AgwWly&rlfj{8YVy51!^3aGI+?GzU&2n<V=2gNbRHhpy{GO7d+x+lI$P
z_ajrN&b?fh8mcK#FO#ql6}w0wF@pAn_-JnzF@Om${Ry;c#{@Ohj>$@2hz(9Dy56QF
zN9e1mKZ{Rz6@GntR3dr`(a_-+t*aHtoGKLQyQ|AWwttNCCodQTlRZGYDGN6G2Xd~h
zUFCI{M@f*Q5gHlb4M(D<?ep@}^EP*{TRojO@$=nm)m+DlioVieCQp2`FKjGA9bFQN
z(K&g*BMJQc2<rs~+0$>9POd#6#FZX8p9)S2hioT=&h`vzWxh^*^TIIOBFGi9B<)pI
z(HsvG+&F#>$di--lcxxs@+eqyr7U<n0a_;KU6h?~)txt1)`wMM2aF5dx8Jy^@9s%J
zn;_uJ$U_@MZM)fXSZ9}sUg{s)vAjc;#14psj6it?KU<a*>AkQwZ!G*e9b2Exdu%@~
zwue;wtG2Ght(dy!D-r9#3B5EYf=^vD?M0(~xc=JAO@P3?dFSiq=f}4Wbk!ZNV|L45
zW8^vj{&kQk`{VD=P4%q05cUqw#v{^a5WT^(*0pgOg$zVnJGE=_kK>Yct(JOUvNc|R
z$^_5>5Z0!Eq<2|9e?u;?%ukaW`zc3E0PkyWa4uJO#qW1aQz?V??S9#jO1*V=M>}M%
zieL>yeViv#OdV8`vo`~dgLiqH2K>_v;8l~FR9UJ+4VLrB*G*Wh`(16*+wKh?xB?>e
zJ$sXUxnX+=h>+$8oB-cN{T;$5A$+8mK(1o1%h8Pj8k&b4C2u1&;LGG0vjcfS%{B6Y
zHaa@LA4_r$LJoluMxcq;E=Se&C#%k}YWI%4Oc|NDyTK+T@-SY)Pi((AH`U^J_f_vS
zZ-h(@Yps9xxHDwY>F7Y!VfwuXQ@DeBn6HU`5NPwaGS##zGzx{S9(qgY06bA+F5^%g
z{m$KB9$%aI$kt7$4Z(GrEvcAktYS`|9(Qo%m$V%PUb951AuL21IgLJjIY9d{I?Rp_
z{Yh{sFmMqFa6qc0BD_xzdillNN?&0N7R<$*Ub_W3Kd%~&^9>hW=fJo2G_!KGo|r+t
z3?L1^{)8tL*c;&Ip%F0{oI)nn1-cE(XKRa?#&>fEe5G@Ij;L|xE0|@(C$=|_<(t0J
z^rD}q`kXJ~E<E_Hrv$8h{|-n(OW^>axc0T$fofp3Y!iG~w9A(0%M<Y$LP?96RIynq
z-}v=b?>GCigiQ}%RLzp3LN6&Mg4vrESjU|PnEDeixuvX_)Jm!IX!4)ou_J%0o^ru@
zzk`i@*0X-tdnN|(c)#Rt=h5_T!>OZyF;-!$7zcg8%!6AaeB(y01BKng>t!A)4n{{B
zwcallA=bZhzm8=Y&$b2t9a9RG?W<ZtK>5LhJWaQ#tQt3MdDL_JzRMUG|0M|Fc6lnQ
zf|wv8s>(zKfG5zWLxgryk#w71B1KX~Pil*sqIayxqzCrL&Z*<EFHo!H$y}d%%hZ9C
zO~GGD?(M6`tyJI*79hgp1?pk4bO#HPxZR<bqgPudOAOCOIi4R?cKiG4=4Q-Hp>BRh
zs841wP*pGkJL)_+rt)+B7WthVP7zKG{Nk>!yRQPY+*$LmfVr-)YBje~qPRbDsI<9b
zQ6r2^Gjy)i`8+Njo4I<kr_XI;^v6$=Hh8R)EEeE1-4*42yn535@E<2&)Z%2m!-+5*
zz3Oy;lT4-l)Ul0a`qvlJ!_C>M+bCHa_D=hFb|Ah+S<a;0?95nn0y~FrP?$KMPL$^(
z(xscGyrtFSZXHLv2sr6Q9FPNVu*wFT5cc-dgNaCyb91(eUf~`fBVkt&<hnr`>m~zK
z3~#_xmf-$DY`X{ZIJNijnX^StE$Lgtv$N(9;>O8b@q`Gy+<}W4U{Zq%fV6RMM_451
z&Ql!V<+|aK2IuDE{JTKsHXBe5koTRjZ|7=FF=t5d)hbCNP_kH*QyN4j8j+ZJ;7quV
zidF!#ipL7Kp<4pFNDh`{`7O!=gYy8g1k~w~a>2i*c?CtAbP+u>zcVSFJ8+r?{A(ZU
zGao*%4S(6?!gRYg(e}pI<Y_Ii9mw}TEXFS=iCGd}>`~e6<+AbB=_)W%i<g|NU6iw1
z7PG>ITC9~P3{gkSGC=ntBF6Cd3Vz#Ass?Zd?j)S-q^mE=0sw~rV6tjJ=42tLQ6#eL
z=$X)3Z?r?B&++DaThxsmxqCb=!+eH}-ZN~Wt%~#=cfEloE<x~XWx0Fi_nkGkE>FPQ
z-Ing+vDj?jgfM(@?AD%vX`x5BGRk$6psDQZP5P=QAI_HXhXW9y18_NEK4X9Zv`Ob)
z<|a9!Hoyz~(<AZxw^gDir(crxxw^4KD7P_B{HQfo^L1-m3E(|!Fklt+AjZ(+sIRXd
zD_~!CIo3I%#q;!Ny|;{M9kHM8+2qs|dsx_zrP3hXevy7K8m@E{Ff5a-UT{$9D*nRj
zoU-TzNU$FRj8`wf5?#SsGeyZp-~4DY1dmq|!VF9Hm;)*!;EgOVP0f=J9^DIT;6O;n
z$j1oDO*T^4DHCXof`sspJWBM@QwL6?TU=VMrI-@Fy+_<W`|4gDwNk#dyP4PL#qT!&
z7+Db)g!2L&FI6RaplJ9X<vpzMS~)1#(Se(9M-MQHmq?4|>p3ISBNKuRRt8k%glQu6
zUmz|6<2}n{5N6TiG{6O3qSyBI9oRkUsJI2-p25cO;#tVzcm8fbIHJ@urrzTZd8fp(
z$JuwUGu*%eBbZa90<zG^D(ymOc)jaGDaS@C4fNamI%U6we#&4*v`@djRSzmc$61sS
zxS@M=FYo`f_vPVGx8MKGm<l0l))-leqAU?(nX*mRlGGC+OY+DTvYU~zWtpNR`<7@?
zJ!Oe8l`v!pl{K=5nCycwzW19f&+qg3UDx;b=kL1oSC?zv_kGT}U+3KSea?N(@$bMp
zg9E$9>VbXy4oNOvS|~Q=^;1Xwk>=xmmB-TOp;t&_C>xJaqgf>=)lA$YLtfI6H#!8e
zwN?v=gNvrNhZ%tN2jW%txRito)Mv*t(cL&6dn-`IsFQ6ezs$$e>o7NVvLQ&31Mfeu
zawa>0o^;U;l)nWy0cP5ahz;Px7cK9ERVyB8Pb~t$g}}Zqx65me#aE?L-ElbE&PH(O
zgCshyD1xxfACPypopW?MF{Lqz(8xYQHA{{8bfX>jLVq4(%|0*z>Kq7-|3!Go*?%F~
z5D11ZVp6WmNj)UwqWd+zqwYYJUqs?~AYJ~>KK~P>Y;6}Z=TX+FOGtXFn{0_yt1L!2
zumvTaYu}Z1a}v5YRf>N;)g&)4qbP88DhU_&`8i@$+=ZGJCH@AK+}Qe~aN{@9^%F&}
zz0u~HkP9fgr=@0^HdbhGqG9$Rcd8W|uxMBFCV)MaHvwFO9o9LV+7<Pwyg54Ag`w-w
z$ZT~Hxd;cn7jF9PXy@DQGsv9I(c$4{7$PDJJ~;4T5Ns>5kR{|R6uP~rqjJe#$7#kn
z1a_M1I4?K;u(^+=1Lch@p(@p@#4i7d>-Uc`;Ik{hQ5Y`80TV`MyZKQ%6RXsSuXbXJ
zRht}UUL9i#Xur{+Tb_S!STzXOZ}x3P!oc9%hc>^aqA|m;86`{^?DRd0A8s(Ezq_8T
zFvSO}_RhNVFSLetIH9hGs4vtEq`N=3m~h+0z4w4=`=yS{Kj-7o@U;cFm$IiyzWK~$
zc3;{vU43CdlNL@ng`}h4%$z^pc^5b>L8Sp!ygF@!>k^8tx{My!tGh25<m2S8HAb47
zRC~ei24vo4hkVm)Y0>+ywb>+o_@w4}`lo=yZanx<(SLptul<HvjoJw~aX3)ZKq)v2
zzf>hJB7qPk@3B+y1Ofqq_uiN9Yh^$wE($I%pqFC_%PS~$6RC~|uOnJtIq96FFOYqP
z5bc}1%!1LlYy2j|-F%51DA$$8kY2*SOlVqoH{|_RDM@RwOr6VQj)G5q*e%7B$bgyE
zg1n0%8PrIZju_p>qx*B*M38NYl4|eyTugdxTP+v+wR+M$%_6+*oecYj6;*grWNj=u
zW0BJ3Po7Joc4y#9Dg9F)zKyB9uOaAz>&hzg%%{qjSz*-#gW*RFP}pN1daqG`;d4Kv
zira#DN!soc9o!Ym#X{$K#&1vg{)_qGQw+OD<XG{gW}NQmKqOfk9bt7;Y%<f0ds-tp
zjN@~&8hh{suY!T%UhSLeZoM~LwUS!;jJlN2XxZm3wZKFew;P|1rzAnr1FtOb`{<W?
zGzGnAW1tw#Kh-+nP9IVn1iA4bm^v#40I|wCivHg3G&MR{b=m0&hWkoLE%aNneMaV*
z=pC2)LvfsEs6dR>tq4Bd_Ou=3;NRvTBv4r)zzVc-o2SYhkp0A`O#Wxr0vZFP{pcsa
zd()}7)Cs4Z!l#73*du}ZNUyBo-}?R0MK-hQ0pz!zm6C8wAf)fxNj>5}T4T(5)kztc
z-~V%x)wsi6ZhT>2Dvs%<f0lxC4TkcvC~Go4|1FUdVV1aVE5?wBk>CX;h_uzOqQX0Q
zb<kbccffe%Ve>U#5u$Ul5Dr%i!;YigLN|xN+o?i{@6)SC6`4Du1y^@rX;Dv34289s
zzURBCVC@g+?ze<P&hiy#uB{H$j0-Niht$3^i{4boyhMrm4Y(bWMf%i`!53T#hKm8(
z2c*TI=N^#;Y3W&Sa$iZ0{RLdBQMcFT0%%1(j-L(3#Tif2V-EYbct%IjGlU5itMcgp
z^WFztKG}fF<30ZjumhZ`aN~IW>1#r8@OMbaN86;*0c~*~p0TltAhTa6Um2ceFs-zU
zS<`V3=x4Xg;CJ0vzvwkQW5XLqq_E*FD9=X)*2j>6PnM_t^Wdfh0`g-6E!!sE1mv?Z
zh}VkAT^q$E|Nk-yxUHkl0~txMb_8KwvEd^>tpp_id96)6Fd4WpW8o(t8lsaB{{3If
zpXf0XS`GA=i<!KH&d^nQBODA?regiJ`0Xm=s%5FszDd{E#frDqO^0}7)|%(-F5ouv
zFjQ5&G7AofZY$}<^rvk0<(s`!DE+OmO9NDp^c^|kq=lVIfaDs9>o?~H*~=K?Yatn9
z4kDX@cy{-52K9iZVubCf_C0W8-9{0lQoIrn%?@jfzw9nvXoA%fC>TE)J}F1ukECn<
z2As+fg0O_z)+?{_!46D%C(jsr7Q6{!i`oT)Y@;rEVNvOe?bk()ViuT0_D?o^xa-Ba
zmq5I%tg)YOI~eGnP-GyWfxFOFg{>ey?KaRZMzG%${Q|&%)?DTp6oJ|f!pE{KH|Q}z
zVtKxI88+4=@7&P5z%a+5RI34vKH3=&AclS=QSlg5<Jge<w8=k;{?Pe{S>*iuECe+W
zK^rXk2p%?UTHW&-5YYt3NNv^ZSe&i-Ech$Lc+NvYPb~Pq1JC=K!u?3zoyQSbvQ=V&
z;D9LYhxl_qEQd&z=mb*-BY_ZQMkJEKY_Gun3k{<B^%rw0bc8IYH!V|zRUf0@hrFjG
zJ%I+OYy-!AFbJNVe-9iu1bXg+f>Q_xU#E?RMUlMm&}9S+GMszag#!5;__SY4jsfzI
zv%+#~-NJWn;x?}J1$0_vEL>$Y&N$LncRz^Hu8Gv>s9*Vh$S57TanHqQRbqD0dMfx$
z+<pv!jHPjr*eauO)?dyjZxWVoUK_s}w8Mt5J@xm4lu8pV>2BT|w250Wg+qX&xDQgR
zjAnCYrZk=05LVNfx~|_R!7t<^tp++cRwb6u$G&?Lw-PTeL89k$US(7wn`b7@aFei7
z{+<mnf{w+P5C^+cRwY&=5burL#BDe;gv4xDy)9@!251W!8;Y<6jV-IOWi_@ol#ShY
zYeU(z`)-{zw$2(`$53$S-a3YE-B7k}C|j3T=<*t{2cL}cqM1_z<Y{W1Io&$Fp3P*V
zxy$Tqt??hRC<p2T)n<G>N=0xgtNJzGn_yotYWTg|-3zhA%N+q~vVn}dzo1M3Bd(O#
zk?NI~!NOxd$iQ*&oXkLaPnR;m1-YE^8{q6OsRZTEk?(0abK-0hWUM`QE@rvxD9u7H
z0nVO3w|l4WWq6Zbwq=VFq90AYJV6F`X<L}}EluEL3r@3Wzb7HmQ+2s^mu2w+jnSoB
z*kEuQbS<8-L<g3z%r^b3QA6}A_7R_bKgZWg9K&Ra#EKy&)IvXwCi|q>iz5jp3!cdu
zXqJyIdzL|?3Ctd(DFy*u<wvqF3M085H}nDLu3MX9F)oXp{Z`LIieHy422)!9q}OFW
zNLLUxoZXZUd~4T`f&Wmv;3v?pw!J*D53qLp)ZsBkSS~t1Fcc8_$s%>T=#IYpXTcxj
zyE8!8$qm-V*?=7tWgtyUHt3;!bEij@LvbdTiY9Cz=ZnCH2nHnNlOVi4h{)PEUnisu
zt;!NNzB}UmQUN28U`UA?a>{pgeoLz+Fp`RH`X8pvIqVb>o}dm@dYGTh{s_E&l1p#v
zK`I1~GnEHW#uxg+8oogpCU7bg^4UR@HO<9Q7U$`ftbfqFCJNn*F7$N=P|-t=urXCj
z{l^(e3&F{eg3S{x4u&W1vFrSAsRbCy6JeB~#1NVN*zoCjEys9ZyhL)X1(~bCD7K;b
zfNr)rA}d~(_}rZyBNmpZ2E9Of#QW423wc_;=#`v6=Vf$L+#qL5d<>2{-h~kT(D4ta
zXhK*^Ct31*33s&jFQ<t)4gv<FLO$2`#`K)j)%5|-M)RvePfWF8N$=_)$I8lrBy3x%
z69i5+X+J4W{8E7UJ+<wlr_qKFF%lwcP!Ruc%?5g~(Zu7=Q7W?z1&%|oy1j<bmt&lG
zos28yd$DG-lhrNMX{E24qM}g`KXym?6@U9aLC$Y8t6m@Np`(<zt343EI8HA!6!Mq>
z%yPk-uJ}A8L1fwGC&TZGC#CXW<Hxo51f#LbBMgir^^fifV*?j*a=rqe@?kFj*dg$c
z<O?}!FBG4*`EBsK5^{PyjxPwo>Ayh8dmV!y|K<$3X?zIFfhBjF<%VIgx@TeGL+ZkU
z%TWZ9&IL7!P#@V9sM7ZCekDX!@i%L@7kJ=p3onxQJ+R8<Ght-Z{haX5B*;V74suu8
zy3bX0w-ZR^o)ctC6Ri`yZijCZ?fi->gD1$TY*>)@^uMOf1a0l$-9eH3>-L-sXqXWJ
zieswPFUNQUQVSEnnlYAD0}!}Bt3Zr{hrT3)tHboERTP+Mp!uYXIEs~4STsTRl0K@(
z>>{CNg;_0Qs#H9&?Ci@+`}@c>gvh|G>M^2X;8NfJ16}9PU24+whg+-mo5W-{JYhj1
zv86G_o`KXw4F<rS9}AHD;Dy@^oe2O-3_qHFrmsp~ArvQnAw~R}`ycC|8Qsh>DAZkb
zfE4I;sk@_p$|IRFxBOPmymwgv-ZY$j!(~zcE_-Kz@X`hfD=?KYbUlDPc{5GGxy*1M
zH^>5<t?`8WyGWD+6{8skuC{*4G12SmR(E&FL;|xYOfwxDNJ8~?FYg03$GBlY0N!No
zC=-MN!6#XmIiG6W>S*Ht@t>MComY^G$chyep@q!t<LCe%jsZ(Zp}3%CuhrW(KW1DT
z=D!jJhFK>{72f1|Yr5@=np(NCyAdqBYKfvIo|+$yT~@!Y-nIWc!DQSZRRjHBk<Pyf
z=`pxp?D*-EU!VE$HWsPVmJZJ1BZv{$!ob5-(p~NYhX6JQx~7#7w)<xM{zC%^!pIE`
zMD)8AhQ0cICm`~MK;dW_g=`d26<{Y+MX+yZWM3QRzd{@gvjK5>(l~tbAtCCj=C}MX
z>~iUZ(HjfF<v9pRo!lUC9^kS@rO=(8q&YHI84c1|vt%gZ-ZrbaT+~2|pNBt0ttbmU
zsjr?@kHnFw89A;cT~I|_{sb(1OZ`yl_bOY@PromO6c*Qb;mH8o7zzJBUf@lB^FR`R
z#+6b#q11B$610wnkKGl1Y;kp9*;8@T#&?FiquKB&k_&HFoWRb5z67CFg=Ln7H#weu
zyrcqwPz346NSeyf?=0o6KF_-x=u36_{)s4s(VJ%nTfwA2185JU$WG{lBA*sT4!r`a
zeDG_cA0E(F{k|FmAno?iK&XsG1~#c_AOALPLylQ4QJm*lw*9p7{6DwLqY1W>oomd<
z0MW1y1gX{?-u*hA!Y61Qr{x86;eIOP1r$I3A@|tNez~>oD3D*mHOsFKy%(w!e)?eB
zA0gUo+T9TSItbCR0XD4tISHkSBBNi9)8&vRujruUFU3G67+5`x^D?k?6*Lhg&V%1T
z(T!hUg)+{UiqI5<(x#tASC!rek_#I0X90;uUmyQTG`d?M{KsyF;cQPo&lA0|5(^-e
zAw-{f&xoKh$xyovt%+szJ8NI(8t4DV#04O%vT5RGp$sd3Z*2B{+M+tyNX`GoSG|gq
za$sZUO*2n0g6%vPcXAJO3V=*Mkh)fJ-d+0D6<hQOBh4Pnw0-)Wzi)y}KDl@Utc@hO
z6Rg$Qk(tUEC@kPce^4B}tAI>}AR9iSUl9x5?tv%=eu;s^kzrfg7K$qc+7v|1<Y*{l
z%D3}Q%)hx)W;+53N*w)<HL@kLvu*Dcn!Tw;`~HaHMGQbMhV6tVoqN=vboDv~l(1<$
zV>guL>;3~<Irl}$_Za8?;@Apr|Jif?zHY5$nO*)~h2aD5z!RE~p#YG2tn{ejso|a}
zC3Aa!L_f$l5Z`el)3G5a=1|!|P*{G1slt-w7p8o7mxef;J)K$}5GkKzF7~;*K^sRb
zi5aCi-W$~p^1ej<Ubc9&cR7`Nc{!b{p?g&2ZuAZO%X?L6<4}G??XkH6*WL^iRkkj;
zufBw^nDRDC&+Om~<yXVfyAMa~XwQz-#WkCRQb8&}&*#3u!o;t~B{O9n1oVOuwE1P8
zZ?46=73<lNL2kQ(xDY~=cwLqQ7JhuGp&~8tGL_8WN2R6drV;aPdXHiiEL;{+TB5Ma
zHF+&jLuC#zQ<mpuIz>(Wd>(Ot_fAobuMg<t=1c~FjxT;ouj=VkYiy27nNCSR39XBO
zovKWhR%)qI${7o5^Ks8vVoVkp>gV<zs`W^A0C`e*JEnu(&65we5lqmV%7hhzdV74=
z9-42%v)o%P)d~ukf)bG{jh>p?$wQ-uu8e0}uT+v<sWkSdM7)3ErWRUjRmu2ATc*~U
zVS(aVTeZek3LgEdZrfIoHBdSaKn$3Ot%7x{qWJ&1x*XI*Za48sI;J$c@GON>Z5{DA
zQ0D$K7rwFXB?nbX>S$1iU`f;qpUd|StyeyL_b$@?F7D|{o4b&G6ZgBWkC^|?#jO=a
z1ZvY>g=WX+W;!ZY)h<Qde~8wIQMH>cV_|Tx3_4ToJG5rTUMC01!2bH0pfLG_S*ury
zFcx=557j&<fpa>HOR?mI^beABniEs4ielN+ols?+RNB+k@jUw@4Iko~6@IAXd#$yt
z0~6Q1tKEJQ?L1OCS7PLJfZb)-DJLpPMI1SJ1Ak;RdaY9*4(c+9u)ShiH1+&U>K9{<
zD?eZ6FfSYIXI3{5K}sg=IeW~vwEcVEz>?qc3bA<QZhKJ}@6vgV)84mTP)_eZp_=;;
z0`LrEUgSzy?G@W=#)ElDZlxy?-+%{DzSHSShr@WW*p_V_@T8&X=NrE(;l<oOVvtHC
z$jOtxGHdlnl{r21kds#~aqpZT3ppj$zqCQ<Ea-Dc{kwm#zP6FO01WFtoqop#wO`6%
zx2q&KnQx_L9VDgKi9uiH)$AyK$qE0Ye6!;0>NPXsU3yX<>0Z#f`=jX9)Sf@}NI`8`
z(<83Ez4EXnRVf8rh|to5o>VdubN5fVLtKUjB?VM1#>OWmX$0&FBtW-BgTzHw`vsEA
zQGr{9)L9L8VwX}69Gw@pX~B0S260I1XA12?=^TDR=bOnWFF)rr!SU4KyO<A`@_G+1
zu%Ji6n6kd+M@RYnFyK{t-q_kvXTwq}5a=xb9)+rsHfi1Q@`aDM`3C<*b2{hL1VJlm
zngI)5gN2D1n^z(fX25Xvl;nYR%tC|K&!*q;NoKtkR+gPE7clGM@hI|YbmFT6uEFPj
zsBo-H9~3HXwvJ3xZqJFN5=iRt0>@^)faa^wwIc$4DIeMfKMc1`td=JRmFJMMcr_v)
zAK|&&)KmK*_CP(InxJ$gEZhDJmpR`1Vm?yZtCj%5$d1sUW0QB(h!15KERJKHm0W9o
z$5fqEnnG2X-Su*1OsZ)vS?f5QHozp%vh-o-QT^%6!?jY>`zdjBXNF3}47IyCy>t|*
z$HK~EQW#p+)g(OV_4Ih{c2sX?OgUn)c<^1%RH~qtwt7j4+*_`fCa0Y8(o_z1{lQmo
z6}tVZU(Ij3<hcincb)`-<JGe$6;BV(*A?%BPgV3LuhbfcR4eHE5xl9FL86n<URp_M
zuuCrgr=ax4GnESBk+Ih~jW@5_DLy*TR_60>MP-+TagLi5vHo|p^XhxW`XlOFv-Yb0
z>!&Pq4sG9aGv~Z6N7Jq`q!-GM1EKY(kL#zF)aRT>MBdyWz?uh>YEg$d!=T+I@#3%y
z=vZv@%h~Ws==8NnOLC;wt(6@I9BRyf!W_sBA38G>_)<<vz}T81Rp(HFOK)rh-E9Yh
zAJ?{DNbqs~^#?VKR>&G1udXW6*<{d<)dFdGjYU6kF|`lhA(foqVEnd6XEVKcVLAs`
zw!@U*Po}zsnY$V;4&C=aC+9%*@m;Sn7M1oeY_v23+h5y}BkYR&`myyo3Z9Q5%l_J?
zj!`-Su<mxEq5b86kKAhuhe?Zd#Xv9eU^wbyRJ|PS+kdkKbNc$-zX*UqT8?0!Y<*yN
z_urjVk#r~3E+1;$GZdizPj?ma;HNmH&<gTsK`eg9F8+Cuck6ga4iXh=9?U*D)U4e7
zrtJrER40eyM5jbR|K5pPF24cE8?8;Z?HI8`*3E~Vfj5z=zVzhE9NYV=wWE3LPqS*b
zdP$Dvv&u83%9Cb+f5dkI6aWQH)1Jp9_vm<{DwiDo0^*xlt}tMX_iQmY<R`ukIPiID
zT|;3^)1g6}j@K1QYW7<8S13+Wx8JIc?;d#frH%MKLE&xDu8)!K3v@|04q0wkKtJ9G
zYU<9iJc^Ym3gq_sxSp2q$^mqa+(2h)xCqiRf}^?c0k`$}R?KR{CFp4TKz>Kl9#)%!
zF9OwRwAjyPEL7yqF3xj8Jbd%&jr!za0qpzMJcO_0zuH$HX39E0S)?_*D{(;PkxHpt
z-}L@ngn@Tm?p9aE5B8Sg<@)A)YzlNWO_T{H%JuJ=|7<wPOj)fm6?hxBe$3E=Hlpya
z`*b_&gLrd<+7o2RSkDmc_)4*+Cf)60htQIS>%CWDOeVHS16lHOSFV^;Kb=Ui<!txq
z;Ra>bAH(!YFZ@`T>U@sJ;W_#~x4o*LaHFqd8R6QMM%E4}TWi9Mz6~1RTSsu^G!RSV
zJo__~Gqo)bJO*>e(}9NWdxt{(_Zga4b|nkFavaiCh2KPMSbxx1Hur1<L#(%cvLE)G
zN>dIMbhAHM7nI(XAI5%7Ux2IlO^FMp9aE`t=ensfAO9NBpzq!F)NYxAfbzY`!|q0)
z<m<xZ$tb0Z`Ycooi+;k499vOgWq0SX;wwI0%XkiHfyKdwteM%f+I&dzpYC5rikLi5
z$$k4x_kYZ{Y6=u=9#rK~WLGJabE0)9pBW-xvJUMWX$X=B`B2{4R87ZYjMYvT(MA_k
z3YzWMV-ZeX@t&w>i+c*Rx<C9KwzE)p)|p_&WMyT=%M;UP+<D)+i1SmjcVjCyr!LAJ
zrEOp3?fkcWds6&YA=kH=0<C5&H$M;S^Ur@BCy`#ylViGJ(qXB8Kl>HP{~${=Nab=}
z--&%ZVxnuhW0iJ#$J@OXG75S!7b3pCl`)I_9-?jPVN*OjrM72z4%JH}8gDza6J#^I
zjw3hP6S5quo3*<;FB&*r>7TBTyK_+F^IRmCLgv0GQ)Rl2;7plvu2sxfEi-x8yx1$F
zR)V5E4_jVD$!Md51C3|y*H1T|^L)fYJmxImeT4?g;ry0Bx2&Fme3K>oyHS1{_;*sv
LQ1kf-s~i6Vya!of

literal 0
HcmV?d00001

diff --git a/oxAuth/Server/src/main/webapp/auth/passport/img/openidconnect.png b/oxAuth/Server/src/main/webapp/auth/passport/img/openidconnect.png
new file mode 100644
index 0000000000000000000000000000000000000000..ef62a545def330af0a1dbf713d75cf653861ff9e
GIT binary patch
literal 1670
zcmaJ?TT~K=7DW@%5QS9K$tDz?p-`K$a+*vN0VQwwNadoLj|g-sbkZeRmS_>7HTfWv
z;7X`t-V`*{<!Ipx$M*w;n@XdOW+_scTE6lz^gADSoxRUqd;jdebJ+f;y&*fk*#Q6m
zAOs(5piX_i(h#KEKc2oes}sG1KyM5{(r2U583U^4DNg|4*#q!;6j0}l;(bU70DwvB
zSL!`Po9xnsplDxjEMV*FJeEDl)dfZbtY^^GbMN^henCW=_EZ=7zDz`j0Zdfw;NzdQ
zbHH*NMt}dN*?V8*CmCU!->@W#T^l<Rt89FH0BR2P#Q!|ZabjFbm&VD@mMk7Gh-F26
zkWKd_&Hc4%pIZn1h2p*}7@woVce{HOLt8q>E%Z^Oo&SJ+o@1}vwA}V6dH1EP+U4yF
z>q)|hN>CW_V}mSs5R__n`IBE^QTP=y++S@;yXiVV9LSBMGY>8I-z222IJ}=P+uUD9
z-gpp4=T&d+A?(^hUrLdNaxX`}obMT*TCHJMXOBCXPF)+ubK`Ej#pYEZpZ4XP==^^`
zOi10nH5HeaD_UC(AP~qv6}5k5_b+fbJSILq>s&($Au}_xS|&Ti&Ua&fG4CB1fQcoN
z!B@3$BNwSu)_AfX9uKOiuFiV9$$TLjUo4w2`qw~DPmiLb!?1C!fWtB0heAE}&2xT6
zq)@(VG&?qFr(Ide=jP>+zzmc?3qzAcQ&UrlhiKx=?ElI*1qFQ-v)dphtXo3n_a&q8
zsj0%YwzioGIcqBEIf?GF)51@2xV^o7gziaf_fnpZjb+!@*Z+I}4|d;45t=_TEmb2U
zgfnN(I6992tF5XRp7;p^>2z1ISUi6W8x|I(8X9V!+|wd&Zq{owD<~x=%g!x*Ld4Q&
zebNy7uC_K%t{L>x%KU4y1rt-#)qtyZTxR6P%mDI{K)~U0xLiDw$qXWq2(`4)N#Y-S
zot;b6>d<{?bkX8;Kfmo!WR~H_(Sgqxc@3}puD;vgW*M=fc<``6ctZ*gI109O7ObTm
z)N?mq_i6R!z?z*LtWpY;8v9eqm50ip;NSop4(M_0eo%M1V7gyewT2H;)g?^NyzS+y
z)asM2v_B&?;Ux}t8JCEmp(pR(zn?fac09>u-P$=X^F{<R06`grhC?=N-Y^VT^s<yH
zRqG(V9H>dl(Gy<(vUE9w3veOmMcaY>fQ4DX*rr@&vEqAyVOFC5t<THLd`hi<bPfb2
zgqrm*tP+p9kqid0>Dx1+Yl@0)$-HxTMKqFDt95+MOZ#1+P&CyGED&<hp}TKwaZVQ#
z6N6CsLn>9}0bcOg7gw`qXJ<?6>Ue6kdgjCE^PuqXQ#c$BBj3%~F@|ce?!pXtbsyXo
zQCeJlTSzhuwd~4WSh(`EqJqk^dhJ)8!U6rxI%sEu7kB%=eD}`LV{m(fvAF94!le+3
zcVdPNjg9qn8MhMMV#oo|?D8g6hV_sn{5+5<O(Pq4b_`oVPT17PhlIelGL<u3m}N6|
zaMJ9}fpmTKOtZGD<?f&NR4Uchqd68M%JmS^-!>IB)3sBR&X)9v@kDrizO_`&CVLY@
zl9G<-s$B}NUtby%Tlywmcr!h{h&=xTdr9;d4Q}4`P-3lADqGGVI)9ZoA_BcclNQ!7
zLZI=5C{S~0A%tP^ANt(bd{tGZ$dLoGs^h2CA<KKCGNv5Qqrj1B;A;<;ENh`#GA3^9
z#RReM+Y)KhXYCMEiqzj|Y6669!1n%}3$Z1ok^HmO;GD{}TZeJkb(Lg{54<VHX7NOF
za`Jk{f#HjaSFgIGM@UASEmFYk(Yged6DNZaa>v5fN2}3@R#%gi$+Tl;^IT+4VRXAO
zw}5=&4o-`mY`RXPIrEVZD7c>jur(gw=hQna7L(g~uPH`kcY~L)wfbv>kze3es@FS-
z*I(_@qeo(}J1F~?4q1A*AbQp8w)_w4@)Bdm_`;Vt8`SQqT21am-0BFyX4PWq>DHsO
zLidkPD2x9sx(ds?oD;LRBBGH}p*UWA?RM@PRQYe5{zh9WscOsq>1n9hq#fF-1A}ip
z3A^KU&BeS~D!8z`;iN%dfgi3+cn+nLnj?*kqWFCNJ0=chZ`8A#DyZ@mCa-k_e{neK
zesIr&P*2PSP1=Hd`gpO*c+uJf{ft>oZeA<pVgGS}QKS~=2DsC8auIg#w|3o|01$Ae
Ju@X#V`ro+YE6V@?

literal 0
HcmV?d00001

diff --git a/oxAuth/Server/src/main/webapp/auth/passport/img/tumblr.png b/oxAuth/Server/src/main/webapp/auth/passport/img/tumblr.png
new file mode 100644
index 0000000000000000000000000000000000000000..d7f184355fab4196a1d422dd4b938f9585a9e67e
GIT binary patch
literal 5048
zcmcI|`6E<+^!L!n;1h!oi4hgmpvGR-#+IcFW#2<Fl6?(hBuhm0MiE)FW=Yv1ldNMM
zOR{Ac`_3>kJh$ih6Q1w)hkIYYocHVAd(OG9v&7st)IP&1zzPC^&gkkOQ2_q>cR@}A
z_cF8c_W&?>qqH?Z<$Z!nAP~2gE>hhjfMM+&i;u|&e@Bb-I6@a<4#7l%?2|Mlz!ACE
zxgK$k){QZ_uMAE&)|S-}y@NiMy(Bt}<du~@R2H;!(`14dX`>UlVp-26Jy0{(h){z-
zHTG){5~2*9r+OykH~s`}^iik17alD%Z%k4DOv|4%k|eo}Lq_JFYA`ZD`^EaT5qz02
z5Tg(y6w(ZVK_fw6E-*Vg1_X}S071YaAPg9Ty#oVbW^REP)gfvy^_dwc02KCcH7Fxg
z2dba|W~|DE<cJxeDvdE}={d=iDYl4+OazM>tnbyWAh-^QkrT{>aN!D9%i{OnwMYbk
zFG5(I`@}#P1;jeJ7RCTULeKVO>4F$NohJv})ES}CF!2n<WDt0+r#^2q0t|zy-<S5j
z%m8W6^wh3k0*E7W>=yI^JH+1v8#aI#tlrv_3D~*(ywJo85JUb)ULbt4FSf6pyMENO
zs>)}L#$RK%PckvdxVN?CiHV0R4EB#9tDjOZOmJ<}WT?)$t)8x)9PO|jZUJ+Xb6QKk
z&UzM#X%~DD_h4ci;I|7c2yhtZ5|9(Kb<xfEqysvDDdp{#onKTJRLU$yvt!7wrhHeM
zPjxDSpT*>h5@}PS@>le<V`d71IRtZWrPI<ZEPh9vk5ZVBS5751(H=pr39`Qg^}&>i
zcosPN?JrF1{&;;Lz{~8Bzdm``AK!ZMI^Z96G}9?>U$d8TWlDZGYdEi8zXZaNzuTH6
z7XDDGSsGa8{t$0xF98IA`Pk@kLa>jo|B%bePd+v5#@B!tM+{Tj+xw&KnIecEdP@@C
z!Bi&VA9(<@b|Fy+Pq9mvSS?=4{cbpU_E^-+%n%6kf9hM58xd&^&OEpFWBJ><P>ko8
zIooY-+Lz|!XN(hH`^E7KRF>R&05?&R6v;#l9<huo^+FgqqXSBAWnQ-NN(#@<=={*-
z=(9b{f5Y+A!}z_z7k96GZGa_$K0b@#0lo6y=P|x~A6?pgtGl1NN3uMVsy+LQ6NtZ=
zEyDj>cxt__`5~{TqnX8B5F-mFn}a<;_}0b9RLbn1><}&OgiuKvP+A(0FB&tpwA#b7
zKYpt9-2F5aFj`u2{~q{Xa>Eu$&O?pn##l4*EuW)RMT-`e1L310bGI`X@NC#<S==wu
z&5Z@x3)88O53$C-vGs9xxPWsEIfh4F=ibV?dxhs6RUeK!%1T!3Vyo-H;9Sn|lzFiu
z(mjt61+GwHGNDYyX-%6Vl=Dad$X8)kS`_VAIE*lyiftH6{`93wj#?A>`YJSBEhN{c
z+koxK{w`Pc<fiI&a02tm=6}A`OKUpIzy~)v{A31)J?oCQQT#crvbCybV*Y$GK(nZo
zi!mc^@6x{8VsDP^<c_s*$L*={O_io^1wC)R=NfrK6l`F$_kZ{CqeBPHfn~*WW7Qil
zc<`#CcW$J`b<vr}m`BbZhfe9O=SblH>Yw>Oo7X{}Viu~U6+d|BtXiTB4<l9<Z=xS&
zIx?Y@$|Be4vtNpZxnnYybVfYCQIB6Pm7b}aI}GSPjc8aX{#5++g|m(S%cZ@ET8$2t
zN4wD<d`8{l^sT1{xUHHwC+~$FM#I|&{w9xyB^y}zq3b+uE_=UHljKKaHSdia%B&5t
z6im78f}Q>b^VIkp4h{Dl|G22hfhppJoUnwW<O)338kgD$f;Ul?!OV0geD^M4WJQ`N
za;g&VtCg=tF?Ud*+T)6oJB&lJ8YS0HO5cRiH-~&Sb!zeUVsqY2lsn8~-YmbU`xz^R
z<rASTyFznRv(CGV=iibuTPg}nN6QQQ`V7r`$tC{B2C9QjQVy>Ss$z0cu+QzS{`R(e
zKZA~bcgYJ@*~`e`6Hu6Fn*Xrl58?6hz+lk^LIAFhII<$aYKdn-lK9(uGHB~tJiEje
zdCnGoZ7(4Ph#0cRHmsZ0S_d_ltBi-($yLNhFqp1tgBYu9^=FdefwYoiJ#AGb4Cr3y
z4UD$j#c-U@d8Ru&rmiKbJYKSwWU;8hUg`t84_XFt5o-FUmm`-aEb*cIpAem8x7n>6
zB!o45)Bx2)UbY@CyA9wWH22g^Ks|3R<vt|=*!2>6ArX+>Bwaq=Yxh8mMk<ly@PD$Z
z|E<U}5WsB_B=e(xze_)<C24&)(g0RDFE{Vsf*vszaSu7uCoh9qiuXTq)}uFu?isg#
zQPjAZ4oK3%_U>@nvSHGFx6P{}2{R#W%B+}3J$90yIw0}LjDgN)EJz?cl2{!tNEVP&
zg$_8PK<bKm+aIURIuF~5Tl#>)`gG@h@=cFJVyf^%Mdj=#*I!j8bRnWSVL{z>wY4j7
zt{cJ8KNMUc?Fx5>p?EMXQJh`!n{yTj?2skm8tnj-rnAg^)(AkBZuCKAkv9N`$718k
z`L94z|H5V+bakTHz7!3T=D3Z;F-<*&TSk>qyx_ULviif7eZkEgFQYC?$%L972GsJy
zCX|&!v5-1NDitVQJW^Lp-+{onLEzaI6Tn9%jYU?z04{Szo}d7yqPB9qMgT0)h92ty
za;t-n>w0hngem%8Bp^PVD&%N$lVOBCPRTLo%Jz7?y(0#Pk4SOw9|37}6fjOanmjzM
zI_>qjnzo(z;WbcN@t^YYhE|fRz9b#@et&E1LKBpHFFo~tPuSUBm$HGEmCYx}E~Y#D
zox2$4M`*^%%+49vG>KR=uQCumnL3{nrg-FptP!(^Vgy|1-_B~kKtzx76@2|V@{g2%
zDXHmry6V8#k)2thH%!xwSn~$PI}i+E+=_Kqrat$sMm;qwFn_=@Qce2t&Zm6pL<Lz?
z89uPO1dRq2kmYXdbf~hO*7UnZsM}|^I6P8%!tm{JJ5)dhrfos@D?8@`t@t&Zb#p@?
zn9|Q!@m6$af1{#NlbOR**A1O^if|DcJvv&vydzL?@8?v)bpdo~g!J7V+){A5iq^}k
zuU{A``6PXE)@N})>%<F<HdW)mQSd-%&K^Ydp6D`2`O8iVshaD3Ihj|t_%i!^d3~K&
z!;;du=KmQ-?|6U2Tt-<GP_4d5ENr9wvQaux<eYu=OC|2rv&CIG{~5ddsf!G2|0-v@
zp4L#*$y2t+qAO~59J!S@`)wcN<J=w}uNIr!4wX4`;dV3^_gt`S;KHh+5^7KJ!flj+
z@P?9_@Y;m-?bn4LKO&EQp7Ex4r5I*w5SlkFDuQwkPl4xntdFPDr;A*iKL(ScPWC_R
z@>yO?6nf1etgLlU<-m)eJ%>%#)n#dy!oS5?Mo*71-=$H4E&cmbP4$<Z+OnM$bz$}G
z%RHgEYpX3q=1&$#$>J()r=nUz7G2VeYh9FIW3e%Lg$bXx;mRITH2C#jqM?W66flN@
z4AR3t&Cc3XE%=sP{E;%Zd9AX3egQ6Q>>YP9^JJ-}lQ)?6>w*YWm`Kwb7#SfYpFi%X
zuu;B7YvWBvKXK1Hxhd4#se7*)2F)h#1SiH`$fnFkom4%VGZR2bOVe1dOMVT_J8>fB
zG#<;i27JK3*DMHxAhA0Wz9fOKvrhQRLi4zmW>{mJoOo^EZ+2G)`PJrPneUUOeF=W9
z9y?zS;1yji5Tqz-<LSgg;M;sp@zT=3eB;ho%#X^fJ&E@00QV!ihI^7m62Wir`03<&
z@nypYL!Eh4GR=JFv{mr(mt`q%u6lD*9@fUfeX8-Y%4M&EwdwxHy78qq<GV{4=+%$g
z6K`LRN;WZm9`0JQZ|q2aBBwB}2{+h#-{QI}S)UHo0jX4!!yBX@^L|H~$_ba^5IZPq
zr&R|U15RRcY<P9Ck0)8%n4ZZ!JT*Zz^EbW1-5IDF%!2@09HYOZf9|QaT>U<<`FVpr
z>(JG?%x7cIrnhw?Iey~-C9v|@u^?;B4W##-ciBy`{7{|5qB5Y=tc^KNX?)z3kyj2l
zd3ToY(-b%g=#1z(q<z8%UGCcSy=?@fWfG;V4pYB4hQGW458gHJZT$?xM+gb1`iX5J
zVq9Z5a$MK4K0j*}>@5$FtQJ_2eO;Wwf{BcN=(Oi)aon+Z$870V2t6Xxr=wS%eC<({
zY}m7^ttJk7qnUJJik0MAg^~9UK5k(;t3=9d*LlCr3M7qwa!Q$Vh5Y$&x8H~`yjPVM
zl}WtO+^TUCr%>-p6&hMju{L7n?wq_PwKAg5iUS?C5?M=1_HD6);{#gjyQ?;@vB5lb
zn^>|22!fQ>u~eBbU^+#`DH(0d4g83yu%7O5?p?NS5FytUJJ+JqT6^Ql_o;1PK1)bA
zo$r#JSS}cg6pM|!H>}|7o>rt*Lx?9HJ?$nQ(n|BYvoDwNmum?&AC)}WEqu9-aF1=`
zw2eq5#kHhKHNB){BzU|<1Q&P^Ul8E2s=aOe^BUrJT4qm3C)HouyuZr+Z10Avkn8OB
zd3@fi-MZxV6-}OEs+)QKJY<|}?!5ft{Em}d(}{<(s>Mmaw~Mc=?_T#KR*jxG3?Lxj
zT%Ijhpq1E$$M4R9+~I+FmcNWsIj4&?cJ4bkFj{8GWd5`^L54W}9rq@3)NH+Q^#9|>
z{m1{nKUy`Hc(;PSVi2_XLA#dyd1i-X_1L9{f(^r;jk$Pq^tT?wy+E(!hXv;dnVaae
zG;dG~2t?BB^l5vyE?c{Xluc%ElHpfH^WEO_i-W#9&i5k-H?2KvZJxWs;fHwCGWow|
zCpU+?N=^&BL438eCNks<*g@Ka#<u$o#~b9l+I0>z+3cp;v}LGh`HlKv!G{C8ZY$nL
z^$hF`uuyOjNYxiC46GP%>|xsaJ*}!mC=F02&oZ_&cEJUEwf<NuKQKGyV~lwQp$Nn@
zJhen3Byr?}l#c&QDGKfT@2KSGa#FD#mCt7GU*aD}|0a2HPUk<GBwxImDV=65nXvae
zN4<OFUBkg3Vf}<>?eI|xaW*`VU-2*{%QgFn98~A~{Z8fYd|X?IuH9n1`U%_ly$H62
zXQV}+NcW!a^0*>JI^M#&nJykS_j5FRCuQ02L&`jo5Os!LjgSbllO!#Y?sNVg>+?@f
zwo|#F>iI?}kVe?uE|Ik_tJl{z%<Ey8kUwmlNcH`XF-h}brHx9nXYb_F`$FTSsY26!
zO_A#7RMq^&ld3m1K_p*S4-dYpc~0%43G=)ORlQEUK+G?(ZBy!7Q|3J1{~0)xQ={uo
zpmdx~-@e5?S;MW6@u{DR9jNR>Z$A$K)(#eCy`Q4voQ5|=d?dJ8!{P<yGAQ@h#zaPj
zhX;>NQjEtNNHtG(n9-T;8?r*ql#Gn5F3IYsw??V6N-*dT2+0(BekIrb1$GQHd0(LS
z^lTKzwVYP8DJA96q2p=o@yTNA)hHatru(0L&b5i1n0{^vQIp&0=GgI}>*;$#bP=d%
zQcXSjVM}vLI?muLI#L<eL;wccU6Z<N4iVjm*zB~lg|DrC4S(j3w$stZ#(&y7?g@;0
zWXZ_Ma%KzrHh;hfjJbqjdu>xwAD|BoL~Ay_yO`JtA7XSQ6Iazm(KqDvOkhO4@j0oy
z3%CkpV{IB<{>{GOg|#x1V4Ae==a%LCbIZ7Q9&Dau`<Dz}$~D*P;^XylvM`z{i7BpC
zSB~B;o_aw);;Zyb{O>uFyWJVg7z`3*H8Z+l9(YGW**kpgGRSogOZd^{oNMTHFrtK}
z-nMcWS3yp&f1@ryv;X>(?`OdMp)vMDcTrU5WL(p#T(T*y$WIcS+p8I4721gx#?@8U
zPVb?^O7@9TT7)v6_tVik5|@hk>76`oueHat0@Pqy<nfPa2iD*cyiFPUO48}N!1H|n
zCH0HB4+YJ5;f=g3RPX9`zhbrD4acYj=^$ID!E(?J+mIxb_g}?1+~u0u&Fs1~QC`Vd
zq`%UoD!ryiv9-O6C5|uDOkU?iozMoOD(3!5HPa2<yhUrPx-06^E)#wZTE9D5G})p?
zkJSed+6pP{XYblcg`N^xV_}ThhV0--@AWF*m-|(ZH;3rwS65@dQQ~5LRd=4hHL%%o
z1HGA4@n^Gf%ot&czK!3eviOC~)_^ez@VU|!D^Lha>Cu<|ZR|@==;5n@h&Et2eSu{j
zC2@zV%_FqfSOGlCE@YJsj0s7Eb8vBeU|diLcxJ5v%oQq*H967%&d#*@9s&pdKM5lF
z^kbfmh)+A!0M8N)N9fF(<z4!>^<h1IMp8QgSWqbvAM5^G6Gf<FyOTsg7-WL11q#?J
z<=XYnc+CSHZ<1qt+F4)^Bz{h&UQiL31^yoejib55fJ%QF!UwG4K)RZS$Z`$4i2nnU
Cs-i3a

literal 0
HcmV?d00001

diff --git a/oxAuth/Server/src/main/webapp/auth/passport/img/twitter.png b/oxAuth/Server/src/main/webapp/auth/passport/img/twitter.png
new file mode 100644
index 0000000000000000000000000000000000000000..057718516b6f4654e1fa10684e09ef7f39090957
GIT binary patch
literal 41673
zcmb@ucR1Y77eBhXWQk8A2!cqWM33IPkmylYFIm0!P6!eNQC1B?g6I~jE<&QM-dQ!G
z?J9{H{r6t^-sk@PyU$G?PqI5RXU@!=@|ttbc&DYIOn#H@CI|!~f3BkV5(FaX!~KvF
z1K+5*76=0W;Ca4OmIqY~-rod15ZcPA%Yi`E3E*=}BH;54Hx-B{2z2W^?guZG^A<hu
zC9##NvLfgT_csq&lnespt36kg)AcjknkNY}_4QxBSlm9=m?%ExQH8PiTGPjE{zr-@
zPg+I)a$2w>DN!AN#&<E8(r0YOiQ|)R+&8Z(ya>Dq_xjbsg=WFg1CPMKtD!~%KE!O?
z+F(EOI7p^<g!|Eq%H*79$h!aKkc^fOp<4I_5xh-_MWSSATPpA)$BT;$_^Ibh^Fwz&
z<4HF&x<B#o<8=2nKGVd#ou`m0b8f16g|3T$vvq*`Jbyxhmy(Yo=L+n}N$%cw@vbUx
zQ3|2FMe3Kpu#-*&w)4@=q^y)2^hw~}nL^8SU*5($jyQv+PE8z#^*&&?p5v-AisEkI
zb7Y=m+~29x4AsYIq<KGN`KXpU@7cJ1WH^}z?mF_s1A)Sfs>7sEL~D`n!l>&B=L%|j
zq<CDuwunfuDw$Z_YCdq1nPN1hJ`NY;V<d!TCrAFw26xQlOU!`-w|Z5SpP|H)yrKgo
zf5jK<GzOCcoEOtnC)Sn;<)u2~?YcJxnk>ir|LL2u;(3a;9w)Nv5EzWiBTLYWP9}Py
z#~!#nI>{Prr#mZRvd2gfXSmv+Mvpsfx+J2XGu2`G^~PbaNgqO_vg0~Jcn9VtTfY3_
zkoE!lSqhPvF`HxxXS0I%YWSZ8W?!;2q?VKOm~ITPqT&9s5~uQ6>YOR>h5~^+A|6rS
zXRGmH_0pL!H8QtTg1>Wg=~L~Xbi@BJ(!?D%ShOrMP{)0xCIErjhq&$<yP2)X??Zib
zBlffXzR)>S+5RPvYkUX!Ev3V~qmk<ER{QcPBFqUJTRu+*u-e`Tp+}T^BHEp(*7bHy
zI$*g5AHNEV@P>ONSG!53*DxFJb^OKyckNV#_0w4c1C~a!AuCR=XG#W2=e236Z73TE
z-mI}IXu04YF%2I*lootBDJ@~bz940|mqW46VNL>!(V~aFlgJ;P^(hr5LDmf%1$~il
z+O_5PTzSMU!hV(j<IyeD-es(r{F@gjl~~|G1`JUnDShm#L}0Wk4=;B%bEUGS$##}C
ze5hvUqD#0+Y>oHVucWN#v~N~i%R{aaUhmH9Jb_zH9DG<(M1Q8<-@CcCk+ZmTov`+E
z<mA>ffWQ9`dShc3EK;L7lY`&j@sBx^OK5v=>Nn0rPiR9~n^sR;YpE|QG63EvnUQl<
z<rtR<_xLEW+EEp`60Ko;*idH8^8hWZ35)>IML2WTjT6~8cDMS6Xo(C^*o9=@@sxVR
zKE>?#2_a`9Bd$HVf=qRDDxc6zzzJy=RL{n705KeNF&AdmB)UP4SHRtT`Ckh5ZJmKD
zJr_2xJ0_r{4SxK`?$e!YU;s#v1l;9p=^w~%E+vs?z)fyHRt9pO@qUwMLNdzpKxW2Z
zv_3xNAP(GvSgek;x$MMoHGsO=OC8^Ag=acLHH<YN^d890yF<7}tE`nH_ci>$&-J;v
znC>2{VZz#Koxwg6Au!~3no1QMcG5Q^hqQ-kO%0Kk{6Kc~KVTmMl~NnawmOIQmOfrL
z5iLaGWF@Q)s%&b9=-We2>f#G<&x|GHNvd;^=Gs?Z_M6d<>g8Xb+)_)K5ITI%wc^ZQ
zRXC!pkVMWu1|o}~#?E&_X%b_bu5{mFp5myv*SMXB6UkjnHYHB_61Kpc@b||bvTNQx
zQ>YW_R!)Wn|B=;R6w|i~WCMDG()tl;0Ry9X3r*smq2+jWN*sE&<BW3tHy?xdj-*@H
z6`z|+=#I)F)Ut$d#Glt#IO)I_8y*%LaNP(9<VXL<H%=|r80Dlg^-dQ;kzGOfOQ8Td
zTZY@~@$5RYN+-|P{!lI6bf)p2)JK*TEa4vHhWDgDKEd|3!druDKXW5lT-|7JoT#zT
z|MuRV%QI{4Ck`PJlwq{E@F4#$h0R`+cl$oqCJEb%(?7lN08@)Kin~DfcCTs^$tj{=
zG`u%AR%0WYg7mc*KJ-nw*^~CAv70B|N`QHr`}P{gw)i&mSMlH`5a@~uF2|B?Q1Ngr
zHt`ixIpZnK1*VIJ?-9;0O=@Wb{PkjafDY+7!kq~SBWGI+zk=(fx#ln(n2o)cdP=x@
zql#ni@&kNFT7OitN!3g#!_xG+>-%yYL=0RHW{wmr7TVTLV++rd)IhN9C1}7}63@Lt
zd(rqfF9yP7I5T)pY~_V~i(F0Pxfu}1yYiE?kH(T}<xwxZ)vM}ru1{La#fK9Dz~+F4
z*~_+PkBmc>JMtD<IEq(y#FDFd<MM*=j!5=9DOrLyWwp^H#Sd{^?M(DdTk|=K%}uFB
zQE7yb`XD^Q)%|<Ds<{g~!^a6}UXnkIUf~#cKg7|iYJ?x~1>D!>4KduVwaTTGJGt*e
z4m<qxkw|L9U=Lpa*H4fV+%q+J14F?>;n>OLfErTLV(cvG@@3%0cm~Fb3mP32n&2ju
z6@WjP=0xM49(pq)eIReWQP%&ZlsfVL(%gEoA)%~_85(uK8UMT!h-eN2ctZ#ke!7j4
z$HXPU$mM2cWK1U8cG)+U$5^1Tsmx}$nU_eY-&-?p7M{pmEO%8+di@6rW=JWoJ8j)b
zl7^S&Ar+j?aQfBW#>H6a&3tmqOMz7aN0>Px%uo2)jg9NbH=FiVwClHdOC*#OaX<l7
zQ^k^3Uw&gV4Hn(<$vniQd8;|k#H$TW$#W0A(6cCMGR~({juY1<h`5Pt$VE)zLW}t4
zA3UPbLDaBdsuWKa`$a8C?xOj)RCnxxBaUSIOupPEm8$&dkfXfO6zy-bvq;x)k3x2-
z5#v4iJ%u7wwL09?VX;*RY}Pu-p(78Mxr9iuU-4-q>w0WnHkXRbHqRy^n8=y_0W)qN
z+ZCNKH#eLeI|G2zHtL)Z$uiU-fu6l5U;n(z#EaQKixC%mp>j=AwHnTyXKqYC%9-|N
z{I<6x{4_+sVK&dH?dxkN$fBspC<951cq;4TYqGDnR0t1X6U<0UB`wox*|DhALh?Rj
z2HXW$jR8ffV9KNGezM$N&j?OaQ{`NHrsn)SpRE>>^-(9uv^H;SCp%%2ahn6Gv&N>F
zH%oqAG+oTLY}^coZ+~!NK0zzT_EDF*;^TTaa8M_OxI<LhRyyF@b#rQ&9PCW$*MfEN
zTk%~Y&ijCL`aAYe)Fg)_Y0-6Mb^aY5V}z@n1<>H($X~hHT>gQqIJQBBIosvu`AVr(
zPRZ3-ayo>o5sy+6odQ`XlW?q91V9WCQn1C%j=hqjE(+8)jCH5D&h!5*xxb3bCZivo
z0j+&DH7s}1pZQ9jA4jvlOu%x6KNDK_Y_dvjrqCE28WspizGlk%8_-=4<p7(Z(^DW`
z6*zk=aP7lEnAm?`b2SU)N8Ri@Ql3kL=3XmOu`O(Zs|MmzLpEjS-e?&PzxZ~mL1t-a
zmlI>GOxlZ^P;2O42U|$RhYpWU!qpEg7tCn~bqXwBZcd0?@2NKmo&^;}dB8U5loSY8
zKc978eEXB%>X%pi&BXes0k;=nOpvG=F58Sjxap(fvpgrAF-B3nQRlN5jLXtjd)z!r
z2C!AGF$lu(jcF`KoPGVpXmT)1u#2lU$+Lfq3>V{?YvODnl{pj6T0BiAExyJ4Esj{(
zk5^BwPmZS#{!tIcjfJe08hF#DsP0ho3m09UUxqVEs{fNZn?H#tKiDDHKIEuW8R(+C
z2Mz8u-ZCvg%ZTEbX#WoBYVL+gp@Lu+80~qY)u88q9zF-OtL&`R`+q%lYWi)_&t~=m
zbbRGb*ydU05pBiG#Ix35Tsz-W*opKmJQvy?pkpBCzvu>Gn%A?SXUDbu#zTd`@VLQ~
z$xS!<6vQ?OByKJoTpOw|8AIY)F1w5>vvDOYMD<ecoX&7(k?O;1ISLEKHU7Pkb^{AV
z6*rOgEs7b9*C)VIxb+utWI=zUpx<^I)cmGCoRUTgFs2;eN;_-}Rywpr>0S$cdo&l=
zh_z(^+Q|?hkV|GO$j$~HRraCwvilq&l6h@i)TB^vqMvbgB5eX_KGTBxV6m=%ZdoIt
zN2=HDet{gWo7|gYfj0$a-6bE%&4hFw`x=}MMSG-N3p0r7k^g4S3d==1gTRD8(BZ@o
zzU9mnJT7&8GJKPNbRp*AhT|V-`{KqJQ<V2dX-riXW@S8maR3kmIz+*L#=lP55!E{2
z|K*i6ndfw|cAUe70qmtn&-KQJc~<w^srqm$7{RhN#;8-u{aQjB%61t!{mZAWNtnEa
zDx(r%EJXrJ8pc|T{j;uB#YJZ?1jLco+A(~OOTs9smdifFqe)Fw3&DTVDFrpExE5ea
zE80CaHdV92><a2F`x|`-`vbs8if=Jqx2BV3g<M=%EAbj@L_eYE>-6_e{nZ_q?t$|N
zpmb4Gl5v2l8PuQMAlUP!y1kaPz$m(;mpc7=Y{OmH6K><3d)cQCw^E2#bvEH4Zuy^s
zJO8(9$u*&$%b1$t>>-{U>JY6#>MsCj1>ix_&9RnsDjfa16GKET&_2e$uA2eR3wo$G
zX{sEHL20R9pUZd@R1K906DxX=x22mqrN+-2yy7OuG_9?bxt)g_4-!ftRo$JvH%YJm
zW`gc(D?~x4lHC|1y_0k?b&Kl8wTg#j)|A<2jKSA+$5S26v>AKT4mYKgf;}`}|Br^w
z!+VJfA&_YX<~rrMSh^B>rJ3+QA4cG<9#tyWiUm@mMP-|N&y4ZgmG9fCM|hMxz&Z8^
zv6t6I%fbP2)Y1vnLgm-#*5o<e2pQ6Pz9=moDbRGiN%vMHcp{9b%b|LWHgYr6I-w4l
za{fnZ{{)i~l?PLD6jN)mkvn<UnzSRM^x|IwFDf7Q-0=&moS1QnbWPfmYbglZw1pgu
z@gy4wmq%t2u675g2DC&w{A0q#$vtBnZqKbI&W`q~Mw@sPrC&=%`V-i5?yN~G{G-ni
zd)7R4GLTL)x9h#*iG=E)ij#%D0tV{`u-Lr&VzjshzD}+zqh}wt2)CXSK~=Fs2WhlF
zaaRRUx;spryFdehJxPjyt5cqJE$1f@{o8{)X~SoAW#Sn(rqk}H)KjF?*0p`ccmBt;
zxFzib9HXBG;hkV1f^yo1?iy+nH1d!AlTPnWeuq#**=}=xz*p28-Y4w4Ow~ENaDJhC
z&DSC*%MC#v>hRPU`5^D6-AxJgYAN0koVd2{vKQ554jB`0?3Z*mE$P)uXu=UpFp2G-
zd%`3`^-&ctOE!lNxf1}qFlfSAaEKI?7Xq=V+j5}w$!EQrQa*&fWRar%-y&KeKEXZE
z>31$vLZ9*gNcj9L8s&83dhNx5FjES$v;*D6@A6v>5%AP<?srV8AO4w#_sfPQWzm5z
zD2=2gck+VfE;@b5VJZCv{|s2(AS9}e%Q3^JrHd+Mo5}VI=21b}KLHn{M!{kB-C1@7
z(4y1xmX}1E=7`n9i3p-ewrd|t_d=8%=?*o#a`sf@UdCk6@Kwa@wOZ2u)O&c12|#r5
zBIAyqe?ifI8tk+XL_?E9!FF#D*Z4=)8m{Iz<0Gkn<e^K6_JD3Pa+S)cYF&$$AS<dC
z=FGif)~^%+-_CMc-Fz1}dfk$jV^~<u#hLR;3lW-l=+0y{i@Q;P^1eaN>IN2@44MCi
z%gwwPJ2RPOWK_1l2H{}=HqKKpcV0v-&<0q>GAV^x(|_#eDxr~`EDT7MsRREAc;rgw
z4h_>i<tt$vNznUt{+$o6PQr<n_lcp7_0mg8!vB*Po2NNtfeU$a9}x&F+~A)L&!aW$
znwQeu<KI2W7Gcj-)BE2R4XYj9O7-r5F6@ihYH3h^j(9|qOL)B$*@EgaM`I<(kyM%|
zG4xC+FvI6sqU_{h-rV~+m7+m|d2?xB%QXKjoEEZHw-v}^3&{Lr(I}LG4jO!|S$SgD
z4HX)gnsE609t5))k;lJ==a98|DZd@({K1=j3jSxk|66rtR-L&qaY#i?_?`u#46ug(
zu-U)>yb`*!9-yy<7_B+9Lth&QSpkXU(A?&OzYsYw2)kpY>bMj5THfq@Y!UC^T#}PD
z;eff>wl==@v0<893_O7lzp{10Rrpbj^tHY&QNmtxgA)z`+rzScSvEd!daWH{n$vVp
zREKrigDWl^;J{1!T=N5ii>?7z2QgGTERvft_cpu4(JMZKNfO^*-rbk$g0|P^HvD}7
z&RXW{5@)9`xP-j)SDN{<5z+a-<(;pFp*mpihW-K;-3WU~8qso1^3r1%YKi)8>j&64
z?qff2`d9XATIWCDRnVUT1jv>=r{t=HI9QI*>b1)Q$y9MUW&G{u(N4`X0d9gx|8(i{
zRmL>D`YZ7&JTUq2+JJ*X#RXsP!K?p-dyGiQNXjeyTeT(-zcLdRHq#nR`&{sx1Bf~T
ze?sAEPBYVl<?y-WC!7*CL)W_oI{(i9XA|=ao2Lg$V6kt$KJUM1z-hzcBcR7C?z8_)
zk+kj1bSb;BB4Yg7a)#wHXvTkK&wcoBAwfI3vqaF!d?&dX<n>%Yz=__#xDvJSiud~S
zd4E>GHopfD5{%j>gyOymYl8?Q;_h#u^k1N^yZp_7TBCZtg&bdR4JeW85y=_<zrG-~
zHdK#p%C%G!V}@RQlly-<5qm<3GW`A-!yk!6tGC0i#Sg>?P+B%Qymq7@X_246)R4UV
zf2`Ab(~A9G3w*h18u0~V{BQ25+4#J0G5-H|@WYS)u!Y|!&tnpSGVSYqX-|Hl_3wX6
zwocw2d^%<S&bNK{#VTAc<;jz4)-B*lPtptiH(8Oc&HH~;hwhX~Uqd2Lblx>1?f3q-
zx~>QRc9D-*?)vz`o|67Mu{gPZCdq>Af6D?cr~mwB#Q!ykxb{?YI&Op9YZjLR|F@g>
z{_hF>|G>-tR}$nrTNN8Wm&5MtY{U_dQ<dJYnHyoe;b$J}HbDYfp>EhyEm*|>0dr7)
zUYLXxb7L6&cv*4FFxo{~(ZTa|{STrASe3~GSiT%h*!&QAgZZx<j#rxZk9Bgsyozp~
z<%FR)nrOs)U&Xv^(mINNB}X@qCS;|oLD!c$k@m!~U5a{(h9HcBsG`OC4Q~7S-gAu&
z`dIosca)7a3eQ}8IG{-=#B27I)YvdS8b78<dDrdvG)ISz;i2f(CEgC|X5;!$?++Ti
z+TktyDpXHjGoiEPbcg4l)KDYHS$X#2a|(F)Vg?>C%5vDWG?&GLt(DLyG<oZ@OT!gR
zAe(%xYHG}21lWYsY=&_-#wU=>0b;Dh!1JFmRCM`{E6Y7&A+e>4^8gE)xBfJlH9Ug0
zrilpUQbk*nFvk8=Z%N4LhYv}&W}ljjKB39u4kC~hxE8$e#K?s&<#Ns&Hyx}ERMG}Y
zbYq-9Rz+Ht-bD{p`)odg>e-h{=H3|6f6dqrtMe`XY)ZhgeUIHCH!!Ejn_f2JA7kNq
zVde5c+jEH(*^~$2f9Cv#9W&w^1)UNmS?9OPDAA6~h?}+GA;g-$aj3TDA?(1*e56#|
zxScrcnJiAq(;t+QF7oky&Z3F(zBo^$uGgLXFWQt3VQDncXw+&$la9EYndCRdBI;~p
zLYj(6nqy}%__gHZ1YrS6xbY1j*OJ=6t+#|;V;zZREsx8xsNamQ-KnnAL{9;`4upxJ
z#}Rrt<?3he7V>wbw10Pah8CXJY|eqSD6Z9Q$g+HNlHZxKxH5}oRMk|pbtKXnoqVqj
z$~~)jkm5D;6g)sgzRKa4Yd=QJmwY`WUN72tSYKJUsfDvRt-<a5oXB$EJ&E0y99G2k
zc*H!>yk~9k#|R~w{4ctnw)FDxEW~dE`WsfM6tRbJFq)$q-=}_au*bq&zD?%u82{AM
z3H>!Nf$E@OMd{;<v=*TO;m2g6OjyF|qu>s5hu1in3+lf4z5GKMHG<HD{T60YDRt7J
zl(C@oGkBC>p6KGQqPE0oET%U_=%>5@O_gY8lblUAe&$MRD8>7fhEL&{*XM0s4aTf)
z%b5y@Y?MnOgt2c;?F%Yqa{2>_RTn^2YymOi;zloX!2@N`BM~eyWbF2MDJ&9M-Yboi
zsJ!F~eZuFDvs=RlPVfJmE6SFd$|Cyy#8OAs^_iMbCeSAktx)y?U>!2vSrjw7-QlTO
z_{&*|=&H&epA$_G@GZZ}3@N#_4ZSo-ux<I|rkkP-z9v^&rq%LUsF>VTPRcbzrJjq-
z(Vg>81MRfY_>S&O<Z3vhnCbY@Wm2H&9><WKnXp8AYmqbE1u8Ad`*1GNs3TQqdpDSU
z#hU?CcP&op-5fo!#^E~;#f!6O-gr@tm1e<AdvZKp`>SedCp5O7zjD>?PSQ=!dOv@V
znMS%1K$GZP7)HKO1HEfISIt|Qu+#HZM4?vB8E0{2$Er|kMBJ&!1n&FBR5L~uknk;v
zqA{q{gu%GNd}?PQ)OeNlJ*w5)nE@WGxd><fOh12oc;{G3`l!&LkR7>O9T(zPmUmx7
zMeEV^V(*q&1x0|nM0m*>V=-0Kjj{G<9^y-D?iqc^<z{a<qbOwDA|5sW>@J1s)L^-8
zVx{jQTG-%0Q2g$u^M%sI#0q3Pf16H75hwWM<v&ctjAQG{4Qdf;Xo?J}L~S2~2IXWH
zscrn4?H}i|zS@vyuS5u&zd;=n%$q)YjG+pRlocj;rK2xsF1`<DyP%V&Kw}l!3fHV9
zcJPo@deaP7n%(|0$y{ki;g{_8x|)j~z0jn2bk}=*IXq{FGk}@yu)8&IYUn10X8!oV
zdq3Q0yS0sSor5{Sa-JacOi}+hm#a$eo<j^yXz5~1g@@jev~XLRRST9)e3YwGChck9
zL-X4$YV|sHU#@)$um5ou6A^rDwuZk~nx^c9Bzko$H6QRHEU0T<`R3`;QTDBb-;0!W
z*P2e=X;flf#aC8e_TDd*Eh_-^*fB0mFDZH-x_zI$u`2u62rfXx6KNY0jIHqgG|kb2
zXgk?Mgc&{B32fS1jeSA$B{V?1)b)NpXZJ#H@l%{@wIc-^<DYJmYa{L44L$F?_Plk7
z*VPGkcWo+*ZUUeFY?V~VE6f1sx#OMG@jPg=_%uM}hBp(epm|W3RyT6BKPKktMz7_F
z+d-|Vt=SVQR7b!%l{U8nIY&s&C+T*@X`(7UX51xd^}>HX_;KZ{PkTaY<mf`@kKi6x
zL#mN|K#j`LcRs0NZ&qK0<j$l{vH7kFe%JL>!^1IHY`lL*4jJgF%L}=asin%wXNDNs
zvuiC2OrSaVI`7Zm^^LX;I?sf)Av!E|eAooFG&KDaRv%}@zc_?oJu%Pe^}m`Y6-d9y
z!%ng93qZ_qs^+SY-lVEaJ5M#$+3>CCxF@zi>JF7VoiUN1c{i0O<%UJFg`O4ma(bF-
z)Ohk4lG+j7H&D`7XMs(UX^<+_d2-2V>F{65Yt>h|`v|Dqw~r9dxgg@O%qm%@?R3}0
z{|+a4ji_kTH8QLqz6=~22&5PT?UU-&VM3*dmsw}6NXwAv(g)@eyt@1JrbVMH!4{4h
zi{dGjtpq^shPFXb*#1ytO1aLp;WN{HPCwrqJW$%8i?o>(+vi2}y@}MFk)!9tHhq9W
zFsQD*NYl|x<LxQ=uFt&_M||+}hb7WQPm$h6eL$p2?{d2dyI61I{VL@JQQ<9sG@*~}
zL7M)vgXSG8o?YpJtCP(#5wYYxevn$W>8qi4L<eBhqX2BvTNolKQJd)$4h?p&)c~@o
zHhOAkvzs!u6Du0W$mZ$bq1JJtUsGkIjv-bKZJ}rU&|oiRecvsV=RUp;AoeEVRNHdM
zv%Yk*rpH@#7H9<F)v21k@mVa#e=t0YxqN1O@4z0%k)Tz0m3Y3;&IloEFJ0G;c*+#b
z(OR8r&&T!PkX0wg1oR`kfp;XetpcBEnjJsU@Z2oretB_2r>CS>MhY_A*5Jrvta(d~
zC7hp6?y0Z#apA=6i=)-2yN}(Y=AAEx5oNdHQ(7oIK<$w;;$7IanY`S$F4;_l6Lj9&
z8Lj!!tpY{efiW-EE`0Orvy41f<hY&5H%i2q=YMwmSv6(eZL(`Ru<2Xy(W>9=)mHCH
zdBjdYS^J5zSZ412K0@RkDk?b0KU5>vi*01gev%)r{bZW^S@X!>(J#VVY$Yi1=RJ00
z)Z<PZi23`w?(3&Ewy1|?0WG!M#dSMp<1S9~d@`RS-&qV48YHBd+Df^>^Fo8fvCiZ~
zYC^zz@PzHw)Eyt5B2fkFP89vrs~=@$+C+A@dr3il!dZW+0B12(9=G9L+F``^155kb
zNR_(p6!W^J)t|5OLg7nc%TpIUt1POjrbor(HS!C;Fen=$Bu`?7l?ZED=6NJiH~Fa)
zX<s{`$q3cnB<o_s(s}SRg+};gu%m{#M549o4bZ(#qtbGY!^t{rq}A7Q`|QS87YlxV
zrA;=rn@!f{8k&dHSwDkZsjTR~Ll+CEV?+jS`A<oK@8G$b?y12~cqwu@He7RiFn&o6
z{6Mmk_8uD=H8#n5b=kF{bbKh8!GUGU>EBpbiNr{NmRzZmoK08IJh1^0p%3pSjVw78
zfx*4{%Rza~OWvtM`H<=`a2IpAFP=XV+=FcnHyRN}IwtUT!D?qdV=K38M}-P0fGLVl
z^Y2zPD`Ns3J-e)@ES_KeR(z(}kjxJHn^9-n1{k-tHTk_dPld5o#O-tr{mnTE-2(&%
z+#B^CzSTF$Q0e|{I?5d)ir@e;6B*9s(oE>6{mW#ci}%fid!0>g;}pQb+(Nv&#2P$1
zP&RmmTwk$VG)&0l!7%0aH4Up75-({|CoNWS{H!xJmS7upD%(EYu<I@LS@0IEeC-r$
zW>l|CV1&LsPF16@0FpvuJOBV&vx4W^Zid8Yq#j-t@t-a~Z93pX0w*In{c-ZxgkegZ
z#xN_0$EWC|6<~yk2Buk6NE|k#7>;+b?oFNa$Y}0`%CmjAGqdIw)zhwTEv+FBc5{Z#
zSL-6p!QI$7q5f1)`B^^B4fRU1={vdxTubxcOME8>FXtcm)1=h2&Lx2bVgYqkoP(|y
z@Fr{^r@nWYsxxw$76<iQVJFLou?IW?pmC!))5xndz(KfsEAHPRcT>8hmh^EM(E53Q
z_DbGu6jssU)HM+eCpPwUifC|R4fA%N*4OZyKhE2pbia}IRG{lp(%Ee)km-eEpv(_q
zHJNaJx7$9)heMU|o0C6=7DW78w&<N6+p-OYOV>)3-rjkOZ|70I<8aPkpm;c&db`p?
zNi8autjY7z_ZH2;iIf;aR+I}rxEqn0OtezE9#uOSxiYhJHi%yn%qxsh1C_Fd`e^Di
zE#&NrAB1f_(<0_+FRYagwKTkP(>YHn>9w5}nUO6l<7Mi>u1I+HRlD8|V}*8xEz~_J
zF{pf7Ebu}lN@hl@a`*m|4T0uDRxY+Vq28{FyoxNE$vV%7g;8SkhXSFOn`?FlyAsVW
zW+e>AB|<Z8!f0&B022$Mcl#5aWo3q4dNm_5`&Ac`JD)s8a}4k14_mWN_FAkHE1BX-
z@N;~0qxW}>*QZhSqvyb}YQV|SlV_Dq6dNUtsU_9hu1+HPPX2~-k!#NkT_tY|Z=Mb@
zy}&AWgBK1d`6vMa@t+p!MyUV&9eW4x<J4PO+dV4Jna~*%rqT1!GK;~W%r|;TS3qLU
z+~oG39Ll8EeP$^0dDr<@kVBiUP@qf#@q=5A_pZ4_C49lpMRI9d#^saPFUG8sz<!(N
z^C4w{S`+JMw^Ls4S9wbT4sB%DB~EYgEBRTJ1fR*?B<I!AJxf~Il^TolGvJ6&r4P;Y
zXxoQo6rIqvGcHN!s!9Q;?W$m)@`ytF*vj9y9o#k5V4V!^+NYGOd>OR1K3%{xy)<Ti
z5%RLgzOjo8Fs<v=#Vo}MNYUl(r=nCow^9z|XkbjDkUVmF*-p5{xiNiyz<%ai5j~pr
znJvMqNTh#ofbS%lyc5Rilub3>RgqX<`6mO<B*d2LS6kr2f=b4I9hLSt9AOJ?%}OKc
zk;R33m8}9oIU7#`QdijmVryye>_h>5ZQ{Xfr}isJyIJ~tyQq~|L<?e8oxeqWd?uy0
zHMD+7Npx}2Ny`HMPTAk`^+_ro`5^1FR-YeVoJoXkBX)W?o@O=4n~9QyJ+ov!Ni$GB
zfC;^MWg)rM{N1S30702Fw5kaId^Me;lPN4QeuHP=^?H?O+P1PE5?np@4Uv0#c&KeU
z`P`6r_?}a9ivc${F!h)Jjf%f`YVpoR(6Mh6WHd;jd0D9?_<g@y^yz>0zE~<1*;f*s
z)wg&(H*{_0%GcXY{l);&s&tabT<0a*G?;pZgxmu0(IO7|qp}vT@lMsJtXd@U;Dv+5
zMT6j5?bR=Ob4?ixrUVgpj6}^RZhI`7hzpvGx>fZ52L^ewVLbi_d3K(blRq^Tvkho+
z0SVS`Unm8?3e;CtRy8@xt8nAI=XWbh+CFuD(<bmyt4}2Pk9Q94oY*wbI1SdP(MeyW
z%?C1`RS5zmdvoZGGMtsIHYuWnFaY}SiwA6sAJsy}f1Xo0mF5f+m5o&`4{jd}<h%o6
zvgR9%XQ>ZZP1-E9(}!3=$u`)eUGeNGg?XYc86NM&0l42~7Ykf)!!ycLrcY(E9y=1W
z+H^PGC*s?8lAt$EK9BigxyBAk7exJ_$mZIpQ1Cy5lJ*vB5<)G=&<M*AtF<=nJIj3t
z&a2hEbnzJ<qIR+pr!<-otp2mRzPaikK8W#I49<tfPdEL-1j-_r*$J#$yzCoXCW+Bn
zPr<0R`loApO?Vbfki%)C@~g3?V)25YTX^Y`;O<4y#QhGqdJ8dzN{+S|&KGcTetM&?
za3XS5q%3CRxbp4S)G9KI%<>)5&EvWC1oC@?VZA_P#rt@<Wk*6=E5^IG*faYitVF#g
zB2y>Yd60U^e79pyf)oWR{4ig9R={a(wAlLvKdcu;jXM4FC%o009k`7$(;g<&Fll+O
zbi94&-NdG&EVxuo5mW?5)mjpy-)al?R}<kT8=3~HXELLmFAn@Pwaurq#{N9Mn6x7!
zgtk|o2#WNB{R3&I9yM#!eKM;wr5b4#?l$BkwRkb#BwA)}MyZ`rN(d6F^2{q9+Uc|3
z)%tLeG{PrJgg@8>VIFY3F+OqnYkjW+4(@4dc$k0n!jPCxiMnY>zL|OI$M;~6kegTS
zXY}z}?U$nV-#mhM!}*s?ghW0o5;)y*xB{1xqdWL%;2?*ACdbQ-z6O2oH!VZ-pmZ|y
zqm%exvEW@5Gk<x0I>4m5aj}bxUgjY*P5|h77`+qjWA?C}h#RP88u}no`91(GH{wBV
z0gv*8278ANma<YNjl315>NqZwZ$>;CccY1VS9M_I*tu|bDu40;fiK8}|LkuSeUz&y
z%>)<B8<hTeBnYx7o<0^`Z>#tCae>_Jl;yxQU!n=>udQ}`)rl>_TLA1H+e28GR#p>h
zwK*9sxw=@iy#ght@uYYURkz?!lM=D-r`PV!-t3w#P`y+oaBaL>SJlG*(|HvRKrp_=
z2@q?0;RX80(_rxHV(%4*PN9PR;^39s)!$e8K$3~>ev#te%sNi=cPxzf-Y;+FNnw}N
z)y0{6V*$r!%T_e)e$Lqpqr6-Rb}relyTEN=l38Z@<J6+ehd)M@ub<ImUKL)g2T!br
z?M|Qmx~df}VR3$+%T>M|psuV^V=V{NhqgRVp6e%aWA-!=y&O2yo)?uV<8u@NnLGsd
zQh3uGOliKFNOswZrO4VAZ(}L;Q|Y_Q!t>=kwuv&x85*eNtS;ElRpDt47c5&uJ}kt}
zMOM~93ECSC+4@vrie4+>ZVKubBwFTW^QQn{LSB81)A&N?>tP^y_cyEx>140i*2MZV
zCwhE|JUabxIDe3{cM-U6857HDnY+nrc<+cfNNQ2)4h%0FH9MGyyC*Ago7@C72+mkR
zj&pjj=DEEa8+I#^ubOQ#slXeUMrHtsd`J8219%1LEP8y4YG$%;T~wlDO23w5Vzxb^
zh38k3KQnSACfyA2xFZt^8nQxZm|^7i3TK!LR|y&(FL+@Kh=T2m^`oD?;1JPDfRjs`
zjyg=NR4ueh7hd`3&Ee*{iG2$`H<wAD(uyy1Y+Ko*ZH0b}I%1yb=Z>atmOl-qfrZ*b
zQ>w_?trf^BGbu;QV>=vdhhBlw+M~RK*WJvR79lr!zYzDPaPMReNnb6ru$K5b$8XLX
zbRA-`1x+?CD&;$l^Iwx%TV#q9I^XXHc8uR}y6kumO1`8D+;}f825!vrwe<#64lVn^
zaf)=X8Y~9A8H6GTK@<yZsP}|kloZ!%(1KX4fJ{w2#p>Y?B!q#1yIB^pI7RhMRu*hz
zBAY{hg!qQ$<NU>q#KsV{OkxG#N}KzE@YA`R?9<T$lZY7pASZW6*=_Y%p9>RxvCy-q
z^pJJHLVkUK2dtN6YLMLDlMJXuVa3#f6U`U0#+;kE9~)29g(!G%-5oyM@7$SXE4d1B
zHrbuKI|f{q=K~Q6Jv9pO3mzwjV_%AOp+x4#1>s|lgB+{D2?I^iCnin_x)O3Nj-Do9
z+698YqoasCvlhV)TTs{yiM8-Q&dr`c%pqIjF}6l%1_qn{g%N4Sems`qt&nLJuP|Ty
zZ=dxXt--c#9EAW%9b6gvH<wgCz#PxXY+wAH41WXelSbe9B0xRNTM@UBP#NQ>&bCs8
zCsQpYSNV}<QXSku_8Xti1xD}N{NQAS0TSF9*_-3_b?1m00La5Y_~qcrG}jHU@dui9
zp9ZE}=kBwS|IsUA2B>xvt?bsIX(_J=6EG|wTMXE(bHC`r6yK2sqq-)a$oR}^1kg&&
zqab*{BfLK{U-VA6BQ3P|hoC^6uTt8b9H695rx_m5VJh+%Yd84L8T%@tF{h0^|GlXk
z5IUcrqTrw|aXJ%ZJVKuweae=GOJVi;Ussd%{bn)FI-U}#+t5QjTDjzN78diBo}M%q
zX7hP<IF=lVX$EC}nEx+mzVGejL1x2G=DuDK&tR0X6kr~dP2bK*7#>v6+hh*Fs$ZMb
zbKS)DHCocd6D;`n9yJ2VS<1s#n%Yd$nIo_qeC{bxupDh`Z5~VU@qFU%VCa`6jexW0
z*wcf-vK{H9<DL5icG8X#3a7bKY+l=vFcVNigYKuY-9{{aX>HDnRGWj-c7zvvsDh@+
z5#hKVjWks?np1|1N3Qg8J*xJeWI}(KsK2$AQj{L&`GCDM%_($Qrj4h<acwl*&R0vb
zDf!3x(W}Ec0z|OxAsCbyu9s}y%%6YdZYqB_8P6oHeCA?nr>wO~q)4|_@)7m}dTxDk
zfal&~lW0EuT67B#$yNQay!01c!uxnL#2jJ17hMlUX5qIt{+F_>I%E#m7$ax5*R)if
zjqui5-lC!1-mfw`p%LOBlT1AZxr+gH?peXCAqmjBt;k?PJoVuvn?S(QuY=l$#?7_r
z)QG;{Nr*fbqyPRiT{s!D(aYMIH>bcb;A+fYWcPl+6(y~A5j)GuIdEQIrpn%Ke9Zc3
zv@p1IT<vr*VoKt9dQj1K`L@=I;QhelHqu8=G1NUc|MV6pn|np$ukhiCE7Q=1p9iL+
zfXJ$p3@xmV*zbYX$TzuL_HbI1IZ^mit$cm892yv^ef3wji~c3C2`O+=2f0&9hiH21
z1#ue5tl$Udzx>Q_5v*Ij{Fd{#h8tkD#E11F^&6RuKsi+QK=_J9MOmdDI?+>z=aDgA
zd?fzDV+UhmIDooK=hjEO_d8}Ki$-6Xu7v;bpV{p<PHREJ$H^M*0oHnxA<GH?s!v@5
z9u7J?nrkyHei$hzidi^ikY*3-vZBhO;eEGpCD|4k3{3Q+q=zKx#c5A`SxAs%r3bmj
zfiTH8{A%(ghj%KTD|mo=Jc5Nx=XCk(yOfl6ty`=1w>HTXQ8*27$S?%2+W8Se|BeP$
zJl`nC<}XA(9vqsjbUG_$YNXtdjjAFOOadMdTw=Q3m^DnBmgCE&68+3kdrskFfOsp(
zZ`AZT(dl^6Y0t~i&>@y^oSNJ&2i!HOft+NZw;`%48wmf?zxcJLyu!(JZ_)L6sSIj@
ztP4m-E><^xM5y;wmc7$o{1!RQU<ed4PkqX!$!@#>9+zq60itz=SAX)Um7cH>6u+S9
zn-$R=6}h$6;>@f(Cl=CD)?o3vVV=ke+k^E=02@ab%`lE<#wSjC5!dw~E9y1xXVvd{
zxoU@A_|0A{m|78cy~9mOaeTELzQ<dU*T-)*nSZd|=^yNGK1d%fXGo06s*|2I`%}5*
zc`M9%eLMMU5~G;j@5x8I_eHPB?tq&R71Q|c%DO!Nk<44SI~JI2g;(jlbH0apd2IKs
zF~{}C%xWKy>bhKhSGyzA`<q7%Kv1nU4{nc#0@{|wy^8Pga4X{HQ{V79Boz~ehwm4-
z*gDNO@}M^jQ8Hor9shUzNYG4k?*;Oaf8|93@BY4OC_Q|FvHHOlzI%Vkci{de*&X@w
zgj<f=;Vapa(Z($>>iuM%RYae3gHVCQ(W(QSnEp~;D{9v;b~v!|`3CIAGDaf(EkP&C
z{94BzMf|Ezk2q5v&&7<8`$gBOA&{n);Yj)Xs6a_-&h)^=4gGyRz4@T}!JK9J7|%Ul
zf8}A|)_6x>2(d25lDTxJ*JWc7!G<M*8W)hM-NmgeL|-Ko!}HM9NLH&=7pRT}LSRL%
zj6Ivfq+g(UIn$B5H0Bd)dapr$)70x0WOPS!zU9|zOaZCMet2iF#<V5(<iM=&9uN>g
zUcHMu<u@r>8g-+N+*MS#GygUjD4TV1_$wj&1NmC6|0X`B8%!MuRFB<tXS2<cy@;C7
zM%t_ER+>=%i6Nv1?tz@%E$<Ze3W{!?{*4FVd2&a_-BxQ#i|t>pdw~}}2YX*`BRzH0
z0I-bN&LFk0nbEzPs<g_N3F}*btzL43o|)m;VDe->0Z~>weGVu>Jb49aGeNTL#7XH|
z)L}Ed_38UV?GnRwvKq_>@;!WzjCd-?CZ&XD0K9&wE{h=fn;v%%+s5VOK24iX#}0+3
zQlOSAlB-arg?}yFQw1*u)gD(h`Jzbz^mjz7VoTmbUq<SKLA({eLs$!F@kaAqn*772
zLauv5@kA}$^_RaeZ$iGAma&zsgWGGX!-B9stImQ-Tk$~BA2?x$ky2vwo`RLHa$fQ~
zM2tNN>fWOd{ZsU;!?f5nhhdb-ly(X|sf_$&4l3;S-j`o!Eee{#`%URseL4HOrJi0n
z6u|||8wt!?9jjs#Q50Wi#p?pbY^QY}6dAD9B9g(r7UC_hZhX8CI$u9i-fOaU)o0UT
zNqyd1%nX>MZh8K+BpuXc5c(k=(!pObG*Bnjtcv}o`T`-JkhnFTsQ_;osb>r5Z_kPp
zQLwwYK8f-Rj@wDv)+S9IzFRJja=(mqmY}fB@&Q--lxC5QDARt=Wc*?&G`%<VqB$t2
zqhbYdNOf5443V19dHmS=1&|3-`zkQ83IMpkiPggz`Ix<4g7LWEg!x*&vPqRyA&{T|
z_{SM>?7|ytv?djMh((`U<4toba#X(`koJ@QoljlK(k$>|8(bV&;U{b06?xY-m_Llw
zmKi9F`V4rZ&F=2~H?P#5;1*Z-2v#!m^kR)I{Irzb_`qDGyS7DYqt2F~!OLKXJkT)(
zFE0b~p+G`!lm>8_+nr*&0k_g$nB;f(?tOvB02S2Qi1&xalRsMYx3XxOVuMOh?JU*1
z*+8UhoN+mjRCXU;iday4ZZ4BJHbt?P%B{aZQg{c@r4_xD-d=%09<0dFjm^;c#Nn)|
zXLayL8{6*W7UxDllE(Xr+p^UkB*@nMioPf1P@N{RtpRYzIkBQ@KyWmO&7ii#<B-TE
z#dLN^o$ycs5ZD6Fm4M5K00W9;+hmQqpTefT;DHA0L=7fQqdl9Pef1S~#Q01BxB1cJ
zYZ?An3+Bbc`@_JU;=tB`?V!}Lz-a7teiK<-ClHVyu!@rmV@>T(J7l0qlBwY=z2us5
zNjJ+jU6yD}(#^{^@#VT#i6O<*3x7X|SAU9hb5~^0O?$mxvZcfL>x@uVr|<5UUB+JQ
zn1m<hIc3t*3*4+~pSB{Q<7~|vp);dzMX1iWvH50xh2?ie(Q|%UszwnpktMDm+2pG5
zE&yL2ykmfTRC6DR%8&!>+h_30Nnk8*<x64C&*sg5o=xAK;*RZD7=8$nsRyooGeF5!
zUhg!fL4y17Za)wTPmIe@zzsA}u`zz#Wx?EDg4%83uc$Yro`4Gjdqi6*p@4~Trz07b
z9DMUDVY>%2&CX0K5G%kH#I{WY<>-6=@Tc?_;r^SOGUc(GQd5tCClSKu;NJqqV{LG$
zVhy0yDN~W<@%oM4VtSnUfd0~b&7Ds-u;th8`0a9~^k=}-T7!Y<t;E|)I!70LGPi%b
zJjRnPs7XBMrb#NFKLsZ94%gudvS&AV8CBxZSzU+XoQ*hL1@bEM1Ka`IF{EgfZ)vdF
zD8VeClu*50eh=`22fZI@85p0Gd|#!-5ZXfiCOI3ra!=c-Ie!Qf9=NsHX8Lj1e11Cr
zi*r!QH*;7W(KyvQ&+V`-n@@ioNjy%+2g|^{Eb{!An+9pWzr4_@Xq8ofe=_ql)$&_~
zzm@iLEM2H&Eg?;AU80ONipcx{l(3Qa)19@#+wLSK#NA2K4#h#PWv7fuEbDFZ=bYl<
zr^%%&r$xp_EiVLy`}24Dk$Ef|-ufWfM;r~hLEWuo()Nx?$!}hbvjGD8b%<#7RqH7}
z`Owes$S7l)=)>1Eb(ndBA3`$U^k3R(?9VMaqs8C1Er94gIFFq)&Wi;HDQmEqs33&;
zWThSgDE5?}hrQ-m<EEio73j|q`P1OvO56bhF>l2S@Q6b`eVwkw@&H9-g7=y+bp5cy
z8B?)f2LpYieW7tdYb5n~Uv69F>HXjDO|%1+^WRPm-qcRDmq$2{XZvXZ>2XITW0l~H
zBp|L)If0VUAs}}e%T9DLy|0~iCUFa>lGJFE0swF;8<xRGgBZhr+j}BbuqLFWPraPw
z{xC0qLn~b!Mu5DEy|=Q;(>|1)n-67ia``8aASwL~PoN~m))%5OX#aSqj)soF*61&6
zen#!-$t(>HI>ryUU$jlJ9rUf<=C%g|Z^a1ScTLU%ne6e~t5FnTrv~iLNupy;`v>Cy
zIE^jWB&H)ui}}q>|KMq#srq7-{2p*KJPoZ--Jqyc+kh$E9)K><(5XGV{~Hk*<90->
zwZ6ymc=sOr#)<^|boMeE{sTi3M*Qt7b*qxr5nEQgvqEcG)A<p~y6Ib_En-HlplaC*
zz_H`a+2CGd4Vr@w&a}bDZW=(c=q(@s+~M%H8R^<K;PQTKk~JLK%C)xLcAqsAsIXPp
zseKRFOAW~C-&RWh>!&I??0gE8<gqo}K_~?K#?bWRUl{t|Ur;uYIJ0pvqIct>Z#G>Y
zL6Y$%z6mPV_%Vh*OdLoG<3OSGU$tkNhkT^O@81I`4*n#r`&sNlwD>vqeX@<hNJ}KP
zui>&(!mM7rM5#PTGXHX#|Mii|ArWZ&HhS;+*8Lk1cSK(OfcAX?r`+G!Zy%D92%)+&
zr$Yu@v6zopD`s{fhcRzOEbkT5P^TC}bSUx$r#%n}E<+n*5;fwf`Fa!sKq-v5gkZlo
zR5DBbo7woC@zOM73k^T+8D0q8r+F&xZ}R+dw6an&LR#Y_IlUX4XC6Ro-i{iu2eZo`
z@}KQl4HFJpopAxh4FQz!D<JT;5Ugh+!b2K}-UkVMyIf=G*r`Gef-ItD>c$Az_D}1J
z1e(_E;-!*Cynvmq`w#?CHZ>fa35PD-x8g}D+a%kp<17Gf!#8*Z(QllNs(*OJzTsfb
zK(^ua3uZZ891@6KbWg@Hily2nyb@&LIb3ptrX~1N+)cIOd&H9u$SDv@L|S_5?lxB|
z0oL$S9gnQeT&LH&#y4up1YsFA%~3%Cw$E~>b4CU)^Y^%(KLd)vI**;4$+zY2@ftHZ
zygnIlEI4heuk~|GPpc>Sx@Xz<!$gIZogn==5VAgP7qFjiWh=GrO{$L|9WDcwfSiv|
zVxirLyirwb1-x!lR>1`VmCZ)ih=4MeH}}*&rq`K8m-2!v=w|drb&x<f>s>7_;QHEW
z2HQuFNeehikt9yXE3M~ZM$vq7)Uo9q^*}zhzC2+QT<LIpWSK+th_B$t2^o}a777~U
zGDvCl6|HOw;VM7V{FV9%Od*Z)9y8q+Fh=RWPsOy4?ZrhH$AJV3HmhyALT38@REuJJ
zR*rhD9QXIRMHaxQ7si@W9YXtnTV&j&kLrs+;@DcFP6N`uuzf{MZToP3hxSPh-$up#
zcy;&SKYBcT&E0w*nJf4D#ckB0)RFNowTb!2x038~!ChAeuZ);xGyf3#;e{w@5obpz
zD1FpO)BPzKMprE=z<Yaq*W~t;viT@RFI{BtR_P-;i<iPY&)M4-89+KHo(LxwROh_^
z#cua#)4o<b2Y(QdJQVf0<F{4o?A|^Ds)IJ#w1WHF8kq}2{XaQ#QcVFy!0fFJuZ`Lp
z@)iVjC@B4=a5h%A<kxn>IZeXnLoePy+m1!iReU{)oPL2}u+EyAMF_Sj{c`z)`*fvr
zrODe}5j7jWkjT1ZCBGBLP#DV8ewV!goBNSKsdC^nH>a;yWPs>4Q1ny+z_sx-o<L{i
zcHK+{3Jfk%+~(pml53VcTxy_L+sgTQ(k<+pxhU^h^X(;G(y%ALr@w|@o>r$AsPhb)
zlK24`lE3S_rP3rp+~!G>UQsRHpH1Sd#0^>e^^{eH%<qmE9s3R)*&u$x$zj$vC2|}g
z#wsGbads}@fpZ`StSh6YJ<8sw{B^Y`8sGZ-uVKz7s&t>~M6b^9s>{EaHw%Hzu?r#o
zCcI{MMt)8{pt1qAkFU&<;6g6<R=zHTi}c{9-_TcY4f0WOUA#9HXku{*g#VD1>bhwI
zH=lmL0pf#NZH?T@j#TBfhy&u)$GJTQ=6C|O5CGyEGE6X;&*#fDaeP|zT0SX^ygd-3
zZA}asrw*(oumw_JLw_zFiMhrSS`^MeRnx#-ye4->T$}UGl?{FzR&Y|De$mr*H4>f@
z0)B14TTgksL3u6W9BbQ9ZIbBN34`|j8dMtaN<VAu%^}Ls>NH~DMx_wCV}D}5V_|Ce
z{KYE2z+I5q4cIZrb_I>^7hl_a2f5C^JyooE`}ivosCO_<Q#?SByI-8t-MBdM24F;A
zalNJhdP|rW-0OtKx8Qi(uzWKc_yq!z(RHSao{!g^M+n9_!QT;PCoy7{NE@i))nVV8
z%bgSMfc3RE6`Ax$_(GYn!H@q`6IyV%4T1){>WO~e_hATl2pL`3VtY$$dG?go9*j99
zx{W-9r(YhcbDwq_&mI)kJso(r|8$Y7EHk^{n6CZqTODoU!49gsZntQCpPtSuG-5dO
zo=!tGlm+wj7?=V4_?`az@K0LZW~fQ-uzGBVS>Cf1;HoOwJcXBzpUoIn1LQ|NtH7gd
z0XN0JYw-#eSDks~GEms5+p4%4QjRSy&Xs5)Th!a?pX?xMmhy|2f6cAGgv9_AO=IDC
zWZB(X6=k~&pGxAoY|$b8@gzX3(Xh=|Nj^8ozghZpRQLkZluljeL1%Y2Lmu)({|zV|
zUz=49-*)-t4bcSM)-omrZok*GcEmmmcggjRY(f^o-(D_ajSo_%yf$Ra=GL|cS^(%n
z?zJ57ReC1rzcUm3Frykzf-sy!tXrlP6pgXW2ga4~XC^=`!QZz(gw^MqxVpGZq?yex
zGolaRP;G9nPmL4714a$nO#DPoeoQ+8k2{IdWZQ|zR$rWc8<C_b`b|_Sc-0Z}_HviI
z{Is8Q_AtkhGN3o9xZbtKS&0fdi;9CE_8vjL7u^P4k0t<>24UofvoeO`5p0lqq@e)5
zbTy$Iy9%}}mEM-$zt&Zla;=NL%D!><i#G&jdURvmYkptmm2Vp>;(_=MfxNd8P?KYJ
z=ABu>ALJ17uy_h6Apk(mL^NQ(BW;Ywf+psw0FXIBeWR+vKXZCLF%k+YW`WIsY{A@r
zQ)NQU55>YftA4&`aJ12r$6GQ$d`T%cMwIMv$36;JPI{~F8zsbM1{rc1t8+f|Y}JLG
zg{tA9ADx{NS?;b8g2wwUKP82DahV4bwFBi}?mc(EQ~?1ZmymSt%rH+@!O9)7%|fNy
z$aWy&6kYe3d&602f|1;BQ9$e%sZiv$&1FxH$@I6}9l8f{fDT!F0AwCl8$)7Tn(f=&
z7oVtKTN91X2b&j%3!#J$unsgoU3@;B^od#WD)Rd54yY4O+^Hb6$(oB(wVgO~T#KH$
zqLWnzq!1^G?r`tdlSU3${uO-=0ym8h7VY5fH19|tIrEk#XR3MKQM}V=lJTG;$J^%D
zi_{o_u1apY-<Oixg$%&5jxNJPg0l0-;;4*%cOBmWsIjN?Eht^=9sNi1wOtevizqKL
zouwXK6SH&;-tL-7wGK`rYRzl1l5@Rhh|oG}9dZk~eLUhh(DK%o5+CHSy19@a5+G>+
z>{COYniB23%2%yhrU&NBJb%k4?zVq_WBL$rSjQ<YKl`gSp-iDue&6QU@5ff(XjFXq
z*#ZYi%M7T@HAJ{M!Gda)b3T^_U=blrlcEW{K<ENWt|^zwtG#5Vm0HzviQG2JX77Xb
zW^2n;S3GFaE7Pr0*WXr{{`Y@qd+$Ih|2Ka4MwHM-2yJC&m91oy$lf!%b42z?9YiHj
zc6L_wc5IQ#-rF%h_A$euh@R{2`~3Gj|NQ>=^+$a^=iKLgzvnex*Xz381EsttM#QYM
zZxQS=HEWmmCJnips|rnT4?ht@WO!ip&`G0acA5XMtypK&_p0wJ1CLC*?ka{_$G2E3
zk}sAXMwRF2^V@^w()fG+*c@;qG76N2Gw%$u6wTjs)tI`!WBo{@kt~TJVU=eAn2PJ%
z5Nr0$NfwUF){M}pYRGzoJnr-@=6PD6z4ATxc7A2`bL}g)CT4s$l_KSx_kCXvjy+8$
z#<@;a3}<)H7>p*?kG352BdRnZK%Sa<0&F7&l(LudyJ%3L@`<)?JU-!6UATB}mYtVS
zr_v$VUo-ymTyuA~Bp9Pjinz0)_(B#(ew*1ZB<xGTupQr6#hkQqI)&x4+}o#+;lYX;
zbzS-lM@ZMFy^Qqx*>^?<+e$;3gD{N2R!qbVxogXaOFjA1@qN=hVFQ_t$`n40flpJ(
z$7t!t%$p?{oCUNtwiWE}!qM~$*<1GL540h%BGGYw-NkZ4uu7nf_zzi5p3-Ce9r^ua
z&0Y+Hk;vPYW2*Vw5(K=4wh_J|!9b_Uj4@`X3h^#yP6mv<f9;M-O|j43T1B3meFgVw
z>1T>Mi~ZKH>)wtE>AOd95P%OejhJx*-DaZ4VqS2pOJ@0-HQ7k;ql%swy9=J@HF~B#
zga!wdBP+p|cpnfp6P%m(JZpaOu}pjJ{Wzo~jr4t+kcjDH^(yYyK>!AgzHC7AyOzbk
zW$X{XUk&c+dU05?m*ZRo9kuv}oR@R5yo&5DA&v4%VpG9VjCnjZgifBSE+Y?#&B_g3
zOuivo|BD*VdJz}o@qc{mD#WEdYM9GImPu6O<s#{BSQQ&Hnzs>TUz+J#$7AL-cop3~
zbA@ndSjMX`^skJwH$~RC+H)x;W<K(&A7L{JV%r->qq-X-`T4QznY9#1)an;${;aig
zEn5GkGKmViHu$By5E5`1Na-8obxb0f*z?oJ7^8Dbz0Mn`fANx9kmSprkUTbmaT_`>
zu+#g3A&#r_1zY;qU#}36?!6bIUCB|rmPw4bX0M%x@-Az@_C<G8#s{vsmo*H_F2#3f
zhsgNN7;vu~ue__o^n+=CX?v7y?1QsH*7>y2lv1D1qd!Nq)QqI1zs}R)?(O+`DQwkI
z<6n`ZXHfW`QXfx$X?4RCvYCZmPy9J3fH0RP^qxE8(BlP`y<*Ql&b4Mc)|3cx5H?#$
ziCQ}u7cgOezHJAU<<jOtmSED!p^almCvdbLW4%mnm#wt8W2hm`hd8DfjA59pfbDwb
z*LHnQ?TeR-AK>xY;q$kjtp2lVG|p>;OO;-l)`~)(k1#4egEe<UI>C5Jf1RswFoZAh
z6pVWYWiGsnau<*|aM&K4tP<VpYW96H5uui+s0;jYQX|y|@>?vhHSRDmzF!lI?sq#@
zYz&D=eeALB%JaewA~0wE%hkPMyo+zE>|R(7a8V$*-LKy;lcT7`IKHEmND)o$y35oS
z*&lnIm{nosa<@Vn225<&K1hD<F0^EnkNgtN8}hMz&lgcTt63lWQu3?*d7w&jPzeI?
z;cyIuMoj8a%l!o#6_cTOwR#aAsF4wEMxmE(Ofip+M(ss<s{L~3LWiH|>Nq)qW4hVI
zY&jVRQzKNQ(OuXb`eY)0z`M~Yxd8a)R_Z1(1DHue_?C7^Qnk;nN?>F_=R7xbn@P}u
z-ZD=PR}8|BX=5m}TB=wucVAZSD_A7aC-K}tttTe2(3=3=TL(W2<Dk{<LbZQi8e6)p
z+z6i~KXi)`=EHB}%A)wIB7kJ&A$slh6%xCmk2T-XtGLL>j>g-3m?B*{GVPaJiP?Js
zVs;e5w@e`M!?tTFPkiXy(OWlt1ym2qLkR*8dwG+IL@joVKa?O4D!?3zd`>nGJAwEO
z(j)m+Ghfb<{d@bPnni(lY@G*0^0;UWd_jw8rmFm%Bh1`mStUhy>ji*ag1bIjYV1@&
z7Izxlvm%ctx?jBI-i{Ys&AVcE!JoXJukR$ruc!dqKYNluI002Cj&7yCg~YZFNC7kX
zNKZrju9UnxrcAy6v!4gd;TsT=rOzp@!$!>VEvo=x*n5ADx)rwHwx^(F#6k^K2O7ko
zE?33!4CU*x^{?5fEJzNPdiqpwF{nz;&O$K{x8>%A27_MaE9lHK7Y|?@1stA$6CM~(
z+tM%StMwrY@4p55YND`0?uCbW>~jz02l2f8gKwt{hY2FYiG=$VlMkFAF*$>kW$rty
z_b9lo5xz9dontx^1J_XlS5Aq`=l4FJ&7cAATg($6G)v~hJe#l2IaquXu5uaeujz)m
ze^FWW+c?@d*yFX2zRzrqiI&z?7YJvtFv@T3#h%)oHz3qZR=aB3{4gk5x$D~bA#VJy
zyE*{b{cdoqc;A&8%`a9_b%3L1(j1lgRn9Xg=L#hH$IibbEk!kwUfA0Xnv4%+&GWpz
zCgo>dw9>J*51_$e#>hnCb<GJl2+`%eyw@0QH7WkJaXqrt(Zk7*o4-tfTz{CU2cz?S
z>i~@Nsi@MW!JC(>OWOrcesua?gx{JW?eKE{U9brzI|pSlLgQ41g-<e`s{4)Zg5Swn
z;n{pYn#rFEo#|S3SJml!w=f2P@kbrk1$IM+=TrZ^);EeyP}%<SVo>Jx-<{@g0I5<W
zG@#l=-Jy6DMo2+rJfXkdy5<4)VAmEy8Kn!T<2j@Ml6VRFoM&j=r`%U^3XF?6(*c)x
z{9H*@b~ssmT$Og`g+`pwN}_Ze&*H}f-?Hbwi}DHv8J_&zgS0!|xzz?eyEQID=X=bP
zI-e-*pYg$z7ZzMeWnqvnsgoS=o$b*pOv;OA@6OLrUiht)9K&+_@ns#`pZLkgpIoz4
zZUfteutx(i9a|4C#rV}1Z%cz9VbQQjXWPofp}cNe^?yge>C|nI$UyNarEW3TyOywa
z@cSmW!zT};(b$BVB;f^rTS6!&mU>|SOZ@xC9x6pIw#Vy1i!%!6UjY)q%7mOT2)_A8
zgBKIWJ`OCNsTr*M{c`Sf_|zrV?)&eJy4CiQBqAAOjBHBpZ)Sso7@DS*OQg*fWKjL)
zKcskV(qE6Jjlr3NC2nPqz}8CGJ!(vY->*7tre8<~rFC`%u6SG8%To+D8~Y&b=&rGS
zI@PV8KUm%+W|Z?D%hSD7_0_XGG{d;!;vD5d1aA&OMAJ^qVDp^j=>Ef^L`?l}bwX0W
zDD~Q#UXL^y%e6#1yD7o)6i8;xkOhCVa?e4fK@|AIQa;LwOH<;9YHx6`^(7h-k_U5x
zbtXP~fVC7He5NLBz|8I3(@wA6EAPs8Rxlztn7;TXfykuB=AxhNVC%P5zPwqTGv@zv
z1B4&H^sSiQ2}zOrOTrFha7OP-oa;(7CS;WvYfIn$U9rqk1UPZnJ-5_AqHBn&t~-7b
ztB|ECn&TK(*x<k5WankMC;7K!q}&)ULDVWh4_@5>#|x~%eZLYA;c}`0`9m>ds2MXc
zGSuV1(=5suV5h8RlD@2hy|OkVGQ*Z@*K&*y(?VXX{I%l@m$dZS*W!H<dn4w4jJAAf
zxy$20D^%<391r0jm3lL+rHkX7E?sMIJ7}e+-d{~;D3y!(T>IES)l$ha%}5u}(c;HW
z9W_x-pG4Q#?Dno@bHX<ITSW6$`k?vss(6B=^-X46pegC(I$d_{NacjpqX@@X*D?Cz
zkDnT-Vyyj3Kzt6ihb+v=ogAx7?eT;R<3H_BQg^KHbDj$Ip#k{KEyt*0*cWE5&V2~s
zqiHpyCS#NbP-|$!nB_H``N^AOyw?clRgr(6(puPg3hm3o(=UMKL2V~W{R?Q4wY`a%
z58l95TxTIX4+Yoo9DFuyml@8J{Y?~9%C9zR#&Ek=wEt^kNVzXThywDfabJc`<o9MK
zZ)k@5yhRasm5Q)$ioq_BG+ZYQHMgi@PKEirh1rQxNo!$FM>CP1%~%vEDzNgaz|!_m
zyCt7(aZH8-dtkN{1{T~elpr#;diO>&Pq!y%-e(O*DN~j|(FTFBQfooDsH=<r!~l=C
zcg(qY3`)UkpI*4uP<AZj%<w}n6n@=#@uPCF#n_a};py%Cop8T~SB+C<K(2pK3u9~V
zylU(<C^=t#^}or<TYHd&JyDc|rKnl<0^yqUG5)N}prmsT*)&X^Jt<uY(f~BCJ?%l?
zw(`s74XZSc8mKa5*moTVpM2#js-O;8jP57RVObBM&QL+qY7~$iqmX;YzYqSkP@xa@
zUJcVyGQ?;nlhLmvDJZu!pcl&RS<Mtod9JuO(Apq2exv(C=*Dscye1}mB@wG-iA*cN
zCLKPPZ|6;U<$o!Oaai~3^p>WNP{5Sq;XKm<ENe_?`&v=p24wc*s9_FvwvRK^i03++
zz~;2-jpEI0WR-Ii;J*OVZ2aSjMK-6k%@_3T>Ec>jRz*lOa7iX5JUR1)&`fV3CQOx7
zJnG9qUR#{C=TYFp4qt@<3Pot}UIt|5YA|4n+REdOocY!7>Y*JQ@=Fy(Dp!^6cMBhW
za271d%6UcY;X8n?BQk!)k2l^}6z(3ay9@S57SHFS<C==A6<{n`IdE!i0fve;rwJ89
zLPBQm?m+1Z8)sKhbJ=PYZ~~RU$olbX>O;;3HUrJri?j2x?VqXV2IuPxm_tD;-ju9t
zQ!impG8;e+p?M1TbqZeC!Dkx+o88!&z~F^mUyZGDbbfi;xGoLG)cMm70Jn#huwCV6
zavyGUwt#D-4zHSDP+=fVzWJA&FJs=!z_k>%C&<k~!5cx-;@bJf&u_X-jWeoddx?A=
z_FNZ^%1}m1!f-v$w!<a2p}zj<PoV3qpWDtY%*{`#@$+v%t2WT3f}>V{VI<E7YJ^hE
zzlQ*6ydNzIy8G_?lV3n7m2H4g2!KH-I%M1ez~R!}P_%TG%{lywBD$Z<rhhF=)&G4v
zHl&dW>A@|kP`9A#RzQ*E3QGy8xgThvr$FMeWj@oBz7^-fac;E<CiVxoW;K4!-^jvX
z0XtH3Bagj1LkgSLjDVEU{o)IQcqtEQihDly0BvIAkLFq2dsTd&e!&E~MQYE}Id+V(
z=2I$i75F!XxRtbOpz<ZMrDQ?3hy;hcocMi8`+=jlW^e%+&17p<rQ);z@c|uR-cS+h
zTAoB}x&b|w)7A0-{VpvQlMDV6qH2Q0w`5w}I~;JN<)4TD^p>dpFlUQ?49pVoU9Qsj
zNYoCMCos0bh&|>SHIRkQ##3_Wk_*R2zQvE@&q(yRW>~*z=QezxSd5l^fcL-Q6nOmt
z3ZUy&;R^v(E||=?oUA|2_P3=a6E+8U;LUx0aaD@LlB(<Y(nG2cdNn0ix%{?rO;@{7
zz5*?fMU+if9WeiFQ$_U{495q!+=l=;?Ke8L=)ZxZU>fjluGNzW$0FljE?doF=yT7D
zpS}IixvXm|+S^u;4-``=V^P&WJ#6esyVvQ0VO}^ZZK=;Pa}=sJLHekQqu&LU<Nh>U
z(z9D?ZH-TaQCr>3yC(Te0C1Qj?K_(j>((g3%}*xF%dOx?W;8&r?G^5&f)-^PuGvkw
zB<GFA+^1X}r4at!FX`}R<9pHbXF}PH4`-Q{;gF@r(=m<xmnVxQ3gbp#lES*cDe9nL
zvVRSSv(CBb;)Zu4j4+)Xys6aBo*UzymLk8wGwihmM?LH_h+0k9pJ5g&DkfvGkb~rV
z)B+9&zcSlmhlkfSiVR8c3n)ITL-jL-`;xZ$1u*ul@*NxeF0D*193AEYGiJPSgWEBy
z@JC7T#^^_x&pz6H!d-{VfXA0jLZvEr(rQ59X~TCKEhBkhqj87R!RgQVG-aswVsGK~
zt|0fn@8%D`DmGSN!DT{$iN{z4liTdiuQn$Hz%1O?C6sD~FPc)IxsuW3CgWiPA;FI1
zu)w7|Hf{;FgLP+MH*3_9Z%ErQ_1D(l0RRNSH5a@837ck`4TN>)gpOW!6f^3RmcEgd
zAhd+;9y?kqr4f)~<WY=u;V^F+->9&<nDCW+iO}ghIBC(<jg?N!P2n{y0=P^F%A~(9
zmGkyC(RX8Sxu*0MJb>s!1|y`ppK(33w3O+fC8Hlfs-9HUrL<Qnb4;tSGQ7i!nrdK)
zLB*PMGW7caUvF&5g8%G__irGGBFO2@Uzydrf>%IB*g~)*-G^>;XdrfQ-Yw0=qFmRT
z5yt*3=QY-gLvZI%G*kpOjT!Px-V2%EN|UrDrJmKIMvxzCLyBr%htUNF#TYFwI~-c;
zbuGo7waG!@EP@0PA~i%w=}<%E-`7_7{EfkF?W<<i<y>&4c`xeZ<UC|+avVb*pdMs<
z2kp-8*VPi(Uh}youwb_mYbZQe&vN#-(mhD&`g8No@LpCY*@M$Gt+K;K!Bzh}mb4W!
zN{W6yIITfH<Nfr;UPxp+C%|c9<OEmudSuH;KQL3v(zf~*B{0FTBlYARuh^|LW6sOc
zF!RTQxS%b<FMalM++FWY85vhX-TzK}ZduZ$OOz4iiby(0^k_4NNcNSEMT&=4O6?0&
z(TS1q+;AR`wIet6gryZTb$i2pE1_RnN+h|4m)mI&Mn1$H7QgTDt|;v?{|d+*R*&_&
zDr+yCzh!fujwD0Y%W`WxSeesfXxk3K{<db5`q(=mEtVrm@e(%wA5IN!Oe{?c2TZHg
zA=s<3AujVZ1=UrF;L79JS6HsuL{%L#U9&K?0<|Uv@PYA*&8C7u*YBdIz@#hKJlL+S
z-WHrW9eo3Es9?#lut5_^i5!K8bKxl^&;s99n$pO)!8#jR8<ZVUo!{PKglq<{5Q_+2
zNW?{KTtz-xD3}<>k$ixdLPd;=zkK`{BPsu35HXK}iEg&MiWZRpsoi3%DAiViF+~%?
zs8n5Te-GKHv3p<5<Xcn87H@7o4O-S2o4U}>QJ6W1Si#w`Il&P5umbm|g7v!h04wb;
zuyrbQMev(@u8iSiZQQ;BfaHxkqOiuQ(vrDB7#xqryI3$VUdB%+KD|)UDM=o!2O}b*
zn{V0e{*WWJ<=i7_b#{XikvV-!z_8DJOti2Y5`SR6{fZp^e9MeujQmo<k!y^953e%2
zvT13*HsdGTc7cot=fTF*BkG+UPp>up3h5+c^l@7Hq5Gh~s4V=%*rh&b1Pg1)7=dJ>
z>li79`Xgf==W}1UJ8Om{w0V#LLM0U7D{gOa<@cN33dmKpVutok4HQ`}#T*c)PI`OW
z>!*mWDpDX_N3gF4DL9J8E6&MyLu<;HO*ogD6mS2nw!HgdXQ7~MN8qy|Xo9Ht&kxfA
zK{wzxsBo2V7-ND~$|Pd=mI#LhJR2n`b~D9)>MOy<%aCq1)C-Ag%jEdp%$&gi?vB*G
zdTN_T^|-A_5`@C~SBS5vs-aL%lGHgi-i6NR0vSg8XgV#CjNUS-dAJ~-Z~6Y>irdcO
zht-x{j@4iYplo8lk_N`BT_GQ^5*GZ~qY2a7YX{v)2h*8qtW3Pu8n#b^QpxyasOPrY
z=|I7f0c8>D6ngxj<mkt~!~=KL3GwLeOp6aBaB<p@Digb#h3qR<O4pLupteV1;pxp)
zAK!z6ZnOQ((<!Tm;<ZfDXXwa4eD+>4D5#IMrN_QIgZua5maFD3=1ukg?tL-?aj*W6
zG$ZtN92$KfDoz+-2$q)m8mTH%1Hw|uN^53%_3r-g%DtMug(to3>>>Ppw58}d6F@%Z
zax+!OQia3K_fM<lLs61&xA{do$PAqMsJ2fyeQ9^@pyb#w`sy822$NC+cUS8lfP(h~
zg|RL;;JF`WuIIg;sb(*>4ZsUK>vhki81%_MlMdQr&5zJ0&kSuXh8dDm+)}DzrO}tI
z^fbPElP8#%E_Z{+HJ@S|M6biW<@7E4v9Wm`7jo4v&<EZo$Del?-{(i4?%rgOb6M(%
zjx6!#Gy%ur^rNu6zw;Eb*v=z;;KAaa#!j5-+s%9ZME7hzjghHwFH`zgTBPn4c)c~#
zhbcTaG&^FS(Iq{HseLd6AV;>LVy)woZ`u6z35;socOOw9lXq4{<GM{GZl$W>%?}Zw
zb^!4FbVr$~-R*{#D!+REEQ(Gj<4>=kwmL+PtQ%IS>%I7sa$C~<V(a?{Nn|LcQD5kc
zst$LC<;n&7^+6>=8+@SCWyJ`vNj7_@_4a2eWQq5RZ!y^%I%J6mn~x2?QIv`AP7-Mg
zcGsF?<j&Om_@)g(zHnA#uk4K8%s}Nz86)zqAK^z1r<H5POy9QG-{y*JbXoDuIAwNG
z5UDd^1Nq9wey*qR<hBZshM>>kMY>qlA+sGnI<hK{rw{l{%$7c;7`KWPGC|e%<vV+P
zY-fAij$4IWJ{9QVhbgwYt01(X+*bRYb+9AEMw@$~^oc=|m8~F>q=yxa82syLqj>n$
z(SA2Xh#aPw$(m<`WlnS3y7u{PO(57Azjggq!|swPdL~CR9c18TJlpRzHr8&Vz20%Q
z7K9lBaxzARk2m7(DzaF=D(&{SW;trrTVj{%WZmX(-O>(%<EOh@2j#5U3R6-Htq?Q3
zqtc?GPJi^cT{kWg?_VvlqLUYdF;h|`D-uAGIxGV%_m?8kt*d`Mt68Rj8oLX`Ww7fe
zF)M?>k{dC<?NaU_!FRG}B(FfE?by<W=*f0Bvf%-KRH{I_en?1&jhB7x?lGJ^cq+_6
zboKhv<QAMJJvMncKn1wBQ>~hH@KVg$tnA9EoR^OnUlYdGKKJ@h`{&-yT{wc#vexB-
zVXNX%1Nz+$&L(!x$C@VN@s9I0yrn+!a2l9j(`ycP1}{i<VsyGGr@;xR43i_J-Y0gJ
zPcD-?wZy+)IkY0Foj9NVRQ%}P#93F{@+*dthUf8(+BDyx{JYq61@9p~8#>!Un#Q+;
zud5#K_rdT{ZpdmzrC;Y3RPAI2?P|lXG;(LRm}P{tLI0B|9y&WYg}uUkyt47a+O@yS
zzZLVAl?iP_Q_md-zB*;*JS!CV(7XS|?M$ns{TGF76~dCBVeS5KrD^OPJA+%pUfXAB
z?%iN?%yk)I<5|a7I*jV&o-yFZD-dKoRKAX6`C<PaLTvQ4Zy$UcQ1dpkZduwT?}|nh
zM&Z#FzI<gE?9$ntn6WsT+Iu^G{<DG#1LVcxj=bE7)Xmyy_~VCYI;{h{w(}i^2PkJ-
zzHrYSq%nl1^f$T-pCgz>OuyWlXta2Y;7sg9BQ^uvB|Tyu3v@O8YrfiZ%s1nJNExp`
z!j@GF*1uJZi-Wh7mwMTXVvz`wjYB>05{^pEb$)EMJ2^otJ{$F2i1m2~)ofxPu3V;2
z#wF1TB_%lDGcZ)elYW40HaGm>y@JYIiFJ~y_hFe!V1v>%4KS>^aQs)Z9~VT1KtZT6
z(ciTxdiD-iaX%DbLHoL=l6ADe!VzqBjdx$atG)NC+=otx1~hLHcImU7q({68efAny
zuZvbB^Q8?`$vSesA&-G7Y)~&Ut@ohb7f&kM2eBoX#%I*y-B=_h@IaW!=ISR8`(MRq
z)We29rJ`u=>YYm0+nQ$Eyi|y({;<j!1Fy~9h2DGb_!pUNH~}l6isXu@IlZM4;0fwy
zMdkC`-Blmj)+F3jblb(P4F8(Rj0;Rds}GvC(2sh!DcIkhkc!?OxK3fi3kE<vsB+2S
zuwJqOdHB6uPT-%28e6;{c?_H&8*&4$jq&;dWpGUrl*>?{U@ycH24y1xzogzuS6Y1;
zui+Ldtd3Tvuj25AbmSHBFwPMnK13PZFrhbKcaNL$83=+LPnWON9jH+d1mP?M!ny0R
zN)Q97=}nwxFY1IvAJvwYTJ0z^8U2p%B@KfabakVvIj2nP%xQ2_G9<;nJa@6zS2&wQ
zEd*Xn*WKWdGo-FJIlBVrk26YHy*<2pDJ_w9KB2#)7rV7krcK!toT4A1YQU}JI-5}o
z2KLqOc%R+I##g2BrOh}#2z18;X+^wnznt<s3$U%ewuix%!^e)ULy^BO3v78)h>_}e
zw~lJ<w+w)OuC`KHK7ZoX14!TcVR+yr)@0Ux?V*R=5X`G%EuJISXy4<i5rq`UkC?vw
z#$wN1=LA$7gqf24CLHc*VGvCufBx@F#k`!(wFi&SH@sm*a7t>|B1r!6*I8MvXSFS!
zS*M4#zvU!9>-<#WI7)dKG5xwK9oc({qc~21j2*PKa@$Crbd6+Y@AUz|9QjZBeGIKF
z5zkz;cmrcPj!xU4q<)_@J|r-93e5P4!R@q?+?#8qCKT)J(Dcmm)<MMB^_7KIopJD5
z7)!?D1=mEw&32B|H3Hl1_{^BcK|cGrM}HMimtv(O!ek_(C*c56*Ki@I0aCES^Mvpr
zm68R)Z5Hq@v9on76t12l+$NKPGx6+e#|}gIPI(>pBOR{T)TFB8=`K*Hc^%?Wlb8I4
zL#6&~Wdu0o0BB^&jj5>JGnIcB-%)HWfWY@0lu;q<;vakCK}ig#fz8$9xbOT>MOrlG
z=Mxy|ZKm~)AD%U{s6R45>)>Z{7;U8+t}TC_WtIU2x6Xv&5EoJJn|Hh1AJ44~L6N#d
ztitQV!ImTqx0$n(lu1xB=hu7Xjb~dHDib4#+XEJ4$fSZR)#y##uCZ4FVmDga%@JvI
z43A;glo_c$Uw0och^0hu6I-8^;Oqt^NJOAwgdWVb&)h8ROuWQaFZGe;Na$)}p~w;d
zcw2zg=#ZhI&h;Cy&-TNs6o35~4_7IKVCUo|V6pDb)t0#Ro<$M>v;Q>;nuVRUgShuf
zU{vie^6RTAK9#+4a~xLM_!T`Op<{EfbT9)6$H+5It!tS#je3#?-fKGt&>zwK0xnb7
z_3#$YN{;;FlEPWFXieUEc{wIrnPuOBkMHVGMBe}#6+kjEIu9#n>^`_Z3zvkvG4|U`
zxW)l4>GAkpot;!?i|Dt95t+?<^evTpGWy38n>=s6A)9;#+W+~FZ5>#g5rRkyK7<@}
z{*d<Tz1_{-WxSeYbTirHMR+FRN(A51cKp5l8JhqaYA9i*Sh-2~f@S(?1=WDQgW&^d
zYR&BKkG{oHJ(hh4P?&|B8|U7C9cq%}?co??8f;?+m9ggJ@xM(435(5ME04hs$Xcn1
zxIP%yi3Bl%`u1Q2quZp67Bg|)4D6KXfMUyilAm9To*ol|rg%;I;+^NW>N(`WGpc*3
zipa<oUWj0SVRg4^Zxc)tQ*<c2#KW%ycZYgYi2oDDsuMY<i9XYM-X0HoAioJY4G0B4
z@5E4Sk2OA6faeU-bpq_!ttk$L@HVJ0`~a|ky7D2*AM<WkNfj$8MC%YsM259^j76%{
zMRV^kP1_LIr|_O1?E}|dJTXu&TT{#mX#tz$*l<_g8k^!$Z3>e;ROmE33N{RNb3}`=
z)^8f|FrxBFa1KecZ!|=`T^`=|)9X+}cv<0HFF_jfU7J`9?xp=jj`UFz2G)a(?y)i_
z&obA|z^odEe!|`Z%c9SY5GMBVGDJSD25j<D#dp$3?ry=67$gj$yAI7*-Il?f^sQmL
zd#tQi(T4(N|4TgAPV_q5%WN@u8OIFnQ}h{{R<~89MGb<yv*|xi9Jjdn;9*DAQ!nS#
z$(0@uT>v}s+luhdRvi}D9TL1WG8~l;+P1DwTng&MZ>N*m7UPaW>S!P2O3Ek)&D`Ie
znhKKInt6TmX&*im4mszr!#zyd!PHcVI;DyP@))4VBrEk*-&t6JeL|$!PPCfOhZJx#
z9(|5}rD8#PS99H-=>*cJ4x9h)zs=8Y``uCRv&NNtN-u2*Frv-;{d|ZzAo1U^u1aiX
z<^s$RtMewJ8F?H89P*gr`x^)K)d!s^4ZFmI@WDtrL?(BL?Lb6v<3pI<8Wj)H2hL?(
zctK=2o7;uW&XD7a=AA)VH<baYcwk(qIuH_Ku~jO0FY*@>jn;<M;GE{Qk^0^C`ry9<
zvK7{*Y()s{8D5Niy#K2?M{0ZPNJABZ<`dy;pH6fK9c+z12PAM>3yh8EBV252EKvNW
zGibr02*rQWLGRa<i1O=pB~}#tc~^6flvdG1h6II-8JD^=n+yp9r0y7Tlg#ue>WyT7
zKoPa|_XjSm1>1CI!mYhQh+GV<07U3~uKlXA&IB1Q6J4Gatjr?1)Y5BfgWd|o%xy&u
zOo+o1S6R{l?D9uT|GLP68tG<mtItE@7o^Fg+H%3neLqSnZ!#p|`=i2@us`)2uY{wg
zE|Zz=!X9foTZIsn8A)%f<+s)h0!Y2)Omu2SREQ=k`*rsV!&Zg>MS>=Zekww_H-5=>
zzt>#W*kza?AGj)ptP58?-GycGTyV!j_U!}EIk-yG`d@Xbw-bk@vW`oMCbP4tU~nSh
z$a-3w`1NO&Zt4>wQ5%&Zh-oDZyf0!3dvAxWc|khi>^3Jg!P9Y^@-$M%zI^)csvpqI
z1)FR45VQ!8%vfP&y2$8KYgO3peB&!pzvT7!`}CQd2=2JVvy0iCSQf32z0t$CkDzi@
z%K)d69EtDeNM!msz&GJ0B<n(k#0;$-RKqd;#xnk0MHN^blYtM<O`9K)8G9Q*4h)DM
zy0?#ZXI*mjrNxu^%XX0@TW5~9yHW5izXn^&^6N)U1E9k~;gO0mN`wZ_;lT3eF5cO5
zWiPWJS|OAL3kY6-?!-`7k3;b7V8jZ1M;Te-Ys%6Rp46L$16hN)c51OST>$f&SNw7!
zD3CndhAJ(1ACUD?z@!DxI}Dd!V(!}rhU->pwZ0To%Dv(DVM3Vwjb4tI@}-4HNhUWm
z<S0?8N`v@eHtw>Vj#NZLizEySVJmd@>38ZjM0E#@hyKF}X9t37&s_kg3&4IGW^J?J
z%D(C!lyhZIu>Gx(9MyrvHOG+*J^~n)Wjqa@P}9pYPoAug3A&MPp*2U(YF1+_n{B*G
zzBwA1ba7SLiyh&2TK>8@X?pwb&zXYS7yRup7KjUo<fKeJUgI9N9xm;x)#ep6ow*-y
zjNtM2w(^QSgvsl}tBn<MWj_1Rs)~@VJA7{p*`TJZW5lX&E59}OBoP_x+2@9TCegH)
zSW(nD7tnP0I5$(ysCj!Xy$<!@y-n7~2NBT;>cbS3k5umR=_hn;8am)>qUSIB2Kp<u
zA^cj{7c=5;7^Xf42){SWw?IfhNva#P;<!_3ruLwW`;D!g&fQJ$!S6eTchMrkVJ%TE
zou9%Frr(&wpM^^=C~>=RrjW)*KZ$xLjcU$kWzQ)<c3zIZomso`i5M~{&*opWDjw5)
zIPu&-t<N)(5t3mKasmnmZIu=Y=Cp4nkKDTXA01*a#5~|TkW^+O2p;wi4#25CoYvc4
znr;9Qnhhe91Vmkg(R3*?s^nEEo-0SV_@e$4`Ih>Qry54F_;du%X9Te>_8I7m%X>M~
zSXB&6k)#`NG$AZPK^PDs9JIBL7M4h+Ua>Rdajo~bXV7FY@!$y+uI1&@*uKYptGR6D
zU)}VLtBBAEm@z}hu*YJe8KD+Xf$$95N`@xnEY8yyIXnsJ&Z4V(fi;CXClVQ6$3NG=
zth@_=z6qZ?cHih{i?&8_cF5+b3p_x6@S$nP)Af%=!liUm2pO}C2FQq-`y26l8k|Km
zXK++7b0ElX4`p?*7AB3PkhvY|pF8Fy#l_(GN$gi~gMQ^oq2wve>^;v|uhe%eP$7Q*
z!(Z>#_qC;bv&vOarWgIat<~?F|B*XOEC&mQ^j{+OJiR<aj`za4m<``?$)*_`?|iHI
zg)Lm$O|Cj~bXy97LLcJ%XUzC6hg8lZsBeg<e*VgP#z4GGQlAaqppVZtIooTGeLQGc
zd}-VZ;qO)dT?C7L!Q09HzU=U+rBE^<2{&pgBtyYpeHdd@(h_9kJ~z4)%h0%Gl7}6P
z(KEXP;_E$6B&qQ8E0=jG_`f+Y7;sdkvQS7o%XPnuMGX8yyA?sCtpw7h5<RW%f-SKz
zzyUY$pspa&SD4h=fT_B;Yr?nOL&&q)xoSl~JCd_ByUm)iyRn+;sUZi=rh}NmiCJn*
zN98Fl$mYjo8$|w~PYI+=QqfgB=*dfcLXgVpy@$RZ3@4n}X$KE?(1+5swX%P=LgCgH
zd3q+9{Q}`;li~Qj&-mbs*!Q$a_dq-)1?%?zD$2_^SebRIX&$&Ol}6TgGWN-SdksUV
zf{SAbs+nSrN0}n3hjRiYI8OHP<=S<>G7(l7<bAFEg&ZN737Pbi9Z%iLw3c^ymWtx_
zF~I*qtfI9(pm@gEpxeTi2_dCT{X6~nzymzn9I;hHVQc@Dq;^LDVFxp#j<(RUks;6o
zFYsxnCP^vZfRN=L{k;k94)UK_V}G!8n)fn06WmRNdR2gUW?wXs;>em9>Pz2|$k&LS
zlcS$I%_I}g)E)sRwM42S;yrDhNjWzK&UQxY!|B^K&n)l!T?tUx|J+KjDWy`4!YXg<
z982GN^I5^!{Wbb5xz4lYBO3c;rp!aNO-q#*J!gq8jVrR`KxP{|P~kkooG<*&^S+MC
zm|*pLRFi0#+UQ3N0d~nG9;NABe_<ZDAml;r$%_KG-EiJ;QvX;AY6!=h!li6zefqjH
zMVuS6P8U7fW3+1=^bA|Y;LfoO6JQ!8PDl}hPsZObdMJSW{r6-6|0w-&Po4o(nzPKy
z_uqk4V{JXt0u7$zyS9@CdGCKfVj;o|$Ecj!eKW?(YqbXXf-q_<4V6gWO@lBjLE77L
zFk`nj4T4USCeYQ4PZe+8k5?8d^XYx)%IYW>1TF~)d(EInA>rIW{9Y(?(}_?rVA7K%
zQTg&7H@NkjK)+Inb-f#Z!*zl}^{=P89GbAV#;#~PL}|r)lq?DICXld_bgtxy(a}6O
z2_*%>%l=kKhFhb;+ugcp*~%S7{bo=m2+B~cy8_jMJeS_XZA96TC9mjH+L>kihNRyQ
zez9ljp=cC<(w@k_Y>2u;{^Vr#*`LcyhVxqI??xOsJTp#?3n<9tnD?JicxV;D=g4#f
zLAjW?r$v!Om*Pvix$P^S-9;})Qf`xjI)tLb&qCtc+%NoI>=lhDCqIPSMBh)Tdknvl
z0I!DfB!jsa(p3WrnM=)8n$N%<llt|oz;$OfYmFS~0Lv4ZH!~0ig1^gB(aW;g-jO^-
z5*N~ScKIS-Jm2E0S3Ll#G>F~O&3HzJINbgx)U(fbVyKB(zi-rd$j0UwoYi<emVgMI
z#gsy!@~yG`e|ts+GGxh6nh2t5iFrR?`m&nLNThj$%JoJwv&^L;QsY>&Z*2uf8o@2d
z=DbGMb4mog4-~1jR&zJTD5CqZKZ~K}k(Q+@BO;WX-1_ZRz{c)IUTQ7gOY=JZ1v!oy
zu&8w&nkFZMJLtOc87Fjc87U@&oj*@uW9YB0C+@jvO#ge8;`&bIF1WofVX1!wQ_hGQ
zzje9WX>w|?Rp)9+29M$Ii-^!Qn(rZTO$)^Y`K`&qAoThp^fEx8<6sJ1$vk?iGoI+4
z>7|LfQj&9tJMsdBjdR5#pd*A2SQ{#ik2h>TgaU5Rb!EOu-}PsJzbCNwZZhZugHdi@
z3Ca1D-G=ujMq_*I2nx>5(ai(EvPYk8bzJuyc%NrtGj%Hu!|<&nRWkJm8Iw#H&@@~c
zJJh`G+|<1nAAu&Vvp~(M`1dql-xBVO?@rJ21lmrIW-wF^9<o5%Ep$wb;XoyO9ZRbL
zSS867Ivyi`>ss!@>xJ)Jr^cCQN{vq1D+^%WlL>_tRXKW1y33c@v-hWP2(}dLpGNw?
zlapyE##P%IKj3pA`#nN=gJ<c8t*gXLt}+$Q>d~iPgguSjmOQom<T$>kOotH-$O26=
zle<GURwR_Cll$Z+-m}QZXhm)NHdR;LZm%3_$k?wa6TjKqmaEJqGi`y17m5>o^WM1V
z;wPQl`!@YKudN#W0((s8lHRbM<6I~<P}uU5y-sJPWV|Pgm=e+F4?%GeY4NPV9NX^P
z*8j#wrtvoKNsUNMjElDYVh3^h;c>5!90e-eB4{1eLH$d&$I5S|qsAlGJfyv3Ylbw#
z!$x@Bf#b*0NIyRZ)C4;EkeUF-gV`YlY6Ul}zM73UtMPPsYg`H<PaNy$Qb%B9LSo{L
zqK7?a@|W)uoe1(m7P$ivd}K&EHMl52#RyjGzYbkh5Il=6OZxxf3MZ+Y$kwBht2o8^
zqX!idnFn@`rB)AMfIa}bGy0^qsLD%<ak1(C_>-`e@9-Hi4E~3AAVIyU7en85#Y_ew
zSA!0`TMJyb<~U6tu64v0Tqg7QULMGZ@(-h%E;4-vhcYjk#j?{JskJ<v^AKv^++7Nh
zluS0>Ifw8U!*J3yubew9%w<g7sM8)o{H^p~<#V+MH{`V`)<s#mO5Ku@2xTD)9p2Ze
zT*+kOLGNUULaEf=EU*n@CYT3yhfngIB~(u9{XB6xo2-rr)ReoMHv98Ox&+%&h!Ub+
z!fA$J@nnV|Sr~|m(Mcmw=`7{VWM2MP(Ykbqmg|&@b9oZ%zOCWhOGKq8bR2zjFb*Y#
zV=XlG3_)PYl~`%tjp}^oNpJD>1{5CB;a>XKi~9HK6VmTDw&8ZEKGYqeF1*(tVR~*L
zu%ke`vxxXqGkY|}ZtW0qt8Cm^O&XGbqufFsE7&K%I;sLD2jQ+cyWtagmaJwxZjFH*
zueIGn%+@5S9LehZ^}5~NOjIT$-}j8I-iqKZk_LkVjeA+cy$X5dl+*8NzMbSd$5)yn
znFA#4_NSjd+R!4?g21h<pJuX8CPjwny_?eu0h<p1@n3P2)4-l(e67<FXrpDFmOB#Q
z2zH<QlZ&Y~w`6Wn;iwC0J{+f;C9Qzu`)jJN5I|F+Pa#7AK82Kdd=G=Kj%%f=1lO|f
z)4Oj+?m&j92SL=O!W6sop85v}8nB$%#6NZqx^mR4BvJ`zejrQghKT!BYYKdhezm9e
zT`stdf%IME!^rqr!6jzRQA%^9ZU$nC#<3)$y-+bB&2{unO=c)VY;!7tfk+(rk64!*
z5pTw0Lzmg^KZRFR&F#kNk6zj=Lz3`0xt<VpPb7#XgL3IlyzaR&2#ywthzD7YzND!V
z(QOUD^4K58e5Cot5Hye197&(%rEXmAW<4n)2zIP+4A)|;SJ>`GM=Ee#hgjgq$V>)?
zu+8<J%aDz<=lL~~@O`{*kvRUHA<(WV(ysN4>#No_<Fmo#^Kh54>Fy9VkHXJme{WiL
zJZ1(W;+YpIWS}OO`48wVX0tj&CG99tnSM-7ef)6P?FQb-5izs9eFLwpJ3BVAr3~dV
z)m=5l%LxXvLtpK$omlsEYTAzx>?A`38v}osjNC{LkrG~}TY8iXVi(9BR&oBdu~FYh
z9Gy!&u&b8&W>oQ~qIquZq`qCfn3{3m-0XGEnenph>e-HpO9tv$s@toR(mQ-bUOR1J
zPGX&ePR9-jeQ&2_LmMv!x_c}AQ@Yk{owTh*jd|`}*(V6DN}Hq8Iqpr_R8^x(`<`ow
zJH_*>1?)iS`o6K=J>`3_`sul(vqZ{8id?d!>nFq2Zst_(#>Nsz>2xdOPT2{;ug1QY
z<=)DfZBKujKDL?a^#t=x-D5|1$3|hG=7s#HYimnsG+Rx2s-+inuQDHX&+V{gTd^sX
z!Cn|*GmpssU`Gb`K*^}g+VMEvXZL*6Rb@+q*cczO?2B;VPl6-58=o!aJeC{{;&B8*
zHG)5QL%Gkdt+p<iKcrg(zYG729JNGKc-sRhNkrjX&*=bdP#YOn?&t&T!?z?M1_rd-
z_7&3XSPJnTLpJKZi~9-?wVN!bON&!HHv>e*in#NB=i<|&>S&Q@eQo~Lhm545=A6}`
z8_BtnqFGJIq#*Q1(trbd`?m|mpw#1eTegVc!cl~u9{X?xTrzLB7wS9b9%Oe?S|PZ<
zC&If=a5EC_Vlj=+yEk4AILn0}2?Ic|^aEd{3*hE^Ay&?VwW+S8`DhzDL`q&&UbfJ-
zcaZz_B7L^Lb8jeA9(z?yW(v&pqp?<Yb^{@9)-Ij(;cOBK-HMSfX_4m&@Qb4DB}VSI
zOW#{h^YU{Daj{uou7Y_m<m&q{v4z;E(6jqS9Q(ooL9@2#>^u~7%PI@7KEEsdZ^&WE
zfpo)Ysx{*cl?4_Y^mi(7)hRbWlgn8k=%qqJ)efrQ=B6`pzw_c5j%p9q1V^E+m}Gr_
z_n<!Yx#O)Aj!MD%a}~7YXi88}diN=6&!s4PBeua-ZM=;cCS#W#VD;f`75u?3uRRUV
z84LN(!>0kY0%EujJwfC#NF1*DMnm1a5(~F)zWw>+$e;A(JV$_uJqVJLo)=U0DJbbz
zASlI)gXYg1r7Fn~PQ@_%*m{dGaA`=6zIlTMnPfkFcyo8VHWenNzt*R^=XYrN0>Et$
zdsc4$`ZIL9AkXdgZxZOY@72*|>3}a+gDpJfeLju-+ymQunx>SB(3^EM2=3>_YblF*
ztfFkkYzk@G%6OF)q6W(zYgvE8^im;0$7#Opu(mI-R4J4e^L+;FN-ob4?u-U;I#FO6
z=imdbxo*B*Z`PpEKo%wKA24~X{VE}p(7ytJkA<6d11~@0HMrvTDp(s6g>_h-Vf^9E
z{3kZOm;roNn2!n4<p9#LO!_kc|ITyo!s++0NuctVz23Y_*M31ISm{HfpLB8_xEnke
z_5uRCrP;3q2em|k$a1cn6&=_~0}wFn4-i$`-_~OFtnVqOX(RK$2gr~P$YYf&Z+E{2
zpY%5G%%Ev9{0bpDz$o2=vl+f^vBZwJz>xyu8y`WAV~T8vf;)<c*;Vo+dN*3D`{3&#
z{K7!^64e!{?V+5znQQOjBbq1r^Zlula6|F~#;RL|k&g*Pu&dQ8%@x$gn(xfMg&1LB
z9X-1!Na2o4#8aE}o5`LlBO>;ER<WUD43_JR$b*QYD$c@BhK&kGJtuASCq~2iK1@k~
zNr&`8{3gh+)Wk&UW)^CUakjONG(3JwS>t1h(gV*+L|-SatKL4&+PSd0e~;CbtU@sg
zj4Ue9Fw_NgSlKVeQ1=1@6c9<S<YUl7Ljl5nnbJmmwFhx*l5i)*v9#)fHn?LQ_Yr!>
z>q9x$3Q3<|EdeUC-CxcqV=P|jrbWtc(R{@pxGUJJgv2*3_?R;RxPG1jAyNRX?d5CA
zx#5$N_D>DrnA&dsiJrTBXZbtoblm>+OHr*eu7mh9j7f4X7%p=UgR9v|mkS^_`9Vx;
zE9B^O3)7fax|)q<3-H+<?+pcWgW>(o@tM*z@g>&IxE7*C(Ig#sF-hYv9Ofd^>L$t=
zkb9LKlyfXm-%72tUmg`iCR(a+e@ei@k8dMh-zhJ?`MK7)a90cB-r%oCUo1X-!AOdO
z=sy=5^`q3o_`y&9H%vI`A+{!v9jG^eC(TqpE~<fu&?PXQG@2eg#Rz49b_H??P2?5l
z{jbrC$z(}P0Fy0DO*6TrmVTCAQ!eNjw!r{r8}R?=t0LFE%nXJw-)n8}K^@Gu7`?-G
z!w9p<r^_oVor{eM>LZQ<Oa9Zn*JDkM_8}N61YC9g_OHB5oq>l-hy3TV8NY39Xi*#8
zh{9u$ch;A6dcwx^_SaQgF!@rV`s?H7zQRaSHv~AD9(nPWz4RkGe)8Cl%b;oF@ti7p
z$(Rg08DfP0<f_H(9k%;RjjuGs_%*vs(=)K2xOw3!x_0nu`+OAnlK`%LJMy*C#pBMG
za=ccym0Y#mXC#Tu;;p5fWPGpN4hO`fg8-CCJ9>rQHXn{S6hl*0$Z0v}@@aUaAYcDP
z@6tdiF^x<AObQQ69c=;4AwtWd_+DtG*Ngjmhk+-|TkeMj)&#*ac4@g&Ot*`gLO#Ev
z21;%Fa|*op>JWZJ<16oxoYKn4=R-a5{ey1rh_xxUX`2x)jfVU{S%j_%9l>;tOGsx8
z=Gpc0w4Ne5l8G^A(H^G2DOoa-F$CGseAZ}Au6=Pn4Rt}99E>gVAmvU9AT;Kn@Bit&
zNqV9evrdJxi#x5Qz@2gTR)%W9h7*vPmcJ#s)!)*(hB<H4ce=m1KP0j3+Q<1K2&h7A
zxGpEA8bC}&o`(zRSEza1I>n7_p1eC`+ezgR`7CqUZbIliuPxY{(vmR)vW<d77qgGV
z8_2(?Y0O=yDK_hr;(5^XGEeWs=C*A@e8x*FgEd-+!*Y@w@-n0tgOAhA)x7CHUgdzz
z?Weq|O@TN-x=0eW9@lonrg`Plr=v8TGzPLUgQwID!pE_7$Fb{?D|XMswEBL2@J$en
z09USfWGr!WTO3Fiko7_pGa7fd$$u^*&-g^|uBe)Qz7<W!ODmv3-ePl@D)%bMNZ~!V
zw$Mzx$N1ijG#k;PAqETzh+X1BfYcsF(;hqbqXf^DoW^R#cguh>W)++CbExDoCKI3a
zvwNy~duzV5hU4=}jUHpLXbp5W6OE7i8*(PZ9$73BJ!vE&p4AVqZ8y`;0H0yJ1}!-S
zQ77G$a7&M$cVS)Cc+c<_K9cB7p)JZ=JP6Yyd}8R=lwX_%8GErRcFH}1rZv0jqP~WA
z$)L86RiYJ?D!k_@q|@`^lkc%(b1qH(=3XTYUme9vE}o-6RL#MYmNx$|G*Xaz#Y;~i
ztp&?7g0VIz6-_RWNG5wAYG6Ma%lY`PjEdJ`&QC+WMWs4B<vUJtDq|=w0~~_Qz*iLd
zU5}TdW%Ya5wns`<3MM7QPi7r(Bc<<Mrgm^pR}Z@D`Z)Vs;yIr3lm+Di{5k~j(Q8HO
z%5`rHe=RIE?{u2-kW<iQnUgOyQ|Zf=Fvy_df3AH->V|q(!a*DWEhQ8FGri5eI`>wU
z8JT_n7C{RLO*H@8Z$A}fil;BQRIFDg38#W<W#2g`XrNk%XL1)2AKtD&s-fB?YfXg1
zsHDCsFjmQS4ixk5_Mb&?VrX>M_ES<HGj-M_Vz6!(O$$SGzC*pobalpD$;+BRp-B!)
zH&@oSO4HHAL0-lnx5{Za41T<4k6SB^<MJe$p^-|E=&DZI%HX0tesidA?(3!irZ?eq
zFFmi2eH>%2Z{&OOL)Jn}G(RXlCcAD`sA9dCsv7Y2MKW=m<(EvfYn!&g()h=7yKY@C
z%6#;iwj@J|zcb0VT%=;M+V;7o65-PFSWtk5WAm>ehk8uP^IgpWF9|92^#I3VO(OPF
z&Yd@=!1BF>&W0;PAdkc=KlN{tBT^j$$#%ITv2%^p%_9R}>H1D%KH^=z6TFH>2F!E&
z^yn<PR(kzIt5qLxKr#(llq!i=mkTd9jq`eRx+Kc&ZuR3$dBz03#M7khrz&^J$Illg
z?TKzH?uk6ESMePXG4jZHX@rTwU+>etf|tRDh<p-TBQM->%0e@Sgg9VV1ei8_)$Ry%
zC#cy)pZ*!(&r@udd56qCTDK|9Dq9t<24bFn#34>oFSjGx%~{90s83(cp|!QmGd}P8
z^Z8D>+xhtw6YNSa5Wy3{Pi2nG^)eo28X)FnXty85yz?r#zqNd~3$uvdURBKK8Mo^k
z``d6hrw4Q4mPt;DtO2Hkb@AD-fh;!SKR-X-GgUI!&RlO`1DgVQ8JGTFQE^$>=0<Qq
zWMx-%iR7~KnDKvX;?o!GqoXO8ZG>eAo3F*2y54=CHRd}s&wa?Np?F3Mw^D##T(ziY
zDRF6|oK9K&SuVaTne`2tlz{#{tIui{5o+6ZHy&c>@f}E%?!ZuIUOBZjQl2u^V)2Bg
z$NEmGR?3YU?jwoRwXT1#q0XcmANewGYHf|AKYYhfb7FLb?O}xiA-OpK1L;VHoPbwP
z6uY!L8R{mi9rKC{J5qTmwPH1T<ydT;9mS6htUbL`XD8NeR<d$XJO0NncY4!oDz8sv
zr(QQcffT$*p%^YNpE7A9%|vm}-YcXE)#V!3wd0nGV2Aw!hbGCn5A;tY(9>iJvT1&%
zX}1mzF89jct>$6=<Kci;pc&{Ncp~1B6M+}8U+bm{5q2-fXXX2k3u16QTb>wS_$y>}
zsejO%>+1lsWT=ZmZK@fg`>QdG0SAOvK4H5F0oNDDouujEb@Ko4;T+DfQ`8y#lyf3c
zz6L3)6_S+=<7K(Ir+6hezD5vBBtt6Z2mZ7BGC*FUymG8+-a6oY{KuIUw(1>jZG&?B
zvz6zSJEZv{>PhR3vYUNGQUAeEWzXjwpKFzUT>q|7YIr^QlD?q)GEW7roHQ6JO*F6H
zX&V$+Ww%fmsZp%zirr4o8CTLWvEGQ-ksrg*e7UzXa&QwgQ=cFj7&t-mWnA?}lxGcR
zi5Dw=e!G^Yhaog~7h6A=)w6ALd-zV#{)kg<JpR5*SB<?%p(#ddw2=Fk{t)ZZgY$TW
zSO&W<KN1o%83<0<hX|dbo5EhtR;3RE%SaD~4lhB@UefgjDjxg+ay|Ob|M!;Ept>K&
z*-fK?I1Ycb{_oy!I{nvvt>e+ML}x>=w9|lSF<-c1V0d|0=!3Tc*PA~Wh@MQoo3)ZP
ze(Kg8yR@faR4N)Jj5SLx_MRF^ax6lMWE^tphv?J~sf1D88M}%j{D_>EdzWKW#0{?F
z@v`Bj=bblSwdkH|z98Bl+PZf5S+rBF-nC%o&B49roxrB76S#v;LF7qb#UTYj=q-Ra
z%a_1qL%1)Yvt`Qk36ulUdIa(-5M6oncG>^mpHQtH?C_ajQF()_wf=W^@c&tx5k#3i
z*q_K&#r^K4hyZo8A@yRLnft;{Xa`?oX988w&#q8ZkSet_(C)r3`oQHU?3WMSJYO0p
zFVY6%K}O)i2A6-GzRpr1Fj_zYIfL{lLZd&^{|!$_TgcI}FAyDLI6Q3L{&<fE{(Gwo
zJJa$li5?xOVp#5d&2)WjbOz2V(`ly^nJJ<}mx<wJt`M;MH@y49O%(R=dgZ@*zwGOC
z8)MPze4Laf>+4_aCPNGnpLS(}VxG~#ZxUNYp3uKD%={)ZD#nerxL`m0W4I~8$LF<j
zL+Q31yl>&*zfbN5Y`jLhnDoVtd*l{N1??=4Il4T!1H5HPO|qfkESjOXU~SO&Snax$
zHdUbExR|y{B|2<xP6GU3)H6P;h6+=GN7rnhBep!wGu|M7Q@+OCr3&&=5oA|W<SG6s
zr)-6G^{@!<zs@`y{x<w0leOi0J2g6MGA~-Lc8I8~<y>1kfll&P=8EMtJ_EHp2K&{s
z`3n6KkYk1HKEOLXse#9oJ{eYbEE;R%KK6iI2V_?c?;!Fs?fdlhvE|qDPpum*QudFb
zpUa}3Us-$USX^F#>2dnka1?e5`=8P{^=!R<+OO1q^S-O}zvrs6%5=h`bcE3N7mYgB
z6x;m2k5)$==eK9eEd{PEB4bYwQh&Rc>>riS^tXM)(JbQ$fbB4D^Bv6;?9}Y@<uQkp
zQ(l35<S>KJ3(9OJ(GMlUmnaI|Do?Hm0tka7SzGR{UT1dCuz|0*!!h4=?9OHW_+i$G
z-oM;MDDu8ZPZ!5iJsOhF$9OfS-%$(Qi=KLTdy)03n_9;Wxl2r<f)h=G_+IQ;{F%EM
zQueQ7Yrkjx!hX*9{ER-AgJ0wJ=nUM@RqNdg%zD1lBZ!VE5Ic^Yz)re(J-jwQtmYBi
z7yQO^51pv3Nc5Z8c@C3}1XUH50Ey4&lB~7N#XqTW6BezpzxI&cq}sl6F&e#c+fxPq
zL}YENOZer6L(M4y2hkEp?uZOu^OVtW^>FRl{Qeq)NJ!r!do^ILB3(+3uXRM$W(}pn
z6);b&f3~|qsxi{VRrGYn&L$FW`Is;IBr%@zBd_^fg!eGS2oPLe=)2fl@t=9cVNq3B
z%K3(Nx1d4u!SF@MlR>ru;^i*ebLsEgZ^+IsH;nsKU3SEhfF8yL*IE41qWo~Bj^lUL
z1gw_1+sT$`9o<m$_&#}W7Yl8AUD2VPef)v&Th<YaUQ_Q}yfRHHdRpv~Ka&+!xp84$
z^84}1o`Zj9!(zC^E1ku1+PGayR+PhMtl|?>uZ|viT|G`ELOIsXE6sK=%1}7GxN>de
zJt1Eil|f13mc3SlJd3g|_|5FVl2I5bWB3Jn8l##c+tb_eMsMi-9kY$!c!?bQk^Vvd
z-{d>L!VY6cu!IQRZk<`NjsK^nE00Su-NN4MZ(44dnWdSjV^(UWX0GIVHEm|fr7WGq
zZBVfh+&A1SD>u+-v`kS+t*jIbal-|haX~R8D@Afk5O<|dTrd^yOY^&bpO1Gr%X6Oh
z``&Z-i<!zVeJ4?zV@-f{?eA|SlABJ7_1MAQ?GX*!krYYbRaK&g&>W(lj*rMIe07S~
zBO9V}<}POq1!PTjCg}QwI_yZ(3;slcsZ1B?)q_&WmDZ@1=jz_Lnt<v~<NM3L!9R-K
zu5ugp!(1h?-uHO%+r!~B#^Y86_SRb{6%OZ*g=9%0Ch9eM5Y0vpp`w|kE#c1;)W$w!
zUbO>N{8BS6oGK299r+H59$0b~9L;8yuO7)6l&A=Q3T`Y78(xjyFLBoDq5E8OG2f>}
zB}LTg8lF5+*anI&r3SB9<!-I7;X2zyGrH{6p|8<It!cHDnWcwMLI$cN4G-QM)LgCb
z7!aA;Q@jOe;(YRZQ3)=!b0F$ED5;cE(NJEsS(`If-CH*jofbj4aFEaxdDh{3+4NI8
z|MKLTTLb99`DnXG31Px(&&S^qWWld0PYfHyTC1J$Sale2(Q24`B-&`Emysl>^lKpJ
zh4uO!a?Op<4jBPH+4r)}fe_l7bP<sG8VBH~I6bCw5A5PzYOU%Ye{yacVEpaqT*t!T
zLR@@#$d=~er8eS`b)sz@So+)5?$b;YFPX|ijJPL4{ZaF{(ZK6qoVTkC1?K-H+M2%B
zwZV<w(JCZ6ZRw~UKB}(DLu=aVtA6sW6LXKj)pM!FpM&gE#i?cX?mW)qWw%Am05w5z
zNEdw#TPunCx1YaZ`k%%s=r$Fi>MQd{?oX6`A&9<QymG*8I2Oo#gZ&ebsRvBmjDy`x
z^C({gN2}?9OR8C~RV3kA^$^{MW})8?B>x-p1yQ;ke`8WMLEMer5>||16?2%nqkyyA
zzEPX-T5f0VA&wktN3pPrGbS#5i&EeDR|9r{M~TJRqmHP(keEG>xKU6Bqgb*LhQh+U
zg`dg~rEF%Gn$^aIIf_fcRzSvi!YPzJ!Yo*%Dh#4~Onb#pQaSmzmxGe}2`SUl%7$=5
zd?c~zrj}`?ba<Gnj_R0!X9)@<IVsZ<!{`4mp0(>xz7zx*ny2-qRe^E8IQYYnen=GQ
zxv>m?|JHVc36JchVKC_V(fU7NS*nj63xW%9)IqvjbzEz<X(i-3oW{GOOT1w{ERm1p
z>&EQ_6KixS2JFv{H>XAoZsuIdS{^qE*(ZSs_G$QX|ELBz39+~fqZ{jLOZA@INri*X
z$!eLu1%hT$Qg3WIe{lX((=Mzb4<?X?Lp<u7z!@L1ED!h1rF^$x6Pk|hM)#l@_<-+f
zW-|4?vDFsV@@>!x8M8f^xTyzbYGDIF5)Ih7LK&^)SKEHB?3sPBl-k!eq+x!ETR!|C
zSkgn`OHGXuMTMdsiac3?_pU5w{<8JA7>an-pe-?I3%nj-;#coyGRdsh>unm=JO)v>
z<;ejHQ&+$>U8$!D{yIoQq&X=qdM|&gP1>4*dS-Dx$WknEC8=U<WdpbYKD;$Xy&C>}
z%15N8T9mmNf*M`fo&w^i5_G#A9v+}Wnl5jeZz?h$tm?>LB4n$`<D$1ufd}5uYW6nd
zuz76NCwlO3OX4PNT6W|ER#Q-%KI_KZkibcj7Ch|r4V+I)Yz?|&bx=-rk2Ni})<UuJ
zX0AlMeH#8%K7q~!Zn0=SU#VeB^-xOpff*^uj#>Fj^5D}Pe`(}Cq&!kN=5F>LzLC|h
zxRh`5$_UoVH+>4&U|6I??sV93Nc+O+ypJWX91>^6uZAo<P~*T+p1KEY1^{`?pV|N6
zuY6sb5N%n?&s*_9zPnwQJAG<ryKKAWU*?YVfm<c`)gE&?_hT&1+($C+?tuBE7q@86
zM;6%`qwI&h^?<@9hU{Q0nouWe0j;wUba(X*_D=P#&0kbeV!&q5y|;8}VZLQW$-rnf
zq5nwd|4?TO`pL5Yp8oY~>qjPLd90@~kmvi|`lEBH_QOdNZ~Zy(#Sw=;ZO+bQ+{De<
z9REC$sVRG<qpzp0@GcnYEhCt4D^I6qeRS{)ygD~JN~_|p&o+rsn_(7lf_r}DK#NT-
z^&|QUj_bL@4|==iqg2!wzc+ekT#ChY$!}^RYEloBO8kgXGf~4=9kx8Cfg}C&erXRs
zFA$wHM<R<BM*R$~-;;2LV%=d~Wj(kaxSSHjwEkVM4>Uc1Hl%a;uwKV$P|hP2RfVoc
zH=rBQ)Q~fcB#%O-&%%S!psn)F(>%eF@_c6N;y*^!#Y;va4Ks*3>*vPLU)M>Q$XPfp
z*9)X7CzW;K5;;*hda<1bcbJFfWv|fN%{wGo)$BIub=aiaR|Zg`D@ii^s7*}Q^7X{p
z%MMsz?UmQ)8Z-r6Yo6&gkMvSuXv-4CnrbBql5yuJubm9U2b4!Q-^seaHcwic%b<!(
zQ{s$h-x#xIZSUn%fXm*_Zb)oi%~nmH{A5^K<ZTV}=~{NxXQcz$dfWK%!=lvY<n22$
z{Bm+@S%odE)xc1#4Z`_BbQa-|WDe9xjSU`fS9bw^ZtgEHLB%w9C>p6QZvRN<wj~R$
z7Zta?m(-8F4LbVTotqn*-C2FSFcY5EEZp-_XST=1DU{%qzO%9@4{fF-op&nn`OfIS
zIACSnc+*R&IV`m&GoK^>tbP$_2iv(uXX$pSStOiKUT@aqGC%ISOaN>6(u6)v>Xcu<
z(orEep7W|SXl0ISXQ|B4-a%CK>30!mm<!39!*t#w`N)5sFPtPhJF7my(qnQuhI|DM
z5p%OHw8@o``y!v};tc(id5nc{aAVC2jO~WlA*Mo;t+^0zCBJ7^e;;4;N|IyDj%?k>
zeEUj0|9EFzwy*0xO#}zV@N8q)bO2mr{A5*2Jwl8ZT#A^(yEsK=De|Zq6v%uWCYQ4I
z;mU?8(CvEA_1)aSSX{@npa7esT*%){?sqROQqcFrnj#gr*4B|_$5)IE=S6^V-sU^t
zABo<1@%}-wT7>~mk0p&HMTT~R7opJWEbFGY80@^=-V7|_Aep*{=V{*;`6nGP=gsK0
z*<Kf#e=>wfTpcik1hix$Z?g+<rydXhGnY8+2`})_^UVt0#A5qZK{;_yFvu=V?8%}}
zaea0O8c-dZ)v@rm{a*kdR&ehokikEywj`N}InL<xQCHk^=M{s}kr?h4VrvT6TZhH!
z=#Sj@0s)p`so!wJxgkh`<4|wf3k2fLXYrL3c}DN#!3FF1rR#C`KIv#qF^C+X<W{W)
zH^Gxz9l5(t^B{A2Sx&4+TbfI<8jEJBytAgC(_wmmV0Z)^!e(Hwfp0V>QB=3vq+_(f
zXc#mM*Ya`LwH&%VKo;dH26Az(!g|T{Uiu9lp-Po>zh(zs)^5$-SA#A2F0{K?UWIo_
z#(2V%zlCsW!^|)=8X((@Q~T;K3*%--+uo#DsB&PR^XXQ^JQrFfmd|$T>l7rdU)<V2
z1#(w&h2OX4rI8?7gW@e}gUw0+&p<1OrcYKLWat<f#;TXZZ$xeN>@$RjYQ<R}I}?EM
zoJ>Bv?6`wVg~+XbP<QsjWsX0|Ny{g-=x%YK-VU^{f}28%KkaR4FwFr$_mnr839V%~
zY<&XQEGi){qbG|Zn2bGqR9;(^MdSvmnt<C8bFU<Br%iMHA>c|+<t4Eq9`=A{mijSa
z^DbBFU-Q>cZeWfIPp{<FNl$9cR)zh!wy-EYg|qrVIrGoll+rCf;xJWvCOv;1vkEz~
z5x<wO92FE}P!fkS5idM15Y6cXa=SS{w9~*2@TXld?Jl~2iX69YMj5S*e~w!CD07HW
z=}Q*L(4ynjORN(0#4}V^2&Yzp6YfhUN?6&kDw&R?2ANLYW*7JUl-tOKYx}agO`Wu=
z%Q$6E#?6e?QlM=^$VdFmza>7AguMkO8ptzfNve?}v?f@nHu;&=V+YD#{o#&t@s^H@
z`Xrm_+gJWf{DqSnzBN*|2y*>fncl;F6P^Sb%EGEX(5PPFPSGVBa?`!#V?91|?-me=
zJCli9OR-KJ?j;0+1pq>gA+V}>`GiZnjD*wNY$zUU;z;q<v5mt8C=&|W4zg4VaO2;m
z$ReRT>sL^YA?0?~PgD+=Qr7MY#P|c`ezp!D)>EZYnwaZ<j-Y#Y1E0p~Oxc=(MBkJH
ze*ozs>?Y^$^-!fup9^M6yG<JqKm9mvWE-b4d2wMsUji#ieQ~EL;O~T_Z2EW%N{%6x
z09e3&ei53<Je9}3N;<bQu2z&azLTQKHMhQ?R*|)?!~_qg^q8r>a_5#frb0rsqdBsn
zDremPxT$7Kl`hixH;m;gZVz<sY{>GpiV0CiD(ZbM1Sc-bv+N9f-JK^v16&)qZbB1k
z_Uz<i8}C?KYU(8H-FT8PajRiEkXxM`rFVdJwqussxx9e{&SW|n*`<LCLaP!x(@g5P
zen45N%DanGNB(;+VmISl^27|<Vs&{I?0A~H>KX~H71+}+gN_4=y}aTOB~sU-AFeUw
zvJMENLjYQKMMeKuIx;b4(R$D)VH+J@oB=3xr>ql`UO?Tq$O5kjibEQ&W)S^Whb#xu
zb4IK@J?+Th&j!V3i+|FJ%_z#-mc&tY(hfRN(2Z`1LFgS&lnZ_Yg7$(lNi|dtff>H2
zu{81?n=@i?cs(Sjz<2c2y@>oCy}lcK3%4_bz~tE>PbKE1K0Px8Ai9HBtq?80-O|pE
zbu?y7XA7THcska%HZ||z>pj}}5aAK?V3~3W$=l!pT+&w|;CR#fr9fXWyt*`|<_69y
zml=UtrO7ZOet_A*D%|IJODFRZY{dJD3cRrSIV?r8=S5*ZM>IA}fo$daK<>GK1e3a5
z1#M@1jn``1&8kOTnM1IfIsM2R$JeDwNBkmAZCsS2Q&lzx<WuDPfdA>R0_#5jux0DH
zXA4_+Ny^8_vGLm22Io(`!GrSlM#CPX@Ou%m&4-yV*yh*S4a|nflWM<7EsunLfj<8T
zzHK(P9PfT)Py~OquE6f=aX_oS%9pR~3=frOB%RE8bRj0hV9cu7rArtYV5Dz3oQOe=
z1p&`Z(ru3w&U`R%+I*4E#kk6KHtZijyuP8E6IW)vhi~;rzQ&oU*VQA;3g>R!KT$Nz
z+bE9=uxN`))GnIF_V1E<nr8f3I^d|F&@+AzBZ$&4$^PVrcyoxCI&f6y@5UfbqyFB2
zU#K$X?nSJ3KIs&pB5#HR-UP(Jer|4DUWFpFpMsC?=KOxgT%rdx>4N69e0L~5{-uK5
z>Ybw`cg7LkNQjJW!TO{BS~P^IBeN9wbzxv1l!MhJ-I4g|e5;b89JX^`=LR<t9GbOv
zp`^n%F&gzaw%_JOC>$}%(`~Q2r9eO_3>3MSyJ<@w8*|j6Ae2~Hih7SLS(n{A5+P`a
z(~0pz(nd&07^HeKrm4~CNVPL7f4E5qP~5j}GG=B(wK%mdL|KRQ&;zZ?tW<?(qJmx?
zTjioM59qn43mF2r&Z<0@sR#TN8_wSwglowypE?yY*8`{ZJNi#N%Q?&j$&o)_)R7bs
zV}L~J=eg7Rrb}6UUg=aWUYM|)hP($S?vk2uq|V_D@M#BR2Xy+iyk(6ubL^Sm%x3Vp
zO7e@nA3xe}IW+{4)vXoWlbr*6UnL6ZdDgEn<Kl;5(kH~$OX3b?Cf217Bvz@P?VT=?
IY<=(k53j;;J^%m!

literal 0
HcmV?d00001

diff --git a/oxAuth/Server/src/main/webapp/auth/passport/img/windowslive.png b/oxAuth/Server/src/main/webapp/auth/passport/img/windowslive.png
new file mode 100644
index 0000000000000000000000000000000000000000..5f0ea26e5a60825a83e8cfc7ad9f15a13f7376f9
GIT binary patch
literal 1096
zcmaJ=TWHfz7>+oHn{H2nS2RS0$!sod(>7ssOOtjh*fP4pDyWzxr)`+YiOHF5_b8&M
z17Fk!*&YOkFDj@E5n;j<#Os4|58?$C5quDlJt!*TNiS1j8gg>Z|L6Pu`#IL1?rm#b
z*GdpXTe45d;GOo?@@D)UywMrP+Y&d^8zU}1-tYknO$8|>5yX{~D}JcUu-szz?Q#jC
z{f@VmobGI2kCkgtJckBg9+gxF5Rwju0GTw^0>}VWuN=4sx(H%vhmp;pTxzGNL6cTJ
z3|%&D%qEDg?y{|F!vK*(pkP>0>eJ0z6lv&DYLHK{DO(0bqi@s!1EcAzHae^cI@P^{
z>?(`cfC-RFmd*W^E0&{F)vk!oo|>V^Dg+HjsajCER6i+02ar4+@@ZVaPlg4W;{|^t
zxSjN~T!>+V3@7-wfQa89OV%F>dvo->m{AgSUs#G#MTBgTVM?VET?)|9DPXQ3Fsz^P
z`+XSUb1N27%RbB9+_0bkS91&-8PFm<i|P;@K~V}vT1&ySQ>g{RmRm0rE*Vo+ZHA*+
z#x%XWs%RHw!0#{?MZ4LG4VVmY;fSN*e&jbd$hda@cjN(aG@=5v5ffM_sYEHPp>;zS
zC6<lJp@0wxvJ%I|LlHR^j|pMf&+#ESoKPCvq~#*j(m;c2{N_gf%N1n@s0cb)2=_O-
z*I$GPx<zP{vg~z>r+Knt(6Dq^a<_Q}uEz@;;~>xz4m8PXg+ybqDEzVz;G|&KO8{pe
z#g&A_1^IA<=L4~DjH+|>#j>w)`G0a591P>N_m6frRCtEG<HGP_VPX7%g=gNu!`;;K
zU>;wL!%0QT7Uhq#Qfp7ohQ#M{TPDY6j$Pb+SH1Y6hkm>2{^RDh-q&+aznjy$rhoF!
zUQHFgO3_OPj!uq!pZf9g-I{b@JRf;vpM4X&Z5)|hd0{P9oSC@(W#SZK_KrPgR(F4U
pUwJrpZPUE_r1tkO_||nBXO<mrY0sU%dSZ`vQ<L$uayho|&@XoYWOM)k

literal 0
HcmV?d00001

diff --git a/oxAuth/Server/src/main/webapp/auth/passport/passportlogin.xhtml b/oxAuth/Server/src/main/webapp/auth/passport/passportlogin.xhtml
new file mode 100755
index 00000000..008a3525
--- /dev/null
+++ b/oxAuth/Server/src/main/webapp/auth/passport/passportlogin.xhtml
@@ -0,0 +1,344 @@
+<!DOCTYPE composition PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN"
+        "http://www.w3.org/TR/xhtml1/DTD/xhtml1-transitional.dtd">
+<ui:composition xmlns="http://www.w3.org/1999/xhtml"
+	xmlns:f="http://xmlns.jcp.org/jsf/core"
+	xmlns:b="http://bootsfaces.net/ui"
+	xmlns:ui="http://xmlns.jcp.org/jsf/facelets"
+	xmlns:h="http://xmlns.jcp.org/jsf/html"
+	template="/WEB-INF/incl/layout/login-extended-template.xhtml">
+
+	<f:metadata>
+		<f:viewAction action="#{authenticator.prepareAuthenticationForStep}"
+			if="#{not identity.loggedIn}" />
+	</f:metadata>
+
+	<ui:define name="head">
+		<meta name="description" content="Gluu Inc." />
+		<style type="text/css">
+body {
+	padding: 0;
+}
+
+.navbar-nav {
+	padding-top: 30px;
+}
+
+ul, ol {
+	margin-bottom: 0;
+}
+
+a {
+	color: #2300cc;
+	transition: all 0.5s ease-in-out 0s;
+}
+
+a:hover, a:focus {
+	color: #079857;
+	text-decoration: none;
+	transition: all 0.5s ease-in-out 0s;
+}
+
+.btn-login {
+	color: #fff;
+	background-color: #00BE79;
+	border-color: #ffffff;
+	min-width: 100px;
+	transition: all 0.5s ease-in-out 0s;
+}
+
+.btn-login:hover, .btn-login:focus {
+	background-color: #00BE79;
+	border-color: #079857;
+	color: #079857;
+	transition: all 0.5s ease-in-out 0s;
+}
+
+.form-control:focus {
+	border-color: #007541;
+}
+
+input[type="text"]:focus, input[type="password"]:focus {
+	box-shadow: inset 0 1px 1px rgba(0, 0, 0, 0.075), 0 0 8px
+		rgba(0, 117, 65, 0.71), inset 0px 0px 3px #007541;
+}
+
+.panel-default>.panel-heading {
+	color: #079857;
+	font-size: 18px;
+}
+
+.input-name {
+	padding-top: 3px;
+}
+
+.panel-order hr {
+	margin: 10px 15px;
+}
+
+.panel-order .panel-body {
+	height: 260px;
+	overflow-y: auto;
+}
+
+.panel-order .panel-body>.row:last-child hr {
+	display: none;
+}
+
+.list-inline>li {
+	margin-bottom: 5px;
+	vertical-align: middle;
+}
+
+.list-inline>li img {
+	max-width: 40px;
+}
+
+.social-wrapper {
+	position: relative;
+	text-align: center;
+	padding: 20px;
+	border: 1px solid #dfdfdf;
+	border-radius: 4px;
+	background-color: #f5f5f5;
+}
+
+#footer {
+	padding: 30px 0 20px;
+	text-align: center;
+	border-top: 0;
+}
+
+/* Media Query */
+@media ( max-width : 979px) {
+	.navbar .container {
+		padding: 0 15px;
+	}
+}
+
+@media ( max-width : 767px) {
+	.navbar {
+		text-align: center;
+	}
+	.navbar-nav {
+		padding-top: 0px;
+	}
+	.navbar-header img {
+		max-width: 130px;
+	}
+	#content.sign-in-page {
+		padding-top: 30px;
+	}
+	.list-inline>li img {
+		max-width: 30px;
+	}
+}
+
+.panel-success > .panel-heading {
+color: white !important;
+background-color: #00BE79 !important;
+border-color: #d6e9c6;
+}
+</style>
+	</ui:define>
+
+	<ui:define name="pageTitle">
+		<h:outputText value="#{msgs['passport.oxAuthPassportLogin']}" />
+	</ui:define>
+
+	<ui:define name="body">
+		<div class="container" style="padding-top: 0px;">
+			<div id="content" class="sign-in-page" style="margin-top:-15px;">
+				<noscript>
+					<b>#{msgs['passport.javascriptRequired']}</b>
+				</noscript>
+				<div class="row">
+					<div class="col-xs-12 col-md-6">
+						<b:panel title="Login" look="success" collapsible="false" iconAwesome="fa-sign-in">
+							<div class="panel panel-default panel-order">
+								<div class="panel-body">
+									<h:form id="loginForm">
+										<h:panelGroup rendered="#{not identity.loggedIn}">
+											<p class="text-danger errormsg" style="display: none"></p>
+											<h:inputHidden id="provider" />
+											<h:messages class="text-danger" />
+											<div class="row form-group">
+												<span class="input-name col-md-3"> <h:outputLabel
+														for="username" value="#{msgs['login.username']}" />
+												</span>
+												<div class="col-md-6">
+													<h:inputText id="username" value="#{credentials.username}"
+														autocomplete="off" class="form-control usernameField" />
+												</div>
+											</div>
+
+											<div class="row form-group">
+												<span class="input-name col-md-3"> <h:outputLabel
+														for="password" value="#{msgs['login.password']}" />
+												</span>
+												<div class="col-md-6">
+													<h:inputSecret id="password"
+														value="#{credentials.password}" autocomplete="off"
+														class="form-control passwordField" />
+
+												</div>
+											</div>
+											<div class="row form-group">
+												<h:outputLabel styleClass="col-sm-3 control-label"
+													for="rememberme" value="#{msgs['login.rememberMe']}" />
+												<div class="col-sm-6">
+													<input type="checkbox" value="rememberme" id="rememberme"
+														class="rememberField" />
+												</div>
+											</div>
+
+											<div class="row form-group">
+												<div id="submit_block" class="col-md-offset-3 col-md-3">
+													<h:commandButton id="loginButton"
+														value="#{msgs['login.login']}"
+														onclick="checkRememberMe();"
+														action="#{authenticator.authenticate}"
+														class="btn btn-login" />
+												</div>
+											</div>
+
+											<div class="row">
+												<div class="col-md-offset-3 col-md-6">
+													<a href="/identity/person/passwordReminder.htm">#{msgs['passport.forgotYourPassword']}</a>
+												</div>
+											</div>
+											<h:panelGroup rendered='#{!empty client.getPolicyUri()}'>
+												<p>
+													<h:outputText value="#{msgs['common.agreePolicy']}" />
+													<a target="_blank" href='#{client.getPolicyUri()}'> <h:outputText
+															value="#{msgs['common.privacyPolicy']}" />
+													</a>
+												</p>
+											</h:panelGroup>
+											<h:panelGroup rendered='#{!empty client.getTosUri()}'>
+												<p>
+													<h:outputText value="#{msgs['common.pleaseReadTheTos']}" />
+													<a target="_blank" href='#{client.getTosUri()}'> <h:outputText
+															value="#{msgs['common.termsOfService']}" />
+													</a>
+												</p>
+											</h:panelGroup>
+											<h:panelGroup
+												rendered="#{external_auth_request_uri != Null or external_registration_uri != Null}">
+												<li class="row-fluid submit-container">
+													<div class="gradient contact-button green span2 offset3"
+														style="width: 320px;">
+														<h:panelGroup
+															rendered="#{external_auth_request_uri != Null}">
+															<a id="externalAuthButton"
+																href="#{external_auth_request_uri}"> <input
+																type="button"
+																value="#{msgs['passport.useExternalAuthentication']}" />
+															</a>
+														</h:panelGroup>
+														<h:panelGroup
+															rendered="#{external_registration_uri != Null}">
+															<a id="externalRegistrationButton"
+																href="#{external_registration_uri}"> <input
+																type="button" style="width: 220px;"
+																value="#{msgs['passport.registerNewUser']}" />
+															</a>
+														</h:panelGroup>
+													</div>
+												</li>
+											</h:panelGroup>
+										</h:panelGroup>
+									</h:form>
+								</div>
+							</div>
+						</b:panel>
+					</div>
+					<div class="col-xs-12 col-md-6">
+						<b:panel title="External Providers" look="success" collapsible="false" iconAwesome="fa-cubes">
+							<div visibility="hidden" id="provider_panel">
+								<div class="panel panel-default panel-order">
+									<div class="panel-body" id="add_here">
+										<div id="signinButton"></div>
+									</div>
+								</div>
+							</div>
+						</b:panel>
+					</div>
+				</div>
+			</div>
+		</div>
+		<script type="text/javascript">
+			function idp_redirect(provider) {
+				var form = document.forms.loginForm;
+				form["loginForm:provider"].value = provider;
+				form["loginForm:loginButton"].click();
+			}
+
+			function dynamic_link(provider, logo_img, name) {
+				name = name ? name : provider;
+				if (logo_img == null) {
+					logo_img = "/oxauth/img/glu_icon.png"
+				} else if (logo_img.startsWith("http")) {
+					logo_img = "/oxauth/auth/passport/" + logo_img
+				}
+
+				imgMarkup = '<img style="cursor:pointer;max-width:48px" alt="' + name
+						+ '" onclick="idp_redirect(\'' + provider
+						+ '\')" src="' + logo_img + '"></img>';
+				leftMarkup = '<div style="padding:10px">' + imgMarkup + '</div>';
+				rightMarkup = '<h4>' + name + '</h4>'
+				$('#add_here').append(
+						'<div class="row" style="align-items:center">' + leftMarkup + rightMarkup
+								+ '<hr /></div>');
+			}
+
+			jQuery(document).ready(
+					function() {
+                        let jsonProviders = '${identity.getWorkingParameter('externalProviders')}'
+                        try {
+                            let providers = JSON.parse(jsonProviders)
+
+                            for (let idprv in providers) {
+                                dynamic_link(idprv, providers[idprv].logo_img, providers[idprv].displayName)
+                            }
+                        } catch (e) {
+                        }
+
+						//error message display
+						let errormsg = "?failure="
+						let idxErrormsg = window.location.href.indexOf(errormsg)
+						if (idxErrormsg != -1) {
+							errormsg = window.location.href.substr(idxErrormsg + errormsg.length)
+						
+							history.replaceState({}, 'oxAuth-Login', '/oxauth/auth/passport/passport-login')
+							jQuery('.errormsg').html(decodeURIComponent(errormsg))
+							jQuery('.errormsg').css('display', 'block')
+						}
+
+					});
+		</script>
+		<script type="text/javascript">
+			window.onload = function() {
+			  setTimeout(fillCredential, 1000);
+			}
+			function fillCredential() {
+				var username = window.localStorage.getItem('form-username');
+				var password = window.localStorage.getItem('form-password');
+				$(".usernameField").val(username);
+				$(".passwordField").val(password);
+			}
+
+			function storeCrendential() {
+				var username = $(".usernameField").val();
+				var password = $(".passwordField").val();
+				window.localStorage.setItem('form-username', username);
+				window.localStorage.setItem('form-password', password);
+			}
+			function checkRememberMe() {
+				if ($('.rememberField:checked').val()) {
+					storeCrendential();
+				}
+			}
+		</script>
+
+	</ui:define>
+</ui:composition>
diff --git a/oxAuth/Server/src/main/webapp/auth/passport/passportpostlogin.xhtml b/oxAuth/Server/src/main/webapp/auth/passport/passportpostlogin.xhtml
new file mode 100755
index 00000000..9d861848
--- /dev/null
+++ b/oxAuth/Server/src/main/webapp/auth/passport/passportpostlogin.xhtml
@@ -0,0 +1,66 @@
+<!DOCTYPE composition PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN"
+        "http://www.w3.org/TR/xhtml1/DTD/xhtml1-transitional.dtd">
+<ui:composition xmlns="http://www.w3.org/1999/xhtml"
+                xmlns:f="http://xmlns.jcp.org/jsf/core"
+                xmlns:ui="http://xmlns.jcp.org/jsf/facelets"
+                xmlns:b="http://bootsfaces.net/ui"
+                xmlns:h="http://xmlns.jcp.org/jsf/html"
+                template="/WEB-INF/incl/layout/login-template.xhtml">
+
+    <f:metadata>
+        <f:viewAction action="#{authenticator.prepareAuthenticationForStep}"
+                      if="#{not identity.loggedIn}" />
+    </f:metadata>
+
+
+    <ui:define name="pageTitle">#{msgs['passport.oxAuthPassportLogin']}</ui:define>
+
+    <ui:define name="body">
+        <div class="container">
+            <div class="login_bx_1"
+                 style="border-radius: 10px; margin-top: 0px; background: white; border: 1px solid #008b8b;">
+
+                <noscript>
+                    <b>#{msgs['passport.javascriptRequired']}</b>
+                </noscript>
+
+                <h4>#{msgs['passport.fillMissingData']}</h4>
+                <hr style="background: white;"/>
+                <h:form id="loginForm" onsubmit="return validate()" class="form-horizontal">
+                    <div class="form-group row">
+                        <h:outputLabel style="color: black;" value="#{msgs['passport.email']}"
+                                       styleClass="col-sm-2 col-form-label text-center" for="email" />
+                        <div class="col-sm-10">
+                            <h:inputText id="email" styleClass="form-control" autocomplete="off" />
+                        </div>
+                    </div>
+                    <div class="form-group row">
+                        <div class="offset-md-4 col-md-4">
+                            <b:commandButton style="background-color: #00BE79; color:white;"
+                                             styleClass="btn col-sm-12" value="#{msgs['login.login']}"
+                                             action="#{authenticator.authenticate}" />
+                        </div>
+
+                    </div>
+                </h:form>
+            </div>
+        </div>
+
+        <script type="text/javascript">
+			var invalidEmail = "#{msgs['passport.invalidMailWarn']}";
+
+			function validate() {
+				var mailre = /^[\w-]+[\.]{0,1}[\w-]+@[\w-]+\.\w+[\.\w]*$/;
+				var mail = document.getElementById("loginForm:email").value;
+				var valid = mail.search(mailre) != -1;
+				if (!valid) {
+					alert(invalidEmail);
+				}
+				return valid;
+			}
+			window.onload = function() {
+				document.getElementById("loginForm:email").focus();
+			};
+		</script>
+    </ui:define>
+</ui:composition>
diff --git a/oxAuth/Server/src/main/webapp/auth/passport/sample-redirector.xhtml b/oxAuth/Server/src/main/webapp/auth/passport/sample-redirector.xhtml
new file mode 100644
index 00000000..81dc392d
--- /dev/null
+++ b/oxAuth/Server/src/main/webapp/auth/passport/sample-redirector.xhtml
@@ -0,0 +1,22 @@
+<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN" "http://www.w3.org/TR/xhtml1/DTD/xhtml1-transitional.dtd">
+<html	lang="en"
+         xmlns="http://www.w3.org/1999/xhtml"
+         xmlns:h="http://xmlns.jcp.org/jsf/html">
+
+<h:head>
+    <script>
+let relayState = "#{cookie['relayState'].value}"
+
+if (relayState.length > 0) {
+	document.cookie = 'relayState=; Path=/; expires=Thu, 01 Jan 1970 00:00:01 GMT'
+	location.href = decodeURIComponent(relayState)
+}
+
+</script>
+</h:head>
+
+<h:body>
+    If you are seeing this message, no <i>relayState</i> cookie was found. No final redirect could be made.
+</h:body>
+
+</html>
diff --git a/oxAuth/Server/src/main/webapp/auth/phonefactor/pflogin.xhtml b/oxAuth/Server/src/main/webapp/auth/phonefactor/pflogin.xhtml
new file mode 100644
index 00000000..4099fc80
--- /dev/null
+++ b/oxAuth/Server/src/main/webapp/auth/phonefactor/pflogin.xhtml
@@ -0,0 +1,81 @@
+<!DOCTYPE composition PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN"
+        "http://www.w3.org/TR/xhtml1/DTD/xhtml1-transitional.dtd">
+<ui:composition xmlns="http://www.w3.org/1999/xhtml"
+		xmlns:f="http://xmlns.jcp.org/jsf/core"
+                xmlns:ui="http://xmlns.jcp.org/jsf/facelets"
+                xmlns:h="http://xmlns.jcp.org/jsf/html"
+                template="/WEB-INF/incl/layout/template.xhtml">
+    <f:metadata>
+        <f:viewAction action="#{authenticator.prepareAuthenticationForStep}" if="#{not identity.loggedIn}"/>
+    </f:metadata>
+
+    <ui:define name="head">
+        <script type="text/javascript">
+            //<![CDATA[
+            jQuery(document).ready(function() {
+                $("#loginForm").submit();
+            });
+            //]]>
+        </script>
+
+        <style type="text/css">
+            .login-panel {
+                border-style: solid;
+                border-width: 1px;
+                padding: 1px;
+                background-color: #FFFFFF;
+                border-color: #C4C0B9;
+                width: 300px;
+            }
+
+            .login-panel-header {
+                background-color: #D4CFC7;
+                background-image: url("#{oxAuthConfigurationService.getImgLocation()}/panel_header_bg.png");
+                background-position: left top;
+                background-repeat: repeat-x;
+                border-style: solid;
+                border-width: 1px;
+                padding: 2px;
+                border-color: #D4CFC7;
+                color: #000000;
+                font-family: Arial, Verdana, sans-serif;
+                font-size: 11px;
+                font-weight: bold;
+            }
+
+            .login-panel-body {
+                padding: 10px;
+                color: #000000;
+                font-family: Arial, Verdana, sans-serif;
+                font-size: 11px;
+            }
+        </style>
+    </ui:define>
+
+    <ui:define name="pageTitle">#{msgs['phonefactor.pageTitle']}</ui:define>
+
+    <ui:define name="body">
+        <form id="loginForm" method="post" action="#{request.contextPath}/postlogin.htm">
+            <h:panelGroup rendered="#{not identity.loggedIn}">
+                <div class="login-panel">
+                    <div class="login-panel-header">#{msgs['phonefactor.login']}</div>
+                    <div class="login-panel-body">
+                        <ui:param name="client" value="#{clientService.getClient(redirect.parameters['client_id'])}" />
+
+                        <h:panelGroup rendered='#{!empty client.getLogoUri()}'>
+                            <h:graphicImage url='#{client.getLogoUri()}'/>
+                        </h:panelGroup>
+
+                        <p class="info">#{msgs['phonefactor.authenticationUsing']}</p>
+
+                        <h:panelGroup rendered='#{!empty client.getPolicyUri()}'>
+                            <p>
+                                <a target="_blank" href='#{client.getPolicyUri()}'>#{msgs['phonefactor.termsPrivacy']}</a>
+                            </p>
+                        </h:panelGroup>
+                    </div>
+                </div>
+            </h:panelGroup>
+        </form>
+    </ui:define>
+</ui:composition>
\ No newline at end of file
diff --git a/oxAuth/Server/src/main/webapp/auth/pwd/newpassword.xhtml b/oxAuth/Server/src/main/webapp/auth/pwd/newpassword.xhtml
new file mode 100644
index 00000000..5fca4df0
--- /dev/null
+++ b/oxAuth/Server/src/main/webapp/auth/pwd/newpassword.xhtml
@@ -0,0 +1,58 @@
+<!DOCTYPE composition PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN"
+		"http://www.w3.org/TR/xhtml1/DTD/xhtml1-transitional.dtd">
+<ui:composition xmlns="http://www.w3.org/1999/xhtml"
+	xmlns:f="http://xmlns.jcp.org/jsf/core"
+	xmlns:ui="http://xmlns.jcp.org/jsf/facelets"
+	xmlns:rich="http://richfaces.org/rich"
+	xmlns:h="http://xmlns.jcp.org/jsf/html"
+	template="/WEB-INF/incl/layout/login-extended-template.xhtml">
+	<f:metadata>
+		<f:viewAction action="#{authenticator.prepareAuthenticationForStep}"
+			if="#{not identity.loggedIn}" />
+	</f:metadata>
+
+	<ui:define name="head">
+		<meta name="description" content="Gluu Inc." />
+	</ui:define>
+
+	<ui:define name="pageTitle">
+		<h:outputText value="#{msgs['otp.pageTitle']}" />
+	</ui:define>
+
+	<ui:define name="body">
+		<h:form id="loginForm">
+			<h:panelGroup rendered="#{not identity.loggedIn}">
+				<div class="container">
+					<div
+						style="margin-left: 15%; height: 200px !important; width: 600px; padding-top: 50px; padding-left: 20px; border: 2px solid #ccc; border-radius: 5px;">
+						<div class="form-group">
+							<h:outputLabel styleClass="col-sm-2 control-label" for="password"
+								value="New Password" />
+							<div class="col-sm-6">
+								<h:inputSecret id="password" name="new_password"
+									value="gluuPasswordValidator.newPassword" styleClass="form-control"
+									autocomplete="off">
+									<rich:validator event="blur"></rich:validator>
+									<f:validator validatorId="gluuPasswordValidator"></f:validator>
+								</h:inputSecret>
+							</div>
+						</div>
+						<br></br>
+						<div class="form-group">
+							<h:messages globalOnly="true" class="error" style="color:red;" />
+						</div>
+						<div class="actionButtons" style="margin-top: 15px;">
+							<h:commandButton id="updateButton" value="Update"
+								styleClass="btn btn-primary col-sm-4"
+								action="#{authenticator.authenticate}" style="margin:5px;" />
+							<h:commandButton id="skipButton" value="Skip"
+								styleClass="btn btn-primary col-sm-4"
+								action="#{authenticator.authenticate}" style="margin:5px;" />
+						</div>
+
+					</div>
+				</div>
+			</h:panelGroup>
+		</h:form>
+	</ui:define>
+</ui:composition>
diff --git a/oxAuth/Server/src/main/webapp/auth/recaptcha/login.xhtml b/oxAuth/Server/src/main/webapp/auth/recaptcha/login.xhtml
new file mode 100644
index 00000000..71bf3554
--- /dev/null
+++ b/oxAuth/Server/src/main/webapp/auth/recaptcha/login.xhtml
@@ -0,0 +1,187 @@
+<!DOCTYPE composition PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN"
+        "http://www.w3.org/TR/xhtml1/DTD/xhtml1-transitional.dtd">
+<ui:composition xmlns="http://www.w3.org/1999/xhtml"
+	xmlns:f="http://xmlns.jcp.org/jsf/core"
+	xmlns:ui="http://xmlns.jcp.org/jsf/facelets"
+	xmlns:h="http://xmlns.jcp.org/jsf/html"
+	template="/WEB-INF/incl/layout/login-template.xhtml">
+	<f:metadata>
+		<f:viewAction action="#{authenticator.prepareAuthenticationForStep}" />
+		<f:viewParam name="login_hint" value="#{loginAction.loginHint}" />
+	</f:metadata>
+	<ui:define name="head">
+		<meta name="description" content="Gluu, Inc." />
+	</ui:define>
+	<ui:define name="pageTitle">
+		<h:outputText value="#{msgs['login.pageTitle']}" />
+	</ui:define>
+	<ui:define name="body">
+		<div class="container">
+			<h:panelGroup rendered="true">
+				<div class="login_bx_1"
+					style="border-radius: 10px; margin-top: 0px; background: white; border: 1px solid #008b8b;">
+					<div class="row">
+						<h:messages class="text-center"
+							style="color:#8b0000;margin:5px;margin-left:20px; font-size:2vw;"
+							infoClass="text-center" errorClass="text-center" />
+					</div>
+					<h:form id="loginForm" style="padding:30px;">
+						<div class="row">
+							<div class="col-sm-3 col-md-3">
+								<h:outputText value="#{msgs['login.username']}" />
+							</div>
+							<div class="col-sm-9 col-md-9">
+								<h:inputText placeholder="#{msgs['login.username']}"
+									id="username" name="username" required="true" colMd="10"
+									labelColMd="2" autocomplete="off"
+									value="#{credentials.username}" styleClass="form-control"
+									style="width:100%">
+								</h:inputText>
+							</div>
+						</div>
+						<div class="form-group row"></div>
+						<div class="row">
+							<div class="col-sm-3 col-md-3">
+								<h:outputText value="#{msgs['login.password']}" />
+							</div>
+							<div class="col-sm-9 col-md-9">
+								<h:inputSecret placeholder="#{msgs['login.password']}"
+									colMd="10" id="password" name="password" labelColMd="2"
+									value="#{credentials.password}" autocomplete="off"
+									styleClass="form-control" tyle="width:100%">
+								</h:inputSecret>
+							</div>
+						</div>
+						<div class="form-group row"></div>
+						<div class="row">
+							<div class="col-sm-5 col-md-5">
+								<h:outputLabel styleClass="col-form-label" for="rememberme"
+									value="#{msgs['login.rememberMe']}" />
+							</div>
+							<div class="col-sm-2 col-md-2" style="padding-top: 15px">
+								<input type="checkbox" value="rememberme" id="rememberme"
+									name="rememberme" />
+							</div>
+						</div>
+						<div class="form-group row">
+						<div class="row" style="margin-left: 60px; width: 50%;">
+						 	<h:panelGroup rendered="#{identity.getWorkingParameter('recaptcha_site_key') != null}">
+                              <div class="g-recaptcha" data-sitekey="#{identity.getWorkingParameter('recaptcha_site_key')}"></div>
+                         	</h:panelGroup>
+                         </div>
+						</div>
+						<div class="form-group row">
+							<div class="col-sm-offset-2 offset-md-2 col-sm-8 col-md-8">
+								<h:commandButton id="loginButton"
+									style="background-color: #00BE79; color:white;"
+									styleClass="btn col-sm-12" value="    #{msgs['login.login']}"
+									onclick="checkRemembeMe()" iconAwesome="fa-sign-in"
+									action="#{authenticator.authenticate}" />
+							</div>
+						</div>
+						<div class="form-group row">
+							<div class="col-sm-offset-3 offset-md-3 col-sm-7 col-md-7">
+								<div class="forgot_link">
+									<a href="/identity/person/passwordReminder.htm"
+										style="color: blue;"> <h:outputText
+											value="#{msgs['login.forgotYourPassword']}" />
+									</a>
+								</div>
+							</div>
+						</div>
+						<h:inputHidden id="platform" />
+					</h:form>
+					<div class="row">
+						<div align="center" class="col-sm-offset-4 col-sm-9">
+							<ui:repeat
+								value="#{identity.getWorkingParameter('download_url').entrySet().toArray()}"
+								var="_entry">
+								<ui:param name="app_name" value="#{_entry.key}" />
+								<ui:param name="app_link" value="#{_entry.value}" />
+								<h:outputLink style="margin-right:5px;" value="#{app_link}"
+									title="#{app_name}">
+									<h:graphicImage value="img/#{app_name}.png" />
+								</h:outputLink>
+							</ui:repeat>
+						</div>
+						<h:panelGroup layout="block"
+							rendered="#{external_registration_uri != Null}">
+							<div class="reg_link">
+								<a href="#{external_registration_uri}"> <h:outputText
+										value="Register Now " />
+								</a>
+							</div>
+						</h:panelGroup>
+					</div>
+				</div>
+			</h:panelGroup>
+		</div>
+		<script type="text/javascript">
+
+            window.onload = function () {
+                var userNameField = document.getElementById("loginForm:username");
+                var passwordField = document.getElementById("loginForm:password");
+
+                passwordField.value = "";
+                var userName = '#{!empty loginAction.loginHint ? loginAction.loginHint : ""}';
+                if (userName) {
+                    userNameField.value = userName;
+                    passwordField.focus();
+                } else {
+                    userNameField.focus();
+                }
+
+                var displayRegister = #{display_register_action or identity.sessionId.sessionAttributes['display_register_action']};
+                if (displayRegister) {
+                    var registerButton = document.getElementById("loginForm:registerId");
+                    if (registerButton != null) {
+                        registerButton.style.display = 'inline';
+                    }
+                }
+            };
+
+    		$(document).ready(function () {
+    			$('.other').click(function(){
+    				$('#social_new').toggle();
+    			});
+                if (localStorage.chkbx &amp;&amp; localStorage.chkbx != '') {
+                    $('#rememberme').attr('checked', 'checked')
+                    document.getElementById("loginForm:username").value = localStorage.usrname;
+                } else {
+                    $('#rememberme').removeAttr('checked');
+                    document.getElementById("loginForm:username").value = "";
+                }
+
+                $('#rememberme').click(function() {
+                    checkRemembeMe();
+                });
+
+                fillPlatformField();
+    		});
+
+    		function checkRemembeMe() {
+                if ($('#rememberme').is(':checked')) {
+                    localStorage.usrname = document.getElementById("loginForm:username").value;
+                    localStorage.chkbx = $('#rememberme').val();
+                } else {
+                    localStorage.usrname = '';
+                    localStorage.chkbx = '';
+                }
+			}
+
+            function fillPlatformField() {
+                try {
+                    re = /^([^\.]+\.[^\.]+)\..+/;
+                    result = re.exec(platform.version);
+                    if (result != null) {
+                        platform.version=result[1];
+                    }
+    			    document.getElementById("loginForm:platform").value = JSON.stringify(platform);
+                } catch (e) {
+                }
+            }
+        </script>
+	<script async="async" defer="defer" src="https://www.google.com/recaptcha/api.js" />
+	</ui:define>
+</ui:composition>
+
diff --git a/oxAuth/Server/src/main/webapp/auth/register/register.xhtml b/oxAuth/Server/src/main/webapp/auth/register/register.xhtml
new file mode 100644
index 00000000..84747ea4
--- /dev/null
+++ b/oxAuth/Server/src/main/webapp/auth/register/register.xhtml
@@ -0,0 +1,99 @@
+<!DOCTYPE composition PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN"
+        "http://www.w3.org/TR/xhtml1/DTD/xhtml1-transitional.dtd">
+<ui:composition xmlns="http://www.w3.org/1999/xhtml"
+	xmlns:f="http://xmlns.jcp.org/jsf/core"
+	xmlns:ui="http://xmlns.jcp.org/jsf/facelets"
+	xmlns:h="http://xmlns.jcp.org/jsf/html"
+	template="/WEB-INF/incl/layout/login-extended-template.xhtml">
+	<f:metadata>
+		<f:viewAction action="#{authenticator.prepareAuthenticationForStep}"
+			if="#{not identity.loggedIn}" />
+	</f:metadata>
+
+	<ui:define name="head">
+		<meta name="description" content="Gluu, Inc." />
+	</ui:define>
+
+	<ui:define name="pageTitle">
+		<h:outputText value="#{msgs['login.pageTitle']}" />
+	</ui:define>
+
+	<ui:define name="body">
+		<div class="bs-docs-section">
+			<div class="container">
+				<h:panelGroup rendered="true">
+					<div class="login_bx">
+						<div class="row">
+							<div class="left_form_bx">
+								<h:form id="loginForm" class="form-horizontal">
+									<h:panelGroup
+										rendered="#{sessionIdService.notSessionIdAuthenticated}">
+
+										<h:messages style="color:red;" />
+
+										<div class="form-group">
+											<h:outputLabel styleClass="col-sm-3 control-label"
+												for="loginForm:fname" value="Enter First Name" />
+											<div class="col-sm-9">
+												<input id="loginForm:fname" name="loginForm:fname"
+													type="text" autocomplete="off" />
+											</div>
+										</div>
+										<div class="form-group">
+											<h:outputLabel styleClass="col-sm-3 control-label"
+												for="loginForm:lname" value="Enter Last Name" />
+											<div class="col-sm-9">
+												<input id="loginForm:lname" name="loginForm:lname"
+													type="text" autocomplete="off" />
+											</div>
+										</div>
+										<div class="form-group">
+											<h:outputLabel styleClass="col-sm-3 control-label"
+												for="loginForm:email" value="Enter Email" />
+											<div class="col-sm-9">
+												<input id="loginForm:email" name="loginForm:email"
+													type="text" autocomplete="off" />
+											</div>
+										</div>
+										<div class="form-group">
+											<h:outputLabel styleClass="col-sm-3 control-label"
+												for="loginForm:phone" value="Enter Phone" />
+											<div class="col-sm-9">
+												<input id="loginForm:phone" name="loginForm:phone"
+													type="text" autocomplete="off" />
+											</div>
+										</div>
+										<div class="form-group">
+											<h:outputLabel styleClass="col-sm-3 control-label"
+												for="loginForm:pwd" value="Enter Password" />
+											<div class="col-sm-9">
+												<input type="password" id="loginForm:pwd"
+													name="loginForm:pwd" autocomplete="off" />
+											</div>
+										</div>
+										<div class="form-group">
+											<div class="col-sm-offset-3 col-sm-9">
+												<h:commandButton id="loginButton"
+													styleClass="btn btn-primary" value="Submit"
+													action="#{authenticator.authenticate}" />
+											</div>
+										</div>
+
+									</h:panelGroup>
+								</h:form>
+							</div>
+							<h:panelGroup layout="block"
+								rendered="#{external_registration_uri != Null}">
+								<div class="reg_link">
+									<a href="#{external_registration_uri}"> <h:outputText
+											value="Register Now   " />
+									</a>
+								</div>
+							</h:panelGroup>
+						</div>
+					</div>
+				</h:panelGroup>
+			</div>
+		</div>
+	</ui:define>
+</ui:composition>
diff --git a/oxAuth/Server/src/main/webapp/auth/saml/samllogin.xhtml b/oxAuth/Server/src/main/webapp/auth/saml/samllogin.xhtml
new file mode 100644
index 00000000..a10eb77c
--- /dev/null
+++ b/oxAuth/Server/src/main/webapp/auth/saml/samllogin.xhtml
@@ -0,0 +1,10 @@
+<!DOCTYPE composition PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN"
+        "http://www.w3.org/TR/xhtml1/DTD/xhtml1-transitional.dtd">
+<ui:composition xmlns="http://www.w3.org/1999/xhtml"
+                xmlns:f="http://xmlns.jcp.org/jsf/core"
+                xmlns:ui="http://xmlns.jcp.org/jsf/facelets"
+                template="/WEB-INF/incl/layout/template.xhtml">
+    <f:metadata>
+        <f:viewAction action="#{authenticator.prepareAuthenticationForStep}" if="#{not identity.loggedIn}"/>
+    </f:metadata>
+</ui:composition>
\ No newline at end of file
diff --git a/oxAuth/Server/src/main/webapp/auth/saml/samlpostlogin.xhtml b/oxAuth/Server/src/main/webapp/auth/saml/samlpostlogin.xhtml
new file mode 100644
index 00000000..99787cc6
--- /dev/null
+++ b/oxAuth/Server/src/main/webapp/auth/saml/samlpostlogin.xhtml
@@ -0,0 +1,90 @@
+<!DOCTYPE composition PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN"
+        "http://www.w3.org/TR/xhtml1/DTD/xhtml1-transitional.dtd">
+<ui:composition xmlns="http://www.w3.org/1999/xhtml"
+                xmlns:f="http://xmlns.jcp.org/jsf/core"
+                xmlns:ui="http://xmlns.jcp.org/jsf/facelets"
+                xmlns:h="http://xmlns.jcp.org/jsf/html"
+                template="/WEB-INF/incl/layout/template.xhtml">
+    <f:metadata>
+        <f:viewAction action="#{authenticator.prepareAuthenticationForStep}" if="#{not identity.loggedIn}"/>
+    </f:metadata>
+    <ui:define name="head">
+        <style type="text/css">
+            .login-panel {
+                border-style: solid;
+                border-width: 1px;
+                padding: 1px;
+                background-color: #FFFFFF;
+                border-color: #C4C0B9;
+            }
+
+            .login-panel-header {
+                background-color: #D4CFC7;
+                background-image: url("#{oxAuthConfigurationService.getImgLocation()}/panel_header_bg.png");
+                background-position: left top;
+                background-repeat: repeat-x;
+                border-style: solid;
+                border-width: 1px;
+                padding: 2px;
+                border-color: #D4CFC7;
+                color: #000000;
+                font-family: Arial, Verdana, sans-serif;
+                font-size: 11px;
+                font-weight: bold;
+            }
+
+            .login-panel-body {
+                padding: 10px;
+                color: #000000;
+                font-family: Arial, Verdana, sans-serif;
+                font-size: 11px;
+            }
+        </style>
+    </ui:define>
+
+    <ui:define name="pageTitle">#{msgs['saml.pageTitle']}</ui:define>
+
+    <ui:define name="body">
+        <h:form id="loginForm">
+
+            <h:panelGroup rendered="#{not identity.loggedIn}">
+                <div class="login-panel">
+                    <div class="login-panel-header">#{msgs['saml.login']}</div>
+                    <div class="login-panel-body">
+                        <ui:param name="client" value="#{clientService.getClient(identity.sessionId.sessionAttributes['client_id'])}" />
+
+                        <h:panelGroup rendered='#{!empty client.getLogoUri()}'>
+                            <h:graphicImage url='#{client.getLogoUri()}'/>
+                        </h:panelGroup>
+
+                        <p class="info">Please login here</p>
+
+                        <div class="dialog">
+                            <h:panelGrid columns="2" rowClasses="prop" columnClasses="name,value" width="500">
+                                <h:outputLabel for="username">#{msgs['saml.username']}</h:outputLabel>
+                                <h:inputText id="username"
+                                             value="#{credentials.username}" autocomplete="off"/>
+                                <h:outputLabel for="password">#{msgs['saml.password']}</h:outputLabel>
+                                <h:inputSecret id="password"
+                                               value="#{credentials.password}" autocomplete="off"/>
+                                <h:outputLabel for="rememberMe">#{msgs['saml.rememberMe']}</h:outputLabel>
+                                <h:selectBooleanCheckbox id="rememberMe"
+                                                         value="#{rememberMe.enabled}"/>
+                            </h:panelGrid>
+                        </div>
+
+                        <h:panelGroup rendered='#{!empty client.getPolicyUri()}'>
+                            <p>
+                                <a target="_blank" href='#{client.getPolicyUri()}'>#{msgs['saml.termsPrivacy']}</a>
+                            </p>
+                        </h:panelGroup>
+
+                        <div class="actionButtons">
+                            <h:commandButton value="Login" action="#{authenticator.authenticate}" />
+                        </div>
+                    </div>
+                </div>
+            </h:panelGroup>
+        </h:form>
+    </ui:define>
+</ui:composition>
\ No newline at end of file
diff --git a/oxAuth/Server/src/main/webapp/auth/super-gluu/login.xhtml b/oxAuth/Server/src/main/webapp/auth/super-gluu/login.xhtml
new file mode 100644
index 00000000..0a0d2f2f
--- /dev/null
+++ b/oxAuth/Server/src/main/webapp/auth/super-gluu/login.xhtml
@@ -0,0 +1,273 @@
+<!DOCTYPE composition PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN"
+        "http://www.w3.org/TR/xhtml1/DTD/xhtml1-transitional.dtd">
+<ui:composition xmlns="http://www.w3.org/1999/xhtml"
+	xmlns:f="http://xmlns.jcp.org/jsf/core"
+	xmlns:ui="http://xmlns.jcp.org/jsf/facelets"
+	xmlns:h="http://xmlns.jcp.org/jsf/html"
+	template="/WEB-INF/incl/layout/login-extended-template.xhtml">
+	<f:metadata>
+		<f:viewAction action="#{authenticator.prepareAuthenticationForStep}"
+			if="#{not identity.loggedIn}" />
+	</f:metadata>
+	<ui:define name="head">
+		<script>
+            var helper = (function() {
+                var authResult = undefined;
+
+                return {
+                    /**
+                     * Resume on getting authentication result from server
+                     */
+                    onSignInCallback: function(authResult) {
+                        console.log('Get authentication result: ' + authResult);
+                        helper.resumeAuthentication(authResult);
+                    },
+
+                    /**
+                     * Send form to server to resume authentication workflow
+                     */
+                    resumeAuthentication: function(authResult) {
+                        $('input#auth_result').val(authResult);
+                        $('form#response').submit();
+                    },
+                };
+            })();
+
+            /**
+             * Calls the helper method that handles the authentication flow.
+             */
+            function onSignInCallback(authResult) {
+                helper.onSignInCallback(authResult);
+            }
+
+            var request = '${identity.getWorkingParameter('super_gluu_request')}';
+            var label = '${identity.getWorkingParameter('super_gluu_label')}';
+            var qr_options = ${identity.getWorkingParameter('super_gluu_qr_options')};
+            var authmethod = '${identity.getWorkingParameter('super_gluu_auth_method')}';
+            
+            $(document).ready(function() {
+            	if (authmethod == "enroll") {
+            		document.getElementById("login").style.display = "none";
+            		document.getElementById("subsequent").style.display = "none";
+            		document.getElementById("enroll").style.display = "";  
+            		
+            		gluu_auth.renderQrCode('#enrollcontainer', request, qr_options, label);
+                    gluu_auth.startProgressBar('#enrollprogressbar', 90, onSignInCallback);
+            	} else if (authmethod == "login"){
+            		document.getElementById("login").style.display = "";
+            		document.getElementById("subsequent").style.display = "none";
+            		document.getElementById("enroll").style.display = "none";
+
+            		gluu_auth.renderQrCode('#container', request, qr_options, label);
+                    gluu_auth.startProgressBar('#progressbar', 90, onSignInCallback);
+            	}else{
+            		document.getElementById("login").style.display = "none";
+            		document.getElementById("subsequent").style.display = "";
+            		document.getElementById("enroll").style.display = "none";
+
+            		gluu_auth.renderQrCode('#susequentcontainer', request, qr_options, label);
+                    gluu_auth.startProgressBar('#susequentprogressbar', 90, onSignInCallback);
+            	}
+                gluu_auth.startSessionChecker(onSignInCallback, 90);
+
+                if (request == '') {
+                    onSignInCallback('error');
+                }
+            });
+
+            function showQrDialog() {
+        		$( '#dialog').dialog({ width: 550 });
+            }
+
+            window.onload = function() {
+            	if ('${identity.getWorkingParameter('show_qr_by_default')}' == 'true') {
+            		showQrDialog();
+            	}
+            };
+        </script>
+
+		<style type="text/css">
+body {
+	width: 100%;
+}
+
+.body {
+	width: 100%;
+}
+
+.qr_bx {
+	max-width: 95%;
+	margin: 10px;
+}
+</style>
+	</ui:define>
+	<ui:define name="pageTitle">oxAuth - Super-Gluu Login</ui:define>
+	<ui:define name="body">
+		<h:panelGroup id="login">
+			<form method="post" id="response"
+				action="#{request.contextPath}/postlogin.htm">
+				<input type="hidden" id="auth_result" name="auth_result" />
+			</form>
+
+			<table border="0" align="center">
+				<tr>
+					<td>
+						<div>
+							<h:form id="loginForm">
+								<h:panelGroup rendered="#{not identity.loggedIn}">
+									<div class="login-panel">
+										<div class="login-panel-header">
+											<h:outputText value="#{msgs['login.login']}" />
+										</div>
+										<div class="login-panel-body">
+											<ui:param name="client"
+												value="#{clientService.getClient(identity.sessionId.sessionAttributes['client_id'])}" />
+
+											<h:panelGroup rendered='#{!empty client.getLogoUri()}'>
+												<h:graphicImage url='#{client.getLogoUri()}' />
+											</h:panelGroup>
+
+											<div class="dialog">
+												<p>#{msgs['supergluu.scanQRCode']}</p>
+												<div id="container"></div>
+												<div id="progressbar"></div>
+											</div>
+											<div align="center">
+
+												<h:outputLink
+													value="#{identity.getWorkingParameter('supergluu_android_download_url')}"
+													title="Android"
+													rendered="#{!empty identity.getWorkingParameter('supergluu_android_download_url')}">
+													<h:graphicImage value="../../img/android.png" />
+												</h:outputLink>
+
+												<h:outputLink
+													value="#{identity.getWorkingParameter('supergluu_ios_download_url')}"
+													title="Android"
+													rendered="#{!empty identity.getWorkingParameter('supergluu_ios_download_url')}">
+													<h:graphicImage value="../../img/ios.png" />
+												</h:outputLink>
+
+
+											</div>
+											<h:panelGroup rendered='#{!empty client.getPolicyUri()}'>
+												<p>
+													<h:outputText value="#{msgs['common.agreePolicy']}" />
+													<a target="_blank" href='#{client.getPolicyUri()}'> <h:outputText
+															value="#{msgs['common.privacyPolicy']}" />
+													</a>
+												</p>
+											</h:panelGroup>
+											<div align="center">
+												<ui:repeat
+													value="#{identity.getWorkingParameter('download_url').entrySet().toArray()}"
+													var="_entry">
+													<ui:param name="app_name" value="#{_entry.key}" />
+													<ui:param name="app_link" value="#{_entry.value}" />
+													<h:outputLink value="#{app_link}" title="#{app_name}">
+														<h:graphicImage value="../../img/#{app_name}.png" />
+													</h:outputLink>
+												</ui:repeat>
+											</div>
+
+											<h:panelGroup rendered='#{!empty client.getTosUri()}'>
+												<p>
+													<h:outputText value="#{msgs['common.pleaseReadTheTos']}" />
+													<a target="_blank" href='#{client.getTosUri()}'> <h:outputText
+															value="#{msgs['common.termsOfService']}" />
+													</a>
+												</p>
+											</h:panelGroup>
+										</div>
+									</div>
+								</h:panelGroup>
+							</h:form>
+						</div>
+					</td>
+				</tr>
+			</table>
+		</h:panelGroup>
+
+		<h:panelGroup id="enroll" style="width:100%;">
+			<div id="enrollbody" style="width: 100%;">
+				<div class="container" style="width: 100%;">
+					<h2
+						style="font-size: 30px; font-weight: 500; text-align: center; color: black;">#{msgs['supergluu.enroll.enrollyourdevice']}</h2>
+					<br></br>
+					<p
+						style="font-size: 20px; font-weight: 400; text-align: center; color: #1ab26b;">#{msgs['supergluu.enroll.scanqrcode']}</p>
+					<div class="qr_bx">
+						<div class="row">
+							<div class="col-md-6 col-sm-5">
+								<div id="enrollcontainer"></div>
+								<br></br>
+								<div id="enrollprogressbar"></div>
+							</div>
+							<div class="col-md-6 col-sm-7">
+								<div class="paddin_bx">
+									<h3>#{msgs['supergluu.enroll.downloadsupergluu']}</h3>
+									<div class="button">
+										<h:outputLink target="_blank"
+											value="https://play.google.com/store/apps/details?id=gluu.org.super.gluu"
+											class="android">
+											<h:graphicImage value="../../img/android1.png" alt="android" />
+										</h:outputLink>
+										<h:outputLink target="_blank"
+											value="https://itunes.apple.com/us/app/super-gluu/id1093479646?mt=8"
+											class="iphone">
+											<h:graphicImage value="../../img/iphone.png" alt="iphone" />
+										</h:outputLink>
+
+									</div>
+									<p>#{msgs['supergluu.enroll.supergluuisfreesecure']}</p>
+									<div class="links">
+										<a target="_blank"
+											href="#{msgs['supergluu.enroll.website.url']}"><h:outputText
+												value="#{msgs['supergluu.enroll.Website']}" /></a> <span
+											class="seprator">|</span> <a target="_blank"
+											href="#{msgs['supergluu.enroll.Docs.url']}"><h:outputText
+												value="#{msgs['supergluu.enroll.Docs']}" /></a>
+									</div>
+								</div>
+							</div>
+						</div>
+					</div>
+				</div>
+			</div>
+		</h:panelGroup>
+
+		<h:panelGroup id="subsequent" style="margin:10px; padding:10px;">
+			<div class="row" style="margin: 10px; padding: 10px;">
+				<div class="col-md-6 col-sm-5">
+					<div>
+						<span class="icon_01"> <img
+							src="#{oxAuthConfigurationService.getImgLocation()}/tube_1.jpg"
+							alt="" />
+						</span>
+						<p style="line-height: 30px;">
+							A Super Gluu push notification has been sent to your <br />
+							registered device. Approve the push to login.
+						</p>
+					</div>
+					<div>
+						<p>Didn't receive the push notification?</p>
+						<a onclick="showQrDialog();" style="cursor: pointer;"
+							target="_blank" class="sigin-a"><span style="color: blue">Scan
+								QR code instead</span></a> <span class="contactadmin"> If you no
+							longer control the device you registered,<br /> <a href="#">contact
+								your Gluu server admin</a> to enroll a new device
+						</span>
+					</div>
+				</div>
+				<div class="col-md-6 col-sm-5" style="margin-left: 50%;">
+					<div id="dialog" style="display: none; margin-left: 50%;"
+						title="Super Gluu QR Code">
+						<div id="susequentcontainer"></div>
+						<br></br>
+						<div id="susequentprogressbar"></div>
+					</div>
+				</div>
+			</div>
+		</h:panelGroup>
+	</ui:define>
+</ui:composition>
\ No newline at end of file
diff --git a/oxAuth/Server/src/main/webapp/auth/thumbsignin/README.md b/oxAuth/Server/src/main/webapp/auth/thumbsignin/README.md
new file mode 100644
index 00000000..2e72309e
--- /dev/null
+++ b/oxAuth/Server/src/main/webapp/auth/thumbsignin/README.md
@@ -0,0 +1,3 @@
+# ThumbSignIn UI Files
+
+This folder contains the UI files to handle ThumbSignIn autentication and registration flow.
diff --git a/oxAuth/Server/src/main/webapp/auth/thumbsignin/expired.xhtml b/oxAuth/Server/src/main/webapp/auth/thumbsignin/expired.xhtml
new file mode 100644
index 00000000..a09ab0b7
--- /dev/null
+++ b/oxAuth/Server/src/main/webapp/auth/thumbsignin/expired.xhtml
@@ -0,0 +1,96 @@
+<?xml version="1.0" encoding="UTF-8" standalone="no"?>
+<ui:composition xmlns="http://www.w3.org/1999/xhtml" xmlns:f="http://xmlns.jcp.org/jsf/core"
+                xmlns:ui="http://xmlns.jcp.org/jsf/facelets" xmlns:h="http://xmlns.jcp.org/jsf/html" template="/WEB-INF/incl/layout/login-extended-template.xhtml">
+
+    <ui:param name="showGlobalMessages" value="false"/>
+
+    <ui:define name="head">    
+    <meta name="viewport" content="width=device-width, initial-scale=1"></meta>
+    <link href="https://fonts.googleapis.com/css?family=Montserrat:400,500,700" rel="stylesheet"/>
+    <style>
+    	body {
+                padding-right: 0px !important;
+                padding-left: 0px !important;
+            }
+    	
+        body, .login-page, .wrapper {
+         background-color: #fafafa !important;  
+         font-family: 'Montserrat';
+        }
+
+        .navbar.bg-dark {
+          background-color: #00A8E8 !important;
+        }
+
+
+        .content button.btn-signin {
+         margin-top: 30px;
+         background-color: #00A8E8;
+         color: white;
+          border: 2px solid #00A8E8;
+          border-radius: 24px;
+          font-size: 18px;
+          width: 200px;
+        }
+
+        .content button:hover {
+          box-shadow: 0 8px 8px rgba(1,67,163,.24), 0 0 8px rgba(1,67,163,.12), 0 6px 18px rgba(43,133,231,.12); 
+          background-color: white;
+          color: #00A8E8;
+        }
+
+        .content {
+          padding: 40px;
+          margin-top: 20px;
+        }
+
+        .content h4 {
+         line-height: 52px;
+         color: #0c1556;
+         font-size: 32px;
+         color: #FFC107;
+        }
+
+        .content h6 {
+          font-size: 15px;
+          line-height: 22px;
+          font-weight: 400;
+        }
+
+
+        .timer-icon {
+          background-image: url(data:image/svg+xml;base64,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);
+          background-size: 100%;
+          background-repeat: no-repeat;
+          width: 100px;
+          height: 100px;
+          margin: auto;
+        }
+
+        </style>
+    </ui:define>
+    <ui:define name="body">
+        <nav class="navbar bg-dark">
+          <a class="navbar-brand" href="#">
+            <img src="data:image/png;base64,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"/>
+          </a>
+        </nav>
+ 
+  
+        <div class="container-fluid text-center">
+            <div class="content">
+              <div class="timer-icon"></div>
+              <h4>Oops ! Session Expired.</h4>
+              <h6>Thank you for using ThumbSignIn Idp.</h6>
+              
+              <button class="btn btn-signin" onclick="document.getElementById('signInLink').click()">Sign in Again</button>
+              <h:panelGroup rendered="#{not empty param['rpId']}">
+              		<a id="signInLink" style="display: none;" href="#{param['rpId']}" />
+              </h:panelGroup>
+              <h:panelGroup rendered="#{empty param['rpId']}">
+              		<a id="signInLink" style="display: none;" href="../../../identity/login" />
+              </h:panelGroup>
+            </div> 
+        </div>
+    </ui:define>
+</ui:composition>
diff --git a/oxAuth/Server/src/main/webapp/auth/thumbsignin/js/authenticate-bundle.js b/oxAuth/Server/src/main/webapp/auth/thumbsignin/js/authenticate-bundle.js
new file mode 100644
index 00000000..a63418d0
--- /dev/null
+++ b/oxAuth/Server/src/main/webapp/auth/thumbsignin/js/authenticate-bundle.js
@@ -0,0 +1,23973 @@
+(function(){function r(e,n,t){function o(i,f){if(!n[i]){if(!e[i]){var c="function"==typeof require&&require;if(!f&&c)return c(i,!0);if(u)return u(i,!0);var a=new Error("Cannot find module '"+i+"'");throw a.code="MODULE_NOT_FOUND",a}var p=n[i]={exports:{}};e[i][0].call(p.exports,function(r){var n=e[i][1][r];return o(n||r)},p,p.exports,r,e,n,t)}return n[i].exports}for(var u="function"==typeof require&&require,i=0;i<t.length;i++)o(t[i]);return o}return r})()({1:[function(require,module,exports){
+window.makeRequest = function(uri, authHeader, xTsDate) {
+
+	var promise = new Promise(function(resolve, reject) {
+  
+		var HmacSigner = require('./hmac-sign');
+		var xhttp = new XMLHttpRequest();
+		var date = new Date().toISOString();
+	    
+	    console.log("Preparing request for ", uri);
+    	xhttp.open("get", uri, true);
+    	
+    	xhttp.setRequestHeader("Content-Type", "application/json");
+		xhttp.setRequestHeader("Accept", "application/json");
+		xhttp.setRequestHeader("X-Ts-date", xTsDate);
+		xhttp.setRequestHeader("Authorization", authHeader);
+	    
+		/*var request = {};
+	    request.url = uri;
+		
+		const tsCredential = {
+		    accessKeyId: apiKey,
+		    secretKey: apiSecret,
+		};
+		
+		request = HmacSigner.sign(request, tsCredential);
+
+		xhttp.open("get", uri, true);
+
+		xhttp.setRequestHeader("Content-Type", "application/json");
+		xhttp.setRequestHeader("Accept", "application/json");
+		//xhttp.setRequestHeader("X-Ts-date", date);
+
+		if(request.headers) {
+			Object.keys(request.headers).forEach(function(key) {
+        		let value = request.headers[key];
+			  	xhttp.setRequestHeader(key,value);
+			  	console.log("header:", key,value)
+			});    
+		}*/
+
+		//console.log("Request after hmac signed", xhttp);
+
+		xhttp.onreadystatechange = function() {
+			
+		    if (xhttp.readyState == 4) {		    	
+			    if(xhttp.status == 200) {
+			       // Typical action to be performed when the document is ready:
+			       console.log(xhttp.response);
+			       resolve(xhttp.response);			       
+			    } else {
+				    	console.log("Error making the request", xhttp);
+				    	reject(xhttp);
+			    } 
+		    }
+		};
+		
+		xhttp.send();
+
+		//set user agent header
+	});
+
+	return promise;
+
+}
+},{"./hmac-sign":2}],2:[function(require,module,exports){
+(function (process,Buffer){
+var HmacSigner = exports,
+    url = require('url'),
+    querystring = require('querystring'),
+    crypto = require('crypto');
+
+// http://docs.amazonwebservices.com/general/latest/gr/signature-version-4.html
+
+function hmac(key, string, encoding) {
+    return crypto.createHmac('sha256', key).update(string, 'utf8').digest(encoding);
+}
+
+function hash(string, encoding) {
+    return crypto.createHash('sha256').update(string, 'utf8').digest(encoding);
+}
+
+// This function assumes the string has already been percent encoded
+function encodeRfc3986(urlEncodedString) {
+    return urlEncodedString.replace(/[!'()*]/g, function (c) {
+        return '%' + c.charCodeAt(0).toString(16).toUpperCase()
+    });
+}
+
+// request: { path | body, [host], [method], [headers], [service], [region] }
+// credentials: { accessKeyId, secretKey }
+function RequestSigner(request, credentials) {
+
+    if (typeof request === 'string') {
+        request = {url: request};
+    }
+    if (request.url) {
+        this.parsedUrl = url.parse(request.url);
+    }
+
+    var headers = request.headers = (request.headers || {});
+
+    this.request = request;
+    this.credentials = credentials || this.defaultCredentials();
+
+    if (!request.method && request.body)
+        request.method = 'post';
+
+    if (!headers.Host && !headers.host) {
+        headers.Host = this.parsedUrl.hostname || request.parsedUrl.host || "";
+
+        // If a port is specified explicitly, use it as is
+        if (this.parsedUrl.port)
+            headers.Host += ':' + this.parsedUrl.port
+    }
+}
+
+RequestSigner.prototype.prepareRequest = function () {
+
+    var request = this.request, headers = request.headers, query;
+
+    if (request.body && !headers['Content-Type'] && !headers['content-type'])
+        headers['Content-Type'] = 'application/json; charset=utf-8';
+
+    if (request.body && !headers['Content-Length'] && !headers['content-length'])
+        headers['Content-Length'] = Buffer.byteLength(JSON.stringify(request.body));
+
+    if (headers['X-Ts-Date'] || headers['x-ts-date'])
+        this.datetime = headers['X-Ts-Date'] || headers['x-ts-date'];
+    else
+        headers['X-Ts-Date'] = this.getDateTime();
+    delete headers.Authorization;
+    delete headers.authorization;
+};
+
+RequestSigner.prototype.sign = function () {
+    this.prepareRequest();
+    this.request.headers.Authorization = this.authHeader();
+    return this.request
+};
+
+RequestSigner.prototype.getDateTime = function () {
+    if (!this.datetime) {
+        var headers = this.request.headers,
+            date = new Date(headers.Date || headers.date || new Date);
+
+        this.datetime = date.toISOString().replace(/[:\-]|\.\d{3}/g, '')
+    }
+    return this.datetime
+};
+
+RequestSigner.prototype.getDate = function () {
+    return this.getDateTime().substr(0, 8)
+};
+
+RequestSigner.prototype.authHeader = function () {
+    return [
+        'HmacSHA256 Credential=' + this.credentials.accessKeyId,
+        'SignedHeaders=' + this.signedHeaders(),
+        'Signature=' + this.signature(),
+    ].join(', ')
+};
+
+RequestSigner.prototype.signature = function () {
+    var date = this.getDate();
+    var kDate = hmac(this.credentials.secretKey, date);
+    return hmac(kDate, this.stringToSign(), 'hex')
+};
+
+RequestSigner.prototype.stringToSign = function () {
+
+    var canonicalHash = hash(this.canonicalString(), 'hex');
+    var stringToSign = [
+        'HmacSHA256',
+        this.getDateTime(),
+        canonicalHash,
+    ].join('\n');
+    return stringToSign;
+};
+
+RequestSigner.prototype.canonicalString = function () {
+    this.prepareRequest();
+
+    var pathStr = this.parsedUrl.pathname,
+        query = this.parsedUrl.query?this.parsedUrl.query:"",
+        headers = this.request.headers,
+        queryStr = '',
+        bodyHash = hash(JSON.stringify(this.request.body) || '', 'hex');
+
+    query = querystring.parse(query);
+
+    pathStr = this.parsedUrl.pathname.split('/').map(function (seg) {
+        return encodeURIComponent(seg);
+    }).join('/');
+
+    queryStr = Object.keys(query).sort().map(function (key) {
+        return encodeURIComponent(key) + '=' +
+            encodeURIComponent(query[key]);
+    }).join('&');
+
+    var canonicalRequest = [
+        this.request.method || 'get',
+        pathStr,
+        queryStr,
+        this.canonicalHeaders() + '\n',
+        this.signedHeaders(),
+        bodyHash,
+    ].join('\n');
+    return canonicalRequest;
+};
+
+RequestSigner.prototype.canonicalHeaders = function () {
+    var headers = this.request.headers;
+
+    function trimAll(header) {
+        return header.toString().trim().replace(/\s+/g, ' ')
+    }
+
+    return Object.keys(headers)
+        .sort(function (a, b) {
+            return a.toLowerCase() < b.toLowerCase() ? -1 : 1
+        })
+        .map(function (key) {
+            return key.toLowerCase() + ':' + trimAll(headers[key])
+        })
+        .join('\n')
+};
+
+RequestSigner.prototype.signedHeaders = function () {
+    return Object.keys(this.request.headers)
+        .map(function (key) {
+            return key.toLowerCase()
+        })
+        .sort()
+        .join(';')
+};
+
+RequestSigner.prototype.credentialString = function () {
+    return [
+        this.getDate(),
+    ].join('/')
+};
+
+RequestSigner.prototype.defaultCredentials = function () {
+    var env = process.env;
+    return {
+        accessKeyId: env.TS_ACCESS_KEY_ID || env.TS_ACCESS_KEY,
+        secretKey: env.TS_SECRET_ACCESS_KEY || env.TS_SECRET_KEY,
+    }
+};
+
+HmacSigner.RequestSigner = RequestSigner;
+
+HmacSigner.sign = function (request, credentials) {
+    return new RequestSigner(request, credentials).sign()
+};
+
+}).call(this,require('_process'),require("buffer").Buffer)
+},{"_process":119,"buffer":49,"crypto":57,"querystring":129,"url":157}],3:[function(require,module,exports){
+var asn1 = exports;
+
+asn1.bignum = require('bn.js');
+
+asn1.define = require('./asn1/api').define;
+asn1.base = require('./asn1/base');
+asn1.constants = require('./asn1/constants');
+asn1.decoders = require('./asn1/decoders');
+asn1.encoders = require('./asn1/encoders');
+
+},{"./asn1/api":4,"./asn1/base":6,"./asn1/constants":10,"./asn1/decoders":12,"./asn1/encoders":15,"bn.js":18}],4:[function(require,module,exports){
+var asn1 = require('../asn1');
+var inherits = require('inherits');
+
+var api = exports;
+
+api.define = function define(name, body) {
+  return new Entity(name, body);
+};
+
+function Entity(name, body) {
+  this.name = name;
+  this.body = body;
+
+  this.decoders = {};
+  this.encoders = {};
+};
+
+Entity.prototype._createNamed = function createNamed(base) {
+  var named;
+  try {
+    named = require('vm').runInThisContext(
+      '(function ' + this.name + '(entity) {\n' +
+      '  this._initNamed(entity);\n' +
+      '})'
+    );
+  } catch (e) {
+    named = function (entity) {
+      this._initNamed(entity);
+    };
+  }
+  inherits(named, base);
+  named.prototype._initNamed = function initnamed(entity) {
+    base.call(this, entity);
+  };
+
+  return new named(this);
+};
+
+Entity.prototype._getDecoder = function _getDecoder(enc) {
+  enc = enc || 'der';
+  // Lazily create decoder
+  if (!this.decoders.hasOwnProperty(enc))
+    this.decoders[enc] = this._createNamed(asn1.decoders[enc]);
+  return this.decoders[enc];
+};
+
+Entity.prototype.decode = function decode(data, enc, options) {
+  return this._getDecoder(enc).decode(data, options);
+};
+
+Entity.prototype._getEncoder = function _getEncoder(enc) {
+  enc = enc || 'der';
+  // Lazily create encoder
+  if (!this.encoders.hasOwnProperty(enc))
+    this.encoders[enc] = this._createNamed(asn1.encoders[enc]);
+  return this.encoders[enc];
+};
+
+Entity.prototype.encode = function encode(data, enc, /* internal */ reporter) {
+  return this._getEncoder(enc).encode(data, reporter);
+};
+
+},{"../asn1":3,"inherits":101,"vm":160}],5:[function(require,module,exports){
+var inherits = require('inherits');
+var Reporter = require('../base').Reporter;
+var Buffer = require('buffer').Buffer;
+
+function DecoderBuffer(base, options) {
+  Reporter.call(this, options);
+  if (!Buffer.isBuffer(base)) {
+    this.error('Input not Buffer');
+    return;
+  }
+
+  this.base = base;
+  this.offset = 0;
+  this.length = base.length;
+}
+inherits(DecoderBuffer, Reporter);
+exports.DecoderBuffer = DecoderBuffer;
+
+DecoderBuffer.prototype.save = function save() {
+  return { offset: this.offset, reporter: Reporter.prototype.save.call(this) };
+};
+
+DecoderBuffer.prototype.restore = function restore(save) {
+  // Return skipped data
+  var res = new DecoderBuffer(this.base);
+  res.offset = save.offset;
+  res.length = this.offset;
+
+  this.offset = save.offset;
+  Reporter.prototype.restore.call(this, save.reporter);
+
+  return res;
+};
+
+DecoderBuffer.prototype.isEmpty = function isEmpty() {
+  return this.offset === this.length;
+};
+
+DecoderBuffer.prototype.readUInt8 = function readUInt8(fail) {
+  if (this.offset + 1 <= this.length)
+    return this.base.readUInt8(this.offset++, true);
+  else
+    return this.error(fail || 'DecoderBuffer overrun');
+}
+
+DecoderBuffer.prototype.skip = function skip(bytes, fail) {
+  if (!(this.offset + bytes <= this.length))
+    return this.error(fail || 'DecoderBuffer overrun');
+
+  var res = new DecoderBuffer(this.base);
+
+  // Share reporter state
+  res._reporterState = this._reporterState;
+
+  res.offset = this.offset;
+  res.length = this.offset + bytes;
+  this.offset += bytes;
+  return res;
+}
+
+DecoderBuffer.prototype.raw = function raw(save) {
+  return this.base.slice(save ? save.offset : this.offset, this.length);
+}
+
+function EncoderBuffer(value, reporter) {
+  if (Array.isArray(value)) {
+    this.length = 0;
+    this.value = value.map(function(item) {
+      if (!(item instanceof EncoderBuffer))
+        item = new EncoderBuffer(item, reporter);
+      this.length += item.length;
+      return item;
+    }, this);
+  } else if (typeof value === 'number') {
+    if (!(0 <= value && value <= 0xff))
+      return reporter.error('non-byte EncoderBuffer value');
+    this.value = value;
+    this.length = 1;
+  } else if (typeof value === 'string') {
+    this.value = value;
+    this.length = Buffer.byteLength(value);
+  } else if (Buffer.isBuffer(value)) {
+    this.value = value;
+    this.length = value.length;
+  } else {
+    return reporter.error('Unsupported type: ' + typeof value);
+  }
+}
+exports.EncoderBuffer = EncoderBuffer;
+
+EncoderBuffer.prototype.join = function join(out, offset) {
+  if (!out)
+    out = new Buffer(this.length);
+  if (!offset)
+    offset = 0;
+
+  if (this.length === 0)
+    return out;
+
+  if (Array.isArray(this.value)) {
+    this.value.forEach(function(item) {
+      item.join(out, offset);
+      offset += item.length;
+    });
+  } else {
+    if (typeof this.value === 'number')
+      out[offset] = this.value;
+    else if (typeof this.value === 'string')
+      out.write(this.value, offset);
+    else if (Buffer.isBuffer(this.value))
+      this.value.copy(out, offset);
+    offset += this.length;
+  }
+
+  return out;
+};
+
+},{"../base":6,"buffer":49,"inherits":101}],6:[function(require,module,exports){
+var base = exports;
+
+base.Reporter = require('./reporter').Reporter;
+base.DecoderBuffer = require('./buffer').DecoderBuffer;
+base.EncoderBuffer = require('./buffer').EncoderBuffer;
+base.Node = require('./node');
+
+},{"./buffer":5,"./node":7,"./reporter":8}],7:[function(require,module,exports){
+var Reporter = require('../base').Reporter;
+var EncoderBuffer = require('../base').EncoderBuffer;
+var DecoderBuffer = require('../base').DecoderBuffer;
+var assert = require('minimalistic-assert');
+
+// Supported tags
+var tags = [
+  'seq', 'seqof', 'set', 'setof', 'objid', 'bool',
+  'gentime', 'utctime', 'null_', 'enum', 'int', 'objDesc',
+  'bitstr', 'bmpstr', 'charstr', 'genstr', 'graphstr', 'ia5str', 'iso646str',
+  'numstr', 'octstr', 'printstr', 't61str', 'unistr', 'utf8str', 'videostr'
+];
+
+// Public methods list
+var methods = [
+  'key', 'obj', 'use', 'optional', 'explicit', 'implicit', 'def', 'choice',
+  'any', 'contains'
+].concat(tags);
+
+// Overrided methods list
+var overrided = [
+  '_peekTag', '_decodeTag', '_use',
+  '_decodeStr', '_decodeObjid', '_decodeTime',
+  '_decodeNull', '_decodeInt', '_decodeBool', '_decodeList',
+
+  '_encodeComposite', '_encodeStr', '_encodeObjid', '_encodeTime',
+  '_encodeNull', '_encodeInt', '_encodeBool'
+];
+
+function Node(enc, parent) {
+  var state = {};
+  this._baseState = state;
+
+  state.enc = enc;
+
+  state.parent = parent || null;
+  state.children = null;
+
+  // State
+  state.tag = null;
+  state.args = null;
+  state.reverseArgs = null;
+  state.choice = null;
+  state.optional = false;
+  state.any = false;
+  state.obj = false;
+  state.use = null;
+  state.useDecoder = null;
+  state.key = null;
+  state['default'] = null;
+  state.explicit = null;
+  state.implicit = null;
+  state.contains = null;
+
+  // Should create new instance on each method
+  if (!state.parent) {
+    state.children = [];
+    this._wrap();
+  }
+}
+module.exports = Node;
+
+var stateProps = [
+  'enc', 'parent', 'children', 'tag', 'args', 'reverseArgs', 'choice',
+  'optional', 'any', 'obj', 'use', 'alteredUse', 'key', 'default', 'explicit',
+  'implicit', 'contains'
+];
+
+Node.prototype.clone = function clone() {
+  var state = this._baseState;
+  var cstate = {};
+  stateProps.forEach(function(prop) {
+    cstate[prop] = state[prop];
+  });
+  var res = new this.constructor(cstate.parent);
+  res._baseState = cstate;
+  return res;
+};
+
+Node.prototype._wrap = function wrap() {
+  var state = this._baseState;
+  methods.forEach(function(method) {
+    this[method] = function _wrappedMethod() {
+      var clone = new this.constructor(this);
+      state.children.push(clone);
+      return clone[method].apply(clone, arguments);
+    };
+  }, this);
+};
+
+Node.prototype._init = function init(body) {
+  var state = this._baseState;
+
+  assert(state.parent === null);
+  body.call(this);
+
+  // Filter children
+  state.children = state.children.filter(function(child) {
+    return child._baseState.parent === this;
+  }, this);
+  assert.equal(state.children.length, 1, 'Root node can have only one child');
+};
+
+Node.prototype._useArgs = function useArgs(args) {
+  var state = this._baseState;
+
+  // Filter children and args
+  var children = args.filter(function(arg) {
+    return arg instanceof this.constructor;
+  }, this);
+  args = args.filter(function(arg) {
+    return !(arg instanceof this.constructor);
+  }, this);
+
+  if (children.length !== 0) {
+    assert(state.children === null);
+    state.children = children;
+
+    // Replace parent to maintain backward link
+    children.forEach(function(child) {
+      child._baseState.parent = this;
+    }, this);
+  }
+  if (args.length !== 0) {
+    assert(state.args === null);
+    state.args = args;
+    state.reverseArgs = args.map(function(arg) {
+      if (typeof arg !== 'object' || arg.constructor !== Object)
+        return arg;
+
+      var res = {};
+      Object.keys(arg).forEach(function(key) {
+        if (key == (key | 0))
+          key |= 0;
+        var value = arg[key];
+        res[value] = key;
+      });
+      return res;
+    });
+  }
+};
+
+//
+// Overrided methods
+//
+
+overrided.forEach(function(method) {
+  Node.prototype[method] = function _overrided() {
+    var state = this._baseState;
+    throw new Error(method + ' not implemented for encoding: ' + state.enc);
+  };
+});
+
+//
+// Public methods
+//
+
+tags.forEach(function(tag) {
+  Node.prototype[tag] = function _tagMethod() {
+    var state = this._baseState;
+    var args = Array.prototype.slice.call(arguments);
+
+    assert(state.tag === null);
+    state.tag = tag;
+
+    this._useArgs(args);
+
+    return this;
+  };
+});
+
+Node.prototype.use = function use(item) {
+  assert(item);
+  var state = this._baseState;
+
+  assert(state.use === null);
+  state.use = item;
+
+  return this;
+};
+
+Node.prototype.optional = function optional() {
+  var state = this._baseState;
+
+  state.optional = true;
+
+  return this;
+};
+
+Node.prototype.def = function def(val) {
+  var state = this._baseState;
+
+  assert(state['default'] === null);
+  state['default'] = val;
+  state.optional = true;
+
+  return this;
+};
+
+Node.prototype.explicit = function explicit(num) {
+  var state = this._baseState;
+
+  assert(state.explicit === null && state.implicit === null);
+  state.explicit = num;
+
+  return this;
+};
+
+Node.prototype.implicit = function implicit(num) {
+  var state = this._baseState;
+
+  assert(state.explicit === null && state.implicit === null);
+  state.implicit = num;
+
+  return this;
+};
+
+Node.prototype.obj = function obj() {
+  var state = this._baseState;
+  var args = Array.prototype.slice.call(arguments);
+
+  state.obj = true;
+
+  if (args.length !== 0)
+    this._useArgs(args);
+
+  return this;
+};
+
+Node.prototype.key = function key(newKey) {
+  var state = this._baseState;
+
+  assert(state.key === null);
+  state.key = newKey;
+
+  return this;
+};
+
+Node.prototype.any = function any() {
+  var state = this._baseState;
+
+  state.any = true;
+
+  return this;
+};
+
+Node.prototype.choice = function choice(obj) {
+  var state = this._baseState;
+
+  assert(state.choice === null);
+  state.choice = obj;
+  this._useArgs(Object.keys(obj).map(function(key) {
+    return obj[key];
+  }));
+
+  return this;
+};
+
+Node.prototype.contains = function contains(item) {
+  var state = this._baseState;
+
+  assert(state.use === null);
+  state.contains = item;
+
+  return this;
+};
+
+//
+// Decoding
+//
+
+Node.prototype._decode = function decode(input, options) {
+  var state = this._baseState;
+
+  // Decode root node
+  if (state.parent === null)
+    return input.wrapResult(state.children[0]._decode(input, options));
+
+  var result = state['default'];
+  var present = true;
+
+  var prevKey = null;
+  if (state.key !== null)
+    prevKey = input.enterKey(state.key);
+
+  // Check if tag is there
+  if (state.optional) {
+    var tag = null;
+    if (state.explicit !== null)
+      tag = state.explicit;
+    else if (state.implicit !== null)
+      tag = state.implicit;
+    else if (state.tag !== null)
+      tag = state.tag;
+
+    if (tag === null && !state.any) {
+      // Trial and Error
+      var save = input.save();
+      try {
+        if (state.choice === null)
+          this._decodeGeneric(state.tag, input, options);
+        else
+          this._decodeChoice(input, options);
+        present = true;
+      } catch (e) {
+        present = false;
+      }
+      input.restore(save);
+    } else {
+      present = this._peekTag(input, tag, state.any);
+
+      if (input.isError(present))
+        return present;
+    }
+  }
+
+  // Push object on stack
+  var prevObj;
+  if (state.obj && present)
+    prevObj = input.enterObject();
+
+  if (present) {
+    // Unwrap explicit values
+    if (state.explicit !== null) {
+      var explicit = this._decodeTag(input, state.explicit);
+      if (input.isError(explicit))
+        return explicit;
+      input = explicit;
+    }
+
+    var start = input.offset;
+
+    // Unwrap implicit and normal values
+    if (state.use === null && state.choice === null) {
+      if (state.any)
+        var save = input.save();
+      var body = this._decodeTag(
+        input,
+        state.implicit !== null ? state.implicit : state.tag,
+        state.any
+      );
+      if (input.isError(body))
+        return body;
+
+      if (state.any)
+        result = input.raw(save);
+      else
+        input = body;
+    }
+
+    if (options && options.track && state.tag !== null)
+      options.track(input.path(), start, input.length, 'tagged');
+
+    if (options && options.track && state.tag !== null)
+      options.track(input.path(), input.offset, input.length, 'content');
+
+    // Select proper method for tag
+    if (state.any)
+      result = result;
+    else if (state.choice === null)
+      result = this._decodeGeneric(state.tag, input, options);
+    else
+      result = this._decodeChoice(input, options);
+
+    if (input.isError(result))
+      return result;
+
+    // Decode children
+    if (!state.any && state.choice === null && state.children !== null) {
+      state.children.forEach(function decodeChildren(child) {
+        // NOTE: We are ignoring errors here, to let parser continue with other
+        // parts of encoded data
+        child._decode(input, options);
+      });
+    }
+
+    // Decode contained/encoded by schema, only in bit or octet strings
+    if (state.contains && (state.tag === 'octstr' || state.tag === 'bitstr')) {
+      var data = new DecoderBuffer(result);
+      result = this._getUse(state.contains, input._reporterState.obj)
+          ._decode(data, options);
+    }
+  }
+
+  // Pop object
+  if (state.obj && present)
+    result = input.leaveObject(prevObj);
+
+  // Set key
+  if (state.key !== null && (result !== null || present === true))
+    input.leaveKey(prevKey, state.key, result);
+  else if (prevKey !== null)
+    input.exitKey(prevKey);
+
+  return result;
+};
+
+Node.prototype._decodeGeneric = function decodeGeneric(tag, input, options) {
+  var state = this._baseState;
+
+  if (tag === 'seq' || tag === 'set')
+    return null;
+  if (tag === 'seqof' || tag === 'setof')
+    return this._decodeList(input, tag, state.args[0], options);
+  else if (/str$/.test(tag))
+    return this._decodeStr(input, tag, options);
+  else if (tag === 'objid' && state.args)
+    return this._decodeObjid(input, state.args[0], state.args[1], options);
+  else if (tag === 'objid')
+    return this._decodeObjid(input, null, null, options);
+  else if (tag === 'gentime' || tag === 'utctime')
+    return this._decodeTime(input, tag, options);
+  else if (tag === 'null_')
+    return this._decodeNull(input, options);
+  else if (tag === 'bool')
+    return this._decodeBool(input, options);
+  else if (tag === 'objDesc')
+    return this._decodeStr(input, tag, options);
+  else if (tag === 'int' || tag === 'enum')
+    return this._decodeInt(input, state.args && state.args[0], options);
+
+  if (state.use !== null) {
+    return this._getUse(state.use, input._reporterState.obj)
+        ._decode(input, options);
+  } else {
+    return input.error('unknown tag: ' + tag);
+  }
+};
+
+Node.prototype._getUse = function _getUse(entity, obj) {
+
+  var state = this._baseState;
+  // Create altered use decoder if implicit is set
+  state.useDecoder = this._use(entity, obj);
+  assert(state.useDecoder._baseState.parent === null);
+  state.useDecoder = state.useDecoder._baseState.children[0];
+  if (state.implicit !== state.useDecoder._baseState.implicit) {
+    state.useDecoder = state.useDecoder.clone();
+    state.useDecoder._baseState.implicit = state.implicit;
+  }
+  return state.useDecoder;
+};
+
+Node.prototype._decodeChoice = function decodeChoice(input, options) {
+  var state = this._baseState;
+  var result = null;
+  var match = false;
+
+  Object.keys(state.choice).some(function(key) {
+    var save = input.save();
+    var node = state.choice[key];
+    try {
+      var value = node._decode(input, options);
+      if (input.isError(value))
+        return false;
+
+      result = { type: key, value: value };
+      match = true;
+    } catch (e) {
+      input.restore(save);
+      return false;
+    }
+    return true;
+  }, this);
+
+  if (!match)
+    return input.error('Choice not matched');
+
+  return result;
+};
+
+//
+// Encoding
+//
+
+Node.prototype._createEncoderBuffer = function createEncoderBuffer(data) {
+  return new EncoderBuffer(data, this.reporter);
+};
+
+Node.prototype._encode = function encode(data, reporter, parent) {
+  var state = this._baseState;
+  if (state['default'] !== null && state['default'] === data)
+    return;
+
+  var result = this._encodeValue(data, reporter, parent);
+  if (result === undefined)
+    return;
+
+  if (this._skipDefault(result, reporter, parent))
+    return;
+
+  return result;
+};
+
+Node.prototype._encodeValue = function encode(data, reporter, parent) {
+  var state = this._baseState;
+
+  // Decode root node
+  if (state.parent === null)
+    return state.children[0]._encode(data, reporter || new Reporter());
+
+  var result = null;
+
+  // Set reporter to share it with a child class
+  this.reporter = reporter;
+
+  // Check if data is there
+  if (state.optional && data === undefined) {
+    if (state['default'] !== null)
+      data = state['default']
+    else
+      return;
+  }
+
+  // Encode children first
+  var content = null;
+  var primitive = false;
+  if (state.any) {
+    // Anything that was given is translated to buffer
+    result = this._createEncoderBuffer(data);
+  } else if (state.choice) {
+    result = this._encodeChoice(data, reporter);
+  } else if (state.contains) {
+    content = this._getUse(state.contains, parent)._encode(data, reporter);
+    primitive = true;
+  } else if (state.children) {
+    content = state.children.map(function(child) {
+      if (child._baseState.tag === 'null_')
+        return child._encode(null, reporter, data);
+
+      if (child._baseState.key === null)
+        return reporter.error('Child should have a key');
+      var prevKey = reporter.enterKey(child._baseState.key);
+
+      if (typeof data !== 'object')
+        return reporter.error('Child expected, but input is not object');
+
+      var res = child._encode(data[child._baseState.key], reporter, data);
+      reporter.leaveKey(prevKey);
+
+      return res;
+    }, this).filter(function(child) {
+      return child;
+    });
+    content = this._createEncoderBuffer(content);
+  } else {
+    if (state.tag === 'seqof' || state.tag === 'setof') {
+      // TODO(indutny): this should be thrown on DSL level
+      if (!(state.args && state.args.length === 1))
+        return reporter.error('Too many args for : ' + state.tag);
+
+      if (!Array.isArray(data))
+        return reporter.error('seqof/setof, but data is not Array');
+
+      var child = this.clone();
+      child._baseState.implicit = null;
+      content = this._createEncoderBuffer(data.map(function(item) {
+        var state = this._baseState;
+
+        return this._getUse(state.args[0], data)._encode(item, reporter);
+      }, child));
+    } else if (state.use !== null) {
+      result = this._getUse(state.use, parent)._encode(data, reporter);
+    } else {
+      content = this._encodePrimitive(state.tag, data);
+      primitive = true;
+    }
+  }
+
+  // Encode data itself
+  var result;
+  if (!state.any && state.choice === null) {
+    var tag = state.implicit !== null ? state.implicit : state.tag;
+    var cls = state.implicit === null ? 'universal' : 'context';
+
+    if (tag === null) {
+      if (state.use === null)
+        reporter.error('Tag could be omitted only for .use()');
+    } else {
+      if (state.use === null)
+        result = this._encodeComposite(tag, primitive, cls, content);
+    }
+  }
+
+  // Wrap in explicit
+  if (state.explicit !== null)
+    result = this._encodeComposite(state.explicit, false, 'context', result);
+
+  return result;
+};
+
+Node.prototype._encodeChoice = function encodeChoice(data, reporter) {
+  var state = this._baseState;
+
+  var node = state.choice[data.type];
+  if (!node) {
+    assert(
+        false,
+        data.type + ' not found in ' +
+            JSON.stringify(Object.keys(state.choice)));
+  }
+  return node._encode(data.value, reporter);
+};
+
+Node.prototype._encodePrimitive = function encodePrimitive(tag, data) {
+  var state = this._baseState;
+
+  if (/str$/.test(tag))
+    return this._encodeStr(data, tag);
+  else if (tag === 'objid' && state.args)
+    return this._encodeObjid(data, state.reverseArgs[0], state.args[1]);
+  else if (tag === 'objid')
+    return this._encodeObjid(data, null, null);
+  else if (tag === 'gentime' || tag === 'utctime')
+    return this._encodeTime(data, tag);
+  else if (tag === 'null_')
+    return this._encodeNull();
+  else if (tag === 'int' || tag === 'enum')
+    return this._encodeInt(data, state.args && state.reverseArgs[0]);
+  else if (tag === 'bool')
+    return this._encodeBool(data);
+  else if (tag === 'objDesc')
+    return this._encodeStr(data, tag);
+  else
+    throw new Error('Unsupported tag: ' + tag);
+};
+
+Node.prototype._isNumstr = function isNumstr(str) {
+  return /^[0-9 ]*$/.test(str);
+};
+
+Node.prototype._isPrintstr = function isPrintstr(str) {
+  return /^[A-Za-z0-9 '\(\)\+,\-\.\/:=\?]*$/.test(str);
+};
+
+},{"../base":6,"minimalistic-assert":106}],8:[function(require,module,exports){
+var inherits = require('inherits');
+
+function Reporter(options) {
+  this._reporterState = {
+    obj: null,
+    path: [],
+    options: options || {},
+    errors: []
+  };
+}
+exports.Reporter = Reporter;
+
+Reporter.prototype.isError = function isError(obj) {
+  return obj instanceof ReporterError;
+};
+
+Reporter.prototype.save = function save() {
+  var state = this._reporterState;
+
+  return { obj: state.obj, pathLen: state.path.length };
+};
+
+Reporter.prototype.restore = function restore(data) {
+  var state = this._reporterState;
+
+  state.obj = data.obj;
+  state.path = state.path.slice(0, data.pathLen);
+};
+
+Reporter.prototype.enterKey = function enterKey(key) {
+  return this._reporterState.path.push(key);
+};
+
+Reporter.prototype.exitKey = function exitKey(index) {
+  var state = this._reporterState;
+
+  state.path = state.path.slice(0, index - 1);
+};
+
+Reporter.prototype.leaveKey = function leaveKey(index, key, value) {
+  var state = this._reporterState;
+
+  this.exitKey(index);
+  if (state.obj !== null)
+    state.obj[key] = value;
+};
+
+Reporter.prototype.path = function path() {
+  return this._reporterState.path.join('/');
+};
+
+Reporter.prototype.enterObject = function enterObject() {
+  var state = this._reporterState;
+
+  var prev = state.obj;
+  state.obj = {};
+  return prev;
+};
+
+Reporter.prototype.leaveObject = function leaveObject(prev) {
+  var state = this._reporterState;
+
+  var now = state.obj;
+  state.obj = prev;
+  return now;
+};
+
+Reporter.prototype.error = function error(msg) {
+  var err;
+  var state = this._reporterState;
+
+  var inherited = msg instanceof ReporterError;
+  if (inherited) {
+    err = msg;
+  } else {
+    err = new ReporterError(state.path.map(function(elem) {
+      return '[' + JSON.stringify(elem) + ']';
+    }).join(''), msg.message || msg, msg.stack);
+  }
+
+  if (!state.options.partial)
+    throw err;
+
+  if (!inherited)
+    state.errors.push(err);
+
+  return err;
+};
+
+Reporter.prototype.wrapResult = function wrapResult(result) {
+  var state = this._reporterState;
+  if (!state.options.partial)
+    return result;
+
+  return {
+    result: this.isError(result) ? null : result,
+    errors: state.errors
+  };
+};
+
+function ReporterError(path, msg) {
+  this.path = path;
+  this.rethrow(msg);
+};
+inherits(ReporterError, Error);
+
+ReporterError.prototype.rethrow = function rethrow(msg) {
+  this.message = msg + ' at: ' + (this.path || '(shallow)');
+  if (Error.captureStackTrace)
+    Error.captureStackTrace(this, ReporterError);
+
+  if (!this.stack) {
+    try {
+      // IE only adds stack when thrown
+      throw new Error(this.message);
+    } catch (e) {
+      this.stack = e.stack;
+    }
+  }
+  return this;
+};
+
+},{"inherits":101}],9:[function(require,module,exports){
+var constants = require('../constants');
+
+exports.tagClass = {
+  0: 'universal',
+  1: 'application',
+  2: 'context',
+  3: 'private'
+};
+exports.tagClassByName = constants._reverse(exports.tagClass);
+
+exports.tag = {
+  0x00: 'end',
+  0x01: 'bool',
+  0x02: 'int',
+  0x03: 'bitstr',
+  0x04: 'octstr',
+  0x05: 'null_',
+  0x06: 'objid',
+  0x07: 'objDesc',
+  0x08: 'external',
+  0x09: 'real',
+  0x0a: 'enum',
+  0x0b: 'embed',
+  0x0c: 'utf8str',
+  0x0d: 'relativeOid',
+  0x10: 'seq',
+  0x11: 'set',
+  0x12: 'numstr',
+  0x13: 'printstr',
+  0x14: 't61str',
+  0x15: 'videostr',
+  0x16: 'ia5str',
+  0x17: 'utctime',
+  0x18: 'gentime',
+  0x19: 'graphstr',
+  0x1a: 'iso646str',
+  0x1b: 'genstr',
+  0x1c: 'unistr',
+  0x1d: 'charstr',
+  0x1e: 'bmpstr'
+};
+exports.tagByName = constants._reverse(exports.tag);
+
+},{"../constants":10}],10:[function(require,module,exports){
+var constants = exports;
+
+// Helper
+constants._reverse = function reverse(map) {
+  var res = {};
+
+  Object.keys(map).forEach(function(key) {
+    // Convert key to integer if it is stringified
+    if ((key | 0) == key)
+      key = key | 0;
+
+    var value = map[key];
+    res[value] = key;
+  });
+
+  return res;
+};
+
+constants.der = require('./der');
+
+},{"./der":9}],11:[function(require,module,exports){
+var inherits = require('inherits');
+
+var asn1 = require('../../asn1');
+var base = asn1.base;
+var bignum = asn1.bignum;
+
+// Import DER constants
+var der = asn1.constants.der;
+
+function DERDecoder(entity) {
+  this.enc = 'der';
+  this.name = entity.name;
+  this.entity = entity;
+
+  // Construct base tree
+  this.tree = new DERNode();
+  this.tree._init(entity.body);
+};
+module.exports = DERDecoder;
+
+DERDecoder.prototype.decode = function decode(data, options) {
+  if (!(data instanceof base.DecoderBuffer))
+    data = new base.DecoderBuffer(data, options);
+
+  return this.tree._decode(data, options);
+};
+
+// Tree methods
+
+function DERNode(parent) {
+  base.Node.call(this, 'der', parent);
+}
+inherits(DERNode, base.Node);
+
+DERNode.prototype._peekTag = function peekTag(buffer, tag, any) {
+  if (buffer.isEmpty())
+    return false;
+
+  var state = buffer.save();
+  var decodedTag = derDecodeTag(buffer, 'Failed to peek tag: "' + tag + '"');
+  if (buffer.isError(decodedTag))
+    return decodedTag;
+
+  buffer.restore(state);
+
+  return decodedTag.tag === tag || decodedTag.tagStr === tag ||
+    (decodedTag.tagStr + 'of') === tag || any;
+};
+
+DERNode.prototype._decodeTag = function decodeTag(buffer, tag, any) {
+  var decodedTag = derDecodeTag(buffer,
+                                'Failed to decode tag of "' + tag + '"');
+  if (buffer.isError(decodedTag))
+    return decodedTag;
+
+  var len = derDecodeLen(buffer,
+                         decodedTag.primitive,
+                         'Failed to get length of "' + tag + '"');
+
+  // Failure
+  if (buffer.isError(len))
+    return len;
+
+  if (!any &&
+      decodedTag.tag !== tag &&
+      decodedTag.tagStr !== tag &&
+      decodedTag.tagStr + 'of' !== tag) {
+    return buffer.error('Failed to match tag: "' + tag + '"');
+  }
+
+  if (decodedTag.primitive || len !== null)
+    return buffer.skip(len, 'Failed to match body of: "' + tag + '"');
+
+  // Indefinite length... find END tag
+  var state = buffer.save();
+  var res = this._skipUntilEnd(
+      buffer,
+      'Failed to skip indefinite length body: "' + this.tag + '"');
+  if (buffer.isError(res))
+    return res;
+
+  len = buffer.offset - state.offset;
+  buffer.restore(state);
+  return buffer.skip(len, 'Failed to match body of: "' + tag + '"');
+};
+
+DERNode.prototype._skipUntilEnd = function skipUntilEnd(buffer, fail) {
+  while (true) {
+    var tag = derDecodeTag(buffer, fail);
+    if (buffer.isError(tag))
+      return tag;
+    var len = derDecodeLen(buffer, tag.primitive, fail);
+    if (buffer.isError(len))
+      return len;
+
+    var res;
+    if (tag.primitive || len !== null)
+      res = buffer.skip(len)
+    else
+      res = this._skipUntilEnd(buffer, fail);
+
+    // Failure
+    if (buffer.isError(res))
+      return res;
+
+    if (tag.tagStr === 'end')
+      break;
+  }
+};
+
+DERNode.prototype._decodeList = function decodeList(buffer, tag, decoder,
+                                                    options) {
+  var result = [];
+  while (!buffer.isEmpty()) {
+    var possibleEnd = this._peekTag(buffer, 'end');
+    if (buffer.isError(possibleEnd))
+      return possibleEnd;
+
+    var res = decoder.decode(buffer, 'der', options);
+    if (buffer.isError(res) && possibleEnd)
+      break;
+    result.push(res);
+  }
+  return result;
+};
+
+DERNode.prototype._decodeStr = function decodeStr(buffer, tag) {
+  if (tag === 'bitstr') {
+    var unused = buffer.readUInt8();
+    if (buffer.isError(unused))
+      return unused;
+    return { unused: unused, data: buffer.raw() };
+  } else if (tag === 'bmpstr') {
+    var raw = buffer.raw();
+    if (raw.length % 2 === 1)
+      return buffer.error('Decoding of string type: bmpstr length mismatch');
+
+    var str = '';
+    for (var i = 0; i < raw.length / 2; i++) {
+      str += String.fromCharCode(raw.readUInt16BE(i * 2));
+    }
+    return str;
+  } else if (tag === 'numstr') {
+    var numstr = buffer.raw().toString('ascii');
+    if (!this._isNumstr(numstr)) {
+      return buffer.error('Decoding of string type: ' +
+                          'numstr unsupported characters');
+    }
+    return numstr;
+  } else if (tag === 'octstr') {
+    return buffer.raw();
+  } else if (tag === 'objDesc') {
+    return buffer.raw();
+  } else if (tag === 'printstr') {
+    var printstr = buffer.raw().toString('ascii');
+    if (!this._isPrintstr(printstr)) {
+      return buffer.error('Decoding of string type: ' +
+                          'printstr unsupported characters');
+    }
+    return printstr;
+  } else if (/str$/.test(tag)) {
+    return buffer.raw().toString();
+  } else {
+    return buffer.error('Decoding of string type: ' + tag + ' unsupported');
+  }
+};
+
+DERNode.prototype._decodeObjid = function decodeObjid(buffer, values, relative) {
+  var result;
+  var identifiers = [];
+  var ident = 0;
+  while (!buffer.isEmpty()) {
+    var subident = buffer.readUInt8();
+    ident <<= 7;
+    ident |= subident & 0x7f;
+    if ((subident & 0x80) === 0) {
+      identifiers.push(ident);
+      ident = 0;
+    }
+  }
+  if (subident & 0x80)
+    identifiers.push(ident);
+
+  var first = (identifiers[0] / 40) | 0;
+  var second = identifiers[0] % 40;
+
+  if (relative)
+    result = identifiers;
+  else
+    result = [first, second].concat(identifiers.slice(1));
+
+  if (values) {
+    var tmp = values[result.join(' ')];
+    if (tmp === undefined)
+      tmp = values[result.join('.')];
+    if (tmp !== undefined)
+      result = tmp;
+  }
+
+  return result;
+};
+
+DERNode.prototype._decodeTime = function decodeTime(buffer, tag) {
+  var str = buffer.raw().toString();
+  if (tag === 'gentime') {
+    var year = str.slice(0, 4) | 0;
+    var mon = str.slice(4, 6) | 0;
+    var day = str.slice(6, 8) | 0;
+    var hour = str.slice(8, 10) | 0;
+    var min = str.slice(10, 12) | 0;
+    var sec = str.slice(12, 14) | 0;
+  } else if (tag === 'utctime') {
+    var year = str.slice(0, 2) | 0;
+    var mon = str.slice(2, 4) | 0;
+    var day = str.slice(4, 6) | 0;
+    var hour = str.slice(6, 8) | 0;
+    var min = str.slice(8, 10) | 0;
+    var sec = str.slice(10, 12) | 0;
+    if (year < 70)
+      year = 2000 + year;
+    else
+      year = 1900 + year;
+  } else {
+    return buffer.error('Decoding ' + tag + ' time is not supported yet');
+  }
+
+  return Date.UTC(year, mon - 1, day, hour, min, sec, 0);
+};
+
+DERNode.prototype._decodeNull = function decodeNull(buffer) {
+  return null;
+};
+
+DERNode.prototype._decodeBool = function decodeBool(buffer) {
+  var res = buffer.readUInt8();
+  if (buffer.isError(res))
+    return res;
+  else
+    return res !== 0;
+};
+
+DERNode.prototype._decodeInt = function decodeInt(buffer, values) {
+  // Bigint, return as it is (assume big endian)
+  var raw = buffer.raw();
+  var res = new bignum(raw);
+
+  if (values)
+    res = values[res.toString(10)] || res;
+
+  return res;
+};
+
+DERNode.prototype._use = function use(entity, obj) {
+  if (typeof entity === 'function')
+    entity = entity(obj);
+  return entity._getDecoder('der').tree;
+};
+
+// Utility methods
+
+function derDecodeTag(buf, fail) {
+  var tag = buf.readUInt8(fail);
+  if (buf.isError(tag))
+    return tag;
+
+  var cls = der.tagClass[tag >> 6];
+  var primitive = (tag & 0x20) === 0;
+
+  // Multi-octet tag - load
+  if ((tag & 0x1f) === 0x1f) {
+    var oct = tag;
+    tag = 0;
+    while ((oct & 0x80) === 0x80) {
+      oct = buf.readUInt8(fail);
+      if (buf.isError(oct))
+        return oct;
+
+      tag <<= 7;
+      tag |= oct & 0x7f;
+    }
+  } else {
+    tag &= 0x1f;
+  }
+  var tagStr = der.tag[tag];
+
+  return {
+    cls: cls,
+    primitive: primitive,
+    tag: tag,
+    tagStr: tagStr
+  };
+}
+
+function derDecodeLen(buf, primitive, fail) {
+  var len = buf.readUInt8(fail);
+  if (buf.isError(len))
+    return len;
+
+  // Indefinite form
+  if (!primitive && len === 0x80)
+    return null;
+
+  // Definite form
+  if ((len & 0x80) === 0) {
+    // Short form
+    return len;
+  }
+
+  // Long form
+  var num = len & 0x7f;
+  if (num > 4)
+    return buf.error('length octect is too long');
+
+  len = 0;
+  for (var i = 0; i < num; i++) {
+    len <<= 8;
+    var j = buf.readUInt8(fail);
+    if (buf.isError(j))
+      return j;
+    len |= j;
+  }
+
+  return len;
+}
+
+},{"../../asn1":3,"inherits":101}],12:[function(require,module,exports){
+var decoders = exports;
+
+decoders.der = require('./der');
+decoders.pem = require('./pem');
+
+},{"./der":11,"./pem":13}],13:[function(require,module,exports){
+var inherits = require('inherits');
+var Buffer = require('buffer').Buffer;
+
+var DERDecoder = require('./der');
+
+function PEMDecoder(entity) {
+  DERDecoder.call(this, entity);
+  this.enc = 'pem';
+};
+inherits(PEMDecoder, DERDecoder);
+module.exports = PEMDecoder;
+
+PEMDecoder.prototype.decode = function decode(data, options) {
+  var lines = data.toString().split(/[\r\n]+/g);
+
+  var label = options.label.toUpperCase();
+
+  var re = /^-----(BEGIN|END) ([^-]+)-----$/;
+  var start = -1;
+  var end = -1;
+  for (var i = 0; i < lines.length; i++) {
+    var match = lines[i].match(re);
+    if (match === null)
+      continue;
+
+    if (match[2] !== label)
+      continue;
+
+    if (start === -1) {
+      if (match[1] !== 'BEGIN')
+        break;
+      start = i;
+    } else {
+      if (match[1] !== 'END')
+        break;
+      end = i;
+      break;
+    }
+  }
+  if (start === -1 || end === -1)
+    throw new Error('PEM section not found for: ' + label);
+
+  var base64 = lines.slice(start + 1, end).join('');
+  // Remove excessive symbols
+  base64.replace(/[^a-z0-9\+\/=]+/gi, '');
+
+  var input = new Buffer(base64, 'base64');
+  return DERDecoder.prototype.decode.call(this, input, options);
+};
+
+},{"./der":11,"buffer":49,"inherits":101}],14:[function(require,module,exports){
+var inherits = require('inherits');
+var Buffer = require('buffer').Buffer;
+
+var asn1 = require('../../asn1');
+var base = asn1.base;
+
+// Import DER constants
+var der = asn1.constants.der;
+
+function DEREncoder(entity) {
+  this.enc = 'der';
+  this.name = entity.name;
+  this.entity = entity;
+
+  // Construct base tree
+  this.tree = new DERNode();
+  this.tree._init(entity.body);
+};
+module.exports = DEREncoder;
+
+DEREncoder.prototype.encode = function encode(data, reporter) {
+  return this.tree._encode(data, reporter).join();
+};
+
+// Tree methods
+
+function DERNode(parent) {
+  base.Node.call(this, 'der', parent);
+}
+inherits(DERNode, base.Node);
+
+DERNode.prototype._encodeComposite = function encodeComposite(tag,
+                                                              primitive,
+                                                              cls,
+                                                              content) {
+  var encodedTag = encodeTag(tag, primitive, cls, this.reporter);
+
+  // Short form
+  if (content.length < 0x80) {
+    var header = new Buffer(2);
+    header[0] = encodedTag;
+    header[1] = content.length;
+    return this._createEncoderBuffer([ header, content ]);
+  }
+
+  // Long form
+  // Count octets required to store length
+  var lenOctets = 1;
+  for (var i = content.length; i >= 0x100; i >>= 8)
+    lenOctets++;
+
+  var header = new Buffer(1 + 1 + lenOctets);
+  header[0] = encodedTag;
+  header[1] = 0x80 | lenOctets;
+
+  for (var i = 1 + lenOctets, j = content.length; j > 0; i--, j >>= 8)
+    header[i] = j & 0xff;
+
+  return this._createEncoderBuffer([ header, content ]);
+};
+
+DERNode.prototype._encodeStr = function encodeStr(str, tag) {
+  if (tag === 'bitstr') {
+    return this._createEncoderBuffer([ str.unused | 0, str.data ]);
+  } else if (tag === 'bmpstr') {
+    var buf = new Buffer(str.length * 2);
+    for (var i = 0; i < str.length; i++) {
+      buf.writeUInt16BE(str.charCodeAt(i), i * 2);
+    }
+    return this._createEncoderBuffer(buf);
+  } else if (tag === 'numstr') {
+    if (!this._isNumstr(str)) {
+      return this.reporter.error('Encoding of string type: numstr supports ' +
+                                 'only digits and space');
+    }
+    return this._createEncoderBuffer(str);
+  } else if (tag === 'printstr') {
+    if (!this._isPrintstr(str)) {
+      return this.reporter.error('Encoding of string type: printstr supports ' +
+                                 'only latin upper and lower case letters, ' +
+                                 'digits, space, apostrophe, left and rigth ' +
+                                 'parenthesis, plus sign, comma, hyphen, ' +
+                                 'dot, slash, colon, equal sign, ' +
+                                 'question mark');
+    }
+    return this._createEncoderBuffer(str);
+  } else if (/str$/.test(tag)) {
+    return this._createEncoderBuffer(str);
+  } else if (tag === 'objDesc') {
+    return this._createEncoderBuffer(str);
+  } else {
+    return this.reporter.error('Encoding of string type: ' + tag +
+                               ' unsupported');
+  }
+};
+
+DERNode.prototype._encodeObjid = function encodeObjid(id, values, relative) {
+  if (typeof id === 'string') {
+    if (!values)
+      return this.reporter.error('string objid given, but no values map found');
+    if (!values.hasOwnProperty(id))
+      return this.reporter.error('objid not found in values map');
+    id = values[id].split(/[\s\.]+/g);
+    for (var i = 0; i < id.length; i++)
+      id[i] |= 0;
+  } else if (Array.isArray(id)) {
+    id = id.slice();
+    for (var i = 0; i < id.length; i++)
+      id[i] |= 0;
+  }
+
+  if (!Array.isArray(id)) {
+    return this.reporter.error('objid() should be either array or string, ' +
+                               'got: ' + JSON.stringify(id));
+  }
+
+  if (!relative) {
+    if (id[1] >= 40)
+      return this.reporter.error('Second objid identifier OOB');
+    id.splice(0, 2, id[0] * 40 + id[1]);
+  }
+
+  // Count number of octets
+  var size = 0;
+  for (var i = 0; i < id.length; i++) {
+    var ident = id[i];
+    for (size++; ident >= 0x80; ident >>= 7)
+      size++;
+  }
+
+  var objid = new Buffer(size);
+  var offset = objid.length - 1;
+  for (var i = id.length - 1; i >= 0; i--) {
+    var ident = id[i];
+    objid[offset--] = ident & 0x7f;
+    while ((ident >>= 7) > 0)
+      objid[offset--] = 0x80 | (ident & 0x7f);
+  }
+
+  return this._createEncoderBuffer(objid);
+};
+
+function two(num) {
+  if (num < 10)
+    return '0' + num;
+  else
+    return num;
+}
+
+DERNode.prototype._encodeTime = function encodeTime(time, tag) {
+  var str;
+  var date = new Date(time);
+
+  if (tag === 'gentime') {
+    str = [
+      two(date.getFullYear()),
+      two(date.getUTCMonth() + 1),
+      two(date.getUTCDate()),
+      two(date.getUTCHours()),
+      two(date.getUTCMinutes()),
+      two(date.getUTCSeconds()),
+      'Z'
+    ].join('');
+  } else if (tag === 'utctime') {
+    str = [
+      two(date.getFullYear() % 100),
+      two(date.getUTCMonth() + 1),
+      two(date.getUTCDate()),
+      two(date.getUTCHours()),
+      two(date.getUTCMinutes()),
+      two(date.getUTCSeconds()),
+      'Z'
+    ].join('');
+  } else {
+    this.reporter.error('Encoding ' + tag + ' time is not supported yet');
+  }
+
+  return this._encodeStr(str, 'octstr');
+};
+
+DERNode.prototype._encodeNull = function encodeNull() {
+  return this._createEncoderBuffer('');
+};
+
+DERNode.prototype._encodeInt = function encodeInt(num, values) {
+  if (typeof num === 'string') {
+    if (!values)
+      return this.reporter.error('String int or enum given, but no values map');
+    if (!values.hasOwnProperty(num)) {
+      return this.reporter.error('Values map doesn\'t contain: ' +
+                                 JSON.stringify(num));
+    }
+    num = values[num];
+  }
+
+  // Bignum, assume big endian
+  if (typeof num !== 'number' && !Buffer.isBuffer(num)) {
+    var numArray = num.toArray();
+    if (!num.sign && numArray[0] & 0x80) {
+      numArray.unshift(0);
+    }
+    num = new Buffer(numArray);
+  }
+
+  if (Buffer.isBuffer(num)) {
+    var size = num.length;
+    if (num.length === 0)
+      size++;
+
+    var out = new Buffer(size);
+    num.copy(out);
+    if (num.length === 0)
+      out[0] = 0
+    return this._createEncoderBuffer(out);
+  }
+
+  if (num < 0x80)
+    return this._createEncoderBuffer(num);
+
+  if (num < 0x100)
+    return this._createEncoderBuffer([0, num]);
+
+  var size = 1;
+  for (var i = num; i >= 0x100; i >>= 8)
+    size++;
+
+  var out = new Array(size);
+  for (var i = out.length - 1; i >= 0; i--) {
+    out[i] = num & 0xff;
+    num >>= 8;
+  }
+  if(out[0] & 0x80) {
+    out.unshift(0);
+  }
+
+  return this._createEncoderBuffer(new Buffer(out));
+};
+
+DERNode.prototype._encodeBool = function encodeBool(value) {
+  return this._createEncoderBuffer(value ? 0xff : 0);
+};
+
+DERNode.prototype._use = function use(entity, obj) {
+  if (typeof entity === 'function')
+    entity = entity(obj);
+  return entity._getEncoder('der').tree;
+};
+
+DERNode.prototype._skipDefault = function skipDefault(dataBuffer, reporter, parent) {
+  var state = this._baseState;
+  var i;
+  if (state['default'] === null)
+    return false;
+
+  var data = dataBuffer.join();
+  if (state.defaultBuffer === undefined)
+    state.defaultBuffer = this._encodeValue(state['default'], reporter, parent).join();
+
+  if (data.length !== state.defaultBuffer.length)
+    return false;
+
+  for (i=0; i < data.length; i++)
+    if (data[i] !== state.defaultBuffer[i])
+      return false;
+
+  return true;
+};
+
+// Utility methods
+
+function encodeTag(tag, primitive, cls, reporter) {
+  var res;
+
+  if (tag === 'seqof')
+    tag = 'seq';
+  else if (tag === 'setof')
+    tag = 'set';
+
+  if (der.tagByName.hasOwnProperty(tag))
+    res = der.tagByName[tag];
+  else if (typeof tag === 'number' && (tag | 0) === tag)
+    res = tag;
+  else
+    return reporter.error('Unknown tag: ' + tag);
+
+  if (res >= 0x1f)
+    return reporter.error('Multi-octet tag encoding unsupported');
+
+  if (!primitive)
+    res |= 0x20;
+
+  res |= (der.tagClassByName[cls || 'universal'] << 6);
+
+  return res;
+}
+
+},{"../../asn1":3,"buffer":49,"inherits":101}],15:[function(require,module,exports){
+var encoders = exports;
+
+encoders.der = require('./der');
+encoders.pem = require('./pem');
+
+},{"./der":14,"./pem":16}],16:[function(require,module,exports){
+var inherits = require('inherits');
+
+var DEREncoder = require('./der');
+
+function PEMEncoder(entity) {
+  DEREncoder.call(this, entity);
+  this.enc = 'pem';
+};
+inherits(PEMEncoder, DEREncoder);
+module.exports = PEMEncoder;
+
+PEMEncoder.prototype.encode = function encode(data, options) {
+  var buf = DEREncoder.prototype.encode.call(this, data);
+
+  var p = buf.toString('base64');
+  var out = [ '-----BEGIN ' + options.label + '-----' ];
+  for (var i = 0; i < p.length; i += 64)
+    out.push(p.slice(i, i + 64));
+  out.push('-----END ' + options.label + '-----');
+  return out.join('\n');
+};
+
+},{"./der":14,"inherits":101}],17:[function(require,module,exports){
+'use strict'
+
+exports.byteLength = byteLength
+exports.toByteArray = toByteArray
+exports.fromByteArray = fromByteArray
+
+var lookup = []
+var revLookup = []
+var Arr = typeof Uint8Array !== 'undefined' ? Uint8Array : Array
+
+var code = 'ABCDEFGHIJKLMNOPQRSTUVWXYZabcdefghijklmnopqrstuvwxyz0123456789+/'
+for (var i = 0, len = code.length; i < len; ++i) {
+  lookup[i] = code[i]
+  revLookup[code.charCodeAt(i)] = i
+}
+
+// Support decoding URL-safe base64 strings, as Node.js does.
+// See: https://en.wikipedia.org/wiki/Base64#URL_applications
+revLookup['-'.charCodeAt(0)] = 62
+revLookup['_'.charCodeAt(0)] = 63
+
+function getLens (b64) {
+  var len = b64.length
+
+  if (len % 4 > 0) {
+    throw new Error('Invalid string. Length must be a multiple of 4')
+  }
+
+  // Trim off extra bytes after placeholder bytes are found
+  // See: https://github.com/beatgammit/base64-js/issues/42
+  var validLen = b64.indexOf('=')
+  if (validLen === -1) validLen = len
+
+  var placeHoldersLen = validLen === len
+    ? 0
+    : 4 - (validLen % 4)
+
+  return [validLen, placeHoldersLen]
+}
+
+// base64 is 4/3 + up to two characters of the original data
+function byteLength (b64) {
+  var lens = getLens(b64)
+  var validLen = lens[0]
+  var placeHoldersLen = lens[1]
+  return ((validLen + placeHoldersLen) * 3 / 4) - placeHoldersLen
+}
+
+function _byteLength (b64, validLen, placeHoldersLen) {
+  return ((validLen + placeHoldersLen) * 3 / 4) - placeHoldersLen
+}
+
+function toByteArray (b64) {
+  var tmp
+  var lens = getLens(b64)
+  var validLen = lens[0]
+  var placeHoldersLen = lens[1]
+
+  var arr = new Arr(_byteLength(b64, validLen, placeHoldersLen))
+
+  var curByte = 0
+
+  // if there are placeholders, only get up to the last complete 4 chars
+  var len = placeHoldersLen > 0
+    ? validLen - 4
+    : validLen
+
+  for (var i = 0; i < len; i += 4) {
+    tmp =
+      (revLookup[b64.charCodeAt(i)] << 18) |
+      (revLookup[b64.charCodeAt(i + 1)] << 12) |
+      (revLookup[b64.charCodeAt(i + 2)] << 6) |
+      revLookup[b64.charCodeAt(i + 3)]
+    arr[curByte++] = (tmp >> 16) & 0xFF
+    arr[curByte++] = (tmp >> 8) & 0xFF
+    arr[curByte++] = tmp & 0xFF
+  }
+
+  if (placeHoldersLen === 2) {
+    tmp =
+      (revLookup[b64.charCodeAt(i)] << 2) |
+      (revLookup[b64.charCodeAt(i + 1)] >> 4)
+    arr[curByte++] = tmp & 0xFF
+  }
+
+  if (placeHoldersLen === 1) {
+    tmp =
+      (revLookup[b64.charCodeAt(i)] << 10) |
+      (revLookup[b64.charCodeAt(i + 1)] << 4) |
+      (revLookup[b64.charCodeAt(i + 2)] >> 2)
+    arr[curByte++] = (tmp >> 8) & 0xFF
+    arr[curByte++] = tmp & 0xFF
+  }
+
+  return arr
+}
+
+function tripletToBase64 (num) {
+  return lookup[num >> 18 & 0x3F] +
+    lookup[num >> 12 & 0x3F] +
+    lookup[num >> 6 & 0x3F] +
+    lookup[num & 0x3F]
+}
+
+function encodeChunk (uint8, start, end) {
+  var tmp
+  var output = []
+  for (var i = start; i < end; i += 3) {
+    tmp =
+      ((uint8[i] << 16) & 0xFF0000) +
+      ((uint8[i + 1] << 8) & 0xFF00) +
+      (uint8[i + 2] & 0xFF)
+    output.push(tripletToBase64(tmp))
+  }
+  return output.join('')
+}
+
+function fromByteArray (uint8) {
+  var tmp
+  var len = uint8.length
+  var extraBytes = len % 3 // if we have 1 byte left, pad 2 bytes
+  var parts = []
+  var maxChunkLength = 16383 // must be multiple of 3
+
+  // go through the array every three bytes, we'll deal with trailing stuff later
+  for (var i = 0, len2 = len - extraBytes; i < len2; i += maxChunkLength) {
+    parts.push(encodeChunk(
+      uint8, i, (i + maxChunkLength) > len2 ? len2 : (i + maxChunkLength)
+    ))
+  }
+
+  // pad the end with zeros, but make sure to not forget the extra bytes
+  if (extraBytes === 1) {
+    tmp = uint8[len - 1]
+    parts.push(
+      lookup[tmp >> 2] +
+      lookup[(tmp << 4) & 0x3F] +
+      '=='
+    )
+  } else if (extraBytes === 2) {
+    tmp = (uint8[len - 2] << 8) + uint8[len - 1]
+    parts.push(
+      lookup[tmp >> 10] +
+      lookup[(tmp >> 4) & 0x3F] +
+      lookup[(tmp << 2) & 0x3F] +
+      '='
+    )
+  }
+
+  return parts.join('')
+}
+
+},{}],18:[function(require,module,exports){
+(function (module, exports) {
+  'use strict';
+
+  // Utils
+  function assert (val, msg) {
+    if (!val) throw new Error(msg || 'Assertion failed');
+  }
+
+  // Could use `inherits` module, but don't want to move from single file
+  // architecture yet.
+  function inherits (ctor, superCtor) {
+    ctor.super_ = superCtor;
+    var TempCtor = function () {};
+    TempCtor.prototype = superCtor.prototype;
+    ctor.prototype = new TempCtor();
+    ctor.prototype.constructor = ctor;
+  }
+
+  // BN
+
+  function BN (number, base, endian) {
+    if (BN.isBN(number)) {
+      return number;
+    }
+
+    this.negative = 0;
+    this.words = null;
+    this.length = 0;
+
+    // Reduction context
+    this.red = null;
+
+    if (number !== null) {
+      if (base === 'le' || base === 'be') {
+        endian = base;
+        base = 10;
+      }
+
+      this._init(number || 0, base || 10, endian || 'be');
+    }
+  }
+  if (typeof module === 'object') {
+    module.exports = BN;
+  } else {
+    exports.BN = BN;
+  }
+
+  BN.BN = BN;
+  BN.wordSize = 26;
+
+  var Buffer;
+  try {
+    Buffer = require('buffer').Buffer;
+  } catch (e) {
+  }
+
+  BN.isBN = function isBN (num) {
+    if (num instanceof BN) {
+      return true;
+    }
+
+    return num !== null && typeof num === 'object' &&
+      num.constructor.wordSize === BN.wordSize && Array.isArray(num.words);
+  };
+
+  BN.max = function max (left, right) {
+    if (left.cmp(right) > 0) return left;
+    return right;
+  };
+
+  BN.min = function min (left, right) {
+    if (left.cmp(right) < 0) return left;
+    return right;
+  };
+
+  BN.prototype._init = function init (number, base, endian) {
+    if (typeof number === 'number') {
+      return this._initNumber(number, base, endian);
+    }
+
+    if (typeof number === 'object') {
+      return this._initArray(number, base, endian);
+    }
+
+    if (base === 'hex') {
+      base = 16;
+    }
+    assert(base === (base | 0) && base >= 2 && base <= 36);
+
+    number = number.toString().replace(/\s+/g, '');
+    var start = 0;
+    if (number[0] === '-') {
+      start++;
+    }
+
+    if (base === 16) {
+      this._parseHex(number, start);
+    } else {
+      this._parseBase(number, base, start);
+    }
+
+    if (number[0] === '-') {
+      this.negative = 1;
+    }
+
+    this.strip();
+
+    if (endian !== 'le') return;
+
+    this._initArray(this.toArray(), base, endian);
+  };
+
+  BN.prototype._initNumber = function _initNumber (number, base, endian) {
+    if (number < 0) {
+      this.negative = 1;
+      number = -number;
+    }
+    if (number < 0x4000000) {
+      this.words = [ number & 0x3ffffff ];
+      this.length = 1;
+    } else if (number < 0x10000000000000) {
+      this.words = [
+        number & 0x3ffffff,
+        (number / 0x4000000) & 0x3ffffff
+      ];
+      this.length = 2;
+    } else {
+      assert(number < 0x20000000000000); // 2 ^ 53 (unsafe)
+      this.words = [
+        number & 0x3ffffff,
+        (number / 0x4000000) & 0x3ffffff,
+        1
+      ];
+      this.length = 3;
+    }
+
+    if (endian !== 'le') return;
+
+    // Reverse the bytes
+    this._initArray(this.toArray(), base, endian);
+  };
+
+  BN.prototype._initArray = function _initArray (number, base, endian) {
+    // Perhaps a Uint8Array
+    assert(typeof number.length === 'number');
+    if (number.length <= 0) {
+      this.words = [ 0 ];
+      this.length = 1;
+      return this;
+    }
+
+    this.length = Math.ceil(number.length / 3);
+    this.words = new Array(this.length);
+    for (var i = 0; i < this.length; i++) {
+      this.words[i] = 0;
+    }
+
+    var j, w;
+    var off = 0;
+    if (endian === 'be') {
+      for (i = number.length - 1, j = 0; i >= 0; i -= 3) {
+        w = number[i] | (number[i - 1] << 8) | (number[i - 2] << 16);
+        this.words[j] |= (w << off) & 0x3ffffff;
+        this.words[j + 1] = (w >>> (26 - off)) & 0x3ffffff;
+        off += 24;
+        if (off >= 26) {
+          off -= 26;
+          j++;
+        }
+      }
+    } else if (endian === 'le') {
+      for (i = 0, j = 0; i < number.length; i += 3) {
+        w = number[i] | (number[i + 1] << 8) | (number[i + 2] << 16);
+        this.words[j] |= (w << off) & 0x3ffffff;
+        this.words[j + 1] = (w >>> (26 - off)) & 0x3ffffff;
+        off += 24;
+        if (off >= 26) {
+          off -= 26;
+          j++;
+        }
+      }
+    }
+    return this.strip();
+  };
+
+  function parseHex (str, start, end) {
+    var r = 0;
+    var len = Math.min(str.length, end);
+    for (var i = start; i < len; i++) {
+      var c = str.charCodeAt(i) - 48;
+
+      r <<= 4;
+
+      // 'a' - 'f'
+      if (c >= 49 && c <= 54) {
+        r |= c - 49 + 0xa;
+
+      // 'A' - 'F'
+      } else if (c >= 17 && c <= 22) {
+        r |= c - 17 + 0xa;
+
+      // '0' - '9'
+      } else {
+        r |= c & 0xf;
+      }
+    }
+    return r;
+  }
+
+  BN.prototype._parseHex = function _parseHex (number, start) {
+    // Create possibly bigger array to ensure that it fits the number
+    this.length = Math.ceil((number.length - start) / 6);
+    this.words = new Array(this.length);
+    for (var i = 0; i < this.length; i++) {
+      this.words[i] = 0;
+    }
+
+    var j, w;
+    // Scan 24-bit chunks and add them to the number
+    var off = 0;
+    for (i = number.length - 6, j = 0; i >= start; i -= 6) {
+      w = parseHex(number, i, i + 6);
+      this.words[j] |= (w << off) & 0x3ffffff;
+      // NOTE: `0x3fffff` is intentional here, 26bits max shift + 24bit hex limb
+      this.words[j + 1] |= w >>> (26 - off) & 0x3fffff;
+      off += 24;
+      if (off >= 26) {
+        off -= 26;
+        j++;
+      }
+    }
+    if (i + 6 !== start) {
+      w = parseHex(number, start, i + 6);
+      this.words[j] |= (w << off) & 0x3ffffff;
+      this.words[j + 1] |= w >>> (26 - off) & 0x3fffff;
+    }
+    this.strip();
+  };
+
+  function parseBase (str, start, end, mul) {
+    var r = 0;
+    var len = Math.min(str.length, end);
+    for (var i = start; i < len; i++) {
+      var c = str.charCodeAt(i) - 48;
+
+      r *= mul;
+
+      // 'a'
+      if (c >= 49) {
+        r += c - 49 + 0xa;
+
+      // 'A'
+      } else if (c >= 17) {
+        r += c - 17 + 0xa;
+
+      // '0' - '9'
+      } else {
+        r += c;
+      }
+    }
+    return r;
+  }
+
+  BN.prototype._parseBase = function _parseBase (number, base, start) {
+    // Initialize as zero
+    this.words = [ 0 ];
+    this.length = 1;
+
+    // Find length of limb in base
+    for (var limbLen = 0, limbPow = 1; limbPow <= 0x3ffffff; limbPow *= base) {
+      limbLen++;
+    }
+    limbLen--;
+    limbPow = (limbPow / base) | 0;
+
+    var total = number.length - start;
+    var mod = total % limbLen;
+    var end = Math.min(total, total - mod) + start;
+
+    var word = 0;
+    for (var i = start; i < end; i += limbLen) {
+      word = parseBase(number, i, i + limbLen, base);
+
+      this.imuln(limbPow);
+      if (this.words[0] + word < 0x4000000) {
+        this.words[0] += word;
+      } else {
+        this._iaddn(word);
+      }
+    }
+
+    if (mod !== 0) {
+      var pow = 1;
+      word = parseBase(number, i, number.length, base);
+
+      for (i = 0; i < mod; i++) {
+        pow *= base;
+      }
+
+      this.imuln(pow);
+      if (this.words[0] + word < 0x4000000) {
+        this.words[0] += word;
+      } else {
+        this._iaddn(word);
+      }
+    }
+  };
+
+  BN.prototype.copy = function copy (dest) {
+    dest.words = new Array(this.length);
+    for (var i = 0; i < this.length; i++) {
+      dest.words[i] = this.words[i];
+    }
+    dest.length = this.length;
+    dest.negative = this.negative;
+    dest.red = this.red;
+  };
+
+  BN.prototype.clone = function clone () {
+    var r = new BN(null);
+    this.copy(r);
+    return r;
+  };
+
+  BN.prototype._expand = function _expand (size) {
+    while (this.length < size) {
+      this.words[this.length++] = 0;
+    }
+    return this;
+  };
+
+  // Remove leading `0` from `this`
+  BN.prototype.strip = function strip () {
+    while (this.length > 1 && this.words[this.length - 1] === 0) {
+      this.length--;
+    }
+    return this._normSign();
+  };
+
+  BN.prototype._normSign = function _normSign () {
+    // -0 = 0
+    if (this.length === 1 && this.words[0] === 0) {
+      this.negative = 0;
+    }
+    return this;
+  };
+
+  BN.prototype.inspect = function inspect () {
+    return (this.red ? '<BN-R: ' : '<BN: ') + this.toString(16) + '>';
+  };
+
+  /*
+
+  var zeros = [];
+  var groupSizes = [];
+  var groupBases = [];
+
+  var s = '';
+  var i = -1;
+  while (++i < BN.wordSize) {
+    zeros[i] = s;
+    s += '0';
+  }
+  groupSizes[0] = 0;
+  groupSizes[1] = 0;
+  groupBases[0] = 0;
+  groupBases[1] = 0;
+  var base = 2 - 1;
+  while (++base < 36 + 1) {
+    var groupSize = 0;
+    var groupBase = 1;
+    while (groupBase < (1 << BN.wordSize) / base) {
+      groupBase *= base;
+      groupSize += 1;
+    }
+    groupSizes[base] = groupSize;
+    groupBases[base] = groupBase;
+  }
+
+  */
+
+  var zeros = [
+    '',
+    '0',
+    '00',
+    '000',
+    '0000',
+    '00000',
+    '000000',
+    '0000000',
+    '00000000',
+    '000000000',
+    '0000000000',
+    '00000000000',
+    '000000000000',
+    '0000000000000',
+    '00000000000000',
+    '000000000000000',
+    '0000000000000000',
+    '00000000000000000',
+    '000000000000000000',
+    '0000000000000000000',
+    '00000000000000000000',
+    '000000000000000000000',
+    '0000000000000000000000',
+    '00000000000000000000000',
+    '000000000000000000000000',
+    '0000000000000000000000000'
+  ];
+
+  var groupSizes = [
+    0, 0,
+    25, 16, 12, 11, 10, 9, 8,
+    8, 7, 7, 7, 7, 6, 6,
+    6, 6, 6, 6, 6, 5, 5,
+    5, 5, 5, 5, 5, 5, 5,
+    5, 5, 5, 5, 5, 5, 5
+  ];
+
+  var groupBases = [
+    0, 0,
+    33554432, 43046721, 16777216, 48828125, 60466176, 40353607, 16777216,
+    43046721, 10000000, 19487171, 35831808, 62748517, 7529536, 11390625,
+    16777216, 24137569, 34012224, 47045881, 64000000, 4084101, 5153632,
+    6436343, 7962624, 9765625, 11881376, 14348907, 17210368, 20511149,
+    24300000, 28629151, 33554432, 39135393, 45435424, 52521875, 60466176
+  ];
+
+  BN.prototype.toString = function toString (base, padding) {
+    base = base || 10;
+    padding = padding | 0 || 1;
+
+    var out;
+    if (base === 16 || base === 'hex') {
+      out = '';
+      var off = 0;
+      var carry = 0;
+      for (var i = 0; i < this.length; i++) {
+        var w = this.words[i];
+        var word = (((w << off) | carry) & 0xffffff).toString(16);
+        carry = (w >>> (24 - off)) & 0xffffff;
+        if (carry !== 0 || i !== this.length - 1) {
+          out = zeros[6 - word.length] + word + out;
+        } else {
+          out = word + out;
+        }
+        off += 2;
+        if (off >= 26) {
+          off -= 26;
+          i--;
+        }
+      }
+      if (carry !== 0) {
+        out = carry.toString(16) + out;
+      }
+      while (out.length % padding !== 0) {
+        out = '0' + out;
+      }
+      if (this.negative !== 0) {
+        out = '-' + out;
+      }
+      return out;
+    }
+
+    if (base === (base | 0) && base >= 2 && base <= 36) {
+      // var groupSize = Math.floor(BN.wordSize * Math.LN2 / Math.log(base));
+      var groupSize = groupSizes[base];
+      // var groupBase = Math.pow(base, groupSize);
+      var groupBase = groupBases[base];
+      out = '';
+      var c = this.clone();
+      c.negative = 0;
+      while (!c.isZero()) {
+        var r = c.modn(groupBase).toString(base);
+        c = c.idivn(groupBase);
+
+        if (!c.isZero()) {
+          out = zeros[groupSize - r.length] + r + out;
+        } else {
+          out = r + out;
+        }
+      }
+      if (this.isZero()) {
+        out = '0' + out;
+      }
+      while (out.length % padding !== 0) {
+        out = '0' + out;
+      }
+      if (this.negative !== 0) {
+        out = '-' + out;
+      }
+      return out;
+    }
+
+    assert(false, 'Base should be between 2 and 36');
+  };
+
+  BN.prototype.toNumber = function toNumber () {
+    var ret = this.words[0];
+    if (this.length === 2) {
+      ret += this.words[1] * 0x4000000;
+    } else if (this.length === 3 && this.words[2] === 0x01) {
+      // NOTE: at this stage it is known that the top bit is set
+      ret += 0x10000000000000 + (this.words[1] * 0x4000000);
+    } else if (this.length > 2) {
+      assert(false, 'Number can only safely store up to 53 bits');
+    }
+    return (this.negative !== 0) ? -ret : ret;
+  };
+
+  BN.prototype.toJSON = function toJSON () {
+    return this.toString(16);
+  };
+
+  BN.prototype.toBuffer = function toBuffer (endian, length) {
+    assert(typeof Buffer !== 'undefined');
+    return this.toArrayLike(Buffer, endian, length);
+  };
+
+  BN.prototype.toArray = function toArray (endian, length) {
+    return this.toArrayLike(Array, endian, length);
+  };
+
+  BN.prototype.toArrayLike = function toArrayLike (ArrayType, endian, length) {
+    var byteLength = this.byteLength();
+    var reqLength = length || Math.max(1, byteLength);
+    assert(byteLength <= reqLength, 'byte array longer than desired length');
+    assert(reqLength > 0, 'Requested array length <= 0');
+
+    this.strip();
+    var littleEndian = endian === 'le';
+    var res = new ArrayType(reqLength);
+
+    var b, i;
+    var q = this.clone();
+    if (!littleEndian) {
+      // Assume big-endian
+      for (i = 0; i < reqLength - byteLength; i++) {
+        res[i] = 0;
+      }
+
+      for (i = 0; !q.isZero(); i++) {
+        b = q.andln(0xff);
+        q.iushrn(8);
+
+        res[reqLength - i - 1] = b;
+      }
+    } else {
+      for (i = 0; !q.isZero(); i++) {
+        b = q.andln(0xff);
+        q.iushrn(8);
+
+        res[i] = b;
+      }
+
+      for (; i < reqLength; i++) {
+        res[i] = 0;
+      }
+    }
+
+    return res;
+  };
+
+  if (Math.clz32) {
+    BN.prototype._countBits = function _countBits (w) {
+      return 32 - Math.clz32(w);
+    };
+  } else {
+    BN.prototype._countBits = function _countBits (w) {
+      var t = w;
+      var r = 0;
+      if (t >= 0x1000) {
+        r += 13;
+        t >>>= 13;
+      }
+      if (t >= 0x40) {
+        r += 7;
+        t >>>= 7;
+      }
+      if (t >= 0x8) {
+        r += 4;
+        t >>>= 4;
+      }
+      if (t >= 0x02) {
+        r += 2;
+        t >>>= 2;
+      }
+      return r + t;
+    };
+  }
+
+  BN.prototype._zeroBits = function _zeroBits (w) {
+    // Short-cut
+    if (w === 0) return 26;
+
+    var t = w;
+    var r = 0;
+    if ((t & 0x1fff) === 0) {
+      r += 13;
+      t >>>= 13;
+    }
+    if ((t & 0x7f) === 0) {
+      r += 7;
+      t >>>= 7;
+    }
+    if ((t & 0xf) === 0) {
+      r += 4;
+      t >>>= 4;
+    }
+    if ((t & 0x3) === 0) {
+      r += 2;
+      t >>>= 2;
+    }
+    if ((t & 0x1) === 0) {
+      r++;
+    }
+    return r;
+  };
+
+  // Return number of used bits in a BN
+  BN.prototype.bitLength = function bitLength () {
+    var w = this.words[this.length - 1];
+    var hi = this._countBits(w);
+    return (this.length - 1) * 26 + hi;
+  };
+
+  function toBitArray (num) {
+    var w = new Array(num.bitLength());
+
+    for (var bit = 0; bit < w.length; bit++) {
+      var off = (bit / 26) | 0;
+      var wbit = bit % 26;
+
+      w[bit] = (num.words[off] & (1 << wbit)) >>> wbit;
+    }
+
+    return w;
+  }
+
+  // Number of trailing zero bits
+  BN.prototype.zeroBits = function zeroBits () {
+    if (this.isZero()) return 0;
+
+    var r = 0;
+    for (var i = 0; i < this.length; i++) {
+      var b = this._zeroBits(this.words[i]);
+      r += b;
+      if (b !== 26) break;
+    }
+    return r;
+  };
+
+  BN.prototype.byteLength = function byteLength () {
+    return Math.ceil(this.bitLength() / 8);
+  };
+
+  BN.prototype.toTwos = function toTwos (width) {
+    if (this.negative !== 0) {
+      return this.abs().inotn(width).iaddn(1);
+    }
+    return this.clone();
+  };
+
+  BN.prototype.fromTwos = function fromTwos (width) {
+    if (this.testn(width - 1)) {
+      return this.notn(width).iaddn(1).ineg();
+    }
+    return this.clone();
+  };
+
+  BN.prototype.isNeg = function isNeg () {
+    return this.negative !== 0;
+  };
+
+  // Return negative clone of `this`
+  BN.prototype.neg = function neg () {
+    return this.clone().ineg();
+  };
+
+  BN.prototype.ineg = function ineg () {
+    if (!this.isZero()) {
+      this.negative ^= 1;
+    }
+
+    return this;
+  };
+
+  // Or `num` with `this` in-place
+  BN.prototype.iuor = function iuor (num) {
+    while (this.length < num.length) {
+      this.words[this.length++] = 0;
+    }
+
+    for (var i = 0; i < num.length; i++) {
+      this.words[i] = this.words[i] | num.words[i];
+    }
+
+    return this.strip();
+  };
+
+  BN.prototype.ior = function ior (num) {
+    assert((this.negative | num.negative) === 0);
+    return this.iuor(num);
+  };
+
+  // Or `num` with `this`
+  BN.prototype.or = function or (num) {
+    if (this.length > num.length) return this.clone().ior(num);
+    return num.clone().ior(this);
+  };
+
+  BN.prototype.uor = function uor (num) {
+    if (this.length > num.length) return this.clone().iuor(num);
+    return num.clone().iuor(this);
+  };
+
+  // And `num` with `this` in-place
+  BN.prototype.iuand = function iuand (num) {
+    // b = min-length(num, this)
+    var b;
+    if (this.length > num.length) {
+      b = num;
+    } else {
+      b = this;
+    }
+
+    for (var i = 0; i < b.length; i++) {
+      this.words[i] = this.words[i] & num.words[i];
+    }
+
+    this.length = b.length;
+
+    return this.strip();
+  };
+
+  BN.prototype.iand = function iand (num) {
+    assert((this.negative | num.negative) === 0);
+    return this.iuand(num);
+  };
+
+  // And `num` with `this`
+  BN.prototype.and = function and (num) {
+    if (this.length > num.length) return this.clone().iand(num);
+    return num.clone().iand(this);
+  };
+
+  BN.prototype.uand = function uand (num) {
+    if (this.length > num.length) return this.clone().iuand(num);
+    return num.clone().iuand(this);
+  };
+
+  // Xor `num` with `this` in-place
+  BN.prototype.iuxor = function iuxor (num) {
+    // a.length > b.length
+    var a;
+    var b;
+    if (this.length > num.length) {
+      a = this;
+      b = num;
+    } else {
+      a = num;
+      b = this;
+    }
+
+    for (var i = 0; i < b.length; i++) {
+      this.words[i] = a.words[i] ^ b.words[i];
+    }
+
+    if (this !== a) {
+      for (; i < a.length; i++) {
+        this.words[i] = a.words[i];
+      }
+    }
+
+    this.length = a.length;
+
+    return this.strip();
+  };
+
+  BN.prototype.ixor = function ixor (num) {
+    assert((this.negative | num.negative) === 0);
+    return this.iuxor(num);
+  };
+
+  // Xor `num` with `this`
+  BN.prototype.xor = function xor (num) {
+    if (this.length > num.length) return this.clone().ixor(num);
+    return num.clone().ixor(this);
+  };
+
+  BN.prototype.uxor = function uxor (num) {
+    if (this.length > num.length) return this.clone().iuxor(num);
+    return num.clone().iuxor(this);
+  };
+
+  // Not ``this`` with ``width`` bitwidth
+  BN.prototype.inotn = function inotn (width) {
+    assert(typeof width === 'number' && width >= 0);
+
+    var bytesNeeded = Math.ceil(width / 26) | 0;
+    var bitsLeft = width % 26;
+
+    // Extend the buffer with leading zeroes
+    this._expand(bytesNeeded);
+
+    if (bitsLeft > 0) {
+      bytesNeeded--;
+    }
+
+    // Handle complete words
+    for (var i = 0; i < bytesNeeded; i++) {
+      this.words[i] = ~this.words[i] & 0x3ffffff;
+    }
+
+    // Handle the residue
+    if (bitsLeft > 0) {
+      this.words[i] = ~this.words[i] & (0x3ffffff >> (26 - bitsLeft));
+    }
+
+    // And remove leading zeroes
+    return this.strip();
+  };
+
+  BN.prototype.notn = function notn (width) {
+    return this.clone().inotn(width);
+  };
+
+  // Set `bit` of `this`
+  BN.prototype.setn = function setn (bit, val) {
+    assert(typeof bit === 'number' && bit >= 0);
+
+    var off = (bit / 26) | 0;
+    var wbit = bit % 26;
+
+    this._expand(off + 1);
+
+    if (val) {
+      this.words[off] = this.words[off] | (1 << wbit);
+    } else {
+      this.words[off] = this.words[off] & ~(1 << wbit);
+    }
+
+    return this.strip();
+  };
+
+  // Add `num` to `this` in-place
+  BN.prototype.iadd = function iadd (num) {
+    var r;
+
+    // negative + positive
+    if (this.negative !== 0 && num.negative === 0) {
+      this.negative = 0;
+      r = this.isub(num);
+      this.negative ^= 1;
+      return this._normSign();
+
+    // positive + negative
+    } else if (this.negative === 0 && num.negative !== 0) {
+      num.negative = 0;
+      r = this.isub(num);
+      num.negative = 1;
+      return r._normSign();
+    }
+
+    // a.length > b.length
+    var a, b;
+    if (this.length > num.length) {
+      a = this;
+      b = num;
+    } else {
+      a = num;
+      b = this;
+    }
+
+    var carry = 0;
+    for (var i = 0; i < b.length; i++) {
+      r = (a.words[i] | 0) + (b.words[i] | 0) + carry;
+      this.words[i] = r & 0x3ffffff;
+      carry = r >>> 26;
+    }
+    for (; carry !== 0 && i < a.length; i++) {
+      r = (a.words[i] | 0) + carry;
+      this.words[i] = r & 0x3ffffff;
+      carry = r >>> 26;
+    }
+
+    this.length = a.length;
+    if (carry !== 0) {
+      this.words[this.length] = carry;
+      this.length++;
+    // Copy the rest of the words
+    } else if (a !== this) {
+      for (; i < a.length; i++) {
+        this.words[i] = a.words[i];
+      }
+    }
+
+    return this;
+  };
+
+  // Add `num` to `this`
+  BN.prototype.add = function add (num) {
+    var res;
+    if (num.negative !== 0 && this.negative === 0) {
+      num.negative = 0;
+      res = this.sub(num);
+      num.negative ^= 1;
+      return res;
+    } else if (num.negative === 0 && this.negative !== 0) {
+      this.negative = 0;
+      res = num.sub(this);
+      this.negative = 1;
+      return res;
+    }
+
+    if (this.length > num.length) return this.clone().iadd(num);
+
+    return num.clone().iadd(this);
+  };
+
+  // Subtract `num` from `this` in-place
+  BN.prototype.isub = function isub (num) {
+    // this - (-num) = this + num
+    if (num.negative !== 0) {
+      num.negative = 0;
+      var r = this.iadd(num);
+      num.negative = 1;
+      return r._normSign();
+
+    // -this - num = -(this + num)
+    } else if (this.negative !== 0) {
+      this.negative = 0;
+      this.iadd(num);
+      this.negative = 1;
+      return this._normSign();
+    }
+
+    // At this point both numbers are positive
+    var cmp = this.cmp(num);
+
+    // Optimization - zeroify
+    if (cmp === 0) {
+      this.negative = 0;
+      this.length = 1;
+      this.words[0] = 0;
+      return this;
+    }
+
+    // a > b
+    var a, b;
+    if (cmp > 0) {
+      a = this;
+      b = num;
+    } else {
+      a = num;
+      b = this;
+    }
+
+    var carry = 0;
+    for (var i = 0; i < b.length; i++) {
+      r = (a.words[i] | 0) - (b.words[i] | 0) + carry;
+      carry = r >> 26;
+      this.words[i] = r & 0x3ffffff;
+    }
+    for (; carry !== 0 && i < a.length; i++) {
+      r = (a.words[i] | 0) + carry;
+      carry = r >> 26;
+      this.words[i] = r & 0x3ffffff;
+    }
+
+    // Copy rest of the words
+    if (carry === 0 && i < a.length && a !== this) {
+      for (; i < a.length; i++) {
+        this.words[i] = a.words[i];
+      }
+    }
+
+    this.length = Math.max(this.length, i);
+
+    if (a !== this) {
+      this.negative = 1;
+    }
+
+    return this.strip();
+  };
+
+  // Subtract `num` from `this`
+  BN.prototype.sub = function sub (num) {
+    return this.clone().isub(num);
+  };
+
+  function smallMulTo (self, num, out) {
+    out.negative = num.negative ^ self.negative;
+    var len = (self.length + num.length) | 0;
+    out.length = len;
+    len = (len - 1) | 0;
+
+    // Peel one iteration (compiler can't do it, because of code complexity)
+    var a = self.words[0] | 0;
+    var b = num.words[0] | 0;
+    var r = a * b;
+
+    var lo = r & 0x3ffffff;
+    var carry = (r / 0x4000000) | 0;
+    out.words[0] = lo;
+
+    for (var k = 1; k < len; k++) {
+      // Sum all words with the same `i + j = k` and accumulate `ncarry`,
+      // note that ncarry could be >= 0x3ffffff
+      var ncarry = carry >>> 26;
+      var rword = carry & 0x3ffffff;
+      var maxJ = Math.min(k, num.length - 1);
+      for (var j = Math.max(0, k - self.length + 1); j <= maxJ; j++) {
+        var i = (k - j) | 0;
+        a = self.words[i] | 0;
+        b = num.words[j] | 0;
+        r = a * b + rword;
+        ncarry += (r / 0x4000000) | 0;
+        rword = r & 0x3ffffff;
+      }
+      out.words[k] = rword | 0;
+      carry = ncarry | 0;
+    }
+    if (carry !== 0) {
+      out.words[k] = carry | 0;
+    } else {
+      out.length--;
+    }
+
+    return out.strip();
+  }
+
+  // TODO(indutny): it may be reasonable to omit it for users who don't need
+  // to work with 256-bit numbers, otherwise it gives 20% improvement for 256-bit
+  // multiplication (like elliptic secp256k1).
+  var comb10MulTo = function comb10MulTo (self, num, out) {
+    var a = self.words;
+    var b = num.words;
+    var o = out.words;
+    var c = 0;
+    var lo;
+    var mid;
+    var hi;
+    var a0 = a[0] | 0;
+    var al0 = a0 & 0x1fff;
+    var ah0 = a0 >>> 13;
+    var a1 = a[1] | 0;
+    var al1 = a1 & 0x1fff;
+    var ah1 = a1 >>> 13;
+    var a2 = a[2] | 0;
+    var al2 = a2 & 0x1fff;
+    var ah2 = a2 >>> 13;
+    var a3 = a[3] | 0;
+    var al3 = a3 & 0x1fff;
+    var ah3 = a3 >>> 13;
+    var a4 = a[4] | 0;
+    var al4 = a4 & 0x1fff;
+    var ah4 = a4 >>> 13;
+    var a5 = a[5] | 0;
+    var al5 = a5 & 0x1fff;
+    var ah5 = a5 >>> 13;
+    var a6 = a[6] | 0;
+    var al6 = a6 & 0x1fff;
+    var ah6 = a6 >>> 13;
+    var a7 = a[7] | 0;
+    var al7 = a7 & 0x1fff;
+    var ah7 = a7 >>> 13;
+    var a8 = a[8] | 0;
+    var al8 = a8 & 0x1fff;
+    var ah8 = a8 >>> 13;
+    var a9 = a[9] | 0;
+    var al9 = a9 & 0x1fff;
+    var ah9 = a9 >>> 13;
+    var b0 = b[0] | 0;
+    var bl0 = b0 & 0x1fff;
+    var bh0 = b0 >>> 13;
+    var b1 = b[1] | 0;
+    var bl1 = b1 & 0x1fff;
+    var bh1 = b1 >>> 13;
+    var b2 = b[2] | 0;
+    var bl2 = b2 & 0x1fff;
+    var bh2 = b2 >>> 13;
+    var b3 = b[3] | 0;
+    var bl3 = b3 & 0x1fff;
+    var bh3 = b3 >>> 13;
+    var b4 = b[4] | 0;
+    var bl4 = b4 & 0x1fff;
+    var bh4 = b4 >>> 13;
+    var b5 = b[5] | 0;
+    var bl5 = b5 & 0x1fff;
+    var bh5 = b5 >>> 13;
+    var b6 = b[6] | 0;
+    var bl6 = b6 & 0x1fff;
+    var bh6 = b6 >>> 13;
+    var b7 = b[7] | 0;
+    var bl7 = b7 & 0x1fff;
+    var bh7 = b7 >>> 13;
+    var b8 = b[8] | 0;
+    var bl8 = b8 & 0x1fff;
+    var bh8 = b8 >>> 13;
+    var b9 = b[9] | 0;
+    var bl9 = b9 & 0x1fff;
+    var bh9 = b9 >>> 13;
+
+    out.negative = self.negative ^ num.negative;
+    out.length = 19;
+    /* k = 0 */
+    lo = Math.imul(al0, bl0);
+    mid = Math.imul(al0, bh0);
+    mid = (mid + Math.imul(ah0, bl0)) | 0;
+    hi = Math.imul(ah0, bh0);
+    var w0 = (((c + lo) | 0) + ((mid & 0x1fff) << 13)) | 0;
+    c = (((hi + (mid >>> 13)) | 0) + (w0 >>> 26)) | 0;
+    w0 &= 0x3ffffff;
+    /* k = 1 */
+    lo = Math.imul(al1, bl0);
+    mid = Math.imul(al1, bh0);
+    mid = (mid + Math.imul(ah1, bl0)) | 0;
+    hi = Math.imul(ah1, bh0);
+    lo = (lo + Math.imul(al0, bl1)) | 0;
+    mid = (mid + Math.imul(al0, bh1)) | 0;
+    mid = (mid + Math.imul(ah0, bl1)) | 0;
+    hi = (hi + Math.imul(ah0, bh1)) | 0;
+    var w1 = (((c + lo) | 0) + ((mid & 0x1fff) << 13)) | 0;
+    c = (((hi + (mid >>> 13)) | 0) + (w1 >>> 26)) | 0;
+    w1 &= 0x3ffffff;
+    /* k = 2 */
+    lo = Math.imul(al2, bl0);
+    mid = Math.imul(al2, bh0);
+    mid = (mid + Math.imul(ah2, bl0)) | 0;
+    hi = Math.imul(ah2, bh0);
+    lo = (lo + Math.imul(al1, bl1)) | 0;
+    mid = (mid + Math.imul(al1, bh1)) | 0;
+    mid = (mid + Math.imul(ah1, bl1)) | 0;
+    hi = (hi + Math.imul(ah1, bh1)) | 0;
+    lo = (lo + Math.imul(al0, bl2)) | 0;
+    mid = (mid + Math.imul(al0, bh2)) | 0;
+    mid = (mid + Math.imul(ah0, bl2)) | 0;
+    hi = (hi + Math.imul(ah0, bh2)) | 0;
+    var w2 = (((c + lo) | 0) + ((mid & 0x1fff) << 13)) | 0;
+    c = (((hi + (mid >>> 13)) | 0) + (w2 >>> 26)) | 0;
+    w2 &= 0x3ffffff;
+    /* k = 3 */
+    lo = Math.imul(al3, bl0);
+    mid = Math.imul(al3, bh0);
+    mid = (mid + Math.imul(ah3, bl0)) | 0;
+    hi = Math.imul(ah3, bh0);
+    lo = (lo + Math.imul(al2, bl1)) | 0;
+    mid = (mid + Math.imul(al2, bh1)) | 0;
+    mid = (mid + Math.imul(ah2, bl1)) | 0;
+    hi = (hi + Math.imul(ah2, bh1)) | 0;
+    lo = (lo + Math.imul(al1, bl2)) | 0;
+    mid = (mid + Math.imul(al1, bh2)) | 0;
+    mid = (mid + Math.imul(ah1, bl2)) | 0;
+    hi = (hi + Math.imul(ah1, bh2)) | 0;
+    lo = (lo + Math.imul(al0, bl3)) | 0;
+    mid = (mid + Math.imul(al0, bh3)) | 0;
+    mid = (mid + Math.imul(ah0, bl3)) | 0;
+    hi = (hi + Math.imul(ah0, bh3)) | 0;
+    var w3 = (((c + lo) | 0) + ((mid & 0x1fff) << 13)) | 0;
+    c = (((hi + (mid >>> 13)) | 0) + (w3 >>> 26)) | 0;
+    w3 &= 0x3ffffff;
+    /* k = 4 */
+    lo = Math.imul(al4, bl0);
+    mid = Math.imul(al4, bh0);
+    mid = (mid + Math.imul(ah4, bl0)) | 0;
+    hi = Math.imul(ah4, bh0);
+    lo = (lo + Math.imul(al3, bl1)) | 0;
+    mid = (mid + Math.imul(al3, bh1)) | 0;
+    mid = (mid + Math.imul(ah3, bl1)) | 0;
+    hi = (hi + Math.imul(ah3, bh1)) | 0;
+    lo = (lo + Math.imul(al2, bl2)) | 0;
+    mid = (mid + Math.imul(al2, bh2)) | 0;
+    mid = (mid + Math.imul(ah2, bl2)) | 0;
+    hi = (hi + Math.imul(ah2, bh2)) | 0;
+    lo = (lo + Math.imul(al1, bl3)) | 0;
+    mid = (mid + Math.imul(al1, bh3)) | 0;
+    mid = (mid + Math.imul(ah1, bl3)) | 0;
+    hi = (hi + Math.imul(ah1, bh3)) | 0;
+    lo = (lo + Math.imul(al0, bl4)) | 0;
+    mid = (mid + Math.imul(al0, bh4)) | 0;
+    mid = (mid + Math.imul(ah0, bl4)) | 0;
+    hi = (hi + Math.imul(ah0, bh4)) | 0;
+    var w4 = (((c + lo) | 0) + ((mid & 0x1fff) << 13)) | 0;
+    c = (((hi + (mid >>> 13)) | 0) + (w4 >>> 26)) | 0;
+    w4 &= 0x3ffffff;
+    /* k = 5 */
+    lo = Math.imul(al5, bl0);
+    mid = Math.imul(al5, bh0);
+    mid = (mid + Math.imul(ah5, bl0)) | 0;
+    hi = Math.imul(ah5, bh0);
+    lo = (lo + Math.imul(al4, bl1)) | 0;
+    mid = (mid + Math.imul(al4, bh1)) | 0;
+    mid = (mid + Math.imul(ah4, bl1)) | 0;
+    hi = (hi + Math.imul(ah4, bh1)) | 0;
+    lo = (lo + Math.imul(al3, bl2)) | 0;
+    mid = (mid + Math.imul(al3, bh2)) | 0;
+    mid = (mid + Math.imul(ah3, bl2)) | 0;
+    hi = (hi + Math.imul(ah3, bh2)) | 0;
+    lo = (lo + Math.imul(al2, bl3)) | 0;
+    mid = (mid + Math.imul(al2, bh3)) | 0;
+    mid = (mid + Math.imul(ah2, bl3)) | 0;
+    hi = (hi + Math.imul(ah2, bh3)) | 0;
+    lo = (lo + Math.imul(al1, bl4)) | 0;
+    mid = (mid + Math.imul(al1, bh4)) | 0;
+    mid = (mid + Math.imul(ah1, bl4)) | 0;
+    hi = (hi + Math.imul(ah1, bh4)) | 0;
+    lo = (lo + Math.imul(al0, bl5)) | 0;
+    mid = (mid + Math.imul(al0, bh5)) | 0;
+    mid = (mid + Math.imul(ah0, bl5)) | 0;
+    hi = (hi + Math.imul(ah0, bh5)) | 0;
+    var w5 = (((c + lo) | 0) + ((mid & 0x1fff) << 13)) | 0;
+    c = (((hi + (mid >>> 13)) | 0) + (w5 >>> 26)) | 0;
+    w5 &= 0x3ffffff;
+    /* k = 6 */
+    lo = Math.imul(al6, bl0);
+    mid = Math.imul(al6, bh0);
+    mid = (mid + Math.imul(ah6, bl0)) | 0;
+    hi = Math.imul(ah6, bh0);
+    lo = (lo + Math.imul(al5, bl1)) | 0;
+    mid = (mid + Math.imul(al5, bh1)) | 0;
+    mid = (mid + Math.imul(ah5, bl1)) | 0;
+    hi = (hi + Math.imul(ah5, bh1)) | 0;
+    lo = (lo + Math.imul(al4, bl2)) | 0;
+    mid = (mid + Math.imul(al4, bh2)) | 0;
+    mid = (mid + Math.imul(ah4, bl2)) | 0;
+    hi = (hi + Math.imul(ah4, bh2)) | 0;
+    lo = (lo + Math.imul(al3, bl3)) | 0;
+    mid = (mid + Math.imul(al3, bh3)) | 0;
+    mid = (mid + Math.imul(ah3, bl3)) | 0;
+    hi = (hi + Math.imul(ah3, bh3)) | 0;
+    lo = (lo + Math.imul(al2, bl4)) | 0;
+    mid = (mid + Math.imul(al2, bh4)) | 0;
+    mid = (mid + Math.imul(ah2, bl4)) | 0;
+    hi = (hi + Math.imul(ah2, bh4)) | 0;
+    lo = (lo + Math.imul(al1, bl5)) | 0;
+    mid = (mid + Math.imul(al1, bh5)) | 0;
+    mid = (mid + Math.imul(ah1, bl5)) | 0;
+    hi = (hi + Math.imul(ah1, bh5)) | 0;
+    lo = (lo + Math.imul(al0, bl6)) | 0;
+    mid = (mid + Math.imul(al0, bh6)) | 0;
+    mid = (mid + Math.imul(ah0, bl6)) | 0;
+    hi = (hi + Math.imul(ah0, bh6)) | 0;
+    var w6 = (((c + lo) | 0) + ((mid & 0x1fff) << 13)) | 0;
+    c = (((hi + (mid >>> 13)) | 0) + (w6 >>> 26)) | 0;
+    w6 &= 0x3ffffff;
+    /* k = 7 */
+    lo = Math.imul(al7, bl0);
+    mid = Math.imul(al7, bh0);
+    mid = (mid + Math.imul(ah7, bl0)) | 0;
+    hi = Math.imul(ah7, bh0);
+    lo = (lo + Math.imul(al6, bl1)) | 0;
+    mid = (mid + Math.imul(al6, bh1)) | 0;
+    mid = (mid + Math.imul(ah6, bl1)) | 0;
+    hi = (hi + Math.imul(ah6, bh1)) | 0;
+    lo = (lo + Math.imul(al5, bl2)) | 0;
+    mid = (mid + Math.imul(al5, bh2)) | 0;
+    mid = (mid + Math.imul(ah5, bl2)) | 0;
+    hi = (hi + Math.imul(ah5, bh2)) | 0;
+    lo = (lo + Math.imul(al4, bl3)) | 0;
+    mid = (mid + Math.imul(al4, bh3)) | 0;
+    mid = (mid + Math.imul(ah4, bl3)) | 0;
+    hi = (hi + Math.imul(ah4, bh3)) | 0;
+    lo = (lo + Math.imul(al3, bl4)) | 0;
+    mid = (mid + Math.imul(al3, bh4)) | 0;
+    mid = (mid + Math.imul(ah3, bl4)) | 0;
+    hi = (hi + Math.imul(ah3, bh4)) | 0;
+    lo = (lo + Math.imul(al2, bl5)) | 0;
+    mid = (mid + Math.imul(al2, bh5)) | 0;
+    mid = (mid + Math.imul(ah2, bl5)) | 0;
+    hi = (hi + Math.imul(ah2, bh5)) | 0;
+    lo = (lo + Math.imul(al1, bl6)) | 0;
+    mid = (mid + Math.imul(al1, bh6)) | 0;
+    mid = (mid + Math.imul(ah1, bl6)) | 0;
+    hi = (hi + Math.imul(ah1, bh6)) | 0;
+    lo = (lo + Math.imul(al0, bl7)) | 0;
+    mid = (mid + Math.imul(al0, bh7)) | 0;
+    mid = (mid + Math.imul(ah0, bl7)) | 0;
+    hi = (hi + Math.imul(ah0, bh7)) | 0;
+    var w7 = (((c + lo) | 0) + ((mid & 0x1fff) << 13)) | 0;
+    c = (((hi + (mid >>> 13)) | 0) + (w7 >>> 26)) | 0;
+    w7 &= 0x3ffffff;
+    /* k = 8 */
+    lo = Math.imul(al8, bl0);
+    mid = Math.imul(al8, bh0);
+    mid = (mid + Math.imul(ah8, bl0)) | 0;
+    hi = Math.imul(ah8, bh0);
+    lo = (lo + Math.imul(al7, bl1)) | 0;
+    mid = (mid + Math.imul(al7, bh1)) | 0;
+    mid = (mid + Math.imul(ah7, bl1)) | 0;
+    hi = (hi + Math.imul(ah7, bh1)) | 0;
+    lo = (lo + Math.imul(al6, bl2)) | 0;
+    mid = (mid + Math.imul(al6, bh2)) | 0;
+    mid = (mid + Math.imul(ah6, bl2)) | 0;
+    hi = (hi + Math.imul(ah6, bh2)) | 0;
+    lo = (lo + Math.imul(al5, bl3)) | 0;
+    mid = (mid + Math.imul(al5, bh3)) | 0;
+    mid = (mid + Math.imul(ah5, bl3)) | 0;
+    hi = (hi + Math.imul(ah5, bh3)) | 0;
+    lo = (lo + Math.imul(al4, bl4)) | 0;
+    mid = (mid + Math.imul(al4, bh4)) | 0;
+    mid = (mid + Math.imul(ah4, bl4)) | 0;
+    hi = (hi + Math.imul(ah4, bh4)) | 0;
+    lo = (lo + Math.imul(al3, bl5)) | 0;
+    mid = (mid + Math.imul(al3, bh5)) | 0;
+    mid = (mid + Math.imul(ah3, bl5)) | 0;
+    hi = (hi + Math.imul(ah3, bh5)) | 0;
+    lo = (lo + Math.imul(al2, bl6)) | 0;
+    mid = (mid + Math.imul(al2, bh6)) | 0;
+    mid = (mid + Math.imul(ah2, bl6)) | 0;
+    hi = (hi + Math.imul(ah2, bh6)) | 0;
+    lo = (lo + Math.imul(al1, bl7)) | 0;
+    mid = (mid + Math.imul(al1, bh7)) | 0;
+    mid = (mid + Math.imul(ah1, bl7)) | 0;
+    hi = (hi + Math.imul(ah1, bh7)) | 0;
+    lo = (lo + Math.imul(al0, bl8)) | 0;
+    mid = (mid + Math.imul(al0, bh8)) | 0;
+    mid = (mid + Math.imul(ah0, bl8)) | 0;
+    hi = (hi + Math.imul(ah0, bh8)) | 0;
+    var w8 = (((c + lo) | 0) + ((mid & 0x1fff) << 13)) | 0;
+    c = (((hi + (mid >>> 13)) | 0) + (w8 >>> 26)) | 0;
+    w8 &= 0x3ffffff;
+    /* k = 9 */
+    lo = Math.imul(al9, bl0);
+    mid = Math.imul(al9, bh0);
+    mid = (mid + Math.imul(ah9, bl0)) | 0;
+    hi = Math.imul(ah9, bh0);
+    lo = (lo + Math.imul(al8, bl1)) | 0;
+    mid = (mid + Math.imul(al8, bh1)) | 0;
+    mid = (mid + Math.imul(ah8, bl1)) | 0;
+    hi = (hi + Math.imul(ah8, bh1)) | 0;
+    lo = (lo + Math.imul(al7, bl2)) | 0;
+    mid = (mid + Math.imul(al7, bh2)) | 0;
+    mid = (mid + Math.imul(ah7, bl2)) | 0;
+    hi = (hi + Math.imul(ah7, bh2)) | 0;
+    lo = (lo + Math.imul(al6, bl3)) | 0;
+    mid = (mid + Math.imul(al6, bh3)) | 0;
+    mid = (mid + Math.imul(ah6, bl3)) | 0;
+    hi = (hi + Math.imul(ah6, bh3)) | 0;
+    lo = (lo + Math.imul(al5, bl4)) | 0;
+    mid = (mid + Math.imul(al5, bh4)) | 0;
+    mid = (mid + Math.imul(ah5, bl4)) | 0;
+    hi = (hi + Math.imul(ah5, bh4)) | 0;
+    lo = (lo + Math.imul(al4, bl5)) | 0;
+    mid = (mid + Math.imul(al4, bh5)) | 0;
+    mid = (mid + Math.imul(ah4, bl5)) | 0;
+    hi = (hi + Math.imul(ah4, bh5)) | 0;
+    lo = (lo + Math.imul(al3, bl6)) | 0;
+    mid = (mid + Math.imul(al3, bh6)) | 0;
+    mid = (mid + Math.imul(ah3, bl6)) | 0;
+    hi = (hi + Math.imul(ah3, bh6)) | 0;
+    lo = (lo + Math.imul(al2, bl7)) | 0;
+    mid = (mid + Math.imul(al2, bh7)) | 0;
+    mid = (mid + Math.imul(ah2, bl7)) | 0;
+    hi = (hi + Math.imul(ah2, bh7)) | 0;
+    lo = (lo + Math.imul(al1, bl8)) | 0;
+    mid = (mid + Math.imul(al1, bh8)) | 0;
+    mid = (mid + Math.imul(ah1, bl8)) | 0;
+    hi = (hi + Math.imul(ah1, bh8)) | 0;
+    lo = (lo + Math.imul(al0, bl9)) | 0;
+    mid = (mid + Math.imul(al0, bh9)) | 0;
+    mid = (mid + Math.imul(ah0, bl9)) | 0;
+    hi = (hi + Math.imul(ah0, bh9)) | 0;
+    var w9 = (((c + lo) | 0) + ((mid & 0x1fff) << 13)) | 0;
+    c = (((hi + (mid >>> 13)) | 0) + (w9 >>> 26)) | 0;
+    w9 &= 0x3ffffff;
+    /* k = 10 */
+    lo = Math.imul(al9, bl1);
+    mid = Math.imul(al9, bh1);
+    mid = (mid + Math.imul(ah9, bl1)) | 0;
+    hi = Math.imul(ah9, bh1);
+    lo = (lo + Math.imul(al8, bl2)) | 0;
+    mid = (mid + Math.imul(al8, bh2)) | 0;
+    mid = (mid + Math.imul(ah8, bl2)) | 0;
+    hi = (hi + Math.imul(ah8, bh2)) | 0;
+    lo = (lo + Math.imul(al7, bl3)) | 0;
+    mid = (mid + Math.imul(al7, bh3)) | 0;
+    mid = (mid + Math.imul(ah7, bl3)) | 0;
+    hi = (hi + Math.imul(ah7, bh3)) | 0;
+    lo = (lo + Math.imul(al6, bl4)) | 0;
+    mid = (mid + Math.imul(al6, bh4)) | 0;
+    mid = (mid + Math.imul(ah6, bl4)) | 0;
+    hi = (hi + Math.imul(ah6, bh4)) | 0;
+    lo = (lo + Math.imul(al5, bl5)) | 0;
+    mid = (mid + Math.imul(al5, bh5)) | 0;
+    mid = (mid + Math.imul(ah5, bl5)) | 0;
+    hi = (hi + Math.imul(ah5, bh5)) | 0;
+    lo = (lo + Math.imul(al4, bl6)) | 0;
+    mid = (mid + Math.imul(al4, bh6)) | 0;
+    mid = (mid + Math.imul(ah4, bl6)) | 0;
+    hi = (hi + Math.imul(ah4, bh6)) | 0;
+    lo = (lo + Math.imul(al3, bl7)) | 0;
+    mid = (mid + Math.imul(al3, bh7)) | 0;
+    mid = (mid + Math.imul(ah3, bl7)) | 0;
+    hi = (hi + Math.imul(ah3, bh7)) | 0;
+    lo = (lo + Math.imul(al2, bl8)) | 0;
+    mid = (mid + Math.imul(al2, bh8)) | 0;
+    mid = (mid + Math.imul(ah2, bl8)) | 0;
+    hi = (hi + Math.imul(ah2, bh8)) | 0;
+    lo = (lo + Math.imul(al1, bl9)) | 0;
+    mid = (mid + Math.imul(al1, bh9)) | 0;
+    mid = (mid + Math.imul(ah1, bl9)) | 0;
+    hi = (hi + Math.imul(ah1, bh9)) | 0;
+    var w10 = (((c + lo) | 0) + ((mid & 0x1fff) << 13)) | 0;
+    c = (((hi + (mid >>> 13)) | 0) + (w10 >>> 26)) | 0;
+    w10 &= 0x3ffffff;
+    /* k = 11 */
+    lo = Math.imul(al9, bl2);
+    mid = Math.imul(al9, bh2);
+    mid = (mid + Math.imul(ah9, bl2)) | 0;
+    hi = Math.imul(ah9, bh2);
+    lo = (lo + Math.imul(al8, bl3)) | 0;
+    mid = (mid + Math.imul(al8, bh3)) | 0;
+    mid = (mid + Math.imul(ah8, bl3)) | 0;
+    hi = (hi + Math.imul(ah8, bh3)) | 0;
+    lo = (lo + Math.imul(al7, bl4)) | 0;
+    mid = (mid + Math.imul(al7, bh4)) | 0;
+    mid = (mid + Math.imul(ah7, bl4)) | 0;
+    hi = (hi + Math.imul(ah7, bh4)) | 0;
+    lo = (lo + Math.imul(al6, bl5)) | 0;
+    mid = (mid + Math.imul(al6, bh5)) | 0;
+    mid = (mid + Math.imul(ah6, bl5)) | 0;
+    hi = (hi + Math.imul(ah6, bh5)) | 0;
+    lo = (lo + Math.imul(al5, bl6)) | 0;
+    mid = (mid + Math.imul(al5, bh6)) | 0;
+    mid = (mid + Math.imul(ah5, bl6)) | 0;
+    hi = (hi + Math.imul(ah5, bh6)) | 0;
+    lo = (lo + Math.imul(al4, bl7)) | 0;
+    mid = (mid + Math.imul(al4, bh7)) | 0;
+    mid = (mid + Math.imul(ah4, bl7)) | 0;
+    hi = (hi + Math.imul(ah4, bh7)) | 0;
+    lo = (lo + Math.imul(al3, bl8)) | 0;
+    mid = (mid + Math.imul(al3, bh8)) | 0;
+    mid = (mid + Math.imul(ah3, bl8)) | 0;
+    hi = (hi + Math.imul(ah3, bh8)) | 0;
+    lo = (lo + Math.imul(al2, bl9)) | 0;
+    mid = (mid + Math.imul(al2, bh9)) | 0;
+    mid = (mid + Math.imul(ah2, bl9)) | 0;
+    hi = (hi + Math.imul(ah2, bh9)) | 0;
+    var w11 = (((c + lo) | 0) + ((mid & 0x1fff) << 13)) | 0;
+    c = (((hi + (mid >>> 13)) | 0) + (w11 >>> 26)) | 0;
+    w11 &= 0x3ffffff;
+    /* k = 12 */
+    lo = Math.imul(al9, bl3);
+    mid = Math.imul(al9, bh3);
+    mid = (mid + Math.imul(ah9, bl3)) | 0;
+    hi = Math.imul(ah9, bh3);
+    lo = (lo + Math.imul(al8, bl4)) | 0;
+    mid = (mid + Math.imul(al8, bh4)) | 0;
+    mid = (mid + Math.imul(ah8, bl4)) | 0;
+    hi = (hi + Math.imul(ah8, bh4)) | 0;
+    lo = (lo + Math.imul(al7, bl5)) | 0;
+    mid = (mid + Math.imul(al7, bh5)) | 0;
+    mid = (mid + Math.imul(ah7, bl5)) | 0;
+    hi = (hi + Math.imul(ah7, bh5)) | 0;
+    lo = (lo + Math.imul(al6, bl6)) | 0;
+    mid = (mid + Math.imul(al6, bh6)) | 0;
+    mid = (mid + Math.imul(ah6, bl6)) | 0;
+    hi = (hi + Math.imul(ah6, bh6)) | 0;
+    lo = (lo + Math.imul(al5, bl7)) | 0;
+    mid = (mid + Math.imul(al5, bh7)) | 0;
+    mid = (mid + Math.imul(ah5, bl7)) | 0;
+    hi = (hi + Math.imul(ah5, bh7)) | 0;
+    lo = (lo + Math.imul(al4, bl8)) | 0;
+    mid = (mid + Math.imul(al4, bh8)) | 0;
+    mid = (mid + Math.imul(ah4, bl8)) | 0;
+    hi = (hi + Math.imul(ah4, bh8)) | 0;
+    lo = (lo + Math.imul(al3, bl9)) | 0;
+    mid = (mid + Math.imul(al3, bh9)) | 0;
+    mid = (mid + Math.imul(ah3, bl9)) | 0;
+    hi = (hi + Math.imul(ah3, bh9)) | 0;
+    var w12 = (((c + lo) | 0) + ((mid & 0x1fff) << 13)) | 0;
+    c = (((hi + (mid >>> 13)) | 0) + (w12 >>> 26)) | 0;
+    w12 &= 0x3ffffff;
+    /* k = 13 */
+    lo = Math.imul(al9, bl4);
+    mid = Math.imul(al9, bh4);
+    mid = (mid + Math.imul(ah9, bl4)) | 0;
+    hi = Math.imul(ah9, bh4);
+    lo = (lo + Math.imul(al8, bl5)) | 0;
+    mid = (mid + Math.imul(al8, bh5)) | 0;
+    mid = (mid + Math.imul(ah8, bl5)) | 0;
+    hi = (hi + Math.imul(ah8, bh5)) | 0;
+    lo = (lo + Math.imul(al7, bl6)) | 0;
+    mid = (mid + Math.imul(al7, bh6)) | 0;
+    mid = (mid + Math.imul(ah7, bl6)) | 0;
+    hi = (hi + Math.imul(ah7, bh6)) | 0;
+    lo = (lo + Math.imul(al6, bl7)) | 0;
+    mid = (mid + Math.imul(al6, bh7)) | 0;
+    mid = (mid + Math.imul(ah6, bl7)) | 0;
+    hi = (hi + Math.imul(ah6, bh7)) | 0;
+    lo = (lo + Math.imul(al5, bl8)) | 0;
+    mid = (mid + Math.imul(al5, bh8)) | 0;
+    mid = (mid + Math.imul(ah5, bl8)) | 0;
+    hi = (hi + Math.imul(ah5, bh8)) | 0;
+    lo = (lo + Math.imul(al4, bl9)) | 0;
+    mid = (mid + Math.imul(al4, bh9)) | 0;
+    mid = (mid + Math.imul(ah4, bl9)) | 0;
+    hi = (hi + Math.imul(ah4, bh9)) | 0;
+    var w13 = (((c + lo) | 0) + ((mid & 0x1fff) << 13)) | 0;
+    c = (((hi + (mid >>> 13)) | 0) + (w13 >>> 26)) | 0;
+    w13 &= 0x3ffffff;
+    /* k = 14 */
+    lo = Math.imul(al9, bl5);
+    mid = Math.imul(al9, bh5);
+    mid = (mid + Math.imul(ah9, bl5)) | 0;
+    hi = Math.imul(ah9, bh5);
+    lo = (lo + Math.imul(al8, bl6)) | 0;
+    mid = (mid + Math.imul(al8, bh6)) | 0;
+    mid = (mid + Math.imul(ah8, bl6)) | 0;
+    hi = (hi + Math.imul(ah8, bh6)) | 0;
+    lo = (lo + Math.imul(al7, bl7)) | 0;
+    mid = (mid + Math.imul(al7, bh7)) | 0;
+    mid = (mid + Math.imul(ah7, bl7)) | 0;
+    hi = (hi + Math.imul(ah7, bh7)) | 0;
+    lo = (lo + Math.imul(al6, bl8)) | 0;
+    mid = (mid + Math.imul(al6, bh8)) | 0;
+    mid = (mid + Math.imul(ah6, bl8)) | 0;
+    hi = (hi + Math.imul(ah6, bh8)) | 0;
+    lo = (lo + Math.imul(al5, bl9)) | 0;
+    mid = (mid + Math.imul(al5, bh9)) | 0;
+    mid = (mid + Math.imul(ah5, bl9)) | 0;
+    hi = (hi + Math.imul(ah5, bh9)) | 0;
+    var w14 = (((c + lo) | 0) + ((mid & 0x1fff) << 13)) | 0;
+    c = (((hi + (mid >>> 13)) | 0) + (w14 >>> 26)) | 0;
+    w14 &= 0x3ffffff;
+    /* k = 15 */
+    lo = Math.imul(al9, bl6);
+    mid = Math.imul(al9, bh6);
+    mid = (mid + Math.imul(ah9, bl6)) | 0;
+    hi = Math.imul(ah9, bh6);
+    lo = (lo + Math.imul(al8, bl7)) | 0;
+    mid = (mid + Math.imul(al8, bh7)) | 0;
+    mid = (mid + Math.imul(ah8, bl7)) | 0;
+    hi = (hi + Math.imul(ah8, bh7)) | 0;
+    lo = (lo + Math.imul(al7, bl8)) | 0;
+    mid = (mid + Math.imul(al7, bh8)) | 0;
+    mid = (mid + Math.imul(ah7, bl8)) | 0;
+    hi = (hi + Math.imul(ah7, bh8)) | 0;
+    lo = (lo + Math.imul(al6, bl9)) | 0;
+    mid = (mid + Math.imul(al6, bh9)) | 0;
+    mid = (mid + Math.imul(ah6, bl9)) | 0;
+    hi = (hi + Math.imul(ah6, bh9)) | 0;
+    var w15 = (((c + lo) | 0) + ((mid & 0x1fff) << 13)) | 0;
+    c = (((hi + (mid >>> 13)) | 0) + (w15 >>> 26)) | 0;
+    w15 &= 0x3ffffff;
+    /* k = 16 */
+    lo = Math.imul(al9, bl7);
+    mid = Math.imul(al9, bh7);
+    mid = (mid + Math.imul(ah9, bl7)) | 0;
+    hi = Math.imul(ah9, bh7);
+    lo = (lo + Math.imul(al8, bl8)) | 0;
+    mid = (mid + Math.imul(al8, bh8)) | 0;
+    mid = (mid + Math.imul(ah8, bl8)) | 0;
+    hi = (hi + Math.imul(ah8, bh8)) | 0;
+    lo = (lo + Math.imul(al7, bl9)) | 0;
+    mid = (mid + Math.imul(al7, bh9)) | 0;
+    mid = (mid + Math.imul(ah7, bl9)) | 0;
+    hi = (hi + Math.imul(ah7, bh9)) | 0;
+    var w16 = (((c + lo) | 0) + ((mid & 0x1fff) << 13)) | 0;
+    c = (((hi + (mid >>> 13)) | 0) + (w16 >>> 26)) | 0;
+    w16 &= 0x3ffffff;
+    /* k = 17 */
+    lo = Math.imul(al9, bl8);
+    mid = Math.imul(al9, bh8);
+    mid = (mid + Math.imul(ah9, bl8)) | 0;
+    hi = Math.imul(ah9, bh8);
+    lo = (lo + Math.imul(al8, bl9)) | 0;
+    mid = (mid + Math.imul(al8, bh9)) | 0;
+    mid = (mid + Math.imul(ah8, bl9)) | 0;
+    hi = (hi + Math.imul(ah8, bh9)) | 0;
+    var w17 = (((c + lo) | 0) + ((mid & 0x1fff) << 13)) | 0;
+    c = (((hi + (mid >>> 13)) | 0) + (w17 >>> 26)) | 0;
+    w17 &= 0x3ffffff;
+    /* k = 18 */
+    lo = Math.imul(al9, bl9);
+    mid = Math.imul(al9, bh9);
+    mid = (mid + Math.imul(ah9, bl9)) | 0;
+    hi = Math.imul(ah9, bh9);
+    var w18 = (((c + lo) | 0) + ((mid & 0x1fff) << 13)) | 0;
+    c = (((hi + (mid >>> 13)) | 0) + (w18 >>> 26)) | 0;
+    w18 &= 0x3ffffff;
+    o[0] = w0;
+    o[1] = w1;
+    o[2] = w2;
+    o[3] = w3;
+    o[4] = w4;
+    o[5] = w5;
+    o[6] = w6;
+    o[7] = w7;
+    o[8] = w8;
+    o[9] = w9;
+    o[10] = w10;
+    o[11] = w11;
+    o[12] = w12;
+    o[13] = w13;
+    o[14] = w14;
+    o[15] = w15;
+    o[16] = w16;
+    o[17] = w17;
+    o[18] = w18;
+    if (c !== 0) {
+      o[19] = c;
+      out.length++;
+    }
+    return out;
+  };
+
+  // Polyfill comb
+  if (!Math.imul) {
+    comb10MulTo = smallMulTo;
+  }
+
+  function bigMulTo (self, num, out) {
+    out.negative = num.negative ^ self.negative;
+    out.length = self.length + num.length;
+
+    var carry = 0;
+    var hncarry = 0;
+    for (var k = 0; k < out.length - 1; k++) {
+      // Sum all words with the same `i + j = k` and accumulate `ncarry`,
+      // note that ncarry could be >= 0x3ffffff
+      var ncarry = hncarry;
+      hncarry = 0;
+      var rword = carry & 0x3ffffff;
+      var maxJ = Math.min(k, num.length - 1);
+      for (var j = Math.max(0, k - self.length + 1); j <= maxJ; j++) {
+        var i = k - j;
+        var a = self.words[i] | 0;
+        var b = num.words[j] | 0;
+        var r = a * b;
+
+        var lo = r & 0x3ffffff;
+        ncarry = (ncarry + ((r / 0x4000000) | 0)) | 0;
+        lo = (lo + rword) | 0;
+        rword = lo & 0x3ffffff;
+        ncarry = (ncarry + (lo >>> 26)) | 0;
+
+        hncarry += ncarry >>> 26;
+        ncarry &= 0x3ffffff;
+      }
+      out.words[k] = rword;
+      carry = ncarry;
+      ncarry = hncarry;
+    }
+    if (carry !== 0) {
+      out.words[k] = carry;
+    } else {
+      out.length--;
+    }
+
+    return out.strip();
+  }
+
+  function jumboMulTo (self, num, out) {
+    var fftm = new FFTM();
+    return fftm.mulp(self, num, out);
+  }
+
+  BN.prototype.mulTo = function mulTo (num, out) {
+    var res;
+    var len = this.length + num.length;
+    if (this.length === 10 && num.length === 10) {
+      res = comb10MulTo(this, num, out);
+    } else if (len < 63) {
+      res = smallMulTo(this, num, out);
+    } else if (len < 1024) {
+      res = bigMulTo(this, num, out);
+    } else {
+      res = jumboMulTo(this, num, out);
+    }
+
+    return res;
+  };
+
+  // Cooley-Tukey algorithm for FFT
+  // slightly revisited to rely on looping instead of recursion
+
+  function FFTM (x, y) {
+    this.x = x;
+    this.y = y;
+  }
+
+  FFTM.prototype.makeRBT = function makeRBT (N) {
+    var t = new Array(N);
+    var l = BN.prototype._countBits(N) - 1;
+    for (var i = 0; i < N; i++) {
+      t[i] = this.revBin(i, l, N);
+    }
+
+    return t;
+  };
+
+  // Returns binary-reversed representation of `x`
+  FFTM.prototype.revBin = function revBin (x, l, N) {
+    if (x === 0 || x === N - 1) return x;
+
+    var rb = 0;
+    for (var i = 0; i < l; i++) {
+      rb |= (x & 1) << (l - i - 1);
+      x >>= 1;
+    }
+
+    return rb;
+  };
+
+  // Performs "tweedling" phase, therefore 'emulating'
+  // behaviour of the recursive algorithm
+  FFTM.prototype.permute = function permute (rbt, rws, iws, rtws, itws, N) {
+    for (var i = 0; i < N; i++) {
+      rtws[i] = rws[rbt[i]];
+      itws[i] = iws[rbt[i]];
+    }
+  };
+
+  FFTM.prototype.transform = function transform (rws, iws, rtws, itws, N, rbt) {
+    this.permute(rbt, rws, iws, rtws, itws, N);
+
+    for (var s = 1; s < N; s <<= 1) {
+      var l = s << 1;
+
+      var rtwdf = Math.cos(2 * Math.PI / l);
+      var itwdf = Math.sin(2 * Math.PI / l);
+
+      for (var p = 0; p < N; p += l) {
+        var rtwdf_ = rtwdf;
+        var itwdf_ = itwdf;
+
+        for (var j = 0; j < s; j++) {
+          var re = rtws[p + j];
+          var ie = itws[p + j];
+
+          var ro = rtws[p + j + s];
+          var io = itws[p + j + s];
+
+          var rx = rtwdf_ * ro - itwdf_ * io;
+
+          io = rtwdf_ * io + itwdf_ * ro;
+          ro = rx;
+
+          rtws[p + j] = re + ro;
+          itws[p + j] = ie + io;
+
+          rtws[p + j + s] = re - ro;
+          itws[p + j + s] = ie - io;
+
+          /* jshint maxdepth : false */
+          if (j !== l) {
+            rx = rtwdf * rtwdf_ - itwdf * itwdf_;
+
+            itwdf_ = rtwdf * itwdf_ + itwdf * rtwdf_;
+            rtwdf_ = rx;
+          }
+        }
+      }
+    }
+  };
+
+  FFTM.prototype.guessLen13b = function guessLen13b (n, m) {
+    var N = Math.max(m, n) | 1;
+    var odd = N & 1;
+    var i = 0;
+    for (N = N / 2 | 0; N; N = N >>> 1) {
+      i++;
+    }
+
+    return 1 << i + 1 + odd;
+  };
+
+  FFTM.prototype.conjugate = function conjugate (rws, iws, N) {
+    if (N <= 1) return;
+
+    for (var i = 0; i < N / 2; i++) {
+      var t = rws[i];
+
+      rws[i] = rws[N - i - 1];
+      rws[N - i - 1] = t;
+
+      t = iws[i];
+
+      iws[i] = -iws[N - i - 1];
+      iws[N - i - 1] = -t;
+    }
+  };
+
+  FFTM.prototype.normalize13b = function normalize13b (ws, N) {
+    var carry = 0;
+    for (var i = 0; i < N / 2; i++) {
+      var w = Math.round(ws[2 * i + 1] / N) * 0x2000 +
+        Math.round(ws[2 * i] / N) +
+        carry;
+
+      ws[i] = w & 0x3ffffff;
+
+      if (w < 0x4000000) {
+        carry = 0;
+      } else {
+        carry = w / 0x4000000 | 0;
+      }
+    }
+
+    return ws;
+  };
+
+  FFTM.prototype.convert13b = function convert13b (ws, len, rws, N) {
+    var carry = 0;
+    for (var i = 0; i < len; i++) {
+      carry = carry + (ws[i] | 0);
+
+      rws[2 * i] = carry & 0x1fff; carry = carry >>> 13;
+      rws[2 * i + 1] = carry & 0x1fff; carry = carry >>> 13;
+    }
+
+    // Pad with zeroes
+    for (i = 2 * len; i < N; ++i) {
+      rws[i] = 0;
+    }
+
+    assert(carry === 0);
+    assert((carry & ~0x1fff) === 0);
+  };
+
+  FFTM.prototype.stub = function stub (N) {
+    var ph = new Array(N);
+    for (var i = 0; i < N; i++) {
+      ph[i] = 0;
+    }
+
+    return ph;
+  };
+
+  FFTM.prototype.mulp = function mulp (x, y, out) {
+    var N = 2 * this.guessLen13b(x.length, y.length);
+
+    var rbt = this.makeRBT(N);
+
+    var _ = this.stub(N);
+
+    var rws = new Array(N);
+    var rwst = new Array(N);
+    var iwst = new Array(N);
+
+    var nrws = new Array(N);
+    var nrwst = new Array(N);
+    var niwst = new Array(N);
+
+    var rmws = out.words;
+    rmws.length = N;
+
+    this.convert13b(x.words, x.length, rws, N);
+    this.convert13b(y.words, y.length, nrws, N);
+
+    this.transform(rws, _, rwst, iwst, N, rbt);
+    this.transform(nrws, _, nrwst, niwst, N, rbt);
+
+    for (var i = 0; i < N; i++) {
+      var rx = rwst[i] * nrwst[i] - iwst[i] * niwst[i];
+      iwst[i] = rwst[i] * niwst[i] + iwst[i] * nrwst[i];
+      rwst[i] = rx;
+    }
+
+    this.conjugate(rwst, iwst, N);
+    this.transform(rwst, iwst, rmws, _, N, rbt);
+    this.conjugate(rmws, _, N);
+    this.normalize13b(rmws, N);
+
+    out.negative = x.negative ^ y.negative;
+    out.length = x.length + y.length;
+    return out.strip();
+  };
+
+  // Multiply `this` by `num`
+  BN.prototype.mul = function mul (num) {
+    var out = new BN(null);
+    out.words = new Array(this.length + num.length);
+    return this.mulTo(num, out);
+  };
+
+  // Multiply employing FFT
+  BN.prototype.mulf = function mulf (num) {
+    var out = new BN(null);
+    out.words = new Array(this.length + num.length);
+    return jumboMulTo(this, num, out);
+  };
+
+  // In-place Multiplication
+  BN.prototype.imul = function imul (num) {
+    return this.clone().mulTo(num, this);
+  };
+
+  BN.prototype.imuln = function imuln (num) {
+    assert(typeof num === 'number');
+    assert(num < 0x4000000);
+
+    // Carry
+    var carry = 0;
+    for (var i = 0; i < this.length; i++) {
+      var w = (this.words[i] | 0) * num;
+      var lo = (w & 0x3ffffff) + (carry & 0x3ffffff);
+      carry >>= 26;
+      carry += (w / 0x4000000) | 0;
+      // NOTE: lo is 27bit maximum
+      carry += lo >>> 26;
+      this.words[i] = lo & 0x3ffffff;
+    }
+
+    if (carry !== 0) {
+      this.words[i] = carry;
+      this.length++;
+    }
+
+    return this;
+  };
+
+  BN.prototype.muln = function muln (num) {
+    return this.clone().imuln(num);
+  };
+
+  // `this` * `this`
+  BN.prototype.sqr = function sqr () {
+    return this.mul(this);
+  };
+
+  // `this` * `this` in-place
+  BN.prototype.isqr = function isqr () {
+    return this.imul(this.clone());
+  };
+
+  // Math.pow(`this`, `num`)
+  BN.prototype.pow = function pow (num) {
+    var w = toBitArray(num);
+    if (w.length === 0) return new BN(1);
+
+    // Skip leading zeroes
+    var res = this;
+    for (var i = 0; i < w.length; i++, res = res.sqr()) {
+      if (w[i] !== 0) break;
+    }
+
+    if (++i < w.length) {
+      for (var q = res.sqr(); i < w.length; i++, q = q.sqr()) {
+        if (w[i] === 0) continue;
+
+        res = res.mul(q);
+      }
+    }
+
+    return res;
+  };
+
+  // Shift-left in-place
+  BN.prototype.iushln = function iushln (bits) {
+    assert(typeof bits === 'number' && bits >= 0);
+    var r = bits % 26;
+    var s = (bits - r) / 26;
+    var carryMask = (0x3ffffff >>> (26 - r)) << (26 - r);
+    var i;
+
+    if (r !== 0) {
+      var carry = 0;
+
+      for (i = 0; i < this.length; i++) {
+        var newCarry = this.words[i] & carryMask;
+        var c = ((this.words[i] | 0) - newCarry) << r;
+        this.words[i] = c | carry;
+        carry = newCarry >>> (26 - r);
+      }
+
+      if (carry) {
+        this.words[i] = carry;
+        this.length++;
+      }
+    }
+
+    if (s !== 0) {
+      for (i = this.length - 1; i >= 0; i--) {
+        this.words[i + s] = this.words[i];
+      }
+
+      for (i = 0; i < s; i++) {
+        this.words[i] = 0;
+      }
+
+      this.length += s;
+    }
+
+    return this.strip();
+  };
+
+  BN.prototype.ishln = function ishln (bits) {
+    // TODO(indutny): implement me
+    assert(this.negative === 0);
+    return this.iushln(bits);
+  };
+
+  // Shift-right in-place
+  // NOTE: `hint` is a lowest bit before trailing zeroes
+  // NOTE: if `extended` is present - it will be filled with destroyed bits
+  BN.prototype.iushrn = function iushrn (bits, hint, extended) {
+    assert(typeof bits === 'number' && bits >= 0);
+    var h;
+    if (hint) {
+      h = (hint - (hint % 26)) / 26;
+    } else {
+      h = 0;
+    }
+
+    var r = bits % 26;
+    var s = Math.min((bits - r) / 26, this.length);
+    var mask = 0x3ffffff ^ ((0x3ffffff >>> r) << r);
+    var maskedWords = extended;
+
+    h -= s;
+    h = Math.max(0, h);
+
+    // Extended mode, copy masked part
+    if (maskedWords) {
+      for (var i = 0; i < s; i++) {
+        maskedWords.words[i] = this.words[i];
+      }
+      maskedWords.length = s;
+    }
+
+    if (s === 0) {
+      // No-op, we should not move anything at all
+    } else if (this.length > s) {
+      this.length -= s;
+      for (i = 0; i < this.length; i++) {
+        this.words[i] = this.words[i + s];
+      }
+    } else {
+      this.words[0] = 0;
+      this.length = 1;
+    }
+
+    var carry = 0;
+    for (i = this.length - 1; i >= 0 && (carry !== 0 || i >= h); i--) {
+      var word = this.words[i] | 0;
+      this.words[i] = (carry << (26 - r)) | (word >>> r);
+      carry = word & mask;
+    }
+
+    // Push carried bits as a mask
+    if (maskedWords && carry !== 0) {
+      maskedWords.words[maskedWords.length++] = carry;
+    }
+
+    if (this.length === 0) {
+      this.words[0] = 0;
+      this.length = 1;
+    }
+
+    return this.strip();
+  };
+
+  BN.prototype.ishrn = function ishrn (bits, hint, extended) {
+    // TODO(indutny): implement me
+    assert(this.negative === 0);
+    return this.iushrn(bits, hint, extended);
+  };
+
+  // Shift-left
+  BN.prototype.shln = function shln (bits) {
+    return this.clone().ishln(bits);
+  };
+
+  BN.prototype.ushln = function ushln (bits) {
+    return this.clone().iushln(bits);
+  };
+
+  // Shift-right
+  BN.prototype.shrn = function shrn (bits) {
+    return this.clone().ishrn(bits);
+  };
+
+  BN.prototype.ushrn = function ushrn (bits) {
+    return this.clone().iushrn(bits);
+  };
+
+  // Test if n bit is set
+  BN.prototype.testn = function testn (bit) {
+    assert(typeof bit === 'number' && bit >= 0);
+    var r = bit % 26;
+    var s = (bit - r) / 26;
+    var q = 1 << r;
+
+    // Fast case: bit is much higher than all existing words
+    if (this.length <= s) return false;
+
+    // Check bit and return
+    var w = this.words[s];
+
+    return !!(w & q);
+  };
+
+  // Return only lowers bits of number (in-place)
+  BN.prototype.imaskn = function imaskn (bits) {
+    assert(typeof bits === 'number' && bits >= 0);
+    var r = bits % 26;
+    var s = (bits - r) / 26;
+
+    assert(this.negative === 0, 'imaskn works only with positive numbers');
+
+    if (this.length <= s) {
+      return this;
+    }
+
+    if (r !== 0) {
+      s++;
+    }
+    this.length = Math.min(s, this.length);
+
+    if (r !== 0) {
+      var mask = 0x3ffffff ^ ((0x3ffffff >>> r) << r);
+      this.words[this.length - 1] &= mask;
+    }
+
+    return this.strip();
+  };
+
+  // Return only lowers bits of number
+  BN.prototype.maskn = function maskn (bits) {
+    return this.clone().imaskn(bits);
+  };
+
+  // Add plain number `num` to `this`
+  BN.prototype.iaddn = function iaddn (num) {
+    assert(typeof num === 'number');
+    assert(num < 0x4000000);
+    if (num < 0) return this.isubn(-num);
+
+    // Possible sign change
+    if (this.negative !== 0) {
+      if (this.length === 1 && (this.words[0] | 0) < num) {
+        this.words[0] = num - (this.words[0] | 0);
+        this.negative = 0;
+        return this;
+      }
+
+      this.negative = 0;
+      this.isubn(num);
+      this.negative = 1;
+      return this;
+    }
+
+    // Add without checks
+    return this._iaddn(num);
+  };
+
+  BN.prototype._iaddn = function _iaddn (num) {
+    this.words[0] += num;
+
+    // Carry
+    for (var i = 0; i < this.length && this.words[i] >= 0x4000000; i++) {
+      this.words[i] -= 0x4000000;
+      if (i === this.length - 1) {
+        this.words[i + 1] = 1;
+      } else {
+        this.words[i + 1]++;
+      }
+    }
+    this.length = Math.max(this.length, i + 1);
+
+    return this;
+  };
+
+  // Subtract plain number `num` from `this`
+  BN.prototype.isubn = function isubn (num) {
+    assert(typeof num === 'number');
+    assert(num < 0x4000000);
+    if (num < 0) return this.iaddn(-num);
+
+    if (this.negative !== 0) {
+      this.negative = 0;
+      this.iaddn(num);
+      this.negative = 1;
+      return this;
+    }
+
+    this.words[0] -= num;
+
+    if (this.length === 1 && this.words[0] < 0) {
+      this.words[0] = -this.words[0];
+      this.negative = 1;
+    } else {
+      // Carry
+      for (var i = 0; i < this.length && this.words[i] < 0; i++) {
+        this.words[i] += 0x4000000;
+        this.words[i + 1] -= 1;
+      }
+    }
+
+    return this.strip();
+  };
+
+  BN.prototype.addn = function addn (num) {
+    return this.clone().iaddn(num);
+  };
+
+  BN.prototype.subn = function subn (num) {
+    return this.clone().isubn(num);
+  };
+
+  BN.prototype.iabs = function iabs () {
+    this.negative = 0;
+
+    return this;
+  };
+
+  BN.prototype.abs = function abs () {
+    return this.clone().iabs();
+  };
+
+  BN.prototype._ishlnsubmul = function _ishlnsubmul (num, mul, shift) {
+    var len = num.length + shift;
+    var i;
+
+    this._expand(len);
+
+    var w;
+    var carry = 0;
+    for (i = 0; i < num.length; i++) {
+      w = (this.words[i + shift] | 0) + carry;
+      var right = (num.words[i] | 0) * mul;
+      w -= right & 0x3ffffff;
+      carry = (w >> 26) - ((right / 0x4000000) | 0);
+      this.words[i + shift] = w & 0x3ffffff;
+    }
+    for (; i < this.length - shift; i++) {
+      w = (this.words[i + shift] | 0) + carry;
+      carry = w >> 26;
+      this.words[i + shift] = w & 0x3ffffff;
+    }
+
+    if (carry === 0) return this.strip();
+
+    // Subtraction overflow
+    assert(carry === -1);
+    carry = 0;
+    for (i = 0; i < this.length; i++) {
+      w = -(this.words[i] | 0) + carry;
+      carry = w >> 26;
+      this.words[i] = w & 0x3ffffff;
+    }
+    this.negative = 1;
+
+    return this.strip();
+  };
+
+  BN.prototype._wordDiv = function _wordDiv (num, mode) {
+    var shift = this.length - num.length;
+
+    var a = this.clone();
+    var b = num;
+
+    // Normalize
+    var bhi = b.words[b.length - 1] | 0;
+    var bhiBits = this._countBits(bhi);
+    shift = 26 - bhiBits;
+    if (shift !== 0) {
+      b = b.ushln(shift);
+      a.iushln(shift);
+      bhi = b.words[b.length - 1] | 0;
+    }
+
+    // Initialize quotient
+    var m = a.length - b.length;
+    var q;
+
+    if (mode !== 'mod') {
+      q = new BN(null);
+      q.length = m + 1;
+      q.words = new Array(q.length);
+      for (var i = 0; i < q.length; i++) {
+        q.words[i] = 0;
+      }
+    }
+
+    var diff = a.clone()._ishlnsubmul(b, 1, m);
+    if (diff.negative === 0) {
+      a = diff;
+      if (q) {
+        q.words[m] = 1;
+      }
+    }
+
+    for (var j = m - 1; j >= 0; j--) {
+      var qj = (a.words[b.length + j] | 0) * 0x4000000 +
+        (a.words[b.length + j - 1] | 0);
+
+      // NOTE: (qj / bhi) is (0x3ffffff * 0x4000000 + 0x3ffffff) / 0x2000000 max
+      // (0x7ffffff)
+      qj = Math.min((qj / bhi) | 0, 0x3ffffff);
+
+      a._ishlnsubmul(b, qj, j);
+      while (a.negative !== 0) {
+        qj--;
+        a.negative = 0;
+        a._ishlnsubmul(b, 1, j);
+        if (!a.isZero()) {
+          a.negative ^= 1;
+        }
+      }
+      if (q) {
+        q.words[j] = qj;
+      }
+    }
+    if (q) {
+      q.strip();
+    }
+    a.strip();
+
+    // Denormalize
+    if (mode !== 'div' && shift !== 0) {
+      a.iushrn(shift);
+    }
+
+    return {
+      div: q || null,
+      mod: a
+    };
+  };
+
+  // NOTE: 1) `mode` can be set to `mod` to request mod only,
+  //       to `div` to request div only, or be absent to
+  //       request both div & mod
+  //       2) `positive` is true if unsigned mod is requested
+  BN.prototype.divmod = function divmod (num, mode, positive) {
+    assert(!num.isZero());
+
+    if (this.isZero()) {
+      return {
+        div: new BN(0),
+        mod: new BN(0)
+      };
+    }
+
+    var div, mod, res;
+    if (this.negative !== 0 && num.negative === 0) {
+      res = this.neg().divmod(num, mode);
+
+      if (mode !== 'mod') {
+        div = res.div.neg();
+      }
+
+      if (mode !== 'div') {
+        mod = res.mod.neg();
+        if (positive && mod.negative !== 0) {
+          mod.iadd(num);
+        }
+      }
+
+      return {
+        div: div,
+        mod: mod
+      };
+    }
+
+    if (this.negative === 0 && num.negative !== 0) {
+      res = this.divmod(num.neg(), mode);
+
+      if (mode !== 'mod') {
+        div = res.div.neg();
+      }
+
+      return {
+        div: div,
+        mod: res.mod
+      };
+    }
+
+    if ((this.negative & num.negative) !== 0) {
+      res = this.neg().divmod(num.neg(), mode);
+
+      if (mode !== 'div') {
+        mod = res.mod.neg();
+        if (positive && mod.negative !== 0) {
+          mod.isub(num);
+        }
+      }
+
+      return {
+        div: res.div,
+        mod: mod
+      };
+    }
+
+    // Both numbers are positive at this point
+
+    // Strip both numbers to approximate shift value
+    if (num.length > this.length || this.cmp(num) < 0) {
+      return {
+        div: new BN(0),
+        mod: this
+      };
+    }
+
+    // Very short reduction
+    if (num.length === 1) {
+      if (mode === 'div') {
+        return {
+          div: this.divn(num.words[0]),
+          mod: null
+        };
+      }
+
+      if (mode === 'mod') {
+        return {
+          div: null,
+          mod: new BN(this.modn(num.words[0]))
+        };
+      }
+
+      return {
+        div: this.divn(num.words[0]),
+        mod: new BN(this.modn(num.words[0]))
+      };
+    }
+
+    return this._wordDiv(num, mode);
+  };
+
+  // Find `this` / `num`
+  BN.prototype.div = function div (num) {
+    return this.divmod(num, 'div', false).div;
+  };
+
+  // Find `this` % `num`
+  BN.prototype.mod = function mod (num) {
+    return this.divmod(num, 'mod', false).mod;
+  };
+
+  BN.prototype.umod = function umod (num) {
+    return this.divmod(num, 'mod', true).mod;
+  };
+
+  // Find Round(`this` / `num`)
+  BN.prototype.divRound = function divRound (num) {
+    var dm = this.divmod(num);
+
+    // Fast case - exact division
+    if (dm.mod.isZero()) return dm.div;
+
+    var mod = dm.div.negative !== 0 ? dm.mod.isub(num) : dm.mod;
+
+    var half = num.ushrn(1);
+    var r2 = num.andln(1);
+    var cmp = mod.cmp(half);
+
+    // Round down
+    if (cmp < 0 || r2 === 1 && cmp === 0) return dm.div;
+
+    // Round up
+    return dm.div.negative !== 0 ? dm.div.isubn(1) : dm.div.iaddn(1);
+  };
+
+  BN.prototype.modn = function modn (num) {
+    assert(num <= 0x3ffffff);
+    var p = (1 << 26) % num;
+
+    var acc = 0;
+    for (var i = this.length - 1; i >= 0; i--) {
+      acc = (p * acc + (this.words[i] | 0)) % num;
+    }
+
+    return acc;
+  };
+
+  // In-place division by number
+  BN.prototype.idivn = function idivn (num) {
+    assert(num <= 0x3ffffff);
+
+    var carry = 0;
+    for (var i = this.length - 1; i >= 0; i--) {
+      var w = (this.words[i] | 0) + carry * 0x4000000;
+      this.words[i] = (w / num) | 0;
+      carry = w % num;
+    }
+
+    return this.strip();
+  };
+
+  BN.prototype.divn = function divn (num) {
+    return this.clone().idivn(num);
+  };
+
+  BN.prototype.egcd = function egcd (p) {
+    assert(p.negative === 0);
+    assert(!p.isZero());
+
+    var x = this;
+    var y = p.clone();
+
+    if (x.negative !== 0) {
+      x = x.umod(p);
+    } else {
+      x = x.clone();
+    }
+
+    // A * x + B * y = x
+    var A = new BN(1);
+    var B = new BN(0);
+
+    // C * x + D * y = y
+    var C = new BN(0);
+    var D = new BN(1);
+
+    var g = 0;
+
+    while (x.isEven() && y.isEven()) {
+      x.iushrn(1);
+      y.iushrn(1);
+      ++g;
+    }
+
+    var yp = y.clone();
+    var xp = x.clone();
+
+    while (!x.isZero()) {
+      for (var i = 0, im = 1; (x.words[0] & im) === 0 && i < 26; ++i, im <<= 1);
+      if (i > 0) {
+        x.iushrn(i);
+        while (i-- > 0) {
+          if (A.isOdd() || B.isOdd()) {
+            A.iadd(yp);
+            B.isub(xp);
+          }
+
+          A.iushrn(1);
+          B.iushrn(1);
+        }
+      }
+
+      for (var j = 0, jm = 1; (y.words[0] & jm) === 0 && j < 26; ++j, jm <<= 1);
+      if (j > 0) {
+        y.iushrn(j);
+        while (j-- > 0) {
+          if (C.isOdd() || D.isOdd()) {
+            C.iadd(yp);
+            D.isub(xp);
+          }
+
+          C.iushrn(1);
+          D.iushrn(1);
+        }
+      }
+
+      if (x.cmp(y) >= 0) {
+        x.isub(y);
+        A.isub(C);
+        B.isub(D);
+      } else {
+        y.isub(x);
+        C.isub(A);
+        D.isub(B);
+      }
+    }
+
+    return {
+      a: C,
+      b: D,
+      gcd: y.iushln(g)
+    };
+  };
+
+  // This is reduced incarnation of the binary EEA
+  // above, designated to invert members of the
+  // _prime_ fields F(p) at a maximal speed
+  BN.prototype._invmp = function _invmp (p) {
+    assert(p.negative === 0);
+    assert(!p.isZero());
+
+    var a = this;
+    var b = p.clone();
+
+    if (a.negative !== 0) {
+      a = a.umod(p);
+    } else {
+      a = a.clone();
+    }
+
+    var x1 = new BN(1);
+    var x2 = new BN(0);
+
+    var delta = b.clone();
+
+    while (a.cmpn(1) > 0 && b.cmpn(1) > 0) {
+      for (var i = 0, im = 1; (a.words[0] & im) === 0 && i < 26; ++i, im <<= 1);
+      if (i > 0) {
+        a.iushrn(i);
+        while (i-- > 0) {
+          if (x1.isOdd()) {
+            x1.iadd(delta);
+          }
+
+          x1.iushrn(1);
+        }
+      }
+
+      for (var j = 0, jm = 1; (b.words[0] & jm) === 0 && j < 26; ++j, jm <<= 1);
+      if (j > 0) {
+        b.iushrn(j);
+        while (j-- > 0) {
+          if (x2.isOdd()) {
+            x2.iadd(delta);
+          }
+
+          x2.iushrn(1);
+        }
+      }
+
+      if (a.cmp(b) >= 0) {
+        a.isub(b);
+        x1.isub(x2);
+      } else {
+        b.isub(a);
+        x2.isub(x1);
+      }
+    }
+
+    var res;
+    if (a.cmpn(1) === 0) {
+      res = x1;
+    } else {
+      res = x2;
+    }
+
+    if (res.cmpn(0) < 0) {
+      res.iadd(p);
+    }
+
+    return res;
+  };
+
+  BN.prototype.gcd = function gcd (num) {
+    if (this.isZero()) return num.abs();
+    if (num.isZero()) return this.abs();
+
+    var a = this.clone();
+    var b = num.clone();
+    a.negative = 0;
+    b.negative = 0;
+
+    // Remove common factor of two
+    for (var shift = 0; a.isEven() && b.isEven(); shift++) {
+      a.iushrn(1);
+      b.iushrn(1);
+    }
+
+    do {
+      while (a.isEven()) {
+        a.iushrn(1);
+      }
+      while (b.isEven()) {
+        b.iushrn(1);
+      }
+
+      var r = a.cmp(b);
+      if (r < 0) {
+        // Swap `a` and `b` to make `a` always bigger than `b`
+        var t = a;
+        a = b;
+        b = t;
+      } else if (r === 0 || b.cmpn(1) === 0) {
+        break;
+      }
+
+      a.isub(b);
+    } while (true);
+
+    return b.iushln(shift);
+  };
+
+  // Invert number in the field F(num)
+  BN.prototype.invm = function invm (num) {
+    return this.egcd(num).a.umod(num);
+  };
+
+  BN.prototype.isEven = function isEven () {
+    return (this.words[0] & 1) === 0;
+  };
+
+  BN.prototype.isOdd = function isOdd () {
+    return (this.words[0] & 1) === 1;
+  };
+
+  // And first word and num
+  BN.prototype.andln = function andln (num) {
+    return this.words[0] & num;
+  };
+
+  // Increment at the bit position in-line
+  BN.prototype.bincn = function bincn (bit) {
+    assert(typeof bit === 'number');
+    var r = bit % 26;
+    var s = (bit - r) / 26;
+    var q = 1 << r;
+
+    // Fast case: bit is much higher than all existing words
+    if (this.length <= s) {
+      this._expand(s + 1);
+      this.words[s] |= q;
+      return this;
+    }
+
+    // Add bit and propagate, if needed
+    var carry = q;
+    for (var i = s; carry !== 0 && i < this.length; i++) {
+      var w = this.words[i] | 0;
+      w += carry;
+      carry = w >>> 26;
+      w &= 0x3ffffff;
+      this.words[i] = w;
+    }
+    if (carry !== 0) {
+      this.words[i] = carry;
+      this.length++;
+    }
+    return this;
+  };
+
+  BN.prototype.isZero = function isZero () {
+    return this.length === 1 && this.words[0] === 0;
+  };
+
+  BN.prototype.cmpn = function cmpn (num) {
+    var negative = num < 0;
+
+    if (this.negative !== 0 && !negative) return -1;
+    if (this.negative === 0 && negative) return 1;
+
+    this.strip();
+
+    var res;
+    if (this.length > 1) {
+      res = 1;
+    } else {
+      if (negative) {
+        num = -num;
+      }
+
+      assert(num <= 0x3ffffff, 'Number is too big');
+
+      var w = this.words[0] | 0;
+      res = w === num ? 0 : w < num ? -1 : 1;
+    }
+    if (this.negative !== 0) return -res | 0;
+    return res;
+  };
+
+  // Compare two numbers and return:
+  // 1 - if `this` > `num`
+  // 0 - if `this` == `num`
+  // -1 - if `this` < `num`
+  BN.prototype.cmp = function cmp (num) {
+    if (this.negative !== 0 && num.negative === 0) return -1;
+    if (this.negative === 0 && num.negative !== 0) return 1;
+
+    var res = this.ucmp(num);
+    if (this.negative !== 0) return -res | 0;
+    return res;
+  };
+
+  // Unsigned comparison
+  BN.prototype.ucmp = function ucmp (num) {
+    // At this point both numbers have the same sign
+    if (this.length > num.length) return 1;
+    if (this.length < num.length) return -1;
+
+    var res = 0;
+    for (var i = this.length - 1; i >= 0; i--) {
+      var a = this.words[i] | 0;
+      var b = num.words[i] | 0;
+
+      if (a === b) continue;
+      if (a < b) {
+        res = -1;
+      } else if (a > b) {
+        res = 1;
+      }
+      break;
+    }
+    return res;
+  };
+
+  BN.prototype.gtn = function gtn (num) {
+    return this.cmpn(num) === 1;
+  };
+
+  BN.prototype.gt = function gt (num) {
+    return this.cmp(num) === 1;
+  };
+
+  BN.prototype.gten = function gten (num) {
+    return this.cmpn(num) >= 0;
+  };
+
+  BN.prototype.gte = function gte (num) {
+    return this.cmp(num) >= 0;
+  };
+
+  BN.prototype.ltn = function ltn (num) {
+    return this.cmpn(num) === -1;
+  };
+
+  BN.prototype.lt = function lt (num) {
+    return this.cmp(num) === -1;
+  };
+
+  BN.prototype.lten = function lten (num) {
+    return this.cmpn(num) <= 0;
+  };
+
+  BN.prototype.lte = function lte (num) {
+    return this.cmp(num) <= 0;
+  };
+
+  BN.prototype.eqn = function eqn (num) {
+    return this.cmpn(num) === 0;
+  };
+
+  BN.prototype.eq = function eq (num) {
+    return this.cmp(num) === 0;
+  };
+
+  //
+  // A reduce context, could be using montgomery or something better, depending
+  // on the `m` itself.
+  //
+  BN.red = function red (num) {
+    return new Red(num);
+  };
+
+  BN.prototype.toRed = function toRed (ctx) {
+    assert(!this.red, 'Already a number in reduction context');
+    assert(this.negative === 0, 'red works only with positives');
+    return ctx.convertTo(this)._forceRed(ctx);
+  };
+
+  BN.prototype.fromRed = function fromRed () {
+    assert(this.red, 'fromRed works only with numbers in reduction context');
+    return this.red.convertFrom(this);
+  };
+
+  BN.prototype._forceRed = function _forceRed (ctx) {
+    this.red = ctx;
+    return this;
+  };
+
+  BN.prototype.forceRed = function forceRed (ctx) {
+    assert(!this.red, 'Already a number in reduction context');
+    return this._forceRed(ctx);
+  };
+
+  BN.prototype.redAdd = function redAdd (num) {
+    assert(this.red, 'redAdd works only with red numbers');
+    return this.red.add(this, num);
+  };
+
+  BN.prototype.redIAdd = function redIAdd (num) {
+    assert(this.red, 'redIAdd works only with red numbers');
+    return this.red.iadd(this, num);
+  };
+
+  BN.prototype.redSub = function redSub (num) {
+    assert(this.red, 'redSub works only with red numbers');
+    return this.red.sub(this, num);
+  };
+
+  BN.prototype.redISub = function redISub (num) {
+    assert(this.red, 'redISub works only with red numbers');
+    return this.red.isub(this, num);
+  };
+
+  BN.prototype.redShl = function redShl (num) {
+    assert(this.red, 'redShl works only with red numbers');
+    return this.red.shl(this, num);
+  };
+
+  BN.prototype.redMul = function redMul (num) {
+    assert(this.red, 'redMul works only with red numbers');
+    this.red._verify2(this, num);
+    return this.red.mul(this, num);
+  };
+
+  BN.prototype.redIMul = function redIMul (num) {
+    assert(this.red, 'redMul works only with red numbers');
+    this.red._verify2(this, num);
+    return this.red.imul(this, num);
+  };
+
+  BN.prototype.redSqr = function redSqr () {
+    assert(this.red, 'redSqr works only with red numbers');
+    this.red._verify1(this);
+    return this.red.sqr(this);
+  };
+
+  BN.prototype.redISqr = function redISqr () {
+    assert(this.red, 'redISqr works only with red numbers');
+    this.red._verify1(this);
+    return this.red.isqr(this);
+  };
+
+  // Square root over p
+  BN.prototype.redSqrt = function redSqrt () {
+    assert(this.red, 'redSqrt works only with red numbers');
+    this.red._verify1(this);
+    return this.red.sqrt(this);
+  };
+
+  BN.prototype.redInvm = function redInvm () {
+    assert(this.red, 'redInvm works only with red numbers');
+    this.red._verify1(this);
+    return this.red.invm(this);
+  };
+
+  // Return negative clone of `this` % `red modulo`
+  BN.prototype.redNeg = function redNeg () {
+    assert(this.red, 'redNeg works only with red numbers');
+    this.red._verify1(this);
+    return this.red.neg(this);
+  };
+
+  BN.prototype.redPow = function redPow (num) {
+    assert(this.red && !num.red, 'redPow(normalNum)');
+    this.red._verify1(this);
+    return this.red.pow(this, num);
+  };
+
+  // Prime numbers with efficient reduction
+  var primes = {
+    k256: null,
+    p224: null,
+    p192: null,
+    p25519: null
+  };
+
+  // Pseudo-Mersenne prime
+  function MPrime (name, p) {
+    // P = 2 ^ N - K
+    this.name = name;
+    this.p = new BN(p, 16);
+    this.n = this.p.bitLength();
+    this.k = new BN(1).iushln(this.n).isub(this.p);
+
+    this.tmp = this._tmp();
+  }
+
+  MPrime.prototype._tmp = function _tmp () {
+    var tmp = new BN(null);
+    tmp.words = new Array(Math.ceil(this.n / 13));
+    return tmp;
+  };
+
+  MPrime.prototype.ireduce = function ireduce (num) {
+    // Assumes that `num` is less than `P^2`
+    // num = HI * (2 ^ N - K) + HI * K + LO = HI * K + LO (mod P)
+    var r = num;
+    var rlen;
+
+    do {
+      this.split(r, this.tmp);
+      r = this.imulK(r);
+      r = r.iadd(this.tmp);
+      rlen = r.bitLength();
+    } while (rlen > this.n);
+
+    var cmp = rlen < this.n ? -1 : r.ucmp(this.p);
+    if (cmp === 0) {
+      r.words[0] = 0;
+      r.length = 1;
+    } else if (cmp > 0) {
+      r.isub(this.p);
+    } else {
+      r.strip();
+    }
+
+    return r;
+  };
+
+  MPrime.prototype.split = function split (input, out) {
+    input.iushrn(this.n, 0, out);
+  };
+
+  MPrime.prototype.imulK = function imulK (num) {
+    return num.imul(this.k);
+  };
+
+  function K256 () {
+    MPrime.call(
+      this,
+      'k256',
+      'ffffffff ffffffff ffffffff ffffffff ffffffff ffffffff fffffffe fffffc2f');
+  }
+  inherits(K256, MPrime);
+
+  K256.prototype.split = function split (input, output) {
+    // 256 = 9 * 26 + 22
+    var mask = 0x3fffff;
+
+    var outLen = Math.min(input.length, 9);
+    for (var i = 0; i < outLen; i++) {
+      output.words[i] = input.words[i];
+    }
+    output.length = outLen;
+
+    if (input.length <= 9) {
+      input.words[0] = 0;
+      input.length = 1;
+      return;
+    }
+
+    // Shift by 9 limbs
+    var prev = input.words[9];
+    output.words[output.length++] = prev & mask;
+
+    for (i = 10; i < input.length; i++) {
+      var next = input.words[i] | 0;
+      input.words[i - 10] = ((next & mask) << 4) | (prev >>> 22);
+      prev = next;
+    }
+    prev >>>= 22;
+    input.words[i - 10] = prev;
+    if (prev === 0 && input.length > 10) {
+      input.length -= 10;
+    } else {
+      input.length -= 9;
+    }
+  };
+
+  K256.prototype.imulK = function imulK (num) {
+    // K = 0x1000003d1 = [ 0x40, 0x3d1 ]
+    num.words[num.length] = 0;
+    num.words[num.length + 1] = 0;
+    num.length += 2;
+
+    // bounded at: 0x40 * 0x3ffffff + 0x3d0 = 0x100000390
+    var lo = 0;
+    for (var i = 0; i < num.length; i++) {
+      var w = num.words[i] | 0;
+      lo += w * 0x3d1;
+      num.words[i] = lo & 0x3ffffff;
+      lo = w * 0x40 + ((lo / 0x4000000) | 0);
+    }
+
+    // Fast length reduction
+    if (num.words[num.length - 1] === 0) {
+      num.length--;
+      if (num.words[num.length - 1] === 0) {
+        num.length--;
+      }
+    }
+    return num;
+  };
+
+  function P224 () {
+    MPrime.call(
+      this,
+      'p224',
+      'ffffffff ffffffff ffffffff ffffffff 00000000 00000000 00000001');
+  }
+  inherits(P224, MPrime);
+
+  function P192 () {
+    MPrime.call(
+      this,
+      'p192',
+      'ffffffff ffffffff ffffffff fffffffe ffffffff ffffffff');
+  }
+  inherits(P192, MPrime);
+
+  function P25519 () {
+    // 2 ^ 255 - 19
+    MPrime.call(
+      this,
+      '25519',
+      '7fffffffffffffff ffffffffffffffff ffffffffffffffff ffffffffffffffed');
+  }
+  inherits(P25519, MPrime);
+
+  P25519.prototype.imulK = function imulK (num) {
+    // K = 0x13
+    var carry = 0;
+    for (var i = 0; i < num.length; i++) {
+      var hi = (num.words[i] | 0) * 0x13 + carry;
+      var lo = hi & 0x3ffffff;
+      hi >>>= 26;
+
+      num.words[i] = lo;
+      carry = hi;
+    }
+    if (carry !== 0) {
+      num.words[num.length++] = carry;
+    }
+    return num;
+  };
+
+  // Exported mostly for testing purposes, use plain name instead
+  BN._prime = function prime (name) {
+    // Cached version of prime
+    if (primes[name]) return primes[name];
+
+    var prime;
+    if (name === 'k256') {
+      prime = new K256();
+    } else if (name === 'p224') {
+      prime = new P224();
+    } else if (name === 'p192') {
+      prime = new P192();
+    } else if (name === 'p25519') {
+      prime = new P25519();
+    } else {
+      throw new Error('Unknown prime ' + name);
+    }
+    primes[name] = prime;
+
+    return prime;
+  };
+
+  //
+  // Base reduction engine
+  //
+  function Red (m) {
+    if (typeof m === 'string') {
+      var prime = BN._prime(m);
+      this.m = prime.p;
+      this.prime = prime;
+    } else {
+      assert(m.gtn(1), 'modulus must be greater than 1');
+      this.m = m;
+      this.prime = null;
+    }
+  }
+
+  Red.prototype._verify1 = function _verify1 (a) {
+    assert(a.negative === 0, 'red works only with positives');
+    assert(a.red, 'red works only with red numbers');
+  };
+
+  Red.prototype._verify2 = function _verify2 (a, b) {
+    assert((a.negative | b.negative) === 0, 'red works only with positives');
+    assert(a.red && a.red === b.red,
+      'red works only with red numbers');
+  };
+
+  Red.prototype.imod = function imod (a) {
+    if (this.prime) return this.prime.ireduce(a)._forceRed(this);
+    return a.umod(this.m)._forceRed(this);
+  };
+
+  Red.prototype.neg = function neg (a) {
+    if (a.isZero()) {
+      return a.clone();
+    }
+
+    return this.m.sub(a)._forceRed(this);
+  };
+
+  Red.prototype.add = function add (a, b) {
+    this._verify2(a, b);
+
+    var res = a.add(b);
+    if (res.cmp(this.m) >= 0) {
+      res.isub(this.m);
+    }
+    return res._forceRed(this);
+  };
+
+  Red.prototype.iadd = function iadd (a, b) {
+    this._verify2(a, b);
+
+    var res = a.iadd(b);
+    if (res.cmp(this.m) >= 0) {
+      res.isub(this.m);
+    }
+    return res;
+  };
+
+  Red.prototype.sub = function sub (a, b) {
+    this._verify2(a, b);
+
+    var res = a.sub(b);
+    if (res.cmpn(0) < 0) {
+      res.iadd(this.m);
+    }
+    return res._forceRed(this);
+  };
+
+  Red.prototype.isub = function isub (a, b) {
+    this._verify2(a, b);
+
+    var res = a.isub(b);
+    if (res.cmpn(0) < 0) {
+      res.iadd(this.m);
+    }
+    return res;
+  };
+
+  Red.prototype.shl = function shl (a, num) {
+    this._verify1(a);
+    return this.imod(a.ushln(num));
+  };
+
+  Red.prototype.imul = function imul (a, b) {
+    this._verify2(a, b);
+    return this.imod(a.imul(b));
+  };
+
+  Red.prototype.mul = function mul (a, b) {
+    this._verify2(a, b);
+    return this.imod(a.mul(b));
+  };
+
+  Red.prototype.isqr = function isqr (a) {
+    return this.imul(a, a.clone());
+  };
+
+  Red.prototype.sqr = function sqr (a) {
+    return this.mul(a, a);
+  };
+
+  Red.prototype.sqrt = function sqrt (a) {
+    if (a.isZero()) return a.clone();
+
+    var mod3 = this.m.andln(3);
+    assert(mod3 % 2 === 1);
+
+    // Fast case
+    if (mod3 === 3) {
+      var pow = this.m.add(new BN(1)).iushrn(2);
+      return this.pow(a, pow);
+    }
+
+    // Tonelli-Shanks algorithm (Totally unoptimized and slow)
+    //
+    // Find Q and S, that Q * 2 ^ S = (P - 1)
+    var q = this.m.subn(1);
+    var s = 0;
+    while (!q.isZero() && q.andln(1) === 0) {
+      s++;
+      q.iushrn(1);
+    }
+    assert(!q.isZero());
+
+    var one = new BN(1).toRed(this);
+    var nOne = one.redNeg();
+
+    // Find quadratic non-residue
+    // NOTE: Max is such because of generalized Riemann hypothesis.
+    var lpow = this.m.subn(1).iushrn(1);
+    var z = this.m.bitLength();
+    z = new BN(2 * z * z).toRed(this);
+
+    while (this.pow(z, lpow).cmp(nOne) !== 0) {
+      z.redIAdd(nOne);
+    }
+
+    var c = this.pow(z, q);
+    var r = this.pow(a, q.addn(1).iushrn(1));
+    var t = this.pow(a, q);
+    var m = s;
+    while (t.cmp(one) !== 0) {
+      var tmp = t;
+      for (var i = 0; tmp.cmp(one) !== 0; i++) {
+        tmp = tmp.redSqr();
+      }
+      assert(i < m);
+      var b = this.pow(c, new BN(1).iushln(m - i - 1));
+
+      r = r.redMul(b);
+      c = b.redSqr();
+      t = t.redMul(c);
+      m = i;
+    }
+
+    return r;
+  };
+
+  Red.prototype.invm = function invm (a) {
+    var inv = a._invmp(this.m);
+    if (inv.negative !== 0) {
+      inv.negative = 0;
+      return this.imod(inv).redNeg();
+    } else {
+      return this.imod(inv);
+    }
+  };
+
+  Red.prototype.pow = function pow (a, num) {
+    if (num.isZero()) return new BN(1).toRed(this);
+    if (num.cmpn(1) === 0) return a.clone();
+
+    var windowSize = 4;
+    var wnd = new Array(1 << windowSize);
+    wnd[0] = new BN(1).toRed(this);
+    wnd[1] = a;
+    for (var i = 2; i < wnd.length; i++) {
+      wnd[i] = this.mul(wnd[i - 1], a);
+    }
+
+    var res = wnd[0];
+    var current = 0;
+    var currentLen = 0;
+    var start = num.bitLength() % 26;
+    if (start === 0) {
+      start = 26;
+    }
+
+    for (i = num.length - 1; i >= 0; i--) {
+      var word = num.words[i];
+      for (var j = start - 1; j >= 0; j--) {
+        var bit = (word >> j) & 1;
+        if (res !== wnd[0]) {
+          res = this.sqr(res);
+        }
+
+        if (bit === 0 && current === 0) {
+          currentLen = 0;
+          continue;
+        }
+
+        current <<= 1;
+        current |= bit;
+        currentLen++;
+        if (currentLen !== windowSize && (i !== 0 || j !== 0)) continue;
+
+        res = this.mul(res, wnd[current]);
+        currentLen = 0;
+        current = 0;
+      }
+      start = 26;
+    }
+
+    return res;
+  };
+
+  Red.prototype.convertTo = function convertTo (num) {
+    var r = num.umod(this.m);
+
+    return r === num ? r.clone() : r;
+  };
+
+  Red.prototype.convertFrom = function convertFrom (num) {
+    var res = num.clone();
+    res.red = null;
+    return res;
+  };
+
+  //
+  // Montgomery method engine
+  //
+
+  BN.mont = function mont (num) {
+    return new Mont(num);
+  };
+
+  function Mont (m) {
+    Red.call(this, m);
+
+    this.shift = this.m.bitLength();
+    if (this.shift % 26 !== 0) {
+      this.shift += 26 - (this.shift % 26);
+    }
+
+    this.r = new BN(1).iushln(this.shift);
+    this.r2 = this.imod(this.r.sqr());
+    this.rinv = this.r._invmp(this.m);
+
+    this.minv = this.rinv.mul(this.r).isubn(1).div(this.m);
+    this.minv = this.minv.umod(this.r);
+    this.minv = this.r.sub(this.minv);
+  }
+  inherits(Mont, Red);
+
+  Mont.prototype.convertTo = function convertTo (num) {
+    return this.imod(num.ushln(this.shift));
+  };
+
+  Mont.prototype.convertFrom = function convertFrom (num) {
+    var r = this.imod(num.mul(this.rinv));
+    r.red = null;
+    return r;
+  };
+
+  Mont.prototype.imul = function imul (a, b) {
+    if (a.isZero() || b.isZero()) {
+      a.words[0] = 0;
+      a.length = 1;
+      return a;
+    }
+
+    var t = a.imul(b);
+    var c = t.maskn(this.shift).mul(this.minv).imaskn(this.shift).mul(this.m);
+    var u = t.isub(c).iushrn(this.shift);
+    var res = u;
+
+    if (u.cmp(this.m) >= 0) {
+      res = u.isub(this.m);
+    } else if (u.cmpn(0) < 0) {
+      res = u.iadd(this.m);
+    }
+
+    return res._forceRed(this);
+  };
+
+  Mont.prototype.mul = function mul (a, b) {
+    if (a.isZero() || b.isZero()) return new BN(0)._forceRed(this);
+
+    var t = a.mul(b);
+    var c = t.maskn(this.shift).mul(this.minv).imaskn(this.shift).mul(this.m);
+    var u = t.isub(c).iushrn(this.shift);
+    var res = u;
+    if (u.cmp(this.m) >= 0) {
+      res = u.isub(this.m);
+    } else if (u.cmpn(0) < 0) {
+      res = u.iadd(this.m);
+    }
+
+    return res._forceRed(this);
+  };
+
+  Mont.prototype.invm = function invm (a) {
+    // (AR)^-1 * R^2 = (A^-1 * R^-1) * R^2 = A^-1 * R
+    var res = this.imod(a._invmp(this.m).mul(this.r2));
+    return res._forceRed(this);
+  };
+})(typeof module === 'undefined' || module, this);
+
+},{"buffer":20}],19:[function(require,module,exports){
+var r;
+
+module.exports = function rand(len) {
+  if (!r)
+    r = new Rand(null);
+
+  return r.generate(len);
+};
+
+function Rand(rand) {
+  this.rand = rand;
+}
+module.exports.Rand = Rand;
+
+Rand.prototype.generate = function generate(len) {
+  return this._rand(len);
+};
+
+// Emulate crypto API using randy
+Rand.prototype._rand = function _rand(n) {
+  if (this.rand.getBytes)
+    return this.rand.getBytes(n);
+
+  var res = new Uint8Array(n);
+  for (var i = 0; i < res.length; i++)
+    res[i] = this.rand.getByte();
+  return res;
+};
+
+if (typeof self === 'object') {
+  if (self.crypto && self.crypto.getRandomValues) {
+    // Modern browsers
+    Rand.prototype._rand = function _rand(n) {
+      var arr = new Uint8Array(n);
+      self.crypto.getRandomValues(arr);
+      return arr;
+    };
+  } else if (self.msCrypto && self.msCrypto.getRandomValues) {
+    // IE
+    Rand.prototype._rand = function _rand(n) {
+      var arr = new Uint8Array(n);
+      self.msCrypto.getRandomValues(arr);
+      return arr;
+    };
+
+  // Safari's WebWorkers do not have `crypto`
+  } else if (typeof window === 'object') {
+    // Old junk
+    Rand.prototype._rand = function() {
+      throw new Error('Not implemented yet');
+    };
+  }
+} else {
+  // Node.js or Web worker with no crypto support
+  try {
+    var crypto = require('crypto');
+    if (typeof crypto.randomBytes !== 'function')
+      throw new Error('Not supported');
+
+    Rand.prototype._rand = function _rand(n) {
+      return crypto.randomBytes(n);
+    };
+  } catch (e) {
+  }
+}
+
+},{"crypto":20}],20:[function(require,module,exports){
+
+},{}],21:[function(require,module,exports){
+// based on the aes implimentation in triple sec
+// https://github.com/keybase/triplesec
+// which is in turn based on the one from crypto-js
+// https://code.google.com/p/crypto-js/
+
+var Buffer = require('safe-buffer').Buffer
+
+function asUInt32Array (buf) {
+  if (!Buffer.isBuffer(buf)) buf = Buffer.from(buf)
+
+  var len = (buf.length / 4) | 0
+  var out = new Array(len)
+
+  for (var i = 0; i < len; i++) {
+    out[i] = buf.readUInt32BE(i * 4)
+  }
+
+  return out
+}
+
+function scrubVec (v) {
+  for (var i = 0; i < v.length; v++) {
+    v[i] = 0
+  }
+}
+
+function cryptBlock (M, keySchedule, SUB_MIX, SBOX, nRounds) {
+  var SUB_MIX0 = SUB_MIX[0]
+  var SUB_MIX1 = SUB_MIX[1]
+  var SUB_MIX2 = SUB_MIX[2]
+  var SUB_MIX3 = SUB_MIX[3]
+
+  var s0 = M[0] ^ keySchedule[0]
+  var s1 = M[1] ^ keySchedule[1]
+  var s2 = M[2] ^ keySchedule[2]
+  var s3 = M[3] ^ keySchedule[3]
+  var t0, t1, t2, t3
+  var ksRow = 4
+
+  for (var round = 1; round < nRounds; round++) {
+    t0 = SUB_MIX0[s0 >>> 24] ^ SUB_MIX1[(s1 >>> 16) & 0xff] ^ SUB_MIX2[(s2 >>> 8) & 0xff] ^ SUB_MIX3[s3 & 0xff] ^ keySchedule[ksRow++]
+    t1 = SUB_MIX0[s1 >>> 24] ^ SUB_MIX1[(s2 >>> 16) & 0xff] ^ SUB_MIX2[(s3 >>> 8) & 0xff] ^ SUB_MIX3[s0 & 0xff] ^ keySchedule[ksRow++]
+    t2 = SUB_MIX0[s2 >>> 24] ^ SUB_MIX1[(s3 >>> 16) & 0xff] ^ SUB_MIX2[(s0 >>> 8) & 0xff] ^ SUB_MIX3[s1 & 0xff] ^ keySchedule[ksRow++]
+    t3 = SUB_MIX0[s3 >>> 24] ^ SUB_MIX1[(s0 >>> 16) & 0xff] ^ SUB_MIX2[(s1 >>> 8) & 0xff] ^ SUB_MIX3[s2 & 0xff] ^ keySchedule[ksRow++]
+    s0 = t0
+    s1 = t1
+    s2 = t2
+    s3 = t3
+  }
+
+  t0 = ((SBOX[s0 >>> 24] << 24) | (SBOX[(s1 >>> 16) & 0xff] << 16) | (SBOX[(s2 >>> 8) & 0xff] << 8) | SBOX[s3 & 0xff]) ^ keySchedule[ksRow++]
+  t1 = ((SBOX[s1 >>> 24] << 24) | (SBOX[(s2 >>> 16) & 0xff] << 16) | (SBOX[(s3 >>> 8) & 0xff] << 8) | SBOX[s0 & 0xff]) ^ keySchedule[ksRow++]
+  t2 = ((SBOX[s2 >>> 24] << 24) | (SBOX[(s3 >>> 16) & 0xff] << 16) | (SBOX[(s0 >>> 8) & 0xff] << 8) | SBOX[s1 & 0xff]) ^ keySchedule[ksRow++]
+  t3 = ((SBOX[s3 >>> 24] << 24) | (SBOX[(s0 >>> 16) & 0xff] << 16) | (SBOX[(s1 >>> 8) & 0xff] << 8) | SBOX[s2 & 0xff]) ^ keySchedule[ksRow++]
+  t0 = t0 >>> 0
+  t1 = t1 >>> 0
+  t2 = t2 >>> 0
+  t3 = t3 >>> 0
+
+  return [t0, t1, t2, t3]
+}
+
+// AES constants
+var RCON = [0x00, 0x01, 0x02, 0x04, 0x08, 0x10, 0x20, 0x40, 0x80, 0x1b, 0x36]
+var G = (function () {
+  // Compute double table
+  var d = new Array(256)
+  for (var j = 0; j < 256; j++) {
+    if (j < 128) {
+      d[j] = j << 1
+    } else {
+      d[j] = (j << 1) ^ 0x11b
+    }
+  }
+
+  var SBOX = []
+  var INV_SBOX = []
+  var SUB_MIX = [[], [], [], []]
+  var INV_SUB_MIX = [[], [], [], []]
+
+  // Walk GF(2^8)
+  var x = 0
+  var xi = 0
+  for (var i = 0; i < 256; ++i) {
+    // Compute sbox
+    var sx = xi ^ (xi << 1) ^ (xi << 2) ^ (xi << 3) ^ (xi << 4)
+    sx = (sx >>> 8) ^ (sx & 0xff) ^ 0x63
+    SBOX[x] = sx
+    INV_SBOX[sx] = x
+
+    // Compute multiplication
+    var x2 = d[x]
+    var x4 = d[x2]
+    var x8 = d[x4]
+
+    // Compute sub bytes, mix columns tables
+    var t = (d[sx] * 0x101) ^ (sx * 0x1010100)
+    SUB_MIX[0][x] = (t << 24) | (t >>> 8)
+    SUB_MIX[1][x] = (t << 16) | (t >>> 16)
+    SUB_MIX[2][x] = (t << 8) | (t >>> 24)
+    SUB_MIX[3][x] = t
+
+    // Compute inv sub bytes, inv mix columns tables
+    t = (x8 * 0x1010101) ^ (x4 * 0x10001) ^ (x2 * 0x101) ^ (x * 0x1010100)
+    INV_SUB_MIX[0][sx] = (t << 24) | (t >>> 8)
+    INV_SUB_MIX[1][sx] = (t << 16) | (t >>> 16)
+    INV_SUB_MIX[2][sx] = (t << 8) | (t >>> 24)
+    INV_SUB_MIX[3][sx] = t
+
+    if (x === 0) {
+      x = xi = 1
+    } else {
+      x = x2 ^ d[d[d[x8 ^ x2]]]
+      xi ^= d[d[xi]]
+    }
+  }
+
+  return {
+    SBOX: SBOX,
+    INV_SBOX: INV_SBOX,
+    SUB_MIX: SUB_MIX,
+    INV_SUB_MIX: INV_SUB_MIX
+  }
+})()
+
+function AES (key) {
+  this._key = asUInt32Array(key)
+  this._reset()
+}
+
+AES.blockSize = 4 * 4
+AES.keySize = 256 / 8
+AES.prototype.blockSize = AES.blockSize
+AES.prototype.keySize = AES.keySize
+AES.prototype._reset = function () {
+  var keyWords = this._key
+  var keySize = keyWords.length
+  var nRounds = keySize + 6
+  var ksRows = (nRounds + 1) * 4
+
+  var keySchedule = []
+  for (var k = 0; k < keySize; k++) {
+    keySchedule[k] = keyWords[k]
+  }
+
+  for (k = keySize; k < ksRows; k++) {
+    var t = keySchedule[k - 1]
+
+    if (k % keySize === 0) {
+      t = (t << 8) | (t >>> 24)
+      t =
+        (G.SBOX[t >>> 24] << 24) |
+        (G.SBOX[(t >>> 16) & 0xff] << 16) |
+        (G.SBOX[(t >>> 8) & 0xff] << 8) |
+        (G.SBOX[t & 0xff])
+
+      t ^= RCON[(k / keySize) | 0] << 24
+    } else if (keySize > 6 && k % keySize === 4) {
+      t =
+        (G.SBOX[t >>> 24] << 24) |
+        (G.SBOX[(t >>> 16) & 0xff] << 16) |
+        (G.SBOX[(t >>> 8) & 0xff] << 8) |
+        (G.SBOX[t & 0xff])
+    }
+
+    keySchedule[k] = keySchedule[k - keySize] ^ t
+  }
+
+  var invKeySchedule = []
+  for (var ik = 0; ik < ksRows; ik++) {
+    var ksR = ksRows - ik
+    var tt = keySchedule[ksR - (ik % 4 ? 0 : 4)]
+
+    if (ik < 4 || ksR <= 4) {
+      invKeySchedule[ik] = tt
+    } else {
+      invKeySchedule[ik] =
+        G.INV_SUB_MIX[0][G.SBOX[tt >>> 24]] ^
+        G.INV_SUB_MIX[1][G.SBOX[(tt >>> 16) & 0xff]] ^
+        G.INV_SUB_MIX[2][G.SBOX[(tt >>> 8) & 0xff]] ^
+        G.INV_SUB_MIX[3][G.SBOX[tt & 0xff]]
+    }
+  }
+
+  this._nRounds = nRounds
+  this._keySchedule = keySchedule
+  this._invKeySchedule = invKeySchedule
+}
+
+AES.prototype.encryptBlockRaw = function (M) {
+  M = asUInt32Array(M)
+  return cryptBlock(M, this._keySchedule, G.SUB_MIX, G.SBOX, this._nRounds)
+}
+
+AES.prototype.encryptBlock = function (M) {
+  var out = this.encryptBlockRaw(M)
+  var buf = Buffer.allocUnsafe(16)
+  buf.writeUInt32BE(out[0], 0)
+  buf.writeUInt32BE(out[1], 4)
+  buf.writeUInt32BE(out[2], 8)
+  buf.writeUInt32BE(out[3], 12)
+  return buf
+}
+
+AES.prototype.decryptBlock = function (M) {
+  M = asUInt32Array(M)
+
+  // swap
+  var m1 = M[1]
+  M[1] = M[3]
+  M[3] = m1
+
+  var out = cryptBlock(M, this._invKeySchedule, G.INV_SUB_MIX, G.INV_SBOX, this._nRounds)
+  var buf = Buffer.allocUnsafe(16)
+  buf.writeUInt32BE(out[0], 0)
+  buf.writeUInt32BE(out[3], 4)
+  buf.writeUInt32BE(out[2], 8)
+  buf.writeUInt32BE(out[1], 12)
+  return buf
+}
+
+AES.prototype.scrub = function () {
+  scrubVec(this._keySchedule)
+  scrubVec(this._invKeySchedule)
+  scrubVec(this._key)
+}
+
+module.exports.AES = AES
+
+},{"safe-buffer":146}],22:[function(require,module,exports){
+var aes = require('./aes')
+var Buffer = require('safe-buffer').Buffer
+var Transform = require('cipher-base')
+var inherits = require('inherits')
+var GHASH = require('./ghash')
+var xor = require('buffer-xor')
+var incr32 = require('./incr32')
+
+function xorTest (a, b) {
+  var out = 0
+  if (a.length !== b.length) out++
+
+  var len = Math.min(a.length, b.length)
+  for (var i = 0; i < len; ++i) {
+    out += (a[i] ^ b[i])
+  }
+
+  return out
+}
+
+function calcIv (self, iv, ck) {
+  if (iv.length === 12) {
+    self._finID = Buffer.concat([iv, Buffer.from([0, 0, 0, 1])])
+    return Buffer.concat([iv, Buffer.from([0, 0, 0, 2])])
+  }
+  var ghash = new GHASH(ck)
+  var len = iv.length
+  var toPad = len % 16
+  ghash.update(iv)
+  if (toPad) {
+    toPad = 16 - toPad
+    ghash.update(Buffer.alloc(toPad, 0))
+  }
+  ghash.update(Buffer.alloc(8, 0))
+  var ivBits = len * 8
+  var tail = Buffer.alloc(8)
+  tail.writeUIntBE(ivBits, 0, 8)
+  ghash.update(tail)
+  self._finID = ghash.state
+  var out = Buffer.from(self._finID)
+  incr32(out)
+  return out
+}
+function StreamCipher (mode, key, iv, decrypt) {
+  Transform.call(this)
+
+  var h = Buffer.alloc(4, 0)
+
+  this._cipher = new aes.AES(key)
+  var ck = this._cipher.encryptBlock(h)
+  this._ghash = new GHASH(ck)
+  iv = calcIv(this, iv, ck)
+
+  this._prev = Buffer.from(iv)
+  this._cache = Buffer.allocUnsafe(0)
+  this._secCache = Buffer.allocUnsafe(0)
+  this._decrypt = decrypt
+  this._alen = 0
+  this._len = 0
+  this._mode = mode
+
+  this._authTag = null
+  this._called = false
+}
+
+inherits(StreamCipher, Transform)
+
+StreamCipher.prototype._update = function (chunk) {
+  if (!this._called && this._alen) {
+    var rump = 16 - (this._alen % 16)
+    if (rump < 16) {
+      rump = Buffer.alloc(rump, 0)
+      this._ghash.update(rump)
+    }
+  }
+
+  this._called = true
+  var out = this._mode.encrypt(this, chunk)
+  if (this._decrypt) {
+    this._ghash.update(chunk)
+  } else {
+    this._ghash.update(out)
+  }
+  this._len += chunk.length
+  return out
+}
+
+StreamCipher.prototype._final = function () {
+  if (this._decrypt && !this._authTag) throw new Error('Unsupported state or unable to authenticate data')
+
+  var tag = xor(this._ghash.final(this._alen * 8, this._len * 8), this._cipher.encryptBlock(this._finID))
+  if (this._decrypt && xorTest(tag, this._authTag)) throw new Error('Unsupported state or unable to authenticate data')
+
+  this._authTag = tag
+  this._cipher.scrub()
+}
+
+StreamCipher.prototype.getAuthTag = function getAuthTag () {
+  if (this._decrypt || !Buffer.isBuffer(this._authTag)) throw new Error('Attempting to get auth tag in unsupported state')
+
+  return this._authTag
+}
+
+StreamCipher.prototype.setAuthTag = function setAuthTag (tag) {
+  if (!this._decrypt) throw new Error('Attempting to set auth tag in unsupported state')
+
+  this._authTag = tag
+}
+
+StreamCipher.prototype.setAAD = function setAAD (buf) {
+  if (this._called) throw new Error('Attempting to set AAD in unsupported state')
+
+  this._ghash.update(buf)
+  this._alen += buf.length
+}
+
+module.exports = StreamCipher
+
+},{"./aes":21,"./ghash":26,"./incr32":27,"buffer-xor":48,"cipher-base":50,"inherits":101,"safe-buffer":146}],23:[function(require,module,exports){
+var ciphers = require('./encrypter')
+var deciphers = require('./decrypter')
+var modes = require('./modes/list.json')
+
+function getCiphers () {
+  return Object.keys(modes)
+}
+
+exports.createCipher = exports.Cipher = ciphers.createCipher
+exports.createCipheriv = exports.Cipheriv = ciphers.createCipheriv
+exports.createDecipher = exports.Decipher = deciphers.createDecipher
+exports.createDecipheriv = exports.Decipheriv = deciphers.createDecipheriv
+exports.listCiphers = exports.getCiphers = getCiphers
+
+},{"./decrypter":24,"./encrypter":25,"./modes/list.json":35}],24:[function(require,module,exports){
+var AuthCipher = require('./authCipher')
+var Buffer = require('safe-buffer').Buffer
+var MODES = require('./modes')
+var StreamCipher = require('./streamCipher')
+var Transform = require('cipher-base')
+var aes = require('./aes')
+var ebtk = require('evp_bytestokey')
+var inherits = require('inherits')
+
+function Decipher (mode, key, iv) {
+  Transform.call(this)
+
+  this._cache = new Splitter()
+  this._last = void 0
+  this._cipher = new aes.AES(key)
+  this._prev = Buffer.from(iv)
+  this._mode = mode
+  this._autopadding = true
+}
+
+inherits(Decipher, Transform)
+
+Decipher.prototype._update = function (data) {
+  this._cache.add(data)
+  var chunk
+  var thing
+  var out = []
+  while ((chunk = this._cache.get(this._autopadding))) {
+    thing = this._mode.decrypt(this, chunk)
+    out.push(thing)
+  }
+  return Buffer.concat(out)
+}
+
+Decipher.prototype._final = function () {
+  var chunk = this._cache.flush()
+  if (this._autopadding) {
+    return unpad(this._mode.decrypt(this, chunk))
+  } else if (chunk) {
+    throw new Error('data not multiple of block length')
+  }
+}
+
+Decipher.prototype.setAutoPadding = function (setTo) {
+  this._autopadding = !!setTo
+  return this
+}
+
+function Splitter () {
+  this.cache = Buffer.allocUnsafe(0)
+}
+
+Splitter.prototype.add = function (data) {
+  this.cache = Buffer.concat([this.cache, data])
+}
+
+Splitter.prototype.get = function (autoPadding) {
+  var out
+  if (autoPadding) {
+    if (this.cache.length > 16) {
+      out = this.cache.slice(0, 16)
+      this.cache = this.cache.slice(16)
+      return out
+    }
+  } else {
+    if (this.cache.length >= 16) {
+      out = this.cache.slice(0, 16)
+      this.cache = this.cache.slice(16)
+      return out
+    }
+  }
+
+  return null
+}
+
+Splitter.prototype.flush = function () {
+  if (this.cache.length) return this.cache
+}
+
+function unpad (last) {
+  var padded = last[15]
+  if (padded < 1 || padded > 16) {
+    throw new Error('unable to decrypt data')
+  }
+  var i = -1
+  while (++i < padded) {
+    if (last[(i + (16 - padded))] !== padded) {
+      throw new Error('unable to decrypt data')
+    }
+  }
+  if (padded === 16) return
+
+  return last.slice(0, 16 - padded)
+}
+
+function createDecipheriv (suite, password, iv) {
+  var config = MODES[suite.toLowerCase()]
+  if (!config) throw new TypeError('invalid suite type')
+
+  if (typeof iv === 'string') iv = Buffer.from(iv)
+  if (config.mode !== 'GCM' && iv.length !== config.iv) throw new TypeError('invalid iv length ' + iv.length)
+
+  if (typeof password === 'string') password = Buffer.from(password)
+  if (password.length !== config.key / 8) throw new TypeError('invalid key length ' + password.length)
+
+  if (config.type === 'stream') {
+    return new StreamCipher(config.module, password, iv, true)
+  } else if (config.type === 'auth') {
+    return new AuthCipher(config.module, password, iv, true)
+  }
+
+  return new Decipher(config.module, password, iv)
+}
+
+function createDecipher (suite, password) {
+  var config = MODES[suite.toLowerCase()]
+  if (!config) throw new TypeError('invalid suite type')
+
+  var keys = ebtk(password, false, config.key, config.iv)
+  return createDecipheriv(suite, keys.key, keys.iv)
+}
+
+exports.createDecipher = createDecipher
+exports.createDecipheriv = createDecipheriv
+
+},{"./aes":21,"./authCipher":22,"./modes":34,"./streamCipher":37,"cipher-base":50,"evp_bytestokey":85,"inherits":101,"safe-buffer":146}],25:[function(require,module,exports){
+var MODES = require('./modes')
+var AuthCipher = require('./authCipher')
+var Buffer = require('safe-buffer').Buffer
+var StreamCipher = require('./streamCipher')
+var Transform = require('cipher-base')
+var aes = require('./aes')
+var ebtk = require('evp_bytestokey')
+var inherits = require('inherits')
+
+function Cipher (mode, key, iv) {
+  Transform.call(this)
+
+  this._cache = new Splitter()
+  this._cipher = new aes.AES(key)
+  this._prev = Buffer.from(iv)
+  this._mode = mode
+  this._autopadding = true
+}
+
+inherits(Cipher, Transform)
+
+Cipher.prototype._update = function (data) {
+  this._cache.add(data)
+  var chunk
+  var thing
+  var out = []
+
+  while ((chunk = this._cache.get())) {
+    thing = this._mode.encrypt(this, chunk)
+    out.push(thing)
+  }
+
+  return Buffer.concat(out)
+}
+
+var PADDING = Buffer.alloc(16, 0x10)
+
+Cipher.prototype._final = function () {
+  var chunk = this._cache.flush()
+  if (this._autopadding) {
+    chunk = this._mode.encrypt(this, chunk)
+    this._cipher.scrub()
+    return chunk
+  }
+
+  if (!chunk.equals(PADDING)) {
+    this._cipher.scrub()
+    throw new Error('data not multiple of block length')
+  }
+}
+
+Cipher.prototype.setAutoPadding = function (setTo) {
+  this._autopadding = !!setTo
+  return this
+}
+
+function Splitter () {
+  this.cache = Buffer.allocUnsafe(0)
+}
+
+Splitter.prototype.add = function (data) {
+  this.cache = Buffer.concat([this.cache, data])
+}
+
+Splitter.prototype.get = function () {
+  if (this.cache.length > 15) {
+    var out = this.cache.slice(0, 16)
+    this.cache = this.cache.slice(16)
+    return out
+  }
+  return null
+}
+
+Splitter.prototype.flush = function () {
+  var len = 16 - this.cache.length
+  var padBuff = Buffer.allocUnsafe(len)
+
+  var i = -1
+  while (++i < len) {
+    padBuff.writeUInt8(len, i)
+  }
+
+  return Buffer.concat([this.cache, padBuff])
+}
+
+function createCipheriv (suite, password, iv) {
+  var config = MODES[suite.toLowerCase()]
+  if (!config) throw new TypeError('invalid suite type')
+
+  if (typeof password === 'string') password = Buffer.from(password)
+  if (password.length !== config.key / 8) throw new TypeError('invalid key length ' + password.length)
+
+  if (typeof iv === 'string') iv = Buffer.from(iv)
+  if (config.mode !== 'GCM' && iv.length !== config.iv) throw new TypeError('invalid iv length ' + iv.length)
+
+  if (config.type === 'stream') {
+    return new StreamCipher(config.module, password, iv)
+  } else if (config.type === 'auth') {
+    return new AuthCipher(config.module, password, iv)
+  }
+
+  return new Cipher(config.module, password, iv)
+}
+
+function createCipher (suite, password) {
+  var config = MODES[suite.toLowerCase()]
+  if (!config) throw new TypeError('invalid suite type')
+
+  var keys = ebtk(password, false, config.key, config.iv)
+  return createCipheriv(suite, keys.key, keys.iv)
+}
+
+exports.createCipheriv = createCipheriv
+exports.createCipher = createCipher
+
+},{"./aes":21,"./authCipher":22,"./modes":34,"./streamCipher":37,"cipher-base":50,"evp_bytestokey":85,"inherits":101,"safe-buffer":146}],26:[function(require,module,exports){
+var Buffer = require('safe-buffer').Buffer
+var ZEROES = Buffer.alloc(16, 0)
+
+function toArray (buf) {
+  return [
+    buf.readUInt32BE(0),
+    buf.readUInt32BE(4),
+    buf.readUInt32BE(8),
+    buf.readUInt32BE(12)
+  ]
+}
+
+function fromArray (out) {
+  var buf = Buffer.allocUnsafe(16)
+  buf.writeUInt32BE(out[0] >>> 0, 0)
+  buf.writeUInt32BE(out[1] >>> 0, 4)
+  buf.writeUInt32BE(out[2] >>> 0, 8)
+  buf.writeUInt32BE(out[3] >>> 0, 12)
+  return buf
+}
+
+function GHASH (key) {
+  this.h = key
+  this.state = Buffer.alloc(16, 0)
+  this.cache = Buffer.allocUnsafe(0)
+}
+
+// from http://bitwiseshiftleft.github.io/sjcl/doc/symbols/src/core_gcm.js.html
+// by Juho Vähä-Herttua
+GHASH.prototype.ghash = function (block) {
+  var i = -1
+  while (++i < block.length) {
+    this.state[i] ^= block[i]
+  }
+  this._multiply()
+}
+
+GHASH.prototype._multiply = function () {
+  var Vi = toArray(this.h)
+  var Zi = [0, 0, 0, 0]
+  var j, xi, lsbVi
+  var i = -1
+  while (++i < 128) {
+    xi = (this.state[~~(i / 8)] & (1 << (7 - (i % 8)))) !== 0
+    if (xi) {
+      // Z_i+1 = Z_i ^ V_i
+      Zi[0] ^= Vi[0]
+      Zi[1] ^= Vi[1]
+      Zi[2] ^= Vi[2]
+      Zi[3] ^= Vi[3]
+    }
+
+    // Store the value of LSB(V_i)
+    lsbVi = (Vi[3] & 1) !== 0
+
+    // V_i+1 = V_i >> 1
+    for (j = 3; j > 0; j--) {
+      Vi[j] = (Vi[j] >>> 1) | ((Vi[j - 1] & 1) << 31)
+    }
+    Vi[0] = Vi[0] >>> 1
+
+    // If LSB(V_i) is 1, V_i+1 = (V_i >> 1) ^ R
+    if (lsbVi) {
+      Vi[0] = Vi[0] ^ (0xe1 << 24)
+    }
+  }
+  this.state = fromArray(Zi)
+}
+
+GHASH.prototype.update = function (buf) {
+  this.cache = Buffer.concat([this.cache, buf])
+  var chunk
+  while (this.cache.length >= 16) {
+    chunk = this.cache.slice(0, 16)
+    this.cache = this.cache.slice(16)
+    this.ghash(chunk)
+  }
+}
+
+GHASH.prototype.final = function (abl, bl) {
+  if (this.cache.length) {
+    this.ghash(Buffer.concat([this.cache, ZEROES], 16))
+  }
+
+  this.ghash(fromArray([0, abl, 0, bl]))
+  return this.state
+}
+
+module.exports = GHASH
+
+},{"safe-buffer":146}],27:[function(require,module,exports){
+function incr32 (iv) {
+  var len = iv.length
+  var item
+  while (len--) {
+    item = iv.readUInt8(len)
+    if (item === 255) {
+      iv.writeUInt8(0, len)
+    } else {
+      item++
+      iv.writeUInt8(item, len)
+      break
+    }
+  }
+}
+module.exports = incr32
+
+},{}],28:[function(require,module,exports){
+var xor = require('buffer-xor')
+
+exports.encrypt = function (self, block) {
+  var data = xor(block, self._prev)
+
+  self._prev = self._cipher.encryptBlock(data)
+  return self._prev
+}
+
+exports.decrypt = function (self, block) {
+  var pad = self._prev
+
+  self._prev = block
+  var out = self._cipher.decryptBlock(block)
+
+  return xor(out, pad)
+}
+
+},{"buffer-xor":48}],29:[function(require,module,exports){
+var Buffer = require('safe-buffer').Buffer
+var xor = require('buffer-xor')
+
+function encryptStart (self, data, decrypt) {
+  var len = data.length
+  var out = xor(data, self._cache)
+  self._cache = self._cache.slice(len)
+  self._prev = Buffer.concat([self._prev, decrypt ? data : out])
+  return out
+}
+
+exports.encrypt = function (self, data, decrypt) {
+  var out = Buffer.allocUnsafe(0)
+  var len
+
+  while (data.length) {
+    if (self._cache.length === 0) {
+      self._cache = self._cipher.encryptBlock(self._prev)
+      self._prev = Buffer.allocUnsafe(0)
+    }
+
+    if (self._cache.length <= data.length) {
+      len = self._cache.length
+      out = Buffer.concat([out, encryptStart(self, data.slice(0, len), decrypt)])
+      data = data.slice(len)
+    } else {
+      out = Buffer.concat([out, encryptStart(self, data, decrypt)])
+      break
+    }
+  }
+
+  return out
+}
+
+},{"buffer-xor":48,"safe-buffer":146}],30:[function(require,module,exports){
+var Buffer = require('safe-buffer').Buffer
+
+function encryptByte (self, byteParam, decrypt) {
+  var pad
+  var i = -1
+  var len = 8
+  var out = 0
+  var bit, value
+  while (++i < len) {
+    pad = self._cipher.encryptBlock(self._prev)
+    bit = (byteParam & (1 << (7 - i))) ? 0x80 : 0
+    value = pad[0] ^ bit
+    out += ((value & 0x80) >> (i % 8))
+    self._prev = shiftIn(self._prev, decrypt ? bit : value)
+  }
+  return out
+}
+
+function shiftIn (buffer, value) {
+  var len = buffer.length
+  var i = -1
+  var out = Buffer.allocUnsafe(buffer.length)
+  buffer = Buffer.concat([buffer, Buffer.from([value])])
+
+  while (++i < len) {
+    out[i] = buffer[i] << 1 | buffer[i + 1] >> (7)
+  }
+
+  return out
+}
+
+exports.encrypt = function (self, chunk, decrypt) {
+  var len = chunk.length
+  var out = Buffer.allocUnsafe(len)
+  var i = -1
+
+  while (++i < len) {
+    out[i] = encryptByte(self, chunk[i], decrypt)
+  }
+
+  return out
+}
+
+},{"safe-buffer":146}],31:[function(require,module,exports){
+var Buffer = require('safe-buffer').Buffer
+
+function encryptByte (self, byteParam, decrypt) {
+  var pad = self._cipher.encryptBlock(self._prev)
+  var out = pad[0] ^ byteParam
+
+  self._prev = Buffer.concat([
+    self._prev.slice(1),
+    Buffer.from([decrypt ? byteParam : out])
+  ])
+
+  return out
+}
+
+exports.encrypt = function (self, chunk, decrypt) {
+  var len = chunk.length
+  var out = Buffer.allocUnsafe(len)
+  var i = -1
+
+  while (++i < len) {
+    out[i] = encryptByte(self, chunk[i], decrypt)
+  }
+
+  return out
+}
+
+},{"safe-buffer":146}],32:[function(require,module,exports){
+var xor = require('buffer-xor')
+var Buffer = require('safe-buffer').Buffer
+var incr32 = require('../incr32')
+
+function getBlock (self) {
+  var out = self._cipher.encryptBlockRaw(self._prev)
+  incr32(self._prev)
+  return out
+}
+
+var blockSize = 16
+exports.encrypt = function (self, chunk) {
+  var chunkNum = Math.ceil(chunk.length / blockSize)
+  var start = self._cache.length
+  self._cache = Buffer.concat([
+    self._cache,
+    Buffer.allocUnsafe(chunkNum * blockSize)
+  ])
+  for (var i = 0; i < chunkNum; i++) {
+    var out = getBlock(self)
+    var offset = start + i * blockSize
+    self._cache.writeUInt32BE(out[0], offset + 0)
+    self._cache.writeUInt32BE(out[1], offset + 4)
+    self._cache.writeUInt32BE(out[2], offset + 8)
+    self._cache.writeUInt32BE(out[3], offset + 12)
+  }
+  var pad = self._cache.slice(0, chunk.length)
+  self._cache = self._cache.slice(chunk.length)
+  return xor(chunk, pad)
+}
+
+},{"../incr32":27,"buffer-xor":48,"safe-buffer":146}],33:[function(require,module,exports){
+exports.encrypt = function (self, block) {
+  return self._cipher.encryptBlock(block)
+}
+
+exports.decrypt = function (self, block) {
+  return self._cipher.decryptBlock(block)
+}
+
+},{}],34:[function(require,module,exports){
+var modeModules = {
+  ECB: require('./ecb'),
+  CBC: require('./cbc'),
+  CFB: require('./cfb'),
+  CFB8: require('./cfb8'),
+  CFB1: require('./cfb1'),
+  OFB: require('./ofb'),
+  CTR: require('./ctr'),
+  GCM: require('./ctr')
+}
+
+var modes = require('./list.json')
+
+for (var key in modes) {
+  modes[key].module = modeModules[modes[key].mode]
+}
+
+module.exports = modes
+
+},{"./cbc":28,"./cfb":29,"./cfb1":30,"./cfb8":31,"./ctr":32,"./ecb":33,"./list.json":35,"./ofb":36}],35:[function(require,module,exports){
+module.exports={
+  "aes-128-ecb": {
+    "cipher": "AES",
+    "key": 128,
+    "iv": 0,
+    "mode": "ECB",
+    "type": "block"
+  },
+  "aes-192-ecb": {
+    "cipher": "AES",
+    "key": 192,
+    "iv": 0,
+    "mode": "ECB",
+    "type": "block"
+  },
+  "aes-256-ecb": {
+    "cipher": "AES",
+    "key": 256,
+    "iv": 0,
+    "mode": "ECB",
+    "type": "block"
+  },
+  "aes-128-cbc": {
+    "cipher": "AES",
+    "key": 128,
+    "iv": 16,
+    "mode": "CBC",
+    "type": "block"
+  },
+  "aes-192-cbc": {
+    "cipher": "AES",
+    "key": 192,
+    "iv": 16,
+    "mode": "CBC",
+    "type": "block"
+  },
+  "aes-256-cbc": {
+    "cipher": "AES",
+    "key": 256,
+    "iv": 16,
+    "mode": "CBC",
+    "type": "block"
+  },
+  "aes128": {
+    "cipher": "AES",
+    "key": 128,
+    "iv": 16,
+    "mode": "CBC",
+    "type": "block"
+  },
+  "aes192": {
+    "cipher": "AES",
+    "key": 192,
+    "iv": 16,
+    "mode": "CBC",
+    "type": "block"
+  },
+  "aes256": {
+    "cipher": "AES",
+    "key": 256,
+    "iv": 16,
+    "mode": "CBC",
+    "type": "block"
+  },
+  "aes-128-cfb": {
+    "cipher": "AES",
+    "key": 128,
+    "iv": 16,
+    "mode": "CFB",
+    "type": "stream"
+  },
+  "aes-192-cfb": {
+    "cipher": "AES",
+    "key": 192,
+    "iv": 16,
+    "mode": "CFB",
+    "type": "stream"
+  },
+  "aes-256-cfb": {
+    "cipher": "AES",
+    "key": 256,
+    "iv": 16,
+    "mode": "CFB",
+    "type": "stream"
+  },
+  "aes-128-cfb8": {
+    "cipher": "AES",
+    "key": 128,
+    "iv": 16,
+    "mode": "CFB8",
+    "type": "stream"
+  },
+  "aes-192-cfb8": {
+    "cipher": "AES",
+    "key": 192,
+    "iv": 16,
+    "mode": "CFB8",
+    "type": "stream"
+  },
+  "aes-256-cfb8": {
+    "cipher": "AES",
+    "key": 256,
+    "iv": 16,
+    "mode": "CFB8",
+    "type": "stream"
+  },
+  "aes-128-cfb1": {
+    "cipher": "AES",
+    "key": 128,
+    "iv": 16,
+    "mode": "CFB1",
+    "type": "stream"
+  },
+  "aes-192-cfb1": {
+    "cipher": "AES",
+    "key": 192,
+    "iv": 16,
+    "mode": "CFB1",
+    "type": "stream"
+  },
+  "aes-256-cfb1": {
+    "cipher": "AES",
+    "key": 256,
+    "iv": 16,
+    "mode": "CFB1",
+    "type": "stream"
+  },
+  "aes-128-ofb": {
+    "cipher": "AES",
+    "key": 128,
+    "iv": 16,
+    "mode": "OFB",
+    "type": "stream"
+  },
+  "aes-192-ofb": {
+    "cipher": "AES",
+    "key": 192,
+    "iv": 16,
+    "mode": "OFB",
+    "type": "stream"
+  },
+  "aes-256-ofb": {
+    "cipher": "AES",
+    "key": 256,
+    "iv": 16,
+    "mode": "OFB",
+    "type": "stream"
+  },
+  "aes-128-ctr": {
+    "cipher": "AES",
+    "key": 128,
+    "iv": 16,
+    "mode": "CTR",
+    "type": "stream"
+  },
+  "aes-192-ctr": {
+    "cipher": "AES",
+    "key": 192,
+    "iv": 16,
+    "mode": "CTR",
+    "type": "stream"
+  },
+  "aes-256-ctr": {
+    "cipher": "AES",
+    "key": 256,
+    "iv": 16,
+    "mode": "CTR",
+    "type": "stream"
+  },
+  "aes-128-gcm": {
+    "cipher": "AES",
+    "key": 128,
+    "iv": 12,
+    "mode": "GCM",
+    "type": "auth"
+  },
+  "aes-192-gcm": {
+    "cipher": "AES",
+    "key": 192,
+    "iv": 12,
+    "mode": "GCM",
+    "type": "auth"
+  },
+  "aes-256-gcm": {
+    "cipher": "AES",
+    "key": 256,
+    "iv": 12,
+    "mode": "GCM",
+    "type": "auth"
+  }
+}
+
+},{}],36:[function(require,module,exports){
+(function (Buffer){
+var xor = require('buffer-xor')
+
+function getBlock (self) {
+  self._prev = self._cipher.encryptBlock(self._prev)
+  return self._prev
+}
+
+exports.encrypt = function (self, chunk) {
+  while (self._cache.length < chunk.length) {
+    self._cache = Buffer.concat([self._cache, getBlock(self)])
+  }
+
+  var pad = self._cache.slice(0, chunk.length)
+  self._cache = self._cache.slice(chunk.length)
+  return xor(chunk, pad)
+}
+
+}).call(this,require("buffer").Buffer)
+},{"buffer":49,"buffer-xor":48}],37:[function(require,module,exports){
+var aes = require('./aes')
+var Buffer = require('safe-buffer').Buffer
+var Transform = require('cipher-base')
+var inherits = require('inherits')
+
+function StreamCipher (mode, key, iv, decrypt) {
+  Transform.call(this)
+
+  this._cipher = new aes.AES(key)
+  this._prev = Buffer.from(iv)
+  this._cache = Buffer.allocUnsafe(0)
+  this._secCache = Buffer.allocUnsafe(0)
+  this._decrypt = decrypt
+  this._mode = mode
+}
+
+inherits(StreamCipher, Transform)
+
+StreamCipher.prototype._update = function (chunk) {
+  return this._mode.encrypt(this, chunk, this._decrypt)
+}
+
+StreamCipher.prototype._final = function () {
+  this._cipher.scrub()
+}
+
+module.exports = StreamCipher
+
+},{"./aes":21,"cipher-base":50,"inherits":101,"safe-buffer":146}],38:[function(require,module,exports){
+var DES = require('browserify-des')
+var aes = require('browserify-aes/browser')
+var aesModes = require('browserify-aes/modes')
+var desModes = require('browserify-des/modes')
+var ebtk = require('evp_bytestokey')
+
+function createCipher (suite, password) {
+  suite = suite.toLowerCase()
+
+  var keyLen, ivLen
+  if (aesModes[suite]) {
+    keyLen = aesModes[suite].key
+    ivLen = aesModes[suite].iv
+  } else if (desModes[suite]) {
+    keyLen = desModes[suite].key * 8
+    ivLen = desModes[suite].iv
+  } else {
+    throw new TypeError('invalid suite type')
+  }
+
+  var keys = ebtk(password, false, keyLen, ivLen)
+  return createCipheriv(suite, keys.key, keys.iv)
+}
+
+function createDecipher (suite, password) {
+  suite = suite.toLowerCase()
+
+  var keyLen, ivLen
+  if (aesModes[suite]) {
+    keyLen = aesModes[suite].key
+    ivLen = aesModes[suite].iv
+  } else if (desModes[suite]) {
+    keyLen = desModes[suite].key * 8
+    ivLen = desModes[suite].iv
+  } else {
+    throw new TypeError('invalid suite type')
+  }
+
+  var keys = ebtk(password, false, keyLen, ivLen)
+  return createDecipheriv(suite, keys.key, keys.iv)
+}
+
+function createCipheriv (suite, key, iv) {
+  suite = suite.toLowerCase()
+  if (aesModes[suite]) return aes.createCipheriv(suite, key, iv)
+  if (desModes[suite]) return new DES({ key: key, iv: iv, mode: suite })
+
+  throw new TypeError('invalid suite type')
+}
+
+function createDecipheriv (suite, key, iv) {
+  suite = suite.toLowerCase()
+  if (aesModes[suite]) return aes.createDecipheriv(suite, key, iv)
+  if (desModes[suite]) return new DES({ key: key, iv: iv, mode: suite, decrypt: true })
+
+  throw new TypeError('invalid suite type')
+}
+
+function getCiphers () {
+  return Object.keys(desModes).concat(aes.getCiphers())
+}
+
+exports.createCipher = exports.Cipher = createCipher
+exports.createCipheriv = exports.Cipheriv = createCipheriv
+exports.createDecipher = exports.Decipher = createDecipher
+exports.createDecipheriv = exports.Decipheriv = createDecipheriv
+exports.listCiphers = exports.getCiphers = getCiphers
+
+},{"browserify-aes/browser":23,"browserify-aes/modes":34,"browserify-des":39,"browserify-des/modes":40,"evp_bytestokey":85}],39:[function(require,module,exports){
+(function (Buffer){
+var CipherBase = require('cipher-base')
+var des = require('des.js')
+var inherits = require('inherits')
+
+var modes = {
+  'des-ede3-cbc': des.CBC.instantiate(des.EDE),
+  'des-ede3': des.EDE,
+  'des-ede-cbc': des.CBC.instantiate(des.EDE),
+  'des-ede': des.EDE,
+  'des-cbc': des.CBC.instantiate(des.DES),
+  'des-ecb': des.DES
+}
+modes.des = modes['des-cbc']
+modes.des3 = modes['des-ede3-cbc']
+module.exports = DES
+inherits(DES, CipherBase)
+function DES (opts) {
+  CipherBase.call(this)
+  var modeName = opts.mode.toLowerCase()
+  var mode = modes[modeName]
+  var type
+  if (opts.decrypt) {
+    type = 'decrypt'
+  } else {
+    type = 'encrypt'
+  }
+  var key = opts.key
+  if (modeName === 'des-ede' || modeName === 'des-ede-cbc') {
+    key = Buffer.concat([key, key.slice(0, 8)])
+  }
+  var iv = opts.iv
+  this._des = mode.create({
+    key: key,
+    iv: iv,
+    type: type
+  })
+}
+DES.prototype._update = function (data) {
+  return new Buffer(this._des.update(data))
+}
+DES.prototype._final = function () {
+  return new Buffer(this._des.final())
+}
+
+}).call(this,require("buffer").Buffer)
+},{"buffer":49,"cipher-base":50,"des.js":58,"inherits":101}],40:[function(require,module,exports){
+exports['des-ecb'] = {
+  key: 8,
+  iv: 0
+}
+exports['des-cbc'] = exports.des = {
+  key: 8,
+  iv: 8
+}
+exports['des-ede3-cbc'] = exports.des3 = {
+  key: 24,
+  iv: 8
+}
+exports['des-ede3'] = {
+  key: 24,
+  iv: 0
+}
+exports['des-ede-cbc'] = {
+  key: 16,
+  iv: 8
+}
+exports['des-ede'] = {
+  key: 16,
+  iv: 0
+}
+
+},{}],41:[function(require,module,exports){
+(function (Buffer){
+var bn = require('bn.js');
+var randomBytes = require('randombytes');
+module.exports = crt;
+function blind(priv) {
+  var r = getr(priv);
+  var blinder = r.toRed(bn.mont(priv.modulus))
+  .redPow(new bn(priv.publicExponent)).fromRed();
+  return {
+    blinder: blinder,
+    unblinder:r.invm(priv.modulus)
+  };
+}
+function crt(msg, priv) {
+  var blinds = blind(priv);
+  var len = priv.modulus.byteLength();
+  var mod = bn.mont(priv.modulus);
+  var blinded = new bn(msg).mul(blinds.blinder).umod(priv.modulus);
+  var c1 = blinded.toRed(bn.mont(priv.prime1));
+  var c2 = blinded.toRed(bn.mont(priv.prime2));
+  var qinv = priv.coefficient;
+  var p = priv.prime1;
+  var q = priv.prime2;
+  var m1 = c1.redPow(priv.exponent1);
+  var m2 = c2.redPow(priv.exponent2);
+  m1 = m1.fromRed();
+  m2 = m2.fromRed();
+  var h = m1.isub(m2).imul(qinv).umod(p);
+  h.imul(q);
+  m2.iadd(h);
+  return new Buffer(m2.imul(blinds.unblinder).umod(priv.modulus).toArray(false, len));
+}
+crt.getr = getr;
+function getr(priv) {
+  var len = priv.modulus.byteLength();
+  var r = new bn(randomBytes(len));
+  while (r.cmp(priv.modulus) >=  0 || !r.umod(priv.prime1) || !r.umod(priv.prime2)) {
+    r = new bn(randomBytes(len));
+  }
+  return r;
+}
+
+}).call(this,require("buffer").Buffer)
+},{"bn.js":18,"buffer":49,"randombytes":130}],42:[function(require,module,exports){
+module.exports = require('./browser/algorithms.json')
+
+},{"./browser/algorithms.json":43}],43:[function(require,module,exports){
+module.exports={
+  "sha224WithRSAEncryption": {
+    "sign": "rsa",
+    "hash": "sha224",
+    "id": "302d300d06096086480165030402040500041c"
+  },
+  "RSA-SHA224": {
+    "sign": "ecdsa/rsa",
+    "hash": "sha224",
+    "id": "302d300d06096086480165030402040500041c"
+  },
+  "sha256WithRSAEncryption": {
+    "sign": "rsa",
+    "hash": "sha256",
+    "id": "3031300d060960864801650304020105000420"
+  },
+  "RSA-SHA256": {
+    "sign": "ecdsa/rsa",
+    "hash": "sha256",
+    "id": "3031300d060960864801650304020105000420"
+  },
+  "sha384WithRSAEncryption": {
+    "sign": "rsa",
+    "hash": "sha384",
+    "id": "3041300d060960864801650304020205000430"
+  },
+  "RSA-SHA384": {
+    "sign": "ecdsa/rsa",
+    "hash": "sha384",
+    "id": "3041300d060960864801650304020205000430"
+  },
+  "sha512WithRSAEncryption": {
+    "sign": "rsa",
+    "hash": "sha512",
+    "id": "3051300d060960864801650304020305000440"
+  },
+  "RSA-SHA512": {
+    "sign": "ecdsa/rsa",
+    "hash": "sha512",
+    "id": "3051300d060960864801650304020305000440"
+  },
+  "RSA-SHA1": {
+    "sign": "rsa",
+    "hash": "sha1",
+    "id": "3021300906052b0e03021a05000414"
+  },
+  "ecdsa-with-SHA1": {
+    "sign": "ecdsa",
+    "hash": "sha1",
+    "id": ""
+  },
+  "sha256": {
+    "sign": "ecdsa",
+    "hash": "sha256",
+    "id": ""
+  },
+  "sha224": {
+    "sign": "ecdsa",
+    "hash": "sha224",
+    "id": ""
+  },
+  "sha384": {
+    "sign": "ecdsa",
+    "hash": "sha384",
+    "id": ""
+  },
+  "sha512": {
+    "sign": "ecdsa",
+    "hash": "sha512",
+    "id": ""
+  },
+  "DSA-SHA": {
+    "sign": "dsa",
+    "hash": "sha1",
+    "id": ""
+  },
+  "DSA-SHA1": {
+    "sign": "dsa",
+    "hash": "sha1",
+    "id": ""
+  },
+  "DSA": {
+    "sign": "dsa",
+    "hash": "sha1",
+    "id": ""
+  },
+  "DSA-WITH-SHA224": {
+    "sign": "dsa",
+    "hash": "sha224",
+    "id": ""
+  },
+  "DSA-SHA224": {
+    "sign": "dsa",
+    "hash": "sha224",
+    "id": ""
+  },
+  "DSA-WITH-SHA256": {
+    "sign": "dsa",
+    "hash": "sha256",
+    "id": ""
+  },
+  "DSA-SHA256": {
+    "sign": "dsa",
+    "hash": "sha256",
+    "id": ""
+  },
+  "DSA-WITH-SHA384": {
+    "sign": "dsa",
+    "hash": "sha384",
+    "id": ""
+  },
+  "DSA-SHA384": {
+    "sign": "dsa",
+    "hash": "sha384",
+    "id": ""
+  },
+  "DSA-WITH-SHA512": {
+    "sign": "dsa",
+    "hash": "sha512",
+    "id": ""
+  },
+  "DSA-SHA512": {
+    "sign": "dsa",
+    "hash": "sha512",
+    "id": ""
+  },
+  "DSA-RIPEMD160": {
+    "sign": "dsa",
+    "hash": "rmd160",
+    "id": ""
+  },
+  "ripemd160WithRSA": {
+    "sign": "rsa",
+    "hash": "rmd160",
+    "id": "3021300906052b2403020105000414"
+  },
+  "RSA-RIPEMD160": {
+    "sign": "rsa",
+    "hash": "rmd160",
+    "id": "3021300906052b2403020105000414"
+  },
+  "md5WithRSAEncryption": {
+    "sign": "rsa",
+    "hash": "md5",
+    "id": "3020300c06082a864886f70d020505000410"
+  },
+  "RSA-MD5": {
+    "sign": "rsa",
+    "hash": "md5",
+    "id": "3020300c06082a864886f70d020505000410"
+  }
+}
+
+},{}],44:[function(require,module,exports){
+module.exports={
+  "1.3.132.0.10": "secp256k1",
+  "1.3.132.0.33": "p224",
+  "1.2.840.10045.3.1.1": "p192",
+  "1.2.840.10045.3.1.7": "p256",
+  "1.3.132.0.34": "p384",
+  "1.3.132.0.35": "p521"
+}
+
+},{}],45:[function(require,module,exports){
+(function (Buffer){
+var createHash = require('create-hash')
+var stream = require('stream')
+var inherits = require('inherits')
+var sign = require('./sign')
+var verify = require('./verify')
+
+var algorithms = require('./algorithms.json')
+Object.keys(algorithms).forEach(function (key) {
+  algorithms[key].id = new Buffer(algorithms[key].id, 'hex')
+  algorithms[key.toLowerCase()] = algorithms[key]
+})
+
+function Sign (algorithm) {
+  stream.Writable.call(this)
+
+  var data = algorithms[algorithm]
+  if (!data) throw new Error('Unknown message digest')
+
+  this._hashType = data.hash
+  this._hash = createHash(data.hash)
+  this._tag = data.id
+  this._signType = data.sign
+}
+inherits(Sign, stream.Writable)
+
+Sign.prototype._write = function _write (data, _, done) {
+  this._hash.update(data)
+  done()
+}
+
+Sign.prototype.update = function update (data, enc) {
+  if (typeof data === 'string') data = new Buffer(data, enc)
+
+  this._hash.update(data)
+  return this
+}
+
+Sign.prototype.sign = function signMethod (key, enc) {
+  this.end()
+  var hash = this._hash.digest()
+  var sig = sign(hash, key, this._hashType, this._signType, this._tag)
+
+  return enc ? sig.toString(enc) : sig
+}
+
+function Verify (algorithm) {
+  stream.Writable.call(this)
+
+  var data = algorithms[algorithm]
+  if (!data) throw new Error('Unknown message digest')
+
+  this._hash = createHash(data.hash)
+  this._tag = data.id
+  this._signType = data.sign
+}
+inherits(Verify, stream.Writable)
+
+Verify.prototype._write = function _write (data, _, done) {
+  this._hash.update(data)
+  done()
+}
+
+Verify.prototype.update = function update (data, enc) {
+  if (typeof data === 'string') data = new Buffer(data, enc)
+
+  this._hash.update(data)
+  return this
+}
+
+Verify.prototype.verify = function verifyMethod (key, sig, enc) {
+  if (typeof sig === 'string') sig = new Buffer(sig, enc)
+
+  this.end()
+  var hash = this._hash.digest()
+  return verify(sig, hash, key, this._signType, this._tag)
+}
+
+function createSign (algorithm) {
+  return new Sign(algorithm)
+}
+
+function createVerify (algorithm) {
+  return new Verify(algorithm)
+}
+
+module.exports = {
+  Sign: createSign,
+  Verify: createVerify,
+  createSign: createSign,
+  createVerify: createVerify
+}
+
+}).call(this,require("buffer").Buffer)
+},{"./algorithms.json":43,"./sign":46,"./verify":47,"buffer":49,"create-hash":53,"inherits":101,"stream":155}],46:[function(require,module,exports){
+(function (Buffer){
+// much of this based on https://github.com/indutny/self-signed/blob/gh-pages/lib/rsa.js
+var createHmac = require('create-hmac')
+var crt = require('browserify-rsa')
+var EC = require('elliptic').ec
+var BN = require('bn.js')
+var parseKeys = require('parse-asn1')
+var curves = require('./curves.json')
+
+function sign (hash, key, hashType, signType, tag) {
+  var priv = parseKeys(key)
+  if (priv.curve) {
+    // rsa keys can be interpreted as ecdsa ones in openssl
+    if (signType !== 'ecdsa' && signType !== 'ecdsa/rsa') throw new Error('wrong private key type')
+    return ecSign(hash, priv)
+  } else if (priv.type === 'dsa') {
+    if (signType !== 'dsa') throw new Error('wrong private key type')
+    return dsaSign(hash, priv, hashType)
+  } else {
+    if (signType !== 'rsa' && signType !== 'ecdsa/rsa') throw new Error('wrong private key type')
+  }
+  hash = Buffer.concat([tag, hash])
+  var len = priv.modulus.byteLength()
+  var pad = [ 0, 1 ]
+  while (hash.length + pad.length + 1 < len) pad.push(0xff)
+  pad.push(0x00)
+  var i = -1
+  while (++i < hash.length) pad.push(hash[i])
+
+  var out = crt(pad, priv)
+  return out
+}
+
+function ecSign (hash, priv) {
+  var curveId = curves[priv.curve.join('.')]
+  if (!curveId) throw new Error('unknown curve ' + priv.curve.join('.'))
+
+  var curve = new EC(curveId)
+  var key = curve.keyFromPrivate(priv.privateKey)
+  var out = key.sign(hash)
+
+  return new Buffer(out.toDER())
+}
+
+function dsaSign (hash, priv, algo) {
+  var x = priv.params.priv_key
+  var p = priv.params.p
+  var q = priv.params.q
+  var g = priv.params.g
+  var r = new BN(0)
+  var k
+  var H = bits2int(hash, q).mod(q)
+  var s = false
+  var kv = getKey(x, q, hash, algo)
+  while (s === false) {
+    k = makeKey(q, kv, algo)
+    r = makeR(g, k, p, q)
+    s = k.invm(q).imul(H.add(x.mul(r))).mod(q)
+    if (s.cmpn(0) === 0) {
+      s = false
+      r = new BN(0)
+    }
+  }
+  return toDER(r, s)
+}
+
+function toDER (r, s) {
+  r = r.toArray()
+  s = s.toArray()
+
+  // Pad values
+  if (r[0] & 0x80) r = [ 0 ].concat(r)
+  if (s[0] & 0x80) s = [ 0 ].concat(s)
+
+  var total = r.length + s.length + 4
+  var res = [ 0x30, total, 0x02, r.length ]
+  res = res.concat(r, [ 0x02, s.length ], s)
+  return new Buffer(res)
+}
+
+function getKey (x, q, hash, algo) {
+  x = new Buffer(x.toArray())
+  if (x.length < q.byteLength()) {
+    var zeros = new Buffer(q.byteLength() - x.length)
+    zeros.fill(0)
+    x = Buffer.concat([ zeros, x ])
+  }
+  var hlen = hash.length
+  var hbits = bits2octets(hash, q)
+  var v = new Buffer(hlen)
+  v.fill(1)
+  var k = new Buffer(hlen)
+  k.fill(0)
+  k = createHmac(algo, k).update(v).update(new Buffer([ 0 ])).update(x).update(hbits).digest()
+  v = createHmac(algo, k).update(v).digest()
+  k = createHmac(algo, k).update(v).update(new Buffer([ 1 ])).update(x).update(hbits).digest()
+  v = createHmac(algo, k).update(v).digest()
+  return { k: k, v: v }
+}
+
+function bits2int (obits, q) {
+  var bits = new BN(obits)
+  var shift = (obits.length << 3) - q.bitLength()
+  if (shift > 0) bits.ishrn(shift)
+  return bits
+}
+
+function bits2octets (bits, q) {
+  bits = bits2int(bits, q)
+  bits = bits.mod(q)
+  var out = new Buffer(bits.toArray())
+  if (out.length < q.byteLength()) {
+    var zeros = new Buffer(q.byteLength() - out.length)
+    zeros.fill(0)
+    out = Buffer.concat([ zeros, out ])
+  }
+  return out
+}
+
+function makeKey (q, kv, algo) {
+  var t
+  var k
+
+  do {
+    t = new Buffer(0)
+
+    while (t.length * 8 < q.bitLength()) {
+      kv.v = createHmac(algo, kv.k).update(kv.v).digest()
+      t = Buffer.concat([ t, kv.v ])
+    }
+
+    k = bits2int(t, q)
+    kv.k = createHmac(algo, kv.k).update(kv.v).update(new Buffer([ 0 ])).digest()
+    kv.v = createHmac(algo, kv.k).update(kv.v).digest()
+  } while (k.cmp(q) !== -1)
+
+  return k
+}
+
+function makeR (g, k, p, q) {
+  return g.toRed(BN.mont(p)).redPow(k).fromRed().mod(q)
+}
+
+module.exports = sign
+module.exports.getKey = getKey
+module.exports.makeKey = makeKey
+
+}).call(this,require("buffer").Buffer)
+},{"./curves.json":44,"bn.js":18,"browserify-rsa":41,"buffer":49,"create-hmac":55,"elliptic":68,"parse-asn1":112}],47:[function(require,module,exports){
+(function (Buffer){
+// much of this based on https://github.com/indutny/self-signed/blob/gh-pages/lib/rsa.js
+var BN = require('bn.js')
+var EC = require('elliptic').ec
+var parseKeys = require('parse-asn1')
+var curves = require('./curves.json')
+
+function verify (sig, hash, key, signType, tag) {
+  var pub = parseKeys(key)
+  if (pub.type === 'ec') {
+    // rsa keys can be interpreted as ecdsa ones in openssl
+    if (signType !== 'ecdsa' && signType !== 'ecdsa/rsa') throw new Error('wrong public key type')
+    return ecVerify(sig, hash, pub)
+  } else if (pub.type === 'dsa') {
+    if (signType !== 'dsa') throw new Error('wrong public key type')
+    return dsaVerify(sig, hash, pub)
+  } else {
+    if (signType !== 'rsa' && signType !== 'ecdsa/rsa') throw new Error('wrong public key type')
+  }
+  hash = Buffer.concat([tag, hash])
+  var len = pub.modulus.byteLength()
+  var pad = [ 1 ]
+  var padNum = 0
+  while (hash.length + pad.length + 2 < len) {
+    pad.push(0xff)
+    padNum++
+  }
+  pad.push(0x00)
+  var i = -1
+  while (++i < hash.length) {
+    pad.push(hash[i])
+  }
+  pad = new Buffer(pad)
+  var red = BN.mont(pub.modulus)
+  sig = new BN(sig).toRed(red)
+
+  sig = sig.redPow(new BN(pub.publicExponent))
+  sig = new Buffer(sig.fromRed().toArray())
+  var out = padNum < 8 ? 1 : 0
+  len = Math.min(sig.length, pad.length)
+  if (sig.length !== pad.length) out = 1
+
+  i = -1
+  while (++i < len) out |= sig[i] ^ pad[i]
+  return out === 0
+}
+
+function ecVerify (sig, hash, pub) {
+  var curveId = curves[pub.data.algorithm.curve.join('.')]
+  if (!curveId) throw new Error('unknown curve ' + pub.data.algorithm.curve.join('.'))
+
+  var curve = new EC(curveId)
+  var pubkey = pub.data.subjectPrivateKey.data
+
+  return curve.verify(hash, sig, pubkey)
+}
+
+function dsaVerify (sig, hash, pub) {
+  var p = pub.data.p
+  var q = pub.data.q
+  var g = pub.data.g
+  var y = pub.data.pub_key
+  var unpacked = parseKeys.signature.decode(sig, 'der')
+  var s = unpacked.s
+  var r = unpacked.r
+  checkValue(s, q)
+  checkValue(r, q)
+  var montp = BN.mont(p)
+  var w = s.invm(q)
+  var v = g.toRed(montp)
+    .redPow(new BN(hash).mul(w).mod(q))
+    .fromRed()
+    .mul(y.toRed(montp).redPow(r.mul(w).mod(q)).fromRed())
+    .mod(p)
+    .mod(q)
+  return v.cmp(r) === 0
+}
+
+function checkValue (b, q) {
+  if (b.cmpn(0) <= 0) throw new Error('invalid sig')
+  if (b.cmp(q) >= q) throw new Error('invalid sig')
+}
+
+module.exports = verify
+
+}).call(this,require("buffer").Buffer)
+},{"./curves.json":44,"bn.js":18,"buffer":49,"elliptic":68,"parse-asn1":112}],48:[function(require,module,exports){
+(function (Buffer){
+module.exports = function xor (a, b) {
+  var length = Math.min(a.length, b.length)
+  var buffer = new Buffer(length)
+
+  for (var i = 0; i < length; ++i) {
+    buffer[i] = a[i] ^ b[i]
+  }
+
+  return buffer
+}
+
+}).call(this,require("buffer").Buffer)
+},{"buffer":49}],49:[function(require,module,exports){
+/*!
+ * The buffer module from node.js, for the browser.
+ *
+ * @author   Feross Aboukhadijeh <https://feross.org>
+ * @license  MIT
+ */
+/* eslint-disable no-proto */
+
+'use strict'
+
+var base64 = require('base64-js')
+var ieee754 = require('ieee754')
+
+exports.Buffer = Buffer
+exports.SlowBuffer = SlowBuffer
+exports.INSPECT_MAX_BYTES = 50
+
+var K_MAX_LENGTH = 0x7fffffff
+exports.kMaxLength = K_MAX_LENGTH
+
+/**
+ * If `Buffer.TYPED_ARRAY_SUPPORT`:
+ *   === true    Use Uint8Array implementation (fastest)
+ *   === false   Print warning and recommend using `buffer` v4.x which has an Object
+ *               implementation (most compatible, even IE6)
+ *
+ * Browsers that support typed arrays are IE 10+, Firefox 4+, Chrome 7+, Safari 5.1+,
+ * Opera 11.6+, iOS 4.2+.
+ *
+ * We report that the browser does not support typed arrays if the are not subclassable
+ * using __proto__. Firefox 4-29 lacks support for adding new properties to `Uint8Array`
+ * (See: https://bugzilla.mozilla.org/show_bug.cgi?id=695438). IE 10 lacks support
+ * for __proto__ and has a buggy typed array implementation.
+ */
+Buffer.TYPED_ARRAY_SUPPORT = typedArraySupport()
+
+if (!Buffer.TYPED_ARRAY_SUPPORT && typeof console !== 'undefined' &&
+    typeof console.error === 'function') {
+  console.error(
+    'This browser lacks typed array (Uint8Array) support which is required by ' +
+    '`buffer` v5.x. Use `buffer` v4.x if you require old browser support.'
+  )
+}
+
+function typedArraySupport () {
+  // Can typed array instances can be augmented?
+  try {
+    var arr = new Uint8Array(1)
+    arr.__proto__ = {__proto__: Uint8Array.prototype, foo: function () { return 42 }}
+    return arr.foo() === 42
+  } catch (e) {
+    return false
+  }
+}
+
+Object.defineProperty(Buffer.prototype, 'parent', {
+  get: function () {
+    if (!(this instanceof Buffer)) {
+      return undefined
+    }
+    return this.buffer
+  }
+})
+
+Object.defineProperty(Buffer.prototype, 'offset', {
+  get: function () {
+    if (!(this instanceof Buffer)) {
+      return undefined
+    }
+    return this.byteOffset
+  }
+})
+
+function createBuffer (length) {
+  if (length > K_MAX_LENGTH) {
+    throw new RangeError('Invalid typed array length')
+  }
+  // Return an augmented `Uint8Array` instance
+  var buf = new Uint8Array(length)
+  buf.__proto__ = Buffer.prototype
+  return buf
+}
+
+/**
+ * The Buffer constructor returns instances of `Uint8Array` that have their
+ * prototype changed to `Buffer.prototype`. Furthermore, `Buffer` is a subclass of
+ * `Uint8Array`, so the returned instances will have all the node `Buffer` methods
+ * and the `Uint8Array` methods. Square bracket notation works as expected -- it
+ * returns a single octet.
+ *
+ * The `Uint8Array` prototype remains unmodified.
+ */
+
+function Buffer (arg, encodingOrOffset, length) {
+  // Common case.
+  if (typeof arg === 'number') {
+    if (typeof encodingOrOffset === 'string') {
+      throw new Error(
+        'If encoding is specified then the first argument must be a string'
+      )
+    }
+    return allocUnsafe(arg)
+  }
+  return from(arg, encodingOrOffset, length)
+}
+
+// Fix subarray() in ES2016. See: https://github.com/feross/buffer/pull/97
+if (typeof Symbol !== 'undefined' && Symbol.species &&
+    Buffer[Symbol.species] === Buffer) {
+  Object.defineProperty(Buffer, Symbol.species, {
+    value: null,
+    configurable: true,
+    enumerable: false,
+    writable: false
+  })
+}
+
+Buffer.poolSize = 8192 // not used by this implementation
+
+function from (value, encodingOrOffset, length) {
+  if (typeof value === 'number') {
+    throw new TypeError('"value" argument must not be a number')
+  }
+
+  if (isArrayBuffer(value) || (value && isArrayBuffer(value.buffer))) {
+    return fromArrayBuffer(value, encodingOrOffset, length)
+  }
+
+  if (typeof value === 'string') {
+    return fromString(value, encodingOrOffset)
+  }
+
+  return fromObject(value)
+}
+
+/**
+ * Functionally equivalent to Buffer(arg, encoding) but throws a TypeError
+ * if value is a number.
+ * Buffer.from(str[, encoding])
+ * Buffer.from(array)
+ * Buffer.from(buffer)
+ * Buffer.from(arrayBuffer[, byteOffset[, length]])
+ **/
+Buffer.from = function (value, encodingOrOffset, length) {
+  return from(value, encodingOrOffset, length)
+}
+
+// Note: Change prototype *after* Buffer.from is defined to workaround Chrome bug:
+// https://github.com/feross/buffer/pull/148
+Buffer.prototype.__proto__ = Uint8Array.prototype
+Buffer.__proto__ = Uint8Array
+
+function assertSize (size) {
+  if (typeof size !== 'number') {
+    throw new TypeError('"size" argument must be of type number')
+  } else if (size < 0) {
+    throw new RangeError('"size" argument must not be negative')
+  }
+}
+
+function alloc (size, fill, encoding) {
+  assertSize(size)
+  if (size <= 0) {
+    return createBuffer(size)
+  }
+  if (fill !== undefined) {
+    // Only pay attention to encoding if it's a string. This
+    // prevents accidentally sending in a number that would
+    // be interpretted as a start offset.
+    return typeof encoding === 'string'
+      ? createBuffer(size).fill(fill, encoding)
+      : createBuffer(size).fill(fill)
+  }
+  return createBuffer(size)
+}
+
+/**
+ * Creates a new filled Buffer instance.
+ * alloc(size[, fill[, encoding]])
+ **/
+Buffer.alloc = function (size, fill, encoding) {
+  return alloc(size, fill, encoding)
+}
+
+function allocUnsafe (size) {
+  assertSize(size)
+  return createBuffer(size < 0 ? 0 : checked(size) | 0)
+}
+
+/**
+ * Equivalent to Buffer(num), by default creates a non-zero-filled Buffer instance.
+ * */
+Buffer.allocUnsafe = function (size) {
+  return allocUnsafe(size)
+}
+/**
+ * Equivalent to SlowBuffer(num), by default creates a non-zero-filled Buffer instance.
+ */
+Buffer.allocUnsafeSlow = function (size) {
+  return allocUnsafe(size)
+}
+
+function fromString (string, encoding) {
+  if (typeof encoding !== 'string' || encoding === '') {
+    encoding = 'utf8'
+  }
+
+  if (!Buffer.isEncoding(encoding)) {
+    throw new TypeError('Unknown encoding: ' + encoding)
+  }
+
+  var length = byteLength(string, encoding) | 0
+  var buf = createBuffer(length)
+
+  var actual = buf.write(string, encoding)
+
+  if (actual !== length) {
+    // Writing a hex string, for example, that contains invalid characters will
+    // cause everything after the first invalid character to be ignored. (e.g.
+    // 'abxxcd' will be treated as 'ab')
+    buf = buf.slice(0, actual)
+  }
+
+  return buf
+}
+
+function fromArrayLike (array) {
+  var length = array.length < 0 ? 0 : checked(array.length) | 0
+  var buf = createBuffer(length)
+  for (var i = 0; i < length; i += 1) {
+    buf[i] = array[i] & 255
+  }
+  return buf
+}
+
+function fromArrayBuffer (array, byteOffset, length) {
+  if (byteOffset < 0 || array.byteLength < byteOffset) {
+    throw new RangeError('"offset" is outside of buffer bounds')
+  }
+
+  if (array.byteLength < byteOffset + (length || 0)) {
+    throw new RangeError('"length" is outside of buffer bounds')
+  }
+
+  var buf
+  if (byteOffset === undefined && length === undefined) {
+    buf = new Uint8Array(array)
+  } else if (length === undefined) {
+    buf = new Uint8Array(array, byteOffset)
+  } else {
+    buf = new Uint8Array(array, byteOffset, length)
+  }
+
+  // Return an augmented `Uint8Array` instance
+  buf.__proto__ = Buffer.prototype
+  return buf
+}
+
+function fromObject (obj) {
+  if (Buffer.isBuffer(obj)) {
+    var len = checked(obj.length) | 0
+    var buf = createBuffer(len)
+
+    if (buf.length === 0) {
+      return buf
+    }
+
+    obj.copy(buf, 0, 0, len)
+    return buf
+  }
+
+  if (obj) {
+    if (ArrayBuffer.isView(obj) || 'length' in obj) {
+      if (typeof obj.length !== 'number' || numberIsNaN(obj.length)) {
+        return createBuffer(0)
+      }
+      return fromArrayLike(obj)
+    }
+
+    if (obj.type === 'Buffer' && Array.isArray(obj.data)) {
+      return fromArrayLike(obj.data)
+    }
+  }
+
+  throw new TypeError('The first argument must be one of type string, Buffer, ArrayBuffer, Array, or Array-like Object.')
+}
+
+function checked (length) {
+  // Note: cannot use `length < K_MAX_LENGTH` here because that fails when
+  // length is NaN (which is otherwise coerced to zero.)
+  if (length >= K_MAX_LENGTH) {
+    throw new RangeError('Attempt to allocate Buffer larger than maximum ' +
+                         'size: 0x' + K_MAX_LENGTH.toString(16) + ' bytes')
+  }
+  return length | 0
+}
+
+function SlowBuffer (length) {
+  if (+length != length) { // eslint-disable-line eqeqeq
+    length = 0
+  }
+  return Buffer.alloc(+length)
+}
+
+Buffer.isBuffer = function isBuffer (b) {
+  return b != null && b._isBuffer === true
+}
+
+Buffer.compare = function compare (a, b) {
+  if (!Buffer.isBuffer(a) || !Buffer.isBuffer(b)) {
+    throw new TypeError('Arguments must be Buffers')
+  }
+
+  if (a === b) return 0
+
+  var x = a.length
+  var y = b.length
+
+  for (var i = 0, len = Math.min(x, y); i < len; ++i) {
+    if (a[i] !== b[i]) {
+      x = a[i]
+      y = b[i]
+      break
+    }
+  }
+
+  if (x < y) return -1
+  if (y < x) return 1
+  return 0
+}
+
+Buffer.isEncoding = function isEncoding (encoding) {
+  switch (String(encoding).toLowerCase()) {
+    case 'hex':
+    case 'utf8':
+    case 'utf-8':
+    case 'ascii':
+    case 'latin1':
+    case 'binary':
+    case 'base64':
+    case 'ucs2':
+    case 'ucs-2':
+    case 'utf16le':
+    case 'utf-16le':
+      return true
+    default:
+      return false
+  }
+}
+
+Buffer.concat = function concat (list, length) {
+  if (!Array.isArray(list)) {
+    throw new TypeError('"list" argument must be an Array of Buffers')
+  }
+
+  if (list.length === 0) {
+    return Buffer.alloc(0)
+  }
+
+  var i
+  if (length === undefined) {
+    length = 0
+    for (i = 0; i < list.length; ++i) {
+      length += list[i].length
+    }
+  }
+
+  var buffer = Buffer.allocUnsafe(length)
+  var pos = 0
+  for (i = 0; i < list.length; ++i) {
+    var buf = list[i]
+    if (ArrayBuffer.isView(buf)) {
+      buf = Buffer.from(buf)
+    }
+    if (!Buffer.isBuffer(buf)) {
+      throw new TypeError('"list" argument must be an Array of Buffers')
+    }
+    buf.copy(buffer, pos)
+    pos += buf.length
+  }
+  return buffer
+}
+
+function byteLength (string, encoding) {
+  if (Buffer.isBuffer(string)) {
+    return string.length
+  }
+  if (ArrayBuffer.isView(string) || isArrayBuffer(string)) {
+    return string.byteLength
+  }
+  if (typeof string !== 'string') {
+    string = '' + string
+  }
+
+  var len = string.length
+  if (len === 0) return 0
+
+  // Use a for loop to avoid recursion
+  var loweredCase = false
+  for (;;) {
+    switch (encoding) {
+      case 'ascii':
+      case 'latin1':
+      case 'binary':
+        return len
+      case 'utf8':
+      case 'utf-8':
+      case undefined:
+        return utf8ToBytes(string).length
+      case 'ucs2':
+      case 'ucs-2':
+      case 'utf16le':
+      case 'utf-16le':
+        return len * 2
+      case 'hex':
+        return len >>> 1
+      case 'base64':
+        return base64ToBytes(string).length
+      default:
+        if (loweredCase) return utf8ToBytes(string).length // assume utf8
+        encoding = ('' + encoding).toLowerCase()
+        loweredCase = true
+    }
+  }
+}
+Buffer.byteLength = byteLength
+
+function slowToString (encoding, start, end) {
+  var loweredCase = false
+
+  // No need to verify that "this.length <= MAX_UINT32" since it's a read-only
+  // property of a typed array.
+
+  // This behaves neither like String nor Uint8Array in that we set start/end
+  // to their upper/lower bounds if the value passed is out of range.
+  // undefined is handled specially as per ECMA-262 6th Edition,
+  // Section 13.3.3.7 Runtime Semantics: KeyedBindingInitialization.
+  if (start === undefined || start < 0) {
+    start = 0
+  }
+  // Return early if start > this.length. Done here to prevent potential uint32
+  // coercion fail below.
+  if (start > this.length) {
+    return ''
+  }
+
+  if (end === undefined || end > this.length) {
+    end = this.length
+  }
+
+  if (end <= 0) {
+    return ''
+  }
+
+  // Force coersion to uint32. This will also coerce falsey/NaN values to 0.
+  end >>>= 0
+  start >>>= 0
+
+  if (end <= start) {
+    return ''
+  }
+
+  if (!encoding) encoding = 'utf8'
+
+  while (true) {
+    switch (encoding) {
+      case 'hex':
+        return hexSlice(this, start, end)
+
+      case 'utf8':
+      case 'utf-8':
+        return utf8Slice(this, start, end)
+
+      case 'ascii':
+        return asciiSlice(this, start, end)
+
+      case 'latin1':
+      case 'binary':
+        return latin1Slice(this, start, end)
+
+      case 'base64':
+        return base64Slice(this, start, end)
+
+      case 'ucs2':
+      case 'ucs-2':
+      case 'utf16le':
+      case 'utf-16le':
+        return utf16leSlice(this, start, end)
+
+      default:
+        if (loweredCase) throw new TypeError('Unknown encoding: ' + encoding)
+        encoding = (encoding + '').toLowerCase()
+        loweredCase = true
+    }
+  }
+}
+
+// This property is used by `Buffer.isBuffer` (and the `is-buffer` npm package)
+// to detect a Buffer instance. It's not possible to use `instanceof Buffer`
+// reliably in a browserify context because there could be multiple different
+// copies of the 'buffer' package in use. This method works even for Buffer
+// instances that were created from another copy of the `buffer` package.
+// See: https://github.com/feross/buffer/issues/154
+Buffer.prototype._isBuffer = true
+
+function swap (b, n, m) {
+  var i = b[n]
+  b[n] = b[m]
+  b[m] = i
+}
+
+Buffer.prototype.swap16 = function swap16 () {
+  var len = this.length
+  if (len % 2 !== 0) {
+    throw new RangeError('Buffer size must be a multiple of 16-bits')
+  }
+  for (var i = 0; i < len; i += 2) {
+    swap(this, i, i + 1)
+  }
+  return this
+}
+
+Buffer.prototype.swap32 = function swap32 () {
+  var len = this.length
+  if (len % 4 !== 0) {
+    throw new RangeError('Buffer size must be a multiple of 32-bits')
+  }
+  for (var i = 0; i < len; i += 4) {
+    swap(this, i, i + 3)
+    swap(this, i + 1, i + 2)
+  }
+  return this
+}
+
+Buffer.prototype.swap64 = function swap64 () {
+  var len = this.length
+  if (len % 8 !== 0) {
+    throw new RangeError('Buffer size must be a multiple of 64-bits')
+  }
+  for (var i = 0; i < len; i += 8) {
+    swap(this, i, i + 7)
+    swap(this, i + 1, i + 6)
+    swap(this, i + 2, i + 5)
+    swap(this, i + 3, i + 4)
+  }
+  return this
+}
+
+Buffer.prototype.toString = function toString () {
+  var length = this.length
+  if (length === 0) return ''
+  if (arguments.length === 0) return utf8Slice(this, 0, length)
+  return slowToString.apply(this, arguments)
+}
+
+Buffer.prototype.toLocaleString = Buffer.prototype.toString
+
+Buffer.prototype.equals = function equals (b) {
+  if (!Buffer.isBuffer(b)) throw new TypeError('Argument must be a Buffer')
+  if (this === b) return true
+  return Buffer.compare(this, b) === 0
+}
+
+Buffer.prototype.inspect = function inspect () {
+  var str = ''
+  var max = exports.INSPECT_MAX_BYTES
+  if (this.length > 0) {
+    str = this.toString('hex', 0, max).match(/.{2}/g).join(' ')
+    if (this.length > max) str += ' ... '
+  }
+  return '<Buffer ' + str + '>'
+}
+
+Buffer.prototype.compare = function compare (target, start, end, thisStart, thisEnd) {
+  if (!Buffer.isBuffer(target)) {
+    throw new TypeError('Argument must be a Buffer')
+  }
+
+  if (start === undefined) {
+    start = 0
+  }
+  if (end === undefined) {
+    end = target ? target.length : 0
+  }
+  if (thisStart === undefined) {
+    thisStart = 0
+  }
+  if (thisEnd === undefined) {
+    thisEnd = this.length
+  }
+
+  if (start < 0 || end > target.length || thisStart < 0 || thisEnd > this.length) {
+    throw new RangeError('out of range index')
+  }
+
+  if (thisStart >= thisEnd && start >= end) {
+    return 0
+  }
+  if (thisStart >= thisEnd) {
+    return -1
+  }
+  if (start >= end) {
+    return 1
+  }
+
+  start >>>= 0
+  end >>>= 0
+  thisStart >>>= 0
+  thisEnd >>>= 0
+
+  if (this === target) return 0
+
+  var x = thisEnd - thisStart
+  var y = end - start
+  var len = Math.min(x, y)
+
+  var thisCopy = this.slice(thisStart, thisEnd)
+  var targetCopy = target.slice(start, end)
+
+  for (var i = 0; i < len; ++i) {
+    if (thisCopy[i] !== targetCopy[i]) {
+      x = thisCopy[i]
+      y = targetCopy[i]
+      break
+    }
+  }
+
+  if (x < y) return -1
+  if (y < x) return 1
+  return 0
+}
+
+// Finds either the first index of `val` in `buffer` at offset >= `byteOffset`,
+// OR the last index of `val` in `buffer` at offset <= `byteOffset`.
+//
+// Arguments:
+// - buffer - a Buffer to search
+// - val - a string, Buffer, or number
+// - byteOffset - an index into `buffer`; will be clamped to an int32
+// - encoding - an optional encoding, relevant is val is a string
+// - dir - true for indexOf, false for lastIndexOf
+function bidirectionalIndexOf (buffer, val, byteOffset, encoding, dir) {
+  // Empty buffer means no match
+  if (buffer.length === 0) return -1
+
+  // Normalize byteOffset
+  if (typeof byteOffset === 'string') {
+    encoding = byteOffset
+    byteOffset = 0
+  } else if (byteOffset > 0x7fffffff) {
+    byteOffset = 0x7fffffff
+  } else if (byteOffset < -0x80000000) {
+    byteOffset = -0x80000000
+  }
+  byteOffset = +byteOffset  // Coerce to Number.
+  if (numberIsNaN(byteOffset)) {
+    // byteOffset: it it's undefined, null, NaN, "foo", etc, search whole buffer
+    byteOffset = dir ? 0 : (buffer.length - 1)
+  }
+
+  // Normalize byteOffset: negative offsets start from the end of the buffer
+  if (byteOffset < 0) byteOffset = buffer.length + byteOffset
+  if (byteOffset >= buffer.length) {
+    if (dir) return -1
+    else byteOffset = buffer.length - 1
+  } else if (byteOffset < 0) {
+    if (dir) byteOffset = 0
+    else return -1
+  }
+
+  // Normalize val
+  if (typeof val === 'string') {
+    val = Buffer.from(val, encoding)
+  }
+
+  // Finally, search either indexOf (if dir is true) or lastIndexOf
+  if (Buffer.isBuffer(val)) {
+    // Special case: looking for empty string/buffer always fails
+    if (val.length === 0) {
+      return -1
+    }
+    return arrayIndexOf(buffer, val, byteOffset, encoding, dir)
+  } else if (typeof val === 'number') {
+    val = val & 0xFF // Search for a byte value [0-255]
+    if (typeof Uint8Array.prototype.indexOf === 'function') {
+      if (dir) {
+        return Uint8Array.prototype.indexOf.call(buffer, val, byteOffset)
+      } else {
+        return Uint8Array.prototype.lastIndexOf.call(buffer, val, byteOffset)
+      }
+    }
+    return arrayIndexOf(buffer, [ val ], byteOffset, encoding, dir)
+  }
+
+  throw new TypeError('val must be string, number or Buffer')
+}
+
+function arrayIndexOf (arr, val, byteOffset, encoding, dir) {
+  var indexSize = 1
+  var arrLength = arr.length
+  var valLength = val.length
+
+  if (encoding !== undefined) {
+    encoding = String(encoding).toLowerCase()
+    if (encoding === 'ucs2' || encoding === 'ucs-2' ||
+        encoding === 'utf16le' || encoding === 'utf-16le') {
+      if (arr.length < 2 || val.length < 2) {
+        return -1
+      }
+      indexSize = 2
+      arrLength /= 2
+      valLength /= 2
+      byteOffset /= 2
+    }
+  }
+
+  function read (buf, i) {
+    if (indexSize === 1) {
+      return buf[i]
+    } else {
+      return buf.readUInt16BE(i * indexSize)
+    }
+  }
+
+  var i
+  if (dir) {
+    var foundIndex = -1
+    for (i = byteOffset; i < arrLength; i++) {
+      if (read(arr, i) === read(val, foundIndex === -1 ? 0 : i - foundIndex)) {
+        if (foundIndex === -1) foundIndex = i
+        if (i - foundIndex + 1 === valLength) return foundIndex * indexSize
+      } else {
+        if (foundIndex !== -1) i -= i - foundIndex
+        foundIndex = -1
+      }
+    }
+  } else {
+    if (byteOffset + valLength > arrLength) byteOffset = arrLength - valLength
+    for (i = byteOffset; i >= 0; i--) {
+      var found = true
+      for (var j = 0; j < valLength; j++) {
+        if (read(arr, i + j) !== read(val, j)) {
+          found = false
+          break
+        }
+      }
+      if (found) return i
+    }
+  }
+
+  return -1
+}
+
+Buffer.prototype.includes = function includes (val, byteOffset, encoding) {
+  return this.indexOf(val, byteOffset, encoding) !== -1
+}
+
+Buffer.prototype.indexOf = function indexOf (val, byteOffset, encoding) {
+  return bidirectionalIndexOf(this, val, byteOffset, encoding, true)
+}
+
+Buffer.prototype.lastIndexOf = function lastIndexOf (val, byteOffset, encoding) {
+  return bidirectionalIndexOf(this, val, byteOffset, encoding, false)
+}
+
+function hexWrite (buf, string, offset, length) {
+  offset = Number(offset) || 0
+  var remaining = buf.length - offset
+  if (!length) {
+    length = remaining
+  } else {
+    length = Number(length)
+    if (length > remaining) {
+      length = remaining
+    }
+  }
+
+  var strLen = string.length
+
+  if (length > strLen / 2) {
+    length = strLen / 2
+  }
+  for (var i = 0; i < length; ++i) {
+    var parsed = parseInt(string.substr(i * 2, 2), 16)
+    if (numberIsNaN(parsed)) return i
+    buf[offset + i] = parsed
+  }
+  return i
+}
+
+function utf8Write (buf, string, offset, length) {
+  return blitBuffer(utf8ToBytes(string, buf.length - offset), buf, offset, length)
+}
+
+function asciiWrite (buf, string, offset, length) {
+  return blitBuffer(asciiToBytes(string), buf, offset, length)
+}
+
+function latin1Write (buf, string, offset, length) {
+  return asciiWrite(buf, string, offset, length)
+}
+
+function base64Write (buf, string, offset, length) {
+  return blitBuffer(base64ToBytes(string), buf, offset, length)
+}
+
+function ucs2Write (buf, string, offset, length) {
+  return blitBuffer(utf16leToBytes(string, buf.length - offset), buf, offset, length)
+}
+
+Buffer.prototype.write = function write (string, offset, length, encoding) {
+  // Buffer#write(string)
+  if (offset === undefined) {
+    encoding = 'utf8'
+    length = this.length
+    offset = 0
+  // Buffer#write(string, encoding)
+  } else if (length === undefined && typeof offset === 'string') {
+    encoding = offset
+    length = this.length
+    offset = 0
+  // Buffer#write(string, offset[, length][, encoding])
+  } else if (isFinite(offset)) {
+    offset = offset >>> 0
+    if (isFinite(length)) {
+      length = length >>> 0
+      if (encoding === undefined) encoding = 'utf8'
+    } else {
+      encoding = length
+      length = undefined
+    }
+  } else {
+    throw new Error(
+      'Buffer.write(string, encoding, offset[, length]) is no longer supported'
+    )
+  }
+
+  var remaining = this.length - offset
+  if (length === undefined || length > remaining) length = remaining
+
+  if ((string.length > 0 && (length < 0 || offset < 0)) || offset > this.length) {
+    throw new RangeError('Attempt to write outside buffer bounds')
+  }
+
+  if (!encoding) encoding = 'utf8'
+
+  var loweredCase = false
+  for (;;) {
+    switch (encoding) {
+      case 'hex':
+        return hexWrite(this, string, offset, length)
+
+      case 'utf8':
+      case 'utf-8':
+        return utf8Write(this, string, offset, length)
+
+      case 'ascii':
+        return asciiWrite(this, string, offset, length)
+
+      case 'latin1':
+      case 'binary':
+        return latin1Write(this, string, offset, length)
+
+      case 'base64':
+        // Warning: maxLength not taken into account in base64Write
+        return base64Write(this, string, offset, length)
+
+      case 'ucs2':
+      case 'ucs-2':
+      case 'utf16le':
+      case 'utf-16le':
+        return ucs2Write(this, string, offset, length)
+
+      default:
+        if (loweredCase) throw new TypeError('Unknown encoding: ' + encoding)
+        encoding = ('' + encoding).toLowerCase()
+        loweredCase = true
+    }
+  }
+}
+
+Buffer.prototype.toJSON = function toJSON () {
+  return {
+    type: 'Buffer',
+    data: Array.prototype.slice.call(this._arr || this, 0)
+  }
+}
+
+function base64Slice (buf, start, end) {
+  if (start === 0 && end === buf.length) {
+    return base64.fromByteArray(buf)
+  } else {
+    return base64.fromByteArray(buf.slice(start, end))
+  }
+}
+
+function utf8Slice (buf, start, end) {
+  end = Math.min(buf.length, end)
+  var res = []
+
+  var i = start
+  while (i < end) {
+    var firstByte = buf[i]
+    var codePoint = null
+    var bytesPerSequence = (firstByte > 0xEF) ? 4
+      : (firstByte > 0xDF) ? 3
+      : (firstByte > 0xBF) ? 2
+      : 1
+
+    if (i + bytesPerSequence <= end) {
+      var secondByte, thirdByte, fourthByte, tempCodePoint
+
+      switch (bytesPerSequence) {
+        case 1:
+          if (firstByte < 0x80) {
+            codePoint = firstByte
+          }
+          break
+        case 2:
+          secondByte = buf[i + 1]
+          if ((secondByte & 0xC0) === 0x80) {
+            tempCodePoint = (firstByte & 0x1F) << 0x6 | (secondByte & 0x3F)
+            if (tempCodePoint > 0x7F) {
+              codePoint = tempCodePoint
+            }
+          }
+          break
+        case 3:
+          secondByte = buf[i + 1]
+          thirdByte = buf[i + 2]
+          if ((secondByte & 0xC0) === 0x80 && (thirdByte & 0xC0) === 0x80) {
+            tempCodePoint = (firstByte & 0xF) << 0xC | (secondByte & 0x3F) << 0x6 | (thirdByte & 0x3F)
+            if (tempCodePoint > 0x7FF && (tempCodePoint < 0xD800 || tempCodePoint > 0xDFFF)) {
+              codePoint = tempCodePoint
+            }
+          }
+          break
+        case 4:
+          secondByte = buf[i + 1]
+          thirdByte = buf[i + 2]
+          fourthByte = buf[i + 3]
+          if ((secondByte & 0xC0) === 0x80 && (thirdByte & 0xC0) === 0x80 && (fourthByte & 0xC0) === 0x80) {
+            tempCodePoint = (firstByte & 0xF) << 0x12 | (secondByte & 0x3F) << 0xC | (thirdByte & 0x3F) << 0x6 | (fourthByte & 0x3F)
+            if (tempCodePoint > 0xFFFF && tempCodePoint < 0x110000) {
+              codePoint = tempCodePoint
+            }
+          }
+      }
+    }
+
+    if (codePoint === null) {
+      // we did not generate a valid codePoint so insert a
+      // replacement char (U+FFFD) and advance only 1 byte
+      codePoint = 0xFFFD
+      bytesPerSequence = 1
+    } else if (codePoint > 0xFFFF) {
+      // encode to utf16 (surrogate pair dance)
+      codePoint -= 0x10000
+      res.push(codePoint >>> 10 & 0x3FF | 0xD800)
+      codePoint = 0xDC00 | codePoint & 0x3FF
+    }
+
+    res.push(codePoint)
+    i += bytesPerSequence
+  }
+
+  return decodeCodePointsArray(res)
+}
+
+// Based on http://stackoverflow.com/a/22747272/680742, the browser with
+// the lowest limit is Chrome, with 0x10000 args.
+// We go 1 magnitude less, for safety
+var MAX_ARGUMENTS_LENGTH = 0x1000
+
+function decodeCodePointsArray (codePoints) {
+  var len = codePoints.length
+  if (len <= MAX_ARGUMENTS_LENGTH) {
+    return String.fromCharCode.apply(String, codePoints) // avoid extra slice()
+  }
+
+  // Decode in chunks to avoid "call stack size exceeded".
+  var res = ''
+  var i = 0
+  while (i < len) {
+    res += String.fromCharCode.apply(
+      String,
+      codePoints.slice(i, i += MAX_ARGUMENTS_LENGTH)
+    )
+  }
+  return res
+}
+
+function asciiSlice (buf, start, end) {
+  var ret = ''
+  end = Math.min(buf.length, end)
+
+  for (var i = start; i < end; ++i) {
+    ret += String.fromCharCode(buf[i] & 0x7F)
+  }
+  return ret
+}
+
+function latin1Slice (buf, start, end) {
+  var ret = ''
+  end = Math.min(buf.length, end)
+
+  for (var i = start; i < end; ++i) {
+    ret += String.fromCharCode(buf[i])
+  }
+  return ret
+}
+
+function hexSlice (buf, start, end) {
+  var len = buf.length
+
+  if (!start || start < 0) start = 0
+  if (!end || end < 0 || end > len) end = len
+
+  var out = ''
+  for (var i = start; i < end; ++i) {
+    out += toHex(buf[i])
+  }
+  return out
+}
+
+function utf16leSlice (buf, start, end) {
+  var bytes = buf.slice(start, end)
+  var res = ''
+  for (var i = 0; i < bytes.length; i += 2) {
+    res += String.fromCharCode(bytes[i] + (bytes[i + 1] * 256))
+  }
+  return res
+}
+
+Buffer.prototype.slice = function slice (start, end) {
+  var len = this.length
+  start = ~~start
+  end = end === undefined ? len : ~~end
+
+  if (start < 0) {
+    start += len
+    if (start < 0) start = 0
+  } else if (start > len) {
+    start = len
+  }
+
+  if (end < 0) {
+    end += len
+    if (end < 0) end = 0
+  } else if (end > len) {
+    end = len
+  }
+
+  if (end < start) end = start
+
+  var newBuf = this.subarray(start, end)
+  // Return an augmented `Uint8Array` instance
+  newBuf.__proto__ = Buffer.prototype
+  return newBuf
+}
+
+/*
+ * Need to make sure that buffer isn't trying to write out of bounds.
+ */
+function checkOffset (offset, ext, length) {
+  if ((offset % 1) !== 0 || offset < 0) throw new RangeError('offset is not uint')
+  if (offset + ext > length) throw new RangeError('Trying to access beyond buffer length')
+}
+
+Buffer.prototype.readUIntLE = function readUIntLE (offset, byteLength, noAssert) {
+  offset = offset >>> 0
+  byteLength = byteLength >>> 0
+  if (!noAssert) checkOffset(offset, byteLength, this.length)
+
+  var val = this[offset]
+  var mul = 1
+  var i = 0
+  while (++i < byteLength && (mul *= 0x100)) {
+    val += this[offset + i] * mul
+  }
+
+  return val
+}
+
+Buffer.prototype.readUIntBE = function readUIntBE (offset, byteLength, noAssert) {
+  offset = offset >>> 0
+  byteLength = byteLength >>> 0
+  if (!noAssert) {
+    checkOffset(offset, byteLength, this.length)
+  }
+
+  var val = this[offset + --byteLength]
+  var mul = 1
+  while (byteLength > 0 && (mul *= 0x100)) {
+    val += this[offset + --byteLength] * mul
+  }
+
+  return val
+}
+
+Buffer.prototype.readUInt8 = function readUInt8 (offset, noAssert) {
+  offset = offset >>> 0
+  if (!noAssert) checkOffset(offset, 1, this.length)
+  return this[offset]
+}
+
+Buffer.prototype.readUInt16LE = function readUInt16LE (offset, noAssert) {
+  offset = offset >>> 0
+  if (!noAssert) checkOffset(offset, 2, this.length)
+  return this[offset] | (this[offset + 1] << 8)
+}
+
+Buffer.prototype.readUInt16BE = function readUInt16BE (offset, noAssert) {
+  offset = offset >>> 0
+  if (!noAssert) checkOffset(offset, 2, this.length)
+  return (this[offset] << 8) | this[offset + 1]
+}
+
+Buffer.prototype.readUInt32LE = function readUInt32LE (offset, noAssert) {
+  offset = offset >>> 0
+  if (!noAssert) checkOffset(offset, 4, this.length)
+
+  return ((this[offset]) |
+      (this[offset + 1] << 8) |
+      (this[offset + 2] << 16)) +
+      (this[offset + 3] * 0x1000000)
+}
+
+Buffer.prototype.readUInt32BE = function readUInt32BE (offset, noAssert) {
+  offset = offset >>> 0
+  if (!noAssert) checkOffset(offset, 4, this.length)
+
+  return (this[offset] * 0x1000000) +
+    ((this[offset + 1] << 16) |
+    (this[offset + 2] << 8) |
+    this[offset + 3])
+}
+
+Buffer.prototype.readIntLE = function readIntLE (offset, byteLength, noAssert) {
+  offset = offset >>> 0
+  byteLength = byteLength >>> 0
+  if (!noAssert) checkOffset(offset, byteLength, this.length)
+
+  var val = this[offset]
+  var mul = 1
+  var i = 0
+  while (++i < byteLength && (mul *= 0x100)) {
+    val += this[offset + i] * mul
+  }
+  mul *= 0x80
+
+  if (val >= mul) val -= Math.pow(2, 8 * byteLength)
+
+  return val
+}
+
+Buffer.prototype.readIntBE = function readIntBE (offset, byteLength, noAssert) {
+  offset = offset >>> 0
+  byteLength = byteLength >>> 0
+  if (!noAssert) checkOffset(offset, byteLength, this.length)
+
+  var i = byteLength
+  var mul = 1
+  var val = this[offset + --i]
+  while (i > 0 && (mul *= 0x100)) {
+    val += this[offset + --i] * mul
+  }
+  mul *= 0x80
+
+  if (val >= mul) val -= Math.pow(2, 8 * byteLength)
+
+  return val
+}
+
+Buffer.prototype.readInt8 = function readInt8 (offset, noAssert) {
+  offset = offset >>> 0
+  if (!noAssert) checkOffset(offset, 1, this.length)
+  if (!(this[offset] & 0x80)) return (this[offset])
+  return ((0xff - this[offset] + 1) * -1)
+}
+
+Buffer.prototype.readInt16LE = function readInt16LE (offset, noAssert) {
+  offset = offset >>> 0
+  if (!noAssert) checkOffset(offset, 2, this.length)
+  var val = this[offset] | (this[offset + 1] << 8)
+  return (val & 0x8000) ? val | 0xFFFF0000 : val
+}
+
+Buffer.prototype.readInt16BE = function readInt16BE (offset, noAssert) {
+  offset = offset >>> 0
+  if (!noAssert) checkOffset(offset, 2, this.length)
+  var val = this[offset + 1] | (this[offset] << 8)
+  return (val & 0x8000) ? val | 0xFFFF0000 : val
+}
+
+Buffer.prototype.readInt32LE = function readInt32LE (offset, noAssert) {
+  offset = offset >>> 0
+  if (!noAssert) checkOffset(offset, 4, this.length)
+
+  return (this[offset]) |
+    (this[offset + 1] << 8) |
+    (this[offset + 2] << 16) |
+    (this[offset + 3] << 24)
+}
+
+Buffer.prototype.readInt32BE = function readInt32BE (offset, noAssert) {
+  offset = offset >>> 0
+  if (!noAssert) checkOffset(offset, 4, this.length)
+
+  return (this[offset] << 24) |
+    (this[offset + 1] << 16) |
+    (this[offset + 2] << 8) |
+    (this[offset + 3])
+}
+
+Buffer.prototype.readFloatLE = function readFloatLE (offset, noAssert) {
+  offset = offset >>> 0
+  if (!noAssert) checkOffset(offset, 4, this.length)
+  return ieee754.read(this, offset, true, 23, 4)
+}
+
+Buffer.prototype.readFloatBE = function readFloatBE (offset, noAssert) {
+  offset = offset >>> 0
+  if (!noAssert) checkOffset(offset, 4, this.length)
+  return ieee754.read(this, offset, false, 23, 4)
+}
+
+Buffer.prototype.readDoubleLE = function readDoubleLE (offset, noAssert) {
+  offset = offset >>> 0
+  if (!noAssert) checkOffset(offset, 8, this.length)
+  return ieee754.read(this, offset, true, 52, 8)
+}
+
+Buffer.prototype.readDoubleBE = function readDoubleBE (offset, noAssert) {
+  offset = offset >>> 0
+  if (!noAssert) checkOffset(offset, 8, this.length)
+  return ieee754.read(this, offset, false, 52, 8)
+}
+
+function checkInt (buf, value, offset, ext, max, min) {
+  if (!Buffer.isBuffer(buf)) throw new TypeError('"buffer" argument must be a Buffer instance')
+  if (value > max || value < min) throw new RangeError('"value" argument is out of bounds')
+  if (offset + ext > buf.length) throw new RangeError('Index out of range')
+}
+
+Buffer.prototype.writeUIntLE = function writeUIntLE (value, offset, byteLength, noAssert) {
+  value = +value
+  offset = offset >>> 0
+  byteLength = byteLength >>> 0
+  if (!noAssert) {
+    var maxBytes = Math.pow(2, 8 * byteLength) - 1
+    checkInt(this, value, offset, byteLength, maxBytes, 0)
+  }
+
+  var mul = 1
+  var i = 0
+  this[offset] = value & 0xFF
+  while (++i < byteLength && (mul *= 0x100)) {
+    this[offset + i] = (value / mul) & 0xFF
+  }
+
+  return offset + byteLength
+}
+
+Buffer.prototype.writeUIntBE = function writeUIntBE (value, offset, byteLength, noAssert) {
+  value = +value
+  offset = offset >>> 0
+  byteLength = byteLength >>> 0
+  if (!noAssert) {
+    var maxBytes = Math.pow(2, 8 * byteLength) - 1
+    checkInt(this, value, offset, byteLength, maxBytes, 0)
+  }
+
+  var i = byteLength - 1
+  var mul = 1
+  this[offset + i] = value & 0xFF
+  while (--i >= 0 && (mul *= 0x100)) {
+    this[offset + i] = (value / mul) & 0xFF
+  }
+
+  return offset + byteLength
+}
+
+Buffer.prototype.writeUInt8 = function writeUInt8 (value, offset, noAssert) {
+  value = +value
+  offset = offset >>> 0
+  if (!noAssert) checkInt(this, value, offset, 1, 0xff, 0)
+  this[offset] = (value & 0xff)
+  return offset + 1
+}
+
+Buffer.prototype.writeUInt16LE = function writeUInt16LE (value, offset, noAssert) {
+  value = +value
+  offset = offset >>> 0
+  if (!noAssert) checkInt(this, value, offset, 2, 0xffff, 0)
+  this[offset] = (value & 0xff)
+  this[offset + 1] = (value >>> 8)
+  return offset + 2
+}
+
+Buffer.prototype.writeUInt16BE = function writeUInt16BE (value, offset, noAssert) {
+  value = +value
+  offset = offset >>> 0
+  if (!noAssert) checkInt(this, value, offset, 2, 0xffff, 0)
+  this[offset] = (value >>> 8)
+  this[offset + 1] = (value & 0xff)
+  return offset + 2
+}
+
+Buffer.prototype.writeUInt32LE = function writeUInt32LE (value, offset, noAssert) {
+  value = +value
+  offset = offset >>> 0
+  if (!noAssert) checkInt(this, value, offset, 4, 0xffffffff, 0)
+  this[offset + 3] = (value >>> 24)
+  this[offset + 2] = (value >>> 16)
+  this[offset + 1] = (value >>> 8)
+  this[offset] = (value & 0xff)
+  return offset + 4
+}
+
+Buffer.prototype.writeUInt32BE = function writeUInt32BE (value, offset, noAssert) {
+  value = +value
+  offset = offset >>> 0
+  if (!noAssert) checkInt(this, value, offset, 4, 0xffffffff, 0)
+  this[offset] = (value >>> 24)
+  this[offset + 1] = (value >>> 16)
+  this[offset + 2] = (value >>> 8)
+  this[offset + 3] = (value & 0xff)
+  return offset + 4
+}
+
+Buffer.prototype.writeIntLE = function writeIntLE (value, offset, byteLength, noAssert) {
+  value = +value
+  offset = offset >>> 0
+  if (!noAssert) {
+    var limit = Math.pow(2, (8 * byteLength) - 1)
+
+    checkInt(this, value, offset, byteLength, limit - 1, -limit)
+  }
+
+  var i = 0
+  var mul = 1
+  var sub = 0
+  this[offset] = value & 0xFF
+  while (++i < byteLength && (mul *= 0x100)) {
+    if (value < 0 && sub === 0 && this[offset + i - 1] !== 0) {
+      sub = 1
+    }
+    this[offset + i] = ((value / mul) >> 0) - sub & 0xFF
+  }
+
+  return offset + byteLength
+}
+
+Buffer.prototype.writeIntBE = function writeIntBE (value, offset, byteLength, noAssert) {
+  value = +value
+  offset = offset >>> 0
+  if (!noAssert) {
+    var limit = Math.pow(2, (8 * byteLength) - 1)
+
+    checkInt(this, value, offset, byteLength, limit - 1, -limit)
+  }
+
+  var i = byteLength - 1
+  var mul = 1
+  var sub = 0
+  this[offset + i] = value & 0xFF
+  while (--i >= 0 && (mul *= 0x100)) {
+    if (value < 0 && sub === 0 && this[offset + i + 1] !== 0) {
+      sub = 1
+    }
+    this[offset + i] = ((value / mul) >> 0) - sub & 0xFF
+  }
+
+  return offset + byteLength
+}
+
+Buffer.prototype.writeInt8 = function writeInt8 (value, offset, noAssert) {
+  value = +value
+  offset = offset >>> 0
+  if (!noAssert) checkInt(this, value, offset, 1, 0x7f, -0x80)
+  if (value < 0) value = 0xff + value + 1
+  this[offset] = (value & 0xff)
+  return offset + 1
+}
+
+Buffer.prototype.writeInt16LE = function writeInt16LE (value, offset, noAssert) {
+  value = +value
+  offset = offset >>> 0
+  if (!noAssert) checkInt(this, value, offset, 2, 0x7fff, -0x8000)
+  this[offset] = (value & 0xff)
+  this[offset + 1] = (value >>> 8)
+  return offset + 2
+}
+
+Buffer.prototype.writeInt16BE = function writeInt16BE (value, offset, noAssert) {
+  value = +value
+  offset = offset >>> 0
+  if (!noAssert) checkInt(this, value, offset, 2, 0x7fff, -0x8000)
+  this[offset] = (value >>> 8)
+  this[offset + 1] = (value & 0xff)
+  return offset + 2
+}
+
+Buffer.prototype.writeInt32LE = function writeInt32LE (value, offset, noAssert) {
+  value = +value
+  offset = offset >>> 0
+  if (!noAssert) checkInt(this, value, offset, 4, 0x7fffffff, -0x80000000)
+  this[offset] = (value & 0xff)
+  this[offset + 1] = (value >>> 8)
+  this[offset + 2] = (value >>> 16)
+  this[offset + 3] = (value >>> 24)
+  return offset + 4
+}
+
+Buffer.prototype.writeInt32BE = function writeInt32BE (value, offset, noAssert) {
+  value = +value
+  offset = offset >>> 0
+  if (!noAssert) checkInt(this, value, offset, 4, 0x7fffffff, -0x80000000)
+  if (value < 0) value = 0xffffffff + value + 1
+  this[offset] = (value >>> 24)
+  this[offset + 1] = (value >>> 16)
+  this[offset + 2] = (value >>> 8)
+  this[offset + 3] = (value & 0xff)
+  return offset + 4
+}
+
+function checkIEEE754 (buf, value, offset, ext, max, min) {
+  if (offset + ext > buf.length) throw new RangeError('Index out of range')
+  if (offset < 0) throw new RangeError('Index out of range')
+}
+
+function writeFloat (buf, value, offset, littleEndian, noAssert) {
+  value = +value
+  offset = offset >>> 0
+  if (!noAssert) {
+    checkIEEE754(buf, value, offset, 4, 3.4028234663852886e+38, -3.4028234663852886e+38)
+  }
+  ieee754.write(buf, value, offset, littleEndian, 23, 4)
+  return offset + 4
+}
+
+Buffer.prototype.writeFloatLE = function writeFloatLE (value, offset, noAssert) {
+  return writeFloat(this, value, offset, true, noAssert)
+}
+
+Buffer.prototype.writeFloatBE = function writeFloatBE (value, offset, noAssert) {
+  return writeFloat(this, value, offset, false, noAssert)
+}
+
+function writeDouble (buf, value, offset, littleEndian, noAssert) {
+  value = +value
+  offset = offset >>> 0
+  if (!noAssert) {
+    checkIEEE754(buf, value, offset, 8, 1.7976931348623157E+308, -1.7976931348623157E+308)
+  }
+  ieee754.write(buf, value, offset, littleEndian, 52, 8)
+  return offset + 8
+}
+
+Buffer.prototype.writeDoubleLE = function writeDoubleLE (value, offset, noAssert) {
+  return writeDouble(this, value, offset, true, noAssert)
+}
+
+Buffer.prototype.writeDoubleBE = function writeDoubleBE (value, offset, noAssert) {
+  return writeDouble(this, value, offset, false, noAssert)
+}
+
+// copy(targetBuffer, targetStart=0, sourceStart=0, sourceEnd=buffer.length)
+Buffer.prototype.copy = function copy (target, targetStart, start, end) {
+  if (!Buffer.isBuffer(target)) throw new TypeError('argument should be a Buffer')
+  if (!start) start = 0
+  if (!end && end !== 0) end = this.length
+  if (targetStart >= target.length) targetStart = target.length
+  if (!targetStart) targetStart = 0
+  if (end > 0 && end < start) end = start
+
+  // Copy 0 bytes; we're done
+  if (end === start) return 0
+  if (target.length === 0 || this.length === 0) return 0
+
+  // Fatal error conditions
+  if (targetStart < 0) {
+    throw new RangeError('targetStart out of bounds')
+  }
+  if (start < 0 || start >= this.length) throw new RangeError('Index out of range')
+  if (end < 0) throw new RangeError('sourceEnd out of bounds')
+
+  // Are we oob?
+  if (end > this.length) end = this.length
+  if (target.length - targetStart < end - start) {
+    end = target.length - targetStart + start
+  }
+
+  var len = end - start
+
+  if (this === target && typeof Uint8Array.prototype.copyWithin === 'function') {
+    // Use built-in when available, missing from IE11
+    this.copyWithin(targetStart, start, end)
+  } else if (this === target && start < targetStart && targetStart < end) {
+    // descending copy from end
+    for (var i = len - 1; i >= 0; --i) {
+      target[i + targetStart] = this[i + start]
+    }
+  } else {
+    Uint8Array.prototype.set.call(
+      target,
+      this.subarray(start, end),
+      targetStart
+    )
+  }
+
+  return len
+}
+
+// Usage:
+//    buffer.fill(number[, offset[, end]])
+//    buffer.fill(buffer[, offset[, end]])
+//    buffer.fill(string[, offset[, end]][, encoding])
+Buffer.prototype.fill = function fill (val, start, end, encoding) {
+  // Handle string cases:
+  if (typeof val === 'string') {
+    if (typeof start === 'string') {
+      encoding = start
+      start = 0
+      end = this.length
+    } else if (typeof end === 'string') {
+      encoding = end
+      end = this.length
+    }
+    if (encoding !== undefined && typeof encoding !== 'string') {
+      throw new TypeError('encoding must be a string')
+    }
+    if (typeof encoding === 'string' && !Buffer.isEncoding(encoding)) {
+      throw new TypeError('Unknown encoding: ' + encoding)
+    }
+    if (val.length === 1) {
+      var code = val.charCodeAt(0)
+      if ((encoding === 'utf8' && code < 128) ||
+          encoding === 'latin1') {
+        // Fast path: If `val` fits into a single byte, use that numeric value.
+        val = code
+      }
+    }
+  } else if (typeof val === 'number') {
+    val = val & 255
+  }
+
+  // Invalid ranges are not set to a default, so can range check early.
+  if (start < 0 || this.length < start || this.length < end) {
+    throw new RangeError('Out of range index')
+  }
+
+  if (end <= start) {
+    return this
+  }
+
+  start = start >>> 0
+  end = end === undefined ? this.length : end >>> 0
+
+  if (!val) val = 0
+
+  var i
+  if (typeof val === 'number') {
+    for (i = start; i < end; ++i) {
+      this[i] = val
+    }
+  } else {
+    var bytes = Buffer.isBuffer(val)
+      ? val
+      : new Buffer(val, encoding)
+    var len = bytes.length
+    if (len === 0) {
+      throw new TypeError('The value "' + val +
+        '" is invalid for argument "value"')
+    }
+    for (i = 0; i < end - start; ++i) {
+      this[i + start] = bytes[i % len]
+    }
+  }
+
+  return this
+}
+
+// HELPER FUNCTIONS
+// ================
+
+var INVALID_BASE64_RE = /[^+/0-9A-Za-z-_]/g
+
+function base64clean (str) {
+  // Node takes equal signs as end of the Base64 encoding
+  str = str.split('=')[0]
+  // Node strips out invalid characters like \n and \t from the string, base64-js does not
+  str = str.trim().replace(INVALID_BASE64_RE, '')
+  // Node converts strings with length < 2 to ''
+  if (str.length < 2) return ''
+  // Node allows for non-padded base64 strings (missing trailing ===), base64-js does not
+  while (str.length % 4 !== 0) {
+    str = str + '='
+  }
+  return str
+}
+
+function toHex (n) {
+  if (n < 16) return '0' + n.toString(16)
+  return n.toString(16)
+}
+
+function utf8ToBytes (string, units) {
+  units = units || Infinity
+  var codePoint
+  var length = string.length
+  var leadSurrogate = null
+  var bytes = []
+
+  for (var i = 0; i < length; ++i) {
+    codePoint = string.charCodeAt(i)
+
+    // is surrogate component
+    if (codePoint > 0xD7FF && codePoint < 0xE000) {
+      // last char was a lead
+      if (!leadSurrogate) {
+        // no lead yet
+        if (codePoint > 0xDBFF) {
+          // unexpected trail
+          if ((units -= 3) > -1) bytes.push(0xEF, 0xBF, 0xBD)
+          continue
+        } else if (i + 1 === length) {
+          // unpaired lead
+          if ((units -= 3) > -1) bytes.push(0xEF, 0xBF, 0xBD)
+          continue
+        }
+
+        // valid lead
+        leadSurrogate = codePoint
+
+        continue
+      }
+
+      // 2 leads in a row
+      if (codePoint < 0xDC00) {
+        if ((units -= 3) > -1) bytes.push(0xEF, 0xBF, 0xBD)
+        leadSurrogate = codePoint
+        continue
+      }
+
+      // valid surrogate pair
+      codePoint = (leadSurrogate - 0xD800 << 10 | codePoint - 0xDC00) + 0x10000
+    } else if (leadSurrogate) {
+      // valid bmp char, but last char was a lead
+      if ((units -= 3) > -1) bytes.push(0xEF, 0xBF, 0xBD)
+    }
+
+    leadSurrogate = null
+
+    // encode utf8
+    if (codePoint < 0x80) {
+      if ((units -= 1) < 0) break
+      bytes.push(codePoint)
+    } else if (codePoint < 0x800) {
+      if ((units -= 2) < 0) break
+      bytes.push(
+        codePoint >> 0x6 | 0xC0,
+        codePoint & 0x3F | 0x80
+      )
+    } else if (codePoint < 0x10000) {
+      if ((units -= 3) < 0) break
+      bytes.push(
+        codePoint >> 0xC | 0xE0,
+        codePoint >> 0x6 & 0x3F | 0x80,
+        codePoint & 0x3F | 0x80
+      )
+    } else if (codePoint < 0x110000) {
+      if ((units -= 4) < 0) break
+      bytes.push(
+        codePoint >> 0x12 | 0xF0,
+        codePoint >> 0xC & 0x3F | 0x80,
+        codePoint >> 0x6 & 0x3F | 0x80,
+        codePoint & 0x3F | 0x80
+      )
+    } else {
+      throw new Error('Invalid code point')
+    }
+  }
+
+  return bytes
+}
+
+function asciiToBytes (str) {
+  var byteArray = []
+  for (var i = 0; i < str.length; ++i) {
+    // Node's code seems to be doing this and not & 0x7F..
+    byteArray.push(str.charCodeAt(i) & 0xFF)
+  }
+  return byteArray
+}
+
+function utf16leToBytes (str, units) {
+  var c, hi, lo
+  var byteArray = []
+  for (var i = 0; i < str.length; ++i) {
+    if ((units -= 2) < 0) break
+
+    c = str.charCodeAt(i)
+    hi = c >> 8
+    lo = c % 256
+    byteArray.push(lo)
+    byteArray.push(hi)
+  }
+
+  return byteArray
+}
+
+function base64ToBytes (str) {
+  return base64.toByteArray(base64clean(str))
+}
+
+function blitBuffer (src, dst, offset, length) {
+  for (var i = 0; i < length; ++i) {
+    if ((i + offset >= dst.length) || (i >= src.length)) break
+    dst[i + offset] = src[i]
+  }
+  return i
+}
+
+// ArrayBuffers from another context (i.e. an iframe) do not pass the `instanceof` check
+// but they should be treated as valid. See: https://github.com/feross/buffer/issues/166
+function isArrayBuffer (obj) {
+  return obj instanceof ArrayBuffer ||
+    (obj != null && obj.constructor != null && obj.constructor.name === 'ArrayBuffer' &&
+      typeof obj.byteLength === 'number')
+}
+
+function numberIsNaN (obj) {
+  return obj !== obj // eslint-disable-line no-self-compare
+}
+
+},{"base64-js":17,"ieee754":100}],50:[function(require,module,exports){
+var Buffer = require('safe-buffer').Buffer
+var Transform = require('stream').Transform
+var StringDecoder = require('string_decoder').StringDecoder
+var inherits = require('inherits')
+
+function CipherBase (hashMode) {
+  Transform.call(this)
+  this.hashMode = typeof hashMode === 'string'
+  if (this.hashMode) {
+    this[hashMode] = this._finalOrDigest
+  } else {
+    this.final = this._finalOrDigest
+  }
+  if (this._final) {
+    this.__final = this._final
+    this._final = null
+  }
+  this._decoder = null
+  this._encoding = null
+}
+inherits(CipherBase, Transform)
+
+CipherBase.prototype.update = function (data, inputEnc, outputEnc) {
+  if (typeof data === 'string') {
+    data = Buffer.from(data, inputEnc)
+  }
+
+  var outData = this._update(data)
+  if (this.hashMode) return this
+
+  if (outputEnc) {
+    outData = this._toString(outData, outputEnc)
+  }
+
+  return outData
+}
+
+CipherBase.prototype.setAutoPadding = function () {}
+CipherBase.prototype.getAuthTag = function () {
+  throw new Error('trying to get auth tag in unsupported state')
+}
+
+CipherBase.prototype.setAuthTag = function () {
+  throw new Error('trying to set auth tag in unsupported state')
+}
+
+CipherBase.prototype.setAAD = function () {
+  throw new Error('trying to set aad in unsupported state')
+}
+
+CipherBase.prototype._transform = function (data, _, next) {
+  var err
+  try {
+    if (this.hashMode) {
+      this._update(data)
+    } else {
+      this.push(this._update(data))
+    }
+  } catch (e) {
+    err = e
+  } finally {
+    next(err)
+  }
+}
+CipherBase.prototype._flush = function (done) {
+  var err
+  try {
+    this.push(this.__final())
+  } catch (e) {
+    err = e
+  }
+
+  done(err)
+}
+CipherBase.prototype._finalOrDigest = function (outputEnc) {
+  var outData = this.__final() || Buffer.alloc(0)
+  if (outputEnc) {
+    outData = this._toString(outData, outputEnc, true)
+  }
+  return outData
+}
+
+CipherBase.prototype._toString = function (value, enc, fin) {
+  if (!this._decoder) {
+    this._decoder = new StringDecoder(enc)
+    this._encoding = enc
+  }
+
+  if (this._encoding !== enc) throw new Error('can\'t switch encodings')
+
+  var out = this._decoder.write(value)
+  if (fin) {
+    out += this._decoder.end()
+  }
+
+  return out
+}
+
+module.exports = CipherBase
+
+},{"inherits":101,"safe-buffer":146,"stream":155,"string_decoder":156}],51:[function(require,module,exports){
+(function (Buffer){
+// Copyright Joyent, Inc. and other Node contributors.
+//
+// Permission is hereby granted, free of charge, to any person obtaining a
+// copy of this software and associated documentation files (the
+// "Software"), to deal in the Software without restriction, including
+// without limitation the rights to use, copy, modify, merge, publish,
+// distribute, sublicense, and/or sell copies of the Software, and to permit
+// persons to whom the Software is furnished to do so, subject to the
+// following conditions:
+//
+// The above copyright notice and this permission notice shall be included
+// in all copies or substantial portions of the Software.
+//
+// THE SOFTWARE IS PROVIDED "AS IS", WITHOUT WARRANTY OF ANY KIND, EXPRESS
+// OR IMPLIED, INCLUDING BUT NOT LIMITED TO THE WARRANTIES OF
+// MERCHANTABILITY, FITNESS FOR A PARTICULAR PURPOSE AND NONINFRINGEMENT. IN
+// NO EVENT SHALL THE AUTHORS OR COPYRIGHT HOLDERS BE LIABLE FOR ANY CLAIM,
+// DAMAGES OR OTHER LIABILITY, WHETHER IN AN ACTION OF CONTRACT, TORT OR
+// OTHERWISE, ARISING FROM, OUT OF OR IN CONNECTION WITH THE SOFTWARE OR THE
+// USE OR OTHER DEALINGS IN THE SOFTWARE.
+
+// NOTE: These type checking functions intentionally don't use `instanceof`
+// because it is fragile and can be easily faked with `Object.create()`.
+
+function isArray(arg) {
+  if (Array.isArray) {
+    return Array.isArray(arg);
+  }
+  return objectToString(arg) === '[object Array]';
+}
+exports.isArray = isArray;
+
+function isBoolean(arg) {
+  return typeof arg === 'boolean';
+}
+exports.isBoolean = isBoolean;
+
+function isNull(arg) {
+  return arg === null;
+}
+exports.isNull = isNull;
+
+function isNullOrUndefined(arg) {
+  return arg == null;
+}
+exports.isNullOrUndefined = isNullOrUndefined;
+
+function isNumber(arg) {
+  return typeof arg === 'number';
+}
+exports.isNumber = isNumber;
+
+function isString(arg) {
+  return typeof arg === 'string';
+}
+exports.isString = isString;
+
+function isSymbol(arg) {
+  return typeof arg === 'symbol';
+}
+exports.isSymbol = isSymbol;
+
+function isUndefined(arg) {
+  return arg === void 0;
+}
+exports.isUndefined = isUndefined;
+
+function isRegExp(re) {
+  return objectToString(re) === '[object RegExp]';
+}
+exports.isRegExp = isRegExp;
+
+function isObject(arg) {
+  return typeof arg === 'object' && arg !== null;
+}
+exports.isObject = isObject;
+
+function isDate(d) {
+  return objectToString(d) === '[object Date]';
+}
+exports.isDate = isDate;
+
+function isError(e) {
+  return (objectToString(e) === '[object Error]' || e instanceof Error);
+}
+exports.isError = isError;
+
+function isFunction(arg) {
+  return typeof arg === 'function';
+}
+exports.isFunction = isFunction;
+
+function isPrimitive(arg) {
+  return arg === null ||
+         typeof arg === 'boolean' ||
+         typeof arg === 'number' ||
+         typeof arg === 'string' ||
+         typeof arg === 'symbol' ||  // ES6 symbol
+         typeof arg === 'undefined';
+}
+exports.isPrimitive = isPrimitive;
+
+exports.isBuffer = Buffer.isBuffer;
+
+function objectToString(o) {
+  return Object.prototype.toString.call(o);
+}
+
+}).call(this,{"isBuffer":require("../../is-buffer/index.js")})
+},{"../../is-buffer/index.js":102}],52:[function(require,module,exports){
+(function (Buffer){
+var elliptic = require('elliptic')
+var BN = require('bn.js')
+
+module.exports = function createECDH (curve) {
+  return new ECDH(curve)
+}
+
+var aliases = {
+  secp256k1: {
+    name: 'secp256k1',
+    byteLength: 32
+  },
+  secp224r1: {
+    name: 'p224',
+    byteLength: 28
+  },
+  prime256v1: {
+    name: 'p256',
+    byteLength: 32
+  },
+  prime192v1: {
+    name: 'p192',
+    byteLength: 24
+  },
+  ed25519: {
+    name: 'ed25519',
+    byteLength: 32
+  },
+  secp384r1: {
+    name: 'p384',
+    byteLength: 48
+  },
+  secp521r1: {
+    name: 'p521',
+    byteLength: 66
+  }
+}
+
+aliases.p224 = aliases.secp224r1
+aliases.p256 = aliases.secp256r1 = aliases.prime256v1
+aliases.p192 = aliases.secp192r1 = aliases.prime192v1
+aliases.p384 = aliases.secp384r1
+aliases.p521 = aliases.secp521r1
+
+function ECDH (curve) {
+  this.curveType = aliases[curve]
+  if (!this.curveType) {
+    this.curveType = {
+      name: curve
+    }
+  }
+  this.curve = new elliptic.ec(this.curveType.name) // eslint-disable-line new-cap
+  this.keys = void 0
+}
+
+ECDH.prototype.generateKeys = function (enc, format) {
+  this.keys = this.curve.genKeyPair()
+  return this.getPublicKey(enc, format)
+}
+
+ECDH.prototype.computeSecret = function (other, inenc, enc) {
+  inenc = inenc || 'utf8'
+  if (!Buffer.isBuffer(other)) {
+    other = new Buffer(other, inenc)
+  }
+  var otherPub = this.curve.keyFromPublic(other).getPublic()
+  var out = otherPub.mul(this.keys.getPrivate()).getX()
+  return formatReturnValue(out, enc, this.curveType.byteLength)
+}
+
+ECDH.prototype.getPublicKey = function (enc, format) {
+  var key = this.keys.getPublic(format === 'compressed', true)
+  if (format === 'hybrid') {
+    if (key[key.length - 1] % 2) {
+      key[0] = 7
+    } else {
+      key[0] = 6
+    }
+  }
+  return formatReturnValue(key, enc)
+}
+
+ECDH.prototype.getPrivateKey = function (enc) {
+  return formatReturnValue(this.keys.getPrivate(), enc)
+}
+
+ECDH.prototype.setPublicKey = function (pub, enc) {
+  enc = enc || 'utf8'
+  if (!Buffer.isBuffer(pub)) {
+    pub = new Buffer(pub, enc)
+  }
+  this.keys._importPublic(pub)
+  return this
+}
+
+ECDH.prototype.setPrivateKey = function (priv, enc) {
+  enc = enc || 'utf8'
+  if (!Buffer.isBuffer(priv)) {
+    priv = new Buffer(priv, enc)
+  }
+
+  var _priv = new BN(priv)
+  _priv = _priv.toString(16)
+  this.keys = this.curve.genKeyPair()
+  this.keys._importPrivate(_priv)
+  return this
+}
+
+function formatReturnValue (bn, enc, len) {
+  if (!Array.isArray(bn)) {
+    bn = bn.toArray()
+  }
+  var buf = new Buffer(bn)
+  if (len && buf.length < len) {
+    var zeros = new Buffer(len - buf.length)
+    zeros.fill(0)
+    buf = Buffer.concat([zeros, buf])
+  }
+  if (!enc) {
+    return buf
+  } else {
+    return buf.toString(enc)
+  }
+}
+
+}).call(this,require("buffer").Buffer)
+},{"bn.js":18,"buffer":49,"elliptic":68}],53:[function(require,module,exports){
+'use strict'
+var inherits = require('inherits')
+var MD5 = require('md5.js')
+var RIPEMD160 = require('ripemd160')
+var sha = require('sha.js')
+var Base = require('cipher-base')
+
+function Hash (hash) {
+  Base.call(this, 'digest')
+
+  this._hash = hash
+}
+
+inherits(Hash, Base)
+
+Hash.prototype._update = function (data) {
+  this._hash.update(data)
+}
+
+Hash.prototype._final = function () {
+  return this._hash.digest()
+}
+
+module.exports = function createHash (alg) {
+  alg = alg.toLowerCase()
+  if (alg === 'md5') return new MD5()
+  if (alg === 'rmd160' || alg === 'ripemd160') return new RIPEMD160()
+
+  return new Hash(sha(alg))
+}
+
+},{"cipher-base":50,"inherits":101,"md5.js":104,"ripemd160":145,"sha.js":148}],54:[function(require,module,exports){
+var MD5 = require('md5.js')
+
+module.exports = function (buffer) {
+  return new MD5().update(buffer).digest()
+}
+
+},{"md5.js":104}],55:[function(require,module,exports){
+'use strict'
+var inherits = require('inherits')
+var Legacy = require('./legacy')
+var Base = require('cipher-base')
+var Buffer = require('safe-buffer').Buffer
+var md5 = require('create-hash/md5')
+var RIPEMD160 = require('ripemd160')
+
+var sha = require('sha.js')
+
+var ZEROS = Buffer.alloc(128)
+
+function Hmac (alg, key) {
+  Base.call(this, 'digest')
+  if (typeof key === 'string') {
+    key = Buffer.from(key)
+  }
+
+  var blocksize = (alg === 'sha512' || alg === 'sha384') ? 128 : 64
+
+  this._alg = alg
+  this._key = key
+  if (key.length > blocksize) {
+    var hash = alg === 'rmd160' ? new RIPEMD160() : sha(alg)
+    key = hash.update(key).digest()
+  } else if (key.length < blocksize) {
+    key = Buffer.concat([key, ZEROS], blocksize)
+  }
+
+  var ipad = this._ipad = Buffer.allocUnsafe(blocksize)
+  var opad = this._opad = Buffer.allocUnsafe(blocksize)
+
+  for (var i = 0; i < blocksize; i++) {
+    ipad[i] = key[i] ^ 0x36
+    opad[i] = key[i] ^ 0x5C
+  }
+  this._hash = alg === 'rmd160' ? new RIPEMD160() : sha(alg)
+  this._hash.update(ipad)
+}
+
+inherits(Hmac, Base)
+
+Hmac.prototype._update = function (data) {
+  this._hash.update(data)
+}
+
+Hmac.prototype._final = function () {
+  var h = this._hash.digest()
+  var hash = this._alg === 'rmd160' ? new RIPEMD160() : sha(this._alg)
+  return hash.update(this._opad).update(h).digest()
+}
+
+module.exports = function createHmac (alg, key) {
+  alg = alg.toLowerCase()
+  if (alg === 'rmd160' || alg === 'ripemd160') {
+    return new Hmac('rmd160', key)
+  }
+  if (alg === 'md5') {
+    return new Legacy(md5, key)
+  }
+  return new Hmac(alg, key)
+}
+
+},{"./legacy":56,"cipher-base":50,"create-hash/md5":54,"inherits":101,"ripemd160":145,"safe-buffer":146,"sha.js":148}],56:[function(require,module,exports){
+'use strict'
+var inherits = require('inherits')
+var Buffer = require('safe-buffer').Buffer
+
+var Base = require('cipher-base')
+
+var ZEROS = Buffer.alloc(128)
+var blocksize = 64
+
+function Hmac (alg, key) {
+  Base.call(this, 'digest')
+  if (typeof key === 'string') {
+    key = Buffer.from(key)
+  }
+
+  this._alg = alg
+  this._key = key
+
+  if (key.length > blocksize) {
+    key = alg(key)
+  } else if (key.length < blocksize) {
+    key = Buffer.concat([key, ZEROS], blocksize)
+  }
+
+  var ipad = this._ipad = Buffer.allocUnsafe(blocksize)
+  var opad = this._opad = Buffer.allocUnsafe(blocksize)
+
+  for (var i = 0; i < blocksize; i++) {
+    ipad[i] = key[i] ^ 0x36
+    opad[i] = key[i] ^ 0x5C
+  }
+
+  this._hash = [ipad]
+}
+
+inherits(Hmac, Base)
+
+Hmac.prototype._update = function (data) {
+  this._hash.push(data)
+}
+
+Hmac.prototype._final = function () {
+  var h = this._alg(Buffer.concat(this._hash))
+  return this._alg(Buffer.concat([this._opad, h]))
+}
+module.exports = Hmac
+
+},{"cipher-base":50,"inherits":101,"safe-buffer":146}],57:[function(require,module,exports){
+'use strict'
+
+exports.randomBytes = exports.rng = exports.pseudoRandomBytes = exports.prng = require('randombytes')
+exports.createHash = exports.Hash = require('create-hash')
+exports.createHmac = exports.Hmac = require('create-hmac')
+
+var algos = require('browserify-sign/algos')
+var algoKeys = Object.keys(algos)
+var hashes = ['sha1', 'sha224', 'sha256', 'sha384', 'sha512', 'md5', 'rmd160'].concat(algoKeys)
+exports.getHashes = function () {
+  return hashes
+}
+
+var p = require('pbkdf2')
+exports.pbkdf2 = p.pbkdf2
+exports.pbkdf2Sync = p.pbkdf2Sync
+
+var aes = require('browserify-cipher')
+
+exports.Cipher = aes.Cipher
+exports.createCipher = aes.createCipher
+exports.Cipheriv = aes.Cipheriv
+exports.createCipheriv = aes.createCipheriv
+exports.Decipher = aes.Decipher
+exports.createDecipher = aes.createDecipher
+exports.Decipheriv = aes.Decipheriv
+exports.createDecipheriv = aes.createDecipheriv
+exports.getCiphers = aes.getCiphers
+exports.listCiphers = aes.listCiphers
+
+var dh = require('diffie-hellman')
+
+exports.DiffieHellmanGroup = dh.DiffieHellmanGroup
+exports.createDiffieHellmanGroup = dh.createDiffieHellmanGroup
+exports.getDiffieHellman = dh.getDiffieHellman
+exports.createDiffieHellman = dh.createDiffieHellman
+exports.DiffieHellman = dh.DiffieHellman
+
+var sign = require('browserify-sign')
+
+exports.createSign = sign.createSign
+exports.Sign = sign.Sign
+exports.createVerify = sign.createVerify
+exports.Verify = sign.Verify
+
+exports.createECDH = require('create-ecdh')
+
+var publicEncrypt = require('public-encrypt')
+
+exports.publicEncrypt = publicEncrypt.publicEncrypt
+exports.privateEncrypt = publicEncrypt.privateEncrypt
+exports.publicDecrypt = publicEncrypt.publicDecrypt
+exports.privateDecrypt = publicEncrypt.privateDecrypt
+
+// the least I can do is make error messages for the rest of the node.js/crypto api.
+// ;[
+//   'createCredentials'
+// ].forEach(function (name) {
+//   exports[name] = function () {
+//     throw new Error([
+//       'sorry, ' + name + ' is not implemented yet',
+//       'we accept pull requests',
+//       'https://github.com/crypto-browserify/crypto-browserify'
+//     ].join('\n'))
+//   }
+// })
+
+var rf = require('randomfill')
+
+exports.randomFill = rf.randomFill
+exports.randomFillSync = rf.randomFillSync
+
+exports.createCredentials = function () {
+  throw new Error([
+    'sorry, createCredentials is not implemented yet',
+    'we accept pull requests',
+    'https://github.com/crypto-browserify/crypto-browserify'
+  ].join('\n'))
+}
+
+exports.constants = {
+  'DH_CHECK_P_NOT_SAFE_PRIME': 2,
+  'DH_CHECK_P_NOT_PRIME': 1,
+  'DH_UNABLE_TO_CHECK_GENERATOR': 4,
+  'DH_NOT_SUITABLE_GENERATOR': 8,
+  'NPN_ENABLED': 1,
+  'ALPN_ENABLED': 1,
+  'RSA_PKCS1_PADDING': 1,
+  'RSA_SSLV23_PADDING': 2,
+  'RSA_NO_PADDING': 3,
+  'RSA_PKCS1_OAEP_PADDING': 4,
+  'RSA_X931_PADDING': 5,
+  'RSA_PKCS1_PSS_PADDING': 6,
+  'POINT_CONVERSION_COMPRESSED': 2,
+  'POINT_CONVERSION_UNCOMPRESSED': 4,
+  'POINT_CONVERSION_HYBRID': 6
+}
+
+},{"browserify-cipher":38,"browserify-sign":45,"browserify-sign/algos":42,"create-ecdh":52,"create-hash":53,"create-hmac":55,"diffie-hellman":64,"pbkdf2":113,"public-encrypt":120,"randombytes":130,"randomfill":131}],58:[function(require,module,exports){
+'use strict';
+
+exports.utils = require('./des/utils');
+exports.Cipher = require('./des/cipher');
+exports.DES = require('./des/des');
+exports.CBC = require('./des/cbc');
+exports.EDE = require('./des/ede');
+
+},{"./des/cbc":59,"./des/cipher":60,"./des/des":61,"./des/ede":62,"./des/utils":63}],59:[function(require,module,exports){
+'use strict';
+
+var assert = require('minimalistic-assert');
+var inherits = require('inherits');
+
+var proto = {};
+
+function CBCState(iv) {
+  assert.equal(iv.length, 8, 'Invalid IV length');
+
+  this.iv = new Array(8);
+  for (var i = 0; i < this.iv.length; i++)
+    this.iv[i] = iv[i];
+}
+
+function instantiate(Base) {
+  function CBC(options) {
+    Base.call(this, options);
+    this._cbcInit();
+  }
+  inherits(CBC, Base);
+
+  var keys = Object.keys(proto);
+  for (var i = 0; i < keys.length; i++) {
+    var key = keys[i];
+    CBC.prototype[key] = proto[key];
+  }
+
+  CBC.create = function create(options) {
+    return new CBC(options);
+  };
+
+  return CBC;
+}
+
+exports.instantiate = instantiate;
+
+proto._cbcInit = function _cbcInit() {
+  var state = new CBCState(this.options.iv);
+  this._cbcState = state;
+};
+
+proto._update = function _update(inp, inOff, out, outOff) {
+  var state = this._cbcState;
+  var superProto = this.constructor.super_.prototype;
+
+  var iv = state.iv;
+  if (this.type === 'encrypt') {
+    for (var i = 0; i < this.blockSize; i++)
+      iv[i] ^= inp[inOff + i];
+
+    superProto._update.call(this, iv, 0, out, outOff);
+
+    for (var i = 0; i < this.blockSize; i++)
+      iv[i] = out[outOff + i];
+  } else {
+    superProto._update.call(this, inp, inOff, out, outOff);
+
+    for (var i = 0; i < this.blockSize; i++)
+      out[outOff + i] ^= iv[i];
+
+    for (var i = 0; i < this.blockSize; i++)
+      iv[i] = inp[inOff + i];
+  }
+};
+
+},{"inherits":101,"minimalistic-assert":106}],60:[function(require,module,exports){
+'use strict';
+
+var assert = require('minimalistic-assert');
+
+function Cipher(options) {
+  this.options = options;
+
+  this.type = this.options.type;
+  this.blockSize = 8;
+  this._init();
+
+  this.buffer = new Array(this.blockSize);
+  this.bufferOff = 0;
+}
+module.exports = Cipher;
+
+Cipher.prototype._init = function _init() {
+  // Might be overrided
+};
+
+Cipher.prototype.update = function update(data) {
+  if (data.length === 0)
+    return [];
+
+  if (this.type === 'decrypt')
+    return this._updateDecrypt(data);
+  else
+    return this._updateEncrypt(data);
+};
+
+Cipher.prototype._buffer = function _buffer(data, off) {
+  // Append data to buffer
+  var min = Math.min(this.buffer.length - this.bufferOff, data.length - off);
+  for (var i = 0; i < min; i++)
+    this.buffer[this.bufferOff + i] = data[off + i];
+  this.bufferOff += min;
+
+  // Shift next
+  return min;
+};
+
+Cipher.prototype._flushBuffer = function _flushBuffer(out, off) {
+  this._update(this.buffer, 0, out, off);
+  this.bufferOff = 0;
+  return this.blockSize;
+};
+
+Cipher.prototype._updateEncrypt = function _updateEncrypt(data) {
+  var inputOff = 0;
+  var outputOff = 0;
+
+  var count = ((this.bufferOff + data.length) / this.blockSize) | 0;
+  var out = new Array(count * this.blockSize);
+
+  if (this.bufferOff !== 0) {
+    inputOff += this._buffer(data, inputOff);
+
+    if (this.bufferOff === this.buffer.length)
+      outputOff += this._flushBuffer(out, outputOff);
+  }
+
+  // Write blocks
+  var max = data.length - ((data.length - inputOff) % this.blockSize);
+  for (; inputOff < max; inputOff += this.blockSize) {
+    this._update(data, inputOff, out, outputOff);
+    outputOff += this.blockSize;
+  }
+
+  // Queue rest
+  for (; inputOff < data.length; inputOff++, this.bufferOff++)
+    this.buffer[this.bufferOff] = data[inputOff];
+
+  return out;
+};
+
+Cipher.prototype._updateDecrypt = function _updateDecrypt(data) {
+  var inputOff = 0;
+  var outputOff = 0;
+
+  var count = Math.ceil((this.bufferOff + data.length) / this.blockSize) - 1;
+  var out = new Array(count * this.blockSize);
+
+  // TODO(indutny): optimize it, this is far from optimal
+  for (; count > 0; count--) {
+    inputOff += this._buffer(data, inputOff);
+    outputOff += this._flushBuffer(out, outputOff);
+  }
+
+  // Buffer rest of the input
+  inputOff += this._buffer(data, inputOff);
+
+  return out;
+};
+
+Cipher.prototype.final = function final(buffer) {
+  var first;
+  if (buffer)
+    first = this.update(buffer);
+
+  var last;
+  if (this.type === 'encrypt')
+    last = this._finalEncrypt();
+  else
+    last = this._finalDecrypt();
+
+  if (first)
+    return first.concat(last);
+  else
+    return last;
+};
+
+Cipher.prototype._pad = function _pad(buffer, off) {
+  if (off === 0)
+    return false;
+
+  while (off < buffer.length)
+    buffer[off++] = 0;
+
+  return true;
+};
+
+Cipher.prototype._finalEncrypt = function _finalEncrypt() {
+  if (!this._pad(this.buffer, this.bufferOff))
+    return [];
+
+  var out = new Array(this.blockSize);
+  this._update(this.buffer, 0, out, 0);
+  return out;
+};
+
+Cipher.prototype._unpad = function _unpad(buffer) {
+  return buffer;
+};
+
+Cipher.prototype._finalDecrypt = function _finalDecrypt() {
+  assert.equal(this.bufferOff, this.blockSize, 'Not enough data to decrypt');
+  var out = new Array(this.blockSize);
+  this._flushBuffer(out, 0);
+
+  return this._unpad(out);
+};
+
+},{"minimalistic-assert":106}],61:[function(require,module,exports){
+'use strict';
+
+var assert = require('minimalistic-assert');
+var inherits = require('inherits');
+
+var des = require('../des');
+var utils = des.utils;
+var Cipher = des.Cipher;
+
+function DESState() {
+  this.tmp = new Array(2);
+  this.keys = null;
+}
+
+function DES(options) {
+  Cipher.call(this, options);
+
+  var state = new DESState();
+  this._desState = state;
+
+  this.deriveKeys(state, options.key);
+}
+inherits(DES, Cipher);
+module.exports = DES;
+
+DES.create = function create(options) {
+  return new DES(options);
+};
+
+var shiftTable = [
+  1, 1, 2, 2, 2, 2, 2, 2,
+  1, 2, 2, 2, 2, 2, 2, 1
+];
+
+DES.prototype.deriveKeys = function deriveKeys(state, key) {
+  state.keys = new Array(16 * 2);
+
+  assert.equal(key.length, this.blockSize, 'Invalid key length');
+
+  var kL = utils.readUInt32BE(key, 0);
+  var kR = utils.readUInt32BE(key, 4);
+
+  utils.pc1(kL, kR, state.tmp, 0);
+  kL = state.tmp[0];
+  kR = state.tmp[1];
+  for (var i = 0; i < state.keys.length; i += 2) {
+    var shift = shiftTable[i >>> 1];
+    kL = utils.r28shl(kL, shift);
+    kR = utils.r28shl(kR, shift);
+    utils.pc2(kL, kR, state.keys, i);
+  }
+};
+
+DES.prototype._update = function _update(inp, inOff, out, outOff) {
+  var state = this._desState;
+
+  var l = utils.readUInt32BE(inp, inOff);
+  var r = utils.readUInt32BE(inp, inOff + 4);
+
+  // Initial Permutation
+  utils.ip(l, r, state.tmp, 0);
+  l = state.tmp[0];
+  r = state.tmp[1];
+
+  if (this.type === 'encrypt')
+    this._encrypt(state, l, r, state.tmp, 0);
+  else
+    this._decrypt(state, l, r, state.tmp, 0);
+
+  l = state.tmp[0];
+  r = state.tmp[1];
+
+  utils.writeUInt32BE(out, l, outOff);
+  utils.writeUInt32BE(out, r, outOff + 4);
+};
+
+DES.prototype._pad = function _pad(buffer, off) {
+  var value = buffer.length - off;
+  for (var i = off; i < buffer.length; i++)
+    buffer[i] = value;
+
+  return true;
+};
+
+DES.prototype._unpad = function _unpad(buffer) {
+  var pad = buffer[buffer.length - 1];
+  for (var i = buffer.length - pad; i < buffer.length; i++)
+    assert.equal(buffer[i], pad);
+
+  return buffer.slice(0, buffer.length - pad);
+};
+
+DES.prototype._encrypt = function _encrypt(state, lStart, rStart, out, off) {
+  var l = lStart;
+  var r = rStart;
+
+  // Apply f() x16 times
+  for (var i = 0; i < state.keys.length; i += 2) {
+    var keyL = state.keys[i];
+    var keyR = state.keys[i + 1];
+
+    // f(r, k)
+    utils.expand(r, state.tmp, 0);
+
+    keyL ^= state.tmp[0];
+    keyR ^= state.tmp[1];
+    var s = utils.substitute(keyL, keyR);
+    var f = utils.permute(s);
+
+    var t = r;
+    r = (l ^ f) >>> 0;
+    l = t;
+  }
+
+  // Reverse Initial Permutation
+  utils.rip(r, l, out, off);
+};
+
+DES.prototype._decrypt = function _decrypt(state, lStart, rStart, out, off) {
+  var l = rStart;
+  var r = lStart;
+
+  // Apply f() x16 times
+  for (var i = state.keys.length - 2; i >= 0; i -= 2) {
+    var keyL = state.keys[i];
+    var keyR = state.keys[i + 1];
+
+    // f(r, k)
+    utils.expand(l, state.tmp, 0);
+
+    keyL ^= state.tmp[0];
+    keyR ^= state.tmp[1];
+    var s = utils.substitute(keyL, keyR);
+    var f = utils.permute(s);
+
+    var t = l;
+    l = (r ^ f) >>> 0;
+    r = t;
+  }
+
+  // Reverse Initial Permutation
+  utils.rip(l, r, out, off);
+};
+
+},{"../des":58,"inherits":101,"minimalistic-assert":106}],62:[function(require,module,exports){
+'use strict';
+
+var assert = require('minimalistic-assert');
+var inherits = require('inherits');
+
+var des = require('../des');
+var Cipher = des.Cipher;
+var DES = des.DES;
+
+function EDEState(type, key) {
+  assert.equal(key.length, 24, 'Invalid key length');
+
+  var k1 = key.slice(0, 8);
+  var k2 = key.slice(8, 16);
+  var k3 = key.slice(16, 24);
+
+  if (type === 'encrypt') {
+    this.ciphers = [
+      DES.create({ type: 'encrypt', key: k1 }),
+      DES.create({ type: 'decrypt', key: k2 }),
+      DES.create({ type: 'encrypt', key: k3 })
+    ];
+  } else {
+    this.ciphers = [
+      DES.create({ type: 'decrypt', key: k3 }),
+      DES.create({ type: 'encrypt', key: k2 }),
+      DES.create({ type: 'decrypt', key: k1 })
+    ];
+  }
+}
+
+function EDE(options) {
+  Cipher.call(this, options);
+
+  var state = new EDEState(this.type, this.options.key);
+  this._edeState = state;
+}
+inherits(EDE, Cipher);
+
+module.exports = EDE;
+
+EDE.create = function create(options) {
+  return new EDE(options);
+};
+
+EDE.prototype._update = function _update(inp, inOff, out, outOff) {
+  var state = this._edeState;
+
+  state.ciphers[0]._update(inp, inOff, out, outOff);
+  state.ciphers[1]._update(out, outOff, out, outOff);
+  state.ciphers[2]._update(out, outOff, out, outOff);
+};
+
+EDE.prototype._pad = DES.prototype._pad;
+EDE.prototype._unpad = DES.prototype._unpad;
+
+},{"../des":58,"inherits":101,"minimalistic-assert":106}],63:[function(require,module,exports){
+'use strict';
+
+exports.readUInt32BE = function readUInt32BE(bytes, off) {
+  var res =  (bytes[0 + off] << 24) |
+             (bytes[1 + off] << 16) |
+             (bytes[2 + off] << 8) |
+             bytes[3 + off];
+  return res >>> 0;
+};
+
+exports.writeUInt32BE = function writeUInt32BE(bytes, value, off) {
+  bytes[0 + off] = value >>> 24;
+  bytes[1 + off] = (value >>> 16) & 0xff;
+  bytes[2 + off] = (value >>> 8) & 0xff;
+  bytes[3 + off] = value & 0xff;
+};
+
+exports.ip = function ip(inL, inR, out, off) {
+  var outL = 0;
+  var outR = 0;
+
+  for (var i = 6; i >= 0; i -= 2) {
+    for (var j = 0; j <= 24; j += 8) {
+      outL <<= 1;
+      outL |= (inR >>> (j + i)) & 1;
+    }
+    for (var j = 0; j <= 24; j += 8) {
+      outL <<= 1;
+      outL |= (inL >>> (j + i)) & 1;
+    }
+  }
+
+  for (var i = 6; i >= 0; i -= 2) {
+    for (var j = 1; j <= 25; j += 8) {
+      outR <<= 1;
+      outR |= (inR >>> (j + i)) & 1;
+    }
+    for (var j = 1; j <= 25; j += 8) {
+      outR <<= 1;
+      outR |= (inL >>> (j + i)) & 1;
+    }
+  }
+
+  out[off + 0] = outL >>> 0;
+  out[off + 1] = outR >>> 0;
+};
+
+exports.rip = function rip(inL, inR, out, off) {
+  var outL = 0;
+  var outR = 0;
+
+  for (var i = 0; i < 4; i++) {
+    for (var j = 24; j >= 0; j -= 8) {
+      outL <<= 1;
+      outL |= (inR >>> (j + i)) & 1;
+      outL <<= 1;
+      outL |= (inL >>> (j + i)) & 1;
+    }
+  }
+  for (var i = 4; i < 8; i++) {
+    for (var j = 24; j >= 0; j -= 8) {
+      outR <<= 1;
+      outR |= (inR >>> (j + i)) & 1;
+      outR <<= 1;
+      outR |= (inL >>> (j + i)) & 1;
+    }
+  }
+
+  out[off + 0] = outL >>> 0;
+  out[off + 1] = outR >>> 0;
+};
+
+exports.pc1 = function pc1(inL, inR, out, off) {
+  var outL = 0;
+  var outR = 0;
+
+  // 7, 15, 23, 31, 39, 47, 55, 63
+  // 6, 14, 22, 30, 39, 47, 55, 63
+  // 5, 13, 21, 29, 39, 47, 55, 63
+  // 4, 12, 20, 28
+  for (var i = 7; i >= 5; i--) {
+    for (var j = 0; j <= 24; j += 8) {
+      outL <<= 1;
+      outL |= (inR >> (j + i)) & 1;
+    }
+    for (var j = 0; j <= 24; j += 8) {
+      outL <<= 1;
+      outL |= (inL >> (j + i)) & 1;
+    }
+  }
+  for (var j = 0; j <= 24; j += 8) {
+    outL <<= 1;
+    outL |= (inR >> (j + i)) & 1;
+  }
+
+  // 1, 9, 17, 25, 33, 41, 49, 57
+  // 2, 10, 18, 26, 34, 42, 50, 58
+  // 3, 11, 19, 27, 35, 43, 51, 59
+  // 36, 44, 52, 60
+  for (var i = 1; i <= 3; i++) {
+    for (var j = 0; j <= 24; j += 8) {
+      outR <<= 1;
+      outR |= (inR >> (j + i)) & 1;
+    }
+    for (var j = 0; j <= 24; j += 8) {
+      outR <<= 1;
+      outR |= (inL >> (j + i)) & 1;
+    }
+  }
+  for (var j = 0; j <= 24; j += 8) {
+    outR <<= 1;
+    outR |= (inL >> (j + i)) & 1;
+  }
+
+  out[off + 0] = outL >>> 0;
+  out[off + 1] = outR >>> 0;
+};
+
+exports.r28shl = function r28shl(num, shift) {
+  return ((num << shift) & 0xfffffff) | (num >>> (28 - shift));
+};
+
+var pc2table = [
+  // inL => outL
+  14, 11, 17, 4, 27, 23, 25, 0,
+  13, 22, 7, 18, 5, 9, 16, 24,
+  2, 20, 12, 21, 1, 8, 15, 26,
+
+  // inR => outR
+  15, 4, 25, 19, 9, 1, 26, 16,
+  5, 11, 23, 8, 12, 7, 17, 0,
+  22, 3, 10, 14, 6, 20, 27, 24
+];
+
+exports.pc2 = function pc2(inL, inR, out, off) {
+  var outL = 0;
+  var outR = 0;
+
+  var len = pc2table.length >>> 1;
+  for (var i = 0; i < len; i++) {
+    outL <<= 1;
+    outL |= (inL >>> pc2table[i]) & 0x1;
+  }
+  for (var i = len; i < pc2table.length; i++) {
+    outR <<= 1;
+    outR |= (inR >>> pc2table[i]) & 0x1;
+  }
+
+  out[off + 0] = outL >>> 0;
+  out[off + 1] = outR >>> 0;
+};
+
+exports.expand = function expand(r, out, off) {
+  var outL = 0;
+  var outR = 0;
+
+  outL = ((r & 1) << 5) | (r >>> 27);
+  for (var i = 23; i >= 15; i -= 4) {
+    outL <<= 6;
+    outL |= (r >>> i) & 0x3f;
+  }
+  for (var i = 11; i >= 3; i -= 4) {
+    outR |= (r >>> i) & 0x3f;
+    outR <<= 6;
+  }
+  outR |= ((r & 0x1f) << 1) | (r >>> 31);
+
+  out[off + 0] = outL >>> 0;
+  out[off + 1] = outR >>> 0;
+};
+
+var sTable = [
+  14, 0, 4, 15, 13, 7, 1, 4, 2, 14, 15, 2, 11, 13, 8, 1,
+  3, 10, 10, 6, 6, 12, 12, 11, 5, 9, 9, 5, 0, 3, 7, 8,
+  4, 15, 1, 12, 14, 8, 8, 2, 13, 4, 6, 9, 2, 1, 11, 7,
+  15, 5, 12, 11, 9, 3, 7, 14, 3, 10, 10, 0, 5, 6, 0, 13,
+
+  15, 3, 1, 13, 8, 4, 14, 7, 6, 15, 11, 2, 3, 8, 4, 14,
+  9, 12, 7, 0, 2, 1, 13, 10, 12, 6, 0, 9, 5, 11, 10, 5,
+  0, 13, 14, 8, 7, 10, 11, 1, 10, 3, 4, 15, 13, 4, 1, 2,
+  5, 11, 8, 6, 12, 7, 6, 12, 9, 0, 3, 5, 2, 14, 15, 9,
+
+  10, 13, 0, 7, 9, 0, 14, 9, 6, 3, 3, 4, 15, 6, 5, 10,
+  1, 2, 13, 8, 12, 5, 7, 14, 11, 12, 4, 11, 2, 15, 8, 1,
+  13, 1, 6, 10, 4, 13, 9, 0, 8, 6, 15, 9, 3, 8, 0, 7,
+  11, 4, 1, 15, 2, 14, 12, 3, 5, 11, 10, 5, 14, 2, 7, 12,
+
+  7, 13, 13, 8, 14, 11, 3, 5, 0, 6, 6, 15, 9, 0, 10, 3,
+  1, 4, 2, 7, 8, 2, 5, 12, 11, 1, 12, 10, 4, 14, 15, 9,
+  10, 3, 6, 15, 9, 0, 0, 6, 12, 10, 11, 1, 7, 13, 13, 8,
+  15, 9, 1, 4, 3, 5, 14, 11, 5, 12, 2, 7, 8, 2, 4, 14,
+
+  2, 14, 12, 11, 4, 2, 1, 12, 7, 4, 10, 7, 11, 13, 6, 1,
+  8, 5, 5, 0, 3, 15, 15, 10, 13, 3, 0, 9, 14, 8, 9, 6,
+  4, 11, 2, 8, 1, 12, 11, 7, 10, 1, 13, 14, 7, 2, 8, 13,
+  15, 6, 9, 15, 12, 0, 5, 9, 6, 10, 3, 4, 0, 5, 14, 3,
+
+  12, 10, 1, 15, 10, 4, 15, 2, 9, 7, 2, 12, 6, 9, 8, 5,
+  0, 6, 13, 1, 3, 13, 4, 14, 14, 0, 7, 11, 5, 3, 11, 8,
+  9, 4, 14, 3, 15, 2, 5, 12, 2, 9, 8, 5, 12, 15, 3, 10,
+  7, 11, 0, 14, 4, 1, 10, 7, 1, 6, 13, 0, 11, 8, 6, 13,
+
+  4, 13, 11, 0, 2, 11, 14, 7, 15, 4, 0, 9, 8, 1, 13, 10,
+  3, 14, 12, 3, 9, 5, 7, 12, 5, 2, 10, 15, 6, 8, 1, 6,
+  1, 6, 4, 11, 11, 13, 13, 8, 12, 1, 3, 4, 7, 10, 14, 7,
+  10, 9, 15, 5, 6, 0, 8, 15, 0, 14, 5, 2, 9, 3, 2, 12,
+
+  13, 1, 2, 15, 8, 13, 4, 8, 6, 10, 15, 3, 11, 7, 1, 4,
+  10, 12, 9, 5, 3, 6, 14, 11, 5, 0, 0, 14, 12, 9, 7, 2,
+  7, 2, 11, 1, 4, 14, 1, 7, 9, 4, 12, 10, 14, 8, 2, 13,
+  0, 15, 6, 12, 10, 9, 13, 0, 15, 3, 3, 5, 5, 6, 8, 11
+];
+
+exports.substitute = function substitute(inL, inR) {
+  var out = 0;
+  for (var i = 0; i < 4; i++) {
+    var b = (inL >>> (18 - i * 6)) & 0x3f;
+    var sb = sTable[i * 0x40 + b];
+
+    out <<= 4;
+    out |= sb;
+  }
+  for (var i = 0; i < 4; i++) {
+    var b = (inR >>> (18 - i * 6)) & 0x3f;
+    var sb = sTable[4 * 0x40 + i * 0x40 + b];
+
+    out <<= 4;
+    out |= sb;
+  }
+  return out >>> 0;
+};
+
+var permuteTable = [
+  16, 25, 12, 11, 3, 20, 4, 15, 31, 17, 9, 6, 27, 14, 1, 22,
+  30, 24, 8, 18, 0, 5, 29, 23, 13, 19, 2, 26, 10, 21, 28, 7
+];
+
+exports.permute = function permute(num) {
+  var out = 0;
+  for (var i = 0; i < permuteTable.length; i++) {
+    out <<= 1;
+    out |= (num >>> permuteTable[i]) & 0x1;
+  }
+  return out >>> 0;
+};
+
+exports.padSplit = function padSplit(num, size, group) {
+  var str = num.toString(2);
+  while (str.length < size)
+    str = '0' + str;
+
+  var out = [];
+  for (var i = 0; i < size; i += group)
+    out.push(str.slice(i, i + group));
+  return out.join(' ');
+};
+
+},{}],64:[function(require,module,exports){
+(function (Buffer){
+var generatePrime = require('./lib/generatePrime')
+var primes = require('./lib/primes.json')
+
+var DH = require('./lib/dh')
+
+function getDiffieHellman (mod) {
+  var prime = new Buffer(primes[mod].prime, 'hex')
+  var gen = new Buffer(primes[mod].gen, 'hex')
+
+  return new DH(prime, gen)
+}
+
+var ENCODINGS = {
+  'binary': true, 'hex': true, 'base64': true
+}
+
+function createDiffieHellman (prime, enc, generator, genc) {
+  if (Buffer.isBuffer(enc) || ENCODINGS[enc] === undefined) {
+    return createDiffieHellman(prime, 'binary', enc, generator)
+  }
+
+  enc = enc || 'binary'
+  genc = genc || 'binary'
+  generator = generator || new Buffer([2])
+
+  if (!Buffer.isBuffer(generator)) {
+    generator = new Buffer(generator, genc)
+  }
+
+  if (typeof prime === 'number') {
+    return new DH(generatePrime(prime, generator), generator, true)
+  }
+
+  if (!Buffer.isBuffer(prime)) {
+    prime = new Buffer(prime, enc)
+  }
+
+  return new DH(prime, generator, true)
+}
+
+exports.DiffieHellmanGroup = exports.createDiffieHellmanGroup = exports.getDiffieHellman = getDiffieHellman
+exports.createDiffieHellman = exports.DiffieHellman = createDiffieHellman
+
+}).call(this,require("buffer").Buffer)
+},{"./lib/dh":65,"./lib/generatePrime":66,"./lib/primes.json":67,"buffer":49}],65:[function(require,module,exports){
+(function (Buffer){
+var BN = require('bn.js');
+var MillerRabin = require('miller-rabin');
+var millerRabin = new MillerRabin();
+var TWENTYFOUR = new BN(24);
+var ELEVEN = new BN(11);
+var TEN = new BN(10);
+var THREE = new BN(3);
+var SEVEN = new BN(7);
+var primes = require('./generatePrime');
+var randomBytes = require('randombytes');
+module.exports = DH;
+
+function setPublicKey(pub, enc) {
+  enc = enc || 'utf8';
+  if (!Buffer.isBuffer(pub)) {
+    pub = new Buffer(pub, enc);
+  }
+  this._pub = new BN(pub);
+  return this;
+}
+
+function setPrivateKey(priv, enc) {
+  enc = enc || 'utf8';
+  if (!Buffer.isBuffer(priv)) {
+    priv = new Buffer(priv, enc);
+  }
+  this._priv = new BN(priv);
+  return this;
+}
+
+var primeCache = {};
+function checkPrime(prime, generator) {
+  var gen = generator.toString('hex');
+  var hex = [gen, prime.toString(16)].join('_');
+  if (hex in primeCache) {
+    return primeCache[hex];
+  }
+  var error = 0;
+
+  if (prime.isEven() ||
+    !primes.simpleSieve ||
+    !primes.fermatTest(prime) ||
+    !millerRabin.test(prime)) {
+    //not a prime so +1
+    error += 1;
+
+    if (gen === '02' || gen === '05') {
+      // we'd be able to check the generator
+      // it would fail so +8
+      error += 8;
+    } else {
+      //we wouldn't be able to test the generator
+      // so +4
+      error += 4;
+    }
+    primeCache[hex] = error;
+    return error;
+  }
+  if (!millerRabin.test(prime.shrn(1))) {
+    //not a safe prime
+    error += 2;
+  }
+  var rem;
+  switch (gen) {
+    case '02':
+      if (prime.mod(TWENTYFOUR).cmp(ELEVEN)) {
+        // unsuidable generator
+        error += 8;
+      }
+      break;
+    case '05':
+      rem = prime.mod(TEN);
+      if (rem.cmp(THREE) && rem.cmp(SEVEN)) {
+        // prime mod 10 needs to equal 3 or 7
+        error += 8;
+      }
+      break;
+    default:
+      error += 4;
+  }
+  primeCache[hex] = error;
+  return error;
+}
+
+function DH(prime, generator, malleable) {
+  this.setGenerator(generator);
+  this.__prime = new BN(prime);
+  this._prime = BN.mont(this.__prime);
+  this._primeLen = prime.length;
+  this._pub = undefined;
+  this._priv = undefined;
+  this._primeCode = undefined;
+  if (malleable) {
+    this.setPublicKey = setPublicKey;
+    this.setPrivateKey = setPrivateKey;
+  } else {
+    this._primeCode = 8;
+  }
+}
+Object.defineProperty(DH.prototype, 'verifyError', {
+  enumerable: true,
+  get: function () {
+    if (typeof this._primeCode !== 'number') {
+      this._primeCode = checkPrime(this.__prime, this.__gen);
+    }
+    return this._primeCode;
+  }
+});
+DH.prototype.generateKeys = function () {
+  if (!this._priv) {
+    this._priv = new BN(randomBytes(this._primeLen));
+  }
+  this._pub = this._gen.toRed(this._prime).redPow(this._priv).fromRed();
+  return this.getPublicKey();
+};
+
+DH.prototype.computeSecret = function (other) {
+  other = new BN(other);
+  other = other.toRed(this._prime);
+  var secret = other.redPow(this._priv).fromRed();
+  var out = new Buffer(secret.toArray());
+  var prime = this.getPrime();
+  if (out.length < prime.length) {
+    var front = new Buffer(prime.length - out.length);
+    front.fill(0);
+    out = Buffer.concat([front, out]);
+  }
+  return out;
+};
+
+DH.prototype.getPublicKey = function getPublicKey(enc) {
+  return formatReturnValue(this._pub, enc);
+};
+
+DH.prototype.getPrivateKey = function getPrivateKey(enc) {
+  return formatReturnValue(this._priv, enc);
+};
+
+DH.prototype.getPrime = function (enc) {
+  return formatReturnValue(this.__prime, enc);
+};
+
+DH.prototype.getGenerator = function (enc) {
+  return formatReturnValue(this._gen, enc);
+};
+
+DH.prototype.setGenerator = function (gen, enc) {
+  enc = enc || 'utf8';
+  if (!Buffer.isBuffer(gen)) {
+    gen = new Buffer(gen, enc);
+  }
+  this.__gen = gen;
+  this._gen = new BN(gen);
+  return this;
+};
+
+function formatReturnValue(bn, enc) {
+  var buf = new Buffer(bn.toArray());
+  if (!enc) {
+    return buf;
+  } else {
+    return buf.toString(enc);
+  }
+}
+
+}).call(this,require("buffer").Buffer)
+},{"./generatePrime":66,"bn.js":18,"buffer":49,"miller-rabin":105,"randombytes":130}],66:[function(require,module,exports){
+var randomBytes = require('randombytes');
+module.exports = findPrime;
+findPrime.simpleSieve = simpleSieve;
+findPrime.fermatTest = fermatTest;
+var BN = require('bn.js');
+var TWENTYFOUR = new BN(24);
+var MillerRabin = require('miller-rabin');
+var millerRabin = new MillerRabin();
+var ONE = new BN(1);
+var TWO = new BN(2);
+var FIVE = new BN(5);
+var SIXTEEN = new BN(16);
+var EIGHT = new BN(8);
+var TEN = new BN(10);
+var THREE = new BN(3);
+var SEVEN = new BN(7);
+var ELEVEN = new BN(11);
+var FOUR = new BN(4);
+var TWELVE = new BN(12);
+var primes = null;
+
+function _getPrimes() {
+  if (primes !== null)
+    return primes;
+
+  var limit = 0x100000;
+  var res = [];
+  res[0] = 2;
+  for (var i = 1, k = 3; k < limit; k += 2) {
+    var sqrt = Math.ceil(Math.sqrt(k));
+    for (var j = 0; j < i && res[j] <= sqrt; j++)
+      if (k % res[j] === 0)
+        break;
+
+    if (i !== j && res[j] <= sqrt)
+      continue;
+
+    res[i++] = k;
+  }
+  primes = res;
+  return res;
+}
+
+function simpleSieve(p) {
+  var primes = _getPrimes();
+
+  for (var i = 0; i < primes.length; i++)
+    if (p.modn(primes[i]) === 0) {
+      if (p.cmpn(primes[i]) === 0) {
+        return true;
+      } else {
+        return false;
+      }
+    }
+
+  return true;
+}
+
+function fermatTest(p) {
+  var red = BN.mont(p);
+  return TWO.toRed(red).redPow(p.subn(1)).fromRed().cmpn(1) === 0;
+}
+
+function findPrime(bits, gen) {
+  if (bits < 16) {
+    // this is what openssl does
+    if (gen === 2 || gen === 5) {
+      return new BN([0x8c, 0x7b]);
+    } else {
+      return new BN([0x8c, 0x27]);
+    }
+  }
+  gen = new BN(gen);
+
+  var num, n2;
+
+  while (true) {
+    num = new BN(randomBytes(Math.ceil(bits / 8)));
+    while (num.bitLength() > bits) {
+      num.ishrn(1);
+    }
+    if (num.isEven()) {
+      num.iadd(ONE);
+    }
+    if (!num.testn(1)) {
+      num.iadd(TWO);
+    }
+    if (!gen.cmp(TWO)) {
+      while (num.mod(TWENTYFOUR).cmp(ELEVEN)) {
+        num.iadd(FOUR);
+      }
+    } else if (!gen.cmp(FIVE)) {
+      while (num.mod(TEN).cmp(THREE)) {
+        num.iadd(FOUR);
+      }
+    }
+    n2 = num.shrn(1);
+    if (simpleSieve(n2) && simpleSieve(num) &&
+      fermatTest(n2) && fermatTest(num) &&
+      millerRabin.test(n2) && millerRabin.test(num)) {
+      return num;
+    }
+  }
+
+}
+
+},{"bn.js":18,"miller-rabin":105,"randombytes":130}],67:[function(require,module,exports){
+module.exports={
+    "modp1": {
+        "gen": "02",
+        "prime": "ffffffffffffffffc90fdaa22168c234c4c6628b80dc1cd129024e088a67cc74020bbea63b139b22514a08798e3404ddef9519b3cd3a431b302b0a6df25f14374fe1356d6d51c245e485b576625e7ec6f44c42e9a63a3620ffffffffffffffff"
+    },
+    "modp2": {
+        "gen": "02",
+        "prime": "ffffffffffffffffc90fdaa22168c234c4c6628b80dc1cd129024e088a67cc74020bbea63b139b22514a08798e3404ddef9519b3cd3a431b302b0a6df25f14374fe1356d6d51c245e485b576625e7ec6f44c42e9a637ed6b0bff5cb6f406b7edee386bfb5a899fa5ae9f24117c4b1fe649286651ece65381ffffffffffffffff"
+    },
+    "modp5": {
+        "gen": "02",
+        "prime": "ffffffffffffffffc90fdaa22168c234c4c6628b80dc1cd129024e088a67cc74020bbea63b139b22514a08798e3404ddef9519b3cd3a431b302b0a6df25f14374fe1356d6d51c245e485b576625e7ec6f44c42e9a637ed6b0bff5cb6f406b7edee386bfb5a899fa5ae9f24117c4b1fe649286651ece45b3dc2007cb8a163bf0598da48361c55d39a69163fa8fd24cf5f83655d23dca3ad961c62f356208552bb9ed529077096966d670c354e4abc9804f1746c08ca237327ffffffffffffffff"
+    },
+    "modp14": {
+        "gen": "02",
+        "prime": "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"
+    },
+    "modp15": {
+        "gen": "02",
+        "prime": "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"
+    },
+    "modp16": {
+        "gen": "02",
+        "prime": "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"
+    },
+    "modp17": {
+        "gen": "02",
+        "prime": "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"
+    },
+    "modp18": {
+        "gen": "02",
+        "prime": "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"
+    }
+}
+},{}],68:[function(require,module,exports){
+'use strict';
+
+var elliptic = exports;
+
+elliptic.version = require('../package.json').version;
+elliptic.utils = require('./elliptic/utils');
+elliptic.rand = require('brorand');
+elliptic.curve = require('./elliptic/curve');
+elliptic.curves = require('./elliptic/curves');
+
+// Protocols
+elliptic.ec = require('./elliptic/ec');
+elliptic.eddsa = require('./elliptic/eddsa');
+
+},{"../package.json":83,"./elliptic/curve":71,"./elliptic/curves":74,"./elliptic/ec":75,"./elliptic/eddsa":78,"./elliptic/utils":82,"brorand":19}],69:[function(require,module,exports){
+'use strict';
+
+var BN = require('bn.js');
+var elliptic = require('../../elliptic');
+var utils = elliptic.utils;
+var getNAF = utils.getNAF;
+var getJSF = utils.getJSF;
+var assert = utils.assert;
+
+function BaseCurve(type, conf) {
+  this.type = type;
+  this.p = new BN(conf.p, 16);
+
+  // Use Montgomery, when there is no fast reduction for the prime
+  this.red = conf.prime ? BN.red(conf.prime) : BN.mont(this.p);
+
+  // Useful for many curves
+  this.zero = new BN(0).toRed(this.red);
+  this.one = new BN(1).toRed(this.red);
+  this.two = new BN(2).toRed(this.red);
+
+  // Curve configuration, optional
+  this.n = conf.n && new BN(conf.n, 16);
+  this.g = conf.g && this.pointFromJSON(conf.g, conf.gRed);
+
+  // Temporary arrays
+  this._wnafT1 = new Array(4);
+  this._wnafT2 = new Array(4);
+  this._wnafT3 = new Array(4);
+  this._wnafT4 = new Array(4);
+
+  // Generalized Greg Maxwell's trick
+  var adjustCount = this.n && this.p.div(this.n);
+  if (!adjustCount || adjustCount.cmpn(100) > 0) {
+    this.redN = null;
+  } else {
+    this._maxwellTrick = true;
+    this.redN = this.n.toRed(this.red);
+  }
+}
+module.exports = BaseCurve;
+
+BaseCurve.prototype.point = function point() {
+  throw new Error('Not implemented');
+};
+
+BaseCurve.prototype.validate = function validate() {
+  throw new Error('Not implemented');
+};
+
+BaseCurve.prototype._fixedNafMul = function _fixedNafMul(p, k) {
+  assert(p.precomputed);
+  var doubles = p._getDoubles();
+
+  var naf = getNAF(k, 1);
+  var I = (1 << (doubles.step + 1)) - (doubles.step % 2 === 0 ? 2 : 1);
+  I /= 3;
+
+  // Translate into more windowed form
+  var repr = [];
+  for (var j = 0; j < naf.length; j += doubles.step) {
+    var nafW = 0;
+    for (var k = j + doubles.step - 1; k >= j; k--)
+      nafW = (nafW << 1) + naf[k];
+    repr.push(nafW);
+  }
+
+  var a = this.jpoint(null, null, null);
+  var b = this.jpoint(null, null, null);
+  for (var i = I; i > 0; i--) {
+    for (var j = 0; j < repr.length; j++) {
+      var nafW = repr[j];
+      if (nafW === i)
+        b = b.mixedAdd(doubles.points[j]);
+      else if (nafW === -i)
+        b = b.mixedAdd(doubles.points[j].neg());
+    }
+    a = a.add(b);
+  }
+  return a.toP();
+};
+
+BaseCurve.prototype._wnafMul = function _wnafMul(p, k) {
+  var w = 4;
+
+  // Precompute window
+  var nafPoints = p._getNAFPoints(w);
+  w = nafPoints.wnd;
+  var wnd = nafPoints.points;
+
+  // Get NAF form
+  var naf = getNAF(k, w);
+
+  // Add `this`*(N+1) for every w-NAF index
+  var acc = this.jpoint(null, null, null);
+  for (var i = naf.length - 1; i >= 0; i--) {
+    // Count zeroes
+    for (var k = 0; i >= 0 && naf[i] === 0; i--)
+      k++;
+    if (i >= 0)
+      k++;
+    acc = acc.dblp(k);
+
+    if (i < 0)
+      break;
+    var z = naf[i];
+    assert(z !== 0);
+    if (p.type === 'affine') {
+      // J +- P
+      if (z > 0)
+        acc = acc.mixedAdd(wnd[(z - 1) >> 1]);
+      else
+        acc = acc.mixedAdd(wnd[(-z - 1) >> 1].neg());
+    } else {
+      // J +- J
+      if (z > 0)
+        acc = acc.add(wnd[(z - 1) >> 1]);
+      else
+        acc = acc.add(wnd[(-z - 1) >> 1].neg());
+    }
+  }
+  return p.type === 'affine' ? acc.toP() : acc;
+};
+
+BaseCurve.prototype._wnafMulAdd = function _wnafMulAdd(defW,
+                                                       points,
+                                                       coeffs,
+                                                       len,
+                                                       jacobianResult) {
+  var wndWidth = this._wnafT1;
+  var wnd = this._wnafT2;
+  var naf = this._wnafT3;
+
+  // Fill all arrays
+  var max = 0;
+  for (var i = 0; i < len; i++) {
+    var p = points[i];
+    var nafPoints = p._getNAFPoints(defW);
+    wndWidth[i] = nafPoints.wnd;
+    wnd[i] = nafPoints.points;
+  }
+
+  // Comb small window NAFs
+  for (var i = len - 1; i >= 1; i -= 2) {
+    var a = i - 1;
+    var b = i;
+    if (wndWidth[a] !== 1 || wndWidth[b] !== 1) {
+      naf[a] = getNAF(coeffs[a], wndWidth[a]);
+      naf[b] = getNAF(coeffs[b], wndWidth[b]);
+      max = Math.max(naf[a].length, max);
+      max = Math.max(naf[b].length, max);
+      continue;
+    }
+
+    var comb = [
+      points[a], /* 1 */
+      null, /* 3 */
+      null, /* 5 */
+      points[b] /* 7 */
+    ];
+
+    // Try to avoid Projective points, if possible
+    if (points[a].y.cmp(points[b].y) === 0) {
+      comb[1] = points[a].add(points[b]);
+      comb[2] = points[a].toJ().mixedAdd(points[b].neg());
+    } else if (points[a].y.cmp(points[b].y.redNeg()) === 0) {
+      comb[1] = points[a].toJ().mixedAdd(points[b]);
+      comb[2] = points[a].add(points[b].neg());
+    } else {
+      comb[1] = points[a].toJ().mixedAdd(points[b]);
+      comb[2] = points[a].toJ().mixedAdd(points[b].neg());
+    }
+
+    var index = [
+      -3, /* -1 -1 */
+      -1, /* -1 0 */
+      -5, /* -1 1 */
+      -7, /* 0 -1 */
+      0, /* 0 0 */
+      7, /* 0 1 */
+      5, /* 1 -1 */
+      1, /* 1 0 */
+      3  /* 1 1 */
+    ];
+
+    var jsf = getJSF(coeffs[a], coeffs[b]);
+    max = Math.max(jsf[0].length, max);
+    naf[a] = new Array(max);
+    naf[b] = new Array(max);
+    for (var j = 0; j < max; j++) {
+      var ja = jsf[0][j] | 0;
+      var jb = jsf[1][j] | 0;
+
+      naf[a][j] = index[(ja + 1) * 3 + (jb + 1)];
+      naf[b][j] = 0;
+      wnd[a] = comb;
+    }
+  }
+
+  var acc = this.jpoint(null, null, null);
+  var tmp = this._wnafT4;
+  for (var i = max; i >= 0; i--) {
+    var k = 0;
+
+    while (i >= 0) {
+      var zero = true;
+      for (var j = 0; j < len; j++) {
+        tmp[j] = naf[j][i] | 0;
+        if (tmp[j] !== 0)
+          zero = false;
+      }
+      if (!zero)
+        break;
+      k++;
+      i--;
+    }
+    if (i >= 0)
+      k++;
+    acc = acc.dblp(k);
+    if (i < 0)
+      break;
+
+    for (var j = 0; j < len; j++) {
+      var z = tmp[j];
+      var p;
+      if (z === 0)
+        continue;
+      else if (z > 0)
+        p = wnd[j][(z - 1) >> 1];
+      else if (z < 0)
+        p = wnd[j][(-z - 1) >> 1].neg();
+
+      if (p.type === 'affine')
+        acc = acc.mixedAdd(p);
+      else
+        acc = acc.add(p);
+    }
+  }
+  // Zeroify references
+  for (var i = 0; i < len; i++)
+    wnd[i] = null;
+
+  if (jacobianResult)
+    return acc;
+  else
+    return acc.toP();
+};
+
+function BasePoint(curve, type) {
+  this.curve = curve;
+  this.type = type;
+  this.precomputed = null;
+}
+BaseCurve.BasePoint = BasePoint;
+
+BasePoint.prototype.eq = function eq(/*other*/) {
+  throw new Error('Not implemented');
+};
+
+BasePoint.prototype.validate = function validate() {
+  return this.curve.validate(this);
+};
+
+BaseCurve.prototype.decodePoint = function decodePoint(bytes, enc) {
+  bytes = utils.toArray(bytes, enc);
+
+  var len = this.p.byteLength();
+
+  // uncompressed, hybrid-odd, hybrid-even
+  if ((bytes[0] === 0x04 || bytes[0] === 0x06 || bytes[0] === 0x07) &&
+      bytes.length - 1 === 2 * len) {
+    if (bytes[0] === 0x06)
+      assert(bytes[bytes.length - 1] % 2 === 0);
+    else if (bytes[0] === 0x07)
+      assert(bytes[bytes.length - 1] % 2 === 1);
+
+    var res =  this.point(bytes.slice(1, 1 + len),
+                          bytes.slice(1 + len, 1 + 2 * len));
+
+    return res;
+  } else if ((bytes[0] === 0x02 || bytes[0] === 0x03) &&
+              bytes.length - 1 === len) {
+    return this.pointFromX(bytes.slice(1, 1 + len), bytes[0] === 0x03);
+  }
+  throw new Error('Unknown point format');
+};
+
+BasePoint.prototype.encodeCompressed = function encodeCompressed(enc) {
+  return this.encode(enc, true);
+};
+
+BasePoint.prototype._encode = function _encode(compact) {
+  var len = this.curve.p.byteLength();
+  var x = this.getX().toArray('be', len);
+
+  if (compact)
+    return [ this.getY().isEven() ? 0x02 : 0x03 ].concat(x);
+
+  return [ 0x04 ].concat(x, this.getY().toArray('be', len)) ;
+};
+
+BasePoint.prototype.encode = function encode(enc, compact) {
+  return utils.encode(this._encode(compact), enc);
+};
+
+BasePoint.prototype.precompute = function precompute(power) {
+  if (this.precomputed)
+    return this;
+
+  var precomputed = {
+    doubles: null,
+    naf: null,
+    beta: null
+  };
+  precomputed.naf = this._getNAFPoints(8);
+  precomputed.doubles = this._getDoubles(4, power);
+  precomputed.beta = this._getBeta();
+  this.precomputed = precomputed;
+
+  return this;
+};
+
+BasePoint.prototype._hasDoubles = function _hasDoubles(k) {
+  if (!this.precomputed)
+    return false;
+
+  var doubles = this.precomputed.doubles;
+  if (!doubles)
+    return false;
+
+  return doubles.points.length >= Math.ceil((k.bitLength() + 1) / doubles.step);
+};
+
+BasePoint.prototype._getDoubles = function _getDoubles(step, power) {
+  if (this.precomputed && this.precomputed.doubles)
+    return this.precomputed.doubles;
+
+  var doubles = [ this ];
+  var acc = this;
+  for (var i = 0; i < power; i += step) {
+    for (var j = 0; j < step; j++)
+      acc = acc.dbl();
+    doubles.push(acc);
+  }
+  return {
+    step: step,
+    points: doubles
+  };
+};
+
+BasePoint.prototype._getNAFPoints = function _getNAFPoints(wnd) {
+  if (this.precomputed && this.precomputed.naf)
+    return this.precomputed.naf;
+
+  var res = [ this ];
+  var max = (1 << wnd) - 1;
+  var dbl = max === 1 ? null : this.dbl();
+  for (var i = 1; i < max; i++)
+    res[i] = res[i - 1].add(dbl);
+  return {
+    wnd: wnd,
+    points: res
+  };
+};
+
+BasePoint.prototype._getBeta = function _getBeta() {
+  return null;
+};
+
+BasePoint.prototype.dblp = function dblp(k) {
+  var r = this;
+  for (var i = 0; i < k; i++)
+    r = r.dbl();
+  return r;
+};
+
+},{"../../elliptic":68,"bn.js":18}],70:[function(require,module,exports){
+'use strict';
+
+var curve = require('../curve');
+var elliptic = require('../../elliptic');
+var BN = require('bn.js');
+var inherits = require('inherits');
+var Base = curve.base;
+
+var assert = elliptic.utils.assert;
+
+function EdwardsCurve(conf) {
+  // NOTE: Important as we are creating point in Base.call()
+  this.twisted = (conf.a | 0) !== 1;
+  this.mOneA = this.twisted && (conf.a | 0) === -1;
+  this.extended = this.mOneA;
+
+  Base.call(this, 'edwards', conf);
+
+  this.a = new BN(conf.a, 16).umod(this.red.m);
+  this.a = this.a.toRed(this.red);
+  this.c = new BN(conf.c, 16).toRed(this.red);
+  this.c2 = this.c.redSqr();
+  this.d = new BN(conf.d, 16).toRed(this.red);
+  this.dd = this.d.redAdd(this.d);
+
+  assert(!this.twisted || this.c.fromRed().cmpn(1) === 0);
+  this.oneC = (conf.c | 0) === 1;
+}
+inherits(EdwardsCurve, Base);
+module.exports = EdwardsCurve;
+
+EdwardsCurve.prototype._mulA = function _mulA(num) {
+  if (this.mOneA)
+    return num.redNeg();
+  else
+    return this.a.redMul(num);
+};
+
+EdwardsCurve.prototype._mulC = function _mulC(num) {
+  if (this.oneC)
+    return num;
+  else
+    return this.c.redMul(num);
+};
+
+// Just for compatibility with Short curve
+EdwardsCurve.prototype.jpoint = function jpoint(x, y, z, t) {
+  return this.point(x, y, z, t);
+};
+
+EdwardsCurve.prototype.pointFromX = function pointFromX(x, odd) {
+  x = new BN(x, 16);
+  if (!x.red)
+    x = x.toRed(this.red);
+
+  var x2 = x.redSqr();
+  var rhs = this.c2.redSub(this.a.redMul(x2));
+  var lhs = this.one.redSub(this.c2.redMul(this.d).redMul(x2));
+
+  var y2 = rhs.redMul(lhs.redInvm());
+  var y = y2.redSqrt();
+  if (y.redSqr().redSub(y2).cmp(this.zero) !== 0)
+    throw new Error('invalid point');
+
+  var isOdd = y.fromRed().isOdd();
+  if (odd && !isOdd || !odd && isOdd)
+    y = y.redNeg();
+
+  return this.point(x, y);
+};
+
+EdwardsCurve.prototype.pointFromY = function pointFromY(y, odd) {
+  y = new BN(y, 16);
+  if (!y.red)
+    y = y.toRed(this.red);
+
+  // x^2 = (y^2 - 1) / (d y^2 + 1)
+  var y2 = y.redSqr();
+  var lhs = y2.redSub(this.one);
+  var rhs = y2.redMul(this.d).redAdd(this.one);
+  var x2 = lhs.redMul(rhs.redInvm());
+
+  if (x2.cmp(this.zero) === 0) {
+    if (odd)
+      throw new Error('invalid point');
+    else
+      return this.point(this.zero, y);
+  }
+
+  var x = x2.redSqrt();
+  if (x.redSqr().redSub(x2).cmp(this.zero) !== 0)
+    throw new Error('invalid point');
+
+  if (x.isOdd() !== odd)
+    x = x.redNeg();
+
+  return this.point(x, y);
+};
+
+EdwardsCurve.prototype.validate = function validate(point) {
+  if (point.isInfinity())
+    return true;
+
+  // Curve: A * X^2 + Y^2 = C^2 * (1 + D * X^2 * Y^2)
+  point.normalize();
+
+  var x2 = point.x.redSqr();
+  var y2 = point.y.redSqr();
+  var lhs = x2.redMul(this.a).redAdd(y2);
+  var rhs = this.c2.redMul(this.one.redAdd(this.d.redMul(x2).redMul(y2)));
+
+  return lhs.cmp(rhs) === 0;
+};
+
+function Point(curve, x, y, z, t) {
+  Base.BasePoint.call(this, curve, 'projective');
+  if (x === null && y === null && z === null) {
+    this.x = this.curve.zero;
+    this.y = this.curve.one;
+    this.z = this.curve.one;
+    this.t = this.curve.zero;
+    this.zOne = true;
+  } else {
+    this.x = new BN(x, 16);
+    this.y = new BN(y, 16);
+    this.z = z ? new BN(z, 16) : this.curve.one;
+    this.t = t && new BN(t, 16);
+    if (!this.x.red)
+      this.x = this.x.toRed(this.curve.red);
+    if (!this.y.red)
+      this.y = this.y.toRed(this.curve.red);
+    if (!this.z.red)
+      this.z = this.z.toRed(this.curve.red);
+    if (this.t && !this.t.red)
+      this.t = this.t.toRed(this.curve.red);
+    this.zOne = this.z === this.curve.one;
+
+    // Use extended coordinates
+    if (this.curve.extended && !this.t) {
+      this.t = this.x.redMul(this.y);
+      if (!this.zOne)
+        this.t = this.t.redMul(this.z.redInvm());
+    }
+  }
+}
+inherits(Point, Base.BasePoint);
+
+EdwardsCurve.prototype.pointFromJSON = function pointFromJSON(obj) {
+  return Point.fromJSON(this, obj);
+};
+
+EdwardsCurve.prototype.point = function point(x, y, z, t) {
+  return new Point(this, x, y, z, t);
+};
+
+Point.fromJSON = function fromJSON(curve, obj) {
+  return new Point(curve, obj[0], obj[1], obj[2]);
+};
+
+Point.prototype.inspect = function inspect() {
+  if (this.isInfinity())
+    return '<EC Point Infinity>';
+  return '<EC Point x: ' + this.x.fromRed().toString(16, 2) +
+      ' y: ' + this.y.fromRed().toString(16, 2) +
+      ' z: ' + this.z.fromRed().toString(16, 2) + '>';
+};
+
+Point.prototype.isInfinity = function isInfinity() {
+  // XXX This code assumes that zero is always zero in red
+  return this.x.cmpn(0) === 0 &&
+         this.y.cmp(this.z) === 0;
+};
+
+Point.prototype._extDbl = function _extDbl() {
+  // hyperelliptic.org/EFD/g1p/auto-twisted-extended-1.html
+  //     #doubling-dbl-2008-hwcd
+  // 4M + 4S
+
+  // A = X1^2
+  var a = this.x.redSqr();
+  // B = Y1^2
+  var b = this.y.redSqr();
+  // C = 2 * Z1^2
+  var c = this.z.redSqr();
+  c = c.redIAdd(c);
+  // D = a * A
+  var d = this.curve._mulA(a);
+  // E = (X1 + Y1)^2 - A - B
+  var e = this.x.redAdd(this.y).redSqr().redISub(a).redISub(b);
+  // G = D + B
+  var g = d.redAdd(b);
+  // F = G - C
+  var f = g.redSub(c);
+  // H = D - B
+  var h = d.redSub(b);
+  // X3 = E * F
+  var nx = e.redMul(f);
+  // Y3 = G * H
+  var ny = g.redMul(h);
+  // T3 = E * H
+  var nt = e.redMul(h);
+  // Z3 = F * G
+  var nz = f.redMul(g);
+  return this.curve.point(nx, ny, nz, nt);
+};
+
+Point.prototype._projDbl = function _projDbl() {
+  // hyperelliptic.org/EFD/g1p/auto-twisted-projective.html
+  //     #doubling-dbl-2008-bbjlp
+  //     #doubling-dbl-2007-bl
+  // and others
+  // Generally 3M + 4S or 2M + 4S
+
+  // B = (X1 + Y1)^2
+  var b = this.x.redAdd(this.y).redSqr();
+  // C = X1^2
+  var c = this.x.redSqr();
+  // D = Y1^2
+  var d = this.y.redSqr();
+
+  var nx;
+  var ny;
+  var nz;
+  if (this.curve.twisted) {
+    // E = a * C
+    var e = this.curve._mulA(c);
+    // F = E + D
+    var f = e.redAdd(d);
+    if (this.zOne) {
+      // X3 = (B - C - D) * (F - 2)
+      nx = b.redSub(c).redSub(d).redMul(f.redSub(this.curve.two));
+      // Y3 = F * (E - D)
+      ny = f.redMul(e.redSub(d));
+      // Z3 = F^2 - 2 * F
+      nz = f.redSqr().redSub(f).redSub(f);
+    } else {
+      // H = Z1^2
+      var h = this.z.redSqr();
+      // J = F - 2 * H
+      var j = f.redSub(h).redISub(h);
+      // X3 = (B-C-D)*J
+      nx = b.redSub(c).redISub(d).redMul(j);
+      // Y3 = F * (E - D)
+      ny = f.redMul(e.redSub(d));
+      // Z3 = F * J
+      nz = f.redMul(j);
+    }
+  } else {
+    // E = C + D
+    var e = c.redAdd(d);
+    // H = (c * Z1)^2
+    var h = this.curve._mulC(this.c.redMul(this.z)).redSqr();
+    // J = E - 2 * H
+    var j = e.redSub(h).redSub(h);
+    // X3 = c * (B - E) * J
+    nx = this.curve._mulC(b.redISub(e)).redMul(j);
+    // Y3 = c * E * (C - D)
+    ny = this.curve._mulC(e).redMul(c.redISub(d));
+    // Z3 = E * J
+    nz = e.redMul(j);
+  }
+  return this.curve.point(nx, ny, nz);
+};
+
+Point.prototype.dbl = function dbl() {
+  if (this.isInfinity())
+    return this;
+
+  // Double in extended coordinates
+  if (this.curve.extended)
+    return this._extDbl();
+  else
+    return this._projDbl();
+};
+
+Point.prototype._extAdd = function _extAdd(p) {
+  // hyperelliptic.org/EFD/g1p/auto-twisted-extended-1.html
+  //     #addition-add-2008-hwcd-3
+  // 8M
+
+  // A = (Y1 - X1) * (Y2 - X2)
+  var a = this.y.redSub(this.x).redMul(p.y.redSub(p.x));
+  // B = (Y1 + X1) * (Y2 + X2)
+  var b = this.y.redAdd(this.x).redMul(p.y.redAdd(p.x));
+  // C = T1 * k * T2
+  var c = this.t.redMul(this.curve.dd).redMul(p.t);
+  // D = Z1 * 2 * Z2
+  var d = this.z.redMul(p.z.redAdd(p.z));
+  // E = B - A
+  var e = b.redSub(a);
+  // F = D - C
+  var f = d.redSub(c);
+  // G = D + C
+  var g = d.redAdd(c);
+  // H = B + A
+  var h = b.redAdd(a);
+  // X3 = E * F
+  var nx = e.redMul(f);
+  // Y3 = G * H
+  var ny = g.redMul(h);
+  // T3 = E * H
+  var nt = e.redMul(h);
+  // Z3 = F * G
+  var nz = f.redMul(g);
+  return this.curve.point(nx, ny, nz, nt);
+};
+
+Point.prototype._projAdd = function _projAdd(p) {
+  // hyperelliptic.org/EFD/g1p/auto-twisted-projective.html
+  //     #addition-add-2008-bbjlp
+  //     #addition-add-2007-bl
+  // 10M + 1S
+
+  // A = Z1 * Z2
+  var a = this.z.redMul(p.z);
+  // B = A^2
+  var b = a.redSqr();
+  // C = X1 * X2
+  var c = this.x.redMul(p.x);
+  // D = Y1 * Y2
+  var d = this.y.redMul(p.y);
+  // E = d * C * D
+  var e = this.curve.d.redMul(c).redMul(d);
+  // F = B - E
+  var f = b.redSub(e);
+  // G = B + E
+  var g = b.redAdd(e);
+  // X3 = A * F * ((X1 + Y1) * (X2 + Y2) - C - D)
+  var tmp = this.x.redAdd(this.y).redMul(p.x.redAdd(p.y)).redISub(c).redISub(d);
+  var nx = a.redMul(f).redMul(tmp);
+  var ny;
+  var nz;
+  if (this.curve.twisted) {
+    // Y3 = A * G * (D - a * C)
+    ny = a.redMul(g).redMul(d.redSub(this.curve._mulA(c)));
+    // Z3 = F * G
+    nz = f.redMul(g);
+  } else {
+    // Y3 = A * G * (D - C)
+    ny = a.redMul(g).redMul(d.redSub(c));
+    // Z3 = c * F * G
+    nz = this.curve._mulC(f).redMul(g);
+  }
+  return this.curve.point(nx, ny, nz);
+};
+
+Point.prototype.add = function add(p) {
+  if (this.isInfinity())
+    return p;
+  if (p.isInfinity())
+    return this;
+
+  if (this.curve.extended)
+    return this._extAdd(p);
+  else
+    return this._projAdd(p);
+};
+
+Point.prototype.mul = function mul(k) {
+  if (this._hasDoubles(k))
+    return this.curve._fixedNafMul(this, k);
+  else
+    return this.curve._wnafMul(this, k);
+};
+
+Point.prototype.mulAdd = function mulAdd(k1, p, k2) {
+  return this.curve._wnafMulAdd(1, [ this, p ], [ k1, k2 ], 2, false);
+};
+
+Point.prototype.jmulAdd = function jmulAdd(k1, p, k2) {
+  return this.curve._wnafMulAdd(1, [ this, p ], [ k1, k2 ], 2, true);
+};
+
+Point.prototype.normalize = function normalize() {
+  if (this.zOne)
+    return this;
+
+  // Normalize coordinates
+  var zi = this.z.redInvm();
+  this.x = this.x.redMul(zi);
+  this.y = this.y.redMul(zi);
+  if (this.t)
+    this.t = this.t.redMul(zi);
+  this.z = this.curve.one;
+  this.zOne = true;
+  return this;
+};
+
+Point.prototype.neg = function neg() {
+  return this.curve.point(this.x.redNeg(),
+                          this.y,
+                          this.z,
+                          this.t && this.t.redNeg());
+};
+
+Point.prototype.getX = function getX() {
+  this.normalize();
+  return this.x.fromRed();
+};
+
+Point.prototype.getY = function getY() {
+  this.normalize();
+  return this.y.fromRed();
+};
+
+Point.prototype.eq = function eq(other) {
+  return this === other ||
+         this.getX().cmp(other.getX()) === 0 &&
+         this.getY().cmp(other.getY()) === 0;
+};
+
+Point.prototype.eqXToP = function eqXToP(x) {
+  var rx = x.toRed(this.curve.red).redMul(this.z);
+  if (this.x.cmp(rx) === 0)
+    return true;
+
+  var xc = x.clone();
+  var t = this.curve.redN.redMul(this.z);
+  for (;;) {
+    xc.iadd(this.curve.n);
+    if (xc.cmp(this.curve.p) >= 0)
+      return false;
+
+    rx.redIAdd(t);
+    if (this.x.cmp(rx) === 0)
+      return true;
+  }
+  return false;
+};
+
+// Compatibility with BaseCurve
+Point.prototype.toP = Point.prototype.normalize;
+Point.prototype.mixedAdd = Point.prototype.add;
+
+},{"../../elliptic":68,"../curve":71,"bn.js":18,"inherits":101}],71:[function(require,module,exports){
+'use strict';
+
+var curve = exports;
+
+curve.base = require('./base');
+curve.short = require('./short');
+curve.mont = require('./mont');
+curve.edwards = require('./edwards');
+
+},{"./base":69,"./edwards":70,"./mont":72,"./short":73}],72:[function(require,module,exports){
+'use strict';
+
+var curve = require('../curve');
+var BN = require('bn.js');
+var inherits = require('inherits');
+var Base = curve.base;
+
+var elliptic = require('../../elliptic');
+var utils = elliptic.utils;
+
+function MontCurve(conf) {
+  Base.call(this, 'mont', conf);
+
+  this.a = new BN(conf.a, 16).toRed(this.red);
+  this.b = new BN(conf.b, 16).toRed(this.red);
+  this.i4 = new BN(4).toRed(this.red).redInvm();
+  this.two = new BN(2).toRed(this.red);
+  this.a24 = this.i4.redMul(this.a.redAdd(this.two));
+}
+inherits(MontCurve, Base);
+module.exports = MontCurve;
+
+MontCurve.prototype.validate = function validate(point) {
+  var x = point.normalize().x;
+  var x2 = x.redSqr();
+  var rhs = x2.redMul(x).redAdd(x2.redMul(this.a)).redAdd(x);
+  var y = rhs.redSqrt();
+
+  return y.redSqr().cmp(rhs) === 0;
+};
+
+function Point(curve, x, z) {
+  Base.BasePoint.call(this, curve, 'projective');
+  if (x === null && z === null) {
+    this.x = this.curve.one;
+    this.z = this.curve.zero;
+  } else {
+    this.x = new BN(x, 16);
+    this.z = new BN(z, 16);
+    if (!this.x.red)
+      this.x = this.x.toRed(this.curve.red);
+    if (!this.z.red)
+      this.z = this.z.toRed(this.curve.red);
+  }
+}
+inherits(Point, Base.BasePoint);
+
+MontCurve.prototype.decodePoint = function decodePoint(bytes, enc) {
+  return this.point(utils.toArray(bytes, enc), 1);
+};
+
+MontCurve.prototype.point = function point(x, z) {
+  return new Point(this, x, z);
+};
+
+MontCurve.prototype.pointFromJSON = function pointFromJSON(obj) {
+  return Point.fromJSON(this, obj);
+};
+
+Point.prototype.precompute = function precompute() {
+  // No-op
+};
+
+Point.prototype._encode = function _encode() {
+  return this.getX().toArray('be', this.curve.p.byteLength());
+};
+
+Point.fromJSON = function fromJSON(curve, obj) {
+  return new Point(curve, obj[0], obj[1] || curve.one);
+};
+
+Point.prototype.inspect = function inspect() {
+  if (this.isInfinity())
+    return '<EC Point Infinity>';
+  return '<EC Point x: ' + this.x.fromRed().toString(16, 2) +
+      ' z: ' + this.z.fromRed().toString(16, 2) + '>';
+};
+
+Point.prototype.isInfinity = function isInfinity() {
+  // XXX This code assumes that zero is always zero in red
+  return this.z.cmpn(0) === 0;
+};
+
+Point.prototype.dbl = function dbl() {
+  // http://hyperelliptic.org/EFD/g1p/auto-montgom-xz.html#doubling-dbl-1987-m-3
+  // 2M + 2S + 4A
+
+  // A = X1 + Z1
+  var a = this.x.redAdd(this.z);
+  // AA = A^2
+  var aa = a.redSqr();
+  // B = X1 - Z1
+  var b = this.x.redSub(this.z);
+  // BB = B^2
+  var bb = b.redSqr();
+  // C = AA - BB
+  var c = aa.redSub(bb);
+  // X3 = AA * BB
+  var nx = aa.redMul(bb);
+  // Z3 = C * (BB + A24 * C)
+  var nz = c.redMul(bb.redAdd(this.curve.a24.redMul(c)));
+  return this.curve.point(nx, nz);
+};
+
+Point.prototype.add = function add() {
+  throw new Error('Not supported on Montgomery curve');
+};
+
+Point.prototype.diffAdd = function diffAdd(p, diff) {
+  // http://hyperelliptic.org/EFD/g1p/auto-montgom-xz.html#diffadd-dadd-1987-m-3
+  // 4M + 2S + 6A
+
+  // A = X2 + Z2
+  var a = this.x.redAdd(this.z);
+  // B = X2 - Z2
+  var b = this.x.redSub(this.z);
+  // C = X3 + Z3
+  var c = p.x.redAdd(p.z);
+  // D = X3 - Z3
+  var d = p.x.redSub(p.z);
+  // DA = D * A
+  var da = d.redMul(a);
+  // CB = C * B
+  var cb = c.redMul(b);
+  // X5 = Z1 * (DA + CB)^2
+  var nx = diff.z.redMul(da.redAdd(cb).redSqr());
+  // Z5 = X1 * (DA - CB)^2
+  var nz = diff.x.redMul(da.redISub(cb).redSqr());
+  return this.curve.point(nx, nz);
+};
+
+Point.prototype.mul = function mul(k) {
+  var t = k.clone();
+  var a = this; // (N / 2) * Q + Q
+  var b = this.curve.point(null, null); // (N / 2) * Q
+  var c = this; // Q
+
+  for (var bits = []; t.cmpn(0) !== 0; t.iushrn(1))
+    bits.push(t.andln(1));
+
+  for (var i = bits.length - 1; i >= 0; i--) {
+    if (bits[i] === 0) {
+      // N * Q + Q = ((N / 2) * Q + Q)) + (N / 2) * Q
+      a = a.diffAdd(b, c);
+      // N * Q = 2 * ((N / 2) * Q + Q))
+      b = b.dbl();
+    } else {
+      // N * Q = ((N / 2) * Q + Q) + ((N / 2) * Q)
+      b = a.diffAdd(b, c);
+      // N * Q + Q = 2 * ((N / 2) * Q + Q)
+      a = a.dbl();
+    }
+  }
+  return b;
+};
+
+Point.prototype.mulAdd = function mulAdd() {
+  throw new Error('Not supported on Montgomery curve');
+};
+
+Point.prototype.jumlAdd = function jumlAdd() {
+  throw new Error('Not supported on Montgomery curve');
+};
+
+Point.prototype.eq = function eq(other) {
+  return this.getX().cmp(other.getX()) === 0;
+};
+
+Point.prototype.normalize = function normalize() {
+  this.x = this.x.redMul(this.z.redInvm());
+  this.z = this.curve.one;
+  return this;
+};
+
+Point.prototype.getX = function getX() {
+  // Normalize coordinates
+  this.normalize();
+
+  return this.x.fromRed();
+};
+
+},{"../../elliptic":68,"../curve":71,"bn.js":18,"inherits":101}],73:[function(require,module,exports){
+'use strict';
+
+var curve = require('../curve');
+var elliptic = require('../../elliptic');
+var BN = require('bn.js');
+var inherits = require('inherits');
+var Base = curve.base;
+
+var assert = elliptic.utils.assert;
+
+function ShortCurve(conf) {
+  Base.call(this, 'short', conf);
+
+  this.a = new BN(conf.a, 16).toRed(this.red);
+  this.b = new BN(conf.b, 16).toRed(this.red);
+  this.tinv = this.two.redInvm();
+
+  this.zeroA = this.a.fromRed().cmpn(0) === 0;
+  this.threeA = this.a.fromRed().sub(this.p).cmpn(-3) === 0;
+
+  // If the curve is endomorphic, precalculate beta and lambda
+  this.endo = this._getEndomorphism(conf);
+  this._endoWnafT1 = new Array(4);
+  this._endoWnafT2 = new Array(4);
+}
+inherits(ShortCurve, Base);
+module.exports = ShortCurve;
+
+ShortCurve.prototype._getEndomorphism = function _getEndomorphism(conf) {
+  // No efficient endomorphism
+  if (!this.zeroA || !this.g || !this.n || this.p.modn(3) !== 1)
+    return;
+
+  // Compute beta and lambda, that lambda * P = (beta * Px; Py)
+  var beta;
+  var lambda;
+  if (conf.beta) {
+    beta = new BN(conf.beta, 16).toRed(this.red);
+  } else {
+    var betas = this._getEndoRoots(this.p);
+    // Choose the smallest beta
+    beta = betas[0].cmp(betas[1]) < 0 ? betas[0] : betas[1];
+    beta = beta.toRed(this.red);
+  }
+  if (conf.lambda) {
+    lambda = new BN(conf.lambda, 16);
+  } else {
+    // Choose the lambda that is matching selected beta
+    var lambdas = this._getEndoRoots(this.n);
+    if (this.g.mul(lambdas[0]).x.cmp(this.g.x.redMul(beta)) === 0) {
+      lambda = lambdas[0];
+    } else {
+      lambda = lambdas[1];
+      assert(this.g.mul(lambda).x.cmp(this.g.x.redMul(beta)) === 0);
+    }
+  }
+
+  // Get basis vectors, used for balanced length-two representation
+  var basis;
+  if (conf.basis) {
+    basis = conf.basis.map(function(vec) {
+      return {
+        a: new BN(vec.a, 16),
+        b: new BN(vec.b, 16)
+      };
+    });
+  } else {
+    basis = this._getEndoBasis(lambda);
+  }
+
+  return {
+    beta: beta,
+    lambda: lambda,
+    basis: basis
+  };
+};
+
+ShortCurve.prototype._getEndoRoots = function _getEndoRoots(num) {
+  // Find roots of for x^2 + x + 1 in F
+  // Root = (-1 +- Sqrt(-3)) / 2
+  //
+  var red = num === this.p ? this.red : BN.mont(num);
+  var tinv = new BN(2).toRed(red).redInvm();
+  var ntinv = tinv.redNeg();
+
+  var s = new BN(3).toRed(red).redNeg().redSqrt().redMul(tinv);
+
+  var l1 = ntinv.redAdd(s).fromRed();
+  var l2 = ntinv.redSub(s).fromRed();
+  return [ l1, l2 ];
+};
+
+ShortCurve.prototype._getEndoBasis = function _getEndoBasis(lambda) {
+  // aprxSqrt >= sqrt(this.n)
+  var aprxSqrt = this.n.ushrn(Math.floor(this.n.bitLength() / 2));
+
+  // 3.74
+  // Run EGCD, until r(L + 1) < aprxSqrt
+  var u = lambda;
+  var v = this.n.clone();
+  var x1 = new BN(1);
+  var y1 = new BN(0);
+  var x2 = new BN(0);
+  var y2 = new BN(1);
+
+  // NOTE: all vectors are roots of: a + b * lambda = 0 (mod n)
+  var a0;
+  var b0;
+  // First vector
+  var a1;
+  var b1;
+  // Second vector
+  var a2;
+  var b2;
+
+  var prevR;
+  var i = 0;
+  var r;
+  var x;
+  while (u.cmpn(0) !== 0) {
+    var q = v.div(u);
+    r = v.sub(q.mul(u));
+    x = x2.sub(q.mul(x1));
+    var y = y2.sub(q.mul(y1));
+
+    if (!a1 && r.cmp(aprxSqrt) < 0) {
+      a0 = prevR.neg();
+      b0 = x1;
+      a1 = r.neg();
+      b1 = x;
+    } else if (a1 && ++i === 2) {
+      break;
+    }
+    prevR = r;
+
+    v = u;
+    u = r;
+    x2 = x1;
+    x1 = x;
+    y2 = y1;
+    y1 = y;
+  }
+  a2 = r.neg();
+  b2 = x;
+
+  var len1 = a1.sqr().add(b1.sqr());
+  var len2 = a2.sqr().add(b2.sqr());
+  if (len2.cmp(len1) >= 0) {
+    a2 = a0;
+    b2 = b0;
+  }
+
+  // Normalize signs
+  if (a1.negative) {
+    a1 = a1.neg();
+    b1 = b1.neg();
+  }
+  if (a2.negative) {
+    a2 = a2.neg();
+    b2 = b2.neg();
+  }
+
+  return [
+    { a: a1, b: b1 },
+    { a: a2, b: b2 }
+  ];
+};
+
+ShortCurve.prototype._endoSplit = function _endoSplit(k) {
+  var basis = this.endo.basis;
+  var v1 = basis[0];
+  var v2 = basis[1];
+
+  var c1 = v2.b.mul(k).divRound(this.n);
+  var c2 = v1.b.neg().mul(k).divRound(this.n);
+
+  var p1 = c1.mul(v1.a);
+  var p2 = c2.mul(v2.a);
+  var q1 = c1.mul(v1.b);
+  var q2 = c2.mul(v2.b);
+
+  // Calculate answer
+  var k1 = k.sub(p1).sub(p2);
+  var k2 = q1.add(q2).neg();
+  return { k1: k1, k2: k2 };
+};
+
+ShortCurve.prototype.pointFromX = function pointFromX(x, odd) {
+  x = new BN(x, 16);
+  if (!x.red)
+    x = x.toRed(this.red);
+
+  var y2 = x.redSqr().redMul(x).redIAdd(x.redMul(this.a)).redIAdd(this.b);
+  var y = y2.redSqrt();
+  if (y.redSqr().redSub(y2).cmp(this.zero) !== 0)
+    throw new Error('invalid point');
+
+  // XXX Is there any way to tell if the number is odd without converting it
+  // to non-red form?
+  var isOdd = y.fromRed().isOdd();
+  if (odd && !isOdd || !odd && isOdd)
+    y = y.redNeg();
+
+  return this.point(x, y);
+};
+
+ShortCurve.prototype.validate = function validate(point) {
+  if (point.inf)
+    return true;
+
+  var x = point.x;
+  var y = point.y;
+
+  var ax = this.a.redMul(x);
+  var rhs = x.redSqr().redMul(x).redIAdd(ax).redIAdd(this.b);
+  return y.redSqr().redISub(rhs).cmpn(0) === 0;
+};
+
+ShortCurve.prototype._endoWnafMulAdd =
+    function _endoWnafMulAdd(points, coeffs, jacobianResult) {
+  var npoints = this._endoWnafT1;
+  var ncoeffs = this._endoWnafT2;
+  for (var i = 0; i < points.length; i++) {
+    var split = this._endoSplit(coeffs[i]);
+    var p = points[i];
+    var beta = p._getBeta();
+
+    if (split.k1.negative) {
+      split.k1.ineg();
+      p = p.neg(true);
+    }
+    if (split.k2.negative) {
+      split.k2.ineg();
+      beta = beta.neg(true);
+    }
+
+    npoints[i * 2] = p;
+    npoints[i * 2 + 1] = beta;
+    ncoeffs[i * 2] = split.k1;
+    ncoeffs[i * 2 + 1] = split.k2;
+  }
+  var res = this._wnafMulAdd(1, npoints, ncoeffs, i * 2, jacobianResult);
+
+  // Clean-up references to points and coefficients
+  for (var j = 0; j < i * 2; j++) {
+    npoints[j] = null;
+    ncoeffs[j] = null;
+  }
+  return res;
+};
+
+function Point(curve, x, y, isRed) {
+  Base.BasePoint.call(this, curve, 'affine');
+  if (x === null && y === null) {
+    this.x = null;
+    this.y = null;
+    this.inf = true;
+  } else {
+    this.x = new BN(x, 16);
+    this.y = new BN(y, 16);
+    // Force redgomery representation when loading from JSON
+    if (isRed) {
+      this.x.forceRed(this.curve.red);
+      this.y.forceRed(this.curve.red);
+    }
+    if (!this.x.red)
+      this.x = this.x.toRed(this.curve.red);
+    if (!this.y.red)
+      this.y = this.y.toRed(this.curve.red);
+    this.inf = false;
+  }
+}
+inherits(Point, Base.BasePoint);
+
+ShortCurve.prototype.point = function point(x, y, isRed) {
+  return new Point(this, x, y, isRed);
+};
+
+ShortCurve.prototype.pointFromJSON = function pointFromJSON(obj, red) {
+  return Point.fromJSON(this, obj, red);
+};
+
+Point.prototype._getBeta = function _getBeta() {
+  if (!this.curve.endo)
+    return;
+
+  var pre = this.precomputed;
+  if (pre && pre.beta)
+    return pre.beta;
+
+  var beta = this.curve.point(this.x.redMul(this.curve.endo.beta), this.y);
+  if (pre) {
+    var curve = this.curve;
+    var endoMul = function(p) {
+      return curve.point(p.x.redMul(curve.endo.beta), p.y);
+    };
+    pre.beta = beta;
+    beta.precomputed = {
+      beta: null,
+      naf: pre.naf && {
+        wnd: pre.naf.wnd,
+        points: pre.naf.points.map(endoMul)
+      },
+      doubles: pre.doubles && {
+        step: pre.doubles.step,
+        points: pre.doubles.points.map(endoMul)
+      }
+    };
+  }
+  return beta;
+};
+
+Point.prototype.toJSON = function toJSON() {
+  if (!this.precomputed)
+    return [ this.x, this.y ];
+
+  return [ this.x, this.y, this.precomputed && {
+    doubles: this.precomputed.doubles && {
+      step: this.precomputed.doubles.step,
+      points: this.precomputed.doubles.points.slice(1)
+    },
+    naf: this.precomputed.naf && {
+      wnd: this.precomputed.naf.wnd,
+      points: this.precomputed.naf.points.slice(1)
+    }
+  } ];
+};
+
+Point.fromJSON = function fromJSON(curve, obj, red) {
+  if (typeof obj === 'string')
+    obj = JSON.parse(obj);
+  var res = curve.point(obj[0], obj[1], red);
+  if (!obj[2])
+    return res;
+
+  function obj2point(obj) {
+    return curve.point(obj[0], obj[1], red);
+  }
+
+  var pre = obj[2];
+  res.precomputed = {
+    beta: null,
+    doubles: pre.doubles && {
+      step: pre.doubles.step,
+      points: [ res ].concat(pre.doubles.points.map(obj2point))
+    },
+    naf: pre.naf && {
+      wnd: pre.naf.wnd,
+      points: [ res ].concat(pre.naf.points.map(obj2point))
+    }
+  };
+  return res;
+};
+
+Point.prototype.inspect = function inspect() {
+  if (this.isInfinity())
+    return '<EC Point Infinity>';
+  return '<EC Point x: ' + this.x.fromRed().toString(16, 2) +
+      ' y: ' + this.y.fromRed().toString(16, 2) + '>';
+};
+
+Point.prototype.isInfinity = function isInfinity() {
+  return this.inf;
+};
+
+Point.prototype.add = function add(p) {
+  // O + P = P
+  if (this.inf)
+    return p;
+
+  // P + O = P
+  if (p.inf)
+    return this;
+
+  // P + P = 2P
+  if (this.eq(p))
+    return this.dbl();
+
+  // P + (-P) = O
+  if (this.neg().eq(p))
+    return this.curve.point(null, null);
+
+  // P + Q = O
+  if (this.x.cmp(p.x) === 0)
+    return this.curve.point(null, null);
+
+  var c = this.y.redSub(p.y);
+  if (c.cmpn(0) !== 0)
+    c = c.redMul(this.x.redSub(p.x).redInvm());
+  var nx = c.redSqr().redISub(this.x).redISub(p.x);
+  var ny = c.redMul(this.x.redSub(nx)).redISub(this.y);
+  return this.curve.point(nx, ny);
+};
+
+Point.prototype.dbl = function dbl() {
+  if (this.inf)
+    return this;
+
+  // 2P = O
+  var ys1 = this.y.redAdd(this.y);
+  if (ys1.cmpn(0) === 0)
+    return this.curve.point(null, null);
+
+  var a = this.curve.a;
+
+  var x2 = this.x.redSqr();
+  var dyinv = ys1.redInvm();
+  var c = x2.redAdd(x2).redIAdd(x2).redIAdd(a).redMul(dyinv);
+
+  var nx = c.redSqr().redISub(this.x.redAdd(this.x));
+  var ny = c.redMul(this.x.redSub(nx)).redISub(this.y);
+  return this.curve.point(nx, ny);
+};
+
+Point.prototype.getX = function getX() {
+  return this.x.fromRed();
+};
+
+Point.prototype.getY = function getY() {
+  return this.y.fromRed();
+};
+
+Point.prototype.mul = function mul(k) {
+  k = new BN(k, 16);
+
+  if (this._hasDoubles(k))
+    return this.curve._fixedNafMul(this, k);
+  else if (this.curve.endo)
+    return this.curve._endoWnafMulAdd([ this ], [ k ]);
+  else
+    return this.curve._wnafMul(this, k);
+};
+
+Point.prototype.mulAdd = function mulAdd(k1, p2, k2) {
+  var points = [ this, p2 ];
+  var coeffs = [ k1, k2 ];
+  if (this.curve.endo)
+    return this.curve._endoWnafMulAdd(points, coeffs);
+  else
+    return this.curve._wnafMulAdd(1, points, coeffs, 2);
+};
+
+Point.prototype.jmulAdd = function jmulAdd(k1, p2, k2) {
+  var points = [ this, p2 ];
+  var coeffs = [ k1, k2 ];
+  if (this.curve.endo)
+    return this.curve._endoWnafMulAdd(points, coeffs, true);
+  else
+    return this.curve._wnafMulAdd(1, points, coeffs, 2, true);
+};
+
+Point.prototype.eq = function eq(p) {
+  return this === p ||
+         this.inf === p.inf &&
+             (this.inf || this.x.cmp(p.x) === 0 && this.y.cmp(p.y) === 0);
+};
+
+Point.prototype.neg = function neg(_precompute) {
+  if (this.inf)
+    return this;
+
+  var res = this.curve.point(this.x, this.y.redNeg());
+  if (_precompute && this.precomputed) {
+    var pre = this.precomputed;
+    var negate = function(p) {
+      return p.neg();
+    };
+    res.precomputed = {
+      naf: pre.naf && {
+        wnd: pre.naf.wnd,
+        points: pre.naf.points.map(negate)
+      },
+      doubles: pre.doubles && {
+        step: pre.doubles.step,
+        points: pre.doubles.points.map(negate)
+      }
+    };
+  }
+  return res;
+};
+
+Point.prototype.toJ = function toJ() {
+  if (this.inf)
+    return this.curve.jpoint(null, null, null);
+
+  var res = this.curve.jpoint(this.x, this.y, this.curve.one);
+  return res;
+};
+
+function JPoint(curve, x, y, z) {
+  Base.BasePoint.call(this, curve, 'jacobian');
+  if (x === null && y === null && z === null) {
+    this.x = this.curve.one;
+    this.y = this.curve.one;
+    this.z = new BN(0);
+  } else {
+    this.x = new BN(x, 16);
+    this.y = new BN(y, 16);
+    this.z = new BN(z, 16);
+  }
+  if (!this.x.red)
+    this.x = this.x.toRed(this.curve.red);
+  if (!this.y.red)
+    this.y = this.y.toRed(this.curve.red);
+  if (!this.z.red)
+    this.z = this.z.toRed(this.curve.red);
+
+  this.zOne = this.z === this.curve.one;
+}
+inherits(JPoint, Base.BasePoint);
+
+ShortCurve.prototype.jpoint = function jpoint(x, y, z) {
+  return new JPoint(this, x, y, z);
+};
+
+JPoint.prototype.toP = function toP() {
+  if (this.isInfinity())
+    return this.curve.point(null, null);
+
+  var zinv = this.z.redInvm();
+  var zinv2 = zinv.redSqr();
+  var ax = this.x.redMul(zinv2);
+  var ay = this.y.redMul(zinv2).redMul(zinv);
+
+  return this.curve.point(ax, ay);
+};
+
+JPoint.prototype.neg = function neg() {
+  return this.curve.jpoint(this.x, this.y.redNeg(), this.z);
+};
+
+JPoint.prototype.add = function add(p) {
+  // O + P = P
+  if (this.isInfinity())
+    return p;
+
+  // P + O = P
+  if (p.isInfinity())
+    return this;
+
+  // 12M + 4S + 7A
+  var pz2 = p.z.redSqr();
+  var z2 = this.z.redSqr();
+  var u1 = this.x.redMul(pz2);
+  var u2 = p.x.redMul(z2);
+  var s1 = this.y.redMul(pz2.redMul(p.z));
+  var s2 = p.y.redMul(z2.redMul(this.z));
+
+  var h = u1.redSub(u2);
+  var r = s1.redSub(s2);
+  if (h.cmpn(0) === 0) {
+    if (r.cmpn(0) !== 0)
+      return this.curve.jpoint(null, null, null);
+    else
+      return this.dbl();
+  }
+
+  var h2 = h.redSqr();
+  var h3 = h2.redMul(h);
+  var v = u1.redMul(h2);
+
+  var nx = r.redSqr().redIAdd(h3).redISub(v).redISub(v);
+  var ny = r.redMul(v.redISub(nx)).redISub(s1.redMul(h3));
+  var nz = this.z.redMul(p.z).redMul(h);
+
+  return this.curve.jpoint(nx, ny, nz);
+};
+
+JPoint.prototype.mixedAdd = function mixedAdd(p) {
+  // O + P = P
+  if (this.isInfinity())
+    return p.toJ();
+
+  // P + O = P
+  if (p.isInfinity())
+    return this;
+
+  // 8M + 3S + 7A
+  var z2 = this.z.redSqr();
+  var u1 = this.x;
+  var u2 = p.x.redMul(z2);
+  var s1 = this.y;
+  var s2 = p.y.redMul(z2).redMul(this.z);
+
+  var h = u1.redSub(u2);
+  var r = s1.redSub(s2);
+  if (h.cmpn(0) === 0) {
+    if (r.cmpn(0) !== 0)
+      return this.curve.jpoint(null, null, null);
+    else
+      return this.dbl();
+  }
+
+  var h2 = h.redSqr();
+  var h3 = h2.redMul(h);
+  var v = u1.redMul(h2);
+
+  var nx = r.redSqr().redIAdd(h3).redISub(v).redISub(v);
+  var ny = r.redMul(v.redISub(nx)).redISub(s1.redMul(h3));
+  var nz = this.z.redMul(h);
+
+  return this.curve.jpoint(nx, ny, nz);
+};
+
+JPoint.prototype.dblp = function dblp(pow) {
+  if (pow === 0)
+    return this;
+  if (this.isInfinity())
+    return this;
+  if (!pow)
+    return this.dbl();
+
+  if (this.curve.zeroA || this.curve.threeA) {
+    var r = this;
+    for (var i = 0; i < pow; i++)
+      r = r.dbl();
+    return r;
+  }
+
+  // 1M + 2S + 1A + N * (4S + 5M + 8A)
+  // N = 1 => 6M + 6S + 9A
+  var a = this.curve.a;
+  var tinv = this.curve.tinv;
+
+  var jx = this.x;
+  var jy = this.y;
+  var jz = this.z;
+  var jz4 = jz.redSqr().redSqr();
+
+  // Reuse results
+  var jyd = jy.redAdd(jy);
+  for (var i = 0; i < pow; i++) {
+    var jx2 = jx.redSqr();
+    var jyd2 = jyd.redSqr();
+    var jyd4 = jyd2.redSqr();
+    var c = jx2.redAdd(jx2).redIAdd(jx2).redIAdd(a.redMul(jz4));
+
+    var t1 = jx.redMul(jyd2);
+    var nx = c.redSqr().redISub(t1.redAdd(t1));
+    var t2 = t1.redISub(nx);
+    var dny = c.redMul(t2);
+    dny = dny.redIAdd(dny).redISub(jyd4);
+    var nz = jyd.redMul(jz);
+    if (i + 1 < pow)
+      jz4 = jz4.redMul(jyd4);
+
+    jx = nx;
+    jz = nz;
+    jyd = dny;
+  }
+
+  return this.curve.jpoint(jx, jyd.redMul(tinv), jz);
+};
+
+JPoint.prototype.dbl = function dbl() {
+  if (this.isInfinity())
+    return this;
+
+  if (this.curve.zeroA)
+    return this._zeroDbl();
+  else if (this.curve.threeA)
+    return this._threeDbl();
+  else
+    return this._dbl();
+};
+
+JPoint.prototype._zeroDbl = function _zeroDbl() {
+  var nx;
+  var ny;
+  var nz;
+  // Z = 1
+  if (this.zOne) {
+    // hyperelliptic.org/EFD/g1p/auto-shortw-jacobian-0.html
+    //     #doubling-mdbl-2007-bl
+    // 1M + 5S + 14A
+
+    // XX = X1^2
+    var xx = this.x.redSqr();
+    // YY = Y1^2
+    var yy = this.y.redSqr();
+    // YYYY = YY^2
+    var yyyy = yy.redSqr();
+    // S = 2 * ((X1 + YY)^2 - XX - YYYY)
+    var s = this.x.redAdd(yy).redSqr().redISub(xx).redISub(yyyy);
+    s = s.redIAdd(s);
+    // M = 3 * XX + a; a = 0
+    var m = xx.redAdd(xx).redIAdd(xx);
+    // T = M ^ 2 - 2*S
+    var t = m.redSqr().redISub(s).redISub(s);
+
+    // 8 * YYYY
+    var yyyy8 = yyyy.redIAdd(yyyy);
+    yyyy8 = yyyy8.redIAdd(yyyy8);
+    yyyy8 = yyyy8.redIAdd(yyyy8);
+
+    // X3 = T
+    nx = t;
+    // Y3 = M * (S - T) - 8 * YYYY
+    ny = m.redMul(s.redISub(t)).redISub(yyyy8);
+    // Z3 = 2*Y1
+    nz = this.y.redAdd(this.y);
+  } else {
+    // hyperelliptic.org/EFD/g1p/auto-shortw-jacobian-0.html
+    //     #doubling-dbl-2009-l
+    // 2M + 5S + 13A
+
+    // A = X1^2
+    var a = this.x.redSqr();
+    // B = Y1^2
+    var b = this.y.redSqr();
+    // C = B^2
+    var c = b.redSqr();
+    // D = 2 * ((X1 + B)^2 - A - C)
+    var d = this.x.redAdd(b).redSqr().redISub(a).redISub(c);
+    d = d.redIAdd(d);
+    // E = 3 * A
+    var e = a.redAdd(a).redIAdd(a);
+    // F = E^2
+    var f = e.redSqr();
+
+    // 8 * C
+    var c8 = c.redIAdd(c);
+    c8 = c8.redIAdd(c8);
+    c8 = c8.redIAdd(c8);
+
+    // X3 = F - 2 * D
+    nx = f.redISub(d).redISub(d);
+    // Y3 = E * (D - X3) - 8 * C
+    ny = e.redMul(d.redISub(nx)).redISub(c8);
+    // Z3 = 2 * Y1 * Z1
+    nz = this.y.redMul(this.z);
+    nz = nz.redIAdd(nz);
+  }
+
+  return this.curve.jpoint(nx, ny, nz);
+};
+
+JPoint.prototype._threeDbl = function _threeDbl() {
+  var nx;
+  var ny;
+  var nz;
+  // Z = 1
+  if (this.zOne) {
+    // hyperelliptic.org/EFD/g1p/auto-shortw-jacobian-3.html
+    //     #doubling-mdbl-2007-bl
+    // 1M + 5S + 15A
+
+    // XX = X1^2
+    var xx = this.x.redSqr();
+    // YY = Y1^2
+    var yy = this.y.redSqr();
+    // YYYY = YY^2
+    var yyyy = yy.redSqr();
+    // S = 2 * ((X1 + YY)^2 - XX - YYYY)
+    var s = this.x.redAdd(yy).redSqr().redISub(xx).redISub(yyyy);
+    s = s.redIAdd(s);
+    // M = 3 * XX + a
+    var m = xx.redAdd(xx).redIAdd(xx).redIAdd(this.curve.a);
+    // T = M^2 - 2 * S
+    var t = m.redSqr().redISub(s).redISub(s);
+    // X3 = T
+    nx = t;
+    // Y3 = M * (S - T) - 8 * YYYY
+    var yyyy8 = yyyy.redIAdd(yyyy);
+    yyyy8 = yyyy8.redIAdd(yyyy8);
+    yyyy8 = yyyy8.redIAdd(yyyy8);
+    ny = m.redMul(s.redISub(t)).redISub(yyyy8);
+    // Z3 = 2 * Y1
+    nz = this.y.redAdd(this.y);
+  } else {
+    // hyperelliptic.org/EFD/g1p/auto-shortw-jacobian-3.html#doubling-dbl-2001-b
+    // 3M + 5S
+
+    // delta = Z1^2
+    var delta = this.z.redSqr();
+    // gamma = Y1^2
+    var gamma = this.y.redSqr();
+    // beta = X1 * gamma
+    var beta = this.x.redMul(gamma);
+    // alpha = 3 * (X1 - delta) * (X1 + delta)
+    var alpha = this.x.redSub(delta).redMul(this.x.redAdd(delta));
+    alpha = alpha.redAdd(alpha).redIAdd(alpha);
+    // X3 = alpha^2 - 8 * beta
+    var beta4 = beta.redIAdd(beta);
+    beta4 = beta4.redIAdd(beta4);
+    var beta8 = beta4.redAdd(beta4);
+    nx = alpha.redSqr().redISub(beta8);
+    // Z3 = (Y1 + Z1)^2 - gamma - delta
+    nz = this.y.redAdd(this.z).redSqr().redISub(gamma).redISub(delta);
+    // Y3 = alpha * (4 * beta - X3) - 8 * gamma^2
+    var ggamma8 = gamma.redSqr();
+    ggamma8 = ggamma8.redIAdd(ggamma8);
+    ggamma8 = ggamma8.redIAdd(ggamma8);
+    ggamma8 = ggamma8.redIAdd(ggamma8);
+    ny = alpha.redMul(beta4.redISub(nx)).redISub(ggamma8);
+  }
+
+  return this.curve.jpoint(nx, ny, nz);
+};
+
+JPoint.prototype._dbl = function _dbl() {
+  var a = this.curve.a;
+
+  // 4M + 6S + 10A
+  var jx = this.x;
+  var jy = this.y;
+  var jz = this.z;
+  var jz4 = jz.redSqr().redSqr();
+
+  var jx2 = jx.redSqr();
+  var jy2 = jy.redSqr();
+
+  var c = jx2.redAdd(jx2).redIAdd(jx2).redIAdd(a.redMul(jz4));
+
+  var jxd4 = jx.redAdd(jx);
+  jxd4 = jxd4.redIAdd(jxd4);
+  var t1 = jxd4.redMul(jy2);
+  var nx = c.redSqr().redISub(t1.redAdd(t1));
+  var t2 = t1.redISub(nx);
+
+  var jyd8 = jy2.redSqr();
+  jyd8 = jyd8.redIAdd(jyd8);
+  jyd8 = jyd8.redIAdd(jyd8);
+  jyd8 = jyd8.redIAdd(jyd8);
+  var ny = c.redMul(t2).redISub(jyd8);
+  var nz = jy.redAdd(jy).redMul(jz);
+
+  return this.curve.jpoint(nx, ny, nz);
+};
+
+JPoint.prototype.trpl = function trpl() {
+  if (!this.curve.zeroA)
+    return this.dbl().add(this);
+
+  // hyperelliptic.org/EFD/g1p/auto-shortw-jacobian-0.html#tripling-tpl-2007-bl
+  // 5M + 10S + ...
+
+  // XX = X1^2
+  var xx = this.x.redSqr();
+  // YY = Y1^2
+  var yy = this.y.redSqr();
+  // ZZ = Z1^2
+  var zz = this.z.redSqr();
+  // YYYY = YY^2
+  var yyyy = yy.redSqr();
+  // M = 3 * XX + a * ZZ2; a = 0
+  var m = xx.redAdd(xx).redIAdd(xx);
+  // MM = M^2
+  var mm = m.redSqr();
+  // E = 6 * ((X1 + YY)^2 - XX - YYYY) - MM
+  var e = this.x.redAdd(yy).redSqr().redISub(xx).redISub(yyyy);
+  e = e.redIAdd(e);
+  e = e.redAdd(e).redIAdd(e);
+  e = e.redISub(mm);
+  // EE = E^2
+  var ee = e.redSqr();
+  // T = 16*YYYY
+  var t = yyyy.redIAdd(yyyy);
+  t = t.redIAdd(t);
+  t = t.redIAdd(t);
+  t = t.redIAdd(t);
+  // U = (M + E)^2 - MM - EE - T
+  var u = m.redIAdd(e).redSqr().redISub(mm).redISub(ee).redISub(t);
+  // X3 = 4 * (X1 * EE - 4 * YY * U)
+  var yyu4 = yy.redMul(u);
+  yyu4 = yyu4.redIAdd(yyu4);
+  yyu4 = yyu4.redIAdd(yyu4);
+  var nx = this.x.redMul(ee).redISub(yyu4);
+  nx = nx.redIAdd(nx);
+  nx = nx.redIAdd(nx);
+  // Y3 = 8 * Y1 * (U * (T - U) - E * EE)
+  var ny = this.y.redMul(u.redMul(t.redISub(u)).redISub(e.redMul(ee)));
+  ny = ny.redIAdd(ny);
+  ny = ny.redIAdd(ny);
+  ny = ny.redIAdd(ny);
+  // Z3 = (Z1 + E)^2 - ZZ - EE
+  var nz = this.z.redAdd(e).redSqr().redISub(zz).redISub(ee);
+
+  return this.curve.jpoint(nx, ny, nz);
+};
+
+JPoint.prototype.mul = function mul(k, kbase) {
+  k = new BN(k, kbase);
+
+  return this.curve._wnafMul(this, k);
+};
+
+JPoint.prototype.eq = function eq(p) {
+  if (p.type === 'affine')
+    return this.eq(p.toJ());
+
+  if (this === p)
+    return true;
+
+  // x1 * z2^2 == x2 * z1^2
+  var z2 = this.z.redSqr();
+  var pz2 = p.z.redSqr();
+  if (this.x.redMul(pz2).redISub(p.x.redMul(z2)).cmpn(0) !== 0)
+    return false;
+
+  // y1 * z2^3 == y2 * z1^3
+  var z3 = z2.redMul(this.z);
+  var pz3 = pz2.redMul(p.z);
+  return this.y.redMul(pz3).redISub(p.y.redMul(z3)).cmpn(0) === 0;
+};
+
+JPoint.prototype.eqXToP = function eqXToP(x) {
+  var zs = this.z.redSqr();
+  var rx = x.toRed(this.curve.red).redMul(zs);
+  if (this.x.cmp(rx) === 0)
+    return true;
+
+  var xc = x.clone();
+  var t = this.curve.redN.redMul(zs);
+  for (;;) {
+    xc.iadd(this.curve.n);
+    if (xc.cmp(this.curve.p) >= 0)
+      return false;
+
+    rx.redIAdd(t);
+    if (this.x.cmp(rx) === 0)
+      return true;
+  }
+  return false;
+};
+
+JPoint.prototype.inspect = function inspect() {
+  if (this.isInfinity())
+    return '<EC JPoint Infinity>';
+  return '<EC JPoint x: ' + this.x.toString(16, 2) +
+      ' y: ' + this.y.toString(16, 2) +
+      ' z: ' + this.z.toString(16, 2) + '>';
+};
+
+JPoint.prototype.isInfinity = function isInfinity() {
+  // XXX This code assumes that zero is always zero in red
+  return this.z.cmpn(0) === 0;
+};
+
+},{"../../elliptic":68,"../curve":71,"bn.js":18,"inherits":101}],74:[function(require,module,exports){
+'use strict';
+
+var curves = exports;
+
+var hash = require('hash.js');
+var elliptic = require('../elliptic');
+
+var assert = elliptic.utils.assert;
+
+function PresetCurve(options) {
+  if (options.type === 'short')
+    this.curve = new elliptic.curve.short(options);
+  else if (options.type === 'edwards')
+    this.curve = new elliptic.curve.edwards(options);
+  else
+    this.curve = new elliptic.curve.mont(options);
+  this.g = this.curve.g;
+  this.n = this.curve.n;
+  this.hash = options.hash;
+
+  assert(this.g.validate(), 'Invalid curve');
+  assert(this.g.mul(this.n).isInfinity(), 'Invalid curve, G*N != O');
+}
+curves.PresetCurve = PresetCurve;
+
+function defineCurve(name, options) {
+  Object.defineProperty(curves, name, {
+    configurable: true,
+    enumerable: true,
+    get: function() {
+      var curve = new PresetCurve(options);
+      Object.defineProperty(curves, name, {
+        configurable: true,
+        enumerable: true,
+        value: curve
+      });
+      return curve;
+    }
+  });
+}
+
+defineCurve('p192', {
+  type: 'short',
+  prime: 'p192',
+  p: 'ffffffff ffffffff ffffffff fffffffe ffffffff ffffffff',
+  a: 'ffffffff ffffffff ffffffff fffffffe ffffffff fffffffc',
+  b: '64210519 e59c80e7 0fa7e9ab 72243049 feb8deec c146b9b1',
+  n: 'ffffffff ffffffff ffffffff 99def836 146bc9b1 b4d22831',
+  hash: hash.sha256,
+  gRed: false,
+  g: [
+    '188da80e b03090f6 7cbf20eb 43a18800 f4ff0afd 82ff1012',
+    '07192b95 ffc8da78 631011ed 6b24cdd5 73f977a1 1e794811'
+  ]
+});
+
+defineCurve('p224', {
+  type: 'short',
+  prime: 'p224',
+  p: 'ffffffff ffffffff ffffffff ffffffff 00000000 00000000 00000001',
+  a: 'ffffffff ffffffff ffffffff fffffffe ffffffff ffffffff fffffffe',
+  b: 'b4050a85 0c04b3ab f5413256 5044b0b7 d7bfd8ba 270b3943 2355ffb4',
+  n: 'ffffffff ffffffff ffffffff ffff16a2 e0b8f03e 13dd2945 5c5c2a3d',
+  hash: hash.sha256,
+  gRed: false,
+  g: [
+    'b70e0cbd 6bb4bf7f 321390b9 4a03c1d3 56c21122 343280d6 115c1d21',
+    'bd376388 b5f723fb 4c22dfe6 cd4375a0 5a074764 44d58199 85007e34'
+  ]
+});
+
+defineCurve('p256', {
+  type: 'short',
+  prime: null,
+  p: 'ffffffff 00000001 00000000 00000000 00000000 ffffffff ffffffff ffffffff',
+  a: 'ffffffff 00000001 00000000 00000000 00000000 ffffffff ffffffff fffffffc',
+  b: '5ac635d8 aa3a93e7 b3ebbd55 769886bc 651d06b0 cc53b0f6 3bce3c3e 27d2604b',
+  n: 'ffffffff 00000000 ffffffff ffffffff bce6faad a7179e84 f3b9cac2 fc632551',
+  hash: hash.sha256,
+  gRed: false,
+  g: [
+    '6b17d1f2 e12c4247 f8bce6e5 63a440f2 77037d81 2deb33a0 f4a13945 d898c296',
+    '4fe342e2 fe1a7f9b 8ee7eb4a 7c0f9e16 2bce3357 6b315ece cbb64068 37bf51f5'
+  ]
+});
+
+defineCurve('p384', {
+  type: 'short',
+  prime: null,
+  p: 'ffffffff ffffffff ffffffff ffffffff ffffffff ffffffff ffffffff ' +
+     'fffffffe ffffffff 00000000 00000000 ffffffff',
+  a: 'ffffffff ffffffff ffffffff ffffffff ffffffff ffffffff ffffffff ' +
+     'fffffffe ffffffff 00000000 00000000 fffffffc',
+  b: 'b3312fa7 e23ee7e4 988e056b e3f82d19 181d9c6e fe814112 0314088f ' +
+     '5013875a c656398d 8a2ed19d 2a85c8ed d3ec2aef',
+  n: 'ffffffff ffffffff ffffffff ffffffff ffffffff ffffffff c7634d81 ' +
+     'f4372ddf 581a0db2 48b0a77a ecec196a ccc52973',
+  hash: hash.sha384,
+  gRed: false,
+  g: [
+    'aa87ca22 be8b0537 8eb1c71e f320ad74 6e1d3b62 8ba79b98 59f741e0 82542a38 ' +
+    '5502f25d bf55296c 3a545e38 72760ab7',
+    '3617de4a 96262c6f 5d9e98bf 9292dc29 f8f41dbd 289a147c e9da3113 b5f0b8c0 ' +
+    '0a60b1ce 1d7e819d 7a431d7c 90ea0e5f'
+  ]
+});
+
+defineCurve('p521', {
+  type: 'short',
+  prime: null,
+  p: '000001ff ffffffff ffffffff ffffffff ffffffff ffffffff ' +
+     'ffffffff ffffffff ffffffff ffffffff ffffffff ffffffff ' +
+     'ffffffff ffffffff ffffffff ffffffff ffffffff',
+  a: '000001ff ffffffff ffffffff ffffffff ffffffff ffffffff ' +
+     'ffffffff ffffffff ffffffff ffffffff ffffffff ffffffff ' +
+     'ffffffff ffffffff ffffffff ffffffff fffffffc',
+  b: '00000051 953eb961 8e1c9a1f 929a21a0 b68540ee a2da725b ' +
+     '99b315f3 b8b48991 8ef109e1 56193951 ec7e937b 1652c0bd ' +
+     '3bb1bf07 3573df88 3d2c34f1 ef451fd4 6b503f00',
+  n: '000001ff ffffffff ffffffff ffffffff ffffffff ffffffff ' +
+     'ffffffff ffffffff fffffffa 51868783 bf2f966b 7fcc0148 ' +
+     'f709a5d0 3bb5c9b8 899c47ae bb6fb71e 91386409',
+  hash: hash.sha512,
+  gRed: false,
+  g: [
+    '000000c6 858e06b7 0404e9cd 9e3ecb66 2395b442 9c648139 ' +
+    '053fb521 f828af60 6b4d3dba a14b5e77 efe75928 fe1dc127 ' +
+    'a2ffa8de 3348b3c1 856a429b f97e7e31 c2e5bd66',
+    '00000118 39296a78 9a3bc004 5c8a5fb4 2c7d1bd9 98f54449 ' +
+    '579b4468 17afbd17 273e662c 97ee7299 5ef42640 c550b901 ' +
+    '3fad0761 353c7086 a272c240 88be9476 9fd16650'
+  ]
+});
+
+defineCurve('curve25519', {
+  type: 'mont',
+  prime: 'p25519',
+  p: '7fffffffffffffff ffffffffffffffff ffffffffffffffff ffffffffffffffed',
+  a: '76d06',
+  b: '1',
+  n: '1000000000000000 0000000000000000 14def9dea2f79cd6 5812631a5cf5d3ed',
+  hash: hash.sha256,
+  gRed: false,
+  g: [
+    '9'
+  ]
+});
+
+defineCurve('ed25519', {
+  type: 'edwards',
+  prime: 'p25519',
+  p: '7fffffffffffffff ffffffffffffffff ffffffffffffffff ffffffffffffffed',
+  a: '-1',
+  c: '1',
+  // -121665 * (121666^(-1)) (mod P)
+  d: '52036cee2b6ffe73 8cc740797779e898 00700a4d4141d8ab 75eb4dca135978a3',
+  n: '1000000000000000 0000000000000000 14def9dea2f79cd6 5812631a5cf5d3ed',
+  hash: hash.sha256,
+  gRed: false,
+  g: [
+    '216936d3cd6e53fec0a4e231fdd6dc5c692cc7609525a7b2c9562d608f25d51a',
+
+    // 4/5
+    '6666666666666666666666666666666666666666666666666666666666666658'
+  ]
+});
+
+var pre;
+try {
+  pre = require('./precomputed/secp256k1');
+} catch (e) {
+  pre = undefined;
+}
+
+defineCurve('secp256k1', {
+  type: 'short',
+  prime: 'k256',
+  p: 'ffffffff ffffffff ffffffff ffffffff ffffffff ffffffff fffffffe fffffc2f',
+  a: '0',
+  b: '7',
+  n: 'ffffffff ffffffff ffffffff fffffffe baaedce6 af48a03b bfd25e8c d0364141',
+  h: '1',
+  hash: hash.sha256,
+
+  // Precomputed endomorphism
+  beta: '7ae96a2b657c07106e64479eac3434e99cf0497512f58995c1396c28719501ee',
+  lambda: '5363ad4cc05c30e0a5261c028812645a122e22ea20816678df02967c1b23bd72',
+  basis: [
+    {
+      a: '3086d221a7d46bcde86c90e49284eb15',
+      b: '-e4437ed6010e88286f547fa90abfe4c3'
+    },
+    {
+      a: '114ca50f7a8e2f3f657c1108d9d44cfd8',
+      b: '3086d221a7d46bcde86c90e49284eb15'
+    }
+  ],
+
+  gRed: false,
+  g: [
+    '79be667ef9dcbbac55a06295ce870b07029bfcdb2dce28d959f2815b16f81798',
+    '483ada7726a3c4655da4fbfc0e1108a8fd17b448a68554199c47d08ffb10d4b8',
+    pre
+  ]
+});
+
+},{"../elliptic":68,"./precomputed/secp256k1":81,"hash.js":87}],75:[function(require,module,exports){
+'use strict';
+
+var BN = require('bn.js');
+var HmacDRBG = require('hmac-drbg');
+var elliptic = require('../../elliptic');
+var utils = elliptic.utils;
+var assert = utils.assert;
+
+var KeyPair = require('./key');
+var Signature = require('./signature');
+
+function EC(options) {
+  if (!(this instanceof EC))
+    return new EC(options);
+
+  // Shortcut `elliptic.ec(curve-name)`
+  if (typeof options === 'string') {
+    assert(elliptic.curves.hasOwnProperty(options), 'Unknown curve ' + options);
+
+    options = elliptic.curves[options];
+  }
+
+  // Shortcut for `elliptic.ec(elliptic.curves.curveName)`
+  if (options instanceof elliptic.curves.PresetCurve)
+    options = { curve: options };
+
+  this.curve = options.curve.curve;
+  this.n = this.curve.n;
+  this.nh = this.n.ushrn(1);
+  this.g = this.curve.g;
+
+  // Point on curve
+  this.g = options.curve.g;
+  this.g.precompute(options.curve.n.bitLength() + 1);
+
+  // Hash for function for DRBG
+  this.hash = options.hash || options.curve.hash;
+}
+module.exports = EC;
+
+EC.prototype.keyPair = function keyPair(options) {
+  return new KeyPair(this, options);
+};
+
+EC.prototype.keyFromPrivate = function keyFromPrivate(priv, enc) {
+  return KeyPair.fromPrivate(this, priv, enc);
+};
+
+EC.prototype.keyFromPublic = function keyFromPublic(pub, enc) {
+  return KeyPair.fromPublic(this, pub, enc);
+};
+
+EC.prototype.genKeyPair = function genKeyPair(options) {
+  if (!options)
+    options = {};
+
+  // Instantiate Hmac_DRBG
+  var drbg = new HmacDRBG({
+    hash: this.hash,
+    pers: options.pers,
+    persEnc: options.persEnc || 'utf8',
+    entropy: options.entropy || elliptic.rand(this.hash.hmacStrength),
+    entropyEnc: options.entropy && options.entropyEnc || 'utf8',
+    nonce: this.n.toArray()
+  });
+
+  var bytes = this.n.byteLength();
+  var ns2 = this.n.sub(new BN(2));
+  do {
+    var priv = new BN(drbg.generate(bytes));
+    if (priv.cmp(ns2) > 0)
+      continue;
+
+    priv.iaddn(1);
+    return this.keyFromPrivate(priv);
+  } while (true);
+};
+
+EC.prototype._truncateToN = function truncateToN(msg, truncOnly) {
+  var delta = msg.byteLength() * 8 - this.n.bitLength();
+  if (delta > 0)
+    msg = msg.ushrn(delta);
+  if (!truncOnly && msg.cmp(this.n) >= 0)
+    return msg.sub(this.n);
+  else
+    return msg;
+};
+
+EC.prototype.sign = function sign(msg, key, enc, options) {
+  if (typeof enc === 'object') {
+    options = enc;
+    enc = null;
+  }
+  if (!options)
+    options = {};
+
+  key = this.keyFromPrivate(key, enc);
+  msg = this._truncateToN(new BN(msg, 16));
+
+  // Zero-extend key to provide enough entropy
+  var bytes = this.n.byteLength();
+  var bkey = key.getPrivate().toArray('be', bytes);
+
+  // Zero-extend nonce to have the same byte size as N
+  var nonce = msg.toArray('be', bytes);
+
+  // Instantiate Hmac_DRBG
+  var drbg = new HmacDRBG({
+    hash: this.hash,
+    entropy: bkey,
+    nonce: nonce,
+    pers: options.pers,
+    persEnc: options.persEnc || 'utf8'
+  });
+
+  // Number of bytes to generate
+  var ns1 = this.n.sub(new BN(1));
+
+  for (var iter = 0; true; iter++) {
+    var k = options.k ?
+        options.k(iter) :
+        new BN(drbg.generate(this.n.byteLength()));
+    k = this._truncateToN(k, true);
+    if (k.cmpn(1) <= 0 || k.cmp(ns1) >= 0)
+      continue;
+
+    var kp = this.g.mul(k);
+    if (kp.isInfinity())
+      continue;
+
+    var kpX = kp.getX();
+    var r = kpX.umod(this.n);
+    if (r.cmpn(0) === 0)
+      continue;
+
+    var s = k.invm(this.n).mul(r.mul(key.getPrivate()).iadd(msg));
+    s = s.umod(this.n);
+    if (s.cmpn(0) === 0)
+      continue;
+
+    var recoveryParam = (kp.getY().isOdd() ? 1 : 0) |
+                        (kpX.cmp(r) !== 0 ? 2 : 0);
+
+    // Use complement of `s`, if it is > `n / 2`
+    if (options.canonical && s.cmp(this.nh) > 0) {
+      s = this.n.sub(s);
+      recoveryParam ^= 1;
+    }
+
+    return new Signature({ r: r, s: s, recoveryParam: recoveryParam });
+  }
+};
+
+EC.prototype.verify = function verify(msg, signature, key, enc) {
+  msg = this._truncateToN(new BN(msg, 16));
+  key = this.keyFromPublic(key, enc);
+  signature = new Signature(signature, 'hex');
+
+  // Perform primitive values validation
+  var r = signature.r;
+  var s = signature.s;
+  if (r.cmpn(1) < 0 || r.cmp(this.n) >= 0)
+    return false;
+  if (s.cmpn(1) < 0 || s.cmp(this.n) >= 0)
+    return false;
+
+  // Validate signature
+  var sinv = s.invm(this.n);
+  var u1 = sinv.mul(msg).umod(this.n);
+  var u2 = sinv.mul(r).umod(this.n);
+
+  if (!this.curve._maxwellTrick) {
+    var p = this.g.mulAdd(u1, key.getPublic(), u2);
+    if (p.isInfinity())
+      return false;
+
+    return p.getX().umod(this.n).cmp(r) === 0;
+  }
+
+  // NOTE: Greg Maxwell's trick, inspired by:
+  // https://git.io/vad3K
+
+  var p = this.g.jmulAdd(u1, key.getPublic(), u2);
+  if (p.isInfinity())
+    return false;
+
+  // Compare `p.x` of Jacobian point with `r`,
+  // this will do `p.x == r * p.z^2` instead of multiplying `p.x` by the
+  // inverse of `p.z^2`
+  return p.eqXToP(r);
+};
+
+EC.prototype.recoverPubKey = function(msg, signature, j, enc) {
+  assert((3 & j) === j, 'The recovery param is more than two bits');
+  signature = new Signature(signature, enc);
+
+  var n = this.n;
+  var e = new BN(msg);
+  var r = signature.r;
+  var s = signature.s;
+
+  // A set LSB signifies that the y-coordinate is odd
+  var isYOdd = j & 1;
+  var isSecondKey = j >> 1;
+  if (r.cmp(this.curve.p.umod(this.curve.n)) >= 0 && isSecondKey)
+    throw new Error('Unable to find sencond key candinate');
+
+  // 1.1. Let x = r + jn.
+  if (isSecondKey)
+    r = this.curve.pointFromX(r.add(this.curve.n), isYOdd);
+  else
+    r = this.curve.pointFromX(r, isYOdd);
+
+  var rInv = signature.r.invm(n);
+  var s1 = n.sub(e).mul(rInv).umod(n);
+  var s2 = s.mul(rInv).umod(n);
+
+  // 1.6.1 Compute Q = r^-1 (sR -  eG)
+  //               Q = r^-1 (sR + -eG)
+  return this.g.mulAdd(s1, r, s2);
+};
+
+EC.prototype.getKeyRecoveryParam = function(e, signature, Q, enc) {
+  signature = new Signature(signature, enc);
+  if (signature.recoveryParam !== null)
+    return signature.recoveryParam;
+
+  for (var i = 0; i < 4; i++) {
+    var Qprime;
+    try {
+      Qprime = this.recoverPubKey(e, signature, i);
+    } catch (e) {
+      continue;
+    }
+
+    if (Qprime.eq(Q))
+      return i;
+  }
+  throw new Error('Unable to find valid recovery factor');
+};
+
+},{"../../elliptic":68,"./key":76,"./signature":77,"bn.js":18,"hmac-drbg":99}],76:[function(require,module,exports){
+'use strict';
+
+var BN = require('bn.js');
+var elliptic = require('../../elliptic');
+var utils = elliptic.utils;
+var assert = utils.assert;
+
+function KeyPair(ec, options) {
+  this.ec = ec;
+  this.priv = null;
+  this.pub = null;
+
+  // KeyPair(ec, { priv: ..., pub: ... })
+  if (options.priv)
+    this._importPrivate(options.priv, options.privEnc);
+  if (options.pub)
+    this._importPublic(options.pub, options.pubEnc);
+}
+module.exports = KeyPair;
+
+KeyPair.fromPublic = function fromPublic(ec, pub, enc) {
+  if (pub instanceof KeyPair)
+    return pub;
+
+  return new KeyPair(ec, {
+    pub: pub,
+    pubEnc: enc
+  });
+};
+
+KeyPair.fromPrivate = function fromPrivate(ec, priv, enc) {
+  if (priv instanceof KeyPair)
+    return priv;
+
+  return new KeyPair(ec, {
+    priv: priv,
+    privEnc: enc
+  });
+};
+
+KeyPair.prototype.validate = function validate() {
+  var pub = this.getPublic();
+
+  if (pub.isInfinity())
+    return { result: false, reason: 'Invalid public key' };
+  if (!pub.validate())
+    return { result: false, reason: 'Public key is not a point' };
+  if (!pub.mul(this.ec.curve.n).isInfinity())
+    return { result: false, reason: 'Public key * N != O' };
+
+  return { result: true, reason: null };
+};
+
+KeyPair.prototype.getPublic = function getPublic(compact, enc) {
+  // compact is optional argument
+  if (typeof compact === 'string') {
+    enc = compact;
+    compact = null;
+  }
+
+  if (!this.pub)
+    this.pub = this.ec.g.mul(this.priv);
+
+  if (!enc)
+    return this.pub;
+
+  return this.pub.encode(enc, compact);
+};
+
+KeyPair.prototype.getPrivate = function getPrivate(enc) {
+  if (enc === 'hex')
+    return this.priv.toString(16, 2);
+  else
+    return this.priv;
+};
+
+KeyPair.prototype._importPrivate = function _importPrivate(key, enc) {
+  this.priv = new BN(key, enc || 16);
+
+  // Ensure that the priv won't be bigger than n, otherwise we may fail
+  // in fixed multiplication method
+  this.priv = this.priv.umod(this.ec.curve.n);
+};
+
+KeyPair.prototype._importPublic = function _importPublic(key, enc) {
+  if (key.x || key.y) {
+    // Montgomery points only have an `x` coordinate.
+    // Weierstrass/Edwards points on the other hand have both `x` and
+    // `y` coordinates.
+    if (this.ec.curve.type === 'mont') {
+      assert(key.x, 'Need x coordinate');
+    } else if (this.ec.curve.type === 'short' ||
+               this.ec.curve.type === 'edwards') {
+      assert(key.x && key.y, 'Need both x and y coordinate');
+    }
+    this.pub = this.ec.curve.point(key.x, key.y);
+    return;
+  }
+  this.pub = this.ec.curve.decodePoint(key, enc);
+};
+
+// ECDH
+KeyPair.prototype.derive = function derive(pub) {
+  return pub.mul(this.priv).getX();
+};
+
+// ECDSA
+KeyPair.prototype.sign = function sign(msg, enc, options) {
+  return this.ec.sign(msg, this, enc, options);
+};
+
+KeyPair.prototype.verify = function verify(msg, signature) {
+  return this.ec.verify(msg, signature, this);
+};
+
+KeyPair.prototype.inspect = function inspect() {
+  return '<Key priv: ' + (this.priv && this.priv.toString(16, 2)) +
+         ' pub: ' + (this.pub && this.pub.inspect()) + ' >';
+};
+
+},{"../../elliptic":68,"bn.js":18}],77:[function(require,module,exports){
+'use strict';
+
+var BN = require('bn.js');
+
+var elliptic = require('../../elliptic');
+var utils = elliptic.utils;
+var assert = utils.assert;
+
+function Signature(options, enc) {
+  if (options instanceof Signature)
+    return options;
+
+  if (this._importDER(options, enc))
+    return;
+
+  assert(options.r && options.s, 'Signature without r or s');
+  this.r = new BN(options.r, 16);
+  this.s = new BN(options.s, 16);
+  if (options.recoveryParam === undefined)
+    this.recoveryParam = null;
+  else
+    this.recoveryParam = options.recoveryParam;
+}
+module.exports = Signature;
+
+function Position() {
+  this.place = 0;
+}
+
+function getLength(buf, p) {
+  var initial = buf[p.place++];
+  if (!(initial & 0x80)) {
+    return initial;
+  }
+  var octetLen = initial & 0xf;
+  var val = 0;
+  for (var i = 0, off = p.place; i < octetLen; i++, off++) {
+    val <<= 8;
+    val |= buf[off];
+  }
+  p.place = off;
+  return val;
+}
+
+function rmPadding(buf) {
+  var i = 0;
+  var len = buf.length - 1;
+  while (!buf[i] && !(buf[i + 1] & 0x80) && i < len) {
+    i++;
+  }
+  if (i === 0) {
+    return buf;
+  }
+  return buf.slice(i);
+}
+
+Signature.prototype._importDER = function _importDER(data, enc) {
+  data = utils.toArray(data, enc);
+  var p = new Position();
+  if (data[p.place++] !== 0x30) {
+    return false;
+  }
+  var len = getLength(data, p);
+  if ((len + p.place) !== data.length) {
+    return false;
+  }
+  if (data[p.place++] !== 0x02) {
+    return false;
+  }
+  var rlen = getLength(data, p);
+  var r = data.slice(p.place, rlen + p.place);
+  p.place += rlen;
+  if (data[p.place++] !== 0x02) {
+    return false;
+  }
+  var slen = getLength(data, p);
+  if (data.length !== slen + p.place) {
+    return false;
+  }
+  var s = data.slice(p.place, slen + p.place);
+  if (r[0] === 0 && (r[1] & 0x80)) {
+    r = r.slice(1);
+  }
+  if (s[0] === 0 && (s[1] & 0x80)) {
+    s = s.slice(1);
+  }
+
+  this.r = new BN(r);
+  this.s = new BN(s);
+  this.recoveryParam = null;
+
+  return true;
+};
+
+function constructLength(arr, len) {
+  if (len < 0x80) {
+    arr.push(len);
+    return;
+  }
+  var octets = 1 + (Math.log(len) / Math.LN2 >>> 3);
+  arr.push(octets | 0x80);
+  while (--octets) {
+    arr.push((len >>> (octets << 3)) & 0xff);
+  }
+  arr.push(len);
+}
+
+Signature.prototype.toDER = function toDER(enc) {
+  var r = this.r.toArray();
+  var s = this.s.toArray();
+
+  // Pad values
+  if (r[0] & 0x80)
+    r = [ 0 ].concat(r);
+  // Pad values
+  if (s[0] & 0x80)
+    s = [ 0 ].concat(s);
+
+  r = rmPadding(r);
+  s = rmPadding(s);
+
+  while (!s[0] && !(s[1] & 0x80)) {
+    s = s.slice(1);
+  }
+  var arr = [ 0x02 ];
+  constructLength(arr, r.length);
+  arr = arr.concat(r);
+  arr.push(0x02);
+  constructLength(arr, s.length);
+  var backHalf = arr.concat(s);
+  var res = [ 0x30 ];
+  constructLength(res, backHalf.length);
+  res = res.concat(backHalf);
+  return utils.encode(res, enc);
+};
+
+},{"../../elliptic":68,"bn.js":18}],78:[function(require,module,exports){
+'use strict';
+
+var hash = require('hash.js');
+var elliptic = require('../../elliptic');
+var utils = elliptic.utils;
+var assert = utils.assert;
+var parseBytes = utils.parseBytes;
+var KeyPair = require('./key');
+var Signature = require('./signature');
+
+function EDDSA(curve) {
+  assert(curve === 'ed25519', 'only tested with ed25519 so far');
+
+  if (!(this instanceof EDDSA))
+    return new EDDSA(curve);
+
+  var curve = elliptic.curves[curve].curve;
+  this.curve = curve;
+  this.g = curve.g;
+  this.g.precompute(curve.n.bitLength() + 1);
+
+  this.pointClass = curve.point().constructor;
+  this.encodingLength = Math.ceil(curve.n.bitLength() / 8);
+  this.hash = hash.sha512;
+}
+
+module.exports = EDDSA;
+
+/**
+* @param {Array|String} message - message bytes
+* @param {Array|String|KeyPair} secret - secret bytes or a keypair
+* @returns {Signature} - signature
+*/
+EDDSA.prototype.sign = function sign(message, secret) {
+  message = parseBytes(message);
+  var key = this.keyFromSecret(secret);
+  var r = this.hashInt(key.messagePrefix(), message);
+  var R = this.g.mul(r);
+  var Rencoded = this.encodePoint(R);
+  var s_ = this.hashInt(Rencoded, key.pubBytes(), message)
+               .mul(key.priv());
+  var S = r.add(s_).umod(this.curve.n);
+  return this.makeSignature({ R: R, S: S, Rencoded: Rencoded });
+};
+
+/**
+* @param {Array} message - message bytes
+* @param {Array|String|Signature} sig - sig bytes
+* @param {Array|String|Point|KeyPair} pub - public key
+* @returns {Boolean} - true if public key matches sig of message
+*/
+EDDSA.prototype.verify = function verify(message, sig, pub) {
+  message = parseBytes(message);
+  sig = this.makeSignature(sig);
+  var key = this.keyFromPublic(pub);
+  var h = this.hashInt(sig.Rencoded(), key.pubBytes(), message);
+  var SG = this.g.mul(sig.S());
+  var RplusAh = sig.R().add(key.pub().mul(h));
+  return RplusAh.eq(SG);
+};
+
+EDDSA.prototype.hashInt = function hashInt() {
+  var hash = this.hash();
+  for (var i = 0; i < arguments.length; i++)
+    hash.update(arguments[i]);
+  return utils.intFromLE(hash.digest()).umod(this.curve.n);
+};
+
+EDDSA.prototype.keyFromPublic = function keyFromPublic(pub) {
+  return KeyPair.fromPublic(this, pub);
+};
+
+EDDSA.prototype.keyFromSecret = function keyFromSecret(secret) {
+  return KeyPair.fromSecret(this, secret);
+};
+
+EDDSA.prototype.makeSignature = function makeSignature(sig) {
+  if (sig instanceof Signature)
+    return sig;
+  return new Signature(this, sig);
+};
+
+/**
+* * https://tools.ietf.org/html/draft-josefsson-eddsa-ed25519-03#section-5.2
+*
+* EDDSA defines methods for encoding and decoding points and integers. These are
+* helper convenience methods, that pass along to utility functions implied
+* parameters.
+*
+*/
+EDDSA.prototype.encodePoint = function encodePoint(point) {
+  var enc = point.getY().toArray('le', this.encodingLength);
+  enc[this.encodingLength - 1] |= point.getX().isOdd() ? 0x80 : 0;
+  return enc;
+};
+
+EDDSA.prototype.decodePoint = function decodePoint(bytes) {
+  bytes = utils.parseBytes(bytes);
+
+  var lastIx = bytes.length - 1;
+  var normed = bytes.slice(0, lastIx).concat(bytes[lastIx] & ~0x80);
+  var xIsOdd = (bytes[lastIx] & 0x80) !== 0;
+
+  var y = utils.intFromLE(normed);
+  return this.curve.pointFromY(y, xIsOdd);
+};
+
+EDDSA.prototype.encodeInt = function encodeInt(num) {
+  return num.toArray('le', this.encodingLength);
+};
+
+EDDSA.prototype.decodeInt = function decodeInt(bytes) {
+  return utils.intFromLE(bytes);
+};
+
+EDDSA.prototype.isPoint = function isPoint(val) {
+  return val instanceof this.pointClass;
+};
+
+},{"../../elliptic":68,"./key":79,"./signature":80,"hash.js":87}],79:[function(require,module,exports){
+'use strict';
+
+var elliptic = require('../../elliptic');
+var utils = elliptic.utils;
+var assert = utils.assert;
+var parseBytes = utils.parseBytes;
+var cachedProperty = utils.cachedProperty;
+
+/**
+* @param {EDDSA} eddsa - instance
+* @param {Object} params - public/private key parameters
+*
+* @param {Array<Byte>} [params.secret] - secret seed bytes
+* @param {Point} [params.pub] - public key point (aka `A` in eddsa terms)
+* @param {Array<Byte>} [params.pub] - public key point encoded as bytes
+*
+*/
+function KeyPair(eddsa, params) {
+  this.eddsa = eddsa;
+  this._secret = parseBytes(params.secret);
+  if (eddsa.isPoint(params.pub))
+    this._pub = params.pub;
+  else
+    this._pubBytes = parseBytes(params.pub);
+}
+
+KeyPair.fromPublic = function fromPublic(eddsa, pub) {
+  if (pub instanceof KeyPair)
+    return pub;
+  return new KeyPair(eddsa, { pub: pub });
+};
+
+KeyPair.fromSecret = function fromSecret(eddsa, secret) {
+  if (secret instanceof KeyPair)
+    return secret;
+  return new KeyPair(eddsa, { secret: secret });
+};
+
+KeyPair.prototype.secret = function secret() {
+  return this._secret;
+};
+
+cachedProperty(KeyPair, 'pubBytes', function pubBytes() {
+  return this.eddsa.encodePoint(this.pub());
+});
+
+cachedProperty(KeyPair, 'pub', function pub() {
+  if (this._pubBytes)
+    return this.eddsa.decodePoint(this._pubBytes);
+  return this.eddsa.g.mul(this.priv());
+});
+
+cachedProperty(KeyPair, 'privBytes', function privBytes() {
+  var eddsa = this.eddsa;
+  var hash = this.hash();
+  var lastIx = eddsa.encodingLength - 1;
+
+  var a = hash.slice(0, eddsa.encodingLength);
+  a[0] &= 248;
+  a[lastIx] &= 127;
+  a[lastIx] |= 64;
+
+  return a;
+});
+
+cachedProperty(KeyPair, 'priv', function priv() {
+  return this.eddsa.decodeInt(this.privBytes());
+});
+
+cachedProperty(KeyPair, 'hash', function hash() {
+  return this.eddsa.hash().update(this.secret()).digest();
+});
+
+cachedProperty(KeyPair, 'messagePrefix', function messagePrefix() {
+  return this.hash().slice(this.eddsa.encodingLength);
+});
+
+KeyPair.prototype.sign = function sign(message) {
+  assert(this._secret, 'KeyPair can only verify');
+  return this.eddsa.sign(message, this);
+};
+
+KeyPair.prototype.verify = function verify(message, sig) {
+  return this.eddsa.verify(message, sig, this);
+};
+
+KeyPair.prototype.getSecret = function getSecret(enc) {
+  assert(this._secret, 'KeyPair is public only');
+  return utils.encode(this.secret(), enc);
+};
+
+KeyPair.prototype.getPublic = function getPublic(enc) {
+  return utils.encode(this.pubBytes(), enc);
+};
+
+module.exports = KeyPair;
+
+},{"../../elliptic":68}],80:[function(require,module,exports){
+'use strict';
+
+var BN = require('bn.js');
+var elliptic = require('../../elliptic');
+var utils = elliptic.utils;
+var assert = utils.assert;
+var cachedProperty = utils.cachedProperty;
+var parseBytes = utils.parseBytes;
+
+/**
+* @param {EDDSA} eddsa - eddsa instance
+* @param {Array<Bytes>|Object} sig -
+* @param {Array<Bytes>|Point} [sig.R] - R point as Point or bytes
+* @param {Array<Bytes>|bn} [sig.S] - S scalar as bn or bytes
+* @param {Array<Bytes>} [sig.Rencoded] - R point encoded
+* @param {Array<Bytes>} [sig.Sencoded] - S scalar encoded
+*/
+function Signature(eddsa, sig) {
+  this.eddsa = eddsa;
+
+  if (typeof sig !== 'object')
+    sig = parseBytes(sig);
+
+  if (Array.isArray(sig)) {
+    sig = {
+      R: sig.slice(0, eddsa.encodingLength),
+      S: sig.slice(eddsa.encodingLength)
+    };
+  }
+
+  assert(sig.R && sig.S, 'Signature without R or S');
+
+  if (eddsa.isPoint(sig.R))
+    this._R = sig.R;
+  if (sig.S instanceof BN)
+    this._S = sig.S;
+
+  this._Rencoded = Array.isArray(sig.R) ? sig.R : sig.Rencoded;
+  this._Sencoded = Array.isArray(sig.S) ? sig.S : sig.Sencoded;
+}
+
+cachedProperty(Signature, 'S', function S() {
+  return this.eddsa.decodeInt(this.Sencoded());
+});
+
+cachedProperty(Signature, 'R', function R() {
+  return this.eddsa.decodePoint(this.Rencoded());
+});
+
+cachedProperty(Signature, 'Rencoded', function Rencoded() {
+  return this.eddsa.encodePoint(this.R());
+});
+
+cachedProperty(Signature, 'Sencoded', function Sencoded() {
+  return this.eddsa.encodeInt(this.S());
+});
+
+Signature.prototype.toBytes = function toBytes() {
+  return this.Rencoded().concat(this.Sencoded());
+};
+
+Signature.prototype.toHex = function toHex() {
+  return utils.encode(this.toBytes(), 'hex').toUpperCase();
+};
+
+module.exports = Signature;
+
+},{"../../elliptic":68,"bn.js":18}],81:[function(require,module,exports){
+module.exports = {
+  doubles: {
+    step: 4,
+    points: [
+      [
+        'e60fce93b59e9ec53011aabc21c23e97b2a31369b87a5ae9c44ee89e2a6dec0a',
+        'f7e3507399e595929db99f34f57937101296891e44d23f0be1f32cce69616821'
+      ],
+      [
+        '8282263212c609d9ea2a6e3e172de238d8c39cabd5ac1ca10646e23fd5f51508',
+        '11f8a8098557dfe45e8256e830b60ace62d613ac2f7b17bed31b6eaff6e26caf'
+      ],
+      [
+        '175e159f728b865a72f99cc6c6fc846de0b93833fd2222ed73fce5b551e5b739',
+        'd3506e0d9e3c79eba4ef97a51ff71f5eacb5955add24345c6efa6ffee9fed695'
+      ],
+      [
+        '363d90d447b00c9c99ceac05b6262ee053441c7e55552ffe526bad8f83ff4640',
+        '4e273adfc732221953b445397f3363145b9a89008199ecb62003c7f3bee9de9'
+      ],
+      [
+        '8b4b5f165df3c2be8c6244b5b745638843e4a781a15bcd1b69f79a55dffdf80c',
+        '4aad0a6f68d308b4b3fbd7813ab0da04f9e336546162ee56b3eff0c65fd4fd36'
+      ],
+      [
+        '723cbaa6e5db996d6bf771c00bd548c7b700dbffa6c0e77bcb6115925232fcda',
+        '96e867b5595cc498a921137488824d6e2660a0653779494801dc069d9eb39f5f'
+      ],
+      [
+        'eebfa4d493bebf98ba5feec812c2d3b50947961237a919839a533eca0e7dd7fa',
+        '5d9a8ca3970ef0f269ee7edaf178089d9ae4cdc3a711f712ddfd4fdae1de8999'
+      ],
+      [
+        '100f44da696e71672791d0a09b7bde459f1215a29b3c03bfefd7835b39a48db0',
+        'cdd9e13192a00b772ec8f3300c090666b7ff4a18ff5195ac0fbd5cd62bc65a09'
+      ],
+      [
+        'e1031be262c7ed1b1dc9227a4a04c017a77f8d4464f3b3852c8acde6e534fd2d',
+        '9d7061928940405e6bb6a4176597535af292dd419e1ced79a44f18f29456a00d'
+      ],
+      [
+        'feea6cae46d55b530ac2839f143bd7ec5cf8b266a41d6af52d5e688d9094696d',
+        'e57c6b6c97dce1bab06e4e12bf3ecd5c981c8957cc41442d3155debf18090088'
+      ],
+      [
+        'da67a91d91049cdcb367be4be6ffca3cfeed657d808583de33fa978bc1ec6cb1',
+        '9bacaa35481642bc41f463f7ec9780e5dec7adc508f740a17e9ea8e27a68be1d'
+      ],
+      [
+        '53904faa0b334cdda6e000935ef22151ec08d0f7bb11069f57545ccc1a37b7c0',
+        '5bc087d0bc80106d88c9eccac20d3c1c13999981e14434699dcb096b022771c8'
+      ],
+      [
+        '8e7bcd0bd35983a7719cca7764ca906779b53a043a9b8bcaeff959f43ad86047',
+        '10b7770b2a3da4b3940310420ca9514579e88e2e47fd68b3ea10047e8460372a'
+      ],
+      [
+        '385eed34c1cdff21e6d0818689b81bde71a7f4f18397e6690a841e1599c43862',
+        '283bebc3e8ea23f56701de19e9ebf4576b304eec2086dc8cc0458fe5542e5453'
+      ],
+      [
+        '6f9d9b803ecf191637c73a4413dfa180fddf84a5947fbc9c606ed86c3fac3a7',
+        '7c80c68e603059ba69b8e2a30e45c4d47ea4dd2f5c281002d86890603a842160'
+      ],
+      [
+        '3322d401243c4e2582a2147c104d6ecbf774d163db0f5e5313b7e0e742d0e6bd',
+        '56e70797e9664ef5bfb019bc4ddaf9b72805f63ea2873af624f3a2e96c28b2a0'
+      ],
+      [
+        '85672c7d2de0b7da2bd1770d89665868741b3f9af7643397721d74d28134ab83',
+        '7c481b9b5b43b2eb6374049bfa62c2e5e77f17fcc5298f44c8e3094f790313a6'
+      ],
+      [
+        '948bf809b1988a46b06c9f1919413b10f9226c60f668832ffd959af60c82a0a',
+        '53a562856dcb6646dc6b74c5d1c3418c6d4dff08c97cd2bed4cb7f88d8c8e589'
+      ],
+      [
+        '6260ce7f461801c34f067ce0f02873a8f1b0e44dfc69752accecd819f38fd8e8',
+        'bc2da82b6fa5b571a7f09049776a1ef7ecd292238051c198c1a84e95b2b4ae17'
+      ],
+      [
+        'e5037de0afc1d8d43d8348414bbf4103043ec8f575bfdc432953cc8d2037fa2d',
+        '4571534baa94d3b5f9f98d09fb990bddbd5f5b03ec481f10e0e5dc841d755bda'
+      ],
+      [
+        'e06372b0f4a207adf5ea905e8f1771b4e7e8dbd1c6a6c5b725866a0ae4fce725',
+        '7a908974bce18cfe12a27bb2ad5a488cd7484a7787104870b27034f94eee31dd'
+      ],
+      [
+        '213c7a715cd5d45358d0bbf9dc0ce02204b10bdde2a3f58540ad6908d0559754',
+        '4b6dad0b5ae462507013ad06245ba190bb4850f5f36a7eeddff2c27534b458f2'
+      ],
+      [
+        '4e7c272a7af4b34e8dbb9352a5419a87e2838c70adc62cddf0cc3a3b08fbd53c',
+        '17749c766c9d0b18e16fd09f6def681b530b9614bff7dd33e0b3941817dcaae6'
+      ],
+      [
+        'fea74e3dbe778b1b10f238ad61686aa5c76e3db2be43057632427e2840fb27b6',
+        '6e0568db9b0b13297cf674deccb6af93126b596b973f7b77701d3db7f23cb96f'
+      ],
+      [
+        '76e64113f677cf0e10a2570d599968d31544e179b760432952c02a4417bdde39',
+        'c90ddf8dee4e95cf577066d70681f0d35e2a33d2b56d2032b4b1752d1901ac01'
+      ],
+      [
+        'c738c56b03b2abe1e8281baa743f8f9a8f7cc643df26cbee3ab150242bcbb891',
+        '893fb578951ad2537f718f2eacbfbbbb82314eef7880cfe917e735d9699a84c3'
+      ],
+      [
+        'd895626548b65b81e264c7637c972877d1d72e5f3a925014372e9f6588f6c14b',
+        'febfaa38f2bc7eae728ec60818c340eb03428d632bb067e179363ed75d7d991f'
+      ],
+      [
+        'b8da94032a957518eb0f6433571e8761ceffc73693e84edd49150a564f676e03',
+        '2804dfa44805a1e4d7c99cc9762808b092cc584d95ff3b511488e4e74efdf6e7'
+      ],
+      [
+        'e80fea14441fb33a7d8adab9475d7fab2019effb5156a792f1a11778e3c0df5d',
+        'eed1de7f638e00771e89768ca3ca94472d155e80af322ea9fcb4291b6ac9ec78'
+      ],
+      [
+        'a301697bdfcd704313ba48e51d567543f2a182031efd6915ddc07bbcc4e16070',
+        '7370f91cfb67e4f5081809fa25d40f9b1735dbf7c0a11a130c0d1a041e177ea1'
+      ],
+      [
+        '90ad85b389d6b936463f9d0512678de208cc330b11307fffab7ac63e3fb04ed4',
+        'e507a3620a38261affdcbd9427222b839aefabe1582894d991d4d48cb6ef150'
+      ],
+      [
+        '8f68b9d2f63b5f339239c1ad981f162ee88c5678723ea3351b7b444c9ec4c0da',
+        '662a9f2dba063986de1d90c2b6be215dbbea2cfe95510bfdf23cbf79501fff82'
+      ],
+      [
+        'e4f3fb0176af85d65ff99ff9198c36091f48e86503681e3e6686fd5053231e11',
+        '1e63633ad0ef4f1c1661a6d0ea02b7286cc7e74ec951d1c9822c38576feb73bc'
+      ],
+      [
+        '8c00fa9b18ebf331eb961537a45a4266c7034f2f0d4e1d0716fb6eae20eae29e',
+        'efa47267fea521a1a9dc343a3736c974c2fadafa81e36c54e7d2a4c66702414b'
+      ],
+      [
+        'e7a26ce69dd4829f3e10cec0a9e98ed3143d084f308b92c0997fddfc60cb3e41',
+        '2a758e300fa7984b471b006a1aafbb18d0a6b2c0420e83e20e8a9421cf2cfd51'
+      ],
+      [
+        'b6459e0ee3662ec8d23540c223bcbdc571cbcb967d79424f3cf29eb3de6b80ef',
+        '67c876d06f3e06de1dadf16e5661db3c4b3ae6d48e35b2ff30bf0b61a71ba45'
+      ],
+      [
+        'd68a80c8280bb840793234aa118f06231d6f1fc67e73c5a5deda0f5b496943e8',
+        'db8ba9fff4b586d00c4b1f9177b0e28b5b0e7b8f7845295a294c84266b133120'
+      ],
+      [
+        '324aed7df65c804252dc0270907a30b09612aeb973449cea4095980fc28d3d5d',
+        '648a365774b61f2ff130c0c35aec1f4f19213b0c7e332843967224af96ab7c84'
+      ],
+      [
+        '4df9c14919cde61f6d51dfdbe5fee5dceec4143ba8d1ca888e8bd373fd054c96',
+        '35ec51092d8728050974c23a1d85d4b5d506cdc288490192ebac06cad10d5d'
+      ],
+      [
+        '9c3919a84a474870faed8a9c1cc66021523489054d7f0308cbfc99c8ac1f98cd',
+        'ddb84f0f4a4ddd57584f044bf260e641905326f76c64c8e6be7e5e03d4fc599d'
+      ],
+      [
+        '6057170b1dd12fdf8de05f281d8e06bb91e1493a8b91d4cc5a21382120a959e5',
+        '9a1af0b26a6a4807add9a2daf71df262465152bc3ee24c65e899be932385a2a8'
+      ],
+      [
+        'a576df8e23a08411421439a4518da31880cef0fba7d4df12b1a6973eecb94266',
+        '40a6bf20e76640b2c92b97afe58cd82c432e10a7f514d9f3ee8be11ae1b28ec8'
+      ],
+      [
+        '7778a78c28dec3e30a05fe9629de8c38bb30d1f5cf9a3a208f763889be58ad71',
+        '34626d9ab5a5b22ff7098e12f2ff580087b38411ff24ac563b513fc1fd9f43ac'
+      ],
+      [
+        '928955ee637a84463729fd30e7afd2ed5f96274e5ad7e5cb09eda9c06d903ac',
+        'c25621003d3f42a827b78a13093a95eeac3d26efa8a8d83fc5180e935bcd091f'
+      ],
+      [
+        '85d0fef3ec6db109399064f3a0e3b2855645b4a907ad354527aae75163d82751',
+        '1f03648413a38c0be29d496e582cf5663e8751e96877331582c237a24eb1f962'
+      ],
+      [
+        'ff2b0dce97eece97c1c9b6041798b85dfdfb6d8882da20308f5404824526087e',
+        '493d13fef524ba188af4c4dc54d07936c7b7ed6fb90e2ceb2c951e01f0c29907'
+      ],
+      [
+        '827fbbe4b1e880ea9ed2b2e6301b212b57f1ee148cd6dd28780e5e2cf856e241',
+        'c60f9c923c727b0b71bef2c67d1d12687ff7a63186903166d605b68baec293ec'
+      ],
+      [
+        'eaa649f21f51bdbae7be4ae34ce6e5217a58fdce7f47f9aa7f3b58fa2120e2b3',
+        'be3279ed5bbbb03ac69a80f89879aa5a01a6b965f13f7e59d47a5305ba5ad93d'
+      ],
+      [
+        'e4a42d43c5cf169d9391df6decf42ee541b6d8f0c9a137401e23632dda34d24f',
+        '4d9f92e716d1c73526fc99ccfb8ad34ce886eedfa8d8e4f13a7f7131deba9414'
+      ],
+      [
+        '1ec80fef360cbdd954160fadab352b6b92b53576a88fea4947173b9d4300bf19',
+        'aeefe93756b5340d2f3a4958a7abbf5e0146e77f6295a07b671cdc1cc107cefd'
+      ],
+      [
+        '146a778c04670c2f91b00af4680dfa8bce3490717d58ba889ddb5928366642be',
+        'b318e0ec3354028add669827f9d4b2870aaa971d2f7e5ed1d0b297483d83efd0'
+      ],
+      [
+        'fa50c0f61d22e5f07e3acebb1aa07b128d0012209a28b9776d76a8793180eef9',
+        '6b84c6922397eba9b72cd2872281a68a5e683293a57a213b38cd8d7d3f4f2811'
+      ],
+      [
+        'da1d61d0ca721a11b1a5bf6b7d88e8421a288ab5d5bba5220e53d32b5f067ec2',
+        '8157f55a7c99306c79c0766161c91e2966a73899d279b48a655fba0f1ad836f1'
+      ],
+      [
+        'a8e282ff0c9706907215ff98e8fd416615311de0446f1e062a73b0610d064e13',
+        '7f97355b8db81c09abfb7f3c5b2515888b679a3e50dd6bd6cef7c73111f4cc0c'
+      ],
+      [
+        '174a53b9c9a285872d39e56e6913cab15d59b1fa512508c022f382de8319497c',
+        'ccc9dc37abfc9c1657b4155f2c47f9e6646b3a1d8cb9854383da13ac079afa73'
+      ],
+      [
+        '959396981943785c3d3e57edf5018cdbe039e730e4918b3d884fdff09475b7ba',
+        '2e7e552888c331dd8ba0386a4b9cd6849c653f64c8709385e9b8abf87524f2fd'
+      ],
+      [
+        'd2a63a50ae401e56d645a1153b109a8fcca0a43d561fba2dbb51340c9d82b151',
+        'e82d86fb6443fcb7565aee58b2948220a70f750af484ca52d4142174dcf89405'
+      ],
+      [
+        '64587e2335471eb890ee7896d7cfdc866bacbdbd3839317b3436f9b45617e073',
+        'd99fcdd5bf6902e2ae96dd6447c299a185b90a39133aeab358299e5e9faf6589'
+      ],
+      [
+        '8481bde0e4e4d885b3a546d3e549de042f0aa6cea250e7fd358d6c86dd45e458',
+        '38ee7b8cba5404dd84a25bf39cecb2ca900a79c42b262e556d64b1b59779057e'
+      ],
+      [
+        '13464a57a78102aa62b6979ae817f4637ffcfed3c4b1ce30bcd6303f6caf666b',
+        '69be159004614580ef7e433453ccb0ca48f300a81d0942e13f495a907f6ecc27'
+      ],
+      [
+        'bc4a9df5b713fe2e9aef430bcc1dc97a0cd9ccede2f28588cada3a0d2d83f366',
+        'd3a81ca6e785c06383937adf4b798caa6e8a9fbfa547b16d758d666581f33c1'
+      ],
+      [
+        '8c28a97bf8298bc0d23d8c749452a32e694b65e30a9472a3954ab30fe5324caa',
+        '40a30463a3305193378fedf31f7cc0eb7ae784f0451cb9459e71dc73cbef9482'
+      ],
+      [
+        '8ea9666139527a8c1dd94ce4f071fd23c8b350c5a4bb33748c4ba111faccae0',
+        '620efabbc8ee2782e24e7c0cfb95c5d735b783be9cf0f8e955af34a30e62b945'
+      ],
+      [
+        'dd3625faef5ba06074669716bbd3788d89bdde815959968092f76cc4eb9a9787',
+        '7a188fa3520e30d461da2501045731ca941461982883395937f68d00c644a573'
+      ],
+      [
+        'f710d79d9eb962297e4f6232b40e8f7feb2bc63814614d692c12de752408221e',
+        'ea98e67232d3b3295d3b535532115ccac8612c721851617526ae47a9c77bfc82'
+      ]
+    ]
+  },
+  naf: {
+    wnd: 7,
+    points: [
+      [
+        'f9308a019258c31049344f85f89d5229b531c845836f99b08601f113bce036f9',
+        '388f7b0f632de8140fe337e62a37f3566500a99934c2231b6cb9fd7584b8e672'
+      ],
+      [
+        '2f8bde4d1a07209355b4a7250a5c5128e88b84bddc619ab7cba8d569b240efe4',
+        'd8ac222636e5e3d6d4dba9dda6c9c426f788271bab0d6840dca87d3aa6ac62d6'
+      ],
+      [
+        '5cbdf0646e5db4eaa398f365f2ea7a0e3d419b7e0330e39ce92bddedcac4f9bc',
+        '6aebca40ba255960a3178d6d861a54dba813d0b813fde7b5a5082628087264da'
+      ],
+      [
+        'acd484e2f0c7f65309ad178a9f559abde09796974c57e714c35f110dfc27ccbe',
+        'cc338921b0a7d9fd64380971763b61e9add888a4375f8e0f05cc262ac64f9c37'
+      ],
+      [
+        '774ae7f858a9411e5ef4246b70c65aac5649980be5c17891bbec17895da008cb',
+        'd984a032eb6b5e190243dd56d7b7b365372db1e2dff9d6a8301d74c9c953c61b'
+      ],
+      [
+        'f28773c2d975288bc7d1d205c3748651b075fbc6610e58cddeeddf8f19405aa8',
+        'ab0902e8d880a89758212eb65cdaf473a1a06da521fa91f29b5cb52db03ed81'
+      ],
+      [
+        'd7924d4f7d43ea965a465ae3095ff41131e5946f3c85f79e44adbcf8e27e080e',
+        '581e2872a86c72a683842ec228cc6defea40af2bd896d3a5c504dc9ff6a26b58'
+      ],
+      [
+        'defdea4cdb677750a420fee807eacf21eb9898ae79b9768766e4faa04a2d4a34',
+        '4211ab0694635168e997b0ead2a93daeced1f4a04a95c0f6cfb199f69e56eb77'
+      ],
+      [
+        '2b4ea0a797a443d293ef5cff444f4979f06acfebd7e86d277475656138385b6c',
+        '85e89bc037945d93b343083b5a1c86131a01f60c50269763b570c854e5c09b7a'
+      ],
+      [
+        '352bbf4a4cdd12564f93fa332ce333301d9ad40271f8107181340aef25be59d5',
+        '321eb4075348f534d59c18259dda3e1f4a1b3b2e71b1039c67bd3d8bcf81998c'
+      ],
+      [
+        '2fa2104d6b38d11b0230010559879124e42ab8dfeff5ff29dc9cdadd4ecacc3f',
+        '2de1068295dd865b64569335bd5dd80181d70ecfc882648423ba76b532b7d67'
+      ],
+      [
+        '9248279b09b4d68dab21a9b066edda83263c3d84e09572e269ca0cd7f5453714',
+        '73016f7bf234aade5d1aa71bdea2b1ff3fc0de2a887912ffe54a32ce97cb3402'
+      ],
+      [
+        'daed4f2be3a8bf278e70132fb0beb7522f570e144bf615c07e996d443dee8729',
+        'a69dce4a7d6c98e8d4a1aca87ef8d7003f83c230f3afa726ab40e52290be1c55'
+      ],
+      [
+        'c44d12c7065d812e8acf28d7cbb19f9011ecd9e9fdf281b0e6a3b5e87d22e7db',
+        '2119a460ce326cdc76c45926c982fdac0e106e861edf61c5a039063f0e0e6482'
+      ],
+      [
+        '6a245bf6dc698504c89a20cfded60853152b695336c28063b61c65cbd269e6b4',
+        'e022cf42c2bd4a708b3f5126f16a24ad8b33ba48d0423b6efd5e6348100d8a82'
+      ],
+      [
+        '1697ffa6fd9de627c077e3d2fe541084ce13300b0bec1146f95ae57f0d0bd6a5',
+        'b9c398f186806f5d27561506e4557433a2cf15009e498ae7adee9d63d01b2396'
+      ],
+      [
+        '605bdb019981718b986d0f07e834cb0d9deb8360ffb7f61df982345ef27a7479',
+        '2972d2de4f8d20681a78d93ec96fe23c26bfae84fb14db43b01e1e9056b8c49'
+      ],
+      [
+        '62d14dab4150bf497402fdc45a215e10dcb01c354959b10cfe31c7e9d87ff33d',
+        '80fc06bd8cc5b01098088a1950eed0db01aa132967ab472235f5642483b25eaf'
+      ],
+      [
+        '80c60ad0040f27dade5b4b06c408e56b2c50e9f56b9b8b425e555c2f86308b6f',
+        '1c38303f1cc5c30f26e66bad7fe72f70a65eed4cbe7024eb1aa01f56430bd57a'
+      ],
+      [
+        '7a9375ad6167ad54aa74c6348cc54d344cc5dc9487d847049d5eabb0fa03c8fb',
+        'd0e3fa9eca8726909559e0d79269046bdc59ea10c70ce2b02d499ec224dc7f7'
+      ],
+      [
+        'd528ecd9b696b54c907a9ed045447a79bb408ec39b68df504bb51f459bc3ffc9',
+        'eecf41253136e5f99966f21881fd656ebc4345405c520dbc063465b521409933'
+      ],
+      [
+        '49370a4b5f43412ea25f514e8ecdad05266115e4a7ecb1387231808f8b45963',
+        '758f3f41afd6ed428b3081b0512fd62a54c3f3afbb5b6764b653052a12949c9a'
+      ],
+      [
+        '77f230936ee88cbbd73df930d64702ef881d811e0e1498e2f1c13eb1fc345d74',
+        '958ef42a7886b6400a08266e9ba1b37896c95330d97077cbbe8eb3c7671c60d6'
+      ],
+      [
+        'f2dac991cc4ce4b9ea44887e5c7c0bce58c80074ab9d4dbaeb28531b7739f530',
+        'e0dedc9b3b2f8dad4da1f32dec2531df9eb5fbeb0598e4fd1a117dba703a3c37'
+      ],
+      [
+        '463b3d9f662621fb1b4be8fbbe2520125a216cdfc9dae3debcba4850c690d45b',
+        '5ed430d78c296c3543114306dd8622d7c622e27c970a1de31cb377b01af7307e'
+      ],
+      [
+        'f16f804244e46e2a09232d4aff3b59976b98fac14328a2d1a32496b49998f247',
+        'cedabd9b82203f7e13d206fcdf4e33d92a6c53c26e5cce26d6579962c4e31df6'
+      ],
+      [
+        'caf754272dc84563b0352b7a14311af55d245315ace27c65369e15f7151d41d1',
+        'cb474660ef35f5f2a41b643fa5e460575f4fa9b7962232a5c32f908318a04476'
+      ],
+      [
+        '2600ca4b282cb986f85d0f1709979d8b44a09c07cb86d7c124497bc86f082120',
+        '4119b88753c15bd6a693b03fcddbb45d5ac6be74ab5f0ef44b0be9475a7e4b40'
+      ],
+      [
+        '7635ca72d7e8432c338ec53cd12220bc01c48685e24f7dc8c602a7746998e435',
+        '91b649609489d613d1d5e590f78e6d74ecfc061d57048bad9e76f302c5b9c61'
+      ],
+      [
+        '754e3239f325570cdbbf4a87deee8a66b7f2b33479d468fbc1a50743bf56cc18',
+        '673fb86e5bda30fb3cd0ed304ea49a023ee33d0197a695d0c5d98093c536683'
+      ],
+      [
+        'e3e6bd1071a1e96aff57859c82d570f0330800661d1c952f9fe2694691d9b9e8',
+        '59c9e0bba394e76f40c0aa58379a3cb6a5a2283993e90c4167002af4920e37f5'
+      ],
+      [
+        '186b483d056a033826ae73d88f732985c4ccb1f32ba35f4b4cc47fdcf04aa6eb',
+        '3b952d32c67cf77e2e17446e204180ab21fb8090895138b4a4a797f86e80888b'
+      ],
+      [
+        'df9d70a6b9876ce544c98561f4be4f725442e6d2b737d9c91a8321724ce0963f',
+        '55eb2dafd84d6ccd5f862b785dc39d4ab157222720ef9da217b8c45cf2ba2417'
+      ],
+      [
+        '5edd5cc23c51e87a497ca815d5dce0f8ab52554f849ed8995de64c5f34ce7143',
+        'efae9c8dbc14130661e8cec030c89ad0c13c66c0d17a2905cdc706ab7399a868'
+      ],
+      [
+        '290798c2b6476830da12fe02287e9e777aa3fba1c355b17a722d362f84614fba',
+        'e38da76dcd440621988d00bcf79af25d5b29c094db2a23146d003afd41943e7a'
+      ],
+      [
+        'af3c423a95d9f5b3054754efa150ac39cd29552fe360257362dfdecef4053b45',
+        'f98a3fd831eb2b749a93b0e6f35cfb40c8cd5aa667a15581bc2feded498fd9c6'
+      ],
+      [
+        '766dbb24d134e745cccaa28c99bf274906bb66b26dcf98df8d2fed50d884249a',
+        '744b1152eacbe5e38dcc887980da38b897584a65fa06cedd2c924f97cbac5996'
+      ],
+      [
+        '59dbf46f8c94759ba21277c33784f41645f7b44f6c596a58ce92e666191abe3e',
+        'c534ad44175fbc300f4ea6ce648309a042ce739a7919798cd85e216c4a307f6e'
+      ],
+      [
+        'f13ada95103c4537305e691e74e9a4a8dd647e711a95e73cb62dc6018cfd87b8',
+        'e13817b44ee14de663bf4bc808341f326949e21a6a75c2570778419bdaf5733d'
+      ],
+      [
+        '7754b4fa0e8aced06d4167a2c59cca4cda1869c06ebadfb6488550015a88522c',
+        '30e93e864e669d82224b967c3020b8fa8d1e4e350b6cbcc537a48b57841163a2'
+      ],
+      [
+        '948dcadf5990e048aa3874d46abef9d701858f95de8041d2a6828c99e2262519',
+        'e491a42537f6e597d5d28a3224b1bc25df9154efbd2ef1d2cbba2cae5347d57e'
+      ],
+      [
+        '7962414450c76c1689c7b48f8202ec37fb224cf5ac0bfa1570328a8a3d7c77ab',
+        '100b610ec4ffb4760d5c1fc133ef6f6b12507a051f04ac5760afa5b29db83437'
+      ],
+      [
+        '3514087834964b54b15b160644d915485a16977225b8847bb0dd085137ec47ca',
+        'ef0afbb2056205448e1652c48e8127fc6039e77c15c2378b7e7d15a0de293311'
+      ],
+      [
+        'd3cc30ad6b483e4bc79ce2c9dd8bc54993e947eb8df787b442943d3f7b527eaf',
+        '8b378a22d827278d89c5e9be8f9508ae3c2ad46290358630afb34db04eede0a4'
+      ],
+      [
+        '1624d84780732860ce1c78fcbfefe08b2b29823db913f6493975ba0ff4847610',
+        '68651cf9b6da903e0914448c6cd9d4ca896878f5282be4c8cc06e2a404078575'
+      ],
+      [
+        '733ce80da955a8a26902c95633e62a985192474b5af207da6df7b4fd5fc61cd4',
+        'f5435a2bd2badf7d485a4d8b8db9fcce3e1ef8e0201e4578c54673bc1dc5ea1d'
+      ],
+      [
+        '15d9441254945064cf1a1c33bbd3b49f8966c5092171e699ef258dfab81c045c',
+        'd56eb30b69463e7234f5137b73b84177434800bacebfc685fc37bbe9efe4070d'
+      ],
+      [
+        'a1d0fcf2ec9de675b612136e5ce70d271c21417c9d2b8aaaac138599d0717940',
+        'edd77f50bcb5a3cab2e90737309667f2641462a54070f3d519212d39c197a629'
+      ],
+      [
+        'e22fbe15c0af8ccc5780c0735f84dbe9a790badee8245c06c7ca37331cb36980',
+        'a855babad5cd60c88b430a69f53a1a7a38289154964799be43d06d77d31da06'
+      ],
+      [
+        '311091dd9860e8e20ee13473c1155f5f69635e394704eaa74009452246cfa9b3',
+        '66db656f87d1f04fffd1f04788c06830871ec5a64feee685bd80f0b1286d8374'
+      ],
+      [
+        '34c1fd04d301be89b31c0442d3e6ac24883928b45a9340781867d4232ec2dbdf',
+        '9414685e97b1b5954bd46f730174136d57f1ceeb487443dc5321857ba73abee'
+      ],
+      [
+        'f219ea5d6b54701c1c14de5b557eb42a8d13f3abbcd08affcc2a5e6b049b8d63',
+        '4cb95957e83d40b0f73af4544cccf6b1f4b08d3c07b27fb8d8c2962a400766d1'
+      ],
+      [
+        'd7b8740f74a8fbaab1f683db8f45de26543a5490bca627087236912469a0b448',
+        'fa77968128d9c92ee1010f337ad4717eff15db5ed3c049b3411e0315eaa4593b'
+      ],
+      [
+        '32d31c222f8f6f0ef86f7c98d3a3335ead5bcd32abdd94289fe4d3091aa824bf',
+        '5f3032f5892156e39ccd3d7915b9e1da2e6dac9e6f26e961118d14b8462e1661'
+      ],
+      [
+        '7461f371914ab32671045a155d9831ea8793d77cd59592c4340f86cbc18347b5',
+        '8ec0ba238b96bec0cbdddcae0aa442542eee1ff50c986ea6b39847b3cc092ff6'
+      ],
+      [
+        'ee079adb1df1860074356a25aa38206a6d716b2c3e67453d287698bad7b2b2d6',
+        '8dc2412aafe3be5c4c5f37e0ecc5f9f6a446989af04c4e25ebaac479ec1c8c1e'
+      ],
+      [
+        '16ec93e447ec83f0467b18302ee620f7e65de331874c9dc72bfd8616ba9da6b5',
+        '5e4631150e62fb40d0e8c2a7ca5804a39d58186a50e497139626778e25b0674d'
+      ],
+      [
+        'eaa5f980c245f6f038978290afa70b6bd8855897f98b6aa485b96065d537bd99',
+        'f65f5d3e292c2e0819a528391c994624d784869d7e6ea67fb18041024edc07dc'
+      ],
+      [
+        '78c9407544ac132692ee1910a02439958ae04877151342ea96c4b6b35a49f51',
+        'f3e0319169eb9b85d5404795539a5e68fa1fbd583c064d2462b675f194a3ddb4'
+      ],
+      [
+        '494f4be219a1a77016dcd838431aea0001cdc8ae7a6fc688726578d9702857a5',
+        '42242a969283a5f339ba7f075e36ba2af925ce30d767ed6e55f4b031880d562c'
+      ],
+      [
+        'a598a8030da6d86c6bc7f2f5144ea549d28211ea58faa70ebf4c1e665c1fe9b5',
+        '204b5d6f84822c307e4b4a7140737aec23fc63b65b35f86a10026dbd2d864e6b'
+      ],
+      [
+        'c41916365abb2b5d09192f5f2dbeafec208f020f12570a184dbadc3e58595997',
+        '4f14351d0087efa49d245b328984989d5caf9450f34bfc0ed16e96b58fa9913'
+      ],
+      [
+        '841d6063a586fa475a724604da03bc5b92a2e0d2e0a36acfe4c73a5514742881',
+        '73867f59c0659e81904f9a1c7543698e62562d6744c169ce7a36de01a8d6154'
+      ],
+      [
+        '5e95bb399a6971d376026947f89bde2f282b33810928be4ded112ac4d70e20d5',
+        '39f23f366809085beebfc71181313775a99c9aed7d8ba38b161384c746012865'
+      ],
+      [
+        '36e4641a53948fd476c39f8a99fd974e5ec07564b5315d8bf99471bca0ef2f66',
+        'd2424b1b1abe4eb8164227b085c9aa9456ea13493fd563e06fd51cf5694c78fc'
+      ],
+      [
+        '336581ea7bfbbb290c191a2f507a41cf5643842170e914faeab27c2c579f726',
+        'ead12168595fe1be99252129b6e56b3391f7ab1410cd1e0ef3dcdcabd2fda224'
+      ],
+      [
+        '8ab89816dadfd6b6a1f2634fcf00ec8403781025ed6890c4849742706bd43ede',
+        '6fdcef09f2f6d0a044e654aef624136f503d459c3e89845858a47a9129cdd24e'
+      ],
+      [
+        '1e33f1a746c9c5778133344d9299fcaa20b0938e8acff2544bb40284b8c5fb94',
+        '60660257dd11b3aa9c8ed618d24edff2306d320f1d03010e33a7d2057f3b3b6'
+      ],
+      [
+        '85b7c1dcb3cec1b7ee7f30ded79dd20a0ed1f4cc18cbcfcfa410361fd8f08f31',
+        '3d98a9cdd026dd43f39048f25a8847f4fcafad1895d7a633c6fed3c35e999511'
+      ],
+      [
+        '29df9fbd8d9e46509275f4b125d6d45d7fbe9a3b878a7af872a2800661ac5f51',
+        'b4c4fe99c775a606e2d8862179139ffda61dc861c019e55cd2876eb2a27d84b'
+      ],
+      [
+        'a0b1cae06b0a847a3fea6e671aaf8adfdfe58ca2f768105c8082b2e449fce252',
+        'ae434102edde0958ec4b19d917a6a28e6b72da1834aff0e650f049503a296cf2'
+      ],
+      [
+        '4e8ceafb9b3e9a136dc7ff67e840295b499dfb3b2133e4ba113f2e4c0e121e5',
+        'cf2174118c8b6d7a4b48f6d534ce5c79422c086a63460502b827ce62a326683c'
+      ],
+      [
+        'd24a44e047e19b6f5afb81c7ca2f69080a5076689a010919f42725c2b789a33b',
+        '6fb8d5591b466f8fc63db50f1c0f1c69013f996887b8244d2cdec417afea8fa3'
+      ],
+      [
+        'ea01606a7a6c9cdd249fdfcfacb99584001edd28abbab77b5104e98e8e3b35d4',
+        '322af4908c7312b0cfbfe369f7a7b3cdb7d4494bc2823700cfd652188a3ea98d'
+      ],
+      [
+        'af8addbf2b661c8a6c6328655eb96651252007d8c5ea31be4ad196de8ce2131f',
+        '6749e67c029b85f52a034eafd096836b2520818680e26ac8f3dfbcdb71749700'
+      ],
+      [
+        'e3ae1974566ca06cc516d47e0fb165a674a3dabcfca15e722f0e3450f45889',
+        '2aeabe7e4531510116217f07bf4d07300de97e4874f81f533420a72eeb0bd6a4'
+      ],
+      [
+        '591ee355313d99721cf6993ffed1e3e301993ff3ed258802075ea8ced397e246',
+        'b0ea558a113c30bea60fc4775460c7901ff0b053d25ca2bdeee98f1a4be5d196'
+      ],
+      [
+        '11396d55fda54c49f19aa97318d8da61fa8584e47b084945077cf03255b52984',
+        '998c74a8cd45ac01289d5833a7beb4744ff536b01b257be4c5767bea93ea57a4'
+      ],
+      [
+        '3c5d2a1ba39c5a1790000738c9e0c40b8dcdfd5468754b6405540157e017aa7a',
+        'b2284279995a34e2f9d4de7396fc18b80f9b8b9fdd270f6661f79ca4c81bd257'
+      ],
+      [
+        'cc8704b8a60a0defa3a99a7299f2e9c3fbc395afb04ac078425ef8a1793cc030',
+        'bdd46039feed17881d1e0862db347f8cf395b74fc4bcdc4e940b74e3ac1f1b13'
+      ],
+      [
+        'c533e4f7ea8555aacd9777ac5cad29b97dd4defccc53ee7ea204119b2889b197',
+        '6f0a256bc5efdf429a2fb6242f1a43a2d9b925bb4a4b3a26bb8e0f45eb596096'
+      ],
+      [
+        'c14f8f2ccb27d6f109f6d08d03cc96a69ba8c34eec07bbcf566d48e33da6593',
+        'c359d6923bb398f7fd4473e16fe1c28475b740dd098075e6c0e8649113dc3a38'
+      ],
+      [
+        'a6cbc3046bc6a450bac24789fa17115a4c9739ed75f8f21ce441f72e0b90e6ef',
+        '21ae7f4680e889bb130619e2c0f95a360ceb573c70603139862afd617fa9b9f'
+      ],
+      [
+        '347d6d9a02c48927ebfb86c1359b1caf130a3c0267d11ce6344b39f99d43cc38',
+        '60ea7f61a353524d1c987f6ecec92f086d565ab687870cb12689ff1e31c74448'
+      ],
+      [
+        'da6545d2181db8d983f7dcb375ef5866d47c67b1bf31c8cf855ef7437b72656a',
+        '49b96715ab6878a79e78f07ce5680c5d6673051b4935bd897fea824b77dc208a'
+      ],
+      [
+        'c40747cc9d012cb1a13b8148309c6de7ec25d6945d657146b9d5994b8feb1111',
+        '5ca560753be2a12fc6de6caf2cb489565db936156b9514e1bb5e83037e0fa2d4'
+      ],
+      [
+        '4e42c8ec82c99798ccf3a610be870e78338c7f713348bd34c8203ef4037f3502',
+        '7571d74ee5e0fb92a7a8b33a07783341a5492144cc54bcc40a94473693606437'
+      ],
+      [
+        '3775ab7089bc6af823aba2e1af70b236d251cadb0c86743287522a1b3b0dedea',
+        'be52d107bcfa09d8bcb9736a828cfa7fac8db17bf7a76a2c42ad961409018cf7'
+      ],
+      [
+        'cee31cbf7e34ec379d94fb814d3d775ad954595d1314ba8846959e3e82f74e26',
+        '8fd64a14c06b589c26b947ae2bcf6bfa0149ef0be14ed4d80f448a01c43b1c6d'
+      ],
+      [
+        'b4f9eaea09b6917619f6ea6a4eb5464efddb58fd45b1ebefcdc1a01d08b47986',
+        '39e5c9925b5a54b07433a4f18c61726f8bb131c012ca542eb24a8ac07200682a'
+      ],
+      [
+        'd4263dfc3d2df923a0179a48966d30ce84e2515afc3dccc1b77907792ebcc60e',
+        '62dfaf07a0f78feb30e30d6295853ce189e127760ad6cf7fae164e122a208d54'
+      ],
+      [
+        '48457524820fa65a4f8d35eb6930857c0032acc0a4a2de422233eeda897612c4',
+        '25a748ab367979d98733c38a1fa1c2e7dc6cc07db2d60a9ae7a76aaa49bd0f77'
+      ],
+      [
+        'dfeeef1881101f2cb11644f3a2afdfc2045e19919152923f367a1767c11cceda',
+        'ecfb7056cf1de042f9420bab396793c0c390bde74b4bbdff16a83ae09a9a7517'
+      ],
+      [
+        '6d7ef6b17543f8373c573f44e1f389835d89bcbc6062ced36c82df83b8fae859',
+        'cd450ec335438986dfefa10c57fea9bcc521a0959b2d80bbf74b190dca712d10'
+      ],
+      [
+        'e75605d59102a5a2684500d3b991f2e3f3c88b93225547035af25af66e04541f',
+        'f5c54754a8f71ee540b9b48728473e314f729ac5308b06938360990e2bfad125'
+      ],
+      [
+        'eb98660f4c4dfaa06a2be453d5020bc99a0c2e60abe388457dd43fefb1ed620c',
+        '6cb9a8876d9cb8520609af3add26cd20a0a7cd8a9411131ce85f44100099223e'
+      ],
+      [
+        '13e87b027d8514d35939f2e6892b19922154596941888336dc3563e3b8dba942',
+        'fef5a3c68059a6dec5d624114bf1e91aac2b9da568d6abeb2570d55646b8adf1'
+      ],
+      [
+        'ee163026e9fd6fe017c38f06a5be6fc125424b371ce2708e7bf4491691e5764a',
+        '1acb250f255dd61c43d94ccc670d0f58f49ae3fa15b96623e5430da0ad6c62b2'
+      ],
+      [
+        'b268f5ef9ad51e4d78de3a750c2dc89b1e626d43505867999932e5db33af3d80',
+        '5f310d4b3c99b9ebb19f77d41c1dee018cf0d34fd4191614003e945a1216e423'
+      ],
+      [
+        'ff07f3118a9df035e9fad85eb6c7bfe42b02f01ca99ceea3bf7ffdba93c4750d',
+        '438136d603e858a3a5c440c38eccbaddc1d2942114e2eddd4740d098ced1f0d8'
+      ],
+      [
+        '8d8b9855c7c052a34146fd20ffb658bea4b9f69e0d825ebec16e8c3ce2b526a1',
+        'cdb559eedc2d79f926baf44fb84ea4d44bcf50fee51d7ceb30e2e7f463036758'
+      ],
+      [
+        '52db0b5384dfbf05bfa9d472d7ae26dfe4b851ceca91b1eba54263180da32b63',
+        'c3b997d050ee5d423ebaf66a6db9f57b3180c902875679de924b69d84a7b375'
+      ],
+      [
+        'e62f9490d3d51da6395efd24e80919cc7d0f29c3f3fa48c6fff543becbd43352',
+        '6d89ad7ba4876b0b22c2ca280c682862f342c8591f1daf5170e07bfd9ccafa7d'
+      ],
+      [
+        '7f30ea2476b399b4957509c88f77d0191afa2ff5cb7b14fd6d8e7d65aaab1193',
+        'ca5ef7d4b231c94c3b15389a5f6311e9daff7bb67b103e9880ef4bff637acaec'
+      ],
+      [
+        '5098ff1e1d9f14fb46a210fada6c903fef0fb7b4a1dd1d9ac60a0361800b7a00',
+        '9731141d81fc8f8084d37c6e7542006b3ee1b40d60dfe5362a5b132fd17ddc0'
+      ],
+      [
+        '32b78c7de9ee512a72895be6b9cbefa6e2f3c4ccce445c96b9f2c81e2778ad58',
+        'ee1849f513df71e32efc3896ee28260c73bb80547ae2275ba497237794c8753c'
+      ],
+      [
+        'e2cb74fddc8e9fbcd076eef2a7c72b0ce37d50f08269dfc074b581550547a4f7',
+        'd3aa2ed71c9dd2247a62df062736eb0baddea9e36122d2be8641abcb005cc4a4'
+      ],
+      [
+        '8438447566d4d7bedadc299496ab357426009a35f235cb141be0d99cd10ae3a8',
+        'c4e1020916980a4da5d01ac5e6ad330734ef0d7906631c4f2390426b2edd791f'
+      ],
+      [
+        '4162d488b89402039b584c6fc6c308870587d9c46f660b878ab65c82c711d67e',
+        '67163e903236289f776f22c25fb8a3afc1732f2b84b4e95dbda47ae5a0852649'
+      ],
+      [
+        '3fad3fa84caf0f34f0f89bfd2dcf54fc175d767aec3e50684f3ba4a4bf5f683d',
+        'cd1bc7cb6cc407bb2f0ca647c718a730cf71872e7d0d2a53fa20efcdfe61826'
+      ],
+      [
+        '674f2600a3007a00568c1a7ce05d0816c1fb84bf1370798f1c69532faeb1a86b',
+        '299d21f9413f33b3edf43b257004580b70db57da0b182259e09eecc69e0d38a5'
+      ],
+      [
+        'd32f4da54ade74abb81b815ad1fb3b263d82d6c692714bcff87d29bd5ee9f08f',
+        'f9429e738b8e53b968e99016c059707782e14f4535359d582fc416910b3eea87'
+      ],
+      [
+        '30e4e670435385556e593657135845d36fbb6931f72b08cb1ed954f1e3ce3ff6',
+        '462f9bce619898638499350113bbc9b10a878d35da70740dc695a559eb88db7b'
+      ],
+      [
+        'be2062003c51cc3004682904330e4dee7f3dcd10b01e580bf1971b04d4cad297',
+        '62188bc49d61e5428573d48a74e1c655b1c61090905682a0d5558ed72dccb9bc'
+      ],
+      [
+        '93144423ace3451ed29e0fb9ac2af211cb6e84a601df5993c419859fff5df04a',
+        '7c10dfb164c3425f5c71a3f9d7992038f1065224f72bb9d1d902a6d13037b47c'
+      ],
+      [
+        'b015f8044f5fcbdcf21ca26d6c34fb8197829205c7b7d2a7cb66418c157b112c',
+        'ab8c1e086d04e813744a655b2df8d5f83b3cdc6faa3088c1d3aea1454e3a1d5f'
+      ],
+      [
+        'd5e9e1da649d97d89e4868117a465a3a4f8a18de57a140d36b3f2af341a21b52',
+        '4cb04437f391ed73111a13cc1d4dd0db1693465c2240480d8955e8592f27447a'
+      ],
+      [
+        'd3ae41047dd7ca065dbf8ed77b992439983005cd72e16d6f996a5316d36966bb',
+        'bd1aeb21ad22ebb22a10f0303417c6d964f8cdd7df0aca614b10dc14d125ac46'
+      ],
+      [
+        '463e2763d885f958fc66cdd22800f0a487197d0a82e377b49f80af87c897b065',
+        'bfefacdb0e5d0fd7df3a311a94de062b26b80c61fbc97508b79992671ef7ca7f'
+      ],
+      [
+        '7985fdfd127c0567c6f53ec1bb63ec3158e597c40bfe747c83cddfc910641917',
+        '603c12daf3d9862ef2b25fe1de289aed24ed291e0ec6708703a5bd567f32ed03'
+      ],
+      [
+        '74a1ad6b5f76e39db2dd249410eac7f99e74c59cb83d2d0ed5ff1543da7703e9',
+        'cc6157ef18c9c63cd6193d83631bbea0093e0968942e8c33d5737fd790e0db08'
+      ],
+      [
+        '30682a50703375f602d416664ba19b7fc9bab42c72747463a71d0896b22f6da3',
+        '553e04f6b018b4fa6c8f39e7f311d3176290d0e0f19ca73f17714d9977a22ff8'
+      ],
+      [
+        '9e2158f0d7c0d5f26c3791efefa79597654e7a2b2464f52b1ee6c1347769ef57',
+        '712fcdd1b9053f09003a3481fa7762e9ffd7c8ef35a38509e2fbf2629008373'
+      ],
+      [
+        '176e26989a43c9cfeba4029c202538c28172e566e3c4fce7322857f3be327d66',
+        'ed8cc9d04b29eb877d270b4878dc43c19aefd31f4eee09ee7b47834c1fa4b1c3'
+      ],
+      [
+        '75d46efea3771e6e68abb89a13ad747ecf1892393dfc4f1b7004788c50374da8',
+        '9852390a99507679fd0b86fd2b39a868d7efc22151346e1a3ca4726586a6bed8'
+      ],
+      [
+        '809a20c67d64900ffb698c4c825f6d5f2310fb0451c869345b7319f645605721',
+        '9e994980d9917e22b76b061927fa04143d096ccc54963e6a5ebfa5f3f8e286c1'
+      ],
+      [
+        '1b38903a43f7f114ed4500b4eac7083fdefece1cf29c63528d563446f972c180',
+        '4036edc931a60ae889353f77fd53de4a2708b26b6f5da72ad3394119daf408f9'
+      ]
+    ]
+  }
+};
+
+},{}],82:[function(require,module,exports){
+'use strict';
+
+var utils = exports;
+var BN = require('bn.js');
+var minAssert = require('minimalistic-assert');
+var minUtils = require('minimalistic-crypto-utils');
+
+utils.assert = minAssert;
+utils.toArray = minUtils.toArray;
+utils.zero2 = minUtils.zero2;
+utils.toHex = minUtils.toHex;
+utils.encode = minUtils.encode;
+
+// Represent num in a w-NAF form
+function getNAF(num, w) {
+  var naf = [];
+  var ws = 1 << (w + 1);
+  var k = num.clone();
+  while (k.cmpn(1) >= 0) {
+    var z;
+    if (k.isOdd()) {
+      var mod = k.andln(ws - 1);
+      if (mod > (ws >> 1) - 1)
+        z = (ws >> 1) - mod;
+      else
+        z = mod;
+      k.isubn(z);
+    } else {
+      z = 0;
+    }
+    naf.push(z);
+
+    // Optimization, shift by word if possible
+    var shift = (k.cmpn(0) !== 0 && k.andln(ws - 1) === 0) ? (w + 1) : 1;
+    for (var i = 1; i < shift; i++)
+      naf.push(0);
+    k.iushrn(shift);
+  }
+
+  return naf;
+}
+utils.getNAF = getNAF;
+
+// Represent k1, k2 in a Joint Sparse Form
+function getJSF(k1, k2) {
+  var jsf = [
+    [],
+    []
+  ];
+
+  k1 = k1.clone();
+  k2 = k2.clone();
+  var d1 = 0;
+  var d2 = 0;
+  while (k1.cmpn(-d1) > 0 || k2.cmpn(-d2) > 0) {
+
+    // First phase
+    var m14 = (k1.andln(3) + d1) & 3;
+    var m24 = (k2.andln(3) + d2) & 3;
+    if (m14 === 3)
+      m14 = -1;
+    if (m24 === 3)
+      m24 = -1;
+    var u1;
+    if ((m14 & 1) === 0) {
+      u1 = 0;
+    } else {
+      var m8 = (k1.andln(7) + d1) & 7;
+      if ((m8 === 3 || m8 === 5) && m24 === 2)
+        u1 = -m14;
+      else
+        u1 = m14;
+    }
+    jsf[0].push(u1);
+
+    var u2;
+    if ((m24 & 1) === 0) {
+      u2 = 0;
+    } else {
+      var m8 = (k2.andln(7) + d2) & 7;
+      if ((m8 === 3 || m8 === 5) && m14 === 2)
+        u2 = -m24;
+      else
+        u2 = m24;
+    }
+    jsf[1].push(u2);
+
+    // Second phase
+    if (2 * d1 === u1 + 1)
+      d1 = 1 - d1;
+    if (2 * d2 === u2 + 1)
+      d2 = 1 - d2;
+    k1.iushrn(1);
+    k2.iushrn(1);
+  }
+
+  return jsf;
+}
+utils.getJSF = getJSF;
+
+function cachedProperty(obj, name, computer) {
+  var key = '_' + name;
+  obj.prototype[name] = function cachedProperty() {
+    return this[key] !== undefined ? this[key] :
+           this[key] = computer.call(this);
+  };
+}
+utils.cachedProperty = cachedProperty;
+
+function parseBytes(bytes) {
+  return typeof bytes === 'string' ? utils.toArray(bytes, 'hex') :
+                                     bytes;
+}
+utils.parseBytes = parseBytes;
+
+function intFromLE(bytes) {
+  return new BN(bytes, 'hex', 'le');
+}
+utils.intFromLE = intFromLE;
+
+
+},{"bn.js":18,"minimalistic-assert":106,"minimalistic-crypto-utils":107}],83:[function(require,module,exports){
+module.exports={
+  "_from": "elliptic@^6.0.0",
+  "_id": "elliptic@6.4.0",
+  "_inBundle": false,
+  "_integrity": "sha1-ysmvh2LIWDYYcAPI3+GT5eLq5d8=",
+  "_location": "/browserify/elliptic",
+  "_phantomChildren": {},
+  "_requested": {
+    "type": "range",
+    "registry": true,
+    "raw": "elliptic@^6.0.0",
+    "name": "elliptic",
+    "escapedName": "elliptic",
+    "rawSpec": "^6.0.0",
+    "saveSpec": null,
+    "fetchSpec": "^6.0.0"
+  },
+  "_requiredBy": [
+    "/browserify/browserify-sign",
+    "/browserify/create-ecdh"
+  ],
+  "_resolved": "https://registry.npmjs.org/elliptic/-/elliptic-6.4.0.tgz",
+  "_shasum": "cac9af8762c85836187003c8dfe193e5e2eae5df",
+  "_spec": "elliptic@^6.0.0",
+  "_where": "/usr/local/lib/node_modules/browserify/node_modules/browserify-sign",
+  "author": {
+    "name": "Fedor Indutny",
+    "email": "fedor@indutny.com"
+  },
+  "bugs": {
+    "url": "https://github.com/indutny/elliptic/issues"
+  },
+  "bundleDependencies": false,
+  "dependencies": {
+    "bn.js": "^4.4.0",
+    "brorand": "^1.0.1",
+    "hash.js": "^1.0.0",
+    "hmac-drbg": "^1.0.0",
+    "inherits": "^2.0.1",
+    "minimalistic-assert": "^1.0.0",
+    "minimalistic-crypto-utils": "^1.0.0"
+  },
+  "deprecated": false,
+  "description": "EC cryptography",
+  "devDependencies": {
+    "brfs": "^1.4.3",
+    "coveralls": "^2.11.3",
+    "grunt": "^0.4.5",
+    "grunt-browserify": "^5.0.0",
+    "grunt-cli": "^1.2.0",
+    "grunt-contrib-connect": "^1.0.0",
+    "grunt-contrib-copy": "^1.0.0",
+    "grunt-contrib-uglify": "^1.0.1",
+    "grunt-mocha-istanbul": "^3.0.1",
+    "grunt-saucelabs": "^8.6.2",
+    "istanbul": "^0.4.2",
+    "jscs": "^2.9.0",
+    "jshint": "^2.6.0",
+    "mocha": "^2.1.0"
+  },
+  "files": [
+    "lib"
+  ],
+  "homepage": "https://github.com/indutny/elliptic",
+  "keywords": [
+    "EC",
+    "Elliptic",
+    "curve",
+    "Cryptography"
+  ],
+  "license": "MIT",
+  "main": "lib/elliptic.js",
+  "name": "elliptic",
+  "repository": {
+    "type": "git",
+    "url": "git+ssh://git@github.com/indutny/elliptic.git"
+  },
+  "scripts": {
+    "jscs": "jscs benchmarks/*.js lib/*.js lib/**/*.js lib/**/**/*.js test/index.js",
+    "jshint": "jscs benchmarks/*.js lib/*.js lib/**/*.js lib/**/**/*.js test/index.js",
+    "lint": "npm run jscs && npm run jshint",
+    "test": "npm run lint && npm run unit",
+    "unit": "istanbul test _mocha --reporter=spec test/index.js",
+    "version": "grunt dist && git add dist/"
+  },
+  "version": "6.4.0"
+}
+
+},{}],84:[function(require,module,exports){
+// Copyright Joyent, Inc. and other Node contributors.
+//
+// Permission is hereby granted, free of charge, to any person obtaining a
+// copy of this software and associated documentation files (the
+// "Software"), to deal in the Software without restriction, including
+// without limitation the rights to use, copy, modify, merge, publish,
+// distribute, sublicense, and/or sell copies of the Software, and to permit
+// persons to whom the Software is furnished to do so, subject to the
+// following conditions:
+//
+// The above copyright notice and this permission notice shall be included
+// in all copies or substantial portions of the Software.
+//
+// THE SOFTWARE IS PROVIDED "AS IS", WITHOUT WARRANTY OF ANY KIND, EXPRESS
+// OR IMPLIED, INCLUDING BUT NOT LIMITED TO THE WARRANTIES OF
+// MERCHANTABILITY, FITNESS FOR A PARTICULAR PURPOSE AND NONINFRINGEMENT. IN
+// NO EVENT SHALL THE AUTHORS OR COPYRIGHT HOLDERS BE LIABLE FOR ANY CLAIM,
+// DAMAGES OR OTHER LIABILITY, WHETHER IN AN ACTION OF CONTRACT, TORT OR
+// OTHERWISE, ARISING FROM, OUT OF OR IN CONNECTION WITH THE SOFTWARE OR THE
+// USE OR OTHER DEALINGS IN THE SOFTWARE.
+
+var objectCreate = Object.create || objectCreatePolyfill
+var objectKeys = Object.keys || objectKeysPolyfill
+var bind = Function.prototype.bind || functionBindPolyfill
+
+function EventEmitter() {
+  if (!this._events || !Object.prototype.hasOwnProperty.call(this, '_events')) {
+    this._events = objectCreate(null);
+    this._eventsCount = 0;
+  }
+
+  this._maxListeners = this._maxListeners || undefined;
+}
+module.exports = EventEmitter;
+
+// Backwards-compat with node 0.10.x
+EventEmitter.EventEmitter = EventEmitter;
+
+EventEmitter.prototype._events = undefined;
+EventEmitter.prototype._maxListeners = undefined;
+
+// By default EventEmitters will print a warning if more than 10 listeners are
+// added to it. This is a useful default which helps finding memory leaks.
+var defaultMaxListeners = 10;
+
+var hasDefineProperty;
+try {
+  var o = {};
+  if (Object.defineProperty) Object.defineProperty(o, 'x', { value: 0 });
+  hasDefineProperty = o.x === 0;
+} catch (err) { hasDefineProperty = false }
+if (hasDefineProperty) {
+  Object.defineProperty(EventEmitter, 'defaultMaxListeners', {
+    enumerable: true,
+    get: function() {
+      return defaultMaxListeners;
+    },
+    set: function(arg) {
+      // check whether the input is a positive number (whose value is zero or
+      // greater and not a NaN).
+      if (typeof arg !== 'number' || arg < 0 || arg !== arg)
+        throw new TypeError('"defaultMaxListeners" must be a positive number');
+      defaultMaxListeners = arg;
+    }
+  });
+} else {
+  EventEmitter.defaultMaxListeners = defaultMaxListeners;
+}
+
+// Obviously not all Emitters should be limited to 10. This function allows
+// that to be increased. Set to zero for unlimited.
+EventEmitter.prototype.setMaxListeners = function setMaxListeners(n) {
+  if (typeof n !== 'number' || n < 0 || isNaN(n))
+    throw new TypeError('"n" argument must be a positive number');
+  this._maxListeners = n;
+  return this;
+};
+
+function $getMaxListeners(that) {
+  if (that._maxListeners === undefined)
+    return EventEmitter.defaultMaxListeners;
+  return that._maxListeners;
+}
+
+EventEmitter.prototype.getMaxListeners = function getMaxListeners() {
+  return $getMaxListeners(this);
+};
+
+// These standalone emit* functions are used to optimize calling of event
+// handlers for fast cases because emit() itself often has a variable number of
+// arguments and can be deoptimized because of that. These functions always have
+// the same number of arguments and thus do not get deoptimized, so the code
+// inside them can execute faster.
+function emitNone(handler, isFn, self) {
+  if (isFn)
+    handler.call(self);
+  else {
+    var len = handler.length;
+    var listeners = arrayClone(handler, len);
+    for (var i = 0; i < len; ++i)
+      listeners[i].call(self);
+  }
+}
+function emitOne(handler, isFn, self, arg1) {
+  if (isFn)
+    handler.call(self, arg1);
+  else {
+    var len = handler.length;
+    var listeners = arrayClone(handler, len);
+    for (var i = 0; i < len; ++i)
+      listeners[i].call(self, arg1);
+  }
+}
+function emitTwo(handler, isFn, self, arg1, arg2) {
+  if (isFn)
+    handler.call(self, arg1, arg2);
+  else {
+    var len = handler.length;
+    var listeners = arrayClone(handler, len);
+    for (var i = 0; i < len; ++i)
+      listeners[i].call(self, arg1, arg2);
+  }
+}
+function emitThree(handler, isFn, self, arg1, arg2, arg3) {
+  if (isFn)
+    handler.call(self, arg1, arg2, arg3);
+  else {
+    var len = handler.length;
+    var listeners = arrayClone(handler, len);
+    for (var i = 0; i < len; ++i)
+      listeners[i].call(self, arg1, arg2, arg3);
+  }
+}
+
+function emitMany(handler, isFn, self, args) {
+  if (isFn)
+    handler.apply(self, args);
+  else {
+    var len = handler.length;
+    var listeners = arrayClone(handler, len);
+    for (var i = 0; i < len; ++i)
+      listeners[i].apply(self, args);
+  }
+}
+
+EventEmitter.prototype.emit = function emit(type) {
+  var er, handler, len, args, i, events;
+  var doError = (type === 'error');
+
+  events = this._events;
+  if (events)
+    doError = (doError && events.error == null);
+  else if (!doError)
+    return false;
+
+  // If there is no 'error' event listener then throw.
+  if (doError) {
+    if (arguments.length > 1)
+      er = arguments[1];
+    if (er instanceof Error) {
+      throw er; // Unhandled 'error' event
+    } else {
+      // At least give some kind of context to the user
+      var err = new Error('Unhandled "error" event. (' + er + ')');
+      err.context = er;
+      throw err;
+    }
+    return false;
+  }
+
+  handler = events[type];
+
+  if (!handler)
+    return false;
+
+  var isFn = typeof handler === 'function';
+  len = arguments.length;
+  switch (len) {
+      // fast cases
+    case 1:
+      emitNone(handler, isFn, this);
+      break;
+    case 2:
+      emitOne(handler, isFn, this, arguments[1]);
+      break;
+    case 3:
+      emitTwo(handler, isFn, this, arguments[1], arguments[2]);
+      break;
+    case 4:
+      emitThree(handler, isFn, this, arguments[1], arguments[2], arguments[3]);
+      break;
+      // slower
+    default:
+      args = new Array(len - 1);
+      for (i = 1; i < len; i++)
+        args[i - 1] = arguments[i];
+      emitMany(handler, isFn, this, args);
+  }
+
+  return true;
+};
+
+function _addListener(target, type, listener, prepend) {
+  var m;
+  var events;
+  var existing;
+
+  if (typeof listener !== 'function')
+    throw new TypeError('"listener" argument must be a function');
+
+  events = target._events;
+  if (!events) {
+    events = target._events = objectCreate(null);
+    target._eventsCount = 0;
+  } else {
+    // To avoid recursion in the case that type === "newListener"! Before
+    // adding it to the listeners, first emit "newListener".
+    if (events.newListener) {
+      target.emit('newListener', type,
+          listener.listener ? listener.listener : listener);
+
+      // Re-assign `events` because a newListener handler could have caused the
+      // this._events to be assigned to a new object
+      events = target._events;
+    }
+    existing = events[type];
+  }
+
+  if (!existing) {
+    // Optimize the case of one listener. Don't need the extra array object.
+    existing = events[type] = listener;
+    ++target._eventsCount;
+  } else {
+    if (typeof existing === 'function') {
+      // Adding the second element, need to change to array.
+      existing = events[type] =
+          prepend ? [listener, existing] : [existing, listener];
+    } else {
+      // If we've already got an array, just append.
+      if (prepend) {
+        existing.unshift(listener);
+      } else {
+        existing.push(listener);
+      }
+    }
+
+    // Check for listener leak
+    if (!existing.warned) {
+      m = $getMaxListeners(target);
+      if (m && m > 0 && existing.length > m) {
+        existing.warned = true;
+        var w = new Error('Possible EventEmitter memory leak detected. ' +
+            existing.length + ' "' + String(type) + '" listeners ' +
+            'added. Use emitter.setMaxListeners() to ' +
+            'increase limit.');
+        w.name = 'MaxListenersExceededWarning';
+        w.emitter = target;
+        w.type = type;
+        w.count = existing.length;
+        if (typeof console === 'object' && console.warn) {
+          console.warn('%s: %s', w.name, w.message);
+        }
+      }
+    }
+  }
+
+  return target;
+}
+
+EventEmitter.prototype.addListener = function addListener(type, listener) {
+  return _addListener(this, type, listener, false);
+};
+
+EventEmitter.prototype.on = EventEmitter.prototype.addListener;
+
+EventEmitter.prototype.prependListener =
+    function prependListener(type, listener) {
+      return _addListener(this, type, listener, true);
+    };
+
+function onceWrapper() {
+  if (!this.fired) {
+    this.target.removeListener(this.type, this.wrapFn);
+    this.fired = true;
+    switch (arguments.length) {
+      case 0:
+        return this.listener.call(this.target);
+      case 1:
+        return this.listener.call(this.target, arguments[0]);
+      case 2:
+        return this.listener.call(this.target, arguments[0], arguments[1]);
+      case 3:
+        return this.listener.call(this.target, arguments[0], arguments[1],
+            arguments[2]);
+      default:
+        var args = new Array(arguments.length);
+        for (var i = 0; i < args.length; ++i)
+          args[i] = arguments[i];
+        this.listener.apply(this.target, args);
+    }
+  }
+}
+
+function _onceWrap(target, type, listener) {
+  var state = { fired: false, wrapFn: undefined, target: target, type: type, listener: listener };
+  var wrapped = bind.call(onceWrapper, state);
+  wrapped.listener = listener;
+  state.wrapFn = wrapped;
+  return wrapped;
+}
+
+EventEmitter.prototype.once = function once(type, listener) {
+  if (typeof listener !== 'function')
+    throw new TypeError('"listener" argument must be a function');
+  this.on(type, _onceWrap(this, type, listener));
+  return this;
+};
+
+EventEmitter.prototype.prependOnceListener =
+    function prependOnceListener(type, listener) {
+      if (typeof listener !== 'function')
+        throw new TypeError('"listener" argument must be a function');
+      this.prependListener(type, _onceWrap(this, type, listener));
+      return this;
+    };
+
+// Emits a 'removeListener' event if and only if the listener was removed.
+EventEmitter.prototype.removeListener =
+    function removeListener(type, listener) {
+      var list, events, position, i, originalListener;
+
+      if (typeof listener !== 'function')
+        throw new TypeError('"listener" argument must be a function');
+
+      events = this._events;
+      if (!events)
+        return this;
+
+      list = events[type];
+      if (!list)
+        return this;
+
+      if (list === listener || list.listener === listener) {
+        if (--this._eventsCount === 0)
+          this._events = objectCreate(null);
+        else {
+          delete events[type];
+          if (events.removeListener)
+            this.emit('removeListener', type, list.listener || listener);
+        }
+      } else if (typeof list !== 'function') {
+        position = -1;
+
+        for (i = list.length - 1; i >= 0; i--) {
+          if (list[i] === listener || list[i].listener === listener) {
+            originalListener = list[i].listener;
+            position = i;
+            break;
+          }
+        }
+
+        if (position < 0)
+          return this;
+
+        if (position === 0)
+          list.shift();
+        else
+          spliceOne(list, position);
+
+        if (list.length === 1)
+          events[type] = list[0];
+
+        if (events.removeListener)
+          this.emit('removeListener', type, originalListener || listener);
+      }
+
+      return this;
+    };
+
+EventEmitter.prototype.removeAllListeners =
+    function removeAllListeners(type) {
+      var listeners, events, i;
+
+      events = this._events;
+      if (!events)
+        return this;
+
+      // not listening for removeListener, no need to emit
+      if (!events.removeListener) {
+        if (arguments.length === 0) {
+          this._events = objectCreate(null);
+          this._eventsCount = 0;
+        } else if (events[type]) {
+          if (--this._eventsCount === 0)
+            this._events = objectCreate(null);
+          else
+            delete events[type];
+        }
+        return this;
+      }
+
+      // emit removeListener for all listeners on all events
+      if (arguments.length === 0) {
+        var keys = objectKeys(events);
+        var key;
+        for (i = 0; i < keys.length; ++i) {
+          key = keys[i];
+          if (key === 'removeListener') continue;
+          this.removeAllListeners(key);
+        }
+        this.removeAllListeners('removeListener');
+        this._events = objectCreate(null);
+        this._eventsCount = 0;
+        return this;
+      }
+
+      listeners = events[type];
+
+      if (typeof listeners === 'function') {
+        this.removeListener(type, listeners);
+      } else if (listeners) {
+        // LIFO order
+        for (i = listeners.length - 1; i >= 0; i--) {
+          this.removeListener(type, listeners[i]);
+        }
+      }
+
+      return this;
+    };
+
+EventEmitter.prototype.listeners = function listeners(type) {
+  var evlistener;
+  var ret;
+  var events = this._events;
+
+  if (!events)
+    ret = [];
+  else {
+    evlistener = events[type];
+    if (!evlistener)
+      ret = [];
+    else if (typeof evlistener === 'function')
+      ret = [evlistener.listener || evlistener];
+    else
+      ret = unwrapListeners(evlistener);
+  }
+
+  return ret;
+};
+
+EventEmitter.listenerCount = function(emitter, type) {
+  if (typeof emitter.listenerCount === 'function') {
+    return emitter.listenerCount(type);
+  } else {
+    return listenerCount.call(emitter, type);
+  }
+};
+
+EventEmitter.prototype.listenerCount = listenerCount;
+function listenerCount(type) {
+  var events = this._events;
+
+  if (events) {
+    var evlistener = events[type];
+
+    if (typeof evlistener === 'function') {
+      return 1;
+    } else if (evlistener) {
+      return evlistener.length;
+    }
+  }
+
+  return 0;
+}
+
+EventEmitter.prototype.eventNames = function eventNames() {
+  return this._eventsCount > 0 ? Reflect.ownKeys(this._events) : [];
+};
+
+// About 1.5x faster than the two-arg version of Array#splice().
+function spliceOne(list, index) {
+  for (var i = index, k = i + 1, n = list.length; k < n; i += 1, k += 1)
+    list[i] = list[k];
+  list.pop();
+}
+
+function arrayClone(arr, n) {
+  var copy = new Array(n);
+  for (var i = 0; i < n; ++i)
+    copy[i] = arr[i];
+  return copy;
+}
+
+function unwrapListeners(arr) {
+  var ret = new Array(arr.length);
+  for (var i = 0; i < ret.length; ++i) {
+    ret[i] = arr[i].listener || arr[i];
+  }
+  return ret;
+}
+
+function objectCreatePolyfill(proto) {
+  var F = function() {};
+  F.prototype = proto;
+  return new F;
+}
+function objectKeysPolyfill(obj) {
+  var keys = [];
+  for (var k in obj) if (Object.prototype.hasOwnProperty.call(obj, k)) {
+    keys.push(k);
+  }
+  return k;
+}
+function functionBindPolyfill(context) {
+  var fn = this;
+  return function () {
+    return fn.apply(context, arguments);
+  };
+}
+
+},{}],85:[function(require,module,exports){
+var Buffer = require('safe-buffer').Buffer
+var MD5 = require('md5.js')
+
+/* eslint-disable camelcase */
+function EVP_BytesToKey (password, salt, keyBits, ivLen) {
+  if (!Buffer.isBuffer(password)) password = Buffer.from(password, 'binary')
+  if (salt) {
+    if (!Buffer.isBuffer(salt)) salt = Buffer.from(salt, 'binary')
+    if (salt.length !== 8) throw new RangeError('salt should be Buffer with 8 byte length')
+  }
+
+  var keyLen = keyBits / 8
+  var key = Buffer.alloc(keyLen)
+  var iv = Buffer.alloc(ivLen || 0)
+  var tmp = Buffer.alloc(0)
+
+  while (keyLen > 0 || ivLen > 0) {
+    var hash = new MD5()
+    hash.update(tmp)
+    hash.update(password)
+    if (salt) hash.update(salt)
+    tmp = hash.digest()
+
+    var used = 0
+
+    if (keyLen > 0) {
+      var keyStart = key.length - keyLen
+      used = Math.min(keyLen, tmp.length)
+      tmp.copy(key, keyStart, 0, used)
+      keyLen -= used
+    }
+
+    if (used < tmp.length && ivLen > 0) {
+      var ivStart = iv.length - ivLen
+      var length = Math.min(ivLen, tmp.length - used)
+      tmp.copy(iv, ivStart, used, used + length)
+      ivLen -= length
+    }
+  }
+
+  tmp.fill(0)
+  return { key: key, iv: iv }
+}
+
+module.exports = EVP_BytesToKey
+
+},{"md5.js":104,"safe-buffer":146}],86:[function(require,module,exports){
+'use strict'
+var Buffer = require('safe-buffer').Buffer
+var Transform = require('stream').Transform
+var inherits = require('inherits')
+
+function throwIfNotStringOrBuffer (val, prefix) {
+  if (!Buffer.isBuffer(val) && typeof val !== 'string') {
+    throw new TypeError(prefix + ' must be a string or a buffer')
+  }
+}
+
+function HashBase (blockSize) {
+  Transform.call(this)
+
+  this._block = Buffer.allocUnsafe(blockSize)
+  this._blockSize = blockSize
+  this._blockOffset = 0
+  this._length = [0, 0, 0, 0]
+
+  this._finalized = false
+}
+
+inherits(HashBase, Transform)
+
+HashBase.prototype._transform = function (chunk, encoding, callback) {
+  var error = null
+  try {
+    this.update(chunk, encoding)
+  } catch (err) {
+    error = err
+  }
+
+  callback(error)
+}
+
+HashBase.prototype._flush = function (callback) {
+  var error = null
+  try {
+    this.push(this.digest())
+  } catch (err) {
+    error = err
+  }
+
+  callback(error)
+}
+
+HashBase.prototype.update = function (data, encoding) {
+  throwIfNotStringOrBuffer(data, 'Data')
+  if (this._finalized) throw new Error('Digest already called')
+  if (!Buffer.isBuffer(data)) data = Buffer.from(data, encoding)
+
+  // consume data
+  var block = this._block
+  var offset = 0
+  while (this._blockOffset + data.length - offset >= this._blockSize) {
+    for (var i = this._blockOffset; i < this._blockSize;) block[i++] = data[offset++]
+    this._update()
+    this._blockOffset = 0
+  }
+  while (offset < data.length) block[this._blockOffset++] = data[offset++]
+
+  // update length
+  for (var j = 0, carry = data.length * 8; carry > 0; ++j) {
+    this._length[j] += carry
+    carry = (this._length[j] / 0x0100000000) | 0
+    if (carry > 0) this._length[j] -= 0x0100000000 * carry
+  }
+
+  return this
+}
+
+HashBase.prototype._update = function () {
+  throw new Error('_update is not implemented')
+}
+
+HashBase.prototype.digest = function (encoding) {
+  if (this._finalized) throw new Error('Digest already called')
+  this._finalized = true
+
+  var digest = this._digest()
+  if (encoding !== undefined) digest = digest.toString(encoding)
+
+  // reset state
+  this._block.fill(0)
+  this._blockOffset = 0
+  for (var i = 0; i < 4; ++i) this._length[i] = 0
+
+  return digest
+}
+
+HashBase.prototype._digest = function () {
+  throw new Error('_digest is not implemented')
+}
+
+module.exports = HashBase
+
+},{"inherits":101,"safe-buffer":146,"stream":155}],87:[function(require,module,exports){
+var hash = exports;
+
+hash.utils = require('./hash/utils');
+hash.common = require('./hash/common');
+hash.sha = require('./hash/sha');
+hash.ripemd = require('./hash/ripemd');
+hash.hmac = require('./hash/hmac');
+
+// Proxy hash functions to the main object
+hash.sha1 = hash.sha.sha1;
+hash.sha256 = hash.sha.sha256;
+hash.sha224 = hash.sha.sha224;
+hash.sha384 = hash.sha.sha384;
+hash.sha512 = hash.sha.sha512;
+hash.ripemd160 = hash.ripemd.ripemd160;
+
+},{"./hash/common":88,"./hash/hmac":89,"./hash/ripemd":90,"./hash/sha":91,"./hash/utils":98}],88:[function(require,module,exports){
+'use strict';
+
+var utils = require('./utils');
+var assert = require('minimalistic-assert');
+
+function BlockHash() {
+  this.pending = null;
+  this.pendingTotal = 0;
+  this.blockSize = this.constructor.blockSize;
+  this.outSize = this.constructor.outSize;
+  this.hmacStrength = this.constructor.hmacStrength;
+  this.padLength = this.constructor.padLength / 8;
+  this.endian = 'big';
+
+  this._delta8 = this.blockSize / 8;
+  this._delta32 = this.blockSize / 32;
+}
+exports.BlockHash = BlockHash;
+
+BlockHash.prototype.update = function update(msg, enc) {
+  // Convert message to array, pad it, and join into 32bit blocks
+  msg = utils.toArray(msg, enc);
+  if (!this.pending)
+    this.pending = msg;
+  else
+    this.pending = this.pending.concat(msg);
+  this.pendingTotal += msg.length;
+
+  // Enough data, try updating
+  if (this.pending.length >= this._delta8) {
+    msg = this.pending;
+
+    // Process pending data in blocks
+    var r = msg.length % this._delta8;
+    this.pending = msg.slice(msg.length - r, msg.length);
+    if (this.pending.length === 0)
+      this.pending = null;
+
+    msg = utils.join32(msg, 0, msg.length - r, this.endian);
+    for (var i = 0; i < msg.length; i += this._delta32)
+      this._update(msg, i, i + this._delta32);
+  }
+
+  return this;
+};
+
+BlockHash.prototype.digest = function digest(enc) {
+  this.update(this._pad());
+  assert(this.pending === null);
+
+  return this._digest(enc);
+};
+
+BlockHash.prototype._pad = function pad() {
+  var len = this.pendingTotal;
+  var bytes = this._delta8;
+  var k = bytes - ((len + this.padLength) % bytes);
+  var res = new Array(k + this.padLength);
+  res[0] = 0x80;
+  for (var i = 1; i < k; i++)
+    res[i] = 0;
+
+  // Append length
+  len <<= 3;
+  if (this.endian === 'big') {
+    for (var t = 8; t < this.padLength; t++)
+      res[i++] = 0;
+
+    res[i++] = 0;
+    res[i++] = 0;
+    res[i++] = 0;
+    res[i++] = 0;
+    res[i++] = (len >>> 24) & 0xff;
+    res[i++] = (len >>> 16) & 0xff;
+    res[i++] = (len >>> 8) & 0xff;
+    res[i++] = len & 0xff;
+  } else {
+    res[i++] = len & 0xff;
+    res[i++] = (len >>> 8) & 0xff;
+    res[i++] = (len >>> 16) & 0xff;
+    res[i++] = (len >>> 24) & 0xff;
+    res[i++] = 0;
+    res[i++] = 0;
+    res[i++] = 0;
+    res[i++] = 0;
+
+    for (t = 8; t < this.padLength; t++)
+      res[i++] = 0;
+  }
+
+  return res;
+};
+
+},{"./utils":98,"minimalistic-assert":106}],89:[function(require,module,exports){
+'use strict';
+
+var utils = require('./utils');
+var assert = require('minimalistic-assert');
+
+function Hmac(hash, key, enc) {
+  if (!(this instanceof Hmac))
+    return new Hmac(hash, key, enc);
+  this.Hash = hash;
+  this.blockSize = hash.blockSize / 8;
+  this.outSize = hash.outSize / 8;
+  this.inner = null;
+  this.outer = null;
+
+  this._init(utils.toArray(key, enc));
+}
+module.exports = Hmac;
+
+Hmac.prototype._init = function init(key) {
+  // Shorten key, if needed
+  if (key.length > this.blockSize)
+    key = new this.Hash().update(key).digest();
+  assert(key.length <= this.blockSize);
+
+  // Add padding to key
+  for (var i = key.length; i < this.blockSize; i++)
+    key.push(0);
+
+  for (i = 0; i < key.length; i++)
+    key[i] ^= 0x36;
+  this.inner = new this.Hash().update(key);
+
+  // 0x36 ^ 0x5c = 0x6a
+  for (i = 0; i < key.length; i++)
+    key[i] ^= 0x6a;
+  this.outer = new this.Hash().update(key);
+};
+
+Hmac.prototype.update = function update(msg, enc) {
+  this.inner.update(msg, enc);
+  return this;
+};
+
+Hmac.prototype.digest = function digest(enc) {
+  this.outer.update(this.inner.digest());
+  return this.outer.digest(enc);
+};
+
+},{"./utils":98,"minimalistic-assert":106}],90:[function(require,module,exports){
+'use strict';
+
+var utils = require('./utils');
+var common = require('./common');
+
+var rotl32 = utils.rotl32;
+var sum32 = utils.sum32;
+var sum32_3 = utils.sum32_3;
+var sum32_4 = utils.sum32_4;
+var BlockHash = common.BlockHash;
+
+function RIPEMD160() {
+  if (!(this instanceof RIPEMD160))
+    return new RIPEMD160();
+
+  BlockHash.call(this);
+
+  this.h = [ 0x67452301, 0xefcdab89, 0x98badcfe, 0x10325476, 0xc3d2e1f0 ];
+  this.endian = 'little';
+}
+utils.inherits(RIPEMD160, BlockHash);
+exports.ripemd160 = RIPEMD160;
+
+RIPEMD160.blockSize = 512;
+RIPEMD160.outSize = 160;
+RIPEMD160.hmacStrength = 192;
+RIPEMD160.padLength = 64;
+
+RIPEMD160.prototype._update = function update(msg, start) {
+  var A = this.h[0];
+  var B = this.h[1];
+  var C = this.h[2];
+  var D = this.h[3];
+  var E = this.h[4];
+  var Ah = A;
+  var Bh = B;
+  var Ch = C;
+  var Dh = D;
+  var Eh = E;
+  for (var j = 0; j < 80; j++) {
+    var T = sum32(
+      rotl32(
+        sum32_4(A, f(j, B, C, D), msg[r[j] + start], K(j)),
+        s[j]),
+      E);
+    A = E;
+    E = D;
+    D = rotl32(C, 10);
+    C = B;
+    B = T;
+    T = sum32(
+      rotl32(
+        sum32_4(Ah, f(79 - j, Bh, Ch, Dh), msg[rh[j] + start], Kh(j)),
+        sh[j]),
+      Eh);
+    Ah = Eh;
+    Eh = Dh;
+    Dh = rotl32(Ch, 10);
+    Ch = Bh;
+    Bh = T;
+  }
+  T = sum32_3(this.h[1], C, Dh);
+  this.h[1] = sum32_3(this.h[2], D, Eh);
+  this.h[2] = sum32_3(this.h[3], E, Ah);
+  this.h[3] = sum32_3(this.h[4], A, Bh);
+  this.h[4] = sum32_3(this.h[0], B, Ch);
+  this.h[0] = T;
+};
+
+RIPEMD160.prototype._digest = function digest(enc) {
+  if (enc === 'hex')
+    return utils.toHex32(this.h, 'little');
+  else
+    return utils.split32(this.h, 'little');
+};
+
+function f(j, x, y, z) {
+  if (j <= 15)
+    return x ^ y ^ z;
+  else if (j <= 31)
+    return (x & y) | ((~x) & z);
+  else if (j <= 47)
+    return (x | (~y)) ^ z;
+  else if (j <= 63)
+    return (x & z) | (y & (~z));
+  else
+    return x ^ (y | (~z));
+}
+
+function K(j) {
+  if (j <= 15)
+    return 0x00000000;
+  else if (j <= 31)
+    return 0x5a827999;
+  else if (j <= 47)
+    return 0x6ed9eba1;
+  else if (j <= 63)
+    return 0x8f1bbcdc;
+  else
+    return 0xa953fd4e;
+}
+
+function Kh(j) {
+  if (j <= 15)
+    return 0x50a28be6;
+  else if (j <= 31)
+    return 0x5c4dd124;
+  else if (j <= 47)
+    return 0x6d703ef3;
+  else if (j <= 63)
+    return 0x7a6d76e9;
+  else
+    return 0x00000000;
+}
+
+var r = [
+  0, 1, 2, 3, 4, 5, 6, 7, 8, 9, 10, 11, 12, 13, 14, 15,
+  7, 4, 13, 1, 10, 6, 15, 3, 12, 0, 9, 5, 2, 14, 11, 8,
+  3, 10, 14, 4, 9, 15, 8, 1, 2, 7, 0, 6, 13, 11, 5, 12,
+  1, 9, 11, 10, 0, 8, 12, 4, 13, 3, 7, 15, 14, 5, 6, 2,
+  4, 0, 5, 9, 7, 12, 2, 10, 14, 1, 3, 8, 11, 6, 15, 13
+];
+
+var rh = [
+  5, 14, 7, 0, 9, 2, 11, 4, 13, 6, 15, 8, 1, 10, 3, 12,
+  6, 11, 3, 7, 0, 13, 5, 10, 14, 15, 8, 12, 4, 9, 1, 2,
+  15, 5, 1, 3, 7, 14, 6, 9, 11, 8, 12, 2, 10, 0, 4, 13,
+  8, 6, 4, 1, 3, 11, 15, 0, 5, 12, 2, 13, 9, 7, 10, 14,
+  12, 15, 10, 4, 1, 5, 8, 7, 6, 2, 13, 14, 0, 3, 9, 11
+];
+
+var s = [
+  11, 14, 15, 12, 5, 8, 7, 9, 11, 13, 14, 15, 6, 7, 9, 8,
+  7, 6, 8, 13, 11, 9, 7, 15, 7, 12, 15, 9, 11, 7, 13, 12,
+  11, 13, 6, 7, 14, 9, 13, 15, 14, 8, 13, 6, 5, 12, 7, 5,
+  11, 12, 14, 15, 14, 15, 9, 8, 9, 14, 5, 6, 8, 6, 5, 12,
+  9, 15, 5, 11, 6, 8, 13, 12, 5, 12, 13, 14, 11, 8, 5, 6
+];
+
+var sh = [
+  8, 9, 9, 11, 13, 15, 15, 5, 7, 7, 8, 11, 14, 14, 12, 6,
+  9, 13, 15, 7, 12, 8, 9, 11, 7, 7, 12, 7, 6, 15, 13, 11,
+  9, 7, 15, 11, 8, 6, 6, 14, 12, 13, 5, 14, 13, 13, 7, 5,
+  15, 5, 8, 11, 14, 14, 6, 14, 6, 9, 12, 9, 12, 5, 15, 8,
+  8, 5, 12, 9, 12, 5, 14, 6, 8, 13, 6, 5, 15, 13, 11, 11
+];
+
+},{"./common":88,"./utils":98}],91:[function(require,module,exports){
+'use strict';
+
+exports.sha1 = require('./sha/1');
+exports.sha224 = require('./sha/224');
+exports.sha256 = require('./sha/256');
+exports.sha384 = require('./sha/384');
+exports.sha512 = require('./sha/512');
+
+},{"./sha/1":92,"./sha/224":93,"./sha/256":94,"./sha/384":95,"./sha/512":96}],92:[function(require,module,exports){
+'use strict';
+
+var utils = require('../utils');
+var common = require('../common');
+var shaCommon = require('./common');
+
+var rotl32 = utils.rotl32;
+var sum32 = utils.sum32;
+var sum32_5 = utils.sum32_5;
+var ft_1 = shaCommon.ft_1;
+var BlockHash = common.BlockHash;
+
+var sha1_K = [
+  0x5A827999, 0x6ED9EBA1,
+  0x8F1BBCDC, 0xCA62C1D6
+];
+
+function SHA1() {
+  if (!(this instanceof SHA1))
+    return new SHA1();
+
+  BlockHash.call(this);
+  this.h = [
+    0x67452301, 0xefcdab89, 0x98badcfe,
+    0x10325476, 0xc3d2e1f0 ];
+  this.W = new Array(80);
+}
+
+utils.inherits(SHA1, BlockHash);
+module.exports = SHA1;
+
+SHA1.blockSize = 512;
+SHA1.outSize = 160;
+SHA1.hmacStrength = 80;
+SHA1.padLength = 64;
+
+SHA1.prototype._update = function _update(msg, start) {
+  var W = this.W;
+
+  for (var i = 0; i < 16; i++)
+    W[i] = msg[start + i];
+
+  for(; i < W.length; i++)
+    W[i] = rotl32(W[i - 3] ^ W[i - 8] ^ W[i - 14] ^ W[i - 16], 1);
+
+  var a = this.h[0];
+  var b = this.h[1];
+  var c = this.h[2];
+  var d = this.h[3];
+  var e = this.h[4];
+
+  for (i = 0; i < W.length; i++) {
+    var s = ~~(i / 20);
+    var t = sum32_5(rotl32(a, 5), ft_1(s, b, c, d), e, W[i], sha1_K[s]);
+    e = d;
+    d = c;
+    c = rotl32(b, 30);
+    b = a;
+    a = t;
+  }
+
+  this.h[0] = sum32(this.h[0], a);
+  this.h[1] = sum32(this.h[1], b);
+  this.h[2] = sum32(this.h[2], c);
+  this.h[3] = sum32(this.h[3], d);
+  this.h[4] = sum32(this.h[4], e);
+};
+
+SHA1.prototype._digest = function digest(enc) {
+  if (enc === 'hex')
+    return utils.toHex32(this.h, 'big');
+  else
+    return utils.split32(this.h, 'big');
+};
+
+},{"../common":88,"../utils":98,"./common":97}],93:[function(require,module,exports){
+'use strict';
+
+var utils = require('../utils');
+var SHA256 = require('./256');
+
+function SHA224() {
+  if (!(this instanceof SHA224))
+    return new SHA224();
+
+  SHA256.call(this);
+  this.h = [
+    0xc1059ed8, 0x367cd507, 0x3070dd17, 0xf70e5939,
+    0xffc00b31, 0x68581511, 0x64f98fa7, 0xbefa4fa4 ];
+}
+utils.inherits(SHA224, SHA256);
+module.exports = SHA224;
+
+SHA224.blockSize = 512;
+SHA224.outSize = 224;
+SHA224.hmacStrength = 192;
+SHA224.padLength = 64;
+
+SHA224.prototype._digest = function digest(enc) {
+  // Just truncate output
+  if (enc === 'hex')
+    return utils.toHex32(this.h.slice(0, 7), 'big');
+  else
+    return utils.split32(this.h.slice(0, 7), 'big');
+};
+
+
+},{"../utils":98,"./256":94}],94:[function(require,module,exports){
+'use strict';
+
+var utils = require('../utils');
+var common = require('../common');
+var shaCommon = require('./common');
+var assert = require('minimalistic-assert');
+
+var sum32 = utils.sum32;
+var sum32_4 = utils.sum32_4;
+var sum32_5 = utils.sum32_5;
+var ch32 = shaCommon.ch32;
+var maj32 = shaCommon.maj32;
+var s0_256 = shaCommon.s0_256;
+var s1_256 = shaCommon.s1_256;
+var g0_256 = shaCommon.g0_256;
+var g1_256 = shaCommon.g1_256;
+
+var BlockHash = common.BlockHash;
+
+var sha256_K = [
+  0x428a2f98, 0x71374491, 0xb5c0fbcf, 0xe9b5dba5,
+  0x3956c25b, 0x59f111f1, 0x923f82a4, 0xab1c5ed5,
+  0xd807aa98, 0x12835b01, 0x243185be, 0x550c7dc3,
+  0x72be5d74, 0x80deb1fe, 0x9bdc06a7, 0xc19bf174,
+  0xe49b69c1, 0xefbe4786, 0x0fc19dc6, 0x240ca1cc,
+  0x2de92c6f, 0x4a7484aa, 0x5cb0a9dc, 0x76f988da,
+  0x983e5152, 0xa831c66d, 0xb00327c8, 0xbf597fc7,
+  0xc6e00bf3, 0xd5a79147, 0x06ca6351, 0x14292967,
+  0x27b70a85, 0x2e1b2138, 0x4d2c6dfc, 0x53380d13,
+  0x650a7354, 0x766a0abb, 0x81c2c92e, 0x92722c85,
+  0xa2bfe8a1, 0xa81a664b, 0xc24b8b70, 0xc76c51a3,
+  0xd192e819, 0xd6990624, 0xf40e3585, 0x106aa070,
+  0x19a4c116, 0x1e376c08, 0x2748774c, 0x34b0bcb5,
+  0x391c0cb3, 0x4ed8aa4a, 0x5b9cca4f, 0x682e6ff3,
+  0x748f82ee, 0x78a5636f, 0x84c87814, 0x8cc70208,
+  0x90befffa, 0xa4506ceb, 0xbef9a3f7, 0xc67178f2
+];
+
+function SHA256() {
+  if (!(this instanceof SHA256))
+    return new SHA256();
+
+  BlockHash.call(this);
+  this.h = [
+    0x6a09e667, 0xbb67ae85, 0x3c6ef372, 0xa54ff53a,
+    0x510e527f, 0x9b05688c, 0x1f83d9ab, 0x5be0cd19
+  ];
+  this.k = sha256_K;
+  this.W = new Array(64);
+}
+utils.inherits(SHA256, BlockHash);
+module.exports = SHA256;
+
+SHA256.blockSize = 512;
+SHA256.outSize = 256;
+SHA256.hmacStrength = 192;
+SHA256.padLength = 64;
+
+SHA256.prototype._update = function _update(msg, start) {
+  var W = this.W;
+
+  for (var i = 0; i < 16; i++)
+    W[i] = msg[start + i];
+  for (; i < W.length; i++)
+    W[i] = sum32_4(g1_256(W[i - 2]), W[i - 7], g0_256(W[i - 15]), W[i - 16]);
+
+  var a = this.h[0];
+  var b = this.h[1];
+  var c = this.h[2];
+  var d = this.h[3];
+  var e = this.h[4];
+  var f = this.h[5];
+  var g = this.h[6];
+  var h = this.h[7];
+
+  assert(this.k.length === W.length);
+  for (i = 0; i < W.length; i++) {
+    var T1 = sum32_5(h, s1_256(e), ch32(e, f, g), this.k[i], W[i]);
+    var T2 = sum32(s0_256(a), maj32(a, b, c));
+    h = g;
+    g = f;
+    f = e;
+    e = sum32(d, T1);
+    d = c;
+    c = b;
+    b = a;
+    a = sum32(T1, T2);
+  }
+
+  this.h[0] = sum32(this.h[0], a);
+  this.h[1] = sum32(this.h[1], b);
+  this.h[2] = sum32(this.h[2], c);
+  this.h[3] = sum32(this.h[3], d);
+  this.h[4] = sum32(this.h[4], e);
+  this.h[5] = sum32(this.h[5], f);
+  this.h[6] = sum32(this.h[6], g);
+  this.h[7] = sum32(this.h[7], h);
+};
+
+SHA256.prototype._digest = function digest(enc) {
+  if (enc === 'hex')
+    return utils.toHex32(this.h, 'big');
+  else
+    return utils.split32(this.h, 'big');
+};
+
+},{"../common":88,"../utils":98,"./common":97,"minimalistic-assert":106}],95:[function(require,module,exports){
+'use strict';
+
+var utils = require('../utils');
+
+var SHA512 = require('./512');
+
+function SHA384() {
+  if (!(this instanceof SHA384))
+    return new SHA384();
+
+  SHA512.call(this);
+  this.h = [
+    0xcbbb9d5d, 0xc1059ed8,
+    0x629a292a, 0x367cd507,
+    0x9159015a, 0x3070dd17,
+    0x152fecd8, 0xf70e5939,
+    0x67332667, 0xffc00b31,
+    0x8eb44a87, 0x68581511,
+    0xdb0c2e0d, 0x64f98fa7,
+    0x47b5481d, 0xbefa4fa4 ];
+}
+utils.inherits(SHA384, SHA512);
+module.exports = SHA384;
+
+SHA384.blockSize = 1024;
+SHA384.outSize = 384;
+SHA384.hmacStrength = 192;
+SHA384.padLength = 128;
+
+SHA384.prototype._digest = function digest(enc) {
+  if (enc === 'hex')
+    return utils.toHex32(this.h.slice(0, 12), 'big');
+  else
+    return utils.split32(this.h.slice(0, 12), 'big');
+};
+
+},{"../utils":98,"./512":96}],96:[function(require,module,exports){
+'use strict';
+
+var utils = require('../utils');
+var common = require('../common');
+var assert = require('minimalistic-assert');
+
+var rotr64_hi = utils.rotr64_hi;
+var rotr64_lo = utils.rotr64_lo;
+var shr64_hi = utils.shr64_hi;
+var shr64_lo = utils.shr64_lo;
+var sum64 = utils.sum64;
+var sum64_hi = utils.sum64_hi;
+var sum64_lo = utils.sum64_lo;
+var sum64_4_hi = utils.sum64_4_hi;
+var sum64_4_lo = utils.sum64_4_lo;
+var sum64_5_hi = utils.sum64_5_hi;
+var sum64_5_lo = utils.sum64_5_lo;
+
+var BlockHash = common.BlockHash;
+
+var sha512_K = [
+  0x428a2f98, 0xd728ae22, 0x71374491, 0x23ef65cd,
+  0xb5c0fbcf, 0xec4d3b2f, 0xe9b5dba5, 0x8189dbbc,
+  0x3956c25b, 0xf348b538, 0x59f111f1, 0xb605d019,
+  0x923f82a4, 0xaf194f9b, 0xab1c5ed5, 0xda6d8118,
+  0xd807aa98, 0xa3030242, 0x12835b01, 0x45706fbe,
+  0x243185be, 0x4ee4b28c, 0x550c7dc3, 0xd5ffb4e2,
+  0x72be5d74, 0xf27b896f, 0x80deb1fe, 0x3b1696b1,
+  0x9bdc06a7, 0x25c71235, 0xc19bf174, 0xcf692694,
+  0xe49b69c1, 0x9ef14ad2, 0xefbe4786, 0x384f25e3,
+  0x0fc19dc6, 0x8b8cd5b5, 0x240ca1cc, 0x77ac9c65,
+  0x2de92c6f, 0x592b0275, 0x4a7484aa, 0x6ea6e483,
+  0x5cb0a9dc, 0xbd41fbd4, 0x76f988da, 0x831153b5,
+  0x983e5152, 0xee66dfab, 0xa831c66d, 0x2db43210,
+  0xb00327c8, 0x98fb213f, 0xbf597fc7, 0xbeef0ee4,
+  0xc6e00bf3, 0x3da88fc2, 0xd5a79147, 0x930aa725,
+  0x06ca6351, 0xe003826f, 0x14292967, 0x0a0e6e70,
+  0x27b70a85, 0x46d22ffc, 0x2e1b2138, 0x5c26c926,
+  0x4d2c6dfc, 0x5ac42aed, 0x53380d13, 0x9d95b3df,
+  0x650a7354, 0x8baf63de, 0x766a0abb, 0x3c77b2a8,
+  0x81c2c92e, 0x47edaee6, 0x92722c85, 0x1482353b,
+  0xa2bfe8a1, 0x4cf10364, 0xa81a664b, 0xbc423001,
+  0xc24b8b70, 0xd0f89791, 0xc76c51a3, 0x0654be30,
+  0xd192e819, 0xd6ef5218, 0xd6990624, 0x5565a910,
+  0xf40e3585, 0x5771202a, 0x106aa070, 0x32bbd1b8,
+  0x19a4c116, 0xb8d2d0c8, 0x1e376c08, 0x5141ab53,
+  0x2748774c, 0xdf8eeb99, 0x34b0bcb5, 0xe19b48a8,
+  0x391c0cb3, 0xc5c95a63, 0x4ed8aa4a, 0xe3418acb,
+  0x5b9cca4f, 0x7763e373, 0x682e6ff3, 0xd6b2b8a3,
+  0x748f82ee, 0x5defb2fc, 0x78a5636f, 0x43172f60,
+  0x84c87814, 0xa1f0ab72, 0x8cc70208, 0x1a6439ec,
+  0x90befffa, 0x23631e28, 0xa4506ceb, 0xde82bde9,
+  0xbef9a3f7, 0xb2c67915, 0xc67178f2, 0xe372532b,
+  0xca273ece, 0xea26619c, 0xd186b8c7, 0x21c0c207,
+  0xeada7dd6, 0xcde0eb1e, 0xf57d4f7f, 0xee6ed178,
+  0x06f067aa, 0x72176fba, 0x0a637dc5, 0xa2c898a6,
+  0x113f9804, 0xbef90dae, 0x1b710b35, 0x131c471b,
+  0x28db77f5, 0x23047d84, 0x32caab7b, 0x40c72493,
+  0x3c9ebe0a, 0x15c9bebc, 0x431d67c4, 0x9c100d4c,
+  0x4cc5d4be, 0xcb3e42b6, 0x597f299c, 0xfc657e2a,
+  0x5fcb6fab, 0x3ad6faec, 0x6c44198c, 0x4a475817
+];
+
+function SHA512() {
+  if (!(this instanceof SHA512))
+    return new SHA512();
+
+  BlockHash.call(this);
+  this.h = [
+    0x6a09e667, 0xf3bcc908,
+    0xbb67ae85, 0x84caa73b,
+    0x3c6ef372, 0xfe94f82b,
+    0xa54ff53a, 0x5f1d36f1,
+    0x510e527f, 0xade682d1,
+    0x9b05688c, 0x2b3e6c1f,
+    0x1f83d9ab, 0xfb41bd6b,
+    0x5be0cd19, 0x137e2179 ];
+  this.k = sha512_K;
+  this.W = new Array(160);
+}
+utils.inherits(SHA512, BlockHash);
+module.exports = SHA512;
+
+SHA512.blockSize = 1024;
+SHA512.outSize = 512;
+SHA512.hmacStrength = 192;
+SHA512.padLength = 128;
+
+SHA512.prototype._prepareBlock = function _prepareBlock(msg, start) {
+  var W = this.W;
+
+  // 32 x 32bit words
+  for (var i = 0; i < 32; i++)
+    W[i] = msg[start + i];
+  for (; i < W.length; i += 2) {
+    var c0_hi = g1_512_hi(W[i - 4], W[i - 3]);  // i - 2
+    var c0_lo = g1_512_lo(W[i - 4], W[i - 3]);
+    var c1_hi = W[i - 14];  // i - 7
+    var c1_lo = W[i - 13];
+    var c2_hi = g0_512_hi(W[i - 30], W[i - 29]);  // i - 15
+    var c2_lo = g0_512_lo(W[i - 30], W[i - 29]);
+    var c3_hi = W[i - 32];  // i - 16
+    var c3_lo = W[i - 31];
+
+    W[i] = sum64_4_hi(
+      c0_hi, c0_lo,
+      c1_hi, c1_lo,
+      c2_hi, c2_lo,
+      c3_hi, c3_lo);
+    W[i + 1] = sum64_4_lo(
+      c0_hi, c0_lo,
+      c1_hi, c1_lo,
+      c2_hi, c2_lo,
+      c3_hi, c3_lo);
+  }
+};
+
+SHA512.prototype._update = function _update(msg, start) {
+  this._prepareBlock(msg, start);
+
+  var W = this.W;
+
+  var ah = this.h[0];
+  var al = this.h[1];
+  var bh = this.h[2];
+  var bl = this.h[3];
+  var ch = this.h[4];
+  var cl = this.h[5];
+  var dh = this.h[6];
+  var dl = this.h[7];
+  var eh = this.h[8];
+  var el = this.h[9];
+  var fh = this.h[10];
+  var fl = this.h[11];
+  var gh = this.h[12];
+  var gl = this.h[13];
+  var hh = this.h[14];
+  var hl = this.h[15];
+
+  assert(this.k.length === W.length);
+  for (var i = 0; i < W.length; i += 2) {
+    var c0_hi = hh;
+    var c0_lo = hl;
+    var c1_hi = s1_512_hi(eh, el);
+    var c1_lo = s1_512_lo(eh, el);
+    var c2_hi = ch64_hi(eh, el, fh, fl, gh, gl);
+    var c2_lo = ch64_lo(eh, el, fh, fl, gh, gl);
+    var c3_hi = this.k[i];
+    var c3_lo = this.k[i + 1];
+    var c4_hi = W[i];
+    var c4_lo = W[i + 1];
+
+    var T1_hi = sum64_5_hi(
+      c0_hi, c0_lo,
+      c1_hi, c1_lo,
+      c2_hi, c2_lo,
+      c3_hi, c3_lo,
+      c4_hi, c4_lo);
+    var T1_lo = sum64_5_lo(
+      c0_hi, c0_lo,
+      c1_hi, c1_lo,
+      c2_hi, c2_lo,
+      c3_hi, c3_lo,
+      c4_hi, c4_lo);
+
+    c0_hi = s0_512_hi(ah, al);
+    c0_lo = s0_512_lo(ah, al);
+    c1_hi = maj64_hi(ah, al, bh, bl, ch, cl);
+    c1_lo = maj64_lo(ah, al, bh, bl, ch, cl);
+
+    var T2_hi = sum64_hi(c0_hi, c0_lo, c1_hi, c1_lo);
+    var T2_lo = sum64_lo(c0_hi, c0_lo, c1_hi, c1_lo);
+
+    hh = gh;
+    hl = gl;
+
+    gh = fh;
+    gl = fl;
+
+    fh = eh;
+    fl = el;
+
+    eh = sum64_hi(dh, dl, T1_hi, T1_lo);
+    el = sum64_lo(dl, dl, T1_hi, T1_lo);
+
+    dh = ch;
+    dl = cl;
+
+    ch = bh;
+    cl = bl;
+
+    bh = ah;
+    bl = al;
+
+    ah = sum64_hi(T1_hi, T1_lo, T2_hi, T2_lo);
+    al = sum64_lo(T1_hi, T1_lo, T2_hi, T2_lo);
+  }
+
+  sum64(this.h, 0, ah, al);
+  sum64(this.h, 2, bh, bl);
+  sum64(this.h, 4, ch, cl);
+  sum64(this.h, 6, dh, dl);
+  sum64(this.h, 8, eh, el);
+  sum64(this.h, 10, fh, fl);
+  sum64(this.h, 12, gh, gl);
+  sum64(this.h, 14, hh, hl);
+};
+
+SHA512.prototype._digest = function digest(enc) {
+  if (enc === 'hex')
+    return utils.toHex32(this.h, 'big');
+  else
+    return utils.split32(this.h, 'big');
+};
+
+function ch64_hi(xh, xl, yh, yl, zh) {
+  var r = (xh & yh) ^ ((~xh) & zh);
+  if (r < 0)
+    r += 0x100000000;
+  return r;
+}
+
+function ch64_lo(xh, xl, yh, yl, zh, zl) {
+  var r = (xl & yl) ^ ((~xl) & zl);
+  if (r < 0)
+    r += 0x100000000;
+  return r;
+}
+
+function maj64_hi(xh, xl, yh, yl, zh) {
+  var r = (xh & yh) ^ (xh & zh) ^ (yh & zh);
+  if (r < 0)
+    r += 0x100000000;
+  return r;
+}
+
+function maj64_lo(xh, xl, yh, yl, zh, zl) {
+  var r = (xl & yl) ^ (xl & zl) ^ (yl & zl);
+  if (r < 0)
+    r += 0x100000000;
+  return r;
+}
+
+function s0_512_hi(xh, xl) {
+  var c0_hi = rotr64_hi(xh, xl, 28);
+  var c1_hi = rotr64_hi(xl, xh, 2);  // 34
+  var c2_hi = rotr64_hi(xl, xh, 7);  // 39
+
+  var r = c0_hi ^ c1_hi ^ c2_hi;
+  if (r < 0)
+    r += 0x100000000;
+  return r;
+}
+
+function s0_512_lo(xh, xl) {
+  var c0_lo = rotr64_lo(xh, xl, 28);
+  var c1_lo = rotr64_lo(xl, xh, 2);  // 34
+  var c2_lo = rotr64_lo(xl, xh, 7);  // 39
+
+  var r = c0_lo ^ c1_lo ^ c2_lo;
+  if (r < 0)
+    r += 0x100000000;
+  return r;
+}
+
+function s1_512_hi(xh, xl) {
+  var c0_hi = rotr64_hi(xh, xl, 14);
+  var c1_hi = rotr64_hi(xh, xl, 18);
+  var c2_hi = rotr64_hi(xl, xh, 9);  // 41
+
+  var r = c0_hi ^ c1_hi ^ c2_hi;
+  if (r < 0)
+    r += 0x100000000;
+  return r;
+}
+
+function s1_512_lo(xh, xl) {
+  var c0_lo = rotr64_lo(xh, xl, 14);
+  var c1_lo = rotr64_lo(xh, xl, 18);
+  var c2_lo = rotr64_lo(xl, xh, 9);  // 41
+
+  var r = c0_lo ^ c1_lo ^ c2_lo;
+  if (r < 0)
+    r += 0x100000000;
+  return r;
+}
+
+function g0_512_hi(xh, xl) {
+  var c0_hi = rotr64_hi(xh, xl, 1);
+  var c1_hi = rotr64_hi(xh, xl, 8);
+  var c2_hi = shr64_hi(xh, xl, 7);
+
+  var r = c0_hi ^ c1_hi ^ c2_hi;
+  if (r < 0)
+    r += 0x100000000;
+  return r;
+}
+
+function g0_512_lo(xh, xl) {
+  var c0_lo = rotr64_lo(xh, xl, 1);
+  var c1_lo = rotr64_lo(xh, xl, 8);
+  var c2_lo = shr64_lo(xh, xl, 7);
+
+  var r = c0_lo ^ c1_lo ^ c2_lo;
+  if (r < 0)
+    r += 0x100000000;
+  return r;
+}
+
+function g1_512_hi(xh, xl) {
+  var c0_hi = rotr64_hi(xh, xl, 19);
+  var c1_hi = rotr64_hi(xl, xh, 29);  // 61
+  var c2_hi = shr64_hi(xh, xl, 6);
+
+  var r = c0_hi ^ c1_hi ^ c2_hi;
+  if (r < 0)
+    r += 0x100000000;
+  return r;
+}
+
+function g1_512_lo(xh, xl) {
+  var c0_lo = rotr64_lo(xh, xl, 19);
+  var c1_lo = rotr64_lo(xl, xh, 29);  // 61
+  var c2_lo = shr64_lo(xh, xl, 6);
+
+  var r = c0_lo ^ c1_lo ^ c2_lo;
+  if (r < 0)
+    r += 0x100000000;
+  return r;
+}
+
+},{"../common":88,"../utils":98,"minimalistic-assert":106}],97:[function(require,module,exports){
+'use strict';
+
+var utils = require('../utils');
+var rotr32 = utils.rotr32;
+
+function ft_1(s, x, y, z) {
+  if (s === 0)
+    return ch32(x, y, z);
+  if (s === 1 || s === 3)
+    return p32(x, y, z);
+  if (s === 2)
+    return maj32(x, y, z);
+}
+exports.ft_1 = ft_1;
+
+function ch32(x, y, z) {
+  return (x & y) ^ ((~x) & z);
+}
+exports.ch32 = ch32;
+
+function maj32(x, y, z) {
+  return (x & y) ^ (x & z) ^ (y & z);
+}
+exports.maj32 = maj32;
+
+function p32(x, y, z) {
+  return x ^ y ^ z;
+}
+exports.p32 = p32;
+
+function s0_256(x) {
+  return rotr32(x, 2) ^ rotr32(x, 13) ^ rotr32(x, 22);
+}
+exports.s0_256 = s0_256;
+
+function s1_256(x) {
+  return rotr32(x, 6) ^ rotr32(x, 11) ^ rotr32(x, 25);
+}
+exports.s1_256 = s1_256;
+
+function g0_256(x) {
+  return rotr32(x, 7) ^ rotr32(x, 18) ^ (x >>> 3);
+}
+exports.g0_256 = g0_256;
+
+function g1_256(x) {
+  return rotr32(x, 17) ^ rotr32(x, 19) ^ (x >>> 10);
+}
+exports.g1_256 = g1_256;
+
+},{"../utils":98}],98:[function(require,module,exports){
+'use strict';
+
+var assert = require('minimalistic-assert');
+var inherits = require('inherits');
+
+exports.inherits = inherits;
+
+function toArray(msg, enc) {
+  if (Array.isArray(msg))
+    return msg.slice();
+  if (!msg)
+    return [];
+  var res = [];
+  if (typeof msg === 'string') {
+    if (!enc) {
+      for (var i = 0; i < msg.length; i++) {
+        var c = msg.charCodeAt(i);
+        var hi = c >> 8;
+        var lo = c & 0xff;
+        if (hi)
+          res.push(hi, lo);
+        else
+          res.push(lo);
+      }
+    } else if (enc === 'hex') {
+      msg = msg.replace(/[^a-z0-9]+/ig, '');
+      if (msg.length % 2 !== 0)
+        msg = '0' + msg;
+      for (i = 0; i < msg.length; i += 2)
+        res.push(parseInt(msg[i] + msg[i + 1], 16));
+    }
+  } else {
+    for (i = 0; i < msg.length; i++)
+      res[i] = msg[i] | 0;
+  }
+  return res;
+}
+exports.toArray = toArray;
+
+function toHex(msg) {
+  var res = '';
+  for (var i = 0; i < msg.length; i++)
+    res += zero2(msg[i].toString(16));
+  return res;
+}
+exports.toHex = toHex;
+
+function htonl(w) {
+  var res = (w >>> 24) |
+            ((w >>> 8) & 0xff00) |
+            ((w << 8) & 0xff0000) |
+            ((w & 0xff) << 24);
+  return res >>> 0;
+}
+exports.htonl = htonl;
+
+function toHex32(msg, endian) {
+  var res = '';
+  for (var i = 0; i < msg.length; i++) {
+    var w = msg[i];
+    if (endian === 'little')
+      w = htonl(w);
+    res += zero8(w.toString(16));
+  }
+  return res;
+}
+exports.toHex32 = toHex32;
+
+function zero2(word) {
+  if (word.length === 1)
+    return '0' + word;
+  else
+    return word;
+}
+exports.zero2 = zero2;
+
+function zero8(word) {
+  if (word.length === 7)
+    return '0' + word;
+  else if (word.length === 6)
+    return '00' + word;
+  else if (word.length === 5)
+    return '000' + word;
+  else if (word.length === 4)
+    return '0000' + word;
+  else if (word.length === 3)
+    return '00000' + word;
+  else if (word.length === 2)
+    return '000000' + word;
+  else if (word.length === 1)
+    return '0000000' + word;
+  else
+    return word;
+}
+exports.zero8 = zero8;
+
+function join32(msg, start, end, endian) {
+  var len = end - start;
+  assert(len % 4 === 0);
+  var res = new Array(len / 4);
+  for (var i = 0, k = start; i < res.length; i++, k += 4) {
+    var w;
+    if (endian === 'big')
+      w = (msg[k] << 24) | (msg[k + 1] << 16) | (msg[k + 2] << 8) | msg[k + 3];
+    else
+      w = (msg[k + 3] << 24) | (msg[k + 2] << 16) | (msg[k + 1] << 8) | msg[k];
+    res[i] = w >>> 0;
+  }
+  return res;
+}
+exports.join32 = join32;
+
+function split32(msg, endian) {
+  var res = new Array(msg.length * 4);
+  for (var i = 0, k = 0; i < msg.length; i++, k += 4) {
+    var m = msg[i];
+    if (endian === 'big') {
+      res[k] = m >>> 24;
+      res[k + 1] = (m >>> 16) & 0xff;
+      res[k + 2] = (m >>> 8) & 0xff;
+      res[k + 3] = m & 0xff;
+    } else {
+      res[k + 3] = m >>> 24;
+      res[k + 2] = (m >>> 16) & 0xff;
+      res[k + 1] = (m >>> 8) & 0xff;
+      res[k] = m & 0xff;
+    }
+  }
+  return res;
+}
+exports.split32 = split32;
+
+function rotr32(w, b) {
+  return (w >>> b) | (w << (32 - b));
+}
+exports.rotr32 = rotr32;
+
+function rotl32(w, b) {
+  return (w << b) | (w >>> (32 - b));
+}
+exports.rotl32 = rotl32;
+
+function sum32(a, b) {
+  return (a + b) >>> 0;
+}
+exports.sum32 = sum32;
+
+function sum32_3(a, b, c) {
+  return (a + b + c) >>> 0;
+}
+exports.sum32_3 = sum32_3;
+
+function sum32_4(a, b, c, d) {
+  return (a + b + c + d) >>> 0;
+}
+exports.sum32_4 = sum32_4;
+
+function sum32_5(a, b, c, d, e) {
+  return (a + b + c + d + e) >>> 0;
+}
+exports.sum32_5 = sum32_5;
+
+function sum64(buf, pos, ah, al) {
+  var bh = buf[pos];
+  var bl = buf[pos + 1];
+
+  var lo = (al + bl) >>> 0;
+  var hi = (lo < al ? 1 : 0) + ah + bh;
+  buf[pos] = hi >>> 0;
+  buf[pos + 1] = lo;
+}
+exports.sum64 = sum64;
+
+function sum64_hi(ah, al, bh, bl) {
+  var lo = (al + bl) >>> 0;
+  var hi = (lo < al ? 1 : 0) + ah + bh;
+  return hi >>> 0;
+}
+exports.sum64_hi = sum64_hi;
+
+function sum64_lo(ah, al, bh, bl) {
+  var lo = al + bl;
+  return lo >>> 0;
+}
+exports.sum64_lo = sum64_lo;
+
+function sum64_4_hi(ah, al, bh, bl, ch, cl, dh, dl) {
+  var carry = 0;
+  var lo = al;
+  lo = (lo + bl) >>> 0;
+  carry += lo < al ? 1 : 0;
+  lo = (lo + cl) >>> 0;
+  carry += lo < cl ? 1 : 0;
+  lo = (lo + dl) >>> 0;
+  carry += lo < dl ? 1 : 0;
+
+  var hi = ah + bh + ch + dh + carry;
+  return hi >>> 0;
+}
+exports.sum64_4_hi = sum64_4_hi;
+
+function sum64_4_lo(ah, al, bh, bl, ch, cl, dh, dl) {
+  var lo = al + bl + cl + dl;
+  return lo >>> 0;
+}
+exports.sum64_4_lo = sum64_4_lo;
+
+function sum64_5_hi(ah, al, bh, bl, ch, cl, dh, dl, eh, el) {
+  var carry = 0;
+  var lo = al;
+  lo = (lo + bl) >>> 0;
+  carry += lo < al ? 1 : 0;
+  lo = (lo + cl) >>> 0;
+  carry += lo < cl ? 1 : 0;
+  lo = (lo + dl) >>> 0;
+  carry += lo < dl ? 1 : 0;
+  lo = (lo + el) >>> 0;
+  carry += lo < el ? 1 : 0;
+
+  var hi = ah + bh + ch + dh + eh + carry;
+  return hi >>> 0;
+}
+exports.sum64_5_hi = sum64_5_hi;
+
+function sum64_5_lo(ah, al, bh, bl, ch, cl, dh, dl, eh, el) {
+  var lo = al + bl + cl + dl + el;
+
+  return lo >>> 0;
+}
+exports.sum64_5_lo = sum64_5_lo;
+
+function rotr64_hi(ah, al, num) {
+  var r = (al << (32 - num)) | (ah >>> num);
+  return r >>> 0;
+}
+exports.rotr64_hi = rotr64_hi;
+
+function rotr64_lo(ah, al, num) {
+  var r = (ah << (32 - num)) | (al >>> num);
+  return r >>> 0;
+}
+exports.rotr64_lo = rotr64_lo;
+
+function shr64_hi(ah, al, num) {
+  return ah >>> num;
+}
+exports.shr64_hi = shr64_hi;
+
+function shr64_lo(ah, al, num) {
+  var r = (ah << (32 - num)) | (al >>> num);
+  return r >>> 0;
+}
+exports.shr64_lo = shr64_lo;
+
+},{"inherits":101,"minimalistic-assert":106}],99:[function(require,module,exports){
+'use strict';
+
+var hash = require('hash.js');
+var utils = require('minimalistic-crypto-utils');
+var assert = require('minimalistic-assert');
+
+function HmacDRBG(options) {
+  if (!(this instanceof HmacDRBG))
+    return new HmacDRBG(options);
+  this.hash = options.hash;
+  this.predResist = !!options.predResist;
+
+  this.outLen = this.hash.outSize;
+  this.minEntropy = options.minEntropy || this.hash.hmacStrength;
+
+  this._reseed = null;
+  this.reseedInterval = null;
+  this.K = null;
+  this.V = null;
+
+  var entropy = utils.toArray(options.entropy, options.entropyEnc || 'hex');
+  var nonce = utils.toArray(options.nonce, options.nonceEnc || 'hex');
+  var pers = utils.toArray(options.pers, options.persEnc || 'hex');
+  assert(entropy.length >= (this.minEntropy / 8),
+         'Not enough entropy. Minimum is: ' + this.minEntropy + ' bits');
+  this._init(entropy, nonce, pers);
+}
+module.exports = HmacDRBG;
+
+HmacDRBG.prototype._init = function init(entropy, nonce, pers) {
+  var seed = entropy.concat(nonce).concat(pers);
+
+  this.K = new Array(this.outLen / 8);
+  this.V = new Array(this.outLen / 8);
+  for (var i = 0; i < this.V.length; i++) {
+    this.K[i] = 0x00;
+    this.V[i] = 0x01;
+  }
+
+  this._update(seed);
+  this._reseed = 1;
+  this.reseedInterval = 0x1000000000000;  // 2^48
+};
+
+HmacDRBG.prototype._hmac = function hmac() {
+  return new hash.hmac(this.hash, this.K);
+};
+
+HmacDRBG.prototype._update = function update(seed) {
+  var kmac = this._hmac()
+                 .update(this.V)
+                 .update([ 0x00 ]);
+  if (seed)
+    kmac = kmac.update(seed);
+  this.K = kmac.digest();
+  this.V = this._hmac().update(this.V).digest();
+  if (!seed)
+    return;
+
+  this.K = this._hmac()
+               .update(this.V)
+               .update([ 0x01 ])
+               .update(seed)
+               .digest();
+  this.V = this._hmac().update(this.V).digest();
+};
+
+HmacDRBG.prototype.reseed = function reseed(entropy, entropyEnc, add, addEnc) {
+  // Optional entropy enc
+  if (typeof entropyEnc !== 'string') {
+    addEnc = add;
+    add = entropyEnc;
+    entropyEnc = null;
+  }
+
+  entropy = utils.toArray(entropy, entropyEnc);
+  add = utils.toArray(add, addEnc);
+
+  assert(entropy.length >= (this.minEntropy / 8),
+         'Not enough entropy. Minimum is: ' + this.minEntropy + ' bits');
+
+  this._update(entropy.concat(add || []));
+  this._reseed = 1;
+};
+
+HmacDRBG.prototype.generate = function generate(len, enc, add, addEnc) {
+  if (this._reseed > this.reseedInterval)
+    throw new Error('Reseed is required');
+
+  // Optional encoding
+  if (typeof enc !== 'string') {
+    addEnc = add;
+    add = enc;
+    enc = null;
+  }
+
+  // Optional additional data
+  if (add) {
+    add = utils.toArray(add, addEnc || 'hex');
+    this._update(add);
+  }
+
+  var temp = [];
+  while (temp.length < len) {
+    this.V = this._hmac().update(this.V).digest();
+    temp = temp.concat(this.V);
+  }
+
+  var res = temp.slice(0, len);
+  this._update(add);
+  this._reseed++;
+  return utils.encode(res, enc);
+};
+
+},{"hash.js":87,"minimalistic-assert":106,"minimalistic-crypto-utils":107}],100:[function(require,module,exports){
+exports.read = function (buffer, offset, isLE, mLen, nBytes) {
+  var e, m
+  var eLen = (nBytes * 8) - mLen - 1
+  var eMax = (1 << eLen) - 1
+  var eBias = eMax >> 1
+  var nBits = -7
+  var i = isLE ? (nBytes - 1) : 0
+  var d = isLE ? -1 : 1
+  var s = buffer[offset + i]
+
+  i += d
+
+  e = s & ((1 << (-nBits)) - 1)
+  s >>= (-nBits)
+  nBits += eLen
+  for (; nBits > 0; e = (e * 256) + buffer[offset + i], i += d, nBits -= 8) {}
+
+  m = e & ((1 << (-nBits)) - 1)
+  e >>= (-nBits)
+  nBits += mLen
+  for (; nBits > 0; m = (m * 256) + buffer[offset + i], i += d, nBits -= 8) {}
+
+  if (e === 0) {
+    e = 1 - eBias
+  } else if (e === eMax) {
+    return m ? NaN : ((s ? -1 : 1) * Infinity)
+  } else {
+    m = m + Math.pow(2, mLen)
+    e = e - eBias
+  }
+  return (s ? -1 : 1) * m * Math.pow(2, e - mLen)
+}
+
+exports.write = function (buffer, value, offset, isLE, mLen, nBytes) {
+  var e, m, c
+  var eLen = (nBytes * 8) - mLen - 1
+  var eMax = (1 << eLen) - 1
+  var eBias = eMax >> 1
+  var rt = (mLen === 23 ? Math.pow(2, -24) - Math.pow(2, -77) : 0)
+  var i = isLE ? 0 : (nBytes - 1)
+  var d = isLE ? 1 : -1
+  var s = value < 0 || (value === 0 && 1 / value < 0) ? 1 : 0
+
+  value = Math.abs(value)
+
+  if (isNaN(value) || value === Infinity) {
+    m = isNaN(value) ? 1 : 0
+    e = eMax
+  } else {
+    e = Math.floor(Math.log(value) / Math.LN2)
+    if (value * (c = Math.pow(2, -e)) < 1) {
+      e--
+      c *= 2
+    }
+    if (e + eBias >= 1) {
+      value += rt / c
+    } else {
+      value += rt * Math.pow(2, 1 - eBias)
+    }
+    if (value * c >= 2) {
+      e++
+      c /= 2
+    }
+
+    if (e + eBias >= eMax) {
+      m = 0
+      e = eMax
+    } else if (e + eBias >= 1) {
+      m = ((value * c) - 1) * Math.pow(2, mLen)
+      e = e + eBias
+    } else {
+      m = value * Math.pow(2, eBias - 1) * Math.pow(2, mLen)
+      e = 0
+    }
+  }
+
+  for (; mLen >= 8; buffer[offset + i] = m & 0xff, i += d, m /= 256, mLen -= 8) {}
+
+  e = (e << mLen) | m
+  eLen += mLen
+  for (; eLen > 0; buffer[offset + i] = e & 0xff, i += d, e /= 256, eLen -= 8) {}
+
+  buffer[offset + i - d] |= s * 128
+}
+
+},{}],101:[function(require,module,exports){
+if (typeof Object.create === 'function') {
+  // implementation from standard node.js 'util' module
+  module.exports = function inherits(ctor, superCtor) {
+    ctor.super_ = superCtor
+    ctor.prototype = Object.create(superCtor.prototype, {
+      constructor: {
+        value: ctor,
+        enumerable: false,
+        writable: true,
+        configurable: true
+      }
+    });
+  };
+} else {
+  // old school shim for old browsers
+  module.exports = function inherits(ctor, superCtor) {
+    ctor.super_ = superCtor
+    var TempCtor = function () {}
+    TempCtor.prototype = superCtor.prototype
+    ctor.prototype = new TempCtor()
+    ctor.prototype.constructor = ctor
+  }
+}
+
+},{}],102:[function(require,module,exports){
+/*!
+ * Determine if an object is a Buffer
+ *
+ * @author   Feross Aboukhadijeh <https://feross.org>
+ * @license  MIT
+ */
+
+// The _isBuffer check is for Safari 5-7 support, because it's missing
+// Object.prototype.constructor. Remove this eventually
+module.exports = function (obj) {
+  return obj != null && (isBuffer(obj) || isSlowBuffer(obj) || !!obj._isBuffer)
+}
+
+function isBuffer (obj) {
+  return !!obj.constructor && typeof obj.constructor.isBuffer === 'function' && obj.constructor.isBuffer(obj)
+}
+
+// For Node v0.10 support. Remove this eventually.
+function isSlowBuffer (obj) {
+  return typeof obj.readFloatLE === 'function' && typeof obj.slice === 'function' && isBuffer(obj.slice(0, 0))
+}
+
+},{}],103:[function(require,module,exports){
+var toString = {}.toString;
+
+module.exports = Array.isArray || function (arr) {
+  return toString.call(arr) == '[object Array]';
+};
+
+},{}],104:[function(require,module,exports){
+(function (Buffer){
+'use strict'
+var inherits = require('inherits')
+var HashBase = require('hash-base')
+
+var ARRAY16 = new Array(16)
+
+function MD5 () {
+  HashBase.call(this, 64)
+
+  // state
+  this._a = 0x67452301
+  this._b = 0xefcdab89
+  this._c = 0x98badcfe
+  this._d = 0x10325476
+}
+
+inherits(MD5, HashBase)
+
+MD5.prototype._update = function () {
+  var M = ARRAY16
+  for (var i = 0; i < 16; ++i) M[i] = this._block.readInt32LE(i * 4)
+
+  var a = this._a
+  var b = this._b
+  var c = this._c
+  var d = this._d
+
+  a = fnF(a, b, c, d, M[0], 0xd76aa478, 7)
+  d = fnF(d, a, b, c, M[1], 0xe8c7b756, 12)
+  c = fnF(c, d, a, b, M[2], 0x242070db, 17)
+  b = fnF(b, c, d, a, M[3], 0xc1bdceee, 22)
+  a = fnF(a, b, c, d, M[4], 0xf57c0faf, 7)
+  d = fnF(d, a, b, c, M[5], 0x4787c62a, 12)
+  c = fnF(c, d, a, b, M[6], 0xa8304613, 17)
+  b = fnF(b, c, d, a, M[7], 0xfd469501, 22)
+  a = fnF(a, b, c, d, M[8], 0x698098d8, 7)
+  d = fnF(d, a, b, c, M[9], 0x8b44f7af, 12)
+  c = fnF(c, d, a, b, M[10], 0xffff5bb1, 17)
+  b = fnF(b, c, d, a, M[11], 0x895cd7be, 22)
+  a = fnF(a, b, c, d, M[12], 0x6b901122, 7)
+  d = fnF(d, a, b, c, M[13], 0xfd987193, 12)
+  c = fnF(c, d, a, b, M[14], 0xa679438e, 17)
+  b = fnF(b, c, d, a, M[15], 0x49b40821, 22)
+
+  a = fnG(a, b, c, d, M[1], 0xf61e2562, 5)
+  d = fnG(d, a, b, c, M[6], 0xc040b340, 9)
+  c = fnG(c, d, a, b, M[11], 0x265e5a51, 14)
+  b = fnG(b, c, d, a, M[0], 0xe9b6c7aa, 20)
+  a = fnG(a, b, c, d, M[5], 0xd62f105d, 5)
+  d = fnG(d, a, b, c, M[10], 0x02441453, 9)
+  c = fnG(c, d, a, b, M[15], 0xd8a1e681, 14)
+  b = fnG(b, c, d, a, M[4], 0xe7d3fbc8, 20)
+  a = fnG(a, b, c, d, M[9], 0x21e1cde6, 5)
+  d = fnG(d, a, b, c, M[14], 0xc33707d6, 9)
+  c = fnG(c, d, a, b, M[3], 0xf4d50d87, 14)
+  b = fnG(b, c, d, a, M[8], 0x455a14ed, 20)
+  a = fnG(a, b, c, d, M[13], 0xa9e3e905, 5)
+  d = fnG(d, a, b, c, M[2], 0xfcefa3f8, 9)
+  c = fnG(c, d, a, b, M[7], 0x676f02d9, 14)
+  b = fnG(b, c, d, a, M[12], 0x8d2a4c8a, 20)
+
+  a = fnH(a, b, c, d, M[5], 0xfffa3942, 4)
+  d = fnH(d, a, b, c, M[8], 0x8771f681, 11)
+  c = fnH(c, d, a, b, M[11], 0x6d9d6122, 16)
+  b = fnH(b, c, d, a, M[14], 0xfde5380c, 23)
+  a = fnH(a, b, c, d, M[1], 0xa4beea44, 4)
+  d = fnH(d, a, b, c, M[4], 0x4bdecfa9, 11)
+  c = fnH(c, d, a, b, M[7], 0xf6bb4b60, 16)
+  b = fnH(b, c, d, a, M[10], 0xbebfbc70, 23)
+  a = fnH(a, b, c, d, M[13], 0x289b7ec6, 4)
+  d = fnH(d, a, b, c, M[0], 0xeaa127fa, 11)
+  c = fnH(c, d, a, b, M[3], 0xd4ef3085, 16)
+  b = fnH(b, c, d, a, M[6], 0x04881d05, 23)
+  a = fnH(a, b, c, d, M[9], 0xd9d4d039, 4)
+  d = fnH(d, a, b, c, M[12], 0xe6db99e5, 11)
+  c = fnH(c, d, a, b, M[15], 0x1fa27cf8, 16)
+  b = fnH(b, c, d, a, M[2], 0xc4ac5665, 23)
+
+  a = fnI(a, b, c, d, M[0], 0xf4292244, 6)
+  d = fnI(d, a, b, c, M[7], 0x432aff97, 10)
+  c = fnI(c, d, a, b, M[14], 0xab9423a7, 15)
+  b = fnI(b, c, d, a, M[5], 0xfc93a039, 21)
+  a = fnI(a, b, c, d, M[12], 0x655b59c3, 6)
+  d = fnI(d, a, b, c, M[3], 0x8f0ccc92, 10)
+  c = fnI(c, d, a, b, M[10], 0xffeff47d, 15)
+  b = fnI(b, c, d, a, M[1], 0x85845dd1, 21)
+  a = fnI(a, b, c, d, M[8], 0x6fa87e4f, 6)
+  d = fnI(d, a, b, c, M[15], 0xfe2ce6e0, 10)
+  c = fnI(c, d, a, b, M[6], 0xa3014314, 15)
+  b = fnI(b, c, d, a, M[13], 0x4e0811a1, 21)
+  a = fnI(a, b, c, d, M[4], 0xf7537e82, 6)
+  d = fnI(d, a, b, c, M[11], 0xbd3af235, 10)
+  c = fnI(c, d, a, b, M[2], 0x2ad7d2bb, 15)
+  b = fnI(b, c, d, a, M[9], 0xeb86d391, 21)
+
+  this._a = (this._a + a) | 0
+  this._b = (this._b + b) | 0
+  this._c = (this._c + c) | 0
+  this._d = (this._d + d) | 0
+}
+
+MD5.prototype._digest = function () {
+  // create padding and handle blocks
+  this._block[this._blockOffset++] = 0x80
+  if (this._blockOffset > 56) {
+    this._block.fill(0, this._blockOffset, 64)
+    this._update()
+    this._blockOffset = 0
+  }
+
+  this._block.fill(0, this._blockOffset, 56)
+  this._block.writeUInt32LE(this._length[0], 56)
+  this._block.writeUInt32LE(this._length[1], 60)
+  this._update()
+
+  // produce result
+  var buffer = new Buffer(16)
+  buffer.writeInt32LE(this._a, 0)
+  buffer.writeInt32LE(this._b, 4)
+  buffer.writeInt32LE(this._c, 8)
+  buffer.writeInt32LE(this._d, 12)
+  return buffer
+}
+
+function rotl (x, n) {
+  return (x << n) | (x >>> (32 - n))
+}
+
+function fnF (a, b, c, d, m, k, s) {
+  return (rotl((a + ((b & c) | ((~b) & d)) + m + k) | 0, s) + b) | 0
+}
+
+function fnG (a, b, c, d, m, k, s) {
+  return (rotl((a + ((b & d) | (c & (~d))) + m + k) | 0, s) + b) | 0
+}
+
+function fnH (a, b, c, d, m, k, s) {
+  return (rotl((a + (b ^ c ^ d) + m + k) | 0, s) + b) | 0
+}
+
+function fnI (a, b, c, d, m, k, s) {
+  return (rotl((a + ((c ^ (b | (~d)))) + m + k) | 0, s) + b) | 0
+}
+
+module.exports = MD5
+
+}).call(this,require("buffer").Buffer)
+},{"buffer":49,"hash-base":86,"inherits":101}],105:[function(require,module,exports){
+var bn = require('bn.js');
+var brorand = require('brorand');
+
+function MillerRabin(rand) {
+  this.rand = rand || new brorand.Rand();
+}
+module.exports = MillerRabin;
+
+MillerRabin.create = function create(rand) {
+  return new MillerRabin(rand);
+};
+
+MillerRabin.prototype._randbelow = function _randbelow(n) {
+  var len = n.bitLength();
+  var min_bytes = Math.ceil(len / 8);
+
+  // Generage random bytes until a number less than n is found.
+  // This ensures that 0..n-1 have an equal probability of being selected.
+  do
+    var a = new bn(this.rand.generate(min_bytes));
+  while (a.cmp(n) >= 0);
+
+  return a;
+};
+
+MillerRabin.prototype._randrange = function _randrange(start, stop) {
+  // Generate a random number greater than or equal to start and less than stop.
+  var size = stop.sub(start);
+  return start.add(this._randbelow(size));
+};
+
+MillerRabin.prototype.test = function test(n, k, cb) {
+  var len = n.bitLength();
+  var red = bn.mont(n);
+  var rone = new bn(1).toRed(red);
+
+  if (!k)
+    k = Math.max(1, (len / 48) | 0);
+
+  // Find d and s, (n - 1) = (2 ^ s) * d;
+  var n1 = n.subn(1);
+  for (var s = 0; !n1.testn(s); s++) {}
+  var d = n.shrn(s);
+
+  var rn1 = n1.toRed(red);
+
+  var prime = true;
+  for (; k > 0; k--) {
+    var a = this._randrange(new bn(2), n1);
+    if (cb)
+      cb(a);
+
+    var x = a.toRed(red).redPow(d);
+    if (x.cmp(rone) === 0 || x.cmp(rn1) === 0)
+      continue;
+
+    for (var i = 1; i < s; i++) {
+      x = x.redSqr();
+
+      if (x.cmp(rone) === 0)
+        return false;
+      if (x.cmp(rn1) === 0)
+        break;
+    }
+
+    if (i === s)
+      return false;
+  }
+
+  return prime;
+};
+
+MillerRabin.prototype.getDivisor = function getDivisor(n, k) {
+  var len = n.bitLength();
+  var red = bn.mont(n);
+  var rone = new bn(1).toRed(red);
+
+  if (!k)
+    k = Math.max(1, (len / 48) | 0);
+
+  // Find d and s, (n - 1) = (2 ^ s) * d;
+  var n1 = n.subn(1);
+  for (var s = 0; !n1.testn(s); s++) {}
+  var d = n.shrn(s);
+
+  var rn1 = n1.toRed(red);
+
+  for (; k > 0; k--) {
+    var a = this._randrange(new bn(2), n1);
+
+    var g = n.gcd(a);
+    if (g.cmpn(1) !== 0)
+      return g;
+
+    var x = a.toRed(red).redPow(d);
+    if (x.cmp(rone) === 0 || x.cmp(rn1) === 0)
+      continue;
+
+    for (var i = 1; i < s; i++) {
+      x = x.redSqr();
+
+      if (x.cmp(rone) === 0)
+        return x.fromRed().subn(1).gcd(n);
+      if (x.cmp(rn1) === 0)
+        break;
+    }
+
+    if (i === s) {
+      x = x.redSqr();
+      return x.fromRed().subn(1).gcd(n);
+    }
+  }
+
+  return false;
+};
+
+},{"bn.js":18,"brorand":19}],106:[function(require,module,exports){
+module.exports = assert;
+
+function assert(val, msg) {
+  if (!val)
+    throw new Error(msg || 'Assertion failed');
+}
+
+assert.equal = function assertEqual(l, r, msg) {
+  if (l != r)
+    throw new Error(msg || ('Assertion failed: ' + l + ' != ' + r));
+};
+
+},{}],107:[function(require,module,exports){
+'use strict';
+
+var utils = exports;
+
+function toArray(msg, enc) {
+  if (Array.isArray(msg))
+    return msg.slice();
+  if (!msg)
+    return [];
+  var res = [];
+  if (typeof msg !== 'string') {
+    for (var i = 0; i < msg.length; i++)
+      res[i] = msg[i] | 0;
+    return res;
+  }
+  if (enc === 'hex') {
+    msg = msg.replace(/[^a-z0-9]+/ig, '');
+    if (msg.length % 2 !== 0)
+      msg = '0' + msg;
+    for (var i = 0; i < msg.length; i += 2)
+      res.push(parseInt(msg[i] + msg[i + 1], 16));
+  } else {
+    for (var i = 0; i < msg.length; i++) {
+      var c = msg.charCodeAt(i);
+      var hi = c >> 8;
+      var lo = c & 0xff;
+      if (hi)
+        res.push(hi, lo);
+      else
+        res.push(lo);
+    }
+  }
+  return res;
+}
+utils.toArray = toArray;
+
+function zero2(word) {
+  if (word.length === 1)
+    return '0' + word;
+  else
+    return word;
+}
+utils.zero2 = zero2;
+
+function toHex(msg) {
+  var res = '';
+  for (var i = 0; i < msg.length; i++)
+    res += zero2(msg[i].toString(16));
+  return res;
+}
+utils.toHex = toHex;
+
+utils.encode = function encode(arr, enc) {
+  if (enc === 'hex')
+    return toHex(arr);
+  else
+    return arr;
+};
+
+},{}],108:[function(require,module,exports){
+module.exports={"2.16.840.1.101.3.4.1.1": "aes-128-ecb",
+"2.16.840.1.101.3.4.1.2": "aes-128-cbc",
+"2.16.840.1.101.3.4.1.3": "aes-128-ofb",
+"2.16.840.1.101.3.4.1.4": "aes-128-cfb",
+"2.16.840.1.101.3.4.1.21": "aes-192-ecb",
+"2.16.840.1.101.3.4.1.22": "aes-192-cbc",
+"2.16.840.1.101.3.4.1.23": "aes-192-ofb",
+"2.16.840.1.101.3.4.1.24": "aes-192-cfb",
+"2.16.840.1.101.3.4.1.41": "aes-256-ecb",
+"2.16.840.1.101.3.4.1.42": "aes-256-cbc",
+"2.16.840.1.101.3.4.1.43": "aes-256-ofb",
+"2.16.840.1.101.3.4.1.44": "aes-256-cfb"
+}
+},{}],109:[function(require,module,exports){
+// from https://github.com/indutny/self-signed/blob/gh-pages/lib/asn1.js
+// Fedor, you are amazing.
+'use strict'
+
+var asn1 = require('asn1.js')
+
+exports.certificate = require('./certificate')
+
+var RSAPrivateKey = asn1.define('RSAPrivateKey', function () {
+  this.seq().obj(
+    this.key('version').int(),
+    this.key('modulus').int(),
+    this.key('publicExponent').int(),
+    this.key('privateExponent').int(),
+    this.key('prime1').int(),
+    this.key('prime2').int(),
+    this.key('exponent1').int(),
+    this.key('exponent2').int(),
+    this.key('coefficient').int()
+  )
+})
+exports.RSAPrivateKey = RSAPrivateKey
+
+var RSAPublicKey = asn1.define('RSAPublicKey', function () {
+  this.seq().obj(
+    this.key('modulus').int(),
+    this.key('publicExponent').int()
+  )
+})
+exports.RSAPublicKey = RSAPublicKey
+
+var PublicKey = asn1.define('SubjectPublicKeyInfo', function () {
+  this.seq().obj(
+    this.key('algorithm').use(AlgorithmIdentifier),
+    this.key('subjectPublicKey').bitstr()
+  )
+})
+exports.PublicKey = PublicKey
+
+var AlgorithmIdentifier = asn1.define('AlgorithmIdentifier', function () {
+  this.seq().obj(
+    this.key('algorithm').objid(),
+    this.key('none').null_().optional(),
+    this.key('curve').objid().optional(),
+    this.key('params').seq().obj(
+      this.key('p').int(),
+      this.key('q').int(),
+      this.key('g').int()
+    ).optional()
+  )
+})
+
+var PrivateKeyInfo = asn1.define('PrivateKeyInfo', function () {
+  this.seq().obj(
+    this.key('version').int(),
+    this.key('algorithm').use(AlgorithmIdentifier),
+    this.key('subjectPrivateKey').octstr()
+  )
+})
+exports.PrivateKey = PrivateKeyInfo
+var EncryptedPrivateKeyInfo = asn1.define('EncryptedPrivateKeyInfo', function () {
+  this.seq().obj(
+    this.key('algorithm').seq().obj(
+      this.key('id').objid(),
+      this.key('decrypt').seq().obj(
+        this.key('kde').seq().obj(
+          this.key('id').objid(),
+          this.key('kdeparams').seq().obj(
+            this.key('salt').octstr(),
+            this.key('iters').int()
+          )
+        ),
+        this.key('cipher').seq().obj(
+          this.key('algo').objid(),
+          this.key('iv').octstr()
+        )
+      )
+    ),
+    this.key('subjectPrivateKey').octstr()
+  )
+})
+
+exports.EncryptedPrivateKey = EncryptedPrivateKeyInfo
+
+var DSAPrivateKey = asn1.define('DSAPrivateKey', function () {
+  this.seq().obj(
+    this.key('version').int(),
+    this.key('p').int(),
+    this.key('q').int(),
+    this.key('g').int(),
+    this.key('pub_key').int(),
+    this.key('priv_key').int()
+  )
+})
+exports.DSAPrivateKey = DSAPrivateKey
+
+exports.DSAparam = asn1.define('DSAparam', function () {
+  this.int()
+})
+
+var ECPrivateKey = asn1.define('ECPrivateKey', function () {
+  this.seq().obj(
+    this.key('version').int(),
+    this.key('privateKey').octstr(),
+    this.key('parameters').optional().explicit(0).use(ECParameters),
+    this.key('publicKey').optional().explicit(1).bitstr()
+  )
+})
+exports.ECPrivateKey = ECPrivateKey
+
+var ECParameters = asn1.define('ECParameters', function () {
+  this.choice({
+    namedCurve: this.objid()
+  })
+})
+
+exports.signature = asn1.define('signature', function () {
+  this.seq().obj(
+    this.key('r').int(),
+    this.key('s').int()
+  )
+})
+
+},{"./certificate":110,"asn1.js":3}],110:[function(require,module,exports){
+// from https://github.com/Rantanen/node-dtls/blob/25a7dc861bda38cfeac93a723500eea4f0ac2e86/Certificate.js
+// thanks to @Rantanen
+
+'use strict'
+
+var asn = require('asn1.js')
+
+var Time = asn.define('Time', function () {
+  this.choice({
+    utcTime: this.utctime(),
+    generalTime: this.gentime()
+  })
+})
+
+var AttributeTypeValue = asn.define('AttributeTypeValue', function () {
+  this.seq().obj(
+    this.key('type').objid(),
+    this.key('value').any()
+  )
+})
+
+var AlgorithmIdentifier = asn.define('AlgorithmIdentifier', function () {
+  this.seq().obj(
+    this.key('algorithm').objid(),
+    this.key('parameters').optional()
+  )
+})
+
+var SubjectPublicKeyInfo = asn.define('SubjectPublicKeyInfo', function () {
+  this.seq().obj(
+    this.key('algorithm').use(AlgorithmIdentifier),
+    this.key('subjectPublicKey').bitstr()
+  )
+})
+
+var RelativeDistinguishedName = asn.define('RelativeDistinguishedName', function () {
+  this.setof(AttributeTypeValue)
+})
+
+var RDNSequence = asn.define('RDNSequence', function () {
+  this.seqof(RelativeDistinguishedName)
+})
+
+var Name = asn.define('Name', function () {
+  this.choice({
+    rdnSequence: this.use(RDNSequence)
+  })
+})
+
+var Validity = asn.define('Validity', function () {
+  this.seq().obj(
+    this.key('notBefore').use(Time),
+    this.key('notAfter').use(Time)
+  )
+})
+
+var Extension = asn.define('Extension', function () {
+  this.seq().obj(
+    this.key('extnID').objid(),
+    this.key('critical').bool().def(false),
+    this.key('extnValue').octstr()
+  )
+})
+
+var TBSCertificate = asn.define('TBSCertificate', function () {
+  this.seq().obj(
+    this.key('version').explicit(0).int(),
+    this.key('serialNumber').int(),
+    this.key('signature').use(AlgorithmIdentifier),
+    this.key('issuer').use(Name),
+    this.key('validity').use(Validity),
+    this.key('subject').use(Name),
+    this.key('subjectPublicKeyInfo').use(SubjectPublicKeyInfo),
+    this.key('issuerUniqueID').implicit(1).bitstr().optional(),
+    this.key('subjectUniqueID').implicit(2).bitstr().optional(),
+    this.key('extensions').explicit(3).seqof(Extension).optional()
+  )
+})
+
+var X509Certificate = asn.define('X509Certificate', function () {
+  this.seq().obj(
+    this.key('tbsCertificate').use(TBSCertificate),
+    this.key('signatureAlgorithm').use(AlgorithmIdentifier),
+    this.key('signatureValue').bitstr()
+  )
+})
+
+module.exports = X509Certificate
+
+},{"asn1.js":3}],111:[function(require,module,exports){
+(function (Buffer){
+// adapted from https://github.com/apatil/pemstrip
+var findProc = /Proc-Type: 4,ENCRYPTED[\n\r]+DEK-Info: AES-((?:128)|(?:192)|(?:256))-CBC,([0-9A-H]+)[\n\r]+([0-9A-z\n\r\+\/\=]+)[\n\r]+/m
+var startRegex = /^-----BEGIN ((?:.* KEY)|CERTIFICATE)-----/m
+var fullRegex = /^-----BEGIN ((?:.* KEY)|CERTIFICATE)-----([0-9A-z\n\r\+\/\=]+)-----END \1-----$/m
+var evp = require('evp_bytestokey')
+var ciphers = require('browserify-aes')
+module.exports = function (okey, password) {
+  var key = okey.toString()
+  var match = key.match(findProc)
+  var decrypted
+  if (!match) {
+    var match2 = key.match(fullRegex)
+    decrypted = new Buffer(match2[2].replace(/[\r\n]/g, ''), 'base64')
+  } else {
+    var suite = 'aes' + match[1]
+    var iv = new Buffer(match[2], 'hex')
+    var cipherText = new Buffer(match[3].replace(/[\r\n]/g, ''), 'base64')
+    var cipherKey = evp(password, iv.slice(0, 8), parseInt(match[1], 10)).key
+    var out = []
+    var cipher = ciphers.createDecipheriv(suite, cipherKey, iv)
+    out.push(cipher.update(cipherText))
+    out.push(cipher.final())
+    decrypted = Buffer.concat(out)
+  }
+  var tag = key.match(startRegex)[1]
+  return {
+    tag: tag,
+    data: decrypted
+  }
+}
+
+}).call(this,require("buffer").Buffer)
+},{"browserify-aes":23,"buffer":49,"evp_bytestokey":85}],112:[function(require,module,exports){
+(function (Buffer){
+var asn1 = require('./asn1')
+var aesid = require('./aesid.json')
+var fixProc = require('./fixProc')
+var ciphers = require('browserify-aes')
+var compat = require('pbkdf2')
+module.exports = parseKeys
+
+function parseKeys (buffer) {
+  var password
+  if (typeof buffer === 'object' && !Buffer.isBuffer(buffer)) {
+    password = buffer.passphrase
+    buffer = buffer.key
+  }
+  if (typeof buffer === 'string') {
+    buffer = new Buffer(buffer)
+  }
+
+  var stripped = fixProc(buffer, password)
+
+  var type = stripped.tag
+  var data = stripped.data
+  var subtype, ndata
+  switch (type) {
+    case 'CERTIFICATE':
+      ndata = asn1.certificate.decode(data, 'der').tbsCertificate.subjectPublicKeyInfo
+      // falls through
+    case 'PUBLIC KEY':
+      if (!ndata) {
+        ndata = asn1.PublicKey.decode(data, 'der')
+      }
+      subtype = ndata.algorithm.algorithm.join('.')
+      switch (subtype) {
+        case '1.2.840.113549.1.1.1':
+          return asn1.RSAPublicKey.decode(ndata.subjectPublicKey.data, 'der')
+        case '1.2.840.10045.2.1':
+          ndata.subjectPrivateKey = ndata.subjectPublicKey
+          return {
+            type: 'ec',
+            data: ndata
+          }
+        case '1.2.840.10040.4.1':
+          ndata.algorithm.params.pub_key = asn1.DSAparam.decode(ndata.subjectPublicKey.data, 'der')
+          return {
+            type: 'dsa',
+            data: ndata.algorithm.params
+          }
+        default: throw new Error('unknown key id ' + subtype)
+      }
+      throw new Error('unknown key type ' + type)
+    case 'ENCRYPTED PRIVATE KEY':
+      data = asn1.EncryptedPrivateKey.decode(data, 'der')
+      data = decrypt(data, password)
+      // falls through
+    case 'PRIVATE KEY':
+      ndata = asn1.PrivateKey.decode(data, 'der')
+      subtype = ndata.algorithm.algorithm.join('.')
+      switch (subtype) {
+        case '1.2.840.113549.1.1.1':
+          return asn1.RSAPrivateKey.decode(ndata.subjectPrivateKey, 'der')
+        case '1.2.840.10045.2.1':
+          return {
+            curve: ndata.algorithm.curve,
+            privateKey: asn1.ECPrivateKey.decode(ndata.subjectPrivateKey, 'der').privateKey
+          }
+        case '1.2.840.10040.4.1':
+          ndata.algorithm.params.priv_key = asn1.DSAparam.decode(ndata.subjectPrivateKey, 'der')
+          return {
+            type: 'dsa',
+            params: ndata.algorithm.params
+          }
+        default: throw new Error('unknown key id ' + subtype)
+      }
+      throw new Error('unknown key type ' + type)
+    case 'RSA PUBLIC KEY':
+      return asn1.RSAPublicKey.decode(data, 'der')
+    case 'RSA PRIVATE KEY':
+      return asn1.RSAPrivateKey.decode(data, 'der')
+    case 'DSA PRIVATE KEY':
+      return {
+        type: 'dsa',
+        params: asn1.DSAPrivateKey.decode(data, 'der')
+      }
+    case 'EC PRIVATE KEY':
+      data = asn1.ECPrivateKey.decode(data, 'der')
+      return {
+        curve: data.parameters.value,
+        privateKey: data.privateKey
+      }
+    default: throw new Error('unknown key type ' + type)
+  }
+}
+parseKeys.signature = asn1.signature
+function decrypt (data, password) {
+  var salt = data.algorithm.decrypt.kde.kdeparams.salt
+  var iters = parseInt(data.algorithm.decrypt.kde.kdeparams.iters.toString(), 10)
+  var algo = aesid[data.algorithm.decrypt.cipher.algo.join('.')]
+  var iv = data.algorithm.decrypt.cipher.iv
+  var cipherText = data.subjectPrivateKey
+  var keylen = parseInt(algo.split('-')[1], 10) / 8
+  var key = compat.pbkdf2Sync(password, salt, iters, keylen)
+  var cipher = ciphers.createDecipheriv(algo, key, iv)
+  var out = []
+  out.push(cipher.update(cipherText))
+  out.push(cipher.final())
+  return Buffer.concat(out)
+}
+
+}).call(this,require("buffer").Buffer)
+},{"./aesid.json":108,"./asn1":109,"./fixProc":111,"browserify-aes":23,"buffer":49,"pbkdf2":113}],113:[function(require,module,exports){
+exports.pbkdf2 = require('./lib/async')
+exports.pbkdf2Sync = require('./lib/sync')
+
+},{"./lib/async":114,"./lib/sync":117}],114:[function(require,module,exports){
+(function (process,global){
+var checkParameters = require('./precondition')
+var defaultEncoding = require('./default-encoding')
+var sync = require('./sync')
+var Buffer = require('safe-buffer').Buffer
+
+var ZERO_BUF
+var subtle = global.crypto && global.crypto.subtle
+var toBrowser = {
+  'sha': 'SHA-1',
+  'sha-1': 'SHA-1',
+  'sha1': 'SHA-1',
+  'sha256': 'SHA-256',
+  'sha-256': 'SHA-256',
+  'sha384': 'SHA-384',
+  'sha-384': 'SHA-384',
+  'sha-512': 'SHA-512',
+  'sha512': 'SHA-512'
+}
+var checks = []
+function checkNative (algo) {
+  if (global.process && !global.process.browser) {
+    return Promise.resolve(false)
+  }
+  if (!subtle || !subtle.importKey || !subtle.deriveBits) {
+    return Promise.resolve(false)
+  }
+  if (checks[algo] !== undefined) {
+    return checks[algo]
+  }
+  ZERO_BUF = ZERO_BUF || Buffer.alloc(8)
+  var prom = browserPbkdf2(ZERO_BUF, ZERO_BUF, 10, 128, algo)
+    .then(function () {
+      return true
+    }).catch(function () {
+      return false
+    })
+  checks[algo] = prom
+  return prom
+}
+
+function browserPbkdf2 (password, salt, iterations, length, algo) {
+  return subtle.importKey(
+    'raw', password, {name: 'PBKDF2'}, false, ['deriveBits']
+  ).then(function (key) {
+    return subtle.deriveBits({
+      name: 'PBKDF2',
+      salt: salt,
+      iterations: iterations,
+      hash: {
+        name: algo
+      }
+    }, key, length << 3)
+  }).then(function (res) {
+    return Buffer.from(res)
+  })
+}
+
+function resolvePromise (promise, callback) {
+  promise.then(function (out) {
+    process.nextTick(function () {
+      callback(null, out)
+    })
+  }, function (e) {
+    process.nextTick(function () {
+      callback(e)
+    })
+  })
+}
+module.exports = function (password, salt, iterations, keylen, digest, callback) {
+  if (typeof digest === 'function') {
+    callback = digest
+    digest = undefined
+  }
+
+  digest = digest || 'sha1'
+  var algo = toBrowser[digest.toLowerCase()]
+
+  if (!algo || typeof global.Promise !== 'function') {
+    return process.nextTick(function () {
+      var out
+      try {
+        out = sync(password, salt, iterations, keylen, digest)
+      } catch (e) {
+        return callback(e)
+      }
+      callback(null, out)
+    })
+  }
+
+  checkParameters(password, salt, iterations, keylen)
+  if (typeof callback !== 'function') throw new Error('No callback provided to pbkdf2')
+  if (!Buffer.isBuffer(password)) password = Buffer.from(password, defaultEncoding)
+  if (!Buffer.isBuffer(salt)) salt = Buffer.from(salt, defaultEncoding)
+
+  resolvePromise(checkNative(algo).then(function (resp) {
+    if (resp) return browserPbkdf2(password, salt, iterations, keylen, algo)
+
+    return sync(password, salt, iterations, keylen, digest)
+  }), callback)
+}
+
+}).call(this,require('_process'),typeof global !== "undefined" ? global : typeof self !== "undefined" ? self : typeof window !== "undefined" ? window : {})
+},{"./default-encoding":115,"./precondition":116,"./sync":117,"_process":119,"safe-buffer":146}],115:[function(require,module,exports){
+(function (process){
+var defaultEncoding
+/* istanbul ignore next */
+if (process.browser) {
+  defaultEncoding = 'utf-8'
+} else {
+  var pVersionMajor = parseInt(process.version.split('.')[0].slice(1), 10)
+
+  defaultEncoding = pVersionMajor >= 6 ? 'utf-8' : 'binary'
+}
+module.exports = defaultEncoding
+
+}).call(this,require('_process'))
+},{"_process":119}],116:[function(require,module,exports){
+(function (Buffer){
+var MAX_ALLOC = Math.pow(2, 30) - 1 // default in iojs
+
+function checkBuffer (buf, name) {
+  if (typeof buf !== 'string' && !Buffer.isBuffer(buf)) {
+    throw new TypeError(name + ' must be a buffer or string')
+  }
+}
+
+module.exports = function (password, salt, iterations, keylen) {
+  checkBuffer(password, 'Password')
+  checkBuffer(salt, 'Salt')
+
+  if (typeof iterations !== 'number') {
+    throw new TypeError('Iterations not a number')
+  }
+
+  if (iterations < 0) {
+    throw new TypeError('Bad iterations')
+  }
+
+  if (typeof keylen !== 'number') {
+    throw new TypeError('Key length not a number')
+  }
+
+  if (keylen < 0 || keylen > MAX_ALLOC || keylen !== keylen) { /* eslint no-self-compare: 0 */
+    throw new TypeError('Bad key length')
+  }
+}
+
+}).call(this,{"isBuffer":require("../../is-buffer/index.js")})
+},{"../../is-buffer/index.js":102}],117:[function(require,module,exports){
+var md5 = require('create-hash/md5')
+var rmd160 = require('ripemd160')
+var sha = require('sha.js')
+
+var checkParameters = require('./precondition')
+var defaultEncoding = require('./default-encoding')
+var Buffer = require('safe-buffer').Buffer
+var ZEROS = Buffer.alloc(128)
+var sizes = {
+  md5: 16,
+  sha1: 20,
+  sha224: 28,
+  sha256: 32,
+  sha384: 48,
+  sha512: 64,
+  rmd160: 20,
+  ripemd160: 20
+}
+
+function Hmac (alg, key, saltLen) {
+  var hash = getDigest(alg)
+  var blocksize = (alg === 'sha512' || alg === 'sha384') ? 128 : 64
+
+  if (key.length > blocksize) {
+    key = hash(key)
+  } else if (key.length < blocksize) {
+    key = Buffer.concat([key, ZEROS], blocksize)
+  }
+
+  var ipad = Buffer.allocUnsafe(blocksize + sizes[alg])
+  var opad = Buffer.allocUnsafe(blocksize + sizes[alg])
+  for (var i = 0; i < blocksize; i++) {
+    ipad[i] = key[i] ^ 0x36
+    opad[i] = key[i] ^ 0x5C
+  }
+
+  var ipad1 = Buffer.allocUnsafe(blocksize + saltLen + 4)
+  ipad.copy(ipad1, 0, 0, blocksize)
+  this.ipad1 = ipad1
+  this.ipad2 = ipad
+  this.opad = opad
+  this.alg = alg
+  this.blocksize = blocksize
+  this.hash = hash
+  this.size = sizes[alg]
+}
+
+Hmac.prototype.run = function (data, ipad) {
+  data.copy(ipad, this.blocksize)
+  var h = this.hash(ipad)
+  h.copy(this.opad, this.blocksize)
+  return this.hash(this.opad)
+}
+
+function getDigest (alg) {
+  function shaFunc (data) {
+    return sha(alg).update(data).digest()
+  }
+
+  if (alg === 'rmd160' || alg === 'ripemd160') return rmd160
+  if (alg === 'md5') return md5
+  return shaFunc
+}
+
+function pbkdf2 (password, salt, iterations, keylen, digest) {
+  checkParameters(password, salt, iterations, keylen)
+
+  if (!Buffer.isBuffer(password)) password = Buffer.from(password, defaultEncoding)
+  if (!Buffer.isBuffer(salt)) salt = Buffer.from(salt, defaultEncoding)
+
+  digest = digest || 'sha1'
+
+  var hmac = new Hmac(digest, password, salt.length)
+
+  var DK = Buffer.allocUnsafe(keylen)
+  var block1 = Buffer.allocUnsafe(salt.length + 4)
+  salt.copy(block1, 0, 0, salt.length)
+
+  var destPos = 0
+  var hLen = sizes[digest]
+  var l = Math.ceil(keylen / hLen)
+
+  for (var i = 1; i <= l; i++) {
+    block1.writeUInt32BE(i, salt.length)
+
+    var T = hmac.run(block1, hmac.ipad1)
+    var U = T
+
+    for (var j = 1; j < iterations; j++) {
+      U = hmac.run(U, hmac.ipad2)
+      for (var k = 0; k < hLen; k++) T[k] ^= U[k]
+    }
+
+    T.copy(DK, destPos)
+    destPos += hLen
+  }
+
+  return DK
+}
+
+module.exports = pbkdf2
+
+},{"./default-encoding":115,"./precondition":116,"create-hash/md5":54,"ripemd160":145,"safe-buffer":146,"sha.js":148}],118:[function(require,module,exports){
+(function (process){
+'use strict';
+
+if (!process.version ||
+    process.version.indexOf('v0.') === 0 ||
+    process.version.indexOf('v1.') === 0 && process.version.indexOf('v1.8.') !== 0) {
+  module.exports = { nextTick: nextTick };
+} else {
+  module.exports = process
+}
+
+function nextTick(fn, arg1, arg2, arg3) {
+  if (typeof fn !== 'function') {
+    throw new TypeError('"callback" argument must be a function');
+  }
+  var len = arguments.length;
+  var args, i;
+  switch (len) {
+  case 0:
+  case 1:
+    return process.nextTick(fn);
+  case 2:
+    return process.nextTick(function afterTickOne() {
+      fn.call(null, arg1);
+    });
+  case 3:
+    return process.nextTick(function afterTickTwo() {
+      fn.call(null, arg1, arg2);
+    });
+  case 4:
+    return process.nextTick(function afterTickThree() {
+      fn.call(null, arg1, arg2, arg3);
+    });
+  default:
+    args = new Array(len - 1);
+    i = 0;
+    while (i < args.length) {
+      args[i++] = arguments[i];
+    }
+    return process.nextTick(function afterTick() {
+      fn.apply(null, args);
+    });
+  }
+}
+
+
+}).call(this,require('_process'))
+},{"_process":119}],119:[function(require,module,exports){
+// shim for using process in browser
+var process = module.exports = {};
+
+// cached from whatever global is present so that test runners that stub it
+// don't break things.  But we need to wrap it in a try catch in case it is
+// wrapped in strict mode code which doesn't define any globals.  It's inside a
+// function because try/catches deoptimize in certain engines.
+
+var cachedSetTimeout;
+var cachedClearTimeout;
+
+function defaultSetTimout() {
+    throw new Error('setTimeout has not been defined');
+}
+function defaultClearTimeout () {
+    throw new Error('clearTimeout has not been defined');
+}
+(function () {
+    try {
+        if (typeof setTimeout === 'function') {
+            cachedSetTimeout = setTimeout;
+        } else {
+            cachedSetTimeout = defaultSetTimout;
+        }
+    } catch (e) {
+        cachedSetTimeout = defaultSetTimout;
+    }
+    try {
+        if (typeof clearTimeout === 'function') {
+            cachedClearTimeout = clearTimeout;
+        } else {
+            cachedClearTimeout = defaultClearTimeout;
+        }
+    } catch (e) {
+        cachedClearTimeout = defaultClearTimeout;
+    }
+} ())
+function runTimeout(fun) {
+    if (cachedSetTimeout === setTimeout) {
+        //normal enviroments in sane situations
+        return setTimeout(fun, 0);
+    }
+    // if setTimeout wasn't available but was latter defined
+    if ((cachedSetTimeout === defaultSetTimout || !cachedSetTimeout) && setTimeout) {
+        cachedSetTimeout = setTimeout;
+        return setTimeout(fun, 0);
+    }
+    try {
+        // when when somebody has screwed with setTimeout but no I.E. maddness
+        return cachedSetTimeout(fun, 0);
+    } catch(e){
+        try {
+            // When we are in I.E. but the script has been evaled so I.E. doesn't trust the global object when called normally
+            return cachedSetTimeout.call(null, fun, 0);
+        } catch(e){
+            // same as above but when it's a version of I.E. that must have the global object for 'this', hopfully our context correct otherwise it will throw a global error
+            return cachedSetTimeout.call(this, fun, 0);
+        }
+    }
+
+
+}
+function runClearTimeout(marker) {
+    if (cachedClearTimeout === clearTimeout) {
+        //normal enviroments in sane situations
+        return clearTimeout(marker);
+    }
+    // if clearTimeout wasn't available but was latter defined
+    if ((cachedClearTimeout === defaultClearTimeout || !cachedClearTimeout) && clearTimeout) {
+        cachedClearTimeout = clearTimeout;
+        return clearTimeout(marker);
+    }
+    try {
+        // when when somebody has screwed with setTimeout but no I.E. maddness
+        return cachedClearTimeout(marker);
+    } catch (e){
+        try {
+            // When we are in I.E. but the script has been evaled so I.E. doesn't  trust the global object when called normally
+            return cachedClearTimeout.call(null, marker);
+        } catch (e){
+            // same as above but when it's a version of I.E. that must have the global object for 'this', hopfully our context correct otherwise it will throw a global error.
+            // Some versions of I.E. have different rules for clearTimeout vs setTimeout
+            return cachedClearTimeout.call(this, marker);
+        }
+    }
+
+
+
+}
+var queue = [];
+var draining = false;
+var currentQueue;
+var queueIndex = -1;
+
+function cleanUpNextTick() {
+    if (!draining || !currentQueue) {
+        return;
+    }
+    draining = false;
+    if (currentQueue.length) {
+        queue = currentQueue.concat(queue);
+    } else {
+        queueIndex = -1;
+    }
+    if (queue.length) {
+        drainQueue();
+    }
+}
+
+function drainQueue() {
+    if (draining) {
+        return;
+    }
+    var timeout = runTimeout(cleanUpNextTick);
+    draining = true;
+
+    var len = queue.length;
+    while(len) {
+        currentQueue = queue;
+        queue = [];
+        while (++queueIndex < len) {
+            if (currentQueue) {
+                currentQueue[queueIndex].run();
+            }
+        }
+        queueIndex = -1;
+        len = queue.length;
+    }
+    currentQueue = null;
+    draining = false;
+    runClearTimeout(timeout);
+}
+
+process.nextTick = function (fun) {
+    var args = new Array(arguments.length - 1);
+    if (arguments.length > 1) {
+        for (var i = 1; i < arguments.length; i++) {
+            args[i - 1] = arguments[i];
+        }
+    }
+    queue.push(new Item(fun, args));
+    if (queue.length === 1 && !draining) {
+        runTimeout(drainQueue);
+    }
+};
+
+// v8 likes predictible objects
+function Item(fun, array) {
+    this.fun = fun;
+    this.array = array;
+}
+Item.prototype.run = function () {
+    this.fun.apply(null, this.array);
+};
+process.title = 'browser';
+process.browser = true;
+process.env = {};
+process.argv = [];
+process.version = ''; // empty string to avoid regexp issues
+process.versions = {};
+
+function noop() {}
+
+process.on = noop;
+process.addListener = noop;
+process.once = noop;
+process.off = noop;
+process.removeListener = noop;
+process.removeAllListeners = noop;
+process.emit = noop;
+process.prependListener = noop;
+process.prependOnceListener = noop;
+
+process.listeners = function (name) { return [] }
+
+process.binding = function (name) {
+    throw new Error('process.binding is not supported');
+};
+
+process.cwd = function () { return '/' };
+process.chdir = function (dir) {
+    throw new Error('process.chdir is not supported');
+};
+process.umask = function() { return 0; };
+
+},{}],120:[function(require,module,exports){
+exports.publicEncrypt = require('./publicEncrypt');
+exports.privateDecrypt = require('./privateDecrypt');
+
+exports.privateEncrypt = function privateEncrypt(key, buf) {
+  return exports.publicEncrypt(key, buf, true);
+};
+
+exports.publicDecrypt = function publicDecrypt(key, buf) {
+  return exports.privateDecrypt(key, buf, true);
+};
+},{"./privateDecrypt":122,"./publicEncrypt":123}],121:[function(require,module,exports){
+(function (Buffer){
+var createHash = require('create-hash');
+module.exports = function (seed, len) {
+  var t = new Buffer('');
+  var  i = 0, c;
+  while (t.length < len) {
+    c = i2ops(i++);
+    t = Buffer.concat([t, createHash('sha1').update(seed).update(c).digest()]);
+  }
+  return t.slice(0, len);
+};
+
+function i2ops(c) {
+  var out = new Buffer(4);
+  out.writeUInt32BE(c,0);
+  return out;
+}
+}).call(this,require("buffer").Buffer)
+},{"buffer":49,"create-hash":53}],122:[function(require,module,exports){
+(function (Buffer){
+var parseKeys = require('parse-asn1');
+var mgf = require('./mgf');
+var xor = require('./xor');
+var bn = require('bn.js');
+var crt = require('browserify-rsa');
+var createHash = require('create-hash');
+var withPublic = require('./withPublic');
+module.exports = function privateDecrypt(private_key, enc, reverse) {
+  var padding;
+  if (private_key.padding) {
+    padding = private_key.padding;
+  } else if (reverse) {
+    padding = 1;
+  } else {
+    padding = 4;
+  }
+  
+  var key = parseKeys(private_key);
+  var k = key.modulus.byteLength();
+  if (enc.length > k || new bn(enc).cmp(key.modulus) >= 0) {
+    throw new Error('decryption error');
+  }
+  var msg;
+  if (reverse) {
+    msg = withPublic(new bn(enc), key);
+  } else {
+    msg = crt(enc, key);
+  }
+  var zBuffer = new Buffer(k - msg.length);
+  zBuffer.fill(0);
+  msg = Buffer.concat([zBuffer, msg], k);
+  if (padding === 4) {
+    return oaep(key, msg);
+  } else if (padding === 1) {
+    return pkcs1(key, msg, reverse);
+  } else if (padding === 3) {
+    return msg;
+  } else {
+    throw new Error('unknown padding');
+  }
+};
+
+function oaep(key, msg){
+  var n = key.modulus;
+  var k = key.modulus.byteLength();
+  var mLen = msg.length;
+  var iHash = createHash('sha1').update(new Buffer('')).digest();
+  var hLen = iHash.length;
+  var hLen2 = 2 * hLen;
+  if (msg[0] !== 0) {
+    throw new Error('decryption error');
+  }
+  var maskedSeed = msg.slice(1, hLen + 1);
+  var maskedDb =  msg.slice(hLen + 1);
+  var seed = xor(maskedSeed, mgf(maskedDb, hLen));
+  var db = xor(maskedDb, mgf(seed, k - hLen - 1));
+  if (compare(iHash, db.slice(0, hLen))) {
+    throw new Error('decryption error');
+  }
+  var i = hLen;
+  while (db[i] === 0) {
+    i++;
+  }
+  if (db[i++] !== 1) {
+    throw new Error('decryption error');
+  }
+  return db.slice(i);
+}
+
+function pkcs1(key, msg, reverse){
+  var p1 = msg.slice(0, 2);
+  var i = 2;
+  var status = 0;
+  while (msg[i++] !== 0) {
+    if (i >= msg.length) {
+      status++;
+      break;
+    }
+  }
+  var ps = msg.slice(2, i - 1);
+  var p2 = msg.slice(i - 1, i);
+
+  if ((p1.toString('hex') !== '0002' && !reverse) || (p1.toString('hex') !== '0001' && reverse)){
+    status++;
+  }
+  if (ps.length < 8) {
+    status++;
+  }
+  if (status) {
+    throw new Error('decryption error');
+  }
+  return  msg.slice(i);
+}
+function compare(a, b){
+  a = new Buffer(a);
+  b = new Buffer(b);
+  var dif = 0;
+  var len = a.length;
+  if (a.length !== b.length) {
+    dif++;
+    len = Math.min(a.length, b.length);
+  }
+  var i = -1;
+  while (++i < len) {
+    dif += (a[i] ^ b[i]);
+  }
+  return dif;
+}
+}).call(this,require("buffer").Buffer)
+},{"./mgf":121,"./withPublic":124,"./xor":125,"bn.js":18,"browserify-rsa":41,"buffer":49,"create-hash":53,"parse-asn1":112}],123:[function(require,module,exports){
+(function (Buffer){
+var parseKeys = require('parse-asn1');
+var randomBytes = require('randombytes');
+var createHash = require('create-hash');
+var mgf = require('./mgf');
+var xor = require('./xor');
+var bn = require('bn.js');
+var withPublic = require('./withPublic');
+var crt = require('browserify-rsa');
+
+var constants = {
+  RSA_PKCS1_OAEP_PADDING: 4,
+  RSA_PKCS1_PADDIN: 1,
+  RSA_NO_PADDING: 3
+};
+
+module.exports = function publicEncrypt(public_key, msg, reverse) {
+  var padding;
+  if (public_key.padding) {
+    padding = public_key.padding;
+  } else if (reverse) {
+    padding = 1;
+  } else {
+    padding = 4;
+  }
+  var key = parseKeys(public_key);
+  var paddedMsg;
+  if (padding === 4) {
+    paddedMsg = oaep(key, msg);
+  } else if (padding === 1) {
+    paddedMsg = pkcs1(key, msg, reverse);
+  } else if (padding === 3) {
+    paddedMsg = new bn(msg);
+    if (paddedMsg.cmp(key.modulus) >= 0) {
+      throw new Error('data too long for modulus');
+    }
+  } else {
+    throw new Error('unknown padding');
+  }
+  if (reverse) {
+    return crt(paddedMsg, key);
+  } else {
+    return withPublic(paddedMsg, key);
+  }
+};
+
+function oaep(key, msg){
+  var k = key.modulus.byteLength();
+  var mLen = msg.length;
+  var iHash = createHash('sha1').update(new Buffer('')).digest();
+  var hLen = iHash.length;
+  var hLen2 = 2 * hLen;
+  if (mLen > k - hLen2 - 2) {
+    throw new Error('message too long');
+  }
+  var ps = new Buffer(k - mLen - hLen2 - 2);
+  ps.fill(0);
+  var dblen = k - hLen - 1;
+  var seed = randomBytes(hLen);
+  var maskedDb = xor(Buffer.concat([iHash, ps, new Buffer([1]), msg], dblen), mgf(seed, dblen));
+  var maskedSeed = xor(seed, mgf(maskedDb, hLen));
+  return new bn(Buffer.concat([new Buffer([0]), maskedSeed, maskedDb], k));
+}
+function pkcs1(key, msg, reverse){
+  var mLen = msg.length;
+  var k = key.modulus.byteLength();
+  if (mLen > k - 11) {
+    throw new Error('message too long');
+  }
+  var ps;
+  if (reverse) {
+    ps = new Buffer(k - mLen - 3);
+    ps.fill(0xff);
+  } else {
+    ps = nonZero(k - mLen - 3);
+  }
+  return new bn(Buffer.concat([new Buffer([0, reverse?1:2]), ps, new Buffer([0]), msg], k));
+}
+function nonZero(len, crypto) {
+  var out = new Buffer(len);
+  var i = 0;
+  var cache = randomBytes(len*2);
+  var cur = 0;
+  var num;
+  while (i < len) {
+    if (cur === cache.length) {
+      cache = randomBytes(len*2);
+      cur = 0;
+    }
+    num = cache[cur++];
+    if (num) {
+      out[i++] = num;
+    }
+  }
+  return out;
+}
+}).call(this,require("buffer").Buffer)
+},{"./mgf":121,"./withPublic":124,"./xor":125,"bn.js":18,"browserify-rsa":41,"buffer":49,"create-hash":53,"parse-asn1":112,"randombytes":130}],124:[function(require,module,exports){
+(function (Buffer){
+var bn = require('bn.js');
+function withPublic(paddedMsg, key) {
+  return new Buffer(paddedMsg
+    .toRed(bn.mont(key.modulus))
+    .redPow(new bn(key.publicExponent))
+    .fromRed()
+    .toArray());
+}
+
+module.exports = withPublic;
+}).call(this,require("buffer").Buffer)
+},{"bn.js":18,"buffer":49}],125:[function(require,module,exports){
+module.exports = function xor(a, b) {
+  var len = a.length;
+  var i = -1;
+  while (++i < len) {
+    a[i] ^= b[i];
+  }
+  return a
+};
+},{}],126:[function(require,module,exports){
+(function (global){
+/*! https://mths.be/punycode v1.4.1 by @mathias */
+;(function(root) {
+
+	/** Detect free variables */
+	var freeExports = typeof exports == 'object' && exports &&
+		!exports.nodeType && exports;
+	var freeModule = typeof module == 'object' && module &&
+		!module.nodeType && module;
+	var freeGlobal = typeof global == 'object' && global;
+	if (
+		freeGlobal.global === freeGlobal ||
+		freeGlobal.window === freeGlobal ||
+		freeGlobal.self === freeGlobal
+	) {
+		root = freeGlobal;
+	}
+
+	/**
+	 * The `punycode` object.
+	 * @name punycode
+	 * @type Object
+	 */
+	var punycode,
+
+	/** Highest positive signed 32-bit float value */
+	maxInt = 2147483647, // aka. 0x7FFFFFFF or 2^31-1
+
+	/** Bootstring parameters */
+	base = 36,
+	tMin = 1,
+	tMax = 26,
+	skew = 38,
+	damp = 700,
+	initialBias = 72,
+	initialN = 128, // 0x80
+	delimiter = '-', // '\x2D'
+
+	/** Regular expressions */
+	regexPunycode = /^xn--/,
+	regexNonASCII = /[^\x20-\x7E]/, // unprintable ASCII chars + non-ASCII chars
+	regexSeparators = /[\x2E\u3002\uFF0E\uFF61]/g, // RFC 3490 separators
+
+	/** Error messages */
+	errors = {
+		'overflow': 'Overflow: input needs wider integers to process',
+		'not-basic': 'Illegal input >= 0x80 (not a basic code point)',
+		'invalid-input': 'Invalid input'
+	},
+
+	/** Convenience shortcuts */
+	baseMinusTMin = base - tMin,
+	floor = Math.floor,
+	stringFromCharCode = String.fromCharCode,
+
+	/** Temporary variable */
+	key;
+
+	/*--------------------------------------------------------------------------*/
+
+	/**
+	 * A generic error utility function.
+	 * @private
+	 * @param {String} type The error type.
+	 * @returns {Error} Throws a `RangeError` with the applicable error message.
+	 */
+	function error(type) {
+		throw new RangeError(errors[type]);
+	}
+
+	/**
+	 * A generic `Array#map` utility function.
+	 * @private
+	 * @param {Array} array The array to iterate over.
+	 * @param {Function} callback The function that gets called for every array
+	 * item.
+	 * @returns {Array} A new array of values returned by the callback function.
+	 */
+	function map(array, fn) {
+		var length = array.length;
+		var result = [];
+		while (length--) {
+			result[length] = fn(array[length]);
+		}
+		return result;
+	}
+
+	/**
+	 * A simple `Array#map`-like wrapper to work with domain name strings or email
+	 * addresses.
+	 * @private
+	 * @param {String} domain The domain name or email address.
+	 * @param {Function} callback The function that gets called for every
+	 * character.
+	 * @returns {Array} A new string of characters returned by the callback
+	 * function.
+	 */
+	function mapDomain(string, fn) {
+		var parts = string.split('@');
+		var result = '';
+		if (parts.length > 1) {
+			// In email addresses, only the domain name should be punycoded. Leave
+			// the local part (i.e. everything up to `@`) intact.
+			result = parts[0] + '@';
+			string = parts[1];
+		}
+		// Avoid `split(regex)` for IE8 compatibility. See #17.
+		string = string.replace(regexSeparators, '\x2E');
+		var labels = string.split('.');
+		var encoded = map(labels, fn).join('.');
+		return result + encoded;
+	}
+
+	/**
+	 * Creates an array containing the numeric code points of each Unicode
+	 * character in the string. While JavaScript uses UCS-2 internally,
+	 * this function will convert a pair of surrogate halves (each of which
+	 * UCS-2 exposes as separate characters) into a single code point,
+	 * matching UTF-16.
+	 * @see `punycode.ucs2.encode`
+	 * @see <https://mathiasbynens.be/notes/javascript-encoding>
+	 * @memberOf punycode.ucs2
+	 * @name decode
+	 * @param {String} string The Unicode input string (UCS-2).
+	 * @returns {Array} The new array of code points.
+	 */
+	function ucs2decode(string) {
+		var output = [],
+		    counter = 0,
+		    length = string.length,
+		    value,
+		    extra;
+		while (counter < length) {
+			value = string.charCodeAt(counter++);
+			if (value >= 0xD800 && value <= 0xDBFF && counter < length) {
+				// high surrogate, and there is a next character
+				extra = string.charCodeAt(counter++);
+				if ((extra & 0xFC00) == 0xDC00) { // low surrogate
+					output.push(((value & 0x3FF) << 10) + (extra & 0x3FF) + 0x10000);
+				} else {
+					// unmatched surrogate; only append this code unit, in case the next
+					// code unit is the high surrogate of a surrogate pair
+					output.push(value);
+					counter--;
+				}
+			} else {
+				output.push(value);
+			}
+		}
+		return output;
+	}
+
+	/**
+	 * Creates a string based on an array of numeric code points.
+	 * @see `punycode.ucs2.decode`
+	 * @memberOf punycode.ucs2
+	 * @name encode
+	 * @param {Array} codePoints The array of numeric code points.
+	 * @returns {String} The new Unicode string (UCS-2).
+	 */
+	function ucs2encode(array) {
+		return map(array, function(value) {
+			var output = '';
+			if (value > 0xFFFF) {
+				value -= 0x10000;
+				output += stringFromCharCode(value >>> 10 & 0x3FF | 0xD800);
+				value = 0xDC00 | value & 0x3FF;
+			}
+			output += stringFromCharCode(value);
+			return output;
+		}).join('');
+	}
+
+	/**
+	 * Converts a basic code point into a digit/integer.
+	 * @see `digitToBasic()`
+	 * @private
+	 * @param {Number} codePoint The basic numeric code point value.
+	 * @returns {Number} The numeric value of a basic code point (for use in
+	 * representing integers) in the range `0` to `base - 1`, or `base` if
+	 * the code point does not represent a value.
+	 */
+	function basicToDigit(codePoint) {
+		if (codePoint - 48 < 10) {
+			return codePoint - 22;
+		}
+		if (codePoint - 65 < 26) {
+			return codePoint - 65;
+		}
+		if (codePoint - 97 < 26) {
+			return codePoint - 97;
+		}
+		return base;
+	}
+
+	/**
+	 * Converts a digit/integer into a basic code point.
+	 * @see `basicToDigit()`
+	 * @private
+	 * @param {Number} digit The numeric value of a basic code point.
+	 * @returns {Number} The basic code point whose value (when used for
+	 * representing integers) is `digit`, which needs to be in the range
+	 * `0` to `base - 1`. If `flag` is non-zero, the uppercase form is
+	 * used; else, the lowercase form is used. The behavior is undefined
+	 * if `flag` is non-zero and `digit` has no uppercase form.
+	 */
+	function digitToBasic(digit, flag) {
+		//  0..25 map to ASCII a..z or A..Z
+		// 26..35 map to ASCII 0..9
+		return digit + 22 + 75 * (digit < 26) - ((flag != 0) << 5);
+	}
+
+	/**
+	 * Bias adaptation function as per section 3.4 of RFC 3492.
+	 * https://tools.ietf.org/html/rfc3492#section-3.4
+	 * @private
+	 */
+	function adapt(delta, numPoints, firstTime) {
+		var k = 0;
+		delta = firstTime ? floor(delta / damp) : delta >> 1;
+		delta += floor(delta / numPoints);
+		for (/* no initialization */; delta > baseMinusTMin * tMax >> 1; k += base) {
+			delta = floor(delta / baseMinusTMin);
+		}
+		return floor(k + (baseMinusTMin + 1) * delta / (delta + skew));
+	}
+
+	/**
+	 * Converts a Punycode string of ASCII-only symbols to a string of Unicode
+	 * symbols.
+	 * @memberOf punycode
+	 * @param {String} input The Punycode string of ASCII-only symbols.
+	 * @returns {String} The resulting string of Unicode symbols.
+	 */
+	function decode(input) {
+		// Don't use UCS-2
+		var output = [],
+		    inputLength = input.length,
+		    out,
+		    i = 0,
+		    n = initialN,
+		    bias = initialBias,
+		    basic,
+		    j,
+		    index,
+		    oldi,
+		    w,
+		    k,
+		    digit,
+		    t,
+		    /** Cached calculation results */
+		    baseMinusT;
+
+		// Handle the basic code points: let `basic` be the number of input code
+		// points before the last delimiter, or `0` if there is none, then copy
+		// the first basic code points to the output.
+
+		basic = input.lastIndexOf(delimiter);
+		if (basic < 0) {
+			basic = 0;
+		}
+
+		for (j = 0; j < basic; ++j) {
+			// if it's not a basic code point
+			if (input.charCodeAt(j) >= 0x80) {
+				error('not-basic');
+			}
+			output.push(input.charCodeAt(j));
+		}
+
+		// Main decoding loop: start just after the last delimiter if any basic code
+		// points were copied; start at the beginning otherwise.
+
+		for (index = basic > 0 ? basic + 1 : 0; index < inputLength; /* no final expression */) {
+
+			// `index` is the index of the next character to be consumed.
+			// Decode a generalized variable-length integer into `delta`,
+			// which gets added to `i`. The overflow checking is easier
+			// if we increase `i` as we go, then subtract off its starting
+			// value at the end to obtain `delta`.
+			for (oldi = i, w = 1, k = base; /* no condition */; k += base) {
+
+				if (index >= inputLength) {
+					error('invalid-input');
+				}
+
+				digit = basicToDigit(input.charCodeAt(index++));
+
+				if (digit >= base || digit > floor((maxInt - i) / w)) {
+					error('overflow');
+				}
+
+				i += digit * w;
+				t = k <= bias ? tMin : (k >= bias + tMax ? tMax : k - bias);
+
+				if (digit < t) {
+					break;
+				}
+
+				baseMinusT = base - t;
+				if (w > floor(maxInt / baseMinusT)) {
+					error('overflow');
+				}
+
+				w *= baseMinusT;
+
+			}
+
+			out = output.length + 1;
+			bias = adapt(i - oldi, out, oldi == 0);
+
+			// `i` was supposed to wrap around from `out` to `0`,
+			// incrementing `n` each time, so we'll fix that now:
+			if (floor(i / out) > maxInt - n) {
+				error('overflow');
+			}
+
+			n += floor(i / out);
+			i %= out;
+
+			// Insert `n` at position `i` of the output
+			output.splice(i++, 0, n);
+
+		}
+
+		return ucs2encode(output);
+	}
+
+	/**
+	 * Converts a string of Unicode symbols (e.g. a domain name label) to a
+	 * Punycode string of ASCII-only symbols.
+	 * @memberOf punycode
+	 * @param {String} input The string of Unicode symbols.
+	 * @returns {String} The resulting Punycode string of ASCII-only symbols.
+	 */
+	function encode(input) {
+		var n,
+		    delta,
+		    handledCPCount,
+		    basicLength,
+		    bias,
+		    j,
+		    m,
+		    q,
+		    k,
+		    t,
+		    currentValue,
+		    output = [],
+		    /** `inputLength` will hold the number of code points in `input`. */
+		    inputLength,
+		    /** Cached calculation results */
+		    handledCPCountPlusOne,
+		    baseMinusT,
+		    qMinusT;
+
+		// Convert the input in UCS-2 to Unicode
+		input = ucs2decode(input);
+
+		// Cache the length
+		inputLength = input.length;
+
+		// Initialize the state
+		n = initialN;
+		delta = 0;
+		bias = initialBias;
+
+		// Handle the basic code points
+		for (j = 0; j < inputLength; ++j) {
+			currentValue = input[j];
+			if (currentValue < 0x80) {
+				output.push(stringFromCharCode(currentValue));
+			}
+		}
+
+		handledCPCount = basicLength = output.length;
+
+		// `handledCPCount` is the number of code points that have been handled;
+		// `basicLength` is the number of basic code points.
+
+		// Finish the basic string - if it is not empty - with a delimiter
+		if (basicLength) {
+			output.push(delimiter);
+		}
+
+		// Main encoding loop:
+		while (handledCPCount < inputLength) {
+
+			// All non-basic code points < n have been handled already. Find the next
+			// larger one:
+			for (m = maxInt, j = 0; j < inputLength; ++j) {
+				currentValue = input[j];
+				if (currentValue >= n && currentValue < m) {
+					m = currentValue;
+				}
+			}
+
+			// Increase `delta` enough to advance the decoder's <n,i> state to <m,0>,
+			// but guard against overflow
+			handledCPCountPlusOne = handledCPCount + 1;
+			if (m - n > floor((maxInt - delta) / handledCPCountPlusOne)) {
+				error('overflow');
+			}
+
+			delta += (m - n) * handledCPCountPlusOne;
+			n = m;
+
+			for (j = 0; j < inputLength; ++j) {
+				currentValue = input[j];
+
+				if (currentValue < n && ++delta > maxInt) {
+					error('overflow');
+				}
+
+				if (currentValue == n) {
+					// Represent delta as a generalized variable-length integer
+					for (q = delta, k = base; /* no condition */; k += base) {
+						t = k <= bias ? tMin : (k >= bias + tMax ? tMax : k - bias);
+						if (q < t) {
+							break;
+						}
+						qMinusT = q - t;
+						baseMinusT = base - t;
+						output.push(
+							stringFromCharCode(digitToBasic(t + qMinusT % baseMinusT, 0))
+						);
+						q = floor(qMinusT / baseMinusT);
+					}
+
+					output.push(stringFromCharCode(digitToBasic(q, 0)));
+					bias = adapt(delta, handledCPCountPlusOne, handledCPCount == basicLength);
+					delta = 0;
+					++handledCPCount;
+				}
+			}
+
+			++delta;
+			++n;
+
+		}
+		return output.join('');
+	}
+
+	/**
+	 * Converts a Punycode string representing a domain name or an email address
+	 * to Unicode. Only the Punycoded parts of the input will be converted, i.e.
+	 * it doesn't matter if you call it on a string that has already been
+	 * converted to Unicode.
+	 * @memberOf punycode
+	 * @param {String} input The Punycoded domain name or email address to
+	 * convert to Unicode.
+	 * @returns {String} The Unicode representation of the given Punycode
+	 * string.
+	 */
+	function toUnicode(input) {
+		return mapDomain(input, function(string) {
+			return regexPunycode.test(string)
+				? decode(string.slice(4).toLowerCase())
+				: string;
+		});
+	}
+
+	/**
+	 * Converts a Unicode string representing a domain name or an email address to
+	 * Punycode. Only the non-ASCII parts of the domain name will be converted,
+	 * i.e. it doesn't matter if you call it with a domain that's already in
+	 * ASCII.
+	 * @memberOf punycode
+	 * @param {String} input The domain name or email address to convert, as a
+	 * Unicode string.
+	 * @returns {String} The Punycode representation of the given domain name or
+	 * email address.
+	 */
+	function toASCII(input) {
+		return mapDomain(input, function(string) {
+			return regexNonASCII.test(string)
+				? 'xn--' + encode(string)
+				: string;
+		});
+	}
+
+	/*--------------------------------------------------------------------------*/
+
+	/** Define the public API */
+	punycode = {
+		/**
+		 * A string representing the current Punycode.js version number.
+		 * @memberOf punycode
+		 * @type String
+		 */
+		'version': '1.4.1',
+		/**
+		 * An object of methods to convert from JavaScript's internal character
+		 * representation (UCS-2) to Unicode code points, and back.
+		 * @see <https://mathiasbynens.be/notes/javascript-encoding>
+		 * @memberOf punycode
+		 * @type Object
+		 */
+		'ucs2': {
+			'decode': ucs2decode,
+			'encode': ucs2encode
+		},
+		'decode': decode,
+		'encode': encode,
+		'toASCII': toASCII,
+		'toUnicode': toUnicode
+	};
+
+	/** Expose `punycode` */
+	// Some AMD build optimizers, like r.js, check for specific condition patterns
+	// like the following:
+	if (
+		typeof define == 'function' &&
+		typeof define.amd == 'object' &&
+		define.amd
+	) {
+		define('punycode', function() {
+			return punycode;
+		});
+	} else if (freeExports && freeModule) {
+		if (module.exports == freeExports) {
+			// in Node.js, io.js, or RingoJS v0.8.0+
+			freeModule.exports = punycode;
+		} else {
+			// in Narwhal or RingoJS v0.7.0-
+			for (key in punycode) {
+				punycode.hasOwnProperty(key) && (freeExports[key] = punycode[key]);
+			}
+		}
+	} else {
+		// in Rhino or a web browser
+		root.punycode = punycode;
+	}
+
+}(this));
+
+}).call(this,typeof global !== "undefined" ? global : typeof self !== "undefined" ? self : typeof window !== "undefined" ? window : {})
+},{}],127:[function(require,module,exports){
+// Copyright Joyent, Inc. and other Node contributors.
+//
+// Permission is hereby granted, free of charge, to any person obtaining a
+// copy of this software and associated documentation files (the
+// "Software"), to deal in the Software without restriction, including
+// without limitation the rights to use, copy, modify, merge, publish,
+// distribute, sublicense, and/or sell copies of the Software, and to permit
+// persons to whom the Software is furnished to do so, subject to the
+// following conditions:
+//
+// The above copyright notice and this permission notice shall be included
+// in all copies or substantial portions of the Software.
+//
+// THE SOFTWARE IS PROVIDED "AS IS", WITHOUT WARRANTY OF ANY KIND, EXPRESS
+// OR IMPLIED, INCLUDING BUT NOT LIMITED TO THE WARRANTIES OF
+// MERCHANTABILITY, FITNESS FOR A PARTICULAR PURPOSE AND NONINFRINGEMENT. IN
+// NO EVENT SHALL THE AUTHORS OR COPYRIGHT HOLDERS BE LIABLE FOR ANY CLAIM,
+// DAMAGES OR OTHER LIABILITY, WHETHER IN AN ACTION OF CONTRACT, TORT OR
+// OTHERWISE, ARISING FROM, OUT OF OR IN CONNECTION WITH THE SOFTWARE OR THE
+// USE OR OTHER DEALINGS IN THE SOFTWARE.
+
+'use strict';
+
+// If obj.hasOwnProperty has been overridden, then calling
+// obj.hasOwnProperty(prop) will break.
+// See: https://github.com/joyent/node/issues/1707
+function hasOwnProperty(obj, prop) {
+  return Object.prototype.hasOwnProperty.call(obj, prop);
+}
+
+module.exports = function(qs, sep, eq, options) {
+  sep = sep || '&';
+  eq = eq || '=';
+  var obj = {};
+
+  if (typeof qs !== 'string' || qs.length === 0) {
+    return obj;
+  }
+
+  var regexp = /\+/g;
+  qs = qs.split(sep);
+
+  var maxKeys = 1000;
+  if (options && typeof options.maxKeys === 'number') {
+    maxKeys = options.maxKeys;
+  }
+
+  var len = qs.length;
+  // maxKeys <= 0 means that we should not limit keys count
+  if (maxKeys > 0 && len > maxKeys) {
+    len = maxKeys;
+  }
+
+  for (var i = 0; i < len; ++i) {
+    var x = qs[i].replace(regexp, '%20'),
+        idx = x.indexOf(eq),
+        kstr, vstr, k, v;
+
+    if (idx >= 0) {
+      kstr = x.substr(0, idx);
+      vstr = x.substr(idx + 1);
+    } else {
+      kstr = x;
+      vstr = '';
+    }
+
+    k = decodeURIComponent(kstr);
+    v = decodeURIComponent(vstr);
+
+    if (!hasOwnProperty(obj, k)) {
+      obj[k] = v;
+    } else if (isArray(obj[k])) {
+      obj[k].push(v);
+    } else {
+      obj[k] = [obj[k], v];
+    }
+  }
+
+  return obj;
+};
+
+var isArray = Array.isArray || function (xs) {
+  return Object.prototype.toString.call(xs) === '[object Array]';
+};
+
+},{}],128:[function(require,module,exports){
+// Copyright Joyent, Inc. and other Node contributors.
+//
+// Permission is hereby granted, free of charge, to any person obtaining a
+// copy of this software and associated documentation files (the
+// "Software"), to deal in the Software without restriction, including
+// without limitation the rights to use, copy, modify, merge, publish,
+// distribute, sublicense, and/or sell copies of the Software, and to permit
+// persons to whom the Software is furnished to do so, subject to the
+// following conditions:
+//
+// The above copyright notice and this permission notice shall be included
+// in all copies or substantial portions of the Software.
+//
+// THE SOFTWARE IS PROVIDED "AS IS", WITHOUT WARRANTY OF ANY KIND, EXPRESS
+// OR IMPLIED, INCLUDING BUT NOT LIMITED TO THE WARRANTIES OF
+// MERCHANTABILITY, FITNESS FOR A PARTICULAR PURPOSE AND NONINFRINGEMENT. IN
+// NO EVENT SHALL THE AUTHORS OR COPYRIGHT HOLDERS BE LIABLE FOR ANY CLAIM,
+// DAMAGES OR OTHER LIABILITY, WHETHER IN AN ACTION OF CONTRACT, TORT OR
+// OTHERWISE, ARISING FROM, OUT OF OR IN CONNECTION WITH THE SOFTWARE OR THE
+// USE OR OTHER DEALINGS IN THE SOFTWARE.
+
+'use strict';
+
+var stringifyPrimitive = function(v) {
+  switch (typeof v) {
+    case 'string':
+      return v;
+
+    case 'boolean':
+      return v ? 'true' : 'false';
+
+    case 'number':
+      return isFinite(v) ? v : '';
+
+    default:
+      return '';
+  }
+};
+
+module.exports = function(obj, sep, eq, name) {
+  sep = sep || '&';
+  eq = eq || '=';
+  if (obj === null) {
+    obj = undefined;
+  }
+
+  if (typeof obj === 'object') {
+    return map(objectKeys(obj), function(k) {
+      var ks = encodeURIComponent(stringifyPrimitive(k)) + eq;
+      if (isArray(obj[k])) {
+        return map(obj[k], function(v) {
+          return ks + encodeURIComponent(stringifyPrimitive(v));
+        }).join(sep);
+      } else {
+        return ks + encodeURIComponent(stringifyPrimitive(obj[k]));
+      }
+    }).join(sep);
+
+  }
+
+  if (!name) return '';
+  return encodeURIComponent(stringifyPrimitive(name)) + eq +
+         encodeURIComponent(stringifyPrimitive(obj));
+};
+
+var isArray = Array.isArray || function (xs) {
+  return Object.prototype.toString.call(xs) === '[object Array]';
+};
+
+function map (xs, f) {
+  if (xs.map) return xs.map(f);
+  var res = [];
+  for (var i = 0; i < xs.length; i++) {
+    res.push(f(xs[i], i));
+  }
+  return res;
+}
+
+var objectKeys = Object.keys || function (obj) {
+  var res = [];
+  for (var key in obj) {
+    if (Object.prototype.hasOwnProperty.call(obj, key)) res.push(key);
+  }
+  return res;
+};
+
+},{}],129:[function(require,module,exports){
+'use strict';
+
+exports.decode = exports.parse = require('./decode');
+exports.encode = exports.stringify = require('./encode');
+
+},{"./decode":127,"./encode":128}],130:[function(require,module,exports){
+(function (process,global){
+'use strict'
+
+function oldBrowser () {
+  throw new Error('Secure random number generation is not supported by this browser.\nUse Chrome, Firefox or Internet Explorer 11')
+}
+
+var Buffer = require('safe-buffer').Buffer
+var crypto = global.crypto || global.msCrypto
+
+if (crypto && crypto.getRandomValues) {
+  module.exports = randomBytes
+} else {
+  module.exports = oldBrowser
+}
+
+function randomBytes (size, cb) {
+  // phantomjs needs to throw
+  if (size > 65536) throw new Error('requested too many random bytes')
+  // in case browserify  isn't using the Uint8Array version
+  var rawBytes = new global.Uint8Array(size)
+
+  // This will not work in older browsers.
+  // See https://developer.mozilla.org/en-US/docs/Web/API/window.crypto.getRandomValues
+  if (size > 0) {  // getRandomValues fails on IE if size == 0
+    crypto.getRandomValues(rawBytes)
+  }
+
+  // XXX: phantomjs doesn't like a buffer being passed here
+  var bytes = Buffer.from(rawBytes.buffer)
+
+  if (typeof cb === 'function') {
+    return process.nextTick(function () {
+      cb(null, bytes)
+    })
+  }
+
+  return bytes
+}
+
+}).call(this,require('_process'),typeof global !== "undefined" ? global : typeof self !== "undefined" ? self : typeof window !== "undefined" ? window : {})
+},{"_process":119,"safe-buffer":146}],131:[function(require,module,exports){
+(function (process,global){
+'use strict'
+
+function oldBrowser () {
+  throw new Error('secure random number generation not supported by this browser\nuse chrome, FireFox or Internet Explorer 11')
+}
+var safeBuffer = require('safe-buffer')
+var randombytes = require('randombytes')
+var Buffer = safeBuffer.Buffer
+var kBufferMaxLength = safeBuffer.kMaxLength
+var crypto = global.crypto || global.msCrypto
+var kMaxUint32 = Math.pow(2, 32) - 1
+function assertOffset (offset, length) {
+  if (typeof offset !== 'number' || offset !== offset) { // eslint-disable-line no-self-compare
+    throw new TypeError('offset must be a number')
+  }
+
+  if (offset > kMaxUint32 || offset < 0) {
+    throw new TypeError('offset must be a uint32')
+  }
+
+  if (offset > kBufferMaxLength || offset > length) {
+    throw new RangeError('offset out of range')
+  }
+}
+
+function assertSize (size, offset, length) {
+  if (typeof size !== 'number' || size !== size) { // eslint-disable-line no-self-compare
+    throw new TypeError('size must be a number')
+  }
+
+  if (size > kMaxUint32 || size < 0) {
+    throw new TypeError('size must be a uint32')
+  }
+
+  if (size + offset > length || size > kBufferMaxLength) {
+    throw new RangeError('buffer too small')
+  }
+}
+if ((crypto && crypto.getRandomValues) || !process.browser) {
+  exports.randomFill = randomFill
+  exports.randomFillSync = randomFillSync
+} else {
+  exports.randomFill = oldBrowser
+  exports.randomFillSync = oldBrowser
+}
+function randomFill (buf, offset, size, cb) {
+  if (!Buffer.isBuffer(buf) && !(buf instanceof global.Uint8Array)) {
+    throw new TypeError('"buf" argument must be a Buffer or Uint8Array')
+  }
+
+  if (typeof offset === 'function') {
+    cb = offset
+    offset = 0
+    size = buf.length
+  } else if (typeof size === 'function') {
+    cb = size
+    size = buf.length - offset
+  } else if (typeof cb !== 'function') {
+    throw new TypeError('"cb" argument must be a function')
+  }
+  assertOffset(offset, buf.length)
+  assertSize(size, offset, buf.length)
+  return actualFill(buf, offset, size, cb)
+}
+
+function actualFill (buf, offset, size, cb) {
+  if (process.browser) {
+    var ourBuf = buf.buffer
+    var uint = new Uint8Array(ourBuf, offset, size)
+    crypto.getRandomValues(uint)
+    if (cb) {
+      process.nextTick(function () {
+        cb(null, buf)
+      })
+      return
+    }
+    return buf
+  }
+  if (cb) {
+    randombytes(size, function (err, bytes) {
+      if (err) {
+        return cb(err)
+      }
+      bytes.copy(buf, offset)
+      cb(null, buf)
+    })
+    return
+  }
+  var bytes = randombytes(size)
+  bytes.copy(buf, offset)
+  return buf
+}
+function randomFillSync (buf, offset, size) {
+  if (typeof offset === 'undefined') {
+    offset = 0
+  }
+  if (!Buffer.isBuffer(buf) && !(buf instanceof global.Uint8Array)) {
+    throw new TypeError('"buf" argument must be a Buffer or Uint8Array')
+  }
+
+  assertOffset(offset, buf.length)
+
+  if (size === undefined) size = buf.length - offset
+
+  assertSize(size, offset, buf.length)
+
+  return actualFill(buf, offset, size)
+}
+
+}).call(this,require('_process'),typeof global !== "undefined" ? global : typeof self !== "undefined" ? self : typeof window !== "undefined" ? window : {})
+},{"_process":119,"randombytes":130,"safe-buffer":146}],132:[function(require,module,exports){
+module.exports = require('./lib/_stream_duplex.js');
+
+},{"./lib/_stream_duplex.js":133}],133:[function(require,module,exports){
+// Copyright Joyent, Inc. and other Node contributors.
+//
+// Permission is hereby granted, free of charge, to any person obtaining a
+// copy of this software and associated documentation files (the
+// "Software"), to deal in the Software without restriction, including
+// without limitation the rights to use, copy, modify, merge, publish,
+// distribute, sublicense, and/or sell copies of the Software, and to permit
+// persons to whom the Software is furnished to do so, subject to the
+// following conditions:
+//
+// The above copyright notice and this permission notice shall be included
+// in all copies or substantial portions of the Software.
+//
+// THE SOFTWARE IS PROVIDED "AS IS", WITHOUT WARRANTY OF ANY KIND, EXPRESS
+// OR IMPLIED, INCLUDING BUT NOT LIMITED TO THE WARRANTIES OF
+// MERCHANTABILITY, FITNESS FOR A PARTICULAR PURPOSE AND NONINFRINGEMENT. IN
+// NO EVENT SHALL THE AUTHORS OR COPYRIGHT HOLDERS BE LIABLE FOR ANY CLAIM,
+// DAMAGES OR OTHER LIABILITY, WHETHER IN AN ACTION OF CONTRACT, TORT OR
+// OTHERWISE, ARISING FROM, OUT OF OR IN CONNECTION WITH THE SOFTWARE OR THE
+// USE OR OTHER DEALINGS IN THE SOFTWARE.
+
+// a duplex stream is just a stream that is both readable and writable.
+// Since JS doesn't have multiple prototypal inheritance, this class
+// prototypally inherits from Readable, and then parasitically from
+// Writable.
+
+'use strict';
+
+/*<replacement>*/
+
+var pna = require('process-nextick-args');
+/*</replacement>*/
+
+/*<replacement>*/
+var objectKeys = Object.keys || function (obj) {
+  var keys = [];
+  for (var key in obj) {
+    keys.push(key);
+  }return keys;
+};
+/*</replacement>*/
+
+module.exports = Duplex;
+
+/*<replacement>*/
+var util = require('core-util-is');
+util.inherits = require('inherits');
+/*</replacement>*/
+
+var Readable = require('./_stream_readable');
+var Writable = require('./_stream_writable');
+
+util.inherits(Duplex, Readable);
+
+{
+  // avoid scope creep, the keys array can then be collected
+  var keys = objectKeys(Writable.prototype);
+  for (var v = 0; v < keys.length; v++) {
+    var method = keys[v];
+    if (!Duplex.prototype[method]) Duplex.prototype[method] = Writable.prototype[method];
+  }
+}
+
+function Duplex(options) {
+  if (!(this instanceof Duplex)) return new Duplex(options);
+
+  Readable.call(this, options);
+  Writable.call(this, options);
+
+  if (options && options.readable === false) this.readable = false;
+
+  if (options && options.writable === false) this.writable = false;
+
+  this.allowHalfOpen = true;
+  if (options && options.allowHalfOpen === false) this.allowHalfOpen = false;
+
+  this.once('end', onend);
+}
+
+Object.defineProperty(Duplex.prototype, 'writableHighWaterMark', {
+  // making it explicit this property is not enumerable
+  // because otherwise some prototype manipulation in
+  // userland will fail
+  enumerable: false,
+  get: function () {
+    return this._writableState.highWaterMark;
+  }
+});
+
+// the no-half-open enforcer
+function onend() {
+  // if we allow half-open state, or if the writable side ended,
+  // then we're ok.
+  if (this.allowHalfOpen || this._writableState.ended) return;
+
+  // no more data can be written.
+  // But allow more writes to happen in this tick.
+  pna.nextTick(onEndNT, this);
+}
+
+function onEndNT(self) {
+  self.end();
+}
+
+Object.defineProperty(Duplex.prototype, 'destroyed', {
+  get: function () {
+    if (this._readableState === undefined || this._writableState === undefined) {
+      return false;
+    }
+    return this._readableState.destroyed && this._writableState.destroyed;
+  },
+  set: function (value) {
+    // we ignore the value if the stream
+    // has not been initialized yet
+    if (this._readableState === undefined || this._writableState === undefined) {
+      return;
+    }
+
+    // backward compatibility, the user is explicitly
+    // managing destroyed
+    this._readableState.destroyed = value;
+    this._writableState.destroyed = value;
+  }
+});
+
+Duplex.prototype._destroy = function (err, cb) {
+  this.push(null);
+  this.end();
+
+  pna.nextTick(cb, err);
+};
+},{"./_stream_readable":135,"./_stream_writable":137,"core-util-is":51,"inherits":101,"process-nextick-args":118}],134:[function(require,module,exports){
+// Copyright Joyent, Inc. and other Node contributors.
+//
+// Permission is hereby granted, free of charge, to any person obtaining a
+// copy of this software and associated documentation files (the
+// "Software"), to deal in the Software without restriction, including
+// without limitation the rights to use, copy, modify, merge, publish,
+// distribute, sublicense, and/or sell copies of the Software, and to permit
+// persons to whom the Software is furnished to do so, subject to the
+// following conditions:
+//
+// The above copyright notice and this permission notice shall be included
+// in all copies or substantial portions of the Software.
+//
+// THE SOFTWARE IS PROVIDED "AS IS", WITHOUT WARRANTY OF ANY KIND, EXPRESS
+// OR IMPLIED, INCLUDING BUT NOT LIMITED TO THE WARRANTIES OF
+// MERCHANTABILITY, FITNESS FOR A PARTICULAR PURPOSE AND NONINFRINGEMENT. IN
+// NO EVENT SHALL THE AUTHORS OR COPYRIGHT HOLDERS BE LIABLE FOR ANY CLAIM,
+// DAMAGES OR OTHER LIABILITY, WHETHER IN AN ACTION OF CONTRACT, TORT OR
+// OTHERWISE, ARISING FROM, OUT OF OR IN CONNECTION WITH THE SOFTWARE OR THE
+// USE OR OTHER DEALINGS IN THE SOFTWARE.
+
+// a passthrough stream.
+// basically just the most minimal sort of Transform stream.
+// Every written chunk gets output as-is.
+
+'use strict';
+
+module.exports = PassThrough;
+
+var Transform = require('./_stream_transform');
+
+/*<replacement>*/
+var util = require('core-util-is');
+util.inherits = require('inherits');
+/*</replacement>*/
+
+util.inherits(PassThrough, Transform);
+
+function PassThrough(options) {
+  if (!(this instanceof PassThrough)) return new PassThrough(options);
+
+  Transform.call(this, options);
+}
+
+PassThrough.prototype._transform = function (chunk, encoding, cb) {
+  cb(null, chunk);
+};
+},{"./_stream_transform":136,"core-util-is":51,"inherits":101}],135:[function(require,module,exports){
+(function (process,global){
+// Copyright Joyent, Inc. and other Node contributors.
+//
+// Permission is hereby granted, free of charge, to any person obtaining a
+// copy of this software and associated documentation files (the
+// "Software"), to deal in the Software without restriction, including
+// without limitation the rights to use, copy, modify, merge, publish,
+// distribute, sublicense, and/or sell copies of the Software, and to permit
+// persons to whom the Software is furnished to do so, subject to the
+// following conditions:
+//
+// The above copyright notice and this permission notice shall be included
+// in all copies or substantial portions of the Software.
+//
+// THE SOFTWARE IS PROVIDED "AS IS", WITHOUT WARRANTY OF ANY KIND, EXPRESS
+// OR IMPLIED, INCLUDING BUT NOT LIMITED TO THE WARRANTIES OF
+// MERCHANTABILITY, FITNESS FOR A PARTICULAR PURPOSE AND NONINFRINGEMENT. IN
+// NO EVENT SHALL THE AUTHORS OR COPYRIGHT HOLDERS BE LIABLE FOR ANY CLAIM,
+// DAMAGES OR OTHER LIABILITY, WHETHER IN AN ACTION OF CONTRACT, TORT OR
+// OTHERWISE, ARISING FROM, OUT OF OR IN CONNECTION WITH THE SOFTWARE OR THE
+// USE OR OTHER DEALINGS IN THE SOFTWARE.
+
+'use strict';
+
+/*<replacement>*/
+
+var pna = require('process-nextick-args');
+/*</replacement>*/
+
+module.exports = Readable;
+
+/*<replacement>*/
+var isArray = require('isarray');
+/*</replacement>*/
+
+/*<replacement>*/
+var Duplex;
+/*</replacement>*/
+
+Readable.ReadableState = ReadableState;
+
+/*<replacement>*/
+var EE = require('events').EventEmitter;
+
+var EElistenerCount = function (emitter, type) {
+  return emitter.listeners(type).length;
+};
+/*</replacement>*/
+
+/*<replacement>*/
+var Stream = require('./internal/streams/stream');
+/*</replacement>*/
+
+/*<replacement>*/
+
+var Buffer = require('safe-buffer').Buffer;
+var OurUint8Array = global.Uint8Array || function () {};
+function _uint8ArrayToBuffer(chunk) {
+  return Buffer.from(chunk);
+}
+function _isUint8Array(obj) {
+  return Buffer.isBuffer(obj) || obj instanceof OurUint8Array;
+}
+
+/*</replacement>*/
+
+/*<replacement>*/
+var util = require('core-util-is');
+util.inherits = require('inherits');
+/*</replacement>*/
+
+/*<replacement>*/
+var debugUtil = require('util');
+var debug = void 0;
+if (debugUtil && debugUtil.debuglog) {
+  debug = debugUtil.debuglog('stream');
+} else {
+  debug = function () {};
+}
+/*</replacement>*/
+
+var BufferList = require('./internal/streams/BufferList');
+var destroyImpl = require('./internal/streams/destroy');
+var StringDecoder;
+
+util.inherits(Readable, Stream);
+
+var kProxyEvents = ['error', 'close', 'destroy', 'pause', 'resume'];
+
+function prependListener(emitter, event, fn) {
+  // Sadly this is not cacheable as some libraries bundle their own
+  // event emitter implementation with them.
+  if (typeof emitter.prependListener === 'function') return emitter.prependListener(event, fn);
+
+  // This is a hack to make sure that our error handler is attached before any
+  // userland ones.  NEVER DO THIS. This is here only because this code needs
+  // to continue to work with older versions of Node.js that do not include
+  // the prependListener() method. The goal is to eventually remove this hack.
+  if (!emitter._events || !emitter._events[event]) emitter.on(event, fn);else if (isArray(emitter._events[event])) emitter._events[event].unshift(fn);else emitter._events[event] = [fn, emitter._events[event]];
+}
+
+function ReadableState(options, stream) {
+  Duplex = Duplex || require('./_stream_duplex');
+
+  options = options || {};
+
+  // Duplex streams are both readable and writable, but share
+  // the same options object.
+  // However, some cases require setting options to different
+  // values for the readable and the writable sides of the duplex stream.
+  // These options can be provided separately as readableXXX and writableXXX.
+  var isDuplex = stream instanceof Duplex;
+
+  // object stream flag. Used to make read(n) ignore n and to
+  // make all the buffer merging and length checks go away
+  this.objectMode = !!options.objectMode;
+
+  if (isDuplex) this.objectMode = this.objectMode || !!options.readableObjectMode;
+
+  // the point at which it stops calling _read() to fill the buffer
+  // Note: 0 is a valid value, means "don't call _read preemptively ever"
+  var hwm = options.highWaterMark;
+  var readableHwm = options.readableHighWaterMark;
+  var defaultHwm = this.objectMode ? 16 : 16 * 1024;
+
+  if (hwm || hwm === 0) this.highWaterMark = hwm;else if (isDuplex && (readableHwm || readableHwm === 0)) this.highWaterMark = readableHwm;else this.highWaterMark = defaultHwm;
+
+  // cast to ints.
+  this.highWaterMark = Math.floor(this.highWaterMark);
+
+  // A linked list is used to store data chunks instead of an array because the
+  // linked list can remove elements from the beginning faster than
+  // array.shift()
+  this.buffer = new BufferList();
+  this.length = 0;
+  this.pipes = null;
+  this.pipesCount = 0;
+  this.flowing = null;
+  this.ended = false;
+  this.endEmitted = false;
+  this.reading = false;
+
+  // a flag to be able to tell if the event 'readable'/'data' is emitted
+  // immediately, or on a later tick.  We set this to true at first, because
+  // any actions that shouldn't happen until "later" should generally also
+  // not happen before the first read call.
+  this.sync = true;
+
+  // whenever we return null, then we set a flag to say
+  // that we're awaiting a 'readable' event emission.
+  this.needReadable = false;
+  this.emittedReadable = false;
+  this.readableListening = false;
+  this.resumeScheduled = false;
+
+  // has it been destroyed
+  this.destroyed = false;
+
+  // Crypto is kind of old and crusty.  Historically, its default string
+  // encoding is 'binary' so we have to make this configurable.
+  // Everything else in the universe uses 'utf8', though.
+  this.defaultEncoding = options.defaultEncoding || 'utf8';
+
+  // the number of writers that are awaiting a drain event in .pipe()s
+  this.awaitDrain = 0;
+
+  // if true, a maybeReadMore has been scheduled
+  this.readingMore = false;
+
+  this.decoder = null;
+  this.encoding = null;
+  if (options.encoding) {
+    if (!StringDecoder) StringDecoder = require('string_decoder/').StringDecoder;
+    this.decoder = new StringDecoder(options.encoding);
+    this.encoding = options.encoding;
+  }
+}
+
+function Readable(options) {
+  Duplex = Duplex || require('./_stream_duplex');
+
+  if (!(this instanceof Readable)) return new Readable(options);
+
+  this._readableState = new ReadableState(options, this);
+
+  // legacy
+  this.readable = true;
+
+  if (options) {
+    if (typeof options.read === 'function') this._read = options.read;
+
+    if (typeof options.destroy === 'function') this._destroy = options.destroy;
+  }
+
+  Stream.call(this);
+}
+
+Object.defineProperty(Readable.prototype, 'destroyed', {
+  get: function () {
+    if (this._readableState === undefined) {
+      return false;
+    }
+    return this._readableState.destroyed;
+  },
+  set: function (value) {
+    // we ignore the value if the stream
+    // has not been initialized yet
+    if (!this._readableState) {
+      return;
+    }
+
+    // backward compatibility, the user is explicitly
+    // managing destroyed
+    this._readableState.destroyed = value;
+  }
+});
+
+Readable.prototype.destroy = destroyImpl.destroy;
+Readable.prototype._undestroy = destroyImpl.undestroy;
+Readable.prototype._destroy = function (err, cb) {
+  this.push(null);
+  cb(err);
+};
+
+// Manually shove something into the read() buffer.
+// This returns true if the highWaterMark has not been hit yet,
+// similar to how Writable.write() returns true if you should
+// write() some more.
+Readable.prototype.push = function (chunk, encoding) {
+  var state = this._readableState;
+  var skipChunkCheck;
+
+  if (!state.objectMode) {
+    if (typeof chunk === 'string') {
+      encoding = encoding || state.defaultEncoding;
+      if (encoding !== state.encoding) {
+        chunk = Buffer.from(chunk, encoding);
+        encoding = '';
+      }
+      skipChunkCheck = true;
+    }
+  } else {
+    skipChunkCheck = true;
+  }
+
+  return readableAddChunk(this, chunk, encoding, false, skipChunkCheck);
+};
+
+// Unshift should *always* be something directly out of read()
+Readable.prototype.unshift = function (chunk) {
+  return readableAddChunk(this, chunk, null, true, false);
+};
+
+function readableAddChunk(stream, chunk, encoding, addToFront, skipChunkCheck) {
+  var state = stream._readableState;
+  if (chunk === null) {
+    state.reading = false;
+    onEofChunk(stream, state);
+  } else {
+    var er;
+    if (!skipChunkCheck) er = chunkInvalid(state, chunk);
+    if (er) {
+      stream.emit('error', er);
+    } else if (state.objectMode || chunk && chunk.length > 0) {
+      if (typeof chunk !== 'string' && !state.objectMode && Object.getPrototypeOf(chunk) !== Buffer.prototype) {
+        chunk = _uint8ArrayToBuffer(chunk);
+      }
+
+      if (addToFront) {
+        if (state.endEmitted) stream.emit('error', new Error('stream.unshift() after end event'));else addChunk(stream, state, chunk, true);
+      } else if (state.ended) {
+        stream.emit('error', new Error('stream.push() after EOF'));
+      } else {
+        state.reading = false;
+        if (state.decoder && !encoding) {
+          chunk = state.decoder.write(chunk);
+          if (state.objectMode || chunk.length !== 0) addChunk(stream, state, chunk, false);else maybeReadMore(stream, state);
+        } else {
+          addChunk(stream, state, chunk, false);
+        }
+      }
+    } else if (!addToFront) {
+      state.reading = false;
+    }
+  }
+
+  return needMoreData(state);
+}
+
+function addChunk(stream, state, chunk, addToFront) {
+  if (state.flowing && state.length === 0 && !state.sync) {
+    stream.emit('data', chunk);
+    stream.read(0);
+  } else {
+    // update the buffer info.
+    state.length += state.objectMode ? 1 : chunk.length;
+    if (addToFront) state.buffer.unshift(chunk);else state.buffer.push(chunk);
+
+    if (state.needReadable) emitReadable(stream);
+  }
+  maybeReadMore(stream, state);
+}
+
+function chunkInvalid(state, chunk) {
+  var er;
+  if (!_isUint8Array(chunk) && typeof chunk !== 'string' && chunk !== undefined && !state.objectMode) {
+    er = new TypeError('Invalid non-string/buffer chunk');
+  }
+  return er;
+}
+
+// if it's past the high water mark, we can push in some more.
+// Also, if we have no data yet, we can stand some
+// more bytes.  This is to work around cases where hwm=0,
+// such as the repl.  Also, if the push() triggered a
+// readable event, and the user called read(largeNumber) such that
+// needReadable was set, then we ought to push more, so that another
+// 'readable' event will be triggered.
+function needMoreData(state) {
+  return !state.ended && (state.needReadable || state.length < state.highWaterMark || state.length === 0);
+}
+
+Readable.prototype.isPaused = function () {
+  return this._readableState.flowing === false;
+};
+
+// backwards compatibility.
+Readable.prototype.setEncoding = function (enc) {
+  if (!StringDecoder) StringDecoder = require('string_decoder/').StringDecoder;
+  this._readableState.decoder = new StringDecoder(enc);
+  this._readableState.encoding = enc;
+  return this;
+};
+
+// Don't raise the hwm > 8MB
+var MAX_HWM = 0x800000;
+function computeNewHighWaterMark(n) {
+  if (n >= MAX_HWM) {
+    n = MAX_HWM;
+  } else {
+    // Get the next highest power of 2 to prevent increasing hwm excessively in
+    // tiny amounts
+    n--;
+    n |= n >>> 1;
+    n |= n >>> 2;
+    n |= n >>> 4;
+    n |= n >>> 8;
+    n |= n >>> 16;
+    n++;
+  }
+  return n;
+}
+
+// This function is designed to be inlinable, so please take care when making
+// changes to the function body.
+function howMuchToRead(n, state) {
+  if (n <= 0 || state.length === 0 && state.ended) return 0;
+  if (state.objectMode) return 1;
+  if (n !== n) {
+    // Only flow one buffer at a time
+    if (state.flowing && state.length) return state.buffer.head.data.length;else return state.length;
+  }
+  // If we're asking for more than the current hwm, then raise the hwm.
+  if (n > state.highWaterMark) state.highWaterMark = computeNewHighWaterMark(n);
+  if (n <= state.length) return n;
+  // Don't have enough
+  if (!state.ended) {
+    state.needReadable = true;
+    return 0;
+  }
+  return state.length;
+}
+
+// you can override either this method, or the async _read(n) below.
+Readable.prototype.read = function (n) {
+  debug('read', n);
+  n = parseInt(n, 10);
+  var state = this._readableState;
+  var nOrig = n;
+
+  if (n !== 0) state.emittedReadable = false;
+
+  // if we're doing read(0) to trigger a readable event, but we
+  // already have a bunch of data in the buffer, then just trigger
+  // the 'readable' event and move on.
+  if (n === 0 && state.needReadable && (state.length >= state.highWaterMark || state.ended)) {
+    debug('read: emitReadable', state.length, state.ended);
+    if (state.length === 0 && state.ended) endReadable(this);else emitReadable(this);
+    return null;
+  }
+
+  n = howMuchToRead(n, state);
+
+  // if we've ended, and we're now clear, then finish it up.
+  if (n === 0 && state.ended) {
+    if (state.length === 0) endReadable(this);
+    return null;
+  }
+
+  // All the actual chunk generation logic needs to be
+  // *below* the call to _read.  The reason is that in certain
+  // synthetic stream cases, such as passthrough streams, _read
+  // may be a completely synchronous operation which may change
+  // the state of the read buffer, providing enough data when
+  // before there was *not* enough.
+  //
+  // So, the steps are:
+  // 1. Figure out what the state of things will be after we do
+  // a read from the buffer.
+  //
+  // 2. If that resulting state will trigger a _read, then call _read.
+  // Note that this may be asynchronous, or synchronous.  Yes, it is
+  // deeply ugly to write APIs this way, but that still doesn't mean
+  // that the Readable class should behave improperly, as streams are
+  // designed to be sync/async agnostic.
+  // Take note if the _read call is sync or async (ie, if the read call
+  // has returned yet), so that we know whether or not it's safe to emit
+  // 'readable' etc.
+  //
+  // 3. Actually pull the requested chunks out of the buffer and return.
+
+  // if we need a readable event, then we need to do some reading.
+  var doRead = state.needReadable;
+  debug('need readable', doRead);
+
+  // if we currently have less than the highWaterMark, then also read some
+  if (state.length === 0 || state.length - n < state.highWaterMark) {
+    doRead = true;
+    debug('length less than watermark', doRead);
+  }
+
+  // however, if we've ended, then there's no point, and if we're already
+  // reading, then it's unnecessary.
+  if (state.ended || state.reading) {
+    doRead = false;
+    debug('reading or ended', doRead);
+  } else if (doRead) {
+    debug('do read');
+    state.reading = true;
+    state.sync = true;
+    // if the length is currently zero, then we *need* a readable event.
+    if (state.length === 0) state.needReadable = true;
+    // call internal read method
+    this._read(state.highWaterMark);
+    state.sync = false;
+    // If _read pushed data synchronously, then `reading` will be false,
+    // and we need to re-evaluate how much data we can return to the user.
+    if (!state.reading) n = howMuchToRead(nOrig, state);
+  }
+
+  var ret;
+  if (n > 0) ret = fromList(n, state);else ret = null;
+
+  if (ret === null) {
+    state.needReadable = true;
+    n = 0;
+  } else {
+    state.length -= n;
+  }
+
+  if (state.length === 0) {
+    // If we have nothing in the buffer, then we want to know
+    // as soon as we *do* get something into the buffer.
+    if (!state.ended) state.needReadable = true;
+
+    // If we tried to read() past the EOF, then emit end on the next tick.
+    if (nOrig !== n && state.ended) endReadable(this);
+  }
+
+  if (ret !== null) this.emit('data', ret);
+
+  return ret;
+};
+
+function onEofChunk(stream, state) {
+  if (state.ended) return;
+  if (state.decoder) {
+    var chunk = state.decoder.end();
+    if (chunk && chunk.length) {
+      state.buffer.push(chunk);
+      state.length += state.objectMode ? 1 : chunk.length;
+    }
+  }
+  state.ended = true;
+
+  // emit 'readable' now to make sure it gets picked up.
+  emitReadable(stream);
+}
+
+// Don't emit readable right away in sync mode, because this can trigger
+// another read() call => stack overflow.  This way, it might trigger
+// a nextTick recursion warning, but that's not so bad.
+function emitReadable(stream) {
+  var state = stream._readableState;
+  state.needReadable = false;
+  if (!state.emittedReadable) {
+    debug('emitReadable', state.flowing);
+    state.emittedReadable = true;
+    if (state.sync) pna.nextTick(emitReadable_, stream);else emitReadable_(stream);
+  }
+}
+
+function emitReadable_(stream) {
+  debug('emit readable');
+  stream.emit('readable');
+  flow(stream);
+}
+
+// at this point, the user has presumably seen the 'readable' event,
+// and called read() to consume some data.  that may have triggered
+// in turn another _read(n) call, in which case reading = true if
+// it's in progress.
+// However, if we're not ended, or reading, and the length < hwm,
+// then go ahead and try to read some more preemptively.
+function maybeReadMore(stream, state) {
+  if (!state.readingMore) {
+    state.readingMore = true;
+    pna.nextTick(maybeReadMore_, stream, state);
+  }
+}
+
+function maybeReadMore_(stream, state) {
+  var len = state.length;
+  while (!state.reading && !state.flowing && !state.ended && state.length < state.highWaterMark) {
+    debug('maybeReadMore read 0');
+    stream.read(0);
+    if (len === state.length)
+      // didn't get any data, stop spinning.
+      break;else len = state.length;
+  }
+  state.readingMore = false;
+}
+
+// abstract method.  to be overridden in specific implementation classes.
+// call cb(er, data) where data is <= n in length.
+// for virtual (non-string, non-buffer) streams, "length" is somewhat
+// arbitrary, and perhaps not very meaningful.
+Readable.prototype._read = function (n) {
+  this.emit('error', new Error('_read() is not implemented'));
+};
+
+Readable.prototype.pipe = function (dest, pipeOpts) {
+  var src = this;
+  var state = this._readableState;
+
+  switch (state.pipesCount) {
+    case 0:
+      state.pipes = dest;
+      break;
+    case 1:
+      state.pipes = [state.pipes, dest];
+      break;
+    default:
+      state.pipes.push(dest);
+      break;
+  }
+  state.pipesCount += 1;
+  debug('pipe count=%d opts=%j', state.pipesCount, pipeOpts);
+
+  var doEnd = (!pipeOpts || pipeOpts.end !== false) && dest !== process.stdout && dest !== process.stderr;
+
+  var endFn = doEnd ? onend : unpipe;
+  if (state.endEmitted) pna.nextTick(endFn);else src.once('end', endFn);
+
+  dest.on('unpipe', onunpipe);
+  function onunpipe(readable, unpipeInfo) {
+    debug('onunpipe');
+    if (readable === src) {
+      if (unpipeInfo && unpipeInfo.hasUnpiped === false) {
+        unpipeInfo.hasUnpiped = true;
+        cleanup();
+      }
+    }
+  }
+
+  function onend() {
+    debug('onend');
+    dest.end();
+  }
+
+  // when the dest drains, it reduces the awaitDrain counter
+  // on the source.  This would be more elegant with a .once()
+  // handler in flow(), but adding and removing repeatedly is
+  // too slow.
+  var ondrain = pipeOnDrain(src);
+  dest.on('drain', ondrain);
+
+  var cleanedUp = false;
+  function cleanup() {
+    debug('cleanup');
+    // cleanup event handlers once the pipe is broken
+    dest.removeListener('close', onclose);
+    dest.removeListener('finish', onfinish);
+    dest.removeListener('drain', ondrain);
+    dest.removeListener('error', onerror);
+    dest.removeListener('unpipe', onunpipe);
+    src.removeListener('end', onend);
+    src.removeListener('end', unpipe);
+    src.removeListener('data', ondata);
+
+    cleanedUp = true;
+
+    // if the reader is waiting for a drain event from this
+    // specific writer, then it would cause it to never start
+    // flowing again.
+    // So, if this is awaiting a drain, then we just call it now.
+    // If we don't know, then assume that we are waiting for one.
+    if (state.awaitDrain && (!dest._writableState || dest._writableState.needDrain)) ondrain();
+  }
+
+  // If the user pushes more data while we're writing to dest then we'll end up
+  // in ondata again. However, we only want to increase awaitDrain once because
+  // dest will only emit one 'drain' event for the multiple writes.
+  // => Introduce a guard on increasing awaitDrain.
+  var increasedAwaitDrain = false;
+  src.on('data', ondata);
+  function ondata(chunk) {
+    debug('ondata');
+    increasedAwaitDrain = false;
+    var ret = dest.write(chunk);
+    if (false === ret && !increasedAwaitDrain) {
+      // If the user unpiped during `dest.write()`, it is possible
+      // to get stuck in a permanently paused state if that write
+      // also returned false.
+      // => Check whether `dest` is still a piping destination.
+      if ((state.pipesCount === 1 && state.pipes === dest || state.pipesCount > 1 && indexOf(state.pipes, dest) !== -1) && !cleanedUp) {
+        debug('false write response, pause', src._readableState.awaitDrain);
+        src._readableState.awaitDrain++;
+        increasedAwaitDrain = true;
+      }
+      src.pause();
+    }
+  }
+
+  // if the dest has an error, then stop piping into it.
+  // however, don't suppress the throwing behavior for this.
+  function onerror(er) {
+    debug('onerror', er);
+    unpipe();
+    dest.removeListener('error', onerror);
+    if (EElistenerCount(dest, 'error') === 0) dest.emit('error', er);
+  }
+
+  // Make sure our error handler is attached before userland ones.
+  prependListener(dest, 'error', onerror);
+
+  // Both close and finish should trigger unpipe, but only once.
+  function onclose() {
+    dest.removeListener('finish', onfinish);
+    unpipe();
+  }
+  dest.once('close', onclose);
+  function onfinish() {
+    debug('onfinish');
+    dest.removeListener('close', onclose);
+    unpipe();
+  }
+  dest.once('finish', onfinish);
+
+  function unpipe() {
+    debug('unpipe');
+    src.unpipe(dest);
+  }
+
+  // tell the dest that it's being piped to
+  dest.emit('pipe', src);
+
+  // start the flow if it hasn't been started already.
+  if (!state.flowing) {
+    debug('pipe resume');
+    src.resume();
+  }
+
+  return dest;
+};
+
+function pipeOnDrain(src) {
+  return function () {
+    var state = src._readableState;
+    debug('pipeOnDrain', state.awaitDrain);
+    if (state.awaitDrain) state.awaitDrain--;
+    if (state.awaitDrain === 0 && EElistenerCount(src, 'data')) {
+      state.flowing = true;
+      flow(src);
+    }
+  };
+}
+
+Readable.prototype.unpipe = function (dest) {
+  var state = this._readableState;
+  var unpipeInfo = { hasUnpiped: false };
+
+  // if we're not piping anywhere, then do nothing.
+  if (state.pipesCount === 0) return this;
+
+  // just one destination.  most common case.
+  if (state.pipesCount === 1) {
+    // passed in one, but it's not the right one.
+    if (dest && dest !== state.pipes) return this;
+
+    if (!dest) dest = state.pipes;
+
+    // got a match.
+    state.pipes = null;
+    state.pipesCount = 0;
+    state.flowing = false;
+    if (dest) dest.emit('unpipe', this, unpipeInfo);
+    return this;
+  }
+
+  // slow case. multiple pipe destinations.
+
+  if (!dest) {
+    // remove all.
+    var dests = state.pipes;
+    var len = state.pipesCount;
+    state.pipes = null;
+    state.pipesCount = 0;
+    state.flowing = false;
+
+    for (var i = 0; i < len; i++) {
+      dests[i].emit('unpipe', this, unpipeInfo);
+    }return this;
+  }
+
+  // try to find the right one.
+  var index = indexOf(state.pipes, dest);
+  if (index === -1) return this;
+
+  state.pipes.splice(index, 1);
+  state.pipesCount -= 1;
+  if (state.pipesCount === 1) state.pipes = state.pipes[0];
+
+  dest.emit('unpipe', this, unpipeInfo);
+
+  return this;
+};
+
+// set up data events if they are asked for
+// Ensure readable listeners eventually get something
+Readable.prototype.on = function (ev, fn) {
+  var res = Stream.prototype.on.call(this, ev, fn);
+
+  if (ev === 'data') {
+    // Start flowing on next tick if stream isn't explicitly paused
+    if (this._readableState.flowing !== false) this.resume();
+  } else if (ev === 'readable') {
+    var state = this._readableState;
+    if (!state.endEmitted && !state.readableListening) {
+      state.readableListening = state.needReadable = true;
+      state.emittedReadable = false;
+      if (!state.reading) {
+        pna.nextTick(nReadingNextTick, this);
+      } else if (state.length) {
+        emitReadable(this);
+      }
+    }
+  }
+
+  return res;
+};
+Readable.prototype.addListener = Readable.prototype.on;
+
+function nReadingNextTick(self) {
+  debug('readable nexttick read 0');
+  self.read(0);
+}
+
+// pause() and resume() are remnants of the legacy readable stream API
+// If the user uses them, then switch into old mode.
+Readable.prototype.resume = function () {
+  var state = this._readableState;
+  if (!state.flowing) {
+    debug('resume');
+    state.flowing = true;
+    resume(this, state);
+  }
+  return this;
+};
+
+function resume(stream, state) {
+  if (!state.resumeScheduled) {
+    state.resumeScheduled = true;
+    pna.nextTick(resume_, stream, state);
+  }
+}
+
+function resume_(stream, state) {
+  if (!state.reading) {
+    debug('resume read 0');
+    stream.read(0);
+  }
+
+  state.resumeScheduled = false;
+  state.awaitDrain = 0;
+  stream.emit('resume');
+  flow(stream);
+  if (state.flowing && !state.reading) stream.read(0);
+}
+
+Readable.prototype.pause = function () {
+  debug('call pause flowing=%j', this._readableState.flowing);
+  if (false !== this._readableState.flowing) {
+    debug('pause');
+    this._readableState.flowing = false;
+    this.emit('pause');
+  }
+  return this;
+};
+
+function flow(stream) {
+  var state = stream._readableState;
+  debug('flow', state.flowing);
+  while (state.flowing && stream.read() !== null) {}
+}
+
+// wrap an old-style stream as the async data source.
+// This is *not* part of the readable stream interface.
+// It is an ugly unfortunate mess of history.
+Readable.prototype.wrap = function (stream) {
+  var _this = this;
+
+  var state = this._readableState;
+  var paused = false;
+
+  stream.on('end', function () {
+    debug('wrapped end');
+    if (state.decoder && !state.ended) {
+      var chunk = state.decoder.end();
+      if (chunk && chunk.length) _this.push(chunk);
+    }
+
+    _this.push(null);
+  });
+
+  stream.on('data', function (chunk) {
+    debug('wrapped data');
+    if (state.decoder) chunk = state.decoder.write(chunk);
+
+    // don't skip over falsy values in objectMode
+    if (state.objectMode && (chunk === null || chunk === undefined)) return;else if (!state.objectMode && (!chunk || !chunk.length)) return;
+
+    var ret = _this.push(chunk);
+    if (!ret) {
+      paused = true;
+      stream.pause();
+    }
+  });
+
+  // proxy all the other methods.
+  // important when wrapping filters and duplexes.
+  for (var i in stream) {
+    if (this[i] === undefined && typeof stream[i] === 'function') {
+      this[i] = function (method) {
+        return function () {
+          return stream[method].apply(stream, arguments);
+        };
+      }(i);
+    }
+  }
+
+  // proxy certain important events.
+  for (var n = 0; n < kProxyEvents.length; n++) {
+    stream.on(kProxyEvents[n], this.emit.bind(this, kProxyEvents[n]));
+  }
+
+  // when we try to consume some more bytes, simply unpause the
+  // underlying stream.
+  this._read = function (n) {
+    debug('wrapped _read', n);
+    if (paused) {
+      paused = false;
+      stream.resume();
+    }
+  };
+
+  return this;
+};
+
+Object.defineProperty(Readable.prototype, 'readableHighWaterMark', {
+  // making it explicit this property is not enumerable
+  // because otherwise some prototype manipulation in
+  // userland will fail
+  enumerable: false,
+  get: function () {
+    return this._readableState.highWaterMark;
+  }
+});
+
+// exposed for testing purposes only.
+Readable._fromList = fromList;
+
+// Pluck off n bytes from an array of buffers.
+// Length is the combined lengths of all the buffers in the list.
+// This function is designed to be inlinable, so please take care when making
+// changes to the function body.
+function fromList(n, state) {
+  // nothing buffered
+  if (state.length === 0) return null;
+
+  var ret;
+  if (state.objectMode) ret = state.buffer.shift();else if (!n || n >= state.length) {
+    // read it all, truncate the list
+    if (state.decoder) ret = state.buffer.join('');else if (state.buffer.length === 1) ret = state.buffer.head.data;else ret = state.buffer.concat(state.length);
+    state.buffer.clear();
+  } else {
+    // read part of list
+    ret = fromListPartial(n, state.buffer, state.decoder);
+  }
+
+  return ret;
+}
+
+// Extracts only enough buffered data to satisfy the amount requested.
+// This function is designed to be inlinable, so please take care when making
+// changes to the function body.
+function fromListPartial(n, list, hasStrings) {
+  var ret;
+  if (n < list.head.data.length) {
+    // slice is the same for buffers and strings
+    ret = list.head.data.slice(0, n);
+    list.head.data = list.head.data.slice(n);
+  } else if (n === list.head.data.length) {
+    // first chunk is a perfect match
+    ret = list.shift();
+  } else {
+    // result spans more than one buffer
+    ret = hasStrings ? copyFromBufferString(n, list) : copyFromBuffer(n, list);
+  }
+  return ret;
+}
+
+// Copies a specified amount of characters from the list of buffered data
+// chunks.
+// This function is designed to be inlinable, so please take care when making
+// changes to the function body.
+function copyFromBufferString(n, list) {
+  var p = list.head;
+  var c = 1;
+  var ret = p.data;
+  n -= ret.length;
+  while (p = p.next) {
+    var str = p.data;
+    var nb = n > str.length ? str.length : n;
+    if (nb === str.length) ret += str;else ret += str.slice(0, n);
+    n -= nb;
+    if (n === 0) {
+      if (nb === str.length) {
+        ++c;
+        if (p.next) list.head = p.next;else list.head = list.tail = null;
+      } else {
+        list.head = p;
+        p.data = str.slice(nb);
+      }
+      break;
+    }
+    ++c;
+  }
+  list.length -= c;
+  return ret;
+}
+
+// Copies a specified amount of bytes from the list of buffered data chunks.
+// This function is designed to be inlinable, so please take care when making
+// changes to the function body.
+function copyFromBuffer(n, list) {
+  var ret = Buffer.allocUnsafe(n);
+  var p = list.head;
+  var c = 1;
+  p.data.copy(ret);
+  n -= p.data.length;
+  while (p = p.next) {
+    var buf = p.data;
+    var nb = n > buf.length ? buf.length : n;
+    buf.copy(ret, ret.length - n, 0, nb);
+    n -= nb;
+    if (n === 0) {
+      if (nb === buf.length) {
+        ++c;
+        if (p.next) list.head = p.next;else list.head = list.tail = null;
+      } else {
+        list.head = p;
+        p.data = buf.slice(nb);
+      }
+      break;
+    }
+    ++c;
+  }
+  list.length -= c;
+  return ret;
+}
+
+function endReadable(stream) {
+  var state = stream._readableState;
+
+  // If we get here before consuming all the bytes, then that is a
+  // bug in node.  Should never happen.
+  if (state.length > 0) throw new Error('"endReadable()" called on non-empty stream');
+
+  if (!state.endEmitted) {
+    state.ended = true;
+    pna.nextTick(endReadableNT, state, stream);
+  }
+}
+
+function endReadableNT(state, stream) {
+  // Check that we didn't get one last unshift.
+  if (!state.endEmitted && state.length === 0) {
+    state.endEmitted = true;
+    stream.readable = false;
+    stream.emit('end');
+  }
+}
+
+function indexOf(xs, x) {
+  for (var i = 0, l = xs.length; i < l; i++) {
+    if (xs[i] === x) return i;
+  }
+  return -1;
+}
+}).call(this,require('_process'),typeof global !== "undefined" ? global : typeof self !== "undefined" ? self : typeof window !== "undefined" ? window : {})
+},{"./_stream_duplex":133,"./internal/streams/BufferList":138,"./internal/streams/destroy":139,"./internal/streams/stream":140,"_process":119,"core-util-is":51,"events":84,"inherits":101,"isarray":103,"process-nextick-args":118,"safe-buffer":146,"string_decoder/":156,"util":20}],136:[function(require,module,exports){
+// Copyright Joyent, Inc. and other Node contributors.
+//
+// Permission is hereby granted, free of charge, to any person obtaining a
+// copy of this software and associated documentation files (the
+// "Software"), to deal in the Software without restriction, including
+// without limitation the rights to use, copy, modify, merge, publish,
+// distribute, sublicense, and/or sell copies of the Software, and to permit
+// persons to whom the Software is furnished to do so, subject to the
+// following conditions:
+//
+// The above copyright notice and this permission notice shall be included
+// in all copies or substantial portions of the Software.
+//
+// THE SOFTWARE IS PROVIDED "AS IS", WITHOUT WARRANTY OF ANY KIND, EXPRESS
+// OR IMPLIED, INCLUDING BUT NOT LIMITED TO THE WARRANTIES OF
+// MERCHANTABILITY, FITNESS FOR A PARTICULAR PURPOSE AND NONINFRINGEMENT. IN
+// NO EVENT SHALL THE AUTHORS OR COPYRIGHT HOLDERS BE LIABLE FOR ANY CLAIM,
+// DAMAGES OR OTHER LIABILITY, WHETHER IN AN ACTION OF CONTRACT, TORT OR
+// OTHERWISE, ARISING FROM, OUT OF OR IN CONNECTION WITH THE SOFTWARE OR THE
+// USE OR OTHER DEALINGS IN THE SOFTWARE.
+
+// a transform stream is a readable/writable stream where you do
+// something with the data.  Sometimes it's called a "filter",
+// but that's not a great name for it, since that implies a thing where
+// some bits pass through, and others are simply ignored.  (That would
+// be a valid example of a transform, of course.)
+//
+// While the output is causally related to the input, it's not a
+// necessarily symmetric or synchronous transformation.  For example,
+// a zlib stream might take multiple plain-text writes(), and then
+// emit a single compressed chunk some time in the future.
+//
+// Here's how this works:
+//
+// The Transform stream has all the aspects of the readable and writable
+// stream classes.  When you write(chunk), that calls _write(chunk,cb)
+// internally, and returns false if there's a lot of pending writes
+// buffered up.  When you call read(), that calls _read(n) until
+// there's enough pending readable data buffered up.
+//
+// In a transform stream, the written data is placed in a buffer.  When
+// _read(n) is called, it transforms the queued up data, calling the
+// buffered _write cb's as it consumes chunks.  If consuming a single
+// written chunk would result in multiple output chunks, then the first
+// outputted bit calls the readcb, and subsequent chunks just go into
+// the read buffer, and will cause it to emit 'readable' if necessary.
+//
+// This way, back-pressure is actually determined by the reading side,
+// since _read has to be called to start processing a new chunk.  However,
+// a pathological inflate type of transform can cause excessive buffering
+// here.  For example, imagine a stream where every byte of input is
+// interpreted as an integer from 0-255, and then results in that many
+// bytes of output.  Writing the 4 bytes {ff,ff,ff,ff} would result in
+// 1kb of data being output.  In this case, you could write a very small
+// amount of input, and end up with a very large amount of output.  In
+// such a pathological inflating mechanism, there'd be no way to tell
+// the system to stop doing the transform.  A single 4MB write could
+// cause the system to run out of memory.
+//
+// However, even in such a pathological case, only a single written chunk
+// would be consumed, and then the rest would wait (un-transformed) until
+// the results of the previous transformed chunk were consumed.
+
+'use strict';
+
+module.exports = Transform;
+
+var Duplex = require('./_stream_duplex');
+
+/*<replacement>*/
+var util = require('core-util-is');
+util.inherits = require('inherits');
+/*</replacement>*/
+
+util.inherits(Transform, Duplex);
+
+function afterTransform(er, data) {
+  var ts = this._transformState;
+  ts.transforming = false;
+
+  var cb = ts.writecb;
+
+  if (!cb) {
+    return this.emit('error', new Error('write callback called multiple times'));
+  }
+
+  ts.writechunk = null;
+  ts.writecb = null;
+
+  if (data != null) // single equals check for both `null` and `undefined`
+    this.push(data);
+
+  cb(er);
+
+  var rs = this._readableState;
+  rs.reading = false;
+  if (rs.needReadable || rs.length < rs.highWaterMark) {
+    this._read(rs.highWaterMark);
+  }
+}
+
+function Transform(options) {
+  if (!(this instanceof Transform)) return new Transform(options);
+
+  Duplex.call(this, options);
+
+  this._transformState = {
+    afterTransform: afterTransform.bind(this),
+    needTransform: false,
+    transforming: false,
+    writecb: null,
+    writechunk: null,
+    writeencoding: null
+  };
+
+  // start out asking for a readable event once data is transformed.
+  this._readableState.needReadable = true;
+
+  // we have implemented the _read method, and done the other things
+  // that Readable wants before the first _read call, so unset the
+  // sync guard flag.
+  this._readableState.sync = false;
+
+  if (options) {
+    if (typeof options.transform === 'function') this._transform = options.transform;
+
+    if (typeof options.flush === 'function') this._flush = options.flush;
+  }
+
+  // When the writable side finishes, then flush out anything remaining.
+  this.on('prefinish', prefinish);
+}
+
+function prefinish() {
+  var _this = this;
+
+  if (typeof this._flush === 'function') {
+    this._flush(function (er, data) {
+      done(_this, er, data);
+    });
+  } else {
+    done(this, null, null);
+  }
+}
+
+Transform.prototype.push = function (chunk, encoding) {
+  this._transformState.needTransform = false;
+  return Duplex.prototype.push.call(this, chunk, encoding);
+};
+
+// This is the part where you do stuff!
+// override this function in implementation classes.
+// 'chunk' is an input chunk.
+//
+// Call `push(newChunk)` to pass along transformed output
+// to the readable side.  You may call 'push' zero or more times.
+//
+// Call `cb(err)` when you are done with this chunk.  If you pass
+// an error, then that'll put the hurt on the whole operation.  If you
+// never call cb(), then you'll never get another chunk.
+Transform.prototype._transform = function (chunk, encoding, cb) {
+  throw new Error('_transform() is not implemented');
+};
+
+Transform.prototype._write = function (chunk, encoding, cb) {
+  var ts = this._transformState;
+  ts.writecb = cb;
+  ts.writechunk = chunk;
+  ts.writeencoding = encoding;
+  if (!ts.transforming) {
+    var rs = this._readableState;
+    if (ts.needTransform || rs.needReadable || rs.length < rs.highWaterMark) this._read(rs.highWaterMark);
+  }
+};
+
+// Doesn't matter what the args are here.
+// _transform does all the work.
+// That we got here means that the readable side wants more data.
+Transform.prototype._read = function (n) {
+  var ts = this._transformState;
+
+  if (ts.writechunk !== null && ts.writecb && !ts.transforming) {
+    ts.transforming = true;
+    this._transform(ts.writechunk, ts.writeencoding, ts.afterTransform);
+  } else {
+    // mark that we need a transform, so that any data that comes in
+    // will get processed, now that we've asked for it.
+    ts.needTransform = true;
+  }
+};
+
+Transform.prototype._destroy = function (err, cb) {
+  var _this2 = this;
+
+  Duplex.prototype._destroy.call(this, err, function (err2) {
+    cb(err2);
+    _this2.emit('close');
+  });
+};
+
+function done(stream, er, data) {
+  if (er) return stream.emit('error', er);
+
+  if (data != null) // single equals check for both `null` and `undefined`
+    stream.push(data);
+
+  // if there's nothing in the write buffer, then that means
+  // that nothing more will ever be provided
+  if (stream._writableState.length) throw new Error('Calling transform done when ws.length != 0');
+
+  if (stream._transformState.transforming) throw new Error('Calling transform done when still transforming');
+
+  return stream.push(null);
+}
+},{"./_stream_duplex":133,"core-util-is":51,"inherits":101}],137:[function(require,module,exports){
+(function (process,global){
+// Copyright Joyent, Inc. and other Node contributors.
+//
+// Permission is hereby granted, free of charge, to any person obtaining a
+// copy of this software and associated documentation files (the
+// "Software"), to deal in the Software without restriction, including
+// without limitation the rights to use, copy, modify, merge, publish,
+// distribute, sublicense, and/or sell copies of the Software, and to permit
+// persons to whom the Software is furnished to do so, subject to the
+// following conditions:
+//
+// The above copyright notice and this permission notice shall be included
+// in all copies or substantial portions of the Software.
+//
+// THE SOFTWARE IS PROVIDED "AS IS", WITHOUT WARRANTY OF ANY KIND, EXPRESS
+// OR IMPLIED, INCLUDING BUT NOT LIMITED TO THE WARRANTIES OF
+// MERCHANTABILITY, FITNESS FOR A PARTICULAR PURPOSE AND NONINFRINGEMENT. IN
+// NO EVENT SHALL THE AUTHORS OR COPYRIGHT HOLDERS BE LIABLE FOR ANY CLAIM,
+// DAMAGES OR OTHER LIABILITY, WHETHER IN AN ACTION OF CONTRACT, TORT OR
+// OTHERWISE, ARISING FROM, OUT OF OR IN CONNECTION WITH THE SOFTWARE OR THE
+// USE OR OTHER DEALINGS IN THE SOFTWARE.
+
+// A bit simpler than readable streams.
+// Implement an async ._write(chunk, encoding, cb), and it'll handle all
+// the drain event emission and buffering.
+
+'use strict';
+
+/*<replacement>*/
+
+var pna = require('process-nextick-args');
+/*</replacement>*/
+
+module.exports = Writable;
+
+/* <replacement> */
+function WriteReq(chunk, encoding, cb) {
+  this.chunk = chunk;
+  this.encoding = encoding;
+  this.callback = cb;
+  this.next = null;
+}
+
+// It seems a linked list but it is not
+// there will be only 2 of these for each stream
+function CorkedRequest(state) {
+  var _this = this;
+
+  this.next = null;
+  this.entry = null;
+  this.finish = function () {
+    onCorkedFinish(_this, state);
+  };
+}
+/* </replacement> */
+
+/*<replacement>*/
+var asyncWrite = !process.browser && ['v0.10', 'v0.9.'].indexOf(process.version.slice(0, 5)) > -1 ? setImmediate : pna.nextTick;
+/*</replacement>*/
+
+/*<replacement>*/
+var Duplex;
+/*</replacement>*/
+
+Writable.WritableState = WritableState;
+
+/*<replacement>*/
+var util = require('core-util-is');
+util.inherits = require('inherits');
+/*</replacement>*/
+
+/*<replacement>*/
+var internalUtil = {
+  deprecate: require('util-deprecate')
+};
+/*</replacement>*/
+
+/*<replacement>*/
+var Stream = require('./internal/streams/stream');
+/*</replacement>*/
+
+/*<replacement>*/
+
+var Buffer = require('safe-buffer').Buffer;
+var OurUint8Array = global.Uint8Array || function () {};
+function _uint8ArrayToBuffer(chunk) {
+  return Buffer.from(chunk);
+}
+function _isUint8Array(obj) {
+  return Buffer.isBuffer(obj) || obj instanceof OurUint8Array;
+}
+
+/*</replacement>*/
+
+var destroyImpl = require('./internal/streams/destroy');
+
+util.inherits(Writable, Stream);
+
+function nop() {}
+
+function WritableState(options, stream) {
+  Duplex = Duplex || require('./_stream_duplex');
+
+  options = options || {};
+
+  // Duplex streams are both readable and writable, but share
+  // the same options object.
+  // However, some cases require setting options to different
+  // values for the readable and the writable sides of the duplex stream.
+  // These options can be provided separately as readableXXX and writableXXX.
+  var isDuplex = stream instanceof Duplex;
+
+  // object stream flag to indicate whether or not this stream
+  // contains buffers or objects.
+  this.objectMode = !!options.objectMode;
+
+  if (isDuplex) this.objectMode = this.objectMode || !!options.writableObjectMode;
+
+  // the point at which write() starts returning false
+  // Note: 0 is a valid value, means that we always return false if
+  // the entire buffer is not flushed immediately on write()
+  var hwm = options.highWaterMark;
+  var writableHwm = options.writableHighWaterMark;
+  var defaultHwm = this.objectMode ? 16 : 16 * 1024;
+
+  if (hwm || hwm === 0) this.highWaterMark = hwm;else if (isDuplex && (writableHwm || writableHwm === 0)) this.highWaterMark = writableHwm;else this.highWaterMark = defaultHwm;
+
+  // cast to ints.
+  this.highWaterMark = Math.floor(this.highWaterMark);
+
+  // if _final has been called
+  this.finalCalled = false;
+
+  // drain event flag.
+  this.needDrain = false;
+  // at the start of calling end()
+  this.ending = false;
+  // when end() has been called, and returned
+  this.ended = false;
+  // when 'finish' is emitted
+  this.finished = false;
+
+  // has it been destroyed
+  this.destroyed = false;
+
+  // should we decode strings into buffers before passing to _write?
+  // this is here so that some node-core streams can optimize string
+  // handling at a lower level.
+  var noDecode = options.decodeStrings === false;
+  this.decodeStrings = !noDecode;
+
+  // Crypto is kind of old and crusty.  Historically, its default string
+  // encoding is 'binary' so we have to make this configurable.
+  // Everything else in the universe uses 'utf8', though.
+  this.defaultEncoding = options.defaultEncoding || 'utf8';
+
+  // not an actual buffer we keep track of, but a measurement
+  // of how much we're waiting to get pushed to some underlying
+  // socket or file.
+  this.length = 0;
+
+  // a flag to see when we're in the middle of a write.
+  this.writing = false;
+
+  // when true all writes will be buffered until .uncork() call
+  this.corked = 0;
+
+  // a flag to be able to tell if the onwrite cb is called immediately,
+  // or on a later tick.  We set this to true at first, because any
+  // actions that shouldn't happen until "later" should generally also
+  // not happen before the first write call.
+  this.sync = true;
+
+  // a flag to know if we're processing previously buffered items, which
+  // may call the _write() callback in the same tick, so that we don't
+  // end up in an overlapped onwrite situation.
+  this.bufferProcessing = false;
+
+  // the callback that's passed to _write(chunk,cb)
+  this.onwrite = function (er) {
+    onwrite(stream, er);
+  };
+
+  // the callback that the user supplies to write(chunk,encoding,cb)
+  this.writecb = null;
+
+  // the amount that is being written when _write is called.
+  this.writelen = 0;
+
+  this.bufferedRequest = null;
+  this.lastBufferedRequest = null;
+
+  // number of pending user-supplied write callbacks
+  // this must be 0 before 'finish' can be emitted
+  this.pendingcb = 0;
+
+  // emit prefinish if the only thing we're waiting for is _write cbs
+  // This is relevant for synchronous Transform streams
+  this.prefinished = false;
+
+  // True if the error was already emitted and should not be thrown again
+  this.errorEmitted = false;
+
+  // count buffered requests
+  this.bufferedRequestCount = 0;
+
+  // allocate the first CorkedRequest, there is always
+  // one allocated and free to use, and we maintain at most two
+  this.corkedRequestsFree = new CorkedRequest(this);
+}
+
+WritableState.prototype.getBuffer = function getBuffer() {
+  var current = this.bufferedRequest;
+  var out = [];
+  while (current) {
+    out.push(current);
+    current = current.next;
+  }
+  return out;
+};
+
+(function () {
+  try {
+    Object.defineProperty(WritableState.prototype, 'buffer', {
+      get: internalUtil.deprecate(function () {
+        return this.getBuffer();
+      }, '_writableState.buffer is deprecated. Use _writableState.getBuffer ' + 'instead.', 'DEP0003')
+    });
+  } catch (_) {}
+})();
+
+// Test _writableState for inheritance to account for Duplex streams,
+// whose prototype chain only points to Readable.
+var realHasInstance;
+if (typeof Symbol === 'function' && Symbol.hasInstance && typeof Function.prototype[Symbol.hasInstance] === 'function') {
+  realHasInstance = Function.prototype[Symbol.hasInstance];
+  Object.defineProperty(Writable, Symbol.hasInstance, {
+    value: function (object) {
+      if (realHasInstance.call(this, object)) return true;
+      if (this !== Writable) return false;
+
+      return object && object._writableState instanceof WritableState;
+    }
+  });
+} else {
+  realHasInstance = function (object) {
+    return object instanceof this;
+  };
+}
+
+function Writable(options) {
+  Duplex = Duplex || require('./_stream_duplex');
+
+  // Writable ctor is applied to Duplexes, too.
+  // `realHasInstance` is necessary because using plain `instanceof`
+  // would return false, as no `_writableState` property is attached.
+
+  // Trying to use the custom `instanceof` for Writable here will also break the
+  // Node.js LazyTransform implementation, which has a non-trivial getter for
+  // `_writableState` that would lead to infinite recursion.
+  if (!realHasInstance.call(Writable, this) && !(this instanceof Duplex)) {
+    return new Writable(options);
+  }
+
+  this._writableState = new WritableState(options, this);
+
+  // legacy.
+  this.writable = true;
+
+  if (options) {
+    if (typeof options.write === 'function') this._write = options.write;
+
+    if (typeof options.writev === 'function') this._writev = options.writev;
+
+    if (typeof options.destroy === 'function') this._destroy = options.destroy;
+
+    if (typeof options.final === 'function') this._final = options.final;
+  }
+
+  Stream.call(this);
+}
+
+// Otherwise people can pipe Writable streams, which is just wrong.
+Writable.prototype.pipe = function () {
+  this.emit('error', new Error('Cannot pipe, not readable'));
+};
+
+function writeAfterEnd(stream, cb) {
+  var er = new Error('write after end');
+  // TODO: defer error events consistently everywhere, not just the cb
+  stream.emit('error', er);
+  pna.nextTick(cb, er);
+}
+
+// Checks that a user-supplied chunk is valid, especially for the particular
+// mode the stream is in. Currently this means that `null` is never accepted
+// and undefined/non-string values are only allowed in object mode.
+function validChunk(stream, state, chunk, cb) {
+  var valid = true;
+  var er = false;
+
+  if (chunk === null) {
+    er = new TypeError('May not write null values to stream');
+  } else if (typeof chunk !== 'string' && chunk !== undefined && !state.objectMode) {
+    er = new TypeError('Invalid non-string/buffer chunk');
+  }
+  if (er) {
+    stream.emit('error', er);
+    pna.nextTick(cb, er);
+    valid = false;
+  }
+  return valid;
+}
+
+Writable.prototype.write = function (chunk, encoding, cb) {
+  var state = this._writableState;
+  var ret = false;
+  var isBuf = !state.objectMode && _isUint8Array(chunk);
+
+  if (isBuf && !Buffer.isBuffer(chunk)) {
+    chunk = _uint8ArrayToBuffer(chunk);
+  }
+
+  if (typeof encoding === 'function') {
+    cb = encoding;
+    encoding = null;
+  }
+
+  if (isBuf) encoding = 'buffer';else if (!encoding) encoding = state.defaultEncoding;
+
+  if (typeof cb !== 'function') cb = nop;
+
+  if (state.ended) writeAfterEnd(this, cb);else if (isBuf || validChunk(this, state, chunk, cb)) {
+    state.pendingcb++;
+    ret = writeOrBuffer(this, state, isBuf, chunk, encoding, cb);
+  }
+
+  return ret;
+};
+
+Writable.prototype.cork = function () {
+  var state = this._writableState;
+
+  state.corked++;
+};
+
+Writable.prototype.uncork = function () {
+  var state = this._writableState;
+
+  if (state.corked) {
+    state.corked--;
+
+    if (!state.writing && !state.corked && !state.finished && !state.bufferProcessing && state.bufferedRequest) clearBuffer(this, state);
+  }
+};
+
+Writable.prototype.setDefaultEncoding = function setDefaultEncoding(encoding) {
+  // node::ParseEncoding() requires lower case.
+  if (typeof encoding === 'string') encoding = encoding.toLowerCase();
+  if (!(['hex', 'utf8', 'utf-8', 'ascii', 'binary', 'base64', 'ucs2', 'ucs-2', 'utf16le', 'utf-16le', 'raw'].indexOf((encoding + '').toLowerCase()) > -1)) throw new TypeError('Unknown encoding: ' + encoding);
+  this._writableState.defaultEncoding = encoding;
+  return this;
+};
+
+function decodeChunk(state, chunk, encoding) {
+  if (!state.objectMode && state.decodeStrings !== false && typeof chunk === 'string') {
+    chunk = Buffer.from(chunk, encoding);
+  }
+  return chunk;
+}
+
+Object.defineProperty(Writable.prototype, 'writableHighWaterMark', {
+  // making it explicit this property is not enumerable
+  // because otherwise some prototype manipulation in
+  // userland will fail
+  enumerable: false,
+  get: function () {
+    return this._writableState.highWaterMark;
+  }
+});
+
+// if we're already writing something, then just put this
+// in the queue, and wait our turn.  Otherwise, call _write
+// If we return false, then we need a drain event, so set that flag.
+function writeOrBuffer(stream, state, isBuf, chunk, encoding, cb) {
+  if (!isBuf) {
+    var newChunk = decodeChunk(state, chunk, encoding);
+    if (chunk !== newChunk) {
+      isBuf = true;
+      encoding = 'buffer';
+      chunk = newChunk;
+    }
+  }
+  var len = state.objectMode ? 1 : chunk.length;
+
+  state.length += len;
+
+  var ret = state.length < state.highWaterMark;
+  // we must ensure that previous needDrain will not be reset to false.
+  if (!ret) state.needDrain = true;
+
+  if (state.writing || state.corked) {
+    var last = state.lastBufferedRequest;
+    state.lastBufferedRequest = {
+      chunk: chunk,
+      encoding: encoding,
+      isBuf: isBuf,
+      callback: cb,
+      next: null
+    };
+    if (last) {
+      last.next = state.lastBufferedRequest;
+    } else {
+      state.bufferedRequest = state.lastBufferedRequest;
+    }
+    state.bufferedRequestCount += 1;
+  } else {
+    doWrite(stream, state, false, len, chunk, encoding, cb);
+  }
+
+  return ret;
+}
+
+function doWrite(stream, state, writev, len, chunk, encoding, cb) {
+  state.writelen = len;
+  state.writecb = cb;
+  state.writing = true;
+  state.sync = true;
+  if (writev) stream._writev(chunk, state.onwrite);else stream._write(chunk, encoding, state.onwrite);
+  state.sync = false;
+}
+
+function onwriteError(stream, state, sync, er, cb) {
+  --state.pendingcb;
+
+  if (sync) {
+    // defer the callback if we are being called synchronously
+    // to avoid piling up things on the stack
+    pna.nextTick(cb, er);
+    // this can emit finish, and it will always happen
+    // after error
+    pna.nextTick(finishMaybe, stream, state);
+    stream._writableState.errorEmitted = true;
+    stream.emit('error', er);
+  } else {
+    // the caller expect this to happen before if
+    // it is async
+    cb(er);
+    stream._writableState.errorEmitted = true;
+    stream.emit('error', er);
+    // this can emit finish, but finish must
+    // always follow error
+    finishMaybe(stream, state);
+  }
+}
+
+function onwriteStateUpdate(state) {
+  state.writing = false;
+  state.writecb = null;
+  state.length -= state.writelen;
+  state.writelen = 0;
+}
+
+function onwrite(stream, er) {
+  var state = stream._writableState;
+  var sync = state.sync;
+  var cb = state.writecb;
+
+  onwriteStateUpdate(state);
+
+  if (er) onwriteError(stream, state, sync, er, cb);else {
+    // Check if we're actually ready to finish, but don't emit yet
+    var finished = needFinish(state);
+
+    if (!finished && !state.corked && !state.bufferProcessing && state.bufferedRequest) {
+      clearBuffer(stream, state);
+    }
+
+    if (sync) {
+      /*<replacement>*/
+      asyncWrite(afterWrite, stream, state, finished, cb);
+      /*</replacement>*/
+    } else {
+      afterWrite(stream, state, finished, cb);
+    }
+  }
+}
+
+function afterWrite(stream, state, finished, cb) {
+  if (!finished) onwriteDrain(stream, state);
+  state.pendingcb--;
+  cb();
+  finishMaybe(stream, state);
+}
+
+// Must force callback to be called on nextTick, so that we don't
+// emit 'drain' before the write() consumer gets the 'false' return
+// value, and has a chance to attach a 'drain' listener.
+function onwriteDrain(stream, state) {
+  if (state.length === 0 && state.needDrain) {
+    state.needDrain = false;
+    stream.emit('drain');
+  }
+}
+
+// if there's something in the buffer waiting, then process it
+function clearBuffer(stream, state) {
+  state.bufferProcessing = true;
+  var entry = state.bufferedRequest;
+
+  if (stream._writev && entry && entry.next) {
+    // Fast case, write everything using _writev()
+    var l = state.bufferedRequestCount;
+    var buffer = new Array(l);
+    var holder = state.corkedRequestsFree;
+    holder.entry = entry;
+
+    var count = 0;
+    var allBuffers = true;
+    while (entry) {
+      buffer[count] = entry;
+      if (!entry.isBuf) allBuffers = false;
+      entry = entry.next;
+      count += 1;
+    }
+    buffer.allBuffers = allBuffers;
+
+    doWrite(stream, state, true, state.length, buffer, '', holder.finish);
+
+    // doWrite is almost always async, defer these to save a bit of time
+    // as the hot path ends with doWrite
+    state.pendingcb++;
+    state.lastBufferedRequest = null;
+    if (holder.next) {
+      state.corkedRequestsFree = holder.next;
+      holder.next = null;
+    } else {
+      state.corkedRequestsFree = new CorkedRequest(state);
+    }
+    state.bufferedRequestCount = 0;
+  } else {
+    // Slow case, write chunks one-by-one
+    while (entry) {
+      var chunk = entry.chunk;
+      var encoding = entry.encoding;
+      var cb = entry.callback;
+      var len = state.objectMode ? 1 : chunk.length;
+
+      doWrite(stream, state, false, len, chunk, encoding, cb);
+      entry = entry.next;
+      state.bufferedRequestCount--;
+      // if we didn't call the onwrite immediately, then
+      // it means that we need to wait until it does.
+      // also, that means that the chunk and cb are currently
+      // being processed, so move the buffer counter past them.
+      if (state.writing) {
+        break;
+      }
+    }
+
+    if (entry === null) state.lastBufferedRequest = null;
+  }
+
+  state.bufferedRequest = entry;
+  state.bufferProcessing = false;
+}
+
+Writable.prototype._write = function (chunk, encoding, cb) {
+  cb(new Error('_write() is not implemented'));
+};
+
+Writable.prototype._writev = null;
+
+Writable.prototype.end = function (chunk, encoding, cb) {
+  var state = this._writableState;
+
+  if (typeof chunk === 'function') {
+    cb = chunk;
+    chunk = null;
+    encoding = null;
+  } else if (typeof encoding === 'function') {
+    cb = encoding;
+    encoding = null;
+  }
+
+  if (chunk !== null && chunk !== undefined) this.write(chunk, encoding);
+
+  // .end() fully uncorks
+  if (state.corked) {
+    state.corked = 1;
+    this.uncork();
+  }
+
+  // ignore unnecessary end() calls.
+  if (!state.ending && !state.finished) endWritable(this, state, cb);
+};
+
+function needFinish(state) {
+  return state.ending && state.length === 0 && state.bufferedRequest === null && !state.finished && !state.writing;
+}
+function callFinal(stream, state) {
+  stream._final(function (err) {
+    state.pendingcb--;
+    if (err) {
+      stream.emit('error', err);
+    }
+    state.prefinished = true;
+    stream.emit('prefinish');
+    finishMaybe(stream, state);
+  });
+}
+function prefinish(stream, state) {
+  if (!state.prefinished && !state.finalCalled) {
+    if (typeof stream._final === 'function') {
+      state.pendingcb++;
+      state.finalCalled = true;
+      pna.nextTick(callFinal, stream, state);
+    } else {
+      state.prefinished = true;
+      stream.emit('prefinish');
+    }
+  }
+}
+
+function finishMaybe(stream, state) {
+  var need = needFinish(state);
+  if (need) {
+    prefinish(stream, state);
+    if (state.pendingcb === 0) {
+      state.finished = true;
+      stream.emit('finish');
+    }
+  }
+  return need;
+}
+
+function endWritable(stream, state, cb) {
+  state.ending = true;
+  finishMaybe(stream, state);
+  if (cb) {
+    if (state.finished) pna.nextTick(cb);else stream.once('finish', cb);
+  }
+  state.ended = true;
+  stream.writable = false;
+}
+
+function onCorkedFinish(corkReq, state, err) {
+  var entry = corkReq.entry;
+  corkReq.entry = null;
+  while (entry) {
+    var cb = entry.callback;
+    state.pendingcb--;
+    cb(err);
+    entry = entry.next;
+  }
+  if (state.corkedRequestsFree) {
+    state.corkedRequestsFree.next = corkReq;
+  } else {
+    state.corkedRequestsFree = corkReq;
+  }
+}
+
+Object.defineProperty(Writable.prototype, 'destroyed', {
+  get: function () {
+    if (this._writableState === undefined) {
+      return false;
+    }
+    return this._writableState.destroyed;
+  },
+  set: function (value) {
+    // we ignore the value if the stream
+    // has not been initialized yet
+    if (!this._writableState) {
+      return;
+    }
+
+    // backward compatibility, the user is explicitly
+    // managing destroyed
+    this._writableState.destroyed = value;
+  }
+});
+
+Writable.prototype.destroy = destroyImpl.destroy;
+Writable.prototype._undestroy = destroyImpl.undestroy;
+Writable.prototype._destroy = function (err, cb) {
+  this.end();
+  cb(err);
+};
+}).call(this,require('_process'),typeof global !== "undefined" ? global : typeof self !== "undefined" ? self : typeof window !== "undefined" ? window : {})
+},{"./_stream_duplex":133,"./internal/streams/destroy":139,"./internal/streams/stream":140,"_process":119,"core-util-is":51,"inherits":101,"process-nextick-args":118,"safe-buffer":146,"util-deprecate":159}],138:[function(require,module,exports){
+'use strict';
+
+function _classCallCheck(instance, Constructor) { if (!(instance instanceof Constructor)) { throw new TypeError("Cannot call a class as a function"); } }
+
+var Buffer = require('safe-buffer').Buffer;
+var util = require('util');
+
+function copyBuffer(src, target, offset) {
+  src.copy(target, offset);
+}
+
+module.exports = function () {
+  function BufferList() {
+    _classCallCheck(this, BufferList);
+
+    this.head = null;
+    this.tail = null;
+    this.length = 0;
+  }
+
+  BufferList.prototype.push = function push(v) {
+    var entry = { data: v, next: null };
+    if (this.length > 0) this.tail.next = entry;else this.head = entry;
+    this.tail = entry;
+    ++this.length;
+  };
+
+  BufferList.prototype.unshift = function unshift(v) {
+    var entry = { data: v, next: this.head };
+    if (this.length === 0) this.tail = entry;
+    this.head = entry;
+    ++this.length;
+  };
+
+  BufferList.prototype.shift = function shift() {
+    if (this.length === 0) return;
+    var ret = this.head.data;
+    if (this.length === 1) this.head = this.tail = null;else this.head = this.head.next;
+    --this.length;
+    return ret;
+  };
+
+  BufferList.prototype.clear = function clear() {
+    this.head = this.tail = null;
+    this.length = 0;
+  };
+
+  BufferList.prototype.join = function join(s) {
+    if (this.length === 0) return '';
+    var p = this.head;
+    var ret = '' + p.data;
+    while (p = p.next) {
+      ret += s + p.data;
+    }return ret;
+  };
+
+  BufferList.prototype.concat = function concat(n) {
+    if (this.length === 0) return Buffer.alloc(0);
+    if (this.length === 1) return this.head.data;
+    var ret = Buffer.allocUnsafe(n >>> 0);
+    var p = this.head;
+    var i = 0;
+    while (p) {
+      copyBuffer(p.data, ret, i);
+      i += p.data.length;
+      p = p.next;
+    }
+    return ret;
+  };
+
+  return BufferList;
+}();
+
+if (util && util.inspect && util.inspect.custom) {
+  module.exports.prototype[util.inspect.custom] = function () {
+    var obj = util.inspect({ length: this.length });
+    return this.constructor.name + ' ' + obj;
+  };
+}
+},{"safe-buffer":146,"util":20}],139:[function(require,module,exports){
+'use strict';
+
+/*<replacement>*/
+
+var pna = require('process-nextick-args');
+/*</replacement>*/
+
+// undocumented cb() API, needed for core, not for public API
+function destroy(err, cb) {
+  var _this = this;
+
+  var readableDestroyed = this._readableState && this._readableState.destroyed;
+  var writableDestroyed = this._writableState && this._writableState.destroyed;
+
+  if (readableDestroyed || writableDestroyed) {
+    if (cb) {
+      cb(err);
+    } else if (err && (!this._writableState || !this._writableState.errorEmitted)) {
+      pna.nextTick(emitErrorNT, this, err);
+    }
+    return this;
+  }
+
+  // we set destroyed to true before firing error callbacks in order
+  // to make it re-entrance safe in case destroy() is called within callbacks
+
+  if (this._readableState) {
+    this._readableState.destroyed = true;
+  }
+
+  // if this is a duplex stream mark the writable part as destroyed as well
+  if (this._writableState) {
+    this._writableState.destroyed = true;
+  }
+
+  this._destroy(err || null, function (err) {
+    if (!cb && err) {
+      pna.nextTick(emitErrorNT, _this, err);
+      if (_this._writableState) {
+        _this._writableState.errorEmitted = true;
+      }
+    } else if (cb) {
+      cb(err);
+    }
+  });
+
+  return this;
+}
+
+function undestroy() {
+  if (this._readableState) {
+    this._readableState.destroyed = false;
+    this._readableState.reading = false;
+    this._readableState.ended = false;
+    this._readableState.endEmitted = false;
+  }
+
+  if (this._writableState) {
+    this._writableState.destroyed = false;
+    this._writableState.ended = false;
+    this._writableState.ending = false;
+    this._writableState.finished = false;
+    this._writableState.errorEmitted = false;
+  }
+}
+
+function emitErrorNT(self, err) {
+  self.emit('error', err);
+}
+
+module.exports = {
+  destroy: destroy,
+  undestroy: undestroy
+};
+},{"process-nextick-args":118}],140:[function(require,module,exports){
+module.exports = require('events').EventEmitter;
+
+},{"events":84}],141:[function(require,module,exports){
+module.exports = require('./readable').PassThrough
+
+},{"./readable":142}],142:[function(require,module,exports){
+exports = module.exports = require('./lib/_stream_readable.js');
+exports.Stream = exports;
+exports.Readable = exports;
+exports.Writable = require('./lib/_stream_writable.js');
+exports.Duplex = require('./lib/_stream_duplex.js');
+exports.Transform = require('./lib/_stream_transform.js');
+exports.PassThrough = require('./lib/_stream_passthrough.js');
+
+},{"./lib/_stream_duplex.js":133,"./lib/_stream_passthrough.js":134,"./lib/_stream_readable.js":135,"./lib/_stream_transform.js":136,"./lib/_stream_writable.js":137}],143:[function(require,module,exports){
+module.exports = require('./readable').Transform
+
+},{"./readable":142}],144:[function(require,module,exports){
+module.exports = require('./lib/_stream_writable.js');
+
+},{"./lib/_stream_writable.js":137}],145:[function(require,module,exports){
+'use strict'
+var Buffer = require('buffer').Buffer
+var inherits = require('inherits')
+var HashBase = require('hash-base')
+
+var ARRAY16 = new Array(16)
+
+var zl = [
+  0, 1, 2, 3, 4, 5, 6, 7, 8, 9, 10, 11, 12, 13, 14, 15,
+  7, 4, 13, 1, 10, 6, 15, 3, 12, 0, 9, 5, 2, 14, 11, 8,
+  3, 10, 14, 4, 9, 15, 8, 1, 2, 7, 0, 6, 13, 11, 5, 12,
+  1, 9, 11, 10, 0, 8, 12, 4, 13, 3, 7, 15, 14, 5, 6, 2,
+  4, 0, 5, 9, 7, 12, 2, 10, 14, 1, 3, 8, 11, 6, 15, 13
+]
+
+var zr = [
+  5, 14, 7, 0, 9, 2, 11, 4, 13, 6, 15, 8, 1, 10, 3, 12,
+  6, 11, 3, 7, 0, 13, 5, 10, 14, 15, 8, 12, 4, 9, 1, 2,
+  15, 5, 1, 3, 7, 14, 6, 9, 11, 8, 12, 2, 10, 0, 4, 13,
+  8, 6, 4, 1, 3, 11, 15, 0, 5, 12, 2, 13, 9, 7, 10, 14,
+  12, 15, 10, 4, 1, 5, 8, 7, 6, 2, 13, 14, 0, 3, 9, 11
+]
+
+var sl = [
+  11, 14, 15, 12, 5, 8, 7, 9, 11, 13, 14, 15, 6, 7, 9, 8,
+  7, 6, 8, 13, 11, 9, 7, 15, 7, 12, 15, 9, 11, 7, 13, 12,
+  11, 13, 6, 7, 14, 9, 13, 15, 14, 8, 13, 6, 5, 12, 7, 5,
+  11, 12, 14, 15, 14, 15, 9, 8, 9, 14, 5, 6, 8, 6, 5, 12,
+  9, 15, 5, 11, 6, 8, 13, 12, 5, 12, 13, 14, 11, 8, 5, 6
+]
+
+var sr = [
+  8, 9, 9, 11, 13, 15, 15, 5, 7, 7, 8, 11, 14, 14, 12, 6,
+  9, 13, 15, 7, 12, 8, 9, 11, 7, 7, 12, 7, 6, 15, 13, 11,
+  9, 7, 15, 11, 8, 6, 6, 14, 12, 13, 5, 14, 13, 13, 7, 5,
+  15, 5, 8, 11, 14, 14, 6, 14, 6, 9, 12, 9, 12, 5, 15, 8,
+  8, 5, 12, 9, 12, 5, 14, 6, 8, 13, 6, 5, 15, 13, 11, 11
+]
+
+var hl = [0x00000000, 0x5a827999, 0x6ed9eba1, 0x8f1bbcdc, 0xa953fd4e]
+var hr = [0x50a28be6, 0x5c4dd124, 0x6d703ef3, 0x7a6d76e9, 0x00000000]
+
+function RIPEMD160 () {
+  HashBase.call(this, 64)
+
+  // state
+  this._a = 0x67452301
+  this._b = 0xefcdab89
+  this._c = 0x98badcfe
+  this._d = 0x10325476
+  this._e = 0xc3d2e1f0
+}
+
+inherits(RIPEMD160, HashBase)
+
+RIPEMD160.prototype._update = function () {
+  var words = ARRAY16
+  for (var j = 0; j < 16; ++j) words[j] = this._block.readInt32LE(j * 4)
+
+  var al = this._a | 0
+  var bl = this._b | 0
+  var cl = this._c | 0
+  var dl = this._d | 0
+  var el = this._e | 0
+
+  var ar = this._a | 0
+  var br = this._b | 0
+  var cr = this._c | 0
+  var dr = this._d | 0
+  var er = this._e | 0
+
+  // computation
+  for (var i = 0; i < 80; i += 1) {
+    var tl
+    var tr
+    if (i < 16) {
+      tl = fn1(al, bl, cl, dl, el, words[zl[i]], hl[0], sl[i])
+      tr = fn5(ar, br, cr, dr, er, words[zr[i]], hr[0], sr[i])
+    } else if (i < 32) {
+      tl = fn2(al, bl, cl, dl, el, words[zl[i]], hl[1], sl[i])
+      tr = fn4(ar, br, cr, dr, er, words[zr[i]], hr[1], sr[i])
+    } else if (i < 48) {
+      tl = fn3(al, bl, cl, dl, el, words[zl[i]], hl[2], sl[i])
+      tr = fn3(ar, br, cr, dr, er, words[zr[i]], hr[2], sr[i])
+    } else if (i < 64) {
+      tl = fn4(al, bl, cl, dl, el, words[zl[i]], hl[3], sl[i])
+      tr = fn2(ar, br, cr, dr, er, words[zr[i]], hr[3], sr[i])
+    } else { // if (i<80) {
+      tl = fn5(al, bl, cl, dl, el, words[zl[i]], hl[4], sl[i])
+      tr = fn1(ar, br, cr, dr, er, words[zr[i]], hr[4], sr[i])
+    }
+
+    al = el
+    el = dl
+    dl = rotl(cl, 10)
+    cl = bl
+    bl = tl
+
+    ar = er
+    er = dr
+    dr = rotl(cr, 10)
+    cr = br
+    br = tr
+  }
+
+  // update state
+  var t = (this._b + cl + dr) | 0
+  this._b = (this._c + dl + er) | 0
+  this._c = (this._d + el + ar) | 0
+  this._d = (this._e + al + br) | 0
+  this._e = (this._a + bl + cr) | 0
+  this._a = t
+}
+
+RIPEMD160.prototype._digest = function () {
+  // create padding and handle blocks
+  this._block[this._blockOffset++] = 0x80
+  if (this._blockOffset > 56) {
+    this._block.fill(0, this._blockOffset, 64)
+    this._update()
+    this._blockOffset = 0
+  }
+
+  this._block.fill(0, this._blockOffset, 56)
+  this._block.writeUInt32LE(this._length[0], 56)
+  this._block.writeUInt32LE(this._length[1], 60)
+  this._update()
+
+  // produce result
+  var buffer = Buffer.alloc ? Buffer.alloc(20) : new Buffer(20)
+  buffer.writeInt32LE(this._a, 0)
+  buffer.writeInt32LE(this._b, 4)
+  buffer.writeInt32LE(this._c, 8)
+  buffer.writeInt32LE(this._d, 12)
+  buffer.writeInt32LE(this._e, 16)
+  return buffer
+}
+
+function rotl (x, n) {
+  return (x << n) | (x >>> (32 - n))
+}
+
+function fn1 (a, b, c, d, e, m, k, s) {
+  return (rotl((a + (b ^ c ^ d) + m + k) | 0, s) + e) | 0
+}
+
+function fn2 (a, b, c, d, e, m, k, s) {
+  return (rotl((a + ((b & c) | ((~b) & d)) + m + k) | 0, s) + e) | 0
+}
+
+function fn3 (a, b, c, d, e, m, k, s) {
+  return (rotl((a + ((b | (~c)) ^ d) + m + k) | 0, s) + e) | 0
+}
+
+function fn4 (a, b, c, d, e, m, k, s) {
+  return (rotl((a + ((b & d) | (c & (~d))) + m + k) | 0, s) + e) | 0
+}
+
+function fn5 (a, b, c, d, e, m, k, s) {
+  return (rotl((a + (b ^ (c | (~d))) + m + k) | 0, s) + e) | 0
+}
+
+module.exports = RIPEMD160
+
+},{"buffer":49,"hash-base":86,"inherits":101}],146:[function(require,module,exports){
+/* eslint-disable node/no-deprecated-api */
+var buffer = require('buffer')
+var Buffer = buffer.Buffer
+
+// alternative to using Object.keys for old browsers
+function copyProps (src, dst) {
+  for (var key in src) {
+    dst[key] = src[key]
+  }
+}
+if (Buffer.from && Buffer.alloc && Buffer.allocUnsafe && Buffer.allocUnsafeSlow) {
+  module.exports = buffer
+} else {
+  // Copy properties from require('buffer')
+  copyProps(buffer, exports)
+  exports.Buffer = SafeBuffer
+}
+
+function SafeBuffer (arg, encodingOrOffset, length) {
+  return Buffer(arg, encodingOrOffset, length)
+}
+
+// Copy static methods from Buffer
+copyProps(Buffer, SafeBuffer)
+
+SafeBuffer.from = function (arg, encodingOrOffset, length) {
+  if (typeof arg === 'number') {
+    throw new TypeError('Argument must not be a number')
+  }
+  return Buffer(arg, encodingOrOffset, length)
+}
+
+SafeBuffer.alloc = function (size, fill, encoding) {
+  if (typeof size !== 'number') {
+    throw new TypeError('Argument must be a number')
+  }
+  var buf = Buffer(size)
+  if (fill !== undefined) {
+    if (typeof encoding === 'string') {
+      buf.fill(fill, encoding)
+    } else {
+      buf.fill(fill)
+    }
+  } else {
+    buf.fill(0)
+  }
+  return buf
+}
+
+SafeBuffer.allocUnsafe = function (size) {
+  if (typeof size !== 'number') {
+    throw new TypeError('Argument must be a number')
+  }
+  return Buffer(size)
+}
+
+SafeBuffer.allocUnsafeSlow = function (size) {
+  if (typeof size !== 'number') {
+    throw new TypeError('Argument must be a number')
+  }
+  return buffer.SlowBuffer(size)
+}
+
+},{"buffer":49}],147:[function(require,module,exports){
+var Buffer = require('safe-buffer').Buffer
+
+// prototype class for hash functions
+function Hash (blockSize, finalSize) {
+  this._block = Buffer.alloc(blockSize)
+  this._finalSize = finalSize
+  this._blockSize = blockSize
+  this._len = 0
+}
+
+Hash.prototype.update = function (data, enc) {
+  if (typeof data === 'string') {
+    enc = enc || 'utf8'
+    data = Buffer.from(data, enc)
+  }
+
+  var block = this._block
+  var blockSize = this._blockSize
+  var length = data.length
+  var accum = this._len
+
+  for (var offset = 0; offset < length;) {
+    var assigned = accum % blockSize
+    var remainder = Math.min(length - offset, blockSize - assigned)
+
+    for (var i = 0; i < remainder; i++) {
+      block[assigned + i] = data[offset + i]
+    }
+
+    accum += remainder
+    offset += remainder
+
+    if ((accum % blockSize) === 0) {
+      this._update(block)
+    }
+  }
+
+  this._len += length
+  return this
+}
+
+Hash.prototype.digest = function (enc) {
+  var rem = this._len % this._blockSize
+
+  this._block[rem] = 0x80
+
+  // zero (rem + 1) trailing bits, where (rem + 1) is the smallest
+  // non-negative solution to the equation (length + 1 + (rem + 1)) === finalSize mod blockSize
+  this._block.fill(0, rem + 1)
+
+  if (rem >= this._finalSize) {
+    this._update(this._block)
+    this._block.fill(0)
+  }
+
+  var bits = this._len * 8
+
+  // uint32
+  if (bits <= 0xffffffff) {
+    this._block.writeUInt32BE(bits, this._blockSize - 4)
+
+  // uint64
+  } else {
+    var lowBits = (bits & 0xffffffff) >>> 0
+    var highBits = (bits - lowBits) / 0x100000000
+
+    this._block.writeUInt32BE(highBits, this._blockSize - 8)
+    this._block.writeUInt32BE(lowBits, this._blockSize - 4)
+  }
+
+  this._update(this._block)
+  var hash = this._hash()
+
+  return enc ? hash.toString(enc) : hash
+}
+
+Hash.prototype._update = function () {
+  throw new Error('_update must be implemented by subclass')
+}
+
+module.exports = Hash
+
+},{"safe-buffer":146}],148:[function(require,module,exports){
+var exports = module.exports = function SHA (algorithm) {
+  algorithm = algorithm.toLowerCase()
+
+  var Algorithm = exports[algorithm]
+  if (!Algorithm) throw new Error(algorithm + ' is not supported (we accept pull requests)')
+
+  return new Algorithm()
+}
+
+exports.sha = require('./sha')
+exports.sha1 = require('./sha1')
+exports.sha224 = require('./sha224')
+exports.sha256 = require('./sha256')
+exports.sha384 = require('./sha384')
+exports.sha512 = require('./sha512')
+
+},{"./sha":149,"./sha1":150,"./sha224":151,"./sha256":152,"./sha384":153,"./sha512":154}],149:[function(require,module,exports){
+/*
+ * A JavaScript implementation of the Secure Hash Algorithm, SHA-0, as defined
+ * in FIPS PUB 180-1
+ * This source code is derived from sha1.js of the same repository.
+ * The difference between SHA-0 and SHA-1 is just a bitwise rotate left
+ * operation was added.
+ */
+
+var inherits = require('inherits')
+var Hash = require('./hash')
+var Buffer = require('safe-buffer').Buffer
+
+var K = [
+  0x5a827999, 0x6ed9eba1, 0x8f1bbcdc | 0, 0xca62c1d6 | 0
+]
+
+var W = new Array(80)
+
+function Sha () {
+  this.init()
+  this._w = W
+
+  Hash.call(this, 64, 56)
+}
+
+inherits(Sha, Hash)
+
+Sha.prototype.init = function () {
+  this._a = 0x67452301
+  this._b = 0xefcdab89
+  this._c = 0x98badcfe
+  this._d = 0x10325476
+  this._e = 0xc3d2e1f0
+
+  return this
+}
+
+function rotl5 (num) {
+  return (num << 5) | (num >>> 27)
+}
+
+function rotl30 (num) {
+  return (num << 30) | (num >>> 2)
+}
+
+function ft (s, b, c, d) {
+  if (s === 0) return (b & c) | ((~b) & d)
+  if (s === 2) return (b & c) | (b & d) | (c & d)
+  return b ^ c ^ d
+}
+
+Sha.prototype._update = function (M) {
+  var W = this._w
+
+  var a = this._a | 0
+  var b = this._b | 0
+  var c = this._c | 0
+  var d = this._d | 0
+  var e = this._e | 0
+
+  for (var i = 0; i < 16; ++i) W[i] = M.readInt32BE(i * 4)
+  for (; i < 80; ++i) W[i] = W[i - 3] ^ W[i - 8] ^ W[i - 14] ^ W[i - 16]
+
+  for (var j = 0; j < 80; ++j) {
+    var s = ~~(j / 20)
+    var t = (rotl5(a) + ft(s, b, c, d) + e + W[j] + K[s]) | 0
+
+    e = d
+    d = c
+    c = rotl30(b)
+    b = a
+    a = t
+  }
+
+  this._a = (a + this._a) | 0
+  this._b = (b + this._b) | 0
+  this._c = (c + this._c) | 0
+  this._d = (d + this._d) | 0
+  this._e = (e + this._e) | 0
+}
+
+Sha.prototype._hash = function () {
+  var H = Buffer.allocUnsafe(20)
+
+  H.writeInt32BE(this._a | 0, 0)
+  H.writeInt32BE(this._b | 0, 4)
+  H.writeInt32BE(this._c | 0, 8)
+  H.writeInt32BE(this._d | 0, 12)
+  H.writeInt32BE(this._e | 0, 16)
+
+  return H
+}
+
+module.exports = Sha
+
+},{"./hash":147,"inherits":101,"safe-buffer":146}],150:[function(require,module,exports){
+/*
+ * A JavaScript implementation of the Secure Hash Algorithm, SHA-1, as defined
+ * in FIPS PUB 180-1
+ * Version 2.1a Copyright Paul Johnston 2000 - 2002.
+ * Other contributors: Greg Holt, Andrew Kepert, Ydnar, Lostinet
+ * Distributed under the BSD License
+ * See http://pajhome.org.uk/crypt/md5 for details.
+ */
+
+var inherits = require('inherits')
+var Hash = require('./hash')
+var Buffer = require('safe-buffer').Buffer
+
+var K = [
+  0x5a827999, 0x6ed9eba1, 0x8f1bbcdc | 0, 0xca62c1d6 | 0
+]
+
+var W = new Array(80)
+
+function Sha1 () {
+  this.init()
+  this._w = W
+
+  Hash.call(this, 64, 56)
+}
+
+inherits(Sha1, Hash)
+
+Sha1.prototype.init = function () {
+  this._a = 0x67452301
+  this._b = 0xefcdab89
+  this._c = 0x98badcfe
+  this._d = 0x10325476
+  this._e = 0xc3d2e1f0
+
+  return this
+}
+
+function rotl1 (num) {
+  return (num << 1) | (num >>> 31)
+}
+
+function rotl5 (num) {
+  return (num << 5) | (num >>> 27)
+}
+
+function rotl30 (num) {
+  return (num << 30) | (num >>> 2)
+}
+
+function ft (s, b, c, d) {
+  if (s === 0) return (b & c) | ((~b) & d)
+  if (s === 2) return (b & c) | (b & d) | (c & d)
+  return b ^ c ^ d
+}
+
+Sha1.prototype._update = function (M) {
+  var W = this._w
+
+  var a = this._a | 0
+  var b = this._b | 0
+  var c = this._c | 0
+  var d = this._d | 0
+  var e = this._e | 0
+
+  for (var i = 0; i < 16; ++i) W[i] = M.readInt32BE(i * 4)
+  for (; i < 80; ++i) W[i] = rotl1(W[i - 3] ^ W[i - 8] ^ W[i - 14] ^ W[i - 16])
+
+  for (var j = 0; j < 80; ++j) {
+    var s = ~~(j / 20)
+    var t = (rotl5(a) + ft(s, b, c, d) + e + W[j] + K[s]) | 0
+
+    e = d
+    d = c
+    c = rotl30(b)
+    b = a
+    a = t
+  }
+
+  this._a = (a + this._a) | 0
+  this._b = (b + this._b) | 0
+  this._c = (c + this._c) | 0
+  this._d = (d + this._d) | 0
+  this._e = (e + this._e) | 0
+}
+
+Sha1.prototype._hash = function () {
+  var H = Buffer.allocUnsafe(20)
+
+  H.writeInt32BE(this._a | 0, 0)
+  H.writeInt32BE(this._b | 0, 4)
+  H.writeInt32BE(this._c | 0, 8)
+  H.writeInt32BE(this._d | 0, 12)
+  H.writeInt32BE(this._e | 0, 16)
+
+  return H
+}
+
+module.exports = Sha1
+
+},{"./hash":147,"inherits":101,"safe-buffer":146}],151:[function(require,module,exports){
+/**
+ * A JavaScript implementation of the Secure Hash Algorithm, SHA-256, as defined
+ * in FIPS 180-2
+ * Version 2.2-beta Copyright Angel Marin, Paul Johnston 2000 - 2009.
+ * Other contributors: Greg Holt, Andrew Kepert, Ydnar, Lostinet
+ *
+ */
+
+var inherits = require('inherits')
+var Sha256 = require('./sha256')
+var Hash = require('./hash')
+var Buffer = require('safe-buffer').Buffer
+
+var W = new Array(64)
+
+function Sha224 () {
+  this.init()
+
+  this._w = W // new Array(64)
+
+  Hash.call(this, 64, 56)
+}
+
+inherits(Sha224, Sha256)
+
+Sha224.prototype.init = function () {
+  this._a = 0xc1059ed8
+  this._b = 0x367cd507
+  this._c = 0x3070dd17
+  this._d = 0xf70e5939
+  this._e = 0xffc00b31
+  this._f = 0x68581511
+  this._g = 0x64f98fa7
+  this._h = 0xbefa4fa4
+
+  return this
+}
+
+Sha224.prototype._hash = function () {
+  var H = Buffer.allocUnsafe(28)
+
+  H.writeInt32BE(this._a, 0)
+  H.writeInt32BE(this._b, 4)
+  H.writeInt32BE(this._c, 8)
+  H.writeInt32BE(this._d, 12)
+  H.writeInt32BE(this._e, 16)
+  H.writeInt32BE(this._f, 20)
+  H.writeInt32BE(this._g, 24)
+
+  return H
+}
+
+module.exports = Sha224
+
+},{"./hash":147,"./sha256":152,"inherits":101,"safe-buffer":146}],152:[function(require,module,exports){
+/**
+ * A JavaScript implementation of the Secure Hash Algorithm, SHA-256, as defined
+ * in FIPS 180-2
+ * Version 2.2-beta Copyright Angel Marin, Paul Johnston 2000 - 2009.
+ * Other contributors: Greg Holt, Andrew Kepert, Ydnar, Lostinet
+ *
+ */
+
+var inherits = require('inherits')
+var Hash = require('./hash')
+var Buffer = require('safe-buffer').Buffer
+
+var K = [
+  0x428A2F98, 0x71374491, 0xB5C0FBCF, 0xE9B5DBA5,
+  0x3956C25B, 0x59F111F1, 0x923F82A4, 0xAB1C5ED5,
+  0xD807AA98, 0x12835B01, 0x243185BE, 0x550C7DC3,
+  0x72BE5D74, 0x80DEB1FE, 0x9BDC06A7, 0xC19BF174,
+  0xE49B69C1, 0xEFBE4786, 0x0FC19DC6, 0x240CA1CC,
+  0x2DE92C6F, 0x4A7484AA, 0x5CB0A9DC, 0x76F988DA,
+  0x983E5152, 0xA831C66D, 0xB00327C8, 0xBF597FC7,
+  0xC6E00BF3, 0xD5A79147, 0x06CA6351, 0x14292967,
+  0x27B70A85, 0x2E1B2138, 0x4D2C6DFC, 0x53380D13,
+  0x650A7354, 0x766A0ABB, 0x81C2C92E, 0x92722C85,
+  0xA2BFE8A1, 0xA81A664B, 0xC24B8B70, 0xC76C51A3,
+  0xD192E819, 0xD6990624, 0xF40E3585, 0x106AA070,
+  0x19A4C116, 0x1E376C08, 0x2748774C, 0x34B0BCB5,
+  0x391C0CB3, 0x4ED8AA4A, 0x5B9CCA4F, 0x682E6FF3,
+  0x748F82EE, 0x78A5636F, 0x84C87814, 0x8CC70208,
+  0x90BEFFFA, 0xA4506CEB, 0xBEF9A3F7, 0xC67178F2
+]
+
+var W = new Array(64)
+
+function Sha256 () {
+  this.init()
+
+  this._w = W // new Array(64)
+
+  Hash.call(this, 64, 56)
+}
+
+inherits(Sha256, Hash)
+
+Sha256.prototype.init = function () {
+  this._a = 0x6a09e667
+  this._b = 0xbb67ae85
+  this._c = 0x3c6ef372
+  this._d = 0xa54ff53a
+  this._e = 0x510e527f
+  this._f = 0x9b05688c
+  this._g = 0x1f83d9ab
+  this._h = 0x5be0cd19
+
+  return this
+}
+
+function ch (x, y, z) {
+  return z ^ (x & (y ^ z))
+}
+
+function maj (x, y, z) {
+  return (x & y) | (z & (x | y))
+}
+
+function sigma0 (x) {
+  return (x >>> 2 | x << 30) ^ (x >>> 13 | x << 19) ^ (x >>> 22 | x << 10)
+}
+
+function sigma1 (x) {
+  return (x >>> 6 | x << 26) ^ (x >>> 11 | x << 21) ^ (x >>> 25 | x << 7)
+}
+
+function gamma0 (x) {
+  return (x >>> 7 | x << 25) ^ (x >>> 18 | x << 14) ^ (x >>> 3)
+}
+
+function gamma1 (x) {
+  return (x >>> 17 | x << 15) ^ (x >>> 19 | x << 13) ^ (x >>> 10)
+}
+
+Sha256.prototype._update = function (M) {
+  var W = this._w
+
+  var a = this._a | 0
+  var b = this._b | 0
+  var c = this._c | 0
+  var d = this._d | 0
+  var e = this._e | 0
+  var f = this._f | 0
+  var g = this._g | 0
+  var h = this._h | 0
+
+  for (var i = 0; i < 16; ++i) W[i] = M.readInt32BE(i * 4)
+  for (; i < 64; ++i) W[i] = (gamma1(W[i - 2]) + W[i - 7] + gamma0(W[i - 15]) + W[i - 16]) | 0
+
+  for (var j = 0; j < 64; ++j) {
+    var T1 = (h + sigma1(e) + ch(e, f, g) + K[j] + W[j]) | 0
+    var T2 = (sigma0(a) + maj(a, b, c)) | 0
+
+    h = g
+    g = f
+    f = e
+    e = (d + T1) | 0
+    d = c
+    c = b
+    b = a
+    a = (T1 + T2) | 0
+  }
+
+  this._a = (a + this._a) | 0
+  this._b = (b + this._b) | 0
+  this._c = (c + this._c) | 0
+  this._d = (d + this._d) | 0
+  this._e = (e + this._e) | 0
+  this._f = (f + this._f) | 0
+  this._g = (g + this._g) | 0
+  this._h = (h + this._h) | 0
+}
+
+Sha256.prototype._hash = function () {
+  var H = Buffer.allocUnsafe(32)
+
+  H.writeInt32BE(this._a, 0)
+  H.writeInt32BE(this._b, 4)
+  H.writeInt32BE(this._c, 8)
+  H.writeInt32BE(this._d, 12)
+  H.writeInt32BE(this._e, 16)
+  H.writeInt32BE(this._f, 20)
+  H.writeInt32BE(this._g, 24)
+  H.writeInt32BE(this._h, 28)
+
+  return H
+}
+
+module.exports = Sha256
+
+},{"./hash":147,"inherits":101,"safe-buffer":146}],153:[function(require,module,exports){
+var inherits = require('inherits')
+var SHA512 = require('./sha512')
+var Hash = require('./hash')
+var Buffer = require('safe-buffer').Buffer
+
+var W = new Array(160)
+
+function Sha384 () {
+  this.init()
+  this._w = W
+
+  Hash.call(this, 128, 112)
+}
+
+inherits(Sha384, SHA512)
+
+Sha384.prototype.init = function () {
+  this._ah = 0xcbbb9d5d
+  this._bh = 0x629a292a
+  this._ch = 0x9159015a
+  this._dh = 0x152fecd8
+  this._eh = 0x67332667
+  this._fh = 0x8eb44a87
+  this._gh = 0xdb0c2e0d
+  this._hh = 0x47b5481d
+
+  this._al = 0xc1059ed8
+  this._bl = 0x367cd507
+  this._cl = 0x3070dd17
+  this._dl = 0xf70e5939
+  this._el = 0xffc00b31
+  this._fl = 0x68581511
+  this._gl = 0x64f98fa7
+  this._hl = 0xbefa4fa4
+
+  return this
+}
+
+Sha384.prototype._hash = function () {
+  var H = Buffer.allocUnsafe(48)
+
+  function writeInt64BE (h, l, offset) {
+    H.writeInt32BE(h, offset)
+    H.writeInt32BE(l, offset + 4)
+  }
+
+  writeInt64BE(this._ah, this._al, 0)
+  writeInt64BE(this._bh, this._bl, 8)
+  writeInt64BE(this._ch, this._cl, 16)
+  writeInt64BE(this._dh, this._dl, 24)
+  writeInt64BE(this._eh, this._el, 32)
+  writeInt64BE(this._fh, this._fl, 40)
+
+  return H
+}
+
+module.exports = Sha384
+
+},{"./hash":147,"./sha512":154,"inherits":101,"safe-buffer":146}],154:[function(require,module,exports){
+var inherits = require('inherits')
+var Hash = require('./hash')
+var Buffer = require('safe-buffer').Buffer
+
+var K = [
+  0x428a2f98, 0xd728ae22, 0x71374491, 0x23ef65cd,
+  0xb5c0fbcf, 0xec4d3b2f, 0xe9b5dba5, 0x8189dbbc,
+  0x3956c25b, 0xf348b538, 0x59f111f1, 0xb605d019,
+  0x923f82a4, 0xaf194f9b, 0xab1c5ed5, 0xda6d8118,
+  0xd807aa98, 0xa3030242, 0x12835b01, 0x45706fbe,
+  0x243185be, 0x4ee4b28c, 0x550c7dc3, 0xd5ffb4e2,
+  0x72be5d74, 0xf27b896f, 0x80deb1fe, 0x3b1696b1,
+  0x9bdc06a7, 0x25c71235, 0xc19bf174, 0xcf692694,
+  0xe49b69c1, 0x9ef14ad2, 0xefbe4786, 0x384f25e3,
+  0x0fc19dc6, 0x8b8cd5b5, 0x240ca1cc, 0x77ac9c65,
+  0x2de92c6f, 0x592b0275, 0x4a7484aa, 0x6ea6e483,
+  0x5cb0a9dc, 0xbd41fbd4, 0x76f988da, 0x831153b5,
+  0x983e5152, 0xee66dfab, 0xa831c66d, 0x2db43210,
+  0xb00327c8, 0x98fb213f, 0xbf597fc7, 0xbeef0ee4,
+  0xc6e00bf3, 0x3da88fc2, 0xd5a79147, 0x930aa725,
+  0x06ca6351, 0xe003826f, 0x14292967, 0x0a0e6e70,
+  0x27b70a85, 0x46d22ffc, 0x2e1b2138, 0x5c26c926,
+  0x4d2c6dfc, 0x5ac42aed, 0x53380d13, 0x9d95b3df,
+  0x650a7354, 0x8baf63de, 0x766a0abb, 0x3c77b2a8,
+  0x81c2c92e, 0x47edaee6, 0x92722c85, 0x1482353b,
+  0xa2bfe8a1, 0x4cf10364, 0xa81a664b, 0xbc423001,
+  0xc24b8b70, 0xd0f89791, 0xc76c51a3, 0x0654be30,
+  0xd192e819, 0xd6ef5218, 0xd6990624, 0x5565a910,
+  0xf40e3585, 0x5771202a, 0x106aa070, 0x32bbd1b8,
+  0x19a4c116, 0xb8d2d0c8, 0x1e376c08, 0x5141ab53,
+  0x2748774c, 0xdf8eeb99, 0x34b0bcb5, 0xe19b48a8,
+  0x391c0cb3, 0xc5c95a63, 0x4ed8aa4a, 0xe3418acb,
+  0x5b9cca4f, 0x7763e373, 0x682e6ff3, 0xd6b2b8a3,
+  0x748f82ee, 0x5defb2fc, 0x78a5636f, 0x43172f60,
+  0x84c87814, 0xa1f0ab72, 0x8cc70208, 0x1a6439ec,
+  0x90befffa, 0x23631e28, 0xa4506ceb, 0xde82bde9,
+  0xbef9a3f7, 0xb2c67915, 0xc67178f2, 0xe372532b,
+  0xca273ece, 0xea26619c, 0xd186b8c7, 0x21c0c207,
+  0xeada7dd6, 0xcde0eb1e, 0xf57d4f7f, 0xee6ed178,
+  0x06f067aa, 0x72176fba, 0x0a637dc5, 0xa2c898a6,
+  0x113f9804, 0xbef90dae, 0x1b710b35, 0x131c471b,
+  0x28db77f5, 0x23047d84, 0x32caab7b, 0x40c72493,
+  0x3c9ebe0a, 0x15c9bebc, 0x431d67c4, 0x9c100d4c,
+  0x4cc5d4be, 0xcb3e42b6, 0x597f299c, 0xfc657e2a,
+  0x5fcb6fab, 0x3ad6faec, 0x6c44198c, 0x4a475817
+]
+
+var W = new Array(160)
+
+function Sha512 () {
+  this.init()
+  this._w = W
+
+  Hash.call(this, 128, 112)
+}
+
+inherits(Sha512, Hash)
+
+Sha512.prototype.init = function () {
+  this._ah = 0x6a09e667
+  this._bh = 0xbb67ae85
+  this._ch = 0x3c6ef372
+  this._dh = 0xa54ff53a
+  this._eh = 0x510e527f
+  this._fh = 0x9b05688c
+  this._gh = 0x1f83d9ab
+  this._hh = 0x5be0cd19
+
+  this._al = 0xf3bcc908
+  this._bl = 0x84caa73b
+  this._cl = 0xfe94f82b
+  this._dl = 0x5f1d36f1
+  this._el = 0xade682d1
+  this._fl = 0x2b3e6c1f
+  this._gl = 0xfb41bd6b
+  this._hl = 0x137e2179
+
+  return this
+}
+
+function Ch (x, y, z) {
+  return z ^ (x & (y ^ z))
+}
+
+function maj (x, y, z) {
+  return (x & y) | (z & (x | y))
+}
+
+function sigma0 (x, xl) {
+  return (x >>> 28 | xl << 4) ^ (xl >>> 2 | x << 30) ^ (xl >>> 7 | x << 25)
+}
+
+function sigma1 (x, xl) {
+  return (x >>> 14 | xl << 18) ^ (x >>> 18 | xl << 14) ^ (xl >>> 9 | x << 23)
+}
+
+function Gamma0 (x, xl) {
+  return (x >>> 1 | xl << 31) ^ (x >>> 8 | xl << 24) ^ (x >>> 7)
+}
+
+function Gamma0l (x, xl) {
+  return (x >>> 1 | xl << 31) ^ (x >>> 8 | xl << 24) ^ (x >>> 7 | xl << 25)
+}
+
+function Gamma1 (x, xl) {
+  return (x >>> 19 | xl << 13) ^ (xl >>> 29 | x << 3) ^ (x >>> 6)
+}
+
+function Gamma1l (x, xl) {
+  return (x >>> 19 | xl << 13) ^ (xl >>> 29 | x << 3) ^ (x >>> 6 | xl << 26)
+}
+
+function getCarry (a, b) {
+  return (a >>> 0) < (b >>> 0) ? 1 : 0
+}
+
+Sha512.prototype._update = function (M) {
+  var W = this._w
+
+  var ah = this._ah | 0
+  var bh = this._bh | 0
+  var ch = this._ch | 0
+  var dh = this._dh | 0
+  var eh = this._eh | 0
+  var fh = this._fh | 0
+  var gh = this._gh | 0
+  var hh = this._hh | 0
+
+  var al = this._al | 0
+  var bl = this._bl | 0
+  var cl = this._cl | 0
+  var dl = this._dl | 0
+  var el = this._el | 0
+  var fl = this._fl | 0
+  var gl = this._gl | 0
+  var hl = this._hl | 0
+
+  for (var i = 0; i < 32; i += 2) {
+    W[i] = M.readInt32BE(i * 4)
+    W[i + 1] = M.readInt32BE(i * 4 + 4)
+  }
+  for (; i < 160; i += 2) {
+    var xh = W[i - 15 * 2]
+    var xl = W[i - 15 * 2 + 1]
+    var gamma0 = Gamma0(xh, xl)
+    var gamma0l = Gamma0l(xl, xh)
+
+    xh = W[i - 2 * 2]
+    xl = W[i - 2 * 2 + 1]
+    var gamma1 = Gamma1(xh, xl)
+    var gamma1l = Gamma1l(xl, xh)
+
+    // W[i] = gamma0 + W[i - 7] + gamma1 + W[i - 16]
+    var Wi7h = W[i - 7 * 2]
+    var Wi7l = W[i - 7 * 2 + 1]
+
+    var Wi16h = W[i - 16 * 2]
+    var Wi16l = W[i - 16 * 2 + 1]
+
+    var Wil = (gamma0l + Wi7l) | 0
+    var Wih = (gamma0 + Wi7h + getCarry(Wil, gamma0l)) | 0
+    Wil = (Wil + gamma1l) | 0
+    Wih = (Wih + gamma1 + getCarry(Wil, gamma1l)) | 0
+    Wil = (Wil + Wi16l) | 0
+    Wih = (Wih + Wi16h + getCarry(Wil, Wi16l)) | 0
+
+    W[i] = Wih
+    W[i + 1] = Wil
+  }
+
+  for (var j = 0; j < 160; j += 2) {
+    Wih = W[j]
+    Wil = W[j + 1]
+
+    var majh = maj(ah, bh, ch)
+    var majl = maj(al, bl, cl)
+
+    var sigma0h = sigma0(ah, al)
+    var sigma0l = sigma0(al, ah)
+    var sigma1h = sigma1(eh, el)
+    var sigma1l = sigma1(el, eh)
+
+    // t1 = h + sigma1 + ch + K[j] + W[j]
+    var Kih = K[j]
+    var Kil = K[j + 1]
+
+    var chh = Ch(eh, fh, gh)
+    var chl = Ch(el, fl, gl)
+
+    var t1l = (hl + sigma1l) | 0
+    var t1h = (hh + sigma1h + getCarry(t1l, hl)) | 0
+    t1l = (t1l + chl) | 0
+    t1h = (t1h + chh + getCarry(t1l, chl)) | 0
+    t1l = (t1l + Kil) | 0
+    t1h = (t1h + Kih + getCarry(t1l, Kil)) | 0
+    t1l = (t1l + Wil) | 0
+    t1h = (t1h + Wih + getCarry(t1l, Wil)) | 0
+
+    // t2 = sigma0 + maj
+    var t2l = (sigma0l + majl) | 0
+    var t2h = (sigma0h + majh + getCarry(t2l, sigma0l)) | 0
+
+    hh = gh
+    hl = gl
+    gh = fh
+    gl = fl
+    fh = eh
+    fl = el
+    el = (dl + t1l) | 0
+    eh = (dh + t1h + getCarry(el, dl)) | 0
+    dh = ch
+    dl = cl
+    ch = bh
+    cl = bl
+    bh = ah
+    bl = al
+    al = (t1l + t2l) | 0
+    ah = (t1h + t2h + getCarry(al, t1l)) | 0
+  }
+
+  this._al = (this._al + al) | 0
+  this._bl = (this._bl + bl) | 0
+  this._cl = (this._cl + cl) | 0
+  this._dl = (this._dl + dl) | 0
+  this._el = (this._el + el) | 0
+  this._fl = (this._fl + fl) | 0
+  this._gl = (this._gl + gl) | 0
+  this._hl = (this._hl + hl) | 0
+
+  this._ah = (this._ah + ah + getCarry(this._al, al)) | 0
+  this._bh = (this._bh + bh + getCarry(this._bl, bl)) | 0
+  this._ch = (this._ch + ch + getCarry(this._cl, cl)) | 0
+  this._dh = (this._dh + dh + getCarry(this._dl, dl)) | 0
+  this._eh = (this._eh + eh + getCarry(this._el, el)) | 0
+  this._fh = (this._fh + fh + getCarry(this._fl, fl)) | 0
+  this._gh = (this._gh + gh + getCarry(this._gl, gl)) | 0
+  this._hh = (this._hh + hh + getCarry(this._hl, hl)) | 0
+}
+
+Sha512.prototype._hash = function () {
+  var H = Buffer.allocUnsafe(64)
+
+  function writeInt64BE (h, l, offset) {
+    H.writeInt32BE(h, offset)
+    H.writeInt32BE(l, offset + 4)
+  }
+
+  writeInt64BE(this._ah, this._al, 0)
+  writeInt64BE(this._bh, this._bl, 8)
+  writeInt64BE(this._ch, this._cl, 16)
+  writeInt64BE(this._dh, this._dl, 24)
+  writeInt64BE(this._eh, this._el, 32)
+  writeInt64BE(this._fh, this._fl, 40)
+  writeInt64BE(this._gh, this._gl, 48)
+  writeInt64BE(this._hh, this._hl, 56)
+
+  return H
+}
+
+module.exports = Sha512
+
+},{"./hash":147,"inherits":101,"safe-buffer":146}],155:[function(require,module,exports){
+// Copyright Joyent, Inc. and other Node contributors.
+//
+// Permission is hereby granted, free of charge, to any person obtaining a
+// copy of this software and associated documentation files (the
+// "Software"), to deal in the Software without restriction, including
+// without limitation the rights to use, copy, modify, merge, publish,
+// distribute, sublicense, and/or sell copies of the Software, and to permit
+// persons to whom the Software is furnished to do so, subject to the
+// following conditions:
+//
+// The above copyright notice and this permission notice shall be included
+// in all copies or substantial portions of the Software.
+//
+// THE SOFTWARE IS PROVIDED "AS IS", WITHOUT WARRANTY OF ANY KIND, EXPRESS
+// OR IMPLIED, INCLUDING BUT NOT LIMITED TO THE WARRANTIES OF
+// MERCHANTABILITY, FITNESS FOR A PARTICULAR PURPOSE AND NONINFRINGEMENT. IN
+// NO EVENT SHALL THE AUTHORS OR COPYRIGHT HOLDERS BE LIABLE FOR ANY CLAIM,
+// DAMAGES OR OTHER LIABILITY, WHETHER IN AN ACTION OF CONTRACT, TORT OR
+// OTHERWISE, ARISING FROM, OUT OF OR IN CONNECTION WITH THE SOFTWARE OR THE
+// USE OR OTHER DEALINGS IN THE SOFTWARE.
+
+module.exports = Stream;
+
+var EE = require('events').EventEmitter;
+var inherits = require('inherits');
+
+inherits(Stream, EE);
+Stream.Readable = require('readable-stream/readable.js');
+Stream.Writable = require('readable-stream/writable.js');
+Stream.Duplex = require('readable-stream/duplex.js');
+Stream.Transform = require('readable-stream/transform.js');
+Stream.PassThrough = require('readable-stream/passthrough.js');
+
+// Backwards-compat with node 0.4.x
+Stream.Stream = Stream;
+
+
+
+// old-style streams.  Note that the pipe method (the only relevant
+// part of this class) is overridden in the Readable class.
+
+function Stream() {
+  EE.call(this);
+}
+
+Stream.prototype.pipe = function(dest, options) {
+  var source = this;
+
+  function ondata(chunk) {
+    if (dest.writable) {
+      if (false === dest.write(chunk) && source.pause) {
+        source.pause();
+      }
+    }
+  }
+
+  source.on('data', ondata);
+
+  function ondrain() {
+    if (source.readable && source.resume) {
+      source.resume();
+    }
+  }
+
+  dest.on('drain', ondrain);
+
+  // If the 'end' option is not supplied, dest.end() will be called when
+  // source gets the 'end' or 'close' events.  Only dest.end() once.
+  if (!dest._isStdio && (!options || options.end !== false)) {
+    source.on('end', onend);
+    source.on('close', onclose);
+  }
+
+  var didOnEnd = false;
+  function onend() {
+    if (didOnEnd) return;
+    didOnEnd = true;
+
+    dest.end();
+  }
+
+
+  function onclose() {
+    if (didOnEnd) return;
+    didOnEnd = true;
+
+    if (typeof dest.destroy === 'function') dest.destroy();
+  }
+
+  // don't leave dangling pipes when there are errors.
+  function onerror(er) {
+    cleanup();
+    if (EE.listenerCount(this, 'error') === 0) {
+      throw er; // Unhandled stream error in pipe.
+    }
+  }
+
+  source.on('error', onerror);
+  dest.on('error', onerror);
+
+  // remove all the event listeners that were added.
+  function cleanup() {
+    source.removeListener('data', ondata);
+    dest.removeListener('drain', ondrain);
+
+    source.removeListener('end', onend);
+    source.removeListener('close', onclose);
+
+    source.removeListener('error', onerror);
+    dest.removeListener('error', onerror);
+
+    source.removeListener('end', cleanup);
+    source.removeListener('close', cleanup);
+
+    dest.removeListener('close', cleanup);
+  }
+
+  source.on('end', cleanup);
+  source.on('close', cleanup);
+
+  dest.on('close', cleanup);
+
+  dest.emit('pipe', source);
+
+  // Allow for unix-like usage: A.pipe(B).pipe(C)
+  return dest;
+};
+
+},{"events":84,"inherits":101,"readable-stream/duplex.js":132,"readable-stream/passthrough.js":141,"readable-stream/readable.js":142,"readable-stream/transform.js":143,"readable-stream/writable.js":144}],156:[function(require,module,exports){
+// Copyright Joyent, Inc. and other Node contributors.
+//
+// Permission is hereby granted, free of charge, to any person obtaining a
+// copy of this software and associated documentation files (the
+// "Software"), to deal in the Software without restriction, including
+// without limitation the rights to use, copy, modify, merge, publish,
+// distribute, sublicense, and/or sell copies of the Software, and to permit
+// persons to whom the Software is furnished to do so, subject to the
+// following conditions:
+//
+// The above copyright notice and this permission notice shall be included
+// in all copies or substantial portions of the Software.
+//
+// THE SOFTWARE IS PROVIDED "AS IS", WITHOUT WARRANTY OF ANY KIND, EXPRESS
+// OR IMPLIED, INCLUDING BUT NOT LIMITED TO THE WARRANTIES OF
+// MERCHANTABILITY, FITNESS FOR A PARTICULAR PURPOSE AND NONINFRINGEMENT. IN
+// NO EVENT SHALL THE AUTHORS OR COPYRIGHT HOLDERS BE LIABLE FOR ANY CLAIM,
+// DAMAGES OR OTHER LIABILITY, WHETHER IN AN ACTION OF CONTRACT, TORT OR
+// OTHERWISE, ARISING FROM, OUT OF OR IN CONNECTION WITH THE SOFTWARE OR THE
+// USE OR OTHER DEALINGS IN THE SOFTWARE.
+
+'use strict';
+
+/*<replacement>*/
+
+var Buffer = require('safe-buffer').Buffer;
+/*</replacement>*/
+
+var isEncoding = Buffer.isEncoding || function (encoding) {
+  encoding = '' + encoding;
+  switch (encoding && encoding.toLowerCase()) {
+    case 'hex':case 'utf8':case 'utf-8':case 'ascii':case 'binary':case 'base64':case 'ucs2':case 'ucs-2':case 'utf16le':case 'utf-16le':case 'raw':
+      return true;
+    default:
+      return false;
+  }
+};
+
+function _normalizeEncoding(enc) {
+  if (!enc) return 'utf8';
+  var retried;
+  while (true) {
+    switch (enc) {
+      case 'utf8':
+      case 'utf-8':
+        return 'utf8';
+      case 'ucs2':
+      case 'ucs-2':
+      case 'utf16le':
+      case 'utf-16le':
+        return 'utf16le';
+      case 'latin1':
+      case 'binary':
+        return 'latin1';
+      case 'base64':
+      case 'ascii':
+      case 'hex':
+        return enc;
+      default:
+        if (retried) return; // undefined
+        enc = ('' + enc).toLowerCase();
+        retried = true;
+    }
+  }
+};
+
+// Do not cache `Buffer.isEncoding` when checking encoding names as some
+// modules monkey-patch it to support additional encodings
+function normalizeEncoding(enc) {
+  var nenc = _normalizeEncoding(enc);
+  if (typeof nenc !== 'string' && (Buffer.isEncoding === isEncoding || !isEncoding(enc))) throw new Error('Unknown encoding: ' + enc);
+  return nenc || enc;
+}
+
+// StringDecoder provides an interface for efficiently splitting a series of
+// buffers into a series of JS strings without breaking apart multi-byte
+// characters.
+exports.StringDecoder = StringDecoder;
+function StringDecoder(encoding) {
+  this.encoding = normalizeEncoding(encoding);
+  var nb;
+  switch (this.encoding) {
+    case 'utf16le':
+      this.text = utf16Text;
+      this.end = utf16End;
+      nb = 4;
+      break;
+    case 'utf8':
+      this.fillLast = utf8FillLast;
+      nb = 4;
+      break;
+    case 'base64':
+      this.text = base64Text;
+      this.end = base64End;
+      nb = 3;
+      break;
+    default:
+      this.write = simpleWrite;
+      this.end = simpleEnd;
+      return;
+  }
+  this.lastNeed = 0;
+  this.lastTotal = 0;
+  this.lastChar = Buffer.allocUnsafe(nb);
+}
+
+StringDecoder.prototype.write = function (buf) {
+  if (buf.length === 0) return '';
+  var r;
+  var i;
+  if (this.lastNeed) {
+    r = this.fillLast(buf);
+    if (r === undefined) return '';
+    i = this.lastNeed;
+    this.lastNeed = 0;
+  } else {
+    i = 0;
+  }
+  if (i < buf.length) return r ? r + this.text(buf, i) : this.text(buf, i);
+  return r || '';
+};
+
+StringDecoder.prototype.end = utf8End;
+
+// Returns only complete characters in a Buffer
+StringDecoder.prototype.text = utf8Text;
+
+// Attempts to complete a partial non-UTF-8 character using bytes from a Buffer
+StringDecoder.prototype.fillLast = function (buf) {
+  if (this.lastNeed <= buf.length) {
+    buf.copy(this.lastChar, this.lastTotal - this.lastNeed, 0, this.lastNeed);
+    return this.lastChar.toString(this.encoding, 0, this.lastTotal);
+  }
+  buf.copy(this.lastChar, this.lastTotal - this.lastNeed, 0, buf.length);
+  this.lastNeed -= buf.length;
+};
+
+// Checks the type of a UTF-8 byte, whether it's ASCII, a leading byte, or a
+// continuation byte. If an invalid byte is detected, -2 is returned.
+function utf8CheckByte(byte) {
+  if (byte <= 0x7F) return 0;else if (byte >> 5 === 0x06) return 2;else if (byte >> 4 === 0x0E) return 3;else if (byte >> 3 === 0x1E) return 4;
+  return byte >> 6 === 0x02 ? -1 : -2;
+}
+
+// Checks at most 3 bytes at the end of a Buffer in order to detect an
+// incomplete multi-byte UTF-8 character. The total number of bytes (2, 3, or 4)
+// needed to complete the UTF-8 character (if applicable) are returned.
+function utf8CheckIncomplete(self, buf, i) {
+  var j = buf.length - 1;
+  if (j < i) return 0;
+  var nb = utf8CheckByte(buf[j]);
+  if (nb >= 0) {
+    if (nb > 0) self.lastNeed = nb - 1;
+    return nb;
+  }
+  if (--j < i || nb === -2) return 0;
+  nb = utf8CheckByte(buf[j]);
+  if (nb >= 0) {
+    if (nb > 0) self.lastNeed = nb - 2;
+    return nb;
+  }
+  if (--j < i || nb === -2) return 0;
+  nb = utf8CheckByte(buf[j]);
+  if (nb >= 0) {
+    if (nb > 0) {
+      if (nb === 2) nb = 0;else self.lastNeed = nb - 3;
+    }
+    return nb;
+  }
+  return 0;
+}
+
+// Validates as many continuation bytes for a multi-byte UTF-8 character as
+// needed or are available. If we see a non-continuation byte where we expect
+// one, we "replace" the validated continuation bytes we've seen so far with
+// a single UTF-8 replacement character ('\ufffd'), to match v8's UTF-8 decoding
+// behavior. The continuation byte check is included three times in the case
+// where all of the continuation bytes for a character exist in the same buffer.
+// It is also done this way as a slight performance increase instead of using a
+// loop.
+function utf8CheckExtraBytes(self, buf, p) {
+  if ((buf[0] & 0xC0) !== 0x80) {
+    self.lastNeed = 0;
+    return '\ufffd';
+  }
+  if (self.lastNeed > 1 && buf.length > 1) {
+    if ((buf[1] & 0xC0) !== 0x80) {
+      self.lastNeed = 1;
+      return '\ufffd';
+    }
+    if (self.lastNeed > 2 && buf.length > 2) {
+      if ((buf[2] & 0xC0) !== 0x80) {
+        self.lastNeed = 2;
+        return '\ufffd';
+      }
+    }
+  }
+}
+
+// Attempts to complete a multi-byte UTF-8 character using bytes from a Buffer.
+function utf8FillLast(buf) {
+  var p = this.lastTotal - this.lastNeed;
+  var r = utf8CheckExtraBytes(this, buf, p);
+  if (r !== undefined) return r;
+  if (this.lastNeed <= buf.length) {
+    buf.copy(this.lastChar, p, 0, this.lastNeed);
+    return this.lastChar.toString(this.encoding, 0, this.lastTotal);
+  }
+  buf.copy(this.lastChar, p, 0, buf.length);
+  this.lastNeed -= buf.length;
+}
+
+// Returns all complete UTF-8 characters in a Buffer. If the Buffer ended on a
+// partial character, the character's bytes are buffered until the required
+// number of bytes are available.
+function utf8Text(buf, i) {
+  var total = utf8CheckIncomplete(this, buf, i);
+  if (!this.lastNeed) return buf.toString('utf8', i);
+  this.lastTotal = total;
+  var end = buf.length - (total - this.lastNeed);
+  buf.copy(this.lastChar, 0, end);
+  return buf.toString('utf8', i, end);
+}
+
+// For UTF-8, a replacement character is added when ending on a partial
+// character.
+function utf8End(buf) {
+  var r = buf && buf.length ? this.write(buf) : '';
+  if (this.lastNeed) return r + '\ufffd';
+  return r;
+}
+
+// UTF-16LE typically needs two bytes per character, but even if we have an even
+// number of bytes available, we need to check if we end on a leading/high
+// surrogate. In that case, we need to wait for the next two bytes in order to
+// decode the last character properly.
+function utf16Text(buf, i) {
+  if ((buf.length - i) % 2 === 0) {
+    var r = buf.toString('utf16le', i);
+    if (r) {
+      var c = r.charCodeAt(r.length - 1);
+      if (c >= 0xD800 && c <= 0xDBFF) {
+        this.lastNeed = 2;
+        this.lastTotal = 4;
+        this.lastChar[0] = buf[buf.length - 2];
+        this.lastChar[1] = buf[buf.length - 1];
+        return r.slice(0, -1);
+      }
+    }
+    return r;
+  }
+  this.lastNeed = 1;
+  this.lastTotal = 2;
+  this.lastChar[0] = buf[buf.length - 1];
+  return buf.toString('utf16le', i, buf.length - 1);
+}
+
+// For UTF-16LE we do not explicitly append special replacement characters if we
+// end on a partial character, we simply let v8 handle that.
+function utf16End(buf) {
+  var r = buf && buf.length ? this.write(buf) : '';
+  if (this.lastNeed) {
+    var end = this.lastTotal - this.lastNeed;
+    return r + this.lastChar.toString('utf16le', 0, end);
+  }
+  return r;
+}
+
+function base64Text(buf, i) {
+  var n = (buf.length - i) % 3;
+  if (n === 0) return buf.toString('base64', i);
+  this.lastNeed = 3 - n;
+  this.lastTotal = 3;
+  if (n === 1) {
+    this.lastChar[0] = buf[buf.length - 1];
+  } else {
+    this.lastChar[0] = buf[buf.length - 2];
+    this.lastChar[1] = buf[buf.length - 1];
+  }
+  return buf.toString('base64', i, buf.length - n);
+}
+
+function base64End(buf) {
+  var r = buf && buf.length ? this.write(buf) : '';
+  if (this.lastNeed) return r + this.lastChar.toString('base64', 0, 3 - this.lastNeed);
+  return r;
+}
+
+// Pass bytes on through for single-byte encodings (e.g. ascii, latin1, hex)
+function simpleWrite(buf) {
+  return buf.toString(this.encoding);
+}
+
+function simpleEnd(buf) {
+  return buf && buf.length ? this.write(buf) : '';
+}
+},{"safe-buffer":146}],157:[function(require,module,exports){
+// Copyright Joyent, Inc. and other Node contributors.
+//
+// Permission is hereby granted, free of charge, to any person obtaining a
+// copy of this software and associated documentation files (the
+// "Software"), to deal in the Software without restriction, including
+// without limitation the rights to use, copy, modify, merge, publish,
+// distribute, sublicense, and/or sell copies of the Software, and to permit
+// persons to whom the Software is furnished to do so, subject to the
+// following conditions:
+//
+// The above copyright notice and this permission notice shall be included
+// in all copies or substantial portions of the Software.
+//
+// THE SOFTWARE IS PROVIDED "AS IS", WITHOUT WARRANTY OF ANY KIND, EXPRESS
+// OR IMPLIED, INCLUDING BUT NOT LIMITED TO THE WARRANTIES OF
+// MERCHANTABILITY, FITNESS FOR A PARTICULAR PURPOSE AND NONINFRINGEMENT. IN
+// NO EVENT SHALL THE AUTHORS OR COPYRIGHT HOLDERS BE LIABLE FOR ANY CLAIM,
+// DAMAGES OR OTHER LIABILITY, WHETHER IN AN ACTION OF CONTRACT, TORT OR
+// OTHERWISE, ARISING FROM, OUT OF OR IN CONNECTION WITH THE SOFTWARE OR THE
+// USE OR OTHER DEALINGS IN THE SOFTWARE.
+
+'use strict';
+
+var punycode = require('punycode');
+var util = require('./util');
+
+exports.parse = urlParse;
+exports.resolve = urlResolve;
+exports.resolveObject = urlResolveObject;
+exports.format = urlFormat;
+
+exports.Url = Url;
+
+function Url() {
+  this.protocol = null;
+  this.slashes = null;
+  this.auth = null;
+  this.host = null;
+  this.port = null;
+  this.hostname = null;
+  this.hash = null;
+  this.search = null;
+  this.query = null;
+  this.pathname = null;
+  this.path = null;
+  this.href = null;
+}
+
+// Reference: RFC 3986, RFC 1808, RFC 2396
+
+// define these here so at least they only have to be
+// compiled once on the first module load.
+var protocolPattern = /^([a-z0-9.+-]+:)/i,
+    portPattern = /:[0-9]*$/,
+
+    // Special case for a simple path URL
+    simplePathPattern = /^(\/\/?(?!\/)[^\?\s]*)(\?[^\s]*)?$/,
+
+    // RFC 2396: characters reserved for delimiting URLs.
+    // We actually just auto-escape these.
+    delims = ['<', '>', '"', '`', ' ', '\r', '\n', '\t'],
+
+    // RFC 2396: characters not allowed for various reasons.
+    unwise = ['{', '}', '|', '\\', '^', '`'].concat(delims),
+
+    // Allowed by RFCs, but cause of XSS attacks.  Always escape these.
+    autoEscape = ['\''].concat(unwise),
+    // Characters that are never ever allowed in a hostname.
+    // Note that any invalid chars are also handled, but these
+    // are the ones that are *expected* to be seen, so we fast-path
+    // them.
+    nonHostChars = ['%', '/', '?', ';', '#'].concat(autoEscape),
+    hostEndingChars = ['/', '?', '#'],
+    hostnameMaxLen = 255,
+    hostnamePartPattern = /^[+a-z0-9A-Z_-]{0,63}$/,
+    hostnamePartStart = /^([+a-z0-9A-Z_-]{0,63})(.*)$/,
+    // protocols that can allow "unsafe" and "unwise" chars.
+    unsafeProtocol = {
+      'javascript': true,
+      'javascript:': true
+    },
+    // protocols that never have a hostname.
+    hostlessProtocol = {
+      'javascript': true,
+      'javascript:': true
+    },
+    // protocols that always contain a // bit.
+    slashedProtocol = {
+      'http': true,
+      'https': true,
+      'ftp': true,
+      'gopher': true,
+      'file': true,
+      'http:': true,
+      'https:': true,
+      'ftp:': true,
+      'gopher:': true,
+      'file:': true
+    },
+    querystring = require('querystring');
+
+function urlParse(url, parseQueryString, slashesDenoteHost) {
+  if (url && util.isObject(url) && url instanceof Url) return url;
+
+  var u = new Url;
+  u.parse(url, parseQueryString, slashesDenoteHost);
+  return u;
+}
+
+Url.prototype.parse = function(url, parseQueryString, slashesDenoteHost) {
+  if (!util.isString(url)) {
+    throw new TypeError("Parameter 'url' must be a string, not " + typeof url);
+  }
+
+  // Copy chrome, IE, opera backslash-handling behavior.
+  // Back slashes before the query string get converted to forward slashes
+  // See: https://code.google.com/p/chromium/issues/detail?id=25916
+  var queryIndex = url.indexOf('?'),
+      splitter =
+          (queryIndex !== -1 && queryIndex < url.indexOf('#')) ? '?' : '#',
+      uSplit = url.split(splitter),
+      slashRegex = /\\/g;
+  uSplit[0] = uSplit[0].replace(slashRegex, '/');
+  url = uSplit.join(splitter);
+
+  var rest = url;
+
+  // trim before proceeding.
+  // This is to support parse stuff like "  http://foo.com  \n"
+  rest = rest.trim();
+
+  if (!slashesDenoteHost && url.split('#').length === 1) {
+    // Try fast path regexp
+    var simplePath = simplePathPattern.exec(rest);
+    if (simplePath) {
+      this.path = rest;
+      this.href = rest;
+      this.pathname = simplePath[1];
+      if (simplePath[2]) {
+        this.search = simplePath[2];
+        if (parseQueryString) {
+          this.query = querystring.parse(this.search.substr(1));
+        } else {
+          this.query = this.search.substr(1);
+        }
+      } else if (parseQueryString) {
+        this.search = '';
+        this.query = {};
+      }
+      return this;
+    }
+  }
+
+  var proto = protocolPattern.exec(rest);
+  if (proto) {
+    proto = proto[0];
+    var lowerProto = proto.toLowerCase();
+    this.protocol = lowerProto;
+    rest = rest.substr(proto.length);
+  }
+
+  // figure out if it's got a host
+  // user@server is *always* interpreted as a hostname, and url
+  // resolution will treat //foo/bar as host=foo,path=bar because that's
+  // how the browser resolves relative URLs.
+  if (slashesDenoteHost || proto || rest.match(/^\/\/[^@\/]+@[^@\/]+/)) {
+    var slashes = rest.substr(0, 2) === '//';
+    if (slashes && !(proto && hostlessProtocol[proto])) {
+      rest = rest.substr(2);
+      this.slashes = true;
+    }
+  }
+
+  if (!hostlessProtocol[proto] &&
+      (slashes || (proto && !slashedProtocol[proto]))) {
+
+    // there's a hostname.
+    // the first instance of /, ?, ;, or # ends the host.
+    //
+    // If there is an @ in the hostname, then non-host chars *are* allowed
+    // to the left of the last @ sign, unless some host-ending character
+    // comes *before* the @-sign.
+    // URLs are obnoxious.
+    //
+    // ex:
+    // http://a@b@c/ => user:a@b host:c
+    // http://a@b?@c => user:a host:c path:/?@c
+
+    // v0.12 TODO(isaacs): This is not quite how Chrome does things.
+    // Review our test case against browsers more comprehensively.
+
+    // find the first instance of any hostEndingChars
+    var hostEnd = -1;
+    for (var i = 0; i < hostEndingChars.length; i++) {
+      var hec = rest.indexOf(hostEndingChars[i]);
+      if (hec !== -1 && (hostEnd === -1 || hec < hostEnd))
+        hostEnd = hec;
+    }
+
+    // at this point, either we have an explicit point where the
+    // auth portion cannot go past, or the last @ char is the decider.
+    var auth, atSign;
+    if (hostEnd === -1) {
+      // atSign can be anywhere.
+      atSign = rest.lastIndexOf('@');
+    } else {
+      // atSign must be in auth portion.
+      // http://a@b/c@d => host:b auth:a path:/c@d
+      atSign = rest.lastIndexOf('@', hostEnd);
+    }
+
+    // Now we have a portion which is definitely the auth.
+    // Pull that off.
+    if (atSign !== -1) {
+      auth = rest.slice(0, atSign);
+      rest = rest.slice(atSign + 1);
+      this.auth = decodeURIComponent(auth);
+    }
+
+    // the host is the remaining to the left of the first non-host char
+    hostEnd = -1;
+    for (var i = 0; i < nonHostChars.length; i++) {
+      var hec = rest.indexOf(nonHostChars[i]);
+      if (hec !== -1 && (hostEnd === -1 || hec < hostEnd))
+        hostEnd = hec;
+    }
+    // if we still have not hit it, then the entire thing is a host.
+    if (hostEnd === -1)
+      hostEnd = rest.length;
+
+    this.host = rest.slice(0, hostEnd);
+    rest = rest.slice(hostEnd);
+
+    // pull out port.
+    this.parseHost();
+
+    // we've indicated that there is a hostname,
+    // so even if it's empty, it has to be present.
+    this.hostname = this.hostname || '';
+
+    // if hostname begins with [ and ends with ]
+    // assume that it's an IPv6 address.
+    var ipv6Hostname = this.hostname[0] === '[' &&
+        this.hostname[this.hostname.length - 1] === ']';
+
+    // validate a little.
+    if (!ipv6Hostname) {
+      var hostparts = this.hostname.split(/\./);
+      for (var i = 0, l = hostparts.length; i < l; i++) {
+        var part = hostparts[i];
+        if (!part) continue;
+        if (!part.match(hostnamePartPattern)) {
+          var newpart = '';
+          for (var j = 0, k = part.length; j < k; j++) {
+            if (part.charCodeAt(j) > 127) {
+              // we replace non-ASCII char with a temporary placeholder
+              // we need this to make sure size of hostname is not
+              // broken by replacing non-ASCII by nothing
+              newpart += 'x';
+            } else {
+              newpart += part[j];
+            }
+          }
+          // we test again with ASCII char only
+          if (!newpart.match(hostnamePartPattern)) {
+            var validParts = hostparts.slice(0, i);
+            var notHost = hostparts.slice(i + 1);
+            var bit = part.match(hostnamePartStart);
+            if (bit) {
+              validParts.push(bit[1]);
+              notHost.unshift(bit[2]);
+            }
+            if (notHost.length) {
+              rest = '/' + notHost.join('.') + rest;
+            }
+            this.hostname = validParts.join('.');
+            break;
+          }
+        }
+      }
+    }
+
+    if (this.hostname.length > hostnameMaxLen) {
+      this.hostname = '';
+    } else {
+      // hostnames are always lower case.
+      this.hostname = this.hostname.toLowerCase();
+    }
+
+    if (!ipv6Hostname) {
+      // IDNA Support: Returns a punycoded representation of "domain".
+      // It only converts parts of the domain name that
+      // have non-ASCII characters, i.e. it doesn't matter if
+      // you call it with a domain that already is ASCII-only.
+      this.hostname = punycode.toASCII(this.hostname);
+    }
+
+    var p = this.port ? ':' + this.port : '';
+    var h = this.hostname || '';
+    this.host = h + p;
+    this.href += this.host;
+
+    // strip [ and ] from the hostname
+    // the host field still retains them, though
+    if (ipv6Hostname) {
+      this.hostname = this.hostname.substr(1, this.hostname.length - 2);
+      if (rest[0] !== '/') {
+        rest = '/' + rest;
+      }
+    }
+  }
+
+  // now rest is set to the post-host stuff.
+  // chop off any delim chars.
+  if (!unsafeProtocol[lowerProto]) {
+
+    // First, make 100% sure that any "autoEscape" chars get
+    // escaped, even if encodeURIComponent doesn't think they
+    // need to be.
+    for (var i = 0, l = autoEscape.length; i < l; i++) {
+      var ae = autoEscape[i];
+      if (rest.indexOf(ae) === -1)
+        continue;
+      var esc = encodeURIComponent(ae);
+      if (esc === ae) {
+        esc = escape(ae);
+      }
+      rest = rest.split(ae).join(esc);
+    }
+  }
+
+
+  // chop off from the tail first.
+  var hash = rest.indexOf('#');
+  if (hash !== -1) {
+    // got a fragment string.
+    this.hash = rest.substr(hash);
+    rest = rest.slice(0, hash);
+  }
+  var qm = rest.indexOf('?');
+  if (qm !== -1) {
+    this.search = rest.substr(qm);
+    this.query = rest.substr(qm + 1);
+    if (parseQueryString) {
+      this.query = querystring.parse(this.query);
+    }
+    rest = rest.slice(0, qm);
+  } else if (parseQueryString) {
+    // no query string, but parseQueryString still requested
+    this.search = '';
+    this.query = {};
+  }
+  if (rest) this.pathname = rest;
+  if (slashedProtocol[lowerProto] &&
+      this.hostname && !this.pathname) {
+    this.pathname = '/';
+  }
+
+  //to support http.request
+  if (this.pathname || this.search) {
+    var p = this.pathname || '';
+    var s = this.search || '';
+    this.path = p + s;
+  }
+
+  // finally, reconstruct the href based on what has been validated.
+  this.href = this.format();
+  return this;
+};
+
+// format a parsed object into a url string
+function urlFormat(obj) {
+  // ensure it's an object, and not a string url.
+  // If it's an obj, this is a no-op.
+  // this way, you can call url_format() on strings
+  // to clean up potentially wonky urls.
+  if (util.isString(obj)) obj = urlParse(obj);
+  if (!(obj instanceof Url)) return Url.prototype.format.call(obj);
+  return obj.format();
+}
+
+Url.prototype.format = function() {
+  var auth = this.auth || '';
+  if (auth) {
+    auth = encodeURIComponent(auth);
+    auth = auth.replace(/%3A/i, ':');
+    auth += '@';
+  }
+
+  var protocol = this.protocol || '',
+      pathname = this.pathname || '',
+      hash = this.hash || '',
+      host = false,
+      query = '';
+
+  if (this.host) {
+    host = auth + this.host;
+  } else if (this.hostname) {
+    host = auth + (this.hostname.indexOf(':') === -1 ?
+        this.hostname :
+        '[' + this.hostname + ']');
+    if (this.port) {
+      host += ':' + this.port;
+    }
+  }
+
+  if (this.query &&
+      util.isObject(this.query) &&
+      Object.keys(this.query).length) {
+    query = querystring.stringify(this.query);
+  }
+
+  var search = this.search || (query && ('?' + query)) || '';
+
+  if (protocol && protocol.substr(-1) !== ':') protocol += ':';
+
+  // only the slashedProtocols get the //.  Not mailto:, xmpp:, etc.
+  // unless they had them to begin with.
+  if (this.slashes ||
+      (!protocol || slashedProtocol[protocol]) && host !== false) {
+    host = '//' + (host || '');
+    if (pathname && pathname.charAt(0) !== '/') pathname = '/' + pathname;
+  } else if (!host) {
+    host = '';
+  }
+
+  if (hash && hash.charAt(0) !== '#') hash = '#' + hash;
+  if (search && search.charAt(0) !== '?') search = '?' + search;
+
+  pathname = pathname.replace(/[?#]/g, function(match) {
+    return encodeURIComponent(match);
+  });
+  search = search.replace('#', '%23');
+
+  return protocol + host + pathname + search + hash;
+};
+
+function urlResolve(source, relative) {
+  return urlParse(source, false, true).resolve(relative);
+}
+
+Url.prototype.resolve = function(relative) {
+  return this.resolveObject(urlParse(relative, false, true)).format();
+};
+
+function urlResolveObject(source, relative) {
+  if (!source) return relative;
+  return urlParse(source, false, true).resolveObject(relative);
+}
+
+Url.prototype.resolveObject = function(relative) {
+  if (util.isString(relative)) {
+    var rel = new Url();
+    rel.parse(relative, false, true);
+    relative = rel;
+  }
+
+  var result = new Url();
+  var tkeys = Object.keys(this);
+  for (var tk = 0; tk < tkeys.length; tk++) {
+    var tkey = tkeys[tk];
+    result[tkey] = this[tkey];
+  }
+
+  // hash is always overridden, no matter what.
+  // even href="" will remove it.
+  result.hash = relative.hash;
+
+  // if the relative url is empty, then there's nothing left to do here.
+  if (relative.href === '') {
+    result.href = result.format();
+    return result;
+  }
+
+  // hrefs like //foo/bar always cut to the protocol.
+  if (relative.slashes && !relative.protocol) {
+    // take everything except the protocol from relative
+    var rkeys = Object.keys(relative);
+    for (var rk = 0; rk < rkeys.length; rk++) {
+      var rkey = rkeys[rk];
+      if (rkey !== 'protocol')
+        result[rkey] = relative[rkey];
+    }
+
+    //urlParse appends trailing / to urls like http://www.example.com
+    if (slashedProtocol[result.protocol] &&
+        result.hostname && !result.pathname) {
+      result.path = result.pathname = '/';
+    }
+
+    result.href = result.format();
+    return result;
+  }
+
+  if (relative.protocol && relative.protocol !== result.protocol) {
+    // if it's a known url protocol, then changing
+    // the protocol does weird things
+    // first, if it's not file:, then we MUST have a host,
+    // and if there was a path
+    // to begin with, then we MUST have a path.
+    // if it is file:, then the host is dropped,
+    // because that's known to be hostless.
+    // anything else is assumed to be absolute.
+    if (!slashedProtocol[relative.protocol]) {
+      var keys = Object.keys(relative);
+      for (var v = 0; v < keys.length; v++) {
+        var k = keys[v];
+        result[k] = relative[k];
+      }
+      result.href = result.format();
+      return result;
+    }
+
+    result.protocol = relative.protocol;
+    if (!relative.host && !hostlessProtocol[relative.protocol]) {
+      var relPath = (relative.pathname || '').split('/');
+      while (relPath.length && !(relative.host = relPath.shift()));
+      if (!relative.host) relative.host = '';
+      if (!relative.hostname) relative.hostname = '';
+      if (relPath[0] !== '') relPath.unshift('');
+      if (relPath.length < 2) relPath.unshift('');
+      result.pathname = relPath.join('/');
+    } else {
+      result.pathname = relative.pathname;
+    }
+    result.search = relative.search;
+    result.query = relative.query;
+    result.host = relative.host || '';
+    result.auth = relative.auth;
+    result.hostname = relative.hostname || relative.host;
+    result.port = relative.port;
+    // to support http.request
+    if (result.pathname || result.search) {
+      var p = result.pathname || '';
+      var s = result.search || '';
+      result.path = p + s;
+    }
+    result.slashes = result.slashes || relative.slashes;
+    result.href = result.format();
+    return result;
+  }
+
+  var isSourceAbs = (result.pathname && result.pathname.charAt(0) === '/'),
+      isRelAbs = (
+          relative.host ||
+          relative.pathname && relative.pathname.charAt(0) === '/'
+      ),
+      mustEndAbs = (isRelAbs || isSourceAbs ||
+                    (result.host && relative.pathname)),
+      removeAllDots = mustEndAbs,
+      srcPath = result.pathname && result.pathname.split('/') || [],
+      relPath = relative.pathname && relative.pathname.split('/') || [],
+      psychotic = result.protocol && !slashedProtocol[result.protocol];
+
+  // if the url is a non-slashed url, then relative
+  // links like ../.. should be able
+  // to crawl up to the hostname, as well.  This is strange.
+  // result.protocol has already been set by now.
+  // Later on, put the first path part into the host field.
+  if (psychotic) {
+    result.hostname = '';
+    result.port = null;
+    if (result.host) {
+      if (srcPath[0] === '') srcPath[0] = result.host;
+      else srcPath.unshift(result.host);
+    }
+    result.host = '';
+    if (relative.protocol) {
+      relative.hostname = null;
+      relative.port = null;
+      if (relative.host) {
+        if (relPath[0] === '') relPath[0] = relative.host;
+        else relPath.unshift(relative.host);
+      }
+      relative.host = null;
+    }
+    mustEndAbs = mustEndAbs && (relPath[0] === '' || srcPath[0] === '');
+  }
+
+  if (isRelAbs) {
+    // it's absolute.
+    result.host = (relative.host || relative.host === '') ?
+                  relative.host : result.host;
+    result.hostname = (relative.hostname || relative.hostname === '') ?
+                      relative.hostname : result.hostname;
+    result.search = relative.search;
+    result.query = relative.query;
+    srcPath = relPath;
+    // fall through to the dot-handling below.
+  } else if (relPath.length) {
+    // it's relative
+    // throw away the existing file, and take the new path instead.
+    if (!srcPath) srcPath = [];
+    srcPath.pop();
+    srcPath = srcPath.concat(relPath);
+    result.search = relative.search;
+    result.query = relative.query;
+  } else if (!util.isNullOrUndefined(relative.search)) {
+    // just pull out the search.
+    // like href='?foo'.
+    // Put this after the other two cases because it simplifies the booleans
+    if (psychotic) {
+      result.hostname = result.host = srcPath.shift();
+      //occationaly the auth can get stuck only in host
+      //this especially happens in cases like
+      //url.resolveObject('mailto:local1@domain1', 'local2@domain2')
+      var authInHost = result.host && result.host.indexOf('@') > 0 ?
+                       result.host.split('@') : false;
+      if (authInHost) {
+        result.auth = authInHost.shift();
+        result.host = result.hostname = authInHost.shift();
+      }
+    }
+    result.search = relative.search;
+    result.query = relative.query;
+    //to support http.request
+    if (!util.isNull(result.pathname) || !util.isNull(result.search)) {
+      result.path = (result.pathname ? result.pathname : '') +
+                    (result.search ? result.search : '');
+    }
+    result.href = result.format();
+    return result;
+  }
+
+  if (!srcPath.length) {
+    // no path at all.  easy.
+    // we've already handled the other stuff above.
+    result.pathname = null;
+    //to support http.request
+    if (result.search) {
+      result.path = '/' + result.search;
+    } else {
+      result.path = null;
+    }
+    result.href = result.format();
+    return result;
+  }
+
+  // if a url ENDs in . or .., then it must get a trailing slash.
+  // however, if it ends in anything else non-slashy,
+  // then it must NOT get a trailing slash.
+  var last = srcPath.slice(-1)[0];
+  var hasTrailingSlash = (
+      (result.host || relative.host || srcPath.length > 1) &&
+      (last === '.' || last === '..') || last === '');
+
+  // strip single dots, resolve double dots to parent dir
+  // if the path tries to go above the root, `up` ends up > 0
+  var up = 0;
+  for (var i = srcPath.length; i >= 0; i--) {
+    last = srcPath[i];
+    if (last === '.') {
+      srcPath.splice(i, 1);
+    } else if (last === '..') {
+      srcPath.splice(i, 1);
+      up++;
+    } else if (up) {
+      srcPath.splice(i, 1);
+      up--;
+    }
+  }
+
+  // if the path is allowed to go above the root, restore leading ..s
+  if (!mustEndAbs && !removeAllDots) {
+    for (; up--; up) {
+      srcPath.unshift('..');
+    }
+  }
+
+  if (mustEndAbs && srcPath[0] !== '' &&
+      (!srcPath[0] || srcPath[0].charAt(0) !== '/')) {
+    srcPath.unshift('');
+  }
+
+  if (hasTrailingSlash && (srcPath.join('/').substr(-1) !== '/')) {
+    srcPath.push('');
+  }
+
+  var isAbsolute = srcPath[0] === '' ||
+      (srcPath[0] && srcPath[0].charAt(0) === '/');
+
+  // put the host back
+  if (psychotic) {
+    result.hostname = result.host = isAbsolute ? '' :
+                                    srcPath.length ? srcPath.shift() : '';
+    //occationaly the auth can get stuck only in host
+    //this especially happens in cases like
+    //url.resolveObject('mailto:local1@domain1', 'local2@domain2')
+    var authInHost = result.host && result.host.indexOf('@') > 0 ?
+                     result.host.split('@') : false;
+    if (authInHost) {
+      result.auth = authInHost.shift();
+      result.host = result.hostname = authInHost.shift();
+    }
+  }
+
+  mustEndAbs = mustEndAbs || (result.host && srcPath.length);
+
+  if (mustEndAbs && !isAbsolute) {
+    srcPath.unshift('');
+  }
+
+  if (!srcPath.length) {
+    result.pathname = null;
+    result.path = null;
+  } else {
+    result.pathname = srcPath.join('/');
+  }
+
+  //to support request.http
+  if (!util.isNull(result.pathname) || !util.isNull(result.search)) {
+    result.path = (result.pathname ? result.pathname : '') +
+                  (result.search ? result.search : '');
+  }
+  result.auth = relative.auth || result.auth;
+  result.slashes = result.slashes || relative.slashes;
+  result.href = result.format();
+  return result;
+};
+
+Url.prototype.parseHost = function() {
+  var host = this.host;
+  var port = portPattern.exec(host);
+  if (port) {
+    port = port[0];
+    if (port !== ':') {
+      this.port = port.substr(1);
+    }
+    host = host.substr(0, host.length - port.length);
+  }
+  if (host) this.hostname = host;
+};
+
+},{"./util":158,"punycode":126,"querystring":129}],158:[function(require,module,exports){
+'use strict';
+
+module.exports = {
+  isString: function(arg) {
+    return typeof(arg) === 'string';
+  },
+  isObject: function(arg) {
+    return typeof(arg) === 'object' && arg !== null;
+  },
+  isNull: function(arg) {
+    return arg === null;
+  },
+  isNullOrUndefined: function(arg) {
+    return arg == null;
+  }
+};
+
+},{}],159:[function(require,module,exports){
+(function (global){
+
+/**
+ * Module exports.
+ */
+
+module.exports = deprecate;
+
+/**
+ * Mark that a method should not be used.
+ * Returns a modified function which warns once by default.
+ *
+ * If `localStorage.noDeprecation = true` is set, then it is a no-op.
+ *
+ * If `localStorage.throwDeprecation = true` is set, then deprecated functions
+ * will throw an Error when invoked.
+ *
+ * If `localStorage.traceDeprecation = true` is set, then deprecated functions
+ * will invoke `console.trace()` instead of `console.error()`.
+ *
+ * @param {Function} fn - the function to deprecate
+ * @param {String} msg - the string to print to the console when `fn` is invoked
+ * @returns {Function} a new "deprecated" version of `fn`
+ * @api public
+ */
+
+function deprecate (fn, msg) {
+  if (config('noDeprecation')) {
+    return fn;
+  }
+
+  var warned = false;
+  function deprecated() {
+    if (!warned) {
+      if (config('throwDeprecation')) {
+        throw new Error(msg);
+      } else if (config('traceDeprecation')) {
+        console.trace(msg);
+      } else {
+        console.warn(msg);
+      }
+      warned = true;
+    }
+    return fn.apply(this, arguments);
+  }
+
+  return deprecated;
+}
+
+/**
+ * Checks `localStorage` for boolean values for the given `name`.
+ *
+ * @param {String} name
+ * @returns {Boolean}
+ * @api private
+ */
+
+function config (name) {
+  // accessing global.localStorage can trigger a DOMException in sandboxed iframes
+  try {
+    if (!global.localStorage) return false;
+  } catch (_) {
+    return false;
+  }
+  var val = global.localStorage[name];
+  if (null == val) return false;
+  return String(val).toLowerCase() === 'true';
+}
+
+}).call(this,typeof global !== "undefined" ? global : typeof self !== "undefined" ? self : typeof window !== "undefined" ? window : {})
+},{}],160:[function(require,module,exports){
+var indexOf = function (xs, item) {
+    if (xs.indexOf) return xs.indexOf(item);
+    else for (var i = 0; i < xs.length; i++) {
+        if (xs[i] === item) return i;
+    }
+    return -1;
+};
+var Object_keys = function (obj) {
+    if (Object.keys) return Object.keys(obj)
+    else {
+        var res = [];
+        for (var key in obj) res.push(key)
+        return res;
+    }
+};
+
+var forEach = function (xs, fn) {
+    if (xs.forEach) return xs.forEach(fn)
+    else for (var i = 0; i < xs.length; i++) {
+        fn(xs[i], i, xs);
+    }
+};
+
+var defineProp = (function() {
+    try {
+        Object.defineProperty({}, '_', {});
+        return function(obj, name, value) {
+            Object.defineProperty(obj, name, {
+                writable: true,
+                enumerable: false,
+                configurable: true,
+                value: value
+            })
+        };
+    } catch(e) {
+        return function(obj, name, value) {
+            obj[name] = value;
+        };
+    }
+}());
+
+var globals = ['Array', 'Boolean', 'Date', 'Error', 'EvalError', 'Function',
+'Infinity', 'JSON', 'Math', 'NaN', 'Number', 'Object', 'RangeError',
+'ReferenceError', 'RegExp', 'String', 'SyntaxError', 'TypeError', 'URIError',
+'decodeURI', 'decodeURIComponent', 'encodeURI', 'encodeURIComponent', 'escape',
+'eval', 'isFinite', 'isNaN', 'parseFloat', 'parseInt', 'undefined', 'unescape'];
+
+function Context() {}
+Context.prototype = {};
+
+var Script = exports.Script = function NodeScript (code) {
+    if (!(this instanceof Script)) return new Script(code);
+    this.code = code;
+};
+
+Script.prototype.runInContext = function (context) {
+    if (!(context instanceof Context)) {
+        throw new TypeError("needs a 'context' argument.");
+    }
+    
+    var iframe = document.createElement('iframe');
+    if (!iframe.style) iframe.style = {};
+    iframe.style.display = 'none';
+    
+    document.body.appendChild(iframe);
+    
+    var win = iframe.contentWindow;
+    var wEval = win.eval, wExecScript = win.execScript;
+
+    if (!wEval && wExecScript) {
+        // win.eval() magically appears when this is called in IE:
+        wExecScript.call(win, 'null');
+        wEval = win.eval;
+    }
+    
+    forEach(Object_keys(context), function (key) {
+        win[key] = context[key];
+    });
+    forEach(globals, function (key) {
+        if (context[key]) {
+            win[key] = context[key];
+        }
+    });
+    
+    var winKeys = Object_keys(win);
+
+    var res = wEval.call(win, this.code);
+    
+    forEach(Object_keys(win), function (key) {
+        // Avoid copying circular objects like `top` and `window` by only
+        // updating existing context properties or new properties in the `win`
+        // that was only introduced after the eval.
+        if (key in context || indexOf(winKeys, key) === -1) {
+            context[key] = win[key];
+        }
+    });
+
+    forEach(globals, function (key) {
+        if (!(key in context)) {
+            defineProp(context, key, win[key]);
+        }
+    });
+    
+    document.body.removeChild(iframe);
+    
+    return res;
+};
+
+Script.prototype.runInThisContext = function () {
+    return eval(this.code); // maybe...
+};
+
+Script.prototype.runInNewContext = function (context) {
+    var ctx = Script.createContext(context);
+    var res = this.runInContext(ctx);
+
+    if (context) {
+        forEach(Object_keys(ctx), function (key) {
+            context[key] = ctx[key];
+        });
+    }
+
+    return res;
+};
+
+forEach(Object_keys(Script.prototype), function (name) {
+    exports[name] = Script[name] = function (code) {
+        var s = Script(code);
+        return s[name].apply(s, [].slice.call(arguments, 1));
+    };
+});
+
+exports.createScript = function (code) {
+    return exports.Script(code);
+};
+
+exports.createContext = Script.createContext = function (context) {
+    var copy = new Context();
+    if(typeof context === 'object') {
+        forEach(Object_keys(context), function (key) {
+            copy[key] = context[key];
+        });
+    }
+    return copy;
+};
+
+},{}]},{},[1]);
diff --git a/oxAuth/Server/src/main/webapp/auth/thumbsignin/js/thumbsign_widget.js b/oxAuth/Server/src/main/webapp/auth/thumbsignin/js/thumbsign_widget.js
new file mode 100644
index 00000000..ca25eb21
--- /dev/null
+++ b/oxAuth/Server/src/main/webapp/auth/thumbsignin/js/thumbsign_widget.js
@@ -0,0 +1,1076 @@
+(function (root, factory) {
+    if (typeof define === 'function' && define.amd) {
+        // AMD. Register as an anonymous module.
+        define(['jquery'], factory);
+    } else if (typeof module === 'object' && module.exports) {
+        // Node. Does not work with strict CommonJS, but
+        // only CommonJS-like environments that support module.exports,
+        // like Node.
+        module.exports = factory(require('jquery'));
+    } else {
+        // Browser globals (root is window)
+        root.thumbSignIn = factory(root.jquery);
+    }
+}(this, function () {
+    'use strict';
+    var getElem = function (url) {
+        return {
+            elem: `
+    <div class="tsmodal-content ts-content" style="display: none;">
+        <div class="tsmodal-body ts-body">
+            <p class="ts_initiated ts-initiated" id="tsInitiated"/>
+            <div class="item html" >
+                <div class="ts-timeout overlay ts-overlay" style="display: none;">
+                    <div class="refreshImg ts-refresh-img"></div>
+                    <div class="refreshTxt ts-refresh-txt" id="refreshTXT"></div>
+                </div>
+                <p class="sucessMsg ts-sucess-msg"/>
+                <div id="qrcode" class="qrcode ts-qrcode">
+                    <div data-type="mobile" class="hidden">
+                        <div style="margin-top: 10px;">
+                            <img id="openApp" class="open-app-icon ts-app-icon" src="${url}/styles/img/icon_old.png" style="display:none;"/>
+                            <div class="open-app ts-app-link"> <a style="font-size:16px;font-family:'Roboto';" class="btn deeplink" target="_blank" href="#"></a></div>
+                        </div>
+                    </div>
+                    <div data-type="desktop" class="hidden">
+                        <div>
+                            <div class="logoIcon ts-logo-icon"/><img id="openQR" src=""/></div>
+                        </div>
+                    </div>
+                    <div class="circle-loader ts-circle-loader">
+                        <div class="checkmark draw ts-checkmark"/>
+                    </div>
+                </div>
+            </div>
+            <div class="intro-conatiner ts-intro-conatiner" style="margin-top:30px">
+                <p id="intro_msg" class="intro_msg ts-intro-msg"/>
+                <p id="toggle_view ts-toggle-view" style="display:none;">
+                    <div id="toggle_view_text" class="toggle_view_text"></div>
+                    <a id="toggle_view_link" class="toggle_view_link"></a>
+                    <span id="toggle_view_span_text"></span>
+                </p>
+            </div>
+            <div id="module-wrapper" class="ts-module-wrapper"/>
+        </div>
+    </div>
+            `,
+            style: ""
+        }
+    };
+    
+    var defaultConfig = {
+        'widgetUrlParameterPart': '#ThumbsignId',
+        'widgetUrlParameterSeparator': "----",
+        'ALREADY_REGISTERED': "You have already enabled passwordless authentication for this account using this device.",
+        'NOT_REGISTERED': "Can't login because the passwordless account doesn't exist.",
+        'NO_SUITABLE_AUTHENTICATOR': "You have not added fingerprint in your device.",
+        'DECLINED': "Cancelled",
+        'CANCELLED': "Cancelled",
+        'TIMEOUT': "Please try again.",
+        'TECHNICAL_REASON_ERROR': "Please try again.",
+        'TECHNICAL_REASON': "Please try again.",
+        'COMPLETED_FAILURE': "",
+        'DEEP_LINK': "Open in Thumbsignin app",
+        'COMPLETED_SUCCESSFUL': 'Finished successfully',
+        'desktop': {
+            'REFRESH_MSG': "QR Code expired.<br/> Click to regenerate.",
+            'switch-msg': "Show QR Code",
+            'INTRO_MSG"': "Scan the QR code above using the ThumbSignIn app on your phone.",
+            'TOGGLE_MSG1': "Have app on this phone?",
+            'TOGGLE_MSG2': "Open app",
+            'INITIATED': "QR Code Scanned.",
+            'TIMEOUT': "Click to regenerate the QR code "
+        },
+        'mobile': {
+        	'REFRESH_MSG': "Click on refresh icon <br/> and try again.",
+        	'switch-msg': "Show on App",
+        	'INTRO_MSG"': "",
+        	'TOGGLE_MSG1': "Have app on a different phone?",
+        	'TOGGLE_MSG2': "Show QR Code",
+        	'INITIATED': "Authentication Initiated.",
+        	'TIMEOUT': "Click to regenerate the QR code "
+        	}
+    }
+
+    var data = {
+        curentConfig: defaultConfig,
+        config: {},
+        module: {},
+        store: {},
+        rootURL: 'https://thumbsignin.com',
+    }
+
+    var api = {
+        init: function (options) {
+            var name = options.id;
+            if (window.name) {
+                delete window[id];
+            }
+            window[name] = {};
+            return preLoader(options.style)
+                .then(function () {
+                    data.config[options.config].desktop = Object.assign(data.curentConfig.desktop, data.config[options.config].desktop || {});
+                    data.config[options.config].mobile = Object.assign(data.curentConfig.mobile, data.config[options.config].mobile || {});
+                    var _conf = Object.assign(data.curentConfig, data.config[options.config] || {});
+                    _conf.rootURL = data.rootURL;
+                    //make builder object
+                    var buildObj = new Builder(options, _conf, getElem(data.rootURL));
+                    data.store[options.id] = buildObj;
+                    buildObj.initBuilder();
+                    window[name] = buildObj;
+                    return buildObj;
+                })
+                .catch(function (err) {
+                    throw err;
+                })
+        },
+
+        setConfig: function (id) {
+            if (id !== undefined && data.config[id] !== undefined) {
+                data.curentConfig = data.config[id];
+            }
+        },
+        addModule: function (id, config, fn) {
+            if (id !== undefined && config !== undefined && typeof fn === "function") {
+                data.module[id] = {
+                    config: config.config,
+                    getElem: config.getElem,
+                    fn: fn,
+                }
+            }
+            return
+        },
+        addConfig: function (id, config) {
+            if (id !== undefined && typeof config === 'object') {
+                data.config[id] = config
+            }
+            return
+        },
+
+    }
+
+    function preLoader(file) {
+        var addOn = {
+            'axios': {
+                url: 'https://cdnjs.cloudflare.com/ajax/libs/axios/0.15.3/axios.min.js'
+            },
+            'jquery': {
+                url: 'https://cdnjs.cloudflare.com/ajax/libs/jquery/3.2.1/jquery.min.js'
+            },
+            'style': {
+                url: './js/thumbsignin_widget.css'
+            }
+        }
+        if (file && typeof file == "string") {
+            addOn['customStyle'] = {url:file};
+        }
+        return loadplugins(addOn);
+    }
+
+    function loadplugins(preLoadObj) {
+        var _this = this;
+        var list = Object.values(preLoadObj);
+        if (list.length === 0) {
+            return Promise.resolve();
+        }
+        var _ps = [];
+        for (var j = 0; j < list.length; j++) {
+            var files = list[j];
+            if (!Array.isArray(files.url)) {
+                files.url = [files.url];
+            }
+            for (var i = 0; i < files.url.length; i++) {
+                _ps.push(new Promise(function (resolve) {
+                    if (files.url[i].endsWith('.js')) {
+                        var script = document.createElement('script');
+                        script.src = files.url[i];
+                        script.setAttribute('async', '');
+                        script.onerror = function (evt) {
+                            console.log("Script Error", evt);
+                        };
+                        script.onload = function () {
+                            resolve()
+                            if (typeof files.done === 'function') {
+                                files.done.apply(_this, _this.DOM)
+                            }
+                        }
+                        document.getElementsByTagName('head')[0].appendChild(script);
+                    } else {
+                        var link = document.createElement("link");
+                        link.rel = "stylesheet";
+                        link.href = files.url[i];
+                        link.onerror = function (evt) {
+                            console.log("LINK Error", evt);
+                        }
+                        link.onload = function () {
+                            resolve()
+                        }
+                        document.getElementsByTagName('head')[0].appendChild(link);
+                    }
+                }));
+            }
+        }
+        return Promise.all(_ps)
+            .catch(function (err) {
+                if (this.events && this.events['ERROR'] !== null) {
+                    var _event = this.events['ERROR']
+                    _event.fn.call(_event.scope, err);
+                } else {
+                    throw err;
+                }
+            });
+    }
+
+    var Builder = (function (options, defaultConfig, element) {
+        var resource = {
+            config: defaultConfig,
+            name: options.id,
+            rootID: $('#' + options.container),
+            elem: element.elem,
+            style: element.style,
+            loadedPlugins: {},
+            isMobile: ('ontouchstart' in document.documentElement && navigator.userAgent.match(/Mobi/))
+        }
+
+        var transId;
+
+        var utils = {
+            getBrowser: function () {
+                var userAgent = navigator.userAgent.toLowerCase(),
+                    list = ['msie', 'chrome', 'crios', 'firefox', 'fxios', 'opera', 'opios', 'ucbrowser'],
+                    browser;
+                for (var i = 0; i < list.length; i++) {
+                    if (userAgent.search(list[i]) >= 0) {
+                        browser = list[i];
+                    }
+                    if (userAgent.search("safari") >= 0 &&
+                        userAgent.search("chrome") < 0 &&
+                        userAgent.search("fxios") < 0 &&
+                        userAgent.search("crios") < 0) {
+                        browser = "safari";
+                    }
+                    
+                }
+                return browser;
+            },
+
+            getReturnURL: function () {
+
+                return encodeURI(window.location.href.substr(0,
+                    (-1 === window.location.href.indexOf('#')) ?
+                        window.location.href.length :
+                        window.location.href.indexOf('#')));
+            },
+
+            isIOS: function () {
+                var iDevices = [
+                    'iPad Simulator',
+                    'iPhone Simulator',
+                    'iPod Simulator',
+                    'iPad',
+                    'iPhone',
+                    'iPod'
+                ];
+
+                if (!!navigator.platform) {
+                    while (iDevices.length) {
+                        if (navigator.platform === iDevices.pop()) {
+                            return true;
+                        }
+                    }
+                }
+
+                return false;
+            },
+
+            isIOSWebView: function () {
+                if (utils.isIOS()) {
+                    var userAgent = navigator.userAgent.toLowerCase();
+                    var webviewstrings = ['crios', 'safari'];
+                    var inx=0;
+                    for(inx =0; inx < webviewstrings.length; inx++) {
+                        if(userAgent.search(webviewstrings[inx]) !== -1) {
+                            return false;
+                        }
+                    }
+                    return true;
+                }
+                return false;
+            }
+        }
+        /*****WIP for Reset API*******/
+        function reset() {
+            this.refresh();
+        }
+        /*****WIP for Reload API*******/
+        function reload() {
+            var _this = this;
+            $(resource.rootID).empty();
+            this.DOM = $(resource.elem).appendTo(resource.rootID);
+            this.DOM.data('id', this.id);
+            this.DOM.data('name', resource.name);
+            //this.DOM.find('.fs18').html(resource.config.title);
+            this.DOM.find('.circle-loader').show();
+            // ADD DOM EVENTS
+            //this.DOM.find(".closeIcon").click(this.close.bind(this));
+            if (resource.isMobile) {
+                this.DOM.find('#toggle_view_link').click(toggleView.bind(this));
+                this.DOM.find('#toggle_view').show();
+            }
+            this.DOM.find('.ts-timeout').click(function () {
+                //_this.refresh();
+                //fetchData.call(_this);
+            	
+            	var reinitiazeButton = document.getElementById("initForm:reinitializeCurrentStep");
+            	reinitiazeButton.click();
+            });
+        }
+
+        function refresh(hardReset, config) {
+
+            if (transId) {
+                axios.get(resource.config.statusUrl + transId + '?cancelled=true');
+            }
+            if (hardReset === true) {
+                //hard refresh, reset to get new configs updated
+                //reset.call(this, config);
+                fetchData.call(this);
+            } else {
+                this.DOM.find('.ts-timeout').hide();
+                this.DOM.find('#intro_msg')
+                    .text(resource.isMobile ? resource.config.mobile['INTRO_MSG"'] :
+                        resource.config.desktop['INTRO_MSG"'])
+                    .show();
+                this.DOM.find('.checkmark').hide();
+                this.DOM.find('.sucessMsg').hide();
+                this.DOM.find("#qrcode").hide();
+                this.DOM.find('#openQR').attr('src', '');
+                this.DOM.find('#qrcode [data-type="mobile"] a').attr('href', '#');
+                this.DOM.find('.circle-loader')
+                    .removeClass('load-complete')
+                    .css('opacity', '1')
+                    .show();
+                fetchData.call(this);
+            }
+        }
+
+        function toggleView(eventObj) {
+            if (this.DOM.find('.ts-timeout').is(':visible')) {
+                eventObj.preventDefault();
+                return;
+            }
+            var elem = this.DOM.find('#toggle_view_link');
+            if (elem.data('curent') === 'mobile') {
+                elem.data('curent', 'qr');
+                elem.text(resource.config.desktop["TOGGLE_MSG2"]);
+                this.DOM.find('#toggle_view_text').text(resource.config.desktop["TOGGLE_MSG1"]);
+                eventObj.preventDefault();
+                this.DOM.find('#qrcode [data-type="mobile"]').addClass('hidden');
+                this.DOM.find('#qrcode [data-type="desktop"]').removeClass('hidden');
+                //resource.isMobile = !resource.isMobile;
+                this.DOM.find('#intro_msg')
+                    .text(resource.config.desktop['INTRO_MSG"'])
+                    .show();
+            } else {
+                elem.data('curent', 'mobile');
+                //resource.isMobile = !resource.isMobile;
+                elem.text(resource.config.mobile["TOGGLE_MSG2"]);
+                this.DOM.find('#toggle_view_text').text(resource.config.mobile["TOGGLE_MSG1"]);
+                this.DOM.find('#qrcode [data-type="mobile"]').removeClass('hidden');
+                this.DOM.find('#qrcode [data-type="desktop"]').addClass('hidden');
+                this.DOM.find('#intro_msg')
+                    .text(resource.config.mobile['INTRO_MSG"'])
+                    .show();
+                if ( utils.isIOS() && utils.isIOSWebView() === false ) {
+                    stopCheckingTransaction();
+                }
+            }
+
+            // this.refresh();
+            // fetchData.call(this);
+        }
+
+        function stopCheckingTransaction() {
+            transId = undefined;
+            clearTimeout(xhrTimer);
+        }
+
+        function initBuilder() {
+            var _this = this,
+                head = document.getElementsByTagName('head')[0],
+                link = document.createElement('style');
+            $(resource.rootID).empty();
+            this.DOM = $(resource.elem).appendTo(resource.rootID);
+            this.DOM.data('id', this.id);
+            this.DOM.data('name', resource.name);
+            //this.DOM.find('.fs18').html(resource.config.title);
+            this.DOM.find('.circle-loader').show();
+            // ADD DOM EVENTS
+            //this.DOM.find(".closeIcon").click(this.close.bind(this));
+            if (resource.isMobile) {
+                this.DOM.find('#toggle_view_link').click(toggleView.bind(this));
+                this.DOM.find('#toggle_view').show();
+            }
+            var deeplinkElem = _this.DOM.find('#qrcode [data-type="mobile"] a');
+            if ( utils.isIOS() && utils.isIOSWebView() === false ) {
+                deeplinkElem.bind("click", function () {
+                    stopCheckingTransaction();
+                });
+            }
+
+            this.DOM.find('.ts-timeout').click(function () {
+                //_this.refresh();
+                //fetchData.call(_this);
+            	
+            	var reinitiazeButton = document.getElementById("initForm:reinitializeCurrentStep");
+            	reinitiazeButton.click();
+            });
+
+            link.rel = 'stylesheet';
+            link.type = 'text/css';
+            if (link.styleSheet) {
+                link.styleSheet.cssText = resource.style
+            } else {
+                link.appendChild(document.createTextNode(resource.style));
+            }
+            head.appendChild(link);
+
+            loadplugins(this.plugins)
+                .then(function () {
+                    //clean all loaded plugins
+                    resource.loadedPlugins = Object.keys(_this.plugins);
+                    _this.plugins = {};
+                    console.log('plugins Loaded');
+                });
+
+            if (!resource.isMobile) {
+                loadplugins({
+                    'intlTelInputCss': {
+                        url: `${data.rootURL}/styles/intlTelInput.css`
+                    },
+                    'intlTelInputJs': {
+                        url: `${data.rootURL}/intlTelInput.min.js`
+                    }
+                }).then(function () {
+                    if (_this.require && Array.isArray(_this.require)) {
+                        //load the modules required
+                        var moduleStyles = "", link;
+                        for (var i = 0; i < _this.require.length; i++) {
+                            var moduleName = _this.require[i];
+                            if (moduleName && data.module[moduleName]) {
+                                var mdlData,
+                                    mdl = data.module[moduleName];
+                                data.config[options.config][moduleName] = Object.assign(mdl.config, data.config[options.config][moduleName] || {});
+                                mdlData = mdl.getElem(data.config[options.config], data.rootURL);
+                                moduleStyles += mdlData.style.trim();
+                                mdl.fn.call(_this, $(mdlData.elem), data.config[options.config]);
+                            } else {
+                                console.warn("could not fing module: " + moduleName);
+                            }
+                        }
+                        if (moduleStyles.trim().length > 0) {
+                            link = document.createElement('style');
+                            link.rel = 'stylesheet';
+                            link.type = 'text/css';
+                            link.appendChild(document.createTextNode(moduleStyles));
+                            document.getElementsByTagName('head')[0].appendChild(link);
+                        }
+                    }
+                });
+            }
+
+            if ( utils.isIOS() && utils.isIOSWebView() === false ) {
+                $(window).on('hashchange', function () {
+                    startCheckingTransaction.call(_this);
+                });
+            }
+        }
+
+        function startCheckingTransaction() {
+            if (window.location.hash.indexOf(resource.config.widgetUrlParameterPart) > -1 && resource.isMobile) {
+                var infoArray = window.location.hash.substr(1).split(resource.config.widgetUrlParameterSeparator);
+                transId = infoArray[1];
+                this.DOM.find('#qrcode [data-type="desktop"]').removeClass('hidden');
+                this.DOM.find('#qrcode [data-type="mobile"]').removeClass('hidden');
+                this.DOM.find('#qrcode [data-type="desktop"]').addClass('hidden');
+                this.DOM.find('#qrcode [data-type="mobile"]').addClass('hidden');
+                this.DOM.find('.circle-loader').show();
+                this.DOM.find('#toggle_view_text').text(resource.config.mobile["TOGGLE_MSG1"]);
+                this.DOM.find('#toggle_view_link').hide();
+                this.DOM.find('#toggle_view_span_text')
+                    .text(resource.config.mobile["TOGGLE_MSG2"]);
+                var elem = this.DOM.find('#qrcode [data-type="mobile"] a');
+                elem.html(resource.config["DEEP_LINK"]);
+                elem.attr('href', '#');
+
+                this.DOM.find('#toggle_view_span_text').show();
+                this.DOM.find('#toggle_view').show();
+                checkTransaction.call(this, resource.config.statusUrl + transId);
+                return true;
+            }
+            return false;
+        }
+
+        function addPlugin(id, fn) {
+            if (id !== undefined && typeof fn === 'function') {
+                this.plugins[id] = fn(); //fn returns config as per to integrate with,
+                var _this = this;
+                loadplugins.apply(this, [this.plugins]).then(function () {
+                    //clean all loaded plugins
+                    resource.loadedPlugins = Object.keys(_this.plugins);
+                    _this.plugins = {};
+                });
+            }
+        }
+
+        function registerEvent(id, cb, scope) {
+            if (id !== undefined && typeof cb === 'function') {
+                this.events[id] = {
+                    fn: cb,
+                    scope: scope
+                };
+            }
+        }
+
+        function loadConfig(config) {
+            var cnf = config || resource.config;
+        }
+
+        function fetchData() {
+            var _this = this;
+            var response = resource.config.actionResponse;
+            
+            if(response == ""){
+            	var expirePageLink = document.getElementById("expireLink");
+            	expirePageLink.click();
+            	return;
+            }
+            
+            var res;
+        	if (typeof response === "string") {
+        		res = JSON.parse(response);
+        	} else {
+        		res = response;
+        	}
+        	
+        	console.log("Action Response:", res);
+        	console.log("X-Ts-date Header:", resource.config.xTsDate);
+    		console.log("Authorization Header:", resource.config.authHeader);
+
+            _this.DOM.find('.circle-loader').hide();
+            _this.DOM.find("#qrcode").show();
+
+            var time = 0,
+                initialOffset = '440',
+                i = res.expireInSeconds;
+
+            _this.DOM.find('#intro_msg')
+                .text(resource.isMobile ? resource.config.mobile['INTRO_MSG"'] :
+                    resource.config.desktop['INTRO_MSG"'])
+                .show();
+
+            _this.DOM.find('.refreshTxt')
+                .html(resource.isMobile ? resource.config.mobile['REFRESH_MSG'] :
+                    resource.config.desktop['REFRESH_MSG']);
+
+            if (resource.isMobile && res.deepLinkUrl) {
+                _this.DOM.find('#qrcode [data-type="desktop"]').addClass('hidden');
+                if( utils.isIOS() && utils.isIOSWebView() === false ) {
+                    res.deepLinkUrl += '?transactionId=' + res.transactionId +
+                        '&browser=' + utils.getBrowser() + '&actionUrl=' + resource.config.actionUrl +
+                        '&statusUrl=' + resource.config.statusUrl +
+                        '&widgetUrlParameterSeparator=' + resource.config.widgetUrlParameterSeparator +
+                        '&returnurl=' + utils.getReturnURL(res.transactionId);
+                } else if(utils.isIOSWebView() === false) {
+                	res.deepLinkUrl += '?browser=' + utils.getBrowser()
+                }
+                var elem = _this.DOM.find('#qrcode [data-type="mobile"] a');
+                elem.attr('href', res.deepLinkUrl)
+                elem.html(resource.config["DEEP_LINK"]);
+                if ( 'safari' === utils.getBrowser() && utils.isIOSWebView() === false ) {
+                    elem.attr("target", "_blank");
+                }
+
+                _this.DOM.find('#toggle_view_text').text(resource.config.mobile["TOGGLE_MSG1"]);
+                _this.DOM.find('#toggle_view_link')
+                    .text(resource.config.mobile["TOGGLE_MSG2"])
+                    .data('curent', 'mobile');
+                _this.DOM.find('#toggle_view_span_text')
+                    .text('');
+                _this.DOM.find('#toggle_view_span_text').hide();
+                _this.DOM.find('#toggle_view').show();
+                _this.DOM.find('#toggle_view_link').show();
+
+                _this.DOM.find('#qrcode [data-type="mobile"]').removeClass('hidden');
+                _this.DOM.find('#openQR').attr('src', '\data:image/png;base64,' + res.qrImage);
+                _this.DOM.find('#toggle_view_link').attr("href", res.deepLinkUrl);
+                if ( 'safari' === utils.getBrowser() && utils.isIOSWebView() === false ) {
+                    _this.DOM.find('#toggle_view_link').attr("target", "_blank");
+                }
+            } else {
+                _this.DOM.find('#qrcode [data-type="mobile"]').addClass('hidden');
+                _this.DOM.find('#openQR').attr('src', '\data:image/png;base64,' + res.qrImage);
+                _this.DOM.find('#qrcode').attr('data-deeplink-url', res.deepLinkUrl ? res.deepLinkUrl : '');
+                _this.DOM.find('#qrcode [data-type="desktop"]').removeClass('hidden');
+
+            }
+            transId = res.transactionId;
+            checkTransaction.call(_this, resource.config.statusUrl + res.transactionId);
+
+            if (_this.events && _this.events['DATA_FETCHED'] !== null) {
+                var _event = _this.events['DATA_FETCHED']
+                _event.fn.call(_event.scope, res);
+            }
+        }
+        var xhrTimer;
+
+        function checkTransaction(url) {
+            var _this = this;
+            makeRequest(url, resource.config.authHeader, resource.config.xTsDate)
+            .then(function (response) {
+                
+            	var res;
+            	if (typeof response === "string") {
+            		res = JSON.parse(response);
+            	} else {
+            		res = response;
+            	}
+                status = res.status;
+
+                //RISE COMPLETED_SUCCESSFUL/PENDING/INTIATED?FAILURE EVENT LISTENER
+                if (status === "COMPLETED_SUCCESSFUL") {
+                    _this.DOM.find('.ts_initiated')
+                        .text('');
+                    transId = undefined;
+                    clearTimeout(xhrTimer);
+                    xhrTimer = undefined;
+                    
+                    if (resource.isMobile && resource.config.loginFlow === "Authentication") {
+                    	_this.DOM.find('.item').css({"height": "200px", "width":"auto"});                  	
+                    }
+                    
+                    _this.DOM.find('#qrcode').fadeOut('slow', function () {
+                        _this.DOM.find('.qr-time').hide();
+                        _this.DOM.find('.circle-loader').addClass('load-complete').show();
+                        _this.DOM.find('.checkmark').show();
+                        _this.DOM.find('#intro_msg').text(resource.config['COMPLETED_SUCCESSFUL']).show();
+
+                        _this.DOM.find('.ts_initiated').hide();
+                        setTimeout(function () {
+                            if (_this.events && _this.events['SUCCESS'] !== null) {
+                                var _event = _this.events['SUCCESS']
+                                _event.fn.call(_event.scope, res);
+                            }
+                        }, 1000);
+
+                    });
+                } else if (status === "PENDING") {
+                    if (_this.events && _this.events['PENDING'] !== null) {
+                        var _event = _this.events['PENDING']
+                        _event.fn.call(_event.scope, res);
+                    }
+                    xhrTimer = setTimeout(function () {
+                        if (resource.config.statusUrl + transId === url) {
+                            checkTransaction.call(_this, url);
+                        } else {
+                            console.log('exiting race condirtion');
+                        }
+
+                    }, 1500);
+                } else if (status === "INITIATED") {
+                    if (_this.events && _this.events['INITIATED'] !== null) {
+                        var _event = _this.events['INITIATED']
+                        _event.fn.call(_event.scope, res);
+                    }
+                    _this.DOM.find('#qrcode').css('opacity', '.1');
+
+                    _this.DOM.find('.ts_initiated')
+                        .text(resource.isMobile ? resource.config.mobile['INITIATED'] : resource.config.desktop['INITIATED'])
+                        .show();
+
+                    xhrTimer = setTimeout(function () {
+                        if (resource.config.statusUrl + transId === url) {
+                            checkTransaction.call(_this, url);
+                        } else {
+                            console.log('exiting race condirtion');
+                        }
+
+                    }, 1500);
+                } else {
+                    _this.DOM.find('.ts_initiated')
+                        .text('');
+                    if (_this.events && _this.events['FAILURE'] !== null) {
+                        var _event = _this.events['FAILURE']
+                        _event.fn.call(_event.scope, res);
+                    }
+                    transId = undefined;
+                    clearTimeout(xhrTimer);
+                    xhrTimer = undefined;
+                    //status === "COMPLETED_FAILURE"
+                    if (res.failureReason) {
+                    	
+                    	//Won't show the refresh icon after timeout
+                        /*if (res.failureReason === 'TIMEOUT') {
+                            //_this.DOM.find('#intro_msg')
+                                //.text(resource.isMobile ? resource.config.mobile['TIMEOUT'] : resource.config.desktop['TIMEOUT']);
+                        	_this.refresh();
+                        } else {
+                            _this.DOM.find('#intro_msg')
+                                .text(resource.config[res.failureReason] || res.failureReason);
+                            _this.DOM.find('.circle-loader').hide();
+                            _this.DOM.find('.ts-timeout').fadeIn(function () {
+                                _this.DOM.find('#qrcode').css('opacity', '1');
+                            });
+                        }*/
+                        
+                    	var counter;
+                        //Will show the refresh icon after timeout
+                        if (res.failureReason === 'TIMEOUT') {
+                        	
+                        	counter = 145;
+                        	//Page will be expired after 145 seconds of user in-action
+                            setInterval(function() {
+                            	
+                            	if (resource.config.loginFlow === "Registration" || counter === 0) {
+                            		                            		
+                            		if (resource.config.loginFlow === "Authentication") {
+                            			//Hiding the refresh icon once the timer has expired
+                            			_this.DOM.find('.ts-refresh-img').hide();
+                            			_this.DOM.find('.ts-refresh-txt').hide();
+                            		} else {
+                            			if (resource.isMobile) {
+                            				_this.DOM.find('.circle-loader').hide();
+                            				_this.DOM.find('.ts-refresh-txt').hide();
+                            				_this.DOM.find('.ts-refresh-img').hide();
+                            			} else {
+                            				_this.DOM.find('.circle-loader').hide();
+                                			_this.DOM.find('.ts-timeout').fadeIn(function () {
+                                				_this.DOM.find('.ts-refresh-img').hide();
+                                    			_this.DOM.find('.ts-refresh-txt').hide();
+                                                _this.DOM.find('#qrcode').css('opacity', '1');
+                                            });
+                            			}
+                            		}
+                            		                            		
+                            		_this.DOM.find('#intro_msg')
+                            		.text("Your session has expired. Redirecting to expiration page..");
+                            		
+                            		var expirePageLink = document.getElementById("expireLink");
+                                	expirePageLink.click();
+                                	
+                                	
+                            	} else {
+                            		
+                            		_this.DOM.find('#intro_msg')
+                            		.text(resource.isMobile ? resource.config.mobile['TIMEOUT']+"before session gets expired in "+counter+" seconds..." : resource.config.desktop['TIMEOUT']+"before session gets expired in "+counter+" seconds...");
+                            	
+                            		counter--;
+                            	}                            	                            	
+                            	
+                            }, 1000);
+                        	
+                        } else {
+                        	
+                        	//counter = (resource.config.loginFlow === "Authentication") ? (235 -  res.expireInSeconds) : 0;
+                        	counter = (resource.config.loginFlow === "Authentication") ? 145 : 3;
+                        	
+                        	//Page will be expired after 145 secs of user inaction
+                            setInterval(function() {
+                            	
+                            	if (resource.config.loginFlow === "Registration" || counter === 0) {
+                            		
+                            		if (resource.config.loginFlow === "Authentication") {
+                            			//Hiding the refresh icon once the timer has expired
+                            			_this.DOM.find('.ts-refresh-img').hide();
+                            			_this.DOM.find('.ts-refresh-txt').hide();
+                            		} else {
+                            			if (resource.isMobile) {
+                            				_this.DOM.find('.circle-loader').hide();
+                            				_this.DOM.find('.ts-refresh-txt').hide();
+                            				_this.DOM.find('.ts-refresh-img').hide();
+                            			} else {
+                            				_this.DOM.find('.circle-loader').hide();
+                                			_this.DOM.find('.ts-timeout').fadeIn(function () {
+                                				_this.DOM.find('.ts-refresh-img').hide();
+                                    			_this.DOM.find('.ts-refresh-txt').hide();
+                                                _this.DOM.find('#qrcode').css('opacity', '1');
+                                            });
+                            			}                           			
+                            		}
+                            		
+                            		_this.DOM.find('#intro_msg')
+                                	.text(resource.config[res.failureReason] || res.failureReason);
+                            		
+                            		if (counter === 0) {
+                            			var expirePageLink = document.getElementById("expireLink");
+                                    	expirePageLink.click();
+                            		} else {
+                            			counter--;
+                            		}                          		
+                                	
+                            	} else {
+
+                            		if (resource.config[res.failureReason] !== null && resource.config[res.failureReason].substr(resource.config[res.failureReason].length - 1) == '.' ) {
+                            			_this.DOM.find('#intro_msg')
+                                    	.text(resource.config[res.failureReason]+" Session expiring in "+counter+" seconds..." || res.failureReason);
+                            		} else {
+                            			_this.DOM.find('#intro_msg')
+                                    	.text(resource.config[res.failureReason]+". Session expiring in "+counter+" seconds..." || res.failureReason);
+                            		}
+                            		                                                        	
+                            		counter--;
+                            	}
+                            	
+                            }, 1000);                            
+                        }
+                        
+                        //Showing the refresh icon (.ts-timeout) only during Authentication Flow
+                        if (resource.config.loginFlow === "Authentication") {
+                        	_this.DOM.find('.circle-loader').hide();
+                        	_this.DOM.find('.ts-timeout').fadeIn(function () {
+                                _this.DOM.find('#qrcode').css('opacity', '1');
+                            });
+                        }
+                                                
+                        //If refresh icon is not clicked for more than 25 secs, below action is performed..
+                        /*xhrTimer = setTimeout(function () {
+                        	var expirePageLink = document.getElementById("expireLink");
+                        	expirePageLink.click();
+                        }, 25000);*/
+                        
+                    }
+                }
+
+            }).catch(function (err) {
+                _this.DOM.find('.ts_initiated').text('');
+                _this.DOM.find('#intro_msg')
+                    .text(resource.config['TECHNICAL_REASON'] || 'Please try again');
+                _this.DOM.find('.ts-timeout').fadeIn(function () {
+                    _this.DOM.find('#qrcode').css('opacity', '1');
+                });
+                if (_this.events && _this.events['ERROR'] !== null) {
+                    var _event = _this.events['ERROR']
+                    _event.fn.call(_event.scope, err);
+                } else {
+                    throw err;
+                }
+                transId = undefined;
+                xhrTimer = undefined;
+                clearTimeout(xhrTimer);
+            });
+        }
+
+        function open(callback) {
+            this.DOM.fadeIn();
+            if (!startCheckingTransaction.call(this)) {
+                fetchData.apply(this);
+            }
+            if (callback && typeof callback === "function") {
+                callback();
+            }
+        }
+
+        function close(callback) {
+            this.DOM.fadeOut();
+            clearTimeout(xhrTimer);
+            xhrTimer = undefined;
+            terminateTransaction.apply(this);
+            if (callback && typeof callback === "function") {
+                callback();
+            }
+        }
+
+        function terminateTransaction() {
+            if (transId) {
+                checkTransaction.apply(this, [resource.config.statusUrl + transId + '?cancelled=true']);
+            }
+        }
+
+        return {
+            plugins: {},
+            DOM: null,
+            events: {
+                'INITIATED': null,
+                'PENDING': null,
+                'ERROR': null,
+                'SUCCESS': null,
+                'FAILURE': null,
+                'FETCH_DATA_ERROR': null,
+                'DATA_FETCHED': null,
+            },
+            id: options.config,
+            initBuilder: initBuilder,
+            open: open,
+            close: close,
+            refresh: refresh,
+            require: (options.require && options.require.length > 0) ? options.require.concat(['sms', 'logo']) : ['sms', 'logo'],
+            addPlugin: addPlugin,
+            registerEvent: registerEvent,
+            terminateTransaction: terminateTransaction
+        }
+    });
+
+    return {
+        init: function () {
+            return api.init.apply(this, arguments)
+        },
+        setConfig: function () {
+            api.setConfig.apply(this, arguments)
+        },
+        addConfig: function () {
+            api.addConfig.apply(this, arguments)
+        },
+        addModule: function () {
+            api.addModule.apply(this, arguments)
+        }
+    };
+}));
+
+thumbSignIn.addModule('sms', {
+    config: {
+        'smsContent': "",
+        'smsTitle': "Or get link via SMS"
+    },
+    getElem: function (config, url) {
+        return {
+            elem: `<div class="tsmodal-footer"><p class="more-info more-info2" >${config.sms.smsTitle}</p><div class="more-info"><div class="d-box"><p id="sms_result" class="more-info"></p><div class="db-b"><input type="text" placeholder="123 456 7890" id="phone" maxlength="10"><img class="d-arrow-b" src="${url}/styles/img/icons-8-sent-filled.png"/></div></div></div></div>`,
+            style: `.more-info{margin:0 auto;max-width:248px}.db-b img.d-arrow-b{position:absolute;right:50px;padding:10px 5px;cursor:pointer}`
+        }
+    }
+}, function (dom, config) {
+    this.DOM.find("#module-wrapper").append(dom);
+    var _this = this;
+
+    this.DOM.find('#sms_result').html("");
+    this.DOM.find('#sms_result').hide();
+    this.DOM.find('.more-info').show()
+    this.DOM.find("#phone").intlTelInput({
+        initialCountry: "auto",
+        geoIpLookup: function (callback) {
+            $.get('https://ipinfo.io', function () { }, "jsonp").always(function (resp) {
+                var countryCode = (resp && resp.country) ? resp.country : "";
+                callback(countryCode);
+            });
+        }
+    });
+    this.DOM.find('#phone').keyup(function (e) {
+        var reg = new RegExp(/^\d+$/);
+        if (false === reg.test(_this.DOM.find('#phone').val())) {
+            _this.DOM.find('#phone').val('');
+        }
+        return;
+    });
+    this.DOM.find('#phone').keydown(function (e) {
+        var key = String.fromCharCode(e.keyCode);
+        var reg = new RegExp(/^\d+$/);
+        return (reg.test(key) || e.keyCode == '8' || e.keyCode == '39' || e.keyCode == '46' || e.keyCode == '37');
+    });
+
+    // Call API for sending SMS
+    this.DOM.find('.d-arrow-b').click(function () {
+        var val = _this.DOM.find("#phone").intlTelInput("getNumber");
+        if (val) {
+            if (_this.DOM.find("#phone").val().length === 10) {
+
+                var deeplinkUrl = _this.DOM.find('#qrcode').attr('data-deeplink-url');
+                if (deeplinkUrl.length > 0) {
+                    deeplinkUrl = 'Please download App from ' + deeplinkUrl;
+                } else {
+                    deeplinkUrl = 'Please download App';
+                }
+
+                var message = (config.sms.smsContent && config.sms.smsContent.length > 0) ? config.sms.smsContent : deeplinkUrl;
+
+                axios.post('/sendSMS', {
+                    to: val,
+                    message: message
+                }).then(function (response) {
+                    _this.DOM.find('#sms_result').html("SMS sent to your mobile");
+                    _this.DOM.find('#sms_result').show();
+                    setTimeout(function () {
+                        _this.DOM.find('#sms_result').hide();
+                    }, 2000);
+                }).catch(function (err) {
+                    _this.DOM.find('#sms_result').html("Something wrong happened");
+                    _this.DOM.find('#sms_result').show();
+                    setTimeout(function () {
+                        _this.DOM.find('#sms_result').hide();
+                    }, 2000);
+                    console.log('Error: ' + err);
+                });
+            } else {
+                _this.DOM.find('#sms_result').html("Please provide 10 digit phone number");
+                _this.DOM.find('#sms_result').show();
+                setTimeout(function () {
+                    _this.DOM.find('#sms_result').hide();
+                }, 2000);
+            }
+        } else {
+            _this.DOM.find('#sms_result').html("Please provide 10 digit phone number");
+            _this.DOM.find('#sms_result').show();
+            setTimeout(function () {
+                _this.DOM.find('#sms_result').hide();
+            }, 2000);
+        }
+    });
+})
+
+
+thumbSignIn.addModule('logo', {
+    config: {
+        'appIcon': 'https://thumbsignin.com/styles/img/icon_old.png',
+        'playStoreIcon': 'https://thumbsignin.com/styles/img/playstore.png',
+        'playStoreURL': 'https://play.google.com/store/apps/details?id=com.pramati.thumbsignin.app',
+        'appStoreIcon': 'https://thumbsignin.com/styles/img/appstore.png',
+        'appStoreURL': 'https://itunes.apple.com/us/app/thumbsignin/id1122364132'
+    },
+    getElem: function (config, url) {
+        return {
+            elem: '<div class="ts-logo-wrapper"><p>Don’t have the app yet? <span id="get_link_by_sms"> Get it now</span></p><div style="display: flex;"><p class="icons"><img src="' + config.logo.appIcon + '" height="30px" width="30px"/><a target="_blank" href="' + config.logo.appStoreURL + '"><img src="' + config.logo.appStoreIcon + '" height="30px" width="90px" style="padding-left:10px;"/></a><a target="_blank" href="' + config.logo.playStoreURL + '"><img src="' + config.logo.playStoreIcon + '" height="30px" width="90px" style="padding-left:10px;"/></a></p></div></div>',
+            style: '.ts-logo-wrapper span{font-weight:500;font-family:Montserrat-Bold;color:#19b2e6}.ts-logo-wrapper p{font-family:Montserrat-Medium;font-size:12px;color:#1a1a39}'
+        }
+    }
+}, function (dom) {
+    this.DOM.find("#module-wrapper").append(dom);
+})
+
+thumbSignIn.addModule('tsModal', {
+    config: {
+        'modalTitle': 'Scan the QR Code',
+    },
+    getElem: function (config, url) {
+        return {
+            elem: `
+            <button id="tsModalBtn">Open Modal</button>
+            <div id="tsModal" class="modal">
+            <div class="modal-content">
+                <h4 class="text-center">${config.tsModal.modalTitle}</h4>
+                <span class="close">&times;</span>
+                <div class="modal-content-wrapper"></div>
+            </div>
+            </div>
+            `,
+            style: '#tsModal{display:none;position:fixed;z-index:1000;left:0;top:0;width:100%;height:100%;overflow:hidden;background-color:rgba(0,0,0,.4)}#tsModal .modal-content{background-color:#fefefe;margin:10% auto;padding:20px;box-shadow:0 3px 6px rgba(0,0,0,.16),0 3px 6px rgba(0,0,0,.23);border:1px solid #888;width:450px}#tsModal .close{color:#aaa;float:right;font-size:28px;font-weight:700}#tsModal .close:focus,#tsModal .close:hover{color:#000;text-decoration:none;cursor:pointer}'
+        }
+    }
+}, function (dom) {
+    var widgetObj = this;
+    $('body').append(dom);
+    var modal = $('#tsModal');
+    modal.find('.modal-content-wrapper').empty().append(this.DOM.detach());
+    $("#tsModalBtn").click(function () {
+        modal.show();
+        widgetObj.open();
+    });
+    $("#tsModal .close").click(function () {
+        widgetObj.close();
+        modal.hide();
+    });
+
+    window.onclick = function (event) {
+        if (event.target == modal[0]) {
+            widgetObj.close();
+            modal.hide();
+        }
+    }
+})
diff --git a/oxAuth/Server/src/main/webapp/auth/thumbsignin/js/thumbsignin_widget.css b/oxAuth/Server/src/main/webapp/auth/thumbsignin/js/thumbsignin_widget.css
new file mode 100644
index 00000000..e1560d14
--- /dev/null
+++ b/oxAuth/Server/src/main/webapp/auth/thumbsignin/js/thumbsignin_widget.css
@@ -0,0 +1,410 @@
+.toggle_view_text,
+.open-app,
+.open-app a {
+    font-size: 12px;
+}
+
+a.toggle_view_link {
+    font-weight: 500;
+    font-family: Montserrat-Bold;
+    color: #19b2e6
+}
+
+.toggle_view_text {
+    color: #1a1a39
+}
+
+p.intro_msg {
+    margin-bottom: 0
+}
+
+.country-list {
+    z-index: 10001 !important;
+    max-width: 248px
+}
+
+.open-app {
+    width: 200px;
+    border-radius: 18px;
+    margin: auto;
+    color: #18182a;
+    background-color: #ffc23a;
+    box-shadow: 0 2px 4px 0 rgba(0, 0, 0, .11)
+}
+
+.open-app a {
+    line-height: 40px;
+    color: #18182a;
+    font-family: Montserrat-Medium;
+}
+
+#sms_result {
+    display: none;
+    color: #8b4513
+}
+
+.intl-tel-input {
+    border-left: 1px solid #ccc;
+    width: 100%
+}
+
+.db-b {
+    width: 190px;
+    margin: auto
+}
+
+/* .d-box .db-a {
+    float: left;
+    position: relative;
+    width: 50px
+}
+
+.db-a button,
+.db-a ul {
+    border: 1px solid #ccc
+}
+
+.db-a .d-arrow {
+    position: relative;
+    left: 4px
+}
+
+.db-a button {
+    display: inline-block;
+    background: #FFF;
+    width: 100%;
+    height: 36px
+}
+
+.db-a ul {
+    border-top: none;
+    position: absolute;
+    left: 0;
+    top: 36px;
+    right: 0;
+    background: #fff;
+    max-height: 250px;
+    overflow-y: auto;
+    width: 235px;
+    list-style: none;
+    padding: 0;
+    display: none
+} */
+
+.closeIcon,
+.logoIcon,
+.refreshImg {
+    background-repeat: no-repeat
+}
+/* 
+.db-a ul li {
+    padding: 7px;
+    border-bottom: 1px solid #f0f0f0
+}
+
+.db-a ul li img {
+    max-width: none
+}
+
+.db-a ul li span {
+    font-size: 14px;
+    position: relative;
+    color: #999;
+    font-weight: 400;
+    margin: 0 0 0 5px
+}
+
+.db-a ul li:hover {
+    background-color: #fafafa;
+    cursor: pointer
+} */
+
+.db-b input {
+    border: 1px solid #ccc;
+    height: 36px;
+    border-left: none;
+    max-width: 100%;
+    background-color: #fff;
+    width: auto !important
+}
+
+.ts_initiated {
+    opacity: 1;
+    position: absolute;
+    top: 105px;
+    width: 88%;
+    font-size: 15px;
+    font-weight: 700
+}
+
+.refreshTxt,
+.sucessMsg {
+    text-align: center;
+    color: #646464;
+    position: absolute;
+    top: 140px;
+    font-size: 11px;
+    width: 90%
+}
+
+.refreshTxt,
+.tsmodal {
+    width: 100%;
+    padding: 0
+}
+
+.sucessMsg {
+    top: 175px;
+    margin-left: 15px
+}
+
+.tsmodal {
+    position: fixed;
+    z-index: 1000;
+    padding-top: 100px;
+    left: 0;
+    top: 0;
+    height: 100%;
+    overflow: auto;
+    background-color: #000;
+    background-color: rgba(0, 0, 0, .4)
+}
+
+.item,
+.tsmodal-body,
+.tsmodal-content {
+    position: relative
+}
+
+.closeIcon,
+.overlay {
+    cursor: pointer;
+    position: absolute
+}
+
+.closeIcon {
+    height: 16px;
+    width: 16px;
+    right: -23px;
+    top: -15px;
+    background-image: url(https://thumbsignin.com/styles/img/del-white.png)
+}
+
+.tsmodal-content {
+    font-family: Montserrat;
+    background-color: #fefefe;
+    margin: auto;
+    text-align: center;
+    padding: 0;
+    width: 270px
+}
+
+.tsmodal-footer {
+    padding: 2px 16px 15px;
+    color: #4a4a4a
+}
+
+.tsmodal-footer p {
+    font-family: Montserrat-Bold;
+    font-size: 12px;
+    color: #1a1a39;
+    font-weight: 500;
+    margin: 5px auto
+}
+
+.tsmodal-footer span {
+    font-weight: 700;
+    color: #38adaa
+}
+
+.tsmodal-header {
+    padding: 2px 16px;
+    color: #fff;
+    background-image: linear-gradient(72deg, #48d2a0, #288bb3);
+    font-size: 18px;
+    text-transform: uppercase
+}
+
+.tsmodal-body {
+    padding: 2px 16px;
+    height: 180px
+}
+
+.overlay,
+.refreshImg {
+    height: 200px;
+    width: 100%
+}
+
+.overlay {
+    margin: 0 auto;
+    z-index: 1;
+    background-color: rgba(255, 255, 255, .9)
+}
+
+.refreshImg {
+    background-image: url(https://thumbsignin.com/styles/img/icons-8-refresh.png);
+    background-size: auto;
+    margin: auto;
+    background-position-x: 50%;
+    background-position-y: 51%
+}
+
+.logoIcon {
+    background-size: contain;
+    background-image: url(https://thumbsignin.com/styles/img/qr-code.png);
+    position: absolute;
+    width: 30px;
+    z-index: 0;
+    height: 30px;
+    top: 80px;
+    left: 46%
+}
+
+.intro-conatiner {
+    font-weight: 600;
+    margin-top: 20px;
+    z-index: 4;
+    font-family: Montserrat-Light;
+    font-size: 12px;
+    padding: 0;
+    color: #1a1a39
+}
+
+.qrcode img {
+    margin: 0 auto;
+    height: 200px
+}
+
+.open-app-icon {
+    width: 30px;
+    height: auto !important;
+    margin: 50px auto !important
+}
+
+.item h1 {
+    position: absolute;
+    width: 100%;
+    color: #434A54;
+    font-size: 15px
+}
+
+.circle_animation {
+    stroke-dasharray: 440;
+    stroke-dashoffset: 440;
+    transition: all 1s linear
+}
+
+p.icons {
+    margin: 0 auto
+}
+
+.circle-loader {
+    margin: 40px auto;
+    border: 2px solid rgba(0, 0, 0, .2);
+    border-left-color: #5cb85c;
+    animation-name: loader-spin;
+    animation-duration: 1s;
+    animation-iteration-count: infinite;
+    animation-timing-function: linear;
+    display: inline-block;
+}
+
+.circle-loader,
+.circle-loader:after {
+    border-radius: 50%;
+    width: 8em;
+    height: 8em
+}
+
+.load-complete {
+    -webkit-animation: none;
+    animation: none;
+    border-color: #5cb85c;
+    transition: border .5s ease-out
+}
+
+.checkmark {
+    display: none
+}
+
+.checkmark.draw:after {
+    animation-duration: .8s;
+    animation-timing-function: ease;
+    animation-name: checkmark;
+    transform: scaleX(-1) rotate(135deg)
+}
+
+.checkmark:after {
+    opacity: 1;
+    height: 4em;
+    width: 2em;
+    transform-origin: left top;
+    border-right: 2px solid #5cb85c;
+    border-top: 2px solid #5cb85c;
+    content: '';
+    left: 38%;
+    top: 48%;
+    position: absolute;
+}
+.hidden{
+    display: none;
+}
+.text-center{
+    text-align: center;
+}
+
+@media screen and (max-width:720px) {
+    .ts_initiated {
+        width: 95%
+    }
+    .checkmark:after {
+        left: 40%;
+        top: 50%;
+    }
+    .closeIcon {
+        right: 5px;
+        top: 16px
+    }
+    .tsmodal {
+        padding-top: 0
+    }
+    .tsmodal-content {
+        width: 100%;
+        height: 90%
+    }
+    .db-b img.d-arrow-b {
+        right: 70px
+    }
+    p.intro_msg {
+        padding: 0 10px
+    }
+}
+
+@keyframes loader-spin {
+    0% {
+        transform: rotate(0)
+    }
+    100% {
+        transform: rotate(360deg)
+    }
+}
+
+@keyframes checkmark {
+    0% {
+        height: 0;
+        width: 0;
+        opacity: 1
+    }
+    20% {
+        height: 0;
+        width: 2em;
+        opacity: 1
+    }
+    100%,
+    40% {
+        height: 4em;
+        width: 2em;
+        opacity: 1
+    }
+}
\ No newline at end of file
diff --git a/oxAuth/Server/src/main/webapp/auth/thumbsignin/tsLogin.xhtml b/oxAuth/Server/src/main/webapp/auth/thumbsignin/tsLogin.xhtml
new file mode 100644
index 00000000..01b1ff48
--- /dev/null
+++ b/oxAuth/Server/src/main/webapp/auth/thumbsignin/tsLogin.xhtml
@@ -0,0 +1,374 @@
+<!DOCTYPE composition PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN"
+        "http://www.w3.org/TR/xhtml1/DTD/xhtml1-transitional.dtd">
+<ui:composition xmlns="http://www.w3.org/1999/xhtml" xmlns:f="http://xmlns.jcp.org/jsf/core" xmlns:ui="http://xmlns.jcp.org/jsf/facelets" xmlns:h="http://xmlns.jcp.org/jsf/html" template="/WEB-INF/incl/layout/login-extended-template.xhtml" xmlns:a="http://xmlns.jcp.org/jsf/passthrough">
+
+	<ui:param name="showGlobalMessages" value="false"/>
+    <f:metadata>
+        <f:viewAction action="#{authenticator.prepareAuthenticationForStep}" if="#{sessionIdService.notSessionIdAuthenticated}" />
+
+        <f:viewParam name="login_hint" value="#{loginAction.loginHint}" />
+    </f:metadata>
+
+    <ui:define name="head">
+        <meta name="description" content="Gluu, Inc." />
+
+        <script src="./js/authenticate-bundle.js"></script>
+        <script src="./js/thumbsign_widget.js"></script>
+        
+        <script>
+            var ts_host = '${identity.getWorkingParameter('ts_host')}';
+            var ts_statusPath = '${identity.getWorkingParameter('ts_statusPath')}';
+            var ts_authenticate_Url = ts_host + "/ts/secure/authenticate";
+            var ts_status_Url = ts_host + ts_statusPath;
+            
+            var authenticateResponse = '${identity.getWorkingParameter('authenticateResponseJsonStr')}'
+            var authHeader = '${identity.getWorkingParameter('authorizationHeader')}'
+            var xTsDate = '${identity.getWorkingParameter('xTsDate')}'
+            
+            $(document).ready(function() {
+                
+                thumbSignIn.addConfig('LOGIN_CONFIG', {
+                    actionUrl: ts_authenticate_Url,
+                    statusUrl: ts_status_Url,
+                    actionResponse: authenticateResponse,
+                    authHeader: authHeader,
+                    xTsDate: xTsDate,
+                    DEEP_LINK: "Authenticate via ThumbSignin",
+                    loginFlow: "Authentication"
+                });
+                thumbSignIn.init({
+                    id: 'tsLogin',
+                    config: 'LOGIN_CONFIG',
+                    container: 'loginWidgetContainer'
+                }).then(function() {
+                    
+                    tsLogin.open()
+                    /*$('#close').click(function() {
+                        tsLogin.close()
+                    });*/
+                    
+                    // Post initialisation of the 'tsLogin' widget, u will be able to add event listeners
+                    tsLogin.registerEvent('SUCCESS', function(response) {
+                        //window.location.hash = '';
+                        //window.location.pathname = response.redirectUrl;
+
+                        //form submit
+                        console.log("SUCCESS response", response);
+
+                        document.getElementById("transactionId").value = response.transactionId;
+                        document.getElementById("authenticationForm").submit();
+
+                    });
+                })
+            });
+        </script>
+
+        <style>
+            body {
+                padding-right: 0px !important;
+                padding-left: 0px !important;
+            }
+            html,
+            body {
+                height: 100%;
+            }
+            .checkmark:after {
+                left: 25% !important;
+            }
+            .forgot_link {
+                margin-top: 10px;
+            }
+            .open-app{
+                margin-top: 40px !important;
+            }
+            .navbar {
+                background: #00A8E8;
+                box-shadow: 0 3px 6px rgba(0, 0, 0, 0.16), 0 3px 6px rgba(0, 0, 0, 0.23);
+                position: sticky !important;
+                top: 0;
+                z-index: 11;
+                left: 0;
+                right: 0;
+                padding-bottom: 10px;
+            }
+
+            .open-app {
+            	width: auto !important;
+            }
+            
+            .tsmodal-body {
+            	display: flex !important; 
+    			align-items: center !important;
+                justify-content: center !important;
+                height: auto !important;
+            }
+
+            .ui-widget-container .ui-content-left {
+    			min-height: auto !important;
+			}
+
+            .container {
+                height: calc(100% - 60px);
+                display: flex;
+                align-items: center;
+                justify-content: center;
+                margin: auto;
+            }
+            
+            .navbar a {
+                color: white;
+            }
+            
+            .ui-widget-container {
+                max-width: 650px;
+                border-radius: 10px;
+                padding: 20px;
+                box-shadow: 0 3px 6px rgba(0, 0, 0, 0.16), 0 3px 6px rgba(0, 0, 0, 0.23);
+                display: flex;
+                text-align: center;
+            }
+            
+            .ui-widget-container .ui-content-left {
+                min-height: 360px;
+            }
+            
+            .ui-widget-container .ui-child {
+                flex-grow: 1;
+                max-width: 50%;
+                width: 325px;
+            }
+            
+            .ui-widget-container .ui-separator {
+                width: 2px;
+                background-color: #d4d4d4;
+            }
+            
+            .ui-child .ui-content {
+                padding: 0 30px;
+            }
+            
+            .ui-child .ui-title {
+                font-size: 20px;
+                font-weight: 300;
+            }
+            
+            .ui-form {
+                margin-top: 30px;
+            }
+            
+            .ui-form button {
+                background-color: #00A8E8;
+                border: 0;
+                margin-top: 30px;
+            }
+            
+            .ui-form input {
+                border-color: #009dd9;
+                border-width: 0;
+                border-bottom: 1px solid #ccc;
+                height: 34px;
+                line-height: 20px;
+                font-weight: 400;
+                box-shadow: none !important;
+                border-radius: 0;
+                font-size: 14px;
+                padding-left: 0;
+            }
+            
+            .ui-form input:focus {
+                border-color: #009dd9;
+            }
+
+            .tsmodal-content {
+                height: initial !important;
+            }
+            
+            @media only screen and (max-width: 768px) {
+                .ui-widget-container {
+                    flex-direction: column;
+                    width: 320px;
+                    margin: auto;
+                }
+                .ui-separator {
+                    display: none;
+                }
+                .ui-widget-container .ui-content-left {
+                    margin-bottom: 26px;
+                }
+                .ui-widget-container .ui-child {
+                    flex-grow: 1;
+                    max-width: 100%;
+                    width: 325px;
+                }
+                .container {
+                    padding-bottom: 20px;
+                    height: auto;
+                }
+                .intro-conatiner {
+                	margin-top: 40% !important;
+                }
+                .overlay, .refreshImg {
+                	height: 200px !important;
+                }
+                .item {
+                	width: 100%;
+					height: 100px;                	
+                }
+                .qrcode img{
+					height: 200px !important;
+				}
+				.ui-widget-container .ui-content-left {
+    				min-height: 322px !important;
+				}
+				
+            }
+            
+         
+        </style>
+
+    </ui:define>
+
+    <ui:define name="pageTitle">
+        <h:outputText value="#{msgs['login.pageTitle']}" />
+    </ui:define>
+
+    <ui:define name="body">
+        <nav class="navbar navbar-light bg-light">
+            <a class="navbar-brand" href="#">
+                <img src="data:image/png;base64,iVBORw0KGgoAAAANSUhEUgAAALEAAAAlCAYAAAAN3giQAAALwklEQVR4nO2cC5RWVRXHZZSHPFIQSxMBAwUtIBDRBBV5RCoQIYaaGmBkCBlKikWCr1ytsMwHRauECrWoWBlqBGWjYWkvw1cEqaOYqZnPkkqg3f6tsy+z58y933fn+cHy7rX+a+aefV73nH332Y8zs8ceJUhEJik+pVik+IriW4rlii8rFio+qTi+VB8FFVQxUuHsptiq2KZ4UfEXxW8Vv1c8rnhJsV3xYKXnWlBBmaQCumeOOm1aYy4FFdQkQlC9sOrv7So5n4IKKkkqoD0U0xRfU/xUsUnxH8Ua4x+g+K/iX4rHFD9R3KQ4XfH2Ss+/oLcoqfDtpVis+LPUEsJ7lwnopxWDrW4bc/guNUFfo3jStXtEcWGl36mgtxip0HVS3GORh4+gbRvRR0/FdMUKxfUtMc+CCmoQ4dQpDlVMtFDaAsUXFFcr5irOVpzMB1DpuRZU0E5SgeyvuFixTvFvZyLsULyq2KJ4TvGm4823th0VMxQHtcC8qtDyzd1va5OZYucWEZ0WIHPkfm1CiRN3t+IzipMUh6QtupZ1MRNiT3seaIKPwK9VnNqA8dnc9lmbazb7tsa/4a5BdrqJ5AhdFtQA0gU9TELSolpxFhq1CX2RIJktISmCQO+Ts90RtrmdM/iFEDduvFGmnHC2T2yNMcvMZ7SEzO/clui8fUpZd8W1EqIPTyhelpC9Q1M/LyGScYfiCrObO0ft2zZg/EKIm3+szopXnNl3S0uPWWY+IxX/c/MZ2hKDtFV8WNHfnoeaoPIl/8C+IOzlixRXSgi9/cItFCnqVZgRiqoGjl0IcfOPRbx/hxOac1p6zDLz+aKbC8qwZ3N2jvASfXjaBpjdiD4OlxC9eMj6IMY8Pc9mSXAmx1u7I+05QUerU0eI9ff9FJMVcxQfULwjo28SM2XDhVqnn2Jv99zNL7L+fpTiY/ZOA1Pas4ZjFLPsI+6dMU49Iba1O1Mx096/2bKhNheEZ3Jz9dmEubCf1Yr7ed/m7ny8fbFo2yNT+AdLsK2mSrB3P2ECNELxzpT6lK+xzZqSY/w37csU+91jhNXZKcQSHM5/2oeCA7nF2i+iXtT3UsWynHMY4Z7n24IjzD+z8Yijb7CxfiR2aujPExU1ir9b3UetzhL/YVjdnULM2inulHDEbnJ9Y6pNKjPfrjZu6sebl2xvxyqGSyNDpbyjYojte6YJKWUUmkSntwRnH7lbaGt5WrmJdPWdKSZIuHZZI3Vph9S1a6CNihu8EFg/veKJlRg/lzmhuEzxgOKwiH+KCdHiqLwpQnyfBFOKd2vneGhtHCXS7ccoXpdgYvm7JQNNMJdF4yRC3EfCycf8ujk+ArHA5nN1xlzPsjHFftY7aSQkrG6RFKVkfITu/mgfCaFeoLhc8UPFyVEb3nu5Yqw9ExBYJuEDT4jwa/eoXSdbS3yqiRnzOVbxN8VKe+YKwxNSn0pHvLRCB8U8qU0hYw9/VYIG5ijA0asygeKYHmSLxYv9VbGx5AClx84jxHw8myUjeiIhFc7m7+PKmiLEjLeixHyJ6OAPXJlR5yirM8CVJUL8B8XHS8yHJBIKY3hUfqrUVSJo7/ZRnUGuzvqIx/hXSe3JV4rWu3Z8XJusfLXisxLuz6TRmGjM+Y63KuVdCa1uMf5TipUl5nRB1prREfbc4/ZydHJcZuXsPqrc79zDyB3SkXxCDJ1eph/e4d3uuSlCDPUo0eZu28i9S9T5nV94qRXiu3LM6TbFI1GZFwgEdWxKu++5Ossj3qKo/R8V35W6UYyEprp2c1z5q/Zzh61BddTucNcOxfi849UzL7XsvJSxn1FcIuHU8TQ6a7HmWgWOzgERr7eEI/x2e2G+lE02+e/YQH2iNtgy99gizSizV0mbvELcq0w/aAkvjE0R4mfKtOGUeqhMnVsVS9xzIsTjcsxplNXtFJWT7k+EDqXzOcdjv7Ybj599He9oqdXA//ACIcH081lYNHwb4+G0Pi11qSaRFf15nCt/MprruY73J4mSWbav/vIYtF7MvHVyAfEx1PF5fEfH2sKkZeUQ4NcU9yq+IcHTxUYklPYbqU1NPyjBM0+yd2wWTuDw+iOmziGPEG/P0c/N0eY0RYjvLdOGOyR3lKlzveJW95wI8f455rR/Vl0Jd1r8jcNFVn6dK1sZtXnU8UZHvH2l7jWDCY43IxIyBPwAx7/N8ea5cpTZY443LeU9zon65rpDh4y+L0lpT0Z5UFyIzYXjVC/qkEYSUs+Eh34sQfM+rDghT9uon2aJE2udb0rzCXF1mTYI8eoyddKEmLHyhB7xP7ZJRohQyw+S8GdjCRHj907WIFd3sCuv9+FJOFUSeiCaw2bHY7wejj9Uau1v/KKOjjfBtcPpjiNHhBNfc3XQ9vs5/jDXNzwfAuUDWWD8BUlhOwlaDCLs0yEakMs9CNp4w3sV+0Z13ifBYYFSPesskpYTYu47pzpnrk57W4zWEmLoiBzv0tfqdi1RZ5YTAu+srY3qeW16WcSbLHVpjJWTLFnmyuvZ4Pr8S8f3NjQmiI8uXBO1IzrykuNj+hwT1Vnv+JNcOaHJdVbOH2b0SzaRy+9oiNmuMh7pNAlmQxpR/9BoYL7cy42PADVriC1HP7EQE1O+r0ybITZ2awrxeTne5TQJKX7W5qSMOv0y9uZMVwcFtNbxpjse8eE3HK9a8TYJV269eQEticYe73hroz4fjtr2cXw09OsRPw6NjnO8O60MRTvPtUWAxycNSB/jZU90nUyR8KXw9f1cQjZppAQHoJdNlJeosvrwTnHt54hX9eU37F02sazMW2OF+IP20qW02bU2dmsK8Qvijs6UdmgybNgbJfx1OWv50ZR6oyWdhhn/eAkOlSeccm4mEhXYGvG+LnWjCQlhKsR3Y6odH9OA43+V1M8jQDh/nNQrUnjPSv2k0O2Of76E6w7PujKCDP18A+yao+13pP1Gq0hHdZIKJRb989YGLZx4tXjX/XO2r7IF/VAGv7FCzPtg0y2VdMeVOZKs4ThrTSFmjRGmtEQFJyOnWI2EREGyH9B6mxteP052WmgMIkTlj/OajHrQGyllCKKPA8+K5thZaqMgUBxh+FWJ8QjNveye56SswYsZbZkTF86yL5dJyNJhJlyUwuPuMDYQ9gja+wwxY12CoX2VDXRDqY0tMTaxZTQUdt4I67+38RolxFbGKYEDwR+9khDhCH6/hCgL4w2R1nXsIOKn2JuEukirjrN35g4L2UC8+oHWBtu0poRQQBvsXdKIuH8X21tPCCFZveeick5eNGviJKKF44QKd1fSNC4KAwcTU3RLCp9TYZTNF8Jh65CybhuidphV31YcUk4AEidhpivjyDnfTRwvlkjERqv7lOIMV/9iK5+aNkaZ8TlCL5Rgg7MAfM09jYemviZHH5hBfVPKe9mGbbbNY2MIGfY2Pink97j6bMTiuJ+oT/yF1Gydq8OaXuqeeQ+UQGKGcYUVjYzphkYkPbswRWgOlKCdvTdPfZQKCQFOHLJ8iSBvtX5Huj74gMgJcOSjMAZI+LATQjtOcfW5E47dmWWPr3Njce8GW3cvx0dZkEsg/8AHRBg3CcGS6cUPS72OKcHZZP9XmwxmmoO+ERdKUNU32zOa9Us2yUUZbQbbIJAPuGOGvFJ20AqR7OZ/GiQh/Z8aZ7Z9O1DyhfASBxzCxjw44vPBZV4KMj5hvl3nf5BIcNTa2e9k4jgufPAaW42LLXjLbV15Yg+fbc8dvQYoaNcjCUkCf9d4WKXn1KwkIQ6HPbTUlXFLyzsReLAzHB/t+0IutV9QRcm0p4/Rfr/Sc2p2khBO2xkCkpB6hgi/4HxwjzW5ZDLT6uD04Q0PruzsCypHEu5CJ4RDW8+H2O3JbJ3kwjf2F4b7dSn1uP1EOrGed1nQrkkSHElPN1V6Ti1OEsI7hFzSLqGQoMBD7VKJuRXUcJKQOEkIk7H433kF7T4kIWPm6YpKz6mgghpEUhvDh4gxdy/fqqCCdiGScAchoVx3WgoqaJciCalgLmZxLXO3TvjE9H+Mlcy+tx+UcQAAAABJRU5ErkJggg=="/>
+
+            </a>
+        </nav>
+        <div class="container">
+                <div class="ui-widget-container">
+                    <div class="ui-child ui-content-left">
+                        <div class="ui-title">Passwordless Login</div>
+                        <div style="display: none;">relyingPartyId:  #{identity.getWorkingParameter('relyingPartyId')}</div>
+					    <div style="display: none;">relyingPartyLoginUrl:  #{identity.getWorkingParameter('relyingPartyLoginUrl')}</div>
+
+                        <form id="authenticationForm" method="post" action="#{request.contextPath}/postlogin.htm">
+                            <input type="hidden" id="login_flow" name="login_flow" value="ThumbSignIn_Authentication" />
+                            <input type="hidden" id="transactionId" name="transactionId" />
+                            <div id="loginWidgetContainer"></div>
+                        </form>
+
+                        <h:form id="initForm" style="display: none;">
+                            <h:commandButton id="reinitializeCurrentStep" type="hidden" action="#{authenticator.prepareAuthenticationForStep}" />
+                        </h:form>
+
+                        <a id="expireLink" style="display: none;" href="#{request.contextPath}/auth/thumbsignin/expired.htm?rpId=#{identity.getWorkingParameter('relyingPartyLoginUrl')}" />
+                    </div>                            
+                    <div class="ui-separator"></div>
+                    <div class="ui-child ui-content-right">
+                        <div class="ui-content">
+                            <div class="ui-title">Register using your LDAP credentials.</div>
+                            <h:form id="loginForm" class="ui-form">
+                                <h:panelGroup rendered="#{sessionIdService.notSessionIdAuthenticated}">
+                                    <h:messages style="color:red;" />                                    
+                                    <div class="form-group">                 
+                                        
+                                            <h:inputText id="username" value="#{credentials.username}" styleClass="form-control" autocomplete="off" a:placeholder="#{msgs['login.username']}"/>
+                                        
+                                    </div>
+                                    <div class="form-group">
+                                        
+                                            <h:inputSecret id="password" value="#{credentials.password}" styleClass="form-control" autocomplete="off" a:placeholder="#{msgs['login.password']}" />
+                                        
+                                    </div>
+                                    <!-- <div class="form-group">
+                                        <h:outputLabel styleClass="col-sm-4 control-label" for="rememberme" value="#{msgs['login.rememberMe']}" />
+                                        <div class="col-sm-8">
+                                            <input type="checkbox" value="rememberme" id="rememberme" />
+                                        </div>
+                                    </div> -->
+                                    
+                                            <h:commandButton id="loginButton" styleClass="btn btn-block btn-primary"  value="#{msgs['login.login']}" onclick="checkRemembeMe()" action="#{authenticator.authenticate}" />       
+                                    
+                                    <div class="form-group">                
+                                            <div class="forgot_link">
+                                                <a href="/identity/person/passwordReminder.htm">
+                                                    <h:outputText value="Forgot your Password?" />
+                                                </a>
+                                            </div>                                        
+                                    </div>
+                                </h:panelGroup>
+                            </h:form>
+                        </div>
+                    </div>
+                </div>
+        </div>
+        <script type="text/javascript">
+
+            window.onload = function () {
+                var userNameField = document.getElementById("loginForm:username");
+                var passwordField = document.getElementById("loginForm:password");
+                var userName = '#{!empty loginAction.loginHint ? loginAction.loginHint : ""}';
+                if (userName) {
+                    userNameField.value = userName;
+                    passwordField.focus();
+                } else {
+                    userNameField.focus();
+                }
+
+                var displayRegister = #{display_register_action or identity.sessionId.sessionAttributes['display_register_action']};
+                if (displayRegister) {
+                    var registerButton = document.getElementById("loginForm:registerId");
+                    if (registerButton != null) {
+                        registerButton.style.display = 'inline';
+                    }
+                }
+            };
+
+            $(document).ready(function () {
+                $('.other').click(function(){
+                    $('#social_new').toggle();
+                });
+
+                // Remember me
+                if (localStorage.chkbx &amp;&amp; localStorage.chkbx != '') {
+                    $('#rememberme').attr('checked', 'checked')
+                    document.getElementById("loginForm:username").value = localStorage.usrname;
+                    //document.getElementById("loginForm:password").value = localStorage.password;
+
+                } else {
+                    $('#rememberme').removeAttr('checked');
+                    document.getElementById("loginForm:username").value = "";
+                    //document.getElementById("loginForm:password").value = "";
+                }
+
+                $('#rememberme').click(function() {
+                    checkRemembeMe();
+                });
+                fillPlatformField();
+            });
+
+            function checkRemembeMe() {
+                if ($('#rememberme').is(':checked')) {
+                    // save username
+                    localStorage.usrname = document.getElementById("loginForm:username").value;
+                    //localStorage.password = document.getElementById("loginForm:password").value;
+                    localStorage.chkbx = $('#rememberme').val();
+                } else {
+                    localStorage.usrname = '';
+                    //localStorage.password = '';
+                    localStorage.chkbx = '';
+                }
+            }
+
+            function fillPlatformField() {
+                //Fix browser version to contain major.minor portion only
+                try {
+                    re = /^([^\.]+\.[^\.]+)\..+/;
+                    //This will remember "33.0" in "33.0.1.2.3"
+                    result = re.exec(platform.version);
+                    if (result != null) {
+                        //There was a match against the regexp
+                        platform.version=result[1];
+                    }
+                } catch (e) {
+                }
+                document.getElementById("loginForm:platform").value = JSON.stringify(platform);
+            }
+        </script>
+    </ui:define>
+</ui:composition>
diff --git a/oxAuth/Server/src/main/webapp/auth/thumbsignin/tsRegister.xhtml b/oxAuth/Server/src/main/webapp/auth/thumbsignin/tsRegister.xhtml
new file mode 100644
index 00000000..3fd36585
--- /dev/null
+++ b/oxAuth/Server/src/main/webapp/auth/thumbsignin/tsRegister.xhtml
@@ -0,0 +1,241 @@
+<!DOCTYPE composition PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN"
+        "http://www.w3.org/TR/xhtml1/DTD/xhtml1-transitional.dtd">
+<ui:composition xmlns="http://www.w3.org/1999/xhtml"
+                xmlns:f="http://xmlns.jcp.org/jsf/core"
+                xmlns:ui="http://xmlns.jcp.org/jsf/facelets"
+                xmlns:h="http://xmlns.jcp.org/jsf/html"
+                template="/WEB-INF/incl/layout/template.xhtml">
+    <f:metadata>
+        <f:viewAction action="#{authenticator.prepareAuthenticationForStep}" if="#{not identity.loggedIn}"/>
+    </f:metadata>
+    
+    <ui:define name="head">
+        <meta name="viewport" content="width=device-width, initial-scale=1"/>
+		<script src="./js/authenticate-bundle.js"></script>
+		<script src="./js/thumbsign_widget.js"></script>
+
+
+		<style>
+            body {
+                padding-right: 0px !important;
+                padding-left: 0px !important;
+            }
+            .body {
+                width: 100%;
+                margin: 0;
+                padding: 0;
+            }
+            .checkmark:after {
+            	left: 25% !important;
+            }
+            .footer {
+                display: none;
+            }
+            html,
+            body {
+                height: 100%;
+            }
+            .forgot_link {
+                margin-top: 10px;
+            }
+            .navbar {
+                background: #00A8E8;
+                box-shadow: 0 3px 6px rgba(0, 0, 0, 0.16), 0 3px 6px rgba(0, 0, 0, 0.23);
+                position: sticky !important;
+                top: 0;
+                z-index: 11;
+                left: 0;
+                right: 0;                
+            }
+            
+            .container {
+                height: calc(100% - 60px);
+                display: flex;
+                align-items: center;
+                justify-content: center;
+                margin: auto;
+            }
+            
+            .navbar a {
+                color: white;
+            }
+            
+            .ui-widget-container {
+                max-width: 650px;
+                border-radius: 10px;
+                padding: 20px;
+                box-shadow: 0 3px 6px rgba(0, 0, 0, 0.16), 0 3px 6px rgba(0, 0, 0, 0.23);
+                display: flex;
+                text-align: center;
+            }
+            
+            .ui-widget-container .ui-content-left {
+                min-height: 360px;
+            }
+            
+            .ui-widget-container .ui-child {
+                flex-grow: 1;
+                max-width: 50%;
+                width: 325px;
+            }
+            
+            .ui-widget-container .ui-separator {
+                width: 2px;
+                background-color: #d4d4d4;
+            }
+            
+            .ui-child .ui-content {
+                padding: 0 30px;
+            }
+            
+            .ui-title {
+                font-size: 20px;
+                font-weight: 300;
+            }
+            
+            .ui-form {
+                margin-top: 30px;
+            }
+            
+            .ui-form button {
+                background-color: #00A8E8;
+                border: 0;
+                margin-top: 30px;
+            }
+            
+            .ui-form input {
+                border-color: #009dd9;
+                border-width: 0;
+                border-bottom: 1px solid #ccc;
+                height: 34px;
+                line-height: 20px;
+                font-weight: 400;
+                box-shadow: none !important;
+                border-radius: 0;
+                font-size: 14px;
+                padding-left: 0;
+            }
+            
+            .ui-form input:focus {
+                border-color: #009dd9;
+            }
+
+            .tsmodal-content {
+                height: initial !important;
+            }
+
+            .tsmodal-body {
+                display: flex !important;
+                align-items: center !important;
+                justify-content: center !important;                
+                height: auto !important;
+            }
+            
+            @media only screen and (max-width: 768px) {
+                .ui-widget-container {
+                    flex-direction: column;
+                    width: 320px;
+                    margin: auto;
+                }
+                .ui-separator {
+                    display: none;
+                }
+                .ui-widget-container .ui-content-left {
+                    margin-bottom: 26px;
+                }
+                .ui-widget-container .ui-child {
+                    flex-grow: 1;
+                    max-width: 100%;
+                    width: 325px;
+                }
+                .container {
+                    margin-bottom: 50px;
+                    height: 100%;
+                }
+            }
+        </style>
+		
+        <script>
+            var ts_host = '${identity.getWorkingParameter('ts_host')}';
+            var ts_statusPath = '${identity.getWorkingParameter('ts_statusPath')}';
+            var userId = '${identity.getWorkingParameter('userId')}';
+            var ts_register_Url = ts_host + "/ts/secure/register?userId=" + userId;
+            var ts_status_Url = ts_host + ts_statusPath;
+            
+            var registerResponse = '${identity.getWorkingParameter('registerResponseJsonStr')}'
+            var authHeader = '${identity.getWorkingParameter('authorizationHeader')}'
+            var xTsDate = '${identity.getWorkingParameter('xTsDate')}'
+            
+            $(document).ready(function() {
+            	
+                thumbSignIn.addConfig('REGISTER_CONFIG', {
+                    actionUrl: ts_register_Url,
+                    statusUrl: ts_status_Url,
+                    actionResponse: registerResponse,
+                    authHeader: authHeader,
+                    xTsDate: xTsDate,
+                    DEEP_LINK: "Register via ThumbSignin",
+                    loginFlow: "Registration"
+                });
+                thumbSignIn.init({
+                    id: 'tsRegister',
+                    config: 'REGISTER_CONFIG',
+                    container: 'registerWidgetContainer'
+                }).then(function() {
+                	
+                    tsRegister.open()
+                    /*$('#close').click(function() {
+                    	tsLogin.close()
+                    });*/
+                    
+                    // Post initialisation of the 'tsLogin' widget, u will be able to add event listeners
+                    tsRegister.registerEvent('SUCCESS', function(response) {
+                        //window.location.hash = '';
+                        //window.location.pathname = response.redirectUrl;
+
+                        //form submit
+                        console.log("SUCCESS response", response);
+
+                        document.getElementById("transactionId").value = response.transactionId;
+                        document.getElementById("registrationForm").submit();
+
+                    });
+                })
+            });
+        </script>
+
+        
+    </ui:define>
+
+    <ui:define name="pageTitle">ThumbSignIn Registration</ui:define>
+
+    <ui:define name="body">
+
+        <nav class="navbar navbar-light bg-light">
+            <a class="navbar-brand" href="#">
+                <img src="data:image/png;base64,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"/>
+
+            </a>
+        </nav>
+    
+        <div class="container">
+            <div class="ui-widget-container">
+                
+                <form id="registrationForm" method="post" action="#{request.contextPath}/postlogin.htm">          
+                    <div class="ui-title">Register Passwordless Login</div>
+                    <div style="display: none;">relyingPartyId:  #{identity.getWorkingParameter('relyingPartyId')}</div>
+					<div style="display: none;">relyingPartyLoginUrl:  #{identity.getWorkingParameter('relyingPartyLoginUrl')}</div>
+                    <input type="hidden" id="transactionId" name="transactionId" />       
+                    <div id="registerWidgetContainer"></div>
+                </form>
+                
+                <h:form id="initForm" style="display: none;">
+                    <h:commandButton id="reinitializeCurrentStep" type="hidden" action="#{authenticator.prepareAuthenticationForStep}" />
+                </h:form>
+                
+                <a id="expireLink" style="display: none;" href="#{request.contextPath}/auth/thumbsignin/expired.htm?rpId=#{identity.getWorkingParameter('relyingPartyLoginUrl')}" />
+            </div>
+        </div>
+    </ui:define>
+
+</ui:composition>
diff --git a/oxAuth/Server/src/main/webapp/auth/thumbsignin/tsRegistrationSuccess.xhtml b/oxAuth/Server/src/main/webapp/auth/thumbsignin/tsRegistrationSuccess.xhtml
new file mode 100644
index 00000000..7ba86331
--- /dev/null
+++ b/oxAuth/Server/src/main/webapp/auth/thumbsignin/tsRegistrationSuccess.xhtml
@@ -0,0 +1,332 @@
+<!DOCTYPE composition PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN"
+        "http://www.w3.org/TR/xhtml1/DTD/xhtml1-transitional.dtd">
+<ui:composition xmlns="http://www.w3.org/1999/xhtml" xmlns:f="http://xmlns.jcp.org/jsf/core" xmlns:ui="http://xmlns.jcp.org/jsf/facelets" xmlns:h="http://xmlns.jcp.org/jsf/html" template="/WEB-INF/incl/layout/login-extended-template.xhtml" xmlns:a="http://xmlns.jcp.org/jsf/passthrough">
+
+    <f:metadata>
+        <f:viewAction action="#{authenticator.prepareAuthenticationForStep}" if="#{sessionIdService.notSessionIdAuthenticated}" />
+
+        <f:viewParam name="login_hint" value="#{loginAction.loginHint}" />
+    </f:metadata>
+
+    <ui:define name="head">
+        <meta name="description" content="Gluu, Inc." />
+
+        <script src="./js/authenticate-bundle.js"></script>
+        <script src="./js/thumbsign_widget.js"></script>
+        
+        <script>
+            var ts_host = '${identity.getWorkingParameter('ts_host')}';
+            var ts_statusPath = '${identity.getWorkingParameter('ts_statusPath')}';
+            var ts_authenticate_Url = ts_host + "/ts/secure/authenticate";
+            var ts_status_Url = ts_host + ts_statusPath;
+            
+            var authenticateResponse = '${identity.getWorkingParameter('authenticateResponseJsonStr')}'
+            var authHeader = '${identity.getWorkingParameter('authorizationHeader')}'
+            var xTsDate = '${identity.getWorkingParameter('xTsDate')}'
+            
+            $(document).ready(function() {
+                
+                thumbSignIn.addConfig('LOGIN_CONFIG', {
+                    actionUrl: ts_authenticate_Url,
+                    statusUrl: ts_status_Url,
+                    actionResponse: authenticateResponse,
+                    authHeader: authHeader,
+                    xTsDate: xTsDate,
+                    DEEP_LINK: "Authenticate via ThumbSignin",
+                    loginFlow: "Authentication"
+                });
+                thumbSignIn.init({
+                    id: 'tsLogin',
+                    config: 'LOGIN_CONFIG',
+                    container: 'loginWidgetContainer'
+                }).then(function() {
+                    
+                    tsLogin.open()
+                    /*$('#close').click(function() {
+                        tsLogin.close()
+                    });*/
+                    
+                    // Post initialisation of the 'tsLogin' widget, u will be able to add event listeners
+                    tsLogin.registerEvent('SUCCESS', function(response) {
+                        //window.location.hash = '';
+                        //window.location.pathname = response.redirectUrl;
+
+                        //form submit
+                        console.log("SUCCESS response", response);
+
+                        document.getElementById("transactionId").value = response.transactionId;
+                        document.getElementById("authenticationForm").submit();
+
+                    });
+                })
+            });
+        </script>
+
+        <style>
+            body {
+                padding-right: 0px !important;
+                padding-left: 0px !important;
+            }
+            html,
+            body {
+                height: 100%;
+            }
+            .checkmark:after {
+                left: 25% !important;
+            }
+            .forgot_link {
+                margin-top: 10px;
+            }
+            .open-app{
+                margin-top: 40px !important;
+            }
+            .navbar {
+                background: #00A8E8;
+                box-shadow: 0 3px 6px rgba(0, 0, 0, 0.16), 0 3px 6px rgba(0, 0, 0, 0.23);
+                position: sticky !important;
+                top: 0;
+                z-index: 11;
+                left: 0;
+                right: 0;
+                padding-bottom: 10px;
+            }
+
+            .open-app {
+            	width: auto !important;
+            }
+            
+            .tsmodal-body {
+            	display: flex !important; 
+    			align-items: center !important;
+                justify-content: center !important;
+                height: auto !important;
+            }
+
+            .ui-widget-container .ui-content-left {
+    			min-height: auto !important;
+			}
+
+            .container {
+                height: calc(100% - 60px);
+                display: flex;
+                align-items: center;
+                justify-content: center;
+                margin: auto;
+            }
+            
+            .navbar a {
+                color: white;
+            }
+            
+            .ui-widget-container {
+                max-width: 650px;
+                border-radius: 10px;
+                padding: 20px;
+                box-shadow: 0 3px 6px rgba(0, 0, 0, 0.16), 0 3px 6px rgba(0, 0, 0, 0.23);
+                display: flex;
+                text-align: center;
+            }
+            
+            .ui-widget-container .ui-content-left {
+                min-height: 360px;
+            }
+            
+            .ui-widget-container .ui-child {
+                flex-grow: 1;
+            }
+            
+            .ui-widget-container .ui-separator {
+                width: 2px;
+                background-color: #d4d4d4;
+            }
+            
+            .ui-child .ui-content {
+                padding: 0 30px;
+            }
+            
+            .ui-child .ui-title {
+                font-size: 20px;
+                font-weight: 300;
+            }
+            
+            .ui-form {
+                margin-top: 30px;
+            }
+            
+            .ui-form button {
+                background-color: #00A8E8;
+                border: 0;
+                margin-top: 30px;
+            }
+            
+            .ui-form input {
+                border-color: #009dd9;
+                border-width: 0;
+                border-bottom: 1px solid #ccc;
+                height: 34px;
+                line-height: 20px;
+                font-weight: 400;
+                box-shadow: none !important;
+                border-radius: 0;
+                font-size: 14px;
+                padding-left: 0;
+            }
+            
+            .ui-form input:focus {
+                border-color: #009dd9;
+            }
+
+            .tsmodal-content {
+                height: initial !important;
+            }
+            
+            .success-msg{
+            	text-align: center;
+            	width: 45%; 
+            	margin-left: 29%; 
+            	margin-bottom: 0px;
+            }
+            @media only screen and (max-width: 768px) {
+                .ui-widget-container {
+                    flex-direction: column;
+                    width: 320px;
+                    margin: auto;
+                }
+                .ui-separator {
+                    display: none;
+                }
+                .ui-widget-container .ui-content-left {
+                    margin-bottom: 26px;
+                }
+                .ui-widget-container .ui-child {
+                    flex-grow: 1;
+                    max-width: 100%;
+                    width: 325px;
+                }
+                .container {
+                    padding-bottom: 20px;
+                    height: auto;
+                }
+                .intro-conatiner {
+                	margin-top: 40% !important;
+                }
+                .overlay, .refreshImg {
+                	height: 200px !important;
+                }
+                .item {
+                	width: 100%;
+					height: 100px;                	
+                }
+                .qrcode img{
+					height: 200px !important;
+				}
+				.ui-widget-container .ui-content-left {
+    				min-height: 322px !important;
+				}
+				.success-msg
+				{
+				    width: 100%;
+				    margin-left: 0;
+				    margin-bottom: 15px;
+				}
+		
+            }
+            
+         
+        </style>
+
+    </ui:define>
+
+    <ui:define name="pageTitle">
+        <h:outputText value="#{msgs['login.pageTitle']}" />
+    </ui:define>
+
+    <ui:define name="body">
+        <nav class="navbar navbar-light bg-light">
+            <a class="navbar-brand" href="#">
+                <img src="data:image/png;base64,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"/>
+
+            </a>
+        </nav>
+		<div class="alert alert-success success-msg">
+			You have Registered Successfully! Please login using Thumbsignin.
+		</div>
+		<div class="container">
+                <div class="ui-widget-container">
+                    <div class="ui-child ui-content-left">
+                        <div class="ui-title">Passwordless Login</div>
+                        <div style="display: none;">relyingPartyId:  #{identity.getWorkingParameter('relyingPartyId')}</div>
+					    <div style="display: none;">relyingPartyLoginUrl:  #{identity.getWorkingParameter('relyingPartyLoginUrl')}</div>
+
+                        <form id="authenticationForm" method="post" action="#{request.contextPath}/postlogin.htm">
+                            <input type="hidden" id="login_flow" name="login_flow" value="ThumbSignIn_RegistrationSucess" />
+                            <input type="hidden" id="transactionId" name="transactionId" />
+                            <div id="loginWidgetContainer"></div>
+                        </form>
+
+                        <h:form id="initForm" style="display: none;">
+                            <h:commandButton id="reinitializeCurrentStep" type="hidden" action="#{authenticator.prepareAuthenticationForStep}" />
+                        </h:form>
+
+                        <a id="expireLink" style="display: none;" href="#{request.contextPath}/auth/thumbsignin/expired.htm?rpId=#{identity.getWorkingParameter('relyingPartyLoginUrl')}" />
+                    </div>                            
+                   
+                    
+                </div>
+        </div>
+        <script type="text/javascript">
+
+           
+            $(document).ready(function () {
+                $('.other').click(function(){
+                    $('#social_new').toggle();
+                });
+
+                // Remember me
+                if (localStorage.chkbx &amp;&amp; localStorage.chkbx != '') {
+                    $('#rememberme').attr('checked', 'checked')
+                    document.getElementById("loginForm:username").value = localStorage.usrname;
+                    //document.getElementById("loginForm:password").value = localStorage.password;
+
+                } else {
+                    $('#rememberme').removeAttr('checked');
+                    document.getElementById("loginForm:username").value = "";
+                    //document.getElementById("loginForm:password").value = "";
+                }
+
+                $('#rememberme').click(function() {
+                    checkRemembeMe();
+                });
+                fillPlatformField();
+            });
+
+            function checkRemembeMe() {
+                if ($('#rememberme').is(':checked')) {
+                    // save username
+                    localStorage.usrname = document.getElementById("loginForm:username").value;
+                    //localStorage.password = document.getElementById("loginForm:password").value;
+                    localStorage.chkbx = $('#rememberme').val();
+                } else {
+                    localStorage.usrname = '';
+                    //localStorage.password = '';
+                    localStorage.chkbx = '';
+                }
+            }
+
+            function fillPlatformField() {
+                //Fix browser version to contain major.minor portion only
+                try {
+                    re = /^([^\.]+\.[^\.]+)\..+/;
+                    //This will remember "33.0" in "33.0.1.2.3"
+                    result = re.exec(platform.version);
+                    if (result != null) {
+                        //There was a match against the regexp
+                        platform.version=result[1];
+                    }
+                } catch (e) {
+                }
+                document.getElementById("loginForm:platform").value = JSON.stringify(platform);
+            }
+        </script>
+    </ui:define>
+</ui:composition>
diff --git a/oxAuth/Server/src/main/webapp/auth/toopher/tpauthenticate.xhtml b/oxAuth/Server/src/main/webapp/auth/toopher/tpauthenticate.xhtml
new file mode 100644
index 00000000..04c23041
--- /dev/null
+++ b/oxAuth/Server/src/main/webapp/auth/toopher/tpauthenticate.xhtml
@@ -0,0 +1,83 @@
+<!DOCTYPE composition PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN"
+        "http://www.w3.org/TR/xhtml1/DTD/xhtml1-transitional.dtd">
+<ui:composition xmlns="http://www.w3.org/1999/xhtml"
+		xmlns:f="http://xmlns.jcp.org/jsf/core"
+                xmlns:ui="http://xmlns.jcp.org/jsf/facelets"
+                xmlns:h="http://xmlns.jcp.org/jsf/html"
+                template="/WEB-INF/incl/layout/template.xhtml">
+    <f:metadata>
+        <f:viewAction action="#{authenticator.prepareAuthenticationForStep}" if="#{not identity.loggedIn}"/>
+    </f:metadata>
+
+    <ui:define name="head">
+        <h:panelGroup rendered="#{param.toopher_user_uid != null}">
+            <script type="text/javascript">
+                //<![CDATA[
+                jQuery(document).ready(function() {
+                    $("#loginForm").submit();
+                });
+                //]]>
+            </script>
+        </h:panelGroup>
+
+        <style type="text/css">
+            .login-panel {
+                border-style: solid;
+                border-width: 1px;
+                padding: 1px;
+                background-color: #FFFFFF;
+                border-color: #C4C0B9;
+            }
+
+            .login-panel-header {
+                background-color: #D4CFC7;
+                background-image: url("#{oxAuthConfigurationService.getImgLocation()}/panel_header_bg.png");
+                background-position: left top;
+                background-repeat: repeat-x;
+                border-style: solid;
+                border-width: 1px;
+                padding: 2px;
+                border-color: #D4CFC7;
+                color: #000000;
+                font-family: Arial, Verdana, sans-serif;
+                font-size: 11px;
+                font-weight: bold;
+            }
+
+            .login-panel-body {
+                padding: 10px;
+                color: #000000;
+                font-family: Arial, Verdana, sans-serif;
+                font-size: 11px;
+            }
+        </style>
+    </ui:define>
+
+    <ui:define name="pageTitle">#{msgs['toopher.pageTitle']}</ui:define>
+
+    <ui:define name="body">
+        <form id="loginForm" method="post" action="#{request.contextPath}/postlogin.htm">
+            <h:panelGroup id="loginGroup" rendered="#{not identity.loggedIn}">
+                <div class="login-panel">
+                    <div class="login-panel-header">#{msgs['toopher.login']}</div>
+                    <div class="login-panel-body">
+                        <ui:param name="client" value="#{clientService.getClient(redirect.parameters['client_id'])}" />
+                        <h:panelGroup rendered='#{!empty client.getLogoUri()}'>
+                            <h:graphicImage url='#{client.getLogoUri()}'/>
+                        </h:panelGroup>
+
+                        <h:panelGroup styleClass="dialog" rendered="#{param.toopher_user_uid != null}">
+                            <p class="info">#{msgs['toopher.sendingAuthentication']}</p>
+                        </h:panelGroup>
+
+                        <h:panelGroup rendered='#{!empty client.getPolicyUri()}'>
+                            <p>
+                                <a target="_blank" href='#{client.getPolicyUri()}'>#{msgs['toopher.termsPrivacy']}</a>
+                            </p>
+                        </h:panelGroup>
+                    </div>
+                </div>
+            </h:panelGroup>
+        </form>
+    </ui:define>
+</ui:composition>
\ No newline at end of file
diff --git a/oxAuth/Server/src/main/webapp/auth/toopher/tppair.xhtml b/oxAuth/Server/src/main/webapp/auth/toopher/tppair.xhtml
new file mode 100644
index 00000000..6429b044
--- /dev/null
+++ b/oxAuth/Server/src/main/webapp/auth/toopher/tppair.xhtml
@@ -0,0 +1,98 @@
+<!DOCTYPE composition PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN"
+        "http://www.w3.org/TR/xhtml1/DTD/xhtml1-transitional.dtd">
+<ui:composition xmlns="http://www.w3.org/1999/xhtml"
+		xmlns:f="http://xmlns.jcp.org/jsf/core"
+                xmlns:ui="http://xmlns.jcp.org/jsf/facelets"
+                xmlns:h="http://xmlns.jcp.org/jsf/html"
+                template="/WEB-INF/incl/layout/template.xhtml">
+    <f:metadata>
+        <f:viewAction action="#{authenticator.prepareAuthenticationForStep}" if="#{not identity.loggedIn}"/>
+    </f:metadata>
+
+    <ui:define name="head">
+        <h:panelGroup rendered="#{param.toopher_user_uid != null}">
+            <script type="text/javascript">
+                //<![CDATA[
+                jQuery(document).ready(function() {
+                    $("#loginForm").submit();
+                });
+                //]]>
+            </script>
+        </h:panelGroup>
+
+        <style type="text/css">
+            .login-panel {
+                border-style: solid;
+                border-width: 1px;
+                padding: 1px;
+                background-color: #FFFFFF;
+                border-color: #C4C0B9;
+            }
+
+            .login-panel-header {
+                background-color: #D4CFC7;
+                background-image: url("#{oxAuthConfigurationService.getImgLocation()}/panel_header_bg.png");
+                background-position: left top;
+                background-repeat: repeat-x;
+                border-style: solid;
+                border-width: 1px;
+                padding: 2px;
+                border-color: #D4CFC7;
+                color: #000000;
+                font-family: Arial, Verdana, sans-serif;
+                font-size: 11px;
+                font-weight: bold;
+            }
+
+            .login-panel-body {
+                padding: 10px;
+                color: #000000;
+                font-family: Arial, Verdana, sans-serif;
+                font-size: 11px;
+            }
+        </style>
+    </ui:define>
+
+    <ui:define name="pageTitle">oxAuth Toopher - Login</ui:define>
+
+    <ui:define name="body">
+        <form id="loginForm" method="post" action="#{request.contextPath}/postlogin.htm">
+            <h:panelGroup id="loginGroup" rendered="#{not identity.loggedIn}">
+                <div class="login-panel">
+                    <div class="login-panel-header">#{msgs['toopher.loginPairWithPhone']}</div>
+                    <div class="login-panel-body">
+                        <ui:param name="client" value="#{clientService.getClient(redirect.parameters['client_id'])}" />
+                        <h:panelGroup rendered='#{!empty client.getLogoUri()}'>
+                            <h:graphicImage url='#{client.getLogoUri()}'/>
+                        </h:panelGroup>
+
+                        <h:panelGroup styleClass="dialog" rendered="#{param.toopher_user_uid == null}">
+                            <p class="info">#{msgs['toopher.pleaseLoginHere']}</p>
+                        </h:panelGroup>
+
+                        <h:panelGroup styleClass="dialog" rendered="#{param.toopher_user_uid == null}">
+                            <h:panelGrid columns="2" rowClasses="prop" columnClasses="name,value" width="500">
+                                <h:outputLabel for="pairing_phrase">#{msgs['toopher.pairingPhrases']}</h:outputLabel>
+                                <input name="pairing_phrase" type="text" autocomplete="off" />
+                            </h:panelGrid>
+                        </h:panelGroup>
+
+                        <h:panelGroup styleClass="dialog" rendered="#{param.toopher_user_uid != null}">
+                            <p class="info">#{msgs['toopher.checkingPairing']}</p>
+                        </h:panelGroup>
+
+                        <h:panelGroup rendered='#{!empty client.getPolicyUri()}'>
+                            <p>
+                                <a target="_blank" href='#{client.getPolicyUri()}'>#{msgs['toopher.termsPrivacy']}</a>
+                            </p>
+                        </h:panelGroup>
+
+                        <h:panelGroup styleClass="actionButtons" rendered="#{param.toopher_user_uid == null}">
+                            <h:commandButton value="Pair" action="#{authenticator.authenticate}" />
+                        </h:panelGroup>
+                    </div>
+                </div>
+            </h:panelGroup>
+        </form>
+    </ui:define>
+</ui:composition>
\ No newline at end of file
diff --git a/oxAuth/Server/src/main/webapp/auth/u2f/login.xhtml b/oxAuth/Server/src/main/webapp/auth/u2f/login.xhtml
new file mode 100644
index 00000000..cf2377e6
--- /dev/null
+++ b/oxAuth/Server/src/main/webapp/auth/u2f/login.xhtml
@@ -0,0 +1,168 @@
+<!DOCTYPE composition PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN"
+        "http://www.w3.org/TR/xhtml1/DTD/xhtml1-transitional.dtd">
+<ui:composition xmlns="http://www.w3.org/1999/xhtml"
+	xmlns:f="http://xmlns.jcp.org/jsf/core"
+	xmlns:ui="http://xmlns.jcp.org/jsf/facelets"
+	xmlns:h="http://xmlns.jcp.org/jsf/html"
+	template="/WEB-INF/incl/layout/login-extended-template.xhtml">
+	<f:metadata>
+		<f:viewAction action="#{authenticator.prepareAuthenticationForStep}"
+			if="#{not identity.loggedIn}" />
+	</f:metadata>
+	<ui:define name="head">
+		<script src="./scripts/u2f-api.js" />
+
+		<script>
+			var auth_request = ${identity.getWorkingParameter('fido_u2f_authentication_request')};
+			var register_request = ${identity.getWorkingParameter('fido_u2f_registration_request')};
+
+			function startRegistration() {
+				u2fApi.register(register_request.registerRequests)
+					.then( function(data) {
+						document.getElementById('tokenResponse').value = JSON.stringify(data);
+						document.getElementById('authMethod').value = 'enroll';
+
+						document.getElementById('u2f_form').submit();
+					})
+					.catch( function(msg) {
+						alert("U2F failed. " + msg);
+						return;
+					});
+			}
+
+			function startAuthentication() {
+				u2fApi.sign(auth_request.authenticateRequests)
+					.then( function( data ) {
+						document.getElementById('tokenResponse').value = JSON.stringify(data);
+						document.getElementById('authMethod').value = 'authenticate';
+
+						document.getElementById('u2f_form').submit();
+					})
+					.catch( function(msg) {
+						alert("U2F failed. " + msg);
+						return;
+					});
+			}
+
+			if (auth_request != null) {
+				setTimeout(startAuthentication(), 1000);
+			} else {
+				setTimeout(startRegistration(), 1000);
+			}
+		</script>
+
+		<style type="text/css">
+.h4, .h5, .h6, h4, h5, h6 {
+	margin-top: 10px;
+	margin-bottom: 10px;
+	color: black;
+}
+
+p {
+	margin: 0 0 15px !important;
+	margin: 0 !important;
+	padding: 10, 10 !important;
+}
+
+p {
+	display: block;
+	-webkit-margin-before: 1em !important;
+	-webkit-margin-after: 1em !important;
+	-webkit-margin-start: 0px !important;
+	-webkit-margin-end: 0px !important;
+}
+
+body {
+	font-family: "Helvetica Neue", Helvetica, Arial, sans-serif;
+	line-height: 1.42857143;
+}
+
+.step_bx {
+	margin: 0 30% auto;
+	border-radius: 5px !important;
+	max-height: 80%;
+	margin-bottom: 100px;
+}
+</style>
+	</ui:define>
+
+	<ui:define name="pageTitle">oxAuth - U2F Login</ui:define>
+	<ui:define name="body">
+		<form method="post" action="#{request.contextPath}/postlogin.htm"
+			id="u2f_form" onsubmit="return false;">
+			<input type="hidden" name="username" value="${credentials.username}" />
+			<input type="hidden" name="authMethod" id="authMethod" /> <input
+				type="hidden" name="tokenResponse" id="tokenResponse" />
+		</form>
+		<h:form id="loginForm">
+			<h:panelGroup rendered="#{not identity.loggedIn}">
+				<ui:param name="client"
+					value="#{clientService.getClient(identity.sessionId.sessionAttributes['client_id'])}" />
+
+				<h:panelGroup rendered='#{!empty client.getLogoUri()}'>
+					<h:graphicImage url='#{client.getLogoUri()}' />
+				</h:panelGroup>
+				<div class="container">
+					<div class="step_bx">
+						<h2>#{msgs['u2f.verification.stepverification']}</h2>
+						<p>#{msgs['u2f.verification.usedevice']}</p>
+						<img
+							src="#{oxAuthConfigurationService.getImgLocation()}/step_ver.png"
+							alt="step_ver" />
+						<h4>#{msgs['u2f.verification.insertkey']}</h4>
+						<p>#{msgs['u2f.verification.useit']}</p>
+					</div>
+				</div>
+				<h:panelGroup rendered='#{!empty client.getPolicyUri()}'>
+					<p>
+						<h:outputText value="#{msgs['common.agreePolicy']}" />
+						<a target="_blank" href='#{client.getPolicyUri()}'> <h:outputText
+								value="#{msgs['common.privacyPolicy']}" />
+						</a>
+					</p>
+				</h:panelGroup>
+
+				<h:panelGroup rendered='#{!empty client.getTosUri()}'>
+					<p>
+						<h:outputText value="#{msgs['common.pleaseReadTheTos']}" />
+						<a target="_blank" href='#{client.getTosUri()}'> <h:outputText
+								value="#{msgs['common.termsOfService']}" />
+						</a>
+					</p>
+				</h:panelGroup>
+				<div class="login-panel">
+					<h:panelGroup
+						rendered="#{fido_u2f_authentication_request != 'null'}">
+					</h:panelGroup>
+				</div>
+			</h:panelGroup>
+		</h:form>
+		<div class="footer-copyright text-center py-3"
+			style="background: #1ab26b; position: fixed; left: 0; bottom: 0; width: 100%; text-align: center;">
+			<div class="footer">
+				<div class="row">
+					<div class="col-md-12">
+						<div class="padding_spc"
+							style="padding-bottom: 5px; padding-top: 5px;">
+							<p>
+								<h:outputText value="#{msgs['common.gluuInc']}" />
+								| <a target="_blank"
+									href="https://github.com/GluuFederation/oxAuth/blob/master/LICENSE"><h:outputText
+										value="#{msgs['common.caution']}" escape="false" /></a>
+								<h:panelGroup rendered='#{!empty client.policyUri}'>
+					| <a target="_blank" href="#{client.policyUri}"><h:outputText
+											value="#{msgs['common.privacyPolicy']}" escape="false" /></a>
+								</h:panelGroup>
+								<h:panelGroup rendered='#{!empty client.tosUri}'>
+					| <a target="_blank" href="#{client.tosUri}"><h:outputText
+											value="#{msgs['common.termsOfService']}" escape="false" /></a>
+								</h:panelGroup>
+							</p>
+						</div>
+					</div>
+				</div>
+			</div>
+		</div>
+	</ui:define>
+
+</ui:composition>
diff --git a/oxAuth/Server/src/main/webapp/auth/u2f/scripts/u2f-api.js b/oxAuth/Server/src/main/webapp/auth/u2f/scripts/u2f-api.js
new file mode 100644
index 00000000..37f49dc0
--- /dev/null
+++ b/oxAuth/Server/src/main/webapp/auth/u2f/scripts/u2f-api.js
@@ -0,0 +1,830 @@
+(function () {
+  'use strict';
+
+  //Copyright 2014-2015 Google Inc. All rights reserved.
+
+  //Use of this source code is governed by a BSD-style
+  //license that can be found in the LICENSE file or at
+  //https://developers.google.com/open-source/licenses/bsd
+
+  /**
+   * @fileoverview The U2F api.
+   */
+  // 'use strict';
+
+
+  /**
+   * Namespace for the U2F api.
+   * @type {Object}
+   */
+  var u2f = u2f || {};
+
+  const chromeApi = u2f; // Adaptation for u2f-api package
+
+  /**
+   * FIDO U2F Javascript API Version
+   * @number
+   */
+  var js_api_version;
+
+  /**
+   * The U2F extension id
+   * @const {string}
+   */
+  // The Chrome packaged app extension ID.
+  // Uncomment this if you want to deploy a server instance that uses
+  // the package Chrome app and does not require installing the U2F Chrome extension.
+   u2f.EXTENSION_ID = 'kmendfapggjehodndflmmgagdbamhnfd';
+  // The U2F Chrome extension ID.
+  // Uncomment this if you want to deploy a server instance that uses
+  // the U2F Chrome extension to authenticate.
+  // u2f.EXTENSION_ID = 'pfboblefjcgdjicmnffhdgionmgcdmne';
+
+
+  /**
+   * Message types for messsages to/from the extension
+   * @const
+   * @enum {string}
+   */
+  u2f.MessageTypes = {
+      'U2F_REGISTER_REQUEST': 'u2f_register_request',
+      'U2F_REGISTER_RESPONSE': 'u2f_register_response',
+      'U2F_SIGN_REQUEST': 'u2f_sign_request',
+      'U2F_SIGN_RESPONSE': 'u2f_sign_response',
+      'U2F_GET_API_VERSION_REQUEST': 'u2f_get_api_version_request',
+      'U2F_GET_API_VERSION_RESPONSE': 'u2f_get_api_version_response'
+  };
+
+
+  /**
+   * Response status codes
+   * @const
+   * @enum {number}
+   */
+  u2f.ErrorCodes = {
+      'OK': 0,
+      'OTHER_ERROR': 1,
+      'BAD_REQUEST': 2,
+      'CONFIGURATION_UNSUPPORTED': 3,
+      'DEVICE_INELIGIBLE': 4,
+      'TIMEOUT': 5
+  };
+
+
+  //Low level MessagePort API support
+
+  /**
+   * Sets up a MessagePort to the U2F extension using the
+   * available mechanisms.
+   * @param {function((MessagePort|u2f.WrappedChromeRuntimePort_))} callback
+   */
+  u2f.getMessagePort = function(callback) {
+    if (typeof chrome != 'undefined' && chrome.runtime) {
+      // The actual message here does not matter, but we need to get a reply
+      // for the callback to run. Thus, send an empty signature request
+      // in order to get a failure response.
+      var msg = {
+          type: u2f.MessageTypes.U2F_SIGN_REQUEST,
+          signRequests: []
+      };
+      chrome.runtime.sendMessage(u2f.EXTENSION_ID, msg, function() {
+        if (!chrome.runtime.lastError) {
+          // We are on a whitelisted origin and can talk directly
+          // with the extension.
+          u2f.getChromeRuntimePort_(callback);
+        } else {
+          // chrome.runtime was available, but we couldn't message
+          // the extension directly, use iframe
+          u2f.getIframePort_(callback);
+        }
+      });
+    } else if (u2f.isAndroidChrome_()) {
+      u2f.getAuthenticatorPort_(callback);
+    } else if (u2f.isIosChrome_()) {
+      u2f.getIosPort_(callback);
+    } else {
+      // chrome.runtime was not available at all, which is normal
+      // when this origin doesn't have access to any extensions.
+      u2f.getIframePort_(callback);
+    }
+  };
+
+  /**
+   * Detect chrome running on android based on the browser's useragent.
+   * @private
+   */
+  u2f.isAndroidChrome_ = function() {
+    var userAgent = navigator.userAgent;
+    return userAgent.indexOf('Chrome') != -1 &&
+    userAgent.indexOf('Android') != -1;
+  };
+
+  /**
+   * Detect chrome running on iOS based on the browser's platform.
+   * @private
+   */
+  u2f.isIosChrome_ = function() {
+    return ["iPhone", "iPad", "iPod"].indexOf(navigator.platform) > -1;
+  };
+
+  /**
+   * Connects directly to the extension via chrome.runtime.connect.
+   * @param {function(u2f.WrappedChromeRuntimePort_)} callback
+   * @private
+   */
+  u2f.getChromeRuntimePort_ = function(callback) {
+    var port = chrome.runtime.connect(u2f.EXTENSION_ID,
+        {'includeTlsChannelId': true});
+    setTimeout(function() {
+      callback(new u2f.WrappedChromeRuntimePort_(port));
+    }, 0);
+  };
+
+  /**
+   * Return a 'port' abstraction to the Authenticator app.
+   * @param {function(u2f.WrappedAuthenticatorPort_)} callback
+   * @private
+   */
+  u2f.getAuthenticatorPort_ = function(callback) {
+    setTimeout(function() {
+      callback(new u2f.WrappedAuthenticatorPort_());
+    }, 0);
+  };
+
+  /**
+   * Return a 'port' abstraction to the iOS client app.
+   * @param {function(u2f.WrappedIosPort_)} callback
+   * @private
+   */
+  u2f.getIosPort_ = function(callback) {
+    setTimeout(function() {
+      callback(new u2f.WrappedIosPort_());
+    }, 0);
+  };
+
+  /**
+   * A wrapper for chrome.runtime.Port that is compatible with MessagePort.
+   * @param {Port} port
+   * @constructor
+   * @private
+   */
+  u2f.WrappedChromeRuntimePort_ = function(port) {
+    this.port_ = port;
+  };
+
+  /**
+   * Format and return a sign request compliant with the JS API version supported by the extension.
+   * @param {Array<u2f.SignRequest>} signRequests
+   * @param {number} timeoutSeconds
+   * @param {number} reqId
+   * @return {Object}
+   */
+  u2f.formatSignRequest_ =
+    function(appId, challenge, registeredKeys, timeoutSeconds, reqId) {
+    if (js_api_version === undefined || js_api_version < 1.1) {
+      // Adapt request to the 1.0 JS API
+      var signRequests = [];
+      for (var i = 0; i < registeredKeys.length; i++) {
+        signRequests[i] = {
+            version: registeredKeys[i].version,
+            challenge: challenge,
+            keyHandle: registeredKeys[i].keyHandle,
+            appId: appId
+        };
+      }
+      return {
+        type: u2f.MessageTypes.U2F_SIGN_REQUEST,
+        signRequests: signRequests,
+        timeoutSeconds: timeoutSeconds,
+        requestId: reqId
+      };
+    }
+    // JS 1.1 API
+    return {
+      type: u2f.MessageTypes.U2F_SIGN_REQUEST,
+      appId: appId,
+      challenge: challenge,
+      registeredKeys: registeredKeys,
+      timeoutSeconds: timeoutSeconds,
+      requestId: reqId
+    };
+  };
+
+  /**
+   * Format and return a register request compliant with the JS API version supported by the extension..
+   * @param {Array<u2f.SignRequest>} signRequests
+   * @param {Array<u2f.RegisterRequest>} signRequests
+   * @param {number} timeoutSeconds
+   * @param {number} reqId
+   * @return {Object}
+   */
+  u2f.formatRegisterRequest_ =
+    function(appId, registeredKeys, registerRequests, timeoutSeconds, reqId) {
+    if (js_api_version === undefined || js_api_version < 1.1) {
+      // Adapt request to the 1.0 JS API
+      for (var i = 0; i < registerRequests.length; i++) {
+        registerRequests[i].appId = appId;
+      }
+      var signRequests = [];
+      for (var i = 0; i < registeredKeys.length; i++) {
+        signRequests[i] = {
+            version: registeredKeys[i].version,
+            challenge: registerRequests[0],
+            keyHandle: registeredKeys[i].keyHandle,
+            appId: appId
+        };
+      }
+      return {
+        type: u2f.MessageTypes.U2F_REGISTER_REQUEST,
+        signRequests: signRequests,
+        registerRequests: registerRequests,
+        timeoutSeconds: timeoutSeconds,
+        requestId: reqId
+      };
+    }
+    // JS 1.1 API
+    return {
+      type: u2f.MessageTypes.U2F_REGISTER_REQUEST,
+      appId: appId,
+      registerRequests: registerRequests,
+      registeredKeys: registeredKeys,
+      timeoutSeconds: timeoutSeconds,
+      requestId: reqId
+    };
+  };
+
+
+  /**
+   * Posts a message on the underlying channel.
+   * @param {Object} message
+   */
+  u2f.WrappedChromeRuntimePort_.prototype.postMessage = function(message) {
+    this.port_.postMessage(message);
+  };
+
+
+  /**
+   * Emulates the HTML 5 addEventListener interface. Works only for the
+   * onmessage event, which is hooked up to the chrome.runtime.Port.onMessage.
+   * @param {string} eventName
+   * @param {function({data: Object})} handler
+   */
+  u2f.WrappedChromeRuntimePort_.prototype.addEventListener =
+      function(eventName, handler) {
+    var name = eventName.toLowerCase();
+    if (name == 'message' || name == 'onmessage') {
+      this.port_.onMessage.addListener(function(message) {
+        // Emulate a minimal MessageEvent object
+        handler({'data': message});
+      });
+    } else {
+      console.error('WrappedChromeRuntimePort only supports onMessage');
+    }
+  };
+
+  /**
+   * Wrap the Authenticator app with a MessagePort interface.
+   * @constructor
+   * @private
+   */
+  u2f.WrappedAuthenticatorPort_ = function() {
+    this.requestId_ = -1;
+    this.requestObject_ = null;
+  };
+
+  /**
+   * Launch the Authenticator intent.
+   * @param {Object} message
+   */
+  u2f.WrappedAuthenticatorPort_.prototype.postMessage = function(message) {
+    var intentUrl =
+      u2f.WrappedAuthenticatorPort_.INTENT_URL_BASE_ +
+      ';S.request=' + encodeURIComponent(JSON.stringify(message)) +
+      ';end';
+    document.location = intentUrl;
+  };
+
+  /**
+   * Tells what type of port this is.
+   * @return {String} port type
+   */
+  u2f.WrappedAuthenticatorPort_.prototype.getPortType = function() {
+    return "WrappedAuthenticatorPort_";
+  };
+
+
+  /**
+   * Emulates the HTML 5 addEventListener interface.
+   * @param {string} eventName
+   * @param {function({data: Object})} handler
+   */
+  u2f.WrappedAuthenticatorPort_.prototype.addEventListener = function(eventName, handler) {
+    var name = eventName.toLowerCase();
+    if (name == 'message') {
+      var self = this;
+      /* Register a callback to that executes when
+       * chrome injects the response. */
+      window.addEventListener(
+          'message', self.onRequestUpdate_.bind(self, handler), false);
+    } else {
+      console.error('WrappedAuthenticatorPort only supports message');
+    }
+  };
+
+  /**
+   * Callback invoked  when a response is received from the Authenticator.
+   * @param function({data: Object}) callback
+   * @param {Object} message message Object
+   */
+  u2f.WrappedAuthenticatorPort_.prototype.onRequestUpdate_ =
+      function(callback, message) {
+    var messageObject = JSON.parse(message.data);
+    var intentUrl = messageObject['intentURL'];
+
+    var errorCode = messageObject['errorCode'];
+    var responseObject = null;
+    if (messageObject.hasOwnProperty('data')) {
+      responseObject = /** @type {Object} */ (
+          JSON.parse(messageObject['data']));
+    }
+
+    callback({'data': responseObject});
+  };
+
+  /**
+   * Base URL for intents to Authenticator.
+   * @const
+   * @private
+   */
+  u2f.WrappedAuthenticatorPort_.INTENT_URL_BASE_ =
+    'intent:#Intent;action=com.google.android.apps.authenticator.AUTHENTICATE';
+
+  /**
+   * Wrap the iOS client app with a MessagePort interface.
+   * @constructor
+   * @private
+   */
+  u2f.WrappedIosPort_ = function() {};
+
+  /**
+   * Launch the iOS client app request
+   * @param {Object} message
+   */
+  u2f.WrappedIosPort_.prototype.postMessage = function(message) {
+    var str = JSON.stringify(message);
+    var url = "u2f://auth?" + encodeURI(str);
+    location.replace(url);
+  };
+
+  /**
+   * Tells what type of port this is.
+   * @return {String} port type
+   */
+  u2f.WrappedIosPort_.prototype.getPortType = function() {
+    return "WrappedIosPort_";
+  };
+
+  /**
+   * Emulates the HTML 5 addEventListener interface.
+   * @param {string} eventName
+   * @param {function({data: Object})} handler
+   */
+  u2f.WrappedIosPort_.prototype.addEventListener = function(eventName, handler) {
+    var name = eventName.toLowerCase();
+    if (name !== 'message') {
+      console.error('WrappedIosPort only supports message');
+    }
+  };
+
+  /**
+   * Sets up an embedded trampoline iframe, sourced from the extension.
+   * @param {function(MessagePort)} callback
+   * @private
+   */
+  u2f.getIframePort_ = function(callback) {
+    // Create the iframe
+    var iframeOrigin = 'chrome-extension://' + u2f.EXTENSION_ID;
+    var iframe = document.createElement('iframe');
+    iframe.src = iframeOrigin + '/u2f-comms.html';
+    iframe.setAttribute('style', 'display:none');
+    document.body.appendChild(iframe);
+
+    var channel = new MessageChannel();
+    var ready = function(message) {
+      if (message.data == 'ready') {
+        channel.port1.removeEventListener('message', ready);
+        callback(channel.port1);
+      } else {
+        console.error('First event on iframe port was not "ready"');
+      }
+    };
+    channel.port1.addEventListener('message', ready);
+    channel.port1.start();
+
+    iframe.addEventListener('load', function() {
+      // Deliver the port to the iframe and initialize
+      iframe.contentWindow.postMessage('init', iframeOrigin, [channel.port2]);
+    });
+  };
+
+
+  //High-level JS API
+
+  /**
+   * Default extension response timeout in seconds.
+   * @const
+   */
+  u2f.EXTENSION_TIMEOUT_SEC = 30;
+
+  /**
+   * A singleton instance for a MessagePort to the extension.
+   * @type {MessagePort|u2f.WrappedChromeRuntimePort_}
+   * @private
+   */
+  u2f.port_ = null;
+
+  /**
+   * Callbacks waiting for a port
+   * @type {Array<function((MessagePort|u2f.WrappedChromeRuntimePort_))>}
+   * @private
+   */
+  u2f.waitingForPort_ = [];
+
+  /**
+   * A counter for requestIds.
+   * @type {number}
+   * @private
+   */
+  u2f.reqCounter_ = 0;
+
+  /**
+   * A map from requestIds to client callbacks
+   * @type {Object.<number,(function((u2f.Error|u2f.RegisterResponse))
+   *                       |function((u2f.Error|u2f.SignResponse)))>}
+   * @private
+   */
+  u2f.callbackMap_ = {};
+
+  /**
+   * Creates or retrieves the MessagePort singleton to use.
+   * @param {function((MessagePort|u2f.WrappedChromeRuntimePort_))} callback
+   * @private
+   */
+  u2f.getPortSingleton_ = function(callback) {
+    if (u2f.port_) {
+      callback(u2f.port_);
+    } else {
+      if (u2f.waitingForPort_.length == 0) {
+        u2f.getMessagePort(function(port) {
+          u2f.port_ = port;
+          u2f.port_.addEventListener('message',
+              /** @type {function(Event)} */ (u2f.responseHandler_));
+
+          // Careful, here be async callbacks. Maybe.
+          while (u2f.waitingForPort_.length)
+            u2f.waitingForPort_.shift()(u2f.port_);
+        });
+      }
+      u2f.waitingForPort_.push(callback);
+    }
+  };
+
+  /**
+   * Handles response messages from the extension.
+   * @param {MessageEvent.<u2f.Response>} message
+   * @private
+   */
+  u2f.responseHandler_ = function(message) {
+    var response = message.data;
+    var reqId = response['requestId'];
+    if (!reqId || !u2f.callbackMap_[reqId]) {
+      console.error('Unknown or missing requestId in response.');
+      return;
+    }
+    var cb = u2f.callbackMap_[reqId];
+    delete u2f.callbackMap_[reqId];
+    cb(response['responseData']);
+  };
+
+  /**
+   * Calls the callback with true or false as first and only argument
+   * @param {Function} callback
+   */
+  u2f.isSupported = function(callback) {
+    var hasCalledBack = false;
+    function reply(value) {
+      if (hasCalledBack)
+        return;
+      hasCalledBack = true;
+      callback(value);
+    }
+    u2f.getApiVersion(
+      function (response) {
+        js_api_version = response['js_api_version'] === undefined ? 0 : response['js_api_version'];
+        reply(true);
+      }
+    );
+    // No response from extension within 1500ms -> no support
+    setTimeout(reply.bind(null, false), 1500);
+  };
+
+  /**
+   * Dispatches an array of sign requests to available U2F tokens.
+   * If the JS API version supported by the extension is unknown, it first sends a
+   * message to the extension to find out the supported API version and then it sends
+   * the sign request.
+   * @param {string=} appId
+   * @param {string=} challenge
+   * @param {Array<u2f.RegisteredKey>} registeredKeys
+   * @param {function((u2f.Error|u2f.SignResponse))} callback
+   * @param {number=} opt_timeoutSeconds
+   */
+  u2f.sign = function(appId, challenge, registeredKeys, callback, opt_timeoutSeconds) {
+    if (js_api_version === undefined) {
+      // Send a message to get the extension to JS API version, then send the actual sign request.
+      u2f.getApiVersion(
+          function (response) {
+            js_api_version = response['js_api_version'] === undefined ? 0 : response['js_api_version'];
+            console.log("Extension JS API Version: ", js_api_version);
+            u2f.sendSignRequest(appId, challenge, registeredKeys, callback, opt_timeoutSeconds);
+          });
+    } else {
+      // We know the JS API version. Send the actual sign request in the supported API version.
+      u2f.sendSignRequest(appId, challenge, registeredKeys, callback, opt_timeoutSeconds);
+    }
+  };
+
+  /**
+   * Dispatches an array of sign requests to available U2F tokens.
+   * @param {string=} appId
+   * @param {string=} challenge
+   * @param {Array<u2f.RegisteredKey>} registeredKeys
+   * @param {function((u2f.Error|u2f.SignResponse))} callback
+   * @param {number=} opt_timeoutSeconds
+   */
+  u2f.sendSignRequest = function(appId, challenge, registeredKeys, callback, opt_timeoutSeconds) {
+    u2f.getPortSingleton_(function(port) {
+      var reqId = ++u2f.reqCounter_;
+      u2f.callbackMap_[reqId] = callback;
+      var timeoutSeconds = (typeof opt_timeoutSeconds !== 'undefined' ?
+          opt_timeoutSeconds : u2f.EXTENSION_TIMEOUT_SEC);
+      var req = u2f.formatSignRequest_(appId, challenge, registeredKeys, timeoutSeconds, reqId);
+      port.postMessage(req);
+    });
+  };
+
+  /**
+   * Dispatches register requests to available U2F tokens. An array of sign
+   * requests identifies already registered tokens.
+   * If the JS API version supported by the extension is unknown, it first sends a
+   * message to the extension to find out the supported API version and then it sends
+   * the register request.
+   * @param {string=} appId
+   * @param {Array<u2f.RegisterRequest>} registerRequests
+   * @param {Array<u2f.RegisteredKey>} registeredKeys
+   * @param {function((u2f.Error|u2f.RegisterResponse))} callback
+   * @param {number=} opt_timeoutSeconds
+   */
+  u2f.register = function(appId, registerRequests, registeredKeys, callback, opt_timeoutSeconds) {
+    if (js_api_version === undefined) {
+      // Send a message to get the extension to JS API version, then send the actual register request.
+      u2f.getApiVersion(
+          function (response) {
+            js_api_version = response['js_api_version'] === undefined ? 0: response['js_api_version'];
+            console.log("Extension JS API Version: ", js_api_version);
+            u2f.sendRegisterRequest(appId, registerRequests, registeredKeys,
+                callback, opt_timeoutSeconds);
+          });
+    } else {
+      // We know the JS API version. Send the actual register request in the supported API version.
+      u2f.sendRegisterRequest(appId, registerRequests, registeredKeys,
+          callback, opt_timeoutSeconds);
+    }
+  };
+
+  /**
+   * Dispatches register requests to available U2F tokens. An array of sign
+   * requests identifies already registered tokens.
+   * @param {string=} appId
+   * @param {Array<u2f.RegisterRequest>} registerRequests
+   * @param {Array<u2f.RegisteredKey>} registeredKeys
+   * @param {function((u2f.Error|u2f.RegisterResponse))} callback
+   * @param {number=} opt_timeoutSeconds
+   */
+  u2f.sendRegisterRequest = function(appId, registerRequests, registeredKeys, callback, opt_timeoutSeconds) {
+    u2f.getPortSingleton_(function(port) {
+      var reqId = ++u2f.reqCounter_;
+      u2f.callbackMap_[reqId] = callback;
+      var timeoutSeconds = (typeof opt_timeoutSeconds !== 'undefined' ?
+          opt_timeoutSeconds : u2f.EXTENSION_TIMEOUT_SEC);
+      var req = u2f.formatRegisterRequest_(
+          appId, registeredKeys, registerRequests, timeoutSeconds, reqId);
+      port.postMessage(req);
+    });
+  };
+
+
+  /**
+   * Dispatches a message to the extension to find out the supported
+   * JS API version.
+   * If the user is on a mobile phone and is thus using Google Authenticator instead
+   * of the Chrome extension, don't send the request and simply return 0.
+   * @param {function((u2f.Error|u2f.GetJsApiVersionResponse))} callback
+   * @param {number=} opt_timeoutSeconds
+   */
+  u2f.getApiVersion = function(callback, opt_timeoutSeconds) {
+   u2f.getPortSingleton_(function(port) {
+     // If we are using Android Google Authenticator or iOS client app,
+     // do not fire an intent to ask which JS API version to use.
+     if (port.getPortType) {
+       var apiVersion;
+       switch (port.getPortType()) {
+         case 'WrappedIosPort_':
+         case 'WrappedAuthenticatorPort_':
+           apiVersion = 1.1;
+           break;
+
+         default:
+           apiVersion = 0;
+           break;
+       }
+       callback({ 'js_api_version': apiVersion });
+       return;
+     }
+      var reqId = ++u2f.reqCounter_;
+      u2f.callbackMap_[reqId] = callback;
+      var req = {
+        type: u2f.MessageTypes.U2F_GET_API_VERSION_REQUEST,
+        timeoutSeconds: (typeof opt_timeoutSeconds !== 'undefined' ?
+            opt_timeoutSeconds : u2f.EXTENSION_TIMEOUT_SEC),
+        requestId: reqId
+      };
+      port.postMessage(req);
+    });
+  };
+
+  // Feature detection (yes really)
+  // For IE and Edge detection, see https://stackoverflow.com/questions/31757852#31757969
+  // and https://stackoverflow.com/questions/56360225#56361977
+  var isBrowser = (typeof navigator !== 'undefined') && !!navigator.userAgent;
+  var isSafari = isBrowser && navigator.userAgent.match(/Safari\//)
+      && !navigator.userAgent.match(/Chrome\//);
+  var isEDGE = isBrowser && /(Edge\/)|(edg\/)/i.test(navigator.userAgent);
+  var isIE = isBrowser && /(MSIE 9|MSIE 10|rv:11.0)/i.test(navigator.userAgent);
+  var _backend = null;
+  function getBackend() {
+      if (_backend)
+          return _backend;
+      var supportChecker = new Promise(function (resolve, reject) {
+          function notSupported() {
+              resolve({ u2f: null });
+          }
+          if (!isBrowser)
+              return notSupported();
+          if (isSafari)
+              // Safari doesn't support U2F, and the Safari-FIDO-U2F
+              // extension lacks full support (Multi-facet apps), so we
+              // block it until proper support.
+              return notSupported();
+          var hasNativeSupport = (typeof window.u2f !== 'undefined') &&
+              (typeof window.u2f.sign === 'function');
+          if (hasNativeSupport)
+              return resolve({ u2f: window.u2f });
+          if (isEDGE || isIE)
+              // We don't want to check for Google's extension hack on EDGE & IE
+              // as it'll cause trouble (popups, etc)
+              return notSupported();
+          if (location.protocol === 'http:')
+              // U2F isn't supported over http, only https
+              return notSupported();
+          if (typeof MessageChannel === 'undefined')
+              // Unsupported browser, the chrome hack would throw
+              return notSupported();
+          // Test for google extension support
+          chromeApi.isSupported(function (ok) {
+              if (ok)
+                  resolve({ u2f: chromeApi });
+              else
+                  notSupported();
+          });
+      })
+          .then(function (response) {
+          _backend = response.u2f ? supportChecker : null;
+          return response;
+      });
+      return supportChecker;
+  }
+  var ErrorCodes = {
+      OK: 0,
+      OTHER_ERROR: 1,
+      BAD_REQUEST: 2,
+      CONFIGURATION_UNSUPPORTED: 3,
+      DEVICE_INELIGIBLE: 4,
+      TIMEOUT: 5
+  };
+  var ErrorNames = {
+      "0": "OK",
+      "1": "OTHER_ERROR",
+      "2": "BAD_REQUEST",
+      "3": "CONFIGURATION_UNSUPPORTED",
+      "4": "DEVICE_INELIGIBLE",
+      "5": "TIMEOUT"
+  };
+  function makeError(msg, err) {
+      var code = err != null ? err.errorCode : 1; // Default to OTHER_ERROR
+      var type = ErrorNames[('' + code)];
+      var error = new Error(msg);
+      error.metaData = { type: type, code: code };
+      return error;
+  }
+  function isSupported() {
+      return getBackend()
+          .then(function (backend) { return !!backend.u2f; });
+  }
+  function _ensureSupport(backend) {
+      if (!backend.u2f) {
+          if (location.protocol === 'http:')
+              throw new Error("U2F isn't supported over http, only https");
+          throw new Error("U2F not supported");
+      }
+  }
+  function ensureSupport() {
+      return getBackend()
+          .then(_ensureSupport);
+  }
+  function arrayify(value) {
+      if (value != null && Array.isArray(value))
+          return value;
+      return value == null
+          ? []
+          : Array.isArray(value)
+              ? value.slice() : [value];
+  }
+  function register(registerRequests, signRequests, timeout) {
+      var _registerRequests = arrayify(registerRequests);
+      if (typeof signRequests === 'number' && typeof timeout === 'undefined') {
+          timeout = signRequests;
+          signRequests = [];
+      }
+      var _signRequests = arrayify(signRequests);
+      return getBackend()
+          .then(function (backend) {
+          _ensureSupport(backend);
+          var u2f = backend.u2f;
+          return new Promise(function (resolve, reject) {
+              function callback(response) {
+                  if (response.errorCode)
+                      reject(makeError("Registration failed", response));
+                  else {
+                      delete response.errorCode;
+                      resolve(response);
+                  }
+              }
+              var appId = _registerRequests[0].appId;
+              u2f.register(appId, _registerRequests, _signRequests, callback, timeout);
+          });
+      });
+  }
+  function sign(signRequests, timeout) {
+      var _signRequests = arrayify(signRequests);
+      return getBackend()
+          .then(function (backend) {
+          _ensureSupport(backend);
+          var u2f = backend.u2f;
+          return new Promise(function (resolve, reject) {
+              var _a;
+              function callback(response) {
+                  if (response.errorCode)
+                      reject(makeError("Sign failed", response));
+                  else {
+                      delete response.errorCode;
+                      resolve(response);
+                  }
+              }
+              var appId = _signRequests[0].appId;
+              var challenge = _signRequests[0].challenge;
+              var registeredKeys = (_a = []).concat.apply(_a, _signRequests
+                  .map(function (_a) {
+                  var version = _a.version, keyHandle = _a.keyHandle, appId = _a.appId;
+                  return arrayify(keyHandle)
+                      .map(function (keyHandle) {
+                      return ({ version: version, keyHandle: keyHandle, appId: appId });
+                  });
+              }));
+              u2f.sign(appId, challenge, registeredKeys, callback, timeout);
+          });
+      });
+  }
+
+  var u2fApi = /*#__PURE__*/Object.freeze({
+    ErrorCodes: ErrorCodes,
+    ErrorNames: ErrorNames,
+    isSupported: isSupported,
+    ensureSupport: ensureSupport,
+    register: register,
+    sign: sign
+  });
+
+  window.u2fApi = u2fApi;
+
+}());
diff --git a/oxAuth/Server/src/main/webapp/auth/uaf/js/uaf-api.js b/oxAuth/Server/src/main/webapp/auth/uaf/js/uaf-api.js
new file mode 100644
index 00000000..cb4667dc
--- /dev/null
+++ b/oxAuth/Server/src/main/webapp/auth/uaf/js/uaf-api.js
@@ -0,0 +1,146 @@
+// oxAuth is available under the MIT License (2008). See http://opensource.org/licenses/MIT for full text.
+//
+// Copyright (c) 2015, Gluu
+
+'use strict';
+
+/** UAF API.
+ */
+var uaf_api = {
+
+	//--------------------------------------------------------------------------------
+	// Utility methods
+	//--------------------------------------------------------------------------------
+	cloneObject: function(obj) {
+		var clone = {};
+		for (var i in obj) {
+			if ((typeof (obj[i]) == "object") && (obj[i] != null)) {
+				clone[i] = this.cloneObject(obj[i]);
+			} else {
+				clone[i] = obj[i];
+			}
+		}
+	
+		return clone;
+	},
+
+	updateObject: function(obj, updObj) {
+		for (var i in updObj) {
+			obj[i] = updObj[i];
+		}
+	
+		return obj;
+	},
+
+	//--------------------------------------------------------------------------------
+	// QR code
+	//--------------------------------------------------------------------------------
+	QR_CODE_DEFAULT_OPTIONS: {
+		width : 300,
+		height : 300
+	},
+
+	getQrCodeOptions:  function(custom_qr_options) {
+		var options = this.cloneObject(this.QR_CODE_DEFAULT_OPTIONS);
+		var options = this.updateObject(options, custom_qr_options);
+		
+		return options;
+	},
+
+	renderQrCode: function(container, qr_image, qr_options) {
+	    var options = this.getQrCodeOptions(qr_options);
+
+		$("<img>", {
+			"src" : "data:image/png;base64," + qr_image,
+			"width" : options.width + "px",
+			"height" : options.height + "px"
+		}).appendTo(container);
+	},
+
+	// --------------------------------------------------------------------------------
+	// Progress bar
+	//--------------------------------------------------------------------------------
+	progress: {
+		value: 0,
+		maxValue: 4*60,
+		container: null,
+		timer: null
+	},
+	
+	startProgressBar: function(container, timeout) {
+		this.progress.value = 0;
+		this.progress.maxValue = 4 * timeout;
+		this.progress.container = $(container);
+	
+		this.progress.container.progressbar({
+			value : uaf_api.progress.value,
+			max : uaf_api.progress.maxValue
+		});
+
+		function worker() {
+			uaf_api.progress.container.progressbar({
+				value : ++uaf_api.progress.value
+			});
+		
+			if (uaf_api.progress.value >= uaf_api.progress.maxValue) {
+				clearInterval(uaf_api.progress.timer);
+				uaf_api.progress.timer = null;
+				uaf_api.progress.container = null;
+			}
+		}
+
+		this.progress.timer = setInterval(worker, 1000 / 4);
+	},
+
+	//--------------------------------------------------------------------------------
+	// Session status checker
+	//--------------------------------------------------------------------------------
+	checker: {
+		stop: false,
+		endTime: null,
+		poolInterval: 5 * 1000,
+		timeout: 10 * 1000
+	},
+
+	startStatusChecker : function(callback, server_uri, status_request, timeout) {
+		uaf_api.checker.stop = false;
+		uaf_api.endTime = (new Date()).getTime() + timeout * 1000;
+
+		(function worker() {
+			$.ajax({
+				url: server_uri,
+				type: "POST",
+				timeout: uaf_api.checker.timeout,
+				headers: {
+					 "Accept": "application/json",
+					 "Content-Type": "application/json; charset=UTF-8",
+				},
+				data: JSON.stringify(status_request),
+				dataType: "json",
+				success: function(result, status, xhr) {
+					if (result.statusCode == 4000) {
+						callCallback(callback, 'success', result.additionalInfo.authenticatorsResult[0].handle);
+					}
+				},
+				error: function(xhr, status, error) {
+					// Stop status checker on error
+					callCallback(callback, 'error');
+				},
+				complete: function(xhr, status) {
+					if (uaf_api.endTime < (new Date()).getTime()) {
+						callCallback(callback, 'error');
+					}
+					// Schedule the next request when the current one's complete
+					if (!uaf_api.checker.stop) {
+						setTimeout(worker, uaf_api.checker.poolInterval);
+					}
+				}
+			});
+		})();
+		
+		function callCallback(callback, status, handle) {
+			uaf_api.checker.stop = true;
+			callback.call(this, status, handle);
+		}
+	},
+};
diff --git a/oxAuth/Server/src/main/webapp/auth/uaf/login.xhtml b/oxAuth/Server/src/main/webapp/auth/uaf/login.xhtml
new file mode 100644
index 00000000..b1d3507d
--- /dev/null
+++ b/oxAuth/Server/src/main/webapp/auth/uaf/login.xhtml
@@ -0,0 +1,154 @@
+<!DOCTYPE composition PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN"
+        "http://www.w3.org/TR/xhtml1/DTD/xhtml1-transitional.dtd">
+<ui:composition xmlns="http://www.w3.org/1999/xhtml"
+                xmlns:f="http://xmlns.jcp.org/jsf/core"
+                xmlns:ui="http://xmlns.jcp.org/jsf/facelets"
+                xmlns:h="http://xmlns.jcp.org/jsf/html"
+                template="/WEB-INF/incl/layout/template.xhtml">
+    <f:metadata>
+        <f:viewAction action="#{authenticator.prepareAuthenticationForStep}" if="#{not identity.loggedIn}"/>
+    </f:metadata>
+    <ui:define name="head">
+
+        <script src="./js/uaf-api.js"/>
+
+        <script>
+            var helper = (function() {
+                var authResult = undefined;
+
+                return {
+                    /**
+                     * Resume on getting authentication result from server
+                     */
+                    onSignInCallback: function(authResult, authHandle) {
+                        console.log('Get authentication result: ' + authResult);
+                        helper.resumeAuthentication(authResult, authHandle);
+                    },
+
+                    /**
+                     * Send form to server to resume authentication workflow
+                     */
+                    resumeAuthentication: function(authResult, authHandle) {
+                        $('input#auth_result').val(authResult);
+                        $('input#auth_handle').val(authHandle);
+                        $('form#response').submit();
+                    },
+                };
+            })();
+
+            /**
+             * Calls the helper method that handles the authentication flow.
+             */
+            function onSignInCallback(authResult, authHandle) {
+                helper.onSignInCallback(authResult, authHandle);
+            }
+
+            var qr_image = '${identity.getWorkingParameter('qr_image')}';
+            var qr_options = ${identity.getWorkingParameter('qr_options')};
+            var server_uri = '${identity.getWorkingParameter('uaf_obb_server_uri')}';
+            var status_request = ${identity.getWorkingParameter('uaf_obb_status_request')};
+
+            $(document).ready(function() {
+                if (qr_image == '') {
+                    onSignInCallback('error');
+                }
+
+                uaf_api.renderQrCode('#container', qr_image, qr_options);
+                uaf_api.startProgressBar('#progressbar', 60);
+                uaf_api.startStatusChecker(onSignInCallback, server_uri, status_request, 60);
+            });
+
+        </script>
+
+        <style type="text/css">
+            .login-panel {
+                border-style: solid;
+                border-width: 1px;
+                padding: 1px;
+                background-color: #FFFFFF;
+                border-color: #C4C0B9;
+            }
+
+            .login-panel-header {
+                background-color: #D4CFC7;
+                background-image: url("#{oxAuthConfigurationService.getImgLocation()}/panel_header_bg.png");
+                background-position: left top;
+                background-repeat: repeat-x;
+                border-style: solid;
+                border-width: 1px;
+                padding: 2px;
+                border-color: #D4CFC7;
+                color: #000000;
+                font-family: Arial, Verdana, sans-serif;
+                font-size: 11px;
+                font-weight: bold;
+            }
+
+            .login-panel-body {
+                padding: 10px;
+                color: #000000;
+                font-family: Arial, Verdana, sans-serif;
+                font-size: 11px;
+            }
+        </style>
+    </ui:define>
+
+    <ui:define name="pageTitle">#{msgs['uaf.pageTitle']}</ui:define>
+
+    <ui:define name="body">
+        <form id="response" method="post" action="#{request.contextPath}/postlogin.htm">
+            <input type="hidden" id="auth_result" name="auth_result" />
+            <input type="hidden" id="auth_handle" name="auth_handle" />
+        </form>
+
+        <table border="0" align="center">
+            <tr>
+                <td>
+                    <div>
+                        <h:form id="loginForm">
+                            <h:panelGroup rendered="#{not identity.loggedIn}">
+                                <div class="login-panel">
+                                    <div class="login-panel-header">
+                                        <h:outputText value="#{msgs['login.login']}"/>
+                                    </div>
+                                    <div class="login-panel-body">
+                                        <ui:param name="client" value="#{clientService.getClient(identity.sessionId.sessionAttributes['client_id'])}" />
+
+                                        <h:panelGroup rendered='#{!empty client.getLogoUri()}'>
+                                            <h:graphicImage url='#{client.getLogoUri()}'/>
+                                        </h:panelGroup>
+
+                                        <div class="dialog">
+                                            <p>#{msgs['uaf.scanQRCode']}</p>
+                                            <div id="container"></div>
+                                            <div id="progressbar"></div>
+                                        </div>
+
+                                        <h:panelGroup rendered='#{!empty client.getPolicyUri()}'>
+                                            <p>
+                                                <h:outputText value="#{msgs['common.agreePolicy']}"/>
+                                                <a target="_blank" href='#{client.getPolicyUri()}'>
+                                                    <h:outputText value="#{msgs['common.privacyPolicy']}"/>
+                                                </a>
+                                            </p>
+                                        </h:panelGroup>
+
+                                        <h:panelGroup rendered='#{!empty client.getTosUri()}'>
+                                            <p>
+                                                <h:outputText value="#{msgs['common.pleaseReadTheTos']}"/>
+                                                <a target="_blank" href='#{client.getTosUri()}'>
+                                                    <h:outputText value="#{msgs['common.termsOfService']}"/>
+                                                </a>
+                                            </p>
+                                        </h:panelGroup>
+                                    </div>
+                                </div>
+                            </h:panelGroup>
+                        </h:form>
+                    </div>
+                </td>
+            </tr>
+        </table>
+    </ui:define>
+
+</ui:composition>
\ No newline at end of file
diff --git a/oxAuth/Server/src/main/webapp/auth/whispeak/whispeak_open_ask_enroll.xhtml b/oxAuth/Server/src/main/webapp/auth/whispeak/whispeak_open_ask_enroll.xhtml
new file mode 100644
index 00000000..0623dcb4
--- /dev/null
+++ b/oxAuth/Server/src/main/webapp/auth/whispeak/whispeak_open_ask_enroll.xhtml
@@ -0,0 +1,91 @@
+<!DOCTYPE composition
+	PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN" "http://www.w3.org/TR/xhtml1/DTD/xhtml1-transitional.dtd">
+<ui:composition xmlns="http://www.w3.org/1999/xhtml" xmlns:ui="http://xmlns.jcp.org/jsf/facelets"
+	xmlns:h="http://java.sun.com/jsf/html" xmlns:f="http://java.sun.com/jsf/core" xmlns:p="http://primefaces.org/ui"
+	template="/WEB-INF/incl/layout/whispeak_open_template.xhtml">
+	<f:metadata>
+		<f:viewAction action="#{authenticator.prepareAuthenticationForStep}" />
+		<f:viewParam name="login_hint" value="#{loginAction.loginHint}" />
+	</f:metadata>
+	<ui:define name="head">
+		<meta name="description" content="Gluu, Inc." />
+	</ui:define>
+	<ui:define name="pageTitle">
+		<h:outputText value="#{msgs['login.pageTitle']}" />
+	</ui:define>
+
+	<ui:define name="body">
+
+		<h:panelGroup layout="block" styleClass="row">
+			<!-- <h:messages styleClass="messages text-center"
+				infoClass="info" errorClass="error" /> -->
+		</h:panelGroup>
+		<h:panelGroup layout="block" styleClass="container">
+
+
+
+			<h:panelGroup layout="block" styleClass="login-box box-1">
+				<h:panelGroup layout="block" styleClass="whispeak-logo">
+					<img id="WhispeakLogo" src="/oxauth/ext/resources/img/Logo_Whispeak_color.svg" />
+				</h:panelGroup>
+
+				<h:form id="loginForm" method="POST" enctype="multipart/form-data">
+
+					<h:panelGroup styleClass="form-group row">
+						<h:panelGroup layout="block" styleClass="col-center">
+							<h:panelGroup layout="block" styleClass="instructions">
+								<h:outputText value="#{msgs['whispeak.modo']}" />
+							</h:panelGroup>
+						</h:panelGroup>
+					</h:panelGroup>
+
+					<h:panelGroup layout="block" styleClass="form-group text-to-read">
+						<h:panelGroup layout="block" styleClass="col-center">
+							<h:panelGroup layout="block" styleClass="row">
+								<h:outputText value="#{msgs['whispeak.welcome']}" />
+							</h:panelGroup>
+							<h:panelGroup layout="block" styleClass="row">
+								<h:outputText value="#{msgs['whispeak.use.voice.auth']}" />
+							</h:panelGroup>
+						</h:panelGroup>
+					</h:panelGroup>
+
+					<h:panelGroup styleClass="form-group row">
+						<h:panelGroup styleClass="row-button">
+							<h:panelGroup layout="block" styleClass="col-center">
+								<h:commandButton id="acceptEnrollButton" value="#{msgs['form.yes'].toUpperCase()}"
+									styleClass="button button-small button-select" onclick="acceptEnrollResponse();"
+									action="#{authenticator.authenticate}" />
+								<h:commandButton id="rejectEnrollButton" value="#{msgs['form.no'].toUpperCase()}"
+									styleClass="button button-small button-unselect" onclick="rejectEnrollResponse();"
+									action="#{authenticator.authenticate}" />
+							</h:panelGroup>
+						</h:panelGroup>
+					</h:panelGroup>
+
+					<h:inputHidden id="enroll_challenge" />
+					<h:inputHidden id="origin-page" />
+				</h:form>
+
+			</h:panelGroup>
+		</h:panelGroup>
+		<script type="text/javascript">
+
+
+			function acceptEnrollResponse() {
+				document.getElementById("loginForm:enroll_challenge").value = "Accept";
+			}
+
+			function rejectEnrollResponse() {
+				document.getElementById("loginForm:enroll_challenge").value = "Reject";
+			}
+
+			jQuery(document).ready(
+				function () {
+					var form = document.forms.loginForm;
+					form["loginForm:origin-page"].value = "/whispeak_open_ask_enroll.xhtml";
+				}
+			);
+		</script>
+	</ui:define>
+</ui:composition>
\ No newline at end of file
diff --git a/oxAuth/Server/src/main/webapp/auth/whispeak/whispeak_open_authentication_submit.xhtml b/oxAuth/Server/src/main/webapp/auth/whispeak/whispeak_open_authentication_submit.xhtml
new file mode 100644
index 00000000..c4e0464a
--- /dev/null
+++ b/oxAuth/Server/src/main/webapp/auth/whispeak/whispeak_open_authentication_submit.xhtml
@@ -0,0 +1,183 @@
+<!DOCTYPE composition
+	PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN" "http://www.w3.org/TR/xhtml1/DTD/xhtml1-transitional.dtd">
+<ui:composition xmlns="http://www.w3.org/1999/xhtml" xmlns:ui="http://xmlns.jcp.org/jsf/facelets"
+	xmlns:h="http://java.sun.com/jsf/html" xmlns:f="http://java.sun.com/jsf/core"
+	xmlns:c="http://java.sun.com/jsp/jstl/core" xmlns:p="http://primefaces.org/ui"
+	template="/WEB-INF/incl/layout/whispeak_open_template.xhtml">
+	<f:metadata>
+		<f:viewAction action="#{authenticator.prepareAuthenticationForStep}" />
+		<f:viewParam name="login_hint" value="#{loginAction.loginHint}" />
+	</f:metadata>
+	<ui:define name="head">
+		<meta name="description" content="Whispeak through Gluu" />
+	</ui:define>
+	<ui:define name="pageTitle">
+		<h:outputText value="#{msgs['login.pageTitle']}" />
+	</ui:define>
+	<ui:define name="body">
+		<h:panelGroup layout="block" styleClass="container">
+			<h:panelGroup layout="block" styleClass="login-box box-1">
+
+				<h:panelGroup layout="block" styleClass="whispeak-logo">
+					<img id="WhispeakLogo" src="/oxauth/ext/resources/img/Logo_Whispeak_color.svg" />
+				</h:panelGroup>
+
+				<c:if test="#{identity.getWorkingParameter('flow') == 'enroll'}">
+					<h:panelGroup layout="block" styleClass="col-center">
+						<h:panelGroup layout="block" styleClass="row">
+							<ul class="progressbar">
+								<li class="step-done">Inscription</li>
+								<li class="active">Vérification</li>
+							</ul>
+						</h:panelGroup>
+					</h:panelGroup>
+				</c:if>
+
+				<h:form id="loginForm" method="POST" enctype="multipart/form-data">
+
+					<h:panelGroup layout="block" styleClass="col-center ">
+						<h:panelGroup layout="block" styleClass="row instructions">
+							<h:outputText value="#{msgs['whispeak.auth.instructions.record']}" />
+							<br />
+							<h:outputText value="#{msgs['whispeak.auth.instructions.validate']}" />
+						</h:panelGroup>
+					</h:panelGroup>
+
+					<h:panelGroup layout="block" styleClass="col-center">
+						<h:outputText id="text-to-read" name="text-to-read" class="text-to-read"
+							value="#{identity.getWorkingParameter('asr_text')}"
+							rendered="#{not empty identity.getWorkingParameter('asr_text')}" />
+					</h:panelGroup>
+
+					<h:panelGroup layout="block" styleClass="row col-center recorder">
+						<h:panelGroup layout="block" styleClass="visualizer" id="visualizer">
+							<h:panelGroup layout="block" styleClass="timer" id="timer">
+								00:00
+							</h:panelGroup>
+							<canvas class="displayWave" id="displayWave"></canvas>
+						</h:panelGroup>
+
+						<h:panelGroup layout="block" styleClass="remote-recorder">
+							<p:remoteCommand name="authenticateCommand" action="#{authenticator.authenticate}"
+								oncomplete="recorder.hide_load_spinner()" update="@all" process="@all" timeout="15000"
+								onerror="recorder.hide_load_spinner();alert('Ce n \'est pas possible de vous authentifier veuillez tenter encore une fois.')" />
+							<p:commandButton value="stop" id="button_stop_play" styleClass="
+									button-recorder
+									button-recorder-small
+									button-left
+									button-stop
+									button-hidden
+									icon-button-recorder
+									icon-button-recorder-small
+									icon-button-stop" onclick="recorder.button_stop_click()" type="button">
+							</p:commandButton>
+
+							<p:commandButton id="button_record" value="record" styleClass="
+									button-recorder
+									button-middle
+									button-mic
+									icon-button-recorder
+									icon-button-mic" onclick="recorder.button_record_click()" type="button">
+							</p:commandButton>
+							<p:commandButton id="loginButton" type="button" styleClass="
+									button-recorder
+									button-next
+									button-middle
+									button-hidden
+									icon-button-recorder
+									icon-button-next" value="#{msgs['login.login']}" onclick="recorder.button_connexion_click()"
+								iconAwesome="fa-sign-in">
+							</p:commandButton>
+							<p:commandButton id="button_reset" value="reset" styleClass="
+									button-recorder
+									button-recorder-small
+									button-right
+									button-reset
+									button-hidden
+									icon-button-recorder
+									icon-button-recorder-small
+									icon-button-reset" onclick="recorder.button_reset_click()" type="button">
+							</p:commandButton>
+							<h:panelGroup id="spinner" layout="block" styleClass="spinner"></h:panelGroup>
+
+						</h:panelGroup>
+					</h:panelGroup>
+
+					<audio id="audio"></audio>
+
+					<h:inputHidden id="voiceBase64" />
+					<h:inputHidden id="provider" />
+					<h:inputHidden id="asr-text-retry" />
+					<h:inputHidden id="origin-page" />
+					<h:inputHidden id="redirect-to-client" />
+					<h:panelGroup id="signinButton" layout="block" visible="false">
+						<p:commandButton id="loginPassportButton" value="#{msgs['login.login']}"
+							action="#{authenticator.authenticate}" class="button button-login" style="display: none" />
+					</h:panelGroup>
+				</h:form>
+			</h:panelGroup>
+
+			<h:panelGroup layout="block" styleClass="login-box box-2"
+				rendered="#{identity.getWorkingParameter('flow') == 'auth' and identity.getWorkingParameter('show_oidc_panel')}">
+				<h:panelGroup styleClass="row col-center text-center">
+					<h:outputText value="#{msgs['whispeak.auth.alternative.instruction']}" />
+				</h:panelGroup>
+				<h:panelGroup layout="block" styleClass="panel-body providers" id="listProviders">
+				</h:panelGroup>
+			</h:panelGroup>
+			<h:panelGroup styleClass="login-box box-2"
+				rendered="#{identity.getWorkingParameter('show_return_client_panel') == true}">
+				<h:panelGroup styleClass="row col-center text-center">
+					<h:outputText value="#{msgs['whispeak.auth.error.instruction']}" />
+				</h:panelGroup>
+				<h:panelGroup layout="block" styleClass="panel-body return-client-panel">
+					<p:commandButton id="redirectToClient" value="redirect to client" type="button" styleClass="
+											button-recorder
+											button-reset
+											icon-button-back" onclick="recorder.send_redirect()">
+					</p:commandButton>
+				</h:panelGroup>
+			</h:panelGroup>
+
+		</h:panelGroup>
+		<!-- FOR AUTORECORD -->
+		<!-- <script type="text/javascript">
+    $(document).ready(function () {
+	  recorder.button_record_click();
+		});
+		</script> -->
+
+		<script src="/oxauth/ext/resources/js/passport.js" />
+		<script src="/oxauth/ext/resources/js/recorder_3buttons.js" />
+		<script type="text/javascript">
+			jQuery(document).ready(
+				function () {
+					var form = document.forms.loginForm;
+					form["loginForm:asr-text-retry"].value = document.getElementById('loginForm:text-to-read').textContent;
+					form["loginForm:origin-page"].value = "/whispeak_open_authentication_submit.xhtml";
+					recorder.button_reset_click();
+					try {
+						if (`#{identity.getWorkingParameter('external_providers')}` !== "false") {
+							let jsonProviders = JSON.parse(`#{identity.getWorkingParameter('external_providers')}`
+								.replaceAll("u'", "\'")
+								.replaceAll("'", "\"")
+								.replaceAll("None", "null")
+								.replaceAll("False", "false")
+								.replaceAll("True", "true")
+							);
+
+							console.log('')
+							jsonProviders.forEach((provider) => {
+								passport.dynamic_link(
+									Object.keys(provider)[0],
+									provider[Object.keys(provider)[0]].logo_img,
+									provider[Object.keys(provider)[0]].displayName)
+							});
+						}
+					} catch (e) {
+						// If providers are not returned passport is not configured
+					}
+				});
+		</script>
+	</ui:define>
+</ui:composition>
\ No newline at end of file
diff --git a/oxAuth/Server/src/main/webapp/auth/whispeak/whispeak_open_enrollment_submit.xhtml b/oxAuth/Server/src/main/webapp/auth/whispeak/whispeak_open_enrollment_submit.xhtml
new file mode 100644
index 00000000..1b502b87
--- /dev/null
+++ b/oxAuth/Server/src/main/webapp/auth/whispeak/whispeak_open_enrollment_submit.xhtml
@@ -0,0 +1,170 @@
+<!DOCTYPE composition
+	PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN" "http://www.w3.org/TR/xhtml1/DTD/xhtml1-transitional.dtd">
+<ui:composition xmlns="http://www.w3.org/1999/xhtml" xmlns:ui="http://xmlns.jcp.org/jsf/facelets"
+	xmlns:h="http://java.sun.com/jsf/html" xmlns:f="http://java.sun.com/jsf/core"
+	xmlns:c="http://java.sun.com/jsp/jstl/core" xmlns:p="http://primefaces.org/ui"
+	template="/WEB-INF/incl/layout/whispeak_open_template.xhtml">
+	<f:metadata>
+		<f:viewAction action="#{authenticator.prepareAuthenticationForStep}" />
+		<f:viewParam name="login_hint" value="#{loginAction.loginHint}" />
+	</f:metadata>
+	<ui:define name="head">
+		<meta name="description" content="Whispeak through Gluu" />
+	</ui:define>
+	<ui:define name="pageTitle">
+		<h:outputText value="#{msgs['login.pageTitle']}" />
+	</ui:define>
+
+	<ui:define name="body">
+		<h:panelGroup layout="block" styleClass="container">
+
+			<h:panelGroup layout="block" styleClass="login-box box-1">
+
+				<h:panelGroup layout="block" styleClass="whispeak-logo">
+					<img id="WhispeakLogo" src="/oxauth/ext/resources/img/Logo_Whispeak_color.svg" />
+				</h:panelGroup>
+
+				<c:if test="#{identity.getWorkingParameter('flow') == 'enroll'}">
+					<h:panelGroup layout="block" styleClass="col-center">
+						<h:panelGroup layout="block" styleClass="row">
+							<ul class="progressbar">
+								<li class="active">Inscription</li>
+								<li>Vérification</li>
+							</ul>
+						</h:panelGroup>
+					</h:panelGroup>
+				</c:if>
+
+				<h:form id="loginForm" method="POST" enctype="multipart/form-data">
+
+					<h:panelGroup layout="block" styleClass="col-center ">
+						<h:panelGroup layout="block" styleClass="row instructions">
+							<h:outputText value="#{msgs['whispeak.auth.instructions.record']}" />
+							<br />
+							<h:outputText value="#{msgs['whispeak.auth.instructions.validate']}" />
+						</h:panelGroup>
+					</h:panelGroup>
+
+					<h:panelGroup layout="block" styleClass="col-center">
+						<h:outputText id="text-to-read" name="text-to-read" class="text-to-read"
+							value="#{identity.getWorkingParameter('asr_text')}"
+							rendered="#{not empty identity.getWorkingParameter('asr_text')}" />
+					</h:panelGroup>
+
+					<h:panelGroup layout="block" styleClass="row col-center recorder">
+						<h:panelGroup layout="block" styleClass="visualizer" id="visualizer">
+							<h:panelGroup layout="block" styleClass="timer" id="timer">
+								00:00
+							</h:panelGroup>
+							<canvas class="displayWave" id="displayWave"></canvas>
+						</h:panelGroup>
+
+						<h:panelGroup layout="block" styleClass="remote-recorder">
+							<p:remoteCommand name="authenticateCommand" action="#{authenticator.authenticate}"
+								oncomplete="recorder.hide_load_spinner()" update="@all" process="@all" timeout="15000"
+								onerror="recorder.hide_load_spinner();alert('Ce n \'est pas possible de vous authentifier veuillez tenter encore une fois.')" />
+							<p:commandButton value="stop" id="button_stop_play" styleClass="
+									button-recorder
+									button-recorder-small
+									button-left
+									button-stop
+									button-hidden
+									icon-button-recorder
+									icon-button-recorder-small
+									icon-button-stop" onclick="recorder.button_stop_click()" type="button">
+							</p:commandButton>
+
+							<p:commandButton id="button_record" value="record" styleClass="
+									button-recorder
+									button-middle
+									button-mic
+									icon-button-recorder
+									icon-button-mic" onclick="recorder.button_record_click()" type="button">
+							</p:commandButton>
+							<p:commandButton id="loginButton" type="button" styleClass="
+									button-recorder
+									button-next
+									button-middle
+									button-hidden
+									icon-button-recorder
+									icon-button-next" value="#{msgs['login.login']}" onclick="recorder.button_connexion_click()"
+								iconAwesome="fa-sign-in">
+							</p:commandButton>
+							<p:commandButton id="button_reset" value="reset" styleClass="
+									button-recorder
+									button-recorder-small
+									button-right
+									button-reset
+									button-hidden
+									icon-button-recorder
+									icon-button-recorder-small
+									icon-button-reset" onclick="recorder.button_reset_click()" type="button">
+							</p:commandButton>
+							<h:panelGroup id="spinner" layout="block" styleClass="spinner"></h:panelGroup>
+
+						</h:panelGroup>
+					</h:panelGroup>
+
+					<audio id="audio"></audio>
+
+					<h:inputHidden id="voiceBase64" />
+
+					<h:inputHidden id="provider" />
+					<h:inputHidden id="asr-text-retry" />
+					<h:inputHidden id="origin-page" />
+					<h:panelGroup id="signinButton" layout="block" visible="false">
+						<p:commandButton id="loginPassportButton" value="#{msgs['login.login']}"
+							action="#{authenticator.authenticate}" class="button button-login" style="display: none" />
+					</h:panelGroup>
+				</h:form>
+			</h:panelGroup>
+
+			<h:panelGroup layout="block" styleClass="login-box box-2"
+				rendered="#{identity.getWorkingParameter('oidc_fallback_enrollment') == true and identity.getWorkingParameter('show_oidc_panel')}">
+				<h:panelGroup styleClass="row col-center text-center">
+					<h:outputText value="#{msgs['whispeak.auth.alternative.instruction']}" />
+				</h:panelGroup>
+				<h:panelGroup layout="block" styleClass="panel-body providers" id="listProviders">
+				</h:panelGroup>
+			</h:panelGroup>
+		</h:panelGroup>
+
+		<!-- FOR AUTORECORD -->
+		<!-- <script type="text/javascript">
+    $(document).ready(function () {
+	  recorder.button_record_click();
+		});
+		</script> -->
+
+		<script src="/oxauth/ext/resources/js/passport.js" />
+		<script src="/oxauth/ext/resources/js/recorder_3buttons.js" />
+		<script type="text/javascript">
+
+			jQuery(document).ready(
+				function () {
+					var form = document.forms.loginForm;
+					form["loginForm:asr-text-retry"].value = document.getElementById('loginForm:text-to-read').textContent;
+					form["loginForm:origin-page"].value = "/whispeak_open_enrollment_submit.xhtml";
+					recorder.button_reset_click();
+					let jsonProviders = JSON.parse(`#{identity.getWorkingParameter('external_providers')}`
+						.replaceAll("u'", "\'")
+						.replaceAll("'", "\"")
+						.replaceAll("None", "null")
+						.replaceAll("False", "false")
+						.replaceAll("True", "true")
+					);
+
+					try {
+						jsonProviders.forEach((provider) => {
+							passport.dynamic_link(
+								Object.keys(provider)[0],
+								provider[Object.keys(provider)[0]].logo_img,
+								provider[Object.keys(provider)[0]].displayName)
+						});
+					} catch (e) {
+					}
+				});
+		</script>
+		<script src="/oxauth/ext/resources/js/recorder_3buttons.js" />
+	</ui:define>
+</ui:composition>
\ No newline at end of file
diff --git a/oxAuth/Server/src/main/webapp/auth/whispeak/whispeak_open_identification.xhtml b/oxAuth/Server/src/main/webapp/auth/whispeak/whispeak_open_identification.xhtml
new file mode 100644
index 00000000..c0c831dc
--- /dev/null
+++ b/oxAuth/Server/src/main/webapp/auth/whispeak/whispeak_open_identification.xhtml
@@ -0,0 +1,113 @@
+<!DOCTYPE composition
+	PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN" "http://www.w3.org/TR/xhtml1/DTD/xhtml1-transitional.dtd">
+<ui:composition xmlns="http://www.w3.org/1999/xhtml" xmlns:pt="http://xmlns.jcp.org/jsf/passthrough"
+	xmlns:f="http://xmlns.jcp.org/jsf/core" xmlns:ui="http://xmlns.jcp.org/jsf/facelets"
+	xmlns:h="http://xmlns.jcp.org/jsf/html" xmlns:p="http://primefaces.org/ui"
+	template="/WEB-INF/incl/layout/whispeak_open_template.xhtml">
+	<f:metadata>
+		<f:viewAction action="#{authenticator.prepareAuthenticationForStep}" />
+		<f:viewParam name="login_hint" value="#{loginAction.loginHint}" />
+	</f:metadata>
+	<ui:define name="head">
+		<meta name="description" content="Whispeak through Gluu" />
+	</ui:define>
+	<ui:define name="pageTitle">
+		<h:outputText value="#{msgs['login.pageTitle']}" />
+	</ui:define>
+	<ui:define name="body">
+		<h:panelGroup layout="block" styleClass="container">
+
+			<h:panelGroup layout="block" styleClass="login-box box-1">
+				<h:panelGroup layout="block" styleClass="whispeak-logo">
+					<img id="WhispeakLogo" src="/oxauth/ext/resources/img/Logo_Whispeak_color.svg" />
+				</h:panelGroup>
+
+				<h:form id="loginForm" method="POST" enctype="multipart/form-data">
+
+
+					<h:panelGroup styleClass="form-group row"
+						rendered="#{identity.getWorkingParameter('show_password')  == true}">
+						<h:panelGroup layout="block" styleClass="col-center">
+							<h:panelGroup layout="block" styleClass="instructions">
+								<h:outputText value="#{msgs['whispeak.login.2fa.password']}" />
+							</h:panelGroup>
+						</h:panelGroup>
+					</h:panelGroup>
+
+
+					<h:panelGroup layout="block" styleClass="form-group row">
+						<h:panelGroup layout="block" styleClass="col-center">
+							<h:inputText pt:placeholder="#{msgs['login.email']}" id="username" name="username"
+								required="true" autocomplete="on" value="#{credentials.username}"
+								styleClass="form-control">
+							</h:inputText>
+						</h:panelGroup>
+					</h:panelGroup>
+
+					<h:panelGroup class="row" layout="block"
+						rendered="#{identity.getWorkingParameter('show_password')  == true}">
+						<div class="col-center">
+							<h:inputSecret pt:placeholder="#{msgs['login.password']}" colMd="10" id="password"
+								name="password" labelColMd="2" value="#{credentials.password}" autocomplete="off"
+								styleClass="form-control">
+							</h:inputSecret>
+						</div>
+					</h:panelGroup>
+
+					<h:panelGroup layout="block" styleClass="form-group row">
+						<h:panelGroup layout="block" styleClass="col-center">
+							<h:panelGroup layout="block" styleClass="row-button">
+								<h:commandButton id="loginButton" styleClass="button" value="#{msgs['login.login']}"
+									iconAwesome="fa-sign-in" action="#{authenticator.authenticate}" />
+							</h:panelGroup>
+						</h:panelGroup>
+					</h:panelGroup>
+
+					<h:inputHidden id="platform" />
+					<h:inputHidden id="origin-page" />
+					<h:inputHidden id="client-url" />
+				</h:form>
+			</h:panelGroup>
+
+		</h:panelGroup>
+		<script type="text/javascript">
+
+
+			window.onload = function () {
+				var userNameField = document.getElementById("loginForm:username");
+				var passwordField = document.getElementById("loginForm:password");
+
+				var userName = '#{identity.getWorkingParameter("username")}';
+				if (userName) {
+					userNameField.value = userName;
+					passwordField.focus();
+				} else {
+					userNameField.focus();
+				}
+
+			};
+
+			jQuery(document).ready(
+
+				function () {
+					var form = document.forms.loginForm;
+					form["loginForm:origin-page"].value = "/whispeak_open_identification.xhtml";
+					form["loginForm:client-url"].value = document.referrer;
+				}
+			);
+
+			function fillPlatformField() {
+				try {
+					re = /^([^\.]+\.[^\.]+)\..+/;
+					result = re.exec(platform.version);
+					if (result != null) {
+						platform.version = result[1];
+					}
+					document.getElementById("loginForm:platform").value = JSON.stringify(platform);
+				} catch (e) {
+				}
+			}
+
+		</script>
+	</ui:define>
+</ui:composition>
\ No newline at end of file
diff --git a/oxAuth/Server/src/main/webapp/auth/whispeak/whispeak_open_passport.xhtml b/oxAuth/Server/src/main/webapp/auth/whispeak/whispeak_open_passport.xhtml
new file mode 100644
index 00000000..f71195e9
--- /dev/null
+++ b/oxAuth/Server/src/main/webapp/auth/whispeak/whispeak_open_passport.xhtml
@@ -0,0 +1,102 @@
+<!DOCTYPE composition
+	PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN" "http://www.w3.org/TR/xhtml1/DTD/xhtml1-transitional.dtd">
+<ui:composition xmlns="http://www.w3.org/1999/xhtml" xmlns:f="http://xmlns.jcp.org/jsf/core"
+	xmlns:ui="http://xmlns.jcp.org/jsf/facelets" xmlns:h="http://xmlns.jcp.org/jsf/html"
+	xmlns:p="http://primefaces.org/ui" xmlns:b="http://bootsfaces.net/ui"
+	template="/WEB-INF/incl/layout/whispeak_open_template.xhtml">
+
+	<f:metadata>
+		<f:viewAction action="#{authenticator.prepareAuthenticationForStep}" if="#{not identity.loggedIn}" />
+	</f:metadata>
+
+	<ui:define name="head">
+		<meta name="description" content="Gluu Inc." />
+	</ui:define>
+
+	<ui:define name="pageTitle">
+		<h:outputText value="#{msgs['passport.oxAuthPassportLogin']}" />
+	</ui:define>
+
+	<ui:define name="body">
+		<h:panelGroup layout="block" styleClass="container">
+			<h:panelGroup rendered="true">
+				<h:panelGroup layout="block" styleClass="row">
+					<noscript>
+						<b>#{msgs['passport.javascriptRequired']}</b>
+					</noscript>
+				</h:panelGroup>
+				<h:panelGroup layout="block" styleClass="login-box box-1">
+
+					<h:panelGroup layout="block" styleClass="whispeak-logo">
+						<img id="WhispeakLogo" src="/oxauth/ext/resources/img/Logo_Whispeak_color.svg" />
+					</h:panelGroup>
+
+					<div class="col-center">
+						<div class="col-center ">
+							<div class="row instructions">
+								<h:outputText value="#{msgs['whispeak.auth.instructions.passport.verif']}" />
+								<br />
+								<h:outputText value="#{msgs['whispeak.auth.instructions.passport.choose.provider']}" />
+							</div>
+						</div>
+						<b:panel styleClass="row col-center" title="External Providers" collapsible="false"
+							iconAwesome="fa-key">
+							<h:panelGroup layout="block" styleClass="panel-body providers" id="listProviders">
+								<h:form id="loginForm">
+									<h:inputHidden id="provider" />
+									<h:inputHidden id="providerPassport" />
+									<h:inputHidden id="origin-page" />
+									<div visibility="hidden" id="signinButton">
+										<p:commandButton id="loginPassportButton" value="#{msgs['login.login']}"
+											action="#{authenticator.authenticate}" class="button button-login"
+											style="display: none" />
+									</div>
+								</h:form>
+							</h:panelGroup>
+						</b:panel>
+					</div>
+				</h:panelGroup>
+			</h:panelGroup>
+		</h:panelGroup>
+		<script src="/oxauth/ext/resources/js/passport.js" />
+		<script src="/oxauth/ext/resources/js/recorder_3buttons.js" />
+		<script type="text/javascript">
+
+			jQuery(document).ready(
+				function () {
+					var form = document.forms.loginForm;
+					form["loginForm:origin-page"].value = "/whispeak_open_passport.xhtml";
+					let jsonProviders = JSON.parse(`#{identity.getWorkingParameter('external_providers')}`
+						.replaceAll("u'", "\'")
+						.replaceAll("'", "\"")
+						.replaceAll("None", "null")
+						.replaceAll("False", "false")
+						.replaceAll("True", "true")
+					);
+
+					try {
+						jsonProviders.forEach((provider) => {
+							passport.dynamic_link(
+								Object.keys(provider)[0],
+								provider[Object.keys(provider)[0]].logo_img,
+								provider[Object.keys(provider)[0]].displayName)
+						});
+					} catch (e) {
+					}
+
+					//error message display
+					let errormsg = "?failure="
+					let idxErrormsg = window.location.href.indexOf(errormsg)
+					if (idxErrormsg != -1) {
+						errormsg = window.location.href.substr(idxErrormsg + errormsg.length)
+
+						history.replaceState({}, 'oxAuth-Login', '/oxauth/auth/passport/passport-login')
+						jQuery('.errormsg').html(decodeURIComponent(errormsg))
+						jQuery('.errormsg').css('display', 'block')
+					}
+
+				});
+		</script>
+
+	</ui:define>
+</ui:composition>
\ No newline at end of file
diff --git a/oxAuth/Server/src/main/webapp/auth/whispeak/whispeak_open_passport_fallback.xhtml b/oxAuth/Server/src/main/webapp/auth/whispeak/whispeak_open_passport_fallback.xhtml
new file mode 100644
index 00000000..ae1f425d
--- /dev/null
+++ b/oxAuth/Server/src/main/webapp/auth/whispeak/whispeak_open_passport_fallback.xhtml
@@ -0,0 +1,101 @@
+<!DOCTYPE composition
+	PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN" "http://www.w3.org/TR/xhtml1/DTD/xhtml1-transitional.dtd">
+<ui:composition xmlns="http://www.w3.org/1999/xhtml" xmlns:f="http://xmlns.jcp.org/jsf/core"
+	xmlns:ui="http://xmlns.jcp.org/jsf/facelets" xmlns:h="http://xmlns.jcp.org/jsf/html"
+	xmlns:p="http://primefaces.org/ui" xmlns:b="http://bootsfaces.net/ui"
+	template="/WEB-INF/incl/layout/whispeak_open_template.xhtml">
+
+	<f:metadata>
+		<f:viewAction action="#{authenticator.prepareAuthenticationForStep}" if="#{not identity.loggedIn}" />
+	</f:metadata>
+
+	<ui:define name="head">
+		<meta name="description" content="Gluu Inc." />
+	</ui:define>
+
+	<ui:define name="pageTitle">
+		<h:outputText value="#{msgs['passport.oxAuthPassportLogin']}" />
+	</ui:define>
+
+	<ui:define name="body">
+		<h:panelGroup layout="block" styleClass="container">
+			<h:panelGroup rendered="true">
+				<h:panelGroup layout="block" styleClass="row">
+					<noscript>
+						<b>#{msgs['passport.javascriptRequired']}</b>
+					</noscript>
+				</h:panelGroup>
+				<h:panelGroup layout="block" styleClass="login-box box-1">
+
+					<h:panelGroup layout="block" styleClass="whispeak-logo">
+						<img id="WhispeakLogo" src="/oxauth/ext/resources/img/Logo_Whispeak_color.svg" />
+					</h:panelGroup>
+
+					<div class="col-center">
+						<div class="col-center ">
+							<div class="row instructions">
+								<h:outputText value="#{msgs['whispeak.auth.instructions.passport.fallback']}" />
+								<br />
+								<h:outputText value="#{msgs['whispeak.auth.instructions.passport.choose.provider']}" />
+							</div>
+						</div>
+						<b:panel styleClass="row col-center" title="External Providers" collapsible="false"
+							iconAwesome="fa-key">
+							<h:panelGroup layout="block" styleClass="panel-body providers" id="listProviders">
+								<h:form id="loginForm">
+									<h:inputHidden id="provider" />
+									<h:inputHidden id="providerPassport" />
+									<h:inputHidden id="origin-page" />
+									<div visibility="hidden" id="signinButton">
+										<p:commandButton id="loginPassportButton" value="#{msgs['login.login']}"
+											action="#{authenticator.authenticate}" class="button button-login"
+											style="display: none" />
+									</div>
+								</h:form>
+							</h:panelGroup>
+						</b:panel>
+					</div>
+				</h:panelGroup>
+			</h:panelGroup>
+		</h:panelGroup>
+		<script src="/oxauth/ext/resources/js/passport.js" />
+		<script src="/oxauth/ext/resources/js/recorder_3buttons.js" />
+		<script type="text/javascript">
+
+			jQuery(document).ready(
+				function () {
+					var form = document.forms.loginForm;
+					form["loginForm:origin-page"].value = "/whispeak_open_passport_fallback.xhtml";
+					let jsonProviders = JSON.parse(`#{identity.getWorkingParameter('external_providers')}`
+						.replaceAll("u'", "\'")
+						.replaceAll("'", "\"")
+						.replaceAll("None", "null")
+						.replaceAll("False", "false")
+						.replaceAll("True", "true")
+					);
+
+					try {
+						jsonProviders.forEach((provider) => {
+							passport.dynamic_link(
+								Object.keys(provider)[0],
+								provider[Object.keys(provider)[0]].logo_img,
+								provider[Object.keys(provider)[0]].displayName)
+						});
+					} catch (e) {
+					}
+
+					//error message display
+					let errormsg = "?failure="
+					let idxErrormsg = window.location.href.indexOf(errormsg)
+					if (idxErrormsg != -1) {
+						errormsg = window.location.href.substr(idxErrormsg + errormsg.length)
+
+						history.replaceState({}, 'oxAuth-Login', '/oxauth/auth/passport/passport-login')
+						jQuery('.errormsg').html(decodeURIComponent(errormsg))
+						jQuery('.errormsg').css('display', 'block')
+					}
+
+				});
+		</script>
+	</ui:define>
+</ui:composition>
\ No newline at end of file
diff --git a/oxAuth/Server/src/main/webapp/auth/whispeak/whispeak_open_passport_loading.xhtml b/oxAuth/Server/src/main/webapp/auth/whispeak/whispeak_open_passport_loading.xhtml
new file mode 100644
index 00000000..5f4d079b
--- /dev/null
+++ b/oxAuth/Server/src/main/webapp/auth/whispeak/whispeak_open_passport_loading.xhtml
@@ -0,0 +1,13 @@
+<!DOCTYPE composition
+	PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN" "http://www.w3.org/TR/xhtml1/DTD/xhtml1-transitional.dtd">
+<ui:composition xmlns="http://www.w3.org/1999/xhtml" xmlns:ui="http://xmlns.jcp.org/jsf/facelets"
+	xmlns:f="http://xmlns.jcp.org/jsf/core" xmlns:h="http://xmlns.jcp.org/jsf/html" xmlns:p="http://primefaces.org/ui"
+	template="/WEB-INF/incl/layout/whispeak_open_template.xhtml">
+
+	<ui:param name="showGlobalMessages" value="false" />
+
+	<ui:define name="body">
+		<h:panelGroup id="spinner" layout="block" styleClass="spinner loader"></h:panelGroup>
+	</ui:define>
+
+</ui:composition>
\ No newline at end of file
diff --git a/oxAuth/Server/src/main/webapp/auth/whispeak/whispeak_open_revocation_data_show.xhtml b/oxAuth/Server/src/main/webapp/auth/whispeak/whispeak_open_revocation_data_show.xhtml
new file mode 100644
index 00000000..96972bc6
--- /dev/null
+++ b/oxAuth/Server/src/main/webapp/auth/whispeak/whispeak_open_revocation_data_show.xhtml
@@ -0,0 +1,74 @@
+<!DOCTYPE composition
+	PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN" "http://www.w3.org/TR/xhtml1/DTD/xhtml1-transitional.dtd">
+<ui:composition xmlns="http://www.w3.org/1999/xhtml" xmlns:pt="http://xmlns.jcp.org/jsf/passthrough"
+	xmlns:f="http://xmlns.jcp.org/jsf/core" xmlns:ui="http://xmlns.jcp.org/jsf/facelets"
+	xmlns:h="http://xmlns.jcp.org/jsf/html" xmlns:p="http://primefaces.org/ui"
+	template="/WEB-INF/incl/layout/whispeak_open_template.xhtml">
+	<f:metadata>
+		<f:viewAction action="#{authenticator.prepareAuthenticationForStep}" />
+		<f:viewParam name="login_hint" value="#{loginAction.loginHint}" />
+	</f:metadata>
+	<ui:define name="head">
+		<meta name="description" content="Whispeak through Gluu" />
+	</ui:define>
+	<ui:define name="pageTitle">
+		<h:outputText value="#{msgs['login.pageTitle']}" />
+	</ui:define>
+	<ui:define name="body">
+		<h:panelGroup layout="block" styleClass="container">
+
+			<h:panelGroup layout="block" styleClass="login-box box-1">
+				<h:panelGroup layout="block" styleClass="whispeak-logo">
+					<img id="WhispeakLogo" src="/oxauth/ext/resources/img/Logo_Whispeak_color.svg" />
+				</h:panelGroup>
+
+				<h:form id="loginForm" method="POST" enctype="multipart/form-data">
+
+
+					<h:panelGroup layout="block" styleClass="login-box box-revocation">
+						<h:panelGroup styleClass="info-revoc-box">
+							<h:panelGroup styleClass="title-revoc instruction-revoc">
+								<h:outputText value="#{msgs['whispeak.revocation.title']}" />
+							</h:panelGroup>
+							<h:panelGroup id="text-to-copy" styleClass="text-to-copy">
+								<h:outputText value="#{msgs['whispeak.revocation.instruction']}" />
+
+								<h:outputText styleClass="instruction-revoc"
+									value="#{msgs['whispeak.revocation.revocation_ui_link']} " />
+								<h:outputText id="revocation-ui-link" name="revocation-ui-link"
+									value="#{identity.getWorkingParameter('revocation_ui_link')}" />
+								<h:outputText styleClass="instruction-revoc"
+									value="#{msgs['whispeak.revocation.revocation_pwd']} " />
+								<h:outputText id="revocation-pwd" name="revocation-pwd"
+									value="#{identity.getWorkingParameter('revocation_pwd')}" />
+							</h:panelGroup>
+
+							<p:commandButton id="info-revoc-box-button" value="#{msgs['whispeak.revocation.copytext']}"
+								styleClass="button-copy" onclick="revocation.copy()"
+								onmouseover="revocation.mouseover()" onmouseout="revocation.mouseout()" type="button"
+								image="ui-icon-copy">
+							</p:commandButton>
+						</h:panelGroup>
+						<h:commandButton id="loginButton" styleClass="button" value="#{msgs['whispeak.revocation.ok']}"
+							iconAwesome="fa-sign-in" action="#{authenticator.authenticate}" />
+					</h:panelGroup>
+
+
+
+					<h:inputHidden id="origin-page" />
+
+				</h:form>
+			</h:panelGroup>
+
+		</h:panelGroup>
+		<script src="/oxauth/ext/resources/js/revocation.js" />
+		<script type="text/javascript">
+			jQuery(document).ready(
+				function () {
+					var form = document.forms.loginForm;
+					form["loginForm:origin-page"].value = "/_revocation_data_show.xhtml";
+				}
+			);
+		</script>
+	</ui:define>
+</ui:composition>
\ No newline at end of file
diff --git a/oxAuth/Server/src/main/webapp/auth/wikid/wikidlogin.xhtml b/oxAuth/Server/src/main/webapp/auth/wikid/wikidlogin.xhtml
new file mode 100644
index 00000000..00cdc7c6
--- /dev/null
+++ b/oxAuth/Server/src/main/webapp/auth/wikid/wikidlogin.xhtml
@@ -0,0 +1,116 @@
+<!DOCTYPE composition PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN"
+        "http://www.w3.org/TR/xhtml1/DTD/xhtml1-transitional.dtd">
+<ui:composition xmlns="http://www.w3.org/1999/xhtml"
+		xmlns:f="http://xmlns.jcp.org/jsf/core"
+                xmlns:ui="http://xmlns.jcp.org/jsf/facelets"
+                xmlns:h="http://xmlns.jcp.org/jsf/html"
+                template="/WEB-INF/incl/layout/template.xhtml">
+    <f:metadata>
+        <f:viewAction action="#{authenticator.prepareAuthenticationForStep}" if="#{not identity.loggedIn}"/>
+    </f:metadata>
+
+    <ui:define name="head">
+        <style type="text/css">
+            .login-panel {
+                border-style: solid;
+                border-width: 1px;
+                padding: 1px;
+                background-color: #FFFFFF;
+                border-color: #C4C0B9;
+            }
+
+            .login-panel-header {
+                background-color: #D4CFC7;
+                background-image: url("#{oxAuthConfigurationService.getImgLocation()}/panel_header_bg.png");
+                background-position: left top;
+                background-repeat: repeat-x;
+                border-style: solid;
+                border-width: 1px;
+                padding: 2px;
+                border-color: #D4CFC7;
+                color: #000000;
+                font-family: Arial, Verdana, sans-serif;
+                font-size: 11px;
+                font-weight: bold;
+            }
+
+            .login-panel-body {
+                padding: 10px;
+                color: #000000;
+                font-family: Arial, Verdana, sans-serif;
+                font-size: 11px;
+            }
+        </style>
+    </ui:define>
+
+    <ui:define name="pageTitle">#{msgs['wikid.pageTitle']}</ui:define>
+
+    <ui:define name="body">
+        <table border="0" align="center">
+            <tr>
+                <td>
+                    <div>
+                        <h:form id="loginForm">
+                            <h:panelGroup rendered="#{not identity.loggedIn}">
+                                <div class="login-panel">
+                                    <div class="login-panel-header">
+                                        <h:outputText value="#{msgs['login.login']}"/>
+                                    </div>
+                                    <div class="login-panel-body">
+                                        <ui:param name="client" value="#{clientService.getClient(identity.sessionId.sessionAttributes['client_id'])}" />
+
+                                        <h:panelGroup rendered='#{!empty client.getLogoUri()}'>
+                                            <h:graphicImage url='#{client.getLogoUri()}'/>
+                                        </h:panelGroup>
+
+                                        <p class="info">
+                                            <h:outputText value="#{msgs['login.pleaseLoginHere']}"/>
+                                        </p>
+
+                                        <div class="dialog">
+                                            <h:panelGrid columns="3" border="0" rowClasses="prop"
+                                                         columnClasses="name,value,hint">
+                                                <h:outputLabel for="passcode">#{msgs['wikid.oneTimePasscode']}</h:outputLabel>
+                                                <input name="passcode" type="text" autocomplete="off" />
+                                                <h:outputText value="#{msgs['wikid.oneTimePasscodeGenerated']}"/>
+                                            </h:panelGrid>
+                                        </div>
+
+                                        <h:panelGroup rendered='#{!empty client.getPolicyUri()}'>
+                                            <p>
+                                                <h:outputText value="#{msgs['common.agreePolicy']}"/>
+                                                <a target="_blank" href='#{client.getPolicyUri()}'>
+                                                    <h:outputText value="#{msgs['common.privacyPolicy']}"/>
+                                                </a>
+                                            </p>
+                                        </h:panelGroup>
+
+                                        <h:panelGroup rendered='#{!empty client.getTosUri()}'>
+                                            <p>
+                                                <h:outputText value="#{msgs['common.pleaseReadTheTos']}"/>
+                                                <a target="_blank" href='#{client.getTosUri()}'>
+                                                    <h:outputText value="#{msgs['common.termsOfService']}"/>
+                                                </a>
+                                            </p>
+                                        </h:panelGroup>
+
+                                        <div class="actionButtons">
+                                            <h:commandButton id="loginButton"
+                                                             value="#{msgs['login.login']}"
+                                                             action="#{authenticator.authenticate}"/>
+                                        </div>
+                                    </div>
+                                </div>
+                            </h:panelGroup>
+                        </h:form>
+                    </div>
+                </td>
+            </tr>
+        </table>
+        <script type="text/javascript">
+            window.onload = function() {
+                document.getElementById("loginForm:username").focus();
+            };
+        </script>
+    </ui:define>
+</ui:composition>
\ No newline at end of file
diff --git a/oxAuth/Server/src/main/webapp/auth/wikid/wikidregister.xhtml b/oxAuth/Server/src/main/webapp/auth/wikid/wikidregister.xhtml
new file mode 100644
index 00000000..13cd1768
--- /dev/null
+++ b/oxAuth/Server/src/main/webapp/auth/wikid/wikidregister.xhtml
@@ -0,0 +1,116 @@
+<!DOCTYPE composition PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN"
+        "http://www.w3.org/TR/xhtml1/DTD/xhtml1-transitional.dtd">
+<ui:composition xmlns="http://www.w3.org/1999/xhtml"
+		xmlns:f="http://xmlns.jcp.org/jsf/core"
+                xmlns:ui="http://xmlns.jcp.org/jsf/facelets"
+                xmlns:h="http://xmlns.jcp.org/jsf/html"
+                template="/WEB-INF/incl/layout/template.xhtml">
+    <f:metadata>
+        <f:viewAction action="#{authenticator.prepareAuthenticationForStep}" if="#{not identity.loggedIn}"/>
+    </f:metadata>
+
+    <ui:define name="head">
+        <style type="text/css">
+            .login-panel {
+                border-style: solid;
+                border-width: 1px;
+                padding: 1px;
+                background-color: #FFFFFF;
+                border-color: #C4C0B9;
+            }
+
+            .login-panel-header {
+                background-color: #D4CFC7;
+                background-image: url("#{oxAuthConfigurationService.getImgLocation()}/panel_header_bg.png");
+                background-position: left top;
+                background-repeat: repeat-x;
+                border-style: solid;
+                border-width: 1px;
+                padding: 2px;
+                border-color: #D4CFC7;
+                color: #000000;
+                font-family: Arial, Verdana, sans-serif;
+                font-size: 11px;
+                font-weight: bold;
+            }
+
+            .login-panel-body {
+                padding: 10px;
+                color: #000000;
+                font-family: Arial, Verdana, sans-serif;
+                font-size: 11px;
+            }
+        </style>
+    </ui:define>
+
+    <ui:define name="pageTitle">#{msgs['wikid.pageTitle']}</ui:define>
+
+    <ui:define name="body">
+        <table border="0" align="center">
+            <tr>
+                <td>
+                    <div>
+                        <h:form id="loginForm">
+                            <h:panelGroup rendered="#{not identity.loggedIn}">
+                                <div class="login-panel">
+                                    <div class="login-panel-header">
+                                        <h:outputText value="Register token"/>
+                                    </div>
+                                    <div class="login-panel-body">
+                                        <ui:param name="client" value="#{clientService.getClient(identity.sessionId.sessionAttributes['client_id'])}" />
+
+                                        <h:panelGroup rendered='#{!empty client.getLogoUri()}'>
+                                            <h:graphicImage url='#{client.getLogoUri()}'/>
+                                        </h:panelGroup>
+
+                                        <p class="info">
+                                            <h:outputText value="#{msgs['login.pleaseLoginHere']}"/>
+                                        </p>
+
+                                        <div class="dialog">
+                                            <h:panelGrid columns="3" border="0" rowClasses="prop"
+                                                         columnClasses="name,value,hint">
+                                                <h:outputLabel for="regcode">#{msgs['wikid.registrationCode']}</h:outputLabel>
+                                                <input name="regcode" type="text" autocomplete="off" />
+                                                <h:outputText value="#{msgs['wikid.codeGeneratedDuringToken']}"/>
+                                            </h:panelGrid>
+                                        </div>
+
+                                        <h:panelGroup rendered='#{!empty client.getPolicyUri()}'>
+                                            <p>
+                                                <h:outputText value="#{msgs['common.agreePolicy']}"/>
+                                                <a target="_blank" href='#{client.getPolicyUri()}'>
+                                                    <h:outputText value="#{msgs['common.privacyPolicy']}"/>
+                                                </a>
+                                            </p>
+                                        </h:panelGroup>
+
+                                        <h:panelGroup rendered='#{!empty client.getTosUri()}'>
+                                            <p>
+                                                <h:outputText value="#{msgs['common.pleaseReadTheTos']}"/>
+                                                <a target="_blank" href='#{client.getTosUri()}'>
+                                                    <h:outputText value="#{msgs['common.termsOfService']}"/>
+                                                </a>
+                                            </p>
+                                        </h:panelGroup>
+
+                                        <div class="actionButtons">
+                                            <h:commandButton id="loginButton"
+                                                             value="#{msgs['login.login']}"
+                                                             action="#{authenticator.authenticate}"/>
+                                        </div>
+                                    </div>
+                                </div>
+                            </h:panelGroup>
+                        </h:form>
+                    </div>
+                </td>
+            </tr>
+        </table>
+        <script type="text/javascript">
+            window.onload = function() {
+                document.getElementById("loginForm:username").focus();
+            };
+        </script>
+    </ui:define>
+</ui:composition>
\ No newline at end of file
diff --git a/oxAuth/Server/src/main/webapp/authorize.xhtml b/oxAuth/Server/src/main/webapp/authorize.xhtml
new file mode 100644
index 00000000..95489f04
--- /dev/null
+++ b/oxAuth/Server/src/main/webapp/authorize.xhtml
@@ -0,0 +1,59 @@
+<?xml version="1.0" encoding="UTF-8"?>
+<!DOCTYPE composition PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN"
+		"http://www.w3.org/TR/xhtml1/DTD/xhtml1-transitional.dtd">
+<ui:composition xmlns="http://www.w3.org/1999/xhtml"
+				xmlns:f="http://xmlns.jcp.org/jsf/core"
+				xmlns:ui="http://xmlns.jcp.org/jsf/facelets"
+				xmlns:h="http://xmlns.jcp.org/jsf/html"
+				template="/WEB-INF/incl/layout/authorize-extended-template.xhtml">
+
+	<f:metadata>
+		<f:viewAction action="#{authorizeAction.checkUiLocales}" />
+		<f:viewAction action="#{authorizeAction.checkPermissionGranted}" />
+
+		<!-- OAuth 2.0 request parameters -->
+		<f:viewParam name="scope" value="#{authorizeAction.scope}" />
+		<f:viewParam name="response_type" value="#{authorizeAction.responseType}" />
+		<f:viewParam name="client_id" value="#{authorizeAction.clientId}" />
+		<f:viewParam name="redirect_uri" value="#{authorizeAction.redirectUri}" />
+		<f:viewParam name="state" value="#{authorizeAction.state}" />
+
+		<!-- OpenID Connect request parameters -->
+		<f:viewParam name="response_mode" value="#{authorizeAction.responseMode}" />
+		<f:viewParam name="nonce" value="#{authorizeAction.nonce}" />
+		<f:viewParam name="display" value="#{authorizeAction.display}" />
+		<f:viewParam name="prompt" value="#{authorizeAction.prompt}" />
+		<f:viewParam name="max_age" value="#{authorizeAction.maxAge}" />
+		<f:viewParam name="ui_locales" value="#{authorizeAction.uiLocales}" />
+		<f:viewParam name="id_token_hint" value="#{authorizeAction.idTokenHint}" />
+		<f:viewParam name="login_hint" value="#{authorizeAction.loginHint}" />
+		<f:viewParam name="acr_values" value="#{authorizeAction.acrValues}" />
+		<f:viewParam name="amr_values" value="#{authorizeAction.amrValues}" />
+		<f:viewParam name="request" value="#{authorizeAction.request}" />
+		<f:viewParam name="request_uri" value="#{authorizeAction.requestUri}" />
+		<f:viewParam name="code_challenge" value="#{authorizeAction.codeChallenge}" />
+		<f:viewParam name="code_challenge_method" value="#{authorizeAction.codeChallengeMethod}" />
+		<f:viewParam name="claims" value="#{authorizeAction.claims}" />
+
+		<!-- CIBA request parameter -->
+		<f:viewParam name="auth_req_id" value="#{authorizeAction.authReqId}" />
+		<f:viewParam name="binding_message" value="#{authorizeAction.bindingMessage}" />
+
+		<!-- custom oxAuth parameters -->
+		<f:viewParam name="session_id" value="#{authorizeAction.sessionId}" />
+	</f:metadata>
+
+	<ui:param name="_client" value="#{clientService.getClient(request.getParameter('client_id'))}" />
+	<ui:param name="_scopes" value="#{authorizeAction.scopes}" />
+	<ui:param name="_requestedClaims" value="#{authorizeAction.requestedClaims}" />
+
+    <ui:define name="controlButttons">
+		<h:commandLink id="doNotAllowButton"  class="button button-default"
+					   value="#{msgs['authorize.doNotAllow']}"
+					   action="#{authorizeAction.permissionDenied}" />&nbsp;
+		<h:commandLink id="allowButton" class="button button-primary"
+					   value="#{msgs['authorize.allow']}"
+					   action="#{authorizeAction.permissionGranted}" />
+	</ui:define>
+
+</ui:composition>
\ No newline at end of file
diff --git a/oxAuth/Server/src/main/webapp/authz/authorize.xhtml b/oxAuth/Server/src/main/webapp/authz/authorize.xhtml
new file mode 100644
index 00000000..a3dfe21e
--- /dev/null
+++ b/oxAuth/Server/src/main/webapp/authz/authorize.xhtml
@@ -0,0 +1,25 @@
+<?xml version="1.0" encoding="UTF-8"?>
+<!DOCTYPE composition PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN"
+		"http://www.w3.org/TR/xhtml1/DTD/xhtml1-transitional.dtd">
+<ui:composition xmlns="http://www.w3.org/1999/xhtml"
+				xmlns:f="http://xmlns.jcp.org/jsf/core"
+				xmlns:ui="http://xmlns.jcp.org/jsf/facelets"
+				xmlns:h="http://xmlns.jcp.org/jsf/html"
+				template="/WEB-INF/incl/layout/authorize-extended-template.xhtml">
+	<f:metadata>
+        <f:viewAction action="#{consentGatherer.prepareForStep}"/>
+	</f:metadata>
+
+	<ui:param name="_client" value="#{consentGatherer.context.client}" />
+	<ui:param name="_scopes" value="#{consentGatherer.scopes}" />
+
+    <ui:define name="controlButttons">
+    	<h:commandLink id="doNotAllowButton" class="button button-default"
+				   value="#{msgs['authorize.doNotAllow']}"
+				   action="#{consentGatherer.authorize}" />&nbsp;
+		<h:commandLink id="allowButton" class="button button-primary"
+				   value="#{msgs['authorize.allow']}"
+				   action="#{consentGatherer.authorize}" />
+	</ui:define>
+
+</ui:composition>
\ No newline at end of file
diff --git a/oxAuth/Server/src/main/webapp/authz/transaction.xhtml b/oxAuth/Server/src/main/webapp/authz/transaction.xhtml
new file mode 100644
index 00000000..47c99994
--- /dev/null
+++ b/oxAuth/Server/src/main/webapp/authz/transaction.xhtml
@@ -0,0 +1,25 @@
+<?xml version="1.0" encoding="UTF-8"?>
+<!DOCTYPE composition PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN"
+		"http://www.w3.org/TR/xhtml1/DTD/xhtml1-transitional.dtd">
+<ui:composition xmlns="http://www.w3.org/1999/xhtml"
+				xmlns:f="http://xmlns.jcp.org/jsf/core"
+				xmlns:ui="http://xmlns.jcp.org/jsf/facelets"
+				xmlns:h="http://xmlns.jcp.org/jsf/html"
+				template="/WEB-INF/incl/layout/authorize-extended-template.xhtml">
+	<f:metadata>
+        <f:viewAction action="#{consentGatherer.prepareForStep}"/>
+	</f:metadata>
+
+	<ui:param name="_client" value="#{consentGatherer.context.client}" />
+	<ui:param name="_request" value="#{consentGatherer.context.pageAttributes['consent_request']}" />
+
+    <ui:define name="controlButttons">
+    	<h:commandLink id="doNotAllowButton" class="button button-default"
+				   value="#{msgs['authorize.doNotAllow']}"
+				   action="#{consentGatherer.authorize}" />&nbsp;
+		<h:commandLink id="allowButton" class="button button-primary"
+				   value="#{msgs['authorize.allow']}"
+				   action="#{consentGatherer.authorize}" />
+	</ui:define>
+
+</ui:composition>
\ No newline at end of file
diff --git a/oxAuth/Server/src/main/webapp/casa/bioid-template.xhtml b/oxAuth/Server/src/main/webapp/casa/bioid-template.xhtml
new file mode 100644
index 00000000..3a4e8242
--- /dev/null
+++ b/oxAuth/Server/src/main/webapp/casa/bioid-template.xhtml
@@ -0,0 +1,75 @@
+<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN"
+                "http://www.w3.org/TR/xhtml1/DTD/xhtml1-transitional.dtd">
+<html xmlns="http://www.w3.org/1999/xhtml"
+      xmlns:ui="http://xmlns.jcp.org/jsf/facelets"
+      xmlns:f="http://xmlns.jcp.org/jsf/core"
+      xmlns:h="http://xmlns.jcp.org/jsf/html">
+<f:view transient="true" locale="#{language.locale}">
+    <h:head>
+        <meta http-equiv="Content-Type" content="text/html; charset=UTF-8"/>
+        <title>BWS Unified User Interface</title>
+       
+			<meta name="viewport" content="width=device-width, initial-scale=1.0, maximum-scale=1.0" />
+			<!--link rel="icon" href="${identity.getWorkingParameter('casa_faviconUrl')}" /-->
+			<link rel="icon" href="#{request.contextPath}/servlet/favicon" type='image/x-icon' />
+			<script src="${identity.getWorkingParameter('casa_contextPath')}/scripts/jquery-3.4.1.min.js" />
+			<script src="${identity.getWorkingParameter('casa_contextPath')}/scripts/platform.js" />
+
+			<!-- order of stylesheets is important, do not change -->
+			<link rel="stylesheet" href="${identity.getWorkingParameter('casa_contextPath')}/styles/bootstrap.min.css" />
+			<link rel="stylesheet" href="${identity.getWorkingParameter('casa_contextPath')}${identity.getWorkingParameter('casa_prefix')}/styles/gluu/style.css" />
+			<link rel="stylesheet" href="${identity.getWorkingParameter('casa_contextPath')}/styles/tachyons.min.css" />
+
+			<!-- load custom branding css snippets -->
+			<style>${identity.getWorkingParameter('casa_extraCss')}</style>
+			<style>
+				.focused-label-big {
+					top: 0;
+					left: 0;
+					right: 0; 
+					display: flex;
+					align-items: center;
+					position: absolute;
+					font-size: .9rem;
+					cursor: text;
+					transition: .2s ease-in-out;
+					box-sizing: border-box;
+					height: .6rem;
+					width: 100%;
+					pointer-events: none;
+					margin-top: .25rem;
+				}
+				.focused-text:valid + .focused-label-big,
+				.focused-text:focus + .focused-label-big {
+					top: -28px;
+					font-size: .7rem;
+					color: #15b565;
+				}
+				.media img {
+					width: 54px;
+					height: 54px;
+					border: 1px solid #dfdfdf;
+					background-color: #e7e7e7;
+					border-radius: 50%;
+				}
+				.mh-3r {
+					max-height: 3rem;
+				}
+			</style>
+
+			
+       	<script src="${identity.getWorkingParameter('casa_contextPath')}/scripts/gluu/main-util.js" />
+        <ui:insert name="head"/>
+    </h:head>
+    <h:body>
+        <div class="body">
+        	
+
+			<h:messages id="messages" globalOnly="true" styleClass="message"
+                        errorClass="errormsg" infoClass="infomsg" warnClass="warnmsg"
+                        rendered="#{showGlobalMessages != 'false'}"/>
+            <ui:insert name="body"/>
+        </div>
+    </h:body>
+</f:view>
+</html>
\ No newline at end of file
diff --git a/oxAuth/Server/src/main/webapp/casa/bioid.xhtml b/oxAuth/Server/src/main/webapp/casa/bioid.xhtml
new file mode 100644
index 00000000..7075329e
--- /dev/null
+++ b/oxAuth/Server/src/main/webapp/casa/bioid.xhtml
@@ -0,0 +1,1045 @@
+<!DOCTYPE composition PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN"
+		"http://www.w3.org/TR/xhtml1/DTD/xhtml1-transitional.dtd">
+<ui:composition xmlns="http://www.w3.org/1999/xhtml"
+	xmlns:f="http://xmlns.jcp.org/jsf/core"
+	xmlns:ui="http://xmlns.jcp.org/jsf/facelets"
+	xmlns:h="http://xmlns.jcp.org/jsf/html"
+	template="/casa/bioid-template.xhtml">
+
+	<f:metadata>
+		<f:viewAction action="#{authenticator.prepareAuthenticationForStep}"
+			if="#{not identity.loggedIn}" />
+	</f:metadata>
+
+	<ui:define name="head">
+		<meta charset="utf-8" />
+
+		<link href="../auth/bioid/css/uui.css" rel="stylesheet" />
+
+	</ui:define>
+	<ui:define name="pageTitle">
+		BWS Unified User Interface
+	</ui:define>
+
+	<ui:define name="body">
+
+		<header class="header"> <img class="logo"
+			src="../auth/bioid/images/logo.svg" alt="BioID Logo" />
+		<div id="uuititle" class="title" data-res="titleVerification"></div>
+		</header>
+		<section id="bioid_casa"> <main class="main"> <section
+			id="uuiintroduction" class="hidden">
+		<div class="intro-title mb-3" data-res="introductionTitle">How
+			it works</div>
+		<div class="row">
+			<div class="col col-right-border">
+				<div class="col-fix-size float-right">
+					<div class="intro-subtitle" data-res="introductionStep1">Step
+						1</div>
+					<div class="intro-description" data-res="introductionStep1Desc1">Before
+						you start</div>
+					<div class="intro-description" data-res="introductionStep1Desc2">
+						come closer to the camera</div>
+					<div class="row">
+						<div class="col m-3">
+							<div class="center">
+								<div class="red center" data-res="introductionTooFarAway">Too
+									far away!</div>
+								<img src="../auth/bioid/images/toofaraway.png" />
+							</div>
+						</div>
+						<div class="col m-3">
+							<div class="center">
+								<div class="red center" data-res="introductionTooClose">Too
+									close!</div>
+								<img src="../auth/bioid/images/tooclose.png" />
+							</div>
+						</div>
+					</div>
+					<div class="row">
+						<div class="col m-3">
+							<div class="center">
+								<div class="blue center" data-res="introductionPerfect">Perfect!</div>
+								<img src="../auth/bioid/images/perfect.png" />
+							</div>
+						</div>
+					</div>
+				</div>
+			</div>
+			<div class="col">
+				<div class="col-fix-size float-left">
+					<div class="intro-subtitle" data-res="introductionStep2">Step
+						2</div>
+					<div class="intro-description" data-res="introductionStep2Desc1">For
+						Liveness Detection</div>
+					<div class="intro-description" data-res="introductionStep2Desc2">
+						nod your head slightly</div>
+					<div class="row mt-3">
+						<div class="col">
+							<div class="center m-3">
+								<video src="../auth/bioid/video/nodyourhead.mp4" class="demo-video"
+									autoplay="autoplay" playsinline="playsinline" loop="loop"
+									muted="muted" oncontextmenu="return false;"></video>
+							</div>
+						</div>
+					</div>
+					<div class="row">
+						<div class="col mt-3">
+							<div class="intro-attention blue"
+								data-res="introductionDontMoveDevice">
+								<strong>Please don't move the device!</strong>
+							</div>
+						</div>
+					</div>
+				</div>
+			</div>
+		</div>
+		
+		<div class="row center m-3">
+			<div class="col mb-5">
+				<button onclick="showIntroduction(false)"
+					class="button button-accept" data-res="buttonReadyToStart">I'm
+					ready to start</button>
+			</div>
+		</div>
+		</section> <section id="uuiwebapp" class="hidden">
+		<div class="row">
+			<div class="col center">
+				<div id="uuiinstruction" class="instruction transparent-background"></div>
+			</div>
+		</div>
+		<div class="row ">
+			
+			<div class="col center">
+				<h:form method="post" id="bioIDForm">
+					<h:commandButton id="enrollButton" value="Enroll Action"
+						style="display:none" action="#{authenticator.authenticate}" />
+				</h:form>
+				<a id="alter_link" href="javascript:showAlternative('bioid_casa')"
+				class="green hover-green f7-cust">#{msgs['casa.alternative']}</a>
+				<button id="uuistart" class="button" data-res="buttonStart">START</button>
+				
+				
+			</div>
+		</div>
+		<div class="row">
+			<div class="col center m-3">
+				<div id="uuiliveview" class="liveview">
+					<div id="uuihead" class="head"></div>
+					<canvas id="uuicanvas" class="canvasview"></canvas>
+				</div>
+				<video id="livevideo" class="live" autoplay="autoplay"
+					playsinline="playsinline" oncontextmenu="return false;"></video>
+			</div>
+		</div>
+		<div class="row">
+			<div class="col center">
+				<div id="uuistatus" class="modal">
+					<div id="uuimessage"></div>
+					<div class="modal-footer">
+						<button id="uuiok" class="button button-ok">OK</button>
+					</div>
+				</div>
+			</div>
+		</div>
+		<div id="uuisingleupload" class="uploadstatus-single">
+			<!-- status images for up to 4 recordings -->
+			<div id="uuiimage1" class="image">
+				<div id="uuiwait1" class="spinner spinner-wait"></div>
+				<div id="uuiupload1" class="spinner spinner-upload"
+					data-res="uploadInfo">Uploading...</div>
+				<img id="uuiuploaded1" class="image-uploaded" />
+				<div id="uuiprogress1" class="progress-single">
+					<div id="uuiprogressbar1" class="progressbar"></div>
+				</div>
+			</div>
+			<div id="uuiimage2" class="image">
+				<div id="uuiwait2" class="spinner spinner-wait"></div>
+				<div id="uuiupload2" class="spinner spinner-upload"
+					data-res="uploadInfo">Uploading...</div>
+				<img id="uuiuploaded2" class="image-uploaded" />
+				<div id="uuiprogress2" class="progress-single">
+					<div id="uuiprogressbar2" class="progressbar"></div>
+				</div>
+			</div>
+			<div id="uuiimage3" class="image">
+				<div id="uuiwait3" class="spinner spinner-wait"></div>
+				<div id="uuiupload3" class="spinner spinner-upload"
+					data-res="uploadInfo">Uploading...</div>
+				<img id="uuiuploaded3" class="image-uploaded" />
+				<div id="uuiprogress3" class="progress-single">
+					<div id="uuiprogressbar3" class="progressbar"></div>
+				</div>
+			</div>
+			<div id="uuiimage4" class="image">
+				<div id="uuiwait4" class="spinner spinner-wait"></div>
+				<div id="uuiupload4" class="spinner spinner-upload"
+					data-res="uploadInfo">Uploading...</div>
+				<img id="uuiuploaded4" class="image-uploaded" />
+				<div id="uuiprogress4" class="progress-single">
+					<div id="uuiprogressbar4" class="progressbar"></div>
+				</div>
+			</div>
+		</div>
+		<div id="uuicompactupload" class="uploadstatus-compact">
+			<div id="uuiprogresscompact" class="progress-compact">
+				<div id="uuiprogressbarcompact" class="progressbar"></div>
+			</div>
+		</div>
+		</section> <section id="uuisplash" class="hidden">
+		<div class="row mt-9 d-flex justify-content-center">
+			<div class="col-8">
+				<div id="uuiprompt" class="promt">
+					<p data-res="prompt" class="mt-9"></p>
+					<p id="uuierror" class="alert-danger"></p>
+					
+				</div>
+			</div>
+		</div>
+		
+		</section>
+		
+		
+		 </main> </section>
+		<div class="row mt-9 d-flex justify-content-center h-100">
+			
+			<div class="my-auto">
+			<ui:include src="/casa/casa.xhtml" />
+			</div>
+		</div>
+		<script src="../auth/bioid/js/jquery-3.5.1.min.js"></script>
+		<script src="../auth/bioid/js/getUserMedia.min.js"></script>
+		<script src="../auth/bioid/js/bws.capture.js"></script>
+		<script src="../auth/bioid/js/three.min.js"></script>
+		<script src="../auth/bioid/js/objLoader.min.js"></script>
+		<script type="text/javascript">
+		//<![CDATA[
+
+        var token = '${identity.getWorkingParameter('access_token')}';
+        var returnURL = 'madhu-ubu16.infinity.com';
+        var state = '${identity.getWorkingParameter('state')}';
+        var apiurl = 'https://bws.bioid.com/extension/';
+        var task = '${identity.getWorkingParameter('bioID_auth_method')}';;
+        
+        var trait = "Face,Periocular";
+        var executions = 3;
+        var recordings = 4;
+        var threshold = 50;
+        
+        var challengeResponse = false;
+        
+        var challenges = "[]";
+        var maxHeight = 320;
+		var skipIntro = true;
+			
+		$(function() {
+			initialize();
+
+			$('#uuicancel').attr(
+					'href',
+					returnURL + '?error=user_abort&access_token=' + token
+							+ '&state=' + state);
+			$('#uuiskip').attr(
+					'href',
+					returnURL + '?error=user_skip&access_token=' + token
+							+ '&state=' + state);
+
+			if (task === 'verification') {
+				$('#uuimobileapp').attr(
+						'href',
+						'bioid-verify://?access_token=' + token
+								+ '&return_url=' + returnURL + '&state='
+								+ state);
+			} else if (task === 'enrollment') {
+				$('#uuimobileapp').attr(
+						'href',
+						'bioid-enroll://?access_token=' + token
+								+ '&return_url=' + returnURL + '&state='
+								+ state);
+			}
+
+			$('#uuiinstruction').attr('data-res', 'UserInstruction-CloseUp');
+
+			$('#uuimobileapp').click(function() {
+				$('#uuimobileapp').hide();
+			});
+
+			//if (skipIntro) {
+				showIntroduction(false);
+			/*} else {
+				showIntroduction(true);
+			} */
+		});
+		
+	     // BWS capture jQuery plugin
+        var bwsCapture = null;
+
+        // counter for current execution
+        var currentExecution = 0;
+
+        var currentTag = '';
+        var parentTag = '';
+
+        // enrollment without challenge response
+        var enrollmentTags = ['left', 'right', 'right', 'left', 'up', 'down', 'down', 'up'];
+        var predefinedTags = ['left', 'right', 'up', 'down'];
+
+        // map for the compact upload
+        var progressMap = new Map();
+
+        // localized messages (english defaults, might get overloaded in
+		// initialize())
+        var localizedData = {
+              "titleEnrollment": "Enrollment",
+              "titleVerification": "Verification",
+              "titleIdentification": "Identification",
+              "titleLiveDetection": "Liveness Detection",
+
+              "introductionTitle": "How it works",
+              "introductionStep1": "Step 1",
+              "introductionStep1Desc1": "Before you start",
+              "introductionStep1Desc2": "come closer to the camera",
+              "introductionTooFarAway": "Too far away!",
+              "introductionTooClose": "Too close!",
+              "introductionPerfect": "Perfect!",
+              "introductionStep2": "Step 2",
+              "introductionStep2Desc1": "For Liveness Detection",
+              "introductionStep2Desc2": "nod your head slightly",
+              "introductionDontMoveDevice": "Please don't move the device!",
+              "introductionDontShowAgain": "GOT IT! Don't show the instruction again",
+
+              "buttonCancel": "back",
+              "buttonCancel.title": "Abort and navigate back to caller",
+              "buttonReadyToStart": "I'm ready to start",
+              "buttonContinue": "Skip biometrics",
+              "buttonMobileApp": "Start BioID app",
+
+              "prompt": "It seems like we don't have access to the camera. For performing biometric operations, please try the following:<br/>- Grant access to the camera.<br/>- Use a different browser (e.g. the most recent versions of Opera, Firefox, Chrome or Edge).",
+              "mobileapp": "If you have installed the BioID App on your mobile device, you can use this app for enrollment or verification.",
+
+              "uploadInfo": "Uploading...",
+
+              "capture-error": "We could not capture an image.<br />Sorry, but without access to the camera, facial recognition and liveness detection aren't possible!",
+              "nogetUserMedia": "Your browser does not support the HTML5 Media Capture and Streams API. Please use a different browser or the BioID mobile app.",
+              "permissionDenied": "Permission Denied!",
+              "webgl-error": "WebGL is disabled or unavailable. If possible activate WebGL or use another browser.",
+
+              "UserInstruction-CloseUp": "Come close before you start",
+              "UserInstruction-NodYourHead": "Please nod your head",
+              "UserInstruction-FollowMe": "Follow the blue head",
+              "UserInstruction-NoMovement": "Follow the head's movement",
+              "UserInstruction-PleaseWait": "Please wait",
+
+              "Perform-enrollment": "Training...",
+              "Perform-verification": "Verifying...",
+              "Perform-identification": "Identifying...",
+              "Perform-livenessdetection": "Processing...",
+
+              "NoMotionDetected": "We could not detect any motion.<br/>For Liveness Detection please nod your head slightly.",
+              "NoFaceFound": "We could not find a suitable face.<br/>Come close and look straight before you start.",
+              "MultipleFacesFound": "We found multiple faces or a strongly uneven background distracted us.<br/>Your face should fill the circle completely.",
+              "LiveDetectionFailed": "Liveness Detection failed.<br/>Look straight into the camera, then nod your head slightly.<br/>Please ensure constant lighting.",
+              "ChallengeResponseFailed": "Challenge-Response failed!<br/>Slowly follow the head's movement.",
+              "NotRecognized": "You have not been recognized!<br/>Please ensure constant lighting. For improving recognition, please enroll again."
+        };
+
+        /*
+		 * ----------------- Set button functionality
+		 * ------------------------------------------
+		 */
+
+
+        // jQuery - shortcut for $(document).ready()
+        // Document Object Model (DOM) is ready
+        
+
+        function showIntroduction(show) {
+            if (show) {
+                $('#uuiintroduction').show();
+            }
+            else {
+                $('#uuiintroduction').hide();
+                $('#uuiwepapp').show();
+                initCapture();
+
+                let checked = $('#introskip').prop("checked");
+                if (checked) {
+                    skipIntro = true;
+                    // set cookie (1 year) to skip the introduction for the next
+					// time
+                    // document.cookie =
+					// "BioIDSkipIntro=true;max-age=31536000;path=/";
+                }
+            }
+        }
+
+        function initCapture() {
+            // init BWS capture jQuery plugin (see bws.capture.js)
+            bwsCapture = bws.initcapture(document.getElementById('uuicanvas'), document.getElementById('livevideo'), token, {
+                apiurl: apiurl,
+                task: task,
+                trait: trait,
+                threshold: threshold,
+                challengeResponse: challengeResponse,
+                recordings: recordings,
+                maxheight: maxHeight
+            });
+            let success = initHead();
+            if (!success) {
+                $('#uuierror').html(formatText('webgl-error'));
+                $('#uuiskip').show();
+            }
+            else {
+                // and start everything
+                onStart();
+            }
+        }
+
+        // called from Start button and onStart to initiate a new recording
+        function startRecording() {
+          $('#uuistart').attr('disabled', 'disabled');
+          var tags = challengeResponse && challenges.length > currentExecution && challenges[currentExecution].length > 0 ? challenges[currentExecution] : [];
+          bwsCapture.startRecording(tags);
+        }
+
+        // called from Mirror button to mirror the captured image
+        function mirror() {
+            bwsCapture.mirror();
+        }
+
+
+        /*
+		 * ---------------- Localization of strings
+		 * ----------------------------------------------
+		 */
+
+
+        // localization of displayed strings
+        function localize() {
+            // loops through all HTML elements that must be localized.
+            let resourceElements = $('[data-res]');
+            for (let i = 0; i < resourceElements.length; i++) {
+                let element = resourceElements[i];
+                let resourceKey = $(element).attr('data-res');
+                if (resourceKey) {
+                    // Get all the resources that start with the key.
+                    for (let key in localizedData) {
+                        if (key.indexOf(resourceKey) === 0) {
+                            let value = localizedData[key];
+                            // Dot notation in resource key - assign the
+							// resource value to the elements property
+                            if (key.indexOf('.') > -1) {
+                                let attrKey = key.substring(key.indexOf('.') + 1);
+                                $(element).attr(attrKey, value);
+                            }
+                            // No dot notation in resource key, assign the
+							// resource value to the element's innerHTML.
+                            else if (key === resourceKey) {
+                                $(element).html(value);
+                            }
+                        }
+                    }
+                }
+            }
+        }
+
+        // localization and string formatting (additional arguments replace {0},
+		// {1}, etc. in localizedData[key])
+        function formatText(key) {
+            var formatted = key;
+            if (localizedData[key] !== undefined) {
+                formatted = localizedData[key];
+            }
+            for (let i = 1; i < arguments.length; i++) {
+                formatted = formatted.replace('{' + (i - 1) + '}', arguments[i]);
+            }
+            return formatted;
+        }
+        // jQuery - shortcut for $(document).ready()
+        // Document Object Model (DOM) is ready
+        $(function () {
+            initialize();
+
+            // set navigation for the buttons
+            $('#uuicancel').attr('href', returnURL + '?error=user_abort&access_token=' + token + '&state=' + state);
+            $('#uuiskip').attr('href', returnURL + '?error=user_skip&access_token=' + token + '&state=' + state);
+
+            // set url for the BioID mobile app
+            if (task === 'verification') {
+                $('#uuimobileapp').attr('href', 'bioid-verify://?access_token=' + token + '&return_url=' + returnURL + '&state=' + state);
+            }
+            else if (task === 'enrollment') {
+                $('#uuimobileapp').attr('href', 'bioid-enroll://?access_token=' + token + '&return_url=' + returnURL + '&state=' + state);
+            }
+
+            $('#uuiinstruction').attr('data-res', 'UserInstruction-CloseUp');
+
+            // hide button after first click
+            $('#uuimobileapp').click(function () {
+                $('#uuimobileapp').hide();
+            });
+
+            // Check if cookie is set
+            // let skipCookie = false;
+            // var cookie = document.cookie;
+            // if (cookie != "") {
+            // skipCookie = cookie.includes('true');
+            // }
+
+            if (skipIntro /* || skipCookie */) {
+                showIntroduction(false);
+            }
+            else {
+                showIntroduction(true);
+            }
+        });
+
+        /*
+		 * ----------------- Initialize BWS capture jQuery plugin
+		 * --------------------------------
+		 */
+
+
+        // initialize - load content in specific language and initialize bws
+		// capture
+        function initialize() {
+            // change title if task is enrollment
+            if (task === 'enrollment') {
+                $('#uuititle').attr('data-res', 'titleEnrollment');
+            }
+            // change title if task is identification
+            else if (task === 'identification') {
+                $('#uuititle').attr('data-res', 'titleIdentification');
+            }
+            else if (task === 'livenessdetection') {
+                $('#uuititle').attr('data-res', 'titleLiveDetection');
+            }
+
+            // try to get language info from the browser.
+            let userLangAttribute = navigator.language || navigator.userLanguage || navigator.browserLanguage || 'en';
+            let userLang = userLangAttribute.slice(0, 2);
+            // let userLocation = userLangAttribute.slice(-2) || 'us';
+
+            $.getJSON('./language/' + userLang + '.json').
+            done(function (data) {
+                console.log('Loaded the language-specific resource successfully');
+                localizedData = data;
+            }).fail(function (textStatus, error) {
+                console.log('Loading of language-specific resource failed with: ' + textStatus + ', ' + error);
+            }).always(function () {
+                localize();
+            });
+        }
+
+        /*
+		 * ------------------ Start BWS capture jQuery plugin
+		 * -----------------------------------
+		 */
+
+        // startup code
+        function onStart() {
+            bwsCapture.start(function () {
+                captureStarted();
+                $('#uuicanvas').show();
+            }, function (error) {
+
+                // hide uuiwebapp
+                $('#uuiwebapp').hide();
+
+                // show default information about general issues
+                $('#uuisplash').show();
+
+                // show button for continue without biometrics (skip biometric
+				// task)
+                $('#uuiskip').show();
+                // show button for BioID app (interapp communication)
+                if (task === 'verification' || task === 'enrollment') {
+                    $('#uuimobileapp').show();
+                }
+                if (error !== undefined) {
+                    // different browsers use different errors
+                    if (error.code === 1 || error.name === 'PermissionDeniedError') {
+                        // in the spec we find code == 1 and name ==
+						// PermissionDeniedError for the permission denied error
+                        $('#uuierror').html(formatText('capture-error', formatText('PermissionDenied')));
+                    } else {
+                        // otherwise try to print the error
+                        $('#uuierror').html(formatText('capture-error', error));
+                    }
+                } else {
+                    // no error info typically says that browser doesn't support
+					// getUserMedia
+                    $('#uuierror').html(formatText('nogetUserMedia'));
+                }
+            }, function (error, retry) {
+                // done
+                stopRecording();
+                currentExecution++;
+
+                if (error !== undefined && retry && currentExecution < executions) {
+                    console.log('Current Execution: ' + currentExecution);
+                } else {
+                    // done: redirect to caller ...
+                    let url = returnURL + '?access_token=' + token;
+                    if (error !== undefined) {
+                        url = url + '&error=' + error;
+                    }
+                    url = url + '&state=' + state + '&skipintro=' + skipIntro;
+                    window.location.replace(url);
+                }
+            }, function (status, message, dataURL) {
+                let $msg;
+                if (status === 'UploadProgress') {
+                        // for single upload status
+                        let id = message.id;
+                        let modId = ((id - 1) % 4) + 1;
+                        // for compact upload status
+                        let progresscompact = 0;
+                        progressMap.set(id, message.progress);
+                        progressMap.forEach(function (value) { return progresscompact += value });
+                        progresscompact = Math.ceil(progresscompact / recordings);
+                
+                        if (progresscompact > 100) {
+                            progresscompact = 100;
+                        }
+
+                        // css media query decision
+                        if ($('#uuisingleupload').is(':visible') == true) {
+                            $('#uuiprogress' + modId).show();
+                            $('#uuiprogressbar' + modId).width(message.progress + '%');
+                            // if the window size changed
+                            $('#uuiprogresscompact').hide();
+                        }
+                        else {
+                            $('#uuiprogresscompact').show();
+                            $('#uuiprogressbarcompact').width(progresscompact + '%');
+                        }
+                }
+                else if (status === 'DisplayTag') {
+                    setCurrentTag(message);
+                    $msg = $('#uuiinstruction');
+                    if (challengeResponse || task === 'enrollment') {
+                        $msg.html(formatText('UserInstruction-FollowMe'));
+                    }
+                    else {
+                        $msg.html(formatText('UserInstruction-NodYourHead'));
+                    }
+                    $msg.stop(true).fadeIn();
+                } else {
+                    // report a message on the screen
+                    let msg = formatText(status);
+
+                    // user instructions
+                    if (status.indexOf('UserInstruction') > -1) {
+                        $msg = $('#uuiinstruction');
+                        if (status === 'UserInstruction-Start') {
+                          let counter = recordings;
+                          if (counter > 4) {
+                            counter = 4;
+                          }
+                          for (let i = 1; i <= counter; i++) {
+                            $('#uuiuploaded' + i).hide();
+                            $('#uuiupload' + i).hide();
+                            $('#uuiwait' + i).show();
+                            $('#uuiimage' + i).show();
+                            $('#uuiprogress' + i).hide();
+                            $('#uuiprogressbar' + i).width(0);
+                          }
+                          progressMap.clear();
+                          $('#uuiprogresscompact').hide();
+                          $('#uuiprogressbarcompact').width(0);
+                          resetHeadDisplay();
+                        }
+                        else {
+                            $msg.html(msg);
+                            $msg.stop(true).fadeIn();
+                        }
+                    }
+
+                    // perform tasks
+                    if (status.indexOf('Perform') > -1 || status.indexOf('Retry') > -1) {
+                        // hide compact upload progress
+                        $('#uuiprogresscompact').hide();
+                    }
+
+                    // results of uploading or perform task
+                    if (status.indexOf('Failed') > -1 ||
+                        status.indexOf('NotRecognized') > -1 ||
+                        status.indexOf('NoFaceFound') > -1 ||
+                        status.indexOf('MultiFacesFound') > - 1) {
+
+                        changeLiveView(true);
+
+                        // show message
+                        $('#uuiinstruction').text('');
+                        $('#uuistatus').show();
+                        $msg = $('#uuimessage');
+                        $msg.html(formatText(msg));
+                        $msg.stop(true).fadeIn();
+                    }
+
+                    // display some animations/images depending on the status
+                    let uploaded = bwsCapture.getUploaded();
+                    let recording = uploaded + bwsCapture.getUploading();
+                    // use modulo calculation for images more than 4
+                    let modRecording = ((recording-1) % 4) + 1;
+                    let modUploaded = ((uploaded-1) % 4) + 1;
+
+                    if (status === 'Uploading') {
+                        // begin an upload - current image
+                        $('#uuiwait' + modRecording).hide();
+                        $('#uuiupload' + modRecording).show();
+                        $('#uuiuploaded' + modRecording).hide();
+
+                        // if uuiuploaded is not visible -> mobile view
+                        if (recording >= recordings) {
+                            $('#uuiinstruction').html(formatText('UserInstruction-PleaseWait'));
+                            changeLiveView(true);
+                        }
+                    } else if (status === 'Uploaded') {
+                        // successfull upload (we should have a dataURL)
+                        if (dataURL) {
+                            $('#uuiupload' + modUploaded).hide();
+                            $('#uuiprogress' + modUploaded).hide();
+                            let $image = $('#uuiuploaded' + modUploaded);
+                            $image.attr('src', dataURL);
+                            $image.show();
+                        }
+                    } else if (status === 'NoFaceFound' || status === 'MultipleFacesFound') {
+                        // upload failed
+                        recording++;
+                        modRecording = ((recording-1) % 4) + 1;
+                        $('#uuiupload' + modRecording).hide();
+                        $('#uuiwait' + modRecording).show();
+                    }
+                }
+            });
+        }
+
+        // switch between liveview and displayed messages
+        function changeLiveView(blur) {
+            if (blur) {
+                // hide head and blur canvas
+                hideHead();
+                $('#uuicanvas').css('filter', 'blur(10px)');
+                $('#uuiprogresscompact').hide();
+            }
+            else {
+                $('#uuicanvas').css('filter', 'none');
+                showHead();
+            }
+        }
+
+        // called by onStart to update GUI
+        function captureStarted() {
+            $('#uuiwebapp').show();
+            $('#uuimessage').show();
+            $('#uuiinstruction').show();
+
+            // Currently not neccessary - therefore the button is not shown!
+            // $('#uuimirror').show().click(mirror);
+
+            $('#uuistart').show().click(function () { startRecording(task === 'enrollment'); });
+
+
+            $('#uuiok').show().click(function () {
+                $('#uuistatus').hide();
+                $('#uuistart').prop('disabled', false);
+                $('#uuiinstruction').html(formatText('UserInstruction-CloseUp'));
+                changeLiveView(false);
+            });
+
+            setTimeout(function () { console.log('triggered showHead'); showHead(); }, 50);
+
+        }
+
+        // called from onStart when recording is done
+        function stopRecording() {
+            hideHead();
+
+            bwsCapture.stopRecording();
+
+            for (let i = 1; i <= 4; i++) {
+                $('#uuiimage' + i).hide();
+            }
+        }
+
+        /*
+		 * -------------------- Displaying head
+		 * ---------------------------------------------------
+		 */
+
+        var camera, scene, renderer, id;
+        var startTime;
+        var resetHead = false;
+        const maxVertical = 0.20;
+        const maxHorizontal = 0.25;
+
+        function initHead() {
+            // renderer
+            try {
+                renderer = new THREE.WebGLRenderer({ alpha: true });
+            }
+            catch (e) {
+                return false;
+            }
+
+            let container = document.getElementById('uuihead');
+            document.body.appendChild(container);
+
+            let width = $('#uuihead').width();
+            let height = $('#uuihead').height();
+            let uuihead = $('#uuihead');
+            $('#uuiliveview').append(uuihead);
+
+            // camera
+            camera = new THREE.PerspectiveCamera(20, width / height, 1, 1000);
+            camera.position.set(0, 0, 5.5);
+
+            // scene
+            scene = new THREE.Scene();
+            let ambientLight = new THREE.AmbientLight(0x4953FF, 0.4);
+            scene.add(ambientLight);
+            let pointLight = new THREE.PointLight(0x3067FF, 0.8);
+            camera.add(pointLight);
+            scene.add(camera);
+
+            // texture
+            let manager = new THREE.LoadingManager();
+            manager.onProgress = function (item, loaded, total) {
+                console.log(item, loaded, total);
+            };
+
+            // model
+            let onProgress = function (xhr) {
+                if (xhr.lengthComputable) {
+                    let percentComplete = xhr.loaded / xhr.total * 100;
+                    console.log(Math.round(percentComplete, 2) + '% downloaded');
+                }
+            };
+            let onError = function (xhr) {};
+            let loader = new THREE.OBJLoader(manager);
+            let material = new THREE.MeshLambertMaterial({ transparent: false, opacity: 0.8 });
+
+            loader.load('../auth/bioid/model/head.obj', function (head) {
+                head.traverse(function (child) {
+                    if (child instanceof THREE.Mesh) {
+                     // child.material = material;
+                    }
+                });
+                head.name = 'BioIDHead';
+                head.position.y = 0;
+                scene.add(head);
+            }, onProgress, onError);
+
+            renderer.setClearColor(0x000000, 0); // the default
+            renderer.setPixelRatio(window.devicePixelRatio);
+            renderer.setSize(width, height);
+
+            container.appendChild(renderer.domElement);
+            document.addEventListener('uuiresize', onHeadResize, false);
+
+            return true;
+        }
+
+        function onHeadResize() {
+          
+            let canvasWidth = parseInt($('#uuicanvas').width());
+            let canvasHeight = parseInt($('#uuicanvas').height());
+
+            $('#uuihead').css({ 'margin-top': -canvasHeight, 'margin-left': '0' });
+            $('#uuihead').attr('width', canvasWidth);
+            $('#uuihead').attr('height', canvasHeight + 50);
+			
+            camera.aspect = canvasWidth / canvasHeight;
+            camera.updateProjectionMatrix();
+            renderer.setSize(canvasWidth, canvasHeight);
+            renderer.render(scene, camera);
+        }
+
+        function resetHeadDisplay() {
+            currentTag = '';
+            parentTag = '';
+            resetHead = true;
+            cancelAnimationFrame(id);
+            $('.head').css('opacity', '0.6');
+        }
+
+        function setCurrentTag(tag) {
+            if (currentTag !== '') {
+                parentTag = currentTag;
+            }
+
+            currentTag = tag;
+            startTime = new Date().getTime();
+
+            if (currentTag === 'any' && task !== 'enrollment') {
+                constantAnimation();
+            }
+            else {
+                animateHead();
+                console.log('DisplayTag: ' + tag);
+            }
+        }
+
+        function constantAnimation() {
+            // change css class 'head'
+            $('.head').css('opacity', '0.8');
+
+            // animation time
+            let delta = 0.005;
+            let head = scene.getObjectByName('BioIDHead');
+            showHead();
+
+            let direction = 'down';
+            var animate = function () {
+
+                if (direction === 'up') {
+                    if (head.rotation.x >= -maxVertical) {
+                        head.rotation.x -= delta;
+                    }
+                    else {
+                        direction = 'down';
+                    }
+                }
+
+                if (direction === 'down') {
+                    if (head.rotation.x <= maxVertical) {
+                        head.rotation.x += delta;
+                    }
+                    else {
+                        direction = 'up';
+                    }
+                }
+
+                id = requestAnimationFrame(animate);
+                renderer.render(scene, camera);
+            };
+            animate();
+        }
+
+        function animateHead() {
+            // animation time
+            let speed = 0.000005;
+            let endTime = new Date().getTime();
+            let deltaTime = (endTime - startTime);
+            let delta = deltaTime * speed;
+
+            let head = scene.getObjectByName('BioIDHead');
+            let doAnimation = false;
+
+            if (head) {
+                if (resetHead) {
+                    // reset head rotation to center
+                    head.rotation.x = 0;
+                    head.rotation.y = 0;
+                    resetHead = false;
+                    doAnimation = true;
+                    // change css class 'head'
+                    $('.head').css('opacity', '0.8');
+                    showHead();
+                }
+                else {
+                    if (currentTag === 'any') {
+                        if (task === 'enrollment') {
+                            // get predefined direction for better enrollment
+                            let recording = bwsCapture.getUploaded() + bwsCapture.getUploading() - 1;
+                            currentTag = enrollmentTags[recording];
+                        }
+                        else {
+                            if (head.rotation.x >= -maxVertical && head.rotation.x <= 0) {
+                                head.rotation.x -= delta;
+                                doAnimation = true;
+                            }
+                            else {
+                                head.rotation.x += delta;
+                                doAnimation = true;
+                            }
+                        }
+                    }
+
+                    if (currentTag === 'down') {
+                        head.rotation.y = 0;
+                        if (parentTag === 'up') {
+                            if (head.rotation.x <= 0) {
+                                head.rotation.x += delta;
+                                doAnimation = true;
+                            }
+                        }
+                        else {
+                            if (head.rotation.x >= 0 && head.rotation.x < maxVertical) {
+                                head.rotation.x += delta;
+                                doAnimation = true;
+                            }
+                        }
+                    }
+                    else if (currentTag === 'up') {
+                        head.rotation.y = 0;
+                        if (parentTag === 'down') {
+                            if (head.rotation.x >= 0) {
+                                head.rotation.x -= delta;
+                                doAnimation = true;
+                            }
+                        }
+                        else {
+                            if (head.rotation.x >= -maxVertical && head.rotation.x <= 0) {
+                                head.rotation.x -= delta;
+                                doAnimation = true;
+                            }
+                        }
+                    }
+                    else if (currentTag === 'left') {
+                        head.rotation.x = 0;
+                        if (parentTag === 'right') {
+                            if (head.rotation.y >= 0) {
+                                head.rotation.y -= delta;
+                                doAnimation = true;
+                            }
+                        }
+                        else {
+                            if (head.rotation.y >= -maxHorizontal && head.rotation.y <= 0) {
+                                head.rotation.y -= delta;
+                                doAnimation = true;
+                            }
+                        }
+                    }
+                    else if (currentTag === 'right') {
+                        head.rotation.x = 0;
+                        if (parentTag === 'left') {
+                            if (head.rotation.y <= 0) {
+                                head.rotation.y += delta;
+                                doAnimation = true;
+                            }
+                        }
+                        else {
+                            if (head.rotation.y >= 0 && head.rotation.y <= maxHorizontal) {
+                                head.rotation.y += delta;
+                                doAnimation = true;
+                            }
+                        }
+                    }
+                }
+
+                if (doAnimation) {
+                    id = requestAnimationFrame(animateHead);
+                }
+                renderer.render(scene, camera);
+            }
+        }
+
+        function showHead() {
+
+            $('#uuihead').show();
+            onHeadResize();
+            console.log('showHead')
+        }
+
+        function hideHead() {
+            $('#uuihead').hide();
+            resetHeadDisplay();
+            console.log('hideHead');
+        }
+		//    	]]>
+	</script>
+	</ui:define>
+</ui:composition>
diff --git a/oxAuth/Server/src/main/webapp/casa/casa.xhtml b/oxAuth/Server/src/main/webapp/casa/casa.xhtml
new file mode 100644
index 00000000..130c4749
--- /dev/null
+++ b/oxAuth/Server/src/main/webapp/casa/casa.xhtml
@@ -0,0 +1,128 @@
+<div	xmlns:ui="http://xmlns.jcp.org/jsf/facelets"
+	xmlns:fn="http://xmlns.jcp.org/jsp/jstl/functions">
+
+	<section class="pa4 shadow-4 bg-blank gray cust-section dn" id="alternatives_section">
+
+		<h2 class="f3 dark-blue2">#{msgs['casa.alternative']}</h2>
+
+		<div class="pt3 mw6-ns">
+			<table class="table table-hover table-sm">
+				<tbody class="table-striped">
+					<ui:repeat value="${identity.getWorkingParameter('methods')}" var="method">
+						<tr class="pointer" onClick="javascript:submitAlternative('#{method}')">
+							<td class="w3 tc">
+								<div id="#{method}" class="f1 bsgreen" />
+							</td>
+							<td class="f7-cust">
+								<div class="pa2 w5">
+									<h3 class="f5 dark-blue2 mb0">#{msgs['casa.'.concat(method).concat('.title')]}</h3>
+									#{msgs['casa.'.concat(method).concat('.text')]}
+								</div>
+							</td>
+						</tr>
+					</ui:repeat>
+				</tbody>
+			</table>
+		</div>
+		<div class="pt2">
+			<input class="f7 bw0 br1 ph3 pv2 bg-orange2 white hover-bg-orange2 hover-white btn cust-misc-button"
+				onclick="hideAlternative()" type="button" value="#{msgs['casa.cancel']}" />
+		</div>
+
+		<form id="casa_form" action="#{request.contextPath}/postlogin.htm">
+			<input type="hidden" name="alternativeMethod" id="alternativeMethod"/>
+		</form>
+
+	</section>
+	<section class="pa4 shadow-4 bg-blank gray cust-section dn" id="cert_hint">
+		<div class="pt3 mw6-ns f7-cust">
+			<h3 class="f5 dark-blue2">#{msgs['casa.cert.precontinue']}</h3>
+			<ul>
+				<li class="pb2">#{msgs['casa.cert.hint_1']}</li>
+				<li class="pb2">#{msgs['casa.cert.hint_2']}</li>
+				<li class="pb2">#{msgs['casa.cert.hint_3']}</li>
+				<li>#{msgs['casa.cert.hint_4']}</li>
+			</ul>
+
+			<div class="pt2 tc">
+				<input class="f7 bw0 br1 ph3 pv2 bg-bsgreen-success white hover-bsgreen-success hover-white mr3 btn cust-primary-button" 
+					onclick="submitForm('cert')" type="button" value="#{msgs['casa.proceed']}" />
+
+				<input class="f7 bw0 br1 ph3 pv2 bg-orange2 white hover-bg-orange2 hover-white btn cust-misc-button"
+					onclick="restore()" type="button" value="#{msgs['casa.cancel']}" />
+			</div>
+		</div>
+	</section>
+	<script>
+		let duration = 500
+		var prev
+
+		function showAlternative(id) {
+			prev = id
+			$("#" + id).slideUp(duration, function() {
+				$("#alternatives_section").slideDown(duration, function() {
+				})
+			})
+		}
+
+		function hideAlternative() {
+			$("#alternatives_section").slideUp(duration, function() {
+				$("#" + prev).slideDown(duration, function() {
+				})
+			})
+		}
+
+		function submitAlternative(alternative) {
+			if (alternative == "cert") {
+				$("#alternatives_section").slideUp(duration, function() {
+					$("#cert_hint").slideDown(duration, function() {
+					})
+				})
+			} else {
+				submitForm(alternative)
+			}
+		}
+
+		function restore()  {
+			$("#cert_hint").slideUp(duration, function() {
+				$("#alternatives_section").slideDown(duration, function() {
+				})
+			})
+		}
+
+		function submitForm(alternative) {
+			let f = document.getElementById("casa_form")
+			f.alternativeMethod.value = alternative
+			f.submit()
+		}
+	</script>
+	<script src="${identity.getWorkingParameter('casa_contextPath')}/scripts/font-awesome-5.12.1.all.min.js" />
+	<script>
+		let icons = {
+				//See https://github.com/FortAwesome/Font-Awesome/issues/8668
+				"u2f" : '<span class="fa-layers fa-fw" style="bottom:-.6rem"> <i class="fas fa-tablet" data-fa-transform="shrink-1"></i> <i class="fas fa-mobile-alt" data-fa-transform="up-7 shrink-4"></i> <i class="fas fa-stream" data-fa-transform="rotate--90 up-9 shrink-12"></i> </span>',
+				"fido2" : '<span class="fa-layers fa-fw" style="bottom:-.6rem"> <i class="fas fa-tablet" data-fa-transform="shrink-1"></i> <i class="fas fa-mobile-alt" data-fa-transform="up-7 shrink-4"></i> <i class="fas fa-stream" data-fa-transform="rotate--90 up-9 shrink-12"></i> </span>',
+				"super_gluu" : '<i class="far fa-bell" />',
+				"otp" : '<i class="fas fa-qrcode" />',
+				"twilio_sms" : '<i class="fas fa-sms" />',
+				"smpp" : '<i class="fas fa-sms" />',
+				"duo" : '<i class="fas fa-mobile-alt" />',
+				"bioid" : '<i class="fas fa-camera" />',
+				"cert" : '<span class="fa-layers fa-fw mr1 nl3" style="top:-.3rem"> <i class="far fa-circle" data-fa-transform="shrink-4 up-3 right-4"></i> <i class="far fa-circle" data-fa-transform="shrink-5 up-3 right-4"></i> <i class="far fa-circle" data-fa-transform="shrink-6 up-3 right-4"></i> <i class="fas fa-bookmark" data-fa-transform="rotate-30 shrink-9 down-4"></i> <i class="fas fa-bookmark" data-fa-transform="rotate--30 shrink-9 down-4 right-8"></i> </span>',
+				"stytch" : '<i class="fas fa-sms" />',
+				"email_2fa" : '<i class="fas fa-envelope" />'
+			}
+
+		for (let k in icons) {
+			let elem = $("#" + k)
+			if (elem.length == 1) {
+				elem.html(icons[k])
+			}
+		}
+		
+		if (${identity.getWorkingParameter('methods').size() eq 0}) {
+			$("#alter_link").addClass("dn")
+		}
+	</script>
+
+</div>
diff --git a/oxAuth/Server/src/main/webapp/casa/cert.xhtml b/oxAuth/Server/src/main/webapp/casa/cert.xhtml
new file mode 100644
index 00000000..49750fef
--- /dev/null
+++ b/oxAuth/Server/src/main/webapp/casa/cert.xhtml
@@ -0,0 +1,13 @@
+<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN"
+        "http://www.w3.org/TR/xhtml1/DTD/xhtml1-transitional.dtd">
+
+<html xmlns="http://www.w3.org/1999/xhtml"
+      xmlns:f="http://xmlns.jcp.org/jsf/core">
+
+<f:view transient="true" contentType="text/html">
+    <f:metadata>
+        <f:viewAction action="#{authenticator.prepareAuthenticationForStep}" if="#{not identity.loggedIn}" />
+    </f:metadata>
+</f:view>
+
+</html>
diff --git a/oxAuth/Server/src/main/webapp/casa/duologin.xhtml b/oxAuth/Server/src/main/webapp/casa/duologin.xhtml
new file mode 100644
index 00000000..f239cb1d
--- /dev/null
+++ b/oxAuth/Server/src/main/webapp/casa/duologin.xhtml
@@ -0,0 +1,70 @@
+<!DOCTYPE composition PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN"
+        "http://www.w3.org/TR/xhtml1/DTD/xhtml1-transitional.dtd">
+<ui:composition xmlns="http://www.w3.org/1999/xhtml"
+	xmlns:f="http://xmlns.jcp.org/jsf/core"
+	xmlns:ui="http://xmlns.jcp.org/jsf/facelets"
+	xmlns:b="http://bootsfaces.net/ui"
+	xmlns:h="http://xmlns.jcp.org/jsf/html"
+	template="/casa/fullwidth-template.xhtml">
+	<f:metadata>
+		<f:viewAction action="#{authenticator.prepareAuthenticationForStep}"
+			if="#{not identity.loggedIn}" />
+	</f:metadata>
+	<ui:define name="head">
+		<meta name="viewport" content="width=device-width, initial-scale=1"/>
+		<meta http-equiv="X-UA-Compatible" content="IE=edge"/>
+		<script src="/oxauth/auth/duo/js/Duo-Web-v2.min.js" />
+		<script>
+            Duo.init({
+                'host':'#{identity.getWorkingParameter('duo_host')}',
+                'sig_request':'#{identity.getWorkingParameter('duo_sig_request')}',
+                'post_action':'#{request.contextPath}/postlogin.htm',
+            });
+        </script>
+		<style type="text/css">
+		
+		#duo_iframe {
+    width: 100%;
+    min-width: 304px;
+    max-width: 100%;
+    height: 330px;
+    border: none;
+    border: none;
+	background: white;
+  }
+</style>
+	</ui:define>
+	<ui:define name="pageTitle">#{msgs['duologin.title']}</ui:define>
+	<ui:define name="body">
+		<section class="pa4 shadow-4 bg-blank gray cust-section" id="duo_casa">
+			<form method="post" id="duo_form" />
+			<h:form id="loginForm2">
+				<h:panelGroup rendered="#{not identity.loggedIn}">
+					<b:panel title="#{msgs['duologin.login']}" look="primary"
+						style="margin:5% !important; margin-top:5px;" collapsible="false">
+						<div class="login-panel">
+							<ui:param name="client"
+								value="#{clientService.getClient(redirect.parameters['client_id'])}" />
+							<h:panelGroup rendered='#{!empty client.getLogoUri()}'>
+								<h:graphicImage url='#{client.getLogoUri()}' />
+							</h:panelGroup>
+							<iframe id="duo_iframe" width="100%" height="500" frameborder="0"></iframe>
+							
+							<h:panelGroup rendered='#{!empty client.getPolicyUri()}'>
+								<p>
+									<a target="_blank" href='#{client.getPolicyUri()}'>#{msgs['duologin.termsPrivacy']}</a>
+								</p>
+							</h:panelGroup>
+						</div>
+					</b:panel>
+				</h:panelGroup>
+			</h:form>
+			<div class="row">
+			<div class="col center" >
+				<a id="alter_link"  href="javascript:showAlternative('duo_casa')"
+					class="green hover-green f5-cust">#{msgs['casa.alternative']}</a>
+			</div></div>
+		</section>
+		<ui:include src="/casa/casa.xhtml" />
+	</ui:define>
+</ui:composition>
diff --git a/oxAuth/Server/src/main/webapp/casa/fido2.xhtml b/oxAuth/Server/src/main/webapp/casa/fido2.xhtml
new file mode 100644
index 00000000..9fb19853
--- /dev/null
+++ b/oxAuth/Server/src/main/webapp/casa/fido2.xhtml
@@ -0,0 +1,122 @@
+<ui:composition xmlns="http://www.w3.org/1999/xhtml"
+	xmlns:f="http://xmlns.jcp.org/jsf/core"
+	xmlns:ui="http://xmlns.jcp.org/jsf/facelets"
+	xmlns:h="http://xmlns.jcp.org/jsf/html"
+	template="/casa/login-template.xhtml">
+	
+	<f:metadata>
+		<f:viewAction action="#{authenticator.prepareAuthenticationForStep}" if="#{not identity.loggedIn}" />
+	</f:metadata>
+	
+	<ui:define name="pageTitle">#{msgs['casa.login.title']}</ui:define>
+	
+	<ui:define name="maincontent">
+
+		<script src="../auth/fido2/js/base64js.js" />
+		<script src="../auth/fido2/js/base64url.js" />
+		<script src="../auth/fido2/js/webauthn.js" />
+		<script>
+			var assertion_request = ${identity.getWorkingParameter('fido2_assertion_request')};
+
+			function addMessage(message) {
+				const el = document.getElementById('messages');
+				const p = document.createElement('p');
+				p.appendChild(document.createTextNode(message));
+				el.appendChild(p);
+			}
+
+			function addMessages(messages) {
+				messages.forEach(addMessage);
+			}
+
+			function startAssertion() {
+				console.log('Executing get assertion Fido2 request', assertion_request);
+
+				request = JSON.parse(assertion_request);
+				webauthn.getAssertion(request).then(data => {
+					document.getElementById('tokenResponse').value = JSON.stringify(webauthn.responseToObject(data));
+					document.getElementById('authMethod').value = 'authenticate';
+
+					document.getElementById('fido2_form').submit();
+				}).catch((err) => {
+					console.error('Authentication failed', err);
+
+					if (err.name === 'InvalidStateError') {
+						addMessage('#{msgs['casa.fido2.invalid_state_error']}');
+					} else if (err.name === 'AbortError') {
+						addMessage('#{msgs['casa.fido2.abort_error']}');
+					} else {
+						addMessage('#{msgs['casa.fido2.generic_error']}');
+						
+						if (err.message) {
+							console.log(err.name + ': ' + err.message);
+						} else if (err.messages) {
+							console.log(err.messages);
+						}
+					}
+
+					return false;
+				});
+			}
+			function retry() {
+				$("#messages").children().remove()
+				startAssertion()
+			}
+			window.onload = function() {
+				if (assertion_request != null) {
+					setTimeout(startAssertion(), 1000)
+					$("#retry").show()
+				}
+			}
+
+		</script>
+		
+		<form method="post" id="fido2_form" action="#{request.contextPath}/postlogin.htm" onsubmit="return false;">
+			<input type="hidden" name="authMethod" id="authMethod" />
+			<input type="hidden" name="tokenResponse" id="tokenResponse" />
+		</form>
+
+		<section class="pa4 shadow-4 bg-blank gray cust-section" id="fido2_section">
+			<h2 class="f3 dark-blue2">#{msgs['casa.snd_step']}</h2>
+			<div id="messages" class="list dark-red pv2 ph0 ma0 f7-cust mw5" />
+			<div class="flex flex-row">
+				<div>
+					<div class="flex flex-column items-center pa3">
+						<p class="f4 tc">#{msgs['casa.securitykey.insert']}</p>
+						<img class="w4" src="#{request.contextPath}/img/securitykey.jpg" />
+						<div class="db w5 tc f7-cust pv3">#{msgs['casa.securitykey.tap']}</div>
+					</div>
+				</div>
+				<ui:fragment
+					rendered="#{identity.getWorkingParameter('platformAuthenticatorAvailable') == 'true'}">
+					<div>
+						<div class="flex flex-column items-center pa3">
+							<p class="f4 tc">#{msgs['casa.touchid.use']}</p>
+							<img class="w4" src="#{request.contextPath}/img/touchid.png" />
+							<div class="db w5 tc f7-cust pv3">#{msgs['casa.touchid.tap']}</div>
+						</div>
+					</div>
+				</ui:fragment>
+			</div>
+			<div class="flex justify-between f7-cust">
+				<!-- do not change the ID of anchor following -->
+				<a id="alter_link"
+					href="javascript:showAlternative('fido2_section')"
+					class="green hover-green">#{msgs['casa.alternative']}</a>
+				<ui:fragment
+					rendered="#{identity.getWorkingParameter('platformAuthenticatorAvailable') != 'true'}">
+					<a id="retry" href="javascript:retry()"
+						class="green hover-green f7-cust pl3 dn">#{msgs['casa.fido2.retry_key']}</a>
+				</ui:fragment>
+				<ui:fragment
+					rendered="#{identity.getWorkingParameter('platformAuthenticatorAvailable') == 'true'}">
+					<a id="retry" href="javascript:retry()"
+						class="green hover-green f7-cust pl3 dn">#{msgs['casa.activate.touchid']}</a>
+				</ui:fragment>
+				
+			</div>
+		</section>
+		<ui:include src="/casa/casa.xhtml" />
+	</ui:define>
+
+</ui:composition>
diff --git a/oxAuth/Server/src/main/webapp/casa/fullwidth-template.xhtml b/oxAuth/Server/src/main/webapp/casa/fullwidth-template.xhtml
new file mode 100644
index 00000000..7d7974a9
--- /dev/null
+++ b/oxAuth/Server/src/main/webapp/casa/fullwidth-template.xhtml
@@ -0,0 +1,75 @@
+<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN"
+                "http://www.w3.org/TR/xhtml1/DTD/xhtml1-transitional.dtd">
+<html xmlns="http://www.w3.org/1999/xhtml"
+      xmlns:ui="http://xmlns.jcp.org/jsf/facelets"
+      xmlns:f="http://xmlns.jcp.org/jsf/core"
+      xmlns:h="http://xmlns.jcp.org/jsf/html">
+<f:view transient="true" locale="#{language.locale}">
+    <h:head>
+        <meta http-equiv="Content-Type" content="text/html; charset=UTF-8"/>
+        
+       
+			<meta name="viewport" content="width=device-width, initial-scale=1.0, maximum-scale=1.0" />
+			<!--link rel="icon" href="${identity.getWorkingParameter('casa_faviconUrl')}" /-->
+			<link rel="icon" href="#{request.contextPath}/servlet/favicon" type='image/x-icon' />
+			<script src="${identity.getWorkingParameter('casa_contextPath')}/scripts/jquery-3.5.1.min.js" />
+			<script src="${identity.getWorkingParameter('casa_contextPath')}/scripts/platform.js" />
+
+			<!-- order of stylesheets is important, do not change -->
+			<link rel="stylesheet" href="${identity.getWorkingParameter('casa_contextPath')}/styles/bootstrap.min.css" />
+			<link rel="stylesheet" href="${identity.getWorkingParameter('casa_contextPath')}${identity.getWorkingParameter('casa_prefix')}/styles/gluu/style.css" />
+			<link rel="stylesheet" href="${identity.getWorkingParameter('casa_contextPath')}/styles/tachyons.min.css" />
+
+			<!-- load custom branding css snippets -->
+			<style>${identity.getWorkingParameter('casa_extraCss')}</style>
+			<style>
+				.focused-label-big {
+					top: 0;
+					left: 0;
+					right: 0; 
+					display: flex;
+					align-items: center;
+					position: absolute;
+					font-size: .9rem;
+					cursor: text;
+					transition: .2s ease-in-out;
+					box-sizing: border-box;
+					height: .6rem;
+					width: 100%;
+					pointer-events: none;
+					margin-top: .25rem;
+				}
+				.focused-text:valid + .focused-label-big,
+				.focused-text:focus + .focused-label-big {
+					top: -28px;
+					font-size: .7rem;
+					color: #15b565;
+				}
+				.media img {
+					width: 54px;
+					height: 54px;
+					border: 1px solid #dfdfdf;
+					background-color: #e7e7e7;
+					border-radius: 50%;
+				}
+				.mh-3r {
+					max-height: 3rem;
+				}
+			</style>
+
+			
+       	<script src="${identity.getWorkingParameter('casa_contextPath')}/scripts/gluu/main-util.js" />
+        <ui:insert name="head"/>
+    </h:head>
+    <h:body>
+        <div class="body">
+        	
+
+			<h:messages id="messages" globalOnly="true" styleClass="message"
+                        errorClass="errormsg" infoClass="infomsg" warnClass="warnmsg"
+                        rendered="#{showGlobalMessages != 'false'}"/>
+            <ui:insert name="body"/>
+        </div>
+    </h:body>
+</f:view>
+</html>
\ No newline at end of file
diff --git a/oxAuth/Server/src/main/webapp/casa/login-template.xhtml b/oxAuth/Server/src/main/webapp/casa/login-template.xhtml
new file mode 100644
index 00000000..42cd7821
--- /dev/null
+++ b/oxAuth/Server/src/main/webapp/casa/login-template.xhtml
@@ -0,0 +1,90 @@
+<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN"
+        "http://www.w3.org/TR/xhtml1/DTD/xhtml1-transitional.dtd">
+<html xmlns="http://www.w3.org/1999/xhtml"
+	xmlns:ui="http://xmlns.jcp.org/jsf/facelets"
+	xmlns:f="http://xmlns.jcp.org/jsf/core"
+	xmlns:h="http://xmlns.jcp.org/jsf/html">
+
+	<f:view transient="true">
+		<h:head>
+			<title><ui:insert name="pageTitle" /></title>
+			<meta name="viewport" content="width=device-width, initial-scale=1.0, maximum-scale=1.0" />
+			<meta http-equiv="Content-Type" content="text/html; charset=utf-8" />
+			<!--link rel="icon" href="${identity.getWorkingParameter('casa_faviconUrl')}" /-->
+			<link rel="icon" href="#{request.contextPath}/servlet/favicon" type='image/x-icon' />
+			<script src="${identity.getWorkingParameter('casa_contextPath')}/scripts/jquery-3.5.1.min.js" />
+			<script src="${identity.getWorkingParameter('casa_contextPath')}/scripts/platform.js" />
+
+			<!-- order of stylesheets is important, do not change -->
+			<link rel="stylesheet" href="${identity.getWorkingParameter('casa_contextPath')}/styles/bootstrap.min.css" />
+			<link rel="stylesheet" href="${identity.getWorkingParameter('casa_contextPath')}${identity.getWorkingParameter('casa_prefix')}/styles/gluu/style.css" />
+			<link rel="stylesheet" href="${identity.getWorkingParameter('casa_contextPath')}/styles/tachyons.min.css" />
+
+			<!-- load custom branding css snippets -->
+			<style>${identity.getWorkingParameter('casa_extraCss')}</style>
+			<style>
+				.focused-label-big {
+					top: 0;
+					left: 0;
+					right: 0;
+					display: flex;
+					align-items: center;
+					position: absolute;
+					font-size: .9rem;
+					cursor: text;
+					transition: .2s ease-in-out;
+					box-sizing: border-box;
+					height: .6rem;
+					width: 100%;
+					pointer-events: none;
+					margin-top: .25rem;
+				}
+				.focused-text:valid + .focused-label-big,
+				.focused-text:focus + .focused-label-big {
+					top: -28px;
+					font-size: .7rem;
+					color: #15b565;
+				}
+				.media img {
+					width: 54px;
+					height: 54px;
+					border: 1px solid #dfdfdf;
+					background-color: #e7e7e7;
+					border-radius: 50%;
+				}
+				.mh-3r {
+					max-height: 3rem;
+				}
+			</style>
+
+			<script src="${identity.getWorkingParameter('casa_contextPath')}/scripts/gluu/main-util.js" />
+		</h:head>
+		<h:body class="bg-near-white cust-body-rule">
+			<div class="pa0 flex justify-center gray f6">
+				<div class="flex flex-column min-vh-100 miw-16r mw-60r w-100 bg-washed-blue2 cust-content-rule">
+					<header class="pv2 shadow-4 bg-blank cust-header">
+						<div class="w1-ns"></div>
+						<div class="w4 mh4-ns tc">
+							<!--img src="${identity.getWorkingParameter('casa_logoUrl')}" /-->
+							<img src="#{request.contextPath}/servlet/logo" class="mh-3r" />
+						</div>
+					</header>
+					<!-- grow horizontally and vertically as much as possible -->
+					<div class="flex flex-column justify-between w-100 h-100">
+						<h:panelGroup layout="block" class="flex flex-column items-center justify-center w-100 h-100 mv4" 
+							rendered="#{not identity.loggedIn}">
+							<ui:insert name="maincontent" />
+						</h:panelGroup>
+						<footer class="pa3 f7 dark-gray shadow-4 bg-blank cust-footer-rule">
+							<div class="cust-footer-msg-rule">
+								Powered by <a href="https://gluu.org" class="link blue">Gluu</a>.
+							</div>
+						</footer>
+					</div>
+				</div>
+			</div>
+			
+			<script>regenerateFooter()</script>
+		</h:body>
+	</f:view>
+</html>
diff --git a/oxAuth/Server/src/main/webapp/casa/login.xhtml b/oxAuth/Server/src/main/webapp/casa/login.xhtml
new file mode 100644
index 00000000..6fbc04bb
--- /dev/null
+++ b/oxAuth/Server/src/main/webapp/casa/login.xhtml
@@ -0,0 +1,95 @@
+<ui:composition xmlns="http://www.w3.org/1999/xhtml"
+	xmlns:f="http://xmlns.jcp.org/jsf/core"
+	xmlns:ui="http://xmlns.jcp.org/jsf/facelets"
+	xmlns:h="http://xmlns.jcp.org/jsf/html"
+	template="/casa/login-template.xhtml">
+	
+	<f:metadata>
+		<f:viewAction action="#{authenticator.prepareAuthenticationForStep}" if="#{not identity.loggedIn}" />
+	</f:metadata>
+	
+	<ui:define name="pageTitle">#{msgs['casa.login.title']}</ui:define>
+	
+	<ui:define name="maincontent">
+		<section class="pa4 shadow-4 bg-blank gray cust-section">
+			<h2 class="f3 dark-blue2">#{msgs['casa.login.panel_title']}</h2>
+			<h:messages class="list dark-red tc pv2 ph0 ma0 f5" />
+			<h:form id="loginForm" class="pt2">
+				<div class="relative w5 mt4 pb2">
+					<h:inputText id="username" value="#{credentials.username}" styleClass="focused-text w-100 pb1 dark-gray" />
+					<label class="focused-label-big">#{msgs['login.username']}</label>
+				</div>
+				<div class="relative w5 mt4 pb1">
+					<h:inputSecret id="password" value="#{credentials.password}" styleClass="focused-text w-100 pb1 dark-gray" />
+					<label class="focused-label-big">#{msgs['login.password']}</label>
+				</div>
+				<div class="w5 mt2 pb3">
+					<a href="/identity/person/passwordReminder.htm" class="green hover-green f7">#{msgs['login.forgotYourPassword']}</a>
+				</div>
+				<div class="mt4">
+					<h:commandButton class="f7-cust bw0 br1 ph4 pv2 bg-bsgreen-success white hover-bsgreen-success hover-white btn cust-primary-button"
+						value="#{msgs['login.login']}" action="#{authenticator.authenticate}" />
+				</div>
+				
+				<h:inputHidden id="platform" />
+                <h:inputHidden id="platformAuthenticator" />
+			</h:form>
+		</section>
+		<script>
+			//This is needed since JSF does not allow to set required attribute
+			$(".focused-text").attr("required", "true")
+			
+			$(document).ready(function () {
+                storedCredsWorkaround();
+				fillPlatformField();
+				fillPlatforAuthenticatorField();
+			})
+            
+            function storedCredsWorkaround() {
+                //Needed when browser pre-fills usr/pwd due to JSF issue with required attribute (see above)
+                let user = document.getElementById("loginForm:username")
+                let pwd = document.getElementById("loginForm:password")
+                if ($(user).val()) {
+                    $(user).focus()
+                    $(user).blur()
+                }
+                if ($(pwd).val()) {
+                    $(pwd).focus()
+                    $(pwd).blur()
+                }
+            }
+			
+			function fillPlatformField() {
+				try {
+					//Fix browser version to contain major.minor portion only
+					re = /^([^\.]+\.[^\.]+)\..+/
+					result = re.exec(platform.version)
+					if (result != null) {
+						//There was a match against the regexp
+						platform.version = result[1]
+					}
+					document.getElementById("loginForm:platform").value = JSON.stringify(platform)
+				} catch (e) {
+				}
+			}
+			 function fillPlatforAuthenticatorField()
+	            {
+	            	
+					PublicKeyCredential.isUserVerifyingPlatformAuthenticatorAvailable()
+					  .then(function(available){
+					    if(available){
+					    	 document.getElementById("loginForm:platformAuthenticator").value = "true";
+					    }
+					    else
+					    {
+					    	 document.getElementById("loginForm:platformAuthenticator").value = "false";
+					    }
+					    
+					  }).catch(function(err){
+					    console.error("Error in detecting platform authenticator : "+err);
+					  });
+	            }
+		</script>
+	</ui:define>
+
+</ui:composition>
diff --git a/oxAuth/Server/src/main/webapp/casa/otp.xhtml b/oxAuth/Server/src/main/webapp/casa/otp.xhtml
new file mode 100644
index 00000000..4e550cf6
--- /dev/null
+++ b/oxAuth/Server/src/main/webapp/casa/otp.xhtml
@@ -0,0 +1,45 @@
+<ui:composition xmlns="http://www.w3.org/1999/xhtml"
+	xmlns:f="http://xmlns.jcp.org/jsf/core"
+	xmlns:ui="http://xmlns.jcp.org/jsf/facelets"
+	xmlns:h="http://xmlns.jcp.org/jsf/html"
+	template="/casa/login-template.xhtml">
+	
+	<f:metadata>
+		<f:viewAction action="#{authenticator.prepareAuthenticationForStep}" if="#{not identity.loggedIn}" />
+	</f:metadata>
+	
+	<ui:define name="pageTitle">#{msgs['casa.login.title']}</ui:define>
+	
+	<ui:define name="maincontent">
+		<section class="pa4 shadow-4 bg-blank gray cust-section" id="otp_section">
+			<h2 class="f3 dark-blue2">#{msgs['casa.snd_step']}</h2>
+			<h:messages class="list dark-red tc pv2 ph0 ma0 f5" />
+			
+			<div class="flex flex-column items-center pa3">
+				<img src="#{request.contextPath}/img/ver_code.png" />
+				<div class="db w5 tc f7-cust">#{msgs['casa.otp.text']}</div>
+			</div>
+			
+			<h:form id="loginForm" class="pt2">
+				<div class="relative w5 mt4 pb2">
+					<h:inputText id="otpCode" styleClass="focused-text w-100 pb1 dark-gray" autocomplete="off" />
+					<label class="focused-label-big">#{msgs['casa.enter_code']}</label>
+				</div>
+				<div class="flex justify-between items-center mt4">
+					<div class="pr4">
+						<!-- do not change the ID of anchor following -->
+						<a id="alter_link" href="javascript:showAlternative('otp_section')" class="green hover-green f7-cust">#{msgs['casa.alternative']}</a>
+					</div>
+					<h:commandButton class="f7-cust bw0 br1 ph4 pv2 bg-bsgreen-success white hover-bsgreen-success hover-white btn cust-primary-button"
+						value="#{msgs['login.login']}" action="#{authenticator.authenticate}" />
+				</div>
+			</h:form>
+		</section>
+		<ui:include src="/casa/casa.xhtml" />
+		<script>
+			//This is needed since JSF does not allow to set required attribute
+			$(".focused-text").attr("required", "true")
+		</script>
+	</ui:define>
+
+</ui:composition>
diff --git a/oxAuth/Server/src/main/webapp/casa/otp_email.xhtml b/oxAuth/Server/src/main/webapp/casa/otp_email.xhtml
new file mode 100644
index 00000000..10e22e5f
--- /dev/null
+++ b/oxAuth/Server/src/main/webapp/casa/otp_email.xhtml
@@ -0,0 +1,44 @@
+<ui:composition xmlns="http://www.w3.org/1999/xhtml"
+	xmlns:f="http://xmlns.jcp.org/jsf/core"
+	xmlns:ui="http://xmlns.jcp.org/jsf/facelets"
+	xmlns:h="http://xmlns.jcp.org/jsf/html"
+	template="/casa/login-template.xhtml">
+	
+	<f:metadata>
+		<f:viewAction action="#{authenticator.prepareAuthenticationForStep}" if="#{not identity.loggedIn}" />
+	</f:metadata>
+	
+	<ui:define name="pageTitle">#{msgs['casa.login.title']}</ui:define>
+	
+	<ui:define name="maincontent">
+		<section class="pa4 shadow-4 bg-blank gray cust-section" id="otp_email_section">
+			<h2 class="f3 dark-blue2">#{msgs['casa.snd_step']}</h2>
+			<h:messages class="list dark-red tc pv2 ph0 ma0 f5" />
+			
+			<div class="flex justify-center pa3">
+				<img src="#{request.contextPath}/img/email-ver.png" />
+			</div>
+			
+			<h:form id="OtpEmailLoginForm" class="pt2">
+				<div class="relative w5 mt4 pb2">
+					<h:inputText id="passcode" styleClass="focused-text w-100 pb1 dark-gray" autocomplete="off" />
+					<label class="focused-label-big">#{msgs['casa.email.enter']}</label>
+				</div>
+				<div class="flex justify-between items-center mt4">
+					<div class="pr4">
+						<!-- do not change the ID of anchor following -->
+						<a id="alter_link" href="javascript:showAlternative('otp_email_section')" class="green hover-green f7-cust">#{msgs['casa.alternative']}</a>
+					</div>
+					<h:commandButton class="f7-cust bw0 br1 ph4 pv2 bg-bsgreen-success white hover-bsgreen-success hover-white btn cust-primary-button"
+						value="#{msgs['login.login']}" action="#{authenticator.authenticate}" />
+				</div>
+			</h:form>
+		</section>
+		<ui:include src="/casa/casa.xhtml" />
+		<script>
+			//This is needed since JSF does not allow to set required attribute
+		 	$(".focused-text").attr("required", "true")
+		</script>
+	</ui:define>
+
+</ui:composition>
diff --git a/oxAuth/Server/src/main/webapp/casa/otp_email_prompt.xhtml b/oxAuth/Server/src/main/webapp/casa/otp_email_prompt.xhtml
new file mode 100644
index 00000000..e5c808c9
--- /dev/null
+++ b/oxAuth/Server/src/main/webapp/casa/otp_email_prompt.xhtml
@@ -0,0 +1,67 @@
+<ui:composition xmlns="http://www.w3.org/1999/xhtml"
+	xmlns:f="http://xmlns.jcp.org/jsf/core"
+	xmlns:ui="http://xmlns.jcp.org/jsf/facelets"
+	xmlns:h="http://xmlns.jcp.org/jsf/html"
+	template="/casa/login-template.xhtml">
+	
+	<f:metadata>
+		<f:viewAction action="#{authenticator.prepareAuthenticationForStep}" if="#{not identity.loggedIn}" />
+	</f:metadata>
+	
+	<ui:define name="pageTitle">#{msgs['casa.login.title']}</ui:define>
+	
+	<ui:define name="maincontent">
+		<section class="pa4 shadow-4 bg-blank gray cust-section" id="email_sel_section">
+			<h2 class="f3 dark-blue2">#{msgs['casa.snd_step']}</h2>
+			<h:messages class="list dark-red tc pv2 ph0 ma0 f5" />
+			
+			<div class="flex flex-column justify-center items-center pa3">
+				<img src="#{request.contextPath}/img/email-ver.png" />
+				<span class="db w5 tc f7-cust pt2">#{msgs['casa.email.choose']}</span>
+			</div>
+			
+			<h:form id="OtpEmailLoginForm" class="pt2">
+
+				<ul id="emails" class="list-group f7-cust pt1 mb3">
+				</ul>
+				<div class="flex justify-between items-center mt4">
+					<div class="pr4">
+						<!-- do not change the ID of anchor following -->
+						<a id="alter_link" href="javascript:showAlternative('email_sel_section')" class="green hover-green f7-cust">#{msgs['casa.alternative']}</a>
+					</div>
+					<h:commandButton class="f7-cust bw0 br1 ph4 pv2 bg-bsgreen-success white hover-bsgreen-success hover-white btn cust-primary-button"
+						value="#{msgs['casa.email.send']}" action="#{authenticator.authenticate}" />
+				</div>
+				<h:inputHidden id="indexOfEmail" value="0" />
+			</h:form>
+		</section>
+		<ui:include src="/casa/casa.xhtml" />
+		
+		<script>
+			var numbs = "${identity.getWorkingParameter('emailIds')}"
+			numbs = numbs.split(",")
+		
+			for (let i=0; i &lt; numbs.length; i++) {
+				let checked = (i == 0) ? " checked" : ""
+				//very ugly... yes
+				var line = '&lt;li class="list-group-item hover-bg-light-gray gray hover-dark-gray pv1"> '
+				line = line + '&lt;label> '
+				line = line + '&lt;input type="radio" id="optionEmail" name="optionEmail" class="mr1" onchange="changeOption(' + i + ')"' + checked + '/> '
+				line = line + '&lt;span class="mb1">'+  numbs[i] + '&lt;/span> '
+				line = line + '&lt;/label> '
+				line = line + '&lt;/li> '
+				
+				var option = $(line)
+				$('#emails').append(option)
+			}
+		
+			function changeOption(index) {
+				document.getElementById("OtpEmailLoginForm:indexOfEmail").value = index;
+			}
+			
+			
+		</script>
+
+	</ui:define>
+
+</ui:composition>
diff --git a/oxAuth/Server/src/main/webapp/casa/otp_sms.xhtml b/oxAuth/Server/src/main/webapp/casa/otp_sms.xhtml
new file mode 100644
index 00000000..db23c659
--- /dev/null
+++ b/oxAuth/Server/src/main/webapp/casa/otp_sms.xhtml
@@ -0,0 +1,44 @@
+<ui:composition xmlns="http://www.w3.org/1999/xhtml"
+	xmlns:f="http://xmlns.jcp.org/jsf/core"
+	xmlns:ui="http://xmlns.jcp.org/jsf/facelets"
+	xmlns:h="http://xmlns.jcp.org/jsf/html"
+	template="/casa/login-template.xhtml">
+	
+	<f:metadata>
+		<f:viewAction action="#{authenticator.prepareAuthenticationForStep}" if="#{not identity.loggedIn}" />
+	</f:metadata>
+	
+	<ui:define name="pageTitle">#{msgs['casa.login.title']}</ui:define>
+	
+	<ui:define name="maincontent">
+		<section class="pa4 shadow-4 bg-blank gray cust-section" id="otp_sms_section">
+			<h2 class="f3 dark-blue2">#{msgs['casa.snd_step']}</h2>
+			<h:messages class="list dark-red tc pv2 ph0 ma0 f5" />
+			
+			<div class="flex justify-center pa3">
+				<img src="#{request.contextPath}/img/phone-ver.png" />
+			</div>
+			
+			<h:form id="OtpSmsloginForm" class="pt2">
+				<div class="relative w5 mt4 pb2">
+					<h:inputText id="passcode" styleClass="focused-text w-100 pb1 dark-gray" autocomplete="off" />
+					<label class="focused-label-big">#{msgs['casa.sms.enter']}</label>
+				</div>
+				<div class="flex justify-between items-center mt4">
+					<div class="pr4">
+						<!-- do not change the ID of anchor following -->
+						<a id="alter_link" href="javascript:showAlternative('otp_sms_section')" class="green hover-green f7-cust">#{msgs['casa.alternative']}</a>
+					</div>
+					<h:commandButton class="f7-cust bw0 br1 ph4 pv2 bg-bsgreen-success white hover-bsgreen-success hover-white btn cust-primary-button"
+						value="#{msgs['login.login']}" action="#{authenticator.authenticate}" />
+				</div>
+			</h:form>
+		</section>
+		<ui:include src="/casa/casa.xhtml" />
+		<script>
+			//This is needed since JSF does not allow to set required attribute
+		 	$(".focused-text").attr("required", "true")
+		</script>
+	</ui:define>
+
+</ui:composition>
diff --git a/oxAuth/Server/src/main/webapp/casa/otp_sms_prompt.xhtml b/oxAuth/Server/src/main/webapp/casa/otp_sms_prompt.xhtml
new file mode 100644
index 00000000..b2a673b0
--- /dev/null
+++ b/oxAuth/Server/src/main/webapp/casa/otp_sms_prompt.xhtml
@@ -0,0 +1,66 @@
+<ui:composition xmlns="http://www.w3.org/1999/xhtml"
+	xmlns:f="http://xmlns.jcp.org/jsf/core"
+	xmlns:ui="http://xmlns.jcp.org/jsf/facelets"
+	xmlns:h="http://xmlns.jcp.org/jsf/html"
+	template="/casa/login-template.xhtml">
+	
+	<f:metadata>
+		<f:viewAction action="#{authenticator.prepareAuthenticationForStep}" if="#{not identity.loggedIn}" />
+	</f:metadata>
+	
+	<ui:define name="pageTitle">#{msgs['casa.login.title']}</ui:define>
+	
+	<ui:define name="maincontent">
+		<section class="pa4 shadow-4 bg-blank gray cust-section" id="phone_sel_section">
+			<h2 class="f3 dark-blue2">#{msgs['casa.snd_step']}</h2>
+			<h:messages class="list dark-red tc pv2 ph0 ma0 f5" />
+			
+			<div class="flex flex-column justify-center items-center pa3">
+				<img src="#{request.contextPath}/img/phone-ver.png" />
+				<span class="db w5 tc f7-cust pt2">#{msgs['casa.sms.choose']}</span>
+			</div>
+			
+			<h:form id="OtpSmsloginForm" class="pt2">
+
+				<ul id="phones" class="list-group f7-cust pt1 mb3">
+				</ul>
+				<div class="flex justify-between items-center mt4">
+					<div class="pr4">
+						<!-- do not change the ID of anchor following -->
+						<a id="alter_link" href="javascript:showAlternative('phone_sel_section')" class="green hover-green f7-cust">#{msgs['casa.alternative']}</a>
+					</div>
+					<h:commandButton class="f7-cust bw0 br1 ph4 pv2 bg-bsgreen-success white hover-bsgreen-success hover-white btn cust-primary-button"
+						value="#{msgs['casa.sms.send']}" action="#{authenticator.authenticate}" />
+				</div>
+				<h:inputHidden id="indexOfNumber" value="0" />
+			</h:form>
+		</section>
+		<ui:include src="/casa/casa.xhtml" />
+		
+		<script>
+			let ast = "XXXXXX "
+			var numbs = "${identity.getWorkingParameter('choppedNos')}"
+			numbs = numbs.split(",")
+		
+			for (let i=0; i &lt; numbs.length; i++) {
+				let checked = (i == 0) ? " checked" : ""
+				//very ugly... yes
+				var line = '&lt;li class="list-group-item hover-bg-light-gray gray hover-dark-gray pv1"> '
+				line = line + '&lt;label> '
+				line = line + '&lt;input type="radio" id="optionPhone" name="optionPhone" class="mr1" onchange="changeOption(' + i + ')"' + checked + '/> '
+				line = line + '&lt;span class="mb1">'+ ast + numbs[i] + '&lt;/span> '
+				line = line + '&lt;/label> '
+				line = line + '&lt;/li> '
+				
+				var option = $(line)
+				$('#phones').append(option)
+			}
+		
+			function changeOption(index) {
+				document.getElementById("OtpSmsloginForm:indexOfNumber").value = index;
+			}
+		</script>
+
+	</ui:define>
+
+</ui:composition>
diff --git a/oxAuth/Server/src/main/webapp/casa/sg.xhtml b/oxAuth/Server/src/main/webapp/casa/sg.xhtml
new file mode 100644
index 00000000..fb049b31
--- /dev/null
+++ b/oxAuth/Server/src/main/webapp/casa/sg.xhtml
@@ -0,0 +1,107 @@
+<ui:composition xmlns="http://www.w3.org/1999/xhtml"
+	xmlns:f="http://xmlns.jcp.org/jsf/core"
+	xmlns:ui="http://xmlns.jcp.org/jsf/facelets"
+	xmlns:h="http://xmlns.jcp.org/jsf/html"
+	template="/casa/login-template.xhtml">
+	
+	<f:metadata>
+		<f:viewAction action="#{authenticator.prepareAuthenticationForStep}" if="#{not identity.loggedIn}" />
+	</f:metadata>
+	
+	<ui:define name="pageTitle">#{msgs['casa.login.title']}</ui:define>
+	
+	<ui:define name="maincontent">
+		<script src="#{oxAuthConfigurationService.getJsLocation()}/jquery-qrcode-0.17.0.min.js" />
+		<script src="${identity.getWorkingParameter('casa_contextPath')}/scripts/jquery-ui-1.12.1.min.js" />
+		<script src="#{oxAuthConfigurationService.getJsLocation()}/gluu-auth.js" />
+		<script>
+			let helper = (function() {
+				var authResult = undefined
+
+				return {
+					//Resume on getting authentication result from server
+					onSignInCallback: function(authResult) {
+						console.log('Get authentication result: ' + authResult)
+						helper.resumeAuthentication(authResult)
+					},
+
+					///Send form to server to resume authentication workflow
+					resumeAuthentication: function(authResult) {
+						$('input#auth_result').val(authResult)
+						$('form#response').submit()
+					},
+				}
+			})()
+
+			//Calls the helper method that handles the authentication flow.
+			function onSignInCallback(authResult) {
+				helper.onSignInCallback(authResult)
+			}
+
+			var request = '${identity.getWorkingParameter('super_gluu_request')}'
+			var label = '${identity.getWorkingParameter('super_gluu_label')}'
+			var qr_options = ${identity.getWorkingParameter('super_gluu_qr_options')}
+
+			$(document).ready(function() {
+				gluu_auth.renderQrCode('#subsequentContainer', request, qr_options, label)
+				gluu_auth.startProgressBar('#subsequentProgressbar', 90, onSignInCallback)
+				gluu_auth.startSessionChecker(onSignInCallback, 90)
+
+				if (request == '') {
+					onSignInCallback('error')
+				}
+			})
+
+			function showQrDialog() {
+				$("#sg_section").slideUp(duration, function() {
+					$("#qr_section").slideDown(duration, function() {
+					})
+				})
+			}
+
+			function hideQRDialog() {
+				$("#qr_section").slideUp(duration, function() {
+					$("#sg_section").slideDown(duration, function() {
+					})
+				})
+			}
+		</script>
+
+		<form method="post" id="response" action="#{request.contextPath}/postlogin.htm">
+			<input type="hidden" id="auth_result" name="auth_result" />
+		</form>
+		<section class="pa4 shadow-4 bg-blank gray cust-section" id="sg_section">
+			<h2 class="f3 dark-blue2 mb0">#{msgs['casa.snd_step']}</h2>
+			<h:messages class="list dark-red tc pv2 ph0 ma0 f5" />
+			
+			<div class="flex flex-column items-center pa3">
+				<img src="#{request.contextPath}/img/sg.png" class="pb2" style="width:10rem" />
+				<div class="db w5 tc f7-cust">#{msgs['casa.super_gluu.push_approve']}</div>
+			</div>
+			<p class="f7 navy">
+				#{msgs['casa.super_gluu.not_received_1']}
+				<a href="javascript:showQrDialog()" class="dark-blue">#{msgs['casa.super_gluu.not_received_2']}</a>
+			</p>
+
+			<!-- do not change the ID of anchor following -->
+			<a id="alter_link" href="javascript:showAlternative('sg_section')" class="green hover-green f7-cust">#{msgs['casa.alternative']}</a>
+		</section>
+		<section class="pa4 shadow-4 bg-blank gray cust-section dn" id="qr_section">
+			<div id="subsequentContainer" />
+			<div id="subsequentProgressbar" class="prog-bar cust-progress-bar" />
+			<div class="pt3 tc">
+				<input class="f7 bw0 br1 ph3 pv2 bg-orange2 white hover-bg-orange2 hover-white btn cust-misc-button"
+					onclick="hideQRDialog()" type="button" value="#{msgs['casa.close']}" />
+			</div>
+		</section>
+		
+		<style>
+			.ui-progressbar-value {
+				height: 1rem;
+			}
+		</style>
+		<ui:include src="/casa/casa.xhtml" />
+
+	</ui:define>
+
+</ui:composition>
diff --git a/oxAuth/Server/src/main/webapp/casa/u2f.xhtml b/oxAuth/Server/src/main/webapp/casa/u2f.xhtml
new file mode 100644
index 00000000..0d6024e5
--- /dev/null
+++ b/oxAuth/Server/src/main/webapp/casa/u2f.xhtml
@@ -0,0 +1,57 @@
+<ui:composition xmlns="http://www.w3.org/1999/xhtml"
+	xmlns:f="http://xmlns.jcp.org/jsf/core"
+	xmlns:ui="http://xmlns.jcp.org/jsf/facelets"
+	xmlns:h="http://xmlns.jcp.org/jsf/html"
+	template="/casa/login-template.xhtml">
+	
+	<f:metadata>
+		<f:viewAction action="#{authenticator.prepareAuthenticationForStep}" if="#{not identity.loggedIn}" />
+	</f:metadata>
+	
+	<ui:define name="pageTitle">#{msgs['casa.login.title']}</ui:define>
+	
+	<ui:define name="maincontent">
+	
+		<script src="../auth/u2f/scripts/u2f-api.js" />
+		<script>
+			var auth_request = ${identity.getWorkingParameter('fido_u2f_authentication_request')}
+
+			function startAuthentication() {
+				u2fApi.sign(auth_request.authenticateRequests)
+					.then(function (data) {
+						document.getElementById('tokenResponse').value = JSON.stringify(data)
+						document.getElementById('authMethod').value = 'authenticate'
+						document.getElementById('u2f_form').submit()
+					})
+					.catch(function(msg) {
+						$("#messages").html(msg)
+					})
+			}
+
+			if (auth_request != null) {
+				setTimeout(startAuthentication(), 1000);
+			}
+		</script>
+		
+		<form method="post" action="#{request.contextPath}/postlogin.htm" id="u2f_form" onsubmit="return false;">
+			<input type="hidden" name="username" value="${credentials.username}" />
+			<input type="hidden" name="authMethod" id="authMethod" />
+			<input type="hidden" name="tokenResponse" id="tokenResponse" />
+		</form>
+		<section class="pa4 shadow-4 bg-blank gray cust-section" id="u2f_section">
+			<h2 class="f3 dark-blue2">#{msgs['casa.snd_step']}</h2>
+			<div id="messages" class="list dark-red tc pv2 ph0 ma0 f5" />
+			
+			<div class="flex flex-column items-center pa3">
+				<p class="f4 tc">#{msgs['casa.securitykey.insert']}</p>
+				<img class="w4" src="#{request.contextPath}/img/securitykey.jpg" />
+				<div class="db w5 tc f7-cust pv3">#{msgs['casa.securitykey.tap']}</div>
+			</div>
+
+			<!-- do not change the ID of anchor following -->
+			<a id="alter_link" href="javascript:showAlternative('u2f_section')" class="green hover-green f7-cust">#{msgs['casa.alternative']}</a>
+		</section>
+		<ui:include src="/casa/casa.xhtml" />
+	</ui:define>
+
+</ui:composition>
diff --git a/oxAuth/Server/src/main/webapp/ciba/authorizeResponse.xhtml b/oxAuth/Server/src/main/webapp/ciba/authorizeResponse.xhtml
new file mode 100644
index 00000000..e4d3a7f7
--- /dev/null
+++ b/oxAuth/Server/src/main/webapp/ciba/authorizeResponse.xhtml
@@ -0,0 +1,56 @@
+<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN"
+        "http://www.w3.org/TR/xhtml1/DTD/xhtml1-transitional.dtd">
+<html xmlns="http://www.w3.org/1999/xhtml"
+      xmlns:ui="http://xmlns.jcp.org/jsf/facelets"
+      xmlns:f="http://xmlns.jcp.org/jsf/core"
+      xmlns:h="http://xmlns.jcp.org/jsf/html">
+<f:view locale="#{language.locale}">
+    <h:head>
+        <meta http-equiv="Content-Type" content="text/html; charset=UTF-8"/>
+        <title>oxAuth CIBA Authorize Response</title>
+
+        <link type="text/css" rel="stylesheet" href="#{oxAuthConfigurationService.cssLocation}/site.css"/>
+        <link type="text/css" rel="stylesheet" href="#{oxAuthConfigurationService.cssLocation}/authorize.css"/>
+        <link type="text/css" rel="stylesheet" href="#{oxAuthConfigurationService.cssLocation}/font-awesome.css"/>
+
+        <!-- Bootstrap -->
+        <link href="#{oxAuthConfigurationService.cssLocation}/bootstrap.min.css" rel="stylesheet"/>
+
+        <link href="https://fonts.googleapis.com/css?family=Open+Sans:300,400,600" rel="stylesheet"/>
+
+        <ui:insert name="head"/>
+    </h:head>
+    <h:body>
+        <div class="body">
+        	<div id="status" class="modal"><span style="background-color: #006699; color: white; font-weight: bold; position: fixed; left: 0px; top: 0px; padding: 5px 5px 5px 5px">Loading...</span></div>
+			<script type="text/javascript">
+				if (!(typeof jsf === 'undefined')) {
+					function handleAjax(data) {
+						var status = data.status;
+						switch (status) {
+						case "begin":
+							document.getElementById('status').className = 'loading';
+							break;
+
+						case "complete":
+							break;
+
+						case "success":
+							document.getElementById('status').className = 'modal';
+							break;
+						}
+					}
+
+					if (!(typeof jsf === 'undefined')) {
+						jsf.ajax.addOnEvent(handleAjax);
+					}
+				}
+			</script>
+
+			<h:messages id="messages" globalOnly="true" styleClass="message"
+                        errorClass="errormsg" infoClass="infomsg" warnClass="warnmsg"
+                        rendered="#{showGlobalMessages != 'false'}"/>
+        </div>
+    </h:body>
+</f:view>
+</html>
\ No newline at end of file
diff --git a/oxAuth/Server/src/main/webapp/ciba/home.xhtml b/oxAuth/Server/src/main/webapp/ciba/home.xhtml
new file mode 100644
index 00000000..8dc69ba8
--- /dev/null
+++ b/oxAuth/Server/src/main/webapp/ciba/home.xhtml
@@ -0,0 +1,342 @@
+<!DOCTYPE composition PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN"
+        "http://www.w3.org/TR/xhtml1/DTD/xhtml1-transitional.dtd">
+<ui:composition xmlns="http://www.w3.org/1999/xhtml"
+                xmlns:h="http://xmlns.jcp.org/jsf/html"
+                xmlns:ui="http://xmlns.jcp.org/jsf/facelets">
+    <html xmlns="http://www.w3.org/1999/xhtml">
+
+    <head>
+        <meta charset="utf-8" />
+        <meta name="viewport" content="width=device-width, initial-scale=1.0" />
+        <title>oxAuth - CIBA</title>
+
+        <!-- Material Design Theming -->
+        <link rel="stylesheet" href="https://code.getmdl.io/1.1.3/material.orange-indigo.min.css" />
+        <link rel="stylesheet" href="https://fonts.googleapis.com/icon?family=Material+Icons" />
+        <script src="https://code.getmdl.io/1.1.3/material.min.js"></script>
+
+        <link type="text/css" rel="stylesheet" href="#{oxAuthConfigurationService.cssLocation}/site.css"/>
+        <link type="text/css" rel="stylesheet" href="#{oxAuthConfigurationService.cssLocation}/authorize.css"/>
+        <link type="text/css" rel="stylesheet" href="#{oxAuthConfigurationService.cssLocation}/font-awesome.css"/>
+        <link rel="stylesheet" href="#{request.contextPath}/stylesheet/ciba.css" />
+
+        <link rel="manifest" href="#{request.contextPath}/ciba/manifest.json" />
+    </head>
+    <body>
+    <div class="demo-layout mdl-layout mdl-js-layout mdl-layout--fixed-header">
+
+        <!-- Header section containing title -->
+        <header class="mdl-layout__header mdl-color-text--white mdl-color--green-700">
+            <div class="mdl-cell mdl-cell--12-col mdl-cell--12-col-tablet mdl-grid">
+                <div class="mdl-layout__header-row mdl-cell mdl-cell--12-col mdl-cell--12-col-tablet mdl-cell--8-col-desktop">
+                    <h3>oxAuth - CIBA</h3>
+                </div>
+            </div>
+        </header>
+
+        <main class="mdl-layout__content mdl-color--grey-100">
+            <div class="mdl-cell mdl-cell--12-col mdl-cell--12-col-tablet mdl-grid">
+
+                <h:messages id="globalMessages" globalOnly="true" styleClass="message"
+                            errorClass="errormsg" infoClass="infomsg" warnClass="warnmsg"
+                            rendered="#{showGlobalMessages != 'false'}"/>
+
+                <!-- Container for the Table of content -->
+                <div class="mdl-card mdl-shadow--2dp mdl-cell mdl-cell--12-col mdl-cell--12-col-tablet mdl-cell--12-col-desktop">
+                    <div class="mdl-card__supporting-text mdl-color-text--grey-600">
+                        <div>
+                            <h4>Authenticate User</h4>
+                            <p id="oxAuthIdToken" style="word-break: break-all;"></p>
+                            <button class="mdl-button mdl-js-button mdl-button--raised mdl-button--colored"
+                                    onclick="authenticateUser()">Authenticate User</button>
+                        </div>
+
+                        <!-- div to display the generated Instance ID token -->
+                        <div id="token_div" style="display: none;">
+                            <h4>Instance ID Token</h4>
+                            <p id="token" style="word-break: break-all;"></p>
+                            <button class="mdl-button mdl-js-button mdl-button--raised mdl-button--colored"
+                                    onclick="deleteToken()">Delete Token</button>
+                        </div>
+                        <!-- div to display the UI to allow the request for permission to
+                             notify the user. This is shown if the app has not yet been
+                             granted permission to notify. -->
+                        <div id="permission_div" style="display: none;">
+                            <h4>Needs Permission</h4>
+                            <p id="token"></p>
+                            <button class="mdl-button mdl-js-button mdl-button--raised mdl-button--colored"
+                                    onclick="requestPermission()">Request Permission</button>
+                        </div>
+                        <!-- div to display messages received by this app. -->
+                        <div id="messages"></div>
+                    </div>
+                </div>
+
+            </div>
+        </main>
+    </div>
+
+    <!-- The core Firebase JS SDK is always required and must be listed first -->
+    <script src="https://www.gstatic.com/firebasejs/7.6.1/firebase-app.js"></script>
+
+    <!-- Add Firebase products that you want to use -->
+    <script src="https://www.gstatic.com/firebasejs/7.6.1/firebase-messaging.js"></script>
+
+    <script>
+        // Your web app's Firebase configuration
+        var firebaseConfig = {
+            apiKey: "#{ cibaAuthorizeAction.apiKey }",
+            authDomain: "#{ cibaAuthorizeAction.authDomain }",
+            databaseURL: "#{ cibaAuthorizeAction.databaseURL }",
+            projectId: "#{ cibaAuthorizeAction.projectId }",
+            storageBucket: "#{ cibaAuthorizeAction.storageBucket }",
+            messagingSenderId: "#{ cibaAuthorizeAction.messagingSenderId }",
+            appId: "#{ cibaAuthorizeAction.appId }"
+        };
+        // Initialize Firebase
+        firebase.initializeApp(firebaseConfig);
+        // [START get_messaging_object]
+        // Retrieve Firebase Messaging object.
+        const messaging = firebase.messaging();
+        // [END get_messaging_object]
+        // [START set_public_vapid_key]
+        // Add the public key generated from the console here.
+        messaging.usePublicVapidKey("#{ cibaAuthorizeAction.publicVapidKey }");
+        // [END set_public_vapid_key]
+        // IDs of divs that display Instance ID token UI or request permission UI.
+        const tokenDivId = 'token_div';
+        const permissionDivId = 'permission_div';
+
+        var oxAuthIdToken = null;
+        var idTokenHintLoaded = false;
+        if (self.document.location.hash) {
+            var hash = self.document.location.hash.substring(1);
+            hash = decodeURI(hash.replace(/\+/g, " "));
+            var params = hash.split("&amp;");
+
+            if (params != null) {
+                for (var i = 0; i &lt; params.length; i++) {
+                    var param = params[i].split("=");
+
+                    if (param[0] == "access_token") {
+                        var accessToken = param[1];
+                        //alert(accessToken);
+                    } else if (param[0] == "id_token") {
+                        oxAuthIdToken = param[1];
+
+                        document.cookie = "id_token_hint = " + oxAuthIdToken + ";secure";
+                        var tokenElement = document.querySelector('#oxAuthIdToken');
+                        tokenElement.textContent = oxAuthIdToken;
+                        idTokenHintLoaded = true;
+                    }
+                }
+            }
+        }
+        if (!idTokenHintLoaded) {
+            oxAuthIdToken = getCookie('id_token_hint');
+            var tokenElement = document.querySelector('#oxAuthIdToken');
+            tokenElement.textContent = oxAuthIdToken;
+            idTokenHintLoaded = true;
+        }
+
+        function getCookie(cname) {
+            var name = cname + "=";
+            var decodedCookie = decodeURIComponent(document.cookie);
+            var ca = decodedCookie.split(';');
+            for(var i = 0; i &lt; ca.length; i++) {
+                var c = ca[i];
+                while (c.charAt(0) == ' ') {
+                    c = c.substring(1);
+                }
+                if (c.indexOf(name) == 0) {
+                    return c.substring(name.length, c.length);
+                }
+            }
+            return "";
+        }
+
+        // [START refresh_token]
+        // Callback fired if Instance ID token is updated.
+        messaging.onTokenRefresh(function() {
+            messaging.getToken().then(function(refreshedToken) {
+                console.log('Token refreshed.');
+                // Indicate that the new Instance ID token has not yet been sent to the
+                // app server.
+                setTokenSentToServer(false);
+                // Send Instance ID token to app server.
+                sendTokenToServer(refreshedToken);
+                // [START_EXCLUDE]
+                // Display new Instance ID token and clear UI of all previous messages.
+                resetUI();
+                // [END_EXCLUDE]
+            }).catch(function(err) {
+                console.log('Unable to retrieve refreshed token ', err);
+                showToken('Unable to retrieve refreshed token ', err);
+            });
+        });
+        // [END refresh_token]
+        // [START receive_message]
+        // Handle incoming messages. Called when:
+        // - a message is received while the app has focus
+        // - the user clicks on an app notification created by a service worker
+        //   `messaging.setBackgroundMessageHandler` handler.
+        messaging.onMessage(function(payload) {
+            console.log('Message received. ', payload);
+            // [START_EXCLUDE]
+            // Update the UI to include the received message.
+            appendMessage(payload);
+            window.location.href = payload.notification.click_action;
+            // [END_EXCLUDE]
+        });
+        // [END receive_message]
+        function resetUI() {
+            clearMessages();
+            showToken('loading...');
+            // [START get_token]
+            // Get Instance ID token. Initially this makes a network call, once retrieved
+            // subsequent calls to getToken will return from cache.
+            messaging.getToken().then(function(currentToken) {
+                if (currentToken) {
+                    sendTokenToServer(currentToken);
+                    updateUIForPushEnabled(currentToken);
+                } else {
+                    // Show permission request.
+                    console.log('No Instance ID token available. Request permission to generate one.');
+                    // Show permission UI.
+                    updateUIForPushPermissionRequired();
+                    setTokenSentToServer(false);
+                }
+            }).catch(function(err) {
+                console.log('An error occurred while retrieving token. ', err);
+                showToken('Error retrieving Instance ID token. ', err);
+                setTokenSentToServer(false);
+            });
+            // [END get_token]
+        }
+        function showToken(currentToken) {
+            // Show token in console and UI.
+            var tokenElement = document.querySelector('#token');
+            tokenElement.textContent = currentToken;
+        }
+        // Send the Instance ID token your application server, so that it can:
+        // - send messages back to this app
+        // - subscribe/unsubscribe the token from topics
+        function sendTokenToServer(currentToken) {
+            if (!isTokenSentToServer()) {
+                console.log('Sending token to server...');
+
+                var http = new XMLHttpRequest();
+                var url = "#{ cibaAuthorizeAction.backchannelDeviceRegistrationEndpoint }";
+                var params = 'id_token_hint=' + oxAuthIdToken + '&amp;device_registration_token=' + currentToken;
+                http.open('POST', url, true);
+                //Send the proper header information along with the request
+                http.setRequestHeader('Content-type', 'application/x-www-form-urlencoded');
+                http.onreadystatechange = function() {
+                    if (http.readyState == 4) {
+                        if(http.status == 200)
+                            console.log("Token sent to server successfully.");
+                        else
+                            console.log("Error sending the IID Token to the server.");
+                    }
+                }
+                http.send(params);
+                setTokenSentToServer(true);
+            } else {
+                console.log('Token already sent to server so won\'t send it again ' +
+                    'unless it changes');
+            }
+        }
+        function isTokenSentToServer() {
+            return window.localStorage.getItem('sentToServer') === '1';
+        }
+        function setTokenSentToServer(sent) {
+            window.localStorage.setItem('sentToServer', sent ? '1' : '0');
+        }
+        function showHideDiv(divId, show) {
+            const div = document.querySelector('#' + divId);
+            if (show) {
+                div.style = 'display: visible';
+            } else {
+                div.style = 'display: none';
+            }
+        }
+
+        function authenticateUser() {
+            console.log('Authenticating user...');
+
+            var authRequest = '#{ cibaAuthorizeAction.authRequest }';
+
+            window.location.href = authRequest;
+        }
+
+        function requestPermission() {
+            console.log('Requesting permission...');
+            // [START request_permission]
+            Notification.requestPermission().then(function(permission) {
+                if (permission === 'granted') {
+                    console.log('Notification permission granted.');
+                    // TODO(developer): Retrieve an Instance ID token for use with FCM.
+                    // [START_EXCLUDE]
+                    // In many cases once an app has been granted notification permission,
+                    // it should update its UI reflecting this.
+                    resetUI();
+                    // [END_EXCLUDE]
+                } else {
+                    console.log('Unable to get permission to notify.');
+                }
+            });
+            // [END request_permission]
+        }
+
+        function deleteToken() {
+            // Delete Instance ID token.
+            // [START delete_token]
+            messaging.getToken().then(function(currentToken) {
+                messaging.deleteToken(currentToken).then(function() {
+                    console.log('Token deleted.');
+                    setTokenSentToServer(false);
+                    // [START_EXCLUDE]
+                    // Once token is deleted update UI.
+                    resetUI();
+                    // [END_EXCLUDE]
+                }).catch(function(err) {
+                    console.log('Unable to delete token. ', err);
+                });
+                // [END delete_token]
+            }).catch(function(err) {
+                console.log('Error retrieving Instance ID token. ', err);
+                showToken('Error retrieving Instance ID token. ', err);
+            });
+        }
+        // Add a message to the messages element.
+        function appendMessage(payload) {
+            const messagesElement = document.querySelector('#messages');
+            const dataHeaderELement = document.createElement('h5');
+            const dataElement = document.createElement('pre');
+            dataElement.style = 'overflow-x:hidden;';
+            dataHeaderELement.textContent = 'Received message:';
+            dataElement.textContent = JSON.stringify(payload, null, 2);
+            messagesElement.appendChild(dataHeaderELement);
+            messagesElement.appendChild(dataElement);
+        }
+        // Clear the messages element of all children.
+        function clearMessages() {
+            const messagesElement = document.querySelector('#messages');
+            while (messagesElement.hasChildNodes()) {
+                messagesElement.removeChild(messagesElement.lastChild);
+            }
+        }
+        function updateUIForPushEnabled(currentToken) {
+            showHideDiv(tokenDivId, true);
+            showHideDiv(permissionDivId, false);
+            showToken(currentToken);
+        }
+        function updateUIForPushPermissionRequired() {
+            showHideDiv(tokenDivId, false);
+            showHideDiv(permissionDivId, true);
+        }
+        resetUI();
+    </script>
+    </body>
+    </html>
+</ui:composition>
\ No newline at end of file
diff --git a/oxAuth/Server/src/main/webapp/ciba/index.jsp b/oxAuth/Server/src/main/webapp/ciba/index.jsp
new file mode 100644
index 00000000..171194db
--- /dev/null
+++ b/oxAuth/Server/src/main/webapp/ciba/index.jsp
@@ -0,0 +1 @@
+<% response.sendRedirect("home.htm"); %>
diff --git a/oxAuth/Server/src/main/webapp/ciba/manifest.json b/oxAuth/Server/src/main/webapp/ciba/manifest.json
new file mode 100644
index 00000000..aa0fbdf8
--- /dev/null
+++ b/oxAuth/Server/src/main/webapp/ciba/manifest.json
@@ -0,0 +1,7 @@
+{
+  "name": "oxAuth CIBA",
+  "short_name": "oxAuth CIBA",
+  "//_comment1": "Some browsers will use this to enable push notifications.",
+  "//_comment2": "It is the same for all projects, this is not your project's sender ID",
+  "gcm_sender_id": "103953800507"
+}
\ No newline at end of file
diff --git a/oxAuth/Server/src/main/webapp/device_authorization.xhtml b/oxAuth/Server/src/main/webapp/device_authorization.xhtml
new file mode 100644
index 00000000..d2760222
--- /dev/null
+++ b/oxAuth/Server/src/main/webapp/device_authorization.xhtml
@@ -0,0 +1,137 @@
+<!DOCTYPE composition PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN"
+        "http://www.w3.org/TR/xhtml1/DTD/xhtml1-transitional.dtd">
+<ui:composition xmlns="http://www.w3.org/1999/xhtml"
+	xmlns:f="http://xmlns.jcp.org/jsf/core"
+	xmlns:ui="http://xmlns.jcp.org/jsf/facelets"
+	xmlns:h="http://xmlns.jcp.org/jsf/html"
+	template="/WEB-INF/incl/layout/login-template.xhtml">
+	<f:metadata>
+		<f:viewParam name="user_code" value="#{deviceAuthorizationAction.userCode}" />
+		<f:viewParam name="code" value="#{deviceAuthorizationAction.code}" />
+		<f:viewParam name="session_id" value="#{deviceAuthorizationAction.sessionId}" />
+		<f:viewParam name="state" value="#{deviceAuthorizationAction.state}" />
+		<f:viewParam name="session_state" value="#{deviceAuthorizationAction.sessionState}" />
+		<f:viewParam name="error" value="#{deviceAuthorizationAction.error}" />
+		<f:viewParam name="error_description" value="#{deviceAuthorizationAction.errorDescription}" />
+		<f:viewAction action="#{deviceAuthorizationAction.pageLoaded}" />
+	</f:metadata>
+	<ui:define name="head">
+		<meta name="description" content="Gluu, Inc." />
+	</ui:define>
+	<ui:define name="pageTitle">
+		<h:outputText value="#{msgs['device.authorization.pageTitle']}" />
+	</ui:define>
+	<ui:define name="body">
+		<h:form id="deviceAuthzForm" style="padding:30px 15px;">
+			<div class="container">
+				<h:panelGroup rendered="#{deviceAuthorizationAction.newRequest}">
+					<div class="device-authz-container">
+						<div class="row no-margin">
+							<div class="col-12 device-authz-title">
+								<h:outputText value="#{msgs['device.authorization.title']}" />
+							</div>
+							<div class="col-12">
+								<h:messages class="text-center"
+											style="color:#8b0000; width: 100%"
+											id="messages"
+											infoClass="text-center" errorClass="text-center" />
+							</div>
+							<div class="col-12">
+								<h:outputText value="#{msgs['device.authorization.subtitle']}" />
+							</div>
+						</div>
+						<div class="row col-md-12 no-margin">
+							<div class="col-12 device-authz-label">
+								<h:outputText value="#{msgs['device.authorization.code.inputbox.label']}" />
+							</div>
+							<h:panelGroup layout="block" styleClass="col-12" rendered="#{!deviceAuthorizationAction.completeVerificationMode}">
+								<div class="row no-margin device-authz-input-container justify-content-center">
+									<h:inputText placeholder="#{msgs['device.authorization.code.inputbox.label']}"
+										id="userCodePart1" name="userCodePart1" colMd="10"
+										labelColMd="2" autocomplete="off"
+										maxlength="4"
+										onkeydown="keyDownInput(event, 'userCodePart1', 'userCodePart2')"
+										styleClass="form-control device-authz-input-code"
+										value="#{deviceAuthorizationAction.userCodePart1}">
+									</h:inputText>
+									&nbsp;-&nbsp;
+									<h:inputText placeholder="#{msgs['device.authorization.code.inputbox.label']}"
+										 id="userCodePart2" name="userCodePart2" colMd="10"
+										 labelColMd="2" autocomplete="off"
+										 maxlength="4"
+										 onkeydown="keyDownInput(event, 'userCodePart2', null)"
+										 styleClass="form-control device-authz-input-code"
+										 value="#{deviceAuthorizationAction.userCodePart2}">
+									</h:inputText>
+								</div>
+							</h:panelGroup>
+							<h:panelGroup layout="block" styleClass="col-12" rendered="#{deviceAuthorizationAction.completeVerificationMode}">
+								<div class="col-12 device-authz-static-code no-margin">
+									<h:outputText value="#{deviceAuthorizationAction.userCode}" />
+								</div>
+							</h:panelGroup>
+						</div>
+						<div class="row device-authz-button justify-content-center">
+							<div class="col-sm-8 col-md-6">
+								<h:commandButton id="continueButton"
+									style="background-color: #00BE79; color:white;"
+									styleClass="btn col-sm-12" value="#{msgs['device.authorization.confirm.button']}"
+									iconAwesome="fa-sign-in">
+									<f:ajax execute="@form" render="@form messages" listener="#{deviceAuthorizationAction.processUserCodeVerification}" />
+								</h:commandButton>
+							</div>
+						</div>
+					</div>
+				</h:panelGroup>
+
+				<h:panelGroup layout="block" styleClass="row col-12 justify-content-center"
+							  rendered="#{deviceAuthorizationAction.errorResponse || deviceAuthorizationAction.deviceAuthnCompleted}">
+					<h:outputLabel styleClass="col-12 device-authz-title" value="#{deviceAuthorizationAction.titleMsg}" />
+					<h:outputLabel styleClass="col-12 reg_link" value="#{deviceAuthorizationAction.descriptionMsg}" />
+					<h:commandButton id="newAuthn1"
+									 style="background-color: #00BE79; color:white;"
+									 styleClass="btn device-authz-init-btn" value="#{msgs['device.authorization.init.new.request.msg']}"
+									 iconAwesome="fa-sign-in" onclick="initNewRequest()">
+						<f:ajax execute="@form" render="@form messages" listener="#{deviceAuthorizationAction.initializeSession()}" />
+					</h:commandButton>
+				</h:panelGroup>
+			</div>
+		</h:form>
+		<script type="text/javascript">
+			function keyDownInput(event, component, switchToComponent) {
+				if (!isLetter(event.key)) {
+					return;
+				}
+				var inputComponent = document.getElementById("deviceAuthzForm:" + component);
+				if (inputComponent) {
+					var newValue = inputComponent.value + event.key;
+					if (newValue) {
+						if (newValue.length &lt; 5) {
+							newValue = newValue.toUpperCase();
+						} else {
+							newValue = newValue.substring(0, 4).toUpperCase();
+						}
+						inputComponent.value = newValue;
+						event.preventDefault();
+
+						if (newValue.length === 4 &amp;&amp; switchToComponent) {
+							var switchedComponent = document.getElementById("deviceAuthzForm:" + switchToComponent)
+							if (switchedComponent) {
+								switchedComponent.focus();
+							}
+						}
+					}
+				}
+			}
+
+			function initNewRequest() {
+				window.location = window.location.href.split("?")[0];
+			}
+
+			function isLetter(str) {
+				return str &amp;&amp; str.length === 1 &amp;&amp; str.match(/[a-z]/i);
+			}
+		</script>
+
+	</ui:define>
+</ui:composition>
diff --git a/oxAuth/Server/src/main/webapp/error.xhtml b/oxAuth/Server/src/main/webapp/error.xhtml
new file mode 100644
index 00000000..104ed42d
--- /dev/null
+++ b/oxAuth/Server/src/main/webapp/error.xhtml
@@ -0,0 +1,65 @@
+<!DOCTYPE composition PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN"
+		"http://www.w3.org/TR/xhtml1/DTD/xhtml1-transitional.dtd">
+<ui:composition xmlns="http://www.w3.org/1999/xhtml"
+	xmlns:ui="http://xmlns.jcp.org/jsf/facelets"
+	xmlns:f="http://xmlns.jcp.org/jsf/core"
+	xmlns:h="http://xmlns.jcp.org/jsf/html"
+	template="/WEB-INF/incl/layout/login-extended-template.xhtml">
+
+	<ui:param name="showGlobalMessages" value="false" />
+
+	<ui:define name="body">
+		<div class="container-fluid"
+			style="padding-bottom: 5%; width: 50%; height: 50%;">
+			<div class="row">
+				<div class="text-center col-sm-12">
+					<div class="section">
+						<h1
+							style="font-size: 3em; font-weight: bold; font-family: Arial">
+							OOPS</h1>
+					</div>
+					<div class="section text-center">
+						<p>
+							<h:outputFormat value="#{msgs['error.unexpectedError']}">
+								<f:param value="#{pageService.currentDateTime}" />
+							</h:outputFormat>
+						</p>
+						<div class="body text-center">
+							<h:messages id="globalMessage" styleClass="message text-center"
+								errorClass="errormsg" infoClass="infomsg" warnClass="warnmsg"
+								globalOnly="true" />
+						</div>
+					</div>
+				</div>
+			</div>
+		</div>
+		<div class="footer-copyright text-center py-3"
+			style="background: #1ab26b; position: fixed; left: 0; bottom: 0; width: 100%; text-align: center;">
+			<div class="footer">
+				<div class="row">
+					<div class="col-md-12">
+						<div class="padding_spc"
+							style="padding-bottom: 5px; padding-top: 5px;">
+							<p>
+								<h:outputText value="#{msgs['common.gluuInc']}" />
+								| <a target="_blank"
+									href="https://github.com/GluuFederation/oxAuth/blob/master/LICENSE"><h:outputText
+										value="#{msgs['common.caution']}" escape="false" /></a>
+								<h:panelGroup rendered='#{!empty client.policyUri}'>
+					| <a target="_blank" href="#{client.policyUri}"><h:outputText
+											value="#{msgs['common.privacyPolicy']}" escape="false" /></a>
+								</h:panelGroup>
+								<h:panelGroup rendered='#{!empty client.tosUri}'>
+					| <a target="_blank" href="#{client.tosUri}"><h:outputText
+											value="#{msgs['common.termsOfService']}" escape="false" /></a>
+								</h:panelGroup>
+							</p>
+						</div>
+					</div>
+				</div>
+			</div>
+		</div>
+
+	</ui:define>
+
+</ui:composition>
\ No newline at end of file
diff --git a/oxAuth/Server/src/main/webapp/error_service.xhtml b/oxAuth/Server/src/main/webapp/error_service.xhtml
new file mode 100644
index 00000000..75cfe274
--- /dev/null
+++ b/oxAuth/Server/src/main/webapp/error_service.xhtml
@@ -0,0 +1,29 @@
+<!DOCTYPE composition PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN"
+		"http://www.w3.org/TR/xhtml1/DTD/xhtml1-transitional.dtd">
+<ui:composition xmlns="http://www.w3.org/1999/xhtml"
+	xmlns:ui="http://xmlns.jcp.org/jsf/facelets"
+	xmlns:f="http://xmlns.jcp.org/jsf/core"
+	xmlns:h="http://xmlns.jcp.org/jsf/html"
+	template="/WEB-INF/incl/layout/login-template.xhtml">
+
+	<ui:param name="showGlobalMessages" value="false" />
+
+	<ui:define name="body">
+		<div class="section" style="padding-left: 35%;">
+			<h1>#{msgs['error.errorEncountered']}</h1>
+		</div>
+		<div class="section" style="padding-left: 30%;">
+			<p>
+				<h:outputFormat value="#{msgs['error.unexpectedError']}">
+					<f:param value="#{pageService.currentDateTime}" />
+				</h:outputFormat>
+			</p>
+
+			<div class="body">
+				<h:messages id="globalMessage" styleClass="message"
+					errorClass="errormsg" infoClass="infomsg" warnClass="warnmsg"
+					globalOnly="true" />
+			</div>
+		</div>
+	</ui:define>
+</ui:composition>
\ No newline at end of file
diff --git a/oxAuth/Server/src/main/webapp/error_session.xhtml b/oxAuth/Server/src/main/webapp/error_session.xhtml
new file mode 100644
index 00000000..c711afc0
--- /dev/null
+++ b/oxAuth/Server/src/main/webapp/error_session.xhtml
@@ -0,0 +1,38 @@
+<!DOCTYPE composition PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN"
+		"http://www.w3.org/TR/xhtml1/DTD/xhtml1-transitional.dtd">
+<ui:composition xmlns="http://www.w3.org/1999/xhtml"
+	xmlns:ui="http://xmlns.jcp.org/jsf/facelets"
+	xmlns:f="http://xmlns.jcp.org/jsf/core"
+	xmlns:h="http://xmlns.jcp.org/jsf/html"
+	template="/WEB-INF/incl/layout/login-extended-template.xhtml">
+
+	<ui:param name="showGlobalMessages" value="false" />
+
+	<ui:define name="body">
+		<div class="container-fluid"
+			style="padding-bottom: 5%; width: 50%; height: 50%;">
+			<div class="row">
+				<div class="text-center col-sm-12">
+					<div class="section">
+						<h1
+							style="font-size: 3em; font-weight: bold; font-family: Arial">
+							SESSION</h1>
+					</div>
+					<div class="section text-center">
+						<p>
+							<h:outputFormat value="#{msgs['error.invalidSessionState']}">
+								<f:param value="#{pageService.currentDateTime}" />
+							</h:outputFormat>
+						</p>
+						<div class="body text-center">
+							<h:messages id="globalMessage" styleClass="message text-center"
+								errorClass="errormsg" infoClass="infomsg" warnClass="warnmsg"
+								globalOnly="true" />
+						</div>
+					</div>
+				</div>
+			</div>
+		</div>
+	</ui:define>
+
+</ui:composition>
\ No newline at end of file
diff --git a/oxAuth/Server/src/main/webapp/fonts/FontAwesome.otf b/oxAuth/Server/src/main/webapp/fonts/FontAwesome.otf
new file mode 100644
index 0000000000000000000000000000000000000000..401ec0f36e4f73b8efa40bd6f604fe80d286db70
GIT binary patch
literal 134808
zcmbTed0Z368#p`*x!BDCB%zS7iCT}g-at@1S{090>rJgUas+}vf=M{#z9E1d;RZp(
zTk)*csx3XW+FN?rySCrfT6=x96PQ4M&nDV$`+NU*-_Pr^*_qjA=9!u2oM&cT84<A(
z(I_8zqEX?C7mo_Fd^ZCjbQDoTmlmy>zXq}B5k!$BD4Vu&?bM+1pscNs?|}TanB=Gw
z>T*v6<edn41{(BHvBI`rq3&P)@IKT41u{?i4CGfqeykzcnz3}^LsuYgMTq_>IVvN?
z<7If|L2rZi0%KIN{&DZI4@2I75Kod~vRI*C@Lrk$zoRI`^F$Oyi5HuU*7@mriz!*p
z<-;A`Xy{#P=sl02_dFc|Je%0lCgxR=#y~GBP(blD-RPP8(7$Z9zY}6%V9+^PV9-}S
zeJrBBmiT&{^*|I7AO`uM0Hi@<&?Gbsg`hd;akL06LCaAD+KeKR9vM(F+JQ1r4k|#^
zs1dcJZgd2lM9-ss^cuQ?K0u$NAJA{;Pc%#+ibshkZ%Rq2DJ}Id^(YlWJx)DIMNpAc
z5|u*jq{^s9s)OpGj#8(nv(yXJOVn%B73xFkTk0q37wW$hrbawy4?hpJ#{`cMkGUR8
zJl1$@@QCv;d1QK&dhGIO_1Npt2c7Ttc++FR<7<!KJnnipJe;09Pl;!Mr^a)<=OoWy
z&oIw$&y}9*JYzgfo>`t1o^76cJ&$`{^t|GE&GTK)k3GNh{I92zC*(<aYTg*$RGyAE
zo41&^iuVj}BTvt>@N#&?yeeKjuZ6dlx1V>2carxUub+37cb#{GcawLQFW@Wr<M|W$
z)A^zNIs8TZmHcP<k$eL`nZJXd#?R*G@r(G?{5pO+zlYz;-_JkIzsP@?{|5gWe}Mlj
z{}2AKz(XJwC<Ge8qk?II5W!r*LcuD*dckHvlwi9cRZt)(5mX86f>yy^!4biE!Rvyz
z1Ro2&68s>zBluk~A`}Rv!iR*c@Dbr8VURFXxJ0-?Xb@%!i-a}8CSkYmfbf{`wD2Y2
zHQ|TCuZ2Gd?+E`8Iz?iUS~N~HT@)&sEqYwENVHt^j3`EwC^CsML}j8zQLCs&bWn6u
zbWZe&=$hzV(PyIXMgJ8IdI`P!y)<59y>wnnyw-WednI|Lc%^yedzE{&dmZ&U;dS2Y
zC9k)=KJoh6>nE?fUc)p+Gqf+QqQ}#Z(Ua+EbTA!ChtYHBC+G$AVtOSVNypHsw2f||
z57Ecylk_F}HTnwuKK%v#9sN5!#306#5i&|f&5UPs%mQXL6UD?a$&8iBWb&C3W*5`Q
zv@>1IKIR~ElsV0uWu9j)F|RV0nGcyynO~Sc#7N8&dy5s~(c*F9N5zxH)5SV*n0T&u
zzW7P;)8bX)2=RLHX7M(0tk@t<5~ql*;tX-NIA2^QwuyI%8^q1xc5#<@ulRuYi1@hp
zwD_F(g7_uz8{)Uc?~6Yae=7b${Ehf~@h$Nk@$ce$;z9ASgp!CPGKrr=CDBO6NhV2x
zB{L+mB~M7gB}*jBBr7HBBpW4LCDD>N$##iRVwR*yvLv~ZLP@ElQc@#nl(b4ZC3__M
zB!?u&Bqt@$NzO|yNnVz`E_qY(w&Z=uhmubvUr4@@d@s2rxg+^qa!)cS8J1E~zSK)9
zk@`rL(f}zd9W5OveN;MGI$f%hhDqm2=Svq!mr7Si*GSh%H%hlkqor}u?NX!EEKQSU
zNpq!z(o$)qv_@JlZIZT0cT0Pu`=y7aebQ6Xv(gu&FG^pLz9GFTeMkC%^dspF>6g-P
zrT>xsB>hGDhxAYBkaR@mArr`GnN;R0^OLD$8rc}xc-dpJDY770sBD((aoGadV%bvJ
z3fUUjI@w0qR#~(xPPScUl$m8|vMgDytWZ`etCZEq>Sax`HrZ}jk8Ho}u&ht^oa~~k
zU-p{pitJt4N3t8TFJ<4#{v-QI_KWNf*`Kl@*@(A?x4@hBmU{bo`+2LpHQr;q$9q5K
zJ;gi7JIs5Y_Y&_F-p_b%_Kxx1?!Ci1!#mHr)Vtc-?%nR)<9*2cg!eh`7rkHie#`s1
z_YLoFynpom)%#EHVIQ6k<KycS;4{i+g3lBmozEPfaG#|<t9{n{MEb<}B>Px>cKQ_h
zRQS~TH2duK+2?cA=d{lYJ}>)R@p;$hBcCsPzVo^5^M}u%FY*=oN_~BO1AIsMPVk-L
ztMi@Xo9LSspA==WB&S*uVl4V7bBsZ6Ow%WsQuJUl%vOsv%FNx7`s5UAW~xPRj!Q^N
zwi+UnqRjDntAR@;SgfW*vp(6Brq42&k|Pt0u7@erYKn`qB*Yt|l44BpR&$iaU;sM-
z4d^4IlC0K*WWCuG6&q_xHzvW8D|?VmP2oxsjM1iyl%%N4$e09kOp@NLPtiwN&H6aA
z-eTa;a#fN{F^O?WQSqF~OEH*?dP|xqDK%Li3CQoKxK{5cQ&V=BV@$F7Xc#FxtWojs
zXNfkM61h7$%AA;DPB2<y!2X$|;=s5?o04J^tWik`F;;zsHPWC@h&NbW$@GL+s{vlb
z8zYnSaU2MwV)RBU)O4lI9H=|FJ=J1Oh|A>qoM4Ov7+011Nf%sPRE(aRk;t@!SiLC)
z(4}(2HO9bnN2Nq^J%e^*xrU$#s~$RKF+`d5K(ClYZt5*oeM)3>R7_%elsPso3MS`4
z=E0Mj$&@IdA<!!&&Sd@@@P69W!u_;<yFSJWZKs({?%_R1yE>balxm6OD4U#Myq|K@
z-&JTzbUk*Y0-^+{&H*ME<4mrECC04R8!ZMC(2?u*ebPc5H;tpCU=m%_jxw7~>F%j@
zrQFl$N~Wf`Uvh+X%>u^=z!V8t`pCG{q@?>vOLA0Fl0G9QDJnVY@1Ddb#95Q{QE_nz
z(2-1F6PRS~8IxqP=wV8rtMRU$!gLw+F;Pi+V=Q2cGRB&cV@%1(K)mFrc%%OB*-1@#
zFgILx%zA6OUJtY}rKE5z#efjS0T1cTZVdO+9M=22Ow*gK34rH*)?hLxWC7zvB>|5{
z#sH12*7O8mIkT%*9G`Hk>dLs;G!k%{O^NzUkTT2tE?TUH)Z}POWNL~_)Z7`ae_Ylj
z(7?KJE)jQ&Hb*3o*rWtwBJh@*Xep@{0}KNAUT+2=21z$2x`_$+QVf~#34kTq)f2bC
zy5teaYIF&ri#6S?KM*c=&h^$+?f%Ff49eYLDyV~)MBo$Pac=%%%@&IxHZ~dv3zK7v
z)+Z&!aB~(1vu4#BfHILT-f*QjQFJ9zQ(O;j%x->){2xR8tH4$FUnM|M7YE+2!8H+|
zWQx|On?W8yq%DaSP+~AC(dGnwTuhWj&oP~wvyCRJen%=uy)iDqm|)FJ(pxO9f_SqD
zCJAN`7%eq6S|0`S9FuB|F{OY|rnuN6A;l5}g3RfWXkb3jsU|ZpPHK`V$znApB!a$$
zM&b>rphC>h6sWK0Bt38=XbW>{Od`+<It5bqcfvKv@g`F|sNBDW_8)m56|fDc5o@Gt
zqFgB$zU#?Nr90)GB2KLuEfy141-M-mT!~cRWw*(2(f>XNK_^W~`uM1%SkU{?CLrT|
z*5rU5a4DAt4QsU|SYaF~z_MnbZd3}WFFoi`11Pc7q-YRfpk=(?HFGY!oON*L+>FN=
zrpV-2sAV;nKn7Cumed63yhYD(iyLEHoL(PiGR3;=k4uAd$Ws$QzZ>JBRtl%)qmlt(
zlrcu1tdC7hu*PwHfTp+Wt<ieD+2ESbxM^|vSW_xYeI)b>ez}SISAlE3{#BBi@~<p6
z+5fBSPPr<%lc3*R4Rc_zdP^ecYnT-HbrIZ}Y>MV=s9VU~oa*A29jU;4uHLv)t`=cj
zMkBD=0}Gn;Kx|?3|5QxeB>h7<aanx^^uuMBV@w=XEH1lkNe1L`pqq`!dP6)I%9N;B
zP(CgabB5T}5chP+Kk#EL%pe#F&I<s()u$w70tj$4s5edtxpe}Fyjw@Rq%;Qf3kMwu
z<|q;L0q|60(2THu=yD5iof$+fA;oG*jdmv@gJuS&q-JGtbCaM48YXb<a6ZBRQk+|0
zF(l}dVjrk>H-63>M1rORUPw)_81!IgVnE<vVH^_+Lhm+&F41&}#Xk$&((%ud|Ct0=
z4UUWkYjTn<#$pKu<^nC|)^Xfaaca#11_<~R<Uhd@`9A~jchLhA5g9x!*yRs#&4SV3
zI{3E*<{ERWTvu6=9%K^qzx(NuZq8M3aj;9Xy1EuTJ;-f9xg1C(NFIofo7fMYk-&J7
z!P95xQ_b<wU=u)I%-d5k&8g9e=JaT53@1>33zbVFL~|4d{TmH>B{(ST?=mZBvFKDQ
zs6<YIa8Q4jaJ_#}>e71u%5ZNZgM&lh)@6d3N{!aL268{00aWAef0lv1i^_}z`hyP%
zyasc1UyCFdAscUwN{$1kE)jexW8Cx^)1woB65NEk+OUEqN;12DT?I)dX#Iaq$3L>1
z0{Z(M#~c61x<xt#Xpj!Ro+;e|;$$`@!~#F3X2il=fDW-FW~P8%N;O-+Y;cwwsBVe_
zZOCbMP@rJ?fiF^xk-?#%oO_;-rjJgIPfJYKCq$dTAi-Z`@QfhW5P^Z+ni5Jv+`WBZ
z$zcAt&cTb&SQD7l`v#7i))_O?!0`n4%+-O&;F;6hrox>yK|v7Q!EnR;&(y&k3ik}S
zXTlwpYD`!>eg3q#=~2@ogTnwcEEv)N8U~<Y02&6MVE`Hy78x>)gNue|5Zu9Vhq$UQ
zm=4KMxM#pU6K(*VJ`HXtpAMkY0d#r@+&Z`cZaTnC2e|2O?BUZ~t%L(~5I_e3bPzxX
z0dx>R2LW^tKnFpq!O&_jzy$+bFu(=7JFw8*!oumUh8A)!p+c~``Gq=nX{h@Ft%X3%
z5Wo-u7(xI;2v-IbLfjP=0TLY`(Lp;p0M!Ag4nTDPssm6Rfa;(#p#T>OaG?Mf3UHzB
z&MfAN0W@?*-1IoE7(i!0*$e=k0iZLWYz8zr1Dc!>3NSJ7geGSI+)RL*32;EO5TIEI
z&@2RK76LR20h)yX%|d1ZTo}NG0UQu4Bn;rfLgIqB84nAECszh=Krr33X>d=6I|%Mz
zxI^I9!5s?s47g{)9hRo&)&V*omkuiHfLuBtmk!9K19ItrTsk0^ZaOp=1PulO91uze
zgwg?_bU-K_5K0Gx(gC4#Kqws$N(Y3}0ikq2C>;pDE*Ri~0WKKefIhllfC~Y*5P%B-
zI3SA-$f5(X=zuIbAd3#jq6+~y9l!xibU+gw&_o9`(E&|#KocF%L<cm{0Znv36CKb*
z2Q<+EO?06E7YcAd5M3z1g#uh?SX@x(G`In7Mi4v!4hW(Hg6L)d+zfyNg6M!CIv|J+
z2%-am=zt(PAczhKq632HfFL>`hz<y%1A^#)AUYt34hW(P12~W%9Y~N4BuE!FGcE{J
zFbG@FOc%2TL93xamQWx|s9TPLX1X{v2-*$>;)DWmLP3;5fv}-Kn^2%lD9|PpXcG#w
z2?g4O0&PNpHlaY9P@qjH&?XdU6AH8m1=@rHZ9;)Ip+K8ZpiO9yi^YTHyZbQTB``tr
zgIpb(AMAd(*f?muyEF4$ViPofhWp)2_v3ym^WC`x?nk)$vC#ck<a#V{BU<1_w7`vM
zfg8~RH=+e@L<`)A7Pt{Da3fmaMzp|<Xn`Bi0ym-sZbS>*h}=pfDBO)G+>I#QjVRoW
zDBO)G+>I#QjVRoWDBO)G+>I#QjVRoWDBO)G+>OYsYl7UmCTO7>(Ly((g>FP{jT5xc
zjcB18(Ly((g>FO(-G~;t5iN8hTIfc!(2Z!3d+HXsN3_U|XptMyA~&K%?h!3=BU%JB
z4s&B!<i@hdjb)J=%OW?HMQ$vM7KOv&#bx70Erf;3s3l<DGDihXn;tr4)cmBRQEvZp
z6s$<}<}`imlz(g%P<OZ}zZh+TNPZ2fN6n}Q?MElj7t|PPA~lr?re;vHAv(Vv;`6bT
zfihCnR2@X<Pg3WoH>kI%_aQR>IrR<o1NA#~j~epOcsvYo`Bfffk1US@h{PX)Nc@`~
z??N2@JC7eB7C-Fi;py!;#WTn=)N_{SJkN!mPkJu*?DjkXvG-Sa3@?DE;f>=x#+$+m
z;mzdD<1ON?aK+rWLd3m{XXDlKF7tlj5kBJc_#(bPKaf9_AIz`iH}m)K`}oiCFYx>M
zm-%n=-{;@vV?KeH`Llwpf*3)(AW4u1G4l#RpWvL}qTr5jrf`mMv2dxdS=b@mD?BVb
zC463ZN%*qxvhY3O_rhO=4pE>e9OB<mqU{j>P801E<w5+r7oy*1L@$Zn5?%N5@|x$h
z)N7+xrPnU6F0VsgFMGZ2^^w;tum5@tdi_O<Xo)MnJ%ye{&!;2kWZF#U(1mmf-9aCv
zpQA6(H|ZbgpCOJdXJ$hTdolAg6Tz%!BAFN_fiW@`CX4BY2=-Ct6my>GXWnOSFyAwG
zTv6*$;wj=_@l5eN@nZ2Zh*qaSY`R=r4N>V1@qY0M@g?y!@q6OWAO?L){EI{=882BR
ziIpTnM7d02lhi{L`JCic$vcvdC7(mg_&<_gB)>zHn1$%@bchNskS>9k@H5g)QoS@!
z+A2K_vEG-ZuS?&8IPWLY-yx#=u<TLUWZ4YaTv<58Z&%8;$PyuDn=dPqHOM+-`yfJl
zT6SLcqU<unXFryG22ojuY}i}w{iydW?^O_ajrLB0xNDksws(<trFX4&qj#tGDetr1
z*Sx>>zUPB{q&{POCP9RCmd^r+u&(rp@QL@y@~QS|_v!Z8?{m!OIiHIVSH0@<j?Z<U
z8$Mt9-1NBzG1UOyvA&_cPx@~3-QsKTwfOGzE$}Vzt@Lg8?e;zC`-<;%-_Lx1_Wj-W
zp6`&Hmix;`$;Znl$wTGy<V)od^7Zm<a)aC`x5~5SMe+)Hjl5CbF7J}>lOL9!ke`vC
zm%k`~TmGs1M>&>{C?twN#iNRuig}8ainWUMip`2>g+Y;`$W@dm8Wf$1Ud1uRDa8fF
z%Zkg2w-oOyK2dzBxT(0M_(gG7NhzgDwQ`Jdsxm}5Tls`?vGQr<TII9K%}RqZS!q?~
zE31?(%3fuk@_FSe%FD`kl^-j=QvRU)MR`~0P>%R{`icA`e!hMW`33q-@SEfp<Tuyv
zNx!vzTmAHYNq*^md49!y6@E2-4Sp@k$7npC9*P*xN(1>919`<t@)mxJe<E)F;dSZ}
z#Wgx`us?#uFR=YdAI6=~I9K6vWk*RzVSO=vo4oB`Uu@5+%Mv-o0*3;BNe2?NiXOB(
zL%v`c<!G8w4%w~jh+Q~h59IYLtKpSjHSJJb`<^9=+kzdmQ*m3kgC+`LG;3u)Vuj;r
zCNn1|lM&!xtb{9A%Zy{S3<)MmxFC0v4&-mkVgrY|NrW&ruPConTbfssYcIe9WWXN_
z*oKChx_T|Xj<53>B@V$_Hqg<(g&v8BX9I=vHqtmmC?CQiTI)~<@i|)VblQ3H8$=<H
zJMkJCU?;Id5t}$zTtH)mQ0kaNe#SpL=P-g0nwdmvn5}FdBMhP$XOVLpTt&_z2Rt1`
zaE*hjhzVvj%r%-s%%Pb+<3R&64@NMXh5j-txVedVignmY#0nbQuPMXnWrD@5c3C2O
zO~433X-4n_%p5LYNk1uvtA8o2g*s=hvo>5wV+lKpUN(tkX3=CokeSoksl^f7X+{TA
zIF)6dh2AY2%Q6!H89e$99_(Y*(NEJ_CXL1~&@gHZ!{tKhI3Nu-(Ha=IyBUSBv$eHT
zgB60#)|^Z&R`8NoCM!ETi&2iFnc+M<ogP#ir)^mA;DY2b93dZmZ%~0Fl%H)Fn0r9O
zC_A#-vNX#CTutpVVOCpqhvu4~qpht&OYC@H1<f3$M}MR1q!~OK3wP7Z$Fwuf8HXRC
z9V~Y_S$;{Ky{tiPZ@^3FOP3mHW;GoQ6PV572;Ti4rkx#$$Oon!fEyam&a$v2^qSW`
zU>aF`j>W($I9M|{Fdn9I0?i2Fo&$U{Z$8c3Z@s||tuw%~3Wi@-Qn;%~T~t_BQle$H
z(%4@xz~aD7*k|q?4X(!xeC$IzBLc~&skAbfW@1<yBb>}K{oBs2(=e?$os8k2kr~4h
zJ2O0>T)++~{L*NRd_Vq^9U6!SiC8JPP*C~V5;d_4fTOkv@S@>s{2b%v$CGe8J!BW$
zWJe|m8oOG%dsIDzy=8keLkF>xe{|R014mR+Y`{OWCs<;@^T<4GVD_^hV!}nQuYO;{
z5XCB*x<BKAgY(>T4s7O{^guzsd)gfXJQqzy2L25&H1IC#;IT7k4stQAl`4B!EN5{B
z%pdSc|Jk$sj4=3m_)QJ7aLt;9j9?+l;Lq7qmdS+Ivq3g^vuWr9Ori3g?wip|f$O8$
zKoR<gy}^DDvu>c7K@j_H<&QM^hJ3>(Z90(msVr_2V938oGun{|A+`@ijA8@%`OHKb
zX4RUNno+1Fsm@K#$_0FLSyEoIDzhc4IalLA<WHTmoL^a7SyHUp(PBB++EQEJqH#Qf
z^BJYVXf$xlY%m_|1LhTSyw5Rn-$A263;M;O;2m-G);ctRt&|O089^_wl`w*40)@z>
zb%1SMvT*GQkdEyv6C56npQmv*NZ^3*=Jo3^6G|OS!ffJ!A0cyp)U<7ESpTewESXBe
z$ZR6j5FVLIBA1gywK2K6+Nce~K6us!{FM628+DDZYQJ1{Yuj%-_7@*4Jyh0S(blr7
zQ-nqAuHCuK`7N>MB2OiJDPqjMF*dWAQ9BcC&ID(IiorKn=&gOoj_sZd&SY^p4GIN6
z$ujr8`Q{!onZ=4VG(+JDv?mkDM~vf;4L=7e7Nj%+!^8^nu>vGj-o{J^t(iXu^z1a6
z0mZ>6lSYiTBz1Onc}b2oGRqXbRTVgdg<B6qpUcvew6>MEsSh7)?(We#mOJJ+mOJP0
z(|Qi(A6B=uRoAs@&vhI)^SmmM?<IWRbSAPxQ<sxnldYDTX~)2aGy_yt02*w=TNqmo
zOuUV3VQ$b)`)|MkZuWK9Gg+pUPJ5GO1do8AenArf7Cg(6ugTZ=Jbi_AMoeWL5%?Dt
za`<cfHK+o|cAF!?VNfx|z7q&x^&GV0$7m;LXaXAAIS0cNpQ7>4jyV%qZQ#(?JiOp<
zO{!&p^j-9@LQu~-JXr0BLP+N0wPX}7F42$#vX!5n)@nGY9y%j9*xJ{XrX>k@D<2ov
z;k9@ap064LgRzKg!4DG~FhVD&S$f$cv~yq~%`67qSK?$420t)W6Gjt0(Gb6%U_j&E
zc%%E!0Zp~w;f&=Ih*)jhQCFX?&9BMdRk$mb@co-hTT9zZMTPrL6hE)Vh1dg|@K!K*
zTZoNO{z3a$X(ofl(}7b#UtVCzXvSV&Z`U&KzyA9B4F4p{ELy#Kk(SYcNpULjSf-&I
zC$NOGes#q~y9(8uDPS^NbFd%F(Htv)nK+TfCuw38tlM_BUwZ`qLE~4!4&lS}a0Gsy
z)i@LaJOb1^3B(c{rnOE5SBkCp2Rcz0O>36T0c(Z(aF&Ay)<n6U4jh^%0BH%<27;2R
zWAVf6Dwr50_653fCU7-q3}Pr|nY`xq;tn;ZHSA2FAfLfg*}+*t4g`ev8yYv!AijgM
zUIzgr_8PE|cs9#qfFcE20~6tkEVePJEKUMzu<QcO@$_JR4XChu;I=Qn{Bq_cmPwcy
z85<j!pPQSvD}xiTteV!mwyG*ymHN=GgSGqXf7^HK?3Ztd3SNDq<ciu6fZxTL_&DPj
zgTt^tUJ3IPhR5L|2M>hz3moP-^ynaT#zZENX=Dem$rBj#FkIX-f$24$w)OS~yvH)(
z;A7l3<wFr>ngKsZp>)h9ckmtOY_fr@okIf1XkZJh%-n6NwH5?e3U*p|sN8HWU{vQg
zCL+RkEEHe`i*@)@mf6%Uu+exiEpRDX8aihIL)OnReaLhgw+fiIp;iYz59ArZ1N^$W
z8he9^5ti4N)s@r@Zyem{Z|+Sm1c_1NM_Js=uBDk{aG(Y}0$W-k%aA^j1y>(PYAw(T
z+zKnO1%98!@D$>A;fbvRM)^KWHGP|@VZn;bpoa!(Sl4WS1|n(q!%|jb6E0=7PP@Zy
zghoFgO>licKEUwAAHdZF*9VMpB6Jp?IRcHA<BKXL8MFkG$x83d#`Go)nMo8!h_?zn
zl@DHf`5r)m&T}*DPhf38`vKRunAc#$k3(;pTWno<ExFC<w%j~oCwBk5Tw8i`uIPVW
zAT+>dma(6LTQ!$uG!tPgz^r867LH@VA>{RgLukD%WQ6OsZCj^x4qz~8LrOebNhkr?
zhA-l$aTnNsJcl$2$S9Iwjw&rKE3POGC>Jna&>Jp23*GpIQ^=f)f@R}>BQhZ34VuY?
zuC(OB3vdOMU^W>c_GFn)xdG!Q_8Z-3M%jIh-&wc2wL|T=E9h*@$t=;PE#qgFWaMP2
zop%M91+ATRTE++?hk@I073jMNb_UCs&9<0cGt&Zt&uwAA!5GR1s|QvN61bM;yqFCe
zz`4P-q;?feYH=;olG|l#X$fGIj>qtq<V)vc&d12#PyD6hF|M3@f-uj8nj!cH);Rz!
zYzV{8Yc6T;P<7O`H#Y-C9tA<3!p?)fl;eI3YP+N!g968!fTOShUh>Nu8Y&vpO-(hm
zc5O#vb9>EhY+ptD@9Hhso7N_RG2mP_3t9*N6mMs3^hANHvM2Ut83!nEPIqgioI}Ap
z1!jzd;1ZSz<b4e+59<_=vIjm3h*&rbz90AzTsz1`)1V!3=<)k9#Nbc3*#?(30$f_=
zC|<-eqcEWd2d;q%^tGMlJSl8<P^{d*;NZ`vmepwO`BgiM^487uFD)u8EvPK0EZkLG
zF9J<GfQ|KCRc$rR0X1FxU4oLTlByz2^XBWs$R8FnDtu>)l6Zhy;JQJHyHgbL5aKZA
zb(hGdvC@4#?Ry)wjXk9YGCG;OyqzUk>a3l0&3WL4tcPibPC<tc;qZ-k#-muq`JVnn
z1?GiBI0lrRIj!KXN6ZAxCxDTY2pBl#6b%O3iosrN;?yB7;#O14uP}8Cu3!%`K&EmA
zd>GDuVP>#WUrwqV58>0~87#&v_za1|68Z4FK;8kSI~i6PbuJ&@4!#2{Vqkt@6*CBW
zq^@pPT}^!eGrVzlV@XL_NqKPqQ_g}FCW-|#)7xu1ZSDo{#df;4m&vN%*__AV_vnc<
ztWQ9f&-r{KOo>#5r5CZsjn6eVW?h8olB$@4yBkiYA0i8Ii+|h6)AqA!ybzBiW646s
z&sK&@$s>5K20Z3KVyGY+Z7N$isbziwvcf!l0qZni2*D?ux8bmZ{_kk7Z*FE>ejwv4
zbdHCs&{^n!r=t+A@o*I~+Qz*6`kiWWejWLhq>&kaPQ)SF!4UxyB<#v;-jSl>Gy!K9
z_c!nB>ePHEWR}vf9AoeXS}I(AX~Ua%53qTT!;@|Wis8qh2iyWg3#%=of#GLn7MRT{
zbECO46BI#;)taIiFG#WW?AHQuh+RiB*5<UXJWXk1Q+boRi4nM*2*%;d*5TW9NnSI^
z5vTUxVjQzE7!Sv6SPjd5`wh#qplsu5rXKV-&5UJn2!rnd9Z!>cfVZ=^pjXXMwjsOc
zkew0cLXVfj0@@R=uF#&k)P3!ms<pDMqE*9m-%w)<i%;Ww%<A_R8m%Syz*dKZ1)V*m
z2h|_E{vK1`&|t5#2RQhS{rvBo*GMMt2^^&arCq|UI$^a+tWE_ppvTPg>3YH}Sa6as
z-+zA+GXolCB%%>8a~>xQfqOv4<#Gf8qw+ZQUkE=Sl(6)xtKZdNR{`&U2{nTY%Z=Gy
zQU@?kaW+rLjjCYpK2>ky-cG170gvZ*bTZ5S3j(38Pj8ECkL-!*sp+ZT(;%wrtK`(y
z01g4q*A56nU{!-dJel_Py5?r>pr_+!zTJ*f@D^OGV%D(a3?88IT_J;)u-qa<F%$uA
z3{z2GUSCpQ+)~_D*h;iG!=Hcvfe#A;c88XZni(hv#;~-pIYgk)`_k=Zvj)~VU4^~9
z&}ktNf|En$F|QIK3A{pPt4SPin2&y$mf4&UlaQ!sPOGz6R9mcTqO2N5<>oyN@E#8N
z^ERHLWduYvems$BhX*iN))}m0fC1Zjm{SewU=_fC!sS8&%w(Ed<}e?+tO*DVTnibc
zjb?5OCxLy>IcnXjVQj0odcr<t+g$Ryb0k(}6Ow3rG7QgP@B-4p&uH!{=vFtk)HE~!
z&vB&s=O2Sl!AfE942Bgi*5G`saoDlu39yF>tYOZ@ACHWTkB^Kz9)IrK@#E)UG?-_@
zyb8?I6c$t!s-r5ImuYEjb4^RDid!giOzq+bATcBw*$R$JIHO+5-eYcF4-aNs#yc<I
z{FdfCuvX0h@E#Tp&H(Z*$t1@~=zqyL96Fi7;9P)P0nUZn$zVRfUO4h2JXVcmpT(^I
z4aSm74@Rtk_SfMcxYlt`5=7R)@~B_HoMr{k8Ca~Zn)kA{Im@2elqJfqZzy519EjEs
zh$8VzO3DG&q6FuZnGdWYWV*Z4%2}qOpt_*0D4@8GDdrS+J*T)^ptH@*0q4)VhGXLf
z35EzdaRxLi)TBNc%JLk#%#Z=$WKe`y2+9K_f*U)-JAs990+3lN>&Z9}$OTab3Op!K
zsi#?r5kN3(ctA*k8KJ|2W*Y1@b#+WBhy@XXJaSCQxr>XI5JASqMq`;Kld-bAz#$00
ztpcFt_QsBe-J-5)tZZ$AWh9Fys_?{Bn4R>8<~U#wLVSWzwKg=i)@Xj{dgtn?uS85y
zNkc=G_ASRGep6Lr12>{F&gJADOr+tAHu+dj#*69~_v}8z2!d$r2jgt0YpT~ab=W(b
zJ47G74Bb=05~M-RRIo}0>@4_3J@h$l%(1K^1eme4Lj_D}-_=l8r>SE?z=CZ86S8e&
zIUj#3z}tqF^W95v5&=;zj_qMSouCH^rw1L}n$iK99dvpj=Sq}-Dj0CFsFSua$FYND
zPO;olnE~&00?SOH$8oJ(gUJSmPspUu-~}@~tUIj*+5$_hX?G^01!GoJsIuU3WGsOG
zeQ|v1iw{E-Ah;}8oko^b*A#PdasuQbgi|n#U^C0)=GoF(@|bS?1w>+UwkN0(S{Y$D
zjA$O7#}Jli^7AV*8gm0cg@;4M8|<=lUq&}-bjUY<-uw33dw(+NiCU5+%q}j@)-ak$
zV^=|)i7GM?C@UchsS@NB+89kuQDJqV8u;ga?>H6f4(GwZl=v*SS`x%#fq>y#dXDBC
zQ-e)v&&jOPGW^b}cJMHP-VQ#;_zG|&m|oztI3heD0H^c?u<jhsl84D6PDmpdE|SDJ
z72rQS`s}&BXzif{>uv@gfh7oFhvfqi-60R*koEXQCOtVrdnj{zmqE>_i9bPb`GX62
z%G49LQ6IZ8mJvQn#{n`8INIQ-m<ueKU~49j@eFtuoJN3kJmBUxH@8C%3D^n<b1~g%
zpz7c=5QN}&6oQXNP!U3v2)-OatqAR-&|yTC{pC^imuJ~&kC)+F7XZ~E6o$~N2;D<e
z1ELxc)r_cCM71NT6H#4=I*q93;QJip5rjORLLT2DPZ9E*i9BnN=T*cDK)jiVSBQA;
zBK~N^Z%6#^k-!HDYLVa_BoZJ|F7gr~FBS573VGc{^m0VkBKix&JOQC2#C(awEl7L|
zNghLzV@SFHNmn6hJ(6W3@0rL4{$?YeBIKKdeDjd+Z%DocDRfAwLCQYlSA!l(Mh~^3
zhc2RrenbxqA^(ZUe>3v0MgE_nfH^4OB@{rAN`_R8NF9v=C!@fh5W57ik%-Mi>^{T}
zAofqh{)IFXkmhluc?M}pk>(20Qb_wa(#9a|5E``xjrtsoo`yz$h{jApW459(SJ1=L
z(8JwmtQd{mfyRE0#@<HbJkhvZG+u|s-$WDUqX|EwM+NB7di2;*H1Q!cu^&y+ph?MS
z(jheI8#K8dP4PujrlTp%Xv*hk$_Sde3QfI(rU}us8Z<o&1zkr$1cj)PZU@p;BHf=T
zbPfvbM>D3Q85wBC1vJxu!iLbSwP<z*n!}<w5ok^UnkztakE6MR=!p{a#CbGtG@ADj
zn!g>*{{<~*LE-IaVGUYz04?rEOYWd2m!c<6qo?@jsR*<}jaD?G6<?#3W6;VBv`UUv
zDbcEj(5e8m>O-_<GFp>{*1Urv_MvB%pml+0-2t@jI9m56dX`1&r=tz)(Z<)&rip0N
z%V={r+TxA2^rJ0KwAGFxC!)wO6uAUNnowi|iu?dYeupA|N0EP_ZFMNhA4M%e(V-~%
zB^3P~idltXE~D59DE0=@uRw82P+SL!yMy8%NAaH_Lpd_MixMWIgnX3n9ojw$ZNGsM
z(^1kml+=onXQ1RRl>7!t{uLR=BI9giT#1Y^$XJYwmyq!-Wc&=7#voHYGQEaUSd=mz
zr96&O)}tL1+CifoImrAJGS?%^Ok|mbEOU^h8d<(XmLX)VM5&c1Z4OF*3Z)xR`T)vU
zf->GgnWIo<5y~2mc7~#zsc7f(C|irN3sLq*DCb3#%SX9wDEBv%>qL3aq5N=^-+}T!
zK?OdjU^yx%K?S!^VHhg%Mn&PMC>s^EqoT8@I0zNjppu!WWF0Emg-U)!rK?bBIV$r)
zWihDiYgDd4<!e!SJu3eeRlJNUS0bAn*-oIUr%=_~sQMPFxruf?jCN(CT~|@<L#Xy?
zR9lB?&!O5cQC%mh--hhZq2>V8{4#1uMy)hzZ9r`lYF~xgO{l#ab@ZdokJ0YwXm=&r
zeFJqphPpCP*Bhw27InXa_PmAmhoA#-=-?D|$P*oU5*_*o9af{m&!8il(UITK(dp>u
zPw3bW==d&l!UvtWicU^IC&SUnbae7CI{7?0wF#XXM5mucr@PUa{ph)JbXJ7UJ%Y})
zq32oj{2g>Y8l8U^z3?`=a2#EnjV^wUE-BEZqv*w@sDCGV`8;}c3VPiez21r5SdHE|
zhAzjU%YEp|W9Z5!=*=tWYCF2tjNYn1Z&#tWucCJX&^y`a-EHXIBj|&T=z~r)@CX`s
z1%0>_efSdkh(aIzf<C^0KGC30K0%+Rpc`T6Gk^5iH|X<)=nEP8Dhz#HiN0~5Z-&vg
zZ=su)(09G)yT8!)@#y>K(Dxss|NMo1u%aJ6M?c1+A06nYN$97~(e0z?XMgl_8M?Cr
z-T4;%`ULv*F8b{&^t%cDu?78CgYHg8gHebqrBFBpTm7Eh6pu&oj!^t*6#son@FgXT
zr-U~tQ3WOHr9@v*USlbUQ`6s4%nFKWqQotfWHBY3LU{*JJ_5=olk(j``F=<#Kc)Oa
zD8KKhhlVKsbCjxyQct7;HB{hoDzJ@W=TMpwO1q01b(R|aI5qkkYRqhEjDZ^SCH1hJ
zdbo-j8%>Rir^YX&#@A631k{9TYQkx1!e`WkFQ^G$QI7;tk6fZ2y+l1WhI(u-HL;PJ
z_$4*z32IUbHR&uhc`-Hl87ky)D&!!g%cXR`QK3RAl%+z0snEx%&{}GS7d3MX71lz9
zy-m%UOwC?Q&Hj;^6GqJ;)Z7Ww+|AV7R%-4`)Z>2C6C0>`YpD6}Q420m3l-F&`PAYo
z)RIc-$w#Osd#I=Q)KkgSvL)2hfz;EVP|LScD>hOqFHx&9sMYhRHBxHrIBIPYwe~M+
z-4W{9)71J|)cQ5l`hC>;@2CwTYQq+4!w1yHd}`y%)TW8lCL^`!3bi?w+FVC%iKn)1
zptk-%MFvrkH>qtpYTGp`Y7Z6l3l+0~iuI&oXH&7yQn6`NY&)eNO~v_BaX(P;CMy1I
z%CLemyh0@;QrqWI+drieuTx21P|1aqv5PWwQz=erhk-KJQr7cSY9f`kfl7~~GJdAA
z)=@jnRCXbiGnL8}P`S@jc|}ydlPWkt6+c52S5w6!RB0+zrlraiRK=TA<tC~UQ?{#A
zRV!63p{lJ^jUQFBo7%OM+I5?%JwesyQuXgs^`BAo-&6I!QuTvW!x73}OEq4hnjfN?
zgQ@1FRP#Zq<zcF&j%w+n+FqsFcTpWNROesR?jNYGcc?vMsXd3Np4n9IRjT(bs`nkL
z_dTlj1FCm`>ivl7{e<ehLG^x4^?ph9eogg$OZ9$7_5Nr0FIc|>^0k;pVIJl=A~4Sr
zmb^S=Ab*r20=5#I5klDC;VB10R?)*D;Aab@fkPikN5!xh;yZTFK>k%nmXhqoQ!w0D
z`nqozt^_Q@9)>G(x>pzi$Zj&3k1q>vKz!ymnp_qF<m457bJ7ee0+taE!;0=XR}2Ao
zH<<#EQ&t$#=Jc%yxJEqsR@_Lt(g!c_WInl!`)OzcpeA22-01GR5^xQB^j%52v7#?P
zO8)9j!_}-a#KFbyNW?XW5j#WNkxgzh+5x#QAbK<(Qs9d(r=`PrHasvm4L?u8s(HY3
zFajS{?#b*-)sSLAYG!7tmJ|z9J2UraaIs)dXXhR*esAz|CC((p_zAL|Y$KCG$P$7y
z`I);?J96<%;^SZ1&`@qyH#OHaHfZ1YaPQu|9ip~9XIh_Ee?G8b?Xtw}j~leXF+}_@
zk*Kx`Q(F^UZTEES+oQD!51x4Mjboah`mu5VuTe?6|8bGO9CqkqHN@=Z1#xlP`82%6
zAv6U$Krr`$y@CA2%8SeGaT+cj8n?V~qp`=>m9B;FD#iR^J1oBn=phB{wUU8ByI>H$
zx8!$q^&C71XwoQrfyNoM=PID%C?&UCEhwxkFVqYV5Ia96*Ay3}8rg(L(}Np?fUSV<
zJO&x*C>!j`DNaJG(1B7|a?Yb+Ls8lddmB)K6#yE|o@S4<!?xSJe0tC>?6&lz_NK%B
zkq5-McvwqBqNhLl@$vtvtKdW3|Ni*N)sM7Ti$$=S=i!I3M{ifpp6<P(VY_hXI4?Ae
zcrIP9A*wM%HJSvB7HwNMaq1#<rJz!<XyOlN*J(+>J)(lYyQ1kItoa2CREud1?qW}t
zM4Dkg^u(WZ_eR(ZM4m(7XDhLZ?W2K;DP&7Sv38K>`~~8??IrDMDYinNha}2FiOrT>
z8fWDINp)=E?=H;RV^ycIj%P?dzqq-zv{ikudG9{VMbCj6I~)g<*PUTb3Et$Cl1&4S
zF!Bbz<e2p)UhVM3tDU}%S+Ks_arysCt3CUnRcGEth!A*Iu$Wci_NDkW(x$=fG-+E(
zUL);f{B6QuFYVw@0_=4gGk83lEf`{yQ7nY!r1()-RAjr?t#;ThaVVCh!<ul|juFir
zL&?VoA{&8(dpbEPApmhI(z&Q&2)CCt2**Vr?g`rif_YczQ6N;`1N9tsWdmDE^BQ1-
z->G<zmg4;od&Flpu!9l2VA$~?0~^?31u&?Kk071^du*_?0K4+*&Ti|6O&S5Wv99F+
zPtz{I)4)1V_5W%KhW;@`rXJLWeF=zGL$e!TUjFYlP=E8kVWr)zfxKP{O9BN_5RS5;
ztx5<FW_D^wAP&SH^zhi>apVPj0g@yT%AR8J2pNGeYam|7_VzY*!nqQF95f6X_??}N
zy}c^XE;S%19?&dkI$yl~L4z+~*L5H4Us%Ws+y(Fdhs9L_Wq|Ns$Xsne`9HBgz|0BS
zI@STA#{FWu!U-$<>onnZrtTk~;dZTr?qf9E#+Bd{t+{3f-o#en<FJ8pWFB|+Me7n-
zcT1emD!z8L<8*~I;Q)?f0IK{A%WYA@GN02rKhla6*KQsz1F^M|XYqK=+OxCrqt<L&
z+dS*lC=vF1^ds^p2~}NXxeYbg6~&<+;YYFG9nGuHHGjVC)u`8IH?7$wBF~cXU_-2=
zOogwrconM|1_o5Vzxwq>+%_)cTwCLKgmtMA7k=EzdSd(S4Zx%j-keF30X!bM3MnU-
z8j66_NCc!Hx&=wlHNVnQJ)A2URP3aIH7R9BUVB!JhAcZ!a5U#=){%f?FPu1c?7XP9
zzNX%;g3X%JI!)9Yi{4y!QB+r42wTR5h2^k^M8=FVwk0<wH3pdQ)BKK#oh_MaVuk|}
zc{|IrJ6D!0EnbmSkd$l8CYnF}>x#IF2}DiCZ?|Z<EwVxt9IB}+)|}XSeCx4IJCk#h
z3lhl+lYe%3US_t6n1xx*J3GoXcv(tgLhJU9#DIj&aghmIM5V>$P`9YMsJ2-1-0Jt2
z_iqvv*W1hNYCD9#;9S?}KM!Uf$~#;TaDY6`&#G?E?Nnnk?C&(U@6xtku6wKg%HhVt
zEeG4Mh9EFTT+L%xjVB!0tF3bl7)na&HF3|!pG&ydez5sa(-FM<fPZ^Ub7vdJ<jGw4
zh|}OFT)PaAxCa70ct+U)0SgG8{O_S4k0>{#m`cG+2uf29T+j|ZIiwhQQaBtkbmc4h
zV*1L{>(re1uZ-E4u3bcC^U0g<up>_kh{yHmH{o!S;O6yP*aK?eR8GlIrLf!WX=NQ}
zl-0KC%4&`Cy2I$a?lkf%Dk~~fPAeR#xB?(fU;`Fg9OsoyEfw9lO~izk`a33NvE*4H
zDaYHQ`j*(D3<1M2&fB^96=_Ym0dLN)Eomrgs0^@IHq_MD4nFDl(0}kr=ZE~#y84O+
z*T#55Rl}~@x;H=cmzD$PU^(bJoKBC1kexsZf?x%YLg6^$J~snT1>~(@NrtTWEt=dV
zRujbWz^k~ed>8_3pfCq;1O%)v1quT_hi*GgD0fz6=Vhx&xga~cxxGreOSl(62#Z(X
zA$BiBT+4)mHfOx@bpGk=;~J-K=pethAZ1UAn*0C&Z6t!9S(Tdu{5MOGncLb~rEP=Q
zA4JN25TvA}nhUf}-N-?Hc6@$JjLO&$c~UbNA;^NWaaGzbFvNhS7h358Tb@~!1DmVx
z_GH7kgD!P2M1wlDgH!Yx?Ti(0x{x0qw<&$Sdi|!Z<8fM|#({jN9*5Fk5_<})?K|KU
zmm@-em$A+WVi)4C;e?7a!XImBM}#9{cW3Q^g1rIK4463J7MLW(%%QuEyEkF00SI&#
ztib=vkwqK_V2*(>_Fql>G5CnGwz<5euo0wxz#mR_)WCtYqVkerExAsv^Gk}k5axK;
zxQifne+6VXLfF#W&|Iq}e>l3s*zU9;pvZUhPy=xAB$!U%%Sjj>?+L1FtLmz2vB6R7
zKe%3i4bI}~(yEf`(g3_6S$RCaKj)Z+6gn>QkLJYeGpK>p4KX{m=V(cx^CCYdA%9)G
z%9#ec&S$|3=!WwSJ$c>fO&aGJJdn|Bwx#C>r03<OSyiCe@Y8HlO<kiF*k^#>)dc5?
zAQ0>a{PHX8IojnXR?+w>n0uP|5v4zdlM-a@4YEOv+h{nRk@Oqv3y#+|w%B&(H3302
zFb9P-psFeh%SwwyME)q55Ke;Ccr1+{!rmJ~ZfWK3!4VwLFF=?C4hb%2<tGC9KRB$)
zj+{1bCsmMLP?%Gy&5Fs>TVh3I(i9Rll`K}nIa8lYHz#W$V$QxpPX|K7v9$=H{JrZm
zcO;b$JTV5ZejGomcJT4@usihU*V?LTTTQj97t{otb%O!$v5Jf#Yd<CH)lNRSKq?8=
zX)A2y6{@V(Y}m@$Bxq~2x7KPqPB)+2drE{S{fNVUz>C#@z-MFdPg<_)c3024Z7yxZ
zX{0cYR~4RM2kwqx@c?f$?fNN&-YH+?3Lg9@h7}K-&Vd2f-t!U`HWFZyYv51X39AI~
zBX9(T6FB=2;R#CsyAn7C`_jOmcwiy~)DvNo8CR06cq{ZBo^VydlqG%zmI)R-aLjT5
z$dyKK>5V>R)dUhLoL@E5fxJJ2r+RwNoQHE^{mbI%NHP~hYPvefSlepSzD2Y|_7Y@a
zY9_B;Mtrq9a*a8bouZ7Kyex}qI7>K%ZEmcoYtnoOJ5IB&!x3QPO*ozPv>IsY^U4*>
z*B)%^X+5Emg1U4M0T>=S!tD|Oe|w&02Q^B^RHqOA)%h%3KIB*DR6=!)KK+QMYa?F1
zolmHPzs$mnI&mQlCiH1I%`|c5y19|sCC&VdHw&)4qr$J?mv9HZ1=mZYgS_%&!Lp3y
znk9MsPa|jcPgEZfcCbf;nEB;%OdZtX<wv_N@=yQLbq`Z2=}6uY=oDoew0oLasq-&a
zjx#2Zb%6F%{<`AM<P(}*MTJ#GYJ<@fuYCfGx*^OjA)@XlRPhH*eGT@iT@9LBC$Iec
zD-1G_za*W41|sSIUkzY5m=j5)cr{sd1K(v$?HN6J+Wk4bd3!TOzl6UIdz4ZYk*+4f
zN5VChOmkjJj>wv~GsC3X${ug9SJyOXFjR#4I8w#6b(t)~he;onKx4+XoqKb%twrsn
zZAAyN4`l6wgH|(%<Y%&$Y*UeKkHHhNnjIOYEK_!N(azGGB9SF0d#6z~g|)le<{E+q
z@nz2H+JN!p7*;0OZaWT6*#GmAf8_x4r^L5t!H|N-Jz&M=%8uAa<VuGee0aGK{P_kY
zz`+?qhr-XD7*-Iwau{S{5KgsSaM$71XHbU~$Vd6ZA<;nv&y}g2mdrW<5{hSnk%Q+~
z4hIFEmtfeAuYh0gYGlw3itc_|3Oj>)(tK@K4<EUD82cXn>CK-GAA#%E)mvA&e}}LB
zbPKXq<#~VgU-fe&x{oiW!Qm^{3D50t!n3=}wnu%nO4-cj7ufO(*=D<~Nqwt<ZfdkO
zs`2y&y4j9jq0`@F_jK91)Y$j_o2&nO%DWM|4{c}V8~XEmcH6q4s-5j|SFv+-p~Uxo
z;ugGdfvj$&6O(L7g{(Xu^&dHGJFLFiO1rxuU;G4eccoJ4NU%A!I}%iX_dCJ4UFB+9
zngt7&N3&px{BRjN967j^|Kj?`PA^o06aK-^G3#H{4n_`d<@Z=xxxKNR?N+PCx!t*)
zZ#cHk@{;=4(bk^5T1TEEA3qBVYVf@jcnGW*#9=Oe1?!ghp|i^DuC!LGy(-g|UXnrj
zM@;_l`P<Us)FV>`5sRB&PuCXhsj@dTi<<52H7)AFK>?QUJBFvcpvC)#G_5a`ys+bV
zK%Y6Pd$W4DT9B1hT9&1)sv+{@MTCu79<bADNiWMN&uq-9$SPSEGs&_&J3Y0a*jlo)
z(OQvKy4etvvZWw1Bd0V&RGQV8TAGpnY{IPM4LeiPvdSzKdG_4Oot2id^osNxy)CkR
ztLWhqn40ywdT6TPo11Tc-K)h1pcChdUoamJ7`a&SGdq*me+J!<HztsOi?YEAH;`8a
zN1v<NQC!quP=WtLbH^aK4Oh^y+@wN?0sM>+c&8kM9}+SLzF>e;nb^MU4(oR}<l8Zt
zW!Nt0Pae>p)R0Md691%r!J&2P;SdP_oLMFu6B05;>kLWc4)lfKS#W5?wI%|hoq`hu
zfx>*xp@_k|@M(qn0}BG5U2uozAAEj+p&UwrwSy6k5G4?GJvc;fo9Di~NbR%>7R`O;
zDYJGxI8E>dA7Mun!eUxuWd+Mv?U2Gj!*NnrXHTVJbU#n}+OZll+_5Y9iNS;+y;7d?
z0U39NOnr$=5>;koRA#6jd8DT55v}v3;fIx1->hl6s;zGAs%wRSh*vrmsjKW&cDt&}
zw!3n-W=#W`Q1glE<Zrlb-|HI3x(a@KG<5S)yee*8aSEK~eaOTw-%+_^hiVttj)$7y
z2foSKiREg06&yL)T@IIKbLZ5$?fY_?at;-@Z}{Et=hpv<<R_lM3m4-h^WdOwl*8%|
z$0*?vtrN@>kfXx}Qs8t(5j3uAvN51y4j&X3@w_#tyW_a<hcC9^_Z>0#W72@XmpdFU
zwJ9yH+wscx?pEEqr)oTK)^<n@M><tS<gp*MN7pqhU9N(o9FI&R8Jjk>?2gpr4CX53
zcPo2r+|^&z-!C2~cl=iL+i$A+vuEqhsqt()|4CRs?j#ddlj!)ks=9cs^W=y`S&tXv
zr`qw7n>R~ts_}XJHWt7kx;Qcy=3~uSSTJ3~f$!iYD%?V<F(PRi`Q5Ess<x_00V&KX
zBZb;sGx>7I(K0-txXmcqySZXyRjTUA+J_CRG|P7^tz5RVVzNI33P*p{0cvi@F5gCc
zd9^pcZTn6w?|%2a%F6e&m9M>#@!Fp5nmy`<qjg8Ck1lUqUcaKXveUopxr=yH<Ar|Q
zcnvpSz|D=X)xNRk<#+cFG`+XC;b8rtU57*^qemBvR)fp*P-7iYYBR=OE_kQmmE-{V
zHnXs1HZhJQ<Sr>T<i}Z!E0Y!%ElU^4yR$<1usW9EU0@n_k;z~+ys;0QoMRmRxM{E%
zj=J{+3f=?#K6}Xinc!UOfxZ;2{2k(pLsR-9Z7C3m^(CQvLrSaZocgm7`)omEj>)iJ
zi=lMC;hb$h#99HCFYoKypK~Bm9XMDJ$omVwLyP3QFYmJ9%@>Y}x)1)@aYEgJAF9c2
z)i&ppg=eaWmym3&;~XW`(=}vo>PGl*;8;06R*8>k<b9RT?|Py3oT%yhpUVEDKHO8g
zqgz{Du@@(^r}}U$%h#t^?J;m9O%T4YDja{uN|V8z{uV1C{=hgoah>Pqf&4t^!sXg3
zyyb<%qV~NwZ_jfNI?$F?O!A_$YqN7y!S&8$^IAY1T7g3=@eIwg!b&{JjXj_hEbf?M
zEK@gLs48#JHgOB#!m5g1=*G$8(2d;8w4Btc06Xa<-6f<G`Vq)$4kQ7}E$yQ+wIg;x
zXZxR93~-2<NlVdW=jCUmtJ0gY+VV7M`@vsl`qbxl{@JO84_Y#Jjym6m12EIQU(?py
z)X}Bt%J0Z-)^w*3C^V?0$zY)I8t(k%90+Gk<BoYlZU}O#;J^C2{|-J?D5VqNqexeN
zL@@`f0|yF$I2%}Ls4)y>g9;ABVdud~@CVJga}S!k|L*VRApay+;r@@byUz821q4~J
zRS758;d>ePZy(nsI9jUgbCvnt|COeLwHvZ3H`A^ILubet?!ZuCk*cVsu&zYI9sA)v
zGJ-=ekJDBN!^g7eup%3bP`Z!i!?_^tiz8UTLA=U2kV(7FZo5idXSW0S-A-#P3w{Nj
z#x1Ip`*!wN8(l|0ir~;uNp7CjIl(!ekHdtIfqrddhhbmhzSf3??|2r^5;`V0C-8G2
zp!+swo#B{R1cZqcz)f(j2>j7O#ZZKi9kN3h(-{K00(PezY(t3a>=TKwvclWo?6?j!
zLbP4j$>Kxc+4nnyU_25bKx%^ssc<cKjQW0vG?|+~g(v>YZxnb-e+vHdADl<>_>P5x
zpDIf#N=i#L&Qs1){L)g$sB;VLEp^p(wY6HuDaR>(Z7pQfE%w4(?KAKd+3>*d0H5oW
zaByI7fRDQ{d__>kl02Nt-)q_4nxIbDo@23U$t)7a?PuUwaDneIoL36}2_&4tfiFUa
zAn?UGti?3u(<|zq-WQ>9P{VEf$gcA#7t|Nd??2bAb)dmE{=Qf0uU=8XY8@)wR>FsN
zBLfiN2Ty$z&FzfXNgk*?ya#4VzDi!pZ9pg?WGC<LZP?q~rD^Hvf4BP`QBzH0ZG*a@
zu{6I%+x=w!l9qH)b9#fttdg(dyv^T|Z>|4Kv;H%(9q*lmdqijRqPr8-i7{#0a<#Ka
z5A34sT|ZkS-?m|P(&X__ha89P75E+j!zU9`_u}vNP>7p&4*P8`_~JPv#&?x#Z%=$x
z0Jaepk7N=bf8zK}X)mnIE-WN}kU#tj3$rT=?S=NLHaPY82mZs~Zf~oy7m7Y}{zutT
z)Rb4N$*aw+C@5IA%paJys7M9+aXkw`skXL?vNq5S%{6xW#f$#%HDzN(Q$=I3y>OSP
zBQB;P24VoK*@;6T%HfdV5IzCM6%K|BhVbz;JWYAxgze3^6Pz33A9rH8EiP{ARDVt&
ze)xgU1z#1V^kEjq555e8fJoOlWlN#ED>-F_g*&q|bJGh&`6b2qc`BH$^(^KI>T0X2
zYqckPp6|K@8%Z@yE$yn#?AHIo*qgvNRqXBKAkAX*;*td0q&cU`A_^i%0XJ5GB4sD+
zTiIy~rL^h3rEQvKY11T4_kE*4Tb5E4WZwiS2x8q)@hYHl-79m_N%8kgTD;!(zVGM%
zH_{|0=ggTi=giD^d7ftyIjhwQxcS3R(fs)ulJ3q{k{2{UIQbT(B{>tp<ujWyd7YPD
zLA5kc(j734UZB-<CG43PXF8whC@>bN^YU_X^7vwhtHfNgl_b`YXRm)J{q|E5@CJ!g
zqd#cHJIZvm>6|Iw1xR~&nWMOfhfi_;Qix(^97Aj)aHo)eB0q#H`mMKdbF;H^vRQ=2
zVBmv;+4#Vk*eU5@l*vE&JE!cgMz`2(7MnVsF%yp-?P++w|7v-X<UXQoYO)>+Z(?wB
z-|(ho*6{Fdb+_7=mXWfauYL@R9v*I8))ek1Oz})<3O{CTYVvcRcApmYC*Nz_E(~^$
zU|>Zo0g)MC>L1gzAaWu@9)-GGxE>E)aEz{EsPn)r19p)FYIyX81`QdH4=8}eMqssG
zKt5B9(1>>n`XOm!@tl5Ln;C+#%^Q^l^1Zruv%mNQQm=6@C$X9~_U5k%z%Qh~zgP@=
zf8qV#7|8q=jh`EDqWY*R*It!(U)Wpz{^Cbrw~Eq`h1eqeq1;n$ZQNS!-*wd;>$|l)
zDtU{Fe5u(|pS-7>Llm54^d@bVd0by(#215ydrtv#`~HSdS??add23-sB}j>^dpU_i
z)o{WWG=7XhBkEz$V7tGJT?ZmnuKWA7vEBVKTwptE)qaPlMA^oo@F=7|O%asHB0bQr
zL^!34igLy6RU;+0*Hu*?#j}#raf#{v^dHJka0F;f@C*j~i)ZyEBf6^L8sz)?e83)T
zib2jdUDKV|o#^|E#?9V(Xh&@H^TiIHMxoJHz#q~55^kb^uG{XX+2P%Z?nE4pA@gM%
zE;M=?eLeVt_9fWVAamn)*s==J0r#r|L%H`I=RZmGGWI}-BQ?155^{-Q_FUpE>~WER
zfyj83q@x|f<#GgI*ulLAbz`R<9ws@3$D?<rjhIDJgcp>FhQzcqZqz7IT3RC6rJ=8r
z*C}53n#6Fmi40de>LwDBhH?;3oQ!xvy!#OBQ)FOl6lXa$-n<FmV7U{pc>`ectPr*v
zko3-Sb$L14c5{@dD9xFes7f>>;gswwY&W(sDNzLyL@esgShSB@J2moZf02*-O+qxD
zgPwz|a;Qy`w>C(P-NUJSh%oHbw{DWzG7?K;h2g?5e7wa@<iLqQx*2;`Bfkowb}L$|
z-K`}q#9ditv4?K0z0cYvC%n-%mm6-?@PYFuhHxt*BbMuc(gyo#pX6Wv`tn*6ccF1-
z!wJ<}^V)(phoM4Td`eux%DK|atn};*wZV{^XXL5x&#4936|NFLGVp8C|9vt}4Pu%W
z(eYqV+^H5<h??jSAk)FG)R90`$A#*=jIbejM|KDCzTPSYhM}X}A$K$wFsY(T@jq%D
z$ZCvvS>XvpnGEm>>I`mp3k<RlP&UMP4GNKxzBL-!S3(E9$>^LRWDvH1T?jtan@DV9
z6B+cTl=jWjkiHT!D1_j!H|Zd3c@<m4<TlZ6meGOY<s=*~%y=4pR7wV-#DNkTz8vAi
z@yltrln%ts1I0&aIQAG%!k1$U3LGdQ;YSIMI!eNER4Ag-U0(>Rl)q{aGS>LAfbOpv
zKRSdAA!3;yTFATI`*{c*atr;zyNPPpM{M~62e22_;1iA#k#G`>6bB1-=eswvzBTw)
z*0UOEqc44$JdOT5crfc%NOLyGgqMYvMdZmBaRfS-uIp2wzYL>Rfcpt0Jq_p242pl>
z!OdsJaBibJOLTf{(-7KMbuWpYP%ivB>{rrHMNWZcWd?(%-)~{_zvhH3o)t=AJSeU|
zGO{a3uRnUmdnSPN`XeK~{wPe~py3c4*S8(vSD+aXGq|$){A*k{V!4OOVNqRONpp(|
z^nmC(ZqkRar^0*fsc62N@8(205-SU<)p2gVJAho4ee|)YuJ-;BwH!T6-WDNu^1-3=
zSNNXuU>rV)D>{j+LQ86MbS>A-yZQTeT6juyG(TyQC|XB;(1g|LIC7Z2Eka#hTRk_3
z4IM#;=6=9ZHS{n&EQ)65u8ZbAnk3TIHG!*zz>wQpT3s<J&7z@`;`*NS7Z1QZ5iGpR
ztit<eD`r+<Dy%|W1@A2>yr-n-TJnUZu9im%`Y_HcdF}k_D~uF=<@})!5YYhonVs3Y
zQyu@&N21!gk|uVpN&cetzs?2A9p{>aU+>$WI@q7M!)T0NG!HYuk--+#>Uu3yT{J%#
zSMI&0p7s>!*lBt$Du7w6z=;4~fYCOrUlNOZ?b9&!<OOhqkjkdlJ;UeIA1TkTeNvA|
zt&fTZyibGAQUzD2D-17<m8LtLh7xsEQCVeKc7>&kH?^7D+El_0vhPdbHBfaiYJY$^
zPrx*ddC;9L=n6IN8h2-ztUs0bi*EHT#vj<dLPr^X?dmMl^k)Os9d{rburQVV-?VC?
z@TX5=a7a!hf69_e0ToyvsVFT)S_4`PCCLfAnT$}TSd#Tf*v%HlCl{9RiSE84WM7?m
zoZaEFxzr?5>~fim4&Iq<GZ<9;VMXDTZy@-ULlk!aJ?J3*cbKIcNM?ZAp9pra7E?<3
zUjB?k*dk$3f21lrTO<o5o|Wz!O2*gPq-m*3NG)WJ{1}mteg_*v7ISp581&6CqT<53
ziWc?BH-W_v9;U7Z8qX{-dGzO>$)n`ar+=o8&X~P@`35|dVDcl=B09QZcH;~+ee~(4
z5nb2_2K20<$h;5I++h%^t_}vFLfRHi8t&XzCWgrnWXO{|Ka-B5uX8I_uUWBtjWjJa
z#gKqd|E|3i&XS^Hp5&7x5>JMbyJ|Lj3NEr-d1Dj0g=k#l%B5Nk`4L~wjL+!WASvDd
z9Cgq*dQG*(w#5<3<;68D&X`Y^zdTSC>&$W`a;tV$ZoT-=^CaY$`rw^eNk{mtw|+{x
zqb9@2u!C2Knnz@vBP+@3cG4~_Zg*a4XJK||cz9_&G!VKYj5^r^nLyWy!bIQIsU)`m
zi+PRiB62RrV#*QinX`AqG@9?xhI-^GdW-1kYh)LdbC#SuizxiUmhavt`GU4ZkOM}A
zd)Vbe2K5!RWDrs@7!!~{nMilhS@c6S{SbxDBG|zH03z1_gjhy?E?plKJN{Mhp2<#G
z?5FF|HAlVz0{!DZ(5I!{8{lp2h>6)j#m_y5nPipB{Vn{}`b=aPIdU3>-Xv=&QBy*1
z(zO^*XYpyVnL1GK@<FiU=xLk{KM<lOgxn+{<P4d`7ggui0?NW}o8f*<g%bqa&8eSZ
z{8kSnWB#jlbl_EF{G{VJ(k|S)U!xJA;H;97KgmL6VOBx91I(`H&LybR(zDXD_(ji(
z3g^vn%w?&+cj+1+mX`CWafYa9Rg^QjIF18RYz7%epCyY&OVblW7bU6E9O(sFTw3)H
z^DDrdbrd-Gqu-Lv!avAH;Su)khy0>FSGC`>P}yi|G&XXy*<%rr$(M-)Cg2>Eprs0B
zgP}ULhGSvB$H-&!(JyCFA73IG|HF_EF@TJuMo2JBqi;n`roO(IS86e_#gL_Z>!H@8
zdyY$sYn;^$Xc;yJ5QPaYFB!wScmle3N^ci0DTRmtx;I@QF$*$fswFwSw}%%L^NGSL
zk;7Ktw6h-W=<VTItcM$InOUlEVY{*|CZu7ddS%FtbuoOm3kGk@hMX0(8~irZz7c&$
zJx?Y+^hRB4EnnN3b0nr!ipP~1&!R+3Fd_I~8Qe|-gNF^Hfi%#!`#CZ?-IkV}Y4Ahh
z#$Yh%b29uu&dP8Z1v_o>rA2rxJ}JsEo2(`^;xzoQXOSe&z+O2(s^lACr_J|8YRvA)
z%+D^c_~lq34}eGvf9DQ(R-k73G1^!WUQHf5JHTc3v)BO4P&=Kud3GS`?iA$Pi%ms-
zG|)W@f!#58?zEG@;C8?M0VWw~YlmG73RocNJRxgpZ-V6&h@XKj@_t5Wzb_I|&6@TB
zWWTH%dnqyEwE?7v4INC$2q+Rf|JXy&cI%XEC#~E2-t)a#bN`^8eKD?Ug7r9WhpZip
zMi9^3y6(RU?I~-&423siei3y4bLanCkf|CqXB26Z#yz6zpprZ_gg)^lOOorrLq^Ph
zSUXE#p5qUG-}c>^uccjG-3OI0>0J^!EEwU&f6V9CKeuj#c8ru3gN_=!mmE`L;D$iW
zIm~%JJ$rtN@NYH9eEs<71yS=O7D{QKg|kLdzrRlMDaMOx2nh7!>(17n+jT}t`kc9V
zi}<M#qJceKnsN>frZ-*&i-+9x3?{8imB}-hQDf;E;tR8X9et2nNnd$w?yRZF35m(}
zC@De+7L`4^I;keN)!ypdS3oAeMMi#sRDo1#eEX>BsG12nkydh-_j;1d4j2rpnucbC
zgwRkI35F>l!6wgeME#En^O4{9m>d;`bN5_s@N~h%_Nv`<pfd@Izkf$%NvDjgRf09$
z7F7@bETPA}OYjA`e_eeP{IZvNT|DO1!L{==HptM`Uqa|R9LKu1_8tq@@Fg6}{5d#v
zLL)3t78>g*#t*Jyg4e%GfZP8J@j4<dpemb`PE&rigQI}}fjG0$f!*?SAQqs7i(G0f
zO)umrzKTlH67u8K@d=qJY1rUVh|=}O<Yb5z5v?as3|}D1xM4rX#4g+lArNM}RtN-_
zRZ?$n-NbptFbuX#xF{@?B0|UoSS$g>Q0){MqSXa@p0GkwiYhWH)s^sI;KZ@h78Ke`
zfyH86edNLZBI?T{-HHMCp>j+B2{1WmE&Y89C*K7KF2gz8*IhDyj#>Qgx=Tr0S5NwH
z-KDzBT4QaG?vi{<Q(iq&UJAeybyEf~Y#>QPAALhcANgend4zG<$b1djlMPRjCH?SE
zxUM|3v~V+buR}bV$`%F9=jpee08vsxGU&dmkL&kwU4VNL*{Lh%c=D|fAS$aUt*cYf
zJIK_e$vkau$TD*fK(;%`P5gN0I(hyYc}(r@5Cc>|cyDY4;B0o{eVYFY)!cJI9_Igu
z&R`fve7qW#2C#(wl0FFfV0VS&Dttg#;D3c}$nKsPE^(zGf~r6_qAm{(f~Z@U3!ib2
zOUw>Y`U`plwG}KfF6|@k?)e$nakeX>#?-}twJtAejD-@~@U(Tkpxhp^dDFTGX-<YU
zBSS^^fF<4G832Cc1AE^Y!I{g-E#>N;Znm8HfPX%B!iC5$rRL&dbFsRz#AdJHhgD9v
z@v92*Emp26xjB8WMY`ZXXnTk1K;iz1J>2gw*Pefoyp|!&F13`GsfhIZ?}_yM>8N!F
zxFfDZ6>W7%%fr^L+3}|1VBvvsDQ36D0UGyQ2p?=C$$kArkC9CButwN*Mn>k5*EH21
zYTgyz{GKQ-lP@&wEUb;7E1m#miedm5tYJnax$ad{m<52fjt<zUx##j+Qxb#`(4>f|
zT~nr^mE8ld2@W_mx!{Gv!1a~16NShPT#}f|fW{#%B?RculHx7UDuNcpL4=kN(gjep
znsr8`gSDuE_r0IH12<xiEMmK}Xa`rc!?`^|MLv-+38-C-hO`DQt-;W^OLa%Xxo>xC
zmAhyYDT7*HkF=TY`R8>zzJIwomdEr7b4c`Q=SiI2S4AS|F!C(jMz8n2w&B|_5&<0?
z#mP@QIrr%9(SYQhX>UK{1@`hZl0@FQBZ{rQ{#=8)_V(>s9{pgOCOh_UEL!#!dr}pT
zGa#dULKmK*BsdZtmvY*I`BSIOKYNX=$7AR7*SC8bx%2&VP%lET@g-$RdT|O+s>5qD
z8q;>B?(}PH-Mw#Ds}!OW4yURSLqVS%b(}p5BMJf^W+MQqvKOL@q6&B9`{_W9C@~|E
ztEO|rDQW2`*?j79qt>`AG9xNIDwRrZ`sR5Li~#udACYl95)tq^3^qev7T2_K_ol}6
zsZsi<%pLUkXkSFdlT%f6wj`w>wZzPk;nA+`MUf?uei0kCZHm|^h4KaD$0CR<pdp$A
zf)aTiXMQfy8ASGNU0S`qA=9rGOplb@5`Br9%n_Fq6_g;zeAIs0etc(seL;OOk&N=q
z_8zzkK>z+bt9ZLT*XdN{n;aOE!w+oRzx`lwePMlm19`sAw>Y<;v{;4A|1U~%Oco*|
z-^k<>D%Sp-QN@uH2t?%gV6%Kmh)kY=pL%|f&%sX&P!0w^9<qHD5=S0CQmWyO!0k`~
z52M$RvEToWfXp}*l8sg}U1R;e2X}KG?$QQ49j_C`2%;E`(Do9$d`Y#?PosPevUWu$
znLm@I;f*p__?xzmT4~{`qf1tXtK{45BuQgS$c>K&uISa(RK(GL;7O<Ay$9$6eC49&
z_bpV1yA@4hl=vA?`xDO{;_LU+?P=WguV2H+bM2R;L{mG7K8QOzY%G0HMLNarT|lUS
zC~}mna1IZ_gOuawRPpY2E6%^KdN2Fj)(hOfmOs6JpgJ@>1y1+V&ot2&<_2$Ew<RQW
zjTDvLwjpTLh8<G6ll8G~1-ck%!}+TluWw7=#jnDH?z@&erACdu6Ymp~Wt#f8ijN&r
z)tc(EYPhB&<!8^S0Eu1P(?X22tibCXG|@)9|AQ!k{%WPUC*>cT0N3d7Hq*F&H<PDB
z88m0^432h+>4SI1QW<i^x=B>S1z&0=&prF=_Fd6?qV`D7tp=xI;;ZU#v3%}Hw36h^
z?R}M}_yf>Q5$`23HNqD1xz(iKhs)4H^11eSGjJ>18@k#Bt5i61bXIg)EY}iVxqhW8
zJY{8UG>3iOwlt2~1em2oi9^pNo((_3IcjWmwJMzASn9E;x47JroYE3idu;oLW1L+g
zf9oWfn*(+?XnktxBc>yuUa^c0;?pBu-nLy$(R6c9{?(8>#jQK8jM}}SWzF7@1MA<J
zxs|@~^D|OJZ&F&+zyG}dUq|^p=kv~AR=uBae%reonJQ)t#1Y&?!twpP|72<!fXjh*
z)Zs6>p|nb3H6p8|Kf<tmyv&)dNlI8-v*`qriSvBoIpg_MI4d&e(%EDJ309F7vfv$<
z)XzYhY0T^sTwTO5YuzsCyC=x2Fvp)k{)Q}=M_cgp4EW!vF5tkx#)v`kPjN@Ne}gfK
z!}WO+Guj@pKX5e;rCw=ViL6M+f2LV`f8o0Vg|=n{R20PKp7}j7kV1^t>2UJp_-Dkw
z^nUo-U+JDnlDcO~O1lD-uP<BlGH10&#xFZ{`O1kCpM7?8Nl*?id~q*8DM%#Whh2Oz
zcw@*q=<g+4V&haEUz%i<*xV1AE?HG1X^2^TWcTT-<Wc75i-*!s-t&}%q<19-Xgq(i
zVV8l20{aO%1eGyKae@|lAeg2AUv&r4P9-pUkCKtp7g`>YdJVIj&?m%<dcf={-UGAU
zmp%$-@x>7sCx(hY_9TdsY{mLAHD+IHS#fb$E_Ymr6A6=HRA6qzDZfUJTj*pk@D7$h
z)P`!hwex{oLgt#KS*G;lji%D6-2vSJK{6KZU8HdbxC02bk@En1!Gu71Q^yk1ILNJN
zX87e!$kGC&yt+7O`=(YqfK<3OMd-m=NhA~L@cz&WaUn>2_78y5+M`n;bTEuQQ7B#%
zR=b~6(q(M`9QgmJx<hbfqnc>{H=gIZE|Ny&Ge9x;(`D<pH*Plp;y4NbN9a(ozCBt-
z+wMRl%+s+-HVl4L4|_);p$kYNl#(tba|f61-&T<#J-MP}S+FWN94_gw;9=YZjk{x<
zrd@JpSo^SH;qC41CC5%4;VMe@?>=~3N-mX>M6!vI+DOgC@5<aOkgI;a0a1y3O!TgP
zLK*p1X)<Ny81u68ERI~8&E~M!v-7fZvdku_RkFQJX){{0OlEvGnT@&Gc2l0!Vav_S
zwVQ3((sc)w7E`trDaTy1E!UP~%d^@ndFI?~3p=1%hoX(SCYveGl4r9apK7sX=b5ZV
zGyC=HNlJ6J(VUf=g;I0!;M?Xp%noy&(UOf{-!Lh&jZhRb=CS`APJ4DXl-^pM%Is`o
zmW9i*7;z#C`zZ%6a}GPkJ%GHggznAL$h@uz;&vD_pg@sx`ikmE;+}*uj);rN!*7yh
zsxxti!uE0Y;))a7uSr9SpLyM?Dq0s}U!z_VVoY1dTc5cclFDtLTCv2QDh=Blw|b$9
zE+r4IA>vdnIW<*h42wveq+9)&bo<d|c~;f3!{JuGCAoH<Rkizh^3)!yDksFcK24R9
zk+j3k(KS~P-_ep-74qsxt|P@x_i=bwbOB!IT`vuw9V~!};>nRy7rn^5h8L%v`Y@9B
zOl0u?mC7F3E{|5w`WB}pI+BnZ@`5q69xYJjAZ8$)0(TvcT93>Z8x|Orj-!3a6aGH?
z;qnu16y^}bXB1B&i0X5gC;&5+I|Jk|AiSOCUamy6Y&m1Njo>0)q&|ihkW%Tlhl-c2
zj9IRh&kxv^RNKhERrAJSmE2x^J?gXTDw6d+X(p@5bKE;`ebjVir?lnkn|r@g%Z&k;
zU_~p)L#?f@R&}1;YRTi}&PlGMoVfVa>8n?%78OQTuHeenyXYe;F+=1k+x5gxcaB4C
z(wZ_#_8lrXd`R{Cy6aTTZP=K;kv>R8N9aRpxn&aVH)zwk!6+@@)vaSU1uc<MJq-$^
z@6r7#oc5*qS6^Ngvv#El)gAuP3qNtkj_f)@M8qe8h}FN7M_hY<0*e%OPZIf^e68v)
zJc0p)99254kY3^p)yr$*3KlfY-?Ok;TDBv6_trTt(AO8KBe&F-MDuj!FMugLK7`Da
zrqo64-Fb?<{_O?To^4G@4P4lnt>?nerdP!rjde;9Q??q^o2Mluhw;l}!xu)amWI!Z
zpF2Y};=s5)W4W3+JLk1%JLv>O5Z96kPn`~ZC-Op!bnA_;Hh!mm?|fy`JN%*gGfmY;
zrKQbf@9$%g)BA&6S0`gBu#w0++;xZ%wF$&nW$o^e4E-P4!^p)FWYxXn8wjE}(4P*G
zcwP~nec{FnV?D2Uo)!7~eAeZX0JD~>$z(y~JIWntOVgvd*SFEfS4>yWn6tBXHcz*I
zPBTcxD`dM=_ip5c_f%JpkjF3Y<_hYL7d5Eu4y)PDS7d!ihm>uX7RJ};bZh7nGdHN>
zDxwM!xDToCt&zlcvNXM-KB21h5_#e+b!}~ozLIZDB10xS5~R5pS&SF}-4*By;32)`
zFCK~<i?++7oF6qSVW#1|gU2t{eKdR1w8$wb(u?!PwT@7O^*e|TrqiQrQFh#y>Jpj>
z9NuWMRJwgdl6J0&`kWp5&-vWq+-0R9byADfY*Eosq#v{|hi>BxkrCMu>e#qkTO8kp
zPV&$Q@{~y$Nc&MhNr$N;qjGFJ_~*fZov@e$tA$(SQ$a6GEU}hYO8AS1PoI6OT?(9m
z`yr?^eoc1u1-#{*eq9UwMV-pL$PxLpj~au|^I%Xocp5?T=~0s3Z6)uxt;8v5B}YZb
zW6c-esC@^nJQ*eKKgwV9nSa;QWHO)}dx*Z>{VLfbKZI<=zY`$5JRU@(NZLlu4dz-6
zC3RJmmh<f@D-Bz<nn3z;%eTvFIqS3|A6Yo-$60So;ogI#>eKR8mGfv-OHGxOPOPLs
zm&x0zuXbNKdWy@e+VSZde@NS_$kRius`3k$U6<6CE@vcO;H~88pW5TNH=f)vJ~K{w
zbkXjhaVoG!X3V4$<GIG@x>c_Yvb-3jiYtk3b#mm~uh27VBezxZL(tXq?6~(0hH^F}
zXW2}4%ndeBd&~}#&1lY+?g_<^4Qh|w=&(5RY<YQ3v)yRV$}wb{q`OxuvrU;cqtocL
z=G$%dynIuh!EUf-8ndNuti=S7kz;Tg9A=k2FVF6>;A2*9Ms~LJY?RWRm4PEOa<iPd
zfN{BO`DT~NVK8S&FB+9u24e=7ZZX)MDoh+M4#-=hL3OS`nUj^3m0`{>XJV?eI2{gG
zE`GvPC;d0C1I@2R&_atmLYG!a25FH0=??q~Nd?JD%`nDI0awNKyrv!0o@ej~;RQ)H
zyt%v-8GkX8iv&z<E0kfO`OYFI(1CZKWC0BEBo-mnK{poJ@Fqs9RRZ89bRN`rIsta`
z?+O5RlsU4P0hs@;Tnx0Km<?3SDUZ+y7&4WKBy<E6xR7muzdW3-`i_Q{OU-!D)k#TN
zdOe?#W=I4mR4oask8B3b@mvJN42`?!Icb<}XH>JAsKpiKPDH$liXG*a3aQ{SD-+0X
zn54b{OgD$-kX-r&d7A!KA+=bn7FKFn8lReGNJ6OtC1DNQTg;sBX{fN?v%cB$sWddV
zaYu_9Iq`}zCs0botkiNT%d26i4a7eH%kjl+Ac1$h-x1KLXV^NV%>k9eUmqF>(hvnx
zoiNf6S`4k!A@Qd#2s$MhCB%x#?Ult9YIm);qB1oR{_ZGGtcXm<@V7IwHnX0i%Y@%V
z@9Sn9oviMz6;GbAd>YcE%RIk{GNUqekt*8Z)myzNtL{>hfAl3Uu+SPv7z&m{4TP=G
zL3JL5+M`>AIO1kNg2dBk%-3}KIXeCJSW=k#F6sZ|m!qz~PbA|%Zv##Kp@Zb-2&f;f
zK^2Bd5%xn#h@D(paCR!vc%EOBw1ljr4y^FuY?P8(32`<O2l6G@Dn;_u^*I=23eb6d
znBDw17(|NCKZk|Th6(v{*C1RKWJ!ONaor<Go00^P)&C?riJ$^cr9b4LOY!Otl8cfG
z|D-!f5M9lYnFF9!`51)1bV8g80F2Q9VOO+5K^~C77G_4K*i!8Xq*iPI*nSh$s^phF
zadZ;Z(V_G)&a3DSW}*Bm3SE4pm!QEeXg|^bG$RUOVQr2eM(W&|Rqto0kE@Du(0NCE
zPm(##dc)563crNPNN1FR&ROicg3QbE?%=n>xx<hU4^A%ciwqXuvx{F;R$N?G)CxM!
zm(DpE<&4BGe(?zg9Db6{@ul-tupJChep&dfG6B{LfMxi@c5y`cIisrL>a)na6~2q<
z9D{ckzl!*shI%KNbJF(+o#%+EjB7CX)o1N=R#YPS#`z*g$B9ykD>EzA4rfk|gRgg1
zRXOU9ka@mj&SF#_JNmIpGt@68b9~9XBlV7|Drdc)!+UAc{$#k<?REze1=0~C;9MQU
zP1?Sng(T$rt}c?v<MzV|=}=CeH*Y#ezY_PvBM^+hPQCGnhbOG0K1c>by;(tD>j^{r
zaqVVDJKuKrz~SbT#nnYMMK#je!sA5Rs78S|J_;X(=V;i>St_C9-*Je)f)E~=xU|jr
z=36QtP?Z0qqdC-sszT_*5%c+ND?`_9UMCHU2pY43InD5xQIqc8=)=XIHpN`vH~#*|
zR^p>Z#G!hB@j=@gQZil)m2q$#NC1Lrxa4C*jsQ#$QLab7#kI4SJmN(>4j7;0dzaGJ
z=mg}eafW_VjuII!k2qABQ)#Q<*4FCI9#+*k>WZp4`Suq>o8k|?t!gTHySk1w&h&Zj
zT)lGP{ChkuOCI~;#bK9-LUre(rW-qtQIW2QE7BF|N@AK9A6V74N;;+e+NeL&O>h!{
zW%`k|F<UZY`-`}!6+vG&NAR25Lff{zE&XnO2$@J#YDOaoq~q5(LrT~2Xd*m0GMJ7W
zSbS2-t_)XcTU)%odXp5@H3KA&q6)4KKDZ1R`K1=4h%U4c)j-Dhd!Vyv|F5{F7i%v3
zwEv=-`F|`hirgBS;XfXQDKh!(5VHn!7`I(1zda8(S%JLsYpU>WL{a`2b!|#Jhif^o
zxH+~srYNRJsw<?@<Bh5tO&{Ii<hO1R#id~vk(iLYcmBc^PX2Sq)pzDi=jm4xISHw*
zd%L7b{r185&?Y30(WGje;P6@9+FIULQJGtbk?in93egyaT}fuselYmwo4M9yxF&T<
zvc;Uj%gMY=)$5Db+Hiv<Bmj*dg^o0bMv)<u<&jBB*M&IOsOk7X3?`$gicAdoZa)9^
zHni(zDJs((@paG&6&z7k)3;@u8@B=t0o3iq{Xf-Q;12x0=MUn;f>i(81B157>**V`
z-|{Jx#qV~-$LH7*__ewPx>f4vXh%^j9~!<sex*8WO=;B*?{)9n&w5hO+zan<XqH(s
zhf#%kSolXbb`sIC+9JNTsJ5u4<YY5CPMfr&{pPhlR8123mHlo7Vpn;QfCwn?WTMgv
z7JSUm+}7Z%4Df)u5LY)^>VfdiO}}z67dHKLQH3jE&s5PaJY?u7xY8A4g2Ey=^q|m{
z+oU7r(}^KerJ|$1fiLyy8*e+xT3NG!+KVQ{s2G4ABP9VG&Wsjr%{yGuQYl4k%q69k
z5_Nlf^}%Dj-6E3j+fNo+ekUq23--LCQv-7^ud4)+>KQN@^fHe{jCAmPk^B&Vd;kZ^
zXFyhQ<VXS$Y=Hkp-XafZ0BgrbGF;Y+AM6DcvZDlxSbm5&Wef|+3Kt%gq3k^QQh$*M
zVSJ()Ig&zP1EmAx2-Ro#(jMLCk+=RrG<so<^T~V>tH~t|N~HMKbJ{sxd5&8n8ORWI
zBY6YlhZwAnox=-Vv@__U(t92TqhzSco}wg?C`m$5M^Yz4VeATU9m8cz@8f=Pb_*bj
z-vP1+OUm0O-ZJO0GUX_f)f_ER=WU6e3IY7sbJ;sI9*YFkoZr(d-rCu7{#_hLOsAoy
zFE_i0rj$HhT2WbE3j3P|lD;EKtPOX|b81@15ZsF+WLooQUu4w0-PqtdQk8!qwu(qy
z@-Lol(f@}j{y&#^kbi|e$WBj%ve1bPVs@d)m7SU)mH&v%S=mtUHoMHl+1VKl$)O2}
zxzc<~RC10g!<c3@WMt|K<CF8UQgzPsl)|)_M15&`wq2i|l?QQeLw0UXQM%0{h3%Ye
zRNGVaDH)mRnYv7qIUzAEs>vYDv4&Z4_}n!6me}HSdsd^V&{SlxW)`I;n+x?$ski2O
zN0K?qk*wF-Oy${``DqrDF+C$U(~(-RJu%rS&B@C)+jvu&!I_oaQ)7b>_z`1qR7!MC
zq%^L0OQoK38F!mqc_j{Wp}ojn>~NIkyqO!e#h73M{KA|jHQVhuc6FZ3Zc{nZt4xj}
zXIe={Zi+M|w>UXool>^ln9CQ&Rb*BbNHa|_dNY@9j<3!uv}Bu1CUbgGq9dcoY>RAj
z<fde8FGzL97MgbL$WAaB4YB#s6nk1hiZjWz-IZ09RhC<sQ7SFSN~lUz7wLA}OuW8$
z{oeelTw4rm_q_BRy*<MY0EQ#IFrhTY9Fv-zSDBq}D2}%pOQg9FnZUpDsFJ**ltOED
zdPzocvLn@Hv~50IY>P9dzilg$TFurRRbG+d-Lf3L#kA7~7p62h$Bg_>K4h8m_3%4P
zx$7G&mOQ7$nPr#8Cl~BWw;||-Xx6#g*FU*)Qkvt)x8|!W%mvBC8M*fCe3RXlUzF>F
ze^H#9pPl70<QwuW783+D^sd;n^lWKnw!xTbG6E%%ox|?g7y8|0drF!Mk%%$43|V%o
zE;n0Rm|Ry-YB`jZ@$evLx-}WB3Rh|Yyq3HQI~39FX-*T6CmU>)wa)zd?0h528FpM>
zm{p`tPIp?GGmNQH2gLC6)h<hJY@V?ss_s~xIl<Wi0G!iQ7@f*aoV{0Hn4S|8my?o{
zRGFHLEkP~%jPz{KIZ{&Ma}sl%mKYtJJLo)^Ga*B)H>Q`{U0V&7YFoLr%Ft6niLn|_
zTb`rR<S-Xy<)mVbk>uj2@_buvO+lsu`#iB%pXtn~$S=q*thCunr1`bsrgBw5vCUG%
z6(m;`Ik^JIk#tv<E2}XxH>1a$@piC$gEKiL+m+jpo{)uWF+1{{@E~2rTuWh%!-DHd
z&CANmC^Y3|NS%qMq}nW}xw6obEX{)xnxo1|aU_-J0&fv-HgQ=Q$+;OulO;OVW=buM
zwI<?e1NqjFnVpHtGi4hSjFy62dtpASFgh_EcdxI~Vz(6Js4QjWg_cruro!B!-15?*
zqQas=Tdk?YSZA%zuFJ_P&js25H{0$+)({S<y}(gjTa;3e7L{78&&$s)%Fi#WD2yvJ
zmKz;e#ro{LDratvv@$PWUz}c&USlxF6~JAFdU1APt|RODXKDW+s)>eIO4Izs;eD(9
z#i0;iXpfM&eT5g5^obKsbuJ-KbdT>I?|UEV`3JJNmu2n=?g=7ye<4U&l~x)TN0aH0
z_%Mzxx+?<r7D(LjBA3HiSg0z>a-}=DwmHLVrl?oQ0E3%PCPMaq`bEC5si>{F2UFK$
z`2F?Q1GkA~qg~8NMT!;q<$Er;${7Hg0Epe2awdxI4&`Aa|9pD?AcRE~2(+~VQI+KH
z^J%Y`37lUs(=bW*r2BdjB|s5yK>GJm$J~h$AzetnFKWUNHb<CF8k0-=RHN|6#D-WH
z&Wbv?72V*(2hzYPEIfY`QUC5hkM5ML+Xe5Dx>_}2KutSA9;2P4uZDJlKju*+X(T|_
z_>1~=#lgp?gD@AC87|8NZM@6_?u{-f8Y;~?rqaxQ^##-qFZ>6+b8n?;{p!4uEIkSx
zBvQtHA>O^P-(lJRw#*9Au;qk&Sux%{QLtAdWF$^2Ve%tAXF`&^SA7l%CLWYG5T%8i
z@WYmT6mj#GswTI_R>LKStjSzO)dO$Ds;S&Y>t6;Nc*V~=QHkIC{QE<{+oWA*x*t=L
z*u~^$dYB7EW`(CK@p_c-p?@tvF!t`VJqr*(1pZ%SEO?gwKHVFUNdel?D`+M_f=zkd
zM(TmPj2$?Zs@1F3<d=r<wwT<Q7}dy#QA;Lqzni{a{oX55ocZVPj{qkHx#vGNA~OR2
zb`f3VFAljEh!10Wf+~-f!8_IVY+OiRAPePF`p7f-_>1-<ARs)V5hW%>WkjjLSE&Hl
zZyj0BWcVQgw!5gdx{3>HZrpHOJzFM!tk3ZcjbY7PbyaQQE_Ho<dO`(HHqZ^CiiCpb
z9jfky?nTONX}Z`rt~qRb>rypyftR*!Zw}*Q<8<i}z2)QFbORF3;TojI@0YTUu4koS
zA%!k^_afyd5g%wzb8I)!sYR1_PgK7;Ieej(AN`H!%;~0&K2v=h(Xr?h=dG!Hxc>B_
zDZ3}A<^KAKQz8~E;+fpEXwl-WlP9Vs?0W6Amh;we(Wwu&eXRcM!=^K*`EN#x7HY#M
zy{eMe^qIJ8%Be*h&|>RF+EX3dK2f8<k2`jqI>mdJA2@Y#&xao)iPMAq(F6OVXE42)
zRE{9fgo9ke!P2*nlSWzaeBFjM9GN?T29qafm>NXHl$_)o=;jQc`XqvrK_@jp1pQMM
zz`|91?=V^b`9|rnx?4oTz;?+uz=C6~xOUG#vB%ooBBBpXI{7SlQf&l0<jIr&A`eaC
zyQ|!x%Bnr0{Ssjy=vo6Mn<Q0RNxf&XsC%WDfy+stJ{F0zKtz2YRt{8Q;Nv-DH1ZRp
zbK2XP|2zrAe}!_khMWvm3VFg)6~(R^bG4tTCbcrYfGXO3?HSO!SL^jAV+P+n-SY%}
z;Bs~@UO9fQJ$cQh=8WH_|3n|SDm^v!ncdH+M@@`evXEb}Bx0g-yle2)p``CL>7pAy
zZTnt*=6GS%Tf74+M!K>{|0%xm%s#aLl#DEcAuGeLYR%HZh3e;qZd){#r+ueQADS`P
zFn-s>vx}um&wLztQ!Ss{=ldUbpSr=52j0K>qw6<Yb9Qsao;;SR$|Vn6_I0CTBBP5f
zrcr=-!v$BYy|SRV(pKY_Tb)spP%QPQE8Rns(L2_qty0VD`plVD)jEf#eXeZ$<-!?h
zT|-;ZVfFcIaT_l1q)*U+A#)Z=$9AVEH_VwDH&-ox^yI2_MRhy)IcFd>(C3P@^}_pA
z7u1K_(xMyq3kx?6p?!j+WV+y1LewNTH^*l4%Xd2R^Ya@Td_P;6k|~NyONIK89$+8(
zvXTZ4+tHAjpOv4P?`O(2=a_97`M!w9VHH|NJB8a6+^zF;h=fjbea~m)b34SDY<YfU
z8WvwD_Y4PyFOTI*5t|G^hLx<<EY`?>+V3x}2Jp%gDBiFvQMZ97*WtL%Tgf&op1gI_
zCf+j~hi=-mb@F0WH`F6=gwTdi_RGMIoJ2I$(?&y;@}I8K6ZC|He(#>B^nMaD0XXS7
zib25`zz>R{LLm5nSU~e9ID7Xxl}wfbkUu#Y+4GZxO*4-Yc^B5WA~y19-#paTf@!LV
z$nl6LlVQqlHr<%@E{9b9r=o)!7S%3P(+9?kp$}+lwFfuw!U)d@aHk<wrmjAFwmP45
z%RD255u)U>^y(T_>#oKFH8mN@We9wFK84Oj{SvKe?5tU17cH(ou#xL7cUOp39NB*9
zii$i5)P#gQb>-5wl}9+?H_z|hQeEomGiQ2A{S~pw52ifRHdqZT+AH7{Z5i^$GuK|@
z-4)&CqS^1>*a$6!kw~FEL`L!~k*7d=vxdj}2^pqah{7ob2yk$rGy{YI8fT@ZyMrmN
zQU&YN9<;RJr3px?T9Z;rc+x^!M8&D)>*7`S7$mF<(N>BzELpG>VMlMQ6%MqrSIDE8
zH1`U5+{1mu$cfdRunemgh}zW|ps`{_tRXVR4R8^)pu<DJruPqU_&><n<4kxqSg6{k
zcV$K$o(Ew5$-6SFmgM7I?-2m(uFeQRg#POnxAw#T*pr1zLE?IvxSsiuD1O>ST$T8$
z`04ScKPtiJ2W0<2A|KQ#pQ#rf8>hUw=ERIL?gt_feS>8mhyNjwp9(lBk=Fz?HRm>|
zEs~H8VM{l!YFOyoW@|SsRIT5XxMkzIs`^N7!Dtb7U45uM_M-atuiu3>UaniBd`c{T
zAYd+)OKhK#ZOvq;>ZeyukC+&=VR{&MW1gt7eAn*1>gMW%P<|YZ-A-q#5^Q*J<eu1H
zlnyuZA;zri`dBG{Ko46-{^+B^&?m7v3zc7+SXo|GT8LpHP5iRu<(E|fV!2|{Q1Xog
z_{KII$65jVBP31^A|x&GDtEEAlS}mzy!@R%ggtn+q1I{w$@2yVQ-AlQQEWNQPz2KZ
zwJY68;>e2d^3CNzyBE}~D4|cajd*j-A?cb!F^7+;&ea?})XKFUx={78`txhs=DfqV
zY~CBxGNi=p`&CwvO=K&}1v2MN<AsdRIKv6UK|{mjx_M=5@})(Swa$%dI+;GPcI*rM
z3u9LghLF?TvRO?txzdR8$jWG`kOzd<)$NC)YvQG+mhW7$P_-&4Wb1lv+xm48OB1CD
z%T{KrRj*v_EM3p9E7?*RQ5R7cxhJ|+Uy*ox(~ZGq-!+oB>@B&=xV&NJC7G&Ji9XMe
zm(3Mq)@HQoNx*vF*bgt8PpiLt&slPkKUsXN_So*Dd-m<Dt8H$sZ7JO^ZM<51?E_V_
zc@KyR$UvAVNa|h3z9047m~S4(0uP7WvBc-4yYgK5q9gvICzW5AkEWFAq=iY2sq}Fb
z{aP}}{%WC?D}AML=D}qLmz`ht*;eV+&wfZI52*ijqp+rf@2EMy`{@272M)9~yj8xt
zq^;mMUcVa2Fsa;@BJ|I!u&ONe=Bi><rK8y8;_UXF_P3q8avHJppA?=$flK8wmuJ^=
z3AwWjGqZwhespbtXq?zQro{Af?yj7Mv>KgXNwRaBEhKNAue_m@#ugiCkZPb|V#;zZ
zeM{no9qZHLVq&-Iwnm2~ZP82P=LKg3sprotZJNuks|nwuYu$P(>AmdhDWuugLJ~x!
zmdZNSr+II=3b^v(hWvx-H`{EEgS<;(ZqF$ZS&}0xYt<o^<>p0Zsl33fU1(XLPFk32
ze~!0p*qF0Losw#`r1Ca&jzvYLQfq}p>My$L-<1XiCuqiEd2XOAhKal_@JbRZNQgJn
zgYoKDHc$noVWjeDgh7E|Tn`1c<30tocg5e1o)v%bh_f{$cLKHJcI`y6%V!J*GMI#r
z#O-1$D6<5Ph$-R@@fUCGyAyu^*xA`NR~c}Z(F^Yeh{%Wm<ymEEMI2pDmLs~9<Y4RM
zu*{WzR~P<AY$^-!D}X18(m1l5E@u{h76`l!tkL8zLYEbT((3@j*T3s9SwIHMz|-(m
z&LvCd(xr4Mdp}Q?o+nGm((@vBlxHmV=#F*2fHyGAGcgR3Z#2S#GDNK=$lig60gq_6
zB+pT5vvFhzSt7F8N*#G>@`70YGdKzm@^!s~><@#B-^0>eNJ0flHm`__ibB{HK#b)g
zt+wFRsVcHpGx^hkV|=^#Z@C%8-@Y9CH2p*GG|}!JMP31efZ@P$;W<1*><G)wBlaFP
z<}i(?cd1e!GUwA;Qb!-+%%^fLm7J4WOW*y92wc=rYX_iS;>$O_c)w-wtZA#C(ml()
z6o3Bp&(&nek7O>{frJCnpL88fK?Z&bT|A>|<(^G^Nn&o6F)lkLGc-HZ7zZM?QyTEr
zGJx$E$`@RyQlSr6kc+T>WgN&-uhJN5eR2Gu<2$(3bXrEJRh2X^Y+l4FY3%zS=s!kO
zn}q^DaX*8lFb4ptG!(BK96kp#;KLdcEY3Qeaku6+tMiwnlZ!rT{Q!0Lx%AcbtIbPh
zPhT@oH;j83b;e3#gZ>5H$9624>q8!eV0a?@tBF)QqiWS|)Hx~FV2o#VHl-Tly>)&P
zb%va-ifkn_LB8oGZ(@PgO{nd0&>Ett>7@y89gpPJ(AQX<V_#bIa@b0#I~2g}qnh9T
zxpDS;+`u8C#)xHmCSyIC04ztNqN=;_$$iQ2v!w5te4cK@^3GOrPhyL=#YGXdMreX9
zwR;5kP*?G+Z6cdU7pX-&vdLdOootdrc&EbMPkF?+->{$So?#VJJLdX;MB0~bq;IOJ
z4U0ssN2|Di<ysGuXW$QWmcUn7K^BV0!^lIt^Z^BO=cwly3W&Am8P78W@4_=!*{y{f
z6UOmw0(c<ZNH*dkH{!JkpEjZr*dm6T0c#KGTA_`-VbQ2&ER5+jLyj<=6L=ojO4`hl
zq^M+lbnJxBeQ}>OA|m!^iNcF#LqK3AWFk^g`X*>Xq|%vmCe|oS#ThoiL`o$y0R_Zl
z0qri}_QkbW`qd?Yco!TE2zdbyi203iDcpU=AW^P=9_#&uGO>dWp@S>|;w^(IuXr(c
zOP~OtOqJdHli^+ZwhKUYD!Mu#hw0IJwCMK+7Pm%tfyt!;_Sd_g75fPt=(b?LY6a~D
z4QwOOR`C(ERp`O7+^jcmtpGw9V5z_Xb+WEbHwdVDn9Pt?_jE#eU2(4y;5|&uJwp|e
z{%n})PQzOqswrqQ*l3oDEy3P;vkj<s@6T>lZ#Ybdj*Qf}-&1Z23ys(u1*1@eZXyPs
zQzo4~Zs0`P*DJP8`wsm0-Elk}M;@ZDBDwrB5pAju-L<V*+P(LbtgFN4n<*azLW6#i
zIAHO(XGZ=)Mb}pF<as=Uqwo)El+x9g$OF$`_iDahClA~{bO}GhoEk;?z~by9{pP}#
zzp#Xkdn^>YULk`XuOwf(e<EMVBgwB_1C{j4d(q@eF+j49DdqeBWtsLN6#=R{dGfQv
zuT6yKpKBEp$p;_*VB!6JY~9<GkWL><o}$}0c_f`aerQk#FW;YwaLN~AYu<?LdjmKt
z`9e4**=^gEU&Fmqck03|HF@X=*jKz~C;39sAIhn)XQ9t3zj^}7Z3v%u<yWuBpmFdc
zHUPvqglru`64a2hX6pBdm7VE(5PyIny2C^PK|B4kmpi?2Yf@w+4+ab9pO0fbK6_EI
zs@PbR;o`RKuGxNA-B4RlQOWOXIkNARsz*uOGaQSNRU}|NMfIZ1D>jGn3GwMzGj~;E
z%<gTRD+3}n>eMu2238FJh5jPSKx98vg)F-(gWJ6=rg4>ehYs?6{N~UVn-}#i$|%4c
z0;l2Bz9aiu_=?Jc+6L9(?KRtWa~ZB8W3jrp$nJs@iTbfXSY%|<){R)x%S&JX)6?fK
z7WZA;Ek@$@KBDWGGIJ1AmIQ5(MwsM@QC?cz@>1-}k%OO_J!t3PowGZ4{#JAS>gmrM
zzX*@}x?1*Dw`2e)*^*JUB{NhioT0x$pH<;j;9xC95uinBmE=Rs{WUD<q@(ne+jJ0@
zP*kO_QG*jHuBj@lDB^FE!AHr<WKu8tmMu8Yg?^xKl-*~+0j=pJ!nM-7RgA98To@!&
zzJ_%Rr;%I&BX=rA&<0f9sr1s4rFPdcesRH?t#K)_sj+E(d%t@2jEE{eocsrQK!qqx
zIY1MaKzs86mw-Q_xz8-%-534ocI97`0=)+CZtB7!cGfO=zpe)%KaYFmNL6QNTP)eU
zC*T<}QCKgs0W;)K)y7puaaMX=5}S}34?T-j-Iq-%dC5iTeun&_>_VvYSfSD*Jo^h>
z)_v3%TO3<s@Uz(MmOOPuSwU$&FYNdC$#RyO%JoHlAkK8KffC~%Y@b`uZBGK=AD~`_
z8Dh(i6YZVJ@VVfvQFv>#<5k%ms%5K^Q|&Oxjh<hyF9t>JF!6tXXJZl+9IyZ!>?<Mz
z$7QL~85^4yqmGHqHpKFtPb4$u%$YG`&V~1|R4!JKd=Rb?Th!q}ym$^{_A#Z+tL`oI
zALS8|FppI2k$L*kFi-#Id5hU<HmO==E+^vG+^KV?4t%Np;R{l$DOQ(|^P21L{Gk5f
zI=+^ui}CdfeEss&#zp7&ET<FHx(TvwmpdFQerlePROi&>R9DwnsvjN%!w9VJBNzeM
zy+`9foyTh&x?R9FfyJTl`l^9QzhXH8QFR#r+<IAi2YW(-G{F*NYy*|#gamrHCqyI^
z$Mm?UtY_*AA%U6ihmZr-ALt;@X%JapB9j<gyV@Av6@-a_z-z=4`OEC9LVio$<<>Ds
zS3mm1(Gk-%t+JDMBd52@*kTod1A=$VSi78ykBLEqaO&8(Pp4Cnl*WtGiD>T6Q*Xr8
z##G1GNY@_S@m{+M-1aqCm-KaH@Ih5sLm#Fq5&9W`C}|Op<qo`x@I==SYI))6L{8py
zb>gjn`~Yc0VnTSBD%zzhOXQLgGj!3au<~t<30!81F)>Lczcust)^ptahI1P)sxO{9
zaIS$rcYMz!Bn&c3_{NIz-OZ}HjM}7fuB_ZuTc>JHXo@K3^6%cdd-Y@K)sI`g{SEyP
zP5hk<6A2LPUZE=gu4+7b_(<wB(CCJ6H`9pwfUPp=%*S1;C@C$+8o5AqV5I`L4wP6N
zAz@1zhft`PGoq~54$$?8b(%GZqGx1hW*Ip8J4IN70r1ornKlOqQGm@O&SAm=;N>Mu
zjzI?o4Qp6$c%c(t@4!N)x*TBU@DSWD&>g5u1ksxV5UEpK(G!&Dq&i6g6x7)|jS$`c
zo&1iK#R2bAyYfw04xV(<PKemqz*$6rZ8<WQU0@FvS%(Q5Z!W6CS=kN$9nYF}pGN*i
zmun6nRqM%nG~)!fE66Z@it4k~N5_s-k;z^rf_DJ~d=A!d?Gi*6V|H?K`uezm8w1n<
z0}ost$HzpP!opN^jpXCV6H{JR$$tm`?fUVKPj+%-jik-dRtEjkj3w&<L|#FX(Y?DK
z>s=6piTX1^)ef&(7jgXnHV<3tRDP_F{GQ$nGX_ekBuz8!<g||>IS)^gU^Pp~ww*BL
z5jI!BBpR*BGFmJ~t~F-u&K2q`+1UlxYHOT@mAq#N_7;Xn^p!P+TF3-=@n<X6MsA4V
zQGAXOTIyK0(aWq@1S2?*Y>VWmuY_&^cyLm?hAkz}3A_aL_-N<J_rGEf5Fo>CxL3E>
z@)d2cqS!dC@FrQhI|l@l6ivIhi=mLw;>e`H6zbFEl7Oe#1}bSVzO^%UYW3eBZ0@sw
zu>D`yw7-C9+`oZo{|hYbZ;lT@X-qtp-B<RnFY-}ZhSOAlp2!6wK_>nK%bWASS9ZIU
zup-S~IoNi%pK$*FrJ-9O7p@;8>(*h7TZ}RDHBIf3f8q&ZX%=W*!?+WjWTP13jO4N=
zV%L@}SlpcZ&u`rd$;&6Ed>qMjS7AjYca`MhohLf3tC%t~Xvi)xStR4T+nDGrQ>g{F
z1#{L%8bq;PVlM69mp8cQ0@M%W4KHzJD0(2(DZ90!P_t0%?{ohn3vBit%^vfYyf7qu
zU~xdAyD!J?YM&!RNKmURPcBX5g2jo+SQt8((cR0rb}SQ(u8vYVUf2Bp*y;bHjIo;O
zOsx&;Qjyi5jT#w`6xKS>t&IB2%yl=+bu-L$Z_U}@Z)SayQP_TBji8W|MgLj%u^PE_
z>I5`jcN@xNrgu1knA*uQxk1!K7_k@ZR#0@j>H&9vjRRVii4Guw$wUW+!Aa?m$z@uv
z0zrpFo;^))HQ{zZ*+49h+=EcF7E^8;ylKXE?Wr6*WUt%K>h}$*)#}xsU}FeID7m{D
zeteLo*N@L}*s-cS^W%NxcTd{$3c)&&VrgG6lNBBp%qE39@DfC%WK`!J>k!buRM)0N
zF-#m3&m8T5gTH0D*TKJg((B<zMa3=OqQcXaj$6uHdNHt<PvIr51OQV3H>meB!7>7n
z$AIyK%ArF(DuZVRkIc#twWulv5&@@|-_`%S2H1*9U=yr69m~yP%9UW_J;i`<bmS&6
zT9fr;pkeTb_2do->GbyGaC~d(;h9^TFqXQ)@jnocO^>r&q`Vn_fX1_0n`m1*M?0IS
zu3Z!iDJ4t+SA~DbhJl_h4i0Ze7C?R-AE}n;M8m}4;UcPS3MYz83Dri!vV)XPv?!A*
z!oyL~rf`wG`HmQ8(}^H59f;#W=NI2WdDEGKRHq2vb?v0HNd$!pYm?PWlE*{z9dg3B
zgFVdg<jvLz>ZuFPUgM$Bh?WAi0QhOBjcSz`va}+1o1`68(2DM9#o<&T^61!GdoUKI
zVB_K>#9Oy;g?~T<9sV=csL+zPHT}Kp2(1!AbR8ZSc8tV$vjc-Xth|mL%xgpxCorIg
zL;=yd4%)#)>+t4Pt?K|`Zwq@6@zp64+5$A)X;_!J@1d^c{oKfUE5DF=G=le4Aj7O2
z4y$Oue{F+R!wxFOLBee`zMbu5hiKoQ<jJn(qy?jmau&t|pIJ=)pG@{{!|aMBC=@=y
zvi|q}^qy1r4Cn09DP7t5;j+J<q<4p6?BFf`W7)E0nBcQ9%Vy>=X<0#oTFPa;+t~U#
zS=_N@ySz215k6xz=tK?J$xnH|y4!Gam=9z_4{9JuBeaz<IahZF)Lgv^uia=8`1s6o
zX6s(DAfM1C4h#<31f2)LHBz=W_=6iNq3t3w8t%X}4rbXypa33c{Q!f6LcUrE1eLw3
zV>uhnc^HDLWZgh;hr2tKus*svFgAd<SAie&Ub9ArIQdCDpToq9KM47T!;pogaIhxU
z9f|z-J)dDp5+x%Nb`@5fsU1rWWAg5Yfgl3yNRT$^Mmb$t7^od&2fp-F+TC$cb}!9(
zgajUem}?WWbMFWpclrt7GAr3q<>V_^LL1oe9v4<)!|`}_yfvd*_qPn~&EdoVR+inw
z9>2)$xx8yJAt3UR=1p{abk&y_KZfbdGT}Se@*Pch3I#<I673kR`a%+~=LbY0n(>QU
z+l+}A&#!A4+RBKr=vLh0?Qkm(!p38vG`0!9%5{B&TJn^VLD#3vUoe%;SJ%#-d!G}G
zbe(bv8qcl8o4-%1$EdtE|Ln9anrUa}UxWO`y`^38%5Pr#V05Hx^arnf!y%cz9_bw?
z_QPSQfRfw*=5u!+a!)4gL}BESA-~W^AZvwH<{@i^pn#q{@(V<;dL>R2z%TX+llhCE
z^-7Zofl7ik(<E#E;IIlevWe&Dbttny;{mZ9m&f(@*bctF%O)9}1li1eFM4*YGp{qP
z<1I<q2}!E>qNJ)4r?bGxl~xxv71l}-%6cD5Km=eEp^6{im*_B{!gvnE+Cpvx!bxNe
z>{Tpc0d<Q3^c~u~lA1XBsu<FF&2NK*{oHrJmyf&Lo|bWm&pdI$bW(ltgf0IB@49@k
z=rVr!4$yZj<Dw%|m1M|z!Ve=NuHuyI>{-=Ei64bt;poUAGe*#d_?nT!3!YOC9H@^T
z!hcU69&(kwpbia6oHR+bz%{=@%MGJG>w(xEqN4o@=|jhda0uLL1f`CYt05!tX9Glv
zefeX*79!Z%57&Z0uM5mSB;UOK1d(5i3(U;okbPr9Wqg;GtY&@XHu?$cecJy+U<4(3
z3vu<7HeCZPK#*j`e+a)SlQU8?^c-a9{uHeZoffuO4egPbt<J_$SFsB^DsLm^($?~R
z^GP*u1~q#O+cD)@$vEZ6fTdHRPU50hMDFiV3%JX-WtbENGaaX_GuEb8bM4!L_5?wt
z2lpXG#<WR#bx%;xP15(o`)7H8HUAXtY^i+XE!eAgVOW0yhQcR!L?eW?%EFfTy<vr+
zg`4B`q0)e`p|4RNM5u;-a5s$Cw`{Hq(}(Kgw-km->6l|+xbz|8)zEBw8Ud9t$9PYM
z5cHyKn+E+NROT&^oL7=D%Rr3jL&pOq4LC<1I%XNK53StNqHoskt1N7h-fjNr0|ut|
z`RTQQX1*|VUwlhpb7AFPeTx(Ye*K~hHN2+z1U8MJ-7JHrn+`J*LgVOuFM6FJZ7^xW
zD5gc=7p~Yz^vOdQBDF}dASa*|%j4lb;DaPk2AHp61uR}TbqH<Yjp=17Btl0p3=kK_
zL3#W<4g3HOJN^U1i3<+1JRVxq*l<rF1`y;gh35f8cJ#BGJhbp$y-8%t$pAITsZ3A<
z_njzumO(+qUDh6Zjct_QYXaaz@KL%9&J6B#W`%Z=EDhBm=%*PbVGs+reYe>4cHZ9y
zGjAaFkw4j|Pj~0v_H%dMLR0*EzkeS?9?{67CiQv!Z^f`pBkj<S(Y(%@?XSY27|6<w
z9E`ntKaYF}flMqeNqr>$St(@22Vv;fqjyxpSR25^PuzM2`o8C-Mqr~?`-IdH1t^iw
zGF0S4P6XHZ1;Z+^nFg|QY09wK^x=85pL#=RK2{alULraf@bqyyLM{IitnOEr%)uJ;
z!X0R>z&5-{lwiIP>C(k_`ItA4rk^Cg$UGhi@>%ZPO8M$o+?CXo4eJiXuqBM9%H&_N
z6^w{VM$XFQt4X3p{$)JYuZmG&Z6bLpR<J5!D_D_o4St-6y{ijLYU-HJ=B@E#r;CM=
zMByaLzt?#m9;9X^eKeg8T1BOcq+~Xl<t%ynDCu7)#Umw*^`Va%=~GLnY>t%7myic8
zkfHC8#~o6N<wiR^>;Jmm&~1*wNS@4-q~@jCQytQ?&~<zC6djh81+puNlH`_`<&>$(
zu<sYmClbCmtJqkaErlabRO`s-_ii1M(peH=qR+^sbo2zOIv^!WC0X?i=ACF0`Qvmx
zYZY=&87uo+gRth1&qRaB)6pbokiVMaeq-QQG{+lgj^4&#;~&H&#nJr)1eOoWy4pRf
z7HIClrNXfHEL=zWfWK&E-$VYAA^n7Itnc|NvuZTH%>05n>#}1^kJYouvk4-s0^a`6
z96KfwzUexlw3nw>B-&?}`zF~F(v69p2mQPL@Wrw$3FXFj6Mf5!6$SQk;X!}VL%#08
z-TYy1iXO%Vn^^osGclO~tg>9`c~W?ij7Hf{3QviyUV`V;1n^-3*#sir^BnlakPYad
zyDFum^pcF^K~gr6a7%9t|AqRr&>0c5!IJDsDK$!=)@`+^iwYfucHUWx@clbv1CU{C
zIn-L=W99OdMX#R+Uhx`vb>1FP*AfYo$3NOV_i{QBmWarbBIR3ero1uNg#}i9y(_Hl
zOi3(BP+KJl2`Q1OJdN?J@K~nI%}81MW{98Ahu$6IF^Sd~%69Bg7nbDZm-50QqW7-G
znpq0eyLwMq!&?S^j9?;vlDpo8N$#UP6a0PZl*RSN-Eo!DVsAz^J>3jM7yOHE#g5dJ
zZO#b42xooVZl=xEA>LLMwadV<_^Mr9S5sV5h^0!+8c3c)J&aj5!YPb#Fi&rbJhvs?
zibLMd65&*L-~tRo?%QHwC6=OMYgJmYUusdDH8l;gm{#BJ+fa+s$`E7HNhZQj?(QTo
zsyZ=n?Z&tNN7#FSH*sxU!#1|0xeg%-@(^3HM)ZUddJQEeK!DJ}1TdJ6ZQOA0MY83h
z<|?^Y+%edI4Vd10CqPJmgc2YLNeBt#jC5q)e~q1c-}`+3^L(F+Mw*#(&dg}$oU`{{
zdo4^D#t9J_>ihx^`irI)J@qfp6YF7Ey@1D7`U2(#TZ*sBu@oIQdeqM0R7!-=^!Pr$
zrxWloh&A*;rrnF}PBZq*KkcW~(#?I=(glk=<Cn#*2xX*%PnDeBvFE}~8LCTCbne7;
zoCjEHiQlIAGh}@pjV*J!x#_}^9bB#C*JIUW^bw9s#o6A=Bppmw$xc9}$D&An%q1RX
z?vEHSfTbiq{`-?OPQ}k9W%t05j=9!-WUbzkMBuXUZDcGYmQ-$zf8gNn27bK^aK<0W
zkFllEg;52rG02{-qxJs)CxO89@tJGzX>p~sSe+765LFmm8taP6$z%HDA6(+yum1x|
zJb9w=>$@^rhsBqbcDGBaNGy*nrH{!Imo6ma)an0$L3%6;oIX`HwQ>3hz#xC5KbFRp
zCsrg0HJ1?$@)+v?!>l&f%4@4T!JM^Nl~N|MygMF;Z)<}o{hxE<hma}v6tGzI!i>#B
zpbfV;3$r$iuL!b<L5nvGjy#+5T+p@#`2vtiCS#m*6Cv4lF2>E_7%aCS3W$93-}pri
znC75zY!Fl~dpRi^VHGzUwl??*3YxxKgM1Cj`VN!G*U%UQ3iV%|8XKCi#$plyUowdg
zBt3n=`tkyaByOUmc+e0Zm!6i^JXA<elTe6!-9@NQAvxk?`M~m+r9CIncySRN(+?|%
zMn+r*KBNQ2E%5gv{!Tl~cFT_+^j)r$p5`S^(Z&QWGg!pugU-x^fKV?u1iwJID}_u(
zL(BeY=$4d6L$}b7(25wXNLT)+k^Vv>DgS9CU<(@AQMRY65i}8Fi087pn&=$&yPUEx
zc-Rh;7*uiK3xitqM9UoZK%`g0N;%eg`^Iez!;tyb<hMEHs|qhyugU{KN95RVS93{y
zHH4R}rX9QUjz=8;7iDQ=Z6pBEb9?d;WUe$A<L8&`>&3rP2}h+KgTIjb22@ptD}%PD
z?%ykWkpH0YK4&!Np3Tf+j1uXtRD?gpAygutF|Gaq0GPx9WGOOYKlbc^K7%0~hdO@s
z_(J9z5fB#61qG~4T`!+FF~9IrrP{a%#J-F)7)F#%h<9*>+Omvt{JSRJf1r9G-@8Aj
zVY{+=Th;dF>w`}csf<W|J@fj{M~kREM|)5Qf7(qp@%Gl6fBjWq{*yE0=ffM2Eiv5n
zzw@o^cH@zI9O>4CY`Y$EVt@A0pGw$@0)O2u#Cs49hT-5K%*j?ck)^=1JO3<vATyl4
zcLMjNiA4zOfD^)&%Q^$xcq2f-XAq5ogOd-QVi({R$x|WPT+KgWlUq`E?*TzZXC<E%
zPp_N9{qcv$`aAzS2Cj(@TrgU>(P8*=d8T+U(WNl4LSI-&a!Ibsjdk~e9wsy2W0KZc
zc$L$%ndMCjIPj+>?cAl=Ek~0GSx86+=@8l8CoV`WUPGOJq?}xEUn2N!u?KB3SR{nW
zkB7bW7W}N%TW~x8_u))G>^+{FG;iYS6~T-k!0pk2nmh#F$xcsKhe=|a$UmaxH7X7c
z4Xp_P)x7TgYx4O=q@14!Ger=3)uBsw>W2ueV8_FK*ORopfL9CMuyhx1LVP^P$?Dw1
zg19jyN8nyFYUEn2UYDV?c?=OHWT+CM<a<(Vs>p_zXO|i3Zw@LB<)lARuP;BMU!|$z
z{0ld4k7LqIW~~{#6T*06G=KwsEAf@%8x+%C8$ZDp-cQ!ih7JO*A%w`gVF(`B$h`uS
zN_>7|Q3fyrLqz`}U(L=z1UoM$%VZYp#&E#c?Sa);2Y6{E@CK!wUURlAt|$f(;iZ$P
zk!EsB7B8B!aE9%@C>OO(jfe>iw>i6Ll8kX?)up*EU0OXD%?+7K((q6KYL24~8LG^r
zyku9nrHELO0~{{&YMe>9DJRElFuPXp@7+9i<?NZ$uHbh{ehyI1LreofD?FdvgM&_d
zkA6qKlRk74->_t{^~5EJxK8?w`E4?N?-cO+ZlKm8pU`{cIubI(!s`@qOJh=Gsj@6G
z+dsvZe$jEug*+A`#6H22)hW%8i7-+o_&fWMJ}mKevU&2JE||seol76Zs{t-#rV~9!
z&$&RS@f_Z}@>P7F&TK^TPg%?QuCk!4M@e#yoO8jR=Y+Y?t5?JaGa^r$XJ<+Kb`*r9
zLuWx?yo{&`jS73C2o~N>t^;0mPNLBMe-|ZHXyd=iLg_{Q-^cq3ZTq0@&f`SeX!X?q
zp-ob?LO9s};Z;urJu@;L7A*1`-&#LoJI0BNq1j+@5wEnhQTnk+moA}iUq+DaA~IcE
zh}7a0Uy+r^t4OrS#*0_;m~Am)H=0Hc!sF^@-N4_Z<M=yd96pH3k=0>w03>TEIbvVn
zCjQBR)PpHv5j_GbmUi)Gx>V#wXNed8^LZA1Zi}U3ZJ&~{4df#cJtCe#dCLM?VQGia
zU+yLvi~2Atg0(7`jvw<X_{X5khscPEd@Mb0^}v9Ke4$%!h1t<-@qdf|zWm5#B)D^@
zji#Q#j71Lp)iDZk2lgfzFaBo#u?N2(jbMY*&|?$7S<BJ!66qc40S7kR$LB|3!0nKW
zsb?LX_GBb^_vK3$lQ|PO3Z@_}DKAluhNQPXLVJ?LyrhCO4*X0AmJ8&@Km8;^BIroc
zOy4CJ<m3VoL^!cR`4eE*xp}0)N%~7cb{<d}=ux4uDuR&2e`I2<Z3y8YYI93`Uopz*
z5~yOq%K>UMXu|SBK)r|H$w!RDiG1gT{3MI>X2HlyLeKJ#6w`kUUq~Ba<$5QwOz55w
zC;uPbgojIrDZyj8R&dOD{O_WNo7D`eRo+=pz7;k@?*5+_P}W<+$X+3&Ei4`2frAzP
z*C(tYIXyX*TyrWc)hXk_@-vZ4r0a{BSVJPYs>m^AnRMi0Ec9)4rSu}hgCEa;FscRx
zii86EXi%L$vyB!CB%nZUZl+nsm&WoFZ4*mvAQ9bbUD_MW3^?2WC5ibzGgEozj!P_V
zSOj|2stgtKC^ECv%BX@Q^pzH8$+m*ZiUO`8zXpoNh??JWsZbRlRUkYmGD-#EC%V>6
zY^Hn3-kv7}{iJ_BNVBab>vh(4-FBT^r`LJ>ifq*#aG7$*(nW5sVAs6m-&R-e)mMkP
z3OT-=4_9?Ld-$;af#(sJHy^mTyVD+e_dD))^rXj~J5baU2*Xz%nW*<%=_>Vot9;9?
zT&bUU#M2dQ7CrCWAwBeW++FXu>uC>ncK{E2x*Ya=pg(fhs<ifY>49#-WQE@YJg>;2
z7Cao6;rbN+<7P)xFT4|uDhx2r4>350L$>V}!fUt4O(&Z(o2am0ve?O|)a8eUrWy35
zU<>@?QFX9pS|_skRq1tc<#6{qyM#5Y)Q1JpTj;{$qBDZc5y<DSN~pmD)ZvWDB9bOG
z2!)TK9w}-akU*}g>;g>zG{48g+`vOtQ&qGrAMArk!a)lzTg+)LDw2{?RB6gIl_4Q7
zSzs%6>C&7hw@{~tI5Z+YLWNAU%;1t}fwI`8i)&CID|RU<&#F^xW2#gU#i4MTS^g52
z3F^|qbqPXjF37<$t*Z;9R$>)8-haA4AL`@6`|v*h)di|a70AJy5#%|AJFC=Q|L=DW
z{KvdIyL`Dw(EO4d0}P{>-@|J160}hJ+E4dG?Ms`09L<y>qsc_}ll@TpG8U!eg7&iG
z3zoJa{>Hb#2EmOax^$^?#q;O8c3sf#@^%%}!*+S==X>LAJ82gVfHYfUJ7IU7OMJ0#
z_k_fSheHSp!dij|T~1+=5|b#~cH8#<8Vj}q4u8NYx-6~UT<yBeyse~G&W9H}*}{b|
zoT;<sF~U@4Oy~3Z8bpOwHF6}8udWd!yNsC{Wtce*cq~vz(}jHkzgVFBd}1^m+(=W6
z2`LGQX$+X^bm{Ws<g7f6GBpqRY|Dw4jOfAD%ijckL{eL_t=i0OGuNk;MGF`OVNhg1
z-twq7^wb4v7kKE<hjjXv;oZXoL-5au;A`5*BCKQ*+4e|qOCY*M`a!iN1-5*Q<rRxB
zw=hiJ;Vce|NW_hxiZq542{(d=OKd^8x>8<QZZ3t-6%NCqa$~Kk(v`?N7B56F3dQ;H
zY<{J-HbJ;~JzPqYqRo-=$Y^zJC!@AULbNs{KhiZKzbdg>ZgCcOS=?YuDG-WVZy~3k
zQe7Tf00u`WsuzVABUP>us>BGWWjjm43L~miT&1ekSYCt?=$1=qfw{aA)HAklI4<9M
z3{_Y?R^h)B-W`UJmmWZzTr%@DMpzArwEvxCIaoK57*?B?mY0&9f+X&g3`RF2Y>XWI
z4gG&3BcLGkp}4p(zc^D_O&pCTtvNN%H8&NB-g4Vov38GcXJ!+_$BRq;*+pzLWtdZQ
zUGq|tv#^V=m<+l~`aC0(Z(fTv$V<~o%~_@U$Y>X1p3amGx+zUgijgs-kFDw_N79jr
zE}%O`DF;DmL)>3+Rjl>ZZ#MWdbA<E@QCIrKFJgM|2dI87BA4Z)`%g^(h81U<O43UN
zMleXJKsGK2k_pRsmc+r6L$df$BvKl0&F1@I03Iin9>%yh$2LkLjmK_h;B_D$E>+Mo
z#9#dCn`=b$$D>&~1DBHq^+w3e3NWlciPXhhsDtc0lbs3%3gC?7G#By{6KS-Ph7FaV
z!Vmi^ez8dh3&%OQzrwl*ZZ4o=l}^`4?(byPYv^}cy~$rJNu`_a(|I>J+V>>waqx}o
z*^`R^M-3+L_C}+5sknAVvmq}h+jO4{bjdByf`~mm3l8#bbnP~V%)o)l0Vzm8Qs!(4
z-MkS{>Y;R=jAoJWk!1D^5CknFPOFE=sHo5KLC|{WO=Jcw2aV6nWF3Cf(=`1-=98Rc
zh&3l=ry?b-H%atk=yVAf^h;5Cyn;-Z5Z`84xMRsWS&xnmOlT(nU)Y~~3LsxE2Wv0u
zQC!B)#Hy2#hy2?Zk}zKJYAO12d}FR%Ul17p7MrJ=-FGW(BR_T;&|krSCZ_g5wA&&I
zO=w5q5=kZhfS?vrFY+;+NygG;OiGR^-7F`|#fAB~aH!?vYl~7$@W{;vjgki)1UcfU
zI>ZP**iJkcnEJTD@c=WvC6gYK$@a*AM0W1WUZuqb1^J%r!`J#JF4n$>WZ!tjUy@Rx
zL#F;>a)tjU+pI^{wW~Q*ouiV|rD6b+lYlu~YMT(fHe!A3I@h?}ajjtosXsr(B|lY_
zn<R&Tj7lZQdZelKN!e<0+jhqVw^^%Gzy9b_#t}!S{=yrIb^+%R!(79Gg~KJ{M7H3m
z+#*o2#_`8N1#7Lhu4Sog=t$ZJjv?LyIP_Z*(&v|vRHh{AUc^inklD0?)7x5bS9Sc0
z+*8m&s5=}~G2ytx&YkZ)gmxz3yYk?T!u{*KRADosv7f}4lA;1)1`4+_60R78Pb78@
zd_MV^)q?aurh|Ni&gf2#V;BOZuro^|#QtC;C+%W@lbzX}cz;9OEOdw$ZJ-6!Y5ysc
z`6)T(LdJ=A2xVf$TZA%4#QeKdnAOe_3+2cFz-1i7&&aQtCT)IaFQG;+K^5ZoM0G-j
zau~IVZ1&<o#3m|APcp~LX-{ziwxlZuV+*C?k;0aYL}80UtX8LC5KjfuL8kgg`l}1I
z2ZXV&cn1!RPRH9#fF;;$qJ&H&?#pp9#ho16@B{%;xmip;6}Dylv#qF5;NK<_gl$`J
z<JgkY$U>mt=Ry@`7)%gw>yhz7FuNQKg~Pz^HB36!%`waB%*JBd$n(?_6TWOZOd?%M
zwUUh+bh-^nq8C2TrP&glpPxPeZd>YW5J~6L2@)bQ!bFx`tnl#%|6nVUPxQJR5RU89
z<hFs5sEnk5b#lE?OGQR5fX)?3=aSXpT`js6In9$u^*DfRv2Jghevh1Hp#^--6O;TR
zGW+s2l3qrZ4}VMtHZ#(_Pufr2OC+ug^|$S1K}7alRX>hAll(=#1B0k?1|Q5KL9C`?
z3`fpM9+R3nItTeFCfpB#`kNIV+yHTMQF4LWEWkKj)aE2pf{6ibnt|opI{sn3MU>t{
zVQsSs9}%_e(K&c_-d18e=ZBDJx3;rF@vhRYwg5gr(p4#A3#Jp`q(!O!Uv<C`b%e9|
zuwfkkd4U;kB4U0Q+ybUI=xn-?-C#i&qOjVCO!2mKkOJs9;;pdUrSFix6xw8Ef>vad
z<mVGF1&NoC_nm&Uz9q3vVrhpvS&g&-`d_vDyW$}VQ2!`W{#}=KB-Nn^b|2;D_%mwN
zq1FshrX=5tS|vhF@sNiCc47#otS<&B(7v^eIt!E637E2yGKAOh#u;yH9uouu5Xear
zG*Ms@C{PIV9Dh6<oomJ`Y_OU->#&UBQAbw^;SsiYpvKOM{`2WpXZ?dwmS==mx|rV*
zMM9h)FYbrFv#XZm>*b0-%lbQ@p2iN=zQUd%X!8f`<3`n8J8h!LcbppCM78AtK4Ck8
z=nev7norPHU!Se@EzR`}Eg)sWv<XVev<-kfXZT**MxdHXOgsJ>{iGj98^w7|W^;ZO
zQ+KT4%mdk7J*e)&p%cojTc0#vwJ2$^YT>3$0Rdaq`FO2eJcPdEox%8JY~AW7>tH3m
zjazr>xMtnC$cqt-H^RH})uf-iRQwI*Bl;})6T_9-eMfh<m!40(Q&U~O!@MiMRo|)t
zUvlw5?GdIZy;0S~?c7s&`Z)YNR%fzH0flBDhg*W`ar|3-eCvZ+p5vr!CV_CBwmn5;
zfV2TSS&TE0SUbodHoqyWu}Ee-5`QqTHGdZ>Z&mM#-Vs`zb0_xv=Js_*=hTiiFzE^U
z82M-7STXHK<*U7^opN5p!bo2ovqcxU)mJzXzxu79aNL#gg1)nVaf{c^b=w2>Y|39)
zusDBF!Tf#ence83abfO02s{&VOsT3;n^T$?(kTAx@sqy{%Hxq|w(N#$(U~}q-scH(
z^5MCoH;D69KJ^#441&m*+fT2oc~)>W=~DL9w37u_RA;lUT)Fyy1W8+N?XnIb39O$w
zE?T9^&Q~F{i`zawJ6~RIj`dU0k-*sX%|>!p4|b<yXMSl_RetOiZi}Sj15(b?_?h3@
zCf(*I-Gg}6Qg$}oA&wOKVtH~}wppjdU|=eik!^G6K1ql%HcQ1t=M*Pbf`Os9u~xb9
zssx#9Cbn5yomR}%r^FNm%frGGLL!x9>};F*YKtVeYFolKd0kmieV#JA*jTdztW>4!
zEOCe~K3x`@u1=1VhpS3=DlZe)ZzOv(^$F!%O-yj1pL|PjVraB7Av$&ICK+WVn{tDS
zVz|)qy2NJr&icZ-GG!ikj*P{OA=gk;C9^HJ+-7&G$|57wF<XGxkZdu>R#oPg?&SDJ
z+X+P0Z?7At9}zX4OI*Ba-4YEGPZbo&1PY8ISQb--a!Ky0eTiq7s2}vt9ztC6k>OeS
z_gvxGL;KF;FvU=sLjsHfG=*5k6F24Q)I;lv7BS@$^drV%?~ZhflBHhLh?hju5`Qf0
zM*M-;1Mvr#Z^g&y@}o#7ydx&7Z11w0G=T{?i|CL<oM1>{O^h<3T+;x*aW9Z%Hx%LA
z%W4aE%6HTzhL$UfqH}|A?!6??BJIw$N&<sJ<3r_<@uo73GQB`s3IpiCRazsFc4O?~
z^eLFbsSKEs$_tCkmBmWZa@8i5@UzKjSX3sYLVkAk4iVqE^D~+D{R8sqeri<DIuh`b
zbf59^+;_20OTJBcmh(g0v!WYm&oZApBM#DzTMgE=q@CTLxGf|;UK1bB(G!yR;$ls)
zytc5aT}hr1Z?-*tTVP;(_!`dZspPFEDP?U}K9WfJ+bj4heSapGKf$rvuCOO08+^7z
z`OAYM3u;o7X~h}anq|EFN1L4_Qm-;(a0$j-*xqI3MfDX*zQ>QYWC{6+e9U@j{WOuB
zk190USMDEBwkuG%YLsQjj}obPupJGQv@~ol+aYhRiT2J{=0+L)ykv-klV@f&NFSw5
z=Cn~MF{(JmH_ST*YGS^nJ42Mw)#^RR0VJ0kH|;L3;da(GmmZL}H^*+NRhEUCHh(4S
z4~A-qS8@3Es=|WmY|fBvsA!QrOBCB)TL-XSiD7|33DpNU;w?E)w5_4BFx-oy-V)2k
zjue(K@REcOM=s{OFV9RhF%_8lFVNHZkT%3J3L>jhlIJdtp3H<&M;$!b4DK2#(bM;8
z!8chp`SRksDNH0D(FJ-kUyfAB1^P+|(cR6vbf)|}riM5gFw{w8Z)4pYZR{*sGJ}+e
z`iLv%SIw)M-!!aZrU}xf)h|i4guKi56Ol^#h&`UXCmQD%>Rak1U*j9QB~%$5n!M>N
z87A^ynKqS&a9e7cW838inoD=qD9dY1t++Bz$WwNN?E`U8RCEGl>NI&pTA>FhsFd*z
zBW#?+Co?QNo(nZqCN;=+?5x<^q6BPJWLNnNkuN~|-NccCckXA4h1Kf}$bH+*RVKw$
z`^aeu^j6X^Io7BR3Au@w$~U>_AQhmK(;S<JCee_Xqjpv2<U^{Gq==hKVc%l%#LqRC
z>SdOLkjOEos<IR0G*#>q9}%9YwB^6;9~-Ebp$782!=8)GFAr-GiWcQ(n{$;pW_^*S
zkp9S17oFZ<kn=UxPjd^g&g|NQ496I0y+gv_aj_JzdQBprJI}e;<b>#8L5EV6lAQ+^
zPoB=4W5!eSy9*9e&%yN-kY?89XTz?|Hf0sa$vkm=QA`|A9zAJ@UWdbU<Wt$~6uml4
zZTqCd#|4L`=SZO~I7f|jDXuAL$>}g9=81z6%1e-kR?LS(EJ3C(+{X8{e8rWS3rg$c
zWT7}eFFggMxl#1v-ik`Io8zyLR9nRlWqG}XkH*!CrkNr#-|{DPFl_JA%ox4WH+`yp
z)^tYiu`G_h&qdP#20B15qizztjt(fN1Gp0U-boL=?AnZ{##RmP(|!rOx4_R2;lRvt
zy|Ov$uKwChMt|~T3AnDy$p9Ted4lo=G9a1^;Nr;p9w+p&Szk}p`(`nEnptLhSMWXJ
z`*yOw)QVvLKntk+pV4YQk$z2nA-hGqie|F(qapMK*@a1%PNy@7v=aIY-9<loA)<B?
zJ^_-dI*Gwx(1{EZK2Z=}z2oNiBWn|?ct*GJ$>g+%Po}3?TQUsq7j!qDK)x2)5-gzX
z6+U4Tx}a^M9+$~zd(7-cBee6cAuJDcAQF_U8!*g|5qwHB_)6ANO(*OiBRZ;~jCO+r
zvX(9M*;O*2V+(mM0@b58%Uf;cSL8jLl{bq3Tgw9kc?ciUfylrMc>0%h++;0C59?^_
z6s*b=NFg&7(wFXn`<f+E1+d_qOuW+XkADj=7uO4lNi&dN6og;sR|v~a9g83g<XBIF
zIAX^SV~=iVTd`uph7~K?HXJ?L)^?P$=}0hOltg3N_=mDNp*FTIxGuOfq{x?P9hfXY
zrNEeOqMD5Zxdh+XkYN0T#QG*M8wXO2sS`a%HOZ|5mA*wGr6^bzTbt0#Z2ZFnH;yCn
zu9JzT^$)J7xwN(pKeeUJMNI1-M3W3ioW<1P#J(}SPJP3rlJ~X}`;kvaKBe~c^t~LW
zPflN5pFVvJeY*Fj@1;`vtt0WXmD;D$_n6c^hQ9hf`aZh8eYy|Gq3_jGdlVc=?6;El
zQkgfYuMKbByw<(x-k-deL+tCH;-{Y2=aBc9oHx4HZ)Af1vyPukdgH&&IXKM8cCZ7X
z*YQsL`CfPxBxz07ff!opSrI=_3}KRRwjUWIvXzVb(J`V=#Qa*zEPidrED@p<rq0k1
zctxK=cxN=`Q4#ph!9(n5&p#!heD7)p%PGr5_S?ZHW^dr8_~@zhp6|_dudb+mV2DE{
zTTFWlh1ggRmGH;BOd~zge>(N#`(5P2vt;ZiWwb9tQs7XXKYw`21U3CQnhrJ4kIN^T
zN0{cG+jHth{sl8xxPy4;$il!Ysypiai<#4JD_FzM=F_W-;I~?78>^>B$;y~ym(;kD
zK_!D~hPa*{M0)uB6-`$9lE8d2>-WD-#}SwM-xxB-x{S?k&f62V{j00vo2G1|TQAYL
zJQ^9%N8LO2BX9Su12-j&tf3oQ>H22yQY_NXJidV;qA{eeHxWV^5hSRDEd2Rc-G!F?
zOS?(X9ul+@!T`ejat=v*M#T5X_<P8m?{lBbfuFUIyu3%o-XnjILI=x_mSJq(!p~PP
z-@dq7|NL|vbEx6QrX{j_C2Zm=%3S+o{lef4b2H~;jrxB2le{N+*B_~#FvOjgvjJ_(
z@>b<ic@^ahR35fQvodAt#sljvYtE(+yF_BI`@86D?$w<A?abbeL^g6p!BF@0l$}9G
zrqI5%?uDbPH{6W5uDY3YBfG$*Acq9dzT~)`_>;b_JJq2Z!Z1w&z#){54yL&OMy7bJ
z4cQz;<+JEW75%v6qx}ALpI+G9s6UdjH<SztA|J(&!KO>M>Q7WMU)SC(yqinLm5@oP
zWR%zG*mL2#SCvMj1*L~Er1YhL^SAs#vhA-~7dcpGkd16W{G!CQI)=(JLVmp=<BQ2-
z*!GY3$r7qb*Xxz(AXwBX6KJmmG@53QfO$<O!~TV1MnOx-|KxC_hmp7)ZEOcC^>8q~
z*daO^e1{F+(s$D*T81{I^#u<=KN&v`N(U1q<f|J8$&CEpnOsA5W~N-9i8%m=$gl|%
z#bzk?cvMb%mC5aFHy2bZFTfeV_qR6oR=iCT$k~n)Utr905IZPHQ{^J47w+cx5C|$a
zum^`r5>=h?iX>xVo|+IuBoM?#G9mGGGUa9E;4uH>o%75_!~|U-Aqd0&-}PDR+3W&s
zVTzd&1TO@6xMZPJGRPNGIr^u~IYq4%q9#e%`I<sGfOE7r5L##&rbl6Z9$a%h$j^#P
zs1K^uLNEtA0NGWTlCR3<kd3WXC)=Fq-!4MhLNdho6kS;gyfgjNoKmPQ$aXEr&do2B
zp=QU20_Y31AzpqQsOIC)MMnXoMWp6%HfQpuIxo?fl;)b0rcptVO*j-l$50HQvBW%8
zej0~-ZLql@D)_fc4gdkBPKo1Y<QRlt$Os{~*+pev?e)6CcwGs<^Fa1Z)%ATBxa#KJ
zdyehjve$Q~Z#A=T{*0<ga?iy{5p$H`b5^N><l$cCiZ7HEGZ&jZ<y7*?sv+)5_raUN
z-1mu$PB=m*{Yu?A>i+xhWB!!y*q^`cq_XP7q5M{P+fjAIS!Lw81FD_!hmRn#@kn{*
zaqAB?-!ZoCZjNR)R|gS0U5++aYobi>c+Zv7S56NZtNr+3*3O)5xh(}P)h#W1_ijH>
zafB&9Y(CHilQ&gRpR`Qn>sWoqRND!OW$Gs)H&Li#2bQ)AmZ=h}-+1<|vSX0gs-z!?
zS{06Og=NP`t5TrhvO1ATc>dR;uUrr7W&>Q3>m7KtbvGLsTUJ?FT2@(A8WR~A8xx`A
zKkXIKwXUkNYh9$W<2aqiF7fhOs<eGBS#rSZ^y&5kr#b#}$tkY`OF3(MH2ZdN$1w4N
z!=C54+hPNa5@DxPrw?E!5(Sd<sIEd?pYKS{9X@<sN#m`j*qh`-Xiu0lS+1JQWNo@;
zI^>A!7R)N1E}uRtK6rt0I&n$QO*U#WTs7%h@b})NAG**!(}x0pKU!uTDJG+bqWa!n
zb9{&`o;~f=zGSJ_nk8J<QFa{woFa$UwjHdDdO;qQ@<*=juON~NV?{!-rtwf^d|A(2
zKp~M+)&J*Te>5HP-)?T(vitI*x??*_n$NUUp%)#WTueTwl$L*a;aAHLtA+J9YQxP2
zCSOx#tWfGDj}usPmbxM+5h?s-*@kFyCPV+Sea7a2Coe5FH31W112!cX%gnijrXp>b
zDTA@Rpp@OP1EX%nBqkzG8<(h*er#tqV&$R()G2K)Bkg5(-Y$J<oJY#iKtpDwX*(nB
zX7|3GsjhH`p~=vgQI-Nl4i%(~ws=en`yypl^4#1lyH$lzv06ww6(#3KF;cq`V!M*9
z#cMZ58UFCk@w<RSkp7G5d;L<b=~_TTSPkV~`L@QEg`1KqBM!x1uRDzCZhCqQ(|H^b
zeXorz-k;y7K9RE@Rk?p|Xa43o`DlCI>L;(R>F(-|v{Q%nup=QSzxj4|RepVe)+{vW
z=$_m@Y~c8e&AJ3re9_u{hkdRTG-R8zw-+`QG?zDHpA5!+M@^2lT%8RSXuU=iA2K68
zLKBo6kh0!5*I3->RhyWbRZ&`IHr3=5Rx-xSlF~v`R;K>jO<=|CX4m`uEe3UnA%qDr
z7DXUe+7KJ1&WKNox|rE$Y$`d`s%z2JuF*|l63>)ZL~=z5^C64I<+o^>lZwWtr4%iW
z&;%#PnoDZUwdyM#=}R;6J}%Z4Yj+3Nr7@3V=dR3Oz)0V>%eE_=)n3*{zsytZRPUg@
z8|VichTq65F;r)pTWX(gBn}(zgzt}NNHQM?K0BspE>kwHz$bVlQ=-`eiH{D(a*fRZ
zD2kK1J7(A=>p(cHG#S%!(%}_O)oRNM1UBB7^iYN$Pgk;;(4$H+MrEx&RJo0jGWK?M
z_?nn*c6PbBSyAOlCF-KwtZ0UQLAJ0N>U5(_Tbxpa7#XTErsovGZmmqxg)t}K6-rZu
zL)j%-lNytptIjJnW#wb9OtZSO0yNionv^`HNmB?l7>2*#hUac;*{t$Z(kmo9lfL_P
z*uCH*Yv`aAIDH(!pe?cLDPK;WL!D|XartiLoQ=7d+?d{)Q<s0Dp`>9&nP1N4OBsxG
zk)xg6%k+vrnzAc1tIo&$7V~;OnK=0eMyj&2bDVQy!}*ZM5x0|WW?j#D;z{0{a>lb|
zYQ+~iW|Mbn{8lAp=EaRP_BRg6q}}rSC9aw^V%^fkOM<Aw=D|@b{K7Kk=%Nj)N{g-?
zdq`b?|5}5SsowM$>?=bfS7;`-Os<$w`g#7w{Loyr5QVI3*==YtHYJv-YE`uv6{dV9
z$5fQLP1}&soKs$~y}Wo&!XajLT<qou&L_&FG$cGQr0t806&ag1t}WZtbz7EgdYJYk
zhV%@%<#k5;Fr)Axamn0c*lpZxVD|0P>-H<3WCVJh4muqA*j!mrU-!+W(+#-iRd(*T
zc9AI;>3iRF&bb`<C$Hk*qb(zjupJ!TzzyLjy>B(Ouzr)rMvo8#5eA(8iHenaQ)*5c
z2M}o;4@o+xlYtLg{+w!d)79q144u#a#inFH6$f%}^l#uUXVI@YjE4OPBLo4!P5Lnu
zvJAOgKDnFn2YIF}_b&4;@n(7xfPU{!px0<!W~_W4I1${COf&b9DT%yGCm@-14P$Yq
zU$cR9Za+GTe)O?sk1ts^7N|Af9c1p}qI9O?fF*{79j8}<q#GjW5HuOUYBPq>zEnRP
z5xWf_bR4fPWD1TP%RMfaA{I!7&L4mT0}^J7VN(n=>@bZCVx%k5^3w~_@)Mfko8q^V
zf;X?pP^0lVbv#M?8R>9_IBGD9pG!2>DMDx#jCodfa@n$*90N?w(aZ<3bS+)+30(xP
zr$sNxdndOaxxxKyro-Sid2)Ks(MulYQB_JhutkIb2z5M%OM;X2x<jS`z_iqzN)~Tg
z@g+An1KKGg<)fE|eYN;>;x{qMzrsYMuRocxkbW*B|3d@WCxQ1@Ugpe)a*iIA@vflZ
zx@L1-u_9HyiaYY<r;VfK8pY_wPmg@5RIf^1u|fvX)NAw_?|SrTj`<L`^78$_CvxfC
z$4<5+eh{2F2Rm_UbM5z&xz>1-gEijzn2k&ijtG<ML-q9brmex7xb>1v^;`Fl@_Kk1
z>goc65Z4OYN(W}dF>x8uTm9tvU_JF+o0RGs$mxT;X)(RVft%fsDYHHTSf!!KGObQ1
zSsm)HQIaL~fcn(?-lo0e9k9wUW2HTOhA&2@?P51;yKGK#SVam~k#a(_V>kL6J~lT`
zFUvO@borHJoF0^x;<5(^3zX(I;=o_oMP@U4M{hctI@qqLH+0_4ZPr`lnF3G|XZ(+G
zo?rp64OjwOIIsk!RSG_Qi4!2bLKNelwH72p32WhUCu1z8KM`I7cEx0`*D3_yNH|-b
zTCOhU5X^8Eo!vP9&@{QtSv+n2szn=-geEA8$EQLrcDYkiV@X|^Fm?D@)J|Q*RBsy&
z+*F1tsZ(v7)`;gHU3ng{3NfjI9bN+<kGrBEBR|!wq<Vh1h`6*%;9B`v6kOIA*93NA
z+Zan*ypU4Rbu<KM{qW8|Kxj>f-|WT_i?;)1JBEK3S+kek0s^eyH(j!A!qVFR5`B&J
zw9WDwmB3alB8e=0#RmrO@+a^7an<$lsR!%!tz=?K>LQNGkJVR|l_>Wed9d%%(pR(n
z={v#R3_o%<Zg=ozx{3b>evhwvlIZ7YPS2&g+(gIWTA(+fcb|_}EFo-v6Tkmi3hO!2
zKpR=0&Jaqavx&h4aa}`>$zaYfyJna{;+{#{U$~I75_1};-8r!C8`bHw{Sy~q=cJOY
z`lL8le6a@F{<AtutxZmKO-W5tt7Y`8gtiY6ux=S@*9^4*g#8FP8&HfIQd4xQOtovK
zI!|NDAnik3urp$~d8wQ!73ke8(*83JgBk=S_cSxucC+)q1cLTR`zPjfv(c2}3haW}
zEW=@u_7@^)FbG3{oMRv`jM*m=a)G^h-Kp~VJH{`7n7h+Cqv<j^eM4Iba_aVh@h^jv
zf2W+?#~U+lsmvxJC+G=YvTIjnP77E*9<uq>X${fk(dApSLsiU{&p(TuET_k528tag
z!!8P$`hO`QCDfp*QCEkTY}GNgQStO!`qVaBM!r^%qsVZWj%2M5;N`-N;nC^j0?Njt
zGlXP9szO6EP?)A-Auke{44@7j3n0yKkfe@qy5uHO39IZfofbK5aY8CEZ~7KF<^ufK
z9rnvQ{uam%!oftQe|ZJYX#9>+xT+Nh#7=YRcqpb=qgJ^7p&-JFIr@*NGprh<BEo*6
z%(hX@&@Ng-qr!tBauDXKDlASbmJ1qT@R-g82e+QMU}T)bAvZuscb^KD!R~q`NEBC!
z2<L>Rz>mGzrS)dr&*TG`SIBM*2UMKQ<ei;>1(`|v@!cQ}4k0r#s4CK`Z%E1Q=_c7)
zEWPd~Nw6ANeM0LP<de2(MG={C$?#vsCZ|MjtLeK7`@!evOoNsuMHVrh+Y5gIy{>Q5
zlcC$VfZXuxPYwMIV|1P%!VL8()|O}NOWqd1=xa7)jpXvFaYcY$wkdK}^G9R@qhI`L
z4czD{m2vr~J*FrmivxRDomR9yK3cDjk1O(1f(}Wb3(dxM5=Ik9P6>iD5=k?pcCf0X
zOt*v6l3`zO)5~sDJ*A($n8WCAtvs0z9nUNgksIa`N4+e~<bNH5Mn6V+okASAGK_qM
zN6U$fJoqBM4Z>ezU)@50c^1g}26QsAO(P9N(Ub4}D_N0$n=IkIiPIaxNy$UYc#_Qq
zdCiaVs$5f<aJ-?te*d|O_UMCA#b0gpVtyv?vg(-dl$hL@ytHz2nYpwouPn7plM|(m
zVaVsb*>glT4Tj1`yJ?>mI(p`O`u=<>JqLb?eqNaO0Uf-Ge17{Jaf3E2_y@}Aa->Gh
zp+^E4X|_8(5`@T(ESfCGA0C}K<VYhq0@__F!;TC&pUx6DD!$vli3`n(%`V(g|8?et
zfc=ZVr=!#9ms1(Tl8~YUT>aDZZ`SVn_;*?|0D_2-$bfo?^w}wcFtr#iqeuAn>1>|i
z<H%j;p+<1iERO7wOXI4i#NzPW{WVbmx&Ar+O;JtIG9eH3lHGZ2N%aBs0eS0_He+t4
z4k-28uHLTRQEJ{^^G)32B^Tk^LVhtMc|N4m4%4w)u#<O6m`|Q}p7*Y>U3o-YP2ThU
zVb~ADtEkk6I$*QPr($zUQcKeAih>qU#43)E5djc$b0WQjvB*vI=Z}a*2X0{j5ptyc
z$dpyYb2T_S`r#~QQb%SXNb^3}LR{r=^nS4O9I;p0Qrtu)mcCs88P#jH_hoePHIPY&
zsEi|(NZwhD@%k5;wHK{saq<lq+25Y$Y%%a&gNySZVk^Bk2$jmNfs|*l;7XvTAKe_Q
zT7zqPTDCnD2=G9>#?NHwx1^Y!qEGa)rYAMOl)Pm0ynbLYpTN;an0!p6-|A(?X8nC_
z4m|R4{A}AQGLl0Y!eicrR_SFKsr19t1-SJAr{!1KX3^<fi|tE3_nuxB+c#ve&#0L|
z-OeTJZGAC)8wq-$mi=V#8Sq%@=z0*xC+V2bsOZp8sIVzXvjH8S2RI*(;TR(6N#ez)
za{wR}l5ICh-Ywy88)PdS@4!p-g0!%1bnqN86+HpXAjj9zDly!HRie{kVu!$>NXfhL
z-JSS*!i&<8IF5cs?YNG|Vrn;f1a(x-Mm?Yd9E&hJ3wfc};HUz`@*j#SB<S~Z!Zz}?
z6Mc=;=+gLN@LdVS6`2BY1^BMM{)g`hh$Rp58eCVPP3eSK0*>Orj#eZlrl+U?a|B*G
zHc1^7C5tpimnI?g11nPU3)2hbLdQ(UECd-t7q}dAiZ(DZfZdE26677MdE^yK&1E37
z3#P!5Eme>&05T=xzgEVQ4@ER;0^o81G)+ctkOHuT-2h!@C>c+Z?{fT-zgX(|F^%R|
zi7M6MMPYK=DsdcOO-OTdwoMXylf9zn>U-Zl>&$YQF?Y=u(HzXP2!r}XM}>=jR()ub
z9Eci{Vha&PnztoXV|47~q6gfxGkv4Y>OtBt0M51kOfuk{>Td1Drc=AmApJLxE@D7#
zJA^t9>L>ql**Wsg8f75q7D(*z%8+;be9mo_rv$}pS*cup_2i-Bhff@I{rb|Wrk1S7
zdB+!3(4JLPQ9M2m>GY!7+NF*1ZOtvW4=NAbsyUUpo4J%5+O$+29IQ#&sysnv{q>j(
zOC#d+6Q67700uWts307!ClPdAqyT{m2aY9N8Z6xfpf->xbc}d_0$@i^T++-~CHjhg
zIsJrxG6(3oF+ikclI~8#|B7fBmf)wvI~yS$3Nh~jHr4CA3ou8W0C0f7oo!v<Z`>ZQ
z$$Z>D^z~NZ26`<{>D2q~gtGl#0O6Q#-?~=<Mwg`*$N(Y7hEYiirFSiM{212yoA`F&
z)%*i_4Do2Xbg4<!H1`r{ZaA;J+4<87nYX`*Tfg|Ex-a--<`z2ntW`?eV=`m261b__
z#ffpUxHE}&wVd>BdO`;5`L#tpW!$B?-~xL6b9L)=rS&fi1NR$6Z9#QwJ!PK3Yc~XO
zpEin`sw#KvlI@Dz;a|l`3*Y`uE7=Xx28R!j2Z?{OZ4&Lch^hI-%S}y9%BCjVgJWL2
zVDw0>a^^_NUJ|%l4}xPJNB-*9@C~<>R=rqH19#Juy&S?*FZ9YGFEDnE@o!?9{6Xt2
z*MF%G;D({v9=%C3m|SoJy|ftE__&O;cqN^%v@fpq$P=Pd<%f=4klmYoW=ed5HXZ%Z
zIFGN$Skc+2rLFVilfRrZIW99UJ6?GL;P{Jumm%14F3MxiJo%)#|K4&O*6PTwM2n&}
zE}bu%bYa20l9J5q5{`^G@tR(tBmTYR)AI}OmzHJ;TRu5{l8zTGtT?&pqWs>atKXJn
zl%y3aJ;(%d@y$s(5nE1S%XgQqd{?3swk$;krTbaYxyl{wmt+s-otwyYG}B_XFS$Z4
z{{0%H6g~LxOL$I90y^Iz%&F;ZTUV}c$1Skn3vja8l5MeN5!>Q_n)}<5pXM@t2haGN
zm6LCs&Yo%6aZvfwrC-nde4)Cyvb?;KAqvNpixzGQ;YKYQwPe&{CUo;WFE6>*yaP3x
zm7~v$I63+(v%Y@m*%LBvOpI=cPqnUDCJ>mK+K4YwUtZ#QZR0ck<b%j4eruZpkqYzn
z(_|(s0aEh=&Ia_lXx)&oKGZ?xCSvxmzxZ7VJj!jl<bC|2?B<EfcQ`?YU5?&dLBG5!
zpoXg;l+A(TSD`E`g*2W1zJa_?wmFd<9k<A2-axyP`y%~@tW8<m`poQ$dovg!O}>K&
zwEms}aWCw+z2oXP#3X9^yY8DSGFv7D?qfSfi6XDxQr(e1eOOX|PpQq+BG-rECtI(v
zS)s;|t+FXmV>b!Pmq{I;ibxD`g)>1<cFBm$mwd30bmKb4@zpFrO7?BAa#;pB+WdKu
zg7@eBL1`*1Ko99`^T%)J64wW*I7p0aB{dG#o20^t)=*cGn{}52u!jqKz$`ok&|$KS
zcq8Fz&k>HeOKfw#qTkbGx(AaE@;BA;>oy=p4I2)*ts|`qSlW9s?e!h~^c0<6<x1Tp
zZ=zpp`PPemG{J?hqGE_%G-5IY`^_0MUw~;7kX+<}hTnR?d<;}be76Vf=G;Voi+68t
zXhuFIo?Ng>P^2oE7D+Y-AoqA~tKyQRIiO)Px5xsJe}_pBCj38_;2xj!)&ukuPU6l&
zn1D!BM5_>r_23&l6>k4Rut)s6Wf5z;iFCBIICya(%WKSzQ`&BlIWhFQi1tY#hY&J;
zBPVajp>n4bB`?I0fwN4^=H8;?6Qvt6^sw&r>D~LkMc*e%OiNBmkR_Os3gH`i)NlS6
z=zgctf4Ods2;Q(twr1O==5TJYZKe(o?i`J)rYp$fAvT$^a&we9xtS)NX)!<3rFq-7
zJ?*lCp{<*%xI7|nCEZT9TYA$CE?LOF%|vQrR`>o^q5Z;aQ$Z0}3ic{2Bgjez%S$j7
zfSGh1{@0Rs$lB}VUsp)?dl-21_(GGtH>GWs`}ky=kiabi*Y!x6iV-UfWGoqwK2AmG
z$H1icY}R<oy?t`96EdwXkm*QlTtIIpb}V<vX>QJLmbWygrS8N~0G4O+11aU-AuV{s
z+rgk@NoHv&9%(9yfy*n1o|eP^;YR{7U8^L*vX~5dIoIQ~l58ekB0Nem`uR6>que$H
zNP!o&DYhxV54_-~@Cz}uyUc%iG;OzLkFsM61aL^heyD)V0{7Ksd;SgH1dv${)_c5&
zP035pr=&36-cyr2<Q`KBcKIl~RwXCv6HF=0lGCJHT9dqqbjv<{T4~DD7bOE4dydRu
zk8Eu9T)A=MO3&7fM-I2P9tLw`FRWYX*|qNQ5n&z4BHh{5!5cS4aoI7(sAw5oLjCA4
z5bT!V)P|8IkPXc$<2F`oZ9OEra^m=vo!b+_tGN58h+PZmo_(EMcFD{~q%DJlc)Bzc
zH&!;wkF;*^^xU`s?X(_-f>irFWYWExPV9Z|FLkY|YAo6*zjETMIZ9#;WV4(`Adi{c
z--X0JsK?^GfpNywK8I-QFu;(8VR_EM`WZh2`9n}aOkn~7W~+dsnw`HrK-slQqtPej
zY8cPMKd0Br>wnHVd{~*At1r+XpQwb4fUt`bdDcsK_5YLI81CyA%VotGLGKM`?L6ut
z*czC?x{&cD#?s7UZcAxcbDQiGB0&wcNm1q8^+P{x|1;|xsdPcIQm#3JEMD(YTUcA#
zDBs)cyMDbd{<rMht5ed?_AI06e`fp~aATEgd3kL?z5Mh6#G}YL-m|v?@Pb=p$WLU@
zPh>Fu$WsT)-<J98!g|pONo{0hXh>va2uF8FdXF00o7#_lOzb&0H_5v)2zGZDhg3w?
z)>c;5a->D_=IIY_-aH-GhXXH5It^v9_ZUzN*^PSqH%H!+oZI@eRz%;Egj7b>bQS4I
z221F>ohYEEgoBrd3>xMpI*5yW9}m)Z|NP%~upYErX32*O$nrBHfNn?}U5<2y1gOES
zz;%k@I_xA%yw)sT>eY^zSuyyJX^B1qh$OYZGz1525-iunB$4BJ39jC$Q#g4JBwjzU
zv|fUkmr(E&2VrZvd@=p-yogpxXc7qimk<>Sd*D}%Q_dtMFlC%Cg)1<u3a^+uAOj10
zG#`BgP?0U%;?d#3!)fvUOR#`(e7Hb121dS1Ru3>mHrA5y4*;DPkqP<-@NcgNSZy6X
z3Cr~laHd#DUmlmPu_O209G|gt553<ppKq}GOQZpIbX~_ea>I%2Arn}#zGFUJFShzS
zlJ#Qga%`jPC8TvC+c94veR7=KpGfc1@qDB8b1_|SYZQvLqF4v=sVCBV*wSGAT=LHr
zoX?Mz_se;n%*I7OKzwks`H)q}DX(_0Zs!ZxM`X3)p%NW~JNpoCA1V2>w&^VFUOAjj
zpRU`KQ|Jq|FbVb9AhNtKxtDdP<<$9Iduk69A7zY%g$BgEKSc`G06I&k1A0hZ1t+cF
zlw0t>1@Dsul5P7A7ao>lPSdqFZzZ#F)hco$_mzOty%$N?pLr1(SG{`j2VrRZ(V`(A
zN^jV?Ii7{LUssuakT@;QBk#Db3>A^lU+igwRKSY$sp=KV%xIzGSevvVz@NJoElO3T
ztCD2W_f?;hK^J?==E5B_VBS__#(dsv;0z_?%T`fERzYbwsI*HW5~;#JErKi4L~oBk
z(kW6;mD0f~|K!hfI~Lkv`?y4>C&fg|BFked>-lNF7oOrws$5lm3bXPC+!e+%@*jxP
zx7Q9R^O5#dt~IWrjx*BynDjt{Z-6XbkLR4zY^%<wkzc)BrM;>wzEyQA<Bo2JOBxK7
z;t4m>v(mEDvvaas%tjG8PaQj?g6JFwn2r%eJF&Yu@W+WaW`a5234W{oNY^S<Gv`PW
zn+s+60vQzLN;fp5?d0}U95(DT6ZL6i`bgi9(8~Q42aJa`$u1w$&*Qwn%I{1afUxkO
zy;dTErHU|!zL6y9JTv0YZK-zsa{8K?Lw(l9hQ&l|V4AMo&c7r7dV8j-TDeVK8nI^$
z16U&sdHV@lO-G6}ZF|%A%71uJ((tXaIrd93(oa5zj`Z{KP|_5Ooc)1rxphc{7N|X$
zDdJb!YS{$we8U%U^EJ8aT()Nu_p(|U)G&3~oXyL^u(`<bO_Ya6s<h$CoLCXrZ?m#P
zC2a-j??sm1-9$H8gG7g6Rqv=x*JT)uB11N7Fu*=c{{95%`6bfN$UAt*9=SOt9+%cg
zPa_LuC2Q1Vs*{o!X-!JXlx4${N2JjAQ>R@^D#$9$%Vly+phT6MwfgjIWysE>;lxf(
z?7rDvvr{R(RZ;+_u!h-0By4W1MxCHZO4Vg1RWVgb>Z(QZMbVMrLCURRsuYBFq&4cI
z%);{0^3uk-24s;p6l?3`bq(6Y3Z?XLMM6PfZY%?}#GUL{v7c;Q$Zc2@8nG&CK^Bt8
zmrluKG6z9aWD}h%9~e-yZHrP`v!Xfdq~W#^Pvv`<;Epg5Pb1(np1&j2?;&P|pWc&8
zcRbuSdbv{Qh`?d=kgQ#{gBx{fT-CT!%bP!cxZoC!NJanUyK24PxLM00-8VAx{OC_~
zjcvBfHivhhxA~zk%>O2bc@M5f74fq)6MuWSLHsN`!SZB1iEK`!jt!+_Vd)H^Ljwan
zJtyfs54(CE(cL?8I6vP-*qW3ydUPOtzk!NeM?}t^I9Nu-&xaGyZx60LujGg$aBhuH
z9yd0+5bP^ha3W}<O=ZVCqVH~}4k661apUjwms8R3;Z!{6+QjEkN?-b~divq>5siT^
znBJmYpkc=dr3G6KpN0lCcplc@KYZBr@Zo#<!=436P$eNlMV6Mgt?XY@AAVHC)f2}6
z^4^%oL5(g#fv$phHwN#Jr`s5K*i%2r)6=!<e3A-qB6Mhe5{}z-D`8q(^^#A@zn}3E
za)ZyG6R}cjMINMh_;V`iH+JerFbJ8Qv{%rG5kY~d9=|v~5e^k^g%cDGrm?Z>*j&3B
zO2Q$cg@S@-&l(8pM<lK<i@tsI7e*A*ZtD<qUzhFmdn{k>=WpzBu=M5Eu*N*qfmCCv
zk-l>zHZLJ}OHo{I`;GeJS$Vm|hki!%I>%52E!XT=byx}$ma--=CL=a|X=IQ(NWCmB
zA~hm4N|%(*7-F+h^|H*gg2cj%qV#PBb7sD=405~1tc-%JtgOtFg%vrKx!={9bs0(X
zXwS&aOw?w;`#uc~iVF8y5|@;vZGax~j>;3)$|{eYKXAF_BxbX@8K+kltBciV{RCpP
z!{J8EX4dnuY+(lSUgc_CU`l*iLV7@QVn$*{P*ysAO}+(*RS{(wCLL2z1L0+5aZXL4
zx!jnQotsh0fCYkOKcn-Bay@{gfwmj0wM1h1k|c=UmP+{j4_R*v3O<+D&~5{^lK_6l
z%K$Q`V}Qu^${NA)H^>SwzDQ`X8#S`~J`acuiuQ|l^`zo)ar6WEK-#mdeWWrcadkto
zT%D4l(jfMqrd;p?SvK#D{0DKvj+~qZB|ML<_m8#CaXEo|lkBtJ1uXZVh#w~@OwLm!
zcXXrvS`BAA2^}Vzvt(S*f~X8#Dzt-BHCnAMO_#yEy(rNcbUJwGa?|qUX0U^#<(4P`
zUA7caoqz&{J4i6Qgg?AH)G7N49xh=;8=^RPIj^A3UF@sG+0zN3LnXu!)`3WpjF%h_
zxb3}*6YgTsF7IjEzmj*1xg-Qnd=!?~Vkpd5Op>3MfB)Hjt|R<y$V|BQI-LLg`T~H@
zx6Xp;M8`ZphL2bfw}(Ff281&ybprD;UZuzW5a=l?0Eqivvg;9Wjzl|k+@fvlG=+3p
z<=ms-({TLCNjmcQbVb((5X^V3#P+ohg}2Ty6+3mY=61<qUFuTBy40C94Q77FiSRFi
z8jqcXDJMQir;Z?|x3~UZW#ERT8aMGGK`0^|kw>^-YplWSuHE``-n%#NTBzUb4Txd1
zi_K9?qe*nv8dvYl`h~kTlXlwf(s5acNIHW;3rovogw#m8h~6a=5RvTd2@Y8YOQrQN
zOL`9`xa5>w4Dv%q+WR*M5{)D58Cd$T`hT%Sv19-=C|05?v|m18FdYC%iWPX+yB+=G
zSB~fESgNHzz#9jtg-3qBDiIYC{|JY=GqD><Wb#*kRUkuIMSmb~s8$K$D<6n_{Dz4i
zU=E9kD`n~U!I;WHXZ8$rC9IO40Y~Z>`Y*bY4j6oNAR;YeU|Oyq1AblpirOoIMMPTk
zC4ni-!>U34J>2>=UC}A{5lnRTWBMWKv5H&MaY5v(trNJuJjBg)4b58R8p{O{>2c^W
z!d|OEwbLaoLg0Cc71WTOhp`q7M2PYDb-XXZjJA;NSU_?uo&Pi!UVSZlV#}eGWn6~`
zJSf=-@tN`R`1p*p1Z9T@^8Q!GY+1ET2GXR}wd>j<I6-_@q$;mWLvDX%Hfa7W9*AGJ
zRn_i0D1$Q~H_{$1XE|W@uiy<ILR_3I?i~^=I(~xfM=HR^PbP?Hxdd7JeynXiS<H9-
z)5Ri-ykj|gH1NQxO3wBLSpdkV<Y>Tw)%b)NyC^p<7ATI`*bEJv3a|o1t0M!vfI{dm
zv3)@o{QJ`w$*Q_F`y&P4c({lZI%NV&Vl=uMwMJd0PFU%Jm7@KXb?t{>>Njf1B7_qB
zfC(OzOO|NK;=hSMrWuX=R|M!|()fU6Nt^B5Boo{mcfu~P<&pO#q`)?nB|R@rqwnT}
z@>fi{=iR$Qy30#!575m_eMAN-Ed#}dVnay@a>$?|9D%9-cDfketvb33NrKDKJp_?H
zzmd)0*$oj-2^+NGGr61f!Vy;bm5RJ1CnYcfNRPWKa0^L?Z=@n6J<RW9Va69qr0%Mh
zPq$L0_sn%4D{UwF90V?$c>wWaV7zuiPcX_IH}UZON+LRO_5sMlq&wZg39#@y4S=i0
zg#^;+H-9HR3}jx`U7V;h0<q1s87{_YNBOH@5e+yV=G39KIk2D){?}$Ya<cb|nOl@E
zwjTWaV;OE<*(}<Rv-Pypi^(f`lfAIN?&_^2rSp}7c`Jqm_k_K9y87O|RXaXY;)Dam
zmT&yogXe1xAvKEwpVj)&3#dXa&9y^J-4Ry!7tr*62Y2l>pulM#IvH6bI<?X^Ts-2?
zvge#sZKvkDvF<BZyQe8huK12-)4?fnX>WI^HkGqe$=7!!LPEw<KI7>!GMN9H4DRVB
z_9KI(?QY^>aGqh1=|=3~7m-7e%pR{`M8j-Vh>2l6k;AXuk>3%^LV4N&zseyKPJFi>
zRJ3hzZLw`}uhtXhNZYHnS1XBRKwH1PE?H$|#xj91wR2~s<tDH}2)8L9m^oQkcA|^G
za);k3s2cNg$U)J`N;0??_-?b%_pGB?a1^aWB-^Ov=q}q3kwKMYNRrQ66dSNY2|Ue6
zk!_lU#10pMmG6@sC@&%7<Vc+uh=X=7QSx(;3<4j@Iyj^NHb$R6=H^L0{s`aeATA?x
zcW#^|pC9Hw6h46q+3`E;yKL_<<PXK;F?~4O-?oP=={EWa?UoR)%}C@P_}%y4Gu(fY
ztKX-?H%)5tEAlV&D`e*FxU%jWIqCM~2{cBnZkBWGU?;LpVe^%cBlI0nb?d>xBXYAz
zuY(X&1i2$3D~(`87(-Udp*k}b(<UJdIhKxt<P80dW{ap>B9-)}y#>O0yJzIx5G8eo
zH}De)Of(jp5u-V)$3O+u3+g;F@Hq&wbgqJrL0ICG9Xe|n5@fN&z^jei4fpeksGcQm
z;)l{;%U#}qwaqA*TA-H&j#^H;wGJy^yU+7jIzJ)E#aLC$JBn-{^53(znWd!nSkYwq
zf$u!{jD6?rS<I0o)FMK{*;1T_nIj(!7g<{<$Li_S5%hT*rvVbdhaz{{=8%F8i+r4Y
zGZ#g_&Z&jQ(;`Ae9ktdG?A+_qfBnehnLRIV>so-bc$e}da)T}ufobDk2QMH&svkYa
zMyn7Z0I_MD&3@+$z3gcX>0WW-huXa*7lXk&OZZ2uH2d@akFocFi{fhAhgZYQZZ^gk
zmm#pj&Zw~)V=S>p(b!F5Lu1E=Ac7#hvvgP%SlFfa-ocK&ml!ogi6$l*O;6OACzdnI
zS$zK2pn2Z+`G4Q{`+ctLPC4hynRd#3U-xwpZp$Yq-~GbuM8P%;0rP%o;85%dPK|2<
z9r3O-A%yrzFUuBRytGiSmEBQc>NZ$<T+~FO9axdQhNRDshp=6c8g-Y2CB4ywv!~Uh
zO^q*m5~L;#2&)D4K|h#Ykp@ptAUi~j_O%1cN~B+i<d-@v3zhgGE7TG;J}=R^v!5;S
zf{v_|0_7vFlvjF#p|S}!6WC4eT#{w#21`R^L;9aDmR4a27ITQUya6<kz0KaDCaYN6
zVA~KZguPghHnAxS<L52Vde!>12w>1^sjY3k9RFF$B~jY6O%1Xz@G=o4tQoPLH-Xdc
zq~s>&8x-On9iN#UBYY;mxova^KXH;i;yp1XCL$@0_X(}4ZYnLTG>PSZ{GR`Smsv5~
zr=br9Rf*nLdyj1AymtC+i_m9h>4mT8>vYC3x|AP2Au4pXm>e0O9L0P2)iyU5RWw<|
zs=Ggy$V|!W$ck0(kdb0_WKO7`{6reLjoW<OBVsenQNnGsA>N1R7Jk5hSij+7iashS
zlHcUrv~Pb+6@q}9(A@Mcl-=>cBzEm!GDED2Dhl1Ig-v)EjASyot23*I9G|n@mmE2R
znA6l$KVJk24xlw|K8!8XHkLH8RX+5L?OTSPA*Yn->9uu69-y9@_67zD<zs0R8_)<B
zQG+D?@lDC+r9GrQhfkj%{IT7?JpS?}Yc&i;(T3RAXg($ulr3TuNi2}cnEc$_y!;$}
zv{5Lsl`*85dU6J6UZf->CJ9MN2>5_}Qf79dn2ecxmbN=8P)}my7``0ohB1rDF<Hze
z!IWWwSeYr+)N7zQ3Cif&Jlk#N**?N?CPPYQ5}%X;ZXz+9+85KlOp-Ap*~FVNGEGLY
z3`%!b5P4!Uz&OGuB_}5#?l6#U7Axs`CNVSFWXeP`p@z6IB%2x#{s&LWV$fV?Cz%ox
zQ9*+cOjFBgER$$7C1vqhCNLmYlUN3Nm7Lj-XiDI5Ch=l0HI>s8fU}aav$ITQqfkjw
zn5)38nGIlu;^Pw%;>8deT}BNIXu{3r>}-osC?^I6EMbYykGkL5gUg9G$HgXqI}66c
zv@lyAp#&LXjoI-z(0(%K0RJxM>5#T^xpC%LJ!U7}DI;v22uDm|^hR?$ED{!TE>f1F
z1~(-WmuHB}iQ)CJu`yzVEu)AgF)>C<TrQtyvE&(%u7o5plA7vK3wZK?1fi>~(OiK(
zH!4c6j}oG6*#$J7i8AKs3;2TE+yZ1NB=OAmxJX3?eI7<~F)<MaF~+9Pqk1ONm={yX
z7v|*^B3%K|Gi0?xlvM*LT~3_IDI+;CJqcF>w@XYwkcuHrm7<L4>XSuZ&Vsio+*lA*
z%oi6F6eF{oJ%Z`HU&;Y0q#+vm&X%q5QQHJ!4umOxEiK>|ei#$vDh9<T#)oU4y`c;%
zh%QbQ<T+Fgv>Y{ftKUK7zlE4}-D2Hvcv!eBv|4sqXm#)fLSvgO2&<(1!H|n@f@QKt
z4e1$~7_>jVPn5Q)f;|7RKjjrns!!H^Dh2+omWnTA9r0;Hb7xPy_sTz-HcNk<rca7A
zj<w~&*tz(~$9Fs*=Y3(kVEj~-lLl0tMx~OOSTh7!r{0*6)s#{ZQ=me=ocI`1B(yDq
z*^tOc{{%5?eh#&3qCEm8c#d5^dh=wD1>P%FMngI{ijvH+8SzQ9&w}OCV%MdFWa>>x
z-8%M$su;&43xL`Dg`0QDtiQ#lyU5^1A{MILzQ4cY5`VI=tRw><Rb!ffz)&EcbE|-r
z%2Dm}A8($=du&Nf+9-OL_?GyWsWAAnb=XF6g)N7#TtByP@P-XOQ7UOb=UXt98Pl~I
zyM9>-S$bob5n6dhLu!fv)HW)Ool9y=N>pliYIJHOkhLfz{!H4DoH}5cRJ2dmFs`t+
zu&xlReN=5%>n@jm(lWDs(a{aqZD)zkNyv$p6AlX-<~!C?Wz`mO#_p-H0q-gr+Vwdl
zt3}eICNv2H5}7s?0#efCZ1O7!QTNy3iaWyqhQ8)xztQZUwgqs8fM?JtJ($U4Gs`pb
zjm4QoPGq38A55Yw8ED%tC&-9)GA5+QCu%d<^m1c<x}4@uX#q3(DT<lR(urNe7&?~4
zxHl}R$WWA0;FMCuB(w1be1y~p1VKcCttHG+PBYOujF~M@k~=MUG;Tf`{pfRIze1-W
z-IaUh(bdR(&cd0{2JXjdX6{pRpx<=%2_0*WGbLmuIHjkgrx=q}>8!z0m{%(NO~x`a
zo|2}1^H_k=TH%bSVLtEAYA9`ga)a$h-c86!%t|&p!PT4rS92<xk{B5pBMzkRGS~al
zmhQ=VG)&?MRwqfQPbtZZ?ygRk{&{@@QJ-I>6QiC=cI=@;$&tIo+n%Q;&>mXaW7*rI
zy@hBz4;y6uhAF@Gry#F*A~|qifN88T<&=y2%gYX&(Vh(1=TR=?1^Z=zAi5VV?>;D$
zuBHcf+W)SGI1SGJMEB8fkvcex96IE#*+<7{zDHEJD@27lEy}JA$-+Ikd-n-MQsf)k
z{W^uJ<r#wox&vusq`Zux?(c#qnVp_2MiRWui!qMq{*l)>P4TX;bgXqT$>->0a`}a|
z<C#6I9Ws9oIjnnb3b8FFDO_=4F&bZTg<f%lR6}@HIO4-tP5*wFFy59e8H;5sQ@qXw
zy9b`DE+sv~)y4al?%<~ak*xuf^-Pzc^oQUNfpZL((JJ6TR!oNFb0|@KM_wvP0mYht
z;?jaHjwgE|2jfEf+uXTXOY2)(&(>ePdUl7W=h7Xs<dek_Ez<LgwGb!VfhOcw_Z8F3
z?5d|*ImGg%#Ku8%d5R-_W1^0{0a_(G<poRVbB<7HpE5r_FUBND?{>}RqM}SWF`{op
z^4`ii)#YznA3V}N@_ex1TOqJ6b8lT`ZN<Li3SZUjL5DEobJSADb(EWk5cKG<_)r+i
zzzPu=k(C=Q`d6jytFBQsx0N0`sy!Nd$g558uSwrmT~$-H&rr2fb!JiHv`N}Y-qV&X
z5~8ES!5sMF!N*-+D4zySq_g`(K;3B1+3X?sVE;nN$36@O73EE}=BcDl<&4S6#$;Yn
zKt`>EmNKK2ME*e_C1_AzoM6X`6O<p0LBXAl|E(N14&}qwc`9C?7Gc&q5iI6Lm8BHq
zIvw9#kegAaFK`0SR5B*s$+-n7Wl_0KD|bibhG5|2WIaGnAul<lF9^wq(mSnmkJ6`v
z<VHDxataVmnyin?2r1Az9d|F#mu2J@pm1`^oSRk@pX=16ux;c%jV(?o&dn%sB7*f=
zMzOv)EW_!899R$ZDPc}j=(?5?o*NFj?cP!(*)07?GJ06UND-z1<rv6*V_n6?Zrqr>
zm4_<yc+9-a<n<$$zqov034LW=*o^26;$_N^S*>Z>-M7n#;twq`Bc63AFdV5sUoHli
z(Ey~Q2U#*gm`cYEqW$~#r^`qrok>2OCH<wMZ7gwk7AI+G$KM~G_dJ$<vf=x~n9`YG
zH9D+1_hoj`mxv-=q$Y1$M?U|v_k)QP^YIG6$$y~GC8Nr&k<tN<<SOCO<QOa41*0Om
z#ved~R6*x4T~py~tj3k?{-X<+uIccLBD?fZ8Z2kGvh)iMFcglVxk{L?;MYZ724zSO
zZG#!&?NA+E9b6!EU62ki=IBWDfRT|&@zG+}1=|58I4auTUu!#{^w0M%j}ol%w)k#9
zc448(oG)7CT;&D%)zz|r#YiGCNKFEDy9y8yrOJvCk1;P#OTI@HE9lR-qg!AiTR%)_
zTeGNQAy41IXdDrxJ2L&um@2+HYch49!?e^NH-9<_j2296I%|YB+#xnQ+hB&Y2cWfc
z;NF}x5K7L2E{M*Zmnp_1lZfsQNLG-`XJI4U#$P{k^y@F@AD+K-z5kZYqIa9muI;U=
zFTU)k!`xsDaT<<yc_MWjM&A)>$65sB`tfr<S~GLTCu^^sJ6OGUpV;8h<XP{bnmcQj
z_b@qb$>|UBp4j_|y3-z3)^~K7cu%1F>p))fT1pfmLYP-DB`aKW7V}G%#fGiG2C{-V
zi#fw<%>>aYlb>~QNaqC~kOShoo5^d~ClEPT*os)!#o8q~%Su)VQmE|#htq$p`7D^1
z&`DwU$uqI%`17Z8N={+}(l5nC`86+uykN`(fw=oR;#q<AOGjOH=|m|Mv=1dGbIzR8
zo{K#bb`pn>>p>L=wxkYV+3}*Up#a&S9Y_LuG?BnmL?Zyna|hEyX%4yuY8!V^prJ6Z
zE+&3ZjlHOq0}}9g@=svGMdAl7`h({M5~{R~`;c}}YMZ0A?UdfY%zGz3Z{V{Nhj3=*
zhg5|0EhWLALXE^<m?l(nu+%!7vn54JyltYC#!GpUo%D)S2?kSXE<o-x=zQX+O7qXD
z2ochxk+vY4lHL*0U}KmLyY0Ke5Te^h{LcQZO1lhwqb5NUI*=%tw0?_MO%&2hr1w{k
z1bBz$!yd7aNxMarDgA`Bx&IowTX>Tq8R1;pMgv9PA9gvB&PTa}!0kDY%!Pa``Iq#%
zw7k4bWy(lQ#YC)x&IB5@IF{}KPM%uY+W`fFC1Pzz^Og4YzG>|T$VfT9ZRCM=4LNCj
zHi+9~++^C4U3}M(4z8#6H%2~Pu+-77(Z4yk6%Lmr+X!S#z?AnEX^nTX{UQCv1zw51
z_LcUlyla(Lgh_Szdy03LwmL0sW<I2>2Y@4@R-WZLUZkvWwmGydVpr52r`vTP=KhJ!
z=7K%_z5KivoOK)tv9RfMFe1)gRusRxC1F$2CW8}P$Mcn>)eLOgTd-aQsi?bjhYR|2
z+u03ALDVze5s>?>2Ua#N&O1U99J9T>GPd#CyiyXp#UnIfam-5Zts9)+%Nf66^|qx!
zA2^YyDNLMSlCO`}$K-2)Vr%4-@()^;9sngW67AY>+~<6Z(;Aw{BsMlDOE0N2vl_)U
zB=LOS@rGRokcN&waJ1!Y`KL}a@>|AIYpQF|HYC->L8&(CTgH}#KzGdXTH~n!{yUKd
zpY?LAXsv3lZMeM5@%N|1{stLb7k<}qk9l9_KBLNd4fZ=C0_E@_VTGk$rJlv^`CFVO
z`7)LB^WLAKoe}+h;C$h>Z`78Et)U)HXT6w<gl&WO71y(uGzF$V^h^f$@mkHQ`O1BU
zeaU;`!{2ozgMEqp^xykkKI2&HQ{`3RdA1pt9orPn=4I=PkC*%_^_9Hv>Hd|8Ww0pk
z65Aaz)mVQAitn(mEPRT&P6wI!_z$$-sj`2jFJ?!J;QO3>kvLu;pFvNn>kbqNL%CCn
zvNyUdk8@piDdB)DSJ!?t@093)+2rBC{VSJ-xPSa{#rD$}!YEFawH_16<m+5SQh0Ji
zvMMV)6XTr$3#JYV5xkSaqP(=8M?&h7gxit7_zcm~{v*~>`~LLRHlq3J;DOI8gbd}5
z;+WcIZBy2srUI;eSib4*MGzAF{5@g!?2Zj>77iWCFFJsbdF6TA1TLdG4UM_vtgK9{
zPN@{2<B=Me78t0ty`l6=^G){?Bvla?=H;G<KGQMc5gI_^lb)`Ok2fYjfIig#KIE4#
z99EVZN>UKU){jlvmcDJ9_Az~#4GT{X<39$~=2r9igH=`81!V$#RS6pT72G<H4QtkH
z-GBH<+kvA;Tiw<I>T?9-Kp0!jKrqyLDFHaT>12N2&tX+v4zxs1peo-)K;{s#9__3b
z{Bk~;-|k4iR&e9q3!6D-VD8U9{ZM%I^ZPMlfpkpfCU0LhZmh?N+ut{R^6Txkxh?|w
z*RMIhIWt0B_{QZQ7Ikx24Z=Ws(cmjo{A-(-to%4o|G`S_@^ZIBz5-bGdw9&8LwjlI
zCi3x8n6bBzQP)YBpt0AJR@=}w$w=*~`toBiEKY8GL^$%Ewmz{gwpOUks>!agsL0i>
zDO~cwwDyBq$%^N0ziFR9{aMpS!-fr7+Y{ybG`HmS&|GAt2k4%Iw!7=M@H3*XofkE6
z3aQ5(WnF!8Jr4`!bfqRme>(NF8JamEtZ9eQ$49Ffpr1ZM3FA3ks>~=Y%P7kOsRfU8
z$*J^_QnP#momoxaBVHFi$*Dgn*gBl;Lb&V8u1%e?WcIY_=jYrMG#mPTeeTQaV(-K1
zpMZgnk(7UTE`8MZ?4y;BI(3gUUu%A|-tJt<Jso$qf4_I%?dNCOnHwN%bX&iC{XFz5
z3-Q)|y2rLa<(E+zQj=~>OXuq{%BxfBeaJUoko~~=r0zMl_h{Q5RZ!FJ=zRzoee%N(
zPekc;Jx8w70#ZP))2{$^#P6tzQTrzg`8yk9Yx3b<Zj7!`ZTmc|<7+J`hPPuozVS=9
z13p-cZ~S^}g=bpu&GHLN@JsY9_N_}$#T{r*YUjyyf|AKsV(-W55@+_imq?{`2ZzCi
zdIUh5YqeV~J_TMvYF0|TnK!cMvQC_?IIc3KXB1}hrj)|>@6(xIL|`(=q!`i+2EmY&
zY)IlgQUk-i6IEM0Vj`BIFC~YQZrmlqN<RBUs7YzdtV&RABg#LwLx<&8GBWq>S<##e
zijUmzKSm`jJ$?CN>o-leO_`2}D>fL#odpNp+QXkICB0k8nD>bAF42I3EYX}^RZ?54
zJ+<@1j&{gSts*fi$Okm$Pp6hiBg)4DU_lk(s|Sj7$`lMeqv(g)kZ}D9Fam@JhpqS3
zh8e@N!-02fFb7-vlLOC(VA9u}7r5mf9<Iw>+fJQ6jlVVzSHT)#%jC9VtA|J1t~UI`
zRu6&drA#^Pa@XZZcd8Bl<+QKKX}5Y{$MdwOcFAc=WgU!zAJQvuF`+kqlis9NZ~&}<
z%Vi>ZV2$`b=%BKQh6(%STG%gqWrZ=lQj9zje;f>KUtp-3L+)2q8qmB*KiST4<N!SY
z*Xm7_Pz7YTyoO)$;95s%Nrynz&>pU2K7-MD54`My$OH^E7lCr--x$06<jg$bvSXnG
z2ZUEjVyrB-{meBuCMM7r;FRuP7+e`AiRkq@Pj!y&di<=Nq5o3)6$ezu2`SlTLpEPp
zVlK=Rp+9;=T7_=!WoS42SJ5E_e#YSF?m``dW1<7o16~yBO_w{`Rw{QE1yq9#9%Y%k
zLljZgaq_KHMYp3Y`iC<}^=x`XBl%l*cRd0I>?Z<XK%o`ze&{=6jwW?LBqIbdvE9>9
z&37l@P|~S1_u*g?n9tSZfll)sc(w);@4+ODCyRArmrUD!Sxp~<6j^hB8uk-ckjH@Y
z4eDfY1X(R$@rRzoMm3NHUG~>>P$5&3SJ9Z-BOt90>4QIw^eq`H)so(QaVIjY<s@CR
z-kHtDEUq<wU;PhMv1w(KxV<d(hi0v2nxXT3rp@?wONDT(@o%>uv<*>vJ%o4PO?Y?g
z*zB>qN7QDY@elVN^ATHv(*|wT8W5$VhhtAKq(n!j#qeE=SWPLGGNMI8Zdy*RR<qtf
zI+(V!zgx?Nqm6%Vy!*Vs3F8wcjCwnJ6z>_mX~*cNM~-=m2mKQ0+iSF4r<BH}jHlt<
z?LoroZKK-8X?+Xbn}s`fvhV!*Tf%RAYr)=zpQ(EN$4%nainK?&wMI$F;84aK!GuW3
zV%|D|Eh;f46^TZ89Q9hGjb}X5CU^x4A8#A7dyIBR(bg8>#~-tQ{OPBJA9<h^ob6&r
zP7kSqgrkoMhiC1XGxI*z;#a#(um!L{td5ECcM+%f&0ev1s%ptppAm?Ac&lRE{%Jz{
zluL`g-*VaecF6sBl`VlBMcCeH@}@JLhDF#v%2TUMr9x&=UT#sQDzmsOrI>H2Jr6`U
z1e@UU2<+@2f%bRg&|nTg1bgzB#j<5TkROsg*M%)Wj6lp5djqjI5J>%g&#(h4)<E`|
zEU^MOyS+`$(IHRCpQp0g+r7w(0B+Fn!qzikn%9b@BDIluj4{`kmj+cSLtbvLK}6oN
z;_TO6-}7WP&i+k&|5x0s-WX%lBO_*>CznoZp1{9|r$uDqn}9IP{{HLclK`p9`we<S
zj9&ZCj{mDT0nfiQolKLa@0QJo7W+GRcz@^U%OgerGoc=FkGyOK@2Od!iKG|f>Ao^(
z8IPTRAbwSS?+^0wnd3p8yG0`JG~hipYst$9DpKS7d47B^TUpWOj{LM2W5nPjEj}&Y
zkPwe^l()3)K3;JKPH!ZarAe)27;SW7UJ03HL@B}IHOblT2pMI%WP%J6Jg=G#>GRIH
zT!B}_R<9^(w|?~K^$5K5*9S)K<m2PhGvY<B{K#GT&F8?{j0jFL@SIAspgDh6WWJZG
zb0(2EOnp=4e(qnrDb3&CY2iZV%wYO*GaybjFfSlP)9D|61#n`3i2>iQdy$uy{Uu(y
zR9&66&%fG9<39Iu#Hl4S?*HQQ^U}(r^G5&T7~QQa7!#cqk{A8UXmDRa;fgn#$y_K@
z(s1s%`rtc1JI3S(r^Q5*-*i8}<EWVl9VfFnBP(0nM;0#CjX-GI2(@^RL?a-vTi0#`
zr25E+eJ`><KgQ^H9Fbl1zmD+B&+t!<Qxh&2kFGr#qn4gnx4`F2e_{v-tb0IKZ!g)x
zNRREhr_9p7ojVV6K8W4Exfz3o<3u%w@pqXVHG!WnxuDtw$k;D1K0i)x?)9OL%t&JI
z3dg}TBgiea{~7~&zrYX44a&#-0RVyXUu4WNrxj?(_QJ2cmyBHjbmf>;#Ch-^^bIGf
z&HI4ffQnz>zkXum9$ZVOxzcw=QhUrx5m1G?%6}`!NOA}x^o6oY(f`YTO=mrvu7Rt7
zo02+Ksih9;x(d|mI!%INyc%&Xk2y)hw$<0SiG;J|g1^_Je#b5Wh*jIZRcg&e#s8h{
z2bb|^<E8uDXF!X7(^b?}414W2^Mq(AH%Gav=@R+d2(q&Drg>Ynu~M$mCfd2;&`Qlo
zQ-e-AU?(4f#Ua`R$)45t4edTMT;#xu$-t_POT==CblCe@UGau<wyEHhj{~PXP49xF
zngxntQU|;^h#c*J=LI1@u8^%p?2ju))2&@#qK~#j@wTaOBacyob`xP(x@Y^G*>d8i
zvyKDk%}>|+0J_|75lyw~*yOZTt89a81050M6fF&u1|2(^c5Br!r&UL>XSHphZIB}!
zPKE<PGLHIEUvC(kCQ_plg$NIWIX>p6vO<p$Lxmq2Va)M$0-|7?oI@HU4Lo`*?Yq^-
zoMaP1)o(qX-g9Px?!IL0vhD(F<nW(CeEx%)ymBA(y@F(LAa)~uMzk0<^|~i-B0+Q>
zhgbd$x}}0LrimHep2@Bug&{@3Wyu*S_=J`ESk@ZoOUcwN2=N7dRMvOl2yfhtyq)*i
zC%e{DrPwt}NhX-MrX!xmS8Pp4l0Pcz0_DB;zZnB@+&9=U@4q)f>{_5qFvXh^Oe=PI
zu54O!X)5VGoP0E$uId_Vo!n1P?yC}w@FKsdElDm+E=*C;0Y<tkORJ~%t&^Y9Ro1cO
zqZ_36{Yy7tVfcw;b+(W}Jsx7nG>FW<hA(*mf53BrNQDjpLTV5z4Up#ivrKQ=*#@xG
zhx#xWg5B(FakgvhYEzOyoi3bn=etmvp!<Qw43`E_AL64#01*=2WTiRM9K5xn8l?3r
zUa}UzVq|OxtMkhD%JYa1@mDRLZAb&j!8#fjr%#GXiBF9)#-+mmo})hu<ix~ldDW(p
z0&}@3AKfcyRgu@z(h;XIjAU}@ZJ~`md8+Zv7~^V*njVPBisXZgA^NDG9qXd$klbMz
z+q3-45qUvn(G><&fhGMesSru8J#emS8!Tlt>8&d3XY?4CSrcC#R-m_l*rVb{6;<y6
zi>`J@&i1$<zd+v<j}qU*(;V@%<mZLu#T7?YrdC=$uSIOrlALR*u5s30Tq1eZLuyN|
zPOJ<o^3Qs&jGma_x-={-G0+sOO3MkC>}=l%XU4YY7i1Qi+VhhhsjS1Pg6nQ);;#dA
z_wj<pz}&#JP$-ne>tQDhRLvL+P9SYqfWfQOr_`q<s==%>q{`JUG}UGw%_Zl)%FE0%
zm*!i_Q>(#-2+)N+KB;h-OosafLpu%qt6OS7_PijN5b{o4=(X+9YumG(_I7DqShv~(
zv?rVCE%0<%SQz;Jzm`}HqeluLNV_^XvIVj>@Q~sV&s>#zbq-*Fm+yaeS!P9rwzFfg
z`dJ5#C$|aCRt2j`G|3(tr6zR4vkr1l2RZ;9d4}O*gJciiY>)lU%4YjJotAvA1}5r$
zwMVIat-Cw5_gn2p0PCp{NhPV`s_<|Qtg?_U^^<;d=6O1l$FyqZ;{N@}U0sz>`1B#X
zFhfX>Aq70CA=O+Z`ow`%W+Vq3ZZ56-lV(EGfmRO1%3Klri1G2-00QmFN+B0xE>Cir
zM~s>{9sTYkF&UA5F#J~Gu$BKgEbvuXwjQvmJ>}_BTMu+6*nopqn$4Lea6Y<`2$BxJ
z8>DeAlXT3Sut7{h=V<18lT6$c^jMK<sHiy*AN3$LP%CqFR*TJkt_)y#@%6vfF^;xy
zvzIKH4MWfDCFj0`{vnz$U7GUCb4z9e>H;ALs|DH649oN>@Lv5a!*utlQ+0)ETy5H6
zHweRXtNqX5deZ+TgMXj<VFGp6b@|x#H!0|Aac2HRG>BS*hVNl#Z!YGF_i5LC38s|v
z)R_47F>aA=UL#jem^pXy^kHsP5imJyV)FY&m2u@}!)87pB03;N45M~o^rh}^yKs5g
zPUV|i5?IHROtz)2x+PmoFFZ~D%q(SEvargxvjl{x=&EmD77MOtd=Y&C#!Apcv~uLF
z_dql;;IvRPZ)oWT-u4H(W!nySh>1lycg|pTBv<Tg;K>ozoRN`j6pJ37CQl1)s4nI0
zYr4!|xL`0|5bqlA<b799-a7MuC{B<OU`(sMQToj-Ehgk`@`POa(E6COz0B^6@Chyw
z$$My|)HM5B+NhG2vI|HPg~SF}ZsS!&F(El2ymW?Ixd~)5V1(X)285*0QIT}mPC$6o
zbjcmM@+5UXMj*ZYMl<16f5N9@o6C|~+bm+RWi;DR=*R3D=_vJ=O!S2Gj><Y8u26D#
z3)wTBR0_2TJ4=0e2(JW3h6J0$lk}rDy0VzAhri_k>20%Xx3Q{ENz!h>jvHmnD+2B~
zXXU?T%$>3wu9>uiCT}uQh&de}5b16-I(<wBL~TveHs4IE0nT&nWo|A=HAXz79~@54
zcO>O(TVwPlvv`gkVGxt}FNm<Rw4e*#nfF=BOWF6f+<CY4ZKvWfWIUYUMC@|l9$6h2
zGMRm|%YmVj(P>**E|7|mW}kx1xyubs3w(V2d|HFg?GXQ1chGgFHWi3EW*nVqRJqJ5
zD%m39^{db`{wLewKjROdC_PXYT)v=D{Gf5-apSLO!Hop6C=>ZhC!(U8Md`gF0Q2Mn
zz0F2`l?0ZK0Qz29D4&)P?mJbWGg)Gg?lAj{8}jz@2roudYR49})POgYPcF!B_P#yw
zu6I){fX-`ktVg;%$G3>`)A~;vY8t+)Yx!kQXl3Z(hHH&qHZ(L`PTliGedBj^d+IMY
zd|TfhotsfuMs8^m?u}U9`N-L>iKC@-N2+ZU*hqG$Tqh3m8NzFNo>C}ii;NP-liQ4M
z{EFRK9zO7Ky)8Bez)?osj5Yz@i}hf(SZ|aBklwhdnya|ew;wbhAf$x=Y)+eDTT?wR
z3~Mbzhc=v^C|d=6lBIWO3E82thIMV_!c&S9AU*)Lzl`D(Wkonws7#6m_#iQ#iA*Uo
zDYK%p@)=VI8)N%`>&A4T_cZV+DH&`xft>uMjk8NOF@~g+{47=z*V9Fj4nzfS#JKeN
z$IxpKmQwl5Bt|o!r(WSqU;CU3C=9I;G<FIXMO9HrbyY-Z0IG|;J0nA})Cb!opLR~u
zS5dAAiHQzP5s|i^;!CzXB|0~hM}mF|BDu-MR98PQz~3KPh3>4R+999_y!qWFRu!ZC
zaJl?`ilGYs2)X=z;M*i)-sfP=Ga4aMi+?gB9)475SOazi2pA*kot`G6LvSvsMpgF@
z`pMK@17!+5gF%HK17wrr^8_g*&Jj7})B-Z&5*Xy-@q(Pl<gP0#WAj4<uqXCYghs^#
zh%P&xZwiTy2@qU-2(Rp}UPA<1m|I{f;L8i+A}wNRUWuugZ#I+%Z`UHPonpL_I6D+8
zA?=Y6%DeAq*e7DMO0loLVRvakd`yl|q{M}?Q`FC6yVK8Al41L}oq=Inf<m%#BZT})
zCLyOVp^S&!l~I&I&^|jMGdx4os1!XE(dmqLW<-94d?-dyTT$FnQJNH2AjAYPrnrc#
zFg_wKF)l7AB|lX*+cJuRRHi<;BqjhZzipf*PXAJDVq9c$4DT6J+9-bFTU)oUVbc-6
zH6JOFTHz9%8CQrqqEPfRTV%czvp>_l{Vv3ich~ILC?=;RCu;|@0jA=(QoIOAm|vJ>
z$rTHNn5c-*q!78zihi4S)EyAzy?yrA)$b9=SO<BtD$8t0$rj^$8Pr|TGb1t4n8=63
zMF)w~acvuv@>W$u_fOBf>|Ap(-!O~YSJ%)ECeI!{dzKX>=?lcD0LHA>!_KDB<9!GS
z58t`7IJ`>ChhjjkS%wcO6a@h|0DfblqLNXe1Vtacn=kGHNuA5#8Y=X-H*wwf#;0N5
zzJ}*_#UkRapaS}adF)(ecc#CI$jO`fWLXR;S#rIfS2;8mRhA3tGkpi)>z~)S&+{5%
zcp`Go%ManVJ}-Y)8Sc78yo&PsC=~UyHx6*Lj7x|17v4ZT#0D^S4pjisWdwpsB?GCt
zAJtU(QN_cHhgj1CjGo<#1{Gw$(z^e84McK$y7%_Pa=NiwQcQj`($dp=4FWzZ-6(YD
zmEWFpqYCQ)aN3;hetzCwUXp&iavXE?ATY@X4!%F*tG;PZE|USDHC*0Lww05dQtRM)
z^1*@2mblww#3jvF|8^l)tZBH4ClyW6je%uCS@6#6jeI!uD`xlCnoAI$h%}Yu`Hf9l
zXZEklNcobYDX4gp5Hh%w-Ct3HcG7O5i?emv0&aECTKDaOrk|t2Z~IpLDqi047P<Qe
z`=n#eFtLG7=E&X4^sbVa|Kb*`T|alVM_Id%uzxS3>B}m16jnzzB8x&_UtU&QkeC;3
z786X-CVz|Sql)0FL)udZ_nmKRiSe%!wz)C5S^CoO2y+PU8xj#5mK(b#O8m;NB4CA<
zG>+z?b_68(@<XTHcyRyb*AMEd5~J$GY06r^z+7+sqctlR&O5Z`N_}N+O%1j>+kIjC
zt9x{1{T@0`WV&<#_S10>RkkW+*RR%8Zph@xL*zD7KV<TE4<CLf|4kkuBBXBy=gER*
z{SQWCr&3&Hf1-gulR)MwTMq>ha+iFtl)f^9D3?*?X!6Q3CE4sSnm93W)M){^%gW{5
zXRjad_+X`<*Xmdi%(jZhv>(D#t?zMPExs^QaF$f;%*Bglh|aW^a>n^Z9fGq`Vmr=X
zfcHUaAXRN1=bBHiJ-zPq$ET0LlD+!OsUOFZVF_oJ5fxP-U}P)VN?p#lo!<TV(zAWj
zuFm>~yjOAR@}bg8mm<p!UpaD_e0X`qr9<SUfn|HXSaNOd<+97`uQZi~TyY~a>FZbL
zUVa1750{CqvhuS<@QuyC{8@F#=jJO*KR^7`^|WU8EYWM_FXgE1A6z?89Ha_Hs<%~g
zbnGcI;4~UReNQ`;st+A-6jIAyPGvNT1V=^B0p;HtxIdpV5THTW{b&v>$O<%33jZ*D
zprBEt^hA@QnE1u_Y(+_2fJpXda(=;xv!2W%A>K2E;*(p-vWjGXkv77exwCuUg<IHb
z+TwzDw|kf5HV5V6hTtE<q1#cjXN_bOw)L5XM2G}nr_m3_lMk5wGzVGxb=LuYzZ_-+
zR?)~P?4V#ktDw_YeF2<zY&CHBj>MDwoqB@E>v!VGP|qt$=_K9FeZHm~JY$MJE^<D)
z8Tql;Q=ynNX39?t&8Jn*w_qoXBDa73b~G-8d<68OeScxUBCmvjQjNCD_Q|*8q<Z<_
zr^wLLbm&p?mhzwTIE(3c6(-xx%v4(%9`0=^+j%;*iVX|&NZi5OYJOmIQ;o4gJmyOO
zVq<oA8+`a+R<p5B5416gG1No(@p(L>xI$QUUCf}%>t00UeQ)wF_SlkBU{8qtPlnn9
zsUhWJ1#wr_wI-n<t{`71HCf2oU!e$6Y8GQjp;wfYwq#cG|7<6-gV^HA22&jmm_T>o
zq?dIv+p+kQe;(wIW{Ngm`3-^E#CvQ7Uf}-yT}Gp%cARBT7nL5DXf=Ca_<{S3RmIlS
zCWn=Y71*UxbnkKr!sY3yP`M}+CCz&>ckv{htwbT%FW<j*0*ZqdX{+6sb~4Y_TdA3?
zz`rF5x`5qwj#&b}bpKD7Wvu^4%-k{hmId9tnL_cpB9JyIH8b=``?}(;GTV?HC&U_<
zp|;(J5hjJLC^uv+LmBp;0z(fm>*x--H0Tz8#L$<zCbKiofAr4_`bme_Wk7uNC0ENz
z0jwldm*t%Dtx)`lEBQL^0<PqN!uWOK`pc)3tqD~g`9ecpQA2~4Hb@@GXZ~2ABaIBL
zy7b^n<+aGoON=7Qc=6<%RJJ8nZp{}o>h4!!aeZEKL!(xzu{}XVwvqYg=^1ebL~K>W
zTWOnS4d&+4sw*sJC$DqFflht*ytbk=qgWuXoTU!zs*O7ljL(rN-!9Pxhb2b{wC@tq
zmp#{BaS7pwh$h1Wjei?9oubU@Bif3R47lIbXJIv5wc$n1n@iy{OhV4rmyp-lrd`=}
zr6QeVU5eu_W+_V+GefBbrX$1!4rfQvZOjh#V|~-1-!4XeZV=CZpd7Vn?K|W4uKP*6
z-u=#L*_!Tm&JCd_6nEK0FF#X@e`V#kgneXaA$b{wbbHC2yw&LqGzumJnn-JuRW0?>
z)duf6x@Xr>0r2o)2#7i0p1w^8V-u2+6A(JkugS=qXv@1Gl1FqH64wRqIwB`_?yQIJ
z{g{sSWb}sEcs<1G$Qd07?#2<LdJY?x3>JWNOL~^*>%Tt2gMV-J@o)aPe)qxdmc(t9
zA~~m)hNp8WX{o6Q$1>aOm_%q?B=FPNgv6}uysN+E7K#bw?~!1WHajajTe!~VSQ6qg
z#CAIT33-Rf%FNEp=D%jMvl0?Ssn1cl8Y(6sH8C-spTuhBp(42u;6z0<DKDy$VKJgA
z0qY~Sc2`BzES77t2eqjXP#btehH?vRBfHNfmY>hYCuV1h#`Me5I3~-OWy<2e!qF1r
z;nGx5o;zjPmbIP_WnnMrzDCVProAQWxLI^ohD!PJs6vXli%_{S4}Lp@dfdaM*OEWJ
zB+*An?k+O?Jg8wHLfi<`Oi$1O*=tTbc4ptRzRG<Yy5BuMFvV}DpjoP*fy%_Zf|NoC
zIp<g8i3Qc!t%tPIf;R3-YFHD1LSf$Xl10)Jyi&iTN-M*+Z1WQWyxpRg^K%!JmwAdM
zgkb{qeHyx(Z!FF&D-X;6xKx}}zpCw)_F&QOrW&ETVSoN{{@RI<m}=Qv!4z#@2kowa
zsJQTus_6CzL>k=oIqo?@i)Up!H;t}hx8+CF7nGaQEdo_5lfwfOw(zSwa?1S09aWKg
z&T5J8hsxr=51C7FZd^G-`FnEUnlqOk3vUna;TInWY2x#AI7qzSQ06RS_U5-#?B^{O
zLn`Q!MddDpFk;tm+jgboP13p1A#*pm3F|hx#%|?<12VG%MLI%Bhx;>DCnYWzab(SF
zncZ!>OAhddcZGY_iVg0CA5GEPJjq|2o2Q2x#>@6@o^9>zt*!X;bQ3|bY31~WZH5Ga
z8rckQOHfg?3MEAslqJ^lM-Jqc?GlRyGX7f^M=s=NFE81(Rn(NLHtr3+^u3n6b@O*(
zfAMJ0#%7^uW6@$4#3Eb8Er{x(mT$?*;ELeBR?D~F5?4?uvkq1lPV+@qW7iCDZyCXM
z&XWGTW*5TCC0Ag5U)HH?ja`3n57b1d>x>3XFE`<yz985bt#`7Gr~hU&2eZ|TW><cm
z5nx@}h$$aq7GT|=zl37Fr7yzXiGBCcZg*DGaU5Br9zONveG7tT1kG_vc0%0L%L{JG
zzoO>0twr+XekJc81T@E@1t6w30`CezYOESE;Fuu!J)6s+O7x}Sju0ET4qV(z^mSEN
zDocj};`%@Je^L9p&Ws=Tys~m#9kbQXtLX$z#XYdw!PFM7>q{oV6{0zz`ChVsOk=Xn
z>beHd_e&t;h7;v`VsV&^RjccCdA)n>#j<T*XW;j0&G$z`7VTZZQ?TnT+PpeMoDGOK
zy*L!n^$U@Gu=?J!4_Mms+UOqzl+wZec<pyNVsaj$?7-;^O(N?gyj9~!KOL^x1gRL_
z4;|jPT)b${^l%DEn>b5+cDz7eVG(~6C(c%WK%M>GN7$@0Or?l61Dq7vXt&6#J3bI*
zD*=tiW$n@v^)G7DLy6eHyw;%rM{K~S3WTkjs5=Op`;(v(1hJldJI4ays}pgkjcVb4
zy#AtG!mBz|a1j`7dJ)b#2#~<xawP|okx(QXOdg<uxAmG6`pym3bdGKUIyW5Ve}@@&
z$S^_ky`Gc-Z#xMrKz*;jO9$fI_0lKwRZemPz1c;Z8!42Vu^AVkLgg%EXJwj=Pzz5n
zCuMIs>Igu0dQ^<+ZSa{5T#1mqe=wv^;IUhS%HGz)%b7_t;Q_6ue!g>4#Z3{prwWXP
znWgXxNS#KL!JLxel$ny0oy1c$n~)F-MI!yO)KKQms*%U&%RH^5J7MU#MkC2<2p`>!
zE2y~f%|$W8E7!L)NafjhH0)x5NoFxxng!_a%jA+AFK-XFYqCuZ@JOXIgR$`IU{iB5
z0*2g|2GAhKHy;sJ?F2aZ)?ai^j|bQu+8#0i0nyvHX{no1HlBkL6aGVnxUnrw`BhaS
zfYuKm4|oD$T(b3FIw#~00yeuZ>0=;na^X(SbiH#YWJnR$&Pp9Xe7GX+;yKRb8EUZz
zpyJi*g0_2#U43mgn8nMz-kYMOQ*p-zlK1XhYdH(HcZ5U|5bJ(JhN`L#mjgxf$Ar({
z5uWvbhGK(asnh21)L#`C7aZl!LvHHt>a8MZ+J?|dMCR-vt3f-kJ5exPr9JE4y7BQ}
z@U6jAZRtTas_p$EfEnQ=R=0|Ls>aVseq~Uo&o<F><4U(-{Lq!{t((LK&!Ezk*ln|q
z&?&91cBHpXSSY!IwH|-}{ku?Rl84vwcx7ori`csFc>ACHgA?SO4lDbQw?E+jJdTyt
zfA$=A^V}!;v{r;3=V3JO+{fL}Nfw6}U%iPF4hd=vn?3EY;kwyeZ5@oQW3LW@;9&oh
zwUS^A)pFJh8R4>xtoQ+MgeX!f?c${UwgZg3`U76AZCV6&T+?+~K(!&4iug-r1H^~t
zvc8eqg3Cn+M7(O-V%q`?a+G}YZMST<<eMaolg5!K8udhHebxG^oQf$AZYiw8Q<O#~
zBFb_C{0I{}KgJ94Gns&Jf?n1R?z2-zFE<=822}|LWp!vlV4*MJ{&Wnk4{7nMRvFpZ
z7guDAg-*^86TB80I#jDS>eKbYMH`QJ@9{KFOM8x*_a<dsh~if_Fd@?M0n!+oKTr38
z!@h*>20e2yEhDGl@)BCf%YTUmV{v&=Rc^J@1oBqU1|N5CPmtfZEF2p077vizC_p1O
zgF1UA8sF6<;5$s2R(~zhgx?<81ah6n#hDC8&l<9lj`@jBIV`%Ae^BgqOO=`(UzgP_
zT{pm)Q9r_|<x8O)aA&;+quP=0lU>ARo<QDQw&XS)$D`4(M*ufEOW?oy0b<|li$hP&
zh!<!N=#z$nfIm$+{{12Thzbt|Vsi=cN)U}ovJs$8bPJn#a=(P0pz%Z{&Tl&T-Yx$6
zXGgv@h)@*&YJBaYV%ocP&i)|KgTKIe^!W4c<BRPH8xO-7QyNwXh}YY*9QEaKMWF?_
zyhUN&h9G{eyXTr@Q>ZaXEL(Ii`gEj<^x8()g|xr+k+lz6zXlQn>SQuU_Y$ah?K$A3
z2C7M`44I&<Xg?i3)d@BS7Wjjg|AjibYl-_H08p_iNZ9-$As99tKnAiGAcQ9Z9OrWT
z_8cpZEqlomj9w8;)$I<%vFv-uESi940lAMBP);Bq!9N9v|EmBoP-nAn|Eo%*QH>$B
z>{hfO5=$Oa!|gvur@5iGW&ju@v1&lX4yn=eB<PMF(ueF95t@?8Y~0?k=p;`*V<FmR
z&!LGP%4mMo@7h$eGH;oR9Co0S*r*5Vf1G#aPvYnZ<~u9iF!Uq;6eghjAKPx8JtvSf
zo#vjNOhBW31LxoXDEm6Hj;7675aGK-pk>lPrZ^@fH<-ul0VMwZ>>bF{+vb8W+WtAI
zKMo6U?Lww?;mk5{I^58&QMc<zFs|(s;?pQ1OuVerQVi_e6KUJ!Vaz*|5PpNuC}cyj
zG<1)7YN2-;afNC(#v%8*0Xp_+fbF2~$JNkSW!KwW+){@@>UB~-ZgaMe$7Wvh^x0u{
zvrpUJZ1EaMOB%9jDjNCD;cR0~kWZF)4a6oiSdw782=)`8fuXVP3@Wd!tthV%;g_u~
z5B3wKfnD3UTS=dUeJc!*Rx@NA90&L4?>zmTHjkj=LdAi$)lArwgpVd^Z4YsKPRXN@
zQ)p4q%rv0Gbs?9?^zVtw_n5X^A}&2}Cexi6Co&x`RJ+xcJM6w^jnK7}UE{uG?b_X2
zj)>N!?2+Aj4uk*S0T`=8^dO})2B70UWD!*go&B(P_mRWyyVr=%yx7Ro@n_C!0oghP
z*OZM!%K|mPnk$88{ZOL&nzg&#kBFUKY@w@p*<!5(dmeWLSp`h?$ZkZM>;?7Q9p1La
z#@JZf>LpoAb1}hml(Vi~BWEQ`Sh^eIlD%{_xywtdB}QVU)#nn=>Q9S^f<sjfi!!;7
z1$ZZs^r=LrJ&wG(nAk~Gq}OD^_RS?M*f+gN&r9T$Jwzo<BFb^3m*z@f=ZDUAN!)>g
z3uM6=zQOG6KacV@#%Gd9U&bK*Lnwr`=vz}-6Ly9M1_t@ZHpJBH>s9n%r#)Ah*HnAr
z99`g^FQ7es#H0uKWdy(+sR|EEjgJ!D{{pz?>c6y8yVAJY_QSQe{-B%Z)d-fL%B6wY
zu<#%_8Tz`+1no~n2mB~{=m7o5ooKoJDHs;1$NF%;n5gBeF7MePgw_OChg7RVLZZWc
z&>{odrXh+iFQ4py^iXQHkY8lT$P+W)szY!X8?Va9t}uSG_2fnEpEvG(eMYD&Z_01Z
zYsqgbtf@&YOD>HrQsJBnV&Y7p{BU|B3IO4>(ma!xlUrqki<}|5eP?_xwr@6!0kU|k
z8+_>s+Do8zgQ)!yidK9JM6g)$@l-LoIi|Hut7#ZVS<uCLfPnd9vh;lch5KE*9(jY8
zMk9XhQ)wU>5dc+$sr!KMVu6Xf{Y0x#yZq+*4I-YXVB1K0x(N@r(Xk*}?#FA!rO+NL
zrwqoKyh?xEPhSzuK>^tT{G`EyCV3aT<?evZ!E@ES2q2OlX?r}uDzaAE2>OqyWGTA8
z6_C{14w_B3v-r`2tYkECeaTuQRdZA0w=bFlGL{g4c9mqz!EdjBzJK-jY!Tl10RW`p
zb@3<_rF4g>@m}5OLjRNQvjeNgLr`UdoUYgNbO39;g0Qw|`tk>pgqV<^`0!}e+7IZV
zu;*{%h0;SGieUx8=BQHDN4KL;#|kYe&nGWmgu;1oMNUb+>d-}Up_u&6li$gq@O7Vx
z#WCgj{BYI92?gjA%eBN6<6mb<0pC1=*I2YRft`SV;S2*YtpCs7OPzt8136NQ5H){V
zE7-OSg*X4?LmlQw)k+MldqenoxM)jw2sA)vH*x$>^)oxnA+a5M1X^vifP+KkjDO}j
z5IQ^XQ)6iAPikQ<t|mKhJckEl^?kDT!4D6}xj#u?G!>$C0oN2-wjHV{?Dmk5?ILBB
z+si_l1hSrODlKagZP8T4MJ6Of39f8pLUy4@!j;__h9f=smu@*5nfPLB2#OiWdWB-E
zD;w3FHbZ&!$l)&q;=mqk4)rP#n@gHY5Awu`y?S`<ERkj?rMvgI*=yF!66i8^y-!gM
z=G60)k%@_sI9yab_~4|s<sz;Mq?o;WM9%ZJlJu2q&=!945ny-E&LVvK%{QsN`0Ol(
z(2w2(`+FzE7VIBABKGJaZ|Z(hcMg$OfKW*~LWkInFi@qq&P^nr*);SsCXHTFlCL{0
zj0D!9ub){M+?qg+i~$PYfsPTLxw3eV9q<_=0s{jICM=UNV47hu6hRs?M(&2G{u}bN
z!P)Mp%!DMHidh8YsVMtkQA4MOsE7RtlnM*m2&=if3r~QR<7z`I{Y?T|)UTOLbA}~H
z+u&dAV-)CS(#fP}fdfO^w6oefEHXYCat#C6{Mbly7%#8FPjJ}9){o8C%Uis6`fpE6
zPe@M^!3p(mCIm9vfvLvSR4rXY?=yZ$A%VVHztX@Oh(m0m5|aw0x`gfxAi`cwf5e8=
zgaqyO8vn+ULUUe@Aic@P<P^n|duptqi-H;7q=(zGh;OQ{X#@plD#W#ylb@LyQ)y+b
zHVa~#fW&Mh5`#0VF_l%;X`lIY?d2@7QQ3&~j7o?@eNXGDjU|7Orwn-$zw{}X%+Fd+
za(KUg0+Kodl1Au)RxtFTQe$<&@M29;dQwIbKz&<?jY&79nM_(!8W`6F>oaRL2iB29
zFi+%X<>ZK@nYA595Z_X=mg&6VOlNV^+2Wg*=BB2A{4?39zk_Wv`@to06wJ&fgdNkK
zHXkm@kerGDmb>JhqcojeKtE-kO>*NBvl24nGLo|#$&b>@vefod#v9`wvQvpxXEM1+
zzgjq-vHj{`$V|lt4b*H$x<m<9fGZrCc%GpZN(2$jW=!UcoZN1woo0&y%CsB_xdoLS
zJv~N0qa#7flqpe8vvF6Z%no5B%jh~sx^V_Wij|$3azHC>%jq@}WbFYjlI<-U0$Dx<
zFYi%$fnEY(lY0gSiYN%w?@~(PHgFocG2>aOx8%%8J*C$ec+As;j3nyVWyd_RikwYh
z>rFpJ#K3%Mvs`PF!HIa=0BQ!1KnoEnQ#{~AuA~p><rX8DrWKezUpv~Sgz|hF;sNhC
z+yc=SG)Kuaa*Rt##V2LjEyxCf5_md23fw_zQld7=m~2c!Y={W-_ZMW=OV;~#U5!cv
zDGPKcnI%}uSqvQoSO#Z`&dhNopy!=TS2zn*Z(#c<Tw8WubR}_Jx$H-)PkbUudgUia
zkAH%IRrZskD?bu#?<srd2ICE$?96y^d9F*dm-4nLxI6c3Qx<10&R-%zHef0|ZNErU
z$h&Bn=_{NqhrR`z=ukS$mV4mClgrPqBSWPkX_zzuLc}B1UT{6};Q>|GPUp@~xr;k5
zhkq7_a0Q-x3TAUH85j3i*cHEvHXl0Lrn0H&+csZS=kX=ncJjJA>9d}^dg5;DgMx>k
z(Hla8Fyk0ZYyK|$bJvfjNw4+fH6+>IZQrsd6C#PO(;b>ea=5a_&spj2Y!}LXhgr_d
zLv#`d#Hi@|9{AY40f0=bqdX5uo0;n-(>F!PHH~tH`Pan$bgR7WJ5l3z7E^SG79z+b
zJ#VZX{FnIGUj)ot19)6lhiyyA>&WB&{kNgN@fyD_f$Zim9)8txCRK?Y=zd;pr8*w$
z=ngAqQ5U2neLAz4<4{R=swJ=Sn4rDkHvDh#{@>({cG8bWyXE8u$#0Cgo@FstsS9;D
z4niZ1-`*B(vynPxpvR`nY^N_#Z?1_t@`!hK+VUYCArcnwtpkrpuS#OaqqllxO~1$D
zUw;$!C>fX`UzK;rCTF|fLVA#$ux70L<;DNy#Ef3(J2Hv$3k>uV-e&y*D{DpTPGwzX
zWv%cVTU!|jS<78rJIMl_R7XBi(}T7;d3nb3<r!E8;P)fw5vNdZ4pB`SOm*kA3psl;
z_wCb?(+J8m(9_fextbX?Wsz`T)xxUzJVHWW!)HW5hJSW|Nc+uy2MkFNY(fw?;&yie
zYyBOIiq1!<r9X%qg26AXoI-|r66MZc!O$A?-A<z1Mx5th^kLU_>>*LN9e&t1?P2>a
z55gWM${NJ+Yl!kNVJDDv7-0b?g&{lE<xL*D+8=5fPYheRSZ(LrX;NB^^cQO}`31tm
ze##-vonLZY6X@ZtVdOB=ImVfpsC<ZIpOAG}1PO|h4Z2kS)_K{1Z+eiTd+EQvG+)h7
zC~ADU$Lk842OP%8Yoxr`GT;zHdi~Ght8a6U))uzBiLF!DafRC+AC7Eh8Vcm4Ly;{^
z<A0VK^0`8<?rqP21CAw<j*M@^G-N#aMhAb}O>hlk)tSzrXSr|Mz_Fv;#R5^Ul#{e^
zlw~!`H?IByR|QB>OkQ;4^{L!05~}m~hNU57w+>|Y|Bo-*uTwY#X96UOZx_t^`{UMu
zWCI@;=)3jD78f{|q}RD0{;K%m-2RZ@6N1kYCWUPY`XF~J?>#GVy*LAas~&Wc7A*52
z^FCai)3j1({FKRHH<n+B+s`-L$~-9k1Qggy<gM<(XMbl_i}BHQXC{(df64ktGID61
zV3on>3cnaq4#PA3pI>>qV10x{!@Cm=lYg;$IFkM67kh@m5Mn*XonLcgkzjkDUA%hD
zVv)Yvl|<fEo?m@rvAk{38f<g!JgQuLWX%OQ_=mC=jvP5Jk1F<pvaJ_+TUtgGKjYPZ
z=Me@MF3ya@V{(Q}*2Fk7xt$*(#94+s0T!K4H*oG-l49M(j0z+0xuCgPhHf<*L&Lsn
zMokuCqN5|jv>`<iWkTIujNGU3#Dh$Lb8?%wIeg1jtzT7Ot+4ydE<~>MeJ}#%Bi&%I
zG>SGr7_4=+pLxv*S_6OLdRj;8U?y4u>n#jFw=k}GLo6xU-&U<HjVKBY_1F>}CQPM0
z>8PdDnWvlSIGE_YL`@7#MMJQ-UXV&3bnTUZ9NmImbQCJF8esiFbOlb?5wv9|VduK3
z1KS+n$5IcqvQn*C`753rKmrqWQ0^f^bWj_yb!^Zfd8!Vn!xJK6VjzAAhEXt7k$Ro<
zx{is-ODHPVy6B3F5@PZM%}Q7-K}c~(DVK3biK+~i`s%Wac`{E9dqZIjm|p93GPwlt
zL>L3P!IG0*BN?)!A2cbg`Hb}=w(Eu*JoP6__F>9T3R!8pGX+)aNh^}wz^fS}n?g3o
z`)XOT0X6_K$bojR7b1^r6Og%(i(^79A+Sm6*^tn<@EDoS&Jr4s?pYq_)ai;5Xmnn2
zLWvykm!Btgx^`O1E7My;tDNLvrUj354>H6ZC)0!AamD}cC1|$5R3ZCO@be9#^6WK+
zvzqL)&H!U`ngM4gPMmlfqKN-LevnB{HF`8IeYO8ygljt;2A|J@v$w%qD5$af_U+pf
zfBxA=hw?OOvz)CrcXNkz&-ebXT@xowyoD5@Ve&Ocd;eKwYs8VwplX>7puq{HCT$+>
zu*PtZ*rx!+{2Vu)HW2Jwn#5UHJHgV~OEyPEtf};L0*K`^2KQ{?!tNq*W^&=(HDpkO
z=e1NxL!e^EY0?JbInfyE;Ti@KT|NrFXW?X6n0sL}g7FAKnLS9y1L^ATFG(E^c%Y`K
z7v95mG7cuH5t8dY`B}TfG)XLH0C5>)J>!!yl4De}cE-4lrd%6&Wg{QMZft`YiQ`Ad
zoW8nKgd}fDqB#{hF$POFO>8<y<F6SD`Lm#{IU{0PpOy`AkL+FpbI+VIpXCd$84@g_
zOzLG!RY~KXfs|#AHwG_re-mzzAclIeB`2~^C7n|3F_TeEXSC<(w5H8wA^7?#!md28
zstoZj@Lsg$!$phMTwKI^`$q+ah$|Pb0?OD$wK<+n+rC)4jEvg8CtffhSW>TbGjAx^
zB%suvsUJf>8oeDf74u1??z!Pl=3Kj{-h)>T&YS1PzdF5UyWUyVC8cmdm?sQFOvJL*
zA*CZDCT{^fjEf_{#b?xm+3@g$m>5hL!RV%`)6ahVkEJe)_4Wz!P7*gKG<xm<u}Zhi
zjw)H3h1KlUx2*#QJPibmCk%L(Skm{eO>@2$1J*OeYgXp0;Q!lv_XR9*Y+GGJ8=3Vj
z2I74mi&y(G8V~)TQH!Xqh`yylMJqrPHwU9{uP7C&L7Kuq9I4+<T2#)`8JmjxANyrf
zLsERbh@o49KExQ18|oCAR~}O#TQOng4AeQiNZD<e6k(WzRT3skv`eGq2uk~xkOa05
zw@Y+dz2KSU6`1Im=vnF2nn*TzoLiO=tMZ7Yu5a7aJO+-gzqQ1Q8F}Z<kWFo^S(VL+
zt%<E(m7a+zI&BAaTS%R?6i?+8_)vb8dcYeh*z93}BJJ=>u%0@!38Qo}C-r$u^)Df^
zYJ}ASLh5qpBPkWK;;)4Z2r4MoL+Q(o4z`6ce)0aHzC7_%@9;0Jg(q;Sb<}Ly!uTfa
z3;{ZbVRK{53F!u_o$XJ@n7pFIBEG07D=$y9z9ijGPd8`h<vW4D$c1ZFQ{}M%C#Q(g
z6c#qMElgc@by+>%P#x-L7RkykaEnSavui4fYcrgx(`%w~1L0lW=_oPm$#0K6CQ2<#
zcDPV@i0ozV<`7Wtb-HroH#iom=wDj|TIqu>Bp`@Z`$HZu5>!HGyi@>51^Pms6)LR|
zsS6~5%2_%ZNb=bZ-7|~BZ1oy7L<WW4XLK@Q26J;5ef=<cmaAaNU5mlQ0};F#8ip3m
zQcL4P)z9n^1u+WB(LS=-1Zudu)X-PH>TGwGd;H0*d;5q=Rc?-`2;x6tgZ1$-m^X_{
zsBSn#4E$KCyHCU=VqTKo9L>*RgCc^0&Eh_)x;5hQM=H8>B*;@%{vW#D10ag4Z5sw<
zcGpcF+p-3B*%?jj-H2Ud?_IHCK|rNT?;REvmbS3;4uT4(s9?i_(ZqsX)WpQZ5>2AU
z_!#4v<qSOEHJIdi-~ao5S9W&J%$(`>Ip@Bw`?_eLip-I3kt1B+3NJIXV%O7Ezp^y5
zWBn*ZYq3v3jx#qvJ_|_~kDh3#<T)LBnvM^)rWGFI$p?xje-ojfa`L5{Y`vzeb1TrF
z!|LGAh#YQg#=xQ0t4VA@ZD=q1X+yYG=bydK%}Xwe%(1oypdA$ck=Elz^uw6i+Eqgv
z#>r{J963=*aYHOVrP8R#l)$`b>!z)F(WNQ4y>Cd@vul}YL+oiUJbO3=>=<{-#^Peo
zH)uI<$lElEw>FZFwm7`<d#Dex-Kwi--+cPXj(&6c-KL+^)4mb3+6Ph5fB?GZ|Ns8+
zM(U3v`5*U@oUa3SQ@Jm>CF|&oyx{Q~#S7YfBkeMEGD};5^-#RU9p)6TNVWWK;LfY$
zt>!DLdD)-cxoBqKR5gNgV(Jneh+ngx?7w&V-i9ZxzsAT~FmRnZv+N*HTyI~#{fabe
zuHGfcpBO^3h(f&gI6d*xI|V7}mbfDyX3;eM*t|mC_U?&h^c~8apgj%N0hc{4IGsip
zKg){rlD`I6;cPRNcHXyf!L-T)*t_5mS{+EgMZ(W+ax?4+O(h0coWn<mZa-pQs~bT;
z24=_~o4=O}M!{AoR^X2z-BRifGKi9-l2V8TBb2w4xYx0%!KuMPDy-aL*(XDT_yZWW
z#vrL~%q^CdZ$uP6iXKn}r39r0v(#%J2sW0JKvkO^GP39*ItIzFW9D+C{1kkcQRINC
zG`TdXge6{{$aGnb$I~9+46+Y#c_pYck&@qL3ECJC*lX5`{Q^XJo_Age#Sf2;{C^)c
zIqkA@*(ezF`}DJVI>Mi(YzGDNCRdue3FKaJw1HfAk!_Jn6lWe0D=F?q-M!N?R751x
z$!9yr@Cu?mh<G5bM*Kc9dn1`J1jEU{uBzhnqjqD*Z@Bq?-}-hVf$yYRelKt*5>z!`
zQ_Tz9^2IZ7%R3*3A0D-dL8GZN$__5(UcCJpcev#q?(lgHh#*}>f~wEt7#+-*Htqjm
z6ux}`&~`tvPm`OgFOABx#*m>e!nkh#x1rF%Nd0ZDOqOjum2ltLiYCaGOcJ$9{#(Ts
zvKd_(^nf>$Jk8HPGq}IDFkH5xlKOc!C{C5{rnk!RfZ#1B6`nHk#u-fOmE;!{IYs>;
z=GIWlF7C(xn}Qf`!!!9<ZX@*s8!XJ@$q!l7)?2n96I$dpTFRi*U)1pQr&dxoQ2Ca_
zVBYejy8{3v@bIJ+GFViY)sy5GH5^<ztlUt`AqDy`GkQ{rr*ElP+wm>Ak!5<(#$!LC
zTDDEw9U(?ElF-`z%SL*OmYV1h=aUOOOersI)qo+?PFzb*E<pFy$hRu(<+L+ANAz<=
z?$kb{Q&^qez76|ahL34Ev~E2~xVa6}i^O4EUrUC<hg~Dtgt!j|IW<zmjZU&Azw>fl
zEjcL$d5|kAMbK%JsHh7+&Lq=+IwRjpO@EN^u5HsT=qG0}j`_?1tR<OA8S1){pR2f<
zsn>`SK6tzVt3ccmM5co6Fow>ZLm$!5iE}PKW=Zd-zy<YDJ=oGRflB65%Ymyim+oHA
zZl)VY&?f4jT4G#kSi%}(@-r|93Dq9IPtI9SYxr{;xC!0^;r1IsYCqD$xRcl6Y<f<E
z1%~TBg7l6CQ<seN?!AZfhA)HkRs^?s@?R@`HVpLy+ihBUJhyt!#=V=5Z9ll}T);`0
z4*t@Nikn9dsj}A-oA@HODkdSzJ2EOQN*x#$7ZJ|cZ}Hodv``i&O`f-Z-l5fxsp2OL
zNk3a83p)CGTa)_2F9*+8aK?(PJ-b!udP7nMn;TCjJPK7Sj?=9IR3*C8f7M?fz|n*+
z9zc{~+WT#I)2&qGHR8wz@Qo=wKwsn2Ifa1Z4hz8+=kpxjntH0fO}lZ_Mi{~<g86Yo
z1*q0ic!qkr6NMV_w&!rG0j5AP6>K3&sed`_ZzFmT5Q)Ao6;XJ8@QIao7}12p%J~Mo
zu|?qIe1xazpIP2$Q6zr}`-L=7^lt$43DbzlshzX``=>a{0SU=VVto11+#jebXjmYM
zUM}CJ!C;7@i}a3Y(Y=z)({S)5zLQS)Aa8pZ&!e612aQ{@NZ!#({gnh@tPTzFleDaw
zQ9E88799_2<QYSTZ=$``wD<6n_lA%env0k751!&kEK(^u(=TxVVlRvQ&;4GetxDv4
zrZNUYT9#3jrOVP9Sb(c+7(gh~L}qK9772{0;zwKyg|T36=q$9MHjGxQLmFyqTAV1-
z+_@G_?JSIiE=*@(=UN7GSz`ou0>V?MMqCj*nOQoKbfL4bbB8#BEEQl-ID+;lzzW5j
zcgC+WvTnbssjRB5mQ4>v^YYipP9HX8Gwr3Oy@s5)KMW^ZP>_<E&rSTHbAvk7{=B-%
zO0l&l3na!vpdn~MV`1zH%2K1!WLFNa&J45{M$o19((rb{piYe@tzja~2Q?}&!&^#z
z1{Mwp#TueRKUsty0sZuo92Bn5ECp=ge!Gzox?^fGGMFcJg2)OBr*pOBOANW_LjYk$
zNr<Vvm6%Me3=c>NeJJ@-gg{k`C>e>+iu71e_ZvYbDd}Dw$lt*(9*W&@JD6>|t_2#}
zD$2(68~6Cnml^<sL=aTxu^AKOlI|(+y>AJGj;cR4g8RglZ-C`(MJFJ#K-1n})As11
z29J1yQfS~YI61>NNce`12C&n27Pj(6z7;Z;6yC*GIt~A8+waO05b~z5LKY4wGa@1@
zOzj=z?~4qL6sc$V&OH$<znw-f3E4TiT=o8fy)|4*+XbcYO3K$D{=olg`bjC&cbM}_
zF%pZ*FHAs=SxH45r?auhQKltfM92z<NClG~7n>TZ4us4-2vNQfDtT3Vcjib7pKtmu
zT?IBR{$I$%7vqU5aFP&kP1}9?%=*jz#BEb^%^61oI|m(gKIYb#e&q1En@4uuBlbsr
zJWrN<|HG5sPn+*I+=qAaUv;rHX<r_!CYpNkSpx|=Nj#g#!?QVO)Az;h|M8;Zq4J~t
zPZhi8zil6kTtI-Yd0!+!<y3_?xoh3DU#w2`03Wnip6Ykh|3L2U?7e%l%Vdf!)@EJ$
z+A!1lL{}9w)oAOq->%kqB>Qdkcg^+5_Szd;CTk+*%D|%szx^^^_LY|O8oN;Cu+nQ;
z5xXUKPIJgXnN8caKIKPuerp#mTdAd;i@)-^RKy<7z13WNP-gOi+SZ?srwkrEZc4v?
z<G*`dkeZj4&-oVa3)!ze(|`s=VWu{kMc4b(y5z9g6;&D4YPie1lo6zq(mf*)QkwLP
zOmjy&IY4HLwE=5>f+0#Dkq})RUKC!KQIuSONRS~sDJ(8DH!wFaTUM;ikIP`A4FQQE
zA%SUu`e1MuM8!wN%2F!zmAh3LnJFn5+|``hCyMT6>`tkQ-xqy)+g_(aUAb?Kx53*G
z?57QqB_P929h&5o5D^B1xGq^2l!~fSvoo^|Iq9YQ_h*5C5HiMTDgf<~JaH%WN$HW}
zC(mR)iMtlt;(gEVut)jE;Kc1oA-Yvzv9e?_b!fDi*{<+)poZN3bnQ0_F3=p}L;n*%
z4=$HM6s513S!?Kn@S9#kV~4oeZe8uQZ2RV|n>Jg0nRPbj%Y>al?!KO2c5KG&lX)e3
zrH2^9jJmIqiV_cREcOVrbM~GQw+JNO;^NqaS+*zE%RW2;N47i*ZcUOQ*#;RG$%)X|
zRUJvHjVp1>NzB$7<Aag{bwNqVso<<m#Y!^(*pDni?cz*dq)>q8J5jAI3#r@{?;G#!
zsSDU1=HL|taY6H*$R^Qx>AelUg)?q%xf%tGSccx9_SO6OsiKULnUQJ18G-shT}W|Y
zdX!ccmyi$<qWW+c0Wm>Qp-}EKn`1W7EG#Q5HD0UL>ci7R!^0xNqJkqbBK3*dgm^<p
zc4%T`Qe<*O68Ju+(2w6IVw?VER%R_pEp;{L`3WKX#58_l!M@ckt}SWAEFJKnk9DNm
zUp43J@)D77VQvxaVwPQGC{BQ|*`Br~%JSV=)!uA_Lw?^x=kU{R7Z&f9rRN|Hs+u-P
z35xyVv~rBI@A&VZnm#o#CLWakfdM<ioj`<+Gj=d5d=UQ9{wr|$Xg<`uBT*?{Hw&{f
zTPp?zjFBaUhbJQ`67N|Tv-s~r9`3p?OU^IU=c{c@KTT359?pB;cvMzZT@@Fg^3MQK
zJiFM}ZB_UN*}(xyF~i5gEIvz{osgaJpzgt)3Yo$v|6IEuH>zA)4ApBHI0o=#zcPGS
z;Z&!ro%w+kGBS6KGCVvbHIxgznSHPNtSni2yrej@II|?(+Ig1ml-NnKwsp?RQ^}|F
zO}gZTzErxxGax!XBe5dpTEex+YhsT70Ytaq)>Q!VItrMO57SX_GJ&RFEXQ;dM}pfG
z%CwLi`bm)1A@Wn5V`+F!62yc`u*X{|xAnJ@ft#TAO8dxuN%m!a+1X@J=KkBMxAk|B
z4J=Lf$f9FIV`YFDu2ddRJCS-E*~8M<RY{-4yC?ca>4S`u4+j2P+A0(Gu7q4udQ#fn
z^u1|&(+vJuc&TN$IOfr2^-D<adFg*v*b&R@vl(Ay?9=Bood~;;aw@$s?LcyVO?q&e
zUv}`3slVMlK)TCnb#;k#I@yO*Z1Kt^i>&yG<h?v8JU^;99udu1h=L5GX>(}gH)xhW
z1L^au(#*n~q+;2Gc9}9_;exFT(~!+7W-QG~8+dWkofw3VW)O=Xe8sm7IW}L0H4P~n
zhbobRk`&9Pk?G3V@~Ena-FRLs@H!=()}Kx}4Jab)24o^C4V8IW1(^j=xuMx9kf2UU
z!=~BkIq6v$I7M?iv$9Uv8}otWv+2}k8?{<ad(PH1MjeZ)10m96r5FfiQ>3C82S@sR
zM>JQ-kfTR~8^ex8Wa;$!thDBWvn6LL$Vdmm&LlQdg<g?D?<Apjfy~CD?1Yk9-=UgI
zwEt1k?=I=}1{i4btOR3Xj!p)q`;;U$G$txCGdwGzGNLlU7?T~Fqm`{sUZ1oc>I4yf
z(Y|p3)=_SeTXfrGyp6wd)9iuE=jayd795MXCW9vxY;I+bPyKeT@W<U4<RKqVDucVS
zZ4ns{`aw}7oO$P~d_L>$=+QH0jvjq?*7N7Bt<Tx^m_E;EqHGq*T2XdaEGx8O?m^Cm
zF1tbBf`6^Z#-hHs-J5<-UBSM<zcShKz9gZeRgF&Lz7wQ{Hg)RLx3mBQXj#kq!x=29
z`eGJ;=sNIr;xDl0K(7X1b-tU>P1uUhKU2ONN>MIOxt0$MRYHGsf88a>kP!SoAn<FS
z%XxpPUe5PltaQ<As&YIOfRQ&mClcwQ@~VcDDmVj8#t+IBuK)~~3e}2NP^}=Z_^HFh
z&aZ$TZi$8+c1DiGlul`#zvPBdVtUtZDJHabSUwZoQ4OG%F8CYg2_+oB)X{72i+(Qp
z?-+|J+VHCleL7P#M&)H1bmEj`mE4AJ9<EUcZOC@8k<M5pSG2(eU@2H4lqW(Xj$!O8
ziV^b7kS9bUgfRBb?5Bue&De+qctg-5OhykLI)ez)7y-hTC<N?h@lefQ#ch@*V+Y0q
z|GN~DghtU*{7)%<$)elrhJrv8Fav!8;Pn=se2lWg2;5FyRG1-D9T%IVi|71e!u)+y
zHf?>0w;bdwSIKH&eZG5rSRI(%=iaN$FRYKKv!<JQZ-(zJ5xEe%w@2x4k%4zLUkjzb
zR*Y6#h~;7lM8&MujhM~-I-6RZr3=*10*0g7g_zBtLpZ^f{3;h3q=*Y*-i7_JZ~?J8
z`|BNU#2sR_jx11rsK$kw-6KP|&Q7N}{FC4WASiJW``kJ)R`cOMv3w!=W;*}({pT0D
z;<!m7DpzqJw@hI^V+Dd!fUNW49YCt=3_#7PnN(r!VkX`cv9KS=6)Zb&?aBt55kaGv
zA)6t3W2K5RvlSRtfgT8)zW`LXVHGSptO1HjqUb9#6T>9f7%q7{0*GQM%&{vh!d@VV
zfPI*uB6wDn;`W|UNT_mMf#q<B;}8&CX%i0>d-8<K7L|~44fGq@MVGdM#WRMx+-~G8
zsZqS+Qj8qn(G!&?1tUcKFqUY?#yC2-`tgqcePIrxHi%*4&-lNtjCfi8x^A7n#5F7x
znN_QBi5Qp$lTrECC5pC$Fok%nX7m(kjLcRH79U)31Zwsvu0n@cwh`y~;o^0fgP$T+
zS1#|oc>TLXi>r&5rp$as=jAj*)>4}|Z^ry}IR|v<(n+<1OR4D61r<mXsHgLqnawh5
zx5P+F+?g1F!eL;iSU#gCE}9rB6lcWSAyxD@`&7JaxOZa1Z6U5UL)@8o*nQ1rBx(9!
zl`=ecQia@XFx=v(5ac1zV(>~_$K1@K4claW<mRctPI1d{PNIfJk{H%mAy*hSj_}lg
zRZi1^Iz90Wbsm4`7j7rG8*v94lshymZ`)=|eg<z)GZ~?2v&AvtRTp|mn~dkG_U(hV
z{SvEv`>M_vn`DTi;Z|G_zd%>R1miu|hQ@}*$BTX^tN3{Q*2+i<Ns-bzob6f%hqWAS
z=)hBwgrk5B!H&j?2uE>8MoIJCn)-T9+yPTxUvsxvq{HDiA^NnC^nE~-7`%bt?wo1x
zU9tnA<V4)^2pefBe?WP_uiDeVrX<FuAeCnX9DO4s8OD^9bZ(!avg)8Jgt%grO0Nu7
z7cZ_M=DBi`j7)tB$TxI*Gb$?%sBFMBJW)wMo;j3evfxtJ(~s+*PAuJd_Z$Cj)jyv(
ze~%-V!0mELYT81VDEoR3OaznJyRbpPCJ#`N0l#DVE{xT`Nqi3)a|`L(>P5RJ8DzA7
z&bYa>r;7G`JeTy(VILZ<Rh_MtDIzE%HTgm^T2VfE_PU`gh><gSdx<e8*`R)ucxCH!
z)e498)4*~nRYW}2UbCMmX6L1W;E9I`b=;*v?mwJ}uPy-<8%s*?=guq0tFETkqzOFa
z&4ZDv^tp<B{u)#69NWH7%BPUmO8WU=iql`if^Uv+YhGgpYq|F!-_Qb5K)<2)X(8B>
zF(rjSW!xv<AgvBlmRH0h1dddwL-Z|6&q?TedYl{ruYGS|!;8p!j+~Q_x8x2j5_)sw
zl}Y6+{}U3i!wNMWt<mzf)>izH`Ir&!d8=|gyfYv4Y};Bl%7xBm^uJ|jQY@+M|JV$E
zSU}!Ivmkmn5$P@@7QOW?CQuUMQAXp8Uy9$Ok+FlidCPV?2I&qRmL|J@W^61PVTkxB
zS2Q4!d){-KC#WaPT|2{@6Qah*`6x-rnqynf1!Ls-r|=H`+y!!scE-yU6=pl+!aE!0
zBgwgvW5-I)$>_o`CHYalb>~hbU$%Bwh(cOka+0iJv3~&Q4m~7}a0Hn3!S+}n7NVj1
zP|kMmFGrT-dZlk{sGqmWyOSoEY?%&Tg;K#>1)I&A!<|`5w%li5$@?RXsLxiNgVvGl
zh?Qs?bVrY=5Kn3|Lz^cd6cLAFV*edWLM6n03h)!fl&Y`;Y(xjTQRO;n&bGghtRv=b
z@COc5wb{dyqwM$;bOUQ3f~X<Z=Vaox)|jK3yL650|8;ba-Ji_AJxtcVLUQ}%lN*m~
zWv}4UA$E`80-ZtZeu7Kn(c*vO{jF$G+E@sZVDb#WkcD&!9IxUZewUDEG8<|kDWT60
zQd$UXR(CMmb_arFVKBua2E@Q-|CYm$v{?|#TC}_bI<I10XkVyD)ar@l%UWWDm_+T%
z58aff{)&tKXs<76($n?H8Qk^wrWFfRw0o^+16%w_xjZW?IXRPUjy||?t%~-lMOyz;
zvACsa-4d22OMP@c@xH9$2~W+01x&oJ&c{dPD@8{McHhNo?|~yRbzX=NUm>TMfbz(_
zHHg|su{o=_<1bbL#Yt(cC&NQp^RGHbcJBJ3KYBZGh+8aL>bGSRhqd!P+%jF^W$ZVE
zD&n}5gao~o|44%r=!JV1pWGrI0l5SWCGGO<Xvhs9CnP~rsjo0pa^mrt^9z`)0~z%P
zRU}zTtowoYR23AIln~6~B(H9nb!e*E!67OD`MekX>m1e<tpW2K$WntvVmL9@W2xtR
ziWl(j|FD&RJW{-TgsVJMe);r<rCfXeT7I`wK_1~e!~#~>T`Pjj|DH>b1|<dQg4yYC
z4R48ca@(wKpCfVFUQ+9aJR13}3t!znawyonk|iVQHin=T{~z1#t~K?SVsGMg!zCFr
zas6aR4!cT=h)9XRMG)pmD_z!SZxb~MC88)BNtK)CNQl`l-~3s^-RB208P#cf_Ne#-
zDPlO?-cv4)Et0}vV}{X;RYXLxE`mk%-#bn`Ge+GV;Zxpn57>19wd{O`U?nUwVHi@y
z)32?C$v{5(skX1+JHB!ys{o1rKR-fd#h&l}P2?)mXkIQC21wdvP`b<U@-TR)9p(M5
z4ST(VI~FPuJ`e>+7B!?FNAe{JF?#Q4#O=aIHBWfx#3o2xvRn$>*<nW?Z21F>WhQ&2
zopiy;6;~rzc-TiW@eyIVF!j<6r!OC?I&!3#BNOg2{4N@=-0I`x6vD!LZObIYgn_nc
z!RDrG_b*jmtmYs{V8vwS7p4`eJMR+>H^nP&N@&*sjF)$)vy+N$l+uWPj8H3?v+BZa
z4yncBlV?KrRHy(3dSi)OQ?u&!R~K#-7U&Yd`t)Ns56FT{Ia&gQYd_{pMcvu+IE7QU
z)?b>NgOuA-2dc{(kE@8YJ9U;W+hDhJ+4>WgS#nBRlee#;jD-?yZ-!iwkblX!_R-Q6
zPU~0U?0z24L~dBCU5Cd`#3Z4I@S^i^vpkD&2I7n8pGUy~+_75B*mRdJtXR|t8Vsu(
z(scl_R-0x?wuw1h6SFn$B26TJR6-5|)lBDh&Y>IBAtx9Z_i-e>zW9R`Zko!OYxdI)
zPga|<Z2%j`+bUpKLpDec2G+S3u|N`h4w|f()EKq!)iZgm^y!^DPg#Dsq@lk0a2^LK
zbtcW2nv<>Cq!}&2d%k?l(XXSq#FCWK5*6Int+nl~l5IP7IYx3WN0aNDQP#Fv(r_rq
z9qG5X+RK@Xlj;Tz>;wsl0|gU$W%lCGi9w$dKu4rFBVif-@<oy_&lT4l;~=5gleu=f
z;oBcoczk69_}))fu3SEaB|Uf}lMWSy5*6w3`5&}LK1*c5LmtzQ)U@lc>D0^zDPJ=t
zk~fUvH8JxUcAs`tQ`yidl)=ETN92eB=t;n}pAn4B1Ro|NKp)_*+L^H<%Y}U-3}6&L
z4BGwE+_!3z^%0Ho>WQ^WVnrVUM~4CpUL~SA0-4jf#}A%Wx13zNG$u)07UMvbLUo)9
zyeI(3hcZRw)y6&Qn_t<@bqH{D_2Hlv+JgxV@Q(FXw=a@x-M;T=G&hJJ5dKy6R}o)X
zQyK5eBxNNVjjGFMPG3HI+<9Xz`&t-|y-_Rv7$d@=Ac*+-a?_cXGskys$Ysd@;Wa}P
z62%Y5aQ&k5aL)W~x?o4`iRBbr(|4lrGS<3xS}$tXX~pbtou3sco_UxoVZvI!TsoT*
zuGeDRE9;zL$JDm`W0JvocCDyZvP1J_gZ)|-L_>?>7KJTlM}d{&10JT`@h?-RxLX8k
zruez&=J~I0H696c+s#72WedYwN_nGLw`jjetwuN|t#ICwyID*|l>k!RSF~7;lBeHX
zd{oB$3~68-Sjk=E{d>qNED{-Udk%R=dk2Sz7W>OB3u<SpU0vfNJh)?<mhD~yh0f&U
zXpVSGAu|O`E@ZGj46WRG%UTIBVrb+p!I5E3JdqCth_s;U+D-+&2GOd)xTk)wb1-+c
zAcGZq;k)*%g&v{5g8Cy$3B_gwdH2w1Lh~qfSXh!S3?@ukp>dS6=zWGBV_xqVcC8<*
z9c&&Fu}ECIj1dM%<6%r-E9C$F4knU&M1E!pE@oZ1q9Sua1MC0CmIuR*vW0FtGIyvI
z2#$JWDn&B|I~N~;#2osZxf-$J<N~#w<Te>~mrP)e6d$QNriN=;t-RK>c|lZSSV9a(
zZRtD4Da6TVYo~RDvCGUy;F=s|E>>4wx({fiAE8RIk!fyn+X!sKCZU3XoIM_5<aXih
zua)*gjD>E5T;eMy=TI+iZUF7d+?3K36U!tN=n4u|ZS^*^ud;pg2Qx`7A!i8Tx{9)W
zc{PZZOD>;Szig@9hGiUe#>GZV(OGi5vHU<aH#g_f`djMrXY0;@)ukV~!i<)#)2@x&
zz>cRsGuYj#i1kh@@XT&03p70<3(Uzwvaze_H{=Wzhv$c~?fVDIX*X%;X0YF$Zf_<>
zHDHe_%1_aln#mbyQ2_)`+mOo$LDh)7P&Mr*iHwem1_;SVD2fl$hQx<jYXSa@FQndl
zkyTD75Q%;&35$q?@anXVHH;WTjAuU(rK9G;{Jg>x?l}L1tPrL%QHGrOTs8Svl9!W-
z6hN|)pLRlc#Dt~fM;1b=Tw)Zt+YOm%cx5}Krx4?M3xxZAVBG!5b2OvqS2jaW0+iWZ
z+p0}>m18!n8_U9rxu5iq+}sl%UCJE^D0N(^It$(_ok5qO%aFZly7UL>p&~YO0X$+F
z*#hUy#!uDs<cAbAqMD$=$N-$zYXx&AIwMDm;~Or?$uVSSa0a73Hz8Xl0JwSRy{65w
z-Cy~S+>xlxV+;Qp4om#D?aKd~oLBN6$pPFQKsFF-jotZ)#6zB)l&wvVJwC}QGdd|e
zE=HD^`1v3@QEig<5!W4zb=PCvHRmT_-JB$&HbY$3@b|i72Z^Z|Kev7L9`U{pemb;h
z?&#l|x4===)#PvTR}LFS8j*UvhOQC(p_Pr#o!Kv6f<s|yyDdne@dwWZL+k)_6D&dT
zD_CM_BX}s*kTtx&(D|8t2enM4Q%zW(0ol1}8(E|jHX`j6AGpdbZEc;7&{|pxcG_BO
zZbw!>eac{Xfm!AWEmXpNu6XkFh!g2tgVdrrJGvTcj2(+FaXXR4nBRz$VN#fg>o^*S
z41V8E(sgAZDS7moEPwsz0txvH!Tl~TdS_rV=kX)piX@MKps>(me(|G65F=+Elf}eB
zvHwA{iQ^9{&unX4zi!*M_3Ik9ojudocou09u_?;4+Zxub+vd1VEIlihcI-}uI{Y|j
z_&k39=i?{u{}ff?kt~p+>^lyc@sBar(VVO#BY;Qh1v4=cAhcc>s*l86FESDzl#`Jk
zYDbr{7o4>tv0T*e!`fJ@CrEG=UE!0$3|1b=DYVgM9qV;Ungxit6U_oUj#)Io?oRLx
zWZ@%Dfjk1OFBWp>=G{`#%dtSO7-)-%+(JN`-b!I_lZnLPFxe*ZNzOnT+cM|bWD>{w
z30OM|geBNk+<{mp2sCvw{;F8qLFYmgT9`qw=86*XC+lhHL;AHElt70jfh2xCCzwkv
z&OJ6FXOV2)a7Q#7y;bO{WaG)ci8pTCL(=D6XQf9s+#Z<kC3{GEoIDS&g7O`)odgde
z*2;!azeRdGLeAg?r<mv$opbfruNQC0M5s&^@qTk8frKJEAhb7<-NX1*Bup{YWNGTA
zBxx8*ZpC*x#gwMu<3P89#~S6Jt4`xglPpM&-v{CH_82rsOoSQqJCIsEf5$hc_?|Cq
z_g4CxnR9f+Oqrf42GVW#DBkGV5qIY}_^jVL=ClKm%zU+!sQe$t&Yo>GVBpXp^XEG{
z>K8UR<wjZ^ak{2&ID(;Unbp4s{5ItJ{D#hg+&rrzNA%a68fYmgwVHM3iIG@UzPw~j
zBzI3A-TF*)C-JqfOg6+4>0V>oRw$p&xjlC5oH=91-k$UH>FwK3S!i?pM_Idgr^n>A
z^R|u%U8+61&I%cHtM+>7H+gwk$HsbjZPI(~wcgk?_txxIx|*)G`cM*UwDQ`kKe>1B
zsis@E?%X+Z)@qqySkb&=lbd(e)V35KJX3RhtxW%XHaKerKEI=9uQ#9ZDBdaCNdBV)
zjrah3L~ii`uqN~I`DZGYv-}D&v9D%5wOk?M3x1|Q+enT>iRULpnc}961Ux+$AxBBZ
z&zUox6AGn*AFqJkn=kLpD}Y<|WBEeq<N3F2*><~*Q%X<I+_FGU7{XgI{^gNi+q~M`
ze0AU6s6cRf-N&HxKH8(Q^1Zn=>Z{Fb7r94x_y=&pV8MzB4DgKdRO5xWVQf#?pGMMI
zH#3EU$o74&zfylnuV=|}emXf|>i>*5AAWl2+?%wNV^#`><W#{Soe9+kMXC-b{~l5^
zQCQlMY87}Ic?z5Szap;uGOJ@Zemwepn(UO+A(_VOscmv{REl46B<ZC);pIM4rYN(g
z%%^l`kn<8^we8J((%<9S^{QK`vXfFFJB3j=1nMKhRJW5~Xb&ttGlGm0dY&Gz1c@;t
z>EShfr-Enlq-oYvGT-$c`PZ?V>8S3s@SQX~#TVl&hhI~OhK_C+My3gU$y~t(Q%;uL
zjC>asgcCs+=*A)D6hfNX7h8!^iZ4w;q`T?Upm#6L^)F4k@H^^d*S3Yw0X*PQ;qKz+
z;pST7S9hSIrj9LGsf-R577If*JHU_ija6<Lzla}n@|cXA28HFxgp;u+*j15CLUK%c
zrYbANU`%Dt=Q@&E{b0ie|85->@4YTU9iL#x%&I+^na$lsxA2ogRHfESw`@s>+sYLz
zgpND{z7UO1%}V0JuhThBbX4B~bcl6sT(ftC3S#o{arSkF7<LY2wgXwLQf<oEY~0M=
zC;&lQc4E8=^lx!V?7Z+sjEl^{wK8mwb*^#W#e6k*+v4N4+d+?NKJ2z~2l+&O>QqK{
z6Bl-a$w*Gm&Qxa^l4HT0zJSbvm?SZKO@>-WWp1j>1Nj_|xY08qo4rB09>fLwMD?hT
zu#C3RHes1KC2jmNei`{^DweY^Awwv(Cr9ONy+mA3Q8LY;a-?Fpk-frHtDERHY$9^9
zBgz!&Y&9M1R3E__j(JW$eMm<irX!MN?NP!I<tW;34V^|8ssuaoy&&ahE`<MzUq_vt
zfv1!VC(EtrGt)4}M)EnGrW8_raPMtXX&4*?bFGCT?On;#STeJojCpR&TcN))hIgZ5
z_`$OFZ-SI`3VfMrd`}^mB5;o>KA2(-<(=_78_8v%k^HN7Ten(1;5S9R!n+NeB1(8(
zmHaAxh89AhGr)ULMqj^yqiV=oni)j>x4)Tv;<MvVXMIC+$I@A2>1_H2lB_wP9{VEv
z-IotYFWE1#`RDX1MSae3*QRk9wi#O|)1HCUBAA-JIgZ>YZh=)eS&2bU#mTFB)xpzg
zmqM~vq*IHOSrySgq0c+}LK7XTqsu3*q+LTR`U2OGL-t#Nhdh(^7VaPq9qq<_bVM(L
zPNWaK9cVq^c>4~ZZMhCzqq{bY4IH~jiF1BTgAp4C7q(i6gMi8ad<XE|1si@>0GFI!
z0MGzll^u_fNcK55_fy)#iGHF6kah*|#1O3IhLMjKkS`Jl457YJ&t{Od*U1+z$;UD@
zkyhv#fYwS4d7K_jbKh~~Z2M>>$pv>s1X3m@vW@emS4>uq8t1uoIv5yc0D_%Ozg8h>
zc_@Btoyo4b|HSiW^@Drm4L3MYeoe$<8%gp-zO48wCR^fd>JjwpcQM1lMl$(W*DwwL
zQb}xFh<YLUh&}YU{*RX`0xiJHbUeWDGncQTJ=v7-aDBL1_z1dgxk8r-91u_4k)=JE
zjJSqW*J)T2g0$4nYwcnx4_hho{XA&oNENlc*&k@nUS!PI7l;MB1_}8+yu=*XU&vQ*
zrQanIPM9L0%mUhLG3}!UPHi^w_U)0P93{!vpL*bcYA&FNbA6`xE@VdmLIqhNI{u36
z;Jp|70UPb|-8^amKE<zX=rE<IOkjE9C3~69C%uvPJz<#4VcKA)&(%~i?+VC>_!QG-
zC0Ub6rXg~$0_1Gu3j`+CWOD65xphJyE#X#?i2@(^Z)pQ2t%gG6sL9*xFp4NBV!^UU
zd^B)}h@sb=8k0YgrrwQ_n_7_!@D9Ex|10t`Cr$Y?8;R9#U6Cg|RK9rKy2XIt{vus`
zc3lfgc1s|sHO7&6Z6qPf$$=&C^^YQP_2(N;pFApSOYGA+>(a0jR4%v-vReOo+7EPu
z`-G6y_P*;p7l)&5eR+qzIJ*2CfUdWK9u<?}wTIptNLSwVja3dsU~&}<+9xtHPttPs
zYzrX1R??PrXBV^Gsqr1|z1gBb#Bj{`a9Hu)#O(dshonpI{6EN$Kc0{-d<05+5c7mQ
z#o1sRCL~&!Wy~yeuLHm%GB-LaHZ>+K4x9yAt<|DM)7MYfDcdo2WbknHu#qM8w%quG
z)6XorI{(J{`)&{2AH-ZtER}Wg$g_zRfvFw|kx9<l^j)aQxTti=?qv-_zqY+M^X`nN
zD_%Luw*CG-fONra{Ik6A4fm?y$=CPp$@J;zsi~~sft>yPg2<w%+~AUsjOge^i>wx1
zW6}~6Qxnv&F<Rt61qCHU<V0UvXti(=lc3chFFq<KI#bK0CNa@DISGJpW~8O2av2%t
z&u3&@US<_<Fz7PX*<gXs;i{`63*s}ET(P=#jp5x_DZdN5@7c<F-r9C~&ABz_mNd@Y
zC##wLMZr|{lqq4JbGTK0Lzk{zAxq|iOlKwg^bPrW`bJN#!(8GQ5fs9;Pn8B#hws+1
zr=xQUbBj__txBpdd<}N}XV1vLP7|dXM*rgtW1ex(N1uj9l%<L)Hqd{K83R|~yU#zT
zJ<*X-+fJ-FHk;$eNWZMSc;q;H_QaJvH`UiK`))qLo!C;fY>|qx$W}0;9P6_&H%YxK
zD{6aUWcbF4n2aP@<gvXvq<pPI7-uZTUTf)C*s%4(#_U+QfLpZ0Wqi^ES&}qHPg5qV
zk|jGEc3k#riQOHL=oK54=oDq#1!zl>(bo{k?w#AX6lcHY%C=jcGLJjogg;O}_@<!d
z4tHzcmBw@U*LZo~E!n<1h2K0-dGOyV=U<)CH0rRdaZulKYOem2S_JN##Kr0o;*(;M
zW78rHVHuJ6u2tEx+8=)@dZd2&OUU*o+%2!G+wLrtC1hkI8PxfC`ACRT{1{wPo>v@P
z^kINJoWx!aBALi}UJ72X<lf{DFuXh?Ps#PiiXUwxJuWKSgXmjf3pqhgka;1w9ud_Z
zkQMq33VDb5@oIiNoHW5lYPgys{uQ2J3UfltFQ{r@`jYr1al@RA{-Enjk2R(rO+S`S
zx))ZtRk<#rwoyJ&K85k+#WKZ@WkrXMRb9baRV@Wi!%G2p;+HG=$I>@L5RCi-9^~c7
zYTv+;liti#w8F!o8$^c3&>r5Pf0NR6@j{TDFdXh)VG(~i1VjCUY-V&;RCbI^e|_#x
z6Ik@2{K0^td_%gZ+HC`spikR!h^W&s=7+8febz*_!tZG-2jayNf41b^*?+QV;Hdjk
z1Dx*_1ejk+d=STbDfK}FO6sWb*MuO%D}5lADM^)PfQHSJ=NE&93?b(KF`ocHv8X5o
z<cYrqo>@T0(XcO(Q~&=vA?&}0k&Ju|9%PvE4x`}z83yhMT_?-iUXo$T54j#_(pHEq
z){0Jrx?JncC!#u)?5x2of)AD;Z)7EY;tz=&m|saSgG3Le!=2XtQ>6{_34im0PF?Qi
z6ILH85mpE*tf)7n%27!JZODr%)#v3}11D?*eTHlMiqAAh#p_inCvkwmM~~9jNTNpr
zG968d<$Mo(we<*=19t+JKsYyWzQ(TD*iO0CAtT$7YyT`=WBN=Q<LHpERo&KVK^Qqb
zNJ3}`IY?H@NjwM;{VkBGro?9~`CbkRmCx~6yF@-n1N|F>#*AQnyk%o?Ux~O%Kc+au
zH``Y&7+WM`G-Qm1TP(C9+Qm`hC=KGAyLV?7BQAjz!7bUby<-^CtkRKOC<TZb-VBjU
z(n#%q#qsrx2?^oE1bpyTqO;MDtVQQz2AKj$(|v`V8hw023-IH7L#K32r*djYZa`{K
zoFLF-D?uR1VVPn2uz2fsOQdQ0#fJHbK%Ho5U`|j`6dRwDo0tcfdrEp1$75X{8x_VE
z>I*Zid2<a@X)LU)Qu%A7WznUfxu9wm;7^2TUMMcPTojZGWrTNahm_d6=ZB&OXqTbQ
zbO5d!zicetOFNgL3(FgEZ<=vK9`$LKcf9L^JOc8ACMq*JN6R90&B!FBXC!B+zd$dm
zS(+Q46K!Atq%bn6i3vatbT2ClG=~qG$T83cg2Pk(*Z=pz0CE^zE_A)<VFbw6fvss4
z2B+OvAG&kKrX?$)qN8Hc!$jC+dU!!}Vd}oLy&2URWJWz1@-6y_5?R#s+uBw&AIGC2
z#MDI^NK3fnjGcl~m=XuPdzOzn_d5&Dx;}q>33&AOfa?zja72g$abf2%fH$yI-X2Bu
zHj>xo`Zn<)BflwypWxU=Y?FT~6^sxG!kIN8ijDJb!hB~rZ)^jFiZ~-Y{qM?8EwIji
zw-W{QW(1i(w2^GW<F>yoO_@zxrec^fC4&ZL!gHgTLJMR?jYo`!)ejGD9vRCetll|k
zJ~fk3vw7>+x~jK2|3D`1;G&xRNiPqw$&)Po0=X|yYZ4}J>NjHQys5LN%=u=B)tT1D
z-MQ-X&9-!Q6S%U+b^f=N(b-qO8~Z{HU(ho2&yIkg1O4&6=r(v}lFwzLRC+g&i)Q&x
za&kr^tn2t)NpH~$@V#6hKBkY5+IX5VAt%9yo@T_A{Y{pyhQbEq5`T=~8}RwpVbRu+
z2E|!a&@Q8`$`_L6mrSjsc^LCTlIu2OBBS`RhT^s8d!g?t-`zDtGUEpZo}xa=B}uN!
zxhc}PsCWo=he@`JNe-)pPb5L{y5c0342fXI33g9G_}rSw6sKkwN>qGrX%@6&+3ARO
z-;t0np5FqmLbrFj=m=;c1u`uuVFiwA{*QLJq~1N2+%jUbtaNN9k><x3Bh%T5<rQxj
zvPUSA1jQzm=-6|y3_8}M;n$l8iPg~>(>&;Af`GHj>h=EHA+K!nD_wMvZZ`bEdsvYt
zGnq-(7d-so`t=_kF1S8%<$70pKUQGA4@nP>N(@1WM<}M7;^~5AR6WA_@Q(GBtJJg$
z`Uzd8o|u2#jf?k8baz)Fo7Due*2Vl1V#0HJvo5hVu7<r@ckKGNc*iRM<9&GjI`*+(
z(!>P|CQe##{Rh@`h7#rQ;dF8Q8uc2wIP=ADF1$crQIMaXU!l*BkS)6i>Cc~`cdabD
zbdmc|SP-rc2oIO($TsCf)PXwj*IDNzye+(z+=hL9(HmZuK$|vu(yDl*xOvkQ0=FY5
z&?<-*FVB<d`M&xcLJzjR2Pj$8$G*LA2b9OXF<|gXr;pPxu$u>grmP|49F_8Yej?M~
z%J_dt6_3D`=+HhXEP;2HwVB8Y2^qVK44h8j<Sz!Jo&n@87u7;q3Oy+FUMJuY6jiGZ
zb%tcR)>{09ifrB}=ik{7Gf43v#KT*P(6mlc0wv_gU=$@bQU|oAHvEjuXaV8CLEFG-
z#1Y?H(|*uX{`S^f{}u#~FY(5WCdo?pGW!9rGo03|g+-JQ0uRO_OfUuYNh-#}fn*Q|
zn$}(n=|7N8d_-rf=^5x(YVmy<LbY0Q25sN0--zvR9PvT`MK}ZHZJ=Q_4EY-3gh$bP
zd-vbLBn*=<0Om>3Iaqo`hJ&b0lo;zCgJuGeN*nqP<e5m8v0?0j%xgskT^lCLbOSml
z{C=kWB}o5=fzzs;Q?`YXFdMqf6vni_hW5&l5~ZLNI{3ZdBQw300ze{Dc7$Q%&kHvg
z(@WH7GXB-?n05jKCNSn&^1GEpF7JascjYBH1z^r(K|TU;sa#sND<P64*3!(qH5vO3
z9SE;i7k-~!$&nqv+J?A<d$>B|ecH7vQR~eWNlT1*rDdJmYo5Noo`HEmC9y0tDk67f
z1Y)ELF;GoA>c*I5p}ajFcE45n68s^prcOi>vZkIv?XMG!EPG?xrKD&vV-1lhF<R>w
ztu`h~1&rZqY3=FiuPe{Xh*{Gq()E`5y<|r9t+g01=4i$}?)L$R)K@}B%%fu{yOis@
z35n73)gVgi;x*_YV#9wU5XeWrW1O@X`p1$Rr)ZbHCppSqzKML`5o)C6A<$$eC#|cI
z4mDUlY?yTJM%Y6$d(Q8?_t);HWv17F6h;|hvbC%(12k@G10?AYBEkVP*%=sxsB*M9
zF&W6>#7UOJvtSWvDp1~AesKoia0aBF8uZe87oj^t=Jx>?59Au@tPe}*f;LNjE<zQv
z5bZ`O$2(EgKLLoBpaRdtz%ql3!1#WI4bw_Sydopsk`Z`{J^4k-&&H4cl<laI;8~WU
z8AMkEk$+5Yw0PS$ar-<^=^^K~Pk+jD-`cZ_4$du>5!*Xt{Cm+qo(^ZW15Mi)XCJ<q
zi*zb;Xo!#{0soVwuH9E!o6TkK%c{w!k=^n>Gk=PTjOYWh8yTERBY^C?=t=YN2Ha57
zd^~4Uscs@iH+bP)nnt&&XaKwoi%B4hyj3&{BVj*4GnUqeNZd%5#lNzC2kf(5{9OEE
zH&wdGPR^^GJW(~lZ_1{5te=a~{(!$MHV>k#@C5Fz%qcJ6T3*zN#D6N#!jrL^$%wI}
z59@bulMyxe$JnEWTb~|+A07iS%k8x1+<vGfd(#2G&RX(2Ysp0|Pst}Ia2#V*7($cF
zK;M(I<_B$<<9NlskHm;>*eeX?J{~$0-yfkd`xuh7ui!kP5oEuTEDa@_1t-K;=$F5H
z|9C@ny#+@!fYp=!`nnw~tszT`PM;x~BV-&I2VYW@FhQ7ri;@M-taQ?4AURH17GEHB
zSOYb3Q2R(`(qXv!!}N<UvK1%w`yoi^gH6%7_M}tRZ}>s@nBNQUTlalU&)C3*sHRf@
zBf>%0hYT-eyE`FcP~<AMgUaz_Aj*bo_*Q!a{8!1*H|6d6{NH7k7&i2k1BK&{)<x_I
z`R8k15`S0#1lwQ(G$MSpwX-^*^+R=h>tEG%ZYnnNSfP_}v#m8>LmRL)-%27it2F}N
z7ooL33@x%vJ6S74{EFlu5UVz(c@h^2bqYgBZiIDYZgE_(8sPZi;w&)p<mMZSk=TK%
zFKKEMy?498nTU661=<7{c8r5Me<7>X&D+;KksH@u2-haq3f&MV1d{xfrXGd_AOk0y
zI)c-<5aMsq_k;68XVr+~!{Oja#Z!hHWHfNiHjr7>$}g<C&4Exz+CG$7meaiDvN}m4
zx!ipGQVvI?rlAZL$>g_JU6=!J&-V5PWfC;<)NZ?~>U5ktZ>u{{U2`DK`aoKZcbZGB
zU~84;;_cz0lkuZk$a*=@(YBb7cfus4n{JnnTj$0uY2Gzy2Wok&e4wTp<hi<P51k93
zeVa^;%CGa!G+czU72?jMRfFlpGmb0rxnG3QAi|Uk<d-s}n@|6T^kX<;#ZgF{98>yn
z|4Fo)4>wT2Vk?+<oF>khG<;|{+WdHAeP&9KbHR{I37(Y{WvUqK&5~tmV>4pZphHwc
z)KmQWP7)4LJ{`B3`s-rSVhnNC@djf8gj-rb%8jg3ERTwTS~ZrFJ(|CkOruvZlMTlV
z36SLHW#^}J-;?jfef_-z75M+pCErO3uv!{-p7^I_>u@C2e;>(*qr~!Du^KE#uhNM8
za0wEr&EMNFL%W(D@<GaEbT?rphmau*9Rj&Ey)*^Q@L&*U)7p-UN}fo?VB^SNV3Y5P
zF<nf4`Guf}!6IH{kpG%~jfVMa2GPf_m8Okg;9n-F1yQMBS^LKJjS&1=#;Y*^0GlBe
znKp75W+GvNUrB~_<$ocJh*y0jC7@Dc=u7~oF@uuM*?#Db5uWhELB5`8x0m9`PQk-t
z#><3mI2dptcI!+fLb14*7grPe&gF0cbQnc|KE9yjq3<kd@0@{R#w;^X!5F`mw;N6P
zZZjg6cbi6pQ|^l%*4C<2*qDuhmmfS>F=0_03OkUI8_fU_5g9>tB8ddl-Pwg;!D{f=
zFj+YndHHZtpf|n^h+7-8C-O47)JEc~)BIt&jdRmW2hvNiyRtnhL#$1FyPTmvwCR=P
zhYmf?04It$bT~lD9bL0kAMHUm3cQt`ca*lh?;|d6uj|m8c$2)cIJ+ixkM%%uNl7>I
z{D+mT#kCpU5l<@r1*yS%`4S4hz!>AXwFRovG>JY^dd!;?0>XOdWIE+rYW_O;r4^Bl
zA=9UjH7So%Zf8E;CmSUdz9o;ak;xJp@y1#uKNaJ)SAPv0k>*1c2kFOGK4n)gcAGj*
z1tpG+^b3*%$9Dg3iS#~Ol3b!MDZ$^z{i*am=|7E3R%7u-P;_p8?Dk-F3wPz+L70Dq
zN<`;tVLCp16nuY?=mB$Tl7USBUoo}p%IBIGC9J$9$&m003;a^xmnj+jQ~IkOyt?F9
z<Y!pmnp>J|#WnCtfnP-3?xT!`j5qj02TP)3Ar)z3@r^XcXv|@2K}d?ne+QWk-md9T
z7c(;YS}cl<1~huGwEbn<3nhkNLm7Ukge1|SN^n$sn0XYWe7Nx1q|Q1gEnGOMbNxxz
z7Cr<n;2X)qYu6s4n;%Uef!2i#?M(*3y%O}!#v+Y$S3E*qiL>%KxB+c}TxZ4;W&-K4
z6m7f(&Bxy=@Kp3B+M#6WM3AH`MASwP+Urk<JwOHDKnCG+(v3y}h7m7ASO0h6h>{54
zes}>UztKfxKRsmi2Qt{ncMMiupTw`QvG~)5PXd2k`>r7Rg0$1aptrO|=8&z)SPL5Y
z7UBr+$d<OQ$}E>aSJ$|HzJmjXM5oi|^&=XonK95R&n<L^Tck`EAD0}b_VFvIis9l)
zcir*19!fs8-X;m9ANwrWH9IcI$|uGz+y_hoDQWSXTV7~=UY)Vbs*#x0|C&yo56Kx^
z-fy>SR^a}u16lj`mmP?cxnjiEXBV-=%_V*I>?fabSQ41!Dx+`70EkGp;?DBc^ai;h
zSVJ1+2JM^@OnGa-eo)R^BNUC626U>w(cgqA!W8<?l>CO$72sj8#C!Y?R0lVE?Y%(0
zp17LdAnQyk$XawtN=!SI0TrG(9!Y{U$O_1c@V)ypkHs9ej;{`{@+pu(vsDO#JJP9g
zLxQUZjiats4$g@S4sSiY^?Ks5BXCuYvm!%mX%TIv<{?8id@&2Kb;>dqt~@;OTn%W=
z81$Ccj&Yf|dMSqm8s_I$=W#>(s~!hEbh!iZh%6UjX5z}D>%LC3PEJE=r25MfjpsAC
zV|-KEzUX~{<#?g_&C1u`J$U`wl<x))nKEU_;P1dC)sEz(fl7dV#(->WO>6m$L+8N|
zML1^GNC!mX6e`*b9v2-shrmU*qpd%)oeQ_Gp6@?fExvL6(RR0h$NaCi4XoQD3Y+Z4
z%LefEPpdSDpi2kA=KT)4Xad>yEDU%0(220x=zT)BM+vWWL|SlO3^AKzl?cicL<x-P
zSq85DL|J)xfvm8iKIee?TC2m#Ejxmj@8agTk9DR!RP%q=)Jkh>OU~|NTN_@VC!eYW
z3%Kwg+_O#2{a3UHf<5#<hCseJkM|?%&2d~&WaTmbMNL<}i;cx)<>Q;T9zU9QYuvcG
zbH|UnHTN;cH$fvB4R3-GNt?Q~#LPs4Hr-m7$``|?RtCEku2C=B8RI94Ye9sUibLxY
z^emH<KlMfqtG}HS`6KH>d>@gC34$#{*9ota!t^SgXYTsO;M(wg2@PfY3qjt0lBi_*
zd&KE6Nn?}AdkQvTCOR)OORv)B<`(*}d{<!+Q?->y{fL=L7zCp+8iVeh^p8~F;nL!)
zQ}mKT*RM9-X>4uW@Tb>ZnSLBuGYpU&(^cUorT$Ygn_lAeY+Q7#p4CUkYExNqMTi72
zce-9x=4x;$$<4_OsSK<W$L&yk_QL+XklEtZ+XU#_T@gk@3@<N|9+$|+m%w<!r|^fB
zFu29gOu_i{wequ>qiHX89dCs+80(fvv@0jv20=qfcmW8U9!a8O5@NNS(A=KH1cVlP
zfcUahM8Fvh+?VKa99t?0E(kAXL2pr9P*B2|uJb*VNWif}fH9AyWs>0V@L;YTsX%pR
zSh0i^IaewqP=B%m+h`$2Mkg!vi6jAR%hOoJ!Dt60Hd2=)x)B#o2a9e)$FpZ7P{=dM
zk(M!0^LN1rv0$NCp#JX~5WS*C8_8R9laXwd^X+tm(sj%RuV_{q9-b7gc5^ctK@dOj
zl=JV4NI%(JGAtBN`Xm*ZR7CpUBE#6Lq~GD+$;4AKV{M(WPF+xtq%Gj~MnBu&s`6V)
zzle5XwZ2J?!6CA!$iSq~O`CEysUrfD!O9XA8Mg&I34RkJ$J?rG^Tt<BWDP-CTOeo_
zlUtUYfAVC`Np(?KQdAyS5|Zj@@Rj8_HPbJke>}ErfU>X<1a@3gQ}xvwsvF){?VH#b
zjjwOAQ<bl*(l-y{O0JRaetxWvZ;In?U)doIl2jHd3yTcs#lL#h3{$C55zSg+IrJ4a
ze4~-wnRR4Xe^q~{VY6qkn2iKs9(Y3kyOD?h`VKZ|n~H2h<1PY&K5Pgu@4v3oadf(h
zPG5j2X8&73cYcVzmb3!rOpGFbi4mP`e09Zrd{+jiyM;g8_kyuZBRX{dDnNYKhB_q4
z#UkaOa2G7nut=UWl0$O6bP<S4jcrCRF`e$85^>EWFa^RYKZJ=9zZ&3JB$oGs&^ddk
zfm+Ki#L`_XN6%mwv3w0=^?y8(bYpiAE(C(_<Gi_Y%oud!o;_oJAbSpKOzY4m1vQj~
zX0Dvd*DhN+hh6Z+7h~x-6~M#_X9EHXiuk!B(Xk`U=?hoxus0rj`xBY05^|{}D#iXm
z^^QjNb3i9B#b>R!8R{cF-+Ta`0g8sv56_ZD<r>0`g7f_2XS>Rrv;n&UcNv`a1iqR6
z?SSL7o6N_!JAAhoC`ilX>hg-}BkN>j$M?#4@Y~7BXg~#}GKFd=woC~03fz_9v^S8b
z2EL^>7wKr3Pj+Q^l{zakB`piv7S<yP9xpuF>%};4S2@0scx2Z*#YXlYg>zdGXk=WH
z-GahgWm^Ka?%JUC@X9F-;9{~Ezw#)M?O=>``q-{5<!qsAUC@DK8GjY0>7v=Nb<gnt
zHf+CJsY}X%l)BQw{j%fb$M&37*X)fBD(AA}n96`$H&>PL1@Tc<HU(X<uawozpIJ0r
zt=R4Ari*vyPVPBZ`c-DLp}r};S=(%1zczkw)R>*q*4Capa`gD2hW&<%t_^Mt%M6Za
z)yGro0d%E5kcxw8sTCvuKJp5U-cjHI1TSr60&*%ME6{wTW@K{;XMm+XW)yYgsCPkf
zesVz)gp*RCD2?3zk3U7gow-B0HggqCffwv6WQM57v<QSm(+miSIyY66UGQ&`k*;eg
zbBFd&D?GIE$y#+zO`YL@TH$>1cuZg;chdi>(u$Lyhk!s{d9;6?zd9y1Nd$Yx;Wao`
zjnto%h*axjNs=goE$$Qe3}!a%x|Z{|FI&~*FVp7c>GIVPkveS@XYU`ls={7IyEYSM
zHtAu=OfjgVJ>0Y|>P=g+%eHZwDpm&hZ}PJ*UDf0#bGvaj^uBt3U0P->w`td!pq24!
zwL9!H*UA)j_J)R?O={$dAsbZT{5tp9!Ec-0H#s?M+3x77UB2H@=3i1BwMSi6o>_o6
z*mz?7Z?dw2IAT;*YNfCv+sQ|Ji*oA2YoKb@*6`At|Kt~w-RrJx4PwW?=fK}Z<m5o{
z(T&w06CZrV)CW%uxlM8akh)DLPy2lSRBp-a4XY@lir0wwWivF3HDug3Pp^N&UcTLY
z2^mPFzed~~+u(DXrMh+}rEp)k9~P$fDGaj~QNx8{Rr<n0YyLiepD`V@v8Ymp75eBy
z!$jn()#%ZW=Uy9obddG!+f};>M8*n>^i^Sn&@V*ZFO+Z~q+-J?AWOQM-nSW)`xEy$
zhJ<S4!q}m9j+FaMHMer)V+a<cWU~dJfk?|Q`@Qt{vfpKfnoPhCAu=#ksf~-*LYzD$
zna$qnoV8Uwd4}K4Ib3XlE-@)KdTZR4=&dq3)EQ3nMRcZ`cANDbkzH;e-S0P^@!wSg
zj@t}q%O@oaT4$^B&I{Um{p^b`3)t-X+{W}nvJ`+bQdJp&Nr`kFQX$L$7+8wIO90t$
zfK4l}NUKnjF^^^<+}U;K@UXt9i#c-ZZv8{Gu_!^8#TCWhrQJeQWC>r|R|ACwBiYDL
zBf-(ck1r+Lde?)Ua|<Ao0^&Fi6!%QwHWoLO8)G-d*t70*B-G3BEpv(6p5>{gRy)v+
znUV3A0RtNL1D9V}ZLC(eWNco`nG)LjEBC-RxzHz@&4}6sW>7fmB`cRvGfwe9m&R0*
z2^ZiagojZNGEjylu!^HQU36L(j()Y4E~EdZhgI}EnFGN1IYVuF92+a8-NR<lqjao#
zOHgeC24bVWOU>dG_ZpMwxMoLO!X<R&P^f$WI%I)oYY~vN>j1%zxX2dW$h}p3L#B9;
zo}XsO&y<~qk5^hxdZ}+-42ikH8IqaoJcwd+@9Pd3LL25NS<}^Y$MlEN%PZ11gmc@P
zv-E@qw8nZ_g;a+-dM1H<SWP|a1-q9_O1w5DUcK4T%|4EcTYqTt=}7X&2rD7rBBKM%
zkJ^5#ySTva@WyjmzId^fuq>Hbx7m4}j<eGp+x(@Px0BF3cV>fjo6`o>nq%9}vYmZy
z@~)PzJbyG}e{EKy^&Ngp=Ar1rzI(0dK=Orq{f;`vYHR8X|3_{}kReb#mu^vdl?K&l
z_iGPi9VpwImX?;9mIiV4K~^sHtFoOu9NglU*EoVAOP87izP19ZgWEHbh}RCrw35HC
zJgeJwY@OOJ*<o{<T`u*vN_E{78CElpthb_T__6+{mzQnyvEJ+#xw6C_331P?sFt7T
zb9`mVW<TqVK4HuDY$64My%jAX@7x<#<U4p;Z}x~;TDO%%(W_P!6*c+$)qASq!pk{G
z^9(-bb=YOUvo#q=zo_=e+n(%X{pYy@#g#Q#hpd~(uI#4t)4EeI8D)WObBMD!=tfBY
zt^kcJP-ftt0SOgN5mg*Q*`<*smGxBzFi`Us##sGHH!!go#M-e)^v-7)gx;pr0f)J&
z%Ib=}W&Ec0hgPxa$5V6E<$IDc%DIe`^fagm3qEaTQ59@$ab3aw{P=h)entDG7634N
z(hw%bAm&>XJ!{S><#G&$oLp7$a56c(nk5cT;I1D<J|fFyd8L_PvDzJ98Cl9gEWwW6
zBim?)dhsG{B+^}bk`N|a8*PYIhm2Vp9mK_G<D;WgAus6U0wlUG`~nm|eK0QiT;}Dx
zbK5!<v=s7#*t^(&H<+Jp(`3o1smZBo({03wm>;hp_qZQ&-!_nLpFd*Bs_Ezve2TP@
z=|B@r10uLDT|QkVbTO?_R+X1m0jUR8JUZ1UAi&2bpuFnKfM(~z>|y7%<#uXup5wb*
zRf6>+lK~w5Q_{<H8RW#hg3z=2<p1>c9$-;j>$~^>)0nNaVF=7Pdr-0Wc5K9;u_f3=
zBVtzs6r_vvp*QJ6laAOGjbe$45@U+dSV_^um~Nsb0o1I4HR^rWz!=Z@<(~h2p8tKW
z<7TbB_Ue6o>-*lXW5{{HaFAa2Ejk<Y(-gPjS^}@~8^hK{txlBIE-hNTNJ$wut2^C>
z-y}#pgn^%9GI%K>&Yn%&c8bqCS$3lOsI+F`+@iTE`aV3TL4Ql%CTjPnkA_;b5``xj
zr~)a^{v0s}v)Gd+90&U<!EC<}s_?cEbDt-Cj$f89)Oyw|HMrB`)SOSRuF0rTm2C%(
z9qH8u`beG<e6R{F888#F1a{xurJ7rG;CVVsiUa0K#b00i_VW=<#fgHur<6a1|NPG9
zysz8ab0>#;#LSCWw?XRT8|v<*TvzH{>&FxR02$c!A#uovjt@?bUC@^*#`aq*U3=of
zrb{ZTqf9RL8~y4ZGKzPf1scO$`E^uEk^)yJBj|X#j+g(6?ZXHxerxf=L`K%1IG!AP
zOcNWF5Re`qE%o1&4?*UU;KOyIL$JdVgOoB#BfkzbCt!Dz;YU-BMjr;&!rqcy<<hDZ
zI!{j}h$}=<|7PhMQ<QY-bm~F}4&xKV5dY1N)ex^Q599beS6P>}Gh-*8CG>gX*|zw>
zU5^WNaNb}k`SFRuKXq|@06#b6owui{)_B+L-J+4Ve0YEidX)dQRQ~JwQT=BO4VT8$
zCGOs>{O!h(JGK0U9j8w0JSRQ8Y{%SrN^%#vL<Y;Adx+)N2dbY#Y10@2b{R4TN}Kwt
z*|K=Hb1B&m`E}t7y`y4f?<oINJ}fbJt#5EhVNmbTp#Y7t3VhHfC?qjN<&%4SXQIYG
zuXn|J<bpb<Ft<>5irOY!QtsJbUeDK5#?-0u^0KmXH5u=wzx%GTA^XgZ{m`j?;lX>D
zm5KP*d411lcKBy|`6|8By)(S|%v`83s;w-qQ|&w$6{K;ewz^fy#9SO=`FF=(pYuzE
zv@E?aAyx^|k38IYIImal=p|lf(eV=)IH^|#9W-+cT_g=#o;GEP(miiZ?i@ZfL7So7
z;J?dX<-0OugJw8cRX$!BlM<T}%dhA&yr1*xU~O<pV2U&{Eg>#aIg3mUd@q^bToX0*
zgTp6woKn@)WTw?<B8c=9+b@7|?-;SKCY&a>x@LRL$;P-wRdY<s{%Xy81!U@;Ys$)m
z(#TvsFh4jyxR?q~jcoOLB26hvDcf<6tc-l9JhptNAMX<o<fBT|=Hw=6axdq7dRh5?
z+LvKxc{iwK8PrN=XBas&&SImukDY=#K`Um6=8lRLy`wgxC6aR1`UMB;f}Kq*(K|RK
zAz0;WY>CZiiPLBa=*(g*VZ&NtUj<sCD!LXe!JzokyILaW%ns-<lU;alnze-FzOf}X
zXM6c6y)!nXceg}cWqGZsC2Uwr<RoE*MoYN=vdz>Ix{e@chPVNxuncwz_wv=UzH6xS
zA}sFF;3WmxNwhOf-{vRHitw8VY0g=|oGb<>9(bR%bcP|DR%&Rh2j$_EmXVPLrK*{k
z$~yo1Lr8p%G#8Rv(LazQD(rpCV-nA3s?w@-x(duizdII|rB=iiO1Gz{XQ!z~mr&nY
zIw6Sq`Ofg775$}Io*}(`dE!It?l*(&ZxQs41-?&$6VLwkF)=&7=foZ|?CSCFj^C>!
zQ+J-MKd~S9$0rGp9`x6U#w_dOb1nK3qSlwTockE`y1`&(+LgI0t)8a|u_WwvT+_BQ
z!6%%kUtg$T9^>EWb9nuJCmh^nwv$b3cCD!PEOmOFhL@29QAln`c5p~=MraS0QmUOo
z!aU<vM63yMY6s`RXfkuXzmJdqI>0Ys7q{tg$eM^1ah^^j+?6JliPA$dg0t|;4hiYe
zk0g}QFxOJg>J{~?oyexgfKnU1f8F7YjR8&|#m#h~n@<Fvj%bQ=x=psm(nL{x+OCZH
zUG>@ZJzQc*@*TRZsqA#siCs=E*ussXGaL6GKD@6H>LzgWxXGpdMD^*?b2#zPu-il%
zE6T0kUcXDZ&jDa3JHSKn1)xvL0Cn;exlNe)CHVq?DCP7v-=dc*p7qnqpY=1yMb8Q(
z9WXoaE`q}x#j|Dlk)n>vl8$Bi5gp46BSg<GOFr)SQvs|ak7qhSodV_tXL`_6^-#*}
zOr2VKiIlg@vTpSfwcfHI_j`#zYn%_l-!M8~^Q=Syb#Sng`TVI{;!T?}3P5YI*)<BA
zJUeAa3Da5910?AIe8({Hu3J!70aQza&GSY&Uw>Cbw?XgbvtUuFUxAO0(kIzB&X4zY
znLdwNL`vy95^}Z>9Q-*ylVm;MJFFZ@gyDjM^c@9Mg<kLRA+tq)dEe?s#meV(&n8LY
zgQLQtL!}*uaoa(42T9qX$2dHC9ZWh1s^QRM5qpUZ)|9;@@gV8FUq@^r4yGO;eei$Z
zkNe5Uz4Dv)n>&8(CA_R?2y5K1K75_8Pwo0+N9&Fq=IMl9oi&Q}{(kG%2Q(bz0d*!%
zcwc*T-=SkX3w3P2-v(fy0Ta(*Lx3*{l<o6_&H#8C3CX`{4nWS+A}rkD&*&}{G{b#^
zzwi3>{$24M-GAs9i-vtBHBeliKt0Fcbb(o2dN9hj&RgZXDIy?Jvu_(t=&<W$YM;&c
zv%xRS4;+r;iFzzLkPie}50PFsh>VY2l)P|(61$=>dKQ4lNzhs|6nwk_o(|rt2ucY~
z4(8X)n;PV%!h+fZoArf{_C0F;MiVtVZq`gC9dd018QpYNSJcGk>|m%4O|>DO8pFJf
z0SfokZ_S*!`m@WQp8V|k^^<SS;X5qpedu>vKsEhG!uR&_9m;FI$7V)GrKd;o2`g44
zdO`kt=~u+*$GS)L-)g?R`A73pmD~nZvl{9(-=+&RsGw$uj0PxvjUqj#UEy~I`P6Sz
zg>H?HjM0RWzH^|H&HRxxzo4kFNLjhQDkhKD6&*fQs)TB|^c?=M&(fM@DvzaM>!3m?
zV(a#;D$H<G2V(gaX?$131q7~6O^8cKPK=3)jf~qSZHU=Yu~9{%ryCsTG|${Q)hjf|
z2OuMguck-?mM@B4s0t0u&I{9=oOfkqON3v%PqI&@blFE=Z23yna;^TvMa}#p9-lQF
ztln422UH!1IIJ?-H33y1r>Nv28v%Q-(gakp_YY4tU4(`)N$z%Hc@WBd<zN5c^uxnr
zP%B`kv^uMP^poFPH~GH(MaR}Hu3D_3PQAgU;7GBhHYZN4e}43|Ttfq}BYZB--I~2M
zoT$_nu)5-I6uRlgT0k3sPBBL9H*9m#I$pbEak7VM%-DUU<1|HYy_NTt3OgTZWH4kq
zu1W44ym0qtCFwcncc%4e5EMg=x-jwHCUB(g#c=#ZvWH#0RfC!`iO3g_!72>h9@Pi_
z((Em)uG`N5tsqfiKL(Vyaz=f_PiLgTfjox+rNC}Vp?8PyMl7S)8DHfm^<e!1{p?Th
zqrU&4Vpz*uNX2rh`0(wzMChUqSR1z0chl+^uiUUHW7oRvl5XDY6|+h;*7f{HkZo@w
zr$mQ**QcyjfsbH>M1Dq(*>JSz`0<N7KT=)&qImNq4V^*Py*?60*Dpsn{e>-nXF7O8
zY^5w+TjKolu&?^uad9GJ7AjKChn?|1w)|7CE1s7&o?Lgr`((|P@n=>p!(GW1#|3Zo
z*}mwS&&jMyM^1ujlID2)@cZ>pBsE!l`O`qJ;~LD!vqka<{jUZcFrXb!8kDNVM@F%Q
zbfgkj99N)Y?xY@^0dLQV@L8%kymU_W+c*k~>9onXhn7N@onhiQ*|V_{!~#ZxPBAnG
zHxO$m-I_OvO#Id9r<9+LU%2sk`DbTNe0sn1&WDG8km_fOQR1=SshBS#>wAgTk@b)*
z>J%$<X}aWmzR&&4VndbQR(fhK6}C=LO`sM7R?g8FstmT7+CC$s$th`xiOT02-<KIa
z(W@0prh>#Fp^hqu_JUgW!Rs3ESc<6Goyi}^7Nu7gm%V%5vAC={r%ZciArZKO7%7sj
zx<rHnzEyoognyp81WG-Vefj#%hh@dp>BX_{zT;RNn;sFHFnK;TbHxT*WV}UWT>{9~
z>;~~dhlN607LgOHowa0;8`Rc_q~4wbhtE*q_6*3KprOqe`0Kl#8XTg`hI~G&IkseL
zx;AFxJC0i1AeCu<e*<ULH;NOb3vWJjeXPm?eTUyJew_L6>zf}I6_O}2<Imfr#W_{l
zGASAIY-Bkw-`s$^HCFQHuQ5q_C?b^}ZTjQ48^(YL+@sHpKZb2+V*Fj5F@=8)mp&hB
z#Bfs_jyV*(lcy^{S;)mY??}v~AI=#3bzhY+lPsHk2Txu&1KFgO*bz;HF!3U3aA=I5
zkMj9glCLh?YS&S-Kcy^h*AKP#s)=Q({3`i&yTS{1Q~uQN5Y>uy#zV?+JFp2h7t;)p
z;jVsy;w@0jGU%E!^lMR_R<Rs2^Aob7jD98BPs0`Rnv$Gr35EQ>ZrnaED$GwSD^$vx
z+g-D1lIU4uM~h-4SR@b7sn-nNqK<0AdIiMbrepxiC5lWCJu3lWcBbARSDoXlz?}jS
z{tpzhPZtnwdrn4fdbSgFd64}Cw52{G^2RU)4z9{-TpG;+WI5epa8l%^Lse-GSxkmG
zW^V@pLzz=|kc4LxWHNN`Y??t-j`AvO=(3=K6z4w2bZiOJmFd)c{0HgTsafe6PPFIL
zRAMb+sX-yE-FHOxi3nmyxw*;+{d!SOIx@j9Z-$AmF$8CiVFp#DW~8TXPjPx^*q9Sf
zq~puuo#ZvcR;8wAKs%??E!>kOd^5d7>m+ZUw=tc0O>@c%IZLzhQXxi?>IlH*tei|~
zcJ}t|*%~PPjuYi%Z%59P$++Jq<fiANJWdeUo8RqRNG!3L>6*O2y6S!gvl-+3_))$W
zNDkzjV&L1;C-a6D@#ME}{y}D(09?aN&E^YVc-&Rp{o=v_==Yv^f_hSPh^hKt6wrui
ziSgZ+nNY3V7lgPjvoB}}K+xkmYz#*hsc}>B5Lgl(i`7HKxQ4eUOEHB=Dr3tczg1V3
zLAb=q831uzO!AD+fvF&}=q&AoIu92XaaRH?LWsQ~Vk88UCCGcxAjO8aW_!7+TxXv-
z`j#dYI_(2!EbTqMdE9;A$&2qde}9h*2p|!3v8Drv_)M`tMa+(<Z`IH=z%nN8HbcP0
z^<0O6L@|&cKhVOU@_~E@uC6Wy8T<0%H;fgh)7vn?J_t9+??JQ1AjQ~4xK+XIIDOHj
zAIOMzfeJiY6L|JBuNGCyXJ__6LBZ&EA#e-bETi-l3b_ll>(?I(fo;E5EE=|LZNwH(
zPq6f(wwlgShJ0|=8Cv$q7#p0sgp>*+qN5{t!xeEvba}Pr14(sxc{Q)UBCalvj?gTY
zkUXJ$5(@#e*L&fnP&&e}`g(P^`GX(qp?E4&LiO+s6!?i`y^JxcVFAMx)(@y@R^v;7
z@d}Mk#?p`x-T>_#%?B=j%WIly+FNJ#EZ5M{-mC;;FV4NG0oMM_i<f@rDh;vi*JdmW
zGEeQ=`eWg-Z9}<u6l5Xfe8_cSb#!@m_Ko>9Dls%>AEm+P0mwR#{94FO*>n4HHDg4c
zs~+-9_YlHFL+BI9PSy@+3^8jAG!Eu1IG73t=TE_FBm++mN}yw6wU3FX0(cG@8VNa@
z5*00h0FDBho-~?WWd4^}-KW$^hx|z7^N2Ikpeq05;g1?JCG1N&X&0R@rD+}W74b4X
zq)EUg!Nf6)(zuCWpzaR_>SVo(et<p!ytYjJ$~twYJx-J_eI@8!3<KaNMc-FHP_NB}
zMuQi<I^R=}Sw3TNCG4&u<ud9%78gFVd~n*gUyRey6eZX)OdK0@%3?ZdI5cC^_zo4a
z!MJe%Tg6zY?=WPpcY!F@bZ76ce=4CIB#K1QhELT4_6~1y<!SGAxS!J)yp(hu<lMpQ
z!FN0mgGYQAs6y-XUUVse3{a!SFaw+m(D^{!j^L`9DdO=Z7Bc-C44)9NgVb^e&KkYQ
zwWk>Q%ZoIwKNCx@F3Cg7Gk1R0kmU&=b<%4}+G_|Xf0j)13&!pSbR9Nkb!5MSjNAae
zv{C%Z<!^0a{b%oc=s%-2fb)3dxQp)H{pa%cfE?17D~PR28)!Ci7i0fv?+*w(c{}Sr
zq~W<OFep9PSX{&46Khz*1GIUWj6NA6CO6a%(K!|apux>Y-RXf&!1^>;qJgM%;4)LB
z$oe(<M4Jq4^p#?o*8*tloFZP}^-&9PJb-h6qh|fF3!$H=KDn^-*fBsD9l$xmQA6$Z
z3l!ul8Cb<Tb%roSF~*<)dp*YP+9HmO#cXwX6Wk!f6B!!|Bsh<5M{=HxR-KRqU^u)_
z6c4>1Ki0fRHUv3;`0pK-<#i&v;?=QShA~?a>q}oj1I%WeBOUqm>peo}spfg?Jhom#
z9XGSQO*^yTBaMEF_@gr)wHWic1<<R8v5VBtJRm&mF<y;)wkX)N3NH6im|}5BeVI&<
zxnsxHf^pX64dd(?o8~&$e&I>9`uUT87*XsBIwuhOAi-8JB)WB6AtUYf_7Z<2ckLy-
z-;n^J{cx&UHGr3|0HJvBeY#jBccoTC*DqV3IXhS+uPCYCoeSL!eOhqKW_1Y+Ch_an
zq~ZwF3<d1I`Y{^$3h=QxK=P*<0tpUulVKb$cZHse9*QL?J~KzDCN8-6{UVLL0t5^-
zgv0&F4yAsR;Wcu@FvQT;(2L$O_!>6oRrHqL<;D$N<rT()qrCGNS3S#B<ZI9<ZzXH6
zWA`PFy@WqAva(IbV33N-iRC@$lm3m^S?E3cD-JC`wY834`u?i-y{~}TZ}=vh17?6B
z;t=Wc9qGe2UO)HYg^SXvs*{cTl)HkfLlzFAqBWa%EJyA$s27b<((LOPg(D%wd1%e8
z@gKy2qLi7NmyxU5Q@?8uM5o^%N*~$t&%_%-{5K8<@6~7GqxJibK(0fN8A;>w=iqj}
zBKn=?5LHSV5U@jzEnlS!h}i1y760U53Li?Gx3p5tXVUUb>q>o8@mtcP5{i=x(=?UZ
z-M+<<(klP_;Ee!ENdj~|M!hRmMkN`(7*&yxSC^Ql(&_Swixame=4gD&!Ya4!m-;m&
zHGK>+zWYw%bZ+yGGNmpjOLy=+kDxMMw{3gM)-CA)Ta;_6Hl5ymwEO^HA5*tenUj^B
zQ&zt@p@84Hv3U7v3b@XhTa<}A5({-jd3l9=^X{vk9y}{ObF&JFc^y7m6g8Q(nKgV2
z30VX+SV}TmdfIm=v3g4t5*!rb)3mBCRC9Cc>A9yyNL%QjY7nI-D5=*1pzqtzk^Gj8
z*iD%EDYw=K*Zcyp_hmPZ^S_WGr*Y1ku7va-E>B6MLc4rR{JJ^{g=_$o>??|oPe=$;
zm6L5Ea$BY!qvtBi!*!w2PKF}Tg@Uhp?Z`a%QJquA6Y~AB9Sxyz^PKc6XhXM%!)$dY
z#?f<4AK7em2W-!bHa%<xqYX2rJpce9iU%c<9rlN1#+4F(z-}Oa#-uGg6p#P)qqFnB
z#`d`Y0Y3*E$olHd)pUm5UPfj-X}W*=BOaL9m`k4NB)1ndjp(D4C%VC-9E*q5a$@fK
z4d3A<VQwr4f_Fv0gH6|U5@boJRkIp?^VCo@ry<YOm~G^V0!$trjJFdPK7f`(U=L{V
z>3-Yhj5jNGz43=}e!*U)L-&VTexRtAsH~SrqL>J+zcQ!QtEu@9w0{+~Tjum|ICc1#
zx~Ry0$n-*655#}n)z>Zst$vT6N}WpR<VVzM^=ijo)ORO3mc~J3wzNasA$Dw2OGg9U
zYA%uiJg1wwVas0M1f$#(+~mT+&+N})4sus8RuKy|X}Qdtr5;A-e+pqU&;UuQ{}GY%
z0t1Uk=YY@*gZr#Zu61JuxOsJ8{UDbaH_VS}X10JIM(gH$ObzxqENG}LDsJk3dpb|&
zNy5t_iMP74RwLIsI}>wB?6DI`r&Jv}@u?GqWyds-MU^*S7eI;SQpxR`O|6jnVA$%<
zJ@ijv)p8qq!R5y?xfJvof0T_OwL5G=X#g6|-i1cPTq@{nG3XZIEauz=c*o0yW`aZe
z<HGAS8)xT_KQk{p+z|>+67o}yuXW5%Day*vCs)Z;$Nc=PqLlo##~oAh6S7iLpozy^
z5FYMvVybR#h|`%BZ|{3k1th~~3@cnH7&3}&hQ_O(+k>x&&Gu{^iY$w*WLs(8{qjpU
zz;gnkTzg7AL^c$>K4!o{XSoK0o(yUgG5tDpFsxNOws3DHj}$;#F*}H3vV@v#qN=wF
z-YR;V-_du6bA3PQw90EypQ%2(R?$+asc+ly*N(^1qALZTeWuhO)w?S6a|{ylmtj#L
zZ+I<~UZFR(8D5K`zX8ANENP<B;?&ZjjFPn4^xCwY8RZ!}GRiW6K9`zJy&r@9YI6q3
zmS*4#SPN#OUn-?~Q8gIlPXkvO8o6AcbaO**9!I3K%#;i$_Q{A&3ri1A-<lC$l2Dv0
zB}YIxUjgy{uat(P2Vx-Ay&0+vXc~#5r-5}^8ISNGDYPn`PPs#e5St-INo57uB{_Qw
z4_5Ba&Ci4;u7BP3B+^o1R{?Mn7l263sFsrGdg4jnf<8tn^cwKS3_c|#GbuNv(!X$1
zPGELiS#nXKl=S@d4p>blG9VO)3o=%D=-vVwQ3u8kMmsJ?o*Yu+8#?JoNWZZ4zmrJ^
zdf?Pd_5s6;t^RD!%1#q^F|~l-OD6vd9i8b=kjOg?ED|&^4#yfCq2Txo1Q=b%6GZjg
z12H`@Jdw!%T8tOA16q!azTUXIN228Wj!yDD69p?Fn-y_!5m|AikSB_D#L+0W>y_Q)
z_m3;hsxB>cVyq|Zv*{IIN=q@&<M4&KlUUPhf7-t^4v<rEPAn$&wfj}SxsyYA$sM-u
zLKQHv7vXRE*A;DQ`Z{^t5wd@;Lr|S1%H|&&z43!1vm;U_nr?KWuQMxLo~l_8<_H@?
ziJr&OCPgQrer~E=U>aQ@or-6D#N;FWC!&r%V*S{clY1SuFsnh08%;-)KWNT*e;ols
z+-vV2yb<vc;qCN4>?Yz*F20}Byqb&}{B9jteD6c~o(?x4hIgJ)d^~$}XwbpHgXcdv
z;3G9S(@aHCQC3AlkyI`gXtl*rSqWNgLRM69LXoy2tGHN7CQbz-W7h8Ia_^&#QRP8d
z(b2xXj?q!z0*ZoK;|{lXy(^-2XO&ktH8g<iL>v^w#aR_v#Fy&UoPhWc9pWp}7AI6>
z6%|1r_V0?5_vV~k(>U|W%ssD<avjyw_trbNmJwOQsqdg}2Gh_=!&b#sEKgNr&SYHj
zxVsIZwr+E91UP4~9MbH1@+sjyy&=sGZdj6~TnVN}YcliT$I`6x6*-^rxvld*Uv*M?
zz`Jn4Qe{>a<+qgaYqp0Z3<#AT&8~^eQig6^wqjB6gbkrzooFg5DJm)|OesjyWul-`
zb?9RZlzweTrCB)Zx!-Q!%gT0E=<?nsqF6Gf@<c`k6zin#zH}p{dY!a5G}}K+ndOzU
z#)Cgv)r3p5Qf>LxEM@pwzp*=q*G#(QeLnS#cSjS8d!*mHS8gBqI*|zDzUdc7g-Ns4
zEn4g^%_{YYU4_jRP|L!kS!)W`Zs8x*om+W!Y~`kJGZGg{<!+dPlgMy|J_*M&z$Wo>
zsZfCPSbyWGElCd(r#6^+m>Mf^e_M87ym!1!EX^R;SY@H#(M$A}qCUH<k=LIRKRiEy
zjyS40Ky5_7in9PPTL$bx8XrV8$osQJVndG-Q9lWhhyD~*ACWV`shFmv8~TG=H^a~`
z1?)qa(}IFWM^Sl*V?T)=emkV%EYcgioAG?Xk7x9~3r<K!i-%KxurE)gf_NrZ)d6{`
zMQ0yt^vx1d^?g#7=4xhRSk2JARPNX=PA0d?$QL3P@g~|Qd_-*Muym&^Y86jovU#iJ
zK!G4ujen5|PmdF;cZp>q`ws|wi_YO45sJh4b*p)LNpdPP`QTwCx&FPPI(K(ac<!cH
zaBR60ZsSvO^3wBFds7ZpYo4E=5{2HMSQ-2!<cb5iC0RpniQW*eB3DH8iZi~9mXu5@
znp!k<4+(Z8V+{Uca*KSZpkFuE(wn^A{};)XKl3M)Yw`m#HwOTsk$Nf?CN7?~DXh4D
zE1w(ysC2|(Nr#Jf*47psRNcv0;jW=h5;D6Zm`#inWC|SWKb7eR(SpA^!fW(XL0k@k
zx**c|ptJpFz2j}nCJ~60Hl3!a#D6R~jJ@{9aknFnKuv`O1j6o8babeS%FG31nL^*L
zNIa7IZaR9Yr1Hk$pRQh!W);wPF48yng&nqvtW?kJ06sP$C~T8&&H4JK{qMnFFHxmo
zCV(cf2gC7)I$$HcVB44&Dy@=c8N|PVNBa>^Mx=k3`*;T#TSvy7ApNhMsZGC_ay;q$
z#`LuTkW2ZVCK}$Z1{#3FCeng?U02Ylra+VDmhHQW?+wjGJT|95uY8Lyx>|O=rcsI!
zq#<vANmi)z)5#P1mtnT%^COA|@&g@9zMyBwaAb>q0)EhDA7CK#S-CYTJkoFN>!DL)
z=8o$-m)ZnU^_ppGhbB@hX;!*Fxcq3}N;>J6Eai~}#P`ilFk}i0eISOW;#b~CDnU1;
zP9&|4%m#;7W{!%IM@XeqZ>y@`xjlQQ=3>f)+;f$CbbBgxRYFC?802o+&!oEcO7We7
zYYbCoI{`n`Cl`Jyg|x;9vm?hIp6DeE23<V-3T~la2Wi50Nd{P|x89@bb8dbO&4=G7
zBl1blNyKVWBUSq@k&+jNn+jcBYIbCZA>!GTUergQMSMD*Y@+6yr=(L!&~sHUAq6bi
z;f^^{nxtQ%AcyHTkU0+Fw~a>8!vIu)368o$pxZ`42!$MjlxX@zFCtuf*-+9^->Wm%
zkWGGh{yiPvd9Rn~9OUHn&(2Ec(g%ttdY{$;-fH(79e2wDdkJqoE8QhcTUU#-61hGW
zTZZT;`U~jz_PE!9JkUS?wYzL2@!QMy9|5faf{sFHdvUIj$!nZ%%H%f8Hjvqb%qC+t
zGiEcdflaUmHn$^ZqQ!{?$vWsL5qGv=(=$f)tmQJ>9k|LmTBfocbTUa%%e6Ka)ba&3
zJJsc9Bs;;0EzFY1otc~czq?79o9N%&%$b|nf`1Du$b*}}<OU)zZqT+daamqJUh!>3
z2(g_IO+TIMNOyuN#hy>+ig23E%2j<?OoTh!G<5PoGViZ_6~)IQ_c=xG+fW=3N$2%;
zyg<h8`I=fa2DyTtxfzfQkRAO@f~(fV4?Z3Iork*<lkgXjO~0w>CJDH-?L96J{?`X{
zoX7@n0?^MSNN;36(j0V$TCLkN+35lhrsq8ksN9ec>F*R7P`rL$6q)DjNGER+#kdty
z;g>4p2`s_n(@RjGJPPTJqMu%xP#!{Uzm0MtlQ+?M&H+){^_2lml>tY!`zp!2r;Z*_
z_6(Wkb-V9?OSl=O8)-}#IaoaB(Z4QSc0w=49l$1|NH6{(#~0imeYf~iC+M6^G?oYD
zYNO4&T`}bbe(l5nmFD%{7kRX}a-UP>KJBr93OesEN5J@iEWNUqFqy2xn0R0R7`^T$
zz=4zKwJLhE3Reh~m87K-$gl^{%Gb7$8{2RdQW;5Gq~uoTI0gNFHT_{V{u+dyP}$NH
zX0VK-A>UDdG6pPPf6_l4$@eF_{_8E805;Q9tCyCMka4(f83V4sHqvT@(<H)PVrL@6
zUaZSv(K%b6r}!|WrimuEZC!qQ6P;y{iOz~4>DLYsn|9GTvEfuFu0$N@MRE~T8V7Pw
zbj(B1k0z6(e(g}O(6~Y|3Bq`bCfy~AMCAR|3d3~z1bfiw%*57nI-9~wCUZysb|9at
z$s0hQ1gfB}HHJ*kKPG{1>c~{$c$LWRkr80@9acheT!3)j=MP4dn?}X~H$+|?(+h%t
z7Zhc~=&XkI)$Rv2w3Oc}eIKh^P~JglLvCb_Ru!{dn;a7!7lFIA^Kl{TTzi+6e4VrN
zH?k@BP)>DPZA5WIQD}5>d_oj1lOM+hOG8$L#BRtKnL6vMeZQ6-|B+lj_4U5@ziqr2
zvM=uV){>Mxar+udiuUiWDm#%Z-J4bsQM<J=vb4A;zg$;RcslcJ<_D1_<4cDDTO$>{
zu+Wt_eo*|T^tn6rSEN-(lx$1emKGn8yDc}OD!vL>s5aW_+>$C_*y*q0kQ`IzpC1+-
z9-ZR9Bdk1Ze@b0>ZF&Cw=sM}M3MfU`c{uTmZ@uqMuf$Lv;1Dct2yF;CquY5{YODv@
zvxy2s7ktFCXk)NXaN@H1jqF4H#-_w0^+$H;&V?M2LbDeU>RVaG5$PZ6$Rg@;vI+>o
zDUf{8zD}2cqzFF7F;H_pH@H9b{ew<`jzJ-qH^+WYPm)OQ>_rue4tYL+K-@e(qJEH@
zo0o%oFk6h)m7g3Z6R&4nulnQ!3MFJaKjH;IQ|WVk$3R8o?v44ukwM#1HdY2z1|3P+
zRk^z=|41a%Bq1YXfM1YS7hV>g8lD;(o*SMQRvTNJSDRN>n_3GcgmuqnD^hm_R|Ka9
zr$hzk2jvCtirSUGE3aZ#%5Leip`Er0`Mee3M^=>hg!_cYd)02N@i`rTxb{eG@tLjA
zB^w9c?zHM{sQ3t0@u>Q$xa!=hywa-FYAIbzQWO#U))j8q8n88aU3EZpKx6X0>b*4u
zjS>5>l>L`q&~CsZ?S|?s5Og@U7WC+0{M!@iZh&$5P|+Yadt@#!6Z90Q1V;qTW=>{(
z%?6kaF&kkv+RW9=&1{C*+h+64)|>g5Z8i%ui!zHhOEOC{%Qf3&_MzD&vm0ign>{f5
z!>rwWn)yugx6S97FEaNuUuEuZ9%-ItUTEH6e$4!&`8o3s%s)22W`4{3OY`r|e>MNz
zyxm-H!C6>a*jqSRs4a$DOtfgW_|oD#i(f4Muy|_GVew2T6iS3v!v4bH!imDyg;Rwy
zg>!`qh0BHOgd2qc!cbv^Fk09wyej-f_)ugaau6v+ylA3mn&@rOJkcVNr)ZTZT$Ccp
z5`84PCi+5jPb?M>6Gw@Y#M$B^agBJFc)z$o+$g>+ejxrs{8-{DnJZZ$@sg~S_(%dJ
zp_2C`7bG7`u1H!WMDjw~M><+MQR*h0A)O~(B@L2plg3F;OYd3QTPiJ`Etgs@w_I(R
zZCPYlVR_B+Tgx`f=Q0bKrOZlZD|3{MkWG=zlm*JtW#zI%vPRi^vL@MYvUXVqXU0i5
zp6kyI<=i-LE|iPr;<*$qlgr@>xE)+Aw~sr_o#ejeTDeZ{c@Og*c0FF}q3Yq>V_1(#
zJ=}XN>9M|tPY?ed;XPt{B=$(_vA4&^J?{2+-qWI|rss&B^LsAsxxD9^o|}3G_6+YC
z-E&9J6Foog`K0GFE1A`6Rw}FhR@1H4S%q4~S>;;ktV*q_t?I4zTD@m=-s+mwEvwsB
z_pE-ldT8~h)njXswcL7`^(gBJ)>Eu!Si4)#xAw3Ouuiouw%%=h$oiD^dFzj?FI!)?
zZn3^&{j2pK)}1y|n;tf{HcA_3n?W|iZN}TU+Dx}uXya+K#U|7y!=~Eipv`+W=WQ<9
zT($Ya=AO+jHox1n+5BZgZEbA(*-o-`vt45AXB%ysZCho#)AoSvVcSOA)3)brKe7GV
z_K|J7?O(WRd|@ZH<Lqqg6n4B_AG-l|L+wV{y=k|^Zn>SmU7TH>U8!A_-5$Gl?M~WV
zu>08Viro#nAM7655jlpuTqAdp50np+kCso9&z3I$G_{X>vpifLEsvL{$TQ{n@?v?F
ze7F3d{FwZ-{G9xv{IdLp{7d;a^6%xp$e-E^?R(hU+V`?|u^(zb+J3720{eIDm)ozl
z-(VkNA7LMBpJrcVztjGJeWU$*_UG*{+F!B1VSn5HJNw`4+w40PW(u)_Q#dL#iXn;#
ziW!ReiX{p!#X5zbVv8b75vhn%BrEb16^gxzgNmbyCdDPi=Zd?EpA`=kkFl7UIaoSa
zJIEcJ95fCt4uc$qJB)Fd;P9ryJO@vQ)eajR0v)0pQXKLeN*yX4>Kyhs9CUd1hD;A_
zolH?DZ}q0ko$0D~->kkIBI6{l2YODMto%Qx^x~c!lwP-gqx1p{`@c|n-TphJm(h0r
zru619N-uU?kZFcw^E7~$gbl)|Ss)`va4`g`9`2O}%O3hM-jJ(mu|W(5j~ZNrI`Ft2
zWwh!VgIGBP*H^KT8h27JyDS+l<A;d#VlZCTV9js<2_E|Zyy(SBZh^X6g9kT6#&ht=
zi3g}T2VC(2(GX19V|XrdrJ7?zNX~c57GI8$COL+5wGuMbS@?CCp=$A1H7EX9#tm2V
z+zMbGjRxU%s*H<_-LB@Q$u!(hJg9Z*v02S20F<W#S{@`C6>DV>i3UQ;Aer&z&At2L
zO=6^bUKUrDp&Z0RI8V(1w3181{4GgSqt(>L{P3WaGbt_&u@469rG%S_WF%9OgqO^e
z$r&=h2tI339Ev>{R>#wa<e}&rh>GKuxR3IGCwdP|X6F;|#gm7?6X-zE=E^wnFd4T3
zRU}E0ae3+zS+$yD$iJK@1&m2a%B0-H{1l!Wg<CkSYZu5QM@HhJ(0DF*_=}8V%}PXS
zl1`er@6`siUM>T)SAGiE%~gp>kJb8(hK+k=sO{KDZlhYmtwtU8QFFs&!_^!XDr1R3
zc<01#s<|K(wCh&TW1x(Kz*-8bXPEl3m|J>cO*8l7o43$*-S>v<HWSrIJ^n-?*2}m8
zHOo5qB{=b7<jQeKpzPrgagyxeL&<dY5Y~JiXg&`#pRW4&pOwn&%p7pI6vR7!nyO04
z@be4U5V*l9VLN^a37H8!Ty`Y5{Sl{1b#{lKU^)mz8Oo^R{dEz1d~`x&QlvB@gDPTi
zujVX?A&S`Q48Cw%QB+B^G%;dr|0pG-hjKFb<dVPK^Hil@{J8@#QJMG^6>Tr-;Sy8y
z#eh;3N1sC92LKeANdQgs6bD2vHOC;T@axSn{ZbmPOC4jNdO0dzV8LBpjBYSW&E3aU
z!VVcXQf7saV87r}@_Emuchm;d_AD8z^Cjx0rXm@)lF=-D)LewDmqdVDpxH7`u>>;&
zdi9t$-yFj&lew>y4dKL7P~SEn&Js^pO4Q^Yn(8vL!w`Oa)m%-!IvqU}DNByZIL2?{
zfgQVth2EpHWtO`0yrD%w($vpZcdQbfTQ>OEbd_OjtIRM~GX2=#bDn(1>St?2VRhs+
zbse-_#p|`?9b^NLW4H#D0E^3xy}hDan0U*KY9efSj_B%<Aqmv+c<4P2$;fLmjlsj<
zp~GFdpDfwL7*LA~WOP9`)OX6b`RGQt&9t8eehalm5AVA`qGdL{$5jkp+(7V`$Fr(7
zDqZ7z)zeWVEr*M9`=M~gjKrB_pKq{HO{~<Qu|N`<!(pl$ofbSPPt}|*xgZf;5`w|j
zWCWeo$nS0}0|46|*}Mhe>sRu`!xh}tc65UZ5UWf$H3kd@)B1zOeOj}+vqk)aY!c4P
z5}?&`<G|H3Ld}6Z*pHD1xi4j&p8qxo^<9ID3`FzlH;VG}b9IGE4st^m-Us8+L=Bz7
zl-xZ+l^&H<L8la6;Y=?qq3^4>Swu$VkEmO{loY6$j?~zkxV(7WJ8S^Q{6^}bG(>=H
zCJg)@wtQ$ocu52<qUg9dZDvGqtkb<A#j!P+rNvIYBnx_pmvUvY1Z`GAqME~<W^!~C
zFmyOmb|&HOejl#*(Id&q%W95IeVjuHhBujw>hqBqJi1y1{8BFTJNn%$XriX#C2Hsh
z{EoR@l5s41OV^xeZa$&6ldW0Gb5B#%=mMlS2dyHG09IK?Ej26X<TvNfnI01v6_XbN
zF!`)ZWq4j?bTx!MvsFj)jusp)B2!P2k#|7>l1fugpG`me3hF5oWJi0U@2NL;O=KMF
zK5oPpvk~T9E-Ge61=`x46so!UkYic(^-i2(4@RCI%}?X#e*9n>#;#eNleb2*D1VLj
z#5YGQ>c7@$*L(FBs&4Ln=s30s=tsW~z??fsN%rHs8K)o1ciJ0t3T_GJMEypL&7taW
z8P|K<xZd3B=)c0(QD=wMhDLqkCu-Vg@L&+S2Ky1XBBYJtTQWU9p!bSO;-d?qR2;yd
zXW=}29?AkHQ2upS{<bTf0M_d_RdAaH*Y}KP0(K%W{+v;V;GS9vgRyexxTqa56`ZHK
z!=AQy!g09z*`!>6D%ZmNNX;D}u`;lcK=Qahwbnqs2~vD)3bEkG0QKGmj-RuUsx!Uk
zNfRYe*^%3$_}13SRu!m-&f&SFkLJ*JQ8p$!ow6dmBBPvty<t@T8%L$#pO<{|m6F3v
zivcy@h$|IOPu$kBp6!Tr1NSLSo==UnBjRv1^x!91N0WZ9g5K;;zLL;#eF7Aji80Qu
zh_dQdR;}c#PwqSe;^in1e?g+sujOLZWH=^&dtBghxYn-+1JFqk?j9zSVuT|(MdiBk
z{1T^}g4}}a0%?voJ2@vgKY8a`P>N}uh-?>gl1XZAKPFc$H8nFmRbvPPxK~0d6Gz0}
zBvJ<9pPW2i9|pXkqPzmgI)c%Mq{uiQuyX-=lk5HcxJt}I`ukv1jlq528)Bd)SwZM`
z#=Vx5^ctS7hg@!^XmI4J*&5JkBP9VeMnt^~_c^F|)j2G|RsdpxV=zJIB<H5&r*r^u
z%dtMBTGxPTo3U`=j2R0*yg{(s4Ny-}b3jWNDdTpju}xVnvl1J1A9E6-29kq8=h%v=
z3q~A(B|ejJ6{<pAHZTe5ipuMDDbbBe3d$>#+z-DJn<nV?APpd18o9JEAq==h<byP+
z1&O(d+og$#=_$z??pMrDs0-tWS7Kh}vC+B2PM$;5z>|W~c$4yYy({+$-H>epg<|ZW
zFacvWe;t)0d=t|>o!9}{d@&dU=H4B5>BG{}!lFEYot22Pqs0lCadAozYbH~%-cQ2a
zm9gIPj+z^bySi-{By8Ho0(oQMhckF?m+aebzn$=(e>u_!od!Y~SC~fpFr_;J_$~pQ
z5#k@!nBE=5Ef~yaiDeEjZ}PW0ksIQ?OkGM&+8Ju;s1Mt`NKG$^XOPJv<6NYnEw128
z!p>nFXrI8^=D>$$#XxpEIMQEc!HMgz1=*?Q&d7}S*W4I2mMIk09%}>}b~-X2f0+tx
zR9C&OV&`t<?x>w1I-aij64IR2dNZiq6&uVT+fhwdy}?@zcD?gRS5TnS6(lFRUU~Zt
zGr1{hC|3h`TLCB8hxv3jN`Nj2MR4}m5racd&4tPII_`2TR%=j9ImQ`vjzNH&Ll)WH
z1-sOJ-hxYArrYwF?q~QWU^~}I*jAW0sIi;kx}m(gkhr;8ETps%TQQKcfeua&b8)4(
zppD}ylFQ>uxSJO*-sB{DHR&lT%hQ#VL4UNQD77dlpHIryW+$dYafZ~9BVO36iev>k
z4Yb^{Qt=PPtU$mR2R0eDb4;ThHYq5Hha{>jrc!T(T?UPvE{aV}jE@Ckr6eIQp)iF{
z%g+Z+5k$VBQX6S6n$F>DU^SH5`D^+Z#)|^Q)COv%Y%piKs2_4*!Ux;SVKwfrF`e3T
zB}LmI|DK<_Jy(@3(I%#*CM6`rI~hcVU7}I?ZzLR5PM3Wn<Gx|NRLdp+v=(;e#=Ssq
zceG!T4AWi|=ydT|?;n7x1#H~(s>I+yb|?%3$yB}Zp;JX1*%x5s>9go16*%<LYr~K}
zm^|<%=H9K{)p(lC8t#hP_?m4c{I=q-?GXvdY1)*yWGN@UO|Eo75CZrwAumxy!;HX#
zX_`s&8xi*rJ0Xz>wbicZy09WXv?wq&avK*{Qjt=w>Vlf#O4VlEB6Sz1D)u;%-Sgin
zfpm!(^;yP{)rrqCuuYl~pL5VQi&c4J6i8<_bcG6{JucWTRN$WWHApM_lc|U|A}c=L
zY30iJ_^gPMI46!WR?g35dW<VY!0!Qr2I0@XLHmCHeV>RkBiJBjMXR}4vL??ZY77FL
zEW*?ZV?Wdp9Ep6@sIwL<AoJ9}jAYe|y3I2E=iGl)bAYxwB;$qvbW+WMS98!-4o5_L
z^xhTd)9Gwt2k_Nc@EVNOTgmLdOO<h#u}HZxCg`a$dYhw`0DHE?-v?m2wtUd_7cSVL
zd0^ha@H-D<9h<dWWu5FSKw5Ab<0La>96F0Vw<lH<_Fi-RM-26Q$lXJiH3hl(Il0+V
zPVp1z5EbWCmzOX`oRaEjZI0$A+JUxSqsHR+QuvpHR#B9R{gyHd=cdNy6{F}ZB)ihV
z^uc38k+nV~gkyINM9Agl=W967@v!oIBI7Vee4*yHMWzN8g*k;5)kW`8af{XN7=d~_
zbpd%OOO7wWS#Wn<-EO{Byt^(eNW(pmWpRqn)naTOpn3-o{ur{7NivQdtTFo0kz3ea
zmkCI_(CHjW#Xd|_S62pf8Fb{&)O+_fH0<5t3vv~<|B}HtNoD0{7HG!l)5#0+m#DO~
zw4zdJm6(hvh#Y(BCO%DEL?lgon!1SGdXq*mXA+$U`>q<l$-8R9gK?nTh$W(h+?Tn#
zc2#{>t=I=~*i~WsL39t`4h`JK%HrzPH$Gg5=^T`Ru3S@_KL-#SE+k}qR!BXk94+Ip
z$;)Dm=)ox#du(`n=*mxSeSY%djjykcoyZ&h;@0vZ5fNJ>L!OLqEG{i6D=n7R)N=!;
zPwVH>GPRYz|LN83s)E9z+@egbpA0;)+)>)5f4=56U#$%Xj7%8l^I8qJ9)jxkA^z8J
zl*xe^#r!x)aCz9y1U|h$mr<x<=Ln8<<(Witov1GmXWX7l;{Y$2m|UR4?blf2<c54=
z)+Gno9E%oMDzgeD4={<KS6Fc1rLjlV-vh54W*fx}F^vMCD*YEsfUVBxjoGg^+Dd{p
zL#tsg&yg}VBZ+@fbK`N2MQ_AGp@mK3+#(rmL|lhuoWXt^Dijkn6geE`Bv@oGE3g>?
zudY3Zy}d81x>tT#aF+a!l^d8~SX(~75;$H%F3~FrZAM~}R>gT#dK_G>0c@*IH0R7$
z8@^U?CwvdBUF++&W^IG-@#75*$9Xo+**e6Hz$OyRZYU{Bj$`|NOyR7>?a7xiY%Cc#
z75mGPN3y+~-WGot-Gxi2#4UuXx+=G*5=S)>##x-gWj{8ioCzL~+){I{lc@P}YNdjL
zck{D%CK<QsOgw;-j8VtNqyjC{aL|BBn2}j9eJF6uz4aq^sj2A_r{f!Q^5(5em99-)
znVzNO$Yt5cUpN=Gb;Ae=6!+1O7ZE#uYW09Rs6Y(?E8`tbS%<l(5a>SJah1mbDoZQl
zK1Cm3jQ(z17W7baObWydUGun__0LYQ3}Uz32<<G55;P6Yj-1|=k?J@chGL>He($3v
zuqxuBQljJIdE+6Q=f?2QTErZ6Auil>fbVj~t|Rf=9dw8%0`Z~UyANr&9Z(Szk<BMn
zCRE0kOEHwXRwxNE!<KQzhYN3j>J*9C8)Y3j&<C=BFFUG?(Fw>GGH&Bs>flCYs!aj;
zrNJ5wcs#W`R9}h<^OKS?LCiwm#ex5l%u0`q3x^e1%&C@zZ42<z_^x|r^&k}|BD@-F
z3!9EaVLRDrzD~m_CS{5Ya!F}aeRQRkOOd9eB&A{5vKL3i!Y_^x{jgD?)_M`NyQ24^
z&>dk4bWSYyVH{Qxw(&%*v3;EmJp|@{S?_V*Kjj!&D*JJ8Gxj72wQlWCta%X47<W6X
zA04u(RdB0)4xc=Em_0tLITEkdo3km0O@5GZ!}>wF!J{zWT09y_I4<w6%LOGG$R1_q
zDA9g8NXKA2b7on`Ff@_S8Eod7Ppnyro~6TrrNgQdpysx-b2>KB73FXiH*hq|3)A}L
ztd~D-Jd(S2FN@lbS8=K=1}`o=bK+|acLWmw*i`w;824fmm8Y}X3`(=+;7+>`0~cCd
zqG}U&?@@9fV+*7L0m}z!15*VX<s2E7MoL+SW#d<8#vL^-Eyg!{GcFChff|lY>qZ`b
zE(sg<6!^ua2gi}8+##S=abQ7cz{;AK%+dY<5H~TWBS3=cN87{bE@fOc2a(cYkRz=i
zJvefcwGxy#^Bi4)?$`&wKpvd17adFsdkMb~bK-`**qd%C@I@7cp_aosTQFMb3n0}W
zRdbNhVq+b3#E$Ts0f##d(olUl0sff@>;x9f^75ZlAYt|wF9foeHp`bb3$d?Ro<JlJ
z2)7Hzz*}mUX&#EGGGE5=50;?FkWhh}!1<{_EO>$MVkC`!#y>{y&H`tn$#R3otWWp1
zUU-8qybH|4Mju^&SjfLazx?nIPA|XxzqH7DSc=3)CDLR6w-Xhbbt1}bs7sMxg1}j@
zPtYJ}6nrH3s&}70e4jO~R;_&Nl-7Bzt6Dd<`n7Ipjcd(mt!iy(J=%J;_1o4zTA#OB
zwef8O+6J}_Z=2FKuWeP^mbSRIoVKdAhPHEUSKGdA`=jl7yHz{iKBawL`>OUW?Q!in
z?N#j!?dRIBwtw6H$5Ylf1W0-Bf21sEwQ23$>ejlTbxo^J>!#MAR&8ruYfbBs*5=mh
zt>3k_wh7v7+MJQ{ptg~1Zfy(N*0cq+Y1{JJYTAypHMd=F`>w6EUC?gR-n-qceL?%0
z_MmocdtQ4@`;qqM_UrB6v6NqYkG{F$#lja;UyS_r{<lTnF0$!~OE8&@B`(9zb8Un+
z7B=QKW;O!r7uHX$pIAS(Znti;Zngf?>Kj~{{ciop`l0m$>)&vJcHjCJ>z}QEvi{Nf
z2kY;xzq7t)eb@RM>#uRScH8<Z>o2Xpu>KrZZMUp%a*f8Gw)MX><*NVk?f>5=v7iS=
z04HD<#~5~Im%r>6^Vw=^*QWvt<3JT$p6@!6CDAg<_q`V{p1-g(6EmL{2+{QqZ(U=~
zlGPu+|L3?dZ?w<~g3OxXPb=6e(jpmwU^R>VpC0zT+kGV)kO*UXH`>`dCJ2E9=BwWj
zCK6${FgN4F{NQ16usGqSG{(o=wSv(mKPI<VO%_h5HHLR%{@A1;gvsot{4xJsd3f=H
z<%fMU<%#)08DFN~U7nZa_#f}^&*EcYOr|mK%pH$0Kls+|7G*3?x8GO4i_MLB*@65l
zf3-aSA9gq6cdcL?;u>d6qbu&7rf|&7RBmQBy_?cDg@L);_-MQGZTt>9>d%e&!BS@|
zAB&g08y{_Vxw^kunBHMBe?pkdUw0n=&188pK7W57%KDbcFKZ7|U3I7DhQ9iu+ujwI
zDeQlmT7iQ3GnM<_@(lOxwzlauH=5#vf1xq`?)bXht(j@c7wScYcjV>o`mpSdll1}i
zm}>=Yc#Q3Da%1Mpc)IKZyW=;yTfo2Zd$(!w&+=%h3sZUE&&}k<^1<AV-;k~`PP`+Z
zFY}1FhT-Wc)C%UZ2YDNY=jFR84SZwmEnso7_BZwcL03Gcycyl_&6tkKZ?|cR$Cy7B
z4r#z`m?<pFBMZ;U#!TdaJ?oI3h&?R4@jFcT?P(gD-Qk>#@d)7OmB(0afuINbCe(I)
zV{T^McIFq~#xaw*v$T!r!+bTK|FoO@!5n6hh%l%amLHZ5%n2|3YXutQSp#?D19y$_
z(RP)k+n>r<hVJn2>jrnO`<pQzrte5^I&(*I#)tVerr8}|w?DBdEb=mx*;(F9<%0jg
z%*~jNR^Tkrc8wdOKg0vS3RC!(Cfu1_2$Q8D#lzZyxv})w!{z|i*Wngma%ZN|uI(~S
z^MvFt!64JOSN$SwHx@6-XDk<s?`0TMTv)7`TerJ23(v~dowhN(SL6QQ*aw*M+?{`C
zn0CzGogZU8BR><FJ4>s}--{Qf`0zdj-yKcw-Ql|Znfx0~w!zqd?@PM#J($IXcPY%i
zEZ_h1z^@g1Ol|+4@tg8wGTC=#XOF2am>qfKn907Io>$+Q-Sqy_u7zJb-R}@W`8!UQ
zcf@Io%VaV)<Ac6rii>??c4o52<cG!eYB*Dxrf{Y_GXKmj)e9D}^04=RswWl~YkwBr
zRBls#Ukzu9_diWjzD)Trr7Jo9cb@Uh&6GaU^ESqDsw+KH_*YF97v3G<uP030xBVTL
z$<Fc&d%teK#`3Xm-R_G_`Rw*T!&DZ$J2N-adv}>#O#V%#1nXgU+|F>@jCcpKZ_J&A
z@3MF03-+%5t`!Vm@tMZ>tLZTRq8EaGtY0v9QyVgOxLGr^J1@q*V@d<={Y-i7cC%-3
zywbm3mfe^J;$ivj&b!(ametFDK5R`erNd12{AYbi%)83U;>Nr+5`MbsN-G#{3WIoD
znEk*1TOcrh-{|8tGo`?++wTaNU3N3<wnuc^Ed;iLN!@ngEAAqko87zJ!8G&IzeKQ5
zu(I1-ik*8yx7`w_>C@eIPM{E6?6zA8c)@K<lV(CzJ*xzy+ioUsFk8}XHy2o$ZSJ;P
z2>O^scH4!o_z?+Q%*wmn#jm(a1a)TTyWOP%NAtDac1wZ1xhWn_FxWi1+ucgwYJT#~
zK%Cb7e0;;4r?1`W?L2GkmJN~4qeqVV*Kp^l{{GI!Pod5s-l5(hTfH|7pBcC%Y-)se
zXkdW%%=z;?=1iS7X}-tI8Os*TU*xgWJ0#REaEtTU;p2yoG{&*O-+OJSH$rdp4si|(
zbPn_NcK$oTQ1A6&%>Twfe8iWHh}$_VWbFp;fVCl;o!5qih4`%tH+tC;80NR$I~2)>
zggJMo|95_U!@`0ljTphgukFg)aKFHRbQ}R(I`1u^-XjEW3IYW|f=EG#z)#>K@D+p!
zoCVVbYXw^c-muMrZHr(7zB>y>3q}e?3H~J*4*OJrKYq@ygbFpjc?&`jF2opm1ANXz
z>{}4$R6zvXL-7^>a}gdNK{#Sq3%@f3^9Az+9)daWH4PnaKI}6EGX%>73t(S_x2487
zLy<!ko3mgnVjhoYB<!YKEkJDEh>xYu^5reqXbk0y)C1uXhO)6Q|5RQUW<7kE;@^l6
zA+LmC@2nIomJp<|0saGwdEX4TwQyzbeu8x<)8DadK`8dN9==1n>mmd$toB~5jen|b
s)(&B4mq{38BT$mA^w<7dxZ%e9{-66Cfg0+{%@$)VvB8fK@L&J^FN3;7EdT%j

literal 0
HcmV?d00001

diff --git a/oxAuth/Server/src/main/webapp/fonts/fontawesome-webfont.eot b/oxAuth/Server/src/main/webapp/fonts/fontawesome-webfont.eot
new file mode 100644
index 0000000000000000000000000000000000000000..e9f60ca953f93e35eab4108bd414bc02ddcf3928
GIT binary patch
literal 165742
zcmd443w)Ht)jvM-T=tf|Uz5#kH`z;W1W0z103j^*Tev7F2#5hiQ9w~aka}5_DkxP1
zRJ3Y?7YePlysh?CD|XvjdsAv#YOS?>W2@EHO9NV8h3u2x_sp}KECIB>@9+Qn{FBV{
zJTr4<=FH5QnRCvZnOu5{#2&j@Vw_3r#2?PKa|-F4dtx{Ptp0P(#$Rn88poKQO<|X@
zOW8U$o^4<&*p=|D!J9EVI}`7V*m|~_En`<8B*M-{$Q6LOSfmND1Z!lia3ffVHQ_mu
zwE*t)c_Na~v9UCh+1x2p=FeL7+|;L;bTeUAHg(eEDN-*};9m=WXwJOhO<S5arI2VL
z{9Wg-S+>^lgVEPBX5Gh_bo8QSSFY{vM^4hsD-mzHX!X?>-tpg$&tfe27?V1mUAbb}
z1<tK+4MW`Pa4jnl;E*j(B0n$uk(F!KZJc~{@t5I$iZM&?>dVewCjIN7C5$=lXROG%
zX4%HIa)VTc_%^_YE?u@}#b58a4S8RL@|2s`UUucWZ{P9NJxp5Fi!#@Xx+(mZ+kdt3
zobw#*|6)Z(BxCGw^Gi+ncRvs|a|3xz=tRA9@HDV~1eqD)`^`KTPEg`UdXhq<A4?@H
zt_R?$L#2eDG1+i2-_BIvwM}V8*v<M|x)Ol5=3q|wT6^^sSF#if{VRuqK`&g#OivMF
zTuw9U6DFO7{4$JD&HfE{F4feK9)zWDazK<BbKeE|T&<?rrFj@iOL6o@IHe1U{3txl
zngm=fJ|CWcQ#vIr(x(VcX1brgDX)CKIUFp655?tiA{Yf>18})-@}JTHp30^)`L{?*
z;c)alkYAc@67|W!7RDPu6Tsy@xJCK8{2T9-fJw6?@=A(w^}KCVjwlOd=JTO=3Zr+<
zIdd?1zo-M^76}Jf!cpLfH`+2q=}d5id5XLcPw#xVocH5RVG7;@@%R>Sxpy8{(H9JH
zY1V)?J1-AIeIxKhoG1%;AWq7C50ok3DSe?!Gatbry_zpS*VoS6`$~lK9E?(!mcrm1
z^cLZ1fm<p3RQ^CYW`aW;^)ops%~EhwkAbiO8bCayMIJSjZ{Epi9S70Y2+zY)zU1<4
zl!H&@!zizTIFu{m0grrA6h{tu4TG~OX*P?TlxD-=2K@Ol5J!D1(hwdwTtq&U??4#h
za(L*lxitBF5Jz~V0B=Lsuv}URcuJH9)h+k#0v-%*xdGK62Y4>x5Ds`-ethCvMtDTz
zMd=G1)gR$jic|1SaTLaL-{ePJOFkUs%j634IMp}dnR5yGMtsXmA$+JDyxRuSq*)bk
zt3tSN2(J<@ooh3|!(R%VsE#5%U{m-mB7fcy&h(8kC(#>yA(JCmQ6|O1<=_U=0+$AY
zC)@~M`UboR6Xm2?$e8Z$r#u8)TEP0~`viw@@+){#874R?kHRP|IU4&!?+9Cy52v^I
zPV4Xd{9yc;)#l?0VS#6g@<rW5y(qtdH2J(3b5d9?JVfcKZn?5Wd4+kO<~yFpIfs7;
zZx4Ov@Dc3{d`2P6O=aca2J(l$1M$U$`R8GVyi4G}0C4Bz@UEkH_|1673GY)mz}m^>
z`#y))03Laq@^6Z#Z*uvzpl{$<L~n}EyFx#G=luiUX~4qe{2oe|&y#RRo)U%OO?l?$
zTZzUf(in1a628T_AUH~wt9L$~@aM~<H>JzFJgn&xHlNBS|Eb!E@}~Z$^m!a9k34KX
zT|VETZ;B_E$Ai8J#t5#kATCAUlqbr&P~-s)k^FfWyz}iK@`B$FI6L0u1uz5fgfqgU
zRBmB>F8s_qp1HWm1!aXOEbpf`U?X|>{F`8Md500U3i;Mh9Kvbd(CeuC>077ww4g^h
zKgM(A48W`XEDE~N*Th^NqP#S7&^w2Vpq+df2#@A*&4u~I+>t)9&GYcop9OtUo=;2d
zGSq?IMBAYZffMC1v^|Z|AWdQ38UdJS4(H(nFI<|%=>0iAn3lvcSjIR(^7r7QuQI0a
zm+@Z9QXmf!efG1**%Ryq_G-AQs-mi^*WO#v+tE9_cWLjXz1Q{L-uqzh<GtVMJ=FW>
z-Vb`UBlaT|M;ecG9GQJ&>5)s1TzBO5BM%;V{K#`h4juXPkq?e&N9{)|j&>ZKeRS#3
zOOIZ6^!B3<9)0}ib4L#y{qxZe{ss8}C5PC)Atkb2XK%PS)jPMht9Na0x_5hTckhAT
zOz+FRJ-xk0*b(QE(2)^GQb*<<={mCZNczb3Bi%<19LXGc`AE-^-lOcO^Jw^J>ge2~
zT}Rg*O&{HUwEO6RqnV>GAMK$M`~TX%q<>-my#5LOBmex)pWgq|V@{jX>a;k`PLtE<
zG&ohK;*_0|<6n-C93MK4I*vGc9shKE;CSEhp5tA|KOBE|yyJM=@i)g?jyD~Db^OKg
zhNH*vXUCr$uRH$ec+K$#$E%LtJ6>`8&T-iBTicKH)<!M=AO4U)COR2qa!?Q>SNMZS
zB8UG!{1{Y=QL&oLMgLzR(}0Y>sN0TqgG|kLqv_VcVSLD)aJ?AC^D!bLa6K5Ut1)YA
zghRXq;YBrYhrzOK23vXorq6v~v*CBb?*bYw$l-3J@c<vstBiTmaD9yVwqv?YFcxrP
zNk+Qj7a1#A3mJSG+%B+K5e!p=mm^&TrihAlj8&qn&^EYU#=_lT%|<X*9l}%!m`D#}
zu}N5--^8?uGHd5ER)=(T&!Q<%M#D#7ol$;c3J&k#U2upS;e~sIv5~tNYue6O^9770
z5^(S*k#{l;_Y_!8e77utLz-6L*t!pFqZJPMv^@c~qZ1DA(JSHJV{A-@vG%o$jfLxI
zhXY>Y5H}8Gr;t8{e8!J}L*5e>!hOQnM3g=8eoXDiYZBlmBW?=(Qvo;ib;hP4-|5>J
zo6*MD%*UW90?aI=ncV;fJZB$fY|a73<^rd=!0(I%TsLE9TH#hRHV<&~b~82~@n<2=
z1-*<dM81nmj4e*VZDVXnI~;I17jR2!;84bS$fIj5W6P0#`A1-l6u9>oTQL{zWh}4H
zGj<X3ya;7p+zFRq?2<`X!mMz>X>}SbW{R;(k^VBouiebp<&Q9S1<Jm1BV+5Fa7eoz
zX}*Mfu3>P`GIlM(uLaz7TNt~37h`FJ-B1j-jj@}iF}B$Yhy1^cv|oM`3X|20-GXwq
z0QapK#%@FUZ9ik|D}cWpad#li_7EK6?wrrq4l5kOc5H@2*p5ENc6Pxb%`OEl1=q{i
zU1`Sdjxcu562^8fWbEEDi1(A=o?`5)DC_=i#vVX^4<hctPZ;~!{fu=Ze$QOS9%_Jl
zgt3R);Px^0$OVi&ihTBMXY89M#vVgnkG;p(x8VQQJB&S!vc6pmcYv`2)8Kj-`;U!q
zFEaL>5ZpSrpE35`g>WA+_QYDo!1%Byk?;4A*Y^%H_McC{^)mJp(mf6Mr$1rr8Klp<
z@9$&m+0Bd{OfmMH!q^XxU*>tneq@E)#@LU6-}5Nz`DYpXi4*QA#$MRP*w045^)U8x
zl=XAu_Y36n%QPIqUi^r$mjH7JWgdEmv0oiv>}BNj>jt<jjQz$0hxc!-a0vhHd(f)2
zG4?ye|L%UqUg?5Ey5Fy6?A2*-PcZfeg#7_{y*3{XIQ+2~4rRQag8La`e*)~EP|rVa
zX6(NZ_g{}O)&rd1K=@zQGWORH+?$NOnP%)Q!2d17*xP`6`#r|qLHOTaW$Yht@4~%z
zn6dX?X6%F48T%*Vjw+0O_z`0tA??2sjD75c1D^kl^q(w*LtdXo7(0ftj-$-J8n~wz
z%Ua>O;GSSiGr=LO--M;f3$4%-kcdA5=kp1;?w1)iU%<G<3AdZ^qGHCa3fv=%+Zq_R
zV=8uRVcdmpS2yGC7a8}o!M%xTdOPF38aTlE7sB;19>_3WyqWQmjf@AcVZ3xc<7I~#
zFHgbYU4b-}3LN4>NEZft6=17@TlH$jBZ!NjjQC2%Yu;hJu9NWw<k5)t$aQcZG2Ya}
zc=HIj1B@s3F`h(t3t(C!P_J4UA2p5f(N4Ht#>Z@DynQp=tBj8Wjw$e9<5A{>pD{iW
zZqogXPX_!HxT$LypN98z;4>ox_a@^r4>R7`&G@Wh#%HG(p9^;e{AczsK5r7^^FxfE
z1>DZ=f&=UVl(8@Y2be_)+!n?cUjPUAC8+bcuQI+Aab3F@Uxu=lJ<IrV;CVjMUGNy=
zE7mc7;Y!9YdY$o=PcVM*62>pt$oQq38DE=X{7U3=m6P!eKVy6&>UK5q-?WYKFCon}
zcwbuv_Xy+HBi;48;XYwJy_)eGknfFvzbOHS_{~WF<pYf0jPEUo+lsWewlRJiIpBAD
zC)_^9@0ic{c9eIgm+_rQzYFiX6u3Ud??&GD0QTN%7{3qs-4D12OmMF<{vg7>Rt)zJ
z<K53Q{*aaNhZBrHvXSveQSRO}<6lP^`^w;u@4oj2-TsA)f1`%+Z-(GrWc;zm82{Ej
z#vh0O@hyyh8|8l+{sSpE_`mlo<NvuDs`nnoG0*U45dX|B#=jqddxY_4O>ijpU?=0x
zkwe%IkXL3J<39wBKYX6?A1iQgGX8uw<3E|t_zN{~?=k)}E8{<h`vuDRCE{NEgz-bb
z`B%vQ<<*S;`U1v(^E%_doePJ!-)(066_oY+wQzlmzxom5uRX^2ACc$laDPHxm@D|7
zk>7uHGX6%I@xLJ5o5hU3g}A@9GyXR4dV3$^??m7ZGyeD0jQ;~={sZ6d0>}3fa8JQ~
z#Q6Kj>z^jLM;Px_;9g|>2<mne_<V?TAHKu*zmV_84R9I8{~NgdcMs#A0KZQWb`1XG
z>lp6?Oy32JW8UD|ZH#LugXW9=mzl&9Ov2uUBsVZgS;-{zFeKKwOfn<ff^TaNlWe_A
zauhSki7?ljO!Bld$qRTN9QZ3KFoH?NZA>bOFe$i&Nu~HMe}YLB^Wk1(Qs^2cg^_pF
zV@!&4GARo9*fb`^0bBDClWMmysSaUvuQREB7n2(BZbV*<?=fiv+{n#LYD&TNF{$|}
zCMDJ}DT(+Nq#YGv(rBa~eV9pOtZ>M)y$0@8CXG!nX&m5FyO}f|^_bYrq)EtQ3jEW$
z;E;a$iwt`}|2xOlf`@fNIFLzjYz@1@vMcQB;TbKpR_b1>hK{W@uw#sVI6JqW86H;C
ztQ;P%k-Nf8ey^cATop^SG>2V0mP~Z;=5SL5H#}UQ-NIABSS;9=rYBEjx70^!0%|%?
z6H%vBBRb1si5UK{xwWyrI#6mdl~NhlB{DFSQ4f#HYnQ4Tr9_9++!S!BCwdbtt-PhV
z2|9^MD=%7f(aK494ZC<j_C#;2LQYwoHEn9>cz4t6dY`X;_62ywrIPovV+sT0pH?<o
zI8)k4G6D{1;9z87)Z58I<T$EY73X+FVv^I{5(z1Ow-3$WSJK+2+U?q>+{mwxjh%^>
zh_?T`uiv2^KX}<?2f4~CxO(uiYxshw1ORT-fwgp^Gse%pW)R}CgWB;sUjMGPKT5s9
z`qM_z%>>z4HVY!Y%V1QDcBvi>!sD@MEbj99(bg@lcBxTD9~gYzfIm>7jFFl;<kptf
z4&Lh0J16O)?m<JPLs9Lc2b)uCMsPl2O{)1p?W1VOV^cFW4_6IV)3KDzv-5{98%9^P
zHhMYtHnvucHoW}9mUGifCmc&nSh{qAnwhXPB(q4xq0RLpMvfd&zxhx_B+G0bk5VJK
z%`THg_1N~U+x@6IG8lEcqrs8tqr2<x>^hEgOD8Clhu+6jw>0z&OhJ=2DoJ42R3QaA
zWOOLCseE6;o!xG!?ra~f^>o~D+1yBE?qxT0^k{Eo?@YU;MW)Dk7u-Ja^-t=jry`Nm
z^!iU;|I=I9eR|&CLf`eUDtM5Q2iZ}-MO8dOpsgMv)7Ge`r77T1(I!FduCuw%>+xyh
zv~lQApLDjitE7#8{D!C9^9KL8O}^S6)E?BVMw_qP`rdoia-YG@KjO<veNppt{?po8
zZPawq=?J>f%Qh4Bnt8Mcoi9h#JRYY<L%EzcX^RdX)E4ok>3kEvn*UVbReO50BrmV+
z;MZw4c4)uX7XS38vL%mZ(`R5ww4GL|?R_+gqd5vmpyB<Y)}{)XISrwhvn8amYZvx?
zW8t-~#;NN&Z{n+O>Rdmy(bdo1(0=sB8@yxdn)~lxbJjigu9=)pPhNBHJ@OCr@Hfy7
zMKpelG=3bck_~6$*c^5qw$ra?cd)OqZ$smlOvLJWm7$z_{bM*t_;dW+m52!n&yhSI
z0)LYKbKpO(yrBb!r(;1ei=F17uvjq5XquDp?1L{4s1~Hu@I46id3j>UeJTcx0fQ!$
z&o9RBJJn}4D52n3P@|_Z2y%SzQ!WJ22E$LC;WNiX*{T?@;Pj!}DC|#~nZ>-HpIS<2
za>P22_kUiz%sLYqOLTT7B=H>lmeZ$;kr+*xoe54)>BRz1U!muO7@@$$G=552gn*!9
zJ(lYeq-%(OX#D?e|IqRz)>flsYTDXrc#58b-%`5Jmp#FEV%&+o&w?z>k%vUF^x&@!
zd}aqf<-yN_(1OoX0~BNi5+XV}sW1Mo_rky5sw&#MPqeg*Iv+ow^-qi|g!>=1)d@|(
zIJ=tJ4Yw%YfhiFbenxIIR1N1mmKeveFq!eF<c3?yvJG3x=9X>I?k+2%4<3`YlV3hM
zS45R<;g^uVtW5iZbSGet@1^}8sBUEktA@_c>)?i}IE-<ScP!CrJ~4m4*J$RdTjZ?0
zroE=;#AEo%mBwSa++RbeDCcysdJ4)#=Uw#qq8jVqB&@?2SM~a%DmIp59i|aC2Gcek
zP5yF@wV&s>EQTR@N-j%b9$Syc1{S3U?8e~d3B1?L<mq@Xspq7Wl*!);7_uiXnRyz9
ztgucF7Ql|kP^$g+@XuxlbqSb!5v)a}|7}clJ|u0R;a1C%#05zPB?O)|nQ*tZ_yc}}
z(T>ij0H27USiF&gR}A>wG-vBGIPuh*4ry;{Khxekv}w<d`im<=j=JTm&bam9%Li{g
zW7YCHN2v0Wx*dD6>CTm%_><E26Xd2tyzKt(@d;}}_WHVuLo;5vdL_V-YUS0h%m`gv
zS8ork(VmlLWW_u#(UYbGFu8))E#wziRM1SGQkwixU<aN-tT040L;Zw(Vf;yc=C)_-
zZt>vhFZSJ)Pw2iv6Q4YVoQ`J2w?yCkiavVTWeVa)j|q=T9@J0pTtcQX!VHnIM6Al-
z^*7Og!1y$xN4)5fYK&2X5x-Om4A;1k20|=O+$wl^1T}IRHkcq<^P$a{C0fAii(ypB
z{ef1n(U1a&g|>5}zY?N{!tOqN_uYr3yPejjJ>KeR7IW!#ztw(g!*Hj~SpH|bkC%<C
z{ffn5FS;&nG&!cZOYQ$@b2^Kjv6s|Lw3vf;`fauofp0fEY}Okh0yyXZu;ix_?&fR$
zZ1qcJEzzch)}SSNyLolMv8AcZWqZo$TV*b~qQzpf7Wo#JG>t5kd^Q2w*f{D8tJPwQ
z++kT&2yEHVY_jXXBg!P7SUbSC;y1@rj$sqoMWF2=y$%ua1S%Nn_dvGwR*;O^!Fd?1
z8#WkKL1{>+GcdW?sX2^RC#k8D;~{~1M4#fpPxGDbOWPf?oRS^(Y!}arFj}-9Ta5B$
zZhP0#34P$Fx`;w}a*AU%t?#oPQ+U$umO}+(WIxS!wnBcQuM;%yiYhbKn<dG77ZB;|
zoOkv5dGb>NwXa7LiRjmf+(2(ZG}wiz%sgWJi>jgGIsPnZ=KfX?8mJ2^L!4-hBx#UR
zZa((80+3k2t!n9h@La(dm&Qrs_<wbnY_iRi?aX#stu|AKNwP@43M~wMBnHzTEs_+{
zLI6$^qsx1^!ue}jOd3DKEE%Qo*&mp=WS(IuHAxGC!54o_ZK19F9?AS9>teRTeB}Y=
zShqm6zJdPGS+juA6^_Mu3_1sz1Hvx#*|M6pnqz`jk<&F@Wt;g%i&gunm7lM5)wE@q
zvbn6Q=6IU;C_@UMWs|fm<yJn*dd#h0rRUv3sUhTSF*dy{#2R#pB0|ttC`isU*)V4#
z581i1f`?j|Q^ITt1pwrK854;<BlL();N3fpX|EpJvEvx8ImWLzq<u|Ws(tOyA-;@1
z#FxoE+5im^Eo3!70am1t&MO2xbV&4L6Zoasm>ylAcBqr(MowarQT7@9BsXzyH534G
z1e0`Rlnqb_RAIW{M7dQoxd<?tIRNMnKvS`xn0sx{*u1=$yR9Et-O|U6*_6%Ay$IHN
z5$@$~TQ=1g<a<mJFQ11H2SWA&!~qaK&l@rEJwd5V;aJ5yHZ7xAolZ!=9vf#A(2wWz
zmJY@1Df8Ge)XNzgK99fG!E$m0`q_w49EDzkMRIdt{_Q!T+XMclaWwk4-$;B6k70TX
z=ad;fD4$eagTzUT6ie&{IiRD_wZFb)^!=l^@Rw`awC}qrwUoQXt)(hmt~$;@nUIk<
ztJ^DdPr3$*hXy(AEp2UE+9X$Pxt8*Hc&5BI&ND)^O6fWoK`X^9B6tAsZ8^NgKt>g$
z;&VZRA?1jrgF9nN0lg?)7VU>c#YI}iVKVtMV&I^SUL2sA9Xn2<8mY@_)qZF;^OV!$
z<wQ4jt=la%6;Rs2lSt<jxME&J<LXPKt_dMdlb;^fr3DyT_&A`=Q;y$!CaSx<S~nrc
zyWDoGm5(!<wTzR0`WdKVZKTN^G;R|kKMduT9G0<og#%$)<8xAFt4E)W10KKJ&)d1o
z4`<sC<Hg(0<0+{t7CeTDs^kMpGAO5lNy`T%Qc5n8c(3NfEAx<6L7m9|(lJ)5DXFR|
z$-X+app6`?l*NGv^(QU55Mx_g&^D(T_DXjs+v9LKouN>;QVM<MpqCz<;np%{lP4;r
zqaL?M%lz`QMm;B9NYEH8+^NG*|9EU1k5yOMCGc#`O|;%)uC9Q@pbV%Yo0}A@{b21t
z;99EA<*K}O*U$6J*M`H>jZTMUtC^eDXuo)DkX75sJ*#d6g{w?U1!Fbwid(nlSiF_z
zStRqVrV`8MJBg{|ZM^Kzrps2`fI(Eq&qUZ%VCjWLQn)GthGkFz0LcT(tUy)_i~PWb
ze1obC@Hu0-n}r4LO@8%lp3+uoAMDWnx#|WFhG&pQo@eXSCzjp(&Xl4$kfY60LiIx^
zs+SA=sm(K<-^V>WxOdf!NXC0qN&86q?xh#r;L)>)B|KXvOuO+4*98HO?4jfcxpk`^
zU^8+npM|P<VnmAAkvxTrO1i6@6q8>Wn*7Nj9O_U%@pt)^gcu2m|17^}h}J6KWCJ>t
zv@Qsc2z0711@V0%PDVqW?i)a)=GC>nC+Kx~*FeS}p5iNes=&dpY_lv9^<|K`GOJMG
zE5^7&yqgjFK*qz6I-su3QFo4`PbRSbk|gNIa3+>jPUVH}5I6C)+!U&5lUe4HyYIe4
z>&a$lqL(n;XP)9F?USc6ZA6!;oE+i8ksYGTfe8;xbPFg9e&VVdrRpkO9Zch#cxJH7
z%@Bt~=_%2;shO9|R5K-|zrSznwM%ZBp3!<;&S0$4H~PJ&S3PrGtf}StbLZKDF_le=
z9k)|^Do10}k~3$n&#EP*_H_-3h8^ZuQ2JXaU@zY|dW@$oQAY%Z@s0V8+F~YQ=#aqp
z=je#~nV5}oI1J`wLIQ^&`Mj01oDZ;O`V>BvWCRJd%56g!((T@-{aY6fa;a0Vs+v@O
z0IK2dXum&DKB?-ese^F~xB8#<w%^>t6TFirdTy3(-MedKc;2cI&D}ztv4^I%ThCj*
ziyQ90UpuyI`FYm%sUlWqP(!Qcg-7n%dk-&uY15{cw0HD+g<v$^10GJyTUf4h{AP0)
z3yojKTJ6!ks~r>buz}CQP*u8*(+KCYFiz80m1pT=kmx0(q(xrCPMsUH1k{mefDSp)
zD5G^q?m1N%Jbl&_iz65-uBs{~7YjNpQ%+H^=H7i%nHnwimHSGDPZ(Z;cWG1wcZw|v
z%*juq&!(bo!`O7T>Wkon<v)k1*pq?0Erd6LZ$TU+JP@MWDIuEncfM$i_*viBX0w*Y
z;%(j;^XAR)w#8#Xn{6BahW1+<$TV)OG&V-QbnC5OiZtR=ME>^QZ-rLvkd_^z#)5Hg
zxufObryg!`lzZc#{xRRv6592P5fce0Hl-xEm^*nBcP<W=z#E7FWHE!q2ZVg0dD>$v
z0`KR64y6=xK{a*<n#EZ4RVO`gVK@#+g?{PH@xgQ9klm8iu4-4<*PNtq`sHc-$Z3dP
zBzBO40V|&UESpx+2uQ;t-q~~(7-U6|%n+9D<NSIq(r|=l(^6U!;iP9qDhVJmqhNAW
z1t&d({_^B{#G&cZ>oNxW9jv+9)$I9SxN-Oig_c%UK7hZDj_WEb$BDlO#*M?@b>eU7
zxN!%UE+w#W<J9!A8`SInM~?bMU(@eW-^I6)_Jsy?6giFv5=4F(0$ap0m>g$bqFfc#
zeDOpwnoY)%(93rx(=q9nQKg6?XKJZrRP#oo(u>h_l6NOMld)_IF<GDj)_<3ARjw>(
zs6M+iRmTC+ALc}C7V>JEuRjk9o)*YO8Y}oKQNl2t?D;qFLv4U`StSyoFzFYuq>i@C
zEa1!N?B0BK0gjTwsL04McVmu=$6B!!-4bi<kVsKOAEZ$`@dHtYfDz(LQ$C&1fHeo=
z8$|E8UnSA4iF7+LWSJA?3jBtPYW&*!o-4=qt(bL3S+U>1u_j7ZpCQm-l2u7AlYMmx
zH!4a*@eEhENs{b-gUMy{c*AjMjcwAWGv@lW4<b{~?fYtJQIVy1qx{wK787qUO0nbb
zD^|PIWh+s9_{etSW93O9O4X=oeOILxteQQsU1_wNN)1KcQcG-A%u-`2sxm~@R+$@B
zTeTWoA2U^(P2Ql%8V$!w{M;a$*Usp>YQtoQvvf*jQ2wL8+EGF4rQjAc;uiEzG%4uf
z9<euxePP}NB?M^!gc=Nr3h?DR5n{bowgr6Qcs%SW8BwiG)uu*<>wX{X3(U5*s$>6M
z)n+q=_&#l6nEa|4ez8YOb9q{<zcS_}FKdUARG&<Q-Y1+VMcM)sDr=o%qoqbH&pGLn
z_-`TUam+q_aNSTjq?NQTh(fWf^DaF$&*gK#$4K2!Q0y+NNzJ*OV}9c4wwms&E_<f5
zE}I9b5dsmqd(P!jh?Et(p}gp4my5BIHl~Hl9ELs@Mz}D!fWZZrghCz37$P~Mu1d~?
zwE}a>(?8h1|AYN<53x+g()8?U_N+)sEV;tdoV{pJ^DTD)ZvO|;^t&(V6L2z~TSiWu
zI&#bLG#NGMHVY^mJXXH_jBGA?Np1q;)EYzS3U=1VKn3aXyU}xGihu`L8($R|e#HpJ
zzo`QozgXO&25>bM*l>oHk|GV&2I+U-2>)u7C$^yP7gAuth~}8}eO^2>X_8+G@2GX0
zUG8;wZgm*=I4#ww{Ufg2!~-Uu*`{`!$+eE)in1}WPMJ%i|32CjmFLR8);bg^+jrF*
zW0A!Zuas6whwVl!G+Vp(ysAHq9%glv8)6>Sr8w=pzPe1s`fRb9oO^yGOQW^-OZ=5?
zNNaJk+iSAxa}{PtjC&tu_+{8J_cw=JiFhMqFC!}FHB@j}@Q$b&*h-^U)Y&U$fDWad
zC!K&D&RZgww6M(~`@DA92;#vDM1_`->Ss*g8*57^PdIP-=;>u#;wD4g#4|T7ZytTY
zx(Q8lO+5Ri<k%K578z71a3aaZW>s0v-@GZXC@|&A*DPrZ51ZeSyziwc>%X>dNyCAL
zOSDTJAwK7d2@UOGmtsjCPM9{#I9Gbb7#z25{*;Tyl-Zho(Oh~-u(5CLQl;2ot%#Nl
z_cf{VEA=LuSylKv$-{%A=U+QBv0&8bP;vDOcU|zc3n!Nu{9=5j6^6DL&6tm-J4|~)
z9#1w(@m3N|G3n9Xf)O<|NO+P)+F(TgqN3E#F8`eIrDZn0=@MQ%cDBb8e*D_eBUXH+
zOtn|s5j9y2W~uaQm*j{3fV=j|wxar?@^xjmPHKMYy0eTPkG*<=QA$Wf)g`tfRlZ0v
ztEyRwH(8<%&+zbQ+pg>z^Ucf8Jj>x$N*h{buawh;61^S+&ZX>H^j?#nw!}!~35^Z#
zqU|=INy-tBD+E^RCJdtvC_M2+Bx*2%C6nTfGS!1b*MJvhKZZPkBfkjIFf@kLBCdo)
zszai4sxmBgklbZ>Iqddc=N%2_4$qxi==t>5E!Ll+-y(NJc+^l)<g=UV6t5zw@$!;#
z*=gejtH)R_xz2Bz9Wrx8RV_99BC1@~sl7QKJt@1+SzYWga7mGi?g?-7dMd)fI(s@A
zd?<*&sKWAJeN5>uMgMZH+KM<|+cUS^t~AUy&z{UpW?AA~QO;;xntfuA^Rj7SU%j)&
zVs~)K>u%=e(ooP|$In{9cdb}2l?KYZinZ8o+i;N-baM#CG$-JMDcX1$y9-L(TsuaT
zfPY9MCb3xN8WGxNDB@4sjvZ10JTUS1Snvy5l9QPbZJ1#AG@_xCVXxndg&0Cz99x`Z
zKvV%^1YbB2L)tU+ww(e6EZYzc6gI5g;!?*}TsL=hotb0Mow8kxW*HVdXfdVep4yL`
zdfTcM*7nwv5)3M-)^@ASp~`(sR<R{ABvheL^?J0q1YLNjpvh-V;WmRLDe4)myA!Q1
zJT&dpP3~Ox?OPs`jpZiejA>`IsMgXV>xPx0&5!lR8(L&vn@?_Oi2EXy)sj?Q8S$Mm
zP{=PsbQ)rJtxy*+R9EqNek1fupF(7d1z|uHBZdEQMm`l!QnDTsJ_DX2E=_R?o*D5)
z4}Rh2eEvVeTQ^UXfsDXgAf@6dtaXG>!t?(&-a~B^KF@z*dl$BLVOt|yVElz!`rm5n
z&%<$O{7{?+>7|f%3ctTlD}Sc0Zs_hY;YO-&eOIT+Kh%FJdM|_@8b7qIL;aj#^MhF1
z(>x4_KPKYTl+AOj0Q$t3La4&;o`HP%m8bgb`*0vs83ZT@J#{j%7e8dKm;){k%rMw*
zG9eKbw_mh1PHLUB$7VNcJ=oL;nV~#W;r|rv;ISD5+Q-FH5g~=&gD`RrnNm>lGJ1GE
zw`K+PW!P*uxsEyAzhLvBOEUkj>)1sV6q-RhP*nGS(JD%Z$|wijTm)a5S+oj03MzBz
zPjp$XjyM!3`cFtv`8wrA`EpL(8Soof9J(X7wr2l^Y-+>){TrmrhW&h}yVPonlai>;
zrF!_zz4@5^8y@95z(7+GLY@+~o<>}!RDp|<u!}<SNlO#Nsw784LY{@BBIH{X919RJ
z4X6gOSC(Gey>@N4vi4Y-r@AF@6Q7ET8d9j~&O$3l#Yuo`voKB12v8pK*p3sJO+k{-
zak5sNppfOFju-S9tC#^&UI}&^S-3TB^fmi<0$e%==MK3AqBrn!K@ZCzuah-}pRZc{
z?&7p`mEU5_{>6x=RAFr4-F+FYOMN%GSL@mvX-UT3jRI;_TJH7}l*La_ztFn+GQ3;r
zNk;eb?nh&>e?Z$I<R!r~8=><$LDON!e1tJ26yLILq`~hFYrCA|rj2uGJHxzz@8b<}
z&bETBnbLPG9E*iz!<03Ld4q;C140%fzRO5j*Ql#XY*C-ELCtp24zs*#$X0ZhlF~Qj
zq$4Nq9U@=qSTzHghxD(IcI0@hO0e}l7_PKLX|J5jQe+67(8W~90a!?QdAYyLs6f^$
zgAUsZ6%aIOhqZ;;;WG@EpL1!Mxhc_XD!cTY%MEAnbR^8{!>s|QGte5Y=ivx6=T9Ei
zP_M&x-e`XKwm+O(fpg~P{^7QV&DZPW)$j@GX#kClVjXN6u+n=I$K0{Y-O4?f;0vgV
zY+%5cgK;dNK1}{#_x-Zyaw9sN`r9jST(^5&m&8IY?IBml#h0G3e?uSWfByzKHLe8)
z9oCU{cfd~u97`w2ATe{wQPagk*)FX|S+YdySpplm-DSKB*|c>@nSp$=zj{v3WyAgw
zqtk_K3<lj0Wa)(KY{<nay@Z_%WF?g?;h`mE$OR&`pc&dDfXrXd7KzbYP_>c5J|0pC
zSpww86>3JZSitYm_b*{%7cv?=elhCFy1v6m)^<eVP@H+ybiRtL-{uL<YO@&D=4<CJ
z3pzc%_qDVb{oUHZD>n?211803vG_;TRU3WPV`g7=>ywvsW6B76c-kXXYuS7~J+@Lc
zSf%7^`HIJ4D|VX9{B<pj`Jyg!(^l<3ph&XWt1jx=+%|H4*W7vIN5}nQf&oY(U-#?L
z*TaS7;E9t(u3Kq~_T-MGnGE$8>lBG~IV;M->JId%#U?}jR@kQ&o5A3HyYDx}6N<Gn
zi;FMCn;WHD@Vc~ETB`jhUq!tuEz&?&YUoOfY~qKJwwOOI5)^BnA}M7;{mC&-F+|ay
z6X6p!17JkLWGEm!w6Kym8U_vLS6SKy3X_0JORnfN5>c^pMjj0Jeun)M=&7-NLZ9@2
z)j60}@#z8oft^qhO`qgPG;Gf4Q@Zbq!Fx_DP1GkX<}_%EF`!5fg*xCsir}$yMH#85
zT3Y4bdV)bucC=X;w24>D>XjaA@K`En^++$6E!jmvauA$rc9F%b=P&f^I7M+{{--HM
z0JXFl21+}*Oz8zr@T8JQp9Td0TZ7rr0+&rWePPKdaG}l-^)$@O*ON;2pkAjf4ZSg#
zy{PLo>h<boIyC_;r{F)t7+rbn<v=(bP)7u$W!VawH>hTUUK_q5L{o!vKb^7AIkbXB
zm3BG{rbFE>fKfZsL4iKVYubQMO_AvYWH<3F_@;7*b}<uSJUUJ;g{%z*;ZMkCFs%V;
z(RP7>ss*4!r5a-5Mr{qoVbpXW1cja+YCd!nQ3xt*CEBq_FNhDc93rhj=>>F59=AN5
zoRmKmL))oDox0VF;gltwNSdcF9cb*OX3{Gx?X{Q-krC~b9}_3yG8Bn{`W6m}6YD#q
zAk<adqiDb>Ezk)zB|ZA2Ao`dW^gC77j#kXk7>zOYg~2Y0NyG9@9L)X=yRL!=`tj7;
z^S=K3l)dWTz%eni<kzjob*^75mCDZS`;y1w*-JeU1eN~{AA3E@Z?o@b-xr^H5W)#Y
z&vOy-yfBxiu6iplL<bot^N<x~<B>ebMP!Z)q@7d(l_cR;2OvPv7I~Va{X>R@4XXh-
zOMOMef=}m)U?`>^E`qUO(+Ng<N+uTU2jzm?spixQ!b6S0Q$rXfDFv{6Go6@**AHQx
z3dbb+NXILW&B-_voCP{%sXBR_R7&C4uNQl#iQ$~g1)$Wdu5t)v8CV~(8!(EezZq6^
zq?5y<SjZbH*Lt3O(&Jg=DGky`uoRyshwz(*v<QFjv%qs1@I$9<n}D$MB5c8igRK;}
zVm=^t9QJa9#+9n#UW|U%R{jOg#W1VBgm9E9-F-talB>$xKwZ1|FQ|>X41&zvAf`(9
zj3GGCzGHqa8_lMGV+Q3A(d5seacFHJ92meB0vj+?SfQ~dL#3UE!1{}wjz|HPWCEHI
zW{zYTeA(UwAEq6F%|@%!oD5ebM$D`kG45gkQ6COfjjk-==^@y6=Tp0-#~0px=I@H#
z7Z|LQii;EBSfjse{lo}m?iuTG`$i6*F?L9m*kGMV_JUqsuT##HNJkrNL~cklwZK&3
zgesq4oycISoHuCg>Jo;0K(3&I(n-j7+uaf)NPK7+@p8+z!=r!xa45cmV`Mna1hT=i
zAkgv-=xDHofR+dHn7FZvghtoxVqmi^U=Tk5i*(?UbiEGt9|mBN4tXfwT0<jzO=!<*
zF`QQK2@MV4SH^;OMBm*b;`h88y@L`A36S&|;uNU|vf~YyC{B|+mmkfCgZ)Kw*BG>b
zIQSzTbod84Y<){2C!IJja=k65vqPM|!xFS?-HOK!3%&6=!T(Z$<>g6+rTpioPBf57
z$!8fVo=}&Z?KB-UB4$>vfxffiJ*^StPHhnl@7Fw@3-N|6BAyp|HhmV#(r=Ll2Y3af
zNJ44J*!nZfs0Z5o%Qy|_7UzOtMt~9CA*sTy5=4c0Q9mP-JJ+p-7G&*PyD$6sj<fqp
zqz`X-6k@a*f~nJAaVF-kWb}k7p^cZnB;B;<=B(qK1v`HEtaNnoj=o(FVUzL&?Jwdm
zOa&j!%jpZ<4BNCM_^6pI1P`dUI*hdsbDz+wk<B(H8xlv2WbkZY;}h8wkH%s%$qXU8
z9%dA`(SFFxSWNq)lu3+-bxLxk_F80hq!V%52uiv&7Ml^f1OQ}OhPf`OW^&~buSMre
zNSXk*K%)g#S)!waM5tz>+4b>6a~%2eXf~A?KRzL4v_GQ!SRxsdZi`B(7Jx*fGf@DK
z&P<|o9z*F!kX>I*<s~t<&Qwz@3{Spd1FV<6@aL+D$=)y%Ini0I*F;vLBFIX*t-7@Z
zRgFr?&%lLnrLjb1K8Z5Z`Lo{n#svLQwFVf#T-%~hswM1I)}y89gU31(IEBPx)P6Ig
zQU-DBs69!?Gcy|1UPD{s$SL|FhPtCvYS%P)&J3Lu$jNd^Ot5yGA_<7SU$Rq>;y78=
z>JB#p1zld#NFeK3{?&UgU*1uzsxF7qYP34!>yr;jKktE5CNZ3N_W+965o=}3S?jx3
zv`#Wqn;l-4If#|AeD6<h<~xZK0aPIm5Fj3iFu_DI!1IHY#PB1{E&4srchU5Mo`=%y
zLyPvrb`+MghTYCPF>_oY2Y||U?Fss}Sa>HvkP$9_KPcb_jB*Jc;M0XIE+qhbP$U2d
z&;h?{>;H=Sp?W2>Uc{rF29ML>EiCy?fyim_mQtrgMA~^uv<W}-W6maxh*ylq0b(5(
zAp-=27E@ufp>?&@WN@gUOPn(379I}U4Vg~Qo)jwJb7e_Pg^`Gmp+s5vF{tNzJVhBQ
z$VB8M@`XJsXC!-){6wetDsTY94&#XdG*yFsbY~cLNXLP73aA74Mq6M9f^&YV`isWW
zU@CY~qxP|&bnWBDi{LM9<Q9DDQQV>r0!uDR`<VX?DK16yz1mCS#C7w%NOCFS@4GJ_
z!<#8adubr1aBU+Q1)4)xal)ceKP^Mta3QZHdlGR90FUa?8Fgtm9g;aTz#d88abx?$
z>&3$@xh)p^>voF;SAaZi_ozepkmLV+&hGKrp0jy9{6cAs)nGCitl6Cw2c%Z0GVz1C
zH-$3>en`tRh)Z(8))4y=esC5oyjkopd;K_uLM(K16Uoowyo4@9gTv5u=A_uBd0McB
zG~8g=+O1_GWtp;w*7oD;g7xT0>D9KH`rx%cs^JH~P_@+@N5^&vZtAIXZ@TH+Rb$iX
zv8(8dKV^46(Z&yFGFn4hNolFPVozn;+&27G?m@2LsJe7YgGEHj?!M`nn`S-w=q$Y4
zB>(63Fnnw_J_&IJT0ztZtSecc!QccI&<3XK0KsV4VV(j@25^A-xlh_$hgq6}Ke~GZ
zhiQV3X|Mlv6UKb8uXL$*D>r^GD8;;u+Pi;zrDxZzjvWE#@cNGO`q~o7B+DH$I?5#T
zf_t7@)B41BzjIgI68Bcci{s-$P8pU>=kLG8SB$x;c&X=_mE3UN@*eF+YgP|eXQVn)
z)pd&9U^7<FY8mZOCRv)3SN`T}8zOFpY>r1QaaX{+Wb-<z9`TA8H_)3oU?s}voE~+D
zzIwq<+$$#Cct9vPRm|Xlc!ffHNrO9U{cPl%uC6&FCn|i=wyld=b>9S8_jQZC19~W)
z*_+RuH*MPD=B_m7we#2A@YwQv$kH2gA%qk7H)?k!jWbzcHWK497Ke<$ggzW+IYI2A
zFQ_A$Ae4bxFvl4XPu2-7cn1vW-EWQ6?|>Qm*6uI!JNaRLXZFc5@3r48t0~)bwpU*5
z-KNE}N45AiuXh{&18l_quuV$6w|?c-PtzqcPhY)q{d+Hc_@OkartG`dddteZXK&Je
zGpYJ-+PmEUR`sOnx42*X$6KT~@9ze#J>YvvaN24jI}4QG3M;w<>~!2i@r)9lI!6N1
z0GN((xJjHUB^|#9vJgy=07qv}Kw>zE+6qQns-L}JIqLFtY3pDu_$~YrZOO$WEpF>3
zXTu#w7J9w+@)x-6oW(5`w;GI8gk@*+!5ew8iD$g=DR*n@|2*R`zxe7azdr7~Z;$%<
zSH@*lQ9U(Hx^%Fb|1?Smv({(NaZW+DGsnNWwX(DFUG8)(b6Rn>MzUxlZhNbVe>`mS
zl&aJjk3F~9{lT-}y>e~pI}kOf@0^%Vdj&m(iK4LTf6kmF!_0HQ$`f-eBnmdTsf$_3
zR`hz2EjKIKWL6z@jj1}us>ZmY)iQInPifzSiOFN92j9$pX*CuV8SPrD#b%Qa97~TI
zS6)?BPUgFnkqG8{{HUwd)%ZsvurI~=Jr8YSkhUA!RANJ;o|D->9S9QB5DxT<?|_OS
zuXZ)0I`?#|uC&pr$PR<{cP*P#ZCz%&<S-xX!(k{3z75ikxU4C5St?4~ozlJCof)+&
zk?Gu%o#wH38MtiYeOmTME_;_*D(X9EblR-T%sh#cRsj=E1*dK5*Sb4Xw35*sNodQH
zZK27co2;Pc;NPgQKv=irjt+T4yDcodMfia7CO01=E)U;2B#zd<yk@iD27&N^;0LKM
zjRSo>ybH&PGFtc0Z>dLwr|Ah}aX`XwTtE&UssYSEILtNijh)8)WWjMm$uT;+p1|=L
z><4lEg%APBLn+FRr&2tGd)7icqrVX<g?NZ|E43ax`@SVWfM^I11HrS7Gs;@Uvy1j*
zy7Xr!)7MvwXSD}XOe<_daap3VQNbFT6Mt!@A##BiJAsXccuQ-A(o8Kw+^~BfGK{4F
zL)eZLZXhX{uE9ik09v}QeU`tXxp`(o53O81$5aE(^3i^F=#sWYiO!}8iP5EFav*df
zI)B`cK>FE;+3j`3p~mvsiDMU>yK$19$B@8$Dy4GClfzo4)s_o2NuM3t-WhCrXE>LQ
z_CQtR*!a0mh<GfBI6f(F$OBZgk8A8$Ghxxjxo0<rMdA}eba1pA#ue?qU^*n$6buPQ
zltIND7K<liEiqaI)mFM5p@U=5RE(@wyWpcKGhfh-jU4YPRb-W0B&%c`;j1mKD0<+@
z+k1KE_deqH%Z=J2+8@4Y`u0S-2}X-taViekE}4>nw#I2S=WxT_H@^Saif`)uhLNJC
zq4{bSCwYBd!4>6KGH5y~WZc@7_X~RqtaSN(`jfT!KhgGR)3iN50ecR$!|?Vq8|xa+
zY#*+B=>j4;wypc<a-u<>lu7?wd+y06`GlVf2vBXzuPA;JgpfkIa1gXG88sZ*aS`(w
z_9`LL4@aT0p!4H7sWP`mwUZRKCu@UWdNi-yebkfmNN+*QU+N*lf6BAJ$FNs^SLmDz
z^algGcLq`f>-uKOd_Ws4y^1_2ucQaL>xyaQjy!eVD6OQi>km;_zvHS=ZpZZrw4)}Z
zPz(rC?a`hZiQV9o^s>b?f-~ljm1*4IE<3plqCV}_shIiuQl=uKB4vUx2T$RCFr0{u
z1v660Y3?>kX@{19i6;*CA}pJsFpo{n<WpdbD;9&x;N{)C8$1>culW61+66XAOBZD<
z{H|h`mJS5C2;ymL##}U*MC%fL0R97OSQ@lUXQ-j?i{z{=l-!$64H{LlTLo{Ln<|OV
zBWq*5LP`KJl74fC{GzzP<Hd0C@%L=S@@^uUJ{F8Qou$%$yeLSBIZNzT#mJTa2*wiP
zwh#Tz4>_Z;;;6i--QpZUrtHC@+RBlt+=_3TyV4gk=4b{TBJAx!GehYbTby(&-R337
zQ%g2)Uc&K|x|eL0yR*VCXDBqZ89C(obOFYYht(k`^q0OaQ*Y{)@7xE~KQ7XN)hGlZ
zl5$1<#s!tyf%>mbIG(9WR`R*{Qc_h(ZGT^8>7lXOw^g1iIE2EdRaR^3nx_UUDy#W6
zy!q(v^QLL*42nxBK!$WVOv)I9Z4InlKtv#qJOzoZTxx86<5tQ*v528nxJ^sm+_tRp
zT7oVNE7-NgcoqA#NPr*AT|8xEa)x&K#QaWEb{M34!cH-0Ro63!ec@APIJoOuP&|13
z9CFAVMAe@*(L6<Kx(ytzkNOPuG30#Mu-3oelhSAbIF)_EK#aPF4p2$>g{3h&p2m!K
zEG?(A$c(3tr<FAIA!wKKAHh<{*<i$$tr3C?nB@T2O?t(k1%}Z$W@zx0^ny6k0g)x%
zGL(35LDTq2CF3WLU9#Xy>J5LHQ@(h3@`CB*ep}GDYSOwpgT=cZU;F&F6(b=V*TLLD
z*fq(p>yRHTG1ttB*(Q8xLAl4cZdp^?6=QjcG;_V(q>MY0FOru|-SE}@^WElQTpCQZ
zAMJy_$l;GISf1ZmbTzkD(^S!#q?(lDIA?SIrj2H$hs*|^{b|Kp!zXPTcjcCcfA+KN
zdlV!rFo2RY@10$^a_d*-?j7HJC;KhfoB%@<h4x2TVsDe~8!E-h5r=-i12H7&6-XB?
zxpB|K$uM)qLI$TlMBj24WMV8lLNA7d-0ikcSn4iwx7FB>;*{;(hx_iP`#qI(?qa{b
zH|YEvx~cE^RQ4J}dS>z%gK-XYm&uvZcgoyLClEhS(`FJ^zV!Vl&2c{U4N9z_|1($J
znob`V2~>KDKA&dTi9YwyS#e-5dYkH?3rN(#;$}@K&5Yu}2s&MGF*w{xhbAzS@z(qi
z&k99O!34}xTQ`?X!RRgjc)80Qud0{3UN4(nS5uZ<cHrQ{FFnVbx*vY&CVqaG+*lP_
z?y^}7bLXEkN<IJ+vblA&9wZiTjk%VGsv0SAP2KD=>1#K=^l&$CdhVr%4<67S=#uNP
z$hnqV471K$Gy&){4ElZt?A?0NLoW2o_3R)!o~sw#>7&;Vq954STsM(+32Z#w^MksO
zsrqpE@Js9$)|uQzKbXiMwttapenf8iB|j(wIa2-@GqE@(2P#M09Rvvhd<D2WTKL2f
z=K$sk95sWv4B&wk)FA)!#By3tk$g8+1(<y4Pc3aXf3?V0)n+sXHh79GS4L}!tj54I
zMQ$Fbs=dl+E3#}iS~{Eo>u!sE0Mx&cK&$EtK}}WywYEC~MF5r3cUj%d$|lLwY4>`)
z_D++uNojUl@4Cz8YF3nvwp>JWtwGtSG`nnfeNp(_RYv`S2?qhgb_(1$KD6ymTRgnD
zx^~3GBD2+4vB9{=V_iMG*kQTX;ycG^`f{n+VxR4Ah!t~JQ6Z?Q;ws}Jw|#YE0jR0S
z+36oq6_8xno^4J?Y02d!iad3xPm+8~r^*Vvr4A<|$^#UEbKvJ9YHF=Ch2jF`4!QS#
zl8We8%)x>ejzT^IH%ymE#EBe<Zg6A*lB6P31a!YG2Bxt>2~-$}ZXtz&vZ_NgVk4kc
zOv-dk(6ie2e{lAqYwn9Q$weL<BatOlhM_{lS?;r3bNjP=GQW;bmfCN>#^Nh?MpPUK
z#Cb)4d96*6`>t7Zwsz#_qbv6CnswLS9Jt|b`8Mqz?`?H1tT99K#4#d+VwAy}#eC74
z;%UFxaNB!Zw`R9){Pncrny4>k;D}TV2BU0ua-+Fsp>wmcX#SGkn`h0O`pN*`jUj8q
zIlnc7x6NRbR)=wP1g`-}2unC>O6ow=s{=NV6pfEo3=tY8<P5lc7mbh?KbynYA{NJ>
z=*$TKFk8Wv0K8B_**m*Q>+VW*1&gD#{#GSc(h#YQ<Gv7Ew0wAAg!<c?uFj|x)$XL%
z5vos*G{?Z5KK7N!xn1A?(mKD^LlZ7{M^=m;SsaMf$D8NhJY~dzmAm&+)-fsFJZtnX
z$1GnOyz0yKfk|ppC|MnGXVV6w!{m~te?3^?oIWGeG`VD~i!X_sGb0?CHPPo^G3&NH
z!|H2hCZ%+8X7NoklO<Pgu8WSpb^W>L?*<(ZUx~>L^RyAG3}j0&Q|mJtT7ec|Y7cr~
z+A`Wz!Sqz9bk0u-kftk^q{FPl4N+T(>4(fl@jEEVfNE$b*XSE)(t-A>4>`O^cXfrj
zd_nrA-@@u?czM(o3OVDok%p3(((12`76;LwysK$;diTl$BdV)!p5Gj=swpb=j2N>b
zqJ1D5E#zO9e(vJ6+rGuy<(PS-B6=gHvFat<HMV4OQ)MhV-B}Sl>&)qr%j7T`vT1ju
zIvHwGCk5)id{uDi@-e?0J*(-W-RGZs)uhSeqv7TA&h|CUx(R0ysoiQC8XnxL&RXI3
zO`H`8Pe&^ePw*`{rIJhzUg@MuhUL`IONG^*V?R0h5@BRDFgEF4<Wa~C7aIsk9UDsc
zz{x?9i9nA+QX!=$<of)b$%b_O#I7YPH?Ejg?Cx+EPg}8Z<&v(6_1~8!OOu{W<I-gJ
zY3@^&A3Nik>5b0jSrg0r{<4X)nw^c)uQ_Ai_p>ic!=K$pmnyqYb=`6fUo40ru#Gh=
zMRJxOD(1n?Mjz_|IWyJK5^fh3*n>eI0MmEKq%=-oIdGd4F-LT>RL)Bp5FWxb<T6+k
zx!aTNA+yJn5KJ<(Z5HZMLcX9)H(7@rIC+*%$U-e6DaInH34&t}ZDNIVVVH-&dS`ob
zcI$%PWyn!c+F@yJc2#5M6RWnqD?nBhRmSFIwO__g9*DQO>4aNLNXB^o?YBSXQ`SwN
zI*N~(CQW~P$HpzwrMG4IZKI>TVI4nQ$a-#)zV}LE(xgQ5<jH+s=eOVY;QAF4vfKFP
zn7ex91Jad++$PP_Oi5!r7LiRo_A-f`fJqbG`UM3TZb-s7jLX!HpaWM<xFd<rg;}Tv
z93K88$eG%_X31scrD~_PIv9K4d|J=M)r*PqACS5^v?MV3Na3kH4nefs>MG@L#e!e@
ziNtg{Ph&qpX9FLaMlqMh>3)Nu%sAO<pz8+=lJhp81P69!KuwU}e;l+xmIMOSVY+p-
zeveujeS09gPTz-=wjDqhlHsD%rBjFu)>#1NEsbe=#4Vqx0Y;<~+mV!xwj%}Z=xZn=
zSqjxSH4T~v>Xd*=2wmHPN?@+9!}aQz-9(UIITZ==EB9}pgY1H4xu^-WdOFSK!ocZc
zd-qhN$eZcN#Q^0>8J%)XI$4W(IW6R810*ucIM7Q#`twI|?$L<V3FnA~E)UBOmStfx
zLqkw#lEkcx`L{8rSRz8nOU3*bGy2&<<;VSO##aue=Y8d+%j=S{^05<Vu6Nt}&?W0<
zP8?evOV(Zf(pTo;Mzzq=2@)#CLp5#ES04Ix*X(^Ccm4XI@_mQWQ@5|1qqfvm&1!C$
zv3N3dgFQ8Q@r;({Syi<y>YR1kr>3#{B{Z4X(xm&Cb21d^F9MKi<Jd`WVmGimQMZ<O
zjIKq{pRFzNoIlWlWdz{?-CsdRIJ~VC(!vug#C%>D=wk_r+a=nyK!s^$<T!yYE})|R
zYsKAh*b@ck+kxYww4B>zdXglCdshbfKBqa5aMwN#LmSNj6+DPhH4K-GxRl;#@=IJc
zm{h}JsmQFrHCioWCBGzjr5p9L4$t4`c5#Cz(NJ#+R7q-)Tx2)6>#WZDhLGJD964iJ
zJXu`snOYJYy=`<+b*HDiI9XPo8XK$TF86)Ub5=NC@VN#f$~GDsjk01g$;wDY!KqOh
zC$x={(PT7CH7c?ZPH{RNz}Tel$>M0p;je4|O2|%Yq8@sCb7gRhgR4a*qf+WGD>E8~
z`wb<@^QX)i-7&*Z>U6qXMt_B2M#tzmqZTA1PNgzcvs|(|<peL1ZYi9Tu#YNqPZ>-E
z4t*ZT-`kgepLl0g1>H!{(h8b`Ko=fR+|!L_Iji>5-Qf34-}z%X8+*Qwe^XrIS4Re$
zWUblH=yEfj!IgeIQ>m}+`V(4u?6c;s&Ym_6+pt|V`IQ1!oAC@R1XC3tL4BQ7`!TnU
zWaoqG=nh<He~ExdE(Ifu%~IH9;p{f312jTI3lxPX)&O@a?$Z@wmJTZtViN8U$KeGO
z!3xsC>I@e7dV7)8VzO8ivuC!q{hcxO7fo#2I=<`rktP0OfAO-CQE!ZT@}e7lw;{c)
z@2l7RV$@&S5H@{<za%m}efI48ezd9m?a`i2?-?_&0$OqJr1V0=ZKV}u!-9du{-~Rq
zM+A!fEhDG@{hv3~bk_zJG?e=*Bg1~ry|+E8egAlCLwWgS(~B1dYWCD#_Payh8$V|3
z>=Bj~^Kp5At=Jq=Y92rXP@{-D4j>U=-a^gM2s-nIZA;u=fbm2BP=Zca5W81_cA>Tr
z)x+r@{pu_la2Q(wm`Zqyd@GhNDNT&4oNHb_>w4{jIU}m&iXykMxvi;WL8;y7t}cp&
z9CEpR)WlI1qmOq!zg4QTmzv#eP3>NLd7V-+YKmuyLFP533rd>WnvL$F3b}g39PYk;
z)^hXQ%5jO(B}-TMio7@t<(V?7M5!ycd)u4Z+~!hym9+KwPVO^Wkhi^Dc7$R@)o$oh
z^mRbgQ@5EvalJa}V4Bi3cs^w5pYtbXXz5W|e%+z-K;8M%Lf~BlZRvNI7=)cG6lbjg
z?)l8iOw!mU`uaKN@UL4>d#edM9^-ePb(VICy6Cg-H^Ew$n_s801w`A83W!_Z{D+1G
z(<9A>WB@>)D%cxw7c?Xv7N}6gg?&TkLX|0@k&VL)YMI~SsE^dzj2^3BKL7SM$!0Lt
zj;ytKWw|(58n6_NNH$JVRh!W*wewMr7)H2jOCruuJAIIfPMFpf6j=hL!D3nVT9Dpo
zut}|VoG<%v&w;HrQtz<%%T&X##*z5{D!!egoRN}R_Xxuy+E3dhx6!7mlNyuqsKR-P
zlP#8EKGt{Ij~8kXY?&*%q)PkPG;rziWPd>HefyPwV49!>f&Q_@Fn{8Cyz{HCXuo+(
zJMu<#{Tl}^-dh<itFK$TbJFYyvm37Fi(fDuym?#Kny%=@=PE0gPqvrcsAWI+&oy@{
zw@TM8Q;P!sv0jPE4Y$u*IP<RWT4Ir#4_@dSb>%n<XpXb<`qT0cz&8o~H>M0IrDa@V
zMHgAog4`tk;DNK-c{HwRhx%Fn%ir3mex!XeZQ4QY)vQ_iZ(j4-GcO?@6Z-Y*f?u7_
zmf!}WRoGkI#BO9;5C<z8SRi0KOP|9!FkETngwhEn){S5f0$AlLWL(7|jvO}f;b3wr
zptloF9tUfA%vSLjj`X=b152*H2<uC3e&rQ!EW51<W0lX_+SH2W+TSAShCA9H-zg39
z#Hhu~#@Eh?4lBDP9y|AibDha6%7#Vf)TWj#9u>FvMobtV@Qm?#eNKbbX!O@xEVhnm
z6LFnWu=E}6kB82ZEf!g}n5&IuivccTHk-_5cazDAe+O!_j+dQ~aUBy~PM34E<a8<_
zVF~o><Jx7j)MB^1bL_HVhT@hvH=VU%!Q#u!HO0ljU{Pq8`SQgJHk@_i+?HZPWTM4V
zUmL1XWV79lJ0IEtf!J^x?!JhvP~64pEPm(lU-M;s*Bez?#nKy8i_8YK$PzPJZAKU^
zn2M}sIA@Wn_+f5ilZtGTuSk-M(Ld;G{0Lqx3J;b$Qt%NINu5qh!oUhhjF>q0X-LOl
zjunFnO<4Nq|BL`!xwvyj&g9Q0(A_<mwwi)l51*zhc~BgP9(v+5)-nfdJV;AikFtl9
z<r7o~CKj>*xLT~l{^nM&k<D<19^%dPe>GzB7+^hP^L&bD7iVdXe3wobJXVX~o*tX$
zI5xthE?gAl!4+v~+ASbN2nYIqNn_#3>!fi2k=g*Hg_%caA#p<x<{Gy;5F@e3V4M|J
z4sNa=2$t4L9(VaIB@xN5egCZzSZf8<ZXUV(id!Tbt|ckEBN*k@@4z7U+TWK{d)+~q
z8~A@c^Zi%2Q=Agkep2T3g-hPzll@Yp<d$-`%XZ5Zmus&-RO<Csm;9dJ#LK^9<I$2k
zASl^h`TjFnnA#HkM=#=UDskHqB%OR+^80HzRs^A7P}0F@Zq%<|E|@n9ZmU(CxJ_{Q
z1P+J4uN59xKHj9<|A10#?>lNQR+RtHTiW>(*OFG*-nzu~6DMCrX>xzP`3sj}D!||8
zf3dk-w(NCUMu^C%k|t?sa>9gU_Ms-R2Hhm~4jNfPPy<PYa4c%a9BAiQrtQ!>H!3Zy
zV0QFf=MWK%>|(eV$pB5qOkC)uou{oIJwb_i4epV{W95%N)`+uOrLx7fNtD^czsq4B
znAWb+Zsk|YX}a?b+sS-!*t2w1JUqU6Ol`&Jrqa5=4eeLWzr1DX1fWW`6MYf+8SOW<
z+EMJ|fp${RJ7q9G7J+`pLof$#kBJP^i@%wNnG3fnK?&k>3IUVo3dbs9Nt)x_q|wIB
zlBAi#1Xv-<+nr<13SBfkdzI?dJ|3~?-e>MzG(yRsA}I_oEd{HEGZ&7H|Km9mEbL6r
z{Ubhh;h6_QXN_?>r(eWJ@CM1-yn6Y#am!aXXW!EfCpu}=btdYT?EJ>j+jeuc%;P2g
z5*J%*$9La$^cy>u0DqjO#J%*IdaaPnAX#A6rRQ+sAHhY@o32==Ct3IF&sM14!2`FD
zA))>ZKsccTyp$U0)vjABEY_N5lh(@e+Gj>sYOTgf?=82K)zw-?JX2d<X-z&`W3^P=
zIs~e={FYnFYfprc(nFF-eo9tUJD7Q0*@;=#TCA0~-BwX#IRQqOMFm|Mp)XlERG%uW
z3hDTa{;MkpG4EkD8qlYbI6(8FzE|N#0~M-MaX}dInJ`DBP9?EH*QTn_re-r0k&1Js
z;&`pCX4=$>$x}n2Y0v%SjDtBXDxV2TyyxQmN?2%8zkKkKF*!AA$P$1#qrF%fUu~<Y
z8a^&|?ZbY4RiQG~J1RM^e&X2M8hoiU&L|m`O{Y?YO4QEe#k)I3=^E6@V{}EJ+2bm6
zl*uz%eP?#0s&C#jsU1pGu{ST;Cy7}QI@BmMO5$E3>URt`tp3C_(>^tkcbHhO0Hh0A
zpTVQR{DjsD=y-Bsl#nuTVKRxYbjpSJg|K+SEP+^Y*z3S9p(_-s9^YP5Zc?Vz*o(Qx
z?f03co`dGfW}0T>UdEZaW>s0XVEzlw@s&bc+B-9;^^AGsx$AE~!1-7?tn9z|p4}_?
zRsM&sjg1>#Rb#6jFBRKMeZ>I_4<%=&rF3yqUD&Lik@7<@2*(0rC)UqPj`Gfe8L&{S
zhGtB67KhF{GnLZCF}gN0IrIPU_9lQ)mFNEOyl0tx-!qeCCX<;7*??>lNC*Q7`xe43
z2$7wD3MhiII4W*v6;Y775v{FSYqhp+|6)6BZR@Rdz4}#KZR4%=+E%T%_gX8-9KPT4
zo|$Aa1ohtUet#uro3p&@^FHhEX`OcGjq==$UeAQ~<6AZzZ|l75nn<#}+mo0rqWv5$
z1N<|1yMgX<Jv|>+Qmz?53v|%P=^&74bwqfH?xIC`L()W{|G`j^>kbs7q<$hb6fL@S
za#nHyi$$TJ7*i!6estChR}QriMs#yy!@Po#AYde<sLQD;qjdSE;el}uSIvuU`Q!0y
zgLdgx7@b2yc|`j(!j7>WL<h_}cLLzLADVAgNgY8#1Fh|}$YYy;vM@nsz|vAPj<`XW
zXwGRVeu@T^gKq(%OY=@kT00t1XhxFalF7^$^m^TdY4y2Ihq?}y2^PzCcJmbK?B>~*
zUR%)FT#4Q~O-N!O&it}b8zFOmbe=egH*Ka<9jT?dFCMAcagAo<>tKrW%w?P_A_gd&
zXwHTn>a>WEWRzimu7EJ*$3~Jfv|@bLg}6iH4mgJB!<DQThd6ka{evPxhuqWwEe5xB
zf#O7;g?|$6p!;#Fatu%5;Mv$0#&GhoX;1`k>o60eP#_N!xYrQoMf4&rGLau~D9ila
zYGD*3*M<KhTU6G&l35CiwgI=I^x48t+-tU=xLYX*&>NN?v*n6op+dQM!Kkr@qH1|^
zh7skG&aC;+$C$OSR2!ke>7|B6JDpjV%$Jo5hI14PGyx1I=Diw7>h@vzL?PLTzC;`;
z?}nkmP%J6$BG!9mxz?+Np<W(k3}{Xl6f8SG)p2HGZwh`~$&Y)0CW(L%$yC_vL#CB>
zIHbVy&<#H&Ekz1(ksSJ_NDQ+XH<JJceP;vzNe4O2<E7<+egftoEGifzw4A`fitfZ8
z%yW3H5b@&OiDoF>yg-!YcW8YvE5v*jFQ->F;|Q-IB@Mw6YP~v=jY$~9n@~8MVO{1g
z@g=-I$aXs1BH&>hK(~|d>Y9n*;xRm&07=pLuqVYV-bwyCUIKgMdLSrovEs2f3{<EC
z{Td;l7^sLu+7e}I#;X$QZ$1d(Uc@kK<6!qdqET2X3|a~Bq2L~XG()AKLenoq?)g>b
z<++d|UX&}*7)y8){Ntc{RL*udOS8r%JV4EZ64fUF85n7%NAWejYbLV}NB|lS>SnYN
z?PFpysSR*OodDcNK;OVKsSbKS^g;|bSdogA=};1?3rYq|Nc_tR!b2ln>=bNTL59uS
zZjF^Y1RoS7qF^>LEqt<#Mu0ZjpiUNLtsc5%t*8}5lW4OWwFXfqGn-q~H)5}2mSRZ^
zKpfQxOe+KC(M5V`tz1zQ)@pTTQ2?NgStmwpvPCi&U9wd)m<^I-w&{(`Vb?Q*4ApV5
z(G}DMfgox!S_C+OTa5UkEbB#G$SC<8vLrDPPT_Uq5N~7`%Js5Ut3!o!f@HJm?b;(N
zbbv90V6J7=E&)E`b|}N4n`VOOuvo$<xzmhK>IEMx`%EkX8mpug0yY80enF3?M57gI
zQ((b(;dv_v7PDKFgL<RcA=`>|6)q^sb%Gp_aU)<?%bd`03z9(q%&}XLy|QRQI|<C7
z6--bPF*5m=>wp^uX96>jGEsOmBhyuDZ8}+y{bG?UqGqyDfYMtJ{6@xXI>fVC9g+uG
zbQzl4fY>P6VAkv8GEpapl2>quqSIoui)Mr95Nuw@voGBux<n^@3=DQrFiIw^j=D-<
z9-C}70E|_@WRgXj!75n<^c@^ip^SG01t{a;7BMsk)b&C6Idd?hnd$Uet==Vg8HR<I
z*)14S0-E077iH8$r<ILH_)wr-VK~xC@F~_x2E8B~B(1?EYOS))VbR+qy+_OK0B9Rq
zkqpfUkXsp&PicMBu{N`0ll^E*BL!DD@c|46=EJxvVm7^%nQdq@odIak%qRidQUKhj
zTqFVO5+%^17-()=07Wn`t4_8XBvGq1Yeg$svg;-tV|G-*#EKmf`pk-MWTCjk%(bFe
z2~29zmqfJMVkCXC(ldg)sz{POuu%Y?+GF<$+MvgvuYm4Ei;PhYQ9@nIC6}IAoF-B0
z)Jn46FNh_!FoWg?Q7V$&FB$}lVvGQAxClo;30$HL5lDihud*A%4!dB3LkV;^7>%Mq
zYqG!&A9RXvoI%gZRwI->g2SYPB1tbg0U9UkC70cRFPTKU0L{E!2e?|as;p-wNwA;>
zm}yKfYURNzE545Jz^T+srPZUGX{3qx0H&3ol`)Eow3xXj!2lx+DkB=}EoF`(n^)2W
z_26hljpwvSdw}akJQN9;WAQnnHTN=3Ko19hR`Qqt#60*^1acxN84Oi8W-4nXd^@w0
zVpMzKqWw_(cHwQ`*uQ>F4F;Ncc?}XU{q867ZF>zihsu1j_i%f38%41S53RkO-5Bq<
z<^ffy6fQNDn;z=lDz2OXjU+MMr0ziZ)HseHI3+}-N8v$8UWEK_n5pL6VPUS<!gEPO
zyuXr?;0P)}hXg2na8qB7{+PnO^luOv0oC&uTlW6hPDu8aA$#wIzJ~l%fvfJ|?r(@d
zZ$d6|gy<nd)L!I&a&dG!c*ZI&N&+Qos-(A&-w6;V9N13d3b6OtN63SNrhtu$+JpBT
z`CX#NMz#SNU&*Qkh%FEB?VwCkm3h2rAc~M{HE_=~5;SL&Gn-8C3@W}JnDaHC!*IY5
z5lD$kSkKhevIhRKN=Q|w^iiez&;<RI$pCf*(l+$1rg{$R^nuGlYJ#kwL)rw241%Dj
zN<E}ZFkp4&zJDq=PdWty*EVEXd;Y5|DtEJWhf!%TIXq#|VdZY+?!(kTWHp1u>@YH^
z-F?^<Fq<n;1z>bJ%5Vt}@l0B2B$XfpF!7J0KUW$rc!~hPD3+Ms%)ia=pl{0nuS0_)
zMk9rt16uqE&;%{gtVGqhUs{u$%()O~zzC_11`vYVVXfdfEU}YwTDn~JYTSiTDRNih
z4#ap?$m%48h4*c`rhEH7?VLTW9aCi~b>z~)W0xM$c|y(8H%u~4?Yic=Yr3WyCvBMC
z9P;P}Ra`!CY1TVd3~%qgX48EO<*6O5d**2Osm_lAM&ZKw?7XUKU$o?gjCIcqH|%NJ
zuxtIAj>_t$YW%D0ShIfD2DzU5%qnHsRN0vm^B3-wcim7D^;K7~Uj8EuKZ;X3tlbVD
z(=eh%wxAVAWPvDL3Mmg=TPKpMGzTdG=aT&qTw(TFBIg<;`kFOrB)&>#;&>KE1kb>+
z2B2dhdAN+pj}^ZH_t#P}WOC_RDs4ppbD0<}eknMnviR2G%#`AniYwzKw-y(_5*$-_
zmw5S-TNmxQbkR$TmM>p=*`CF(EG{@lszbazB$k;2MYhTooy&w{`02hJ3>+yIKEOe7
z@JMkSHwDW^-jsRwlSM}sEqQs-p1n(#FUOllp3=O)Tup&?1<^)a@`nk7JGz35N>n$}
zBOy~(>fI9qX^_jCE*5|=cn@Q((|dZ4jk)4MmOAk+0xA#wuDRF-%lTtBwIA!9Gr9Ct
z$c`7mj%LBTedq<CzVjKD-~lA6kW3>C%Rm_T=dk5?<j-2B^$w(Zr?s%pFn?5k6)5+W
z50y`Z=ao;~spTs!zkG#Q#BNq;w6dd9S;QVGi?W-Q9Z_Bt4dXuFM1bbQ%G0aaqq#<N
zBYw(a{saG=^oumRF~`B2g9oJ(o^b-TC9hs^t#pal*JhAFGCYDlK)aajbezcGb7Q2a
z!%74D6L@Jlv*JFuVgqdjFQGT%AD)WCl1dCd%tb6gUlqT_<#D!+4HS!VY06@ESTpl4
z&`aQn*DgAE%XLf7G3nNJA3U<C(_p#mGK-;e(UF7QYjyIN>Lu6Ta&XaF9q!a$AUtk$
z*e$72Su7q{Rad`o)%w|Sbyv5rzAip{{VH|GtUY1tf`Dk1!6*HuN9YH|>@$Gpvq}N6
zCzbi<_XLxmE|LLdr@JCzPlDyUYO2J>kDK?krp5CY@11*7)8aCVVb&~zrEGE2O><kf
z#TP7YylLLJ@l2Y^uF~t0_DF^MP}RYP)(YBWS{n{lRq&0_H_=q#){hN{cCbb4&mke1
zR2J^&(F+p7y#h))$&Mcqv1nis0{tQ~Rt7YRDB`@3S%Ps@N|rXO1RCi+U`OXVmgWXv
zeE^HnMT-cHUcQzLooG4zCyP*~pE5!)N(n(|1D$Ot<qcMiB^KM~Seud}qya%wDZZ&5
zO1Pjx3b0T%_XHlsJCvs@-%#EV9#-B^?ne&2J_;{KMjTCL&)`3$lzN8I#()%mP~Io+
zBl`zMPhq&JT1Pc#il3`0ID%0jBFmGyL7B;esz%%|@4IK$wd)5z+wt~^doB{rHBPcy
zjG6luZ0tQUSJY4LPA;CD`C*{EBv!=kfJ3<1sBE0P6Iyy<+WOmf-LqcQUv$@r-|xuW
zXEfU<8HF|Tj`ePtJNVh;#mVl;!Zd%ZBotIO;<t7qy93(%op{+=TEnw8a1nENyk?r3
z<AcG64}hzX0EZYFWa!DMyoOZ?Y7A;&%$<+8w3MhpJWDF&HY)#a9A{H4aw#;oh;9Oa
z<q+I6Wns_eChbG&59TkfBt}R~S;re$k<pzC>>tojkD`+_dDb1*Ao``HQpP(gi<J+G
zdw8GZ>SRL)4OKuTMcNVOb@(m7M?noGc?geUJ;8t6u0>WYa5RLDJ>(^Zu~>-DTzEbb
z=Pw6=C#Q(ao#I<MPV*z$u=hth<ZFByyk=6P+SlTUVns|yE`rUOvl<qZF1NNrS^kBk
z&e{zrE@XS3{7Js0?UZU#9C<PShF7@FkR9f`Odp*2)V>t|Sa^jEBWtV8YNL5Ce+KO1
zHqBg6?QNQUAP0QbaOG=Lqb?5ZLlZP3JdqXFBbSG?_!QPegco`UzEDBCfy7n?l|<N8
zQ$r(hn_68Q9;$`E7j_lffBwSWsT0OeD5>5O(2uWh*{9fh*}OFkZGv)4J9g^Su_Z-y
zktO~$6KAdO?4HIhm;a)+gVRbF%BNDw_qH-YUp3>pUiriPU-DaPao4J;%WF%Dllm58
z#~3FQnvO5O$UIv}o~Up(EN-l>@f8Ipwl+*yG^2h|U81N>`H9+~R;Nq6WZk+k_l_|;
zqH`}-wki9Eekf?yVOxp~wx$i7mS&wyRfA;|YZ$pD0iFQM7=^Of;Mb5{*g%Q+MV}ZZ
z4uCY|_@8q>JQ{}h=B5NG!svf6mRKr5#bVli@?ZR%doi+~75m0rb2XFdcTK&}XtK)Y
z#n$?!<(KX3?3g<BjcJ=FMn7bC>c;rSMQ3)+>e{<=;f)h)dXgJA+DdJ5q_(=fbyjlD
zyxOq~%LPEFsh*KmXEIW|_M9hDm%Gdrv97&s&LCvUqb)02CoZ4W(b4X%EB2q(#G5YM
z&@wJkH_qwtRocyZt7Y4`(pa=cD4!kEPl#4{yum=*q|U{&O2DV&=)yXRws%3})r>`7
zty6tM=kuW2FpR*(!{^GYty*Jp1woSmG%(Qs4H^#!;!Q>OdkH@{*K(vzM1v#qO$_R{
z7+Jto9d&*4xTs#V1lt-9mM`tTxU{8|32n(X<T7GbZEa-I@)etxwN#IDR5(038)R-*
zdG&g$u=vHfdm!uA#%F15qTZ_YAVc5mIa|*^^1!a$ZIirqN0GeLX&p|ZE{6qSIYTT6
zWPEGVU?{R)Vu@@2q<pY%ertGau`^sz+%j?2T?^LUy0o>!6M-UNsS#R?m__F|Gn3X9
z&{djT%C$c`e{S8Bi4#KMy0LTS?(Vvq%{y6Caq7xk-@t{Re0DV4heM^6gkrEpL-{{%
z)|>$4EU3Gq;JmPH{<qHyzc<p~60#>E@zsRX+#@>gc;qk2i2FwVHuCI??#%xdiMweM
zWaT78*EG!|+OV634wd0UaR@TenRhksaP%AUUdHC<XBegBEqMCQEFOgm@<0T73?O_!
z@MRU;-<t#<ayl(zQ6EtX7zxg@m%hcKTY<7x<veu?c7tCyowAnpr(RgQwzL#~Y~ORw
zwYA|-{C)OH=AP_<_(T5e8_o1A9&M&)oxiw+KUca|8RXBkJ(pRXy&{xm4>0VcZ2nT>
z|Lq#TX5O&2h!GYviFiX{IRHYEViDCLf^Wf)se&K4oOU>MQK$_!7!L(|E5Bx`dn|^Z
z8D!P9pUu^~tYLFpB<~24WRqgt9Jadj5ce6JRV}}8O%6hRA!!0JH5LHs91WhgWWLJ-
z!KL(|#^$p^amdJ5g8rZ$Ggy6?%`B;J_Kppf<0XMKcmmW9@>-TJn~gIShXI5aI(xEx
zlSd-_6cOeEGR2J$MBqWpK*2%7D7_wEFG0(EP;?Sr1EpZsk|pld3%9nq47KjwNtga;
z^X`AUY0HzBudMExSE>hYgVxdT>O;3bbp6&zv#t6lVjtU=7OitgFDbdK><hU?Cv@(N
z^6$kbT>r_jozEYb*t7qdj?MRk%pu)4==CR^bNgHOU-j*emraW7T2WR%b?1^<<CWFZ
zx2|OS{tRz1O4dGHHz0Kk@%_2lIo0G~*~-yX*bu&;a@;hFx~uWSnd&7zLyc!k+Y^79
zzW2%A%}?w<r+UFWi$^lbT1WlM4;+2q+TJ#*oVRKGq$U2fe#cY!F~*lIFMl-N!s7q7
z`0h(*P3YNs_0)}bg=C|(#^H0dFF*FieOEmA;j*^!UCYYGPua0(=6Gf8`a6aKk@-5z
zZK#wXo3iRQ#^E@|lb2EF_!2P;JUiB#<|qPXn!w{A$3jCPhbkV`D#zXugX5Moue<Ta
zb*m<A-gdOFzrXLBFR&HopML@VW6pdRQDJu=cF^D09J%TFn_4%lC+*8?yXm$IgsVqz
zx3vC!!=RDR#f&Fi9e_24lVXQ_I+V@|bPXC|Vgd?HZxjVYF`F8i8a(pd-&KC}%2DN$
z=PthZIc7h~N?-itu1EL2df8>K?p<`lIUQwM$W=cui|bx}?bTOb6E1v3`QcM^BdcQe
z=PpkFc*njs2H)6MH*NX+$l&D3bkD1=@_CF6^b#6m7%YZwDoKJobt%*>6l7EZ=V>@G
zzzY{zEr!q?#B%Vk9VD%4E~MxbJ)hcn+q^0Z=@qNy9XNJiUX{8Ns(OzNq-fqrsbhbE
ziWT!T7SLhKQavnveOJ`2^uK@O;eGSx?>nsSlq%#_#sdo9iphZ#Jwo|{FhMbfSrS>R
zQiwFss8KQy?9j`|&<*8j64q^OVgV#e63^ksE_l^9($wb9f`EyHv4&?kqn<@TAOMm<
ze1YGL4dcENbcWZd&n7h~Atmwe(#RoslRpeyDguG<QT0PoGXFh1Suo0sXOrr)Ly<ik
z4M9lqGQ%+ePgD3!uJAxmOlt6-I<`}C3af{OvYrAn8j`p-iY+v}g+0*+pGTxII3MX?
zd*J$*zurlyfj%JPNIe57m-OPW!{lntpQV8dPVE9M)yP(b#6x1(P&@JR4i~ea*?ybX
z5~H-C<}|*8>F}j}$MRo9?SM8!=4Q2wU($EzceOopeaHDv$UhoQfY3;W=e^g5xM87H
z;I{8*GeL)G;HH8ITBt8$<nx(boOIBMlcKz40_(kY!i-BA7;Cs>#)NOPnG>ql&Qh*h
zWt>ty34rm;*F33uigBg#?eg{u7R{5>Q`U$R2j3@_Lkx_M{bOC#*zx1XR_*<LoGo2&
zxIr06>c*B-IGq(GV|B@o{8hJ3p1*lD@AJn%&$i*n1|9(=hKoMs|KsjeFu0HwhG-gj
z6NR02xQ2KllvU2l&Q+ddYuKj6LihSj-&!x-tUR@F>EtCIlkybUel`o1t{IyqKm3Y#
z^I%x~1FN64cI~X$=bbnBPUd;Rxn=jXhSG-2Z`jT3lX2q?hsL#({W072*)<WKnphJl
z9J>OlJJQjT){R0dcw$MIV@Im_3E)riYBiU=q`Y_6ca&e9uVeb_jW)Y(*6X`BKYM85
z!b8t)Ui*XT*XL>UuiVO9x8B8yUlNM}WBcAqm)&yESfoE>5R7X!<MvnZ)QqWz@-+8X
zY`75MwNMbjhV@tZP4a0A=dfK#`hq?XKpj|-VF}G@eGom4WdVV~*<oF$#eJl!=ei;2
z2(gyKH;b@uxuk-&|7&zBfw3w_W7VfM2dtHF_k?l{Hfu3x3OEB6C_y$C8w_5AfRx6J
zc83udI)c^8R*iNmG+k%jdVp!FNlUdg+7#UujWV)~RWp3c3bO#-XE(<1Zj;wwAT?X1
z1z$A<@qO4EC69p5;9F<jic*bo>w(jnYSbl8TpaivJ~v3;LD^f$vOykiS%0kDp1GRq
zVCg_iC;5ATIf&(~gt<F%9&yZ$_M`YIM=tX_Bfr}@z09QUKHH!T*4ODaw5_(gyY4vT
zw$})2`7fCl_)f^)cf;3QkyF=1TwfzJE9i3PesUAzH_Q=CYWn6A>_DK_8Vo2`%JbUh
z9jfe_*S6Eje-d8cyItyiX=UK|B_;1L?UVG9n?6x~K;xR|0vZ5x!At8OJYq-&B}jT5
z#x}{P70vb-p^szS5EvI&o&q#3;_jrm%4X&6S8u*@S<qj1d~fxHX_J1<*1h^FTbPH@
zCENUGfOLJr?qVOXyQCBl1Gc{~yS``T!pYlWTKx?lGUtcC90u<4I7Y$k`Yww<{BU-C
z;B|0=wyn>v#ZVm@V<@Hf3s4l;7vm>@w-r|)yZS%w?(I1*QeIrsG=I+5nepzsGxrc~
z!pSc|SCA)uB~*o*q}1leH+COyX<6)cl^Ly@AOH2^A6)<8mq0BH{PW9E7WVFW74(6f
z)`<JCj)p-`VTZ*O2YpYtC>kEd2^SPxr15s^#3*QkxXWqEyk{wqj1GtNbEQ|(J1tK6
zUnIYs&2$CihuMv=&x^lu`v>+G339PrtlYp%HorK*>MU~Tjmr477+hGhviLYl@>d-K
zU!uT<e8u}&uMua{lw-BIN}g;w9vty-4V?xW^E7E<dlU`V$c}o3XlnIW7`o_Q0nj11
zJ3kyTozA_9?kPBHoQq%8XX*WLS5LPL^CoHFT`kb8Q0tgoqA-!j!?U?w)iRRU#2u5=
zW=G2xobttt>PY~kv}%w^h<Okkge4dNwyEQ<9EVM6{`&dhb}{U-n9SpsPwd=Nt@B7G
zhtni^bk)1B+s#j%4t~0)bK>&xW}uU?TFq&;<VQC$OaC{+ETgHasluCt=Q1ZZA3wgC
zc+2|v^Xr99Q_SKr*452!GgfFF4sC_8ZFc@~U7gWok%gz2<GQX}|9D6cURx^&Yl$f(
zT|Vdt>?(Rl#6glkWN>Gw4B#URl`pWSWHsaPj-^{T?+Rl%;){@`StD{A2dwJ|V96v&
z$16bph~Zles|b2KXKVo$Gy2J6qqP8xDY~bRh4}rn$()b-mt@e#Fwd)MdNQq8Y*-I^
zKqOSY68uyOQhX&e!epDI){mhNNM=IwXQLY2+&brLfPWf!2x1u(hS5ey?BxMlyyvL*
z=no!g*pcWU2>q^rYg;4Lqki3-zG)X;d+6E=r*#^~7*m$_EGg_eQ=4jA+oZ8YMYWd6
zb?&a!UGBQcmfE7Cu~J)W?WPsCJoTfeZdoCs5nPtKdb}+(w{hma1+}#c_RZX|z*J-U
z`YpG79lHe^?%Xkc?nU**&Cy^m+F0WA*VWfFHrCYF`F$mgbgj9#{-U|#cig$|;T=<^
z?0A^d|2~dA8{jc0T&>LodGPkA2Ce<%xn1wIlX?a%!@Eq4Md6Y$Pjh8C)#tL9&B{-Z
zDl*AaMfM==qY6ZMs*j2-_o&#DtOvEgKO^o#a!G8V!FLJa99SgR=R+3-1WD>6kPt4T
zQEnn&KOhDe*4&&kDJBfJWl@4anq%Se(e27Iv}pbO#r>3wvWJpUt}zNZYx9klkhS?P
zCbrI418eh@4+uTT5z<4YR!}Wu!0bb{)|g-CHs~wgPLx_;gZ}Pe*r4aOmyr#+pp0lb
zHFY6iYKHu9A$fn1?OWE+XV41w8uJSK1!e3*<MkMDzu61`>OLwh>v1U`ou!Z{BA27G
z@n6d|J;N3qwe4uQiV3KTDcpf57p!m?0p3so1Ax@X#2IiaA}2>9&SUXL^1&>Xh8#Oo
zQ?C?L-8M|oiJLpU6Q{%GGh;&0K{owhQSY%3!h1qcSn>U|R_L;f`cCNUO-efJ#sSbh
zkg5Hb9y)Ys=YeAvt+X|EzTjRz37BGClh(UmXfNBmxvV{Ttan9870vRhk`;uSF?`m!
zyWBXXtg*^vTY1s31F*aP^xb!Xf`+yrz9*G!3+V51{2PK^bPhMbp(nxq$mtS*2*~V%
z(N&JbY2FYBI?V#24?IeNyZFFOpZ~&zB|@M?sbh`bnlV9zkG}tH<X<*A+9DLM6)ro;
z^e4;0bR21O7`1`e+xOF@2{X_-gvpJ6$@aA#W!H&!-#u~A{pMi~sZm-1zR#&#z_oWr
zoH(f{72p)4IsB&kAisEnXKg#0hSTB{_@NYfoTS+(<_%OTG6&V<v=*{cLsqOSVOb1y
z)JOG*Qu;WmqtrL30ZAnnC_!^@RT38^L=g_)Sj6!Fc*Z_XTKfmns}9PVgJ{#_P>dLK
zx+5aQXm)byO7#8<qr$}GR}2LEN`YT|%<GciZ;7`r=RM6Mo*0TlLOlj7cnS45yAWwp
z+q;s<uFpTwLHjbG={=@PzI!5ha226lk`m^GIIeHIlFFpf>XHFtDn$5~LO*5aqH%?m
z$2wT6nTmGDI)?$JimeWHNO7Kra|S#r4ugug1UgoGf)+&L0<x>3keV@p1OHE$p^lBA
zt*GJGLDNniq=XZ4I+Mb*82pqbfoQ@+p_JGdB0aQaeTB!Lr#Z$97FjWL@MMe@Z^D+s
z&IK)jih;Wbb%1MocDc@#$)|IKVWN*g2&aNVGFMmdoaL`cE`T^;1?Tcf@^i>q-czu=
zA7p!sX62V=__ATa&S(g9I0rd{)J6Sdr^qB}JA4(U(1Y-`7)a4D)MA`g7I!Mwm6+KC
z^C_nUK7sX}(ukntS*u>(uyyY=UeDi#4Mlus`)o8@(xaLmYhKp;LGw3oP&Rni)G|cQ
z7Ur#P!U!VO1g(pNoJAP;`R9fA(}??`-wW?AJpaG_{Fi;Nu)eT^;QuU%IRlFc*+_>_
zx`&U5+e^|ih7FuRhmOU(<NWJqJO2OUe&H--7+Ge*Po=tXU@T};2QVp-uMyk+T*X}f
zIdn8s!Mtmk;h(?w=zr@*Wwg%>m+aK71UlNUGH`jW!KA(Xf;sb)=69M;|L@O||H&xL
zl74Wt!{fDxvzf&5M8E`Lo>IUfK@P&dqXA1j9Ysfw#32a=jPn2f=>Dps?=)zh0y=nF
zlN*J67GXr@2Az6He%|WXWJyrTG^F6<|JoS+k`Xm{tCR{6!43_i__z|&s!LT*4`;a3
zwB^UO!_$ZGtWdT77?_S^7Dqv~y|xiDP)-YnK8%pxr7p+Lxp?<w`w+dUIzzN#oaA~F
zOgUekRo;YeRqhTws@i6UmSJ#Qb9$8*V4Jn-e}*U+4ZrXLxOHwq@27QU=nxUnfppGZ
zn<6q0aQ(uS4D_j19RBDWGSdpWpP7xBN4Sm-S%s|5k?)~b3Uy@uAr_DRu>4~wPvULd
zUmZLLn47GQg>WUt!yAzB$G%F{zY<r-rKeG<2>S~B=am%aex&q3x^I|U4B;Xp?}AZk
z^YIrlk>Jo6{xrIjl;V~Ot%d0#DhpmMHo+{Xi^Rz)*c5L{kRh`PE-|>;1QQ0h^lDfo
zd@>|=U5Y91Dt-M)<#*Gl`Fr}3$-Z<?D3nU4Q=w2#n$COZmuW1T>}Nfx!+IeZ!v7G%
ztcDQl>kp+vdVk8V$G)HSg>V(Daj1A4`JRB+&HA5cq3-~n7Y2oBATKb2YG`uA6X8S{
zY?6>Vt(nsVyAxRF6YnNNtUn~CLrIFaIITfuxMVt=e)j}2Or%oj&|p93A5+|pOZ*pd
z#pmb`Sv&G65piAWD5e2SoNSIcgY-cWl#06J$28$_X(YT)8umd{pHg7Zo=kQW0->a_
z7yr))>upwE8ZMWr(itk!ke5-mNGO~-u?owjq}8&~H}EaBRQUYJk_kzaMJ-j~1H#0S
z1rxw$&lCSsY5*5Eh9p`{{~@y^&(mjM(r6cji;VSvEmZ0dZ}u7v>WxNaH@lu48ujuc
z{04p_HtH?AmEG!dXI$pv!-8`CYpz_XJ(2siAQuczyy!!@pi$wT{)yp>!Xhe@`nl`z
z1^zAe8p<`=WnrFL1*!@PPZ=huBJ={PS>a{s$9bBsNe$AX5$!cHKZH|luaOs}hA*pi
zw$Rj=>@_5!LqS+x4X9Y`l2I@7_L`@81m(I&E!VL96$Z9khIpPCg?Db=MU?BT)g7f3
z1oR}eOn#rEov2`=TqatC@g-cu`;n}|1~nUG-Vnn;qJfhg6hp5T(E`dSLj-kY;GX6Q
zi-z9$l?TDudYiv<9<xXdBK0fE$!Eb=>p*t?+4_WO=CNA5llp|}o}F1=q4CAqvoxnl
z-+26xjr)Osgn&kH{tC8-tSujYAX&ByDk<0rhH0A)eE8>_MbIX>Z9mf=3Xu{d5DSGe
z{bXd;!bUBGMEs02AatuZk6h5A3ny8K=vdpjVylr_0=J@48tARLevxvQQ6xQRF2uMT
zDdlo6=qryT!$n?JVgWh91v4nu1G=%?-N5?j)BLSd2l{{#%0EAV&&xf1Dr{4qxZQ5=
zL(D1c=mH9)qTh-=!wPQK;G!Plb9%5!QL&)AKmk+G<LD6G0z+kv&!JV}%vKvNb~es}
zeJk4n7HSPRLJZ^NZRA>}epRD9NQD(&9O0<P+eIYSg1*hY(a-jEfj2=b8_5xa4}OJX
zB56)TjjEyE5U@>C6ZElh(DA_jLN=MkxobFd(kG<j&+7Zdd7)5fkl!HDHh=vwp*$K*
z$ja=cEQCbV+&CGk0N^4leBy1&o0MagXPP}Dldja4m$dfTGXMghyUDKU6wie<eP~^6
z7f7fl?FKEu<WS3n{4cvf)NJokQeE50#E(S|QAWMTS}Oaywu{g(jrxO-q|4j8gfzJZ
z@a6GXFPLBT_ED}=k<To*RX{m&$_NN8oOKu))lf5i@eQKpj1q6}VknrHI?E4II+H9c
zF+H%o>nzu)+<NfxNo^YXCIg}g2^EdzUu!njfY>M~#d1*vxjpI7N&Q;y&0Q(nt9Ov@
z0UAx~93%#q(<@Bk9CzjhzLPRMRY32Y!M4>0SFb)OeWL#Q0u->@`-CeGuA;1us}BAQ
zc@mIQK>2shoeQcVJ#!PiaLyd@Kj_ibnQy2+9_9fE%1-skgH%88v00xH6V6~l&y7;<
z3z<LsMAf%3>*+Y;rwAP`&tJ>jA`DJcZ`7&@iupQ%b%(G56`bmS<#9BG;0CU_T(luy
zt=;C3<w*P59bdn5Z9h3?X^?<PLy2vLf4Q%T^?ghEqpmz)aJX%Th_*Aap>Nlc<}xz{
z@bcSeLnyAw`PUGAL>*F~12pf(YnG!XZdkkO7$`Hc?ByN%$Z$rECfLDLP%2`Mw2Lkn
z%iuczcuO)T(Vwa}C$&16nxS+qnzVRQ5p9I84;?;p=#nva%=pfX<JFfOO0GR}P4|P{
z*Bn`!?4K07_ST;qTQxuRz@h7U!|m4v8@AoQ_161tJGkZktqsBJ*ygUqot=wEZuaeY
z&|@-r9^AA1syVe*Ywet?nEvH`^R~A|3|iNi_VrWtzVgwD?&TM6T(CG2>Yl&x;$;i_
zP|dt~<s;<EEY+oH^@Y@zTg$W%#WP7RwWeuHNn=xm36%N;{u{rILkbEX6lPT7Yk+PS
z)&K`qfN2<1jYRpe7JJ;ZV8Zf+7;s*oyn?~0SjKvdQ1!gElb4HI%za+%r%eOt%9R1-
zx6UTmP*)YPm~-F;kqXU=L>6wqbsm-{)G2ROAL$rK4<&wrWS4F}$7>VLjZ~K@NB#Cl
zO&Qzj{Xrj9Q?1IwthH&{H`*sEN1LX>TEL$T9bDBnzAi-V%H>rqOSs{8i9DPnOQEm?
zKnSNAa;HMY+M##OP3;`0pT=G%gsg(SQ~>24N?A+(Cl^G2rTi+Y_Xmo`>Wi*@@Y*8%
zxO%^0<nvm9+>U>2&c=s7QU*VIcq8^q`sm^J3$P#9i<jPZ+ogB`UemR1U01*lud<i<
z^yV*^lTqj~dOZ6Ykn7dTiI?)`?dWy$au`1>9SGJWj|-YQ|Bbro{q^IrwHjL#@aw6r
zO5(p)w}zsz_FT2}`msf*s$lq^*3AS90U;2;%8zQ$AmjS~uU@58ERcbWhv?f>K#BeL
zYN8qi*%SY*!e{wB?9^3;*7vWVA<6l3<rGR4b`9)+5s+enfC$%%Nhn5~)|Ax=T}R%b
zkjxIb>`r<8_4JXqkECB$U^#wWOuf$1XFNlXZ{n58dU(CAELUC!&Oi-&kb(YyL&bkw
zFG94K{HSTIT!grnt(x7Mt9azgH#FZz%{*?b|DaQ#z(AfKI!4Z}p<~>Ge#1Se1*{80
z*9-3X((C!(%0GrhVCY#e9J%8rDwB&WM#Ib#hh$(WdygIeQucm3{$<Z#PaXurDE8Ph
zL%;LehHoEnn!BuM)VBd(O8s3!uiZ}X|2(CGM&@%M#UWW1wro4U<CDB?CjUe|R`M@p
zPqI6v{$%Gbuq%C3i%;wne>#|=Kl+eJTk1Z-(L@12&%MZxw-kLv=48+WES(PWIT1Ks
z0C<=YX2Yy?Fc%$1$a>sE6N@S(ydbyNTznjed+MR<yC<)IaP=eae|j=;-nvAhxMsqh
zf%7BC+?ljGOClJQaynwv{r2|d(~FbSw@=)te7eTwwA({vk!4@If7bS&ZjUuwcG7Do
zD=TAv6*jL7jZa*jd1!|%S`@T;#T}7}jsYu;cj@nriDcB?m6794S-Lo44VM-#pJ>p#
zqQd(Tx2JkitUck{ZkFv%h>+T$y361us*p`!x@ITML#@u!?BZJ-!@DqEXFzk1cNoI{
zJl=+S{D?*ZKK1{XW)YK5yzt`pzw`QU#6SP_sM{sCSn6GMftpB-*B5YYd}6E1T{V8s
zBM)6)8@_GeJO87$68vfVhG%-%V?Wnl^6Z65%hMOv_5&oUSnJohv?fUse?PIwpgrjj
zbkDBTKUc**{+~4@<S3F;xc;DmVyDhfB6;1Iidh*|waf~$xR#_)CnMD&jReMo(<*|1
z31dhHQm8aC29#QU3vJXfTzmRf-6H8D=mjb$0}jtInq@_^IybKyphO7Y!eR$zgdnU(
zEvB%AzIKM@MVO}CAo<Mg7K_AosRzQ>My<g0R3la8l-0m+or@Gc^(h{9NIr{fQV%kl
zN3UE~w#1zLA@FHhIrSu7JIh-WZY4nVe8^&sG*`GBOE@uIK_*As<iV%F%5nr7mE8tp
zi*k|6rL~k-Hx+C3@E<J_s*fh$xOe0|?9P)9v0qFlbQNOJu^~tBY06HD;+Qw__Wk=?
z%nqgxu*2V+vA{A=aG!Fj_$QB0p9sLWeFXSL{fLaLL>+3;_M*cli^%=z;`psm^74d}
zCj*Zab%E6QT+owC_c5m2HMR6aD{F5vvrm<yOJ%Rm;Zr6nld<#4OO@L~&RX`5cikn$
zo_CS5+bMLMYBaX7se_Zs9%SpLvL@vo#T<^BKm5=f4YU7ZYeNa$EcVMWW0VQAbi^U3
z*t;Y{c=>4M^bRUw2oc1;q9jPZaA_vxsFaP~U?%O27@cleW3dOF$d>Vq0Zl}ZBVHjH
ztf_?4md<5`q8EHId=*llqXPIzIAX%~1B?b5_S~HV>kar}&i$g+Smv7ZlTat1QzXxJ
z$_Fac3X5RMSd@80O63eVgMA|`7viFSV3ZmRpY_8pOoLm0i@%=q@I7J=7Vq5YX9ffA
z{>R`WG+DU(#C;6O|HMaL<vBfyGwWTR<1xth2vQzc#1c#wRD_Fr3Gx~t@{bExA>g9l
zl)V7Zh_060KjCS9biA=f=<m2LwWy{MvTS2bcGtW<F=cL5+`&)%{3+>azMILnJ&h}h
zly@(WRadr83lyzrB*7h*#Kz%c#TEcwR<x>ZLH44Gb)Vv~oEAv$QE>6AfHr(F(C#@+
zLJlGHE;Y1|WL2(ysP_V;dWc_?Nl(dVTAaYOpjag5{{*~1y#T?AsgabJdOGqoA-oeB
zE0oxN_!V3X&c0eE1?A93*;A)ACcg=udm8GzJ~h))e_kxCET|AT%Htl--<TuV9Rzfa
z^071GVO@(exBpG~TNX}-IdM&SEQ^@K=6i&j@?MkqyZUN&`-l%R!)Xm42?)i+fN01I
z_wDCNpZfL?Y7SfAi8z&ygG>e2VXnV<@TsN3YA17M0e6&-Kk=YQOE2LMDBtsJQIke#
z@?QDP5g#LZ(1S@bh&gBDacz8F<R$`ib41O^&yN&Ze0o48Au$pHJkd2yxShzVEC^{o
zxEVj+u(q=JjGFkE1kP-pE9bY?pF3$vb!4W+X|~*Nk@e8)b=`MmH}mHn@C!4WSGTqW
zy}rdoj<Tq$cG0bo;KZ?2$&#XT?E3x2QVTP-Z@!(=FWS(2E~PwL<nKbmM4h<g4n;>`
zRpD-jIg8-ap`Ym@6rNlM3=JFCvr)2b9N_9ODp{J#8`v;h=Es?IOxl<xDTFrEW^1u2
zMHxsJOkDJckGK%`L1l`IF<uffstv!sw3x-|G|q}ylq|DR7V4*W(?-%}G;}P|mQySZ
zu*kP!&LF}Tk&YDIA0ZWw4UT#ZE-}&+=8y*s&65R$HHj`57P&hy;MCPVibGIFLm<D4
z1T+fqihrK)18EP~kj!YiQ&Cbsf985*mJvL-DC&!DWNiP_zZU+IQADY6{yFm-TgNoi
zS-o2V(M4M>xNiKM<#Q9_2M;_jSY<GaI)mW$pL&2rnEk=`q!=(N%~kI`sC=rtDLn8}
zu-KXG?La#BaBO_s6kHW8nX-Fb%j(vN)otM}^dQxZe8|KrQ8!qjze?TYv)4`h>UH}t
zqe$Y&x^->4;JRt+*3Xu{ylQW~6s%=u)@<sQj)|Rdsu+M@AbVYo`6PmhYode*<Rvu>
z9}!qmL7OlT#T4rTQru(OPi>~6!BlKwMiZNC$FYcG5yvTlmyw#v=M)cWYQ~gfFJVt>
zq~`S7oR)6J2?icV&xW6Z&I8CNu=}8Y!-3V5*oU(pJV!{pyvacr8HA5P0nDoEQ%(JY
zi_HlS4K2djpeQwr8f|LDf-$pdJEIqbnAcQ(`R2Mwiz8zq+ZHaqq%>Mu7wuYe%n&tL
zfGjDLMa5%lx}tTse#w%qZMbXkq~r%<8NgEgk(yfXgz;U~-7DFX3+bnQ@#AqBY=^OF
zLbS7X)|dq=R(4l+ji2DHt%>*r30Rp-(iA+JEy;u?keU%+qc(@`QA$BS9Orf!N}fVd
zAL_Iua?ljh5MAJ^c}*yLOiMzDF9{(p(30MIi+m$<`Ua+XOL>c2D0t=$9GupiRQ`FA
z{BOl%>K)}7|3O^Dzk_}@<DC>em{Rc@>6mR)GzU+fJP3!_lP56}Ebt+|2<0=uUVxPy
z3)N6@44izF$8~7*yh5H)fjBg#!<YwNcNFgJ&FCX$+dv^2(iY|RlLr&cJ?CvhDiK^b
zqdxmD0JgNT8)>VE4emB7mt}4}d2r)5g#{ZnU8q)|NhnorPaQnz>S+LontCn2s+La0
zh$jQ|3fkihRKrX7xJMtz8qh?orW`ed<POS%kXt~UVzouoVAelIN-D|StN)trSa<!!
z2b%2WVza&Jz{S_E>rfqDgrtxfxOwvIr^UxInxzk2wXb_tKnHl(z^v|lS3R^;C5-qU
z@k^Q^e256y0(|hy8uo+8d0&n6hRC-)<uiJi3S_C_T2Cx4r!f779Y00Q@G&L4IF%xc
z6zpU$4l;FzD=A5nW+4)h6tI6zYu@qv0dAs_vF#y)UXQwkxe8-fM7yQrevJ-jLqq=M
zC?}t{QSfkK&q&8wc(VXjAv>)pyDz3Z=lgVFfaOs{79<SSvt0a^8ThZFk~CRQYc9M+
zUHta13$<>aG081CD(x1Z!z{a6rfg{`f{nt;>Z~S~76JTgmet|iqonNy9qSRCrj5SG
zE*k8okuHXMA1b|YZ0qc>KB6<%`;DPFQ>HnqYN&4EGLuv20mv@Zt>Scu^WHjG$A{{M
zn0_!1B4y#@2tE)shK{KGiRKDSUb&Ams?2};;|q5pJXA^P3}#c(A}>+?UHMSdS`A5u
zx!-7KdwaT0vc*icx+RrkWvS1Vqu=l9QLeTd`z1pXyttbcEn$YF%gs^<``o$khc~%U
z9?(+A$FHjL21BG2Kpc=@FYF5APed6YZ)jh=UwQm-OL4H}p<gSH|62Js+J0Rc-0;2D
zwklyDBa6wFP<U{L_zeBA84G94`Z2wh)1<8KI)rrqF!hkIa#-~wCwlAiO+Dh*HX;Q3
zMb_YQZ6t|qB0}VU;c67FDbPLRHiW-7;J!xONcZuZh2In?m<zv;PlGom$PvmqOQ`fC
zzc0Lq&#AA&YgvQxA}@$Iz3}@~Dk_><%olMV739mlk7y|VeJq6h({N-N`F)AkKU*9A
zZncuEumPCb0)>TTg$*!DALN=JPBdym6qG@%J)>S~Clne0KH`mlb{f%P!tPP}AjxA#
z93;`Q1V$D?)kIu!LsQfhjw9EQ9F=<QgEx*9)_Z^coaIq3>y_B1`piC?(juo)nIC0-
zDn9&Z<}dFxHQlKEWj$Lbgq~n;oLYO|eW)MPm|++FFVI|Qe8Ff4uCPwVdtGoTV=nn!
z<sXA@XQt0!V@lY!*!!IWGbc*V#0F-9yuF}&%1mtit@qx`7O^ojU}?PAbs*lLLx{l4
z>9Mg!5}_H(v@l9y2_n5lmXZ?=E&S(lJU6Imo&ZWZIn@mAKqMS=Au89C=0ru@=+;YS
z)498q9ZI9JWB0j$+}686F?+mvy={HRr$^I7WzrL;!!dIDMD^t8ryc8UdcBwRSe?@Q
zeCZwRQ~JDm!Eo-)4?J-5xd4^sKe}D^^(*(gg=;zY{*Cfo)5#lh`mXYC@C%ts-TPOr
zx4Ya<b^dd{A%gZJkwN7csDcQ{QZtcq!3W$l`JPB2vR!ctTxBTB83d9%-Pf>5jAH>O
zc|Naas2cQjC5<M9{sC(wrwOWz&$*SHEkt9Fg@C&fg1sR7cQzB23SrB<+1Mv`o|>qX
ztN*_<Y;zjbbS3;ng{(af(M|Ncu$XKIs^uVa;7hGmT%Q8gJteBL4<WSV$%eFq7JB#>
zp0iX-C5(oALou489mBshd&ltac}LWi(CgsaDL(eO*GXYH2uLp{vr@SV&-2TX_wJ$c
zu;DVWH;0OocbL`LWcxFSsKaT)I-4jmq{X-c2t|aJQkL}QXiTVMz=F`J*S(Tc{UO0!
zi%CAn@koN|GR(ehQJ(p;)$Op{@wSOMEh&o|_<kF|_h;qZJFEty)ADP!>Qx>8!DwP-
z`FJ}oaQjgCpV<rxbK^lLGrfI>#o@Nx!OH&py^S(Mo<6#&dsVsr*A}PIAih}WFPR&w
zCRp$^BQjucQVv0ZvdTb~5Y%*mLkorYIJsDrg^}#t?y#MKoS(VfIorvSE~hJ+Nkv_H
z1NyT0bd&Z4`Byk{k++vY9$qbIp;T4E&6tF`tlp*!>j)C5KxYI&p)K>A@*LYD^nxH$
z?vczftYFCQBHl2#E4np$pk;es%l>Foya6Zs>Eu9EYEz!e5Y{R^h4l>CRPYp*(qm5H
z=D~}jc&KkX?%Ns_4@L11PWDH)q8*0URaN#UIU9C%a`k~+cScW=kFDx3OHQ<-c(1A|
zhLPT?d~EY|Lya>!Q^W8jeqE%Xq@>T#)`R;Q;n0=BC`ofPQDBM+{rFksZ55a(iGAa)
zU*eU+_dJAYMzc*kC0`CJJP^FOO9?7Xpo<{uSO7rZNrA__;wfikngXyqdcC>NU}wp6
zrPBc|2Xff6WKjHOlr*OB8%+b_HySNtDX$lf;WU+r55_k%G}>I?y}14c>;mc66GV=~
zB>p6tL*)LIuB-?uX}lCp$PRoG3NBNh#Q-2Qmv!*o*&zk*WvQ}QR7jc9RyUZv;eI1q
z1myA@D>js9##>)#Y7`z3u*P$CtoC0yo8w|Q6F271w2yF)%8KD0_2xTV;x+lRX_)S7
zLESy7mmECL$tj(~EAaM1nhN5QP)RT+`Em;B3)pSP8(VtVYgUKyj>BSg0P|KE5JF0S
zre930DlR@=+*Q0v=*uq{`_A#ko)-3hEcA%gLXTvULWp5*D*ZywDm-z#xOi1heo6D&
zsfhffDTW$dt<wT6I?K6nu#Yoo7L9Zz#6jgVe^DDk@E&#s&6aq<u<v30z?vUZav1mV
zmcxAjlNYM;OETPFQHtj#))@nVNN2efONy$*hzrn0!poA*3Oi5yi1mOT^a1^5_fM}n
zuO)1Jz+?qPwpi0!_u!3{W^+J@jcBg#<9<+r9x|)+#V4=nxokt*6Mrxxl?Pk9yK!tE
zEGj}ezlf^Np3{E;jFS@@NwTLfn5^M{0`ZS~9*#&uMS&a?bfaj*P@aq784ifB`lr}}
z%)gz6no)U&J1L&x4vWH?0v;1HGs{yD;uWMUKA_Y|gMs5JpcI9zBwgzCDQVYKmy-55
z9hE|=@;H1!ljLAYKA$6dPCPeKrX+(wB<hYtGNBPpq4^DSW|>I)HAE!7yiAVDOsdl1
z^kJ2l>S9UXuCtekeIpWyAb)r;s3gmj-+uKnaX)3%EDkWLFD+A&-j7eww|<vz3mw@+
z!o7J-i5e*B%!gz#%|0Q%l;2JabWbDxCwQ11P$bynZOG38kCFJ0B`TK7=h@1d0fA4t
zUfe_GQkg(N2rHK?BVnyiJtW0*DPc@WAk99n_)0`HBeku?<qx6*Tz^sSo4khlcB&wD
zP@&d#u=Dyiu0n<sv0C(6B+2G33YJ+9JYUaVw;PP2Uk)lr>&#xTfkW^^2cYa9_rm4Q
zin3x4(yLf3=0BY<dnio{QV${T43pn+S$0@l6UI5MJFU*wn8t_iTTYO97Aj|CUP)~S
z3c=1mw9{<1Z8zC=U5^wiGG2gWNVEn}dkmsICKKgRnemaDeXg_NhCtL?r$q`U9;*ck
zNzw*Eu4gql;vky569C1Q^VU#J*L?QlXO2Nc*o53VM!Bk|cFAToo|-~=ncd^G-UlVY
z&B`rw=P?ZX%UzbMtj<3?{QLd-BID&ICK%-6iq&&}<FsC7aVb|nfd^4krfCFD&TEjF
z*5U+aw;`63ycp2~$m}tW`ix_$*NO2uJxZ4t(lr4|h`Nue0nbNrg#^T!R($Q3C!E%6
zEv~71yE=<xhi#M2ZZilwu8c+(?k$aWH8#g<=Z~E_rmo2G+}$qAwN~eZtsQMnt;4)f
zZ?jrNU!r|k)tWtys_2}$u}v*KiD@u1toiyofk&w|9yQd|Hu&+aYmxuPB&-YQmo6x-
zFCXLc*qxDJ&6o+Tv&S5IrSu0Dm(%)~wme*A*E-!tY{>T{IwK{%rJaGAcrfB}x_x6~
z?NgR#`|L{eSv%T*Hvmwtyp-4g+;<#Yu-bvpE@#a&$atCK%V}j(r9`g}0;71P)B2$A
z^>07GDy&Am=Vx|<@=_YGAKMS!>s6Le->|zU{Oc`LG~#QV)<2JRJPc{DYNOS8_y_LC
zl{@TCr<q;&YlG!-i)(4O(~2K<xGY!Gy*Qk-h-5x!4#m?bFSzwEsmm!eoyrI;arOuZ
z6P)FM<=g9n`066vAkf+<xJ(^pDy9%0aBi)z@;ew5{WO>W62$lakMd)^-st?P%lI2t
z)Hp`>W4-6c4x>S@{PH(^%>AB~t9w+1&30NhSzJq;*3A}|Fx76iJC$XzW&Y(3cE8JR
zb!47(SvFgpOI(&s!0&j{;v!y#gh|u^kVZJ9B^rTLKq!cWhf6jz7>B3{VIyUy6St8`
zt}7v#!kob_%sj7rhkZ`%r086h2XZFre!9|+So+}e;-=^KDM@y(a^Sx%DRgARg`+6@
zF2u-VGLQ-ZWzz#K(++!YiRJ=~3|GVj`!3)x5$zUkh)3uGfML}Os*EV|5hF(UJ{A{;
zN;^ys#azEYS4VvUT}QTW$g@cuN;(_~!om}CfZ=y>M0q>J?!6&0ot>C}-$GouFs%Hh
zTmXOk#{D|~3BT@JuRegi$szQ;LUnyKd=u@?UxB<`_Ui-kIc(E;I{yK`ZY?|iTsd&P
z-Ds3oUP!mxQvQ9=j3s~$dYyr~$?Q9b+{-|eMivJd_6zn%Diy*g%^dgph0WMnjlyQm
zYvbd%&X(IOX1{WrZT72MGXRGk%-(<@szG$F^a0wjK{JzM4tXi@39NXYNK<*-69LR<
zHA_JJax@?fIF6fq^$B30HaB2{+{uk~5)kSg_1^k+EuCO#z)8DSy4iVj*ToiH!~Bac
z@4lm}>JH~j*Yjl;)*~sL(K7eK*OTEpx-0KkaM|Wbua?%#Xj@*tK(C(|>l{C&ZhWb0
zMo~pu{jBOKI=QucYE5gb!YQVnoLhYCh8f$YkM&BY2iPFc51wjZM;I&Xyq~eb&xB70
zb!DyRW$vzMsVFjQ1?9U8snP5KICcCp+z|F5YaW9djR7^>S60XQbPOU4qinn+8ToxO
zNmqH=nTD{Wfv@awt2Of=f=NR|5D_7WgKt``%4VxKRM|4nPih20e86-edqM8Km6$g(
zF)F>V8F&FIKjPI0<Dq!qe6g+&rn~T5K8bHudaa%LMQM3{G$@LESPD9pDy&{Aa^|_=
z(o%wu3=JMtHe*8&6wbUu(m#}=PW#bTM#wZ%HQlID1LTLMhz^SpQjlexCb;;d8aTLA
z1w(2RL)0>*Fu<I{fC_sUm=6!#*o0&TO_-p%2HLwCT+##In`x$0cv9vQfGrs<X5j9S
zCJurg%8!3yXXa_P13C1NG|lY%V2_YcZr0jNR)goCuPOa=#{TEnIm)}!-@osDY4dN#
z+9fwDHxHENK%k(BlY6M9r}~^%|M?uj;WPk$TD<5_D>5JJohBIjc8gc^_8vam+bbN)
z^b&a)S?@-wcXYVk<j_uf%B<L!S8s~C&99mGh3)Va>V5Z!+PTi!3PaWYx6x{?3=UUM
zy8MhLFoOTujq!`V*3tMSxoiS#=D?7Pp0%n(Q89qC3)`8F5QUBrh37*5=v^&^@-+(>
z0htu_oq#P)lq8+7G(S15;V0Pkj8^Mm@ObujJiy12bM!;%^Wpm2hU;Hg%d@u!H?ron
zhpV7{3eP3fX1D@MX!O<)`U>hiqBVv!FrlFe?i{Tt*v_Hf&)NWd%*!uj=XwWu1V=%m
zC=E2Y%d?O9C>(f5K@*3!6y2GKU?CtUfo5X3XhJ~Qjcg?3QbPGi<f+SB8{21f)=$se
zbCybf9BAp<HLbnQ?~L2*(b(b*cEPi-ruUk|=kLA0RH=S|A?c*Ey*s`450iUm@0{Db
zbhJ7r+IOGdJ>IU@?a)b<UCVsMH*eT-<XK_t&YkQronN+_EzXHcpULbTn(sq(PjGMO
z;kth@ohzuG>x-J>E7bj!{QCXu3mQVoR({~yqt$+}u$pqisO>>~0Lk}B@ByTU1@@rY
z>u~r$XBHw_V;CUK2l9wfE-|f+u$d`;80<3WWT;92N!SjR2{H~6qAwgjz)%Q~BE5t{
z5sXHIfmk23I8e_Z=spyPNqq^MSm$uq;)aRIt1IR@rrxz|-rh(cR#D{NJiasR3>XYL
zQ?c6>sGBu5Y=Z}>%ZU`B67$U8nWmTEokDOZfCCqnPOb^fozyaELUjAIxk6bm033#B
zK)9kPDhNB1%fimKXjQzX&F%7()mOHa`eSoz%C&yCm5&2z3k}+W{3v)^aQ~O=ST2;{
zqh1e}hLNfmPB0wKxK4n)$lD{=B-9?QB4!5iAyd1#&(;uI5^TqO<*$<7Dnfn947Tvt
zS#<%IyV#^N7y{04=lIS3qKa4`vUlFHyQVtkR$QH&Xo%Y!jyh4ywM6DmD$Evdk4Gmh
zpTE=U_G_b+^J4zew#xc4kIUUw6R(Q4Im646I|U(HBwPXSFjgH1mI-sGZI4bs!_5s5
z3VlxJW8l7`)tX5d8S9bL<VMXsn#VOi#VBcNB+qyZk^}(U%02L}LQ=a(6R_QyvPQgy
ztoq)8fxr!WxP{n9(lXE$)z}Alfjhwh6a|4~^@+yjM#^bK0U`BB9YEtN9HP{6<TnIU
z2T%ZMoPoX9#VK<%-qk>fPC=@;-9uH}`2fVh;~5}+A$u3Um=pMOMiBA#5(f+jB~MSC
zn)!Lx?D_0_9r0+`pq+|DG;S}OtTT^^ggZJy6=Tf00YNken;J_z?vjl`&(-CAEmN*Y
zCIyenIJNpZr0o0Xx|%6Qw;Ryo*9)=h0Xy!_Sk9T#&@^8c(nn0QS=duDz9H!G1RKVe
zc%JC!;BeL*S`*&RKFe1V{`u~DM2I|G-q7&DbY%s5VEO^&mde^<N0gN-fA<TvGUmVV
zNTa7}Oa=Ss-pVS^lZFzj*I5}0wqDU1jKxYO%$?E@U}ld=Y`LqU;jYGv_`O9nt+LG~
zx7I9s<gvxoZFJmLy%<rEl|TELZ<TLT;$QY$Ik5!KPUO2_8{4V;smw0;8Pdc?op4Cg
z=WCVt>;UG{pRiU8kB^nWzuB+3UUR4BQ7)%rO`tFm8O&c}Ju*E2W7p9T9;I7yo!5lX
z(M02^IocHA0|sI3XLKxj9>WcSSUt~xtJ8+~5J5C2jfxN-A*?|}r&Io+23KzE5u-v>
z$p^6hGe@ZSLfq%|`r@qnoO1>zZdIP&vYv%jtSCiNV75YUt{d0P9x(tvw|d2j+HuYB
z@9tg+vR3!~V7#L<UR)BNHWPx1km*~xRCqaHT|V*YOyKE>D=YyVw>~Aj&yNQK8!ugN
z9UCp~oxz?gj&*j#ii=|%ov~uJU}aN%okhQriOygttN7OrFRS%-*41?$TfI8-OZKsH
zO_fIsv2Dtw<NeV|tA9Q#(9--?X3MxlBDl!XV62$7Y}0~hLql}IBiJ<sg9h=ZuT7iw
z+Vsq_zg*nfrS*8UU9H<cremGkt;4Zog<<?Zm~Hl<O^cP!r$4$7Psh3*?V^`-E0#oi
z)Zf4kDYt|LZ#CObI(s#5?mu8Xi=%guznC;E30FN_P>H7}(~ORJa!MK2%;=)9#Q0e-
z_BW5)m|^T*v&rE5TV+7}mC2O(gmsyWM(^LM{K_LvffdF7!z*rZDzod#Dcu7mwar$`
z*4sUU=djGz-40u=a6w4CiClcL>lMlWR2F#kgGfL)<rV}F(!6-_;RNGX;JnSxn&S-O
z2>E^!$C{h|!XpPfWluYi?|c7qNc3!frpzTKbdDdEx|9tNx80$qoyY*K46?85f0sW&
z!7aa2ZZbRGWXiX!R!fDr&>YFc1tlDTfX&`!!oS+D8#!ILKE()Z+kfC_7D`;pT=h~J
zBhY)eOM-}%pyjLp^|L}=3dbtO3hGJ%;x`FW2IZS?*ETc@zhv(z#m_v*Cd`@z?SI%G
zDz$1|ag-7Xu5}ewtF<)b4}(GsDA&ELygY7vMMZRq|I9nAAvVB{pUSXJ24sg9wMM(o
zrY%~PNZvB0^154YNvyzv?6VoQqUfS5)sk!s6`k=rvd$y_Iq}U&@DFME5PHT1kJKP}
zEE^;b^Tc&c&>7%g!ecN)VE<V8w&Im*6ffj)->qyZlqJhD3)xb|seD(iW8I2Rd5A4z
ze^$P$IK@fI%gP_wWaYhW%I|O^7V&L8tQdZqg7Tj9rt(MS6=qfbuKb7c6ILP~P=2EP
zosEO=Vgg<I6m&_472K9B58*#Y;4T=6CS)C@B&9zje>afln`{`kuTQ?GZ?HQo+QOOT
z9l{$Ong7}-Y~1)3dncttGLMU)9@dYzj8x6t-@Ho*98n&*MR;;==JZ~1Z|3qI;fhoD
zo;ZPVIc$SdeJ>VhHsNXxx8JS}#q7<YT;{@x@)-Cc;*LZ(k*Z^$RD_QmaZiZK1^6nV
z*rNaIklUB9ekz@_50g15>!uNUUwQid_t{L=-8{Fsd9E_Udc(|1mz31cb(?I^6JaRZ
zOzye$B}*=ydBfR%5-yO9@4d2IX<q)ydq$ZbvtQA%;N=b-?0)qt@AHo|r@rEAM}ASc
z;LP{)Z;hDO6rF-G#76qdH00Vc7qz0MI#OpEyJO#D`}RF1JjQo2*`S9qS`I!)KV|>r
z(+>fwmj~Z*h2;hVYe<AgxXWq&MY%v|Uad4KO{+HxMm8|ye!$LS_p$TDBg#wt!uK=t
z`WR9>of&)GC0`+b19}sRuI!+(055HHC{*^C?{$<c7ZV@7=|VqO$QTXeI1O&mWu<rs
z@YG0p5}(Y#?!ZUTrRBH_NMQ)YKYpQ{8HozSM**aKtbSKhyrei*F)MMQ^%rX=&k?0t
zSFOD4J@?F-@ya{ON7Z#nXX&a$+k0<MZd$ceZ?n`?EPeUso9bqCC*4IMt@95;qTi#n
zKM`0W*HniGl{@}<#OATcI>8X}1Po$Hc}qp<{*!Dk8*^uyoeAHZJU8U%?shoMt&Xib
zYl<(OwlbyH9~UkQMhyC~<8{XJKyk#ND=F6NBZJPshK^b8abrb?-d)}l>3Pm>xa~G=
zd5ie;1B$=2vDk4S7Tj(w853+Y)IY!XJ2L~drKL7goin<uZmzqXlo46mqn=ayiO@-G
zK}$BmP78jzIl;r(d8ob%Er|9ND05~rsH&?GIg7y@*r0;L|J1N>zKq9^I6`gfQW4iB
zl2x2%Fos>-71gXdzIe8N`N3XMNYqZh`AK(2yynh_YGNH8OI>;CFJ22*)VG*q+r7%>
z`^<8{Humn%zh7QzyVl^S-u|WnM2=W>gQWLXXqjH?v~2l46QA&xl}Y1RW&YR{?x?Qw
zy0<uysb=a0=2aczm%Gcl*+fr3E4!g#D{{O1IvC<)T~S8V#fzlgUak3#mW9E(b*?GB
z!Y`Y=iSXp0x!mR+SK4{wuPWq5ce$y{UA)rbj(OmJS3f)p9>NsUFij`?*r{2|!NL28
zsjd^jAOi;(BavJnJkV5@q6Njrx_pnV*!;-$`QZm=?(7`rmYGiaFE&qk+!E>-H~;02
zBJE6QS+!@+L?QH>z_N2MTvjXVl;wk&Q>BefNa&bv=T|ex#<8>^A^`R?a_9izLs%{U
zRyz#ZBUff=dwWf5MPreXAx*?dJ(G)?HgsNDz3k3))2?Or<+tCQr@YKpImX9s`YD@k
ztXaBwY0)>8)e|o6og%Pt(%Ag!lmACj$e`|sn$To(P86!}giq}j<vyduYE<sF=nd|E
zHJT1Wn_WpEzB6TaxukwlCJlsmdx|iiXXG@!GwZiPj1h-TRs#x|SI7*#$78p!)%13@
z&LX*710i~o)E~1myj)4y@k;bjl8HKvnBni_S|n_sYy^u-CRYxgq0>+a3JN9kL(9`Y
z{Ef9%UIYG44HLEL>^n)PM^>{TZ54Di;NP@qDndc2gsadLfSJs%0vZVKL>I%ad<WVy
z#-kpy;v7j~k#Z5CA1b#^{5+TV@H=!0VA^qj|3L>q*nDoUyd%E&iq!a(OQ%d)xUk{)
z(OY-yczEWP&E>UgH_q6-y0LLVWXd7s-ICJD&CSscan9_=7?KCFDf{<77Yc>TaU%cy
zy(5Q9OUuirR3tkZR`1yN3+b{+bLLELcAB(Dw{0CG+Tm`l`qF8*ueg}y4qyR}!j*y$
z0Mxzk?aWg8)20S@k!zRW%<Ni?sLX%QoG&zGb`O5MUpOjWF!;W3H|kHc30$ar0B^Iw
zZz%yhyOp?JPhMnNx0Kxjf112LRkjoG1Edb8Q)tAfZ*iTBPfZRAv?T9(I59Mrk*^b|
z7zQcL4E0%P)7U#9pD*NPCqrIu$Tv7p)z-SStxZ~xtew-gwCzw^byXXiU6&NTyEQeq
zF12lj&TP@mT=V*xnL3ME$BxnOZB^B6Qi+e=qyBrjtxD;xZfmP%->qtMWj59&|43(l
zRJX}G;SP2*@$+4~exA6>qSKlWR#hD|Yju{)(cDwjt*ux`iSPOxO`=Czlrud<fhgRo
zXR-glfQFVtOK3YjZA^zsu^7=E9XNF;N5nQ@cQ?j~;Q{RizXMuLKN9D|SGpL;IGxbK
ziC?^MU~0kwh#ZR%WI&2jVtU+;l@!10IBts%VMTZaF;`e(LFMrkS`uIfS3ew&sVf4O
zPYNEflEx-RqthyIl8DdH6}%7c!E@?AEf#1`GgcT-O1u-FQ%lMXxXrW%HMB$EpaOZk
zzIvS&vM*H$=m@A&a~#Pkb>(#EbK_y0L1SShwjawriLP+%D;20XRBpcdlLLkoHhta{
z^Z{xF;tp98FCrCAgdqm6q(YM3jowOiLFwCZj(R6>PGxJRo2b$0UM!pZ&2S<>8&R`n
zUrgV^M@nVkc9Q|AcjZ-*&4_qD<xWTeqNp<(5Xp{cEI4E=Ng%ndDCiJQZ=4<RhnIy-
z@iH4T89Yvlg;~psyprTL#ci!xz1CY4EjF5*;3^zNUi(%jGmI$`S$T1=L|_Jo&Zw14
zItOEJzr)R#*PxFx3(`$`jY03&gisX>$p(`w8qDrlhMGW8GnNH=QI#WB9u9gff}qu!
zbQZCAL9^FW<rP_JiN)z#fV|3Dy(c6gJ(?^C6?Jl@<bKd#7t2cZRo1$=WYIFwZLHgK
zb&bzt7Vu52NAwATL-5)vSjYU#y`o8L5a5#_nnd;u!Qjx!23aeJ)+(pL^aG<=)B;2S
zPUS+gY!Pkn3ls%r6eOtc^vrG*5^k@c^ZTNKm_D|q*s(F@^cl-bYnHm^x@%@sG!&QI
zpL8WFs{OLDoWWC;8LdklrG8ISsG;0oaSCR5tdxslx%-NUfBh6+b+zbp8!sK#S!<F&
z{G6paWbTZ)FR+>=p|LAIrKz`K!ZhG)m9I;zuz}q$8H2&*a%a$KunOLo)9!W|Th6I$
zoiwXyoGBg(hea#1+5+~Vw1K&p){Ik|XtHRPZl(uZm)?Z-H6oK4I$TihaQbaUL3@d@
zTvsiRyTI+9eBZ^Df>e81UA(Ofz7Xx*r4?S!lybd@%#`(wOq^QeLacmJF0J$!MEwC9
z1W4TksMIEu*=ouJ(PUsHE^jHTs*r3}vyWK=vfgKd1B`>24GzQqOWS*Z$5EYa!+WM|
z@4c_KuX<grx>m)KB}*=Hmz!{J;EH=$7dkdzzy@rv=rM+bVv4~K1p*-uz`UjeUW!S8
z03o3UjIAAi_nDP!;gG<4{nzg@J9DO=Iprz$b3a-so`jY9I1>j66mTJ=@l)$fIt8a-
zfa8&};F79ws#SG91uJvZ7d3mNzp6COmD?@8dbisIw|K)Gbrxs4M4>B)vAXKw0(-Mu
zFK2j#tW2*P9+68698FNSO)Il33nn{_;Vc!KV{kIS-w>VoX*u#mvr4!&8GV8y#^Wl3
zoNyfBTrAIg#z^Iij%YMePQ$|jqGkzq@_DtxX0-zLY~)PsF1^gC@L183@s-?J4nk@)
zXxVCm$~IA@FA9egYEEek1ls&&p4I4bq;|DcrEAt26jFy=nx$o>d1Vbz!&7DL0fk*}
z_0V+QbIY5}SCuV&u6up1g?L;!`<rL1Ubdk6=)~gI7{dg@sCBtX?cu}Pafz0V4XwPt
zIOxD@IaI3lR<*Cx>r&}3Di6xhT1ghHCIw(Tse_keCZxa!8>CMEC@gPmB+B{eEN#oA
z1IAc_fg+2Kz<3QQEg&oBsg)HQoGB8eXNjW;IHZ6pDjz~C$4PQ#GK{|bx=oh`b&q|v
zz1ET?{889VCXFt+_VV?SFlU^%X2a!uS)_n{=YRe%F?-2%{a;~HXGR@9(J^Y<iec+o
zYjhv7yNJTvG-Bg02em?kI$N4+;<;WWvKQ_js&9qpnNmyV#GRe0-ORPcb<<?p4IfON
zymxxDRzvtVUca;9>pfr8_`djf#7FG;gj{on>7Lh|!^&$cLg14JiQ18@Y;(tRcsrUG
z3+;eso*#O7N`aS=bwnIyon$&@w6X#g2swm6!^;6&2#s}x&kI=yAv+`PiDpH|v|Rwd
z7_Chj>zYZtg~AX`Lo5c=K`Me|#9587g<HAnqg9hSi|2dYIY!;pxy`Xqp0luW>AgM8
zsU=O3_6aq+x~*BG8%oC%=ahI#O20kOcJY!%vgm{TTjzJST_v1)a*2NQzy{&z26?Mw
zY<ZqtWtYkHdZ(e&?hn|L`H9H|zWOC?wNq-s+K^Rijzvqe^7FH5@~3VKw_JGj{trg$
zmpn=MtJ*r}Z_R87r|1UifR*GycX$zVd=TilX4C?*4pImM#2d=20<#<DnM~QBSGYVO
zRbr;$aF|RAIp9oak5$H&I|=(qn0H&!6*ixg1Z`gb7gjH8*Kj_I@HVwZlWt?+V_jz*
zCzV=VC4S*64e(9Vt!?T=M;E(hM$&o<SJ%mneA*TWm`^=~8}vAJ9^KYj3(n2)gkAq^
z6E+HeFjy^lR<lwexEwNtwS(W9n6YqS|7QkLNw(p&hS(Dau<++{nhqe8&tZlg5X#`%
zV&KUYL`j}NGY~ztXSU$%I+>z=Djv%|PD17Ve!3((nH1d+{kg36>_HLwOjNdpL5V*u
z=6|HfKUmY*pv6QRmWYl&qh+8mnc_e+Q7Mrs2td3+mLH7y0U=4O)brQ;?-hu4YAon2
zXoRmw@qPYZJ*BY<5Wu$0BdK|9;HDCKwmrUW+v5bdkX$l;yD&#*1abG51&xgbAU1Ux
zb!6{$;b3k>%ws31MT>-#o$a9~Y|A_=ctwsQ&Yq%!2ZUWXT|}Yx++VnbQD=kChukQm
zE0T><5$KBlSO>8v$U24N;?uB6nt}y+0ebqEicfM>D5AgY)k3dW-V1sV^3vJoNQr&a
zBJpEfLz9H)gYk>jT>&+=S#6;qV-(Ai>2UrO#wOI-Lp9YQd+mhm0yu=YN#_hOpOLq$
z?L9sx<ds;=9Ux9$PrG&JPmB?H@EyJe(g7W{@k%lY+b|#?pKTb!3XOA%Qhp+YtV2GF
z8(_=<gp<md2{bu~lRSh#9|=RQv=|_p0=Ws+o4zS~U;pg&y;CwjWC^Di-qGl^!aIkQ
zS;|AgJ6fGacn45f#i2tm=ITiZJ4xt}BA_?~kfTmRLIXP))!ED7YH=OkBfJc>nRNOI
zjpoF3Dd1?Nq=(lT)F)18^w>*EGJDnP%wFMT?A2>doKTD3JjFkScnu?3s3c6sH9D+G
z#SsvhI>TaCS~25#c}SF$Da8i`4r2pcKmRPRctm*N(ELB1MmX8lt1(|jrVAGx-$zr-
zu6ULhZ_G0o{S&6_I(gly3$lG$*{67$@<;matPy_w=2j3Nu7BpmZ`Qp`-1}}Mwm)r@
zGTGU_k*}<{?&PjgqfZ+{pU&8%Gd}HH`ZdI%3S+VV-*Eir`nb8|5H<~F?$92LJtrl!
zJ4>--?h<1JiKIVCi$pIhx$7(s2YNCi$vWLD?SXxuk)pxS>T{t0Bc@1f1{fD%mj=B;
z;XosWnIF(9N?{074C0VzbMT{43=jkn=!aQWX%Cn@nvTK|UT%DjHzyls7Ntt(v{h?$
zkDA?f&?g&Ss5(v`==gmmFs|OmcH9TPRnvXPokB}G^#oBq!5}5`!PT!K7QtkCme*%z
zAwPG2$`y@jw66f98#n)Tc`w2!NhEV(<}$+DjO3yxo<IjbjraoDMy^$I5jLPZK!c&C
zOR8BgQ1y6e1al*7n4HZF$OrPY!t6s!pk|50IS^Us97&g6wglnjP&t4p6FUOhK6Dzu
z1~AUyqFw?mhN>p;e=xQ%bQsx2+kN)znAayW6$Ci4qlA^o<T>C@uqVxC@94?~JFB#t
zbTC$N#^8$9-OHxg9m?S1`8#T)ET_vMMzxja^>TBWPVXttjkz_9)TmJM3<5VCH5#Md
z8h^YiZgy#93<P?qK`S=~a_Yi0g&ah3Mru})tZ0dpJ(2u4D_)vY>B@mf%WUiBbrG+F
z<IQTdWx}vR7_98UVYxbolsB<lc0-fhu8i&MCDI*wD=#%c*5p`~rDT!YQ!}a9%@cX3
zYJOX+QKJqh7^_L;WQdwK`21C6lOw9SK%q~;aL(K*b@SIMb(C0z1(;o@fYm{A`X1@`
z{0P{X>4;Z|sM-ba&`ZK+bYeOii|R4-PiVHNXH+FB6*2!InG{fP0yA<503J#ROk-<}
z*re(pQVIiHP7%pk8i5N!42ldDFHjEc5*Nj#@f}fyYvLvaXu%m3ow*%!j)9RDtFd{^
zN;wiMdSnK#*86b&UzRKyQ&{-w!X-1HBlZfXcfBwCuU64Z$gcNcD~PmT{W~Eod@OwX
z`qnE_2gv01hI~${)k&pSyit&!&+uBMx^ims%5e^pJlBQ?Gf%3w=Wx8!UPH!DER8Bk
z%AIm|sIKnbiS8n`&%OTZ{y>XP>+}bPWx4ihTs+9vd|F;LeQr-EaCpYFsV>jMH9gn0
zXl?)4mHFA(eATx3bxo@uUA%&DsRI|cC$G_}(F&OA+WHk5ElBf>RSTFI)7Mwv?s$g!
z9u4kp&*n9wdeSRgPGgCy>rnHsxKZk>D3m%u!f{r%SPlz`iRO!^Gz3wo@Q~UKASs|p
znM26XjDgaCXie_?gU|l{;N{N*g3kzh(|>vxFm*2e@SoBTk<i_N>C-2kxccf7e68T>
z7tWjYCb2(3hP{!_5k7fy7TMoVKJvaHpnJl8NM(n0kkb%NNVF^!RizS`MlkbYEY>ox
zo`BJov6a(xp04vSIK>Ni=>41)8V-i1I?O*>+L5Jnm0y=NY5M$G(?`|l4a<c6M@>i}
zb05i_8yY@+(##2C{mY-fWO=<K?vz<un`d-QNajmhHqV?;Tk5y+AbN1MR+MQYrETZe
zgm|eL{#K|*+QRZlGqyA{(b|#Y$8}U247L)feZ=V1D|eCyMz5^RVzpj}Qu(3q193(i
z<n<$3qg<2MzG-ZsIXJQ-Z(A>68P?#bXkXFdHkh)j>+6ek`gLtm^RV`%%XTz7+D3Oz
z8rxE?({WRsGFyGT%E#D7Ztkk}8qs~&YcG}AstY1av4oRYfPwxyTz3>nZWiOKL<tL4
zL29CdNzOq3hXG^D2rk^;SB$9?`qN*GS;4(=DrfNjiZSfSF)N6xar|oG8=_e~zLB(?
z22go87FRYkja$8Xh@43o$}nq+@j)2ve{6__RzR%(A-Ic64J0xhOtP6tWP0Gg1$r?%
ze<Gjh!T%QUHKg6rT&Lo*((xG3e^Cz2&?|~)ct~=_|M;vlXDNNav#D5VCexwB_x~1^
z1`9SqFOhPU)YHtUnT)K$>Hqq)>>1s5FqT!cnZjT$io>v){#=BbB;qt1GGS*1GmWAB
z&%t19AH`Ow2g1hGk^bj?K|B~zMNog{pv-Ih4;cdn{JA;*EpNa;bUhgw+xPG312QtX
zbQ)xGi=-T*fK3#~AfXu(m<PaK1eKJ8ZQ^LeqNP(52jU!Is)nb*1Sb%U_A;@j=T-?v
zpV%jSzxUO94C{7*v1ilk7c#D@(_lo58NLu=_AuMS$h8y78>i224wJiu1$y#_nBhY*
z?N1NAx0fjPJxp@yww1qs5r~VnzUy3`LjI(8{dQJmaFo_hZya`>On5()3JPHE%*d3Y
z{4VAjBJkF+(2p_2V93OblQHR1l^OFE#d9IPn|^6L{ve`*S1S+xZA@Ndyo$Rrm>bn(
zdAC+Ca4mL~b*L&!bTzu>o}2&j&dH(vBX;YbrE=jLQ%~hP2g?8Wq*^x3-eYendnob0
ziHBgAc9G5fXZ*<UpkZu<BO%47ME%#ya2YjBR57T|3&i`-^$arH1CgFaj>ve+;EJJ~
zrU!<`Y~@l<3P*n1t2Mp}7=}V)`*iTvs6`=Jt#jIt(<SqBgm7Xh)Aw89$dkZC&uS#V
zZlrAT)@f(fPExJ%;g!6Zmam;QxFR?ZrvDW7(Qyd#5PgSCUd@5nZ&YRGWyFDx4t63(
z1@&H_m!FG$Jh$d)JUH#`NtytdJ^|?wH%QOVMu-2~@#2;KTeNt_my?pGFm6X7_tZ<k
zi$=X~RCb0If{Xw#dy5quM{7a6A|x0Qib`Y&Ol~$B>Fbxm8m|M=kARQ|rmvt0%^yj>
zxl-OAVHRI-ODd@`$*MX#s}Qb~Ox<z;H#ujEe)78f{B@J{TXLlF_?YJAQ{&n1-}<6*
zsml#W>*V~NX`Y*J_Dt(3m;`Vur!6dL3z6sh6)Q<^GFj-iI~arAz&Pyw!emlrWp$-_
zp}bNZYnAnfmWI4V*A)qGL~@D{tON0#93{ueQ3{piG=7I=baJ47K*L2e0<hU=I~I^u
z4w#xSQ}bt6X&a>PUk^v(nN_Hq_^KsVXqabL;TRA*y^fdwtP8U||3%%{Y4=vh##I+~
z>Jq{W3Hi91!VX>HMvtX-Od@aJf_+YFO;;lC=6GfYfL`VD@$}&MZ5C_I_?o<%7u;d*
z?<eI8gcq0-V`|UySKn=MR!=C;zjNUob{k!}J+2sCi;KodWx0F|y?lJX-BvTcJim8A
zFFhoYcWXjAsye?-S1$a%LN1(KK&mM<!jL(XV)UV9(^?oh2!O*H0|s8Y5}|>jGlQl|
zhSFC)I0?YGN!x?8q>fL7>&Q?L2@6Vzz_an0jg2!4pDI-6C@W%YGFFku?(d6L)P@Tm
zj<Rm8+hn(xEp`*uSfUEn{}^j>>Nq(RG+Q@?h7HSFn<bCPg$@`hm^s;16|wLrN7iyD
zV}g~N0&MVOVt#EKMc)e_bs+YFM{91CjFFrtSq7E@%wQ2lWXNPi*H1*3v1w4<$#kYD
z5DAutU`e!z=0-1kJUqe*siaBJMi`k1_DRrdV5){UBnt*ey|G-96)MMe1Q`pY*tTwN
zB1?Y%PhQUJ<Swp5_^cquq&1md8nIbzkRp@E=rz9*J{c&JWhobsvCmygR11`ec8*g^
zjcCpFf)so(o3<=nz^<Qh^f!O6?!S#JCLLey-1((&NVrZoMAs0_)=g?Zy7bbIglB}i
zglFg)le&F(zi9?p2|ISQ#@($!#A_AI?S2nY!ndS0nzTeNJSNE5<X~y<6AOFBB-D13
zOXpRG_(jLkYo&Z%7T5LbXI>Td&t>j9uqcNq`_YX%#E1Fe(MvxfwdXto>Yv)%Qey0j
zk+MS&10M;|?h;B^q@2af*$l)Kh9@n~*|<94%MXPs-}ob$_SRd%rzHLvdtW&H&9$p<
zC6+(Y6s0Ni9qC<Het(Da-pKK*Zur>Cj|PMBy5(bAJooxH476d1n0HDI&v_AL9<T%l
z<}t7}ARjh7(r5nDm_sUiRueIiu_%VJeQaMU+kH~$&Q1{tkzkSeSMARJ0XwRtSUG_e
zsYFOYTmb{fX$e^1hy2gbllEZ`_7A+jLV`I#BgzZlX{HS&Vd6o7BFd?OXc+wp%}Ivj
zE_9}Vx^6-hQRCGB(Jhhw)5zT`ydm5nym2pQWa_MCR&KQQR4=FI(kpW-r1e!*j8dWN
z(<zipRaJv(qVSN_%JpD3*TWnUem`v0F#IDm56fhXzCbQOH+(s;cTT8nSVS15RpF18
zJP;Yy7I|g;e0hPK^Z-ZLi}ybtI0R&erI;3Cioii(0<$UgXF$y|!j+MrtHoN3h3phf
zU2b+#6BAC~Kdq`Huc>~=?{dP|bgwBak5^Q=lfjY7T})HDR;6N|8AhHZu`6`CCI7&a
z)qZ;IOB1!)=&Y)X4JU9L+Ftk%#5q(#{Ir)LzB<#hLZw+Y8J<EUXMmi=Cj6{~d0qX8
z@SC@9hJ9=8TG*{_CV6kZy8h8E|C>tv@0N+XrnmT|LI?BDrrNiJgMIV>QbpV^ul?g6
zS8sh^IPw10qTy4!!kD(tj1x5OH6R%&dL!^bvZ(b0`Z~3*m53liw3!k(9jMw@VogwD
zn@H3IxCMnJpo$<*fgcZRqPqtR4puvWt?OVfJUdEYbg*)*dVQVn&pJKgw53IB*Az>Q
z!m+aUc)XqbHr`%_wNov#Lt7uNf1VbG%bo9<q{9wv36_<#gkjgWKl>c9%e)~n_b2)z
zS*F+3)#>z7X>qaiHCzmBsXI)sS=LqD66%%`SAMuG-X1S0<}JeWvhHw8aj;6~^6Y%!
zg`HUrUF8#JMwUzm#~4G$Q(8|MTd)rG6coo((N;y9Ev+Y7O<~bMO{+(&Ct6{&qEI=J
zXabW2{5n5fRj6f34-Jpl(5VMf5_?diiGLo~Xm~xJ^KuTa7leYkg8XDY>B{`R2?&O7
z*-hmKNxqNzU5YGE8n~L9mU#1WYqFgDmj~|oQtI%L(xD<M*@KJXno?;_j&!%Lpg=rx
z;I}oW#y67tCYqIpyX5BZM&Vm&XI4#)w?yNxt-J5Obq>3xn0z=?h&`(>c`^FbpfQ6l
zKqMbK14|KK5aJ(X0}tWj13;BpA_Lbv8qkkmk~6zk_O5hCTzgh@jalI`n_T3w-Snrs
zX60=w$e43%>C9nQ-KeEYMhPF8T`u#QbzRGsjV72(-KO&Q*KIPp+@|$T_xjNYUb^pG
z13Mj~Z<nR`Y0%O!YQkDI@X%D&!H_wayk2~086dw@S;Zb(BD0H&)Qqd?f8fDWWH?sR
zzq!Bv8FCdFe(J#o`nNrU61HL$g~z1#{pQ4}2Z>TR31CYuv-sfG-`;y^)vdyJ51#tr
zexk0e628u<uFe@4Gev!c@}eLo6C&iPGYmgJ5jWMBP6}DmwlRI=__S@wq2ITc9B2Br
zO%t-x$!(lx=$8_C%_UB`g!>pRT7j{d<|gw%BhSYB(<#F5K+H9`;|;8(G;YFn9Dfnt
zV8AqTc76Dt(w~#z>&cBTz4THSV@dy=3>O}w1vfEf>}eIiD!HEfxIddYjD5?5t8h#!
zbC`Jl1UAb4uG_or$P}Jg9n!z3T`P$1kwmYf6)whn3|Z6D{v^d;Ln4l5#faO%%*MIh
zhqHFXb6xJ7xbUxm6=u`@8_gzLV&aBlrHvc!eqdvJ)8oeywHsO6&>Cc#Q{9LyHjpu?
zDfBm8Ow>=YBdcae)7!IOHZcpZ8R~xwtK`Iw>sKksKCO_wgt=p@<cQ=2$;*;=B!89s
zP4cPaACfOn$K_rYs)J3-$Uuiek)&Q3OxM_q&{w6?Umb&yl&Yu@HsL+b$lY{G#JDeN
z)Kp=`{2<jaQn6c!tjLKd9YC-L0RRat2sH|1a8c#pGBCF#yi7f@z&uwcuZR5&(=KjE
zY4}-sK|B$?H%ZuJRJy~g2E;4KbTJ%3B`!s2+@d4(4ENlK%Vy1M$n{UD8CJA*UnsA}
z6)l+62B?ifnkVz|Miyc5L?$<|!R=X5KMbAK3G~F!o?6G8rEaN3@cQ(2gO+?OS6NIh
zp0i1HPTB1WgTtVEgpfO}g;y6Q3YE>dd{<pwBFAh|+SMg&EI&wUd4o(VRmv2cOy@Kf
zYBx>M$C~Rst#Wl%mQ`*2euFzN+Y!(PRk?B*lRc{ckhUVvz~+7*JzTDEd29}5?fTlJ
z@I%r0ZRA!qSXo*DLV{5ZZeduDRGF_f9rG!(*|h`+B*M&K3tLv7H@sqDqSl+J*N6Ar
zcjWr>82G~Yu*{?OI>J`Jvp%~6Z9=K{wOcinwHC%1pSI~nGv{1t)$45RLakM!1VV^t
zvJ7FXL1$%Sdgr6P#i0Oew(E_iyf$Z+o<)#{FX?u~VvI`n25*t;q!8d4Fr4Rl{muf{
zScM|rO-KisF~bsy+VTyRrVgDVKH<*ia#@8^VJerY`o}qQedPree7=eesUIj3j>1Ku
zQ^6LR%V=cGN;A+e=?!Dm(qiE1>6J4&t`XzQKY;@+mrO%eB?*8S8EXjIi3lG@8-ag>
zT1PUyOoY^do`PyPu*(Cd0QMT30+cUpM-<FP!3ZKMPDFf}2j+TEdh-df$tDK$Bkn5R
z<XzsrB?&x`PDbQ`MKepXC+5o3c_y<hUTF6eJGBafjn#oCSFbgxTtSsw$t!K7TWQPp
z`cqp&uC`H=mL^u*!7v@3rk2XxtJY;XM>e#YgN0dcPkh5s;qSsx;p5j+(dw=dU4<rX
zd$86U%9C%Y%)2+&5*pt$HW4i`X{~``Xc%T?mYZccze}dxUZ~Y6)p>TaTxMo8oD!HI
zMyJ&oq@0=*TJ!VWW5<zLRaK0Ty>ph9nGFq{NkVGd>IfSs$X@gE9m3y!yLiPPh`V?4
z-5ZvTNP3j=usLRTPad;3;u-1E*oO^Ywdo*6GqAV}$Pix4lHHOu7!P!Ca7F1Spvpla
z0tMS91Kq8)q@HDMkg0(C^szET?+_Rva0t4-t(@ix!WmI&PEX)iFtD)+AN8mJybq8!
zWo3#2)(BQMHd@cr5t}%0a0R`4ybbq_*Dq}wzh?3<Ye9p0k18Av&kuX|-1?OI26cFT
zd)RYB@19%tc$@QFE!}IzcdSs4JIKykGroPfcES_Qsy*T{-Wz)H*OM%?bj)Gqb~p=~
z)Y#FE>!A478$3;qO;D{EIera!rS}GJvcS^Py>|TYrTPiKZcyK#3eS&(>4A)q-m!fF
zy(9j5n+{LZ;lb9<Y&RF4x_<oH>8<X(X7P~Bb?K$<8?Rcy**aIM#y{FL@VuF4@iyf<
zN6cND$=d<t7vt|R<a3;Y{9*GX3lT$jJL;NNmk9l&vj?hOY_D*gpbs#pbULZfhL3R%
zItayHqAyUt5N+o&G<5ufX$40G=}`%|v~XMrj~KtOfhRULiecAAcmqCR6h~3x*MMC_
zJQp$^?OcEcQ`>2@3=<o@Pr|^L<e?K;49rfTm(6*(vSzNSX^frovC<C97OkO~k<XP!
z;W8t<(`Gj+IU)_KstRW_%0`vK!Ep@haI=oGq<SN0vtD6k>WJ6tv}rlQ`prcllYx1v
z{)$s4m`Bp>+*@-Wp8e;!`NxC;rdBw4OL=VTt}6eyQD4=|m2%GQ=i2UTopJSeoiD5;
z*Y}^)rVC^mklrKS2kLJD14XwQR2VO?hz~P+_&76f<P06S@3~3#M_k^^6ePf?<P>+O
z1UD9EkQx{%tJepaAP{f>-C3BDO1@-_TUy4DVsc!kvFX&TP3J^6<lq?F_1B#Ajh}Gx
zPt)Z-<{Dr66W;|5Z1rPg!%2gtw{fgPJ+eTiz|di2!o{AD%m76?b?T4bNxuP^KUWUE
zO+KV0spl?OWD%x|@y2jyq8;eOn7&rYM6`s}l1n6eBzH?5mGq%KWGp=y8zp)cG6wy~
z@&oak=614Bxey15e3=xIM2S@X+xGw8$D1<r#qc9#QTEFeUGT?2JiM^Kw{beCWqM;h
zph=9Svqa9L|F|HM|F}!s@pJoofS5_AI8b$-&8~cVVAZg+WZ`b4s+PnmVt9<6*r`;C
z+HdKCh|6<Vg`X@Pa_r9@Kz0(ql6nP5j8vcHQ{s20Q6lw{Q5XZ3z>9sAWIy7Fe=B)K
z@;)T7(+G|90VGg=rX8Fy`$I0GF`k2|g{5HO{XcE9Khr*buKk?5pSCAFoY?+EyW{`I
z>;GTd=ef^w?lzyK2BA|Dx+HxW`k%AxKmTbh^-B*tdmMuXJ0va8f4cJ76T~&zjFYqh
z{vQ@nIPiWD?OakUh2v*V6~6wt)d$ZUFogH$XID>ATA~b}40HBDfA+Ng|HH9EE(TeI
z0iH?E_3=IMBO?A<K{Y3;+YW;3sIPMnECh7XV3a9$hw#n-woZ7*?e>gve@K>o2wGOR
z(3=6+y(7HS|GWsTO9?3vT310r^Z@sVAJP*(%3$j<_LLOtT{`HWrHE%7gPw?~mg+r_
z9jRUd_&&s(0kH>Z)Jix2Tg7}aFfs)LG-*tD$kEtG!c;RF5T_uYsUwqWJ2uo{*}1+(
zxMy5v$F>%6K`viKjE@EC8*`h#sBcWSKf3hpqhxsPq)5&BPP*JcW_ONj+15c9T&!l%
z$QAqA=yGrR*yvSD_O*{*z2xS?XM|5z6x4cD-II4sIQHvR$3`xyY2Uj7%eH+h=C2;z
zzHiB@(d{=cfo(5|n65sINi;ST@)?Ywbk<3jGOvm^W%`!S$Y(-G))Zp$XDlDT`<~t7
z*)OkoHr)Rr?N)3&{OmQUZ*IQ%8+<y^XCXNgcLYB$5A$*~pJ?buL?jk;Ib4|1r-%&4
zkXlkqDxFF)kEdJGE&R!lFP(HZy3<Kt2$+RFYaRfnk%DPt8nfZkWr83uX-TlgfXFQb
zkr`@&tR&W`B@($D<U)<~{uC!9k<&4DFz$&)X=4`;IS9|eQ+bH~MhCa)bMbgC02BvS
z1|ASFMVNbGKNBZkEWkF4c9SI635$ir{A)ut@-pj(g;t@J{~_WRl8&T9NOCO053GWu
zF-RW7|2`X{&-#M7<iSu*PamneW9fbO-Iv}mxVGj_qP%12lTSXGt`&Mhb^7C4?Qw8+
zG4xko7b3lpr2cVoHI{u!WuHD75tcr#PiA~7f?UEQ{|Rg-KG@m|Bn|kY@NTn|*)+mJ
z!YgI`0l3BC52p&Y%x|`a{Uu;Ff$@ae_=0|HiYbohZtxuWWfcN~68pQCO34kzyXsdN
z-kmKRej`ozmoI;54wJrM#i?=<d+86t{}9K>DNhOg!rz&$iI-kjfA8{@#bcMJTGBUj
z_iYgVXF>Nf=|__Z(9+4@JW5QLzIU0yyJT(2-G`oP>%96+chjaR4|iqVwRXh%aaGQN
zZ-_4__CGJ|KY4hQRx!`dIsPwd0}_psc=!Sa*}EXAng@P(j2M2DLs!h8(kW9DTVg{b
zCyPoM>Ipk0>>!&i?7eDHw0&IX{kN|^@9>iw7-jQtvX@-HC3VLw7r#_@xvH&rnM&YV
z79vRhcR%)m3D@-hW5u#ta>|xgj><6zPe0Z@U3lQFW%IK-hAGY4AGmkxC3pNb5F;0?
zt7s(3PQ0I}Yl)nWGWcJjkOR)3B`9(;K;?O=1Hi~aHCV*|4!%Qq!Ym2W2(tjx1p^O_
z%O(=pN~8r>y>Qi4FQj+un(uPW?`-h-Zs@RdnX^{4&S#H4v}yB04{hG`&~D*hM}!gT
zr?;<t-0?BFXw-C#m2wQIo;X5OoR6M=)v2eB?vm#C_H=Y6eR99Nrj31n(?dA_!3Q@#
zDSRjVZp(u=tei^jySa!Vd!B%!>R)*DA-ba+@6&|HK#D*WtGz@tjzwsk8`KFrG#+`-
z5LQc-7OHrJ={KbBC}Zi{(|$)$)6f=07#CmzZ!hm%wyamsuk5Or?kFp$S>v#m)^=IV
zU2K2GG<L7~+8Oh2Qj*ELj~&~6-TyEjC`=>jgf|bYX8Tqj_<rZ}J9f;TvxCj<UABDG
z=w-t5cde)@GMjOYnl*Mm&z#>c!X9oMHg(OF^ZJinzx&v$*9lLN@M`iJsNIF$**kVT
zzjKEKY~!aVNWTE)Sp%zVKJ?@fltBt^XFv?`wV*&*UC@|W(7P7Utcr;!uwM}7prNrQ
zS_7aG2}e!PdA&T%4k|+cTm&TvHk_cqHNG5Dy_Id&F~U^zeU(h72rwh_4qaP+UXhRG
zo<ag!d2rN~($o=kvB}tao&4itvU~ngnT{5|Ej(lTz&tu;FAf&ji<mvH8C6zIEL7`n
zQ3d`+DmUzWN0_!J&^4^aU?A7~%GIhUSt49*^{|y;S4Dehs!YvP2^UQre$9e$NO?HN
zSz|EPZ=8_+Ot{e#L_`yR2U$WE-lw-(*$3-|E1yu4**-VNn5}t^a^YFw`tZo0IbgLa
zjqGr;_?dr<6|OK(n0(W;CWOYZE}gD6(?*gQpHdj1sa>~eppC$ejr2eTG{K)#HpqEE
z@fK$SNBuA-QrH+ZL!f0;6VxAV9ySVLAjgqrY5Ml9?1{;YU6Gb3><rI}MS@Y=gH)XT
z5-fVO#%<Hw3v9Q|WF<3ivn_B>+eS9g^QHrKFh_1O$<vO^CR~VsaL_cIsmv1Cjuei*
zefs9j(}ii<#I}wABg`+Q$XPp#w)Hc*+Q5VU)B|UDmhseLMl73YFm9HdeRt}Afkj0I
zyZKK(I)qZn1el^P@WaW><IW!P-ke`7V^XlL<0X>xC6bxt*_Sv@CAs7DRfH_Dn#k5n
z1@u25ZbBZ&f{t=rd_M^!E6RV3_YxHlOox8-$OQcqXO@^B0ind_8d&nj0plnk%8*0o
zbA*&cC~-ziWY<UH@>#k}QCj$vDdK#V?85RRvI_`p!;Xj}7<5E-7=Yp?*PdCVz&Vc-
zBEtFNV#ruyk>moGM6oafY*=FK5rueA$6$E^r8Ev_ury07HK8;l+7k!M0VKfTb!14a
z1UJw7JK>_6a$HtEYx|PF90WGN-4pzW@W&f>7X=+M@479-_Nra$2riCo5+1z&PrWu@
zwom1`=-2y6{ydAxll#&+ejw74Wm*wX<eEKl*F2T$^O$8vj;7QRl>0Ymg2Yg0Ya3B0
z3wwPz@^EvlI(y1F&LBc<b0UucSh5ua9IJjAD}#<5#ahCY@N*L3RXec>eBMs4aEuh%
z;i*4`b&}7$ntt3ToaYt3@RCBN)l2q!iNTA$XTbj}6%uZxM2i`gX0)#XW`7)F<Yobj
zv01W1ay7Wm?v?aOUW2zML3=0$bod7_Vq+84Nb6R{n!#<Bam2={bua*<UwH|v^-{>d
z(F7vK2uy{5NYnCC0Q}GH$gCqE92{t+NJ(NsY%e{|ge`00+^x(m(Z+~SCYJ7|b0Byx
z=twZQh1fi+NmeZGV@z>OIkYt(hcp_nDAmydiH+U?#veV=C>5X)A{vF2<fzmdgiazc
zDnenkNMC#Eb2HMUF$M#po#b>fa)r&NkQ3(-heM@gEEYzonr^c(YK_IBQTJe5D^-}y
z3aOTC5#G00lrlYIG%|Xba=OW+l4A|qa@9<fnN8RL-GZ82_MA?qgG!*)>dd-XTCLuy
zCu%j(TXnB%jZPzxO4Wc6z-|u6`rNxN?Ek06=pNtm4DlM`l^5Q1$5)I>snsge|N2U)
zDLclr>*WY%)l1V)lD`wBOr?-%$l}x{g<?}m(elcR3grv0D9|(i{;z+iRR8#wn(zNs
zqxrU9<NNG8WTgA<GpRzbGUp51zmutq-;oVQ)hHqFTe-^gEqTqP$`YhsTP$Cblc0M~
z8<@`o<_o1xtNMZnD$p<q=Fe4nz3OxFxmvFm<bTr`jhf{bG8+&oEaT<I^mP~B$rv^4
zHbeyrKlEAeLffM<5JpjqGaASYlz~+OkWK<a4TWOVBBtxVZgCW1IB;lLIb$MklYOgS
zMndc!;g*+IlYKw4eVFu;nJ*6>|1v9?Fz%iV9^;;I{r3#nAUQ)exEvgl${dFuG0rse
z4kn2ce!=PJJ1fz5F2R_DQ4^DxIBX7xGd7vQPxC1g3bv*$TsYXo=848Dv!H!b{R0k+
zOmGOb^8(^VZLl=vpqfEDhItpSjRhnNEuuhe804@&635@D88L=96vkhecM-U11vsLN
zKjMa^>m&eO0C%NedfQIcDAmFr)MOToHA_pt<5gN+b*&dc+(g<?baDN=2XCCL)7S~G
z<P_7#YZXjcqB&&OXjDE6v8jy;8Vs*a2(Gg6rEO#j0<NIcQHBaN*>K7AjFs;wbyawo
z)%KMgMOu#AE}Gcr-6?5w%-t+p>QR$Q^+_W_;bNrsq=Xsc^va5@P_94{AM@L*g_ANh
z;grtUynKa@Va6}LbW_*fl9<j?h<J3~yMEXmg3Eq!Y!bUJr&|_gV~AJAxmMIidO^7h
zLUGgi6P8q{>~K+`NeyXdnQt`imwg+Pg;F)6_T!}(@*rxML`pvv&Wj+TU*o7~HYmz=
zLDV=~8vogvUeI#K{*;Ub@iXDs)c!kKgx9)f@eBig0U~9tUVb&hBlenM_*vb*pxW5f
zqVyv2k=d!2+t~o3J(=qfrr2(FT4)|&K1;#))9)*MAj5N-$s<4$p6zd$dKml5>Vbv=
z1mPK|rrux#`v&PYo2d+_D5wp%5eh+E2);uT`?Hk*Dmcf8dAyRxOLIt4!7l0`!REea
znuJf==W%L;pAb%}TG%1H*Zkzuzn~gETe$F6nMuw`IXGZ%UAT}Kh;z}R{W25B;yUX6
zsFN>+k7zp(u|(o{lX?FNDuMozUMkiA6ifKGp`^g|NSPghL!c82rS<&zcg`ZM(=O}C
zX&TjDU(_XBJ(cjQ*Od7x>U_WK1@G3`Qe9)#xJ--EuM;~Eg8r__KHX2fQx4+Xf6+T(
z2#UiS#8LGM;dVd!3S6pR(npOSqkES^oc;yRO^`yWkDijk@k@IlwwxL72kkOJFoh+M
zhr0{U4A2dLH=coC%g=w8ASGD`Op#&@Fq&c*G=Zic(>gOCMl-1taDwzdTk~JXz!Z`P
zF*_E?uX*npxn)*rlr?Zf%=N}0{lJ+&<mU#mR0>1ctHSLr$Jq1FAM0?{lTKg_1t$Uv
zBW3hkVWJzD?=tPL64_~||H7|DLBCXPLZ(Zq2vHpf-fn=p^iVp{3vE`t$hs0m5v7o&
zB{%^(_s@P=0wIUyj=T%$S&)q7E<HKqGi}+TFE?9w!|d7MvNb;GGEbanERTR=tjxri
z%)j94vjuW%`Z!G`dADdczFU`WweKf4?6*h_hPY+D@br31T(7&%JgtA4i3!EcmDg38
z<3=izp4(5U_4Svv>2qvD{9vt#Y?xrD`Pr#Z%t9=POLj4>7Og_~o+yw^^Ow9b@)&2%
zCAb1oXQun;`x9k1QKIet+xJhvb};1^zF8fO9mQB{qrP*5BO-jo4@v<sZxPH42v3Bq
z0a7jm1?a}~Sh_R%vu{j#<W5zoij_a|h@8cWQ~nn%URJC9%em#kDvgf0oUv-^2Y!E1
zjo``=T<M!{aODW@K=KiSYZ8u~Tb`EU$}GJ!=odBpzrzaj(CFzs{9EWYG@=LMk(7a4
z1AZYTv>vOI%1#Lya7{&d48vLyz?3}H+{eE)=e&kL-c~re%iXYG_KKc~F5+@dTDxx4
zfmJ(iJ9_BBr>bO*rs@Wxuc{=T{GZ$Em}j4}T`GKit24jI5MO@P2jI=T;FY(9J;E2y
z^&I%ea1uM*_pf7p`!^F#9nG3IW@7iODUZK7;L{g<xh%f1655mzmUIW@1~9>!&L@zi
zI6P=@hVEwI!;n$XpEH^GVA04J!mWR1rU(xT5C86WY$?{h5gzO$dQ4tlUO`5t@8n+k
zo$xTxr0--)1N|>q@+|!?1p;g-R!{&-&IM%N`=Kpc`rjeD4!wWzBab{X?R_#2^pjs~
zAx!8H*(KbVn|?3bmVQs8VFI>n2KkAY03`YMC^;O(gVPt`*Fc7ym}!$#6~k1Q%Rttl
z*blLyZ6fX-ehw+k&R9aFO?sHP&&!K2(FnC(X1)n_WwL6?mt6Mw-JFg+)rwHwdp^Hl
zs``!#XLODr(TDCL_S?zHKmBUMW%Km)>ZZ;_XJ<TbOhZH4m}L!X@BY>Lt7cAX>?j-E
zUYR?pp|P!NN&UKenErx4th?h=qWs&P7d&1b&0TR@)lElk6+XXRY8Sp-w{w=cP212^
z9&gTR?&@mJxoY*=o#!o1HkMWn%M|ROuPTnk1O9i)y-A~L5-2|>Xdsk@S1GY20KzCs
zM5V|hi)A1xGiH^Gxn+5fz#z@MnR(&gq5n*uu>IiEUH5c7ed?>H-R`HmnMSf9Q}6=G
zq>5!{Ki%E^G*Ih5ffUwahnt>CuW(S<o_<O!AdwF;C(EBcn7JJKNfvT~ALrkc`0?e=
z0-TH#%rBt~Em?Kc<R6VA;#PY6vcCy^La)&Gx67U;qhEekco&2OVwPIr-FIImqn~C{
z_tTx1{f#8=f1RxO()VG$(EBmvAfU_zACsQ^4}D(>s6~VgVm|vPs&W=udbu%CQjA{6
ziC_{jfE}X|4TFc?Ps2B;>6ZrM>A+I~7!h5e3>AoY7lYjkIA}ek)?%;RW*oqlo8*6f
z7Qy1NWQCt^8(uQM6OinvTjv6uV0M0vRx>|3(rhAt=-%4vkFuO~l-oToughfe1<Zy1
z$zxirmYOy@mz7hTt<`8{%2@uW;^y2Ua3-<u2^X9`EFAj#Ma=HE2y8iwymapB8?L{r
zwIr(d8T6&wme2Nj9L0X8RJy{@;&c@)$?`q=aKW;GKiq0Ctk4ekcq;ZDPUic}euF-~
zVfBWk^TyU13>t8UHkOQTpF4kRD`LB6e|+5u(v^{W#I~k}o*RR`YMNxRWGzrXH)680
zL_$$O(C`mR9q5H*5q-i2YcZ@=G>TCM3kHxtwsIED45bvhV?z@}Y=#UVAKEPGUMx#+
z0bB+H<-lRl@(`GGv0KDm;)Db}MLdf(1%R5*1j9h#rol01f@LTSo?UoUxMg9LC$HhU
zcMJ{bzl^oIDre5D^qRVYyu50maLdt(2E#koHRP@PRIB~O*L1kDyQpkxSy6Z8;U?cF
zTJ5L)#>3T<it-lc6-}x>+$iKURM5jC!ODfChttojbXmuSf?XzWrL{5`p*N{$coiWI
znoB+ueveq0-+y??B_EO+#IDqQ_|Q*ukhzW0SMCiImsI{LZ-SaJxNFM%hsaHb{1p}M
z*-OtCJ_+3W3W)916Y_plS;9;ioiib4^wiGVnv7p5m0uZ~ZtI*X7ESB8t=agcQu(E^
z`L+%w(#WVL<Q%BTsqo+XO8THM_mID=#y#)+rL)}?75<1HI}YSbP%*f5S|UCfp7HF{
zGW&lDolpIdDbbfDL(Fw0EXE5YD=4}#45JujRAL8yt%<lah~bkOENvDn#f6tCg@cX)
z!zlU|i)gv2l-j`)K`P(yI0vZ%Fb9^#gS3pM6`;d!sRb~0O4bDDQN|Hder^g>re)fq
znR7$!ot>e`T_Y<?Y9_3z&WmI(i#2!T9`70HDlYEqR)$+IW0=cWa?*=oUJ+C*V6WtA
zLWI>rdo%hfB1z%-qT$6QEyc|2p%~>48|#zg`tjqsOT!yIp5+rt=IdBPbKK5`=jJyB
z^+%eLTHa^Rlj|-RWk<mFd9DQ6R$#Lg32RCeYb{+LFc)^2?Y_bbLH_VoxV$=IXWj;{
zN;niRADeO2P`A#3%vj!xap(xfAzHuGhPfC>DrEHt255c-whUEDS7^_m$^s+>R19y?
z`@uwlI)&{73vrf%Mpr_D<*3|fDWyLOL+SvlRUAD1m<t24IHl*uo>B`<6=uLiGtMn>
z{$s}8dCR?fs%xq@Y*<Y+p<Mm04Y6o`>x2od`NH+X)?Lu>NK^gr8Bbl=(>0Sk@*c;%
z$1&4d=hbzWc;ukYlUgD@(!WX%>MFJ4C)TFF99da4dQ^3lb@u!@?9|$>Yc3%#y`Wa+
zW^aDTCXYmY$S&y3A6qFLbyO~Dzq5wR9)G@@vmY39#o@yKr}8H==S>gzr=<5ze&F}f
zSWVBQYBB?C9#3_Y2eUUk#R=DL<FqR$POPe)gbKvmKhQqKywnN;awQpT8-Upl`st|G
zMfAsI6XnvI?dF`lYlv(P1LxY=Z^4+!H)slZQ%Qwj5{|H!pWSr;_oxK#z#s69JR(;R
z6)vc)i+aGQ*((AlZbrr^;b4ZxPDrwFl0n9(V=}}-)W}R}qVctW|1RO!_T{5$O6%g^
z=M$HO$1JC{L|U3-wXOPPz2u+!gl}$1Hd$;uAF`BIp7&s?qa*d;)A%V<Y9iUn<g|T%
zUUdu6aOU1+!KP8d4#95qGcNO{Z+`pm)|&1S!JN^{3ed5?-KXWlxHG32I2}LdEuU|W
znYE_%J6HdC-_(7W2aN;s-~vpFR2BkIHbJRH(44$T^Gh2Y<pQ!~{3rqNd`6HRi1J@k
z>?XyKz=DJY_3EOv;R3MzL6eK4un;VCI7+OfxSnX`R^TYKhc{kv_@ax7yJ|`TKC_x6
zj4anVF&a`>3>K9h)-b-h%{(?C2Q)nS&-jWlNu6AqlxN@96>MHLuEFe6Rhu~^t1Mch
z;W@dnEgNPhkU_p}@|&yl);jeSB)6t9VJWW~*)nT%6+gB~Tc##FPnQ32aqe=RIm_aM
zk>;jh=5Rp{XP2I5w3>Jru}D7n2c6~NSk%K<L755a!zb%lb9NJlRKo>?ruP)(t~$t>
zPm4U^e#ppeB8M#PqjcC4N2|fra^|Ot2@d8!yhP&y3fQPD5u&Ujlv$3VS8P-w4S{=J
zEMb~UvU3|7bF*1TY0Q<M?~0XvUYsdm?k$Vbl4zOmoiBPo`0#dH(C;j&b9E`w!-e;r
zA)U|OPb!ZwOD?-G@rT{b^nlxm`@pTleUMXjm6U=?PMG1&%Xhi+^T-$H7Tm+#B>b>%
zWIM|$IRmr#?H7?vp15z{{%N}Y!q+E0e13Sx*Tnnvjve2i{ZPBWY4i<vWxy{4dn(=_
z8m1Iybks-k4a%GaC84xL`k`M6=bTGxP-%qfuZ=#9!enE6P8}0246{r?n$lrL_?JC)
zQsRLt;IQzPjRVGmOyh$6vu@L7$4qP=RYk=<k9+dp!)l%Nqq~ZU-soKi?g_$79^lm>
z_f3B#ykYcc6(*|?3$tuc3O<7u-#s~(jAmyDfwOmiQ#fo9@BaJWX|tndw$E}>%jfn#
zdl|F2|E~kjkeL_D#4&-&ANX<^UAB};h69}+?Ew^0s1(s^4nq%wN%7-Sc41nWF^Gts
zVNl^pK$!U9zI%li&IgMBGNn#0YkO_={3kCTGv@Lq=g&OUav4oWEdUi5i+Z;%BBpEi
zA@VSNauB?CT!iAWZsB>#&2`Oor9*zXf>F+xkJFFhDy@x|BLOzW64K1vTjnfT_wo&y
zENw~f7xci0@}qatLFSW4vb2m|l*2(D@}p?7twMiBvKB?~xd+KL=Qs{|3B>N92MLe<
zn{TiV<M-2iit<wd^MdLURkAunO2ny~4pjt49sG1&79$b%{pg4&>J1}O0U1!^&<D}b
zFlJHIIT9#g4EEEp2!2yKUDAE$9wA;=x-0L2{Ji_~?9M=5mEKQ?CY+uY(IAh7K3NiT
z*b5IA<ld8GbNI5$b=ZqBO0HGtY6?Pjd%@v?oC7%yM<BOC7sQE9<_WMjkf3o)sl$Ow
z=H8p@a0K(Kurr{qDGb?DGFi66=jD`2%W86oMagkWi?Cy-6`3zRK4+dxmSgvNk#E$t
zrjpHP3tT0Es9mb$+~U4Gr`N?um6j`nKI9AnF%?N(ffZYXo`{`pcs^{G_m5c(4<6(3
zI`i=Th{O*6tAIMjmgo&fm7;n?lmhkTP+%ej&BetmJXE59=O7!tNKOdbOE{;L4LKG&
zLRSTyi=Dx1XKrdtPMWlK2`M4(J3@R@n<q)64psbA$`J}VxTjCm(O>eVy0B{Pg*)$B
zvno3r67>k$Uns6^Fz*OO5H|rCC80KIiY^@LaUv))!AeSh*>m@uvrV%W(KMB$N9bkx
zD5!6M*R8j|_xN$CB%O8qY#|HO>EHoO^7!%oUTP*CEFluGIbfTSq+m2orMMsM5rADi
zOBpwCm^cPz#)2^Fx5P@bhoBBA&mKl{%%fpCuV$efV<Hbth%e{*z|JOo_XH!{Fm)4F
zFWNMf%x5Uw8(kG{fFoi4R7OG%dEz3q_0R;mYr-L`I&&J<>?r(EUkyv*5(%<xK+=oC
zjGCYgJtI7e0nTD#KqzOJr_Lal1|=h2vT@S5+OHVqtJ-msHg3Fs6Z2KwSgcGMTlW=$
z`pCwiqEh<)O;v03TK$?Tg!^rrB-5{{+<5=S$~Ah~q>b$Hp>mUmWfXNs11uDEuozE5
zR<ad%YSHW~T6jgr1gya}%Cm=<J;Y|8Rpd~0B2d<Zii3iUW(f~G(gssE{h6)uOxvYa
z<r1jVFsIWI6<&35A`(gL;Oa0l!^}mF#dqZ?%?^z!#~9c$&cQxb@NKinl$^ZeN#T_6
z7fQ=2(y2ajYtj@qHJ?(dHOeUph0>|)R=%UMtGbm+g-bC-kp+AUH8=NYe{FOd@o&!*
zdZ-eIIguCrrV_I<@2<s;A|)Riw<Vw=_Z588j0+}jeMF>wrT2i16TGjJlO|I$$s0Hk
zS9X1&pi6~V@`QNp-ho>gjl%}-k0;9DRK>dGfXm01hn0@?Gv}Cq2!Qr71d>OhHa?t?
z$^c7171<KJNrs^6s42{x2jhnCeBoyP-)%tL`Pa|=vi{=TU&MtEgb(6h?7pP#%emKk
zNy`;0FZ}Mpl~<4!=IGI*!u?$8CluUM!(TkbPCibW)Gv2z*uQ^6$IEKr$>WpRQ!j3h
z32zLGMu(A{7+M0T{;BGNu_?m`Rgc+}W(}bhhTD+4?g$+nGG90|Q3CmJ&Ndy<=;-yI
z_J`>%KMo51+>t-O-ybjIIg#U`j)R@S%OQZ_M>nV2nOU8}_4{Zu!D7fNll;lz^waJL
z!$e%n>7U&FAI>7Fv><F1wx$I`>F6B~0i|3=)Q5JAE;XFJO2j3kToIaVB2zXbyQnZE
z(dgOLT@lxoEv`uV|8NSqT%(-NkU2_?p{!#>XH_^{)j0wVg^6eHIu4h_h3V%OeI#Pr
zr7Ug~y#w@wsI8ru005!^HVDDenc9payEPyOfNEis&uDY}nKb~coxp5i;Qm2oXFh?d
zhEbYsVkG~SUDp2=r8+_aE|C2Wu5o>7>`(X6nE;661-5jO>Fb9lO)N+P6fUum#PQ>_
z&cvlS#-p8zIw0g+*uOEpa8ZH@Dq@615NL3*5Wmv@4Tps#yL)dJst*ghA0`Vo6yDyu
z8<^*X?O|c*XXKj5LasWp0LW(?Q@BAq<S==b9&=5&eG$(6j9iVG1n=QEt(N``_oSJR
zst{vE5$>X-BeEcff)W*J&hkBZdB{HiUf^%J4OnQziArTgI@?1AXGOO^WKk$=5m16h
z$|*KrKs&Y=66IEQ!R7}y;~)8MQ}^V}n<sZ~`XD*#)UU=?=T2#zQaaf^o@sVTIcHF|
zgs-<XM_NnUYTKV%durUG#tY|<oWK#eUq-lzqvl`Ouwd+|wT_%9%;wXZxKEp=TcSCv
zd+h4fW5=ypHE!TnIKk|l*w#EXJ;N5TB5IW*ZYk?<PNA&%tW>49`Rv!v6aIQ=Sum@x
zbQx)ZrIQH1US3j|6<U6XxaM6SE^{$TmU(3O+_}Tk?K&4cm7HWY<jH-gGwP?Md=h9`
zVmdK{DM4fKEeH}Mei?PYn%LAejPIIj(x)bnmbV}@j}#sUOU&}~xsk$1@*w@6mJ6)w
z)ZgBEi@T>^C5*)H#l)X!!;?=F{vJM!j8VCeV@68m(2)vKr%Z~PMQw{(FsuMxco}qr
z6XO~q*v4c;U0kpq(+|PoD<tR#!<Rt*I~36*H=y;jS&ck4L2;g-7lcG6LTYdrsE~Pe
zwET2X!x5gV*+Z&z#SXh`H(R_$_=h2AQUkJ-6VyD}nm5koU@K(@O2ba=J%w82`Ya-=
zUK}ZRr@Q&;stVy^xhtD=R>c%-gxSk_bi#8@K;ac=y<XD3u|(kx7wwk5wHXA)S#rhn
z9Gyk2RklCWVp1uTkq;BP=p-iKDCu~(nd$Tx0S*+7l)qutT9m}nX(_Sf0^Qf>l3AHC
zbIpcH%!HsTcbZNaG^T&|eAKM$(8)p1YAuYBIR_i1CWGx=il3r+YN#J4C4RfJ8R3GE
zTPyG#@%2P0j}8n}+8g?x%CHF5rMwOZ3>Zr3;Ew}dNIm&9DO@_mOW-db@*hGToZM3Q
zzg0ZqK~hUc{{ZAHK|>N!ry&5c67f8&4fx~5-~J@q*Po=L1(!V4=l4apw@-;!RW6yr
zsW}pj><zpJjbx~#(Kn%iUTZNYU@!@Y2zZEy6z?Yzfq|iiA`}s`Ko3L%KvD#1c`<>v
z0P9qg`B6D%j_ummwQ)Yvv3cv}5v*~Ka^&Y9e?C&VM{-)FzVwqD#vj}~yNWUFRst|Z
zQe@3`<!(WxdPvwTR0x|NQmG7kKrGBLPKJ9zxkq!YIV&$O%e<ike|8%+%FaoXI+YsZ
zZlaejn3Y#om$%!fR&L+5Yr9g7LY?B~{rhiL&;uX;)1Mxv2T~LqwF5v37JJ=UuT(w!
z#AD%OStMDH&M6{<ttEpw;Rf;2zx0=KL&DM`e(Aw;&gF~L58UHi&O4GCL2(h}Me#?-
z{IDp&zk#ivEM!M?%<sTIVetIHa6BH9g?RRh9c3p)uRD)rTm)Z;<s-<8;)am<8QA*C
z!Zg}vS;v3}o;fX^hRmAcbR_B<!kuCnD>*5l$4TiD%~%0*$``2fDD3jo`oj339Rs}&
zqnj86MGcdHK2dc}96-?60JOsp1xRZYN+7H>us~3+yNF1KQ2K?@I#CGZIU+olVECxx
zl*P^}g2s@7k8HbW-fx!9joVcOF~y^9EExUXvMai~XB(NZL?yfhEdD2azK59**j%(|
z8M|)W8ll<mGzoX<oPMvR;`q|{E5eK|x?skhmU=08k*gnCwB^&T7+`Zf^7MB~kk9_s
z6LFfd@1SFNbbwz?32(FmUMFZ(Hi-$e7m@N(SeO_<1&t;nEm06XsGr3he)J_HIqWwP
zWslIf`AfCY%-&JlG3tRBckF||liZ+Cn=MGV`E#0tcN}9llb+181o;(gj}wlMx#Tb@
z(+7pUe|Q?{P~Go-DBMe~5{{%z!ZPMYHk$4eCJ7suA_gD;;?g^uW?>#$I&9A(4;Rg&
zWJgx1I#GI+zzPovY&Z;g1cdlyTv$vCWGV%9p(#j{a^MSKz^9@jG#Qz-6rmLq_(DY+
z*oVSU;n>mytVpHjwqn_%mut(AAd6L>+*+kd3g0rwj;XuN;9NEQlHU+MeAoQDm>Y(T
zUcV1S%|(%#=!6!lt$oSXo0%(%^NI_=u}k_=4c6~|9ej<~-2{8`39&iJu|#r`oeGfD
zC)NOmpcyq)XrJ7&+9NQ`mh>iOtKPM0`rP5Rkj0zjS6v+-Yi2KOb_6U|KXJ(SmZuN(
zSlijBPl*@f#kOfbQ#UkPA{WsHNoe|$FcQoIK6{;HpX4#gA0!`1en8$k2kI25u*f82
zExZEX8WogD&H?2x!Wh9*kBoapaD*8d)D>*%G+HVc0BSD?XGS#>56Yrgi`z;QtOdN1
z)x=U7Ehz<<2=-^hVU)&8L!#+Ntnd(Gs5q)1id*FaYXMsziXoN`vKW4gOX5^-w-(zh
zR*TF{VDJt~k*pV<tbh!UC!=?!-Y<kh&>xGflx7H{UzVDI>k00ROHuummRZcA9Ua;~
zeg1M=R4RJC;z3-7z5-k^i2)08g6@mbJC&Zj3$9|N*TqgeBz+a}y64{XM<)#I9DE>I
zAc#gM`sHX|Zd{A9yTdXD6I+zl6L7tQvUWzm=4PaBocH9VW5!&1Wd4n*ZPRDmzG>=|
z&6}r8owjwx^lhmd=O3Z_o}70hGe>5Su^x_>N_iw&;^ho75rGs%`~z?(OHNs>CZpAA
zG?6=N_!e@B74nVAc+wWK*+Q34%p?qIqRkzkN_rNGP9A{|J4>ha*>zs8-|O*v@A7yI
zPMT=Mt$VOgYjfDlY7oYF3pIA1!>n=mJ^rn7jmA_|<aN6XEpt4PsMl}R8Z80YoX|F#
z+Uo^(h(ckE`aLGC(O|UMj3&L-?DoHm9F{Im6gfGy7unPv4?Rr2+2hewM3F06I}#5A
zZvZ4xKwp7x#g_Pl^r`0!?LgeY@u;eKv|7e50-Hn4*jd6c;k8+_NFK>wzX%kH&n%=z
z%%6uN`rl$%q#@FnbsCLOiOf|<{fb)9@Ocrt!)UTk%<^Sc93cnY_Fyl43f!LFoq}$$
zjxBCH_Sx-b{Uswpp%L_dbCcd2tBaZK0V%^Nbt=2oZuZkvgVtt1)Q8Mk>&nh{)t2mx
z`Ld!WtIn^^isJl^Am`?AqTa3{_K00=*IzMssda<9uV`M^YR<07Hlscmu}0`ah|feh
zzVY?218?%t(4j!&i^z<VO2lo@jKht<>C6Oo$TH+0zg%(?`aEVO^jzBK!e()Wr$i7y
zsX{nL7IJJ2jE`r!6y`EfL>lZ>qAwYpj`of??RBC<2AoK0hKE2nC@+M?O!TG%29Nl_
ze^M$UujuXK|K>F$l_3wJ&T8Eu>6b~9x&DW-vq#OC(Vk!9ZD=6L?1abSvUu!)?8>~F
zP(fI3a$AdRIeD$6Nn#CW7uVMp<VIq#_IY#LbGYvt_QNZ8Krjn})bEV+-?wo0!iBpD
zb9HO?<kp=>A6va*#p=h%C8HN~)K#3<pdkLv#0fbtMG4u7L?`ooso(jI%cm)uv%Gzp
z@KB_5GU@yzmS<KPwR(#yFPw-4v-KLO+G=*?#getzo#BR(qNYfvdCsmm=|>q|Y|^eR
zR~AK>-_x5el#>a^j|=xGD!MD$D}{%y)Q>DI6CS#V37t|`j2v0PeTyX($KekcnBy4a
zXx2gxbpvG;fi^k{zOR=hf58aOgZMK99L!80X-dI$MF(SyYhhd5Rz`>4l5pmSWPbQk
z#4ZQpvS8E_j0R<(@--Ps0aG$-Iav2mhR`6tErHW4fGLXuWDxnO2S+DNj5cwshxnhs
z0PK%@nexFxL(qb|M>8WdoqNSC*%=*I+<|e@Z$ay#|7Btf5-y0AMkfl9!IQ31!a-2}
z0FZ#O7{^k?wCJJ}%iwij#X_Vn6!#52CiD=JX}~xQqCVOqrX%XZx0ZVeFim3P#y+Ik
zIJ*yF<c7iO2*k^9Mj)aEm8lg-S+REFt0(6(4ec$r@7zghXFVAkH#VF2bGpXl3ZKy>
zd2w=HzqN6C<@D{2OB^jLdoEZwzLU8@WpLZ0_H4zb(PNPXgd5%U%K5^(Z@qQHb=UE)
zW!lyfN5b*8X_=YvAg!IvmdqZna8x+{8hGT8<FM_AVX=Gd#px?^bDy&w7@28?Yf8Nj
zBy7U(eHE|Tnm;Qq5pE|F6J^IN)xKZL<s4(E^!=(Poo}}~j1Bg{u!ft8s)WBgEKWlM
zn6lJ1V@vYJV(2A*{_~#et`q*z$b3I{)20A$FoCkz*43e4adGeqdvfDOzayL*cEn>_
zR)wlYT{m^zcIU;85nC>*m*wbuptyB~JX6m*f7Wt#!s7JBqec}c%12)CR*ipH%u`Fg
z_S8fc7Ybj!hCekmL<c^4^4MeP*UVlssJqCN?rx%+Jh{Ju=qhnu`qhsTqedl|yJ~9-
z3JMEn5$yyUBAA%k+NvtDE)RdK_;cQQd3g_!OX!j5ZdyS9R8<KVS65Hg%$>!_C)(|&
zY%zr*;3?1dTV@fR7nUb%`@L~RP-j)jW&$wgNw36RD{xolfbbR3rB_a<a_E&ZV5o8`
z9eVgF!`eB)Du)K{YE{@v3(cVWZ4|zK@x_{&i!QIm=&Ce$Op(~@_?nU<FpWykCkOkd
z3OoTp^vki53*bxJFZs3Pu;h<)WQ9PH85S|LN`o@05tKmEA6hPw?#Ngv+8czII!5%8
z@uqS#d{N%Xc(;)s%won77)ntN8Z7#QBG@D{I}#-PORq#h1-O(cjxhn!u1utXNx&#F
z@PNnzFxcTU;t2C;Y1k7i3A@9r0m`a@Q5mgHJDE`$@`PyV$zOHW^_rLlByjF9Ge*Q2
z=&kI8nIxV~OSG)3dH9@RRqh%irx|7<Ps{mEm26=iZy3SLL8s8A!6t}nHg(qRH;WhP
zQgi=)5$7;^5zGhlBJXP2RpOzICgz7WJ_jQSqcX)pvgJd?0%ldXILjR_^{>hCl0_=c
zav)S9Zttv)n}qpNrRf4WY*^?0h450PKeo87y2Wl*EA(K&Qz-ZC)+=~s`F3upT%#mQ
zD+W%{to-*=h#u*r?j>54(1Y}eCSnR&aXTA%|3_0XwXqD0=St`-CBPd^#5lefabH(R
z_Gac`OsG`)<%4uFFz*gXoRA<zMsAukCL#*6aNQ(=aUHO{nJ~&YT3anxNa+NO!53tg
zxQa=f!Qsn=YifW^GI3@?&V;|>!W1u)5q~4m((-dPA8D<{<hL0;?n?5=1=5nzA3kqv
z4rN8E8jVd|odrb=O;KNwr^{y?-ZQ4CltfKETZ{#Uy1YnRR$-Pphg_!9WECov+jcuE
z^o6^3GZ*B?T9a}4_T8bZv8A;_UO{6)K_h#AQOWe4CH0AgbE@@~t+{3!e}eh3mb7+Q
zIH)-8oiOv$>IR3#ij*}=vm()!ss_8(ruR9F%d*4&kGb~_jH*ie$LHKKHPc(_WG2bX
zg!DF<1V}Oo5K1V45Qx;!JA__D7&;0lMG!$SE24;s;@U-w?%I`AS6p>1aaUd4RoB;D
zT}U#Q@8`LbgrK<YyTA93A7O4U=bU@abDsKnda=|++w4o!v;H_b&81tRDtJC_2k&;3
zNU*3TOAoL=e6*&ts3bRXZQL!ol1lbldULMyx5X8q%}c_4gXy!9t=3!vclwGC$14nw
ziNAxaPve}Bl`Kful<FaUuwN{IyBNke%`(Ug4JQn^tCCl}52?Z_jRcK<5_mA7K~oL1
zaYxzL&^Ck)yuBY`W+qdgdiN}$P|dU#9@HkNM`PnjYr&|7GXG!Cs*&bRz4mN?-GMXQ
zebQ|&6%CzxVE^0)-1U7-ropq6A#H-@;z>29ZNvq?a;IcW*mv@~9S511Xthz~oXu+4
zFp<r}1w^lqRIj@p4)76RGK9;8FVw*8R+j!uM7N@~3j+KjXrbtVU#yrAt;*oYzxV|i
zk8GKE>$p6jrK_U*x$o~PTU5sSQT_gXMIY>}9Qzx0p<#K&)cJ){SPDfezTqimnj+mM
zoIrj5vx-x_$>tH3^EgE9TtV_2qTGct357-r#1Pucf4|Q>5Y{|Ec>yy-9(-saeD)}0
z8Bs~-6G@Mg%&;Iprx4jMu;>ZX)N?!1%3AVNTIn}h6~74f%t=)pEme~m=`I$iHV#i`
zq4eR#Y8Eh9nz<G_9FZUSGu!+(%Mo9x*^g^FhSsfKUdKN!zy5AuM0@X+b6Iry>Sf8E
zj^v9#kVD9>L69yyLSoSxFyj&NKv#yS+-1|_e$EF)ST}g->eAPxubJu9l)71?N=z$E
zn+EMX{n(BDcWRU?mD-M;?kDg9|A~(ZJGY=<cqYcp?_OmlO+v3h*$Ygj>dgGd_TKV*
zUPiS_qv11u$&00@AEE)04PyFH2U23766Kg{;f_L%E%<z$s$UDpqQgmAB7AuG2k~-+
zF<MOu4{n6N4T(PZlnyBC=$>x4as~g|yh#;nrk2f{(%4+j6%Dy|XN}UTnw*;`7TrGS
zSEo1sY0KE{J}9a*;tFI4;8uxo?!?{=Re3;q|Dekg{?pTlY3T(#LG8@;Epi?|IX@p%
zFekW+^VgKkziUd<nk_Gy7u`3tkYj+?scLxU)DfmVJTPP}QO4**UF1+~tUsP<{ADYK
zgZrP*)kM2BoGw2mMz5(GM~`GB@K0JJk*g;3mCzB(HnddI=_!Eeict-#KiTssBZ%k+
zKM(|8LAnW;`h!3o^fSA%|Cvdj%+_k(f_Z&T<hVER>Lo=e?B&MKi5{E%@x+ejxll`_
zMX5L={cGaKvvJ{DTKQVQ9VuQ7$k)opW`8oNEhJyt5-pEX0!=l^7|k+;RCMXup#~(+
ze}@8odR%~fk&*mPIih+_w)F6pDXZ5#GJ#vyr{hWgwmK$A-~Zv-vrBuc`j?a&dl}*?
z;Y6=gOsuYGi0rs_{1fZLqq%;??LQ2i?-+Pq`sc(uURxm+_*1-96Z@o5ASBU-XuD*0
zqv^>A)#y4jq`|Erc$GR5B3Y^1$XP1oGqi2BlMiMTI~I}lG&5gyha?&Beq;pe{EJF7
z^3;KzciE=+(;b!Kq9VK2m*~n&jZJqrlG18(vTM^^cBel!HPe;os~s0TnIi9GcV3g7
zQ=69LaHP{UKfOghiw6ScgYqIo|6oLER}3l%)L0W!60N>*+|TZW$*7Z<5S!pIn5=Q}
ziAiyBQ0O>tAW=RlZ?RBI^lV~$^z4r=jE_rjw7}fcB89qsO}uGXT}>b<E7qOd+jsNO
zpWTuBPgu5BiNuF{kb0~T{*E5})QSrV7(<xiVwkmXA#ApV1w}`gL*I+ED9AdA`9O&d
zi#tuQAp#deb|6G{kF-L#vLX+N#|%(5BqK<fD}8nZnKI6uV^iLIiWgVSzcZqElTA6t
zZH;_1e-)0hJFpi~9Fabo%iX~%;DmQY*??jeEgMZ4G}36e`Q;IYv4(l0z#*4crSO|p
zN48<`d?_`yaD!=sy|LP4wzFRYxJ9l*t2E4Rmapo%D0+<_iUNjup&tul6^+D65^gbM
zSdhIOr9X!UJp{cc9uF}eN`!e}?t%zRJ(`lBfY?K=3yUZ^DH%gk;b5%t`2#c;AXAjq
zRg~ss1Af21&z#{y3rb!2I(MIjRiheD%{+hP^vIHg(Z(dUNxHP}`|V@*yf|m<?pg2;
z&*&ZBc>TzwzKT&}8-|qV_y-mZug_yK4wtYYKG8WOznTvzQ<Hinz{}@<_CD(^o?N?r
z#MZ=-a~jeYJ=ECz_sJE3gDGk3;8Ez(=e%;u1Yh~o>06iXEq-ZAZAM>rvNOBSoNAMK
z;hpe4&d?=fi_`L<rKmy^5S>G7!Tv|MsD$s5!}%%dUe-;eI-tCjt$oDv($L1l=b*`f
z!p#u-YLC+XVAoV3&lE1;ME`^*77zY4H7#8uaQSJ)P&-&B`n8?`g|%xr)0F8+=>-X_
zuFsTeXQ_X{h;ZGEN9Xdw#8V5NoM_Ya%~*2H(t~%-Zd#V3PIdH33ziJcn0Ih?PcJX_
z>HSq&y*H85>$tRBqcLq@u{O!Jv{q$mY)DcY6MMyry{mWU?w`4GP=3?n)7kt-7cWeR
zT~Isd)bcqe=B>0(?mfP=zdvCI_gPPmFuC8$HeSMxO@>uKaYg3cG*aw)DD@3&xaG_O
zSO>5;Ih+Z-1ki3w2zUCiMpwM-6)UY<xnsvlwh>;kZ&H+3MA0?N@wCOolH=<Y_l+DU
z{Zo2P`scWjHy{hzl|HP|@7GyILd#dgLLjEMbDgDOLbqE#L|=NN{2n>NOn$fU&=qfF
zQm1=tmnZC=D+(jie{%7_G(gdpv9NX%Di?+a7<lx46O9djA=rHQEjXNl49ZWj2h?X|
zzQGL=;-(yB0PMmvO6&rTkjw_!PK=@51C^M(MSyDn_HUD3NKcJDQ#ok!nKPT0K6va&
zODS8-+>(3R9J?r<+1$76lu_$2+EXp3CZ1tx)>pbH-6&lgQC%tBZt*<t>^OlOamX;Y
zWXAQaWCe$f`PcOy$y*AKjp@eEc!Gti-R;R|qzh;E{Jp;7W)|K&YyWSV`b@0U;Vd%f
zpwXVZaq}4_KNnA$a(~5CDKq}g4-mMz1ew1cgH;}GnMJ-tsR?eY@*FASACOl^GAv3p
z)OTPGhS|T%o@^zU9|GcnCIeqgcEQIkh>iz7kCYgr%N2~)sfa>?<&(n2oK{DteOQQE
zgp&q|sm_kM&Qx)b=yM4^m+vo$wn*5Pm}uj|Hg+EwgChzo!f~@Sr;&MX3`;nznd4--
z9`;`@hJ~F;Nlq#3%E{ptrY9z*Cq~9cj)wy^HGyz+$&GJX#9kP_qHo_7!=>Ic<#}N{
z=9CMV7jg(&fMRse73eEM8ut^!Puqk7C5I7!c+09$2U5b6Bl{G-KMu&==nDGixVjJ7
zqAcWfu5e<?7auD~i&Ui*6r^!y)0o=XkwM%1&IalI`%g>1f56GVLkBvRH8B7Eo4-3X
zn=LI!+hpGKf%Ln(e~{))dz#K}#y-nG@jcr=?Mzw$_vh-u!s@~?V@4OGrWM?D;sNRH
z(_P!M9{3-&Iklj^{%+}aA8umW_X^VFJ(mCBCh3Rw3Mj5Z2dAy?F&EOeO+f!&E@O)G
zP76RCQ{-6b98?WXVFgZDR8y3^oSd4BS2V9+H)_&C+AxYnLDP_;!X*R?a08@WnT5vO
zW5;3O%OLcOW+gOA5GDk9;-QDCE(Z#eY8Gk>hqD}E!MK_yCvlF(mEXtlPb^t}+*c~?
zbn)Jln2c2E_1n#EW8c*^c~;wqS({S~PPg7yT9srgJQ~;M;*mceJ_tFWM0$CtHzp>t
z|Ja66NhVdS$tWcDFLQ^k@$$m;8nuTTSv=|<Pmy|9NlelMNtwk<>L(?xDNE{gY}D{g
z&mnd^r&qu75#E8LZZ8|*GfX<!ad1)7{`ZBg(&Kjan|>u7O||NbI8LSFw@j6;fiY?F
z2dN$3r`@$P-Vi(7T{|^YEFI}pvFFZ{_b@IqZ>S|dpc7pwMTu4*wpguciSdruob3aW
zm%3sA*mRCl83KcE8=2w>#mqLxq<nNuaK_sBA+GW@Ms{va?TpA%W~FKU!aXwvO&vU6
zsy3ESnix7Db(~$8QOe*3LNY$)KbbFzNAx@4#3TO+HJ;pc!M~<rn97Pn%>CY<JyQ&2
zBF&sWj~i?)gdluDu)9u&;Bgb!dpWa$kLAt3Gu*TBjwhbndGiVVt72JUX@xev*gu(j
z=bYh0*YVec@&Y;@@aG5Fg5+$aF_9Y+ITE?4UW_v<vt6!irNybtV%wONn>tpEHH$f}
zmJ15bbo7xgUV83tr<z06tC!~u>X)|T#|MT!`n#9P)G-#WqCzn0)qP)l^NknF)CPm-
zaaRI~K-2dH{?#`0aQX+n0EDa&d_fZM%4Cm6$h#2WAuM{pnsx5bNQZxz*@h;g;ocb<
zf?PFVkvezyRynt1bCdL~ya9pzjcuQ9Vc{*GZj<szQg4RXZ)$?)BR2Tml1Ucozin!6
z57U+i8GXyAY;ebJ++{KFEwXU0Xl~-0u!UmE-%#dZjPPn84<0#kfQr~9lZ&!p1o~kd
zBmiv)vR$XHw&%s=M4aKiBVQ?NJbtX@6O$8SUx`gj#3Dg*R0g*6PfYB;F;Hm-GG*MP
z*hG7=BQbUgc>bWB8&(yNE(EHunOyNqplaRr#`ZTFw{LG0@*1~uk1nC7&_ZepR2CIg
z2HG5s&*|9b-Rl*H0+p2kX{O!&a7HC}<nrCyyZCeB;oxN>dl7mPn1}vkIOnbpgHPq)
z_et;X`;rBvGtwaG4E!<Hb8}Cw=m@Pid2$8cvf?Crj`Mfi0`6bIdUJPOK7NwAgOg-G
z8IN%oGJ;Q0%vLN=EJ5~)^@`2#fZn4x08fc##ht*_KM92O#}!X0&MKZ&yo#>@^At~n
zEV=|`@*uL>(@EDb5rVqO%i<uA2eCu>--v*E5Nz$i2JTf^$q9v)s8}k)8Jas(RwQBa
zL)qqWdhtwn3HVj1K^~gJpw+{Q#X?9pP6zLS;|aVUR1PSwaFf#<G&>RShtxrSr8iY{
z+BKZlZx&UBfS=0c&}(>~U&94>YpRv0Dv<gOWzsQcv04#td!3K7J<B8Krb%it7n!BS
z=6Gj{@T@J4KWB?eu)WAq-V{=tK$P2QDmJkjEp+yGPPghQYg~t)ZIMpiB%NflEg2o-
z8TW?q%u{+3cS2fwmP5L2Qx^9C6GCQ}qeFVPf~_=FO7(1*x}!;CW27AdM#<ig^y-mk
zkDY+~>b<U8S+9>j7G8fw$*(j;_MMmhfbW?expq7IJfog@zuC+)hx%PnE!D8%j+SHi
zCzR!FO#dCn-@9R$$ZfDE3({>GjSZ^@)M{sn#b&d4V%0Hhgph30XxMZy*@kPNXAxMM
zk<HVpV?B2K^TaA+q(jW(&>N&PLUPCJY^rqB#3u?!J}DhkzR1Qur{-A8OD~z)M=Qnt
zBjzCG)$1W?cOom6?h%Z*`m|DHtEyP#T^~MuTFnPwo;T@FGrdlF`3UR%)kkXS!jPA_
znAT4+fp_{WD>UwsKK(F@ZExq$5O%Z|`~(FlAIYVD_*nY9<9g{cmhk64SF<_Dh+#wv
z+%^i5DD_nt|DQ1L6tYpZTMLPA-95e?g^z9G0JiYhrjCDZdQ5oZ!BCErm=mhZ<{LIW
z!)CTsZ9aQ;bK1k~9>Oq}Y&rd+^kx(2&2_L)P-gF5=;4BbM<=1+NaQ!C9SE7sqVPs{
zL_&%yR=~g6!6P}Pl(N$HI%|Am6q`PApmc5I`9%}Uo48`>*iz)on3iskK9E8yXYs##
z_SCk+3)qm??6sBR+|^Q&^z1cb-(XW-zoBy6;>feowS&g7ja={czHB;YTQOnQDybZa
z?`;K@qn)p_nuP~9KhQ}Vkmu`PvhOcZa&prI(?LH_aceO=)r$+=3{xGkEAnxk1YKuw
z5aG#mNX`!BEOx499Nx6<rDy+i^UZ&H_NDMz@o+2SzC3j3OU6n6v*Fy4wf8>Xdf-6o
z^Y^Zuv--htuiSUvcfsG^eDI?Oo0qJ8bNQRc?|Vg9)vhibfAh`bON9&T=gw`vtF)4j
z4BxeDcn6=El{$ZZ3co|R<#1I;U17n@d0?W6k3NpMdA!U;Qv?=djbG9`|Kj;5j|%$I
z6KO@JEig2G;Id7$x#WfPsmnHlwy}_K{A%0c_OI@0PrK`@b#t`8T0C=jHp_T=f5$$<
zw)>8AAKG0mdnA<}03atUBVW^!-A_xYPTrm?Zy&(&uDiba>aJzaBYbZ0ulhaq*L@xP
zt4ch71kLrM4a#L%LI7>2JZ*${lLQ13%GH*QZ0`Yh?Un(xdjS0ThQWWg9x*8sL7iv8
zk983um{!7@bv>-C*8^vCk77TtFpewEV?>bZhg^^~P?_2(dd>OcAD~5@J${susOJx^
z0=V<%e{{ak9{iaroB=wEK>wfo5CbDqf0{5D!p)1Zfhi-k+n)|5qiALTI2{Ial%%{?
zDmpGi)Z%SzFLC?1V{I>uL^`ABzY60VV={g&c|F@WVvcdnD*RS=t~)B1FxygQU&?IQ
zxV+u|xOXYi3|@Ks+u=*Qp6m5Swr_a+@eLavdrW%I-?x8Xf76tBKDpoIq+m&Euy#bS
zSGqlAuo2vNn#N^_cf=$G10JZQc1x$&s7n55$5iQkG5zJ2rFWJty}8H#n^JN;hLoHX
z`sqD6DJeOg+(|hpIrN*Di;(s=(|+_%x^KkND-SIlk#@y1@%+@sHbzU!u1o8s0V1|N
zzpx@h>&QyZ$yG5O@(u&TtT!|AI$p^k&lb)1Jo?^JjK5uwbxiORzfy(;hx?P@JUQB^
zSY|XP-`;xkXe%!rZN2^WR@PdPec|2gii&LZKvszRE|kR{$gW`9>D*Deuxas8p``6h
zRz*dY*q@fa`W2RVBk`f>pkMD{Jr2|hxoTyBC`To8<s=bB70sB|NhwLZ1Q}?$A(GHN
zs5=ouhkg>3q)1Oqd_b{yfC)Fh_5RWNLu;1Ip0#Av!Ma1gdE@r!@79a%M76=*cZT%+
z`YoSqV+rS0oj<x~%hu!LW^UOq*)_{-OE&-E_TKZ#3e-k>T%QLgJtGOF{1dM|zxT+S
z!3nE2Z&@`V_}HySo~$VolB{+^Y@lKOvUj$=&P-!>+<jul*lTA@4trfT%W&K6Z+Nr3
zcB3_+-{AJM-XvouFB=BwOMpHn6IwZHbvWXX`T!0-q#=OI4aE--76~M7lD7+l&NcC<
zDpAfW0B)~~)Ik{!(K9NSy96iB2#7->g+-XuAkmG;=TH&U%;jH|SFgI`+P`8dF_u3_
zmvq3r+u`L-zZO-SnBt5&0YNaQ<9+;<Poc*}dODW#Es`SE%db%-#cEA?xY!qODC{rr
zK-BT+Ey)hA%7-fUsCU#KzfP_<95*mi6CVx?WTZo5hy-N+ZJk90kgkDt?b`<?(+W@}
zfL|*j`~K@%TlX?AHHY-ay;eN=lEO;QOX;Ch`48((zS+@O5)N~o20n-sYlddAYIu*|
z>H)y0*Tc&Uy*Fwymos|=p&j!Syv;3=-ezC2iIM8-Uz6ITRz89wPj@`WoqSFDhFiqO
zNv%>FyM~2fsp|+?dRsa|Ca4F(7LO42@QTPR?$(YDUI+tnGTiYO?pAq&g=b0%ORl*?
zVY3MebFPI0egUGPVf*<S0^(p~&uYd5O@=R(UxuRo_luxYj)(o(g;z$i?!3qh*ZB%^
zaP(k)@c;r88WR<dm@nDP_8+{G*}Z_c#LX%zK5}?mU7e-aQdfuVpIy*J|L%NUTXyH8
z=&I0LW}EADm?`KleA;C*zeR77AMuN?V<BiD!(j>iMJ}6_?z`$wF4R@e)UBp_M*)Lt
zRET+5@AxupZ<dK5@33^fx3(-^dO`Z51t)RAzj=s&B;E9{Yy8RlGR30xQ>;)ZJXV-q
ztVTvqFvKiI`9`p?vLQeN6&?@an2e3(YA871UDHi(_#kw^keTR5XFzTV>ws<~y6aFC
zs$4u5YHXy22sbhX$7#n@Pf;bRrc{psUJCx{@Sl$n^*Xpe>(g?qTD>ktr`K9@()3OX
zKsm%1o-Tny?;U$rcN|!~SCf=8GBEBP2lw1t<^gH$EZ6+L^Ici)v;pR~o>L{fGpgd6
z3=<*>LKGqu3UdVlr?zsO70@jf4UaT+9(BChrb5Q>xYQINB%~stUX03ygB}68Dow|+
z)i>O*x@^hy3#Y_?5DLY>U!*jne0PSoyxg0yyF8<`Bz@$FPdw|JZ=!h<I{64__)u`H
zO_;Ti*cDb33ZH|agyt_#D(RRy72l+k0CA?q<eZ*D(uAVbuuE2DtYrM{Oo*RoKX_gs
zF#uxhC>=S}?dc2vdH6a#b?oX$O#h8f&HB~XrkD{U1~xAACR|bs=vIRd9U6P>BO#gY
z58pa1D~VGqt^de{7#d$}#AB;oVojJqCx5+k)9#yIx$ySV2c6OjsWyvwUv3r@@M0Kh
z@hf%i?4Prq**;XI`?Pt{iv#D?e!4Ni-=!H($X*C~n^2JC2xq&TuEaS@kc0qp&V3aL
z@$W_2_bf_wCqtqm#XB_jSE}2i{D%U5D6QaeN6<{@fp3DFd{LoMgJ%%T3I;*tf{B9<
z%D@_EHCU)f%)8R#gfvmalyIH1q!_;T_3x#&?_a;RYT2rR@mYeH9N)XKG#$}Mc~dt&
z^Y$|vr{?j@m|oi0J3d(yvf>A>T2>{6k=i~Asesn22{0(d8|7SA6*J0`lgnmQ<c}y$
zjlrYvKy5;-(<JDUQ(ZQjD=j%jFvL0&w0IJp7n52%f*&EF8R$p$2>L<K&Q3&gVv+0`
zmgCG5WbY{tLHNNEif~Im^lHHb82gFuL7EfzqI=M@pfuLO8;Pt59^!Vu0C7l9k6|Y&
zSU&K@`N$qiktMQQG_l2wRI&Q3GR0v}QSL24sLCwqrbX&hYqoB~Z<VQ8DdIBenpsk7
z`G!TcX=$~KHk7wYoI<JLg~$m2>W||r33e72nPH0u+Vy8msqDTzhd(siII)*BiaTYC
zPq0gQhxdGNA#-pjEiE)S^8)d39CYSku|tlnfi_5?A_rwcm4{z)RF?=7N0+wFoWr0n
z#TOPVX=E$HPY6rzz1K>5Kj;#n4vcOd_{WAA-HuPToMaiNps<o{F=YGUTRxPYfa#{k
zrBT-+!E}mQ4sZQ@uhF_!`m2SkMA5rsKC{yfN(hw-3_3#ih-x`W(PZFY+LH~yP6kCM
zDGv*yWmA~MmUy510%_yA@rTd<_59)SSS^3`HnvV`mz9;X$V?P9ONsc}QX?H@N@>Gw
zuP%>XO*gG$>*U9@g)i5INQtb=5W<*u%c8M!fCW{k;P(BqO&IXO!Uk75P#n+?kPY+}
znUbiKU4`b$_nbzf$|Y%(UmM+gPkQh4p5qk=bRA$<XSICQlBG^6Gh3AvkvlI}Lip_<
z>2G&aD{t;`tGu~6mJR&yZe}0Uc-oX;o4ax2Tw8+abbF_%jM^aDALO~F3YgTeIm?5y
ztG$5&f%g7|`cW5wJ_SSo0cgHJSEU36MbCGAjdfS6-~NAWj4?6yt1CWeP+Zz-utc_9
zu9k>?g|CC9#jy3#(U-4YL3ASX;n!HE(@<57%s1_gJ-?Rxt>oC!d4wMF-_(u19n_fJ
zki(rLq>G3}hm8}ot`n)a*nMRqh`-zj_{i&uW@zHId0M8K19!R*Rh)1KEQT#}$8??;
zS9+A~J^Ej^5_N-@j|LWLnL10Ipk3O8w(jw9=1uB6F|B0Xx}UTn>3%>nloDdrOQ6%Q
zfpw8AGY$^v-hbNfJwHQ4sE1(IbRgZj381okfy|I#x&%#Ozz@R1;2~~;*A#U*q)V1!
zHvHp&{Q0AF20ZYU<OY%Aub;d3-gB=rf5$$sE-g!E9Xd2?scc~8E?&QK<@H?X2^#88
z$S3%}AC|s3Wx9eC^>{ps5~OngYql?4Y6o0%<dscq{-#X`^8BIn_@7$uE{zfmxDN@&
z5hILJ2Utg$&XwNX`lsUvL>Cn7l2S#qp&EFnli(eFl|BddSqWdUG*}>I!WtblG7ZD5
z*mK~)0x1tD_<<0k;w)!g7_u;>D1bnWc0+SP67|ai)Wwun^t7QBj%4Y($KH~T^;`bN
zzFM{BhCgjv@yBcA{?p^jOMOxv-76nNfa@La<9|o^qvJd?yc+m$8yb>tK?C9dLJ0yN
z3XMHS<m7L{k4hc!N$)?SoOSG@mD~Qh-xwW(p`KR_nXFlg9wjx~d~t1e%Zn2o&Lr1c
ztiro$uXM3P1rt7wBqqNlJ&Pk~LuIF3V+h)C0_++;--hTj|CaD}5hmzV3p$%p?t3z;
z7X;)idS7>+Goj0cdo~T4&@KJzk&mBTz5^A9munB|didgX&N!xjvh~Tmr(W(Hl?rr0
z#AB<TSU%&>p&84c;7g;OPu{(fnxX9;mO2tr)($uRlxCZsU@3Pz#f(WQYp2Mg@h_d-
z5O~*^BunpREq9l8bay=|bT?rj$b5=yck2U*;mSEP3Xw!o9SyA>vuE(K$K=n>qvv;O
zG&vwbJBMF6pANq-di=ig|9)P5XQwtE576uyapn9v{J!Y%`_9Yl`qO!qyClf-Y^j{j
z(E&_n4uEYi>spF~fo=vRAj`U4j-Oplp_jV_7xi&5apCuv|CIF3$t|Dk&=F;6rf=Fj
zAzFx6ATYiXt<Qw$iHnzKB7SYG^u&jEOMl&KHSYa<>tSX&Wr}{b;}fFyyll0;9DUG)
z<8p1<J3o&+#p2t*Dyj+#>!2O3B+4nHpc52T1?xdBm7slTo!l0*sbC$W@`k7LD>=Jn
zR@DNa$-fV{r);hE3F&?Ljhlb2jLi3hR-28B+e4SD#38E~9uYn9L@PB#E9Rk7ETg-9
zq6eRdzNO>qpUkWBw;}ydl!xr%&uGF#9FU9aDy+;d%0<KrIytgPH+x7VhGzE2ZBzzs
zI?Ys_Tv+7QAH5R<HY|i85ySRLjHvwU?#|@prHE2!`MzzJxj*o8u+VpNeO#cED~zsC
z0pjuHv6I$4a$s05M1Ts|AwcCqx`Vn8$`6bZdFmJMO)V%$l~%v#`YgBqnu?{{kG=F#
z#6!o#a6xL@$<zX_?u(mCO4#o-&3o_tB62@Yj7f#dO7vZ#0&~PrvV@UbAkd&BouJ<U
z3<lYe5$vKYIp9pxp`F4pXs(2J3Y<ceP{HT$HJk5yVb)P*I_Vp=;=Wn^w<c-RbS_6m
zffopand4OM*|lZ;8^(o#lPdBP^nZNtCF!4WNpUU*XDl3%>EQ33|ICfEi?&G3jgOz)
zFf3H!-<LTpbJXAhQF|nL!e?xpt8#YT-jU^1ZRHhp1!HC}pObt4vr^>6tWkNHn#6Iu
zan!s8s1C{3m)4-|wnCmLC&Us3j8`Z&SSBhYsuPT+BXfXN0P`zX2s0c0fKuG;5Qpha
z6?9m-V90Q*NQPcZG5=cpJtAi|EzB+5GIjURL5v?5o2ZOcS&eFS!2mI(f63$+t+8qS
zmnWuAKk=o6)v6KS9R*ou&R15gdPVy3*590zCU2j=>J_e_K_hBCnf^d|_THv>W7XsP
zIe5L@wq0c(tW~K8hXQ#jX+-Bkuv-7>@h^wX7H85!q;t}judJH1mF<7%_qXE7<aURD
zvRoL&3$n^OVn12|5=#)uGNhXEborSf*0g)u(&>9fJ}Bf<O}{W1`RS*0BWk9kwk@{D
z4)*c?;6=PG`U9d2W}1U^v_x=sZE^BtB@s8dHv_1qd)aMw6lv^aQsj)n4SYf13NmmU
z#KQLQBI%k3JYC)+l=8r1$0ek?C%2|f2?iUa^#}UtbDt18KNn(+daG40HCy#9daKk-
zJFHROiMWRrF-8Abq#9D$-Nn^2%HZ;J%R{$}uvs_Pe+&?ba3{dObo)>5jy^ZiQZ)3N
zf*V!`W-OmRxnH`u4FAlHLn+A&^}(>}Uvm8l6@+fsRX^&92osReGUO%dP$3U71PV}E
zK2nFt7z-+qT)&cW?d6I(+;kdn#ps=v>-oq<jb^(>Z_r%4s4?iVNgF>p60twx_14*)
zS5){A8*<2IO-xFR_jcDe^6}3<<nm)5@fHWXb^PVZuUUg&)*Mf<w^P3b79Ad-@d~0}
zG8Y;3)Q`>}_O5Q|AsXT#4L(ySAtzr_v_aV|D}gwKbR9VGwm9aK+asZPABUsxY{yvv
z*J0a1XAgvK{{-7%G%)5goRn>$4%y2EfqWhnG{kUY4|x2ZKq2YKk=!s<sc31Dz6r9y
z(hTV^{${YjLFt>87HDhxu{Erpq?rG%QXz#}!Yv&wJgpc&)_4V`D|!!o+vs~}u1Q7x
z3It-3!PCf}ssgGOkmR&NOJ@Qk8czc8{p}B*H<=vmtqzmv{KM_w%f6M9IN`~l^-pc-
z2yc8`e8rfaZhS?2d?O#;@>E-koU@6&K`>AB4~=@oyXCR{bMNm;z(nuw&T{&*W%*My
zXK5$`tDL;aLXnoADONPqD|?QL73sM{Wdvt&=?2iD75M%XV^5ejXdVzy<mQ#<D#}yp
z)NnY6W2El^Fg1EL<hS~`ShGpWwI|uE1{b@;hd4*%ufn{<Jf}2}i;G;!lGd>P=2Sxr
zmm~<|+vg#1=a<@Cr?AYHXuPE0XLTH9TCTeNPjSim5BSgcj%NmPYdB+~Qu+>BCX@^9
zj4?@gT!>QWiLVatyB}eyBa76PNb17LsP|i}V)P}Y`cC8?j>akHD*D5+-ocd20`FNb
z=zL!`kd0)MfJ3>G{hB?;-h%-~;^0sy5>gteU7(sk7V~H(X1`Avl($KA@+qU&V6MeA
z49F>+;5z>3tP31eh+3+04!T|kcxOlSiGtTaX^#<)0C+XHW<-~Oe<AtS8R(q$$QBAV
zj;1=O-SIMi5gr!3uh`*4mI9}P9)ZAW{6S}$hVSGE7MAlA-9-~51#qc=-%oe~cn$KH
zmqXh~XXu176-LwOJM9j7GmHUH`_qzYhI{BVy;7-4@jIM|pYVxzA1aR9@f0*nKE;*M
z9YJs&0Yp<!JGm%$DCkpwP>^XeP{jLG0a&Ev<36z*n$Lg|I&(VWrEFU=#2jo9Du>`K
zPD67Pl>^7bF27lcdgCSPR3-95qs&S`(a;eR_#J#PAq)CY8md-tkP0H-1+ItU*OaPM
zl*uUol^Z+qJ*oBrFI7ubjNFg-Lw)2&i2z%tRw0jG6rX*h_F3Wr92=E@N)@Sm);PE}
z)g?F_rTVcc*+aJFrRTOS(T|C4=5Q~wUa1Kw#lE6Mv1tS{2)9oA$J&HN*R2@IeW$jn
z*!Xa9UV|etGV)vJ*nD8>a-vnOj58#tG`hqjm)@C}8gH@bRDlNMPc;tbQhbS`KF7dw
z+Fn|t(b=DsFHUsZ)utiN-hjA4TIq!Ryn^&Kxn(o=TyM)L@|4E_3o9_SZ+#jQRltg2
zd~fGq3uem1MSTax0`@#Z1NB6fUQG0*a3c&FbxcD*t70}wd}^Z8;E7MrY1N5(r}VvM
zluJlRw7G|;#_9XH^detUXdL1)Wa#V;lk4JH*C>t0nwXHD)L$Q$>NOSy1<jL&KGwAC
zocK8YJ++zV_2%>}7Av)Wao1g6+*LehE>mffHY95VQTk2|n3lIWL8;WGY?Th0dX*Y2
zfO!`OJjZ)CGv{6RG5cW;fM(29#`uy#XzEp3PN`AFAh)blm|H5uxJ*E4{B<l>oSPM+
zHfwq(v60A);qSG&K}_9PTsTJW6n^vk)Z<f>PA*v!lclu+oy%I!*|-_fsiC!Mb!F&{
zHvkdSEW{d+%*JTUFldrFQ_O3>et~Ng8&+lb2AFy6n8M<XJ4{}cCeG@p5`{v0kL`wp
zN{t@*a2JSTeM*mQp~|SvPDm}tbXteZnRD};_ZMXM>pNJPzM$;`U9!_$vbdV#askxc
zE05z3*EuZ7I<3Z$l%&xbY=$ItOd>v+aWJPH5b$M|d(2*KoJB-t0-&4dl<B}V;ylS|
zO(p9BCT9|hH^mxw1DBI1SaNy?2J6*u{Wb9Gq<@XRL2Km=u||U-G1gqPuCyuD?Lk(s
zULr6ZkT(-gj8*&0?uztYfoctxA8SM>N{rDYnk;&aHqm8Q^A7;_Xu9{>B&)C@V@q$n
z+h7RIFd4OM=~}-3*8J)2xFm~UO}chRvZ42u45iUDz0zE{c9DR#yk;Kn_wBM;RBGF%
zz8tsd__F24k1t;)`Opy)R$x%+_(A=i6dD@P?6%RPL?ic7pOtZHrNwk}61UN*-}OQ;
z|G8WBcEC3g#*m7Q%fOIS>+?l5fSvFVrm>l=I>4=&ODi<$9KAj%4b2kSY%mR6p^FL3
zD-P6hT;C5WN*0$DZJ&a~2>|Z0I(2$oUB8sq?e=~7sScjEC-x1q+~O*qhYcHw{u67n
z2*~4bc2b|6#q$C&x|P)?Lq3X+#Ms0$^wR(+8T_u1Jf@M)`wGtt=0dx|E+Y_0Qk9E2
zSf%Bt#D6w!pE6~8Wa*Ucjg8wQ<4WgkyZ$%OF0#^hcl`dADcO9+!1-&3JuxF`^2Ek!
zU(AR@(&-b@2Om7WacTelp4?2j3AfWy%<p?mO<}sz08n*zZpomLGv-$w8CSS$^30L7
zeG8KTJ!f(i6%Oe$I!F?e>~kQ;w?-pW2>WmrWpjbCMTx*ZM`xxYLUg1Ur*5EYYXMjx
z*hMhU7YgJ>1BF<Z35T3-0PBp)aW@`f1u=&{L5_@;x&E#_pIiB3EJUG~bV_>d<IS5t
zW<_iiE26E)f}bKiFEN?i$R>U5+?v!RS;S9D9Vy2YcEkC<B_D=mPF|mrJ~+oW!h<DD
zOeF!Ti!GZ!Mnu(>Z~N_4aG@i^O%lDU)fB1;r1my1A$`FTbMMpuU(@|ICPy?%-!#(6
z#)+FYO^j~sJ$J6-MtDsSCreATEc!@i>=Yn-Wh)bSH3qzip5CZ1@C9UUibU=%*<Y5K
z3LL8N#jpxGKa1f)3%yPiqImh5z@(}Rh=re2r3zI|3e*S+;$<T(P!+rBst#NQJx8+y
z8)GwF#>*EsQ&7?sWlHESQ&cHTK}bD|V2`6XBwv)BmjjjH<Iljda&ml7&r<xTh$xPN
zYpDtRs0fk9E6d2-{}<)qA=*;Z(*Iw|1E-$<yY>N(+u4VlkgFk?L^BcmCtpha?@Ph|
zN8bkm(j`&27P_QFyd4Zvst2wI(Nviv^g@+{P&H!qg#~i@kBu*DZLz20@^sHgFInSb
zV$#!NViGLuYozv&(r~y2r`d0DPBdqTtr=#~s-Sl$cyRLYaaAz4oq)B>HV>9=ztRJ@
zQ8#cT0)^%xdD~fxGki#DfsP^+3Q6BKA<!fgVj=j#v|w#&YGS647;cps!;#k3@ZP=Q
zR?Zz}&GKfnIq^O@uAwX214&&$Q1ME<pKxIyU&;Z~0A~i0mq!Hp7W|R|<^YhxP!QP%
z7NvyKksSdC@*k~9F7w#c7_m~gT_J@@ivoju7+Ad*aZrh0dvq<~C@{Uld>8`-Dt!SZ
zlERb=IC__W^PT_Na0hZdU`aV2Xe)vi!w3s=G|K1(R7y*2s8OH|NrH{)hzj9NKshYn
zNzt=bSJn-ohn+QKJ!=U~q!$u)S5+x{FtSq<MS$8V+CY%T0~!<wZe;l3f3)a)7)8f8
zr&>o8;WiXm#IGH7MHTSl6!L+tTlg^5C3-L2$kF}sK336IXvY@)<M4~%kN&}jsOz27
z0GDM!Gon->pY|Z7h)zmTIz7~DRZw~%IeSUEh@9z^rajEAGZs8vFbeUdjnShe=^c$F
zgGS*XWJ<JimyD^zJWsj-B!Pos$BQqGzoKHI-IQ>#C*c%VT}X;~B1Za-x!cjPOV~^4
ziH{>)dxxUy)l6|giz|-s=n%}EUcxuyTq7<*CU+`Y30_Sfvl9<VhdTMuJ4Yi&g#!MN
z-GGEhFwwc~D0BcsJ1UkVA67DRdjmKJKO;yt5P@I{FmTZ9BGntD(m*uhHZbi_i=PH>
zt8Pzrs<pS?s#QDnE+-$eV+S(KI@{-bI<(*X)q(B3GT0#Qm1#5PuURvH#<aZIiHYkU
zo0^q1^|AFc_`zeUN<*Wnz)nh~>~BLRUkOnJuoaQp$%zjXqzG&S6Ixl3^jh!1eVU9&
zuH{)=q*70Pa;jQY*c5~O^vd+w#$}DQ=}O_o;sGMB?w1p+;vshr=8LbuA0iz}SjM^~
ztb=&Orj}C=FhH${=v%+Jm=XiYNEry&a0^Th<d!2;Edtzx5SdEN)}zDl<K}MO%uU^l
zr03(0NZ;MQ^1UMykKh}ZGXs~n=<$DSl79c7^xgw7Wt?K!8@_*h5o_oPtHu1>BfXyf
z>(lt(D>9@PdsBK&`VLQcZ{_XGaO8+IbjSC1HQph;^W?qKA5YG>=PO=$MRnvpr|9O@
zz*~wxnuUKHnMR)Xm*;62(=Td603V?YTlMWwmRj{fNN){Ks%n?H0RgN7#$4CAW|>i-
zgN<}q=V4*k<%=h=@@84zN)N+h=vpM%rar1rhp{4G)&M+K>JcRdT?}dI&}1rfuTK4M
zO4N(S1AiY16^@#t%Q2&ogR-n57P|CnQHu+7!N7=yGFTvx8bUhhKA>y??NnR@ncx-d
z5ko~f*GNoHTZ_#4G^SS=Bs*=gzuBj*ooZ))qn$`aRc>xouCROJjr%t5yK!RmlIgPr
z%TS9jd-{^<cE#0>3L(nA5DD>NJhJV3nZuM9q7E;Ww@L>NER{D*cy?}8$CSa#syv>m
zWrKA)-+c5*mB*uc^3gYU>aKdUr;allIwu7Kx`4yd<?=v%G8(pMg0+Ub45rlCUaXuC
zcrd1+j{qGo@OBTnHncxQ#bWq;bMyIVn}n$DjotgA+(wZbhV5Qj-Jz&nx_g+_>9o?G
z(6uLqk#lCz+_};ssr_=5Atmm?h}gr#%f}*plh!}<-R8~TJ+wYa<w^IbuH22%PjnLW
zk8B_+z{CH4Rl`i?u^}K3q0^i{74`eYYPEJKH2gQ3{)=}G{e0-o#r^;DnpBmSwe{Qh
z_tWc>lh>dA`$nR_MEft7onoo}H(#f-?1*zj(cxMDOJ4*<ujj|qmli)Z>+@NU;S2t!
z-{9Os4|N!Jy_}Kp@~$iU)4=~_iBqraPfC@Cut5Hc&UF1e?##UF(XIaTO8lfF74F$n
zNImL`?_h*=dobwXk4Q=o4#_!czsI0fA<MD#M`y_|0;EA622=U?l-~KZMb~6yW@cSe
zRGZ&BC7u^Lu6A_l<-0-_Lzwok2nA=4X$aM1R|3h|RheBAY8W#+c(r5XE7Nro>d?iX
zC@_o9#dnddy+pL-V29`iXdqPPkfAXtkqjNQ(vmKLWf+%`TXy%RpThV+J86L%RRp#X
zoy1s_v=%@m47R+Ohj8Q$<>ge#i&R$ZM_w6-#oGB=`DlUPpux$?0#QA>vb3tt?34ue
z^qu+z%BI>#c=UYfwV}JF=|ts@$wfJXgfPG%Cg$}+WMrM|K3cctrb_SnD@g2(>y^eH
zPV4mp9d=)rUa97)a>8p0hlwm)kW!qlx@r0kg{9Ka*xcHt<)c~p;F+z{cCpDD?E`46
zQTr&Aji3|xKw?*rVpx`wv5tfKmYRtghgt^B0+~aO5+U)l>&ou7K>Qf;Z17Q*%uo0d
zB%Y8<Ftx_f303Z@2~~%Dp+F6};)b{fQ;JnXMI58!?uWN8O}09x?V59odZ^*Lk&)WI
z3(}-;;eols3wBL&T9d_aRZgUdGf{YG<l9S%*9&U`nJJQ@Fe`=acPFs#<hapqyDs2%
z=R7yCOxQKetlT+AGNflp^GD1M=5mVuW9A-6VGm8)C6rP9WgbSh^}@RWUXoKOk1;TJ
z{P>upW`Ps9>@to48Lba+qh(Q0B`SI1KdIXk1j!&HcNvu^WAxIYa>je34d`$pGf@<C
zBuGX|ILP5FH73xADfm4aWdzH*Y@<+#LjLJv70&X(qSQY3z=64ovxba6FgGWgTZWn7
z!2B`N{S$6Fe9V<rl>^`4QTY`tL|f8FiIz;0siMG!tc|X;FCr^q9f6u`FK39z5-I2W
zGH22JQG;1sW-(L*uWe7Gb}ua&kmHkH3Gd1eh_2-Wd|KE7&54_8=N>Ts{lMJF^oAYw
zdMEedz#)d9C#On#NLyQQNr8>cdUd?r>nI3mnhinTd_i3kNUt)y6hfHK+!rb`XLcy8
z^|}FB+--rHb)J0b-JJ63oHyR6&QgyIWDGKcVs`dDSsqN2@$t};Fbq3+!ZPOVW>)AU
z&<8<Rf;tObOID2##w>;!Bt^NC!dKgaF-b;YxeH>%$|KqdyGQ3{v9P{uVH($WMN_SW
zgf7ybA|KT@-LsP2nGqQ^eV@9rsaDxCG4dOKsG|}AS0=NzFqsc^v|w93D4Pq9PcIQe
zTHtjKsG5YaoNv;zvREXjU>Ma(MM-|gKW=|XIsywr?dhAEYTYaE32&P=VwStM>0%3;
zc4R%TFY?8^Q*&&|J~vV`8nSwqq#KPbN#03S?s%W-s6Hp*d0Bxak4f3rumBjWpjkdY
z1wG3Pvd0klNdQw!YdN5n?}Q{le7-W3C-3xBOn=d_YwfX#218sw#xg>hWYVVsUPC;L
zT~RuS+c3n7eC*X>tF1Hi;xg6RiRMjX>o(fzX4y8@U9-h7VU_AyZP1aIk{>tcKxu&_
z_OH+Pm1*u=zeiK%%M0<F<ELrLeYsWqGL@j7t}gO$k7lH>_L7<+4As{|gLom7>o3zR
zi$B0uTvAM~VS7povmNZi1lPpv+WPskMoM?G`$o=MI#zqb#Mo3xp~^J5bh?}8lsEaL
z&4tQvo-Z<n8|TZb$~EdEAF_kq!m1oYjFghN%q1;y_ljrNX7(!@9RK;B1s227^%h-j
z|2&`M;+hPGy#Df7SI9oYg)#yO<(;4z;cAqQCIFm~`TH*7ADsm-YW+m|WwJ)3t!pCq
zDdDq%lzKXUq`SMNS5?uFDDgXo=zs~a@au?95krbGSqv$jx8I?iHYB%b@xX+nNgER<
zm}XZ+3ZjH?|D1t+4*b>4-1J|>d>|>L@GHebsbv*~h!tpRocdm`z9s2pG!KNv1xM5b
z8oA!V5#hu0KHvt}$EvnXdT-eRX?JL3lnl<fC6!B^djQUP;O4u2ooz&XqgO#$Y^Nx|
zk`WrEJl9357(n1y)P*UTh$7KLY6PHJ8f7R#xf3~&xJaHHK_2C)1O3Y8wA#r(KG-#V
zM0+WdF8~+>9*@3`Xn+9jA>v4Ji5SG9x^M0-XT5z#LuC5g1AjLkm|MFk(F{VBU>~sj
zNl(x)WMHtM7PP7A0f*NfuhwtYR^{MuvnJGDslG5Xv*HC%rJB%7hN^VvZ4<Kw=<2Pz
z%!4ulBh^{eZ@iIHU7jPoo9|gy6W~`nD~_F>G(oz5%=`mjy18Z9Idcz;ACk402(i>I
z4i2WdjvcPZXQOQKIaS+Crc6ts^bu{Rxmcsc2CVE^j@ZbG0gH0J<ea1*g~G_-&8}(t
zTX80<8$4>f^olQMKv5~pdTHCG*8;MB7-JsBf`?)9kAvn&##OnR=MDl*tWXA0yo6sz
zxLzq($%%cS5Cm`)MIjJG5yNCn9)|oi@Y;FDqTdFuoj>TUKy``JTLr@~rqSxR##mU+
z(`x%Fo90Y5v&3xEYc<2MzR{-nK&$2T!iO5$F1>|sU9Puuye;3HWzjD;SghKP3cXHi
zj^Tz%V-bvbZ{(pEvsP>1pN%nFBNt*5RH+&SeVM6Bs8A=4r3R7By`ymm1QHHes~AO<
z>*D80ff5Y@0gVSzLUbN<z{qihkpv2bZUYG!Oax0`&**FKs2WuCIudkP58Bkv9Y#n2
z@r=wDF0Y?jKUkS9y)AwF{PN|`GZV6InB=YZuVRJZD;qo(=`TaxlXjR5CNo<g-9gVG
z7@XMT+h$JKm!{>5mp?Ck`=jScHSi*T_}d$A{FV*vGNbgYcQ$B^oau_eN)K(2--ihb
z97gvLas)}S<<Ehtgsk$EoA^Jt>?ck0Bl{6I@z&V}9WabcIzcen5?o&E(5a0>yaP-o
zozbKY=#9K7D=;ei=HEWY$KX<Jw%Ys)m+pK1IscC;k7h-@%6vAI>MuRq-4eO8EtXMw
zfzu-|k<k#Nnm%mkv_ykJ$GDi`Hmd+sY}>QD_dY{c!Ib_BR|)x7X?AA6;)T(sC!Qj7
zsa4e?x@Dgdg+_3y{2CV2@cy7v1Lsi{<64Q>MH;#06ODr;H*0-X`j~6xnj?+aXRVU^
zS>|b!!dxpUR_TO%868fhi#ji(+dgSzVd~?uyejLB$dAPj(up@Y;fv!8`ZZ$E9|U48
zBKxoGy4>r?L-1uoOQZB9bEc17FZJfL*b7o`WC3vED050*rjO-^UZs+cB1+BK@C+`Y
z8^gGzioJka{|AqI29Lvy4S>-5X{RJz^#{<`rJ-%Cuq#BfYz_dD(|83cLe7F+y|T-y
z3aoeHTMLSz&_nmc7Uc_&4XzGcBX1!(o<cjI_5*KGz<eIJ3O>SixC(c9@>)F*#KD=7
zHjq3zAes}YPlIBKd_p{O@^fwn9BG1ZTMr5wgTsTt;T`_P&5QA0*s!>E#FE9$9RrRn
zU3Tow&yNWkk1bnz3_BekOaJrCb#Jd-`}TFu@b^j*;tZtaZ{Iq8?EZ7yNa;IdK}AXh
zwoYK{v&uCK4@nmeZ~3A&ca*N)UHj#h!_tLA3pM3gY{7nZ+n-w54O~L>^+Ar_UOb83
zxp*;?%g`df_!#^A*s;%#N$G4IGp;?~c7Cm(TeNWep|_VWee>WXcs}DWJ_BAW2!-nl
zZ+Y@I>B6l|(@L&&toBY@d@EDm_T()%K7DZ$`pir?;2pv|tHHN`zp%m$?`kX%k|mP?
za?XKA5aldafi0F1k>M001GOU0F?k*3AmthPA-Mqa2NFUKM0{UqyYvIo0=Y*k9e8}x
zrpGt2EWMyl&-O2UX)x2dTrtUGlKZ_ReV;rAo5@T!=+!0u>~vhBP0I^;L|fIMrqc0u
zd3~NxUK+O?8K%$RNk5!<iXGlGal)oe6DCIPPRLH{<%t_?A0$6T?{f8r|FO%Zca5Rv
z*$2mYdZlG2*jxrnykJO;cOd6^yv5*>=Yp{8H>LsxT)FJ6+G)LqtOZ3HoNIFBE%H1<
zE>)G1l4M~<#V(e}-Nh0A%b9#`gygz^qCUQT;^v7HH?u-*TAyUCZ|%kv2?@!4(zK5B
zeswn$-k9%jXdGpZXO;}ZQsZzuQ?zSzzx07;rGK71i-bUHdP1GTa}Q6N82P~#E5@l~
z)6*=LI5F0i-6tzxD7rDP^8rhTMjv^$$Pmct1FyB1v-C9fMMr4mJ@>5STd>5JC4N4v
zd|V8}kB@x#WC2n}V+4RVq(DeDmpO8cjPEH6-O8lOaoazWo_*j!>DkY>PY7|(=BBcn
zy#w+g`#&u`otl$BAdT(!h~e>-k&6#XEuU}O_BjhZ$f-gT+TZmMz+(OYkMs&F_6*1`
zOp(@-PKTi^2SEd7QJ)hLSp-uBq8Jf;kqSgGkKF()Jq0qWLG6j&77*=G2QIi}`H(?8
z007oP90I<W#mS%?42blZ6e{r@>Ag7V`$`rVB^@7QAHOV%aRdD$i%jwCy6oil9oBb}
ze8)J}x1ZfJ-@ULRw*O=nI=|0azQl80|Cx$CVHnsap1sD{j`GNNo>|;u`H@Ro;BfLR
zZ+oR+=@`+cF5nV-r}pXCJ-v(_&hWEO0|U4MmdoYjRR6vIJNtwAoGMMpSUy)?AXR&i
z`k24y%QwKElgkozwTEh=e638QwXo?d0av@X2gM`F6Cuv5T=3ddXbL1vfNQWy)_;)S
zaEhN2%n^+v+9k_NMpAGD36>WUQ!WNyki6b8bAuJ8)F;pYK-_|KZ*x>&V467c@aW0R
zT*1ijk9gwZeJKUt4JK)pZ{0DOmyW4cZQePFyJ0q;7$@la4Eb=A34DW+nFbAc@qQL-
z)nkxwi;pG`(CWngh6S7_LD0w9Y{ObN8#z6$GY+hH?E!y`&b#Q=<Pxn;C^gite@A*(
zdQy7#o%QSAVd+SooBqznSD9eAP4PY|j;D?rpkA<c<9KD{jB4Svo5uHj`6OpC>a{6N
zN8J7J$o|GToYy7jlhXN`Pc|C?BY@Wq>UZvb<}k%5tuZl8hg`T$tkN$i(da`pA8m}`
zs0#W)f018~Vq7i|x8W*NmP|8P=iKU0q!2m|Bg>lChtE}<reO{t$onvpn7l{@2#Vol
z#hgElFj+85@z;I(`!7~S;+v&^7D``**+K}7BL^|Zq0irz?s`%A+ur>2b2oi1{gdr)
z(9Mua+D@NtJFQf3Yqoyl*WA6Aow)seX?|qRO*bb=WuA*{{Rd1JJRm(IeHf|RV&E2S
zVihZtxZ`vijVr`aLXY&aY)x=0fC&o08i-!Ri_;i_M<`J^mD8_;F|eF$2Z*Z2Jm`0^
za##n^uh3smc0plva0Vvu+oaE=0rPuXst?Z6>6Yj-zFt<mNflR9Sg$tf;zZ}T65|ew
zy|A`d;iSRdvQiDiCr7XNzV}==<aG1?c?p^7e%WKECm8o!&p=WHuKtd9r7tfjSoVcY
zY&09dGABxZG4SS*OStUc^;LsMWa7wFl`~KKbid4DCGdVM^m9V*G)`sFtNF<zb!C~!
zgJ%ZDzk15&s~dQdjaxKKnkPNK{*vN@`=)i$IMg5WSt>003L;_x`E0@@3UE#g1_BKN
z3@gEV19lb(NCgH!a~fL3Ky>B&G;EOG`26wb4ohFnthq)IuBn;HY=@sazFK<yo+QHq
z(r-WAN<8+X{0WxN?mV=8_KNFQ9D4DELo2tfoVV>3F>&GE^%L86W$bF3xPI@#`Ky@v
z=5JX4(~lBw%2sw<Xp!z+S24PTP5t!GY-(v;<#p11C^yL`CVaPV;pGv4ourzmg33cm
zJpe%9GoXMdB>7qdEnX#WQ9wEY`kV~?<KT%ag3^whb8(04;L1EXq<R5SY~S$5o2T7h
z!0s;jOgeYsse3-X>+5Xugcq6Z@qbhxwP>8nsJQe{Xm)*G&5Y`~qv!8k{px_ii!V$W
zv-FlVkL65d7r1xDcW>JL2X1Uh-rnaYj=ue$Tk4iE)zap^_psSNj6iw|3!BWA#|NiY
zEj#%rd$4Y5b?!ZjwzaPvGqG;aM_XU#hTM4eEUFlte^g=2KSn~={;@|`)T(LkG6r^Q
z-2&K>XD6IdDXjX7FhGLpz)T4<WW>!HNj&O+cm!dqG2$kVCnb!N%+1RecHlxQ|9S@w
z!AmJbmtlch`4-uNN#$~2Ui>S{<s{3owUBIS)L-Pk&bK2$j;s^RWW~G)m4cGu1akmD
ziE&koQRVgB@O*Vi8a#4iEmnambd^q)zRm03U-*I*VU_pL+a@WKvt<kmUOUvCQI?Ww
z*II1#eY1y^79uU%+ptuH>PuE^nRjIJHCD|x<L{l_KTnLM8{59f>;D#;HY0mTb$(2I
zRYL!>$Bw-;+}A6lkI^}E^WD=QpthBB*NCfSeMz<AUd8j6Rf%z-&K~`P8#lbmqm@Dz
zAz6=hAR&-f4+U<@OUxz|y%NMYpwJa~Hd9hw0}1;03#5`GI$X}poe@`LbigZu#T1;5
zzDhYe2|UJbMn9y<D!L0%lUl3uGuoh1fS)<N10?`nC#YmsQR!xS9-YL?S1T9qJ#_5&
z!J8K?F3*S&iV8($Ni3K-HN1KEO<TfKlv-nqJx#J#RoD~FMy;m2O4J%noJCz#WpY{c
zN>yd0#g)Kb%*h^E`_6ao)Q-wDGEGr|*4vly)8^c~?~OP2_AX8|njjPUbhCF48aR92
zz|g|YjSp=dyldx+FYOG(a%$xNwI|!n`~sJ&<2*}Wo3mie>UU~KX6Gbpbh>!GMm2Xv
z_~tDe5-cEn`i=M8dGLCja&dVmRMFJ5ch;ChwK|dU;|8pqIkmW?B#06Vyw%H%l1r>D
zs}fC|(V)^+R+*A4VpXNtl`v$*!Z{;rCrqdvHQS>~Fq;ym^=Eb5_QqM~_U?Pbq$?;?
z^Stt=Su?5!)(&crru7@V^})$6?Ap0AkisGTxmt7@xf4d`LMbU@v^8f!?Z`Pz><zWe
zq>opP&nU^)=EmtwLTRWs^_e8tTs}dcNkG3}MjAG6F#<;oAT~La7Py=kUbw~=dogF=
zk6>!R?E_ZLz-MrnDde~Z!t4Vql<Z;x2YlH~FT%b+UmgR+D+eF~q#9~Bs2GB<X&HE>
z(daPh%QxKm@rsq-JbZk5ids-=^<v9>wuK!!%a9$=mQrZ8XzaOWm@MM6teH${P-|f8
zfd8*@Zb8mkX>)?tXVCvSeYn-CGx%0+-@R#ec}c@{t9DK+u&0bw+WQvuwMg%0jazqm
z=JY$JRK`UbtE&c&b{YE2UQpRrsZ6q(f+PFomycgQv6sdOggjw+{)1!E-!je1uj^&d
zTC;C;s5Cr)iK5A3InI=)RK>7+lB)_bbh=jWFq=*1=rcB5nOAqy_|ZEj4(^qx;nr8W
z1DwM<DwxoB#r#qE1%oG!NQoRBlbhv;o0?s62WQI#szH<ol=Z)<po8S0H4oG<N?y9$
zQ2LNYvokigd&>(YB>C537(sJ|+!H_AXVCJJHXb@sXt6LfNtIPb%1p9ZbU)Irl#?Mx
z6N7^g60wY~F2QKoMIj?SwuNvT94%UjcDBk_^w<;?LyIo^uQU?*ZR}h|ku{=TsXeya
zEEIakg?{`b`Jq>|j}bB{wGnx+b(%M2>kDQA2FIme#QyBz*VA45C}v@_Y0*|f7>*$=
zR5LDw+)xS;RRvgDcQf#c%i9djOjl{OaM4iKjGLnuM&1$>EkCKVL9YMst2Y#hK$!m(
zoqfU&&PDDM-pe3s6vurzlAe&!NEAngqW`mY7)ufOXU;@p%%6Tb8g<^af98y)!~Nei
z%`FJbzslp}fPZ?t)cXIey=;)9(t#QRtXO#U6KE2eiW*2>{NFW@=#&)5IwQ44Tjm26
zZL0Rh|E^iMzLEl<%kF4<<7x6^BfbBN#voZb%JU|5(h(B=z^!zyFhzH<P^<-km$7DN
z*U}e%F-*35C4w<Kwy^sR@LrFu+M~y@jOrBunnC%1<g6o#f?&6voa+QX@XD5wZk16n
zJG;4D4*ML<POvPfYa67uIRy=pz2_{6mU~!>F|wFm&D|vAM^8g7eqt!jo!d*7tt6EN
z-tEP>_@g{Wc`42!s)FjSkf)nCf*;0M=v3cdrlwF~Q-3HVmtN(YTJ5gH^tKlHy`gAS
zsv<qH;|xRnQB^)fXWClQ6L-m1atfvp{(!H(D-q^ZMZ8ZwA4+WhK=$#E=UbuxVYr;G
zX=#!9c*1sU$DA7V#6^k8mJE}q-z&<@5^+JWd^$yMv1k^}Ui>kvRi7q0ERk?*Y~*0%
zpw?hDW0%7&H=CR7Zja?c?Tt{jw?<mU?`@v8u+6PPz@qMlA4HuEx)<y+c~^g^UHiH4
zgT7t+p729kMEK#ob|_pg>xRvssDZBeh77ebca8FZsFLHv6-T-Z;WVtM*qlOdHA`-l
z8Y|YS627=%xBY}#$tf&Wy;=z*9jg+|dRxe*hJw+Gx!tBlWB&9Ae@UUWwt-3K88$@l
z?DXA99&$q-qR15^_;PZH?bHExWmM@}L!&KAM<Q`3U>(a<kbel9+bwXE3#Dc*i(;I1
zufCP0|8wDt`=z#`lo%T?#EM>n#~5!gihJ+=mfgm_V7GDdeYo}Vf0lzJb?@D4xxYjU
z@EV=bA$knn_`JM+{&A6;PBH(z_folKI^Lt)IW%|u7{OHN)Hags1bP`TPe2O?)G}D+
zG{E~oAnmFU>8S(0Vjm>)auK>PctA4L%f+r*voEFD(vdfB+Bh~LHs|2AnWY2DUSreV
ze3Ol&3Rl;>AhqRJipE%h7ZFq&!>RJ@y<%OuBad7*8F7#FsByIREWG2Z>ziI3QqVYl
zWW{`+QoZ9VX8B6maSDy0exRR04LT#31S8l&b--DYGbsHUraZ9m>-%QRxbJKEJ8A@l
z_%HN8CA`%2M5Td2ZDw&uBY`ys@e3woc}d$qF7-!FOYib4Bd1xqaFn*W5z>2f6fMaV
zqb{{5?-xUI9J-Q0;m`YcXv$Q65-5Vj4yT3Mkv4JAB07}!Yo)W&uRptSYF5Lbddq@g
zu_tnFtDn5gndJyp7S5WX)~_iItzvcUeA`#j6lo+=HM1(F96Hs0OZp9J&4wM)Cu1)D
z>R0tU;@R~&HGSi#9#sK(kte@<as+3*)q@TUyk~___Th(-tsj2K$}lk~*l}(p>m~gm
za=r8h-AnyCs(S`w0bj8C&ii4faRy<hL4tB1U&Fyo6(l!h+2jwT8KNLY28Vk{o#e3t
z+>jLFq+#4(I0o)6VD><g>%5N2!S9TzNsgO0FD|(zW^%wCkPf)x*s0X2LHS!YHx9LF
z^@CZ<ex-=exo3QTQ3?VdlfbPgR*9VSwX@C{W2mO$3oV|yC2^&taZBnvjg80Lx%Oa<
z*Rb@uL1DGD(GbH_4Py)lm=uuKWm8zG<ZBZWl5`!v83R#>k5O{!84i_Ay3wHFG=NN?
zx=)vNGr92N8wqO<*?OV|8N`ptMi`KD@@4SChU^rf<c%uO0?0(;q&W@hjm~)nT6kat
zcM7JE84;ArK`ZPd5fp-l(xy`MDTp~Q?Urh#J?C|W<;&{o`@YY5E#qSiY_VlfW_d%y
z+Og6@vsu<3d)L=3YrA9Y+J=VmvIZXPz1F4c)!f|NOXt$+beXqIYM6A3W9`_6vhoJ*
zq280@atdIyxfOPl!@0R}Q+khDUU5*%Y4j$3q&FK+8CyO?O4r;{wp{v){E`N#QRmWW
zwHfK@8CtD2S(jO$(G*;umyKPEKEV_NE^*4IFvsPQ_Mx1IUPmBL2agMiyP#Pa1J(~}
za0?W8Do=5akP8WF05jF^Im_71e_;z3&2B%;=A8KbA6_0jLHb&{W7pH)bNr{j&+BXA
zu2s9sM~v$4aBREy!XfUnb$@wv|Cryu@YJO<i;j(Q$M-9gwgrc9#e-SnZ@*)sr}o`6
zY1q19CGmit6h~~lrK`WnzV%Tw`UHgnJq^8)W?<@&aC-`1wvBStg&GB-upm!R5C?^+
zC?N^_3&-4CW270P0ZXCS4FS?dYikwU$D{L-T=!(u9`m~wsz`{RAmEggz=3>pX;9%s
z71kh+VDS{59tlUCd@6#4pa+BZfimy?A>Z%XcVTz^o);Hx`f}(W7D~6j@+;~6x7V$E
zoB4iqo-LL_+#}0iDF5csE=&2NNOp1jy4(GY+uhkQ+Uy?|t-4|Ng}n=3+*7}L{&n}X
ztb1E}AJhYnc!#T&nj;b{_Fd+6>H9CGWz7shBqizS+ivhFt@wt7)zXPa5cDv=8KD?v
zAUZQ~U*ymPer($#j|;ck_C>y86Qr1qd)Rb<>TbNH<D+H#xJX>%<c_=82yT7HM;w|$
zp0kx<=mg20dmTE8oRJ*T9i$hetbueF-4^jhqK=SQ<6IJg3_I6>?lmlQg=RALW16?A
z>@=F7uPMaEvi%gq(q2&P;&AWfd+;noWBots-UB?2>gpTcduL{QlXkVMu2oz0w%T14
z+p?PFZp*z}bycit6*r0n#x`K8u^pO?3B83-LJh<~0)&JTLJK6s7*a?=38`Rf{Qb_%
z$d(Psn|$x{J^$x#YiI7<xoz$}_uO;OJw<uuW6owL{&1M8-N(mZ%VM0OPyHmT!O487
z`Ki7Ff6RPm)Kr7BAt8FUD?7lP2CH-`9hKue>OB27?qt;@uqGejpF5p{d=MAqr#Fzo
z?`}uB*XQ%5JEEZL?tI;0b69aK116lB$mtxvY7i#=08co^1YX{Nz5*jdCAX%rRGdvp
z$_5ZJ9SV*l=%tNup#*+LI{2$tXbJOxvjwhIS(SbYm>+mlx+V*J3=vB-(VAW(+9w||
z8chc0iQ6*^olz;?6kk*`c#p~sP(EUhZuV8?7ba#!yS$0{1+ntAo=aDf(9X(BJzcQ{
z`H5avbXH<vex<J`rnQPbx~es%Ckjp*Q=*)Onc`}nlfP&58;?k$IeM(JCo`kUm*H$C
zl9&pID8D-)?4OsF6RMb<wzL=0N4-naW><uAvgY~23GRxS7?qh7&J15wMrKdt7;FYm
zx16T`4DczDiWs7lF>!P-Crlb$6gpEfKs<k8`S^G_<B#r;7d||GA>aKCXEZ|9-~wio
z|G~t^U@y+by1(J@gz)|^FfLh;NvOoRL<>d-!fV7;1n-cHT)?{~f>;W$p;hfptB&!)
zW!m0_jAsBV>Tp`&1wT^D=FIXdEUFCWsVHJQDO7;IuRdgO8ggQ-)|5oEciZdd>^c_i
zZS>?<d*^o3aEP9T1K0idisOH{>+=`)SFx(+{>avNN3Q#-#hVig#l`5EGo!7+>Cr7r
zx67O3b;aAFdwZj8@$psB?2#!=F$G1jiGsNzdFHHheztAz*2D$g>U_`K{cr3aSa8LQ
zpWSucN1n$%lArrs+>=}Hzbe%hH9fwI@viu)3|ssa^>XYBX}0L9_*<WS?%VOxqoS<|
zpeZuozvh>~A0}Nt$Vj3PmAMLZh(kbpaUo<Rs|48JR>X5thz%5kMGrcDrx!qhctbY6
z(sNm%sAzoQoDjym1aGoY`sMi#Z{Pm#`5zD8kh=HdzQ@jKh3R5bV!@IPi}MqV-o)Ol
z?BN5^1>yDUW+ysEuIS9kS+nbfZChTvV6{IvFPtC6^{)6}Mq#4cu`)BWzAe}6uRnjq
zyz|!0E>3fqxoy?<?W<OA-~I!~{hQ`gFUYN1zI1V^-Bnamnvq^KCCi>xl#t9>$Kv>c
ze1D)I&1NWDJ#@+X1y}88sR%CK&|O+MJ1@y>j`oLFgq<$NsupC%`oqOjlHw}D)nyIg
z**Gj9_*Lm9RexP~_UQrff-tKUDQ3)aMdwRVN~dkWk!W~!r@6y$WoJH(ou%5%nu!rK
znJJ`&*-3f5>giV1Kc7U)sq!{BZ-O@cDQ$S2uZlSf!3knc5BWI3_KCPoM4}P;IpdiZ
zovG8#4zcX7_U`>keg{|fDYZwL`zohO2})--{P=hFeswC>0+pZj_0K>XPt&jD(eP_M
z2|S>x^P}g)>d7UrBmb_izScjd$4rw)`d7VEruN1u<os`Yqn|oM9isoD3-H;KaG(V;
zM-aQuB)LC~1vZT?1_B-^KNb5iQocBK4|u?JrOBwRuv!?V&Gf%Y7hJBSFUOK_zLc(C
zxBSbc%Y}?MDClpPt9a~Wy0{E^2MnSEN8?K7$HwFr5<M|7o<vq5%sla>V2DjsWa2fC
zo2fUS1e1YS4TPa4!Z&^Jfewg4(^-ze{=Ep4(rnVR13VEPpHOxn3x6cW0XDr*2#QD%
zv!<D$&Wk|!jIaxby;xsyeh)%`LFk&~Hj$myNLmUNk?lMp4+vZdKPzo@3>#+^9@iDl
zG7dXPu9QXM)47l51nHU?#}4CL@dw=s_1^4*Oh*phrN>Kgna9sxcTvQ3+3Gt~dG$M1
zU*?Kjw9Yc401;##{f>ee0`=hdhQg^+3;6*APaNeCsXiQ^F6O|Lc3fID!ssNqS?Q|N
z;TXi{i0Skqho_0}%I)m&l>?M$V5K~h-I!la;c~!#DsaiKK_>{XGY=10=>i>o!Q}={
zoXC`0sz97`f{OH0A%YTxkK{TXqWO%|Goe%wa-|TJApE*ot`_8S1I%SsvoeR-ES5|0
z^5csPu}7U|ldwQW=mQ*9A@pOqAtjqxO<^S^o4LpkcT|0UDn#X&h#iHa^M4+VJ*l(W
z?MGwf$FRIPS^2~r4@YB}`i{+_ck+u9cdM1=fT-)iI<p_(MEaUhm<KvYheUbd@j!?Y
zNLG+x{wvy+FzBIJ*%W5)+rNL`4)&V-3Jb`^C)crR`N%rmN&af}z}?UM{h7N5swV>M
z!+raO%l7X((ZXJ10sMb${GjgSI*2O#02$aI5a<g(KDVUg+#j<FAiN4Stj^7B*Z_c)
zHmzN{%(5(a>vIvOfCMLT<4f<uKObu!|Bd{1FB_3B>t#7SVdK5`vi^JT9sjd@<M>DX
z1^Jy`Hp)hO!8Lec{3Cqh#JZvKk#eA4q&vkq(l|;wr(Ut<=OXSGota=O$`oWRYHx7J
z(KT;g*EoLo6X$)PS|q%{cKoQz2MDx@KIJ~%tiAaurJE-x$>+%_69x>AxTC)si}%O7
zqb1y))S}S=l1?}|Q$H>}j+t(TyrLIAzu*rBQfOta90(K<dI|>^Y%gGpN+|5@5@Ju>
z2%{ho_6px8KQjLL^K#&MV?Zj77;unrqY$e+8ilG8Ccep*7sG-lO!_tBH}ZDx_)ht!
zF?qJ}OND>n$*aJH%5OW0IYFl`=p}3f(wU+|o&~b2EI?NGa2Sl;1GrNl-_n$wS_b+G
z{YBiiXf}5EurQ-*&+adq*~)+JyFkuXY#WTVt&+zd+xAMOYo4p}m2Hp7<Ez>}X9wAD
z*}>2Gk)z{ptj*x8X>N043uEUUJ@Vvj9orAS-@THtmEG?j+}?59ljKkyD-Xem>C|{m
z?6X|p{^w~r-_VmF&t|kQJ@o_j%Y#dK0}+^5dp$%Pu(DJMf0I^XLV8>{0na#J$oH^i
zB$hkgEM!@YK6%&cugkl9Myu5*zGK9e?QwYn-}5V6jxDb`o?W$kd6oE1)pEXZY)p4@
z`*xYEAL!KZiCZbhN!>m7U``s3XQK>p{ec4q+^4gVB}rP3v1tVCr_icIqS^Fck0W(R
z>p-lM&P^$XvqFhy`K*WsCqN$qznC!e#D%f0@;$GmWvnu1WmQF1hVo5fe&fjSHFK|n
z`;buL{GZB;=WSdvrLu5t7N*fNEcEfEi<2e0&Bp4w<llMrbltoE3I5s-7r!*(ipq8-
zr{qO0TE8^Pxb)JyFC6vN>V>q7m`cq2^QT^T@Y-KK&jJ_E8hqf+-`xG-=A}!$aLSm(
zW8tO)AENO-@f~DMgX~Up;_C{TLG<CMRyj+ybKqA{`K2UASyl?xCxSRthPWj}Z$RT~
zGg3TjF9OP8vdo(Q?7fQAZY_w1!tC$m<M9R7g!pIsctU)l$?S<U+4G&oa8zzo*yzl+
zo8mlXQ(}Aq?|U|0epF#_@;w7jA?Gpq_)`M|PeI8UZULVHkKjf5qgS?Vdxa&ka+aus
zUi_y0&$3{GzN$)}5G>FaS`WRyYGzDav02P<@7c0tk2^;+7stiST=o7TYoY!Yg|)iz
zteU9K-fgeQADva9T>K3?DWYNOfxn4YM14F9{fkv+VjtzA$!W+^IbgV#0qpgVQBjQj
zQU5zwCS+TQ1>lCLr?RU6PXPf?J<_@LQocAXM=#`82<car?Ym^n%UAE}xMa(%%((x1
zsVgfb-)Hgl$?W$T)~LLf*>KLjuC9IEC*Iw#de7dc_8s3lvS;ec{O=7#<G;u)XF^>*
zyU)0B`#U#Y64`b2D{C(uN?`dbZcdhJS0=sbHAKt5i7BcJ{NBy(>Y`%4dV1QPk-cB-
z`~JQ?EBmf~8DB+v#tC|#By?9}UYt76RtaeaqX3X(QxCh9BW{=rQ0!We3<>QBNr+bw
zGT}Zr!%F79DyU`B`gV%G6$UjI#fQnVQu4Gszc0zFM8zbOrX+>(R|Lzml1fcZi?P=%
z8n%6S!F!*|CqB8SqvM`Wn5f*@)n^mMjVMelmK_T;Rwl<p!<eOy;_B0<WTZQ7aTzJO
zQxe?Mt@_1=c=M5mSRIO+T&(=)Sz8VCN7hL}T7_{pK~`g-t{Htq>y*OH0f`2Q>_W(x
z182D4#S{OPeRTp!_b77?n?ynJQO@YNfow2h>XGCRq&U+3S#TW-$e{;6^N?szh<#^l
z?b@+5?6RqKcKK?^ga`)9Hg<DeoWm9fCB+H+IcZrsI23M!!Icta5et9rT|L*w?lgd5
zW03pu*2KnU=q*L*RoP@~?OfrS6v1S1>xbl@2#{Z~h(BIaQ@v(Qb<KEsARSV#k5~;{
zFxvLWhvc#&x$*k=INQ{OD87mvzV-ds3|RT)g4G@C;4F`wmzF*L54eM3w%a!zEiYT=
zYe?`|eJ-boHOcpt7$q)Qa?JO_LMN;onuuX<z^wVuq!SZ?X)U0hOJMsf0w0-J;RGla
zs5(H*H6bpMO0*zcGSQ(S<O7__6YbXU2$&NL>0~}L2nm_eWFh50i1D(2-ou2Ik>+r4
zP4D=#%w>Pa?vj61W{#Hs7UQz<d{Z==XLk!zj=vy(VRyUj%=#j`mN^oq<(2v?;$azu
z+2hOoc{x={QT%blSDlWJn}~-thLXNqO+OLOcrr8HzG8!X?ht!v+)AZaEplW;@xR&K
z&&%ik5_9OUcDLMa$>?d>oL8{9drd-uF=@@(9aD<7bgqhz|1aZ}c?%Al^aV7m)?$YO
znIZ|y9TJxFV*w_{4J-k|OBgJBV2?q_pQKR1v#0lvy94afhMB~|=)bZ$xPY^WNra4`
zd%)P!dq9mN3Jf46296b!2yD1fjuM4!xPf=agR(HfUS@`OeQcUdZ<dTKGm{x5v)+~#
zyWX4OFqw>uXT-1Yxv{UPSU5c?MK6^2{UzlI(?<lMIxWuaTX9po-<6q3KL6&<jd?5#
zKWl@7^mO3BE%dOurDZie_Kl46U1wRp#UvIa80{8|6yr(~$6(b7E+Hk0#coU}5KUXw
zTRhXO#^|V`Wo30%L(jYN7w`6L%UYAcShUePO}GQ<b71Xek;}rlZ_IUlkNnIHv8h88
zaX?;q;6;j9^9QE;!y1a}!;<$?`S;igf}=+l;~4feDy^FWejBY4)3FwlKdmOL#{;nW
zw_UeecO^Xf5kaMD)dVxNJJ;@K$DjRtDjjWy(ccp%nrEMMPCWll_kWe2an*A1x0Ty^
z<;v9urryTScv4e*=~JvM^Fie%tG6?sBsFqey=hP1m{QBfn$@zED_^hNWc8+AwYW1L
zPS_QD&`L7~*;QYEIIhMC>P>t4ri5w{D*da|pTIgmV@wv|=fNseH+=qH22wy9jj(oy
zGjj&*C}o7y)e<a1%t4HpBC4rPJsoNL5Q{_gsxUDY(6FL7nzq_&Fg+AWKqCLacO)aY
z5YZ&rK#~ESh*0<azg2esOPFpocC7a)5By_qFe5!B$?y08Q_3H|;efX^BP}~CLv^Wu
zG!woX#+CG}0XJy-T!h;zEaMe+sY1`WQVsPt!qRP2Fy>K~X^M%nSo580U-lTB&S1<R
zZ&#QO*Q>0Df|I({Ot)Ko&`oJuS(KCRud2;~jd5^gHdM4ME6yqmwv?$}RH#jwV~F>Z
zEY%c4CLZYy1CLh{Y3Ff0IEsqUfJ=5Nq~51D;1RWJa=4IZFpgt<NY0{D_g#gaSGe0`
z`W^TTRBmPvQYq+G;5v}^BsL3Pje`H^Kn7TkdX$t;feQ1m9e^AdI#}_N>4Hj37@l~L
zRbg{0f|<yK#NcM(j2P~G)#1Qv_#a0`jFl2rndUTPK&pg_)fc4-3m&W=XmCk{lttr|
zxTvbk(A*4jT5)DoR2(0k2u;!6$jhVVrB}@=Ef#FT+Jo6q2^rBbG0_<bQP~IA>YdO-
z{><*kjyi0ydw#YrYX8=hg#klKL(w@`WltBS;_Rh!3q!-58S%mcr&7eH7bL~0X+&d2
z+2mBw|E4NtPh{y-7q8~9i9I(|o@z|VN()`6-MJFWqSND}QleP<l8m`gCR5bhj3w=y
zCu}jKvubaNZ8Njnz@pmY3{?x_r_5Lyg%+Zn<^ppddhWUM5lSKd?FRX?c29bWnt~N)
zoJx`LFUkgPB^p-U*STO(d;v+QDd*RiQ$C`&iGvUNjl)l|_N2^2Z0%s`h~_CBf>0uw
zr(p6IGH_?e#SZD+VHtG5>pV!cfas$M0=uWUUG&&RUF35FK}>%5Bgx3hPRl6u9@s!I
zeA5RGe^N?%M$o(FhVf^QjXz~gv)*a7>Z@`2IDTgB1#4clrST&gxbM}#pM6N~?dU<B
zCuJ?c!mQ$DEfpISw&qPawN?J~oT8O&Q!snRFQZ~nYMNEA$JO?6+|28`*Sreu(`kON
z8#Z3Ls5b!M^hdymzEDU4IvVnW6o5PjsXBqeN9U9Vu;?RYdK#T|V11++r5QcJ5xFY*
zK?39Gud}VA39U8|grExDmdap5eWEupiv4zhEylKHHy292h|OQWf6mR<#4*uhpIeX{
zla%Z+#Lh@buZZhhv3T#Q7`;mpESvg@7cxOIJ$8n2-grV?;KhIi7OC5+SKjNlr^*%f
zb0p(@?m1TTu|DeR?>Fr|q~~c%f~`fdMZP#pPJ<_@esS8$-VJ*jJ*zxc{nTh?;*Jw%
zsOf=9h0L4uF6`0AflkF)83}?I^ymjt^YQ>12ni5h7GxE@QF@Vhzvvt~we*5YRXPn+
z7Jw~R73m@{3YYreyV2mKWI!4G_fVShW@UBvMrF(>5)-X%Gj~=yUHl7&QSWK2PPyYT
zhu)lI^se9WVDs*qvQ~usx3bj2LLUxz8$)>>$pCo<_Tg7E&UvaIrVuyHlZ41E%RMQs
zZQ`r3NhuC*rTmXe@|P?qf;@rMJfDT;uNl9?U}J*Qw9e?t*pss6fos>_adBv@yDpJ=
zvjVgHsoB%lZEDUnae@8qSnsiCFL#;bYg^@SX9yKlHp349Lk#Ea+aX^!4L;&_qjyLY
z7Jsx0M#&l=k<AuBMQH);0Ew+F!7>g-1iX@0Irvuhh6ZmD2d7*;GfV*%25AW<8#Yo7
zM%wQRo;CpUl3)?^mz29pdv>7*DN(o#1`ekC65gLyvNzi@OJC#zGxD%0t0L@YqFkL*
z0n5`_?1}Mz<OKBkicB;6K)%^utk;Lr^>%jT7mz^kI^0jB+v5^qo_JTv_>>7O*5XT<
zlW+ysGheiDn?rOITgx`^oV}sy_tSDqGyfQ8PfML23ys*XVq!AW=eqxVu_Goeb3xQI
z5o2;Jlt{~SvdV>~=zZB0cNb2T+kAOqxvxAM@`k>tIaxtgEmh~F7ffAmo}QUez?(B!
zq3t~HqE!D&=Vfv~{2oXwWkH<Rl6Vc1ctJ0_L;m~hIqywL3|AH1JuP>iH<Oj8F7kSu
zKKU?vA-&NR9h)YvWsA}mM7iMPwB?5m$?ZIvGnFa+>U1ZQArIGz(OQT7z#vXtXu*Lh
zNw7+fr4V<T_9@tH`E*3vV+@qND7NpMVFmNVW8<$ZX;}5hMHhy+2+JI)JGtDM-V7IX
z|A;rBBQ$}m3SI>U$;|RXmO@;9TSW{6lni!#G=Gd)`=dsz(dKj4wnI7j)oa}DH7CD?
zD2vN{Zna!*sLT=m`Kie^r2_o>th`uuuEl<dxZ!Ai8uuB#D+Ehe)B_L8AJ@%VFZU<9
zmv2kVPJHlum_9NY9_AI_U7MU`ay#8tkI^d}A9~*AGFLl)<B~u5eagI)D}G)5yv=Pw
z#AYFAi1kWxSe_+d&ub87CuZl3*NNtQ{g2qeP)NwP%8#2n)(k+cDrT_yuC*JU;#0B{
zw=H)kCc4jmFiJEKnNMrWw?tX$2G6hv@|<*zq4tu71iX3!`hb=hAMKpr_#n#-<{LCf
z;pQpJlNIBKo}UX^Zy*!U<;X=LAX4gl=$pk~v+uXR-+Rr)UtH6?+-Inrf5(R(u*FAx
zwG}x(z3C=<QtFcJvkDwSS=sEJEBnTm%zt;5i|0Pqlb#k|I51^>!kk#&M)sYzZ@T&B
zo8G?WAA3`(suTZy=iQ%ta`&qFwv5)fN90%9ndH0t&e!i>Gb8QrxA|Mgrks=?pSxvy
zrfdDxap5VMOXKsCoy#h__w`Mi5ABFaeEfJ_4!FJbpn8EBvj7qk#3|-BTu<Pep^_aI
z5RJ{GX9|P$K!P`TXh34+FdZLBK&FynXYqi=_{5xi&-K5*;l|-mf#{uDbN#EYvf!%^
za&t;xMMX@E`8~hbSh<#6P@1!3Mq})pok`;5^})*01(1TAJ$Z3ppDmaXX9`r0-g3+6
z@LjIF{Fq<JFTL?58;>oTzUAuS7LTxpIY;^$AI-Wkr(@P~uWLq4c4kz2O>nb6I46|*
z`PbHj34Yi@MQ%>{CK_tmI^&x`+|e-8vPinV#M+~1)t47m2#TZC15=G|ifk2bV2@2^
zhlwXWbsb5DtfH(;w>8@$8l|X=UCUmW7X?`qYqmKi9d8WPyF8b0qr+(}wWn9-&&<i2
zl~<i^FSR-CMt%unXLG|Y@<@)A)h@lmV@>k7;+(w6wJ?3birdl`x|+Bn)*X{%^*Hpd
zOOqr|p-0MfnUd3!@n>{rOCEOoY(5y%Ilvd(h&}Eaj6aYvfh!HAGWCg808%E#0YNbq
zM|8r3J`?o^NtO}nQ9&I&M%qf07bG!7!&X}3t~V<ZOm=&8ZFEw2`rPT(%pD68gNg6K
zb%EEt)RP(Ks|r`G4hL6F3s<GYXT~mxigOzc?;**8of+2Y^QH%r9JTIfyD6di9chg1
zIj3@K(N%_oj6`3)D=X2FxcK5!t3{vGkZLK<v`JEWPIf{<c22q^IWj9PsSQbbi`94O
zA|%Xm=cOcM#v86E-d1_ZHq3$3=k^P+mnZ1g@aX><2F|u%An8;%C<Gi>vaJdn>|Fl*
z{Ah4cKuftncqnjiDL2}kwo+SqjS2@f>9(NF;V`mGneL3q03fihtRbms4G5+O7i0hk
z{PX?uxHC=#0*jr1pooCLtO9|_l_z)v%UN@Q5pP(rbxl~$E~(@XfII^t;8hIVZZMZ5
zW&b4TiI#-$Rv}~xf}tRWIa-G)AbHEGL=e>`-HgH7kjEpKOTCVUnnq($mwb=>>$N{G
zTHtidd~C_ic~5}mHd*xgXC1z=V|!)Y#fx_}=31Hl(vOd@z8_1jicmv&(B8rQr88TC
zwdZcG)$0n^Hq6c~(no(%m^9s=uTOc=esAb}XR^VNFxQu9OY!5x-6G$SWQbkGSz=*Y
z6!?4kGS&|-LncRB!R*2Z#QDwVTvfAp^PE)mOhvJu+5nn)J?uY|Y#W&T!0(fOX<20k
zSS>mIBd$Jh`=lSxBi!Ge@e6XuR??gyl#mhaQslCsi$I62%0<eR{&dup_0|LV(+_q|
zTe#5fpXawPm{Z$%a7xL8Z)LfTej-Vqen1Hdryc67n+@ci<yTW2npXJ0o0&04k$h18
z%c0Hh99+Bh;5(ZSG26k};{)RZ{A&Kg@u}ler5}##$bSJJD@d^~m|fp_Xj;*OZ)bWw
z`dqL7^q4FA?FaK}4t33#wa}gm$tL^4*>znvQ3_Q4C%yiY4_w)AJy<mDrmm`m3+yR{
zhnWM0mfzj7`CYQu?BL1cT)u#9=Q7*=<xkj+LK%a1uoFKP*1%+WH9G=Z<ww+giB8eI
za${`?qkrLMOg${bh9ZVYN^pNOOPO77AhlQESyt+TvK=(Dak`jQ2G>nX_(SpIo&5*5
zuJg_<xa@@&gkS$dPWGmkh2|~kt-7Vc?Uq0M=t*JuiQi-z`R#3uagp;R|Exp(C&ruh
zyQEn!UM2{az4-1|UrbvzFmF*wDt|8i#$YHM<i8q!lznmhuCi#+zU;E3y0nLY22@+`
z%6XvyJik;})~x_G?ALA4U8VaS-fJ8mY?C1Of#VTEkF*c?hKI>7z=a^?c*2NfST3Ty
zz>Dfnxxv(EbQW#MfJD_4gfzpdeL5n#uusA2qbxPb8wDd{K1!rtFG6~qwzPC?tlX$q
zDS#zAi;`p0M_W5(5y!HGy^2DuQyXY0=OFh8(<=?~2ust-)6&W>%$b^<la!ouZ}!xj
zoaCgO@8sY<b>haXOXYX&Kj+P>7RPj5xFva7d9tqzzkXkGd18re@WLx*MI|?dk0md8
zaPL5yO>U@et)AXKosZ7_R_pw$%8J)?gjQuh_*I;{jCt#(R?45Q5vSy71(czXqVm<f
zo7RPc8)x{kR?R(992;Fw(_1^m<MML1V2+P<uK4oe^n@uZmQ+Yq8^FcyJeVDqUQo7L
z{C#CnQDxCrONWy4@{)&=^Yd}}HzEGg;TJmZIl5)#^84TZw){q<BB1<BiCfQH56#uP
z{<3`2_I(F_)lkeI3@lt2C|$TvKH7YHZ^M+E`noo_^yR^Lcl~oi1M(khs}IJrp}cA}
ze_e5XBXgxR8w!sMm3LKKa^v|+gE-iMqCuhGJ#dj&T_G8yD2I#bV_`(&($AAi8Yl1J
z;~+aiQUbv&xJICzxx!V1yf$FKi4nzw38lkj06YoAlujlxg#CK?z%Q)lHMU)LS=+j)
zUA_AcA3b{bwx6(7eSQ7-$D+?7A^7Ihl#AxAy7Kuer$pLGzT)-Gl&+s`I-5E`a}<3s
zI!n*O1Js!SV?c5SSU)70a^<*8uSh?GP5{^uka_gFlJDF)TmEp_t*;!OK5y)iv3b*<
zzOJp!{#<bWO3S70ct7-2A1}5CrxeTIkygeH)~^{GTT?$6SD)|TInkV)z0leBBFMN>
zr~>{W*Xs7^bnq95Nhd+b*g%>|I9Ds=XpaNl7$9mbK)DJnAfIGt22BE}FF><Coy^i9
z5vep_F$;qY2$F`V8rVlidFo;f3Rd~cvSW*z#YjR+Iie!bWz1JxlHv0p;JLQZ=WF!o
zP3DUDKzgC)yd}pQD_G?Np32O5mbJBqZjgM|1bd8;<qQulD5@BUniF#SI9!<4rx-43
zUU#sz^Nv*&KTAx=+m-)J9QLlxMt4$=1)esQVwn+QSPK&R8&aFfa?h)sdeJ!p#qtO8
z^~5V;x7llxrsPho&KPZ5ytwU-^y-pudT9bk@3wddhrxA+-Zm$#IydOOY`xe#<H7n@
zEHKMfduaS9B)jz%qx{Q(B6oR(J`i2zHRo0@jODtA=hgisb!loT54`IYN>f}bV>9+R
zYUiLRxWa%uP0bQ>ah)|(A*NZf>WdiUZ1~}Lzr8*&=uNbgms_JU;zKDlP7IeqOX(CG
znyKuaPHzJs{0+hYRI(Qx=wTTc8{!p!ys!&Ej^K0q!5knV1}Rw#R0#&CH+%(^2aB;P
zrlDcmZT(VHabsm;V6DFYwrvd!F;zy(_)nQ(u|<GTcf93ygVOpEyf0ZVJ#o+yk2t}y
z7%tEn0}JNQnZKxbu`qO^kd&x}*BvH9SyW|c-PT5NR%&KuT7%TMbzP`3s?1;-zw-yv
zjB%DA3cYKQKyOoL3A;v6R?re>oc06b)U*PRr^q**)(hghsoz=xf9KeN1C;PJI6N2f
z$gI9<$wKo8m@G_z9t|(c0LQ}>g^$fFq*Rm|XxyL)&`jd7VF!W!LMG}lSZ$J?%`yt+
zygSYpvvL>C$z&{Z&VqcuwB?R0G&a+iU|Ii$G(UevEMu`V@?jjBms#SUUp-@u{Fcy|
z+d$C`xsAfxKdubf4Wu@xnE9X%&N+uY4;NbV=Tez-=ND$=9Xqx%hYytEi_<P>5q!RY
z*BeMp5!YRitn`g&nth8{m6Dd0QYAj0ZxqJ;!r>+5bAHQflhf0aYx(Url?1GY6U}5F
z<h~QlN~a$#_YbiaDLK6)Hnt=^Ipf|(78AJO+&Bh2xjzE0OvoL@>ylvy$dA2fK(`58
z4KJ8nnOPF^3Rx@@8g_Vg6GI*_Bng?U4A#>qx-1Jv@{q$QbMPz!SyL+_iFRlz_(NHK
z0V0O}tchz`Cb(6e7?+~x9pfb%8)c-+N~ShwBa6&z&P!?UfKd=_feP)X9~S=&MC3F(
z*fN(l@lMz-Sg_16J{@jx<&VV<$8Y)g2W-?OuM)0zALCcypa7@C54l}4jp82+hE{_p
zzbA6zM`9T_Oj{2RAI9}Nc{4Y$2PA<_)4TPX&X=UEl76Wmy`q=?CUS>c{DGdm^`|%G
z(s%#%Hrw?koB7l6V{b8-VY{XAvxUrI5`qnSe&|K^v-^%e^oLtN=Nq48kKc0Q$&at-
zZW5)<Yu_LHD79o%5}uT#B{xgLAK=IB3z0<`#LVS-)?|<h+KudWv#^_82j_q#24UJV
zu0LmvD3<r@h4Terx2PZ5ElB)2U|j{q6&fxHm>*hobU>eO7s-$XtWXd)6mnm%lcTUi
zK&*foQA{K#vaRajK9rcS7^w0jBmjFlBtBqCDQ+x<ThG#>!lKgTGJR=daf)T>G+sSz
z>3!F|bshfrxlql3dksJ;yki`JCk>MLXg+mixfSh^nFV61GuCX5b*731Gb8O4vs+sD
z4ZYW1+uL*PwerFv_UNOOT|#!KNGU?!W7<_aPf)(m1c|p*IQ7F$KslqsvIdML5`{$z
z0qCeH@IM!*f^8%E$}_%2`zkHz<S&moTc%zV)lVxfoL%H|8Wz@$AE{jkt${@$$q<Ms
zNXqf&Bo)L2_(LvRGtHuj>lwXZbDe}9@bPMTFJd+e=i*a)@X7LHY13w}nwL}8*;!Y-
zX2blTm}2po@Xu>WVIroz;-*=>PVN;djL-t96631*$$`%G82II>ph;?=TR4h2OMLSQ
z2;d3;a80}nlz<;SHDQ`N9Q8jut4l5tVPQt5)YGAfWfy`Xy6Bw73Vm@xer|4VenPRn
zqA@3W4m762OLl&L=g#koX_H0iV;tizI$~lRyxb8pIi6uPkq;}DBs2pY@?nAnJs^TD
z8|!JS5EC74lgaH!6f4?##+LEvRQOK$x77r0bYambGsZy|W;q?ZfFQGZ5=^R43MD)+
z6i<$Qt^anS2UQ>elc`i$>dK&I$F<#sLe2x&ChT#9G~oMJ&o1ngsLNFmOi*H=P&BPU
zE%f!18&NkWEbGE^zTUBW{);XJ1bwMMA8S@RNVDicF2Bdt*M5m!(Yp7|v1MQDVfLib
zz2nWNI`Y#~z5BOQaVG)<*(#Jz?qZkt@@afP>W-7vV$y2Q#<~IOO|h;-EJ;N!4Tpo^
zU@8)hpk4hC!wy5Z)+7DJvtx7J<F7nkw|R$W1DgXQpK~tJq>cFpS9~Tv{OBpIM#U2D
zk8XI`IcLd|InI}FIB@^{{6VN6P;wTAVBz=ve3qTy(=>t;n$`JeDcSLbsnk>E0m)Rm
zW;_r~w&+rLE)V!M3z+;R)%Nb?WP5k7{P1TeUF_R`TC8z@?dLmK?~c#!(i*JSku2pS
z--8<Fl~??k%~i4=pZW4vH>$Fh@<%s*^)j0|Hg>bt>QjBE@Ipwk1==?343tL<JVjs~
zrc0GBgfbDGp7JccFN;pkJf-3TMa$OJ=D&FPiMua<F~4@*vZ95HE`92?r!HM2-=xW6
z=dC>N;5Apv7hZkM!Shz~&+WynJAc08`uE<ue#g&uwiesZyQT}Nk*Vt%?$SQys}HX1
z_zXOm?b{9VpFZojlG>`A{YtbCi2_ziC%N89v&j=UV=9qCt+GB%BC8;6h8AOLkTMEk
zmx-ycsJ!u=#_~lu7w>+0_wJ|J&2VsFBTHw1WwLR$zLvoJ2*eqifiaekEnhy?+g>qu
zZUvMf6i_~XSZe<2FrZa>nW!ptu~C5*5DIxY4HuAXNgnh}=7P5nA$+QwLt^``9#_+H
z`mfOG+2|DlO&aD@zvygqs~}VbIiMpZi`#jGF-KZ`QT1chMfGWp>G|yL{OMzgD2xcf
z&2eS^aeS+cMN(CcBrQxb--Af)ayk_`(~P!%i4=x2Cw_f+-HJeUbzsH1aM}F%>=s2%
zM?Q*#8b&>34M=@f(d_9+*56D?Cr|Z%*N>-GX<n)T0{>SyHS;W-Dk(&ZigO8Ro{e)|
z{{oOe9gI!SmzU>HpVXWG_x(8bB|uKEg4`tZS&zOeJJplyEu|O751;DAFHVI{_uT2Y
z6Ay~b#|bRYM44Q%QFaXTC?4xNd0<LU<5A9NY@EqZIfR@++`#N%sfSb_v6rF!zGmD}
zRf#0d5x5cJ?_U4l{nuW5e@=xbEgYJiQ<z%Pea}UA)YY+Fqu8#@zI^S>&1-8@TY3-3
zAO33h?)O>J{;hv};kxBFUs|-Ta#}6_1WHvE^7Ha@@(<-7N99dz$V+mztm%#Hmv<&K
z_OGe&&w<si5%~DN>u#3!(#WjKp8E2Vr{y2@G|Zkmfe#|!58R;hVaITt?gwBL01ilO
z3ZFxoXLNL_9Mm{*e31+Tuo^8#Vy7NKITuBG1;>E_=_lK;$bl%VrP|4lA`n66UO>>;
zpAzE?H7L6DBr}1{9C5%&p}?Iip-(U^m1ib7u@_Ve$B7W}G$G9eeN%KUjA3F2^CMpj
zvrcdO;LWT-zsonhwPf=-f#p2T?lwu&)02+B5bsY<5-Z~UZ`Z}G%5qu^PJba{q69~t
zw^lIQDm{`Y`26svo|_baJZrQ*Ve_>mGaE|ck`i1wfvGuDvl5*~y<jxMfWJ2}+ni84
zYa0LgrLM{aOMTAd%7vy!bApxK++%TBj6PSx`K`@X9*Id69Opqk|6;Zbn#|n^u7v3w
zi(mLk{@v@#RtoXXIM2CB@O6YApS`QizsPO2>P@+UWrg#?xstWW=82!@sC2}|#8tq6
z1uss{tST(5%51I5b4wBzoR++2wv}z|>)jj-<rF(jR(F!Cv~*5&F^mkQ#&|4=-ngai
zhIxl~%b)(n*SKz43eF3bSbob2cD&ZJxlf3(dZXMXSL$6m<d5#noy>0_YgN!Z4Eqh(
z#6fa_%rF{Q1v5Y;0ydA&QhX3^yT+8|J8?KE#u@u7&SESEi`)VT={;J_d%r;+;Wzwy
z`F^YXkR>tBFoVH5i)5BB`N-3CTL!=3n-mH#v0$Eu)+w8El3a>)m8>vm`-(DXhJ*72
zfB;Ys@uq;74|>^vV{n17eegk})k9i06F*LvrJ-`HvSF-#DuPq%pM?4DF;&QKObL%2
zQT~zg`_%RrVb6)tnD(jjcNGXaiW=7y?3%yx$tQO{E`P}kk3X`5zd%pp6+76as&b8@
zU_*`m|Ge#d&-nju+s^jL|4-T;DkW>X|8HSt&z}Dqh|&C2D)4Sn=$j%~7X&3a0q<B#
z{`+<V#{UyYU$}AO!v7k^odn~CF@QR8n#fvx10)HT<0P;HCqA2W=j(RquFxIO9m3iO
z;TcUl5R7IR=BM+2vJ9de_Iq(wPR=wrX$*r`FDg>O9yeGA>hr{%c;twgFkKCw@86vM
zU*w<2r`PgL+@<Tx=J6|FCT+3VoIlG|KBr^Dfs;BSq&GZ0bNwre^YJQG71Uj=+-_H{
z<LV9e+31nM1{eYpk&_e3?@r1kYq^w6el?kTg~VDswFAwFH|MYUecQ|f8;*l#PgMQl
zIax_H`DU|xhmvpg*RDaO3RS-O>u=xvT6$`$KR7uhb^|n?gu0S&eo_F*ooTumu!(V=
zZl~^Y-G1Fc-EF%2bl=lGMHYOq$2OcI`G_3II`xEo_ry70SQ(#iz^~oa@jCrH5kGmy
zJ_W2ETHF<&An7^cLxTBu8f*fdiSj4%Pu%}i`De#ZJnPAUJ!rq_HRHOP=`LF}_A0y@
zcK)Ih7c197<+^uLSd9@EtJFHUXa_d*&MWN7@mMUd&Llst+&mekM4U0rm5xH)b?j@o
zU;no;YHjSuk-J8pCE9(H$I~C>^+r80de;&59co*2;iRil))_J5r?v-tY{P*CF1zo{
z#ubhP(#hu%%uP%xM=f*lzl~ArQudG}>!_1ttj*QX_1g%DP)J0dO3L||o7^TqmPPqb
z=F2lc$0-yW(U8RE2lYqdqG7P}v7et1?FU;>Igx^jJ4xB%bOYQ6I?|w14k+s==dU<;
z5{^Zs#Cqfto>+)aAK}UJU*9nzr65A9=B8&Jkzf4YxyNp9V(f=EL6S{iM$R0@eaE&M
z4V!+zgez}lMepqxKepqE9Xp<2xAd$tg0}G*%$2pH&u`p$#AdFmF&knf?ld;_aN(l&
zFTCoXSF@GN2i|U7y}I@7{uOsJ-RJVT%LS{cINAqZ@*);^>|s`Lr`gbZ-|x<QOn!Bt
zV2X(~6<JMIvGUif<c=$u^vpJsdE;yHdzn<{j+44=Z_d;k&B1K5IlOoAz!NQ2#}9X|
zy>qJBoD(z|^>f}mZ^yAq^oCu3R%L4-r#J=<4Ooig-dkn*oo4Vcpo!xc5B0c5-8YXx
z9<_P$zK>ykW1Gpy#<}k7{oBM*k(&4D5!!vz1!Jx7UlbpNg3bzDughUkIULxV_62H7
z&e$4jd|Sm4Jm@!a1&{r{fX0m<o?ry<X4S|!N9iZ=hU<typz;$1)Jq%!s#}pOQofyR
z?LzY&4o<KQASDGHL&C}$okgYqKr}BXaDsAn--zGZYc_xUvDv&AXchN(1kQNo!;`!1
z?SGX_%O<)e_bK%a`V?bBp6!Y6^B>#A)izODZ;2mMy?5QEHV=2Dxs#qx*uFl*>@IxD
zH>5q4SAJR4odE;XpDK=5V2K=Ie~qj!WP$M^`4y@88)$ge!Gkz5eC?a)b>h|P3>@nR
zOyQ$H3SmF`hq^b=Cw`dw@Icyv>?c9K4I4K%+<qw90;D7WB=08S3+0{1ovBQ7#cK~{
zJS>6W6p%q!19G?!yjT2)z|)GK&;jrWc$9ufXrw99RU~#s+9!Ivp!ekG66gjP#Z3p<
zWrf^OC6;;=IT?@oUh;VTS#}W!29oPYf&h@xSz8^+;>fmI>_Mlz+UPYHjRvpLa46lH
zZu48M>TN4U8H^q$+mm)p*k35lnP2Va9)nA77bL;(oZ$7P>9bePaOGO99DY~?A+KC-
z-mr9PZ(_0`qco*pxjk{J(-z2b720ezb3uuX;|we_InI+FNlRV*h?Bv*SWI4S4un}v
zz9?^bY)Xs`PKC2KNG#E26O$p??%<|$?upBF*=??Z=O0a3zA2%or)zrF-!YI6VZ<I%
zJh06NLv#M;Vn$R{c65}K@rKc8^w1}H7N^^6ep{L?-D=IUrf;HnqtWSEU7hDooZq_K
zot(jA^fBfbhsPZ&N4t~kZu87Cr_I7xL4i952S<woOLv+Lr6r~9bHWa>y1aKN#^Q>N
zho*lbG9`&ZV$+_G-Q(;lDolHHrqg1Lj;r)Uxuzv^y@^Q<39iR-GD983og+!Pdc7f#
zGkr>3ZE`q1HaYCi_gUf|WTxie_VRVhmI$0}{U#995sm{M1Psmu+(nVTFiG8&3NFY6
z0#d-lBW`Auh&UWFA}T#q3emX3@)?<l55ajY<NzQCfk)!|aee0luq#y%mD*`HbS62b
zhF8e{Sh1Q#(o3cl1#+X;t<slDd;eIFKYp2f@%FkBhJ$WiRKJ~V;ZN`Rquwb>>wGE8
z8^(W`=#XZQZ^VJCzzb$w0n2^QY_AV6<M<m3=8BfMtg761GUdh7;QGbd5oaqd<2%^i
zzf3E%#dcT|>c`iuJ$LIU2sGt9MDY(51x|P|XznE%2NWz97{`x-sjWl?W*k(jiGvfG
zDiDdSL_&N6#`n?<{w!D}jB=H_Aa-0RrKP7q%Q#T#ff)y|RTQm_5E7I@=;Q19D%Uf{
zC8OPB!tNcuieO*U0@L@RAnGN(5ofW--`}>4J-FefM7Q-&Pr<xAc9$eLqkS<sQ87kw
zjXUG6a@fq9COXoR3R6b=4ar3T-@}uS<oJh=h#sTUU=&!08wIE2Y1_)YMhApMZs2Bv
zMNbX}^cKnfDSHP##@_kWzS+2y!<5W)d!5%A=d?-!B1&(lx@l*UFWr%Ly_}t#F-?e`
zjI^<?NV?*a+&EYICswo=@b8vD>r^L!vqV<QJdi>lSbzYxi?9i!!v#fD(@+Ji>SV#-
zhrj^|6jX77FNHXf^jV~GO~?b8NYf39?)r3}PJo~<{Mq1@w@`q%2GVhCca;BtyKn|<
zXhe&f^^&dd{GQR2s6(}EvApiiIG-Rc&6Kv~rR66}htK`F{QgbX$ba3C?3jA{w|3`b
zr)HZ(;ryT6vaLaMl&78Z<-=EJW_r@$Of2-8JihypoJ%i0FDvWHEzf;A#~$DC>sO1@
zX06G{ByTx$pz^MdO3wuHD4f|7ND{bIkzEVtS4P+LTdKKbNzU%XkR#1^2o^jl4*c@i
zkC<RgZtuHig^>29{1%^*IPcMLXz>*_ytsO4p+`P+Gs}46yzb`8j?$VKy(qAx%uKT-
zrgr|+jE#S()aTUJ$Hh8LuDF)imQ1(UeDk^*i`DCIW9Kr{?)k6De;iJ=#KUOuYS`xs
zoY%c3KHl2kzvRjtxw$;X5g(h7U^S;qHTw2n{?aYOZHZ})IaB=$hUEr~U*<`x{vGMB
zIH@WI1-e49IE7__@IR<U68JDcb&-o1L}gY9W%_vdy9KFfaC3<4fgP(H$S|o8roACE
z%e{VHB~msfgmqb%I%UbCUBG}#(~@Q`uiPDpw!+e5N@YUE^t{YiH=KL2jlpOB1Q&W=
zeg1H##2jY7SlR_krL38)9&z)(EV}snuYLdGMe2<W*8C3UPk$o6C(DmCCYMO_u6XK$
z&;EYwmAR>vQ?2sb|1@$Qf8OgCH^+F}um0fT-Y0Kv<)7!@Q<0VAPVkx~L3EgHnVH!c
zsj)UT{*&!bw8WO~IKsTQ=B&usVtY;ACCk@aZ@x7F?j%!Qdzub`o>p)AYhG(JE_&ea
z@~to2%nJVc`nMuE-etEA2d<DW_$ymkFQMeM`=0vQtKZ+diYK@4eHBv!@+6>X6dX$S
z?24eHO)}jB(9OOQdfE5G_7CJv$wDR0Q^|5=>Hqebte64SYEojbq#NTV`3J?vEy+FL
zEa89kd}PpB?8F}|a{k-9_}%jC6GzBqs!*L>4#Mbv&Y~0vmY>t<^x^lPh7Ny)3d*x3
zs_eLta-xLK|A#w`4bv52eOrX}?JA-*0j;27Ag1Gi5TB44g=ctmEu!r-9mU|CVqzsq
zf(9D4&=aD5m?c%PVO#);3<ncrghh!-!2*e0w@Zpr9>D-sq!N=zI}Liha5PM|k0Bvc
zhE$6D5LJg|Cey|;!$_e|zT*k6&1MgHpD42hX4*RBKfmVWv8g%EL9iPJojIwo-1(aP
z=MLM<fUWEaZvcjVyieSb6mQCfvuMRJ<V&I{Ax(@=pn~Fq9<3ba_=a+r<E(NL;>ENC
zlPJHW__Pcs<(lHzEvY@WQZE{{;jq8doXPTUlwbHXIyc2-j2?T7WC7nAi#EDaa-%<G
z6*tOnWSUF;hc}>A-cnmns=lx&RbO@RAPk%5=Soykq1~<)B)@SZtN7-E<QHya`DYd+
z<>qHFDoCGNR7m4^nhuYq9Tg)YmlhQ)6kbmT-1T^(v4)5SiTP=d47`;gJ!5Fx``YNp
zd$)BP5c=8Z4a|Knn<?M2Wvkipi2TMQC*s%|CCmyQxr1NNn>PL8=7_<t;L2A=m5}LT
z-AQqpeCw$E((RARFTN0W5nD6D%5Hy*mA??@SxH2bwl^^A?63gtLCZ+u+?8%&>8`9Y
zuK~nM0Zg)GW#R`jNPe9CPd0sY>O7ug0)&TeDZT%ml7|+=d>$juV8s{8ud#PO@BEBy
z|H0y?`7~P4<Y(pge}3+{KWAwG$F!gS>6`W&C*()jdimRIQ))>^fOn&m3paOu*0Flg
z(~H(Cxsd;KNqqA+P=(mDo@9pA&{<unYt{9_%ESfmLiMQbS>4OJcXS`=KE*de6w41m
zS8OY=Wq>RtCWKzuVnB~s-D?OjdSwft>=M9@P`DCd5(W=@1Il_&s}49BSbvbCiZKu7
zoMHu5XIJ?an5Gno35N*;4|X6BD2bW@l8)grnwKcj<An$=2n;>bN>ei^<xx<HR*RWP
zfq6L*q!d|{QSp)_g~g&^fgsJBBiTC(lEEJ_2nNYOHqb3bi$$NDk-(g$7^@|moU_5}
z3}ohc7BwX2L>sP>^eOfPJ#S_D(gwG<q)`u57?E!`SOX<d^>YI!YV=NrJx&muiF}3C
zkd|Y$;4&VQF&&F|bTqD#=(3jA_^k<vH5bhY^{(!7UvOxem397gW<Xf7IoDs6A%-^8
z`*z**z|2_}Z(UiW4>rX3jt|*QZdZv-x!x;ArzOHEl`|?)ybUsBt~6te+nqYz>vSY0
zOmjLN;VS->=yW)!8EDM+9dKG2PB!O<SYfQ2#l{ys{y<iQ!<0XV=BgmVkFsQjrzV^#
zdYQw3JywD(x-d8K@^i0ZGulNSpK4>HMvL9x@JIi};?MN@jd$K;N@9Me{AFUOJ=SCs
zQtnJvD~s35??&as8l&hUgu_->bai}!HQF`K66^fd@>;jc%BwfZU(TB@G_IH6;do|2
z*X%X+jaS}WIrZY9C8lNPS9r@}3^h%=XFC@+ck)4Zi5*|9T+zTJxCh5)i>?z>+-ag1
zlbt4sUSUJRbbNL~VpW=Re5oT&6r${oczpaZPuS@&=ZAf;`mc*+e%c8s|B7_YS{Ob!
zba!fDj-A90wXgur@8?=r)LB@(7M66d{iB8Th~KP*4Z1}<OA8xyR(_2ZHtEd#5iJav
zRQ`z;w(F9G8t{3T2n%^Q9UzVpg&8o+Ra%$><2<Z|1<0=cR11qb4<jBCrI&OW_%1c9
zM|_hOHt4?1c4%RvE|zcA!X}-YAJ)PaT`qq{3)^*51p&N?0mvI~g`d-I*uv<7k1-!K
zH(PLS5kY7sLjBNa+KO-h6lMu9VIjgbz#qN1pUyR`JVkWF$Ty_qZbwR8-N4}1q3+JE
z5np}FrigE5OMm-TU!b@oT<ELm?e!_IhJ8bk;mFXYNINn#pgsL)MGf#1l{Ns1HiGDZ
z{*ju^k>P<pJS;{`C*)mv(Yhf#Mmk4(TM%dfg|+}%r}L1z7Iv%`BHRGp{YuDGFGMcr
zqc$vDuykHcZRNtH4Kr3YE?i7e|3Qt*m9H8`A5rUkx*)!-48LN8C;COVJTf%gJ<#t9
z7M2wjD<Aov72b#siQrSH>!?d3I5?tC^r0IDlxvsr=9`9!^0Xn{M8i6eL(Qq?p=at&
zDr*RJv?G0=(rrD6Ye6i<cVj^qMQEawe&nL3Hl!Y=VQlP;v<ycuP92dU-^hS(q$}b(
zJ+#A-wh{X9jsd*Hn+^<?Z)B*YJ<``Q)Z=Rz85!zs9aWO_4~%rTMTWJ39zrbyOlJ-C
z(1`EUSbq~N>Q2LwP662wfN&*9^dj_}`n@e@lv${JnXYSOWDt5i)VvlImI}KE{+kkt
zFj8u-^edxPgv{SmW>GIbvVS;&_X>?ew}17IKZiFAl#qZ^!acf6amI9&?rPWy+N-;g
z5xR!ERY;K=m=WGt&CG&bnhoTpgE^rB7|mSF&0?_Vd08y{wZyXoNLwU<Oif`vFg4S#
zd(B{(%n$vOY?i}vVXP*fk;#Q3Rt%G+0anU_ECiyn3^o*@bpksK5KqVQJDpXt8hBZ$
zWA$(W+rVbBS!^~$8t1~d!hE)XEo6;s5nIfbV5hf?EoUp(O8A9Y&DOBBY#m$Any~+C
zVXeStpXqF@jkU7~>tLO%i*>UNtOv}uKIl^putByFHc*Dy2u#9mVw>TOd@I|=&cVj`
zJcv(jXJhOFb|KrrE`r;^U2HcbNiKov>K=9(yPRFYu4GrStJz+54co`|vjgl~Fv@lv
zyPn+uA3+CUq5CFwnBC02&2C}0vfJ40><)Okx{KY-?qT<```CBb{p`E!0rnt!h&{}{
z#~xvivd7?V^$GSQ`#yV$J<Wc=j=&n{v+OzcL-r%~JbQt?$bQUTVn2Zg>X+Fo>{S@i
z{TX|m{hYnQ-ehmFx7j=F7wld39{VNx6?>oknjK{yuw(2)_7VFHtf~GEo{K(ae_(%P
ze`24oPuXYebM|NU1^Wy8EBhP!JNpOwC;O6p#g4NRY@EsLB-e4qITyIdB@S*1H|o;3
ziJQ3v-hpf!h6A~iNAYOx;%*+pJ>1J<c^r@D2|SS}aqwGU)j5@?@pPWSVL5_l@ob*M
zb9o-m=LH-(x4f8_@BlC6K_22^UdGFL1+U~&_*6cPgR#S_c@3}Sb-bR>;0=5xpT%eM
zIeadk$LI3}d?9b-i}+%`ME5#h%9ruwd<9?0SMk++4PVRG@%6lkH}e+W%G-E5kMIsC
zJ#_JIzJd4fUf#$1`2Zi}8~G3)<|BNRZ{nNz7QU5l<LB^m`FZ?&zMYTp3;2b62fv8#
z<h%H8elfp<U&{CJ%lPH|3VtQO3Yw~W`89kW-_H;5Z}DsSb)fri;5YJv{1Cs1ALcjn
zZ}VIDt^78AJHLb9$?xKK^LzNc{6792en0;%e}F&8AL0-5@9{_Yqx>=cIDdja$-mE^
z;!pD*@FV;g{w#lv|B(NPKhIy_FY+Jrm-tWkPx;II75*xJjsJ|l&VSC|;BWG`_}ly)
z{tNyte~<r?|BAoQf6b5b5BM?uA^(W~hX0oTj{ly2%>Tgu$p6GY;h*x)_~-o3{0sgU
z{#X7t{&)Tl{!jiT|B4^yCpdIt`AI<snhl3{pxY!t4|5boSb{bS7QqVJPIkc|IAIq$
zT5t(&AqKkGULjV96XJygAyG&Yz>E`oLaLA^qzf5Brr;N{glr*4$QAO0e4#)9FHR^H
zN`!z=Dg<GHGAxt{<wAu}DNGTj3e$utVY*N))Cjdgolq~#5E_J;!YpC7Fh`gx%oFAd
z3xtJ2qp(O=EG!Y03d@A$!U|!fuu51htP$1<>xA_}lh7=*2(3b!&@M!T4xv-%61s&A
zLXXfZ^a=gKfG{X*6o!OhVMG`eHVK=BEy7k|n{bYBu5ccdNVW@O!Ue*G!VcjgVW+T5
z*ezTvTq0a5>=7;#E*Gv4t`x2kt`_zR*9iNB{lWp^Tf()%b;9++4Z@AWLE(^alW<tL
zS@^bai*T!On{c~uhj6EGmvFamk8rPWpYR>we&M^q1G;@uXK%~!u+%p?+})-hj<gK5
zbr~c5n<BjfgAu6<&m-dSNXw9!E=`fX!I7=vD5w^(qr11yIMUSw3Zyf_N4g9Y?j9cD
z13mhoNZ-Jwh+*5nKwndLzfrjljE)Ec9Uc1N?#}*}UZHKEQ^Ha?+$DB_wlSi#NK;Gi
zh&a;S7ZHaBTH3Ac1DpGM5uj+}#Djixkm987{?>slmcibZtxav+Lv6hg)HxVw88Kj~
z236H%q^2kZ_71f5h#kExoo0MY`(W2Ve`MIaX`pwsFVckeShOHjVA8^)gZhm_Z3FEQ
zLo2!icVVQZQ^aprY#kWrG17%rcxiB`yMILA*3uUlY7uF9#rxiNefLNU7DCHNWXniX
zSA?iQvl8Ci-9FM~#=Fk`rrt=$h*b?@$sCCcS=0xGGPJ4T4Wq*&-5py+`W8!fe>>8t
z`LwW-*51+57NK5i+SJ`1888fXw~dSrMf8J_{<iL3b6?9~6SXxmq;F}b0@1^0XQaJ*
zL>lgD8Hz}4T@myU4VZ0sBr@34+S1muxn-!`*3p74oOm)$1Vrj|X|M%A0Kga+G=Tb{
z<W?p5#Dh|j_8>(zfKalco=rmo>X+Ll9+Xco4fc)>HxXc%`?~wJphX2DCE761qugy9
zM<eJG6hetj-TfT{YPR9Fp$G_%u7MGomQ95U6EdnHb8AcgM6hLOXkfF_lNL3ow8E%{
zM+ePnK!FIQiwKU;oZ;?mk*1E(-d?K~9`0-D?R7@BwDq?1wVY~}*xB7NB7$)2z#JKh
z7$aK&Xc!F>1=@NCh9g$=SATbZr_y!_{n;Newzc#|`rBKE^h4Mx4D=b=2KxFi-uk|l
z&i=@Vd7{5Y2T%1QwGZGvvN;kNvEkDP2dT(5Ojv6NpfEC|R%X#2s0j|O;hQ2uAV*tz
zqqOI)fuZhgL>=~;0P#(2fQu39$mZ@5z@^&p1Y`vE%9B-v_$E|7G$8auwu+d|!$z&i
z!?uyG(Z1H<rqMy_IEVH`&826Pf=IerdOIu%c2RMPfd&*P!q(f}-vi)ON7yhpI^2cN
zvSB7ghJZGJVfuR%6w=+VN9BWETP>a4sG(Jb0~I?^HBv8dP`{+icZ&kzYDM;m$*Vq^
zl>|y=gZ9D3iEq`bCF@6lhT3{805MD&>fm-^Xn0uYYHv5T0vgbH{bFmRx7X4}-P(bU
z9f_E`FpNzqbSpuc?*=6_I%rbv)FDwSa5kNW$mla-lmZ-QM2!xfnTd)44j*WZ=r<2x
z&UZ;8EyF#-dSF!anW=TCJJQjHO^lf!SDhzP=g`3DAka#Gj|6}mZP&L(T7V&hw$Tv`
z<=|HHV9THaKiz}kF!rxz8l9$A0BR2)ZeR$&#YcPjKrb-HP<KycqzeUhc9}+jqlQpy
z1Z`;TjYt6A?lz$L(Y78Fh7s+-^tGP~Dc$bu92n>X@;`+GER!N6jA3M}8GRlZX`(O1
zJfR>asT!bewWvX*uP|?b+53mZ;ejE58ZJsUgA&5znONBfM6gDvuqLA20|1y#z<)cI
zq}Bn9u|)%CN@<+{ZF(RaKLU6i!7gvm2uL5o*tY;90_T~5+q-}?M|)e1zzZ1X&WK&<
zVx<|hbXnC$6;chfls5IXTab68YhW0iA2AM(c8}1A840MUMtvI=sz?MY%mA=5t(3}g
zLZ8q&+TDxU(rHBIL0WfAEq$oHrN1qr?~AnebdOj%s7a`0Lj+BaU>)dE`d#cO?ubOS
z4~$}<n$S*MsWYR`h*9D1j3~h08P7B-=F|BtYEa2&RKtW(mGUX6p*=F(gJnbC+cHQu
z1yDw;eFLrZUCL~<YVfYWn|b5tz=+y3iyBnN8DHDqkB?E)N?84Sx0*FnfR1raMuF6a
zj!9^cp3RXhgEU1E#OPuG2Zt2`L>lfxL!=I@5dA`5q|4BW)qSv~-3T<Nz=e@$3Cd<y
z0t#vYT(=w1$5_2udNG6ABPOLmNY?8(h3_;31Z1Kv7Rsa-+knMPl%)yFWe*`6K&99e
zD66ncT3IZ^qnMGHzTJZW>(N#<gk<HV*1^$j+o<olBW)2Zpj04HIrh^*B6Re_UEPu1
zcKgIaqqZiBmZ&D6SHRF{_iz__bO^{ULJQB9wss&WZPivVfC3<A#HavrMie2a$(a-c
z)iu)B8xq@whfDQ<O`uG(idCs26)ZZ8)zJlb?;afP9&S3lAVr;un^?5Orqbe4kPIOG
zs8M>XWN0tGc7k%CGBuR1L>hY|AZH0@r~w6H(Zn`&H8Uw_or*%qB>}U#<kK@P!kE^y
zvZ(-a8d3ndl)6laj1CE%t%JhoaJ$gmKO}4z+$s!>whBE%n}ybqHX@TFrc-m)so<g3
zt!Uz4S4%5qWK(INBKlOU#xaTvd%hk;pJkhfR&a3C8Bg>c#gzu>60&Z^YC75)QI|ID
zLEM62Hqk|iK9z<#)6fpM0Z|Q<4gzojd4a~lbLUV?pS}Y$ZO@R<(%vt2l$4d&Tf0YE
zf!KkK)nNc8>>aX<C^sd_(K~>OP7_nMNzbE$liw0tIVZhUr}$=&xdWSr4Vb1w1KsTs
zCdTL%G_$*v)|TO(t%F$921bX5H;!Ua0673q8PInCE%!!5y3hhX(mf~)kJ8YF!v@;i
zbZ?3Xt)rcMQ;)Pc(%m|MjYB{Fkf1DJSH2z7LB-q@7mQIqU}6pKRY`Dq6}GnzfF4k`
zA6n;^m0LG~6bDtRv<a!oi*4%4rbILiP*i{}rF5aODi6^mOqVjcl+&fcFxubUP*PKj
zzHTW&Oa*1CD5XcrR6&_4C{qPxs-R326=GAcSjo{!A>;@aqncoGP%W(%1qF+dDOik5
z!D3_z7E`8@V!F`V63SFUnMzPiumsfvODIPP<tU*XC0g6+iq%r<C|`i`1t?#D@&za#
zG}~~Yd;!WApqfglrc%lQYtFb(j#908^;&`TC2GO-N(#zas#OWUiAuNBhqXHu9;7mY
zRBMoG4N|Q^<ppI8YFTGc#UZLVM8$?EQ;0H!C{u_sg(y>qGQmzuQ!q?9!juDcjB%kH
zVXdhR$~(#wF2j&?DDNm!8NDc@Ol6d*j9!#cHDy!{B%P7CjY3pS8RaOa9OaaQ;37zH
z5hS<>5?llcE`kIXL4u25IpwIJ92Jy<fFcN>z$GYl1e9R}P#~ndpd17gApiv~$Ppr-
z2oX?(icv?X7<GgQB0>ZaA%cidafP%g0$hq9fkcSP3K2+z2qZ!T5+MSK5P?L9Kq6E^
zl?14g0OcTH2oW%Z2pB>H3?TxB5CKDofFVS{5F%g*5io=Z7(xULAwpjvn6|=&a+Fez
zQp!<EIf9fUNI8O(gN8mtLm#4{hqMA+C`XWT1Sv;|a?rSkXxu|I?jaiY5RH3?#yv#i
z9-?s%(YS|b+(R_(AsY7(jXUg}(S>q^DF+4}7s?T?KyM=lE|dd<ju7RbK@ZWOhcM{4
zP!1aO5Dj{W20cWB9-=`H(V&ND&_gunAsX}$4SI+MJw$^ZqCpSQpoeJCLp10i3_329
zgD^peFhK~Ipd(NgQRYXWT%Az?swqrEAEu!XYxp2gu1==_)fXlJ2onH=2_=LHmclgt
zVH*E1jenTNKTP8vrtuHc_=joy!!-V38vihjf0)KUOyeJ>@ekAZhiUx7H2z^4|8PK^
zmVp|rg*ED&57Y$Ime-VOcXh%AYP6=-s53uMQ>MKy*X|SL)o9PP+PzM@*K79~>b+L0
zw^pmSR;#yGtG8CGw^pmSR;#yGtG8CGw^pmSR;#yGtG8CGw^pmSR;yP-nt?j4-a4(`
zI<4M1t=>AV-a4(`I<4M1t=>AV-a4(`I<4M1t=>AV-a4&b4Yvj~+#0CY>aEx6t=H<+
zFl<1>uz`B5-g>Rxdad4it=@XA-g>Rxdad4it=<`0KhO9-gZkGMYOgEQURS8Su2BEF
zLjCIsN-365OI@Lsx<V~=g<9$gwbT`AsjDkwvWfBkf8e|lBap)f#1ddZ5TB9h5Re3(
de*jv40|X!y3}<W?od?mU{cQ|D^cBO5od6617EJ&E

literal 0
HcmV?d00001

diff --git a/oxAuth/Server/src/main/webapp/fonts/fontawesome-webfont.svg b/oxAuth/Server/src/main/webapp/fonts/fontawesome-webfont.svg
new file mode 100644
index 00000000..855c845e
--- /dev/null
+++ b/oxAuth/Server/src/main/webapp/fonts/fontawesome-webfont.svg
@@ -0,0 +1,2671 @@
+<?xml version="1.0" standalone="no"?>
+<!DOCTYPE svg PUBLIC "-//W3C//DTD SVG 1.1//EN" "http://www.w3.org/Graphics/SVG/1.1/DTD/svg11.dtd" >
+<svg>
+<metadata>
+Created by FontForge 20120731 at Mon Oct 24 17:37:40 2016
+ By ,,,
+Copyright Dave Gandy 2016. All rights reserved.
+</metadata>
+<defs>
+<font id="FontAwesome" horiz-adv-x="1536" >
+  <font-face 
+    font-family="FontAwesome"
+    font-weight="400"
+    font-stretch="normal"
+    units-per-em="1792"
+    panose-1="0 0 0 0 0 0 0 0 0 0"
+    ascent="1536"
+    descent="-256"
+    bbox="-1.02083 -256.962 2304.6 1537.02"
+    underline-thickness="0"
+    underline-position="0"
+    unicode-range="U+0020-F500"
+  />
+<missing-glyph horiz-adv-x="896" 
+d="M224 112h448v1312h-448v-1312zM112 0v1536h672v-1536h-672z" />
+    <glyph glyph-name=".notdef" horiz-adv-x="896" 
+d="M224 112h448v1312h-448v-1312zM112 0v1536h672v-1536h-672z" />
+    <glyph glyph-name=".null" horiz-adv-x="0" 
+ />
+    <glyph glyph-name="nonmarkingreturn" horiz-adv-x="597" 
+ />
+    <glyph glyph-name="space" unicode=" " horiz-adv-x="448" 
+ />
+    <glyph glyph-name="dieresis" unicode="&#xa8;" horiz-adv-x="1792" 
+ />
+    <glyph glyph-name="copyright" unicode="&#xa9;" horiz-adv-x="1792" 
+ />
+    <glyph glyph-name="registered" unicode="&#xae;" horiz-adv-x="1792" 
+ />
+    <glyph glyph-name="acute" unicode="&#xb4;" horiz-adv-x="1792" 
+ />
+    <glyph glyph-name="AE" unicode="&#xc6;" horiz-adv-x="1792" 
+ />
+    <glyph glyph-name="Oslash" unicode="&#xd8;" horiz-adv-x="1792" 
+ />
+    <glyph glyph-name="trademark" unicode="&#x2122;" horiz-adv-x="1792" 
+ />
+    <glyph glyph-name="infinity" unicode="&#x221e;" horiz-adv-x="1792" 
+ />
+    <glyph glyph-name="notequal" unicode="&#x2260;" horiz-adv-x="1792" 
+ />
+    <glyph glyph-name="glass" unicode="&#xf000;" horiz-adv-x="1792" 
+d="M1699 1350q0 -35 -43 -78l-632 -632v-768h320q26 0 45 -19t19 -45t-19 -45t-45 -19h-896q-26 0 -45 19t-19 45t19 45t45 19h320v768l-632 632q-43 43 -43 78q0 23 18 36.5t38 17.5t43 4h1408q23 0 43 -4t38 -17.5t18 -36.5z" />
+    <glyph glyph-name="music" unicode="&#xf001;" 
+d="M1536 1312v-1120q0 -50 -34 -89t-86 -60.5t-103.5 -32t-96.5 -10.5t-96.5 10.5t-103.5 32t-86 60.5t-34 89t34 89t86 60.5t103.5 32t96.5 10.5q105 0 192 -39v537l-768 -237v-709q0 -50 -34 -89t-86 -60.5t-103.5 -32t-96.5 -10.5t-96.5 10.5t-103.5 32t-86 60.5t-34 89
+t34 89t86 60.5t103.5 32t96.5 10.5q105 0 192 -39v967q0 31 19 56.5t49 35.5l832 256q12 4 28 4q40 0 68 -28t28 -68z" />
+    <glyph glyph-name="search" unicode="&#xf002;" horiz-adv-x="1664" 
+d="M1152 704q0 185 -131.5 316.5t-316.5 131.5t-316.5 -131.5t-131.5 -316.5t131.5 -316.5t316.5 -131.5t316.5 131.5t131.5 316.5zM1664 -128q0 -52 -38 -90t-90 -38q-54 0 -90 38l-343 342q-179 -124 -399 -124q-143 0 -273.5 55.5t-225 150t-150 225t-55.5 273.5
+t55.5 273.5t150 225t225 150t273.5 55.5t273.5 -55.5t225 -150t150 -225t55.5 -273.5q0 -220 -124 -399l343 -343q37 -37 37 -90z" />
+    <glyph glyph-name="envelope" unicode="&#xf003;" horiz-adv-x="1792" 
+d="M1664 32v768q-32 -36 -69 -66q-268 -206 -426 -338q-51 -43 -83 -67t-86.5 -48.5t-102.5 -24.5h-1h-1q-48 0 -102.5 24.5t-86.5 48.5t-83 67q-158 132 -426 338q-37 30 -69 66v-768q0 -13 9.5 -22.5t22.5 -9.5h1472q13 0 22.5 9.5t9.5 22.5zM1664 1083v11v13.5t-0.5 13
+t-3 12.5t-5.5 9t-9 7.5t-14 2.5h-1472q-13 0 -22.5 -9.5t-9.5 -22.5q0 -168 147 -284q193 -152 401 -317q6 -5 35 -29.5t46 -37.5t44.5 -31.5t50.5 -27.5t43 -9h1h1q20 0 43 9t50.5 27.5t44.5 31.5t46 37.5t35 29.5q208 165 401 317q54 43 100.5 115.5t46.5 131.5z
+M1792 1120v-1088q0 -66 -47 -113t-113 -47h-1472q-66 0 -113 47t-47 113v1088q0 66 47 113t113 47h1472q66 0 113 -47t47 -113z" />
+    <glyph glyph-name="heart" unicode="&#xf004;" horiz-adv-x="1792" 
+d="M896 -128q-26 0 -44 18l-624 602q-10 8 -27.5 26t-55.5 65.5t-68 97.5t-53.5 121t-23.5 138q0 220 127 344t351 124q62 0 126.5 -21.5t120 -58t95.5 -68.5t76 -68q36 36 76 68t95.5 68.5t120 58t126.5 21.5q224 0 351 -124t127 -344q0 -221 -229 -450l-623 -600
+q-18 -18 -44 -18z" />
+    <glyph glyph-name="star" unicode="&#xf005;" horiz-adv-x="1664" 
+d="M1664 889q0 -22 -26 -48l-363 -354l86 -500q1 -7 1 -20q0 -21 -10.5 -35.5t-30.5 -14.5q-19 0 -40 12l-449 236l-449 -236q-22 -12 -40 -12q-21 0 -31.5 14.5t-10.5 35.5q0 6 2 20l86 500l-364 354q-25 27 -25 48q0 37 56 46l502 73l225 455q19 41 49 41t49 -41l225 -455
+l502 -73q56 -9 56 -46z" />
+    <glyph glyph-name="star_empty" unicode="&#xf006;" horiz-adv-x="1664" 
+d="M1137 532l306 297l-422 62l-189 382l-189 -382l-422 -62l306 -297l-73 -421l378 199l377 -199zM1664 889q0 -22 -26 -48l-363 -354l86 -500q1 -7 1 -20q0 -50 -41 -50q-19 0 -40 12l-449 236l-449 -236q-22 -12 -40 -12q-21 0 -31.5 14.5t-10.5 35.5q0 6 2 20l86 500
+l-364 354q-25 27 -25 48q0 37 56 46l502 73l225 455q19 41 49 41t49 -41l225 -455l502 -73q56 -9 56 -46z" />
+    <glyph glyph-name="user" unicode="&#xf007;" horiz-adv-x="1280" 
+d="M1280 137q0 -109 -62.5 -187t-150.5 -78h-854q-88 0 -150.5 78t-62.5 187q0 85 8.5 160.5t31.5 152t58.5 131t94 89t134.5 34.5q131 -128 313 -128t313 128q76 0 134.5 -34.5t94 -89t58.5 -131t31.5 -152t8.5 -160.5zM1024 1024q0 -159 -112.5 -271.5t-271.5 -112.5
+t-271.5 112.5t-112.5 271.5t112.5 271.5t271.5 112.5t271.5 -112.5t112.5 -271.5z" />
+    <glyph glyph-name="film" unicode="&#xf008;" horiz-adv-x="1920" 
+d="M384 -64v128q0 26 -19 45t-45 19h-128q-26 0 -45 -19t-19 -45v-128q0 -26 19 -45t45 -19h128q26 0 45 19t19 45zM384 320v128q0 26 -19 45t-45 19h-128q-26 0 -45 -19t-19 -45v-128q0 -26 19 -45t45 -19h128q26 0 45 19t19 45zM384 704v128q0 26 -19 45t-45 19h-128
+q-26 0 -45 -19t-19 -45v-128q0 -26 19 -45t45 -19h128q26 0 45 19t19 45zM1408 -64v512q0 26 -19 45t-45 19h-768q-26 0 -45 -19t-19 -45v-512q0 -26 19 -45t45 -19h768q26 0 45 19t19 45zM384 1088v128q0 26 -19 45t-45 19h-128q-26 0 -45 -19t-19 -45v-128q0 -26 19 -45
+t45 -19h128q26 0 45 19t19 45zM1792 -64v128q0 26 -19 45t-45 19h-128q-26 0 -45 -19t-19 -45v-128q0 -26 19 -45t45 -19h128q26 0 45 19t19 45zM1408 704v512q0 26 -19 45t-45 19h-768q-26 0 -45 -19t-19 -45v-512q0 -26 19 -45t45 -19h768q26 0 45 19t19 45zM1792 320v128
+q0 26 -19 45t-45 19h-128q-26 0 -45 -19t-19 -45v-128q0 -26 19 -45t45 -19h128q26 0 45 19t19 45zM1792 704v128q0 26 -19 45t-45 19h-128q-26 0 -45 -19t-19 -45v-128q0 -26 19 -45t45 -19h128q26 0 45 19t19 45zM1792 1088v128q0 26 -19 45t-45 19h-128q-26 0 -45 -19
+t-19 -45v-128q0 -26 19 -45t45 -19h128q26 0 45 19t19 45zM1920 1248v-1344q0 -66 -47 -113t-113 -47h-1600q-66 0 -113 47t-47 113v1344q0 66 47 113t113 47h1600q66 0 113 -47t47 -113z" />
+    <glyph glyph-name="th_large" unicode="&#xf009;" horiz-adv-x="1664" 
+d="M768 512v-384q0 -52 -38 -90t-90 -38h-512q-52 0 -90 38t-38 90v384q0 52 38 90t90 38h512q52 0 90 -38t38 -90zM768 1280v-384q0 -52 -38 -90t-90 -38h-512q-52 0 -90 38t-38 90v384q0 52 38 90t90 38h512q52 0 90 -38t38 -90zM1664 512v-384q0 -52 -38 -90t-90 -38
+h-512q-52 0 -90 38t-38 90v384q0 52 38 90t90 38h512q52 0 90 -38t38 -90zM1664 1280v-384q0 -52 -38 -90t-90 -38h-512q-52 0 -90 38t-38 90v384q0 52 38 90t90 38h512q52 0 90 -38t38 -90z" />
+    <glyph glyph-name="th" unicode="&#xf00a;" horiz-adv-x="1792" 
+d="M512 288v-192q0 -40 -28 -68t-68 -28h-320q-40 0 -68 28t-28 68v192q0 40 28 68t68 28h320q40 0 68 -28t28 -68zM512 800v-192q0 -40 -28 -68t-68 -28h-320q-40 0 -68 28t-28 68v192q0 40 28 68t68 28h320q40 0 68 -28t28 -68zM1152 288v-192q0 -40 -28 -68t-68 -28h-320
+q-40 0 -68 28t-28 68v192q0 40 28 68t68 28h320q40 0 68 -28t28 -68zM512 1312v-192q0 -40 -28 -68t-68 -28h-320q-40 0 -68 28t-28 68v192q0 40 28 68t68 28h320q40 0 68 -28t28 -68zM1152 800v-192q0 -40 -28 -68t-68 -28h-320q-40 0 -68 28t-28 68v192q0 40 28 68t68 28
+h320q40 0 68 -28t28 -68zM1792 288v-192q0 -40 -28 -68t-68 -28h-320q-40 0 -68 28t-28 68v192q0 40 28 68t68 28h320q40 0 68 -28t28 -68zM1152 1312v-192q0 -40 -28 -68t-68 -28h-320q-40 0 -68 28t-28 68v192q0 40 28 68t68 28h320q40 0 68 -28t28 -68zM1792 800v-192
+q0 -40 -28 -68t-68 -28h-320q-40 0 -68 28t-28 68v192q0 40 28 68t68 28h320q40 0 68 -28t28 -68zM1792 1312v-192q0 -40 -28 -68t-68 -28h-320q-40 0 -68 28t-28 68v192q0 40 28 68t68 28h320q40 0 68 -28t28 -68z" />
+    <glyph glyph-name="th_list" unicode="&#xf00b;" horiz-adv-x="1792" 
+d="M512 288v-192q0 -40 -28 -68t-68 -28h-320q-40 0 -68 28t-28 68v192q0 40 28 68t68 28h320q40 0 68 -28t28 -68zM512 800v-192q0 -40 -28 -68t-68 -28h-320q-40 0 -68 28t-28 68v192q0 40 28 68t68 28h320q40 0 68 -28t28 -68zM1792 288v-192q0 -40 -28 -68t-68 -28h-960
+q-40 0 -68 28t-28 68v192q0 40 28 68t68 28h960q40 0 68 -28t28 -68zM512 1312v-192q0 -40 -28 -68t-68 -28h-320q-40 0 -68 28t-28 68v192q0 40 28 68t68 28h320q40 0 68 -28t28 -68zM1792 800v-192q0 -40 -28 -68t-68 -28h-960q-40 0 -68 28t-28 68v192q0 40 28 68t68 28
+h960q40 0 68 -28t28 -68zM1792 1312v-192q0 -40 -28 -68t-68 -28h-960q-40 0 -68 28t-28 68v192q0 40 28 68t68 28h960q40 0 68 -28t28 -68z" />
+    <glyph glyph-name="ok" unicode="&#xf00c;" horiz-adv-x="1792" 
+d="M1671 970q0 -40 -28 -68l-724 -724l-136 -136q-28 -28 -68 -28t-68 28l-136 136l-362 362q-28 28 -28 68t28 68l136 136q28 28 68 28t68 -28l294 -295l656 657q28 28 68 28t68 -28l136 -136q28 -28 28 -68z" />
+    <glyph glyph-name="remove" unicode="&#xf00d;" horiz-adv-x="1408" 
+d="M1298 214q0 -40 -28 -68l-136 -136q-28 -28 -68 -28t-68 28l-294 294l-294 -294q-28 -28 -68 -28t-68 28l-136 136q-28 28 -28 68t28 68l294 294l-294 294q-28 28 -28 68t28 68l136 136q28 28 68 28t68 -28l294 -294l294 294q28 28 68 28t68 -28l136 -136q28 -28 28 -68
+t-28 -68l-294 -294l294 -294q28 -28 28 -68z" />
+    <glyph glyph-name="zoom_in" unicode="&#xf00e;" horiz-adv-x="1664" 
+d="M1024 736v-64q0 -13 -9.5 -22.5t-22.5 -9.5h-224v-224q0 -13 -9.5 -22.5t-22.5 -9.5h-64q-13 0 -22.5 9.5t-9.5 22.5v224h-224q-13 0 -22.5 9.5t-9.5 22.5v64q0 13 9.5 22.5t22.5 9.5h224v224q0 13 9.5 22.5t22.5 9.5h64q13 0 22.5 -9.5t9.5 -22.5v-224h224
+q13 0 22.5 -9.5t9.5 -22.5zM1152 704q0 185 -131.5 316.5t-316.5 131.5t-316.5 -131.5t-131.5 -316.5t131.5 -316.5t316.5 -131.5t316.5 131.5t131.5 316.5zM1664 -128q0 -53 -37.5 -90.5t-90.5 -37.5q-54 0 -90 38l-343 342q-179 -124 -399 -124q-143 0 -273.5 55.5
+t-225 150t-150 225t-55.5 273.5t55.5 273.5t150 225t225 150t273.5 55.5t273.5 -55.5t225 -150t150 -225t55.5 -273.5q0 -220 -124 -399l343 -343q37 -37 37 -90z" />
+    <glyph glyph-name="zoom_out" unicode="&#xf010;" horiz-adv-x="1664" 
+d="M1024 736v-64q0 -13 -9.5 -22.5t-22.5 -9.5h-576q-13 0 -22.5 9.5t-9.5 22.5v64q0 13 9.5 22.5t22.5 9.5h576q13 0 22.5 -9.5t9.5 -22.5zM1152 704q0 185 -131.5 316.5t-316.5 131.5t-316.5 -131.5t-131.5 -316.5t131.5 -316.5t316.5 -131.5t316.5 131.5t131.5 316.5z
+M1664 -128q0 -53 -37.5 -90.5t-90.5 -37.5q-54 0 -90 38l-343 342q-179 -124 -399 -124q-143 0 -273.5 55.5t-225 150t-150 225t-55.5 273.5t55.5 273.5t150 225t225 150t273.5 55.5t273.5 -55.5t225 -150t150 -225t55.5 -273.5q0 -220 -124 -399l343 -343q37 -37 37 -90z
+" />
+    <glyph glyph-name="off" unicode="&#xf011;" 
+d="M1536 640q0 -156 -61 -298t-164 -245t-245 -164t-298 -61t-298 61t-245 164t-164 245t-61 298q0 182 80.5 343t226.5 270q43 32 95.5 25t83.5 -50q32 -42 24.5 -94.5t-49.5 -84.5q-98 -74 -151.5 -181t-53.5 -228q0 -104 40.5 -198.5t109.5 -163.5t163.5 -109.5
+t198.5 -40.5t198.5 40.5t163.5 109.5t109.5 163.5t40.5 198.5q0 121 -53.5 228t-151.5 181q-42 32 -49.5 84.5t24.5 94.5q31 43 84 50t95 -25q146 -109 226.5 -270t80.5 -343zM896 1408v-640q0 -52 -38 -90t-90 -38t-90 38t-38 90v640q0 52 38 90t90 38t90 -38t38 -90z" />
+    <glyph glyph-name="signal" unicode="&#xf012;" horiz-adv-x="1792" 
+d="M256 96v-192q0 -14 -9 -23t-23 -9h-192q-14 0 -23 9t-9 23v192q0 14 9 23t23 9h192q14 0 23 -9t9 -23zM640 224v-320q0 -14 -9 -23t-23 -9h-192q-14 0 -23 9t-9 23v320q0 14 9 23t23 9h192q14 0 23 -9t9 -23zM1024 480v-576q0 -14 -9 -23t-23 -9h-192q-14 0 -23 9t-9 23
+v576q0 14 9 23t23 9h192q14 0 23 -9t9 -23zM1408 864v-960q0 -14 -9 -23t-23 -9h-192q-14 0 -23 9t-9 23v960q0 14 9 23t23 9h192q14 0 23 -9t9 -23zM1792 1376v-1472q0 -14 -9 -23t-23 -9h-192q-14 0 -23 9t-9 23v1472q0 14 9 23t23 9h192q14 0 23 -9t9 -23z" />
+    <glyph glyph-name="cog" unicode="&#xf013;" 
+d="M1024 640q0 106 -75 181t-181 75t-181 -75t-75 -181t75 -181t181 -75t181 75t75 181zM1536 749v-222q0 -12 -8 -23t-20 -13l-185 -28q-19 -54 -39 -91q35 -50 107 -138q10 -12 10 -25t-9 -23q-27 -37 -99 -108t-94 -71q-12 0 -26 9l-138 108q-44 -23 -91 -38
+q-16 -136 -29 -186q-7 -28 -36 -28h-222q-14 0 -24.5 8.5t-11.5 21.5l-28 184q-49 16 -90 37l-141 -107q-10 -9 -25 -9q-14 0 -25 11q-126 114 -165 168q-7 10 -7 23q0 12 8 23q15 21 51 66.5t54 70.5q-27 50 -41 99l-183 27q-13 2 -21 12.5t-8 23.5v222q0 12 8 23t19 13
+l186 28q14 46 39 92q-40 57 -107 138q-10 12 -10 24q0 10 9 23q26 36 98.5 107.5t94.5 71.5q13 0 26 -10l138 -107q44 23 91 38q16 136 29 186q7 28 36 28h222q14 0 24.5 -8.5t11.5 -21.5l28 -184q49 -16 90 -37l142 107q9 9 24 9q13 0 25 -10q129 -119 165 -170q7 -8 7 -22
+q0 -12 -8 -23q-15 -21 -51 -66.5t-54 -70.5q26 -50 41 -98l183 -28q13 -2 21 -12.5t8 -23.5z" />
+    <glyph glyph-name="trash" unicode="&#xf014;" horiz-adv-x="1408" 
+d="M512 800v-576q0 -14 -9 -23t-23 -9h-64q-14 0 -23 9t-9 23v576q0 14 9 23t23 9h64q14 0 23 -9t9 -23zM768 800v-576q0 -14 -9 -23t-23 -9h-64q-14 0 -23 9t-9 23v576q0 14 9 23t23 9h64q14 0 23 -9t9 -23zM1024 800v-576q0 -14 -9 -23t-23 -9h-64q-14 0 -23 9t-9 23v576
+q0 14 9 23t23 9h64q14 0 23 -9t9 -23zM1152 76v948h-896v-948q0 -22 7 -40.5t14.5 -27t10.5 -8.5h832q3 0 10.5 8.5t14.5 27t7 40.5zM480 1152h448l-48 117q-7 9 -17 11h-317q-10 -2 -17 -11zM1408 1120v-64q0 -14 -9 -23t-23 -9h-96v-948q0 -83 -47 -143.5t-113 -60.5h-832
+q-66 0 -113 58.5t-47 141.5v952h-96q-14 0 -23 9t-9 23v64q0 14 9 23t23 9h309l70 167q15 37 54 63t79 26h320q40 0 79 -26t54 -63l70 -167h309q14 0 23 -9t9 -23z" />
+    <glyph glyph-name="home" unicode="&#xf015;" horiz-adv-x="1664" 
+d="M1408 544v-480q0 -26 -19 -45t-45 -19h-384v384h-256v-384h-384q-26 0 -45 19t-19 45v480q0 1 0.5 3t0.5 3l575 474l575 -474q1 -2 1 -6zM1631 613l-62 -74q-8 -9 -21 -11h-3q-13 0 -21 7l-692 577l-692 -577q-12 -8 -24 -7q-13 2 -21 11l-62 74q-8 10 -7 23.5t11 21.5
+l719 599q32 26 76 26t76 -26l244 -204v195q0 14 9 23t23 9h192q14 0 23 -9t9 -23v-408l219 -182q10 -8 11 -21.5t-7 -23.5z" />
+    <glyph glyph-name="file_alt" unicode="&#xf016;" 
+d="M1468 1156q28 -28 48 -76t20 -88v-1152q0 -40 -28 -68t-68 -28h-1344q-40 0 -68 28t-28 68v1600q0 40 28 68t68 28h896q40 0 88 -20t76 -48zM1024 1400v-376h376q-10 29 -22 41l-313 313q-12 12 -41 22zM1408 -128v1024h-416q-40 0 -68 28t-28 68v416h-768v-1536h1280z
+" />
+    <glyph glyph-name="time" unicode="&#xf017;" 
+d="M896 992v-448q0 -14 -9 -23t-23 -9h-320q-14 0 -23 9t-9 23v64q0 14 9 23t23 9h224v352q0 14 9 23t23 9h64q14 0 23 -9t9 -23zM1312 640q0 148 -73 273t-198 198t-273 73t-273 -73t-198 -198t-73 -273t73 -273t198 -198t273 -73t273 73t198 198t73 273zM1536 640
+q0 -209 -103 -385.5t-279.5 -279.5t-385.5 -103t-385.5 103t-279.5 279.5t-103 385.5t103 385.5t279.5 279.5t385.5 103t385.5 -103t279.5 -279.5t103 -385.5z" />
+    <glyph glyph-name="road" unicode="&#xf018;" horiz-adv-x="1920" 
+d="M1111 540v4l-24 320q-1 13 -11 22.5t-23 9.5h-186q-13 0 -23 -9.5t-11 -22.5l-24 -320v-4q-1 -12 8 -20t21 -8h244q12 0 21 8t8 20zM1870 73q0 -73 -46 -73h-704q13 0 22 9.5t8 22.5l-20 256q-1 13 -11 22.5t-23 9.5h-272q-13 0 -23 -9.5t-11 -22.5l-20 -256
+q-1 -13 8 -22.5t22 -9.5h-704q-46 0 -46 73q0 54 26 116l417 1044q8 19 26 33t38 14h339q-13 0 -23 -9.5t-11 -22.5l-15 -192q-1 -14 8 -23t22 -9h166q13 0 22 9t8 23l-15 192q-1 13 -11 22.5t-23 9.5h339q20 0 38 -14t26 -33l417 -1044q26 -62 26 -116z" />
+    <glyph glyph-name="download_alt" unicode="&#xf019;" horiz-adv-x="1664" 
+d="M1280 192q0 26 -19 45t-45 19t-45 -19t-19 -45t19 -45t45 -19t45 19t19 45zM1536 192q0 26 -19 45t-45 19t-45 -19t-19 -45t19 -45t45 -19t45 19t19 45zM1664 416v-320q0 -40 -28 -68t-68 -28h-1472q-40 0 -68 28t-28 68v320q0 40 28 68t68 28h465l135 -136
+q58 -56 136 -56t136 56l136 136h464q40 0 68 -28t28 -68zM1339 985q17 -41 -14 -70l-448 -448q-18 -19 -45 -19t-45 19l-448 448q-31 29 -14 70q17 39 59 39h256v448q0 26 19 45t45 19h256q26 0 45 -19t19 -45v-448h256q42 0 59 -39z" />
+    <glyph glyph-name="download" unicode="&#xf01a;" 
+d="M1120 608q0 -12 -10 -24l-319 -319q-11 -9 -23 -9t-23 9l-320 320q-15 16 -7 35q8 20 30 20h192v352q0 14 9 23t23 9h192q14 0 23 -9t9 -23v-352h192q14 0 23 -9t9 -23zM768 1184q-148 0 -273 -73t-198 -198t-73 -273t73 -273t198 -198t273 -73t273 73t198 198t73 273
+t-73 273t-198 198t-273 73zM1536 640q0 -209 -103 -385.5t-279.5 -279.5t-385.5 -103t-385.5 103t-279.5 279.5t-103 385.5t103 385.5t279.5 279.5t385.5 103t385.5 -103t279.5 -279.5t103 -385.5z" />
+    <glyph glyph-name="upload" unicode="&#xf01b;" 
+d="M1118 660q-8 -20 -30 -20h-192v-352q0 -14 -9 -23t-23 -9h-192q-14 0 -23 9t-9 23v352h-192q-14 0 -23 9t-9 23q0 12 10 24l319 319q11 9 23 9t23 -9l320 -320q15 -16 7 -35zM768 1184q-148 0 -273 -73t-198 -198t-73 -273t73 -273t198 -198t273 -73t273 73t198 198
+t73 273t-73 273t-198 198t-273 73zM1536 640q0 -209 -103 -385.5t-279.5 -279.5t-385.5 -103t-385.5 103t-279.5 279.5t-103 385.5t103 385.5t279.5 279.5t385.5 103t385.5 -103t279.5 -279.5t103 -385.5z" />
+    <glyph glyph-name="inbox" unicode="&#xf01c;" 
+d="M1023 576h316q-1 3 -2.5 8.5t-2.5 7.5l-212 496h-708l-212 -496q-1 -3 -2.5 -8.5t-2.5 -7.5h316l95 -192h320zM1536 546v-482q0 -26 -19 -45t-45 -19h-1408q-26 0 -45 19t-19 45v482q0 62 25 123l238 552q10 25 36.5 42t52.5 17h832q26 0 52.5 -17t36.5 -42l238 -552
+q25 -61 25 -123z" />
+    <glyph glyph-name="play_circle" unicode="&#xf01d;" 
+d="M1184 640q0 -37 -32 -55l-544 -320q-15 -9 -32 -9q-16 0 -32 8q-32 19 -32 56v640q0 37 32 56q33 18 64 -1l544 -320q32 -18 32 -55zM1312 640q0 148 -73 273t-198 198t-273 73t-273 -73t-198 -198t-73 -273t73 -273t198 -198t273 -73t273 73t198 198t73 273zM1536 640
+q0 -209 -103 -385.5t-279.5 -279.5t-385.5 -103t-385.5 103t-279.5 279.5t-103 385.5t103 385.5t279.5 279.5t385.5 103t385.5 -103t279.5 -279.5t103 -385.5z" />
+    <glyph glyph-name="repeat" unicode="&#xf01e;" 
+d="M1536 1280v-448q0 -26 -19 -45t-45 -19h-448q-42 0 -59 40q-17 39 14 69l138 138q-148 137 -349 137q-104 0 -198.5 -40.5t-163.5 -109.5t-109.5 -163.5t-40.5 -198.5t40.5 -198.5t109.5 -163.5t163.5 -109.5t198.5 -40.5q119 0 225 52t179 147q7 10 23 12q15 0 25 -9
+l137 -138q9 -8 9.5 -20.5t-7.5 -22.5q-109 -132 -264 -204.5t-327 -72.5q-156 0 -298 61t-245 164t-164 245t-61 298t61 298t164 245t245 164t298 61q147 0 284.5 -55.5t244.5 -156.5l130 129q29 31 70 14q39 -17 39 -59z" />
+    <glyph glyph-name="refresh" unicode="&#xf021;" 
+d="M1511 480q0 -5 -1 -7q-64 -268 -268 -434.5t-478 -166.5q-146 0 -282.5 55t-243.5 157l-129 -129q-19 -19 -45 -19t-45 19t-19 45v448q0 26 19 45t45 19h448q26 0 45 -19t19 -45t-19 -45l-137 -137q71 -66 161 -102t187 -36q134 0 250 65t186 179q11 17 53 117
+q8 23 30 23h192q13 0 22.5 -9.5t9.5 -22.5zM1536 1280v-448q0 -26 -19 -45t-45 -19h-448q-26 0 -45 19t-19 45t19 45l138 138q-148 137 -349 137q-134 0 -250 -65t-186 -179q-11 -17 -53 -117q-8 -23 -30 -23h-199q-13 0 -22.5 9.5t-9.5 22.5v7q65 268 270 434.5t480 166.5
+q146 0 284 -55.5t245 -156.5l130 129q19 19 45 19t45 -19t19 -45z" />
+    <glyph glyph-name="list_alt" unicode="&#xf022;" horiz-adv-x="1792" 
+d="M384 352v-64q0 -13 -9.5 -22.5t-22.5 -9.5h-64q-13 0 -22.5 9.5t-9.5 22.5v64q0 13 9.5 22.5t22.5 9.5h64q13 0 22.5 -9.5t9.5 -22.5zM384 608v-64q0 -13 -9.5 -22.5t-22.5 -9.5h-64q-13 0 -22.5 9.5t-9.5 22.5v64q0 13 9.5 22.5t22.5 9.5h64q13 0 22.5 -9.5t9.5 -22.5z
+M384 864v-64q0 -13 -9.5 -22.5t-22.5 -9.5h-64q-13 0 -22.5 9.5t-9.5 22.5v64q0 13 9.5 22.5t22.5 9.5h64q13 0 22.5 -9.5t9.5 -22.5zM1536 352v-64q0 -13 -9.5 -22.5t-22.5 -9.5h-960q-13 0 -22.5 9.5t-9.5 22.5v64q0 13 9.5 22.5t22.5 9.5h960q13 0 22.5 -9.5t9.5 -22.5z
+M1536 608v-64q0 -13 -9.5 -22.5t-22.5 -9.5h-960q-13 0 -22.5 9.5t-9.5 22.5v64q0 13 9.5 22.5t22.5 9.5h960q13 0 22.5 -9.5t9.5 -22.5zM1536 864v-64q0 -13 -9.5 -22.5t-22.5 -9.5h-960q-13 0 -22.5 9.5t-9.5 22.5v64q0 13 9.5 22.5t22.5 9.5h960q13 0 22.5 -9.5
+t9.5 -22.5zM1664 160v832q0 13 -9.5 22.5t-22.5 9.5h-1472q-13 0 -22.5 -9.5t-9.5 -22.5v-832q0 -13 9.5 -22.5t22.5 -9.5h1472q13 0 22.5 9.5t9.5 22.5zM1792 1248v-1088q0 -66 -47 -113t-113 -47h-1472q-66 0 -113 47t-47 113v1088q0 66 47 113t113 47h1472q66 0 113 -47
+t47 -113z" />
+    <glyph glyph-name="lock" unicode="&#xf023;" horiz-adv-x="1152" 
+d="M320 768h512v192q0 106 -75 181t-181 75t-181 -75t-75 -181v-192zM1152 672v-576q0 -40 -28 -68t-68 -28h-960q-40 0 -68 28t-28 68v576q0 40 28 68t68 28h32v192q0 184 132 316t316 132t316 -132t132 -316v-192h32q40 0 68 -28t28 -68z" />
+    <glyph glyph-name="flag" unicode="&#xf024;" horiz-adv-x="1792" 
+d="M320 1280q0 -72 -64 -110v-1266q0 -13 -9.5 -22.5t-22.5 -9.5h-64q-13 0 -22.5 9.5t-9.5 22.5v1266q-64 38 -64 110q0 53 37.5 90.5t90.5 37.5t90.5 -37.5t37.5 -90.5zM1792 1216v-763q0 -25 -12.5 -38.5t-39.5 -27.5q-215 -116 -369 -116q-61 0 -123.5 22t-108.5 48
+t-115.5 48t-142.5 22q-192 0 -464 -146q-17 -9 -33 -9q-26 0 -45 19t-19 45v742q0 32 31 55q21 14 79 43q236 120 421 120q107 0 200 -29t219 -88q38 -19 88 -19q54 0 117.5 21t110 47t88 47t54.5 21q26 0 45 -19t19 -45z" />
+    <glyph glyph-name="headphones" unicode="&#xf025;" horiz-adv-x="1664" 
+d="M1664 650q0 -166 -60 -314l-20 -49l-185 -33q-22 -83 -90.5 -136.5t-156.5 -53.5v-32q0 -14 -9 -23t-23 -9h-64q-14 0 -23 9t-9 23v576q0 14 9 23t23 9h64q14 0 23 -9t9 -23v-32q71 0 130 -35.5t93 -95.5l68 12q29 95 29 193q0 148 -88 279t-236.5 209t-315.5 78
+t-315.5 -78t-236.5 -209t-88 -279q0 -98 29 -193l68 -12q34 60 93 95.5t130 35.5v32q0 14 9 23t23 9h64q14 0 23 -9t9 -23v-576q0 -14 -9 -23t-23 -9h-64q-14 0 -23 9t-9 23v32q-88 0 -156.5 53.5t-90.5 136.5l-185 33l-20 49q-60 148 -60 314q0 151 67 291t179 242.5
+t266 163.5t320 61t320 -61t266 -163.5t179 -242.5t67 -291z" />
+    <glyph glyph-name="volume_off" unicode="&#xf026;" horiz-adv-x="768" 
+d="M768 1184v-1088q0 -26 -19 -45t-45 -19t-45 19l-333 333h-262q-26 0 -45 19t-19 45v384q0 26 19 45t45 19h262l333 333q19 19 45 19t45 -19t19 -45z" />
+    <glyph glyph-name="volume_down" unicode="&#xf027;" horiz-adv-x="1152" 
+d="M768 1184v-1088q0 -26 -19 -45t-45 -19t-45 19l-333 333h-262q-26 0 -45 19t-19 45v384q0 26 19 45t45 19h262l333 333q19 19 45 19t45 -19t19 -45zM1152 640q0 -76 -42.5 -141.5t-112.5 -93.5q-10 -5 -25 -5q-26 0 -45 18.5t-19 45.5q0 21 12 35.5t29 25t34 23t29 36
+t12 56.5t-12 56.5t-29 36t-34 23t-29 25t-12 35.5q0 27 19 45.5t45 18.5q15 0 25 -5q70 -27 112.5 -93t42.5 -142z" />
+    <glyph glyph-name="volume_up" unicode="&#xf028;" horiz-adv-x="1664" 
+d="M768 1184v-1088q0 -26 -19 -45t-45 -19t-45 19l-333 333h-262q-26 0 -45 19t-19 45v384q0 26 19 45t45 19h262l333 333q19 19 45 19t45 -19t19 -45zM1152 640q0 -76 -42.5 -141.5t-112.5 -93.5q-10 -5 -25 -5q-26 0 -45 18.5t-19 45.5q0 21 12 35.5t29 25t34 23t29 36
+t12 56.5t-12 56.5t-29 36t-34 23t-29 25t-12 35.5q0 27 19 45.5t45 18.5q15 0 25 -5q70 -27 112.5 -93t42.5 -142zM1408 640q0 -153 -85 -282.5t-225 -188.5q-13 -5 -25 -5q-27 0 -46 19t-19 45q0 39 39 59q56 29 76 44q74 54 115.5 135.5t41.5 173.5t-41.5 173.5
+t-115.5 135.5q-20 15 -76 44q-39 20 -39 59q0 26 19 45t45 19q13 0 26 -5q140 -59 225 -188.5t85 -282.5zM1664 640q0 -230 -127 -422.5t-338 -283.5q-13 -5 -26 -5q-26 0 -45 19t-19 45q0 36 39 59q7 4 22.5 10.5t22.5 10.5q46 25 82 51q123 91 192 227t69 289t-69 289
+t-192 227q-36 26 -82 51q-7 4 -22.5 10.5t-22.5 10.5q-39 23 -39 59q0 26 19 45t45 19q13 0 26 -5q211 -91 338 -283.5t127 -422.5z" />
+    <glyph glyph-name="qrcode" unicode="&#xf029;" horiz-adv-x="1408" 
+d="M384 384v-128h-128v128h128zM384 1152v-128h-128v128h128zM1152 1152v-128h-128v128h128zM128 129h384v383h-384v-383zM128 896h384v384h-384v-384zM896 896h384v384h-384v-384zM640 640v-640h-640v640h640zM1152 128v-128h-128v128h128zM1408 128v-128h-128v128h128z
+M1408 640v-384h-384v128h-128v-384h-128v640h384v-128h128v128h128zM640 1408v-640h-640v640h640zM1408 1408v-640h-640v640h640z" />
+    <glyph glyph-name="barcode" unicode="&#xf02a;" horiz-adv-x="1792" 
+d="M63 0h-63v1408h63v-1408zM126 1h-32v1407h32v-1407zM220 1h-31v1407h31v-1407zM377 1h-31v1407h31v-1407zM534 1h-62v1407h62v-1407zM660 1h-31v1407h31v-1407zM723 1h-31v1407h31v-1407zM786 1h-31v1407h31v-1407zM943 1h-63v1407h63v-1407zM1100 1h-63v1407h63v-1407z
+M1226 1h-63v1407h63v-1407zM1352 1h-63v1407h63v-1407zM1446 1h-63v1407h63v-1407zM1635 1h-94v1407h94v-1407zM1698 1h-32v1407h32v-1407zM1792 0h-63v1408h63v-1408z" />
+    <glyph glyph-name="tag" unicode="&#xf02b;" 
+d="M448 1088q0 53 -37.5 90.5t-90.5 37.5t-90.5 -37.5t-37.5 -90.5t37.5 -90.5t90.5 -37.5t90.5 37.5t37.5 90.5zM1515 512q0 -53 -37 -90l-491 -492q-39 -37 -91 -37q-53 0 -90 37l-715 716q-38 37 -64.5 101t-26.5 117v416q0 52 38 90t90 38h416q53 0 117 -26.5t102 -64.5
+l715 -714q37 -39 37 -91z" />
+    <glyph glyph-name="tags" unicode="&#xf02c;" horiz-adv-x="1920" 
+d="M448 1088q0 53 -37.5 90.5t-90.5 37.5t-90.5 -37.5t-37.5 -90.5t37.5 -90.5t90.5 -37.5t90.5 37.5t37.5 90.5zM1515 512q0 -53 -37 -90l-491 -492q-39 -37 -91 -37q-53 0 -90 37l-715 716q-38 37 -64.5 101t-26.5 117v416q0 52 38 90t90 38h416q53 0 117 -26.5t102 -64.5
+l715 -714q37 -39 37 -91zM1899 512q0 -53 -37 -90l-491 -492q-39 -37 -91 -37q-36 0 -59 14t-53 45l470 470q37 37 37 90q0 52 -37 91l-715 714q-38 38 -102 64.5t-117 26.5h224q53 0 117 -26.5t102 -64.5l715 -714q37 -39 37 -91z" />
+    <glyph glyph-name="book" unicode="&#xf02d;" horiz-adv-x="1664" 
+d="M1639 1058q40 -57 18 -129l-275 -906q-19 -64 -76.5 -107.5t-122.5 -43.5h-923q-77 0 -148.5 53.5t-99.5 131.5q-24 67 -2 127q0 4 3 27t4 37q1 8 -3 21.5t-3 19.5q2 11 8 21t16.5 23.5t16.5 23.5q23 38 45 91.5t30 91.5q3 10 0.5 30t-0.5 28q3 11 17 28t17 23
+q21 36 42 92t25 90q1 9 -2.5 32t0.5 28q4 13 22 30.5t22 22.5q19 26 42.5 84.5t27.5 96.5q1 8 -3 25.5t-2 26.5q2 8 9 18t18 23t17 21q8 12 16.5 30.5t15 35t16 36t19.5 32t26.5 23.5t36 11.5t47.5 -5.5l-1 -3q38 9 51 9h761q74 0 114 -56t18 -130l-274 -906
+q-36 -119 -71.5 -153.5t-128.5 -34.5h-869q-27 0 -38 -15q-11 -16 -1 -43q24 -70 144 -70h923q29 0 56 15.5t35 41.5l300 987q7 22 5 57q38 -15 59 -43zM575 1056q-4 -13 2 -22.5t20 -9.5h608q13 0 25.5 9.5t16.5 22.5l21 64q4 13 -2 22.5t-20 9.5h-608q-13 0 -25.5 -9.5
+t-16.5 -22.5zM492 800q-4 -13 2 -22.5t20 -9.5h608q13 0 25.5 9.5t16.5 22.5l21 64q4 13 -2 22.5t-20 9.5h-608q-13 0 -25.5 -9.5t-16.5 -22.5z" />
+    <glyph glyph-name="bookmark" unicode="&#xf02e;" horiz-adv-x="1280" 
+d="M1164 1408q23 0 44 -9q33 -13 52.5 -41t19.5 -62v-1289q0 -34 -19.5 -62t-52.5 -41q-19 -8 -44 -8q-48 0 -83 32l-441 424l-441 -424q-36 -33 -83 -33q-23 0 -44 9q-33 13 -52.5 41t-19.5 62v1289q0 34 19.5 62t52.5 41q21 9 44 9h1048z" />
+    <glyph glyph-name="print" unicode="&#xf02f;" horiz-adv-x="1664" 
+d="M384 0h896v256h-896v-256zM384 640h896v384h-160q-40 0 -68 28t-28 68v160h-640v-640zM1536 576q0 26 -19 45t-45 19t-45 -19t-19 -45t19 -45t45 -19t45 19t19 45zM1664 576v-416q0 -13 -9.5 -22.5t-22.5 -9.5h-224v-160q0 -40 -28 -68t-68 -28h-960q-40 0 -68 28t-28 68
+v160h-224q-13 0 -22.5 9.5t-9.5 22.5v416q0 79 56.5 135.5t135.5 56.5h64v544q0 40 28 68t68 28h672q40 0 88 -20t76 -48l152 -152q28 -28 48 -76t20 -88v-256h64q79 0 135.5 -56.5t56.5 -135.5z" />
+    <glyph glyph-name="camera" unicode="&#xf030;" horiz-adv-x="1920" 
+d="M960 864q119 0 203.5 -84.5t84.5 -203.5t-84.5 -203.5t-203.5 -84.5t-203.5 84.5t-84.5 203.5t84.5 203.5t203.5 84.5zM1664 1280q106 0 181 -75t75 -181v-896q0 -106 -75 -181t-181 -75h-1408q-106 0 -181 75t-75 181v896q0 106 75 181t181 75h224l51 136
+q19 49 69.5 84.5t103.5 35.5h512q53 0 103.5 -35.5t69.5 -84.5l51 -136h224zM960 128q185 0 316.5 131.5t131.5 316.5t-131.5 316.5t-316.5 131.5t-316.5 -131.5t-131.5 -316.5t131.5 -316.5t316.5 -131.5z" />
+    <glyph glyph-name="font" unicode="&#xf031;" horiz-adv-x="1664" 
+d="M725 977l-170 -450q33 0 136.5 -2t160.5 -2q19 0 57 2q-87 253 -184 452zM0 -128l2 79q23 7 56 12.5t57 10.5t49.5 14.5t44.5 29t31 50.5l237 616l280 724h75h53q8 -14 11 -21l205 -480q33 -78 106 -257.5t114 -274.5q15 -34 58 -144.5t72 -168.5q20 -45 35 -57
+q19 -15 88 -29.5t84 -20.5q6 -38 6 -57q0 -5 -0.5 -13.5t-0.5 -12.5q-63 0 -190 8t-191 8q-76 0 -215 -7t-178 -8q0 43 4 78l131 28q1 0 12.5 2.5t15.5 3.5t14.5 4.5t15 6.5t11 8t9 11t2.5 14q0 16 -31 96.5t-72 177.5t-42 100l-450 2q-26 -58 -76.5 -195.5t-50.5 -162.5
+q0 -22 14 -37.5t43.5 -24.5t48.5 -13.5t57 -8.5t41 -4q1 -19 1 -58q0 -9 -2 -27q-58 0 -174.5 10t-174.5 10q-8 0 -26.5 -4t-21.5 -4q-80 -14 -188 -14z" />
+    <glyph glyph-name="bold" unicode="&#xf032;" horiz-adv-x="1408" 
+d="M555 15q74 -32 140 -32q376 0 376 335q0 114 -41 180q-27 44 -61.5 74t-67.5 46.5t-80.5 25t-84 10.5t-94.5 2q-73 0 -101 -10q0 -53 -0.5 -159t-0.5 -158q0 -8 -1 -67.5t-0.5 -96.5t4.5 -83.5t12 -66.5zM541 761q42 -7 109 -7q82 0 143 13t110 44.5t74.5 89.5t25.5 142
+q0 70 -29 122.5t-79 82t-108 43.5t-124 14q-50 0 -130 -13q0 -50 4 -151t4 -152q0 -27 -0.5 -80t-0.5 -79q0 -46 1 -69zM0 -128l2 94q15 4 85 16t106 27q7 12 12.5 27t8.5 33.5t5.5 32.5t3 37.5t0.5 34v35.5v30q0 982 -22 1025q-4 8 -22 14.5t-44.5 11t-49.5 7t-48.5 4.5
+t-30.5 3l-4 83q98 2 340 11.5t373 9.5q23 0 68 -0.5t68 -0.5q70 0 136.5 -13t128.5 -42t108 -71t74 -104.5t28 -137.5q0 -52 -16.5 -95.5t-39 -72t-64.5 -57.5t-73 -45t-84 -40q154 -35 256.5 -134t102.5 -248q0 -100 -35 -179.5t-93.5 -130.5t-138 -85.5t-163.5 -48.5
+t-176 -14q-44 0 -132 3t-132 3q-106 0 -307 -11t-231 -12z" />
+    <glyph glyph-name="italic" unicode="&#xf033;" horiz-adv-x="1024" 
+d="M0 -126l17 85q22 7 61.5 16.5t72 19t59.5 23.5q28 35 41 101q1 7 62 289t114 543.5t52 296.5v25q-24 13 -54.5 18.5t-69.5 8t-58 5.5l19 103q33 -2 120 -6.5t149.5 -7t120.5 -2.5q48 0 98.5 2.5t121 7t98.5 6.5q-5 -39 -19 -89q-30 -10 -101.5 -28.5t-108.5 -33.5
+q-8 -19 -14 -42.5t-9 -40t-7.5 -45.5t-6.5 -42q-27 -148 -87.5 -419.5t-77.5 -355.5q-2 -9 -13 -58t-20 -90t-16 -83.5t-6 -57.5l1 -18q17 -4 185 -31q-3 -44 -16 -99q-11 0 -32.5 -1.5t-32.5 -1.5q-29 0 -87 10t-86 10q-138 2 -206 2q-51 0 -143 -9t-121 -11z" />
+    <glyph glyph-name="text_height" unicode="&#xf034;" horiz-adv-x="1792" 
+d="M1744 128q33 0 42 -18.5t-11 -44.5l-126 -162q-20 -26 -49 -26t-49 26l-126 162q-20 26 -11 44.5t42 18.5h80v1024h-80q-33 0 -42 18.5t11 44.5l126 162q20 26 49 26t49 -26l126 -162q20 -26 11 -44.5t-42 -18.5h-80v-1024h80zM81 1407l54 -27q12 -5 211 -5q44 0 132 2
+t132 2q36 0 107.5 -0.5t107.5 -0.5h293q6 0 21 -0.5t20.5 0t16 3t17.5 9t15 17.5l42 1q4 0 14 -0.5t14 -0.5q2 -112 2 -336q0 -80 -5 -109q-39 -14 -68 -18q-25 44 -54 128q-3 9 -11 48t-14.5 73.5t-7.5 35.5q-6 8 -12 12.5t-15.5 6t-13 2.5t-18 0.5t-16.5 -0.5
+q-17 0 -66.5 0.5t-74.5 0.5t-64 -2t-71 -6q-9 -81 -8 -136q0 -94 2 -388t2 -455q0 -16 -2.5 -71.5t0 -91.5t12.5 -69q40 -21 124 -42.5t120 -37.5q5 -40 5 -50q0 -14 -3 -29l-34 -1q-76 -2 -218 8t-207 10q-50 0 -151 -9t-152 -9q-3 51 -3 52v9q17 27 61.5 43t98.5 29t78 27
+q19 42 19 383q0 101 -3 303t-3 303v117q0 2 0.5 15.5t0.5 25t-1 25.5t-3 24t-5 14q-11 12 -162 12q-33 0 -93 -12t-80 -26q-19 -13 -34 -72.5t-31.5 -111t-42.5 -53.5q-42 26 -56 44v383z" />
+    <glyph glyph-name="text_width" unicode="&#xf035;" 
+d="M81 1407l54 -27q12 -5 211 -5q44 0 132 2t132 2q70 0 246.5 1t304.5 0.5t247 -4.5q33 -1 56 31l42 1q4 0 14 -0.5t14 -0.5q2 -112 2 -336q0 -80 -5 -109q-39 -14 -68 -18q-25 44 -54 128q-3 9 -11 47.5t-15 73.5t-7 36q-10 13 -27 19q-5 2 -66 2q-30 0 -93 1t-103 1
+t-94 -2t-96 -7q-9 -81 -8 -136l1 -152v52q0 -55 1 -154t1.5 -180t0.5 -153q0 -16 -2.5 -71.5t0 -91.5t12.5 -69q40 -21 124 -42.5t120 -37.5q5 -40 5 -50q0 -14 -3 -29l-34 -1q-76 -2 -218 8t-207 10q-50 0 -151 -9t-152 -9q-3 51 -3 52v9q17 27 61.5 43t98.5 29t78 27
+q7 16 11.5 74t6 145.5t1.5 155t-0.5 153.5t-0.5 89q0 7 -2.5 21.5t-2.5 22.5q0 7 0.5 44t1 73t0 76.5t-3 67.5t-6.5 32q-11 12 -162 12q-41 0 -163 -13.5t-138 -24.5q-19 -12 -34 -71.5t-31.5 -111.5t-42.5 -54q-42 26 -56 44v383zM1310 125q12 0 42 -19.5t57.5 -41.5
+t59.5 -49t36 -30q26 -21 26 -49t-26 -49q-4 -3 -36 -30t-59.5 -49t-57.5 -41.5t-42 -19.5q-13 0 -20.5 10.5t-10 28.5t-2.5 33.5t1.5 33t1.5 19.5h-1024q0 -2 1.5 -19.5t1.5 -33t-2.5 -33.5t-10 -28.5t-20.5 -10.5q-12 0 -42 19.5t-57.5 41.5t-59.5 49t-36 30q-26 21 -26 49
+t26 49q4 3 36 30t59.5 49t57.5 41.5t42 19.5q13 0 20.5 -10.5t10 -28.5t2.5 -33.5t-1.5 -33t-1.5 -19.5h1024q0 2 -1.5 19.5t-1.5 33t2.5 33.5t10 28.5t20.5 10.5z" />
+    <glyph glyph-name="align_left" unicode="&#xf036;" horiz-adv-x="1792" 
+d="M1792 192v-128q0 -26 -19 -45t-45 -19h-1664q-26 0 -45 19t-19 45v128q0 26 19 45t45 19h1664q26 0 45 -19t19 -45zM1408 576v-128q0 -26 -19 -45t-45 -19h-1280q-26 0 -45 19t-19 45v128q0 26 19 45t45 19h1280q26 0 45 -19t19 -45zM1664 960v-128q0 -26 -19 -45
+t-45 -19h-1536q-26 0 -45 19t-19 45v128q0 26 19 45t45 19h1536q26 0 45 -19t19 -45zM1280 1344v-128q0 -26 -19 -45t-45 -19h-1152q-26 0 -45 19t-19 45v128q0 26 19 45t45 19h1152q26 0 45 -19t19 -45z" />
+    <glyph glyph-name="align_center" unicode="&#xf037;" horiz-adv-x="1792" 
+d="M1792 192v-128q0 -26 -19 -45t-45 -19h-1664q-26 0 -45 19t-19 45v128q0 26 19 45t45 19h1664q26 0 45 -19t19 -45zM1408 576v-128q0 -26 -19 -45t-45 -19h-896q-26 0 -45 19t-19 45v128q0 26 19 45t45 19h896q26 0 45 -19t19 -45zM1664 960v-128q0 -26 -19 -45t-45 -19
+h-1408q-26 0 -45 19t-19 45v128q0 26 19 45t45 19h1408q26 0 45 -19t19 -45zM1280 1344v-128q0 -26 -19 -45t-45 -19h-640q-26 0 -45 19t-19 45v128q0 26 19 45t45 19h640q26 0 45 -19t19 -45z" />
+    <glyph glyph-name="align_right" unicode="&#xf038;" horiz-adv-x="1792" 
+d="M1792 192v-128q0 -26 -19 -45t-45 -19h-1664q-26 0 -45 19t-19 45v128q0 26 19 45t45 19h1664q26 0 45 -19t19 -45zM1792 576v-128q0 -26 -19 -45t-45 -19h-1280q-26 0 -45 19t-19 45v128q0 26 19 45t45 19h1280q26 0 45 -19t19 -45zM1792 960v-128q0 -26 -19 -45
+t-45 -19h-1536q-26 0 -45 19t-19 45v128q0 26 19 45t45 19h1536q26 0 45 -19t19 -45zM1792 1344v-128q0 -26 -19 -45t-45 -19h-1152q-26 0 -45 19t-19 45v128q0 26 19 45t45 19h1152q26 0 45 -19t19 -45z" />
+    <glyph glyph-name="align_justify" unicode="&#xf039;" horiz-adv-x="1792" 
+d="M1792 192v-128q0 -26 -19 -45t-45 -19h-1664q-26 0 -45 19t-19 45v128q0 26 19 45t45 19h1664q26 0 45 -19t19 -45zM1792 576v-128q0 -26 -19 -45t-45 -19h-1664q-26 0 -45 19t-19 45v128q0 26 19 45t45 19h1664q26 0 45 -19t19 -45zM1792 960v-128q0 -26 -19 -45
+t-45 -19h-1664q-26 0 -45 19t-19 45v128q0 26 19 45t45 19h1664q26 0 45 -19t19 -45zM1792 1344v-128q0 -26 -19 -45t-45 -19h-1664q-26 0 -45 19t-19 45v128q0 26 19 45t45 19h1664q26 0 45 -19t19 -45z" />
+    <glyph glyph-name="list" unicode="&#xf03a;" horiz-adv-x="1792" 
+d="M256 224v-192q0 -13 -9.5 -22.5t-22.5 -9.5h-192q-13 0 -22.5 9.5t-9.5 22.5v192q0 13 9.5 22.5t22.5 9.5h192q13 0 22.5 -9.5t9.5 -22.5zM256 608v-192q0 -13 -9.5 -22.5t-22.5 -9.5h-192q-13 0 -22.5 9.5t-9.5 22.5v192q0 13 9.5 22.5t22.5 9.5h192q13 0 22.5 -9.5
+t9.5 -22.5zM256 992v-192q0 -13 -9.5 -22.5t-22.5 -9.5h-192q-13 0 -22.5 9.5t-9.5 22.5v192q0 13 9.5 22.5t22.5 9.5h192q13 0 22.5 -9.5t9.5 -22.5zM1792 224v-192q0 -13 -9.5 -22.5t-22.5 -9.5h-1344q-13 0 -22.5 9.5t-9.5 22.5v192q0 13 9.5 22.5t22.5 9.5h1344
+q13 0 22.5 -9.5t9.5 -22.5zM256 1376v-192q0 -13 -9.5 -22.5t-22.5 -9.5h-192q-13 0 -22.5 9.5t-9.5 22.5v192q0 13 9.5 22.5t22.5 9.5h192q13 0 22.5 -9.5t9.5 -22.5zM1792 608v-192q0 -13 -9.5 -22.5t-22.5 -9.5h-1344q-13 0 -22.5 9.5t-9.5 22.5v192q0 13 9.5 22.5
+t22.5 9.5h1344q13 0 22.5 -9.5t9.5 -22.5zM1792 992v-192q0 -13 -9.5 -22.5t-22.5 -9.5h-1344q-13 0 -22.5 9.5t-9.5 22.5v192q0 13 9.5 22.5t22.5 9.5h1344q13 0 22.5 -9.5t9.5 -22.5zM1792 1376v-192q0 -13 -9.5 -22.5t-22.5 -9.5h-1344q-13 0 -22.5 9.5t-9.5 22.5v192
+q0 13 9.5 22.5t22.5 9.5h1344q13 0 22.5 -9.5t9.5 -22.5z" />
+    <glyph glyph-name="indent_left" unicode="&#xf03b;" horiz-adv-x="1792" 
+d="M384 992v-576q0 -13 -9.5 -22.5t-22.5 -9.5q-14 0 -23 9l-288 288q-9 9 -9 23t9 23l288 288q9 9 23 9q13 0 22.5 -9.5t9.5 -22.5zM1792 224v-192q0 -13 -9.5 -22.5t-22.5 -9.5h-1728q-13 0 -22.5 9.5t-9.5 22.5v192q0 13 9.5 22.5t22.5 9.5h1728q13 0 22.5 -9.5
+t9.5 -22.5zM1792 608v-192q0 -13 -9.5 -22.5t-22.5 -9.5h-1088q-13 0 -22.5 9.5t-9.5 22.5v192q0 13 9.5 22.5t22.5 9.5h1088q13 0 22.5 -9.5t9.5 -22.5zM1792 992v-192q0 -13 -9.5 -22.5t-22.5 -9.5h-1088q-13 0 -22.5 9.5t-9.5 22.5v192q0 13 9.5 22.5t22.5 9.5h1088
+q13 0 22.5 -9.5t9.5 -22.5zM1792 1376v-192q0 -13 -9.5 -22.5t-22.5 -9.5h-1728q-13 0 -22.5 9.5t-9.5 22.5v192q0 13 9.5 22.5t22.5 9.5h1728q13 0 22.5 -9.5t9.5 -22.5z" />
+    <glyph glyph-name="indent_right" unicode="&#xf03c;" horiz-adv-x="1792" 
+d="M352 704q0 -14 -9 -23l-288 -288q-9 -9 -23 -9q-13 0 -22.5 9.5t-9.5 22.5v576q0 13 9.5 22.5t22.5 9.5q14 0 23 -9l288 -288q9 -9 9 -23zM1792 224v-192q0 -13 -9.5 -22.5t-22.5 -9.5h-1728q-13 0 -22.5 9.5t-9.5 22.5v192q0 13 9.5 22.5t22.5 9.5h1728q13 0 22.5 -9.5
+t9.5 -22.5zM1792 608v-192q0 -13 -9.5 -22.5t-22.5 -9.5h-1088q-13 0 -22.5 9.5t-9.5 22.5v192q0 13 9.5 22.5t22.5 9.5h1088q13 0 22.5 -9.5t9.5 -22.5zM1792 992v-192q0 -13 -9.5 -22.5t-22.5 -9.5h-1088q-13 0 -22.5 9.5t-9.5 22.5v192q0 13 9.5 22.5t22.5 9.5h1088
+q13 0 22.5 -9.5t9.5 -22.5zM1792 1376v-192q0 -13 -9.5 -22.5t-22.5 -9.5h-1728q-13 0 -22.5 9.5t-9.5 22.5v192q0 13 9.5 22.5t22.5 9.5h1728q13 0 22.5 -9.5t9.5 -22.5z" />
+    <glyph glyph-name="facetime_video" unicode="&#xf03d;" horiz-adv-x="1792" 
+d="M1792 1184v-1088q0 -42 -39 -59q-13 -5 -25 -5q-27 0 -45 19l-403 403v-166q0 -119 -84.5 -203.5t-203.5 -84.5h-704q-119 0 -203.5 84.5t-84.5 203.5v704q0 119 84.5 203.5t203.5 84.5h704q119 0 203.5 -84.5t84.5 -203.5v-165l403 402q18 19 45 19q12 0 25 -5
+q39 -17 39 -59z" />
+    <glyph glyph-name="picture" unicode="&#xf03e;" horiz-adv-x="1920" 
+d="M640 960q0 -80 -56 -136t-136 -56t-136 56t-56 136t56 136t136 56t136 -56t56 -136zM1664 576v-448h-1408v192l320 320l160 -160l512 512zM1760 1280h-1600q-13 0 -22.5 -9.5t-9.5 -22.5v-1216q0 -13 9.5 -22.5t22.5 -9.5h1600q13 0 22.5 9.5t9.5 22.5v1216
+q0 13 -9.5 22.5t-22.5 9.5zM1920 1248v-1216q0 -66 -47 -113t-113 -47h-1600q-66 0 -113 47t-47 113v1216q0 66 47 113t113 47h1600q66 0 113 -47t47 -113z" />
+    <glyph glyph-name="pencil" unicode="&#xf040;" 
+d="M363 0l91 91l-235 235l-91 -91v-107h128v-128h107zM886 928q0 22 -22 22q-10 0 -17 -7l-542 -542q-7 -7 -7 -17q0 -22 22 -22q10 0 17 7l542 542q7 7 7 17zM832 1120l416 -416l-832 -832h-416v416zM1515 1024q0 -53 -37 -90l-166 -166l-416 416l166 165q36 38 90 38
+q53 0 91 -38l235 -234q37 -39 37 -91z" />
+    <glyph glyph-name="map_marker" unicode="&#xf041;" horiz-adv-x="1024" 
+d="M768 896q0 106 -75 181t-181 75t-181 -75t-75 -181t75 -181t181 -75t181 75t75 181zM1024 896q0 -109 -33 -179l-364 -774q-16 -33 -47.5 -52t-67.5 -19t-67.5 19t-46.5 52l-365 774q-33 70 -33 179q0 212 150 362t362 150t362 -150t150 -362z" />
+    <glyph glyph-name="adjust" unicode="&#xf042;" 
+d="M768 96v1088q-148 0 -273 -73t-198 -198t-73 -273t73 -273t198 -198t273 -73zM1536 640q0 -209 -103 -385.5t-279.5 -279.5t-385.5 -103t-385.5 103t-279.5 279.5t-103 385.5t103 385.5t279.5 279.5t385.5 103t385.5 -103t279.5 -279.5t103 -385.5z" />
+    <glyph glyph-name="tint" unicode="&#xf043;" horiz-adv-x="1024" 
+d="M512 384q0 36 -20 69q-1 1 -15.5 22.5t-25.5 38t-25 44t-21 50.5q-4 16 -21 16t-21 -16q-7 -23 -21 -50.5t-25 -44t-25.5 -38t-15.5 -22.5q-20 -33 -20 -69q0 -53 37.5 -90.5t90.5 -37.5t90.5 37.5t37.5 90.5zM1024 512q0 -212 -150 -362t-362 -150t-362 150t-150 362
+q0 145 81 275q6 9 62.5 90.5t101 151t99.5 178t83 201.5q9 30 34 47t51 17t51.5 -17t33.5 -47q28 -93 83 -201.5t99.5 -178t101 -151t62.5 -90.5q81 -127 81 -275z" />
+    <glyph glyph-name="edit" unicode="&#xf044;" horiz-adv-x="1792" 
+d="M888 352l116 116l-152 152l-116 -116v-56h96v-96h56zM1328 1072q-16 16 -33 -1l-350 -350q-17 -17 -1 -33t33 1l350 350q17 17 1 33zM1408 478v-190q0 -119 -84.5 -203.5t-203.5 -84.5h-832q-119 0 -203.5 84.5t-84.5 203.5v832q0 119 84.5 203.5t203.5 84.5h832
+q63 0 117 -25q15 -7 18 -23q3 -17 -9 -29l-49 -49q-14 -14 -32 -8q-23 6 -45 6h-832q-66 0 -113 -47t-47 -113v-832q0 -66 47 -113t113 -47h832q66 0 113 47t47 113v126q0 13 9 22l64 64q15 15 35 7t20 -29zM1312 1216l288 -288l-672 -672h-288v288zM1756 1084l-92 -92
+l-288 288l92 92q28 28 68 28t68 -28l152 -152q28 -28 28 -68t-28 -68z" />
+    <glyph glyph-name="share" unicode="&#xf045;" horiz-adv-x="1664" 
+d="M1408 547v-259q0 -119 -84.5 -203.5t-203.5 -84.5h-832q-119 0 -203.5 84.5t-84.5 203.5v832q0 119 84.5 203.5t203.5 84.5h255v0q13 0 22.5 -9.5t9.5 -22.5q0 -27 -26 -32q-77 -26 -133 -60q-10 -4 -16 -4h-112q-66 0 -113 -47t-47 -113v-832q0 -66 47 -113t113 -47h832
+q66 0 113 47t47 113v214q0 19 18 29q28 13 54 37q16 16 35 8q21 -9 21 -29zM1645 1043l-384 -384q-18 -19 -45 -19q-12 0 -25 5q-39 17 -39 59v192h-160q-323 0 -438 -131q-119 -137 -74 -473q3 -23 -20 -34q-8 -2 -12 -2q-16 0 -26 13q-10 14 -21 31t-39.5 68.5t-49.5 99.5
+t-38.5 114t-17.5 122q0 49 3.5 91t14 90t28 88t47 81.5t68.5 74t94.5 61.5t124.5 48.5t159.5 30.5t196.5 11h160v192q0 42 39 59q13 5 25 5q26 0 45 -19l384 -384q19 -19 19 -45t-19 -45z" />
+    <glyph glyph-name="check" unicode="&#xf046;" horiz-adv-x="1664" 
+d="M1408 606v-318q0 -119 -84.5 -203.5t-203.5 -84.5h-832q-119 0 -203.5 84.5t-84.5 203.5v832q0 119 84.5 203.5t203.5 84.5h832q63 0 117 -25q15 -7 18 -23q3 -17 -9 -29l-49 -49q-10 -10 -23 -10q-3 0 -9 2q-23 6 -45 6h-832q-66 0 -113 -47t-47 -113v-832
+q0 -66 47 -113t113 -47h832q66 0 113 47t47 113v254q0 13 9 22l64 64q10 10 23 10q6 0 12 -3q20 -8 20 -29zM1639 1095l-814 -814q-24 -24 -57 -24t-57 24l-430 430q-24 24 -24 57t24 57l110 110q24 24 57 24t57 -24l263 -263l647 647q24 24 57 24t57 -24l110 -110
+q24 -24 24 -57t-24 -57z" />
+    <glyph glyph-name="move" unicode="&#xf047;" horiz-adv-x="1792" 
+d="M1792 640q0 -26 -19 -45l-256 -256q-19 -19 -45 -19t-45 19t-19 45v128h-384v-384h128q26 0 45 -19t19 -45t-19 -45l-256 -256q-19 -19 -45 -19t-45 19l-256 256q-19 19 -19 45t19 45t45 19h128v384h-384v-128q0 -26 -19 -45t-45 -19t-45 19l-256 256q-19 19 -19 45
+t19 45l256 256q19 19 45 19t45 -19t19 -45v-128h384v384h-128q-26 0 -45 19t-19 45t19 45l256 256q19 19 45 19t45 -19l256 -256q19 -19 19 -45t-19 -45t-45 -19h-128v-384h384v128q0 26 19 45t45 19t45 -19l256 -256q19 -19 19 -45z" />
+    <glyph glyph-name="step_backward" unicode="&#xf048;" horiz-adv-x="1024" 
+d="M979 1395q19 19 32 13t13 -32v-1472q0 -26 -13 -32t-32 13l-710 710q-9 9 -13 19v-678q0 -26 -19 -45t-45 -19h-128q-26 0 -45 19t-19 45v1408q0 26 19 45t45 19h128q26 0 45 -19t19 -45v-678q4 10 13 19z" />
+    <glyph glyph-name="fast_backward" unicode="&#xf049;" horiz-adv-x="1792" 
+d="M1747 1395q19 19 32 13t13 -32v-1472q0 -26 -13 -32t-32 13l-710 710q-9 9 -13 19v-710q0 -26 -13 -32t-32 13l-710 710q-9 9 -13 19v-678q0 -26 -19 -45t-45 -19h-128q-26 0 -45 19t-19 45v1408q0 26 19 45t45 19h128q26 0 45 -19t19 -45v-678q4 10 13 19l710 710
+q19 19 32 13t13 -32v-710q4 10 13 19z" />
+    <glyph glyph-name="backward" unicode="&#xf04a;" horiz-adv-x="1664" 
+d="M1619 1395q19 19 32 13t13 -32v-1472q0 -26 -13 -32t-32 13l-710 710q-9 9 -13 19v-710q0 -26 -13 -32t-32 13l-710 710q-19 19 -19 45t19 45l710 710q19 19 32 13t13 -32v-710q4 10 13 19z" />
+    <glyph glyph-name="play" unicode="&#xf04b;" horiz-adv-x="1408" 
+d="M1384 609l-1328 -738q-23 -13 -39.5 -3t-16.5 36v1472q0 26 16.5 36t39.5 -3l1328 -738q23 -13 23 -31t-23 -31z" />
+    <glyph glyph-name="pause" unicode="&#xf04c;" 
+d="M1536 1344v-1408q0 -26 -19 -45t-45 -19h-512q-26 0 -45 19t-19 45v1408q0 26 19 45t45 19h512q26 0 45 -19t19 -45zM640 1344v-1408q0 -26 -19 -45t-45 -19h-512q-26 0 -45 19t-19 45v1408q0 26 19 45t45 19h512q26 0 45 -19t19 -45z" />
+    <glyph glyph-name="stop" unicode="&#xf04d;" 
+d="M1536 1344v-1408q0 -26 -19 -45t-45 -19h-1408q-26 0 -45 19t-19 45v1408q0 26 19 45t45 19h1408q26 0 45 -19t19 -45z" />
+    <glyph glyph-name="forward" unicode="&#xf04e;" horiz-adv-x="1664" 
+d="M45 -115q-19 -19 -32 -13t-13 32v1472q0 26 13 32t32 -13l710 -710q9 -9 13 -19v710q0 26 13 32t32 -13l710 -710q19 -19 19 -45t-19 -45l-710 -710q-19 -19 -32 -13t-13 32v710q-4 -10 -13 -19z" />
+    <glyph glyph-name="fast_forward" unicode="&#xf050;" horiz-adv-x="1792" 
+d="M45 -115q-19 -19 -32 -13t-13 32v1472q0 26 13 32t32 -13l710 -710q9 -9 13 -19v710q0 26 13 32t32 -13l710 -710q9 -9 13 -19v678q0 26 19 45t45 19h128q26 0 45 -19t19 -45v-1408q0 -26 -19 -45t-45 -19h-128q-26 0 -45 19t-19 45v678q-4 -10 -13 -19l-710 -710
+q-19 -19 -32 -13t-13 32v710q-4 -10 -13 -19z" />
+    <glyph glyph-name="step_forward" unicode="&#xf051;" horiz-adv-x="1024" 
+d="M45 -115q-19 -19 -32 -13t-13 32v1472q0 26 13 32t32 -13l710 -710q9 -9 13 -19v678q0 26 19 45t45 19h128q26 0 45 -19t19 -45v-1408q0 -26 -19 -45t-45 -19h-128q-26 0 -45 19t-19 45v678q-4 -10 -13 -19z" />
+    <glyph glyph-name="eject" unicode="&#xf052;" horiz-adv-x="1538" 
+d="M14 557l710 710q19 19 45 19t45 -19l710 -710q19 -19 13 -32t-32 -13h-1472q-26 0 -32 13t13 32zM1473 0h-1408q-26 0 -45 19t-19 45v256q0 26 19 45t45 19h1408q26 0 45 -19t19 -45v-256q0 -26 -19 -45t-45 -19z" />
+    <glyph glyph-name="chevron_left" unicode="&#xf053;" horiz-adv-x="1280" 
+d="M1171 1235l-531 -531l531 -531q19 -19 19 -45t-19 -45l-166 -166q-19 -19 -45 -19t-45 19l-742 742q-19 19 -19 45t19 45l742 742q19 19 45 19t45 -19l166 -166q19 -19 19 -45t-19 -45z" />
+    <glyph glyph-name="chevron_right" unicode="&#xf054;" horiz-adv-x="1280" 
+d="M1107 659l-742 -742q-19 -19 -45 -19t-45 19l-166 166q-19 19 -19 45t19 45l531 531l-531 531q-19 19 -19 45t19 45l166 166q19 19 45 19t45 -19l742 -742q19 -19 19 -45t-19 -45z" />
+    <glyph glyph-name="plus_sign" unicode="&#xf055;" 
+d="M1216 576v128q0 26 -19 45t-45 19h-256v256q0 26 -19 45t-45 19h-128q-26 0 -45 -19t-19 -45v-256h-256q-26 0 -45 -19t-19 -45v-128q0 -26 19 -45t45 -19h256v-256q0 -26 19 -45t45 -19h128q26 0 45 19t19 45v256h256q26 0 45 19t19 45zM1536 640q0 -209 -103 -385.5
+t-279.5 -279.5t-385.5 -103t-385.5 103t-279.5 279.5t-103 385.5t103 385.5t279.5 279.5t385.5 103t385.5 -103t279.5 -279.5t103 -385.5z" />
+    <glyph glyph-name="minus_sign" unicode="&#xf056;" 
+d="M1216 576v128q0 26 -19 45t-45 19h-768q-26 0 -45 -19t-19 -45v-128q0 -26 19 -45t45 -19h768q26 0 45 19t19 45zM1536 640q0 -209 -103 -385.5t-279.5 -279.5t-385.5 -103t-385.5 103t-279.5 279.5t-103 385.5t103 385.5t279.5 279.5t385.5 103t385.5 -103t279.5 -279.5
+t103 -385.5z" />
+    <glyph glyph-name="remove_sign" unicode="&#xf057;" 
+d="M1149 414q0 26 -19 45l-181 181l181 181q19 19 19 45q0 27 -19 46l-90 90q-19 19 -46 19q-26 0 -45 -19l-181 -181l-181 181q-19 19 -45 19q-27 0 -46 -19l-90 -90q-19 -19 -19 -46q0 -26 19 -45l181 -181l-181 -181q-19 -19 -19 -45q0 -27 19 -46l90 -90q19 -19 46 -19
+q26 0 45 19l181 181l181 -181q19 -19 45 -19q27 0 46 19l90 90q19 19 19 46zM1536 640q0 -209 -103 -385.5t-279.5 -279.5t-385.5 -103t-385.5 103t-279.5 279.5t-103 385.5t103 385.5t279.5 279.5t385.5 103t385.5 -103t279.5 -279.5t103 -385.5z" />
+    <glyph glyph-name="ok_sign" unicode="&#xf058;" 
+d="M1284 802q0 28 -18 46l-91 90q-19 19 -45 19t-45 -19l-408 -407l-226 226q-19 19 -45 19t-45 -19l-91 -90q-18 -18 -18 -46q0 -27 18 -45l362 -362q19 -19 45 -19q27 0 46 19l543 543q18 18 18 45zM1536 640q0 -209 -103 -385.5t-279.5 -279.5t-385.5 -103t-385.5 103
+t-279.5 279.5t-103 385.5t103 385.5t279.5 279.5t385.5 103t385.5 -103t279.5 -279.5t103 -385.5z" />
+    <glyph glyph-name="question_sign" unicode="&#xf059;" 
+d="M896 160v192q0 14 -9 23t-23 9h-192q-14 0 -23 -9t-9 -23v-192q0 -14 9 -23t23 -9h192q14 0 23 9t9 23zM1152 832q0 88 -55.5 163t-138.5 116t-170 41q-243 0 -371 -213q-15 -24 8 -42l132 -100q7 -6 19 -6q16 0 25 12q53 68 86 92q34 24 86 24q48 0 85.5 -26t37.5 -59
+q0 -38 -20 -61t-68 -45q-63 -28 -115.5 -86.5t-52.5 -125.5v-36q0 -14 9 -23t23 -9h192q14 0 23 9t9 23q0 19 21.5 49.5t54.5 49.5q32 18 49 28.5t46 35t44.5 48t28 60.5t12.5 81zM1536 640q0 -209 -103 -385.5t-279.5 -279.5t-385.5 -103t-385.5 103t-279.5 279.5
+t-103 385.5t103 385.5t279.5 279.5t385.5 103t385.5 -103t279.5 -279.5t103 -385.5z" />
+    <glyph glyph-name="info_sign" unicode="&#xf05a;" 
+d="M1024 160v160q0 14 -9 23t-23 9h-96v512q0 14 -9 23t-23 9h-320q-14 0 -23 -9t-9 -23v-160q0 -14 9 -23t23 -9h96v-320h-96q-14 0 -23 -9t-9 -23v-160q0 -14 9 -23t23 -9h448q14 0 23 9t9 23zM896 1056v160q0 14 -9 23t-23 9h-192q-14 0 -23 -9t-9 -23v-160q0 -14 9 -23
+t23 -9h192q14 0 23 9t9 23zM1536 640q0 -209 -103 -385.5t-279.5 -279.5t-385.5 -103t-385.5 103t-279.5 279.5t-103 385.5t103 385.5t279.5 279.5t385.5 103t385.5 -103t279.5 -279.5t103 -385.5z" />
+    <glyph glyph-name="screenshot" unicode="&#xf05b;" 
+d="M1197 512h-109q-26 0 -45 19t-19 45v128q0 26 19 45t45 19h109q-32 108 -112.5 188.5t-188.5 112.5v-109q0 -26 -19 -45t-45 -19h-128q-26 0 -45 19t-19 45v109q-108 -32 -188.5 -112.5t-112.5 -188.5h109q26 0 45 -19t19 -45v-128q0 -26 -19 -45t-45 -19h-109
+q32 -108 112.5 -188.5t188.5 -112.5v109q0 26 19 45t45 19h128q26 0 45 -19t19 -45v-109q108 32 188.5 112.5t112.5 188.5zM1536 704v-128q0 -26 -19 -45t-45 -19h-143q-37 -161 -154.5 -278.5t-278.5 -154.5v-143q0 -26 -19 -45t-45 -19h-128q-26 0 -45 19t-19 45v143
+q-161 37 -278.5 154.5t-154.5 278.5h-143q-26 0 -45 19t-19 45v128q0 26 19 45t45 19h143q37 161 154.5 278.5t278.5 154.5v143q0 26 19 45t45 19h128q26 0 45 -19t19 -45v-143q161 -37 278.5 -154.5t154.5 -278.5h143q26 0 45 -19t19 -45z" />
+    <glyph glyph-name="remove_circle" unicode="&#xf05c;" 
+d="M1097 457l-146 -146q-10 -10 -23 -10t-23 10l-137 137l-137 -137q-10 -10 -23 -10t-23 10l-146 146q-10 10 -10 23t10 23l137 137l-137 137q-10 10 -10 23t10 23l146 146q10 10 23 10t23 -10l137 -137l137 137q10 10 23 10t23 -10l146 -146q10 -10 10 -23t-10 -23
+l-137 -137l137 -137q10 -10 10 -23t-10 -23zM1312 640q0 148 -73 273t-198 198t-273 73t-273 -73t-198 -198t-73 -273t73 -273t198 -198t273 -73t273 73t198 198t73 273zM1536 640q0 -209 -103 -385.5t-279.5 -279.5t-385.5 -103t-385.5 103t-279.5 279.5t-103 385.5
+t103 385.5t279.5 279.5t385.5 103t385.5 -103t279.5 -279.5t103 -385.5z" />
+    <glyph glyph-name="ok_circle" unicode="&#xf05d;" 
+d="M1171 723l-422 -422q-19 -19 -45 -19t-45 19l-294 294q-19 19 -19 45t19 45l102 102q19 19 45 19t45 -19l147 -147l275 275q19 19 45 19t45 -19l102 -102q19 -19 19 -45t-19 -45zM1312 640q0 148 -73 273t-198 198t-273 73t-273 -73t-198 -198t-73 -273t73 -273t198 -198
+t273 -73t273 73t198 198t73 273zM1536 640q0 -209 -103 -385.5t-279.5 -279.5t-385.5 -103t-385.5 103t-279.5 279.5t-103 385.5t103 385.5t279.5 279.5t385.5 103t385.5 -103t279.5 -279.5t103 -385.5z" />
+    <glyph glyph-name="ban_circle" unicode="&#xf05e;" 
+d="M1312 643q0 161 -87 295l-754 -753q137 -89 297 -89q111 0 211.5 43.5t173.5 116.5t116 174.5t43 212.5zM313 344l755 754q-135 91 -300 91q-148 0 -273 -73t-198 -199t-73 -274q0 -162 89 -299zM1536 643q0 -157 -61 -300t-163.5 -246t-245 -164t-298.5 -61t-298.5 61
+t-245 164t-163.5 246t-61 300t61 299.5t163.5 245.5t245 164t298.5 61t298.5 -61t245 -164t163.5 -245.5t61 -299.5z" />
+    <glyph glyph-name="arrow_left" unicode="&#xf060;" 
+d="M1536 640v-128q0 -53 -32.5 -90.5t-84.5 -37.5h-704l293 -294q38 -36 38 -90t-38 -90l-75 -76q-37 -37 -90 -37q-52 0 -91 37l-651 652q-37 37 -37 90q0 52 37 91l651 650q38 38 91 38q52 0 90 -38l75 -74q38 -38 38 -91t-38 -91l-293 -293h704q52 0 84.5 -37.5
+t32.5 -90.5z" />
+    <glyph glyph-name="arrow_right" unicode="&#xf061;" 
+d="M1472 576q0 -54 -37 -91l-651 -651q-39 -37 -91 -37q-51 0 -90 37l-75 75q-38 38 -38 91t38 91l293 293h-704q-52 0 -84.5 37.5t-32.5 90.5v128q0 53 32.5 90.5t84.5 37.5h704l-293 294q-38 36 -38 90t38 90l75 75q38 38 90 38q53 0 91 -38l651 -651q37 -35 37 -90z" />
+    <glyph glyph-name="arrow_up" unicode="&#xf062;" horiz-adv-x="1664" 
+d="M1611 565q0 -51 -37 -90l-75 -75q-38 -38 -91 -38q-54 0 -90 38l-294 293v-704q0 -52 -37.5 -84.5t-90.5 -32.5h-128q-53 0 -90.5 32.5t-37.5 84.5v704l-294 -293q-36 -38 -90 -38t-90 38l-75 75q-38 38 -38 90q0 53 38 91l651 651q35 37 90 37q54 0 91 -37l651 -651
+q37 -39 37 -91z" />
+    <glyph glyph-name="arrow_down" unicode="&#xf063;" horiz-adv-x="1664" 
+d="M1611 704q0 -53 -37 -90l-651 -652q-39 -37 -91 -37q-53 0 -90 37l-651 652q-38 36 -38 90q0 53 38 91l74 75q39 37 91 37q53 0 90 -37l294 -294v704q0 52 38 90t90 38h128q52 0 90 -38t38 -90v-704l294 294q37 37 90 37q52 0 91 -37l75 -75q37 -39 37 -91z" />
+    <glyph glyph-name="share_alt" unicode="&#xf064;" horiz-adv-x="1792" 
+d="M1792 896q0 -26 -19 -45l-512 -512q-19 -19 -45 -19t-45 19t-19 45v256h-224q-98 0 -175.5 -6t-154 -21.5t-133 -42.5t-105.5 -69.5t-80 -101t-48.5 -138.5t-17.5 -181q0 -55 5 -123q0 -6 2.5 -23.5t2.5 -26.5q0 -15 -8.5 -25t-23.5 -10q-16 0 -28 17q-7 9 -13 22
+t-13.5 30t-10.5 24q-127 285 -127 451q0 199 53 333q162 403 875 403h224v256q0 26 19 45t45 19t45 -19l512 -512q19 -19 19 -45z" />
+    <glyph glyph-name="resize_full" unicode="&#xf065;" 
+d="M755 480q0 -13 -10 -23l-332 -332l144 -144q19 -19 19 -45t-19 -45t-45 -19h-448q-26 0 -45 19t-19 45v448q0 26 19 45t45 19t45 -19l144 -144l332 332q10 10 23 10t23 -10l114 -114q10 -10 10 -23zM1536 1344v-448q0 -26 -19 -45t-45 -19t-45 19l-144 144l-332 -332
+q-10 -10 -23 -10t-23 10l-114 114q-10 10 -10 23t10 23l332 332l-144 144q-19 19 -19 45t19 45t45 19h448q26 0 45 -19t19 -45z" />
+    <glyph glyph-name="resize_small" unicode="&#xf066;" 
+d="M768 576v-448q0 -26 -19 -45t-45 -19t-45 19l-144 144l-332 -332q-10 -10 -23 -10t-23 10l-114 114q-10 10 -10 23t10 23l332 332l-144 144q-19 19 -19 45t19 45t45 19h448q26 0 45 -19t19 -45zM1523 1248q0 -13 -10 -23l-332 -332l144 -144q19 -19 19 -45t-19 -45
+t-45 -19h-448q-26 0 -45 19t-19 45v448q0 26 19 45t45 19t45 -19l144 -144l332 332q10 10 23 10t23 -10l114 -114q10 -10 10 -23z" />
+    <glyph glyph-name="plus" unicode="&#xf067;" horiz-adv-x="1408" 
+d="M1408 800v-192q0 -40 -28 -68t-68 -28h-416v-416q0 -40 -28 -68t-68 -28h-192q-40 0 -68 28t-28 68v416h-416q-40 0 -68 28t-28 68v192q0 40 28 68t68 28h416v416q0 40 28 68t68 28h192q40 0 68 -28t28 -68v-416h416q40 0 68 -28t28 -68z" />
+    <glyph glyph-name="minus" unicode="&#xf068;" horiz-adv-x="1408" 
+d="M1408 800v-192q0 -40 -28 -68t-68 -28h-1216q-40 0 -68 28t-28 68v192q0 40 28 68t68 28h1216q40 0 68 -28t28 -68z" />
+    <glyph glyph-name="asterisk" unicode="&#xf069;" horiz-adv-x="1664" 
+d="M1482 486q46 -26 59.5 -77.5t-12.5 -97.5l-64 -110q-26 -46 -77.5 -59.5t-97.5 12.5l-266 153v-307q0 -52 -38 -90t-90 -38h-128q-52 0 -90 38t-38 90v307l-266 -153q-46 -26 -97.5 -12.5t-77.5 59.5l-64 110q-26 46 -12.5 97.5t59.5 77.5l266 154l-266 154
+q-46 26 -59.5 77.5t12.5 97.5l64 110q26 46 77.5 59.5t97.5 -12.5l266 -153v307q0 52 38 90t90 38h128q52 0 90 -38t38 -90v-307l266 153q46 26 97.5 12.5t77.5 -59.5l64 -110q26 -46 12.5 -97.5t-59.5 -77.5l-266 -154z" />
+    <glyph glyph-name="exclamation_sign" unicode="&#xf06a;" 
+d="M768 1408q209 0 385.5 -103t279.5 -279.5t103 -385.5t-103 -385.5t-279.5 -279.5t-385.5 -103t-385.5 103t-279.5 279.5t-103 385.5t103 385.5t279.5 279.5t385.5 103zM896 161v190q0 14 -9 23.5t-22 9.5h-192q-13 0 -23 -10t-10 -23v-190q0 -13 10 -23t23 -10h192
+q13 0 22 9.5t9 23.5zM894 505l18 621q0 12 -10 18q-10 8 -24 8h-220q-14 0 -24 -8q-10 -6 -10 -18l17 -621q0 -10 10 -17.5t24 -7.5h185q14 0 23.5 7.5t10.5 17.5z" />
+    <glyph glyph-name="gift" unicode="&#xf06b;" 
+d="M928 180v56v468v192h-320v-192v-468v-56q0 -25 18 -38.5t46 -13.5h192q28 0 46 13.5t18 38.5zM472 1024h195l-126 161q-26 31 -69 31q-40 0 -68 -28t-28 -68t28 -68t68 -28zM1160 1120q0 40 -28 68t-68 28q-43 0 -69 -31l-125 -161h194q40 0 68 28t28 68zM1536 864v-320
+q0 -14 -9 -23t-23 -9h-96v-416q0 -40 -28 -68t-68 -28h-1088q-40 0 -68 28t-28 68v416h-96q-14 0 -23 9t-9 23v320q0 14 9 23t23 9h440q-93 0 -158.5 65.5t-65.5 158.5t65.5 158.5t158.5 65.5q107 0 168 -77l128 -165l128 165q61 77 168 77q93 0 158.5 -65.5t65.5 -158.5
+t-65.5 -158.5t-158.5 -65.5h440q14 0 23 -9t9 -23z" />
+    <glyph glyph-name="leaf" unicode="&#xf06c;" horiz-adv-x="1792" 
+d="M1280 832q0 26 -19 45t-45 19q-172 0 -318 -49.5t-259.5 -134t-235.5 -219.5q-19 -21 -19 -45q0 -26 19 -45t45 -19q24 0 45 19q27 24 74 71t67 66q137 124 268.5 176t313.5 52q26 0 45 19t19 45zM1792 1030q0 -95 -20 -193q-46 -224 -184.5 -383t-357.5 -268
+q-214 -108 -438 -108q-148 0 -286 47q-15 5 -88 42t-96 37q-16 0 -39.5 -32t-45 -70t-52.5 -70t-60 -32q-43 0 -63.5 17.5t-45.5 59.5q-2 4 -6 11t-5.5 10t-3 9.5t-1.5 13.5q0 35 31 73.5t68 65.5t68 56t31 48q0 4 -14 38t-16 44q-9 51 -9 104q0 115 43.5 220t119 184.5
+t170.5 139t204 95.5q55 18 145 25.5t179.5 9t178.5 6t163.5 24t113.5 56.5l29.5 29.5t29.5 28t27 20t36.5 16t43.5 4.5q39 0 70.5 -46t47.5 -112t24 -124t8 -96z" />
+    <glyph glyph-name="fire" unicode="&#xf06d;" horiz-adv-x="1408" 
+d="M1408 -160v-64q0 -13 -9.5 -22.5t-22.5 -9.5h-1344q-13 0 -22.5 9.5t-9.5 22.5v64q0 13 9.5 22.5t22.5 9.5h1344q13 0 22.5 -9.5t9.5 -22.5zM1152 896q0 -78 -24.5 -144t-64 -112.5t-87.5 -88t-96 -77.5t-87.5 -72t-64 -81.5t-24.5 -96.5q0 -96 67 -224l-4 1l1 -1
+q-90 41 -160 83t-138.5 100t-113.5 122.5t-72.5 150.5t-27.5 184q0 78 24.5 144t64 112.5t87.5 88t96 77.5t87.5 72t64 81.5t24.5 96.5q0 94 -66 224l3 -1l-1 1q90 -41 160 -83t138.5 -100t113.5 -122.5t72.5 -150.5t27.5 -184z" />
+    <glyph glyph-name="eye_open" unicode="&#xf06e;" horiz-adv-x="1792" 
+d="M1664 576q-152 236 -381 353q61 -104 61 -225q0 -185 -131.5 -316.5t-316.5 -131.5t-316.5 131.5t-131.5 316.5q0 121 61 225q-229 -117 -381 -353q133 -205 333.5 -326.5t434.5 -121.5t434.5 121.5t333.5 326.5zM944 960q0 20 -14 34t-34 14q-125 0 -214.5 -89.5
+t-89.5 -214.5q0 -20 14 -34t34 -14t34 14t14 34q0 86 61 147t147 61q20 0 34 14t14 34zM1792 576q0 -34 -20 -69q-140 -230 -376.5 -368.5t-499.5 -138.5t-499.5 139t-376.5 368q-20 35 -20 69t20 69q140 229 376.5 368t499.5 139t499.5 -139t376.5 -368q20 -35 20 -69z" />
+    <glyph glyph-name="eye_close" unicode="&#xf070;" horiz-adv-x="1792" 
+d="M555 201l78 141q-87 63 -136 159t-49 203q0 121 61 225q-229 -117 -381 -353q167 -258 427 -375zM944 960q0 20 -14 34t-34 14q-125 0 -214.5 -89.5t-89.5 -214.5q0 -20 14 -34t34 -14t34 14t14 34q0 86 61 147t147 61q20 0 34 14t14 34zM1307 1151q0 -7 -1 -9
+q-106 -189 -316 -567t-315 -566l-49 -89q-10 -16 -28 -16q-12 0 -134 70q-16 10 -16 28q0 12 44 87q-143 65 -263.5 173t-208.5 245q-20 31 -20 69t20 69q153 235 380 371t496 136q89 0 180 -17l54 97q10 16 28 16q5 0 18 -6t31 -15.5t33 -18.5t31.5 -18.5t19.5 -11.5
+q16 -10 16 -27zM1344 704q0 -139 -79 -253.5t-209 -164.5l280 502q8 -45 8 -84zM1792 576q0 -35 -20 -69q-39 -64 -109 -145q-150 -172 -347.5 -267t-419.5 -95l74 132q212 18 392.5 137t301.5 307q-115 179 -282 294l63 112q95 -64 182.5 -153t144.5 -184q20 -34 20 -69z
+" />
+    <glyph glyph-name="warning_sign" unicode="&#xf071;" horiz-adv-x="1792" 
+d="M1024 161v190q0 14 -9.5 23.5t-22.5 9.5h-192q-13 0 -22.5 -9.5t-9.5 -23.5v-190q0 -14 9.5 -23.5t22.5 -9.5h192q13 0 22.5 9.5t9.5 23.5zM1022 535l18 459q0 12 -10 19q-13 11 -24 11h-220q-11 0 -24 -11q-10 -7 -10 -21l17 -457q0 -10 10 -16.5t24 -6.5h185
+q14 0 23.5 6.5t10.5 16.5zM1008 1469l768 -1408q35 -63 -2 -126q-17 -29 -46.5 -46t-63.5 -17h-1536q-34 0 -63.5 17t-46.5 46q-37 63 -2 126l768 1408q17 31 47 49t65 18t65 -18t47 -49z" />
+    <glyph glyph-name="plane" unicode="&#xf072;" horiz-adv-x="1408" 
+d="M1376 1376q44 -52 12 -148t-108 -172l-161 -161l160 -696q5 -19 -12 -33l-128 -96q-7 -6 -19 -6q-4 0 -7 1q-15 3 -21 16l-279 508l-259 -259l53 -194q5 -17 -8 -31l-96 -96q-9 -9 -23 -9h-2q-15 2 -24 13l-189 252l-252 189q-11 7 -13 23q-1 13 9 25l96 97q9 9 23 9
+q6 0 8 -1l194 -53l259 259l-508 279q-14 8 -17 24q-2 16 9 27l128 128q14 13 30 8l665 -159l160 160q76 76 172 108t148 -12z" />
+    <glyph glyph-name="calendar" unicode="&#xf073;" horiz-adv-x="1664" 
+d="M128 -128h288v288h-288v-288zM480 -128h320v288h-320v-288zM128 224h288v320h-288v-320zM480 224h320v320h-320v-320zM128 608h288v288h-288v-288zM864 -128h320v288h-320v-288zM480 608h320v288h-320v-288zM1248 -128h288v288h-288v-288zM864 224h320v320h-320v-320z
+M512 1088v288q0 13 -9.5 22.5t-22.5 9.5h-64q-13 0 -22.5 -9.5t-9.5 -22.5v-288q0 -13 9.5 -22.5t22.5 -9.5h64q13 0 22.5 9.5t9.5 22.5zM1248 224h288v320h-288v-320zM864 608h320v288h-320v-288zM1248 608h288v288h-288v-288zM1280 1088v288q0 13 -9.5 22.5t-22.5 9.5h-64
+q-13 0 -22.5 -9.5t-9.5 -22.5v-288q0 -13 9.5 -22.5t22.5 -9.5h64q13 0 22.5 9.5t9.5 22.5zM1664 1152v-1280q0 -52 -38 -90t-90 -38h-1408q-52 0 -90 38t-38 90v1280q0 52 38 90t90 38h128v96q0 66 47 113t113 47h64q66 0 113 -47t47 -113v-96h384v96q0 66 47 113t113 47
+h64q66 0 113 -47t47 -113v-96h128q52 0 90 -38t38 -90z" />
+    <glyph glyph-name="random" unicode="&#xf074;" horiz-adv-x="1792" 
+d="M666 1055q-60 -92 -137 -273q-22 45 -37 72.5t-40.5 63.5t-51 56.5t-63 35t-81.5 14.5h-224q-14 0 -23 9t-9 23v192q0 14 9 23t23 9h224q250 0 410 -225zM1792 256q0 -14 -9 -23l-320 -320q-9 -9 -23 -9q-13 0 -22.5 9.5t-9.5 22.5v192q-32 0 -85 -0.5t-81 -1t-73 1
+t-71 5t-64 10.5t-63 18.5t-58 28.5t-59 40t-55 53.5t-56 69.5q59 93 136 273q22 -45 37 -72.5t40.5 -63.5t51 -56.5t63 -35t81.5 -14.5h256v192q0 14 9 23t23 9q12 0 24 -10l319 -319q9 -9 9 -23zM1792 1152q0 -14 -9 -23l-320 -320q-9 -9 -23 -9q-13 0 -22.5 9.5t-9.5 22.5
+v192h-256q-48 0 -87 -15t-69 -45t-51 -61.5t-45 -77.5q-32 -62 -78 -171q-29 -66 -49.5 -111t-54 -105t-64 -100t-74 -83t-90 -68.5t-106.5 -42t-128 -16.5h-224q-14 0 -23 9t-9 23v192q0 14 9 23t23 9h224q48 0 87 15t69 45t51 61.5t45 77.5q32 62 78 171q29 66 49.5 111
+t54 105t64 100t74 83t90 68.5t106.5 42t128 16.5h256v192q0 14 9 23t23 9q12 0 24 -10l319 -319q9 -9 9 -23z" />
+    <glyph glyph-name="comment" unicode="&#xf075;" horiz-adv-x="1792" 
+d="M1792 640q0 -174 -120 -321.5t-326 -233t-450 -85.5q-70 0 -145 8q-198 -175 -460 -242q-49 -14 -114 -22q-17 -2 -30.5 9t-17.5 29v1q-3 4 -0.5 12t2 10t4.5 9.5l6 9t7 8.5t8 9q7 8 31 34.5t34.5 38t31 39.5t32.5 51t27 59t26 76q-157 89 -247.5 220t-90.5 281
+q0 130 71 248.5t191 204.5t286 136.5t348 50.5q244 0 450 -85.5t326 -233t120 -321.5z" />
+    <glyph glyph-name="magnet" unicode="&#xf076;" 
+d="M1536 704v-128q0 -201 -98.5 -362t-274 -251.5t-395.5 -90.5t-395.5 90.5t-274 251.5t-98.5 362v128q0 26 19 45t45 19h384q26 0 45 -19t19 -45v-128q0 -52 23.5 -90t53.5 -57t71 -30t64 -13t44 -2t44 2t64 13t71 30t53.5 57t23.5 90v128q0 26 19 45t45 19h384
+q26 0 45 -19t19 -45zM512 1344v-384q0 -26 -19 -45t-45 -19h-384q-26 0 -45 19t-19 45v384q0 26 19 45t45 19h384q26 0 45 -19t19 -45zM1536 1344v-384q0 -26 -19 -45t-45 -19h-384q-26 0 -45 19t-19 45v384q0 26 19 45t45 19h384q26 0 45 -19t19 -45z" />
+    <glyph glyph-name="chevron_up" unicode="&#xf077;" horiz-adv-x="1792" 
+d="M1683 205l-166 -165q-19 -19 -45 -19t-45 19l-531 531l-531 -531q-19 -19 -45 -19t-45 19l-166 165q-19 19 -19 45.5t19 45.5l742 741q19 19 45 19t45 -19l742 -741q19 -19 19 -45.5t-19 -45.5z" />
+    <glyph glyph-name="chevron_down" unicode="&#xf078;" horiz-adv-x="1792" 
+d="M1683 728l-742 -741q-19 -19 -45 -19t-45 19l-742 741q-19 19 -19 45.5t19 45.5l166 165q19 19 45 19t45 -19l531 -531l531 531q19 19 45 19t45 -19l166 -165q19 -19 19 -45.5t-19 -45.5z" />
+    <glyph glyph-name="retweet" unicode="&#xf079;" horiz-adv-x="1920" 
+d="M1280 32q0 -13 -9.5 -22.5t-22.5 -9.5h-960q-8 0 -13.5 2t-9 7t-5.5 8t-3 11.5t-1 11.5v13v11v160v416h-192q-26 0 -45 19t-19 45q0 24 15 41l320 384q19 22 49 22t49 -22l320 -384q15 -17 15 -41q0 -26 -19 -45t-45 -19h-192v-384h576q16 0 25 -11l160 -192q7 -10 7 -21
+zM1920 448q0 -24 -15 -41l-320 -384q-20 -23 -49 -23t-49 23l-320 384q-15 17 -15 41q0 26 19 45t45 19h192v384h-576q-16 0 -25 12l-160 192q-7 9 -7 20q0 13 9.5 22.5t22.5 9.5h960q8 0 13.5 -2t9 -7t5.5 -8t3 -11.5t1 -11.5v-13v-11v-160v-416h192q26 0 45 -19t19 -45z
+" />
+    <glyph glyph-name="shopping_cart" unicode="&#xf07a;" horiz-adv-x="1664" 
+d="M640 0q0 -52 -38 -90t-90 -38t-90 38t-38 90t38 90t90 38t90 -38t38 -90zM1536 0q0 -52 -38 -90t-90 -38t-90 38t-38 90t38 90t90 38t90 -38t38 -90zM1664 1088v-512q0 -24 -16.5 -42.5t-40.5 -21.5l-1044 -122q13 -60 13 -70q0 -16 -24 -64h920q26 0 45 -19t19 -45
+t-19 -45t-45 -19h-1024q-26 0 -45 19t-19 45q0 11 8 31.5t16 36t21.5 40t15.5 29.5l-177 823h-204q-26 0 -45 19t-19 45t19 45t45 19h256q16 0 28.5 -6.5t19.5 -15.5t13 -24.5t8 -26t5.5 -29.5t4.5 -26h1201q26 0 45 -19t19 -45z" />
+    <glyph glyph-name="folder_close" unicode="&#xf07b;" horiz-adv-x="1664" 
+d="M1664 928v-704q0 -92 -66 -158t-158 -66h-1216q-92 0 -158 66t-66 158v960q0 92 66 158t158 66h320q92 0 158 -66t66 -158v-32h672q92 0 158 -66t66 -158z" />
+    <glyph glyph-name="folder_open" unicode="&#xf07c;" horiz-adv-x="1920" 
+d="M1879 584q0 -31 -31 -66l-336 -396q-43 -51 -120.5 -86.5t-143.5 -35.5h-1088q-34 0 -60.5 13t-26.5 43q0 31 31 66l336 396q43 51 120.5 86.5t143.5 35.5h1088q34 0 60.5 -13t26.5 -43zM1536 928v-160h-832q-94 0 -197 -47.5t-164 -119.5l-337 -396l-5 -6q0 4 -0.5 12.5
+t-0.5 12.5v960q0 92 66 158t158 66h320q92 0 158 -66t66 -158v-32h544q92 0 158 -66t66 -158z" />
+    <glyph glyph-name="resize_vertical" unicode="&#xf07d;" horiz-adv-x="768" 
+d="M704 1216q0 -26 -19 -45t-45 -19h-128v-1024h128q26 0 45 -19t19 -45t-19 -45l-256 -256q-19 -19 -45 -19t-45 19l-256 256q-19 19 -19 45t19 45t45 19h128v1024h-128q-26 0 -45 19t-19 45t19 45l256 256q19 19 45 19t45 -19l256 -256q19 -19 19 -45z" />
+    <glyph glyph-name="resize_horizontal" unicode="&#xf07e;" horiz-adv-x="1792" 
+d="M1792 640q0 -26 -19 -45l-256 -256q-19 -19 -45 -19t-45 19t-19 45v128h-1024v-128q0 -26 -19 -45t-45 -19t-45 19l-256 256q-19 19 -19 45t19 45l256 256q19 19 45 19t45 -19t19 -45v-128h1024v128q0 26 19 45t45 19t45 -19l256 -256q19 -19 19 -45z" />
+    <glyph glyph-name="bar_chart" unicode="&#xf080;" horiz-adv-x="2048" 
+d="M640 640v-512h-256v512h256zM1024 1152v-1024h-256v1024h256zM2048 0v-128h-2048v1536h128v-1408h1920zM1408 896v-768h-256v768h256zM1792 1280v-1152h-256v1152h256z" />
+    <glyph glyph-name="twitter_sign" unicode="&#xf081;" 
+d="M1280 926q-56 -25 -121 -34q68 40 93 117q-65 -38 -134 -51q-61 66 -153 66q-87 0 -148.5 -61.5t-61.5 -148.5q0 -29 5 -48q-129 7 -242 65t-192 155q-29 -50 -29 -106q0 -114 91 -175q-47 1 -100 26v-2q0 -75 50 -133.5t123 -72.5q-29 -8 -51 -8q-13 0 -39 4
+q21 -63 74.5 -104t121.5 -42q-116 -90 -261 -90q-26 0 -50 3q148 -94 322 -94q112 0 210 35.5t168 95t120.5 137t75 162t24.5 168.5q0 18 -1 27q63 45 105 109zM1536 1120v-960q0 -119 -84.5 -203.5t-203.5 -84.5h-960q-119 0 -203.5 84.5t-84.5 203.5v960q0 119 84.5 203.5
+t203.5 84.5h960q119 0 203.5 -84.5t84.5 -203.5z" />
+    <glyph glyph-name="facebook_sign" unicode="&#xf082;" 
+d="M1248 1408q119 0 203.5 -84.5t84.5 -203.5v-960q0 -119 -84.5 -203.5t-203.5 -84.5h-188v595h199l30 232h-229v148q0 56 23.5 84t91.5 28l122 1v207q-63 9 -178 9q-136 0 -217.5 -80t-81.5 -226v-171h-200v-232h200v-595h-532q-119 0 -203.5 84.5t-84.5 203.5v960
+q0 119 84.5 203.5t203.5 84.5h960z" />
+    <glyph glyph-name="camera_retro" unicode="&#xf083;" horiz-adv-x="1792" 
+d="M928 704q0 14 -9 23t-23 9q-66 0 -113 -47t-47 -113q0 -14 9 -23t23 -9t23 9t9 23q0 40 28 68t68 28q14 0 23 9t9 23zM1152 574q0 -106 -75 -181t-181 -75t-181 75t-75 181t75 181t181 75t181 -75t75 -181zM128 0h1536v128h-1536v-128zM1280 574q0 159 -112.5 271.5
+t-271.5 112.5t-271.5 -112.5t-112.5 -271.5t112.5 -271.5t271.5 -112.5t271.5 112.5t112.5 271.5zM256 1216h384v128h-384v-128zM128 1024h1536v118v138h-828l-64 -128h-644v-128zM1792 1280v-1280q0 -53 -37.5 -90.5t-90.5 -37.5h-1536q-53 0 -90.5 37.5t-37.5 90.5v1280
+q0 53 37.5 90.5t90.5 37.5h1536q53 0 90.5 -37.5t37.5 -90.5z" />
+    <glyph glyph-name="key" unicode="&#xf084;" horiz-adv-x="1792" 
+d="M832 1024q0 80 -56 136t-136 56t-136 -56t-56 -136q0 -42 19 -83q-41 19 -83 19q-80 0 -136 -56t-56 -136t56 -136t136 -56t136 56t56 136q0 42 -19 83q41 -19 83 -19q80 0 136 56t56 136zM1683 320q0 -17 -49 -66t-66 -49q-9 0 -28.5 16t-36.5 33t-38.5 40t-24.5 26
+l-96 -96l220 -220q28 -28 28 -68q0 -42 -39 -81t-81 -39q-40 0 -68 28l-671 671q-176 -131 -365 -131q-163 0 -265.5 102.5t-102.5 265.5q0 160 95 313t248 248t313 95q163 0 265.5 -102.5t102.5 -265.5q0 -189 -131 -365l355 -355l96 96q-3 3 -26 24.5t-40 38.5t-33 36.5
+t-16 28.5q0 17 49 66t66 49q13 0 23 -10q6 -6 46 -44.5t82 -79.5t86.5 -86t73 -78t28.5 -41z" />
+    <glyph glyph-name="cogs" unicode="&#xf085;" horiz-adv-x="1920" 
+d="M896 640q0 106 -75 181t-181 75t-181 -75t-75 -181t75 -181t181 -75t181 75t75 181zM1664 128q0 52 -38 90t-90 38t-90 -38t-38 -90q0 -53 37.5 -90.5t90.5 -37.5t90.5 37.5t37.5 90.5zM1664 1152q0 52 -38 90t-90 38t-90 -38t-38 -90q0 -53 37.5 -90.5t90.5 -37.5
+t90.5 37.5t37.5 90.5zM1280 731v-185q0 -10 -7 -19.5t-16 -10.5l-155 -24q-11 -35 -32 -76q34 -48 90 -115q7 -11 7 -20q0 -12 -7 -19q-23 -30 -82.5 -89.5t-78.5 -59.5q-11 0 -21 7l-115 90q-37 -19 -77 -31q-11 -108 -23 -155q-7 -24 -30 -24h-186q-11 0 -20 7.5t-10 17.5
+l-23 153q-34 10 -75 31l-118 -89q-7 -7 -20 -7q-11 0 -21 8q-144 133 -144 160q0 9 7 19q10 14 41 53t47 61q-23 44 -35 82l-152 24q-10 1 -17 9.5t-7 19.5v185q0 10 7 19.5t16 10.5l155 24q11 35 32 76q-34 48 -90 115q-7 11 -7 20q0 12 7 20q22 30 82 89t79 59q11 0 21 -7
+l115 -90q34 18 77 32q11 108 23 154q7 24 30 24h186q11 0 20 -7.5t10 -17.5l23 -153q34 -10 75 -31l118 89q8 7 20 7q11 0 21 -8q144 -133 144 -160q0 -8 -7 -19q-12 -16 -42 -54t-45 -60q23 -48 34 -82l152 -23q10 -2 17 -10.5t7 -19.5zM1920 198v-140q0 -16 -149 -31
+q-12 -27 -30 -52q51 -113 51 -138q0 -4 -4 -7q-122 -71 -124 -71q-8 0 -46 47t-52 68q-20 -2 -30 -2t-30 2q-14 -21 -52 -68t-46 -47q-2 0 -124 71q-4 3 -4 7q0 25 51 138q-18 25 -30 52q-149 15 -149 31v140q0 16 149 31q13 29 30 52q-51 113 -51 138q0 4 4 7q4 2 35 20
+t59 34t30 16q8 0 46 -46.5t52 -67.5q20 2 30 2t30 -2q51 71 92 112l6 2q4 0 124 -70q4 -3 4 -7q0 -25 -51 -138q17 -23 30 -52q149 -15 149 -31zM1920 1222v-140q0 -16 -149 -31q-12 -27 -30 -52q51 -113 51 -138q0 -4 -4 -7q-122 -71 -124 -71q-8 0 -46 47t-52 68
+q-20 -2 -30 -2t-30 2q-14 -21 -52 -68t-46 -47q-2 0 -124 71q-4 3 -4 7q0 25 51 138q-18 25 -30 52q-149 15 -149 31v140q0 16 149 31q13 29 30 52q-51 113 -51 138q0 4 4 7q4 2 35 20t59 34t30 16q8 0 46 -46.5t52 -67.5q20 2 30 2t30 -2q51 71 92 112l6 2q4 0 124 -70
+q4 -3 4 -7q0 -25 -51 -138q17 -23 30 -52q149 -15 149 -31z" />
+    <glyph glyph-name="comments" unicode="&#xf086;" horiz-adv-x="1792" 
+d="M1408 768q0 -139 -94 -257t-256.5 -186.5t-353.5 -68.5q-86 0 -176 16q-124 -88 -278 -128q-36 -9 -86 -16h-3q-11 0 -20.5 8t-11.5 21q-1 3 -1 6.5t0.5 6.5t2 6l2.5 5t3.5 5.5t4 5t4.5 5t4 4.5q5 6 23 25t26 29.5t22.5 29t25 38.5t20.5 44q-124 72 -195 177t-71 224
+q0 139 94 257t256.5 186.5t353.5 68.5t353.5 -68.5t256.5 -186.5t94 -257zM1792 512q0 -120 -71 -224.5t-195 -176.5q10 -24 20.5 -44t25 -38.5t22.5 -29t26 -29.5t23 -25q1 -1 4 -4.5t4.5 -5t4 -5t3.5 -5.5l2.5 -5t2 -6t0.5 -6.5t-1 -6.5q-3 -14 -13 -22t-22 -7
+q-50 7 -86 16q-154 40 -278 128q-90 -16 -176 -16q-271 0 -472 132q58 -4 88 -4q161 0 309 45t264 129q125 92 192 212t67 254q0 77 -23 152q129 -71 204 -178t75 -230z" />
+    <glyph glyph-name="thumbs_up_alt" unicode="&#xf087;" 
+d="M256 192q0 26 -19 45t-45 19t-45 -19t-19 -45t19 -45t45 -19t45 19t19 45zM1408 768q0 51 -39 89.5t-89 38.5h-352q0 58 48 159.5t48 160.5q0 98 -32 145t-128 47q-26 -26 -38 -85t-30.5 -125.5t-59.5 -109.5q-22 -23 -77 -91q-4 -5 -23 -30t-31.5 -41t-34.5 -42.5
+t-40 -44t-38.5 -35.5t-40 -27t-35.5 -9h-32v-640h32q13 0 31.5 -3t33 -6.5t38 -11t35 -11.5t35.5 -12.5t29 -10.5q211 -73 342 -73h121q192 0 192 167q0 26 -5 56q30 16 47.5 52.5t17.5 73.5t-18 69q53 50 53 119q0 25 -10 55.5t-25 47.5q32 1 53.5 47t21.5 81zM1536 769
+q0 -89 -49 -163q9 -33 9 -69q0 -77 -38 -144q3 -21 3 -43q0 -101 -60 -178q1 -139 -85 -219.5t-227 -80.5h-36h-93q-96 0 -189.5 22.5t-216.5 65.5q-116 40 -138 40h-288q-53 0 -90.5 37.5t-37.5 90.5v640q0 53 37.5 90.5t90.5 37.5h274q36 24 137 155q58 75 107 128
+q24 25 35.5 85.5t30.5 126.5t62 108q39 37 90 37q84 0 151 -32.5t102 -101.5t35 -186q0 -93 -48 -192h176q104 0 180 -76t76 -179z" />
+    <glyph glyph-name="thumbs_down_alt" unicode="&#xf088;" 
+d="M256 1088q0 26 -19 45t-45 19t-45 -19t-19 -45t19 -45t45 -19t45 19t19 45zM1408 512q0 35 -21.5 81t-53.5 47q15 17 25 47.5t10 55.5q0 69 -53 119q18 31 18 69q0 37 -17.5 73.5t-47.5 52.5q5 30 5 56q0 85 -49 126t-136 41h-128q-131 0 -342 -73q-5 -2 -29 -10.5
+t-35.5 -12.5t-35 -11.5t-38 -11t-33 -6.5t-31.5 -3h-32v-640h32q16 0 35.5 -9t40 -27t38.5 -35.5t40 -44t34.5 -42.5t31.5 -41t23 -30q55 -68 77 -91q41 -43 59.5 -109.5t30.5 -125.5t38 -85q96 0 128 47t32 145q0 59 -48 160.5t-48 159.5h352q50 0 89 38.5t39 89.5z
+M1536 511q0 -103 -76 -179t-180 -76h-176q48 -99 48 -192q0 -118 -35 -186q-35 -69 -102 -101.5t-151 -32.5q-51 0 -90 37q-34 33 -54 82t-25.5 90.5t-17.5 84.5t-31 64q-48 50 -107 127q-101 131 -137 155h-274q-53 0 -90.5 37.5t-37.5 90.5v640q0 53 37.5 90.5t90.5 37.5
+h288q22 0 138 40q128 44 223 66t200 22h112q140 0 226.5 -79t85.5 -216v-5q60 -77 60 -178q0 -22 -3 -43q38 -67 38 -144q0 -36 -9 -69q49 -73 49 -163z" />
+    <glyph glyph-name="star_half" unicode="&#xf089;" horiz-adv-x="896" 
+d="M832 1504v-1339l-449 -236q-22 -12 -40 -12q-21 0 -31.5 14.5t-10.5 35.5q0 6 2 20l86 500l-364 354q-25 27 -25 48q0 37 56 46l502 73l225 455q19 41 49 41z" />
+    <glyph glyph-name="heart_empty" unicode="&#xf08a;" horiz-adv-x="1792" 
+d="M1664 940q0 81 -21.5 143t-55 98.5t-81.5 59.5t-94 31t-98 8t-112 -25.5t-110.5 -64t-86.5 -72t-60 -61.5q-18 -22 -49 -22t-49 22q-24 28 -60 61.5t-86.5 72t-110.5 64t-112 25.5t-98 -8t-94 -31t-81.5 -59.5t-55 -98.5t-21.5 -143q0 -168 187 -355l581 -560l580 559
+q188 188 188 356zM1792 940q0 -221 -229 -450l-623 -600q-18 -18 -44 -18t-44 18l-624 602q-10 8 -27.5 26t-55.5 65.5t-68 97.5t-53.5 121t-23.5 138q0 220 127 344t351 124q62 0 126.5 -21.5t120 -58t95.5 -68.5t76 -68q36 36 76 68t95.5 68.5t120 58t126.5 21.5
+q224 0 351 -124t127 -344z" />
+    <glyph glyph-name="signout" unicode="&#xf08b;" horiz-adv-x="1664" 
+d="M640 96q0 -4 1 -20t0.5 -26.5t-3 -23.5t-10 -19.5t-20.5 -6.5h-320q-119 0 -203.5 84.5t-84.5 203.5v704q0 119 84.5 203.5t203.5 84.5h320q13 0 22.5 -9.5t9.5 -22.5q0 -4 1 -20t0.5 -26.5t-3 -23.5t-10 -19.5t-20.5 -6.5h-320q-66 0 -113 -47t-47 -113v-704
+q0 -66 47 -113t113 -47h288h11h13t11.5 -1t11.5 -3t8 -5.5t7 -9t2 -13.5zM1568 640q0 -26 -19 -45l-544 -544q-19 -19 -45 -19t-45 19t-19 45v288h-448q-26 0 -45 19t-19 45v384q0 26 19 45t45 19h448v288q0 26 19 45t45 19t45 -19l544 -544q19 -19 19 -45z" />
+    <glyph glyph-name="linkedin_sign" unicode="&#xf08c;" 
+d="M237 122h231v694h-231v-694zM483 1030q-1 52 -36 86t-93 34t-94.5 -34t-36.5 -86q0 -51 35.5 -85.5t92.5 -34.5h1q59 0 95 34.5t36 85.5zM1068 122h231v398q0 154 -73 233t-193 79q-136 0 -209 -117h2v101h-231q3 -66 0 -694h231v388q0 38 7 56q15 35 45 59.5t74 24.5
+q116 0 116 -157v-371zM1536 1120v-960q0 -119 -84.5 -203.5t-203.5 -84.5h-960q-119 0 -203.5 84.5t-84.5 203.5v960q0 119 84.5 203.5t203.5 84.5h960q119 0 203.5 -84.5t84.5 -203.5z" />
+    <glyph glyph-name="pushpin" unicode="&#xf08d;" horiz-adv-x="1152" 
+d="M480 672v448q0 14 -9 23t-23 9t-23 -9t-9 -23v-448q0 -14 9 -23t23 -9t23 9t9 23zM1152 320q0 -26 -19 -45t-45 -19h-429l-51 -483q-2 -12 -10.5 -20.5t-20.5 -8.5h-1q-27 0 -32 27l-76 485h-404q-26 0 -45 19t-19 45q0 123 78.5 221.5t177.5 98.5v512q-52 0 -90 38
+t-38 90t38 90t90 38h640q52 0 90 -38t38 -90t-38 -90t-90 -38v-512q99 0 177.5 -98.5t78.5 -221.5z" />
+    <glyph glyph-name="external_link" unicode="&#xf08e;" horiz-adv-x="1792" 
+d="M1408 608v-320q0 -119 -84.5 -203.5t-203.5 -84.5h-832q-119 0 -203.5 84.5t-84.5 203.5v832q0 119 84.5 203.5t203.5 84.5h704q14 0 23 -9t9 -23v-64q0 -14 -9 -23t-23 -9h-704q-66 0 -113 -47t-47 -113v-832q0 -66 47 -113t113 -47h832q66 0 113 47t47 113v320
+q0 14 9 23t23 9h64q14 0 23 -9t9 -23zM1792 1472v-512q0 -26 -19 -45t-45 -19t-45 19l-176 176l-652 -652q-10 -10 -23 -10t-23 10l-114 114q-10 10 -10 23t10 23l652 652l-176 176q-19 19 -19 45t19 45t45 19h512q26 0 45 -19t19 -45z" />
+    <glyph glyph-name="signin" unicode="&#xf090;" 
+d="M1184 640q0 -26 -19 -45l-544 -544q-19 -19 -45 -19t-45 19t-19 45v288h-448q-26 0 -45 19t-19 45v384q0 26 19 45t45 19h448v288q0 26 19 45t45 19t45 -19l544 -544q19 -19 19 -45zM1536 992v-704q0 -119 -84.5 -203.5t-203.5 -84.5h-320q-13 0 -22.5 9.5t-9.5 22.5
+q0 4 -1 20t-0.5 26.5t3 23.5t10 19.5t20.5 6.5h320q66 0 113 47t47 113v704q0 66 -47 113t-113 47h-288h-11h-13t-11.5 1t-11.5 3t-8 5.5t-7 9t-2 13.5q0 4 -1 20t-0.5 26.5t3 23.5t10 19.5t20.5 6.5h320q119 0 203.5 -84.5t84.5 -203.5z" />
+    <glyph glyph-name="trophy" unicode="&#xf091;" horiz-adv-x="1664" 
+d="M458 653q-74 162 -74 371h-256v-96q0 -78 94.5 -162t235.5 -113zM1536 928v96h-256q0 -209 -74 -371q141 29 235.5 113t94.5 162zM1664 1056v-128q0 -71 -41.5 -143t-112 -130t-173 -97.5t-215.5 -44.5q-42 -54 -95 -95q-38 -34 -52.5 -72.5t-14.5 -89.5q0 -54 30.5 -91
+t97.5 -37q75 0 133.5 -45.5t58.5 -114.5v-64q0 -14 -9 -23t-23 -9h-832q-14 0 -23 9t-9 23v64q0 69 58.5 114.5t133.5 45.5q67 0 97.5 37t30.5 91q0 51 -14.5 89.5t-52.5 72.5q-53 41 -95 95q-113 5 -215.5 44.5t-173 97.5t-112 130t-41.5 143v128q0 40 28 68t68 28h288v96
+q0 66 47 113t113 47h576q66 0 113 -47t47 -113v-96h288q40 0 68 -28t28 -68z" />
+    <glyph glyph-name="github_sign" unicode="&#xf092;" 
+d="M519 336q4 6 -3 13q-9 7 -14 2q-4 -6 3 -13q9 -7 14 -2zM491 377q-5 7 -12 4q-6 -4 0 -12q7 -8 12 -5q6 4 0 13zM450 417q2 4 -5 8q-7 2 -8 -2q-3 -5 4 -8q8 -2 9 2zM471 394q2 1 1.5 4.5t-3.5 5.5q-6 7 -10 3t1 -11q6 -6 11 -2zM557 319q2 7 -9 11q-9 3 -13 -4
+q-2 -7 9 -11q9 -3 13 4zM599 316q0 8 -12 8q-10 0 -10 -8t11 -8t11 8zM638 323q-2 7 -13 5t-9 -9q2 -8 12 -6t10 10zM1280 640q0 212 -150 362t-362 150t-362 -150t-150 -362q0 -167 98 -300.5t252 -185.5q18 -3 26.5 5t8.5 20q0 52 -1 95q-6 -1 -15.5 -2.5t-35.5 -2t-48 4
+t-43.5 20t-29.5 41.5q-23 59 -57 74q-2 1 -4.5 3.5l-8 8t-7 9.5t4 7.5t19.5 3.5q6 0 15 -2t30 -15.5t33 -35.5q16 -28 37.5 -42t43.5 -14t38 3.5t30 9.5q7 47 33 69q-49 6 -86 18.5t-73 39t-55.5 76t-19.5 119.5q0 79 53 137q-24 62 5 136q19 6 54.5 -7.5t60.5 -29.5l26 -16
+q58 17 128 17t128 -17q11 7 28.5 18t55.5 26t57 9q29 -74 5 -136q53 -58 53 -137q0 -57 -14 -100.5t-35.5 -70t-53.5 -44.5t-62.5 -26t-68.5 -12q35 -31 35 -95q0 -40 -0.5 -89t-0.5 -51q0 -12 8.5 -20t26.5 -5q154 52 252 185.5t98 300.5zM1536 1120v-960
+q0 -119 -84.5 -203.5t-203.5 -84.5h-960q-119 0 -203.5 84.5t-84.5 203.5v960q0 119 84.5 203.5t203.5 84.5h960q119 0 203.5 -84.5t84.5 -203.5z" />
+    <glyph glyph-name="upload_alt" unicode="&#xf093;" horiz-adv-x="1664" 
+d="M1280 64q0 26 -19 45t-45 19t-45 -19t-19 -45t19 -45t45 -19t45 19t19 45zM1536 64q0 26 -19 45t-45 19t-45 -19t-19 -45t19 -45t45 -19t45 19t19 45zM1664 288v-320q0 -40 -28 -68t-68 -28h-1472q-40 0 -68 28t-28 68v320q0 40 28 68t68 28h427q21 -56 70.5 -92
+t110.5 -36h256q61 0 110.5 36t70.5 92h427q40 0 68 -28t28 -68zM1339 936q-17 -40 -59 -40h-256v-448q0 -26 -19 -45t-45 -19h-256q-26 0 -45 19t-19 45v448h-256q-42 0 -59 40q-17 39 14 69l448 448q18 19 45 19t45 -19l448 -448q31 -30 14 -69z" />
+    <glyph glyph-name="lemon" unicode="&#xf094;" 
+d="M1407 710q0 44 -7 113.5t-18 96.5q-12 30 -17 44t-9 36.5t-4 48.5q0 23 5 68.5t5 67.5q0 37 -10 55q-4 1 -13 1q-19 0 -58 -4.5t-59 -4.5q-60 0 -176 24t-175 24q-43 0 -94.5 -11.5t-85 -23.5t-89.5 -34q-137 -54 -202 -103q-96 -73 -159.5 -189.5t-88 -236t-24.5 -248.5
+q0 -40 12.5 -120t12.5 -121q0 -23 -11 -66.5t-11 -65.5t12 -36.5t34 -14.5q24 0 72.5 11t73.5 11q57 0 169.5 -15.5t169.5 -15.5q181 0 284 36q129 45 235.5 152.5t166 245.5t59.5 275zM1535 712q0 -165 -70 -327.5t-196 -288t-281 -180.5q-124 -44 -326 -44
+q-57 0 -170 14.5t-169 14.5q-24 0 -72.5 -14.5t-73.5 -14.5q-73 0 -123.5 55.5t-50.5 128.5q0 24 11 68t11 67q0 40 -12.5 120.5t-12.5 121.5q0 111 18 217.5t54.5 209.5t100.5 194t150 156q78 59 232 120q194 78 316 78q60 0 175.5 -24t173.5 -24q19 0 57 5t58 5
+q81 0 118 -50.5t37 -134.5q0 -23 -5 -68t-5 -68q0 -13 2 -25t3.5 -16.5t7.5 -20.5t8 -20q16 -40 25 -118.5t9 -136.5z" />
+    <glyph glyph-name="phone" unicode="&#xf095;" horiz-adv-x="1408" 
+d="M1408 296q0 -27 -10 -70.5t-21 -68.5q-21 -50 -122 -106q-94 -51 -186 -51q-27 0 -53 3.5t-57.5 12.5t-47 14.5t-55.5 20.5t-49 18q-98 35 -175 83q-127 79 -264 216t-216 264q-48 77 -83 175q-3 9 -18 49t-20.5 55.5t-14.5 47t-12.5 57.5t-3.5 53q0 92 51 186
+q56 101 106 122q25 11 68.5 21t70.5 10q14 0 21 -3q18 -6 53 -76q11 -19 30 -54t35 -63.5t31 -53.5q3 -4 17.5 -25t21.5 -35.5t7 -28.5q0 -20 -28.5 -50t-62 -55t-62 -53t-28.5 -46q0 -9 5 -22.5t8.5 -20.5t14 -24t11.5 -19q76 -137 174 -235t235 -174q2 -1 19 -11.5t24 -14
+t20.5 -8.5t22.5 -5q18 0 46 28.5t53 62t55 62t50 28.5q14 0 28.5 -7t35.5 -21.5t25 -17.5q25 -15 53.5 -31t63.5 -35t54 -30q70 -35 76 -53q3 -7 3 -21z" />
+    <glyph glyph-name="check_empty" unicode="&#xf096;" horiz-adv-x="1408" 
+d="M1120 1280h-832q-66 0 -113 -47t-47 -113v-832q0 -66 47 -113t113 -47h832q66 0 113 47t47 113v832q0 66 -47 113t-113 47zM1408 1120v-832q0 -119 -84.5 -203.5t-203.5 -84.5h-832q-119 0 -203.5 84.5t-84.5 203.5v832q0 119 84.5 203.5t203.5 84.5h832
+q119 0 203.5 -84.5t84.5 -203.5z" />
+    <glyph glyph-name="bookmark_empty" unicode="&#xf097;" horiz-adv-x="1280" 
+d="M1152 1280h-1024v-1242l423 406l89 85l89 -85l423 -406v1242zM1164 1408q23 0 44 -9q33 -13 52.5 -41t19.5 -62v-1289q0 -34 -19.5 -62t-52.5 -41q-19 -8 -44 -8q-48 0 -83 32l-441 424l-441 -424q-36 -33 -83 -33q-23 0 -44 9q-33 13 -52.5 41t-19.5 62v1289
+q0 34 19.5 62t52.5 41q21 9 44 9h1048z" />
+    <glyph glyph-name="phone_sign" unicode="&#xf098;" 
+d="M1280 343q0 11 -2 16t-18 16.5t-40.5 25t-47.5 26.5t-45.5 25t-28.5 15q-5 3 -19 13t-25 15t-21 5q-15 0 -36.5 -20.5t-39.5 -45t-38.5 -45t-33.5 -20.5q-7 0 -16.5 3.5t-15.5 6.5t-17 9.5t-14 8.5q-99 55 -170 126.5t-127 170.5q-2 3 -8.5 14t-9.5 17t-6.5 15.5
+t-3.5 16.5q0 13 20.5 33.5t45 38.5t45 39.5t20.5 36.5q0 10 -5 21t-15 25t-13 19q-3 6 -15 28.5t-25 45.5t-26.5 47.5t-25 40.5t-16.5 18t-16 2q-48 0 -101 -22q-46 -21 -80 -94.5t-34 -130.5q0 -16 2.5 -34t5 -30.5t9 -33t10 -29.5t12.5 -33t11 -30q60 -164 216.5 -320.5
+t320.5 -216.5q6 -2 30 -11t33 -12.5t29.5 -10t33 -9t30.5 -5t34 -2.5q57 0 130.5 34t94.5 80q22 53 22 101zM1536 1120v-960q0 -119 -84.5 -203.5t-203.5 -84.5h-960q-119 0 -203.5 84.5t-84.5 203.5v960q0 119 84.5 203.5t203.5 84.5h960q119 0 203.5 -84.5t84.5 -203.5z
+" />
+    <glyph glyph-name="twitter" unicode="&#xf099;" horiz-adv-x="1664" 
+d="M1620 1128q-67 -98 -162 -167q1 -14 1 -42q0 -130 -38 -259.5t-115.5 -248.5t-184.5 -210.5t-258 -146t-323 -54.5q-271 0 -496 145q35 -4 78 -4q225 0 401 138q-105 2 -188 64.5t-114 159.5q33 -5 61 -5q43 0 85 11q-112 23 -185.5 111.5t-73.5 205.5v4q68 -38 146 -41
+q-66 44 -105 115t-39 154q0 88 44 163q121 -149 294.5 -238.5t371.5 -99.5q-8 38 -8 74q0 134 94.5 228.5t228.5 94.5q140 0 236 -102q109 21 205 78q-37 -115 -142 -178q93 10 186 50z" />
+    <glyph glyph-name="facebook" unicode="&#xf09a;" horiz-adv-x="1024" 
+d="M959 1524v-264h-157q-86 0 -116 -36t-30 -108v-189h293l-39 -296h-254v-759h-306v759h-255v296h255v218q0 186 104 288.5t277 102.5q147 0 228 -12z" />
+    <glyph glyph-name="github" unicode="&#xf09b;" 
+d="M768 1408q209 0 385.5 -103t279.5 -279.5t103 -385.5q0 -251 -146.5 -451.5t-378.5 -277.5q-27 -5 -40 7t-13 30q0 3 0.5 76.5t0.5 134.5q0 97 -52 142q57 6 102.5 18t94 39t81 66.5t53 105t20.5 150.5q0 119 -79 206q37 91 -8 204q-28 9 -81 -11t-92 -44l-38 -24
+q-93 26 -192 26t-192 -26q-16 11 -42.5 27t-83.5 38.5t-85 13.5q-45 -113 -8 -204q-79 -87 -79 -206q0 -85 20.5 -150t52.5 -105t80.5 -67t94 -39t102.5 -18q-39 -36 -49 -103q-21 -10 -45 -15t-57 -5t-65.5 21.5t-55.5 62.5q-19 32 -48.5 52t-49.5 24l-20 3q-21 0 -29 -4.5
+t-5 -11.5t9 -14t13 -12l7 -5q22 -10 43.5 -38t31.5 -51l10 -23q13 -38 44 -61.5t67 -30t69.5 -7t55.5 3.5l23 4q0 -38 0.5 -88.5t0.5 -54.5q0 -18 -13 -30t-40 -7q-232 77 -378.5 277.5t-146.5 451.5q0 209 103 385.5t279.5 279.5t385.5 103zM291 305q3 7 -7 12
+q-10 3 -13 -2q-3 -7 7 -12q9 -6 13 2zM322 271q7 5 -2 16q-10 9 -16 3q-7 -5 2 -16q10 -10 16 -3zM352 226q9 7 0 19q-8 13 -17 6q-9 -5 0 -18t17 -7zM394 184q8 8 -4 19q-12 12 -20 3q-9 -8 4 -19q12 -12 20 -3zM451 159q3 11 -13 16q-15 4 -19 -7t13 -15q15 -6 19 6z
+M514 154q0 13 -17 11q-16 0 -16 -11q0 -13 17 -11q16 0 16 11zM572 164q-2 11 -18 9q-16 -3 -14 -15t18 -8t14 14z" />
+    <glyph glyph-name="unlock" unicode="&#xf09c;" horiz-adv-x="1664" 
+d="M1664 960v-256q0 -26 -19 -45t-45 -19h-64q-26 0 -45 19t-19 45v256q0 106 -75 181t-181 75t-181 -75t-75 -181v-192h96q40 0 68 -28t28 -68v-576q0 -40 -28 -68t-68 -28h-960q-40 0 -68 28t-28 68v576q0 40 28 68t68 28h672v192q0 185 131.5 316.5t316.5 131.5
+t316.5 -131.5t131.5 -316.5z" />
+    <glyph glyph-name="credit_card" unicode="&#xf09d;" horiz-adv-x="1920" 
+d="M1760 1408q66 0 113 -47t47 -113v-1216q0 -66 -47 -113t-113 -47h-1600q-66 0 -113 47t-47 113v1216q0 66 47 113t113 47h1600zM160 1280q-13 0 -22.5 -9.5t-9.5 -22.5v-224h1664v224q0 13 -9.5 22.5t-22.5 9.5h-1600zM1760 0q13 0 22.5 9.5t9.5 22.5v608h-1664v-608
+q0 -13 9.5 -22.5t22.5 -9.5h1600zM256 128v128h256v-128h-256zM640 128v128h384v-128h-384z" />
+    <glyph glyph-name="rss" unicode="&#xf09e;" horiz-adv-x="1408" 
+d="M384 192q0 -80 -56 -136t-136 -56t-136 56t-56 136t56 136t136 56t136 -56t56 -136zM896 69q2 -28 -17 -48q-18 -21 -47 -21h-135q-25 0 -43 16.5t-20 41.5q-22 229 -184.5 391.5t-391.5 184.5q-25 2 -41.5 20t-16.5 43v135q0 29 21 47q17 17 43 17h5q160 -13 306 -80.5
+t259 -181.5q114 -113 181.5 -259t80.5 -306zM1408 67q2 -27 -18 -47q-18 -20 -46 -20h-143q-26 0 -44.5 17.5t-19.5 42.5q-12 215 -101 408.5t-231.5 336t-336 231.5t-408.5 102q-25 1 -42.5 19.5t-17.5 43.5v143q0 28 20 46q18 18 44 18h3q262 -13 501.5 -120t425.5 -294
+q187 -186 294 -425.5t120 -501.5z" />
+    <glyph glyph-name="hdd" unicode="&#xf0a0;" 
+d="M1040 320q0 -33 -23.5 -56.5t-56.5 -23.5t-56.5 23.5t-23.5 56.5t23.5 56.5t56.5 23.5t56.5 -23.5t23.5 -56.5zM1296 320q0 -33 -23.5 -56.5t-56.5 -23.5t-56.5 23.5t-23.5 56.5t23.5 56.5t56.5 23.5t56.5 -23.5t23.5 -56.5zM1408 160v320q0 13 -9.5 22.5t-22.5 9.5
+h-1216q-13 0 -22.5 -9.5t-9.5 -22.5v-320q0 -13 9.5 -22.5t22.5 -9.5h1216q13 0 22.5 9.5t9.5 22.5zM178 640h1180l-157 482q-4 13 -16 21.5t-26 8.5h-782q-14 0 -26 -8.5t-16 -21.5zM1536 480v-320q0 -66 -47 -113t-113 -47h-1216q-66 0 -113 47t-47 113v320q0 25 16 75
+l197 606q17 53 63 86t101 33h782q55 0 101 -33t63 -86l197 -606q16 -50 16 -75z" />
+    <glyph glyph-name="bullhorn" unicode="&#xf0a1;" horiz-adv-x="1792" 
+d="M1664 896q53 0 90.5 -37.5t37.5 -90.5t-37.5 -90.5t-90.5 -37.5v-384q0 -52 -38 -90t-90 -38q-417 347 -812 380q-58 -19 -91 -66t-31 -100.5t40 -92.5q-20 -33 -23 -65.5t6 -58t33.5 -55t48 -50t61.5 -50.5q-29 -58 -111.5 -83t-168.5 -11.5t-132 55.5q-7 23 -29.5 87.5
+t-32 94.5t-23 89t-15 101t3.5 98.5t22 110.5h-122q-66 0 -113 47t-47 113v192q0 66 47 113t113 47h480q435 0 896 384q52 0 90 -38t38 -90v-384zM1536 292v954q-394 -302 -768 -343v-270q377 -42 768 -341z" />
+    <glyph glyph-name="bell" unicode="&#xf0a2;" horiz-adv-x="1792" 
+d="M912 -160q0 16 -16 16q-59 0 -101.5 42.5t-42.5 101.5q0 16 -16 16t-16 -16q0 -73 51.5 -124.5t124.5 -51.5q16 0 16 16zM246 128h1300q-266 300 -266 832q0 51 -24 105t-69 103t-121.5 80.5t-169.5 31.5t-169.5 -31.5t-121.5 -80.5t-69 -103t-24 -105q0 -532 -266 -832z
+M1728 128q0 -52 -38 -90t-90 -38h-448q0 -106 -75 -181t-181 -75t-181 75t-75 181h-448q-52 0 -90 38t-38 90q50 42 91 88t85 119.5t74.5 158.5t50 206t19.5 260q0 152 117 282.5t307 158.5q-8 19 -8 39q0 40 28 68t68 28t68 -28t28 -68q0 -20 -8 -39q190 -28 307 -158.5
+t117 -282.5q0 -139 19.5 -260t50 -206t74.5 -158.5t85 -119.5t91 -88z" />
+    <glyph glyph-name="certificate" unicode="&#xf0a3;" 
+d="M1376 640l138 -135q30 -28 20 -70q-12 -41 -52 -51l-188 -48l53 -186q12 -41 -19 -70q-29 -31 -70 -19l-186 53l-48 -188q-10 -40 -51 -52q-12 -2 -19 -2q-31 0 -51 22l-135 138l-135 -138q-28 -30 -70 -20q-41 11 -51 52l-48 188l-186 -53q-41 -12 -70 19q-31 29 -19 70
+l53 186l-188 48q-40 10 -52 51q-10 42 20 70l138 135l-138 135q-30 28 -20 70q12 41 52 51l188 48l-53 186q-12 41 19 70q29 31 70 19l186 -53l48 188q10 41 51 51q41 12 70 -19l135 -139l135 139q29 30 70 19q41 -10 51 -51l48 -188l186 53q41 12 70 -19q31 -29 19 -70
+l-53 -186l188 -48q40 -10 52 -51q10 -42 -20 -70z" />
+    <glyph glyph-name="hand_right" unicode="&#xf0a4;" horiz-adv-x="1792" 
+d="M256 192q0 26 -19 45t-45 19t-45 -19t-19 -45t19 -45t45 -19t45 19t19 45zM1664 768q0 51 -39 89.5t-89 38.5h-576q0 20 15 48.5t33 55t33 68t15 84.5q0 67 -44.5 97.5t-115.5 30.5q-24 0 -90 -139q-24 -44 -37 -65q-40 -64 -112 -145q-71 -81 -101 -106
+q-69 -57 -140 -57h-32v-640h32q72 0 167 -32t193.5 -64t179.5 -32q189 0 189 167q0 26 -5 56q30 16 47.5 52.5t17.5 73.5t-18 69q53 50 53 119q0 25 -10 55.5t-25 47.5h331q52 0 90 38t38 90zM1792 769q0 -105 -75.5 -181t-180.5 -76h-169q-4 -62 -37 -119q3 -21 3 -43
+q0 -101 -60 -178q1 -139 -85 -219.5t-227 -80.5q-133 0 -322 69q-164 59 -223 59h-288q-53 0 -90.5 37.5t-37.5 90.5v640q0 53 37.5 90.5t90.5 37.5h288q10 0 21.5 4.5t23.5 14t22.5 18t24 22.5t20.5 21.5t19 21.5t14 17q65 74 100 129q13 21 33 62t37 72t40.5 63t55 49.5
+t69.5 17.5q125 0 206.5 -67t81.5 -189q0 -68 -22 -128h374q104 0 180 -76t76 -179z" />
+    <glyph glyph-name="hand_left" unicode="&#xf0a5;" horiz-adv-x="1792" 
+d="M1376 128h32v640h-32q-35 0 -67.5 12t-62.5 37t-50 46t-49 54q-8 9 -12 14q-72 81 -112 145q-14 22 -38 68q-1 3 -10.5 22.5t-18.5 36t-20 35.5t-21.5 30.5t-18.5 11.5q-71 0 -115.5 -30.5t-44.5 -97.5q0 -43 15 -84.5t33 -68t33 -55t15 -48.5h-576q-50 0 -89 -38.5
+t-39 -89.5q0 -52 38 -90t90 -38h331q-15 -17 -25 -47.5t-10 -55.5q0 -69 53 -119q-18 -32 -18 -69t17.5 -73.5t47.5 -52.5q-4 -24 -4 -56q0 -85 48.5 -126t135.5 -41q84 0 183 32t194 64t167 32zM1664 192q0 26 -19 45t-45 19t-45 -19t-19 -45t19 -45t45 -19t45 19t19 45z
+M1792 768v-640q0 -53 -37.5 -90.5t-90.5 -37.5h-288q-59 0 -223 -59q-190 -69 -317 -69q-142 0 -230 77.5t-87 217.5l1 5q-61 76 -61 178q0 22 3 43q-33 57 -37 119h-169q-105 0 -180.5 76t-75.5 181q0 103 76 179t180 76h374q-22 60 -22 128q0 122 81.5 189t206.5 67
+q38 0 69.5 -17.5t55 -49.5t40.5 -63t37 -72t33 -62q35 -55 100 -129q2 -3 14 -17t19 -21.5t20.5 -21.5t24 -22.5t22.5 -18t23.5 -14t21.5 -4.5h288q53 0 90.5 -37.5t37.5 -90.5z" />
+    <glyph glyph-name="hand_up" unicode="&#xf0a6;" 
+d="M1280 -64q0 26 -19 45t-45 19t-45 -19t-19 -45t19 -45t45 -19t45 19t19 45zM1408 700q0 189 -167 189q-26 0 -56 -5q-16 30 -52.5 47.5t-73.5 17.5t-69 -18q-50 53 -119 53q-25 0 -55.5 -10t-47.5 -25v331q0 52 -38 90t-90 38q-51 0 -89.5 -39t-38.5 -89v-576
+q-20 0 -48.5 15t-55 33t-68 33t-84.5 15q-67 0 -97.5 -44.5t-30.5 -115.5q0 -24 139 -90q44 -24 65 -37q64 -40 145 -112q81 -71 106 -101q57 -69 57 -140v-32h640v32q0 72 32 167t64 193.5t32 179.5zM1536 705q0 -133 -69 -322q-59 -164 -59 -223v-288q0 -53 -37.5 -90.5
+t-90.5 -37.5h-640q-53 0 -90.5 37.5t-37.5 90.5v288q0 10 -4.5 21.5t-14 23.5t-18 22.5t-22.5 24t-21.5 20.5t-21.5 19t-17 14q-74 65 -129 100q-21 13 -62 33t-72 37t-63 40.5t-49.5 55t-17.5 69.5q0 125 67 206.5t189 81.5q68 0 128 -22v374q0 104 76 180t179 76
+q105 0 181 -75.5t76 -180.5v-169q62 -4 119 -37q21 3 43 3q101 0 178 -60q139 1 219.5 -85t80.5 -227z" />
+    <glyph glyph-name="hand_down" unicode="&#xf0a7;" 
+d="M1408 576q0 84 -32 183t-64 194t-32 167v32h-640v-32q0 -35 -12 -67.5t-37 -62.5t-46 -50t-54 -49q-9 -8 -14 -12q-81 -72 -145 -112q-22 -14 -68 -38q-3 -1 -22.5 -10.5t-36 -18.5t-35.5 -20t-30.5 -21.5t-11.5 -18.5q0 -71 30.5 -115.5t97.5 -44.5q43 0 84.5 15t68 33
+t55 33t48.5 15v-576q0 -50 38.5 -89t89.5 -39q52 0 90 38t38 90v331q46 -35 103 -35q69 0 119 53q32 -18 69 -18t73.5 17.5t52.5 47.5q24 -4 56 -4q85 0 126 48.5t41 135.5zM1280 1344q0 26 -19 45t-45 19t-45 -19t-19 -45t19 -45t45 -19t45 19t19 45zM1536 580
+q0 -142 -77.5 -230t-217.5 -87l-5 1q-76 -61 -178 -61q-22 0 -43 3q-54 -30 -119 -37v-169q0 -105 -76 -180.5t-181 -75.5q-103 0 -179 76t-76 180v374q-54 -22 -128 -22q-121 0 -188.5 81.5t-67.5 206.5q0 38 17.5 69.5t49.5 55t63 40.5t72 37t62 33q55 35 129 100
+q3 2 17 14t21.5 19t21.5 20.5t22.5 24t18 22.5t14 23.5t4.5 21.5v288q0 53 37.5 90.5t90.5 37.5h640q53 0 90.5 -37.5t37.5 -90.5v-288q0 -59 59 -223q69 -190 69 -317z" />
+    <glyph glyph-name="circle_arrow_left" unicode="&#xf0a8;" 
+d="M1280 576v128q0 26 -19 45t-45 19h-502l189 189q19 19 19 45t-19 45l-91 91q-18 18 -45 18t-45 -18l-362 -362l-91 -91q-18 -18 -18 -45t18 -45l91 -91l362 -362q18 -18 45 -18t45 18l91 91q18 18 18 45t-18 45l-189 189h502q26 0 45 19t19 45zM1536 640
+q0 -209 -103 -385.5t-279.5 -279.5t-385.5 -103t-385.5 103t-279.5 279.5t-103 385.5t103 385.5t279.5 279.5t385.5 103t385.5 -103t279.5 -279.5t103 -385.5z" />
+    <glyph glyph-name="circle_arrow_right" unicode="&#xf0a9;" 
+d="M1285 640q0 27 -18 45l-91 91l-362 362q-18 18 -45 18t-45 -18l-91 -91q-18 -18 -18 -45t18 -45l189 -189h-502q-26 0 -45 -19t-19 -45v-128q0 -26 19 -45t45 -19h502l-189 -189q-19 -19 -19 -45t19 -45l91 -91q18 -18 45 -18t45 18l362 362l91 91q18 18 18 45zM1536 640
+q0 -209 -103 -385.5t-279.5 -279.5t-385.5 -103t-385.5 103t-279.5 279.5t-103 385.5t103 385.5t279.5 279.5t385.5 103t385.5 -103t279.5 -279.5t103 -385.5z" />
+    <glyph glyph-name="circle_arrow_up" unicode="&#xf0aa;" 
+d="M1284 641q0 27 -18 45l-362 362l-91 91q-18 18 -45 18t-45 -18l-91 -91l-362 -362q-18 -18 -18 -45t18 -45l91 -91q18 -18 45 -18t45 18l189 189v-502q0 -26 19 -45t45 -19h128q26 0 45 19t19 45v502l189 -189q19 -19 45 -19t45 19l91 91q18 18 18 45zM1536 640
+q0 -209 -103 -385.5t-279.5 -279.5t-385.5 -103t-385.5 103t-279.5 279.5t-103 385.5t103 385.5t279.5 279.5t385.5 103t385.5 -103t279.5 -279.5t103 -385.5z" />
+    <glyph glyph-name="circle_arrow_down" unicode="&#xf0ab;" 
+d="M1284 639q0 27 -18 45l-91 91q-18 18 -45 18t-45 -18l-189 -189v502q0 26 -19 45t-45 19h-128q-26 0 -45 -19t-19 -45v-502l-189 189q-19 19 -45 19t-45 -19l-91 -91q-18 -18 -18 -45t18 -45l362 -362l91 -91q18 -18 45 -18t45 18l91 91l362 362q18 18 18 45zM1536 640
+q0 -209 -103 -385.5t-279.5 -279.5t-385.5 -103t-385.5 103t-279.5 279.5t-103 385.5t103 385.5t279.5 279.5t385.5 103t385.5 -103t279.5 -279.5t103 -385.5z" />
+    <glyph glyph-name="globe" unicode="&#xf0ac;" 
+d="M768 1408q209 0 385.5 -103t279.5 -279.5t103 -385.5t-103 -385.5t-279.5 -279.5t-385.5 -103t-385.5 103t-279.5 279.5t-103 385.5t103 385.5t279.5 279.5t385.5 103zM1042 887q-2 -1 -9.5 -9.5t-13.5 -9.5q2 0 4.5 5t5 11t3.5 7q6 7 22 15q14 6 52 12q34 8 51 -11
+q-2 2 9.5 13t14.5 12q3 2 15 4.5t15 7.5l2 22q-12 -1 -17.5 7t-6.5 21q0 -2 -6 -8q0 7 -4.5 8t-11.5 -1t-9 -1q-10 3 -15 7.5t-8 16.5t-4 15q-2 5 -9.5 11t-9.5 10q-1 2 -2.5 5.5t-3 6.5t-4 5.5t-5.5 2.5t-7 -5t-7.5 -10t-4.5 -5q-3 2 -6 1.5t-4.5 -1t-4.5 -3t-5 -3.5
+q-3 -2 -8.5 -3t-8.5 -2q15 5 -1 11q-10 4 -16 3q9 4 7.5 12t-8.5 14h5q-1 4 -8.5 8.5t-17.5 8.5t-13 6q-8 5 -34 9.5t-33 0.5q-5 -6 -4.5 -10.5t4 -14t3.5 -12.5q1 -6 -5.5 -13t-6.5 -12q0 -7 14 -15.5t10 -21.5q-3 -8 -16 -16t-16 -12q-5 -8 -1.5 -18.5t10.5 -16.5
+q2 -2 1.5 -4t-3.5 -4.5t-5.5 -4t-6.5 -3.5l-3 -2q-11 -5 -20.5 6t-13.5 26q-7 25 -16 30q-23 8 -29 -1q-5 13 -41 26q-25 9 -58 4q6 1 0 15q-7 15 -19 12q3 6 4 17.5t1 13.5q3 13 12 23q1 1 7 8.5t9.5 13.5t0.5 6q35 -4 50 11q5 5 11.5 17t10.5 17q9 6 14 5.5t14.5 -5.5
+t14.5 -5q14 -1 15.5 11t-7.5 20q12 -1 3 17q-4 7 -8 9q-12 4 -27 -5q-8 -4 2 -8q-1 1 -9.5 -10.5t-16.5 -17.5t-16 5q-1 1 -5.5 13.5t-9.5 13.5q-8 0 -16 -15q3 8 -11 15t-24 8q19 12 -8 27q-7 4 -20.5 5t-19.5 -4q-5 -7 -5.5 -11.5t5 -8t10.5 -5.5t11.5 -4t8.5 -3
+q14 -10 8 -14q-2 -1 -8.5 -3.5t-11.5 -4.5t-6 -4q-3 -4 0 -14t-2 -14q-5 5 -9 17.5t-7 16.5q7 -9 -25 -6l-10 1q-4 0 -16 -2t-20.5 -1t-13.5 8q-4 8 0 20q1 4 4 2q-4 3 -11 9.5t-10 8.5q-46 -15 -94 -41q6 -1 12 1q5 2 13 6.5t10 5.5q34 14 42 7l5 5q14 -16 20 -25
+q-7 4 -30 1q-20 -6 -22 -12q7 -12 5 -18q-4 3 -11.5 10t-14.5 11t-15 5q-16 0 -22 -1q-146 -80 -235 -222q7 -7 12 -8q4 -1 5 -9t2.5 -11t11.5 3q9 -8 3 -19q1 1 44 -27q19 -17 21 -21q3 -11 -10 -18q-1 2 -9 9t-9 4q-3 -5 0.5 -18.5t10.5 -12.5q-7 0 -9.5 -16t-2.5 -35.5
+t-1 -23.5l2 -1q-3 -12 5.5 -34.5t21.5 -19.5q-13 -3 20 -43q6 -8 8 -9q3 -2 12 -7.5t15 -10t10 -10.5q4 -5 10 -22.5t14 -23.5q-2 -6 9.5 -20t10.5 -23q-1 0 -2.5 -1t-2.5 -1q3 -7 15.5 -14t15.5 -13q1 -3 2 -10t3 -11t8 -2q2 20 -24 62q-15 25 -17 29q-3 5 -5.5 15.5
+t-4.5 14.5q2 0 6 -1.5t8.5 -3.5t7.5 -4t2 -3q-3 -7 2 -17.5t12 -18.5t17 -19t12 -13q6 -6 14 -19.5t0 -13.5q9 0 20 -10.5t17 -19.5q5 -8 8 -26t5 -24q2 -7 8.5 -13.5t12.5 -9.5l16 -8t13 -7q5 -2 18.5 -10.5t21.5 -11.5q10 -4 16 -4t14.5 2.5t13.5 3.5q15 2 29 -15t21 -21
+q36 -19 55 -11q-2 -1 0.5 -7.5t8 -15.5t9 -14.5t5.5 -8.5q5 -6 18 -15t18 -15q6 4 7 9q-3 -8 7 -20t18 -10q14 3 14 32q-31 -15 -49 18q0 1 -2.5 5.5t-4 8.5t-2.5 8.5t0 7.5t5 3q9 0 10 3.5t-2 12.5t-4 13q-1 8 -11 20t-12 15q-5 -9 -16 -8t-16 9q0 -1 -1.5 -5.5t-1.5 -6.5
+q-13 0 -15 1q1 3 2.5 17.5t3.5 22.5q1 4 5.5 12t7.5 14.5t4 12.5t-4.5 9.5t-17.5 2.5q-19 -1 -26 -20q-1 -3 -3 -10.5t-5 -11.5t-9 -7q-7 -3 -24 -2t-24 5q-13 8 -22.5 29t-9.5 37q0 10 2.5 26.5t3 25t-5.5 24.5q3 2 9 9.5t10 10.5q2 1 4.5 1.5t4.5 0t4 1.5t3 6q-1 1 -4 3
+q-3 3 -4 3q7 -3 28.5 1.5t27.5 -1.5q15 -11 22 2q0 1 -2.5 9.5t-0.5 13.5q5 -27 29 -9q3 -3 15.5 -5t17.5 -5q3 -2 7 -5.5t5.5 -4.5t5 0.5t8.5 6.5q10 -14 12 -24q11 -40 19 -44q7 -3 11 -2t4.5 9.5t0 14t-1.5 12.5l-1 8v18l-1 8q-15 3 -18.5 12t1.5 18.5t15 18.5q1 1 8 3.5
+t15.5 6.5t12.5 8q21 19 15 35q7 0 11 9q-1 0 -5 3t-7.5 5t-4.5 2q9 5 2 16q5 3 7.5 11t7.5 10q9 -12 21 -2q8 8 1 16q5 7 20.5 10.5t18.5 9.5q7 -2 8 2t1 12t3 12q4 5 15 9t13 5l17 11q3 4 0 4q18 -2 31 11q10 11 -6 20q3 6 -3 9.5t-15 5.5q3 1 11.5 0.5t10.5 1.5
+q15 10 -7 16q-17 5 -43 -12zM879 10q206 36 351 189q-3 3 -12.5 4.5t-12.5 3.5q-18 7 -24 8q1 7 -2.5 13t-8 9t-12.5 8t-11 7q-2 2 -7 6t-7 5.5t-7.5 4.5t-8.5 2t-10 -1l-3 -1q-3 -1 -5.5 -2.5t-5.5 -3t-4 -3t0 -2.5q-21 17 -36 22q-5 1 -11 5.5t-10.5 7t-10 1.5t-11.5 -7
+q-5 -5 -6 -15t-2 -13q-7 5 0 17.5t2 18.5q-3 6 -10.5 4.5t-12 -4.5t-11.5 -8.5t-9 -6.5t-8.5 -5.5t-8.5 -7.5q-3 -4 -6 -12t-5 -11q-2 4 -11.5 6.5t-9.5 5.5q2 -10 4 -35t5 -38q7 -31 -12 -48q-27 -25 -29 -40q-4 -22 12 -26q0 -7 -8 -20.5t-7 -21.5q0 -6 2 -16z" />
+    <glyph glyph-name="wrench" unicode="&#xf0ad;" horiz-adv-x="1664" 
+d="M384 64q0 26 -19 45t-45 19t-45 -19t-19 -45t19 -45t45 -19t45 19t19 45zM1028 484l-682 -682q-37 -37 -90 -37q-52 0 -91 37l-106 108q-38 36 -38 90q0 53 38 91l681 681q39 -98 114.5 -173.5t173.5 -114.5zM1662 919q0 -39 -23 -106q-47 -134 -164.5 -217.5
+t-258.5 -83.5q-185 0 -316.5 131.5t-131.5 316.5t131.5 316.5t316.5 131.5q58 0 121.5 -16.5t107.5 -46.5q16 -11 16 -28t-16 -28l-293 -169v-224l193 -107q5 3 79 48.5t135.5 81t70.5 35.5q15 0 23.5 -10t8.5 -25z" />
+    <glyph glyph-name="tasks" unicode="&#xf0ae;" horiz-adv-x="1792" 
+d="M1024 128h640v128h-640v-128zM640 640h1024v128h-1024v-128zM1280 1152h384v128h-384v-128zM1792 320v-256q0 -26 -19 -45t-45 -19h-1664q-26 0 -45 19t-19 45v256q0 26 19 45t45 19h1664q26 0 45 -19t19 -45zM1792 832v-256q0 -26 -19 -45t-45 -19h-1664q-26 0 -45 19
+t-19 45v256q0 26 19 45t45 19h1664q26 0 45 -19t19 -45zM1792 1344v-256q0 -26 -19 -45t-45 -19h-1664q-26 0 -45 19t-19 45v256q0 26 19 45t45 19h1664q26 0 45 -19t19 -45z" />
+    <glyph glyph-name="filter" unicode="&#xf0b0;" horiz-adv-x="1408" 
+d="M1403 1241q17 -41 -14 -70l-493 -493v-742q0 -42 -39 -59q-13 -5 -25 -5q-27 0 -45 19l-256 256q-19 19 -19 45v486l-493 493q-31 29 -14 70q17 39 59 39h1280q42 0 59 -39z" />
+    <glyph glyph-name="briefcase" unicode="&#xf0b1;" horiz-adv-x="1792" 
+d="M640 1280h512v128h-512v-128zM1792 640v-480q0 -66 -47 -113t-113 -47h-1472q-66 0 -113 47t-47 113v480h672v-160q0 -26 19 -45t45 -19h320q26 0 45 19t19 45v160h672zM1024 640v-128h-256v128h256zM1792 1120v-384h-1792v384q0 66 47 113t113 47h352v160q0 40 28 68
+t68 28h576q40 0 68 -28t28 -68v-160h352q66 0 113 -47t47 -113z" />
+    <glyph glyph-name="fullscreen" unicode="&#xf0b2;" 
+d="M1283 995l-355 -355l355 -355l144 144q29 31 70 14q39 -17 39 -59v-448q0 -26 -19 -45t-45 -19h-448q-42 0 -59 40q-17 39 14 69l144 144l-355 355l-355 -355l144 -144q31 -30 14 -69q-17 -40 -59 -40h-448q-26 0 -45 19t-19 45v448q0 42 40 59q39 17 69 -14l144 -144
+l355 355l-355 355l-144 -144q-19 -19 -45 -19q-12 0 -24 5q-40 17 -40 59v448q0 26 19 45t45 19h448q42 0 59 -40q17 -39 -14 -69l-144 -144l355 -355l355 355l-144 144q-31 30 -14 69q17 40 59 40h448q26 0 45 -19t19 -45v-448q0 -42 -39 -59q-13 -5 -25 -5q-26 0 -45 19z
+" />
+    <glyph glyph-name="group" unicode="&#xf0c0;" horiz-adv-x="1920" 
+d="M593 640q-162 -5 -265 -128h-134q-82 0 -138 40.5t-56 118.5q0 353 124 353q6 0 43.5 -21t97.5 -42.5t119 -21.5q67 0 133 23q-5 -37 -5 -66q0 -139 81 -256zM1664 3q0 -120 -73 -189.5t-194 -69.5h-874q-121 0 -194 69.5t-73 189.5q0 53 3.5 103.5t14 109t26.5 108.5
+t43 97.5t62 81t85.5 53.5t111.5 20q10 0 43 -21.5t73 -48t107 -48t135 -21.5t135 21.5t107 48t73 48t43 21.5q61 0 111.5 -20t85.5 -53.5t62 -81t43 -97.5t26.5 -108.5t14 -109t3.5 -103.5zM640 1280q0 -106 -75 -181t-181 -75t-181 75t-75 181t75 181t181 75t181 -75
+t75 -181zM1344 896q0 -159 -112.5 -271.5t-271.5 -112.5t-271.5 112.5t-112.5 271.5t112.5 271.5t271.5 112.5t271.5 -112.5t112.5 -271.5zM1920 671q0 -78 -56 -118.5t-138 -40.5h-134q-103 123 -265 128q81 117 81 256q0 29 -5 66q66 -23 133 -23q59 0 119 21.5t97.5 42.5
+t43.5 21q124 0 124 -353zM1792 1280q0 -106 -75 -181t-181 -75t-181 75t-75 181t75 181t181 75t181 -75t75 -181z" />
+    <glyph glyph-name="link" unicode="&#xf0c1;" horiz-adv-x="1664" 
+d="M1456 320q0 40 -28 68l-208 208q-28 28 -68 28q-42 0 -72 -32q3 -3 19 -18.5t21.5 -21.5t15 -19t13 -25.5t3.5 -27.5q0 -40 -28 -68t-68 -28q-15 0 -27.5 3.5t-25.5 13t-19 15t-21.5 21.5t-18.5 19q-33 -31 -33 -73q0 -40 28 -68l206 -207q27 -27 68 -27q40 0 68 26
+l147 146q28 28 28 67zM753 1025q0 40 -28 68l-206 207q-28 28 -68 28q-39 0 -68 -27l-147 -146q-28 -28 -28 -67q0 -40 28 -68l208 -208q27 -27 68 -27q42 0 72 31q-3 3 -19 18.5t-21.5 21.5t-15 19t-13 25.5t-3.5 27.5q0 40 28 68t68 28q15 0 27.5 -3.5t25.5 -13t19 -15
+t21.5 -21.5t18.5 -19q33 31 33 73zM1648 320q0 -120 -85 -203l-147 -146q-83 -83 -203 -83q-121 0 -204 85l-206 207q-83 83 -83 203q0 123 88 209l-88 88q-86 -88 -208 -88q-120 0 -204 84l-208 208q-84 84 -84 204t85 203l147 146q83 83 203 83q121 0 204 -85l206 -207
+q83 -83 83 -203q0 -123 -88 -209l88 -88q86 88 208 88q120 0 204 -84l208 -208q84 -84 84 -204z" />
+    <glyph glyph-name="cloud" unicode="&#xf0c2;" horiz-adv-x="1920" 
+d="M1920 384q0 -159 -112.5 -271.5t-271.5 -112.5h-1088q-185 0 -316.5 131.5t-131.5 316.5q0 132 71 241.5t187 163.5q-2 28 -2 43q0 212 150 362t362 150q158 0 286.5 -88t187.5 -230q70 62 166 62q106 0 181 -75t75 -181q0 -75 -41 -138q129 -30 213 -134.5t84 -239.5z
+" />
+    <glyph glyph-name="beaker" unicode="&#xf0c3;" horiz-adv-x="1664" 
+d="M1527 88q56 -89 21.5 -152.5t-140.5 -63.5h-1152q-106 0 -140.5 63.5t21.5 152.5l503 793v399h-64q-26 0 -45 19t-19 45t19 45t45 19h512q26 0 45 -19t19 -45t-19 -45t-45 -19h-64v-399zM748 813l-272 -429h712l-272 429l-20 31v37v399h-128v-399v-37z" />
+    <glyph glyph-name="cut" unicode="&#xf0c4;" horiz-adv-x="1792" 
+d="M960 640q26 0 45 -19t19 -45t-19 -45t-45 -19t-45 19t-19 45t19 45t45 19zM1260 576l507 -398q28 -20 25 -56q-5 -35 -35 -51l-128 -64q-13 -7 -29 -7q-17 0 -31 8l-690 387l-110 -66q-8 -4 -12 -5q14 -49 10 -97q-7 -77 -56 -147.5t-132 -123.5q-132 -84 -277 -84
+q-136 0 -222 78q-90 84 -79 207q7 76 56 147t131 124q132 84 278 84q83 0 151 -31q9 13 22 22l122 73l-122 73q-13 9 -22 22q-68 -31 -151 -31q-146 0 -278 84q-82 53 -131 124t-56 147q-5 59 15.5 113t63.5 93q85 79 222 79q145 0 277 -84q83 -52 132 -123t56 -148
+q4 -48 -10 -97q4 -1 12 -5l110 -66l690 387q14 8 31 8q16 0 29 -7l128 -64q30 -16 35 -51q3 -36 -25 -56zM579 836q46 42 21 108t-106 117q-92 59 -192 59q-74 0 -113 -36q-46 -42 -21 -108t106 -117q92 -59 192 -59q74 0 113 36zM494 91q81 51 106 117t-21 108
+q-39 36 -113 36q-100 0 -192 -59q-81 -51 -106 -117t21 -108q39 -36 113 -36q100 0 192 59zM672 704l96 -58v11q0 36 33 56l14 8l-79 47l-26 -26q-3 -3 -10 -11t-12 -12q-2 -2 -4 -3.5t-3 -2.5zM896 480l96 -32l736 576l-128 64l-768 -431v-113l-160 -96l9 -8q2 -2 7 -6
+q4 -4 11 -12t11 -12l26 -26zM1600 64l128 64l-520 408l-177 -138q-2 -3 -13 -7z" />
+    <glyph glyph-name="copy" unicode="&#xf0c5;" horiz-adv-x="1792" 
+d="M1696 1152q40 0 68 -28t28 -68v-1216q0 -40 -28 -68t-68 -28h-960q-40 0 -68 28t-28 68v288h-544q-40 0 -68 28t-28 68v672q0 40 20 88t48 76l408 408q28 28 76 48t88 20h416q40 0 68 -28t28 -68v-328q68 40 128 40h416zM1152 939l-299 -299h299v299zM512 1323l-299 -299
+h299v299zM708 676l316 316v416h-384v-416q0 -40 -28 -68t-68 -28h-416v-640h512v256q0 40 20 88t48 76zM1664 -128v1152h-384v-416q0 -40 -28 -68t-68 -28h-416v-640h896z" />
+    <glyph glyph-name="paper_clip" unicode="&#xf0c6;" horiz-adv-x="1408" 
+d="M1404 151q0 -117 -79 -196t-196 -79q-135 0 -235 100l-777 776q-113 115 -113 271q0 159 110 270t269 111q158 0 273 -113l605 -606q10 -10 10 -22q0 -16 -30.5 -46.5t-46.5 -30.5q-13 0 -23 10l-606 607q-79 77 -181 77q-106 0 -179 -75t-73 -181q0 -105 76 -181
+l776 -777q63 -63 145 -63q64 0 106 42t42 106q0 82 -63 145l-581 581q-26 24 -60 24q-29 0 -48 -19t-19 -48q0 -32 25 -59l410 -410q10 -10 10 -22q0 -16 -31 -47t-47 -31q-12 0 -22 10l-410 410q-63 61 -63 149q0 82 57 139t139 57q88 0 149 -63l581 -581q100 -98 100 -235
+z" />
+    <glyph glyph-name="save" unicode="&#xf0c7;" 
+d="M384 0h768v384h-768v-384zM1280 0h128v896q0 14 -10 38.5t-20 34.5l-281 281q-10 10 -34 20t-39 10v-416q0 -40 -28 -68t-68 -28h-576q-40 0 -68 28t-28 68v416h-128v-1280h128v416q0 40 28 68t68 28h832q40 0 68 -28t28 -68v-416zM896 928v320q0 13 -9.5 22.5t-22.5 9.5
+h-192q-13 0 -22.5 -9.5t-9.5 -22.5v-320q0 -13 9.5 -22.5t22.5 -9.5h192q13 0 22.5 9.5t9.5 22.5zM1536 896v-928q0 -40 -28 -68t-68 -28h-1344q-40 0 -68 28t-28 68v1344q0 40 28 68t68 28h928q40 0 88 -20t76 -48l280 -280q28 -28 48 -76t20 -88z" />
+    <glyph glyph-name="sign_blank" unicode="&#xf0c8;" 
+d="M1536 1120v-960q0 -119 -84.5 -203.5t-203.5 -84.5h-960q-119 0 -203.5 84.5t-84.5 203.5v960q0 119 84.5 203.5t203.5 84.5h960q119 0 203.5 -84.5t84.5 -203.5z" />
+    <glyph glyph-name="reorder" unicode="&#xf0c9;" 
+d="M1536 192v-128q0 -26 -19 -45t-45 -19h-1408q-26 0 -45 19t-19 45v128q0 26 19 45t45 19h1408q26 0 45 -19t19 -45zM1536 704v-128q0 -26 -19 -45t-45 -19h-1408q-26 0 -45 19t-19 45v128q0 26 19 45t45 19h1408q26 0 45 -19t19 -45zM1536 1216v-128q0 -26 -19 -45
+t-45 -19h-1408q-26 0 -45 19t-19 45v128q0 26 19 45t45 19h1408q26 0 45 -19t19 -45z" />
+    <glyph glyph-name="ul" unicode="&#xf0ca;" horiz-adv-x="1792" 
+d="M384 128q0 -80 -56 -136t-136 -56t-136 56t-56 136t56 136t136 56t136 -56t56 -136zM384 640q0 -80 -56 -136t-136 -56t-136 56t-56 136t56 136t136 56t136 -56t56 -136zM1792 224v-192q0 -13 -9.5 -22.5t-22.5 -9.5h-1216q-13 0 -22.5 9.5t-9.5 22.5v192q0 13 9.5 22.5
+t22.5 9.5h1216q13 0 22.5 -9.5t9.5 -22.5zM384 1152q0 -80 -56 -136t-136 -56t-136 56t-56 136t56 136t136 56t136 -56t56 -136zM1792 736v-192q0 -13 -9.5 -22.5t-22.5 -9.5h-1216q-13 0 -22.5 9.5t-9.5 22.5v192q0 13 9.5 22.5t22.5 9.5h1216q13 0 22.5 -9.5t9.5 -22.5z
+M1792 1248v-192q0 -13 -9.5 -22.5t-22.5 -9.5h-1216q-13 0 -22.5 9.5t-9.5 22.5v192q0 13 9.5 22.5t22.5 9.5h1216q13 0 22.5 -9.5t9.5 -22.5z" />
+    <glyph glyph-name="ol" unicode="&#xf0cb;" horiz-adv-x="1792" 
+d="M381 -84q0 -80 -54.5 -126t-135.5 -46q-106 0 -172 66l57 88q49 -45 106 -45q29 0 50.5 14.5t21.5 42.5q0 64 -105 56l-26 56q8 10 32.5 43.5t42.5 54t37 38.5v1q-16 0 -48.5 -1t-48.5 -1v-53h-106v152h333v-88l-95 -115q51 -12 81 -49t30 -88zM383 543v-159h-362
+q-6 36 -6 54q0 51 23.5 93t56.5 68t66 47.5t56.5 43.5t23.5 45q0 25 -14.5 38.5t-39.5 13.5q-46 0 -81 -58l-85 59q24 51 71.5 79.5t105.5 28.5q73 0 123 -41.5t50 -112.5q0 -50 -34 -91.5t-75 -64.5t-75.5 -50.5t-35.5 -52.5h127v60h105zM1792 224v-192q0 -13 -9.5 -22.5
+t-22.5 -9.5h-1216q-13 0 -22.5 9.5t-9.5 22.5v192q0 14 9 23t23 9h1216q13 0 22.5 -9.5t9.5 -22.5zM384 1123v-99h-335v99h107q0 41 0.5 121.5t0.5 121.5v12h-2q-8 -17 -50 -54l-71 76l136 127h106v-404h108zM1792 736v-192q0 -13 -9.5 -22.5t-22.5 -9.5h-1216
+q-13 0 -22.5 9.5t-9.5 22.5v192q0 14 9 23t23 9h1216q13 0 22.5 -9.5t9.5 -22.5zM1792 1248v-192q0 -13 -9.5 -22.5t-22.5 -9.5h-1216q-13 0 -22.5 9.5t-9.5 22.5v192q0 13 9.5 22.5t22.5 9.5h1216q13 0 22.5 -9.5t9.5 -22.5z" />
+    <glyph glyph-name="strikethrough" unicode="&#xf0cc;" horiz-adv-x="1792" 
+d="M1760 640q14 0 23 -9t9 -23v-64q0 -14 -9 -23t-23 -9h-1728q-14 0 -23 9t-9 23v64q0 14 9 23t23 9h1728zM483 704q-28 35 -51 80q-48 98 -48 188q0 181 134 309q133 127 393 127q50 0 167 -19q66 -12 177 -48q10 -38 21 -118q14 -123 14 -183q0 -18 -5 -45l-12 -3l-84 6
+l-14 2q-50 149 -103 205q-88 91 -210 91q-114 0 -182 -59q-67 -58 -67 -146q0 -73 66 -140t279 -129q69 -20 173 -66q58 -28 95 -52h-743zM990 448h411q7 -39 7 -92q0 -111 -41 -212q-23 -56 -71 -104q-37 -35 -109 -81q-80 -48 -153 -66q-80 -21 -203 -21q-114 0 -195 23
+l-140 40q-57 16 -72 28q-8 8 -8 22v13q0 108 -2 156q-1 30 0 68l2 37v44l102 2q15 -34 30 -71t22.5 -56t12.5 -27q35 -57 80 -94q43 -36 105 -57q59 -22 132 -22q64 0 139 27q77 26 122 86q47 61 47 129q0 84 -81 157q-34 29 -137 71z" />
+    <glyph glyph-name="underline" unicode="&#xf0cd;" 
+d="M48 1313q-37 2 -45 4l-3 88q13 1 40 1q60 0 112 -4q132 -7 166 -7q86 0 168 3q116 4 146 5q56 0 86 2l-1 -14l2 -64v-9q-60 -9 -124 -9q-60 0 -79 -25q-13 -14 -13 -132q0 -13 0.5 -32.5t0.5 -25.5l1 -229l14 -280q6 -124 51 -202q35 -59 96 -92q88 -47 177 -47
+q104 0 191 28q56 18 99 51q48 36 65 64q36 56 53 114q21 73 21 229q0 79 -3.5 128t-11 122.5t-13.5 159.5l-4 59q-5 67 -24 88q-34 35 -77 34l-100 -2l-14 3l2 86h84l205 -10q76 -3 196 10l18 -2q6 -38 6 -51q0 -7 -4 -31q-45 -12 -84 -13q-73 -11 -79 -17q-15 -15 -15 -41
+q0 -7 1.5 -27t1.5 -31q8 -19 22 -396q6 -195 -15 -304q-15 -76 -41 -122q-38 -65 -112 -123q-75 -57 -182 -89q-109 -33 -255 -33q-167 0 -284 46q-119 47 -179 122q-61 76 -83 195q-16 80 -16 237v333q0 188 -17 213q-25 36 -147 39zM1536 -96v64q0 14 -9 23t-23 9h-1472
+q-14 0 -23 -9t-9 -23v-64q0 -14 9 -23t23 -9h1472q14 0 23 9t9 23z" />
+    <glyph glyph-name="table" unicode="&#xf0ce;" horiz-adv-x="1664" 
+d="M512 160v192q0 14 -9 23t-23 9h-320q-14 0 -23 -9t-9 -23v-192q0 -14 9 -23t23 -9h320q14 0 23 9t9 23zM512 544v192q0 14 -9 23t-23 9h-320q-14 0 -23 -9t-9 -23v-192q0 -14 9 -23t23 -9h320q14 0 23 9t9 23zM1024 160v192q0 14 -9 23t-23 9h-320q-14 0 -23 -9t-9 -23
+v-192q0 -14 9 -23t23 -9h320q14 0 23 9t9 23zM512 928v192q0 14 -9 23t-23 9h-320q-14 0 -23 -9t-9 -23v-192q0 -14 9 -23t23 -9h320q14 0 23 9t9 23zM1024 544v192q0 14 -9 23t-23 9h-320q-14 0 -23 -9t-9 -23v-192q0 -14 9 -23t23 -9h320q14 0 23 9t9 23zM1536 160v192
+q0 14 -9 23t-23 9h-320q-14 0 -23 -9t-9 -23v-192q0 -14 9 -23t23 -9h320q14 0 23 9t9 23zM1024 928v192q0 14 -9 23t-23 9h-320q-14 0 -23 -9t-9 -23v-192q0 -14 9 -23t23 -9h320q14 0 23 9t9 23zM1536 544v192q0 14 -9 23t-23 9h-320q-14 0 -23 -9t-9 -23v-192
+q0 -14 9 -23t23 -9h320q14 0 23 9t9 23zM1536 928v192q0 14 -9 23t-23 9h-320q-14 0 -23 -9t-9 -23v-192q0 -14 9 -23t23 -9h320q14 0 23 9t9 23zM1664 1248v-1088q0 -66 -47 -113t-113 -47h-1344q-66 0 -113 47t-47 113v1088q0 66 47 113t113 47h1344q66 0 113 -47t47 -113
+z" />
+    <glyph glyph-name="magic" unicode="&#xf0d0;" horiz-adv-x="1664" 
+d="M1190 955l293 293l-107 107l-293 -293zM1637 1248q0 -27 -18 -45l-1286 -1286q-18 -18 -45 -18t-45 18l-198 198q-18 18 -18 45t18 45l1286 1286q18 18 45 18t45 -18l198 -198q18 -18 18 -45zM286 1438l98 -30l-98 -30l-30 -98l-30 98l-98 30l98 30l30 98zM636 1276
+l196 -60l-196 -60l-60 -196l-60 196l-196 60l196 60l60 196zM1566 798l98 -30l-98 -30l-30 -98l-30 98l-98 30l98 30l30 98zM926 1438l98 -30l-98 -30l-30 -98l-30 98l-98 30l98 30l30 98z" />
+    <glyph glyph-name="truck" unicode="&#xf0d1;" horiz-adv-x="1792" 
+d="M640 128q0 52 -38 90t-90 38t-90 -38t-38 -90t38 -90t90 -38t90 38t38 90zM256 640h384v256h-158q-13 0 -22 -9l-195 -195q-9 -9 -9 -22v-30zM1536 128q0 52 -38 90t-90 38t-90 -38t-38 -90t38 -90t90 -38t90 38t38 90zM1792 1216v-1024q0 -15 -4 -26.5t-13.5 -18.5
+t-16.5 -11.5t-23.5 -6t-22.5 -2t-25.5 0t-22.5 0.5q0 -106 -75 -181t-181 -75t-181 75t-75 181h-384q0 -106 -75 -181t-181 -75t-181 75t-75 181h-64q-3 0 -22.5 -0.5t-25.5 0t-22.5 2t-23.5 6t-16.5 11.5t-13.5 18.5t-4 26.5q0 26 19 45t45 19v320q0 8 -0.5 35t0 38
+t2.5 34.5t6.5 37t14 30.5t22.5 30l198 198q19 19 50.5 32t58.5 13h160v192q0 26 19 45t45 19h1024q26 0 45 -19t19 -45z" />
+    <glyph glyph-name="pinterest" unicode="&#xf0d2;" 
+d="M1536 640q0 -209 -103 -385.5t-279.5 -279.5t-385.5 -103q-111 0 -218 32q59 93 78 164q9 34 54 211q20 -39 73 -67.5t114 -28.5q121 0 216 68.5t147 188.5t52 270q0 114 -59.5 214t-172.5 163t-255 63q-105 0 -196 -29t-154.5 -77t-109 -110.5t-67 -129.5t-21.5 -134
+q0 -104 40 -183t117 -111q30 -12 38 20q2 7 8 31t8 30q6 23 -11 43q-51 61 -51 151q0 151 104.5 259.5t273.5 108.5q151 0 235.5 -82t84.5 -213q0 -170 -68.5 -289t-175.5 -119q-61 0 -98 43.5t-23 104.5q8 35 26.5 93.5t30 103t11.5 75.5q0 50 -27 83t-77 33
+q-62 0 -105 -57t-43 -142q0 -73 25 -122l-99 -418q-17 -70 -13 -177q-206 91 -333 281t-127 423q0 209 103 385.5t279.5 279.5t385.5 103t385.5 -103t279.5 -279.5t103 -385.5z" />
+    <glyph glyph-name="pinterest_sign" unicode="&#xf0d3;" 
+d="M1248 1408q119 0 203.5 -84.5t84.5 -203.5v-960q0 -119 -84.5 -203.5t-203.5 -84.5h-725q85 122 108 210q9 34 53 209q21 -39 73.5 -67t112.5 -28q181 0 295.5 147.5t114.5 373.5q0 84 -35 162.5t-96.5 139t-152.5 97t-197 36.5q-104 0 -194.5 -28.5t-153 -76.5
+t-107.5 -109.5t-66.5 -128t-21.5 -132.5q0 -102 39.5 -180t116.5 -110q13 -5 23.5 0t14.5 19q10 44 15 61q6 23 -11 42q-50 62 -50 150q0 150 103.5 256.5t270.5 106.5q149 0 232.5 -81t83.5 -210q0 -168 -67.5 -286t-173.5 -118q-60 0 -97 43.5t-23 103.5q8 34 26.5 92.5
+t29.5 102t11 74.5q0 49 -26.5 81.5t-75.5 32.5q-61 0 -103.5 -56.5t-42.5 -139.5q0 -72 24 -121l-98 -414q-24 -100 -7 -254h-183q-119 0 -203.5 84.5t-84.5 203.5v960q0 119 84.5 203.5t203.5 84.5h960z" />
+    <glyph glyph-name="google_plus_sign" unicode="&#xf0d4;" 
+d="M917 631q0 26 -6 64h-362v-132h217q-3 -24 -16.5 -50t-37.5 -53t-66.5 -44.5t-96.5 -17.5q-99 0 -169 71t-70 171t70 171t169 71q92 0 153 -59l104 101q-108 100 -257 100q-160 0 -272 -112.5t-112 -271.5t112 -271.5t272 -112.5q165 0 266.5 105t101.5 270zM1262 585
+h109v110h-109v110h-110v-110h-110v-110h110v-110h110v110zM1536 1120v-960q0 -119 -84.5 -203.5t-203.5 -84.5h-960q-119 0 -203.5 84.5t-84.5 203.5v960q0 119 84.5 203.5t203.5 84.5h960q119 0 203.5 -84.5t84.5 -203.5z" />
+    <glyph glyph-name="google_plus" unicode="&#xf0d5;" horiz-adv-x="2304" 
+d="M1437 623q0 -208 -87 -370.5t-248 -254t-369 -91.5q-149 0 -285 58t-234 156t-156 234t-58 285t58 285t156 234t234 156t285 58q286 0 491 -192l-199 -191q-117 113 -292 113q-123 0 -227.5 -62t-165.5 -168.5t-61 -232.5t61 -232.5t165.5 -168.5t227.5 -62
+q83 0 152.5 23t114.5 57.5t78.5 78.5t49 83t21.5 74h-416v252h692q12 -63 12 -122zM2304 745v-210h-209v-209h-210v209h-209v210h209v209h210v-209h209z" />
+    <glyph glyph-name="money" unicode="&#xf0d6;" horiz-adv-x="1920" 
+d="M768 384h384v96h-128v448h-114l-148 -137l77 -80q42 37 55 57h2v-288h-128v-96zM1280 640q0 -70 -21 -142t-59.5 -134t-101.5 -101t-138 -39t-138 39t-101.5 101t-59.5 134t-21 142t21 142t59.5 134t101.5 101t138 39t138 -39t101.5 -101t59.5 -134t21 -142zM1792 384
+v512q-106 0 -181 75t-75 181h-1152q0 -106 -75 -181t-181 -75v-512q106 0 181 -75t75 -181h1152q0 106 75 181t181 75zM1920 1216v-1152q0 -26 -19 -45t-45 -19h-1792q-26 0 -45 19t-19 45v1152q0 26 19 45t45 19h1792q26 0 45 -19t19 -45z" />
+    <glyph glyph-name="caret_down" unicode="&#xf0d7;" horiz-adv-x="1024" 
+d="M1024 832q0 -26 -19 -45l-448 -448q-19 -19 -45 -19t-45 19l-448 448q-19 19 -19 45t19 45t45 19h896q26 0 45 -19t19 -45z" />
+    <glyph glyph-name="caret_up" unicode="&#xf0d8;" horiz-adv-x="1024" 
+d="M1024 320q0 -26 -19 -45t-45 -19h-896q-26 0 -45 19t-19 45t19 45l448 448q19 19 45 19t45 -19l448 -448q19 -19 19 -45z" />
+    <glyph glyph-name="caret_left" unicode="&#xf0d9;" horiz-adv-x="640" 
+d="M640 1088v-896q0 -26 -19 -45t-45 -19t-45 19l-448 448q-19 19 -19 45t19 45l448 448q19 19 45 19t45 -19t19 -45z" />
+    <glyph glyph-name="caret_right" unicode="&#xf0da;" horiz-adv-x="640" 
+d="M576 640q0 -26 -19 -45l-448 -448q-19 -19 -45 -19t-45 19t-19 45v896q0 26 19 45t45 19t45 -19l448 -448q19 -19 19 -45z" />
+    <glyph glyph-name="columns" unicode="&#xf0db;" horiz-adv-x="1664" 
+d="M160 0h608v1152h-640v-1120q0 -13 9.5 -22.5t22.5 -9.5zM1536 32v1120h-640v-1152h608q13 0 22.5 9.5t9.5 22.5zM1664 1248v-1216q0 -66 -47 -113t-113 -47h-1344q-66 0 -113 47t-47 113v1216q0 66 47 113t113 47h1344q66 0 113 -47t47 -113z" />
+    <glyph glyph-name="sort" unicode="&#xf0dc;" horiz-adv-x="1024" 
+d="M1024 448q0 -26 -19 -45l-448 -448q-19 -19 -45 -19t-45 19l-448 448q-19 19 -19 45t19 45t45 19h896q26 0 45 -19t19 -45zM1024 832q0 -26 -19 -45t-45 -19h-896q-26 0 -45 19t-19 45t19 45l448 448q19 19 45 19t45 -19l448 -448q19 -19 19 -45z" />
+    <glyph glyph-name="sort_down" unicode="&#xf0dd;" horiz-adv-x="1024" 
+d="M1024 448q0 -26 -19 -45l-448 -448q-19 -19 -45 -19t-45 19l-448 448q-19 19 -19 45t19 45t45 19h896q26 0 45 -19t19 -45z" />
+    <glyph glyph-name="sort_up" unicode="&#xf0de;" horiz-adv-x="1024" 
+d="M1024 832q0 -26 -19 -45t-45 -19h-896q-26 0 -45 19t-19 45t19 45l448 448q19 19 45 19t45 -19l448 -448q19 -19 19 -45z" />
+    <glyph glyph-name="envelope_alt" unicode="&#xf0e0;" horiz-adv-x="1792" 
+d="M1792 826v-794q0 -66 -47 -113t-113 -47h-1472q-66 0 -113 47t-47 113v794q44 -49 101 -87q362 -246 497 -345q57 -42 92.5 -65.5t94.5 -48t110 -24.5h1h1q51 0 110 24.5t94.5 48t92.5 65.5q170 123 498 345q57 39 100 87zM1792 1120q0 -79 -49 -151t-122 -123
+q-376 -261 -468 -325q-10 -7 -42.5 -30.5t-54 -38t-52 -32.5t-57.5 -27t-50 -9h-1h-1q-23 0 -50 9t-57.5 27t-52 32.5t-54 38t-42.5 30.5q-91 64 -262 182.5t-205 142.5q-62 42 -117 115.5t-55 136.5q0 78 41.5 130t118.5 52h1472q65 0 112.5 -47t47.5 -113z" />
+    <glyph glyph-name="linkedin" unicode="&#xf0e1;" 
+d="M349 911v-991h-330v991h330zM370 1217q1 -73 -50.5 -122t-135.5 -49h-2q-82 0 -132 49t-50 122q0 74 51.5 122.5t134.5 48.5t133 -48.5t51 -122.5zM1536 488v-568h-329v530q0 105 -40.5 164.5t-126.5 59.5q-63 0 -105.5 -34.5t-63.5 -85.5q-11 -30 -11 -81v-553h-329
+q2 399 2 647t-1 296l-1 48h329v-144h-2q20 32 41 56t56.5 52t87 43.5t114.5 15.5q171 0 275 -113.5t104 -332.5z" />
+    <glyph glyph-name="undo" unicode="&#xf0e2;" 
+d="M1536 640q0 -156 -61 -298t-164 -245t-245 -164t-298 -61q-172 0 -327 72.5t-264 204.5q-7 10 -6.5 22.5t8.5 20.5l137 138q10 9 25 9q16 -2 23 -12q73 -95 179 -147t225 -52q104 0 198.5 40.5t163.5 109.5t109.5 163.5t40.5 198.5t-40.5 198.5t-109.5 163.5
+t-163.5 109.5t-198.5 40.5q-98 0 -188 -35.5t-160 -101.5l137 -138q31 -30 14 -69q-17 -40 -59 -40h-448q-26 0 -45 19t-19 45v448q0 42 40 59q39 17 69 -14l130 -129q107 101 244.5 156.5t284.5 55.5q156 0 298 -61t245 -164t164 -245t61 -298z" />
+    <glyph glyph-name="legal" unicode="&#xf0e3;" horiz-adv-x="1792" 
+d="M1771 0q0 -53 -37 -90l-107 -108q-39 -37 -91 -37q-53 0 -90 37l-363 364q-38 36 -38 90q0 53 43 96l-256 256l-126 -126q-14 -14 -34 -14t-34 14q2 -2 12.5 -12t12.5 -13t10 -11.5t10 -13.5t6 -13.5t5.5 -16.5t1.5 -18q0 -38 -28 -68q-3 -3 -16.5 -18t-19 -20.5
+t-18.5 -16.5t-22 -15.5t-22 -9t-26 -4.5q-40 0 -68 28l-408 408q-28 28 -28 68q0 13 4.5 26t9 22t15.5 22t16.5 18.5t20.5 19t18 16.5q30 28 68 28q10 0 18 -1.5t16.5 -5.5t13.5 -6t13.5 -10t11.5 -10t13 -12.5t12 -12.5q-14 14 -14 34t14 34l348 348q14 14 34 14t34 -14
+q-2 2 -12.5 12t-12.5 13t-10 11.5t-10 13.5t-6 13.5t-5.5 16.5t-1.5 18q0 38 28 68q3 3 16.5 18t19 20.5t18.5 16.5t22 15.5t22 9t26 4.5q40 0 68 -28l408 -408q28 -28 28 -68q0 -13 -4.5 -26t-9 -22t-15.5 -22t-16.5 -18.5t-20.5 -19t-18 -16.5q-30 -28 -68 -28
+q-10 0 -18 1.5t-16.5 5.5t-13.5 6t-13.5 10t-11.5 10t-13 12.5t-12 12.5q14 -14 14 -34t-14 -34l-126 -126l256 -256q43 43 96 43q52 0 91 -37l363 -363q37 -39 37 -91z" />
+    <glyph glyph-name="dashboard" unicode="&#xf0e4;" horiz-adv-x="1792" 
+d="M384 384q0 53 -37.5 90.5t-90.5 37.5t-90.5 -37.5t-37.5 -90.5t37.5 -90.5t90.5 -37.5t90.5 37.5t37.5 90.5zM576 832q0 53 -37.5 90.5t-90.5 37.5t-90.5 -37.5t-37.5 -90.5t37.5 -90.5t90.5 -37.5t90.5 37.5t37.5 90.5zM1004 351l101 382q6 26 -7.5 48.5t-38.5 29.5
+t-48 -6.5t-30 -39.5l-101 -382q-60 -5 -107 -43.5t-63 -98.5q-20 -77 20 -146t117 -89t146 20t89 117q16 60 -6 117t-72 91zM1664 384q0 53 -37.5 90.5t-90.5 37.5t-90.5 -37.5t-37.5 -90.5t37.5 -90.5t90.5 -37.5t90.5 37.5t37.5 90.5zM1024 1024q0 53 -37.5 90.5
+t-90.5 37.5t-90.5 -37.5t-37.5 -90.5t37.5 -90.5t90.5 -37.5t90.5 37.5t37.5 90.5zM1472 832q0 53 -37.5 90.5t-90.5 37.5t-90.5 -37.5t-37.5 -90.5t37.5 -90.5t90.5 -37.5t90.5 37.5t37.5 90.5zM1792 384q0 -261 -141 -483q-19 -29 -54 -29h-1402q-35 0 -54 29
+q-141 221 -141 483q0 182 71 348t191 286t286 191t348 71t348 -71t286 -191t191 -286t71 -348z" />
+    <glyph glyph-name="comment_alt" unicode="&#xf0e5;" horiz-adv-x="1792" 
+d="M896 1152q-204 0 -381.5 -69.5t-282 -187.5t-104.5 -255q0 -112 71.5 -213.5t201.5 -175.5l87 -50l-27 -96q-24 -91 -70 -172q152 63 275 171l43 38l57 -6q69 -8 130 -8q204 0 381.5 69.5t282 187.5t104.5 255t-104.5 255t-282 187.5t-381.5 69.5zM1792 640
+q0 -174 -120 -321.5t-326 -233t-450 -85.5q-70 0 -145 8q-198 -175 -460 -242q-49 -14 -114 -22h-5q-15 0 -27 10.5t-16 27.5v1q-3 4 -0.5 12t2 10t4.5 9.5l6 9t7 8.5t8 9q7 8 31 34.5t34.5 38t31 39.5t32.5 51t27 59t26 76q-157 89 -247.5 220t-90.5 281q0 174 120 321.5
+t326 233t450 85.5t450 -85.5t326 -233t120 -321.5z" />
+    <glyph glyph-name="comments_alt" unicode="&#xf0e6;" horiz-adv-x="1792" 
+d="M704 1152q-153 0 -286 -52t-211.5 -141t-78.5 -191q0 -82 53 -158t149 -132l97 -56l-35 -84q34 20 62 39l44 31l53 -10q78 -14 153 -14q153 0 286 52t211.5 141t78.5 191t-78.5 191t-211.5 141t-286 52zM704 1280q191 0 353.5 -68.5t256.5 -186.5t94 -257t-94 -257
+t-256.5 -186.5t-353.5 -68.5q-86 0 -176 16q-124 -88 -278 -128q-36 -9 -86 -16h-3q-11 0 -20.5 8t-11.5 21q-1 3 -1 6.5t0.5 6.5t2 6l2.5 5t3.5 5.5t4 5t4.5 5t4 4.5q5 6 23 25t26 29.5t22.5 29t25 38.5t20.5 44q-124 72 -195 177t-71 224q0 139 94 257t256.5 186.5
+t353.5 68.5zM1526 111q10 -24 20.5 -44t25 -38.5t22.5 -29t26 -29.5t23 -25q1 -1 4 -4.5t4.5 -5t4 -5t3.5 -5.5l2.5 -5t2 -6t0.5 -6.5t-1 -6.5q-3 -14 -13 -22t-22 -7q-50 7 -86 16q-154 40 -278 128q-90 -16 -176 -16q-271 0 -472 132q58 -4 88 -4q161 0 309 45t264 129
+q125 92 192 212t67 254q0 77 -23 152q129 -71 204 -178t75 -230q0 -120 -71 -224.5t-195 -176.5z" />
+    <glyph glyph-name="bolt" unicode="&#xf0e7;" horiz-adv-x="896" 
+d="M885 970q18 -20 7 -44l-540 -1157q-13 -25 -42 -25q-4 0 -14 2q-17 5 -25.5 19t-4.5 30l197 808l-406 -101q-4 -1 -12 -1q-18 0 -31 11q-18 15 -13 39l201 825q4 14 16 23t28 9h328q19 0 32 -12.5t13 -29.5q0 -8 -5 -18l-171 -463l396 98q8 2 12 2q19 0 34 -15z" />
+    <glyph glyph-name="sitemap" unicode="&#xf0e8;" horiz-adv-x="1792" 
+d="M1792 288v-320q0 -40 -28 -68t-68 -28h-320q-40 0 -68 28t-28 68v320q0 40 28 68t68 28h96v192h-512v-192h96q40 0 68 -28t28 -68v-320q0 -40 -28 -68t-68 -28h-320q-40 0 -68 28t-28 68v320q0 40 28 68t68 28h96v192h-512v-192h96q40 0 68 -28t28 -68v-320
+q0 -40 -28 -68t-68 -28h-320q-40 0 -68 28t-28 68v320q0 40 28 68t68 28h96v192q0 52 38 90t90 38h512v192h-96q-40 0 -68 28t-28 68v320q0 40 28 68t68 28h320q40 0 68 -28t28 -68v-320q0 -40 -28 -68t-68 -28h-96v-192h512q52 0 90 -38t38 -90v-192h96q40 0 68 -28t28 -68
+z" />
+    <glyph glyph-name="umbrella" unicode="&#xf0e9;" horiz-adv-x="1664" 
+d="M896 708v-580q0 -104 -76 -180t-180 -76t-180 76t-76 180q0 26 19 45t45 19t45 -19t19 -45q0 -50 39 -89t89 -39t89 39t39 89v580q33 11 64 11t64 -11zM1664 681q0 -13 -9.5 -22.5t-22.5 -9.5q-11 0 -23 10q-49 46 -93 69t-102 23q-68 0 -128 -37t-103 -97
+q-7 -10 -17.5 -28t-14.5 -24q-11 -17 -28 -17q-18 0 -29 17q-4 6 -14.5 24t-17.5 28q-43 60 -102.5 97t-127.5 37t-127.5 -37t-102.5 -97q-7 -10 -17.5 -28t-14.5 -24q-11 -17 -29 -17q-17 0 -28 17q-4 6 -14.5 24t-17.5 28q-43 60 -103 97t-128 37q-58 0 -102 -23t-93 -69
+q-12 -10 -23 -10q-13 0 -22.5 9.5t-9.5 22.5q0 5 1 7q45 183 172.5 319.5t298 204.5t360.5 68q140 0 274.5 -40t246.5 -113.5t194.5 -187t115.5 -251.5q1 -2 1 -7zM896 1408v-98q-42 2 -64 2t-64 -2v98q0 26 19 45t45 19t45 -19t19 -45z" />
+    <glyph glyph-name="paste" unicode="&#xf0ea;" horiz-adv-x="1792" 
+d="M768 -128h896v640h-416q-40 0 -68 28t-28 68v416h-384v-1152zM1024 1312v64q0 13 -9.5 22.5t-22.5 9.5h-704q-13 0 -22.5 -9.5t-9.5 -22.5v-64q0 -13 9.5 -22.5t22.5 -9.5h704q13 0 22.5 9.5t9.5 22.5zM1280 640h299l-299 299v-299zM1792 512v-672q0 -40 -28 -68t-68 -28
+h-960q-40 0 -68 28t-28 68v160h-544q-40 0 -68 28t-28 68v1344q0 40 28 68t68 28h1088q40 0 68 -28t28 -68v-328q21 -13 36 -28l408 -408q28 -28 48 -76t20 -88z" />
+    <glyph glyph-name="light_bulb" unicode="&#xf0eb;" horiz-adv-x="1024" 
+d="M736 960q0 -13 -9.5 -22.5t-22.5 -9.5t-22.5 9.5t-9.5 22.5q0 46 -54 71t-106 25q-13 0 -22.5 9.5t-9.5 22.5t9.5 22.5t22.5 9.5q50 0 99.5 -16t87 -54t37.5 -90zM896 960q0 72 -34.5 134t-90 101.5t-123 62t-136.5 22.5t-136.5 -22.5t-123 -62t-90 -101.5t-34.5 -134
+q0 -101 68 -180q10 -11 30.5 -33t30.5 -33q128 -153 141 -298h228q13 145 141 298q10 11 30.5 33t30.5 33q68 79 68 180zM1024 960q0 -155 -103 -268q-45 -49 -74.5 -87t-59.5 -95.5t-34 -107.5q47 -28 47 -82q0 -37 -25 -64q25 -27 25 -64q0 -52 -45 -81q13 -23 13 -47
+q0 -46 -31.5 -71t-77.5 -25q-20 -44 -60 -70t-87 -26t-87 26t-60 70q-46 0 -77.5 25t-31.5 71q0 24 13 47q-45 29 -45 81q0 37 25 64q-25 27 -25 64q0 54 47 82q-4 50 -34 107.5t-59.5 95.5t-74.5 87q-103 113 -103 268q0 99 44.5 184.5t117 142t164 89t186.5 32.5
+t186.5 -32.5t164 -89t117 -142t44.5 -184.5z" />
+    <glyph glyph-name="exchange" unicode="&#xf0ec;" horiz-adv-x="1792" 
+d="M1792 352v-192q0 -13 -9.5 -22.5t-22.5 -9.5h-1376v-192q0 -13 -9.5 -22.5t-22.5 -9.5q-12 0 -24 10l-319 320q-9 9 -9 22q0 14 9 23l320 320q9 9 23 9q13 0 22.5 -9.5t9.5 -22.5v-192h1376q13 0 22.5 -9.5t9.5 -22.5zM1792 896q0 -14 -9 -23l-320 -320q-9 -9 -23 -9
+q-13 0 -22.5 9.5t-9.5 22.5v192h-1376q-13 0 -22.5 9.5t-9.5 22.5v192q0 13 9.5 22.5t22.5 9.5h1376v192q0 14 9 23t23 9q12 0 24 -10l319 -319q9 -9 9 -23z" />
+    <glyph glyph-name="cloud_download" unicode="&#xf0ed;" horiz-adv-x="1920" 
+d="M1280 608q0 14 -9 23t-23 9h-224v352q0 13 -9.5 22.5t-22.5 9.5h-192q-13 0 -22.5 -9.5t-9.5 -22.5v-352h-224q-13 0 -22.5 -9.5t-9.5 -22.5q0 -14 9 -23l352 -352q9 -9 23 -9t23 9l351 351q10 12 10 24zM1920 384q0 -159 -112.5 -271.5t-271.5 -112.5h-1088
+q-185 0 -316.5 131.5t-131.5 316.5q0 130 70 240t188 165q-2 30 -2 43q0 212 150 362t362 150q156 0 285.5 -87t188.5 -231q71 62 166 62q106 0 181 -75t75 -181q0 -76 -41 -138q130 -31 213.5 -135.5t83.5 -238.5z" />
+    <glyph glyph-name="cloud_upload" unicode="&#xf0ee;" horiz-adv-x="1920" 
+d="M1280 672q0 14 -9 23l-352 352q-9 9 -23 9t-23 -9l-351 -351q-10 -12 -10 -24q0 -14 9 -23t23 -9h224v-352q0 -13 9.5 -22.5t22.5 -9.5h192q13 0 22.5 9.5t9.5 22.5v352h224q13 0 22.5 9.5t9.5 22.5zM1920 384q0 -159 -112.5 -271.5t-271.5 -112.5h-1088
+q-185 0 -316.5 131.5t-131.5 316.5q0 130 70 240t188 165q-2 30 -2 43q0 212 150 362t362 150q156 0 285.5 -87t188.5 -231q71 62 166 62q106 0 181 -75t75 -181q0 -76 -41 -138q130 -31 213.5 -135.5t83.5 -238.5z" />
+    <glyph glyph-name="user_md" unicode="&#xf0f0;" horiz-adv-x="1408" 
+d="M384 192q0 -26 -19 -45t-45 -19t-45 19t-19 45t19 45t45 19t45 -19t19 -45zM1408 131q0 -121 -73 -190t-194 -69h-874q-121 0 -194 69t-73 190q0 68 5.5 131t24 138t47.5 132.5t81 103t120 60.5q-22 -52 -22 -120v-203q-58 -20 -93 -70t-35 -111q0 -80 56 -136t136 -56
+t136 56t56 136q0 61 -35.5 111t-92.5 70v203q0 62 25 93q132 -104 295 -104t295 104q25 -31 25 -93v-64q-106 0 -181 -75t-75 -181v-89q-32 -29 -32 -71q0 -40 28 -68t68 -28t68 28t28 68q0 42 -32 71v89q0 52 38 90t90 38t90 -38t38 -90v-89q-32 -29 -32 -71q0 -40 28 -68
+t68 -28t68 28t28 68q0 42 -32 71v89q0 68 -34.5 127.5t-93.5 93.5q0 10 0.5 42.5t0 48t-2.5 41.5t-7 47t-13 40q68 -15 120 -60.5t81 -103t47.5 -132.5t24 -138t5.5 -131zM1088 1024q0 -159 -112.5 -271.5t-271.5 -112.5t-271.5 112.5t-112.5 271.5t112.5 271.5t271.5 112.5
+t271.5 -112.5t112.5 -271.5z" />
+    <glyph glyph-name="stethoscope" unicode="&#xf0f1;" horiz-adv-x="1408" 
+d="M1280 832q0 26 -19 45t-45 19t-45 -19t-19 -45t19 -45t45 -19t45 19t19 45zM1408 832q0 -62 -35.5 -111t-92.5 -70v-395q0 -159 -131.5 -271.5t-316.5 -112.5t-316.5 112.5t-131.5 271.5v132q-164 20 -274 128t-110 252v512q0 26 19 45t45 19q6 0 16 -2q17 30 47 48
+t65 18q53 0 90.5 -37.5t37.5 -90.5t-37.5 -90.5t-90.5 -37.5q-33 0 -64 18v-402q0 -106 94 -181t226 -75t226 75t94 181v402q-31 -18 -64 -18q-53 0 -90.5 37.5t-37.5 90.5t37.5 90.5t90.5 37.5q35 0 65 -18t47 -48q10 2 16 2q26 0 45 -19t19 -45v-512q0 -144 -110 -252
+t-274 -128v-132q0 -106 94 -181t226 -75t226 75t94 181v395q-57 21 -92.5 70t-35.5 111q0 80 56 136t136 56t136 -56t56 -136z" />
+    <glyph glyph-name="suitcase" unicode="&#xf0f2;" horiz-adv-x="1792" 
+d="M640 1152h512v128h-512v-128zM288 1152v-1280h-64q-92 0 -158 66t-66 158v832q0 92 66 158t158 66h64zM1408 1152v-1280h-1024v1280h128v160q0 40 28 68t68 28h576q40 0 68 -28t28 -68v-160h128zM1792 928v-832q0 -92 -66 -158t-158 -66h-64v1280h64q92 0 158 -66
+t66 -158z" />
+    <glyph glyph-name="bell_alt" unicode="&#xf0f3;" horiz-adv-x="1792" 
+d="M912 -160q0 16 -16 16q-59 0 -101.5 42.5t-42.5 101.5q0 16 -16 16t-16 -16q0 -73 51.5 -124.5t124.5 -51.5q16 0 16 16zM1728 128q0 -52 -38 -90t-90 -38h-448q0 -106 -75 -181t-181 -75t-181 75t-75 181h-448q-52 0 -90 38t-38 90q50 42 91 88t85 119.5t74.5 158.5
+t50 206t19.5 260q0 152 117 282.5t307 158.5q-8 19 -8 39q0 40 28 68t68 28t68 -28t28 -68q0 -20 -8 -39q190 -28 307 -158.5t117 -282.5q0 -139 19.5 -260t50 -206t74.5 -158.5t85 -119.5t91 -88z" />
+    <glyph glyph-name="coffee" unicode="&#xf0f4;" horiz-adv-x="1920" 
+d="M1664 896q0 80 -56 136t-136 56h-64v-384h64q80 0 136 56t56 136zM0 128h1792q0 -106 -75 -181t-181 -75h-1280q-106 0 -181 75t-75 181zM1856 896q0 -159 -112.5 -271.5t-271.5 -112.5h-64v-32q0 -92 -66 -158t-158 -66h-704q-92 0 -158 66t-66 158v736q0 26 19 45
+t45 19h1152q159 0 271.5 -112.5t112.5 -271.5z" />
+    <glyph glyph-name="food" unicode="&#xf0f5;" horiz-adv-x="1408" 
+d="M640 1472v-640q0 -61 -35.5 -111t-92.5 -70v-779q0 -52 -38 -90t-90 -38h-128q-52 0 -90 38t-38 90v779q-57 20 -92.5 70t-35.5 111v640q0 26 19 45t45 19t45 -19t19 -45v-416q0 -26 19 -45t45 -19t45 19t19 45v416q0 26 19 45t45 19t45 -19t19 -45v-416q0 -26 19 -45
+t45 -19t45 19t19 45v416q0 26 19 45t45 19t45 -19t19 -45zM1408 1472v-1600q0 -52 -38 -90t-90 -38h-128q-52 0 -90 38t-38 90v512h-224q-13 0 -22.5 9.5t-9.5 22.5v800q0 132 94 226t226 94h256q26 0 45 -19t19 -45z" />
+    <glyph glyph-name="file_text_alt" unicode="&#xf0f6;" 
+d="M1468 1156q28 -28 48 -76t20 -88v-1152q0 -40 -28 -68t-68 -28h-1344q-40 0 -68 28t-28 68v1600q0 40 28 68t68 28h896q40 0 88 -20t76 -48zM1024 1400v-376h376q-10 29 -22 41l-313 313q-12 12 -41 22zM1408 -128v1024h-416q-40 0 -68 28t-28 68v416h-768v-1536h1280z
+M384 736q0 14 9 23t23 9h704q14 0 23 -9t9 -23v-64q0 -14 -9 -23t-23 -9h-704q-14 0 -23 9t-9 23v64zM1120 512q14 0 23 -9t9 -23v-64q0 -14 -9 -23t-23 -9h-704q-14 0 -23 9t-9 23v64q0 14 9 23t23 9h704zM1120 256q14 0 23 -9t9 -23v-64q0 -14 -9 -23t-23 -9h-704
+q-14 0 -23 9t-9 23v64q0 14 9 23t23 9h704z" />
+    <glyph glyph-name="building" unicode="&#xf0f7;" horiz-adv-x="1408" 
+d="M384 224v-64q0 -13 -9.5 -22.5t-22.5 -9.5h-64q-13 0 -22.5 9.5t-9.5 22.5v64q0 13 9.5 22.5t22.5 9.5h64q13 0 22.5 -9.5t9.5 -22.5zM384 480v-64q0 -13 -9.5 -22.5t-22.5 -9.5h-64q-13 0 -22.5 9.5t-9.5 22.5v64q0 13 9.5 22.5t22.5 9.5h64q13 0 22.5 -9.5t9.5 -22.5z
+M640 480v-64q0 -13 -9.5 -22.5t-22.5 -9.5h-64q-13 0 -22.5 9.5t-9.5 22.5v64q0 13 9.5 22.5t22.5 9.5h64q13 0 22.5 -9.5t9.5 -22.5zM384 736v-64q0 -13 -9.5 -22.5t-22.5 -9.5h-64q-13 0 -22.5 9.5t-9.5 22.5v64q0 13 9.5 22.5t22.5 9.5h64q13 0 22.5 -9.5t9.5 -22.5z
+M1152 224v-64q0 -13 -9.5 -22.5t-22.5 -9.5h-64q-13 0 -22.5 9.5t-9.5 22.5v64q0 13 9.5 22.5t22.5 9.5h64q13 0 22.5 -9.5t9.5 -22.5zM896 480v-64q0 -13 -9.5 -22.5t-22.5 -9.5h-64q-13 0 -22.5 9.5t-9.5 22.5v64q0 13 9.5 22.5t22.5 9.5h64q13 0 22.5 -9.5t9.5 -22.5z
+M640 736v-64q0 -13 -9.5 -22.5t-22.5 -9.5h-64q-13 0 -22.5 9.5t-9.5 22.5v64q0 13 9.5 22.5t22.5 9.5h64q13 0 22.5 -9.5t9.5 -22.5zM384 992v-64q0 -13 -9.5 -22.5t-22.5 -9.5h-64q-13 0 -22.5 9.5t-9.5 22.5v64q0 13 9.5 22.5t22.5 9.5h64q13 0 22.5 -9.5t9.5 -22.5z
+M1152 480v-64q0 -13 -9.5 -22.5t-22.5 -9.5h-64q-13 0 -22.5 9.5t-9.5 22.5v64q0 13 9.5 22.5t22.5 9.5h64q13 0 22.5 -9.5t9.5 -22.5zM896 736v-64q0 -13 -9.5 -22.5t-22.5 -9.5h-64q-13 0 -22.5 9.5t-9.5 22.5v64q0 13 9.5 22.5t22.5 9.5h64q13 0 22.5 -9.5t9.5 -22.5z
+M640 992v-64q0 -13 -9.5 -22.5t-22.5 -9.5h-64q-13 0 -22.5 9.5t-9.5 22.5v64q0 13 9.5 22.5t22.5 9.5h64q13 0 22.5 -9.5t9.5 -22.5zM384 1248v-64q0 -13 -9.5 -22.5t-22.5 -9.5h-64q-13 0 -22.5 9.5t-9.5 22.5v64q0 13 9.5 22.5t22.5 9.5h64q13 0 22.5 -9.5t9.5 -22.5z
+M1152 736v-64q0 -13 -9.5 -22.5t-22.5 -9.5h-64q-13 0 -22.5 9.5t-9.5 22.5v64q0 13 9.5 22.5t22.5 9.5h64q13 0 22.5 -9.5t9.5 -22.5zM896 992v-64q0 -13 -9.5 -22.5t-22.5 -9.5h-64q-13 0 -22.5 9.5t-9.5 22.5v64q0 13 9.5 22.5t22.5 9.5h64q13 0 22.5 -9.5t9.5 -22.5z
+M640 1248v-64q0 -13 -9.5 -22.5t-22.5 -9.5h-64q-13 0 -22.5 9.5t-9.5 22.5v64q0 13 9.5 22.5t22.5 9.5h64q13 0 22.5 -9.5t9.5 -22.5zM1152 992v-64q0 -13 -9.5 -22.5t-22.5 -9.5h-64q-13 0 -22.5 9.5t-9.5 22.5v64q0 13 9.5 22.5t22.5 9.5h64q13 0 22.5 -9.5t9.5 -22.5z
+M896 1248v-64q0 -13 -9.5 -22.5t-22.5 -9.5h-64q-13 0 -22.5 9.5t-9.5 22.5v64q0 13 9.5 22.5t22.5 9.5h64q13 0 22.5 -9.5t9.5 -22.5zM1152 1248v-64q0 -13 -9.5 -22.5t-22.5 -9.5h-64q-13 0 -22.5 9.5t-9.5 22.5v64q0 13 9.5 22.5t22.5 9.5h64q13 0 22.5 -9.5t9.5 -22.5z
+M896 -128h384v1536h-1152v-1536h384v224q0 13 9.5 22.5t22.5 9.5h320q13 0 22.5 -9.5t9.5 -22.5v-224zM1408 1472v-1664q0 -26 -19 -45t-45 -19h-1280q-26 0 -45 19t-19 45v1664q0 26 19 45t45 19h1280q26 0 45 -19t19 -45z" />
+    <glyph glyph-name="hospital" unicode="&#xf0f8;" horiz-adv-x="1408" 
+d="M384 224v-64q0 -13 -9.5 -22.5t-22.5 -9.5h-64q-13 0 -22.5 9.5t-9.5 22.5v64q0 13 9.5 22.5t22.5 9.5h64q13 0 22.5 -9.5t9.5 -22.5zM384 480v-64q0 -13 -9.5 -22.5t-22.5 -9.5h-64q-13 0 -22.5 9.5t-9.5 22.5v64q0 13 9.5 22.5t22.5 9.5h64q13 0 22.5 -9.5t9.5 -22.5z
+M640 480v-64q0 -13 -9.5 -22.5t-22.5 -9.5h-64q-13 0 -22.5 9.5t-9.5 22.5v64q0 13 9.5 22.5t22.5 9.5h64q13 0 22.5 -9.5t9.5 -22.5zM384 736v-64q0 -13 -9.5 -22.5t-22.5 -9.5h-64q-13 0 -22.5 9.5t-9.5 22.5v64q0 13 9.5 22.5t22.5 9.5h64q13 0 22.5 -9.5t9.5 -22.5z
+M1152 224v-64q0 -13 -9.5 -22.5t-22.5 -9.5h-64q-13 0 -22.5 9.5t-9.5 22.5v64q0 13 9.5 22.5t22.5 9.5h64q13 0 22.5 -9.5t9.5 -22.5zM896 480v-64q0 -13 -9.5 -22.5t-22.5 -9.5h-64q-13 0 -22.5 9.5t-9.5 22.5v64q0 13 9.5 22.5t22.5 9.5h64q13 0 22.5 -9.5t9.5 -22.5z
+M640 736v-64q0 -13 -9.5 -22.5t-22.5 -9.5h-64q-13 0 -22.5 9.5t-9.5 22.5v64q0 13 9.5 22.5t22.5 9.5h64q13 0 22.5 -9.5t9.5 -22.5zM1152 480v-64q0 -13 -9.5 -22.5t-22.5 -9.5h-64q-13 0 -22.5 9.5t-9.5 22.5v64q0 13 9.5 22.5t22.5 9.5h64q13 0 22.5 -9.5t9.5 -22.5z
+M896 736v-64q0 -13 -9.5 -22.5t-22.5 -9.5h-64q-13 0 -22.5 9.5t-9.5 22.5v64q0 13 9.5 22.5t22.5 9.5h64q13 0 22.5 -9.5t9.5 -22.5zM1152 736v-64q0 -13 -9.5 -22.5t-22.5 -9.5h-64q-13 0 -22.5 9.5t-9.5 22.5v64q0 13 9.5 22.5t22.5 9.5h64q13 0 22.5 -9.5t9.5 -22.5z
+M896 -128h384v1152h-256v-32q0 -40 -28 -68t-68 -28h-448q-40 0 -68 28t-28 68v32h-256v-1152h384v224q0 13 9.5 22.5t22.5 9.5h320q13 0 22.5 -9.5t9.5 -22.5v-224zM896 1056v320q0 13 -9.5 22.5t-22.5 9.5h-64q-13 0 -22.5 -9.5t-9.5 -22.5v-96h-128v96q0 13 -9.5 22.5
+t-22.5 9.5h-64q-13 0 -22.5 -9.5t-9.5 -22.5v-320q0 -13 9.5 -22.5t22.5 -9.5h64q13 0 22.5 9.5t9.5 22.5v96h128v-96q0 -13 9.5 -22.5t22.5 -9.5h64q13 0 22.5 9.5t9.5 22.5zM1408 1088v-1280q0 -26 -19 -45t-45 -19h-1280q-26 0 -45 19t-19 45v1280q0 26 19 45t45 19h320
+v288q0 40 28 68t68 28h448q40 0 68 -28t28 -68v-288h320q26 0 45 -19t19 -45z" />
+    <glyph glyph-name="ambulance" unicode="&#xf0f9;" horiz-adv-x="1920" 
+d="M640 128q0 53 -37.5 90.5t-90.5 37.5t-90.5 -37.5t-37.5 -90.5t37.5 -90.5t90.5 -37.5t90.5 37.5t37.5 90.5zM256 640h384v256h-158q-14 -2 -22 -9l-195 -195q-7 -12 -9 -22v-30zM1536 128q0 53 -37.5 90.5t-90.5 37.5t-90.5 -37.5t-37.5 -90.5t37.5 -90.5t90.5 -37.5
+t90.5 37.5t37.5 90.5zM1664 800v192q0 14 -9 23t-23 9h-224v224q0 14 -9 23t-23 9h-192q-14 0 -23 -9t-9 -23v-224h-224q-14 0 -23 -9t-9 -23v-192q0 -14 9 -23t23 -9h224v-224q0 -14 9 -23t23 -9h192q14 0 23 9t9 23v224h224q14 0 23 9t9 23zM1920 1344v-1152
+q0 -26 -19 -45t-45 -19h-192q0 -106 -75 -181t-181 -75t-181 75t-75 181h-384q0 -106 -75 -181t-181 -75t-181 75t-75 181h-128q-26 0 -45 19t-19 45t19 45t45 19v416q0 26 13 58t32 51l198 198q19 19 51 32t58 13h160v320q0 26 19 45t45 19h1152q26 0 45 -19t19 -45z" />
+    <glyph glyph-name="medkit" unicode="&#xf0fa;" horiz-adv-x="1792" 
+d="M1280 416v192q0 14 -9 23t-23 9h-224v224q0 14 -9 23t-23 9h-192q-14 0 -23 -9t-9 -23v-224h-224q-14 0 -23 -9t-9 -23v-192q0 -14 9 -23t23 -9h224v-224q0 -14 9 -23t23 -9h192q14 0 23 9t9 23v224h224q14 0 23 9t9 23zM640 1152h512v128h-512v-128zM256 1152v-1280h-32
+q-92 0 -158 66t-66 158v832q0 92 66 158t158 66h32zM1440 1152v-1280h-1088v1280h160v160q0 40 28 68t68 28h576q40 0 68 -28t28 -68v-160h160zM1792 928v-832q0 -92 -66 -158t-158 -66h-32v1280h32q92 0 158 -66t66 -158z" />
+    <glyph glyph-name="fighter_jet" unicode="&#xf0fb;" horiz-adv-x="1920" 
+d="M1920 576q-1 -32 -288 -96l-352 -32l-224 -64h-64l-293 -352h69q26 0 45 -4.5t19 -11.5t-19 -11.5t-45 -4.5h-96h-160h-64v32h64v416h-160l-192 -224h-96l-32 32v192h32v32h128v8l-192 24v128l192 24v8h-128v32h-32v192l32 32h96l192 -224h160v416h-64v32h64h160h96
+q26 0 45 -4.5t19 -11.5t-19 -11.5t-45 -4.5h-69l293 -352h64l224 -64l352 -32q128 -28 200 -52t80 -34z" />
+    <glyph glyph-name="beer" unicode="&#xf0fc;" horiz-adv-x="1664" 
+d="M640 640v384h-256v-256q0 -53 37.5 -90.5t90.5 -37.5h128zM1664 192v-192h-1152v192l128 192h-128q-159 0 -271.5 112.5t-112.5 271.5v320l-64 64l32 128h480l32 128h960l32 -192l-64 -32v-800z" />
+    <glyph glyph-name="h_sign" unicode="&#xf0fd;" 
+d="M1280 192v896q0 26 -19 45t-45 19h-128q-26 0 -45 -19t-19 -45v-320h-512v320q0 26 -19 45t-45 19h-128q-26 0 -45 -19t-19 -45v-896q0 -26 19 -45t45 -19h128q26 0 45 19t19 45v320h512v-320q0 -26 19 -45t45 -19h128q26 0 45 19t19 45zM1536 1120v-960
+q0 -119 -84.5 -203.5t-203.5 -84.5h-960q-119 0 -203.5 84.5t-84.5 203.5v960q0 119 84.5 203.5t203.5 84.5h960q119 0 203.5 -84.5t84.5 -203.5z" />
+    <glyph glyph-name="f0fe" unicode="&#xf0fe;" 
+d="M1280 576v128q0 26 -19 45t-45 19h-320v320q0 26 -19 45t-45 19h-128q-26 0 -45 -19t-19 -45v-320h-320q-26 0 -45 -19t-19 -45v-128q0 -26 19 -45t45 -19h320v-320q0 -26 19 -45t45 -19h128q26 0 45 19t19 45v320h320q26 0 45 19t19 45zM1536 1120v-960
+q0 -119 -84.5 -203.5t-203.5 -84.5h-960q-119 0 -203.5 84.5t-84.5 203.5v960q0 119 84.5 203.5t203.5 84.5h960q119 0 203.5 -84.5t84.5 -203.5z" />
+    <glyph glyph-name="double_angle_left" unicode="&#xf100;" horiz-adv-x="1024" 
+d="M627 160q0 -13 -10 -23l-50 -50q-10 -10 -23 -10t-23 10l-466 466q-10 10 -10 23t10 23l466 466q10 10 23 10t23 -10l50 -50q10 -10 10 -23t-10 -23l-393 -393l393 -393q10 -10 10 -23zM1011 160q0 -13 -10 -23l-50 -50q-10 -10 -23 -10t-23 10l-466 466q-10 10 -10 23
+t10 23l466 466q10 10 23 10t23 -10l50 -50q10 -10 10 -23t-10 -23l-393 -393l393 -393q10 -10 10 -23z" />
+    <glyph glyph-name="double_angle_right" unicode="&#xf101;" horiz-adv-x="1024" 
+d="M595 576q0 -13 -10 -23l-466 -466q-10 -10 -23 -10t-23 10l-50 50q-10 10 -10 23t10 23l393 393l-393 393q-10 10 -10 23t10 23l50 50q10 10 23 10t23 -10l466 -466q10 -10 10 -23zM979 576q0 -13 -10 -23l-466 -466q-10 -10 -23 -10t-23 10l-50 50q-10 10 -10 23t10 23
+l393 393l-393 393q-10 10 -10 23t10 23l50 50q10 10 23 10t23 -10l466 -466q10 -10 10 -23z" />
+    <glyph glyph-name="double_angle_up" unicode="&#xf102;" horiz-adv-x="1152" 
+d="M1075 224q0 -13 -10 -23l-50 -50q-10 -10 -23 -10t-23 10l-393 393l-393 -393q-10 -10 -23 -10t-23 10l-50 50q-10 10 -10 23t10 23l466 466q10 10 23 10t23 -10l466 -466q10 -10 10 -23zM1075 608q0 -13 -10 -23l-50 -50q-10 -10 -23 -10t-23 10l-393 393l-393 -393
+q-10 -10 -23 -10t-23 10l-50 50q-10 10 -10 23t10 23l466 466q10 10 23 10t23 -10l466 -466q10 -10 10 -23z" />
+    <glyph glyph-name="double_angle_down" unicode="&#xf103;" horiz-adv-x="1152" 
+d="M1075 672q0 -13 -10 -23l-466 -466q-10 -10 -23 -10t-23 10l-466 466q-10 10 -10 23t10 23l50 50q10 10 23 10t23 -10l393 -393l393 393q10 10 23 10t23 -10l50 -50q10 -10 10 -23zM1075 1056q0 -13 -10 -23l-466 -466q-10 -10 -23 -10t-23 10l-466 466q-10 10 -10 23
+t10 23l50 50q10 10 23 10t23 -10l393 -393l393 393q10 10 23 10t23 -10l50 -50q10 -10 10 -23z" />
+    <glyph glyph-name="angle_left" unicode="&#xf104;" horiz-adv-x="640" 
+d="M627 992q0 -13 -10 -23l-393 -393l393 -393q10 -10 10 -23t-10 -23l-50 -50q-10 -10 -23 -10t-23 10l-466 466q-10 10 -10 23t10 23l466 466q10 10 23 10t23 -10l50 -50q10 -10 10 -23z" />
+    <glyph glyph-name="angle_right" unicode="&#xf105;" horiz-adv-x="640" 
+d="M595 576q0 -13 -10 -23l-466 -466q-10 -10 -23 -10t-23 10l-50 50q-10 10 -10 23t10 23l393 393l-393 393q-10 10 -10 23t10 23l50 50q10 10 23 10t23 -10l466 -466q10 -10 10 -23z" />
+    <glyph glyph-name="angle_up" unicode="&#xf106;" horiz-adv-x="1152" 
+d="M1075 352q0 -13 -10 -23l-50 -50q-10 -10 -23 -10t-23 10l-393 393l-393 -393q-10 -10 -23 -10t-23 10l-50 50q-10 10 -10 23t10 23l466 466q10 10 23 10t23 -10l466 -466q10 -10 10 -23z" />
+    <glyph glyph-name="angle_down" unicode="&#xf107;" horiz-adv-x="1152" 
+d="M1075 800q0 -13 -10 -23l-466 -466q-10 -10 -23 -10t-23 10l-466 466q-10 10 -10 23t10 23l50 50q10 10 23 10t23 -10l393 -393l393 393q10 10 23 10t23 -10l50 -50q10 -10 10 -23z" />
+    <glyph glyph-name="desktop" unicode="&#xf108;" horiz-adv-x="1920" 
+d="M1792 544v832q0 13 -9.5 22.5t-22.5 9.5h-1600q-13 0 -22.5 -9.5t-9.5 -22.5v-832q0 -13 9.5 -22.5t22.5 -9.5h1600q13 0 22.5 9.5t9.5 22.5zM1920 1376v-1088q0 -66 -47 -113t-113 -47h-544q0 -37 16 -77.5t32 -71t16 -43.5q0 -26 -19 -45t-45 -19h-512q-26 0 -45 19
+t-19 45q0 14 16 44t32 70t16 78h-544q-66 0 -113 47t-47 113v1088q0 66 47 113t113 47h1600q66 0 113 -47t47 -113z" />
+    <glyph glyph-name="laptop" unicode="&#xf109;" horiz-adv-x="1920" 
+d="M416 256q-66 0 -113 47t-47 113v704q0 66 47 113t113 47h1088q66 0 113 -47t47 -113v-704q0 -66 -47 -113t-113 -47h-1088zM384 1120v-704q0 -13 9.5 -22.5t22.5 -9.5h1088q13 0 22.5 9.5t9.5 22.5v704q0 13 -9.5 22.5t-22.5 9.5h-1088q-13 0 -22.5 -9.5t-9.5 -22.5z
+M1760 192h160v-96q0 -40 -47 -68t-113 -28h-1600q-66 0 -113 28t-47 68v96h160h1600zM1040 96q16 0 16 16t-16 16h-160q-16 0 -16 -16t16 -16h160z" />
+    <glyph glyph-name="tablet" unicode="&#xf10a;" horiz-adv-x="1152" 
+d="M640 128q0 26 -19 45t-45 19t-45 -19t-19 -45t19 -45t45 -19t45 19t19 45zM1024 288v960q0 13 -9.5 22.5t-22.5 9.5h-832q-13 0 -22.5 -9.5t-9.5 -22.5v-960q0 -13 9.5 -22.5t22.5 -9.5h832q13 0 22.5 9.5t9.5 22.5zM1152 1248v-1088q0 -66 -47 -113t-113 -47h-832
+q-66 0 -113 47t-47 113v1088q0 66 47 113t113 47h832q66 0 113 -47t47 -113z" />
+    <glyph glyph-name="mobile_phone" unicode="&#xf10b;" horiz-adv-x="768" 
+d="M464 128q0 33 -23.5 56.5t-56.5 23.5t-56.5 -23.5t-23.5 -56.5t23.5 -56.5t56.5 -23.5t56.5 23.5t23.5 56.5zM672 288v704q0 13 -9.5 22.5t-22.5 9.5h-512q-13 0 -22.5 -9.5t-9.5 -22.5v-704q0 -13 9.5 -22.5t22.5 -9.5h512q13 0 22.5 9.5t9.5 22.5zM480 1136
+q0 16 -16 16h-160q-16 0 -16 -16t16 -16h160q16 0 16 16zM768 1152v-1024q0 -52 -38 -90t-90 -38h-512q-52 0 -90 38t-38 90v1024q0 52 38 90t90 38h512q52 0 90 -38t38 -90z" />
+    <glyph glyph-name="circle_blank" unicode="&#xf10c;" 
+d="M768 1184q-148 0 -273 -73t-198 -198t-73 -273t73 -273t198 -198t273 -73t273 73t198 198t73 273t-73 273t-198 198t-273 73zM1536 640q0 -209 -103 -385.5t-279.5 -279.5t-385.5 -103t-385.5 103t-279.5 279.5t-103 385.5t103 385.5t279.5 279.5t385.5 103t385.5 -103
+t279.5 -279.5t103 -385.5z" />
+    <glyph glyph-name="quote_left" unicode="&#xf10d;" horiz-adv-x="1664" 
+d="M768 576v-384q0 -80 -56 -136t-136 -56h-384q-80 0 -136 56t-56 136v704q0 104 40.5 198.5t109.5 163.5t163.5 109.5t198.5 40.5h64q26 0 45 -19t19 -45v-128q0 -26 -19 -45t-45 -19h-64q-106 0 -181 -75t-75 -181v-32q0 -40 28 -68t68 -28h224q80 0 136 -56t56 -136z
+M1664 576v-384q0 -80 -56 -136t-136 -56h-384q-80 0 -136 56t-56 136v704q0 104 40.5 198.5t109.5 163.5t163.5 109.5t198.5 40.5h64q26 0 45 -19t19 -45v-128q0 -26 -19 -45t-45 -19h-64q-106 0 -181 -75t-75 -181v-32q0 -40 28 -68t68 -28h224q80 0 136 -56t56 -136z" />
+    <glyph glyph-name="quote_right" unicode="&#xf10e;" horiz-adv-x="1664" 
+d="M768 1216v-704q0 -104 -40.5 -198.5t-109.5 -163.5t-163.5 -109.5t-198.5 -40.5h-64q-26 0 -45 19t-19 45v128q0 26 19 45t45 19h64q106 0 181 75t75 181v32q0 40 -28 68t-68 28h-224q-80 0 -136 56t-56 136v384q0 80 56 136t136 56h384q80 0 136 -56t56 -136zM1664 1216
+v-704q0 -104 -40.5 -198.5t-109.5 -163.5t-163.5 -109.5t-198.5 -40.5h-64q-26 0 -45 19t-19 45v128q0 26 19 45t45 19h64q106 0 181 75t75 181v32q0 40 -28 68t-68 28h-224q-80 0 -136 56t-56 136v384q0 80 56 136t136 56h384q80 0 136 -56t56 -136z" />
+    <glyph glyph-name="spinner" unicode="&#xf110;" horiz-adv-x="1792" 
+d="M526 142q0 -53 -37.5 -90.5t-90.5 -37.5q-52 0 -90 38t-38 90q0 53 37.5 90.5t90.5 37.5t90.5 -37.5t37.5 -90.5zM1024 -64q0 -53 -37.5 -90.5t-90.5 -37.5t-90.5 37.5t-37.5 90.5t37.5 90.5t90.5 37.5t90.5 -37.5t37.5 -90.5zM320 640q0 -53 -37.5 -90.5t-90.5 -37.5
+t-90.5 37.5t-37.5 90.5t37.5 90.5t90.5 37.5t90.5 -37.5t37.5 -90.5zM1522 142q0 -52 -38 -90t-90 -38q-53 0 -90.5 37.5t-37.5 90.5t37.5 90.5t90.5 37.5t90.5 -37.5t37.5 -90.5zM558 1138q0 -66 -47 -113t-113 -47t-113 47t-47 113t47 113t113 47t113 -47t47 -113z
+M1728 640q0 -53 -37.5 -90.5t-90.5 -37.5t-90.5 37.5t-37.5 90.5t37.5 90.5t90.5 37.5t90.5 -37.5t37.5 -90.5zM1088 1344q0 -80 -56 -136t-136 -56t-136 56t-56 136t56 136t136 56t136 -56t56 -136zM1618 1138q0 -93 -66 -158.5t-158 -65.5q-93 0 -158.5 65.5t-65.5 158.5
+q0 92 65.5 158t158.5 66q92 0 158 -66t66 -158z" />
+    <glyph glyph-name="circle" unicode="&#xf111;" 
+d="M1536 640q0 -209 -103 -385.5t-279.5 -279.5t-385.5 -103t-385.5 103t-279.5 279.5t-103 385.5t103 385.5t279.5 279.5t385.5 103t385.5 -103t279.5 -279.5t103 -385.5z" />
+    <glyph glyph-name="reply" unicode="&#xf112;" horiz-adv-x="1792" 
+d="M1792 416q0 -166 -127 -451q-3 -7 -10.5 -24t-13.5 -30t-13 -22q-12 -17 -28 -17q-15 0 -23.5 10t-8.5 25q0 9 2.5 26.5t2.5 23.5q5 68 5 123q0 101 -17.5 181t-48.5 138.5t-80 101t-105.5 69.5t-133 42.5t-154 21.5t-175.5 6h-224v-256q0 -26 -19 -45t-45 -19t-45 19
+l-512 512q-19 19 -19 45t19 45l512 512q19 19 45 19t45 -19t19 -45v-256h224q713 0 875 -403q53 -134 53 -333z" />
+    <glyph glyph-name="github_alt" unicode="&#xf113;" horiz-adv-x="1664" 
+d="M640 320q0 -40 -12.5 -82t-43 -76t-72.5 -34t-72.5 34t-43 76t-12.5 82t12.5 82t43 76t72.5 34t72.5 -34t43 -76t12.5 -82zM1280 320q0 -40 -12.5 -82t-43 -76t-72.5 -34t-72.5 34t-43 76t-12.5 82t12.5 82t43 76t72.5 34t72.5 -34t43 -76t12.5 -82zM1440 320
+q0 120 -69 204t-187 84q-41 0 -195 -21q-71 -11 -157 -11t-157 11q-152 21 -195 21q-118 0 -187 -84t-69 -204q0 -88 32 -153.5t81 -103t122 -60t140 -29.5t149 -7h168q82 0 149 7t140 29.5t122 60t81 103t32 153.5zM1664 496q0 -207 -61 -331q-38 -77 -105.5 -133t-141 -86
+t-170 -47.5t-171.5 -22t-167 -4.5q-78 0 -142 3t-147.5 12.5t-152.5 30t-137 51.5t-121 81t-86 115q-62 123 -62 331q0 237 136 396q-27 82 -27 170q0 116 51 218q108 0 190 -39.5t189 -123.5q147 35 309 35q148 0 280 -32q105 82 187 121t189 39q51 -102 51 -218
+q0 -87 -27 -168q136 -160 136 -398z" />
+    <glyph glyph-name="folder_close_alt" unicode="&#xf114;" horiz-adv-x="1664" 
+d="M1536 224v704q0 40 -28 68t-68 28h-704q-40 0 -68 28t-28 68v64q0 40 -28 68t-68 28h-320q-40 0 -68 -28t-28 -68v-960q0 -40 28 -68t68 -28h1216q40 0 68 28t28 68zM1664 928v-704q0 -92 -66 -158t-158 -66h-1216q-92 0 -158 66t-66 158v960q0 92 66 158t158 66h320
+q92 0 158 -66t66 -158v-32h672q92 0 158 -66t66 -158z" />
+    <glyph glyph-name="folder_open_alt" unicode="&#xf115;" horiz-adv-x="1920" 
+d="M1781 605q0 35 -53 35h-1088q-40 0 -85.5 -21.5t-71.5 -52.5l-294 -363q-18 -24 -18 -40q0 -35 53 -35h1088q40 0 86 22t71 53l294 363q18 22 18 39zM640 768h768v160q0 40 -28 68t-68 28h-576q-40 0 -68 28t-28 68v64q0 40 -28 68t-68 28h-320q-40 0 -68 -28t-28 -68
+v-853l256 315q44 53 116 87.5t140 34.5zM1909 605q0 -62 -46 -120l-295 -363q-43 -53 -116 -87.5t-140 -34.5h-1088q-92 0 -158 66t-66 158v960q0 92 66 158t158 66h320q92 0 158 -66t66 -158v-32h544q92 0 158 -66t66 -158v-160h192q54 0 99 -24.5t67 -70.5q15 -32 15 -68z
+" />
+    <glyph glyph-name="expand_alt" unicode="&#xf116;" horiz-adv-x="1792" 
+ />
+    <glyph glyph-name="collapse_alt" unicode="&#xf117;" horiz-adv-x="1792" 
+ />
+    <glyph glyph-name="smile" unicode="&#xf118;" 
+d="M1134 461q-37 -121 -138 -195t-228 -74t-228 74t-138 195q-8 25 4 48.5t38 31.5q25 8 48.5 -4t31.5 -38q25 -80 92.5 -129.5t151.5 -49.5t151.5 49.5t92.5 129.5q8 26 32 38t49 4t37 -31.5t4 -48.5zM640 896q0 -53 -37.5 -90.5t-90.5 -37.5t-90.5 37.5t-37.5 90.5
+t37.5 90.5t90.5 37.5t90.5 -37.5t37.5 -90.5zM1152 896q0 -53 -37.5 -90.5t-90.5 -37.5t-90.5 37.5t-37.5 90.5t37.5 90.5t90.5 37.5t90.5 -37.5t37.5 -90.5zM1408 640q0 130 -51 248.5t-136.5 204t-204 136.5t-248.5 51t-248.5 -51t-204 -136.5t-136.5 -204t-51 -248.5
+t51 -248.5t136.5 -204t204 -136.5t248.5 -51t248.5 51t204 136.5t136.5 204t51 248.5zM1536 640q0 -209 -103 -385.5t-279.5 -279.5t-385.5 -103t-385.5 103t-279.5 279.5t-103 385.5t103 385.5t279.5 279.5t385.5 103t385.5 -103t279.5 -279.5t103 -385.5z" />
+    <glyph glyph-name="frown" unicode="&#xf119;" 
+d="M1134 307q8 -25 -4 -48.5t-37 -31.5t-49 4t-32 38q-25 80 -92.5 129.5t-151.5 49.5t-151.5 -49.5t-92.5 -129.5q-8 -26 -31.5 -38t-48.5 -4q-26 8 -38 31.5t-4 48.5q37 121 138 195t228 74t228 -74t138 -195zM640 896q0 -53 -37.5 -90.5t-90.5 -37.5t-90.5 37.5
+t-37.5 90.5t37.5 90.5t90.5 37.5t90.5 -37.5t37.5 -90.5zM1152 896q0 -53 -37.5 -90.5t-90.5 -37.5t-90.5 37.5t-37.5 90.5t37.5 90.5t90.5 37.5t90.5 -37.5t37.5 -90.5zM1408 640q0 130 -51 248.5t-136.5 204t-204 136.5t-248.5 51t-248.5 -51t-204 -136.5t-136.5 -204
+t-51 -248.5t51 -248.5t136.5 -204t204 -136.5t248.5 -51t248.5 51t204 136.5t136.5 204t51 248.5zM1536 640q0 -209 -103 -385.5t-279.5 -279.5t-385.5 -103t-385.5 103t-279.5 279.5t-103 385.5t103 385.5t279.5 279.5t385.5 103t385.5 -103t279.5 -279.5t103 -385.5z" />
+    <glyph glyph-name="meh" unicode="&#xf11a;" 
+d="M1152 448q0 -26 -19 -45t-45 -19h-640q-26 0 -45 19t-19 45t19 45t45 19h640q26 0 45 -19t19 -45zM640 896q0 -53 -37.5 -90.5t-90.5 -37.5t-90.5 37.5t-37.5 90.5t37.5 90.5t90.5 37.5t90.5 -37.5t37.5 -90.5zM1152 896q0 -53 -37.5 -90.5t-90.5 -37.5t-90.5 37.5
+t-37.5 90.5t37.5 90.5t90.5 37.5t90.5 -37.5t37.5 -90.5zM1408 640q0 130 -51 248.5t-136.5 204t-204 136.5t-248.5 51t-248.5 -51t-204 -136.5t-136.5 -204t-51 -248.5t51 -248.5t136.5 -204t204 -136.5t248.5 -51t248.5 51t204 136.5t136.5 204t51 248.5zM1536 640
+q0 -209 -103 -385.5t-279.5 -279.5t-385.5 -103t-385.5 103t-279.5 279.5t-103 385.5t103 385.5t279.5 279.5t385.5 103t385.5 -103t279.5 -279.5t103 -385.5z" />
+    <glyph glyph-name="gamepad" unicode="&#xf11b;" horiz-adv-x="1920" 
+d="M832 448v128q0 14 -9 23t-23 9h-192v192q0 14 -9 23t-23 9h-128q-14 0 -23 -9t-9 -23v-192h-192q-14 0 -23 -9t-9 -23v-128q0 -14 9 -23t23 -9h192v-192q0 -14 9 -23t23 -9h128q14 0 23 9t9 23v192h192q14 0 23 9t9 23zM1408 384q0 53 -37.5 90.5t-90.5 37.5t-90.5 -37.5
+t-37.5 -90.5t37.5 -90.5t90.5 -37.5t90.5 37.5t37.5 90.5zM1664 640q0 53 -37.5 90.5t-90.5 37.5t-90.5 -37.5t-37.5 -90.5t37.5 -90.5t90.5 -37.5t90.5 37.5t37.5 90.5zM1920 512q0 -212 -150 -362t-362 -150q-192 0 -338 128h-220q-146 -128 -338 -128q-212 0 -362 150
+t-150 362t150 362t362 150h896q212 0 362 -150t150 -362z" />
+    <glyph glyph-name="keyboard" unicode="&#xf11c;" horiz-adv-x="1920" 
+d="M384 368v-96q0 -16 -16 -16h-96q-16 0 -16 16v96q0 16 16 16h96q16 0 16 -16zM512 624v-96q0 -16 -16 -16h-224q-16 0 -16 16v96q0 16 16 16h224q16 0 16 -16zM384 880v-96q0 -16 -16 -16h-96q-16 0 -16 16v96q0 16 16 16h96q16 0 16 -16zM1408 368v-96q0 -16 -16 -16
+h-864q-16 0 -16 16v96q0 16 16 16h864q16 0 16 -16zM768 624v-96q0 -16 -16 -16h-96q-16 0 -16 16v96q0 16 16 16h96q16 0 16 -16zM640 880v-96q0 -16 -16 -16h-96q-16 0 -16 16v96q0 16 16 16h96q16 0 16 -16zM1024 624v-96q0 -16 -16 -16h-96q-16 0 -16 16v96q0 16 16 16
+h96q16 0 16 -16zM896 880v-96q0 -16 -16 -16h-96q-16 0 -16 16v96q0 16 16 16h96q16 0 16 -16zM1280 624v-96q0 -16 -16 -16h-96q-16 0 -16 16v96q0 16 16 16h96q16 0 16 -16zM1664 368v-96q0 -16 -16 -16h-96q-16 0 -16 16v96q0 16 16 16h96q16 0 16 -16zM1152 880v-96
+q0 -16 -16 -16h-96q-16 0 -16 16v96q0 16 16 16h96q16 0 16 -16zM1408 880v-96q0 -16 -16 -16h-96q-16 0 -16 16v96q0 16 16 16h96q16 0 16 -16zM1664 880v-352q0 -16 -16 -16h-224q-16 0 -16 16v96q0 16 16 16h112v240q0 16 16 16h96q16 0 16 -16zM1792 128v896h-1664v-896
+h1664zM1920 1024v-896q0 -53 -37.5 -90.5t-90.5 -37.5h-1664q-53 0 -90.5 37.5t-37.5 90.5v896q0 53 37.5 90.5t90.5 37.5h1664q53 0 90.5 -37.5t37.5 -90.5z" />
+    <glyph glyph-name="flag_alt" unicode="&#xf11d;" horiz-adv-x="1792" 
+d="M1664 491v616q-169 -91 -306 -91q-82 0 -145 32q-100 49 -184 76.5t-178 27.5q-173 0 -403 -127v-599q245 113 433 113q55 0 103.5 -7.5t98 -26t77 -31t82.5 -39.5l28 -14q44 -22 101 -22q120 0 293 92zM320 1280q0 -35 -17.5 -64t-46.5 -46v-1266q0 -14 -9 -23t-23 -9
+h-64q-14 0 -23 9t-9 23v1266q-29 17 -46.5 46t-17.5 64q0 53 37.5 90.5t90.5 37.5t90.5 -37.5t37.5 -90.5zM1792 1216v-763q0 -39 -35 -57q-10 -5 -17 -9q-218 -116 -369 -116q-88 0 -158 35l-28 14q-64 33 -99 48t-91 29t-114 14q-102 0 -235.5 -44t-228.5 -102
+q-15 -9 -33 -9q-16 0 -32 8q-32 19 -32 56v742q0 35 31 55q35 21 78.5 42.5t114 52t152.5 49.5t155 19q112 0 209 -31t209 -86q38 -19 89 -19q122 0 310 112q22 12 31 17q31 16 62 -2q31 -20 31 -55z" />
+    <glyph glyph-name="flag_checkered" unicode="&#xf11e;" horiz-adv-x="1792" 
+d="M832 536v192q-181 -16 -384 -117v-185q205 96 384 110zM832 954v197q-172 -8 -384 -126v-189q215 111 384 118zM1664 491v184q-235 -116 -384 -71v224q-20 6 -39 15q-5 3 -33 17t-34.5 17t-31.5 15t-34.5 15.5t-32.5 13t-36 12.5t-35 8.5t-39.5 7.5t-39.5 4t-44 2
+q-23 0 -49 -3v-222h19q102 0 192.5 -29t197.5 -82q19 -9 39 -15v-188q42 -17 91 -17q120 0 293 92zM1664 918v189q-169 -91 -306 -91q-45 0 -78 8v-196q148 -42 384 90zM320 1280q0 -35 -17.5 -64t-46.5 -46v-1266q0 -14 -9 -23t-23 -9h-64q-14 0 -23 9t-9 23v1266
+q-29 17 -46.5 46t-17.5 64q0 53 37.5 90.5t90.5 37.5t90.5 -37.5t37.5 -90.5zM1792 1216v-763q0 -39 -35 -57q-10 -5 -17 -9q-218 -116 -369 -116q-88 0 -158 35l-28 14q-64 33 -99 48t-91 29t-114 14q-102 0 -235.5 -44t-228.5 -102q-15 -9 -33 -9q-16 0 -32 8
+q-32 19 -32 56v742q0 35 31 55q35 21 78.5 42.5t114 52t152.5 49.5t155 19q112 0 209 -31t209 -86q38 -19 89 -19q122 0 310 112q22 12 31 17q31 16 62 -2q31 -20 31 -55z" />
+    <glyph glyph-name="terminal" unicode="&#xf120;" horiz-adv-x="1664" 
+d="M585 553l-466 -466q-10 -10 -23 -10t-23 10l-50 50q-10 10 -10 23t10 23l393 393l-393 393q-10 10 -10 23t10 23l50 50q10 10 23 10t23 -10l466 -466q10 -10 10 -23t-10 -23zM1664 96v-64q0 -14 -9 -23t-23 -9h-960q-14 0 -23 9t-9 23v64q0 14 9 23t23 9h960q14 0 23 -9
+t9 -23z" />
+    <glyph glyph-name="code" unicode="&#xf121;" horiz-adv-x="1920" 
+d="M617 137l-50 -50q-10 -10 -23 -10t-23 10l-466 466q-10 10 -10 23t10 23l466 466q10 10 23 10t23 -10l50 -50q10 -10 10 -23t-10 -23l-393 -393l393 -393q10 -10 10 -23t-10 -23zM1208 1204l-373 -1291q-4 -13 -15.5 -19.5t-23.5 -2.5l-62 17q-13 4 -19.5 15.5t-2.5 24.5
+l373 1291q4 13 15.5 19.5t23.5 2.5l62 -17q13 -4 19.5 -15.5t2.5 -24.5zM1865 553l-466 -466q-10 -10 -23 -10t-23 10l-50 50q-10 10 -10 23t10 23l393 393l-393 393q-10 10 -10 23t10 23l50 50q10 10 23 10t23 -10l466 -466q10 -10 10 -23t-10 -23z" />
+    <glyph glyph-name="reply_all" unicode="&#xf122;" horiz-adv-x="1792" 
+d="M640 454v-70q0 -42 -39 -59q-13 -5 -25 -5q-27 0 -45 19l-512 512q-19 19 -19 45t19 45l512 512q29 31 70 14q39 -17 39 -59v-69l-397 -398q-19 -19 -19 -45t19 -45zM1792 416q0 -58 -17 -133.5t-38.5 -138t-48 -125t-40.5 -90.5l-20 -40q-8 -17 -28 -17q-6 0 -9 1
+q-25 8 -23 34q43 400 -106 565q-64 71 -170.5 110.5t-267.5 52.5v-251q0 -42 -39 -59q-13 -5 -25 -5q-27 0 -45 19l-512 512q-19 19 -19 45t19 45l512 512q29 31 70 14q39 -17 39 -59v-262q411 -28 599 -221q169 -173 169 -509z" />
+    <glyph glyph-name="star_half_empty" unicode="&#xf123;" horiz-adv-x="1664" 
+d="M1186 579l257 250l-356 52l-66 10l-30 60l-159 322v-963l59 -31l318 -168l-60 355l-12 66zM1638 841l-363 -354l86 -500q5 -33 -6 -51.5t-34 -18.5q-17 0 -40 12l-449 236l-449 -236q-23 -12 -40 -12q-23 0 -34 18.5t-6 51.5l86 500l-364 354q-32 32 -23 59.5t54 34.5
+l502 73l225 455q20 41 49 41q28 0 49 -41l225 -455l502 -73q45 -7 54 -34.5t-24 -59.5z" />
+    <glyph glyph-name="location_arrow" unicode="&#xf124;" horiz-adv-x="1408" 
+d="M1401 1187l-640 -1280q-17 -35 -57 -35q-5 0 -15 2q-22 5 -35.5 22.5t-13.5 39.5v576h-576q-22 0 -39.5 13.5t-22.5 35.5t4 42t29 30l1280 640q13 7 29 7q27 0 45 -19q15 -14 18.5 -34.5t-6.5 -39.5z" />
+    <glyph glyph-name="crop" unicode="&#xf125;" horiz-adv-x="1664" 
+d="M557 256h595v595zM512 301l595 595h-595v-595zM1664 224v-192q0 -14 -9 -23t-23 -9h-224v-224q0 -14 -9 -23t-23 -9h-192q-14 0 -23 9t-9 23v224h-864q-14 0 -23 9t-9 23v864h-224q-14 0 -23 9t-9 23v192q0 14 9 23t23 9h224v224q0 14 9 23t23 9h192q14 0 23 -9t9 -23
+v-224h851l246 247q10 9 23 9t23 -9q9 -10 9 -23t-9 -23l-247 -246v-851h224q14 0 23 -9t9 -23z" />
+    <glyph glyph-name="code_fork" unicode="&#xf126;" horiz-adv-x="1024" 
+d="M288 64q0 40 -28 68t-68 28t-68 -28t-28 -68t28 -68t68 -28t68 28t28 68zM288 1216q0 40 -28 68t-68 28t-68 -28t-28 -68t28 -68t68 -28t68 28t28 68zM928 1088q0 40 -28 68t-68 28t-68 -28t-28 -68t28 -68t68 -28t68 28t28 68zM1024 1088q0 -52 -26 -96.5t-70 -69.5
+q-2 -287 -226 -414q-67 -38 -203 -81q-128 -40 -169.5 -71t-41.5 -100v-26q44 -25 70 -69.5t26 -96.5q0 -80 -56 -136t-136 -56t-136 56t-56 136q0 52 26 96.5t70 69.5v820q-44 25 -70 69.5t-26 96.5q0 80 56 136t136 56t136 -56t56 -136q0 -52 -26 -96.5t-70 -69.5v-497
+q54 26 154 57q55 17 87.5 29.5t70.5 31t59 39.5t40.5 51t28 69.5t8.5 91.5q-44 25 -70 69.5t-26 96.5q0 80 56 136t136 56t136 -56t56 -136z" />
+    <glyph glyph-name="unlink" unicode="&#xf127;" horiz-adv-x="1664" 
+d="M439 265l-256 -256q-11 -9 -23 -9t-23 9q-9 10 -9 23t9 23l256 256q10 9 23 9t23 -9q9 -10 9 -23t-9 -23zM608 224v-320q0 -14 -9 -23t-23 -9t-23 9t-9 23v320q0 14 9 23t23 9t23 -9t9 -23zM384 448q0 -14 -9 -23t-23 -9h-320q-14 0 -23 9t-9 23t9 23t23 9h320
+q14 0 23 -9t9 -23zM1648 320q0 -120 -85 -203l-147 -146q-83 -83 -203 -83q-121 0 -204 85l-334 335q-21 21 -42 56l239 18l273 -274q27 -27 68 -27.5t68 26.5l147 146q28 28 28 67q0 40 -28 68l-274 275l18 239q35 -21 56 -42l336 -336q84 -86 84 -204zM1031 1044l-239 -18
+l-273 274q-28 28 -68 28q-39 0 -68 -27l-147 -146q-28 -28 -28 -67q0 -40 28 -68l274 -274l-18 -240q-35 21 -56 42l-336 336q-84 86 -84 204q0 120 85 203l147 146q83 83 203 83q121 0 204 -85l334 -335q21 -21 42 -56zM1664 960q0 -14 -9 -23t-23 -9h-320q-14 0 -23 9
+t-9 23t9 23t23 9h320q14 0 23 -9t9 -23zM1120 1504v-320q0 -14 -9 -23t-23 -9t-23 9t-9 23v320q0 14 9 23t23 9t23 -9t9 -23zM1527 1353l-256 -256q-11 -9 -23 -9t-23 9q-9 10 -9 23t9 23l256 256q10 9 23 9t23 -9q9 -10 9 -23t-9 -23z" />
+    <glyph glyph-name="question" unicode="&#xf128;" horiz-adv-x="1024" 
+d="M704 280v-240q0 -16 -12 -28t-28 -12h-240q-16 0 -28 12t-12 28v240q0 16 12 28t28 12h240q16 0 28 -12t12 -28zM1020 880q0 -54 -15.5 -101t-35 -76.5t-55 -59.5t-57.5 -43.5t-61 -35.5q-41 -23 -68.5 -65t-27.5 -67q0 -17 -12 -32.5t-28 -15.5h-240q-15 0 -25.5 18.5
+t-10.5 37.5v45q0 83 65 156.5t143 108.5q59 27 84 56t25 76q0 42 -46.5 74t-107.5 32q-65 0 -108 -29q-35 -25 -107 -115q-13 -16 -31 -16q-12 0 -25 8l-164 125q-13 10 -15.5 25t5.5 28q160 266 464 266q80 0 161 -31t146 -83t106 -127.5t41 -158.5z" />
+    <glyph glyph-name="_279" unicode="&#xf129;" horiz-adv-x="640" 
+d="M640 192v-128q0 -26 -19 -45t-45 -19h-512q-26 0 -45 19t-19 45v128q0 26 19 45t45 19h64v384h-64q-26 0 -45 19t-19 45v128q0 26 19 45t45 19h384q26 0 45 -19t19 -45v-576h64q26 0 45 -19t19 -45zM512 1344v-192q0 -26 -19 -45t-45 -19h-256q-26 0 -45 19t-19 45v192
+q0 26 19 45t45 19h256q26 0 45 -19t19 -45z" />
+    <glyph glyph-name="exclamation" unicode="&#xf12a;" horiz-adv-x="640" 
+d="M512 288v-224q0 -26 -19 -45t-45 -19h-256q-26 0 -45 19t-19 45v224q0 26 19 45t45 19h256q26 0 45 -19t19 -45zM542 1344l-28 -768q-1 -26 -20.5 -45t-45.5 -19h-256q-26 0 -45.5 19t-20.5 45l-28 768q-1 26 17.5 45t44.5 19h320q26 0 44.5 -19t17.5 -45z" />
+    <glyph glyph-name="superscript" unicode="&#xf12b;" 
+d="M897 167v-167h-248l-159 252l-24 42q-8 9 -11 21h-3q-1 -3 -2.5 -6.5t-3.5 -8t-3 -6.5q-10 -20 -25 -44l-155 -250h-258v167h128l197 291l-185 272h-137v168h276l139 -228q2 -4 23 -42q8 -9 11 -21h3q3 9 11 21l25 42l140 228h257v-168h-125l-184 -267l204 -296h109z
+M1534 846v-206h-514l-3 27q-4 28 -4 46q0 64 26 117t65 86.5t84 65t84 54.5t65 54t26 64q0 38 -29.5 62.5t-70.5 24.5q-51 0 -97 -39q-14 -11 -36 -38l-105 92q26 37 63 66q83 65 188 65q110 0 178 -59.5t68 -158.5q0 -56 -24.5 -103t-62 -76.5t-81.5 -58.5t-82 -50.5
+t-65.5 -51.5t-30.5 -63h232v80h126z" />
+    <glyph glyph-name="subscript" unicode="&#xf12c;" 
+d="M897 167v-167h-248l-159 252l-24 42q-8 9 -11 21h-3q-1 -3 -2.5 -6.5t-3.5 -8t-3 -6.5q-10 -20 -25 -44l-155 -250h-258v167h128l197 291l-185 272h-137v168h276l139 -228q2 -4 23 -42q8 -9 11 -21h3q3 9 11 21l25 42l140 228h257v-168h-125l-184 -267l204 -296h109z
+M1536 -50v-206h-514l-4 27q-3 45 -3 46q0 64 26 117t65 86.5t84 65t84 54.5t65 54t26 64q0 38 -29.5 62.5t-70.5 24.5q-51 0 -97 -39q-14 -11 -36 -38l-105 92q26 37 63 66q80 65 188 65q110 0 178 -59.5t68 -158.5q0 -66 -34.5 -118.5t-84 -86t-99.5 -62.5t-87 -63t-41 -73
+h232v80h126z" />
+    <glyph glyph-name="_283" unicode="&#xf12d;" horiz-adv-x="1920" 
+d="M896 128l336 384h-768l-336 -384h768zM1909 1205q15 -34 9.5 -71.5t-30.5 -65.5l-896 -1024q-38 -44 -96 -44h-768q-38 0 -69.5 20.5t-47.5 54.5q-15 34 -9.5 71.5t30.5 65.5l896 1024q38 44 96 44h768q38 0 69.5 -20.5t47.5 -54.5z" />
+    <glyph glyph-name="puzzle_piece" unicode="&#xf12e;" horiz-adv-x="1664" 
+d="M1664 438q0 -81 -44.5 -135t-123.5 -54q-41 0 -77.5 17.5t-59 38t-56.5 38t-71 17.5q-110 0 -110 -124q0 -39 16 -115t15 -115v-5q-22 0 -33 -1q-34 -3 -97.5 -11.5t-115.5 -13.5t-98 -5q-61 0 -103 26.5t-42 83.5q0 37 17.5 71t38 56.5t38 59t17.5 77.5q0 79 -54 123.5
+t-135 44.5q-84 0 -143 -45.5t-59 -127.5q0 -43 15 -83t33.5 -64.5t33.5 -53t15 -50.5q0 -45 -46 -89q-37 -35 -117 -35q-95 0 -245 24q-9 2 -27.5 4t-27.5 4l-13 2q-1 0 -3 1q-2 0 -2 1v1024q2 -1 17.5 -3.5t34 -5t21.5 -3.5q150 -24 245 -24q80 0 117 35q46 44 46 89
+q0 22 -15 50.5t-33.5 53t-33.5 64.5t-15 83q0 82 59 127.5t144 45.5q80 0 134 -44.5t54 -123.5q0 -41 -17.5 -77.5t-38 -59t-38 -56.5t-17.5 -71q0 -57 42 -83.5t103 -26.5q64 0 180 15t163 17v-2q-1 -2 -3.5 -17.5t-5 -34t-3.5 -21.5q-24 -150 -24 -245q0 -80 35 -117
+q44 -46 89 -46q22 0 50.5 15t53 33.5t64.5 33.5t83 15q82 0 127.5 -59t45.5 -143z" />
+    <glyph glyph-name="microphone" unicode="&#xf130;" horiz-adv-x="1152" 
+d="M1152 832v-128q0 -221 -147.5 -384.5t-364.5 -187.5v-132h256q26 0 45 -19t19 -45t-19 -45t-45 -19h-640q-26 0 -45 19t-19 45t19 45t45 19h256v132q-217 24 -364.5 187.5t-147.5 384.5v128q0 26 19 45t45 19t45 -19t19 -45v-128q0 -185 131.5 -316.5t316.5 -131.5
+t316.5 131.5t131.5 316.5v128q0 26 19 45t45 19t45 -19t19 -45zM896 1216v-512q0 -132 -94 -226t-226 -94t-226 94t-94 226v512q0 132 94 226t226 94t226 -94t94 -226z" />
+    <glyph glyph-name="microphone_off" unicode="&#xf131;" horiz-adv-x="1408" 
+d="M271 591l-101 -101q-42 103 -42 214v128q0 26 19 45t45 19t45 -19t19 -45v-128q0 -53 15 -113zM1385 1193l-361 -361v-128q0 -132 -94 -226t-226 -94q-55 0 -109 19l-96 -96q97 -51 205 -51q185 0 316.5 131.5t131.5 316.5v128q0 26 19 45t45 19t45 -19t19 -45v-128
+q0 -221 -147.5 -384.5t-364.5 -187.5v-132h256q26 0 45 -19t19 -45t-19 -45t-45 -19h-640q-26 0 -45 19t-19 45t19 45t45 19h256v132q-125 13 -235 81l-254 -254q-10 -10 -23 -10t-23 10l-82 82q-10 10 -10 23t10 23l1234 1234q10 10 23 10t23 -10l82 -82q10 -10 10 -23
+t-10 -23zM1005 1325l-621 -621v512q0 132 94 226t226 94q102 0 184.5 -59t116.5 -152z" />
+    <glyph glyph-name="shield" unicode="&#xf132;" horiz-adv-x="1280" 
+d="M1088 576v640h-448v-1137q119 63 213 137q235 184 235 360zM1280 1344v-768q0 -86 -33.5 -170.5t-83 -150t-118 -127.5t-126.5 -103t-121 -77.5t-89.5 -49.5t-42.5 -20q-12 -6 -26 -6t-26 6q-16 7 -42.5 20t-89.5 49.5t-121 77.5t-126.5 103t-118 127.5t-83 150
+t-33.5 170.5v768q0 26 19 45t45 19h1152q26 0 45 -19t19 -45z" />
+    <glyph glyph-name="calendar_empty" unicode="&#xf133;" horiz-adv-x="1664" 
+d="M128 -128h1408v1024h-1408v-1024zM512 1088v288q0 14 -9 23t-23 9h-64q-14 0 -23 -9t-9 -23v-288q0 -14 9 -23t23 -9h64q14 0 23 9t9 23zM1280 1088v288q0 14 -9 23t-23 9h-64q-14 0 -23 -9t-9 -23v-288q0 -14 9 -23t23 -9h64q14 0 23 9t9 23zM1664 1152v-1280
+q0 -52 -38 -90t-90 -38h-1408q-52 0 -90 38t-38 90v1280q0 52 38 90t90 38h128v96q0 66 47 113t113 47h64q66 0 113 -47t47 -113v-96h384v96q0 66 47 113t113 47h64q66 0 113 -47t47 -113v-96h128q52 0 90 -38t38 -90z" />
+    <glyph glyph-name="fire_extinguisher" unicode="&#xf134;" horiz-adv-x="1408" 
+d="M512 1344q0 26 -19 45t-45 19t-45 -19t-19 -45t19 -45t45 -19t45 19t19 45zM1408 1376v-320q0 -16 -12 -25q-8 -7 -20 -7q-4 0 -7 1l-448 96q-11 2 -18 11t-7 20h-256v-102q111 -23 183.5 -111t72.5 -203v-800q0 -26 -19 -45t-45 -19h-512q-26 0 -45 19t-19 45v800
+q0 106 62.5 190.5t161.5 114.5v111h-32q-59 0 -115 -23.5t-91.5 -53t-66 -66.5t-40.5 -53.5t-14 -24.5q-17 -35 -57 -35q-16 0 -29 7q-23 12 -31.5 37t3.5 49q5 10 14.5 26t37.5 53.5t60.5 70t85 67t108.5 52.5q-25 42 -25 86q0 66 47 113t113 47t113 -47t47 -113
+q0 -33 -14 -64h302q0 11 7 20t18 11l448 96q3 1 7 1q12 0 20 -7q12 -9 12 -25z" />
+    <glyph glyph-name="rocket" unicode="&#xf135;" horiz-adv-x="1664" 
+d="M1440 1088q0 40 -28 68t-68 28t-68 -28t-28 -68t28 -68t68 -28t68 28t28 68zM1664 1376q0 -249 -75.5 -430.5t-253.5 -360.5q-81 -80 -195 -176l-20 -379q-2 -16 -16 -26l-384 -224q-7 -4 -16 -4q-12 0 -23 9l-64 64q-13 14 -8 32l85 276l-281 281l-276 -85q-3 -1 -9 -1
+q-14 0 -23 9l-64 64q-17 19 -5 39l224 384q10 14 26 16l379 20q96 114 176 195q188 187 358 258t431 71q14 0 24 -9.5t10 -22.5z" />
+    <glyph glyph-name="maxcdn" unicode="&#xf136;" horiz-adv-x="1792" 
+d="M1745 763l-164 -763h-334l178 832q13 56 -15 88q-27 33 -83 33h-169l-204 -953h-334l204 953h-286l-204 -953h-334l204 953l-153 327h1276q101 0 189.5 -40.5t147.5 -113.5q60 -73 81 -168.5t0 -194.5z" />
+    <glyph glyph-name="chevron_sign_left" unicode="&#xf137;" 
+d="M909 141l102 102q19 19 19 45t-19 45l-307 307l307 307q19 19 19 45t-19 45l-102 102q-19 19 -45 19t-45 -19l-454 -454q-19 -19 -19 -45t19 -45l454 -454q19 -19 45 -19t45 19zM1536 640q0 -209 -103 -385.5t-279.5 -279.5t-385.5 -103t-385.5 103t-279.5 279.5
+t-103 385.5t103 385.5t279.5 279.5t385.5 103t385.5 -103t279.5 -279.5t103 -385.5z" />
+    <glyph glyph-name="chevron_sign_right" unicode="&#xf138;" 
+d="M717 141l454 454q19 19 19 45t-19 45l-454 454q-19 19 -45 19t-45 -19l-102 -102q-19 -19 -19 -45t19 -45l307 -307l-307 -307q-19 -19 -19 -45t19 -45l102 -102q19 -19 45 -19t45 19zM1536 640q0 -209 -103 -385.5t-279.5 -279.5t-385.5 -103t-385.5 103t-279.5 279.5
+t-103 385.5t103 385.5t279.5 279.5t385.5 103t385.5 -103t279.5 -279.5t103 -385.5z" />
+    <glyph glyph-name="chevron_sign_up" unicode="&#xf139;" 
+d="M1165 397l102 102q19 19 19 45t-19 45l-454 454q-19 19 -45 19t-45 -19l-454 -454q-19 -19 -19 -45t19 -45l102 -102q19 -19 45 -19t45 19l307 307l307 -307q19 -19 45 -19t45 19zM1536 640q0 -209 -103 -385.5t-279.5 -279.5t-385.5 -103t-385.5 103t-279.5 279.5
+t-103 385.5t103 385.5t279.5 279.5t385.5 103t385.5 -103t279.5 -279.5t103 -385.5z" />
+    <glyph glyph-name="chevron_sign_down" unicode="&#xf13a;" 
+d="M813 237l454 454q19 19 19 45t-19 45l-102 102q-19 19 -45 19t-45 -19l-307 -307l-307 307q-19 19 -45 19t-45 -19l-102 -102q-19 -19 -19 -45t19 -45l454 -454q19 -19 45 -19t45 19zM1536 640q0 -209 -103 -385.5t-279.5 -279.5t-385.5 -103t-385.5 103t-279.5 279.5
+t-103 385.5t103 385.5t279.5 279.5t385.5 103t385.5 -103t279.5 -279.5t103 -385.5z" />
+    <glyph glyph-name="html5" unicode="&#xf13b;" horiz-adv-x="1408" 
+d="M1130 939l16 175h-884l47 -534h612l-22 -228l-197 -53l-196 53l-13 140h-175l22 -278l362 -100h4v1l359 99l50 544h-644l-15 181h674zM0 1408h1408l-128 -1438l-578 -162l-574 162z" />
+    <glyph glyph-name="css3" unicode="&#xf13c;" horiz-adv-x="1792" 
+d="M275 1408h1505l-266 -1333l-804 -267l-698 267l71 356h297l-29 -147l422 -161l486 161l68 339h-1208l58 297h1209l38 191h-1208z" />
+    <glyph glyph-name="anchor" unicode="&#xf13d;" horiz-adv-x="1792" 
+d="M960 1280q0 26 -19 45t-45 19t-45 -19t-19 -45t19 -45t45 -19t45 19t19 45zM1792 352v-352q0 -22 -20 -30q-8 -2 -12 -2q-12 0 -23 9l-93 93q-119 -143 -318.5 -226.5t-429.5 -83.5t-429.5 83.5t-318.5 226.5l-93 -93q-9 -9 -23 -9q-4 0 -12 2q-20 8 -20 30v352
+q0 14 9 23t23 9h352q22 0 30 -20q8 -19 -7 -35l-100 -100q67 -91 189.5 -153.5t271.5 -82.5v647h-192q-26 0 -45 19t-19 45v128q0 26 19 45t45 19h192v163q-58 34 -93 92.5t-35 128.5q0 106 75 181t181 75t181 -75t75 -181q0 -70 -35 -128.5t-93 -92.5v-163h192q26 0 45 -19
+t19 -45v-128q0 -26 -19 -45t-45 -19h-192v-647q149 20 271.5 82.5t189.5 153.5l-100 100q-15 16 -7 35q8 20 30 20h352q14 0 23 -9t9 -23z" />
+    <glyph glyph-name="unlock_alt" unicode="&#xf13e;" horiz-adv-x="1152" 
+d="M1056 768q40 0 68 -28t28 -68v-576q0 -40 -28 -68t-68 -28h-960q-40 0 -68 28t-28 68v576q0 40 28 68t68 28h32v320q0 185 131.5 316.5t316.5 131.5t316.5 -131.5t131.5 -316.5q0 -26 -19 -45t-45 -19h-64q-26 0 -45 19t-19 45q0 106 -75 181t-181 75t-181 -75t-75 -181
+v-320h736z" />
+    <glyph glyph-name="bullseye" unicode="&#xf140;" 
+d="M1024 640q0 -106 -75 -181t-181 -75t-181 75t-75 181t75 181t181 75t181 -75t75 -181zM1152 640q0 159 -112.5 271.5t-271.5 112.5t-271.5 -112.5t-112.5 -271.5t112.5 -271.5t271.5 -112.5t271.5 112.5t112.5 271.5zM1280 640q0 -212 -150 -362t-362 -150t-362 150
+t-150 362t150 362t362 150t362 -150t150 -362zM1408 640q0 130 -51 248.5t-136.5 204t-204 136.5t-248.5 51t-248.5 -51t-204 -136.5t-136.5 -204t-51 -248.5t51 -248.5t136.5 -204t204 -136.5t248.5 -51t248.5 51t204 136.5t136.5 204t51 248.5zM1536 640
+q0 -209 -103 -385.5t-279.5 -279.5t-385.5 -103t-385.5 103t-279.5 279.5t-103 385.5t103 385.5t279.5 279.5t385.5 103t385.5 -103t279.5 -279.5t103 -385.5z" />
+    <glyph glyph-name="ellipsis_horizontal" unicode="&#xf141;" horiz-adv-x="1408" 
+d="M384 800v-192q0 -40 -28 -68t-68 -28h-192q-40 0 -68 28t-28 68v192q0 40 28 68t68 28h192q40 0 68 -28t28 -68zM896 800v-192q0 -40 -28 -68t-68 -28h-192q-40 0 -68 28t-28 68v192q0 40 28 68t68 28h192q40 0 68 -28t28 -68zM1408 800v-192q0 -40 -28 -68t-68 -28h-192
+q-40 0 -68 28t-28 68v192q0 40 28 68t68 28h192q40 0 68 -28t28 -68z" />
+    <glyph glyph-name="ellipsis_vertical" unicode="&#xf142;" horiz-adv-x="384" 
+d="M384 288v-192q0 -40 -28 -68t-68 -28h-192q-40 0 -68 28t-28 68v192q0 40 28 68t68 28h192q40 0 68 -28t28 -68zM384 800v-192q0 -40 -28 -68t-68 -28h-192q-40 0 -68 28t-28 68v192q0 40 28 68t68 28h192q40 0 68 -28t28 -68zM384 1312v-192q0 -40 -28 -68t-68 -28h-192
+q-40 0 -68 28t-28 68v192q0 40 28 68t68 28h192q40 0 68 -28t28 -68z" />
+    <glyph glyph-name="_303" unicode="&#xf143;" 
+d="M512 256q0 53 -37.5 90.5t-90.5 37.5t-90.5 -37.5t-37.5 -90.5t37.5 -90.5t90.5 -37.5t90.5 37.5t37.5 90.5zM863 162q-13 233 -176.5 396.5t-396.5 176.5q-14 1 -24 -9t-10 -23v-128q0 -13 8.5 -22t21.5 -10q154 -11 264 -121t121 -264q1 -13 10 -21.5t22 -8.5h128
+q13 0 23 10t9 24zM1247 161q-5 154 -56 297.5t-139.5 260t-205 205t-260 139.5t-297.5 56q-14 1 -23 -9q-10 -10 -10 -23v-128q0 -13 9 -22t22 -10q204 -7 378 -111.5t278.5 -278.5t111.5 -378q1 -13 10 -22t22 -9h128q13 0 23 10q11 9 9 23zM1536 1120v-960
+q0 -119 -84.5 -203.5t-203.5 -84.5h-960q-119 0 -203.5 84.5t-84.5 203.5v960q0 119 84.5 203.5t203.5 84.5h960q119 0 203.5 -84.5t84.5 -203.5z" />
+    <glyph glyph-name="play_sign" unicode="&#xf144;" 
+d="M768 1408q209 0 385.5 -103t279.5 -279.5t103 -385.5t-103 -385.5t-279.5 -279.5t-385.5 -103t-385.5 103t-279.5 279.5t-103 385.5t103 385.5t279.5 279.5t385.5 103zM1152 585q32 18 32 55t-32 55l-544 320q-31 19 -64 1q-32 -19 -32 -56v-640q0 -37 32 -56
+q16 -8 32 -8q17 0 32 9z" />
+    <glyph glyph-name="ticket" unicode="&#xf145;" horiz-adv-x="1792" 
+d="M1024 1084l316 -316l-572 -572l-316 316zM813 105l618 618q19 19 19 45t-19 45l-362 362q-18 18 -45 18t-45 -18l-618 -618q-19 -19 -19 -45t19 -45l362 -362q18 -18 45 -18t45 18zM1702 742l-907 -908q-37 -37 -90.5 -37t-90.5 37l-126 126q56 56 56 136t-56 136
+t-136 56t-136 -56l-125 126q-37 37 -37 90.5t37 90.5l907 906q37 37 90.5 37t90.5 -37l125 -125q-56 -56 -56 -136t56 -136t136 -56t136 56l126 -125q37 -37 37 -90.5t-37 -90.5z" />
+    <glyph glyph-name="minus_sign_alt" unicode="&#xf146;" 
+d="M1280 576v128q0 26 -19 45t-45 19h-896q-26 0 -45 -19t-19 -45v-128q0 -26 19 -45t45 -19h896q26 0 45 19t19 45zM1536 1120v-960q0 -119 -84.5 -203.5t-203.5 -84.5h-960q-119 0 -203.5 84.5t-84.5 203.5v960q0 119 84.5 203.5t203.5 84.5h960q119 0 203.5 -84.5
+t84.5 -203.5z" />
+    <glyph glyph-name="check_minus" unicode="&#xf147;" horiz-adv-x="1408" 
+d="M1152 736v-64q0 -14 -9 -23t-23 -9h-832q-14 0 -23 9t-9 23v64q0 14 9 23t23 9h832q14 0 23 -9t9 -23zM1280 288v832q0 66 -47 113t-113 47h-832q-66 0 -113 -47t-47 -113v-832q0 -66 47 -113t113 -47h832q66 0 113 47t47 113zM1408 1120v-832q0 -119 -84.5 -203.5
+t-203.5 -84.5h-832q-119 0 -203.5 84.5t-84.5 203.5v832q0 119 84.5 203.5t203.5 84.5h832q119 0 203.5 -84.5t84.5 -203.5z" />
+    <glyph glyph-name="level_up" unicode="&#xf148;" horiz-adv-x="1024" 
+d="M1018 933q-18 -37 -58 -37h-192v-864q0 -14 -9 -23t-23 -9h-704q-21 0 -29 18q-8 20 4 35l160 192q9 11 25 11h320v640h-192q-40 0 -58 37q-17 37 9 68l320 384q18 22 49 22t49 -22l320 -384q27 -32 9 -68z" />
+    <glyph glyph-name="level_down" unicode="&#xf149;" horiz-adv-x="1024" 
+d="M32 1280h704q13 0 22.5 -9.5t9.5 -23.5v-863h192q40 0 58 -37t-9 -69l-320 -384q-18 -22 -49 -22t-49 22l-320 384q-26 31 -9 69q18 37 58 37h192v640h-320q-14 0 -25 11l-160 192q-13 14 -4 34q9 19 29 19z" />
+    <glyph glyph-name="check_sign" unicode="&#xf14a;" 
+d="M685 237l614 614q19 19 19 45t-19 45l-102 102q-19 19 -45 19t-45 -19l-467 -467l-211 211q-19 19 -45 19t-45 -19l-102 -102q-19 -19 -19 -45t19 -45l358 -358q19 -19 45 -19t45 19zM1536 1120v-960q0 -119 -84.5 -203.5t-203.5 -84.5h-960q-119 0 -203.5 84.5
+t-84.5 203.5v960q0 119 84.5 203.5t203.5 84.5h960q119 0 203.5 -84.5t84.5 -203.5z" />
+    <glyph glyph-name="edit_sign" unicode="&#xf14b;" 
+d="M404 428l152 -152l-52 -52h-56v96h-96v56zM818 818q14 -13 -3 -30l-291 -291q-17 -17 -30 -3q-14 13 3 30l291 291q17 17 30 3zM544 128l544 544l-288 288l-544 -544v-288h288zM1152 736l92 92q28 28 28 68t-28 68l-152 152q-28 28 -68 28t-68 -28l-92 -92zM1536 1120
+v-960q0 -119 -84.5 -203.5t-203.5 -84.5h-960q-119 0 -203.5 84.5t-84.5 203.5v960q0 119 84.5 203.5t203.5 84.5h960q119 0 203.5 -84.5t84.5 -203.5z" />
+    <glyph glyph-name="_312" unicode="&#xf14c;" 
+d="M1280 608v480q0 26 -19 45t-45 19h-480q-42 0 -59 -39q-17 -41 14 -70l144 -144l-534 -534q-19 -19 -19 -45t19 -45l102 -102q19 -19 45 -19t45 19l534 534l144 -144q18 -19 45 -19q12 0 25 5q39 17 39 59zM1536 1120v-960q0 -119 -84.5 -203.5t-203.5 -84.5h-960
+q-119 0 -203.5 84.5t-84.5 203.5v960q0 119 84.5 203.5t203.5 84.5h960q119 0 203.5 -84.5t84.5 -203.5z" />
+    <glyph glyph-name="share_sign" unicode="&#xf14d;" 
+d="M1005 435l352 352q19 19 19 45t-19 45l-352 352q-30 31 -69 14q-40 -17 -40 -59v-160q-119 0 -216 -19.5t-162.5 -51t-114 -79t-76.5 -95.5t-44.5 -109t-21.5 -111.5t-5 -110.5q0 -181 167 -404q11 -12 25 -12q7 0 13 3q22 9 19 33q-44 354 62 473q46 52 130 75.5
+t224 23.5v-160q0 -42 40 -59q12 -5 24 -5q26 0 45 19zM1536 1120v-960q0 -119 -84.5 -203.5t-203.5 -84.5h-960q-119 0 -203.5 84.5t-84.5 203.5v960q0 119 84.5 203.5t203.5 84.5h960q119 0 203.5 -84.5t84.5 -203.5z" />
+    <glyph glyph-name="compass" unicode="&#xf14e;" 
+d="M640 448l256 128l-256 128v-256zM1024 1039v-542l-512 -256v542zM1312 640q0 148 -73 273t-198 198t-273 73t-273 -73t-198 -198t-73 -273t73 -273t198 -198t273 -73t273 73t198 198t73 273zM1536 640q0 -209 -103 -385.5t-279.5 -279.5t-385.5 -103t-385.5 103
+t-279.5 279.5t-103 385.5t103 385.5t279.5 279.5t385.5 103t385.5 -103t279.5 -279.5t103 -385.5z" />
+    <glyph glyph-name="collapse" unicode="&#xf150;" 
+d="M1145 861q18 -35 -5 -66l-320 -448q-19 -27 -52 -27t-52 27l-320 448q-23 31 -5 66q17 35 57 35h640q40 0 57 -35zM1280 160v960q0 13 -9.5 22.5t-22.5 9.5h-960q-13 0 -22.5 -9.5t-9.5 -22.5v-960q0 -13 9.5 -22.5t22.5 -9.5h960q13 0 22.5 9.5t9.5 22.5zM1536 1120
+v-960q0 -119 -84.5 -203.5t-203.5 -84.5h-960q-119 0 -203.5 84.5t-84.5 203.5v960q0 119 84.5 203.5t203.5 84.5h960q119 0 203.5 -84.5t84.5 -203.5z" />
+    <glyph glyph-name="collapse_top" unicode="&#xf151;" 
+d="M1145 419q-17 -35 -57 -35h-640q-40 0 -57 35q-18 35 5 66l320 448q19 27 52 27t52 -27l320 -448q23 -31 5 -66zM1280 160v960q0 13 -9.5 22.5t-22.5 9.5h-960q-13 0 -22.5 -9.5t-9.5 -22.5v-960q0 -13 9.5 -22.5t22.5 -9.5h960q13 0 22.5 9.5t9.5 22.5zM1536 1120v-960
+q0 -119 -84.5 -203.5t-203.5 -84.5h-960q-119 0 -203.5 84.5t-84.5 203.5v960q0 119 84.5 203.5t203.5 84.5h960q119 0 203.5 -84.5t84.5 -203.5z" />
+    <glyph glyph-name="_317" unicode="&#xf152;" 
+d="M1088 640q0 -33 -27 -52l-448 -320q-31 -23 -66 -5q-35 17 -35 57v640q0 40 35 57q35 18 66 -5l448 -320q27 -19 27 -52zM1280 160v960q0 14 -9 23t-23 9h-960q-14 0 -23 -9t-9 -23v-960q0 -14 9 -23t23 -9h960q14 0 23 9t9 23zM1536 1120v-960q0 -119 -84.5 -203.5
+t-203.5 -84.5h-960q-119 0 -203.5 84.5t-84.5 203.5v960q0 119 84.5 203.5t203.5 84.5h960q119 0 203.5 -84.5t84.5 -203.5z" />
+    <glyph glyph-name="eur" unicode="&#xf153;" horiz-adv-x="1024" 
+d="M976 229l35 -159q3 -12 -3 -22.5t-17 -14.5l-5 -1q-4 -2 -10.5 -3.5t-16 -4.5t-21.5 -5.5t-25.5 -5t-30 -5t-33.5 -4.5t-36.5 -3t-38.5 -1q-234 0 -409 130.5t-238 351.5h-95q-13 0 -22.5 9.5t-9.5 22.5v113q0 13 9.5 22.5t22.5 9.5h66q-2 57 1 105h-67q-14 0 -23 9
+t-9 23v114q0 14 9 23t23 9h98q67 210 243.5 338t400.5 128q102 0 194 -23q11 -3 20 -15q6 -11 3 -24l-43 -159q-3 -13 -14 -19.5t-24 -2.5l-4 1q-4 1 -11.5 2.5l-17.5 3.5t-22.5 3.5t-26 3t-29 2.5t-29.5 1q-126 0 -226 -64t-150 -176h468q16 0 25 -12q10 -12 7 -26
+l-24 -114q-5 -26 -32 -26h-488q-3 -37 0 -105h459q15 0 25 -12q9 -12 6 -27l-24 -112q-2 -11 -11 -18.5t-20 -7.5h-387q48 -117 149.5 -185.5t228.5 -68.5q18 0 36 1.5t33.5 3.5t29.5 4.5t24.5 5t18.5 4.5l12 3l5 2q13 5 26 -2q12 -7 15 -21z" />
+    <glyph glyph-name="gbp" unicode="&#xf154;" horiz-adv-x="1024" 
+d="M1020 399v-367q0 -14 -9 -23t-23 -9h-956q-14 0 -23 9t-9 23v150q0 13 9.5 22.5t22.5 9.5h97v383h-95q-14 0 -23 9.5t-9 22.5v131q0 14 9 23t23 9h95v223q0 171 123.5 282t314.5 111q185 0 335 -125q9 -8 10 -20.5t-7 -22.5l-103 -127q-9 -11 -22 -12q-13 -2 -23 7
+q-5 5 -26 19t-69 32t-93 18q-85 0 -137 -47t-52 -123v-215h305q13 0 22.5 -9t9.5 -23v-131q0 -13 -9.5 -22.5t-22.5 -9.5h-305v-379h414v181q0 13 9 22.5t23 9.5h162q14 0 23 -9.5t9 -22.5z" />
+    <glyph glyph-name="usd" unicode="&#xf155;" horiz-adv-x="1024" 
+d="M978 351q0 -153 -99.5 -263.5t-258.5 -136.5v-175q0 -14 -9 -23t-23 -9h-135q-13 0 -22.5 9.5t-9.5 22.5v175q-66 9 -127.5 31t-101.5 44.5t-74 48t-46.5 37.5t-17.5 18q-17 21 -2 41l103 135q7 10 23 12q15 2 24 -9l2 -2q113 -99 243 -125q37 -8 74 -8q81 0 142.5 43
+t61.5 122q0 28 -15 53t-33.5 42t-58.5 37.5t-66 32t-80 32.5q-39 16 -61.5 25t-61.5 26.5t-62.5 31t-56.5 35.5t-53.5 42.5t-43.5 49t-35.5 58t-21 66.5t-8.5 78q0 138 98 242t255 134v180q0 13 9.5 22.5t22.5 9.5h135q14 0 23 -9t9 -23v-176q57 -6 110.5 -23t87 -33.5
+t63.5 -37.5t39 -29t15 -14q17 -18 5 -38l-81 -146q-8 -15 -23 -16q-14 -3 -27 7q-3 3 -14.5 12t-39 26.5t-58.5 32t-74.5 26t-85.5 11.5q-95 0 -155 -43t-60 -111q0 -26 8.5 -48t29.5 -41.5t39.5 -33t56 -31t60.5 -27t70 -27.5q53 -20 81 -31.5t76 -35t75.5 -42.5t62 -50
+t53 -63.5t31.5 -76.5t13 -94z" />
+    <glyph glyph-name="inr" unicode="&#xf156;" horiz-adv-x="898" 
+d="M898 1066v-102q0 -14 -9 -23t-23 -9h-168q-23 -144 -129 -234t-276 -110q167 -178 459 -536q14 -16 4 -34q-8 -18 -29 -18h-195q-16 0 -25 12q-306 367 -498 571q-9 9 -9 22v127q0 13 9.5 22.5t22.5 9.5h112q132 0 212.5 43t102.5 125h-427q-14 0 -23 9t-9 23v102
+q0 14 9 23t23 9h413q-57 113 -268 113h-145q-13 0 -22.5 9.5t-9.5 22.5v133q0 14 9 23t23 9h832q14 0 23 -9t9 -23v-102q0 -14 -9 -23t-23 -9h-233q47 -61 64 -144h171q14 0 23 -9t9 -23z" />
+    <glyph glyph-name="jpy" unicode="&#xf157;" horiz-adv-x="1027" 
+d="M603 0h-172q-13 0 -22.5 9t-9.5 23v330h-288q-13 0 -22.5 9t-9.5 23v103q0 13 9.5 22.5t22.5 9.5h288v85h-288q-13 0 -22.5 9t-9.5 23v104q0 13 9.5 22.5t22.5 9.5h214l-321 578q-8 16 0 32q10 16 28 16h194q19 0 29 -18l215 -425q19 -38 56 -125q10 24 30.5 68t27.5 61
+l191 420q8 19 29 19h191q17 0 27 -16q9 -14 1 -31l-313 -579h215q13 0 22.5 -9.5t9.5 -22.5v-104q0 -14 -9.5 -23t-22.5 -9h-290v-85h290q13 0 22.5 -9.5t9.5 -22.5v-103q0 -14 -9.5 -23t-22.5 -9h-290v-330q0 -13 -9.5 -22.5t-22.5 -9.5z" />
+    <glyph glyph-name="rub" unicode="&#xf158;" horiz-adv-x="1280" 
+d="M1043 971q0 100 -65 162t-171 62h-320v-448h320q106 0 171 62t65 162zM1280 971q0 -193 -126.5 -315t-326.5 -122h-340v-118h505q14 0 23 -9t9 -23v-128q0 -14 -9 -23t-23 -9h-505v-192q0 -14 -9.5 -23t-22.5 -9h-167q-14 0 -23 9t-9 23v192h-224q-14 0 -23 9t-9 23v128
+q0 14 9 23t23 9h224v118h-224q-14 0 -23 9t-9 23v149q0 13 9 22.5t23 9.5h224v629q0 14 9 23t23 9h539q200 0 326.5 -122t126.5 -315z" />
+    <glyph glyph-name="krw" unicode="&#xf159;" horiz-adv-x="1792" 
+d="M514 341l81 299h-159l75 -300q1 -1 1 -3t1 -3q0 1 0.5 3.5t0.5 3.5zM630 768l35 128h-292l32 -128h225zM822 768h139l-35 128h-70zM1271 340l78 300h-162l81 -299q0 -1 0.5 -3.5t1.5 -3.5q0 1 0.5 3t0.5 3zM1382 768l33 128h-297l34 -128h230zM1792 736v-64q0 -14 -9 -23
+t-23 -9h-213l-164 -616q-7 -24 -31 -24h-159q-24 0 -31 24l-166 616h-209l-167 -616q-7 -24 -31 -24h-159q-11 0 -19.5 7t-10.5 17l-160 616h-208q-14 0 -23 9t-9 23v64q0 14 9 23t23 9h175l-33 128h-142q-14 0 -23 9t-9 23v64q0 14 9 23t23 9h109l-89 344q-5 15 5 28
+q10 12 26 12h137q26 0 31 -24l90 -360h359l97 360q7 24 31 24h126q24 0 31 -24l98 -360h365l93 360q5 24 31 24h137q16 0 26 -12q10 -13 5 -28l-91 -344h111q14 0 23 -9t9 -23v-64q0 -14 -9 -23t-23 -9h-145l-34 -128h179q14 0 23 -9t9 -23z" />
+    <glyph glyph-name="btc" unicode="&#xf15a;" horiz-adv-x="1280" 
+d="M1167 896q18 -182 -131 -258q117 -28 175 -103t45 -214q-7 -71 -32.5 -125t-64.5 -89t-97 -58.5t-121.5 -34.5t-145.5 -15v-255h-154v251q-80 0 -122 1v-252h-154v255q-18 0 -54 0.5t-55 0.5h-200l31 183h111q50 0 58 51v402h16q-6 1 -16 1v287q-13 68 -89 68h-111v164
+l212 -1q64 0 97 1v252h154v-247q82 2 122 2v245h154v-252q79 -7 140 -22.5t113 -45t82.5 -78t36.5 -114.5zM952 351q0 36 -15 64t-37 46t-57.5 30.5t-65.5 18.5t-74 9t-69 3t-64.5 -1t-47.5 -1v-338q8 0 37 -0.5t48 -0.5t53 1.5t58.5 4t57 8.5t55.5 14t47.5 21t39.5 30
+t24.5 40t9.5 51zM881 827q0 33 -12.5 58.5t-30.5 42t-48 28t-55 16.5t-61.5 8t-58 2.5t-54 -1t-39.5 -0.5v-307q5 0 34.5 -0.5t46.5 0t50 2t55 5.5t51.5 11t48.5 18.5t37 27t27 38.5t9 51z" />
+    <glyph glyph-name="file" unicode="&#xf15b;" 
+d="M1024 1024v472q22 -14 36 -28l408 -408q14 -14 28 -36h-472zM896 992q0 -40 28 -68t68 -28h544v-1056q0 -40 -28 -68t-68 -28h-1344q-40 0 -68 28t-28 68v1600q0 40 28 68t68 28h800v-544z" />
+    <glyph glyph-name="file_text" unicode="&#xf15c;" 
+d="M1468 1060q14 -14 28 -36h-472v472q22 -14 36 -28zM992 896h544v-1056q0 -40 -28 -68t-68 -28h-1344q-40 0 -68 28t-28 68v1600q0 40 28 68t68 28h800v-544q0 -40 28 -68t68 -28zM1152 160v64q0 14 -9 23t-23 9h-704q-14 0 -23 -9t-9 -23v-64q0 -14 9 -23t23 -9h704
+q14 0 23 9t9 23zM1152 416v64q0 14 -9 23t-23 9h-704q-14 0 -23 -9t-9 -23v-64q0 -14 9 -23t23 -9h704q14 0 23 9t9 23zM1152 672v64q0 14 -9 23t-23 9h-704q-14 0 -23 -9t-9 -23v-64q0 -14 9 -23t23 -9h704q14 0 23 9t9 23z" />
+    <glyph glyph-name="sort_by_alphabet" unicode="&#xf15d;" horiz-adv-x="1664" 
+d="M1191 1128h177l-72 218l-12 47q-2 16 -2 20h-4l-3 -20q0 -1 -3.5 -18t-7.5 -29zM736 96q0 -12 -10 -24l-319 -319q-10 -9 -23 -9q-12 0 -23 9l-320 320q-15 16 -7 35q8 20 30 20h192v1376q0 14 9 23t23 9h192q14 0 23 -9t9 -23v-1376h192q14 0 23 -9t9 -23zM1572 -23
+v-233h-584v90l369 529q12 18 21 27l11 9v3q-2 0 -6.5 -0.5t-7.5 -0.5q-12 -3 -30 -3h-232v-115h-120v229h567v-89l-369 -530q-6 -8 -21 -26l-11 -11v-2l14 2q9 2 30 2h248v119h121zM1661 874v-106h-288v106h75l-47 144h-243l-47 -144h75v-106h-287v106h70l230 662h162
+l230 -662h70z" />
+    <glyph glyph-name="_329" unicode="&#xf15e;" horiz-adv-x="1664" 
+d="M1191 104h177l-72 218l-12 47q-2 16 -2 20h-4l-3 -20q0 -1 -3.5 -18t-7.5 -29zM736 96q0 -12 -10 -24l-319 -319q-10 -9 -23 -9q-12 0 -23 9l-320 320q-15 16 -7 35q8 20 30 20h192v1376q0 14 9 23t23 9h192q14 0 23 -9t9 -23v-1376h192q14 0 23 -9t9 -23zM1661 -150
+v-106h-288v106h75l-47 144h-243l-47 -144h75v-106h-287v106h70l230 662h162l230 -662h70zM1572 1001v-233h-584v90l369 529q12 18 21 27l11 9v3q-2 0 -6.5 -0.5t-7.5 -0.5q-12 -3 -30 -3h-232v-115h-120v229h567v-89l-369 -530q-6 -8 -21 -26l-11 -10v-3l14 3q9 1 30 1h248
+v119h121z" />
+    <glyph glyph-name="sort_by_attributes" unicode="&#xf160;" horiz-adv-x="1792" 
+d="M736 96q0 -12 -10 -24l-319 -319q-10 -9 -23 -9q-12 0 -23 9l-320 320q-15 16 -7 35q8 20 30 20h192v1376q0 14 9 23t23 9h192q14 0 23 -9t9 -23v-1376h192q14 0 23 -9t9 -23zM1792 -32v-192q0 -14 -9 -23t-23 -9h-832q-14 0 -23 9t-9 23v192q0 14 9 23t23 9h832
+q14 0 23 -9t9 -23zM1600 480v-192q0 -14 -9 -23t-23 -9h-640q-14 0 -23 9t-9 23v192q0 14 9 23t23 9h640q14 0 23 -9t9 -23zM1408 992v-192q0 -14 -9 -23t-23 -9h-448q-14 0 -23 9t-9 23v192q0 14 9 23t23 9h448q14 0 23 -9t9 -23zM1216 1504v-192q0 -14 -9 -23t-23 -9h-256
+q-14 0 -23 9t-9 23v192q0 14 9 23t23 9h256q14 0 23 -9t9 -23z" />
+    <glyph glyph-name="sort_by_attributes_alt" unicode="&#xf161;" horiz-adv-x="1792" 
+d="M1216 -32v-192q0 -14 -9 -23t-23 -9h-256q-14 0 -23 9t-9 23v192q0 14 9 23t23 9h256q14 0 23 -9t9 -23zM736 96q0 -12 -10 -24l-319 -319q-10 -9 -23 -9q-12 0 -23 9l-320 320q-15 16 -7 35q8 20 30 20h192v1376q0 14 9 23t23 9h192q14 0 23 -9t9 -23v-1376h192
+q14 0 23 -9t9 -23zM1408 480v-192q0 -14 -9 -23t-23 -9h-448q-14 0 -23 9t-9 23v192q0 14 9 23t23 9h448q14 0 23 -9t9 -23zM1600 992v-192q0 -14 -9 -23t-23 -9h-640q-14 0 -23 9t-9 23v192q0 14 9 23t23 9h640q14 0 23 -9t9 -23zM1792 1504v-192q0 -14 -9 -23t-23 -9h-832
+q-14 0 -23 9t-9 23v192q0 14 9 23t23 9h832q14 0 23 -9t9 -23z" />
+    <glyph glyph-name="sort_by_order" unicode="&#xf162;" 
+d="M1346 223q0 63 -44 116t-103 53q-52 0 -83 -37t-31 -94t36.5 -95t104.5 -38q50 0 85 27t35 68zM736 96q0 -12 -10 -24l-319 -319q-10 -9 -23 -9q-12 0 -23 9l-320 320q-15 16 -7 35q8 20 30 20h192v1376q0 14 9 23t23 9h192q14 0 23 -9t9 -23v-1376h192q14 0 23 -9t9 -23
+zM1486 165q0 -62 -13 -121.5t-41 -114t-68 -95.5t-98.5 -65.5t-127.5 -24.5q-62 0 -108 16q-24 8 -42 15l39 113q15 -7 31 -11q37 -13 75 -13q84 0 134.5 58.5t66.5 145.5h-2q-21 -23 -61.5 -37t-84.5 -14q-106 0 -173 71.5t-67 172.5q0 105 72 178t181 73q123 0 205 -94.5
+t82 -252.5zM1456 882v-114h-469v114h167v432q0 7 0.5 19t0.5 17v16h-2l-7 -12q-8 -13 -26 -31l-62 -58l-82 86l192 185h123v-654h165z" />
+    <glyph glyph-name="sort_by_order_alt" unicode="&#xf163;" 
+d="M1346 1247q0 63 -44 116t-103 53q-52 0 -83 -37t-31 -94t36.5 -95t104.5 -38q50 0 85 27t35 68zM736 96q0 -12 -10 -24l-319 -319q-10 -9 -23 -9q-12 0 -23 9l-320 320q-15 16 -7 35q8 20 30 20h192v1376q0 14 9 23t23 9h192q14 0 23 -9t9 -23v-1376h192q14 0 23 -9
+t9 -23zM1456 -142v-114h-469v114h167v432q0 7 0.5 19t0.5 17v16h-2l-7 -12q-8 -13 -26 -31l-62 -58l-82 86l192 185h123v-654h165zM1486 1189q0 -62 -13 -121.5t-41 -114t-68 -95.5t-98.5 -65.5t-127.5 -24.5q-62 0 -108 16q-24 8 -42 15l39 113q15 -7 31 -11q37 -13 75 -13
+q84 0 134.5 58.5t66.5 145.5h-2q-21 -23 -61.5 -37t-84.5 -14q-106 0 -173 71.5t-67 172.5q0 105 72 178t181 73q123 0 205 -94.5t82 -252.5z" />
+    <glyph glyph-name="_334" unicode="&#xf164;" horiz-adv-x="1664" 
+d="M256 192q0 26 -19 45t-45 19q-27 0 -45.5 -19t-18.5 -45q0 -27 18.5 -45.5t45.5 -18.5q26 0 45 18.5t19 45.5zM416 704v-640q0 -26 -19 -45t-45 -19h-288q-26 0 -45 19t-19 45v640q0 26 19 45t45 19h288q26 0 45 -19t19 -45zM1600 704q0 -86 -55 -149q15 -44 15 -76
+q3 -76 -43 -137q17 -56 0 -117q-15 -57 -54 -94q9 -112 -49 -181q-64 -76 -197 -78h-36h-76h-17q-66 0 -144 15.5t-121.5 29t-120.5 39.5q-123 43 -158 44q-26 1 -45 19.5t-19 44.5v641q0 25 18 43.5t43 20.5q24 2 76 59t101 121q68 87 101 120q18 18 31 48t17.5 48.5
+t13.5 60.5q7 39 12.5 61t19.5 52t34 50q19 19 45 19q46 0 82.5 -10.5t60 -26t40 -40.5t24 -45t12 -50t5 -45t0.5 -39q0 -38 -9.5 -76t-19 -60t-27.5 -56q-3 -6 -10 -18t-11 -22t-8 -24h277q78 0 135 -57t57 -135z" />
+    <glyph glyph-name="_335" unicode="&#xf165;" horiz-adv-x="1664" 
+d="M256 960q0 -26 -19 -45t-45 -19q-27 0 -45.5 19t-18.5 45q0 27 18.5 45.5t45.5 18.5q26 0 45 -18.5t19 -45.5zM416 448v640q0 26 -19 45t-45 19h-288q-26 0 -45 -19t-19 -45v-640q0 -26 19 -45t45 -19h288q26 0 45 19t19 45zM1545 597q55 -61 55 -149q-1 -78 -57.5 -135
+t-134.5 -57h-277q4 -14 8 -24t11 -22t10 -18q18 -37 27 -57t19 -58.5t10 -76.5q0 -24 -0.5 -39t-5 -45t-12 -50t-24 -45t-40 -40.5t-60 -26t-82.5 -10.5q-26 0 -45 19q-20 20 -34 50t-19.5 52t-12.5 61q-9 42 -13.5 60.5t-17.5 48.5t-31 48q-33 33 -101 120q-49 64 -101 121
+t-76 59q-25 2 -43 20.5t-18 43.5v641q0 26 19 44.5t45 19.5q35 1 158 44q77 26 120.5 39.5t121.5 29t144 15.5h17h76h36q133 -2 197 -78q58 -69 49 -181q39 -37 54 -94q17 -61 0 -117q46 -61 43 -137q0 -32 -15 -76z" />
+    <glyph glyph-name="youtube_sign" unicode="&#xf166;" 
+d="M919 233v157q0 50 -29 50q-17 0 -33 -16v-224q16 -16 33 -16q29 0 29 49zM1103 355h66v34q0 51 -33 51t-33 -51v-34zM532 621v-70h-80v-423h-74v423h-78v70h232zM733 495v-367h-67v40q-39 -45 -76 -45q-33 0 -42 28q-6 17 -6 54v290h66v-270q0 -24 1 -26q1 -15 15 -15
+q20 0 42 31v280h67zM985 384v-146q0 -52 -7 -73q-12 -42 -53 -42q-35 0 -68 41v-36h-67v493h67v-161q32 40 68 40q41 0 53 -42q7 -21 7 -74zM1236 255v-9q0 -29 -2 -43q-3 -22 -15 -40q-27 -40 -80 -40q-52 0 -81 38q-21 27 -21 86v129q0 59 20 86q29 38 80 38t78 -38
+q21 -29 21 -86v-76h-133v-65q0 -51 34 -51q24 0 30 26q0 1 0.5 7t0.5 16.5v21.5h68zM785 1079v-156q0 -51 -32 -51t-32 51v156q0 52 32 52t32 -52zM1318 366q0 177 -19 260q-10 44 -43 73.5t-76 34.5q-136 15 -412 15q-275 0 -411 -15q-44 -5 -76.5 -34.5t-42.5 -73.5
+q-20 -87 -20 -260q0 -176 20 -260q10 -43 42.5 -73t75.5 -35q137 -15 412 -15t412 15q43 5 75.5 35t42.5 73q20 84 20 260zM563 1017l90 296h-75l-51 -195l-53 195h-78q7 -23 23 -69l24 -69q35 -103 46 -158v-201h74v201zM852 936v130q0 58 -21 87q-29 38 -78 38
+q-51 0 -78 -38q-21 -29 -21 -87v-130q0 -58 21 -87q27 -38 78 -38q49 0 78 38q21 27 21 87zM1033 816h67v370h-67v-283q-22 -31 -42 -31q-15 0 -16 16q-1 2 -1 26v272h-67v-293q0 -37 6 -55q11 -27 43 -27q36 0 77 45v-40zM1536 1120v-960q0 -119 -84.5 -203.5t-203.5 -84.5
+h-960q-119 0 -203.5 84.5t-84.5 203.5v960q0 119 84.5 203.5t203.5 84.5h960q119 0 203.5 -84.5t84.5 -203.5z" />
+    <glyph glyph-name="youtube" unicode="&#xf167;" 
+d="M971 292v-211q0 -67 -39 -67q-23 0 -45 22v301q22 22 45 22q39 0 39 -67zM1309 291v-46h-90v46q0 68 45 68t45 -68zM343 509h107v94h-312v-94h105v-569h100v569zM631 -60h89v494h-89v-378q-30 -42 -57 -42q-18 0 -21 21q-1 3 -1 35v364h-89v-391q0 -49 8 -73
+q12 -37 58 -37q48 0 102 61v-54zM1060 88v197q0 73 -9 99q-17 56 -71 56q-50 0 -93 -54v217h-89v-663h89v48q45 -55 93 -55q54 0 71 55q9 27 9 100zM1398 98v13h-91q0 -51 -2 -61q-7 -36 -40 -36q-46 0 -46 69v87h179v103q0 79 -27 116q-39 51 -106 51q-68 0 -107 -51
+q-28 -37 -28 -116v-173q0 -79 29 -116q39 -51 108 -51q72 0 108 53q18 27 21 54q2 9 2 58zM790 1011v210q0 69 -43 69t-43 -69v-210q0 -70 43 -70t43 70zM1509 260q0 -234 -26 -350q-14 -59 -58 -99t-102 -46q-184 -21 -555 -21t-555 21q-58 6 -102.5 46t-57.5 99
+q-26 112 -26 350q0 234 26 350q14 59 58 99t103 47q183 20 554 20t555 -20q58 -7 102.5 -47t57.5 -99q26 -112 26 -350zM511 1536h102l-121 -399v-271h-100v271q-14 74 -61 212q-37 103 -65 187h106l71 -263zM881 1203v-175q0 -81 -28 -118q-38 -51 -106 -51q-67 0 -105 51
+q-28 38 -28 118v175q0 80 28 117q38 51 105 51q68 0 106 -51q28 -37 28 -117zM1216 1365v-499h-91v55q-53 -62 -103 -62q-46 0 -59 37q-8 24 -8 75v394h91v-367q0 -33 1 -35q3 -22 21 -22q27 0 57 43v381h91z" />
+    <glyph glyph-name="xing" unicode="&#xf168;" horiz-adv-x="1408" 
+d="M597 869q-10 -18 -257 -456q-27 -46 -65 -46h-239q-21 0 -31 17t0 36l253 448q1 0 0 1l-161 279q-12 22 -1 37q9 15 32 15h239q40 0 66 -45zM1403 1511q11 -16 0 -37l-528 -934v-1l336 -615q11 -20 1 -37q-10 -15 -32 -15h-239q-42 0 -66 45l-339 622q18 32 531 942
+q25 45 64 45h241q22 0 31 -15z" />
+    <glyph glyph-name="xing_sign" unicode="&#xf169;" 
+d="M685 771q0 1 -126 222q-21 34 -52 34h-184q-18 0 -26 -11q-7 -12 1 -29l125 -216v-1l-196 -346q-9 -14 0 -28q8 -13 24 -13h185q31 0 50 36zM1309 1268q-7 12 -24 12h-187q-30 0 -49 -35l-411 -729q1 -2 262 -481q20 -35 52 -35h184q18 0 25 12q8 13 -1 28l-260 476v1
+l409 723q8 16 0 28zM1536 1120v-960q0 -119 -84.5 -203.5t-203.5 -84.5h-960q-119 0 -203.5 84.5t-84.5 203.5v960q0 119 84.5 203.5t203.5 84.5h960q119 0 203.5 -84.5t84.5 -203.5z" />
+    <glyph glyph-name="youtube_play" unicode="&#xf16a;" horiz-adv-x="1792" 
+d="M711 408l484 250l-484 253v-503zM896 1270q168 0 324.5 -4.5t229.5 -9.5l73 -4q1 0 17 -1.5t23 -3t23.5 -4.5t28.5 -8t28 -13t31 -19.5t29 -26.5q6 -6 15.5 -18.5t29 -58.5t26.5 -101q8 -64 12.5 -136.5t5.5 -113.5v-40v-136q1 -145 -18 -290q-7 -55 -25 -99.5t-32 -61.5
+l-14 -17q-14 -15 -29 -26.5t-31 -19t-28 -12.5t-28.5 -8t-24 -4.5t-23 -3t-16.5 -1.5q-251 -19 -627 -19q-207 2 -359.5 6.5t-200.5 7.5l-49 4l-36 4q-36 5 -54.5 10t-51 21t-56.5 41q-6 6 -15.5 18.5t-29 58.5t-26.5 101q-8 64 -12.5 136.5t-5.5 113.5v40v136
+q-1 145 18 290q7 55 25 99.5t32 61.5l14 17q14 15 29 26.5t31 19.5t28 13t28.5 8t23.5 4.5t23 3t17 1.5q251 18 627 18z" />
+    <glyph glyph-name="dropbox" unicode="&#xf16b;" horiz-adv-x="1792" 
+d="M402 829l494 -305l-342 -285l-490 319zM1388 274v-108l-490 -293v-1l-1 1l-1 -1v1l-489 293v108l147 -96l342 284v2l1 -1l1 1v-2l343 -284zM554 1418l342 -285l-494 -304l-338 270zM1390 829l338 -271l-489 -319l-343 285zM1239 1418l489 -319l-338 -270l-494 304z" />
+    <glyph glyph-name="stackexchange" unicode="&#xf16c;" 
+d="M1289 -96h-1118v480h-160v-640h1438v640h-160v-480zM347 428l33 157l783 -165l-33 -156zM450 802l67 146l725 -339l-67 -145zM651 1158l102 123l614 -513l-102 -123zM1048 1536l477 -641l-128 -96l-477 641zM330 65v159h800v-159h-800z" />
+    <glyph glyph-name="instagram" unicode="&#xf16d;" 
+d="M1024 640q0 106 -75 181t-181 75t-181 -75t-75 -181t75 -181t181 -75t181 75t75 181zM1162 640q0 -164 -115 -279t-279 -115t-279 115t-115 279t115 279t279 115t279 -115t115 -279zM1270 1050q0 -38 -27 -65t-65 -27t-65 27t-27 65t27 65t65 27t65 -27t27 -65zM768 1270
+q-7 0 -76.5 0.5t-105.5 0t-96.5 -3t-103 -10t-71.5 -18.5q-50 -20 -88 -58t-58 -88q-11 -29 -18.5 -71.5t-10 -103t-3 -96.5t0 -105.5t0.5 -76.5t-0.5 -76.5t0 -105.5t3 -96.5t10 -103t18.5 -71.5q20 -50 58 -88t88 -58q29 -11 71.5 -18.5t103 -10t96.5 -3t105.5 0t76.5 0.5
+t76.5 -0.5t105.5 0t96.5 3t103 10t71.5 18.5q50 20 88 58t58 88q11 29 18.5 71.5t10 103t3 96.5t0 105.5t-0.5 76.5t0.5 76.5t0 105.5t-3 96.5t-10 103t-18.5 71.5q-20 50 -58 88t-88 58q-29 11 -71.5 18.5t-103 10t-96.5 3t-105.5 0t-76.5 -0.5zM1536 640q0 -229 -5 -317
+q-10 -208 -124 -322t-322 -124q-88 -5 -317 -5t-317 5q-208 10 -322 124t-124 322q-5 88 -5 317t5 317q10 208 124 322t322 124q88 5 317 5t317 -5q208 -10 322 -124t124 -322q5 -88 5 -317z" />
+    <glyph glyph-name="flickr" unicode="&#xf16e;" 
+d="M1248 1408q119 0 203.5 -84.5t84.5 -203.5v-960q0 -119 -84.5 -203.5t-203.5 -84.5h-960q-119 0 -203.5 84.5t-84.5 203.5v960q0 119 84.5 203.5t203.5 84.5h960zM698 640q0 88 -62 150t-150 62t-150 -62t-62 -150t62 -150t150 -62t150 62t62 150zM1262 640q0 88 -62 150
+t-150 62t-150 -62t-62 -150t62 -150t150 -62t150 62t62 150z" />
+    <glyph glyph-name="adn" unicode="&#xf170;" 
+d="M768 914l201 -306h-402zM1133 384h94l-459 691l-459 -691h94l104 160h522zM1536 640q0 -209 -103 -385.5t-279.5 -279.5t-385.5 -103t-385.5 103t-279.5 279.5t-103 385.5t103 385.5t279.5 279.5t385.5 103t385.5 -103t279.5 -279.5t103 -385.5z" />
+    <glyph glyph-name="f171" unicode="&#xf171;" horiz-adv-x="1408" 
+d="M815 677q8 -63 -50.5 -101t-111.5 -6q-39 17 -53.5 58t-0.5 82t52 58q36 18 72.5 12t64 -35.5t27.5 -67.5zM926 698q-14 107 -113 164t-197 13q-63 -28 -100.5 -88.5t-34.5 -129.5q4 -91 77.5 -155t165.5 -56q91 8 152 84t50 168zM1165 1240q-20 27 -56 44.5t-58 22
+t-71 12.5q-291 47 -566 -2q-43 -7 -66 -12t-55 -22t-50 -43q30 -28 76 -45.5t73.5 -22t87.5 -11.5q228 -29 448 -1q63 8 89.5 12t72.5 21.5t75 46.5zM1222 205q-8 -26 -15.5 -76.5t-14 -84t-28.5 -70t-58 -56.5q-86 -48 -189.5 -71.5t-202 -22t-201.5 18.5q-46 8 -81.5 18
+t-76.5 27t-73 43.5t-52 61.5q-25 96 -57 292l6 16l18 9q223 -148 506.5 -148t507.5 148q21 -6 24 -23t-5 -45t-8 -37zM1403 1166q-26 -167 -111 -655q-5 -30 -27 -56t-43.5 -40t-54.5 -31q-252 -126 -610 -88q-248 27 -394 139q-15 12 -25.5 26.5t-17 35t-9 34t-6 39.5
+t-5.5 35q-9 50 -26.5 150t-28 161.5t-23.5 147.5t-22 158q3 26 17.5 48.5t31.5 37.5t45 30t46 22.5t48 18.5q125 46 313 64q379 37 676 -50q155 -46 215 -122q16 -20 16.5 -51t-5.5 -54z" />
+    <glyph glyph-name="bitbucket_sign" unicode="&#xf172;" 
+d="M848 666q0 43 -41 66t-77 1q-43 -20 -42.5 -72.5t43.5 -70.5q39 -23 81 4t36 72zM928 682q8 -66 -36 -121t-110 -61t-119 40t-56 113q-2 49 25.5 93t72.5 64q70 31 141.5 -10t81.5 -118zM1100 1073q-20 -21 -53.5 -34t-53 -16t-63.5 -8q-155 -20 -324 0q-44 6 -63 9.5
+t-52.5 16t-54.5 32.5q13 19 36 31t40 15.5t47 8.5q198 35 408 1q33 -5 51 -8.5t43 -16t39 -31.5zM1142 327q0 7 5.5 26.5t3 32t-17.5 16.5q-161 -106 -365 -106t-366 106l-12 -6l-5 -12q26 -154 41 -210q47 -81 204 -108q249 -46 428 53q34 19 49 51.5t22.5 85.5t12.5 71z
+M1272 1020q9 53 -8 75q-43 55 -155 88q-216 63 -487 36q-132 -12 -226 -46q-38 -15 -59.5 -25t-47 -34t-29.5 -54q8 -68 19 -138t29 -171t24 -137q1 -5 5 -31t7 -36t12 -27t22 -28q105 -80 284 -100q259 -28 440 63q24 13 39.5 23t31 29t19.5 40q48 267 80 473zM1536 1120
+v-960q0 -119 -84.5 -203.5t-203.5 -84.5h-960q-119 0 -203.5 84.5t-84.5 203.5v960q0 119 84.5 203.5t203.5 84.5h960q119 0 203.5 -84.5t84.5 -203.5z" />
+    <glyph glyph-name="tumblr" unicode="&#xf173;" horiz-adv-x="1024" 
+d="M944 207l80 -237q-23 -35 -111 -66t-177 -32q-104 -2 -190.5 26t-142.5 74t-95 106t-55.5 120t-16.5 118v544h-168v215q72 26 129 69.5t91 90t58 102t34 99t15 88.5q1 5 4.5 8.5t7.5 3.5h244v-424h333v-252h-334v-518q0 -30 6.5 -56t22.5 -52.5t49.5 -41.5t81.5 -14
+q78 2 134 29z" />
+    <glyph glyph-name="tumblr_sign" unicode="&#xf174;" 
+d="M1136 75l-62 183q-44 -22 -103 -22q-36 -1 -62 10.5t-38.5 31.5t-17.5 40.5t-5 43.5v398h257v194h-256v326h-188q-8 0 -9 -10q-5 -44 -17.5 -87t-39 -95t-77 -95t-118.5 -68v-165h130v-418q0 -57 21.5 -115t65 -111t121 -85.5t176.5 -30.5q69 1 136.5 25t85.5 50z
+M1536 1120v-960q0 -119 -84.5 -203.5t-203.5 -84.5h-960q-119 0 -203.5 84.5t-84.5 203.5v960q0 119 84.5 203.5t203.5 84.5h960q119 0 203.5 -84.5t84.5 -203.5z" />
+    <glyph glyph-name="long_arrow_down" unicode="&#xf175;" horiz-adv-x="768" 
+d="M765 237q8 -19 -5 -35l-350 -384q-10 -10 -23 -10q-14 0 -24 10l-355 384q-13 16 -5 35q9 19 29 19h224v1248q0 14 9 23t23 9h192q14 0 23 -9t9 -23v-1248h224q21 0 29 -19z" />
+    <glyph glyph-name="long_arrow_up" unicode="&#xf176;" horiz-adv-x="768" 
+d="M765 1043q-9 -19 -29 -19h-224v-1248q0 -14 -9 -23t-23 -9h-192q-14 0 -23 9t-9 23v1248h-224q-21 0 -29 19t5 35l350 384q10 10 23 10q14 0 24 -10l355 -384q13 -16 5 -35z" />
+    <glyph glyph-name="long_arrow_left" unicode="&#xf177;" horiz-adv-x="1792" 
+d="M1792 736v-192q0 -14 -9 -23t-23 -9h-1248v-224q0 -21 -19 -29t-35 5l-384 350q-10 10 -10 23q0 14 10 24l384 354q16 14 35 6q19 -9 19 -29v-224h1248q14 0 23 -9t9 -23z" />
+    <glyph glyph-name="long_arrow_right" unicode="&#xf178;" horiz-adv-x="1792" 
+d="M1728 643q0 -14 -10 -24l-384 -354q-16 -14 -35 -6q-19 9 -19 29v224h-1248q-14 0 -23 9t-9 23v192q0 14 9 23t23 9h1248v224q0 21 19 29t35 -5l384 -350q10 -10 10 -23z" />
+    <glyph glyph-name="apple" unicode="&#xf179;" horiz-adv-x="1408" 
+d="M1393 321q-39 -125 -123 -250q-129 -196 -257 -196q-49 0 -140 32q-86 32 -151 32q-61 0 -142 -33q-81 -34 -132 -34q-152 0 -301 259q-147 261 -147 503q0 228 113 374q113 144 284 144q72 0 177 -30q104 -30 138 -30q45 0 143 34q102 34 173 34q119 0 213 -65
+q52 -36 104 -100q-79 -67 -114 -118q-65 -94 -65 -207q0 -124 69 -223t158 -126zM1017 1494q0 -61 -29 -136q-30 -75 -93 -138q-54 -54 -108 -72q-37 -11 -104 -17q3 149 78 257q74 107 250 148q1 -3 2.5 -11t2.5 -11q0 -4 0.5 -10t0.5 -10z" />
+    <glyph glyph-name="windows" unicode="&#xf17a;" horiz-adv-x="1664" 
+d="M682 530v-651l-682 94v557h682zM682 1273v-659h-682v565zM1664 530v-786l-907 125v661h907zM1664 1408v-794h-907v669z" />
+    <glyph glyph-name="android" unicode="&#xf17b;" horiz-adv-x="1408" 
+d="M493 1053q16 0 27.5 11.5t11.5 27.5t-11.5 27.5t-27.5 11.5t-27 -11.5t-11 -27.5t11 -27.5t27 -11.5zM915 1053q16 0 27 11.5t11 27.5t-11 27.5t-27 11.5t-27.5 -11.5t-11.5 -27.5t11.5 -27.5t27.5 -11.5zM103 869q42 0 72 -30t30 -72v-430q0 -43 -29.5 -73t-72.5 -30
+t-73 30t-30 73v430q0 42 30 72t73 30zM1163 850v-666q0 -46 -32 -78t-77 -32h-75v-227q0 -43 -30 -73t-73 -30t-73 30t-30 73v227h-138v-227q0 -43 -30 -73t-73 -30q-42 0 -72 30t-30 73l-1 227h-74q-46 0 -78 32t-32 78v666h918zM931 1255q107 -55 171 -153.5t64 -215.5
+h-925q0 117 64 215.5t172 153.5l-71 131q-7 13 5 20q13 6 20 -6l72 -132q95 42 201 42t201 -42l72 132q7 12 20 6q12 -7 5 -20zM1408 767v-430q0 -43 -30 -73t-73 -30q-42 0 -72 30t-30 73v430q0 43 30 72.5t72 29.5q43 0 73 -29.5t30 -72.5z" />
+    <glyph glyph-name="linux" unicode="&#xf17c;" 
+d="M663 1125q-11 -1 -15.5 -10.5t-8.5 -9.5q-5 -1 -5 5q0 12 19 15h10zM750 1111q-4 -1 -11.5 6.5t-17.5 4.5q24 11 32 -2q3 -6 -3 -9zM399 684q-4 1 -6 -3t-4.5 -12.5t-5.5 -13.5t-10 -13q-10 -11 -1 -12q4 -1 12.5 7t12.5 18q1 3 2 7t2 6t1.5 4.5t0.5 4v3t-1 2.5t-3 2z
+M1254 325q0 18 -55 42q4 15 7.5 27.5t5 26t3 21.5t0.5 22.5t-1 19.5t-3.5 22t-4 20.5t-5 25t-5.5 26.5q-10 48 -47 103t-72 75q24 -20 57 -83q87 -162 54 -278q-11 -40 -50 -42q-31 -4 -38.5 18.5t-8 83.5t-11.5 107q-9 39 -19.5 69t-19.5 45.5t-15.5 24.5t-13 15t-7.5 7
+q-14 62 -31 103t-29.5 56t-23.5 33t-15 40q-4 21 6 53.5t4.5 49.5t-44.5 25q-15 3 -44.5 18t-35.5 16q-8 1 -11 26t8 51t36 27q37 3 51 -30t4 -58q-11 -19 -2 -26.5t30 -0.5q13 4 13 36v37q-5 30 -13.5 50t-21 30.5t-23.5 15t-27 7.5q-107 -8 -89 -134q0 -15 -1 -15
+q-9 9 -29.5 10.5t-33 -0.5t-15.5 5q1 57 -16 90t-45 34q-27 1 -41.5 -27.5t-16.5 -59.5q-1 -15 3.5 -37t13 -37.5t15.5 -13.5q10 3 16 14q4 9 -7 8q-7 0 -15.5 14.5t-9.5 33.5q-1 22 9 37t34 14q17 0 27 -21t9.5 -39t-1.5 -22q-22 -15 -31 -29q-8 -12 -27.5 -23.5
+t-20.5 -12.5q-13 -14 -15.5 -27t7.5 -18q14 -8 25 -19.5t16 -19t18.5 -13t35.5 -6.5q47 -2 102 15q2 1 23 7t34.5 10.5t29.5 13t21 17.5q9 14 20 8q5 -3 6.5 -8.5t-3 -12t-16.5 -9.5q-20 -6 -56.5 -21.5t-45.5 -19.5q-44 -19 -70 -23q-25 -5 -79 2q-10 2 -9 -2t17 -19
+q25 -23 67 -22q17 1 36 7t36 14t33.5 17.5t30 17t24.5 12t17.5 2.5t8.5 -11q0 -2 -1 -4.5t-4 -5t-6 -4.5t-8.5 -5t-9 -4.5t-10 -5t-9.5 -4.5q-28 -14 -67.5 -44t-66.5 -43t-49 -1q-21 11 -63 73q-22 31 -25 22q-1 -3 -1 -10q0 -25 -15 -56.5t-29.5 -55.5t-21 -58t11.5 -63
+q-23 -6 -62.5 -90t-47.5 -141q-2 -18 -1.5 -69t-5.5 -59q-8 -24 -29 -3q-32 31 -36 94q-2 28 4 56q4 19 -1 18q-2 -1 -4 -5q-36 -65 10 -166q5 -12 25 -28t24 -20q20 -23 104 -90.5t93 -76.5q16 -15 17.5 -38t-14 -43t-45.5 -23q8 -15 29 -44.5t28 -54t7 -70.5q46 24 7 92
+q-4 8 -10.5 16t-9.5 12t-2 6q3 5 13 9.5t20 -2.5q46 -52 166 -36q133 15 177 87q23 38 34 30q12 -6 10 -52q-1 -25 -23 -92q-9 -23 -6 -37.5t24 -15.5q3 19 14.5 77t13.5 90q2 21 -6.5 73.5t-7.5 97t23 70.5q15 18 51 18q1 37 34.5 53t72.5 10.5t60 -22.5zM626 1152
+q3 17 -2.5 30t-11.5 15q-9 2 -9 -7q2 -5 5 -6q10 0 7 -15q-3 -20 8 -20q3 0 3 3zM1045 955q-2 8 -6.5 11.5t-13 5t-14.5 5.5q-5 3 -9.5 8t-7 8t-5.5 6.5t-4 4t-4 -1.5q-14 -16 7 -43.5t39 -31.5q9 -1 14.5 8t3.5 20zM867 1168q0 11 -5 19.5t-11 12.5t-9 3q-6 0 -8 -2t0 -4
+t5 -3q14 -4 18 -31q0 -3 8 2q2 2 2 3zM921 1401q0 2 -2.5 5t-9 7t-9.5 6q-15 15 -24 15q-9 -1 -11.5 -7.5t-1 -13t-0.5 -12.5q-1 -4 -6 -10.5t-6 -9t3 -8.5q4 -3 8 0t11 9t15 9q1 1 9 1t15 2t9 7zM1486 60q20 -12 31 -24.5t12 -24t-2.5 -22.5t-15.5 -22t-23.5 -19.5
+t-30 -18.5t-31.5 -16.5t-32 -15.5t-27 -13q-38 -19 -85.5 -56t-75.5 -64q-17 -16 -68 -19.5t-89 14.5q-18 9 -29.5 23.5t-16.5 25.5t-22 19.5t-47 9.5q-44 1 -130 1q-19 0 -57 -1.5t-58 -2.5q-44 -1 -79.5 -15t-53.5 -30t-43.5 -28.5t-53.5 -11.5q-29 1 -111 31t-146 43
+q-19 4 -51 9.5t-50 9t-39.5 9.5t-33.5 14.5t-17 19.5q-10 23 7 66.5t18 54.5q1 16 -4 40t-10 42.5t-4.5 36.5t10.5 27q14 12 57 14t60 12q30 18 42 35t12 51q21 -73 -32 -106q-32 -20 -83 -15q-34 3 -43 -10q-13 -15 5 -57q2 -6 8 -18t8.5 -18t4.5 -17t1 -22q0 -15 -17 -49
+t-14 -48q3 -17 37 -26q20 -6 84.5 -18.5t99.5 -20.5q24 -6 74 -22t82.5 -23t55.5 -4q43 6 64.5 28t23 48t-7.5 58.5t-19 52t-20 36.5q-121 190 -169 242q-68 74 -113 40q-11 -9 -15 15q-3 16 -2 38q1 29 10 52t24 47t22 42q8 21 26.5 72t29.5 78t30 61t39 54
+q110 143 124 195q-12 112 -16 310q-2 90 24 151.5t106 104.5q39 21 104 21q53 1 106 -13.5t89 -41.5q57 -42 91.5 -121.5t29.5 -147.5q-5 -95 30 -214q34 -113 133 -218q55 -59 99.5 -163t59.5 -191q8 -49 5 -84.5t-12 -55.5t-20 -22q-10 -2 -23.5 -19t-27 -35.5
+t-40.5 -33.5t-61 -14q-18 1 -31.5 5t-22.5 13.5t-13.5 15.5t-11.5 20.5t-9 19.5q-22 37 -41 30t-28 -49t7 -97q20 -70 1 -195q-10 -65 18 -100.5t73 -33t85 35.5q59 49 89.5 66.5t103.5 42.5q53 18 77 36.5t18.5 34.5t-25 28.5t-51.5 23.5q-33 11 -49.5 48t-15 72.5
+t15.5 47.5q1 -31 8 -56.5t14.5 -40.5t20.5 -28.5t21 -19t21.5 -13t16.5 -9.5z" />
+    <glyph glyph-name="dribble" unicode="&#xf17d;" 
+d="M1024 36q-42 241 -140 498h-2l-2 -1q-16 -6 -43 -16.5t-101 -49t-137 -82t-131 -114.5t-103 -148l-15 11q184 -150 418 -150q132 0 256 52zM839 643q-21 49 -53 111q-311 -93 -673 -93q-1 -7 -1 -21q0 -124 44 -236.5t124 -201.5q50 89 123.5 166.5t142.5 124.5t130.5 81
+t99.5 48l37 13q4 1 13 3.5t13 4.5zM732 855q-120 213 -244 378q-138 -65 -234 -186t-128 -272q302 0 606 80zM1416 536q-210 60 -409 29q87 -239 128 -469q111 75 185 189.5t96 250.5zM611 1277q-1 0 -2 -1q1 1 2 1zM1201 1132q-185 164 -433 164q-76 0 -155 -19
+q131 -170 246 -382q69 26 130 60.5t96.5 61.5t65.5 57t37.5 40.5zM1424 647q-3 232 -149 410l-1 -1q-9 -12 -19 -24.5t-43.5 -44.5t-71 -60.5t-100 -65t-131.5 -64.5q25 -53 44 -95q2 -5 6.5 -17t7.5 -17q36 5 74.5 7t73.5 2t69 -1.5t64 -4t56.5 -5.5t48 -6.5t36.5 -6
+t25 -4.5zM1536 640q0 -209 -103 -385.5t-279.5 -279.5t-385.5 -103t-385.5 103t-279.5 279.5t-103 385.5t103 385.5t279.5 279.5t385.5 103t385.5 -103t279.5 -279.5t103 -385.5z" />
+    <glyph glyph-name="skype" unicode="&#xf17e;" 
+d="M1173 473q0 50 -19.5 91.5t-48.5 68.5t-73 49t-82.5 34t-87.5 23l-104 24q-30 7 -44 10.5t-35 11.5t-30 16t-16.5 21t-7.5 30q0 77 144 77q43 0 77 -12t54 -28.5t38 -33.5t40 -29t48 -12q47 0 75.5 32t28.5 77q0 55 -56 99.5t-142 67.5t-182 23q-68 0 -132 -15.5
+t-119.5 -47t-89 -87t-33.5 -128.5q0 -61 19 -106.5t56 -75.5t80 -48.5t103 -32.5l146 -36q90 -22 112 -36q32 -20 32 -60q0 -39 -40 -64.5t-105 -25.5q-51 0 -91.5 16t-65 38.5t-45.5 45t-46 38.5t-54 16q-50 0 -75.5 -30t-25.5 -75q0 -92 122 -157.5t291 -65.5
+q73 0 140 18.5t122.5 53.5t88.5 93.5t33 131.5zM1536 256q0 -159 -112.5 -271.5t-271.5 -112.5q-130 0 -234 80q-77 -16 -150 -16q-143 0 -273.5 55.5t-225 150t-150 225t-55.5 273.5q0 73 16 150q-80 104 -80 234q0 159 112.5 271.5t271.5 112.5q130 0 234 -80
+q77 16 150 16q143 0 273.5 -55.5t225 -150t150 -225t55.5 -273.5q0 -73 -16 -150q80 -104 80 -234z" />
+    <glyph glyph-name="foursquare" unicode="&#xf180;" horiz-adv-x="1280" 
+d="M1000 1102l37 194q5 23 -9 40t-35 17h-712q-23 0 -38.5 -17t-15.5 -37v-1101q0 -7 6 -1l291 352q23 26 38 33.5t48 7.5h239q22 0 37 14.5t18 29.5q24 130 37 191q4 21 -11.5 40t-36.5 19h-294q-29 0 -48 19t-19 48v42q0 29 19 47.5t48 18.5h346q18 0 35 13.5t20 29.5z
+M1227 1324q-15 -73 -53.5 -266.5t-69.5 -350t-35 -173.5q-6 -22 -9 -32.5t-14 -32.5t-24.5 -33t-38.5 -21t-58 -10h-271q-13 0 -22 -10q-8 -9 -426 -494q-22 -25 -58.5 -28.5t-48.5 5.5q-55 22 -55 98v1410q0 55 38 102.5t120 47.5h888q95 0 127 -53t10 -159zM1227 1324
+l-158 -790q4 17 35 173.5t69.5 350t53.5 266.5z" />
+    <glyph glyph-name="trello" unicode="&#xf181;" 
+d="M704 192v1024q0 14 -9 23t-23 9h-480q-14 0 -23 -9t-9 -23v-1024q0 -14 9 -23t23 -9h480q14 0 23 9t9 23zM1376 576v640q0 14 -9 23t-23 9h-480q-14 0 -23 -9t-9 -23v-640q0 -14 9 -23t23 -9h480q14 0 23 9t9 23zM1536 1344v-1408q0 -26 -19 -45t-45 -19h-1408
+q-26 0 -45 19t-19 45v1408q0 26 19 45t45 19h1408q26 0 45 -19t19 -45z" />
+    <glyph glyph-name="female" unicode="&#xf182;" horiz-adv-x="1280" 
+d="M1280 480q0 -40 -28 -68t-68 -28q-51 0 -80 43l-227 341h-45v-132l247 -411q9 -15 9 -33q0 -26 -19 -45t-45 -19h-192v-272q0 -46 -33 -79t-79 -33h-160q-46 0 -79 33t-33 79v272h-192q-26 0 -45 19t-19 45q0 18 9 33l247 411v132h-45l-227 -341q-29 -43 -80 -43
+q-40 0 -68 28t-28 68q0 29 16 53l256 384q73 107 176 107h384q103 0 176 -107l256 -384q16 -24 16 -53zM864 1280q0 -93 -65.5 -158.5t-158.5 -65.5t-158.5 65.5t-65.5 158.5t65.5 158.5t158.5 65.5t158.5 -65.5t65.5 -158.5z" />
+    <glyph glyph-name="male" unicode="&#xf183;" horiz-adv-x="1024" 
+d="M1024 832v-416q0 -40 -28 -68t-68 -28t-68 28t-28 68v352h-64v-912q0 -46 -33 -79t-79 -33t-79 33t-33 79v464h-64v-464q0 -46 -33 -79t-79 -33t-79 33t-33 79v912h-64v-352q0 -40 -28 -68t-68 -28t-68 28t-28 68v416q0 80 56 136t136 56h640q80 0 136 -56t56 -136z
+M736 1280q0 -93 -65.5 -158.5t-158.5 -65.5t-158.5 65.5t-65.5 158.5t65.5 158.5t158.5 65.5t158.5 -65.5t65.5 -158.5z" />
+    <glyph glyph-name="gittip" unicode="&#xf184;" 
+d="M773 234l350 473q16 22 24.5 59t-6 85t-61.5 79q-40 26 -83 25.5t-73.5 -17.5t-54.5 -45q-36 -40 -96 -40q-59 0 -95 40q-24 28 -54.5 45t-73.5 17.5t-84 -25.5q-46 -31 -60.5 -79t-6 -85t24.5 -59zM1536 640q0 -209 -103 -385.5t-279.5 -279.5t-385.5 -103t-385.5 103
+t-279.5 279.5t-103 385.5t103 385.5t279.5 279.5t385.5 103t385.5 -103t279.5 -279.5t103 -385.5z" />
+    <glyph glyph-name="sun" unicode="&#xf185;" horiz-adv-x="1792" 
+d="M1472 640q0 117 -45.5 223.5t-123 184t-184 123t-223.5 45.5t-223.5 -45.5t-184 -123t-123 -184t-45.5 -223.5t45.5 -223.5t123 -184t184 -123t223.5 -45.5t223.5 45.5t184 123t123 184t45.5 223.5zM1748 363q-4 -15 -20 -20l-292 -96v-306q0 -16 -13 -26q-15 -10 -29 -4
+l-292 94l-180 -248q-10 -13 -26 -13t-26 13l-180 248l-292 -94q-14 -6 -29 4q-13 10 -13 26v306l-292 96q-16 5 -20 20q-5 17 4 29l180 248l-180 248q-9 13 -4 29q4 15 20 20l292 96v306q0 16 13 26q15 10 29 4l292 -94l180 248q9 12 26 12t26 -12l180 -248l292 94
+q14 6 29 -4q13 -10 13 -26v-306l292 -96q16 -5 20 -20q5 -16 -4 -29l-180 -248l180 -248q9 -12 4 -29z" />
+    <glyph glyph-name="_366" unicode="&#xf186;" 
+d="M1262 233q-54 -9 -110 -9q-182 0 -337 90t-245 245t-90 337q0 192 104 357q-201 -60 -328.5 -229t-127.5 -384q0 -130 51 -248.5t136.5 -204t204 -136.5t248.5 -51q144 0 273.5 61.5t220.5 171.5zM1465 318q-94 -203 -283.5 -324.5t-413.5 -121.5q-156 0 -298 61
+t-245 164t-164 245t-61 298q0 153 57.5 292.5t156 241.5t235.5 164.5t290 68.5q44 2 61 -39q18 -41 -15 -72q-86 -78 -131.5 -181.5t-45.5 -218.5q0 -148 73 -273t198 -198t273 -73q118 0 228 51q41 18 72 -13q14 -14 17.5 -34t-4.5 -38z" />
+    <glyph glyph-name="archive" unicode="&#xf187;" horiz-adv-x="1792" 
+d="M1088 704q0 26 -19 45t-45 19h-256q-26 0 -45 -19t-19 -45t19 -45t45 -19h256q26 0 45 19t19 45zM1664 896v-960q0 -26 -19 -45t-45 -19h-1408q-26 0 -45 19t-19 45v960q0 26 19 45t45 19h1408q26 0 45 -19t19 -45zM1728 1344v-256q0 -26 -19 -45t-45 -19h-1536
+q-26 0 -45 19t-19 45v256q0 26 19 45t45 19h1536q26 0 45 -19t19 -45z" />
+    <glyph glyph-name="bug" unicode="&#xf188;" horiz-adv-x="1664" 
+d="M1632 576q0 -26 -19 -45t-45 -19h-224q0 -171 -67 -290l208 -209q19 -19 19 -45t-19 -45q-18 -19 -45 -19t-45 19l-198 197q-5 -5 -15 -13t-42 -28.5t-65 -36.5t-82 -29t-97 -13v896h-128v-896q-51 0 -101.5 13.5t-87 33t-66 39t-43.5 32.5l-15 14l-183 -207
+q-20 -21 -48 -21q-24 0 -43 16q-19 18 -20.5 44.5t15.5 46.5l202 227q-58 114 -58 274h-224q-26 0 -45 19t-19 45t19 45t45 19h224v294l-173 173q-19 19 -19 45t19 45t45 19t45 -19l173 -173h844l173 173q19 19 45 19t45 -19t19 -45t-19 -45l-173 -173v-294h224q26 0 45 -19
+t19 -45zM1152 1152h-640q0 133 93.5 226.5t226.5 93.5t226.5 -93.5t93.5 -226.5z" />
+    <glyph glyph-name="vk" unicode="&#xf189;" horiz-adv-x="1920" 
+d="M1917 1016q23 -64 -150 -294q-24 -32 -65 -85q-40 -51 -55 -72t-30.5 -49.5t-12 -42t13 -34.5t32.5 -43t57 -53q4 -2 5 -4q141 -131 191 -221q3 -5 6.5 -12.5t7 -26.5t-0.5 -34t-25 -27.5t-59 -12.5l-256 -4q-24 -5 -56 5t-52 22l-20 12q-30 21 -70 64t-68.5 77.5t-61 58
+t-56.5 15.5q-3 -1 -8 -3.5t-17 -14.5t-21.5 -29.5t-17 -52t-6.5 -77.5q0 -15 -3.5 -27.5t-7.5 -18.5l-4 -5q-18 -19 -53 -22h-115q-71 -4 -146 16.5t-131.5 53t-103 66t-70.5 57.5l-25 24q-10 10 -27.5 30t-71.5 91t-106 151t-122.5 211t-130.5 272q-6 16 -6 27t3 16l4 6
+q15 19 57 19l274 2q12 -2 23 -6.5t16 -8.5l5 -3q16 -11 24 -32q20 -50 46 -103.5t41 -81.5l16 -29q29 -60 56 -104t48.5 -68.5t41.5 -38.5t34 -14t27 5q2 1 5 5t12 22t13.5 47t9.5 81t0 125q-2 40 -9 73t-14 46l-6 12q-25 34 -85 43q-13 2 5 24q16 19 38 30q53 26 239 24
+q82 -1 135 -13q20 -5 33.5 -13.5t20.5 -24t10.5 -32t3.5 -45.5t-1 -55t-2.5 -70.5t-1.5 -82.5q0 -11 -1 -42t-0.5 -48t3.5 -40.5t11.5 -39t22.5 -24.5q8 -2 17 -4t26 11t38 34.5t52 67t68 107.5q60 104 107 225q4 10 10 17.5t11 10.5l4 3l5 2.5t13 3t20 0.5l288 2
+q39 5 64 -2.5t31 -16.5z" />
+    <glyph glyph-name="weibo" unicode="&#xf18a;" horiz-adv-x="1792" 
+d="M675 252q21 34 11 69t-45 50q-34 14 -73 1t-60 -46q-22 -34 -13 -68.5t43 -50.5t74.5 -2.5t62.5 47.5zM769 373q8 13 3.5 26.5t-17.5 18.5q-14 5 -28.5 -0.5t-21.5 -18.5q-17 -31 13 -45q14 -5 29 0.5t22 18.5zM943 266q-45 -102 -158 -150t-224 -12
+q-107 34 -147.5 126.5t6.5 187.5q47 93 151.5 139t210.5 19q111 -29 158.5 -119.5t2.5 -190.5zM1255 426q-9 96 -89 170t-208.5 109t-274.5 21q-223 -23 -369.5 -141.5t-132.5 -264.5q9 -96 89 -170t208.5 -109t274.5 -21q223 23 369.5 141.5t132.5 264.5zM1563 422
+q0 -68 -37 -139.5t-109 -137t-168.5 -117.5t-226 -83t-270.5 -31t-275 33.5t-240.5 93t-171.5 151t-65 199.5q0 115 69.5 245t197.5 258q169 169 341.5 236t246.5 -7q65 -64 20 -209q-4 -14 -1 -20t10 -7t14.5 0.5t13.5 3.5l6 2q139 59 246 59t153 -61q45 -63 0 -178
+q-2 -13 -4.5 -20t4.5 -12.5t12 -7.5t17 -6q57 -18 103 -47t80 -81.5t34 -116.5zM1489 1046q42 -47 54.5 -108.5t-6.5 -117.5q-8 -23 -29.5 -34t-44.5 -4q-23 8 -34 29.5t-4 44.5q20 63 -24 111t-107 35q-24 -5 -45 8t-25 37q-5 24 8 44.5t37 25.5q60 13 119 -5.5t101 -65.5z
+M1670 1209q87 -96 112.5 -222.5t-13.5 -241.5q-9 -27 -34 -40t-52 -4t-40 34t-5 52q28 82 10 172t-80 158q-62 69 -148 95.5t-173 8.5q-28 -6 -52 9.5t-30 43.5t9.5 51.5t43.5 29.5q123 26 244 -11.5t208 -134.5z" />
+    <glyph glyph-name="renren" unicode="&#xf18b;" 
+d="M1133 -34q-171 -94 -368 -94q-196 0 -367 94q138 87 235.5 211t131.5 268q35 -144 132.5 -268t235.5 -211zM638 1394v-485q0 -252 -126.5 -459.5t-330.5 -306.5q-181 215 -181 495q0 187 83.5 349.5t229.5 269.5t325 137zM1536 638q0 -280 -181 -495
+q-204 99 -330.5 306.5t-126.5 459.5v485q179 -30 325 -137t229.5 -269.5t83.5 -349.5z" />
+    <glyph glyph-name="_372" unicode="&#xf18c;" horiz-adv-x="1408" 
+d="M1402 433q-32 -80 -76 -138t-91 -88.5t-99 -46.5t-101.5 -14.5t-96.5 8.5t-86.5 22t-69.5 27.5t-46 22.5l-17 10q-113 -228 -289.5 -359.5t-384.5 -132.5q-19 0 -32 13t-13 32t13 31.5t32 12.5q173 1 322.5 107.5t251.5 294.5q-36 -14 -72 -23t-83 -13t-91 2.5t-93 28.5
+t-92 59t-84.5 100t-74.5 146q114 47 214 57t167.5 -7.5t124.5 -56.5t88.5 -77t56.5 -82q53 131 79 291q-7 -1 -18 -2.5t-46.5 -2.5t-69.5 0.5t-81.5 10t-88.5 23t-84 42.5t-75 65t-54.5 94.5t-28.5 127.5q70 28 133.5 36.5t112.5 -1t92 -30t73.5 -50t56 -61t42 -63t27.5 -56
+t16 -39.5l4 -16q12 122 12 195q-8 6 -21.5 16t-49 44.5t-63.5 71.5t-54 93t-33 112.5t12 127t70 138.5q73 -25 127.5 -61.5t84.5 -76.5t48 -85t20.5 -89t-0.5 -85.5t-13 -76.5t-19 -62t-17 -42l-7 -15q1 -4 1 -50t-1 -72q3 7 10 18.5t30.5 43t50.5 58t71 55.5t91.5 44.5
+t112 14.5t132.5 -24q-2 -78 -21.5 -141.5t-50 -104.5t-69.5 -71.5t-81.5 -45.5t-84.5 -24t-80 -9.5t-67.5 1t-46.5 4.5l-17 3q-23 -147 -73 -283q6 7 18 18.5t49.5 41t77.5 52.5t99.5 42t117.5 20t129 -23.5t137 -77.5z" />
+    <glyph glyph-name="stack_exchange" unicode="&#xf18d;" horiz-adv-x="1280" 
+d="M1259 283v-66q0 -85 -57.5 -144.5t-138.5 -59.5h-57l-260 -269v269h-529q-81 0 -138.5 59.5t-57.5 144.5v66h1238zM1259 609v-255h-1238v255h1238zM1259 937v-255h-1238v255h1238zM1259 1077v-67h-1238v67q0 84 57.5 143.5t138.5 59.5h846q81 0 138.5 -59.5t57.5 -143.5z
+" />
+    <glyph glyph-name="_374" unicode="&#xf18e;" 
+d="M1152 640q0 -14 -9 -23l-320 -320q-9 -9 -23 -9q-13 0 -22.5 9.5t-9.5 22.5v192h-352q-13 0 -22.5 9.5t-9.5 22.5v192q0 13 9.5 22.5t22.5 9.5h352v192q0 14 9 23t23 9q12 0 24 -10l319 -319q9 -9 9 -23zM1312 640q0 148 -73 273t-198 198t-273 73t-273 -73t-198 -198
+t-73 -273t73 -273t198 -198t273 -73t273 73t198 198t73 273zM1536 640q0 -209 -103 -385.5t-279.5 -279.5t-385.5 -103t-385.5 103t-279.5 279.5t-103 385.5t103 385.5t279.5 279.5t385.5 103t385.5 -103t279.5 -279.5t103 -385.5z" />
+    <glyph glyph-name="arrow_circle_alt_left" unicode="&#xf190;" 
+d="M1152 736v-192q0 -13 -9.5 -22.5t-22.5 -9.5h-352v-192q0 -14 -9 -23t-23 -9q-12 0 -24 10l-319 319q-9 9 -9 23t9 23l320 320q9 9 23 9q13 0 22.5 -9.5t9.5 -22.5v-192h352q13 0 22.5 -9.5t9.5 -22.5zM1312 640q0 148 -73 273t-198 198t-273 73t-273 -73t-198 -198
+t-73 -273t73 -273t198 -198t273 -73t273 73t198 198t73 273zM1536 640q0 -209 -103 -385.5t-279.5 -279.5t-385.5 -103t-385.5 103t-279.5 279.5t-103 385.5t103 385.5t279.5 279.5t385.5 103t385.5 -103t279.5 -279.5t103 -385.5z" />
+    <glyph glyph-name="_376" unicode="&#xf191;" 
+d="M1024 960v-640q0 -26 -19 -45t-45 -19q-20 0 -37 12l-448 320q-27 19 -27 52t27 52l448 320q17 12 37 12q26 0 45 -19t19 -45zM1280 160v960q0 13 -9.5 22.5t-22.5 9.5h-960q-13 0 -22.5 -9.5t-9.5 -22.5v-960q0 -13 9.5 -22.5t22.5 -9.5h960q13 0 22.5 9.5t9.5 22.5z
+M1536 1120v-960q0 -119 -84.5 -203.5t-203.5 -84.5h-960q-119 0 -203.5 84.5t-84.5 203.5v960q0 119 84.5 203.5t203.5 84.5h960q119 0 203.5 -84.5t84.5 -203.5z" />
+    <glyph glyph-name="dot_circle_alt" unicode="&#xf192;" 
+d="M1024 640q0 -106 -75 -181t-181 -75t-181 75t-75 181t75 181t181 75t181 -75t75 -181zM768 1184q-148 0 -273 -73t-198 -198t-73 -273t73 -273t198 -198t273 -73t273 73t198 198t73 273t-73 273t-198 198t-273 73zM1536 640q0 -209 -103 -385.5t-279.5 -279.5
+t-385.5 -103t-385.5 103t-279.5 279.5t-103 385.5t103 385.5t279.5 279.5t385.5 103t385.5 -103t279.5 -279.5t103 -385.5z" />
+    <glyph glyph-name="_378" unicode="&#xf193;" horiz-adv-x="1664" 
+d="M1023 349l102 -204q-58 -179 -210 -290t-339 -111q-156 0 -288.5 77.5t-210 210t-77.5 288.5q0 181 104.5 330t274.5 211l17 -131q-122 -54 -195 -165.5t-73 -244.5q0 -185 131.5 -316.5t316.5 -131.5q126 0 232.5 65t165 175.5t49.5 236.5zM1571 249l58 -114l-256 -128
+q-13 -7 -29 -7q-40 0 -57 35l-239 477h-472q-24 0 -42.5 16.5t-21.5 40.5l-96 779q-2 17 6 42q14 51 57 82.5t97 31.5q66 0 113 -47t47 -113q0 -69 -52 -117.5t-120 -41.5l37 -289h423v-128h-407l16 -128h455q40 0 57 -35l228 -455z" />
+    <glyph glyph-name="vimeo_square" unicode="&#xf194;" 
+d="M1292 898q10 216 -161 222q-231 8 -312 -261q44 19 82 19q85 0 74 -96q-4 -57 -74 -167t-105 -110q-43 0 -82 169q-13 54 -45 255q-30 189 -160 177q-59 -7 -164 -100l-81 -72l-81 -72l52 -67q76 52 87 52q57 0 107 -179q15 -55 45 -164.5t45 -164.5q68 -179 164 -179
+q157 0 383 294q220 283 226 444zM1536 1120v-960q0 -119 -84.5 -203.5t-203.5 -84.5h-960q-119 0 -203.5 84.5t-84.5 203.5v960q0 119 84.5 203.5t203.5 84.5h960q119 0 203.5 -84.5t84.5 -203.5z" />
+    <glyph glyph-name="_380" unicode="&#xf195;" horiz-adv-x="1152" 
+d="M1152 704q0 -191 -94.5 -353t-256.5 -256.5t-353 -94.5h-160q-14 0 -23 9t-9 23v611l-215 -66q-3 -1 -9 -1q-10 0 -19 6q-13 10 -13 26v128q0 23 23 31l233 71v93l-215 -66q-3 -1 -9 -1q-10 0 -19 6q-13 10 -13 26v128q0 23 23 31l233 71v250q0 14 9 23t23 9h160
+q14 0 23 -9t9 -23v-181l375 116q15 5 28 -5t13 -26v-128q0 -23 -23 -31l-393 -121v-93l375 116q15 5 28 -5t13 -26v-128q0 -23 -23 -31l-393 -121v-487q188 13 318 151t130 328q0 14 9 23t23 9h160q14 0 23 -9t9 -23z" />
+    <glyph glyph-name="plus_square_o" unicode="&#xf196;" horiz-adv-x="1408" 
+d="M1152 736v-64q0 -14 -9 -23t-23 -9h-352v-352q0 -14 -9 -23t-23 -9h-64q-14 0 -23 9t-9 23v352h-352q-14 0 -23 9t-9 23v64q0 14 9 23t23 9h352v352q0 14 9 23t23 9h64q14 0 23 -9t9 -23v-352h352q14 0 23 -9t9 -23zM1280 288v832q0 66 -47 113t-113 47h-832
+q-66 0 -113 -47t-47 -113v-832q0 -66 47 -113t113 -47h832q66 0 113 47t47 113zM1408 1120v-832q0 -119 -84.5 -203.5t-203.5 -84.5h-832q-119 0 -203.5 84.5t-84.5 203.5v832q0 119 84.5 203.5t203.5 84.5h832q119 0 203.5 -84.5t84.5 -203.5z" />
+    <glyph glyph-name="_382" unicode="&#xf197;" horiz-adv-x="2176" 
+d="M620 416q-110 -64 -268 -64h-128v64h-64q-13 0 -22.5 23.5t-9.5 56.5q0 24 7 49q-58 2 -96.5 10.5t-38.5 20.5t38.5 20.5t96.5 10.5q-7 25 -7 49q0 33 9.5 56.5t22.5 23.5h64v64h128q158 0 268 -64h1113q42 -7 106.5 -18t80.5 -14q89 -15 150 -40.5t83.5 -47.5t22.5 -40
+t-22.5 -40t-83.5 -47.5t-150 -40.5q-16 -3 -80.5 -14t-106.5 -18h-1113zM1739 668q53 -36 53 -92t-53 -92l81 -30q68 48 68 122t-68 122zM625 400h1015q-217 -38 -456 -80q-57 0 -113 -24t-83 -48l-28 -24l-288 -288q-26 -26 -70.5 -45t-89.5 -19h-96l-93 464h29
+q157 0 273 64zM352 816h-29l93 464h96q46 0 90 -19t70 -45l288 -288q4 -4 11 -10.5t30.5 -23t48.5 -29t61.5 -23t72.5 -10.5l456 -80h-1015q-116 64 -273 64z" />
+    <glyph glyph-name="_383" unicode="&#xf198;" horiz-adv-x="1664" 
+d="M1519 760q62 0 103.5 -40.5t41.5 -101.5q0 -97 -93 -130l-172 -59l56 -167q7 -21 7 -47q0 -59 -42 -102t-101 -43q-47 0 -85.5 27t-53.5 72l-55 165l-310 -106l55 -164q8 -24 8 -47q0 -59 -42 -102t-102 -43q-47 0 -85 27t-53 72l-55 163l-153 -53q-29 -9 -50 -9
+q-61 0 -101.5 40t-40.5 101q0 47 27.5 85t71.5 53l156 53l-105 313l-156 -54q-26 -8 -48 -8q-60 0 -101 40.5t-41 100.5q0 47 27.5 85t71.5 53l157 53l-53 159q-8 24 -8 47q0 60 42 102.5t102 42.5q47 0 85 -27t53 -72l54 -160l310 105l-54 160q-8 24 -8 47q0 59 42.5 102
+t101.5 43q47 0 85.5 -27.5t53.5 -71.5l53 -161l162 55q21 6 43 6q60 0 102.5 -39.5t42.5 -98.5q0 -45 -30 -81.5t-74 -51.5l-157 -54l105 -316l164 56q24 8 46 8zM725 498l310 105l-105 315l-310 -107z" />
+    <glyph glyph-name="_384" unicode="&#xf199;" 
+d="M1248 1408q119 0 203.5 -84.5t84.5 -203.5v-960q0 -119 -84.5 -203.5t-203.5 -84.5h-960q-119 0 -203.5 84.5t-84.5 203.5v960q0 119 84.5 203.5t203.5 84.5h960zM1280 352v436q-31 -35 -64 -55q-34 -22 -132.5 -85t-151.5 -99q-98 -69 -164 -69v0v0q-66 0 -164 69
+q-47 32 -142 92.5t-142 92.5q-12 8 -33 27t-31 27v-436q0 -40 28 -68t68 -28h832q40 0 68 28t28 68zM1280 925q0 41 -27.5 70t-68.5 29h-832q-40 0 -68 -28t-28 -68q0 -37 30.5 -76.5t67.5 -64.5q47 -32 137.5 -89t129.5 -83q3 -2 17 -11.5t21 -14t21 -13t23.5 -13
+t21.5 -9.5t22.5 -7.5t20.5 -2.5t20.5 2.5t22.5 7.5t21.5 9.5t23.5 13t21 13t21 14t17 11.5l267 174q35 23 66.5 62.5t31.5 73.5z" />
+    <glyph glyph-name="_385" unicode="&#xf19a;" horiz-adv-x="1792" 
+d="M127 640q0 163 67 313l367 -1005q-196 95 -315 281t-119 411zM1415 679q0 -19 -2.5 -38.5t-10 -49.5t-11.5 -44t-17.5 -59t-17.5 -58l-76 -256l-278 826q46 3 88 8q19 2 26 18.5t-2.5 31t-28.5 13.5l-205 -10q-75 1 -202 10q-12 1 -20.5 -5t-11.5 -15t-1.5 -18.5t9 -16.5
+t19.5 -8l80 -8l120 -328l-168 -504l-280 832q46 3 88 8q19 2 26 18.5t-2.5 31t-28.5 13.5l-205 -10q-7 0 -23 0.5t-26 0.5q105 160 274.5 253.5t367.5 93.5q147 0 280.5 -53t238.5 -149h-10q-55 0 -92 -40.5t-37 -95.5q0 -12 2 -24t4 -21.5t8 -23t9 -21t12 -22.5t12.5 -21
+t14.5 -24t14 -23q63 -107 63 -212zM909 573l237 -647q1 -6 5 -11q-126 -44 -255 -44q-112 0 -217 32zM1570 1009q95 -174 95 -369q0 -209 -104 -385.5t-279 -278.5l235 678q59 169 59 276q0 42 -6 79zM896 1536q182 0 348 -71t286 -191t191 -286t71 -348t-71 -348t-191 -286
+t-286 -191t-348 -71t-348 71t-286 191t-191 286t-71 348t71 348t191 286t286 191t348 71zM896 -215q173 0 331.5 68t273 182.5t182.5 273t68 331.5t-68 331.5t-182.5 273t-273 182.5t-331.5 68t-331.5 -68t-273 -182.5t-182.5 -273t-68 -331.5t68 -331.5t182.5 -273
+t273 -182.5t331.5 -68z" />
+    <glyph glyph-name="_386" unicode="&#xf19b;" horiz-adv-x="1792" 
+d="M1086 1536v-1536l-272 -128q-228 20 -414 102t-293 208.5t-107 272.5q0 140 100.5 263.5t275 205.5t391.5 108v-172q-217 -38 -356.5 -150t-139.5 -255q0 -152 154.5 -267t388.5 -145v1360zM1755 954l37 -390l-525 114l147 83q-119 70 -280 99v172q277 -33 481 -157z" />
+    <glyph glyph-name="_387" unicode="&#xf19c;" horiz-adv-x="2048" 
+d="M960 1536l960 -384v-128h-128q0 -26 -20.5 -45t-48.5 -19h-1526q-28 0 -48.5 19t-20.5 45h-128v128zM256 896h256v-768h128v768h256v-768h128v768h256v-768h128v768h256v-768h59q28 0 48.5 -19t20.5 -45v-64h-1664v64q0 26 20.5 45t48.5 19h59v768zM1851 -64
+q28 0 48.5 -19t20.5 -45v-128h-1920v128q0 26 20.5 45t48.5 19h1782z" />
+    <glyph glyph-name="_388" unicode="&#xf19d;" horiz-adv-x="2304" 
+d="M1774 700l18 -316q4 -69 -82 -128t-235 -93.5t-323 -34.5t-323 34.5t-235 93.5t-82 128l18 316l574 -181q22 -7 48 -7t48 7zM2304 1024q0 -23 -22 -31l-1120 -352q-4 -1 -10 -1t-10 1l-652 206q-43 -34 -71 -111.5t-34 -178.5q63 -36 63 -109q0 -69 -58 -107l58 -433
+q2 -14 -8 -25q-9 -11 -24 -11h-192q-15 0 -24 11q-10 11 -8 25l58 433q-58 38 -58 107q0 73 65 111q11 207 98 330l-333 104q-22 8 -22 31t22 31l1120 352q4 1 10 1t10 -1l1120 -352q22 -8 22 -31z" />
+    <glyph glyph-name="_389" unicode="&#xf19e;" 
+d="M859 579l13 -707q-62 11 -105 11q-41 0 -105 -11l13 707q-40 69 -168.5 295.5t-216.5 374.5t-181 287q58 -15 108 -15q44 0 111 15q63 -111 133.5 -229.5t167 -276.5t138.5 -227q37 61 109.5 177.5t117.5 190t105 176t107 189.5q54 -14 107 -14q56 0 114 14v0
+q-28 -39 -60 -88.5t-49.5 -78.5t-56.5 -96t-49 -84q-146 -248 -353 -610z" />
+    <glyph glyph-name="uniF1A0" unicode="&#xf1a0;" 
+d="M768 750h725q12 -67 12 -128q0 -217 -91 -387.5t-259.5 -266.5t-386.5 -96q-157 0 -299 60.5t-245 163.5t-163.5 245t-60.5 299t60.5 299t163.5 245t245 163.5t299 60.5q300 0 515 -201l-209 -201q-123 119 -306 119q-129 0 -238.5 -65t-173.5 -176.5t-64 -243.5
+t64 -243.5t173.5 -176.5t238.5 -65q87 0 160 24t120 60t82 82t51.5 87t22.5 78h-436v264z" />
+    <glyph glyph-name="f1a1" unicode="&#xf1a1;" horiz-adv-x="1792" 
+d="M1095 369q16 -16 0 -31q-62 -62 -199 -62t-199 62q-16 15 0 31q6 6 15 6t15 -6q48 -49 169 -49q120 0 169 49q6 6 15 6t15 -6zM788 550q0 -37 -26 -63t-63 -26t-63.5 26t-26.5 63q0 38 26.5 64t63.5 26t63 -26.5t26 -63.5zM1183 550q0 -37 -26.5 -63t-63.5 -26t-63 26
+t-26 63t26 63.5t63 26.5t63.5 -26t26.5 -64zM1434 670q0 49 -35 84t-85 35t-86 -36q-130 90 -311 96l63 283l200 -45q0 -37 26 -63t63 -26t63.5 26.5t26.5 63.5t-26.5 63.5t-63.5 26.5q-54 0 -80 -50l-221 49q-19 5 -25 -16l-69 -312q-180 -7 -309 -97q-35 37 -87 37
+q-50 0 -85 -35t-35 -84q0 -35 18.5 -64t49.5 -44q-6 -27 -6 -56q0 -142 140 -243t337 -101q198 0 338 101t140 243q0 32 -7 57q30 15 48 43.5t18 63.5zM1792 640q0 -182 -71 -348t-191 -286t-286 -191t-348 -71t-348 71t-286 191t-191 286t-71 348t71 348t191 286t286 191
+t348 71t348 -71t286 -191t191 -286t71 -348z" />
+    <glyph glyph-name="_392" unicode="&#xf1a2;" 
+d="M939 407q13 -13 0 -26q-53 -53 -171 -53t-171 53q-13 13 0 26q5 6 13 6t13 -6q42 -42 145 -42t145 42q5 6 13 6t13 -6zM676 563q0 -31 -23 -54t-54 -23t-54 23t-23 54q0 32 22.5 54.5t54.5 22.5t54.5 -22.5t22.5 -54.5zM1014 563q0 -31 -23 -54t-54 -23t-54 23t-23 54
+q0 32 22.5 54.5t54.5 22.5t54.5 -22.5t22.5 -54.5zM1229 666q0 42 -30 72t-73 30q-42 0 -73 -31q-113 78 -267 82l54 243l171 -39q1 -32 23.5 -54t53.5 -22q32 0 54.5 22.5t22.5 54.5t-22.5 54.5t-54.5 22.5q-48 0 -69 -43l-189 42q-17 5 -21 -13l-60 -268q-154 -6 -265 -83
+q-30 32 -74 32q-43 0 -73 -30t-30 -72q0 -30 16 -55t42 -38q-5 -25 -5 -48q0 -122 120 -208.5t289 -86.5q170 0 290 86.5t120 208.5q0 25 -6 49q25 13 40.5 37.5t15.5 54.5zM1536 1120v-960q0 -119 -84.5 -203.5t-203.5 -84.5h-960q-119 0 -203.5 84.5t-84.5 203.5v960
+q0 119 84.5 203.5t203.5 84.5h960q119 0 203.5 -84.5t84.5 -203.5z" />
+    <glyph glyph-name="_393" unicode="&#xf1a3;" 
+d="M866 697l90 27v62q0 79 -58 135t-138 56t-138 -55.5t-58 -134.5v-283q0 -20 -14 -33.5t-33 -13.5t-32.5 13.5t-13.5 33.5v120h-151v-122q0 -82 57.5 -139t139.5 -57q81 0 138.5 56.5t57.5 136.5v280q0 19 13.5 33t33.5 14q19 0 32.5 -14t13.5 -33v-54zM1199 502v122h-150
+v-126q0 -20 -13.5 -33.5t-33.5 -13.5q-19 0 -32.5 14t-13.5 33v123l-90 -26l-60 28v-123q0 -80 58 -137t139 -57t138.5 57t57.5 139zM1536 640q0 -209 -103 -385.5t-279.5 -279.5t-385.5 -103t-385.5 103t-279.5 279.5t-103 385.5t103 385.5t279.5 279.5t385.5 103
+t385.5 -103t279.5 -279.5t103 -385.5z" />
+    <glyph glyph-name="f1a4" unicode="&#xf1a4;" horiz-adv-x="1920" 
+d="M1062 824v118q0 42 -30 72t-72 30t-72 -30t-30 -72v-612q0 -175 -126 -299t-303 -124q-178 0 -303.5 125.5t-125.5 303.5v266h328v-262q0 -43 30 -72.5t72 -29.5t72 29.5t30 72.5v620q0 171 126.5 292t301.5 121q176 0 302 -122t126 -294v-136l-195 -58zM1592 602h328
+v-266q0 -178 -125.5 -303.5t-303.5 -125.5q-177 0 -303 124.5t-126 300.5v268l131 -61l195 58v-270q0 -42 30 -71.5t72 -29.5t72 29.5t30 71.5v275z" />
+    <glyph glyph-name="_395" unicode="&#xf1a5;" 
+d="M1472 160v480h-704v704h-480q-93 0 -158.5 -65.5t-65.5 -158.5v-480h704v-704h480q93 0 158.5 65.5t65.5 158.5zM1536 1120v-960q0 -119 -84.5 -203.5t-203.5 -84.5h-960q-119 0 -203.5 84.5t-84.5 203.5v960q0 119 84.5 203.5t203.5 84.5h960q119 0 203.5 -84.5
+t84.5 -203.5z" />
+    <glyph glyph-name="_396" unicode="&#xf1a6;" horiz-adv-x="2048" 
+d="M328 1254h204v-983h-532v697h328v286zM328 435v369h-123v-369h123zM614 968v-697h205v697h-205zM614 1254v-204h205v204h-205zM901 968h533v-942h-533v163h328v82h-328v697zM1229 435v369h-123v-369h123zM1516 968h532v-942h-532v163h327v82h-327v697zM1843 435v369h-123
+v-369h123z" />
+    <glyph glyph-name="_397" unicode="&#xf1a7;" 
+d="M1046 516q0 -64 -38 -109t-91 -45q-43 0 -70 15v277q28 17 70 17q53 0 91 -45.5t38 -109.5zM703 944q0 -64 -38 -109.5t-91 -45.5q-43 0 -70 15v277q28 17 70 17q53 0 91 -45t38 -109zM1265 513q0 134 -88 229t-213 95q-20 0 -39 -3q-23 -78 -78 -136q-87 -95 -211 -101
+v-636l211 41v206q51 -19 117 -19q125 0 213 95t88 229zM922 940q0 134 -88.5 229t-213.5 95q-74 0 -141 -36h-186v-840l211 41v206q55 -19 116 -19q125 0 213.5 95t88.5 229zM1536 1120v-960q0 -119 -84.5 -203.5t-203.5 -84.5h-960q-119 0 -203.5 84.5t-84.5 203.5v960
+q0 119 84.5 203.5t203.5 84.5h960q119 0 203.5 -84.5t84.5 -203.5z" />
+    <glyph glyph-name="_398" unicode="&#xf1a8;" horiz-adv-x="2038" 
+d="M1222 607q75 3 143.5 -20.5t118 -58.5t101 -94.5t84 -108t75.5 -120.5q33 -56 78.5 -109t75.5 -80.5t99 -88.5q-48 -30 -108.5 -57.5t-138.5 -59t-114 -47.5q-44 37 -74 115t-43.5 164.5t-33 180.5t-42.5 168.5t-72.5 123t-122.5 48.5l-10 -2l-6 -4q4 -5 13 -14
+q6 -5 28 -23.5t25.5 -22t19 -18t18 -20.5t11.5 -21t10.5 -27.5t4.5 -31t4 -40.5l1 -33q1 -26 -2.5 -57.5t-7.5 -52t-12.5 -58.5t-11.5 -53q-35 1 -101 -9.5t-98 -10.5q-39 0 -72 10q-2 16 -2 47q0 74 3 96q2 13 31.5 41.5t57 59t26.5 51.5q-24 2 -43 -24
+q-36 -53 -111.5 -99.5t-136.5 -46.5q-25 0 -75.5 63t-106.5 139.5t-84 96.5q-6 4 -27 30q-482 -112 -513 -112q-16 0 -28 11t-12 27q0 15 8.5 26.5t22.5 14.5l486 106q-8 14 -8 25t5.5 17.5t16 11.5t20 7t23 4.5t18.5 4.5q4 1 15.5 7.5t17.5 6.5q15 0 28 -16t20 -33
+q163 37 172 37q17 0 29.5 -11t12.5 -28q0 -15 -8.5 -26t-23.5 -14l-182 -40l-1 -16q-1 -26 81.5 -117.5t104.5 -91.5q47 0 119 80t72 129q0 36 -23.5 53t-51 18.5t-51 11.5t-23.5 34q0 16 10 34l-68 19q43 44 43 117q0 26 -5 58q82 16 144 16q44 0 71.5 -1.5t48.5 -8.5
+t31 -13.5t20.5 -24.5t15.5 -33.5t17 -47.5t24 -60l50 25q-3 -40 -23 -60t-42.5 -21t-40 -6.5t-16.5 -20.5zM1282 842q-5 5 -13.5 15.5t-12 14.5t-10.5 11.5t-10 10.5l-8 8t-8.5 7.5t-8 5t-8.5 4.5q-7 3 -14.5 5t-20.5 2.5t-22 0.5h-32.5h-37.5q-126 0 -217 -43
+q16 30 36 46.5t54 29.5t65.5 36t46 36.5t50 55t43.5 50.5q12 -9 28 -31.5t32 -36.5t38 -13l12 1v-76l22 -1q247 95 371 190q28 21 50 39t42.5 37.5t33 31t29.5 34t24 31t24.5 37t23 38t27 47.5t29.5 53l7 9q-2 -53 -43 -139q-79 -165 -205 -264t-306 -142q-14 -3 -42 -7.5
+t-50 -9.5t-39 -14q3 -19 24.5 -46t21.5 -34q0 -11 -26 -30zM1061 -79q39 26 131.5 47.5t146.5 21.5q9 0 22.5 -15.5t28 -42.5t26 -50t24 -51t14.5 -33q-121 -45 -244 -45q-61 0 -125 11zM822 568l48 12l109 -177l-73 -48zM1323 51q3 -15 3 -16q0 -7 -17.5 -14.5t-46 -13
+t-54 -9.5t-53.5 -7.5t-32 -4.5l-7 43q21 2 60.5 8.5t72 10t60.5 3.5h14zM866 679l-96 -20l-6 17q10 1 32.5 7t34.5 6q19 0 35 -10zM1061 45h31l10 -83l-41 -12v95zM1950 1535v1v-1zM1950 1535l-1 -5l-2 -2l1 3zM1950 1535l1 1z" />
+    <glyph glyph-name="_399" unicode="&#xf1a9;" 
+d="M1167 -50q-5 19 -24 5q-30 -22 -87 -39t-131 -17q-129 0 -193 49q-5 4 -13 4q-11 0 -26 -12q-7 -6 -7.5 -16t7.5 -20q34 -32 87.5 -46t102.5 -12.5t99 4.5q41 4 84.5 20.5t65 30t28.5 20.5q12 12 7 29zM1128 65q-19 47 -39 61q-23 15 -76 15q-47 0 -71 -10
+q-29 -12 -78 -56q-26 -24 -12 -44q9 -8 17.5 -4.5t31.5 23.5q3 2 10.5 8.5t10.5 8.5t10 7t11.5 7t12.5 5t15 4.5t16.5 2.5t20.5 1q27 0 44.5 -7.5t23 -14.5t13.5 -22q10 -17 12.5 -20t12.5 1q23 12 14 34zM1483 346q0 22 -5 44.5t-16.5 45t-34 36.5t-52.5 14
+q-33 0 -97 -41.5t-129 -83.5t-101 -42q-27 -1 -63.5 19t-76 49t-83.5 58t-100 49t-111 19q-115 -1 -197 -78.5t-84 -178.5q-2 -112 74 -164q29 -20 62.5 -28.5t103.5 -8.5q57 0 132 32.5t134 71t120 70.5t93 31q26 -1 65 -31.5t71.5 -67t68 -67.5t55.5 -32q35 -3 58.5 14
+t55.5 63q28 41 42.5 101t14.5 106zM1536 506q0 -164 -62 -304.5t-166 -236t-242.5 -149.5t-290.5 -54t-293 57.5t-247.5 157t-170.5 241.5t-64 302q0 89 19.5 172.5t49 145.5t70.5 118.5t78.5 94t78.5 69.5t64.5 46.5t42.5 24.5q14 8 51 26.5t54.5 28.5t48 30t60.5 44
+q36 28 58 72.5t30 125.5q129 -155 186 -193q44 -29 130 -68t129 -66q21 -13 39 -25t60.5 -46.5t76 -70.5t75 -95t69 -122t47 -148.5t19.5 -177.5z" />
+    <glyph glyph-name="_400" unicode="&#xf1aa;" 
+d="M1070 463l-160 -160l-151 -152l-30 -30q-65 -64 -151.5 -87t-171.5 -2q-16 -70 -72 -115t-129 -45q-85 0 -145 60.5t-60 145.5q0 72 44.5 128t113.5 72q-22 86 1 173t88 152l12 12l151 -152l-11 -11q-37 -37 -37 -89t37 -90q37 -37 89 -37t89 37l30 30l151 152l161 160z
+M729 1145l12 -12l-152 -152l-12 12q-37 37 -89 37t-89 -37t-37 -89.5t37 -89.5l29 -29l152 -152l160 -160l-151 -152l-161 160l-151 152l-30 30q-68 67 -90 159.5t5 179.5q-70 15 -115 71t-45 129q0 85 60 145.5t145 60.5q76 0 133.5 -49t69.5 -123q84 20 169.5 -3.5
+t149.5 -87.5zM1536 78q0 -85 -60 -145.5t-145 -60.5q-74 0 -131 47t-71 118q-86 -28 -179.5 -6t-161.5 90l-11 12l151 152l12 -12q37 -37 89 -37t89 37t37 89t-37 89l-30 30l-152 152l-160 160l152 152l160 -160l152 -152l29 -30q64 -64 87.5 -150.5t2.5 -171.5
+q76 -11 126.5 -68.5t50.5 -134.5zM1534 1202q0 -77 -51 -135t-127 -69q26 -85 3 -176.5t-90 -158.5l-12 -12l-151 152l12 12q37 37 37 89t-37 89t-89 37t-89 -37l-30 -30l-152 -152l-160 -160l-152 152l161 160l152 152l29 30q67 67 159 89.5t178 -3.5q11 75 68.5 126
+t135.5 51q85 0 145 -60.5t60 -145.5z" />
+    <glyph glyph-name="f1ab" unicode="&#xf1ab;" 
+d="M654 458q-1 -3 -12.5 0.5t-31.5 11.5l-20 9q-44 20 -87 49q-7 5 -41 31.5t-38 28.5q-67 -103 -134 -181q-81 -95 -105 -110q-4 -2 -19.5 -4t-18.5 0q6 4 82 92q21 24 85.5 115t78.5 118q17 30 51 98.5t36 77.5q-8 1 -110 -33q-8 -2 -27.5 -7.5t-34.5 -9.5t-17 -5
+q-2 -2 -2 -10.5t-1 -9.5q-5 -10 -31 -15q-23 -7 -47 0q-18 4 -28 21q-4 6 -5 23q6 2 24.5 5t29.5 6q58 16 105 32q100 35 102 35q10 2 43 19.5t44 21.5q9 3 21.5 8t14.5 5.5t6 -0.5q2 -12 -1 -33q0 -2 -12.5 -27t-26.5 -53.5t-17 -33.5q-25 -50 -77 -131l64 -28
+q12 -6 74.5 -32t67.5 -28q4 -1 10.5 -25.5t4.5 -30.5zM449 944q3 -15 -4 -28q-12 -23 -50 -38q-30 -12 -60 -12q-26 3 -49 26q-14 15 -18 41l1 3q3 -3 19.5 -5t26.5 0t58 16q36 12 55 14q17 0 21 -17zM1147 815l63 -227l-139 42zM39 15l694 232v1032l-694 -233v-1031z
+M1280 332l102 -31l-181 657l-100 31l-216 -536l102 -31l45 110l211 -65zM777 1294l573 -184v380zM1088 -29l158 -13l-54 -160l-40 66q-130 -83 -276 -108q-58 -12 -91 -12h-84q-79 0 -199.5 39t-183.5 85q-8 7 -8 16q0 8 5 13.5t13 5.5q4 0 18 -7.5t30.5 -16.5t20.5 -11
+q73 -37 159.5 -61.5t157.5 -24.5q95 0 167 14.5t157 50.5q15 7 30.5 15.5t34 19t28.5 16.5zM1536 1050v-1079l-774 246q-14 -6 -375 -127.5t-368 -121.5q-13 0 -18 13q0 1 -1 3v1078q3 9 4 10q5 6 20 11q107 36 149 50v384l558 -198q2 0 160.5 55t316 108.5t161.5 53.5
+q20 0 20 -21v-418z" />
+    <glyph glyph-name="_402" unicode="&#xf1ac;" horiz-adv-x="1792" 
+d="M288 1152q66 0 113 -47t47 -113v-1088q0 -66 -47 -113t-113 -47h-128q-66 0 -113 47t-47 113v1088q0 66 47 113t113 47h128zM1664 989q58 -34 93 -93t35 -128v-768q0 -106 -75 -181t-181 -75h-864q-66 0 -113 47t-47 113v1536q0 40 28 68t68 28h672q40 0 88 -20t76 -48
+l152 -152q28 -28 48 -76t20 -88v-163zM928 0v128q0 14 -9 23t-23 9h-128q-14 0 -23 -9t-9 -23v-128q0 -14 9 -23t23 -9h128q14 0 23 9t9 23zM928 256v128q0 14 -9 23t-23 9h-128q-14 0 -23 -9t-9 -23v-128q0 -14 9 -23t23 -9h128q14 0 23 9t9 23zM928 512v128q0 14 -9 23
+t-23 9h-128q-14 0 -23 -9t-9 -23v-128q0 -14 9 -23t23 -9h128q14 0 23 9t9 23zM1184 0v128q0 14 -9 23t-23 9h-128q-14 0 -23 -9t-9 -23v-128q0 -14 9 -23t23 -9h128q14 0 23 9t9 23zM1184 256v128q0 14 -9 23t-23 9h-128q-14 0 -23 -9t-9 -23v-128q0 -14 9 -23t23 -9h128
+q14 0 23 9t9 23zM1184 512v128q0 14 -9 23t-23 9h-128q-14 0 -23 -9t-9 -23v-128q0 -14 9 -23t23 -9h128q14 0 23 9t9 23zM1440 0v128q0 14 -9 23t-23 9h-128q-14 0 -23 -9t-9 -23v-128q0 -14 9 -23t23 -9h128q14 0 23 9t9 23zM1440 256v128q0 14 -9 23t-23 9h-128
+q-14 0 -23 -9t-9 -23v-128q0 -14 9 -23t23 -9h128q14 0 23 9t9 23zM1440 512v128q0 14 -9 23t-23 9h-128q-14 0 -23 -9t-9 -23v-128q0 -14 9 -23t23 -9h128q14 0 23 9t9 23zM1536 896v256h-160q-40 0 -68 28t-28 68v160h-640v-512h896z" />
+    <glyph glyph-name="_403" unicode="&#xf1ad;" 
+d="M1344 1536q26 0 45 -19t19 -45v-1664q0 -26 -19 -45t-45 -19h-1280q-26 0 -45 19t-19 45v1664q0 26 19 45t45 19h1280zM512 1248v-64q0 -14 9 -23t23 -9h64q14 0 23 9t9 23v64q0 14 -9 23t-23 9h-64q-14 0 -23 -9t-9 -23zM512 992v-64q0 -14 9 -23t23 -9h64q14 0 23 9
+t9 23v64q0 14 -9 23t-23 9h-64q-14 0 -23 -9t-9 -23zM512 736v-64q0 -14 9 -23t23 -9h64q14 0 23 9t9 23v64q0 14 -9 23t-23 9h-64q-14 0 -23 -9t-9 -23zM512 480v-64q0 -14 9 -23t23 -9h64q14 0 23 9t9 23v64q0 14 -9 23t-23 9h-64q-14 0 -23 -9t-9 -23zM384 160v64
+q0 14 -9 23t-23 9h-64q-14 0 -23 -9t-9 -23v-64q0 -14 9 -23t23 -9h64q14 0 23 9t9 23zM384 416v64q0 14 -9 23t-23 9h-64q-14 0 -23 -9t-9 -23v-64q0 -14 9 -23t23 -9h64q14 0 23 9t9 23zM384 672v64q0 14 -9 23t-23 9h-64q-14 0 -23 -9t-9 -23v-64q0 -14 9 -23t23 -9h64
+q14 0 23 9t9 23zM384 928v64q0 14 -9 23t-23 9h-64q-14 0 -23 -9t-9 -23v-64q0 -14 9 -23t23 -9h64q14 0 23 9t9 23zM384 1184v64q0 14 -9 23t-23 9h-64q-14 0 -23 -9t-9 -23v-64q0 -14 9 -23t23 -9h64q14 0 23 9t9 23zM896 -96v192q0 14 -9 23t-23 9h-320q-14 0 -23 -9
+t-9 -23v-192q0 -14 9 -23t23 -9h320q14 0 23 9t9 23zM896 416v64q0 14 -9 23t-23 9h-64q-14 0 -23 -9t-9 -23v-64q0 -14 9 -23t23 -9h64q14 0 23 9t9 23zM896 672v64q0 14 -9 23t-23 9h-64q-14 0 -23 -9t-9 -23v-64q0 -14 9 -23t23 -9h64q14 0 23 9t9 23zM896 928v64
+q0 14 -9 23t-23 9h-64q-14 0 -23 -9t-9 -23v-64q0 -14 9 -23t23 -9h64q14 0 23 9t9 23zM896 1184v64q0 14 -9 23t-23 9h-64q-14 0 -23 -9t-9 -23v-64q0 -14 9 -23t23 -9h64q14 0 23 9t9 23zM1152 160v64q0 14 -9 23t-23 9h-64q-14 0 -23 -9t-9 -23v-64q0 -14 9 -23t23 -9h64
+q14 0 23 9t9 23zM1152 416v64q0 14 -9 23t-23 9h-64q-14 0 -23 -9t-9 -23v-64q0 -14 9 -23t23 -9h64q14 0 23 9t9 23zM1152 672v64q0 14 -9 23t-23 9h-64q-14 0 -23 -9t-9 -23v-64q0 -14 9 -23t23 -9h64q14 0 23 9t9 23zM1152 928v64q0 14 -9 23t-23 9h-64q-14 0 -23 -9
+t-9 -23v-64q0 -14 9 -23t23 -9h64q14 0 23 9t9 23zM1152 1184v64q0 14 -9 23t-23 9h-64q-14 0 -23 -9t-9 -23v-64q0 -14 9 -23t23 -9h64q14 0 23 9t9 23z" />
+    <glyph glyph-name="_404" unicode="&#xf1ae;" horiz-adv-x="1280" 
+d="M1188 988l-292 -292v-824q0 -46 -33 -79t-79 -33t-79 33t-33 79v384h-64v-384q0 -46 -33 -79t-79 -33t-79 33t-33 79v824l-292 292q-28 28 -28 68t28 68q29 28 68.5 28t67.5 -28l228 -228h368l228 228q28 28 68 28t68 -28q28 -29 28 -68.5t-28 -67.5zM864 1152
+q0 -93 -65.5 -158.5t-158.5 -65.5t-158.5 65.5t-65.5 158.5t65.5 158.5t158.5 65.5t158.5 -65.5t65.5 -158.5z" />
+    <glyph glyph-name="uniF1B1" unicode="&#xf1b0;" horiz-adv-x="1664" 
+d="M780 1064q0 -60 -19 -113.5t-63 -92.5t-105 -39q-76 0 -138 57.5t-92 135.5t-30 151q0 60 19 113.5t63 92.5t105 39q77 0 138.5 -57.5t91.5 -135t30 -151.5zM438 581q0 -80 -42 -139t-119 -59q-76 0 -141.5 55.5t-100.5 133.5t-35 152q0 80 42 139.5t119 59.5
+q76 0 141.5 -55.5t100.5 -134t35 -152.5zM832 608q118 0 255 -97.5t229 -237t92 -254.5q0 -46 -17 -76.5t-48.5 -45t-64.5 -20t-76 -5.5q-68 0 -187.5 45t-182.5 45q-66 0 -192.5 -44.5t-200.5 -44.5q-183 0 -183 146q0 86 56 191.5t139.5 192.5t187.5 146t193 59zM1071 819
+q-61 0 -105 39t-63 92.5t-19 113.5q0 74 30 151.5t91.5 135t138.5 57.5q61 0 105 -39t63 -92.5t19 -113.5q0 -73 -30 -151t-92 -135.5t-138 -57.5zM1503 923q77 0 119 -59.5t42 -139.5q0 -74 -35 -152t-100.5 -133.5t-141.5 -55.5q-77 0 -119 59t-42 139q0 74 35 152.5
+t100.5 134t141.5 55.5z" />
+    <glyph glyph-name="_406" unicode="&#xf1b1;" horiz-adv-x="768" 
+d="M704 1008q0 -145 -57 -243.5t-152 -135.5l45 -821q2 -26 -16 -45t-44 -19h-192q-26 0 -44 19t-16 45l45 821q-95 37 -152 135.5t-57 243.5q0 128 42.5 249.5t117.5 200t160 78.5t160 -78.5t117.5 -200t42.5 -249.5z" />
+    <glyph glyph-name="_407" unicode="&#xf1b2;" horiz-adv-x="1792" 
+d="M896 -93l640 349v636l-640 -233v-752zM832 772l698 254l-698 254l-698 -254zM1664 1024v-768q0 -35 -18 -65t-49 -47l-704 -384q-28 -16 -61 -16t-61 16l-704 384q-31 17 -49 47t-18 65v768q0 40 23 73t61 47l704 256q22 8 44 8t44 -8l704 -256q38 -14 61 -47t23 -73z
+" />
+    <glyph glyph-name="_408" unicode="&#xf1b3;" horiz-adv-x="2304" 
+d="M640 -96l384 192v314l-384 -164v-342zM576 358l404 173l-404 173l-404 -173zM1664 -96l384 192v314l-384 -164v-342zM1600 358l404 173l-404 173l-404 -173zM1152 651l384 165v266l-384 -164v-267zM1088 1030l441 189l-441 189l-441 -189zM2176 512v-416q0 -36 -19 -67
+t-52 -47l-448 -224q-25 -14 -57 -14t-57 14l-448 224q-4 2 -7 4q-2 -2 -7 -4l-448 -224q-25 -14 -57 -14t-57 14l-448 224q-33 16 -52 47t-19 67v416q0 38 21.5 70t56.5 48l434 186v400q0 38 21.5 70t56.5 48l448 192q23 10 50 10t50 -10l448 -192q35 -16 56.5 -48t21.5 -70
+v-400l434 -186q36 -16 57 -48t21 -70z" />
+    <glyph glyph-name="_409" unicode="&#xf1b4;" horiz-adv-x="2048" 
+d="M1848 1197h-511v-124h511v124zM1596 771q-90 0 -146 -52.5t-62 -142.5h408q-18 195 -200 195zM1612 186q63 0 122 32t76 87h221q-100 -307 -427 -307q-214 0 -340.5 132t-126.5 347q0 208 130.5 345.5t336.5 137.5q138 0 240.5 -68t153 -179t50.5 -248q0 -17 -2 -47h-658
+q0 -111 57.5 -171.5t166.5 -60.5zM277 236h296q205 0 205 167q0 180 -199 180h-302v-347zM277 773h281q78 0 123.5 36.5t45.5 113.5q0 144 -190 144h-260v-294zM0 1282h594q87 0 155 -14t126.5 -47.5t90 -96.5t31.5 -154q0 -181 -172 -263q114 -32 172 -115t58 -204
+q0 -75 -24.5 -136.5t-66 -103.5t-98.5 -71t-121 -42t-134 -13h-611v1260z" />
+    <glyph glyph-name="_410" unicode="&#xf1b5;" 
+d="M1248 1408q119 0 203.5 -84.5t84.5 -203.5v-960q0 -119 -84.5 -203.5t-203.5 -84.5h-960q-119 0 -203.5 84.5t-84.5 203.5v960q0 119 84.5 203.5t203.5 84.5h960zM499 1041h-371v-787h382q117 0 197 57.5t80 170.5q0 158 -143 200q107 52 107 164q0 57 -19.5 96.5
+t-56.5 60.5t-79 29.5t-97 8.5zM477 723h-176v184h163q119 0 119 -90q0 -94 -106 -94zM486 388h-185v217h189q124 0 124 -113q0 -104 -128 -104zM1136 356q-68 0 -104 38t-36 107h411q1 10 1 30q0 132 -74.5 220.5t-203.5 88.5q-128 0 -210 -86t-82 -216q0 -135 79 -217
+t213 -82q205 0 267 191h-138q-11 -34 -47.5 -54t-75.5 -20zM1126 722q113 0 124 -122h-254q4 56 39 89t91 33zM964 988h319v-77h-319v77z" />
+    <glyph glyph-name="_411" unicode="&#xf1b6;" horiz-adv-x="1792" 
+d="M1582 954q0 -101 -71.5 -172.5t-172.5 -71.5t-172.5 71.5t-71.5 172.5t71.5 172.5t172.5 71.5t172.5 -71.5t71.5 -172.5zM812 212q0 104 -73 177t-177 73q-27 0 -54 -6l104 -42q77 -31 109.5 -106.5t1.5 -151.5q-31 -77 -107 -109t-152 -1q-21 8 -62 24.5t-61 24.5
+q32 -60 91 -96.5t130 -36.5q104 0 177 73t73 177zM1642 953q0 126 -89.5 215.5t-215.5 89.5q-127 0 -216.5 -89.5t-89.5 -215.5q0 -127 89.5 -216t216.5 -89q126 0 215.5 89t89.5 216zM1792 953q0 -189 -133.5 -322t-321.5 -133l-437 -319q-12 -129 -109 -218t-229 -89
+q-121 0 -214 76t-118 192l-230 92v429l389 -157q79 48 173 48q13 0 35 -2l284 407q2 187 135.5 319t320.5 132q188 0 321.5 -133.5t133.5 -321.5z" />
+    <glyph glyph-name="_412" unicode="&#xf1b7;" 
+d="M1242 889q0 80 -57 136.5t-137 56.5t-136.5 -57t-56.5 -136q0 -80 56.5 -136.5t136.5 -56.5t137 56.5t57 136.5zM632 301q0 -83 -58 -140.5t-140 -57.5q-56 0 -103 29t-72 77q52 -20 98 -40q60 -24 120 1.5t85 86.5q24 60 -1.5 120t-86.5 84l-82 33q22 5 42 5
+q82 0 140 -57.5t58 -140.5zM1536 1120v-960q0 -119 -84.5 -203.5t-203.5 -84.5h-960q-119 0 -203.5 84.5t-84.5 203.5v153l172 -69q20 -92 93.5 -152t168.5 -60q104 0 181 70t87 173l345 252q150 0 255.5 105.5t105.5 254.5q0 150 -105.5 255.5t-255.5 105.5
+q-148 0 -253 -104.5t-107 -252.5l-225 -322q-9 1 -28 1q-75 0 -137 -37l-297 119v468q0 119 84.5 203.5t203.5 84.5h960q119 0 203.5 -84.5t84.5 -203.5zM1289 887q0 -100 -71 -170.5t-171 -70.5t-170.5 70.5t-70.5 170.5t70.5 171t170.5 71q101 0 171.5 -70.5t70.5 -171.5z
+" />
+    <glyph glyph-name="_413" unicode="&#xf1b8;" horiz-adv-x="1792" 
+d="M836 367l-15 -368l-2 -22l-420 29q-36 3 -67 31.5t-47 65.5q-11 27 -14.5 55t4 65t12 55t21.5 64t19 53q78 -12 509 -28zM449 953l180 -379l-147 92q-63 -72 -111.5 -144.5t-72.5 -125t-39.5 -94.5t-18.5 -63l-4 -21l-190 357q-17 26 -18 56t6 47l8 18q35 63 114 188
+l-140 86zM1680 436l-188 -359q-12 -29 -36.5 -46.5t-43.5 -20.5l-18 -4q-71 -7 -219 -12l8 -164l-230 367l211 362l7 -173q170 -16 283 -5t170 33zM895 1360q-47 -63 -265 -435l-317 187l-19 12l225 356q20 31 60 45t80 10q24 -2 48.5 -12t42 -21t41.5 -33t36 -34.5
+t36 -39.5t32 -35zM1550 1053l212 -363q18 -37 12.5 -76t-27.5 -74q-13 -20 -33 -37t-38 -28t-48.5 -22t-47 -16t-51.5 -14t-46 -12q-34 72 -265 436l313 195zM1407 1279l142 83l-220 -373l-419 20l151 86q-34 89 -75 166t-75.5 123.5t-64.5 80t-47 46.5l-17 13l405 -1
+q31 3 58 -10.5t39 -28.5l11 -15q39 -61 112 -190z" />
+    <glyph glyph-name="_414" unicode="&#xf1b9;" horiz-adv-x="2048" 
+d="M480 448q0 66 -47 113t-113 47t-113 -47t-47 -113t47 -113t113 -47t113 47t47 113zM516 768h1016l-89 357q-2 8 -14 17.5t-21 9.5h-768q-9 0 -21 -9.5t-14 -17.5zM1888 448q0 66 -47 113t-113 47t-113 -47t-47 -113t47 -113t113 -47t113 47t47 113zM2048 544v-384
+q0 -14 -9 -23t-23 -9h-96v-128q0 -80 -56 -136t-136 -56t-136 56t-56 136v128h-1024v-128q0 -80 -56 -136t-136 -56t-136 56t-56 136v128h-96q-14 0 -23 9t-9 23v384q0 93 65.5 158.5t158.5 65.5h28l105 419q23 94 104 157.5t179 63.5h768q98 0 179 -63.5t104 -157.5
+l105 -419h28q93 0 158.5 -65.5t65.5 -158.5z" />
+    <glyph glyph-name="_415" unicode="&#xf1ba;" horiz-adv-x="2048" 
+d="M1824 640q93 0 158.5 -65.5t65.5 -158.5v-384q0 -14 -9 -23t-23 -9h-96v-64q0 -80 -56 -136t-136 -56t-136 56t-56 136v64h-1024v-64q0 -80 -56 -136t-136 -56t-136 56t-56 136v64h-96q-14 0 -23 9t-9 23v384q0 93 65.5 158.5t158.5 65.5h28l105 419q23 94 104 157.5
+t179 63.5h128v224q0 14 9 23t23 9h448q14 0 23 -9t9 -23v-224h128q98 0 179 -63.5t104 -157.5l105 -419h28zM320 160q66 0 113 47t47 113t-47 113t-113 47t-113 -47t-47 -113t47 -113t113 -47zM516 640h1016l-89 357q-2 8 -14 17.5t-21 9.5h-768q-9 0 -21 -9.5t-14 -17.5z
+M1728 160q66 0 113 47t47 113t-47 113t-113 47t-113 -47t-47 -113t47 -113t113 -47z" />
+    <glyph glyph-name="_416" unicode="&#xf1bb;" 
+d="M1504 64q0 -26 -19 -45t-45 -19h-462q1 -17 6 -87.5t5 -108.5q0 -25 -18 -42.5t-43 -17.5h-320q-25 0 -43 17.5t-18 42.5q0 38 5 108.5t6 87.5h-462q-26 0 -45 19t-19 45t19 45l402 403h-229q-26 0 -45 19t-19 45t19 45l402 403h-197q-26 0 -45 19t-19 45t19 45l384 384
+q19 19 45 19t45 -19l384 -384q19 -19 19 -45t-19 -45t-45 -19h-197l402 -403q19 -19 19 -45t-19 -45t-45 -19h-229l402 -403q19 -19 19 -45z" />
+    <glyph glyph-name="_417" unicode="&#xf1bc;" 
+d="M1127 326q0 32 -30 51q-193 115 -447 115q-133 0 -287 -34q-42 -9 -42 -52q0 -20 13.5 -34.5t35.5 -14.5q5 0 37 8q132 27 243 27q226 0 397 -103q19 -11 33 -11q19 0 33 13.5t14 34.5zM1223 541q0 40 -35 61q-237 141 -548 141q-153 0 -303 -42q-48 -13 -48 -64
+q0 -25 17.5 -42.5t42.5 -17.5q7 0 37 8q122 33 251 33q279 0 488 -124q24 -13 38 -13q25 0 42.5 17.5t17.5 42.5zM1331 789q0 47 -40 70q-126 73 -293 110.5t-343 37.5q-204 0 -364 -47q-23 -7 -38.5 -25.5t-15.5 -48.5q0 -31 20.5 -52t51.5 -21q11 0 40 8q133 37 307 37
+q159 0 309.5 -34t253.5 -95q21 -12 40 -12q29 0 50.5 20.5t21.5 51.5zM1536 640q0 -209 -103 -385.5t-279.5 -279.5t-385.5 -103t-385.5 103t-279.5 279.5t-103 385.5t103 385.5t279.5 279.5t385.5 103t385.5 -103t279.5 -279.5t103 -385.5z" />
+    <glyph glyph-name="_418" unicode="&#xf1bd;" horiz-adv-x="1024" 
+d="M1024 1233l-303 -582l24 -31h279v-415h-507l-44 -30l-142 -273l-30 -30h-301v303l303 583l-24 30h-279v415h507l44 30l142 273l30 30h301v-303z" />
+    <glyph glyph-name="_419" unicode="&#xf1be;" horiz-adv-x="2304" 
+d="M784 164l16 241l-16 523q-1 10 -7.5 17t-16.5 7q-9 0 -16 -7t-7 -17l-14 -523l14 -241q1 -10 7.5 -16.5t15.5 -6.5q22 0 24 23zM1080 193l11 211l-12 586q0 16 -13 24q-8 5 -16 5t-16 -5q-13 -8 -13 -24l-1 -6l-10 -579q0 -1 11 -236v-1q0 -10 6 -17q9 -11 23 -11
+q11 0 20 9q9 7 9 20zM35 533l20 -128l-20 -126q-2 -9 -9 -9t-9 9l-17 126l17 128q2 9 9 9t9 -9zM121 612l26 -207l-26 -203q-2 -9 -10 -9q-9 0 -9 10l-23 202l23 207q0 9 9 9q8 0 10 -9zM401 159zM213 650l25 -245l-25 -237q0 -11 -11 -11q-10 0 -12 11l-21 237l21 245
+q2 12 12 12q11 0 11 -12zM307 657l23 -252l-23 -244q-2 -13 -14 -13q-13 0 -13 13l-21 244l21 252q0 13 13 13q12 0 14 -13zM401 639l21 -234l-21 -246q-2 -16 -16 -16q-6 0 -10.5 4.5t-4.5 11.5l-20 246l20 234q0 6 4.5 10.5t10.5 4.5q14 0 16 -15zM784 164zM495 785
+l21 -380l-21 -246q0 -7 -5 -12.5t-12 -5.5q-16 0 -18 18l-18 246l18 380q2 18 18 18q7 0 12 -5.5t5 -12.5zM589 871l19 -468l-19 -244q0 -8 -5.5 -13.5t-13.5 -5.5q-18 0 -20 19l-16 244l16 468q2 19 20 19q8 0 13.5 -5.5t5.5 -13.5zM687 911l18 -506l-18 -242
+q-2 -21 -22 -21q-19 0 -21 21l-16 242l16 506q0 9 6.5 15.5t14.5 6.5q9 0 15 -6.5t7 -15.5zM1079 169v0v0v0zM881 915l15 -510l-15 -239q0 -10 -7.5 -17.5t-17.5 -7.5t-17 7t-8 18l-14 239l14 510q0 11 7.5 18t17.5 7t17.5 -7t7.5 -18zM980 896l14 -492l-14 -236
+q0 -11 -8 -19t-19 -8t-19 8t-9 19l-12 236l12 492q1 12 9 20t19 8t18.5 -8t8.5 -20zM1192 404l-14 -231v0q0 -13 -9 -22t-22 -9t-22 9t-10 22l-6 114l-6 117l12 636v3q2 15 12 24q9 7 20 7q8 0 15 -5q14 -8 16 -26zM2304 423q0 -117 -83 -199.5t-200 -82.5h-786
+q-13 2 -22 11t-9 22v899q0 23 28 33q85 34 181 34q195 0 338 -131.5t160 -323.5q53 22 110 22q117 0 200 -83t83 -201z" />
+    <glyph glyph-name="uniF1C0" unicode="&#xf1c0;" 
+d="M768 768q237 0 443 43t325 127v-170q0 -69 -103 -128t-280 -93.5t-385 -34.5t-385 34.5t-280 93.5t-103 128v170q119 -84 325 -127t443 -43zM768 0q237 0 443 43t325 127v-170q0 -69 -103 -128t-280 -93.5t-385 -34.5t-385 34.5t-280 93.5t-103 128v170q119 -84 325 -127
+t443 -43zM768 384q237 0 443 43t325 127v-170q0 -69 -103 -128t-280 -93.5t-385 -34.5t-385 34.5t-280 93.5t-103 128v170q119 -84 325 -127t443 -43zM768 1536q208 0 385 -34.5t280 -93.5t103 -128v-128q0 -69 -103 -128t-280 -93.5t-385 -34.5t-385 34.5t-280 93.5
+t-103 128v128q0 69 103 128t280 93.5t385 34.5z" />
+    <glyph glyph-name="uniF1C1" unicode="&#xf1c1;" 
+d="M1468 1156q28 -28 48 -76t20 -88v-1152q0 -40 -28 -68t-68 -28h-1344q-40 0 -68 28t-28 68v1600q0 40 28 68t68 28h896q40 0 88 -20t76 -48zM1024 1400v-376h376q-10 29 -22 41l-313 313q-12 12 -41 22zM1408 -128v1024h-416q-40 0 -68 28t-28 68v416h-768v-1536h1280z
+M894 465q33 -26 84 -56q59 7 117 7q147 0 177 -49q16 -22 2 -52q0 -1 -1 -2l-2 -2v-1q-6 -38 -71 -38q-48 0 -115 20t-130 53q-221 -24 -392 -83q-153 -262 -242 -262q-15 0 -28 7l-24 12q-1 1 -6 5q-10 10 -6 36q9 40 56 91.5t132 96.5q14 9 23 -6q2 -2 2 -4q52 85 107 197
+q68 136 104 262q-24 82 -30.5 159.5t6.5 127.5q11 40 42 40h21h1q23 0 35 -15q18 -21 9 -68q-2 -6 -4 -8q1 -3 1 -8v-30q-2 -123 -14 -192q55 -164 146 -238zM318 54q52 24 137 158q-51 -40 -87.5 -84t-49.5 -74zM716 974q-15 -42 -2 -132q1 7 7 44q0 3 7 43q1 4 4 8
+q-1 1 -1 2q-1 2 -1 3q-1 22 -13 36q0 -1 -1 -2v-2zM592 313q135 54 284 81q-2 1 -13 9.5t-16 13.5q-76 67 -127 176q-27 -86 -83 -197q-30 -56 -45 -83zM1238 329q-24 24 -140 24q76 -28 124 -28q14 0 18 1q0 1 -2 3z" />
+    <glyph glyph-name="_422" unicode="&#xf1c2;" 
+d="M1468 1156q28 -28 48 -76t20 -88v-1152q0 -40 -28 -68t-68 -28h-1344q-40 0 -68 28t-28 68v1600q0 40 28 68t68 28h896q40 0 88 -20t76 -48zM1024 1400v-376h376q-10 29 -22 41l-313 313q-12 12 -41 22zM1408 -128v1024h-416q-40 0 -68 28t-28 68v416h-768v-1536h1280z
+M233 768v-107h70l164 -661h159l128 485q7 20 10 46q2 16 2 24h4l3 -24q1 -3 3.5 -20t5.5 -26l128 -485h159l164 661h70v107h-300v-107h90l-99 -438q-5 -20 -7 -46l-2 -21h-4q0 3 -0.5 6.5t-1.5 8t-1 6.5q-1 5 -4 21t-5 25l-144 545h-114l-144 -545q-2 -9 -4.5 -24.5
+t-3.5 -21.5l-4 -21h-4l-2 21q-2 26 -7 46l-99 438h90v107h-300z" />
+    <glyph glyph-name="_423" unicode="&#xf1c3;" 
+d="M1468 1156q28 -28 48 -76t20 -88v-1152q0 -40 -28 -68t-68 -28h-1344q-40 0 -68 28t-28 68v1600q0 40 28 68t68 28h896q40 0 88 -20t76 -48zM1024 1400v-376h376q-10 29 -22 41l-313 313q-12 12 -41 22zM1408 -128v1024h-416q-40 0 -68 28t-28 68v416h-768v-1536h1280z
+M429 106v-106h281v106h-75l103 161q5 7 10 16.5t7.5 13.5t3.5 4h2q1 -4 5 -10q2 -4 4.5 -7.5t6 -8t6.5 -8.5l107 -161h-76v-106h291v106h-68l-192 273l195 282h67v107h-279v-107h74l-103 -159q-4 -7 -10 -16.5t-9 -13.5l-2 -3h-2q-1 4 -5 10q-6 11 -17 23l-106 159h76v107
+h-290v-107h68l189 -272l-194 -283h-68z" />
+    <glyph glyph-name="_424" unicode="&#xf1c4;" 
+d="M1468 1156q28 -28 48 -76t20 -88v-1152q0 -40 -28 -68t-68 -28h-1344q-40 0 -68 28t-28 68v1600q0 40 28 68t68 28h896q40 0 88 -20t76 -48zM1024 1400v-376h376q-10 29 -22 41l-313 313q-12 12 -41 22zM1408 -128v1024h-416q-40 0 -68 28t-28 68v416h-768v-1536h1280z
+M416 106v-106h327v106h-93v167h137q76 0 118 15q67 23 106.5 87t39.5 146q0 81 -37 141t-100 87q-48 19 -130 19h-368v-107h92v-555h-92zM769 386h-119v268h120q52 0 83 -18q56 -33 56 -115q0 -89 -62 -120q-31 -15 -78 -15z" />
+    <glyph glyph-name="_425" unicode="&#xf1c5;" 
+d="M1468 1156q28 -28 48 -76t20 -88v-1152q0 -40 -28 -68t-68 -28h-1344q-40 0 -68 28t-28 68v1600q0 40 28 68t68 28h896q40 0 88 -20t76 -48zM1024 1400v-376h376q-10 29 -22 41l-313 313q-12 12 -41 22zM1408 -128v1024h-416q-40 0 -68 28t-28 68v416h-768v-1536h1280z
+M1280 320v-320h-1024v192l192 192l128 -128l384 384zM448 512q-80 0 -136 56t-56 136t56 136t136 56t136 -56t56 -136t-56 -136t-136 -56z" />
+    <glyph glyph-name="_426" unicode="&#xf1c6;" 
+d="M640 1152v128h-128v-128h128zM768 1024v128h-128v-128h128zM640 896v128h-128v-128h128zM768 768v128h-128v-128h128zM1468 1156q28 -28 48 -76t20 -88v-1152q0 -40 -28 -68t-68 -28h-1344q-40 0 -68 28t-28 68v1600q0 40 28 68t68 28h896q40 0 88 -20t76 -48zM1024 1400
+v-376h376q-10 29 -22 41l-313 313q-12 12 -41 22zM1408 -128v1024h-416q-40 0 -68 28t-28 68v416h-128v-128h-128v128h-512v-1536h1280zM781 593l107 -349q8 -27 8 -52q0 -83 -72.5 -137.5t-183.5 -54.5t-183.5 54.5t-72.5 137.5q0 25 8 52q21 63 120 396v128h128v-128h79
+q22 0 39 -13t23 -34zM640 128q53 0 90.5 19t37.5 45t-37.5 45t-90.5 19t-90.5 -19t-37.5 -45t37.5 -45t90.5 -19z" />
+    <glyph glyph-name="_427" unicode="&#xf1c7;" 
+d="M1468 1156q28 -28 48 -76t20 -88v-1152q0 -40 -28 -68t-68 -28h-1344q-40 0 -68 28t-28 68v1600q0 40 28 68t68 28h896q40 0 88 -20t76 -48zM1024 1400v-376h376q-10 29 -22 41l-313 313q-12 12 -41 22zM1408 -128v1024h-416q-40 0 -68 28t-28 68v416h-768v-1536h1280z
+M620 686q20 -8 20 -30v-544q0 -22 -20 -30q-8 -2 -12 -2q-12 0 -23 9l-166 167h-131q-14 0 -23 9t-9 23v192q0 14 9 23t23 9h131l166 167q16 15 35 7zM1037 -3q31 0 50 24q129 159 129 363t-129 363q-16 21 -43 24t-47 -14q-21 -17 -23.5 -43.5t14.5 -47.5
+q100 -123 100 -282t-100 -282q-17 -21 -14.5 -47.5t23.5 -42.5q18 -15 40 -15zM826 145q27 0 47 20q87 93 87 219t-87 219q-18 19 -45 20t-46 -17t-20 -44.5t18 -46.5q52 -57 52 -131t-52 -131q-19 -20 -18 -46.5t20 -44.5q20 -17 44 -17z" />
+    <glyph glyph-name="_428" unicode="&#xf1c8;" 
+d="M1468 1156q28 -28 48 -76t20 -88v-1152q0 -40 -28 -68t-68 -28h-1344q-40 0 -68 28t-28 68v1600q0 40 28 68t68 28h896q40 0 88 -20t76 -48zM1024 1400v-376h376q-10 29 -22 41l-313 313q-12 12 -41 22zM1408 -128v1024h-416q-40 0 -68 28t-28 68v416h-768v-1536h1280z
+M768 768q52 0 90 -38t38 -90v-384q0 -52 -38 -90t-90 -38h-384q-52 0 -90 38t-38 90v384q0 52 38 90t90 38h384zM1260 766q20 -8 20 -30v-576q0 -22 -20 -30q-8 -2 -12 -2q-14 0 -23 9l-265 266v90l265 266q9 9 23 9q4 0 12 -2z" />
+    <glyph glyph-name="_429" unicode="&#xf1c9;" 
+d="M1468 1156q28 -28 48 -76t20 -88v-1152q0 -40 -28 -68t-68 -28h-1344q-40 0 -68 28t-28 68v1600q0 40 28 68t68 28h896q40 0 88 -20t76 -48zM1024 1400v-376h376q-10 29 -22 41l-313 313q-12 12 -41 22zM1408 -128v1024h-416q-40 0 -68 28t-28 68v416h-768v-1536h1280z
+M480 768q8 11 21 12.5t24 -6.5l51 -38q11 -8 12.5 -21t-6.5 -24l-182 -243l182 -243q8 -11 6.5 -24t-12.5 -21l-51 -38q-11 -8 -24 -6.5t-21 12.5l-226 301q-14 19 0 38zM1282 467q14 -19 0 -38l-226 -301q-8 -11 -21 -12.5t-24 6.5l-51 38q-11 8 -12.5 21t6.5 24l182 243
+l-182 243q-8 11 -6.5 24t12.5 21l51 38q11 8 24 6.5t21 -12.5zM662 6q-13 2 -20.5 13t-5.5 24l138 831q2 13 13 20.5t24 5.5l63 -10q13 -2 20.5 -13t5.5 -24l-138 -831q-2 -13 -13 -20.5t-24 -5.5z" />
+    <glyph glyph-name="_430" unicode="&#xf1ca;" 
+d="M1497 709v-198q-101 -23 -198 -23q-65 -136 -165.5 -271t-181.5 -215.5t-128 -106.5q-80 -45 -162 3q-28 17 -60.5 43.5t-85 83.5t-102.5 128.5t-107.5 184t-105.5 244t-91.5 314.5t-70.5 390h283q26 -218 70 -398.5t104.5 -317t121.5 -235.5t140 -195q169 169 287 406
+q-142 72 -223 220t-81 333q0 192 104 314.5t284 122.5q178 0 273 -105.5t95 -297.5q0 -159 -58 -286q-7 -1 -19.5 -3t-46 -2t-63 6t-62 25.5t-50.5 51.5q31 103 31 184q0 87 -29 132t-79 45q-53 0 -85 -49.5t-32 -140.5q0 -186 105 -293.5t267 -107.5q62 0 121 14z" />
+    <glyph glyph-name="_431" unicode="&#xf1cb;" horiz-adv-x="1792" 
+d="M216 367l603 -402v359l-334 223zM154 511l193 129l-193 129v-258zM973 -35l603 402l-269 180l-334 -223v-359zM896 458l272 182l-272 182l-272 -182zM485 733l334 223v359l-603 -402zM1445 640l193 -129v258zM1307 733l269 180l-603 402v-359zM1792 913v-546
+q0 -41 -34 -64l-819 -546q-21 -13 -43 -13t-43 13l-819 546q-34 23 -34 64v546q0 41 34 64l819 546q21 13 43 13t43 -13l819 -546q34 -23 34 -64z" />
+    <glyph glyph-name="_432" unicode="&#xf1cc;" horiz-adv-x="2048" 
+d="M1800 764q111 -46 179.5 -145.5t68.5 -221.5q0 -164 -118 -280.5t-285 -116.5q-4 0 -11.5 0.5t-10.5 0.5h-1209h-1h-2h-5q-170 10 -288 125.5t-118 280.5q0 110 55 203t147 147q-12 39 -12 82q0 115 82 196t199 81q95 0 172 -58q75 154 222.5 248t326.5 94
+q166 0 306 -80.5t221.5 -218.5t81.5 -301q0 -6 -0.5 -18t-0.5 -18zM468 498q0 -122 84 -193t208 -71q137 0 240 99q-16 20 -47.5 56.5t-43.5 50.5q-67 -65 -144 -65q-55 0 -93.5 33.5t-38.5 87.5q0 53 38.5 87t91.5 34q44 0 84.5 -21t73 -55t65 -75t69 -82t77 -75t97 -55
+t121.5 -21q121 0 204.5 71.5t83.5 190.5q0 121 -84 192t-207 71q-143 0 -241 -97l93 -108q66 64 142 64q52 0 92 -33t40 -84q0 -57 -37 -91.5t-94 -34.5q-43 0 -82.5 21t-72 55t-65.5 75t-69.5 82t-77.5 75t-96.5 55t-118.5 21q-122 0 -207 -70.5t-85 -189.5z" />
+    <glyph glyph-name="_433" unicode="&#xf1cd;" horiz-adv-x="1792" 
+d="M896 1536q182 0 348 -71t286 -191t191 -286t71 -348t-71 -348t-191 -286t-286 -191t-348 -71t-348 71t-286 191t-191 286t-71 348t71 348t191 286t286 191t348 71zM896 1408q-190 0 -361 -90l194 -194q82 28 167 28t167 -28l194 194q-171 90 -361 90zM218 279l194 194
+q-28 82 -28 167t28 167l-194 194q-90 -171 -90 -361t90 -361zM896 -128q190 0 361 90l-194 194q-82 -28 -167 -28t-167 28l-194 -194q171 -90 361 -90zM896 256q159 0 271.5 112.5t112.5 271.5t-112.5 271.5t-271.5 112.5t-271.5 -112.5t-112.5 -271.5t112.5 -271.5
+t271.5 -112.5zM1380 473l194 -194q90 171 90 361t-90 361l-194 -194q28 -82 28 -167t-28 -167z" />
+    <glyph glyph-name="_434" unicode="&#xf1ce;" horiz-adv-x="1792" 
+d="M1760 640q0 -176 -68.5 -336t-184 -275.5t-275.5 -184t-336 -68.5t-336 68.5t-275.5 184t-184 275.5t-68.5 336q0 213 97 398.5t265 305.5t374 151v-228q-221 -45 -366.5 -221t-145.5 -406q0 -130 51 -248.5t136.5 -204t204 -136.5t248.5 -51t248.5 51t204 136.5
+t136.5 204t51 248.5q0 230 -145.5 406t-366.5 221v228q206 -31 374 -151t265 -305.5t97 -398.5z" />
+    <glyph glyph-name="uniF1D0" unicode="&#xf1d0;" horiz-adv-x="1792" 
+d="M19 662q8 217 116 406t305 318h5q0 -1 -1 -3q-8 -8 -28 -33.5t-52 -76.5t-60 -110.5t-44.5 -135.5t-14 -150.5t39 -157.5t108.5 -154q50 -50 102 -69.5t90.5 -11.5t69.5 23.5t47 32.5l16 16q39 51 53 116.5t6.5 122.5t-21 107t-26.5 80l-14 29q-10 25 -30.5 49.5t-43 41
+t-43.5 29.5t-35 19l-13 6l104 115q39 -17 78 -52t59 -61l19 -27q1 48 -18.5 103.5t-40.5 87.5l-20 31l161 183l160 -181q-33 -46 -52.5 -102.5t-22.5 -90.5l-4 -33q22 37 61.5 72.5t67.5 52.5l28 17l103 -115q-44 -14 -85 -50t-60 -65l-19 -29q-31 -56 -48 -133.5t-7 -170
+t57 -156.5q33 -45 77.5 -60.5t85 -5.5t76 26.5t57.5 33.5l21 16q60 53 96.5 115t48.5 121.5t10 121.5t-18 118t-37 107.5t-45.5 93t-45 72t-34.5 47.5l-13 17q-14 13 -7 13l10 -3q40 -29 62.5 -46t62 -50t64 -58t58.5 -65t55.5 -77t45.5 -88t38 -103t23.5 -117t10.5 -136
+q3 -259 -108 -465t-312 -321t-456 -115q-185 0 -351 74t-283.5 198t-184 293t-60.5 353z" />
+    <glyph glyph-name="uniF1D1" unicode="&#xf1d1;" horiz-adv-x="1792" 
+d="M874 -102v-66q-208 6 -385 109.5t-283 275.5l58 34q29 -49 73 -99l65 57q148 -168 368 -212l-17 -86q65 -12 121 -13zM276 428l-83 -28q22 -60 49 -112l-57 -33q-98 180 -98 385t98 385l57 -33q-30 -56 -49 -112l82 -28q-35 -100 -35 -212q0 -109 36 -212zM1528 251
+l58 -34q-106 -172 -283 -275.5t-385 -109.5v66q56 1 121 13l-17 86q220 44 368 212l65 -57q44 50 73 99zM1377 805l-233 -80q14 -42 14 -85t-14 -85l232 -80q-31 -92 -98 -169l-185 162q-57 -67 -147 -85l48 -241q-52 -10 -98 -10t-98 10l48 241q-90 18 -147 85l-185 -162
+q-67 77 -98 169l232 80q-14 42 -14 85t14 85l-233 80q33 93 99 169l185 -162q59 68 147 86l-48 240q44 10 98 10t98 -10l-48 -240q88 -18 147 -86l185 162q66 -76 99 -169zM874 1448v-66q-65 -2 -121 -13l17 -86q-220 -42 -368 -211l-65 56q-38 -42 -73 -98l-57 33
+q106 172 282 275.5t385 109.5zM1705 640q0 -205 -98 -385l-57 33q27 52 49 112l-83 28q36 103 36 212q0 112 -35 212l82 28q-19 56 -49 112l57 33q98 -180 98 -385zM1585 1063l-57 -33q-35 56 -73 98l-65 -56q-148 169 -368 211l17 86q-56 11 -121 13v66q209 -6 385 -109.5
+t282 -275.5zM1748 640q0 173 -67.5 331t-181.5 272t-272 181.5t-331 67.5t-331 -67.5t-272 -181.5t-181.5 -272t-67.5 -331t67.5 -331t181.5 -272t272 -181.5t331 -67.5t331 67.5t272 181.5t181.5 272t67.5 331zM1792 640q0 -182 -71 -348t-191 -286t-286 -191t-348 -71
+t-348 71t-286 191t-191 286t-71 348t71 348t191 286t286 191t348 71t348 -71t286 -191t191 -286t71 -348z" />
+    <glyph glyph-name="uniF1D2" unicode="&#xf1d2;" 
+d="M582 228q0 -66 -93 -66q-107 0 -107 63q0 64 98 64q102 0 102 -61zM546 694q0 -85 -74 -85q-77 0 -77 84q0 90 77 90q36 0 55 -25.5t19 -63.5zM712 769v125q-78 -29 -135 -29q-50 29 -110 29q-86 0 -145 -57t-59 -143q0 -50 29.5 -102t73.5 -67v-3q-38 -17 -38 -85
+q0 -53 41 -77v-3q-113 -37 -113 -139q0 -45 20 -78.5t54 -51t72 -25.5t81 -8q224 0 224 188q0 67 -48 99t-126 46q-27 5 -51.5 20.5t-24.5 39.5q0 44 49 52q77 15 122 70t45 134q0 24 -10 52q37 9 49 13zM771 350h137q-2 27 -2 82v387q0 46 2 69h-137q3 -23 3 -71v-392
+q0 -50 -3 -75zM1280 366v121q-30 -21 -68 -21q-53 0 -53 82v225h52q9 0 26.5 -1t26.5 -1v117h-105q0 82 3 102h-140q4 -24 4 -55v-47h-60v-117q36 3 37 3q3 0 11 -0.5t12 -0.5v-2h-2v-217q0 -37 2.5 -64t11.5 -56.5t24.5 -48.5t43.5 -31t66 -12q64 0 108 24zM924 1072
+q0 36 -24 63.5t-60 27.5t-60.5 -27t-24.5 -64q0 -36 25 -62.5t60 -26.5t59.5 27t24.5 62zM1536 1120v-960q0 -119 -84.5 -203.5t-203.5 -84.5h-960q-119 0 -203.5 84.5t-84.5 203.5v960q0 119 84.5 203.5t203.5 84.5h960q119 0 203.5 -84.5t84.5 -203.5z" />
+    <glyph glyph-name="_438" unicode="&#xf1d3;" horiz-adv-x="1792" 
+d="M595 22q0 100 -165 100q-158 0 -158 -104q0 -101 172 -101q151 0 151 105zM536 777q0 61 -30 102t-89 41q-124 0 -124 -145q0 -135 124 -135q119 0 119 137zM805 1101v-202q-36 -12 -79 -22q16 -43 16 -84q0 -127 -73 -216.5t-197 -112.5q-40 -8 -59.5 -27t-19.5 -58
+q0 -31 22.5 -51.5t58 -32t78.5 -22t86 -25.5t78.5 -37.5t58 -64t22.5 -98.5q0 -304 -363 -304q-69 0 -130 12.5t-116 41t-87.5 82t-32.5 127.5q0 165 182 225v4q-67 41 -67 126q0 109 63 137v4q-72 24 -119.5 108.5t-47.5 165.5q0 139 95 231.5t235 92.5q96 0 178 -47
+q98 0 218 47zM1123 220h-222q4 45 4 134v609q0 94 -4 128h222q-4 -33 -4 -124v-613q0 -89 4 -134zM1724 442v-196q-71 -39 -174 -39q-62 0 -107 20t-70 50t-39.5 78t-18.5 92t-4 103v351h2v4q-7 0 -19 1t-18 1q-21 0 -59 -6v190h96v76q0 54 -6 89h227q-6 -41 -6 -165h171
+v-190q-15 0 -43.5 2t-42.5 2h-85v-365q0 -131 87 -131q61 0 109 33zM1148 1389q0 -58 -39 -101.5t-96 -43.5q-58 0 -98 43.5t-40 101.5q0 59 39.5 103t98.5 44q58 0 96.5 -44.5t38.5 -102.5z" />
+    <glyph glyph-name="_439" unicode="&#xf1d4;" 
+d="M809 532l266 499h-112l-157 -312q-24 -48 -44 -92l-42 92l-155 312h-120l263 -493v-324h101v318zM1536 1120v-960q0 -119 -84.5 -203.5t-203.5 -84.5h-960q-119 0 -203.5 84.5t-84.5 203.5v960q0 119 84.5 203.5t203.5 84.5h960q119 0 203.5 -84.5t84.5 -203.5z" />
+    <glyph glyph-name="uniF1D5" unicode="&#xf1d5;" horiz-adv-x="1280" 
+d="M842 964q0 -80 -57 -136.5t-136 -56.5q-60 0 -111 35q-62 -67 -115 -146q-247 -371 -202 -859q1 -22 -12.5 -38.5t-34.5 -18.5h-5q-20 0 -35 13.5t-17 33.5q-14 126 -3.5 247.5t29.5 217t54 186t69 155.5t74 125q61 90 132 165q-16 35 -16 77q0 80 56.5 136.5t136.5 56.5
+t136.5 -56.5t56.5 -136.5zM1223 953q0 -158 -78 -292t-212.5 -212t-292.5 -78q-64 0 -131 14q-21 5 -32.5 23.5t-6.5 39.5q5 20 23 31.5t39 7.5q51 -13 108 -13q97 0 186 38t153 102t102 153t38 186t-38 186t-102 153t-153 102t-186 38t-186 -38t-153 -102t-102 -153
+t-38 -186q0 -114 52 -218q10 -20 3.5 -40t-25.5 -30t-39.5 -3t-30.5 26q-64 123 -64 265q0 119 46.5 227t124.5 186t186 124t226 46q158 0 292.5 -78t212.5 -212.5t78 -292.5z" />
+    <glyph glyph-name="uniF1D6" unicode="&#xf1d6;" horiz-adv-x="1792" 
+d="M270 730q-8 19 -8 52q0 20 11 49t24 45q-1 22 7.5 53t22.5 43q0 139 92.5 288.5t217.5 209.5q139 66 324 66q133 0 266 -55q49 -21 90 -48t71 -56t55 -68t42 -74t32.5 -84.5t25.5 -89.5t22 -98l1 -5q55 -83 55 -150q0 -14 -9 -40t-9 -38q0 -1 1.5 -3.5t3.5 -5t2 -3.5
+q77 -114 120.5 -214.5t43.5 -208.5q0 -43 -19.5 -100t-55.5 -57q-9 0 -19.5 7.5t-19 17.5t-19 26t-16 26.5t-13.5 26t-9 17.5q-1 1 -3 1l-5 -4q-59 -154 -132 -223q20 -20 61.5 -38.5t69 -41.5t35.5 -65q-2 -4 -4 -16t-7 -18q-64 -97 -302 -97q-53 0 -110.5 9t-98 20
+t-104.5 30q-15 5 -23 7q-14 4 -46 4.5t-40 1.5q-41 -45 -127.5 -65t-168.5 -20q-35 0 -69 1.5t-93 9t-101 20.5t-74.5 40t-32.5 64q0 40 10 59.5t41 48.5q11 2 40.5 13t49.5 12q4 0 14 2q2 2 2 4l-2 3q-48 11 -108 105.5t-73 156.5l-5 3q-4 0 -12 -20q-18 -41 -54.5 -74.5
+t-77.5 -37.5h-1q-4 0 -6 4.5t-5 5.5q-23 54 -23 100q0 275 252 466z" />
+    <glyph glyph-name="uniF1D7" unicode="&#xf1d7;" horiz-adv-x="2048" 
+d="M580 1075q0 41 -25 66t-66 25q-43 0 -76 -25.5t-33 -65.5q0 -39 33 -64.5t76 -25.5q41 0 66 24.5t25 65.5zM1323 568q0 28 -25.5 50t-65.5 22q-27 0 -49.5 -22.5t-22.5 -49.5q0 -28 22.5 -50.5t49.5 -22.5q40 0 65.5 22t25.5 51zM1087 1075q0 41 -24.5 66t-65.5 25
+q-43 0 -76 -25.5t-33 -65.5q0 -39 33 -64.5t76 -25.5q41 0 65.5 24.5t24.5 65.5zM1722 568q0 28 -26 50t-65 22q-27 0 -49.5 -22.5t-22.5 -49.5q0 -28 22.5 -50.5t49.5 -22.5q39 0 65 22t26 51zM1456 965q-31 4 -70 4q-169 0 -311 -77t-223.5 -208.5t-81.5 -287.5
+q0 -78 23 -152q-35 -3 -68 -3q-26 0 -50 1.5t-55 6.5t-44.5 7t-54.5 10.5t-50 10.5l-253 -127l72 218q-290 203 -290 490q0 169 97.5 311t264 223.5t363.5 81.5q176 0 332.5 -66t262 -182.5t136.5 -260.5zM2048 404q0 -117 -68.5 -223.5t-185.5 -193.5l55 -181l-199 109
+q-150 -37 -218 -37q-169 0 -311 70.5t-223.5 191.5t-81.5 264t81.5 264t223.5 191.5t311 70.5q161 0 303 -70.5t227.5 -192t85.5 -263.5z" />
+    <glyph glyph-name="_443" unicode="&#xf1d8;" horiz-adv-x="1792" 
+d="M1764 1525q33 -24 27 -64l-256 -1536q-5 -29 -32 -45q-14 -8 -31 -8q-11 0 -24 5l-453 185l-242 -295q-18 -23 -49 -23q-13 0 -22 4q-19 7 -30.5 23.5t-11.5 36.5v349l864 1059l-1069 -925l-395 162q-37 14 -40 55q-2 40 32 59l1664 960q15 9 32 9q20 0 36 -11z" />
+    <glyph glyph-name="_444" unicode="&#xf1d9;" horiz-adv-x="1792" 
+d="M1764 1525q33 -24 27 -64l-256 -1536q-5 -29 -32 -45q-14 -8 -31 -8q-11 0 -24 5l-527 215l-298 -327q-18 -21 -47 -21q-14 0 -23 4q-19 7 -30 23.5t-11 36.5v452l-472 193q-37 14 -40 55q-3 39 32 59l1664 960q35 21 68 -2zM1422 26l221 1323l-1434 -827l336 -137
+l863 639l-478 -797z" />
+    <glyph glyph-name="_445" unicode="&#xf1da;" 
+d="M1536 640q0 -156 -61 -298t-164 -245t-245 -164t-298 -61q-172 0 -327 72.5t-264 204.5q-7 10 -6.5 22.5t8.5 20.5l137 138q10 9 25 9q16 -2 23 -12q73 -95 179 -147t225 -52q104 0 198.5 40.5t163.5 109.5t109.5 163.5t40.5 198.5t-40.5 198.5t-109.5 163.5
+t-163.5 109.5t-198.5 40.5q-98 0 -188 -35.5t-160 -101.5l137 -138q31 -30 14 -69q-17 -40 -59 -40h-448q-26 0 -45 19t-19 45v448q0 42 40 59q39 17 69 -14l130 -129q107 101 244.5 156.5t284.5 55.5q156 0 298 -61t245 -164t164 -245t61 -298zM896 928v-448q0 -14 -9 -23
+t-23 -9h-320q-14 0 -23 9t-9 23v64q0 14 9 23t23 9h224v352q0 14 9 23t23 9h64q14 0 23 -9t9 -23z" />
+    <glyph glyph-name="_446" unicode="&#xf1db;" 
+d="M768 1280q-130 0 -248.5 -51t-204 -136.5t-136.5 -204t-51 -248.5t51 -248.5t136.5 -204t204 -136.5t248.5 -51t248.5 51t204 136.5t136.5 204t51 248.5t-51 248.5t-136.5 204t-204 136.5t-248.5 51zM1536 640q0 -209 -103 -385.5t-279.5 -279.5t-385.5 -103t-385.5 103
+t-279.5 279.5t-103 385.5t103 385.5t279.5 279.5t385.5 103t385.5 -103t279.5 -279.5t103 -385.5z" />
+    <glyph glyph-name="_447" unicode="&#xf1dc;" horiz-adv-x="1792" 
+d="M1682 -128q-44 0 -132.5 3.5t-133.5 3.5q-44 0 -132 -3.5t-132 -3.5q-24 0 -37 20.5t-13 45.5q0 31 17 46t39 17t51 7t45 15q33 21 33 140l-1 391q0 21 -1 31q-13 4 -50 4h-675q-38 0 -51 -4q-1 -10 -1 -31l-1 -371q0 -142 37 -164q16 -10 48 -13t57 -3.5t45 -15
+t20 -45.5q0 -26 -12.5 -48t-36.5 -22q-47 0 -139.5 3.5t-138.5 3.5q-43 0 -128 -3.5t-127 -3.5q-23 0 -35.5 21t-12.5 45q0 30 15.5 45t36 17.5t47.5 7.5t42 15q33 23 33 143l-1 57v813q0 3 0.5 26t0 36.5t-1.5 38.5t-3.5 42t-6.5 36.5t-11 31.5t-16 18q-15 10 -45 12t-53 2
+t-41 14t-18 45q0 26 12 48t36 22q46 0 138.5 -3.5t138.5 -3.5q42 0 126.5 3.5t126.5 3.5q25 0 37.5 -22t12.5 -48q0 -30 -17 -43.5t-38.5 -14.5t-49.5 -4t-43 -13q-35 -21 -35 -160l1 -320q0 -21 1 -32q13 -3 39 -3h699q25 0 38 3q1 11 1 32l1 320q0 139 -35 160
+q-18 11 -58.5 12.5t-66 13t-25.5 49.5q0 26 12.5 48t37.5 22q44 0 132 -3.5t132 -3.5q43 0 129 3.5t129 3.5q25 0 37.5 -22t12.5 -48q0 -30 -17.5 -44t-40 -14.5t-51.5 -3t-44 -12.5q-35 -23 -35 -161l1 -943q0 -119 34 -140q16 -10 46 -13.5t53.5 -4.5t41.5 -15.5t18 -44.5
+q0 -26 -12 -48t-36 -22z" />
+    <glyph glyph-name="_448" unicode="&#xf1dd;" horiz-adv-x="1280" 
+d="M1278 1347v-73q0 -29 -18.5 -61t-42.5 -32q-50 0 -54 -1q-26 -6 -32 -31q-3 -11 -3 -64v-1152q0 -25 -18 -43t-43 -18h-108q-25 0 -43 18t-18 43v1218h-143v-1218q0 -25 -17.5 -43t-43.5 -18h-108q-26 0 -43.5 18t-17.5 43v496q-147 12 -245 59q-126 58 -192 179
+q-64 117 -64 259q0 166 88 286q88 118 209 159q111 37 417 37h479q25 0 43 -18t18 -43z" />
+    <glyph glyph-name="_449" unicode="&#xf1de;" 
+d="M352 128v-128h-352v128h352zM704 256q26 0 45 -19t19 -45v-256q0 -26 -19 -45t-45 -19h-256q-26 0 -45 19t-19 45v256q0 26 19 45t45 19h256zM864 640v-128h-864v128h864zM224 1152v-128h-224v128h224zM1536 128v-128h-736v128h736zM576 1280q26 0 45 -19t19 -45v-256
+q0 -26 -19 -45t-45 -19h-256q-26 0 -45 19t-19 45v256q0 26 19 45t45 19h256zM1216 768q26 0 45 -19t19 -45v-256q0 -26 -19 -45t-45 -19h-256q-26 0 -45 19t-19 45v256q0 26 19 45t45 19h256zM1536 640v-128h-224v128h224zM1536 1152v-128h-864v128h864z" />
+    <glyph glyph-name="uniF1E0" unicode="&#xf1e0;" 
+d="M1216 512q133 0 226.5 -93.5t93.5 -226.5t-93.5 -226.5t-226.5 -93.5t-226.5 93.5t-93.5 226.5q0 12 2 34l-360 180q-92 -86 -218 -86q-133 0 -226.5 93.5t-93.5 226.5t93.5 226.5t226.5 93.5q126 0 218 -86l360 180q-2 22 -2 34q0 133 93.5 226.5t226.5 93.5
+t226.5 -93.5t93.5 -226.5t-93.5 -226.5t-226.5 -93.5q-126 0 -218 86l-360 -180q2 -22 2 -34t-2 -34l360 -180q92 86 218 86z" />
+    <glyph glyph-name="_451" unicode="&#xf1e1;" 
+d="M1280 341q0 88 -62.5 151t-150.5 63q-84 0 -145 -58l-241 120q2 16 2 23t-2 23l241 120q61 -58 145 -58q88 0 150.5 63t62.5 151t-62.5 150.5t-150.5 62.5t-151 -62.5t-63 -150.5q0 -7 2 -23l-241 -120q-62 57 -145 57q-88 0 -150.5 -62.5t-62.5 -150.5t62.5 -150.5
+t150.5 -62.5q83 0 145 57l241 -120q-2 -16 -2 -23q0 -88 63 -150.5t151 -62.5t150.5 62.5t62.5 150.5zM1536 1120v-960q0 -119 -84.5 -203.5t-203.5 -84.5h-960q-119 0 -203.5 84.5t-84.5 203.5v960q0 119 84.5 203.5t203.5 84.5h960q119 0 203.5 -84.5t84.5 -203.5z" />
+    <glyph glyph-name="_452" unicode="&#xf1e2;" horiz-adv-x="1792" 
+d="M571 947q-10 25 -34 35t-49 0q-108 -44 -191 -127t-127 -191q-10 -25 0 -49t35 -34q13 -5 24 -5q42 0 60 40q34 84 98.5 148.5t148.5 98.5q25 11 35 35t0 49zM1513 1303l46 -46l-244 -243l68 -68q19 -19 19 -45.5t-19 -45.5l-64 -64q89 -161 89 -343q0 -143 -55.5 -273.5
+t-150 -225t-225 -150t-273.5 -55.5t-273.5 55.5t-225 150t-150 225t-55.5 273.5t55.5 273.5t150 225t225 150t273.5 55.5q182 0 343 -89l64 64q19 19 45.5 19t45.5 -19l68 -68zM1521 1359q-10 -10 -22 -10q-13 0 -23 10l-91 90q-9 10 -9 23t9 23q10 9 23 9t23 -9l90 -91
+q10 -9 10 -22.5t-10 -22.5zM1751 1129q-11 -9 -23 -9t-23 9l-90 91q-10 9 -10 22.5t10 22.5q9 10 22.5 10t22.5 -10l91 -90q9 -10 9 -23t-9 -23zM1792 1312q0 -14 -9 -23t-23 -9h-96q-14 0 -23 9t-9 23t9 23t23 9h96q14 0 23 -9t9 -23zM1600 1504v-96q0 -14 -9 -23t-23 -9
+t-23 9t-9 23v96q0 14 9 23t23 9t23 -9t9 -23zM1751 1449l-91 -90q-10 -10 -22 -10q-13 0 -23 10q-10 9 -10 22.5t10 22.5l90 91q10 9 23 9t23 -9q9 -10 9 -23t-9 -23z" />
+    <glyph glyph-name="_453" unicode="&#xf1e3;" horiz-adv-x="1792" 
+d="M609 720l287 208l287 -208l-109 -336h-355zM896 1536q182 0 348 -71t286 -191t191 -286t71 -348t-71 -348t-191 -286t-286 -191t-348 -71t-348 71t-286 191t-191 286t-71 348t71 348t191 286t286 191t348 71zM1515 186q149 203 149 454v3l-102 -89l-240 224l63 323
+l134 -12q-150 206 -389 282l53 -124l-287 -159l-287 159l53 124q-239 -76 -389 -282l135 12l62 -323l-240 -224l-102 89v-3q0 -251 149 -454l30 132l326 -40l139 -298l-116 -69q117 -39 240 -39t240 39l-116 69l139 298l326 40z" />
+    <glyph glyph-name="_454" unicode="&#xf1e4;" horiz-adv-x="1792" 
+d="M448 224v-192q0 -14 -9 -23t-23 -9h-192q-14 0 -23 9t-9 23v192q0 14 9 23t23 9h192q14 0 23 -9t9 -23zM256 608v-192q0 -14 -9 -23t-23 -9h-192q-14 0 -23 9t-9 23v192q0 14 9 23t23 9h192q14 0 23 -9t9 -23zM832 224v-192q0 -14 -9 -23t-23 -9h-192q-14 0 -23 9t-9 23
+v192q0 14 9 23t23 9h192q14 0 23 -9t9 -23zM640 608v-192q0 -14 -9 -23t-23 -9h-192q-14 0 -23 9t-9 23v192q0 14 9 23t23 9h192q14 0 23 -9t9 -23zM66 768q-28 0 -47 19t-19 46v129h514v-129q0 -27 -19 -46t-46 -19h-383zM1216 224v-192q0 -14 -9 -23t-23 -9h-192
+q-14 0 -23 9t-9 23v192q0 14 9 23t23 9h192q14 0 23 -9t9 -23zM1024 608v-192q0 -14 -9 -23t-23 -9h-192q-14 0 -23 9t-9 23v192q0 14 9 23t23 9h192q14 0 23 -9t9 -23zM1600 224v-192q0 -14 -9 -23t-23 -9h-192q-14 0 -23 9t-9 23v192q0 14 9 23t23 9h192q14 0 23 -9t9 -23
+zM1408 608v-192q0 -14 -9 -23t-23 -9h-192q-14 0 -23 9t-9 23v192q0 14 9 23t23 9h192q14 0 23 -9t9 -23zM1792 1016v-13h-514v10q0 104 -382 102q-382 -1 -382 -102v-10h-514v13q0 17 8.5 43t34 64t65.5 75.5t110.5 76t160 67.5t224 47.5t293.5 18.5t293 -18.5t224 -47.5
+t160.5 -67.5t110.5 -76t65.5 -75.5t34 -64t8.5 -43zM1792 608v-192q0 -14 -9 -23t-23 -9h-192q-14 0 -23 9t-9 23v192q0 14 9 23t23 9h192q14 0 23 -9t9 -23zM1792 962v-129q0 -27 -19 -46t-46 -19h-384q-27 0 -46 19t-19 46v129h514z" />
+    <glyph glyph-name="_455" unicode="&#xf1e5;" horiz-adv-x="1792" 
+d="M704 1216v-768q0 -26 -19 -45t-45 -19v-576q0 -26 -19 -45t-45 -19h-512q-26 0 -45 19t-19 45v512l249 873q7 23 31 23h424zM1024 1216v-704h-256v704h256zM1792 320v-512q0 -26 -19 -45t-45 -19h-512q-26 0 -45 19t-19 45v576q-26 0 -45 19t-19 45v768h424q24 0 31 -23z
+M736 1504v-224h-352v224q0 14 9 23t23 9h288q14 0 23 -9t9 -23zM1408 1504v-224h-352v224q0 14 9 23t23 9h288q14 0 23 -9t9 -23z" />
+    <glyph glyph-name="_456" unicode="&#xf1e6;" horiz-adv-x="1792" 
+d="M1755 1083q37 -38 37 -90.5t-37 -90.5l-401 -400l150 -150l-160 -160q-163 -163 -389.5 -186.5t-411.5 100.5l-362 -362h-181v181l362 362q-124 185 -100.5 411.5t186.5 389.5l160 160l150 -150l400 401q38 37 91 37t90 -37t37 -90.5t-37 -90.5l-400 -401l234 -234
+l401 400q38 37 91 37t90 -37z" />
+    <glyph glyph-name="_457" unicode="&#xf1e7;" horiz-adv-x="1792" 
+d="M873 796q0 -83 -63.5 -142.5t-152.5 -59.5t-152.5 59.5t-63.5 142.5q0 84 63.5 143t152.5 59t152.5 -59t63.5 -143zM1375 796q0 -83 -63 -142.5t-153 -59.5q-89 0 -152.5 59.5t-63.5 142.5q0 84 63.5 143t152.5 59q90 0 153 -59t63 -143zM1600 616v667q0 87 -32 123.5
+t-111 36.5h-1112q-83 0 -112.5 -34t-29.5 -126v-673q43 -23 88.5 -40t81 -28t81 -18.5t71 -11t70 -4t58.5 -0.5t56.5 2t44.5 2q68 1 95 -27q6 -6 10 -9q26 -25 61 -51q7 91 118 87q5 0 36.5 -1.5t43 -2t45.5 -1t53 1t54.5 4.5t61 8.5t62 13.5t67 19.5t67.5 27t72 34.5z
+M1763 621q-121 -149 -372 -252q84 -285 -23 -465q-66 -113 -183 -148q-104 -32 -182 15q-86 51 -82 164l-1 326v1q-8 2 -24.5 6t-23.5 5l-1 -338q4 -114 -83 -164q-79 -47 -183 -15q-117 36 -182 150q-105 180 -22 463q-251 103 -372 252q-25 37 -4 63t60 -1q4 -2 11.5 -7
+t10.5 -8v694q0 72 47 123t114 51h1257q67 0 114 -51t47 -123v-694l21 15q39 27 60 1t-4 -63z" />
+    <glyph glyph-name="_458" unicode="&#xf1e8;" horiz-adv-x="1792" 
+d="M896 1102v-434h-145v434h145zM1294 1102v-434h-145v434h145zM1294 342l253 254v795h-1194v-1049h326v-217l217 217h398zM1692 1536v-1013l-434 -434h-326l-217 -217h-217v217h-398v1158l109 289h1483z" />
+    <glyph glyph-name="_459" unicode="&#xf1e9;" 
+d="M773 217v-127q-1 -292 -6 -305q-12 -32 -51 -40q-54 -9 -181.5 38t-162.5 89q-13 15 -17 36q-1 12 4 26q4 10 34 47t181 216q1 0 60 70q15 19 39.5 24.5t49.5 -3.5q24 -10 37.5 -29t12.5 -42zM624 468q-3 -55 -52 -70l-120 -39q-275 -88 -292 -88q-35 2 -54 36
+q-12 25 -17 75q-8 76 1 166.5t30 124.5t56 32q13 0 202 -77q71 -29 115 -47l84 -34q23 -9 35.5 -30.5t11.5 -48.5zM1450 171q-7 -54 -91.5 -161t-135.5 -127q-37 -14 -63 7q-14 10 -184 287l-47 77q-14 21 -11.5 46t19.5 46q35 43 83 26q1 -1 119 -40q203 -66 242 -79.5
+t47 -20.5q28 -22 22 -61zM778 803q5 -102 -54 -122q-58 -17 -114 71l-378 598q-8 35 19 62q41 43 207.5 89.5t224.5 31.5q40 -10 49 -45q3 -18 22 -305.5t24 -379.5zM1440 695q3 -39 -26 -59q-15 -10 -329 -86q-67 -15 -91 -23l1 2q-23 -6 -46 4t-37 32q-30 47 0 87
+q1 1 75 102q125 171 150 204t34 39q28 19 65 2q48 -23 123 -133.5t81 -167.5v-3z" />
+    <glyph glyph-name="_460" unicode="&#xf1ea;" horiz-adv-x="2048" 
+d="M1024 1024h-384v-384h384v384zM1152 384v-128h-640v128h640zM1152 1152v-640h-640v640h640zM1792 384v-128h-512v128h512zM1792 640v-128h-512v128h512zM1792 896v-128h-512v128h512zM1792 1152v-128h-512v128h512zM256 192v960h-128v-960q0 -26 19 -45t45 -19t45 19
+t19 45zM1920 192v1088h-1536v-1088q0 -33 -11 -64h1483q26 0 45 19t19 45zM2048 1408v-1216q0 -80 -56 -136t-136 -56h-1664q-80 0 -136 56t-56 136v1088h256v128h1792z" />
+    <glyph glyph-name="_461" unicode="&#xf1eb;" horiz-adv-x="2048" 
+d="M1024 13q-20 0 -93 73.5t-73 93.5q0 32 62.5 54t103.5 22t103.5 -22t62.5 -54q0 -20 -73 -93.5t-93 -73.5zM1294 284q-2 0 -40 25t-101.5 50t-128.5 25t-128.5 -25t-101 -50t-40.5 -25q-18 0 -93.5 75t-75.5 93q0 13 10 23q78 77 196 121t233 44t233 -44t196 -121
+q10 -10 10 -23q0 -18 -75.5 -93t-93.5 -75zM1567 556q-11 0 -23 8q-136 105 -252 154.5t-268 49.5q-85 0 -170.5 -22t-149 -53t-113.5 -62t-79 -53t-31 -22q-17 0 -92 75t-75 93q0 12 10 22q132 132 320 205t380 73t380 -73t320 -205q10 -10 10 -22q0 -18 -75 -93t-92 -75z
+M1838 827q-11 0 -22 9q-179 157 -371.5 236.5t-420.5 79.5t-420.5 -79.5t-371.5 -236.5q-11 -9 -22 -9q-17 0 -92.5 75t-75.5 93q0 13 10 23q187 186 445 288t527 102t527 -102t445 -288q10 -10 10 -23q0 -18 -75.5 -93t-92.5 -75z" />
+    <glyph glyph-name="_462" unicode="&#xf1ec;" horiz-adv-x="1792" 
+d="M384 0q0 53 -37.5 90.5t-90.5 37.5t-90.5 -37.5t-37.5 -90.5t37.5 -90.5t90.5 -37.5t90.5 37.5t37.5 90.5zM768 0q0 53 -37.5 90.5t-90.5 37.5t-90.5 -37.5t-37.5 -90.5t37.5 -90.5t90.5 -37.5t90.5 37.5t37.5 90.5zM384 384q0 53 -37.5 90.5t-90.5 37.5t-90.5 -37.5
+t-37.5 -90.5t37.5 -90.5t90.5 -37.5t90.5 37.5t37.5 90.5zM1152 0q0 53 -37.5 90.5t-90.5 37.5t-90.5 -37.5t-37.5 -90.5t37.5 -90.5t90.5 -37.5t90.5 37.5t37.5 90.5zM768 384q0 53 -37.5 90.5t-90.5 37.5t-90.5 -37.5t-37.5 -90.5t37.5 -90.5t90.5 -37.5t90.5 37.5
+t37.5 90.5zM384 768q0 53 -37.5 90.5t-90.5 37.5t-90.5 -37.5t-37.5 -90.5t37.5 -90.5t90.5 -37.5t90.5 37.5t37.5 90.5zM1152 384q0 53 -37.5 90.5t-90.5 37.5t-90.5 -37.5t-37.5 -90.5t37.5 -90.5t90.5 -37.5t90.5 37.5t37.5 90.5zM768 768q0 53 -37.5 90.5t-90.5 37.5
+t-90.5 -37.5t-37.5 -90.5t37.5 -90.5t90.5 -37.5t90.5 37.5t37.5 90.5zM1536 0v384q0 52 -38 90t-90 38t-90 -38t-38 -90v-384q0 -52 38 -90t90 -38t90 38t38 90zM1152 768q0 53 -37.5 90.5t-90.5 37.5t-90.5 -37.5t-37.5 -90.5t37.5 -90.5t90.5 -37.5t90.5 37.5t37.5 90.5z
+M1536 1088v256q0 26 -19 45t-45 19h-1280q-26 0 -45 -19t-19 -45v-256q0 -26 19 -45t45 -19h1280q26 0 45 19t19 45zM1536 768q0 53 -37.5 90.5t-90.5 37.5t-90.5 -37.5t-37.5 -90.5t37.5 -90.5t90.5 -37.5t90.5 37.5t37.5 90.5zM1664 1408v-1536q0 -52 -38 -90t-90 -38
+h-1408q-52 0 -90 38t-38 90v1536q0 52 38 90t90 38h1408q52 0 90 -38t38 -90z" />
+    <glyph glyph-name="_463" unicode="&#xf1ed;" 
+d="M1519 890q18 -84 -4 -204q-87 -444 -565 -444h-44q-25 0 -44 -16.5t-24 -42.5l-4 -19l-55 -346l-2 -15q-5 -26 -24.5 -42.5t-44.5 -16.5h-251q-21 0 -33 15t-9 36q9 56 26.5 168t26.5 168t27 167.5t27 167.5q5 37 43 37h131q133 -2 236 21q175 39 287 144q102 95 155 246
+q24 70 35 133q1 6 2.5 7.5t3.5 1t6 -3.5q79 -59 98 -162zM1347 1172q0 -107 -46 -236q-80 -233 -302 -315q-113 -40 -252 -42q0 -1 -90 -1l-90 1q-100 0 -118 -96q-2 -8 -85 -530q-1 -10 -12 -10h-295q-22 0 -36.5 16.5t-11.5 38.5l232 1471q5 29 27.5 48t51.5 19h598
+q34 0 97.5 -13t111.5 -32q107 -41 163.5 -123t56.5 -196z" />
+    <glyph glyph-name="_464" unicode="&#xf1ee;" horiz-adv-x="1792" 
+d="M441 864q33 0 52 -26q266 -364 362 -774h-446q-127 441 -367 749q-12 16 -3 33.5t29 17.5h373zM1000 507q-49 -199 -125 -393q-79 310 -256 594q40 221 44 449q211 -340 337 -650zM1099 1216q235 -324 384.5 -698.5t184.5 -773.5h-451q-41 665 -553 1472h435zM1792 640
+q0 -424 -101 -812q-67 560 -359 1083q-25 301 -106 584q-4 16 5.5 28.5t25.5 12.5h359q21 0 38.5 -13t22.5 -33q115 -409 115 -850z" />
+    <glyph glyph-name="uniF1F0" unicode="&#xf1f0;" horiz-adv-x="2304" 
+d="M1975 546h-138q14 37 66 179l3 9q4 10 10 26t9 26l12 -55zM531 611l-58 295q-11 54 -75 54h-268l-2 -13q311 -79 403 -336zM710 960l-162 -438l-17 89q-26 70 -85 129.5t-131 88.5l135 -510h175l261 641h-176zM849 318h166l104 642h-166zM1617 944q-69 27 -149 27
+q-123 0 -201 -59t-79 -153q-1 -102 145 -174q48 -23 67 -41t19 -39q0 -30 -30 -46t-69 -16q-86 0 -156 33l-22 11l-23 -144q74 -34 185 -34q130 -1 208.5 59t80.5 160q0 106 -140 174q-49 25 -71 42t-22 38q0 22 24.5 38.5t70.5 16.5q70 1 124 -24l15 -8zM2042 960h-128
+q-65 0 -87 -54l-246 -588h174l35 96h212q5 -22 20 -96h154zM2304 1280v-1280q0 -52 -38 -90t-90 -38h-2048q-52 0 -90 38t-38 90v1280q0 52 38 90t90 38h2048q52 0 90 -38t38 -90z" />
+    <glyph glyph-name="_466" unicode="&#xf1f1;" horiz-adv-x="2304" 
+d="M1119 1195q-128 85 -281 85q-103 0 -197.5 -40.5t-162.5 -108.5t-108.5 -162t-40.5 -197q0 -104 40.5 -198t108.5 -162t162 -108.5t198 -40.5q153 0 281 85q-131 107 -178 265.5t0.5 316.5t177.5 265zM1152 1171q-126 -99 -172 -249.5t-0.5 -300.5t172.5 -249
+q127 99 172.5 249t-0.5 300.5t-172 249.5zM1185 1195q130 -107 177.5 -265.5t0.5 -317t-178 -264.5q128 -85 281 -85q104 0 198 40.5t162 108.5t108.5 162t40.5 198q0 103 -40.5 197t-108.5 162t-162.5 108.5t-197.5 40.5q-153 0 -281 -85zM1926 473h7v3h-17v-3h7v-17h3v17z
+M1955 456h4v20h-5l-6 -13l-6 13h-5v-20h3v15l6 -13h4l5 13v-15zM1947 16v-2h-2h-3v3h3h2v-1zM1947 7h3l-4 5h2l1 1q1 1 1 3t-1 3l-1 1h-3h-6v-13h3v5h1zM685 75q0 19 11 31t30 12q18 0 29 -12.5t11 -30.5q0 -19 -11 -31t-29 -12q-19 0 -30 12t-11 31zM1158 119q30 0 35 -32
+h-70q5 32 35 32zM1514 75q0 19 11 31t29 12t29.5 -12.5t11.5 -30.5q0 -19 -11 -31t-30 -12q-18 0 -29 12t-11 31zM1786 75q0 18 11.5 30.5t29.5 12.5t29.5 -12.5t11.5 -30.5q0 -19 -11.5 -31t-29.5 -12t-29.5 12.5t-11.5 30.5zM1944 3q-2 0 -4 1q-1 0 -3 2t-2 3q-1 2 -1 4
+q0 3 1 4q0 2 2 4l1 1q2 0 2 1q2 1 4 1q3 0 4 -1l4 -2l2 -4v-1q1 -2 1 -3l-1 -1v-3t-1 -1l-1 -2q-2 -2 -4 -2q-1 -1 -4 -1zM599 7h30v85q0 24 -14.5 38.5t-39.5 15.5q-32 0 -47 -24q-14 24 -45 24q-24 0 -39 -20v16h-30v-135h30v75q0 36 33 36q30 0 30 -36v-75h29v75
+q0 36 33 36q30 0 30 -36v-75zM765 7h29v68v67h-29v-16q-17 20 -43 20q-29 0 -48 -20t-19 -51t19 -51t48 -20q28 0 43 20v-17zM943 48q0 34 -47 40l-14 2q-23 4 -23 14q0 15 25 15q23 0 43 -11l12 24q-22 14 -55 14q-26 0 -41 -12t-15 -32q0 -33 47 -39l13 -2q24 -4 24 -14
+q0 -17 -31 -17q-25 0 -45 14l-13 -23q25 -17 58 -17q29 0 45.5 12t16.5 32zM1073 14l-8 25q-13 -7 -26 -7q-19 0 -19 22v61h48v27h-48v41h-30v-41h-28v-27h28v-61q0 -50 47 -50q21 0 36 10zM1159 146q-29 0 -48 -20t-19 -51q0 -32 19.5 -51.5t49.5 -19.5q33 0 55 19l-14 22
+q-18 -15 -39 -15q-34 0 -41 33h101v12q0 32 -18 51.5t-46 19.5zM1318 146q-23 0 -35 -20v16h-30v-135h30v76q0 35 29 35q10 0 18 -4l9 28q-9 4 -21 4zM1348 75q0 -31 19.5 -51t52.5 -20q29 0 48 16l-14 24q-18 -13 -35 -12q-18 0 -29.5 12t-11.5 31t11.5 31t29.5 12
+q19 0 35 -12l14 24q-20 16 -48 16q-33 0 -52.5 -20t-19.5 -51zM1593 7h30v68v67h-30v-16q-15 20 -42 20q-29 0 -48.5 -20t-19.5 -51t19.5 -51t48.5 -20q28 0 42 20v-17zM1726 146q-23 0 -35 -20v16h-29v-135h29v76q0 35 29 35q10 0 18 -4l9 28q-8 4 -21 4zM1866 7h29v68v122
+h-29v-71q-15 20 -43 20t-47.5 -20.5t-19.5 -50.5t19.5 -50.5t47.5 -20.5q29 0 43 20v-17zM1944 27l-2 -1h-3q-2 -1 -4 -3q-3 -1 -3 -4q-1 -2 -1 -6q0 -3 1 -5q0 -2 3 -4q2 -2 4 -3t5 -1q4 0 6 1q0 1 2 2l2 1q1 1 3 4q1 2 1 5q0 4 -1 6q-1 1 -3 4q0 1 -2 2l-2 1q-1 0 -3 0.5
+t-3 0.5zM2304 1280v-1280q0 -52 -38 -90t-90 -38h-2048q-52 0 -90 38t-38 90v1280q0 52 38 90t90 38h2048q52 0 90 -38t38 -90z" />
+    <glyph glyph-name="_467" unicode="&#xf1f2;" horiz-adv-x="2304" 
+d="M313 759q0 -51 -36 -84q-29 -26 -89 -26h-17v220h17q61 0 89 -27q36 -31 36 -83zM2089 824q0 -52 -64 -52h-19v101h20q63 0 63 -49zM380 759q0 74 -50 120.5t-129 46.5h-95v-333h95q74 0 119 38q60 51 60 128zM410 593h65v333h-65v-333zM730 694q0 40 -20.5 62t-75.5 42
+q-29 10 -39.5 19t-10.5 23q0 16 13.5 26.5t34.5 10.5q29 0 53 -27l34 44q-41 37 -98 37q-44 0 -74 -27.5t-30 -67.5q0 -35 18 -55.5t64 -36.5q37 -13 45 -19q19 -12 19 -34q0 -20 -14 -33.5t-36 -13.5q-48 0 -71 44l-42 -40q44 -64 115 -64q51 0 83 30.5t32 79.5zM1008 604
+v77q-37 -37 -78 -37q-49 0 -80.5 32.5t-31.5 82.5q0 48 31.5 81.5t77.5 33.5q43 0 81 -38v77q-40 20 -80 20q-74 0 -125.5 -50.5t-51.5 -123.5t51 -123.5t125 -50.5q42 0 81 19zM2240 0v527q-65 -40 -144.5 -84t-237.5 -117t-329.5 -137.5t-417.5 -134.5t-504 -118h1569
+q26 0 45 19t19 45zM1389 757q0 75 -53 128t-128 53t-128 -53t-53 -128t53 -128t128 -53t128 53t53 128zM1541 584l144 342h-71l-90 -224l-89 224h-71l142 -342h35zM1714 593h184v56h-119v90h115v56h-115v74h119v57h-184v-333zM2105 593h80l-105 140q76 16 76 94q0 47 -31 73
+t-87 26h-97v-333h65v133h9zM2304 1274v-1268q0 -56 -38.5 -95t-93.5 -39h-2040q-55 0 -93.5 39t-38.5 95v1268q0 56 38.5 95t93.5 39h2040q55 0 93.5 -39t38.5 -95z" />
+    <glyph glyph-name="f1f3" unicode="&#xf1f3;" horiz-adv-x="2304" 
+d="M119 854h89l-45 108zM740 328l74 79l-70 79h-163v-49h142v-55h-142v-54h159zM898 406l99 -110v217zM1186 453q0 33 -40 33h-84v-69h83q41 0 41 36zM1475 457q0 29 -42 29h-82v-61h81q43 0 43 32zM1197 923q0 29 -42 29h-82v-60h81q43 0 43 31zM1656 854h89l-44 108z
+M699 1009v-271h-66v212l-94 -212h-57l-94 212v-212h-132l-25 60h-135l-25 -60h-70l116 271h96l110 -257v257h106l85 -184l77 184h108zM1255 453q0 -20 -5.5 -35t-14 -25t-22.5 -16.5t-26 -10t-31.5 -4.5t-31.5 -1t-32.5 0.5t-29.5 0.5v-91h-126l-80 90l-83 -90h-256v271h260
+l80 -89l82 89h207q109 0 109 -89zM964 794v-56h-217v271h217v-57h-152v-49h148v-55h-148v-54h152zM2304 235v-229q0 -55 -38.5 -94.5t-93.5 -39.5h-2040q-55 0 -93.5 39.5t-38.5 94.5v678h111l25 61h55l25 -61h218v46l19 -46h113l20 47v-47h541v99l10 1q10 0 10 -14v-86h279
+v23q23 -12 55 -18t52.5 -6.5t63 0.5t51.5 1l25 61h56l25 -61h227v58l34 -58h182v378h-180v-44l-25 44h-185v-44l-23 44h-249q-69 0 -109 -22v22h-172v-22q-24 22 -73 22h-628l-43 -97l-43 97h-198v-44l-22 44h-169l-78 -179v391q0 55 38.5 94.5t93.5 39.5h2040
+q55 0 93.5 -39.5t38.5 -94.5v-678h-120q-51 0 -81 -22v22h-177q-55 0 -78 -22v22h-316v-22q-31 22 -87 22h-209v-22q-23 22 -91 22h-234l-54 -58l-50 58h-349v-378h343l55 59l52 -59h211v89h21q59 0 90 13v-102h174v99h8q8 0 10 -2t2 -10v-87h529q57 0 88 24v-24h168
+q60 0 95 17zM1546 469q0 -23 -12 -43t-34 -29q25 -9 34 -26t9 -46v-54h-65v45q0 33 -12 43.5t-46 10.5h-69v-99h-65v271h154q48 0 77 -15t29 -58zM1269 936q0 -24 -12.5 -44t-33.5 -29q26 -9 34.5 -25.5t8.5 -46.5v-53h-65q0 9 0.5 26.5t0 25t-3 18.5t-8.5 16t-17.5 8.5
+t-29.5 3.5h-70v-98h-64v271l153 -1q49 0 78 -14.5t29 -57.5zM1798 327v-56h-216v271h216v-56h-151v-49h148v-55h-148v-54zM1372 1009v-271h-66v271h66zM2065 357q0 -86 -102 -86h-126v58h126q34 0 34 25q0 16 -17 21t-41.5 5t-49.5 3.5t-42 22.5t-17 55q0 39 26 60t66 21
+h130v-57h-119q-36 0 -36 -25q0 -16 17.5 -20.5t42 -4t49 -2.5t42 -21.5t17.5 -54.5zM2304 407v-101q-24 -35 -88 -35h-125v58h125q33 0 33 25q0 13 -12.5 19t-31 5.5t-40 2t-40 8t-31 24t-12.5 48.5q0 39 26.5 60t66.5 21h129v-57h-118q-36 0 -36 -25q0 -20 29 -22t68.5 -5
+t56.5 -26zM2139 1008v-270h-92l-122 203v-203h-132l-26 60h-134l-25 -60h-75q-129 0 -129 133q0 138 133 138h63v-59q-7 0 -28 1t-28.5 0.5t-23 -2t-21.5 -6.5t-14.5 -13.5t-11.5 -23t-3 -33.5q0 -38 13.5 -58t49.5 -20h29l92 213h97l109 -256v256h99l114 -188v188h66z" />
+    <glyph glyph-name="_469" unicode="&#xf1f4;" horiz-adv-x="2304" 
+d="M745 630q0 -37 -25.5 -61.5t-62.5 -24.5q-29 0 -46.5 16t-17.5 44q0 37 25 62.5t62 25.5q28 0 46.5 -16.5t18.5 -45.5zM1530 779q0 -42 -22 -57t-66 -15l-32 -1l17 107q2 11 13 11h18q22 0 35 -2t25 -12.5t12 -30.5zM1881 630q0 -36 -25.5 -61t-61.5 -25q-29 0 -47 16
+t-18 44q0 37 25 62.5t62 25.5q28 0 46.5 -16.5t18.5 -45.5zM513 801q0 59 -38.5 85.5t-100.5 26.5h-160q-19 0 -21 -19l-65 -408q-1 -6 3 -11t10 -5h76q20 0 22 19l18 110q1 8 7 13t15 6.5t17 1.5t19 -1t14 -1q86 0 135 48.5t49 134.5zM822 489l41 261q1 6 -3 11t-10 5h-76
+q-14 0 -17 -33q-27 40 -95 40q-72 0 -122.5 -54t-50.5 -127q0 -59 34.5 -94t92.5 -35q28 0 58 12t48 32q-4 -12 -4 -21q0 -16 13 -16h69q19 0 22 19zM1269 752q0 5 -4 9.5t-9 4.5h-77q-11 0 -18 -10l-106 -156l-44 150q-5 16 -22 16h-75q-5 0 -9 -4.5t-4 -9.5q0 -2 19.5 -59
+t42 -123t23.5 -70q-82 -112 -82 -120q0 -13 13 -13h77q11 0 18 10l255 368q2 2 2 7zM1649 801q0 59 -38.5 85.5t-100.5 26.5h-159q-20 0 -22 -19l-65 -408q-1 -6 3 -11t10 -5h82q12 0 16 13l18 116q1 8 7 13t15 6.5t17 1.5t19 -1t14 -1q86 0 135 48.5t49 134.5zM1958 489
+l41 261q1 6 -3 11t-10 5h-76q-14 0 -17 -33q-26 40 -95 40q-72 0 -122.5 -54t-50.5 -127q0 -59 34.5 -94t92.5 -35q29 0 59 12t47 32q0 -1 -2 -9t-2 -12q0 -16 13 -16h69q19 0 22 19zM2176 898v1q0 14 -13 14h-74q-11 0 -13 -11l-65 -416l-1 -2q0 -5 4 -9.5t10 -4.5h66
+q19 0 21 19zM392 764q-5 -35 -26 -46t-60 -11l-33 -1l17 107q2 11 13 11h19q40 0 58 -11.5t12 -48.5zM2304 1280v-1280q0 -52 -38 -90t-90 -38h-2048q-52 0 -90 38t-38 90v1280q0 52 38 90t90 38h2048q52 0 90 -38t38 -90z" />
+    <glyph glyph-name="_470" unicode="&#xf1f5;" horiz-adv-x="2304" 
+d="M1597 633q0 -69 -21 -106q-19 -35 -52 -35q-23 0 -41 9v224q29 30 57 30q57 0 57 -122zM2035 669h-110q6 98 56 98q51 0 54 -98zM476 534q0 59 -33 91.5t-101 57.5q-36 13 -52 24t-16 25q0 26 38 26q58 0 124 -33l18 112q-67 32 -149 32q-77 0 -123 -38q-48 -39 -48 -109
+q0 -58 32.5 -90.5t99.5 -56.5q39 -14 54.5 -25.5t15.5 -27.5q0 -31 -48 -31q-29 0 -70 12.5t-72 30.5l-18 -113q72 -41 168 -41q81 0 129 37q51 41 51 117zM771 749l19 111h-96v135l-129 -21l-18 -114l-46 -8l-17 -103h62v-219q0 -84 44 -120q38 -30 111 -30q32 0 79 11v118
+q-32 -7 -44 -7q-42 0 -42 50v197h77zM1087 724v139q-15 3 -28 3q-32 0 -55.5 -16t-33.5 -46l-10 56h-131v-471h150v306q26 31 82 31q16 0 26 -2zM1124 389h150v471h-150v-471zM1746 638q0 122 -45 179q-40 52 -111 52q-64 0 -117 -56l-8 47h-132v-645l150 25v151
+q36 -11 68 -11q83 0 134 56q61 65 61 202zM1278 986q0 33 -23 56t-56 23t-56 -23t-23 -56t23 -56.5t56 -23.5t56 23.5t23 56.5zM2176 629q0 113 -48 176q-50 64 -144 64q-96 0 -151.5 -66t-55.5 -180q0 -128 63 -188q55 -55 161 -55q101 0 160 40l-16 103q-57 -31 -128 -31
+q-43 0 -63 19q-23 19 -28 66h248q2 14 2 52zM2304 1280v-1280q0 -52 -38 -90t-90 -38h-2048q-52 0 -90 38t-38 90v1280q0 52 38 90t90 38h2048q52 0 90 -38t38 -90z" />
+    <glyph glyph-name="_471" unicode="&#xf1f6;" horiz-adv-x="2048" 
+d="M1558 684q61 -356 298 -556q0 -52 -38 -90t-90 -38h-448q0 -106 -75 -181t-181 -75t-180.5 74.5t-75.5 180.5zM1024 -176q16 0 16 16t-16 16q-59 0 -101.5 42.5t-42.5 101.5q0 16 -16 16t-16 -16q0 -73 51.5 -124.5t124.5 -51.5zM2026 1424q8 -10 7.5 -23.5t-10.5 -22.5
+l-1872 -1622q-10 -8 -23.5 -7t-21.5 11l-84 96q-8 10 -7.5 23.5t10.5 21.5l186 161q-19 32 -19 66q50 42 91 88t85 119.5t74.5 158.5t50 206t19.5 260q0 152 117 282.5t307 158.5q-8 19 -8 39q0 40 28 68t68 28t68 -28t28 -68q0 -20 -8 -39q124 -18 219 -82.5t148 -157.5
+l418 363q10 8 23.5 7t21.5 -11z" />
+    <glyph glyph-name="_472" unicode="&#xf1f7;" horiz-adv-x="2048" 
+d="M1040 -160q0 16 -16 16q-59 0 -101.5 42.5t-42.5 101.5q0 16 -16 16t-16 -16q0 -73 51.5 -124.5t124.5 -51.5q16 0 16 16zM503 315l877 760q-42 88 -132.5 146.5t-223.5 58.5q-93 0 -169.5 -31.5t-121.5 -80.5t-69 -103t-24 -105q0 -384 -137 -645zM1856 128
+q0 -52 -38 -90t-90 -38h-448q0 -106 -75 -181t-181 -75t-180.5 74.5t-75.5 180.5l149 129h757q-166 187 -227 459l111 97q61 -356 298 -556zM1942 1520l84 -96q8 -10 7.5 -23.5t-10.5 -22.5l-1872 -1622q-10 -8 -23.5 -7t-21.5 11l-84 96q-8 10 -7.5 23.5t10.5 21.5l186 161
+q-19 32 -19 66q50 42 91 88t85 119.5t74.5 158.5t50 206t19.5 260q0 152 117 282.5t307 158.5q-8 19 -8 39q0 40 28 68t68 28t68 -28t28 -68q0 -20 -8 -39q124 -18 219 -82.5t148 -157.5l418 363q10 8 23.5 7t21.5 -11z" />
+    <glyph glyph-name="_473" unicode="&#xf1f8;" horiz-adv-x="1408" 
+d="M512 160v704q0 14 -9 23t-23 9h-64q-14 0 -23 -9t-9 -23v-704q0 -14 9 -23t23 -9h64q14 0 23 9t9 23zM768 160v704q0 14 -9 23t-23 9h-64q-14 0 -23 -9t-9 -23v-704q0 -14 9 -23t23 -9h64q14 0 23 9t9 23zM1024 160v704q0 14 -9 23t-23 9h-64q-14 0 -23 -9t-9 -23v-704
+q0 -14 9 -23t23 -9h64q14 0 23 9t9 23zM480 1152h448l-48 117q-7 9 -17 11h-317q-10 -2 -17 -11zM1408 1120v-64q0 -14 -9 -23t-23 -9h-96v-948q0 -83 -47 -143.5t-113 -60.5h-832q-66 0 -113 58.5t-47 141.5v952h-96q-14 0 -23 9t-9 23v64q0 14 9 23t23 9h309l70 167
+q15 37 54 63t79 26h320q40 0 79 -26t54 -63l70 -167h309q14 0 23 -9t9 -23z" />
+    <glyph glyph-name="_474" unicode="&#xf1f9;" 
+d="M1150 462v-109q0 -50 -36.5 -89t-94 -60.5t-118 -32.5t-117.5 -11q-205 0 -342.5 139t-137.5 346q0 203 136 339t339 136q34 0 75.5 -4.5t93 -18t92.5 -34t69 -56.5t28 -81v-109q0 -16 -16 -16h-118q-16 0 -16 16v70q0 43 -65.5 67.5t-137.5 24.5q-140 0 -228.5 -91.5
+t-88.5 -237.5q0 -151 91.5 -249.5t233.5 -98.5q68 0 138 24t70 66v70q0 7 4.5 11.5t10.5 4.5h119q6 0 11 -4.5t5 -11.5zM768 1280q-130 0 -248.5 -51t-204 -136.5t-136.5 -204t-51 -248.5t51 -248.5t136.5 -204t204 -136.5t248.5 -51t248.5 51t204 136.5t136.5 204t51 248.5
+t-51 248.5t-136.5 204t-204 136.5t-248.5 51zM1536 640q0 -209 -103 -385.5t-279.5 -279.5t-385.5 -103t-385.5 103t-279.5 279.5t-103 385.5t103 385.5t279.5 279.5t385.5 103t385.5 -103t279.5 -279.5t103 -385.5z" />
+    <glyph glyph-name="_475" unicode="&#xf1fa;" 
+d="M972 761q0 108 -53.5 169t-147.5 61q-63 0 -124 -30.5t-110 -84.5t-79.5 -137t-30.5 -180q0 -112 53.5 -173t150.5 -61q96 0 176 66.5t122.5 166t42.5 203.5zM1536 640q0 -111 -37 -197t-98.5 -135t-131.5 -74.5t-145 -27.5q-6 0 -15.5 -0.5t-16.5 -0.5q-95 0 -142 53
+q-28 33 -33 83q-52 -66 -131.5 -110t-173.5 -44q-161 0 -249.5 95.5t-88.5 269.5q0 157 66 290t179 210.5t246 77.5q87 0 155 -35.5t106 -99.5l2 19l11 56q1 6 5.5 12t9.5 6h118q5 0 13 -11q5 -5 3 -16l-120 -614q-5 -24 -5 -48q0 -39 12.5 -52t44.5 -13q28 1 57 5.5t73 24
+t77 50t57 89.5t24 137q0 292 -174 466t-466 174q-130 0 -248.5 -51t-204 -136.5t-136.5 -204t-51 -248.5t51 -248.5t136.5 -204t204 -136.5t248.5 -51q228 0 405 144q11 9 24 8t21 -12l41 -49q8 -12 7 -24q-2 -13 -12 -22q-102 -83 -227.5 -128t-258.5 -45q-156 0 -298 61
+t-245 164t-164 245t-61 298t61 298t164 245t245 164t298 61q344 0 556 -212t212 -556z" />
+    <glyph glyph-name="_476" unicode="&#xf1fb;" horiz-adv-x="1792" 
+d="M1698 1442q94 -94 94 -226.5t-94 -225.5l-225 -223l104 -104q10 -10 10 -23t-10 -23l-210 -210q-10 -10 -23 -10t-23 10l-105 105l-603 -603q-37 -37 -90 -37h-203l-256 -128l-64 64l128 256v203q0 53 37 90l603 603l-105 105q-10 10 -10 23t10 23l210 210q10 10 23 10
+t23 -10l104 -104l223 225q93 94 225.5 94t226.5 -94zM512 64l576 576l-192 192l-576 -576v-192h192z" />
+    <glyph glyph-name="f1fc" unicode="&#xf1fc;" horiz-adv-x="1792" 
+d="M1615 1536q70 0 122.5 -46.5t52.5 -116.5q0 -63 -45 -151q-332 -629 -465 -752q-97 -91 -218 -91q-126 0 -216.5 92.5t-90.5 219.5q0 128 92 212l638 579q59 54 130 54zM706 502q39 -76 106.5 -130t150.5 -76l1 -71q4 -213 -129.5 -347t-348.5 -134q-123 0 -218 46.5
+t-152.5 127.5t-86.5 183t-29 220q7 -5 41 -30t62 -44.5t59 -36.5t46 -17q41 0 55 37q25 66 57.5 112.5t69.5 76t88 47.5t103 25.5t125 10.5z" />
+    <glyph glyph-name="_478" unicode="&#xf1fd;" horiz-adv-x="1792" 
+d="M1792 128v-384h-1792v384q45 0 85 14t59 27.5t47 37.5q30 27 51.5 38t56.5 11q24 0 44 -7t31 -15t33 -27q29 -25 47 -38t58 -27t86 -14q45 0 85 14.5t58 27t48 37.5q21 19 32.5 27t31 15t43.5 7q35 0 56.5 -11t51.5 -38q28 -24 47 -37.5t59 -27.5t85 -14t85 14t59 27.5
+t47 37.5q30 27 51.5 38t56.5 11q34 0 55.5 -11t51.5 -38q28 -24 47 -37.5t59 -27.5t85 -14zM1792 448v-192q-24 0 -44 7t-31 15t-33 27q-29 25 -47 38t-58 27t-85 14q-46 0 -86 -14t-58 -27t-47 -38q-22 -19 -33 -27t-31 -15t-44 -7q-35 0 -56.5 11t-51.5 38q-29 25 -47 38
+t-58 27t-86 14q-45 0 -85 -14.5t-58 -27t-48 -37.5q-21 -19 -32.5 -27t-31 -15t-43.5 -7q-35 0 -56.5 11t-51.5 38q-28 24 -47 37.5t-59 27.5t-85 14q-46 0 -86 -14t-58 -27t-47 -38q-30 -27 -51.5 -38t-56.5 -11v192q0 80 56 136t136 56h64v448h256v-448h256v448h256v-448
+h256v448h256v-448h64q80 0 136 -56t56 -136zM512 1312q0 -77 -36 -118.5t-92 -41.5q-53 0 -90.5 37.5t-37.5 90.5q0 29 9.5 51t23.5 34t31 28t31 31.5t23.5 44.5t9.5 67q38 0 83 -74t45 -150zM1024 1312q0 -77 -36 -118.5t-92 -41.5q-53 0 -90.5 37.5t-37.5 90.5
+q0 29 9.5 51t23.5 34t31 28t31 31.5t23.5 44.5t9.5 67q38 0 83 -74t45 -150zM1536 1312q0 -77 -36 -118.5t-92 -41.5q-53 0 -90.5 37.5t-37.5 90.5q0 29 9.5 51t23.5 34t31 28t31 31.5t23.5 44.5t9.5 67q38 0 83 -74t45 -150z" />
+    <glyph glyph-name="_479" unicode="&#xf1fe;" horiz-adv-x="2048" 
+d="M2048 0v-128h-2048v1536h128v-1408h1920zM1664 1024l256 -896h-1664v576l448 576l576 -576z" />
+    <glyph glyph-name="_480" unicode="&#xf200;" horiz-adv-x="1792" 
+d="M768 646l546 -546q-106 -108 -247.5 -168t-298.5 -60q-209 0 -385.5 103t-279.5 279.5t-103 385.5t103 385.5t279.5 279.5t385.5 103v-762zM955 640h773q0 -157 -60 -298.5t-168 -247.5zM1664 768h-768v768q209 0 385.5 -103t279.5 -279.5t103 -385.5z" />
+    <glyph glyph-name="_481" unicode="&#xf201;" horiz-adv-x="2048" 
+d="M2048 0v-128h-2048v1536h128v-1408h1920zM1920 1248v-435q0 -21 -19.5 -29.5t-35.5 7.5l-121 121l-633 -633q-10 -10 -23 -10t-23 10l-233 233l-416 -416l-192 192l585 585q10 10 23 10t23 -10l233 -233l464 464l-121 121q-16 16 -7.5 35.5t29.5 19.5h435q14 0 23 -9
+t9 -23z" />
+    <glyph glyph-name="_482" unicode="&#xf202;" horiz-adv-x="1792" 
+d="M1292 832q0 -6 10 -41q10 -29 25 -49.5t41 -34t44 -20t55 -16.5q325 -91 325 -332q0 -146 -105.5 -242.5t-254.5 -96.5q-59 0 -111.5 18.5t-91.5 45.5t-77 74.5t-63 87.5t-53.5 103.5t-43.5 103t-39.5 106.5t-35.5 95q-32 81 -61.5 133.5t-73.5 96.5t-104 64t-142 20
+q-96 0 -183 -55.5t-138 -144.5t-51 -185q0 -160 106.5 -279.5t263.5 -119.5q177 0 258 95q56 63 83 116l84 -152q-15 -34 -44 -70l1 -1q-131 -152 -388 -152q-147 0 -269.5 79t-190.5 207.5t-68 274.5q0 105 43.5 206t116 176.5t172 121.5t204.5 46q87 0 159 -19t123.5 -50
+t95 -80t72.5 -99t58.5 -117t50.5 -124.5t50 -130.5t55 -127q96 -200 233 -200q81 0 138.5 48.5t57.5 128.5q0 42 -19 72t-50.5 46t-72.5 31.5t-84.5 27t-87.5 34t-81 52t-65 82t-39 122.5q-3 16 -3 33q0 110 87.5 192t198.5 78q78 -3 120.5 -14.5t90.5 -53.5h-1
+q12 -11 23 -24.5t26 -36t19 -27.5l-129 -99q-26 49 -54 70v1q-23 21 -97 21q-49 0 -84 -33t-35 -83z" />
+    <glyph glyph-name="_483" unicode="&#xf203;" 
+d="M1432 484q0 173 -234 239q-35 10 -53 16.5t-38 25t-29 46.5q0 2 -2 8.5t-3 12t-1 7.5q0 36 24.5 59.5t60.5 23.5q54 0 71 -15h-1q20 -15 39 -51l93 71q-39 54 -49 64q-33 29 -67.5 39t-85.5 10q-80 0 -142 -57.5t-62 -137.5q0 -7 2 -23q16 -96 64.5 -140t148.5 -73
+q29 -8 49 -15.5t45 -21.5t38.5 -34.5t13.5 -46.5v-5q1 -58 -40.5 -93t-100.5 -35q-97 0 -167 144q-23 47 -51.5 121.5t-48 125.5t-54 110.5t-74 95.5t-103.5 60.5t-147 24.5q-101 0 -192 -56t-144 -148t-50 -192v-1q4 -108 50.5 -199t133.5 -147.5t196 -56.5q186 0 279 110
+q20 27 31 51l-60 109q-42 -80 -99 -116t-146 -36q-115 0 -191 87t-76 204q0 105 82 189t186 84q112 0 170 -53.5t104 -172.5q8 -21 25.5 -68.5t28.5 -76.5t31.5 -74.5t38.5 -74t45.5 -62.5t55.5 -53.5t66 -33t80 -13.5q107 0 183 69.5t76 174.5zM1536 1120v-960
+q0 -119 -84.5 -203.5t-203.5 -84.5h-960q-119 0 -203.5 84.5t-84.5 203.5v960q0 119 84.5 203.5t203.5 84.5h960q119 0 203.5 -84.5t84.5 -203.5z" />
+    <glyph glyph-name="_484" unicode="&#xf204;" horiz-adv-x="2048" 
+d="M1152 640q0 104 -40.5 198.5t-109.5 163.5t-163.5 109.5t-198.5 40.5t-198.5 -40.5t-163.5 -109.5t-109.5 -163.5t-40.5 -198.5t40.5 -198.5t109.5 -163.5t163.5 -109.5t198.5 -40.5t198.5 40.5t163.5 109.5t109.5 163.5t40.5 198.5zM1920 640q0 104 -40.5 198.5
+t-109.5 163.5t-163.5 109.5t-198.5 40.5h-386q119 -90 188.5 -224t69.5 -288t-69.5 -288t-188.5 -224h386q104 0 198.5 40.5t163.5 109.5t109.5 163.5t40.5 198.5zM2048 640q0 -130 -51 -248.5t-136.5 -204t-204 -136.5t-248.5 -51h-768q-130 0 -248.5 51t-204 136.5
+t-136.5 204t-51 248.5t51 248.5t136.5 204t204 136.5t248.5 51h768q130 0 248.5 -51t204 -136.5t136.5 -204t51 -248.5z" />
+    <glyph glyph-name="_485" unicode="&#xf205;" horiz-adv-x="2048" 
+d="M0 640q0 130 51 248.5t136.5 204t204 136.5t248.5 51h768q130 0 248.5 -51t204 -136.5t136.5 -204t51 -248.5t-51 -248.5t-136.5 -204t-204 -136.5t-248.5 -51h-768q-130 0 -248.5 51t-204 136.5t-136.5 204t-51 248.5zM1408 128q104 0 198.5 40.5t163.5 109.5
+t109.5 163.5t40.5 198.5t-40.5 198.5t-109.5 163.5t-163.5 109.5t-198.5 40.5t-198.5 -40.5t-163.5 -109.5t-109.5 -163.5t-40.5 -198.5t40.5 -198.5t109.5 -163.5t163.5 -109.5t198.5 -40.5z" />
+    <glyph glyph-name="_486" unicode="&#xf206;" horiz-adv-x="2304" 
+d="M762 384h-314q-40 0 -57.5 35t6.5 67l188 251q-65 31 -137 31q-132 0 -226 -94t-94 -226t94 -226t226 -94q115 0 203 72.5t111 183.5zM576 512h186q-18 85 -75 148zM1056 512l288 384h-480l-99 -132q105 -103 126 -252h165zM2176 448q0 132 -94 226t-226 94
+q-60 0 -121 -24l174 -260q15 -23 10 -49t-27 -40q-15 -11 -36 -11q-35 0 -53 29l-174 260q-93 -95 -93 -225q0 -132 94 -226t226 -94t226 94t94 226zM2304 448q0 -185 -131.5 -316.5t-316.5 -131.5t-316.5 131.5t-131.5 316.5q0 97 39.5 183.5t109.5 149.5l-65 98l-353 -469
+q-18 -26 -51 -26h-197q-23 -164 -149 -274t-294 -110q-185 0 -316.5 131.5t-131.5 316.5t131.5 316.5t316.5 131.5q114 0 215 -55l137 183h-224q-26 0 -45 19t-19 45t19 45t45 19h384v-128h435l-85 128h-222q-26 0 -45 19t-19 45t19 45t45 19h256q33 0 53 -28l267 -400
+q91 44 192 44q185 0 316.5 -131.5t131.5 -316.5z" />
+    <glyph glyph-name="_487" unicode="&#xf207;" 
+d="M384 320q0 53 -37.5 90.5t-90.5 37.5t-90.5 -37.5t-37.5 -90.5t37.5 -90.5t90.5 -37.5t90.5 37.5t37.5 90.5zM1408 320q0 53 -37.5 90.5t-90.5 37.5t-90.5 -37.5t-37.5 -90.5t37.5 -90.5t90.5 -37.5t90.5 37.5t37.5 90.5zM1362 716l-72 384q-5 23 -22.5 37.5t-40.5 14.5
+h-918q-23 0 -40.5 -14.5t-22.5 -37.5l-72 -384q-5 -30 14 -53t49 -23h1062q30 0 49 23t14 53zM1136 1328q0 20 -14 34t-34 14h-640q-20 0 -34 -14t-14 -34t14 -34t34 -14h640q20 0 34 14t14 34zM1536 603v-603h-128v-128q0 -53 -37.5 -90.5t-90.5 -37.5t-90.5 37.5
+t-37.5 90.5v128h-768v-128q0 -53 -37.5 -90.5t-90.5 -37.5t-90.5 37.5t-37.5 90.5v128h-128v603q0 112 25 223l103 454q9 78 97.5 137t230 89t312.5 30t312.5 -30t230 -89t97.5 -137l105 -454q23 -102 23 -223z" />
+    <glyph glyph-name="_488" unicode="&#xf208;" horiz-adv-x="2048" 
+d="M1463 704q0 -35 -25 -60.5t-61 -25.5h-702q-36 0 -61 25.5t-25 60.5t25 60.5t61 25.5h702q36 0 61 -25.5t25 -60.5zM1677 704q0 86 -23 170h-982q-36 0 -61 25t-25 60q0 36 25 61t61 25h908q-88 143 -235 227t-320 84q-177 0 -327.5 -87.5t-238 -237.5t-87.5 -327
+q0 -86 23 -170h982q36 0 61 -25t25 -60q0 -36 -25 -61t-61 -25h-908q88 -143 235.5 -227t320.5 -84q132 0 253 51.5t208 139t139 208t52 253.5zM2048 959q0 -35 -25 -60t-61 -25h-131q17 -85 17 -170q0 -167 -65.5 -319.5t-175.5 -263t-262.5 -176t-319.5 -65.5
+q-246 0 -448.5 133t-301.5 350h-189q-36 0 -61 25t-25 61q0 35 25 60t61 25h132q-17 85 -17 170q0 167 65.5 319.5t175.5 263t262.5 176t320.5 65.5q245 0 447.5 -133t301.5 -350h188q36 0 61 -25t25 -61z" />
+    <glyph glyph-name="_489" unicode="&#xf209;" horiz-adv-x="1280" 
+d="M953 1158l-114 -328l117 -21q165 451 165 518q0 56 -38 56q-57 0 -130 -225zM654 471l33 -88q37 42 71 67l-33 5.5t-38.5 7t-32.5 8.5zM362 1367q0 -98 159 -521q17 10 49 10q15 0 75 -5l-121 351q-75 220 -123 220q-19 0 -29 -17.5t-10 -37.5zM283 608q0 -36 51.5 -119
+t117.5 -153t100 -70q14 0 25.5 13t11.5 27q0 24 -32 102q-13 32 -32 72t-47.5 89t-61.5 81t-62 32q-20 0 -45.5 -27t-25.5 -47zM125 273q0 -41 25 -104q59 -145 183.5 -227t281.5 -82q227 0 382 170q152 169 152 427q0 43 -1 67t-11.5 62t-30.5 56q-56 49 -211.5 75.5
+t-270.5 26.5q-37 0 -49 -11q-12 -5 -12 -35q0 -34 21.5 -60t55.5 -40t77.5 -23.5t87.5 -11.5t85 -4t70 0h23q24 0 40 -19q15 -19 19 -55q-28 -28 -96 -54q-61 -22 -93 -46q-64 -46 -108.5 -114t-44.5 -137q0 -31 18.5 -88.5t18.5 -87.5l-3 -12q-4 -12 -4 -14
+q-137 10 -146 216q-8 -2 -41 -2q2 -7 2 -21q0 -53 -40.5 -89.5t-94.5 -36.5q-82 0 -166.5 78t-84.5 159q0 34 33 67q52 -64 60 -76q77 -104 133 -104q12 0 26.5 8.5t14.5 20.5q0 34 -87.5 145t-116.5 111q-43 0 -70 -44.5t-27 -90.5zM11 264q0 101 42.5 163t136.5 88
+q-28 74 -28 104q0 62 61 123t122 61q29 0 70 -15q-163 462 -163 567q0 80 41 130.5t119 50.5q131 0 325 -581q6 -17 8 -23q6 16 29 79.5t43.5 118.5t54 127.5t64.5 123t70.5 86.5t76.5 36q71 0 112 -49t41 -122q0 -108 -159 -550q61 -15 100.5 -46t58.5 -78t26 -93.5
+t7 -110.5q0 -150 -47 -280t-132 -225t-211 -150t-278 -55q-111 0 -223 42q-149 57 -258 191.5t-109 286.5z" />
+    <glyph glyph-name="_490" unicode="&#xf20a;" horiz-adv-x="2048" 
+d="M785 528h207q-14 -158 -98.5 -248.5t-214.5 -90.5q-162 0 -254.5 116t-92.5 316q0 194 93 311.5t233 117.5q148 0 232 -87t97 -247h-203q-5 64 -35.5 99t-81.5 35q-57 0 -88.5 -60.5t-31.5 -177.5q0 -48 5 -84t18 -69.5t40 -51.5t66 -18q95 0 109 139zM1497 528h206
+q-14 -158 -98 -248.5t-214 -90.5q-162 0 -254.5 116t-92.5 316q0 194 93 311.5t233 117.5q148 0 232 -87t97 -247h-204q-4 64 -35 99t-81 35q-57 0 -88.5 -60.5t-31.5 -177.5q0 -48 5 -84t18 -69.5t39.5 -51.5t65.5 -18q49 0 76.5 38t33.5 101zM1856 647q0 207 -15.5 307
+t-60.5 161q-6 8 -13.5 14t-21.5 15t-16 11q-86 63 -697 63q-625 0 -710 -63q-5 -4 -17.5 -11.5t-21 -14t-14.5 -14.5q-45 -60 -60 -159.5t-15 -308.5q0 -208 15 -307.5t60 -160.5q6 -8 15 -15t20.5 -14t17.5 -12q44 -33 239.5 -49t470.5 -16q610 0 697 65q5 4 17 11t20.5 14
+t13.5 16q46 60 61 159t15 309zM2048 1408v-1536h-2048v1536h2048z" />
+    <glyph glyph-name="_491" unicode="&#xf20b;" 
+d="M992 912v-496q0 -14 -9 -23t-23 -9h-160q-14 0 -23 9t-9 23v496q0 112 -80 192t-192 80h-272v-1152q0 -14 -9 -23t-23 -9h-160q-14 0 -23 9t-9 23v1344q0 14 9 23t23 9h464q135 0 249 -66.5t180.5 -180.5t66.5 -249zM1376 1376v-880q0 -135 -66.5 -249t-180.5 -180.5
+t-249 -66.5h-464q-14 0 -23 9t-9 23v960q0 14 9 23t23 9h160q14 0 23 -9t9 -23v-768h272q112 0 192 80t80 192v880q0 14 9 23t23 9h160q14 0 23 -9t9 -23z" />
+    <glyph glyph-name="_492" unicode="&#xf20c;" 
+d="M1311 694v-114q0 -24 -13.5 -38t-37.5 -14h-202q-24 0 -38 14t-14 38v114q0 24 14 38t38 14h202q24 0 37.5 -14t13.5 -38zM821 464v250q0 53 -32.5 85.5t-85.5 32.5h-133q-68 0 -96 -52q-28 52 -96 52h-130q-53 0 -85.5 -32.5t-32.5 -85.5v-250q0 -22 21 -22h55
+q22 0 22 22v230q0 24 13.5 38t38.5 14h94q24 0 38 -14t14 -38v-230q0 -22 21 -22h54q22 0 22 22v230q0 24 14 38t38 14h97q24 0 37.5 -14t13.5 -38v-230q0 -22 22 -22h55q21 0 21 22zM1410 560v154q0 53 -33 85.5t-86 32.5h-264q-53 0 -86 -32.5t-33 -85.5v-410
+q0 -21 22 -21h55q21 0 21 21v180q31 -42 94 -42h191q53 0 86 32.5t33 85.5zM1536 1176v-1072q0 -96 -68 -164t-164 -68h-1072q-96 0 -164 68t-68 164v1072q0 96 68 164t164 68h1072q96 0 164 -68t68 -164z" />
+    <glyph glyph-name="_493" unicode="&#xf20d;" 
+d="M915 450h-294l147 551zM1001 128h311l-324 1024h-440l-324 -1024h311l383 314zM1536 1120v-960q0 -118 -85 -203t-203 -85h-960q-118 0 -203 85t-85 203v960q0 118 85 203t203 85h960q118 0 203 -85t85 -203z" />
+    <glyph glyph-name="_494" unicode="&#xf20e;" horiz-adv-x="2048" 
+d="M2048 641q0 -21 -13 -36.5t-33 -19.5l-205 -356q3 -9 3 -18q0 -20 -12.5 -35.5t-32.5 -19.5l-193 -337q3 -8 3 -16q0 -23 -16.5 -40t-40.5 -17q-25 0 -41 18h-400q-17 -20 -43 -20t-43 20h-399q-17 -20 -43 -20q-23 0 -40 16.5t-17 40.5q0 8 4 20l-193 335
+q-20 4 -32.5 19.5t-12.5 35.5q0 9 3 18l-206 356q-20 5 -32.5 20.5t-12.5 35.5q0 21 13.5 36.5t33.5 19.5l199 344q0 1 -0.5 3t-0.5 3q0 36 34 51l209 363q-4 10 -4 18q0 24 17 40.5t40 16.5q26 0 44 -21h396q16 21 43 21t43 -21h398q18 21 44 21q23 0 40 -16.5t17 -40.5
+q0 -6 -4 -18l207 -358q23 -1 39 -17.5t16 -38.5q0 -13 -7 -27l187 -324q19 -4 31.5 -19.5t12.5 -35.5zM1063 -158h389l-342 354h-143l-342 -354h360q18 16 39 16t39 -16zM112 654q1 -4 1 -13q0 -10 -2 -15l208 -360l15 -6l188 199v347l-187 194q-13 -8 -29 -10zM986 1438
+h-388l190 -200l554 200h-280q-16 -16 -38 -16t-38 16zM1689 226q1 6 5 11l-64 68l-17 -79h76zM1583 226l22 105l-252 266l-296 -307l63 -64h463zM1495 -142l16 28l65 310h-427l333 -343q8 4 13 5zM578 -158h5l342 354h-373v-335l4 -6q14 -5 22 -13zM552 226h402l64 66
+l-309 321l-157 -166v-221zM359 226h163v189l-168 -177q4 -8 5 -12zM358 1051q0 -1 0.5 -2t0.5 -2q0 -16 -8 -29l171 -177v269zM552 1121v-311l153 -157l297 314l-223 236zM556 1425l-4 -8v-264l205 74l-191 201q-6 -2 -10 -3zM1447 1438h-16l-621 -224l213 -225zM1023 946
+l-297 -315l311 -319l296 307zM688 634l-136 141v-284zM1038 270l-42 -44h85zM1374 618l238 -251l132 624l-3 5l-1 1zM1718 1018q-8 13 -8 29v2l-216 376q-5 1 -13 5l-437 -463l310 -327zM522 1142v223l-163 -282zM522 196h-163l163 -283v283zM1607 196l-48 -227l130 227h-82
+zM1729 266l207 361q-2 10 -2 14q0 1 3 16l-171 296l-129 -612l77 -82q5 3 15 7z" />
+    <glyph glyph-name="f210" unicode="&#xf210;" 
+d="M0 856q0 131 91.5 226.5t222.5 95.5h742l352 358v-1470q0 -132 -91.5 -227t-222.5 -95h-780q-131 0 -222.5 95t-91.5 227v790zM1232 102l-176 180v425q0 46 -32 79t-78 33h-484q-46 0 -78 -33t-32 -79v-492q0 -46 32.5 -79.5t77.5 -33.5h770z" />
+    <glyph glyph-name="_496" unicode="&#xf211;" 
+d="M934 1386q-317 -121 -556 -362.5t-358 -560.5q-20 89 -20 176q0 208 102.5 384.5t278.5 279t384 102.5q82 0 169 -19zM1203 1267q93 -65 164 -155q-389 -113 -674.5 -400.5t-396.5 -676.5q-93 72 -155 162q112 386 395 671t667 399zM470 -67q115 356 379.5 622t619.5 384
+q40 -92 54 -195q-292 -120 -516 -345t-343 -518q-103 14 -194 52zM1536 -125q-193 50 -367 115q-135 -84 -290 -107q109 205 274 370.5t369 275.5q-21 -152 -101 -284q65 -175 115 -370z" />
+    <glyph glyph-name="f212" unicode="&#xf212;" horiz-adv-x="2048" 
+d="M1893 1144l155 -1272q-131 0 -257 57q-200 91 -393 91q-226 0 -374 -148q-148 148 -374 148q-193 0 -393 -91q-128 -57 -252 -57h-5l155 1272q224 127 482 127q233 0 387 -106q154 106 387 106q258 0 482 -127zM1398 157q129 0 232 -28.5t260 -93.5l-124 1021
+q-171 78 -368 78q-224 0 -374 -141q-150 141 -374 141q-197 0 -368 -78l-124 -1021q105 43 165.5 65t148.5 39.5t178 17.5q202 0 374 -108q172 108 374 108zM1438 191l-55 907q-211 -4 -359 -155q-152 155 -374 155q-176 0 -336 -66l-114 -941q124 51 228.5 76t221.5 25
+q209 0 374 -102q172 107 374 102z" />
+    <glyph glyph-name="_498" unicode="&#xf213;" horiz-adv-x="2048" 
+d="M1500 165v733q0 21 -15 36t-35 15h-93q-20 0 -35 -15t-15 -36v-733q0 -20 15 -35t35 -15h93q20 0 35 15t15 35zM1216 165v531q0 20 -15 35t-35 15h-101q-20 0 -35 -15t-15 -35v-531q0 -20 15 -35t35 -15h101q20 0 35 15t15 35zM924 165v429q0 20 -15 35t-35 15h-101
+q-20 0 -35 -15t-15 -35v-429q0 -20 15 -35t35 -15h101q20 0 35 15t15 35zM632 165v362q0 20 -15 35t-35 15h-101q-20 0 -35 -15t-15 -35v-362q0 -20 15 -35t35 -15h101q20 0 35 15t15 35zM2048 311q0 -166 -118 -284t-284 -118h-1244q-166 0 -284 118t-118 284
+q0 116 63 214.5t168 148.5q-10 34 -10 73q0 113 80.5 193.5t193.5 80.5q102 0 180 -67q45 183 194 300t338 117q149 0 275 -73.5t199.5 -199.5t73.5 -275q0 -66 -14 -122q135 -33 221 -142.5t86 -247.5z" />
+    <glyph glyph-name="_499" unicode="&#xf214;" 
+d="M0 1536h1536v-1392l-776 -338l-760 338v1392zM1436 209v926h-1336v-926l661 -294zM1436 1235v201h-1336v-201h1336zM181 937v-115h-37v115h37zM181 789v-115h-37v115h37zM181 641v-115h-37v115h37zM181 493v-115h-37v115h37zM181 345v-115h-37v115h37zM207 202l15 34
+l105 -47l-15 -33zM343 142l15 34l105 -46l-15 -34zM478 82l15 34l105 -46l-15 -34zM614 23l15 33l104 -46l-15 -34zM797 10l105 46l15 -33l-105 -47zM932 70l105 46l15 -34l-105 -46zM1068 130l105 46l15 -34l-105 -46zM1203 189l105 47l15 -34l-105 -46zM259 1389v-36h-114
+v36h114zM421 1389v-36h-115v36h115zM583 1389v-36h-115v36h115zM744 1389v-36h-114v36h114zM906 1389v-36h-114v36h114zM1068 1389v-36h-115v36h115zM1230 1389v-36h-115v36h115zM1391 1389v-36h-114v36h114zM181 1049v-79h-37v115h115v-36h-78zM421 1085v-36h-115v36h115z
+M583 1085v-36h-115v36h115zM744 1085v-36h-114v36h114zM906 1085v-36h-114v36h114zM1068 1085v-36h-115v36h115zM1230 1085v-36h-115v36h115zM1355 970v79h-78v36h115v-115h-37zM1355 822v115h37v-115h-37zM1355 674v115h37v-115h-37zM1355 526v115h37v-115h-37zM1355 378
+v115h37v-115h-37zM1355 230v115h37v-115h-37zM760 265q-129 0 -221 91.5t-92 221.5q0 129 92 221t221 92q130 0 221.5 -92t91.5 -221q0 -130 -91.5 -221.5t-221.5 -91.5zM595 646q0 -36 19.5 -56.5t49.5 -25t64 -7t64 -2t49.5 -9t19.5 -30.5q0 -49 -112 -49q-97 0 -123 51
+h-3l-31 -63q67 -42 162 -42q29 0 56.5 5t55.5 16t45.5 33t17.5 53q0 46 -27.5 69.5t-67.5 27t-79.5 3t-67 5t-27.5 25.5q0 21 20.5 33t40.5 15t41 3q34 0 70.5 -11t51.5 -34h3l30 58q-3 1 -21 8.5t-22.5 9t-19.5 7t-22 7t-20 4.5t-24 4t-23 1q-29 0 -56.5 -5t-54 -16.5
+t-43 -34t-16.5 -53.5z" />
+    <glyph glyph-name="_500" unicode="&#xf215;" horiz-adv-x="2048" 
+d="M863 504q0 112 -79.5 191.5t-191.5 79.5t-191 -79.5t-79 -191.5t79 -191t191 -79t191.5 79t79.5 191zM1726 505q0 112 -79 191t-191 79t-191.5 -79t-79.5 -191q0 -113 79.5 -192t191.5 -79t191 79.5t79 191.5zM2048 1314v-1348q0 -44 -31.5 -75.5t-76.5 -31.5h-1832
+q-45 0 -76.5 31.5t-31.5 75.5v1348q0 44 31.5 75.5t76.5 31.5h431q44 0 76 -31.5t32 -75.5v-161h754v161q0 44 32 75.5t76 31.5h431q45 0 76.5 -31.5t31.5 -75.5z" />
+    <glyph glyph-name="_501" unicode="&#xf216;" horiz-adv-x="2048" 
+d="M1430 953zM1690 749q148 0 253 -98.5t105 -244.5q0 -157 -109 -261.5t-267 -104.5q-85 0 -162 27.5t-138 73.5t-118 106t-109 126t-103.5 132.5t-108.5 126.5t-117 106t-136 73.5t-159 27.5q-154 0 -251.5 -91.5t-97.5 -244.5q0 -157 104 -250t263 -93q100 0 208 37.5
+t193 98.5q5 4 21 18.5t30 24t22 9.5q14 0 24.5 -10.5t10.5 -24.5q0 -24 -60 -77q-101 -88 -234.5 -142t-260.5 -54q-133 0 -245.5 58t-180 165t-67.5 241q0 205 141.5 341t347.5 136q120 0 226.5 -43.5t185.5 -113t151.5 -153t139 -167.5t133.5 -153.5t149.5 -113
+t172.5 -43.5q102 0 168.5 61.5t66.5 162.5q0 95 -64.5 159t-159.5 64q-30 0 -81.5 -18.5t-68.5 -18.5q-20 0 -35.5 15t-15.5 35q0 18 8.5 57t8.5 59q0 159 -107.5 263t-266.5 104q-58 0 -111.5 -18.5t-84 -40.5t-55.5 -40.5t-33 -18.5q-15 0 -25.5 10.5t-10.5 25.5
+q0 19 25 46q59 67 147 103.5t182 36.5q191 0 318 -125.5t127 -315.5q0 -37 -4 -66q57 15 115 15z" />
+    <glyph glyph-name="_502" unicode="&#xf217;" horiz-adv-x="1664" 
+d="M1216 832q0 26 -19 45t-45 19h-128v128q0 26 -19 45t-45 19t-45 -19t-19 -45v-128h-128q-26 0 -45 -19t-19 -45t19 -45t45 -19h128v-128q0 -26 19 -45t45 -19t45 19t19 45v128h128q26 0 45 19t19 45zM640 0q0 -53 -37.5 -90.5t-90.5 -37.5t-90.5 37.5t-37.5 90.5
+t37.5 90.5t90.5 37.5t90.5 -37.5t37.5 -90.5zM1536 0q0 -53 -37.5 -90.5t-90.5 -37.5t-90.5 37.5t-37.5 90.5t37.5 90.5t90.5 37.5t90.5 -37.5t37.5 -90.5zM1664 1088v-512q0 -24 -16 -42.5t-41 -21.5l-1044 -122q1 -7 4.5 -21.5t6 -26.5t2.5 -22q0 -16 -24 -64h920
+q26 0 45 -19t19 -45t-19 -45t-45 -19h-1024q-26 0 -45 19t-19 45q0 14 11 39.5t29.5 59.5t20.5 38l-177 823h-204q-26 0 -45 19t-19 45t19 45t45 19h256q16 0 28.5 -6.5t20 -15.5t13 -24.5t7.5 -26.5t5.5 -29.5t4.5 -25.5h1201q26 0 45 -19t19 -45z" />
+    <glyph glyph-name="_503" unicode="&#xf218;" horiz-adv-x="1664" 
+d="M1280 832q0 26 -19 45t-45 19t-45 -19l-147 -146v293q0 26 -19 45t-45 19t-45 -19t-19 -45v-293l-147 146q-19 19 -45 19t-45 -19t-19 -45t19 -45l256 -256q19 -19 45 -19t45 19l256 256q19 19 19 45zM640 0q0 -53 -37.5 -90.5t-90.5 -37.5t-90.5 37.5t-37.5 90.5
+t37.5 90.5t90.5 37.5t90.5 -37.5t37.5 -90.5zM1536 0q0 -53 -37.5 -90.5t-90.5 -37.5t-90.5 37.5t-37.5 90.5t37.5 90.5t90.5 37.5t90.5 -37.5t37.5 -90.5zM1664 1088v-512q0 -24 -16 -42.5t-41 -21.5l-1044 -122q1 -7 4.5 -21.5t6 -26.5t2.5 -22q0 -16 -24 -64h920
+q26 0 45 -19t19 -45t-19 -45t-45 -19h-1024q-26 0 -45 19t-19 45q0 14 11 39.5t29.5 59.5t20.5 38l-177 823h-204q-26 0 -45 19t-19 45t19 45t45 19h256q16 0 28.5 -6.5t20 -15.5t13 -24.5t7.5 -26.5t5.5 -29.5t4.5 -25.5h1201q26 0 45 -19t19 -45z" />
+    <glyph glyph-name="_504" unicode="&#xf219;" horiz-adv-x="2048" 
+d="M212 768l623 -665l-300 665h-323zM1024 -4l349 772h-698zM538 896l204 384h-262l-288 -384h346zM1213 103l623 665h-323zM683 896h682l-204 384h-274zM1510 896h346l-288 384h-262zM1651 1382l384 -512q14 -18 13 -41.5t-17 -40.5l-960 -1024q-18 -20 -47 -20t-47 20
+l-960 1024q-16 17 -17 40.5t13 41.5l384 512q18 26 51 26h1152q33 0 51 -26z" />
+    <glyph glyph-name="_505" unicode="&#xf21a;" horiz-adv-x="2048" 
+d="M1811 -19q19 19 45 19t45 -19l128 -128l-90 -90l-83 83l-83 -83q-18 -19 -45 -19t-45 19l-83 83l-83 -83q-19 -19 -45 -19t-45 19l-83 83l-83 -83q-19 -19 -45 -19t-45 19l-83 83l-83 -83q-19 -19 -45 -19t-45 19l-83 83l-83 -83q-19 -19 -45 -19t-45 19l-83 83l-83 -83
+q-19 -19 -45 -19t-45 19l-83 83l-83 -83q-19 -19 -45 -19t-45 19l-128 128l90 90l83 -83l83 83q19 19 45 19t45 -19l83 -83l83 83q19 19 45 19t45 -19l83 -83l83 83q19 19 45 19t45 -19l83 -83l83 83q19 19 45 19t45 -19l83 -83l83 83q19 19 45 19t45 -19l83 -83l83 83
+q19 19 45 19t45 -19l83 -83zM237 19q-19 -19 -45 -19t-45 19l-128 128l90 90l83 -82l83 82q19 19 45 19t45 -19l83 -82l64 64v293l-210 314q-17 26 -7 56.5t40 40.5l177 58v299h128v128h256v128h256v-128h256v-128h128v-299l177 -58q30 -10 40 -40.5t-7 -56.5l-210 -314
+v-293l19 18q19 19 45 19t45 -19l83 -82l83 82q19 19 45 19t45 -19l128 -128l-90 -90l-83 83l-83 -83q-18 -19 -45 -19t-45 19l-83 83l-83 -83q-19 -19 -45 -19t-45 19l-83 83l-83 -83q-19 -19 -45 -19t-45 19l-83 83l-83 -83q-19 -19 -45 -19t-45 19l-83 83l-83 -83
+q-19 -19 -45 -19t-45 19l-83 83l-83 -83q-19 -19 -45 -19t-45 19l-83 83zM640 1152v-128l384 128l384 -128v128h-128v128h-512v-128h-128z" />
+    <glyph glyph-name="_506" unicode="&#xf21b;" 
+d="M576 0l96 448l-96 128l-128 64zM832 0l128 640l-128 -64l-96 -128zM992 1010q-2 4 -4 6q-10 8 -96 8q-70 0 -167 -19q-7 -2 -21 -2t-21 2q-97 19 -167 19q-86 0 -96 -8q-2 -2 -4 -6q2 -18 4 -27q2 -3 7.5 -6.5t7.5 -10.5q2 -4 7.5 -20.5t7 -20.5t7.5 -17t8.5 -17t9 -14
+t12 -13.5t14 -9.5t17.5 -8t20.5 -4t24.5 -2q36 0 59 12.5t32.5 30t14.5 34.5t11.5 29.5t17.5 12.5h12q11 0 17.5 -12.5t11.5 -29.5t14.5 -34.5t32.5 -30t59 -12.5q13 0 24.5 2t20.5 4t17.5 8t14 9.5t12 13.5t9 14t8.5 17t7.5 17t7 20.5t7.5 20.5q2 7 7.5 10.5t7.5 6.5
+q2 9 4 27zM1408 131q0 -121 -73 -190t-194 -69h-874q-121 0 -194 69t-73 190q0 61 4.5 118t19 125.5t37.5 123.5t63.5 103.5t93.5 74.5l-90 220h214q-22 64 -22 128q0 12 2 32q-194 40 -194 96q0 57 210 99q17 62 51.5 134t70.5 114q32 37 76 37q30 0 84 -31t84 -31t84 31
+t84 31q44 0 76 -37q36 -42 70.5 -114t51.5 -134q210 -42 210 -99q0 -56 -194 -96q7 -81 -20 -160h214l-82 -225q63 -33 107.5 -96.5t65.5 -143.5t29 -151.5t8 -148.5z" />
+    <glyph glyph-name="_507" unicode="&#xf21c;" horiz-adv-x="2304" 
+d="M2301 500q12 -103 -22 -198.5t-99 -163.5t-158.5 -106t-196.5 -31q-161 11 -279.5 125t-134.5 274q-12 111 27.5 210.5t118.5 170.5l-71 107q-96 -80 -151 -194t-55 -244q0 -27 -18.5 -46.5t-45.5 -19.5h-256h-69q-23 -164 -149 -274t-294 -110q-185 0 -316.5 131.5
+t-131.5 316.5t131.5 316.5t316.5 131.5q76 0 152 -27l24 45q-123 110 -304 110h-64q-26 0 -45 19t-19 45t19 45t45 19h128q78 0 145 -13.5t116.5 -38.5t71.5 -39.5t51 -36.5h512h115l-85 128h-222q-30 0 -49 22.5t-14 52.5q4 23 23 38t43 15h253q33 0 53 -28l70 -105
+l114 114q19 19 46 19h101q26 0 45 -19t19 -45v-128q0 -26 -19 -45t-45 -19h-179l115 -172q131 63 275 36q143 -26 244 -134.5t118 -253.5zM448 128q115 0 203 72.5t111 183.5h-314q-35 0 -55 31q-18 32 -1 63l147 277q-47 13 -91 13q-132 0 -226 -94t-94 -226t94 -226
+t226 -94zM1856 128q132 0 226 94t94 226t-94 226t-226 94q-60 0 -121 -24l174 -260q15 -23 10 -49t-27 -40q-15 -11 -36 -11q-35 0 -53 29l-174 260q-93 -95 -93 -225q0 -132 94 -226t226 -94z" />
+    <glyph glyph-name="_508" unicode="&#xf21d;" 
+d="M1408 0q0 -63 -61.5 -113.5t-164 -81t-225 -46t-253.5 -15.5t-253.5 15.5t-225 46t-164 81t-61.5 113.5q0 49 33 88.5t91 66.5t118 44.5t131 29.5q26 5 48 -10.5t26 -41.5q5 -26 -10.5 -48t-41.5 -26q-58 -10 -106 -23.5t-76.5 -25.5t-48.5 -23.5t-27.5 -19.5t-8.5 -12
+q3 -11 27 -26.5t73 -33t114 -32.5t160.5 -25t201.5 -10t201.5 10t160.5 25t114 33t73 33.5t27 27.5q-1 4 -8.5 11t-27.5 19t-48.5 23.5t-76.5 25t-106 23.5q-26 4 -41.5 26t-10.5 48q4 26 26 41.5t48 10.5q71 -12 131 -29.5t118 -44.5t91 -66.5t33 -88.5zM1024 896v-384
+q0 -26 -19 -45t-45 -19h-64v-384q0 -26 -19 -45t-45 -19h-256q-26 0 -45 19t-19 45v384h-64q-26 0 -45 19t-19 45v384q0 53 37.5 90.5t90.5 37.5h384q53 0 90.5 -37.5t37.5 -90.5zM928 1280q0 -93 -65.5 -158.5t-158.5 -65.5t-158.5 65.5t-65.5 158.5t65.5 158.5t158.5 65.5
+t158.5 -65.5t65.5 -158.5z" />
+    <glyph glyph-name="_509" unicode="&#xf21e;" horiz-adv-x="1792" 
+d="M1280 512h305q-5 -6 -10 -10.5t-9 -7.5l-3 -4l-623 -600q-18 -18 -44 -18t-44 18l-624 602q-5 2 -21 20h369q22 0 39.5 13.5t22.5 34.5l70 281l190 -667q6 -20 23 -33t39 -13q21 0 38 13t23 33l146 485l56 -112q18 -35 57 -35zM1792 940q0 -145 -103 -300h-369l-111 221
+q-8 17 -25.5 27t-36.5 8q-45 -5 -56 -46l-129 -430l-196 686q-6 20 -23.5 33t-39.5 13t-39 -13.5t-22 -34.5l-116 -464h-423q-103 155 -103 300q0 220 127 344t351 124q62 0 126.5 -21.5t120 -58t95.5 -68.5t76 -68q36 36 76 68t95.5 68.5t120 58t126.5 21.5q224 0 351 -124
+t127 -344z" />
+    <glyph glyph-name="venus" unicode="&#xf221;" horiz-adv-x="1280" 
+d="M1152 960q0 -221 -147.5 -384.5t-364.5 -187.5v-260h224q14 0 23 -9t9 -23v-64q0 -14 -9 -23t-23 -9h-224v-224q0 -14 -9 -23t-23 -9h-64q-14 0 -23 9t-9 23v224h-224q-14 0 -23 9t-9 23v64q0 14 9 23t23 9h224v260q-150 16 -271.5 103t-186 224t-52.5 292
+q11 134 80.5 249t182 188t245.5 88q170 19 319 -54t236 -212t87 -306zM128 960q0 -185 131.5 -316.5t316.5 -131.5t316.5 131.5t131.5 316.5t-131.5 316.5t-316.5 131.5t-316.5 -131.5t-131.5 -316.5z" />
+    <glyph glyph-name="_511" unicode="&#xf222;" 
+d="M1472 1408q26 0 45 -19t19 -45v-416q0 -14 -9 -23t-23 -9h-64q-14 0 -23 9t-9 23v262l-382 -383q126 -156 126 -359q0 -117 -45.5 -223.5t-123 -184t-184 -123t-223.5 -45.5t-223.5 45.5t-184 123t-123 184t-45.5 223.5t45.5 223.5t123 184t184 123t223.5 45.5
+q203 0 359 -126l382 382h-261q-14 0 -23 9t-9 23v64q0 14 9 23t23 9h416zM576 0q185 0 316.5 131.5t131.5 316.5t-131.5 316.5t-316.5 131.5t-316.5 -131.5t-131.5 -316.5t131.5 -316.5t316.5 -131.5z" />
+    <glyph glyph-name="_512" unicode="&#xf223;" horiz-adv-x="1280" 
+d="M830 1220q145 -72 233.5 -210.5t88.5 -305.5q0 -221 -147.5 -384.5t-364.5 -187.5v-132h96q14 0 23 -9t9 -23v-64q0 -14 -9 -23t-23 -9h-96v-96q0 -14 -9 -23t-23 -9h-64q-14 0 -23 9t-9 23v96h-96q-14 0 -23 9t-9 23v64q0 14 9 23t23 9h96v132q-217 24 -364.5 187.5
+t-147.5 384.5q0 167 88.5 305.5t233.5 210.5q-165 96 -228 273q-6 16 3.5 29.5t26.5 13.5h69q21 0 29 -20q44 -106 140 -171t214 -65t214 65t140 171q8 20 37 20h61q17 0 26.5 -13.5t3.5 -29.5q-63 -177 -228 -273zM576 256q185 0 316.5 131.5t131.5 316.5t-131.5 316.5
+t-316.5 131.5t-316.5 -131.5t-131.5 -316.5t131.5 -316.5t316.5 -131.5z" />
+    <glyph glyph-name="_513" unicode="&#xf224;" 
+d="M1024 1504q0 14 9 23t23 9h288q26 0 45 -19t19 -45v-288q0 -14 -9 -23t-23 -9h-64q-14 0 -23 9t-9 23v134l-254 -255q126 -158 126 -359q0 -221 -147.5 -384.5t-364.5 -187.5v-132h96q14 0 23 -9t9 -23v-64q0 -14 -9 -23t-23 -9h-96v-96q0 -14 -9 -23t-23 -9h-64
+q-14 0 -23 9t-9 23v96h-96q-14 0 -23 9t-9 23v64q0 14 9 23t23 9h96v132q-149 16 -270.5 103t-186.5 223.5t-53 291.5q16 204 160 353.5t347 172.5q118 14 228 -19t198 -103l255 254h-134q-14 0 -23 9t-9 23v64zM576 256q185 0 316.5 131.5t131.5 316.5t-131.5 316.5
+t-316.5 131.5t-316.5 -131.5t-131.5 -316.5t131.5 -316.5t316.5 -131.5z" />
+    <glyph glyph-name="_514" unicode="&#xf225;" horiz-adv-x="1792" 
+d="M1280 1504q0 14 9 23t23 9h288q26 0 45 -19t19 -45v-288q0 -14 -9 -23t-23 -9h-64q-14 0 -23 9t-9 23v134l-254 -255q126 -158 126 -359q0 -221 -147.5 -384.5t-364.5 -187.5v-132h96q14 0 23 -9t9 -23v-64q0 -14 -9 -23t-23 -9h-96v-96q0 -14 -9 -23t-23 -9h-64
+q-14 0 -23 9t-9 23v96h-96q-14 0 -23 9t-9 23v64q0 14 9 23t23 9h96v132q-217 24 -364.5 187.5t-147.5 384.5q0 201 126 359l-52 53l-101 -111q-9 -10 -22 -10.5t-23 7.5l-48 44q-10 8 -10.5 21.5t8.5 23.5l105 115l-111 112v-134q0 -14 -9 -23t-23 -9h-64q-14 0 -23 9
+t-9 23v288q0 26 19 45t45 19h288q14 0 23 -9t9 -23v-64q0 -14 -9 -23t-23 -9h-133l106 -107l86 94q9 10 22 10.5t23 -7.5l48 -44q10 -8 10.5 -21.5t-8.5 -23.5l-90 -99l57 -56q158 126 359 126t359 -126l255 254h-134q-14 0 -23 9t-9 23v64zM832 256q185 0 316.5 131.5
+t131.5 316.5t-131.5 316.5t-316.5 131.5t-316.5 -131.5t-131.5 -316.5t131.5 -316.5t316.5 -131.5z" />
+    <glyph glyph-name="_515" unicode="&#xf226;" horiz-adv-x="1792" 
+d="M1790 1007q12 -155 -52.5 -292t-186 -224t-271.5 -103v-260h224q14 0 23 -9t9 -23v-64q0 -14 -9 -23t-23 -9h-224v-224q0 -14 -9 -23t-23 -9h-64q-14 0 -23 9t-9 23v224h-512v-224q0 -14 -9 -23t-23 -9h-64q-14 0 -23 9t-9 23v224h-224q-14 0 -23 9t-9 23v64q0 14 9 23
+t23 9h224v260q-150 16 -271.5 103t-186 224t-52.5 292q17 206 164.5 356.5t352.5 169.5q206 21 377 -94q171 115 377 94q205 -19 352.5 -169.5t164.5 -356.5zM896 647q128 131 128 313t-128 313q-128 -131 -128 -313t128 -313zM576 512q115 0 218 57q-154 165 -154 391
+q0 224 154 391q-103 57 -218 57q-185 0 -316.5 -131.5t-131.5 -316.5t131.5 -316.5t316.5 -131.5zM1152 128v260q-137 15 -256 94q-119 -79 -256 -94v-260h512zM1216 512q185 0 316.5 131.5t131.5 316.5t-131.5 316.5t-316.5 131.5q-115 0 -218 -57q154 -167 154 -391
+q0 -226 -154 -391q103 -57 218 -57z" />
+    <glyph glyph-name="_516" unicode="&#xf227;" horiz-adv-x="1920" 
+d="M1536 1120q0 14 9 23t23 9h288q26 0 45 -19t19 -45v-288q0 -14 -9 -23t-23 -9h-64q-14 0 -23 9t-9 23v134l-254 -255q76 -95 107.5 -214t9.5 -247q-31 -182 -166 -312t-318 -156q-210 -29 -384.5 80t-241.5 300q-117 6 -221 57.5t-177.5 133t-113.5 192.5t-32 230
+q9 135 78 252t182 191.5t248 89.5q118 14 227.5 -19t198.5 -103l255 254h-134q-14 0 -23 9t-9 23v64q0 14 9 23t23 9h288q26 0 45 -19t19 -45v-288q0 -14 -9 -23t-23 -9h-64q-14 0 -23 9t-9 23v134l-254 -255q59 -74 93 -169q182 -9 328 -124l255 254h-134q-14 0 -23 9
+t-9 23v64zM1024 704q0 20 -4 58q-162 -25 -271 -150t-109 -292q0 -20 4 -58q162 25 271 150t109 292zM128 704q0 -168 111 -294t276 -149q-3 29 -3 59q0 210 135 369.5t338 196.5q-53 120 -163.5 193t-245.5 73q-185 0 -316.5 -131.5t-131.5 -316.5zM1088 -128
+q185 0 316.5 131.5t131.5 316.5q0 168 -111 294t-276 149q3 -28 3 -59q0 -210 -135 -369.5t-338 -196.5q53 -120 163.5 -193t245.5 -73z" />
+    <glyph glyph-name="_517" unicode="&#xf228;" horiz-adv-x="2048" 
+d="M1664 1504q0 14 9 23t23 9h288q26 0 45 -19t19 -45v-288q0 -14 -9 -23t-23 -9h-64q-14 0 -23 9t-9 23v134l-254 -255q76 -95 107.5 -214t9.5 -247q-32 -180 -164.5 -310t-313.5 -157q-223 -34 -409 90q-117 -78 -256 -93v-132h96q14 0 23 -9t9 -23v-64q0 -14 -9 -23
+t-23 -9h-96v-96q0 -14 -9 -23t-23 -9h-64q-14 0 -23 9t-9 23v96h-96q-14 0 -23 9t-9 23v64q0 14 9 23t23 9h96v132q-155 17 -279.5 109.5t-187 237.5t-39.5 307q25 187 159.5 322.5t320.5 164.5q224 34 410 -90q146 97 320 97q201 0 359 -126l255 254h-134q-14 0 -23 9
+t-9 23v64zM896 391q128 131 128 313t-128 313q-128 -131 -128 -313t128 -313zM128 704q0 -185 131.5 -316.5t316.5 -131.5q117 0 218 57q-154 167 -154 391t154 391q-101 57 -218 57q-185 0 -316.5 -131.5t-131.5 -316.5zM1216 256q185 0 316.5 131.5t131.5 316.5
+t-131.5 316.5t-316.5 131.5q-117 0 -218 -57q154 -167 154 -391t-154 -391q101 -57 218 -57z" />
+    <glyph glyph-name="_518" unicode="&#xf229;" 
+d="M1472 1408q26 0 45 -19t19 -45v-416q0 -14 -9 -23t-23 -9h-64q-14 0 -23 9t-9 23v262l-213 -214l140 -140q9 -10 9 -23t-9 -22l-46 -46q-9 -9 -22 -9t-23 9l-140 141l-78 -79q126 -156 126 -359q0 -117 -45.5 -223.5t-123 -184t-184 -123t-223.5 -45.5t-223.5 45.5
+t-184 123t-123 184t-45.5 223.5t45.5 223.5t123 184t184 123t223.5 45.5q203 0 359 -126l78 78l-172 172q-9 10 -9 23t9 22l46 46q9 9 22 9t23 -9l172 -172l213 213h-261q-14 0 -23 9t-9 23v64q0 14 9 23t23 9h416zM576 0q185 0 316.5 131.5t131.5 316.5t-131.5 316.5
+t-316.5 131.5t-316.5 -131.5t-131.5 -316.5t131.5 -316.5t316.5 -131.5z" />
+    <glyph glyph-name="_519" unicode="&#xf22a;" horiz-adv-x="1280" 
+d="M640 892q217 -24 364.5 -187.5t147.5 -384.5q0 -167 -87 -306t-236 -212t-319 -54q-133 15 -245.5 88t-182 188t-80.5 249q-12 155 52.5 292t186 224t271.5 103v132h-160q-14 0 -23 9t-9 23v64q0 14 9 23t23 9h160v165l-92 -92q-10 -9 -23 -9t-22 9l-46 46q-9 9 -9 22
+t9 23l202 201q19 19 45 19t45 -19l202 -201q9 -10 9 -23t-9 -22l-46 -46q-9 -9 -22 -9t-23 9l-92 92v-165h160q14 0 23 -9t9 -23v-64q0 -14 -9 -23t-23 -9h-160v-132zM576 -128q185 0 316.5 131.5t131.5 316.5t-131.5 316.5t-316.5 131.5t-316.5 -131.5t-131.5 -316.5
+t131.5 -316.5t316.5 -131.5z" />
+    <glyph glyph-name="_520" unicode="&#xf22b;" horiz-adv-x="2048" 
+d="M1901 621q19 -19 19 -45t-19 -45l-294 -294q-9 -10 -22.5 -10t-22.5 10l-45 45q-10 9 -10 22.5t10 22.5l185 185h-294v-224q0 -14 -9 -23t-23 -9h-64q-14 0 -23 9t-9 23v224h-132q-24 -217 -187.5 -364.5t-384.5 -147.5q-167 0 -306 87t-212 236t-54 319q15 133 88 245.5
+t188 182t249 80.5q155 12 292 -52.5t224 -186t103 -271.5h132v224q0 14 9 23t23 9h64q14 0 23 -9t9 -23v-224h294l-185 185q-10 9 -10 22.5t10 22.5l45 45q9 10 22.5 10t22.5 -10zM576 128q185 0 316.5 131.5t131.5 316.5t-131.5 316.5t-316.5 131.5t-316.5 -131.5
+t-131.5 -316.5t131.5 -316.5t316.5 -131.5z" />
+    <glyph glyph-name="_521" unicode="&#xf22c;" horiz-adv-x="1280" 
+d="M1152 960q0 -221 -147.5 -384.5t-364.5 -187.5v-612q0 -14 -9 -23t-23 -9h-64q-14 0 -23 9t-9 23v612q-217 24 -364.5 187.5t-147.5 384.5q0 117 45.5 223.5t123 184t184 123t223.5 45.5t223.5 -45.5t184 -123t123 -184t45.5 -223.5zM576 512q185 0 316.5 131.5
+t131.5 316.5t-131.5 316.5t-316.5 131.5t-316.5 -131.5t-131.5 -316.5t131.5 -316.5t316.5 -131.5z" />
+    <glyph glyph-name="_522" unicode="&#xf22d;" horiz-adv-x="1280" 
+d="M1024 576q0 185 -131.5 316.5t-316.5 131.5t-316.5 -131.5t-131.5 -316.5t131.5 -316.5t316.5 -131.5t316.5 131.5t131.5 316.5zM1152 576q0 -117 -45.5 -223.5t-123 -184t-184 -123t-223.5 -45.5t-223.5 45.5t-184 123t-123 184t-45.5 223.5t45.5 223.5t123 184t184 123
+t223.5 45.5t223.5 -45.5t184 -123t123 -184t45.5 -223.5z" />
+    <glyph glyph-name="_523" unicode="&#xf22e;" horiz-adv-x="1792" 
+ />
+    <glyph glyph-name="_524" unicode="&#xf22f;" horiz-adv-x="1792" 
+ />
+    <glyph glyph-name="_525" unicode="&#xf230;" 
+d="M1451 1408q35 0 60 -25t25 -60v-1366q0 -35 -25 -60t-60 -25h-391v595h199l30 232h-229v148q0 56 23.5 84t91.5 28l122 1v207q-63 9 -178 9q-136 0 -217.5 -80t-81.5 -226v-171h-200v-232h200v-595h-735q-35 0 -60 25t-25 60v1366q0 35 25 60t60 25h1366z" />
+    <glyph glyph-name="_526" unicode="&#xf231;" horiz-adv-x="1280" 
+d="M0 939q0 108 37.5 203.5t103.5 166.5t152 123t185 78t202 26q158 0 294 -66.5t221 -193.5t85 -287q0 -96 -19 -188t-60 -177t-100 -149.5t-145 -103t-189 -38.5q-68 0 -135 32t-96 88q-10 -39 -28 -112.5t-23.5 -95t-20.5 -71t-26 -71t-32 -62.5t-46 -77.5t-62 -86.5
+l-14 -5l-9 10q-15 157 -15 188q0 92 21.5 206.5t66.5 287.5t52 203q-32 65 -32 169q0 83 52 156t132 73q61 0 95 -40.5t34 -102.5q0 -66 -44 -191t-44 -187q0 -63 45 -104.5t109 -41.5q55 0 102 25t78.5 68t56 95t38 110.5t20 111t6.5 99.5q0 173 -109.5 269.5t-285.5 96.5
+q-200 0 -334 -129.5t-134 -328.5q0 -44 12.5 -85t27 -65t27 -45.5t12.5 -30.5q0 -28 -15 -73t-37 -45q-2 0 -17 3q-51 15 -90.5 56t-61 94.5t-32.5 108t-11 106.5z" />
+    <glyph glyph-name="_527" unicode="&#xf232;" 
+d="M985 562q13 0 97.5 -44t89.5 -53q2 -5 2 -15q0 -33 -17 -76q-16 -39 -71 -65.5t-102 -26.5q-57 0 -190 62q-98 45 -170 118t-148 185q-72 107 -71 194v8q3 91 74 158q24 22 52 22q6 0 18 -1.5t19 -1.5q19 0 26.5 -6.5t15.5 -27.5q8 -20 33 -88t25 -75q0 -21 -34.5 -57.5
+t-34.5 -46.5q0 -7 5 -15q34 -73 102 -137q56 -53 151 -101q12 -7 22 -7q15 0 54 48.5t52 48.5zM782 32q127 0 243.5 50t200.5 134t134 200.5t50 243.5t-50 243.5t-134 200.5t-200.5 134t-243.5 50t-243.5 -50t-200.5 -134t-134 -200.5t-50 -243.5q0 -203 120 -368l-79 -233
+l242 77q158 -104 345 -104zM782 1414q153 0 292.5 -60t240.5 -161t161 -240.5t60 -292.5t-60 -292.5t-161 -240.5t-240.5 -161t-292.5 -60q-195 0 -365 94l-417 -134l136 405q-108 178 -108 389q0 153 60 292.5t161 240.5t240.5 161t292.5 60z" />
+    <glyph glyph-name="_528" unicode="&#xf233;" horiz-adv-x="1792" 
+d="M128 128h1024v128h-1024v-128zM128 640h1024v128h-1024v-128zM1696 192q0 40 -28 68t-68 28t-68 -28t-28 -68t28 -68t68 -28t68 28t28 68zM128 1152h1024v128h-1024v-128zM1696 704q0 40 -28 68t-68 28t-68 -28t-28 -68t28 -68t68 -28t68 28t28 68zM1696 1216
+q0 40 -28 68t-68 28t-68 -28t-28 -68t28 -68t68 -28t68 28t28 68zM1792 384v-384h-1792v384h1792zM1792 896v-384h-1792v384h1792zM1792 1408v-384h-1792v384h1792z" />
+    <glyph glyph-name="_529" unicode="&#xf234;" horiz-adv-x="2048" 
+d="M704 640q-159 0 -271.5 112.5t-112.5 271.5t112.5 271.5t271.5 112.5t271.5 -112.5t112.5 -271.5t-112.5 -271.5t-271.5 -112.5zM1664 512h352q13 0 22.5 -9.5t9.5 -22.5v-192q0 -13 -9.5 -22.5t-22.5 -9.5h-352v-352q0 -13 -9.5 -22.5t-22.5 -9.5h-192q-13 0 -22.5 9.5
+t-9.5 22.5v352h-352q-13 0 -22.5 9.5t-9.5 22.5v192q0 13 9.5 22.5t22.5 9.5h352v352q0 13 9.5 22.5t22.5 9.5h192q13 0 22.5 -9.5t9.5 -22.5v-352zM928 288q0 -52 38 -90t90 -38h256v-238q-68 -50 -171 -50h-874q-121 0 -194 69t-73 190q0 53 3.5 103.5t14 109t26.5 108.5
+t43 97.5t62 81t85.5 53.5t111.5 20q19 0 39 -17q79 -61 154.5 -91.5t164.5 -30.5t164.5 30.5t154.5 91.5q20 17 39 17q132 0 217 -96h-223q-52 0 -90 -38t-38 -90v-192z" />
+    <glyph glyph-name="_530" unicode="&#xf235;" horiz-adv-x="2048" 
+d="M704 640q-159 0 -271.5 112.5t-112.5 271.5t112.5 271.5t271.5 112.5t271.5 -112.5t112.5 -271.5t-112.5 -271.5t-271.5 -112.5zM1781 320l249 -249q9 -9 9 -23q0 -13 -9 -22l-136 -136q-9 -9 -22 -9q-14 0 -23 9l-249 249l-249 -249q-9 -9 -23 -9q-13 0 -22 9l-136 136
+q-9 9 -9 22q0 14 9 23l249 249l-249 249q-9 9 -9 23q0 13 9 22l136 136q9 9 22 9q14 0 23 -9l249 -249l249 249q9 9 23 9q13 0 22 -9l136 -136q9 -9 9 -22q0 -14 -9 -23zM1283 320l-181 -181q-37 -37 -37 -91q0 -53 37 -90l83 -83q-21 -3 -44 -3h-874q-121 0 -194 69
+t-73 190q0 53 3.5 103.5t14 109t26.5 108.5t43 97.5t62 81t85.5 53.5t111.5 20q19 0 39 -17q154 -122 319 -122t319 122q20 17 39 17q28 0 57 -6q-28 -27 -41 -50t-13 -56q0 -54 37 -91z" />
+    <glyph glyph-name="_531" unicode="&#xf236;" horiz-adv-x="2048" 
+d="M256 512h1728q26 0 45 -19t19 -45v-448h-256v256h-1536v-256h-256v1216q0 26 19 45t45 19h128q26 0 45 -19t19 -45v-704zM832 832q0 106 -75 181t-181 75t-181 -75t-75 -181t75 -181t181 -75t181 75t75 181zM2048 576v64q0 159 -112.5 271.5t-271.5 112.5h-704
+q-26 0 -45 -19t-19 -45v-384h1152z" />
+    <glyph glyph-name="_532" unicode="&#xf237;" 
+d="M1536 1536l-192 -448h192v-192h-274l-55 -128h329v-192h-411l-357 -832l-357 832h-411v192h329l-55 128h-274v192h192l-192 448h256l323 -768h378l323 768h256zM768 320l108 256h-216z" />
+    <glyph glyph-name="_533" unicode="&#xf238;" 
+d="M1088 1536q185 0 316.5 -93.5t131.5 -226.5v-896q0 -130 -125.5 -222t-305.5 -97l213 -202q16 -15 8 -35t-30 -20h-1056q-22 0 -30 20t8 35l213 202q-180 5 -305.5 97t-125.5 222v896q0 133 131.5 226.5t316.5 93.5h640zM768 192q80 0 136 56t56 136t-56 136t-136 56
+t-136 -56t-56 -136t56 -136t136 -56zM1344 768v512h-1152v-512h1152z" />
+    <glyph glyph-name="_534" unicode="&#xf239;" 
+d="M1088 1536q185 0 316.5 -93.5t131.5 -226.5v-896q0 -130 -125.5 -222t-305.5 -97l213 -202q16 -15 8 -35t-30 -20h-1056q-22 0 -30 20t8 35l213 202q-180 5 -305.5 97t-125.5 222v896q0 133 131.5 226.5t316.5 93.5h640zM288 224q66 0 113 47t47 113t-47 113t-113 47
+t-113 -47t-47 -113t47 -113t113 -47zM704 768v512h-544v-512h544zM1248 224q66 0 113 47t47 113t-47 113t-113 47t-113 -47t-47 -113t47 -113t113 -47zM1408 768v512h-576v-512h576z" />
+    <glyph glyph-name="_535" unicode="&#xf23a;" horiz-adv-x="1792" 
+d="M597 1115v-1173q0 -25 -12.5 -42.5t-36.5 -17.5q-17 0 -33 8l-465 233q-21 10 -35.5 33.5t-14.5 46.5v1140q0 20 10 34t29 14q14 0 44 -15l511 -256q3 -3 3 -5zM661 1014l534 -866l-534 266v600zM1792 996v-1054q0 -25 -14 -40.5t-38 -15.5t-47 13l-441 220zM1789 1116
+q0 -3 -256.5 -419.5t-300.5 -487.5l-390 634l324 527q17 28 52 28q14 0 26 -6l541 -270q4 -2 4 -6z" />
+    <glyph glyph-name="_536" unicode="&#xf23b;" 
+d="M809 532l266 499h-112l-157 -312q-24 -48 -44 -92l-42 92l-155 312h-120l263 -493v-324h101v318zM1536 1408v-1536h-1536v1536h1536z" />
+    <glyph glyph-name="_537" unicode="&#xf23c;" horiz-adv-x="2296" 
+d="M478 -139q-8 -16 -27 -34.5t-37 -25.5q-25 -9 -51.5 3.5t-28.5 31.5q-1 22 40 55t68 38q23 4 34 -21.5t2 -46.5zM1819 -139q7 -16 26 -34.5t38 -25.5q25 -9 51.5 3.5t27.5 31.5q2 22 -39.5 55t-68.5 38q-22 4 -33 -21.5t-2 -46.5zM1867 -30q13 -27 56.5 -59.5t77.5 -41.5
+q45 -13 82 4.5t37 50.5q0 46 -67.5 100.5t-115.5 59.5q-40 5 -63.5 -37.5t-6.5 -76.5zM428 -30q-13 -27 -56 -59.5t-77 -41.5q-45 -13 -82 4.5t-37 50.5q0 46 67.5 100.5t115.5 59.5q40 5 63 -37.5t6 -76.5zM1158 1094h1q-41 0 -76 -15q27 -8 44 -30.5t17 -49.5
+q0 -35 -27 -60t-65 -25q-52 0 -80 43q-5 -23 -5 -42q0 -74 56 -126.5t135 -52.5q80 0 136 52.5t56 126.5t-56 126.5t-136 52.5zM1462 1312q-99 109 -220.5 131.5t-245.5 -44.5q27 60 82.5 96.5t118 39.5t121.5 -17t99.5 -74.5t44.5 -131.5zM2212 73q8 -11 -11 -42
+q7 -23 7 -40q1 -56 -44.5 -112.5t-109.5 -91.5t-118 -37q-48 -2 -92 21.5t-66 65.5q-687 -25 -1259 0q-23 -41 -66.5 -65t-92.5 -22q-86 3 -179.5 80.5t-92.5 160.5q2 22 7 40q-19 31 -11 42q6 10 31 1q14 22 41 51q-7 29 2 38q11 10 39 -4q29 20 59 34q0 29 13 37
+q23 12 51 -16q35 5 61 -2q18 -4 38 -19v73q-11 0 -18 2q-53 10 -97 44.5t-55 87.5q-9 38 0 81q15 62 93 95q2 17 19 35.5t36 23.5t33 -7.5t19 -30.5h13q46 -5 60 -23q3 -3 5 -7q10 1 30.5 3.5t30.5 3.5q-15 11 -30 17q-23 40 -91 43q0 6 1 10q-62 2 -118.5 18.5t-84.5 47.5
+q-32 36 -42.5 92t-2.5 112q16 126 90 179q23 16 52 4.5t32 -40.5q0 -1 1.5 -14t2.5 -21t3 -20t5.5 -19t8.5 -10q27 -14 76 -12q48 46 98 74q-40 4 -162 -14l47 46q61 58 163 111q145 73 282 86q-20 8 -41 15.5t-47 14t-42.5 10.5t-47.5 11t-43 10q595 126 904 -139
+q98 -84 158 -222q85 -10 121 9h1q5 3 8.5 10t5.5 19t3 19.5t3 21.5l1 14q3 28 32 40t52 -5q73 -52 91 -178q7 -57 -3.5 -113t-42.5 -91q-28 -32 -83.5 -48.5t-115.5 -18.5v-10q-71 -2 -95 -43q-14 -5 -31 -17q11 -1 32 -3.5t30 -3.5q1 5 5 8q16 18 60 23h13q5 18 19 30t33 8
+t36 -23t19 -36q79 -32 93 -95q9 -40 1 -81q-12 -53 -56 -88t-97 -44q-10 -2 -17 -2q0 -49 -1 -73q20 15 38 19q26 7 61 2q28 28 51 16q14 -9 14 -37q33 -16 59 -34q27 13 38 4q10 -10 2 -38q28 -30 41 -51q23 8 31 -1zM1937 1025q0 -29 -9 -54q82 -32 112 -132
+q4 37 -9.5 98.5t-41.5 90.5q-20 19 -36 17t-16 -20zM1859 925q35 -42 47.5 -108.5t-0.5 -124.5q67 13 97 45q13 14 18 28q-3 64 -31 114.5t-79 66.5q-15 -15 -52 -21zM1822 921q-30 0 -44 1q42 -115 53 -239q21 0 43 3q16 68 1 135t-53 100zM258 839q30 100 112 132
+q-9 25 -9 54q0 18 -16.5 20t-35.5 -17q-28 -29 -41.5 -90.5t-9.5 -98.5zM294 737q29 -31 97 -45q-13 58 -0.5 124.5t47.5 108.5v0q-37 6 -52 21q-51 -16 -78.5 -66t-31.5 -115q9 -17 18 -28zM471 683q14 124 73 235q-19 -4 -55 -18l-45 -19v1q-46 -89 -20 -196q25 -3 47 -3z
+M1434 644q8 -38 16.5 -108.5t11.5 -89.5q3 -18 9.5 -21.5t23.5 4.5q40 20 62 85.5t23 125.5q-24 2 -146 4zM1152 1285q-116 0 -199 -82.5t-83 -198.5q0 -117 83 -199.5t199 -82.5t199 82.5t83 199.5q0 116 -83 198.5t-199 82.5zM1380 646q-105 2 -211 0v1q-1 -27 2.5 -86
+t13.5 -66q29 -14 93.5 -14.5t95.5 10.5q9 3 11 39t-0.5 69.5t-4.5 46.5zM1112 447q8 4 9.5 48t-0.5 88t-4 63v1q-212 -3 -214 -3q-4 -20 -7 -62t0 -83t14 -46q34 -15 101 -16t101 10zM718 636q-16 -59 4.5 -118.5t77.5 -84.5q15 -8 24 -5t12 21q3 16 8 90t10 103
+q-69 -2 -136 -6zM591 510q3 -23 -34 -36q132 -141 271.5 -240t305.5 -154q172 49 310.5 146t293.5 250q-33 13 -30 34q0 2 0.5 3.5t1.5 3t1 2.5v1v-1q-17 2 -50 5.5t-48 4.5q-26 -90 -82 -132q-51 -38 -82 1q-5 6 -9 14q-7 13 -17 62q-2 -5 -5 -9t-7.5 -7t-8 -5.5t-9.5 -4
+l-10 -2.5t-12 -2l-12 -1.5t-13.5 -1t-13.5 -0.5q-106 -9 -163 11q-4 -17 -10 -26.5t-21 -15t-23 -7t-36 -3.5q-6 -1 -9 -1q-179 -17 -203 40q-2 -63 -56 -54q-47 8 -91 54q-12 13 -20 26q-17 29 -26 65q-58 -6 -87 -10q1 -2 4 -10zM507 -118q3 14 3 30q-17 71 -51 130
+t-73 70q-41 12 -101.5 -14.5t-104.5 -80t-39 -107.5q35 -53 100 -93t119 -42q51 -2 94 28t53 79zM510 53q23 -63 27 -119q195 113 392 174q-98 52 -180.5 120t-179.5 165q-6 -4 -29 -13q0 -1 -1 -4t-1 -5q31 -18 22 -37q-12 -23 -56 -34q-10 -13 -29 -24h-1q-2 -83 1 -150
+q19 -34 35 -73zM579 -113q532 -21 1145 0q-254 147 -428 196q-76 -35 -156 -57q-8 -3 -16 0q-65 21 -129 49q-208 -60 -416 -188h-1v-1q1 0 1 1zM1763 -67q4 54 28 120q14 38 33 71l-1 -1q3 77 3 153q-15 8 -30 25q-42 9 -56 33q-9 20 22 38q-2 4 -2 9q-16 4 -28 12
+q-204 -190 -383 -284q198 -59 414 -176zM2155 -90q5 54 -39 107.5t-104 80t-102 14.5q-38 -11 -72.5 -70.5t-51.5 -129.5q0 -16 3 -30q10 -49 53 -79t94 -28q54 2 119 42t100 93z" />
+    <glyph glyph-name="_538" unicode="&#xf23d;" horiz-adv-x="2304" 
+d="M1524 -25q0 -68 -48 -116t-116 -48t-116.5 48t-48.5 116t48.5 116.5t116.5 48.5t116 -48.5t48 -116.5zM775 -25q0 -68 -48.5 -116t-116.5 -48t-116 48t-48 116t48 116.5t116 48.5t116.5 -48.5t48.5 -116.5zM0 1469q57 -60 110.5 -104.5t121 -82t136 -63t166 -45.5
+t200 -31.5t250 -18.5t304 -9.5t372.5 -2.5q139 0 244.5 -5t181 -16.5t124 -27.5t71 -39.5t24 -51.5t-19.5 -64t-56.5 -76.5t-89.5 -91t-116 -104.5t-139 -119q-185 -157 -286 -247q29 51 76.5 109t94 105.5t94.5 98.5t83 91.5t54 80.5t13 70t-45.5 55.5t-116.5 41t-204 23.5
+t-304 5q-168 -2 -314 6t-256 23t-204.5 41t-159.5 51.5t-122.5 62.5t-91.5 66.5t-68 71.5t-50.5 69.5t-40 68t-36.5 59.5z" />
+    <glyph glyph-name="_539" unicode="&#xf23e;" horiz-adv-x="1792" 
+d="M896 1472q-169 0 -323 -66t-265.5 -177.5t-177.5 -265.5t-66 -323t66 -323t177.5 -265.5t265.5 -177.5t323 -66t323 66t265.5 177.5t177.5 265.5t66 323t-66 323t-177.5 265.5t-265.5 177.5t-323 66zM896 1536q182 0 348 -71t286 -191t191 -286t71 -348t-71 -348
+t-191 -286t-286 -191t-348 -71t-348 71t-286 191t-191 286t-71 348t71 348t191 286t286 191t348 71zM496 704q16 0 16 -16v-480q0 -16 -16 -16h-32q-16 0 -16 16v480q0 16 16 16h32zM896 640q53 0 90.5 -37.5t37.5 -90.5q0 -35 -17.5 -64t-46.5 -46v-114q0 -14 -9 -23
+t-23 -9h-64q-14 0 -23 9t-9 23v114q-29 17 -46.5 46t-17.5 64q0 53 37.5 90.5t90.5 37.5zM896 1408q209 0 385.5 -103t279.5 -279.5t103 -385.5t-103 -385.5t-279.5 -279.5t-385.5 -103t-385.5 103t-279.5 279.5t-103 385.5t103 385.5t279.5 279.5t385.5 103zM544 928v-96
+q0 -14 9 -23t23 -9h64q14 0 23 9t9 23v96q0 93 65.5 158.5t158.5 65.5t158.5 -65.5t65.5 -158.5v-96q0 -14 9 -23t23 -9h64q14 0 23 9t9 23v96q0 146 -103 249t-249 103t-249 -103t-103 -249zM1408 192v512q0 26 -19 45t-45 19h-896q-26 0 -45 -19t-19 -45v-512
+q0 -26 19 -45t45 -19h896q26 0 45 19t19 45z" />
+    <glyph glyph-name="_540" unicode="&#xf240;" horiz-adv-x="2304" 
+d="M1920 1024v-768h-1664v768h1664zM2048 448h128v384h-128v288q0 14 -9 23t-23 9h-1856q-14 0 -23 -9t-9 -23v-960q0 -14 9 -23t23 -9h1856q14 0 23 9t9 23v288zM2304 832v-384q0 -53 -37.5 -90.5t-90.5 -37.5v-160q0 -66 -47 -113t-113 -47h-1856q-66 0 -113 47t-47 113
+v960q0 66 47 113t113 47h1856q66 0 113 -47t47 -113v-160q53 0 90.5 -37.5t37.5 -90.5z" />
+    <glyph glyph-name="_541" unicode="&#xf241;" horiz-adv-x="2304" 
+d="M256 256v768h1280v-768h-1280zM2176 960q53 0 90.5 -37.5t37.5 -90.5v-384q0 -53 -37.5 -90.5t-90.5 -37.5v-160q0 -66 -47 -113t-113 -47h-1856q-66 0 -113 47t-47 113v960q0 66 47 113t113 47h1856q66 0 113 -47t47 -113v-160zM2176 448v384h-128v288q0 14 -9 23t-23 9
+h-1856q-14 0 -23 -9t-9 -23v-960q0 -14 9 -23t23 -9h1856q14 0 23 9t9 23v288h128z" />
+    <glyph glyph-name="_542" unicode="&#xf242;" horiz-adv-x="2304" 
+d="M256 256v768h896v-768h-896zM2176 960q53 0 90.5 -37.5t37.5 -90.5v-384q0 -53 -37.5 -90.5t-90.5 -37.5v-160q0 -66 -47 -113t-113 -47h-1856q-66 0 -113 47t-47 113v960q0 66 47 113t113 47h1856q66 0 113 -47t47 -113v-160zM2176 448v384h-128v288q0 14 -9 23t-23 9
+h-1856q-14 0 -23 -9t-9 -23v-960q0 -14 9 -23t23 -9h1856q14 0 23 9t9 23v288h128z" />
+    <glyph glyph-name="_543" unicode="&#xf243;" horiz-adv-x="2304" 
+d="M256 256v768h512v-768h-512zM2176 960q53 0 90.5 -37.5t37.5 -90.5v-384q0 -53 -37.5 -90.5t-90.5 -37.5v-160q0 -66 -47 -113t-113 -47h-1856q-66 0 -113 47t-47 113v960q0 66 47 113t113 47h1856q66 0 113 -47t47 -113v-160zM2176 448v384h-128v288q0 14 -9 23t-23 9
+h-1856q-14 0 -23 -9t-9 -23v-960q0 -14 9 -23t23 -9h1856q14 0 23 9t9 23v288h128z" />
+    <glyph glyph-name="_544" unicode="&#xf244;" horiz-adv-x="2304" 
+d="M2176 960q53 0 90.5 -37.5t37.5 -90.5v-384q0 -53 -37.5 -90.5t-90.5 -37.5v-160q0 -66 -47 -113t-113 -47h-1856q-66 0 -113 47t-47 113v960q0 66 47 113t113 47h1856q66 0 113 -47t47 -113v-160zM2176 448v384h-128v288q0 14 -9 23t-23 9h-1856q-14 0 -23 -9t-9 -23
+v-960q0 -14 9 -23t23 -9h1856q14 0 23 9t9 23v288h128z" />
+    <glyph glyph-name="_545" unicode="&#xf245;" horiz-adv-x="1280" 
+d="M1133 493q31 -30 14 -69q-17 -40 -59 -40h-382l201 -476q10 -25 0 -49t-34 -35l-177 -75q-25 -10 -49 0t-35 34l-191 452l-312 -312q-19 -19 -45 -19q-12 0 -24 5q-40 17 -40 59v1504q0 42 40 59q12 5 24 5q27 0 45 -19z" />
+    <glyph glyph-name="_546" unicode="&#xf246;" horiz-adv-x="1024" 
+d="M832 1408q-320 0 -320 -224v-416h128v-128h-128v-544q0 -224 320 -224h64v-128h-64q-272 0 -384 146q-112 -146 -384 -146h-64v128h64q320 0 320 224v544h-128v128h128v416q0 224 -320 224h-64v128h64q272 0 384 -146q112 146 384 146h64v-128h-64z" />
+    <glyph glyph-name="_547" unicode="&#xf247;" horiz-adv-x="2048" 
+d="M2048 1152h-128v-1024h128v-384h-384v128h-1280v-128h-384v384h128v1024h-128v384h384v-128h1280v128h384v-384zM1792 1408v-128h128v128h-128zM128 1408v-128h128v128h-128zM256 -128v128h-128v-128h128zM1664 0v128h128v1024h-128v128h-1280v-128h-128v-1024h128v-128
+h1280zM1920 -128v128h-128v-128h128zM1280 896h384v-768h-896v256h-384v768h896v-256zM512 512h640v512h-640v-512zM1536 256v512h-256v-384h-384v-128h640z" />
+    <glyph glyph-name="_548" unicode="&#xf248;" horiz-adv-x="2304" 
+d="M2304 768h-128v-640h128v-384h-384v128h-896v-128h-384v384h128v128h-384v-128h-384v384h128v640h-128v384h384v-128h896v128h384v-384h-128v-128h384v128h384v-384zM2048 1024v-128h128v128h-128zM1408 1408v-128h128v128h-128zM128 1408v-128h128v128h-128zM256 256
+v128h-128v-128h128zM1536 384h-128v-128h128v128zM384 384h896v128h128v640h-128v128h-896v-128h-128v-640h128v-128zM896 -128v128h-128v-128h128zM2176 -128v128h-128v-128h128zM2048 128v640h-128v128h-384v-384h128v-384h-384v128h-384v-128h128v-128h896v128h128z" />
+    <glyph glyph-name="_549" unicode="&#xf249;" 
+d="M1024 288v-416h-928q-40 0 -68 28t-28 68v1344q0 40 28 68t68 28h1344q40 0 68 -28t28 -68v-928h-416q-40 0 -68 -28t-28 -68zM1152 256h381q-15 -82 -65 -132l-184 -184q-50 -50 -132 -65v381z" />
+    <glyph glyph-name="_550" unicode="&#xf24a;" 
+d="M1400 256h-248v-248q29 10 41 22l185 185q12 12 22 41zM1120 384h288v896h-1280v-1280h896v288q0 40 28 68t68 28zM1536 1312v-1024q0 -40 -20 -88t-48 -76l-184 -184q-28 -28 -76 -48t-88 -20h-1024q-40 0 -68 28t-28 68v1344q0 40 28 68t68 28h1344q40 0 68 -28t28 -68
+z" />
+    <glyph glyph-name="_551" unicode="&#xf24b;" horiz-adv-x="2304" 
+d="M1951 538q0 -26 -15.5 -44.5t-38.5 -23.5q-8 -2 -18 -2h-153v140h153q10 0 18 -2q23 -5 38.5 -23.5t15.5 -44.5zM1933 751q0 -25 -15 -42t-38 -21q-3 -1 -15 -1h-139v129h139q3 0 8.5 -0.5t6.5 -0.5q23 -4 38 -21.5t15 -42.5zM728 587v308h-228v-308q0 -58 -38 -94.5
+t-105 -36.5q-108 0 -229 59v-112q53 -15 121 -23t109 -9l42 -1q328 0 328 217zM1442 403v113q-99 -52 -200 -59q-108 -8 -169 41t-61 142t61 142t169 41q101 -7 200 -58v112q-48 12 -100 19.5t-80 9.5l-28 2q-127 6 -218.5 -14t-140.5 -60t-71 -88t-22 -106t22 -106t71 -88
+t140.5 -60t218.5 -14q101 4 208 31zM2176 518q0 54 -43 88.5t-109 39.5v3q57 8 89 41.5t32 79.5q0 55 -41 88t-107 36q-3 0 -12 0.5t-14 0.5h-455v-510h491q74 0 121.5 36.5t47.5 96.5zM2304 1280v-1280q0 -52 -38 -90t-90 -38h-2048q-52 0 -90 38t-38 90v1280q0 52 38 90
+t90 38h2048q52 0 90 -38t38 -90z" />
+    <glyph glyph-name="_552" unicode="&#xf24c;" horiz-adv-x="2304" 
+d="M858 295v693q-106 -41 -172 -135.5t-66 -211.5t66 -211.5t172 -134.5zM1362 641q0 117 -66 211.5t-172 135.5v-694q106 41 172 135.5t66 211.5zM1577 641q0 -159 -78.5 -294t-213.5 -213.5t-294 -78.5q-119 0 -227.5 46.5t-187 125t-125 187t-46.5 227.5q0 159 78.5 294
+t213.5 213.5t294 78.5t294 -78.5t213.5 -213.5t78.5 -294zM1960 634q0 139 -55.5 261.5t-147.5 205.5t-213.5 131t-252.5 48h-301q-176 0 -323.5 -81t-235 -230t-87.5 -335q0 -171 87 -317.5t236 -231.5t323 -85h301q129 0 251.5 50.5t214.5 135t147.5 202.5t55.5 246z
+M2304 1280v-1280q0 -52 -38 -90t-90 -38h-2048q-52 0 -90 38t-38 90v1280q0 52 38 90t90 38h2048q52 0 90 -38t38 -90z" />
+    <glyph glyph-name="_553" unicode="&#xf24d;" horiz-adv-x="1792" 
+d="M1664 -96v1088q0 13 -9.5 22.5t-22.5 9.5h-1088q-13 0 -22.5 -9.5t-9.5 -22.5v-1088q0 -13 9.5 -22.5t22.5 -9.5h1088q13 0 22.5 9.5t9.5 22.5zM1792 992v-1088q0 -66 -47 -113t-113 -47h-1088q-66 0 -113 47t-47 113v1088q0 66 47 113t113 47h1088q66 0 113 -47t47 -113
+zM1408 1376v-160h-128v160q0 13 -9.5 22.5t-22.5 9.5h-1088q-13 0 -22.5 -9.5t-9.5 -22.5v-1088q0 -13 9.5 -22.5t22.5 -9.5h160v-128h-160q-66 0 -113 47t-47 113v1088q0 66 47 113t113 47h1088q66 0 113 -47t47 -113z" />
+    <glyph glyph-name="_554" unicode="&#xf24e;" horiz-adv-x="2304" 
+d="M1728 1088l-384 -704h768zM448 1088l-384 -704h768zM1269 1280q-14 -40 -45.5 -71.5t-71.5 -45.5v-1291h608q14 0 23 -9t9 -23v-64q0 -14 -9 -23t-23 -9h-1344q-14 0 -23 9t-9 23v64q0 14 9 23t23 9h608v1291q-40 14 -71.5 45.5t-45.5 71.5h-491q-14 0 -23 9t-9 23v64
+q0 14 9 23t23 9h491q21 57 70 92.5t111 35.5t111 -35.5t70 -92.5h491q14 0 23 -9t9 -23v-64q0 -14 -9 -23t-23 -9h-491zM1088 1264q33 0 56.5 23.5t23.5 56.5t-23.5 56.5t-56.5 23.5t-56.5 -23.5t-23.5 -56.5t23.5 -56.5t56.5 -23.5zM2176 384q0 -73 -46.5 -131t-117.5 -91
+t-144.5 -49.5t-139.5 -16.5t-139.5 16.5t-144.5 49.5t-117.5 91t-46.5 131q0 11 35 81t92 174.5t107 195.5t102 184t56 100q18 33 56 33t56 -33q4 -7 56 -100t102 -184t107 -195.5t92 -174.5t35 -81zM896 384q0 -73 -46.5 -131t-117.5 -91t-144.5 -49.5t-139.5 -16.5
+t-139.5 16.5t-144.5 49.5t-117.5 91t-46.5 131q0 11 35 81t92 174.5t107 195.5t102 184t56 100q18 33 56 33t56 -33q4 -7 56 -100t102 -184t107 -195.5t92 -174.5t35 -81z" />
+    <glyph glyph-name="_555" unicode="&#xf250;" 
+d="M1408 1408q0 -261 -106.5 -461.5t-266.5 -306.5q160 -106 266.5 -306.5t106.5 -461.5h96q14 0 23 -9t9 -23v-64q0 -14 -9 -23t-23 -9h-1472q-14 0 -23 9t-9 23v64q0 14 9 23t23 9h96q0 261 106.5 461.5t266.5 306.5q-160 106 -266.5 306.5t-106.5 461.5h-96q-14 0 -23 9
+t-9 23v64q0 14 9 23t23 9h1472q14 0 23 -9t9 -23v-64q0 -14 -9 -23t-23 -9h-96zM874 700q77 29 149 92.5t129.5 152.5t92.5 210t35 253h-1024q0 -132 35 -253t92.5 -210t129.5 -152.5t149 -92.5q19 -7 30.5 -23.5t11.5 -36.5t-11.5 -36.5t-30.5 -23.5q-77 -29 -149 -92.5
+t-129.5 -152.5t-92.5 -210t-35 -253h1024q0 132 -35 253t-92.5 210t-129.5 152.5t-149 92.5q-19 7 -30.5 23.5t-11.5 36.5t11.5 36.5t30.5 23.5z" />
+    <glyph glyph-name="_556" unicode="&#xf251;" 
+d="M1408 1408q0 -261 -106.5 -461.5t-266.5 -306.5q160 -106 266.5 -306.5t106.5 -461.5h96q14 0 23 -9t9 -23v-64q0 -14 -9 -23t-23 -9h-1472q-14 0 -23 9t-9 23v64q0 14 9 23t23 9h96q0 261 106.5 461.5t266.5 306.5q-160 106 -266.5 306.5t-106.5 461.5h-96q-14 0 -23 9
+t-9 23v64q0 14 9 23t23 9h1472q14 0 23 -9t9 -23v-64q0 -14 -9 -23t-23 -9h-96zM1280 1408h-1024q0 -66 9 -128h1006q9 61 9 128zM1280 -128q0 130 -34 249.5t-90.5 208t-126.5 152t-146 94.5h-230q-76 -31 -146 -94.5t-126.5 -152t-90.5 -208t-34 -249.5h1024z" />
+    <glyph glyph-name="_557" unicode="&#xf252;" 
+d="M1408 1408q0 -261 -106.5 -461.5t-266.5 -306.5q160 -106 266.5 -306.5t106.5 -461.5h96q14 0 23 -9t9 -23v-64q0 -14 -9 -23t-23 -9h-1472q-14 0 -23 9t-9 23v64q0 14 9 23t23 9h96q0 261 106.5 461.5t266.5 306.5q-160 106 -266.5 306.5t-106.5 461.5h-96q-14 0 -23 9
+t-9 23v64q0 14 9 23t23 9h1472q14 0 23 -9t9 -23v-64q0 -14 -9 -23t-23 -9h-96zM1280 1408h-1024q0 -206 85 -384h854q85 178 85 384zM1223 192q-54 141 -145.5 241.5t-194.5 142.5h-230q-103 -42 -194.5 -142.5t-145.5 -241.5h910z" />
+    <glyph glyph-name="_558" unicode="&#xf253;" 
+d="M1408 1408q0 -261 -106.5 -461.5t-266.5 -306.5q160 -106 266.5 -306.5t106.5 -461.5h96q14 0 23 -9t9 -23v-64q0 -14 -9 -23t-23 -9h-1472q-14 0 -23 9t-9 23v64q0 14 9 23t23 9h96q0 261 106.5 461.5t266.5 306.5q-160 106 -266.5 306.5t-106.5 461.5h-96q-14 0 -23 9
+t-9 23v64q0 14 9 23t23 9h1472q14 0 23 -9t9 -23v-64q0 -14 -9 -23t-23 -9h-96zM874 700q77 29 149 92.5t129.5 152.5t92.5 210t35 253h-1024q0 -132 35 -253t92.5 -210t129.5 -152.5t149 -92.5q19 -7 30.5 -23.5t11.5 -36.5t-11.5 -36.5t-30.5 -23.5q-137 -51 -244 -196
+h700q-107 145 -244 196q-19 7 -30.5 23.5t-11.5 36.5t11.5 36.5t30.5 23.5z" />
+    <glyph glyph-name="_559" unicode="&#xf254;" 
+d="M1504 -64q14 0 23 -9t9 -23v-128q0 -14 -9 -23t-23 -9h-1472q-14 0 -23 9t-9 23v128q0 14 9 23t23 9h1472zM130 0q3 55 16 107t30 95t46 87t53.5 76t64.5 69.5t66 60t70.5 55t66.5 47.5t65 43q-43 28 -65 43t-66.5 47.5t-70.5 55t-66 60t-64.5 69.5t-53.5 76t-46 87
+t-30 95t-16 107h1276q-3 -55 -16 -107t-30 -95t-46 -87t-53.5 -76t-64.5 -69.5t-66 -60t-70.5 -55t-66.5 -47.5t-65 -43q43 -28 65 -43t66.5 -47.5t70.5 -55t66 -60t64.5 -69.5t53.5 -76t46 -87t30 -95t16 -107h-1276zM1504 1536q14 0 23 -9t9 -23v-128q0 -14 -9 -23t-23 -9
+h-1472q-14 0 -23 9t-9 23v128q0 14 9 23t23 9h1472z" />
+    <glyph glyph-name="_560" unicode="&#xf255;" 
+d="M768 1152q-53 0 -90.5 -37.5t-37.5 -90.5v-128h-32v93q0 48 -32 81.5t-80 33.5q-46 0 -79 -33t-33 -79v-429l-32 30v172q0 48 -32 81.5t-80 33.5q-46 0 -79 -33t-33 -79v-224q0 -47 35 -82l310 -296q39 -39 39 -102q0 -26 19 -45t45 -19h640q26 0 45 19t19 45v25
+q0 41 10 77l108 436q10 36 10 77v246q0 48 -32 81.5t-80 33.5q-46 0 -79 -33t-33 -79v-32h-32v125q0 40 -25 72.5t-64 40.5q-14 2 -23 2q-46 0 -79 -33t-33 -79v-128h-32v122q0 51 -32.5 89.5t-82.5 43.5q-5 1 -13 1zM768 1280q84 0 149 -50q57 34 123 34q59 0 111 -27
+t86 -76q27 7 59 7q100 0 170 -71.5t70 -171.5v-246q0 -51 -13 -108l-109 -436q-6 -24 -6 -71q0 -80 -56 -136t-136 -56h-640q-84 0 -138 58.5t-54 142.5l-308 296q-76 73 -76 175v224q0 99 70.5 169.5t169.5 70.5q11 0 16 -1q6 95 75.5 160t164.5 65q52 0 98 -21
+q72 69 174 69z" />
+    <glyph glyph-name="_561" unicode="&#xf256;" horiz-adv-x="1792" 
+d="M880 1408q-46 0 -79 -33t-33 -79v-656h-32v528q0 46 -33 79t-79 33t-79 -33t-33 -79v-528v-256l-154 205q-38 51 -102 51q-53 0 -90.5 -37.5t-37.5 -90.5q0 -43 26 -77l384 -512q38 -51 102 -51h688q34 0 61 22t34 56l76 405q5 32 5 59v498q0 46 -33 79t-79 33t-79 -33
+t-33 -79v-272h-32v528q0 46 -33 79t-79 33t-79 -33t-33 -79v-528h-32v656q0 46 -33 79t-79 33zM880 1536q68 0 125.5 -35.5t88.5 -96.5q19 4 42 4q99 0 169.5 -70.5t70.5 -169.5v-17q105 6 180.5 -64t75.5 -175v-498q0 -40 -8 -83l-76 -404q-14 -79 -76.5 -131t-143.5 -52
+h-688q-60 0 -114.5 27.5t-90.5 74.5l-384 512q-51 68 -51 154q0 106 75 181t181 75q78 0 128 -34v434q0 99 70.5 169.5t169.5 70.5q23 0 42 -4q31 61 88.5 96.5t125.5 35.5z" />
+    <glyph glyph-name="_562" unicode="&#xf257;" horiz-adv-x="1792" 
+d="M1073 -128h-177q-163 0 -226 141q-23 49 -23 102v5q-62 30 -98.5 88.5t-36.5 127.5q0 38 5 48h-261q-106 0 -181 75t-75 181t75 181t181 75h113l-44 17q-74 28 -119.5 93.5t-45.5 145.5q0 106 75 181t181 75q46 0 91 -17l628 -239h401q106 0 181 -75t75 -181v-668
+q0 -88 -54 -157.5t-140 -90.5l-339 -85q-92 -23 -186 -23zM1024 583l-155 -71l-163 -74q-30 -14 -48 -41.5t-18 -60.5q0 -46 33 -79t79 -33q26 0 46 10l338 154q-49 10 -80.5 50t-31.5 90v55zM1344 272q0 46 -33 79t-79 33q-26 0 -46 -10l-290 -132q-28 -13 -37 -17
+t-30.5 -17t-29.5 -23.5t-16 -29t-8 -40.5q0 -50 31.5 -82t81.5 -32q20 0 38 9l352 160q30 14 48 41.5t18 60.5zM1112 1024l-650 248q-24 8 -46 8q-53 0 -90.5 -37.5t-37.5 -90.5q0 -40 22.5 -73t59.5 -47l526 -200v-64h-640q-53 0 -90.5 -37.5t-37.5 -90.5t37.5 -90.5
+t90.5 -37.5h535l233 106v198q0 63 46 106l111 102h-69zM1073 0q82 0 155 19l339 85q43 11 70 45.5t27 78.5v668q0 53 -37.5 90.5t-90.5 37.5h-308l-136 -126q-36 -33 -36 -82v-296q0 -46 33 -77t79 -31t79 35t33 81v208h32v-208q0 -70 -57 -114q52 -8 86.5 -48.5t34.5 -93.5
+q0 -42 -23 -78t-61 -53l-310 -141h91z" />
+    <glyph glyph-name="_563" unicode="&#xf258;" horiz-adv-x="2048" 
+d="M1151 1536q61 0 116 -28t91 -77l572 -781q118 -159 118 -359v-355q0 -80 -56 -136t-136 -56h-384q-80 0 -136 56t-56 136v177l-286 143h-546q-80 0 -136 56t-56 136v32q0 119 84.5 203.5t203.5 84.5h420l42 128h-686q-100 0 -173.5 67.5t-81.5 166.5q-65 79 -65 182v32
+q0 80 56 136t136 56h959zM1920 -64v355q0 157 -93 284l-573 781q-39 52 -103 52h-959q-26 0 -45 -19t-19 -45q0 -32 1.5 -49.5t9.5 -40.5t25 -43q10 31 35.5 50t56.5 19h832v-32h-832q-26 0 -45 -19t-19 -45q0 -44 3 -58q8 -44 44 -73t81 -29h640h91q40 0 68 -28t28 -68
+q0 -15 -5 -30l-64 -192q-10 -29 -35 -47.5t-56 -18.5h-443q-66 0 -113 -47t-47 -113v-32q0 -26 19 -45t45 -19h561q16 0 29 -7l317 -158q24 -13 38.5 -36t14.5 -50v-197q0 -26 19 -45t45 -19h384q26 0 45 19t19 45z" />
+    <glyph glyph-name="_564" unicode="&#xf259;" horiz-adv-x="2048" 
+d="M459 -256q-77 0 -137.5 47.5t-79.5 122.5l-101 401q-13 57 -13 108q0 45 -5 67l-116 477q-7 27 -7 57q0 93 62 161t155 78q17 85 82.5 139t152.5 54q83 0 148 -51.5t85 -132.5l83 -348l103 428q20 81 85 132.5t148 51.5q89 0 155.5 -57.5t80.5 -144.5q92 -10 152 -79
+t60 -162q0 -24 -7 -59l-123 -512q10 7 37.5 28.5t38.5 29.5t35 23t41 20.5t41.5 11t49.5 5.5q105 0 180 -74t75 -179q0 -62 -28.5 -118t-78.5 -94l-507 -380q-68 -51 -153 -51h-694zM1104 1408q-38 0 -68.5 -24t-39.5 -62l-164 -682h-127l-145 602q-9 38 -39.5 62t-68.5 24
+q-48 0 -80 -33t-32 -80q0 -15 3 -28l132 -547h-26l-99 408q-9 37 -40 62.5t-69 25.5q-47 0 -80 -33t-33 -79q0 -14 3 -26l116 -478q7 -28 9 -86t10 -88l100 -401q8 -32 34 -52.5t59 -20.5h694q42 0 76 26l507 379q56 43 56 110q0 52 -37.5 88.5t-89.5 36.5q-43 0 -77 -26
+l-307 -230v227q0 4 32 138t68 282t39 161q4 18 4 29q0 47 -32 81t-79 34q-39 0 -69.5 -24t-39.5 -62l-116 -482h-26l150 624q3 14 3 28q0 48 -31.5 82t-79.5 34z" />
+    <glyph glyph-name="_565" unicode="&#xf25a;" horiz-adv-x="1792" 
+d="M640 1408q-53 0 -90.5 -37.5t-37.5 -90.5v-512v-384l-151 202q-41 54 -107 54q-52 0 -89 -38t-37 -90q0 -43 26 -77l384 -512q38 -51 102 -51h718q22 0 39.5 13.5t22.5 34.5l92 368q24 96 24 194v217q0 41 -28 71t-68 30t-68 -28t-28 -68h-32v61q0 48 -32 81.5t-80 33.5
+q-46 0 -79 -33t-33 -79v-64h-32v90q0 55 -37 94.5t-91 39.5q-53 0 -90.5 -37.5t-37.5 -90.5v-96h-32v570q0 55 -37 94.5t-91 39.5zM640 1536q107 0 181.5 -77.5t74.5 -184.5v-220q22 2 32 2q99 0 173 -69q47 21 99 21q113 0 184 -87q27 7 56 7q94 0 159 -67.5t65 -161.5
+v-217q0 -116 -28 -225l-92 -368q-16 -64 -68 -104.5t-118 -40.5h-718q-60 0 -114.5 27.5t-90.5 74.5l-384 512q-51 68 -51 154q0 105 74.5 180.5t179.5 75.5q71 0 130 -35v547q0 106 75 181t181 75zM768 128v384h-32v-384h32zM1024 128v384h-32v-384h32zM1280 128v384h-32
+v-384h32z" />
+    <glyph glyph-name="_566" unicode="&#xf25b;" 
+d="M1288 889q60 0 107 -23q141 -63 141 -226v-177q0 -94 -23 -186l-85 -339q-21 -86 -90.5 -140t-157.5 -54h-668q-106 0 -181 75t-75 181v401l-239 628q-17 45 -17 91q0 106 75 181t181 75q80 0 145.5 -45.5t93.5 -119.5l17 -44v113q0 106 75 181t181 75t181 -75t75 -181
+v-261q27 5 48 5q69 0 127.5 -36.5t88.5 -98.5zM1072 896q-33 0 -60.5 -18t-41.5 -48l-74 -163l-71 -155h55q50 0 90 -31.5t50 -80.5l154 338q10 20 10 46q0 46 -33 79t-79 33zM1293 761q-22 0 -40.5 -8t-29 -16t-23.5 -29.5t-17 -30.5t-17 -37l-132 -290q-10 -20 -10 -46
+q0 -46 33 -79t79 -33q33 0 60.5 18t41.5 48l160 352q9 18 9 38q0 50 -32 81.5t-82 31.5zM128 1120q0 -22 8 -46l248 -650v-69l102 111q43 46 106 46h198l106 233v535q0 53 -37.5 90.5t-90.5 37.5t-90.5 -37.5t-37.5 -90.5v-640h-64l-200 526q-14 37 -47 59.5t-73 22.5
+q-53 0 -90.5 -37.5t-37.5 -90.5zM1180 -128q44 0 78.5 27t45.5 70l85 339q19 73 19 155v91l-141 -310q-17 -38 -53 -61t-78 -23q-53 0 -93.5 34.5t-48.5 86.5q-44 -57 -114 -57h-208v32h208q46 0 81 33t35 79t-31 79t-77 33h-296q-49 0 -82 -36l-126 -136v-308
+q0 -53 37.5 -90.5t90.5 -37.5h668z" />
+    <glyph glyph-name="_567" unicode="&#xf25c;" horiz-adv-x="1973" 
+d="M857 992v-117q0 -13 -9.5 -22t-22.5 -9h-298v-812q0 -13 -9 -22.5t-22 -9.5h-135q-13 0 -22.5 9t-9.5 23v812h-297q-13 0 -22.5 9t-9.5 22v117q0 14 9 23t23 9h793q13 0 22.5 -9.5t9.5 -22.5zM1895 995l77 -961q1 -13 -8 -24q-10 -10 -23 -10h-134q-12 0 -21 8.5
+t-10 20.5l-46 588l-189 -425q-8 -19 -29 -19h-120q-20 0 -29 19l-188 427l-45 -590q-1 -12 -10 -20.5t-21 -8.5h-135q-13 0 -23 10q-9 10 -9 24l78 961q1 12 10 20.5t21 8.5h142q20 0 29 -19l220 -520q10 -24 20 -51q3 7 9.5 24.5t10.5 26.5l221 520q9 19 29 19h141
+q13 0 22 -8.5t10 -20.5z" />
+    <glyph glyph-name="_568" unicode="&#xf25d;" horiz-adv-x="1792" 
+d="M1042 833q0 88 -60 121q-33 18 -117 18h-123v-281h162q66 0 102 37t36 105zM1094 548l205 -373q8 -17 -1 -31q-8 -16 -27 -16h-152q-20 0 -28 17l-194 365h-155v-350q0 -14 -9 -23t-23 -9h-134q-14 0 -23 9t-9 23v960q0 14 9 23t23 9h294q128 0 190 -24q85 -31 134 -109
+t49 -180q0 -92 -42.5 -165.5t-115.5 -109.5q6 -10 9 -16zM896 1376q-150 0 -286 -58.5t-234.5 -157t-157 -234.5t-58.5 -286t58.5 -286t157 -234.5t234.5 -157t286 -58.5t286 58.5t234.5 157t157 234.5t58.5 286t-58.5 286t-157 234.5t-234.5 157t-286 58.5zM1792 640
+q0 -182 -71 -348t-191 -286t-286 -191t-348 -71t-348 71t-286 191t-191 286t-71 348t71 348t191 286t286 191t348 71t348 -71t286 -191t191 -286t71 -348z" />
+    <glyph glyph-name="_569" unicode="&#xf25e;" horiz-adv-x="1792" 
+d="M605 303q153 0 257 104q14 18 3 36l-45 82q-6 13 -24 17q-16 2 -27 -11l-4 -3q-4 -4 -11.5 -10t-17.5 -13.5t-23.5 -14.5t-28.5 -13t-33.5 -9.5t-37.5 -3.5q-76 0 -125 50t-49 127q0 76 48 125.5t122 49.5q37 0 71.5 -14t50.5 -28l16 -14q11 -11 26 -10q16 2 24 14l53 78
+q13 20 -2 39q-3 4 -11 12t-30 23.5t-48.5 28t-67.5 22.5t-86 10q-148 0 -246 -96.5t-98 -240.5q0 -146 97 -241.5t247 -95.5zM1235 303q153 0 257 104q14 18 4 36l-45 82q-8 14 -25 17q-16 2 -27 -11l-4 -3q-4 -4 -11.5 -10t-17.5 -13.5t-23.5 -14.5t-28.5 -13t-33.5 -9.5
+t-37.5 -3.5q-76 0 -125 50t-49 127q0 76 48 125.5t122 49.5q37 0 71.5 -14t50.5 -28l16 -14q11 -11 26 -10q16 2 24 14l53 78q13 20 -2 39q-3 4 -11 12t-30 23.5t-48.5 28t-67.5 22.5t-86 10q-147 0 -245.5 -96.5t-98.5 -240.5q0 -146 97 -241.5t247 -95.5zM896 1376
+q-150 0 -286 -58.5t-234.5 -157t-157 -234.5t-58.5 -286t58.5 -286t157 -234.5t234.5 -157t286 -58.5t286 58.5t234.5 157t157 234.5t58.5 286t-58.5 286t-157 234.5t-234.5 157t-286 58.5zM896 1536q182 0 348 -71t286 -191t191 -286t71 -348t-71 -348t-191 -286t-286 -191
+t-348 -71t-348 71t-286 191t-191 286t-71 348t71 348t191 286t286 191t348 71z" />
+    <glyph glyph-name="f260" unicode="&#xf260;" horiz-adv-x="2048" 
+d="M736 736l384 -384l-384 -384l-672 672l672 672l168 -168l-96 -96l-72 72l-480 -480l480 -480l193 193l-289 287zM1312 1312l672 -672l-672 -672l-168 168l96 96l72 -72l480 480l-480 480l-193 -193l289 -287l-96 -96l-384 384z" />
+    <glyph glyph-name="f261" unicode="&#xf261;" horiz-adv-x="1792" 
+d="M717 182l271 271l-279 279l-88 -88l192 -191l-96 -96l-279 279l279 279l40 -40l87 87l-127 128l-454 -454zM1075 190l454 454l-454 454l-271 -271l279 -279l88 88l-192 191l96 96l279 -279l-279 -279l-40 40l-87 -88zM1792 640q0 -182 -71 -348t-191 -286t-286 -191
+t-348 -71t-348 71t-286 191t-191 286t-71 348t71 348t191 286t286 191t348 71t348 -71t286 -191t191 -286t71 -348z" />
+    <glyph glyph-name="_572" unicode="&#xf262;" horiz-adv-x="2304" 
+d="M651 539q0 -39 -27.5 -66.5t-65.5 -27.5q-39 0 -66.5 27.5t-27.5 66.5q0 38 27.5 65.5t66.5 27.5q38 0 65.5 -27.5t27.5 -65.5zM1805 540q0 -39 -27.5 -66.5t-66.5 -27.5t-66.5 27.5t-27.5 66.5t27.5 66t66.5 27t66.5 -27t27.5 -66zM765 539q0 79 -56.5 136t-136.5 57
+t-136.5 -56.5t-56.5 -136.5t56.5 -136.5t136.5 -56.5t136.5 56.5t56.5 136.5zM1918 540q0 80 -56.5 136.5t-136.5 56.5q-79 0 -136 -56.5t-57 -136.5t56.5 -136.5t136.5 -56.5t136.5 56.5t56.5 136.5zM850 539q0 -116 -81.5 -197.5t-196.5 -81.5q-116 0 -197.5 82t-81.5 197
+t82 196.5t197 81.5t196.5 -81.5t81.5 -196.5zM2004 540q0 -115 -81.5 -196.5t-197.5 -81.5q-115 0 -196.5 81.5t-81.5 196.5t81.5 196.5t196.5 81.5q116 0 197.5 -81.5t81.5 -196.5zM1040 537q0 191 -135.5 326.5t-326.5 135.5q-125 0 -231 -62t-168 -168.5t-62 -231.5
+t62 -231.5t168 -168.5t231 -62q191 0 326.5 135.5t135.5 326.5zM1708 1110q-254 111 -556 111q-319 0 -573 -110q117 0 223 -45.5t182.5 -122.5t122 -183t45.5 -223q0 115 43.5 219.5t118 180.5t177.5 123t217 50zM2187 537q0 191 -135 326.5t-326 135.5t-326.5 -135.5
+t-135.5 -326.5t135.5 -326.5t326.5 -135.5t326 135.5t135 326.5zM1921 1103h383q-44 -51 -75 -114.5t-40 -114.5q110 -151 110 -337q0 -156 -77 -288t-209 -208.5t-287 -76.5q-133 0 -249 56t-196 155q-47 -56 -129 -179q-11 22 -53.5 82.5t-74.5 97.5
+q-80 -99 -196.5 -155.5t-249.5 -56.5q-155 0 -287 76.5t-209 208.5t-77 288q0 186 110 337q-9 51 -40 114.5t-75 114.5h365q149 100 355 156.5t432 56.5q224 0 421 -56t348 -157z" />
+    <glyph glyph-name="f263" unicode="&#xf263;" horiz-adv-x="1280" 
+d="M640 629q-188 0 -321 133t-133 320q0 188 133 321t321 133t321 -133t133 -321q0 -187 -133 -320t-321 -133zM640 1306q-92 0 -157.5 -65.5t-65.5 -158.5q0 -92 65.5 -157.5t157.5 -65.5t157.5 65.5t65.5 157.5q0 93 -65.5 158.5t-157.5 65.5zM1163 574q13 -27 15 -49.5
+t-4.5 -40.5t-26.5 -38.5t-42.5 -37t-61.5 -41.5q-115 -73 -315 -94l73 -72l267 -267q30 -31 30 -74t-30 -73l-12 -13q-31 -30 -74 -30t-74 30q-67 68 -267 268l-267 -268q-31 -30 -74 -30t-73 30l-12 13q-31 30 -31 73t31 74l267 267l72 72q-203 21 -317 94
+q-39 25 -61.5 41.5t-42.5 37t-26.5 38.5t-4.5 40.5t15 49.5q10 20 28 35t42 22t56 -2t65 -35q5 -4 15 -11t43 -24.5t69 -30.5t92 -24t113 -11q91 0 174 25.5t120 50.5l38 25q33 26 65 35t56 2t42 -22t28 -35z" />
+    <glyph glyph-name="_574" unicode="&#xf264;" 
+d="M927 956q0 -66 -46.5 -112.5t-112.5 -46.5t-112.5 46.5t-46.5 112.5t46.5 112.5t112.5 46.5t112.5 -46.5t46.5 -112.5zM1141 593q-10 20 -28 32t-47.5 9.5t-60.5 -27.5q-10 -8 -29 -20t-81 -32t-127 -20t-124 18t-86 36l-27 18q-31 25 -60.5 27.5t-47.5 -9.5t-28 -32
+q-22 -45 -2 -74.5t87 -73.5q83 -53 226 -67l-51 -52q-142 -142 -191 -190q-22 -22 -22 -52.5t22 -52.5l9 -9q22 -22 52.5 -22t52.5 22l191 191q114 -115 191 -191q22 -22 52.5 -22t52.5 22l9 9q22 22 22 52.5t-22 52.5l-191 190l-52 52q141 14 225 67q67 44 87 73.5t-2 74.5
+zM1092 956q0 134 -95 229t-229 95t-229 -95t-95 -229t95 -229t229 -95t229 95t95 229zM1536 1120v-960q0 -119 -84.5 -203.5t-203.5 -84.5h-960q-119 0 -203.5 84.5t-84.5 203.5v960q0 119 84.5 203.5t203.5 84.5h960q119 0 203.5 -84.5t84.5 -203.5z" />
+    <glyph glyph-name="_575" unicode="&#xf265;" horiz-adv-x="1720" 
+d="M1565 1408q65 0 110 -45.5t45 -110.5v-519q0 -176 -68 -336t-182.5 -275t-274 -182.5t-334.5 -67.5q-176 0 -335.5 67.5t-274.5 182.5t-183 275t-68 336v519q0 64 46 110t110 46h1409zM861 344q47 0 82 33l404 388q37 35 37 85q0 49 -34.5 83.5t-83.5 34.5q-47 0 -82 -33
+l-323 -310l-323 310q-35 33 -81 33q-49 0 -83.5 -34.5t-34.5 -83.5q0 -51 36 -85l405 -388q33 -33 81 -33z" />
+    <glyph glyph-name="_576" unicode="&#xf266;" horiz-adv-x="2304" 
+d="M1494 -103l-295 695q-25 -49 -158.5 -305.5t-198.5 -389.5q-1 -1 -27.5 -0.5t-26.5 1.5q-82 193 -255.5 587t-259.5 596q-21 50 -66.5 107.5t-103.5 100.5t-102 43q0 5 -0.5 24t-0.5 27h583v-50q-39 -2 -79.5 -16t-66.5 -43t-10 -64q26 -59 216.5 -499t235.5 -540
+q31 61 140 266.5t131 247.5q-19 39 -126 281t-136 295q-38 69 -201 71v50l513 -1v-47q-60 -2 -93.5 -25t-12.5 -69q33 -70 87 -189.5t86 -187.5q110 214 173 363q24 55 -10 79.5t-129 26.5q1 7 1 25v24q64 0 170.5 0.5t180 1t92.5 0.5v-49q-62 -2 -119 -33t-90 -81
+l-213 -442q13 -33 127.5 -290t121.5 -274l441 1017q-14 38 -49.5 62.5t-65 31.5t-55.5 8v50l460 -4l1 -2l-1 -44q-139 -4 -201 -145q-526 -1216 -559 -1291h-49z" />
+    <glyph glyph-name="_577" unicode="&#xf267;" horiz-adv-x="1792" 
+d="M949 643q0 -26 -16.5 -45t-41.5 -19q-26 0 -45 16.5t-19 41.5q0 26 17 45t42 19t44 -16.5t19 -41.5zM964 585l350 581q-9 -8 -67.5 -62.5t-125.5 -116.5t-136.5 -127t-117 -110.5t-50.5 -51.5l-349 -580q7 7 67 62t126 116.5t136 127t117 111t50 50.5zM1611 640
+q0 -201 -104 -371q-3 2 -17 11t-26.5 16.5t-16.5 7.5q-13 0 -13 -13q0 -10 59 -44q-74 -112 -184.5 -190.5t-241.5 -110.5l-16 67q-1 10 -15 10q-5 0 -8 -5.5t-2 -9.5l16 -68q-72 -15 -146 -15q-199 0 -372 105q1 2 13 20.5t21.5 33.5t9.5 19q0 13 -13 13q-6 0 -17 -14.5
+t-22.5 -34.5t-13.5 -23q-113 75 -192 187.5t-110 244.5l69 15q10 3 10 15q0 5 -5.5 8t-10.5 2l-68 -15q-14 72 -14 139q0 206 109 379q2 -1 18.5 -12t30 -19t17.5 -8q13 0 13 12q0 6 -12.5 15.5t-32.5 21.5l-20 12q77 112 189 189t244 107l15 -67q2 -10 15 -10q5 0 8 5.5
+t2 10.5l-15 66q71 13 134 13q204 0 379 -109q-39 -56 -39 -65q0 -13 12 -13q11 0 48 64q111 -75 187.5 -186t107.5 -241l-56 -12q-10 -2 -10 -16q0 -5 5.5 -8t9.5 -2l57 13q14 -72 14 -140zM1696 640q0 163 -63.5 311t-170.5 255t-255 170.5t-311 63.5t-311 -63.5
+t-255 -170.5t-170.5 -255t-63.5 -311t63.5 -311t170.5 -255t255 -170.5t311 -63.5t311 63.5t255 170.5t170.5 255t63.5 311zM1792 640q0 -182 -71 -348t-191 -286t-286 -191t-348 -71t-348 71t-286 191t-191 286t-71 348t71 348t191 286t286 191t348 71t348 -71t286 -191
+t191 -286t71 -348z" />
+    <glyph glyph-name="_578" unicode="&#xf268;" horiz-adv-x="1792" 
+d="M893 1536q240 2 451 -120q232 -134 352 -372l-742 39q-160 9 -294 -74.5t-185 -229.5l-276 424q128 159 311 245.5t383 87.5zM146 1131l337 -663q72 -143 211 -217t293 -45l-230 -451q-212 33 -385 157.5t-272.5 316t-99.5 411.5q0 267 146 491zM1732 962
+q58 -150 59.5 -310.5t-48.5 -306t-153 -272t-246 -209.5q-230 -133 -498 -119l405 623q88 131 82.5 290.5t-106.5 277.5zM896 942q125 0 213.5 -88.5t88.5 -213.5t-88.5 -213.5t-213.5 -88.5t-213.5 88.5t-88.5 213.5t88.5 213.5t213.5 88.5z" />
+    <glyph glyph-name="_579" unicode="&#xf269;" horiz-adv-x="1792" 
+d="M903 -256q-283 0 -504.5 150.5t-329.5 398.5q-58 131 -67 301t26 332.5t111 312t179 242.5l-11 -281q11 14 68 15.5t70 -15.5q42 81 160.5 138t234.5 59q-54 -45 -119.5 -148.5t-58.5 -163.5q25 -8 62.5 -13.5t63 -7.5t68 -4t50.5 -3q15 -5 9.5 -45.5t-30.5 -75.5
+q-5 -7 -16.5 -18.5t-56.5 -35.5t-101 -34l15 -189l-139 67q-18 -43 -7.5 -81.5t36 -66.5t65.5 -41.5t81 -6.5q51 9 98 34.5t83.5 45t73.5 17.5q61 -4 89.5 -33t19.5 -65q-1 -2 -2.5 -5.5t-8.5 -12.5t-18 -15.5t-31.5 -10.5t-46.5 -1q-60 -95 -144.5 -135.5t-209.5 -29.5
+q74 -61 162.5 -82.5t168.5 -6t154.5 52t128 87.5t80.5 104q43 91 39 192.5t-37.5 188.5t-78.5 125q87 -38 137 -79.5t77 -112.5q15 170 -57.5 343t-209.5 284q265 -77 412 -279.5t151 -517.5q2 -127 -40.5 -255t-123.5 -238t-189 -196t-247.5 -135.5t-288.5 -49.5z" />
+    <glyph glyph-name="_580" unicode="&#xf26a;" horiz-adv-x="1792" 
+d="M1493 1308q-165 110 -359 110q-155 0 -293 -73t-240 -200q-75 -93 -119.5 -218t-48.5 -266v-42q4 -141 48.5 -266t119.5 -218q102 -127 240 -200t293 -73q194 0 359 110q-121 -108 -274.5 -168t-322.5 -60q-29 0 -43 1q-175 8 -333 82t-272 193t-181 281t-67 339
+q0 182 71 348t191 286t286 191t348 71h3q168 -1 320.5 -60.5t273.5 -167.5zM1792 640q0 -192 -77 -362.5t-213 -296.5q-104 -63 -222 -63q-137 0 -255 84q154 56 253.5 233t99.5 405q0 227 -99 404t-253 234q119 83 254 83q119 0 226 -65q135 -125 210.5 -295t75.5 -361z
+" />
+    <glyph glyph-name="_581" unicode="&#xf26b;" horiz-adv-x="1792" 
+d="M1792 599q0 -56 -7 -104h-1151q0 -146 109.5 -244.5t257.5 -98.5q99 0 185.5 46.5t136.5 130.5h423q-56 -159 -170.5 -281t-267.5 -188.5t-321 -66.5q-187 0 -356 83q-228 -116 -394 -116q-237 0 -237 263q0 115 45 275q17 60 109 229q199 360 475 606
+q-184 -79 -427 -354q63 274 283.5 449.5t501.5 175.5q30 0 45 -1q255 117 433 117q64 0 116 -13t94.5 -40.5t66.5 -76.5t24 -115q0 -116 -75 -286q101 -182 101 -390zM1722 1239q0 83 -53 132t-137 49q-108 0 -254 -70q121 -47 222.5 -131.5t170.5 -195.5q51 135 51 216z
+M128 2q0 -86 48.5 -132.5t134.5 -46.5q115 0 266 83q-122 72 -213.5 183t-137.5 245q-98 -205 -98 -332zM632 715h728q-5 142 -113 237t-251 95q-144 0 -251.5 -95t-112.5 -237z" />
+    <glyph glyph-name="_582" unicode="&#xf26c;" horiz-adv-x="2048" 
+d="M1792 288v960q0 13 -9.5 22.5t-22.5 9.5h-1600q-13 0 -22.5 -9.5t-9.5 -22.5v-960q0 -13 9.5 -22.5t22.5 -9.5h1600q13 0 22.5 9.5t9.5 22.5zM1920 1248v-960q0 -66 -47 -113t-113 -47h-736v-128h352q14 0 23 -9t9 -23v-64q0 -14 -9 -23t-23 -9h-832q-14 0 -23 9t-9 23
+v64q0 14 9 23t23 9h352v128h-736q-66 0 -113 47t-47 113v960q0 66 47 113t113 47h1600q66 0 113 -47t47 -113z" />
+    <glyph glyph-name="_583" unicode="&#xf26d;" horiz-adv-x="1792" 
+d="M138 1408h197q-70 -64 -126 -149q-36 -56 -59 -115t-30 -125.5t-8.5 -120t10.5 -132t21 -126t28 -136.5q4 -19 6 -28q51 -238 81 -329q57 -171 152 -275h-272q-48 0 -82 34t-34 82v1304q0 48 34 82t82 34zM1346 1408h308q48 0 82 -34t34 -82v-1304q0 -48 -34 -82t-82 -34
+h-178q212 210 196 565l-469 -101q-2 -45 -12 -82t-31 -72t-59.5 -59.5t-93.5 -36.5q-123 -26 -199 40q-32 27 -53 61t-51.5 129t-64.5 258q-35 163 -45.5 263t-5.5 139t23 77q20 41 62.5 73t102.5 45q45 12 83.5 6.5t67 -17t54 -35t43 -48t34.5 -56.5l468 100
+q-68 175 -180 287z" />
+    <glyph glyph-name="_584" unicode="&#xf26e;" 
+d="M1401 -11l-6 -6q-113 -113 -259 -175q-154 -64 -317 -64q-165 0 -317 64q-148 63 -259 175q-113 112 -175 258q-42 103 -54 189q-4 28 48 36q51 8 56 -20q1 -1 1 -4q18 -90 46 -159q50 -124 152 -226q98 -98 226 -152q132 -56 276 -56q143 0 276 56q128 55 225 152l6 6
+q10 10 25 6q12 -3 33 -22q36 -37 17 -58zM929 604l-66 -66l63 -63q21 -21 -7 -49q-17 -17 -32 -17q-10 0 -19 10l-62 61l-66 -66q-5 -5 -15 -5q-15 0 -31 16l-2 2q-18 15 -18 29q0 7 8 17l66 65l-66 66q-16 16 14 45q18 18 31 18q6 0 13 -5l65 -66l65 65q18 17 48 -13
+q27 -27 11 -44zM1400 547q0 -118 -46 -228q-45 -105 -126 -186q-80 -80 -187 -126t-228 -46t-228 46t-187 126q-82 82 -125 186q-15 33 -15 40h-1q-9 27 43 44q50 16 60 -12q37 -99 97 -167h1v339v2q3 136 102 232q105 103 253 103q147 0 251 -103t104 -249
+q0 -147 -104.5 -251t-250.5 -104q-58 0 -112 16q-28 11 -13 61q16 51 44 43l14 -3q14 -3 33 -6t30 -3q104 0 176 71.5t72 174.5q0 101 -72 171q-71 71 -175 71q-107 0 -178 -80q-64 -72 -64 -160v-413q110 -67 242 -67q96 0 185 36.5t156 103.5t103.5 155t36.5 183
+q0 198 -141 339q-140 140 -339 140q-200 0 -340 -140q-53 -53 -77 -87l-2 -2q-8 -11 -13 -15.5t-21.5 -9.5t-38.5 3q-21 5 -36.5 16.5t-15.5 26.5v680q0 15 10.5 26.5t27.5 11.5h877q30 0 30 -55t-30 -55h-811v-483h1q40 42 102 84t108 61q109 46 231 46q121 0 228 -46
+t187 -126q81 -81 126 -186q46 -112 46 -229zM1369 1128q9 -8 9 -18t-5.5 -18t-16.5 -21q-26 -26 -39 -26q-9 0 -16 7q-106 91 -207 133q-128 56 -276 56q-133 0 -262 -49q-27 -10 -45 37q-9 25 -8 38q3 16 16 20q130 57 299 57q164 0 316 -64q137 -58 235 -152z" />
+    <glyph glyph-name="_585" unicode="&#xf270;" horiz-adv-x="1792" 
+d="M1551 60q15 6 26 3t11 -17.5t-15 -33.5q-13 -16 -44 -43.5t-95.5 -68t-141 -74t-188 -58t-229.5 -24.5q-119 0 -238 31t-209 76.5t-172.5 104t-132.5 105t-84 87.5q-8 9 -10 16.5t1 12t8 7t11.5 2t11.5 -4.5q192 -117 300 -166q389 -176 799 -90q190 40 391 135z
+M1758 175q11 -16 2.5 -69.5t-28.5 -102.5q-34 -83 -85 -124q-17 -14 -26 -9t0 24q21 45 44.5 121.5t6.5 98.5q-5 7 -15.5 11.5t-27 6t-29.5 2.5t-35 0t-31.5 -2t-31 -3t-22.5 -2q-6 -1 -13 -1.5t-11 -1t-8.5 -1t-7 -0.5h-5.5h-4.5t-3 0.5t-2 1.5l-1.5 3q-6 16 47 40t103 30
+q46 7 108 1t76 -24zM1364 618q0 -31 13.5 -64t32 -58t37.5 -46t33 -32l13 -11l-227 -224q-40 37 -79 75.5t-58 58.5l-19 20q-11 11 -25 33q-38 -59 -97.5 -102.5t-127.5 -63.5t-140 -23t-137.5 21t-117.5 65.5t-83 113t-31 162.5q0 84 28 154t72 116.5t106.5 83t122.5 57
+t130 34.5t119.5 18.5t99.5 6.5v127q0 65 -21 97q-34 53 -121 53q-6 0 -16.5 -1t-40.5 -12t-56 -29.5t-56 -59.5t-48 -96l-294 27q0 60 22 119t67 113t108 95t151.5 65.5t190.5 24.5q100 0 181 -25t129.5 -61.5t81 -83t45 -86t12.5 -73.5v-589zM692 597q0 -86 70 -133
+q66 -44 139 -22q84 25 114 123q14 45 14 101v162q-59 -2 -111 -12t-106.5 -33.5t-87 -71t-32.5 -114.5z" />
+    <glyph glyph-name="_586" unicode="&#xf271;" horiz-adv-x="1792" 
+d="M1536 1280q52 0 90 -38t38 -90v-1280q0 -52 -38 -90t-90 -38h-1408q-52 0 -90 38t-38 90v1280q0 52 38 90t90 38h128v96q0 66 47 113t113 47h64q66 0 113 -47t47 -113v-96h384v96q0 66 47 113t113 47h64q66 0 113 -47t47 -113v-96h128zM1152 1376v-288q0 -14 9 -23t23 -9
+h64q14 0 23 9t9 23v288q0 14 -9 23t-23 9h-64q-14 0 -23 -9t-9 -23zM384 1376v-288q0 -14 9 -23t23 -9h64q14 0 23 9t9 23v288q0 14 -9 23t-23 9h-64q-14 0 -23 -9t-9 -23zM1536 -128v1024h-1408v-1024h1408zM896 448h224q14 0 23 -9t9 -23v-64q0 -14 -9 -23t-23 -9h-224
+v-224q0 -14 -9 -23t-23 -9h-64q-14 0 -23 9t-9 23v224h-224q-14 0 -23 9t-9 23v64q0 14 9 23t23 9h224v224q0 14 9 23t23 9h64q14 0 23 -9t9 -23v-224z" />
+    <glyph glyph-name="_587" unicode="&#xf272;" horiz-adv-x="1792" 
+d="M1152 416v-64q0 -14 -9 -23t-23 -9h-576q-14 0 -23 9t-9 23v64q0 14 9 23t23 9h576q14 0 23 -9t9 -23zM128 -128h1408v1024h-1408v-1024zM512 1088v288q0 14 -9 23t-23 9h-64q-14 0 -23 -9t-9 -23v-288q0 -14 9 -23t23 -9h64q14 0 23 9t9 23zM1280 1088v288q0 14 -9 23
+t-23 9h-64q-14 0 -23 -9t-9 -23v-288q0 -14 9 -23t23 -9h64q14 0 23 9t9 23zM1664 1152v-1280q0 -52 -38 -90t-90 -38h-1408q-52 0 -90 38t-38 90v1280q0 52 38 90t90 38h128v96q0 66 47 113t113 47h64q66 0 113 -47t47 -113v-96h384v96q0 66 47 113t113 47h64q66 0 113 -47
+t47 -113v-96h128q52 0 90 -38t38 -90z" />
+    <glyph glyph-name="_588" unicode="&#xf273;" horiz-adv-x="1792" 
+d="M1111 151l-46 -46q-9 -9 -22 -9t-23 9l-188 189l-188 -189q-10 -9 -23 -9t-22 9l-46 46q-9 9 -9 22t9 23l189 188l-189 188q-9 10 -9 23t9 22l46 46q9 9 22 9t23 -9l188 -188l188 188q10 9 23 9t22 -9l46 -46q9 -9 9 -22t-9 -23l-188 -188l188 -188q9 -10 9 -23t-9 -22z
+M128 -128h1408v1024h-1408v-1024zM512 1088v288q0 14 -9 23t-23 9h-64q-14 0 -23 -9t-9 -23v-288q0 -14 9 -23t23 -9h64q14 0 23 9t9 23zM1280 1088v288q0 14 -9 23t-23 9h-64q-14 0 -23 -9t-9 -23v-288q0 -14 9 -23t23 -9h64q14 0 23 9t9 23zM1664 1152v-1280
+q0 -52 -38 -90t-90 -38h-1408q-52 0 -90 38t-38 90v1280q0 52 38 90t90 38h128v96q0 66 47 113t113 47h64q66 0 113 -47t47 -113v-96h384v96q0 66 47 113t113 47h64q66 0 113 -47t47 -113v-96h128q52 0 90 -38t38 -90z" />
+    <glyph glyph-name="_589" unicode="&#xf274;" horiz-adv-x="1792" 
+d="M1303 572l-512 -512q-10 -9 -23 -9t-23 9l-288 288q-9 10 -9 23t9 22l46 46q9 9 22 9t23 -9l220 -220l444 444q10 9 23 9t22 -9l46 -46q9 -9 9 -22t-9 -23zM128 -128h1408v1024h-1408v-1024zM512 1088v288q0 14 -9 23t-23 9h-64q-14 0 -23 -9t-9 -23v-288q0 -14 9 -23
+t23 -9h64q14 0 23 9t9 23zM1280 1088v288q0 14 -9 23t-23 9h-64q-14 0 -23 -9t-9 -23v-288q0 -14 9 -23t23 -9h64q14 0 23 9t9 23zM1664 1152v-1280q0 -52 -38 -90t-90 -38h-1408q-52 0 -90 38t-38 90v1280q0 52 38 90t90 38h128v96q0 66 47 113t113 47h64q66 0 113 -47
+t47 -113v-96h384v96q0 66 47 113t113 47h64q66 0 113 -47t47 -113v-96h128q52 0 90 -38t38 -90z" />
+    <glyph glyph-name="_590" unicode="&#xf275;" horiz-adv-x="1792" 
+d="M448 1536q26 0 45 -19t19 -45v-891l536 429q17 14 40 14q26 0 45 -19t19 -45v-379l536 429q17 14 40 14q26 0 45 -19t19 -45v-1152q0 -26 -19 -45t-45 -19h-1664q-26 0 -45 19t-19 45v1664q0 26 19 45t45 19h384z" />
+    <glyph glyph-name="_591" unicode="&#xf276;" horiz-adv-x="1024" 
+d="M512 448q66 0 128 15v-655q0 -26 -19 -45t-45 -19h-128q-26 0 -45 19t-19 45v655q62 -15 128 -15zM512 1536q212 0 362 -150t150 -362t-150 -362t-362 -150t-362 150t-150 362t150 362t362 150zM512 1312q14 0 23 9t9 23t-9 23t-23 9q-146 0 -249 -103t-103 -249
+q0 -14 9 -23t23 -9t23 9t9 23q0 119 84.5 203.5t203.5 84.5z" />
+    <glyph glyph-name="_592" unicode="&#xf277;" horiz-adv-x="1792" 
+d="M1745 1239q10 -10 10 -23t-10 -23l-141 -141q-28 -28 -68 -28h-1344q-26 0 -45 19t-19 45v256q0 26 19 45t45 19h576v64q0 26 19 45t45 19h128q26 0 45 -19t19 -45v-64h512q40 0 68 -28zM768 320h256v-512q0 -26 -19 -45t-45 -19h-128q-26 0 -45 19t-19 45v512zM1600 768
+q26 0 45 -19t19 -45v-256q0 -26 -19 -45t-45 -19h-1344q-40 0 -68 28l-141 141q-10 10 -10 23t10 23l141 141q28 28 68 28h512v192h256v-192h576z" />
+    <glyph glyph-name="_593" unicode="&#xf278;" horiz-adv-x="2048" 
+d="M2020 1525q28 -20 28 -53v-1408q0 -20 -11 -36t-29 -23l-640 -256q-24 -11 -48 0l-616 246l-616 -246q-10 -5 -24 -5q-19 0 -36 11q-28 20 -28 53v1408q0 20 11 36t29 23l640 256q24 11 48 0l616 -246l616 246q32 13 60 -6zM736 1390v-1270l576 -230v1270zM128 1173
+v-1270l544 217v1270zM1920 107v1270l-544 -217v-1270z" />
+    <glyph glyph-name="_594" unicode="&#xf279;" horiz-adv-x="1792" 
+d="M512 1536q13 0 22.5 -9.5t9.5 -22.5v-1472q0 -20 -17 -28l-480 -256q-7 -4 -15 -4q-13 0 -22.5 9.5t-9.5 22.5v1472q0 20 17 28l480 256q7 4 15 4zM1760 1536q13 0 22.5 -9.5t9.5 -22.5v-1472q0 -20 -17 -28l-480 -256q-7 -4 -15 -4q-13 0 -22.5 9.5t-9.5 22.5v1472
+q0 20 17 28l480 256q7 4 15 4zM640 1536q8 0 14 -3l512 -256q18 -10 18 -29v-1472q0 -13 -9.5 -22.5t-22.5 -9.5q-8 0 -14 3l-512 256q-18 10 -18 29v1472q0 13 9.5 22.5t22.5 9.5z" />
+    <glyph glyph-name="_595" unicode="&#xf27a;" horiz-adv-x="1792" 
+d="M640 640q0 53 -37.5 90.5t-90.5 37.5t-90.5 -37.5t-37.5 -90.5t37.5 -90.5t90.5 -37.5t90.5 37.5t37.5 90.5zM1024 640q0 53 -37.5 90.5t-90.5 37.5t-90.5 -37.5t-37.5 -90.5t37.5 -90.5t90.5 -37.5t90.5 37.5t37.5 90.5zM1408 640q0 53 -37.5 90.5t-90.5 37.5
+t-90.5 -37.5t-37.5 -90.5t37.5 -90.5t90.5 -37.5t90.5 37.5t37.5 90.5zM1792 640q0 -174 -120 -321.5t-326 -233t-450 -85.5q-110 0 -211 18q-173 -173 -435 -229q-52 -10 -86 -13q-12 -1 -22 6t-13 18q-4 15 20 37q5 5 23.5 21.5t25.5 23.5t23.5 25.5t24 31.5t20.5 37
+t20 48t14.5 57.5t12.5 72.5q-146 90 -229.5 216.5t-83.5 269.5q0 174 120 321.5t326 233t450 85.5t450 -85.5t326 -233t120 -321.5z" />
+    <glyph glyph-name="_596" unicode="&#xf27b;" horiz-adv-x="1792" 
+d="M640 640q0 -53 -37.5 -90.5t-90.5 -37.5t-90.5 37.5t-37.5 90.5t37.5 90.5t90.5 37.5t90.5 -37.5t37.5 -90.5zM1024 640q0 -53 -37.5 -90.5t-90.5 -37.5t-90.5 37.5t-37.5 90.5t37.5 90.5t90.5 37.5t90.5 -37.5t37.5 -90.5zM1408 640q0 -53 -37.5 -90.5t-90.5 -37.5
+t-90.5 37.5t-37.5 90.5t37.5 90.5t90.5 37.5t90.5 -37.5t37.5 -90.5zM896 1152q-204 0 -381.5 -69.5t-282 -187.5t-104.5 -255q0 -112 71.5 -213.5t201.5 -175.5l87 -50l-27 -96q-24 -91 -70 -172q152 63 275 171l43 38l57 -6q69 -8 130 -8q204 0 381.5 69.5t282 187.5
+t104.5 255t-104.5 255t-282 187.5t-381.5 69.5zM1792 640q0 -174 -120 -321.5t-326 -233t-450 -85.5q-70 0 -145 8q-198 -175 -460 -242q-49 -14 -114 -22h-5q-15 0 -27 10.5t-16 27.5v1q-3 4 -0.5 12t2 10t4.5 9.5l6 9t7 8.5t8 9q7 8 31 34.5t34.5 38t31 39.5t32.5 51
+t27 59t26 76q-157 89 -247.5 220t-90.5 281q0 130 71 248.5t191 204.5t286 136.5t348 50.5t348 -50.5t286 -136.5t191 -204.5t71 -248.5z" />
+    <glyph glyph-name="_597" unicode="&#xf27c;" horiz-adv-x="1024" 
+d="M512 345l512 295v-591l-512 -296v592zM0 640v-591l512 296zM512 1527v-591l-512 -296v591zM512 936l512 295v-591z" />
+    <glyph glyph-name="_598" unicode="&#xf27d;" horiz-adv-x="1792" 
+d="M1709 1018q-10 -236 -332 -651q-333 -431 -562 -431q-142 0 -240 263q-44 160 -132 482q-72 262 -157 262q-18 0 -127 -76l-77 98q24 21 108 96.5t130 115.5q156 138 241 146q95 9 153 -55.5t81 -203.5q44 -287 66 -373q55 -249 120 -249q51 0 154 161q101 161 109 246
+q13 139 -109 139q-57 0 -121 -26q120 393 459 382q251 -8 236 -326z" />
+    <glyph glyph-name="f27e" unicode="&#xf27e;" 
+d="M0 1408h1536v-1536h-1536v1536zM1085 293l-221 631l221 297h-634l221 -297l-221 -631l317 -304z" />
+    <glyph glyph-name="uniF280" unicode="&#xf280;" 
+d="M0 1408h1536v-1536h-1536v1536zM908 1088l-12 -33l75 -83l-31 -114l25 -25l107 57l107 -57l25 25l-31 114l75 83l-12 33h-95l-53 96h-32l-53 -96h-95zM641 925q32 0 44.5 -16t11.5 -63l174 21q0 55 -17.5 92.5t-50.5 56t-69 25.5t-85 7q-133 0 -199 -57.5t-66 -182.5v-72
+h-96v-128h76q20 0 20 -8v-382q0 -14 -5 -20t-18 -7l-73 -7v-88h448v86l-149 14q-6 1 -8.5 1.5t-3.5 2.5t-0.5 4t1 7t0.5 10v387h191l38 128h-231q-6 0 -2 6t4 9v80q0 27 1.5 40.5t7.5 28t19.5 20t36.5 5.5zM1248 96v86l-54 9q-7 1 -9.5 2.5t-2.5 3t1 7.5t1 12v520h-275
+l-23 -101l83 -22q23 -7 23 -27v-370q0 -14 -6 -18.5t-20 -6.5l-70 -9v-86h352z" />
+    <glyph glyph-name="uniF281" unicode="&#xf281;" horiz-adv-x="1792" 
+d="M1792 690q0 -58 -29.5 -105.5t-79.5 -72.5q12 -46 12 -96q0 -155 -106.5 -287t-290.5 -208.5t-400 -76.5t-399.5 76.5t-290 208.5t-106.5 287q0 47 11 94q-51 25 -82 73.5t-31 106.5q0 82 58 140.5t141 58.5q85 0 145 -63q218 152 515 162l116 521q3 13 15 21t26 5
+l369 -81q18 37 54 59.5t79 22.5q62 0 106 -43.5t44 -105.5t-44 -106t-106 -44t-105.5 43.5t-43.5 105.5l-334 74l-104 -472q300 -9 519 -160q58 61 143 61q83 0 141 -58.5t58 -140.5zM418 491q0 -62 43.5 -106t105.5 -44t106 44t44 106t-44 105.5t-106 43.5q-61 0 -105 -44
+t-44 -105zM1228 136q11 11 11 26t-11 26q-10 10 -25 10t-26 -10q-41 -42 -121 -62t-160 -20t-160 20t-121 62q-11 10 -26 10t-25 -10q-11 -10 -11 -25.5t11 -26.5q43 -43 118.5 -68t122.5 -29.5t91 -4.5t91 4.5t122.5 29.5t118.5 68zM1225 341q62 0 105.5 44t43.5 106
+q0 61 -44 105t-105 44q-62 0 -106 -43.5t-44 -105.5t44 -106t106 -44z" />
+    <glyph glyph-name="_602" unicode="&#xf282;" horiz-adv-x="1792" 
+d="M69 741h1q16 126 58.5 241.5t115 217t167.5 176t223.5 117.5t276.5 43q231 0 414 -105.5t294 -303.5q104 -187 104 -442v-188h-1125q1 -111 53.5 -192.5t136.5 -122.5t189.5 -57t213 -3t208 46.5t173.5 84.5v-377q-92 -55 -229.5 -92t-312.5 -38t-316 53
+q-189 73 -311.5 249t-124.5 372q-3 242 111 412t325 268q-48 -60 -78 -125.5t-46 -159.5h635q8 77 -8 140t-47 101.5t-70.5 66.5t-80.5 41t-75 20.5t-56 8.5l-22 1q-135 -5 -259.5 -44.5t-223.5 -104.5t-176 -140.5t-138 -163.5z" />
+    <glyph glyph-name="_603" unicode="&#xf283;" horiz-adv-x="2304" 
+d="M0 32v608h2304v-608q0 -66 -47 -113t-113 -47h-1984q-66 0 -113 47t-47 113zM640 256v-128h384v128h-384zM256 256v-128h256v128h-256zM2144 1408q66 0 113 -47t47 -113v-224h-2304v224q0 66 47 113t113 47h1984z" />
+    <glyph glyph-name="_604" unicode="&#xf284;" horiz-adv-x="1792" 
+d="M1584 246l-218 111q-74 -120 -196.5 -189t-263.5 -69q-147 0 -271 72t-196 196t-72 270q0 110 42.5 209.5t115 172t172 115t209.5 42.5q131 0 247.5 -60.5t192.5 -168.5l215 125q-110 169 -286.5 265t-378.5 96q-161 0 -308 -63t-253 -169t-169 -253t-63 -308t63 -308
+t169 -253t253 -169t308 -63q213 0 397.5 107t290.5 292zM1030 643l693 -352q-116 -253 -334.5 -400t-492.5 -147q-182 0 -348 71t-286 191t-191 286t-71 348t71 348t191 286t286 191t348 71q260 0 470.5 -133.5t335.5 -366.5zM1543 640h-39v-160h-96v352h136q32 0 54.5 -20
+t28.5 -48t1 -56t-27.5 -48t-57.5 -20z" />
+    <glyph glyph-name="uniF285" unicode="&#xf285;" horiz-adv-x="1792" 
+d="M1427 827l-614 386l92 151h855zM405 562l-184 116v858l1183 -743zM1424 697l147 -95v-858l-532 335zM1387 718l-500 -802h-855l356 571z" />
+    <glyph glyph-name="uniF286" unicode="&#xf286;" horiz-adv-x="1792" 
+d="M640 528v224q0 16 -16 16h-96q-16 0 -16 -16v-224q0 -16 16 -16h96q16 0 16 16zM1152 528v224q0 16 -16 16h-96q-16 0 -16 -16v-224q0 -16 16 -16h96q16 0 16 16zM1664 496v-752h-640v320q0 80 -56 136t-136 56t-136 -56t-56 -136v-320h-640v752q0 16 16 16h96
+q16 0 16 -16v-112h128v624q0 16 16 16h96q16 0 16 -16v-112h128v112q0 16 16 16h96q16 0 16 -16v-112h128v112q0 6 2.5 9.5t8.5 5t9.5 2t11.5 0t9 -0.5v391q-32 15 -32 50q0 23 16.5 39t38.5 16t38.5 -16t16.5 -39q0 -35 -32 -50v-17q45 10 83 10q21 0 59.5 -7.5t54.5 -7.5
+q17 0 47 7.5t37 7.5q16 0 16 -16v-210q0 -15 -35 -21.5t-62 -6.5q-18 0 -54.5 7.5t-55.5 7.5q-40 0 -90 -12v-133q1 0 9 0.5t11.5 0t9.5 -2t8.5 -5t2.5 -9.5v-112h128v112q0 16 16 16h96q16 0 16 -16v-112h128v112q0 16 16 16h96q16 0 16 -16v-624h128v112q0 16 16 16h96
+q16 0 16 -16z" />
+    <glyph glyph-name="_607" unicode="&#xf287;" horiz-adv-x="2304" 
+d="M2288 731q16 -8 16 -27t-16 -27l-320 -192q-8 -5 -16 -5q-9 0 -16 4q-16 10 -16 28v128h-858q37 -58 83 -165q16 -37 24.5 -55t24 -49t27 -47t27 -34t31.5 -26t33 -8h96v96q0 14 9 23t23 9h320q14 0 23 -9t9 -23v-320q0 -14 -9 -23t-23 -9h-320q-14 0 -23 9t-9 23v96h-96
+q-32 0 -61 10t-51 23.5t-45 40.5t-37 46t-33.5 57t-28.5 57.5t-28 60.5q-23 53 -37 81.5t-36 65t-44.5 53.5t-46.5 17h-360q-22 -84 -91 -138t-157 -54q-106 0 -181 75t-75 181t75 181t181 75q88 0 157 -54t91 -138h104q24 0 46.5 17t44.5 53.5t36 65t37 81.5q19 41 28 60.5
+t28.5 57.5t33.5 57t37 46t45 40.5t51 23.5t61 10h107q21 57 70 92.5t111 35.5q80 0 136 -56t56 -136t-56 -136t-136 -56q-62 0 -111 35.5t-70 92.5h-107q-17 0 -33 -8t-31.5 -26t-27 -34t-27 -47t-24 -49t-24.5 -55q-46 -107 -83 -165h1114v128q0 18 16 28t32 -1z" />
+    <glyph glyph-name="_608" unicode="&#xf288;" horiz-adv-x="1792" 
+d="M1150 774q0 -56 -39.5 -95t-95.5 -39h-253v269h253q56 0 95.5 -39.5t39.5 -95.5zM1329 774q0 130 -91.5 222t-222.5 92h-433v-896h180v269h253q130 0 222 91.5t92 221.5zM1792 640q0 -182 -71 -348t-191 -286t-286 -191t-348 -71t-348 71t-286 191t-191 286t-71 348
+t71 348t191 286t286 191t348 71t348 -71t286 -191t191 -286t71 -348z" />
+    <glyph glyph-name="_609" unicode="&#xf289;" horiz-adv-x="2304" 
+d="M1645 438q0 59 -34 106.5t-87 68.5q-7 -45 -23 -92q-7 -24 -27.5 -38t-44.5 -14q-12 0 -24 3q-31 10 -45 38.5t-4 58.5q23 71 23 143q0 123 -61 227.5t-166 165.5t-228 61q-134 0 -247 -73t-167 -194q108 -28 188 -106q22 -23 22 -55t-22 -54t-54 -22t-55 22
+q-75 75 -180 75q-106 0 -181 -74.5t-75 -180.5t75 -180.5t181 -74.5h1046q79 0 134.5 55.5t55.5 133.5zM1798 438q0 -142 -100.5 -242t-242.5 -100h-1046q-169 0 -289 119.5t-120 288.5q0 153 100 267t249 136q62 184 221 298t354 114q235 0 408.5 -158.5t196.5 -389.5
+q116 -25 192.5 -118.5t76.5 -214.5zM2048 438q0 -175 -97 -319q-23 -33 -64 -33q-24 0 -43 13q-26 17 -32 48.5t12 57.5q71 104 71 233t-71 233q-18 26 -12 57t32 49t57.5 11.5t49.5 -32.5q97 -142 97 -318zM2304 438q0 -244 -134 -443q-23 -34 -64 -34q-23 0 -42 13
+q-26 18 -32.5 49t11.5 57q108 164 108 358q0 195 -108 357q-18 26 -11.5 57.5t32.5 48.5q26 18 57 12t49 -33q134 -198 134 -442z" />
+    <glyph glyph-name="_610" unicode="&#xf28a;" 
+d="M1500 -13q0 -89 -63 -152.5t-153 -63.5t-153.5 63.5t-63.5 152.5q0 90 63.5 153.5t153.5 63.5t153 -63.5t63 -153.5zM1267 268q-115 -15 -192.5 -102.5t-77.5 -205.5q0 -74 33 -138q-146 -78 -379 -78q-109 0 -201 21t-153.5 54.5t-110.5 76.5t-76 85t-44.5 83
+t-23.5 66.5t-6 39.5q0 19 4.5 42.5t18.5 56t36.5 58t64 43.5t94.5 18t94 -17.5t63 -41t35.5 -53t17.5 -49t4 -33.5q0 -34 -23 -81q28 -27 82 -42t93 -17l40 -1q115 0 190 51t75 133q0 26 -9 48.5t-31.5 44.5t-49.5 41t-74 44t-93.5 47.5t-119.5 56.5q-28 13 -43 20
+q-116 55 -187 100t-122.5 102t-72 125.5t-20.5 162.5q0 78 20.5 150t66 137.5t112.5 114t166.5 77t221.5 28.5q120 0 220 -26t164.5 -67t109.5 -94t64 -105.5t19 -103.5q0 -46 -15 -82.5t-36.5 -58t-48.5 -36t-49 -19.5t-39 -5h-8h-32t-39 5t-44 14t-41 28t-37 46t-24 70.5
+t-10 97.5q-15 16 -59 25.5t-81 10.5l-37 1q-68 0 -117.5 -31t-70.5 -70t-21 -76q0 -24 5 -43t24 -46t53 -51t97 -53.5t150 -58.5q76 -25 138.5 -53.5t109 -55.5t83 -59t60.5 -59.5t41 -62.5t26.5 -62t14.5 -63.5t6 -62t1 -62.5z" />
+    <glyph glyph-name="_611" unicode="&#xf28b;" 
+d="M704 352v576q0 14 -9 23t-23 9h-256q-14 0 -23 -9t-9 -23v-576q0 -14 9 -23t23 -9h256q14 0 23 9t9 23zM1152 352v576q0 14 -9 23t-23 9h-256q-14 0 -23 -9t-9 -23v-576q0 -14 9 -23t23 -9h256q14 0 23 9t9 23zM1536 640q0 -209 -103 -385.5t-279.5 -279.5t-385.5 -103
+t-385.5 103t-279.5 279.5t-103 385.5t103 385.5t279.5 279.5t385.5 103t385.5 -103t279.5 -279.5t103 -385.5z" />
+    <glyph glyph-name="_612" unicode="&#xf28c;" 
+d="M768 1408q209 0 385.5 -103t279.5 -279.5t103 -385.5t-103 -385.5t-279.5 -279.5t-385.5 -103t-385.5 103t-279.5 279.5t-103 385.5t103 385.5t279.5 279.5t385.5 103zM768 96q148 0 273 73t198 198t73 273t-73 273t-198 198t-273 73t-273 -73t-198 -198t-73 -273
+t73 -273t198 -198t273 -73zM864 320q-14 0 -23 9t-9 23v576q0 14 9 23t23 9h192q14 0 23 -9t9 -23v-576q0 -14 -9 -23t-23 -9h-192zM480 320q-14 0 -23 9t-9 23v576q0 14 9 23t23 9h192q14 0 23 -9t9 -23v-576q0 -14 -9 -23t-23 -9h-192z" />
+    <glyph glyph-name="_613" unicode="&#xf28d;" 
+d="M1088 352v576q0 14 -9 23t-23 9h-576q-14 0 -23 -9t-9 -23v-576q0 -14 9 -23t23 -9h576q14 0 23 9t9 23zM1536 640q0 -209 -103 -385.5t-279.5 -279.5t-385.5 -103t-385.5 103t-279.5 279.5t-103 385.5t103 385.5t279.5 279.5t385.5 103t385.5 -103t279.5 -279.5
+t103 -385.5z" />
+    <glyph glyph-name="_614" unicode="&#xf28e;" 
+d="M768 1408q209 0 385.5 -103t279.5 -279.5t103 -385.5t-103 -385.5t-279.5 -279.5t-385.5 -103t-385.5 103t-279.5 279.5t-103 385.5t103 385.5t279.5 279.5t385.5 103zM768 96q148 0 273 73t198 198t73 273t-73 273t-198 198t-273 73t-273 -73t-198 -198t-73 -273
+t73 -273t198 -198t273 -73zM480 320q-14 0 -23 9t-9 23v576q0 14 9 23t23 9h576q14 0 23 -9t9 -23v-576q0 -14 -9 -23t-23 -9h-576z" />
+    <glyph glyph-name="_615" unicode="&#xf290;" horiz-adv-x="1792" 
+d="M1757 128l35 -313q3 -28 -16 -50q-19 -21 -48 -21h-1664q-29 0 -48 21q-19 22 -16 50l35 313h1722zM1664 967l86 -775h-1708l86 775q3 24 21 40.5t43 16.5h256v-128q0 -53 37.5 -90.5t90.5 -37.5t90.5 37.5t37.5 90.5v128h384v-128q0 -53 37.5 -90.5t90.5 -37.5
+t90.5 37.5t37.5 90.5v128h256q25 0 43 -16.5t21 -40.5zM1280 1152v-256q0 -26 -19 -45t-45 -19t-45 19t-19 45v256q0 106 -75 181t-181 75t-181 -75t-75 -181v-256q0 -26 -19 -45t-45 -19t-45 19t-19 45v256q0 159 112.5 271.5t271.5 112.5t271.5 -112.5t112.5 -271.5z" />
+    <glyph glyph-name="_616" unicode="&#xf291;" horiz-adv-x="2048" 
+d="M1920 768q53 0 90.5 -37.5t37.5 -90.5t-37.5 -90.5t-90.5 -37.5h-15l-115 -662q-8 -46 -44 -76t-82 -30h-1280q-46 0 -82 30t-44 76l-115 662h-15q-53 0 -90.5 37.5t-37.5 90.5t37.5 90.5t90.5 37.5h1792zM485 -32q26 2 43.5 22.5t15.5 46.5l-32 416q-2 26 -22.5 43.5
+t-46.5 15.5t-43.5 -22.5t-15.5 -46.5l32 -416q2 -25 20.5 -42t43.5 -17h5zM896 32v416q0 26 -19 45t-45 19t-45 -19t-19 -45v-416q0 -26 19 -45t45 -19t45 19t19 45zM1280 32v416q0 26 -19 45t-45 19t-45 -19t-19 -45v-416q0 -26 19 -45t45 -19t45 19t19 45zM1632 27l32 416
+q2 26 -15.5 46.5t-43.5 22.5t-46.5 -15.5t-22.5 -43.5l-32 -416q-2 -26 15.5 -46.5t43.5 -22.5h5q25 0 43.5 17t20.5 42zM476 1244l-93 -412h-132l101 441q19 88 89 143.5t160 55.5h167q0 26 19 45t45 19h384q26 0 45 -19t19 -45h167q90 0 160 -55.5t89 -143.5l101 -441
+h-132l-93 412q-11 44 -45.5 72t-79.5 28h-167q0 -26 -19 -45t-45 -19h-384q-26 0 -45 19t-19 45h-167q-45 0 -79.5 -28t-45.5 -72z" />
+    <glyph glyph-name="_617" unicode="&#xf292;" horiz-adv-x="1792" 
+d="M991 512l64 256h-254l-64 -256h254zM1759 1016l-56 -224q-7 -24 -31 -24h-327l-64 -256h311q15 0 25 -12q10 -14 6 -28l-56 -224q-5 -24 -31 -24h-327l-81 -328q-7 -24 -31 -24h-224q-16 0 -26 12q-9 12 -6 28l78 312h-254l-81 -328q-7 -24 -31 -24h-225q-15 0 -25 12
+q-9 12 -6 28l78 312h-311q-15 0 -25 12q-9 12 -6 28l56 224q7 24 31 24h327l64 256h-311q-15 0 -25 12q-10 14 -6 28l56 224q5 24 31 24h327l81 328q7 24 32 24h224q15 0 25 -12q9 -12 6 -28l-78 -312h254l81 328q7 24 32 24h224q15 0 25 -12q9 -12 6 -28l-78 -312h311
+q15 0 25 -12q9 -12 6 -28z" />
+    <glyph glyph-name="_618" unicode="&#xf293;" 
+d="M841 483l148 -148l-149 -149zM840 1094l149 -149l-148 -148zM710 -130l464 464l-306 306l306 306l-464 464v-611l-255 255l-93 -93l320 -321l-320 -321l93 -93l255 255v-611zM1429 640q0 -209 -32 -365.5t-87.5 -257t-140.5 -162.5t-181.5 -86.5t-219.5 -24.5
+t-219.5 24.5t-181.5 86.5t-140.5 162.5t-87.5 257t-32 365.5t32 365.5t87.5 257t140.5 162.5t181.5 86.5t219.5 24.5t219.5 -24.5t181.5 -86.5t140.5 -162.5t87.5 -257t32 -365.5z" />
+    <glyph glyph-name="_619" unicode="&#xf294;" horiz-adv-x="1024" 
+d="M596 113l173 172l-173 172v-344zM596 823l173 172l-173 172v-344zM628 640l356 -356l-539 -540v711l-297 -296l-108 108l372 373l-372 373l108 108l297 -296v711l539 -540z" />
+    <glyph glyph-name="_620" unicode="&#xf295;" 
+d="M1280 256q0 52 -38 90t-90 38t-90 -38t-38 -90t38 -90t90 -38t90 38t38 90zM512 1024q0 52 -38 90t-90 38t-90 -38t-38 -90t38 -90t90 -38t90 38t38 90zM1536 256q0 -159 -112.5 -271.5t-271.5 -112.5t-271.5 112.5t-112.5 271.5t112.5 271.5t271.5 112.5t271.5 -112.5
+t112.5 -271.5zM1440 1344q0 -20 -13 -38l-1056 -1408q-19 -26 -51 -26h-160q-26 0 -45 19t-19 45q0 20 13 38l1056 1408q19 26 51 26h160q26 0 45 -19t19 -45zM768 1024q0 -159 -112.5 -271.5t-271.5 -112.5t-271.5 112.5t-112.5 271.5t112.5 271.5t271.5 112.5
+t271.5 -112.5t112.5 -271.5z" />
+    <glyph glyph-name="_621" unicode="&#xf296;" horiz-adv-x="1792" 
+d="M104 830l792 -1015l-868 630q-18 13 -25 34.5t0 42.5l101 308v0zM566 830h660l-330 -1015v0zM368 1442l198 -612h-462l198 612q8 23 33 23t33 -23zM1688 830l101 -308q7 -21 0 -42.5t-25 -34.5l-868 -630l792 1015v0zM1688 830h-462l198 612q8 23 33 23t33 -23z" />
+    <glyph glyph-name="_622" unicode="&#xf297;" horiz-adv-x="1792" 
+d="M384 704h160v224h-160v-224zM1221 372v92q-104 -36 -243 -38q-135 -1 -259.5 46.5t-220.5 122.5l1 -96q88 -80 212 -128.5t272 -47.5q129 0 238 49zM640 704h640v224h-640v-224zM1792 736q0 -187 -99 -352q89 -102 89 -229q0 -157 -129.5 -268t-313.5 -111
+q-122 0 -225 52.5t-161 140.5q-19 -1 -57 -1t-57 1q-58 -88 -161 -140.5t-225 -52.5q-184 0 -313.5 111t-129.5 268q0 127 89 229q-99 165 -99 352q0 209 120 385.5t326.5 279.5t449.5 103t449.5 -103t326.5 -279.5t120 -385.5z" />
+    <glyph glyph-name="_623" unicode="&#xf298;" 
+d="M515 625v-128h-252v128h252zM515 880v-127h-252v127h252zM1273 369v-128h-341v128h341zM1273 625v-128h-672v128h672zM1273 880v-127h-672v127h672zM1408 20v1240q0 8 -6 14t-14 6h-32l-378 -256l-210 171l-210 -171l-378 256h-32q-8 0 -14 -6t-6 -14v-1240q0 -8 6 -14
+t14 -6h1240q8 0 14 6t6 14zM553 1130l185 150h-406zM983 1130l221 150h-406zM1536 1260v-1240q0 -62 -43 -105t-105 -43h-1240q-62 0 -105 43t-43 105v1240q0 62 43 105t105 43h1240q62 0 105 -43t43 -105z" />
+    <glyph glyph-name="_624" unicode="&#xf299;" horiz-adv-x="1792" 
+d="M896 720q-104 196 -160 278q-139 202 -347 318q-34 19 -70 36q-89 40 -94 32t34 -38l39 -31q62 -43 112.5 -93.5t94.5 -116.5t70.5 -113t70.5 -131q9 -17 13 -25q44 -84 84 -153t98 -154t115.5 -150t131 -123.5t148.5 -90.5q153 -66 154 -60q1 3 -49 37q-53 36 -81 57
+q-77 58 -179 211t-185 310zM549 177q-76 60 -132.5 125t-98 143.5t-71 154.5t-58.5 186t-52 209t-60.5 252t-76.5 289q273 0 497.5 -36t379 -92t271 -144.5t185.5 -172.5t110 -198.5t56 -199.5t12.5 -198.5t-9.5 -173t-20 -143.5t-13 -107l323 -327h-104l-281 285
+q-22 -2 -91.5 -14t-121.5 -19t-138 -6t-160.5 17t-167.5 59t-179 111z" />
+    <glyph glyph-name="_625" unicode="&#xf29a;" horiz-adv-x="1792" 
+d="M1374 879q-6 26 -28.5 39.5t-48.5 7.5q-261 -62 -401 -62t-401 62q-26 6 -48.5 -7.5t-28.5 -39.5t7.5 -48.5t39.5 -28.5q194 -46 303 -58q-2 -158 -15.5 -269t-26.5 -155.5t-41 -115.5l-9 -21q-10 -25 1 -49t36 -34q9 -4 23 -4q44 0 60 41l8 20q54 139 71 259h42
+q17 -120 71 -259l8 -20q16 -41 60 -41q14 0 23 4q25 10 36 34t1 49l-9 21q-28 71 -41 115.5t-26.5 155.5t-15.5 269q109 12 303 58q26 6 39.5 28.5t7.5 48.5zM1024 1024q0 53 -37.5 90.5t-90.5 37.5t-90.5 -37.5t-37.5 -90.5t37.5 -90.5t90.5 -37.5t90.5 37.5t37.5 90.5z
+M1600 640q0 -143 -55.5 -273.5t-150 -225t-225 -150t-273.5 -55.5t-273.5 55.5t-225 150t-150 225t-55.5 273.5t55.5 273.5t150 225t225 150t273.5 55.5t273.5 -55.5t225 -150t150 -225t55.5 -273.5zM896 1408q-156 0 -298 -61t-245 -164t-164 -245t-61 -298t61 -298
+t164 -245t245 -164t298 -61t298 61t245 164t164 245t61 298t-61 298t-164 245t-245 164t-298 61zM1792 640q0 -182 -71 -348t-191 -286t-286 -191t-348 -71t-348 71t-286 191t-191 286t-71 348t71 348t191 286t286 191t348 71t348 -71t286 -191t191 -286t71 -348z" />
+    <glyph glyph-name="_626" unicode="&#xf29b;" 
+d="M1438 723q34 -35 29 -82l-44 -551q-4 -42 -34.5 -70t-71.5 -28q-6 0 -9 1q-44 3 -72.5 36.5t-25.5 77.5l35 429l-143 -8q55 -113 55 -240q0 -216 -148 -372l-137 137q91 101 91 235q0 145 -102.5 248t-247.5 103q-134 0 -236 -92l-137 138q120 114 284 141l264 300
+l-149 87l-181 -161q-33 -30 -77 -27.5t-73 35.5t-26.5 77t34.5 73l239 213q26 23 60 26.5t64 -14.5l488 -283q36 -21 48 -68q17 -67 -26 -117l-205 -232l371 20q49 3 83 -32zM1240 1180q-74 0 -126 52t-52 126t52 126t126 52t126.5 -52t52.5 -126t-52.5 -126t-126.5 -52z
+M613 -62q106 0 196 61l139 -139q-146 -116 -335 -116q-148 0 -273.5 73t-198.5 198t-73 273q0 188 116 336l139 -139q-60 -88 -60 -197q0 -145 102.5 -247.5t247.5 -102.5z" />
+    <glyph glyph-name="_627" unicode="&#xf29c;" 
+d="M880 336v-160q0 -14 -9 -23t-23 -9h-160q-14 0 -23 9t-9 23v160q0 14 9 23t23 9h160q14 0 23 -9t9 -23zM1136 832q0 -50 -15 -90t-45.5 -69t-52 -44t-59.5 -36q-32 -18 -46.5 -28t-26 -24t-11.5 -29v-32q0 -14 -9 -23t-23 -9h-160q-14 0 -23 9t-9 23v68q0 35 10.5 64.5
+t24 47.5t39 35.5t41 25.5t44.5 21q53 25 75 43t22 49q0 42 -43.5 71.5t-95.5 29.5q-56 0 -95 -27q-29 -20 -80 -83q-9 -12 -25 -12q-11 0 -19 6l-108 82q-10 7 -12 20t5 23q122 192 349 192q129 0 238.5 -89.5t109.5 -214.5zM768 1280q-130 0 -248.5 -51t-204 -136.5
+t-136.5 -204t-51 -248.5t51 -248.5t136.5 -204t204 -136.5t248.5 -51t248.5 51t204 136.5t136.5 204t51 248.5t-51 248.5t-136.5 204t-204 136.5t-248.5 51zM1536 640q0 -209 -103 -385.5t-279.5 -279.5t-385.5 -103t-385.5 103t-279.5 279.5t-103 385.5t103 385.5
+t279.5 279.5t385.5 103t385.5 -103t279.5 -279.5t103 -385.5z" />
+    <glyph glyph-name="_628" unicode="&#xf29d;" horiz-adv-x="1408" 
+d="M366 1225q-64 0 -110 45.5t-46 110.5q0 64 46 109.5t110 45.5t109.5 -45.5t45.5 -109.5q0 -65 -45.5 -110.5t-109.5 -45.5zM917 583q0 -50 -30 -67.5t-63.5 -6.5t-47.5 34l-367 438q-7 12 -14 15.5t-11 1.5l-3 -3q-7 -8 4 -21l122 -139l1 -354l-161 -457
+q-67 -192 -92 -234q-15 -26 -28 -32q-50 -26 -103 -1q-29 13 -41.5 43t-9.5 57q2 17 197 618l5 416l-85 -164l35 -222q4 -24 -1 -42t-14 -27.5t-19 -16t-17 -7.5l-7 -2q-19 -3 -34.5 3t-24 16t-14 22t-7.5 19.5t-2 9.5l-46 299l211 381q23 34 113 34q75 0 107 -40l424 -521
+q7 -5 14 -17l3 -3l-1 -1q7 -13 7 -29zM514 433q43 -113 88.5 -225t69.5 -168l24 -55q36 -93 42 -125q11 -70 -36 -97q-35 -22 -66 -16t-51 22t-29 35h-1q-6 16 -8 25l-124 351zM1338 -159q31 -49 31 -57q0 -5 -3 -7q-9 -5 -14.5 0.5t-15.5 26t-16 30.5q-114 172 -423 661
+q3 -1 7 1t7 4l3 2q11 9 11 17z" />
+    <glyph glyph-name="_629" unicode="&#xf29e;" horiz-adv-x="2304" 
+d="M504 542h171l-1 265zM1530 641q0 87 -50.5 140t-146.5 53h-54v-388h52q91 0 145 57t54 138zM956 1018l1 -756q0 -14 -9.5 -24t-23.5 -10h-216q-14 0 -23.5 10t-9.5 24v62h-291l-55 -81q-10 -15 -28 -15h-267q-21 0 -30.5 18t3.5 35l556 757q9 14 27 14h332q14 0 24 -10
+t10 -24zM1783 641q0 -193 -125.5 -303t-324.5 -110h-270q-14 0 -24 10t-10 24v756q0 14 10 24t24 10h268q200 0 326 -109t126 -302zM1939 640q0 -11 -0.5 -29t-8 -71.5t-21.5 -102t-44.5 -108t-73.5 -102.5h-51q38 45 66.5 104.5t41.5 112t21 98t9 72.5l1 27q0 8 -0.5 22.5
+t-7.5 60t-20 91.5t-41 111.5t-66 124.5h43q41 -47 72 -107t45.5 -111.5t23 -96t10.5 -70.5zM2123 640q0 -11 -0.5 -29t-8 -71.5t-21.5 -102t-45 -108t-74 -102.5h-51q38 45 66.5 104.5t41.5 112t21 98t9 72.5l1 27q0 8 -0.5 22.5t-7.5 60t-19.5 91.5t-40.5 111.5t-66 124.5
+h43q41 -47 72 -107t45.5 -111.5t23 -96t10.5 -70.5zM2304 640q0 -11 -0.5 -29t-8 -71.5t-21.5 -102t-44.5 -108t-73.5 -102.5h-51q38 45 66 104.5t41 112t21 98t9 72.5l1 27q0 8 -0.5 22.5t-7.5 60t-19.5 91.5t-40.5 111.5t-66 124.5h43q41 -47 72 -107t45.5 -111.5t23 -96
+t9.5 -70.5z" />
+    <glyph glyph-name="uniF2A0" unicode="&#xf2a0;" horiz-adv-x="1408" 
+d="M617 -153q0 11 -13 58t-31 107t-20 69q-1 4 -5 26.5t-8.5 36t-13.5 21.5q-15 14 -51 14q-23 0 -70 -5.5t-71 -5.5q-34 0 -47 11q-6 5 -11 15.5t-7.5 20t-6.5 24t-5 18.5q-37 128 -37 255t37 255q1 4 5 18.5t6.5 24t7.5 20t11 15.5q13 11 47 11q24 0 71 -5.5t70 -5.5
+q36 0 51 14q9 8 13.5 21.5t8.5 36t5 26.5q2 9 20 69t31 107t13 58q0 22 -43.5 52.5t-75.5 42.5q-20 8 -45 8q-34 0 -98 -18q-57 -17 -96.5 -40.5t-71 -66t-46 -70t-45.5 -94.5q-6 -12 -9 -19q-49 -107 -68 -216t-19 -244t19 -244t68 -216q56 -122 83 -161q63 -91 179 -127
+l6 -2q64 -18 98 -18q25 0 45 8q32 12 75.5 42.5t43.5 52.5zM776 760q-26 0 -45 19t-19 45.5t19 45.5q37 37 37 90q0 52 -37 91q-19 19 -19 45t19 45t45 19t45 -19q75 -75 75 -181t-75 -181q-21 -19 -45 -19zM957 579q-27 0 -45 19q-19 19 -19 45t19 45q112 114 112 272
+t-112 272q-19 19 -19 45t19 45t45 19t45 -19q150 -150 150 -362t-150 -362q-18 -19 -45 -19zM1138 398q-27 0 -45 19q-19 19 -19 45t19 45q90 91 138.5 208t48.5 245t-48.5 245t-138.5 208q-19 19 -19 45t19 45t45 19t45 -19q109 -109 167 -249t58 -294t-58 -294t-167 -249
+q-18 -19 -45 -19z" />
+    <glyph glyph-name="uniF2A1" unicode="&#xf2a1;" horiz-adv-x="2176" 
+d="M192 352q-66 0 -113 -47t-47 -113t47 -113t113 -47t113 47t47 113t-47 113t-113 47zM704 352q-66 0 -113 -47t-47 -113t47 -113t113 -47t113 47t47 113t-47 113t-113 47zM704 864q-66 0 -113 -47t-47 -113t47 -113t113 -47t113 47t47 113t-47 113t-113 47zM1472 352
+q-66 0 -113 -47t-47 -113t47 -113t113 -47t113 47t47 113t-47 113t-113 47zM1984 352q-66 0 -113 -47t-47 -113t47 -113t113 -47t113 47t47 113t-47 113t-113 47zM1472 864q-66 0 -113 -47t-47 -113t47 -113t113 -47t113 47t47 113t-47 113t-113 47zM1984 864
+q-66 0 -113 -47t-47 -113t47 -113t113 -47t113 47t47 113t-47 113t-113 47zM1984 1376q-66 0 -113 -47t-47 -113t47 -113t113 -47t113 47t47 113t-47 113t-113 47zM384 192q0 -80 -56 -136t-136 -56t-136 56t-56 136t56 136t136 56t136 -56t56 -136zM896 192q0 -80 -56 -136
+t-136 -56t-136 56t-56 136t56 136t136 56t136 -56t56 -136zM384 704q0 -80 -56 -136t-136 -56t-136 56t-56 136t56 136t136 56t136 -56t56 -136zM896 704q0 -80 -56 -136t-136 -56t-136 56t-56 136t56 136t136 56t136 -56t56 -136zM384 1216q0 -80 -56 -136t-136 -56
+t-136 56t-56 136t56 136t136 56t136 -56t56 -136zM1664 192q0 -80 -56 -136t-136 -56t-136 56t-56 136t56 136t136 56t136 -56t56 -136zM896 1216q0 -80 -56 -136t-136 -56t-136 56t-56 136t56 136t136 56t136 -56t56 -136zM2176 192q0 -80 -56 -136t-136 -56t-136 56
+t-56 136t56 136t136 56t136 -56t56 -136zM1664 704q0 -80 -56 -136t-136 -56t-136 56t-56 136t56 136t136 56t136 -56t56 -136zM2176 704q0 -80 -56 -136t-136 -56t-136 56t-56 136t56 136t136 56t136 -56t56 -136zM1664 1216q0 -80 -56 -136t-136 -56t-136 56t-56 136
+t56 136t136 56t136 -56t56 -136zM2176 1216q0 -80 -56 -136t-136 -56t-136 56t-56 136t56 136t136 56t136 -56t56 -136z" />
+    <glyph glyph-name="uniF2A2" unicode="&#xf2a2;" horiz-adv-x="1792" 
+d="M128 -192q0 -26 -19 -45t-45 -19t-45 19t-19 45t19 45t45 19t45 -19t19 -45zM320 0q0 -26 -19 -45t-45 -19t-45 19t-19 45t19 45t45 19t45 -19t19 -45zM365 365l256 -256l-90 -90l-256 256zM704 384q0 -26 -19 -45t-45 -19t-45 19t-19 45t19 45t45 19t45 -19t19 -45z
+M1411 704q0 -59 -11.5 -108.5t-37.5 -93.5t-44 -67.5t-53 -64.5q-31 -35 -45.5 -54t-33.5 -50t-26.5 -64t-7.5 -74q0 -159 -112.5 -271.5t-271.5 -112.5q-26 0 -45 19t-19 45t19 45t45 19q106 0 181 75t75 181q0 57 11.5 105.5t37 91t43.5 66.5t52 63q40 46 59.5 72
+t37.5 74.5t18 103.5q0 185 -131.5 316.5t-316.5 131.5t-316.5 -131.5t-131.5 -316.5q0 -26 -19 -45t-45 -19t-45 19t-19 45q0 117 45.5 223.5t123 184t184 123t223.5 45.5t223.5 -45.5t184 -123t123 -184t45.5 -223.5zM896 576q0 -26 -19 -45t-45 -19t-45 19t-19 45t19 45
+t45 19t45 -19t19 -45zM1184 704q0 -26 -19 -45t-45 -19t-45 19t-19 45q0 93 -65.5 158.5t-158.5 65.5q-92 0 -158 -65.5t-66 -158.5q0 -26 -19 -45t-45 -19t-45 19t-19 45q0 146 103 249t249 103t249 -103t103 -249zM1578 993q10 -25 -1 -49t-36 -34q-9 -4 -23 -4
+q-19 0 -35.5 11t-23.5 30q-68 178 -224 295q-21 16 -25 42t12 47q17 21 43 25t47 -12q183 -137 266 -351zM1788 1074q9 -25 -1.5 -49t-35.5 -34q-11 -4 -23 -4q-44 0 -60 41q-92 238 -297 393q-22 16 -25.5 42t12.5 47q16 22 42 25.5t47 -12.5q235 -175 341 -449z" />
+    <glyph glyph-name="uniF2A3" unicode="&#xf2a3;" horiz-adv-x="2304" 
+d="M1032 576q-59 2 -84 55q-17 34 -48 53.5t-68 19.5q-53 0 -90.5 -37.5t-37.5 -90.5q0 -56 36 -89l10 -8q34 -31 82 -31q37 0 68 19.5t48 53.5q25 53 84 55zM1600 704q0 56 -36 89l-10 8q-34 31 -82 31q-37 0 -68 -19.5t-48 -53.5q-25 -53 -84 -55q59 -2 84 -55
+q17 -34 48 -53.5t68 -19.5q53 0 90.5 37.5t37.5 90.5zM1174 925q-17 -35 -55 -48t-73 4q-62 31 -134 31q-51 0 -99 -17q3 0 9.5 0.5t9.5 0.5q92 0 170.5 -50t118.5 -133q17 -36 3.5 -73.5t-49.5 -54.5q-18 -9 -39 -9q21 0 39 -9q36 -17 49.5 -54.5t-3.5 -73.5
+q-40 -83 -118.5 -133t-170.5 -50h-6q-16 2 -44 4l-290 27l-239 -120q-14 -7 -29 -7q-40 0 -57 35l-160 320q-11 23 -4 47.5t29 37.5l209 119l148 267q17 155 91.5 291.5t195.5 236.5q31 25 70.5 21.5t64.5 -34.5t21.5 -70t-34.5 -65q-70 -59 -117 -128q123 84 267 101
+q40 5 71.5 -19t35.5 -64q5 -40 -19 -71.5t-64 -35.5q-84 -10 -159 -55q46 10 99 10q115 0 218 -50q36 -18 49 -55.5t-5 -73.5zM2137 1085l160 -320q11 -23 4 -47.5t-29 -37.5l-209 -119l-148 -267q-17 -155 -91.5 -291.5t-195.5 -236.5q-26 -22 -61 -22q-45 0 -74 35
+q-25 31 -21.5 70t34.5 65q70 59 117 128q-123 -84 -267 -101q-4 -1 -12 -1q-36 0 -63.5 24t-31.5 60q-5 40 19 71.5t64 35.5q84 10 159 55q-46 -10 -99 -10q-115 0 -218 50q-36 18 -49 55.5t5 73.5q17 35 55 48t73 -4q62 -31 134 -31q51 0 99 17q-3 0 -9.5 -0.5t-9.5 -0.5
+q-92 0 -170.5 50t-118.5 133q-17 36 -3.5 73.5t49.5 54.5q18 9 39 9q-21 0 -39 9q-36 17 -49.5 54.5t3.5 73.5q40 83 118.5 133t170.5 50h6h1q14 -2 42 -4l291 -27l239 120q14 7 29 7q40 0 57 -35z" />
+    <glyph glyph-name="uniF2A4" unicode="&#xf2a4;" horiz-adv-x="1792" 
+d="M1056 704q0 -26 19 -45t45 -19t45 19t19 45q0 146 -103 249t-249 103t-249 -103t-103 -249q0 -26 19 -45t45 -19t45 19t19 45q0 93 66 158.5t158 65.5t158 -65.5t66 -158.5zM835 1280q-117 0 -223.5 -45.5t-184 -123t-123 -184t-45.5 -223.5q0 -26 19 -45t45 -19t45 19
+t19 45q0 185 131.5 316.5t316.5 131.5t316.5 -131.5t131.5 -316.5q0 -55 -18 -103.5t-37.5 -74.5t-59.5 -72q-34 -39 -52 -63t-43.5 -66.5t-37 -91t-11.5 -105.5q0 -106 -75 -181t-181 -75q-26 0 -45 -19t-19 -45t19 -45t45 -19q159 0 271.5 112.5t112.5 271.5q0 41 7.5 74
+t26.5 64t33.5 50t45.5 54q35 41 53 64.5t44 67.5t37.5 93.5t11.5 108.5q0 117 -45.5 223.5t-123 184t-184 123t-223.5 45.5zM591 561l226 -226l-579 -579q-12 -12 -29 -12t-29 12l-168 168q-12 12 -12 29t12 29zM1612 1524l168 -168q12 -12 12 -29t-12 -30l-233 -233
+l-26 -25l-71 -71q-66 153 -195 258l91 91l207 207q13 12 30 12t29 -12z" />
+    <glyph glyph-name="uniF2A5" unicode="&#xf2a5;" 
+d="M866 1021q0 -27 -13 -94q-11 -50 -31.5 -150t-30.5 -150q-2 -11 -4.5 -12.5t-13.5 -2.5q-20 -2 -31 -2q-58 0 -84 49.5t-26 113.5q0 88 35 174t103 124q28 14 51 14q28 0 36.5 -16.5t8.5 -47.5zM1352 597q0 14 -39 75.5t-52 66.5q-21 8 -34 8q-91 0 -226 -77l-2 2
+q3 22 27.5 135t24.5 178q0 233 -242 233q-24 0 -68 -6q-94 -17 -168.5 -89.5t-111.5 -166.5t-37 -189q0 -146 80.5 -225t227.5 -79q25 0 25 -3t-1 -5q-4 -34 -26 -117q-14 -52 -51.5 -101t-82.5 -49q-42 0 -42 47q0 24 10.5 47.5t25 39.5t29.5 28.5t26 20t11 8.5q0 3 -7 10
+q-24 22 -58.5 36.5t-65.5 14.5q-35 0 -63.5 -34t-41 -75t-12.5 -75q0 -88 51.5 -142t138.5 -54q82 0 155 53t117.5 126t65.5 153q6 22 15.5 66.5t14.5 66.5q3 12 14 18q118 60 227 60q48 0 127 -18q1 -1 4 -1q5 0 9.5 4.5t4.5 8.5zM1536 1120v-960q0 -119 -84.5 -203.5
+t-203.5 -84.5h-960q-119 0 -203.5 84.5t-84.5 203.5v960q0 119 84.5 203.5t203.5 84.5h960q119 0 203.5 -84.5t84.5 -203.5z" />
+    <glyph glyph-name="uniF2A6" unicode="&#xf2a6;" horiz-adv-x="1535" 
+d="M744 1231q0 24 -2 38.5t-8.5 30t-21 23t-37.5 7.5q-39 0 -78 -23q-105 -58 -159 -190.5t-54 -269.5q0 -44 8.5 -85.5t26.5 -80.5t52.5 -62.5t81.5 -23.5q4 0 18 -0.5t20 0t16 3t15 8.5t7 16q16 77 48 231.5t48 231.5q19 91 19 146zM1498 575q0 -7 -7.5 -13.5t-15.5 -6.5
+l-6 1q-22 3 -62 11t-72 12.5t-63 4.5q-167 0 -351 -93q-15 -8 -21 -27q-10 -36 -24.5 -105.5t-22.5 -100.5q-23 -91 -70 -179.5t-112.5 -164.5t-154.5 -123t-185 -47q-135 0 -214.5 83.5t-79.5 219.5q0 53 19.5 117t63 116.5t97.5 52.5q38 0 120 -33.5t83 -61.5
+q0 -1 -16.5 -12.5t-39.5 -31t-46 -44.5t-39 -61t-16 -74q0 -33 16.5 -53t48.5 -20q45 0 85 31.5t66.5 78t48 105.5t32.5 107t16 90v9q0 2 -3.5 3.5t-8.5 1.5h-10t-10 -0.5t-6 -0.5q-227 0 -352 122.5t-125 348.5q0 108 34.5 221t96 210t156 167.5t204.5 89.5q52 9 106 9
+q374 0 374 -360q0 -98 -38 -273t-43 -211l3 -3q101 57 182.5 88t167.5 31q22 0 53 -13q19 -7 80 -102.5t61 -116.5z" />
+    <glyph glyph-name="uniF2A7" unicode="&#xf2a7;" horiz-adv-x="1664" 
+d="M831 863q32 0 59 -18l222 -148q61 -40 110 -97l146 -170q40 -46 29 -106l-72 -413q-6 -32 -29.5 -53.5t-55.5 -25.5l-527 -56l-352 -32h-9q-39 0 -67.5 28t-28.5 68q0 37 27 64t65 32l260 32h-448q-41 0 -69.5 30t-26.5 71q2 39 32 65t69 26l442 1l-521 64q-41 5 -66 37
+t-19 73q6 35 34.5 57.5t65.5 22.5h10l481 -60l-351 94q-38 10 -62 41.5t-18 68.5q6 36 33 58.5t62 22.5q6 0 20 -2l448 -96l217 -37q1 0 3 -0.5t3 -0.5q23 0 30.5 23t-12.5 36l-186 125q-35 23 -42 63.5t18 73.5q27 38 76 38zM761 661l186 -125l-218 37l-5 2l-36 38
+l-238 262q-1 1 -2.5 3.5t-2.5 3.5q-24 31 -18.5 70t37.5 64q31 23 68 17.5t64 -33.5l142 -147q-2 -1 -5 -3.5t-4 -4.5q-32 -45 -23 -99t55 -85zM1648 1115l15 -266q4 -73 -11 -147l-48 -219q-12 -59 -67 -87l-106 -54q2 62 -39 109l-146 170q-53 61 -117 103l-222 148
+q-34 23 -76 23q-51 0 -88 -37l-235 312q-25 33 -18 73.5t41 63.5q33 22 71.5 14t62.5 -40l266 -352l-262 455q-21 35 -10.5 75t47.5 59q35 18 72.5 6t57.5 -46l241 -420l-136 337q-15 35 -4.5 74t44.5 56q37 19 76 6t56 -51l193 -415l101 -196q8 -15 23 -17.5t27 7.5t11 26
+l-12 224q-2 41 26 71t69 31q39 0 67 -28.5t30 -67.5z" />
+    <glyph glyph-name="uniF2A8" unicode="&#xf2a8;" horiz-adv-x="1792" 
+d="M335 180q-2 0 -6 2q-86 57 -168.5 145t-139.5 180q-21 30 -21 69q0 9 2 19t4 18t7 18t8.5 16t10.5 17t10 15t12 15.5t11 14.5q184 251 452 365q-110 198 -110 211q0 19 17 29q116 64 128 64q18 0 28 -16l124 -229q92 19 192 19q266 0 497.5 -137.5t378.5 -369.5
+q20 -31 20 -69t-20 -69q-91 -142 -218.5 -253.5t-278.5 -175.5q110 -198 110 -211q0 -20 -17 -29q-116 -64 -127 -64q-19 0 -29 16l-124 229l-64 119l-444 820l7 7q-58 -24 -99 -47q3 -5 127 -234t243 -449t119 -223q0 -7 -9 -9q-13 -3 -72 -3q-57 0 -60 7l-456 841
+q-39 -28 -82 -68q24 -43 214 -393.5t190 -354.5q0 -10 -11 -10q-14 0 -82.5 22t-72.5 28l-106 197l-224 413q-44 -53 -78 -106q2 -3 18 -25t23 -34l176 -327q0 -10 -10 -10zM1165 282l49 -91q273 111 450 385q-180 277 -459 389q67 -64 103 -148.5t36 -176.5
+q0 -106 -47 -200.5t-132 -157.5zM848 896q0 -20 14 -34t34 -14q86 0 147 -61t61 -147q0 -20 14 -34t34 -14t34 14t14 34q0 126 -89 215t-215 89q-20 0 -34 -14t-14 -34zM1214 961l-9 4l7 -7z" />
+    <glyph glyph-name="uniF2A9" unicode="&#xf2a9;" horiz-adv-x="1280" 
+d="M1050 430q0 -215 -147 -374q-148 -161 -378 -161q-232 0 -378 161q-147 159 -147 374q0 147 68 270.5t189 196.5t268 73q96 0 182 -31q-32 -62 -39 -126q-66 28 -143 28q-167 0 -280.5 -123t-113.5 -291q0 -170 112.5 -288.5t281.5 -118.5t281 118.5t112 288.5
+q0 89 -32 166q66 13 123 49q41 -98 41 -212zM846 619q0 -192 -79.5 -345t-238.5 -253l-14 -1q-29 0 -62 5q83 32 146.5 102.5t99.5 154.5t58.5 189t30 192.5t7.5 178.5q0 69 -3 103q55 -160 55 -326zM791 947v-2q-73 214 -206 440q88 -59 142.5 -186.5t63.5 -251.5z
+M1035 744q-83 0 -160 75q218 120 290 247q19 37 21 56q-42 -94 -139.5 -166.5t-204.5 -97.5q-35 54 -35 113q0 37 17 79t43 68q46 44 157 74q59 16 106 58.5t74 100.5q74 -105 74 -253q0 -109 -24 -170q-32 -77 -88.5 -130.5t-130.5 -53.5z" />
+    <glyph glyph-name="uniF2AA" unicode="&#xf2aa;" 
+d="M1050 495q0 78 -28 147q-41 -25 -85 -34q22 -50 22 -114q0 -117 -77 -198.5t-193 -81.5t-193.5 81.5t-77.5 198.5q0 115 78 199.5t193 84.5q53 0 98 -19q4 43 27 87q-60 21 -125 21q-154 0 -257.5 -108.5t-103.5 -263.5t103.5 -261t257.5 -106t257.5 106.5t103.5 260.5z
+M872 850q2 -24 2 -71q0 -63 -5 -123t-20.5 -132.5t-40.5 -130t-68.5 -106t-100.5 -70.5q21 -3 42 -3h10q219 139 219 411q0 116 -38 225zM872 850q-4 80 -44 171.5t-98 130.5q92 -156 142 -302zM1207 955q0 102 -51 174q-41 -86 -124 -109q-69 -19 -109 -53.5t-40 -99.5
+q0 -40 24 -77q74 17 140.5 67t95.5 115q-4 -52 -74.5 -111.5t-138.5 -97.5q52 -52 110 -52q51 0 90 37t60 90q17 42 17 117zM1536 1120v-960q0 -119 -84.5 -203.5t-203.5 -84.5h-960q-119 0 -203.5 84.5t-84.5 203.5v960q0 119 84.5 203.5t203.5 84.5h960q119 0 203.5 -84.5
+t84.5 -203.5z" />
+    <glyph glyph-name="uniF2AB" unicode="&#xf2ab;" 
+d="M1279 388q0 22 -22 27q-67 15 -118 59t-80 108q-7 19 -7 25q0 15 19.5 26t43 17t43 20.5t19.5 36.5q0 19 -18.5 31.5t-38.5 12.5q-12 0 -32 -8t-31 -8q-4 0 -12 2q5 95 5 114q0 79 -17 114q-36 78 -103 121.5t-152 43.5q-199 0 -275 -165q-17 -35 -17 -114q0 -19 5 -114
+q-4 -2 -14 -2q-12 0 -32 7.5t-30 7.5q-21 0 -38.5 -12t-17.5 -32q0 -21 19.5 -35.5t43 -20.5t43 -17t19.5 -26q0 -6 -7 -25q-64 -138 -198 -167q-22 -5 -22 -27q0 -46 137 -68q2 -5 6 -26t11.5 -30.5t23.5 -9.5q12 0 37.5 4.5t39.5 4.5q35 0 67 -15t54 -32.5t57.5 -32.5
+t76.5 -15q43 0 79 15t57.5 32.5t53.5 32.5t67 15q14 0 39.5 -4t38.5 -4q16 0 23 10t11 30t6 25q137 22 137 68zM1536 640q0 -209 -103 -385.5t-279.5 -279.5t-385.5 -103t-385.5 103t-279.5 279.5t-103 385.5t103 385.5t279.5 279.5t385.5 103t385.5 -103t279.5 -279.5
+t103 -385.5z" />
+    <glyph glyph-name="uniF2AC" unicode="&#xf2ac;" horiz-adv-x="1664" 
+d="M848 1408q134 1 240.5 -68.5t163.5 -192.5q27 -58 27 -179q0 -47 -9 -191q14 -7 28 -7q18 0 51 13.5t51 13.5q29 0 56 -18t27 -46q0 -32 -31.5 -54t-69 -31.5t-69 -29t-31.5 -47.5q0 -15 12 -43q37 -82 102.5 -150t144.5 -101q28 -12 80 -23q28 -6 28 -35
+q0 -70 -219 -103q-7 -11 -11 -39t-14 -46.5t-33 -18.5q-20 0 -62 6.5t-64 6.5q-37 0 -62 -5q-32 -5 -63 -22.5t-58 -38t-58 -40.5t-76 -33.5t-99 -13.5q-52 0 -96.5 13.5t-75 33.5t-57.5 40.5t-58 38t-62 22.5q-26 5 -63 5q-24 0 -65.5 -7.5t-58.5 -7.5q-25 0 -35 18.5
+t-14 47.5t-11 40q-219 33 -219 103q0 29 28 35q52 11 80 23q78 32 144.5 101t102.5 150q12 28 12 43q0 28 -31.5 47.5t-69.5 29.5t-69.5 31.5t-31.5 52.5q0 27 26 45.5t55 18.5q15 0 48 -13t53 -13q18 0 32 7q-9 142 -9 190q0 122 27 180q64 137 172 198t264 63z" />
+    <glyph glyph-name="uniF2AD" unicode="&#xf2ad;" 
+d="M1280 388q0 22 -22 27q-67 14 -118 58t-80 109q-7 14 -7 25q0 15 19.5 26t42.5 17t42.5 20.5t19.5 36.5q0 19 -18.5 31.5t-38.5 12.5q-11 0 -31 -8t-32 -8q-4 0 -12 2q5 63 5 115q0 78 -17 114q-36 78 -102.5 121.5t-152.5 43.5q-198 0 -275 -165q-18 -38 -18 -115
+q0 -38 6 -114q-10 -2 -15 -2q-11 0 -31.5 8t-30.5 8q-20 0 -37.5 -12.5t-17.5 -32.5q0 -21 19.5 -35.5t42.5 -20.5t42.5 -17t19.5 -26q0 -11 -7 -25q-64 -138 -198 -167q-22 -5 -22 -27q0 -47 138 -69q2 -5 6 -26t11 -30.5t23 -9.5q13 0 38.5 5t38.5 5q35 0 67.5 -15
+t54.5 -32.5t57.5 -32.5t76.5 -15q43 0 79 15t57.5 32.5t54 32.5t67.5 15q13 0 39 -4.5t39 -4.5q15 0 22.5 9.5t11.5 31t5 24.5q138 22 138 69zM1536 1120v-960q0 -119 -84.5 -203.5t-203.5 -84.5h-960q-119 0 -203.5 84.5t-84.5 203.5v960q0 119 84.5 203.5t203.5 84.5h960
+q119 0 203.5 -84.5t84.5 -203.5z" />
+    <glyph glyph-name="uniF2AE" unicode="&#xf2ae;" horiz-adv-x="2304" 
+d="M2304 1536q-69 -46 -125 -92t-89 -81t-59.5 -71.5t-37.5 -57.5t-22 -44.5t-14 -29.5q-10 -18 -35.5 -136.5t-48.5 -164.5q-15 -29 -50 -60.5t-67.5 -50.5t-72.5 -41t-48 -28q-47 -31 -151 -231q-341 14 -630 -158q-92 -53 -303 -179q47 16 86 31t55 22l15 7
+q71 27 163 64.5t133.5 53.5t108 34.5t142.5 31.5q186 31 465 -7q1 0 10 -3q11 -6 14 -17t-3 -22l-194 -345q-15 -29 -47 -22q-128 24 -354 24q-146 0 -402 -44.5t-392 -46.5q-82 -1 -149 13t-107 37t-61 40t-33 34l-1 1v2q0 6 6 6q138 0 371 55q192 366 374.5 524t383.5 158
+q5 0 14.5 -0.5t38 -5t55 -12t61.5 -24.5t63 -39.5t54 -59t40 -82.5l102 177q2 4 21 42.5t44.5 86.5t61 109.5t84 133.5t100.5 137q66 82 128 141.5t121.5 96.5t92.5 53.5t88 39.5z" />
+    <glyph glyph-name="uniF2B0" unicode="&#xf2b0;" 
+d="M1322 640q0 -45 -5 -76l-236 14l224 -78q-19 -73 -58 -141l-214 103l177 -158q-44 -61 -107 -108l-157 178l103 -215q-61 -37 -140 -59l-79 228l14 -240q-38 -6 -76 -6t-76 6l14 238l-78 -226q-74 19 -140 59l103 215l-157 -178q-59 43 -108 108l178 158l-214 -104
+q-39 69 -58 141l224 79l-237 -14q-5 42 -5 76q0 35 5 77l238 -14l-225 79q19 73 58 140l214 -104l-177 159q46 61 107 108l158 -178l-103 215q67 39 140 58l77 -224l-13 236q36 6 75 6q38 0 76 -6l-14 -237l78 225q74 -19 140 -59l-103 -214l158 178q61 -47 107 -108
+l-177 -159l213 104q37 -62 58 -141l-224 -78l237 14q5 -31 5 -77zM1352 640q0 160 -78.5 295.5t-213 214t-292.5 78.5q-119 0 -227 -46.5t-186.5 -125t-124.5 -187.5t-46 -229q0 -119 46 -228t124.5 -187.5t186.5 -125t227 -46.5q158 0 292.5 78.5t213 214t78.5 294.5z
+M1425 1023v-766l-657 -383l-657 383v766l657 383zM768 -183l708 412v823l-708 411l-708 -411v-823zM1536 1088v-896l-768 -448l-768 448v896l768 448z" />
+    <glyph glyph-name="uniF2B1" unicode="&#xf2b1;" horiz-adv-x="1664" 
+d="M339 1318h691l-26 -72h-665q-110 0 -188.5 -79t-78.5 -189v-771q0 -95 60.5 -169.5t153.5 -93.5q23 -5 98 -5v-72h-45q-140 0 -239.5 100t-99.5 240v771q0 140 99.5 240t239.5 100zM1190 1536h247l-482 -1294q-23 -61 -40.5 -103.5t-45 -98t-54 -93.5t-64.5 -78.5
+t-79.5 -65t-95.5 -41t-116 -18.5v195q163 26 220 182q20 52 20 105q0 54 -20 106l-285 733h228l187 -585zM1664 978v-1111h-795q37 55 45 73h678v1038q0 85 -49.5 155t-129.5 99l25 67q101 -34 163.5 -123.5t62.5 -197.5z" />
+    <glyph glyph-name="uniF2B2" unicode="&#xf2b2;" horiz-adv-x="1792" 
+d="M852 1227q0 -29 -17 -52.5t-45 -23.5t-45 23.5t-17 52.5t17 52.5t45 23.5t45 -23.5t17 -52.5zM688 -149v114q0 30 -20.5 51.5t-50.5 21.5t-50 -21.5t-20 -51.5v-114q0 -30 20.5 -52t49.5 -22q30 0 50.5 22t20.5 52zM860 -149v114q0 30 -20 51.5t-50 21.5t-50.5 -21.5
+t-20.5 -51.5v-114q0 -30 20.5 -52t50.5 -22q29 0 49.5 22t20.5 52zM1034 -149v114q0 30 -20.5 51.5t-50.5 21.5t-50.5 -21.5t-20.5 -51.5v-114q0 -30 20.5 -52t50.5 -22t50.5 22t20.5 52zM1208 -149v114q0 30 -20.5 51.5t-50.5 21.5t-50.5 -21.5t-20.5 -51.5v-114
+q0 -30 20.5 -52t50.5 -22t50.5 22t20.5 52zM1476 535q-84 -160 -232 -259.5t-323 -99.5q-123 0 -229.5 51.5t-178.5 137t-113 197.5t-41 232q0 88 21 174q-104 -175 -104 -390q0 -162 65 -312t185 -251q30 57 91 57q56 0 86 -50q32 50 87 50q56 0 86 -50q32 50 87 50t87 -50
+q30 50 86 50q28 0 52.5 -15.5t37.5 -40.5q112 94 177 231.5t73 287.5zM1326 564q0 75 -72 75q-17 0 -47 -6q-95 -19 -149 -19q-226 0 -226 243q0 86 30 204q-83 -127 -83 -275q0 -150 89 -260.5t235 -110.5q111 0 210 70q13 48 13 79zM884 1223q0 50 -32 89.5t-81 39.5
+t-81 -39.5t-32 -89.5q0 -51 31.5 -90.5t81.5 -39.5t81.5 39.5t31.5 90.5zM1513 884q0 96 -37.5 179t-113 137t-173.5 54q-77 0 -149 -35t-127 -94q-48 -159 -48 -268q0 -104 45.5 -157t147.5 -53q53 0 142 19q36 6 53 6q51 0 77.5 -28t26.5 -80q0 -26 -4 -46
+q75 68 117.5 165.5t42.5 200.5zM1792 667q0 -111 -33.5 -249.5t-93.5 -204.5q-58 -64 -195 -142.5t-228 -104.5l-4 -1v-114q0 -43 -29.5 -75t-72.5 -32q-56 0 -86 50q-32 -50 -87 -50t-87 50q-30 -50 -86 -50q-55 0 -87 50q-30 -50 -86 -50q-47 0 -75 33.5t-28 81.5
+q-90 -68 -198 -68q-118 0 -211 80q54 1 106 20q-113 31 -182 127q32 -7 71 -7q89 0 164 46q-192 192 -240 306q-24 56 -24 160q0 57 9 125.5t31.5 146.5t55 141t86.5 105t120 42q59 0 81 -52q19 29 42 54q2 3 12 13t13 16q10 15 23 38t25 42t28 39q87 111 211.5 177
+t260.5 66q35 0 62 -4q59 64 146 64q83 0 140 -57q5 -5 5 -12q0 -5 -6 -13.5t-12.5 -16t-16 -17l-10.5 -10.5q17 -6 36 -18t19 -24q0 -6 -16 -25q157 -138 197 -378q25 30 60 30q45 0 100 -49q90 -80 90 -279z" />
+    <glyph glyph-name="uniF2B3" unicode="&#xf2b3;" 
+d="M917 631q0 33 -6 64h-362v-132h217q-12 -76 -74.5 -120.5t-142.5 -44.5q-99 0 -169 71.5t-70 170.5t70 170.5t169 71.5q93 0 153 -59l104 101q-108 100 -257 100q-160 0 -272 -112.5t-112 -271.5t112 -271.5t272 -112.5q165 0 266.5 105t101.5 270zM1262 585h109v110
+h-109v110h-110v-110h-110v-110h110v-110h110v110zM1536 640q0 -209 -103 -385.5t-279.5 -279.5t-385.5 -103t-385.5 103t-279.5 279.5t-103 385.5t103 385.5t279.5 279.5t385.5 103t385.5 -103t279.5 -279.5t103 -385.5z" />
+    <glyph glyph-name="uniF2B4" unicode="&#xf2b4;" 
+d="M1536 1024v-839q0 -48 -49 -62q-174 -52 -338 -52q-73 0 -215.5 29.5t-227.5 29.5q-164 0 -370 -48v-338h-160v1368q-63 25 -101 81t-38 124q0 91 64 155t155 64t155 -64t64 -155q0 -68 -38 -124t-101 -81v-68q190 44 343 44q99 0 198 -15q14 -2 111.5 -22.5t149.5 -20.5
+q77 0 165 18q11 2 80 21t89 19q26 0 45 -19t19 -45z" />
+    <glyph glyph-name="uniF2B5" unicode="&#xf2b5;" horiz-adv-x="2304" 
+d="M192 384q40 0 56 32t0 64t-56 32t-56 -32t0 -64t56 -32zM1665 442q-10 13 -38.5 50t-41.5 54t-38 49t-42.5 53t-40.5 47t-45 49l-125 -140q-83 -94 -208.5 -92t-205.5 98q-57 69 -56.5 158t58.5 157l177 206q-22 11 -51 16.5t-47.5 6t-56.5 -0.5t-49 -1q-92 0 -158 -66
+l-158 -158h-155v-544q5 0 21 0.5t22 0t19.5 -2t20.5 -4.5t17.5 -8.5t18.5 -13.5l297 -292q115 -111 227 -111q78 0 125 47q57 -20 112.5 8t72.5 85q74 -6 127 44q20 18 36 45.5t14 50.5q10 -10 43 -10q43 0 77 21t49.5 53t12 71.5t-30.5 73.5zM1824 384h96v512h-93l-157 180
+q-66 76 -169 76h-167q-89 0 -146 -67l-209 -243q-28 -33 -28 -75t27 -75q43 -51 110 -52t111 49l193 218q25 23 53.5 21.5t47 -27t8.5 -56.5q16 -19 56 -63t60 -68q29 -36 82.5 -105.5t64.5 -84.5q52 -66 60 -140zM2112 384q40 0 56 32t0 64t-56 32t-56 -32t0 -64t56 -32z
+M2304 960v-640q0 -26 -19 -45t-45 -19h-434q-27 -65 -82 -106.5t-125 -51.5q-33 -48 -80.5 -81.5t-102.5 -45.5q-42 -53 -104.5 -81.5t-128.5 -24.5q-60 -34 -126 -39.5t-127.5 14t-117 53.5t-103.5 81l-287 282h-358q-26 0 -45 19t-19 45v672q0 26 19 45t45 19h421
+q14 14 47 48t47.5 48t44 40t50.5 37.5t51 25.5t62 19.5t68 5.5h117q99 0 181 -56q82 56 181 56h167q35 0 67 -6t56.5 -14.5t51.5 -26.5t44.5 -31t43 -39.5t39 -42t41 -48t41.5 -48.5h355q26 0 45 -19t19 -45z" />
+    <glyph glyph-name="uniF2B6" unicode="&#xf2b6;" horiz-adv-x="1792" 
+d="M1792 882v-978q0 -66 -47 -113t-113 -47h-1472q-66 0 -113 47t-47 113v978q0 15 11 24q8 7 39 34.5t41.5 36t45.5 37.5t70 55.5t96 73t143.5 107t192.5 140.5q5 4 52.5 40t71.5 52.5t64 35t69 18.5t69 -18.5t65 -35.5t71 -52t52 -40q110 -80 192.5 -140.5t143.5 -107
+t96 -73t70 -55.5t45.5 -37.5t41.5 -36t39 -34.5q11 -9 11 -24zM1228 297q263 191 345 252q11 8 12.5 20.5t-6.5 23.5l-38 52q-8 11 -21 12.5t-24 -6.5q-231 -169 -343 -250q-5 -3 -52 -39t-71.5 -52.5t-64.5 -35t-69 -18.5t-69 18.5t-64.5 35t-71.5 52.5t-52 39
+q-186 134 -343 250q-11 8 -24 6.5t-21 -12.5l-38 -52q-8 -11 -6.5 -23.5t12.5 -20.5q82 -61 345 -252q10 -8 50 -38t65 -47t64 -39.5t77.5 -33.5t75.5 -11t75.5 11t79 34.5t64.5 39.5t65 47.5t48 36.5z" />
+    <glyph glyph-name="uniF2B7" unicode="&#xf2b7;" horiz-adv-x="1792" 
+d="M1474 623l39 -51q8 -11 6.5 -23.5t-11.5 -20.5q-43 -34 -126.5 -98.5t-146.5 -113t-67 -51.5q-39 -32 -60 -48t-60.5 -41t-76.5 -36.5t-74 -11.5h-1h-1q-37 0 -74 11.5t-76 36.5t-61 41.5t-60 47.5q-5 4 -65 50.5t-143.5 111t-122.5 94.5q-11 8 -12.5 20.5t6.5 23.5
+l37 52q8 11 21.5 13t24.5 -7q94 -73 306 -236q5 -4 43.5 -35t60.5 -46.5t56.5 -32.5t58.5 -17h1h1q24 0 58.5 17t56.5 32.5t60.5 46.5t43.5 35q258 198 313 242q11 8 24 6.5t21 -12.5zM1664 -96v928q-90 83 -159 139q-91 74 -389 304q-3 2 -43 35t-61 48t-56 32.5t-59 17.5
+h-1h-1q-24 0 -59 -17.5t-56 -32.5t-61 -48t-43 -35q-215 -166 -315.5 -245.5t-129.5 -104t-82 -74.5q-14 -12 -21 -19v-928q0 -13 9.5 -22.5t22.5 -9.5h1472q13 0 22.5 9.5t9.5 22.5zM1792 832v-928q0 -66 -47 -113t-113 -47h-1472q-66 0 -113 47t-47 113v928q0 56 41 94
+q123 114 350 290.5t233 181.5q36 30 59 47.5t61.5 42t76 36.5t74.5 12h1h1q37 0 74.5 -12t76 -36.5t61.5 -42t59 -47.5q43 -36 156 -122t226 -177t201 -173q41 -38 41 -94z" />
+    <glyph glyph-name="uniF2B8" unicode="&#xf2b8;" 
+d="M330 1l202 -214l-34 236l-216 213zM556 -225l274 218l-11 245l-300 -215zM245 413l227 -213l-48 327l-245 204zM495 189l317 214l-14 324l-352 -200zM843 178l95 -80l-2 239l-103 79q0 -1 1 -8.5t0 -12t-5 -7.5l-78 -52l85 -70q7 -6 7 -88zM138 930l256 -200l-68 465
+l-279 173zM1173 267l15 234l-230 -164l2 -240zM417 722l373 194l-19 441l-423 -163zM1270 357l20 233l-226 142l-2 -105l144 -95q6 -4 4 -9l-7 -119zM1461 496l30 222l-179 -128l-20 -228zM1273 329l-71 49l-8 -117q0 -5 -4 -8l-234 -187q-7 -5 -14 0l-98 83l7 -161
+q0 -5 -4 -8l-293 -234q-4 -2 -6 -2q-8 2 -8 3l-228 242q-4 4 -59 277q-2 7 5 11l61 37q-94 86 -95 92l-72 351q-2 7 6 12l94 45q-133 100 -135 108l-96 466q-2 10 7 13l433 135q5 0 8 -1l317 -153q6 -4 6 -9l20 -463q0 -7 -6 -10l-118 -61l126 -85q5 -2 5 -8l5 -123l121 74
+q5 4 11 0l84 -56l3 110q0 6 5 9l206 126q6 3 11 0l245 -135q4 -4 5 -7t-6.5 -60t-17.5 -124.5t-10 -70.5q0 -5 -4 -7l-191 -153q-6 -5 -13 0z" />
+    <glyph glyph-name="uniF2B9" unicode="&#xf2b9;" horiz-adv-x="1664" 
+d="M1201 298q0 57 -5.5 107t-21 100.5t-39.5 86t-64 58t-91 22.5q-6 -4 -33.5 -20.5t-42.5 -24.5t-40.5 -20t-49 -17t-46.5 -5t-46.5 5t-49 17t-40.5 20t-42.5 24.5t-33.5 20.5q-51 0 -91 -22.5t-64 -58t-39.5 -86t-21 -100.5t-5.5 -107q0 -73 42 -121.5t103 -48.5h576
+q61 0 103 48.5t42 121.5zM1028 892q0 108 -76.5 184t-183.5 76t-183.5 -76t-76.5 -184q0 -107 76.5 -183t183.5 -76t183.5 76t76.5 183zM1664 352v-192q0 -14 -9 -23t-23 -9h-96v-224q0 -66 -47 -113t-113 -47h-1216q-66 0 -113 47t-47 113v1472q0 66 47 113t113 47h1216
+q66 0 113 -47t47 -113v-224h96q14 0 23 -9t9 -23v-192q0 -14 -9 -23t-23 -9h-96v-128h96q14 0 23 -9t9 -23v-192q0 -14 -9 -23t-23 -9h-96v-128h96q14 0 23 -9t9 -23z" />
+    <glyph glyph-name="uniF2BA" unicode="&#xf2ba;" horiz-adv-x="1664" 
+d="M1028 892q0 -107 -76.5 -183t-183.5 -76t-183.5 76t-76.5 183q0 108 76.5 184t183.5 76t183.5 -76t76.5 -184zM980 672q46 0 82.5 -17t60 -47.5t39.5 -67t24 -81t11.5 -82.5t3.5 -79q0 -67 -39.5 -118.5t-105.5 -51.5h-576q-66 0 -105.5 51.5t-39.5 118.5q0 48 4.5 93.5
+t18.5 98.5t36.5 91.5t63 64.5t93.5 26h5q7 -4 32 -19.5t35.5 -21t33 -17t37 -16t35 -9t39.5 -4.5t39.5 4.5t35 9t37 16t33 17t35.5 21t32 19.5zM1664 928q0 -13 -9.5 -22.5t-22.5 -9.5h-96v-128h96q13 0 22.5 -9.5t9.5 -22.5v-192q0 -13 -9.5 -22.5t-22.5 -9.5h-96v-128h96
+q13 0 22.5 -9.5t9.5 -22.5v-192q0 -13 -9.5 -22.5t-22.5 -9.5h-96v-224q0 -66 -47 -113t-113 -47h-1216q-66 0 -113 47t-47 113v1472q0 66 47 113t113 47h1216q66 0 113 -47t47 -113v-224h96q13 0 22.5 -9.5t9.5 -22.5v-192zM1408 -96v1472q0 13 -9.5 22.5t-22.5 9.5h-1216
+q-13 0 -22.5 -9.5t-9.5 -22.5v-1472q0 -13 9.5 -22.5t22.5 -9.5h1216q13 0 22.5 9.5t9.5 22.5z" />
+    <glyph glyph-name="uniF2BB" unicode="&#xf2bb;" horiz-adv-x="2048" 
+d="M1024 405q0 64 -9 117.5t-29.5 103t-60.5 78t-97 28.5q-6 -4 -30 -18t-37.5 -21.5t-35.5 -17.5t-43 -14.5t-42 -4.5t-42 4.5t-43 14.5t-35.5 17.5t-37.5 21.5t-30 18q-57 0 -97 -28.5t-60.5 -78t-29.5 -103t-9 -117.5t37 -106.5t91 -42.5h512q54 0 91 42.5t37 106.5z
+M867 925q0 94 -66.5 160.5t-160.5 66.5t-160.5 -66.5t-66.5 -160.5t66.5 -160.5t160.5 -66.5t160.5 66.5t66.5 160.5zM1792 416v64q0 14 -9 23t-23 9h-576q-14 0 -23 -9t-9 -23v-64q0 -14 9 -23t23 -9h576q14 0 23 9t9 23zM1792 676v56q0 15 -10.5 25.5t-25.5 10.5h-568
+q-15 0 -25.5 -10.5t-10.5 -25.5v-56q0 -15 10.5 -25.5t25.5 -10.5h568q15 0 25.5 10.5t10.5 25.5zM1792 928v64q0 14 -9 23t-23 9h-576q-14 0 -23 -9t-9 -23v-64q0 -14 9 -23t23 -9h576q14 0 23 9t9 23zM2048 1248v-1216q0 -66 -47 -113t-113 -47h-352v96q0 14 -9 23t-23 9
+h-64q-14 0 -23 -9t-9 -23v-96h-768v96q0 14 -9 23t-23 9h-64q-14 0 -23 -9t-9 -23v-96h-352q-66 0 -113 47t-47 113v1216q0 66 47 113t113 47h1728q66 0 113 -47t47 -113z" />
+    <glyph glyph-name="uniF2BC" unicode="&#xf2bc;" horiz-adv-x="2048" 
+d="M1024 405q0 -64 -37 -106.5t-91 -42.5h-512q-54 0 -91 42.5t-37 106.5t9 117.5t29.5 103t60.5 78t97 28.5q6 -4 30 -18t37.5 -21.5t35.5 -17.5t43 -14.5t42 -4.5t42 4.5t43 14.5t35.5 17.5t37.5 21.5t30 18q57 0 97 -28.5t60.5 -78t29.5 -103t9 -117.5zM867 925
+q0 -94 -66.5 -160.5t-160.5 -66.5t-160.5 66.5t-66.5 160.5t66.5 160.5t160.5 66.5t160.5 -66.5t66.5 -160.5zM1792 480v-64q0 -14 -9 -23t-23 -9h-576q-14 0 -23 9t-9 23v64q0 14 9 23t23 9h576q14 0 23 -9t9 -23zM1792 732v-56q0 -15 -10.5 -25.5t-25.5 -10.5h-568
+q-15 0 -25.5 10.5t-10.5 25.5v56q0 15 10.5 25.5t25.5 10.5h568q15 0 25.5 -10.5t10.5 -25.5zM1792 992v-64q0 -14 -9 -23t-23 -9h-576q-14 0 -23 9t-9 23v64q0 14 9 23t23 9h576q14 0 23 -9t9 -23zM1920 32v1216q0 13 -9.5 22.5t-22.5 9.5h-1728q-13 0 -22.5 -9.5
+t-9.5 -22.5v-1216q0 -13 9.5 -22.5t22.5 -9.5h352v96q0 14 9 23t23 9h64q14 0 23 -9t9 -23v-96h768v96q0 14 9 23t23 9h64q14 0 23 -9t9 -23v-96h352q13 0 22.5 9.5t9.5 22.5zM2048 1248v-1216q0 -66 -47 -113t-113 -47h-1728q-66 0 -113 47t-47 113v1216q0 66 47 113
+t113 47h1728q66 0 113 -47t47 -113z" />
+    <glyph glyph-name="uniF2BD" unicode="&#xf2bd;" horiz-adv-x="1792" 
+d="M1523 197q-22 155 -87.5 257.5t-184.5 118.5q-67 -74 -159.5 -115.5t-195.5 -41.5t-195.5 41.5t-159.5 115.5q-119 -16 -184.5 -118.5t-87.5 -257.5q106 -150 271 -237.5t356 -87.5t356 87.5t271 237.5zM1280 896q0 159 -112.5 271.5t-271.5 112.5t-271.5 -112.5
+t-112.5 -271.5t112.5 -271.5t271.5 -112.5t271.5 112.5t112.5 271.5zM1792 640q0 -182 -71 -347.5t-190.5 -286t-285.5 -191.5t-349 -71q-182 0 -348 71t-286 191t-191 286t-71 348t71 348t191 286t286 191t348 71t348 -71t286 -191t191 -286t71 -348z" />
+    <glyph glyph-name="uniF2BE" unicode="&#xf2be;" horiz-adv-x="1792" 
+d="M896 1536q182 0 348 -71t286 -191t191 -286t71 -348q0 -181 -70.5 -347t-190.5 -286t-286 -191.5t-349 -71.5t-349 71t-285.5 191.5t-190.5 286t-71 347.5t71 348t191 286t286 191t348 71zM1515 185q149 205 149 455q0 156 -61 298t-164 245t-245 164t-298 61t-298 -61
+t-245 -164t-164 -245t-61 -298q0 -250 149 -455q66 327 306 327q131 -128 313 -128t313 128q240 0 306 -327zM1280 832q0 159 -112.5 271.5t-271.5 112.5t-271.5 -112.5t-112.5 -271.5t112.5 -271.5t271.5 -112.5t271.5 112.5t112.5 271.5z" />
+    <glyph glyph-name="uniF2C0" unicode="&#xf2c0;" 
+d="M1201 752q47 -14 89.5 -38t89 -73t79.5 -115.5t55 -172t22 -236.5q0 -154 -100 -263.5t-241 -109.5h-854q-141 0 -241 109.5t-100 263.5q0 131 22 236.5t55 172t79.5 115.5t89 73t89.5 38q-79 125 -79 272q0 104 40.5 198.5t109.5 163.5t163.5 109.5t198.5 40.5
+t198.5 -40.5t163.5 -109.5t109.5 -163.5t40.5 -198.5q0 -147 -79 -272zM768 1408q-159 0 -271.5 -112.5t-112.5 -271.5t112.5 -271.5t271.5 -112.5t271.5 112.5t112.5 271.5t-112.5 271.5t-271.5 112.5zM1195 -128q88 0 150.5 71.5t62.5 173.5q0 239 -78.5 377t-225.5 145
+q-145 -127 -336 -127t-336 127q-147 -7 -225.5 -145t-78.5 -377q0 -102 62.5 -173.5t150.5 -71.5h854z" />
+    <glyph glyph-name="uniF2C1" unicode="&#xf2c1;" horiz-adv-x="1280" 
+d="M1024 278q0 -64 -37 -107t-91 -43h-512q-54 0 -91 43t-37 107t9 118t29.5 104t61 78.5t96.5 28.5q80 -75 188 -75t188 75q56 0 96.5 -28.5t61 -78.5t29.5 -104t9 -118zM870 797q0 -94 -67.5 -160.5t-162.5 -66.5t-162.5 66.5t-67.5 160.5t67.5 160.5t162.5 66.5
+t162.5 -66.5t67.5 -160.5zM1152 -96v1376h-1024v-1376q0 -13 9.5 -22.5t22.5 -9.5h960q13 0 22.5 9.5t9.5 22.5zM1280 1376v-1472q0 -66 -47 -113t-113 -47h-960q-66 0 -113 47t-47 113v1472q0 66 47 113t113 47h352v-96q0 -14 9 -23t23 -9h192q14 0 23 9t9 23v96h352
+q66 0 113 -47t47 -113z" />
+    <glyph glyph-name="uniF2C2" unicode="&#xf2c2;" horiz-adv-x="2048" 
+d="M896 324q0 54 -7.5 100.5t-24.5 90t-51 68.5t-81 25q-64 -64 -156 -64t-156 64q-47 0 -81 -25t-51 -68.5t-24.5 -90t-7.5 -100.5q0 -55 31.5 -93.5t75.5 -38.5h426q44 0 75.5 38.5t31.5 93.5zM768 768q0 80 -56 136t-136 56t-136 -56t-56 -136t56 -136t136 -56t136 56
+t56 136zM1792 288v64q0 14 -9 23t-23 9h-704q-14 0 -23 -9t-9 -23v-64q0 -14 9 -23t23 -9h704q14 0 23 9t9 23zM1408 544v64q0 14 -9 23t-23 9h-320q-14 0 -23 -9t-9 -23v-64q0 -14 9 -23t23 -9h320q14 0 23 9t9 23zM1792 544v64q0 14 -9 23t-23 9h-192q-14 0 -23 -9t-9 -23
+v-64q0 -14 9 -23t23 -9h192q14 0 23 9t9 23zM1792 800v64q0 14 -9 23t-23 9h-704q-14 0 -23 -9t-9 -23v-64q0 -14 9 -23t23 -9h704q14 0 23 9t9 23zM128 1152h1792v96q0 14 -9 23t-23 9h-1728q-14 0 -23 -9t-9 -23v-96zM2048 1248v-1216q0 -66 -47 -113t-113 -47h-1728
+q-66 0 -113 47t-47 113v1216q0 66 47 113t113 47h1728q66 0 113 -47t47 -113z" />
+    <glyph glyph-name="uniF2C3" unicode="&#xf2c3;" horiz-adv-x="2048" 
+d="M896 324q0 -55 -31.5 -93.5t-75.5 -38.5h-426q-44 0 -75.5 38.5t-31.5 93.5q0 54 7.5 100.5t24.5 90t51 68.5t81 25q64 -64 156 -64t156 64q47 0 81 -25t51 -68.5t24.5 -90t7.5 -100.5zM768 768q0 -80 -56 -136t-136 -56t-136 56t-56 136t56 136t136 56t136 -56t56 -136z
+M1792 352v-64q0 -14 -9 -23t-23 -9h-704q-14 0 -23 9t-9 23v64q0 14 9 23t23 9h704q14 0 23 -9t9 -23zM1408 608v-64q0 -14 -9 -23t-23 -9h-320q-14 0 -23 9t-9 23v64q0 14 9 23t23 9h320q14 0 23 -9t9 -23zM1792 608v-64q0 -14 -9 -23t-23 -9h-192q-14 0 -23 9t-9 23v64
+q0 14 9 23t23 9h192q14 0 23 -9t9 -23zM1792 864v-64q0 -14 -9 -23t-23 -9h-704q-14 0 -23 9t-9 23v64q0 14 9 23t23 9h704q14 0 23 -9t9 -23zM1920 32v1120h-1792v-1120q0 -13 9.5 -22.5t22.5 -9.5h1728q13 0 22.5 9.5t9.5 22.5zM2048 1248v-1216q0 -66 -47 -113t-113 -47
+h-1728q-66 0 -113 47t-47 113v1216q0 66 47 113t113 47h1728q66 0 113 -47t47 -113z" />
+    <glyph glyph-name="uniF2C4" unicode="&#xf2c4;" horiz-adv-x="1792" 
+d="M1255 749q0 318 -105 474.5t-330 156.5q-222 0 -326 -157t-104 -474q0 -316 104 -471.5t326 -155.5q74 0 131 17q-22 43 -39 73t-44 65t-53.5 56.5t-63 36t-77.5 14.5q-46 0 -79 -16l-49 97q105 91 276 91q132 0 215.5 -54t150.5 -155q67 149 67 402zM1645 117h117
+q3 -27 -2 -67t-26.5 -95t-58 -100.5t-107 -78t-162.5 -32.5q-71 0 -130.5 19t-105.5 56t-79 78t-66 96q-97 -27 -205 -27q-150 0 -292.5 58t-253 158.5t-178 249t-67.5 317.5q0 170 67.5 319.5t178.5 250.5t253.5 159t291.5 58q121 0 238.5 -36t217 -106t176 -164.5
+t119.5 -219t43 -261.5q0 -190 -80.5 -347.5t-218.5 -264.5q47 -70 93.5 -106.5t104.5 -36.5q61 0 94 37.5t38 85.5z" />
+    <glyph glyph-name="uniF2C5" unicode="&#xf2c5;" horiz-adv-x="2304" 
+d="M453 -101q0 -21 -16 -37.5t-37 -16.5q-1 0 -13 3q-63 15 -162 140q-225 284 -225 676q0 341 213 614q39 51 95 103.5t94 52.5q19 0 35 -13.5t16 -32.5q0 -27 -63 -90q-98 -102 -147 -184q-119 -199 -119 -449q0 -281 123 -491q50 -85 136 -173q2 -3 14.5 -16t19.5 -21
+t17 -20.5t14.5 -23.5t4.5 -21zM1796 33q0 -29 -17.5 -48.5t-46.5 -19.5h-1081q-26 0 -45 19t-19 45q0 29 17.5 48.5t46.5 19.5h1081q26 0 45 -19t19 -45zM1581 644q0 -134 -67 -233q-25 -38 -69.5 -78.5t-83.5 -60.5q-16 -10 -27 -10q-7 0 -15 6t-8 12q0 9 19 30t42 46
+t42 67.5t19 88.5q0 76 -35 130q-29 42 -46 42q-3 0 -3 -5q0 -12 7.5 -35.5t7.5 -36.5q0 -22 -21.5 -35t-44.5 -13q-66 0 -66 76q0 15 1.5 44t1.5 44q0 25 -10 46q-13 25 -42 53.5t-51 28.5q-5 0 -7 -0.5t-3.5 -2.5t-1.5 -6q0 -2 16 -26t16 -54q0 -37 -19 -68t-46 -54
+t-53.5 -46t-45.5 -54t-19 -68q0 -98 42 -160q29 -43 79 -63q16 -5 17 -10q1 -2 1 -5q0 -16 -18 -16q-6 0 -33 11q-119 43 -195 139.5t-76 218.5q0 55 24.5 115.5t60 115t70.5 108.5t59.5 113.5t24.5 111.5q0 53 -25 94q-29 48 -56 64q-19 9 -19 21q0 20 41 20q50 0 110 -29
+q41 -19 71 -44.5t49.5 -51t33.5 -62.5t22 -69t16 -80q0 -1 3 -17.5t4.5 -25t5.5 -25t9 -27t11 -21.5t14.5 -16.5t18.5 -5.5q23 0 37 14t14 37q0 25 -20 67t-20 52t10 10q27 0 93 -70q72 -76 102.5 -156t30.5 -186zM2304 615q0 -274 -138 -503q-19 -32 -48 -72t-68 -86.5
+t-81 -77t-74 -30.5q-16 0 -31 15.5t-15 31.5q0 15 29 50.5t68.5 77t48.5 52.5q183 230 183 531q0 131 -20.5 235t-72.5 211q-58 119 -163 228q-2 3 -13 13.5t-16.5 16.5t-15 17.5t-15 20t-9.5 18.5t-4 19q0 19 16 35.5t35 16.5q70 0 196 -169q98 -131 146 -273t60 -314
+q2 -42 2 -64z" />
+    <glyph glyph-name="uniF2C6" unicode="&#xf2c6;" horiz-adv-x="1792" 
+d="M1189 229l147 693q9 44 -10.5 63t-51.5 7l-864 -333q-29 -11 -39.5 -25t-2.5 -26.5t32 -19.5l221 -69l513 323q21 14 32 6q7 -5 -4 -15l-415 -375v0v0l-16 -228q23 0 45 22l108 104l224 -165q64 -36 81 38zM1792 640q0 -182 -71 -348t-191 -286t-286 -191t-348 -71
+t-348 71t-286 191t-191 286t-71 348t71 348t191 286t286 191t348 71t348 -71t286 -191t191 -286t71 -348z" />
+    <glyph glyph-name="uniF2C7" unicode="&#xf2c7;" horiz-adv-x="1024" 
+d="M640 192q0 -80 -56 -136t-136 -56t-136 56t-56 136q0 60 35 110t93 71v907h128v-907q58 -21 93 -71t35 -110zM768 192q0 77 -34 144t-94 112v768q0 80 -56 136t-136 56t-136 -56t-56 -136v-768q-60 -45 -94 -112t-34 -144q0 -133 93.5 -226.5t226.5 -93.5t226.5 93.5
+t93.5 226.5zM896 192q0 -185 -131.5 -316.5t-316.5 -131.5t-316.5 131.5t-131.5 316.5q0 182 128 313v711q0 133 93.5 226.5t226.5 93.5t226.5 -93.5t93.5 -226.5v-711q128 -131 128 -313zM1024 768v-128h-192v128h192zM1024 1024v-128h-192v128h192zM1024 1280v-128h-192
+v128h192z" />
+    <glyph glyph-name="uniF2C8" unicode="&#xf2c8;" horiz-adv-x="1024" 
+d="M640 192q0 -80 -56 -136t-136 -56t-136 56t-56 136q0 60 35 110t93 71v651h128v-651q58 -21 93 -71t35 -110zM768 192q0 77 -34 144t-94 112v768q0 80 -56 136t-136 56t-136 -56t-56 -136v-768q-60 -45 -94 -112t-34 -144q0 -133 93.5 -226.5t226.5 -93.5t226.5 93.5
+t93.5 226.5zM896 192q0 -185 -131.5 -316.5t-316.5 -131.5t-316.5 131.5t-131.5 316.5q0 182 128 313v711q0 133 93.5 226.5t226.5 93.5t226.5 -93.5t93.5 -226.5v-711q128 -131 128 -313zM1024 768v-128h-192v128h192zM1024 1024v-128h-192v128h192zM1024 1280v-128h-192
+v128h192z" />
+    <glyph glyph-name="uniF2C9" unicode="&#xf2c9;" horiz-adv-x="1024" 
+d="M640 192q0 -80 -56 -136t-136 -56t-136 56t-56 136q0 60 35 110t93 71v395h128v-395q58 -21 93 -71t35 -110zM768 192q0 77 -34 144t-94 112v768q0 80 -56 136t-136 56t-136 -56t-56 -136v-768q-60 -45 -94 -112t-34 -144q0 -133 93.5 -226.5t226.5 -93.5t226.5 93.5
+t93.5 226.5zM896 192q0 -185 -131.5 -316.5t-316.5 -131.5t-316.5 131.5t-131.5 316.5q0 182 128 313v711q0 133 93.5 226.5t226.5 93.5t226.5 -93.5t93.5 -226.5v-711q128 -131 128 -313zM1024 768v-128h-192v128h192zM1024 1024v-128h-192v128h192zM1024 1280v-128h-192
+v128h192z" />
+    <glyph glyph-name="uniF2CA" unicode="&#xf2ca;" horiz-adv-x="1024" 
+d="M640 192q0 -80 -56 -136t-136 -56t-136 56t-56 136q0 60 35 110t93 71v139h128v-139q58 -21 93 -71t35 -110zM768 192q0 77 -34 144t-94 112v768q0 80 -56 136t-136 56t-136 -56t-56 -136v-768q-60 -45 -94 -112t-34 -144q0 -133 93.5 -226.5t226.5 -93.5t226.5 93.5
+t93.5 226.5zM896 192q0 -185 -131.5 -316.5t-316.5 -131.5t-316.5 131.5t-131.5 316.5q0 182 128 313v711q0 133 93.5 226.5t226.5 93.5t226.5 -93.5t93.5 -226.5v-711q128 -131 128 -313zM1024 768v-128h-192v128h192zM1024 1024v-128h-192v128h192zM1024 1280v-128h-192
+v128h192z" />
+    <glyph glyph-name="uniF2CB" unicode="&#xf2cb;" horiz-adv-x="1024" 
+d="M640 192q0 -80 -56 -136t-136 -56t-136 56t-56 136q0 79 56 135.5t136 56.5t136 -56.5t56 -135.5zM768 192q0 77 -34 144t-94 112v768q0 80 -56 136t-136 56t-136 -56t-56 -136v-768q-60 -45 -94 -112t-34 -144q0 -133 93.5 -226.5t226.5 -93.5t226.5 93.5t93.5 226.5z
+M896 192q0 -185 -131.5 -316.5t-316.5 -131.5t-316.5 131.5t-131.5 316.5q0 182 128 313v711q0 133 93.5 226.5t226.5 93.5t226.5 -93.5t93.5 -226.5v-711q128 -131 128 -313zM1024 768v-128h-192v128h192zM1024 1024v-128h-192v128h192zM1024 1280v-128h-192v128h192z" />
+    <glyph glyph-name="uniF2CC" unicode="&#xf2cc;" horiz-adv-x="1920" 
+d="M1433 1287q10 -10 10 -23t-10 -23l-626 -626q-10 -10 -23 -10t-23 10l-82 82q-10 10 -10 23t10 23l44 44q-72 91 -81.5 207t46.5 215q-74 71 -176 71q-106 0 -181 -75t-75 -181v-1280h-256v1280q0 104 40.5 198.5t109.5 163.5t163.5 109.5t198.5 40.5q106 0 201 -41
+t166 -115q94 39 197 24.5t185 -79.5l44 44q10 10 23 10t23 -10zM1344 1024q26 0 45 -19t19 -45t-19 -45t-45 -19t-45 19t-19 45t19 45t45 19zM1600 896q-26 0 -45 19t-19 45t19 45t45 19t45 -19t19 -45t-19 -45t-45 -19zM1856 1024q26 0 45 -19t19 -45t-19 -45t-45 -19
+t-45 19t-19 45t19 45t45 19zM1216 896q26 0 45 -19t19 -45t-19 -45t-45 -19t-45 19t-19 45t19 45t45 19zM1408 832q0 26 19 45t45 19t45 -19t19 -45t-19 -45t-45 -19t-45 19t-19 45zM1728 896q26 0 45 -19t19 -45t-19 -45t-45 -19t-45 19t-19 45t19 45t45 19zM1088 768
+q26 0 45 -19t19 -45t-19 -45t-45 -19t-45 19t-19 45t19 45t45 19zM1344 640q-26 0 -45 19t-19 45t19 45t45 19t45 -19t19 -45t-19 -45t-45 -19zM1600 768q26 0 45 -19t19 -45t-19 -45t-45 -19t-45 19t-19 45t19 45t45 19zM1216 512q-26 0 -45 19t-19 45t19 45t45 19t45 -19
+t19 -45t-19 -45t-45 -19zM1472 640q26 0 45 -19t19 -45t-19 -45t-45 -19t-45 19t-19 45t19 45t45 19zM1088 512q26 0 45 -19t19 -45t-19 -45t-45 -19t-45 19t-19 45t19 45t45 19zM1344 512q26 0 45 -19t19 -45t-19 -45t-45 -19t-45 19t-19 45t19 45t45 19zM1216 384
+q26 0 45 -19t19 -45t-19 -45t-45 -19t-45 19t-19 45t19 45t45 19zM1088 256q26 0 45 -19t19 -45t-19 -45t-45 -19t-45 19t-19 45t19 45t45 19z" />
+    <glyph glyph-name="uniF2CD" unicode="&#xf2cd;" horiz-adv-x="1792" 
+d="M1664 448v-192q0 -169 -128 -286v-194q0 -14 -9 -23t-23 -9h-64q-14 0 -23 9t-9 23v118q-63 -22 -128 -22h-768q-65 0 -128 22v-110q0 -17 -9.5 -28.5t-22.5 -11.5h-64q-13 0 -22.5 11.5t-9.5 28.5v186q-128 117 -128 286v192h1536zM704 864q0 -14 -9 -23t-23 -9t-23 9
+t-9 23t9 23t23 9t23 -9t9 -23zM768 928q0 -14 -9 -23t-23 -9t-23 9t-9 23t9 23t23 9t23 -9t9 -23zM704 992q0 -14 -9 -23t-23 -9t-23 9t-9 23t9 23t23 9t23 -9t9 -23zM832 992q0 -14 -9 -23t-23 -9t-23 9t-9 23t9 23t23 9t23 -9t9 -23zM768 1056q0 -14 -9 -23t-23 -9t-23 9
+t-9 23t9 23t23 9t23 -9t9 -23zM704 1120q0 -14 -9 -23t-23 -9t-23 9t-9 23t9 23t23 9t23 -9t9 -23zM1792 608v-64q0 -14 -9 -23t-23 -9h-1728q-14 0 -23 9t-9 23v64q0 14 9 23t23 9h96v640q0 106 75 181t181 75q108 0 184 -78q46 19 98 12t93 -39l22 22q11 11 22 0l42 -42
+q11 -11 0 -22l-314 -314q-11 -11 -22 0l-42 42q-11 11 0 22l22 22q-36 46 -40.5 104t23.5 108q-37 35 -88 35q-53 0 -90.5 -37.5t-37.5 -90.5v-640h1504q14 0 23 -9t9 -23zM896 1056q0 -14 -9 -23t-23 -9t-23 9t-9 23t9 23t23 9t23 -9t9 -23zM832 1120q0 -14 -9 -23t-23 -9
+t-23 9t-9 23t9 23t23 9t23 -9t9 -23zM768 1184q0 -14 -9 -23t-23 -9t-23 9t-9 23t9 23t23 9t23 -9t9 -23zM960 1120q0 -14 -9 -23t-23 -9t-23 9t-9 23t9 23t23 9t23 -9t9 -23zM896 1184q0 -14 -9 -23t-23 -9t-23 9t-9 23t9 23t23 9t23 -9t9 -23zM832 1248q0 -14 -9 -23
+t-23 -9t-23 9t-9 23t9 23t23 9t23 -9t9 -23zM1024 1184q0 -14 -9 -23t-23 -9t-23 9t-9 23t9 23t23 9t23 -9t9 -23zM960 1248q0 -14 -9 -23t-23 -9t-23 9t-9 23t9 23t23 9t23 -9t9 -23zM1088 1248q0 -14 -9 -23t-23 -9t-23 9t-9 23t9 23t23 9t23 -9t9 -23z" />
+    <glyph glyph-name="uniF2CE" unicode="&#xf2ce;" 
+d="M994 344q0 -86 -17 -197q-31 -215 -55 -313q-22 -90 -152 -90t-152 90q-24 98 -55 313q-17 110 -17 197q0 168 224 168t224 -168zM1536 768q0 -240 -134 -434t-350 -280q-8 -3 -15 3t-6 15q7 48 10 66q4 32 6 47q1 9 9 12q159 81 255.5 234t96.5 337q0 180 -91 330.5
+t-247 234.5t-337 74q-124 -7 -237 -61t-193.5 -140.5t-128 -202t-46.5 -240.5q1 -184 99 -336.5t257 -231.5q7 -3 9 -12q3 -21 6 -45q1 -9 5 -32.5t6 -35.5q1 -9 -6.5 -15t-15.5 -2q-148 58 -261 169.5t-173.5 264t-52.5 319.5q7 143 66 273.5t154.5 227t225 157.5t272.5 70
+q164 10 315.5 -46.5t261 -160.5t175 -250.5t65.5 -308.5zM994 800q0 -93 -65.5 -158.5t-158.5 -65.5t-158.5 65.5t-65.5 158.5t65.5 158.5t158.5 65.5t158.5 -65.5t65.5 -158.5zM1282 768q0 -122 -53.5 -228.5t-146.5 -177.5q-8 -6 -16 -2t-10 14q-6 52 -29 92q-7 10 3 20
+q58 54 91 127t33 155q0 111 -58.5 204t-157.5 141.5t-212 36.5q-133 -15 -229 -113t-109 -231q-10 -92 23.5 -176t98.5 -144q10 -10 3 -20q-24 -41 -29 -93q-2 -9 -10 -13t-16 2q-95 74 -148.5 183t-51.5 234q3 131 69 244t177 181.5t241 74.5q144 7 268 -60t196.5 -187.5
+t72.5 -263.5z" />
+    <glyph glyph-name="uniF2D0" unicode="&#xf2d0;" horiz-adv-x="1792" 
+d="M256 128h1280v768h-1280v-768zM1792 1248v-1216q0 -66 -47 -113t-113 -47h-1472q-66 0 -113 47t-47 113v1216q0 66 47 113t113 47h1472q66 0 113 -47t47 -113z" />
+    <glyph glyph-name="uniF2D1" unicode="&#xf2d1;" horiz-adv-x="1792" 
+d="M1792 224v-192q0 -66 -47 -113t-113 -47h-1472q-66 0 -113 47t-47 113v192q0 66 47 113t113 47h1472q66 0 113 -47t47 -113z" />
+    <glyph glyph-name="uniF2D2" unicode="&#xf2d2;" horiz-adv-x="2048" 
+d="M256 0h768v512h-768v-512zM1280 512h512v768h-768v-256h96q66 0 113 -47t47 -113v-352zM2048 1376v-960q0 -66 -47 -113t-113 -47h-608v-352q0 -66 -47 -113t-113 -47h-960q-66 0 -113 47t-47 113v960q0 66 47 113t113 47h608v352q0 66 47 113t113 47h960q66 0 113 -47
+t47 -113z" />
+    <glyph glyph-name="uniF2D3" unicode="&#xf2d3;" horiz-adv-x="1792" 
+d="M1175 215l146 146q10 10 10 23t-10 23l-233 233l233 233q10 10 10 23t-10 23l-146 146q-10 10 -23 10t-23 -10l-233 -233l-233 233q-10 10 -23 10t-23 -10l-146 -146q-10 -10 -10 -23t10 -23l233 -233l-233 -233q-10 -10 -10 -23t10 -23l146 -146q10 -10 23 -10t23 10
+l233 233l233 -233q10 -10 23 -10t23 10zM1792 1248v-1216q0 -66 -47 -113t-113 -47h-1472q-66 0 -113 47t-47 113v1216q0 66 47 113t113 47h1472q66 0 113 -47t47 -113z" />
+    <glyph glyph-name="uniF2D4" unicode="&#xf2d4;" horiz-adv-x="1792" 
+d="M1257 425l-146 -146q-10 -10 -23 -10t-23 10l-169 169l-169 -169q-10 -10 -23 -10t-23 10l-146 146q-10 10 -10 23t10 23l169 169l-169 169q-10 10 -10 23t10 23l146 146q10 10 23 10t23 -10l169 -169l169 169q10 10 23 10t23 -10l146 -146q10 -10 10 -23t-10 -23
+l-169 -169l169 -169q10 -10 10 -23t-10 -23zM256 128h1280v1024h-1280v-1024zM1792 1248v-1216q0 -66 -47 -113t-113 -47h-1472q-66 0 -113 47t-47 113v1216q0 66 47 113t113 47h1472q66 0 113 -47t47 -113z" />
+    <glyph glyph-name="uniF2D5" unicode="&#xf2d5;" horiz-adv-x="1792" 
+d="M1070 358l306 564h-654l-306 -564h654zM1792 640q0 -182 -71 -348t-191 -286t-286 -191t-348 -71t-348 71t-286 191t-191 286t-71 348t71 348t191 286t286 191t348 71t348 -71t286 -191t191 -286t71 -348z" />
+    <glyph glyph-name="uniF2D6" unicode="&#xf2d6;" horiz-adv-x="1794" 
+d="M1291 1060q-15 17 -35 8.5t-26 -28.5t5 -38q14 -17 40 -14.5t34 20.5t-18 52zM895 814q-8 -8 -19.5 -8t-18.5 8q-8 8 -8 19t8 18q7 8 18.5 8t19.5 -8q7 -7 7 -18t-7 -19zM1060 740l-35 -35q-12 -13 -29.5 -13t-30.5 13l-38 38q-12 13 -12 30t12 30l35 35q12 12 29.5 12
+t30.5 -12l38 -39q12 -12 12 -29.5t-12 -29.5zM951 870q-7 -8 -18.5 -8t-19.5 8q-7 8 -7 19t7 19q8 8 19 8t19 -8t8 -19t-8 -19zM1354 968q-34 -64 -107.5 -85.5t-127.5 16.5q-38 28 -61 66.5t-21 87.5t39 92t75.5 53t70.5 -5t70 -51q2 -2 13 -12.5t14.5 -13.5t13 -13.5
+t12.5 -15.5t10 -15.5t8.5 -18t4 -18.5t1 -21t-5 -22t-9.5 -24zM1555 486q3 20 -8.5 34.5t-27.5 21.5t-33 17t-23 20q-40 71 -84 98.5t-113 11.5q19 13 40 18.5t33 4.5l12 -1q2 45 -34 90q6 20 6.5 40.5t-2.5 30.5l-3 10q43 24 71 65t34 91q10 84 -43 150.5t-137 76.5
+q-60 7 -114 -18.5t-82 -74.5q-30 -51 -33.5 -101t14.5 -87t43.5 -64t56.5 -42q-45 4 -88 36t-57 88q-28 108 32 222q-16 21 -29 32q-50 0 -89 -19q19 24 42 37t36 14l13 1q0 50 -13 78q-10 21 -32.5 28.5t-47 -3.5t-37.5 -40q2 4 4 7q-7 -28 -6.5 -75.5t19 -117t48.5 -122.5
+q-25 -14 -47 -36q-35 -16 -85.5 -70.5t-84.5 -101.5l-33 -46q-90 -34 -181 -125.5t-75 -162.5q1 -16 11 -27q-15 -12 -30 -30q-21 -25 -21 -54t21.5 -40t63.5 6q41 19 77 49.5t55 60.5q-2 2 -6.5 5t-20.5 7.5t-33 3.5q23 5 51 12.5t40 10t27.5 6t26 4t23.5 0.5q14 -7 22 34
+q7 37 7 90q0 102 -40 150q106 -103 101 -219q-1 -29 -15 -50t-27 -27l-13 -6q-4 -7 -19 -32t-26 -45.5t-26.5 -52t-25 -61t-17 -63t-6.5 -66.5t10 -63q-35 54 -37 80q-22 -24 -34.5 -39t-33.5 -42t-30.5 -46t-16.5 -41t-0.5 -38t25.5 -27q45 -25 144 64t190.5 221.5
+t122.5 228.5q86 52 145 115.5t86 119.5q47 -93 154 -178q104 -83 167 -80q39 2 46 43zM1794 640q0 -182 -71 -348t-191 -286t-286.5 -191t-348.5 -71t-348.5 71t-286.5 191t-191 286t-71 348t71 348t191 286t286.5 191t348.5 71t348.5 -71t286.5 -191t191 -286t71 -348z" />
+    <glyph glyph-name="uniF2D7" unicode="&#xf2d7;" 
+d="M518 1353v-655q103 -1 191.5 1.5t125.5 5.5l37 3q68 2 90.5 24.5t39.5 94.5l33 142h103l-14 -322l7 -319h-103l-29 127q-15 68 -45 93t-84 26q-87 8 -352 8v-556q0 -78 43.5 -115.5t133.5 -37.5h357q35 0 59.5 2t55 7.5t54 18t48.5 32t46 50.5t39 73l93 216h89
+q-6 -37 -31.5 -252t-30.5 -276q-146 5 -263.5 8t-162.5 4h-44h-628l-376 -12v102l127 25q67 13 91.5 37t25.5 79l8 643q3 402 -8 645q-2 61 -25.5 84t-91.5 36l-127 24v102l376 -12h702q139 0 374 27q-6 -68 -14 -194.5t-12 -219.5l-5 -92h-93l-32 124q-31 121 -74 179.5
+t-113 58.5h-548q-28 0 -35.5 -8.5t-7.5 -30.5z" />
+    <glyph glyph-name="uniF2D8" unicode="&#xf2d8;" 
+d="M922 739v-182q0 -4 0.5 -15t0 -15l-1.5 -12t-3.5 -11.5t-6.5 -7.5t-11 -5.5t-16 -1.5v309q9 0 16 -1t11 -5t6.5 -5.5t3.5 -9.5t1 -10.5v-13.5v-14zM1238 643v-121q0 -1 0.5 -12.5t0 -15.5t-2.5 -11.5t-7.5 -10.5t-13.5 -3q-9 0 -14 9q-4 10 -4 165v7v8.5v9t1.5 8.5l3.5 7
+t5 5.5t8 1.5q6 0 10 -1.5t6.5 -4.5t4 -6t2 -8.5t0.5 -8v-9.5v-9zM180 407h122v472h-122v-472zM614 407h106v472h-159l-28 -221q-20 148 -32 221h-158v-472h107v312l45 -312h76l43 319v-319zM1039 712q0 67 -5 90q-3 16 -11 28.5t-17 20.5t-25 14t-26.5 8.5t-31 4t-29 1.5
+h-29.5h-12h-91v-472h56q169 -1 197 24.5t25 180.5q-1 62 -1 100zM1356 515v133q0 29 -2 45t-9.5 33.5t-24.5 25t-46 7.5q-46 0 -77 -34v154h-117v-472h110l7 30q30 -36 77 -36q50 0 66 30.5t16 83.5zM1536 1248v-1216q0 -66 -47 -113t-113 -47h-1216q-66 0 -113 47t-47 113
+v1216q0 66 47 113t113 47h1216q66 0 113 -47t47 -113z" />
+    <glyph glyph-name="uniF2D9" unicode="&#xf2d9;" horiz-adv-x="2176" 
+d="M1143 -197q-6 1 -11 4q-13 8 -36 23t-86 65t-116.5 104.5t-112 140t-89.5 172.5q-17 3 -175 37q66 -213 235 -362t391 -184zM502 409l168 -28q-25 76 -41 167.5t-19 145.5l-4 53q-84 -82 -121 -224q5 -65 17 -114zM612 1018q-43 -64 -77 -148q44 46 74 68zM2049 584
+q0 161 -62 307t-167.5 252t-250.5 168.5t-304 62.5q-147 0 -281 -52.5t-240 -148.5q-30 -58 -45 -160q60 51 143 83.5t158.5 43t143 13.5t108.5 -1l40 -3q33 -1 53 -15.5t24.5 -33t6.5 -37t-1 -28.5q-126 11 -227.5 0.5t-183 -43.5t-142.5 -71.5t-131 -98.5
+q4 -36 11.5 -92.5t35.5 -178t62 -179.5q123 -6 247.5 14.5t214.5 53.5t162.5 67t109.5 59l37 24q22 16 39.5 20.5t30.5 -5t17 -34.5q14 -97 -39 -121q-208 -97 -467 -134q-135 -20 -317 -16q41 -96 110 -176.5t137 -127t130.5 -79t101.5 -43.5l39 -12q143 -23 263 15
+q195 99 314 289t119 418zM2123 621q-14 -135 -40 -212q-70 -208 -181.5 -346.5t-318.5 -253.5q-48 -33 -82 -44q-72 -26 -163 -16q-36 -3 -73 -3q-283 0 -504.5 173t-295.5 442q-1 0 -4 0.5t-5 0.5q-6 -50 2.5 -112.5t26 -115t36 -98t31.5 -71.5l14 -26q8 -12 54 -82
+q-71 38 -124.5 106.5t-78.5 140t-39.5 137t-17.5 107.5l-2 42q-5 2 -33.5 12.5t-48.5 18t-53 20.5t-57.5 25t-50 25.5t-42.5 27t-25 25.5q19 -10 50.5 -25.5t113 -45.5t145.5 -38l2 32q11 149 94 290q41 202 176 365q28 115 81 214q15 28 32 45t49 32q158 74 303.5 104
+t302 11t306.5 -97q220 -115 333 -336t87 -474z" />
+    <glyph glyph-name="uniF2DA" unicode="&#xf2da;" horiz-adv-x="1792" 
+d="M1341 752q29 44 -6.5 129.5t-121.5 142.5q-58 39 -125.5 53.5t-118 4.5t-68.5 -37q-12 -23 -4.5 -28t42.5 -10q23 -3 38.5 -5t44.5 -9.5t56 -17.5q36 -13 67.5 -31.5t53 -37t40 -38.5t30.5 -38t22 -34.5t16.5 -28.5t12 -18.5t10.5 -6t11 9.5zM1704 178
+q-52 -127 -148.5 -220t-214.5 -141.5t-253 -60.5t-266 13.5t-251 91t-210 161.5t-141.5 235.5t-46.5 303.5q1 41 8.5 84.5t12.5 64t24 80.5t23 73q-51 -208 1 -397t173 -318t291 -206t346 -83t349 74.5t289 244.5q20 27 18 14q0 -4 -4 -14zM1465 627q0 -104 -40.5 -199
+t-108.5 -164t-162 -109.5t-198 -40.5t-198 40.5t-162 109.5t-108.5 164t-40.5 199t40.5 199t108.5 164t162 109.5t198 40.5t198 -40.5t162 -109.5t108.5 -164t40.5 -199zM1752 915q-65 147 -180.5 251t-253 153.5t-292 53.5t-301 -36.5t-275.5 -129t-220 -211.5t-131 -297
+t-10 -373q-49 161 -51.5 311.5t35.5 272.5t109 227t165.5 180.5t207 126t232 71t242.5 9t236 -54t216 -124.5t178 -197q33 -50 62 -121t31 -112zM1690 573q12 244 -136.5 416t-396.5 240q-8 0 -10 5t24 8q125 -4 230 -50t173 -120t116 -168.5t58.5 -199t-1 -208
+t-61.5 -197.5t-122.5 -167t-185 -117.5t-248.5 -46.5q108 30 201.5 80t174 123t129.5 176.5t55 225.5z" />
+    <glyph glyph-name="uniF2DB" unicode="&#xf2db;" 
+d="M192 256v-128h-112q-16 0 -16 16v16h-48q-16 0 -16 16v32q0 16 16 16h48v16q0 16 16 16h112zM192 512v-128h-112q-16 0 -16 16v16h-48q-16 0 -16 16v32q0 16 16 16h48v16q0 16 16 16h112zM192 768v-128h-112q-16 0 -16 16v16h-48q-16 0 -16 16v32q0 16 16 16h48v16
+q0 16 16 16h112zM192 1024v-128h-112q-16 0 -16 16v16h-48q-16 0 -16 16v32q0 16 16 16h48v16q0 16 16 16h112zM192 1280v-128h-112q-16 0 -16 16v16h-48q-16 0 -16 16v32q0 16 16 16h48v16q0 16 16 16h112zM1280 1440v-1472q0 -40 -28 -68t-68 -28h-832q-40 0 -68 28
+t-28 68v1472q0 40 28 68t68 28h832q40 0 68 -28t28 -68zM1536 208v-32q0 -16 -16 -16h-48v-16q0 -16 -16 -16h-112v128h112q16 0 16 -16v-16h48q16 0 16 -16zM1536 464v-32q0 -16 -16 -16h-48v-16q0 -16 -16 -16h-112v128h112q16 0 16 -16v-16h48q16 0 16 -16zM1536 720v-32
+q0 -16 -16 -16h-48v-16q0 -16 -16 -16h-112v128h112q16 0 16 -16v-16h48q16 0 16 -16zM1536 976v-32q0 -16 -16 -16h-48v-16q0 -16 -16 -16h-112v128h112q16 0 16 -16v-16h48q16 0 16 -16zM1536 1232v-32q0 -16 -16 -16h-48v-16q0 -16 -16 -16h-112v128h112q16 0 16 -16v-16
+h48q16 0 16 -16z" />
+    <glyph glyph-name="uniF2DC" unicode="&#xf2dc;" horiz-adv-x="1664" 
+d="M1566 419l-167 -33l186 -107q23 -13 29.5 -38.5t-6.5 -48.5q-14 -23 -39 -29.5t-48 6.5l-186 106l55 -160q13 -38 -12 -63.5t-60.5 -20.5t-48.5 42l-102 300l-271 156v-313l208 -238q16 -18 17 -39t-11 -36.5t-28.5 -25t-37 -5.5t-36.5 22l-112 128v-214q0 -26 -19 -45
+t-45 -19t-45 19t-19 45v214l-112 -128q-16 -18 -36.5 -22t-37 5.5t-28.5 25t-11 36.5t17 39l208 238v313l-271 -156l-102 -300q-13 -37 -48.5 -42t-60.5 20.5t-12 63.5l55 160l-186 -106q-23 -13 -48 -6.5t-39 29.5q-13 23 -6.5 48.5t29.5 38.5l186 107l-167 33
+q-29 6 -42 29t-8.5 46.5t25.5 40t50 10.5l310 -62l271 157l-271 157l-310 -62q-4 -1 -13 -1q-27 0 -44 18t-19 40t11 43t40 26l167 33l-186 107q-23 13 -29.5 38.5t6.5 48.5t39 30t48 -7l186 -106l-55 160q-13 38 12 63.5t60.5 20.5t48.5 -42l102 -300l271 -156v313
+l-208 238q-16 18 -17 39t11 36.5t28.5 25t37 5.5t36.5 -22l112 -128v214q0 26 19 45t45 19t45 -19t19 -45v-214l112 128q16 18 36.5 22t37 -5.5t28.5 -25t11 -36.5t-17 -39l-208 -238v-313l271 156l102 300q13 37 48.5 42t60.5 -20.5t12 -63.5l-55 -160l186 106
+q23 13 48 6.5t39 -29.5q13 -23 6.5 -48.5t-29.5 -38.5l-186 -107l167 -33q27 -5 40 -26t11 -43t-19 -40t-44 -18q-9 0 -13 1l-310 62l-271 -157l271 -157l310 62q29 6 50 -10.5t25.5 -40t-8.5 -46.5t-42 -29z" />
+    <glyph glyph-name="uniF2DD" unicode="&#xf2dd;" horiz-adv-x="1792" 
+d="M1473 607q7 118 -33 226.5t-113 189t-177 131t-221 57.5q-116 7 -225.5 -32t-192 -110.5t-135 -175t-59.5 -220.5q-7 -118 33 -226.5t113 -189t177.5 -131t221.5 -57.5q155 -9 293 59t224 195.5t94 283.5zM1792 1536l-349 -348q120 -117 180.5 -272t50.5 -321
+q-11 -183 -102 -339t-241 -255.5t-332 -124.5l-999 -132l347 347q-120 116 -180.5 271.5t-50.5 321.5q11 184 102 340t241.5 255.5t332.5 124.5q167 22 500 66t500 66z" />
+    <glyph glyph-name="uniF2DE" unicode="&#xf2de;" horiz-adv-x="1792" 
+d="M948 508l163 -329h-51l-175 350l-171 -350h-49l179 374l-78 33l21 49l240 -102l-21 -50zM563 1100l304 -130l-130 -304l-304 130zM907 915l240 -103l-103 -239l-239 102zM1188 765l191 -81l-82 -190l-190 81zM1680 640q0 159 -62 304t-167.5 250.5t-250.5 167.5t-304 62
+t-304 -62t-250.5 -167.5t-167.5 -250.5t-62 -304t62 -304t167.5 -250.5t250.5 -167.5t304 -62t304 62t250.5 167.5t167.5 250.5t62 304zM1792 640q0 -182 -71 -348t-191 -286t-286 -191t-348 -71t-348 71t-286 191t-191 286t-71 348t71 348t191 286t286 191t348 71t348 -71
+t286 -191t191 -286t71 -348z" />
+    <glyph glyph-name="uniF2E0" unicode="&#xf2e0;" horiz-adv-x="1920" 
+d="M1334 302q-4 24 -27.5 34t-49.5 10.5t-48.5 12.5t-25.5 38q-5 47 33 139.5t75 181t32 127.5q-14 101 -117 103q-45 1 -75 -16l-3 -2l-5 -2.5t-4.5 -2t-5 -2t-5 -0.5t-6 1.5t-6 3.5t-6.5 5q-3 2 -9 8.5t-9 9t-8.5 7.5t-9.5 7.5t-9.5 5.5t-11 4.5t-11.5 2.5q-30 5 -48 -3
+t-45 -31q-1 -1 -9 -8.5t-12.5 -11t-15 -10t-16.5 -5.5t-17 3q-54 27 -84 40q-41 18 -94 -5t-76 -65q-16 -28 -41 -98.5t-43.5 -132.5t-40 -134t-21.5 -73q-22 -69 18.5 -119t110.5 -46q30 2 50.5 15t38.5 46q7 13 79 199.5t77 194.5q6 11 21.5 18t29.5 0q27 -15 21 -53
+q-2 -18 -51 -139.5t-50 -132.5q-6 -38 19.5 -56.5t60.5 -7t55 49.5q4 8 45.5 92t81.5 163.5t46 88.5q20 29 41 28q29 0 25 -38q-2 -16 -65.5 -147.5t-70.5 -159.5q-12 -53 13 -103t74 -74q17 -9 51 -15.5t71.5 -8t62.5 14t20 48.5zM383 86q3 -15 -5 -27.5t-23 -15.5
+q-14 -3 -26.5 5t-15.5 23q-3 14 5 27t22 16t27 -5t16 -23zM953 -177q12 -17 8.5 -37.5t-20.5 -32.5t-37.5 -8t-32.5 21q-11 17 -7.5 37.5t20.5 32.5t37.5 8t31.5 -21zM177 635q-18 -27 -49.5 -33t-57.5 13q-26 18 -32 50t12 58q18 27 49.5 33t57.5 -12q26 -19 32 -50.5
+t-12 -58.5zM1467 -42q19 -28 13 -61.5t-34 -52.5t-60.5 -13t-51.5 34t-13 61t33 53q28 19 60.5 13t52.5 -34zM1579 562q69 -113 42.5 -244.5t-134.5 -207.5q-90 -63 -199 -60q-20 -80 -84.5 -127t-143.5 -44.5t-140 57.5q-12 -9 -13 -10q-103 -71 -225 -48.5t-193 126.5
+q-50 73 -53 164q-83 14 -142.5 70.5t-80.5 128t-2 152t81 138.5q-36 60 -38 128t24.5 125t79.5 98.5t121 50.5q32 85 99 148t146.5 91.5t168 17t159.5 -66.5q72 21 140 17.5t128.5 -36t104.5 -80t67.5 -115t17.5 -140.5q52 -16 87 -57t45.5 -89t-5.5 -99.5t-58 -87.5z
+M455 1222q14 -20 9.5 -44.5t-24.5 -38.5q-19 -14 -43.5 -9.5t-37.5 24.5q-14 20 -9.5 44.5t24.5 38.5q19 14 43.5 9.5t37.5 -24.5zM614 1503q4 -16 -5 -30.5t-26 -18.5t-31 5.5t-18 26.5q-3 17 6.5 31t25.5 18q17 4 31 -5.5t17 -26.5zM1800 555q4 -20 -6.5 -37t-30.5 -21
+q-19 -4 -36 6.5t-21 30.5t6.5 37t30.5 22q20 4 36.5 -7.5t20.5 -30.5zM1136 1448q16 -27 8.5 -58.5t-35.5 -47.5q-27 -16 -57.5 -8.5t-46.5 34.5q-16 28 -8.5 59t34.5 48t58 9t47 -36zM1882 792q4 -15 -4 -27.5t-23 -16.5q-15 -3 -27.5 5.5t-15.5 22.5q-3 15 5 28t23 16
+q14 3 26.5 -5t15.5 -23zM1691 1033q15 -22 10.5 -49t-26.5 -43q-22 -15 -49 -10t-42 27t-10 49t27 43t48.5 11t41.5 -28z" />
+    <glyph glyph-name="uniF2E1" unicode="&#xf2e1;" horiz-adv-x="1792" 
+ />
+    <glyph glyph-name="uniF2E2" unicode="&#xf2e2;" horiz-adv-x="1792" 
+ />
+    <glyph glyph-name="uniF2E3" unicode="&#xf2e3;" horiz-adv-x="1792" 
+ />
+    <glyph glyph-name="uniF2E4" unicode="&#xf2e4;" horiz-adv-x="1792" 
+ />
+    <glyph glyph-name="uniF2E5" unicode="&#xf2e5;" horiz-adv-x="1792" 
+ />
+    <glyph glyph-name="uniF2E6" unicode="&#xf2e6;" horiz-adv-x="1792" 
+ />
+    <glyph glyph-name="uniF2E7" unicode="&#xf2e7;" horiz-adv-x="1792" 
+ />
+    <glyph glyph-name="_698" unicode="&#xf2e8;" horiz-adv-x="1792" 
+ />
+    <glyph glyph-name="uniF2E9" unicode="&#xf2e9;" horiz-adv-x="1792" 
+ />
+    <glyph glyph-name="uniF2EA" unicode="&#xf2ea;" horiz-adv-x="1792" 
+ />
+    <glyph glyph-name="uniF2EB" unicode="&#xf2eb;" horiz-adv-x="1792" 
+ />
+    <glyph glyph-name="uniF2EC" unicode="&#xf2ec;" horiz-adv-x="1792" 
+ />
+    <glyph glyph-name="uniF2ED" unicode="&#xf2ed;" horiz-adv-x="1792" 
+ />
+    <glyph glyph-name="uniF2EE" unicode="&#xf2ee;" horiz-adv-x="1792" 
+ />
+    <glyph glyph-name="lessequal" unicode="&#xf500;" horiz-adv-x="1792" 
+ />
+  </font>
+</defs></svg>
diff --git a/oxAuth/Server/src/main/webapp/fonts/fontawesome-webfont.ttf b/oxAuth/Server/src/main/webapp/fonts/fontawesome-webfont.ttf
new file mode 100644
index 0000000000000000000000000000000000000000..35acda2fa1196aad98c2adf4378a7611dd713aa3
GIT binary patch
literal 165548
zcmd4434D~*)jxjkv&@#+*JQHIB(r2Agk&ZO5W=u;0Z~v85Ce*$fTDsRbs2>!AXP+E
zv})s8XszXKwXa&S)7IKescosX*7l99R$G?_w7v?NC%^Bx&rC7|(E7f=|L^lpa-Zk9
z`?>d?d+s^so_oVMW6Z|VOlEVZPMtq{)pOIHX3~v25n48F@|3AkA5-983xDXec_W**
zHg8HX#uvihecqa7Yb`$*a~)&Wy^KjmE?joS+JOO-B;B|Y@umw`Uv<H)|NZ!E#)6MA
zsq5L5E0&$_-1gQ8#JvvJx)K2n+43aH^THolxn|wQDOVML8UCjjv-GXL^t@%#zaCt|
znB!i?ikxefZCooiNM(p`NBYnu%hs&;>s>da><dw!a^u=duUPl(Tfh1MlUDVi&h?Di
zrtn|x{ME*@&vkVCixn9Wz}TUdmzwkM0RU{~2J)JiByym5#tdu#L1u>d0W;5qQ!4Qz
zJxL+bkEIe8*8}j>Q>BETG1+ht-^o+}utRA<*p2#Ix&jHe=hB??wf3sZuV5(_`d1DH
zgI+ncCI1s*Tuw6@6DFOB@-mE3%l-{_4z<*f9!g8!<Nzo$=DrKcxk^p5OY&(bFU8Rt
z;gl~Z%A@c!YZmEp@%ixloAN1Xkv~Q0WTyM+o65?Un}fkZ@K9VHCQ73qY%pE!oBStr
zNKbWBp8Q+nrEoa<9xN}-Hi`D+(iX-WfD?e_9=JvMw)`9Klt`0iNtBfo_3CBYs2))l
z>dcoz@f1eyoO9;V<o%)zh+8Ba(h`gUPQ1~VDavPpD=br#g?M`B!{xjmZwgcJ9*oDg
zNSAx(VHIP+5SL~R=(BV4X=rQ&oQM;30S?4Tx$nU`MS99#=+ewb>5yN|*Pk0}XYPFk
z!g(%@Qka**;2iW8;b{R|Dg0FbU_E9^hd3H%a#EV5;HVvgVS_k;c*=`1YN*`2lhZm3
zqOTF2Pfz8N%lA<(eJUSDWevumUJ;M<C?`d6<WSZKIGd7Yv&l(mHUe(YpRWUPG{zzi
z!I6VSltbkXh9NEohn_Z<CtnWY2#yre+YmM)msbLu5|u%1%e}h+2ZLK~Kr_f8Jr{8Z
zM|xX+e&Sn3ctn&%`3oGiAK_MtQ}9i36vlJk<VRd<J{<MS<O<6;**C$Na|!tde9KHB
zc&Hw{+XwTcSruTbLbz}UuM#eu>ocT>zZ5W08%2JkP2szU{CP(((>LmzOmB>ZOpelu
zIw>A5mu@gGU}>QA1RKFi-$*aQL_KL1GNuOxs0@)VEz<hv`#6Vi@+){#9VR%ckHRP~
zIhy-~?+9Cy52v^IPV4VHeK3B^YV&c0X#r=7%0=5myQsXuJo&O1b5d9?JVg1aZMnKd
zeT8M8;ya#)IR}3TZx4Ov;1T@{ct#`4O?Bnc4VDjoC*q3>%g?77_AY_{e55-&2X`IC
z!*9krPH>;hA+4QUe(ZB_4Z@L!DgUN;`X-m}3;G6(Mf9flyest6ciunvokm)?oZmzF
z@?{e2C{v;^ys6AQy_IN=B99>#C*fPn3ra`%a_!FN6aIXi^rn1ymrrZ@gw3bA$$zqb
zqOxiHDSsYDDkGmZpD$nT@HfSi%fmt6l*S0Iupll)-&7{*yFioy4w3x%G<fIxL6il*
zAL;CPmlvcNOiwT)JWBNz#^=J%$itb7n^I6$h{E!IdLwNlpFaPlG`X_F2wR16YbXxk
zL^t#{>VEpx@jWf@QO?itTs?#7)d3a-Ug&FLt_)FMnmOp5gGJy@z7B*(^RVW^e1dkQ
zkMHw*dK%Ayu_({yrG6RifN!GjP=|nt${60CMrjDAK)0HZCYpnJB&8QF&0_TaoF9-S
zu?&_mPAU0&@X=Qpc>I^~UdvKIk0usk``F{`3HAbeHC$CyQPtgN@2lwR?3>fKwC|F>
zYx{2LyT9-8zVGxM?E7=y2YuRM`{9bijfXoA&pEvG@Fj<@J$%dI`wu^U__@Oe5C8e_
z2ZyyI_9GQXI*-gbvh>I$N3K0`%aQw!JbvW4BL|QC`N#+Vf_#9QLu~J`8d;ySFWi^v
zo7>mjx3(|cx3jOOZ+~B=@8!PUzP`iku=8-}aMR(`;kk#q53fC(KD_gA&*A-tGlyS3
z+<Un12s`3D5<ZeTGWSULk+nzCM|K|RIkNvq=E%!Oda1^NzYZ)JSU50mVB)~2Kfm**
z_y6>m)8@1~El#u3<TN@BPSvS6WvAr$m*XSHhmIqT!;U`3KOG-9-gms`c-Qd{$KM_A
zINo;r&GDAwO~+pye{sCw=ym+r@h8XYjz2nHbNs>as^j;LR~)}{9CG~D_9MNw(aQga
zKO~TeK}MY%7{tgG{veXj;r|am2GwFztR{2O|5v~?px`g+cB0=PQ}aFOx^-}vA95F5
zA7=4<%*Y5_FJ|j%P>qdnh_@iTs0Qv3Shg)-OV0=S+zU1vekc4cfZ>81?nWLD;PJf5
zm^TgA&zNr~$ZdkLfD=nH@)f_xSjk$*;M3uDgT;zqnj*X$`6@snD%LSpiMm2N;QAN~
z_kcBPVyrp@Qi?Q@UdCdRu{^&CvWYrt=QCD^e09&FD^N$nM_`>%e`5*`?~&bbh->n~
zJ<Qms-HbKwWUS?U#u5oQ_>(9*nTC4`EGNEOm%t%U8(?hP3%1b;hjQAV0Nc?8hxeG3
zaPKiTHp5uQTE@n~b#}l3uJMQ)kGfOHpF%kkn&43O#D#F5Fg6KwPr4VR9c4{M`YDK;
z3jZ{uoAx?m(^2k>9gNLvXKdDEjCCQ+Y~-2K00%hd9AfOW{fx~8OmhL>=?S<V#?G+9
zt!8W<(#_k$*nGsFi82@TF}4upE;2E;I0d(Zu_YaFfaM&dTUrB$I?hEI-D??Jj{M6%
z0&Aqey~o&!xo|IId3~O-3sL5UsPm#OxC~<#PsS2vg#%2h(_k@Ej9r5Kmm+@c7RD}n
zn6b-I_Z1r%TjzvB-u1}yC6seDgL{^-YY=`7(p|fivFmm-mPXk1#c(?q+dQ4IEnYa3
z|7GO;@|#eYtY+*c)Uy?^Z_6-tGxG2F8Dn2T`dbipEAs3N!6ELp`Hbzd!Xa$e7C40M
z>SyfsZaC!Gt-z(=`WU+-&Dfn0#_n3e*q()q-CYLpelpxsjC~b#-P^<1eJJmK#NGc1
zV_&<Mu^z-fFqg3h8{i&h?4fqJy^KA4K4XudoV`04`=*Jp$57T|?=ki*_`mfIV~?Y*
zZx_SuXKep;xL(HoV<X&)jD05rw+`-SjD2?@+((Q(v6e9~KI}=9`#qHPy+e%s=M!*!
zj6H>XPb2-)pD^|e^5@<6_cHeE7RC;w7<*1(><1_>^E_ievcm0P?8kubdDQj%vyA=3
z3HKCZFYIRQXH9UujQt#S{T$`}0_FTN4TrE7KVs}9q&bK>55B|Lul6(cGRpdO1Kd`|
zeq(~e`?pp&g#Y$EXw}*o`yJwccQ0eFbi*Ov?^iSS>U6j#82bal{s6dMn-2#V{#Xo$
zI$lq~{fx0cA?=^g&OdKq?7tBAUym`?3z*+P_+QpC_SX>Hn~c4gX6!Ab|67K!w~_Ac
z_ZWKz;eUUXv46n53-{h3#@>IKu@7En?4O7`qA>R1M~r=hy#Got_OTNVaQ-*)f3gq`
zWqlf9>?rCwhC2Ie;GSYEYlZ8Edx9~|1c$Hz6P6|~v_elnBK`=R&nMuzUuN8VKI0ZA
z+#be@iW#>ma1S$XYhc_CQta5uxC`H|9>(1-GVW=IdlO`OC*!^vIHdJ2gzINKkYT)d
z3*#jl84q5~c<Fq`%MLMKo`S=>0(mMGIK+jJFO2k6NLvlqs#h}}L0klN#8)z2^A6*6
zU5q!Nj7Gdit%LiB@#bE}TbkhZGoIMXcoN~QNYfU9dezGK=;@4)al-X6K6WSL9b4dD
zWqdqfOo0cRfI27sjPXfulka7G3er!7o3@tm>3GioJTpUZZ!$jX5aV4vjL$A+d`^n-
zxp1e$e?~9k^CmMsKg9T%fbFbqIHX;GIu<72kY<qrx0Uh5=fffW614f8R~cW5xbEGI
zFGF3+o@IPF;5-lc&VP*Y73&zkU?t-hzRvi{Cm6qI3F8-UWc-pXjIT{Geg(?8(#iOS
zpE14>ZMzEPZ`#55myqXbyss&PdzkU-kng%ZaGx-qUd{ORDE9`W-<*I${1)W@@_xo|
z#P?RjZA0Ge?Tp_{4)ER51-F;+Tjw*r6ZPHZW&C#J-;MVj3S2+qccSdOkoNAY8NUbR
z-HUYhnc!Y!{C<Retr+ed#(SP;{6Q<@4<#6Xcq8MFpx#H*jDH<<>@9;sxqIIma{CrC
z{*4;OzZrsik@3eKWBglt8Gju9$G0;6ZPfp5`1hya;Q!vUjQ{6qsNQ=S2c6;1ApV)%
zjDJ4@_b}tnn&43HfiA|MBZsgbpsdVv#(xMHfA~D(KUU!0Wc>La#(y%O@fT{~-ede{
zR>pr0_Y2hXOT@kS3F8L=^RH0;%c~jx_4$nd=5@w@I~NXdzuUt2E2!)DYvKACfAu5A
zUwe%4KcdXn;r@iOKr8s4QQm)bG5$uH@xLJ7o5hU3g}A?UF#a~+dV4S9??m7ZG5+_}
zjQ<05{sZ6d0><|ea8JQ~#Q6It>z^jLhZ*lv;9g|>Fxqwm@O+4TAHKu*zfkVS4R9I8
z{~NIVcQ50g0KQKVb`<_&>lp7xn*Q?{2i@S=9gJ(JgXqP;%S_@4CSmVFk{g($tYngU
z2omdDCYcd#!MC-SNwz*FIf|L&M40PMCV4uT<VAWP9QZ3K(8Q$Tb|#fXm=xT~q*8pB
zKf$Dm`EV~XDRecH!YI4yF(yU2m=s0&*mNevk+$X|Ce`j>QXRtTUT0GMZYDM0-H5Up
z-(yk}+^8)~YEHrRGpXe%CMDJ}DT(-2<Q*Mi(ir3)bBIY}t#Bx_qXzC(CXGulX*|-W
z_AqGz+A*nzNt02=RQRWN!y*5S7a8_|{&$Y81rO_la3GW5*cNt$WmnkM%QISPt<<wt
z4IN!;U`HAKaCXiBGd!fGSvfpjBX@<H{a!<LxGI)tZ3(-0ESc!!E#c-0Zg{9ZyOpPc
zu~@J_O;4W6Zmo~h1k`k(CZbNQMs$|N5;6Q?b8BOLb)eK_Dy2HGOJrcEqaGfY*Dh5x
zN{LRXr8(eIkM|~8+jwhBGjtM@S6;a2!j+Tp8gbEr?D5`Mg`BcFYueS&v7Y8R^*&$y
zob&ODOC|4T#})?2Kdo%BaHh1AWCR$}fWgSZXt$Gv$Z<5aD$enU#3ZM?H4;+%ZXdeA
zucWn4wOh1LxshKk8@m#%5pCahU%yp5cHq)W4{()NaP`2YSMvo?2?@ASPpqXAT`_*v
z)k7&RJ)j-C_4V&+`=T@&Y#?nU-As^;W3wURy9`FfXqW2IAv_+7#^NroAAQ~G>W~^`
zjDf-D4fq2U%2=tnQ*LW*>*Q@NeQ=U48Xk01IuzADy1ym0rit^WHK~^SwU449k4??k
zJX|$cO-EBU&+R{a*)XQ6t<lT5x3R5ijN#=Uww{w-I`L>~;?kuP)y%}DA(=%g4sNM$
z8a1k^e#^m%NS4_=9;HTdn_VW0>ap!zx91UcR50pxM}wo(NA}d;)_n~5mQGZt41J8L
zZE5Hkn1U{CRFZ(Oxk3tb${0}UQ~92RJG;|T-PJKt>+QV$(z%hy+)J<T?A6}N-j;St
zi%gMo&%b5T>z~xmNJS#48TFsM{-?LHd-bxvg|X{pRq&u74~nC4i>i16LEAiprfpGA
zYjeP(qECX_9cOW$*W=U1YvVDXKItrNcS$?{_zh2o=MDaGyL^>DsNJtwjW%Do^}YA3
z<vxR*f5exU`l99;{HL|G+UOai(-C;1*KH>3HS=f@249Y<c{olDhH@Ei))pN&pe^Ff
zGx#Qc75}M#tM=4jNnT#t$*<LJ=+u6%E&l0GWlJ8+=FfnVa67G1-}`75M{^jGK*#$-
zZOs)ja~eW1XKP4h*DUP+#=>h{jnme5ZRV>tcdeh+=o(;eXg_-64c@tJ&As=oIrFZ&
z*Gx&Lr>wdAF8POg_#5blBAP!&nm-O!$wspA>@;>RyOdqWZe?F%--gC9nTXZ%DnmK<
z`p0sh@aOosD-jbIo<n&)Ed2@o&q@Dz^$njmJRJ)PDt3y8!eYTJBQhuB*$-bnp<0kr
z!}n0C&npvC?o%;o445>je0ec`&&fWsK?xPdf*L)Qp(MwKKIOtB+EDn(3w-9Ns9O~i
z7MwnG8-?RZlv&XIJZUK*;)r!1@Bh4bnRO*JmgwqANa8v4EvHWvBQYYGT?tN4>BRz1
zf1&5N7@@!g89ym5LO{@=9>;Y8=^ExA9{+#aKfFGPwby8wn)db@o}%Z_x0EjQWsmb6
zA9uX(vr-n8$U~x9dhk~VKeI!h^3Z2NXu;>n6BHB%6e2u2VJ!ZykHWv-t19}tU-Yz$
zHXl2#_m7V&O!q(RtK+(Yads868*Wm*!~EzJtW!oq)kw}`iSZl@lNpanZn&u|+px84
zZrN7t&ayK4;4x_@`Q;;XMO4{VelhvW%CtX7w;>J6y=346)vfGe)zJBQ9o$eAhcOPy
zjwRa6$CvN-8qHjFi;}h1wAb{Kcnn{;+ITEi`fCUk^_(hJ&q1Z=yo*jRs<94E#yX67
zRj)s)V&gd0VVZGcLALQ|_Lp<4{XEBIF-*yma#;%V*m^xSuqeG?H-<is<Gp4jPsMvl
zy(i?PLjG33kUe?vtWz*#g>7=M0Cq%%W9`2Oe>Ov)OMv8yKrI^mZ$ql{A!!3mw_27Y
zE=V#cA@HopguAWPAMhKDb__-Z_(TN7;*A`<V!-bvnypiC;;A<s)ZWy7roDM^(*wKe
zFRBbV>XxrMefxoz4{Seu)$%$=sPf{vT@Pf_T`RlrC#CPDl$#FnvU|VBC$0(E>+3EG
z&3xsml}L_UE3bNGX6T~2dV6S%_M9{`E9kgHPa+9mas{tj$S<&{z?nRzH2b4~4m^Wc
zVF+o4`w9BO_!IohZO_=<;=$8j?7KUk(S5llK6wfy9m$GsiN5*e{q(ZS6vU4l6&{s5
zXrJJ@giK>(m%yKhRT;egW||O~pGJ&`7b8-QIchNCms)}88aL8Jh{cIp1uu`FMo!ZP
z1fne;+5#%k3SM7Kqe|`%w1JI=6hJJrog4j?5Iq!j=b=0AJS5%ev_9?eR!_H>OLzLM
z_U#QLoi=0npY1+gHmde37Kgp)+PKl=nC>pM|EJCAEPBRXQZvb74&LUs*^W<qi`ikb
zULO&OgAOE?{8Yo8e9fP&eyOZA+Pu&jv_x+)uMRl2HkY|<PdR<7%te>CT5Q%L-{O+y
zQKgd4Cek)Gjy~OLwb&xJT2>V%wrprI+4aOtWs*;<9pGE>o8u|RvPtYh;P$XlhlqF_
z77X`$AlrH?NJj1CJdEBA8;q*JG-T8nm>hL#38U9ZYO3UTNWdO3rg-pEe5d=<c84sd
zWQRT5%`;6#i}quSQNGk|?_N5wAN*7|VF*u7b<CmleU4))Puksbr~r-Zr})lR$WQcl
z0q0#&W#)RbB$@93ApKqQu3A4&eoBD$^=Kjy{W_r=@GXcAyFithN6dfGG&DTNpC!%Q
z-v&ejc41|R6RwdY4OGg}W1lMki51+cmL34l6^wCdyfmKwSEtD)+f3Q6Y?sw)Gj*CI
zi}b6|!q7)zGX2paNg*wS#A#x5c`sKue@%-?6K0wvqckD=0~43bGcBbiX+bdf;*Y5>
zw3Xi@nV)1`P%F?Y4<N_71+4WAj)%^g1&pq6EY4%lIS>s9yVPgPYT9d#3SLD{*L0U{
z;TtVh?Wb0Lp4MH{o@L6GvhJE=Y2u>{DI_hMtZgl~^3m3#ZUrkn?-5E3A!m!Z>183-
zpkovvg1$mQawcNKoQ*tW=gtZqYGqCd)D#K;$p113iB1uE#USvWT}QQ7kM7!al-C^P
zmmk!=rY+UJcJLry#vkO%<X&wMhX@z48d4#x$RV9unDpR5F^<jPm*#*xx`6FaC(DhT
z#3rNcGx$kv;@)Z~0OANH>BuM>pb)46x!{DkRYY7wGNK$v=np_sv7nfHZO_=eyqLSK
zA6ebf$Bo&P&CR_C*7^|c<!)Ox)fnUtm?B<24<QbOJc=X^B;oVC5fgtPD3vK3tC+{8
zWfZH^2?^L^<BS3Z@SM@wsdznQ9$SV+Ib*};vG+PzPL9Ah8!?Nc&}*<rjuz(Mp5ul+
z;BOvJvyc0Y#K-U$$Xht4%<w_^r0N<ZPFkc`;!&Uj1{y>A>zl^hJ7z0?xu#wFzN=D8
zxm(>@s?z1E;|!Py8HuyHM}_W5*Ff>m5U0Jhy?txD<f<*#QXUV_l-I_2Mu=7^T_+=O
zrI<wo4*<R`2iI80r~*}dE@&{M9I|wBXG|%;7p2>x{jjLGNXs}(CVxgu9Q4tPgE+Hm
z*9ll7bz80456xzta(cX+@W!t7xTWR-OgnG_>YM~t&_#5vzC`Mp5aKlXsbO7O0HKAC
z2iQF2_|0d6y4$Pu5P-bfZMRzac(Yl{IQgfa0V>u;BJRL(o0$1wD7WOWjKwP)2-6y$
zlPcRhIyDY>{PF<r;4(jy?Kp%N?>LvIr0!VoC<s-_2bN?|P6d;e4@#tzTqN;6&52j$
zL9K!Yk^iN0oK#a%RaKIGbzDIoIan!+0}vWdT67`CwzZ;fPBHD3o=~>e;c_}dp>U-X
z`pii$Ju=g+Wy~f|R7yuZZjYAv<!8-$PP~x7F<7|MfT8{I*mxeRuChzu*;<-uy$7wX
zfW)8-sv=vO6|DVW?SSA~s?O!A+`jwgdFE@wp&3S}!?MlHO>4AYJT}Ct-OfF$ZUBa>
zOiKl0HSvn=+j1=4%5yD}dAq5^vgI~n>UcXZJGkl671v`D74kC?HVsgEVUZNBihyAm
zQUE~mz%na<71JU=u_51}DT92@IPPX)0eiDweVeDWmD&fpw12L;-h=5Gq?za0HtmUJ
zH@-8qs1E38^OR8g5Q^sI0)J}rOyKu$&o1s=bpx{TURBaQ(!P7i1=oA@B4P>8wu#ek
zxZHJqz$1GoJ3_W^(*tZqZsoJlG*66B5j&D6kx@x^m6KxfD?_tCIgCRc?kD~(zmgCm
zLGhpE_YBio<-2T9r;^qM0TO{u_N5@cU&P7is8f9-5vh4~t?zMqUEV!d@P{Y)%APE6
zC@k9|i%k6)6t2uJRQQTHt`P5Lgg%h*Fr*Hst8>_$<LHwKtiL1)`Z1k}WtCHTp*zG)
zd@VPHYT9L%x%kdIFV=dq86xx&$bIH1Zqhz^D$`DQnaar#F4iXSa**JGiEagk!B1Ru
zqf}j`tAlBt6VD8mxdq~os68b*H#O_xS!$-F^!N9SyJpGFGcsDA%NdMS`o_HX^r~mB
zjWxGkcg{RpFs8EUv14}XPvuB#dUDpR^;xx~)V{7E(Xh)L3rc?r1?=S;$BgyVCF%&l
zFuy_Xs4r#_gboRee-4jmoQc^ehr?t}CM0kelFwU7%lRN{rjzh-BqK;@Rc;%?knZq4
z?ccU=h)bPzW!2>J{ZI{mNBjN$^2t?KP8*6_xXu5xx8ufMp5R?P(R-t`{n6c{!t+*z
zh;|Ek#vYp1VLf;GZf>~uUhU}a<>y*ErioacK@F{%7aq0y(Ytu@OPe;mq`jlJD+HtQ
zUhr^&Zeh93@tZASEHr)@YqdxFu69(=VFRCysjBoGqZ!U;W1gn5D$myEAmK|$NsF>Z
zoV+w>31}eE0iAN9QAY2O+;g%zc>2t#7Dq5vTvb&}E*5lHrk<o?&An%HnHnwimHSFY
zP8?Z+cWG1wcZw|v(B!8vX4BBN5o`uq^+jO9@}GlL?8!jh7Q&l=w;&D@9uU#(ln_n(
zJ72U#{LF9cuvtrE@pkXbdGls^+vBmI&9;MoL;I}_Xc{+G8XF^D+P?iukw$!q$lw0^
zz0jr|)UspMSTOD_ceFnA)I+U~a&H{iKlXcCLc4A;Vj=;>rj!I1b0=@+&c(qJcmok6
zS<GPZ0U@7op7t1v!25ZiLn#F<sK)L<i<qmv>ZAuQ496j<&@a6?K6ox1vRks+RqYD<
zT9On_zdVf}IStW^#13*WV8wHQWz$L;0cm)|JDbh|f~*LV8N$;2oL|R99**#AT1smo
zob=4dB_WB-D3}~I!ATFHzdW%WacH{qwv5Go2WzQzwRrv)ZajWMp{13T_u;Rz^V-VF
z@#62k@#FD#t@v9ye*A%@ODWm-@oM_$_3Cy1BS+(+ujzNF@8a7?`$B^{iX2A-2_nA?
zfi2=05XV^;D_2G}Up$eFW|Ofb^zuE)bWHkXR4Jm!Sz0O?)x6QD^kOuf<UNV5WGvfC
zOct<!4cuW|m8%OHs?V-X)nS122bze@LS9Yu`tzXRX#rfMv4X!6B?!~W-hTr=v<5(z
zRU#8AlYS9P>R`*v0=|sS?#*ZCvvr^VkV!zhLF3}FHf%+=#@ae1Qq<4~Y1EGYK$Ib1
zg!s~&&u27X&4Ks^(L3%}Npx!_-A)We=0v#yzv03fzxKZ8iV6KIX5U&?>^E?%iIUZ4
z2sD^vRg%kOU!B5@iV{&gBNc9vB)i{Wa@joIa2#4=oAl|-xqj_~$h33%zgk*UWGUV#
zf3>{T#2buK?AZH?)h>10N)#VHvOV}%c|wR%HF|pgm8k`*=1l5P8ttZ1Ly@=C5?d9s
z)R>B@43V`}=0??4tp?Y}Ox0$SH)yg(!|@V7H^}C-GyAXHFva04omv@`|LCuFRM2`U
zxCM>41^p9U3cR>W>`h`{m^VWSL0SNz27{ske7TN<Sg(~G0be*C4|__Qs<mm_w8%)^
z?}L4T+16fl^uMdxZKe?4t1S$ZUp2!o_GpQgr^Wg!gD!bl2b82bF%f#7a2^$D3s9)6
zb&ide8nHa*q)+0%g`~$pefr^gpmInnX<ZP7Vp->1dTpM|P6Hn!^*}+fr>rJ*+GQN{
ziKp9Zda}CgnbNv#9^^&{MChK=E|Wr}tk?tP#Q?iZ%$2k;Eo9~}^tmv?g~<gBF2E!d
z>PW^C$`N)|awe=5m{Xqd!M=ST?2~(mWjdOsXK#yVMN(qP6`q#tg+rQexf|*BeIU)a
z^WuJyPR4WVsA<ziZ9SGIqXyk(0hNQt%J-j<&BZ9m&0w6`VyIog&iYuWAU%FJMvhDo
z@BnM$s{+HX7{T~AcVgogi(AwHuBHMT&d^d)q@mg%{q7s#Uyb&}7WDr@3QTNjiCN$0
z#j}zo`K9o#TE|)CUWaG9!@$RDsV?mwab+_Pn0#iN+Ia@oI)f|9#>Tp2E{*y77*kZ9
zEB{*SRHSVGm8ThtES`9!v{E``H)^3d+TG_?{b|eytE1cy^QbPxY3KFTWh&NZi`C?O
z;777FMti@+U+IRl7B{=SCc93nKp`>jeW38muw(9T3AqySM#x@9G|p?N;IiNy(KN7?
zMz3hIS5SaXrGqD(NIR0ZMnJT%%^~}|cG(Ez!3#)*o{{QjPUIVFOQ%dccgC0*WnAJW
zL*1k^HZ5-%bN;%C&2vpW`=;dB5iu4SR48yF$;K8{S<c_w99R^X`sJ&aw1-E`?@ZqF
z($w`|+q<M;f5XMvC5{k3?ed8Y9buPZNghg=Hq1Ondc_zVzi$52i^i7Ont#z!dU3F^
zf9+DG*kP@RmW}i^tMV)LCYxDR_&mwOgJb4jGb^!R^q5d_^$T~L|FsLIlo|YDex?<M
zz8J%pkH{U!UXaI=jZ(agL{ktw+FLN9g$4;v(nuSO7+*A$#@XdRZ9-|8jc>Y`7mu6c
z@q{10W=zwHuav3wid&;5tHCUlUgeVf&>wKuUfEVuUsS%XZ2RPvr>;HI=<(RACmN-M
zR8(DJD^lePC9|rUrFgR?>hO#VkFo8}zA@jt{ERalZl$!LP4-GTT`1w}QNUcvuEFRv
z`)NyzRG!e-04~~Y1DK>70lGq9rD4J}>V(1*UxcCtBUmyi-Y8Q$NOTQ&VfJIlBRI;7
z5Dr6QNIl|8NTfO>Jf|kZVh7n>hL^)`@3r1BaPIKjxrLrjf8A>RDaI{wYlKG)6-7R~
zsZQ}Kk{T~BDVLo#Zm@cc<&x{X<~boVS5(zfvp1s3RbASf6EKpp>+IFV9s`#Yx#+I&
zMz5zL9IUgaqrnG*_=_qm|JBcwfl`bw=c=uU^R>Nm%k4_TeDj<s++>y|&K2eKwx!u8
z9&lbdJ?yJ@)>!NgE_vN8+*}$8+Uxk4EBNje>!s2_nOCtE+ie>zl!9&!!I)?QPMD&P
zm$5sb#Le|%L<#tZbz%~WWv&yUZH6NLl>OK#CBOp{e~$&fuqQd03DJfLrcWa}IvMu*
zy;z7L)WxyINd`m}Fh=l&6EWmHUGLkeP{6Vc;Xq->+AS`1T*b9>SJ#<2Cf!N<)o7Ms
z!Gj)CiteiY$f@_OT4C*IODVyil4|R)+8nCf&tw%_BEv!z3RSN|pG(k%hYGrU_Ec^&
zNRpzS-nJ*v_QHeHPu}Iub>F_}G1*vdGR~ZSdaG(JEwXM{Df;~AK)j(<_O<)u)`qw*
zQduoY)s+$7NdtxaGEAo-cGn7Z5yN#ApXWD1&-5uowpb7bR54QcA7kWG@gybdQQ<S-
zDdN%;r{I|pU-aM?e9q_pBe-?*L>a&cxCKxup2Av3_#{04Z^J#@M&a}P$M<((Zx{A8
z!Ue=%xTpWEzWzKIhsO_xc?e$$ai{S63-$76>gtB?9usV&`qp=Kn*GE5C&Tx`^uyza
zw{^ImGi-hkYkP`^0r5vgoSL$EjuxaoKBh2L;dk#~x%`TgefEDi7^(~<C<r}yHnA5!
zj8>cmE)UEw*l#i+5f-;!v^P%ZowUbhH*3Av)CifOJX7KS6#d|_83fqJ#8VL=h2KMI
z<X$qRpzLMz@O*B|3fjxC*>GYTbGm=Q=0lfc{$IDTn;IxIgLZ(Z?)#!mln$0r3A(um
zzBIGw6?zmj=H#CkvRoT+C{T=_kfQQ!%8T;loQ5;tH?lZ%M{aG+z75&bhJE`sNSO`$
z`0eget1V7SqB@uA;kQ4UkJ-235xxryG*uzwDPikrWOi1;8WASslh$U4RY{JHgggsL
zMaZ|PI2Ise8dMEpuPnW`XYJY^W$n>4PxVOPCO#DnHKfqe+Y7BA6(=QJn}un5MkM7S
zkL?&Gvnj|DI!4xt6BV*t)Zv0YV-+(%$}7QcBMZ01jlLEiPk>A3;M^g%K=cNDF6d!7
z<aM&9@bguR-(8%RuJl`s*}oX^lq!s^yr(~-b*t}2AJw`ajkG3X??#boRa)-xQ!0y}
zQvE{f?$7WZsW%yYl=nOmi~R%I4k0fIp4kYU*KwK-JLnPSlu&%jx{(IIGpy})j-Ni>
zq1_(l4SX+ekaM;bY|YgEqv2RAEE}e-Im8<@oEZ?Z81Y?3(z-@nRbq?!xD9Hyn|7Gx
z-NUw`yOor_DJLC1aqkf2(!i=2$ULNfg|s8bV^xB!_rY+bHA;KsWR@aB=!7n&LJq(}
z!pqD3Wkv<EUKw=QUZ{YeNjs!1)DE3)xa{mp%FNA)7E{?JXJ2MGou?yVULS4?IGusE
za6J!4pgDi?kcM_0y6pz@LpT57oC=&XKj#lOKV-g6pRa~b&`twzY&7d+(*cz}nmFc;
zUG6sS0f8^TDzbqAV-Ci#0Q*4v!S4HIG2})JIE}Yg-neehx^9VuT-t-Kkc%%pecy(D
z;Qzi2a%y}l3_7f%?CyY{3^<lfl!0RAl%uAbhqB#Tud-x`*1H5Ya(l{nH;QTRmNJ9o
zWPkOXUdo1jB}S(U#TX2_A;{8+*V<5uQ+f$I87N9BTf#$2%1{bKYJoGfM*x|>o-Goy
zx1edGgnc}u5V8cw&nvWyWU+wXqwinB#x7(uc>H44lXZQkk*w_q#i2O!s_A?a*?`Rx
zoZW6Qtj)L1T^4kDeD7;%G5dS816OPqAqPx~(_-<DuB$fss>jZ`bo-MR_kd&sJv{A^
zs<mvsogQ1M8mv<Ct$f8}u@yT_X8yXC2EC}uY~H5r4-`o@d)0;ATiQp>@18qv!kD;U
z5Evv$<lBB7#(Jc%96X*_<c5{DXipqiqGV{lSf@y=%UMwtHg|ADEjAhIx56>C*bD~m
z+x@>Oo>;7%QCxfp-rOkNgx4j-(o*e5`6lW^X^{qpQo~SMWD`Gxyv6)+k)c@o6j`Yd
z8c&XSiYbcmoCKe+82}>^CPM+?p@o&i(J*j0zsk}!P?!W%T5`ppk%)?&GxA`%4>0VX
zKu?YB6Z)hFtj@u-icb&t5A1}BX!;~SqG5ARpVB>FEWPLW+C+QOf~G-Jj0r`0D6|0w
zQUs5sE6PYc)!HWi))NeRvSZB3kWIW|R<H0_gGW<At4DglY{@PXl7rw}vx_Wdy?mi(
z$0>^A%RfamB2jCbVX(Fn>y%#b1W%}W%qc)XVrwuvM!>Qur!Ooy2`n@?qMe3$`F2vx
z9<=L}wP7@diWhCYTD?x)LZ>F6<rMsfn4>F?z8naL18P%1T9&P_d4p;u=(XW1LO3-<
z`{|5@&Y=}7s<hKtKn``g07m^x2L<{euW5rmHASWqkln<y;G60p+yy1Vd~}>x3t1Zs
zr9ZBmp}Yp<Mc)Mmn-+i$m0AeGjn*2BBdF_u2nszt)O{Ez!VomrO1NW@UJxJXIYe56
z(hC@vJZyP9IiY;2hPG1)J9VoU!%1sA9yL#0JHU99x=C-a^r*#L2#n~b{G2!*mf=7Q
zwzqIf9N*qy6``%-9z_FAX#r2LDe2LPf*507Fz(b?J9;sPV>HLq7lwu?CXL8<aWMNg
z?79jh7{F8S&wB>$Q65$Q29AlDCBJSxu5<ljsZ?&yzAt$^o=0gUg23{>;p0({^4skD
z+4se#9)xg8qnEh|WnPdgQ&+te7@`9WlzAwMit$Julp+d80n+VM1JxwqS5H6*MPKA`
zlJ*Z77B;K~;4JkO5eq(@D}tezez*w6g3ZSn?J1d9Z~&MKbf=b6F9;8H22TxRl%y1r
z<-6(lJiLAw>r^-=F-AIEd1y|Aq2MggNo&>7<AhoY=YGA|J57w_WG(=uW_6WAD9gb5
zkllb$JpC=Oq9dIg7R5r|P`SqQ<dYuHB2Q_MK7ytAJTZiC9@ZoL{?AIDD}Wz7W#0sZ
zofkn1HXLlFfEDzB*m2m)4H;LeihD7}U0eAVJQu^P`eK4ns&w}cgGjC_a|3kkqQ9Uu
z?lK56cLJFz-7|;5K>Ln)S~iAF1;-4`A*9KlL*vleLO3vhEd(@RsIWp~O@>N4p91SI
zb~+*jP?8B~MwmI0W$>ksF8DC*2y8K0o#te?D$z8nrfK{|B1L^TR5hlugr|o=-;>Yn
zmL6Yt=NZ2%cAsysPA)D^gkz2Vvh|Z9RJdoH$L$+6a^|>UO=3fBBH0UidA&_JQz9K~
zuo1Z_(cB7CiQ}4loOL3DsdC<+wYysw@&UMl21+LY-(z=6j8fu5%ZQg-z6Bor^M}LX
z9hxH}aVC%rodtoGcTh)zEd=yDfCu5mE)qIjw~K+zwn&5c!L-N+E=kwxVE<t-E%KoZ
z<y&iLhOY@duv$!~)enS*2k<Lm!CRy6J|N;BcsF`0Wf&G9=@jB5xd)5m4ImV!$et^Y
z=;6?K5$zg_9uNnA#Dfn1K!>ewN#vvx2WGCf^;C9<Gj>^mmTlYc*kz$NUdQ=gDzLmf
z!LXG7{N$Mi3n}?5L&f9TlCzzrgGR*6>MhWBR=lS)qP$&OMAQ2<kLLosVT*|81)fcx
z1+w&8<iP=6ky2!#yku<s8D`Xjeg0*f26T&a!7wAh4DXawVOI&H0$tS4$mGs-tDyy1
z`?j7-f4=Li{u1fKn;wA}t%hLg^jDmT`70Scfh4r^@|UE|58Rk_oV{SzFQ1i;EZ)_>
z`$23{zM%a@9EPdjV|Y1zVVGf?mINO)i-q6;_Ev|n_JQ^Zy&BnUgV>NbY9xba1DlY@
zrg$_Kn?+^_+4V4^xS94tX2oLKAEiuU0<2S#v$WSDt0P^A+d-+M?XlR**u_Xdre&aY
zNi~zJk9aLQUqaFZxCNRmu*wnxB_u*M6V0xVCtBhtpGUK)#Dob6DWm-n^~Vy)m~?Yg
zO0^<MG&&0v@aU{0YUeT3jttrL)l^>+v~`x6Vqtjl4I5;=^o2jyOb~m+ER;lNwO$iN
ziH4vk>E`OTRx~v#B|ifef|ceH)%hgqOy|#f=Q|VlN6i{!0CRndN~x8wS6Ppqq7NSH
zO5hX{k5T{4ib@&8t)u=V9nY+2RC^75jU%TRix}FDTB%>t;5jpNRv;(KB|%{AI7Jc=
zd%t9-AjNUAs?8m40SLOhrjbC_yZoznU$(rnT2);Rr`2e6$k!zwlz!d|sZ3%x@$Nw?
zVn?i%t!J+9S<yDxP;GX2UFING%JN5ldLzG`I1!{O<N*T20}&)36oWiJP)STb(%fR)
z^L!VP7mPfVZXa5-Cw8K;oHguD-UZ5Wxf}o}JGCe1+hXBel!A<K`TIeUe$XhF(j)l{
zVT(%{kUl6fAPK+$ziJ!!iu$2?1+-qoqn!edQ^74P`A!1JDd3h;Cj~^h{iI+Md>F@^
zO&TGun2&?VIygfH5ePk|!e&G3Zm-GUP(imiWzZu$9JU)Wot`}*RHV<<B{3C7B0`1|
zb>-)vUhc6J6{w&PQIaSZ_N<(d>`C$yo#Ly&0Sr5gCkDY(4f@fY5!fLe57sH54#FF4
zg&hda`KjtJ8cTzz;DwFa#{$!}j~g$9zqFBC@To^}i#`b~xhU;p{x{^f1krbEFNqV^
zEq5c!C5XT0o_q{%p&0F@!I;9ejbs#P4q?R!i$?vl3~|GSyq4@q#3=wgsz+zkrIB<<
z=HMWEBz?z??GvvT54YsDSnRLcEf!n>^0eKf4(CIT{qs4y$7_4e=JoIkq%~H9$z-r*
zZ?`xgwL+DNAJE<u&KUS1Ezcw_$pu?O>`VB;S+w#NvBT{3;}{CD&@Ig*Ka2Acx)2Qx
zL)V#$n@%vf1Zzms4Th~fS|(DKDT`?BKfX3tkCBvKZLg^hUh|_Gz8?%#d(ANnY`5U1
zo;qjq=5tn!OQ*-JqA&iG-Tg#6Ka|O64eceRrSgggD%<C_<FE1olnRcjTgNn5M5OHQ
z&ChI}{m3J;@p6;=pWDOmu{ro8z!hi((IT*}WPJvM6IkXOn63i^qh*JA3M?7G0qW;I
zX>%QBX$t=6?hPEK2|lL1{?|>I^Toc>rQU7a_`RSM^EPVl{_&OG-P;|z0?v{3o#pkl
zC6Y;&J7;#5N#+H2J-4RqiSK^rj<_Z6t%?`N$A_FUESt{TcayIew5oWi=jxT*aPIP6
z?MG`?k5p%-x>D73irru{R?lu7<54DCT9Q}%=4%@wZij4+M=fzzz`SJ3I%*#AikLUh
zn>k=5%IKUP4TrvZ!A{&Oh;BR}6r3t3cpzS(&|cEe&e{MQby|1#X`?17e9?|=i`sPG
zL|OOsh`j@PD4sc6&Y3rT`r?-EH0QPR*IobE@_fkB8*(886ZkjkcO{K8Sz$H`^D-8P
zjKG9G9A`O!>|!ivAeteRVIcyIGa#O<6I$^O7}9&*8mHd@Gw!WDU*@;*L;SYvlV#p(
zzFSsPw&^UdyxO}%i)W8$@f}|84*mz&i2q@SlzMOd%B!BHOJ<(FYUTR(Ui$DuX>?85
zcdzl5m3hzFr2S@c_20C2x&N)|$<=RhzxI!}NN+yS16X^(_mtqY)g*Q%Fux5}bP3q$
zxQD|TB{+4C1gL>zI>g~-ajKMb{2s_cFhN2(I(q^X!$H(GFxpc6oCV9#maj|OhFZaI
z;umX6E*fQVTQ@lyZauuv>%E)5z-?zQZne18V5A}}JEQmCz>7^h<Bd<fQ(OP%nTPmA
zS6%V-@#lVf^v}OCKC_D2scF(BL(TlBQ96*dK6|!vDvF&o;ni)GU6t>0r)!zhinBG6
zMQghGt!Do5h%HmAQl~%m+!pr-&wlrcwW;qw)S$6*f}ZvXd<qjrVb%W}nk2)_bI{5Y
zG!_yC8`{(bRk9VmUS!KrC7aBuqpq=4M_JWaSF~DYu8yf44}dUv?DXJU_%E%-q9UVR
zYqQvF^8Tag@#D*@s>;cHw=xm|y~mHbT3yX>?hoYKfy--h<AH4|v7u4V$?TsF1POK#
z2l~Z#K*f|-yBktn5A>+6w9%@_4ukf0Et^zr-DbPwFdyj0VJHi}4bqRetSNR`DoWd(
z(%n5>8MQl+>3SeL-DB@IaM{NDwd{{v_HMIO)PKO}v{{##c@ihB0w$aaPTSP4^>n3Z
zC8Il%(3dCLLX$-|SwWx1u7KVztXpzNhrOZQ78c$jd{B9lqsNHLr*9h;N9$i+vsrM1
zKzLB_gVdMCfxceejpIZat!MbR)GNZ%^n|fEQo?Xtq#Qa_gEWKTFxSL4b{g}<g5!pg
zqjYvXf#WmS590a@AtEIYrKmWbO7RfxSqt%u{zj-2;vw3t)Ozvk|CUGsKto6|7(DwJ
zqoP$jyJ=6RTYq*jeSO7zR(m1Ew81tMmn9k-6|A8-@s}tK@%iv#C$P~FZ*8kkTBv7;
z8+H#yhOrc23fr;54Q3_NHJB(5rk3vMnC-7<X_?i~ODk9JQPqI6e6*h(y10E&qN{mg
zVod4SToO7Foj>kJNd{QcoQ}HUP-A)Rq;U(***IA*V_0B5mr}Xp$q{YSYs-b2q~DHh
z?+muRGn~std!VXuT>P9TL_8Km9G{do<P%hMjBo5*GjY+zxo5S6Mdsr|^yKI_%q!Y|
z0XZbr6buPibb|^S7K<litua~z)i$~wp_60LRE(@oJO87pvtH1Sj+)>qRb-W0B&%d>
z^3@hs6y5jaEq%P}dmr(8<wosc?GN8HeS4DK1fxZ+I2DI%mrTh(d*k$)v$^5U8{U6x
z#W(eF!%R`r(0sLsle|8!;EM7q88jUgGH&h4`-Qy)R=WH?{fXNApJ)$g)3pbF0`?qg
zhmjp;G}bkq(J@l@(gj3xY+Luy<wQe1DU<%W_S}<C@`*neDS)*xzoPg_5JC>=f}x~^
z*{I{tkBgYk@Td|Z{csd23pziZlPYt2RJW7D_C#&)OONEWyN`I19_cM;`Aa=y_)ldH
z^co(O-xWIN0{y|@?wx@Y!MeVg3Ln%4ORu5~Dl6$h>AGSXrK3!pH%cpM?D|6#*6+A#
zlsj;J0_~^?DHIceRC~0iMq)SJ&?R&if{fsdIb>y;H@M4AE`z8~dvz)(e}BqUWK^U~
zFy`PX+z*Bmv9VxAN;%CvMk(#kGBEMP;a-GgGZf~r$(ei(%yGqHa2dS3hxdTT!r>La
zUrW2dCTZ!SjD_D(?9$SK02e_#ZOxdAhO%hgVhq54U=2$Hm+1^O^nH<>wS|&<)2TtD
zN_MN@O>?A@_&l;U)*GY*5F_a~cgQb_3p`#77ax1iRxIx!r0HkDnA2G*{l|*}g_yI%
zZdHt2`Hx^MA#VH7@BEN68Y_;<n>sAcCNgCY7S&dcQsp*$+uW7Dm@$Vl7!YA^51bi}
z*Vy8uTj{neIhI<oWy=zdr_{4#i`<hHemO&-p)DvOH>L|PhditfC1Jeub(uy}w|wV5
zsQz)04y;BY2$7U4$~P{k)b`hZb>gv1RkD)L#g~$*N^1N1GfNMS)4r|pT*V<&KE1M9
zTh}rzSW#Kcci_#(^qf0gTW3&QN&zsW%VAQ+AZ%-3?E)kMdgL)kY~@mC>l?RH28u;Y
zt-@_u^5(W>mDdt<VOYVgE#|A(uSEv@fOheek;xg_<rDOsNOl;gd)!Vja8=hch<)Lc
z7C5x)TTnfC{Ty&89Y{5hHW8hoHQfdd*GFRp`xtUQY*_1G@JVU(0G!G`VL(RRLkFlN
z{KC?h9ZQ4a9Zk#WEDGc4V`(K#V+h=(@|#!+B^!*`vNb|*0ka$cyGgGYw7@VL2ZaV-
zNiT>qoe){#t;3NA7c@<nTry$GxFrj|q+b7*)5;f*OrAfZ+;0o|R!v@aTd;Wd<7=Pa
zv0@Zt<2sl-2)ia3b{+ElCFYvhG26s1EhzUG*DY&qzkD1ok!G#8o0Rcq@I~^{X&b(}
zZ@$|+f=ffW_Mv|;7CHE_1<Uh0i>{WoY9bYFNoq+sj&ru;Z`x>4ddY0y*`HRtHFEN%
z@mFkp=x0C6zDGgA0s|mP^WNEwE4O}S?%DOtce3At%?ThxRp@`zCH6MyzM)dA9C7IP
zI}t;YUV(Jcnw$4LoD4H(EM#!{L-Z|&fhNYnBlKcQ$UScR#HH>scYBTf2u|7Fd8q$R
zy5Cbt=Pvf^e}m4?VVL@#Pi3z*q-Q0MG8pGTcbS|eeW%R5bRzKsHSH#G<xBsM(j4bg
z-=NG2#y@lA_H_D~$e_|wjQMoK?HF?(ofQZ4Vzj9Zx`0FjEN<3>(#$9hj9}0O7lXsC
zbZ7#UjJM^FcvdKK3MOEl+Pb-93Px}F$ID&jcvZdJ{d(D)x|*`=vi%1hdg(dd-1E>&
zoB4U&a${9!xyxoT%$<MsXn8+O$mZ77dXQPXHRf6#s%oUnHFa~!q_1s$>7gFp{M<_q
z9oVnk*Dcp$k#jA#7-pZbXd=L8nDhe<*t_*%gj^Vx>(~KyEY~i&(?@R~L_e^txnUyh
z64-dU=Lc;eQ}vPX;g{GitTVZben7||wttapene^dB|oSGB~tmAGqE^`1Jxt$4uXUL
zz5?7GEqvmLa{#mgN6la^gY<w3YLNeVW;rdeNWK%R0!+U2r<S&xzgpz0YBw4K8$3mp
zE21?;R%76qA~z3I)m~||6<Kx~EuGGQb&th9nAE?Kl2+9hCN)_pskOrqC_+*xeTUWE
zqHK~(U3Rb6Ywt2io0Jx}^^QAit`<e<Y|lls)EbnHN{h>O#}`eXyUJ)lFyTO8*iL~P
z$A`A_X^V#!SJyU8Dl%J*6&s9;Jl54CiyfA`ExxmjrZ1P8E%rJ7hFCFo6%{5mRa|LY
z<hHMFEJ$i9a(4NfssfTL+q=W*C@s0HM3JX0^+}R%=`>k^x76W8M0tQBa1Q(&L`|!e
zrczv>+#&b<PjV6d3K}eU;V9%YaKm(oM4Zr(@CHXFAW14hML_r4VqzLAlt6`n@RklP
z#|_mXnz0e!Du^;&6ZEY1{U4mQ=<0hS&2o_k$4F#Jm0_q5ahCfmSKsn1pTe)@Q>2bt
zuD1Bfoe>oW0&!ju$-LI)$URptI!inJ^Dz|<@S1hk+!(n2PWfi-AMb5*F03&_^29MB
zgJP7yn#Fw4n&Rod*>LlF+qPx5ZT$80;+m*0X5ffa3<jfYcXFe-W}$P7vS|L2z8h!H
zn)b>d-;F72#5un;L$}RfmR5&xbOf(KNeD|gT1x6bw5t;~j}(oMHcSzkCgcpbd>5UN
z7e8CV*di9kpy<pA5`bF4mH@m^LV0vfv)0p{>JAo1YyE9XtfV1Q8^?ViwrKgtK$H60
z%~xgAifVV#>j>4SN10>bP9OV9<ecvBe`%dx>m`EA-H{bzMimEQ_3@VZH%@KZzjDu`
zRCG*Ax6B^%%dyLs2Cw{bePFWM97<M4+}X6j=rFmY8D9@pIA_cZHBTuS=i*BuXU_~r
zW>50@SIoZoff4mJvyxIeIjeZ{tYpbmTk4_{wy!_uygk4J;wwSiK&OpZWguG$O082g
z^a3rw)F1Q!*)rNy!Sqz9bk0u-kftk^q{FPl4N+eS@<V2$_#KjDfHky}YxE6v>0p1=
zhaBFdyShSMz97B%x3GE|Sst~8Le6+?q@g6HwE1hJ#X)o^?{1!x-m`LlQ+4%?^IPIo
zHATgqrm-s`+6SW3LjHB>=Pp{i<6FE#j+sX(Vl-kJt6sug<4UG9SH_|<oE5<{&zK>(
zOb(+Vn|4R4lc8pHa-japR|c0ZAN$KOvzss6bKW^uPM$I$8eTr{EMN2N%{Yrl{Z`Y^
zaQ`-S_6omm((Fih26~Bjf^W$wm1J`8N+(=0ET@KFDy;S%{mF@!2&1UMxk>jTk49;@
z*g#0?*iga;P7abx1bh^d3MoAy*XQp{Hl*t(buU@DamDmvcc;5}`ihM!mvm36|GqRu
zn*3}UmnOSUai6mM*y&f#XmqyBo>b=dmra`8;%uC8_33-RpM6;x`Rrc0RM~y9>y~ry
zVnGanZLDD_lC%6!F%Jzk##j%?nW>JEaJ#U89t`?mGJS_kO5+5U1Gh;Lb3`{w<-DW;
z;USPAm%*aQJ)UeYnLVb2V3MJ2vrxAZ@&#?W$vW)7$+L7~7HSzuF&0V95FC4H6Dy<(
z!#o7mJKLMHTNn5)Lyn5l4oh2$s~VI~tlIjn09jE~8C#Ooei=J?K;D+-<8Cb>8RPx8
z-~O0ST{mOeXg+qjG~?}E8@JAo-j?OJjgF3nb^K5v>$yq#-Ybd8lM^jdru2WE-*V6W
z>sL(7?%-Qu?&?wZNmmqdn?$FXlE!>2BAa^bWfD69lP0?L3kopYkc4>{m#H6t2d<oO
zM-rb4RHzpm9{wcAncBP-$z|oGYL~V;7`yL0TF=DQi;45@lX^I`Bry3%;i)|iLA2cJ
zD&=p*f?xWH#B@1NV?V)Q10EuyprvuT-(Wa1PPQ5t`ay%_ybUO&1G_V*CdltU4p|^e
z0stB?-MU)8M=g!9-Je~j??XyE_G1Xia8c^kF+>LIEE47|jcI$tEuWzwjmRgqBPkzk
zM+(?6)=);W6q<2z95fHMDFKxbhPD-r0IjdX_3EH*BFL|t3<dcW`!>))c7d~8v;<l`
z9cOc4;PkP*doonyEp+5!5ObxBj=3fstp#093;Edqi3}76dI?B>{wU5p8nHUz9I?>l
zVfn$bENo_I3JOh<pvs`XjXA{<Axd5<=D(OZzz!%s9$+)Sav(kLD=%GEmyDH<n>1^^
z+un~MSwCyixbj%C?y{G@G7mSZg_cf~&@djVX_vn8;IF&q?ESd=*AJHOJ(!-hbKPlb
zYi-r+me!ezr_eCiQ&SetY;BocRokkbwr=ONG<Ls)CKFqlbRTn0h9dn%08(unJL%2r
zdUhMy)*6q|wFvsNtu>zW2U@X=AUvS^E9eM^w~aztd4h$Q&kF;6EJ1O*M7tJfFi}R1
z6X@asDjL5w+#QEKQE<MUI6g|txm~6wNm96XWpM0snga=U?c*@C(Hv00gBVrANXdvx
z>5V48#ASm?H7u5j%nDqi)iO@<OOjW*K|ky8{5@_LH+T{a^`=0Tq!!6Vc7wal>a1@F
z*^R+bGpEOs#pRx9CBZQ}#uQa|dCH5EW%a3Xv1;ye-}5|Yh4g~YH5gI1(b#B|6_ZI;
zMkxwTjmkKoZIp~AqhXp+k&SSQ)9C=jCWTKCM?(&MUHex;c3Knl(A%3UgJT_BEixIE
zQh!;Q(J<0)C`q0-^|UdaGYzFqr^{vZR~Tk?jyY}gf@H+0RHkZ{OID|x;6>6+g)|BK
zs6zLY0U>bcbRd6kU;cgkomCZdBSC8$a1H`pcu;XqH=5<F+D~<Z-#2~djpJ<Gc|QJ4
zafx3Y8ElfZ<^ZG1&3Fb^`teMqzPjsAXz8)fn!7rC`gCl=cGu)r3S4c*Gq4a$RR9I`
zbygh!Z5_qV1J=<UxX}I*0+Cz_Mi`r=u*<^PZD0p*gr*iS3Qw#7?l#<~E5s~4t;h%>
z+$oO3i&T_WpcYnVu*lchi>wxt#iE!!bG#kzjIF<LQv0?E-PesO@fZ7xmz9iuWAu|3
zUjMrd=^g!Fz4{lU|I&`I87urHks0Z;=G^n6O&xEK@pO4lpNSRFihC!e7aDFZttcB2
z3@r9X-Q3(1DE7CGn(_C4USHEw8(7d#?yroD_&xXD{D}7bV{HxP<(JMVUKpr(p!U+=
z9sJ&evE$}6Sys%)<pH*0b4aPV4;?_ABJMbVL;$*lmZKAN<_+7HxW54NhyI}iov<Kw
zuLAu-eIuHO(?9yvSv27=w*oMg@D}-2EL~EX7+*QpynOa`+6SjKRm&AcZevS(bIF2I
zyU|@;6bm`za{K5>qb)`s?|OclRAnzUyW5*Py!P@srDXI}&s2lVYf2ZCG`F`H-9;60
zb<=6weckNk=DC&Q6QxU*uJ9FkaT>}qb##eRS8n%qG`G9WrS>Xm+w)!AXSASfd%5fg
z#fqxk(5L9@fM};~Gk^Sgb;7|krF-an$kIROPt4HLqq6+EL+62d@~4Hsy9nIU?=Ue4
zJ69;q+5+73nU|TQu}$>#v(M&Vx1RD=6Lu`d?>zHN?P7J&XWwsvwJt|rr?CZu+l>m4
zTi^VLh6Uu2s392u(5DLaM%)Dr$%h3hRB>V7a9XG`B{ZsWgh4IyTO9R~TAR^h^~>ko
z(k|Hy#@bP}7OyN92TKE%qNZfyWL32p-BJf1{jj0QU0V`yj=tRospvSewxGxoC=C|N
zve$zAMuSaiyY)QTk9!VmwUK&<#b2fxMl_DX|5x$dKH3>6sdYCQ9@c)^A-Rn<Rh`_J
zlt&lRB~G?jhWS|EX+K`5L9k`6=#nb!W7EW?%ai>9vG?s)0)lCR76kgoR>S;B=kl(v
zzM}o+G41dh)%9=ezv$7*a9Mrb+S@13nK-B6D!%vy(}5dzbg$`-UUZJKa`_Z{*$rCu
zga2G}o3dTHW|>+P_>c8UOm4Vk-ojaTeAg0-+<4#u-{>pGTYz(%ojZ`0e*nHo=)XZS
zpp=$zi4|RBMGJDX{Db?>>fq71rX3t$122E;cJ(9elj+kBXs>3?(tq=s*PeL^<(M$8
zUl;u9e6|EP5Us-A>Lzvr+ln|?*}wt;+gUmd>%?@Wl@m%Qm{>Q0JqTcxtB`ROhd6TB
z$VY<7t$^N6IC(s*<w33DF&yc0dj^+WeG%4|-2BQb-dJ|q62>Z@x2?Gi%eB8%(hYaC
zKfY5M<cZOXmrbZWEjps?;&|+w7tV1eFE1MrJ*_siZ1L#0#n&`(LclZD>-9MeR-@5h
zZ?V`qr%%FlPQlW5v_Bp^Q?^)S*<!9Xnk@#nh}mp1o88SOEB+m*%{oDLLdJDWayebj
zF_P1%goGu~ua9Y$&Q^=v^6lf6jW86qp0@eS4GR`uX09nN4hD-tBg~gAUa;ZJ8|Jna
z8zPe|mipRIjUt=vcHH^U9tgxn+Hm(pY=z=3R%i3uj{TZ1>%Y#Z$|{!Lpju=$s702T
z(P}foXu(uuHN!cJRK*W-8=F*QlYB*zT#WI-SmQ_VYEgKw+>wHhm`ECQS`r3VKw`wi
zxlcnn26L<!RA|D|NB?I8;L63FJ8~v}K7sD;$+XuL+<N#lUCD#$fb`H4r?HkfVB<kr
z;(F9QtS+CxIxw-24Zzi6CHA+pfsJf|GxQQ~rvIxEo5uj_8Jp)*Ji9qdbCkPu;?S{L
z1o!sZJjbvRCUxVYC=aekOVe%v0YWg)|4SMNPhKaD1BlcIKrK)np@qZ^L7+8mbudO^
zk)b#%tQ_22KM*Xfl|1h9n@S>*U;F-BC9u{Csy#e%+2uD$He5?mc55)ot>1w`?lr$J
zsrI^qGB@!5dglADaHlvWto@|S>kF5>#i#hCNXbp*ZkO$*%P-Sjf3Vc+tuFaJ-^|Ou
zW8=}1TOlafUitnrTA2D0<3}&zZz^%y5+t2`Tk`vBI93FqU`W!zY;M%AUoN1V1-I2I
zPTVFqaw3Pr-`5HcEFWuD?!8Ybw)Y>g7c0tt=soTHiEBxlY;RlQ`iYY-qdd94zWjyD
zFcskM^S{_!E?f3mEh9waR7tb6G&yl%GW%e&Sc5i;y@N)U5ZFLcAsma^K?Cg^%d{PO
z=SHQq4a|<d>l`AakzEY;A{n6Rn1u`7v~#ufV<svwufaWPWUTy=#~N`~t5mkQHi<fW
z`FA<Y1Jl}-+ID`GoTfY9u${~ohdoPI#lsU?#@1GhX)dh`T;Fl!{L5OGP6ViAJJBDJ
zpV59(s~y2U9&jfGy;BDCu?YA(0fISrdk`{^7k>*6GZ$`Ef)d2%6apsU6^>QJl0@U&
zq|wIBlBAgf0j!YaozAgmhAy0uy;AjRA2%(!`<c5JH7OZ1B!vm4rC_yi#=>#&e>`V`
zg`MfSf5gWvJY#?8%&|`Aj0<@aZ;-q#tCx=-zkGE|_C4)TqKjr-SE6po?cX?Z^B%62
zdA!75;$my<*q)n@eB<^dfFGwRaWB25UL#~PNEV>F^c+e2Be*Df(-rIVB<p_t*#`AH
zc;HqtB-Eb)2q$!amvSS&+P%HPVy$^LX{{`;eWuA$Yc*DSZ@Q_huGZ4@Ol^6kHTi6f
z)l#v2SgP9cn{FzvJwA<;9+pk=Q?{bop~CCRjxV~_Vy(RS=87WAacOi}RN$2n`jVBy
z^{K+DkdDvjzq*1DbPuc1pgxtv0iuigUWFeWRH#nH1!2Tz!W@wXmBa>Jo2o*an$1*1
zD$bsU<F&S$>C-BvObdmkKlhW<59G9{d=@bAu8a05VWCO=@_~oP=G3SmO91AK_F`#5
zwXLRV<oMV%5Bd3(h00X#=;XZmN#kyA@TE>ay<~JYok|rdQM-~C?dcq?Yfz_*)fIte
zkE_g4CeLj1oza=9zH!s!4k%H@-n{6aB&Z;Cs8MK?#Jxl`?wD>^{fTL&eQHAQFtJ_%
zNEfs|gGYh+39S{-@#MrPA!XpgWD;NLlne0-Vey1n0<q$-*MVI^cPLanp`)hUq)e}|
z7juu>?=ww18{L)7G|$1kjI(sjs<Lds{1=|%D}}i9=&YpHJNDt{uDfMF=i}tCvhSk1
z_N?Sr`X9O`HhyGPjjeiuRBSKx6$dOll$@28(#6enVY7OA$`8RH91Dz_R6j2{+B+L&
zz(TPanmNN+96IxiR7w}e=-SNWtg%zRx<l={!0#K~x#yw__jF9&bYpd@^9*0xOd0*>
z@|a<tA^Ht;SLo>lUMcx*04*>=BWHv_W-t=rCAy0q6&*<vg?_<Mk?9T;qojT!H54tn
zjcQJE0gFXPL4i}{Ab#X)g(-*L3C9g{qGk3lO!z;%y$4`h<+(qs_YCcQv@Cf@mL)k}
zNxbC5j-$lRUd~QPNKAGdMiK}KWFR1{Kp_MOlodm1fl>;kW&ImkwWTe$lzHJRZJ{-{
zl-mK6+j}V`wobm^^B&2Tl?1r=yWbz;v-F<#y!(CT?-4K(($wWtmD6<j=8=JM78lKn
z9fjlZOoMjWml&PHLwQvDG((TE9g7Z#cWwm0Wj{3E?2<NugeKbCX_Ln>31MN9?trDG
zMI7;9U7|UsC;urLP%eH1h%U`LJxT3oM4=gpi%X@lpVR9N6Q(uhJ00RWXeL-Z*V(O8
zsIyyVUvf=RXLBKX`!peifjIMvMs1YT0n$0*B;K^yZf&HN8$N%e=EgOejqihLPBT|<
zs)z`nNU}BOdT7wYLy}R10eXUksn9o)jG<NYa|-+p5j)^0ybo8gK3wABIrb0o2pu+4
z2ecT>)&=qteGc|XNI~h5R6UBfaPeIHbA32@*>orZsCB4`Q79}A<ha)q;YIYpFEUx^
zaVX0?Z>=z@najfekt-_eTg7a}Mcas^D1ELl<oB8@C{n9M4tgW}W3F5YY*Z*0FBmn}
zuvaY)&M>N6(y28c{ur|tmueFvIDOQxXs1)_lKrA`L2-^^VNC#miFvO%l6w5uK2b<E
zsxRS3%DZ8>Fyu?hyNLCjTCNRRVW^i+GX``giwc&TpV~OHu(yN&o)r2$K$1kjh@>iP
z^&`?sCk#?xdFX+ilAb(;I7<$BQ#6j*jKsu%LEhQKe=>ki^ZICepr3#_2#pE`32i4Z
zu%eXsgL)3x3Q-^OPPRhm<^!TEPoek6?O^j+qLQ*~#TBw4Aq~M2>U{>{jfojVPADAi
zurKpW{7Ii5yqy6_1iXw3$aa!GLn|$~cnvQnv7{LMIFn!&d6K=3kH8+e90<Z&?075z
z1r_Q*zeWit1|lMnj<hnhBCDkKn;(q04?fKL1js!s(I_kx2CW46P*4v*nxWEAq3IV|
z?)g*Z<FSyUK9noj98da^{Nq^lsGOZJmS)W@c!8P+C2C9pGBDaoui|U`)Jkd{ECFad
zh?~(ybdHOyBsRbubpmi70eu6@qz1_S&<k-Sup<;JGoU0?7nBT`kocElgoj7E*ey8p
zf()Iv(;lyM34RDlM8Rrdde~%}%>Zq5K%6YfdLv}ZdQmTk7SZ7}>rJ9TW)6>NY{uEZ
zY^9PI1UqUFm|h0Vqe60Ny<Ali(d!LXQ2?Ng)gVS4vQ09X71=JDtR_jaI*exKavGUQ
zhUmD|tb`09Ac$JbHUUQ9HZ#5`%SO=<HcJ7QEJ;j+QFy~R_!~KeN~3Jo8&DyGAUW(t
zr~b%F17HlnnCn@sBEUx631K*7(@YRuHd_QGcU$pEqu_^TpNS<vW0mwm&>=wCFBtKb
zXtqOa3M?2OEN=zDX7z}2$Y{2@WJjr?N`au<Ajm-(2?4uW;f9P`kW2z#jy;0xlSLca
zNnj?uV1bZ`k;=c)0NgMb6Ig+iiNd29nW0wiFvx-&5KCkcHIvN(gx*HrH!|ihz@N?T
zlDvqb%h22=_(sVltI;4=hz3EFe1c09-8QpRw3<Yh;PAPgd--Nj5#6vcFgZoRELrph
z>MDVG9kSH~FjfJRNfsR@yJQp4cQ8zaFkT4>5XQqSVt5c}`-A#Z=3-_mGZ^)Hqayei
zhJ}wgZ5UDln%)!;Wz@u=m(6C_P@r9*IMPe7Db`CSqad3ky-5-EcG=*v8J&{RtLJ(E
zw2h-ghGYcDtqj4Z^nU7ChgEXO0kox=oGaY;0EPqeW89T6htbZg4z!uU1hi;omVj+3
z0B%$+k$`oH5*SeoG`Ay&BAA%nAUjQxsMlNdq8%;SbEAPVC#qm!r7j75W=A)&a6)3%
zdQq$fCN;@RqI!KPf<D>l9l=vmBFSFpD1cAxb@~K-$ZIlIL3W}?#3+|2p{|vZVq`YA
zMbx|Xl57kJVwoetAo+opiewCkCIO=uBLEaG+!0U$MRdReNsx>+PIJWN6dW)pfeZ(u
zQ8ei-Ht69)ZV`qv=vmorhOkF)Squ;)8AUfh<7A_xI8FGHMRW>~%o`1Wt3|8IMrM%&
z8)|@=#ssro9=f9HtN0F#O085{Bf6PJnurfzS_yg?qqszmnQIYDP{N=xqPfvl;VN<X
zBtysuidNKlPkQwSxNO8ro{)JGpCejxE8`^OaIj}3iwQu?gHDAbCxVheQH5)!kygSt
zv&+awwGSrR4<~LH-u93E>sK^qpoy2&App~Fe<a_!*W_?%#5a2n$z$h|7pw5_y4%?e
ziLR?3)Pzcra!aM<;el=9su_?-646cK4wO&x;|PILf>(MB7KCI)$p1!&YEB&%$9gTk
zmvlt?t7!>_paNt_fYJvw^~LCqX{4opLy!n)md7}<_s?`gytfSAdoScQWTy&Tbr&~(
zg9myGVv)l|4-umFBL0)Y(d}Rvt11)(O4ij#zeao~K$vh~JDn0_@3RjP2M0|79T&9+
z?>Vx&M30Sb15&<{RtpeYUf|n7n5GHyc+-FtA=7H$p6Mh=&M0O!so)tze7#WT>pp|x
zfWae>0++DfscU2%>|@oiCQj+6O827)1}KsN^a><x=wCzi9Fge*mxaUxIYx)13FH|B
zMp5H>NSI*4?#ylfG-{q?3MMXX$dUH^S6Ni=Ve1d0(janpz@WqGJ?cG&sewpq294Qa
zL{huwuoARdt5F4Dbh#?<2ruzSS{VeDAOtY+52t^xJW=!(0f3P&G3Cs^%~Q~~Wq{YA
z!QrEk#>oXK{sc&Z7VB1_>fA1^#YyU1Ff<^9G(!V0!JW`n@EDdj$$2SVK6*7$!BvXP
zmAC;h-W75(Nnzpro3CE9eV=~Lp7yS(vXnk@$<WbDju^b**6AB3nWy$#eeKmfQ_Yh$
zPHzo+4MQ3(pSUb%9V<q*FS>g3{R`!(UG013==W*Hj{-*F!ujl+np%IX?E0*I&-K^u
zY1z1I!`iOu+Ll`UtL|F6Vb?~vk=x9w6}eE^*<<q;?v;04Ul#M%*04VQBMm?DQ#-8R
z4ja=5yhXO66^La4D_jmP4_(_JlBqNYDFNk@`w>)O?pZQ#8YKE#b($x>w$3E*F0Kfk
zfnyCo#zOpX1(P2yeHG@f<zm>P7}}~GB|&S27%6=@G^V=rmeTB$(w9rC6J@uQmcAMq
zQ=Ce?Z0RkF_gu30<;5#jEW32il2?}$-6PZ?au16Y)?kUFy3L?ia1A@%S3<!frNW<Z
zQ5rf@nn0pZ#pp!YcRyZyWbx8h7Vp`+Y{d%XJo=XA1?FlRYgY(u#5sScFu0*BmQji7
zMsg%X%1Xa`Y%qi6^2Un<APnBiSo`$ezN2F<e~6`zy$grRgTHMpbwG3e_>G-M`{qn8
ze+|6jh0vqfkhdSb0MvIr!;;*AL}QX^gkc+q0RJ4i9IyOo+qAyHbl<c#_9^C%X0HO_
zzWRasvG9WWu_wJ^<z<(x6ie7m+8V9y=vEiAM=N6NCUr-QS4GFT%{MJT^P%PG)9uk+
zt-Ap~<uLz&|4#Bnn%$V=AkIO9(hZL|f!dN)FQ`^}MC5BLmOxTGVts&gG1uw1kwNFi
zNl=HK2Kpz^(sXA>I+$VuZ3UT7&iIG7640a)fe&>NOVU@xZ*YE`oy!JGMY%j}bGq!=
z`R5xY(8TK&AH4b6WoKCo>lPh6vbfu1yYy0<seAE}gNxP~<T15Nue<r+;&le3G@dU!
zVRt!g>2g^t9bDbexN!A`*$M5`u&}WqF?+*m?ZoW85&MFmXqQ1J{i;_Oz>3*#0?lWa
zf?{tv`_JzP7D3x2gX&ICRn(aR$#>;ciH#pO?<*}!<}cYh_r{hb6*kkXSteV>l9n6i
zwx63=u%!9MdE>@2X)3$YXh=DuRh~mN2b<cf=#Xu1I#^T14?_P$OO?ksHYhql7O_8v
zg;YvixTDu7NO1QGs+knK<B*6=1Dg=mFIvVbfJPC6pBExaFfK~Tt<Bm3jc^~(qjMQc
zYZI_OfJLd$CPJf^?<K=GdcOXXMkqT#5g{0bgdntm?vAwjCac93i{taGLroLXfS{`u
z-_kB6JkTHoSU4AZ0xu&E^_l87)i;Gl)Hl@!5JRt@+{+OWM_1iD^iL_R-C?vbAjKb)
z_sRQ6|3ThU7;c)>QFEH&_nHWfU{q+4<w4yb%;Zj0qteU!?%j3GhM`Y)ynXE63x%`I
zlbkkl_WlK%`i{&MjguFpmQ2omKUi57FJX7WAlzzJH%;CNDZMal!|l87-5?q-y!+Vi
zc4Y52Tb+~4!rFO9`?k&<`gHP=)S}74v_QNp98x#ow@x#=6Vm*h$ZQ?$;W-_+h`Bpn
zH%*K2!C=D&z*TU7!vqZ?^yEceBccS&2esJe&QDZYTGYXxC7t$|)qgjSb7&g5G@4sP
zHvzzM819*(u;*fv_9OHM3zSw9Ata{l<ISwZ?8!U!59+8#(Mh@j?T#{perc<gk!N+O
z`lr%f-Y5AwInY7F70{L<{V4T1>=t07pt+Jfj90Or;6JX{BCQrE8bZe&wi3fwEXHRp
zz8{VAmxsWU)3nT;;77X7@GCm7_fL1p_xKEG&6G~luO;Bc3ZIa?2b(*uH7qJ!es71c
z{Buj4(;Jds$o78u<3df_2~DLq`e9*$SGmrR9p<NOKaBabz7+pZ{Dh4lYirHwpm{HU
z3hd(!-CV5N=j!%hIpDK~3twBB4GBmeS|AzWfvm6}DPEG|lUoxlypTiijSA8Y1hy)w
zB;2lAnwp8))Eg48P%ZwwxU1Oy^A`3^oiKhvS?$)KaeS5HoZ{?b^VT+X2<lP&*r`*;
zmX$O_mj>2OoVB5Q(KL3M{1>eq+;+lHK9N?xvyBPHni<#j$sZK{QrKEcdR9+eQD0V?
zGPaq!#<-c#a>t4bt+R#Hu_|}dlIGeve@SR!d((u)Ga45+BuhHfA88G0cPrw>>(`ID
zZ;aIyn|qmhuDXBthoW{J(WN+`Yud=y(wvd0rm&1*4<oZAz!P8_BUcs&>>6?#8&)Fz
z&@V=a0w4)F{^!&W_l6<5xg|-0F!~>aCALbeVsZTd*)M*^tr*!)O8w)mzKThWyQW@X
zw%BFs5_@CIic5EPcTJu8=CmynV;``)3}gJ`Vl#VY_3Yib@P-KvBk_%!9OVu<T3_4Q
zJ}Wh6Uj5jGl>#8tG|Nc4I~A>8ch-~X%M@!>yk~ERI|QEcwzgI66IaaY>gx0~lm<@f
z5-k^OY#SGC80Yr-tDRP(-FEJ{@_4LHsGJ=)PKZ@`eW75-r0ylN%0Q>&*M;@uZLdJ$
z)rw7Dt5ajr;P;~1P>jID!><(7R;w|Yf}qI&8klT?1dTfc@us5mKEe;qw;YKR(cp-D
z6NmUMP8x7cM%~ytE@l*Mp^oN*mCF`gRNhw3gpO1PVi_^JzCJo>#mX(q+iJ(Ts$5=!
z13b4<S-Zh5EO}|}9`O40iCKDwXte9Sh|o8C&bIT8Jh*Fj$0VQARU$8Q+egBv%Mn3X
z!Qcx59^alanM&*z+Y<Ues(;!yzdbUx)E%iRZJRjj?gi^^S=Qd=jY1Hx%nT_;+-3+^
znMLmi8mcXddd*MHo7*sD;)HOdVeFi_yL;|o^NyEPowy?3H!$HRn;jju;n3DfLNQpY
zqxhdU>5gILEULS!=)SmZ{<rUozc<?661*oo@wI@|+#<T*dh{>qsC1)$8-4eADGR?v
z>~4k_SvdvPHAC}=4(!I^OLgQ@9EMDE7d$PvJbi+K%-H<G2&1&Ug-+g;!=q5Z4@4oy
z0Kx|tUslEKy@~N5qtgl&^V3QJCBYfa(l=Oa8&KA2+$T;zZ}2m>Th`P0#Ea|Jm6zj>
z?R)<Djt=~Zzso(z-kZA+zt7)&vz6Y(tF82|`)4=v_sZ9)L;Sst=d){aPlWQ^1%{oJ
zi(g9gzf%{`%^Q&xF~Wi-7H`-s2S7+tJgON)@FNH^jqwAO(+Q(4a<$<K<6&oS^_MJt
zug&xmldPHcv$;ma9<e4wvW_55HYFyk5xZgpyU$>(YWtZoIRx>AqzlG1UjT@6ba>yE
z{Wf<5moh^-hu;ptAtPG}`h$4PWcOn>vy`#bH#Ss>OoAEE1gIbQwH#eG8+RHG0~TJ$
z>`C`c7KyM^gqsVNDXxT|1s;nTR&cCg6kd<-msrdE5Ofk=1BGDMlP2!93%0c@rg~4`
zq)UFVW%s|`xb>;aR@L^*D>nkSLGNmM?cv)WzHZy3*>+<LzK@;DO4hrim(_e!_Jv%d
z6Fz%J<#!SjuKW1t&KC|$?A?EL*Oq(3*05n5<oc7&y8YJ=T=~t9mQRZAT3OLJb?4Gq
z<JC3Ox2<CP{tRm|3f4YSHz0Kk)BX9{xwYV6xysQ~=ny`qa$Gfwx@-Q!+1jOkQ=NBf
z$CH1YzW1rVEl=)0t9HRWn^!W+dROBs58n3RHGLgaIbX~8NlOFk0<NbEeT*+%QTbS+
zjV1nV$vv0Mn$WxVs;Qgq4$EeHoy)Iut~mPU{g*%V!SasEUCS%RPua0}=6H48hC7EH
zk@-H%b*K~}o1*GACtx_ngO^d~_>*xAJSX;>))*XRT0r9<#zIpug(}{rSC9T$42@gb
zy8eb6)~}wl<=or)2L}4T{vum>-g)QaKjtnp5fyd^;|BxHt<f7_xUqfX29mzKzMGPr
zFI+W>x~2W^YbKq1HfB7@>Hw@U5)?b^H=uNOpli?w6O#~V`eG;`irLcC(&Uxz`L_Cl
zS8r24e*U71o@dV6Soupo-}Ttu*Dk&EwY`h4KdY-k55DSqR&o7nufO)%>%s-Es^5Q_
z60#cReEy=$4|nW)bLh=|4bxW4j}A?qOle+wjn88oAeYb~!eA+EQ;8Ggp-UldAt$3M
z7*E590amz>YB9L(z?Xx&?I37XYw?Os-t+05x6Z4vkzBE6-hrbB=GAB?p{DQXV4CKg
zls@_wh*&XC<3R(CEZxg8*Y(6a>cIOq9Nss7{=UQ7Nv%O_WxSyBqnH{@(<>A&2on@z
zn57W4Dh*E)o#rJ2#tyxV2;C5#rl8%%As$4qB=IbMt-z|jnWi>>7Ymq37;AW!6Y4nx
z1Ogx#!WVdA92mEipgUxzy_?ddg|x)KOCyK)P5v@usc;0sN3{=0slt4CuwaxK@20eO
zhdp~Z8iJ7GWrkq_-X`~(eBpthn9|`tZEUCIG<FXgMLh*(G&pfz3`a<Ki+iFUHjfBn
za2~?J_QLeBaKDq%gZ)6pk$MNyiuBTm!Q>iFpJjjxPVE9I)#z3Q$3tw`a69qxjuf+~
z*?v>d5~pcH-AQ~0)8PyIjumD^?SM8!<YujmU(k2xcdb41eaGof@IN|TkkCj*=Dp7k
zzhR+W;JWWvD?x|pV5R~OT8J;>Wb>KZoD7hOlc2nA0_(eG!i<ZX7;CzC#)NOOnG<T)
z%~G#jZJts)34rm;-#V#wig}g#&C1U67tfP3Q`U+Thu$ZWLky0O|6_g4*zx1X*6jUV
zf-PHcxJeyM8OD}Xx!qM|V-2Yf12wlyp1)-c@AJp8o}G&;2WSM87$*7@|BstjLE%DD
z7+TZFnkeFS!ZgGirKoZ~cDDKyTgx^t5f*LO{EZFLP3qGNmrY*kwWv>n>}Ru}>6)>5
z@*}T`Hw{I^-?PS9>(<Shea<;U?_^&P+*@}~YbtNb{)*kiJ{~vjaClr>#UFBQpW72*
zsfj(2+_9@5x+57aN!`e`f(Mp_I(D>}p8)<OpI&$A%j$b~e@p$vc?M>@&g^g+X1%d{
z%X5boE<E(ymUZ8oeqDh?|B7u)x#ezF`m$IG7~A(=zVzmU<`Ux}lVD!E1<7B<TQjB}
zDv;b?zVQNp*Fr!99oApvx5%a~lE-!>?hEoj0CiwTh9)#8^?~;|wgor_=Z1BI9_dI{
z&t*f95n?ZgZ5CnQa!v(p|JT?y0%KKgi`Smi9k5r!+!Mkz=&Z$%CFl;?AOzV`YBKrY
z0#Y6~J6&dA=m>T@TYb8ukaV4z^Z?V<l9Xy&tR;4CEXGJPR?F}$JJbTm&uNY$Z;Q`l
zA~9RF4PUi{@O|hTC9i<b;9I9AMX64c^uS47E$WgWDh~7xpBp6apy;in*&vIzoIO_l
z%#_v!Xgc82N%kHf4&r$&VLnCPB91xHe&j#p%13@@WOqBKk6E<SryKR5#s<U2jx|nC
z&z*-n&N^Wo|0Vk(KMA>X*MCKcp13-ye1*`gAj_Tm@r{fpm?K!U@Xg2AfndEo6jZN}
z=XK0GRNXVLW2c?}B)rH^yR>u}b?|p(W$!TkQ<TY#AFJP^aZT$28UX8pkM=)U#1Ick
zkn{$OZQ@U>TAgu1AIG>MFfNchMQB_^-AQxRE$Th5-E_tBP@v(Cy|ojjP5LEU|JrM8
zVF5;$><F9!()BUBoBfI1Ev11Nu>Hl^jlHWDPChrTH(vh%bARyj5#TPb>omAs-)4zN
z9?9(wybd0$Z5s+}F<gh{I7;dJ925oi`S=N-ZN-&{uKtgE`g+faR+iSa%%AgBX1?d1
z?7f7WaQq9<737Iu3RU4oDZS;1O^fbmYg^(`D$MpRPyF(UKVA317eFlx{_~4b7WVFW
z4eJ9tsT22MAB|u=g&r1D9P4{hA#ZpnClm;{NaF1=h%u}U;x4x(`<|^#GP_*TPt`uj
z=(f4#e~|)CHd6`8kFXn{pBI1O2@LKn5#&;*SiO;19075H-Cg1`n$_{^Fu1U1<?wNq
z7VbI(zC?}<g@X4pJ|oJeB~NN|kv!>iytv}-8U`IC<{6U2_NqEAkv;7lys5Qcq3EKt
z0-!^Xy3idllgZ~qX^QTe=i*oGUCJNk>Y26?+9U(Ks|C81S{-v+6ebc`c(yibQbuB%
zxM7mk>}dI-TfUi5Jqdu6b`4SqF)y5humuCaHhssdcR(jKf5ZGprx;Oe7VG#G6TA1+
z8oZLl<+ey(L+$Qsck^4fi{I|)p15MX73gHFUU!l${lN{)Ht_Wb%j#<CYLJugeD?U3
zJMP#*v}NP``He!iC2mv94Gpt9%vE}qOJ8N~m|b|?&|p?<vhXx>UE6cZ9}Wq^>+1wz
z9TBA@%f~tby^0YWafmn&8Ppjn1Ng{d;S01WImtMzV<`!zU7;+8e-Xko>qM^OfOZ`Y
zEZG#vcm>EGF??&G6+v(3l`X(xMn8ESv=@LdMfdcxFi%g1?0HDPG>blldR`OLlWN80
zz<$t+MM9%1K~JT@#aBZjOu9*G{W$u7cqTM|&a1)0wR8R^*r$<&AhuCq1Z{-aUhc5P
zdyaaK{$P=Y6R{40FrWmLbDOCijqB(1PrKlnL)Tm|t=l}toVLAZOXJ*~-dx|_A&o65
zskcpT@bs+d@ia`f)t8ivl{(t%H?O?;=^s3O^GXqopx7E3kz06f^UQq<>gyNmo4Ij;
zrOxuzn{WOqP75~PwPXC;3mZ#YW1&#2xy&DEXsl~)u4`-v_{*B<S!-$Ig>%R6xNH3*
zJElz8@d#i4`#JV(ko%x;u{LMqLEEDmwD*(ccB9Wp;u*9I?=sC7g>%L{%$4m#zhbjm
z)gK{LWQvE1>_yl|4T$nYKNVZ<)vza7FKU5*W~4)KNgN@;SA<9&ERxIfA&UZnB=r%N
z5YD4fY$9Mkzy}!G+`KU<CJfhQQGh_2W0A_!>y>3l(FS<N0~Cz1mx58QH4Axd^9>i1
zw)t)*w$E4#ZSxfm3cZLC(o3aQQ7uHk>_@fMTHoM0=quh%mfN6%{`O($pyzg0kPf=2
zjA%M7bRl4BhV5{{d4HbnTh`HM&<gjN3kv%=W$Z`e^_r00Y6SpwKb4mCD(Z)4C?tx=
z`KX-#*9u+lh(<?iI~uNH65?WVcc7IES~!dVUpR>YKw@N~47e7NFGr*9<B4Xn!7P`C
z4LdYduN2qJHY~A;Te^J{r$gs6V?xP6HvM2p-_bDKd%_S{@$<BH$g<4FZpiB`Y9?pK
z0nj}xQ~NJDbm)@q14l1h<!J7H(X(L^FvWT%ZScI<S+QkHMQ7@0-^#KYn&mZRD+x7Y
z<gR;nrFlw4bB*Fyb>Yzi(7XQl-FJb4hPEKOC!K2x$nWy>8=PJYE)T$=Cqe(n*ChZE
zklF{Ms}h0Jd|@o;Gz(~b;9d&c#0O^j{1?tF5dtMj9dG`|j0qZi^aF1r{<7KC5hZ`E
zNX2nxJYEr@>u86|tPjTDet;fLn1R+IOm6&3b*}TOyN<p4?y-ZOw+?eijq)nceQx!9
zF1<VA#!XeZ0HYw?;kP^o`NQkI>pIaid@W9c9!jIfiJOgK-aw=xb5Kpb)`E9x%CU82
zEQg_v`e+tWYClJHl=_EsSW?LZO3)o#ox(#2UW9|V7I8fYnz5fRtph`u)dywWL9}UV
z*hdU9-BBK5G&}j~O6&dSdWDIpFX;&Or5wNbm^Y+A-x6(K$$Of6JTVl9n0gFY&=T5p
zZX?pCxA&w{J)eDSfb?Zh*LT#AdiPlB;A%p<Bq7W(aa{j)HJ#0%)g=?gRG9EDg#n7r
zMdJ!BkA1LSHx=!UeGUUkV_RL?km58Crwq7P90nCp33RRX1Z{{!1>|-`Aw6RP2mYTh
zLmL~zM^VS0V@*4LkOEG~nQR)<V(1f^1fm5Kg+gLui1gBt^%q}%mf;vP*kr}<!Q*k-
zya`(hCk0Xh4Fh*E>HyRB+;*KWli%QqKt&%16HWyMXRhtwdCgyoTm*5#itgp(Wap66
zyr-dgKgjl&t?JLMuw}!Boz)TOa2|37p^FAcPmxX0apWmfp$B1WF_@-dsK+?1F6~yY
zEwi!-))Q_CbOP%?p%bx|=d^nLBig-_$e!nh19^Ps`s{SNq{nnW)V-qnz3y+Ipd7HS
zsb}z<Esk5=f)PZb3ECG4Ig2px3-625(}?@L-;2{1-~Zo!|BJp?Twmxx@PBTJIR%Re
z(MX3;x<{^v+Dp+kh69X1hp)wg>%!+}y8izoy>Nyyj4m_br&8TGFcze#gP4?v*NEdl
zzGBLM4qpvdu;5vC<mb=7`rk^Zp6)XvB|C8ofsPJn1YCh>Fi9^zXU;sW`>pPi|NFD#
ze=<sQOFyXEk?~r>$xI@7q9B4WPsw4CAO~UJ(S)s@u41E>#9<Bwg!2FX=>D>!?<Ced
z73<(hU49huS%eXpA9UI!*?DVYlclgqX21of{@2Fn7mTQ(TcmWD7VPj~nvW|nqnT9o
z_Hu$dLq~pHKQes?&k9u=h=b@z<!}@<-D?LS1LdV~=))-4T^jP_oWi>=*N5m$%^0E`
z<0RjkAj<jntkEX?s8M(5QB5~HybXimn$xGg2;HpR_!D@+==g&dL9KHY`T*@S!<X=g
z4rcQD+B7W#LFH#kD%h`SarmoqNKGpkequFeALTMSL>02TN9RLX3Js+GArg=Nu>E5z
zPa!vMuMV06#7$1dLbwv+VGT(5V_&A~Uy3T^+|y~Q2>lA|=hZZ)ex%G`rhkN54C5gq
z>w?qN=A+LgB0-@s{OJs7Da|z%dK)uDH4?m5Y=K(N5KWL)uqDxwBt>QmOk(h~1u6_s
z>9x>G_+@bJhBQ;(Rr?20>Tjn}^Y`|rQvI3Ua5$aGq{HFf4BhwAFVk2oHNbk)hmAri
zjQ_!g*-c^AKM>A@je&H)i1PsJ5929F<8bLXvONK<o3lUBL*4;8FM<`KiLAf~s-eY|
zNJf$okV!)Nq;5_N^iCk1kG-1;vw^Uf38%>4;-n6d;Zm7Q=G|k6Fp*AY!b1a`eoS*c
zF413z6`x;!NZV1k5)sv<jba+WM9JofGjJc|L8)pdeoYe|k4D4$WS}2J^(h1fok?X!
zE)Z%4XYv1x(%$CyrIB)JBAwwP4O<!IiiE;x6RWsfYDOy?eFNXpN`=plE}4)*S+r6W
zzaUH;T`&Q3_B`=Fr6y2uV~C^0^dDAB@;H4aCY|n~aG|*ou!U*^{LNm+MWflQ?q=7q
zL#KWGC{Mr>;-Dqjt?t&|JLNGSA2yWhU-RYC^oiWI1+idw;6*>m1&Io`^iPgF6c$sN
zw9j3KFYs@%*HNz1Jr?F^RiLV%@DyQ^Dnc1h&59pWKhD#AMQV~3k7}>c@gdw=dyRf5
zHGNU7bA_hHWUnI-9SXt<YCy$e7oYYqZ?Ac}M^UZ|wQ`N<U!h>jM~LT<QF!MTJVd$9
zSl!dKf`Fc+mMQFWv=bHVG>>U5!uS#{<o!rmVUrdOvS5f|Ako0d4T|BcMYMo=njwO^
zGEh(RgvG;oe(6DQrrzdx&SN&INu+*7Ir%L3avjLdJ5!%9-8@#0JgHBp?zx%uB^qC>
zKSOhB>l^nUa&S8kEFoAUIDG}(Lr#|uJCGb%29Xr>1S4yk0d)9hoJ7#4xNbi?5Dt?N
zBp45evje1L)<Z`vghl*}Fd&pvoJS^Tv4xXtwCLD7dg5ykS^`N?DIMh2T)s%L%gB=+
zYcANh{8GyKUaYU&lMD}eS&0PX3oeL3xe?Hfm7XTnPoL(wP95wAN+|#QAU-em_G_?B
z{o;0~vmZXE(4z||kcNIM_Kpa+m7&GGMCbHkm!e`pc7Xz>A;&Smy9J8MJe@<k!l|t`
zQtX_c1^Y&>1#HwBFoYPv$=k%GOaq!kd58)tzBI~EkGG3Rqy>GOTce-p>jH0rb~c(K
z1|9q=$3)Vdgcwyvy&>S3p(f~O;~?XK{)Kch&2!gs=%kNH#-Ee-i}S+a@DNWR(Xnv<
zv7kIUUD(c?<t&Uq)Lc0kt^(j9G<@Q%>RS|JmPeXBC6cbxUl6qRxl;fFAiK%!>EzFa
zJ$-mz?G%WqC+P-l!DLX&nfxzGAnLaFsOg^Vq~gaW2QQ<(qixj#J=;Y{m`?kHkfO)i
zdxQ*`2Jr3iXdj4QE%|AlQ;|<Cw_QLv^TG%)Eu3^19@P*teSQK_cS?!3_b?PpOrPNg
zDU(eVmzZAI-gAcMRBj_^`IJ5bd6Nm=goKJl^RGSUYd~ZagkpKGg8Z3e=p=q^^yQxv
zpS2Vudw@jKJ_msT=JW}ZIK`d4o}Z*F4;9ciXQ*S%!8L0RN*`;#z6b&A_I}}tgR3d(
z<LZMyL7W7{6j1-2Q|E%FNYCC#8P1s_{s+CfCi^w*$HUwKLEWjnd64P{IyPrBV!<6$
z==o8~Z6OPXpQzb3<}4kD?Gz!y<?(BoM})$O>Wx~pKrr7xu<l@1AcE8Eue`3NFwDSp
zmx&I<t93eDvK;MPx8tjKts5Z2EFA(c=_s(R@Gtkbu>NnTe=t-AO)iha6xDYpH}>yZ
z+FD^H2VS0x4us;Wo_95^kElZ$>j2HW@wyeLi3i%Q28NXxQT7V1{iHY}Llc~!Dkv8*
zM><6X$}-pv0N#?+N%W`5%}K0Is%8kCOC~LuR6+;gtHYPi9=dqUoin~Q<Br;k52e-}
zxq8t<i>^MhE;TSIe$6dEI=Xs(`oTlj_C-3c4K<znz_wfNzxCkO2evhZu4P+#mUMS7
z8GYEd=OM4f;(ch(iYw>T+wJvpu4Kkn_RZVg5jE+RF`XNx?0xmaV~bW?v}wVTXn4{5
zO&2X+*pF%!%qu@3SLRk-npU5?`f_cV9;|pa#ktlD9VuvRx;TK+fWUv_$vC8-@TcO4
zN_-D6?7|-4!VWMEgQ}TUe(c3w4{eyxe8C5t7pS0MFe;X@U&B?sVDIGR;u>?mPyb2F
zV5WLiQ2mX&1v=E#B`oe9yk4Y2^CFRk8*rV6<p~YyuWOHV4Q7S|KY_E$w4UX22xmuY
zE7aQp&S+f)+vfXTKUGt!$|J13W!l#|C#tu#OoO(7zZ*Wdx_^8_nA(-|tDKkc!0r-p
zIEj}+VF`c`Mm1zkg^G1T?wp_6c~C!{vq1>k1!uW{m47&7E!m%(ANz&+i<mJGEE#Jo
zx#pp3N{r(g1FD(NYXN*a{;@fm9{Erm`tXrWI5X+PN8T^Oeqb+Ma_g;^AOmF6vwnR~
zFaWEvSNQbi8O+J5^cuaM%LdE!8ui%A1@rdwb@Oo;KWrUv)+CDynmYfDx)}qF<8rkc
zTM`Tysjh1BzgM@WlCjQwwT#BGC8(-k`k&U#0u2En5J1b1YS19#^8YVirF1-)1&;^s
z+jLNk|MzO5DFxY+|E<F3=scXXU557eFCihx+jHdwN>xrB^ng(;#RLHnX%tfsjJWM-
zyBo5Of=eNl8*;gm`o<fXBX1wcyrDvK{Dzo*gJn*6hhE>zE0weGdP7~Iz5$$pI`$C5
z`U46T|8cnpt;J+VO?%~H_`Ph??bcn%Jzu`2`z~tc^<e+UI)xP&$n(S3h}kuKjWp;t
zq(Lp9T^N2|l;#Vc7k;bo8XAG&cR_IEuUn{03Tcc+h$jxoz|ziMC;p|K15W(Q-9eu`
z1cFiQb!LZu=gCHrkGjo2R&`o#0GQH#*HO0HDgV#X21sN+15zA<W#P!S^AsN!9J7Tt
z+O=BvD0h=PG3_TO&%mknQ!PGrlK<&Yn*QiRA|0vw2uBkIz<TaOe7t4oD^e$8O~BUa
zBAXL|;{||*8KpMNX$SM(afGbLEi|#IQosu`d(HdDVR27CeBGkS8y;Ho==+}>PoA?r
znJlfFuxIeRC?a>J?C!EC2Bn;dnhn3XeZ}<B)b#BWH>sbjb-10*a7A?aS00$P{m0wm
zO_v_`nJOwO*k6S$tHR@xmt`N`;fR%l>^^ZvbfRm}PUBtryK5pTwRdIZgj<#_irORP
zr7I?yj7m&+KkD(;PKtLXmF-s9=>`j_AFjI$YN7_w1g7hD(md1~ysZj9;u_Y4i3Ssz
zgRH~g_UH9AHR4A!67Z@2zch=Odh*4WzWc2=ekK0-ueW&=xy{z7Gz9CSbv}Pk+4ST#
z#ZxnW&!Z1tS0A}`@LT_*wh{sv=f-Dy+2cPoUi{nzYTGjx)eit9s#G5^D0+(|iNBlJ
zV$vUX35MrZ8K19VAN|i75_}Z#DO`R~MZQy~2$6gqOvN0Js%d70SzJm|ER&Jy5k>-I
z!fh9^fC*zr22w0EG6&Uqo`eqC7_L8gi(#?!A>;y86ak0F7|oHQIhmW!15hHkZ(*|o
zF+vd5r!A(imA-b0<VBdKUN8Broi>}qc4-&FS58}j>!?PW$SEg*;W8H~a^e%b?2`O8
z*`i%!x17FmIo=X;^83K2Y3Hja(b_rMns6%ts^>=(bA-9V<9O1I>564?R3a}v1yYtH
z*l6T7AY0T66-95WtZgaP8(}|MBGlfNdh@=~Y1m!IA7($BPUtE`qT@h@;M3Hd<i#;>
z;_dtQw^?1x7-WaPK4XDxuqd5+qVz|PQlALGw|x}&MFa4RtVSK`(e|RtFN=u%s&M?)
z7+HD3$diG_iYZuX{0ijc(*2C7cTX)p*3LRRtn3r@wq>%<@A9jY)yX*d<YnruVRt?I
z$Ge`gQt!J6+3gm(PBfc4*wmp(6%VoXQ(238uWF6NtRH+}jYZghv3233VHW%Om@(>v
zSq7pIH0)jCA$)wa^7RfPVlWXzzoH}vzHmu4?W&f|zEC#fi<;dYS!Z*G+=!O(wLx7}
zkfS~!6{@R-(Uw86L(mJl7`6&&tfK<xNf=^6_XCUu8ur|r1N#l=VNU&`*4XA+3xiN6
zAyXvFc8Uio)C-HD%2=FzR7&R+I79uTG#BFHe_)iFOrH+GE=-4{zrkN`W+aW+i_JTK
z`>Dx<)c+WIlqL)3pSX=7*`N5ysyr`8ap$bd^E3w89)ZgPiCBi|f{Ji<FG*G-wEW`%
zb_kg0x8xoGG@_?1|4(>^U)|AMCk%95n_gVk3|_XmE_Z6(keo8NCgI|@0sfZs3_s1}
z$KK|ZCF;AE#cQiOrv*z^HWTBHM`H8Hwdx20FDq8lu^{(Q!@5s%Urrmi_ZX=7)j%7*
z2x#|wO+pMI^e#2DpLkU+erWUorFxiNlu1s>XIg^5wIEm|<NqYAKz#tgiff*fn0f}X
zH6gqc8Y>joek2Rd2IsPtNkBRLQTFsnoh4v_<(`f@uV0I_G*I9RD+?L~j{1bx`#0ta
zEeZiTNBzhh^|GEN+1vl7{w)Wm!`yhLKAuC&Ve`GhjRo0c|E^`tZXfkQW;&_kBLS|M
z7!XYb?!E&&=u`h5Ld{_dyivFMQHW{aI!yVS7oS=ttZ_4U4sb{P=wmO6wCrO3g8Cir
zRxN0ht{}^=kNOy`2fdgiLzr_8?$^fWMSdbcHb<)&+4+$`i%$>mB*aF7fv0tiFWhcK
zRThLy0Mtx?A6Q34Vn$tJOcHkv?-ldg8_%9Jr8YX#=C;}%u*pWq^?L5VVi61EUkC^@
zTi3LAgna%bC9aB?Qos0?XlUZtnp9cISx)1AbGeO~JGb1<*DpHId@iRrT4e7+!$h07
zWDZ4FAXQ;*hdB%9)8U`#Aq1XW1`G)sm$Ol@ZCv2#2r5~I^BXuYJm%NgOkCQOAufat
z)Mo2&C`TDc7EDz1sE;V{`=Bx<#5gYrDb+@@FE3>Yx=pZB79-7UjD-g%Z#qc&td6cl
zI`S1u2Q2b!m^1LOg{LEV_eV*@<A9-FlOjf2A{_Fdsdcgdw<b}6Vv(B@15RD*qXZab
zGz8+iNI;_yFaPJU0Fd^84av-oyHqv((`T<kWEsJWhoZ6M2FCV3^Go3`Syhyp=btsd
zxqVDigWb0^7+bvc{A<V0Sur;${^`L7hiXh#(O?ohffEn1D04pao)ia0rM2e0htyBh
zw}b~@4wbr7eO(CW9*K`nSVF5~Wm9&qZ(Gwov9=@9gC3;1kqw!61?mPZ^p~ldeCE1|
zU%qZ1WK~HVUALZd&%bus`VF(CFRt3JUk=r?Q)@PLYuCi?1XT>cFW|i{!+a94itA#8
z2;?I%3?C8LQn5B+Ac|?$1Ejde^`AH_B}3`>#H=np*@<fr*CMXd1TQ1CRL&_K($$Tr
z#96|b_DJ2yxA|JS1veOY96cL$3I;DApFr+o{Tp$trocX&{NOP{5|u43!pI<e402%B
zM4wvdA3SVLdTD48)&_a0Vbti;D;JEJRo@*uKg@iV%FDJiOj;5h6Fqm~l8eh@<qff(
zwMR`clMTp{LPbnGy0$0Qfae!4?Ku~zmP|_hX)FU+Y9Lxy@0&2br*_dQ_S8c9X<y=w
zgbcF7+%h57T|aBgf|aWl)%J{^;H$5T1_TLMnM~3Zy_ze@gcd9{qrOIM4%wrWhI}}|
z^)eJZg}gqrX-UgLOI%0m0vFBe!nteO62g2-2>XDR^y^=fZDd~Fz;wS>e@!M7JaPvv
zPU?=U|2$6iw_+;&j{0oiARgl1!2p}_PMTg!Yxs?H%{HmJgU62_ghA}_;}{7x*brZc
z@>!rSz|M}1YPdKizI;?B3~2O%LY`8A1SF;-m<K*j4Cd{v=p*LXNG=-ER`vGd2a~P6
z=bVdBB6x60efFOZY-#f%gsmbnc#&DXG<(bOgPXoCEZDgD0<8iqLb-Z-`rvV;w+SF>
z+Oxu{+PYOU-V9O}bVd$T!;AU2M<2*KtciMEC29!H9V-u9ZUJ$M-4<ShIr|tXrKWbT
z`D><Y{dE@|XmMIgt<IJM7hSi$OEY*8QbKz0rpdFP5g*U$mOXsszD2Ww2EfAxXD!-y
z<-^Ogg%RH)dPz5o4-q9@fFG7wBX$sZ>#Nb$5QVy@LP8HyfiyK->WR(e1g77J;isq@
zxu$>@C(@*mf}RY@L8hJXBrWMOEKDqt3i8iwFSwpR$W>G_j=iMN>(!1>S7GdmXt%UH
zpfdn%XxP3S<>d1=1{yBn9c@?(YZkyN<fb)6_r;Xwbe|ytusrg}0*9elmW$u80{>N1
zQx^M4-32#mo8SKR;r8t_CV3=RwbSNzS!Jbd%GS0L=qT*0!ERw05x~DzSsUKHYQ||Y
zuwKD!+2nux!l3~g>0-F=;qnW{w$F|jqXuhZz#N`4WtzLDj_MYvu(*X@fb3G;s!oPE
z?QMW|e7J7#=?C#3QWQRp-~(1;_=?J(Y^}oNmHRoN$^y4Pv2Z8cL)EmwWVNJh@>2ER
z)el6y-IQ`!2h2{kx3}jwTf$_!N75)(mi|n=?Ylj_>QzqjfMiO67Wc4{rOcF4JS+{j
z&z%duf1`r(U@ZlI{F=sZFnCG<!~p^JB1!~*BFX@ML;u<X>Jv}cN<(cA|5AP8m+HUK
z@vG9%#_zOu)ChxFSxmKsBSSO9XX%g4SU79e4=G!|Cgo(;VeA8dsRxIZ$Eqhj(brh0
z>Jh)P2`<<#u_i^?L>%2jxXAxZX%?<7l073C+~1p!t{Dj_9ZxL$sz|_G{C#{Hv@t=B
zP}EsMr62u$;U#=d%MRJHCiNv=5OI3(_o-A=G_9B~AsrRui@pzUDE@tHg#6PmWEuT^
ziPt|@8=kjTNmkqdOlyJS!m{E9I87hqn;%9rT0<0-L99QeURoy<D*!&^jevF<)nUT!
z)AT`#`;NGXqh(2qEP|?uDsodxOo=2AYe<esea@j9#tIvJKYiZzn2+^IY;$9FpF?ev
z)9LIFvOg9dc`W;v_gY$RQ2(-ltrx;ivNunxyZ?UFkLj$?i~bkZTu6LDXb4KgAR}J|
zCS^>K-&OxH^mcao3^t~WeS^K<Jveis^lW@^CYHAs)lZm(ZMfyW``BVOh6XH+7pDP>
zH`XC|VCLo6*duA78O!ugN@5Elxkhd!CmdSX&*f=utfmDFD9PkBHMk3&aFB&)R8NL4
zD&i)OQL<Xj-mUIXo7Ek=&j#eS(SsGU*Jm_3HgtV*TZUGd%*5$1jGR7EySeR?t_=>O
z(Z_o2Zs~o#^$zu`{XU~$I{T&vAH3;ofJ*ZpJ&JR~s{J0}8cw}`t#a3NvWA?#tMY67
zLG}{Q{#6^CipQ<Ze@-_<(SF1-XcPlg5Dr;dBvQ`!fSM-T6Ddr(E3Sd74(BL?V2X$P
z8c~UHEZ`K6=k+XAgTAh2(4>$*V2|W$g2v->Y9+4=(K+K`;I4$BFUb9!Nrk0B*fL+v
z_lcdO1uEs@|8I@xoKCB{68@q=)}90JCVF33Lb?M@bC5mog<2~vPXXzk7B$|75Lya&
zL)t=%E&Pk`S-PznN<)4iAI;NU!@f0_V&wOND{4!~b@1&pAN$<uq_`Xeq?hMesa(bP
zh2<#7d$>Goqzvq>;o=lr=43Xx{tUtEaN3B>CWZ)Uac%%Y9--wFCA~Ek7aAC_APm}b
zpXAnlNOIF+;t%pPlAxIkvv1neXa8*XxNLX6ZDDR(+U5bi-=^>US$+3TyUFaf{gSPI
z&A@*!TUbRQ-p-3$KUDc=Hp9j|c+t%)Z{KNid2DyGia&p6lgtpOkDeM{Qy=)H&22V`
zFBRKM=Etf98a&;o2pD`R2ctkyWxz`aTDZXBjY52aOspy*2=?xDIZi>&&))8y?Pe*(
zt;DkFm|`@cFI!Kx=wFn7fh&cqy-f1RZb2KRCK7JNBsApYHWk=M5J&|wBQOdb+2_^g
z*;b(s3o^wX$sWZHhUhNh^+UU2+hPaWw)eN~kHy66akHOp4#cDm_4zDet<qcA&k#)o
zZ(%Dv>K1Mqx+sR1`nMz9wwQP*hL>=&Kei3+FtV>|yg%{T(6f`N5BR!MdXj8xHG^3)
zqCJiEswQF>ZLP}3Hs3ciKciD63}0Z^MFL6+`V473sGm^=U1^Mx3`Y|Mrl>H0pEcT6
zg^H5MH*WeRUNMs9VN5fcZQ=>}GHBs};LS}+P-y~P#IlYJ0P8ym@R(0L;jYe*1D4ll
zwDy~vES0HtyCCI2411OeiC>SA#1wX;8DRXzVihdy^T9BjrZUmN_=b)~n*!R4%Wps~
zkbFH!%W;I*pJZ#8%)c_#RUtKlOksrV!Y3i%vh>?b076sjL-)-NtH_t7E8;OBZOPa@
zAofQ3jdT&<%k!kzaG)7qW3j4HcvQe1&&jd+f8}J3!f+>UDx7H_B8^6hA&r*!PDQ-B
za5jys`+BVIUd>7lmgi)Y&fyh!`yosPQAwyIh?7D-h2#b7);pTpdfDrCm->#&W_JPe
zRvi?=>OgitOs_62y`!|JbhXf5STOdjJDPjj*#EK7D|Q>bl1&L=hPkN@2)(QE#vP@l
zt9uJeTG&n{WG78N)aYu19%#`y%8i44oVsSwNLRxgR6hF`tsw;8VRy)COB4<JUN!)%
z`7vdOk&d?<(g93fs3|PTNPor1pPNW$3<O#_EA7})G$BSpfHV?TmULI#dE$qx7wbVk
z&~JAC_{wwIBIXAzc0go{b$tyF-B4|{28H;j=K3zuV<qS%wMu_t^4i`@H+DSvdn-bD
zuywne$M!>`B4i4SsLAa4`Y(WRazi3X`V<D0HSABo{&CC0QDLaak%OFWRGk<uFflyE
z01;aMG+U7Ux04Vvs_$?k#S`3MQCM3<V`66JXbM8S0++=Hls0KFaFn8zqPUf$OWb}n
zqfAxQjNk357Sh#sz!o$`29{*=IlAY>v!fMiDilJX?r1a{9%U3-*f6J-iKJh{i^La~
z$yJ?ASG(MP>=IKImh$g9bD7xJqR}YghlfIHszUwEmoF2yQ`Xet0HgZCGNmYge2TvH
z+d^IF=q3{GD`-m8K+R-7AdPA64e{l|c4AofbmD)4hUvwM1bw^%@mXLok{H%R#q;qz
z+gU3h@JZH-G^8$-2?T_&a!E51(fhSa5<Hg^#*~Dm+3yoyjfz%;wzVmN5IR8li+ca$
zwbZv$1+j|?wXTbuGq7njBBY45qR%Et4o^v_!hYa|M)ro&WEKN*NJUs@_M!t6LI5%V
zb^o{*FLPH_lzI_f#b&eq@tD<1VOkJ+2ytha{ElMVVN)iIbK7^?-LEs9AK$kfBlRpq
z&WOB{-VPLkoxxbQ)#})8aqPMdAy#B$fM7_p2T*$qp*<$k%A*nEqb2)XX2TVMsJB6n
z5Ki1z3o9gX8w9zYljMj)X!33V6x+^OOEq2l=?|Yh3Kn5AV(XaYn%?@QTiAGN3iTCs
zuiJh<gakLKH&e=^81|Pbwkz%K-#_xZ{l*gWWfmrw<kG4&bARQwUujd+tDeM*C@Rx6
z11INo@J#D)1GU>Q$w^j>=mA9b7)O1^G1VKyM1v8fOAgDLfFwlSN7aDkBbh=1Vofi;
z{_|sQ`!zOY>fWC264~Y0Y;ZbE!j3Cqv4wlfV?E8SiTe3tr;ceTaXo*JV!Oufp0KT}
z!>xB&7aARQo9It=F0Wa;$5j)X(=fKBtv5LhYKFC6eJA)BwZ>zny85O7zI6@a-&ln8
zLF2LorHz$i{9dO!8mb#Jp?&t4L$8*9&!)KTkLxQVHBP<TbHssoPog_o=3mwwtV@KV
zireEK8}FR5BG+eEpwBwd2D|})dgY_Q2B5wZpn|mygmgKlra{EZJY7yZo5m&j{9qWx
zE8O;n{BL~oK~`lq8@)eqn$(vwfc@Bh@IIfql=_C<GvQxvrlJvD<F@~Ktm_eQgEgD%
z?!({nJfYs{bi1wWf?t|!m)VqMi`;hnutTw3MQL$4X)*D9kQ|C9QC?8%5fYb^YdVz?
zQsUed5GFXu0nNA15B60d*&xu`$hk}#W*VjtA8;PMu<BbF6azGv020K{|Bw1ZqtWdC
zv10y}5;Ko6{LtwAq04MCsz3h~A9KHBmD(9qVYA)#%{FDJ+rGu72veO-r(0bfUmjTD
zVh<=zyDR&gV%uVOFI8-tf#30zO(9x_m`T(DkVd$qEgFtgKq!btMoKn37>8FA!bZwX
zC$1xtlq<lQLY=`b$iAR{i+x7zq#6|4gLxJ806iIiFMa3*aq|oN)D*i<J@8)_7aOwS
z!EGq}F8Ih}GLQ%XWitXT(+PcVneKdy3?-^SzY91_c)LZK5>a{pU|8*e#v_V+#E4OT
zjwi(7(vGZ$V!mG>tD`=FtRvSqWZ9$*B?GPmVd1ek!0@{$s=gg&_gx>I&W_E$e<7Y+
z5K(_sDS$qH^8rKPSita&*B->#;u88_rMf;Axsguitwh`|=XF8(EVlU^L*PKbu#TN~
zwj8|9X*SENE}$egSAG|3#!^5By}_`$$?RM3+{=QMMid7b`V01GIvvI+&E63R2wQNp
zn}sc$*2c&2oUL%!tO4~7wk4n)tpFT)D3<_3R0r=|=}&0KCf!VqIpm|jC(z<~qb-#Q
zZxk@2wJZtt%hiN1;J9w_Hzt9B+S-HzVkb8@NI<A}HToJm^>l-+0XLm`=_dDWyDqXB
zn&w}0*`hmpYVLH;R9>jKpb<gg%(l4~ypf9Bxv2Wi1($A_^jdk{jE)tJ3yj8z@$T_c
z8pf9^GfJvD8fVo`G05$eQ|sE}Rc<l;)ZEge*Uvb2`dFWIa*z!H{ov^)c7(Bt?gtnf
z`c(L2$WYOKPWGOvwyF}VUQoZy5E{)Hgi*&oBTW%MqUJG((HKy}{S^(IPRAg^Fv|H$
zl9Jyq6L(c0ooR|lI@rqIVYg==f-`A&7$PDJcJM8`UEN~$g{#{J2S|)Sh!2=9q%X+l
zTa9@$6Qj}xoq-Ra@}shb8xQ#d7qWH5Fx|!X@^O5#+Gp=BEK1u8r-Py>gr%Tssmku7
zB4?i;DJ=yE$<pA_cr!K(LE$dAB>6)n>a-tiWd=_(RksK=Y6Abz5;b5mLI|>)(FA9o
zGzACes-Q@1Vend}5C)iY7*G)}1M%Udge?eW(1HnSXri;yq(~2bXQq`x;Yrz#0k&ke
zS%JGlk~lDWC_ny*-Pvc@4#dzy&@`+2PkV%<dXwH^v75aAd|e%wGxk5n&Qaf;{{H>%
zOIv<3)+u>drFF184*~^AoZL$_J<;#J>d$8hF1HEz)8d7HT$%mI=(a%Fw_CitukY~T
zzCPh-wvU#V(e-YoddEiUO$O~Gr_8a91@$Jc+rpZOpW6;!qTct6s-1GiRv51Kzn!ku
z>d;8_q{~ie0yF5Z-59^<YXgm6;>#vLXATUx*cq!zD=G$XZeu&u5Te*HqWE4IIDJ=3
z;X=s*MnE=AeJ9|E8#P5YEW>Y3>i7+gy{D`72zWgEJ6_;p$$k1u>hqEMJ4WhXT+1`J
z2UoHdw1-mEKE?MEYBN#+HGKNk5c-SiJgPNDBrxIO3hq2zQ?Q-Gzn`%I_?VYp&dv2M
zvIvf0jiNBnpf1lm=3_A6ApuPS)>4!*8O26GMgpxwaM6T-up7}x$fShgk;qe5v^RIo
z>TaB#z4r{2{wUbivuj#sL%^MIIAif88=Zo8VO`(VhtJ#lK)G7`AVbhecjuza-rrB|
zo4s>x>$20;IoY}UyhY=kM#Bz+WZSjeUwYHVtw){{#_rt79ybJJr`6`3xa`^N&f)n!
zT=yimh90T==dW``)l)vNIle^QUoEWPPd=w1q+I0(zj?aa4;5EaZaQsy5FJ4LeF}5{
z$zg##sP#GwKG2!Ph}IYe2=jqBViZeEZy;=DiXR5O3_2O25<n7mLS%x7gM{b{!w(P?
z0=P&Yp-_Zku~0DH4=E1BGjO^O2jfzI(jhjuT#kfkV(O}@xvr^qFQ2zJ8jM$!1h$Ot
zj<|y+lfhEzQGyM##zq{lAXVH55h^k7{GA!f1bGUfVFwO8ST?yXJa<ytqzSR@)8+~l
zp&)P=VnN~Zl9(XuOf8SNJ7P77x(<)xt!S+7C=bNv)>Y~Q9y=cg)D}9l1=&&Xw&3<J
zxv^Z#!N+`F&J80}F^ph1oN<Eyev!9FzDcM(+C|I^#6zZb^PH(6wkFw*`RZRKqg{mf
zl9?Qlv9lV2il@|KFqwkxNcZ?Hfs(3tFuHf%^1G+H=2l&mnrKQmT&@OD%(q1Lj~dJt
zZ;!_&t(d>l?g{8))$`(k@{a1p3a{ens7utuI^2=vshxrlD-kY-br`D+hAM=))3(PZ
zpyB3*357l{^D%K-(OTUkjEoJ4X>x<^UfmPAA7hlXG?QgK21ybCZk1lxS0Sifv<291
zEjcA#Q%-#E!a(4PJtQIWk)#atL{s*GU*JZt07Zc#S!1%fwV7fXkwZu$LI=?Jii9b&
z9N7&))d3Vh8fPHy4GD@Ijl7yD&?%NGuJ_OccYXkIaDN7{Ux?ntALbeUyb?sbz03s#
zLfJD@r)GcJGkZS!PFErpG3low5RJ#jCL63{qLHqyaMc*AVNejQp_b+{ucvHN$a_^~
zK+n|6Qz^l#n5WiWi;#UEURyWC?C}74{5m0i9bm^jS=(82np)-?!p5j&Hj8-6#y5q$
z-cZx{GVhaJT^!E3OK(B$?9)Oq;h*nmgonr@l}$~5ny#*74^BUz-dtT@>WZ;S_3r_}
zQNaQi9BKB}jHzND-dA1Yeacj3_qnU%q4vw$L-Baogt=3ig3Ri*h;4T_HQn8u6~D8%
zu3dIG<o3Gdk3PPnwu7!aYL~z(vic`K@vru8PX5cDD<+oV-HH4Z>R>z7KUO$}07IDA
zm>ULZ#zLtQpB=zl`Xly=k@2w#_&57?*Xi!kJ;wQT><Q#XB7^vAZbYO9VC=e@BB$w=
zeCM@bbhOZTYK^r-`GA32`zalZp2u(lBi6_x;2QK{K1ATnNuwgnM+j>Y(diU_s7c9>
zJt9<SRq_L@|I`sGzL@a)eEtMmbk<oz6St`^Y~8@ZD_52yC@@=Tv^I=uWsjPGpIf_f
zW&OBT*mo~lg=MYbyP-r^ccQc`F>NLo6(QTdY?<&%(7s~gGuhxX6Ia@TxNd)1c%NSn
z1vg!?!9F%t+BbteRT}T^ikFtgySn40Y{9CQ#s-^l6%*Z|a#r=PT|QRt>uzZ1KDuU2
z_UG&)_39e07-r|Hmy8d@CawADtYBN~ud`dnC6l4WwkC7cwB?%@#G0C73m(O(B@{A=
zKYo4MwAZI+m;dFW_8z_0tM6&w{t;apJRSqCB|8-3|G^xy4{cteem4EFg?KyO^H>jM
zvPiWhJ7a++c1XQBBKT_Aev;X1adZCx?O6i7i}=MPVM!{DFhM1no>Vgi=FJObSSzE4
z!cz06q4?jt9&?tl`>Ym||8Lbn@fQ|L_G8v#F`IpVs|l!&x&>B}_z$1B(XGyIsHAWY
znA8qOJ=@^)4xPoaU-h^g^}_jK@kTQ7$?aFf|5I6D)sIC2%qiC(coF8shYu$ie*)ue
ze%G2{U`NRIn<&=&^cNmI;H`MZjd<VtpGTl)=d%@xm^8S)U#_Sd!ESrP&$tl*S{-6v
zHU746f`VFpr_y3|y~WgT*zL9|aiKMuO$cfv3I?0K&4hn-UORfaaCwRu*tY+`)hv{_
zo+*t|1tZXVm`h?2D?`iK0qSQ5zZ8jAjTN+=1dHD!a2XVDzEj`SD*T+ir<OkZ5SuV-
z7Nq}?K)BqlR}v^C0$dxa>~?#3I1s@KF{obqiu%g9@l{o^DS=Z{*u!j)-EktzHk%L~
zUeueNeuutfbuxAHnCfe9zB#!P8?xVF){CM-QK}``94<NKcSM~>{Bxq4Q=lI*@*(t$
z0*llTSuC3*FY_i0Esz=DU(#!`f?@wi{if=Z>r@~3asMrB8H6RvvkTcW)vbP8ZeWX4
zzxps+&i<@^TXl<*)K}C$u*vFs=c>O&LTuva_OepgZ3^mp(p%~u)K{5Z{k!@f>W^5N
zctHJ;`gb-C%!>u<(kED#4A{XPx$+SHa}?%+(O6P8P)JhxL-2PKS-#1p!TbB=d;5nL
zMMOs=yP`{Yvn%^wn}ki9e$C!VtI_NeVz`$Lz%L_RchA@F7J^6AM{gFM+M7MOSKOPu
ztXH`F#C^w(VO);r;56Hd1-i|6n#b*T>ceqoYd9adu&Oc+x`?PF5k{oi7$_HEV@K2z
zymA4)N+`DI{|3bN<-4D@&N)YxIVoqR5q@8N=Kc5COtz?XZfomYb%y==nU^drYn<z`
zI3Op&P<B{6a~sQ+UNZCgGyf!<FPq<cb%olx;??)eGQVcOpliX$4LaBZ+E?D^A8Ad0
z$!te|Q9b|E{Q0*=&1>>b!5Ctr?PZ$sZJGC4(Lx<*GmYK3@9};69v2?xCz*86!x1fq
z9-^Oe{|eU+0lSwM-%%oRlZiDYBcsgabpN8BFSM>vThx{{TLd#395z2-=dk<PIpPuZ
z<pJTl*?Ij8p`A|kz3!1Om%j$N33*p`(O7_$HaZj{d(8I+3YLqBkKR<!&s8!;0~t<(
zT2$=h4*{AQK~EBs8OR;j2r7DxyMPde5d7m8ikXqDf`1f1%EuaawIs?)<5jbg7ubKc
zZt@&ax@GmMOW*U%tQ)VsqkdT1kaCx=PIkQa_T-k;%Zv_NUDdKze!96~#-fy`B&>J;
zUPumj_0A`QOXa%S$dG#HKaV)PHrXJUqTZlMEURp*D&K#c?PX)`>TojQ>yzh(U5ggE
z+}3v2ww-mQmrPrgHX82`E)7LZ#<AlK=E`7c)MO|tH5#Ks?%>9*S)OrYMVHZ2*%Ix2
z-f6n^R()lg_{@W9puD-%bs!$vZY>)VYBn{#u=iUtgZ1U*4oibOw!C4kr;~&cIo+d?
zul5rmlh}%uY=)i|^mJ>IyR&mweFZIu_7x~{W-C@zr5Q1cK^!<Bg2VsRurR(%#1S|`
zYwL0m&n4nj+@}zRJ&USpS#4s;Y~zZ9eWH-8pMKL*o~}gQT@TmAyS%oB%JQGR9;s?<
zv&fG7)Gha0<)CBiJ)eEIvfOcv$yK}kEft6y@!BTI=&RB*quy=X`dubI8K|g`#<A+c
zu_@eH+u-wTbt6*E)bp*YyT-5ZR4if>y+OU~frPEZqXZ04#L0$|tY}D-NPT^J>z!>2
zLk;VdDSg7vTYSmL<dC(};Tc!neZw!R<YrH$rN>jc%I1lCVSm>+G7BEY6w@(XH|*G{
zSt~)o`-!M-5J4aV2N@%gOd!0FRF<O!#m9U6kFVVF==S-Mhi2~V9_NvnLHaK?Pkq7`
z?ix4$l@FtxOlVuZXU{|-{Hx&dvoBa)FB{YqL)jDM%`FJ%Sg7aMBFHANwZS6*`ZF@<
zz`_T&TK=t0D6~iK%+mJGy7sE(5;H@Xh~q{km$Yo`zM^*dUF)Y^!|pF^zd29)n7?|A
zpWXOlHr-seY|FBeud8b&T+}y3VB@5*h1DnfkCc!_-QhK%%f*~17U2n>IBn|vW}Drt
z-eWVGJOi3H9hf$!nudR8+Nmhg011-@!@NC3DA2QVhVsnWtq@_vVUsn7Lgo{)!})lf
zHnxUxXX|Z}q6~&9Cutz=WXN1iJCP;&D8)pBPR#N=xfBTp2pd7-lFF5XXBc!;f}%nR
z1Ca6zjC^CAo!5Zpsbiu(lgpE2dZaZQmR3Pl1Nu#$p&}HOO1KhD0hr0cDxiUoC%PDR
z<vY-xaqjh)W9Ntqi&lzo{m`gwqUSlshu<Mn0MU*M{Eu}I3!C5LlXoPRT%I1kYT1-Y
z3l}!saoa6Bc04k3>z2y;b(?1FUenyXAUfrc`fgeI<kr?$mpEtk;|#$A*_8eJpAUy4
zmAH}r{@#(p<>i%?Q>s#3O>1`S`<Zm<q&agYx4JF*+s@rKMs&j5T(hOqaa(aQM;$-|
z9D^wZApmG+;hWiI^rue`?IP1I!JXZ;240!}o;^=!$?hKdXuoiqc>d7)!ab-ztxcdp
z<papg0lTFn@a$IMc_Ueo={-{J4E$-b`qaoyzz>i(oNgfzqrSy+Qa-h~$kCFl>tV#u
zT0yo>Sj8|%X=Z5eLYl_j3H$wFA3GlQ`NIC8!J3ZtWgQ*Tf>iySj%6K(I%;b=*zAUs
z@a=8sq4nu=XBezD!_2jBtet7FSq<zc{oYYi+aZ<tDIe|MD;+iJqS}s*TK4Ul4kf#(
zA@v8k`-65&H3)aI+mb)swd<$JD{Th7^<YiSL95<i%iflMtG2xz`zX;}pP@;NXp2f_
z1S=4OdG##z9~jV(lIRI-$FGkYP$?Ftb;kfo9l{Z@1K8co2_kr~c7xu*T1`I^<->Qn
zIF@m`p^X#2_+Y@)f(;Nc7NdxOl%T-$NRFKpzZ*Diiyv-9$byI~Y_VA7@fF$<pa<7J
zoQP{X0=7?b9<h_eCQhT%F7PE0pP?tn5BcCd?VlbSw6_&I3|30yiO*>z<qF(Z+Jl-p
z!EjK4ygq-UK@Z-SsswZd)TuRrV3meSy7YVSGVUO;uoKyjZJ$_InD&(mR2(Wd-~Gt|
z!w#K3ZwmSVH3CtGtc4em3MWDlgDk0#BzL1+sV*peC+<=2B<`tft(1rwozi04<T=BL
z0BuCgn#-8Jg^!fW!tE9lLhs6}C5IXQeCl1`0z}bZHo=n}-dHfmSeis|T~RQ=o!&e<
z8i*{9SP~TuW-)o)HXE~7miQ#eV@WvL^+vs~Bvxv+xItC8N_@_3Ze|)&BC^WTP?^9?
zE`wPwSqv`5JOP)7F`vnpU^axC^qE7xu}PsO6qZdESu|NavrKitl2&XB&XO8eyfPB<
z*#tqaw-{_<>4H|Dx5g*3@-my-zW{NS^+s=4LU=S;5ULvFYRU7E$thNp8*A(h3CX5s
zqQ~5@=c+ot#VX*Ndavjg1ef4*RI#r4+51F`-Xy>#L9~eMYl6w8mrb%>5bZT?ljVD6
ztEdNv0*uOqR@o*xU>7I~%q&O{-x-<HE+joZ!4UArf^lPfZK-Qh-0e44me(y)=6dR8
zR5g{BJ&;mTRkZ=xT*+W5%gpv=uJVAlCEQeLvbhB-ELJK-vC?ySG_YZczqVF%d(4-N
z>#ny*Sp3}O21M?Rd(O98C84<|F{P!iYQi+&Y*nsLu5^Ihu$V)k)=GECZL$l#xZCMb
z%xz~?w@;eYGR~3+M<Sw~*&RV=NZQC0rnlnOAzEyDbrCZHuFGga`<fBS3>_}0ce(?P
zl902^TxqD4$DQx-Ouql3YC)>Mv?0+^0b7X9MdejK@03cTh{%+U%}ktHqQF-^C6`xw
zO``FD0}P~L0z_&PDjancf@m?ZGR0TUYN{lM-RfudpltLzU;yJ{R+GzQ*P|q&zCuzY
zP@pguLKr`*Q*oFilK?v&y$CF+j-b`jSz!_lC6mW>m+2px;ND~mcq=BCmMTz-PuXY<
zOa5z2j)rQ{(LTN*&~0=Yh5whf_W+NhI=_eaPTAgjUu|FYx>|LuiX}^yT;wh{;oiU%
z_p&Z@Y`}m`F<A5%LqajdV2A>N5C~v?rUXJU2@qOB4H#QH{+~N5*}@@#Jm2%V%+B2D
zcW!yhdC$u$WMz8Y@Q7Sm;An!nZCaUSSuojY3}>m>9D|bq{)XtxPsx!lnpMKJ$><Xt
zF&<MH<b>l0=VE#0Q${LhbVQ?(avB~M5H(A<6VIs~Hmen|XCr57cj;wDg~y7PjIZR*
zau8CZLCaPfRJMsKeNi~1P;*LSAkgMF^Q=afBekooDqXYIppZJ`(kv}2%`0n&8lEg`
z4=C(<tB0oZo?G5*zM^dDv)$`+EyUx>+1ET{^|A%kM<y1x#uz3LMy<<DY7ZaQj!U#`
zY-r{E#X$#N%b`-Wx2k=mUYAOTQF%~~)=IKqH7Nk&Ngcc#Ga&^=*dTTKM`3wmBT>#z
zXK7m|9Wcfc3=~;>1jcJfX#rU|Ppz!j;7pMyJxd%-z##=(QTY&BIZl!@lVSAb*KE2t
zsC)F&?X{LH;g7;@GHG<l)t9c1ggN89H5)GN%OVBr+yD26iP=l8>Hi9oIy36f@s3g3
zRt#I$TBG}b-9;4UrV$&5Ij9vP)Y;Np6VLT3k-c!=P<<;z&y-p^C+_T2?PjhnuA3&)
zZg_w4<Qu0qYc+&_{k1z9zTWdijqi((MtsPgOUPBXo9=$qIjp?KA_P8ufT$hG$~JdA
zhqt47vCs~9=DDGlrxbV@Sx3ZS)=8#gMk^~|fsjK8G`t+Zh0s`6_`HyX5VAAko@iEd
zOxp$Ui_zMov96iKTPO_CG{j;+9i$>iMx50MTey|GHd-~Qvv|JOonzEpncEx-<v9y0
zm)_IUoLbTpX`fKDtJ|72x}kJTaZZV+r1abUZ5J+SB#YkPw{?DJ+ZDpeCzj|(4{Q*g
zZjd)i#+K*VRd$(7uXh?c?f!s0nV*<k;HzKKRy(C8tPNSU=2)~eD?dN0CV%R-aLf5u
z?t6c<e#sMrzoM;k{?^QfaFTAI4p>PZbcYu(#|MF)Yep>~>mY?NK)j*MDlofYp2?IA
zdWFjqQYB^@4u{F4kONMK_E=?Xxs$LThk3UpU19S{Nzmr?e_{2qb`9sV2yanqH0d@5
zKGJp8aZ;((RpJ-E(g5Ey-P)#3bab(6W+bgQb9J5E$fs<9fcfNuxIvFo=h1Dgwcy+w
zPuTU(HesXi2ZPm;XEiGog3BROSUdQwi5UwQ_J3+1m1G-UYluB@01JOMr|AGf`7CDG
z0ig`8Ee4)kL6qbPGy~CNdwL7bt`jNhr{b~f<0Mqx@25+$lS$DH(Vxp|&m0t?&qQTw
z7?k*9V*W>p{DU=}4O&dJVTtJY(^>`^lPL~F6O|IFf&j!DWck6E9}tqnN<Dwe|6YM;
zr^bTbf=2j?6yN9n%~Kky00C^<Jd&E%25u^$XWL`jwmn9G3&|zpw+nN0Mi6&@S<u*6
z0Af?8QAcjvE*!|Mh<WTJwP=x$va>z(gl(B;1+U04#Mx7H@PM!jr;8}`p8X5AFzRgZ
z`H&lBbVagpDgs^cAL}3%1zD$XOne$PNmH;OFF;TKQt?TS2u1Xly;A5E%X>i&LS8)c
z94WDnS|omqYiN=XeK3B}x+|c@HmfZ(WQ<~YG9AvJ!q|jbd#I*5WUrl&T>ys=H|eYa
z=2P;fwY|sZguD`qxdX)M>uI;{{E0Cl55B`!K{}wLHeN|4VH*Yn<g*Q9SfO!lQOZw*
zkafssaRZDwfN)YdGl3=tagv7+=p$jsl@<eJQy@3Ndeb-M#@9Z5?ZzpYAF_ng3vX+5
zTH)=3$}HtU;ccx>BfJf$tm5E77<2U`gq<XGP!UiZ1jtdRA)$etjOxr~aJ9IO?-5=C
z+DtnAxJGk)x)g9UQqsfg4C>>@HG1qNC7Hcyb!M;d687pf$B(PUZ=T|xM7)L(EmRVw
z;~E{-q~ZvOOr2pdE3KGuy*wmJ%9P@R0*A2yuAhIFS3E2{e{lXEPa&La>y?-<Bh!To
zj_su>W>-8zjMwKGjQ$BzcAdCp)p^-It?U!LP5Hxpchm^Keq$?$57$5a!Z+()BJRD{
z6WgCQN}23z-^iC&TytVqsnMs6p-*RQ(ixw2F8vzfP=&GB|8F?{vwhrLatNCSGk0hY
z#-0-r+MT6XGIxqGf<)4vq(!0^mfU%UhXXyCkz}3fmG;0s&`8l>X!W^JfDuz9HUo@{
zuuFqpp>Uv)!psk76{RqQDF$&!v^n_EC<X|E2=v1&tF#A99!*E!2roB2%bSypGmBEC
zbK0u4x<|}zJLr=Q&sQCz4|MEa6Bt+TWjpQ#->T`}V@{zZoqC)oA7_w~`M~N|5Q|_k
zJ;Up>vyh*=Kjn%>HQJW}(v6${w!9Z%lq8ZlF>@K=Ek<&|<By|*pF(_rY$Mkyxd0o`
z9iYKb(<Rj`7^r%@G=jMiHcZZD2IK>IT4DB~B~Y_O;v9%9bdID;FI$4}a;O}@l!+Yy
zZ67)fU;`NEa8WOT7DH7N_&*q17&?q>qwQXMcFgOOnF<0N*-^sEWbzzvC)kr_vv+i5
zgPm2{O*$B>IAd@{>+WUK><(pc@%$Y%QkK)@5Tn}4^Ln|tOsDsh=f>O`Mru?jc?N+S
zjv9?oZ;e0J6*s%IG6n*@)S#6c137i!nnDgDIU_YINmjH(${tUCloc<{sdVK)q-C~s
z^SX%F!SQCb+A?8SAq-ab;ILesL&}?2F1w-0Zdb;3_7dq1y_J`mAZv20%2Kk(?Wvhm
z?B<C)R5iaX)~Hbj6pYoRaxz5C8+`t%vdIxuU7*mXU^r*)l)CwAl{!kS!UD{$Q^4vV
zId!-6dwv9L%yh&nL{#kpc<3eJ(>gJojYahs`X@A7)HA9Qm5P}EkW30FIDr{C1ON{u
z1g5dIMr=}b5GjQLE~kiOEsekhAqGW;iWew{c8QDP()f-j!!>b}0<_?aiq6~yI>*3B
zi`CdXW~Cg76+JS8SL=N!|F26HjVUaAW#N(;&=GruQ@h?1{-Ra%60++(*a{-;SN={&
z3m*yJzP9zU)P6F#y&<2IYIRcSWv>_H=QF%ksji&bymFkwB+s?s!OWBD?KvFpwAYaF
z6HB9tl5(fq9jdFlXQI1E?Q^gHx<AmO(>ncuVOg#lH7*|HYd$Tnnm)HD6gV_v+Ekb4
zp_-m+TC}!*?8^M?Y`$XK{JN&qk1Sq6xYYg&+mlym)o2Awb#46$jTWSN#;OI(jOptu
zaCbaIeUAorw`cR3Q9bDuE~l}?)pf9WSllS}RTN5{AmKP8TP%l##6<JOQyPLORCq}3
z29Olcq|6~?XvRQkK(r=z?ty21f8f%m1Hq?-8`FP!2rzXn{?MP&50cPbf$7sH9>4O+
z<9w~)>KD$L^#-v&PKLdn&JjL-V;0%hPd@a%E}(nDen@49b&%5#O-QsX6;-7Ym_{)3
zVl37&u%3X?ma&!7b)K&CFgV2vc<B9{78(wQr#j3(TH2ANbd_J1HEH_%S<^?==ncz+
zeMd}4A#*Ruof{fHebUScWBtpYyJ&g6Bkq)0TbpNeO-SZTTQ<*}P+RJ^@*sL}wN{jA
zBc*NU)`WPe8U9wNN7};jNi()IGtt_S<HvPW8w|D*seQ!g)hl<B`$w;=&0@7)hf?{0
z@B?v19OSjbTBBT(*S=|Np*c9RBX3(TVHwuosc2u(;x?GFtLy8Fb^3K}QuDC(rOS3S
zJK9EfPa4}&uG4W-oibZ}yvoPeMsDt^^%~KA*sCv=*{Ta7OtFNMSb%~446ZwhBsYuk
zRicCis~|Pe!6av(|HFW>Wds-QvlU}1h5qyxV^(mlpUfHjzhVqKa?A?iY8<~>_=ad!
zk8dO`rvOwQj>Y9oP2*Ot9wKK_hBC~WVtf!r`yU%(p%oD8e+cg4QUi%h2a{}O5}EG*
zZ-HLS&Y#F<df>kWd<|*0G}o#4taLmE^k0-iGxUlg8Xl6I@jpH*%~?tx@JuRJn#pu1
z@%_I=rNM%Y&`YFTCG|8jY9=GAaO%H4EqhwG9gJlaZKg1oi{db>rau><CW$!BhD_L*
z!AxUl|8p=H+efig>VdE^b)^5<Ul0$5R1wslIVkfQ|3k)r0e^1Jf6E&%5M57(#`gVt
z`hbi~E}aIM+#)H*C}0!CF-T~}1m*#-7eOT@VVgJ_v1sWO#eq0Sn5yAvFu@5#qrFV*
zskv3ck;nH6-{1Jk-G+6$z}U0tweuNQ)hRF{#tdHwF?*QpVdUBg<&D$lH;2hx!U8?{
zL(K32nf9j#-@TD2_C7>%>b8}?cL9itw!Y(Bo<jblcl>r%WpI?%Pj4J{j!bwjl?n=A
z?##%PqWmuA8zS)5vCxk(#bC(9jFU0xQk5C=7R7TRzMFn&JpLe}gI6mL{C!MbWW0*I
zJeV8RWO=t%FK{h(m362pOLR55=AN7W`u2&T{v&qlpQUo)8&gl^+xyG^_=H+E&E8{g
zDtj>Tm&AiGOuNYD{?mSBc+fDm!jX{TQ=<NBX1I(RCaM@z=LO<@=z0bj?tw^8BS&Ps
zWpKq%PSXQJW43asCxpYl?bRCJ01QK+v3)Z5Yt*8UtkyYg$mx>#IZQaQl<E7eaQF#e
zqGvS{U^h}WdF!;(YbU5y`Or$<Ov~3!8(a|_2-ANO`{+1?d5FG4Ca>l|>^G`1^D^SV
zM+ZBRqk?)b(96%pKAv6kG#;Gx_9RUJOrL=Ch#REmXQRXa?RfD@|1DZP<I73OQy90S
zkbCMS;6<a}H!3?r3qeKzn7zdcj-$08UJ(+E2t_5b1SU5djr8?PVU5=T=|@1w1JhT~
zgyxT=-&`s0k1&hRyE&EAm}FI*omB`|N~Uf;kDHvcML&66e*U`2`Yk!qczjHA^U3k-
z_iuhtxzyzbq;+zB&os|XH+iP@6ifoRmD3iMw1voX{fd>OH<>K-+Z~L-ZeSdCe_=8y
zv$DF<yii`Lj<w4ALrX*6qHBtT*CRPa2-bo4PL7ac<OqezavHzGGCDcXKcL|v8UfgB
zv>gjbD+f$Xn5p?QtF#T$_pgT|@$@QGPJGo8D>TeAt8fg6onA*w0M><Bp8uk5?6i9-
zWaFv}J9P=+`GkC2O<{*FalOY<J0_90cfnq#wWcePcT+sG13<5G`FMJ8{8o##W_(TF
zO$%<f_xF?X1;X>p@iDdM_^a=-IIAa==ijmLcDs$P+!j}iuEj;;q_SK-hF(6t&u*(3
zU!LE)pqCz!$h##W9aWv*rYjeIUm+JxEFjgC8ezyBN-_G-vS}?09R$E(jR6BMU5U^@
z(V0P0B}3^eADjeW+@$S6T2jX+!gXXQh=c{DMBthD%*Mu<g-;f$bCeY^HW{l(WcT;Q
zDr&=p4@FtG)@`y|%oe)|Yb;R(>wk<jIeCm644SQ*Lc@k-t<920<U$7w70jIMs)|^6
zlp|}olQF@{O#wFeF)_ckjiT>`k2(;0!J{>|O2$aekt_pC0cNlWBQj*NqU$H3%h)ui
z?qoV$6o>@NL$D;;M02ATJ{}%ng;dfcXd{fw1p6fDH854f8<GVBq~2IA$qJQYJA#Y_
zQfyl{H<2a3|0gf!b#fQiA$(epW73*TFOJx(Hb{}lWAvI|2_FxX$+DCS$k=DECaML>
zL_5c+rAD;odO-?4m`z)jE@0QsIP#m%s{3yxi%G|qJ9mC592Bk*4$?J5vvrf&4==v>
zL*Z%RPT^^~#-wiB-EW#fR>F=Qt#Nm25b;_CbGzR|l<+O7jV3LT3y%tNHaS?@`}o41
zF$uNZ<kET7A%4-(^jayOm&JAc`sr7MeRG*R_b<v}%6@d?4)I}rc;w;_N$pwBfcmHQ
zwv-tAVx;U4#K1>Fw7Y~77Aa>jb2bAph2cqyb2hF{`0@kc^4I@JroH*5@Ck{3%HA7J
ze{=QfTZrXPG(~C3e0zG=<=@}#yeD$(it9e|@}t3Eyl(l}7SBEY4FhdhBIcb^!*gCl
znFlPvfq4vU4akQLkM!yPH0F@Xp4CK5WGsrIY#-Z~%66Yny0cS6LL^vZ{#CoPf547v
zDOQeSMJf?e5Ldtea!LXg_#yu@^rU^*gZ%^VuaIC)(1`K^c$#TLNtk$0pons6AR0!$
zLUWQKxeJ{spst%xMbvmTKy*u_|1@&<2(Jsb3$Ne98JRk3nUx!DJ=x2tx%A513Tb^+
z6{A$>`g95<Q&rWVnkYPIwQ@b!&Gj&ch2IZbH4Ohq%|kL7qc4yP&<$S-+&CxHHY_5H
z(yH)BOYV;hYm2<Re!jdwPI`bN?8W<^3mgKn!%|EOF-72@FoD^W`ZJ(r8R5!E(A8os
z#zJ<ArY<)-sfh`v?weLslGjwf<99jXtGd?|md7iq+{xfb<u0ZvU8_<tPY)x{kl1B9
z-I9Oc$!b5j`o)P_ZFE-Eg@)s}4Q(&{`{EobA%5D+5MQ0?S)tM_n+#7Ok~2WgViSH=
z!n~$_SoqCbH^IKOb}j5yH<7$IURnRhmcOJ@f7vo|*Yp;@ROn#-*;M<caG;MKK&puQ
zrL}+j<La&N3CG{tS~PrWR~Xaw>2ZR_y#^#BMQ;Q?NEWr8Kwqc!wGt6zh&EFKrvp{{
zN~{S=Y!iu^0Jos91XK~^De&WAO?3BQ!NF<=uyq~mg=a<yj1E?=Rj;oT{#mC-oVK)R
z?V4h#Q8-%G9*?(^-^Sa^uy(R#c4+HE_0Q45aJlmxlXTd@Ey1#qmN4x4_Gg|Yc9}Os
z=Ke%~B+K-=x;mX+DlIOSzKV;XEp><KHOsn+TSDDZ;>r(~#oOa0#k@s$PSzc6DGpZY
zT%MiJKfg1}p{soS^vIIw;22}*cuMOjV++=yo`T|dD%z@Ov!(S!t0^oRsA=_x^+YR-
zRun2H5=~%|fM4gQs|vMD>7n5f8#?tsN@5RaH1W^l8V#@Kb6(2f^@31PSCF5~CtaD}
zHvqx#ExV!o0Lk}Jze|zj2?JMi!xC>^ZcUbx|8oD`UrHT5QaV&bC3|pDTvIB|$&v2%
z6%>eP4*a&})c8hn-$b+WaF^U1-Y9%4?aZpl@s?;DwsrU3yUt<P6q65z3bAMOB`-#w
z8Z>6`1&HKhr(r4L3qt&ZY~Ue$d;q9YOJv}hM+5p1Omb%T%HEakh-=S^t}!cIW|NCt
zvYY;N*Q~sC1sQXeEuA^!svEU*$tdANv&&^(v#x9Tve5*SsoPZk-nva@m)o@7>0Un?
z!Atj^ZD6Nk^lh>fKMh(sMon0&1|FKqIv6qslh=z6Ed%72Dy!IIOJsI&k(zNe{r5j`
zk_^X6`ZxFWKTWP6!%seNfB&|pQNmWNqVSmX-rpQQ`2bN0Cje~8WfmX!`rCUhuDV6|
z?tzm(+(*>4Rl?Uf)zvuzW2UIDP+k<|WI}{Ib%x>RC*r31(n%p}+BT+-9GkW+IrRJX
zl4DHYwrN6EI=PMW4E<6fuero2mvA4UMJq5i)7)epXyn;=e>z3@9f-LGcf5hMl*Uci
zj^i)l8w{96&a4mrQ~Gl<d_B4T#TQ@fVl3&;$Z+9NT5tnn#-3IItdi@wkNUHjL)f=W
zxB|ztGKYxwPhg|$@4Bt)_DtdF)gk?h+O>lC9!c~%TH#{M$B;EW?N3ttH6-F_R*bkE
z%xs+9eK>1JJlEyUi3|T4SYbBZx6y2}B_?h-TH3hruKPE(H$8SVQM-|~4Xr_@In|BW
zVgnhInnHim#YFuiJF;qqG`&6hB@?p%o1y+ku}Y5rxPFzA>{ANai<mpMN)Ah&m%Jo-
zTk<!_-zA?&{vr7SbzJUcp*q;Kj0|)r6iMop!E}wy2z^yL{narTNvVnoVH4i-jNDD9
zM2!2QMokq~%nwo>BNe-q$cmhZ(g6f}5CD+Sf>5JC1{YNhE(3F0!pqbX3(RwM@_N|c
zFzw=ol!l+B7sM0Mdy|AsMx{H<YCyb#Oc%ouRN_*U#w|Kh&v4I<xMbG6hFt%Ynqft2
z_lELnT+xDAZGhS+q<JzQZ)6b`Ph@ff8{D21^~2Cvoj^|v?WuLlS?ZQr1g}qTH)zR6
za+Ss8;yIgC=ak*1FgOglhY7jET6kq)qEOkK%Xih~C34IbrCnXZ#`1%tmN&?>Ql(76
z$#hO*p?1?0eXP0O(<)bIWm(nM?>D&fvK;|!P?al}G1;T~4{9s&3~cWA(L?15m&fK{
z)~>Hj3O^K`+eU6-gO#NfAS4*o;1-7UNR|0&(@~!?n_WwQKqAZxwy<UOIm0U!CThKj
zdVP5By@#(ohk-AQ56e7iuOn>rJL|JM&?c06U%ORPS!-dO@oAf`H*?OVR=v)~F4S5z
zN+5)YCd&}E8gy1RrguKlTO10oX1m^K%4>6G=~)DM_>yi%EXJsGuk#kUP6`2@0mFH&
z*Y7NFja4Y}-Gp?I88a-Qs4d@6Y3k4^;uG$8HkVZ>6{d2Ts(+j_*H>Op!RM>kkox{2
z;Rsw5Iu&f8xr|1}tTY4tlHM>@EiDGFo?bbl;~Fu({1Z6Pa>+DgRgwURk+FuLorv&p
zv=R76sC6XM%S1>W=qad%1G_wM3Sh6nDM0zsc0|E!6pSFE;zY!kd0?&wr8l1tn`~l0
zKjN<7P2T10Tav&7>10G6STwUFdt$Ckoo6!J;)Qlku~Vxs*jOESa`jr1$`w?}mAukM
zx|OzkuRpal<Z2r=X=!4`?F`f5X=<t5y=q;Sb7VuSIarwG_QW?F5k3=+2p_$cidJ`x
z=qfa6+k>^<P@a5CW!^oxmeBa7v59DjNox%hL&GpDv)nAp`CT&g_Cl>rsm`;T<uWs)
z;grAxF*>czAm!Ag(3+p`9y^Z2s;Xjy+&E`xnc2|LnIxpPt&XsPg6uUf-7ft7w~JT&
zfw+4o-?d@ch@?j;51V6l_vA4*Mm!^38vC%}t2Q0LXa*LS0U5%JS+ZNQ2IGMa4z4Ku
z1XMXlM4({XWT3mXmejMX4KfvQpFUQG=p6zh1P(#hx0TaeK{z8y&FKjo3kEhe;iDcE
zfcF9NrmRd+z#75I#zyOzI${$C4z8egkGJ98@%p80<JU|cW-Vw??@@)r;rU_jo?D(&
zU#AYwZx4H}>)mt99&dA=tEGF*_>L9oaR=CWYsR-P*G_o6S+z$z#(P~a{(6#ymX0~h
z+zw|!lNvkPaUB%ja-FB?(Fv**Bgd~HFZW*OO%_;My4Q{$zEnTq*A43HRN?uNFg=hl
z(mS><pm)SyZ_}ZPIy~6gneFDnlh=-4JH6GN*DM~Axh}obz2j9YI9umR)%Zu62A((b
zEZ(Mk=ZLv$GkH6p{9^nahJ21wkUwmmWFcY*Z$n+v>Jp)!boM~Ci|rMz6Z8QFl};xW
z+VC;%K?kAOOY{Zm7ozQ4hK7!RFs<OIAU!GpmllpI;Su8(Ht@v8MltN#2yehAjN&M2
z{2H)}i04Aaqn!)TU}`&!mSJL}_emJ|l00-Gi-Fk*^s+fGSJuomHI1=zK33Xc*`hTx
zGxE9eC|qWQciQYmB}b%TRaN0^M%k!RI5>`B9d6c9mQ-&9ZPv@IOdauhoi;5;SiiX_
zWHK;M)?aq=IP-A2oqKccL$m)pH~*+mz|;ySZZ3~)-BsluH|nc;xl+!#{ao9<tuwA1
zuk(eK<l6od+H`?T1JZlM`#}9IV4&z$g9_t$7V%+b4<Bddjhvwa_dPes{;<n?iGl<e
zm7L=4l;FnV3{nFlW%c?X69fVdpgRjwQpuN$aZAe>QcRBNG&Y@@wdtJbh8!GYyZ)Aw
zzW!rQ{z<yr$6V!0f9yN2fvtX&Y&c=i^fr!ls7Dsa6c{>;Ot{z+k{O^#r%wLyJLxwd
z^XJOJx5<aJB=zihi!8!)G2R#sO|%1@7}M7(nTVFKT5^$OkK``NBa%L}hm55sW1~dR
zLdKvUS$-gX)7(xLDi`7)kuQ@%k|>eNf7|~5`*>4^z8HR_EXsbFq6_{Qh=&*U_cl%k
zwM=iU2Q-PXbe70@^dA>Q@*j7JJAQ6|4-hly6bGu#Guf4I3#=NJmMq+jRMnDLMGTM8
z6FZqoQTr`j5OI0-s_>JgLyrB~1ISJSSW>S5iIM8Fd`kT8G)kmiG74kB5_qw%knBSo
z@oyzBOWuPdb_$`9K7a)3Pq%~9W`D><G{$o<wXhT{y#LcS`!nt1=i1NN`)PZ^!-?%r
zv^)NPy#D{%KF@xhv$y#qH3*%Q&?V{1(Epra|M^dAsb6~Fnd2BV*db|w{?nDuoFJ~z
zW}KuA@PAlH;lTSrv~x+Z6po!fRrvbnRv$Qhz!2V}pItpkX^Ap?GR&C={n^v{|A%9T
zTnw@Z13Z(S>*IUiM@0O!f@)4ww;cr6QD5gESP1B%!6;MicH!*-Y@P77+wB?U{(vm~
z0JN-bp*I7tds}$B|2Yv_ml9GUw621L=mG8zKA<Ojn8DU%>?tYOyL8Y$OA*gF20al|
zE!BG<J5s#_@O_9m17Z)-sFiR4wu<>;U}OpgXwsPQkfX7WgsEmUAWlI(Q%5G%c5JA@
zvU7cnaQC>*j%_XCf?T?a7#|JPH|92fQQw$ue`M)hN67HnNs*fMopiZ@%<df5vaN$I
zxLD1ikt_DL(dCWlqoY?X+1oyP^^%(kpB6q@QBdnqbx+<k;pned9UZx-rv1hhShnq5
zF@N>w_PtA1jc&hb32b{w#B}vxOro)&kk4QYrL#`LlzCOWDbu%nMm`flvZfG|KV$j$
z-FNRE&whE;GvWRhXt!eH;b*Q&eRI=I-{8}UJ`2g|xFh(1d6<`@`9woMA|kP%%i+S5
zK1F0WhSZW`Qt4EZc`V(MZsAXaeCedS(Vb5ELclEaS@QrmjTB5H)0hpPEE5EQNlSt?
z21ITlh|EwEWF@giEs@COAQx(+_op}^iJXqHgK<wZN*lX)$U%4xp2|b?H#)dYpNq$H
z0iZarGVp+aDZ<<f`<XcTVga^Uw3{TkMp!H?=3gDMk(XINB(w^x{0|YokaQ#+LXu+{
zeqa?OjY0AN{`c7sebyJuB@cvhdiqG!?Mv^y_ull5!L>Da5asPlpLpVlbgj@6s?#6S
zYL9`li=n^zx)AA&B=wJxE3xcTD*N=wh_LiAeKO-y5#$mc`A=Xw@xj(!AZfrCg?F2!
z%%%|*5?(3e55O%Be>hdJWqz|Y>@NYc35+My#uxNsQ%rG0cZ281FRKs`l-S?BR7$Qh
z-dVrO@Xl=E(CcZ!zjWz~bC~pbD^8Y^*o%J<{*O3DPI*%37d~UUCSH7g{XNT97LQ$?
zYDwS3-Mc~fzXjb-ryofsKuafo;|MWb{O%<N?~=78cO87Pt@Fw^+)bONJk*tS=h_kL
z$5lB8z9GJ#*#Eq+|K#CKTE#p+XZgRV4M;Rj;^7MzWbcBcY99FEF=F^p4qY*WN~cUs
zY>5q#oGdD3s3+{Gu!C$mzxRqo(e`nj_uaPooI_7+V3f_n$&KXNEvegYzVOAmOI2;f
z%Txl_vJgS~zx%NlOt`B5A1jvKoKv>6a#W5%c<Rya>B9YQE}Ng#F-&RRe*ZmNFS`A=
zffzY&T}2~NcH;d+T}$M2l)?WJg&c4iEkTi+0V>Z^9RNlas=*@uckms`6J|+}MwkVl
zE*N-dTsD!&Rw6C9;`uACcs{*j*L;_2erJQvcU_02%bc~Ubv}FK!A+YVd~oxo2X_nq
zIxLJ(Kec`BV~&r=1*4{GtdwIw_4r|;;(YY{D^5OnWS2C@x2K~s>682AHEryBn;yjZ
z4?M8>3E?~8cUvB~Zsk;R?@dJv+4DFYRsX`H578avc%LRj22up7SnVaEaV$dP+@Mb2
zq4CIrhOk<yv{1z(Our$0M;S}sp7uM6nufM0!ngn%cx!p@vSq!3eq~q1bVpf1%^HWj
zw6@D??qd5hrm=g>SI?M#gOW_%ee~$=YyOXUUtt<iC%mzLHQTp(|Mxqe+p%NzoE>a-
z@3Q5iMlTbdyK_ZVk=cxE)U2`ldFI@H5%zHXu&HY<pVxo%+TBNAxkh-BgjbVSLG3Q|
z&fc-(xt%*CU>iR*LHY$S&l*@|^Pwk?pbS!QI|E{fuLT9l>Vn41g5I@&W>ri?f&GFo
z2Mvui(Ha1iNH}VO&g<oAc2F4t;36nVu;By+uJPrN>aA?EjuED!@2g}wMSvNZckt@^
zbBcT{_aqY7%7ddWm!=M@i%rJXYvdmtmEHZ<%5=2wE#Ya?`{vOxdvUPHUc~Hq)u^&+
zVxd}piz@JUQn_L0+rqRxfv#aS1_Qa)SFTn?$r9m8tB0)&yDHj4Q)OzVO1NO^@T(S#
zL(0QB&KiTUe&dAnr^5A~AR?Oh+sP8L@Ls*u%05spT>iM4%=WoC#%#@Vlnc)Y*M>(1
z%>k=bX=I0!#ZUiZtZ<om!sHvKH6b*Pb?J1qnKqKd_>{s3P3^i(18oF$Y@`P&pb7q@
zvO&%Rinll&IO>Nvk;2BP83HY%nxOt@^RQ6}1388?OVhV+Wsgs0?25ERVP|+&EE0^`
z9;D*zmtfJOHEx^cUSPX*CM%hFt8IaM+BUL@o;Mw^gE?}ONuG9OHsL}9goCExOl6k9
zcBF9hZPPbzo-Rz=Cbo417-4=XMb6q`w5^}k)dn8)rye-Nvy7(}Gh*3HgK@Lu%)3+n
z3oI%!*v)_P(IJ#lCcqSZfges}9(VST_vZX!8Iyu_9WRljFOkeF&%DGjD#;zAuOeiL
z)kL;tDxm*yaTD@D7Ic(j;`>P;SyBFLyqBneU^?`pM<(c}IK9OD2nZ!U*T9lL1{g;P
zQHC5spChCsLWwhCBD+2mm(S2;iqgWTOcCcZWEYknl3hS(8+Jq-!Js3u!vGXFx%%`X
z1<rY#5E0H57emGxizFAgB#MO@V8aq)k0`{0ItI%VD5Y^YgQZzwsR^Ya(VjS14j=&z
zuOmZZCAfLs-w7AokmIuQS=*QV^#HH|?w;U3gg;)tyC~?8dDm?rwpZ+0M{sd$lkmWO
zf9kdQvVAJg1;5@$^5<Dhp4=DD@&l2UEYpgBBG>GZyXL7}pT{gaax|rmpxnPf6C{R0
zTib|2S=j5#k%yaW)!9?dat0A<n-h5qz>=*X;8^v`SQ&KeDAp3DgrAcLuh@xA;PZBR
zg`=d<4p03_tdo51mGomi;T*5<g_jgEtzNRvOAKE0Jp=w<u8?pmC0fj|G^2eDF#F>W
zBR30JjLniAk}JV|c8{b_@+!PN3ED$3pu<0a5gVJRMq0Nr)(md5j3YKqt%Cs={mM&V
zt(QUujwTQ>MqnxgM4FbD0^omUM`j%X;ov|kMM@GAVteUvCTv*~XK!V8i8e-rGO=_w
zoddypK}UkYEyU(oO|oKfA7hGR%Au_RIi%5mMX8P!NNn^DF#hO?MyUXe5YZ^CBuAyz
zAaoLmQ4tEOMf%#4pPP{;jWHM)?Ifp@kt=LAg`7AKI~*z{W3ezw)pVPUQEMy~jk*Wh
zTB*WpR!FsEi}0SsqLk?wqmj|el+#Tnl^ko>maAr>%xuC2=oZxEl4o@~9aI9XR%h1D
z(rWcqJyENP-l}^|YjhfkRH_Dq0Csag*5}@Ne*Zr;M)&xhr-|1PuRQ<G+rMH|O08Cz
z{?}JZP1#YVT`xyCt6rLZf_z4lGL=H6A&XO+6pBqLMa#=CD3s5?tU%BF>|g&-ss8aV
zHQ)cOM)PgI#`o!W$Vm6yr&5JrWzH40e<xEJzatxrs!>ATw{n%~Tk@(&l_f~OwphL<
zCqVa}HZY$G%oj?XR`mrDRG?uJ%%7|Dde!ITbG2SC$p5Y}8a2z$XEq>ISjNkZ>1)ov
zgE4B@ZHNjMe(1B_iMB^&AdI3IXEcx*C<ChmAe{t;8VbdzMNHR!-Qp<3aNy9ga>hj7
zB70ZAgoM~V!p$$OCVPKo`w;0RGhZ4!{v}p2VcgvrJjUJQ`tKgHL2`y{a5*?8l{pSS
zVw`E_9ZV7@{DRZbcUGeBT!b+Rqb4RXao8LXXKXTqpXO606l_ghxNxwE%@d7RW<mR=
z`Ue~sncxs==LN)#+F)tSK{bPR4D&8t8w*GlT10``FvwwlB#ysPGhz&JD2%@_?;>#3
z3UEXjf7lI6*9ic+0Pae`^tPR>QL2SMsL3oEYnGOP$E&ou>S`~7xQVo(=)(GU4qQK3
zr?C@W$tk9f*D9E@M03cl(WrbDVpAIxG#Fl;5L{*BOWVj61YAL>qYM>lvf-j@87tpW
z>Z<TEtL-a0inJWJT{N-LyHnEWn7diH*rO(u>JvtU!o^7M2?;aC>6H~*p<IC^KIXSq
z3nyf1!YQ4xdHD(*!;D{g@usdDOJX`pA>z?_@A_f43oiSGu}SQ@oNif|jUiqc=UP!8
z=>_F32*pk3PFPZ*vcpA%CN-p;Wxmn4U-oTG7E0BO+K-oF$b+b15-I&yI4^>TevPA|
z*`O%f1ySQ{Y5ZqvdO^$W`%*F%#Lt9hQ~Pdj5nk<{#WM`}1&EZna`}}EkJxL5;b(RK
zf@)(^i_(k8hi0c<Zf66C_GGR_m}0xxX`y+9`78zFPrs+|feg=SCJzHmc&5K)>S63J
zs|Oki5QJx-ntFo~>>H%pY^E}xqM$b5MkoYvA@~kW?9WyLsNftU=J84%FU=uI1-qz&
z1e^PwZW2CepU0^YenL2@YGH@)Zu1jQ{eo)vbm78VWF|Q$<=}w5W#K|%AkIaL_Q^~f
zi|eTOp-#ROKBVnH#1e_)P3HY8s08{;dZ}0gP%Po!hLQr;BV~334uMWAl-Bd--#Lr4
zPP?Qdr)gAseNmTi<y6A2UQ_0)sPp}@7raYnOLdJ|<1#Huzeemp2>QDw`*c6`PC1Bk
z|3&YFAt(-S5J%N3gxme>D{!fPNgp+SjP6|uarzfLH$e)iK6*+D$1m-L*m8QjAGFH^
z!4#H29_}tYGe9>0-gpLnEkFNVf|O((Fhz<rz-WqL&;*)(OzX^m7|o<ozzNd-Y|Vci
z15-#I#Ozokzv|tq<d#{fQP#j=G1nW1^aH2=ke?gKQYj2&uL!rf9AnQtcdWxzPdb4$
z6r2bwjFi!Dg^6xpzRR?~N@S;<{tLer1^rUF37IabB1Cl{c)J1W(nIM)FSJ?pBI`;N
zMU+C8mf!^F+&}we34|P)JMvDXXF)QSJN4wC&$MNWzT9l#4YOy1%hvdW%RF(Su{;8f
zu`&~5GXH|F&lbq7>0>mN<XxiO_%2<#)xM8hx6dLq7~+=o!c*%lalP&u^R)hHCMFa&
zS6)+TjvJ{=dUijh*4JOwrq8ks@q@J{vSEUq=4YouF$=LEF4@JjTC@t`d!j%x&0q4$
z$YY#2m*5IWotf^V?@yH7M2WWlZ{I%w+rgAy_-1u9b`)c+jrz_Jj)?FTKPUynyhSiG
zAUqMa21vOO6rdZ^W9iQ5&%QC~kvmnTDpvmR!*UiYPWfN8cv-FXuV<GFt28?1QpT#O
zANc)6HG(TgaHVg)!IdMp1Ib4Su1Pq0c6nNgE3@>{pkLJV{|+nAL!+nm@Nc5q(1;$0
zM^XlI4futW(0Z&+Dmx`;z%>=+F$`--08{c%b07caoO2rfcx&P4E_cI%*(-V`x`@j;
zY3;gE`&aF}^~k{oo~)8NnyMR&zN(UV^8aqFW1e}|cCqmFEzbNRLwxxa?}In<yqDh+
z_6T1*+q3^4!%6H=-@lIb?b}Q^bu??<n2Fu9rabn>fKOla<+Aw3N@!C?SkfJo8^8o_
zI-fw6;_#rs8M>Q+4?{*lf6ip$gGD1_2)F*3nIb$OJoLNYv87o1MtGo;=rMVHc^Mg*
zzJq)5cfvzNlfHv34fMZg$+Pso7znVXSU~|SIp>ji?}fH(>3^H-I{4m&4?q0ywD-t7
z&`*A`g)pImWS4M#Zu;G9Tl!s%h6&iR8RREo0+8h2rQ~oF4^Cf%UjrF-Vx~<}RSZ*I
zE(2MIVn4)+wu!iV_&KCBJ7WozHtAvFJ})oAL?hICnfWHzmC33lUvkOkcX2xQWGg~>
z@BaL}sp{L$pV2vjL?679*l!~z{`9L2m(0`GtD8C#ot^Q#F%1oEW0p0nz3W%&ub4Tl
zv7>Bsdu8sZhQ_w8CH3p>X8H^Mu<rIxi1P1uocCCHG<U_VRW}^IMfm(Ssa^PT-OgF&
zHf=*wdAvENxvQ%==Ze*9cb>C2*;raREK{(9zN$DD5BT3H_a=?1Nud0!pn*^pUZupA
z00^Tj5tSm3ES7<&%$QX!=9c9_0)sU3X6E^ShyF8t!uA7Cb=}?d)XA@&a=V}EW*W(c
zOu_RclPZ>-{Zx1NQ$Vf%1X5Uw9d3Fmy}|)ud-_SSfJENUoGgFpK<0AjCt1h|evE%Z
z;>VXe18_1@Fu#N{v}Dy$lYcahh+FBgOa3nO3B5w!-!FNJjDG1I;T;eXh*@fdciwr4
zjDCtq-A8v`@^_NF?=`aGOWz0iLhnbEgMcy@d_;QkKk$7ipcWA}i23ZFsLEMr>E*^m
zNiljMCxS`D0CtQ<Gz=bkKMmiYre7M2rvpy~U_^9<GE^YqT?}?F;Gp%CT8q7Mn{fbJ
zZj%4`83c>Rk`;cwZFtH2PC&AwZk-Esg4y{wTFw0ENVACmqI*lPKgx2}QEvCVye^Z;
z7cdw4Cy!~hT58(tTvkqTwpOE+DP#Ggikowbz?sCpE1Y-gkZ|y`3z*$+64-JWdFkBM
z*Ij#OYe`h^Gw4gVEuZc6IEwvFsdR;*#px<qlI45kp@L-rf4J3PSfL&6@l@P+D4Fjw
z`wjZ|hSeLE&Kp~6FlfLX+E_BWeeV3Nt%&WO{n0hYNmoYh5!;#?dTtE%s%etNlC?nn
zT#w1l5(z~CLBl^Nb)XlLMf3?9ti`Ze(I`e4EEqrn*~(coGn7*3jtxx^u^BRed}y<z
zd$BCR1#lS*lmmxF%R^w&#cmOMi4zj^6!9$D6aZ>I9Sj47n+C_64wj)Xcy{3t;pT-^
zp1g)@-ZnI(|2o#{s+>8q(rfAp^75*M!p%o28Vqk=(~!6B6Rq}RU(=z=?xM1(WkubU
zhnjpJYqg*F8xK`aD#}}&S2U^mP@|C3P(crm1S=Pk9!@{A(q$bR3U-;imDb8&gx;j0
z;T429XfFCd_&s7}e*eKm7kxl#5W7<I!Gk~1LFP6}U%n?$TvGX~ya{T?;I1k2A0#&%
z^jB24XD>Zh_&9LS%OJK_PssaKWeGE7bk2mF(NjBbZ8CnPRDNY_y0vqvSTwEU)@I|E
zO68Zv=36_MNF$?~kh8xcr^0{F%jpBc+=KqI8uz?&m(F%qRQMx)?AV_(LB-(KX^Hq`
zc*ZkN%k29pbUyV*rbJ(s3^CW0uoy3ptf1(|FpOf9QHdS+wI<@yAcjwBu(VmQ6c=8m
z6b?EH45R2<ETZM6QfdcJ1gU((;~b<8z#Lc_57IK4R)7w_r53>0DOnSoM;S*<`PnH@
znU-mbX3h<@cXoy%caE$qshO~<IxmvFEY{qSd#q=qtGKwcTN!S>gkdgW$q6rpc|}mM
zfW4fn2@zHg?ak<`h$MyQiiQ`Lv=lS5hhmgJXsl0?YsZi4E)8$=c$QBnnXh9F&2c*$
zo}1qk)E{n2YI&bMPp&&}lpO)v=eQDNTY=41B&;b>thIE#&z#?7w)+at2l>OB;qvN;
zop}qqD&bJPd~C*5L)|+2Gh=x(#-YO)hiLs$8|GplsgTtp7@+wT*fLZpU7<aLDhrSl
zP%*qk?*|hJ>J+vUEW}w38eItqmZNf`rIh|C45<UGR&nt3V=fHH;*_2rdrB=dRhR)6
z%{aHj`HvZU$IbWbsjjKsuwgaPgmU$}HpHU&trI4+<_p&jTX$Z=!%g+WXFPd%PuEQH
z@VgxMF2_u3ombag;*o<oPil$uNdG21psUo5pIDpza%5%I=uy>G*4gvtuv2ThuDXc4
z_`F(~o4xr#n>-TrA-kYAe{7|2#8J7Z{f-(gd;Ga>&c1)lWrqs;pUj`koHIS(pOU_D
z^8LS$#%g*dRg)QD^LVnOJea-VNlv(W8>d}4abi{VBvc^g{(<%>=A~8;kSobx+W^dd
z&`(FbE}}m!n<$swWH;yBxQ58)FmSG&`4)_se1oQtH<eTfCgCu9>6u;oagR#y4*UV%
z$RlzEQQ?Bxx~K<?n!O@`;$~!w5)Ni~?1Ur>CmCdnIwnIbM2*apCK_K0`0o;qZC^gB
zrnD~peLitnc+7HIOQfYaR@<sy)=U1mSNP`UWRu0l^C3%V<v9<eIyzDhJcXY!r6!WC
zOitVT=T$co4QK9M7Hk?N>=5i$KjSiQ`sTL}ZLR4Z5zHCAtN<PR+r3&oj5~9hfz$DG
z&hq)@m|1IDzjO7U_fFl5dC)j84=%u@NM#`aWfPQI1kK5dG{3abQ7#}$#*Y#J&u0YL
zfhhkq#comz2`orhP_Hgp8!iCbA2hi*3JbwPhoi(witCA1ZUv4)duZcjhc39FxT~fl
z;4`a9!pL%+6Qd!8#b8nCVGZM}+stDVazMkA|BSB~lhnzzNqP3YUBTv6;~LC9RkfKz
zvdW@08lICI+p=MH0vY66Ccn8#Z>>{bMsjN!6PEI-ku9@ESMg(;v}J0-^JMuS7w0b5
znX@cD7-?=8W)2tRaCYfAMyrX35sT!5f6!STjzv9;6_lBvK768%HD@<*NHttQXnIdk
z?y7^F`IN{L?uU%rCUVHqK1zo@akLs-EoXkZnBZUz#7i_Tpn#3a5+TYeLYd_#dc{U1
z(h#`k#S*5uBs;gUF*loal*U~7`L0;$=f#;4=AN=BEs2&1-}$2Zg%57C1^v#VI#-t>
zJzRMAY0~-3eWdazv*eQV6Mxv<Ob@t?xcA>e+y^*iS4k<T<b)aSynL5CKaYHIcER1;
z4Z;t5N4B%9k~1)y-+BSr<ca&X?VqIU&wp*=L+6Hfd`-Mx@7VDT+7Go0oI>A#R|fn-
zu&3e;qG3vLMn`=l-=NG{P!dW@q#yXDaL&2329-vr{@Uo%C`>lC=j2i0{4mP|q$wR{
zgn!v%CnO%Y0uBjp+Bjf5$TTk4KkHU)cFe@~QB_pz^SCGfJ*?JQKf0@!=#AcW;GQ7N
z<N;nCa^Lh<!s|wlR$;OVu`tU9rQkDo;hht6$!K<l5IA%9H-tkL@$SF>oi;maX8SBB
zw0v&=GnX)%`~NoZ44HYcOdJ!a{DCi*(Pc}iWH`|I(H=k{g-Q{v<}ma?m=r%QWf!J}
z8H0%E83q-u1cZqn?7c^L{#>B=FH!3BvbI-O&wt|5F=H-$V*bp7Etk-A)B;d}v8Z?J
zB4WCFFCq`qCkDZL$3!R|>lU7)++0^}S32aEDj4OA`8fRuuF~3gDH32)EFsOzy=Bgl
zbuV3)$<mete?bq7C_j2P9b`U<BumTaML8VgAwP;H+bZ;DBx_LwpL>8@b(Z6hmq6?u
zdXVtQzxf91Fn&M9rzk%aFfXVsQ6;NGq(q#$=}<**)WJ{ZWib+A-;a)nqTVnf6_5cn
z4t)>}4PzEXog;w~#$Z1ki{Lk<(<R+^_7UQBrMvR(&(FIr&+ZK5Rq6eNXu|1f5e@QK
z=#wQehrRGnLGIl-His{}T!+0FqvTqJuBISlw-+2L$l0Ica0GHIbU~cxWF7~50|^?(
zlsX)^WbQq=4o5J*3OfV(n!=DhC6i@4d|pnew5%o<S(F^7v<N$PT9NtE<8$W8WI1-P
z7x_kQYbx1%w!l>qh}xw}&MofCb9!BjRB5?P=tIsR5L1!lWmvIA=!w|rhUdd}Y5$nj
z@Zd2XuQLzdk4WtBzY3^hY>D1*R4J-QL@7{T4h1Gs&|F;1!b2qrcn-4Ri{yl`y@Yd0
z*^pzgBXmX3x!4)Jdgi9a<fKV!myi<jo+HFJwRw_6>QKc`rW~P=gL~>^9sMO=stc>u
zp1<?XHLJ42AyJQ@{e|M%2J?<k1aT9PQ4(sSrs%?<9w&k_6Rf24mpyymS=%&g5lvG`
zdW2r4kAnIJc-?yYdygHHO43=!&J?mhoemzrB##~I@1<ta!4e_?n*+8PNeV{eREqo2
z9s$_ZGn8=yhlyigW-JJ!eoL%0dkE@~^6X(G$2=OQ^J*5#F(&fRg!po<5A1BhcaJl|
zbyGKC^@2@P$$W;=z0p<SIye&MPh}+ZkjF1jTMtg4yCxj8sxzly&5pt!_0_N>E|DPH
z1|+>G%%}<4&@;lb7~m`>2842kdFnKRX;3oaB^xJ=tNn^$zN#HJY2(KGHZfn-jm65O
zv2|Y|sE=$MDk`P#+f=niuhp-qLb%_?NizMK%8mDJtX!j)P1?vF8!9)6SVmEIG{8bp
z2aE9}WF=dHrxwk=qJ>v<Ou!m!qda?v*+Xph8AT3NCjw<ns5mItXqNE6BW*Bs)1Tfd
z&$L}?RW5-#4RbmjQQ=h=CnAx=4z3O}Gt6A%SbS%m((KTva*Tm3;~eax1>ZKCOv%Yh
zo)At7f2FjnBAx2Pw<Jw*Q}aosTBDqzP$-?sZspr5yQ*8MRJasV6j{KxP;+yS_SZ(Y
z5&!l~p@%AQm=k%?ZzwS<^X^>iC{psVaa#f^a&N&m&A4FlmWM^^S9%ZFIKlfmIcYLA
zle~cwab?#R3c6H?C69~O?j5+5(Ku}I{&=DcPF1X14!C@Ld06RKKXaA|hyZ9WLm+u1
zYU9HRsSL0LRFN&gn`8*8j+(;EIWTVc&J}Lr|J??}oqO%vFY7Pd{Y6}OUwA+M#qNvh
zzMOllm$Y2A^8D}4UwIj6VU8R*BHYKNenP=LIsAo_?BrvlN&QmChJE`sbiAY%o;Ws{
zJ^8}+nDF|rXml9KiJ>Kc>Yu7U7@IPDQ1zHiY1R;GVYn5!>kiY=A@hYZ6D5!jXKm9F
zjgDUbX@8jR^5dZ3&mH;m`~C4Uo)bA9>NwaLyc_};espuXotf1sT)&St6D)?TGRdDT
zPCw<2Figb7ochV#|KTi>N(;hPVQX42l#br<AW+J6M163_=u*R(t3+Hv$`zr>CNgD1
zvWp5s5{;f&-4$_d+2V?%|A$k^r5fdYhRjiF3}qc7I;+Crs?HH`C`>$a*KxQcE=)hS
z=pzx^E@g3}=pCRZL~ZT#1ON~Xut5lx&eUcc*{uON08|U3d`6q&Pp<)B?F42E1NRRy
zJM%GAHH^}96C?Sr?6UqhDb*1YaDnW1aE<FrV}H7j&ICXlFR-PPOkY1dX<|VVpm2$e
zB#s@UbtW#wF&^zy)Bz#q!v2l%g^LnQP!S_6f<S|dh4_{JB^(x(?C!lys6Hg@euymG
zP<UJKZeX4lwugnKpOUL03%TmZ0wAApOyLIckVE7dddyYf_C+}NQ*tF{61<1wlv?_C
z+>>TLszQtvMYxNSj>v)_3QAO@Im7ql<stt7c!9s=HejI<Cn}X0>1+=foE6>vkVT=e
zML-E2DW}+g0qxjgNR(UI1)Cq(jDO_2P2H0>Z=T$}>HXxWlfN2Uojav<O6g?xc&6DU
z<(xs;629Kn9BD0Wt8IUF?a6VA8qc3Uaso%>ei`8=j+%dd!-BCV*E({dFq=<r;y!7b
zZi(iw?y;*^j~%ya)wqFQ;W%^S#J1+C=^3_w6;Z1kaZ6c;a|&h6XQe8=&1b)Mp76JW
z%Ys>jrOQYQES*I7_41O!tkCj<#5M2QaG8ryvdqK7=gu9TZr8csspKTHAy4i_ol!q6
z<&!|m64QwpObHr;Z$XeC@yn?D)x@T*VtiL!l|DIvw7dzSd8F_dSYno+%Z(I9k_YJj
zv|M0aC;$HDo7~;~Dq$pkFC_j<8=icM@OSfRWQ@v%95YffhmKT`I%QJSENWZSf?);l
z!poo|oEX;_!8Rr%>f(a^n0^QrUm-z17`_DZ-=T;mxdE-G&1&Sa35xRsy&xnq5mJN0
zK!wb!qvfZ98jkQ>%^p&%D|XmjyV>G3!aoc_lNykvoS^23*1T~x2U{uIUmA95?=I9L
z*Jlw~^}<NGJKfD!S5*iX%3ax{vnr-wBg~DgM<+bn1QcF@*6Sth8%q@KaM5n*o0~yk
zoF!LG&(T@bT4no#Ehd#h8TlZgi%wz!j*^atnwd_I5#T`KaQW+Itwl*Jot6?yF3^3A
zE}4}XGuLdG#7qdfa;NE(L1X%N&qdA34xJqItk%L9nRB2~YBJc~q4+79r-u4*QsTEe
zlMyZmxwQh{5noS~^60=orM;p5sSJx?UCQf#z<{BY4*odch18QzlftD_yafL8A^#!d
z!O1O!|69c)9wfDN^bbJJ5;P<sbqWF?D-qAb+JHY^{OwP&ef>!~T5!peeSTkrd+Vf#
zRppW?oSGxi$X>^L&`5?#8hsNQ=(QGe0tS<Sh=7NPNb!Cm5f~VHC_)i23-mxV03=1A
zmKPIv3$RW_nIDyN=Gd-{T^r{!9h<jq9>E&-C`W$&(dQ$TdnBh+>We?VZv27Gv#S`x
zZY2OyBt_P2SMC;6st1M5LWQvTL6yp|2gJf0<7BwUm3uT-o3rxrvdkMw@MpJCqwJhC
zsZ*&j?k0Nqf?0WWb$PpuYUTD_yS6LUDAXx#+PCi}1wHVwKmF-3dLTu?Q9A&nV6oSo
z@k-UhPdpYrmPL~F=$s-#*jh4}6K)VM{Y!r-HzX`A;+Gyg=WM=6{lGoW=DZ`R5fm3e
zUJ!qT%nyqa{2SQ%$wGES$NUcb69&&849DX!S%_!9&{1|m^t$s{#zpXjSU!ThAZ`em
zpMkBPEKH+)mURqx;F(k6X~?W8PDi4?A>1LBv62%KdYqIl(To)^r+k4rkHRibtuKrp
z+A+}kFuI9BP}DF9=o3}v!~q124L~~#QGm2Yp#;K80}BN8x{HW(2&G>btrLYno+H9@
z35Jh4PFn1&B4`XL_{g>k=KW^r+_+su5K}zr`hwB#F1xI|d$y4oOH{&}z~X<*=X;n5
zfz3sWma*%`tr432PLpt_&gu7BDvm9EuOiIYq6=p1X{ncj7rFYuMO!}UiUBs)BTs*)
z1o`Z5JrSoV`*u2pM+f-Tl<-D7;B|slWs{gddl4xwg@uU$RM2QL(h>#HgZf$A;YVLG
zl0$wIQT7Opo4-^W&Ft;P9i#4#aYx_(jN}G|+H66>&7adGyzLmnne=3yCCIN}dz^55
z%q53NnLa4o_=l&E4%Pk62f{t%3gK|tBrIdDXQSypVUn<cDPjNuATGVbX%^<8rNj0t
z@^H~SN_J$GsuQJG39Rs-z=p$+M?i>Q#)ZYSK&Dbq7n*`JDF?m)27D?iLX(kMOA%T@
zfiG0Ffqf_p6^<=Uz=~9Qb}N=Wa;dfq39?xAiLF(tr0^|+?3lV+4bD}=FZvDP!*|ZV
zleuo#==FO+)Lay)iB4#-+S-?Fy@|QJIIp+>9J{11)nNVZ*TGkL-3_oO9~YaG97`l8
z*{J|YePRu82%1q-h4#rUt33k4Y)Nlow(4E0rq3O23t7Bbe$|x$vS#+eW=Ftc^%IBu
z#`5&R9&0=M)JgGTyx2DFr|X7BOXMQjAPG%>5=Me~z-O<M?3Fw!`Ge#`$q&eT=Rlnz
z6&9I<tc921Tcd(9$vL1LMi?V_>XC8J2#zo#gSvuEokmLq13>Ks;moLJ;z3yyYjIm?
zg0+BGvYJ>*qa~#P6T$wBIE>PGX-G8vh!q|}3>8NeL~*NpU@c$^L@~tDK^DVraY>x&
z?bc$O#cGkc2@KvrDU$WVlNFHR@nrPQ)cb{S2>N5OmC_7h^vhB+a6Q4DaVe_5(lU!#
zw4+1&r_Wz*i%LbWS3HQz&{u#fCNW?^PSAZ(dZ*GecfnPx^t#xIhor9}Uia*q{^*2(
zor4b~3k1>VM86!(%Z+PMc6V6DU}B5XdIGL@P}a@}*xZcN_4A&%c+8lK56{0owQc&0
z+cr&|vU&5AsnfR3n7%D_{rtmp-xKq$XXeNZGS<WKQYnu_OT3&xCL)lch<^YMWywja
z)nv3<jV5wO4c|g8vO>Nw8Bf?kHe2W-ikXB#O|-cKR7uZ5(TT(GVQ1;IKD*BA^?N;j
z@0}ix!ATR1xOEQ{YHbdiSq;J%Z=uHSbC@*_zsJ8-uF;r^io9-jp=FLI67~A6TB9W(
zn-kh*Q+vJO4pAtKQNPEeH5!aIo6)4#n%(}Fki*jDi6SSb_5z#Q<DrMiH+wv~iYRhL
zYe(W?;0=I83g|2Ft=JNukUsUip&f`jFdkJkk5<e0MPPHN89PfjD!e*t7Re*|>lcAS
z@#%&1i23tyME{#Ci!?+UvreNCDv`Mgsb5hG8a^*#cNk6fiCMnPiX-Hp+aBztPl4Oh
zyHn6D*0IHn$3DB=tiNbPC^UlpZ*J0?V|6jJJs@Q`rA}qn+Rc8tYS7vYi29IOYhBsd
zuG*5FF<(~HWYziASy7zd5#-z)PSo2q#2&G$?fT0GFSTxP_hrrNTFu!t*=E!SBi0Cg
z2=SRH$2YzncHm7u96A(;d=Z&(Qi-??nsK-hIGvf`4q1jA<d;frK%d8~gq}<LT-YqG
z@RSGwC{+l@$U=^-f${Nlm%>~oib#XKO7tb8)6w1$r@c;e$bb_`&F~Ni2jzvZn2Fw$
zz~B)d_)khj<Q2VL{NKEWq%!0|)LE@NB>ggJGS~kwcJ`<lGurcOybTQ`nVs-hTo#W#
zkX@Nq6DkPHO>S$EEhn$FG)b)C?Be?Rg4{?f);@1;dk*(~!#;TB_6ue~koujG{(Beh
zUbt{KVXkcLp4__g$fK)QtXTahxoGr)j=G9-8WhCenK&*7rYIphp6F!0FZDa$cKI}A
zbC$PH6CR9|P9~in$MVcdqgHQm<%JWmV76W(Ra?!jyjZd}yEEKSQq&abG|$;JC;bSc
zi%r_K<?^Bk^Lu*Jg>o|C*fHU5MMZZ-d!_K;<@%9@Wx|6OFrky`ijgBLxNotf;yC;P
z19KdM9L-wjp>Ck8BG5)h!T0r&<gXaPc@TewfP<L{Buy!}uIONlaV>0%+sf$hTN2Lv
zkjxKXirD2~To#O4g3+K1RK6xdDPT%wEeGp9$`Bglw<U0z1u$iCfD9r(_2B4)iP0vG
z^$`CP7=Zn8FH=5PXb4(x_h@E>rgN{jB|EL-iaRh)`YmW(^uJ7uLBa*m(&$7XGI-Ke
zN;nA09{>_C7UNiom=;}hVi~*+tXPQjh2p-!$Alh2G7T7~LDWZk#B@Y`_||eS0j5c8
z+}MXS8)x<*jNC9-9f5cm&Im-bpfa@rDJ#}aeD&mfrlGy%ww*gk?W`wa<Hlwae@@q!
zT;Wr?Bri<P>$f&eubjT!agn2CWzTsF$9FQ<sSIv=)Sj)_G<qzufN-O`UOrcN=gl{-
zyXG4H)lA!3;z&5&GA%PR9;CIi*^=4g6^;tW-vSRGbR4q%Ff4YDy*Pb&Ztk<z{UbBY
za80TA{)A2Vy|3aGTl1&oCBkiFVxsJ*rP}vvxtwDRmA+rqr1R}ohq1vP7}jt@QI+tS
z!{RhFfGJCDGqxnJFNR+7=Rfbc<{IH2jm-CRH*E?42NNiZZCxD-78eJ<uqQWe^gF`2
zVMjc+WmTwZ)HPGrZFgSi7_sGodRdOn2Z~!)$TRhvb7w7QCoE21IBHaJqI~3eZ`SyS
z#XPm-YfnvNaiQ?ltN2q>Lv-MyCyzdwe%0(XgSv}M>Fy@F$&>plh^`XnrC<3lF=|wT
zxwE#mprEjD7ST?yA%cmit*xpe>+<l&ia+O^lb81(xriQ_?xqFwPgRw0VRiLn&D>d>
ze4^cc(iT%F0-o}GzhxHDd0~0Nw%;391a(%WY$gC>p7cuGwE}l#_6uJTU3%q&Du-Sv
z1BNQ6(xHc+GOV2wta51Ju2zM;w9pK?-$vo<7hb5Tx!}@jjIK(9#}tXZhOa3(4AZCt
zeR8mWs=yNvM86y>IS;<HeUe{G4oUt<M^*?FnPCw_t28L18bJvp{h{R|>5hz*qP;<Q
zsbfSh8E+~_!x!b9jCULP!7OGRfuR)TpuwU)D1uEQvm-&mzw}BJRDesF;usSk?aD+N
zm;{U>0}qHi0D~PqBaSeil!iUQlCV3>8lbEi7?siLw38X7Ay0^wp7>Q~U9X90Kmz9u
zGh;-Yf!@kam`UQ<v_#9gnupIBR^_fSa++Z#@|2wKRLK_R@rDt+9CQj@8f=2NW>aU~
zKC^g{E;aY>7jX`w7r}f$FY=D2T_qmcXkvb7<8v^QFe+0lBwIdIEMQiJi?iI}QvaG9
zFIlAGEc-(x;`Yw!xJj5VRhrI|!-jRvUkNW&`eTdRs$1-4wL%XTJcV-aZoPtMmT%{l
z$~8)|v|`{C&B}j2h3Jt^>K>w12|Y-kXd<Sd6}PjI_kJ`LQya^`c&>!bQUbiuM2zE$
z5%+bO<i^ZAj0u%WzkHA`2Ik!Xi4zi}$jD8T#zaJ67OtB_Fs=iZHxot~M{BDE3n`s|
zG5CV)5?3*aGdO&?a7_)cNhVHD$eHk0T$tizGU9I}T3UX#<|D1OnEW=Q$6ZMtK2KUw
z`orgq&7rJFRim+~tFxe}p(*Ms@^tx(!+XXQm6E8bXN$4GP?r~J%PP!L=a5Tunyf;l
za@%fag}!k2ZsxrFSZgva-@ZGPHMX=?$SY_pC}?EwD=L}Zv!p(;a89+pvNhLi<Bu~x
z){@o^3kMa)yc1@AQr+OtSdp@3X;viKQq^GB+Vnn$aandan*^6!WLYks_m^=YuWFU7
z<Qd0hY?ik|fJfCQ{D!>o?z+mdio*1I#~xKh1Nl9@bD{9rvijuq<*AxPY@W|#D%3Lf
z|LDW95-oJ%uc7PzKjz*$Fsdr;AD?r})J$)wlbIwl6Vlsc5+KPWKp=z?2qjWO?+|(s
zVdyBJ6hQ>RtcW5iifb1!x@%WfU2)a5#9eiDS6yFsbs@=IzMtn#5`yBo@BZFDewoaj
z+wVE&p7WfiejXa<gsfyi!lqOY>4W`Z0o=tf#%Y#8W@tEJz+IKR>U~HRPH7}){FA_g
z2@RTRpp84qzJ|6Tbl~m%2s1O8`iyqZ5(?E!d*MNCf_fBIp0pN>Y$)^p^{g6c-qdT)
z2G|`q!rdp`_EOQ1xd-;oeZW1skI7UsOBvE8XfB>qbJ|9n@GEyp#)N$*zuR$;iHTMl
zMb6o*mJJixJe)xE3Q6_4>)`+&0VYGZT=+r_+-_y*&qQ=9TDu^?KY|vD9{9zI3DK(5
zME=Du$arMS#9PPZ2`ya}-Oqi0SJ|R6){pA<?<@LXXXV)6xC;%-E2hpbl)_RdTJa4}
zG1C<3HsJ*7`=3>u>P<F}u$;#sYUc`)=Md#Clu0NwS|EndUjF-S=7F&00m=)QA@blu
z3*og#A<KwLLZ3)_oMeUt0Xl`qet|_#n5LfVkyh4{r_xHl(W>}GuxC!H>S(E&)JRvc
zK(%pLIt!%_Ggh;J!P3mN(C&zQ%b!{2zgdp>O3i+p(=nue_40cDaryCg10&jdx17tO
z(^oG`_H-m)1cDqwb`64b;Smyx)_@t0hzGhdMCC4<9`|!TD8jm$rK?L{m%e7ES5xX|
zjVv*(Fl`#N^Ymjk_TQ;du2gC}db*#$3;ZWOD(u{Xf?=5$H@|z8nKTK#24ycWnW{7M
zAKQD&^LZK7DvgHE{3S1zo_>f1NH&P+M;%Csfl8EPu7x`aIkw>Sb*g?XAd3zsX^HUS
z;UC1y6~<^aDLl9k{x&4~;8i-HtfOnX;mQ^KYx5>mteILiZ%SkHXs&4RwL5E-R@LO(
zM6u}hNxwS1`A=KMZudb^r4d&kLjbo*jB_XUZm7xw()$Npp75WZModdD;0bDHwr`R1
z_{sVCpn^HUU7WwBZ2nzSn$~Q2(Y)xssf8Q^yiQfaGpCL)?csqTYl$*OC+Z@HVq^XB
zOye(GF$~=Qgsvvqt>JX}F)?~g{W!WMD}jH~8i`yrp|6CFShk_1l1@(nOjnF*SpCVK
zPZ>c(Klp(l_zKcZz|<cE@}QsDmHp35`ee3N`xeaWb0WvRfmbgnLSZjAeol1X?2jjQ
zJkNz%A}vbA8R=gWKc0;f-_pwG0`5rhYCt|$-Z%S`No^td+?Hs0loDvFNyccFDWsxH
z*A6uxdHy>T@YCZ0<co~tcgo?_bF!s}w@g{R?vV-Hx;`CG`nT0HLHhm=*PdP4Th+g$
z+}O(yR|zM2rD9@rMMGrAwd0>yA0EZ^D{lW`$b84Z^U^;j-tpQBvB00=t(w>;jRGNw
zHbmPcyBkeUMyN*Dp&<=!4Z*9_kr2sB-A2w*DIcMAtDSr>qu8;Cw5OT*sv9K9fcGOK
zSm!4y(a2K=dfsK5;!ihJii?WuI$xqIGc`8d;YdoW%gL@wbJ?B#*wjo{qOWdT^k9m-
zk==Ptc1~SdlEaZs=lt{%`6zA(m=DT}5dFZ2(yka(5~#H%rX*T@<G7#Q2$NAKF(Ed=
zVK7<a;uDkN;-JuRU`L|7S6*YGmgv#M_~_9eofsdN;Anxlr$q{NeVcgG(E8dyQdX=x
zxwr4;AwRnz_n)wAuM&w5_aOCHA^aUZ_^K5b6flM`#l<jd;X+t#3k!;lFo(VuX;F}M
z67zu)9Tr!bU_%5hhU`Fy>>g=_aAidv5RVz4Y)D3sGFSTS2r^}yJIAKH`4lg%ntx|R
z@g|#cj@ugfX#OhfWp`jJqBtUbHkZ4DSHKDHin0O4ELt|2GH9gHaP!L}3}X%RMu9^v
zuS(%Jt&VKN;Q3N&Y~gBXg}t%bWVW+k1Gq)5L#s5@ZkEsLIw^XNABqBodZ8Z+V-=0W
zNfK@`WLS{B9Hl>p2R#J6Cms(mA4-IIVD5qlOg);Cpn%vztqY4NIw=`LQ{iB&^7#Wa
z7a&uV)>V||WdnY{zt5auLkdb=`8s!>hE*dQPt81k<n)M=gi*#Mwn@6Q@B8gz_q;e~
z?Cx3c56|cw-+29qrM`-hV;csS==cW~4I7=uVjM1ELwurhaDFu(Ql=*LN`RNo|LlF%
zTRgdL{qU`cBjz-uFM6o4`R|h}0tZvl*ukUFrO$cgmI=P{snfSE-CO+9l)8+*?qp|n
zpE=bg^TIpfeVn07$QGyNLrYPGCLlV8)`I<ya8U{0C5Q7<)V-{mN_9YaD_i@B=cS>I
ziO)fk1BII*_SGJx{lTuOLY^sHz={3|Pb?n%Yie4$M&R<(ilKI}PV{R%0}AWba;7QM
zlhO+kSbd)<)y`7?fZ^f#8IR88g^8yYJUP*(>zlFUnxzNtoZYl6N1f{El@=@+k}>b#
z?4Dj;?9=<Jw0dtMr`K_5xkh8!z+!EZZE2m#)Yy=uHYWCp7kgLl&fPzA<)Hkg$EUOT
zk1k%A5WApm(5dBfPRv_rpWJ(VX@7sh4(_v_9$|97mu<X+9h(fRfZ~eGyJ@7@_fYB^
z*l^341+WfaadJ2ldI_N2m=NytV~zgsvRACMZsm?0E7?YP$-YTZUJ*stEXUIt7fX(>
zS6nw@ob*rWHR+$@M%;ibXjl5MM&Dm&83`?45etEsp3Zfah6&wn{SbZWiSl#g2s8QF
z!b4X)kx8BIv0a|9d#)&qO#jKn1JeLSU&g}PO{iQL9$?_n`%N@9{Doli;kV#$3Nk1^
z#U4<fk@*HUNQj$qlmV~{(<reE*h4ZKXge{6b`Mly@)`lI0ocDydLcbE_DtoV&1cSR
zUi#p%CoQFHF>_1qX>;tNcxH3ovQtK_!)Q;noSJxssaap?qI9Elad>s5bi2j#ytCs3
za>OCS+>#mBw~`ecHs)WC{zzU^cx+5Je#R3lT<va8J|kT?v*+)lD{f}t&9nCZmZ{Ig
zN*&H3gAN+)$s0GHVe)-(rz!VWOqDX@@B9FPt4omi>oHj6;g(tCOO%@6wkpq&GX4R1
zbtJ>0R7-sa=3topyX?tUg83mJE@(3F#$*?KY=Y=`;PXg{F}hsA=r<KnNU(fTxR}%G
z=(G<DQHyZWATib1G1r+Y4ibGX!RPY*CD9fM+Y%FPT-e6$BV%wxfkilOmgY1v&y8UT
zr!{k&OxMHy%f+y;Gbza_g<Uy0+`{z4#Pr0-_{i~aptd#;jxM?JO^etI!&da|yJDEs
zd!{@uY{#5(0rNr*VGB@<4!Q!pMM&d*V)$vDP@v>60uXOmHR?c0m~v#F!u!V#*&AI!
zFCAz1AzPG%yv`L)O!?wt1!<A0w1R>(?ra)UJ3BIHo!{9Yy?_5{>Guyf`FChX$Fc_I
zzkl<0r)IOI1!<ein?8_!clQs{ylGF<(aqRq`6s?-`=^~rE8zZIU07IMIA+YKg4DEv
zn@&6+y?wfCebxj2!#1ZDj2?Zr^t%r?G3|Q=Y4R4!|8SG^!+Ql3SD}N`*7ukT>D?xv
z|1Xy@#d)U%ppGeWtaJ{l2B)wBCoHNdN?uM*O~xylSFjm1X(4SGMWdi;NKxSuf(5t$
z(yq)xWA3qIH}GW;dPcJn8YKu5f;{oiO;wizg-JCFwS~i3j<8^y&6ATjN8`%x<M=0*
zEI;lmm3F##Z%Rx?s`UEpX1B5L>e@W3ZTPIsDF&xo?<=iJvK1bU>vQqQpAR2|98e;?
zywn>Lli7c4!^k9)D%NBa68o3AL)UnD;d+hQ!;L5&d5@<^J+vey>4Buo;w7UeC9Ww;
z>UC`7uuab)c08w7zw+VUfg^7(8}2hqI@xh>QPckSg{{)#cJ`ZoB^^z5>Wnx}rQ)|t
zm9Bv?Y4QiD9p9(jwKLujJIq}-HB>Ae=~c1k&Xe~rE;Db4B|o4OT`5J0Rv@-mt!atz
zj@X>-1Cp1zVgT55j#C)|HMfmO@q}V#n`2Twx+XYdZTw(Y`5GfTH>Yk!<SDb#w0_~9
z8H1+Q%$KT-<&!3c4oDqm7iN?)xPg$2kNHpLi{cUePB`(%e?pBXcU|zWsTiiR;t+Gc
z_h*k3Lzzf3r_bXCTMHowZxHOR(;;}=1omFetl(pL^Y0AzY`o)%CwJa_LjS5*R#;l0
zjW703=H5AHIMKELHKDwK_6Pj=LAD?{TWL(>#zc-pZW=AdnU&ctSGLmPRA#Yl%*st2
zE5@3|99PQ)1!p??$QLg?_qS8cq3YGk^9J=x+wtQaLmvIzOJ(X93s+Gg81?GDFTVN4
zi)CtqLG-vQfkdF``vU)J8+thXfiD0dYXo1A1iUiY;}P;M1b7IG9<XMe8#L14A7-|p
z$!NHDhK3+l4Opbk4Zc;*E!o^8eJig(V1HxVr(0Nf%ct9<Jd)I#A@-Y^;Q5FZez#<j
zh5B!sn%l#)CPGHv@+qt7*o~_!2EIiW?iI~Vd=u7CO!*zkJd6=u4dlTiM-EUCyJT`v
zHjF?&jGY9a4MDc+(ABoQIGu<y+;`+NWsS#=wR~c7LhLKCiHTSwNRG<Dmi~!}{Wk_G
z?LelCn-rU9FLorxP65v!v~xqN0@8&*6;_igo(WW~+uqpzM&tJFjY3}IcJ9$7bQfAk
zZGp<7qRK#<!|^%o`@H*i#i2lDWk8x~w?CXw$sM_T_4Y3QoOn2R*~ngmo&@Hhj|}JB
z^<wa<9Q;1%{e54upmatWB%Ogj#(Hk<$rT-;6(>)w;9FLlWY2N_j$6R}D_C#tuFLyR
zQg?8Y>?h+f4n;=rDT>*O1&SreUa?-W86MDk6bIlb(X6-=xcVo7u>QE>DaBdEvx-;o
zHejCOiI7E?piCY_R(m?>8YV(eH+fkc1o9v@DE}J~P!EEwJy^lDDl0jm&=M6(WjI1}
zhsug1OnxZaJWem}2`>S^DmBPMa~QOGSg}|L3CHQ+J#ajM_k+p-<rOY+nuBI10{)OX
z$glLKicY(R^ZL!Asu1u~xg2^8@AGT80B=pTGF1gqzoASz<}6k#;%%?<akgi9<lHn#
zP39uAwAdW)Oc9>7#qsBCaS65;S<0J2iW7)(J59wVcB6%k{?6%EJ!OsS@Utz_$(y8;
zY_=t%V?5*DFrIlzZ{ki!YtM2>w{6Pe9$-Sq>~eHS?^dvtrb=lv8>;ST64@AOhk#MC
zHzd7!<k@2<;J$jV>sHq5<Bx^cpHcEFO_6=)r9a?(rbn*b&OXl=&Ai`i=9xqNuBeu3
zS#d|pG5iT-c^lJz$MN@W7%Flb?8$<3n?_^9&jV_;GsR-F**vl87&cr;wrMnMx|nRk
zInc8REX~N~Y1OeFJN`Ve${6Vo^EmVd>5P!v@j9C-9X0WZ0+LTk2bC|f@z1F_*7DLz
zruI=vvH$QnNO|>oNZOsqiluu5BhEgp6xpgOR(aQlPoGxv0hs4a`qNCWlU_c;dVlqi
zTDma!WiF=mlT6^9KFbP?yQEJ)%wpTyIW&YF?FBzULCQyRsUJR;KJU0*`iv#~`OnpC
z4l-gG(E_)Pgd|FRRmT4(%sYi_RPEM6;$3%-Z%5%{n>c_iJhrLhpPL>N-gq#SBPHg9
zDzo{9P0z5IZB?7kp52`GFuR8^%q3e+zbL)g1bTBFEEJU4yBB)6py1I-C^!=N&1nNd
zCbKBK(G8K1;))gUZ+7rVPAR3Vw7t$6-x$fJPaG&+8+m@w#PTMtSUR>8IWwlE8>A1U
z(8^i-@18xi?eGFN_%(Z7r8sxBlq5ZS&Db~Cl-F;l9Je^~taR<5acm>kyS*=)&e>K>
zn6*kON8)>1LFFjt>#TO+!OahJ(gx)D`j_ncOO%}4G{JPx7gXF@3{UmqLN~)yN9>Bc
zpC>`rSsX-oGVPMHLph6`su_njt$XR&Kiz!upPqdwyjDEi%D68N9r}`S(*JBYcVz9o
z&$k{p(E9wnYv-(faNH~R-S=Ja_ctH>=)vYCYu{Y{=JESp5mvRUOUK`Q^Y~KX!uq*$
z+wUr^<Rim&?Hbm>XJ)0&pP$0-5N<hK)lpwqFmoQ5XyT)fV{RTVbI}xm1zF>l^v=I{
zJj$bjzVt*|k!cGIjUTvd6KyVeA${ty&7gHGB<#Q1y14zTyV}$4`fA-A?XMQk9G1;8
zp5EWF&#>*j<J^aKm&+bWr5gaq3CqaWv}E_wQmU8N=gR8`u)OQ8ufDo#+4BgWTl}kj
zkNtID$Ns7k&mTc^{b+-7S(Xq$+bK^QA>JebfrN6kWh2{r0A9OgK<yp?f4-sc-yMyZ
zl!>6uv*5?N2oX#x;mx`pR@Uo*GrC8yA6OX273VP`NcBT5$Qr0j?G(M{{P7piqRt*)
zN=el73s(VL`SV{oUT6>g%o)xA9Yvu3PritOk*PmT7!2X&#aO|Vk=pG~2a{1WGXR_p
zgE>l4UMm$H7b0r$wzikJ{oJv(mqs9+QS`6EILDZbuS@=&Z5%$wIA;~Ut2=)?Dwi<Z
zQf6PuY*@Lx-u}3EDbfsHx&PZ?OS|st^+vXDc>M7V8y|a2de7gte_wyolz2Y5-{hoV
zNoufec(7NxJ*CD7ZahunGQ>M#l7ayb)Ka^pQ*2}<f3#z&^uCz>^2^dYOPAi<<Nv0V
zT#q3oCxyOxPfkiojwg3gPD&1aC*~rg{mrx={Ym!?UwY-PrNh&%xF_zP`q;*3Y1wsY
zy);0?w&xdCWM~~($vL?yrbFIgV3_r0MqbA&Ipo=*`JPALTZ-|w3$l(0e&Scku;6fi
z5}YST8x_lp#^l>uj~;F1rK7F4-`>hvE3z-Vn_W?n%^t`Kao>fq*aO)WY&#u0N+&ig
zJ}Q*7oyn@G$P)Y0@>jpY5>F&PG#&KoJ^YRX^+K*%Ss=<$$y_-}L{UXErgc(E5-&jp
znr?_BbPwuI#L%IiL?tQGQxhLhEFNIO&2PPbbo8M$OJ>hnvg%;{q2Ii5`}B85i|$0V
z!QOX<^!@rRpKN0Z=T@CRx@XJQ<Kt#-*)Z8P%WO+F|KaxD^U4a;MtfYJ2PZuv38nlK
zuRXu_$eY0lt2S?0H6i%etw)}$EfbQgc0+8SVg9mrw!Y3xV|UzrV#nBPXG{)zT{g=w
z+wE_7v%GerHKAWk`&n<2v6Gh#gY+dppOXo#9JM+eaY%gt2OrW9z~zSG2MCJ<5;w`)
z1w!X9@u(_M&MN?JuZz?{84uAjDwn$iCyoe+Ln4JmnA9NAmB{B%5!BA*UzLAeb;q@T
z#Z+P}e~?b;fP1&Y%bk8Lsx~pj8Fd1JU{1&T_$%*1w~O?2EazJ!MXZ-!qe_a^n(}b6
zFWyktU*LhL<I`J`9bT0WRqRpks6T$aTyHpTV5TNM92m$*hsF>I$o|_piwYoJ1MS+k
z4@{;Nph^J0Rz&vw*R{6pWnO9y>5qG@xbr22mF}0)L#gr~)}4H_qp>6$<~$925GmFS
z&0^K?9>3KCfKji9ml=9*)MPGa_6R~d<|%laTO_^BzGM?4)z`l!wMngf1bd$Dc#b>y
zn)D5~h>eq4r8agA3&T>^5wi5Qbc9S$4}>iqA?)E5ky+fW9UZ(72IOS8<1gH;@(K&j
zloXa+bBDra6BOoL3kUoHL_@>&^ECv-8f4FE#sp1<FO^@0qW<@bpi_>A{n>?AMziib
z$qd)|3UYAtV1Drc0u&k(6_1!N+06DIJd)YHfVjlPDl1-ccwBwGrPxwmkM*Bj&`JO9
zczs)T=dI|h&|7Ak>vWhY=o3EevYFqaC&{<?#mBJ_G?3x2g#IFz%}Uo@^(z<Zsz>Tq
z)3qak!8J0(ysUS8nYK5}M38q_I^SDc7B9UZ{n3JhIN{&iL_m^m`s*5hGQUi*X#Er`
z6bg?OrWdP`5fltDi&4H2EUat@&_IR9LpUa5W4Rg%4tUpe(;Ger9WZ1j`qB}QTf#b^
z3yJPJRD~)R&xINrsUgCROu=#5G1XI4iK;2pV}O@}KOO%07*Vf-`?EeR$EwxqVsv_~
zH78B)v;dStjN$1NIP~7JcXh{s)q6EbIU@q&-f?ixy=5Md=FW1>?>pa><xU%5e(O0^
z!aE}?uE{VVq98;eQlT(cAaH6c$5{d0V$twOQ|D2~t8FS|43A4q0YXA566(dMY}n}$
zpsUh!99w<E4XewRT)%Ki{0E^>4E#k(Gs<^oc+1PZ8N16fN=wp54FANlzWFAaH=&b{
zfQAnN$J&Hh3yED}MWOIH7)ogV@}!cEsZ;SyN(m5WYD~`QDI`rOS`C|IRmP8uznuy3
z6YU4j3nT_Wj2)#Thq^tT0U!@=r>Blx9f|3`@u^wA`q~sTeE7h|h2DfqiUHkf@F7ED
zuYDvW)BRyvr)4E^ilw7Jav_Gs7aQ@|s+U+3X3)W3FWt2JrdKY!z4Sq+^g^o5V&0dV
z1qHkqhFbheojd#ItY@|lQRzNyUi9L?d3B#|Oz?MU#uKs^g5D++Bss#_E~hJT&JrXc
zz?^emMMC_0k@h`{lHJLW=t%Jn&Ha_?_9*|MfFDXLc--MM6MEpA;3i*GXw={t1haxc
zP`O~@;Da)-23idkDiZUq^f)0+6fq@S=PW6PuYLV{sqOpMudQ0PYG8bpASTE6ZY)hl
zG*aHwjnBOO%*LsCJTs=3HujEB7KN<%fvc8PNnxb6k3uS-^=bnQO7TWH*Hy)gvgG8l
z85Q}%i&JB8E8I|<5bHDvy5v-s&E`r=ju8y8&IB#)g!{#$77yo#OK1lAl0AaH(6h4>
z(VSQ$yN2aB^90#@%0m!-u!JJq(ht2_FagGX;(L(h1it7V^eiZib?`<aYl4Tk9WX!~
z($izui3*kvd~rUq$5Ld8>=sRIu_INiKC4V|*i)2yOAx9uOS);1I@Ox3+wfauYF3K4
zOuA;4)LOn_QC(VE-J%WUtrDkDYIq@X0)YDCI7@<^#YJY=;(>PkSyL*zZ_nWm%{ET#
zC5_}x+2RxIQr_V`A6&?+38kflYBDbn563}g9u_;~*cxbq6e@C1CRBO&B}a9MFmZHg
z>&!U}3RApc!IDO{B7B9g^xk`|r1yg^5$eF`>Vbc3h|%r%WXnmGaS946*%m{#AHL;7
z=?R!_dYl?{EfP$pnC0-+&-WUwd!@fx$VwEwO6D^=?VyBEslcEkgpa6}lN3z`4yHZX
z0PJK?bdvJ0Fj_W+No<Mt$q$e=t{Z>&{9n%>9*>{puinPiN$s+-au%71qGl-(Z(C}l
zy-X=>xb4;D(X;8Ib!?q{o3`-fx)3Rmbs0h!^KMx*b`G$h3KiVGf3^t&K3Le`N(YJq
z`T??m-Xc>Hm9neQeEFW!XjHi*jq+ootM5tgo!)c20)egr?CPwRuUfLyNo8iMvLbTl
z<w^*@9VGqjZffPtJua13H^;JpAKuOEgBnkp5^QrfZk%gNFr9AiG?h^sMEiq0*Hi(M
z8a8KnaCWsfP$1CWzfeEwBG9LR2p|B>7wD>#prGjauD7x7YW3UykBu=V=6-d>2Mvl#
zTMd@Tw#(HL(Xa4!u(TMqUOM{n)hmcjWIp^F%XAv5s*(Aoy|L%plHZjaTRM->L;jn(
z(Yu2hvm0`_bA)sevFNaIg4T5+6&Jg&Yy|O_8v!qQUC|6pyf#nEG;`oi7ov(2?tsOx
zW$u{H1LI1Mvb{(D%T}Up@bb~XA}v#AsS~tIo6y!hUe3Hpod>3stXub!RwUgIXogZk
z%z6oQ`n9kwl4ZuhA>I2=`@QF9hzRu%%$g3QTQ>nzmM@SQ5=@t%DGc~QxEVaeP4Jqc
zE{Al<Qp|>b9FSjsl+J($zLMM^QvCIE_uhN%b>{Eb2iB!!>8wMCW-XNs%-qH6SFXIC
z3q3(Y{R#O1|M$bvH>XTjkfI*9XHkN54q(mprAzIAYmU6KiOt`%2|=Delpg<6>)oYM
zq5=0I!8m-lQR)EeDAT#pyIcQs9D(S9f?ZOoh&EIM?{pHpqp#BEz&<PCE0zWeq)b?&
zqeiA-m=${tJXj#*0R=x0VpN>v%nL&nrW6Gbh|z9nE=Zz&d4Rf@@`|1|q{5LbefQW~
z(y@Na-`H2D*4*%?Z7cqGjog2Fym_fl%A<Sbod|Hf<9+;hgg-jYGsCNa54WKq`4%)F
zb|91>@S)Jyb3{)5Cj6+>5ufz_Gs;=VK3ci$ultSBF&OH3*5JvSrRY&ov&|RRcDKAZ
z(cw&Ty~QfLtM*D4J5(^?V^3o8Thg=GgEmxl+BF8F4JW{^@$+qnKJ#x0Zx>;LPPL%3
zDdoN=vwA^5&Z75q_c;@~T)1b`pb6d5zaIJc$>lpxad^4*pst56UgwNs`X^hT+<WTf
z&QYmA7eqX^>WSqu4jr1Y{0Y7^+WF+oE2$aU?qR7TA!Y3_<4<X}`3aVC$5YIhl(Ke;
zJR1Mf*$shrjY+cfZq{;lX-9Y0lR|eB27=6|$ac3rkQlC<GouhmB-PQ->M?r;FMCY>
z>^ypYr$&<lBD8bZmGkMa`=a~rJOA(J)pvGk<8cGcuHjeCufy((?!WK6+^#>JXSqv)
zJkOTO`5Ya<bmjoq2D7fEI2h<=Py({7+vWJ#<rI3kTX0by7ZVqLkNHnY@0{H7$qpS+
zmS%dV%@d-9cm)FEE7AH)h#t6jc_!l5#!63oc(?S|y;kGi&$k|CmQ$waYdbz6dd<sL
z>&wv_O*k&sroHp^$Wtud4XmQ7u&@r=;Yy;MG736DQB|-W<WdRRm)6N`L7NKJF)D9(
zI^UABYi3m~0Gj;!fP2c;YM+qam!G)#=gP=@PiVE-IJrG^xk?<eis2T~15dP4Q?z0p
zI>j=&+b6p7iRe>0zW&L)D!&`j4@G&%F8+)rOvC}XxURy=?4n#mJfM>!i*&PxL}F-W
zkK9IO;HJ||)yaiLUj5NCL14o|7!omTpTvmD-|p^AUS5hQg_f_|cA5JFKL-naH`m7n
zI=RB=4=O-BzC3o)x<?KS>xBqV0Xqb!Tu66N_d)rAQ6f+M;=QQ_1*y{N7hRv__Fq%6
zbo;TFUW#~VpBOGkZ9AD-z}0_ob4dyNou+y3y<bG`$AK}aa9N2yOH^Qv7($jXk_!YH
zl%x~%8-T$eJ2HY@lqCloi8{1XI0ns?@J@kKh!QIJ9KLq*eJ{*9%1kGHBUjuvtN+#{
zZJN&I$SCjvVK8%?%00WTtbfC}P;gR3euDmw556S*GcGC4<=~8k!!sTHz4M>Bady!b
zsk!m-lN*MHO8omWr)7?;DG;?sk|%t|#<?nI*Y6!sUe#7!QC~1-_VPKo_dhE|Ud$Sq
zm#Ik{#~Vk^TY&12e0^yR+HNc4iE=_LQNVbGVuNL(LZUjsXgV?nSOqY@a)mIn;RBT7
zZihHbZ>pff(gj0?OGPsDT8jDC;_neTvuR;&>6WRxhYVu;z}Q4(tjcOss|yB*Dg8?(
z$7qdB>%TlPefo(nCH$-!{@qcKb>@6!)v8ydFK_+LNon%-`Kw;x3K}$`)|2TElxOd4
znm1NGzMq5F+ilxb_8P59T@woAsifhZH^I;PSC4-=bhbE?ZX%tNzI<iXq^)fKL%+Wj
zcP6(x{K;}*6fejs>xlhm1xPGGD9ey)#?$3zhFH_?bxWu38Tp`)Pc?nRWaOu>(v7H@
zlDf9o9vj%k|G|rRTJ#G<8O$^XX>W<(?povI(@G+4a&HDuP4}|f?kLjO$)v~`g&X*S
zz!hZRIEaPq;YHFl4|uw~M=0fi$Bt7-bx&?hoe~UINb3*u)8{@Rbbc<x8ueDIUTU`L
zTl7|`nKoFXyb*B^DPoHLvq&|hvb&3`XOzL^>6V9X8E&&~9{n*uB*L8l|I+P0y*hf|
zNK4U>ZwhW$9hk9v`s9A;<}&=58;4Mm8R~;!)xYHW6)Fhbu&aL56A>mLqh-iT)S*Hi
zVh9wVw0xuvlQ9-lBDsDg<J`*?b-3v;;EK^ZFW2*tiyF;#jozTScu`}}W0h8Zv?pSJ
z#OtlMJFlqlAvXAs&6=2$81L<_Z{*{jzscp>KH@D7c<cGgm0z<4!K^u+VsEE@3oJT3
zK;soezho{l>Zu={LF`@K&_guDLmGUhP(n_=q-cY(TUG*b2<bX-;B9ftC$~pJ@jecF
z;n|L(0?xy_gN_~u-Tn#I!)Rd4X*ej`LLIV~3j+B(Drkt|#vbtaJ%K{fkt4Zbs#4L?
zB7GBNHPQ^}Fg`O_O;Gx#r3KpBeryfvCn@H?t5is#mT*f)3r{}`AZxq=(-l33-fi?b
zG}ok}egy(C$>3?^S5*O33rKQWp`|kc5{)N;`2O~X&znq+_Ev|<bpGLX@MYi1Nt|$J
z(E6vgbc8oPF1}(+PdC0IKE9C;Z+WV%Mb6p8-XNGK`a`2$@oaf)|J?Jt5-`#8yR)4B
zY+3#k%~=|Xz$z!NvQVVuXNna~^~#>3VnupxP#M8lT)F{tXa(Ls#n=<(4Vni86uEij
zxr*|XIyD@2Vjt;y08EWu4f$<!T&&q7<=T^MR)dRO;zOJx@>gMAVxChP$i+o2Wl3vT
ze{-rKhD#EJ@$K`FxbsVGu2WcMOEg|m@UuFOGA&o#{-?NP{RjMKe8)2bxiy?IQ7L@~
zEfdOxcE*?_JT62j^u$+(_uY>$)saQ&N+fmRWYqgDRx#?5Qhg_K4@cvaa~1tzS?^#<
zW`Xyt7j(Wa8^}hmNx-38$$rhAWADKLBXMvj6bUJf)Gkm>Ad7i46SLo^49e>yI{B2*
zb1>K990uf+PH-K6bk+q9Dnu<+IR{;@1H7{%dPl))ptQ$`M*zGUTr;9ez`u}u>kM>G
zdt?g*8%I+e)b4ngzX&&rURUgJB1?hOLAO9)H9pXprr|v~f`#QgMR(BzNda6c;P(@r
z03L%p=H<{f(h)kKOoh=j`b@ino(y9E)c&-jn&BEcOpjEmQv41l;wO9}o`;I#a@++C
zlTUGFbVU%HM*z_j)J`r69t!#tAQWWU3>5J`RR9)gdB0CAhvqY&gwCAycq!YK3^4~=
zgvuc}i__2?MdiRTvCB_ZqTYCjI#r4M&?vJKP&BlM1bzo!Ovr*hl!mHR9HfHCSApxH
z_%)>}6=iY?K;_1Ud`+soz)RIq6(jc}KB$j;D-mGp)GFlBi{i77)ILjGfMX*QP^lu7
z&l(5Uruqbjqf|dOC42C;y!70*CHgVZ)g10+)+;q3rPx=LC^ij82I1Ce|5%%_=(-gn
zxbM_f6&oKe&TDW)Mnrz=9GeeJT~4&Bm2rjyl}4AC<kCA6Q{yc*ohs0P{HexaT#7GI
z)aMv@PTNasG&=jU^2Ld6yV^9^*&7fyNGqL?pI4B+Cbw+np6hKHMV|5)U||KO_8pzZ
zL=~`N7~k7jW5G<BxTx>ISiqiVXrP|R(u;|{6mGadqmF3^XjRN+iBC;*8a(j{I;}cU
z@07mRjC2VJi8lAJ)Hr=VmtN#c3XOwZh76tEVRBtO>l&%?SQ8V{lltr9QoY8)prCou
z(8rpVof99&zo$0yyxyFi#bTw_FYdbQi@S>F%w;NV(uQP>AWGk<0n_p}Cn%M=l&#W1
zQ?F8^1u*a8faiGcX6C%>K4w4c0nm)O${1f#2u;08%PBRg8040<3Uf<^7?%ksjlYiN
zigUAK)MicZBsK!MG5oz&H;Abliwno-ox*RPpL%?X(#a)jVzRVWpmSMAb2e^<bZSVQ
zT3s1>;|)N>Gz+l?B(pIZGYpz!&J^?7uV3IA#fDWGz5!-lJEpLB;|`NorHQjTszjmC
z-ebKXp;DtqKHLSOI69@rx=>|QXD6f<WIC;b=ghfz&if0p`}M6+rY~swK$q+^mn^R4
zxLg2r_sZk=!}ShJvQDdUBqeFI2Ad&C9g~PxW~||~0|LIxa*x@ojkAczOaOEfoiZJ`
zMw}-(t*K;Pz~oF~@upY<Z{Ttg1xrrvK#g7v*Ixs_PWsoV8?;v55Nk9T5@XFp>q?ta
z-5z8G>m>ry0eLfV$5^$`?5;@f6{yy5`LRZHqQn?YqRFDyXcJv_HU9u$kEVOCO|l9r
zGPd;AyA6iW43kmImagUdZ_S_Xj!Uu#)}(89BpZ5f$xs?i(<{xDYZnP<%WLNGe%~&u
zMWwcF>dSGPjxSq&{P^-^k`Em*VFd=2jvv(TNui+u&2AetQZ#Ze^;sFGR$5FqCvh8{
z`du#s^Pjs_ZwGu6VGOC*xC{(QwLV`|1K0^SVH%s+ssr4bxwJx~&e7|W($FlC%?8uJ
z6}p(fyy8F|$MyZ7qGWMd(e^1woB-f1t5c`f)%Qzz-EQBPpX%Uwdt%=(%Pp?*dDze)
z=s&SGi-0^1XD9X9Sv)Tgqgz>RGUTK9NQ_N9Lq83GlELp9$zvM%ysz-gU@o*P>@ot8
zBvrYXgP*h<mH5xb?Ng>~k1U<Cy|Hn7WL)XIZP)(>+C^6S?vCHzG9{bO7&w3J&?jaj
zO`h0T?TZ<HNIHE&`rw17H!khp-;<k37vXYRiurx7sVz)*8UU*9&Mg@<V#fT+BjXB}
zO`bWTu5V#7pyy1kqQb#_Mg>V?l6?;3_||BI3Sl44qHHcOwkQ$U=jhB-M2L<Q<J1jw
zZ7l#R1iJ|4`9gubXrK`5GU1T(4Pc#dI<Ce|tRUvlC&-b}GS}a=<#Q{4jD;xll1@pl
zeY|<|$E=8rWJR<VS@2V&=OreS8`-3<om-olB#Zb-sUzf=!frVKx8&Wh%*ns!qz}&V
zjqqRz6H`fm>SD|0j}cLI<<ow96<p}ZFq1^jYBhyw1F5~uOGsa^#N0bIz}I#^jmZ&>
z(l?ECuyNw1O%tPQd(WNgxDj3x#L3bUEsH+V89N2YUfIe7UX1~7qNg`14158Zn<A0B
zOZJy#rUHj5d@-zo&d*}F&_a(>g(zOWHZZB`0%GAORjEQ%lLEDZf_T|T3sl8!I;#U`
zLC?`F!N%B3r}6U1%@mY$MVS)1%M?`#QxH<mBG}_74#^i~=jA{p`1muhtehMl)Uy;n
zDk6%b;96<}KPp0`@yaqX_y0wCc!;(Xwe<g&^1!L*|E_(&<97BTC**2KCecg;|H+$D
z|NBz#|Izz_fOJU|u7xfs5l;uhl<I-&K{Qn+3B6DyAykc+ePMx|{$u0IT3hVtxIEo6
z(o5F(n3(kRn3x0$`x>b|q%`cV#bNea923nMVrzz3v?}Ns3Lcz1d|VaGZ6{zYv(1C0
z+pqM%ZPX1Mi9n&bNM3gq;|L#;TA-r{g+kJ|O$amzg;)r_FfI5sH8n9)NDQ}1jp0aZ
zYk2S8a4Y8yvu1fU+MIZv9M{m5?SZ7OAgFjHo=><ikT2zcX@D~W$;%@GeG7g`0doMz
zVJL{~1B+6^>Bx?N1NlS0B$s*YYK&MZ+^&$qq(y;2J`Akhi`c2ew>|nRVJ|Sf!+aP6
z1uA_3C6dCF3pjd}fa9HiZMXut9<ZdG5409Ri(!O?IT~ej0V<`XHq<E4h9tp8bwq{m
zCZHS^@TBNjt1Ih<(8JCevYxesCejNDyQ`{{Js8=ki6TJl6m1|#;{gqd1UE8#@gFTZ
zA4btJ&Z*WBMYs(`7V&LIT~P&mIfcBV>k>Xpb%|a}7jksHyp5k|E3{*c{y2Oi_|PAG
zh`OFh4RBc&G$TqC@@WrJis+;irPD*bRt2ROlCzhji^!QyY1+f=I%C1(1tSq(+8Eti
zlHSo+GH4`rLZ(DJcgdJa%=4rhKoU48cD#7g_!Jcr?WTl_Jqf3{>OxY?6EV_v%-xQT
zUBX^UPkbEd+B+0ok7kMsTAXo&M~7hU^b)=q#~N`GGPzUHO7LiUnVon@I@HOJ-Z=_6
zDirXC>;@!6f{D&`N1+2C+EK9_`LL3i+Z(_!_!&XEfd~XsfPsT%7pdMLl?I|2w}EMg
zTKqJ4TXlP~Q?0%AR;}8pcRBf(9XpU=*4aMi(;@xluMTYQmB9vauS}aUf6bctGp6Ou
zPE1_?*wn17sgJFn!PktbDh-XS0y`;{vcC<Ud?iE?z*a<VCnr8okRq@ROlW0A(rdkI
z`ZO7lT+6e#NTr_o<W#k)uqg)l>6PhqjmsMA(v`xE#REiM-7hCt#Y66{;ft@pA0iz}
zSjM^~tb=&Orj}C=FhH${=v%+Jm=XiYNEry&a0^Th<d!2;Edtzx5SdEN)}zDl<K}MO
z%uU^lr03(0NZ;MQ^1UMykKi4bGXs~n=<$DSl79c7^xgw7Wt?K!8@_*h5o_oPtHu1>
zBfXyf>(lt}6&c)%y(v8>eTO@|xAJyoIC4Z9vg7-^8t;(adGcQAk0)o`^A)eWqB?S)
zQ*`rc;4Q@;&B8y9Oe4?x%k#91=@+#jfR9jyt@?H-ORah#q_>7ARkh39fB@D3W3KC1
zv&<;a&PF<|bGI<`^2w7}d9$o<rJLb4bS{!?Qy*2R!}uXz)&M+KMk7iLx){>Zp~+O}
zUY+{il&BYt2mU@3DjYROmt#gF2W44BEOhDDq81nEf`JhYWw1aXHH381y+hdo+Nrn*
zGQlg@BZi7}u929YwicQ7X-uy$NOoFff3r_rJJrtqMjMfes@&YFTw(Xb8~1JAcjLtB
zCDUgMmLV2l_Vgvy?TV}I6+)DKArj)lxMkb-GKVQIL>(R~uayoQSSqiWaPQozjwv<E
zsyv>mWi`5;Z$A2@%HvTz`RJQFbywZnQ^%PNos)tAUBF@Ka(SRW84X)B!CJ#z22<*6
zFILV6JQ&l^M}Q6(c)JH(8`__uVljNax%qswO+r-n#_nxVZllNzLw7H&?od=O-96Om
zbXsXk=-Lv)$T_oU?p$e+)PA|jkP`P`MC@VW<$aO9N$Vf_Zu92v9$KHI@}zrIS8hh>
zCproGM>Y@@;Nkzjs$nMc*boqi&}q(}iu(OxwOTtA8vYwi|HV6pd_H97;{N}6O{&Vv
z+WKw$`|0(`$?H%5eIwCdqWzc4PO((~o43<hcEmZN=<uxnr8k12kLJgWE-ij+*5|Vx
z!yEih-@&<u9_ldcdO0KG<y}|yr-A>=5~p6-pOh*OVS)S?o$2~{+?jdTqg(ywmH0_V
zD%`WDkb2Y=@4*P`b`9v^k4Q=o4#_!czsI0fA<MD#M@Pvo0;EA622=U?l-~JuMb~6y
zW@cSeRF~g7C7u^LuC{mT<*Py#LzuR(2nA=4X$aM3R|3h|RheBIY8W#+c(r}xE7Nrm
z>d?iXC@_o9#e0#hy+pL-V29`mXdqPPkfAXtkqjNQ(vnVrWf-TBTXy%VpThV+J86Ln
zRRp#Xoy1s_v=%@m47R+Ohj8Q$<>ge#i&R$ZM_w6-#oGB=d2fN=puxe)0#QAxvb3tt
z?34ue^qu+z%BH$Vc+`C9wIREv=|ts@$wfJXgfPG%Cg$}+WMsYTKKgCVO_kpDSCH5n
z*DH-ZoYw0H+U>qBy;99p<%HK14i#CrAf-58b<^}83QMISvAK0k%SW;FnwhQBcCpDD
z?E`46QTr&Aji3|xKw?*rVpx`w@f!#AEj1H04z&!L1u};mB|_q9*O}dIf%q}x+2Err
znV;|_NIW5zU}}w{6RO-*6RHmRLV;Rx#SL)}rWC7&h}cK_-4AbHnrwAW+coDF^$^2#
zBO-Nu7o<ty!UJ=M73`Ykv?hz;s+>p@XQJ@X$hVgiuNT$^GE*c)VO9#;?@nOf$#J9K
zcAdcO&UtQNnXqe`S-EqLWJu4H<`178%;gmQ$ILyD!XBEoODLoI%RG#1>xFj%yd<Ym
z9%Eqc`0+AH%>pNI*<~C9GFl(tM$4k0N>uX1e^R$82$DfY?lLM-#^|M8<&5`68_?lI
zW}+zONRW(_aFD}MYD}OJQ}BB<$_SQq*+!ufh5XaUDxBptqSQY3z=64ovj&epFgGWg
zTZWn7!2B`N{S$6Fe9V<rl>^`4k@*!YL~GJViIz;0siMG!tc|X;FCr^q9f8_xFK39z
z5-I2WGH22Jku|J7vluFZ*S4ooyO$OX$ni<9gm>i!MAz~GJ}qp4=EO~Pa}SvReqe57
zdczL;XeamLz`=%~C#On#NLyEMNr9EkdUd?r>nI3mnhinTd_i3sNUt)y6hfHK+!rb`
zXLcy8qjdwaxZ47?>pc0=yE*06Id8mCouwWT$QWb>#q8{RvOJh3<Kv+xVHkGugk{Xz
z&8*N%pcjI!1a%g=maG~fj9CmdNQ!bNg|D^;W0H)*au>vil}EG_c8|{0VqtyR!Zfb$
zil#aV30<T=MLw!)x@RT3Gb1u``aX4KQ=PJ9V&pgeP)8*Ku1scaVKN`;Xu-OAP&OAH
zpI#z{w7}~eP&El-Ip3sbWwA(5!7!?oijw?}f873(bOaWLy3;o`)wx&R6W%s$_$+r_
z)5R7x?Z|pwU*wB-r{>s_eQu;?G-UNINjDl>lDw0u-0?ouQGHIr^Rfa<9+R@KVF55$
zL9={*3VN0oWRD^8lK`fee&v8#z7vuJ@%hSBp1jjjG5tlyuC>Q18Vqs$7|RH0l1ZNm
zcn$F|c17tRF2fKn^08NkuC~t5i_27NCz>~nt>0*?pJm%vf6W%dgjK3*wLwQ-N`Bm&
z1EmF$*nf1suS|32`aPO5UtWmc96wD{?#r#>m#GBxbaj!3do&}3wU^WuVW_?y8pI2s
zTz{EnS^NRM;*w%=E!$ICnC)O6Cb%YU*N&b)YlL(syKls-rDL@>OpHyH6sk;<OQ*Ye
zPI;40+FYm%=lLRIxN*L`s$8Q!@*z9uEv(8h#7HTL%UseTcdvMMZDzlsn)uKEEU*}s
zuD9rN`{(&27uRGk<n@=wx<d9DE|d{SDDMQ#2v?(YGy&j<%-?qr|L81$QR^qtFOxMQ
zZCw+=PYItDq}0>-CEeXEy{d`^M~UA#L<dZWg<nT>iWpps$zpKvy!{UCw86PWiw7no
zP1=|^!8E%nQV=DC`{xYobKtLT=B9rU^MRz0!mkt$p_Ww?B37WOaq4@$`j(`Z(L4|u
z7aU$2XykeahldZ(`+yr@AFJ9n>AhtOq}`zrQ8GB^mQ*fv?g2RGft&C8cD51mja~(1
zv7Mp-OGapv@?00KVgP|-Q5U9UB8o&0sS$u?X_TP|<xb>8;v#u+1bLLF4)iOV(`qOG
z_+Z!c5$&Z+J^^45xIOwhq5%T9hKM7@C1MbZ>b|+VoTKeK8Y0u@9{9WYz}&h`iDnS0
z1p9#HPkMre!2^Q@b)ZdE4>-K`c(s1Bwkij^n>C^KO7(@AnH4X9D%FNwGE}8QZ=0Ak
zKsVaD%RDF}FhZSG{l*(P)#W+TyZN4VwE=#$v*Ot4NfV^|$IL$frkh)qoiq2q_`z9=
zi4aTeVofm3b?k6OJ{xI^&#BsGGG$s4rH^Pm&BYomHehAXa>Pbf3|N%&CFdmlC=^Bp
zZ+30l--<I?ea*=6(ks540Y#-W>!od%UJJ<jVT^eg3m%5aKMtBB8CT_Mo;wIMu|gS0
z@e+O=;d-UuM^5Ymg&=^dC<=ifiWnwq@-XDDf!EGE7X3DO?fgM+1*%J&-YOV|GL2Th
zHO9hno>tpe*)(UenI&eMUaJ{~-y3b3542idFMO!6?b2KL*5!Ij$J_G7Sr+|rgT<=t
zsL<=Q<``~>G#0^__eLIyF>AF3{@EC_HF6;~L6xdO(3hF2gbH=ySZWa2+&dbFKp^3e
zwTe+xxh{U56e!Uk5YTuaB}C^z2aFt77)hW|=r)j$!9=k1^^Cgqj;cXLuOmT+^`K4t
z++l<i5YNbb;quW_N7pE`rMIPTpI^TGd1gY^4U@d~{#C3Hd}V{jBK>9Xd(sZG!DMC&
zq&w(71cMWseA~<k`_i<0@$%=TZ+~<@sTN-34}W{(jo-2%U1pS?_09&ZkuzN}Sm~h+
z^7}ABfy3w?LXIFQw){Czm5^1Qaufdtr~Ra9eq=x5Cf+*RpaX`HNhb(KTY}4L9Wu3X
zuy=sTq%)e-0lkqoWd%lN-~8L>_!yk3%~qR#;naQ4Kj;5Z<<YE&SDDX-Q2nKcyIUf6
zw#711FK~L~B{CXfRMUqJnU-iU=ol9>%w`pUifwy#_ugmdESS=N;VdElD$UO9S3EG<
z^u$wyF14y!M7QiyqR<FVm0!bx8r~mtYT!JoVq7Z`yGSF~e4=rX<YukUN*{C0Tyvxm
z+pJY`Kg&FgQkZKc#VQ?;Pov$*bW-POblE43EKGe|mRDuH5&5zBK|1jyCwy_7LBB=}
z`h!5MMP&b#U6*?uc?iC2XlazbWX|-l>!sd&7JEVJjVu68>}5{r%k;7QkgHVkQADXZ
z8=k=_bYU2mRIwLu>Hpw%&){~rumKQyKkbyHtNsA`x-_(n6?TPamdyb`avHBdMaWsO
zt5<eeRe|+Rd}~256nf~MSfhLavcc7XbL2Hd$5Utr)PCSC3YgF1R>4Qu4p-qWPhP7B
zf;c!c(gu=82Sjrs^=VKnkxz(6PJYhqfFn&1ZtFo|V{lk7IIP3JxOp-Dg$;}AhA&y%
z+%e$T(q+f){QQ`(@z}DZ$FR}yvGhOBT=(|cwQpbd41cdAA<jTr{`Rfo$L>GJjgY=W
z7F48EVCw|7KC4`_@Q`%j@Rl#?a!2Y$yX(H(a#*@>XrZP&i!IpCZu?U!yMarHK0e6N
z(~Bq3GZ!yrav56W2OndfA3OH>F)5v`W5%`T+s>~Qbc+^_KlJwUrEeab1kY#e#%sW1
z1)*?#;Vn<zCSAC-X<Es(j@902i*IG>+n&4y`=>8%LZ6ul2fRa=XEk^i@E2CN;a!ad
zLb7BsK+ZYv2%?<jDzL>eA~Kv}WS~~$IVP{89HcxWKO`4m{y;*=fr#%bZI^yvS|Imm
zr2~&|+VuD)mZcZ;>Dm6JFV!%e%N3J6Cb{2B()Y<@u$s(tgI-<Y&rZiF+O)ioN3>N9
zYAPLnm)GYB<)v}Ukzx7_?)1Z%r`X|56DMriG+|=o?u6{LUY@ub`ylx)dY7v|{EuBO
zy=x5J&t4Pf>6Mn9U~?HP@q!^W-hrIw@fL$io(saV-<S#*aOJYMYNz!cvKAC+aIVRf
z*U0k-xl~n3N|J>c6`NQhcNa(eFK6<(5t8fviTe2ViJK=*+{_BKX?>ElzO@@yBqSvF
zNz*#g`_<o6cw@f9p>dQso>?*!OO3<vOwq1U{n7`XmHv75ED{2(=?QfT&pq5}V&n%~
ztQe<`O;58};>1{6cAu<(q3FiE&KoQp620ZwB10gn54_f5&eGl37agIM_uR9RZ^068
zmiYOw@^LW?KR)u|lLbf_jS&FekOCpqT;|9%GQOuQbSsl8$8G;idiH?_rDs3iJ|V<C
zo14mR_72F0?Ekd%bZSoifHbz>BZkLUMlL=mwS2y9+vhCwAg2mVXn)s30E_tpJkl$y
z*fSu%FhyERIvs|x90U!RMSV_0WD!gih+;(WMJf=%Jaz-H^c2Xf2DK-8TR^l&9k}3@
z<wFMX003AEu?zTO7AJ#pFd))vQmDjtr1#>a?<-kgq;!0Yef+X4#trn3C^E&f>#~#I
zcUa#^@*U$?-+p$_eD}hN*#47Q==?rw`4Z20{bwrngkfNxc=j4&JIW*9d1i5s<wq`U
zfy2qOyzP~OrDH^&x`0dUo!X~k_w+J$IK$6A4GiE4ST2{7Q~me;@9YoebE-5YWBFWp
zfmH25>SO+*FW&%vPA*H>)gG#i^0hLJ*21Q<1YGUj9u$uxPlPzLa=~j;p(&6w0j|L+
zS^q(P!zq4BFh?|wXqPN68A-trBv@WZOt~0*LGpUX%neqUQlCHr0C5Y_z0Fa9fobB%
z!=ooNa|I*AKjMjt_oWnoH<+YZzIDfBUOJ{)wRz_x?uOZXVw|AwGx)<zCh!ePW*Rj3
z#rs*TRgXc!Ek2q&K&un`8y0Y$1VJBXvkh(CY~=Jf&p5E+wFmq$I`5)elS{NZq0}&X
z{X5dT(v#A=@2p?{4ogS!-1K)ozRCo{ZHo6%aXj_h0QG{k8^<dnXH*NX-88=M%O^RD
zQLjyDI^yn!TlP23;k+(EpOntmezMsJ7y&$XP``8cGlwZgX^n|#I^@E6VwHYDiAEo)
z{b*whM^(@d`iuN<6ytJ%xD8jCvSgaUI_Fl0B8AX#7+Kc5KD@5tG!1hILEeX%#N<UP
zKu`=XE9U%Zgvo+giofpL-+!?x65lNSvrzgf%oaju95IMF4t@T%bk~c@-}dIGpS$UE
z>7Q(WgKmaY(sufE+i9hOTeI~Wzvk|}?8NQ&OY<XhZn`;1D)U@q>px(+-~s6w>BC6<
z76Z3v6RTLE#1*I8Xj~zV5_+VUWov?40ZdQ`)<E<kUYy1dJVJ@WshoZ#jDh83J3v%D
z=0U%UmBTuSeue&mvI`2UgEKIJ-zI$~4Vd5CQhjiiPPas#@%6IeO{%!s!qIA@E>3ig
zD>3e{*bD1=6;7)0mX&HCJ~?{D_r2%3!Ka(|&r8Tu_sbqTJ;Au=dIpjraHH>dSNigj
zf@NRW#740JEOVmt7Xxn|v4qS1U0*eLL?(_%RXOvtPxs3lS_1FKLO&<;PUBP-y_%mq
zLRXfVTr)E;{?$`HU;V(7Y}}%u(md(;^_LVM+&8V0#-aY0&r)I0R}c{s$Y&EKQGjz|
zFc4@EU|0#>8?duTKq@c*n$yrK2BItHr(uKi#^;YecUbyrX6-eCa82z@W;^`c@zv7n
z_aqq}kbe8=R^qWA<xjADcITn(vsYZd;?RpP99p?;<-BdTh=~jLuAkVpD`QvN#Pxd@
z&R@mUH-E$WpMI2hQ?|0>LW^|ox{6UHZ0e_fW>ZV+E3cF8L%B&lG2y*^3onlV>?GAh
z6;vKl>Hz=(uK@)_A<5SwXz?m}ivrRK(C1|69|uod5tMf1oQo@D2Uq6FA=L|rV*7?a
z-aPI80(N)FXVSS7Pu=tBU0-LLC%njPkN=|rsYT;lM#ZIvLbFHb)y}A%J8J&k)vpdH
zy!gVDF-vb*^H|PQc7c0WeD|i^f8fTJ<n4Wa;;7sIxut#?Q!Q=odk>ra!*Haxu&~K&
zd3<nc)v}Y1vIpy@R_ETcXj}W*F%#<teYEv;Zt#s~&!URa`9~GT{9`0^?H_xDMXj3l
zE@NP~)-8ZFd3M4PmBOmO2m>Uj4$PD=Lq^=Jk;J18h({2%8Y6D<cv8YR$=tkrVh2vN
z@~?Mb7rc~0bQ%`8ly8wOm{cwY=Ec9FTu!naTMNmSM*T(pbUqyka%7!gCM)Jes1%eG
zCzt~ON{p*wj4H41hUcqG(%_LBYq1Jkp{sPV^le`M{=yfm2tRoby={^*Ia|ii;I%{C
z8D%M{cCE!Wx^MQ-(n6$VdmEOj(CCsCTjm{^e2rD}&G>s~_s<h!>B6=z^7_BUrp?G6
zT%8{iUzO1R?6G4n4fFL1>0@-x+<f=+2dHi3+%@8ASzl7ExL5H!W>sQbsIx~uaN~w|
zd9+gKA|&h41|$UX>Y>0*d5PJCqE~_#2Nb#j&t^)>Yal@%pFk=(qQm9f+!=92Mh841
zSWLm`=&O{olfYx_X7odvtfHF`HL0~aU!x5w1^AiMGf)EHb%IKE6_qZg`_Vx>e6@1%
z-b2TZAG~?d;_{3bp{P(~mc)XYQ^T8g-?Sw>MX5E$*wZ9?RfRp#Y}9JXt3<8Q#97o;
zRVJ53uT)i5T3iY2#hmOBb?<!lPTj~%BhwTWXuW+IKW)y<``&nSZ|~wnqX{yhPd9t_
zpn<dJ4Gb;Z-1yMenq50zd}(JOmQy4DuRYmr<`=kJ9p_p4+MESzR=-m>B0DEpqtnIf
zHLAHY!Z&Z(kYEAn({H@z&V$$Ml#9zlp^B!ay|cz7s?~{%A2(p_%&EmCB|(%};H_S6
zq+DWcS(Rwwj0TmqvdWZX5vwZAu7trW7S0(_H(^5E$k`rMg4vWftv{>hwl~f?w|Czg
zCS5_Hn&*`_&6-g?ux?O;G_7CF)(0oQuxsbeKnjQS=W5Yu<W3l!3#FutQP!LZbtC39
zu{YE<lRjQGKBFXGn;WM$38kUl)Mt`lbNK{)CIS6^8EM$O#RwcVfY{_vTHtbGc;Omf
z?8Tgc55d%c+Xt+gfzRMDQ^;`-gxLpJDA~mX4*0T}UW9#t-aH11R}Me~NHx@MP%#8y
z(=zZ%qtRj1mv6ZB;}t8vdHDGB6t$q#>cy7%YzsSdmLWT!Ev3+G(b#j%Fj>TBSu>f^
zpw__F0smj++=867(&hxO&!GQv`Y@|iXYj4uzI)T`@{)$@R_&ZtU{4vVwD&FQYmwg1
z8n^EB%;|Sbsf>#>R#(-GavA!}UQpRrsZ6q(f+PCnmycgQv6sdOggjw+{)1!E-!je1
zukU5hTC;C;s5Cr)iK5A3InI=)RK>7+lB)_bbh=jWP@7HX=rcB5nOA?)_)$A2*7Qo$
zaO*4G0nXta8BFNAV*bedf|`lLQzA#l<YqbIre>Gi!P#<wY7pfCW&Lj|=pcD$%>y-z
zl9w(wls=@<?2OIrUh_f;N&dAMM$lX#_r#C38MM5ljfajDS}Y7rQe~BqGLvi;-M6$W
z<z&dw#NZ%=L@c8}mteH)qL7gu>q58<jux#%J6q*5daR0yAw`${R~m`@Hg+zf$Qn_v
z)E?_?779J&LO;HfeA6r1#|W8}+K4>ZI?bE1^#wBlgX7XKVt@AV>*=n26tghev}h|K
z49Acbsu>qTZYYI_ssb#nyBT=J<#h&UrmM7CxM&D##>LSSBX0?cmY>wwAlHA`)f<XL
zAk6=Y&OYG>=OXtB?`4oRisQZ<Nl(aVB#I+L(f?UHjHL+tGiRbP=1)HzjXLkzK66IX
z;r{QM<`x9zU*&dkz(3tyYW@G#UN*>4=|BwuRxG^w2{Z{!MGYh`{_h${bV>?josn9j
zE%O13HdTA$f7dKrUr7PbWp}i_aX0z4k>3ABV~{Kz<$04j=?Dpb;8r?+FhzH<P^<-k
zm$7DN*U}e%F-*35C4w<Kwy^sR@LrGpv`6=28PzKSG=uU1$yrAf1;K7TIoAn(;FT>U
z-72GEc6M{Q9QHYionTo|*EUFRa|#+Hd(T-CE%&e%V`MQsn!8EJj~<3v{KOC(JGYlk
zTS+PlJll(L@ke=%@=}~dR0Y*tAx}4P1V4<i(5b$^OiiJ}rv6Y!F1^Y(wc1^Y>1{3Y
zb3@UnR7HAX#~FtDqpEy}j<mI;C+?EZ<P=OH`~h!$S0c=-ig=%VJe1h}f$ZZS&$mPY
z!f-mB)6ydI@r3QzjyW~ziHj1GEg2?JzgLu*CE|i$`E-ijV$m#`z4$Qvsy<D0SR&!r
z*vP@iL9M}R#wLeNZZ<dD-5$$@+8d#4Z;iBy-`hNGVVhfpfJNO8KZrUTbT8Os@}~Y!
zyY_S82YtKtJ>iG8i15RE?NGR0)(x9MQ3GA`4H;@>?i%F*Q6<NTEB165!f9Ahu{nj_
zYL?t8HGWvDO8DZ6&Gr*&C8w}h^=c)MbgW7+>un*M8VW`$=60JJjrr3({3V6f+6E?_
zXIK%zv(tMgdB_cUh$2^v;LFJ&wo?b(l~JYZ7aDC@IueOP0qa<<g8W0++-`xRTqw13
zSrp^6`{!F}`ac)WxL;~3N{O-YLagXDc#QD|qqz6(Z`p0^3w9ePUx!OC|Faw<seA8U
z%l#!<fY<1Z4$))q#^>er^N)+%bc*@!y_d=@)A1hV&Y`*M#|WlEr?!!7C(z4)c>-EE
zpq9Zhrvcs%0%=!;NKYN`75gBWmy6Ja!2^<^UM_akntdtFmX5r6)5ft0u{j5?%`6>I
z_8Ob^=9_E;Rk*tL1*t8+QZ&X2yojLM7*3UE?-lFP9eL!k$%uQTM~$PkXW<=RUElQT
z;DW~SBP!<ml<FN{G0Rudj#Fq1^#lD3YS0<MBpAUKssqlFoI&Z=Fy(=bU*9)l#(iJQ
z?@=Qt#DAd&D&eKBCn^mLYBP&N8VUSz5WiqTmY1{+<Whg+wDc~&GIE-w3rA_48!o*^
zd(o0iG4fK2@_sQS$Du136#l%Aho(&BCxIeZ>~LDB9cdLiEuuqtzg9Xc{ra;Tr)D(_
z8f{rHH1<T!ZKEeIb7nb$m4&lrsP$_~L#tSQJKy$|G({T0RL!i4DThq8-;#cVTC-t?
z^vRfuzxvha9r5gXotoZpRFA5FyvUQ^Jvo9i-s(XI2HvwmDEsik$kq=(WM!Bb6zn*+
zlJ%1Q5V>A@gRZ519o0R9v4Ahw=+5h5r*Q^hr$K^pAYa45O%)_JW!dBpq#2?hMh1s_
zNS)-d1Kf}l;-q2RVAu!lE@1XRlIuK=%E9l9sZEZXH!m)^HfD0b9gq&V<JhUxszLc%
zHa8BjY4tU%WxrBH=-e~DzbFNPk4fNG6str|`r29Vj4@PG@r4#o{gSxS(zqq{p2o&w
z?p%AY)@xXL-Jq~q+GvPjs)jKJ1WXD@>#`}VRPuER2}!z+-;9AM#K$N(^$dr~Cf#Vz
za2h}+P~E4?x|v+~@r{7BhipAjgAC%wWFrj7Ir%bpVMBI`Q1V6<XaQuRanhUy^+xAB
z11&r-f;$CM$czZe<)9Vzkq8RGLupef`V_>Rmv&2a(w_6W!t!PHqx-(kdM)E)4Q#Px
zP-b~U!`iXZL$g`dAA66kU)FZV*tHD}<z)>#*n6!@*Q>d?xtGqR)#);Cnba`p7RTDL
z4Q1sG+(W%5$K@2jXmcy<D2H=%<EHc;xxC__mec4>{0MJ0?lQJ~u#~R3rEIzM7x^I#
zQlrkL(`qx)(=)VMZL%)2K%*(RKo1+c7JY&#23+ElPhpPBBke;u550~+o(>)t6n8<h
zG6t+4)Zi8<@Km1S93dAH)Bt80z2_`rH~)n#Tr|7=Fq?DY_kVb~W`gv!bjPlzzvuW*
zf1lUa#9ga)mk%G=-{IJH@r6U&XY2m*>i#jmf8nW1XBHhB>5lJLC~XT4=89`r<8QxX
zqo(%VG->F%p(XKvpA?60yrrwZ%D(kcH2MUE0zD1Ak!E1(kZ^knV785N)rA@bqOc%O
zP!I=&sVE@{{0sZsTw|meq5(^x*bM>FMr&&o+{dHyl3e#>)E@J@7ph2zpCI6rl)!;}
zbZJoGMHSW{k6`f>o*oHDoqQ^Sg`fw6_kl9+{lVYw+IM01=shnk-1Oy;KP;4Pf8|%w
z`){vX_crtW>O5O4g}6tS!BGCqqg|HrN0IE}_;t7Y8@Ic&W3<^nELwHL?hAVtzPM-f
z>iO5*)3WYu>3vWS+~OUsT566+u-JE**QM{jl$JF!1d)`aqi?&xr?lc75>`tm9zoE<
z{APq=n1Sfb#C?%N6Zo-hk325iZrd06icOGWI__c90jj(4mX42>@#7+Kjgvd>V#B%h
z9UpOM3VF^}hM^NAd+v4UC~`(}NOzE4kg^8SU36W<8;LqX;upt~5M<c-8|eOpg|5&{
z#(qrmHkF-56ZAEOI9axzf>_!Mid`J8y?hPsg=j2!n+uy7P56f~wevR;29`yHc6Wcp
z7?p{+Jy{-iw$DD)WbUgnRVP?#tmy^Jq>2%{&!hX8T1}V#BPJFihc&5%`_^P?;+n9K
zze*Ja{BAR*{=e$p13ZrE>KosCXJ&hocD1XnRa^D8+FcdfvYO>?%e`AxSrw~V#f@Tt
zu?;rW*bdEw&|3&4)Iba*Ku9Pdv_L|PA%!HAkP5cO-|x(fY}t^!$@f0r^MC%fcIM8V
z+veVL&pr3tQ@lQ(H{B5hU3cf}4x7V@V;L~v)I?6_*wq6t@dtRqF(&Zxdh`_-87jFo
zg{9(bQc^a6km*oxBtb82j0+|3Gt$9d#X?J%2b?W%t;(wOlfeAIqtZ25;A4nbqKVe@
z8qq%asL^OLI8WZ5S?G*P@uv8q)`9n^>;UDX_ULuK%KXB_tZ0`vF~1;IzRt6IISK77
z-|gv)Eyz#wx}viZ3-c>|-7zgy^wCu<G2Kyc+L#jMEX)*F`keedqu+Q`63x-0mED;c
zRlW@8IwFawaES7|6T<#ESvjGKnQ4oAAbr%cIBjM{C?{)<Kb+vMn2u4IUg6B}Rb^y$
zSB}DF0Cme5`p*EL5~+wGN*NPJ2Xn%t(M6%NB?H6@=a-L-l{5b6c6t88V;A#X-*84F
zR1M5yHu)b+d<^#DY^>`W4o?X0{{rKZ1(}3OoJ%xgbRfJ&Tt)B>$;bt~Ya)oH02^A>
z?zHL{FI=YWUC4L_u%Zs96<+WowQSBTzrv!*aGs7Lwv$2y=zHr!2B#q>)@n^jG<&zc
ze%{XG;hsiMezkXY7Y&E#ncsi?kFPxOhr2$1aeo!7dhU;Gm3R31ubRC%u~1x$o<2R=
z8k`#4%yc`wIbK)1ExM;C+7=&Q70n)*)D%-t6q_iRE0U+rIPYg$_ijm?=dI57%-;XT
z{{DGazWCW)*MH=B>?8TP-^D$-<^HQvZBbL>I~nhcugb8+Us*55zK~{%u8P0)+2_6;
zKQ$`angE(21O97%3H)Kw^?{5e3Q?J>K!-R4#1|JrMzTtP{cS}&H-*?hL0I&l<9B)i
z6o@xu<10Ov6^e?+7tRS`%uDbl8>L@f`0%!E4`2B4(2c2kKkj|(ycU=)HYFA;TE8$q
z!RSrw$;uu&5M2;nyJlvhWBAIBoSaoVU)Z|&#fw(@lk>v)QC#ne4`vi5x*f|iGwWM(
z&Hnlem(96g&CKF7mzmpEY}>YC<+g1<aNNIfR`tBxx}}R3mfBrKHKiHpMU%4ZX+;Ui
zoV72EFUa=?3es$bvXz6Et(|xE_U4M<!u4IHg){S#%;so+cv;x#VytRjW~@J4JSi!z
zB3xb85T1#{0)k(aZc_Evb?2TQ5HAR`T9IPLELU{C6s2_91{{rsXLp)A3|Dsc)95*>
z-E18(f+jMBv@km*uT?$Ws`}>>XgO8h2Io!Cra!F>uk%$gXCXL2%;_N?C)hp_*NI3p
zLO*9c^P;nL+SwtN{ng&RU&-&_%08v`D05%sR4GB}+=id{&fc$1=bESTv%dZrXyY0B
zl{^}LttWv8RCRvzoLD`v1a|b__0`w<=ggRC@<{)xcgob>IE|eDZEy5ZXQ)H;UvvRJ
zdjbx$K;{Ty_n9R3hq1t>(ZxW(1Ldb;KSs(Ir|$s|xUMuAwG~zi!?c<HSLuSwmGtFk
z63&;>^=p=Xxp=9N5eEhR^|KX^olF;(A#aC4bl_-Q$^6);{6eB9CdQM<Dun4LzZ49y
zsftXz=5aIi=2KuY5UYVO)Oh&t2OsEw7&M*b80_DRKq<{6Jv+b?;qh^02eR--VjN)8
z3x%MF6ftX>8S1<UgwG1QaM+9W73cRL1Q>*_Np2I_X^o_%P!ZYABl3X2mGHCDR>zQW
zM&Suv;SA%DgXBtCBtD({cutV6nQ`n0z7>Datx)gle30qL!MpT$DK7KGg=;Q}xGrCL
zhbpgr$I8oHkxSNCrWGK9?4#dNFioHy99v&Fd2%5?fZ)kv93s_6;?u<(n9`0*t40`|
zB(GDt>P$EW@i}5Ty~yEd;=6Jidwh96CF)-;PiHsfms7YL@Sh4?@@vou0_@DgLsq&#
zhhK2HffFY(<(4WC=bWG-{d9<+MByX3&V*<_<Md1@RfJqAL?sBnu9m9>x!eGAnboY!
zVK$59QoQ{50z>REr`aUTlM(s=hgAsum~KePrdLx~Ny(-!FvJ~G-=7XqIVNI9;pqII
z$6`<EtakgcSotw5Z%$S|e#gVHSf;*XGw7ZC;`rTar8yw#y0Ome2RM<wW)$Xu4$>h}
zUU)nZq6Cr^WSIYowj~UDC{{Lwnfvzd-?yE;CcnZ0a`CA(tXe+0Mt6$8THSy5Gk<^P
z?*8iW0Q+#?e&O={`%X5q*H{4mUmH89JGBO)3O_&wHUI?r!jI1{DLMbgtO5wHLJg~P
zGaEJlV5LoKmoBp`3*P!%#3>-bN!<A2`|!`l+Qxn(zum)z<;#0m4o}!{@4c+=-h0RX
zEZ;Qt5r08`r-zNOksfdjUKslb-#ET*sC=Xx=ojfubB;8QlFq4DtogZ!`$cCa*ora*
zS&P~m9CCEdnbSFjAO6HSAE*`yFS4CD=JEjoZK6-PkFC?*{FKto5tQU}<dks(hDY7e
zUya85<K58`Zcl2_=m1G4oSLp5lOD%RH$z_03!h)`2LmazGFJ`+iU>W00}QqoFh(U5
z_I3)fCvSpLkO+H)?~@-H`}}!1@Vqe~6-Nv>$hb*}RUVB()kzcIXv>RX!ILKas<E4R
zn|Ex7{L`2`+t_a5A9(UAaG~<sj$uyFsSA1u8-aAD=#XcD>?#Y8)jb>rWA^~=6v($U
zWv7;bzCwQyw=J5D9yuaR>)f;J%XMt|KlfcEXDhZ1Mq5|NV~=fprP4LWRr$)+$K<gU
zt)H`l?6>UT=ltlgu{Ty{aMm<?U1Kw27aTkK<ZbQS4!+;DoU!Fy?;qUOe%q7eP#!A}
z!HMbgc#iM0T;TraX*%D~lOWG#v@bpV1NO^<OL+qkm{@x~L>#cPR0)3*R$@YWTsR5O
zIA6&3uq7mxJGM^9vKoEz&eva;clwN0t5JN%h%MXW@_N4KSGXKsT6H43YU$D{@tvxr
ze8cFd?$owzGFd;+so|5iQjSx)d+x!UG@i&t8RFUl2M)N;WFt$Gv>s#A2-r`dRf$Bi
z>AxOF>X6ofSS6jCQVeH>63_Bk5f4s)J_dd<Vd#kqqn+h@UQ5eZVb02`iYyQ1o5cLa
z;h}41Uk~>op~SgAl^4$0uxL_c;p{9-qi0y?<J}9BCA-bW>N@4$dG>VPyZ;IP+7B1L
zH0+AXb|$CfMJ`#pILf$q_uUtd_-ge+T1HGIX8whfFFttPFP~?DOJ@u`aOZFC{&3Uc
z#a=jNOyaR{(}54sc%S$VvZg_HCpz$Th0GxOa8#?DCEGdhE2#WZ5~D0D1?v+*oGL@y
z5~4St@wFK#p0gJL<uFlZ&42D*MQXDa#6w~B_wtGO0&7D2v%NeaKG9_M#F^~*PGdMK
zH!5s&=G#qi9<wPiK7sc>8!tbqFgW?1{-==hxP0QN{{E++<P5ifPk~49qWsY-TerT#
z5?MJ*R6;L))Ba~kFhO5crB4VJ=nJif-d{02Ca%~l=D7E4-n_@1BbtljVy3Tn|B$s%
ze~ZFe-EdA#RA<lDSLBb*sZcKdhMg4AF!jLS#4Dmco`L?wsx!Wia?#{8WT_l5+{*y=
zddR3K#{Q`P9V`>Ft;7OwL)25*Re+~}0H_}6{CX*0oRXs#@+*Y&tIGCWw(8|;cD7%(
z`BrA!|Gm`Zm6GqX`1)k_`wVMT-pgz#XJ2RMzOIw+u3x!l?^F9u>>b`S`DOn1hN7`w
z<d!p`E}z|J+_3GPn=Xs&yylhFy9X0k{<52srP}35Z+Z>U@^4~_>H@!av%5N}n6I9m
zvS)bjSNp!dZ_o1HYhK1z(VlUf-X{s&m6#W&542T6n!zXlB-zx%Zsmv@<^mME79>ML
zJ3<oTRfJ5q56-ZXxvvUpnY6y0rf-D-%|-DMvaFOmCC~3m@+wg=38g7Xq5NgR@~os%
zlhb1CF^h(+A71p{r}D{9?rCqo=MyF>cXrLWL~$buQ;TKC1C5o*G0`w)>7%&%^hp`%
zPFq|?O75ft_f)HXp&{OU^dVM<;wBa=KYGqq1O1V8N|07y+)a?xn6F!hKB9F>;pTuu
zgG6>AWXypxT=3$F|H{5PfuwtsIfqT6p!g_fblgBT7%}xo@&{5J>HaLZjs@h<gP(aw
zG$_QrGrD^9=qh&k<T|^24P-(DgJmnbxh~FO3xty51pb_~Bpn<Ix53~_iL!`=KliSj
z?PGTuz_2mMy?Lu*V>9%YqV%e4vbA=;aBYfUvbgnw@=pZFuUNz%ud1nDwW_*iEIp78
zsn<uW1}+$Fd*nlM+0op1eSDm4azYee!H(SeeryJ;{BptSj&*RB$1X_A9{UH}K{4Cy
z8;+Hit?@M^c&t8`)5MzO`$~)wmn=EvdtspyRt`<Xus2}Vd}z{%iNLfLP|qc>eHMX_
zOssGM6bn=xAm$numq;aA5H6YM&=B$gPUVSqYj_0A35IkspBaRNOlh)^@*l)_*+1`L
z!t%(vaBx-6*t5)Kf5+~Ue^q9Vmj4#xvhjRVG@E003zJT~Ab(+ZyY0;SBD;<`5~t*q
z`YYmL8HL&7%l&ydRY_6&al}`hiH{qPhc<?izFbW|9?y6(Gu^&yy?p*4duhx{rB^L*
zWJK}5+1<~}7yc4+=&yFS+-Aw>Zr+qvu&HZRLV_`A)#~k&iZ*wwh>!m-<CS>}4xID_
zG^|!*hXR=*3CtZ5mh)o)CdLgc0m4fdEPG&&LCBw^P{FgO_mH~-?9zsr#KP#mvO2hc
zvxrHAjG%kK*wcGJjUx&SASDKl6_f~UxKWN0g>ATjcg2IUFv4DDhIegjnoVz(j4U&g
z86~scmKM9#o8d5-jErZ*FY~#vuc(+mH7P|el=%H6<q1=V1)(}E&h1-vINtBd%p{+G
zvuDRV7KWd-fdP6taNrhtSlQgXk{)}9hkLKLtlex93lfZWi$#iYC5fZ3>I9dNlEq>-
zCKQOK&1)^5DOO{2RMC>MI;)}kUHOZ5ySHYo%3v(oXq_V50rfescC*N3;p{hNyS_($
z<_6j1L5esaFF)`iMXdS*)BRx;MfGCI`>FhUYz4v5ql<AA`x=$jO##1+R*9)ti^-o>
z6V~H?*!<h3+oih-9{q@*QnhM=8QPs|_jBXVeLkIzw!`S}@e|E+Pddk+|EK%E%FnoJ
zx%k`4ZLM<U>H|}6V`n|7DZcb6R+jmIa+B5D*-w%hIi}vUr*BND<zwsAvXv`etK4Mu
zre3wUvmQ>`6?@Q1GX~hzUw=5E#tG_8d-|q?Y7r{^tJ9yvIzVGg7UAc>DpVJI{$37J
zKpTy)c84=_2JI+igw)j%EJDmdjF=*-sZBi{Y5Ne1L-ndKJ{HihqBxqi+G{X96iGlL
z|G{@8Be)RJB-ucc0UeJ}_x-<BcK?f*ZY6fC_bCtjV{b4cJtfKS_yAMNAHV*9w=^Ry
zJ1awVsem-&z8l7r^sE6lX!~4(+bb;N6}DTU=Ul0V`kP?sHYynND9bd(#96HQ&ebn_
z3{Gb-=8v~4Ootm()<eN5-Abn0r9S8;wJtBpN%vRP=D@}{xH9W2nwJ!36$YEjR4*#j
zCe1O#drFpSiXjt^bccb*tBADoxE>rqMQFffI}}py(;M-K+BG>`$TJwnFg_$_(V_dU
zLeDGQZ8H51d<H5vGYF{^bSrQj$a@l-1+PZIe{>)NtVcac%BMhudDsp>4h$Wvc*%4@
zB_<3{JjklBxfQ`oWI|$avv5WXcfRUy;5Gb@BO}I239C$V8ZsbNLdEKfQiTN%)(<qe
zBtpufaZ+4VRc2^*hB>V`vnnc%4~>T=X>a7EQFGF(W|S5SHevO_?5Ko{=$M%3jD)D{
zgRAvU=plb*cVtH$vDiI7+ZVNeOUnF!A*G?{ysNXPic)d*;@O3vp^l7r;epdB;?oO~
z;?y*vF{5l^s_1`H6|*O@bgGM2bJ)b59V$;XrevjsF4pc`iDl90@lh#JtZh-o>?o5d
zYIeq=HqH|^8`4>|x5T!IS#D%eZE=RGdGV8`EsjD9(N1%LIS@VjeEBG)kpFh0{8^hP
zJw;8yiZf29$oLm!1Gf?ltM2PuuqZx{B-E7iYs@JhQQXAA2mQw3r&xPZW+JwBFm*)p
zlny~C5zSLD`3o7iGvs22^zN_>I^cC4q*_4q(FB3rQ`|0j?2=CMIf5W2Km3toWM!vi
zlzI=WCm25bfy1AalAaOtuDWsT+2dnRS<|d{TCMtOTt1GUUVG81S8Zwhs0QwPHSlL2
zl6yOPQ0GZmbFeV0cu8}`dWEfdIH$JCpPo~+ymb<0&)DTuEJ{tY>h-wVK8~Ayeb=g2
z!F@Wz4|c=GODFXP0G$2^7||CBNkB(Kevkr?=O9%lQ26Ma(f}5Hq)bnvvkt6}G@~@5
zCpaQkML$Sj9Q}2!bu^*H27(Y&q1#d!Y^YE4CPuN}&a=hXR_)?K$rrKtYxmE(`Pw)p
zdhD|ca$}N`J%-q6Dd`n)9m^K(T@j;qNrGi#Z}EI4NT$cmQqCJos0+Lpu)rd9YxVMb
z{q|J3!hW7)oXb7OYd+RTUGx2>y@&KXZBekLD7MHKhskO1B-JlWTi&yNZ=+|0$Eu$k
z%}m^J@+>tyP^pl4lir0r`Z&<3I4dJT5Q855Kx$qdKm#EG;>&`pqBlw}67LtCL#LKr
zP^n6%fyx4~<*FiG1V-UfAAC0&yp#+mgZ~~%Q{JqsuAZojX+>h9)otd^YNv~T;V|kw
zjnyf4Jm%1wlZ@WA+aFxF>u}bxu>V$;T3G1A0dHd{&m$Qi&%i$XYT9{E^}!V4#yOG@
zxn-#*#kEy@H8v^5;jNVaaasPNc}0*Xu$t$x(A-sHcNlC;aGKT_T^V~)Ry}at+B+@{
zjds-~GH+I3hCelX>Y9z~a!p)de>>iD{Mjp9Ci%J+`P&&nMU~C)1Hcf&Ir}!q*G++s
zxLxQS5{1Pd?SfIV21sPH1yE61Ks!KUYfG?<LlFV5<W&y7)xDv?Tg1UBSI-PnfQ3O?
zg2{%Bl!KA>yMm_;z`P__1pOuD?$VxJ=s`*pE`x!CslJ5wr<Cl?w#?8M`M``kV#=xr
z`<W<L=TyM*bQXJJ>>oJ+y}lyT%s!BB_805*;dH&79sLC)5WEie6Y2K2gqSDZl`=kM
z0*kfyQf4Jw$@R<^E!^f19mUqN^*m>9sQUf1+|tZH#@W+S=f*-K_N$nf%=FprKVRyI
zNz0rU^-RQ=91A7V@|>)4p(%P_cE#O=ljT-lo>=ZH&xX9AZ*opnkX1|7Iq3zH*P5qh
zW)$#snXJ%ufp<Zw|D_8uxgUNHB$hHS&TC1$mPx#zhutCnedet9CMAZeite70yU&}+
z%2OA3Jx-r|guRg7=!%X_lUK6^>GPsoaB|xGLx<#c9?O}`6n}NPQ^}BrYr$x(!G2%>
zr!KVMK$Rp|rN>f;J5Bo(?6!P5qU|vT%3c)Pch0badE&A0SC%xadgP)DLtKPqj?|r8
z?o4ln3%Y;A8_*G&Kvo5>0)u2`c_B+7F1@WH1_DY3yFQvf#;ko&!`5i?`K#NYoc!vw
zZuhEF-$IndWj?=Jt~XTX2><-lWSdk0{(V+nEIZ#~zf4?zEI*C=4Br)kB`oTJhvkp!
zW~`O_65UI;CT1r-cp*$5nG6r}itnyY&N8{3ZmY-W6;2F3Z*!TeoxgF(pZq>$PRf<P
zu72L;HX&k@5H!SkB{?k55U}Sp2s0D2^Tz5#bH4sZ>|iJ)<Xh#(&F!oDp;i?$P<_|x
z^-u9h*@;`1x)T%K7d{vz8i>rNwdGr)EOmirSOj@aI>%6ZNkal&y#akd%Z!h9PH=pX
z<p%Q&8l-UZl;z2a@k7tg1+6!b3Fva<q7V=%bw2dX;;-HJ+u!fK_R=q|UANR{sGWPq
zhaa$o$9%OFIX^vo*q)TSXxoeehfr2FbI0=Du|;#=o#EoS&vmD##TWKZTAMH{*0+Iu
z=k3Ec-+cJ(YyYt~rK&pd?|0t)$tQQOm}|>unSE4#rHx6xEAD*#{#Db`j(nTHb$rq(
z`SIDCw`IE4UK1Cdl({%QKiRpYvTI-Ol)2E3n83%6*X4lQTMw!im@x|=F;1LfZo~Bi
zz8NanVFA(DOnN3USPvw4gNFtrRu0qgkpyHaDRvGISd351$@kpw`x|c>3KfXn$u&2;
z`YH>)`XD!_1eR6A#F*dni;b15*+r!}i>5Wk&f1YAUQr*cES(1_$e9xt2lm;#X>q1N
z^~f!^j11l7%FB=Wh5XVRZ?du2qN$s&8EW<jdzf>$xAD=en{wJ`EcLpk)nsQzwbcYS
z`Gd1Uxu1V+O&I5g%~#~+ly9P;rmZu+8N?k8GcAjx>r1RXidKDjVTGVLT0Jn;=%&b4
z;Rg2DM0S{X%2U^#WXLMY%5+<^EuvA1%GkN&g*j1>MX_d^W76@)P`%T088<qd)>3<V
zb^i36ycv1b>Go2a({ALKF?KFD>=KXUSYGYYJ3Q7Tk1Ni}n_TnL=PkP}eZH%SJ7V22
zNmh?T@7kRtc?vyJuFI61o{T@EJ6rOw6X){5n9c#d;0Ek*S7H2tlnGpED3z&Cv;vSa
zF%Afdu{fd=#`T$~KS;8SP>%}g=rPh(qP!r9DH^uY8h5@~kzlghqids+!c%8YwPtRg
zpBPMh53UQm?!}(WIA2w`YGpXMVoJCwB|bBDQB<7UXm}4v=IzL^PMtF~nB=H+N83#a
z)$d57Y|nX>TZ*nWBxEG|@?BYpj>LtRrdlofq=r;Wd8SR0(sQyC60&pBCCQOlX-REJ
z(p#*)-3yQ~%bk~!kQr~dvUqFdWm_=^&YauN$6lVGU&EvSYZy4!f`Oz{;h+$3V9B;B
zaIj<P^K+xYK>;o02H~N=!ESD}J8h-5^cocoYSL{%o5NvbyP58+$p9d*FRvk~X$=Ub
z2Ipk}2>f&XbGS231p<qmfS`zgz^np+$(1K~1j{*dfe~+5v2{&Y&n~It4}d%aBH&dF
z+-@+JBxV03=!uqu@KzyY3WA{^hB;b?DIj^vszeagCf&4w+K|U1m`lBmhMGoWQKx*5
z{Oi>}FPi6cOn+?AjyX?&<~CXM`ez-!(c^n%-K7h6Hs)HHe)q>mS?`Y}S4F6yJZNv{
z{?h5q!P@gT)#`PHs~cwK7U`ouDNLH`&)28CXumgfp)=WFNSN)*w59lQ;%<@eNHWB(
z;4HB)EeiZSeHrV6mm!lQtzc&11LE9u=UrX1aMP?*^-M*vpV|PLc`fWelWZH9{J`%M
zerZ`{23RdQ^CPZ4aQlQG&?DU6o%IWH$X3#vA(W62?Na2jp^HF=uF6HqmHu?hmG#yG
z`BM*eOqoC5?w{kg&zn`-ad1+}gKuTIj(s9YpMF3I3a1?EsGAAop5<3l9GX)2z?+#d
zNRfO{{>!0F?;Kpc`rtd84l&!onPdH9{rnpK!?DR@lcgVy>BxTpA1z3+&zo7_acD}>
zgKuYgKKfj*|Ma*k`|StwY7TWyn=#*>3&|$?{F!x~hbaXr|C3(-$p^0Nw;n8-a=5c<
z{yck1;SuJ5q2+fsZ+e$3HamFo7?&?%+qlfOefbl1lTgOs9qi<fg;g+FUd@ieR{2qN
zU!qfVuiRK$!suVP8B-4nv7v||k`mnC%u;688%XUHc$SsAplk=tY@9A;mBDq>BK}bP
zSV!N%Eo;293od`*1>x8KkdwXXWuZBXda7=zaJ%IXKYCJFdh$1!Mt*y1V_f6{$v@*z
z-^sD2{Vr+7i<b++<uAVb)fZEi^v_vPlFFZpzbP0B2l=nY9%WygxT`E$v@f|lsV?my
zpaIp^yK-J=0M9QKmUSzD4f}MPbyw?thxZ!C2iqjbec*V6&?D^wzTsiw3veMwIi4_L
z8J3G^FYu!JQ*JOd8l6QOG9Xbk1tHC_YM+jXF6>jV`Y20{@<zePn2!?a*Nc!|r!6fV
z8!I>JRSICq&Z6Yl^wHK%S;Vm{VXvZ4>(mBX$~nkA!t_dmJi_9%^0c(_i*qJt=OiWP
z+?zc)Cnq^6=Q}yLPaeN9>tgwx`_Fsx>V+|#7jI6UQl9K9!>`YmT%K5B8@Tw&8Bxhi
z;p54R9^BjCYLgqPTdJqFP30rAztuAL>ayZh?V%MJ5PlVBFJa!g$(8b_tHeopS^;G!
zq^Nvl&&D<3;D%|wtQE757RN>x)b!L&^0>U*EtunDoy)$wG(BO`vPBh=)dq0!I}c{Z
zr5BW~6n|e?R8(2?)#AbAyu9SW<otYG{!NI#bmWDOdyZ{hzV!aLzb(HJsR$_lQsUM!
z*F&@QuD>kZxNYBoUo{l-2Ltox2TJG9myfNxy{BQ);oi>mE`510-d+FPV88sw+UkSx
zY%s4{&0kks-^g4k>kNfQ2g^GvF1zW%#X%hGK+&Mk@9w`utges@Qk28R^sz9avHSDn
zlE#U9_&CUpkd#0$3$77pXRdG+A+HS>aAHI;VM6I}830cLF{KlU3}L@sKJW|c1&ytj
zU*5WAa%a!}Bgc*%x$P%xMQ?8({;}wDNC>_uHRX~yE3SI}s!5SHlCOAu6Q%288_%T<
z&>TfyjLy=t@Bnotz!;F60oD&mrd&BL(<{=?pc4Rg1Y{n)uH-wn&Xhk~a_cKcrp_6C
zWOUBdr>}2qwLce}yWFzd9q)&}>f^=s;G|;tJJRyFf%;XWqpRu%;_CAqJSUoyvllx1
zUH}<a3RS>A<Z9hMoeus2G3g`-85>A53Fm5s9PM$y8v{hG1t?dc1>}<q&7esD^#y3w
zr;}MaBqEgtEM{S_0YTCbRRjCzC{JCiLBT42S$1r3vlvNeDMwT!x{UdXOEP>O1U%O@
z`h1N(y~$h=A4o6sT(IawV+E^xz*Cty$FjQi(2bJMnqZGHvYerTc|{fdQL{pBABPLm
z`V_+@>((5s?YLt_#m^EG@^<Dw6NkO4v(cT@ZGopvrC4T!7}mUmzJ}DMvfK-5Ctq@2
zf3f_5d;{@{*lqUOq)EAxt20Jg7cOkQBfYvLoL-s$(z`Vt!eMaTp|{OStIiF2FJCLJ
zoAzM+D;Ah#t35P!43gb?i&6e%f04VqLLZ1O^O|$3=f`s0!*lBXlDasxln37R3Z*Ho
z<*^xi9JRAh6kK6Io~CAzxwy_6su0sGS@lH>ayI-(yx(4*81yDu%FC@$8S$Z%8YhNJ
zp`~;R4$V~dPG`0O5dH>X04mvw4)m}Lj1BP$Kwj7dAV=`I{a_A|5QCH~2C4)D)EmBn
z%7evN71PkL^|n5#skpJSF|b<SciYy6hL|d&W$dTSu+Snvs5{>By8&r!3Er2im7X|g
ziAS7ZSqK+sje&V{XU$zuyigcCSx8FM!s`x`p)9I0v}Q}AI3qPPGp#{t+_ENA8C7O5
zjotZ!DaJTU5QW~gK%lp&GlZSPC@W}*Gfw$|adKLL$5Z5+O6vvj-PCU_fxmO?zyV75
z8XTSrd1O{!wPc}r1WXntL63%)Wq{-1io(Zc7E&ro4K!}h1ZXDk*sy~@e<2g~7_2r)
z&t@3~bKV^nidnhyXJs;$Icr|NU)p>}78;vrOt7qdLz<gEEtav^Y56b?&C4wD&##=e
zN`6ad%x$3PhTKNs?H^Z$>;_UBRLp!(2j`r}o`(yqxwEOv*>ejs@{S*0p2Pb~@x^Hu
zH48pp!0Qd9rig1UN>=(tG|jw4tV&5sOQ{l{&o>HVe&NWX@>##-waMw}$+i6U!zBT$
z;p9594|3nhbxNlnDfbVuW+^$nBsR7rJvrmvM-~#e;M_O{Jh?vtuZ+tb#p{w`2gr}T
zXh63STn#UnT$x!C^9ork6B>4Sb`wJ$FeC|?tPIxED7q{QNAi%vD0A>E16flmB8hfr
zD)>WLegPte{;ct9Sthtuo*0*+=pExF8yjV$%Sxs;Xd{cvY}QL@?|@MdZGj5yrymyo
z4MgM=JJ>Q;H1Q7DE||B(Fg6u#apjN2cE@k|*avLHC9e=}a3AMa<DdYi!w<P#(~aUE
z42BkiD8DCi<40l{H%wUz4<E+0JNP<oVh>0Ho1%B?H(n@7TO|ErL3%|m{Y~T!xA+4+
zd+Sec%BAoA?QOR6O*Z|fW5?fOFvE6B<7e}k!z2V7^!(6^>}U6#c<2wee$F>M%O1bw
z<dYv?+0`UUn^wO+`cZ1hh$K8INsDflgg?NK+ZQ5>GKiT=^{mMt6|@=I>t<mWyB^K~
zOANx4C0u{rEKw})(+d|0!Y)xixJ!`u^}xCcj4L!;5->ls>ga$z-7b<L3s|8bZYbow
zU?)dmiGWxEHKLeEP-I)x!+j_*VKGqUNk{<pOh|mdl2Y7Q3b&r6MTJGB$z}S|#^Myq
z;wij(%HsR3f9rbu@$;dY0rwh!RCvcY3Qrm&@v-jomE~5nMWz>ssm@rlIo6pf7EF({
zRm^N|<~R0ScU@2Sb=S%BkJ_V;QFaO0p(3RSeUEBa?L0yGMiV67R^ZeRI|1d44$B%a
zmPiy9Ed-#WCc*z)pbEB)=qu0q7VWFFq!Yh9=3JS2QB*&zxNv5X&uN%nJ9e~oKC}iF
zgd{^CrXVTDpOaJ&6W|ZIZ0l$ijbG2|1)J*>^ng!P(|ZxKSvVh`+Ko?^A4{7ubH$vT
zx{i*z;#KSC2E`PM*MxswO9~S)?G-o8>UCnTP+^1?NR=2@%})+=u1CQyPX$d<1Kq+A
z%vs`_k3#@g0Dx=aWuOH7=&5nj+~KJI;aOdBkq8SjGNqmgjW4?p6wyWJG*;+~6Y_I&
zbMq65^%add(X*g29bUBK`#W}gUrd`QN+07Gd(jaS<KX3vn2GTWtBHI>u_U1x;E<0H
zEa(9dY{_VMYlWETaGOkSN1|BK+C932Po=_l$iJ;7aH9*0Mwu}Vx-iR`*m(q*>n6aY
z3Z+oO14HrD=-2vh2YOHi5-^!cm8Gr>YIa=PT`1%{fNk6!M@R#{fA#FbPKml)6~P20
z1`0*f8q`8xKe-Wgv%<12JnQQnyXU{?Qb5p`3iPpcN(X5cJ;>$v=-S#Z(JNZ_zB#(&
zYdy@KRJwO;-RX|}^mOn3?R4D907142<rBNuCBA$HACS7^gteHo+Ox54fO=D`D-lal
zkxRqjAUK$cgd=EIKg6)Z5U%w|fAMVJRQLERkJoM5?pe=f!N}*V%QR_Y{=t=>$qzqz
zTB}j9g!`i#Uv|z~v}l&|<r@#&e?NZ^>IamZg&|n@y+5C0C-@AF;Dly%K3Yn4d|@i}
zw0S@>)vg&21d}bg6rRfie$4_Ve@V5ydj;9v-77!*8A=y>_n#4K++X|ocGk1~^SiVL
z>vbec`N;R6hI!SMe`d3l>?fwb{MAjWtfl<XO<%ptrjL%^thM@d-zmHhl5Byt4Lb|v
z5d%*VScmCSr3;}<M5m`bOYh5~(=$)0_(0K;HMRLKUUBm7D_+d6U9+TU{({|4z4p}Z
z1@d7{7CUeG1qZLaM!xu(YY$$qoPTaFZrSnk?Kiyl-VNJ-zN4kse!;b!NR3RL*K(Kk
zF<*UfRr_b)$!yzZkpJ{q`&HCd<?L6YeMl6rQaZ`?PMA%ez*$p?6l#_AX#!aVX*0AK
zQ-hRI2)m3=g$3n}?=+S#$hmaa)4O&(&2EN+0~=X711yt`v$eGZ=0_pUxDFU&>FCm>
zqdjdEvu9U88A1W&6Gx<VUmXFoN-q;tr7kuq&;mjsFQ?%Gk}b)Dp2=+R79xaCm2*gJ
z-__%4T2B8JIz1P?LZC^*oaz^yi*6N!svrk+#6)pBk1*;;t1qg4th%T^%`r8f-JL&m
zR1t*{A-FlF%s-BAm9a>w%8{gnN#=VHsa?*bB4?V>_AimbaQ4Kn53gAksICqyTN5su
zJD1&}$mz((kWj;@r>z00&nlWd6UqA4QPPQ1{onQD=~bGSDuBTM6;91O2d7F3(W2s9
zLYn8|T-Uz<Bv1#VQ}gAe`BNwK=Kp;^j(!P{)2kpi0e#k^@5)a1BzsHg#jzu&d-03Y
zp));qChp{e;<^(AmS>|(uGlC$j(HT1b)7sgrKj;IXEZj>WT+fM&LD1J_OR4Ls*l*q
z(0*St?x?Cn66Xlq2=RBXfAIcmuf0F3!jl#b&CDrGE$O=Fk~`|^*v=7bS7u(Zditi-
zwW-ZL2jmZbwQJY=ENTCiKfZAN(wlb|t*M++%RhlqRfYV#{G9wl`NvUtlN<7qoXx9x
zBKzeX35|WLYW%Zc^=lYDzVEu5<-IgK<MOAzyzFWDN8JrGXOH892>1gx>U`KST(A29
z7zKa>5}U&3kmea3T`C7PP8?q(!vL&C%aPcrM^Mg1kzT=ZU_koGHY{==3Tvr$@}meu
z(76{7H1?;&I71DJE<MRiU^7P?a8f96CrjuPOiSgNNlxqq)xvQiL_AGMb3xw}oeN`_
z*unhB7sISmTR(U+YryaFO>HUJbY5U7kF&c?($w^%6EDR3)04!Cc>mjVaVxT%7K77Y
zh?pqBk>{-y%(hC8Bnm!1{Hf<A1t8BFtxwo=UCH!@lDMP<S59DZ&g85_r%^8$%`o8a
zP0ThY)Xtc~f4<vQId8GgnOr&F^k`17vWt5xE{oCUYPhgvos~yoQU%8akk7xAErBL;
zSAr{HYWu<$zLJ0U`jX{Byfe;oeiD2g;m2q0Z1pd2o2`0NZeU5_oN%sWEwXvy=Qt`I
zaWQcfFkr!plQXLd3#&3)s`A{D#094%@0qP-TY7so1w%Q-PLtK0<SH$lRb31tL#Z(y
zOQJV!vAbc;kzMkqzwtG$nUaF@f<>0!vV!feb#LkwVyxaMx5<@y*LL}%dvho98^~G}
zG!Mgm12%DxTp%-y23ElgP>F!e<8u@r#M`blW%*7XNs4jC{))30i@_o{144R^Rr8*2
z&`0<U|6ab|DnDdNj5ADQu+Acx<;y<ubl#T1Z~P{O0!%EJ=b?4Vrko^~VqGOG4BEb;
z44UEKJOLm86hyo!Am)Q!HsBasU~C_J&}j9L*3I~j6J}|s9Ib2^t)GnG<oYLJzI#*^
z@*7pcqeqp0r2Ia)Ek@XLawMj0^4y&Tf{vobbOk%-?s)Ra9goXjGQ;DKZ09e~(^$oJ
zwp&%MQ50;b(f^;fo$nd@|83jZ9{K-C+e4*fZTJ5z%<S3oe*-a^ze)w(O$vQe1nYvJ
zB*)<$Ysr7#Zov3|0_pQNY?%LF!?=@R+%O7ICr%Stt8aiL;ZmFgw&TQSqwYf8PTiHd
z1G+<48zDTSi3ftw48#0%{!f-cl*4{6&dSM|CMS(y@ajcHD%j%&>p*=TzY~ufG2^DI
z;q(2Q)BlV7<N5SjzVW+sz1ci=CCsEPG@J8hxXNd>uRm}~M}+kHr>C!dWnn&ErK*Cu
zE0x>r%5_Y=!9E*3GS~n^U_5eSLiybZxnwPulF6?oQ?HO%i>G#=8S&=)RljeYeqj9x
z@a&1IUpOl(sV3iSmhVvVt^C?Gs8pfKH-G)@yI)IBZS@Byro?W5#*<K263$NwAh|O|
zHw`v1F3|1JU7_2rJE*%&cc1Qix~Is3FZS4m(<C2}16ik^u<sr}=L;+26At*byE<NH
zp2y=S?${@R)kBNB0u&@YM|?;yAJ2eIz%yR{c>eMGzbgOS`0-~wIj{%qH??L=S2NXR
ztHxf1SHsR<bmBtgTBuz2P6(?p;zE^L2N&(Y`kpz3ojD$h1=gA5=ari$!<2|KrrFXl
zsJo7SE%)pHHb$+D9X)#2$g@PdZ}fQjqP*UyCr0i%%DzKwi!PjSRmwUmX6*F#fRC;}
zFwbT8o!z*?;Xpe1T!OiY3FW9|F8sGKYF)}6l4Koql8m*v8oGWP01*m_=u=5KA9Iu2
z1jw=||H*uL2Ix42Vj~)o*!-aWNL(}wc0Ts=<D&gw3o0j4P;n<ITbyoy`#?t;bjkr`
z9p(HL2T#KBsFYZbe9{vO@#&*HS^n!gMx+!(Xw@8k<`MbD@11}A<|f8|co>pw0yA>v
zFz!3P#c0_0114N`D=T_$``GdAPi)`*1iPhsjS;ks*I=%!9eIAkj-xhnU5(igD{-f>
zshbOzynpf4|Gb7RU)uk6%gU84Z}%;`lj%N}&tEE7O~uhZ@RAp>z+(@yf;-KIp8I}x
z!DI5P^955(tf|OqvWk_zW+iuA#iVDpn#>zsli$mvI=7$FZGCgP-e?YHo6X_93;UmF
zwmN>eWA&Yr&E}k-$*7<8?giVAU#2(g{Ie=s13AS}aA?3%B=_Db)9(y}j{!}bz<8*~
zJ?g%B6!NI+Chq$f<~O#PjBK3i&fUL_9~G&2j~%7mH(fB+3jam%K`7{~!1cNu7L~(+
zy=h;dw&bj>vBtMm9KnNrBUkX)?+a+$*pYEY0AHsXIp-+-6y9(hF$h$CqJVmdLqK&a
zaz)CwldWB7-owEOwgIH1fMZBlS);Sa6aa|k1qDt}&g~oVTYJssk3Tk>_X4fr9*@9T
z&wOZNx4r$Zl4;pQ*Tg=hzCoX2Y{;`c@qPYdySUmWO6x80W2*PAyVU04t~7VT^GVy+
zhnU@kPx*$lr}N4$i@LL5fcjI#@d_-FBkZq{^@S`jHYmR$t@{QVp0)EJjtpP>CVHKC
zwK@aG`T<k;=#N6!kN%<V4fKg0<~}@-wjldSkZ;4r%?-C7inahL2>{8vN%%r}=W%B$
z(_Hb|gBcG?AUFkN5Y~VkE(GrtKO*q7;wN+fJOUo29}*gAigXo;osss59xv!U`MCtT
z0Y-7tL3UXoH&ltG9z{;ZqrR6sUVoNd1cHI&I+7p&q;$?!N3uAwtrmOGDX%no4MwBE
zYcw26x2D_tR;zm3LQw{z$I14jT^sfninHcc`?<&9(%S_|Fgz!CeQEma<<nfbRx5`e
z7D31>*PGWbp4^j|Y{)20DOhSxob0p(vRs8Wo6THMV&gai%S?{*q({<HS3croFfSI9
zmzx7&R+BHvTOOMdV}n!S?DY~$wAsXDNVYq;DV=-ba$R<ttKj)ZQ<iQ_DC+K<n)P=K
z<U<&-hZGNNbHUJ@`?;7A6_p(wC1t!}G#WkhNuGu2Hk;p;W=pqPv#jYGDc)#wdRA8F
z`4i{1EOjSm@ECoJImY2}$I8*}B)i)@z07H|Fji3D&cVUa!ocDkW<zO7Y1^!@L#!_E
z8H};GV&kFdpNLFJqLA3MCuH|Hdy5Lw9-Z#ASfk@AJyEVH$y{$@l0$;)v7F3MdvV8b
zQm$Ta2;@wiR9BlEj*m?a`}2L4xCfbOU2t3Znk9<_&bE9L2<iyO0S^KOrvvVyNMD$w
z?n(t0<N^UHVB!%svr0r94jB=Zo+^cC++q2Q%*2P_ycTi*kb}S@@%^~I;{n)}Du_z$
zup2s(9FxP#<bNz%$s*|`Q;Gt)(Q8)dOQpSkEXW_bT)uQ$T?xZMH!rH+#y0b(_xw@s
z6s0x3l%)-0zf5#UGsiaIz*XP{Gp>Z?zGt@82bgi}jd`<0OI%h}?mL<C!YOe5Vr`GJ
z6_@etZ0}#D6xw3jtqJvGYgV7XWdsD8avq}ihl&Cxycjh1B8>wImJ5vIN5RxqA_FrH
zs@2572~8G=#8x69z5(NV=>~rmtP)1KN?i~;E|k*J)1YM>DD}XM1K28x)<y^k${_Ud
zb$yi^7~_)BZZcu_4qrvEuW5nldr=VelHQ23*c0z>-O3(Ze>l-?J=9$=Cy(7F3C?I=
zOiomcQC#KDxT_pC^QMT7w4}n6kv>CmQNZ``#3MQW;Ul8Q=rkAw7UD+1DS2AAFt5=8
zA(0!o*<jI=g8{uovVY3nfse6wezk8VZsjl~Gu2+_b;dcZl7NWP8><fQNb;pS(r%Em
zlQX6W(G!t2))h%te2N=qOaH`*76bm>B50lJByg6<YMBR82m}id;C2x<VRX2lh-w<D
zpjDkL82k`8Ac2A^PVl7=Cz3vkRIUkmAQNf2LD5~G?$Zen^o2hgyz&+b5Z6FDj_r=}
zA8;4WfDMgkag$!M6<*jqk`i^OmMxUm+!^N+#KoD?*1WX*Wa-HHKbPM>e69S~^~sLO
zw|{F_PIhXxNfa*p$t_zOL`Qkrd0#$!O=hMi9nQo;ugPP(9?98#=>=I?S8aao(^>ZT
zhF`y0oHk=sMkaa7nFW=1eN=iTkVoP4?m&{jrHbrYIKMKwrruJ`EsJt?C59YnzC*C!
zQE}jx$A82GV{%*XJ<Ei&H|4kZq{KOohC>Ultl`DgiwiySp_^I88y9q~t86c=iP4J!
zOUleNTViVGPR`iymr8w3ZGBv<)8vY4j&06#i|cM)Q)97u{jKbLX4*CPHTjQ2sg`&c
zEnW%xe1QwPR>j9#8~m4DwLLeN$2j6+6B4ZEl*vZl{wrR(WvDeV%`t1Tf8LPXfbq*b
zW!1kU{S_xw#h^f!DHf-&ED-(&wMYUV2B<D_F@vbgDxpjt4}Z5HH4SbKkv*_ul>-?j
z6~eSPWM;Y7&#Oer#)Pmg3sa{oS+olnaA``?^re-%BGFb@dQ7QI$e5a!8S92~PqrcW
z%%9*w@2k%r?vR+n>=#QrVX2g@V=IT<{4WbG{r+p;zjT3mV*@q6gZa~+$nVMWBaO)=
z(wr-w`rxy_AAe<bYUO0B{PsVMoX21A`lah)ylvNfaB0tzH@EQ5^Y5w1N^&Q7&5|HG
z%(l$T?2Ob{8yow{wkMinOSd0o-dl5)<!rXSChwHx8>~0qngDl_DX%?Ehd@uOH~qD*
zwHg;Z@OSyv7j9++e|`O1ksR-mTZaNy$`}2WEw7hQ^6Gt0{p{86?_I%@+xEVSsR4Ns
z&@>7TC3|*7(9tHD?tbWIUj@DF`(gVBa;IdW66dL8xw7<s`%G5MfNC`<F<8=#ag+Rm
z;^UU&9&ncMzj{78;4F6H4;DH9?OptCdG^VpWHVK$&MpUG^gm}&iUiBg>2&(=`%gnh
zzCs1%*%DQD!bmw$!sq|PoyLagim<*d!1{JI(VBo(P%#kG@j!@A$c(}>yt)?AcAAc2
z@J=zY5+y+c4O{4OQ9sO*D%dbC07Zs_2{OW>#H3(>#ID;VMJbP904q|7Nu-?yy<RvP
zCfmo55Gq3|MSh5?!!na;W0_&3&?n#Vgx6-X2fR;|*#gsT?ed>rbMn~K9OnSo4Fk@c
z)L8C(P5yJcZF;~~_JlV8LqFap?nsI^<-%FC;u!KJ(Ug!T#wSog@j;JP4s(1%Im~fR
zISKJ%T7pTGUs8NphLdtl@$8n=Zd<7rjaq-iUuw=|`8UZgd>Wmb;xa~$zD2TtZ;eJ9
zT`9TIpR$UZ<To<SrT!!9(JF7Ltvgj;Sd^--I(QI<&GU05Dyh(JR|}HgxQSJKb3yV8
zH?jP)3zBm4GZ+=5Pc15>aXdqZN7Igq5s^!a3Kj~lCj;(!JkeM~M1#cqv_}Ts%8;Hh
zH12(EWca<?x(o>YY~)7fzL!mxZ`r)XY<Wa}<B^kbY?Tsb1&`dpZ{STEe{plfV3>E+
zt0PLtbgAx?I7Pm7M1JY^N97k^h`WTX8fIm;KgP;mi1REbqDk8un00no0QaC}BysLa
zx3F|qR+-lT;-vs4*|IY6gBc`0&i*HwK019KPci|*!?%>)e^1Fn^I|@ak*BfZi{;nY
zyPtP_#<u-n;nREyEokzy^7}tO|NNh`G=O8;&;RsI`;C+Gqin7GZMHGBq&>j9P|C%d
zIzDS(x!~yqYn5Ecf2Jh9=^Lm*>{(AS!%FC^F4wi_dSGSZB6y*CRQIgzW!*cvk942n
z8zGA2hoCFA71%OBmJ$;}uWT`($E@x(gc!ZDg-~`0;6^B1i7*L+hrI!1y{A<NoD8f#
z$Wg_Z2Xjub0;{vDd<#rdio}G&1cC=U5D1h+%>YTqa2d@@6zTCo1Q!H`o@u428I<xU
zs6?y9jHkf791l{8EXt^ONs_{1QLsRe=FF1p9R<nYj~E1lWFQ;p7Nf<YPtHhSPE(B4
z5>C!p?{x+;^E?Y0l5?UBS4;X7dxD;~Fnwu*TU^wrhboN7w;8N~lBoLGfs-|Qr^6m6
z2+l;l%xXx>v088$i^-UZMLaqhS4nhP%WM4Bgv6RlriFS|_PQ@RG{wp~{yIG%EZUUo
zugVZZ>+5|x4?i${#-&@97wLlyF}@Rnc9YvxVpFd7iqUC_a7yKjN)&H{44Es<7~^)Q
zj`cVli3wAjPDi+ke<eB{4r&G(^L+=LmWGqf`5{&q>t?a>MUOv_72z=D&!M?0i14E<
znc=Akr;1+YFkp|BV2duyO}yg#tJ$<Rk;kXn*oe_$H#q#!f3f&8y?*1JhfPV$@07nx
z47J6YY(mPN$!cZsdimX`oLFNNU4(Gh>WZ$8Pq0S2##myV-&$Vlc3FA#2Kmc5Q-#L0
z5<DDFFX)`P%D&;Mn=2<@I=INR<iZMXS&X5kY1d5W!gU>dz+Ga;S1VUEFbVF#@!6v5
z<Ro{RD8^)`NupO+pD-1losd|S<{Vq>h!ce<yCWVSf7}yxI?VZDAFTfCVws<ILdw4)
z-8wA{9~`<nwJ^s{;)hyT0O$8}EiCFREM5ysI@tcv!g|DS(!vJa0-mLXjXEp8RtuYS
zX8wp4hD<8|L<`$>$wCeIJWPazJe&>?M~T7=80Km%%z<$p*1`g0SAVL7MV*HckBHJs
zx(s}m8rCDeNedfv-)7sjuu&Jww`gIL&drZ#VT&%8Kcj{1y2*k7-b6p-jkmzhX%}o^
zbi&7&51O0JIJbx(G##NnXf$m>H~<Q>1emZ8;TqtN9^B958d9Djx*_BnRC2c=rLL}j
zV9Q`vN9VAwzIkKBH@&&9ZHq5ZToNwy)%5iElvhK(!N^c#aATwm85+=@KD43+_=!sE
z2Spn}bbsG)&8Emue=i;uBBlfKE<I@7ARZ$fBR$OsG=M^z2d&dN$XyFN*7Ff=0PlV|
zWUA*Q7xYmZ=FeL^r>3@Y{^Evd%Nyq}q^SR(#-++v4WW;ybv|7X-&TfSF~Z~hqFWjn
z9O~-t^92jb3X7GG{Lcz+#D_%iDb#h;r4bw)Q78J)4gJcsQ+e}ELq&O7k#4+U?Z~0#
zRP)d?btjcIh&tMkzE|nCZp1Ysmg2jxAdDb1UP>Qw(Nil@5796-_C%V8A{eLk$e?ey
z-#6SD@tqmkp-Ag6eRz96UgAwV2Fo`**xVNBZ656QH4hIDcD0NsN&5PSyILbd+CUGY
z76PVohI(+=cY3V92^Mu{U`eNd>@YyM5+r&NdQSb`=CjHyRK85tIXpZ7y&h^_vkFUv
zUH$(}2}KwwwO9I-(JDgbZz{8>2Orrt6v2Ci#-ZE4`p2Kc8wN^9z$xJ#-EN#QU9GzY
zwu1KRu406);cgXD<OXJhcUCjAV3%eCx#?g|r~pPY7jv^1EP7rR3x6%~ECJFMNgz{G
zm=8?NH0)k8SSIsB|0J8`uv{3c$!BD8p@<d3WNCnvvLFkA=q!T`MQEMC4g<u~vHVVD
z)vN|yR_a(iT);N4>1+m@36aLx@U1YH&13UfBU`{0vPIbGEn!R9GPWFkVOFwLY&BcM
z*0Lt-|C(6~@Y!cN8*624EW+AZ2kT^AY(47+^Q{;9l>KagZGa7wAvO$?up8MXcq8A!
zwzBiEF}?ueliS!RyNF%PwzEs%c5o-#1xb?2pt`z;UCypxSF)?v)$AI!mtD*DvHk1-
z`xcC{UC(Y{H^N8IL0ITM%#N^|*|*s(>{fOgyPe$uPgi%byV*VLUUnb*4!fUymp#B9
zWDl{2+4tBZ>{0d@+^s&ro@C!=PqC-j57<#y<9wDq$9~9u#GYp_uou~n*-Pvv@Id`C
zdxgCUBf39hud|=CH`tr(E%r8hhy8-R%id$ZWWQqXvtP4g>;rb3eaJpyzkxN?-@$Xy
z$LtU6kL*wE6ZR?ljD61j%)VfMVSi<RV}ED=VE<%avai?)c9M-TnVsS~&N$}+7rDg2
zP2ome8aHt>x4=7)jl*ytck(D6&0XBhW4MQVc`T3P@jQVi@+1y^3#>Y)@-&{#GdL_q
z@GPFqb9gS#<N3URL+6$k^AaB5r98+(Jj}~@Ij`WAd=j6`r*JTKcr~x#wY-kk^J%<+
zPv<lEOg@Xx=5zR5K9A4mjeG%L$QS8e=ZpCgzLYQH%lQhvlCR>c`5L~KH}Q46nYZv(
z-o_)m9ZC<Kyo;~r-MokQ@;=_r2lxg)$cOkaAK@GMCcc?(;amB6{Cs`^zmRX^qx>R%
zG2hNF;XC+FzKdVVFXOxU9)3B$f?vt6;#WgcbuYh`@8kRV0sbw19lsuQ|Bd`6evlvH
zhxrkHGygWfh2P3=<G1rW_?`SNemB2|-^=gg-{JT3@A3!ugZv@>F#jHZgg?q3<B#(v
z_>=tm{3-r4{{cVBpW)B)=lBo#kNETa1^y!cF@K5wg#VPk%wOTJ^4Iv!`0M=V{0;sl
ze~Z7(-{HUD@ACKfFZr+d`~27Z82^AD=O6Nq_;2`c`S1Ae`N#YZ{Ez%k{1g5u|BQdm
z|IEMOf8l@Sf8&4W|KR`RU-GZ`34W48H<q6gbfDRAcn7*o67(=fVT2`UvtSXdu<c|Q
z9D);ep`!(t;1*(_i|rL+g*YKzNDvZ*BmvAg!6&2&X+pY?A!G`EAxp>>a)ewVPskSv
z1n}a7VxdF`2&F<07AV6)nNTiN2$jMlVX`nqs1l|M)k2L>E7S?~!Ze{lm@do^W(u=}
z*}@!Qt}suSFEk1ZgoVN)VX?48SSl<NmJ2I{mBK1vwXjB5D>Mn~gl3^dXcgLoh|n%{
z2%SQguwLjEdW2q~Pv{p0gbl)=FeD5MBf>^uldxIXB5W1T6V4YdfD*|zVN|$CxLDXO
zTq5icb_%<MONGmX-NGK>a^VW$O5rNuYT+7TuW+rfPuMRU5WXc`CtNSwAlxY2BpehD
z35SIv!p*|Bg<FJMh1-PNg*${hg}a2ig?og1h5Ll>2=@!$6&}#-lRA2uhlZryk)f_u
z{ZOQNu(i_|>Dw6T=^uzlop>G=hlZO6&2(vs^bQPf5l29^i0xfHy~g3rCQu+95kA~$
zpm5jFFz@fy4@P?XH%1Iw`}=#Fy84XDy?<m_=x=Y=4|R3)HTMXu{T&jP%AroN6SR#H
zrA3;Wdxpi~uHJ|^*x%e{ZR_9E*Mk5>8^<5?BLfsCb@jFMZ?+8dG;e8Y?HX+DiJ;Db
zNb|4(OEsvfP9rr%DX^!%wOefOY3?xNW7-Bf`}-n8=8gS5BfXI(w8x?asREN09vRSY
z7;Notix^ta9k>g_%^f0sLt;yRf47k?w8BdRgI#^Y`qt*&$Y8Tb%PZdZwCTHso3RjD
zh9jGYn>r&z1)7!crmnW(PBY$h^fmQF+J~)b5KHE8WYD5MD3qa14X+;=8t!V}BGR{5
zy87CXPR*x<m9+Nu=GF-HTGPg^wn)EWpsRIwWH6#1i1f8~^_Y8`2b!p@kwJZP8x@Ei
zMmr;IUBl8)XY*i0YVC}mhiJfTL&K4Qrk3W`?oG{uZMODibm91uaXcVWr%MCP00IC;
z|9}D14<)xM$;Tg*lC%dYvL1wz74>W!>{q|sHvXV|f@z><WT=S%!`$1|rv)u45Gm1y
z{%+-N+b|MAm!J?zZ0hQ3?^m-8wGKu=cy#s;+q7&dRG5%a4Vhb-`^JOKgM<B>l%BMx
zL8TQ&H9Rt4Rs#w|C|yKwgysx&ZH+XwkM#6dweV1Hb5D;mvbnXVxwrXrv&4?B_F)l(
zV>{-^V8j^N0zkuPm?+TN(?1lkqQCmO`Z|=hOX$zOh_SV~C(_r}Jg6VUR-wPw(AwYI
zi}BX?Hh1(zhRx&sH8OCzAE|u+_u);E$gmBcJ}^K<wqn9s+X01<LA5fA_CQT=Xbs;O
z83Z}n+!LieclHl<Z6)fk#{`IPY6V;jTZcDw4FfLKjwc`^uvea}D#SOT^1*(gJF-Q@
zY#uUdO&+ohcaHS73^k1mP{%p6Cu%M|n-oOS+1%4^QLu}OQw%hqKoPc{uD)&nr#ixh
zfsvt3e3lI}DKZGO0SwdEt)P&uK0PWQ=-guI=t2!GDjcZTfvS;ufP?xZWxiV!5LYX*
zk569p(X1p;G8?oHHjaO*UM*Qa0yNaxZ2^d3(ohGt34=pJLT6i>u?5h8&g&CfB0W8p
zR_fMvbnI}%+=*dqQlVQ3(tI~4p^*WTa;FZ7Qh~GS3`9ns6{8g3I4f#o;OtCP3~+dV
zOGLkE5Ocm$8g3ry9?}D&qR&h%gI$sKR%~L-1i9)wkvazZM+Sga`nn|m<Vc&oCDIHG
zA+(MRV<-o<m<O5%6!_^H5QngTHPh%cwE$4N0df6<04_e#!~1)HF$TN3Bg362u%pv7
z0vt7nVk2lnOHV`s@OHHV&5yKpn=p)M52mmEbV%uTXGed32ax}19AKFcAz=(7Tg>S5
z$Z!*VDdq_UF-g?`b*n`UDt(1{1I*qxBo6ft0@QF(vKf>RCeQfFMj(PULWMOE?d}J_
zbO8R_uq3tgV~i~tI8#dNIB3%Y;rL;|>o9hC14cmlAjZBK7!f$n4BXxcq&d>lVgz2m
zICn(sN*625pry;IKB|yvpry2_x6OjQ!=3#@==_LrXrybHM$AY+MK$VMu~0=KSYi5s
zm1(6^mJ|AfmXWR=%$5!#G7r$YV`}b2?ah6y5q)o@t-EX3(oRi6E$bs_dIal0r_%3Y
zdvSXts;z$n1J#6f;!2$veO8PLe`iGj{?2-)Q8Ay%Z&8CvMxz=gjH;ARNeyk0p>8Z2
z`kv+ix+#D%Z0+rDq3=>=qg8`<1>VdXM*4@<rdiaWI?njozCL`6npVQ<-?PQ6p#pS_
zb0P|)K6Fe#gY;~UY#yK~iXcW812{0G5FpY}FB&4XV}<AwdLx~N4y^72&22`YIR!3^
zL`zUMyAn`P3*frVh(5;Z)!c&_)D|%*4MMUW$7y`0As`?Vb+J$;z1RvYW}+-jST4H>
z*#IiVra)PRWx~p085+Ti#PsbN09cQ-s39aPFSQPgY~4zI*A;1vU;(89iOR8`2@;{B
zAL{Ii^t9Q>7aFxSQM5!g0lfl-M!JSN(W8Svb`e^5Hn+9`L20YDf&ml&IV(m5kh7u)
zK~2o0AgIpa-ky-yIy6+O2W$dmnpLby9jRc^A*_xrz<bxgP}fk?nFT58blmu&B{r27
zmx5#f=|_#yV<kg-@wMZW1C^<vd?nJ@69G9(I71C65Q`?Zs;ikvLF-f$N-hbQ)g_;v
zX%WV>rj<<vkTZ}1(52L6LS$r6=x7-bMuysiuD(HG{lFGsaHK`(9^53f47U=Q95J1q
zvrYvMwQNBX2RfTuFe95v0~OJyV>OOZWXSXNDEchhc(j6pqt1Gw_b9G3NSBax3s%#S
zmWaBvX%FIN46}(YO7!V8)R~4hzzv9MpmY#`<H!p%7M?o>n|t-`plQ1Yh32+CvAv|M
z#NN_1+ycZ7Y^)9gFk#Q2Wmvf>QI4K|RCI=zvQ2m%8JPH%;L17Stvbawfz0jSG-SXu
z9qjLFlQ1zxHlvwcEwr`_b#EEKqSik$IJ98|ivq|2fJ(o<9cZ~HBGQEx@ZqijVQ7Sg
zHXJt4=B8_7L}(f5;2XQ8O_8paerz22@P`Ct0lV_;m<}rDrnq2?`T^r>aF0rY)2pz(
ztsnG&vi;CHzpUK45u`Y%Ql(8uRbFgUS2iW0sh^?(bSb3^ja7MwE@8Tq(WRU&6^4<%
zu7;ADV)S)$31TWJQ$;B~Ql<*ZR6&_4C{qPxs;Cf~g2hUX778Ipuo%?@i-T%uwJ0c9
zj7-5|WC|7|Q?Qsal@!y3-j-0N63SG9YJw%GCRjo_N+?GO<tWkGR#&W+T1WW;lrKQ}
z0+cU6`JmZ`3*`$?z5vx!N;Q>I4p?)>g>sZ?&8yc6tS?auu2)h})>5rX_)S#0r9Q0P
zsqi3`5u{p!RBMoG4Jt1vYf#HNjVcaN#UUy-M43XADMXn<lqp1+LX-)1TAG4k$`Pg<
zuw#r1<p^s{ZBX7(rf?aCq+NMOnab!z8D%P?Ol9<<jH)T4Y9Q&1#H|#fYRV`_Iprv)
z90V6Zf{P%*MUdbkNN^D(xCjzl1j{K$1?8xq90U|W00k~Vu|1#+BY*-S<pt#+pa=md
za6yg`0Y!*_B2<hzLdB>fL=X`ohzJoxgo-PqjS=8d1PLTUR91*UB19k&B9I6XNQ4L^
zLIe__5~?IXl>{gU0Yiv@Aw<9sB47v+FoXygLIeyU0)`L)Lx_MOM8FUtU<eWV3c<7$
zE|jB`a+FezQpype96`zvq#QK#AsYG+4Lzh4=t4Pylp{zvLX?BXJw)RkqHzz=xQA%m
zLp1Io8ut*5dx*w8MB^T!aSzeBhiKek?~E>#BTP9k=(tdha0PlBIdGvI7<7av2Mv0N
z20es9$AxmxpoeJCLp10i8uSnidWZ%+M1vlpK@ZWOhiK44H0U83^biethz31GgC3$m
z4`I-8p&Wz>LWBuIzy$4qvWPN20_EzA3Q$d98u~B|eOSW>fpT>^1*pC-0YI1lAWSGB
zOt2KD@ekAZhiUx7H2z^4|1gbzn8rU$;~%E+57YREY5c=9{$U#bFpYnh#y?EsAExmS
z)A)x2>a+~hXf3Q!=X{_hptiiGRJ*GaE>NR2wML!!ftoVyeYtiYFRw;>uGQ{!+Pz-8
zPgC!;TD`Sey|r4swOYNkTD`Sey|r4swOYNkTD`Sey|r4swOYNkTD`Sey|r4s8qy5Z
zY4z4=_10<i)@k+DY4z4=_10<i)@k+DY4z4=_10<i)@k+DY4z4=^=h~^pyAd)y;g6%
zR&TvluZCd*8iozjYxUM^_10_k)@$|FYxUM^_10_k)@$`n)B1Uu_Px`zdZ%giPSfh0
zrhV@;?R%#Yq*Q2?PSYx#rd2vkt8|)H=`^j<Y17ohCU)u+&XpJ*?D)khk@U>?v$(?k
d0m<LsAEnU!bjr71rTb6jPcEkW8zr5O{~!CE|H}XX

literal 0
HcmV?d00001

diff --git a/oxAuth/Server/src/main/webapp/fonts/fontawesome-webfont.woff b/oxAuth/Server/src/main/webapp/fonts/fontawesome-webfont.woff
new file mode 100644
index 0000000000000000000000000000000000000000..400014a4b06eee3d0c0d54402a47ab2601b2862b
GIT binary patch
literal 98024
zcmZTubC4&$(_Y)Q?OXfSHg9d)wr$(CZSQ{8wr%e%e)p|<|9eyQq|;BjCzE7qGMTiS
zyqFjeFc1(Bu<scV{67g2S`7pS1o^M@|B{%PitIl_rhgT9|G}zPyhB_>RO}xo^G_%I
z2O^L=ATW7lM&^H<^*^2eAN0eSJq3(x4DA1L)&F4euaO6sK5joV1E+r+DAqq4sQ>Wu
z0|aVj?P2<lBLV`}^8f;o>5hA?l{GgpFa`oP%>HM?@(=7t5y$lA|Hyyb+&}%lcF7Py
zVOq>>oZbI%cmJ;c1Ox<gC+dL}Vr^&i&(7os2nZ4b2nZGl<hfAW#=zbF-|c<=pDz(8
z9SEMSfsF|eu+6`IfrtPBfrTEXMOE9|IXMFX+vx)VA%*|};keYrWflDM`ERs<ruhnI
z|C3YlyiEVerC;V9?%78A#`^kupoY*8Ncx8V%EsJaWE%av5I}J4K(9dm)tgQkXZQC{
z_V+Ig8BX{2&p{MqL}FuMbz$B42Tm3mLO?=<)WKQ9{RDWkLx{yQktU*mLx=&*O+ncL
z{qvtm+?6_TKpHtUvotw*=kF)E02S%+ALsXn@>&!PmnY&6cmq2?4Nt?RBbj#@*S#u%
z($dm;AKJG3Yv)w@yrS19dscW!&dp@T$utcaiktwRu?l%Fgn7##v*Q%&IaI$|O!P}5
zE!tXI-Ss#N&%~+2xwep6)=D=@bER^nrNZX=A{Jq3H3E=sm}xcLG|pUA-88}8wRPyv
zPnoSTxscjcm{McuVx_s+*=h#*Xv3UB1T}&E{uxPi!CD1QZy{>6F_-GvT;_v+@h3%S
z3~p6JKLUMaO+O0%W$iTHs4{|UN^?L;ts#@G+64bnV>gujTO1A$SfkJKhUN{&{#iBu
zbrz-NBAI4CWjjIN*&fwVu4RubbB`IvgcJ!WV;{$}bpWy2K1lw(2Xe|eWcN9U#V^J=
z0v&sgD$Y5Kh^J4utKJ8w`)YkScnEwZDG=2~oYvdtqau)|6HAhwqW$r>MKydMdi-xf
z|IPEi=Mls`ySoS4Uu8Lk>GP(?uENKw#l^+NO;vrl>caNS*3!n4J~PMG6%1?`Lo`8D
zP!I`IikK!Gm+D~0Tx5dT2;-4lEPJvvNz@R<kiGAHgN!1hJv!-#1G$r6x8qe+Rh<L=
zZ2FVXxySAGdCO~->oxn4bK2&F(-3ukKoTzvdLw9<pc%2CJ99f4k^?qCIZN~gP5g)W
zCXprkEjs?tvi~qSo)627XGEc1SF#jUkVi>r!ZsOd)GFakMtPqh`I$P>j#E63N~^t!
z8t)N`OP-Ey8cNVPKsgcS6B*&w9LA&4rPERq64J$9K^)cnN)EQxZgj#nJKXDP(A<tW
zNAO%^i{5c@MW^MU(q(av?f$|fWL~!<)mXOmPZkm<A6DM#kt5qo7l^K+_Oow65wm}{
zS{f5ktlc4#l`z5vk%Qn_TMX<RVPNfwI5O`bOe@#IKG3aeyFS*Ix7^pC9`!FQ$un+}
zXUau`=QZ`6PI*3`&kd_MQs8Bh{kIm5A`@gd==frCHKz$*aQYq(vXPdt<;B;YXY}Vk
z!2k$13Q7l%vG;ZcTZS>wtHNPvj4d!y|3WE|h>aXutjp#eR1Va1(D~!1cD@#G$XK@|
z8ScdxW>*_WC0A}fCWQ_Gk+039h^tbyU`-AaRQXE3C@|xuc#bIvB-u`7jVA9qExYjR
z=L}OyA;5`@PuJUM+d|rr+H3CQORerU?U9!{Bot;XUqe}i%R=!=DIcZf5IBHt${UX7
z$u&nXerDE=@3Wd|0@Hz$q*rpVDJ+Wsi!-OJ!$UKaeXQAz3oz@z3unQS7l<)x)linz
zAH493JdOfC<S%@|Hvq$>{BNrjX7CVfZBLDtgiqO>03bm9Y%opN;dZI*d!CgC7s1So
z<Lj{I=Syziqvncna0}ky87F#D0WYU597rB$E?Q=Q6*XbeA&#y;{cR~Ml_X8swSvzQ
zQKlT0QI)XTQkbxZ-fhyZC~jjs#y0Px*fMdt7H84xHp5c85c~_irovV9scGH{9{%EJ
z-LsS5zQdL;M3*lT%fM1ngsSCmYi6%4zrFL|&A|mca#oCIKIV*Vr8d-w1C~con4?p*
zr$_56r1PO=HN0SH`prXAax)$EY_02zCKipD3>x$n!T6vhxG4g7BozT_i+(EXciSh1
z*W<L!SJ(XL_SdE<`{t~@UDdAdUz?>Kx5dLayUw$Hadz3+<5D}%BZCKe`cE4yNK&2O
zC_2B@YGbYTJ=@>6O14_I7;gA)sBiMP<Rr*bC{!3%h|0P^fuZ#J<E|t_1l^I3=GWfj
zGronMV{|yF%HGx(Tw@_;se3`h`M`3Awj`nz5|n3DOFI=Z>W}zMqr`$mljy|@#K)X4
zywlOE7bt(D_<9aY(j=81rYh}wpQBZ2>BFX$_0y{XD7Q1jV-(PFSPU`4DYgBSjuXGW
zB&TypZ4-Ia;ZDv{*YiZ4BK%bLvA^d#3^`kw)^(lO=^V#PS}I{JY8vD2<6?gDUgByH
zoos%w5n5SA70~&_wmZ}=sE_CH+$5D%I~M^tEkJ&ltZQI7BsvH)rso$j0Tno$9{71<
z@V}SCAhApjLIvlX0Pxk%zZqkf%M1LSF2n#NI}?5xPC<wONXcqDK?%thB2MI|yK>=!
zobSQlu20xcw~DY&-wOel-n@?qJ&by)A02bP=f7VUb$6h9A&zxij{$poi1x&>usk&q
z)o~Zd^jeapPeoI1Jmh>Rc-6+ws~2@GiSZz{hBgw^soz#me0J4++L57M=6^+@00R~q
za2yth-1NjYw%qz!q2gOQL3>x?qI6L_n5iR9jUE#0ppndAXQSaxXgAAg+?Y2ZVSq`=
z9KUjbab4|QH-zBoMtL>BP)ja&OJ4O?2yYF#*>9aH4X@u0(otsJ5@}kXX@!4~Fy4Wh
zDN>w`7i{CSlIi9?H2YDBB_h~K`_cJqA-9`a@G}pVc;w6b)PGdJz9MqO5m<F}FzeZC
z*X!+f?>S;`wb~72i`W#}dhh!aglheCet+(79kLz+P{)7XRuyhb{YxtDFZ#1N?6e^#
zh*vvtce7F3I~yiY){1)rPtn#OV%8zxe}b9$IU5=66PVl01yCBSd^dXUKhK1G0R|IV
zcvk_Ac>q2IN6uR13{;c-_cRbEqYJTB_{Fr4IijaD<!Mrd*>P_s&jXx0$`sG}^H^o5
zz-Q`#Xift$p?Wb<=<h|fA;%agwD@EyQB>fxuzXVyNKg#>QnXBe)ocjuyk{hgW=c?V
zRs~?RkX9n-Kuh2ogdASyGctZ-79U~PP*d!u<<~CRR3B7LYtxF8T{?!Nye0d%0n1-I
zI4RC68nKpBKg^rfqiJ-i4HXbQx4>=dyxjLao>lA4TIu938pOX`7jX~@WPeN@jr_P#
z^lTrnNnS5FJgePCzFZ$yZEE2?4_z#R){UKOsw3qqM;Tb8H@A2_3MP!1!fsit%Vn(B
za_2OfhiiPV49y_-YDhUHAURUHq=tlP%rx5l^&mD@G^8z-Y=Z-tIt3L`u!>WVQxz;^
z&9LZUjm7~;VIecrymMSz9sAiMQWB|u=tF>$?NZ<_+~80;Rt&KJZ1cdqEdhb%EWus!
zdJaxE0R*U{g1~6{#~l&e3R1mY+6nb{2=-5{7mcd@paR4GV(zxv{CelE`s$Ei#`XXd
z)c6s?t)+nM8@GOItmYqze$tkR-@pNBhUdU3!dN9ILMYJOj4^aUvZMFQFK=P@cL1r6
z@U=sJ<=N(Bq`QQC3-wJHuee;+1OIT=^WJf^vichJbLK-(8A>DTum-ya`_|C7PvY^V
z-X#zAoguBv{!+QTW6rx3-!1S_UiFDt_}ti$D*F?fI@AHKaETKn;7R7C5HXlh^h{!o
zsrxdvVOX}7A?4Tr{6o+@q_3pMQZTg)Ea1)Q8|O#l$}N5<%GqV~ZE>N)M!~x7JUKA5
z9t(l39F)9Tiu!T`O`2ZQdW$v?+Qe4m558`xNHnv~bX8j4G6ay*PnvTLCWgm@K+IP1
z^SI~_P^NN)(Qy;<k<zK*cR2v-gyV~0AQiU6wxyy&Q;~4VPY2c0%y=4xW{-2|PdgcS
zF^4oiRfuFIl`54OCbx8sWdU1~MGK^EAw@<m&+%NtLJHaP?ChvFc0Prg|0QDUn}NwS
z!<dmX9)(xhmx1?IbRx8JB_Ic-_B+^~(lH%&-IS2K5SC}&5UN3FTv5U>gv`8wrCM0r
zdu^7~mAS%W$G8dDhB^z`1T=lN-^sNz%Wcwkz4|)K)IQg@u1iEb91XhJ5xEwYDfvM6
zkLOfT>Goml>)dkK7RrcGd}4t$1w4`Vi@x?8r-Xz-T@erhoTTvYj;62sm##V72KMKy
z7jCvo37#eEob8=(e^%k-w*#CwiWcoBL~yaY-mZ;3#7$hwrE0n&Z&_iqW9;qZ8h>;~
zOjAz(rmb4$^7bp}HHOIkg&1oXJz&O9f5ETRc`KDiwH!c>87$<tuS#eJC?p^dhgYAu
zVt3(EafN~hd+X1VAY`n%z{Y)(fLV5{rB`+<wj~`@By^!un~RGmEPOd+W=!KsUT#|j
zBKNXj>jXR}9R=#e{N-{typMNosUZX^8aPu^3Zb=_A_|$kJ2>CKI25a~u?@$|xUD0E
z3rV0H2Dkhmtcz}Bqr1R;PGC&s1*q_(cw=w!eh^JIxmYy6ip|~R@0t~6h9kSKF8k`r
z-rmZ)soKb2jgHIODnmo-1=6%KLu=Va>yJSJgYnC@P2eB{+<2U~g=4b-hjNb|x!65z
z5!Z3c@32#?=kl#m5f8>l8a@f=Wi6&X>j+N1+ruaQG?CtDV~PXb>@WWf2Q($z>z7U+
zMBlz(Z=2s-T8$d;Ue6M3l3xRuVhSxm5<B)h0`2`38hI#DD>s{3BKIpgmi-?-oisza
zkmgcLp`Vnlx?L~qe?(H=WYV)H)PPR{pA7{5h`m_l^X{d`q$MOR49YduCf{c>9PI^G
zU)!twAe$_^TtGrD{jAw%Wfw1k)5`DgJXWP`-<M&JiUEl?X^Z}aEST#t+_N(Efbm3|
zfQ)w<x{im3hyL@G^^sy#+bz2isgU@vv!l_bXVy1Jike{>7XNQ20MryLW6t0#t42k2
z0hnOio5PA`bpihQ)A=v&;|;YU&l?F@fC_Npa}OspB^Vr!zTb{NLwi)Hy`}19z@fr?
zU3Jh7xd)*wL=El;v+()ck_u(iI_w^muPd_R6?OAcCyxtX2(<rJlA42`$|$TR(<12v
zl?Y=e)gf9DYybQZ4qK@b25;3f3J3V%pD+1&^X-c5Giw!-UTKF8n0O2YT{F}e1ff;g
zjuv>vAWE-tjbs3u$PJ&jfGp*j;7`8P+@e0HF88@NU#6<M%>t?jH*EMz0L$My9PHiB
zRVebeoyHC8Wl&pm$IT(G**{Utw9Bh)HAE_^TCH*ta-8|<-fxJ&aV4hWUSV75)+$)r
zdIu%X^B9`Hh`wv*IW6Ho^#zL)v08Di99QNKyQ4Ex^x@3G;Cg6K(hX}D-{D_(j!D<f
zrg1OImb>%6g}xd;qA)E>mv@<*$ZX$rUpcaK+~5kxF2pAac<y?O5anPPc95_H`9WED
zWYcOrkRsxK*XDZK&y<t`G6Il`S?diP>=%N>3B`6+-EO>fzLHkzfcD>r`}fy+!N&}-
zUH9`HP&unio@p<rTM?to8R%4f?^t#A%^89fSe<HHA*j2--tcIx4&F)}Hbj_5T^cj$
zFF|M9UGld?S>V+24r=ON7xE68a7?3>8!kAzHyK4Lb=YbvQ+HBn+||W{Eg?GVcYQ!l
ztSPK!t!;<OEKu<(Mig8rL7&)3cSc8nLm>Un>i4P0$ET?I9pdIh^EU0+RcYthPqRm&
zPB}LVBWJC5;`qzHr{VN*QZ9;5?qvVIY@^viP)2>OQxb+mdkWDzLq#%PR5z67y??M+
zSjDiw%<bN@u~pn?LjN*Av^%NtrcHn!Nw6uYgXzv?BGZ`2z)Fxe$ldvcV_=rTg_zy$
zVt>%q&n3QENt>Lwj~Ps8*c{0xvFm@csrU=eyiH}Cpb=6h0&O92O%dTc0WV%R`6~bS
z;QT3eZTz7V7f#K|S{Kj{_}e_u;Joz^)V0uvH!H@e3WnVKG*Y;R5RQx=UKb=?4!qeb
z=_DKa-vz<<!-#l3;vWuQzB@*wKRW8KV4p5-yPE2&L*Kb)=K+0M>$?}ZxrbHii^hC>
zLN`k`gS9^kaeye-(%)p=Q!i(kFa)B=q#!VbG7-calS3zKZMl8Kg`I^HD#h_iN?($!
z>66rNVaPiYq<@#JX$rYXkw1$h7(yVDzNky$V^i%H!;0ZYI+ZXhW#@zfK7#lXMnh2Y
z^3kcr0*7W=&Ss!urb<Hj1^*_}&FMjA<THPQl9#Y$*+cYu*aovR?$_?Mf((Pm8WuQX
z(w)kntkfo+k6L5XK5?x8D;A0y>d>4di6HWv0K><1f+uu%DQIF7AJcpusQzmE==J_e
z-fwZbee~KU31mUe(k?U$jD<>ni>OKvN0|-t=m-(#j;6O&G~<{8=r6^gv3$D&K-xY8
z-A~Ae;#6^CAZ`&J{>W;EQAqsZ`r@~1+yiz(zXcIDK*GBO!0caA&f@eEcUcd0SLAp%
ziK^4%<Sav&1Q~{(M?V|7JN5KxFol8bvWsFaTxRp<P@_bvbtFhUWu3z9*86lWtML^9
z#C;DDG_0n~qcRzJTDmsFLJoSEBE47{fQ*99v9-<hflt}`b`N31iUd0<*@^)wW}#ZF
zeN&`IPbaM(%6@frESDf>9xfj7AK-j%&m}#)l$Krz(B|KAu~u{JsH3mYsRF-@7#pkE
z;OJGjbEEV%#{Qt8>G*G(Vfh9<)rQPk1eaSAEZC<JH+7rv@BMOTV&D6H6=!m4Cy2N0
zv|$(o9`iC?32N#QZ^#lPAcP3m4FpZra9I0|#4}_=Jqc{i>J)F~PoR(h+g}tl-VX($
zYO0R@KF7}dH^^v=pHnQ9YSNiTJWm+f!v@BwqQ$Y$ei`a_1{_|I<o%WKWtavx$ZQwI
zOg7hf?IM>-ss`3Ry;b`bNIE$R<S=!Sz_quS7=Ad4IYK%YO{6~+p_215=-{lh|Jzts
zhzbfqTR7AoS$atY2J#p*VUq9n)4<=kbhJ~Ue*SztHP9nZ{0}cB&PUIC0T7o9IAy9k
zX6TA>nb+z+c*ky}aexvI*zKtJjccvTTZIqk!Rw!$+NgN&BT7q-IM^YM>9lAFF3qsj
z{Ui)Y_-SRrj^=N_HhESJD-ltQtL~Y=Od(%jfPRpq8P9`F;O6pc)s_oF{z{=|n6er5
z!u-{h;{bvm_L%5agg+m)4aA0YAb@K`Qv~Y<N@s{Q`gwf<!<S<>LWx~sGmt6*V!|?F
z%7PdL2(eqp+Sq<ETerEWz|-@#q-oRaFR~bSgTqB(jupzay7hGo<6ObuZG(&7ALd99
z$H#pYC!xL7{N3A^>bvQ;>6xmHK-4tnG6El;(blqDJ+}Q2=*wlRYGBr%&K>9+K^{Aa
z9GQ#O*$%Ki>UYmph71RnuwA?#!9vfTIuG|p%N;AWWwB5C+IE2*>xGPGkT?t@?Dvhd
zt%Wpg_71*1_@0kBba@@FZN^TvjpVY+rkq1<XZfI(GvRp^mRM6N3mBbJH&~P>h2gtm
zJPXCjvMjf7K+`s#pH$0kv}>*SPOV2H-e;NChSuuNAtqhRtEe-DVqBG7vr*enVEmVd
zAv-&^RqMyAthD#nN)(w!Yp^GI_VB1e$~skiRlP3K6DJObNVTJM{r0E+{x$grTNFbh
z_uB<D_Q7y0vO6ERP3?(oz<N|y&4vw@&eU8j!8JuRvp7--FcrN(nj!~;y9)~vI=R4v
zeRIZ~?_AH?p>sc88W7$jtTI-pPGD>}Uj((F_<lBWCkEX5^#QJ6*rS>m&nMmhI4lhx
z;SZUOC;SP$w;q=0ux8Ozq190iFGeAoD%-HBSfOO9W&PK~Tem;KeV~3gA0dW>Pv6I1
zYNn)N-+Qq-I+AJB!=V9uxeoR-tL7t;-ZGy%%>9l;tMtQJm7z}(vh)}z8v;!QqkT%c
z`Pr;kXU{<7gZGe(<&Zjp1|1&SGt0&iI1JiBIdPElDo}oD(oS=FPy1_j?dy9UkEB(@
z9bfbpt~myqXy`*o?NPpA2S*3Iq3$t0QzT^=d^GlO7pmjpsXe^IwU{J-P?mtkdD4jT
zbfg}pfa66t&>R@<Z8=Xb5anVZ0@*VilInharGReOmWG@F2H~xj{4z&<dWfz$Rj<py
zm>5s6DBCTElqWD~=VAB5A$Y$g3nSX4Ol}s9ozugn47sFrns|d)D7D8mh1^h>F8%3W
z2a5TI<EH=tQ)DCEKj~cA)7>9W)%Rgrt<QP4pCAdA&I{QZu#15e8|E9mu`%xzEc4J7
z2bN9=Pr>E1+L(i!DwwV@xZ@VytBSnvu3ay?9Y$%KBd@=bFp#4X>B};lBl^>;B5%<i
zBeZ|TmK^P85F)d8Jb(ax#IIL|Q6+2FY)??77PzOwe*DZ||6qr}zKgeYIX2Udef04z
z{K#*38@!fTKYF;k7}>>LW8TF<a-2r>DeNLsW?@@;#fCxMm!*pX9lfHt)uuajgiV$d
zT#h**{Ipyhjltvp#_fvwZ6(9T&)Rb;VTsa~=gJDe$;q~EJzFO3Apn2EXrlA~F<KE$
zU^`~@dRT9`NnkY&k5rnw^8IMHpQYj9vL%e__KV3ACO7`>^1;i;H_jG>WmV*SvFHky
zf3twjY=>%B`6@dr95pk37;>@x#zI%UP>yJ?6%2RCAY-s(SLIof9c#sG+>FEDjD6gU
zD+r3UOyZKt5Q%XW6oZUQHH@|K!@vgu>y(j~#NpH5x9l+GPE6*P91EzHBE}krNo7~5
zb|0;8aj<>dJDCakJW=LK#vk^V^`8D9UP$2lLk&K$X+Ag;(w#ZeR7?dFGzJkJMi;Oc
zoicM8#T@0|)<<i-CzAhA*$y=Z&Z0PxVqZX}e-5SKoUi5o6#BA`Ohg#o7yyhaf~(fs
z#T;g5k6S!wNA7;0NgV?b_ITlcXM0r6ZO@u5M|~?sv>b|u?YyW0!6Ew$>Y~pX2XU`J
z<A?^&Uq$5?i*YZnoAh-Ted7EF>DYoQ`d*fm7~YwxoZtL1W7$X*5n>+fi8oUqvJri&
z6nm&FFcO9AAX=7k9_;yussklMDtxu6t5OkjY3tvL7s1PUqGstoYssPT_ItLMXX))Z
zJ03DK>_IPJgIKX7x8Rw<+?!kIc9MEA5hw)}5-iqzE8VFOr%mr5VC50inCtJ#tAQL}
z1%tXg16rH5cZ?pPJcaYO6~hh*gGh%x5*s)RLDozXG<$(Q=kn_7fh78e%R|8C^X%4F
zm9*vMr4{4*^7ibRo5iK-C*+ed7*^J_i&Im+>V~x=%ybD)(9wLptciZLN_)YB5O^v@
z{$Ja{Qtd!!GiH0^v6Ue$NG8nsD)~)N*JjWChU+1?Ny%198}eb+iG#cLFl;OopkF>K
zIJg1<gZ|vZb($pzH4ltHj`;8bzidD`^%%<T4%M5LS_!KXtzD_a(AWgymwVbW3(#<V
zb?|8f6xaG-z}4OhlEIJf&0ddWw;~%FTaylOxMkzYCUX@vrw>zG{!THV!AKNdnO5aW
zt-47+g@#B%3Z{i<S43@LH(h0Inj&$ed7j?=wQjuhVH;EX$@l#HxJHc-AKQe3cs&}8
zKZ0?Y?sDCYx`Z^Cx|^s^I*iw(dRAsvhwb(3U7F%B30k*WJfGLHM0klB{ddN50ZTy2
zu60p|v$n`?G0`75qP$UL+d3eSXk2mIrC+O+ew6RiZBe4b>t%Q@M`87PUsQr8-l>(V
z7?crSbh@OEA$m#}=67-ZTp889W3?AU=1tjMdw;Ne(Izfm0-RQ+6jH&8gwGA_(Q}sf
z2cqudmvKpmxhIPXLGEOm41F$3^s>mhI5{xLs3uHjw&8hlNfyhYWJ>LMMzm7Au8{{4
z-78CWHW(hd0`W;PqChl|g^3)t!&RZbm@=i00BhlV_)wg0=hMU42F)9g3L@3ao5I}H
z8I}fZ8eb0a?<61oj=9=X+T!Eq!RN*aH=0Y9i8s}rg8IT>C(zNJ!Th>8L<=0PZ>~y%
zhz0Bh?ag(U19g*K4YsztBIx+FBiiPs)+@S)uF6ph=|=6xgUL*jcixtPvskp*56`B0
z={4aNiYE!<Z9^;P?FtUwfqZfE=e;SI7Sl5M@xR%o_93*!yiuIf8V_%Sf0hYrsorOs
zfkK^9_=$Oho>i0tq@Z1;pR-k?I3o>lQ~?sYinu)T9ag!9h~z6;ikT8&2oT|A@)-z(
zaQOIKXY~=W6~KLycubCWOz(G95I!BBDB0Pny<_|zlgVmqx-mrqM_VmHhiBtJ`$Z5w
zCPrd45%V_Ko8gYvDbKOB4l<(Fy#)}+&?NnmY-1A}rTwO$s?$(4W6U5%XfMI)w58zk
zbnp#zcaX9eQujFlW$d|exgN>CX+D9ODCFX{GoRcYei!0W`_<p^r<%M|<v<e(yc702
zsGRtzx%b`iJ6Q_e<y$l}s|#ePV@&Z%BjsRpVnr@IOe(<8;=%MoTEI_({<MIx?o+Lm
zy@uf}-#~+3XTroy5iC8qqX>4DPA4@ELI0BSq?GTP9{qy5{Jp>{!$ilU=1r*;&BcRg
z$*q-IA(UIbR;y$MuoVtrm}_sru-Iv6QF-Z$*v_HQLPEzhFGyrl8>MSf`fNpzygHW~
z_QJA574ufXwN23TR!mhNU*^BKQw@5&LTdJs*_=x{mDYt5qy%uW6HuIrYQdUw=BHHG
z5Nt@%wEdaq4{)mv_E2B_!pNn?M`+Gf3%JA^GCHQY{6Z+#==o?<Xc<Bbo+i#H&0;Bq
zPkGS2-h%5-AG?Sl&q79mB*ASe)Q8HRNCZz&>VMBVKN&I-5tw2=+-ea|`(iVDzDkf`
z_o4ZdXMG*j@}fOMk`);6@zP0?jJx<T&}h%~U3MIX@wIi?F2pMP=$Rx~vVOhG&L&fI
z%&@+nxx`#%MaLBV6tSRtUBbUEE)aL$F(n`|>g<s`On6!kmkg!}$!cL@ukMVLxBMmu
zb!1M*xy0+mHQp06f;84P+Uf>|pqYLnuYp;NEjq=E37d$523+{9c|=_m;Y=FC2zr0q
z9ABp`#xa?^D8x?{^m9Pb8P5(LYi&GbahTA*2ISmx(8c(0gM7mGV0*-m^P2+5>2y*D
zK>!ty(}TsN$-pvPyv8MaFTTJ&O7I6s@>;4;BIl36G56wWqHwlP{~pWLHf$Uy#0Puy
zeV;G?gvis^Jxj`$>M5o?zm}_}UVzVP!9jt89Pwn(1x#nRAN`d2;9sJ`tk0AOz$1+E
zH{8RxgaNe%M&|1hrS+*9C*P^Q=fDJ&p_?m6QWaQ!V5kK*vuF%HaecM^I*<GHD<U0!
z?Vw-JqXtn?NIzh8dAH)H@;erWZy<Fp)KYh>D{f1%Ubp+IA5m}APs2n1ZJ<ms?xXTU
zi^4!7YC{p;W!{O&ivrx{EGU8I0-<4j`OT6#reRd25lOhZlnhn_O);6DCRAY!BVw=X
z+(#m>u)J^J{Rl04s^nuyFN`DfFR|@!RJFA-DyQV<_<Z>xaV4SNKY62@hT@DgkLAq~
zhG+%xacHfgNfA`ZaU>zuj+4n`fU3TLj}&960XK1bcKm{wvmh9SVn*;5QgF*KxDXp>
z;Zr51Q6HgH%jqJevB^Jiu6LMSlE`WNR1ubZUzzA5+#sU+UBVg8!D?yT@>=FvY+EEQ
zC!*yn>I=^d@TLt~CR<gUtqRoFCNQ~7N=pIB-^L8<acJDWKFHZ&?KRH4)Ny5uD2jgY
zM%%mcr$Pa};^OuI-jG)kdhz25dJsHAKw+&1ORV8p6=`~X+8JAll7g@mftT@A=1n}&
zS`B-Wabu!RMcMspnE&J;9&n{hi81DZjLUgcD}3#Y463ka)ne`IfTV`gQwz_WU}S^<
zjqQ@hMq$hFA;ADZdMa+Bq9q??N3;zy=KMuH=wtb>iEKJXWgp@5P+?!Jd%4yZjSDVZ
z`OkMD7`^B2*g{%}qlKpgf7Zmo0$lvg7&BQ)Aza@3G~b|J$Ysk*P8I&CB}bAMZW-~Z
zIR_wi6Up0t%hZXSOGa=}k*;=(xjt200^6TTRMf=`GX0xknXv$dY&r<S$cBtbmr7c%
z8dg|Gq^Mx@F2bUtEF+yZk1<t631!(_Ug~#Ax?D6mLho7lP8N}6B@gO8+*Lr+ENSv4
zuB5UJlOjqmA*=e|#@?#T<v6V3Dnd3r@b3##W1upO5V#EzCbXiZxH&?iH=J-^5ucn2
zB}#&TJ1e5^d2#7qR0GXTdW>T#xsb_X8RNyA_$By$)d>6vNs2f?oR!rfdl)uT3^wm?
zQwUBwSI&b&0r(I>$MjJH`fi%N1_>bz?&Ie_?js~TGj-`X%$+E9%n{r<<}`S$e`-p)
z=*`trS)6S1Q%@D>CURjquWCtl()2l|<=i+Y;!j1i7jdhWpckp=OwWUJ0MIi}l3TJ6
z%ie2wuVKrrw_6uhff+-6)=_Nlw(qWRJwWbgGK?~1p|U<-iQ8R_>vJhnE;jiLPcBi1
zRW@hF{B?5XRh6|AR&h%$^yWc*ouol%@U#QTr4H?XOSYZzd|Vm2@o@5F7Ops_jl7Q)
z_!ybL>GEq;&gio9wM`Qi-TlKa5EY2IY0@jteHNx%WR6`sJuJP1f$&aYFSPnLp{u4Y
zEC0QDql)X^>kq8ecE4t_gb{C=2=3N2Gdry^aVqO$<8QdOeXI3e?r5`^^}Z(42qSR{
z0UzZY8>scj<Q3Y!S8{2XYT0fr-jCd5x}ByHUoWLG^n=;fe(X!*S|UwonOU}J?-rpV
z7aw{2Eqqt?C_b!);TwD(s$Q+B?s#*;2|+GN{>$7ip(7LQ+vQ=uIKkHj_~tcpcgSP5
zl5+MbW(cv;e_PPRsa@@MkrcgqMx5Z%N!L9-bn~Ur<+53s7!rjk3?<gI`54Gj8$Vx<
z#FH=xj^&gwp9tEbR7;b?boGuRVv=(J@npfqC<2Pzxwv70W2GpI_pgzi!gkLW!0I}8
zxIVF;fVd+FsJhSGb{^3Eru&>KlB}I?)Qdv;%ICl2PJN$ftp)ow;+k%4wA>Ck$|vtQ
zY_;32dscrw)Oop1ekSSV`gS{<%RUw@3VxU0lDzU1SQNO$YkfWP$ke$i6f&=S)<#|)
zlsaMpADLw$TU8oa^N=>@h~Cf?=Nn=+j|^}w(v<M}Vw)2monZgX2utG5RxHF8Xm(ia
zHnGZQoZass?GbP*e7>lxqQu54&1r>x{W^6ldqjSsVb<$rwy}rmwYQ01Baz>U?dDE)
z6Enk8YWv#EPCC25t@EorUGU5O{POaAz%~D^imu19F!K|CcOQ6u9A(3jzt&6Lx23hJ
z_sY<?&e)V;92O04dAWT%JTH#=I$b`?@Ht59g-6)^nR3Zt*5_Tp?#8~B$8UUxR*b}!
z`px4dPclxQQo@VebG1i%V`-qyjJwO68P%1TVP6p5Q}m6dzH1N{3}tqkJ?{a=PO&aT
zXpZ<%AjynF9+mkkedZ`cxg$3>^Wy`DrdJCS0duxEW>Bp16>_r;eS+N9O(hQNv<q6X
z!LJf&xRsc1VT%AbwVR2Fc+<~Vq5hN%Rld6L<JOXxJRR~0!+M#JkloN2s4cuNCVWy0
ziv5I+{c~L3PZvw#<Zm3B=|n0pGBOK}8tiVX7R1vUr?+-vhHTooBFw)Ck9F(OYz=qI
z`rp#>jVv4ZBkPTG<kV;HThDl>)KZS(quq)nebe34H)H7M%ti+!MZpA9N4oWcss21+
zAQwnD0vc>}2(d1Q#3z7x%6;?j6E#S26$>I+F1&^X5Yhyy)jZx2)-|Upucn@=gqJ|1
znjL{ulPOb0eXL1wk8Ah>PJa-YixeC}tZx!&A(kWBz|&k)2zfAfgt^NQ;Olk0Vk3P%
zSYd$?<92$LGI`4r+F>*)w>2H8@J!QRnSiB-i2PD1f4t*yB0TW=VEPmk1ex?YExNMN
zI9GtnDg}xUYG}IWCAHvEm4{~@{-51el6Asc*;aKov?K-kv&2q9S;tVToYnO+c-B=`
znQKkgiC7CwY$Fiqj<-%#M!D%}%W?y{P=lzvRFF$pViFDB=NX-O>E6kM3WCB9`o^B*
z{MM$j4lm`~NPO5-ia@%@awPiq@h@2GFf=ysU@*00s(yk}5oIaOg0TGff)nIUWYyxN
zcEn}cZ}y^F)#s&R>KDsgsBwSUKb9_R?p87K-R`$x<v&(_!f{Ea&rKI~{B?g%D=_d~
zd64W5YlZ_|sO7aDtJg*(c%A?L)%)}JeV)}X(Bh#p8;+JH$GHAyDbbySI?o#O=)_N+
zuMnUV=PkduWqz)`w6)e<-X!{{1S&#fM5ILcdot{?<F=}<`;Fw{t9R5;=7rWa*G*X{
z{2{CkPf|0ZW}HxWpkuhm+yB9lRH?)yVF7<xa1@6>3itD)iTviK$x&+bcHFT*Q!eFg
zNcceU!8YQz_sVsSd;ERa>;c4~o)C6(H5wX?RrI-;Mgfj(au5r*P)ju{uKG+ds!M@l
zW?klvU;Oq*8pDCohHSQ24f7DeFk&%(PZcU>rFa>O6fcD4U}U3XS#+b?NZOc2maoDf
zS5>B4E6*}7JnfMM)^Z2!u|FFCSETDqB*+}eo{nd-W7`sNQ!;2e+6~Ni)KbM22iZWB
z%yRrZnm~6U0RBToY0kZLy)+s{VKacat74^qa)$4)&Ph1*?@Ov-g?MMEm?8Zb;eqt!
zLvhaQgRdzKuk?`*j<s|~EvD~@G-lqWsxjRi`d;sWTGI4d_%EqP%A?pgKrW~zC9?5v
zG`vd^SmM7(5XDoa;styK#oZZ?moG*5LzknMYVI7J7PDCzFnQi~OGIosrr#5bX8Q8)
za@v{@$K%>XV%Juuj*{CsQsj!V&}8J|X^iw$%6jIW)vwOI{HkFX{!z0lWlKgw@5_{(
zOMVy%4F^D<rpqBqH4z!T8=XiSh;~c-?&owaRpXoQk)sN_2w{&TNj3XeNHIN=_#N#d
z9)FCDYAtAMHQx0o&pm6}LykKhN~+j>sc0R@>XubIc?i6ec|UaBw?M>gea5yPFzj5S
zT>m(ee^IdLw=-~?{o7xKpf^)qkrM(2p!((az6XGrED0(FM33D<0}i-zg79zA=DNXS
zEsb+Zs~m#O<|j?o&r=|HRfL83{B0M~P{4zigdGU_Y0sk`&i#!eN@q9FI$Eh0D@$c=
zHCwJI_FH!WbsFo5orbP4n^#UY>8;Ped9MS08=u=>R+PXtTkh6>nUbtX-mk~TlT<&}
zv`4nQ78`LiHas=DuR9r3LjJaDID5~MGzV7ac6>D$N#lJ)K*b$#vtKZ<$~-Garg^@I
zP>8fe%19Y_zr@ojHZ~{hg_(b+=~elZnQQ=ZFK<0h^nP0I2;dD#pcOcEKg%FDH|FA=
zgCO~T$_6o8I$2SShA9w6s>(w(SXOn4pJ?h|oFzAC(qSCg$%!_$fG;Qnflw=yLUdWW
zA)3k1AMBe)===<r#fQSmedPJoS+6)g*_XqEY!Uo8wAwYMpG)K%Dtdd9q2xbJ`ixu{
z`KF9)xG7RuKd<pBg}3b%r+KISzC(RFwk%Qw^X1u3n}&m;<#IHV{R$VS$89#ixd)~j
zO<7{4a!EjClZK_a2Su&oGZMK?=;a%;AUUSsV_?}acaM0iu0G6tP_f;oe%JjvVbp#Z
zyf@SJ10R9R^YG#5^!8_6g<M&ifp8c|jG|1!gy68#om(TaW9U@{^ilwYff~oM0Ui&_
zT>HMKi6Z+RK3K-|6!Nf$WbMb-SFwgWqST%&t-)@hRVSed2jSKYbX^_BIu^IWwbNF9
zpJnu1Rn|Wqa>o_q$=jWj4UQukG7HKuhoijLbIp1FaSe$CRlFxs!%%g2>DL85wjvj(
zy86kPCL7BS#|tDau=B}#QE|ffG7?kw$s+S;oe~>*PDr08^U!7HjxX!ohnTQt-D1S<
zv>{kD2r9{5>ItH#v8$A+WSK86m8%+ql61HsP9hz+9q#mvT0C!ly1bL)-)G``ieJy&
zd%tNl6e$!ua=U}>dM}XA>NTG{gA*PE_J3EIFWC8k4~p(C2wkZV>yfP7W~hmm#ntLo
z8zO~R9Z9@lS@sMv$@L065Op;&QPR1FUw{cSF>(@B%9&rewXJ#8_cAc=o6*#1DT$<H
zQSV}Mt;v;izf;q)K~g*{K<3122P-sX-@|4FC>xOzeycmC9E)Kw;29{@u_qV|P2(ZS
zxS}xa+vYYvo$*1@$w1$QXeJ2ZsA|VX769oq82C&5=~|MRo4VlmF*%RSB7`4{P#pDd
zHVO!rfZDXw4$Zpt!Il+oD?D$1+{uEk#nJjBK(eeJY%HhD`*}7)n_Btv{`Im!O4a(D
z%EQ}+PvTbP=WADI;~|5XOqn2(kOqamX)kKHqw#y&_tnem731aRZGz5@?m$TdETNl9
zYS>UXk-v4THB7I;csa~%`a0{~6#Le+(<x`G6xoU;d?%J-@yWMW26_M)fv<#&;;9OE
zAVAo|xSk}(+N3^jE%=-$=BmtDQE4*bB3l522B#*Yc>mw=byX1PI&dDx!XDsGYB|_m
zcnJe4os^9}S8d;{%WfLBg;;#j0-p7l;vBtSuFqcnEiu4ur+K*sVg3u1YtU+w(t}S*
znYH047Q2SAnx}fb`rn$h^+M=ct#RG8&mx;^A;cRG6M`R-O{L-D%KMi~ug2yjTfo~>
zH4VQ8Mvs>gE0<^aSeNJZh7>i+(1$u(`q{(nwWQK^YY{7>(QcDGjqqfWJw2Vyf}@0<
z*0q@`%Zi=ABF2bB1I%U^tnxIB&zV$RNhKpCH@w6qHX=p|SL^r?GC$PTAhC+K`1sxu
z=1&f_c)8l2Cc3u2W<phEB@~7TVAk`Ycfm9vv+cMfx`c34IN`HX_`0t`R#eVoi6YJX
zrcaYK_*O#~kk)e`H#HsVwL9HEQRPWgACldr#ubhQs^dGVY<#+9BBq;`KA7~GG1uHx
zWEhUI_EhNMu#3F1c^w07p0Z<zo2R37+}`ix95Pw_<S5!r?iIBBZf)wgZEL~M@;B%w
zwJu$y0C-3<Oou?mM7p90V0G@PPR5DYmK|ESoR6LL6A#)|ie<kX89VAM=%S@_ffX$%
zyet7!lSuaytgH#cT8oSRN*A6Lzyo(D{*H!~TeTJ&Q_FdlJ9qAj<4w*WXspwkGKJnB
z_s1(!EyEj?zRl}AZVm&hT%X6m(>@J%(6;VRUbf0Btl2F`Y)VYf`m|vxeoTi>`gW96
zdvwr9$IR>Y)MUHq$%$rM=IkMf`b<@d5=nY#^q%C`fbwITF7v&Kd~K}4z;F$*^rQ0@
z4Sj#ac5hQzCLMN`*^3>aRyVd2a?)5z3k(T7strykphhh$nsZ>Qc7_&FaAzY51H=Kq
zn4HbEn!l9dl5~X1xNQFng5l~P)~B!E-}j`fMweF^Ns421yno{$UANe9e-h$<ORWH)
zwdN<JmYgWRH?k%y784`R7sK*|U->_dT3dQTzRcqepkzHk^z<TZn0GjuG7O8EpCyDT
zui*0X;fXLTVd$i=z?0?HqK5HH-mdCl;ekUT{jkntTpU0)Wy>|s)HyzqDH#~EbY*nE
z!3acTnuFHKm4Be2=5dmGaC(Z~Y(EH2Sh?kod(}((&UA6`XTR-YOn2Lq=K8Ed9J;;w
zkQ210aTLZ=kK-~tSZUlpgbb=&zrtSoh^z`D-34aSz#KFN6OkBL#w9Qm3&c|6wm}xW
zpST@|N0Y+_&$;v!^lp@ufMv?cYmi{r4I{lR1#NwKkwjJrH|5aRv8PE^P+iKQnnsxV
zp9t{@(G&~gYy7pdSBcci0$eh7${KG?ZP|P5B!Hh!V~Ydjpyepjlz9e_y56W~f?UN1
zT}>?Ii^u;+sVa<|K{^5K$KG$V_fNK*c-!7`SKC-ilQU~8d^Yh?4bl^Be3ZK^lT{8=
zS8p}8Foc24u}xec3~k<W%lw#`Zr|e|d>@==9w{AJZg;u$Bsi94Ws6U%vuicdGkP86
zxPP_v64Oubdj3pnSIZt6EKDi*gaANFtS^9aDeN6?*l&Po^l(+nHNdVjB*mkA<#9R(
zcBb{DRXMY<aT3K;yatb*{ZRo_u%&Gna|W&?!a}D0kpMlhi8&s{^i$g_hsCBbAu?H2
zTpGvd5Hq^_L|y+paUeVqlwk}y$#4m74l$7>=mRP1rN=ufcI?i2TqDX}okf?on<4}r
zl;fjdikvb6STV!q@K~{=8VjL*l6Q)k40Kr!tD_9n-j}cIQH4J3L)rJNMja`rb^JJA
zOox=e;F?5I3T<R;(!s0eP`@Kie=#D_kwQyzOJ-Bwiv$wdHE9%#a1+RyRT5L?DgX45
zHDn~ph7<YZ)D1;~70De`ZTt3-wYHB`E*-O+w7Jb9SJ|+4={T-NI(2TI%Il`WY`%3`
zTf?)jOQ2xi=cITkO}Gl>&fsrC0_^(Yus3APsM;-FFE!Cx%+-tsa;5@zPj%AVh-)t$
zF+X@&4pt>X7%PsBv14&KggqdqHG1W^!jSt~HJUay?gXlvWsLkQPE0grR#Im*_Tl>X
z$Zi}x0nE$Bk%)~}`lYFe!RX7JuD=ox%p`whlQ6|bqgsXfHaF81jT$YIL9{f(HSak?
zpn0T?m@}WjLFh8hI=OyV6rERA*m#w}U1h2qzjXGbsml6#Jw&N*zdT-dd=15Ie+EtT
z*#y<ETWzcEuXmI@5`4V?0KZ$Oz5pRkdtj^vS)hH~`!^SwKO%W%B|HZLA8K){Ik~KV
zcYh9B*YtzT)`M}}bleXZ;~#I#mhEx@GUXK=uB~nzl&;158+mze8_BV?9yOsY(!8|1
zrgi-NW4YzYA^DxYa$;E^e1Le4SO&^o^X~BV)DoXT=S^zYS!HR~MUAD1iqOz_CmbCs
z^}0&AmnHhSx{NOAFMVID@Fg64r9yh$mg)@>E+H{;eR8(c31v!LGR%vg8(nR?iWQ!X
zgB&?&SyDYVk5FD=GAgy6YMPzYc)U?f6w91AysneldB*ZfNwqr7o)r^k6yycj+5=oG
zIsm{uOIXjQV$7>=Gfq1Zc(Qc~$x7f?D4x<e9PMWOF+*|sC}Q+kSoL=sGJ4|m7+9_I
z&0PCH0@U@^igkK;CZ90Rq<g%#t`S9t0Ro@f{m2>DB3DhOeHps*Sz*-D^I+uTCI|L@
z!^~0YFTBJ!r7pCmhdi8L0w%yf7id5|2Cex45Bt0=AS`Qc>_st%GM2eiFurXA8)&vn
z(v1_c41I0zS)vsNN<jmX;j8M`zp%8FXBNQ*=(y}DGe0#Nmgg1FTV?sr9OKqkQnBH4
zE%VZl%77oF3$e{^y0Y748;xzDI5gmG`-tSMbJ6y;YlD((_A4R8tKKx8TjZ|drvsU4
zxI`(`Z=}N~4I`xYyz_?JBkN!4!S8WOq;4Bp)G-~s*0$TSUeT_t6u*r$wV9ul{zblK
zUC8(4f1hp^l(y-$f0*mc?Jl*y?=^e$JW_0htMyj$_>O%C$bu$RG48L{WZ2&C)?)C#
z>17e@z3yu<pho91+8m-Y@9&IE{U!K_6olS&_>@{by7YpJ=5K$JiT#A#la2nF;S3f;
zDSR=#+R(v$PoqqAEtF7EmCxP>bl;Bz4el=aO=r4jf0+oz{lpsf`JTJPo^$7U#Lirz
z*rL0Ew*_?NZcc0iwo4?}+q1LDEVUGyv&xom@Y2<247cIV0>W%XhlS_CXn+GXfhKB1
zlkLEMF9fYoKw9yoIFBEbwmtAoO2?fPtK2%89$@3BqiiYqJ(gJ#O3CSZtS5)QCq#Td
zD;_7RGd7geKFUW=+l}kCIyx@xSzhNHB=BU*rOC2NCU#BeGr7%XUc3<LJ?Aa$X19l9
z!3ASI5lh-3?PIQ7x_I`G*0N+cdp23XGyum~<yf|@+gz`i9)ilCoKco7Tb;t_LUOIS
ztc%QN<@Wt8yq;3CogeGg&6~waFW+r+Tz`qO)r)_L+^>KTRu(22MeP|OfeK}h6Sw$9
znybF@fKbPT$!GsTdDghElPCbj>FE=w$Ot1AM3OO`xCeU~O~LnREf(PRSZF*d#^Q?o
z>;6J)+eJi7qg3szm{M%>vS1BMpTSV>egNC$?5H3hAr1~m4Pbo}?=89Nzi~9tHbPTP
z;2V^AM16l1wX0b{vq4OIUpnQ|fwiRQ8kTb|JSWSTROq@C$lwruW0aX#qk-YnxK8H>
zHw!#`jFjBf=_XQx5f~Oa{a_)-ei$&AuTgrk;Fu{BoqrAlS)sby2vM(P<hWoI?7&71
ziK>>jNt|rNgh>#=@{8vwQ;2CN+C+RNN7dj;t?yk<b<X4!I*6+KxRa*=n+N~<uQ#&s
zN8<<2bE=+7NHzkYAj!vXMxRI7VhiZ1-A5jsfl9YIXAT7QZH>eFtlMtesE?J!WjV9*
z3rus4%J)WW(aIZ8p^48E4n3tHQ9k8b_cpaLHU+paT&KQ&zhG@L^d~+YM|w33YEs);
zo?4rq3Nc<hE0ql1owNNup?9pXzoSN`9`zQ)HeUGtR>CzHtF8B$38y_<uAl9Okq1qw
zEdTX+(rVhaW!TarOK4Jc=;mJD%%b7NH#6(E9Thh}Nrc0pQib}>U>LwR7r2++O5|Bv
z#$sZ13Jk+K41jjkomNzn@>A+j*<RV1qLrKfRUum8@d7)uAkvYEb;YBRBYZ}C_H67Y
z*CV(cW=qC3`YQWUlp^Ty9BOVaRajKe%BQ=1)=~2qO0Km~<y8?gukGi^DWj|8w~_x{
zl5n5XXvUeaQ-TfbTLxs1Ys{(2S7N3R-$a=O{Hvb<m(+R<66OqPkq?kCU+t;Ho)~0n
zf8?t*CK^y>ifN0KeIZ^$OW<*yfL`NGz?~QZUTT{3buT*ARp{p{y4spA`#PCdq%(!t
zgVbI=WSZrJZYhdd&(h!^D?ghV6EWy@F=6~$$K`8cR2A~~Yg!i~=>Q|o`GeD>@AK1s
z*Uv*oP}N%In7?%8Abm7D=%i3{BPIHITKaU$uuS!$8KP0af*C~(-(~u;_{URw3*`*_
zdq{v!3xx93adJg%>3)ftaFArB(~d`3U&FxMhmx>t4)wF+v~l@12ZgHeOpe<MYqVUD
zlTo7q$Bd~p*2Kygp^kIVfQsAec8l0hIqR`q;=D`l!Ai_=8FPhDB|j;;9S2nq(o2t&
zuVsWN6$W;tsO%0(?L55#Z_=u*PoRlyrM<ImcYGcEsxI&1<|W&h=}dJFKMPX&^W-ZA
z0i&a$BB8*+kUHUEP;}Bq#$nzyRih#(MBJ*X&HVv2u~T(#iFn5`Hb-YcV#Y;ww&oUV
z%jFGp?bTq2Y7%URb!%e8MqcNK{i|_I5O<HT5!i)E*X{+S6LYQT_WB$?PniqB3C$=a
zc-J0AY!um5rVhzVUM8FoYe1AwHM}cgq^F07=k7%Lt1WA2w4sU^;sS#qs}d>lk^&}8
z>}dr$wl6ypRB);DsHO8~b^1t@aoA=_md7tRbz;K2)jSa&9J7=@>-9u+J;6&>r7Fe}
z1Q+j@6rI;ze+5kFhp}4Uw>xg<puZVf$+@W?>0GSfUi8Zhbz}Y@6}@->kHZ+jo_eNB
zh(V%q_s&vwdO2BFfGpWxY$G-%v(_2hc5_AcDm2Jepu?qKUkzVEKPk4WM>j+2dM@ow
z8vq`m^&8RJX*`fav$SU)?UJt_67BmEgZxsQOvV2JJV3+0J-Z{8?Apzzotf{|zIMm{
zv!jhM>cxsvuURNkE@|ysfs8o<_zT7QN@VBJQPZ3}3lcCuLXJ*(Vf-n-Y6LJ=XrD6d
ztc1sN0qxRH0G(w}9yLBmu9JSRk?N^2Appkvq5mzs20=JsXT)mCPH|p0tTyVyWvdgg
zFNy5FhuyPMb=0E4S|<Hfp+!omxNNp?o>_06JTmFIA{Aep?DP~m+37hq-Z^Hn+1lxt
zj<W!Wvn~X+Aq{9r7aQ8bG!0T~rSn5-5w1tmLUjx)V)~ewbW!zC5}kDj(Ju_pkTLq1
zR2W({9GB&l^xFZ4RyrIj(Ry%#<2d?=YJ`rbv3XomRHW%4sd@-<f#dl3bvRkuxFr4f
z6V-);MwN9&Srgsy49Zk$90~#}TWgGJU>M>@#ipY5E0K9@)7GY0>x+%?jWiTetLN0y
zEVe7E>1ZOYDLtsHRm(ok5FV|sc~;NMl_AU6R$a+j>o`YW3Kwcu3mdMoaHyt8>hvJi
ztWh>ls2=G!J$JBCIlEm~jLh;lFu<KTpB|hM{Ste*(RvRSB*iuB&Tzgfl#SAZL?!B!
zl8P8Dk>vFj6jER{Lt;v4rIl!cMM*%Xx!m-4piw}Fxh>dAv%`Oh{%GoMl%m&=Avcrz
zha=aWj=EV2(W6)pt)ZS4nWhCY?9WY&>4|QM(#Dh+q|(i4CW0erg?KV<k3xk4fPRe9
zBc1YnGHxl&uoK!YcLuf;$pde($P_~0p~fB=A1IU73|Yr(p&}L=in}##5wrJ484XZW
zMvJ3_xI2?hiBUlJDC3&trK2Re>ggqHH&GZrj>>FO8onE`P~>Jp5+Qe*(xghpone*3
zu1DM1jR5gVrXYiMOB;=6>H$|z)2x)cOke3Fn~-#fv72Fx=vyIaCjK5x7wtYu7UH2y
zLT24kfdm$wx}YVs4BMkNA>nVV1`C;nts)i#B-$)Wy&Zc9@e*t@B2jO_27`#O6(d3f
zQ70iH5)l(4vDyrxo=5_+I*Bd`ZwZ<GJn;cJDq$oFJTc0YFD(k;s-P%JCW46`nIsaj
z3T9q!kOd3ToAf+yvg!=TZqp&Xpwkh*L9UjnMFANNW^56$*#I>Pf{sW51Mjs9JdX%(
zA<eC#DA;hlPOyj)bV$Oy)uOYB2QHQb9s^-6q9z#=GqNEfNzgh>>}GQiTJA7Gl{)M}
zh#*o$5avbfvtlA(tb<&{U~yv6rqjDcLB!Z>auT6hXE50Xt6vJsSTIUh@ClI6sk78M
z1cEWI$09;bEVu<?hH=73FJhxfmJq%2ub0d+6(%t8m^L1U5lKy=RT8k^B~=1}o(TqQ
z)JZx-|5+u20a@(4OO$v7!>yMDLC~9Yl2At^On5i86XGx%Y{aA|c5HRqkDqve$iyKc
zNpB<Az#B!0P8CKjt6<U_MFGQN5{OlA;msK44$GJ)l3a~>n+=_%prn2e*^$A7B%LVg
zWb8%&7H(uS14v;QdcBtj&=W}%3<iu4j4MWh$Rpk+@_HQ>^t`B-iD(fdyIE)BbuN+J
z1Hjl=s|20iY}O0NVkM%7POR0$TLmwSrGY9}IG_Rm2jl^`t3p<t1(~ccW|CflKm(6p
zUU?@kRPlO(panW;1`M~=2Tjl;izL|eJP}2cNGvdt3+|N=vOyP&$ZzLi&MYvEC=lh5
zX(Ayp9m14f5)wtf9yT+Y2Rj?9c)`UJs7-R&+*qu3>2+aIGK&TbgU&-=>v>s+%nl<F
z9U?F2yqMHjgGdi>BRP1Tm*_D-F+c#|3O2I|S|Agvju6c28f}K4-G;3MQTwF;jYKaR
z&B!iPI|xqze2HK&#K2`YN;<t>M;x*q2|8Z3>7gbgv0;-zr;{WR!>9^6WaP0KdH^d8
zVS^|P-yVJh>H%cIL|dzaX{L}ypaNJ{SQG$?t3+72Myw~i4LU;%adVx$%IfB&Y8}&#
zaGi09w=$Z^MKvKyD89a^kxS)QYXQue!~|#K*taO0lHl@apQF%FEBv{_QmUi6UQzI|
z=)?FePs_XaXv#qCyC&Fd>TkX!Jb07dYA@b}{2r1=Hc~BCd~D6bXn%C-9nWb@rC_bG
z-gs<i16euK$yI)nQ`6(9hSRkJD3@R=h)TZ;e9LvLpXVs<ujY7e7+h4E5Pu>|kjzX!
z{0(PIY%gm5;t%KYP}*An+WRJfV{)o)schzsDjc(KMa6}i>~*TltlOR8WL2ggffBez
z{#Ok(s$B3f!*-nPLw`W;*ECS2V!nLOO_<ze3;SM4#TW!#C7V+rSCD;&VC>Z@re6@?
z_~N%!=oLKu5c<FwDEnh>buSvwSa@ilceTLf3Y;3y*eQdwYlAQZRPiL&yIL~}Uiw~k
zk*Ck;F=Z3DM!pQBXD3jJ@sy@YK~m`>Mw-nmD+EQg@t_%5tU%N!(B=0-r%N9Ux?g=l
zed2yPK*f&%-H$GZ0NH0U#poRxOM@<lOzcZqd7r{8fRW#gpRYDLCKojTMsv{=tZtTq
z)-A}ITqVcsoZGoc++=PFx0qYWxcQVov1y!y3^lA>mT4EL^ow@$B$T*xrLR{r(-BNu
zi3t!xUR+Fp7e0N}9g8;KEcWf_nA$7wxdS&2AG+~?<O-x`tnD)NF1X{aI~MdBy4KD}
z2VByyW|xmFElS6d;O0elT=n!qp?7M>jy~~bP52Q56fT^HE^BP^L~8CXSa#ff_m0%s
zZC6}6HP)1Bg1^|*ORw0rR){m%Lba~=sqDg2^A_GDY`eQA;%RC`>se$;Pwjqjv+yAo
z<fd|07p<iLDO}4lvJFVF5yLKNR5JWh3d@v4gNP^1X`1-jJ`*k404OStQ67tjxr7(|
zZ}?-4wIpDarM8&0%4e!0LH~*BhM51Lzc9sr!XJy)9Q6C&sBRdWitM`R;Nl%OE<Uk%
z`SPVZcPx2h$rwM%#-Q{7sWbVitg$vpHiEk`=KpcE?|>iw2^{|F1O6x^s;(QIsPOiO
ziw`Wm=*Nq9+_ZH0awvJUw`k)s$839Z8eDMHKnpdgNI!_BUBgPXNXota)ag8Im-lYP
zXu`=S5$c#Ru>MfPZO^0JQ*Xl_y5~1(zx5=V@WQ>_ht~J?)cyqMjq72}nVEilkXn6b
zP?ymp`-_q`P4pNDqG-w<vb%)8w@qJvI=6m$8~S^;WLit{W!3l85AnaMA3Af(FW$B5
zVp4_fE6Sv8nWipAU#yFu`_wHFZQDUb*-VL>$F1Vlb33>@xcyw&=D&a#f06BR3^}(H
zmpa4Q6HG9d$!ONIZ^*FgXohW5A>rbrQ|4ltnc-&SL?TYQnaLn1i~6Xw6)1#RaYqv5
ziXxZ9jQN8*Lu(}(;|y&?r~O2z&6#a>OJUwMIv#N1HH-H=aM#imMrqBWJqH#~)0=nh
zH0!4=KCoxe8cAqqx@hkMdls*eAf@ga{AG*XX3o_L#D98Kb9~{dE9OMCSM$Pnb9BxX
ztF#xg3<NFneZ(RFp7e_WJOn%DpdN5O3-2QXxxzobgpF7`Bz@|2&Tz<<1(a`hFOMd*
z&b=qKWZsgS`tMCGsWa<m&(@pkmZa|O@7Nffza)9@+}25m??t<HQq~p<JNGs2Npyti
zqtKDq(->wCJlJjwJ9RBSVgs}Y{d)jsv+BYv13Jv}Hr}V^v*_?X!fW?1+PP83)pHRp
zLBA|9>K>+eLYA~uT=sNALP0$W%JdK^exfs(E_=km(v47Ih<*_Q(N989y8_cXbL!7g
zQ-M9di#k<inE-P!@=MLhmrV+wK=IoXkQvHQzaIO!`g8nw_2=qmQ76?YqF=2*Tx?+Y
zAAC;pF`hPmW{+^Qa5J+4?JQZ<&@6Wp1@wzr8;CKRk`;c}nDoNUPj0*Ois8R+dF!bs
zug8}dx@=}c;pzETu0POEbUll*OL_|5^wrlWRp?Pex6Ncwuk5*Q(ef@l{fdXTJ$VJu
zUH|w~|F)&@w83QSGT=++9$J5O|M1^?mSh+8;OSnaCQz+j331&9^k~=eMb|-LYevcT
zQ625++BZI!JRkdh%!ppUJyBwLjnzRNt8?d}SQ`Bx5Jz%3r$POrq1CG0$mL+T2@JQI
ztI!P2mA_5OhTrRtv5ynwERzhV%HS+1_Mhf7OA(l>xZRP5S**amTB`oZKQK!7WL!IZ
zmDlV1z-YA<?S78kYiah5Kec7=(RTjM<*u;a{fF_K?2OM#)DDAozZT^(6r(9=usKS%
zhGS~y&JljLRcUr_sQn2aR^GIo%8e6P>3)M{L-%V2h6l@rl*#YLhM*Bk)7r3FnQrOd
zxmsB9{jh6q<Zg!TfUSazwmPI}H_oK$#Sr_D6`V)1E6A9x+I>m1n_Ui5W^N*NwjuIh
zDv_kvrYJ=-3Ht>H;g(Gc*Y{4IG`XhfYM*XWShh{Etw(b&O>|=Qkl51O+fq~29J<JR
zY5VLerY)L|b_svh#=&9H21@<X284BuGw)h2yjK}hIa*5=tm<7pvBsa(wHc;1I1o-9
zUVgo44$eLmb|jW0n<jXws@ppflNZm7FK*6Mb*kUe#?0c7$qkoZ-f*PBWRLXkQa7r%
zlq1HB>&RV-l}mAJ*<LzIxG|zB$D}o*u-XSCs4@*Z*vgj!Bv`bTTe^+Y6j~_WoXTj@
zN}i&vH!A%lGDYQ&nG_@Xj^ERI$7c{9-`0Dr!DtaoODyr!@}1XBo7&s^^Xco_Bk!Td
zqy|rGWY&V&3vRk@;r_{19i<zuwANaM(8Q+hj@jA1xf5F!*5lmBxA(H4iECE8nA;_r
z!pef1Ivv$OQ$EzTvZH<Z?5R_`oy~sl87`W-c5Pd0sJYeQ^2BT=oyEMdwN{Bt!1Z$!
z-Q-Bv<*xR1c1>F{yQYFKdO6j$mz5UH5H9OeJR^BrqBbCImq)JXt=8jaZOE($K+EIK
zc*=uC)4OH&$jE7TSg_$lm9cgWTO&GRuI^0ksb9KiYi(OC!kyVp*^H1yoEYj_e(}0x
zZB4EAu-zqDf##O$o360nC9n7I09t=ybhc<EI*aJC`jk0+8#WzyZrk?GF1O8IB`kGV
zMn0o11TkKYc!>awZ^`QQRhApfQSlx1PdCr&2)6hg!LYxrefHz?*Bo5hG1V19m@G9A
zGgi!!*My9s)hES_vU=xtHuX18X`dVjHn;TkZ(r~Pn)`B9_|)yCxp8oup)A8O_L~Ct
zaZhO$BP#oDALAc8HviN9vGtApMkxJGdBrE{E8L@FRPNkypFCxyo07Xs7D1pQab=r^
z=-#qZ9dQ!Nc%c_eP*E6~SNVlex(`>Md8}xULT37sP1M2%5WXnP<h@(Uc1$Cl|I6E(
z0Jc$_ed9Z`m(G>6tILut>#!upXKY!LZ!58LIB^o^PRM0)Iu4MVKth5Dp^$Ke0O2O)
zD$tNZxp@h#+5)BA;e}FKXiZCb3oS?6mjbc1`OnO*4j&=B@BjNgh_$o3v%531vop^#
z&-46#c%*0p;51w2hak8?{yi)cPo5NG;)|lla(H|4m6a<!9`pw;dj9$5X7oq@K|PYb
zQ%%s%l55|I;cL;QF?_A~;&tStXQezuu4{fiy<9y4J!*oiJtVU7znOAUGx99#7z-M!
zc-gQVi&bDk0mUJL{2~ENQT&h~(@JANC<2cW$pw4MuY%;AM(r=Ptm4`ax-^pDGlXfZ
zlwwUbL5B@KLDC?_9WYwS_@dP2?hm;bq{%3;01yd_=z3%N$7GjD4N)eCprrx8z7qHk
z09q?JOc>Kt6SG&l{pcpHlmZ}-lVPS&85{;Y5Mk9GhZqr%A{xj4Dn<yE1yd0zF^67M
zjeT{{oCD)EVCxQtEpaC{ZfKIUmDawN3xC?X<4@PDfAZob<=rzp8fbu=C351yn;zW1
zp=Fw&2|8l6tqTfPS(w-540`BnvQFz=HpTywaKrvD4{v#CPh-#SAGG)0={0!y@tnij
za@I}n-FxYeK3~`p*uJ>9cH)-#oi+0E$s3k{i#|D_Sb=hN>&lb+Gqn>Haxk@WWbpmY
z%4P7Tl=$Iv`Fw}A!nVHoiN8$V^<-b~6T8nUpEbj1V{|NMseR-A8}GlouNha)9<6Da
z?_BA$Je40~ymOKN;cz_&|7qSG7j`!E?7D2?+S|RXPN=Xrq}D};-?{se2mZdW*}r{Z
zam|FybEnqGD_7r|4Mfh_w%kNs!`O*FTSQRd1Zo{|Txv5Gbb^s+Ac|xhTf`O_DWTFg
za`NH#X!rQ}u~k=HwQ6Zg?>RU24-E9*_X=2i?z!io|A3e;!@?b|&^~8fEO5<B*EFqJ
zjaOgZ+JUp32QM2Y-QxN09xcT#Q?Y=pFpm`5>)?qix0UoTI_``5>_HnA!vfJrG-6}#
z__6%cH*b``e16-u=Yjb~;Cby=+aKO_V&~2iyXIbbR(mmr^s2`V^r{nYojCCp-1w&a
z>{B=+C<Er_x21lz`J#7*-npo1(xRDxp|&=h=fsKZ8Y0GMFi?e51<?cvbt&(N;UJ?D
zB<lIAU|lP$MLLB=`GRrSj?Gs$YDCA;^T{nY%qTPBb;Yt7dk*iJQKoEQS>NHoB>wK0
z<l#?4u5ZbT1CIfPlRY4{zdLA^2R^>);6*cMUUX2|$Yqei7s%w7PUQH4LMqk(gY+B9
zn2C}hcm}8#3?<14jMkZu2w4(+7D-DWCDmnc9+28d(Fx^RQUw(O0RxZ>5zK)U#vDii
z;wvF34*ANp2`ULOLVz*LtgAvBV9h@FASRK2A1TA9oP-G`ugnUNpaZ}JDYNn{9Db82
zd`Nxn@YtFnii-G%Z)6bjL5`kV`(aNyDY56Kldwmj&d$zvOmeW_D0!Kl!KB2zmd`_i
z`)7(#u;<((TU8v<PQ%+cG@{vlm)8<wv>|y8dfXY`-LM;}*V2?)#xuM-dgOC+@x(5S
zMw0vP?GDD_flZLuzJoCg9Y*m2Qw~XBK?$+qsx(o`LU~04=)1gO%J~rhBIi$O_z{@e
zP`<KLzGA6vLU~Kffu`qJOZf!d68T5|*7N4hU{e!T(2YYM6EA#MP3YgN%BpK>s>^o$
zAq*DGIv9}$6MS`1i71v7Rr86@oMqRy&Fo!H-uWYFJUfTP{gtcu7Iwu|7kd+u6@7)G
z-e&QM=4#-x1xSb`SSCLSR)BT$;GEU#ez=;sR(@*sg0}fKz5Ems`#~qPmQ7jLcJxj9
z+94nPM^M|ja%JbVv(Fy-ApH^)*YB7V@kG+^f@{H-<HsNLj;}BNbLPD%<7*w66LC0p
zNjQYV|08(S4g2(vxr5_JEc0W4KL)AhJ71SSy8R*f<#TzU*{?I1`Odd@^gefB_Ur@C
z^{#w;^8UP)`Mn!}bp7q1@O8RSeo6l5^_|!4(-mkAXrXRJFUtNVx@yYA19>a=m#o>i
z^L13l(o;6>Z|rZePn&NTXe|y-^>8@emsO9oG9(<Db*Npaio?hOth#n2FeJ2u4P)%v
z3>NI)f*T0$?v0`HQ`8=zRDd?d%xLIB+O2nqE@Nq-+*_#C+VvjV6VjP2Ityoof&i9|
zl@;7PM%F!mD#xo-8-mf`Il&;nma%exo+UslhccOUA#{P>uGNy2G9$W`-i>amK{vNS
z^ceK4(OFTc#>l$o6jhGu63$_GDE`Ely%k$Frsra-v%;Jds{%NRo%nlTF5!|9IWit`
zz|1RlA4`V$9V7`0GSDlVuh($y+A4lc^K!Gb`_=<ia|K*U&ZJ)<8>r^H@@gq?@&^Iw
zYK&$D&H-ItUIWOP=}@IdJ_7c*Dh0Po-pkHto^hbGdq(pXLCNt7*=$$xrR2ds6cv2{
zxF_*VuK7}aJTopRm|J!{|4~R#L$VKsq~~J_8huI39Aa`{To`^}I2soLiSCkn<vUJX
zyLX}6S#|TS@`gz*uYy%4PJr2Y7+tK%ISQofOK>~*E4ZCWUitU^n_ih#+p}bL+c_al
zbLHQG`1fDsfV*s#F>t$n48li`=GGu^>_#KCI=>d#I@E>mTlfwX1@PVY2}t~-7t629
z|GuNI=j?#Lup&Bh`Yk|r#~tZAF>b=~GoUN5jo%AZ;Tk5{`{>#^H`mwCvr5G}q4&{O
zAN}k8zn=kWVep$Xqb%&Y-~<{Uz$uEp2#sMr#SW_&AmS3M7$;O`cr;4TK^*Y1UDT&P
zG8Qp9i-mbX?qf8fQDlG3IL%<H<YJG4t2B&6zif35?ka$6p_wjS1N0^*-5`hs7L87>
zSqbyGKjsf#4@F83l21pHBaeBE7;Xc(30}eTvH4UKL7u8FRYD4TWQwfFj=9%W2bFyi
zcv#v4F>+sNeSSD%DwWAS#$H`lDswG9n(C@c)#qfB6w+pAQHxc%DC6*sk#j7uT4j|H
zt4&<S6okFWz=&NknJKsgF$&Kb*dzpOAwN%UM<;K7^X5=pXy)pfzE;{N8TE#mMU5R7
zl=C)5ZxQv3jW6GE#SXG7TFCAN9gT}>40@vkDydUo{!gz0#)12MAWfB3lwsfB=hMe~
zZ@#$~i!ik_XV$_FeaI;3s;Z_n>q<C_g)7lDPs>kNRp}%n3!eg(E4r`$^8pCoS_$Dw
zER-@?yNU*B#BQvCus+3>;v2PC;>*Txw+tsmA*=T^l5Fw1yPU-AjA^o(2~(&J6eyS9
zfmF`eQeVoTl+A?af+Swb2mQdC#fnXzi}KG;lXu>)EYoAtiqVATgPyEhNw{FlR4KKT
z*d|F>xvDdv=2xQ{tO`?hBu4bzxD|W2WuY;!W=I0I$eYXjVR!N<Q5_&0kX+I^b+}x$
ztETr)+Iaba%QsHy(2dh2jUO44XxouoSJ~9eR2LLf8r!O@-OIbJRc*$~f`V$Mxv6s9
z;_IIJ=~LG&rpd}{RV})kx2taIMYAd^XI(UP%`AO|{+8>my9I4#t+{P;P1n}i!dTGl
z4%QVpoK>|Ib#)cBRZd4y9X=K-tlipGv-!4FM>kKHu=yw%{}t?67l}b3%hWmBkisKL
z+$GF;xRjw>pt=HQW<1$184U*c=UOdD5UR)?Oom8MCQtSgl;0i&MH2L&TA+VAln*m5
zCNM&z1brE>NV2q?g@nvt1QKqdD2V|s&sl&nwk%8#$bN@inWaQwfZTWhlTr3yGRhS?
zn6Wlrbw0K>-wx=eDJ%L8kK21c>=8uJL+m{LgaNZ3RcnReZDNDo`+nSGd>d5!_+abd
zzOL5d6Qj!*CXUMrK1J3KH=-g!oVJYkF{l;p(&ZKQJIdHE;F_TP27@5Vq>Vw3B!70A
zLT38A8vnJ3>d9Gj*sQMx9Y<d&0Vz;G32+pqH;y_0{(3WLW??cM4ciZe>#z@|hsip2
zD5hQ}q_}P9gN?l%_QuJZ`ZrB!DA)%k?<?p#?5*#v_jdJmk?o`=02rO7qqi}rms6@6
z$M1*<d-sJ04qVu==kV4grn-(-tgBnPH*M-}S#5o#wYaypxHWOOZ*fr>{<zDE7Gu1O
z++N2HzivWtU72KBvi0yD`nRe>M>e)xX^R;-NiUAnAB&aomSDmXm12~beaIJq-laFD
z_~Mf_A?5AiaABKrhDZ{%*|3Ev4GMhpz3+!yoX*l5z;5rp;^RPbyx51+fo6-2bA{f&
z7awYvf?9`GoDLGLD{b=jBOiWvWS{l72MMHxrvyoHqI@1%y*nhLoe~ek{9p%vYu!f<
zUTIs|ike2{`c&+ySep$hzENxr9v$gUk*q6}ilH9Kctpwl1l5u0AEJ_q3lyaGElr?<
zOcH~}?ORHt^dOSA6wjxDq14iSEVU1{X)Z=AG9p6k`$vV*iSHQ*_PqkX6xlGL%JzQp
zrb%UiPwDii!<LWWTji3Qx)X`+Z@=WJ!+nEP-(f!S;gQ6?r5NoJFTxz5$M<iNlj#(C
zKBGl_%8T0z4q$e!92R;dHBpfU_-ur!(xph3u`Ads!_#awXP&eJlT#W9@PEUUd>92B
z#X^zeXqY&@54+m2sdN&37DHd*kAT*r4+Sdlusy^XuYY9vTf&(E(dbQk_Z?U4zDoRx
zgk}Q;19vWAG_Z{{vhx-n=0pYR3~$K+<SO~t5mvyFRzdbS_H$4z@5$1h!hPTZok9MU
z0jwhK4HO0)&OpuxA{@x1@{fuFv#+qHbTEnU!VxQchkQkm0W=s+iVTItfs+*7lQ9|z
z{W<I2DJqx75#L$-`q8$ehpC@YZ%}`vzCaR`2^51$&@!60Iyz#X9kD+$|482Ik>}5}
z|Nr{>GvyyyUyKND$#`3i!eYX_(pfPrhu2Nz(x>v$^l6TtF8zNaKRnIx;bq47skm+g
z7>mkhe;>%!^k1VZo_8$$uQ3jemHI!GQ6B4H?&sw77<6<%5#aLNf$<9DcYHHXQNO3Y
z`hWkG{BL?`)-NNkzZQTD-#{Qb+}o%HL~Nt+?IXUd2J?TVcYojBcM5C5XdJ|8r5BP@
zdF4r}_sjH6kU*m(=D|t)AM2xM=ut!0Gf6KVu)Tvx(y!>0QqZ2BtYejuuFQQtfLtLD
zgpkmY$nuzD+iNpM2Fka-5(w9fI46<Umt~I#WGEzT*|%96Qve`_8E8YqIvZ1Lv)O5w
zEW63CfaINm=9fHVDRSTyB&`!uw}PFYNn)<bRK{LQz8jbHqLgs;D^?tJ2@h$wkpHDY
zmp(@JY451};3TZV=AVq^7W;JeyAtSb#9uv>!In^P>%&wH`W8EtD9STd{d-A;M0*;e
zifKh!OcLpbNe!m@bJC(09R&Sj*XHx@6e2VD90V60TPips-~);XUQS0NmH;0JW2;~^
z9F1c`W;7mgprg?ysQCJVh=WDiI-dmchjRZwLjL_E-26TLi9~;@$Lmd|Qc173Cx!Qk
zFf<7S69b?pc~AorUi3dw!vw7t^bdGbUX3&9)S&GE==W-|BAD<Nj@J?WA))%8aHtm&
z>jV~aZN6xnv}ZW(i~Eq6gz>hgM;SCRB$G!zOnAY7mri*TINstE6`d|8QmNF3M?fNx
zOs2d;1H(8|G4n}|E_H<8qXG{?@DE4f01-bvnac6j!VGh2zU?-p*sd@IM#hGP2Lu^=
z0nq<3!Z&e5xxNpV>saNIQ%c!V%CnSGB}SG^A#+VAr5k<$Y#d%Nh~(@U^uL%0lH$f;
zjdmm#F0Td5SO?)&U9HZgldE((@D@tc>U8oBupb;4^YAf}B1h1Vl4XayLpSzeQZ6GZ
z*MDZpMdf^3a-6!%SO?);{BY&I`_U7~O~G5JTw@)EGnBHDz5QUnTH-3**oSesW>8l%
z5oYeN_8QI)A&zyBiJYm{!w!Eos;Kz+;QTQUQ%bpxp>l1_Z?6#?6XIA0QMpcA-7yZs
zW20X#%7F_u#$h}bq5cK8lJ|&9r3EADmQhDia}Vn`^k-u?78&1A-+*(o_x#?S;B;@B
z+;avnG7);Na?k(43k2t$?w#O!R-$`u&6V?eHa=Z>n&wpP(2Cqxt>C5Rqx2}Ye5)s`
zk=M0?Xx<otmm0q%A_A8nw*B;g*Q=1Ed%bA_k;LI(E-y`FiXohpo`GG^g0owUcnlGm
zyF)p5v^*aW6Ny;IW7}{`LjdGq&*8FS5m1#GBW!IQ8Ud{l(4Td3n>g4n85#2U!4zHy
z?N?x%`sqz(bHCXPC<Q%KLBFMYatqwj&|I=u-GgSStUoxT$T|)*vuEX;;FztJzht1`
zJp52?0VAz6Rt^hqEm=SqP*#+Oa0%$whB@jnN&(2ai9_*5Ki$(IX@Vv&lEMJINdS?k
zQ%I_#NFC8{3O7MN7~fSVQ_AW?UDpZ)H;FWXvffY6@Or&NBm;wg^XDHuDi1}eOtq~*
zF-~S#o^QyK(jGcAik6n?&m*mUZY-<^bx!vY_McpRT458&5FKY}$nxoa#?C-fo4Vy>
z_a<!OC$m|i?{IzTK=&p(d72Y2fe&x$hAHeCK&HOKeMtCKvX60`8nfI2%u{oatVibQ
ze43)~&OlS63bv^mByqV<bAm~w6C+CuNQqB#92Z%GWcdVHFVs>Nf{KQ}za}--K*7<e
z%|;Anq6@6b@@p>MVC)=<*B%t6N9($#_rVs$xPB$sFlj;+&^LXkdHKHO%l9!~s-|}Z
z&}{F%rI__`>Aqj~O~)DK|5BuN#gLx92H$Y{bow9o(&g!Ul#@zGg1kk!G9$-k`z)1@
zbis{8B~g7F^E%@&{#szAF{FYDVv7C2+4AB3S2jz;E1}WxV%lWj4Q7*tWdp4%H{WvG
zN=#ZSQxeu8(FYHIeRmY}|4{xj?{{e}R+Bcsb;Q^7Z=WA4HsF|Dk`4c06j%A&A7rs)
zDe~RbP>b+PAOL?As3R<Ud1;4&D&-F={*fLU)0NSZl^2+RzlsTGEMv;LIbK#Li@z{g
z&@!*30RO;SvdL!-oImc?DGyD#x%~VCiIs<bFz10eKRC29G0+ma{Q93CUOF>*|A8y|
ze63fwBj?<^;rhF8*th=P4H5ShptpNoN5{P3KNnr_fK9KrJ#fLIOQ%-~Lgn;Jf#!{i
zW^8H>XgO(I>*@)+-u&#yoJHH#&YBnS&Y8J(+rruX!@nyBehccjhrgQd9DNnGB&3R`
z6FKuUCXF3Mpfmu<xkMIH5dL)}qmsg7xt+y4mSG$r1?m(KJJiAiv=_vJzUat;A;p!=
zF)!tpi&)GZcJ8a_V5)S9Oa7f0WfG-J3qVL5yppCe*oC;zfT}piHdM*)l^<#!Ol8ZB
zG`m#nEV~IV3zQejH#*IMiej+A{&;_`Dn~(6bkaSojq;7rNx8}_?XRgK^BSASM_x#k
zP<4c5h?r1A1a5@jLAL@A7zye}nX8~zfMyRwBfpqWQhr|WW%=cx#_1}k))ZX+z~u#+
z@wHA_r})xLSA1!vuRZ#iJoMSowP*{N&yIdPl4$+43vamLLUaRko9<Psx?N6lHF%>>
zxte_XGQMnW?lx$+9`W6dT{k;{@l)*m*y93!F8_nNX`Hp=)ml{-xSSeXS2_Mat6QX?
z+MKDD2Hgf#6>9&tb<-2y{c>#O&-fwYF82MalnlAjMBju-mmK<^)kHB0f+zk*g;(V~
zv{7c6_V2es!i@0mDlt<5e>lJ?5D>mvIw1-vQAi4+67i5p!h~8GbtAw1cIwdkhf;6L
zZ-a`r>EzoWHR>9iTt}*-dUz3>@?;WJfCm6(F*jw`MetaR{iyL=IhR^NZJ>5gmy(s&
zd#J~V6(7|J4F{+m@w{|6FOBk`_lDA_7Qxf!IpguurP=(nC7X`oeTlG>jkF1vd(7xx
z(mY^B|I|H(G7lkvk?t|4v**bMjJ=!L%9OgF+oIcU!WVptrq$`uZwYoLM$iPCNRBV_
ze$!u$IwX&=qi%q*QUA&PB%c|_pAIGQAAS&xe-)8Bp{~{0sWNH-mew-9LA-_Vgb-{1
zFv4u8S_d=HaoEw6$)ZQZiQ8)?Vhj!L$p`n(X<Plk@?#%=bv%Cds(8GxqTzzUa|1=h
z-c=MpeTz*6bo}pbS~R&ZF?mztTKTILCedv676%qyeQ)QcUu+6Rb{@BDi;IiF-(c?&
zZ%zE-^n;sC!2-8nr#A;0ErSBFzx~tFh>hCY(`;B|nQZ~V=P6v&sMSb8_;J8$D{l$4
z#-&XL)+}0a>`$idEb75!R4p}`+Je7Bj<>}m@{7{pC>koYs5xw;QVtuc7dnaRYP0|U
zY8E>2#4E2o_R!n!(x3e8Mytfu8*8O1S4E)0?r=$KpV%N-%W5t-_Tc_X-wlHg{jb^z
zI#cE~&-8#tUeKKX+(x<n>1~w*oR%)+oV>*88HWBtV^qr>w?O{6C7S2Uz~}$FhQw=2
zNG>7k2PFy{=ZN(KyLDvzDeN3;K|#k<ioy^vgwlA_8aMVTid>l&d58OO<*DoWxy)ze
z`3)+^=<ww=yH$&3bWD<l1L-k@^_azk>&IGc)4@sdm5jsCYBVxnyOMxck6D5JW3NOp
zzLQ^}i!F@9$m*3ux_9i#<$U9xrEC~e2iP+3G`K<-w~_$XVIm5}Pg2D0dLuH~&=Zg-
zOAu@nal2?-Sl%j0oY7w%E#x#-jxK=ZHzwY>Yj_@T+wlj%i<2?BiYj|!NAOAV790sM
zqw%KQyXy@WpmBkN_f45)92}8PK3VwlV~VT_PaWg-umhBiDn)guL~T!794sBy0*T<a
z1_|d8W;}{v!XqSsORNVlcLN~bKGAce3A8pFz*q8(3s}3u;*i_qHng#`3*;NTVkP+Z
zht{G(+lS!al_G3ES*L3T6Ng%g9{{T+f~b6_Z14pQfB(B7=)+t|-Z+n`lE%pmoqU|i
zVDBc0k1>@4)%W=^;2Th|FW3vyNlPiKv%AwNdq5{zS;}a3izc4AXOId&HeiPdcSWfV
zCV5F1m%-Y^vN=SfNj*XE*8-nn0nD2De5x;nqUh#GsN<;j;dMOX^im1urjzLJ7?aGH
zDu()pSuW_g|3>{qtNof7c2L&ep}(Fy>jvGEXW{r-t3|p0J#<W@RQ@6+$D=Ymw~iu?
z@EOOxM+!$w5g-d-MBR&L#yJ}v`;b`7M%4oV`%Pv3!KcaQ=DG?v(0)a7Zbco^M(Zln
zO>A|1LRVSXLUx_x66R^LnM!_p>J}HsA6^_PFKwOVDp*{H6?b%quFIumldITL5G-q+
zr5;qU?vo^z(}=Y9Ad+;KQoYnRYOl%=tgbxTtq#Q}miV}Y^5jJ}8>0}$;96)<z|Q}1
zI~o}Pp9RZt06s*V5!=*21SanmAn(@fu!n-DPEmTNUaJKZetG>0)6zg*EG!EZ2psuQ
zo9zo=anEsIUsx!AE(UC%dtUmcFXS&&I2|COWAY;^Vh)&TgV*HUCjC$4*5IaL4+Pp%
z6zK_oY$AE#xC11A{{<K(2h6esMEP?!P{4J7^o0#QY5`m>0#OCrkw5>^hKjV{d~$*O
z6We-)G>Xc*<$c2*hR1^*^pOmab<JkQuXC8?8;@o}{!!xSuEIi-xfH}jA9h|%IgvEu
zBtM|JI6S2yJT8v*Ot!r<n`)P}OehabHHrq~y+&5k55{-jy>||9W-f5Tsj=lv&2GD6
zUV)`JC{@nAKHzSwE=v>@oMqPR)_IIT*V=niM%RY;d-h-+t$gGQg{C(%k=gJ!OOKr0
zlFAxz$dyQBsIXBYsc_LKKxA3i3y@R|W9d|gSxXE{O5iJ`R-zwImUm>tLnK<!r^9qe
zjp5F}y{8a_@opFtf*`ic27z|~pTs{5mnIo$0*Ho3EQ*!c4d|PhhU*%@(fx$t&;)$Z
zh(rgXJ_30ViM2tWEkH}a<|FRJOy(Vh6%HE`sS}CPmwa=?siA2=GeBp$O_q}{JhLBI
zuY@*qkk%Aj1;Fm7UxlBhWtyp*dDhIjrg4!f!M@%VoV)(KD{7`M>Wb5Uz5o89GOdB;
zwb1H3c|QmM^8+6-A+14cDEsIE`78Oi@c!4`g<_(wy{)R%7pe*C-AjW-6LzesU*6PM
z-t6mE<{=jQkkNZl-8#Qt-PqIDjsE_1`+Hhu=;3wiKIgnECaqdMjX87G-h16$2}aj!
z;`;W+j&L`r7eKn##jJuiM+LDDyB#mXkRA~t^B7(^O@i(;B|pM_WzrW6B}0vAD%561
zX&R+zlqNWPOw>QUaEPiH=SN!xZI$)D_sLk=t6*di^lXeLYxDD%6ebj{%f%jJVjneb
zpc?qY{-_0GWMDxT2QX&>mI*Bqri!uQ=EqnY3IPyO5EjoG*IC&SJkJa4djG|}RW0)Z
z;{xZ*o_D?{=&1^JuQ;p?YK;IwSRAAeujmd|q2uSz?>-0Rn%9!}Yc*h5;0#n$+8b)R
z%jYZsPtL}tE(+fqW|7#Ti#7y1Dm%x`TD)XVd3Q~Ny|N<UgbaiLFw}@k)si$sJtLl`
z%4JNFaM?x3_ek+JUxqE6IG~3p{B@F*cgm}#@s!{tQ-asdB<1(sBQS*OdIO-|li$P3
z2LxmhB~DSt<!_E-|64kd{6K!jxleJf+~)*SK2U}X1;3G?<gAsceaDaQgZLMF*CM%Q
zEAe-2$1^*+VYWD0pm@>qsL}HZIjRC-J|FYIZVdtj1Ra>x;1CUFy?oR0eeqb&+2=e%
z$~&q)yU&x+xIagyW8NZLd1w0i<NMa$2WPEWw^6A;6nf;FlKYNJJrT7cu3=R*cE~z(
zr3>EzZ_yoa4bRW|Nh>@_e#OrLeVvlUDzJp`GK)pdB;>@7<$p`HuiC$DPt<HEG?=4%
zw(Vclt~k8F1WXQI+cxcK`jIrX;K55Tn$zjRjBT#YITu~}-~we}ROKZqiw_aNwg89E
z;tP)Oei*$!B4S7t^s*_`qG)nCi9Wxa<0qZx1d0hSP7=1o<noD_K~LGBBS?Bn0WSg3
zAo5*adgdT8QL#9Zh%o0Vzg?u=Xd?3tAi1wA=U*OFVI6~2IMivlV{JT&kq6Yz8pow&
z9i)BeWRSqcK*h71{-Hr*U}!m^7fw+duTv(!-K)G!o2Il_8B3|z=&%@AseZ!x`hw;A
zmJ6Ut(1R4spsQHro%hHovz7-vP}Hw=JhF9&OjWeE??KPT>ZWNvO@KGlI(6RZ6DEme
z6}VQuV!a4^0I$V$D>>!m6uV?)u5Q4JrB@oW@DT(bq-tbSxcu>02{u0U6G0U?Z+dk0
z7Aq9wB(F8-6GnEv{9p3lX-?24EQSG{8SLumJ`UyqR<JUP#0rw%$~QjN-6LOS)(tRP
z{L-wTU_Q_$Br8Y?(7I*zv)4!&{~_*#qHh4&hq;o<@z#g_Xdl71=1$xzKl-S#&|UxF
ztMa3-%74PYw=hF%e$v!j1_#qDov8QvhNjTZ;6E^Bc4z0$hWo+b0f!34V|7Tw%3#%V
zBpM~()I(prR+8k`Ktz((VvVj*lE8~n9sI$FRn4pMSr9?_>Lh$cqmmiEds=*T<@xB*
zVHJ?xp;f`(^Pdl2LyuE#hi(fZ@@u3Z^yHDx$ECtWQ;PW-%7?Ew)AK<*mWg&zAn>&#
zp3hvJR~so;NiebjfYJgZ3kyaTV2pQ=X?|^{Ax6G~%2D-FUc$(w<<CeXjC^5m#~5vp
zAh9DB(!=7YXJJU1fW$_kLCF^eKAH_OedeL7s^Mz;3(p%Lwu3$ftgB65WRmOIWHSBJ
z^e^b652ru<C>p&={&Y211-(yzcTTRn`)<;I4W|;^f2$aBJ}s1dJd5rt`Qknxu^-C+
z9(q4Lc?uX;1bzrU?iiff$UGAooQj6GSLCmN9<09puDifoFz#n+TbX%<vtxeVx2lXo
z)qq2-6dr{`>j92DwK-1#wM8;kZc8hOXTWOdlrk!<wQ3lHe%TIrvs@={-my$8Fd8cw
zF?;M9jcIlJS2rrccH`v3Zy%oAsO;SMRr_j_Mq>v(g2;SK#-^cux!<mV+GW??fB&`1
zv`{%|mCUP`?6$(oiS&MtfBR(Y4LNzc{~mH6eW7*tlGSF(Dk|SUksAV|IJU4qCt)I0
zkpu`^FXPRTdU;jJK&AW2nZyVdaDwo8J%dY*pDw3{+p`oMpGYe?q}z~}GuyqCnNt5w
zXA@B%Y=K>keFA4IM5Sc;|DiJ&Mc}6jWbN6Y^+S9;oR__{BE9E~mL0O5f<*Tuox#%@
zr7@25ogU>&ovbe<?UceEpkt?LZzeV7PuAxJ<Z!)4mBVs|{rqx_^#gKc0KXk8na?@R
zQ*J7Xt*%+$7fiHC>_mhk0T9_E1gk&^W^o|L?To0L7|qZK6_;V~BcuGxCxX>ty!CxO
z5RFNr6<o}&{mCcthqnq^ooIX&EIq-K6FNO8&i9N|BKrNGfGI{`MdwAJfB#ma#cI42
z6o2xQwJgx-$Wi`;eDAA9QKzL}8|g2Zv*BT!lY9mYGL#c?9->Q(Vo7)uyI2+byk4`}
zVj6{<pT0?)CW3?{O2Kq8C~36lUB*sDxmVbii7bcSrIyXj7I=_WmV{%dZTWCU0wybA
z4!ad83eD-~<>$eA*oOvW%srAmjK=LgF-BiGv^}^XxTk(ofBo)YkiHV_?8ZBLf=sjg
zd>Uh|;;ZU#ZhTc8z8+pXv@M7(>feO&Z3xl_g6JZ&vpcw9Si2~?|HzQ#F??AShgo`*
zUoG)oRhAfrd#mR7_wxGouoZ?g_;uk0$|17mLn}ybIft%fKJO_U$gbDRwS*Q`$w}|c
zr$9yHBq|YolD(KJ#D3Q0AO}{Cy}<)H`d|8_Sen8?S2m5t(62RvM5<J@xIjW|MX%gV
z-xtIyrlQr9(!*phSPYVOyPWirxeUp{=ou95ZBl0aMs+2`RDu>Ckq~2E?EaN1Epf{!
zbW=IyvY<!GDM8<F)M{Bu5{B-Y=9STXL9#d$gh_o$uu8*afs#B~0EBb0z^Kpg7+kB)
z?v?+kiUU|CTATkCKZ9#kSpelxGT$oEKgfTdxpALEBfCv~rw$%Fr4x7s(tcXn0#q_1
z(`X;L8*Z+v?*VTK7Wo5<QLuo3MIMA+c_2MNCzlo$-dxySxD@seV`Y8l=DMDG@E=Be
ziD1N+q!Z8!(6=cMz@DY(ikk}ym-d|QyDz~0wW{AG&lP7FgW^D0Kp4|&+e_f#)1N90
z0qqAxx4{@5(d~NxQX<0Rif}&Cawwm~T3}gzNpj@~;#g^IX3!}Det}h%DB`g&#3aVb
z-YA5!&p;1)DgB;s>5gAqdUm}}cfVfXIXhj^SM|VEr3QlwhK4oQV<<lw33{-(q(9uY
zqG#ut<|qDWptVl0az|Ztf0>1asbP(k8~-7Cvm)go_7q?N7BqPS)$?!|4HXXLz(F@M
zMSJsH3`aR2f>bgIW~Kjhib5Ls2gFHH$qiSGn38jNZW!^ZQpM{~J{r^vBS(snt;Ad?
zI^>izQIb;*(NYSNr8ld7o<{8RIsDDh%L2u6!tDmB;y@tn9p)4|V*DCWCS|x#2Z=M6
z$x@n5mRdvynk6PmAmP}4`Z9rg0)ap=NV(l|qFDaj_b(IiQ&#N1F$XwfnG*Q^0p(f0
z&$oq+=-hYZHKhf&ZTjyt8Hvdi^y|ZUj<F!~FI1);G$J|doCyegz)yv<B6TR9O~xp~
z){TU2VlHJd2#6wtqk?h{C5acF3C0xDhK-H%n*rLOXBng9bfXs_eJbDGwgNZML`b*e
zLal5EXAi7hs@HOKIc+yGjLBNyE*AE@R14lVYjw1fb<0kg2CtZqgy4jtUfw<am5ara
z;zFC5VU0$^Uyc}Tn5KneS(br-{XjBqHcAcSMPZ8|z6B@;dcN@pHqQc@p=p@hWH1O@
zT)_^5!L&(l+P<G=(1if9Jg@5G^bl%~wwzb(@RfZ9<pmo8arhQTsIWQJVNHQtS66cA
zA=Km@f+!i!UV&@6;_IJ1a~P=z>$FCrjxFn{oZky-NFdo8;7(Dv8@<SD<?C?H!>Eg0
zEEz8q#6KSW!){H1?qWTFTDGucdDpw5aH&y}FMC1(H3n4ODT;mz=?^Ovp7pGViM<%x
zFz}OOyaLgS*IVgul?EH?vTIG4rCY6rN+pS*h3L0_bwm^{H%b$Cb$1l77SlT3Y|_Hb
zdxOE*yF9_}x>&e!X7$8zRRxyk?~sg_3u42D_GXc@7-nlsf{}K_TNjqCxWG~toL*HO
zt?!9X3cA3GTRw0-j9cSjZAE3oiJo=24njR#<<cyeRaomE=dhW@fV*N`L({Zz2j28N
zj$xu7;rzZbGbdUPnE<V$#Xyl`L5Hg%><&nx)lnU4ov=uKXM52*Yt6{u0^sc`Q*f9H
zXPt-RSpg=Lk;5~g;N`&Xz}A|*qVRy@?H}C_N(7z8_Di!?ejQ_dY}$91U7k<Y)b42b
z&+Bl}X!8AiQf)bkw865qf_U(8>!b3mW>GYNjjw8r7aOGob3_51*en?@!+BA%Wv)m-
z4UwpU%8R6RUqA)&S7A!B-AxfWYB9nxQeP#KM&oKE)6HzT4rk@yl7~>IATf%-t89NG
z|4gINiNBC^?@B@4IR0lE+s`aItw#RUyQI(k0r-_IstTAU3hRv0d{O8%N^qjtY!>B(
zp@q&x7I3d*7A)!KBxA22&X<hq1W|s{D5<>nir!IAbamYEF;_}{$+Dd>_vvI)%BaRj
zd;4%yS0C7zeo1}^d`lKAdC7Qx#zdX5TSNCt^tzWWk`v%AdCz~JKhlv69k>ydeY+s$
z@egSz1Cn+M&}e%e>KRf%vRfT>F)8kI_#)u|K7f=U<$$6i(xk`G0a{^_rn9BZjfZsR
zz4)YITRTr@7aVwOtB13XOa}mL3&`(#!ChAdCW9k0@1Bj0Z1l<R68!FW?&Y0Focs?@
z+>f?;3+#Ur*XLp1HF$IGVpgX!?{~3hfpur|&OJ_kB{+8(>)LPD>DVP3ahB`+kD)PR
zJ}5`(GlLnv9!e&YX{1Wa@1PxY=vXr8MZGkAv(pKC(XXI`y+qblR+hmclhNRmZw9?i
z<=0>|$q%R*uzp*AiemnX+A%^+C745YOnf3Rye$y*hiw6iAALq~Bn4R_p@0QDC^~B6
z(TFXEflxg(U022U2?%LzD~ET`)PQzcIp$jN#_ijTd}QXfi|5?hU3RNDReGs-W39%_
z>5N?)-%j{$ol|=2tew3rCp;BXnitj1(r6k(9W@iGYCO`Ef|BOi&hiO7+vJ~E(G)5X
z>Ex4Lg@>=4a?a#xJ9BCf3{j`RQxR|ofZ~pO0T}ukel^4wH=Uinqols1z`#NI$AD%H
zW|zMTeB+Dw96AmF`86~>Xaq-bm4b^wuqD)ZNo?eIuu9Be-jvKxb^+Wh2<ZpvOQAOl
z5#dGZ;BN&%?iK9b()z)H4B~^r=aIc{Df(`v;x={oEErUNc#O8yE}a3Ud*nWQ96htt
zE_CD<rT(R{peRPBnG(T{i=2KwS6Yl&mG)+JGa!tW#PX*f)oC|}QO--KiPRiaqX?!3
z3h-z$0tyaOMtxEy9immSnCL3j1~7#I_JYAI1^@{kHk>gkVTOWmfREs<6p@(we=^m8
zsqmQempb|9I-@}^r|?Q#iukf%x0jCe(_phfi%HWA;$JU-ars)#q!+ZdZ{CszrdR)~
zdb<4K<d5(EnCbmpwVAO3zhTgm0f910R+d0-oa`4b`{XQW5w%(x&|CkqIQ_Xs)I$h&
z(3kY}9X#0A2M?$F6x&aJz3XtjgSmRMr>!>_Q8W5G+u?iE`;K9?lTO<T*=ql3tXj)M
zx#}?&k7@!PlD~GK{_9t9)39FFKy_jax!`xa;^8X>BOM{mv=0Zyt}^4zUs=Gaev)+L
zB-xQk=L9LTbBZE6=(lIATIWH(|MLt<WxC7M-;}HW$XcGhJw~mdoME3CRsq>Nc5A@?
z5p^Ec8o74zW~;Jgtfl~4&fEZ`&$F+qeZC!g1P6(cpIGis-{*r?4DB5bh2x4G8V_Jz
zLN)3Me*hT30Lcj0?E>?WuoD+G)wOnZ)J{&{d74Up?yB$JKB=|JDTYnvU})YNGqlaF
z==;IJb9deAk<0G~kk^Q<b5gth*w!~~OIK{cSapuK?l^Z&jakEQ<{9Jmg^t2&*Q`JE
z9IW251w6t#S+l_?HZFK3y@eW8_c-x}&ei?9$GH*JlfJ7tzDM2P%&*@szoQ`-weo{M
z8msn0Bdf_q#%zxaZe&7Thh3U^>x#q1$aOy!qYT=4JK+-Jc#O>q2yHJh8xu%E495x;
zL|>Z~lY&7WFE3Fcmpd4AyF&dTmrQKD!0QSz{c#grWwDsT+Q!6XC0&+@w=bNrE8q&1
z6gYcpI((u_tL62DR>@V>S?x1vfh38vpkaV*<`!bLLHC62Yyb!PUC>tH?P{rS06jp$
zzi9|=n$!i0-L7%~f-ZPTK@h?%iG@C~Ian61XtqkW;@Z+?k2BO&;pd!IVT-!vkH-B3
zi7|7lIE>ksH&TNS+HFJ|h7RlmL*R@t`7cyxjMXN=?a@SI4mI+}TTj;z>*HYaO!;q&
zMxaH}3bZC)b!U}JvKH!jt=1*_I%;~I1tlR@VAqU=w@<Wmm0Xr+)P_wKOBGFLS|a@y
zr42}XJlwKq<`%)~<btI$LQYR}X>GAhvNl(Q%Yx0KZ((8!guw!Mi7N;|xyxM)yC!W4
zHlT*<@?sSF%vy$)*pbSq7StN6sf($rs5_}gsb3IY6YLp}SIHt6S}lkKM)ZG_MSrRh
zFQP8rTUgac2xY<IBVJ{&Su-p#Xh0-RutgwXv!dK}u{z9Ygo89{K^>u`^LYt6sS1AS
zCH)ME_k1`&z%XqQOms>-wvf1_EZkur4vSijfLe}G3wSpbS<Gfj(bE$rreEluHWU1$
zJsk9DxrqP>Ry%0p4dVj7_I7W{I0HWjX@fgjS7fsmt##Wj^E){pUy?{bo1~jqeueyZ
z`Lio3Cg`kI-GuV}FtooMrPIc<rbnVPd9Nm*p9XxkqMC@?W^+esifm7`w-Y$)c21A(
z4!+J`;Q8c^TJwPUs6P_<>tuN`xPS5<`MT1|LQ4?%<$pS%sTepn9;&mIjVl44-Bns<
zds15@*u~P2yXlf9cPLcU&^00A0tTC&uD?AJxxFq;|731O6KgWDO%)4|Ju<Jn8K;}e
z=h01|^q0SMEOo4l|N4TxjYa6%MzV1?gDvu3ip|go%<}JpqPr4khOgnGuLF&je<AU*
znf|eaT1D-q_EWb}4--8dqZFcd%_5<vt~MCKc)FH|Z;aQHd3jOPJEG*}1)~AdVOl_B
z)QgQ{h8sWHttAY&Jm)1{1Ve_SUg0G@1Vm_bcMP5!kurTx>1Vj_1;^;2^ebV9-R=m3
zIcJ?U)VM)@Y5i*8UA)-i7HP0pW2hP*1IM(MSZ(>@#g*e@7A=^w1PyCdkGaF`9pS>F
z@T93oQGx0H1q<LCE@4sQ(`nb!jf;&glx}(oeoWFsuC*7g7OI1VeN(`bg`tl2P+?)H
zy(3fzW-W=<Rv9%*04=&bpyWT>?V!@$QB~D(c=_`5ufXT>56Wz`7n~zsSmO+~EPtWX
zRUdmVy?%T=?w)Im=t?FnTsJEii3DdILz}4Et)+kQ)}%>qO-?WTbX!w5XR~qLO`AT)
zY2Iq(QJN9t&GJ8hY1)Bx^W<+QKRg><9qN9#8{cG(Y>c-Coe^+AzRm~j<zTnsONn`N
z|4m6a`X6wL1|64b!x@DcuL|2Ti!vYv@Ig3V_q99ph0Ur<18|o?uXTJ;>Y`uP>(gI?
zZoN)t|Dwz(9}^)c2>-)QuMy>GResD{fL@`=R0&p_Z9`{)^etA4sS=*&rLU>XjM2*2
zBxU(U@OlrnAlPWmfxWQefE)pKK=xu`fW&aeDC5f>Tk+GPhS%(VUaQrZpDC8;IB$8@
zBgt!!x^4A7E%F+zJOpmh{C?OXH4Q%S>kXFQ0{Mr6U@W0$8v^MtlzjoDV1xGo{7>^0
zqcLkJ9Zxa;MyXD+hA-7J#Q=leD{S^f08?|CfPnM_U#O%SDl-Y{*)1SM_~u)=NDTf8
zd?Xh>^8je*>;zuH=k$66P70$^0wD1vf*^RjP9GW}2IVW>klz?zQ&JL~;2fPp@Pa{b
z^T{+=r)3$M=5%I<i7QwdPh2;y^or}Qi!VkKvcsg~Xj;N7)eNii7K}P?#^*&!!NKBE
z>;Yn1#SF;BXjouuz!v7CAnHK>;x?@TDeRxiKa%Zig=|OqxZ`@T006KsJsT{LMft~U
z6__JC<Ojh*@QM6mS)^O!H{?HqHu<A-<lhrM_TV`^pb)dA$saMlmH#Zi2?Y6{@;~IC
zgCcs5{B!xAU_27u^=MrBiujo5(a5Bf2jf2nEa)#7XL(FXivMW9Yq94Ws~x<%pS`nx
zXpWCI`O=Hp;XCc=|6U8%u6+-Dkdy=IM`>>l7)U2!vf_^WZilWz^0DjSle^NVcG0`i
z7x%zRPTqCo$QZsCv#51BFP97$Z3gGI#2-R(5tfc<yOmS=fQOFN+OhNm;;nRupx9zL
zf~L%Q<D5A+%w^m(ydTR?fBZ3+3g*PRVzDlHig4xB3+ETrc3Jf%7PlO0(p$S~i{@WA
z^~%$qg6FZikKSA)#}>W$k&Y#4@G?$AJ8|d$_bN~Mm^>tw{GPWReo8)X^!-VC*mrFr
zI3FYZWg^+g*G#kup*m8&G;r%hk6d)oBk&Qj$?zB{U*OOK_?Y@H|2YuNUYG}5^05&u
zh{S!vT(ziQ%jdz^aycqTm-j*)7#xX|a7ccA06vzU(GP0IicjulFJbRN`UH-yY{z{8
z*tsx{Gm4>iSB1%P(Mv>cQ$p{#ghjmpJ5D2MQ6ljWNQR`*{M81KxZ?qw#1Y(uAUe$8
zGng|YUczGE54u{jJsK`543%`oHwrJVY@1Fq*DqbN^CRojiW>O?`Lpt>gy>lsZ~o~0
zw&>CY8k4c2WWgIRtgD(bCt)q{a^fFhe89$;pK#4*E6ROC@~z(-GTDqQ548cCOG_8|
z>q|VlkAq!c+-=Qf0Pkz-@>=H1v51By%Z4o#g%?g*lGJE!hCAH>t){w$*ZEzA0WDut
zsL=$5MAw@3PV4w;+M==gqk*31&DtAo;QaOU)A!3xPhFv9PsqK=P&Ce6r>%Wy*F#fX
zl^%~tUnK??R&`lh2@b6Ct~6w{Z$vsdVYdzuD&kn2gtL=SeF?V@9y77>fksuSE*1)-
zkH!QDhaqm*80J%8IbLaN4~>p9SXU8835MNsO3Fcbc-}P4qJ4cdj8{&+_DO4dxZ<`4
zD?;ryW0l|Y;#<Cw+Il@}x=Zf8+rYX^)pvaRnBQZ%Tx%)c^jrBK`<92wBaFsg!T}8@
z8rMGt=qH@T#msn6I?S4PYk8I3x?Xg|S|*-nSlV8*$XYxHG}>GoYqfHGfmL$yNU>n~
zf;7#C3z)t>&Twn}Y<JZvX+j_TRn#8$wYd#`lXbkO<EocS*gC6U-)${iVzh>AKo4q1
z%tL_cz%gK`S^d}^h=-Lb8cAYN)Sn2#pwH&BSUso(=|{R9k1XyzwrQsCfvH<M##>py
zGye@{$d4Mm?c-;@@mZi1!1|>ZT+j%;@46N)+qkfj<>f^~>64zis0YA&JHNsp8%9%G
z6^vSZQS8ux20k7Mg!oylV3aL%Q)@+2NnL>sfK$|Q4PXnRYdZFpFT8Elq|3qG`RzCT
zDLZhKj&p!(egP)yDi-uED7a5v-mtB20tDlk>fyFf`cwj@QQa|Wk9};F9)4vu%6IFG
zf=<4}sL@(gyg;P1ndPKT2a;w<Vu;ORFym7~!8Dt~_f-8>varc<HAoDmv-h!?jbJ&x
zJ6L68Bx#U1a5DoTGe9?&lV;@|B>>G+beh~VgMy#Iz;`I%89aqcFrrX!VE8ju3Zw>#
zA2Oi1lzLCaE<GGQAG7MDa1ln73SNqu;!Z)6Uj@`aS%3V^s69g@>QPnau&^HR(=e(^
z+gN5N8lS=u3NqZP3elazYG*fx=UtMlS+Zb4%k0^an{T{+^X8*d*Z2A>SFWA1V|iWO
ztiXf=@`pv9wpc9KPEViq2%ymnGhz4c=e=H^AMLRJ{OHg@kH_zyP?BhmEZ=<5i_FfJ
z>C@X{qMp0)oDJh>GtC&X{`>@sT#*haU<q0Xo0GbQKT0pae_V2CJ9h1YVtV^>SPB0t
zeJ+fqcMN^L8{SBtH}o;Q1G{xAxU=jYGT#>>NpuF%fhejrM&>6*-LlForgUxv%8~?B
zwqSLaEG~qJjSvS~V()tF$y$uv7;vCCPreNG!>F}`54;YC*A9+*?RKwYXt1ogX+d){
zGb>R!y?H_Nf#&kEW-zTP0e`$9IkYNy&J^BY<fpE9d&N}VXyCzNe7?D?yqPI-;QJ{5
z-e@k9=ae@$mxCXdHB0HWRf#|2y+13zi7I$2xH101_U$jkFE#R<VP9F<J_E-a(>G?W
zDsO5+^C*_Pz9pO+Cdv;qNEHZz2<Qa=Ab2VPOzBkX;6gmA6bRvQhv)G4-AXru5E9_A
zz@x}Jc$oy9#F7u0=|VAeIRy{$Xw;9#>Z0f{=dcE<P&dZJ^c?0u!kQsZ0-zkVc8&zE
zk|~zPV?T|j1fX!7pjjfM%m`@u#K9v1Ua`U6hE@TRA<>Sr;P*gENxUn`)gEYzp&14Z
zSm<gJ$d5A+18xk@L6KIZaNq*j?2cNVL%J`n5~EC2;W{+u`*G4?MHkm$VJ;wGu^&zQ
z_ztx(;DNX}fIzd*1iT0hlVPPP@B?roVCfJ<NfB}3Xx@q%l9UjyyOGtn5I#xP;ZVKf
z%KR81U^cv(*G?o)a$D3!xLMU3t1aze;Z1ri!%FN@#-wv<X!$mz1<*9F(=rwYKnNf`
zKhE$p4SApix@iHYZ=p{gE;a$Z)+QQ_K=2pX8OEv)o0>QcXD<jA>hvO#Dl7$d^9B)U
z#}&}PU+6A^Kx^T39HZwg09c(CD*$$_CJc<MPO$6T_Ubq+b9-5>o~5-0Yp1rtRS-kd
zg1Ml~67u`pb|Zuwr{|4y;jEb5R%WMxr^qNeW@#YcG&U~-IfjL>q>3$NtPg0-bg@TM
zCRBwPBL`@!uIhrzDja$PM9<`Gv;#s5w3|vm`^@xRw4T#KT1V4*8r%c57LL`j9HfOZ
zQLBGkXP`NTp#??*W2})jX|*g3fetc^M$iDW0OM9W<eiS7E2IgnD735%i4L9LQ?Wqm
zvQ|tfi4+#yn~)ME<xW=T2LKJ>I$?pu<FrM+5x>?bLIcYHKTZ3smjs-vCpgN>Y0;{?
zaC}Flo<W13=;1X%d&qj8U|?WfcX&dyucToTi{yk=@x>-2Zs>Jxcg!!kMXdnsA<=A=
zboFPIHnns{$LqshpN|%RU~-w=%o-p8&VY7JwBE?cbAZOevKl>VUmdN%FC5CZicV93
z+gzmc^X2UL^Q_jkySJ4>rgCRhxVcy~fYv#l61#1JUqgEUsI3F^!~)60GYQsHYSYr1
zJtm|;@(mLKXec&S6hm6C1x1qG1IkJmlVETF!NqDECOv=_V9;8$0*6XMbH$9rAPJOV
zOb!4HX33;ww2);Pj^=^T>@w(Ei?uXg&^ErKh<l(xT&r=~irWecB><QSYYbk-ak<u1
zRZ5$hYO0(a8nXtnTE5O~ni|q@RR!%x-Ilg_ZR;1i#GqGCmswm8YFS{i{zAjk46WmM
z0L^g*hy!|y1~3d@+%yY6g`5VOfYHb?MwX*dy8-6pONIi6-EOfOMMj$DHuIvk$c}n4
zdP{}g0sxwgsAn52ddEV&d3>-$YhZMu-{0x8vb51u#yJgky{SX6Xt@Fn=M`wKqHaRi
z^3%F$ey!7NFT!-*YhxYOYwI?>c-F3R8z^#@9qCxHWApl^Hy74SDTUA<M6Iro3`J~E
zm=~YCd%_gfR}&~e)hf{Ir%f>wM?7x5NsW)kvY0@5ksMt`)l#k00_;^34AB8>^v4`y
zbSTXD@GR|6=z!5!f(8mN8{+XG2mE}D#q&GbVWdzPUqwcfR#59<9I;^$1Z68BG{<h(
zb49@P^r!n;Y+m`-@?o&3yY~76yFx)mTzA1m2U1>8MZf>nuNIEmc*D>?(4-D$J@ZZ1
ztV_2}+Bv1!^bvgsXszwjcTXz7s}LnKCU-PP%RRcCBlNHmd?ja_vGAH1`or-0n$~5!
zaM6d07vHwLLofpNH}Bjx;h#5s(Omq+$J75pp9{cs_ewu{+chcHY?J+eeH0i95)GY&
z(K6PFx)+VK0~WqC79OM8ey!AUtbbI|)c|uRM`}H^;(LXeh#`)LEe3>J9>>kn89PcV
zREW1Y!ZfR(&ta)3h6x!(j6KKP7;aoNqo&tWSSFedmUonvRJf`eHa*nSk=)oGnzo?%
z&{=kG_k_sonzGuW+Q@%D*!hEv6TyZLkL>N8(Rr;r_}oTwx4HvZyaV2=og1rg>YY4q
zHoGh{oIbxZQ5j!cRou3*vt>zhP$;nr*3xjqTUqICu3UO)aPszpM?UN}Z+s50*LKe6
z-K*@#gLsGN=M_kIc!k8Wv{4--;wobgi4%PCT0&DC%CmCD;+zh<ln@7BfC=rg@Tqjn
z1?ay9*+N^o-cihffWzba!tSA+MyA*%{|>K4gR?~c$EF#r49D5swLbYDMy*C(Ztpb2
zyXMdrtVr1JWLjr1Gk@Xm`>lhIp$GK1Ohu->EjDy*Sy9mad8fQv{*}dUtFT*jTG?H|
zYwca^-uQ~XzM)SopaEP;jaYY3G?h`FnrFZ`#dc{TGlK!uVw>IT54lbflMIV~Qw*{9
z4pD@d91=?|vFFl4E>kEISBCws1_=M7VucFR0h?qeeoVv2S?c0aG(f9tZ6x*^$?}<)
zAC{^wjTHU4@@s9#m6}-9Uo|o13TeNt{Bu#HwB8J;&UGNUt`ksZx#!aVxb)Kh00X7<
z<zW6kd5uYQh2$@*CQhsZ=8#J?f!p@UN6YI=i<}_2VS}7>(mnWsOO>)RxU50qiK_~`
zfzxc2Hp}9(QT5&RiHS=ml0TH*)D4r}o8$pf8ag2>Jb67sn@CCCl*i*OeNZMCf1tm6
z(<bm*t{lpHv|(1kAnKB#a45rShZo!Ij*|QZ9u_P&TZ*bn7qmD_nwv_TEepm~6<N&8
zq7ehkr{F#Nw4P!Yl2=Mg3;n=V+%wI7%@|`u1=26xW>2Ah)QMOA2w@u<5NcaN5DhCh
z&Mh1yG1e?`3l4^`3n!K{<3Zvh%*F}XJi+i`i6gGV&Zd^!_Rgp8+_ps7fQ^h<e&1*k
z<o6%fd3BG=?+YfQ{JxoCwU0lpWf?OlK_@}U<66J=aZrLzf)e#4)aP!4Hc=DXBfoCe
z>A2<J7>(a7=X5$VsO@1*7Q;8+7|rM`s8!Ay49Z#gb#&Hj{N@{js{8$vy_gbF52b>5
zT*Jc}M@GO%ZAp-0)S*s{l@Li8LwsPzVIqk$pU3K-lwW?l_t&S^9{p_ZK{Q{6mdlq7
z+>R+`x4r<xTPiG~Z^4p7CvQ0aym7?>{|Ty1?8(%9&GL`m-TT?mwYz@#%D;BL4hnC-
z1vp;a&B1Zwif6vD^@fv&B4V*ns$iRODb=Q3u6i&MbG~nsAOEP>mP8(!23(u}1*0=3
z$r%pwVEs^m|D%Qo(g(4^f*<B^I0%l1_f$XE!=|W-*c*%@{0_XsZYA9Sjf?2B@K?d=
z4E16gP)Q$}fF+E-k79xlqyhv19|jWOdP1&&_BSO-jEOI@*2Kh><CBp!olS!2DQlrq
zl4#4zjSAeyF)36h9izLBNp&IV*nmr(oK8LqbkD-G>Ox0%oRI1yNqT`bkMp`PIGj5i
zHVSXp%wp8~=PmuXVj<;1<u>x~Aa&WZ&!P|f)F}$^yO}A}WyEI?uczUqORQNyr0TI;
z2+fT&8ucAkLV<yoeee;aW)a{VB(mT+690PW+ITBNup@}Vg?kFpX{-bfhOCO?)jY-i
z0Ubf4!|=Nu$DHFzJ;l6K<!8XvwKUIb%0j0oXToarbT>?J(mJPP0zAWrfvr;xZ(ims
z&;`!vy}FsB8B-Y$4R)3_Ypiu9b5X3kw9p7SQLAI2z;gx7M$v4K{>PlC)h+N43G|#r
z(1`xB)?jlrgG6%3S#`i0uI1=&5+8e`k+KGN84_vXrDw6Gkf(rQtp<Z_!K7*pV4Z<U
z<)#9Tm1t(%gm$M>S9(o9;I1~?Sx!Q-CPV9OwHpeHnitg+vOrVP*xOk;(P;2%p<U9u
zATY3&Vqat3;*h@8UtO$)jH`S}Ywv|R69yll0c1^D!WH}@?rU~Br6VI=H8r1FPhE_@
z#;i_^XJe8?`llm<_lX)cSOrRWj=>*dJXR7!dM_Fkacr%KcCk9>!A@(~D33l{qFO=^
zPys_@NV`;2${;yL4xtlRWydNyya$_pXWHyy$Lwtytx+iAEgr%1MCG40ZkSzNeWGvU
z3Zx_U%cl<gQU1N4?FZn{A3+d=rXBpboR&Y9|NEW2S0*0>i>FPfWH`aZaaaDPs<INY
zg3i#ev}4=60!dTuKn1fdYIBw`tjpO9<}ZwdwY4#qrm&>7^`V7@;|;}yyZ$-kpKKCb
zKK~@I`!=JSW%b5lfz>Zx+f(9yX2r6l?xH7}dv2I4I6gb1Y_93J_R`+g_8m{1vlTGO
z2Y)avah+g5y#O|~v~4vCdeosB*TWUdch#e(qcXJh7}3+6<5=UYp7d6?ORROzdAws%
zROE{5t2x*7eA!|PrKKdy7f<+Yk*4jzYo3tDq|7D2%%g$QVrN9=+@mi%fAqjF{efS~
zx20cw;(k!VM4xyy{TL{@-@knM!fy^9{Dy6j-9z%(tKJ39XThZ3q|4;LzPkz>83KRt
z{6>COS?fcx!%ifpZNO_UG!|7kiYF)^Xe<^WHXi`=am8?&#c8$}#G+L!()$?!X*g(j
z!fPV}{*XDGWOsTOE$>~md{(pBvROXzrsQ%-$3XeolBvrVtz0nIx8<eFx3m>RUA%ot
z$BH=%5|!NKi&rjaiTLa+W6-##)Yl22NawlDB`jwZH9S&}gzDI$6_<3taLdg3^SYWW
z7Dp}ToZh`-+cn@P-P>BcwBRYw={}Ob1+Gv5c;~nvYK#@r_ROue24;3uT-pz4NLz~P
zr)`~FXpzP>wYAll%sV?d>!fL$HecOQ(Aj;~qPde}CKI#N#XH)fjm6M0^Wr%z9ua*$
z^z~Qpj;5**tU+Rn4aqKlV=3ZEZYA+mM8X1!&pxpEEch>I%P=xAf7?2{K^{tfF?%cX
zo58Zo-`3gm%-LIkd*b{Z^1py_$NY(4@+s;Rn2LU`YHy#nV@IBxi4n?b)cBw=X-w^>
z3GQN&Dv@c1WK$tBeek;iz2G%t@R=U{u7Iy$GO=3L;cTq=WUS(8%ZfQmaRGBwteDBP
z|2qpipcWCdVP;f?kySqRouwTmzbk8|xnho#-$z*+sF2HQQNqqFRvbh79RX@7>|13}
z!^RAup%=eLJQ$C@{o-64zIYnO0M(vb_FcRIYIHsDekXl^>f^o)$>cUFh9g0VIEJOM
zxC76vR0Ip94l)|i3XoWwkc(nVgXFXMaI}|1pIX}}zxnL#^4GVW_>pDjA;3Sg=bi1)
z-FS*JnoBKT$feF8-2*kkg4o36y&XYtzr5ZIepPDu2rPT`u|M1fw6{M2%33dt{qeGA
z<Zt(W;M$Vp1K<Onlh#`bB5lhjPCA>H|Cme$<c487w!-TZ3x{a*`grU<sVr*ZrBR0x
zn}zKPk~qpc(V#o}U$ZMh^YzSCf%34?>)G41-hGa{u1nugYic%i^xW~M_fHOcpL>7H
zY2<%NJq_<a82j~e27Z~d$Jt)@Sp4_#$3O_U!NtQYXeyoqDkIi^t&maFu&jeo8;Ito
zGhtXra4AA^A8X4bEHO$w$t0hXkN>P+5Z|Rao!031B(oI-bP((?xg7Eib#ojr<S0!2
zOg{dcD8N+{0jD!39hxc2vZ<3;t9)V`YsGsPF3Tk30wb{g6npySV!s0_`m{|AGg2y(
z9gMP8vF{lVE-S2-az9aidz2WIo-;;=kIGN(^j*>7YFw-a<9LP%<6pO8eTynea1~H!
zjj@kC>McGZ!4Owez{k<#=D?A@K92Vz@e~N49MF+kIv`<)Uf^LOtS<!5Iq%LS`lR{B
z88aGr$(Tsqc^<R4>=N_hot2e47n?6B<D${o9UX)7>961WqG6M}P#$nCuIyP>bjKY<
z%X+F7xqz1us%tw-z)M5gZJ<AqsP;Jvpv7r{1x{aeBEj2fQ>3D#B4VQL{7}iJ63_S>
z#>>A6m5p~gu~#T~6AXYiv4<#Q^cC2;6YBSYu|(z&|785JVhvHTA|a(Rm&_0}v;jJo
z46AOeNW;t}Rd_qp5K=q_f;7v1(K>h8L-qW;rs^4{xcqWlGq1V2%M`z*$ksADUUB>S
z+g<kNIq`}+qRNRFh{ZJXapvgVHhc5@=88Mk-|HM20<rb-%kZ1oEob|h?zg#`7Q`y=
z>$}(Kz=?aJ+U^!~?f*yHcfdzgW&gi>-+S|>w>Q0J`lKf_nVIxXfRKa`dT60{2_PL|
zXkr5urKl)T5gT?aD7snuT2L3a;Ln1)xVyHs7a()_-}~N72+00)KmY$fFz?;^%6+$-
zbI&>769Z*&=?HR_*glK7a&$buXKoKElE}L~AsJqgKU5P(FP2Kt>A9d{{)Kxr*@7n3
z1v(-?mv&@d2GXwVL+Kuy>A-2c3`wM#O$4gJKqV6TgxlkNDK@RXep=ykg~}XxX_&4J
zmnO3Ndc&nvfx^c_v_tLSEk=XU!s8GP6uz4CbxqEk0Ec`A(>nj4L0PM^q(LcaA<h(L
zW|x<S1H-LZOKgyr>10Id1)q5Mpm{izktGVY2Q2Q*gQ*eJRBACr@puIbLIEL@7DPWm
zjku>lcqhI;$s6>={lta0XyS>feU>+wg*6a=TgdV8SP7NI;H4T8kewi2ZsJsyKaS%;
z;sXT7P3s%Lq8I<oN?DE6&a|M<3UYWg&%Zfry;3KkHOlst_n?2J)3_}8Trl$G8-QZ2
zJkiWBN{Jr#<{BjV5-{sFbkC*NOnLjE&nx=w01H6N*W0&$jSit3(IFB7qd_OA`s9i$
zK0z;_1Ly@3g2_8~_3=}{r9jGuDjl7wvlLxUv(V!Nav%drJ+B5*^c0fPwVBkOXXbT{
zNGL75UE@;v+4;v(t0Zh*7Sr+I3-6$Pv*3Yy=jXtZ^KRTCJj|&lulNL1UGNN<wMS@w
zJ<%5fIyUGhW5k~@N*JSoG3x*yNCZPM#>`ZsuTP?D{`?0p>G*N<DTsYWKM+WLcf*R?
zf$<IEqBLpPpW1QFPy1~LgD0-t^A8u>j%v{AB_o@h2R&;uI_84kDJ2!8iU{(6(U<PR
zz8LW6qPhXUbJ%fgCK#oA>E2|v<Fwq7odkGIN@o67II>USj0y=3{EPz<3MEAZkh4?@
z-}u~5geN5)?UET^(Mg$TyH4l@-XwIC1kaixiL}410I|9?8aO_!<B4<0WE)QeGJd@z
z|JE}H(Vx+N^yh<&9#)%5Oia7!Ob?@EQkUkIN@~i>p<Jfv)yU+qyu3~^7CmM%F<m&D
z>4Hbli-VRA!v8_#;~WRI1yY20!=v6?X8MN?3Zmg^1^!cmM}mWf2H#pUM_M2ST>zjS
z{Qe8iCfOTAofg0o0R<nVAdzQaHcM}=rV}JsOaSfZ399Pc>{?YAoqc#xc_go)X4~&`
z0@ru0ER4rW%N@18Hu(<Nkg8HB;0uGmOCWr;MziQk{A5+1-tgvFwK_Dt{BqsTX`eXk
z$HE#)0S_5v;(iw%S^j92nZr*Z5P6u+q7xpPf`3vzfgXDAR&?^{s#QmU<5rOOmv`1Y
zx#543$^Y3fcE{u<j|8>Ae>YSeNB8%V0-zi?j;{K{A69Jq2>txg#-bq;I|8C!nK(}n
zyH_vOCP*VpL^&`hDAAMswTM3r*c@Tg6sIXcfNg>y-b_4v3)rTZo}wjO+R(#{4@@-T
zkCk9<&_7_7z_Wvi8LZV-qkmUxwGzFgXw}MMi5?v*X^zF3!S7<tB{+1ZX@-B}<2A36
z#6aBk0WTSJXoIgL(iCt@faRr^frWGV!K{mnN3d9{sjk*&C6eM|$-DSsxG!}E$Tdqk
ziktkM5@62{l*F22kz&?}UgbIiO~t-)jorEZwb!<1Sv6(PTyQ}gIv)p1BY1Nn^Qq8I
z-gG;WW(s7Q$;9@D5<=qyLkTnacK@NNL~HxdFZGt_`&Fvg7crHJ)v`H9b671x1=R)l
zwfUe!JpZLKH^;sB=J@>}-%aE$MaE}!Oy$jsTzR>bSvL0Td++;NVs(S)dH55%@kQ}9
zC6b&R$u4(6flxDj9-LF@ZezX+W#!?k=jO0_^u44tt1`zGQCZEaA9!H3)uJi}Coj&I
zxbW;l5SbHc@Ueci6yXI$l@ljmV`)W|D!_$|qywF&CONJ1(w<8lLHq8d9V3?74ZIy(
zxr>}SD=)ocDHw4f|8m$~J-mC-aP*16Za1u4-LYhGJHU&ngO7i-dY!@U;Mdq3YucAA
z0S{cr)sQ*rPA<t#5}sSYMG_xcG_mh@UN1Z}$9gh3=7gBV1S>~X_C50G888F~QV%`c
z_X4;U3_0`YBYm4*z$tX;a-trS+WXMYXC4J|bUL@9A{Q>W|J&~mUQvEK`ti{-ryd5%
zs&e#gPDMq|Kz@bbeNX}7W?XcSdJ+1V?M>C9tVx?-FE}x2Q|-X-+XGI(-c6HGR;qRr
z<2+wsPl|swDaHH)_h=cuk4~_54+yw9WO?vdflmkUN<kZ=F`i&k;C}%fP8%2=@<!?l
zFk}t5>CHFa?10A9=U@nWiX_|&4LD~oIt&J{VgAvV4G-hI#pqgGW-vSqTyMOA{?^xV
zXUBdqu|GIqe8~iC)FR?rh!WUtV)HQ|q)h{PbGihv?SMkuCq{n3h?`nsxpqfR4E>M}
zz;zE_X5h_<v1^Y->o2?ek;|GJo<5eSx{NlTr$pJ9?9>3G4va`nAm>yuP(DYul~0kR
zHfJB@;anW`_dSJ!;OFz(S59T0m2q$4`E(<7gnErSO1)40o%$#BDfK1w72!c$G*Qr3
zL#}}J5lvDT=LRMm4T=UNC5dW?rw78K3Ys^JNNkfO5zqSqM{Ukf*ie#2=^%oV5Sc&(
z8#!}AO`8)1T&Mu%5Z5c1EOo&eU^HXmPFf@CED?oO%%#!fg7}F9$}VB%fCx+-s)kWK
zG)X2O#i=o)2Gl_2<zZJ&pIw*hnNT^XXw_bSUZp)$Fny?8!pJ0foSW6t5&!@v)zQAq
zSs@RkVMPLuME~w8>&$M4#E4vOtwpB>|Bxz-yq#st5{-?!Q>L@(G*19<m#Of&!bG9G
zF_-PA&P(JNjB<-ILWlExpo-OTYKfeaF`UMxFI2Capba<HI0s9WSy?8f>8G`hylksi
z?Nj7RIhZ}X?~uAQPe<qe6gnK2*_~!9T(zdE7M&_uI27DY`^uuF3}+l(=RkwHB=USE
zf6Oh<rdI(-{!O6^n^sI6QaUeD<x13O1A8AhvU4hASQ#7OoJyB9VDi{%vRiPUkZaw|
zCRJIL5!zyt*4<=aY~3cU#!Sysn^ba!g+P_13z&2o6CKvtp6n_1dufA3tLO8E+Oo8?
zTIF}wI;`O^RA~Op8l@TuCg35>fLxcyR$w0~ljS=AUV)}eG5SO1d|eseqLIbM-1TxU
zEtAXmIH%|vWy^KP3rg911?^WpQiR^t08XQjav&F~IC!Z+2b8I`BbAb30E8=xJgy#(
zv42x$Op{HbHsNJ0nBEN``m<ysU$C|m)SAUnCaBbLxRVIF<#A9#&})eL9g)WXL79yx
zBM4e?g2tC2z1GJ{aK96}Y$DAcG1s!ZYf1BlT2`via6syvKP{3yHkVW8@dk6O(Bdq%
zsbxAdt&yl@S~ah*`xH_+D>s8qxjEnENpAGphYlatomjdb!WL&kQ`xTNtFvrvb%PDQ
z!Yqd~w)SoGIeHuY<4?&@MaQs?LSEhMt8)4Cq#Mfe4(1yDqZ>vhLJ?kV@)lzb!ywOc
z&@|(*bIQ$yYK>f(XE8`Q15`0`MnXf4TBDONN>FIZ&v%R*1;XX!VE}HK*<E7L)wR|F
zP&Kp~(B6XVl}GoZfBtU4(pP|^XZ+o37Z0m-%B2BA*y0#J;+CMZ&91Tx8nS%d{nSA0
zEf-!TJE@g;KF~ll2xaVf6G6;Xn>mRAlM^*GZN`LxS7LC}Tp=s~i2@Nv2#<f0Xha$!
z+vy22A;1dhgquiIT!1!6IFn#GOteKcbf^Ya6NMUFktyie?W%iVw6=Tb=#}FKnF{KZ
zyA^>zU{1ib`}XIQdz67W%>n10p53?ab~WbNn>tsHZds}vbw53O<>=-m>M_qWDs~HH
zTzh)(KWA;Bv1KNl)nY4XP~wc{IYP$mdz=kVjZrLZ8@&>|)w9P{TVQPJTs3+~w|2~f
zb;>=8z?@)!6oh(m$L6`@j`*Le;qX`uey~;3nhk|#c8*>(d9Wj|Q7AGeeM4961EUp7
z8FTBUiqTItq@OpP)sSx+HfxpWw?o9t7(|VuCQwtT+0;DhO6pFspA#$;T-Aj{WzJAq
zLopE~)1ky5Dstj~g3&S2y~JaI$b|$QPf=x)78Epnq*OwXh9x4bIRpYa7MSS}o_5WE
z)!|P_ZXqDTi2EW!U1GY82N%!@qU=yfNGE8wBy?;f4`&*6a62#?40*X+Bh%0@!os*|
zNsDoVTGt4rv!o#xgn+e~EqXZvBmqTv;S4CRSIDdk18J*+wwBZ?FJl?iTQsK(x?DE1
zngO)OP~_)z@VT0+&-@IZNHsIZXFWdSue0)xp#oTiPTv*}Z`@Jt88!Ty8mU~$I6TbI
z2L?~MZnVZ7kb|9lr`4$fPQ?<1Xbon63m|56D;NWKjpn2>gOiQH*=<uakb%rN%M*6j
zl``Ok3MtXMld~Mh=p;HQp|x5c^f9y?0HqN|%Gk&Vhol68VsJvEGHaByS!2V)kWnk)
zj=$%mZu%D^{WKMK!|UCtf4MKIqbr^QYftM`J@q54%C-VdhNlia3=}*4oDMV6$uocW
zQSzM%Kqf8&64tK<$(JvgZ$y&?d*clD0<q~EOpV1oVFk67+D+X}JxTTU@AULLhh@))
zEGP5>@$F<h=SEM&W7qvk{Qq}(UIZ5N=s*_P&rFg7d!oE)*Sx--`pKnX*c0w@>~Vxs
zSpv|}e>?!{|1Q6)CtR9JGRevH=e#T5>0Lf3Ma|naxn4qrOT+jvy259Y{ndc_VnKA#
z)c>Xc*bb=Da1Wx0H*catFQL-1n;L33o&y$9>je*j4^h9P-l9Ijl-OCI0d7zTYA&+l
z*Y6}zY<Jy%8K?it@A+H$$Av&X|F_rsfBAf@psaF6)Kcj^=XT(KKO}!^!E*;l4e(6#
zn`;5;zrT}&3ffKy`&<%yL<1mazx}n~qy52)Lm*u|ct*fX5f1RbsMhyilsylI3G<q@
zXSGZ(+l5C-i0l|%pj1a>of%~zv&oRLGG+Fo_tUy{=zWL7Ioxp)bf0vzI~=G-RIqy=
zz2En$pjwwiNkO%)6!=L2$H|kV!Y86`9h>&OO!iZpg4AdPk$;JN52hUnUjjs5F(AE!
zvJpm4EGqEq=kwwW;xr~Opfte-2?)MnL~;t#XUgEXs+P5t_}IFp65ThdwPjP2Z~#{=
z2l}VHHTAiTU)9v7nxE{x`)x3!YFw~#O)ELB1v6SlHEn7k2PRxOzisK>q2zc=>R9{o
zMSGjuS1h`<@CEeg(t;|dqI3L?F~=TUeynYNW%Dgd@p0(hrE^xaH}74vyuJC>Ma2H<
zECq=#aHEL1$eYr}?&8DaXNSE@rsPAvt=Hy<`BRpR-gV!u(e&5XzZB?uUC;!J1zx&7
z`Q5Fzes>O2Bx85v##B7ev7vmRA|FviQcYup2%D&wYDvOmDp?DkPBo>P*wcP@s@75O
zNY%Ri1wq(r$}_><V8J9X39kKgF+vEYC|{)xCAC_R)K&UuDqODylvH|_QrC-6dHDWP
z(T~YFt7x3X288EeLHZoZ#L089WXBiNtYRSjfC1rvpHf(S@c{}>glfT!XaQQlzB?e2
zCx#EB!DujhD(FGA)><p7WoXEzgPvfn4?K#0z2>+X^!jqaqyC((UQoWj`+)}@NNvl6
zR^A2V`@5fg_SsYw>hf1>PpH)=ApRp~ZM7ft1Z%ZVgX{3IS1#|>)&^1c)7n~5rh=pt
z3-No)aJvVo0;-Pe)*3xDK{gH2n8J%fj~6pPl-MIVkHHl1L}DdAPs~Gjb)P3dJdfcV
zp~KQX4_Ar+INR6REdhJ<2Wpn<KA3?H|2YNNqgTB-6Q(X%dL|CSZ@z;52&`=ro<n`;
zbJ#KVie)timt0yra!Il&bu070TJ*=coiC)GtWBUdf%GqL1OAE+uhh8~t%}@z=((Y-
z*ZsxOux`TR9a#rf4O=s++?M`^nf*)`6`=C)n+z8G{9Lda^1|*D*;^nR4YV(YDOE%I
z#NslZc<day4}m74BW52Sdbm*rO2UqzZD8H9o@?iann$%heCLX(ho4;w<&8tYEnw${
z<o??(f3x~3#n9r#3dA(c12yRP=S#uR^?hG1U3^<kNq5=s936W8sm{shk>iW!WVH;E
z8#X_3aO2kfzw?H{C96y8fxI=tYjGKz`w&5A?e|(B?7^Bd`ez|RnS%icMF|7t1Hv3q
zh{u(nK0|<PDM`V#uU&iXYpHEJ=Gg6XTI<~IJuSu#L)P-abLh7pTetqP$JVcVY!~|B
z2pXn*e)FoQt^WX9hEG<R2*!ZonIk~KxJmtM&ph|`4oQxCcS~!nTk4Tk4y8X@_ZY7K
z=%eeOML(k7Z+LXir4zvew-!OL`xzibKTzlKj#B(S4OD9y34m;$QX)4fm@miiL&wi;
zgjHo2k3b~-oj97jeIT>HEVc<@4&PhSvv_e2(q7t8I@wxMP`T1-iB@%(3>|cz_$3Y+
zZkRIXW;qzY>)5efH~tZREaQh&qrZqB=%?+kZre6v<~BOJXYrEZ?TgW?2bPu>84UOu
zl`AbC7A_P&=1qepuDoV;-?5#$j=ggudJY6ufOl~^>Y1@^+pF8R5w!8MV<ca(XDJo#
zm-(1a9wwkB(Of_fzG4Q-WXBvctpPOAZjC2GfLI#=%%RadX#pUi10kMhC9*{7#Hm>>
zh*J`DAVCz@*f^%@O?0CMqKSCyD>#kJ3)}Jz-B2^N$W1fP=^!Wd4ZlW`JfbY-^@DGe
z{^J;T-`~nop~Cmj3;f51_OPYcS7a%IyWiC-OscTI%G0Fq{u7j~-TpqBwA<S;s8Xi`
zJKb@mA_Nwp>r76%EMPBf_D|%LupDifIOO`dql`u{(^jd|*IYIx^%=U!>7yBr-47Ol
zc@Jn!Ci>ADbj>qLFvIO&puv=9jiZ;)&On>b;5C`#dU^<0@WPiP(ba}A<8PkSpi%+a
zuF+J9eWX?@_Ia|e+i(sog7@IoB19zDpEA&J)RQqF%{UUl?MJ$YnW!*;6O%Vjp1gS@
z{quNek)<e^1+uh|g!JmJ?w;;G3Lm=E`c0D@bIo^5qp4|knCChsZ362^p~>I`m?`CX
zY04@_DTGP(Byqi&6pxsmOXAXZPF}x$GMcnWw5yep={8DLU_QQe0I&AHJg|tf>`8mX
zGV>X`S#a*%(<xlmq)iun^rVQ2mn1K6>a_T{GX}gj;}Ozea?>R861C*<YsKTampDPl
ztP|u_P?pe4V58Uoea{F{Ob=vX9_57aew3dKR96P;k8A=F_h||8X8lLepD<A(6p!qQ
zpbbTU+;2s_R=*seh%Ly29iIrtm&h?mVBwQ|(DoA8fsdbn9i1gX-L|0B=d%X4>4G@-
zhW<m6=Mk<DL<@z(fVsv<<x-7;E=(FUNu1@=X4vrrPW22(%@R_1oaz_$6Z=auf_pwN
zP&I9~>-T8O%{g`xo3(k--|pwtyrawaCHlinyNY~P&b4|2Fu!9_TYU?{>(HYQztLlM
zXS)^7Ef4Mk`Lm6@GxyC4;pdyO_@!Q1uE8m_&sNyK2phNMsG?S%)U#IQ1G+-<&|!sK
zz~#=71{$lB*%K}h1_9BRE&e7vp@xZHHjd^nj~&9H1fTFQ6ne)3%!tj~?n1{vp#^;k
z&fqY}XWmIY?M72w=qnc}go9mRp9|<*c<kx$?;07!TuQ0&3QIiNS5iZ$QPebQI<**c
zq}!<LsN1N6R4?@|@wP>Jsh1dyk{KIEaWj&(<!FOB<2)cnb_czM#I`qKCW<(*P@)9S
z_OzKZ_=NN*rrFPBxYLR|ID&IzfaeT?XC&ex*_602CPqZN@G?M?Y_bOOM2u<fk70V%
z#B;?$4Dzvf+8AHJZx*OJl0XSU3R;UvNR?csR;z(ZW&$}1rAn%ms(@S}k*O6j*_kg4
z2B?NQ9aN9A*`QQrHp`^IcEoB`$f3~)<%-E>GgPXKMwPM)$JG*<!61{U!3Ok^(J1G%
z5c5k~PCl9E6;d3+aj9Y&PBZX0qLRv#;L4XZ8VzO%)M|}EGhMCLnzTTv1X`2kPinnQ
z4<r&Ll*<%SP7Rq^2bT5yTcvl5?s@^Zbg{B!2ljsh6>_y&p8DY%xvJzCY}QIyR;rbx
zo&}!+Ij4|uDzG5AP9|HIlr_Eex=jAsTQWQ{KmXxNh2qN}lx*MkD%JOWD)(nUYGvGy
zpGjoM1Q(*sKXMBFk6^7{F&yQ6FIDj0gLipF7Lt5xG=2+C%T%hA4t|E<S8|P7@fAP{
zwc3RYUnsO%#TVcUrB;ii|5WMqswK<dT3RFHSgAgB<FdP;UPW&*%f0ASujv4l!6%>u
zAI5e8fs~@M{0ThOkRAFeVEW%<i~vq8MoZ$52k(KsD~_VuP#3!G=nAm+SK^03514i|
z6F*8*V@BO4>SNqDs_(u55s)(=!sOsnQjFo#fc;#avQa*2G9EjZ;<2+8&q=@BuQPKx
z5AmlgC|eT|E)b+;WD{4y8O1$w4hnwzh&?+X)*(i+2TN=YDquvgzsIkQ516u010XTu
zNsgGj$MC<9ful*$5V?wk4f@EKEMbp0!u<fs$#9orGgv8CqF0n)I<YlNQ4o2e73DX$
zv}y<>bw!ugd~p9w<25P^VC9T#@@TaTmLwYe7L`ijHUhI!FC)hA$^^2PjE)Wk8#F5X
zI08b260F_26PnnTsJ+w$S6D7>DN-}cW?_ph1H&A4G@>h<N>HXet!F4=&~}=FBWy0N
z*o2uY0D@tUr2?Jilz@@j!n5;b8VE;sU$L&^mPlA*ER;Z+b*&k+AK5LJhsV*Yb2_;I
z9cCDS>zZ(Tq~^x$m?&;oIA&3)!r}mcI<KFJ-)Pit`!>9h02<@gk44GmIt~kvezZgb
zd?f|MH5&m|C$yapw>TY*{c20kZQ8#t$<dIZ0ZS+M?QcTwc1~v@Wbo5V;B`x`gDhYe
z2-)eKzoFUa<owip@QJ~um0D=84B6q%`SVe;!Db}RcG)Z$^rSwLxg|!U%>bU5|I2n5
z`P<rom;(3+s3(yILpSh|I4w4Y0O3Z&4TV66^YpJa0>}r}VY68|i(i_7EJx380lvoG
z7aGu~&9fOLje8d(QOs*WA2vSw{BLN6&*sg$o#Um9gyCe&?epdV9k9)xzmMY?8ed1b
z54XwJ=#z|&%)s|A6?B1rYYSkGQuNb}DGh?`2z)v+atYYtufKB^7(D69mYjy+%{4_G
z=(>r3U9qynU0Ut_Z7+DY#+>XJvC_`ZPyGp4fKu=281L3x?45F`$Zwo^be>qk3>Z;e
z%J8eNz$E*qUb6Yo-qVd~(%<mhpcnP_k}An=QiULAW}Y>(FGHR;K{X2~>oK2^jrpAE
zv+>v8!AHQwbwIEX7PO$_d@M?wB*HWq4U<Gkko@S%|Ml&XNkqYI^QG5+c)ip(JvrRu
zJtFveW0C{@z^}b=GKr_MchH@7>&S%*M_TPQpf#DaA)DZzv0vwPz_%)+S_Eyj-?UB`
zGhQS69XBN61n5y45|PzRS^;$>6d_(g3jj$m2r0kbIWdt#d`BMGL>Plj2ejajo8PcO
z8#fqP-HaJJ)~J8hZWudO9}hylq=bjO;kV3A1yWP$1aT#Kx3F(~w<a~%vJdRpXO!r4
zG2<Ha{2F6StGUrIsc#Yw{V_w?jb(<IUU!i`9sRB2^uoO%Hq&YX8fG-|>r0{Fg%}A(
zdI4z`wG90PWU}A1j?u|XU4V}ezke@ze<1G!a@j?`e}WoD@RNSin^hCrQ9!iciG`_P
zzTz=)wBWZ05LI_#zKE$@OepYTS&|w0^^e~rwJD+sTKdEjQW^(r(!Z(k%c|9XyD%Ls
zS83o?(4?wKpMO(};41|2mA?B9Um=LE1oC<OhmKvCo|51z(&W-|9O(N!4q%=qbapp;
z9Jd$I(8c7D1d5J*<e2L**$C~F2=;qi$Af^VBn{l|V~@|ATK9)L3fnszb#rGd?HX$b
zcH6jBtB2paeES`5AA0n;a?aXNQKxs8M`E>qyrUYv^s@O1^zH4o{32a!$+aH?4qWoq
zduTWM>gBF`zZ?R>hkJiG*1K;#V3eV(*(1hwPM`4fU(zytPMp^ylpJ$Ydd!(x2{r%^
zbOAOIl7T>G!x{5#IyQi56rCaMRE)4BA`AUjH~~G19{>IC=_n3;haPPOTD*9DeKlxH
z-Nn55d-OO^rS77m-o7`DdB(msy<R$s12_RJLYIKqANe<I=zAaRIP}rwPdxF&q>sRC
zbP4)u1AzWRU<bM>H}zq*IrX7R1-<5M=*>1mFQ()_G-vQy@r$r4alafZ_DNya&gaR6
zf`p?Vz=P=B>v1L!m}jD`kiiRgvC;G{9+%Mp^La(DTGB;VesMRWq0bBkkiGAVOC~D!
zFPqXj41^v#04#Tc({J3f_R87X8f8OkqO~=aH=?d?=!nI2tM0yM&9&1e)wh(iH<#rO
zud5&0v8ZPCeXy_KmDT${1@eF1b;;B5Q0~$@%5Oe$JNn{Ii3NSVdi!+4P<35HJl2@g
z*wN9LbM1;%+ovw5t&f%s5)-zaZ+{?SZxXAT1mQo<HyZF~;a7>66Ce>RNrWU?DhnUI
zAx@ta7ktaIW;_9NCIfu!m#Y7;7j3@(`HuTKo<H-=^A5-Jov<FP6%$@dyNab}Jm1;*
zyhB1=L{nJZNh;y0q{97ZbLu%E0R%r5D@&ihU%Z^KUy~&{!TyDyK!9@!PI{uuPZ4~A
ztZK65ABve6z2wA||3tm02lf8*%I87*(GSoEX}`9!&<7tJ1?|tn<ijNM%722|hyMhY
ze(gS)k9z*GQFLRw@gJZo|D^kCw2kP5^LRe{H*Uk}xTnYUiAXUXg^Zv~A{ej(V&+aZ
zH50^qBQ9tI5rUCq3IVlX6)zgQ7ciLXiJFRCQnNm-Th2@W`VtGI;o4FUJ9J27PHVMR
z8**suDz!X2KS!;a6KXT?AY?S$-s1_;jA^*TF*~n==iOdIp=bPv!6swnPz#flQ=F|<
zsX2K#e|T|YZjplr^oQt@vxm{4&$qx`$H8hmLZs1IEB5R>FgOy@x^>#<rX@36PHVBp
zCXp=FHQDS%i?ZBLK3=fc>j@0j>6WU8IGv@p9InlG8$3E~Z0(A*-Lpql>2xaE>8+2n
zH_w{0aWG1u8UMKPXV4+iJwjhoVm>!awNsO*1=K3)O6n%!ZzJd@o)hqY%+zuC7}O@r
z5{{@{6Dvk87EgrY33Ht0h#{ARsP33?7fb|0L~EOLOOlI^5qtrB89Y&@i-qETN{f%8
z?j^2}AXS7~q$^MZjA0njIOaSxczWL3=(c&~&b+!C-`CZp{x;HNFPk>4%*A*3SZVn@
zblcmdb-MR&tjk;dsapLncf;Yb&Z3fuB}JWOha24gQma4p)E}-GSCqFPuV`Gw;d+!)
zS4xTpeP#1N7o(k4W;c!W`#N}6nW@YdBsVFodk1s@)z*{fMRWkYcyjC3lb{lGg36PR
zU1WgFs+YWV&|4fSyC-jq66ze4C7wgz=0l#+Qpb$$h3H@2gKtUdfpSdVJ!KI%p*?3z
zPW!~xI~w%g$mQSY8}0x{K)AnXohT$tYPq9P|FvBHwZ8F=78tCDiZMC&mgbat4!)JT
zAI&=CDXDbKUf4auQCjK=dT_?QIb#$M-x{x-<jJ-Ud|J5gV%quVWLX@g#Z=!QYA&^u
zXg3B7L`ocu(CM=&5tH~bYWGHh{!b1BUWBk6WEvJYkWieD3af^X&^K&M#Ep-bqA?#y
zBW?xA^cyw$aAjH$9*KgO_=PS|Vbi4f(`NabTU-6X18rrI$}!6;@`Blm!;LMuC%W3~
z#l@|i^1$FLA-s|Xr(JlOm-%FK>1&uuKcKakd(*p1gSF_@q9MhRreZi_ph)aweN8Rc
zIeJuQG;o>IxnxXaj)vAX#w>JTR(^v|d!(UO&AKglQq3j9Ee;u)YEOVo1!i**S{ae8
zGIo3nmvtB{?!sj>fX4&zil7C)=TF1~{#bnE1sJaqsu9maM+6LPt+0o=fLcMkdicD=
zzXDBGBoZJaL-3?7AhWPWt;Z{<CdUZ#5KGJP%@N=uTJ@nQQMC^k1yrk;E*kR+i2Vef
zALm4k#8sHikk<Sb*FQM&uG<douBfb7yLJUo`E#{9)`mm*gU5^+oR4-6T75~~6Ad*(
zraX5|SI0E)#D@&?Ap<83o?YD;aY`X)kr;zrlD|vt*OaM8kF835-BwoKKD?sbG-J+8
zdSX?_^;^N4uPNoZ+3O!OOM@YIw%O>)A6bUpwwBFrzN?bS9=*`PSneHh_2I(4=kmwH
zsgu2)38`DgKk{NIT-i0Q0!(3`<hho(FMI8C47y<xqrP<P*z$^T)Gz!}%Ycu@lLzes
zy67+LJ+gtk`&Nq~=a!X#n+gANo>IC2e22S2-b7G}cyxrm>U`g`WoIeo75t5y0#=X+
z4#q(u0VCU9K@qu;n4}O3aRD1ffSn}TyCSd<*<=>LkBMRhCPL`uCBrMD)v=%Qf!)aB
zVWKt$n;OGagSCr$z`ysR?{2GYFq&D`Z;X~reKgt9l6>@ed@7Nvg4y!gNqhgg{5GIs
z3_Xi|4a3nkWHEW5-LUSv-#xyuvU8X(r+sk&9@yXSRkHznXGWE-j!#pU%rS%wYJSc3
z6@T43aW7s6_33qxAT_5IWfKHigjjA%+(c`gjALL-Q&j|o(#H{aO|yvBly)g2DB9xQ
zCOVcO`{@Eu3=vg`jTF-YwbY~nI`!epu0FhFOL0eK#OpRFK|)V6tz$!enNep{XaOd&
zDux<HCZv#IYyTZvI-*u1Ro6<hAL#HkE+18Aa4RYdj2yzEl`58z>W5|nhM~>yJ>Fv|
z*P5!8SA*Qj`h+oF-qtj|y__A{pe|7YmIX`xupoDd#*k%nL%`fT$Pg&VVJwoVdK1q=
z27vr9t+B-e;gA!W0ECcMJX=j0vKtr~h!+4pLw8kUI`eq}C)|T+<e>tF>^Y)+pr{*O
zJQ?61L;8a-I73{*Pf$e&vK-M~F^iycT7gnE!Ny2-Zhd`jHf@cD?fLokaP*5}F$Eqh
z36Ydg3Hs3;x)+_i)9mxuimL4$veXdt;R~SkrH4V;F}Uc;Wr<gIHIf2%0>{0#1IPW0
zydx3~hoWeTBQM|X$j<{`U6^nmb2B=%x2>6`<%|xlfA4kRz85&|-27>(X4#*{KE5!p
z?OWjbcH6e^MEnxTS==<Pw69@-XARIIL{bd%3<Nn#z;=+F^hnN9tX-{Bs8GeXdbdi(
zo9V7I$I!9>4ZV`22CoP|Si+|%r&h`yM#s$z=P`gujIVF{9qQ~bPxs2s;U%19f5Mz-
z)_HdYnY*U%33$NDz`*;azCnN1JJmAYgu(%u_DPaH^!f*<XMuKl3i6)2`(Myuqj2{Z
zf3MCC8R%Z)X*HYM_tKScec#{Dn|DftIf2k0_{)jBY}Axi-4`_a@mDo*nVCp{3l=^u
zd%i<k(R^P*tv-rQ?mdWJTgU<Fm2!=i8~W~wInQ1-V#HO?&Y5<o=}O{`8r9l@;gD<N
ze8AtZ7dVclPG^+&P6$e9v;)0Lu(__^EVoLpl0o^DIk@`U_$q_zuX2ULM3<0w=H4)K
z(dwgnP`@@`S4MyBoc@ZP@D*yP73gqn0XWZ^Y$NIuDQkfQpLIXD{sO@vOX19ch0v3~
zkPTMjdp(cuwFT3YY3(y%mc%m%5z`4^ghtw6cF}3BZeWQJZa0EF3^Hz?@CXyQH==cJ
z<cVm{L*^pBBvb$|UP8F8WJlg3`FRiLS!~|Ca;*mdRUkDfr~)9Mt&N1OmcqjYx%cIm
zt?ul&#zU|#S*cp4sVwkYECq)Pa_-HsTD`fY8XvA`gU?uTMW22|)M~|-%srTEwfgeQ
zai&*WS?ISUIWF7kb}@3faRu0FlrxOnh_-Dv$tA$)w&ihLj>Y9-<#O}NGCH3wut&Th
zi$u;iguFbP%MK-S<JG9wsGw<u5!7Cd1Lj~l(*any`KrDVD~xguI$gFr0b|H=Hpw8|
z#(8P{2*Ld1oPxHmKSY%8MLXemHo?0<0ZW9jNoc=yfz^Ml&$htkyJ6b8`r2{hRxJV%
z@R8NeHVk#v0*O@-JCn5f{Z{7rGu7k_zE&2NuUfYKz{=&>0l&aUkUm8X@H;{@h#RQE
znA$OVVu4?13VUL_(HA3U`og>m_sVcN;-(UGp&lr>*Gl8M_4M_eI3b}@StrgV(#dmS
zSbO3`Uk}+K9RMO11UL?<WU>$cnDcTFH87SgCd#+dzUhfJ1@Rt&+mPVw;h7w-qXE)6
zvv4||omk8Xv2mt%%QMfQAD@9}&%|{&xMkf$Fb5L2Hxfj9AOv$JLW&f5W{c8vXbj03
zbI7C=tKpCZC!RM}15}Kn{GttP9J5TOsJNAkml`hP94{dl#QwsRkEJdfH>&Cz2*0Ts
zHSV&@9$p8(sUC>~<3?701J^waE*nTHr5;{azEZ2!t}I{oFfPJrSC(D&@MUEywcNPN
z=o16!Ca#}%)ZuSkO|?+ts2P}hpeSM6SJ>ed1QUrkFcX|Tjevk~j**KJT=j?>@WSSC
zT5HyXm(GE)xY&1v`7@MOT@j?}BDPD32#scdgA7I11qbrv2CGVuqxWtYWu>1g_`Z?n
zYsVAZRP;9j%PPRBK5=_3ALAR($dxMj1er{3lXuGBS6CFCa=FYdn;^^5s|DbbF7<<Y
zhaUgmJ%JRJ<6<_sjJ`Qykmns(U@elf;ZYmB3h+R|ca8XhwYNWUZRQ@pMQ~ro*YbQL
z$V*qmSGIp89A!evGs3ld(znv<2W9S$pD2w>K-!j}4CKp$084w|1zSKMPRxLLb1-CP
z0|^P2;E7SNIl=OrDUt~B0XP-7fqNmkmHp)&5VLUStgmY>-}O}teT+VieYI<A_1Cj@
zx<J#_moEEp*`-&5CiwQ-Z=;8q<V6_VGecfKLytcJ8k9#{*6!Q4w&kc2J$qt2edhJe
zVf5!gq0k_Z6Q%^;b!q?58JmKkg4YnT!*B=nD0PI)4jIqYX;<zS#KEuR2Qo@czF#Z(
z>-nBo3Cjq;4%G}^0bPvlf+D(p$Du&<5-GZhJQswu7fnt*?+8K|w8OLiO)Zd2A+!-~
zOd(ygecNL|1*(Da(6;ud?p&Fm9VP9-6a6~y1H6l(B^OKG5wvgEU=ODLiz?tMm3$5a
zGvz8>Nz1U-@<5=xby!OY8hft9D11qL;eNSa8W+JJXz!GzalrcLC7vJ}5kX%jK@cTG
z%%C6IjqMM?-k>dLLwG_y#aZCL2)wNr#WVRm7Ow9&fjR<N1nf5xVtP|JKP4;`kfP_B
zQ?;<SFNxBN0$wC2Gf1S}os*+T=L*m4BowECBicet2;c=OsILKLKm?JTaF+Z}Ab=L_
z>bVnD97eky2lLhz-r2JYTo;_z96;Tlf$M|wn2O-sAnL|t3fBrn4uh9Snd<}1^KsqJ
zz;yvZ_HR9_l>Afh+h?T81+PQ{Q4lWT>(a$y>LxD0d&bQX7p!LSsMm|ucL`b$`=|XS
z@PhLN7ci&S0HZDuH_>y~Ke`_O2S2Xs9KU}3_|A17*A72(&&Z1034<p@$2&&DM!STu
z`M5=Fjkz&6I6Abd`Q=q-M$NBZHm7Y21Ed}fFk^?$Synf9<e630oDid-CpR#kHcU2#
za%jiM6)Q%LTE2W#`iy>tw~QUyI59QF>@{g{P2iBwR@(%Enomm<TC>}-b2j?>p~b$e
z!sueq1fUe42bV+&v;0dA0sHKoff75E)9{HQvt|uRHEZl8q|IjF^>A-mPD}74aL*Fl
ziRt(RvB5VcfDU*#B7WuR<n_>f{q?CcV?fh!Of<Klr;i^;OBOP1s0}<yekm!U?PvaZ
z{5W%8p8~bv^X0%J_Tlko0ec^t!kl0(p0(PjnPjGdq^SiWO5}nC0MC#_0~o=sF^J=M
zF(M)^Ko-DIkQTr>(|#TZ=7r$o#!tSWp2blXPuda@ZB<aI!Nq76u*y*UtWU)NmZ{tg
zDm2Abi+vYeyb^t>^YKbns?YJMo*kSw%50^}xO<}koBF;&HLLR#f#t8aNgb(9wxYZg
zT`sj}gVyq}j1IzEXr~6f++YFb0=3HpnlFpU9D$-;lH=>q`>HIdY;umqs8q|FA8X<j
zGI{W1LK7MXz1B#}<BhP@srSlq(UJI{4Qitt7+Z}IW3CQ_>g}8fj+kZ8je}!+_S{Jt
zxlf<^{i`8^yhS60m>?+(gPHf&OL(36gEGOsUzFn{&$E57Q$9?$5}!5r>j_kzPJnrg
zo%bU&tguPw(HXe&ARRn0hC)P=pAsxJSPEgH>D&(!dBKvPBzc-ru&-m9uDktIvb`Hn
zq|#YT-O-d#kLs7l3%|Zvx>p1eW@^v$dfY+gy)%NYDpQ-pRdXm6_h$ib!Hws(5tuGZ
zk6NQ4;l<2K+KMJY^!)@NFaiI{=OxaF1@arOEkZhvDHt41<AR+_XAI#Tmvvk=2ez!=
zxPBO|-z{(Z;vZkM$#+v{70N6AwP*DG>t~ch-7fiNuo5J}%FXg!NTGNPtw*J3{bLG+
zZnyjy$Uqxpo{{fX-C)Sd%gZvXjo`msdX>C&+_+Y`O1}$erE{m}RafWj(ktbgckI|K
zSK>sC?ACqzZk3UOPrvcT)1)BLf)ng!gni6`QmGnh7&VfbPR*y*;K6x;PdMtoJQHk4
z5!EgdADA`}>rOjB2YVom3zEZ#UIchuI3e*w4;vV}Xd*qVWljtJk23W$=6EbV3Q4cG
zl$;hM=PW+P=83h*fAG3+Laz^uT{JP31m~pp@T{2CE5K5V{06#9NTaFK6e%YmN8%Ch
zEX95$A-H;jgnba`@e!Cj0v{k4L6MEg3Lv<@5hf6#WFfkAGWbH638aN4N@O(BF;V)J
z-ZU0@^Q=LZNkBGaJ!7=cGN0ZrV}qNv%zmhQR?MORG{X$Psi6JC#aDNB&d|e=K!J{%
zob<ogd?y^^U0*bRF}-@!O4R7F@#uiY=5ZNIPjr7&8i3}|+$p=8Y9utED;}G_;nR*V
z1fWZr`cdvNvA=T$ZG85AGKYuKYptBp;~6|mxGFQndmtUe%%6mVbUdNw^&~|Gv^4Q=
z6BKn1^x&|E2l6gdzy52b-azj!ZW;bam^t?G=OEXIs<IKq%$eDM-nWimcrBQ1^s!6n
zE*qv@XMw|@MC(Jhyz)GV1IGs^(Lr!6I+EhiVt5lBO7)^~Xe}&)3Xl)%TC2@~W{a{B
znP@knp)8aG^EiSZdf<x_31Y&`(ztJOOh9l8#76-g<$bJRDMG*<jG~G#XNsDLy0^HA
zA9sTQX5r{)B5E>6FYLwKlUJ!rXhumZPj4(&)S~YpNC3?pI@|IgTOR^!;J};%aL=Ij
zHG2WrQ538UjcGEOn-^`o6<$-ES6t8(*MQz+o$1F1eebfGo0BaiKMUPSijUA6*e;W2
z$rCF<D6Sel5jBr*TH!<xZb+?z8@2Z3lV=Sv`;D$FkK#HnSUF=}qt$CPd4N@VOFVU`
z%hXIie@3_%EA&lEf7=jiiCij5)nZP69G(egQ;Vt9)L!Z->J{n}>J(4_D{j+D&<w_b
zHQ;Kp3!QP!ftkY~)F&iRZ;tC>$fSpyu%{jq_SHZ%<}*f(6);A8OB<sxb2LF4b3v>E
z7^9&`G!ZW;1m0X6iADV-{X%_z#O!0lxfsXd>5$j#4S9otGzCwy#gUkx+FEQjnv9%-
z_>1>R0#PE#@^Yg0V|>+;Xv7JGlhGU{P)r#%y9VGp2T6uGA@2MN`{<Y*CC?uhHhGD+
zWFNi^c?IG~J7eWV@<QZJ(Q|jfS23kCL!wEMaNP@UdR~QeW+spG`pA|K*$prVo0AE`
z7$=BuH5el86#NCg&y?g%v!A_U#E2`7%(*GKY4Vgi*G-(Te*J`rlQvG7yeWCpoFgRf
z+1WS2nVgQJoeV3Hu(X6>rI4lxD2nh00UqpUOeS7$GU<76S0&p7wwf?~!|P9*{bsX&
zE76%G<;b2pV4zS5g40J_PHUD%?Y3xKE|1IUaUF0vbvEK?#G!e#P;IuF4N8;8<|<TK
z+*X6i>T!BDN>wVpsL17T6dGqbgCUp4q}Cg~+)V!_v(n{q%B3=yKIC!oYQ0WxHtTt<
z+TidUb-6TlXDH-!sJEDvPA4fQUGH>iN<$%sQ{6^1h9RLyAwx5e#Dpg#Pd$6!0AlVR
zjhkvVX_nFRK^3SRIUOBC?@pf%@<9HY`RE1o!aP!9&TL$w?>J5C3@VjDqf((VNXuD3
zT0zC;1ua%RZyB5A76Vqlm7JV_5uO5y?L(Aq$ur=G7>)BR7K3){Fu#8o`876Z4dLpr
z!Qz!bMy^p<)E0w>1a)e&&Z4$*rYd`Ow!JE{J?zd3@g|K&nH9qITYQXz!4<U@6|e*?
zN{jaD%%xUmvafDjJ=l<4nQfrS7b7hKg{L5Y<eNi5ml`mi44eu?|MbFKAjh)-+4-xd
z#!}O$d3YwcjJk@tS@3d55Mc#}-v%MT5<_@h#yLEjmLbQ_4JpA<sEBbbj4DBvoL2OS
zWd;S%seux*o^$j<K=4G*C&=ha|3FmGydt-Y{X%L8%KXksovzB^mwa8z8){CCoH2aL
zl;-?OS6v;b%}zLtcB9kc%`VHU^cMuAyu(yv&dD1btp%n)c5zKjL2fV{Zk|1>IfwbF
zZXbFP-HQweNj$b--vje@&6~Fi!0QHgjvu`J?Wa~OUAp2au(f?|OLghgIvMb^CVrMC
zT3Zv`&xuy}Q`BR7-|kkG%v{nu2|X5!jt8y(3g;Q*dbQSQ&kH2NzHF^ZqBI%odEwfs
z?AAbCq^Kd-YM8lWX6i|(36I;c;hLf#e39IAo)nBZaRS{ZEA1?8E<=x9qiriJL62>L
z{xizbwzg8{dweA1xW50}K}?aWF(2x{^mq_+qr<5Q)KThhcm`*I4ER9}m_|{2Gz1c4
zGRE^-z#KD|km)xP5KllnvC$B5>dyH>MqkLs`FOm_Ma>CdP&3{jo)AMECiKk-T+Qgy
zMUCRc`i;1BcwsaPb3G>e6A`i(<AU)_qRwXwk^jO}NY-8<#`W{KLI(bMjQDetA1Bx#
z;kvk|k%dCUNl%c6Hb^)ZaAFRhbPe(-5kW*Jq?N=AXd%%|c7+B!CP8o$J1{}KD-cno
zjYNiTin~C<D9PkW1bIX{&jn~*ra8Q^5}fJ{su=<MA|bR+Y{mF|Sl8Ti=l1QOYWlO`
zQ6sZ~C#PdXF8Yid!RzDm`b_nc%O-EOZnZXD+I7ji(XDWgLg%oAEZMSk?IX`pfNAe|
zYa#mJ`0+hA-pIZy_N_(Mg!Mgsu>m^ea$q*sW{;LxORazRK5@u;*nDbG_@JdYbxm&W
z%cgtV#BR7U>Utz$MlZTc-!V6S7LTAi!PrE}F=K`ML8+91x-$1Ym8pD-$*Qljcn8(p
zTvU!ew;FA_I)Is0v%abJree&O{PnN9Z@dwGSr31jwQil)TO9G0gg376`-+QwUs-A|
zyUb$^<OZy<@P_67^5Hj5T)o+LxpmlvEj3(@#;w#z?0)COsSBqsp~oypT|RtxaU$M!
z$?;0hps=$FeCw<XE+|Cbyo>)TD}e@`1>mWtQtujE1{DXvgw9T&89%<S6lltDz0^CO
zB!&-9zynoP1qFqL(}8-7S*ZlDs;ayktj@!KCj2*bYF^%BU@Iw^>NKVQ%FEH^6&2%E
zv!*lBu@=i2b66(xI^+2s<8+{LfqN`C?s3IrK8;DvO#>R>OkIlaT8i%q??vALP3qDy
z<yNhn3;IJjWmc^WNCN7azH+Nd30OtIMG_5+1lFT(Uw^%_a?4c}cy^WRoP03+C;T<3
zBS*;iRP>Ke1?IYZcwCO8E}^zi`=|%0!_*(r-l)?1M7T@)IKmMS#D{_D0_X@wO9<u&
z(PtB+WGo*Sk_T9C<1;Qn3B@%aBtVsr-fI>!65uyq$spF?V<kd)PJlZ}5Yuq+0ZkXq
z!|>B+!0C$w906K~nN=NB=uI{Ym=g6n{Ur7DJ+0L}Jgfs!Ns9sMfl{wE(PO58ST;#f
z)Aq(8GY6GBD)o$N5D%W0vaJekULLC(#!5r^phJbD)LF2uwR)dHxJZYR`Q=4ygUChj
zdO$AnfvQ;{6s_mssiABRo=KpB5Bs?#=h4;61I1a6K-9A`#|7pq7~{SEh!Edi5#!Mu
ziJZSgDyQMpzX4Vv_k<S=t!T0slrk+a%4PDsyR<SEF4@d<OI32vU7D_<y7ZS-fR@pM
zgFvl7U67UWfcKg3?abh#^Oj<=$I`zRYp4h{1h2#ss0Gxe)Ya52;yR2MR6_l-zPPXo
z3+rxr+2zuR+=P}53d?RH4idhYhK{DqC`E-XR#<@X<g1GkTuEM7!38VVP#R4#agKo(
zG9>Bx0{I&ZMSp?GDXB8@9<$!*C<9MiB8fy#eNo@&&kB~;>l->+3ySI*Lhd4Ghg(0S
zYeZ2LGh1C7^aZ-=yx`ER!YpMDxKg9aDwNAN?Xs0>3wP~;m*j^B*T$rqclonMMypU>
zL483%J^gS|WOCP{n#8=B722}Fxdt=)Gd!P5S~V!(lbvvlnf7T#omFL0+dSP_!BA6q
zokeZdx~=-f*@0}}TeQ`<L^}I_M)_Te<y_<?>(z9Ys}yB}h#Nfw{_^4KvXaum)Eet<
zMQI&)k=(fueZIJ+cJq>CWg<M=&GUt7_{e!5j;7R@C;nDK3FDj~E9uRofyjPvh>es8
zW0|Znz(in52pU_Q_@}C7h#QH_<`Z7L%tX~*VygPGr3BUPdUq!PlvZ0YI%_r)l>+(C
z56kV+Q8@54AL$rZ75eNsX=!_@bnSC7a0kwT2hrYFOIqgb+Bxr`tkD%(?a<khTDe_z
z>OLuyci{rJXL)lb-f-WySMLF=gEtWUdIPWDFbT}Z1w?zcbMIlobVM8373zQZs0^fC
zGipKq+a)|fI-w`l1HbxWjQA=;Q$NuQa~|I^>88#irZ@AVJK+xpsuop&hEc!zq7SEE
z4tx%O9=EJ!+JY!bqFV9AH#`HhQ_)`Lp03~e;{6!MY_ea@l^~i!#CM@Eh3Z7Kr(cT$
z4;~sG3CCvq3W@{7m+=9S5chH1#M29;E)LT)Fq}F8dW$$YdO^<7i}dO)(Sd^?a0Ia?
zO<Ne$hTAkvAg0#$KtYs~5~}`(F#YdkG6-cmak#H#<f>&O>8FI-+#M(>3EZt8fMuK~
zXgU&I1OhokiI6U|lTc3Hs)5>48L=AtPdX^fx}i%~mA#3+1lrfVBWHJ%YL{y_4Y}r#
zC$~3VBa^I<$oqaxM+F>R7-`GJ<L0f`fmUYE9+JOMt8L0Hesag|mx^+lIGK#j{WUF?
zfpT~?@zW~21KGq7Z1Y*7Y~mGXw)EDoUO=0y5j}C5O?bs5WpSt0QXa4Hu4IlRa2f)h
z;sCgEihg7M<eJsfs^(Aa>KP47n%7)2Ou}<h3LR|8zR9;gviWaY#$FMG3Ls;bvr-nW
zWUX0_@^SS=Xg_*CqX~cV5rs{fEd@|M>&zCxkDuV54~zr%z*7rWS1mX&wR`oJS9FUG
zPK!bi^F->${qDhAf&7-iwS1{WsbCeUn=O`*4ah=O%iA#ZKQYrp*U6xwSgBOWMs|`*
zf>Pi(x*Cn^*V_{I^?YPck1}bAO^`tYh&-Qo1Ytuw@rs!i+7o{lG7thrN#l{pAJ37?
z|0uV~=ceuo#9lv3)g}XQ!dx+J&PS8_UV^o~sa^?n1pPGWqd7S7k8+`GvKCOU$Aq#%
z+MJIkpRN_k_NMj7kRXT5PW$NKsLWnFhzpJzOq7pk+7eylL^UHB-ZVEK9ojN=)w;(g
z!gUpWPlvXS1PuD&FKeD#TFy0=R%^1=*1G0db0pNHrkZi7tJh38ygoS!HpI{T*s{Ph
z_)qBjNq4-loQ;IMf%-`me$9FE(ENThJprLQB4B8W5SK72#31Q5f|trPV6hAGMxui$
zV#jg<gxAF*gp(nfW}g0kB1a=?Q!%k~GR0p;IO-IY-yU?ha($Mt$>j967v#75T}E@r
z;>&e8g6*ARrdNpMr_1CQwELYVQ<#+bWfdV8*XeGrC4Ldaf3@x1XQ&~iv0=Q!>)?Z(
z@IOY9M5yDiTkIyambcm*POFvIs!ce-A*2c+P}?i!I&5O@1qE$ZyQ#Om8}y>u%&(i)
zwvHSYbLLsH+~vU=TmEB29P@&_iY0Wo$4I<DV749qq}0z8o(=$YDhYaFEe@VeGE`p@
z;=Y&a?e~q+E3AWByb@BF{1?1F;aM%pdx#$p{QVg{O+oKG^vSL7i1W=m&(Q431^ZLf
zJ9yrKm#02lurf0XrKnrcC-dMPG=(R)^PbI}c{Z|Skda1)TSypT#Q2UZ8N%~&R7krj
zwG|JPPf=Gd97+P<?NwTx5j>{Wi|=p(wHkFosZ1fUOh}*hx5QD*SgMOqk_5My5p{+o
zA>v)RAGAcY5y5L06xE@L6BH3`TOxqE5-F$81<hPABoLCUQZ9Fu_yb_jv7Hrj+gc)J
zu3|-2#kiFnT@TLs)2)w;D7BB$IKd`#_J$v>7<>IIbH`pcdu(|{PPwh?$`MP0H63He
zHJ2*rhZePsE&@uEi`igvn4626=vs--nQd3eCw#Nx_ksA7_VvRrcZ`@jF1+Z`uAZ-^
z)Wr69{b0{+0PL9i+U|+L>S;4BU%Dgy>eTj}$}G1zzhZ8aR(HvMhBoIY?D_2UVk0ot
zpSKo_6=e2A_b^nF*}n3bFex1p@kk5;@-1HYOoHMnOWMe66zBd#KXkD$%(>`AaO(Gb
z=JSVT3@rA?b-=(+3duc#qU~#;cIpggIARAQE2cJ?%R+;OCr8eFVjj&*dT`;>lMIT=
zoF(Iz?%6-5`_clb&y?*?l(yu|-!tbtKL#fssF$k(4yaN<f1yU>9~_rE4NKcOZPz%b
zRO86DvE@zI74Dq1Vn}iKQ!~JVCl+5~w=8TQ^5C+$_sm~moKilatTAN28h&!V!2_L^
z@roFtQR;lpyMD5<?;$EooCinsT0DahLkBJHB_2EtGRd?at9YUXtyr{f#no4@02}8#
zd(}H+ZA(#^RgNYhXgOCQbLvFjqc_m^og=OScV9ps46rAp1hjn00>rz+^wR*QU#%ar
zzWw)^)qij1(ev&IQ2Npt8shr%9!8k|iHZk45$j6}rj7_I7yiyQL=+;?lCcqrVlp3i
zIFp$XK>3O7f#460&<$C53dtfq$`T>6jFNtXQwYx{xTlTc(H}~O2;f>Y0#Bot!#>NA
zx*?m79NE0|;X9w!mx09~3uR58Yh>9Yn=7jx)W}U5qfh_fq$5BID$yyl9i1B9REPHI
zJujL2?m3K30q*dUnO6#`l^_Wo8~vfE80j$p#e|uML9!|9jQa@s`N;KOjjp*7Bsb6A
z`67@Wv7kP4iCW<V%#@9rj{xDi_)1eBsF{XxZTsH`99ROl#FN32V3LUD9jH5Rpj|a5
z^qgFRr$=2NPv$dVRJ25p1;g|F2>UL?x6+jm$tN)vGxHhwFeA!tokLikxo@7?#|~kG
zE+*&-{?lPdB@GUT0VWOLASs-p@F8iPEqesm!5CnFL^jt96a(bHPzjP|r_+p*u7U!1
zN!Z~CJ5m!;cO_%PhQ*TN5l-k{1YT}iURk-k4VBLl)`cr@-}@P_3k3vQfD(ti@a-@U
zE#g>3Jp=_xFeC7Yf-H}TA(Amb7z0s>68C|SIDb?Cf#CEL=pa0ouun$(sd|4T;)l=q
zfz;fWL&Eem<IsB#Jc5orWTyX268bJ32SN{Q{`SE+U}?m^Nw?{J^w!-!qWROGCAph%
z92DR41K2tJh(7}V-V}{CMaPU874i8a*WU9GdiRk`c=kizfX%+h=+Sqhw?5be<i{g^
zAqI*+*o1yO9wBxWinA2+L;Bm=asOW?V2aabeGK!4f~|A`el>!nWF`=M5?XLhO@vou
zU6Igfkycz+Lab5z;zoswNkjzrBoUGvj}s$K4u&MYwCgoY<eAb7kFZ^F&QMrX73WRn
zYE}>%(nLudifI0jKD=bvUBNPRjf)O=l{r52=007PrgGJ=BHl23_GYizoTUnu)jJK*
z+pHC*ZvFc$d+>KEMSoZtP%3j9$Byf8YB`Hm!#EnNvTDZ%Xy!_p)B{JvJMQ(ANLx#l
z&WD`2@g<`tJ62aYv+wL^+w{ByN(!<Ys)q*#ckHVg9#l`huW!$y?w#*3m!qeQ;Dv_L
zzV3Eujumnoy=592FK5A&_kDdo_zzrTQ(M}y+NagV(XH7v*YCgYUI258TJ*&+1?%#b
zICzGEJnwhdOqPNx2Dz8Ilu9T+3ORLb=-v@tPpxu}PU-z{d}8KWTeGWrwFVrW+deb(
zj839mf64VThfEu~05xf<Cr_%~h5DYmB&Q6h&iVTz>z|E^3pnu<hz?xLeCgGXEOdeY
zm=h0>%_kTNda?+Jyzm8ye-9Jm$s%Cy)quw|EUkM>eecFQ4nKX(jrXWtXRD%RHF8@#
zGzI?osQR8v`WsAjgrvtp#R;&`oiEWi;F#2{scT2GR-Gi@<;s`n&5}H@74UG{Sk|Ir
z3tYWFQ&4-`<Ntc~`OhEhscl-dtY}Ds|LO}9TAq08)hek{4{K@|jY?Yi$~$krQYBTZ
zSx;6SqgKl*U#4F_O{T5Py25thc5zY_qQ+wyAU!z1qoXj=1&_mOkXh_Ao*m<v2z^5E
zE!oqJz7_(QVSjt;$t@tc<>XdWMB+FRXuEra0DT?O3T3|T?m3erAr`acTTcET=Ds_y
zi6i@eXNy+77h9HP$+9F@xyX`igJs#6Vr;;eX1eL7n@)g$=p;ZwPk=zU5K;&!<eT0w
zxl2L{9LYfr5|TK%H13jIzPU>dY-#w-%u2RwxZHj3`~Bkw*6!@=?Ci|!%$qlF-upaI
z6WM{D(kdBY5l<ayVOj(m5H`UEBuF%PsGi!foPbr$#{sKRT>RFpuAIJ3MICZ4hPU2>
zqe)9idMC+ZL5CD*tn_WHwpgmy`6>+o#JW#NvKahEOVT97-3JWxpei4{=Bq-%w2D){
zs?}SXI?gw3+0w)oG;N`uTZnVP2iWebEH19}wHu9J<G8Oo&r1*ZDl2_(y20>Fb|rnN
z>*+0tz6)tIHDfJ8dkV1Q|B{>R3U|Ygc3%Yn_zD~VUjYHIhMskNX(Y7t`0=Go>(b-k
zb=n=d2XX%tD5D?hia(CKgQ*jbaS%0vnnX2IbE$>Ya<mHEK;1#@r1nwwQAel;sfVfK
z)RWW;)XUUs)M@Hn0qd9{7NJaR7t}7oKY^|>#Nd_@&<}LQI7%0zZFWEY39u77f}@L$
zsA3L)?f?>N3TWIS9@tGzlqZG(<sAVAm_R^h2Y$|rRyZajV-Elo@cMY8MvosdX#yG(
z$OpV8;1)R@oXH@eoo)@sdx1%pPorMLxZD!j$LJh7z*hj`j!p(lelca%pJkHurx|-v
zvKqE%iZyV7#%xMwPwSJJbNb{I{aYaYeKy@>)`D$nzZ%@7#dm*ivhgqLk|S=g5gxxA
z9tX|Z?8sO^pI5!|vO-Ni0$068XTxvRx%88O4QZ^#2)tAQmZ>Y@2rx(-Y2m;~xRpht
zWLF5jd+7AhM_3?!%(@?BefAl9_LPWOrjG8u2>*z_XJ&Ne7VvfU2;lr-0|SiWOPm<i
z0)M3SDEh~i7p%+tJ<U9}b`VFeHKeidK8Zw+PEU%(rgW`dueT?O<zNV#rk6;-R4z@A
z(tt+5f(#XyEfpu(4d|aeNhF5{fZeE2!dKX|$XPHM9#%6JRwCu#y`s0k*w@80XgzaA
z-7#FmRS%g7r0{GA?yvwqe3Vt8)F(w8SY8DxANu6glVZjPXrNY{1PU2^`w%Gm?o%<m
zHt=m)-u8J8d;^{aUe$K^<tMpdO9zb_!hqTfEC(zsgfD_$K7(IJ?tou`lt2BcADAg+
z(Pz$#-q*kg@)Cmok1_8k()~LJ1Nznpig?ejr@sbG&##aCef{(7`KLl2Xz_$9^O(l<
zr@-{~stvEbwjtvg@F>PGhk8#Rf!?e~<L!1zN<4dGc??T2m~laT3y0WVbb%I`KubA=
z3l1a2`Kf@2H!=^w-@^1|`m><vd;^#|zCT<UePjOkU<>VsM;Fl=FeOt7ufWi<8O-lb
zKe74XTrluGLwzMT>o%AQPmdmT9!xrWXXTg$(bI6{fH7blUDnYXOr`Zp$IVy{gYaXe
zzNm7z=`5(7ckhNLW3)j`vHu{tznGHi1TQ~iha?B+{D{r=du>>`lZnSOc%h3J8NoRn
zPrO5!{3d?d!S$=poc?0Zo-a<H39sS~wgLL;fdf|o4gY)XxkIZSd!udNzP2|WTQ&2x
zr^dW<;>1sZKkT{p)2EIsT=o8v_m7=;hh5$wE*-mP&)8D-+L~FjIvy&mWTJz&Zyy|C
za&jGW=A<)Q*?SIFMTU8crqAXCKKdA%o5yzATa5dk%b{<&?gCg%Kw2TR#R|A9R{eOr
zl^o!gR{b;_MhAH1)?seTcMo-BJoMe_nbO}Zm_9fUWWTyMvRk?N#4-94gVkz?I&eZ-
zhmX<k@ew?Zk8l_X&m!S{==jh>-+lMc;x~%Y-3xxx=lMVHj_j=}v42cqZAt1zP$byS
z2!7fO#8aD{_-f0e3Mn5|N|jTUR9~tF(dD6tGLNRlBkDYZnoZ587E#Nnm54%bL=<{E
zqS1S){nRn)A{r4`^y4H)pWT41*GxTs0TZA2!!C&ue*oix{mKvD_ZkBK<gN+pvl#eW
z{G4$Pi-6x)X}_S3=IGR?10t7z^=~wJ10E3;UW=&6wWyf8ul)?Ymp<BlW~ej%uR=9b
zm4<#+a&A@)nW>t&9Q|&Kog<YCfqoG%ECTw4<S!QPc)_{ofu8X{4qnumu`{}5?F%og
zUHAO+@Upvib#HgeBr}uNXJTrg#1W_;63EIlq}QkrH=ZG}D$PcDYQSd~QSCe66QH4z
zIUJb`KjJdqej9$cXwja8zq`}(?aFjdI{qo_p7eB&J%55H-GhJQ^V2=-`x!m{!4pFk
zb&pvzB%@oN=+E)|I-#`S_KYkE2Xux)Z$-A$n49Lw=YdRbND>)MWkAKq7!fTs<;DFA
zEJEXNJHdO%?y-iwm2qCojVxv~Cf?t6_;4Eo54YWae;a74$h&qauc9IkJeeD!e+uP-
zC-W-67JTn8PS~>GFk908N^V6(E?13@zxfS1#`w@oM87Vh^B6?ExH#Mq-?cwa1kD&9
zkQKZ{P>B#pG0g#=u*nfuWfvasbNc|h=Yx+9k2tVmVe^cI%kLd_;J4@RpL%HoXS0Zv
zhThZQ&ucb*z8R#PTYmBI&W)RnjhVi2?L_MgjXq8D$NS4>mluguhU8vPO*jSFQs%|?
z-q>~M{lK{88#XQ<7kGaEp_gjQ*;JiDndEDnv-rbJXMuXu)`uV2I%?&#iD9QzuN|zv
z|GYETX;A4>`qXs1=1f(^cv<X!9NQA)V2miD!a#gdrUIfW)(a4j5sXC=$FgT*XC3jd
zK>P}zj}RwyK@ec#G8HR}m*FgS(2J!O#D^~lM86hv$OTpMcWucX-vORWV(!IBB9z%>
zbkZl^6T~L!WR;BN0ejNyV!G#o1JOjqa;6nhNls=3pPD397hsG&v(j75G657+Xw!^N
z-qnR`kLxYy;|~*hn<}nGPduQRfUzh5{?j^hl&e^`8@+ZnVls7r!qC`MboYN;Yuzs3
z#5dr_yL2e$8<Y;`m;OJmyWmGd;NP(~PC2nPL$`Di#_rbHCA8gXX9z>@6t>KXXAg{1
zU@y8r&xaSlRWLr<?~eCiJ8Wa3DCX73>-6#W;1BeCFb1~4b}$-*m9#n%(w1o>AvLW8
zVXd7F+Zif4gWeyBFf8%65&4GRPXZu39a7qSO@z|xSxS?yr73L3i7Lr|kLIEp>K?@D
zQydn{^KJq~{p*K-U>y5T56;9y8U}BhYrNRar~yNOVjm5RrYrTodL=M8IUk;8cpdu4
z;W5L8Y5m$^!%+C29&n;xyFaWwFCkUv1C8E#GAwKZg-=@bnh$h|IsNMEKnP$HABg&k
zkfH9M{eI={ZTN0OgHG2F0!~n7E|->p9Bdp8FP2Hm&G1e5u@>EI_|;5UvjDjnAAelj
zmrEaNDMi_Js3mnO0Afxc(__9M1vico?0_0;XE7)s77U|1#~u@KdoiIEh%LrvF%}V!
z7C?Ypjl7q)GIXe^2{%Nz2~adG9ocUZZ{a8P8!07vx-#^~$T@{fqctfqJUXdDCYLFs
zI!}heq}9k2oSc!7RN#SKw?+2dwo8)g8R{GJp^<+515MuyTds9Z?>W|7TSi~a2e0!f
zA2w8s&Q^oga0r`7g~D_ZON(_htrOF%R>JT+YZsfvdS1@5$&U2o<a9?e%gT8@inOyl
z&qyLiZ@cr(+sYT-F>jLjN+=}PXO@&^2X|yUgF$EZj$n3aN#@WYpWD|QxjVLR5Jj}C
z4son4*xE%&W2*`m*(f0*P)CB`+tq0kZlz6jFP4M`$X+|{?lGYRV%1G}uL*Im0lVNL
zorv2rf&V5MyErPZUib2h-+Zr@4;j+GX`VCX2GzGy3|?24wDMVE4i+A~X-aM?O)VPn
zsnx}?uB514-*2HVWg5QuUyIi7xci-J7ZyEbf^RzXTFvhK+zqe1!i9nOmF_Zk@b?*~
zw$$;mFOSTBtN-l!FW05G<C5`|ym^S!r4*$a!+BPd)iQIT4!zdwI#H2gz8vk?IX}&o
zhE{Y~@cv3qaeK_a5f|p#5RW?q&xCfplD2th0Z+q-m28wOZ)LG3bONkFOc)tKR+Xr6
z(y5mhn=!cX%CkSi_MgwLtXjOhzd4uX(#&N|rI{+g6ii-s>cXjYlM5K2$}DXvGpBKE
zuDSp6#Z@ruGKT~cC)9eiJ`ncRHW6P}71PSo(#oe*6b|t_<R~kYp)@7Qq-JGl4y#^o
z%}A58$|O^Y6y=2SlRNxFm?0256blRc5%}k;tp$$=KC$RdpEW5&d&-U>`~(b3w;g@|
z6d?F=(V2_@&3PD@R>aHDjDU9&>@kc;+7x840G$GboRnpvJGI5y=nhT|78o5|zt=?R
zMnk%2SBaK(&wzK&7dv!$vbDbxIdapv#c=ct*cMznzdj?Qe*W5E8>A_bgkhtPXtneh
zTAN}3$<b+gvsn+mYH@%QI}d)M(bHTOY@naen^O$1;NZ?H*K%q?85yCPoNJheqi;}b
zn2QkG8VcwsUgM4T>P|sjC*H2c18CxXmepq9y(08u!|?Luwl2^ZA-L~vYvr=7pKm-4
zvY&`hLXX3HKTPW<@I};@5|Rq)M6CJ=pgp+h>s>0{F8F7yu$zOQO56v<wt(GzLK1Jt
zbh?Ko8^9(I1H$nNWuw$wtJy_f0N1S^d+_3)FCH9=PD|ds53GhAL|8c^UNm@}Lth&T
zYD*%x_P%$Q2&wTytHElLO?$YjE}gn4ET+xng6*8vfSS<oD^2KgQAFbmQ5>wYW5ra1
zP!e7gFEkU}c@j0MfY?A@D+DjY%O`gps}SileGTH=*6&(##i`{Qov0%EU{@vB-wl9&
zc^J3yhJ;5+a6=O4|H;F^FrewAIz>Ng-MU%&6!poDD+yI1{ejFiRn$Pd=Nwabk5>bO
z$Nh`?;V$B*FcEO#@g1)eOJSS&_}5r{tNQKz+d8=#*xp@wrIEU^NvVx)PWU#cv!Jg-
zy3D2<hu^++1yLu`9DEPtn3PrhpjO$@l=!viPTSJi7(L`asT=-w0XN?XIc(@AZI4d|
zflj1izpZ;CaR0gy&_`ZfJWXPj7D$0)=6rGo5g{ACxpCIW*o`rzhrzDH|6wcPZt(VD
z-+U<$=ZaILi&{33J|8dF><O_OQ%Y8^zNr<l?1#qsPF$2Kp@LK`)j)P;jI`)hq{IGC
zhzRZ>Xx21RXp(e`)Jzd!NL*y%1sW`q(|{rrM)N0OOGHq<_HX+VC<df@kQ)tfpFQ{3
zW9QBScVstWU0N5-IB;ObA~Lhm*Y8-i><&8gBCf@Y<OcKCgYbtZ)ZIwY%>?Nj$kQ1X
zEi&lfAENK92Xof1hkM{JrN_Q#d$?3+a>S6csv$#EFalz<q4eRlFOHRBz75<E@wmVB
zqw1*%)SO%OImAATC|;D|_Amiq>U4JMVRrAFrr3Z2#e`8Y1%Xp<G@(|b0(iFz(M1Xy
z7LrbE1)^>}t**kD27h|~19-I0lJmRk#gaR}*u3=P(WL(*rt6jd+%6IcDfWSn&|f6{
z=`jW<-}Qa688sx+iW(3_z@JbA+mzVXCjJn94o1wWADt4-IQr?b&41pj62@RCG1b6{
zl0_&E9?`p!+aD%}M<S+F>j$91xqKJA9^nxegkmgdAHdTn2DPCmwy!Y|wc$9b`B&Ny
z^_hQ*FcEhnLQ|5yM_9dpOO1P9XP;A}E*I|6gf{q(XFq#s$<~|3?7{1|o05UzrM8!L
zJ@IyIR8nCK6@aR<WZHoP)0Vu*lnR}XTy`I)sO_GCk(BgRgH<;VR?Ukb{ehQ(Dm8u8
zBr+PmiFHFTA9ugfhe7MZrIF6A2SX2+cGDf|MUdkY=S;p+S(5KQdj`5RCjaR?dU2aX
z;z2}c+u-i=>EIJW{E3UdKCgbbO=?C7CEJH|pI--`5aLf<{3r7)eS;<QY$@^QXrv5!
znkC!1T7SUT^^ti2)JdpDyq;a%f{xXP4qpcDC*X(2H-5fVhA9i#{5&#FD8xHxE%=U5
zpK-#C>s_^BRwcm~KY1Abd6!PL>+4Mif%XZt@Y#-y6P|fnr+Zt-XxuS!qa)mX9zrWR
zKFqF;*M*><3#CpVmm&)5@d@0P(d6~TH$m-jFsk^s;pggf@FPizBu^@R5q=b-@&BZZ
z!1bb3nuij1gu1Fk&qWo69|<>J6sRDYhn@i0o$Vt;z9_sU^8HQoD)}~8J|ysvoj`CD
zUJ)Rcx04OP>>?=%dO_^tNBM--B@ANpKB5yo70*<$UJ`w`$2$>$4YL?e7=yRRm{F>;
zJ7X;`3SRHzBR6;TR&)Xhb0+QUibp3Z0f#Lk!Pln78^DUM-T+Z0!~nxyO($^NV~(OC
z2fXbq>sR^JD=HRkIeO+y)Q;o0aFL_^xTA<3_U)dM67YM;kzJ2{8+{zz80jdYV(;QG
zeXGMeVR&7@8i~`<beCHx!p2ePrP@H3*j>;CXNl010GkWDwjQQ-!-+R%90uy+u7;&2
zW>jxVm1fAS#_S@eQliQk!`qtc%c~p5gaQ*P3R4sxKXnHFJvlYmYNS=(Avs3ou{o#i
zYA)Ugk2Jk-eC?o6iF<d>l$?f|B2IcJZQNI2jJ2|P*sh_$s`g;Tu%eO8OJ?Rjei}yK
z%55mfkyyqss)pHf<8tX0sO>hP^+XUOmQVsR3DG?#>+FEwj?7535do<X!5KmkOd`%L
zA24d;Fk~3-PDhlFnD@+&a<oQ0FTZr-<Q;Vb0MkFoB1+<QDzUhzFPC0jGEpv7wXC`N
z$keHiT!rYge8^9S5m^VOca|@I2VUL(+v9NJmO0Dcp^F+NoYbD<_675HwagwR9^1#r
zC=B{7yrD+Qi)%u@0v-;DWr9v?-aU48P%}3jX9CZ`tM4qIunFva`Vae2&cv@v41Y|(
z3(^r8u^Y7lTCoJ|KD!3}I!%=l!rD%p5#o=A{IH5Ig?}PjNqtF4eS1>Eh46RpbqecJ
z<6oG7(%egKu(o)J7E(rSSYSv~UB}LSM}ozjgDqz$n@f#x1wo93P0%8V&ja?j_6Tus
zZiow$IB$FfgEdmIXS|8<_0KUnKOF*13Y|^?kLVPw3LQLxFF+Hyh}!Ck0aZN%i-vfE
z&EIcYxlTXio~Q2_qStL0@mX;l9gYF~!~1W3TF5urT3q)-(Ve&XrY)H|u}`L^9R1TY
z)fLBeqWOQ2`gy653H8H0Q3V9F3;_$!S6o4c7)DzqG97%x{gvYh+(KeSjW$wE!hChr
z^V#bX$rg!1DY<@KqEw(D4)lnL8lH7JhZ#)WDtrJ8JfPQEQY~g@XMLle{qsz^VxD#S
zea>M_SLIi%(1=nzcE2-0FIG#L3H>6hlAxy_`-JhXXYbUc0h9>M?>DG+M97H{hz{+$
zuy5Z5Zsh0pM?>fmBcX)=Ci4XA3>xv>eWCk5N8xZ6mM*4aMxy1ycnx;mZm>&mUw7Mm
zUWTZ==+Laz+6sRNfEqXr9z_4AftmpPp|urIpbuC9`ao*VB@qQft>M;4D}zs<HHxZ*
zrmHx85#EF68V9D&ET+$hry-xJLU5~{;nl`Hi=uk7nD6g+=Av3{>}WHp)fb=XKz!Mc
z#EBEi8PWQeH%7wiUf|wQWoD}0;a*tBgg3t2-b#Enf%6#NsS|H5;oUicG~(9prxV^!
z{mZg^A^0o}McWuCxHJu6E0kLnOK|lHUdP3XCSJt%YVJgIXesf(Vj-9}8Ztq|+<9Xm
ziP0pXu@8B-6VKHWAVkt5l9M!Qm~Tkc>y%b-g9*{b=%3lymI4#(PbWuj<iZu8TH{d4
z=~R{-+c7)YA-*cjH?fQL7S#=knGrb*q;$WIFOt&~SD3Gu$f^GH3R-0m!Jp`E`0A>j
z`092|PfYc8st1xfdtA_dOQMF~5Q!h;Zp7@A^QmfT5ETI;pam(wiRgT9&>sv16Tlp>
z4Ez^(9b5)i0i+e^^I@bk7r{w0a#-4pJu$moq5ugKr)DA{4OT$#8-X{SkAdsBW80a<
zF0|C*gR~U@BjTNnLXNDHIH|_i?Raq!I~EJ;Tazy~?cu#p#Kz&NE(oyr$6Xxo#GXT|
zKE0JOVSptUPcW7|tUCk4ECswl23vQT1d%G>4Oj~ml^7@T27#5_At<O0J?|IZX~3v`
zsDLIv(BmVn8D1m_UKG(XDcx-}6`|U5MA5=Ud}o<Z!xUn>GW<jUaUMRAiL{dy%WeZM
zD&{}ISIoG0pU5c0yEyc7`$P`Gjfqo4JY1vnA|4fhHTg48a})<bIWUkn6U;!jQtS}9
zl?+D1aSJhc!Ea>z7+KJz1SaA05QSa*6k-yL1a8WK%4A}Ri+T}x#$hOO;%f1Jp8%JK
zeL$kDIKO}ms~3t1J{7yP$vzr1q@YR_^DbSo575I>jK)&MsPw#nn+r1Y+ZQTE3PBJ3
zHpp_Mr2AdP7OrJTeM?K*l)tS?nScAzq4ZB;9S_Ea{RNH2=+NlzOrr`%z6@wiCl)0u
zQ+SEYl4@0$EDp0)FXMfUGKoYrm`-<DIE6>a(9$faN@c1B!37qZL975qK)JsjXewhE
zn&r8a!h)jA75U}Uciy4TF182d^f2I?+<Qa@;CPm%0aIqG(V~gNGQW5KB&9}{Edi`L
zSHW3a>GTk#L@aOgNqL~xnjIFC(r!+XNyQe03H~f;u(Bx@y=|}~S<%O;;FuDxYM@n_
zEi)L^*6XiX8zgp}B_%VpT9NE<s=NVK@{+QbE+fxlPG&BPH4LNBWafe-*!Jy14}JTP
zf95Q}OH<dTNmvg4BxYFp0?mp<vh+>xUUgQfO3N@(uJ7xNa|19vbOIO-+8ID=s#N9@
zZyLw)Qd%V8<zls1$IdEc<yN&t#Qawh?a$AZi#3w6R4|m$RJ*foYvdg3{N9lY6Z_jY
zCLfz5GSO)gd9G9kXht`J*3;AA6Ls}sab@WIc>vfWY?4w37?mnpDM_Q%^7sDhO}dF|
zT%PUft6`)gz5aDu)lOcLtTR?|tk;kbZcM3^C>(arT#g%&o)BiMRN}l8M^TPRH*n_6
zJu^R=o7bmzjVN<&`xRN5NmH_*A5G_HCnskW(9FSMMs1o*Dlw*}N~B7?GF2?Mpiic%
zp{0F&uAHD<<CG?AIW5Bi4#-5AjEJS}X&Eggt9@!yDln^)l#G)0SXiy6%vYljs}y1-
zvl{+m_?=Q6qfAmMm6jw;@#@kRhs{n)=`2o;^5GbiW0KgVu~lSd`T9xd!Xy>yL>9Tk
zqSh)TQj66fW}Zw<woP@eOx3YVvp1G0Y)WNlnp!0Vi&in!n+m7el2f&;E_LPBG-cVw
zY>`SmwNg{LYCenFa`bG*?b@!>@?!n^-ZZ`b*y1I}jxAXXU8p0bEJcG##ti8565H5_
znq5D<fm6|EdM!&9i?r%Jsq{LNV*8tc!q@jJ3^ap5d}tnw$wos`tSIEfA`ZK@1QNYQ
zCu3-!DXox*Jqkr?25Oe*2Bo_HQkmR0+wZHV>E2f=N*0tCZ<)kOfQZ)WOfrRRSfBK>
z2E*<`hmm0nmfm5I@2_&%!Js<Sf0FcCmSe@QP3X1FKiemlE$gRN7NX+U3p_&~3E*BO
zoOv(e&%2wJ0<fZX^%hxKOp^E@=Rv0o56}I*Y0IQZTcV35ZE0%S5*<@Id-EN?Jqz5R
z^wQQp+%qYU$?iXA)u0!rrA{2*)Xya!asZxu1YWuF>bgbM)%N@x{Lm!w=p?SN_vl)0
zrb)?3O}6}!0Yj(FsXR2syLjUCq4mAJX=;X6TZ_E|dkqf^jq4o5{BorcRM1*#2KMGc
zb@x<+5goh1H0z2GD}wlTG|zikvRLFh#R*vXhPJWVxXrW9An4o)AlHcNk6*cLqMlfY
zY!-Y1zW3RN4WEHx&;W{YC_49Mr00cdwN0%CD`(X@QpplO)iG4CY>t~se?X$wzqFp5
z&%rC_m?oDw5{?6^bFCXbgYWft+wX3H3mqM-hWK4=>QJrEQKngl<pm2hWey)x+ruy$
z{ve3c#;;#LUI^_vcP?@lO;8aDRBzm#Od{aQn+RWr*J56cqeoNt2sdTusajQJ<ipp)
zJX(usmDh+8JWp)oYkd={uC-Q8m{7%sswVhqSqk&A(N+)^1o{!d_WcM9`)ZHiWDH4s
zq?YPYrj*Vy#pDq^ieN|vHx(7J^&CYL`=G>9^e7@K4n?=t`g#;0+SI*_!1jMp9tJIK
z|9>hEjX2W(v+~fL<uRdAOZ`tuBL4MKF#p#3u`G#WS0cJ$At;{cwYs>gOybeR74!UV
zV&@X~AM4(h>XS|;7syV*Gdi<eo|!3^r)a_VR(B@MK+(16HuxR7$7!;;wrmZj6Y#4U
zEbGHQ3Ty_9Sf$b1(b47>*&RNw&8I;}O)&|Z{OAr7g00~&2!%rM$CeiOV<-ed;V^7P
zXLU;pP=~m18*B<k+uFjrc7@w$TNoT6L7_S0b`5cF4><(&q8E{zVq6%ah@`<I6`g%{
z&On?n`!qg>!HEh&G+I$9i9g+#!8$$@`*njDjaV4&pdfZ`8|Em0v3jvcMTCAG!Wp92
z2uj6-v2)ZY>cKZqdh82Wc#5S!+&^wR7W$(I!RG@GMJdvQ!Zhwh_yJ15&OsGJbxP}$
z5qV=iEJk&&Rrk7S9Pt{0#9BHGUZ=gQs@Qw59sN*0^Vwrrq1CugLh6cZg8qb}Ggx$l
zHJ(tdqg1#ZMRMrZfo`BG2!1JWMEntkz!(e9;vY@UFy<VX96Mr7L6hx|sBj0hTkM^<
z0lL<L8jSA=G>M}FU5HF}+-rH3iZo#W6fTrmLR=Js+f_v`6g2=FY!YHiG9yhT0~%1I
zib}M#5fQ)26m|kv0sPLm^aImw>~OK0rO@(gsqz=)@F!sFKpndToXNDjU}?&XQ1Mp-
z>Y5a#IK-e10c@Ei%n@|22_?#m6$1BDQ38He68ff<)NpDlvAXO8B=mQNjb0;1oTZ>K
zX~5tRHm48ceHWAUB6fG>B9_bnV!GxNJZ@t@q#FCprcV6*X(q9B|9+|1q_CP8`PQwB
z4467*ep%ON&TYOeS=nF!{mztWb5^XFGi^#iv&FLJ`N_Gtlb>HRjj0(~RT^rjLhK|g
z1%DYhu{%Ujaj}!5x6#~_Md>V93)nVL4BsoO>D8iA17KfJ%!?<#G+E4hTjVO57G>5q
zEpDpM6tQ>t`*Mu9k0(&Ypmlc*<L`z)#C5h4#yT)l9x8}?fD-W^8K{yPKSeyBd5G&y
z8w-dbH?dIFvZ%H}`X;NXF|#&opeJvbH4BVA1b@1J+2upy520@y1WMX6|AoJ;hktkq
zUVickko^S6Tl@11^Fd=`ErFYUHtW?tzl#2{q64$Q`|x%66UyQ8vipJZ&>>j2_2-A0
z9)KUd^cej3__RmAV?^C?u$XSV8saUv9<==?{Ah!t%Ye;DaQnKjslqx%M=O?YvLS^o
zJfW(Cka`wP2WafX?;SZ3k8HxpV$tlNuEY~S@W_$)op3BJ=I>REX*bqo^-<;22x=~t
z#b7BN#*x=_%6~hhzG(T~c|lOd<4M@KOiS2tA&Q0mB9oQndPay^5$&X|V+u-vXO$J1
zG~vS9$?QfqWmYJmfy`ikF-%@H*#Q1Rwht?+^7E_m*&XBW+Pz`-UE}*LoZ8H4>$Gh1
z)P?;zs9VLdA?$r28e+mI%l4nU;E6aHdMOE&_U~Ux0_uF6ePmM2;wrnnYH^Kh+xySG
z#M|xsOV7Q(O?J!JL>XruH3;=uHO(8fag~QI7hGy>z(s2kHu1@A5M+FIG^R~fY;mV#
z40hDD-5!*L3tv2P<f70fq{vO3*PLKadFP-Vi~2>Vev5Vt(wR&;e8tAExG?O1^JmS1
z^I=B<Iui$Wq7ktZa0w_)y;Ijb{nLgGKRvxBmA7Zw`R<pAvei5?AN|j2m;>y3lO3B*
z({2Z<-@mL@TZED@KS-(<Y^(daZrg(Df4?SG!SeP#>;8IjO<LNTlYd>;T`r8v-s?Xr
zJA-<=1C4`!r|2V?kt0g|&(HXJ#`FGvzvSnhembJu{&sfu+uOVMr~d!D{v_h<uK%nv
z-7%YfW%eEayN=}Dxzj6jp@i?CqDrwxJFW*w2?WIfkJxQjig~Npr0a2)YwIfcWX7Cc
zR#;y=IyWaLcXV-mVOhGFVI#MSo!s?QNUIFvGdhF<%_AE_wRx3Ri^W=*R~u>^*&Mi4
z9M+YIKa`+5L7`cE7Wyt^w>RceUE>x4sMIFBPef=uDtbWYj{%MeY2ArIcM<UgP7dfn
z0@5W+3P7lKkx4M)W6<Kr7Ao*mk%I&H-7YhYmc`OJQW9I_R!Y#RvWOE8uPm+V)tsJU
zo4QRgSJYA;4G*6K->cg`MaGG?PAv8eV8gY(@c4p0RUSCZdIF!@@*VJ!y8<tJle03w
zGZ|UG;Aq?JnU!L?$`fAU9mIifQM$j7zkBL0-cneXlwaSnWH`vIncg;KJD9l6(6?)^
zrwM)ILJ9+N;bw6NwjjwM4#EgX%b;fQ#jHde3FpqX@Z%*C&j>7;8^o;sgl!5xb9h{p
zt!iA=0awUZi&b$$^i%16zK*LB;%(1tS(K(TP1!#49&w%W_My@G-g7fx*t>7m;G*qQ
zOu95KT;++j&}wWR8vXGGb=F(!%SnfnH#Z&ZwWWZch~4Oq@dWe^&+Glm+3iy_qHQyw
zGBXFx8PXicr>W|Zv-YKfr>AUZ%j5e%f)20?&7uRT$=HuEhu2qvm?dBrRK`1zrn#89
z63>Yk%zp~-MR-GobQzu_7`-?u2pDG^mYOrfFh>G-dy*k{1si`p=DVUCc!_Bw7W8mz
z;mM;FreF;RJ7(?MH)}!ez_I&gdGhGRXaMh<GZH>N?(Ty}tr=AwvmP`QR)7!=!A~vP
z9JRWlNUsG=){JkXOOuSg+B_$%jFJ^8ZMy22Kc}Gv49oGOCFpxwGH|<>7WehI;5*^%
zg+9)@q_0c5@4`NfWqtjueVV`Sn-!hfxYaPiM8DO4pfX_hR7np=>x*tsD6l~xHXEGA
zqLAc>GQeoAiEDkCRmwA=+F7-;-mJ)(9-(w2WPNk#`+T*l?S=4?C)m$({(Qe&@lap(
z0L}K!zDL%B83Z2>^(4^g#IGDUJDC;y5!^x;Xo^wSA}klin8o0R273%O$!jNC6|q$T
z9@e<unmCNk920)6DW8`?_g>mk55x5>@QdiD^(~Js0}p0L8>a3SSGLrPTE|C!>kdUK
z%`Qf*k$TgZP^1-w#RKx_@Yu`}E+j2VgMF(eps`%2R)F%PRIF5Pc8REx!pPt5KLZb8
zk1r?hZmG8|do;Xx%8(hh`j+dhV9KF2jH1|OwmCfdG?&d~&Q<1?m1L?^t*OolRW`GW
zKdkViyg>w50wx~j?TV<ym}a3hKN?Ns;EzGPrGOaJ8#btAVvr=*WXZu`?Q{nd2b0nz
z1W|+Oa5EJJfMBS{bG~9T2*klo7>5oA!MlTQ(@j%wi}_XKHS0$WTc;m3L%(j==#9#8
z%lVbkfUzLGFnQ*_(jv%Jk0^ANOCDUaQ&R3K2r(PXQzSuGeigHrXT?*+#di9+>~zpk
zQd^9M>e<i$h7IMr%O#7=`<RLw)Wlk_v(%es1fQf>$8V92m@{K2d=Q)%I%Cl&>7C<~
z9FXF3)K-~n&&*(p3vTd=!UeAANP3K`pekRbh<*a@b$Y8jN;yooEVjb=wk$JPnbW7Z
z#{Bi4SRe<P3au=^y1)gkbc<41P#xRz#qH`P2qaSo64$LMUAf?7+~G@@2ZR6`wQfT0
zyksWmnh0(te7cyIDg48-yL+;#iU$hB@0`)WjY}%2FA=7Qfqpbu4D`?5Ym`nIm|wi0
ze@g0vb(V4J=Bj9sKnVBF?B8qOpKZW~|2Q-sKnjN6@z)g-BA8+TElrazXZ0@0EXVUe
zXiQ*8t*?nL3k(S#oPCAvYZ%3Eo^W~bT(~1NR3L*h?{UzMS^L^!c4)#cVPD)yyx2~n
z))7xDiB<Gzn3xJv8W6BnF`%!JPZy~O6d~zErgS9}L$DO44%Dwu7c^k~_&|L65V|Ia
zwKzjiU);jF+D{f%Du9<>oVa)XcGC#M*2d`6S^NH~**B|xy+wlvRf?hSl9%iO<-q=d
zqIyJ|s-84D4Q8=ogS5(nqK`;I9hKs1({n1`L{zCZbVgZ~>8oWexqW3LblWupvVB9v
zx&6+c_w);T;H5(Q>RKOjo2laH$qD1&<0I$nL%b5bIL|X{-`Ih<3os#u9b8Qy!+P{!
zMImU=n>|&V)#@Cr1%8Ud8CKAw)fZKO8OEgO(!TROS7{TbyU{SMbmrBz|HYpJhSfBT
zh3~jLeTz%+te3F`zUQm$#DU?TVJRw^@Q;RDYwi>oIh~Owv2Gd0^-4!4;@HRS^63QN
zP#xKn)(My}qjd`Sp;ob3p@V-^=(I{ES)pT<gMdV;*d*5i&#Pj?a=ql0JfM|tR!Aj-
z(fKaD<cd_vDA-RV`t1rW)3!vRja(oP=V}#8lv<rMQlXGZHFCNRj?(GCW6`JO8mUyt
zoR({J(Q8R5yhB2Zb(**igRrKSP}x+OV29uq+&K76vAVdKE^o5}Aek@^8tERJBvir%
z3EnVawY}}bS3XcRp!lp<BG%oj7r%Z`s}%I0UE$z}$s=k+dGG@K@r@-*-T-Ql3)Cd^
z(Jgi%n94@G7Jf7EGTf?Bsx@FPd;sTzVQ`Yt?wdYtcZQVlFL?w0*dsq!+an_sO00Jt
zqBX?R6(|b$^Rba1nxME&c%wAzim3u|haOho73}|BvYVQw$NmvLet)x4mM7AxWh|@G
zr&yi3y2(ugoqg46nMy78DO8L)*VmA@=Xb9&a+Fk>C)WInq`TjE-F<UoMjyO+^9bZO
zYqbpumR2yVT&0xrQwP;eu_%=?K+6Z~b*wrqS$}%Ru2VRblKEGu*uq;hJ22eh8{%;k
zy3xkBayFt<LP=N?@0NgogmDK<62PPXbQ>mg(I)!HBTWOK4YZwxpV3F?Bhe;w4cegX
zG_W_pFx`fQocIPwhNIJPqF6Hg*yl|kOm&kR;di<b=|pcb@e*JPxFuY`9gqMw-?Qt|
zXMqY{ZES6VSAi*W)EZdE<bpS08T@ZxLb1REuV#*7>TXfV=ddwK<0+H`KNv=jRDn0q
zqyLSvJB6}C4>p49x9F5uR((Z6aT%zbI?59Bve}m!hI(kYyH|ktt|}K(FY^;8!o*h!
zNrkC?Ml9qN)a;dj0I&fJ%~fQj4aGq^uF0#jD~WnKmIh*t4zx5U@Wr%`sLj}k^K*J@
zz~v4E+^zt-E-*L{7#wjgII;l!v1=F94_Ub2NTl!4MT?I<`1MhC-O<I1j-rdmXYjvI
z-F{)!stdQDVjhF=19%!Pxv+oisJ-Xtq3|cT4!cwUt68unHz=8R0A4$|@!R_R2H6N(
z{nd>J;k5(vB*9!TcQ3f_i#Bj4og%zGK;yUjC*XH3SO7>FTFHx#0`&X(D9i+_foj#o
z_KT}n+5CB94_sKX=>2;qM0p&IJ_C9!%X-&%?|JDycx`{nl#-Rk+niGt><8leUb+Xx
zPhHT0`ponj6nlWsMIF``CSZ-|V9<9d=Kw3f9?5xAO!*zHK4Z$|0jzc8VFW!SD~o6;
zRxGjtrZ?OIe*sdk97y557uK(TVLixIu!_t)_o6d3KxVbd(?+KCIRk%A8;OExKsMmr
zh3>pelth|Q5VCXnssSyfV;^$5?4g1TdI^xe{0hqHmsef}2iK1uw|@P&@zIA<@-njQ
z$u))nBo~F%T73ro-HHMuaejuHWP4UdUW(qT)S6kP!)){>C!4iOYXW{4Px+}J(N>M`
z+IxVASJLUOd=kQ%M<%Q!gq>ue85LckqrW(x#{4g>cG*N~qwOZ~@%`gBj32)Nc%>P=
z(xk3c>z1aZr1i>>8Z-M0yW4wLq0uNYmK#qk9E6S%qw!Sn_Thap`@aVN{@QCmPOnIW
zI%OcvX?*k-eG-=}PRh*CYLmGneO|9zpR)L_f>;KN>Vzy`D^~h)djTzwzlL)I-*(40
z6=V=Epn7Wszjb(#Lo}fgIfywg@8rlOppz99rB;sF@)bP&<WunU*IUMg=+pTQu*ccA
z5Uu@Rg|9k1g?%%?UON{aTN%Cn6m0!^^X9KX=qZ{HjqA8%#{i3keeLia;J5cJ^rpjA
z_Lz?Py@&?Pz<rJb*wn`5b5R%&y4dBj8<e!kNSUybI*odpk244gTtvOjU+gPFs}2;!
zGe)fmcxaRWe<q6OK7^N(;m?)8*8q==G>l!G3+Vptp~Y%5xIHiJBctxaRM$}&^zLJ@
z&#}#`NUEL)LKk=If(z{z6<_h-MP>h9X7C;WTZ7S`>@(=+3!^tS0su}k`ge*JjpSV7
zBHB{s=oQ&9wHzGGc7rc{ed!{QPkTK5{#yOv-asMEXNUkOq=QAUpFIjS%yn0x5+JIQ
z%Wm%o)h6I+OQ|GkA>wLxB~U!P@>H@s2(nH+kFl{)`=eTtRY4lrZpDB&1Tq`ZE3#fv
zVLm^AF$vK{KJn~_Io*7+E)Ws-ZC30L7!BnLG%y7XkHi_f+ibu*Yfm=2(u+{G6C_JE
zZJo%#qx|v>+a}O=HZzuFR?%zVC+pRSArJxefPrs44w7^VG)U+Lhtv8>Wn8s#E^SX?
z70G)2ptcPvT7lB3`d7U7q+2d?&flL_B9*bF$`NZmgqPq;@Y08C)_e#uK|hfB;b*s)
zVCeN`7cP!{7~NMqch$PFqUbC9yp`+6_I~>~tyL+c=`DwBeNdLws+qLY$|_PbncB}c
zs2DkZ?SMY#9tTFXT%?oBTMk%JI<87Fw?v`{)qc88PU9*l27E(az9z9i^xA*MM}gSf
zYNXOJIu5`)YfcyXT>cCRFtP#0g=P}9)2O8p#c%>Y?asjXB#5vuxBvKuZ<j~SN8sPR
z@VhXWhZc=P2LR)NuP?xd-V*(;jG21w?yuqB!QMvMG+5Gp@?`r-5k;@q^n+XS@GkJk
z{g1;r(V2JeNrmP1>tM|lAPek+r{E{iVH=h7{Pmz>spuqr2#+fo_b={kvYTL|+%6g|
zteGGdQ3UW9Vu;Qs&70gJD>ekeSQ|<f&4X?$z-B=n95A7>vy{$AD*?-FhF`(HbIP>+
z?wui%EmUNGzu3Q?Pp<Wj5UXU#oM}vnYOB`Zt<UmKsBxB;O3?Djm}Tz$=<Nef9@#rP
zB}d#RZ`9Nj)y_KrA}K6A;(<%>>J19yU0V-^gT5eVJp4w<XofDN^M2o3j2J(_4R!FQ
z0_m%Lat4*8@Di_^X3H{YUaJr@6Nk#mbJA+2`^LWegv&Lo|8X#8{vbFTzOm*8b>+mA
zxGX1z;~x<GHL^s-6>EQ@`6)mQKU|pLVc6MT=(_<uO`sI~T3<2kCcYK5+{I(BAB5jc
zuN}>@qid%F{lV9d-3HG-nyP#f{_e|7xNkhiJOT>Ag9o-WFTG>wfw$f~ux#_P*_-d-
zEc14)8Q;D=dwcu%HM{1`Sq{W|egM@cpTj)~EQ?%gg^#VS7+wM<fB7dcxpY|N?eIiw
zeWFI+?MEty@=+C3KjQDkF05J++k#7t3W;?s0$Qht(Nbu2f`QC1433c@BpZJ>KxBSc
z!4=raq81Uwj<p}}neuoMc(~*%c<zyxAN}&7@AEX{-U9j;{#F5A1j$wvb>rz!^N51l
zY5ismpR?<>cl&y;zd32-qI*_6@0kp)(U-VOcklQkJ*uQ&*Bj%9-~acG!xjU6(UIPd
zg63a_!0*w7GZ8E?2PRi7KK>kdYS`p{`H#-u+_7rp_+bM+-E@{7c-L#M#pP^aUhp%5
zaRF|*t7*7tztESsF-_?d*U65hNZ8Gc+5p*zh>(p4&=j@d4NFm|Y67q^Bw+;aXEJ9a
zg8oZ<zabpcc@fHGMDyaGQMpWb=UC^(duf6aH2NQVdse5pqo3ihPM@1>wF$1T(Wr8|
z?tG(PNrp$sBx!Xl?X{Lpgg+KkSF_)OVst8a`hptf(E98_ft7W(?DBMnL8{e{=$$vH
z)a%fI3)NgWG@@kb#@UA^j@C(j82earbpe-zA8h}&p!x$aWm?|AeuZ*#RZ8`1M~|Kv
z?8*u$<T6u!p>67u!unQugW_%@@{)ekW7HdHR^<hV5J43hE0AL)?wDB=S;XNWS|J$u
zo2^#@G1C>3k<$~1;&hUU&q4Arc{MSMD?ybVMW%r`?6KgBNfSeF6E4vj61P_DGwQMB
zTMQ=#mw_?rJBx}_6U}xq5K)a5>^gAt*u8t^F9>GK*<vpTw3edjlfxT!+`Tb8NhDRt
z4H?i-RbjAbR8mQ>ij%6;v{qbIrM7AnBEGUxYfS-fdGdzVfB4gf^$j^HASo`AI(q|V
z%FI2x&%eK`%x_Vt(Q3~nYu+)SfAj4Ap?Mpcp59cmecM}Sw)v81vD9ufq!~2KT&p#5
z5oE6N%w2KYhxJ4AJZTb{%&d^`v!;djY+Re7MWj!$?$HPDy+bBi5DbMXT3U9^7-<oU
zEr1!*ch&UC{*saaDlyCGoOA;zv9!F3Q`0IXFRiRnr)s&XN{uyT;L>?Bht`i9SKrWV
z=TkIl%am#`jNZ~T<J_*@=hd<zub5#(ch8vCuYdi3MmVKU&8DX&zPWwdHeWg|lSsv!
zNku=RGR=dj*~4|7arHxIwt(|uy;@=B$7YulO7oKyYPK{~hWkwF4NCO62xE^0sl`~r
z=JXr&XgYADd$3zz;*{CMI{i+JHiI}c)Y%cYucRGHCYu%jZu~}!*_VbH5-crHGGv>c
z3kY8x4HPFaK(sOjpeM!%{&JvXL@Je0r3kLw|Jl-IKRk16YPy&eNflh{9Iz1_cn#bu
z)9BN^8m+{Tui*@KbFMB2h?HUpC&K!_qFF_rRd7R!)1_4WDRZz+CsVqXZP~HDIatzo
z`|@p5iVW$aM26nQy|wV8+%c<9PM`X~q{`%IQ@^U3;Z|j@=DC%<MWR%lIxw_PVQ}n{
z@mUg;gaho7!ly=NexRORI4nyk)#dFs@)GPqRB#qc)9L~dF9(mNRTX8+WNpqtdcDlp
zYgDGFVA$Pbhi@BSlVy?6YbtF%+URTur1V}or=hT@X8e%!=;4w1xyIzlc_k0f`uvHV
zHa}r9M|p{c*6akE&^W4cmu+rm$Qi@5^u;hPxgOVoe(A4RtH+GBh>Px+V{k+WF|ia*
zHxeB%C4|{<dzhgTkPH%n9937`rN7dI$!}BaDA=M48ifhrb}cqNq(eP(BEfF$qat1o
zyhMY|kT@q48L__Izs3Un7Y&Nqibaz`R8Sj1MTnqPA(ljURh>!nPZhpptDzWhB%Vea
z{eY!fZ>qBp9(?PDs_Wh-+=z1_eZtuVapodaxzqPh%nsdT)c>Eg!zgTJ{>m$Yjrpsu
z3RdUw>sMZpL~Q?A)7*3G>^iSu+yAb;^k^NGNtIx%Scw3d6l<lJwf_HA192uuNzGE&
zCKUY&5bDy=^q(~g-5XL839tzbf^s9-M$7(##sHl>Z)%K=05UblPYKcq&}w$kNg7l9
z=rUg?dh#O5WsYnFk1JhfD4aTkcytuximb5qAznwQqClsdJPv-~Bs(RYA|pR|Z9|Zl
zeGUhYfLwS1Ho^-ug)6h`oYta!6tt?M3-BxGyV*kFHpm5!)S-LlcHv~p9u;JoPV}8W
zCUcaN=-?0$RF}A=>tkW0rg*WssA&wi0ke??(fd;Ac1vbEu{Whdf>kP&X^Ff71QS(;
z;H0&;W?HtBlr(Bv_K)bRZ?|ATNP-0BGKVZ3SBQ?knQ0XO!ccOYrnOa&w~HyRgXk6G
zu}lej$vhCbom^aF+8;pN7w7bI8cyRx{{cGlUs{aXXgDb;dT;bzsZyswmo&Pho9Sj-
zM-m<CXrgUwTeOY)S#NI->uvlEN+$c|7fz<PbNCXFOT~c>>DTNpiVo>z_Luf3`^)7H
zX`*acgG%L#&o_9Zmb4@)kNp-g@r`gitZ=buN}<z08!tvD(8jahcDw9&L@c5ytxh2p
zL39!!X1zV67o*OjLvy=c3~-=l40D5$>e>;L&HxnP5YHapud(rXm}C1I6NMFGdw5id
zp9Sqsw}=xFQ_Mh+4`3w;tm;V%j#I$9-A_Nlsehk0?Qz&%oG#ZhY!c^G+Er$yire+@
zkKjJ=Ex3=aO@Q?j{(uKQ2roaTeY`}<0HsW2<m^hPxuBqrdrb81CxH90$2#qK6Uyx&
zh^{?sgW_krcY?-C8pd-&{5a;zGyG~7(05h{%c*@XzYDvR-~z-a6?O_^1-Go(RoDy<
zy?^(*Q7K8DdspU^_AP%8OnLu(Fcep~U+tT)y|9u~C9w<#q_mvo3k+FFR@tFvyF?xI
zvp3f}y!E>~THYO4)HHTz#T=JNy!AVv{SIz@0yT#C$v#RkqBE?TRUx)e>@$^k24s!~
zqJ8VWKQV3EiSNmGl&}={57Yxil$26nDy>0(AQ_M|HsgipKTUpUz>Nm(=t+2qSr$DB
zGTFm8Ob>yVaV(J=Hr!|xJ<f%Q9l8imj&#Pw(AaxxFlP0t71lQaKZ?|HM$zL^_!|7L
zukM<h+c;o^cJ830M?Ck9n7G)KYYbF+XG{|-R+NU8gJB&^`*&~>918d&pbCiUCL8X_
zyi+V$yA^&u^7?OnGh(Y5+#wTpu46?4E`yXHYuf>%v!f0yqS`68{F6_jn?Csjl%t7(
z0>|iOAPfF6dIvlo@7M8XwNxcFBKAB_Ft-ElfEzp7=FmzvfYp>^pdi==3$39Hb{|@G
zVvQYdz>$tQ>Ea*_d_+mlr?I1zTr3?f2eVCHo0dF#c5+&+e4@|hgZpgB;0Z_7fWnO%
zn(FjYMGa`(E8=JXPPx7ju`DA`p_lr3j)vcxhMDBbez^E-t9{tQ<kHgQg~RMkO-F6{
zhCr=Tx#;!*VKH2%lmotTq!Iv@m2zNxSR`WVQ&Li8k>8F)OCd%sqQ%pUydK`Al+coq
zLfxkl8ie<IhGH+HSkI7b$k<|=FfoXBr!ELg98oR7W5wrWSfbzn@a#h78Q@0?jP%&T
z6s;Ncg6Bb390pp?Q@x7h7vT<A4|iUad4r3Gjp+Rm$Xd)KDZv8mfSh1s<El~c>1L4o
zaoLDri`yR<wW_f(Sl-AW_Fih0WgR(kBui$M%49kBOlX{Nk8#zg#`0hz{dC#HWKYpS
zcy0fFAU>F%pFF9oVM)ckQd*)=GeezuD3?*efiP2YPx%t~4S7i;Y?4`JQfYQ(X0}u+
zO_SvmNhC$r@XJQ6B7M5=4O;XvYL@~meF!pm8wzVW*sToe)Ebc-v3?koD4+zq-S1)Z
z(F&?BP><O88UTB~0rTcJcN_#WANj){->w-4zlRTOfAwdY`SK41z18$eu`M{Hq1tHN
zeErP>^jE9Dd3W!~KfL+!jaTL$ZLpd9c;V*2K-ymentt~a7(Ti8`U!(p4=ORM0N{qK
zyC>dXiEh1sMxR1asHeqP3fv*F5lJVr<dskps;(gh2ODu<GZhiyQT~DAY;;o;tC)jy
zV#0#BptiQE37xu~FB7|!0zAJv$(9`M2!cP!0P!Xz2&@r#L@XX<PjEPDVjS2$rN|1D
zKveM2z@NA8zP4k;&bQ{RzgqXldGP*segi+cuzK|c;QGx)umFbWXBWd-_``E?3GZ`&
z1;=i`-`%vumM53y{W5>~ojb1Wn)lYu5x32`{n6Id7vM*TdY~*mr2D}mQTS08t%N^c
zg^P~>VorkE$%g9D7Q@qx;SmJvz^wskh|bY=!0nD67{`oifA$6Te*Ny~cVHZpM;--J
znO<PsJ&{irGh?F3O%o#zfg$vo$ftC#c-w@zAIX01?Wm&=kK~;$YdXUmwnQPCEa;4`
z5x*Kg`#R4-+UV7E`Xn|8a5?ChD(pTWVreMyTj_4kptC_EoawN-Nsaz!Dt?ZJTaL6u
zadhX8lk;j|v*+4vc`m~swWc?(?w6vi(Pb6^H81B9)6(iTb=O~14MJF94Ytxhs?{xY
z3p$XWh{p!Mn^g{z&1Q0_G*XpH{eeoMl5Yfn;YBU6gwY)>YQe`N>8rB@1T2BwDhGC>
z$;uJFJ`VCGtRzuC<FJ=5J5l%%ygXs4RUjzp1!BYp&%lm!C5zRevHM3cDj#eWizU1|
z@{rS`)})!zY?>y-sS}<bqNQY$tt{7LacgxZOKx5gyw`YVBUajJywlj6l$UEU>9lT(
zC%4Qt+b}tZD;=C{n60s)d^Bp0lO1DI(;tgn;#Q88YQtr-of$z}hPo-9xmMYvPw~6z
z+*!WTn)Kmw_FdRFXLx!|sV~c2=kllMOZ%g*(!W%lVGCwBXP1SwdRcef03MBEJK;%)
z@(ZQLHb7ny>Y>!KdPqq$S_0_j*TW&tMAy-qZ>6mgY#9s`@E?GEArb}(F!L6hCzys@
zM&HGaxZyHt5H*STAa;x5_)T~pOORC?O_<!fg)M%f0oUcdL+}x21t!4_Jbp~=b`cR(
zhPpEfi=7A;Aevk4<JEjtl3bo<k(yR~uyWHE{yFu=+>ohuCjK0(amf7rZ{OAN=SP1$
zvo{EWzx@jsYg)X&eUd3FNoSU8`}fz%iz~E~0JX`KWzv}y+BtKy3bQ$=1<&=GXvoV?
zvM|z8YySZ&-(RuoHp^gBDA!oK_rl)!gYP=?*GKn%X?)>J_}g!iU%u_h9d?DL!rTn#
zW^*t@VZN&xCcTxe&<4#9zW&<>%oQ4~JO%L-88;~I3fYIBhuBCm>*28~;4)$l2pl$l
z!Gbibo|^`UPg2&6x8Hqn5gWnya%2M!ODw*KS5qrvvWmGYtDjl3=9$%37ag?kx;poT
zm6QDrxx|t;Y*s^Vir8eC<IY^PPn+kTFuum3T71`xtgNw{-deHz%-S(7YmPrxLyL6g
z;tY>PuWEEUtEXg3UDc~c)!jb6rXXD>r4^&stQkFK&6-oHCzlQk4bJW}a(IJRsmrhQ
zW;pVDxs~bpDOMUxZ!qWOx{C7B6?|aK!aF7m-m!jCX>r4>nO;v#PO4O@b@@m6)j9xz
zgPln(e?hO*<Wheq(9d7vO|-)k?ALGFJ#hB8PISagw`!F)$l4R2Bj|n=?&)*8i6$et
zODGfzgBv|OYj^Q-g1$|FSkre}!&9~(P<zk<9;l7ZL|<u%vWD0-o!{N29UKOk?Ynlh
z!%OH0e!yjD?J5*Ga6Jp&@x-q7&Zh=<D|$k>8~=(u8s5~B-CUT55_15pzt&bawGY#y
zeg0|d1QKmE|5a<u>#EQHpb2{FM>(l-#B1n?K{J6@2Z(_uTHJyXeCN5yh=oIfCp^+d
zLfCIJiav2LI$i4ZaH>wnI7H(|ULQV^$w&qiSv27Tm7D?ByNX?iMx!H!;|jyKEJlOD
zXaS{6|HyTQPqHU^+_eAZ1||5Oz!WMTzW?*jV|I4<WFQDdy{H;&X9w^Ul>_2BzcCLO
zXzp?|9>ft5HEU<Q<VInXbcS_)tmDFn@TBJljDzTH#y$hlpT&ByIdPPKOrJ?9Rg1&}
zJROv0fOwG#UxR682W_LXit*8z431#O7sW0Rj-8uqw4*o+-E)|^WM{|f@f)V;wvBmM
z&{uzW%r@P$4dZ2f^B%^qUnnB4FN0e!I?L0$w};+`f{`{l%M6Z~9c-2vHYKNrP#D83
zG?C`%3L8*3i*?|OEIOV22u=krHqOVl=QqOs;J(}v94<lq-;Vm_XJidF1bfJGFnIIJ
z&e)4gMj~8dh&Cwd6^_mj?j=Nyln^3d+eV)8c7|{c%x57OVqgiM1YZn+fJ!Q5OE@!p
zaVVeErj|;W!4QQ$SCP=$_=Hk|{vjMDDMA0Cd~%yAmNFK?`AD!h>IMa_wI$u4<Vs~*
z5_|zoZ)#8yKchoi5)kfz0XPnxiJ#?iVf{H9%`<yr_L>@Eac|-^CZ3Tn8V2hM0yO@K
zwIv#)1Z9({*|T@=p7r27JO_$k!Hw}C1Y5^bH|XDo<{v-(%jx6uL-7Fk)1JM|w!M2I
zlfZdUg#Mq89-?lHho|5v^Z;l<WA&}KR}~hndK;9Y@meZ`g|V4=gJLdqmWy%*+?s$}
zhb0AAaT1;A;g6$#HZV2%75w8Iuo!Ne1G4Cp1t(5`c_&Up{~O*H{gQqQUYY}zfF*O_
zCHk%Cmx5hQOxFv`W3s41it3acbxM##1kF!}rC&sTh^1ecIJ2=k997p`SJxb^BPX`*
za{;Mut)in%XG1+u!P>|<+7!F<9!^)skmPkREe`D0s@JxoPHxs~IdpnC7ER<v%#Hq{
zDEA_flBiKhQ?Wl7?Dj>M1wbJtPyQl+-9AV_Ar70GnWV^lS|vXXoTK-^=b}Hp35(to
z7jXsCc%?RSACp8b#Y`|Fp_eLh44^n75si)BM^80HH^TP}Ig03=%s<eTDM8-WhQ0*e
zbt%MtQGE_TY{=ah@QNTza(cX67t|-y1?5S>?FXJL&|G@t2-CND>*niCpz+$CwJ?)l
z8-%BfhS3*RoGa7S>B`QncmYO7Px%oX0$+neKhmvj(F@};XfUz1seTdwx3{&vd~Euf
zL!ZuU1fX%|r-#-|Klbwb!ekJ~ZivfIgmspV%0&EtVDoKo_;kb*nZ4^rME$_c6XTQE
z6o*!39Qx~_w?{LPNQC(bJ_bf$wcKbE<CcqUaMK4Lz)d!>TrOrWiP4hnML3Jz`UyIG
zF*4YZ85}t>$X*JLq!)z4)QvT3AVxo+gmC0R{KO6FvB%Ju6nA8zJlF~Q_U+SmJvOqN
z&Pp1dl|XF6UX%u~wvNfl;(b#bLjw;-yKQn5kHOgtzyXxBhi1afC0oy@XN;D*-N9*%
zzFY~LTfcbG?%MqT6!|QJ-h&Nw3x@S7^VGW0Fggu<SMO}Fa!Q2)^l66Q7`HZ`*!vQF
z{&x-UEY@i<)z-9}X&WXC*NBJTd3@axTa}1O&oGpsk-xh4x<mI~c@q?E8PIa_k*|*b
zY1#1MCio&qrIVDjZ6uYT+m=suu!x6w$^&@T=5#5^Ub2!#^pz+eAPO4rVs&zFQ6Pw+
z?`b#Y@na*B?Xec=iBi;at-?)}=b2##{1$eY^W-V!*XPnHW{X5>OqM8f)ndOUTjLk2
zbCr^0qf}xsr_gg>H^b+NfRo-j|5fzl7qH{i`SV`|9IyiJRagtpz%S3OSaA+mKnbvr
z(3xAUe?}Cih=M^;N^zdZBR~A<=>CS}0x6rN-@1JHR(%#LEl4)>AN}cJxkq%Ah*KBz
zcoPoIS#b`2+2e(<;8tpAsMl8``u%dOjR&9@BQb{|s~;VKwRgufI8l3|ZZGlxqLYge
z8qwtDqy?pEJtzv0RRy*!#Cn28ZdEmx%a&(}nA}pvad%+P9b?b#+%)};<qrb!-e>KN
zWt{D==4vbWHbbt-ISUqL?P+e_Gc)qhtT9`6y}GAk*W#_c&(gp2%a2~pE&)uRT=2Mf
z!J13=-7#&`&U54LT$loKNBzdiRW+twH1S&al_9@R(YJc=Xfw{H{k8I~i+8o}d1cSm
z#<@GsQayeA4ko_fdieOoC;_~Z7B;&{bddRf)qM$k8^zi8&g`Z8T4`n7vQEo~WJ|K-
z+luWti5(}7bH|C}-1iANNr)lj;D!WJAmnO*aJD7Ta1|P$C6pFOxf@!V1m3ok5-60m
zkZAMG%*u}Kgwnq6_x^t0msmSHv$M0av(L;t&&=~Y|1|MyL12rBHcM1iGJ#$lG`OL+
z4kDJbKYvRv&p{OL$8LGtwM8MX%SvJvN5bPOFP@mJ2)hzWgIcjz#qjGtyz2ck(z#C`
znmhNQPXR+haO+^ExV^VT6F41juX0;VW~ZL)<2CuK1Ac?n7Vs2SJIwVOu7kI$jy?t&
zQE~l?m7W;HN~87&pQqW$L_VxTTuV2$k?md0K`ju%2w|vid4NC@T@4})JFs>S>2pX(
zqy^b0rw8!Z2criQ1SXHLAN%qlfO=S^1Bh5Ps2u#DXX@0RPH;m_qfWY&*D*A&UJnj5
z+Vt9Zxywew7uoTCMrAVdyx=jandqC=DXm^`KhGm(N?KCXnU@#f)G>cu0rs`Ff!^t%
zm1;A$Qu-yWplLPpi_RgL&d$t`tUvA-t>B1;hqOX_y|h<KA1$<VcAK`wVT6;x{(C;i
z3kX^OX^lBg4-r4Q(N~cD2dklh_P!M-E7H@v%??rH6%0x+U3#QU!9rFYQ9TSk1`LEs
z1@V1GQy(fR#)(E+HR7Jjs8(tYwF%E~G@H!X00E&7U4qC2AsKEBa{&G32t;!<@5k;l
zlTkXHaMPZDBgG2-`4FHd&FM}hI~QkP0D|s4ogn=#tujepSp+RCR+_*_otdsadrbO5
zXEy7A=4EgP&^v335}``F0RW)0SA>cpbuJ@(3Z>UwNVoN-AIasf7?=*A8z}FaxKP@#
z61<Yt;L_{H=mSRhmCpQ<bmebRANrflEX`I27R^{wRI+A4r^BIebxz$}9a}qZvfch4
zrpx=EY!CYd)j~~063W$RTEM{f*r`4NXAGk@2_@6mkq23UBxva{XWh;dXL(p8v|i9u
zs{;ZWv*e{6MDJD+5vu6Jh2RAsl49WH1SC?1a!F{G;Nb#0;w%(Or9NQo%JXSC6{`Tj
zAW*O>PV39-vIg`@r2@c!eWKTl<ciAC^)3%bmxV%Q6^{DLX*%PxnY|PD*+W7wh%x_K
zTP;tfOoFg{Igahxbr46U%$P9+N0(fF`I0-;U2Bz0i9?}Nt67WSVtS+=3<=4q)jEZv
zgi)^TQj4`3g~=EjpKjFfi%v*ioLICz+!+ACq|nsTheG8-5WOjeENp$NRroQ+nOg~J
zR^o(R(xhE4<AlyX1M1J6IB5x*@_r@#iTFu3<Ab87kJt4OY@;+)kLF^Gr!^hT$IGZS
zi1N2lH&frE_7OXKvZE5ng)kQmPXE??gLX8(E&g5Mx7`n*?78^+B#{5$_xq=1zkhL#
zuf4>}GF(mqY565$tQ=$q#4edL7X#g07oGs+K<c_UZ9wFlZohmt{sXsM962io^nlo<
zGRl8B-(}o6j_UIWKav_pEugNTZa}O+uGLb#NSS~Ky%tpRY)M=CjHOZpRt<MOV(mlL
z8;QKv+x9^@O;+lVmm|GmP{y6Z462O3CbD9$?q)7Qmizxej$;8e1xc)rkO=(Pnhf|o
zu8{uJJ}ikZ++|G!d<EfvjG2J)^kO$;Nq*3bg3Z&WUW0<yK;SiS9pUGMe7@;!i^5<`
zTAlzwrNyS!6dR_#D)I(H((=iDWYOU+dFi3#JT(PS+vEsUJ!?`d;t$m|ME0G+t1=5K
zXN)fmN0T$sGKvbWQw|v7eR2!Y_P{P4ak%5P*KWqFohTe$g&u?|aP1bt>Ydq*qUh;4
zJzV-crO4*=Eap)^BK&;L@||$IDeQqOMyzXc;EH(m(Gk;cJ}#@o;ueh)&3rW9g~CA@
z>JOu23Mo@M<;JE-d@6^Dht7z{{2+16M{}|^J6;7(_kJsKF7t?WM9m=W>${N1C09ey
z%HlzpQB>QEb;0u1fXY`ItTWo+WxZ$Bxhv8H<4Awq@I)!CrKj#GFggMzi^UXh7z_4H
z<qS^ggU@vO0^@$QPW<(4#@p9<M#p(ibL@&+3hEiQv|wCowEVJp0XzL@Uk<y!#ATE7
zFp5CBe=gI%cofh%fge8$W?;E5+*)3dukeI@<yYrINK%2xZ#R03VD{KRt5K;mwg$$|
zhS0H=_k)bJOuGiCcLU>W8(%ldUOjZ25j`8#Q&pmhn_4$WM{y46tKHIPvqis0&H+jT
zeK`W(QuY9wV}WWyJnU4w-%YfmLf$?-Da4!-Yzh)1JrRj^xqiwK^?$ja(s+*qaq+!&
zcNlMn4u!F*8{@?tMEdP(D7fayYv$uFgbAKNn*_oIzCgmdYayoLeW&yxm&YGST03`V
zUpSq8R^!v$uhDQBbokgltl_H8*R?))G)L|`a^w#_#Be+~BKMQ@jAS%iI(|mwLb9y6
zFVavK@<(EmW>ur!lf3~Ki%RurI1U}PAKQlAxuElPP5(7~Gc}2zE@21{+0S@xj|Xq@
z=U9O-X5}$U0Ez9stcC9P;k^ztKjI#hb9z!oe2M22#uFENN26zI5krW$LbJLm+1%u`
zI*s5DqqG)n=Qc=}eUVq(b$iQ!oi@OTy4I3Hi_0zYc|$$^O541N9XlplIDw_rtCy6H
z1~jXDa)5DO*3lS$Ij*JwoRyjMa7dRgRqC!_6>U&FJ>+A~c<WE5@7T*h-`M2LSYFI)
zL!FZsT}>UnNsAZmXcs4o8m`6!lu$p=Ob>CXLBvCyV9!%F#HUikUmcQYAO>bZ4TP<9
zOfvdvSiVA9k@oxgVA9Q)fN;~$X+&&=vPu_0(M))aX2{E~f!qN8iP5^O;qZdR#=y`R
z<J6c{(2y|*@C&_y6WcSMLr>~Cl}lmm+I+Zs+rIF`ROlX%AB}qRy(R7CMIy_qR4VY{
zH$$&@c4;yNR*z)qIR__*9$`K6dY;Rpw^m92xVCugs2BjOM%4z&+d8v{crBm}%4rHA
zaJ{GV(L1^hZ7=Ux(C7r#aC~?uzo35F>h3}%q`_CG7oUFNMnNgvF;n_}fUd05@;^m1
z1kn7qi9JizQXPnop)hJHUPi!DFe*7mNZ4l!_E1s+<gpE~L2`l}=UC&ifgBc)cxw#O
zy^8D}?5~a!fq)l*^#EJHlX04-<t;@ekV7FC7f=i0OsO;?vU;!MgW9qk1?u5k%$xnI
zv|kynOoad=Wg?Xj)`Y>+*?&ah99J1sfm70fP$|cy{G1LP{S9D%Rd0UUud_KUPoH1|
zX8;ZI)Lu`E<0i-fuZg}_&*)1v>4h+|qdfD0uP_n(#HRD*x8(tq^o_+5^tYP-x?OMa
z1xFd5pQCW+0S&B(ge&OjrrQcCAB@&Wv%E!2g}0(0m}0#(k#G`Z*i6J<Qq!fX4+ctL
zcMwFi8?9sVL$7QM!Vus93p}H2R<&~{U}4E(a7g<5h?e)OovFImgSCaXS%aV=e+=Tf
zz0!Vg%-=4U@_f=%FvdU1DA+^NjGyUQv*Bc<22{#ppqr=IndoaxL-GJ(VS+Mv0is6^
zO@(-^mDrl3ur`NCMg$^@BJmv(m;ZJkN5g2=!w_A5Y@JIJzyiS>v<3tiByJigOz~oF
zBt@Ss7`B4ZkeP6ArG;TsypA)$CxK?E@p6qxwPEUPpaQS&G@Come-9<81=WU()Wlas
z=zpG3YO5=0sUlpI2R5j6*D?!F7W<%={}G)m1I9-mmp*PB-X$${nkTGx7B~-IX$Boi
z{&86Oqp9w&(rhqmM1_?;yYeNipvoBjOOQVOlV_yorr&2?(wdbhVGW(+^Q^3tl7`br
z=H=-T&Vr(BBcm$jeh&7Om(#@>=_%FR&Sk&^EXy+wOkMaatS)e_pI~-6%~u{aGJLNd
z+4mTUU4Xd!7{SZMqp7T3N(KQd$LG{>y;yQerNyur>VYqeVV=Tb*b)l6kzj=v-LP7b
zJpAH;R0dXJ>^pD!!=HBS-2TPR?g?JLq3zIzr$EO^Z$o9|SNrzqT=`=+4KLBt>GX&#
zla^%1ww)L*z`_?7`F-~2vg$5JOP+TH_`$pT4jkC`?#_Sg@YH3Tf4~31Pd|Nda+@|V
zv-PO-+HAmjZ@mAFA9fD)?f*V}=XCXX>8aMWn}R~ut+rHkaGbr^Z5Us*;I<{TZHs#S
zW0ASTPDQ9Fnoq|O4<1B)jLW$Tz&IHMCE1&z3E&kkR)drg&lX{kO%ja*0&<AoILC?&
znk*Q*Gg2(x^{3r;UshhiSZjvd_4?}|`TAj~^28@rS}dyfLri<sRB%-yGInTtUdt92
zb7NDoDly7p1S9%S4&bv<Lv6}<X4S!it1f#$C@Qx6MtbF~w?Q^9R=@Vv%Vvo5^}ulX
zlJ+OUcSq(9pI{Y+4k-v4XAeoP2_;*~3qQYTPUwCA(L`@9+1rPp%%NlZ#oV-rZGEk>
zN)IPvdExaS?3oG@g&!Oc-6}G54&3fNFE-9~@!?oFXx0>{83k($Y#o1Wq>*J*ngW%@
zkFM~Ut>U#%p*Ls}I)A2kSfprpQO2)JXbn0AycU4Lt6|rOtbS5P;Pj%#B?>kJoGy&^
zkD7R|f3z?i>hsJNmqyfc!gVfIjEZcbpmh7)=ucrTU`23t@H!Zv^r#(HpmxBmkdkr0
zWJM-|J4hUGS#$7UP}Xb8*)z$_BsZH(>R5vU%8n)y@f>(L-M;nhN{3RXGc}l8sruG>
zO>pyQXVUpTuP|H9<HVrNTaBG#aArZ&=aY#hww;M>+qP}nwkDp~wrx8T+sP9@v8|nV
zYv1>++O68%`{DGdb8mm?TXpa0?th<OT4h$Ew0y1Hve(5xcY}DA)<9o;W6TE1+){kC
zLgxd#d6N9;c=y;-;CWrSHfC3t2YB|5G4aI`4^Qif%~Ez1mw_JgQe(A%GQbf{^n<nv
zQN7|mOD|jdpvNBWFBUtd7oHGLfXeAxrOhg0VbJNfhLvGG6j*BFDNz(qP%od@wccz{
z#*SP*40ClV@|MWe@gF7#ZX<L>K(sW3*xydMYL%wnEf8l88wnXm4nLs1$VF1F5C=m<
z^0OsOTsTCI{6`A{st_D%kTm&^5=GJIW^Y9UkVbiu{i@sYG83~Ws2;<>qZe*P#G8E-
znL~<9SX5X;dKeQTtz6N(b<u)Vi<(nzNTy|JYv5hDvr@4dbXBjHWETm$fw$z_=MslW
z5!{=RLfkg<oz<`l%`)C|@Xn@-cZ8_j_1cDhIp~%fAt8i}{{T$N(KNc$wl0=5T-G1k
zwffSaqC%A{3A9np#WE!gzw-3^?rNX*59yGs6a1Q;{1wzfE+smA=UcBNVn=a5aS)I+
zNEsn`#WO#$Uxo3^cH0_T%*7^hGX4Srn$wXMSB2)N+w3fa;s-u`c?{XdBA)@CYJ{<u
zpZ=Dfhl~4x1}KmpqA&f2NQ}^;44afy7D-?_<6lR`Nd71D`)_>r))Mh6VdCMgMcO#W
zmlgCpAM%=<uT+z{TwyGtHqSFQctMcQj*>GCZR~HrO(EF7dpp1UIy|O*d`jiF?{_kL
z1iLIm-L>4YyV1XBb&_g~0#eCdAnMD8i*VTrp|`PkKI|1gfG%-7F4~ly&yMp6J@*j^
zgf%n|udr@K609@35ia==-(d&*d}L_dE}ZIJ4*uIfC2j>*fw}99)|254Hj4T&b3Rv#
z0$21kaI*T-bA#ZnQ`R-QX|8A3&U@YXWKfAy0>@^B*~B#zv2wIgjsurBM#+4jTPdC_
z2>zH!lg84RpfJejhbqpwUihLt$mrnM#k!Zwb9I)v9bL!X8q?eJcfyu>K&S8F+K3wz
z&9wRHP<(CyMfQ7L{*N7ws%>_QU${8E9;Y1_51SC~FOwW|5AY0mFUQdvx0B*=RFe@5
z8`tuwWr;T)>lFQ%7KD;nSlchSy0N`u<@yHKTzdR0DGDiyDVD6d(lsUa1z(;68z8@>
z3bLPtSQquUnQ!nMxj5FXSXI-#d;V&v^wf&W8PO&<Y5tU%Bv_uC6GD?7-{vCg-JvlR
z761G*^7I(fi}@I}))4VqR9L*)l~PvRfH`sA6lDwrKe@w=WN9xbr@i=4j4O!Xr0V9C
zx;AbJO;q=4d<cT=Pvj>0s}Oh?TMy`5Ow!K#9=gNsf>B1mqqc`#*k+b^Ux~g)Sd(nm
z$5~c5?)IWe*|rJdwI;g^4V#6z`I*J)kXp@d*1Ee)XS0j_>tP_1(oAz4)XHck^{Fg{
zie54eQLKMM6jii_f()4k++#RJ8v)%kOA4IUmLeUDx@D=_6YtP)UE4eUGU}LmBMu!&
zT7r>6(6m8f?%+oSHAYpGAB%lSSNV9)f}ZZhSDM95%IDZIpR4m_F|>g1^ZSC13-!Ta
z-q;F6=$JOw-XwGt$9C(v$8^b!qwfRI)A+&i)b!aeI;-lLE~8HoK%MCBvKUR1CY8r(
z`m{Fiw=l*xz{E<02Z?w4-{XIyUQ<?g{Epg-C&jb4{8&x(-QkleOubghF+tMGgzoQ8
zt{R`dn7d<PQ0Rh8Id>C*D)}wPoQ$Go1EL*$TMoB6D5=ANd~KUtR;v!IxSJN+jziV|
zmS!+_d%q7SKA*o(Wc3?OsotPuLo|Q3lkd7rk56#)xw<@NuWR=0$Fj*tjV_0DfbnvG
zyBwIM=Pwyqi-q7hJm3~_Q3PQPi0d=`%7TrQ<*K}ZdX7op#|xOXc|VtU!aK#*`rgWE
zGC$RqZIx3tuxO3II@?ky=`?k#cmQ)xwDVH2P*AW~bk<R6AP|>DdjC6o@PHM(I8eC5
z8I&o#Ev{7R3FC&q{x{q#q1_uPteoE)z%kk|3)1)+%QR81$CeQ#vJyHUzr9c(yH*S;
zXHLZdSwyZ2FY-5u!p3V)G=fi)m>%RoZb#D%+YQ&%(PgdS4gXT#p({<LlKRpqKy{1r
z$<~Lg+*`F8CQensZmlcp(Hf6C`iCgJ4nMVe$JCm#{gbeozfw{}U#ZVVZn#$jxyIMV
zDdmRtM>qULZMb`r%^z-PN@ZHb(2E7iv4!K0)6>CNc(zsDhH6!AvTZT6rmJPP_DWbA
z<{-5uZf<k@JBz={U!h<PJ53kFb4e4XoOaO+D(THTb0e;Zd|MBh+VF-$I~P)c#XK#-
zZ<mef9fgU}SqtiFM&_;r#RP=wFJ@ouAK)>0^$XDPj8qJcJ-r1G=wU7Mmj%QoY9+Cm
zchaL}2pl7Ue5Miam&AHWELLunG}Nr4fjwI+!$>&!F36<1!w`^^vBS#M7O*wtpkhb~
zEvWUsQ{$fY?5Z6jlTxrWIZ*40yeg~qvSdZlw3RHZ?DYe#mEFCqeAIk=soNfQ9;c^M
zxx={MY5G0Nt;8gaG`^j<Hr2vw)7%;qu9Y^GaB8kVx-0qkD{D&ZWUZij?sSs{8@mfM
z?yOAIUYp%6r*1wB=T@g$>$24K&1CQYUVIAFsI4tYsRF@FEPdGmIC~zQRn?X4RF=L}
zl@4f-N7CE;^LI?Jm*dDB6YfEailXZa(=H}RB7Oo(tBBQu5Q|j`4MiDnWA=4TtMFR}
zMt*{0eRU)3hU&l-s(TSv=c|cD)S3>473l<nfa{2(N369(43;+vg^6rGVr;7OvLXg{
z7mV1^23oazmQacClz0H22F<g#bl2qj-lHp>@#AB`e`g_X_5Y#im(eBKSc#gnwTp&~
zlF!RU3z|d$#`<YY=lATiFXPNUGcMLTC$$<S|3YAPBgmUo8S7T9&Tk_2{$7hp73ha-
z+r73Ae7>ZKws~>EdQ0&?#A_%mdDaM355}(EG)PU;IQD=d;9m%u2vb%`y+?bO5_m`8
zIV$y4{W($SWX(qM%LY!3X6gqGKBN#%7!zxm^O`try(?0&7mbvBgjZq2pOqoTcsVT-
z&7z#6kAgeLNQ7mu3sVjL(hw&a8f|c6pk0G8A+D9}WR#wrp%BJ4oVNaL50q?waq3Ru
zjIZV!x-p53+rR10fh#AXu=$cFzYbzK`KgI{?H3}W4@@;m@x+7P@!|~z!W~E_Aq(sf
z+EkvGKl!ZWHH+dca#Faj9VQk6x}J_9hib5d7S58hx&31bZCBjU==_BZ-a9(jqxo?e
zp63aJgUoMKgC5w{Uik1&YM(d!xravA`p>3$!Mft4X}qm>=9kA`7KHEje0f9Y41r|`
zxjx4SSs1bwYiue4z*ovXTXY$Lp+*zL`iDGXa0ABvah3sSy!4qSvL<u@JbDlO)<nHB
zw!&&$#1=XooJvD-QC;z=9bB6;?(`tf`WJ6DZ0yIuL?zYbDwF2T{X|tkr0pr}R210>
zi4oE93d9LC*i5>_a_+(tc$zzf@x10>&N0em3BhB#c6tT=^LWnn*6%L>WKwNc)t+rQ
zkvX0nkc1p}+fPDKlgnqO9))~2p-lM*`z|BV$i-YEE}aSNO5b-3KN@q}DT4K_e8v@J
zcLrrGHc51`i^5~-k|M!FRatDw)EcxQZ_+9#A36He4}Vxf4U7Y~&V>G!-fxDO-rHqT
z49hO&!@6W1nW-*_a65r-gHijG7F%WJ&PnDs4N6qIG_BK1dj2Ij$ls2GK=nD86DlE}
z)ch#Ma*jpZxhi_$I$FNdDtsm{(_*Kc?$L#rFgvNyqE_m8fvOEKtffn6<|f~ZUFvqm
z)b^(V^&w#d3JKzS(pSqET;bRPbt9iW%8Mcp$(^51!Dc4_W$#ZX+`eD*3W!IIiy+2l
zD?Td@N0H288#Eot5>7@&Mh!*DRkrcz+R6#ivD<e^bUOZnFK<-~IuGk<j~LMe>OeX$
z)r)yslFRGsKoOETT0CzL#$Jp0YU$Am4w@A6o}`NGmU0W;>aj3~KVNevfj`oz9VcEu
zmN1ni_8b=S$d9fU$xOiXxBPV?NrQfa>+JujpvU(BTkFc>9Ve7{^%xEVZFYmkgiY&j
zF)B|@7A?`Hw_iK|4j~sqdvFsUeY?8O0~PTv$~ZcgHMsBHX89__fSgS@o_2p`JIv@^
z`K)BP)XgRa|6S1?fC@WRh3PH4+TVd?V~LjU6~amUI6>4ADv_EatsJgD8`DD_XAqUO
z%F6$^p%QDu9t|r5+m6z#o3+RuUS|I$>;3Wj7Z@63K<~Sn$mCiBUATtF_1hleo)I?u
z2b!c*o0P!UInl@<>?5-xXl44EbtHN8Yj7r+J6whffhCiU9Q1rvT!eE<Slu|;b|gBf
zhh%&}_+Qi1Eq|e!+o$kZj*yWofdC>6qqxD&WC{NmYTtXg0En8yr=}tO&trS7RpmF}
zm4iOSkheF&p*0^;{Kzkz%|K8Q{Z5Ub0pn818f8dO2Z(;g6L=R>%s*bN?Ecy!x04*X
zJ~yLj(YU3t@v#Ih+f8G6|K>o6oThpgg;KcB7u{-|Z!0-I?DD~R=h7DTUM}}~*L?x2
z#~f`_w99r|T!csB9MikdVOx{FE@#Ibd7vzPR;Uc0M@=0Z&#zhLW&yD5f8!s$-yg}D
z`15IuLN;VTcpeL^5P&cy)Em1tby%qDy_X$!o4H_6GX?W0sU5{Gp(~6Tgd-2JlHS6z
zq0oHM78<Rs>NAiE$jba(d6!?1zqlIe{F6@c)m?u52=}_ihpo4lLROP&QO;Sy<IPR<
zlO*k(++1$&+-1*3h=Y0`m3fV&$I*XRJh+Ft-hKl5$u&$RWoRZT7#P42(AHiPS29jH
zFO5ijhXD0Ta`g`+1+!}pWs6OdDtdLXWEYFyaYkN)@cXFP?2LJnek)|BO1HHHg@~?-
zb9)(GT-={5T+cBe(~@1T_EmjXxnKNR$0P1{z*Pwe*}ouyUyB}FlR-tXAA2*l5_a<I
zTlu(dGnrkDJZvutiI^o{azE`&1;0*EpVD`Xc^DzXxfR~%7?OR~l1&ARkd^dJ&Jq6{
zm!HFipSunb4}s?4GL1}R(aQJ%jqDKkODH_4XWjTDu2G6qpG%rZ|2W<u`#%uIh}zU*
z29>^|q?rb-fC3u?Hum6}s)Tmt{n3h{6<NFSyavy-hrR1oyLXUwdxPhR1|AB$c6#=j
z%2rVSsNo{%Q?gUBQ;P+L7%{eKG5VpHnGqNJv{ufIG<O8(7T03@wC^9H1fED}J<hK;
zxVfKi8z;qi4Aunm8$1M4O3D}Zf1^pmc`EWya1{#K!}KMHCXqVCyus#Q5udbr6R$0L
z^U3GW)ezl;8;ipmA2cHC6Q%>Sd{7)xQHHS!S%gy8ZU&)D*t)a|wNOZ$`f=!i|Ni>o
z!3?37a%L9klEJSXt3OyDo8)`&^$AeAA6X_>bdmEw?6{i}Yo5Di2$~{3=t~y}yxZp4
zxoj2h!xhm=u&n(4v;?VJRf(n+^c1LimCvDbfEe!M*<4ZLuIQS(aD_^ClPjaT<DlWy
zC|bo(S2YP9Sz_tK?sm(U<FL)xIBLYI^CL^C(*+i4E7Eie->0y2u{p+(<*hh?%h%(_
zK#dOnhyax5Z8}}xp2j=G<cV&=vpa>*;58Nz;x)LbTgGUW>?McY-p>E25LQQBjC%U>
zM%^=QTm=pXCbK=zY1vHA*;G3|)tJCu9-V8Dr{89Jn`!D*yp+F`t|$BthDSB>Rs2s+
zZPgOX!V$mKC-+a(zw>0(LJ;D=ruj%HIB|Rsy+T_+hf_6Qjdn-4M(g+BX!QLU&dYob
zTY(fG%8A@n(HO;B4(^NR6WB5S^L;1hZ~gO@f7(dGGtW<2Ykj(DLA1sfQ%L&WP`<%{
z0Yc0O)&&#mvRFbG95)zsGQIadoZmYjTYgj_KWb;&l2R{7DSjeQr!0QTl*B?8;c7BP
z720x2N={`-XZ_B*VPy(!#u6j8@Cpe)il?1c<5QdFlVbxmm!4whdzVV6-<=bm@JUPv
z*na4<Yzi9$*r%Ae%WbZpWDZJcRhrstrds5#-z7h=0rI#Tu?dD6Y>&(xb8K}*;B3G0
z%6Yo^-@om)2Obx`rMD+hQ@<ZO4FWy`%8ozJYf0}Lb>DkCi#iSk>NwusJ*@e>N22Dx
zonqnruw*?;pna+wO2w5>%jvD@TavZq^rY-c><itMe9Yo8^H((t(TdG%JA6%M{zywV
z8(+w#yGTtRUIZ%l-0m<^m4QQ+A<lf$JwNY^!NaWcs8wFbQFm2}lu#4Ut2R&RwV(5b
zVV{Q0!k>HB6k+N8O+$ApOAu5)oZd-O*-2pwt^oc0$s$ehCgF^23VTTP8AltR8*&y@
zX{3Sf@nyAAuLnCzB98C!h)-v<nqZtF%`JMB<vh<M6$N}vt)ifphSp0Crqg-%eT1k$
z2~Ouuwk~2P@p>0ObGJrxV|e`eXmX}?F@SmP`Pkq)tk}a4{#7otu~VQ+i4YY*KcJ@`
zf=7@mnTkFSK1|$ss=)5_=PlK_x8`Huw8yDd!aYt?fK&#)0<(F|iDfE1n>?v01h44d
z2Wq#&*Oc4T9$$*Q3xl2jJBJW?`AoP)+xs`TvEV5j`ClET-h+<Z=qvvNgVJ#YFo}5n
z`ZI`+(B;DRCCe6^JpIRhr5iBcX|ziZR=woJOH@R|*+IP`@Ei}rqr$YYPb`-S@Hl-}
zhp|4{Ki@xRBi-<+)P)ah!*S$m65P5yNoP>hXJDtW*g>m$_rKTtyg+W9LQRHvN%fB<
zwg}ZR<scTQNN1lj)Y8oiyw-FG`lCidyGWl5J!Pn*pA1y&1@qXw??g|t(@&U!i{|J)
zFZm$E^$dv=FMPftAMWBgviTYD1M@Bqh~>Z_z`aN8%2ugfmIWXlrk?}X-m{v@I0SmU
z?iT@oLMxczO-(N~wV}#1bz81VH8upLTQ6Ex%2I~l2R1@ozexcHh$M1aACKc?DwbV6
z?puFBKYF`#L7U_f@;ZH~c+gu4LMXE5s+W=Y52u5qh4Uh-5;6tsMM^f=<!hn!f-KPY
z5APD|5vS8nBLCy#`=z(G2qze|M!^#4OQ7b{16=Hvg-+>?L6NdpqBO*+v+=?4;;Qq<
zO5d?>(xm&yk4(g$neRl&W~{Q=V!I+cu?a`!Z~|M~2Ku1RTp*it${|M_{{1}^6aP|l
zqsXiKYe5wp))f_G!x%wU?|-rYF0@+M<<lxuIWyz}LrPE5>qQ{w`ezR;XuXcRGlEj-
zJrJhYv9mija`6^MNF&d{{o`tFl^$KT>>nNyfjEyKRK%14g@<aYAYb#(uz+XDl@E_<
zWxRlTg?qjcdYJoiK4*9JcU9lJ-MX`rIB>VrweM}>od3JkU`wdw154l}2<q@8Uy+T{
zU*6}I0uoV|+rdEBJEfo#>Th+A32y-zT&N$i4k5(th4d*~>pKcBZ#rz!x<SxE+WxAS
zGCOG};Ton*vURb)cu!c3tShkP9At8$)M-tAW@A;<c_`GU?)Nd#=`nZ<)T1Y{SS!dY
zHvqJPapz{(nP}%!6my<4_;G5Xpg!JG!$=ENC(jZ1qc_fpe%>)e$@xayog3zro17Sh
z4_m2sCTc}db1WZ}+>C^~bgj^j@#$yP3Z~^!XR%ObVf`HpgoE0R&nHeFd-44E0C)B<
zjVM_AP8$n)6f>P&1`?WA(BeGpbf2V74}Y!Uf?|PUQ4lD?oU0N<nKoywdBfr~6iRL)
zG`B^p5H2FDQjK~QHPxc<cu4*x`P<3MT^Sw|NQ%A#6?F_8X8wXrv-+VIt#(c@gXZ{;
zGWE%JvH1K5X#q65uwZ$b<nD)1i$QA%+xd^To89>cUpT*pv2jcr5rgVW7ji>ZjPw{=
z09}|c@xBHM&xf|1<oV(oTW0-eA5Iw!8l;nSDdnMU7T3T9f*`DglGZ~ZmjZK!9(R+q
z=0?66n4+?AT)C<j{;iXas&64JQx{o@1v7fIhW3(hE`DG;>h__r<;lbOq+6kp6z!Rh
zak@|q(|V<7k>YuHHcGvBDwHp&CV!jj&QYy!+`+-0x3f`5kH5Jm@?lXu)|*E87xMO%
z>FoZr@B^JP8~Gu<ZkjPjmT15Iy!a&Ng7Yj%k1-0)u#!iGVpI=iEhcY0FlCJ{(kip3
z<I9+g03V*)h|c!}@Q_*3F|YToAG~S3<ZMcBW5ZO2aedY77!0g(SyN<d_<6}_77hum
z4%W0_Fxv1Ya#{V_FI$g!j*#Iw$B(j>GhZte780f!AgQHB6E|7KC&ecmY$HJ=?<?i%
z;&!mB=)IW9+}2tMmd6{-C06a&7cY(MmD5>OPON5Sa@+OxDNJpI!mhe8s!VE8o>vVW
zDLkZzK&(EdtJ0jn5oAfUS{utL<D}uxdBnMR#IR4vP*jv3(Vej8_wP}GOu0xZdq_I;
zn=Z*kaHldGRa+1srs&)yC{ou*OCbH_=+dbL*l|Z_wD2?j_5OUE-Hv&S)$3j5rl!cA
zfhF+db!5iPl<D#=fFKy0KyC4B7csu7)VnLqt#{9FI<A*JWN}q2PYC$G1;Om~`_*p!
zm2)oA%l75_%XpAjfTijyI8Oy?kn7K@R%FWZ1bxWIPVuS%^SOFfX~~P)&9;%F$8$dq
zDTpgUIy;=^)dA&_lY+vOPm0WW+GPBe{b@=jG;;k(Q5ZxTrs_ooz&to$8ltdrVs(D)
z9)fUC+5joms$O551Tg;|(GbK&z&j_mwh((Vn7u1A-<yy(#0Xx<COsyIb`-LLXA&CG
z2olmxVh%rMU8F&;eZ+KS2ZF!Q{BEb8iH&KxiuoF~eenhFAWe9&N%d)0pkv^&``ju9
za|fFY=Xb<_SnFW^fZj{f>;JK0sQ9pnt@r9g)paR(*m;RNw3oHo>scyh;qdi&Ueddl
z6GS9FX$2Zt9Q#Ft!&^9nF`~z6N&}1Y7ll7eF@O<l+2q$|_K|m<2g6OsU%fuQPZvR&
zt)?_y);~`@bUk2IIluBGQ#`g<!Bfpg#l)<xL6JOd4uY>LJAM;m#1#b5V5wHn!P~I~
zp&O_>{Rt=6$rYknGe4aEnVE3~wisT{wlYUs4@%kAf}h6UL2F>AF>eSn7yL2`k>lP~
z%H?`FodpY9Am%XZ!pTal5IgAe9$SakZJWAS=1>70+bL@;zRTdLKh!h!728;-pHM)K
z60cIB$O#o2j?VvrHYY?L*fGV;J-r?TNu-{{A;NM?EXr;Qf(tPM`~g)%tT~3{>%}b=
z)?h%!QB*V!WnrT?M6PO=WwHSLR98s(rD%XQ#bUEeT~G4*VNlFa?7$!3O91;&iIkN7
z4S@yKIgtF1iZ#i!8Q}au@sDx<s>y#CzfiWoQ1VQ6D%sT)gYUK2RL1}Qe!8lCUuDg@
z(Dkh<Xu10``eYyN_Eb~W%HV(8FZ<$kE0SWAwr-@>z*?kX6*3Sk=%0&W8qjfiitY7#
zS|aE%cYJtU`_jp(igde#%Q0SLQgHV6<c56C#kv2ImtThIc)m~O8IK1<`s-=*`B=32
z;JSm>Kgo4@x4)PiBZc>|)gs{YO~G9@{A!&?KkZR!982U0^cF{&Z~jzY+)mifl<-j`
z3We66@JaEvr^H1E^Q}NE;&IrVrn;#A(Hev$iT;;B456MqC0l;q(JnHxKqV!o2im)A
z2@3>zB-7iKj^xjBf{+1#SYN=i?KcPZ2Ns6FMfH!ee44xf3CeS%(YX(HNWUx{#yYCa
zz0rDBbeKh<B6OSGP~*V0oTYu6;gP66C2pFbS89*HUZ~Vt!Rv?5@;OFAVy8u``f<zx
zQ}A3HV0Fqm8rCzA-}x~f1zWF{!R|O&r@>o@BIyFSo(sxqv}@??{kUsl5f^7tzPz_U
z?(cqu9~GEdb`U4#LBWre^vx_IMB6MX=p1m@ti1h`5b0?Fe^C8^dxa@-eZlGi!!%Wh
z>TnMHLOBBY%y-6fA3afIUZ4SAWIm!+-54175ZeevSF_&xQWQo9AMubGn@NY^3m#m$
zM_7UIEgLIF;teZh$-lEdt;wfG-snS0F_*K%JaU=W<kx7kP{99*hS}I&TrN+6N!sJa
zQQqw;w9wEcblV@iHn<Pc58?FMU|BaEGZm3lFABk!6itDSFiQ=Zgc3>48o|g5E37Fl
zexM%cm+P?W<hy)yz1tNiVbQ1Gf}2hVIaC~Cvs$qvQQQ`n-4rD6j36C{7wj=`S{2}8
zh%g)9`TD4KDBF?4J-a0RT%D-jaSeTXWYTIQcydJKx0{r|pDve8S|@OP^X*!$Pg1EB
z^^&gw)`ujo<2Br!3_?SQP)K;M=jaztDEo0!&^RWp#os0=B6PaE;N-Y}@0AxMCvfSB
zu(A&==PmRGn1;vQ0p}OB>*e@%rt&(-egFq1_9CjEq)o>TL6j#~txmn$UL`Zl#-5UR
z*Z~btbX}lpktV87Kn2416yyrcm7^=zmeiI+mQerEZL5}imL!(2AL7;^%Me1%B#m%%
z_Vc}PqOqDUu3@tHTtq{Ol!MihHOQ1rnFetv?)h@vlw&9v43<EN&Oo@3E4DfzR@zXd
z(uQGTNIJ=4nhsZZ3K>&Ix8ndQrASFZYsLvQa=k&x5{9vkjk<6^pWHP87tNU<<#jYv
znbf(9aSU~ix?wq%gfg$xG5)z_n3hZzD7^msX3Hfi57UBWBt(qgCYjsFr~$B(UaklT
zGvK;~>r*jyCsP=hU>vuZo*4}lZ2tB?E#}T`S?wGLf8*?6&X>;<+dwZBNo|=5OQa&R
zqKgRQM7WHziA-WDXc_lfJJdi<y>HfY^0~_ymDBepGuYnQZ$AU;_cmAMqMRnoqn|IN
za~5cmttM`bMh{(>n++McGkmb4wQi_r&0YN68-%W1mvG?TRPjH;nShV&IOWU&^E6^i
zN9yQlA(pw=hwCN^d^ovaLCC^_V3`F4scH>)@R}j$Krd1guI5t9g8NbUw!nfWY|Giz
zU^SSQxYY<*gGv!08%d{c{u0<wxP{f3yLB&Vy33ATI)SMfDT<gsykW?MKvn5q>CEmC
zqok%mO-#iVmW;4C=~~2oe2uyG*T##|jMb)Jk@DM7S%|93wgz14Twi~sZ8ioGGkWbp
z3yORQbnWRE3);vfRE5%n84Fj<LtU2535PUcd}&QeFuBj>ZFsWX_(j~acSh&Lb9Um+
zT(o7eA1e2gH68;%RAKj8K|nw}vrP<54Gj&Ac=`5x#Y}norZph#-64_MjeS>sihqB9
z=LIGGfge6HG&BY|0|7Dp1-ts6eN0|v`}_MRZU}#JVq*uAj0alLfcU^b%>26_t1e@M
zCWKV$^}rjGMH`OJ2Cgn8n@k&34ir1CC+LYJfQuyA7b6L#aIyZt{z4om>XYuSQDaf#
z+igy&mf^4L>g?QEPMTV@*f)4fq<j@qT?p878)&}aQ&{;y;UmCn;_H^npCN1HfmM5;
zN8>u{ah)-Rb*R5{YA;H^=x4L}?7bWTJM#gafp<|CtL8URQHJHfb(q8bfIkzRjPi8E
zbMR8VCO%i53l-dWqL7W)!85X@iGZepxh#AXr{ft}G->vWSuNRN5^Sw(N`&AoGqn9r
zW?ij-z<zc&G*_dhw-1U(6n`GH0!!?sSW6!D=irB^*<E`YmJV1S-(_;Dhgc1_OO4rC
zg%q2^=uocmcEp-QcHQt@7@vyphhi6`3(AbI24O7C%XlY74D>1>BhXKWad5}>P%oBA
zee$ustjIrTy}3#J#9{C~Y)5W=Y{|Lsq2}=SZQL~v=p;qh+u$8)mV&;8?DObZjaP?d
zlSB6~;@#)mi!BFgbrwVU_U8reVvKW{6N?`>pSwu^2S(U{NFC~>B%(N9H}Y74d)g)3
zZJyx0)xE9r9{sy>F>AL-$z3zT{X(7kOKIbUt*QE8b(Ac`mrjq_)4BW?`0gpA#!?^R
zkwYi?Y|@*RgA1-ktcN#ujrZ5qnNnSaRw&rL)@L3|>%ge;r`OcE3{eEXz}`L0uWR9$
zs+ecrFX_+T8gJ`TsFpW^kRx`87d^oqHBq`g#R&IletSSyj9WiXNXv@G^Ckpvi9n&I
z4$vcKCa%>x*Oa_^sk>$?m=jV<eMfxt`wX$C+)W^r;@mE#EAT#X<{EyA;<)jHi4*p7
z{E5HWBjD*x<YOpP*Stfnw9CY=;QGa%Z6<)=^%>1}dKxp*&ViPG*)QjrQ0uzjuF1Jv
zXGJC_;B;)tT=x;mtF7=;xK9G%(raUopur&}_j*-Cr>VT}>l7Yvy|L{Je$yw0GAkws
z({puNd#LNzjcUrfjpn^`&F~20d+V89lIo*6Yk@bmJ9{8c-w}?4V>K=O$21DbnD_uG
zx`U<3DoZZ>w^<D7Y6ojtjodijApr%eGh#<Xf>kZ?h1vH@z<Kub>sRmWeMk51_3XW$
z{6b#<!8a&VV#QAkN%kM6l3~F@xvHG1)MqfYk|Pq*WTQWxWE%DV!e=Mq6&5dml`umq
zYwb+lUP)?=jVOCLQ_mF%m#R9EP$p2%*EOc8mSi7_=Bjk6x;3lP{T!BBK0TT8hQG7M
zfO4!9V@SgWk#9LD;m%do!<<OL(r90XO+K@bv45}y;qbWIQb~|NjF(vOd2j$CdiD|`
ztlf(?ok&;wlQIugK=btgjz+pTT6*@*b7<L)JQf)R<ykn{MatsA^5bU7E4cL8PEL8y
z4*%86l=KH$LG#~$-B^$4(|ErpT`S~(yg(^-xiKU#v=n&YwnHh?B)qg<v>f#CIbAjt
z6P>vW21pQAs1%~f%33&g=J&z!b^+caq?CVV3j<cs@%3&iaCy6!Lav70EP4wrp7YHW
zd@sbdcV3pD4BixZ;A)K=Pi1rkKCUF<<13Kk;y@1(`^SR9Ky@L*KxPI2s#ZVQBIaDM
zwjv7rIGeD9c99)%pxYEG1fo7>*9fQAU+`x8@}IG0l)>+R6Fti~k1A0lx}g3RIM5<g
z*z%ZP06%8>(;_7glACnP7_}~@6adqq0^mZA6_}&IxmpA;=6qmVEhr4nnmS-`F-<Xr
z_pE2fYrc#$V!-BUt{8Krxc~(svN>5tm1q#+j|T$?PMrAf4f?AwxMiXNosq8}vUMXb
zO`+a0>pD>$lj&N#?|pz-XI2J@AsF-4AGtIctJG(tjw|X1J|rzDx6bg_HqON@584r<
zZc|Lq_EOpBkDkrB*Ct?F95?v3fxF_~cBU9v>67Lk8?xJUOB=z2I$RMtdpWW@?E7s4
zRz7b!7l9HmnI44>nA{#J4u~vU5rpqI)&d{OrzugpP&YRq+=%-DI2Ppa{1HI6NbZOV
z7w~^1K$(ciykWeO6D3!?kO0V*xT0^)d!C>bR9=OJ1JZMfd0!X>`KADzz8Szf_T3C~
znXIct;U1pN3BZlOVRmTmN3U+a1V(og!1vEuG_X4~b@D>*III1~NmaGMP};d=`%K4p
z_yPRB1M`8-@OGgG!g<>(#&uv95$5idQ|kA=?2g4XXfLnm;xA{ydwjlu2#OnDX@CBm
z6P0spi+!#h{kf(<hZ2xDhWTfd9frMcnCUuAA3a@hbh9YiM5;H*Qq5l3Teu7qFf-{?
zFj!M*t_e;wNE$O~pYh~9YI<C{gK>v3&y2fMW^`Xc_EpyySuzem+avva!P373*kzO%
zl_qADVt-W;Q=It8RE7v|s-@)V&Q^_Q!@4(ySBYEcx6a~{oy=xa2p%K;wjYhRLrr=r
z77@>iBZKV3){V2?f=e;$Lo@GGbC8v0RKa-^SP_sOL=)`tW?($rhr}C{%F=MY@l1lx
zHMwQV;v%(cmeSo`3ck-X3-R*wmleSZnow{;6?L)nx(bQ>1kkf=1LpV?$&=d&9N#JN
zkT#PDdb&ZFdgd2!uipR;g!@BtTbKl&Yq0T2rwVmnRLo$2S7<LVR5Qo|GscYw(+M~;
z`JqA6@F5E{9PvdTIJaKm%~eOj=vIgF?@PE0r$f;@ym<aAYL=jG=qZ;UEV+?&N#*Z+
zw@G{K8K0DQWq@5(e~BiJ*e$}0^9PQ=U0K%Y;Z3a<9Fe~D>@2RsvD@tE+Kwr2f|e81
zE+oC^^0xGLvMDEMoV3PPxY<;up%>MRqbW0p9*sgXbiaTc%6nWs6u>0DDT?#%zDM^<
zh)WBOgN6$R%B>l^?#f*+M$b90FYcN2Lvr5_mcU-jgn7qtHvRI#VQd#aI|3gl6Qly;
z=ds|hid)~BrR{SQz<~EW=pexLp5a05jgbFJ^ock~2EP;0Z}f&|#DG67vF97}hW)@h
zW2^9wR74!uvp97M*E8dsI<v1te)7os!Jx<jt6PlW5!NBvGwIk7g}6FC89oO8WdAm?
z6}(FKaMUjl!Qz(1?*a6R*!9>;kB;w{2;6uscO&$Bo==Vl=lyuYwL=8lCv-==e5ZFR
zy!huiUgZs5Qt=-RU1QtKdIbboKn$bhhxrV3AJTRgj%B^?yM<TZCbrBphVh!hBBsze
zOSk@m<v_2<+->ef*`D&QH_A62X}V0M)&MAU{=7&Be%INeD`-&=u2<GJE*F|r-FJ<W
zuV)qz>8+3{x3agKlm6|5oa`0x?IBu!8}8&wv||)m$zgk@UH3RJ<@01ORv*&UQkbKZ
zZfy{tOt4F&Jx3=#pY~UA&gvR}OT30%#Xtzm^tUHcX(ijzM!xP7WCy{w+cyKNn2&qT
zcNFx8dVwhWAp8I`>&bKdul$mGigY4>2IPmV;MC7hI5-4DelQSxN>I6fxnfGvt~II<
z+GyW)v7Ak@;k<Hpf{^Gy^mcPHMli>wz^R<2@y`;CGj<-SRPrt(_rwGn1Hl`JVH!fg
zZp`inHE_ZK2MQC^24OkLV-AbskJp)Xi26(3u#nfWG2BUnzb~fiV$i#^n2v}7beKx+
z1lsxor7CUR((g;o&<xuasjH5wehyyv9$O5llb(RD`tBf!ut2TseQu9B+0kr#+r1pK
zv^IVndH_?e4!!ZD6I~qu+HKk^<!Lol<^|Z@(j9K+VeW<hyp8y;|CN7BcMxXSkGKTm
zP;4~ghq;LGekNgABB`=saO7DCcclS@r@cR5a4+aG`Wfp|wTU)Y__yS73-hugJ-rxX
zd!kW`jK9r|+Zvm$e;YC)9aEx8n=8wiibmj^OJOneFNw-99Y$$q0u8B~T*u|2Qwc_^
ziA?F6O&xfDs$FgNV{eo%z9Xq!Z8YZqe#kjT^DN<5TzWfd+BMryU`~ry`E|vdh^vXW
zyy^w<S@Qtu8kaD$Wl~10NS?aE>WoEq=slB!NlQ#ikGxR3$aC@ytiRrm4@;Gf`0*F6
z2Rn6_6BSmEXX&E2NVFqL?KGOhnypc<6EAf|rP`0X;wmy!tPo7orDiH<Qsye={HQRB
zrcEVI2D>VlDfB8)wZs14g`Y`>YFE8D+t!j+#PKjUg{YS{_IVdIx7*Li&5~fuqR0}m
zzAGQmTp66he@C8Tn*nY3D&PF|^*Q6OM^3**Z@4PFG*A}3z6qH=LB+^39&TZ0qt}o<
zv;8z6To1+@-PAISDX=w5+oqD&QnP6l3^Ou%8n;{7Qt4ue7$>LxUGW)DOnrV+Q}yu~
zmBml8#~&{K@(ZNfz1w~c8dOxWpM3%^IG728XeIX2dU>7nZYF1`OEnd^%55d~kl?|r
zrbMt@<3mVj`9Fske-zcjr4GSpLgNmM)<fIEWDOkGL)b#=46M|{cSE;^T^jnVfx3t0
z7+S1BxQA^UdaQvxh4vUatU*16F=0iZBp3XEOjitpP7nPw4B!Mo2n_)ka)PT5pvexw
zO$`<}V&Nf3^#5^0!-F5|Z*auJL!{{c?TC^MSJq$Qh?9+A(VyXnkqv*+-=P?C-yiI4
z&H5;A4URJh4nb!r0%fZSujiN#<>xpM!UhllAr@tXx~~U`uE&^(fCUJ*|D+F>0Vub_
z(MQk#q}yR?!)*ZC?Fh9IxB&5XX!~#-fO<Q;eFP6cz8&@|+y|iFj(8OT1rYN5Nf0gp
zQ1XN$h@b#SdBWs|TL82?5pp9i0b-ue`r#S?HBXjqh#eS*khUQnK+X-lCr3Bb4(xTv
z^AHpu<c9c#u^W;wD1LAZaBu_tLh1{{|Bv=HJ9q-Pzkzrm=|(UJW*E`{RNb(>aQlMw
zLhlAU40!;$ZunmKKS2C{3Ir1lDFDiDSYEh3e)vQ81se=G0NQRKKM?#80|EsG^8m9q
zm@hOR@LveufdPYkfZZFy7lu+Kq(6+Y*i*&`_Z9e#KVdb8jqnDPbi*f|AZmwW9Zj~t
zIYy=(UABI-4c9o@Y(egZZtlCc^IZk<?8~>aTm^US+qd&v1^Mjjw{u*DyzgVhnLtl!
z3W3R0?}N+l`?m`a1VZf#c`_0NS2@CzIYC<7D)Pc1j{Ulk<b{bJHM!B`MTj3my%FW5
zdgRWHDFak^;^f9z05Uu=a$`>b9hyV;bA#OM^}k_s)<zLF+HtyohKTRL!U&tWF%Xd$
zM}!k6P)sMf+;~htm?yG+Od6oX6I(w{1CZj0t{=M!Xz|3?kLLiydZO;cv;k^7ad+Z8
z06CtRJF(Az9#6uZctk+R3le`!JfP?Wi$6{Qko1DaA3F<Zdcot5X8=UMp!CMn0jgfi
zePMgicf%dVJODhmdN20Ah`pG*5!Yjg0H|A$7b9Qzf1^JVzc+S^`Xcp#=8q!~k~cED
zcXA8+BIb+V7iutC2hg~+d2#!I^hfOr+a0|Ic-;ED_<ewWAq9jAjOGCpZY^G1J|MnO
z0>b)6cL5H!@E`bJ1pi*tu)tp4EyIh(2ksaCchL86z+T_2z>9%2G7^eXCUbHL-jP)#
zjB2qFPJxp4zZG|gn&MbXlZ{aJl4(nqjo{Ye8cUmv@Ey_31@~sYOF^Cm`DT_&;jRVy
zW}ZtSp9TG9j!TjE1*}+=-+xt!Lu4x#z~vVFn+5O%p%#Q(8S#ayETc-T!p%<=xnmH@
zegP%9qvA?UfSTNKab>7LQSRUJr7A#G?pXOU7N9J5^h~J>P`7g4%Ty@`XNgpd&RQkH
z_Marcxm?1}d7_BzP(_efj8)>kSunaeb*2m!DBKxIUn&Ds?u?-?qX9~HM%9+u0JS^g
zYRhne;+?<kOLc(iow4?1JV5!*=&Mp6pnhlkRT&ge$UBmtR062v9Yat?0hIEN$}P13
zYI(=ymSF<LynpMLY5<p)@H1LXAcRUWA>4oAQcgO!-c<^e;jOA<AUqGbB5C^zMP;6O
z?HO~!B<I<$%QFzVTgM%>p@-*WH(wHowq-r4&E}|dwA5}^t$+IJb}32PSEayTxbHfb
z@3pcNI6&mMj$Kyp&X!uIqLzwul`Ztzutj8D`R?w8!<|6o*d9uyG`zcc6acwajBAYE
z;U$>L%BmSps#5EM<@Hlh6oBoq_MJzXmp>dzPu;e9VPITpQ6E)fS5=neh_Mzf|DBY)
z#kE&CI#btGv20oVz$`wm-JF)0Z~Cwwy}$HNx6|Z1(m74tM11X7oZ2WjT8lL<#~9R>
zSih9ljNH6;XSqOo(dsgAQKi9?&xBt_Ofit<?(ODJY}SwvvTVaxY)mWMcDVC_mTx=o
zkkC;VnW$Jkz9@Be$=&|>%fO6p*<nq-z`~17tLm;vU4{G*_1LYl6yH2J?x;$(sOTkB
zwEho~s(y_<Tjzc1E}oT^Z)k|V|D5Dxfdy~0T>q$JkM887nJ=fm-`sDDg`61e8k{}G
z`>9v^#``})6gz_nC!#`fF-pL7zinD_@~BO&Hr&-;HY6hwgPf=E>z}Dv{lVdNssh0F
zy~uE~+JE(Y7O0nMzVfYJdwB@!iqcsR)DDx}4^K}Te(nE4A-r||;ZsxDLNbQEa+z<z
zHRIee=UAQFVy|`Dx^28kRW;%<tl`x%E^fjWUOex(B?y0C@o?$S<IgvAvaazOepK$i
zc-Pds?9kbxJ9PP|d0;zh{j8>mm924D!y}<ZxXG8TL5;Up<C8194uIv^GRCA9Af`Es
zqczIVf62ZR$->qE`j0(cw%8g>VjGXG;^1eHX19qvnK|DWGdK8c;mYF~m^km2)N0G#
z+acU}PYg(|{q}wgT&0F;lYKVrSRjl7lNxi@9^vdHWg?@vcaFqzy6{h%&cHL9i4I0^
zunBdDzvHr9I&{JlzVJ_-=$SEYuwxP7yA?vg4<$dSM|^QS>cupPrVuR(napy9y@iF&
z*m3l)U$td+VLy|BqiP&^Sr`Z9m_Yn-#`>yUkNa}-cG~HjZ7dSkG6IELDI8(8bQPDi
z->SP6)om(@U@EphzTquVyJbk4Yq$<6@~4ehvUCsYYDLX`=Y(f>B2;}2z7bE!i$%n3
zSG^`2y*!wcqk|%&^;%qCdxm+4;CJSFXCtSu;x8C2>3D^aJLB&)eeU{WRiT+Ob&DeR
zb*I`{|G{yg)xF5QO+9pX&p~$!%Ki4k`{t-sMGw{RX&VmCDT&xCq{;E~y>p(<TJ(P<
zHd@bHy*SQ|1)U}Y!`W1$A^2U;M|q|x<a&#xe)SGZvGCLMa^MZV3voO8wc=n-@cq{D
z^@7Zxlcxr&EAiT<$1R=ya&VTe?5cKB+SJ;?BhciTp~O27d9o?zY&~Az<hOBf5<N`U
za5P0`YZc?0bqaE`ubO{}v<ZP@&vr#EJ0?w8@t!6z8H&Tb*{kwJS}&kX#Z-YdX&v}2
zO*O+vFJU&3?8N<tZt2(N9)9yZ+!N_FoED#X+Z%k!Wrg`FLNuKgN>jCZx9f;keo|<~
zil$7BWv7x}^->yY{Ab&M<bEG~_*ww&gPB3t<I6sZp?@G{bpYGyzlG~X@s$SN3ge>C
zA-*>H_b7*h`X`Tzw!zGC_{SwFmVX8BH?Qx_6Fpe6KXXQc5g>dSC)2|FIpOG_Llzjy
zAr$P53h7~iWY=cF1Pr8$`&G+jxo3wPc;~!T87GXG?<5SnD0jz}TahBLT^$)GEXNmS
zTvo5fSW%e6bzGAxBRu$loav+!B)xs7kP;2VL6V&p()C6fr8XsJrcP4kRFKHKlD)mH
zW36##Qqcxkl!!j_8!gW6t=5$C`OF1)2f#OTy04qFwZB$z2q<!mndpgy))(YYil$Kb
z{7QKtIf=tfbC%A53+v=qzRlHJhN4jAB_b&KsZR$W%g{b?f9%19xF&ZF6SO1?E7_SO
z$Y<hk8+Pp&>O;t&twuT<gchV%|C$^Xyeujl&)yN$dANS2iDcI%B@iMW<Bz22+orP`
zkCD$F%tmrnk7*RD6EL7BCKFnK_dfa7kTsD(YF(qX)^_WWp}#KG`k+C`HNNxLJYh`4
zpDjI}R1mNqvS`8AbTv&LaH?XOc;Z*ha5SpZ%hl>~;5c*ENEE=ZfA)zq*8CZ8#0$}|
zor^Y6snM;KG=gJrW{*Ad{?(bJZ<rB*0hvc|zVl~jifx_tLur~gr|$uBAiA%iefOzG
zzjb7{Sud}eJR<J)?8R~$;rtI?PioMwf&<JXY69)!cG+frnONFWiJgVA{i-9Gw+ZyT
zlUZF4{_$J3N4>6$y=Y{*8|KT-!_@pPpp&x8KY|ZxgYgGfzq(Ts9l~Usv<xvcZ!;eZ
z$)6Qgm%G_mzOr(H7N^>*3=Q|~qX4|Ok4XkqnWEbrn~>>AO|v9ZsgUe*QZ5OCj3PM>
z-8;ci^6--vmFzz01Gd}o;Wf#`_5Gks8WA$8zsiy7sNra(XlhjC#pzRGe(!U)Y9_ub
zE1dDNFqVz9dZ2PJmdb)jKQhtg4oy4Nv7?dQtWt_8Wt61MvvAVlsKnHwpsB!F`N_k0
z@iFJx14n6;v6O!r>mnTlW3Ad`5iGU<q=RXoYf0M^|I1-a39F!uY$W;{OnH7Z4TQEB
zb;Iu?o@*@4W^%PV(<ZMQ$3r)&`Dr7jNplMpq|WN99tls(ZmKOJ7#;`*iv5Eb-1O&o
zLP=&YBZLvmAX;cenz!YLte|<yY!|u!s-hZ!DugQfe>7pG)U0YM`u37CmX*QjNW-B-
z!<gu|Vq(5Z$Ofwa>1H4e7ZZ^~5SNzA!WcIu+NT&}ucK{65&jgGHL9m-$4V<C71N4}
zLi_JgnxaC;+Cr1TVooDYWgJEc*BnHW!7_#xp*4zum6DQ_4n|_ZGKLhHGK|EAV+tWQ
zXB>tL|5vc?zk|>Q;#x>%Ldg)s1dM-!%YPP<L`D&bdW#fu{I{VFW&|hh#4YUlznM}Z
zS)oW^IMq)TBwFvP;h*&21BEU!NF<%ag}7=$su2I0|LOm~3=`GQ-{9e*KSW4^1`6Ax
z)zCMaS(!?0Ml(oys1~xg36ja-^s<;WQ;daSj#)-zN`VehU;n?xoT?+WM9n*_YSc|{
z!A)z`yQ1nrStFyf_Uzv|f{<7BQ*Y_j#m?OMM_XkDs~xIoo)WJz*6ZZsoP}<cOb_XM
z`TrxR0X4nQe4Mk=y_o5teJ^jbV>QiF<5k9X{l5jPOl+jaRu*E8bLP8QGBqUD665Mi
zu%~&7yewF+|5wyQ{C>uAM{Am=%FBZ7y81Y0xw|RTL;ZdxN`;*5w3<9;xwt9QRXu6O
SdSQM28?+M|D(2r_;{O0|uQ74}

literal 0
HcmV?d00001

diff --git a/oxAuth/Server/src/main/webapp/fonts/fontawesome-webfont.woff2 b/oxAuth/Server/src/main/webapp/fonts/fontawesome-webfont.woff2
new file mode 100644
index 0000000000000000000000000000000000000000..4d13fc60404b91e398a37200c4a77b645cfd9586
GIT binary patch
literal 77160
zcmV(<K-#}|Pew8T0RR910WD|%4FCWD0*06X0WA&y1Odwc00000000000000000000
z0000#Mn+Uk92y`7U;u@35eN#2nJ9<0SOGQyBm<Rj3ziT71Rw>81_!itTT%&fM`8Do
zgetlXfhX-f>pHa>CezJ5a<?i90vY8R@%CK=bO+o;s&1pQ|NsC0<fJi1+Ya17;MMf|
ze65NU2xgOQl3<%8*pZ<?WLrW}5hN&ERXi&wt++r?&@~?9V1cj>+CKJB5E?t-D3Q@I
zv;Az_{%F*wqQWVk+*x^)@=9sx>ldws&U_`?fwx|)6i0%hGq@6No|Wjj+Lhc2#LbXI
zik@&>S#lthOy5xS4viawbfqcF5t#22r#4c;ULsQqOn&iMQrAORQWXh`G=YxhM*4YN
zTfgWxZlU6?d>wP(yNq!jqfNVxB}>Ww7cSen4lE1$g!lMN&~*PN_7ITCO&u%|6=U~^
zD`NV@*N5j%{d4(V*d&F9*Lp4o^=-wV4E$&&XJX#);dbqZ^8pUYCyEa?qdKs=!}D|N
zZKGn0G1#bWFe1l-8nC}AR*a~P9;0KUBrGsNR8Um3F%kp&^sGD!?K|!B(qItgwkPpO
z4nOg8&Z#<)4^Bj%sQjrANfD$Zj098^i(7$$Vl;{o&HR7r?C&hE&b-&}y`y4mHj%mu
zNlfW!ecOyC;56fuZ7e6t7R&P^z1O9)e^Pe=qGENxwk%7Q3&sYU;&zJz+X!u6Ex^F$
zTu6(Z`;JIR{;Knn>IcTcKbV%&ZSxB`P>8MADLLm#sD>oQy@;IWvGh3j=*Qa5&VIQ&
z#BvplZofSw5gN50lul%1ZW|#duBPzgJG1nxIGMaB*-obI9wC1%7zRoi%C^%k;Mn?+
z?pUuq3@j1^4v?E3B49cgqW>EY2?-#3jqje^;JgycOCcwp0HG~LNR*rji6bO_n_6Fl
zxt$OawF6EyR#iAg$gdotjwKXO)cf75+S~gE2n>cpa0mh<1W_5Hw7c36opP+~qRPFS
z?z(HcYuX#9GugKj(K=EQB_0sAfiipahu*36k{xIzyD2!y5%vK1@c|DQ3Q0^$kT!Po
zBklXM?*0ZWJJ6;!hoDZHGR|mrw+{{o{_lUy{_6}+Pm!l|BNl}Q;&@bv@2Wy(0-c_O
zab6Z9oUWgiKYRW)Vv0%P;3X|rT9E6xVx&Q%6AWJDG0oX-H5vJ?>5A8;PEnm%C;H~y
z%@URb{E<@x+!!CGA#@@j24G?{>Gvg*2lVeVHM;^7(Pnl#tDV)(Y|gCiIh;CbXJ$WV
za+~#V|9GDufDe2U{2(L<AY~Gi91@gT6ez_MBzGuUa#N7#b}O4&*&NT-arRB3>>iu$
z&FbBmZ9gV+TlVF2nNyNeYL2HloUh~eKdpS)>J9Pm#Xd(4%myqFVno%qUa9n|Ua803
z8#-)?GmgDZL7HHzH4B_FHnRat`EXP62|?edFIDRb!q%9yytA|?Ib5`-)rNGqg%GbH
z-}d(Uw;KH$fouQ<g&<H(QnZ?oIc|Uo&0rN06DZ0MK++&cc_~fOWKGHqkQ_DX)T9$g
zC(@Cc9P({bJo@O{aVBfLDO}HcJMJ;X!)^Hon>gEh;fvK+gfZPMGsl{cktu>gD1?zL
z`z7_05U{qkjReFC1qI#x+jpODe!iG=?eIufIBbyAS`i6yq~pK;J!P{R?B6jf<_85Y
z$&N8sKi05v?h+0-IZ#Z-(g8koZ#f{v7%?Dp!<ehXbz`TUk?zDmv-w?16cAGHe_~Gm
zyOMVMleE+ts;DTqB8r1~>%F^s91LTw|BvSLb7Oj@878i9HK*kSp)6{%ZXlv-PQ)RD
zE`x4f_xM$H9{@mn{1`uWwLbR;xgELO9FcMuRbkvnQXmT&j}ZE~*Z9?u0F(1c4Md6G
z%ZpLJy?$`%3V_^=J3F{;`T31Z7#Ad=bomK731~(`S)uLTR8OErP908ueHZaDB4D$q
z{GZri&j-sW%|A#W5to*SAH-ai&E<8<FcVDFwe|5Qwe7mSzRi?SVs33uznJT`-TjTf
z0vJkci$4MZ2%hD0tLFuXFf0x@jCjdH^7{6^LK(;9kw%FS6rW$;8&YXn9r*vZ)P7|n
z6>6{%v3LDwPh%=3Mm7wrS#iOV1$&8oKgshx_jMlowl4ED4$f#L1!t6C1g9p~=ODPt
z5-F*yQZ*RmNQ`~4r~k{Ouxs3@+Z>Q5N}1kIzW_;y+Y`2(U+=Sj1(9)2Vkg!}$DaT~
zSw&5w0~|KUc7%a7st`^}4doR9Pl!$j8b%9FcqlQFIssg|->XC5YmQ@}VmJj+^a&GW
z;TT&?6ewkE94j()E$+}^)|h0Xjx{@?P9)U!BBDsDj}WU<M!Ik7GHIwHirHMVXaqM&
zjP{^BQ$tSztr@tM$dE{&9^yrJAptHQ*XjKsLQ@h$s%IX=orz=P4!PuWD%GcRi6}K~
zls$3A%8F&8`|(+k3nc4YJ`iS3IDm1NjCkrJb_%67b#3nn;2E8;VB1bjElL1f^bkh3
z$8zaJ0)QU1TGKF-2O}ryrHF3q5z<F$OoG~mSQHz|jG{rRo$+T`bD1i#S<2i8$6ndB
zm^&ia9VBRCe?7St8PA&&m@wXUNIaKTc7K6mn_mE2S&9Sfqv&@#WI`4KgNp-BgM>31
zAtcV{=d|bI-bs8=m>_-=CKKcXWW_GX0~^$^=>jcb2lM)283`*Z!V{7?x-M-}_~|s`
zV|lNhxg(2J)xt(s?g(|g4crMAX)o}cuastffHd9kY=i3#SX1;l!-O06F-4v5y)!_N
z{n~32h};!G7bhd5ytZSkz1eQ+sUW)X74K7DJFF%9?n#Q!!7ID?F7r$p*h2z%vFq+0
z9=`hOhOu`E+Rawmf`Ea#sNtl*!}&#cW`0Ouz3DI?ydh+i=s;0>PiQfT7Z<Te!L~-j
ztJQjQ8jUye-HEod#+-Bya(2w<snTnmyM}0GQ!}^Qhjy7cgmHYUPlE54ODUCAT=JGd
z(j}w0y8^^-9(!y&hTBWH|GJ&cj-sTFX|s><Nb5&{NrifyJvN$GS8p)u*$aFX-X%fz
z8fs)jDIpDjsc?6$$nIZ)v+Fy!@uu5jmqa7!|I2|*kigzfdYtkFw*+voUXMdWc;3Qz
zYAJ*@Pslm@4WVGs(nUmA?s)NyAl;HjRmi~Y%dZZ^nW_Y-@7CIhoGv8|x4*W|h_QYQ
z<MH}E{|FiuLlbYNDGf%1H}lHpBwD2XD7R<9>u*A>rw!Z2oWMZd<tFmO+GXy02I}JF
zj-#LmY@o1aieJW3c$rRHr(F!Ln+G^xEi;*Ow5Gw5dw)=B0p1z7S9N1K?}fOose~I_
zJ{{^UpDskA+>TlLANQLT4}czIhYZic*axDrD;QpTldic#?)QnYZQ#V&@GPdWKu$ce
zkR96D(D?F+uOEL7E{&8{@#anN+7VOiE7M#=o-3l-Qlfm(Hnj`lCvjX<;N1eImGc}P
zIfq1q23S0QB<*mCfZhipyXl3dlKdo_(zgrVEctLByL0)aRMXBH-Ttp)yZ_WqYe|tF
zU*@4;)#eID=!hTcSCgMs|CA-!(RT=~eyOCyMAVSk!pq$%^Rswq@*cQ(TXI^ehX9#d
zQzf)Vo7@<4U`9OSg`<VDtRSMnR*NhC^C2s(miP6FxY&)0IeDLJ#ldD`kvKBm26Nth
zY&%;iWhBJ-iBz42mTRqplHe(tc8|8HIjjMM;~S@Y({&T_b&qt9$lkL+MdS27d_(ry
zJX|y-2$xcJ;S8m=>E*=es@n8G*SbT@I9!qVekl|qYka=BE@A6$s=C?(x-c+DlyNW}
z6eaQe@Drh#XmE?Ex(!VKoZcdgD?X0w=CviN3tmmjikMECbJNHMagMY-l@hQIzV7AZ
zriQRf5j1k=Eh_KlCFt5{BiAK6a8T){lxWsNJ@?M~+S(158s#PwDXC&%gvLuu_&~q;
zp5%18A)<aV?NeQHS!}vmHqbNCo=V<tw3tt$R`ol%XeMV*HIh<Ph%bHl!P3TiuBGx9
z7eQLmCWjeQ^Wxcb*vk2w&jSn1uL0?zQ0nVLp`;X|FcS#0wnQxZaAI)Kx72zmryyN`
zN%uY)01i=HLTtezx|d!vQa*D1D*L+xLq5PB9)qXh7kE%rx_Tb1eOVDb0uS}fl@`2x
z_0YD*5SkeZ=M5Y-EnqJqNDB&Yg(i|jmq{@HMKV}niIpuMse2AJz=4@O4J>_>(Gy@`
zHu}fy7?5gdqUqRaZ9G+VYFVjT`f3hBTtJLx%QHo4W^k7Hn4dbj+U@EPSKG&~pSs!K
zvyPmU&Tyr~vom3Dulo^!F^FVgi})a%1Gn9)rTvJRN`lw2KOkz(aW}5MO~dBSW@edL
zwPwp4)N=wJup1<soC$=LNd1u%=B#X`mi4*6z=)S9B`%wC2IJCqKLhf<Z9RSqf_buI
zS&?FADLl(pgdi_gcoy1gskD+L=kt#YLhy2a@rD7X)9^VH-ZqUe(I)<xUv^CZS;8fR
zlhU1g=0$&rHax@WmB+&E+a-%7t2C{Pj^Ch9-azm3PT~0op@OO+TDKVAPegllGgA+Y
z$5)F@u$5A$?K5*c!}S@bk=U~hqkyLIuv|$FFpaA&pv5gR-L34;<Akj{uL<mfFx3vW
zeNL+{V)gbKj!t`oNtv^JVqbE^W%!+6a8qf6<H{5dJ`yL~cdRx1+xk*QEYXLEB_2~*
zmV~>;S7@U)OkZj2gQGo~o4#o=@iYEeNjFZoLvW2r$?(LKzQYnI52$jlzP&K3-Fs?@
z8TYz{a*Ip6o|)y)qHif|*~IjRGj3tOR55>Cr^87ZMJVZQz4x-c--DZz!bJ3J`mBFt
zv$MzMB*TT@cUYc?%vG%XC_t5juJ=v#VIpp<4lLv<c1N=vmK=%9s1ta(impDDN7)Qh
zf)Rs&?!9Ng%!wkDQOkCuViYhcdfUiQMf7>W$%%|VH?JfU3&D=q@FkudiARUh(d2N+
zWLd~2X5t4S?fb`JHk6Khs0b;)4m))>Bf>MuG>~md#IxJ@3UBxJiBI@&t;m6*b~tLF
z>Y4m_C`-#PTHIv21B#D$$;E^HZ8uiYUtFhV*G%O%3~-xR^LiE@?1e}-zAdW`mbEM>
zF-u5dt!0p?EOIRw9HXESaG^}g@5b$*Gd<>1m;%N!sdSMt*}PbmYdWd4wf_iOfHlC+
za|MYGa1MylQ*%_SxCI*3>pCu7wYNkflt8fcEw)9s%#j8m5R?-^jqs5&y2-XJ@J1PZ
zvCEQxGD63Ll8sRsnbjBI1u1mJ!>4@OBQ%73++6qLsDSXuV7F#t5G=NzBh&|HiRm#q
z*)7%<tD(7cc^4qtUHgZa;N&u|T7Cktga9rn<LR#R^t0Cj$Bf|C9<`y|B~qnJjhL&y
zD0z?qV39bMwnG}%$JUMdx6Ai>le!&>OD#^0421Im4)tJOE2i~}o^A-DsEaeX+t0KZ
z{sQInfSneVRDtp{f^<>g*rTZi2sAuCI!Z9Zh$ZFSky>G5VCcOA>UPbn{DxunR4-Zq
z0{Rr3Vcwm`(344N37c0jkQV&${exerkPtp8!}^!LNFtPq`QzzulIshDd^c?rMzvmA
z&&_^jixC$vO7ZGm0Le*_7u+*exgqHorQCbdJY~!;J<f1o+Sd%;ajl*JI9~SD+0(&G
zILzx$%{lgWFw^Q<khFXrirfTtKap<36baxAGnav8fg%0N-?!0zmHbqSARnjX9s9w`
z@*qmno2C1N2N4|KHP;KlaHfwGx>gCi-!q5HtGLD2^A9dP#_`PVfh~Qf+*{6P<x=4_
ztMi@nZtSB%IN_1^gPAify9m-a6bV^pp(8NgCb+$?Q-m)rW@lUq8b#t}=Y0;4$SiAz
zqLk^AXZ!{f`y>OoKUi6l2P%*Hl&QKAyfLqkaIKd`D8JY1@={Zhq*1z<be`@5HY}h~
z<7!+8@Z&rPFI`TqbNkI5r8~_h3>ZjQU5-VVG9EdQhh(N}S^W*!YLJe?QZ~`l?e_yw
z5+Rt%0P61dAXbLEnF=K$2o+w?V3$raPx6eS5Bi3KtXuINb~@n7ggV*iUfP^;*T3fx
zK<d)$3XMj^U#`~?<pBszW6VO*7xDeWIB=s}X|JNS*Ei4Zi)ZDn11j#1(arrVgF~yG
z8p00YTZcBZRFXfsy0sRCCGvXv#XtcD7-~UqLQXaCo+30<o~7XQB9?tHbxQPykDivu
zoPIO*9@!4jdwl|RSN4qH?oE>(YWg|IErMMW^{br`nI~*hvLG+;Qa(JTE9Xz2mD|`K
zWkMsBLSxbz*}wwmYD`=a5~IW|zFKINTi5zYJdLXS5AlQ;aj16QewJ%pn@7XW)l@{k
zKU1m8+14)_#x2y>CEb#Vl-cMv42b@BrfGab7RyPY#BuR=W2k^v0h<(f44SbZ&kQd&
z1c7+0f=Ev<uI05I@NZp_o)45qU5a^+--GM?hx;RihaWeok7CW^B$IT<9I8^=Bp?R9
znCX9A<FsKn8_h<e(XOwuk1TE>a?9UId@{fgyyLhy>XLZ>Hs_gVQ>JLK39^$?US5+#
zF8FwgP0>wLKjyriCrA1t{C?ppovgaV><D%=iew>1c~smv@h!4uR$(`2`$DeE7c~B>
zpO)wsEU7ZQ#)-uJ6()96NKJ8Y@H7-Z0#aPGy|SvlSYbSo*fbFCmK;D$X{<=pL|?w>
z37bU`XR6OqiFvV2n$yv2RQ}kYO5LsvtCo2WW6I7VnMg|XEFd<Db@ngXw434%t(^qG
z4~vxPiFu9ymsZQ!=59)E+n-2WP{mTCLS%f?6g0VC=#C_7?wrfUz{W1Qns*ZFmdYE#
znG^v@pm0;Y{Uqf49F}~2YR=a5Imp`Nr0EmG{t=;VhkS!E(chS!x3~OmzBx04IldnO
z>+Y<O)HQJeQ~G>{o1b`B?Ku<L-0aQjLb8@tS|PfbxXW#)OE3FOZaZnK?sc>6B<2+=
z&U7;n*3GsPjMqSY02HvKv_gCJS?}Vw<e$`$loWcaGD_!lK;L2a7F-!k`-z7RQa5k2
z^B81$=%5v-pqpj0@;BZuBs5)KmBGI<Yl<9bB#aY193=pW<uUF_=R(rhgCK*?NPGwa
z_)acc$xU1fOqY!NV%qK6=`l@b=JFakolaIRUof!%ES@VC;VihMXx(%-v}`zybACxy
zUJXv=%e+nUvcrG)*pX`F+}VRIq6u%@uEnoW<iT$cTWx=cplazoas!<FZ9egSdNd?W
zn&B54eR?3(@0);g0E=iMBA$orbvL(Gds4%@-KGGzPZ2Gig+w`4*4d?JhDpkfOYBT%
z+qOaw|5OjC^H8-Xhf5dF%FL$k3J!5s1%%d;^D||(v!xOQ|8V4nCXkkh+meaqOp6$3
zaI>nX)lP$9Q?8>7cln_TCYaRXg*#;^hb%1uH+IT+qb<MNcO+M-7td~3^HraohlRL_
z>i5QUIEkAPwUL<vS?3Xox<5-zpJQ~pS=fWVa4OY@j{1oOi{dTqgdFb6(2-_LtbD>-
zZcK{joDF?6iF-BK80ny(qch>Bj2#sVh;E9olq4i9E2BhC2h@ZuNbOcWnAb?Aj+ol{
zPjg%dw*~)|Ezvu`S2h4n_?1nG-8izHMroCi)H}Y7r8gOC^D?nEB?8ux%nux4T`W2w
zjmomxy+te?pWb^_g#G~wZee%3vH68gXQ75Jt@23+IdVE`poA6wl8hR#JV_HpwK4Eu
zBw$Qpa>tT{f!Cet&Rr4Zc;X#7JyIEVCMr=i=zs(;dVe1C%lLUbh~NS0gJ4a3_SBi0
zWKV|KrD<BO;~B*yuI?GTD<d9DNXSMCjl=20>g~RR0H=-#?#LMUi65trDJ==U20Be7
z%Xwp<u0_BlL1~qe1u|Whm<Y^l<+iAhi5!|4%{Ych8oYV3(gj)<M@qAU8lncST-6>j
z8rGRuVi><nzV`5+Ny0%b{YP?A03ppVpcA0mOe?@qXsT25S=7=K*YZ=pHT_>6*eIn2
z4sdTqnx|BWhY_zMYaCA7zUpjza))jPvt-vupa&k7+<6n*ist$5<j5x5h8K9_aInGm
z;pJQD7C1*5hW^=PbgZJRqp^DIu!GsA1_?N{v_ieEOHd*}GG&Zq1Ll+qta;`hc;}}c
z+G@SHoCcLjOTvg~!C1wtLhOC&5vDc>`NN|BwO~KBX%LYryjwYCD`L@BOz&Y#&6yLk
zrl09#3<5$~a4xgYhziDTTr}+GvxUZ_irgNJWb6?<cc9-_A_fJ|(?1}eC%I205|3d4
zG8s<)IUkFyEV<vGp|%g|A)CeGe=gH`f0tVMuO;#{_Ep67Ui!;*pwEWlXP_wpO(m89
z=R@_*8dmA42b!MBO(A;JCXk)H?b&=5M8YhlY4v_mEG4n}d`}|2``HZS&mCx7Gb?|i
z^88_|y&9b2=LCR*o&|`|X*iRD9$XY810gY)Op4`UHgmQOdJ-#5!cwhb=h7En3TxoC
zcFStS-RX@RRrs&yqmnIx!)jRiM|2;R3z)yarj=rteu&GOz>^#5mb!Oz(fO^4&7G%H
z5^GS_GXIRAC_Q6#bn~Jjo?A1S$rmQJt!U~*P6dbvJ-70Rj*C#qoAg1nM--Cz!Y317
z=u#u7#!Wgd*X$9WGk^)j?$&fleixkNGkSM;Ai$K^JD4}R=>kur91A#{$yq51$wX5{
z_^yQCFMy;I)XX=RX%FBGjUjh=$~M62v?QPtjW|Ux>QrIgjQe~*2*&>nXZq^b5AiNL
zZOI)6wC_3KIl*(?NODXbHzum22a=JFGaEv41mKQ*TW=5nCK7LT+EZuu)vXw=D|?|q
zMZe$WYg*z7q#{n@ie%~;HG`r$nwUvewW8XJl|HLR?P9D;g~!gQW+^ITmZnEFJoC&$
zpqK!kl`d!W6<q|V>#u8;k_s8NrGXb9K``UKExyy)qZX#Ac7FthR3Nwo1`lL3ODL!o
z#aVG+vZ|XXb=~EAEWJ7~DkOX|><)vPi!TI8y2~t+U`4!!=-3qTcu*Uzvm<eYu&>X|
zU;vxoFY7w$fXLF*)+alS*@;#LhY>_6%d`y63v$W)<B#?@IlgzIeOm$ghDNN2%LwbD
z`QDrt&bJPnzM&l}<<i2MXr4<*-dy0vnpKL99jN52f=a+vByd$~nS5g~%kJEJuinQ@
z^XoyY+CS)4<~^r0jq>kPx*5f^bYS(x#$=iQiEsSbWTj#TRZs?$7t8|iN~L%c(PyNt
zN>cc8olk|i&vOa$9mc_tq1qTUO?Q~7+#U@N=prKaG!!!T;ppICO~e}UM7l3dA&J#?
zf-}{*xAKAEE{qjsE0aKYPnTB6aq63DUe`n4s;NtDuJ@l2EaI^^NCY{ITBxi%Cb)05
zg&!!<K>x67sqr4))=f2=^B;|&U9nAtxK%O?JrH(qLN-KLYGA2ys`5Pbca_F5=9yX0
zI@KWOZ;?E|06C&Ni~*hajz+-M`jaFaJ2KXs*J`w}5c=M_?075|63ZIOft^DH#ZttH
zbQl)6uo5JL99BwZ9>Hda#W}|*0Iy-0IZ%nKCgAwd#WqiGzSaX5Y^gk*)brv38S)wL
zWOF?u0W-yO7LT=1Ezn{_pw#>#jSuWwI<R-ix?XDeiPM3*&{1V-V2q2GRB@68J)-)t
zlt?C{Z;u<H8*9XgOhn#Sp-=mU!ugcz$|_1Tb6XkCHl1oQ@IcwvZgM=X&c54+h9im1
z(m)A_Fu$8)1_`2_9|f5|@3oygGKxgi)20c(=zXuSRCCSQQ_lU+BH{~D%?hrSq%M8m
zZ(82X7~_ZeMsF&Zm8ad8hqnK>mbE(F^wt}}lf1z<$?f+@!t&&enhvFSp|oAa+s9!U
zHXe30?GjS`pv=ByF^BCWSWJbRy2A=eiD6-y5fj~pEXMQfgpkY{A~P+|N8}+K%cVH8
zxAHg&eBe|%Q{GUMi~=9Hw)OFF98FTLS>9sw=B0b@E4xqqW!sxF_VU+f1*fUgb*|_4
zRz3PvJ}t!oYhpH4pAwRi(5Y}*;!VBKPpDx3vfLzB=tRMJ8;%jV@j>6aqg%i<1&#b+
zk^D-3Kdxp(KRuW4k%?rmuP94I<g~Fm;+#YtlP_E4BcgxxBtZ<t`y)$8E)hDFo_Iec
z=G#{Ea<>&g0b4>O%zd6?@oyO6liO1^U`$YEO(w~dfSW-)I*JFbc95RKnhH_Ueo)^V
z5O<-H?_2BbD+u?V6s?hlkNW{&D{7-4R^P`fkDgL0;{mp{b)#&5Aruay{_1@GD<`i@
zS^hSgHnz=Q2J4n}WYT?K1Ba~KTmN}=+nAMVj->#wyKf}M<5@kRd1_Le5osxl7MTWO
zkkpGzVMHjsSp8MXcS#7V+PhkS79{jH0@}OoIU2e8CV!dMG+M*m)+daUL`I+W-4I(&
zUB!OpWEez0R`B*0QI%Jr&CRlbeRfkm!A=eXZTHE;D+5#BaqzefNU;B5|N6>RA@|Ob
zujYmt7m3<eVqYtztBslHRrLN(U5Z{Czw8M7Y&8ct2|&f<G3F<K>)_czpI-ihZS1NN
z{mBusZ?O_Oo54A_*Q29z84jB*6Wst#IvTqXn1FOd0WHRQYg4!CYPDfB?VoaEw10XJ
zM*G{lAl|>>gn0kjc8K>kTL8Snq(eBCBR95iHQy_<hO;0X;(i?}g<?udS=@Tovv(`}
zwawWA?+`7>>TsDaOw3GMV`td+(amo3Y-6~SVgFExhSbYQt48O)0=vGOBz@93V1J{b
z%hnjMkz5Lb^ba^Q<`P+L@G)XOzkbHOO0N0Xg0Ihy$^3ajb3G!GhUm=0X6-0?ONj*>
z_f3DrB8?gdNMPm0cL=p(y+ve&>N;XLt~MwFIj|UsJns<6WB+W8-IyLPg}oO15Nn;A
zXX*?`q_n+^0g<rD+TdOSMN>s7HP%P#UtYbBYu|?p@^*>8)y$gH5q(rM|2sDE3?Nr_
z6;wk|U!eBTYxBbDj4oegyx`H4PD;~E0DDx)A+w4$lWIO__?$4^47wxdhTYj)uj=EM
znyJ8s%uB-ov3ip%{vp~EGl-_rGMMKEfwnp}WIi3G1!!q)Mb=!*J@7~jy3`z6D|<Ga
ztUy=F%C9C7Y(pm!!Yq;y5zum2AQTb@Ar%@ppD0}8%&jt*Ex}MY4ru7_Kn{`=Lo^GT
zjXZv{p$6IRS~qGXDGX))w8iUXM$7zgTIwe;HL(lRUN#y+gUtoVGq`SJnQtQ$e!7Ul
z!m@FguTtAUA=RPx&>(ulUfoM`T~yvcgH%qlR3L>cQz}3KH_#K=7el_UiNveh$%U8?
z_LGuK4xOlJQHD;H94v&y2_rh?&Qj5;yNIP~_>vbFIhO?$;xT|Nf?1iDP{&TfzW|C{
zCb@Y`IIq*W&G(5WFw0|-!FC7~@WzQ;j=+kc@=CQq%FR2Z@=-e+m0g92{YkV<I0@Nv
zuL7#r6isIIKh&@X9HB`P7@D$j8@qBL(o2Rp(T_NA*?m#J?7fYP=V$vZgenhnZMA;I
zSO(Wn8Zcz|O<oAK@IOSw7-UI;Z9Imka66%Y26>JKEF#;crZ%nQcFJ%ER9s%lZuHyt
zzJCQXZKOUpq-8^{@!U>*5UtJX?PJ5B=Gm<zb2r<(6Z)JZ)wMiRMlC_Qr=S$%hWUD|
z(&CA+6VD2OLV*b?d$<NRV`m+Shp|+8tw#q~A2KVGg3b2X8UJAiwwy4V0UL&-{|7tf
z93Y)VMPWynWbw|J00!5;z+3OCO#r;B2H^^>Y497K(+_9#(mFzjTf_-f`njzVGrbu~
zIo%B~2+9wdNd~?$Ckbz>{gcoZ5?p1VB{W_&eWQl99s=eyg47Eg{UFjXJqPm>4W7YD
z$9-*oALJ8xuo5PzsHx8)k^U}Y)`AIEyYYQx=Stt&>pC<tabQQxPxPjnEfW-#@|>^1
z<1Ipzi|(09mqxhhS;O1DqBDH|#e6Br<PM79^9HQC>h?)T?##hqzUdF1q6jPRD!uP?
zbWjmu@AiW4LERk~L~lO?LlBOkXS8(lwDr(C^0>rF%Uwqug_tr@MLb@WZA&whtoIbB
zE8!EYJKqhOTZ^g|%QMT``HvY}F|fSBy?KOoxP^}j7bAZUs@!njJZjWwL(^eq=6+n~
z8%LxAL!~qu?!w+=bz*cNLZC~R!u8OxQEj~wJ<eg9rkhl8JgxR#dgs`o@vkV$-no`X
zeo@=JT5nGn_|{|RhTxPBaz0X}dt$n|G^Y2<c1@jegtHNYY$-g8R+M|ho93C2u`*DZ
z0QyuJfF~V9*bE9*bh`qOyw36!oriBwtzlJ?$>TO)h@b)gBEo@zQDyI4YXo5}-(Ea;
zYM(shM=smh)qbs|w%6;$>GU<*xxL%3UDH<j9ll^V&!)bP5tsNSxxKq`*B*JJcG2_>
z0vH0D^OBr9<J)j!{~7m%>a`sG=$rh?)7@YIo7tGXb<&x^?G`z4x$kihn?<R_f2kSL
zx#rF6Ld6-<=M@yE2irE-$B_eJw`JVHwng>Wt54!tl=`j5ks~^J>k@Dr0)P<4=`SHK
z9HqZCbCIW(RVN`J;D75Pe20ytLgS&Ts0!l`bX*&cR3jPU^U~6tO^zfhGHzeR<lZ2W
zy1ru5+8i9>UZ*DYv5=CgnUBb27sKfkX_*_QW8g{ZJrxy%`UQ0*MHZ%`jL5C?){`F!
z&C1heYOrD0xYm%Mlg`aWz|)=J6XL61(PaYmoZu*Oee#}dZ#fyd`&CdjdPpQ^urvhm
z*}68VQ1kadK;l>pC^5~>n9Trx;doyON_o9|l{4Dr69cU$EWU&B<4x-^ZkyN@g+6xh
zPwMoB)w72E_{3`d-x8SCuyV~Y<7PBtbGlz8b|q|+<4fOKPHB=WR`~8S-zT@E#MIz^
z=alPCn@!+HKuGW89YXG6E7SeT?x%L$Rz`6^7@OU(bxT^EXsU2P?CnJ`_xORo<aJ?z
zm(KE2SY(9mg;ltdm`i=suhKY2fmp{&0vTyZ1gwJXqa~UP$NPf-2N`uzDX~SK;F3u#
zsM?k|oW^_(F$dNX%SRG`&Ys}rW;W}{fbKmZ7E8cJHj+_h9$Q$k71G*%z!3D8UytBw
zqFi3;&5K?XYlW1WonVuQ{`o}swR80a1qMf5ewO2;n|TulZx8|jihYiM(K{<?C5s3e
zPJM?_yqqw<<^I&A?Nz_Ybtz4@-CM?5U?QJ44Y}eP4nHqjL*#qRZ1I9A@+25da*6f8
zntWcm1d$10nY-e*5Ci_FI*6dnBI(wOo!emv!fXQaJ{#U>0LS5ZqJMxCVbRWeo-#hK
z{zFi%iIA{N#Sai5nrc7MZU}T|<(}BnT?3{T;ZumX`1pI_wN=xH1(7Hxv$bO9qbFvM
z=4UX|gWc*FmBdU?L8VP}WEBU@DdV#;!@A>HA=Y*PjwWDlg|GfH5>Q(U8=Ya^l!UuA
z`@jrShkPR|fU*HMN(H2f3L_iHxXfRx)nrwvq&6c~8APszz?(uMOM~~;e4-k-z`+?7
zfGGlRkkAmSbZh-=1DfW@EUpy$Y!T?8>kso)AM7dJxn-C&fjmLF2(TVpFr4e2U+g#7
z+4k*TetXy?4RKO}&ah^a69N0{Pzn%X8X;zvwD}fTRfDp#XjmKaqHNo}UcvD?D4zpu
zpg)quKs{n;XPMnk&6ayDlWEX8k|(r56^l4OXTtD$NJe@v5fJxV4@4v5kU@+YF81KM
zB`3Ckcdb1#4>KC1$+)+jS|{?MNO*>ms=Mx+CI?BKk~GjUN$;IXX{4>cn`P*Fl-e82
z)6I{U{cqygw40B6gQ<c3uxaPRpEw-}Fk8z@xG(MlA8sn`s9`np5z_79u!#`rEMo$Y
zn5^jgm>97V*DIRULB6*KLPT<GL~ppC5%D4<A5>`CR2Q|GilRB@t|Z3gvZLw#C-?I9
zy!hb|Fjj~seB&a|1(KNJ>wxs3916gZ*He~34@x1F)sNqi(l*9MHd0)QHWXaHyE(K7
z7cKZ-J*L4?vm!Z3S1w#G4ti~Cddo)5wN><Z4?H>F(8-aiB*r&s{6<sh@6X}>%BN!A
zf<XS;sOpq``p<Rc0rYS7q5jXlyb<2fst*ScYP~c)r0)K@<E3w9RZ9!zcx35UnCrW^
zF>XYqSk3jA<$0DOjjri6<$##L%7TK|6qVIW0hR0*(fg#o6fLB0H$oz`;1a}}DIS=m
zbyp1H(H}*@XgRD90l;D@8c^gVE|w&ON1VYZKqwZG5%G1S)>4fd>}E_<AO_E>8%j0}
z>CWmY4@fF`)8Fw6=$}2#(#%l{FRR_s*mX%Ry$HHIkK6B%!5A!-uyP}Uc?5jE0|so#
zJYf39QTYezJ;eLe`Rl1hBpc|f(m|4R>6nc&+U%5MHUVSI^MY5$rR0aBG=BCa?{*tv
z8T?`Y(3M|9)vn`N-fV}=sLpm8aiki6a}XqLI<QCI^y6H-S6lY8sk1`~8Rcy8^nDN0
zQpH}MGD@jQHr`nLY&oImuRZbq`-2gTU~~ul(~<8LFZCCc8G}%)*=l8TBAlsTtPM;V
zjl_4SZL7<Ez@}Ify5h}F`xZ^_F?he#7JsVQn<E0a>P~HXQxETrC1SUhA1v?k<DkX8
zn|`uFo$d)>|2gmVR&_R2s(seFN2Y%r46JqWZi{zMzO@6d9I)pcW^+TATpWS22)!K7
z{@c%I{Tj3rhq(T^vsRbu&Ze%9K%2Jx;;cHVUtnV^eewPNOqD#*TeOfPRjbx2AAHc}
zt-4#2+gs(Qnd`dLr*F8*$-Dx&zg#^>Qus?OAzM6)zDVOgj)gmgIpO%m1%Wz|)Je^w
zE56KO{+Rh8zqjowkH|kGk|#&d2je}T?Zi<w6`L#?<7dllCOfu=h}84f&g;3^Smu?5
zF!J@`3i-evfRhfL><f=OaaXBv%_plgjIK!w@C-w>XYJha&VyO4V8#=E9bh(Tco8rT
zPe-~LXJF3m-dlc?;6F}7;88&8_{fAd=8#U#frP4_L49h#jzVGc!5lN~#ic3g6~oWV
zv^sIRNvi<uub#mjXIj1pGS7AzY-TLq5YVHd&VO0I^M}!{?A>D2sp=g0o*CI#Z^KCv
z#FxvQ-B_rBq7Gjt0mKsW!!`BC6<r!igt+`NP|^rFGO(ya&58Qd{|x;=@tLMWrJ#oS
zn;13}MW1ES075{E3kK+{-$9W%l;4NL0_Wz(wCH&TT>$k3Nbv~=i32Sh;2_&#wx~G`
z(eO_m^%*b>b$6$%N#e-yrUExgrg)Xbt1_?iT*?_%W<73Jkye1Kq|hQGIg_l`b~tzn
z`?hTr4-{}gX!g?+=y~FiGlIKtQ3(zu<j{0puaVdwe1pP*U7cA%IBG-JtZu|32PVtO
zhYRlfz3|GkcC5>iP@z5*mQMqJp{b_?lasFliFvhEL3A?EU$@}>?(xy?0}JwQH8W)@
zgM%@<laqGz6|l74C`(^RwRTp^%84_55(g~R#zC}0;8n(r*n$$2Lv;w5tI2c@todoq
zEnT@_<^|5y>G>PXH-ueM<_`@adULW)`<8U01d5R+zQxRm%!F$xyv|chrOou44}{FQ
zu6YqRf~q96u+ODLO0G^H%4Fs2B8k-be>oiK3g$C0AW6*^ms%)ZC=G0PHVrTJK#p08
zLXKYE*x7xsPgH(6W4>d;@{V2knw5LvDa+k`?zu!b?IaU>6Z`Pq6UTXDmMjv=q=0+&
zbV0gTGkOq6NxG|T!|+7LG~A?B1pV4nGi0U@Nzx9T^F)#<4HAstN!zTAE&*ige(75b
zE&EHBUNV4MV+@np3f(yUgLS?vS?RQ1T-jfytki+QU-&E97h_7L+8iXKTrxUZSLO`W
zV$?#Q?RP!b+FLOvP6MA=R(dp(9y_!AD3@k>PN&3w;8lV1W+;Df)|ucTc-JF?m*BR~
zOsPF17R8HH<!EjN(_)L{Vau~3*2OH$RN`E3)FFcKKtOX&C8pLGd<vDv=XB`gSZcco
zY8$iD3BOTqHM;$Zof??Av+Zw>Wkv%j8E+8z^ns8d>p9D}&pP2~Dkoz~<@M#QkC?n$
z&e?ks$b<$?W~FX=nO!(W5x+0$ryG2dx-rUj?F|2CK-5Y)v02RT)wWJ`+B%|S>gH%j
ztfKJtZwjIKzq@q2O_0W5goIMejlWX#_i4d8d`{b6P$HnB{fI(9u(`CzAZ=h_p7o2O
zI!*lxi_iiR31c$L#i%^U6{h{zleCsq2#-&VQv#A)oq+%)VO&84x^U<84CMIggs<|k
zy=BH+=Ey;ktf{G+F3hldr`GGNcZSEmemrDYNoc|SQck^RYZ`Xo=5O44Zl=_nqJ53m
z?jA^dWvppdl~<{u*c`_{q0Ag3%_vJcw7Cau9bggfCgx23cwR=Xk^w6xrQHLW>mJ6~
zoLc6EiL#W%j~X5^KVItxMGgd}D4^Y)9{5DysmOKYi5BuUui;d}nD6_L6YasFOjC}#
zHczo(ZSUG->j%o24td8i_|W>9e3D++Qxe`w@T9$cDvUBrFU6PyDH+cIXb67yo5J#3
zG40794Me%jg^c&;B&HbEF_T9x&XsSefG`7I4C>qZhx=cAaV){D41BBnVE){<2L>v7
z@O+e}#wYA`9CLORgK8)rap0>`tBHC{KGDrK|BkwuzlaI=96JbeGJ_Pwi(vS%g;$GU
z{Zx5S_h+a9Wo0lHhxZH-?es7(>U}TAl)Q~QXj^ng`9!-l)?P)w#v|is_sESpW<Lr0
z1$8reFz?!q?<DF}sHmP^RL?<ZdIb`f372>Z=t+AIf!#G5rs&Syz>JIdC**R%{28T7
z3V@q>j&C4r)}lPRp4ColvW%S&W~ir4e=5v=&{fKhhgb93U!Md&2bOjoJ19Yb8HK3L
zy4q61UjHC7w>>t}Ha#-tZtH%1W3Rmx2ar!UlUNLfmEdH$tN}_H)_jlNOi-NOoqi9^
zg{k`SIGQU_MC|n7T(8vT(ya@_ty9AnT&F$vRoQmT4Nc^QnjT{!Vf(8~JI_I`92Py)
zsKlD7l)2VxfdNW{PJnQm=uIU-Qee^9h&$N%C=>g=hc&|xSDL-sJ+%mnhFKt;XD#Gj
z2zE4q&{%)2*@^mvO4vZ|*FE@S$1}z1{Oo<oDk%~Ob&}S~|6&`wRJjvInj0t6e7R0D
zm%+K_Mc>{4vd%e)yV|NLF_6$95=Yw_z4vQ4lC3tBMDGfINUylPM{vLdC8$PvGww3M
z#7!FCN}^#}-qt^>V~yZ$FrFzti)i5lP8Wc{b)L^3ngy~Q{tIn0A4raVvcVtQ$}w_8
z{3pGv*4Hunp5VvTf00XaophUX0ZP<L4|Bew+4i%hf4<hZRo4Z~&&~A(5S}u$^%Qbm
zpetxjdS{lgY%nKW94}>&+jLmekkfXZY#_;M=VNVsAyL*H&%BP~bR*Q}dWg0oT^8Hb
z+8?1G&z0BSPn^-$hiXOPI+G&__cnoUIy{k1=Mc@&b;oJ3rj6kk$$N!*-WU(H*D=bT
zr0V|Tqw7^x$?|Od3@g!L!cOqQSF7ZW$!NRFDNm;|d2K~(*`%*Q*3~y3q@}A_QE>1T
z_6D(LLad5BIEtTzyE_8L9|e!)^p^N1XG>BwZkhJX2IjpB!BjvAu5P?4wikmTJr-d#
ze~F%~qM?I`uv&gYSC`RHUPM?eSZ1ec==@HA#jy~*aWwx=5(dFZKo$AuQ_>Rp!25mj
zSZFWpKHMx~mgDF1I61Y+^zJP>M|=fW1(A{|-QHr~ANxVa>i9KBlioZk*_GScI>eu&
z1|bw(XKH?{PY2&7|BF?JPV1t%IM>@CuK1MYhZAS<3|$8;R~lD;C|B%<PD#8oy2Bby
z(#8&Fa^s#ee7BNq4f1V`peH?BZj|kwtW7LG=8Pn;2+>GHu9HNvEw0;77(X?22w1IM
z%aiOB(=+-KA2<0vs~0Nfhj)MhXFr;#l`0{U>G=9ec~qi63stjc&eM9u(Mj>TmCs)n
zqy~jI(kAj;bc_&x@JKEnS@BxtC^T6o>tw<V*HniMkw&=EbG$9=ae2C7tr9mI(+yjV
zgf=%zCc{dIFC^fxV=u$hc#IJDy;~Q=0il55wvP@wfA_?yqIxkJMt1n8T}Ol`+K=i{
zuR>E#!UOw>4wdD*?dko{h9uAd6M2~^-V^XtQ<MBH7#=&8XvML5zRVF+n#d(Y;iK1d
za|ED>B8iDT>SuRV5`lF@KVqR6BpM!C7IOSK==Vpw&g(pxj3)fUkzqW=b~T@qFwtEZ
zW+hV>@`(tZVIO~PD)HCr*ovK<9kXxHykgqU{en1fN;#jwg4p7qn!+cTEpyI5hH}vG
z>x6~8sZ_AKr9oJMqy|Y0(OfufU3-I1W($>IBOJ=s6IioUUS_%(HTTpfCmY%9#O%-*
z7Wh}nGS9alcExi=;#_~8?TAqrbG4o*nahwsLFg1}QWPF4TIl>4u;pQqh|II-98+uo
z(Uzi8j9bgxoMgNzDV@owyPUubP~^g*#Jxy#7^83fyfvKkIEl$Fgu-3GXv<u4;LwKH
zi{T5}0}$rdKN$5^bMe^dXf0KPCy66P_Gj{mx@}$b#4=85S8N&fa&4(v&Epc6qr<}^
zGUxU}MHn|VUS5Z!17S1=+62XSRjKVu%O__)XJwOr$lnt(F*DBQ=eW$rxSMZa)YoiF
zdQdiAmmr8F_ar$^ijWkGS9WJI`A7oKkCU(FLsIYGoMAUc4xumOx$!gcTsW=!tww}g
zxi5MQP|WWyKmEPz9_R<|r|I>3c-G_7y!TzN53|0z0QrgQ7caCIUOD<eH)ErJ-lYy2
zM;kmy7jJ%-MvC$w%r=xdhH9BAny*e`+H6jFx{24rL&Rf8q1<FLTVyweS2SJI3eh#d
zG-=H;siwgy8i3ts(eL|kxg08j9UeK`&er*DS#8+2iXOLXXd)8Hi^YngSKbRD`KUqg
zieYa0*-EZ_>sHrJxMO^Wb*kGR?`kWpC;A=J&>1(h7!{7l6brcI(kLf%V{TT2<75-6
z8&zYT42<gcDUeCxm9@a*8#pK_^-JFm8P1kD+f^sm92m5Z)w;nNYJ}!LR@bCJLXsU%
z&qd%6M-3S);A2CiB2imnxFp~86*(DnWYUI-J(T2FrXb*COoNc>7ft`=>CKA>vVv&c
z>9c-_$@t1_qhpRP6z0#+ww!e6an%ezStolEC*FwaLF8jo@%>hTO&IniscS@-4Xk^{
zrtKJ5<UQUx>&7a4q|Ll#BJS?d+UDhcz~oPM2|KSxUs4*+p8fP(ywu!Bkt8%c6sw78
zWyNMQf4$PiP-wJBw)<i*(&#qCj#aw8k{Gvh`@yobOw*{J8keY19`k%(Q0CFf=iD>J
zFrI&zxy$w&L>{f?;zPdE1W50pp&X*=#w>q9F<vL%O*D&=8;j`V0^40B?L|s8GtTIh
zf(<LpszOj7$zCK<y2erpL_#acO)c%R39)km+Tdc0QVfVzMrBY1pF1~;x`M7r`4g*e
zm)mW%!d|S@O{I$cifi8t#Vadco0X!Vz*{*>o{|y964+OygHpN!b_)=H+o!D;6hCIj
zaWcvUbE@H<eZN=)xj=cEW~;NRy28oY7R5-)FFp5|n;ZMe)~}2~ejxs=Fb37koCx(9
zcyeK(AV);McB^c^08y;2=~`S|kwh$Lm1)09;uINOCMZEKjUq;3+!qsoVbR8#z6cEr
zi0N%IqikJ*<%xJC?E8}FMKyTM!;mp}wUc|9kk<tPx#2;DF+N^0pWx<Smd3(DWtux;
zmZE<1)`Ka>&Wtj%YJiK-AP$vs@i<*4hd0{uunqN#iOC>hj6>gO$NE&}#blR<?wGX<
z{V4>dD+`i|#RqLfDYEs|E;WZS(Jd4JuKXL$d|7$*@si*w5&^NgZ;jfd9P&&PAfyK0
z@-#u^rMW!<3dHgDRD+nfKzz(tB&HQ<8g4F2+(~@yQiKAa_dwrJf`<O)K!uUqP><ui
z94fJv8;W7Fm&5f0wrfBP&fA}i50!tfqm-BJJxQ8`3E(}OY!{os0lSV{ys5m`k|M-t
z>{u|5QPP|UW&x-B%aYvU?T(iBW85A*9V0nld}B|2ByRyeWvN&^j9@JKZ@!Qbsb8_^
zONlcJ=M0REj)N6&mU~$eu?2^f;T}P5TkRP+t4-So4XIQpAtJu020vP`T?2z@1x3Vd
zvJ1qX!amg}mWG+-dq>E0of@wos@EzJey05Ent8dE>tKl|t3mre*_a~%{M0D|w-9f}
zC?w+b<H(8Il}w+F)ckf?Pcd&Dyqxo2JnS#WkhlR&$|$*jv=mo==&$IPkx`K+Ug{eo
zF#1h=mot5MH*}H7Jc!O={?<Ug%)0=~NS$ntF~>fEz#g9_ATATsZS!`bnjtFS^eH6s
zdY{~Fa>v+oy@j+DD2O^9u(yLph#W_UVr5pQccN(|L%vTj^!N}UkkH#>=UUua>^w(f
zJbJADK(RUlt4b}v)x_UlVCbm>IDny<ehz@zhKLO0O%{p?r>O(zDGhZ+jkL3o0&`h0
z@{No_wWBu{*EDzEFzZK`(=~~~dX2&bK`<Zhe9)klpIfKoK%B%@_s`s)?ERln%@%Q9
zKvw~raxISi(p8L}Pwlq@+5W{OIVb1HNkVF7U^NY!A{5c44q14}_*(DuAc0lxPcJ4o
zGvC}S$T-dpYpgQj`W_~yz91)=KbmDlc84U+8P!Z+k3tZMCAK}YRENE0bVfDhuf8~u
zF2&CqzdSKLK8`TUN5&usHv$2AKuUR*uYSVia4BaW)GTN1*;yM*E+n}uAFBoTAeY81
z-aMdxYZuP>()oMNe|h|4Dlo1x#xHR(r?t-E^1H#SqLUK8XTlHbx)y<h;N(jdzLoJ!
zCcsiW=nmz_H+Vzlo_SkM^p?t-4I|CE`2dci=R_EJVY&XPGhD8xcV?b<a>x-zJV%;W
zKH0>$zqd^jvt0{Zv#3t^*dDNRu~*%VWSu<Iq5IMRgIDDMyqyTDFg7&b{&WY`$h7a!
zcJRo%Fh10;49o<G@6bCS1PHy8DQ2%DuPO<mGCTtN4ru+&Aom}BCqfv)cdQGN54vrl
zNH5|UoW0ZRw*!!`;dgOOupJNZ6v^23Z|-Ld6A&9iDa^GtH`^oSh(g9wkoZ1dEfrhM
z#7ulrzEaQekjv3*6j6hH?i^fHzDOwwpE*WhvAZH(;9{mhI+5M8Q8cl;Cm_l_y>m|q
z51|7P!|^AB8yP?XE}H1sStdAo3W_XgHx(MPwWI3&GkMs-JB@+sRef+T-$|bg0qg$@
zcvks%*4}As_(r{2#p-68|I7JkSlVNUnAGeZE@BMm>Ov~4d?vr*k9=pVw`DKNYshuG
z{&rknNQbtbo??Qa3<vsT*>K@Uo4zmWL7IK@zzE~4tS9XEc*vZt)r;Y|JJv<;-Pq|0
z%OO{|+~4Q~2Y_nK%zLWsoY`7QB;R_zdr#gJaIYRa=Xj<Puszqhm~q~F{nPcJ^~p8*
zY%;hrPmT=bJpmc{K<yK1hH4`W6Zl72zf_ZMp+5O0-mDI<%_D=)LqgA~|9VUwb$PY<
z-E4nT9|G@Ty<wN7?l8wpRCa>EGnV2kj4}%4b7WKja_3cjMco6HoZV~yG2pj)qF`7L
zVJc{QADVF*X?0cOT;3WMsv=DOy3n*h`BatGSlLolhrUJwXZBrl<;2|=MZwM#05d?$
zzq2)~RxsboSgg_(FUIe6>$S#fx_X73LiM~S2ib$bO1gL%8=}nT-y8|%NqY0{0f5ps
z`ihbDjgrz?{)Wz#?J;z;zqWa=h_}v~Uwwh0e6)CN<68v4cmhg&di-qj$o@o|*H)MN
zhH~@QV{>G4ak_TpTan|pCJ~N~V4rVQwtu+3Z0kP<JREA<L-ZjDPh}EuLJpI*J()_}
zT$~<Yp2SRYvE{9Z;bbvQXdU-&t9Q}Sxl3sV>cpe!WQvt4J6;&li^~|lB(=48NU`r2
z$5ptqRbX95wQEDI>V|^m?Dw++2AZ+`PnhjdQ-wp7;&+p8j}{AOe&HW^M>tULnR|Ok
zuD>oM_4^m!6*k2o77=|29Aq>saUVY9U>1M`Y;3hvO+r$Wxlm;ShBD?sjWJS$x#CFt
zalGMd2ttrizow=n(pRG;iN|8%w`f9%viT0fnpPY@C_nri9kzc)_XwUrm{EN^M?~~8
z9KsqptPf>CkY>~*A_I*VIO4tc$c;w&m!_F!^Xs=YV7%&ksTIJ23`_L&b#~lbrq5XC
zwJVsP@(gweY7>RvwgO%>J>JhSGf$I)DB$V(zS=M?Nr#PQOVRaGpb^N&Z?Kz!PpG`j
zY2z{z2Er-Wh6fb0NAky>3RpbR633Wj$86{78f~M+Q_WnU=k|wC%-kU%`fqsdB*QBV
z7l{ai1U_VJ?Zx0LjOU$ViklGOPDxDz7Q<vzA}bgUg2s%wuo!PJ?Zsfk7&tk>{@2g^
zTzoYk-lO!p*rq7Q`jeoGlGu3*@oJ@Ulo@R(vh4SO=F>b}N0A8?-ZIw*>G5P#o*45`
zoR=`K^ynmrr?zg-<sU$y3IfEEApzG|48P;Lm7kWD9F5aX>4U}@Yt^%@cxh{CkoMm5
zoPXV&&8X3vA}~MBUNYsjSVrfKEPHdn=5k+U5I|P0`W2GF@sfF;XNZy%{u&bu&Q8i-
z=V|l^j+gs)0&%@NSlY-OMMQ(3T%oOEF&Z96qmn4Lq!5jYQghe9lB!h2%iZ)m8(i9n
zQU3Xn0y1<|34=SAp9^4;)!bVf2iYvJ>OpJ1qf4XeVnl2s<6=0?EM1vtT&$b1{(Ngg
ziP`1QcuaAAau(eR)Xs)Je2aR_jJpp)irmA=VV~$?#P>g8-w^PChhYw9GrTaM=nm53
zC<$un+#*J`K`QNg-=oW9v|YuSD_BV8lzPB(|Jl~}3*`%1sRC2!;!GV6;0|><r<u!z
z;VIJ6vcTPLxJn$3MM4j5Q@-}>541kSrttz3llsEV32psoEb>y#`{&)#REmCm={YP3
zkS~Izr@rF*wXZJjgaYCHsz`u-g(1b@h09>l*8)ZPyAQk=cp3W?_!Lk1+m;~P8*K!4
z0ZFiI>Zi2PkyUz~diHB7y()Zd<(bL?Dhn<@{q^^L<@~-4$mL_}__@FWXmHolKV{8X
zmtDCkNPNtjG0*go`N(BIsa87)*ry2&G7*|kQC5h&l5AHtZ5%aE5u`I4Cj;AF{i3TJ
zcoP!fEU41C8?#|4RP34arDaw7u5&RktJ~QYgl2R(7ZZT|fW!VA{8YQHd(t7WicG+#
z(LnD{Opce;bjQ6R$qxFtUgJz5bgkxTAoiq|Uby)>LlXGRQts9Xg1wpWOPu`;5<fCj
z$?92n|J$iXaU&ftg^I8WJo3F3uV~S&&ib15!zq~t^{yLhWplY<y;PHI)$t8@gSD#3
z{{cC)@x9VykI5w~{<C5@Sp8bcAnV9GXPpCfI1FwVH<Qo1)YxH@fF`|O9E!ozZ=7O#
zcL`5V;RE{>H@|AnueaE;&Yr*p!z}53qVrc-7QXP<yK%#gdYv1vj<Z&8&b#Sn#wRtx
zjrS<4>LS&p48sckL6*~l23wsvl+#eZ@qD?{k}E!>@*~j(GCw3uZe+c6>cFUF(NmvF
zC7+C~{t{)_o_?MERiAN})$tgb3cTL4+0ux5*#%N=;LyJ;H-rU?%dzP961Dfy#l=2g
z7sV9@3e7L;bw(0rhldkSXDLwUl}hx5Tq#%^zXWR_Rz@Q6=mT7I_Se|Ta?%1L^4NDp
zU9)o<tU6hsBW{P9IKhAmOl=}IL>r6R3XU9B02{=iu1H`}AmFc}s^F;7ukNi;7i&ih
z)Bjxo@;ow<PKZC9k)+^N4d>7%<QejOhGCVty#ilH+>fz+n`CL9A&@#?$i4;Th0(zq
zq4@P%1npcbS*gTbO0&BD8R^ft-;ju`#KWw9ySA545D}A}9Ns}CKAj7;@tFi&)#MX0
zP?>BsaJb-4lf%)F2=;+n%78RaK%c^)5i9`50Me|Ahl4GHEE$<Jy&ddWH=ivdKaew$
zxCDQD9v_SSsTNJnhu=fLjWNzRqZMJjuO3+`vrWGuYw8oNVdh^wG^a{&O@-w@qReh+
zHjZnG9m$-S5S>u}8Xyn}nlhj}i8BndXM!{V9@ULn(5BO=r$<`sYbb4v3~;t~tLvr=
za%ox-M$LVSxQl5z$uH~snh+g~V|q}Z#dTK2Q8`78(k3U&FYF74k#^;r@~!y<Jb*HW
z-}Kvx-u8?Zh3Q#QDS~P)8qN4fPOST)+7~e~nRCt6%9pL_lIPfq;Cto`ouwyyt!sm-
zY*ecy?=kY~s*4>%rO(}G_EA+zTka?F#8vv(l>5w`m)5p>zc?}JARmg2a;0vX@8X)$
zxrGwVeI2^a3I#e75dbX2(7D|AHX2wrq@S+utY)mi8fBX&1q}yIO&OsTGH`r?G}-iU
zHU*Hj0#<J8lYww1Q$5IAEg;{X@!-FHola`TNuIErS@kbtU|B(NHkvK{i&?HSFe6re
z8fXV|hW<rRR6C({9hdN8HrDutS41Pl2Tn0>KEWC4DbARw|3e#iG>jy*FKP&EG4~32
zmoC^Zo2~LJm+tb7QgYY%<Cf6(TUkXaM-b4J;!ABW{d_n5$L{<K@BH6WNx15QQ^uFL
zai&Jq*W-=3_>8DF{mc~wIt63q`c`uX!V5sy>UWxeE81)SF@eNm%^c75VZ*KB>B;`2
z;ddS|3p!af%~7->3c!l$pDPw;A`&Gk9-}fE0qJzh^_pOfN2QS6w51KeW;$q2Gwc>K
z#ui=$hJHLy5Ccv6zghsx1S)re`Nq%I(vb2=FrXH2AtGRbP*dgt3ry$(6*dbBHmpzF
z)DwFHCb+z<U?_<K+l7)71;4pXaSOCzP{;<%*x5Z$o9kL%U8CM`cJ)`0e|v4OXgUq`
zRSb0oEDAyChiW<WUiYgi@1@lQHzV!9L$79~1)N>C5sVNNXL5^sPFcLNv>-LCj}*in
zB%n`#2xa~aM{dQ&bC}^Iii}(a?`ivB<3!fj+0pGkwBNo3JMsYP=y%-A>orw^cxry`
zw9KZ~+_i?Pr}WmHpFW3q)2ZL~;3*u^Zz*gl-tLh|@GTvdJNwA=0|P7Be32N^D_f<C
zE!o%=T1T!ESovmtJVuFz#9z+z%$?yJ_x+B4avi;9UIh?R%muy;--3%YFDWaI*fC6D
zF;Epnc77U?Ix9>*juK7AWtCz#4>hE>(_0DNNN*N>a1aA&IDhdw9bkWyB#<|~n11hB
zccL`+<x+WY21=51h@z?kg1z9uhlT=u*dZ!eX4ig^u<@|!rdRoaU9?n7Rv6$gMtS+#
zY=aw#BqEv5T-N!*K^nV*ML+(c)C5-zEZtjT@)8~}arx#D(=Pjbm&|yzS{{ur%FBTS
z!Il4AlJM0~Dl{4clq4!Bla#@U2pLj0(E+qfpeDYe;1cCvXKxTx+>tIBq9mMF%!i3+
z7PVFGOz=o<sAazTX<w}(fs@z+Z{L9c{T8=nDs5u!o#aF^nxmF=d-U`k-MP_-4d1q0
z8=t6&@7TZSsqBQ=?OLZq$K0C6^a^(9dj1YERcwb4;8JWYcWW|M`FPpYkvpB(fHeIu
zFoiwTk$8`O-o4tZ0|U|53~w?5Qrm5R)Ref_J%8TxUw@s^a@QaGmRcs3*Pkzc8{fF6
zov)#*DCf;v&EZ3P=p|xXW&?#T;mkZvV=zZDxZ1pGtM`6LlI3YcP@KYJW!`^$I#Ap<
zX~i#b7?;)8E!vN#8_j?ET<l`eH&XOIuUu>-eeG5ewfKU|_u7UZRra6A9V$XI{cMyD
z6jD%T>j}|h1Ft6zzWU8PYR1716h*D<!pk3c{0sN9eZ)3qt#i;9D8#T+$jck<WqtuP
zo&;6c;OHq4(?c=kX^V3uL-nk3qZ&ve_cPe$4%*m*9w`Zwi%eVC=+mhw%x!866r};?
z16A#Y8w1<foFe@G#o0-Tr&0^>x5hTjS2M1bZcwGy(MXMlwbkF7HBmQnT<So-juTUN
zm9MT+XcWeT_+@eG+>J*tKi<85{MeCN8$Q(z-qr#~Oz!UG+tI~i0b9dl{Z0yvB||xj
zSfxDrQSI$sY5BX_?~8CORUpWb6c-C0RKtn(ev$1}t}+)WCwF|-FPf`DGZX;A>ao}8
z=Sm1HyL1Zb9^CP)S7%I4B=R6z$X4V04t(CenRdWvFj$>f{tW5tn$OTY+iH$z=lPtr
z8Hs8z(9U~uOipdHt>#->Odj?#Q?Vpj2!j##rSZy$6MhZfhoyg#kxQPix~=gT-67Rc
zMJU*dnv;ve*-$zrf0y}tug1L7tTc1QlZk~_Ofx}@Hic3R5ovZU6*mP_5IUbsu`{i(
zWd@q@?zuf)s*8!Q8KT9eG|RKUGzP*?L*MCAe%z3Zg-%N_D`O-kGnP%U{MPApJUXQ!
z6<U*&=m0F8ipOp;PL{^h&P7L-5bMz;SJkN@U=ZB{G}(#5hx!{2x?kGP9AMSzfPJ(s
z@k?>v^u>OgO2=!ar*yf>Yt8mk!+9#p4YSJoDfdZ?`D-Lm?uLxs_J(rRaWjcjl(l~;
zK?+iH{>VLBM7RoSIUI4S@8WhIf6qhQZf^tPol8<4GKO~FDaOszF=U)$eMFfuYdkqW
zz+DbI#5nz-fBL#YQYm=$%cDC;(`mGQd(AgAp3TY^G|!J)7Q_n--a2QRRtGJ8K)4{?
zp&DP;fJ#t$7p1e0`iG5`SUZ;~VMI#JKc$bHToof&lELh9>6+(v@NK@y&Hh32(2g=(
zsSVvd5#}~IYKc<t3ruZ_p^E}8Ny24E<F)*tQm`kSh<5iRm<dqO89p^=3||U>ssUrw
z(x6waKfH!3`oiD<_5Zy0<6z!{&xf)jL%o2P%Lo|7Lh768S0_TN!+x`?g3bM7;bIK{
z6Vm?g+BJTCVDQyJ)<q~1C~~43dopchHTx6_bUt8qv%>=e?_>fj3~(wvuFsXmya5;|
z*x|VcAa9N&-KDBKX7XU7%%a%*bg{X~pGvPJ-}~dLNFV;?TIB!)5=)iC)QW?#9M5Y5
zz$*|;0d4KA6yD$OQZgQ-<*qUGEU<Cm$HVoAm4`+i?+d}BaFWcqEtkDYC1S_xAE1@b
zJ!kb+^`nhmiFtvLy?)OZ!`Hm^6)=7+P{+^Ls(bv#n?j=a#xhv4TG~JB2yaIrc+GAu
z%G-S<u6<7%ZwX(%KVrBWO576RiRVtf`F0z!Bw}nkdg;z!h9*m^hj?CHA`z116~knh
z4=WMmXA1#kNiu->uZslsAo76}LL=}fX=+YRK2vu_!3<Xb(+r_}mjhzB7zzFYh`?9*
zZ&zMiaT6MkKfk6iJ_JGlOwcbq(P>iu+bq88_~6K6d23g`7+NXELRGw=j@D~xdDR;<
zSpN0LOT*?Y4Kwiy?nVFt`{lej7~*hC>vfK=u+_JN3zv-9agadwoS08RcK&%sH1PV6
z%ii8DEN!`?BSa!z%+aHV0XS@=QCjt-G4=C;tI$J~uAk^!t2A#)+^CG`?VgGcm8PJD
z9h3cJL^kJWTc*5x8kyHj(HvdXR``B_E{4}Sw&@Ox#uCibFnTHl7##W;6`Dv`*DQd~
zzt1<Hk$SH7RrFC#yk#yoBs#i=#V*atFxI0@z2$1T6YDwu7iX#qdotRrLya5$8>>$l
zy`tr!xYPUpkWSf{f5Sj7i_}-tF$F}i2YMV^5W%qGTd++fR^~PAav?M(Rhe?D4Rhk4
zHzj$00OwBGN+>_2Zdq-K9wJl|`a_LPZF2iA1n!vKw0mMxPE?E?>|H7uedv-Kc3`Tc
znERrYG3s7Oo#pO}({__iZ|+swhCx#{SD8=QiDe60DB8|K5d-C-&7B^FbZ;?Y&#M($
zNP_3Qd(pu4q<+gzfPGdS%Zu5$0B^FA6+DYRBgg%sZ>sR_zEnm;BJUd|H}5m9tk*8}
zC_fdxX19`qisj~A-_rG9A@!WVvHZZlyfGzJ@APp@I_R9IsL!~3k_7ueI4AQLE3Wlc
zsJ2%gb=#nVoiKlk3(I{VD^xFu?on>(6QJU35bB<OhGV<(dzWyl{$cGsrs$(qIwN*%
z`00L-;>a=XfzR!b_H+p_jZ;uafnByQ$ZFzeFCn{<h#Pw^8>3?&<!YVK_sM9Hh2mS|
zJ(3Vr)%rlnjd6=fXEx4FmaYH#AD5MFaq0UdSvc&zWMhBTU?LZd+E|fvuB7Dwvz-&9
zuRfg@2O<Nv`+MSr#d2x5#T4mKoligetS~)>FTXjn(nbO86K)<>eWp)YTN2fr4;#I;
zuOdnA*$U}<M@4!GU@6mwa>^3y!5y|wZ%gt2Spw?1r~Xs#>Bj<<Gy^-JrMr~A>$lV%
zOegfQxuQPduw&@N;gU{38I`@@s_{4=;TOt_ihJyWm3kCn_5?TuUw8;s;?(fd+}bD}
zSR!4{l&r*?O*VJ_ETm@WXJ(YsE6toKRI1fV8&wE&J`FACU3z^38-{PADv@nR2gSA@
zmNAJ_%^i$9yRo{v+qLC~{I@2mg%vs%mzhz6dhtl@;cB|QY#OF&{<%y6?i>x+MlAdP
z!SMKxVdz<^A}37CtcJ<7rLtm5aC`Q=mo}}{tLCH*Xp`pAT@$~J5N)ar{YBC}t_#wB
zlImumyV?Xsb{vY|>W4+UU`1DHZWeWT;5Z>iR$1piKQ~KW_7y9eTQawn-6dbFZFl6l
zbHiG->gi2dKiqcWY@V}|IitB|q=-+-49|NU`Le1kvnM&LFB^Ro01Z@q<;)xF%I7xO
z-d5{+!?gc)RT8;d;?ZPO9xPvV>Q>6_qvS=+D?%1Jfq3HKVUJlZOf-#h-B8Oh@*)wf
zp>D75YFjB-bJh_xG>!EE+aSp_bLCUYHr>IiqVf!TnJ5J;iECG?hY<S;t2!D)ZK^Z;
zh_H??3h-3LD%~H~1*v)`sWBe5Z}BHH{}}jhig$d_ixj1)J<3^!JP-;5VV*>&ZGs*@
zMqi^@Gv{UkUbjpVm1gT^CmIz%)EFjBH@8MGdxDJTl@dp%im_D4Ld4O|(=V?dX1LXQ
zabx&hE=(>-5wdPx9=)X5(pRBtl-4Ni5NH~T-D9L7$ejA?u6*K(CD=bDz|dU%gf`t3
zQO3ZuZYsH%Fu(%jvnLp<87GR3j?-7JXvC@GpFR5k?!}!<mKxkcX9!XR@tc{9iKaPL
z?v(21j;q+4L8TDWnpD40^{#o$1;mXeY5m!wX!V@qQA#W$_IzaNsk#Mv&C2nje0f<&
zw8-b~(R->!NfITQtWVex=oEq$Qbdv_)@$k~&IuRwktnFF{qbwn&9`6Nb>Uc41%a?M
zgG${LZ>@pdbjP58^&MamShIiV3+(fVYy{dbgx)RP)TyehuE7}!6jVY<YNFJeF9V$l
zg7`|nZZIsS#HUz7#P{7*x}HeYXdTxVMrEi1B@EU!jwKA#FA~PVwZ;MzIwpEdY_S<+
zOH{S=3b9_iM|RDMqRJ0bK{Sdw<V3*)Nr49W-UF}7uaWTRJh%&%Aug0LKOSyW<(}Xf
z$a)<IXw;MCu(b@IT8KjA7^?EA7naWNhp$6!7SisQwIBKJNu8bm_>Z%RegiAp?{fle
zrZ~A&f3U?pW+7v@D4I(fNcW2BgHx@`=twsqOz=~`E=0rvH0O&X{@H$A%i7trVZ2A_
z0-AHLX$VU<kig&~e`L?NeZQ=UwVHgNd!4D++^|uSH{NnB56T^Rr~Aj?h|Gd|s})jV
zR?b}rb~JRnmY$%Gi@&f1GWrPZ<OKS{E#}AQuBcf=j@yhG?Niu5swH31LMTSo6XV@T
zYh`~WCImJ6)jcP?8)`-@r}z7qx<~c&Z&&ybIp{n5DDT>&kiqv@&@*~q_hy|<gVa2=
ze%~?b%lTqb^fq*+=oBz)y>-?`nyJ1?Y7xt?`{T<VN^h%(Nz8Gmxwgc#5GaKku48`#
z$C$@e@5n&(x~tpK9nqpA0%gr6o3U1vv-hdY^LZ#3`U&!T%%@9rq|f1)S4$IR0hEwh
z3SK@acSK318Is!)72mmic*x!g{@TX6;x)WyS%60}rW`U4$kY2Ki}U-Q4AXPZgCTJl
zfXZA6p~0TKtc;EsL)}m%Rf`Q~V(Sz21@}|6ujSe&wMd0bVrk4QoO8A0MgzdP^fu%K
zrmi>NyhP**=B8&I%%g8dVJT|pQ!OT)J~x!odB)G@6&^!F&Xx#i;#~kuQXG?@y9`0`
z8jmoU@C*%0W|Oo=J$eg_#%Ba)iUY57W}7z`OL!oVThJ2as~-$ZUM^d+rqr!I^IFjX
zWBVC5<Q5YLjfFEd{uW~%&6k<iam)v@cdWT8LqqviJh%J~T`5J49m6@ApDC!%o60b3
zlv7RXA1);HVnI`w>Xt}pViP5L?6Ps)lU5J|-On4|x5|JRH{|v!IN<tw3S8nyra|Fa
z9sna-mpH@)q%fW;#thMNA6qS)b9WnV+jvkb?v$uVMQr;Shviu=FWqZ4cNt4!u0Q)Y
z);LG@Ne2Ng-wSo20hYIN-n^M?IgbxTY2KXp0TQBynP7$@g2scMk&noSpUb-Q_9k|r
z%t_4K1l6K-DoR{i)m{T-ZU*#G1tn?;KYQzLS1X$kvoQ;TvRZ)H+(WDK2^P{Muh%p8
zuOZv+HtP44qy8_YQ%A=jK&dp&j2#(8xFN$*8f2axIA~`-gVRcW5swg}vUNWTT4|xb
zL>PmIG^6cHduk;ZDTpT-w*`2b=}lq&|5<ixMRbBJY}N$D0sRwWI?2O#;e}Xhe0(zV
zoP`qWB*HF5d4@e726&RkDlJS+nz>&VzP9gpLxa=Pdj-IB)8~jZ0xqAXJQ<(_Q1Ei`
z&6%0u5p%gQxx6o&7S&E2IIwkfqP;HDzf-DTa)fHDUASDWrJ7-OUX|n<qN(9?_VZB@
zh@K2u#hmpm#neQM0Clxf-47UzXNxw2gb#+Ydn9}27IF`!GTP7Z0RA=eKDPK9g)9k^
zhiDIDrW+Pwu}ap8&p#x4Z*`S#KFz59q;^AWp^_-J!aUqBFz0ytC=Ns?e__<8*ixA=
z+}|SLZ$O%csH8ql2%9<ImQlG~w&JK7eYm#(Gl3|JAbK8NDJaseWwZ!=MKKp#1Onf1
z8l6IbD0%ypX3Vz}#Yph+&&XMX#4kum{*3@TEdQsJ2yw!zJ(Z{Y1Z396e>{3@uxM!@
zW_&@H(PqGBU3px^=npz&)a3oneUBfD$JMVB=SHsCO|dRb7o{ys+C!t{MTlnUx~#vf
zb?xF@Q79BkjoXBvQfjTMxl;QQ$B)tPFSYPn%>=h~4pdKK4y21jI}=0Lw_^g0MZ1>0
zMaEQ9al_sGXftG#+bw$q{AO5i7R1BwHm9v<4_%_U+g77UVKY3f)!YDfnbb-^Sf=9X
zzUTJMO~iU+Qp!wX1*0>fkuR76^az-TxMX^$BA58{Kh%H&A7|P+L|>&H(ZW!uzBj$C
z!e7~-%Tr?&eZCc;mcswvsPxK}{4kIt`JFHVrJ!^ByWpEmM<rhSmRRD+12xm#{#0%|
zo4vq3CIS&urUX3YjTV_HGYC^=Rx$JC+LI@&{nU17lFG_N=Jcfe3+`@)Bs6ZTwYMkS
za(!YFFz@6<+jwvMR_Y7E1JL|col0j(9~e&liJYf>2C~*PgS#&h!5i+1eBY&9l<Xu;
zm5h0TyCRutrhNr!kGTNok;7>Se`3@5A=D2})4dQ=Lbi7ELpiQ@aGf`O>dG~-{rIee
z9&s}0(W>Ca(zF2gRl|+DEbG<jyn!1@ofh?d|2ys7S<Rftos>jMZCmj6<<L*8t#jU`
zBt~rISc;B*radoT7`x$9=}hdg>=#PJ)7>Vh$6hE6ad&nj>*K!(9`EXsj{E;E(NN#n
z<rX?(Lin*}8diuham#0JiP@P8uZsn2I9AhzxU^!?<+LytgJDN4PgHDAJwc3Sld)Iq
zPuHzaN}v86dz;nFk<GHXXU6a#YZ*F+;rZ=J{^v8~&nkKl73P~kBoY6I^Oe2Kifg`5
z4as2U=Cf|~Mn`xl>qq}mP(>xZHN;%~eYdXK62QEvGuyRNb#<HG2v_GV%;@nSnf{pH
z`ZClM)aLuS`t+qoiJ}tzs}G%$i}V@}C3ekkP5<4^Yan<BhVMf7bw-ZqPB+(rYgQ>S
zGVo+VAqX@L`QWZD3X+OWkpnnSEM~p>rxKihGE`|+4RwpL<iup#O!BVndU>b$8_IQ<
zXVLJ&lFU1%8B25DCl6kvrxKufD}x$0RaH-&sQW^h_|UfME3G87B~QCKWo*@@Dv{b_
zK&puaMu`OVV>T3LX9e_4RexXEelcc*rgptnyEP4o5c4fo4V&CB9gi5nAQvfLMDcsQ
z^VG9qF&i0{BT;<jgKM5SJ*_{7_vBD-nZcf8)^ocbAA=+&@fMwZ(?V}oREOdsO~MSP
zygi^qc_b`JoYx3W0W8{vu?csX14+$z`$dh95vMkgy?Eemp+nR|A1$Hy9GNVg&y~{J
z%(7VxI^B7tezDBToy!;4jHr%1S)vES;+|vAEL3=9p>b8BYv<tIDo^X?RB`lNu|*u%
z2dsc9gyJs%*pe@as!mhne^nl4I_&j{mST<kKh?ymr%2Lt10>nDRc3XEhGa-0g&L$J
zwlZr`49qW!t<P5%X;}OI%^FS{?zYZ&4IHp?HvOEsUwL~!GQt<yz0LDOetVPd+I7`9
z<(V6Nh7R0;9Jy0wmFX+vqVIbKmg+MXm@r_wcNbz~L-W-Skx|(6D|*JNTvVTbEe{;&
zAA9&+-U6e}zBbj-uEJxHKf*YcT7G<jCd6eE^Bk^3ot8OqSCcYQELkg-y%V^3JYY|E
z??IYkdNzEvUEDfxr{r4SPZ#%A)@M!e(#)l4W6Wzx%P<ANJuII3iSo?SG}<g-Z6ebh
zh#IE!QbQy7+bm<@3}&LN8p>K8Hd13py~UzBx+xJKWsC_4{hGpMNf*5q8{KjbHZJNA
z^jbTY%}}r_Ptz%g(<ByL!FNfbR_wwkXz%u5dbE2b&t`DC`*>^#edwhcZ=ca_8*&Y?
zl{cCt)2II&xO<)-uML|M;dle8ZJ`~f2E8$F(2}$CX@l``6R_kU5=z#}+)tXXCsrYe
znIg9musw++6$%Z}mo$XJ_)Al|E9#NL$|hRc+nIxrC#2?vrCE*+;Lu*%7Pkduz6Aoz
z=6?VG_kH4)EQP{&Cn9sBZ{MzDvB&+fAEV#BeS0nl=WFQ5$W%&MJ7#9;mhXj**J`Ir
zR+6|Jyh86Q(e`S^+yNbNO|Dl=uOgcpW%Vze*S5RgyIE$L{fzW@ccMx4@;YnlkxA?5
zaW003$Fc~VWK36SZSMTIvt1ql$(QxQ$NOCkX3yfdDS|@b>U(Um*1NaC9boQ^vC3-J
zexu%o-s!J9#DP10tv9j7EqX!0@7UK^!6&TF4s>Fljo2K6S5MV0n9Cm|0Q3e&Q!rA=
z<P#BLp%EkHQMlgz2>npX9Z$)8+E81nn+%5I`6XaO5-DT<n#I5(7uL<aWJEE_e|T_T
zb1F5(VPia-b|3o4PzxX1>|>j8V0%P3hEr&E5R&YWX(0Rh&Q}B338(XS`fzLR;O0^i
zd>Hn<8c&)sFK*C4k~U4@vH;Ce=+&!2e5nwaToqMrp`;65!)&i}-NFU5JrG-atd}08
zK?AM@KeF)*dP-jqQZ@nvt^QL%gXO>D3BQc`kD#^uZ<wh6cW$<p`+ni!o<~a$EB7dM
zXiK>_*#iOk;S?;n2L=z$7UxKT4FBS~l*jqV5r<K@+b^)1EWf9}T8s2~k|<7E=>3fL
zc?yV&`?|@ewX^2-Wh-^gXstuOJjO5YEOQBWd8of5@oLxDN$2purs%J=pL_ArjuQT~
z`pGQWzw#ySrGw631ydqhJG9;XUw&X4AwKL~`rM8aD$d$;T{udabsN{W56yK?!3~Mk
z4%MMZK8T74XzxsGaW`k;61Y+_7WOR4s*$=FT3yC`ppYc2Lt3S*<ZTVM*6#GJ!}4*W
z7Xw%Ur-2EaOmb8CkKapTAD_(anV$Za64NC}zKMk|y3WiRca1&|N1HjqD17pE?RF3I
zpiXX1c32Hg3ebRHaJ$mS4#OGID+9@UD5Se}16&`RAaewayHUvcvv3QC4&A6TxtVdr
zT$1+9pPc9<5*g9&wWo?ZQP@+(nR>wviCb!H35qsum>>o?g+x^38-2Cux#N_m_E3sN
z0tqF7x<Xg*{;$}r78H(Is~UF~g|{xi?H$qLwB?B*p`5*^FBD#~ZDdngeri3qDp6--
z{o<&O(J*ww#vHL-hMxrmqJhJ47Qrp<E>NdRLU5MqF$v(<tKh_8bpLFLFZzS=dGc`A
z`Eka3e#g=HR8L6L1&pRP_XOAbv>gd`g-)XXqjy=ke8ct%L6}x@&+K<Z2xv4*YnB$G
z@xdz%;V-^G4M5e#Pad562mKk8zDoS;0a`*aTZcbvd-+P$iu|Lk8*!vLP<E|v09iK2
zLrSoMy10Y)sr}3j(#hu}wYQW=U^fOuX^pR_DJo@4!K2uMSqM0Psh4|JyP~TpVyDmy
za87nFLD?ncf;-)H9cYIrcg%ylY<;3C(KO3>e05ej2PWVuP&-WV7*Xz-^YdpaeNVp4
zS347URKFp(y4dzcf?Euw`K@p14Q!Q&zAE|}u&1=ZO9lazgiD9wRd%-AyvB^#t4>)o
zn<PhMD}*zZBul_nTG1H34!A}p5k_@V_N8hrM^2lp+m^~T#<a=^a%CA4c6Jt@8Fr=o
z`US|WGEMsGLtD%#&lr5j-vMPud14S4r+fG*+Pedey^t;yNqcPCF{h^dphLh0mt}=>
zTIh5Ujl*cs#>u;pQp2VJM{vf&6*oV<xG1M&vBp<~UOl%B2nwLY*(UX7@Kyu6@y(tG
zw`tFx5?mX!hml7Y&h?r$B;EzEB$BvwP(254=XE$YztkSR?44VlB|cz06%L**_sb;5
zO?1<jwn8aKs%lfNQRC*uRb>2Nj_6aiBDkj?Gq;%?$-RYrP1murR10)yKlB$jpRoq*
zU7O+1_k{A7X`)3)<rRsadc~jp<$M*VEuX;|6xDQOhNr*Vku3c>%S6uynj4a-7SL)p
zY{A_GL;yC~rxz{!hK~Zb)WIvKeOgsCpI)x#cu%$6yq%wB#r)V&9!U5b6c7uI!s=B!
zB1wDqDUsYUg#?XSz_9olF7?<K#RuV(5<v5an=<o+mZ@R`D{;Dd^H%Vi3xRW9#y+1P
z9<KxfR$IljrSHWp9~d>xcD{h2wDDc&ny!|Y+GD2sBK(aaW{CO3T&3Tvuj8CNjN6N2
zc^<8pBeum+YM(Y_a(^QMr^u1Bg5DHL?aMT55*qSP76$I$#wd9XhZgTn_04@GZH^3E
znglJ&eDjmkh${UN9h6h?id^^6oQ?kIhlxNE{|n1N3f<tO2&idgCz@@7pC@r7owO2j
zCqe_7e}Tr}sk=d`xn%Px_V6wSh$;#BUwO8UBYIyK8PKa=?hnuL^n1M%>R(~3Up*`2
zijvce&z>hx^xV344M)^U?$&HBi@N=CsB!yR$aWt@D4j$@85l>8CgVft*s;SQ5ux&v
zuRW5-qk1%jf{J!1qa-^6yn6<S8!{Rc6d*v4X~&rSb>Hp>aAVR%!xZca8VP7<010#C
z&pr(kf!0j6UhAS}@7lX}z714Y-k-Mr2U6J$%r9TLNgk@iro>GrLVqrvwAd_Anl0%1
zNXlv{{r)9TfBC(>^h9tn+sIz+UU!XPOV+D_OXveoVLr~j@2jP1&!}hW_$mEMQ~cA}
zyb|tYM@Csk%p{W)s+AS^SYU_@HzktNfMc>tk=jufPq`bxkAWgW)u9_gl_#s{wq6h}
z>tG`AhC9kff1(D{|A5GBWz>?bPhM<^gF2Z}8KFMxG&N-#7Wf)HTQ?+ny{83(w0{iY
zX}{%0@LVcF^bQm!$DPJOmJ9`JZ{7m9kmpTCW4yrK5Wa+krveu<e1OxeC3f+mJ|WT^
zw69&*!hofp*!GDhAqnsv?|nLWX^9sv>Ud*Pv0edJrHe_c_J+3K;Y0fGo2K7-<nv!(
zeq;WknpURoMs{Y8T{TZ`6#J}0g7QDb-O{(ZH>^3KpC?_WFK2zB=YrOQX#|1ZRY}N$
zsjg3wbQaq1zOBrX2Esqh)oYCB=NAGx(#X}&Tlw5RR8wig^q~--1elwg97Q}g_Zmel
z?@kHWkas)hZA1u-uXWbP<XgoZ>dM8_271IRIjYHLUr-uPBp=?(Ras7yfm^#HYOSK&
z`wvMb^~2LMmRw~tZiUa+5rruoQg&l_>o4?H(nG{Q-Ana{or#-gdml%+`dImrvbG{(
z7p&tb<2KF<yvm!se7dRj@(EJ#a?weg$>1iyEl$<3+|T(cr$3H{GD2`gSx^hn7h3?N
z-7f#2g>parXHTO6Xp+A#C2Zuc{Zdc36GglYx@H|9PCaBM{&in*V!%HPSi-P^+!JO5
zI@rugFRTlbeLpC5i#EQCqt8&7BKWgRe%EPME#GG`?dVxT9A|<C2^5$d+!z%64F2q-
zeHTciOERD|1?jbxaw!O@+o8xKd~|6D>p(!G9fnHgQW#ss8N_Q1c&3xd57=V@14Ul(
z;Oq|aNiyHKuw+(mm2ptbABVYXT46HV*GPgdjvGBFxMN#vS0!oI8@L~%w_{iUf@6pe
z!J}wU#&NgP={AWH8DsoS@;|-{eIIF4Xopg5(CA$r`Op<MJM^fZmW|p!C$FsX1cO3-
zXT{k~t8Mh|$DZr#%R_1`cC?(&)UmIiK8gCL50^*qz!ra!D|%UMKS$`?rYd`au@Wxq
zZ8zjW$5g6bF+}Aer8`oNRdVp45QHLPX!xcMY;kualCjh;XL-I-zinD@hb0t?Fhb51
z&z&PQ|6;-D=v;9yZtVyO?oM4zi9Eh>>xj-ym(=xp)QE=7Xv{$V{4qbf+kT65`SQT(
z!ZyvE*xJEVow#eKj@8VD4<6E)84uEj`&>;30OfqZbRZDZHBUS=J|IdC=Y78387%)%
z9dc1B&9C;GL0lCl^(lD;dekR|9TQ7r*scadjrLb$X}myZdUYo;Torx0UU9+a&q+K6
zK4o6kXer21DjvD?6l{8}e?ow4KMQBv`LY4j_lk?k1I<U)?pm7~8iKwsU=p(j<$n9!
z2kMhKqdXxx1eJ)+E0U>r+oK{PaH?B{SH*qzj};=~S$xWpk*YrTFKJ~fRkm`kA6J*@
z(N}Xe3Y2H<DxE}q?0SKDZY$x4g?Clci`I$j&1R_-4@bWPB_XN1h)i1}{(~aXXfl~*
zZD{|}d`59%eJYhmhzO}8dYrVeA8uC5w1Ami_IN=cm@$p6qNQyCx2Yd%u?h*-f>sg`
zd_4%nK)XGK!B0X5uzJQ&ykzsh$u(ATY$O1^q0w5^ggB79gS0qa&ySdKa40%KHcB;6
zSuzO;!>CpsnY9ilN0f=q%y4Dq;hn8qwyJ1qlNKKx4x-X<p)p~Ej>>n%%9B&MK?4XR
z6VrUXNWt|*BRA29)zaX!+<gAfaI)SUD(cF_3Y!OD<wRXt^OTH2Es}s-Hp>%fR}Xm1
zh)0bC`jGnm?+!;tk`SQRu6~VKx=N|OR5wj=Uc%_QBZ4r2r{vhfwQ+~O1RC?#%j#l_
zFq%tNZ*=in4T>4nmTeIZUgv8d7i+Y-Eo94Z+TEXj|F2#QO7z`i_A{c#-IYcf6OTsE
zROZjR+n1d=Z<Ab8;{rJ60~yhAYY^%pfdbEicuZe9ulO8LoQh0nz@;!D+}>%+j1JTn
zd+6vm8?`#Qp7VM|4Fn(<u1|UTtBWttnBZ&;EGhG}N4|#g=Z(d2&hk;V6qp-Q8S@Tc
zfv{W^3rhJuTZ<b2l%}C+a3<A&K%uPhts1Ve4X&vGB(I4DI>8W8II^OkLUcMnV0%8i
zr-c?L`(fwaopm_}=js0UIS}xkC!hfcsZ1Uc`D4(y%EXaKXp!_}&7Sgy>)}~Pk7k*v
z0R*<I!4lTrFP{lc<^nzN_)})PFjT8MS4t+sAjV0Y3o^L0^7;boGcl0>+iSy#a$v~R
zeX^24%(kxlnZBzNfrHfi>tqOoyp%v43|w(75S}?G)<W#8EOrsmqpcD_OjyEksz_U@
zA<1Usg)MY^`0t<D1c`3BP|l=M175IV!tB-f!$(h_W`zJfE2WI2<!Ju2uvhRzJ4<HX
zcrk*=UKa~ht6h>apg?N;OE`O0+b$p?Yc&Fa4;>M((f(+qN5a0fa6{?2lCvuLHUtJ~
zs?$>|(7(8KG&DIi>SSt=D-4F6OKZ8(PI2i%r5OSRluhu66AmjYKYItpG80XMn@&o9
zR`GQZ{5deuBqL;2oG;ZZDUr_&L2EFS#)4iOjE8~wMjVvio6QBl+}v)l0*m+ix|BR6
zq7j@*t-zf3jCOGVB%GV-9-qnRuVe{8<ac-VxIdi)<x;@?7;}&cL@}#I6D^=$@kKFx
z{d!~Lkru|CT8tTJ(DYl}5grGW#?K_f{hcNS07O@K7$#<A#U<(OAbu$cevT4@SWLHc
z%bVTOg_e#=220&9FDRErTMU>>Sv@<-AIjL3V*mP=gMK7dWVl_LqBz>zeAM?E0)b*m
z(-tW@b|C-yqZl(%hEkVNw2uUR%ev%$PwfoW32O$$RZzsii+!`7Q&yF){S3^1cz<&M
zQOa^}ud$yq9;5$y=a4dqMi8Wo()uUXucO%AZcab&9@l#!UG*^*LMtD{)wQJ!<FGp_
zs|t$k(Pd9v!rj&_&eBePwZHf>^~{{|qje>0#VA_7t-GV0Vt=7IO_^w2S|1KGCn=&7
zIiMqlKFliD13Y7lJK7x7ntg0O;-~v1`zg0pU=VC&Sr_guH7d{#*$<^ee(Eg@iS`F%
zHA>;eTJ<4O1GTx+rl($J0Z@RWFJ@}K3xQP1SdkK<1Xw00W+4cO!<}9e@|b5YYCH+E
zFWSfJrGrx^O4gG#;Z|M={+0UQpTC}7#2Ib8d!Ua7GQO-kqNNQmX*UEU0pJe@7AE4U
zwf@t!j*X40k61-dQ|KSSc*Zpj9>=l0*@|=`jumLC5r}r@uU|vj7K7zem7BeOK_t37
zhCmC^0leiNW{O-pQ_NwEDVnA>L($P+o!;NhiVSBkC^Ts;Yr+#e1qvfIbc<X=L!+x1
zX!Sk}JC7k?wg`}^s0$!7s`D+^00lOcXmk&WL|q%{Q?O-Dhp6i74UK(+eT|KasOBQA
z-p<bxBT;UXx3U(xU`9Hh!x<0+J{6%iIV5aW+RSBs%*)5jh!#o^VfrPLiE)0`+@rJ0
zw6CXL4{V1+vGlV84Q4AZ4z3Hi{^7J`LSeh;6Flv@C$u13DgZ|FnM2z<t&Myfgkuf2
zhT4FbPP%{gX1*cd|M^TZX?}q`TMfn7#qDtGga{^@(Un2IYi{mtx{z|d?Te@V?CBeB
zCc9=Ae|8*hYHpM*&FC^8+%+g6?9uX~^wr(OazlQH<cdTDvX{*wU|dw6Cu#}4%uryG
zFlidxPtBU=okr|ya%Syy$(i?}+No+>C$AnegCRn?NkwemQ9q{hZ80)DRKKV55>n@+
zrF_6xec$!x3-5M?t7hpcw?AKqOMFRL_1?t$qmqSty(Mj6DiAf?M7yNXV2p=OfuA`f
zBa>sjholVH6rcqddf`ip%Fh>sbg|fg9}8rHx@*{h-8b_G>|28~r~`VU8QhR8o~FUQ
zVm$X6d{aD^e%QJ#Rz-<y56q;h0_|x*Ku=q?*e*3b#BfpdrKRF!i$0d&Qpb1a*s4V5
zF58RH-sBBfP9w1=PNJmBYH9(Zk<h+07u6vKnXz<BU%ld!%VwogfWRR@=A*nr5|m0U
zs1j;n$sR~5_RS3A`;CE}PVUQav_N;4R<v6?yWI`l>f)Y+bL?@#<<Urrq-=q<+MGeV
zKh*wttqCH!YW*RA<b>8df815HKiz1(<-p~CrfcD+F|np^Vcxs=+ty|2{Ww#AoH6&%
zo#cyzwgikJ)APFGIg@CG*hvi-ht@)l>k0=EIZLZ=Unl@u0cII6x44LJA^Z!4lKC?+
z9iBtCzQH?K4wgx1B&ErK=cc(pgvCHGS8NR*-4R`eCMk0^@ZhL4ck!fIkTYX0{Nqgm
zXA54u6v#2s$LYCGvvG4HO>^;rGg?keO=<Rh@bJbBp*f9zRf2wp=(Bi!dls%FHo6F$
zr~^jT$*fVYMQQFbS9XS36h@{DLEGn^RuF8c3lz8p?bhT3Rzz53a^fhoz_41nWuB7j
z&9IObGb!83Tyy{$iupBMUg08g@)^*m=X0|P+;{FBP~<g^s%AH#PTxx;X0ym%aeJ^L
zOpTq~U9X54dSF2Kl|)f!m&^p_HfFM&7L^=+Xsbu5HO6&S1UE<I@a^lk#1($`3c<MJ
z^)84bGx1Op3y%6!R>~o~A8voFukYHJ1yE)-pw)>!Y}+;oIY8agmiMNa9*?C0;5E;h
zHZt=0bU-%>p5aW6&N2xd_SY96bo}-0C)BUNVo1v5@6@~jh<6gp=2vF&@wdr}H$BYT
z{4PCWcnu{5WIqkMf5GmJVYAB1Ad)%YW&d!Hr;EKvkJ70OOUUK-T=0;^+mHL5gr0<q
zB%rXE<C{YzmN2N69Kq%d$;QeB=7Ry9-EMStqr5tRwN1!i;j@uKgpJ!_b8wR;3n>C3
zEfR5KgQKbmo0CAPN#e)o^I~h<*%Y~*smuj4Wl)?JMmXI8iCS${OeonAC~;6QHNP2d
z87I7@!9)1R!d8j3ifO>Ls+-yplcA1kmC*3XzXVu6ap`AXI@6oLTU$`DRye7g8L|tZ
zpEjfb+C53hi6{uQV+PGfmYNmYK&cfMz2Hn@A#As71>D9s->gk`+WGpOc2;8bao>Iw
z+|m*+q}t6T$4O})h=stm(t^*S)}vJOojv*?LbHPePzF;5I;L%%b*y%a&;$ig1fR%r
z&(EdrJEy-Frq5agd~+-oM}-f|I^f1|NcM`aXW8ji6?K547g`8XK4#|3K%L?MWfbCz
zu0Te^JT~LavfwTq1(Ui=feqFWFM%nOSd<F{Ga^h*K9pX9Z41;Cn0F`E!Q~Z|sXp8K
z)EivmLp<y8g+u*IVql&qF81zq*1^`Wnt`R(RGt_o$RL7m@6`tLO-J;YdmVVVBnoy0
ztQ-0{?+UAY=$=Nfjmdb*%79@IKv7BC)~E9)?SDPbdVEp&Z`k}^LhNSK|Dr6jT4wrJ
z`T;cNsUw{T2Q-t;d4Wl+2bGvPBir;f3=Ue_tqw&Dr`hJfG93rvw{Vju#@iM`hopYH
zrS?_0YJC+N+oKRycSZeR?g<SMZTBZX=oTTYKp+5sgF_%PL)jkr(ExB`t;7gy6WzN{
z#i7_Adnmp`G7ib$YeR{H@zHC6_9u*0m?Ewg=|evVzYJ9JQC^Vl4BDNzq-#s@=556@
z&gpIJ>Lj|`ofd%rjvvjgu(Vy^JZUHZQ6_h6WNlg9F`pn0bGzs>?3HLw0ZOK&|M5DU
zPKimPl{Zeo*d(cX7TUPF^a~>+90YH4G<wg9xp3p;>8YBWFps2b{&?jK$gEYWx3(D1
z!<<HbIw*X$Lb;Col*?}E>21adU``7ytCf#r&HikiojIc~8C+D%CNYW3!UMh+0Xdsi
zJa%p$1_QS`eLF%c*M|;d-cycTNT3ng2n@+=H5Bb2YKy3*W@TT9jMnMqPRxN}#5li#
ze0*p1fWUan)K^A~Y4FG;5kt>L0VD19O>3u&F_-A{u@MHIcS<E9gArWQzBk3&!xyAd
z4Hy~g+%~;ClzTj}RZEdMVB9+->e0TnJmI^0V)0=rO?PJ0vAVOUPhak5s4~M34*5kF
z25O02RuL8f<kvLvSd|PakLhRcQ!tE6_q>Q>{_BoGq=8f#?NIsMkGNodk7Ylh7DoD8
zzPfI@YFNx}*s<GHl$AAFAR8LIBA}8EaENnrnY7k4G1x%2gwFv6l-3YOX}~;6+r&J3
zrpbEK<pG}#3*Mql)_tH1VVln(LS;JP+>LL!U@enFT-YvoYpfdnBm?&Bf@OHevw%+U
zNR<H|(&&&Vfy>BWjHA7s0U^svMzgEe2yb+DSJl{eE#<^>v`hffK8eg-Ib!p$35ZH=
z5}7G;Zk%*q^70w$Uk`XiORbbdlm;NByg~_?BxhNeLBCc$A7><$B}~vTOe5~&dmARs
zotTzJbPr_fT)?GJloLIi(i>qk;>rz=9}hSpoIKo}ii>mnOkQ42-`w&=W1Po!xvcF-
zEnhzAm-46a){EHM_yRk8D~DsL$RUfV1i!Yw-s%fDz8_C7(k|$ygu(YpZpJvgCa5gz
z5rLK^>vQvTkX<$?3u_0KNH*~diAHfFDBFo!mU)+qkEVP3!7wP3Uf{|L*1y4G*7)n!
zqpZcO4g-UdfaDhx0NmOOot^!(ktSw_&U!;}Nr}%A5Eb1#&YUEYt0*XFT+&5E=|j=<
z9|0W|t=$~l^XX$>=y>)o!GlGDE;{5K{rqWO_{J-W&Yzw!e;C)M$@9{JN@+AeU~GqY
z5Kiw*B<7HqHp9|Xm#W1QE}fP?(CUxm4>Si|42@W%F=%{!XE;1D$fP_A?m$ZdjhZhO
z$MvEw3*)8HHSKT#$bZ+I%5UrFk#v%-aEB0KAZqEQbl_q|krJE>MX7oAw<gf0G+@}T
z5sAIEB+^WW1fBUJtA&59=YvXiX}%1>Z0-PRqgo|BCn>&`IF=Y?=7<!?;b1uYRLbGU
z>?)5<=Q#D7yDqGNhr5l|ces8J$>Q}~C`goaq;?B(t0HPdZ@otlM-AqfX#@VUglq#y
zWsHU;X<;Tgvt)_3&m3ev^ZX7iX$`k*O%m?D+_2dep;STdlq9yCR!B#D=d<hzh!-Ts
z4+{(G`8plP5;0N?6?0thS|Ai8kx**a+lRf6UD=DqXV^Gk=dgw#7W;bNlJca>R@7LJ
z85N`5m3X>xbXYH-LD6v6GPDl}URyDKQhV<R>zb^W8M3^|hoU-b4nq-D5+^lon2;PL
zp(ocvSOQQmHb;Zou95p}Tj@NO8%~3BV^2n9QToa)l4ofo^B7W2=o7O2Zy7hzS9+Qa
zUv#>;B0uVSJW<u_Y$mmlLM%1xr6T%$5?t94+i6~te0{_4v7%C+oW0l?=(KDPJAWjJ
zjM2OKCuDec;qpN$#?87h4_|liW+ZQNmv^RCr4=L!$mvua+eij!`SSz%^3zNf+u|1d
z<ZM<4V_cx8yuLS23+#%T4!88hxl)EiDc4=@_`Hll?$H6$<hDICmFVelM#)W0$>_+F
zhC<5xXSd1N+X}5uO<VfZuwW7p^sQH0a6-<BbPT)S0%^)z_VHledl^{j(eW=S)5fV|
zM7vU_|4?>%?u&Sz?xr+3NE3!%pTXIOg(K;@F{1e<)9X;eFV@x8p{La*u76dWsCAC0
z;3<~x07XE$zic`7(5?15A?1C^k-R-y@)9btnLDSgvH^s3d$6>z1M4mtq?T|Iz2YM3
zA?o4=EdIQF9Ci+?4{lBwn@bE6?KU%Y0AxOc_BM={1iR09FGv=mecTfslJU`zg93YT
zOo1Jo@g$P+4GQO+;4Q?&^kJcoTaNzub94*cZc~hIGLFQb;6R~&lI|MOw~CDqzYY(N
zjCe>+aKWO9$K$o$5FXMp@zCQ4CIsQ>3o`==r}2dIk<GxyW{mfE;}0q4`V0{PS5PNt
zf;VRJK9SlWmI8Ajs5=$>aDmk(QT?&E&SMTv9|S&6XJknCMcy%W2@rdP%wEgdul!cz
zeevkyGTT7sO3FwDl~dss9`+PIA%681n@s6mWE&6(nC5c8(lsyV9gs(PP7hc92rczs
z1*EYX;^fJiOiBZui#@5-C{m?XGQ-G^>`gnqI*TpO>_G@HJQ>KO2~5KWF-$y0DAG#q
zt@IR34u<YSY^YiH_QOt(`~zP%?EpF|m0UQ@kKT6(py~?^WHl#Dvft0;rtbAf_j5H(
zAf7TwM2;n%wpUPGaCvf~euab5jp-?IPA~_>MfZFui753z0sPh|B0G^vM_P~}qobEq
zrQ0l5Oo}5#*R0Y-wylJR92l8TH7-l~!I80%rumsuY;$h{jKzA1WRep%<LT40J0%5f
zJdY1G|0<6Z5BJ$=b-0eUKW~haZAq4wB5jcOE*<9-SWNTY_r^x0k+rpvju~>|$Mtgz
z>Xr+=pZT<o4LGwQqR7j8PLpHCdD)kv?F5SXPG*4TGUNRr{B9c}HE31DM)-zGC(vYs
zLIA`v<??fOH4)wk*4O2W@XAA>auYs&7%qXV9JSn}5Q%GN$Inb@Zcg!Jn~;z5y>%z8
z^3vmGU7;TFwL<%I6im0bLCFC%Q-^5POQUw?oOW(4%3o!?IS^&_RtF+&ldlJfLJ~Uf
zM+45QzIfJS^;%d8uD;1{8XM`_dH&`30P?~}5KCuNoE&~*P6xuc7wzHzhfi8dI^1I1
zK?i^(IYS9uox^YP70Q<vn7PQ+ciS<I-6<O=qjb2KUa~*2fpvh!rkDdQ6hQ%<x{5ik
z8H=L;r|CIP*4cy|Os)38y(8K|GFf%n>EYqMHOIy;UmhPlW)g916w1eH_QvJjhlsxs
zzRRIMb@u&1a;aLGnikCh(OuI)>sTNZU)6T+O%J?}F;*Owza|+_T<_`~#Wq-@lQQe;
zoozSdrLkLV(vK&*9zm(eQ8rS$3sVd2QGM&{l&w>T>}7wI?C(<?TtqE*Omb91UAfba
zZ*pvTz1@OXrOn$)US@CZqYN#I=?n17u!of>l~^;=Qa)VPBkGn3IpP+HR#54sm{HY`
z+mRkD9%1=qq|fB0SeqliDuv(YXIAV~ZgKgK%|}d^D44=pDbsI+P4mHNj^!aETG1E;
z%18w+gU}@LiOGOh`t`J+uUxQjskjx;D#*6=jSCkq50sTIXTH*TAUTuoOfr{&8gQp5
z(IZ+dDQS+uxbwB$YU{MpYSgV6Js%ppFk+MQ@*7}oqcGrMU7Tw&lSwJMSnWmIIA)e^
zM6u4dyCpc1LsKr^Z`u`$#G4rQPG{dIe`MWotu39|N|QZdx{AG7JZ#+T$Dj<OPa0Wd
zV#!EsUrYf*3I<*qUB}AO9no(Ns`1C*k3Or(x!9<v{7!4JSqY_))U`c<n$*MN^%rJ^
z=T4=p>;p*7UX{56pUxSdX5*+lmX{xiD172Y)8r^qOtsfs`JakDoOQx94|Zfum+8Ls
zezZtV@&Kz_v2H}f%*thGFWQJGGO015Xk}l@lu>S0J&{A?_VALZ`AGj98-GQO?`Ion
zey1g>LZ#y|HU7rnV|vAv3w8~GK4I%wfbk`<Wxgh3A)tvBa7jW9%Q(=pU4B6=Y@s$Z
z!!f0pk}nmoTU-)cS_lkD^$Jup&>UB}`S4+3I45lSh<H+2tlv(OW%~feYBM_A?JWj6
zN08e#7v&jt)8S!cBqU&iO)T7$L-h8(1bXl@w;^$cF_W10kKkR?i`f_7ZX<Y(wL%V!
z%IC(wY+bm%OT%8b4|EQd^tsl;6JJ1C(EJy5?3`y)`n7AW=UvbOPsXH|CU!dYm>*7q
z+hO`l8Q2kJcgc&M^(|;weL5bf!FXvPPq_skm5O+LD_)Dkv9d#P0VRZg1LnA0ds|x@
z9@udrnhD%^KuibLb#T>`9o55XyXu1r3*6Q%0o~}MTRq8ti@^1h*ru{v4Dn@&i)wLO
z{w41mvtC!Fhm;x_C*nwI(|N*U>hvW_IEolaZFrT!<vr*_FZx|BCc$?!%|zbAEXJ4@
z&J)TUGx@pdlp?lzmK2|ZV8vCbkQVB}4SY>HA2U&7A(LOnqvi2eC;=E(YKM^1`El#k
zQ}QEbC`U9$-j_)}w5QbIh2(D4+Jr@t1`hn$ssHzl@?M0Sl7Qxy%a@DVJVYcuZt+M*
zTgMhni6_ZJ)FzV0xF>J;a#d{z1%Moi#u59?PRq~TzJGU00Y8Zn<u;dGK|F|$PQkYK
z4q8h!5~4)GDVY3)?;S{KJr{y$*>P-B1<utvoI)BhwkCO5k?md^*#;M4*sgVb<`7vc
zY=2|?zFOODOvlwFIiwZirgOo@%&J-MPx3M8-?~{uG7e0(3cvlo%AzIsqV;1HD>t17
zR+L{Za&t*>4R9ORsqnewx*$Ff1j%AY>`r=>#l14Jah6z<{Y3dmuGV3S_LkZwNdFL4
zgH)oe?3}!rpC6S)$#jo=`r1deGnOa~Z%=e`N^B385_1AP<vZ2#+%qXzQTgbBU}txS
zI0Yhay(aJ9H$E5cW6`aGh+d-gKqd?3(RAumlLr!gXS*D+B!Yd2?65Fsx@f%<DTqf@
z`T@QG$8(h9c{FnD#{dl=6aas3>J3fuNIMJ8rg!Roe5xQJDC_U?_s{tY_J-Nuwi)+f
zWY`BH3AvFA+bwfZXCvY)F-@=*oP4jXFR69SX!cT+vC}QbE^8!5_)9F^g)w0jJz=Z-
zj9E~}LB=d`lqDe%*8d7mP6ZWuc1||eUZutZKJf0wtU>8^+)9T=@YB7`DX_^3FP)i+
z-l}ZOlBq&7M@<==uP0j=kQyv*To%6Pj9eXS-qE8CZ7~I<Xl=A_wLT%!8uYvH)oM*J
zLm)h+>F59R2j!o&fVtm}T)n)zyOF+NOMiR^UwBUR5fNa=fSkCVa9152N(|@>YDi4>
zO%JI&l<HrUl8HSB`G23PkV6F&sEP(nKnGXeh0Z1FiMJNG{l|ua^x>0c6qkRajwR%$
zO>Wq5=AjE(0Ms-6Kt3n-O}y}A4gOiWEJ6fSvzK+T!b<fz`2!n+=GbpOueD-c9o4zv
z$dQuXi${2lx?fl8V9x|d3<QsoB0aRvpQHW(dL}*I1qd8K{w33lNZIq)acPry7qCP~
zx>$J6YU+fqO93Djd_VvMQB)SN#!#r_D+d_kI&~iIvSZzS(4M_ivYX2bq40%5HH_M*
z$^tksg4Srrsj8}+r(w65Ms@aBOk-Q2Zcf*zcyvzRM4MRH#VQd_I0ORy@W$NX!*e$t
z0v3rCeE9YlhRre!e~<-Idp><PIQZBu$Kkn0j-3S6c@fouu%Az7!6W!l4wjLcaq}mj
zXA%m}W|FG762b=<OZZucv|zG1k7)BU>cWJ{Hro9peUl!p4jv$vgDAsPKfCX;7=1yl
zVD}F<8`K3jl<0sMOc_W<QW67+M~VsyMg2xf2v~O^Q^QNra)up_00iDZMN47&+%n7d
zC%);i%8ZmHc3aq=TQ|OfA5*SIvueBn=xT-(hg&u1XrWC8bS$B{;a>lt(rF{w;X`k)
zw9awDr~6u`W$5Pfn!R+azh&bYS84v0w}<X<U)OY~|6VFSvbeGNR%~eT`4?K6QKM>D
z2dB>*Lf_-4s)9MGaRN8iK=~Q5i-NDXC$tjK?G_&6p5gi(t6M!~9vq3pNGo2^m%7E?
z>R~VSM}-qMjC$2P@HQ!V(6)!=L`dX!M$6Ch;}dq}`uZ|%M!hK|!({mL?*qB+E}bdi
z2o%QKl~6Wb!?$t?jpGD+s%ZDfJc>-pKeI__E~mGcj<jTGbXz2y<sRb}T?y>svS!7Y
zusJ3)F4{W)=5srbLX5AK{q_nHnrrs;8QkXe^_70lKB#Ib&#-wSRLkR?ylTBoRU3f<
z>157=O}yQ)t+ZSJghcUYG!J_kE8*RpAE}H2p%*%;JcBuLsRFkF{z1=w6aoc*p%r%r
z2~2&v#X&v7qc#&8uiKzycKF>vbrF;+Rr+85ANEn+GiKgDpXB0|8&bDimk2NgQpNxn
ze+{HkULf-<_n7Ne(RYR1SE3so6@q`V?lR(FK?xt_cBx0HJUI&wlgc!1SUaIVy9<dw
z@~0arbyhI@tK_uP?E`yT0W>165W~)bEVdWK?t&E>anro9=REA^l2S{WD}o3I-yMc)
zHON<ZV@B+R@EA}CPyBx$Ju1TRr8`9u`-26U)fhyBe!tH;7t{%oZCpXNzHs=m+WpJx
z8C+OcrwC-X|Eu*Yzeo;iHv9itV&3fES94el<g72$%>yJ~x~)-!6B6-+T3?r`y=Z8V
zO!akq*TxVy`3(ue*5q20roz;H@kvO+I>w7{OMSbH3d~_IE!AtI^LSQqFvJ4Fa>~ws
zOhb@g;DiViL=ZM;Cg{79Q>AfzaNnr%J(?J}els|}5TWs2c#c!wp<}+N)i_mc5wZ7W
zemAhVwjT7ER#jTZI`nqNuM6Z`ZRtLRzY~Bz(+$xG;BXs#^j`+y`4DGI214ERq58vL
z3MK1bq-Q<%Noag7-KE5Z^8Qv1UNPj8x-bbMdy|$ohJ$T}bI>`+59*tyv-HtI;PvcI
zo|H+!6L5#jX?qG?N~|F25cWDvxT>YndE_OD#dU_~)dm2+`bXvj&Hq-`fuRDm3+B=R
zYXWOLZz&qidpsRa@kdJ6rJ;C3PHHnP%c>iy@9_{<EjJf4If@@b#*!#h3Sin$3?8bl
zh*%%#zG;e)3wH=n<vQh^*TLKHfHvc}DH0-65g;QI7Pl?vj|>QpEUqGU2?+IsT<#j`
zWPWZHu#qxyaxzb1yEcMbmQ;b((h5=-535UK%USd1ii`NKG-F+nKC~31jRuTxdElq!
zfocYDIvNB=U9Vcu=-9|45-<vj^!i`wPAg3}`dKm<Y!wPX2Y83-HV1K?;R&~$G@sSq
zH91ez(4w4u5mb|qa{OjB`kylYYZf4M0jl4!x_!HF#8q6<b#l6!x3P0pY`E8|g<*&F
zyxy{o4SiN^+VRJJGyi98hK<cE7+g1PeU&Ya!GtQ~nh-2SNSkp3=OkHpxIGR<6`1_~
zUsflc_Cx9!vQn98hfYMb`Z@Ijoslm93qu)Vva`Y1_;{V6KsaE*GD*y;EFtmH!UJaA
zgtBf$@$)#|V)6Pb5>b$pGVH3D>%Bu-UOz|o_*Q1(?DprNv9bjF7brsO;7Mik{3{fR
zIjt7%It@V#4hzHeobL+%ymqLi)X+54QbM;#AlG{5(X)B%eE)bGzOJ0squW<MfJGbo
z5*l>0&_+)V&)k&ZlVcwHls)yDF-7GhRwz{SlA71SeGBHRa#<J-qajEfXi*_9MlTIy
z5T5q*)vHIegPt(|@6^#dY8MAMHgp~Sz{KjR#TKsY&<Qx))p_Lj3*S*kwEZtywUA*m
z20aD}%g^*rfvShXU)9*8N}8Ea*OH=1u~KuRT0M@CeA>K0Baw`(tc>suBaw4;>+a^8
zyE`uH>D?LzyZSD4ir1++>Pr?$R3{gKHkcZf%5688(jxLY?;7mlzH<iy#bOf2ao2fF
z;y_v~S+5CVXPA!N#Vo=8ziyuf`-zx)4o|o{U6aYGAz$MnJ!2R6)4BqNnu26$YMU~o
zN9;nsShXa8<F(*?sjC-%Y1<*Op@J%IRPF&Kn*tO2JI@s=>c#ftUNg=wW9_cFMZljE
zbDsz__PRp@cT8%1DH*Z(;yfsZo>_26cjDdiSBqYf{YXrVEem$b+i-;W#F0P&cizO%
zpK!&@xt&$|OSqT7p*}I|w}A1)Ov}EhX5s`eaEZ{)j+Yxf)L-k2@t+|J2|508##_3&
z!N#qw`E-OWV_Xf@2|(3x@m;c#;6p)5w6Ac@P+@O;9(k#3PTuN~dk;p2^C~m5M$q`n
zcuap(cA~V<Fw~n?ERm4A<lg)9)M`leK`30w^wfCb2m1S;z6W@8P`wTHuc}g|Ua8mR
z<p5K^?`R^CNU+BJN^T=xaKA3XB(1Un8I5x?@M);=`$Ej-=J9(}(REr&3v^u6Od3gt
z8702$@hX}NjK5I$Jr;ZUV&EcGxKW29R?|{_2|ika*71tc45fj^icYb!R^6@w=`H(8
z$?RwX49|n%%?-m|soB-R3=xbwlBPyc!_+J)E9k8v^&-_UFe$b=J33aBrxH*&DrG1)
z(n@TXy^f2UFmFg@UdD>z<#{E6V7!wZG^fW|(pzO%7JafdOZ-X&%c+Es63hSqUL!oo
zoyiE#N#9>D?yfR3EkLnsvow~=`(VoKP~trS=1V3$E-C5F)tp#%Osa^*X0dPC3!RHX
zM_t~ojTX`?0`iOI*n&`bxX?+CZmCva=4&l}Q;fxA(Craq{Q}ryRkxQe+Goa>C*2@1
zPKy2YtuRm_^Z*E<&aZ-pNR{oVT}WoI5}prRv|7S=%N^py1zaw|Ad%pJy(^+zUlueI
zVwk2+cCQ-$f{KzOyRP=Jh{bjxf^5tLEYx^B>>5N9cu7tIEk+Z9>}4!3iCk@h-qU2X
zP<faV#7T07gU662B#IG78@x;LOSTq-)`u~~aT1q$N1q|Dqq4O@1?{`Q5xFxstr5(P
z%>+3&RXfPER%PaAAh7A(j2^#CyZFwKZ=7^+l2SZ#n&oRS1XbWI3xcA+g0SYCJwuqw
z0lq`Ao}SV699L>VoU*kH+D~c2?VpULl4)!(2N*|mV?75{qY12aHJv=!gz<&?Cryez
zBL$AD4emjwM2Hrm!{oMw5TYsQZG$4moADV~ArKBN>X*)(VZKrxm8ycdnP08+k$ovU
z%{w*|#qZFcvM7#@Z#veL{Bc8G{rSh0?Wy~%+qLPfK|PLo`5I5}2V%+zg=B<&_{zoG
z+xxbS*Y0R~mu@dgewfFq#iV*u=qyTtrb;6+#jV5h5NQkH|5|=uqI+Yzj2>NY2bN+|
zI`nor>!afKKV?4&bXr~3xZl;F-)GgTO=}M778E9qdU~I6vmfOp!&O69Tv^`QyJd6r
zwuU!pcB145xvW~3WbX(X6cL|PsTNk|tWnHEjvORy1jLMMz-bKKceKX81rj6k=C3;s
z&G^iV$q6NS%SRurI6yTzd2uPUsH}YAjI2)G=RN(j#_Yx2Le_!BUR?gEQ~5Yu2LkK$
zs$H5td%U1>SNXN_(p!Hm?71sf4;Z9z*(qK!)%f52$1TXr8%s-|6fkEriA>VG?j}$9
zvQtpJWbNProyDFlZL$@B1;;-3xZU%Bhi>e68_H36S>?2j0Ak@B;)!{tLlRM%2%FBw
z`auBC8Ivgpn2$os>qKBYV3LUJnZef>v$3-91?j*3H=fA{k-H^kBBfc07Lyf?`#!dk
z+0dv*UEEZC>R<EX`klk-$W$1_EMb4r?B8A{c+{Y)k>@OSr8JmDa98lcwx9A-gh3Sj
zPVeG{tq5mo-YMS6?BXV>ie#Ap47xQ7xHPSQ<o+ny1PJHkB*FdTb421o-KKb*@K2v;
z5vo{GpUh0+vUivTieT*@agJ^sQ0|CxRG}Ah+tnvP$5eX2y)5lAAI#`VwJL6E-iZ4&
zUzmL}xwsddoV(YV$7;pWt1YV~Y5Az~rM>A2fbzEiy~0qEPxGWkKaZ_zYE#=I?FR%$
z`X}qka2xh9=8he`O2Zg!>S6}k_RZB{TkkUOvE@H&OK|}lr?Mf8h(Ik~SvfcNDxH>Z
zFz|tqX~j*_Y~(%l-@5#^wC$?DrIPl(DCsw6sl2~mtKY|&#{^g9*rTM=E-w3x3XBeL
z&D$R6Yov?=pRNn;BM+?e`1rwNT?Rnl`2+5kl8tc#i*K597G11%OOC*4UDHDqD;=6k
zHr5L*?Jp-&qRZ%eR;uAfBX9-Argcvy;pJx@^m>V@b@JeJlB#%ROq4E)sCM3S+)ZZh
z(Vsvs<IXAeb(OI1$Qwc9DH|{$+r9VzDKA;L2%^ScByCkcQ-59+-U&x>(E-}a6UbJ?
zi)t=*-PZ9{NTKsE!OCsNmDboQGZLu0htOgNbTfdX+Q}&4&m=}8vBXe=XnI<hva)Xx
zwiMc2qR3?V=CYu0Z5&LIe)dcZY7P@(5X)^4ZA<0Q#|fx$b58NLB2iyaXgSddEs-1B
z<FlVbRnG$f(VzW~PwGA1hW2^XHSvVe3|VW)?bIKN!%i+`9Ce#%ts`~0<=T?qprE;}
zl5o`wDwEhDq4Yyv-@7x6)lu4TgJF6EZKh`$=Pj0unF+Zq<%#q32LJ+V3JW-it6B%d
z!|0Bu7M591lw`~wO{$!+@nBR(ytU9AXwjryI;&*()X-K=&2|D~s#iL9nG@@cd~4Ey
zE;`ez9*s}k+L3dBcN`#a08|pn(jN?fwk3Mbf!T+_D(o;R*bM3(K?f!?uaXl`P*GoL
zF5WF#=^^2b(e}M1(NuKysQ6|x>ucAv-Yc~5wEt#<(A_qRo#V9!r3<UoHf>PQ(T_+p
zvDb$fg~Kxb)%*&vb!|;U&7}tCp>S;~S<9`fi_$p`0m5Iqo$}%pN)cPc^YgkcIkeX%
z^WiLVfJnG$--9^Gg`n?Y!p+vm-x-%%zfK;QZnOS8jze;IOttTF`ARb4c4HV6{^UM*
z%?bRR?$#0HN*;nEb>pN5w>oZFlNOzreHv`^dcxDLwCP@1JD#@Wv3j)Xvlr8etTDh~
zH+qA1FPfNN=bV$U$_{&w&l^1_REHp7O4+<!7y|gnhgHi0DNB2H`&*@i6tLBud8}a9
zEif(9Kb@MvUV@tc$6Lv50}oTikRHN4`2$ZQUqr2~opH!<8jfvJA21Hh8p6{ll?rL1
zVi8K6v3=*x?f5+1cldAOVSxb|Ho9A$_JO-zM1|fQgj#xFudAHk%(gB>=1b4=r+>{F
zJz}v137f{^?qY}l<ehA--m-V?mx4{=7@E@tH)I&rhNYtjg@6@+?IU+lT_Ldc*vpuh
z6!T{>eL_mwIf;h)#KP2$@ky@pJwsMfjkzVxOw~<QqFqBM^(!M!_c2kfWNOMXzPWx9
zCdWc2*{N{8*<<ig-W)W{8!;oWmYQ)L%D7CA$;_^<Oq=4Kk`@S?h8Ye=T68LE7?vJM
zwqWQM+flWmjW5swNJ?dY)@-@xhtePDv5u9Slz3Y(ltiP}j4{H%Q&dZdVP@1jq73-i
zGhi1?n6Q21jeFRqN)aYCvw*S0+3HG!Ubp=9v`4*<hM|V*CiV87c&+ZTC2odsBO~cY
zv!OSZr2lXzFF5&xo!82?N*hOc(Hp+@IMF|rr2nwUD?UjGw56{2j}YaBi&x^iRNQR}
zL28)yFJg!XriimyMovfnbr)m)1oyR$T&}^3h|fCfX(hUr;bv7Va2Mu+N$ibqApe$L
zdA9479|-qCz+-sAGK$db8~4f<4OU{{r#4Ojzhn#6*^SegRDk5>oop1wSB86Z#E4XT
z@RsOP5gsq4QI%Q#rAz&e71cMl<RcQUyKoj!V@Ge1-tcGpQJ{cFKV>|C^R(y%bQy;I
z=SraX>8v=nGuK(Qwce=wMqWCe%!=cD?vBcuIAC&p;8EwnXh!KY)$5|VY9g~bYoanc
zYopFCEbk`%)_U7iNk+F+dH6k@OPRtu!f<i|B;3)mfH-Dfo0C*YA68q1idzA)#kyej
z!saec4=~PExT)hfNdQ@%mkq~6H4l|H_HQi;93k^<b~&k!99%E8OH!GgvEm{99*qAs
z|A-8MV(A{qT(v7FN#|uRv7KS|%0_w{&9@NywR`Q0^YBo7^R;)4!!%`TEv2Az!rP!;
z!d%}|OV=wWyh`T#Qk#NP^o{@>W|{B~$mW6rG`^P9mMg|(`OwEA(}UJ(8eEa{%8cMe
z%`O7PK5(|??Uy0VT<pH}LiOOd!+mzzhE5>|B4)+wy5mxdFml#Mz~8&TD!I`8A0Vy9
z_LYq<N|ogE;x-$YO`87kZvX4bev7MpeHc9P?T#I96XCGnnCEQIxchML{Jmx+?cV<o
zZhqa^SJhbVRpGpB5kVoj%Z(w^tHS;LIO}OdD!F<RGs)RNxP?VoZ^{Kq(oXS1IA){-
zw~{Oa<5C?G37p1{gKgG#@T^4}4#Dv#$!Yy}OpFEJW$xoQ>v+(tyYkaA?dME-0IVQF
zq6on(<R=<jZa`1oq-+cC_x~7gJZX`=<5^Y6*UF=oI)^xx-f--Ib)$${<r6sbxh6j5
zb2Lz6SfN?_6PCr_&+iN65s!Uz@~m)=Ewl-Vj(I~ICh8x9dZn?-3JzLeH=!x2JZYaD
zsiHPdXJ>SOc)SW|R7tuYcQIk^a?H%$GdpFj7aqHr<uG*q(Chpj{aJHucFS2s_Kn`d
z8ha_OOCFMv_E{Tf0raCCCXL&X$F_y{8(5z1*5R=}R4J=4|7uF2`PkR5k0dt=pudx%
zfZMlk62VntYnQQi@zhy6IH0yZ%<F*hD`(L*cP1nq(LUaSb<69v?)p9(!V2A1TI<1x
zO0)%|ks7qPXM)SW<voi2gFa7-0p)4wwp~D+$pQc6QCZgahWV%W*iYK#+Va2B#=Q(d
zNv=*MMkt-&ngm(?Im|hu-b&R&2sF-7KuZ0%wmG2Tb*?jTJq3a=L8FQ>3b^DfUK#a1
z1%xQI+DKBV)IxZTwM^89h-xhu@a^wm+Hf<i|NA#}Vgv9_Ry2GE5p{>4=b(#WY-J3M
zntBML_NYog>eV&+tKxaMLl*~)Q9x2sae`0zr?5OP9ponQ9Z5$f0xfVrUsEr;ZEmLZ
zzu3Y9W2TT=H9Pe@c?1a<<I5N?>8hSkmdIs)AmE+0`hl$i@S+5i(+8GNE>~;xS&2k6
z&H+5_A3=)xrPCLtkWR;}m6~bAM3wdqP9%TAHz4izE`}h|E6c!V97&vKp~gD3BR}D|
zq)>H7mlts>H9RPj8PD3TEl9gcM4ub4xZqVWCTHxs&b}jAxdIp?eZ+&1i3cr|bE6eJ
zNt(*JjbP4uHo}2$*i)qYnsq_zoNa9ui${ZSJP_@f-1>9)PibQ?0?M|6b-x(+1)Y?f
zW*)*dZzB(^lAMws+SM-aZ(W6Kt~@AzN$b^?E6^ZY6htkSvC|S{q45O2aUJTNyWuGr
z%RE(3ad~f1UNkvN9Gem&2`a(A@g-jV=Jt;wRv&hR94als=IV3Vc`+hRq#?sJ#t86S
zRV2}$%8OgA%)m{3f!~o&zJGE8J(=}OEs+NbiN829N#(8n-Yby^$|$iNS!8W!ucpP2
zh@1sXVW7MuRhd+mt_t>)L-!~K4+Os2<%%7S9VZ}2C<J&82pP*2wF>qF1Ij&~sytX#
zm#$Hiq{;({!UaqYDMn3;hhD2bhQhpsaK+vjh3_!~%tE-2YOpH34hR`f@__ApPq7XR
z6fA=70*d{S?l8&Uu&>Iw0?@tlh%6j+?umfI=!E>h!V0uVbN&)Fz23yK*~(I-)#@mv
zhx7G~E2PjyyG+L)KSpRHeo7bg^1U$+^^}&D0vrpJw4o4iDNiEJElS7|{c#Wtn*zy$
zH^+50mDecSgrdLqtL*>omLX6;f$9i88pDAxlnMZ(CKMSbj&n1u*@uQ$EbBR0gBN_i
za~iADLC8Zzc5udg%(^8Mn6m^kxHlhvlwT@%L+j=^&k8)FB8(p!Cn86|wejcDAqU;U
zqr?!T=T`OWv#H>7z$QF4L@jNekHMRviw=Qwu5_My=y5gvw<2x#jIX>(>)h;pU;HRu
z4!v#dCsv@do11eI-U8dSM)y7v4}B_g)>g?C(}x2VBCw{Q%=c~lx3{eZ@BI9z)fV)r
zId5^Oxu?3(`Fp{XZ>*3Z3_K2^e_eM6zd&IQ@FQW2#Ob+N*I9jO!J?GJd?V6w@6ufM
z2J(rQNelv%U*DODS1a4gBJGim|J+X8o`Nu!e3$2^Ij1=2*1ZZY#d&6sq__z0ZtVVZ
z%b@`1Vwk_qejRWsHAN!<@&$7W%XUuQIX=*1$>iv>QAgDw>wv?W#}9!x{`}C2k$JN=
zCaTH|y)81ceo_0D%K(8}^kLz-mYD0%z9}`;ALHZM>0euyk$Uf6X&&!%s^#-yDBrCf
z8c(E+J?KL(`pMv&4DAlE8BjDo3=cWxRLd*^?lAzOuhp#56oxs`%_8+?z2M1E?yRO=
zQ@i!sAJm+GC?7C(H2ZVUN(XadwV7^Fw|nXA{04o^3?sonr2X>u?#Yj!@t+x(RoTJ&
z6TPNhzMN7k7=bS~_a_Pxq?eExi;EG+OK7L}E$!b%_;Z0ZlUV+=-j-PWd00{RGl<px
z2h!;cfViFQS4;hh)M6rys3yz9qS1TSTkUNVmT=qJ8d{>h;?}k=%CeTjT3gH8S}klO
z-cE{TlvhYs2G32%Ul`E}R@0~Cc;<7H<bbhQ4JqW-93Po)!9ymgHrZ^LYjjC)iJ@Hp
zE<itb8dJHRhG>^_E#ihG;W_N+Zn02X1Gb;|^{|d`gISN$vPb6iA3F7=ul4nrMeB6Y
z*XQm7VkWpe4VXpfU+eMFaM3VIbb24aSPZAFLbS5=tS(aa?fUf!E=9uP#EzhpbuBPY
zQ$oYO7;OpS+ttUSoS^aIlk6G?U3Qcf-(;O&w|~pSomd(FQ2*eZ;`*Cg4Ht~+R_;U7
zG*1wbjFGjFzxOaEdd<yspujZ7CeaYoMWM=>Cv@3C?)J?>!L=pYD~CkOjz=7SenIVc
z)*kS@Lr_avssNX67ObD=zEWqrym-PZ&h#5;d>goL@yeXy@sc>Kw{M&maZ0mb1Dq7=
z{6`er;eHH;iOH33AW#bDI1sRT4|Q>Z>!P*U!U)Xz*6@&^wfdQ-jg6m~)r>vHwx1K5
zRNTV1ZZdGK61l%&K^-sQMq3SCD{x-6wMMlUo5U!}^Zmj<$*ePHX94rG_1O*t>`^JS
z0mH<^inR_zOl>sxm`6LmKR7YhThXi3RM<WsJ+V<Z8sihHDaw-GHNmK3Yb$4DQoi;8
zhKL=*5<z^1cI52+Vd}1HLSuUW?d4mQ>B&PllwK#Z)ue{h&rb({Q!uxKDj+GFHFA&Z
ze4l{Gq>7VX%s=>geYaciqQHSuR|i%1y&m=(u>|Z?eHwv{KTOxa_W2G~&0f2}jLm%*
zObOC9Xt+4r4eny%jmM5f+OPs{yf1`J0nyn(g$@MlHp=4b`?ixdO=}c9>CAOGjc+w6
zKXIuEBgQZ>Id!8!F3N3K0v4%h$g1*YXU0)~8k4uWS8wtDXRScS>lk&cJHrXdZx<s7
zmZi+~CXa74juB6hI&W^%^i5u=ouWHFp67CcFt#oyntd0%DOmO73?iaAnYvHs46ure
zeyJ`uKr_6w^6{F#Uw%m{`j3@h`h^bb)}z6(5^=2*!OC6?Q7BY~mCpm%1mB=B_h4WK
z!t-}BjlSN-b*-e}uho+Uuh#|GqX^5|#V`gEj7IOZD0*W&xyWrysc2*J^(}A{6oxvI
zd~E~i-Y&<YxmIRqO5*BG_<ouo?OV{bw0->aa*E0_iv+lS{OF)}dP)V5I@OJP>2nDX
zo-+~l_juI0*DOc3Ae~K1WW1WNb{8dL?XhpZgMSCsd;;M7t=eohrFscoVM9kddRA<>
z4j_DA^}`RQ{cYf{w?(O1QEZ&<S{&={K4-V-5OY&+n5@5S2b%+j^H7iEt{XW2L+CU<
zKoy#g@_=PAVieDUAKV?B;0YiO{>*yN*Z1H?2wk-`wgXYdgN!d(4dHe{W=Gps5=uM&
zs6F0!cNRdrQoq~f{&Bh)TmuqoOE7yfbaw4920bEo4KRPiPTm)k1NFRe4X;G*ZrTQe
zN?<d@H~A$mEyF6EQl9RBE>$c1TWqgUorX6^!WMtQ*YhxV8~87K$A$rMu#mwxJ~l?O
zz78iaDhNkh@=@Di*Caawo@j|?6aYm+*ZilMLlU}{gtskV88Cs}0V(j0gL#x&Xv&e1
z_7lIvR_c`sNHU&qLy8%+cu}=b!lm%&IhqnaCVFS#fUS=zl`Ct>yo4vk6u-(>U!;CX
z`L&M0P-kEF5JOLUV)5e6%$A9xs$tc)^R`aO$RP00^a`i@enBS=l`jHG+2!qwpKr36
z_39rYrwrQMtQsmXcLJxux%04r>yAqrqfbnDi~EUbF~ChKf6IV++?TO?nIM~O&1Fiu
zAuLZP_NZDiPKs>~!Vd=GI;gac+@dN+$6(;}cwKYSwj*XlT$m930rI*Pqr^r@f}Kcr
z^X**{tEvE!Nela;kw3UMBNfPkRf#U~HFq`1uFg_FH~ZEXkPoipFdUIOy)&u5ZW94;
zCOIbOR&{W&9kirDMstu9n~WP(V>?NGyCGbU7_L=z!W*>ZeW-*1VuHU9nR+_S&CWS_
z9^4@yQrXnl*Ur9^?vvj9smcmYKq-kZ-<L#WJ19Z0SaP&mLirL-{$U*-E0*JX$IU-j
zfrk_R-!G@CO4_~EoOagTw!=2|Y|^A>jI@VOCAy`-Pzor;FIKC~AnIxkg#JEFRE_du
zH#B0&q+aZPUhF6-dB+q<y^6=!(1c|-VJCQuRU~ydm67Hzp`7BJ^iJ~5s3#U~y5P=e
z=(LfZH8I=h89TmSZZwNH>%QNXQ_XSDMmyplN_Y;5q}<BzUGQDz=KfhA?j6=mM=e)P
zsK(V_$q7pj<EF>yR-|V~XBWrh<I_HbmEBh+`ob9*X}u;5`wYpM+oR69HOp9-ZoCuL
z7e+p3Y+=#jr?QVQ!{!mfcqx06<s0HS+}wRWJABT>ISFaFAU8k6$!ku*yc^EJSGK*T
z=KmJrv-}|W)j{&|Q29k__J?rgrdiT*(u&d(@*R>&7U2?b7&pUyR-wDvz_&Qyw99Xw
zKbNE0@4L&_{_7xztJ>$S{4*m;MhQDpY&H;4L4auz-G8eDr11qq-w*6&e^fA8@^>Br
z!b$u0v@3qp9<*DRuxmmcu?6CjG|@3k`KVi=D)YuWFKW~JOaVbnFj(b%KK&4}xuml7
zF64CBx^)%E!*m~Njk3gPT8+5sHpJ|qDdP~aq;(PO9%T5M_-^B_`~<+cm8-v=e?OG8
z*~-cl?h1o^ZZvONyYo0m+b^TgXw@OB-2?`GgGoNA*A^e%{NH5$<O$?|U*i=BS@tud
zazv1KV>Z)T`L)kW<ptQR`1i&^9=|*IpH#{Codp3PM_3t4Vl?h>06IxI=<98b%6lU}
zd;iB+CHAF5u!l=cJK>D$!T?2$D0_BP5;hA=VVhZf#%kkFlZ?@=RQAxazhDq`AhEds
zgq7{P%O6U_+S`NmGG>G^_TNOB>Eo_1pG_M4=u(X_vqNHs79c<)55!(1c}OC*V*}wO
z8{dE%<iL>PE)z|3zSu&W$!s?u>Xg-9gr~?|U0uB@mjb^C5Ev3=!e?GFI*zjmb|Q4D
zyu~u@<vmS6W?kn^y3C(MU!3uGV06)#{O<yW!T+Xhovf;r$aNk{ccmgiXq%RWv`;&e
z8yo!Ay#y|Vg?EWFEW>3=`&LVB1jIu!OhXiT)16P)2N6vDfmM}z$}e0Zi01L{OR))P
zfu4}63BO`^8d`|I>r7G-zM8sey-&v|J?^%A((R=D$5wrax+(Cr*S?+LTU!C?AKFm%
zThH_E@opW=^W-w@Hdz;)ORAL#zf~Aa6PkSkl2;ipB!Ak2QaYfg45d#1{WD2wx+u<)
zA5zwZN{xUE@R2E}ozxcj?YE|}u?71ENSjIfgV}DJQ@1F~XP8Usa0{iV?=qWQpO2;v
zZ%*CsfgO2a=)0Qsufd);lqckn+HkfGu_YUS*8xkbMMbG+PZ-5pIx5W9xDWu(4{*Ae
z;<JYYSKc4q`urKk$VSWLbojL)16Sp5<M!I8f+DiZvLZv)fNzM!Z@%S1txD!(hL<}h
zOU;ttUtjk6o@k+V>MPsxlNSsOfn>me1GePI-i?ZjASVHTm#mzJl7?24ui?0DtQoTo
zs!1+h#mj{W!Mq+g-|#}8<F9jnt!9ZwFxdV$<JG(xvMS21AiS9r>Zy>e5meHZgrj4=
z8?!cubAI>-pzZ=nX>G6<7U{7Tq<C3=t?E|ODTztCx5k?lufQt^)Zrdz7yR>q%Fdj{
zJ6-jjMV`da96|v>(2xaDnTc#7lvUN*e}?e2EZ#%xDgF@TCuW;Nd)!MzhF#ilBPbjN
zUh&S~9u>OfdG`);J-nG1Jyp5fYHt>9{t)nNR%I0Sb;<Z?N-HGK+GNF5-6Og?^|l31
z>+PHh2|qcnGMo#QJl8w2aXxPeRIhTR9(X3!3R|_iCoR%=rf{e*YNuQ9J2MWPNq6ar
z4!pI1Hcme~o3T7?Cn}71MA!X4BthWHg7F$S4~b?XA~449yUJQg`8$lGAYb32RT5)I
zYp5d03<e{ZD+^IY3HqRL51UwI3w*?_%%{d7cr&ABGWPjf(DX)whu6tV;1R)ZVE~=x
z46RFkw%fN-sWu7RS;J#${L?&ymrPyg7lS3C(h<^BQ_Hqe=TD8ESHreqW4pqm$7Rq^
zgnf=v3<4ItuDlRj7WLc;9^T>mRD>Vh_R)3Wq#$U)jJeROYo@y{cnAjje|rbW=m_5v
zdRhre4peW9JI6TY%}C1-uZa$T%TOO)MRQaN5+_TXK*8h&?#~4G3<`vF_JKn4B}QuG
zWJA+`gV)!p1{Mu(u^pqXhCo<WE3Oyg>acn)1(OF<trP_FA|WEC#v6^)!$QNJvfu)`
z%trHzE`Ez&ha8z<W2j*Z8#|%c01XiIJ0&9tPd1QDoA*6J4IX4zn3>^k+Q143^xvVp
zbL#KqOr9Ywh(R))QuiPaAe%G_qZz4~f;t^%wO@@YTXY1Mi1bq`U5>vt73?g58&5gA
zGXtii<F?;5{<qkcBVM7NY=ax=fo;4O1e06JWuk@9pT4LCSEvdHJ?J(#b;nS=8{MSj
zUzg_%*~d-p)Nq0#2TP89aTJ~0W*KgdR(%v(;9H;}aj0dBuA?eoXCP^2&GMjp7F6sJ
z+b>)TcZ5eX>j{;)dPC|}Y;umdv*NnW%@a{b<Ro$aeR5!yllpIG9;(%vXUR`9%NafC
zs>J%bE9HM1yc^v49`?q&f!})o1m8}dVgcOqEpVx4TXOF@ru2`4y|3%+mhgT=W*RK8
z6(O@ep%JM|2AZRqIayLNy6|@Ka`{9v@5Cqi3d8uB4@<UZ)q+20Kg)7o`qcPKCJbP7
z&7tw1o{6Z=?Rhta)Fv*UKK*p{0rYj}G??F;%@jws3c2pxI_O>&O^R@KgztCSwA@*G
zejM6|)v@<Y*{bCs!BSV7WW_tPBlO=1UW0lZ*UE^4wD83SQ5C7%40K$hS9t=vTog}A
z7cn%x$2v9AT(bTQ@Rw6qRE4+QAl;J^9GdxO=XSRqRymJVYgjC8wrNeWT<Yky{tw3P
zC~l6PK1H2L51}AoySML2=V^ss6d#klEQ6TZ;>YSADEAE&J1%pcDX={?o<W{Tp6Mvu
z%Xe6zXQzEMS(B8pkwkFBG?%P<8tQ6sC{YT`w^~ZFRgGF^u}iV_D#dsJLw;}~(h@SS
zta5`R>m(r#j7lDc9prji1zFK94xnCq5@^u<eW0DldXB&wvRGl`julC#i>O7aSZC05
zUNoyxd;YU#6dH<5$q{+ee{cxV;hLJs1^_YMsC=+b2Myj7GTY!a-XaVP@^r~n<B~z?
z-k0)~K=%I;b^9Aq<e~jg8U#+ZSjI7;T22Om{{Jti+^D~JruO}+l}S;r!<PpJmcw5I
z1de$&kVQ-Qs-dMIFTA>;5w-WnAY*kzmT$khfH&2ouL;on2i6_id@}sdR_6Re<qOVc
zD@csJ3bi_5zIUJb0crBYdE5VfcWb!ilh$-V%QR0#T`c=NyZZmh&89yObLJAEVi++k
ztAq{mO23ld!$F+1r>Kn5@%}+F;L<HUhRJm8?75jk!o#)9jo^Pe@W2lW>77DhvpWU#
zR~PA$Lq(#_o)&Wd<$LE~$tH=!EFUNI+jRfk>=llRTR6cNap8$|?)VBVD91|dUAvex
z4XE1lnX>E3xizcj@L_rUw+d)z`dP94nYb?R{>wC-2Wlp;wi=T(-|~XCVfGxN_6vh?
z%O@zB3xze{mlYEogz~r)a~g_R!$<ULS3;TWhTeXyl7-1*Z3x@87>qCdnJxh~9m-+<
zUmHO+y#4ztJ!HJx;|xB;xnC|B?y6|d&&cRFbVA{Cxacs%4@gSJABt?8;h}6>RY)}U
zb}k9K%06AjC<<$gIWC|eRg^(GEI}<5tiQ&0=7o96u#nP;%kfs=YF1SYoL;_|fqk%i
zcYjn!!PA&59|J*g$S^xB^IAkIuG}MgpS-PX%t$xj)nXn}Snn`HfyZRcbwbgi^)=FD
zs6EYAuv}C<n^7|W6N@)*3+-_eLClar`;6;P{QL%N?%cnkpXVX_t$SZ}L<~n?ldaBj
zYxb|-m{gQrn2@4<SI}=M7%n&(n3$}kd}mh=P?bYv?n<A%_MCX`HcqnB{{IKxA1K3q
zb_e`lnLDD+o(`)1;8Q;ci<yg8BN$Em%fH{(UW(g)Q|ZVSq0enc{|y_?xJrMY?NK!_
z2L>SJnQ6K_r6wz`$U7Gvh4EHB^h>UCRfN0>oF8QmleUAP=ENiR0;ep?5Ol1bMx<)P
ztE$4zlNy*+vINO|PA7Ftq~gOIq0xAyhbD?C3aK`Ca&m7+=AbkI7Y(t#-b~w4x4H>u
zZj^{xVV|S9z?36&D-|;2K51ql2!9gKrM(;xDaXF~J}@LE+sg!Tq`<t`?Qu$3T#~2S
zNdneWD5cA!H@IFLD-W$F)xg#ngT!}~*_!HlWeft1A^2sLhAqqC&)u1On1x}w1&((d
z1J8uS{1_ml?Y&DJBCASd4Z-FeOnD+kiOto!593gb032?JDG!Ixw)5Qe40o3;Syj0I
zHca|BBDf*Zq5m1)e9lG{{AxX8^ytW-?7)ER;DJS*?e@sdQu@%tdLj8dt8P^nJfu-$
zs^*O6@Y?YA_irol{4HQ8e94U<hsf@sPb~0?bQ}v7V^Y$G6Q9$DuAT*oFKXm&?La)2
zQJ`no8k-oa`S&#R{5GGVpI1FvjoOluIhn4VG-FGsw$>(lp4;Ai?l>b_^H}p9?N?P7
zRV(TIQAf_v`BC%S#^2;KEadAi;3bMhZ=9n7j^D%HhYl3gyyy<+^p#}IH+p>p4I>>-
zw{&}XL?ScctP8us^h=)3WUiI)AbUe~H~o+&(hV9zDQ<)?dmhg;tZSyNkSKf!btpCc
zm31j1>wLBpRv`YAS8^1dobY9?6!C7|e{PfB>sVKWPadRukA#v!b(vRHhXx<1k}NVz
zA&n@DOMSSa<cjt^@AIRE39?)NO;9P~b29PUY@#+L;23HRBV0;<XE9-3963?!8Xq1P
zE}8w<M$Rt^_6m7?c%<a`CXPOO)O;l+PN|4{kOn!lwPV+bQzuF0Bj)<R+_NT;QAWPy
zjBd8zxs{R<8KDdz8cN25WdoUIk#8J*EZxvp)=e;D?0*7tIbG?P!({_7ICc1VtmNat
z-oE`p<feka;y`GAR3ybE3P0}8Ehg-_J*C~mMRS`1rf$!u+w5j1B!c$PgkU-4&v&Pz
z-{t#u$da7jmebPWBy&!Au{V0uujw-`$%#R`K85mQzMt~3EOwdvLFnSeKX5HS+Vvy;
zN6vQ3r>1CaEZr1Qc9y0`qCHF0z6pl^ZoF$ia4Lg4a`fI&`~0(aoLagn+LQRlq|N5^
zAo?@Ty_40YcT(~JErnoFdR*_*r;T>$0D)ulk34{L2mpz=&?+f^;>O=4ZRfvdPTZ#M
zx~)lhvVJ4y<ttTS?zg#qf>n>s?eeeZjjL=Y<9{s&aT4?=5{ZP?qoUOTkK1S_$(jNz
z*h0Td6Ql>gJg;ZuO-W6E2>{ur0Ok9R5*P^K&cZ-$X5avZT%h=U!L(!^9B-Jyhlz~s
zj9V8rTdqPRthzZZx1Lg6)q<1a1_o5keeHD;K_r_i!DZ5-6g0+b0Q$R*b|>%Z>HMFT
zUP}nh?9$2{7&Z-IJ2+%5cq_Hl;YtTzhIJKRG7Qe5N3Q_~%5no`Jsq7tz})-WD7O9m
z1A&SYcZZZ4FE5lR#{yqqy*2uG&M%%XD>_(xw_5yI*1|4wb;yuWmVlRmS0?QP++|gB
zKYxLG@PAH&(tK)a1R7t+O?NXfhvdf*9}gpO7D`)n|5rxvc=^<huzd&z+If9Vg>t<v
zDRSt(F)N81wHGM~^QBR4wIX~(AHr1^DPA~pHr)R04E<xP#3TEX52!)xJAIcg3*QQ(
z!U@kCxza!H8`evI<nVybxWv2cN1vbiO=sO{y`T>{UL!E`&pX(Tml8^17>keUn3>qx
z_9L=9pXlpN>w0}2baie1xNG~4aEF#*Qx>e4uAb8tATslC7%o9xQ!$=jE_X*CVQ(cj
zt}IhkSE-cMl?pfKZDh11MfN=`+faqx>Zx1Ou+!y=nyU5fY>MsY@k@|BGrB%#I&fMy
zf7hQMyJvp?-Xrgd)H@t_M6Yz)-%q=y{(RZqbke$g)YT?gIsND76uQQ)aAI{;TV0Te
z@t9P)qS(&4Bf{aTRn|ste}4HEdCt|Ps-<e!%wS>evg+l9%YLdZI~68eRYJi;uE+=(
zy^}oQq7v`}YQUPoHF>1bgKy<2UAm3$u`IoWwkzme$12f8jI200yT!cXn)Vf@plwr%
z-BhJX%=S6ry14`6?As!${;kAcOG{^H#qcJ>TwY;4qze*QhNm77#{DRX9CcvsvmK>v
zXHOd}i_?jQ0%(1K`;y*ys0JjN1KW}kq$CXAMaKJE)9GT8$L0*PTpikq$arjiTgC9c
z0MXNII<gMwh`jbJwGy-4&1VCjTxx+E5v^xg6Y2?$h$jcM9OWivDdCGpOnjfltt#P%
z98ufcaB`)igMRKBJI-41w32_rNnNbn4Iw=FVNicUw@L2v4q~`NRd~>k91iyVMQ8uU
zLx2A$raTpYXSZbU+t<*ba!q?oSJJLW2WS#E{5i8%_eRN_EOSx@h0EWSdPq0Yde526
zMsj0FOZ@-%8sBdjQ?B9TMqw}+!xpW2vVoOo$3v<d&eu9C1}~wVuhr76{aY<pn7|-#
z0+a;6&@&Wv=<Qr}amPnTE7Y4rSSj7$o&zV=2IIFTP3v_T#+TE>n|?*Dyxxe6SAQ39
zr}o=50!rC%N7bOy()6@2%<7C^)zpoujsV|rSO3JAl$Z*CT{W0^43YrJ_Mn~?;Q2Aj
zd3Dkz=BEy?I7rBkCljCkJEYP;yF5|ucJ(;9gp94ebyloA9_F{nrbSsP7Au+WbZ)t^
ze9qsp)l0SXl?>D$-RZT}Gb)M87O3hX+x)fy_TH-_BOCf2@VMIzlF*J$*=Zt8L!(BR
zTETTx2nyZ7gQhq1?GWmDTs`;EhQ85}V+55CSXm@0=3d%KPU~pyaU2D~hiJ(>hp_C2
zqSERdTekq`t%i}cCBccsRay4VLGDNNIGk-8UXIXnAFZ-=7uLeIlanMi33<RbSyoW9
z-@eqq&;tVYbVl<iYJZVBsIS4=xaSolY8o2B!tVf2K(N1{g_hBKcO`IW5$r;?Op)Cl
z@mxJXk|Ho2xQpR5DODB_stkAW1ScS>PpWqwGzZGc^&=nRnea|NaiXT#nC$KguRg@;
zFjIWnUqNM&XRbUl%s3GJK&>n3u{D$lGy7*ta5~oM@T^4#>P+7MLU#X4uda)UYWq6k
zz3wU|dWDqT;HmmB;tp0I3qB5^%}2CY9sWZ~qv}cWPqOz#a<T)m@Z%5@SKsZ%0_|dz
zB%fC+!d_~U$&#%5`}XzEmiC?yh=n%b9Z1tyBQZD&jmwNRn2{CM0~D9ki=y<F*<hm9
zsg8F?u2mPx11#{jpZ+j236G$w?5p(J=ghS+3&GG)nI^~{qMT<tA&<~qcA8k`>wYkt
zVfMKTxtqb&36J<(y-k6*{Go<MG(#q6;+Y_gR@BqJ)0cdXtghyOnRhwrqkX}gIgKy1
z?MQ|cS-iBRnlb9;mCKs7R|SPA)O9jxXBKbNeL1LpAyzjV);pa#NT~_)c*mF56MhKe
zvcIQ_4|WAt+}N`FYN5*w`*)8d8REoi%Bp3WzKAheUY%DYQ`alRywRF0sV%EBt=0!2
z>|<^2nP?XLx;d4Oo1rBJAW<qiC4pa-5AFb{IEY48D6`f0hMRNv-?wJWI22^{o1GV*
z5S-YwXKgh=KsQ#_iM7cgDUsg7USO=&BW;Wm+=`{UzK2J#Yl0!Y2IB^K!*%GWrWv#3
z)F>;<asJUd-omZXMBRxsFM!Kpjk9+d?VjuK@`?G>$YLuQ?P3oWpZMX9ftu~R*EY_5
z>qxKAn}=;AoSJlH)-f#}#G4B4{I$Hh2uEFMx!joWsF~ooB)hs%I&K<pdF%djhR3Oi
z=|b7yaX9&=e@L%#EjyttWB*RSD({+&r4n+pN?jFW#Paj#{YTatS^3WGbz^x|Yuj}U
z)XEsYL{Xp`DUF{xG+vyZtxG(7=U7FR-kL5HNO+@i<hq`zYRUM{n#Q5=h6VfMEt_5a
z$z@eGrT?RNtYT}f7Zc<jpkHinpBU5Pu&;G?rnqlR4wQO9E7T-j(v@6y>H;M`>RX{u
zppQp9s+yUpG8&cB;`Wa`y;aBL<&N%mu$7#ct}8v<r&RMYVt3u3cX+nFpYjUGVR@M&
zN9E<gsONOXb1TPls^p5w%JC1DTk@+_(OEHz&2AnnrYtC@G@SQiB%xKzQ<>{IlaZZ5
z=Zq!ATK!0?TvF(_71yry!WnJoSz3fFUExbel3UtEw-Cd>$K)?;JKtu#>k<m+pCo`b
zsKOyzVM2v+@9WlN2e(@F42;ZH&w6j!l86L>ZqP{YrS_#AOR!cJRfQ$C&JWVVDMyly
zLYXAKMK@e#{8`quROGJhxW@|h21{q&-^sT-qBk4wAa}2+LTLUe`D=yE%`~!&m;dQp
z^Rse1!g_VVt8}YV<!{&dKPVU@tq3BdDo2Ew47MG*2RutZz9$1bY3uX&oK!#hnVRof
zZ4GS86%~}%vHpK+rpB;C((7ck2|&_Nwo2-Y8Xo%fl&p1Cxga+pLkKE~0H~(PY|dr8
z)ewO3LA6O3=8)jX5#`LTLRx%B)qW7$ndb-D;8C`|0<7<4V<}ijsNW+GyTFzDm1~B&
zp6TW@q?1cl!yr9d65aIj<5<97#>d}~=Kb&KS0C0xZ>O05*hZ^(wj(LXfpj?Ltv2gj
zo8?Ha&UZ5`5o>v?l+mGht-Qj4$}B;K*S85};;G9chJ`QG=>2rtb9JnpBl?`eIEl08
z=F8#vJ7>(744v9t$Nn5!hks;X6vl6}u0eqaY>4|9XCt>DZ~Z{tULNz&c1aGSL$$ev
z65-Dm;A_w05pn{E{A-9!a0?dI)PUjhOP!6*ZEg-q_%@``%^}1Idxd&YNmfpta)EM1
z&RUkbaOAbpSEY9-TX`D!9r>%W4Jryw`9t|r#SViZe<6Rv*rQ|A?vR9|{=&j7ajm`3
z9#wZr`#owb!W-}fozU3pz0hm`9__JPUUN<E9OQN9i#ykw&ZoaRec`>*ob?Iu32|rp
z;kgF3`_32QV@_zB`;`4u!hd$xDOa20WWvcA?On%R#~mt3*&W9n#uA)vzN8Pq<xTTC
z#WJzdv4M4X<aUQX>kp@@8H+}ttZw5(A?hRnQ>%D5kf1xQip0-5#VERy0HuB#4XRgf
zb-G*_%N++ublNIM#GVdz$~vmkTjRb=*K(NNEugEZdHhGvZ3=6HEjCLRzdeFE0oX)7
zxkqdEzTys>VMG}2Y&qaOYTX-Em=toaod7orjI7}FYP7j3?FLS4rMtiskCPWEIKdHW
zkTR6eV&dsj%fKEjVTzk`^Y7?1WFRaVrU76Cf;a{N8y;#fUq(YJxDqy{6sL(Qzgr|<
zTp)2LI~YSUY(&;c()klTBjOkFI^I@rEht}`=}2MBxg?|{J$Jt&7HtMYDna2fN{boQ
zP`M?VbKqnur#jT(B?*1#y6e$2szFjX?!3eW28EfE_<A41xTnF#z&(LKMRhE3EfE*4
zwb-M9g2T+ix23N2EFqR~kK#_y{+T+y3);nyHQDUBR)9$~s+6LJKR&A}OEQDa6pQUj
zI8Sr@(;mN%vh`3R<$;+K^I}fhC9Vy=76fqa26$u0%ubRfVF-DRdw)%fY{sewGae&M
zjcrcMl_u3b80_@3G<Oos5ZKk3-l)SDhL#w7Gm+rrmfC$Qt!35!eTV4&rs0kF`d@>{
z5Z5feEJ4dm=;L*?TbY`i`5n))QA#!1CwiHc51K$u)Sb^-%!#K(M9x5?C{R{pY?G{9
zI8Ny%ES#_@NnN&NtLCIm^Zw7?Sr#}eyUL#GU%Li(pajnQ?EiJ*rHbr0*CYGnEAue|
zWbHU}Hi41@^`6J98-3-YuMD5!(ezb$i}Ge;kinU_E6UXSAt{Z>rnBBLo3|CdTj#P)
z>#+3d*L^d`u1QC%+jU)z+jxH7UWLk(m^2EVnVWHB>E@UNxLY1Rlq`Gft}!F=UNfri
zNks3P>pkmn2PCm2@}SA3!t**oDuLcZX9^2a$-%@x43$EZhDiO6m_Xzq9#n4qn-$u3
zwrt|f%dPMg*kK41v0d)X^U18T!x8iYdNmW93$@Z1@d$f*-xkI3G13H5CV-D@o?KVa
zpOpJ&g7BCCl0`|`k#s4C9-;_@IFM4PRB$Q-SxuYTi<?GfQocA=ms!GMN@;QyHAcjZ
z2~IR+tY=6ir#z6^yrm6<ya;ZJYRqFQc7&Zg;itS6ATRH$<Kk8J+iGENE^J2yi{+Ab
zL9=#Hzyh-J1lXX2TB~ZRiTmm~w@G9{;OBPg#)&+ij|*x~@9Q(QuWA|(i8aqlX!L0V
zO>}&+2B-&RZr>_BEkOW6iu0HSQT6zh@E+HVE_|mVKdIxxk8`>1o!DGj-sSrnCDQ&I
zXOi=DGG0uOBRfl;Fg`o7AH&WekdqSmQ&UOR$NU5#A+Oa3NQXY4Q`HpCe7r)w&$Y$1
z9#KxO2rMM47A#8d%Paw{pLz3Pjy^%6@B;TDR0rTw=z~q2&(;o0mcIVc?FS;mN$jhL
zoGYn2JEhaS=%ril>EShyttwvSo-rYb-8%qn$t^8EcVb>;nW95!=uZ`U<tl=m1KCda
zLofP`?=DS$<8vqY&I=#447T*pW-E4@Q}`$A%$SG_fdUFt>uXQ+NQ_LD#8ldFQlyV_
z8HXb>1RRuE-_{gBurj>nfll`}UR0XDDRo=S6+Sd5ZX@FnDtDj4vPxo}(%t{AB*>(d
z)<zHdRCrA@1QRSGCJpr5w0XAAS8W@@0RqRsfzAx)s{U&sZ@(a_gbC#q`Ya0)%aYP%
zzN(F^Hkn6^M_h7URWc>E=s3(*NbiN^unI%{*&L$8QE%m_qn0VNpTH{VTY6%{GUaZg
zuKcylw5TpaOh234XZoLP(=yv!^^_y0E?1bU@>yW%9UfOlfx$j<IP{LD6Yga(8;ZKm
z`tEA3$wKqZ<Nfmu|J7BMn7?s2rC@s>Y+qzNL&<0zYOH9myL{1h`)?iN&`dd|p}^n!
z7iWqFt?}fCgs5W3CA=oLvS`R4-gv;)OrWhPdkYsRW^eYJf9z13NEw#vp2vP{7nYM9
z@z^+`AT4w1v@^RXA<f_2Lu(mgtA)d5a*+x_$3@ae)$`DbZO3u7*r3d=ka&U_w!kYn
zCRUyt%ScRN!~)6=vi0ZSYD*&{Fk_Wvqs3ccVrb1k_Afcw^W^c|N_iYHo=r>qyE^1G
zVw`VIzDvSXlD}vkciQLJQ687Z7k>%5uqox8f!!zyy=j=owihOFIgy-@n4H}nMx$i+
zNr1riQ}Ca9vDMU~rRM_Hb#a>)6=&YvwCPqv(OUE-VE<R1Iy&tt!v0?CA>CHS0RM1(
zorRg7`C$_of#;R$EI$ml@aH&?&=3{}=9!!PONO3bm9Moo%xB_11kiGu5mzo%<y+R|
z9K~bmKA7h@DO|oht-AiPa=|Vwl@AAAhz+1ZbW%X%yUmlvW}O5$@ptjj1pz!?NyzSk
zz^xbsVa~v}!p5Hv7|fys__HX%fe}NSRe}TDFDa{BQq~TB``#adKYrV&3d6s*WLgaC
z?W<bbl}E;qgWebsk%0ShXTlHJ@wZBFU;QF|`$=Wb^=GE6x~{#<k`^{C7X(M{JDbtV
z;top-#y+V5ByQgv-q!8-49YA2vP{8SfRS(ABA`y6KJ<x=@wTsJ>(E(|W*UN<LoJ)V
z0$fpgg!CnW>~m%89UW)1r-Q6OpSdONsqpjp2Ot(n^TqzQUf6`KywCiL*z>t6&C{%i
zl^o^l9z^GW2ADjOt;6+-<squrFzHVr4fJ;*^_7OH-ky8=f598TyhQ6$n&a%#axS3y
zey9KbLbiJ2<|~CCLK^CALFy{@D|x-I3;P|}C~E-2$P@VWck5s6Gi2N!-r^QkuDf~u
z)cG_o+`7WwS*?JXXmgTwgnCNe1u*Yn;S_K-8#kYtSiRmhq@J(E37+YB#cl!4Zxy5e
zn|*AjhHC-xgN|;VayJTjd1w&bM5SU&rSwzlPf|5-r8pn#r!G{iVOtEVky*QFOGraX
zU1LDGFXf4I0WBS1&%C&zi$%7MVWdZErde{D0m_GkOFZ*M!@&q;j+<BTRs)byP_2dh
zbgV}!B=3#TwD%yiit*)Au#;k-&CQ1%P~gW@MO$jpg^vy14)o}~5Ev@4g|$vqwx(K|
z@_PZMRy@kp_m1?o46Phd@#f0@;H}tq{3??_o700gPU@8mbNf%Df)ojAlO%vJVB4|#
z!Iv)_4v|irOC6tG&#RJM4QX0GI~qE7h=JMuA3TD_^oOVQ)A~2khQrc_l^?v{rnK3p
zA8uCecWmc<M8(NLgeClWc8{0@h%1D5BrL|rSZo^)KHV>B{T(sGCl4f9rw~S+mk;$^
z{DUY6{rJd1(1Yq-c<;e!@mgz;u;U~(pzH-z+=z%j16r!JPW}TrHQZXizX1Y6<^?BO
z>fEHteIFEep{Lq@NJZn`0j*X}C-YA_sZz!L7^r+oC9Dz@*r6B#%+y0JUf{XM+K%O5
z%i3qnkSH@DwvS;Aj9W0tm<|xay8t7gsAFAfq1ziNn1Nst8}HI`b4nqlDr&X`5))(f
z2xedul)Z1uE9MQZ@9iBK85=uoc&NO%c>jSQwHz`$bH)`l)%uP=gGf}ueTlDLjo?s$
z$T}5ud;K1)P$#w5?b-M*wYsf7Jq>*bN=t96o0S<2VG8A`>R3+Zx-H=ZzDv3TI}~_K
zKtLVAwuzKs9gFZR1mcOv5vZ!nbzL3Lx~ZL2ELrwDN$p|S%de~@7J19UTnUIAz$3Xb
zBA{fs!4ZjJMc%bOP?dhKKW@dKc3pQ`#P7^m*Q^50?~bvs@PM~rDTwCYGo3SZGSKnk
z?+^E_RQ~<jw@ps(_%=Q5oIgX|xzpZ|fd^#&eKGJEc_KOWXI9`94$8}#AzCp5v2l7P
z-&eY^ca@DTW}{M^2!um?OAo?69S*_%s3+fJcK|^@U^XNy*nC67YuTOc<S^+iK3w-B
zsLQ>`_rlfhpY%0L9PhA9Y0^}0ZSl-pTiU5kN?3J{ed?992iu_-l6d{b!&^W!t97dh
zt7nGy_wxIp0OCNv9gF-c`XYb@lTt1dK~s=an=7sdI8z6JnXxl+3Q#O@-IZ2egk}Z0
z0NvAKnfBV9U1WS~unHP@bWsc3!=yc;6FTAu1aU(z(Z1hH`ZnY_K+X}&rnLV!+k=fM
zuj4ibZPja!&x;?05_)@ycKx-r#X}Mc>+MGqt@<C<cH7LLWca*=4QxXZh{%WMV3%kX
zmX&gVv81m204};yryfSzZSL5mJ~Hi*h`N<-{Fz*jc?y=i*)zjy*cy;DGh&fH?}F@e
z%}#2UhUDpo`c#F85}D>D(qX?TwE6ZjpAfQr9ybd8y6PZFl%4DfeL*&Dg(7b!f@w@i
zj2)gy4>kF`dEl4hKLCM*hk<;r)>UOKhti_VXkzQ<J<qBJ6Wg(0(gG?cfP0;Y5NMqq
zGjhD@&<C@5B082;KtAVj!rOdG+5aKz`L%$R_ScTO@0jhUv^O#kTF#xk%?VwCa332b
zeFcsgfGlze<WvuXmgU5OWwUkKF(-5mgv^#$`)%aesaPaBL~K5QPsQ@;>IEM2{_TZJ
zSRGrEJGS)UgfvCVXd%c#L9NT*Y8S5)TFE?oI%csOp`rt<UIU9yo9}2ft$+bxl_2%-
z{D6e7`Af2sslDZdbsLa{oun^f1A44<nt*qHn>cAC`KWJiqwjRGUIa5yKXTRWOv{SP
zW~}#b%gqQ$4{p!(NZ1vb%^hjkaaCt$>W$?o(}$)MX&&`08eyybb!p7YG%R6zo*-_%
zStPKyoB2rXYf2eo)Xqu>0XRU3bTL7ad5`M*r8uKfQO+qS=MBMea{fHE!s)9gRK)+3
zGEr4UzVlRwsD~847orT*s|ud!(keteAq12X;-#2i@|3Fuxm}VlUf-fCJ;$r{s!4na
zUcM4f{b6{cyC;|9iA2y;QxZ}<J)Tc15??OG%j2kuu?M3FxVvQamnZV&33P1yIf=Tb
zWi_VcEXJ7<Pj)8<dIfs8d&E=1UGf*Irg-BEy$Gt?Y6?VMfgQu5OL1=^3aO8$O@6Bo
z6N>&f_wc(a05#XI2<80k7E^_AxkZi3@j^aVRxL^>^7Ob_S6Y5u&tBC9%x@o1<u-c?
zo?E5F={-DedJ$0%B_6NA2xo+5cncZ#5RV5wk_GYr-^!%J1;&)xmy7a=KKh~=`GOtc
zA;JELLj|xe;W-zenTBh5?s=JVtxPLEJENM)lChYtwOiva@Ui#_1<z*pZtIW(+CI@w
zJPU&{=pz(z$;x>b>UV_z88<K@0iuu-*kQpMSxtbrFn>v6zBou;Epp^(tqoxe1)JWq
zLX6^&05_3NIkO?P_-9EVGV6l`X-`5QxvUGiDtpMPA-yKLM%)l{sKHaApYP%5ZFJKr
zR>ta)V`zM}lFFitCJ;qEqpd{*mMenOLQ0?}Q6evK!eo)<B8xa#ZrS~#wuFEro;nck
z?-`_uR|dO$4yHJri<)7<B?;q3j)LW=>(=gmy<FGY*y>#4Aj$-=1%U@W5BBMycfgJo
z<+z#TBC6zRsx;upeL|I~S2LO4tnTCPTW>U3X1UBFiyi*b(lapwM1ODEl)b=m!Cgax
zs)TUQyg_+vu%c_pH&Y-?uFYz}stxr(**^XGbNVI!@#-+!DRmLGLAoH_IsJ$&UV9oN
zc=#`&-lj}j7GUBqFRhj+iQGTJs9DV^hS-~73XFG2d*ZER&16FeF|U=j+1>c<+K}2u
z@Qh@I5^9OOJeK2t@fz}^Qm^YU@G50lL$OYCNhp3U<hT(;Jb|BYbq{yXsxRB0MNpe@
z0^Ij|f(zSY+lg2tHUi_~>mL))Y2Dz9MFs%#?Dv?0Jg6<Ujexap<!x~9R`VAHbXeE>
zV$n;z&Aa&yk);<e)op5M_2{T?spm2*J6E2}fy{WnNtS2Et=Nn?Fmu`TQShct6HoFC
z_aLE29#90bG3c27C%ge?OQb9<$llB%_<Az&^VgW#ZKbq?aS{qzi6}*Sl2J}&mUBd;
z5)mA$qdnDzJM0H6W2;b@Um{{~d9fY`NepW|#))*2EMJ1~LZzmT>Mi$il9-nupzPd`
zE|_1o6$aDR|F39^B74{v`DgM++YxH6-RBhHc@PHS!WFHDJ0Vz%JBr2|gZvgl3P`Au
zDrfd`Es*{@GD$nKf$(JG`c#tFSn9+j5?tM87gVhG2bG)0no@J1-);F2$1UzJERG$^
z!aG&4y;ZW?-}$i+#C9!vg{PA}m2OW7If4M4@@s$}5mm11m5`mP?&6aY9t7@-65;<S
z`fe9wdbUYv{u2!T!%$!CtqrDYt&m}g6}L8IJ}Nt(?*a+hyX$+ER@&gz{&CRFQ-TNm
z8|sGwTbM%bPw#A9c~_q4O;TFHBrd7lC76<%_^+pNY9hAGnX%n2@7*~n?YFC^2NbKF
zNGk3+oJgq2W@Dj6aNp)qwU%$CzPV8&B52j(bWFm@T$fgt39zWaPiFPn;@Z!^lzjy~
zQC+W^OueP?zDTc^e49LM=a?mm%R|#P2WbB#V01L7HGA7B&qTZzB=19=g1uKVO@*@R
zphlON%S45%mvD}knEqBtG-W`PAhZmLtVbgG!JWp!1yi$KeY2<Ah4YPq_?At`V&q2L
zDZNW{-MG(xl^U9|nN4vyC2<>LE02$&Il8gBz;kB!3emQ*ocX3=7?L3q^K^<&Wvva#
zUN?1o&rq%0<AM5+US}<8648n%LX-({4Fv)>|9-~Q#t=VNTzFlgZ$^f1XC|I^HBYD3
zZ|f{GmD{RpOjP}!*2A^j8HP@71^HEAdZ%1e<m|)bWEzpJQ}pTST>7tT#@_oYT_{jk
zoYC=^^mrvQin?FQ<(`=5GG{>kMZlkz$!CV7NNT&wbm>j)`wods5$ZPfMozvB+hbn3
z$_4P*vb^oB@?(+J>#Tn*O5jA)U&jS5EAgRBQEY)vkpl?AWaR*0b(6cNAG|xM;nt>A
z{bKECm@DWJeNT{G=H|2U?!oXA4%&&swIR$Ie`08u3B~;4AJYaBj>ma2FZLvTEi?nZ
zt&lAOf%g)qqT3vOmf#tDkbYdp&o6E1+KA7wzyu&(gd{Qpp3RivH6z^TzQ9}$flyq6
zYgn_i4vfEaculM+#+4LLYzDw7UielyW-I#?baRbryb;>S%a<b~^YgC4fq3=m)jwz9
zLL24(m{5GdLv{_`wy_g&(?2h{ChfJ=`^xB&><D>uyJsS~XD3||t4~R3@K@<}WEJcd
zjW53+n)c0Z-w?3!@hQ;xFr@qIP$O6}Klwt(hO-f=DT_4=<CAk@@?v{*s$+(FW6n4G
zRqGT%86W-Bk})YEqSz?Cjgyg6`OfhygcmfB@*m_#_(P5)Zg4*&!99Y<0%=>G?taDB
ziL0FtwWGmVSeAtY#6csIUoe6elBkN7YK0{o7b8l^^Eh9nyqRV$=kLVG;VsUJUdArq
z)+Y*#WOc#*?BavacnB;#a{um}vLlgYv6Hr?f$}OrTFuJcg~bzFQz~l=q4l-I?6iRN
z=txez1Q%4YvL*RNorE2g7WsCJL4xMUV~SGWS(G+_;s9jp%)6^u+_C|s02>sC4g&o2
z%I|?6ij7Am2mcvk1Bg81^lzS*kS5}6^LKTOy+2GyT9mVtZk&y)O({e#^HrR2*0MXl
z8}__A>JJ4CkL-_(?hL%f_GccAx3dwOxZNoM%F*4Ts-LBd|GBq$4tIQBeq`Tl1Fse)
z$-Y42<H1u32>oo<hX)rN2FA{fa=23-?^+(VE@FO&>k7pXevXu7dHH!|z2d*cX8Ip#
z{kDk+QwQJGz|@gMRJxTHo|TnN72+7l0D(^><t!x;WGsK~O!Pg@Lj9>NgMu;YJ1l~a
zd+L1`ge=mW+&!(obC2F`jEOzRx=%?v_9TC*?$U7b?ZPK%CTolz+&8Y-`n^Xk?)I?~
z=KYPj58d|7bo2leFzOp}1-0l6CmpT)Vq7_cs&apk+wKi)XKGK}+AVSn-2Rem@dINL
z#q5j2H)&&SE7Ktrt3;Pw)%1zZVKF_?q&0DYi);pejt{L4Z139!)uW>&5tWg&8q$&d
zYQzag_heKG!Vh)=FQfGN3H690_Uw-zsl86#zSUmA40w~A>_V<O#=+cI7^&L4$&Uz_
z8>B_ic2YEP&jVFGdTLc<K~hT=)?MV4(9{&~xoB)5)mNFH*mXka>!J;94=7^~+UF+<
zNCIV!sC4bz6>ob|mVG2|MHFKDu|Ju^*%g7ytnQ;hp$~Z#vu4}=nz2JK&Yzrn-PW^p
zH+tlfj~$O1lh9a4wsxVi)&APsEmuCjxvgJ*nQPCZl*sXqh?JD>zp8fba>$!$f+iua
zDk*`p2pw`s_3YAOK;`VJmL*L!(4BLWAx@jU>pj&oXv8I8fgM#d2C|Ni^?6o&433TD
zaEK2G(`zg?uGZD9id`#v6ZZ7RMb4L8z!TJ7+0z8d)&qHN+mtRU9Z`CfO;5A))xZDg
z5Jc}0?%gNsRF(fzT%s_TS5+r9`;@*qnIqw7&V@l0CCWuwx5}I~Vzttos}wd(F8f|_
z=hf}gw%S<N+bEKz0x^ZB*j;Rg?$jtW7aXFeLDc4$;*HXx?c0mM!U7YmR#<CxDPG%}
z+-^4Gt7WAKQKEkCfN@~!VKhago0YB9+iVfpT6-a$v(DaSr`fp>2n@nfyOw5crG$6I
zp%;9$_}WhPcK~EzdnHly31gpm*wJT^{Zg}@pq#})IePD)ShWX2PM&-<`Pq@P5r<El
z`!qRUckG<bIi<Cbps%|S94-f$=;fmSX6<kKu_*f+MBnC_ToVHvMNn*=oPLW?yoAf5
zL8~XF_s5TIowB6EAP{`T)+x+g%Z-EDF^}Iod|)Yi+3omwKg&uxe8!XI6+P|P$OL~%
zH@2}&<>mcNLB753es^X2f~1W|_^o1I&Auz<&NSHfmi1H{v*L*{8t1yQ(X;9&T25C|
zsAdqu9a^S%sgey+x6K}}eIAnt%=gsI9;-#y+M;z{!1t|v+YOnluowS5*1R+1u|q-Z
zY(re*qbEfU&Z#NaE{kF=E&9jzM?(Cx?wr_!^6p4Md|E|^d5p`g(|Peo=iEB~4ErRF
zh7%`>ScUd>AIUQ&yLs~hR#8eXxw-$ENnYvG#oGz$Cp22`|5;lZeLnoelWrEDoY?Ec
z(XHkg#iMrUtNv7P<aa3YYk0?k)gaIE)W5A>XIFaLyts14F>4KdP-E~eX8OgQ>Gl%)
zOhDwfUV|;&&^PdKYJ_j8vAdjd&7|=9MB=uz3vh5tbn=1119BAlk5zrjBxh|(bdW(%
zgS5kTt=-EE9B30N*|O!$n=SXX{aVm=CdFh(t7?2Sw@}6oIiU0VvEDyjU4ME7cN-Yn
z?gAhY0DuS@cliIKOq<~k2bjRxdd(nuz=i1^xS-IfA=UUU1uG{kdYoc7`|b#Xrw=OM
zt|W`z>W0p0&W0?4wKwWwL*|76731rYZ=NsO_g%q7tY|A9x)Qe|P)@2D$T|%l(#JfX
zMB-BrUsE&?I}Xm)Oh+HAu9@BMv+P!1{UJxQsW_L2%A6&z_W~WQXK`JycUZaH!W$S8
zTzU&#h(ecFu=@;$&b!xo{p?gz`F5c6Y}3l{@X8Q{hE}*MBl?Qrp`5C<r=<qB0_GL^
z9}MzLAoP^J6~0&hr~bOnn?2oiH4f5d9)?}&SvuV{bZ2omXvCr^qpG2(E2-N&9yMgF
zv{0`)Iom&Ub#5f#u6tk{=ldR6tPrcTKOw~?UEH&h-*BU0frh(MvK&0r(y^s(YkkW^
zaC%{PS%KCh)_N8CI-%c_iAWiG?B>-G8-wq!WLcaLM{2QQ?{dvP@$dI>&A3HC%GgKa
ztTc_@6Pv%<EAD{&)Z6Wo0=M%ue5lzX!$m-!pW@)p;y54uc#nBL*TGl=aY?79GbQCT
zCXJQFRb|nmc#PhhD<9SyR$B^JxDG$kB>q*5q>Gt1sfz4Kot5m6GO^s4?rjQ(CK~6i
zdwsMs1Mz*Gz4wgQ^`ae?U{VKF1<utyeQ9Yb_M;+EI<xC6AR#!Z^Po11+@w&YC*V|+
zbENCma&~v7tb<Jw07Oeqc<<ZEX>Lt|CtO#jtqE;LlZe@7ico^8PsAKnrVR<Z=3Ioc
z)5>7J4wd7P6D5A~O2YX{c0+BVIFD-`b~(KTMT)m)-DY;4N7<pycQWs>F!3bYEvH=O
zw8lx8O++`GPZry{(&MdiRr(Cd6gpAbgPSotJJJa)tC;IL7~y*Bulimk@o|v6LcUr{
zicv)C=*D{m(wCNa$8TjNv?_26*A5mpe6=lfJYL;+*rU*5RQ~NMZVZ*>ea_pNZ_vui
zp4TYz-2v~kvV*4t*V<gRpQm0Z?;cui#L+XLW`gmtTBIy8%k76cgQu^mBDxpQZo5Ex
z^S0GEET%1@Ubvli5>d0agHj&rli=;pMSiD$>gx*yz$ZS@6+m89wm$!o-B&dWfWRd)
zBUp(w^adi|w&%FD=xuj@46e86BP{5DEU`oNIO&#!omY;}Pd&uD;)WR9NcS5z>*GDn
zw#CdEIxEo);gg;yPUWmT&BAUXT|3#V;Y11w3M+?AeFU{xVAkg<Oc0mnc5EO3i*doK
zhn`wyqx`mYCauaXf0&~|II~T%`_%4$zz`g_=IYkUHgyVg6A&_Kd*(IpmE!&c#%mD1
z9QXMR3Bh(izP{zzN@pE*J27x*w*mxE0(IIlTkCL)2fss+l~rw{mkOy~NQJ*{s(d=k
zedX%(N(gkI9ys0MGDV)Gu%2u^>s2kg)2)5z)!Pu0FclNz#B-?$E<REH7NDjY&v>Vx
zRIcV37GXCe?rjqKeH@89VZ*=wZEG&XG}9j3=QpbHwgb3Jblr=TLi>CC5Z=!p^Pag{
zJ)@C-`z!cKp%?n5;pCV1cl7<~lW$I`F0YVM@gi%kPc>+=ycJ=&y+f5tkT4rhuZsO2
zP^%<_FS~nj%XM4964t<9X6s)fE|7QRc_i#ODI#xJh&waDG+HO*@{^)RCZ4SHZ`tfM
z8=&%M$gBxl<n57yaIScxBz{(GS$WbwK{}^TFi$Q&Np`|}1+mwD3~ZKqT_y6q;CO-g
z)ugU5pGPwFvJK6z9``h03o&>3p|iOUUic2NB0~0l+0H!Ij%(Fu`Z}fizb5rLM1#qf
zAN<)s3GuptNw~=3G(7BVoI@h*V86&V=lrF?-ZvJ|i<RuXfP3$ih3%(3R-Y@cl?`B*
z;Zy_oe-Bj<Fzb|#ps{l*Ps)!Q679UObZU*^)OqMKmd~Jy!h9+PC{%aYY^h|n#bV-a
zQ7_2LH(FbpX?+ixXv3{-UWuDmqfEAKr$6KYEH7_sYXVrsMsx<d6#|F06T7i1oh{Gg
zdsdpNx>z@iPDW%5_Z0mX&NDg0$dQFsz0rFIT#po}Z_E^|Zy){2{g*c?4<9<jUdt|K
zo#H)b_M@!|J34hxTd;MVE6-Z$<p)p%$?ng%<#m22dz`tnx694S{hkO?r2Ov6k<hax
zq(9C~*x@H_qfaA^$N(ESw0H`D^baH&PCmeVlHZnI9=WO?d46&S+ZKtB*RI={eAX;^
zEv|0+zflqCpx>54(@xJKZV&hT28|^<RCCh<l@UVLt!C^XJu~P<SXh}iq*oUW`Nne;
z3G9^r5}0W!C@L!=K|?OW)!L;P?YJwQI*)>%(^pbnZIM$^O~b&S7<wy%3@)W0?sHSx
z<`5y;MqU2<Vp@1iw|!2?;!ckWfdM4z&~RsVorgu94C!q_enhW~f>3B9<DxF)Fl)2J
z56I)Pr^IjKw{DGp^FQy+)~#&+4~>a06;F7-`6OMF4A)GeU>Yu5D5g*Vf-5?5YJ1dp
zePd7h?(6*{Rv@AV`yI@sDV;hD&+cZRo~S6pz4B2W>hK^O^v8hSDyhm_!_~E)lC0r=
z#4TWG_`oqKI=_g+1%}d@oEW#lZVx~$$j;q?+9y6^6DYEu@$b(*ET*ZkkyS8`E>WNE
zuYc~_FN~yfRVub?qTZ2GF(xKEdz?Kyq#g-T0i_nTkYvM!QWY2_q?H||u~M%Iz@)v!
z;-^MHA`*$t_<DwhMMp8?P3wI;Dmqc$6*UQi)p}Q&!J`Y+pQw=dL>7w<*Gp=CAKV9D
zzVQDa3?B2({|te`TO+C0$IRgnyjljg?%FTFgb+DcO-7xl+lPA+;KAHC^8OwI$eEC_
zoZ6}6^v~iOw=0STXoj=H!~b(cW+5Rj*Tvd-#@P#d+_?16J@xKqFg%GB%<n1XIG{AJ
z2UP4$%BFg1w_Zyk8N+`A;v`I;E6UuDzad_whFmI={A49u!T%*5po&hp7|e6K<i;d~
z&CB>&8<vzh%e)u_jfN(LEEB+V3@26GeUyH*BhJp^3cXwr=(6d6^vRvLj4vTA>}^@X
zR`WtFMQJ$6w>hlP$ud00$Wwk!2}|3l#BkFmhr@!PhX;TvkrmdQ)^}r9M&I^hryi)D
zOFzO|K}rzW#=50&H`KSh^I{;;X@~gs%S%ksU|q-SXUUFmBy1^%ar_IpqQSA!jaIQj
zAErZ(Dr4_}{7bKCa(aIuku&JphqfHHvwSe)-$t{F4Pf*KTAM-ynNePz_IiCHA=Rl(
zkFNM~A`8D;-WgJ|j2iEez)e5x$M6q^xF8d~A2*il3*iZeWK3inNGn*=>GxD{ox8U6
zmmfQwjNiLgwa?GnGmnOAK5F`>S6!f6_XPp^(SnyzRDSpeH#xOMojjXz1(l<tYEJ?_
z!ZWW^(Wi<+Fpq94`43!i#9UZt9l$$fWRZv9N#=O=<u>I$@uwi6p;$ww{h(GIasiWY
zPNqh$6O~Kvd^tH$Q0JKT8e(BB{eB806#|h*7H(LOfIm86E^q;6E*~BO3n9X;L*ZtK
z0EFL!S`Q@o-0y(;z84DW;nv-rT-b?fwzR8_a(2>Un=$(2z(zC+3ME1y5C|W+LJeyo
zy>hZF9VDmpB<#ukT!}YJm8~`2bNBOZU&IW)(JS@!v7;4swY{exit<n-lFz9#%rBv(
z7<j%NK1zayVRtXf@>I@gyIAUmMv+dfhbcfG*UTOs)P+I(p#t@!OC)kW`bXDpV+m32
zQe6$9zg=Zq6+<8pcMx9c%DT+}@R6RcS2o_NeM~}p`RLNInW(ciG4q{L3=Oo=aBe-4
zhYTGIVi1%aK0s>*v;G!Dwo=#E#*9J?z&vE@7DUWXOP%N5XL?HOGKFn#1;5>TO>PB6
z=Y2&>N5EH<<hPVap+kcSX{Vy|Gqbe?JOxQU?M)d``+=K+ZiQ&z?x`L%>oBbrabh`Y
z3qxPPeo*Rf*7fjVt(nSzz%lTYK4RCYijmXYY1Vdz|C=^58FgO>oXI<8Y90f)FEJ;1
zuo*eGL^zva(I5q_x^62LE?U6y7-n(*xjw;K4$Q;zRFIk$&Y#Y#1od+^r|Rj;8V%R(
zAMK!bqgD(btUxLF!RiQs_TYCHF{ly#yR%@@XzvLFrhHm=vXG0ahWAyo|7r8L4<2Ez
ze|z{{=d%7Hs+SNo3y4_vAg@jLp+s0_Y<xD)Vy4M6&(c~SJ!7F{_{WAXz~W+8PyEou
z;@W2x#7rO+3k=x9fnKl-e$a<+lsim#pVTmAw_ga#TAGq9nUK3f!?oSFCHEqj#0ZDE
z5hxpb!4{g#KGf|wf;I;~!oh<Cr309}1^oN(h3P|wj$j5E883&R#(lj<*C-GH20sL(
z01=c7np$bJ7YVsG{cZj7xe0cAOs~f?>{_c^VWW_Ex60Z2C$Kp-5+SFwF}5<X7bod(
zy}-!LrRH0t%aq0*Da|RdOhCq&R(>mTn4YdOpVi8d2WxACwK?(wTJ7cuFiuCig@(&A
zgEey5VNpsJ3l760&i#KYjuu+MEUHha>Cb5GPYvig`Wn_)6$d?Fr%%7;Fo?knjuhXE
z92|_iS3L4g9n3qx%6nV0z8;+X9Mfem#a_2Z=g7|8tiUaM3_89h9Nd=mR-qOdPaZvV
zU54|#wa3x+G{%ohMtw0+tXBb0%6Z}wKu@K9YxnV{Tkk7@xnrLZ3<SUwM486Q_qX0a
z`HgEVzZF$N)FZ{QCf0I8jJRdiEaWd?bXyQuPh{)VntLt&K=NS=q!bxxU?5TMyf3f~
zq6Vo#f>`btN%croh%9}h$fRAg3r~5fEUv2F?ew`DbVp<e6t{|>E<opp>%N4HtN`|X
z@7sX+?i$ArIa94w60cVPfgw-I8luvbr0HO2z`8%1FPJ@_r1J_O@NdWYBKMgZ29G*8
zg7`r;0#-}LBc_p9t{=9DpovLw^l^_%g^umqc`VVmgF0SNL3I#*-`(<CumQO>pn%^z
zi(q7tnQSt3*xDWcb`3V2HDc2J3z^5Qt+0Vh)Ax4k{O!>ek8cZzfQqim4V`ZjqnQdx
z(U7G$5Q^v!FpB8NO^p2c?FoNVf63Sv5>6lX`~{ZOCQ<z*!ou13wzha%9wNG>I)--3
zMF?UJO4^h4Fp!i>B9LI@M}J<rq~Ia(+`jb`Gb2Z`%*XwUS5%;4_(8+HCz|s3?=%!i
z&cjJ>zM(bsOF*+^DaN~^NI7L!8ku06qi~X2%kd{V?eTHWTz%dFj>j}T?yx{aH-F$-
z!1EKCceWN;HRa}>-su}K6gHFpzSEe^>d=ybAhaqe1GDJtfb)8{M;7W+JOM67IU?ua
zLt)M#dW5c{id(*Z#ZW$)lHIgp1CiKTLjR9q%rtBs5W<q#pX1$gpPlQQ)U({XS&0^>
zfodp9m9*8I8?rixaawOBIU*p86`#rCg<WGTI=5PK74)D`K|Iq1KyVSnFODMnoW|4*
zpO0tDUB6p(5wmZ_SDYxmLC3f=VM&8b951m5k11Yi!HZuL+3s@_lgB%eUlSt!fUVUO
zOO;u*2?=cx#Dtn6xNmCd%{?(l_MT?O&ZIj=AkWziRa{m+v+y5#z{NRPV>U{hKX~5E
zfLHS{O)aaXH_{p(*qNT9?nrW0s4@z-krW+C>a^}W```%c;^ru~+~&Cz2JH`=4K;On
zcWOd(h0Fit9Et`(k+84Uk8c+bhV@)!8#7tqj{3DsT<*%cYiuKP|8vmGf0Pc(ugn`1
zM-vX{V*f8|=Fr4KS}>OKauv=*xoCw%*cx#;;r>_a^PkdsvqK$>9XKFBtjQAq(?b{P
z1vHU_w&I-e6^br5qrz32dtawq(GY--UwtDXe0r29F*3MMhmW1F1iG<g*+BY3Klyk!
z?h8&XKY5dCc1J_>{Q~9EjEcD;1^ddH6j{7%L#klChR8DOCnXZb_w0aTTWQ>@HiwDn
zXiP?u3auGPPhGwKgofVdqYaHs6`kSkBHP?m?b0!yP~g=H4_grO9=VM<ud<}b69)VJ
zmeRsltep)MxqMabueIvKLfG-S9Es^5Q+|4UF2XeY)9+MJzJq%%^`&Atj&R<2%q_lt
z0A6~mvkLlL`qn@dN~p?MU~cYW5JXpSYYsVIV=Njvu`=UXVF3|{%0|w-(x%s~6k^md
zy88A+Ok?(8^>rfBomA;m43jr2Z+86zdY~WEfX1T?JdSS5b7@3(9@(KUv&Ewa!}^=C
z@YNGDZC5VIdon8r*r%-S%XE?#V(@^K#Y&xm1eRmh3j`wSy~_nT3&qaE<jRv7o1*gz
zxzjk~Y{{)awVctU%%ml*K56jl7W$3_r%xB)^Z^3Lz=7V`-xT(Km)U(Jx#;?4ePyQe
z=Ut}Mw+_4SIg_M0c`~UsS4`r%|M<6c<x>kycKV6N+Hs-MIds`6X-C(I<LEG^&hLjd
z`0}NvM+q%3N#y_|$QK!P;K>s)myLbJty^QX0>P7dsg$8M5?956AuVueKNd@&q@<iU
z{wH9#P(yNZyYcK9(-X(fa9sS2n?gJJYZl1^Y5s+NIMm;-Nr;DgC(%R&iSdKc^2)05
zoJ!ymB4KSnA+JJ}wo}rAv9bIhk3SzDd%oix0p`Vm8f$&-q)l<USB1sSSKcfyzx5lS
zQY%l`>_h!q62|<IS$8vhV}JO~!u;fGJ$(yNzW=t{V>?-?G{EKJ8T<Cm%oT?R`(<P{
zZmNHg?UVc3uWVyr<JT;`$*JF@KotiMH)&0ekv*Bq;zx6ytu$u?>gR<e)^bOV2BzI`
z^hoNeLmUGLHE_Novw~AE+MOzqrsN6FlU)Ti@(+U_9DNu3PT+X{oV@M3q09HZyp4;?
zMRKlCKT~qb?qaw7k5ASddlpfEt#FCS*k~$Dwf@u=4`R;!?~cs;SqxL_Zp#fX`$Ag$
zI}3f*ZGJgnxiqqw9ju})!f32phYPaT^y$rxAJ46pN+iWGvjvy{PRAzAd?&kO$K<S~
zFUq><=lmw&r=_zjry990o;ft^oeJW!XNQp~8D2yN6oL*2$1klFP$Ib8h(%=6y$c^E
z9SBn+mem4qOQ6W_fJ7dc+W|!Uqze1UnhX5!>KaXmIYQROG)Lhc^JPHsW{!T|yE_A6
zez#XoYYNvxOabWejv!Qq=aqb*JC@yc=qcimvtdXUlD7<&z`5{xu03pdPWlw0Q(pS(
z2H$u`hv}~{7^($k-^O?$Ww-;zxGtJGm8QVrTqp_$|0r&6L1|C<Ky`FFDU(y!P}Ws8
zza}cZ-}XZCcJ<xua12I%vs=Z(!5X@wKn{xthv6Ju9Nf?CN`Vy^m|-x;$YfNdc+HAh
zt<a$hjhN(d95619S2A|t&G*7FXk?8oLt62qzgE>jK($AN!?Ap4JMQH@8Aa9@G|DGS
zJp4edx_k(Wm^5C1aS43oT;+fJhE^3H;_VxsF>s&{C0oWLQ`GO^BkV@$i~8dC&)6ff
zs4b>Lq)GAG%<asjzAIc7DJ<<*d3o|WBkbRE?e|foyr`JvP+mOo^4~@NFY8d4o~)Ek
zd546$^N9c7o{~Q)f#_wx{Zsvte_}cbY94o`Zega4((YWiRLA#SZayrs=1O{_yNyO5
zBIl{RqQ<!}ExgI$Xo~=cmio(a^R%-lLO<5&=2{4QDYCK4HhZ&gtBsr8l<t_?GFL;v
z2HkYai-O%}f;ID0IKIR7j<CKgD^Ja3FdIl!;M}?gw{}u;LDoc%4VkAlk%ki6#hI!9
zAr|NY1cpQ@ZaS%-Zet0hVT<auJu<f4tMBR^cXK)PPu*GARzO~j<5)@i1A8lr66*U4
z)gzYYVxO*_iS4(lSM?Sfpm`N50zf4Vv8pgGxqG@NetTqudeU<3(=QR-+m3AWf1bbP
zolK4X7%F1h*<{jR2fe?b5}Xc2W4&ho*Y4pJVUr@mbJ(@wEeZRbb_EpYB$W<1HHKZ>
zCM>7Si{DTetjkQUS>fL#IPk!rKK9ZN(LMOWTgTRS+&l&<2}2lu&Ljd{n5CXs$yqo5
zn^z=R;gf%{tX`0uapFcLMTOSc*Fn=1R}->PsT4QLd)4sht<gnDGKWJ3<|#wk8;*6&
zl)UHq5-xW+LB&}V$di&wnz0hr|ACyiW9sXf>&fTkWD3zq%%hh)<r@s~j@RQIcY>4}
zR8UUkko^dEVzQ6B)S<khvLb#+r_eUYHp*WD5Z*9%ZbVB#K~9d5-eozszRuDZsncmj
zR%ZmXKm7Qt55gnB(cXNY&*$3U*1TR0GNpWo#hQEQgh3|oSP+DKwBxK>QD|9+UZIf7
zZ%2H-o#7)_Duaq<WneAF-lMEs1_u@Zg*L`%^@Yp2uP$_TFJA4k(H?pH`QWu{L8z4V
z?a2iK9-pr-;metV)HRvxZqaVno_g0^G3VOaT3gSZZ*3J;IW-T<g$Q5aHshQLWnSf8
z!OtO0<?0(52F*>e{pm=d2+@aDcwKEI@7mRmkxNQV&kr<4EvuIpZ&B+*8=b1Q+A`6{
z?Xw2DGjT72RG(eFDe)Z^JT@+BcyGTid_zHArdwk|>N2V0d_f7hdvAZxF|CzLd+`P`
zK^0(6t?>*SMmW2|JEzqrAij$^5(E;)fIwnW!(Hx_qsq6@aV%EaZx^3DD)5r}_-wrq
zUX<LcwHQ%jRHTYu6p<7)KP0nN*bp#ZIoFCHX35bh7W@Moh7v=<#Rb=;m9#0Rj0^ME
zndpR2rduL$EH;@J#tIg?sNFns9$JlUPIfL0gR+4xC!p)P4Ik8;mJzw%)%<-qiM3G7
zg1jUR{JF?zKl=CT%Yz#-J@@m1D+?~gBS$@VPm`G(M?Qoj%wfm?=IWaOV`L<tTpq{S
zfQRm#__godyZVaZXXCYbv|74ni|clbVxPSC)VE=J0yq|_d&rx84nk<sLAQHtL<9bY
zu7!mzgB<iHDoeQAPaA1#JEEOLAeJMU6M=x89Ih__Xpn}Gx;v9V8vo$Ju?->g+bjRt
zs}9U9vKC{UYi=(3%kOp>mLxwqi|>i1f$!Xx-^IZGV#j;m6U||I1Henb!|L9nWSK{6
zc~;i8yupR1TKTWdr8>9FCt8jbb7z|_0=ofETo*4Z-)Z|UgrzlV%04Kejtf14|32~v
z%XS_L+w^xmH(Y}>z8~4(--vnf`hF?c$#EG@O928G0&}Tze)2hgJfheOYYm*>w|is(
zhNj=vZ~4QXJD;`3TIh|0umt8o#8Qbgr*?9~txe5=meI2L63T#{my0IyUp}>PJYifW
z5ZzK1^IvhFzs+wAKv*JBT~t-xFnPb|zIGYlcC-t3*6RJGbjn@jRn?ak?P=c&hddQS
z)8g@Iu6R9TF?KgOiYR9J3hYhlYxCNKI+G{bstUVF>WU1N2KQimdCmwqMD4t$@imfe
zj__3uI=VwEFFrX{$3`e4Wl5BLl}jPI+TqZWlWZ`kq%$_L*>1;7N0((PHcn*?FUyP?
z?bMFf#j0v*)tcjX`n0X{W%b23a(vN(kl=)r<kpmw*5u>_nW*Tlp6uNXgF)(=TFq0c
zLvjk%ltSZ4o3d_nhuYSDwJpsfTH{u`f4kbqcKX&G8%(mSLIE3c`KKZ|#g{dn*uy#C
z9)LJj2EOXJc&rC#>R)7D%Q};Mcx_h!D4(}}tKSX!P3n1pE2SwT5+%xlwV5Av{i=nX
zf_~nwz83q3(TR&HxAdg9#Y+>Tlvs{~ukSqg&(UYA`!@i5U=V=K+SYm!u*OI*l^nFs
zX=_=SJu=4@7UbdY`{iy8U;Ec}|5(5NM^{$TxsHyrfmvNIOFT;MRAg=zow&GJv+d^f
zN=-IE;OBDPjhq|vPWxhNzVFjS9XPdoAkD%j<SSkdw`z@xbbXBT2m8)}v|>g<N5qPd
zq`l08`RSrBubpF-M5j9^X0&^Ah$(roz!)d`3HeJgH?;bbMdj0N`skRq(v;JG8*AY_
zBl-mE{jcHbsE<?B_({0HR**X23CCsd_!~GLTA3(xAZfezKt2ZcI9r6~!0R+vOz-{h
z`-gj?z)CLu7s?ba3N?I1yw6@;bJCq-okJ0R>ERm(*b+=Y{vkc#Nu?AQb$@#5Z4R2s
zkY2spNmV+O5P<2JWdDuB-HZ}p4nJWsXaX;gu*7NZdBr=}*KP(;x{3JbZy?z3kdr8j
z{(<??8zu{%Jy<&}**}kVYeUK@{GXi*8)j`e+1%2fMe~*HW?mf{qVR<+P1lx6%jZ4r
zG;b_%m&=l&X<mU?Tx?k0v)tR0hLM+-4|^>-f3BUf<-_~!{pVJD6ygusKR@**+z#_9
zUupR8uaaG&#iBsBkip|rei7U`8GFp^9aXe&t^7^>*;pOdkf8-?`ozgo>6@unIy&#s
zKvoo!R@uI<sy!{ey?t$6Q*b6gmyL~yZQJ?cFSc#lm`t2ZCbrF)*tTuk6XT2R?EJg6
zRr|2#vAgPapYDgQx_!>QMiy^b`(7xJK9Pg5Ifgw}#EUkT$JQsde_T;h7pswSZdX`o
zBSt(hd087`3w@5%ml>7RcLn^BBO^zV(9mOrW?HmyHMOy3adL2Lc{&>mzfYG}-gIUR
zvQ(uPmV|mCv`7+D_a;#4$`4*Z79Nbok%`0Y9Sy^dOFK>k@$5R(jS-`_ET71?$G^1j
z#hG8oLeZ3y!I<d-7X*fz{RRnpVuk&7cZjCJw#U||kLI=l5y&BEc71&(*k6qNYM-^>
zIr!2KKxMG`e%y50jm)j5zrxdGk|6RbETSD?hO(x>^k(_Cb8uRYT*DnIqva{A%}LW!
z%?zE2exenF<@3*R@AmFSnk+t(IaEI3HZ91nt3`wm?IQ@KIu4F2GPNIFgW1w-^5Tjr
zzliSakOP*e2+4~lXJqpP?xT`+QJ^t(OKNuLq7nQ`U_{~f^uX0Vf+Jt<trnBasR9!U
z2m#1zO7(~e`QI=dEN`-OW6V{6eYYh%cFDQ3$H=t}Jeqqy@n>zdIy!v3*TE2yxCq+3
zmx2?LZ@vO7E!oLXgADFuhj0Py?`ao@9K$>RJRZX#?8>k$SNF?|r3xP5aU*ScE6enB
zWo2B_tEVq_xcR+Q;G}N9c<1B3U&`F5BT65Q(LlpRp!gFOz}T3DZOMUSZxE8V`)k*N
z1pVct^9@hQl-|Lh@LZ@r5e~>B@eQk=Zv)hL&FJlozmJ^-vaz?bkE?{3W4|B?<M;Ng
z>9Wl#rhXOZA@F^c##c(~_f3A^44sA8$3F=Yvq)2`RJ&I76~~@H!P<-0mJstYKMk^W
z-sKgB0TZBoVR*UQdEOeOoXp@X?j7Q1#^VJ=N6~R*JeikR;1#*8w0Kj3_tfuvYGkcg
zlALYL&ie#>9tu!z{eYXNOosb&YI;j2*As}Sbr*4<{#7@5yMvCd+RmfXXPZ>?LQ~cW
z43IOF(h6MlNq0h_;<>zwepxd2Xo4-M9|&lgk_ExSSZyl2d&6@uXGa3mru04xOC7_2
zeTxN<v*3~T-P==Qy!qPZJs9(1Ktia*2`(R&$Nr0y$#Wl;%Z(+Ue$oMKc5xqZWcOna
zr|8p~p|h{a64bv0zv7Ya1K$J02yL^>LP5zdtLmE+qnSt>7%*McATI{_ggapmw$ba4
z)47KnvtHpDgRN8Gd6DmD&VU@!V-#;qkolx`T~Nfvh6ST*^iw;4i!0=K2GrR(yB425
zx1z7lCDO16g5L&2!UyWzO^JT`w>I_7nVv$&xDn16db~&w(;2%dxz5GWS!@?W+l%RL
z3d>o2*5&Tx<n(yQ9<eys)G5#rwEN<TqwT2X%=IMI2o{x&vz(*6`?f=kID2aqDvJs9
zy?d^?lL*rCreZtrIIKptFv)9G*D^cu)#>_q9OdM5w<CD`{Y6Qh1HGoiReb$Doa?Lm
zG`jataXIjwpL+7oMG+(^jjti=&ifhC(t~OR^Q}6qFQxOZm(ltx+>!~h?hpmOUgYmi
z>Vw5{pBc#t(lo#3iIUn=PL(2~eA%106>GSzBJ4=nWSQ33(9U#p+#cGAG;K6Cc${!w
zp!zL!oX6Y<YUxw#;m25(C4RWE%a-r4`~(vD*0v0_21yp0GR<j<m`PrN`2H;RP1>K?
zPhI&O*L7gLVKK|yzjQ0m;&LnK;Ar(MF><sMS9l<$rKL%j^_StP<m~oEof8NkB$Ta+
zsRMWH-vJuB%{zooRgv^__>(?R5;3<n&SL6~oZV)0mTR<ZEHIC7x@e3yO8I}jF(P)3
zs%KhAEWZt7i>18I+O4Ld6FyC$%e^z+pvXz{l~9jfQxHf$)q$Ogb2+$5*WC2&13Btc
zb|lHGdOF1yW+UPX`?*(dB8OU(XM|dJ_Tb4nu{2yl-EaSin=LoZjtvhQzi(aj{?xA2
z*VWyZZK&l1(=@1>ty>FcK=r+|ygG0RWE?!6kGnY(sWxIc3{F3!r2vugB~K?sq}csb
z*>s$l@E7}ykdc*@i7ikw)1dHV851~GR7?paz>g7f2uen=i2HLey<W(MOGFhBVKZ?z
zC!v92b>l+Me;22Ebi^j89XnvHWgModvFZwFxteCyK_{Pfc`AnRn$l{Z&4W~^yrj<i
zbZPvY34cn1HNEZr#G?B$L;cx&ySyawubZFDh8Cw+5q`#Z*!i3lw$k-;m2qr{&7jDD
zbK6IFZpaD3=qD{Q>q~P04i4Zpid?a^vu2|4`97BKQtU=SAMAT@hYg!+U8x>1a5l(k
z(q}(LUBdg{{}lW_cLmPA9Z<LZy;4Q51GEE}VTlg!jl>(({PJO5ffHP+-XyQbV#q3g
zT;LT1k;*N|TQC}{og&qHOz}EtP5mBAdbb~5M<8m&Gg_RNN?QpvQB7oRPq!G@8=J>B
z8VMwEe~f5`<bqC`&}I)gx62j6hAYlk&}-of_yvvrX}3F<#sc8G(-}xizQ1SCVrCOD
zUq-dy@3XwP%i(-%ji`#zVNM?3IFjZoJ^?q(9T*><ZZ#&y7s!!5D0$b)+j^8DOLK2k
z7-7UCIxE%{md8{FY?+A#^>3lqY{!Q7CL**EZwt*40;t%UYAGeSk~8_lQ|*+?I{(Im
zM6<j8!4M8F4qAQV3JAey{wPn}N@0l94S7vRudwth9G4nKMg(MK?nSE-3AS-cDVe?=
zt53AlBLuYV&%`FdQW(8?R3NFF%r_L<z7`jJ?;6m{ocxF$dzJ2i4`hP!a*Md!ld3hx
z9mTND5OHVLP2l2GH0*|~e+7XWRCgEZF{C!wRpt^NUiD?L!_rB*wuSKSVhy|rm1l<j
zt_Yq8(eO8Rxn@nAr31Tp#D_ff?6_=`IA!44)k`$s8?->Iwe%GQCFR)G>y@jLRz)B3
zs#dSsj8h|<W+KsKkyqzO^zY|>R7nSjZdgw`zOOz|qmmt4pks!F_i1;7XUbJ0Cz(oD
zbOu<rp?18FA3R;@mu;nP9mfH2sj9z9H-U^)xJHp}G>VKkK|Bnk6Kha)c7r81k~>!B
zER=eoTxlpY+10w!Bfp91QnDKHMfQA@lk!iHeX7{aKbI{xi%wg_XiI~7R5UWI*rr`y
z^!fLsU!velyQi>BR}f)mg6~7VNUHx5Cl^>S*vrI`Z<0SPWEZ9&R|YV50^yR%glz0C
zj^_?F*>#p(F`47~xliY!W(4pzl_dS-b`I^$h8ZYJC?-nae8$odxYcTT=i}WQ7mjw#
zgHPv--!4z-8`0NNptNVs+m^UC1z+DSj!*7;(4E`?{$HGn|LQS+j9Ru$Q0Mt>bebJj
zeHFCu_jeXCcIaMY8*LR0P}}X-l=Xj{ULfjIKh&6cNM6Gwm|=tRs{v=kVXMiX@6%dx
zLr+l#>wYSMIwgGbo6<<=B7&|ga_(B{^Vooo`bkYEn<DVq+?T&qlNbC4uuCz~U4*y{
zm3UjJN<fRG?zo<_afc{|6<)2>k}vvDj;g377=`jAcR>i8tPZAUT~)gNk>lRbaFvK3
zWD?)<RZLoGdDF0z8AN}K_y{jTOAw-SrP5=#R2cv(7f8OwW`3w8uA)ScY3;|i4g&Bn
zt;p6DqkkRu7s$A_hH5F*9(9gDEryw6JD3JlCu+@#b|iNz43h1)emv02q}K{Te_!Ab
z&?Tt2aT;FZVAcNH_L&zNgbfqWmA+X5_6dyg$}U2b5p3l$Ug|93+_e2rV2q3t^C}m-
zcG`-lQFoTo9-o$UdT*Ta*Z6dbZiLBX&~=cSJOA`%deFpWN=%L9C-J_pi7U<;4-_uq
z!t*!d@wsftc)Y!ITvnFfSI_l{|IBAt5FmO{=RAu&7u`Q%+U(XV5*8_*H)rt@wrIW+
zd7^h1vL4Gy4QJ&zK~WSs=KW22$MJL`p1(Yi)D)0TOc**|33s(~218sBH22pF;+&qu
zhXLtQ2JhZdoDzb|qX!N*IscEI1Wc3^MzKXwsQivaxBI{Lk+*-_QOAxU*rIdL8VUZ{
ziq*gTr%Q;wYk7GzQ2ubU#YL~QWT*WwKiRmFT(L5+Q}ZVC&!;gU=HrAmhKjKFvSG{9
z8E^gB3-G#wt5V-B7^Fj&k)6BEa*vuKO|38LHXQ7STxviM8f;0YF%<tza{Oa{adz%0
zXhFt9(T9OjXv7!kc5$`m&ih=_`~_zlFMHbr>4LaDVe;q?lv3x8skl7JoX=$CQ<GC~
zca8v;@7H*I>Q5$dnY{d+OuLt=6)#YesFT(Z!;@3W#F*j9AdR6S@TTvC6kCu--xuKO
z%(~|<<I;;5rrr4%nR#CR+E6ggQH7wLoV#xB<=tCppD{MZS|x#-j_6GHupx&PZC*t@
zE;^XZ7$trv7yKJ>I@d0!?Ze^g<`QT~8HQx3YR;=bu2MQm^$aQ*E}bi|yq7K?87K)e
zIOR1`-F(r=sugj$^Ap%yeF<I`{AqYIEXlMUwWyidaoY)Vp4p}8(oH{@Q_d3Lwh88%
zoO%4d1&dl(3!1`nCo>iYZEoM{$$&hb1?k`=>>__`<5w)(jrLeMxqql7GaA1fgXZW_
zjvEU2!V#?mf)!f|A`)i0DSej9*3%r)yLVD@COY^44&(BZIhx9)@DVSl!MaX4p8KKq
z`fH{%V$bXHe%>x*f>;tBe-NyB%F~m+M<(j^NpfhL1uyMtySiU9cTqyg`L1$AnkFsq
z6g_0PLKn?PReWp!6$rgew@b@KNcI;?fa7)yDh+sN-vlFNb@|nwtz2Jv3>5G&e8d+0
zMCAq-v8Y+|q9y(P|LB1B`C^m}GWACf5Ja1!6V(gpsp~!%B}ww!q3$(WywZyIjim!W
z92<}wiR&_v5hXwOdws{{;_Mwm=RE(ty!y<CG1uwa(!SLL^D+*xj6*gC4b=E0;0$7s
zZM=8SB?RIqx)Gr#fq)=}qc^LMxcCuqx4uiE?6Qz+@LZ_S$b*JuBnQ*<0AHW;P#>3{
zO7313dtvL9v<v{Kodc)waBo(cYYO%{O%>Ss+|`jZOodR1h8n+I1VWOEFnPHv&PBLo
z|3{e!zMSRyk!UU&*;xx-4>t=TA8X}|NUNAA>}1A@a7(gcyTggq!|Xi6)&Ako=o5S2
zUXOQo-+_dk%60*Z#ar~Lti@-T#T;J`U16m?8+_%l+iLiq_V+N3ZgWJrYDjU*$!)(2
z<)_E6eG}h?MP0}LQpqIG<`=jx|K^w2m{etqeH&7+1yp3E+52@f>Ge&c|1`!taDLo<
z?Ry`q?!;wX3uJcBLmiO8CU-{@6GP)Jkq67jz-m(rI6PuXlqD)Mo#Yn{ChH^3JoTrG
zN{>9^G<QriSF{DVWzsZDz&pkA%I?P@!aK5tC&oK(a^yntCv`W0CUfRku>kZ2n9r(P
zVNJskC(vRmgm0vq83Mq~zJPen*TUaG+-9HenJyK%_2mtJdY=h$hfP<scWX&zw`xfO
zI`3`*zgeJu+wFIF0JNmSr@?z1^!#WOD-Ec(KX`x83boyIK%zPF)iZA<d=wfZC@vOH
zP)YKH<`A>namJ?W$iA~csmYBI6DmDi%%vn=XSWpGJ$OI5;gcSJwdPv?1Bd?m)mrlW
zJ$qNanNc{sn=d;)ub>`RBE8-p5O^f22~?p-NblrO5jkR>OJA>yzx33)aJQXOhx}y%
zAT(BNCoiCnwv#i}>79@jCv4(F$c?~cRDW&gndWeF8Ks&EB9o7GLV`kfQjS*W)b-~v
zA{NyE<yv>K`xZS&V+yB)1>beuI_y<R*cu36)+{@ajN)E)z<WrJg?0Fzk?9qTQ&vJB
zsYDe~%y>WiYqJKXzKy?}t9UZbjUEgSe|1tF`&$~7NYRvxz?25tbyRbAe27dHI>nK=
zhFZv@J7UY@v$A8IIK8!;uFzE#&-hkIK)?Oi_omncEP)ih?^`@WT&zmKMw?T?<#o4U
z0E8)}taVbxW+J)BL2Gb<yF2g&3QC{&DtFLYitG}AH9pZrEhki7?aakmA(2r*f4I2r
zPa!l|sG2O~%tN(9<no^7^EKr+L4nwD>l_xbFzAvr)iZ3VB&Fx9X_9~Bil+GY$LJS=
zu(5Qq>zQjyj)t^d=5&>>cV)U2<M*#?mHO+y=TlWDil*<dD2;T77dp6utWrCE9&UnZ
z0YEgi4+EIz={#a)zT<_XIc+5Hh^vJT%7RHk&6e$$^*}d|6=;^|J>e>0aOktkZ67U0
zzaM+qMdXXE-m{SRi^~!+B(O4a@kAOIV1Yw%G8S3NU<t+%S(Yy8oM(wY1th*V>ieQ{
z@`=%UqY^ok@;kyO+gKB^0@B;C*l44)wZBY-*1Qa;46fTrGvSyB$(NFN(RSU!j=aC&
zs@kBXkRq>@lPtu5@(S57qR9%?Y;QP_pGFKTOPJJ*b$G#`g0o5Lpng(K7L6wc3jJYE
zWA0}1YjK`yIlTiswHaa`F{!pLv7c&OHR$c#KB35I#*r8{HOF<>-pm@HUn(9)gb)Xs
z#151Dy*9Tqou2zX*1y)bliHDNv75X?7#8Q}CX<=cF^M<MW6^V=&H${P*5>lxPJYRL
z-p&K{r<)xG@b8_zZd9^98(9sDS-EqmV61Mjgy?!Lw?{N4=>gDN{UaJDAK70tZ2{p5
zlnkJmk6~^j0Q_QM{ws;j60EQ7!~I=!pN;eDmxlL9lSupqM)~O5%<^qqBZ}TU5>iqk
z^EYF-dmkjr4syM-(x8IJ>>X(~z%px4wL7VW#aO*`n;mmvcfSd%z?`X+%B-wS231>v
z(KrLy%EF1C)|2f<f;+90o#o!9gqvhKOM&YexR=)uMWl8B*SciJ42JaHa5dMrw>*5E
z35$#~9)VjnVylbnQv7s3OXUi`B}S%VL!(I9^<m<f7HU7rn+@)fAH%I1mxT~@UluE$
z%Y#k{tTj=@KoAK6xX+?_f9ftd*xn-pObVu8#&cpfeaX66G^SVio~PG@E>)G_4>bz0
z;Zt4&XL26;b3-Cs&%rH#+VWH+|IFIZt6OJVs}Xt1WQ|SF3I)v=1O12#J3fXC^gMC0
zmpv6?TBJm5Yhi(*-f+Zo2%wfnq>>3@0h^QXZa=F2ow?#!WWk+S@+?L|NjKAE8<$^|
zLkfCH^7vpF7x&a36OtmKKNt5TLcQHU-^bSKx7K|$sy1u`od2T$QkJv0L!HF<R@L79
zg-R%XtW+107!(2O?REI`v7mDVrJGoVI(bJzv<^w5yA*J9naz75-?QS~2E6G<0vF$j
zb*1q<T-ZT-9z`BKQG9$tW;EkddjT#e(Gup{GX<6qhed<B`$f{CI|J=ipnVA6!UVn3
zs>krb>?h=_O48fmctYHQl!rtQL>13-$W5(BbyiJ}MoRrs*1IF91XV7YsfBa{aVl2s
zx57pJzH2CNk3p4**K0Gw{VaQP^R_d?eA^{SWqYY-VH)tjNX6$lns%fag+BmciwTD;
z{eVqUm4Mgr3)3<R>4~grHgkOhHM1NIlmK)DJ;NPEBY=^bL5fof%EdN2GAc*tSba|5
zd%Da_mCezJ-OR#}B5eCDOYKr|h*?#syewp!p-?V6K2h15S)NpCOho4^p0%JDK5iEh
zx5E`Egfd;y$Z2-YWKQw6dL`Uh+<MoUsz4TZk2d}O)-W9BslKl|t5Td+%;k@4m=oj9
zYlU`n&GAKONjm8hQB6&u9vSYwAe|Ec#Y2VlT)f5p{g#gJL6KrV%q<fLq)G&p0$I6=
z&`X-<=Q0}A>8l`BJ0L5q7U<Mg;=S<6=fl)QHao^oqswb>=v+RZic}Zm1hu}UNe`mO
z=LptzGSdq5EKUf?`+YG^;{mRZ>MEv&WAW2kl}mE-NCVt17>JK7Wgxm{we_u2<8t}k
zhE3`2yO=e>c54;}iy6<Ce4RC(-ZM^hbeeFHo2vchSr_8f3%#-5s$A9;axGMyk=_x}
zdS|ei6d}~~N&ogT?;BhrCSANphndIyfE}^fF_+`@yE1q24n*DClN<lWb?2x}Y7ut)
z?VZb1vM0ZfyKFqhAxvz1QJDV_*y3{)UaiV#Un{u%ni=Xm_+gQ89Zq|NT_dT$w6kJ{
zJt)w@hbT2Vn?v9@I(L{F3B7%Uxv@!&t2%6=syV&njY-cEG~cM6L2;KY%?(%i^XB*Y
zkG1=%#tn*bRGBT>mEDa~O){1F{NO2EspIQ_)1BZPC>#dQK?im_j?!XC+>TvujUx`O
zrP>n6kf(ZfC;SY5DVK1NYw{0LRH(j&?q7GP^!vy~O?pd-yJBaRdj5PM2kMk9%57Lq
z8{48QQJxx3-?aAE)fi{#%_G-5f|VtP;dT|evh}ysUl}sn2)6>_4#d`5)A05UZPLX1
z02wc&a<SM$9NUJMnfI=D5vkw81hs?Xh6k=1P!?SAj{}WnuTlgQdSqf_<g$>b>YE*|
z00wzTjq#4xcwee33dNraE!<1rf#}rrLC>Ne*Hz+OPOl;ShcE&{W3yKE(nV^p6KB=`
zRMYM@Oo1fB_Fum@?w?s^yJuO8^%W-k<eq^ClIG$`sXl_EJ_4|dF(d(pS8$PrbNPu^
z(frquSWmv59a~ZGY52D<21LA^wr`W01Za|ICa=FOcYM)@?e(z<I#n9TVqLk~?m6VQ
zNX!VhGl3@i|7sEsaP64IOiB6HFg=5h^oFh3yBV(BRSfcEQcd7+yZ_Bn3O(lCS844Y
z$wN$wb<~#etoew!<#aaL?83L~nr_~Dl=B}45;CxR$v~UZ{i)+WqJ6<XlzmT#olcpR
zlx{yuc)polW%wIR&qhr?R=c}97E@Wfr3^7_GEGI}1e0J1>>^AFHd7i`>XSn}I49ca
z=gHReK08-Pi5@6RFtZAuUM|6SAmr9D@_T~cKyi9ccIdqOV(_+7_q`0!Q~}bIJ)p&&
zW{@X%7USX^sK)VIDH$%xZw&JAFK)XGZ*H5^hV7)=SIL`3%j>^td5j9#)xL!K>sfi&
z?cYH2ZOjQlvHR&piRSs_6lh@}Fy1D3bWyLXRg>DSOkm@f2&XQ#-T~XVg*Xa+Hzzm>
z(gA&X*`GJTi-N~5ukS-Mho#wx7!m1QlKQ3LjFDcuw^Q0VZ0*zsb4BrpU(-i{iRjxZ
z4wO`zbg%Kr_q%?k8tX1bhjnJ%E;{f`!2~Od6BuwtlWYrt-E_9gK&;Y|FbP3`P{}?M
z?*aFreO^3N5_5SLsoPEJFHiDa>%XbLV$8Z*TJ?HoymC7LVZcg7WTsE-x}QtvjkteE
z)emmI$xS`a4?+LBe*!!~@gDlt&DDD1dMDe?TRB)09>_d7wn*<dC0fye!heL7ulcWI
zKU_5sfRM$$_`k_#%DP<S;JYK<Wz9R+Kz}%B9SdMRH8)J83F6o@&<5L!DZk&~<vK8>
z>B%%mKS|5ch9vpQtJwXuLJjOM2Z}vQpox06_V}qN{w1Hf;cu>$RMe=8G?PF*FVnZ<
zlGv3(nC%)xH<bOcDiF+&Rw8cKg%~p9S}k`jR;7p>(B;wJMqlj{ebX1v|JYhFlX+7n
zbOM7NWBYsG`uS@hqD#v^z^BId-Y#pPr(%W@#^g(|t?qMl-|B&F%?8!`c&j(aaz0d{
zGRmQ$2!<3KgmgVe;%z+tR>_L5{q2jsae_f=KcLhRe{PNxD2qyj1QLQAg#pu3`yOas
zD@2DAgAQrzZLUC)(Avl_%KNLYno*aAk#w*|2=AMjyPsokxx--ms^V$9V1_pjI3=1Y
z#8SZ|$E_JsT`3M5xPrvD%0an8oi56j=9s90h3n8&sNajoTxSRe2822S-r=;hF%2DM
ze8e+Kre}(!T_RZ$(U4rL|I%ZzEV<ybD6n8mg>~EFNNeM@N8t6~7*%c>!R!d8lVXBl
zVJWn=l4EWf;4AzSakR{LSO?S*SHc4=Xh6ACdK~c8lySDg_f`pkFa*>HU#k^?Mk*9{
za)hMXOej0CYjHfP@rr~g=bzpZWd>K)z(RWS24$;J{WoGXRRr;k!7#8hjdn`O-U8}5
zo6@7Qu$vlPAwxkd&&~X!a5-rWMK9dA?DB9=jmEx5D3{D5oiT{fXLI@`D=Ux#grhuG
zD^+!nEA~NcC)v7i@}e#|#_(<SKfN^V?Nqw6<=Ko~bt(b*kFZ~V2`EvzX99Vt1LU)0
z8dV5?CtUs2eCO-#s@IayU9^h?96{`>t9O%4YG-k=tCW>)%JiM~S<pu5216HzDrY@I
zVIi274Ef2+Z_U*1@GUdb)XYEx;;N&wAVt`Pt6?)m36=L{+gB#2qtBs_aLxItL#?<%
zLPwra3|bt}mb|NFOT}gLVOP^=p*dtKlY;TQ?B+RXrf7~l^vn|BU&aE|0_e*lA#k|&
zqAG$CnSOnh0_+B4{&Fe%G97!&p{9rYRm;{cpBuaAI$=V$DqOlnG^T}HSFeoomI<K6
zutnc6(M>cnO!i>TNad-?#I#}>v((J!f2=gHwtwVc_EHLQC){JFeq7&ps>W$Ag5{AA
z5%-n%)m`Uk9s6B0JIB6kaJrH3z;!O?qLioid$n=1i4lrqDOhOBjy_{)&~}-)5yfq~
zDifYQW_zyMSN{T4L=Pc#ME$CI0va)*OlfjUkgHml<^y$ie%U+w2tv?6msX5G3P$2|
z#}ZAU`GSWiS?V@OD{M@e!KF@7;%AG)l_V?oK94RRx+$P-W{4>of3`BKkt$%=Cw)rH
zdIYbw;3}9c=gIK<(6$4kYGoOTejN0P^d6Erc!4g3XYGD<S47&V@y@wU1I^{;Q@tOs
zuJbV$*AKkl+{VeBXHsr;S(y#ge+$>qwO^ERSQsi+-!=}GN!)X>w*ji{P1H>wZ{UH6
zX{an&UKRFSLBQ>AVwy2F&Q`XK_T!efPgBi&dArxpzkCbg)<c?_6Vt6~$?FJL+$1Nu
zAEno6m?L-)BqrhzOB(Iw7`nSpT`vgS^7OBnMSo*7Be5Xpl7fxQ#YE&!W8|7v71C(%
zI11-p>}*sMQ3d!ynYcWix<iFs8?LSg;__?O8*g+9R99;zJa*kAUgc{pNRO3EFr9Ji
zp~rpa9SgBeMGKVz@el82`r~0}o;V7)f-_ANEgy|u24IATY7Q;~d#NHJP25yJ*jkc>
z_|npYGkjM4H<CR+;CT6#0g4-M3=V8t+spfw04{SpDIC|C5%0CDG+oK9N?N{+9jX@P
zJZuEs+m2GH%21PRPkEWYkgoRZei3u)Lf8tGj=<#^xi=39mNkq-KJ|U!6^I@kqn44Y
zB$La_D?=r)S7-$ZLymm-p76MIrIL94Z>_VCfl1lDfoX0C$VNv<hS_7hgp^D;*9i$K
zM<`WeT+u~dZ74KV6ArZtsBW<6r(?(MbAiYZ17@2)b~Q;4p=3%U8vA#`vdJ)jM}#uL
zM-Xe2fbq@WXZiyT=6cl>A=MKO()qiafz$U5Uzd^r!`sw6gjbZ`=$i^_!5*E*mpvGd
zg5%DuZ3wI<OTO<g!7y^84S?CO)|aEm5S|*=FdD}VWx@aouYLT>xm4a&5e0xsqmgD*
zYGLt_w3+$h0%!yaVq;0um3t$XEA$yK5Pw|pv!C9zSh@wc?lNT5)5EG6KfIzyluy3k
zUv3{ba}*4FG$(pmR^n<ZEP!kW3WQJZqDlkG?NtIUqUwGXE4bXc@V>Cj0s#eCNQ4~D
zqf!&>E;YJNTW#siz8Z?A8ZLGxgC714l~`@O#>4Wd5=#=oawdMM<77yT(2db7k@4Wp
zE%_OM$dm`us47x}?QgqM7)?HZM=$E)8)}u<x^Y$6HrJ5(2V<fSMCLXhsWZC@-HG}e
zB+IkGfME{s{h!15{W%6dL4<5spr?7HnJmn1DJznX^?@}|T=)Bzj80+7Ve4=Z+8c#z
z{U6(Q6W!*0Z!mIs+I>-P|8J5me;Vs-QgJLa01hjt`<yJGW|Cuf;MFmh@HbqDkUlhN
zO#GmsU3hWy4AG)FJbCP_fx{c<epWyFZf)|EF)Y~>-GZf4WXYs8)21~d#k7r)eGs%T
zoTM@mjdY}?b}Wv#jHbE*Kz`zf{tRkAt>Qc*%XqotdNs+gjp4Eba2n*ly|eRwCt$ys
zh~nX>+L&#zD&EyQzPT7a-T4FSO1;b<&IKtjfrbAlppEY|+K)W=f(08x4LSchxPcZ;
z&=#FTV)*|ywEy4&Mhf@OGx`^f5+SB<?;47n4lG~U<~vN%(2=v3Z=f<|s<ee`h-%TY
zwYzuFoO!dh!;i3q!^fLvZ}9);5Oi{<jq6tlnd4Z#MGm5u$yY0vFXC4zI<aO>VpmLE
zI=62U*W>|>NHHU*R5SE{tCw-<<`9FC;fk<jlhS3H@cy3_JpKHG;Vtx~i(=e~v#=l+
z>J1!6_8;hau))x%lmF$sfp7&pD(kD96H)c$S<Rp@m&`Qxjkvq^yeBs>xIVbZT_~A3
zq=}nfv}2Lwr=d1$v7i?b+##9FLkXQFg^h;+o~eoUixID_yyG_rQYZ@APz*{54#pA0
zKa>pR#RSC`{ME;>CYUt;d;KKSEM)0R4s_P8I^L$4pB(rX9NTKK(#8fN{R*CJBK6fj
zg$x42U%7H@19J?CBoA$x)b)Wp621#55p_mM7E4!7(moooafA6ECF-Zt^1qol{;FtA
zId&y37DAx8Lw|yrU@Kx3nm!Z4dtT`gHi}vb$}j&kSBP&eGZ2SUb=dNsnEsur&WEKT
z)j_QnLZ)5KOXZBcM8xs9Gw{W^CwZ=9$>@IzmDQpcEd(2W&^0pw4EE)QCw7R^@bLL;
z`;jKBD-xYQQ2yd6a!O3cQ1R6Y?8$v6opn%hlyAYLdyZByBqP$wt`$?@3G?GqjI-WI
zFr(&N%W-LTiVx^1Ho9CEPW9Z5AOL?Gi|-iXg08;`9bHFOX<@)jh53F(ufGo7X8;-H
z0l)YvMmC@|H(*Hq)5~Lc+wpVu7B-~+C=Jcxyn+Svys26)m~PyI-+W15v=_={`XO5l
zHTRU5<6Q%(;GtU{_)M$_Z@txr^r;MoqLKj!*lxsJ-o*}P>e`FX{w*=TWA)e>mkquq
zR>aObeoL>tvlW0b{B)@!*Q#MRNDVE1iwYTY0jEF7nOpwz-CzpVB)}t%DHnxnklM&j
z{5nE-m_I0{MuyF@X{w^ZXId;$ZzxX3PofMm&=br2L2ZV2EG&HUL-^jmzMYczD$O`Z
z?tN3awcrjqUCwXxK5<+SI?>|?PR!D$t||ghxxLKVr-Z6Dw@24}CgX^Pq}kM_7!5qg
z%Z*9SS}A#;Gxrf6Yzc??{fJaAfRlxa)hoqd(HC=<gf=AkIIcoG=V=;RbmAv%u6WD>
z7O1`LmWceuZ0Io0(jzpSr>;rS>W?x`vcp>fVVJl1r4thU;2&FV>(dCwX&XK8S-%w<
z9R&H4wYnRLSj%_btvh@R$#$Oo0`rfNf}|CtyFYe$!fDRQ{TCn#B2oP}ys`rt2n8pY
zPr*hy=n`c2!FY)-Q6avwsaI|ld#8}B@=2^@?xy>AgA!eO(n7ie<cU_hF>tiyp6B?7
zzEjdImQZsbH{m6+$_l~!C_p?uVA-?$aetr2!i(>2oJ8*9svS$rL?LjaYe}8@!`*TQ
zq#ig1wLj@;6j;-piPNt2DLzE!!*!-C3&;{_h7O&)YC#HO4{G<&N_9zob7B%}yt1NC
zn%`Mm`%Yl-g?yhDxiV;rXh^>0f5my?!*A)t)TMO`3`(N+D9}1!YxNnLK)>@{8hpI5
zD`Qq^)g>Q(N6@}yx=%cj9sNvX@vp)=nn6ncK;7JEiZgd^P2j%)6VR%zgBZHuTvAw6
z>wG|E*}P>alW<G|H7&0;9<g5Vr^gDmfE3Fg=7@aKIbuF43dwp@=y(kTDgBZ%Pqv%J
zmL}QvQPYNSvg8Q6{wQM*S<!A(DC;E9*&QFnW#(IAz$GzO`@LGoLA)<oS})@EqEeuq
zHqi%hX#I^UuM%N+Zw)@%fb;zEo^NS^-IC6L_QtTum|kb8?t1BO3u?WggTD=H*Hg!K
zOq|+1q2IrV<8&Uq3Na{oYS&^LX~?5OYPM`F;iC8YydFNjdeS0*-;cb97uH$j_0M=e
zEk7HGdfHtb3r<(Z;ab(6S!=K{ip6oEApOMW&w1ZM1%-^u(Gpd0aaZxmzoAH~OoFkz
z2dEC;Udcn&{+5uSRz>tK8B}_gAdu^xWy(?U(@8_IgZ{Dg_YfH_<f1UEcKW6meAmTI
zi9p`$NeZtJm3{28py!+Q{MaURhvQy(M+qsPF&td}a#6u9WmM*ELcr=sIzVHt(v>i|
zcEU*ZONGosHYDv&Sy(wA_rub(!|ZW;oHgD9RV~OgubHzEy>?~?K2bePVezxt2%>;P
z-?ra7<4n?x&FYaE?cEGI)-)$tD$5+muBu}U?sPHFKe+hV5?aCTUXV`J=9AHC=o-*Q
zXUuT@<CqAmX`>-0>M!)m+!o+T(oHaeB!5lJUF^EcXIqSUNsvI7$4;|X#{w!e5pUJ_
zak1J+C*mxrK*L>l)}}XDmB5!T;U_ev;jCB9B2`6t)Wa`7=7pam>YPepUHy>E1}-i|
zx=cTq2|P}#Ey5pcy4D8*2oic4dykynV%zxoUkQ#ZS%}$Wd?mL`_nI;G*Tm<wzvA`|
zVZ|gWr+_}WUr`!wOp2bL2X}3(Q67=0G29#e8iZZ`e$1ZFrSZ8}FJ@~Cmgl)-;8=Cs
zPo7;udw#i)U|?W~S|Z{CHX9(0_uJ-`M!Gnmdta5omY5^|_1DPcP?V5J?X0>EF^KJp
z_vh{DE5H7`9RZOzA<X<ghmb2*Gk77~W+-6lgX@$0c2!%CSrh<fAAni)*&m*4sDGpH
zTMHjXS^MvkoIn2)hhG$e-qd0EGWwK)oSdA#C|OmOPD1=21}Fa^3&>ku0+?DJ`Ocwh
zS7jB5f%YHF1(sTSKSuTtezZh?ey859@nDV}*wx8We3^(^>c;D^k{15Qf0gLJdBw#%
zK4AOfnWngIHTLC=dT)#w{3rZBSpE+*HU0+;Htp>`-fzW8*#W`aU5e&a;9&m+kS-Mo

literal 0
HcmV?d00001

diff --git a/oxAuth/Server/src/main/webapp/img/IcoArrow.svg b/oxAuth/Server/src/main/webapp/img/IcoArrow.svg
new file mode 100644
index 00000000..c78b869f
--- /dev/null
+++ b/oxAuth/Server/src/main/webapp/img/IcoArrow.svg
@@ -0,0 +1,4 @@
+<?xml version="1.0" encoding="UTF-8"?>
+<svg fill="none" viewBox="0 0 38 38" xmlns="http://www.w3.org/2000/svg">
+<path d="m21.038 1.7045c-0.9413-0.94137-2.4676-0.94137-3.409 0-0.9408 0.94078-0.9414 2.4659-0.0015 3.4075l11.784 11.805h-26.994c-1.3347 0-2.4167 1.0819-2.4167 2.4166s1.082 2.4167 2.4167 2.4167h26.994l-11.784 11.805c-0.9399 0.9416-0.9393 2.4667 0.0015 3.4075 0.9414 0.9413 2.4677 0.9413 3.409 0l14.8-14.8c1.5621-1.5621 1.5621-4.0948 0-5.6569l-14.8-14.8z" fill="#fff"/>
+</svg>
diff --git a/oxAuth/Server/src/main/webapp/img/IcoArrowRed.svg b/oxAuth/Server/src/main/webapp/img/IcoArrowRed.svg
new file mode 100644
index 00000000..fa6f6331
--- /dev/null
+++ b/oxAuth/Server/src/main/webapp/img/IcoArrowRed.svg
@@ -0,0 +1,4 @@
+<?xml version="1.0" encoding="UTF-8"?>
+<svg fill="none" viewBox="0 0 38 38" xmlns="http://www.w3.org/2000/svg">
+<path d="m21.038 1.7045c-0.9413-0.94137-2.4676-0.94137-3.409 0-0.9408 0.94078-0.9414 2.4659-0.0015 3.4075l11.784 11.805h-26.994c-1.3347 0-2.4167 1.0819-2.4167 2.4166s1.082 2.4167 2.4167 2.4167h26.994l-11.784 11.805c-0.9399 0.9416-0.9393 2.4667 0.0015 3.4075 0.9414 0.9413 2.4677 0.9413 3.409 0l14.8-14.8c1.5621-1.5621 1.5621-4.0948 0-5.6569l-14.8-14.8z" fill="#ff0000"/>
+</svg>
diff --git a/oxAuth/Server/src/main/webapp/img/IcoCopy.png b/oxAuth/Server/src/main/webapp/img/IcoCopy.png
new file mode 100644
index 0000000000000000000000000000000000000000..275fa8bd21684f0f1f079100a358309e9b0c967d
GIT binary patch
literal 381
zcmV-@0fPRCP)<h;3K|Lk000e1NJLTq000#L000>X1^@s6-qmI800009a7bBm000XU
z000XU0RWnu7ytkO0drDELIAGL9O(c600d`2O+f$vv5yP<VFdsH0TM|>K~#7F?UgZ3
z!$1&4|2Qi_Nkv@x2IL6l1aJiR7~~!zEF6gvBzypJgK&cQ2swi3EUI)+to<2Kgivgx
zY~%(dui4e??w^%r^hcohmv<52oe(&J3*^gNKAx?I&G2H9kbKY^5V)cDUv+7VLU^{?
z7a~%^freak#m!Gv@ut<&^)q_F{B__b_W`U8;J~4&7v*ER>=Yfw*__sfaOB+%;9pH5
zZ~fpn&dzlSu_YwZ)=xFdNLx!QD@B#xoMJ=#I1BaNe5KJpd(pk<e-Jg_o~V}Rv00)g
zOqGu#^vtdosudBIpy(Ln=*z6JA-^YaOY~#V%noXEt8N=$3$qq-+Buc|Bn?n|AzY!9
b+D*kLe*0C9P+>tJ00000NkvXXu0mjfSs$Ob

literal 0
HcmV?d00001

diff --git a/oxAuth/Server/src/main/webapp/img/IcoMic.svg b/oxAuth/Server/src/main/webapp/img/IcoMic.svg
new file mode 100644
index 00000000..535af4a9
--- /dev/null
+++ b/oxAuth/Server/src/main/webapp/img/IcoMic.svg
@@ -0,0 +1,4 @@
+<?xml version="1.0" encoding="UTF-8"?>
+<svg fill="none" viewBox="0 0 24 29" xmlns="http://www.w3.org/2000/svg">
+<path d="m12 18.316c2.8457 0 5.1257-2.0453 5.1257-4.579l0.0172-9.1578c0-2.5337-2.2972-4.579-5.1429-4.579-2.8457 0-5.1429 2.0453-5.1429 4.579v9.1578c0 2.5337 2.2972 4.579 5.1429 4.579zm-2.0571-13.889c0-1.0074 0.92574-1.8316 2.0571-1.8316s2.0571 0.82421 2.0571 1.8316l-0.0171 9.4632c0 1.0073-0.9086 1.8316-2.04 1.8316s-2.0571-0.8243-2.0571-1.8316v-9.4632zm11.143 9.3105c0 4.579-4.3543 7.7843-9.0857 7.7843-4.7314 0-9.0857-3.2053-9.0857-7.7843h-2.9143c0 5.2048 4.6629 9.509 10.286 10.257v5.0063h3.4286v-5.0063c5.6228-0.7326 10.286-5.0369 10.286-10.257h-2.9143z" fill="#3CD2F9"/>
+</svg>
diff --git a/oxAuth/Server/src/main/webapp/img/IcoPlay.svg b/oxAuth/Server/src/main/webapp/img/IcoPlay.svg
new file mode 100644
index 00000000..e7f9f8ab
--- /dev/null
+++ b/oxAuth/Server/src/main/webapp/img/IcoPlay.svg
@@ -0,0 +1,4 @@
+<?xml version="1.0" encoding="UTF-8"?>
+<svg fill="none" viewBox="0 0 15 17" xmlns="http://www.w3.org/2000/svg">
+<path d="m0.74651 0.42302c-0.33332-0.18888-0.74651 0.051898-0.74651 0.43501v15.284c0 0.3831 0.41319 0.6239 0.74651 0.435l13.486-7.642c0.338-0.19153 0.338-0.67849 0-0.87002l-13.486-7.642z" fill="#3CD2F9"/>
+</svg>
\ No newline at end of file
diff --git a/oxAuth/Server/src/main/webapp/img/IcoRetry.svg b/oxAuth/Server/src/main/webapp/img/IcoRetry.svg
new file mode 100644
index 00000000..70dcfd2f
--- /dev/null
+++ b/oxAuth/Server/src/main/webapp/img/IcoRetry.svg
@@ -0,0 +1,4 @@
+<?xml version="1.0" encoding="UTF-8"?>
+<svg fill="none" viewBox="0 0 18 16" xmlns="http://www.w3.org/2000/svg">
+<path d="m12.053 7.783c0-0.93288-0.736-1.6961-1.6356-1.6961-0.89955 0-1.6356 0.76326-1.6356 1.6961s0.736 1.6962 1.6356 1.6962c0.8996 0 1.6356-0.76327 1.6356-1.6962zm-1.6356-7.6326c-4.0644 0-7.36 3.4177-7.36 7.6326h-2.4534l3.2711 3.3923 3.2711-3.3923h-2.4534c0-3.282 2.5597-5.9365 5.7245-5.9365 3.1648 0 5.7245 2.6545 5.7245 5.9365 0 3.2821-2.5597 5.9366-5.7245 5.9366-1.2348 0-2.3797-0.4156-3.3202-1.1025l-1.1612 1.2212c1.243 0.9837 2.7968 1.5774 4.4814 1.5774 4.0644 0 7.3601-3.4177 7.3601-7.6327 0-4.2149-3.2957-7.6326-7.3601-7.6326z" fill="#F38181"/>
+</svg>
diff --git a/oxAuth/Server/src/main/webapp/img/IcoStop.svg b/oxAuth/Server/src/main/webapp/img/IcoStop.svg
new file mode 100644
index 00000000..bd9a1ac7
--- /dev/null
+++ b/oxAuth/Server/src/main/webapp/img/IcoStop.svg
@@ -0,0 +1,4 @@
+<?xml version="1.0" encoding="UTF-8"?>
+<svg fill="none" viewBox="0 0 12 12" xmlns="http://www.w3.org/2000/svg">
+<path d="m0-9.7656e-4h12v12h-12v-12z" fill="#3CD2F9"/>
+</svg>
diff --git a/oxAuth/Server/src/main/webapp/img/Logo_Whispeak_color.svg b/oxAuth/Server/src/main/webapp/img/Logo_Whispeak_color.svg
new file mode 100644
index 00000000..c440124a
--- /dev/null
+++ b/oxAuth/Server/src/main/webapp/img/Logo_Whispeak_color.svg
@@ -0,0 +1 @@
+<svg id="Calque_1" data-name="Calque 1" xmlns="http://www.w3.org/2000/svg" xmlns:xlink="http://www.w3.org/1999/xlink" viewBox="0 0 1200 300"><defs><style>.cls-1{fill:none;}.cls-2{clip-path:url(#clip-path);}.cls-3{fill:url(#Nouvelle_nuance_de_dégradé_3);}.cls-4{clip-path:url(#clip-path-2);}.cls-5{fill:url(#Nouvelle_nuance_de_dégradé_3-2);}.cls-6{fill:#676771;}.cls-7{clip-path:url(#clip-path-3);}.cls-8{fill:url(#linear-gradient);}</style><clipPath id="clip-path"><path class="cls-1" d="M155,64.3V246.1a8.22,8.22,0,1,1-16.44,0V64.3a8.22,8.22,0,1,1,16.44,0ZM122.72,86.22a8.25,8.25,0,0,0-8.22,8.22V216a8.22,8.22,0,0,0,16.44,0V94.44A8.25,8.25,0,0,0,122.72,86.22ZM194.91,78a8.25,8.25,0,0,0-8.22,8.22v138a8.23,8.23,0,0,0,16.45,0v-138A8.25,8.25,0,0,0,194.91,78ZM98.66,117.64a8.25,8.25,0,0,0-8.22,8.22v58.69a8.22,8.22,0,1,0,16.44,0V125.86A8.25,8.25,0,0,0,98.66,117.64ZM219,115.7a8.25,8.25,0,0,0-8.22,8.22v62.56a8.22,8.22,0,0,0,16.44,0V123.92A8.25,8.25,0,0,0,219,115.7ZM170.85,110a8.25,8.25,0,0,0-8.22,8.23v74a8.22,8.22,0,0,0,16.44,0v-74A8.25,8.25,0,0,0,170.85,110ZM74.59,134.81A8.25,8.25,0,0,0,66.37,143v24.35a8.22,8.22,0,1,0,16.44,0V143A8.25,8.25,0,0,0,74.59,134.81Zm168.45.76a8.25,8.25,0,0,0-8.22,8.22v22.83a8.22,8.22,0,1,0,16.44,0V143.79A8.24,8.24,0,0,0,243,135.57Z"/></clipPath><linearGradient id="Nouvelle_nuance_de_dégradé_3" x1="82.88" y1="77.17" x2="238.96" y2="233.25" gradientUnits="userSpaceOnUse"><stop offset="0" stop-color="#3eb8ba"/><stop offset="0.5" stop-color="#3c86c7"/><stop offset="1" stop-color="#524d9a"/></linearGradient><clipPath id="clip-path-2"><path class="cls-1" d="M158.82,271.38a121,121,0,1,1,121-121A121.14,121.14,0,0,1,158.82,271.38Zm0-240.07A119.07,119.07,0,1,0,277.88,150.38,119.21,119.21,0,0,0,158.82,31.31Z"/></clipPath><linearGradient id="Nouvelle_nuance_de_dégradé_3-2" x1="290.93" y1="150.38" x2="26.7" y2="150.38" gradientTransform="translate(304.97 -12.33) rotate(88.5)" xlink:href="#Nouvelle_nuance_de_dégradé_3"/><clipPath id="clip-path-3"><path class="cls-1" d="M479.25,67.45l-52.83,114h-12.5L395.67,139l-18.34,42.5H364.92L312,67.45h17.25l41.83,93.33,16.17-38L362,67.45h16.17l17.5,40.42,17.41-40.42h16.25L404,122.78l16.25,37.92,41.84-93.25Zm103.84,0v114h-16V128.7h-56v52.75h-16v-114h16V114h56V67.45Zm48.5,0v114h-16v-114Zm34.58,91c8.42,5,18.25,9.5,30.92,9.5,17.83,0,27.17-6.5,27.17-17.84,0-12.16-16-17.58-26.34-21.33-14.08-5.66-33.83-10.5-33.83-32.17,0-17.83,16.08-30.74,40.5-30.74,15.58,0,25.17,4.41,32.08,8.83l-6.5,13.83a44.34,44.34,0,0,0-25.58-7.66c-12.25,0-24,4.5-24,15.74,0,10.34,12,12.84,21.33,16.59,17.84,6.59,38.84,12.5,38.84,36.91,0,20.67-16.5,32.92-43.67,32.92-17.5,0-29-5.33-36.67-10.33ZM841.59,102.2c0,25.58-14.33,35.66-42.16,35.66H782.59v43.59h-16v-114h33.76C830.93,67.45,841.59,83.45,841.59,102.2Zm-16.5,0C825.09,89,817,82,800.35,82H782.59v41.58h18.17C819.6,123.61,825.09,115.12,825.09,102.2Zm113.17,64.25v15h-72.5v-114H937V82H881.76V114h48.42V128.2H881.76v38.25Zm121.59,15h-16.58l-12.67-32.08H980.1l-12.67,32.08H950.85L997.69,66.61H1013ZM1025,135.12l-19.67-49.67L985.6,135.12Zm117.24,46.33-40.41-54-8.84,9.83v44.17h-16v-114h16v49.67l44.83-49.67h20.76l-46.25,49.75,49.83,64.25Z"/></clipPath><linearGradient id="linear-gradient" x1="312" y1="124.45" x2="1162.18" y2="124.45" xlink:href="#Nouvelle_nuance_de_dégradé_3"/></defs><g class="cls-2"><path class="cls-3" d="M271.28,155.21A110.36,110.36,0,1,1,160.92,44.84,110.36,110.36,0,0,1,271.28,155.21Z"/></g><g class="cls-4"><circle class="cls-5" cx="158.82" cy="150.38" r="132.12" transform="translate(4.32 305.19) rotate(-88.5)"/></g><path class="cls-6" d="M670.74,244.16l-10.32-26h2.67L672,241.3l8.9-23.19h2.66l-10.32,26Z"/><path class="cls-6" d="M709.77,231.13c0,8-5,13.41-12.25,13.41s-12.22-5.39-12.22-13.41,5-13.39,12.22-13.39S709.77,223.11,709.77,231.13Zm-2.55,0c0-5.14-2.57-11.1-9.7-11.1s-9.67,6-9.67,11.1,2.67,11.12,9.67,11.12S707.22,236.28,707.22,231.13Z"/><path class="cls-6" d="M718.23,218.11v26h-2.46v-26Z"/><path class="cls-6" d="M743.33,220.13,741.79,222a9,9,0,0,0-5.68-1.92c-6.13,0-9.43,5.75-9.43,11.2a12.29,12.29,0,0,0,2.33,7.63,8.88,8.88,0,0,0,7.39,3.39,9.41,9.41,0,0,0,6.72-2.58l1.68,1.73a11.69,11.69,0,0,1-8.4,3.14c-7.37,0-12.27-5.35-12.27-13.29,0-7.7,5.11-13.51,12-13.51A11.44,11.44,0,0,1,743.33,220.13Z"/><path class="cls-6" d="M764.78,241.88v2.28H749.46v-26h15v2.28H751.9v8.86h11.22v2.25H751.9v10.38Z"/><path class="cls-6" d="M802.05,237.17c0,3.49-1.57,7-9.2,7h-9.58v-26h7.86c4.88,0,8.82,1.92,8.82,6.64a6.44,6.44,0,0,1-3.18,5.22C800.85,231.57,802.05,234.28,802.05,237.17Zm-16.36-7.87h6.57c2.84,0,5.24-1.42,5.24-4.55,0-2.95-2.5-4.38-6.1-4.38h-5.71Zm13.92,7.85c0-3.81-2.3-5.65-7.75-5.65h-6.17v10.39h7.2C796.71,241.89,799.61,241,799.61,237.15Z"/><path class="cls-6" d="M810.51,218.11v26h-2.46v-26Z"/><path class="cls-6" d="M841,231.13c0,8-5,13.41-12.25,13.41s-12.23-5.39-12.23-13.41,5-13.39,12.23-13.39S841,223.11,841,231.13Zm-2.56,0c0-5.14-2.56-11.1-9.69-11.1s-9.67,6-9.67,11.1,2.66,11.12,9.67,11.12S838.42,236.28,838.42,231.13Z"/><path class="cls-6" d="M874.23,244.16h-2.51l-3.43-22.67-7.77,22.67h-2.33l-7.77-22.67L847,244.16h-2.51l4.18-26h2.91L859.36,241l7.77-22.85H870Z"/><path class="cls-6" d="M894.38,241.88v2.28H879.07v-26h15v2.28H881.51v8.86h11.22v2.25H881.51v10.38Z"/><path class="cls-6" d="M896.73,218.11h19.14v2.28h-8.34v23.77h-2.46V220.39h-8.34Z"/><path class="cls-6" d="M934.32,244.16l-7.58-10.91h-4.82v10.91h-2.44v-26h7.2c7.54,0,9.7,3.73,9.7,7.23,0,4.48-2.5,7.1-7,7.74l7.82,11.08ZM921.92,231h5.14c4.75,0,6.86-1.83,6.86-5.66,0-2.49-1.6-5-7.08-5h-4.92Z"/><path class="cls-6" d="M945.31,218.11v26h-2.46v-26Z"/><path class="cls-6" d="M970.41,220.13,968.87,222a9,9,0,0,0-5.68-1.92c-6.13,0-9.42,5.75-9.42,11.2a12.29,12.29,0,0,0,2.32,7.63,8.88,8.88,0,0,0,7.39,3.39,9.41,9.41,0,0,0,6.72-2.58l1.68,1.73a11.67,11.67,0,0,1-8.4,3.14c-7.37,0-12.27-5.35-12.27-13.29,0-7.7,5.1-13.51,12-13.51A11.41,11.41,0,0,1,970.41,220.13Z"/><path class="cls-6" d="M1006.31,237.31c0,4.43-3.56,7.23-9.73,7.23a14.67,14.67,0,0,1-7.93-2.09l.88-2.21a14.24,14.24,0,0,0,7.05,2c4.51,0,7.29-1.78,7.29-4.93,0-3.38-3.9-5-6.8-5.89-3.5-1.13-7.62-2.36-7.62-6.94,0-4,3.62-6.74,8.94-6.74a13,13,0,0,1,6.85,1.72l-1,2.13a11.35,11.35,0,0,0-5.85-1.56c-3.62,0-6.5,1.73-6.5,4.42s2.78,3.73,5.66,4.62C1001.32,230.25,1006.31,232.22,1006.31,237.31Z"/><path class="cls-6" d="M1035.46,231.13c0,8-5,13.41-12.25,13.41S1011,239.15,1011,231.13s5-13.39,12.23-13.39S1035.46,223.11,1035.46,231.13Zm-2.56,0c0-5.14-2.57-11.1-9.69-11.1s-9.68,6-9.68,11.1,2.67,11.12,9.68,11.12S1032.9,236.28,1032.9,231.13Z"/><path class="cls-6" d="M1055.09,241.88v2.28h-14v-26h2.44v23.77Z"/><path class="cls-6" d="M1067.37,242.25c5.32,0,7.13-4.28,7.13-8.17v-16h2.44v15.75c0,2.49-.79,10.68-9.57,10.68s-9.58-8.19-9.58-10.68V218.11h2.44v16C1060.23,238,1062,242.25,1067.37,242.25Z"/><path class="cls-6" d="M1080.46,218.11h19.14v2.28h-8.35v23.77h-2.45V220.39h-8.34Z"/><path class="cls-6" d="M1106.06,218.11v26h-2.46v-26Z"/><path class="cls-6" d="M1136.53,231.13c0,8-5,13.41-12.25,13.41s-12.23-5.39-12.23-13.41,5-13.39,12.23-13.39S1136.53,223.11,1136.53,231.13Zm-2.55,0c0-5.14-2.57-11.1-9.7-11.1s-9.67,6-9.67,11.1,2.67,11.12,9.67,11.12S1134,236.28,1134,231.13Z"/><path class="cls-6" d="M1159.75,240.06V218.11h2.43v26h-2.38l-15.22-22v22h-2.43v-26h2.41Z"/><g class="cls-7"><rect class="cls-8" x="312" y="44.23" width="850.18" height="160.44"/></g></svg>
\ No newline at end of file
diff --git a/oxAuth/Server/src/main/webapp/img/android.png b/oxAuth/Server/src/main/webapp/img/android.png
new file mode 100644
index 0000000000000000000000000000000000000000..628e3dc7228f2e71ea052010a26f2b3b4bf35d15
GIT binary patch
literal 3478
zcmV;H4QcX;P)<h;3K|Lk000e1NJLTq003+N001Ef1^@s6JfKd000001b5ch_0Itp)
z=>Px#1ZP1_K>z@;j|==^1poj532;bRa{vGmbN~PnbOGLGA9w%&4J%1RK~!i%?OO?0
zmE{s15D-Mb1uexDO-)nWcf(tz;%;h&sTf|D7F)2y6idyl+hZ7L*dwN9D&m%8SF)^I
zqM_-dxeJ(}DY+050<zDYci=xA@EF*|#2fGP%yZ89mVf!?n|WvE|Bn?5s1W)2`IMcV
zO?i2FWMySl*jj<R2^$+5va_=*{6%C^SVBSqMMOkUbaXVOr>B#(wY3hYz}<miNB7@<
zKlSa~m-_VSL)EHP(+-Z0kLQUKC$fWs14dOyITKMDFJ8QuGcq!ma&vPzC@6?+ZEY<M
zu8{H}En2kTJ$v@BbxuwW{qVyNgwG0;Uz|UGo{k?sPD)gUzr5S1RH+g<Iyx5qDgfFb
z;8Y_JGXHMC;9N_6E-o&G-|lU|sPrzeAh&|GjRVyj(}i4p+L2x5%7v|E4^K}|+OS~*
zZQQt#rc9Ya&d$y>W5x^$4-cmW3l>oS{{3miiWT(9C!bJANQja#qNk^yeww_zytEB{
z%a<>wh7B9)G3(c_ufI2K+C=ZZ`!3nr+f$DoJ!safS=#^TqmR<~@#FP-c?UM4ZrsA(
zw}iDvKgwRbmaLW!qv{c($)#T#vMJ+`zkU1m^x=me(idNRp~|^(<qFlUTbI1Oy|pbY
zER2pEIYK}E^ph^~H{X0iDJdybrAig@_4Os;Upjd3p!R+H?YDIG>Q(JqxpF0CW@gfx
zZ@x)xZf-Pl=1e{ATW`HZojZ4?)~#EsvhO97sIXkuDs(-iDJ91YrPMyIlpisOoL7t^
z$F}uKo?J>`mw)-?m-Nv`A5on;bu@gv@4oveF)>jsqFuXobn)Uvij0g@#o_bDjT<@_
zDafTum*}gnzM^Btj?w3zf39u4diA2LtSoxrg%>C)DvG90pH7`Rb)qIsny4cE{r%PA
zzzz2jN?!BaO!1kyl$Yv3S%*haT5d9>`Zge|?UTuQ{y=i5=|umlz5V*@uO{xgcI_HX
zm@q-z;^oVi>Ey|ibne_a<t2=%TD7WLj{$?@BqcHR1J|!#*R~opYUuBJ_3CLs0Apaa
zP`aO=pPuhtLdgn)`?HatMAj%jwJUMl1j^00L}_j*ls>07+5TrLIr(-YJI6oIZ?LQf
z9(X|c2E2pC{`AvNsX>DV)TmJ-?SmrV$H8qzfB_{sIXS6IgwpWc=-an%AH~GP(7JW&
z)XD+_18K{aEo!Na8#kskYu2b`;&}HGDg^`t%-z0yI~_fGw6LidnzSSuK9VR)0uz|h
zZ}sGRZ6fFWl%JhOS#@Ox4{JpZ9o)(8aysRoO``mQnWY941efUU?yid&8XBrr04}R6
zfetL=)TvWyad3OFv9ZV>wUibY7e^;foS@|7Wc`Ga5KSTSg`0$xHEY(4wr$%+YuBz-
zcL^^1<(FURyYIfE`1p8LVtEGwtj8XEjI4wUc=F`Q8ev&P-w{Ns!o*kE5`i}IMAAfR
ze^1nOwYW^wxn$QnIg<Tv)?~N&D5d`^igMyEOM9+J1<C^OFo<+Z7dIg4H^fE+baSOU
z(U}QEwpn6%X_SBMI%U|WP|C!PWdHqC`lo+gYUql=WgAic-BAh-6Tv8R5o058JCr7z
zMmA!4HtFIj?ZpZ+X<_<K3Vr@6{d<cY`FJ~%oed_G4$Yf4r&nHiMfvQVciz#WXYoY%
zP5>c(hYlSIfBi8KxODB>l^%ZhVd~wxH$C#mBc|LB0PiA71*eud;1b7;8&{-mRYdxa
zU`onniW5>eCUQjNkjO!iXpvoL+s%|SjVtBP<KUxRn0E?=M2noW;=JU_9J#d`ckpnO
z<5}H&{6ev@vEkQVdyOR&XW=xyaNz<=K84ye@7%eQB^a?dudGBklMfv_#1gz%>^B$5
z8#y5%fz#5`Sh$l@Q&aVt=g*(7{gU@-yX1N|&Hb|?E|Eh*LbzlL0}RW;MmJm|e#7HA
zh+OYQ_6ZXyFm4k~OWIE)hNk^jn5-{kQGc&g+7`~_ULO-J16H+g;X>NAYZr|iIZ|^b
zB*H;KL7F7rX}}tg|CP2(hv*VP%d~0JGzvxjH)qZqdh*F9HLx*HJ<1d%T9}tu*fp`R
zc)62PA}2%)OFK~T+b%YbSC4*=d6*mXVJqfCa^HJI4#LVrGKhC<BzCQC*}^<LJk+v2
z`|LB8sL<jVOCpP6u^oa(MYnnaf%f8kyLa#A)2C0fqy?rn9ADgVk#P`7<kk8`K}Fgn
z(q@TFdFs@u+TW#17gL|OQS~C`<1LB#`OT&D7G}_gVP%E@E@DhBxfHs10r~6=CHhe~
zAjCsBP6pJH{`y4msYJ8<iAIbkO1g$~-;B|tM{6GS_S<i3b;5v=QvvvHa2d)<s4JpG
zg_4#z_n^i&ckWygH%gl~Z>F(h#}@V!VEFLin&Uy9d+s@U{q@(i`hf%**ML;PC|`a3
z_1BsTfUin|@nje&hygsk2PeP({`*=oLmoI_zyLiya!>HH0q|aMaIn@){}3fw*Z{Gx
z6tS?M#hSolF(SuB#NzC(<nfB<7ckd-kaIit;he7hm>Umg_Up`PF_n4QBH{<#EgZ9$
zNFK;%&YWSn5mTF7I7dZA>CTs%RgQV;si#;LkCT#;SaLL$q*y;CKVu0RbQfbBAPQkg
zp7s08nKSj6&ph)C%YyQO0|z)FB0~EBalO2L{d%<!j5Cgb=Y)}wk$MiC*SNN}ZQHUW
z-8xQEA{Liunlo(JFrG1EhFX{?fy2YY^?KiU;|&(KsoW;{l-|?Xvu90KCrZ`%=rhh^
zE{27bUSStRNoPb(i-_`UQ*wFvw1v#ITJnwdeK@PL7jv({oZE9KZ)x0(do{YXyDBbW
zVPU!ek~Evzh71|PlHl^mlPA?x0k|nB2?~;(tL_Q`02XKU>ec$x9Dqy0Lf|IF%5=dc
zDQ8KnS*((UueATg7hhCY?CI&r8#Zjv2ZVzM57q!;%$PC!&_fUL2OoT($6U5-nd#c#
z!V?n{8Ebd`{CSonTtA^G^oxb-F`!rkOOqx|();o8@zHrpmoDW|qekg*#mZPLQx%C#
zWXT0XZZGHnjFHab@v7(3lDY5Eq;=~l)2$xaS9TP4;6VGXr_tD$12iH&nxYai3MZ5d
zR3uRBMR;sL_)J|@%a$$GjiDNWVlZ3>`cTo3`z49&v`T_78bL}%MuxgcR6-<*Be5KH
zvv9j8_I~{F$68rIKind!9%wgSJVLMoh~jAP-o4bcX;XcKgMi2Y#=(7}>?IaOq73TT
zv7;uo0NgjKEuv6*{PD+iE}lZj2BF%uYinH-?i}Yv-Lzl7ewrAgc!7KRBa~iYaLtl?
zSyd+r3<#ttE7wv^gGOZUP@OJj=g`df<22;>UfOUqv0(gd05AU>K73exy}8l=L~iru
z&C?r2B!<T&P@=(S=x@=Yg_f95rb2XP&N;}hkT*fGm}Aa&IF75UYr%s-S!66077>eA
zvt~`|*|Vo|4!8#eYIERNsPyBw;$pRoW&nLCmDQ?MOCRZAK6qC=nO-MqpEw?#^$i?2
zQ12U0ld%y?M2RkOpt!_jaf!*yHko-G>=(#fwH<T25uDO#Brk2)o?F;ES)O|vB0HOZ
z{#ksjKmrPufPe!60+d&PmtTHa$NBmB>F+gb*05NOauopX5NlA^iX2IHu10adjvYI6
z?y6O*^fz3VSdH=~(5+iH-nw<Gy5AZ#YH)09EJsI2vzM0_zxwK{`tr-{*|Sa8is(-^
z4lh}<#MEXkaNXc7@E*>A^A8<5RQU{$)J4a+xw)};4sCn(*=KJ$j=9_(hh^n6<uSiE
zJ&4(<8*}SXyscSp_N?k^dCs2{@KR`KsB(@0aZ5$64`DwNY$ygmf(_-$uGan@J$fh?
z8GvH3FzA!qi6#0g>?u$r_(!aW#bqgnU>p`20gnOjW}7x`OxMt=RVxi>piHC9TwZ$V
zB@Jv4bUg9I6Q+%b0ssOm+@mp8tWP=FJm9h<rB~P}A9faHEtxI5)6tWEbnnaFHQm|X
z%5uI?7E-599Ts=R!eM%$md4=KFDx8Bi}xX@z<dN6h9V)tGa4|68)O$37quV>=QRL8
zgemUTG#2MIuEG2m5OJSsiMM(!P&kprrJ5o@+z;M*!e&DsHV)dMBveTjEm~A$z9lKW
z!n*e01^z4es`EeCzgly4wYzuUUBnK@{rdX)vIGMxys6Qh@T0}?cUqtTyk>}vWU1d=
zO0O`Hwq(aGE0sP>FRucNLoS4SMjcQhO?9D`#@=axh3?<KU-{Zne{nG>420_K?QL<;
z|D(W7p|m6sU=bJiR}0*ux!WvB;C_RHgV`GS1j63G3y^;yg^<AHFDWYD3dju++T(gk
z15vELUulgmc=U{Xqyps^cykOnr2cyag-;YC@h%1a#R9D(`K!R)g{Vf8cqIRLsdmty
zLBIdqNQhY9G=jUR_`A{F2h;*V$*z0%?j$LU7?BnI7oF=!spD~^^Z)<=07*qoM6N<$
Eg4f2bmH+?%

literal 0
HcmV?d00001

diff --git a/oxAuth/Server/src/main/webapp/img/android1.png b/oxAuth/Server/src/main/webapp/img/android1.png
new file mode 100644
index 0000000000000000000000000000000000000000..7c3ff5007b59dbca253e0df13daad2f614a9274a
GIT binary patch
literal 3396
zcmV-K4ZHG*P)<h;3K|Lk000e1NJLTq005K#001Tk1^@s6B0jRJ0000PbVXQnQ*UN;
zcVTj606}DLVr3vnZDD6+Qe|Oed2z{QJOBU;=1D|BRCwC#TnUgA)fxU@_nbR>G7IY>
zpor*#5)d_@cp!-+f(b+oqB)EQF)E3%Vk#*Wl9X17TB4~)V$^^bNg|4<fR-Z2u^=KU
z5EUb*u*<;SJNMB?{x|y#G~?`rySQlo<yX`6yzYL-_rCw=S%qnuWSebWWr{row%LTT
z%_fv>Hlb{@%_fv>Hlb|$3Ynubjjx)sZd|h`yztC1Vz=Mvx!<chUsP3{6rqz#HOZ+M
z4B}&hK`qCMk^au5m?ZL5DsG6;(B*sh$p%qAH*oWfJ%Cpbl@-(FlV;JfH6Pon)5EMI
zC8ka(R81;&(Pz61{|6gV=QJ2ii$Y5Hbxk+VaR~?CNZ2!OTjvNBHT61wnS&atJ+y6;
zlaeAhzFBE_w>}wpj=4L?DO9GFO)Q&G9W<v~F%=hks$M4T+vlc_x8zfyCq=rmdCI{=
z)Aq2QxK9XC>R@8oW)rIY#!l8Bhe9gHJ;kLa?O;-E++0BA`GSh_5~5jazPlmSv@513
z?-0V_RF4g@`Z7)jPOz8sI10*zBouozp(w=vQHjf>ZPi{<KM*wO+(t^WdIjT&g0K;v
zZD^i5iX3?}eX8SWg>=4J@9MsPi*X@i0HX-!8X2E4-ekPpgXTG(aWjK65qg3VIf{E+
z!nl~xAeSQJG#E{cEsS?9ZO6(Sim{NfrpFRWaY;fkq^|L&Lzv|E81zxVN1m-jSB|VF
zA1hci#SKKXf5eE*BjLSCQ9QF;!nw3#sRYluVYat8w_tMR#D2v1FOK^$#xTxfEXCq!
zJ%CVh;m<~2oJV;NIks<N(|9v`9P=>=<NXJo(I2E**P|6mx;z4*q*6(la`0#GUOK%O
zC?Gdy`qvJxp{P@mO6Bhi-jd-lQHm}RhIg5p3T7G}&->(HS7^4bSVrsVsq~@0Wn94c
zknsxR9Yz@67c<UhTq|>k7JBvwlgd;FnKq8{9uZu>9BL#Gvh-n0WK4ltJ;w+!0!OKY
z$C6MAh$KlRa7<}}m3cIJJ5WRpR<Rp~1t{h)DWWmq6j@L(7|j!dBqo+bl5;7n-Ag6z
zJtXua*IX)-&rPQe=uNM$`y^Kvra*n9B0a>Y&iY<X=&OwP7ze+CA&OL^y-;PV$$9ua
zV;o~KqxrZ9%2hYVPHq{L3sPOu1@bv2kW?<t0O<r)s<kyG^z5hQ)Q7XbGKPnVmCqut
z`Z#zGHqoGk8*iY-{r{t6_#qN%Azy5*oH4}}8Z&G_Yr*$-WjTy7CkL6V*3-z;Rc|Du
zJIl*)ejDQxs8uN=c3cGIa_y}#lvJsVLdk!t98;a>PSMJmQu2C;rVrXnaYLs%rI7sb
z7!6(U35gKTNx5)Q^uV2@<o%SCl3C>OJwl4~1Sz8ZjWl_}+2nulC8}>aLb1<77AF;G
z`xhAVxr|Y8j|nWsvK;PFj%os92({GnrTT4PY|3#@*{{nOC&Dc)#l6SkxXzl}SdIrV
zzRf6W8GQQQ%iGF}+Hje@7)g*x$?>egcvdO;ScSedU`{STBC{dK*uKxGh5B`6P_81&
z%eXx{6jKqCN$`OTkNSI4^jcjRx%v3|lk2I}jM2aaACic~iB95pQk6<1$r$NF@#t()
z^M6jxl6%PGT|}W2d551yKbt(79)5a-_3^#&xv!ORRNzz3Iv)pVq+QRr0_P7f3K-)N
z?9K*h2$TM6oDU)<DM#ByjQN&lj9}c3Y_l5V8-e?eWN^Ad`?KOHLQ*ju#NLNM`y!C+
z@lFs*zO=fUF%+)8(USFM=HiDKyMn&B;2vd`d>6(o?=c+iG-SEI+*Efm=5|k(msTW^
z9-4x9Dy>pbED5(_(m*v%^L;}|9Q>4KR<ZyjnMD0~>`wl48ZA$Dx?0}pslf`;6EEno
zf(toTuXIG5bjjI$nNXk0lnm_rY%65^37-**d(hw_e}x_RW4H!Mh&>?Gl^{w8aTy_t
zl#2KocBTC8WX5%jpJ2DX3Kw%bNbxshRVEfeF4&G7?k9v@{|hYmgN)Tss9PD=V1fUW
zW1KZm*C7^y^#*}!Ekw^doHHM4w;QB*55&40eYlY^i!l$RI?GaOD8%!may{GSgi=8$
zQZn@@afn<(Ih_4T?^RRbr!(ps>Ab0nDAuc%ytnflM0w6qTFd^B^l<TbIrfsoipCRf
zg@esI<rMU(i_`9^s_e%nkmVKR=$ia)1$Ju!6DhE3<wW}te@S_NlCjycK#xF?WVzuP
zoIeMd)St1?nYL2xW-u-V*+w%?V*HEof~7xm;ey6~z9@3Y?aDI19~difZWvsjhUdQs
z7iP5>$ap%&Cy>pq0|9qtsbFS(7vg^Xp_(zc*R6Q28yWNWppqFvjfSgy5iYWe2_+X_
zl1H@=N*s27@;#nv8dNjLPsPC)-7{@24c@Vb_7=IR?B%^wd>wm*pxHtyA78)$dqPir
z6bWlHk||@cDjXb>^9^-DOV;epe*A7s@ZeTb>c3{4E5*4FL8w!(J2z*w%fv2n5l_Qp
z%bmI2LZ*yu1x`V{)E_P}R}pn1;woz#qhnK?0M`>l%6~1A4q2dl6lB(0iPiqeSd06r
zAXH5oE|SpK>!3CskhT#d34zFaQGyu-HQs{~OcZm`4MDkEIf6(>5K73=8C2W1go>ka
z`pu6P&`DeNQ*}i-xe^g-Shk-W9*y#+4N4Co8B110quL{hq&7QUB$Y&Bt`+vmqwQM*
zwDyC~ZHV;<4oAYBtZb*d<1ta6L8Ux72x496OkGF8vEEKw2imsw8bE6&xUNU_ycFbn
z5=3e1m4XLjsp{a8W!(R*h>u>wrb>aF<3LIm+HJrah!G(B8Q5&^cMG8$@&`_e)xBk0
zAoofbRPQgQ;zW{eyZQwh@cscNQy+3`Q4$=0yLx*m^gM3@cPdI(^nWxOP2OkfW=vI;
zBlfUb<fY2Z)f9_sxh6-tmEU2vNwunMrK=ZX=U0J<O;Ci9P?ud<?MI+Ex*P5y1h=#-
ztKC3May{;S5b@Ip#Aa3-jy{@Mg;^b>=m$l*3;)hoSsP^!9i-~0HKTt+L5ew9-(QYC
zW%{@ps(L=u+MOfo>$>`gBI{3Sv>Yq=baE^d^cPW4Dn-+-T1x#k)li_Kl!R`|<d5B;
zLI!7u;XLK>>Xp@}MFNq#RhJr5l^j2H;d9ls;nupa8nHqdg5jI+N}~)rPP(ld7{7#@
zn{Ub7R$&ou#ssTShg(6O&5(VWseO$2;TE(}am_8r_9~%38$hm!P(%l!!^y}HYg?J`
zcW`|%?w28(jLjZnOzWcBl@l>#6mI-<Jf|E<j4!L2o<!eHMcW;neHYlt7)l%we9L2n
zGrEwckP0=8uDNnK_1#!Y2Zr`yWr}mp6*9SD*wh!MH0j#Rck(%&ayXPWDISTZ+UmwL
zP!PGhrea6cS~8wuxH<VA?+wd!OAtU$z~@c`&J`fg-z|aj<4Bcdy8R6V^QVGbOHeu>
z5bz0*@(yZwf$KusUFeHpQ63FR#eO_bUUxs@vW%*w;BK<(Vg-oV@;k6pnYR59u)l!}
zcP8d$AQFrw#7oxqi*I0Ko`U0Ow-L%AW2lVFlZ8x4Ce_CpY|s@`*HZcVI;uUhggkm8
zy}B{dH)&>yC0$?c=J|07#9VEetSUI#-JFZz+b_UQD#QW=u#l^;*x8xj!zhZ5f`Y}7
z4lf32tO>vj)U3_~@wOu%&VI@LCdfGzi=!iRlnZ~G#YL?FxiUm~9kr_OV1ecNw?Noj
z@11rc6Wh~)rP_tIRhCWI1Xt#VtNk}h1VcdJj5Q)LiFY7Q{epz@C}|?4YfwD?5als>
zG@3BwT`F7CNDZt^E<MJ&sqKhT;x00i&&%JEyZM4{_=)g7OiJb*m)XIWp|1diAX%c7
zc9LLEA&zim75l8_1p)7eGQ^=WlW=Wjj_2gKb_<YEop2ldu52S_Y_F}Ho0mb>Jj-*W
zTD_EY?O4>{mgI2RT^mCksyT80g1qsZOs4Ta*h=LqLKLhhqNJhM1&#RhkP#oOna1;~
z5Xb7b=3(mmoAqEDWXe{y*2q+Wn$x`&(xu>TE`vhs>|p=H$6%g}4m{^VY>MUG{w}Yj
zT4-{Qoa8Wd8h7<hDq9t!+Tq@$sW&}ln2|p^gckB1J0gAAR)=_K41(NBsM4iy#ZR?S
zBkGAZnhyVtYFoDxN->2mB2;pkCXJmOApfc`1%}Z)GZmVlie$B$X{3I={?xAyvDS?!
zRgAL4a`MM+3y!0)2yBeR(W+CY36-FDz+3MNoi)A2@U3WE9T=8;K-Hq_UFo9c*Y<Bl
zWft@oEW(L!E4vV%9B=jvRQ0HTPbKXCKa_1<Y4)F@+h!BWHk(kk*@UvqHk(kkeaZHJ
a0R{m5=>z4)7J{(=0000<MNUMnLSTZoTXIhT

literal 0
HcmV?d00001

diff --git a/oxAuth/Server/src/main/webapp/img/background_wave.svg b/oxAuth/Server/src/main/webapp/img/background_wave.svg
new file mode 100644
index 00000000..2cc83675
--- /dev/null
+++ b/oxAuth/Server/src/main/webapp/img/background_wave.svg
@@ -0,0 +1 @@
+<svg id="Calque_1" data-name="Calque 1" xmlns="http://www.w3.org/2000/svg" viewBox="0 0 1920 1080"><defs><style>.cls-1{fill:#fff;}.cls-2{opacity:0.09;}.cls-3{fill:none;stroke:#000;stroke-miterlimit:10;stroke-width:1px;}</style></defs><rect class="cls-1" width="1920" height="1080"/><g class="cls-2"><path class="cls-3" d="M1920,396.71q-2.77,6.17-5.52,12.45-4.56,10.39-9.07,21.07t-8.94,21.35q-4.41,10.69-8.84,21.56t-8.78,21.68q-4.36,10.85-8.77,21.77t-8.82,21.8q-4.42,10.9-8.9,21.82t-9.07,21.86q-4.56,10.9-9.22,21.74t-9.47,21.67q-4.83,10.86-9.79,21.59t-10.17,21.5C1751.19,779,1685.25,872.65,1586.38,898c-80.79,20.67-153.49-12-230.52-72.37q-12.48-9.78-25.14-20.5t-25.58-22.29q-12.89-11.53-26-23.82t-26.61-25.15q-13.35-12.78-27.07-26.11t-27.87-27.11q-14.1-13.73-28.65-27.8t-29.48-28.26Q1124.49,610.35,1109,596t-31.38-28.64q-15.92-14.28-32.45-28.53t-33.55-28.24q-17-14-34.75-27.77t-36-27.1q-18.21-13.34-37.17-26.25t-38.38-25.16Q846,392.09,825.85,380.38q-19.92-11.53-40.66-22.49-20.4-10.78-41.62-20.91h0q-21-10-42.79-19.3-21-9-42.92-17.23-17.94-6.76-36.46-13c-216-72.85-430.86-70.08-621.39-36"/><path class="cls-3" d="M0,270.72C182.41,243,388.16,244.43,596.09,314.18q17.34,5.81,34.19,12,21.12,7.79,41.48,16.18,21.15,8.7,41.51,18,20.67,9.42,40.54,19.4,20.3,10.15,39.8,20.83,19.85,10.85,38.92,22.13,19.38,11.46,38,23.3,18.87,12,37,24.31,18.36,12.45,36,25.15,17.82,12.81,35,25.8,17.29,13.08,33.92,26.27t32.91,26.55q16.28,13.33,32,26.62t31,26.5q15.35,13.2,30.17,26.17t29.37,25.66q14.51,12.66,28.6,24.89t27.74,23.77q13.8,11.7,27.3,22.75t26.77,21.37q13.23,10.29,26.28,19.77c17.3,12.54,34.38,23.94,51.36,33.94,65.81,38.76,130.26,56.62,200.91,39.55,95.63-23.11,160.76-105.48,214.08-203.58q5.76-10.57,11.33-21.37T1793,618.72q5.29-10.71,10.48-21.55t10.17-21.59q5-10.8,10-21.63t9.79-21.59l9.69-21.53q4.81-10.75,9.62-21.41t9.63-21.25q4.84-10.59,9.69-21t9.78-20.7q4.94-10.29,9.93-20.3t10.11-19.8q5.14-9.8,10.38-19.2,3.82-6.89,7.73-13.54"/><path class="cls-3" d="M1920,327.9c-1.57,1.92-3.11,3.87-4.64,5.86q-6.09,7.83-12,16.21t-11.63,17.19c-3.82,5.85-7.59,11.87-11.33,18s-7.4,12.37-11.05,18.74-7.25,12.79-10.85,19.35-7.13,13.15-10.67,19.86-7.06,13.46-10.58,20.29-7,13.69-10.52,20.61-7,13.88-10.53,20.88-7,14-10.6,21.06-7.12,14.12-10.72,21.18-7.26,14.2-11,21.28-7.41,14.2-11.18,21.26-7.65,14.21-11.56,21.24-7.94,14.19-12,21.18-8.31,14.14-12.57,21.07c-53,86.32-117.19,158.12-209.44,179.14-69.3,15.79-132.6,3.16-196.45-27.23q-13.08-6.24-26.22-13.44c-17.67-9.67-35.45-20.57-53.47-32.49q-13.65-9-27.5-18.79t-28-20.19q-14-10.3-28.32-21.19-14.46-11-29.27-22.44t-30-23.23q-15.13-11.73-30.73-23.8t-31.52-24.17q-15.9-12.11-32.34-24.35T980.17,556.7q-16.74-12-34.09-24.07-17.16-11.86-35-23.64-17.58-11.62-35.84-23.06-18-11.26-36.66-22.3-18.37-10.85-37.46-21.4-18.74-10.35-38.2-20.36-19.07-9.81-38.87-19.24-19.37-9.21-39.45-18Q664.86,376,644.37,367.8q-19.7-7.86-40.11-15.25-16.5-6-33.47-11.62C371,274.27,174.31,268.8,0,290.21"/><path class="cls-3" d="M1920,316.06q-4.71,4-9.3,8.34-6.85,6.42-13.46,13.48t-13,14.66q-6.42,7.6-12.65,15.73t-12.31,16.65q-6.08,8.55-12,17.51t-11.82,18.24q-5.85,9.29-11.63,18.85t-11.52,19.38q-5.74,9.81-11.47,19.8t-11.47,20.15q-5.77,10.15-11.58,20.4T1766,539.84q-5.94,10.41-12,20.79t-12.27,20.74q-6.26,10.44-12.69,20.74t-13.23,20.66q-6.84,10.41-13.92,20.54c-52.55,75.16-115.57,137.14-204.33,156.17-68,14.59-130.3,6.39-192.42-16.69q-13.46-5-26.92-10.92T1251,759.15c-18.43-9.16-37-19.41-55.84-30.57q-14.2-8.39-28.63-17.46-14.22-8.89-28.72-18.38Q1123.08,683.13,1108,673t-30.51-20.58q-15.37-10.41-31.18-21.18t-31.86-21.59q-16-10.81-32.61-21.81Q965.43,577,948.47,566q-16.74-10.83-34.08-21.67-17.08-10.7-34.81-21.34-17.43-10.49-35.52-20.87-17.76-10.17-36.19-20.22-18.06-9.84-36.82-19.48Q752.71,453,733.66,443.8q-18.61-9-37.92-17.67-18.84-8.49-38.37-16.67-19.18-8-39.06-15.73-19.06-7.37-38.81-14.4-16.75-6-34-11.65C353.86,304.12,166.21,294.72,0,310"/><path class="cls-3" d="M1920,314.71a227.89,227.89,0,0,0-25.9,16.94q-7.39,5.55-14.5,11.72t-14.1,13q-7,6.79-13.72,14.13t-13.36,15.17q-6.62,7.84-13.06,16.11t-12.83,16.93q-6.36,8.67-12.64,17.65t-12.53,18.3q-6.24,9.3-12.46,18.79t-12.49,19.23q-6.29,9.74-12.58,19.56T1737.06,532q-6.52,10.07-13.14,20.1t-13.39,20q-6.87,10.08-13.91,20t-14.51,19.93q-7.53,10-15.33,19.76c-51.91,64.7-113.63,117.66-198.83,134.81-66.91,13.47-128.22,9-188.84-7.69q-13.84-3.81-27.66-8.47t-27.92-10.14q-14.12-5.52-28.34-11.78c-19.14-8.41-38.44-17.77-58-27.91q-14.27-7.38-28.77-15.28-15.09-8.21-30.48-16.92t-31-17.73q-15.54-9-31.5-18.34l-32.07-18.79q-16.11-9.43-32.73-19.08-16.4-9.53-33.32-19.19-16.68-9.51-33.93-19.12-17-9.44-34.52-18.91-17.24-9.3-35.09-18.57-17.47-9.07-35.61-18.1-17.73-8.82-36.1-17.54-18-8.49-36.54-16.87-18.15-8.16-37-16.15-18.33-7.79-37.3-15.36-18.63-7.46-37.9-14.66-18.48-6.93-37.58-13.6-17.52-6.13-35.58-12C336.75,334,158.12,320.81,0,330"/><path class="cls-3" d="M1920,321.05q-4.71,1.56-9.3,3.35-8.48,3.28-16.6,7.25a242.4,242.4,0,0,0-31.65,18.55q-7.76,5.32-15.23,11.25t-14.79,12.43q-7.35,6.51-14.45,13.53T1803.82,402q-7,7.55-13.9,15.47t-13.7,16.28q-6.84,8.35-13.58,17t-13.53,17.59q-6.78,9-13.54,18.11t-13.67,18.5q-6.92,9.38-13.88,18.8-7.1,9.6-14.31,19.17t-14.59,19q-7.47,9.62-15.15,19.06t-15.86,18.94q-8.2,9.52-16.74,18.72h0c-51.12,55-111.41,99.81-193,115.19a491.88,491.88,0,0,1-185.84,0q-14.2-2.64-28.35-6.07-14.31-3.43-28.61-7.58-14.47-4.2-29-9t-29.42-10.45q-28.52-10.67-57.69-23.48-15.66-6.81-31.6-14.15-15.55-7.15-31.45-14.74-15.69-7.49-31.76-15.34-15.89-7.76-32.21-15.82L919.74,601q-16.34-8.07-33.19-16.38Q870,576.44,852.9,568.13q-16.77-8.13-34.11-16.37-17-8.09-34.56-16.21-17.18-7.95-34.93-15.92-17.35-7.77-35.33-15.56Q696.44,496.5,678.3,489q-17.68-7.33-36-14.62-17.82-7.08-36.25-14.08Q588,453.4,569.3,446.65q-17.91-6.48-36.41-12.81-18.69-6.4-38-12.66C319.67,363.83,150,347.06,0,350.39"/><path class="cls-3" d="M1920,332.93c-1.56.26-3.1.53-4.64.83q-9.27,1.73-18.12,4.12-9,2.43-17.64,5.49t-17.15,6.83a265.81,265.81,0,0,0-33.06,17.57q-8.15,5.06-16,10.65t-15.56,11.77q-7.77,6.21-15.3,12.86t-15,13.82q-7.49,7.17-14.81,14.71t-14.69,15.51q-7.36,8-14.63,16.18T1708.77,480q-7.39,8.55-14.79,17.22t-15,17.57q-7.71,9-15.55,18t-15.8,17.86q-8.11,9-16.43,17.85T1614,586.22q-8.93,8.88-18.19,17.41c-50.22,46.17-109,83.65-187,97.38-65.14,11.46-125,12.92-183.31,6.7q-14.57-1.55-29-3.73-14.62-2.19-29.19-5t-29.38-6.24q-14.7-3.39-29.47-7.35-14.4-3.85-28.92-8.2c-20.92-6.25-42.06-13.23-63.58-20.85q-15.52-5.48-31.34-11.39-15.66-5.85-31.67-12.08-15.83-6.15-32-12.64-16-6.39-32.43-13.08-16.18-6.58-32.83-13.41L822.4,580.11q-16.51-6.76-33.54-13.73Q772.2,559.57,755,552.62q-16.8-6.78-34.17-13.68-17-6.74-34.47-13.56-17.07-6.64-34.7-13.35-17.19-6.52-34.95-13.1-17.3-6.4-35.16-12.82-17.52-6.3-35.63-12.59-17.35-6-35.25-12-20.18-6.8-41.08-13.54C302.52,394,141.94,373.78,0,371.29"/><path class="cls-3" d="M1920,348.77q-8.49.39-16.64,1.2-9.79,1-19.16,2.57-9.56,1.6-18.7,3.83-9.35,2.24-18.28,5.08-9.12,2.88-17.83,6.32a294.87,294.87,0,0,0-34.61,16.36q-8.51,4.71-16.69,9.89-8.37,5.28-16.45,11t-16.16,12q-8.09,6.29-16,13t-15.85,13.81q-8,7.14-15.79,14.56t-15.82,15.18q-8,7.79-16,15.7l-16.23,16.1q-8.34,8.29-16.79,16.56t-17,16.41c-5.82,5.51-11.72,11-17.71,16.38s-12.22,10.87-18.5,16.16-12.88,10.68-19.53,15.83C1511,624.92,1453.81,656,1379.13,668.19c-64.6,10.58-124,14.35-181.57,12.41q-14.94-.5-29.75-1.51-15-1-29.86-2.55T1108,673q-15-2-30.09-4.53t-30-5.43q-15.91-3.1-32-6.7c-20.55-4.58-41.33-9.75-62.5-15.45q-15.63-4.2-31.57-8.79-15.74-4.53-31.82-9.41-15.87-4.82-32.14-9.94-16-5.06-32.4-10.39-16.11-5.25-32.68-10.76-16.21-5.4-32.91-11-16.33-5.52-33.17-11.25L693.29,557.9l-33.6-11.49q-16.63-5.68-33.79-11.53-16.73-5.7-34-11.53-16.8-5.69-34.12-11.49-17-5.69-34.57-11.49-16.82-5.56-34.16-11.22-22-7.17-44.79-14.47C285.5,423.92,133.89,400.49,0,392.5"/><path class="cls-3" d="M1920,367.44q-3.9-.18-7.73-.28-10.51-.29-20.54,0-10.32.27-20.18,1.11-10.11.83-19.77,2.23c-6.6.94-13,2.08-19.35,3.38q-9.72,2-19,4.54-9.53,2.59-18.64,5.71a328.18,328.18,0,0,0-36.1,14.77q-9,4.29-17.67,9.06-8.82,4.82-17.35,10.06-8.72,5.31-17.17,11-8.64,5.79-17.06,11.92-8.58,6.21-17,12.7t-17,13.37q-8.6,6.9-17.17,13.94t-17.42,14.36q-9,7.41-18.08,14.85t-18.26,14.69c-6.23,4.92-12.54,9.82-19,14.64h0q-9.69,7.32-19.72,14.4c-6.78,4.77-13.7,9.46-20.77,14-48.28,31.13-104,56.58-175.51,67.44-64.34,9.76-123.51,15.55-180.61,17.43q-15.33.51-30.47.63-15.3.14-30.46-.12t-30.51-.89q-15.3-.64-30.56-1.68t-30.51-2.44q-15.89-1.47-31.87-3.35-15.51-1.85-31.16-4.06C932.8,638,912,634.56,890.79,630.65q-15.62-2.89-31.54-6.14-15.69-3.19-31.73-6.75-15.78-3.48-31.91-7.32-15.83-3.74-32.07-7.82-15.9-4-32.24-8.29-16-4.2-32.43-8.7-16.05-4.39-32.56-9.06-16.12-4.56-32.73-9.38-16.19-4.7-32.86-9.65-16.25-4.83-33-9.9-16.32-4.93-33.14-10.1-16.5-5.06-33.52-10.35-16.31-5.06-33.11-10.33-24-7.51-49-15.43A2132.9,2132.9,0,0,0,0,414.18"/><path class="cls-3" d="M1920,388.05q-9.23-1-18.11-1.69-11-.84-21.49-1.19-10.82-.37-21.16-.25-10.65.12-20.82.75-10.45.61-20.44,1.74-10.29,1.14-20.12,2.78-10.11,1.67-19.77,3.83-9.93,2.21-19.41,4.88a371.83,371.83,0,0,0-38,12.93q-9.47,3.78-18.59,8-9.35,4.26-18.38,8.92h0q-9.27,4.74-18.29,9.82-9.21,5.18-18.22,10.63-9.2,5.54-18.25,11.32-9.23,5.86-18.39,11.9-9.32,6.14-18.64,12.36-9.61,6.4-19.34,12.85t-19.46,12.71q-9.9,6.39-20.08,12.66t-20.81,12.38q-10.68,6.14-21.8,12h0c-47.38,24.91-101.66,45.54-170.44,55.18-64.37,9-123.6,16.63-180.49,22q-15.69,1.47-31.16,2.72t-31,2.25q-15.54,1-31,1.73t-30.88,1.16q-15.37.44-30.77.56-15.87.13-31.78-.09-15.48-.21-31.06-.77-15.42-.54-31-1.45c-20.43-1.18-41.12-2.83-62.19-5q-15.48-1.59-31.27-3.54-15.5-1.92-31.32-4.21-15.53-2.25-31.42-4.87-15.54-2.55-31.5-5.49-15.6-2.87-31.63-6.1-15.63-3.15-31.7-6.66-15.69-3.43-31.83-7.21-15.73-3.68-31.93-7.71-15.79-3.93-32-8.2-15.84-4.15-32.13-8.64-16-4.39-32.52-9.13-15.82-4.53-32.09-9.37-26.15-7.77-53.53-16.35A2709.81,2709.81,0,0,0,0,436.44"/><path class="cls-3" d="M0,459.32c109.91,22.89,234.75,54.25,368.37,95.61q30,9.27,58.43,17.14,15.75,4.38,31.08,8.32,16,4.14,31.53,7.83,15.79,3.76,31.16,7.09,15.75,3.44,31.09,6.42,15.71,3.06,31,5.7,15.66,2.7,30.91,5,15.62,2.33,30.84,4.22,15.58,1.95,30.8,3.45,15.52,1.56,30.7,2.67,15.51,1.17,30.67,1.89,15.5.76,30.68,1.11c20.79.49,41.2.43,61.36-.08q15.42-.39,30.65-1.15,15.43-.74,30.73-1.82,15.46-1.07,30.84-2.46,15.82-1.4,31.61-3.09,15.45-1.65,30.91-3.53t31.09-4q15.58-2.07,31.3-4.31t31.54-4.58Q1093,598.42,1109,596c57-8.63,116.54-18,181.28-26.28a629.36,629.36,0,0,0,166.23-44.52q11.57-4.82,22.62-9.86t21.73-10.2Q1511.6,500,1522,494.71h0q10.38-5.23,20.54-10.49l20.55-10.57q9.93-5.11,19.84-10.09t19.61-9.62q9.67-4.63,19.49-9,9.63-4.29,19.47-8.32,9.65-3.93,19.57-7.54,9.66-3.49,19.65-6.65c12.8-4,26-7.59,39.92-10.57q10-2.15,20.38-3.87,10.08-1.68,20.63-2.92,10.21-1.21,20.92-2,10.38-.76,21.26-1.09,10.53-.3,21.54-.18,10.68.11,21.85.65,10.82.52,22.14,1.48,11,.91,22.43,2.25,11.1,1.3,22.7,3l5.52.84"/><path class="cls-3" d="M0,483c102,27.17,218,60.5,343.07,98.73q32.65,10,63.54,17.72,15.25,3.84,30.12,7.16Q452.21,610,467.28,613q15.3,3,30.2,5.46Q512.73,621,527.61,623q15.23,2.07,30.06,3.61,15.18,1.6,30,2.67,15.14,1.13,29.93,1.73,15.12.63,29.93.78,15.09.15,29.89-.16,15.08-.32,29.87-1.07c20.3-1,40.25-2.67,60-4.79q15.13-1.62,30.09-3.62,15.17-2,30.19-4.36,15.21-2.35,30.32-5,15.3-2.68,30.55-5.6,15.68-3,31.35-6.2,15.4-3.13,30.87-6.42t31.21-6.69l31.57-6.85q15.86-3.42,31.92-6.85t32.34-6.78c57.39-11.79,117.56-22.77,183-30.46a855.33,855.33,0,0,0,163.09-35.17q11.85-3.75,23.19-7.65t22.42-7.88q11.14-4,22-8c7.24-2.68,14.4-5.37,21.5-8q10.91-4.06,21.7-8.05c7-2.58,14-5.1,21-7.56s13.82-4.79,20.79-7.08,13.75-4.42,20.73-6.49q10.23-3.06,20.73-5.81,10.25-2.7,20.84-5.06c13.5-3,27.46-5.62,42.07-7.69q10.44-1.5,21.33-2.6,10.56-1.08,21.62-1.78c7.11-.45,14.37-.78,21.82-1q10.79-.29,22.08-.19,10.92.09,22.36.56,11,.45,22.61,1.28,11.17.8,22.86,2,11.29,1.11,23.11,2.59,11.41,1.42,23.35,3.2,11.54,1.71,23.56,3.77c3.25.55,6.53,1.13,9.84,1.72l4.75.86"/><path class="cls-3" d="M0,507.42c94.08,31,201.23,65.89,317.77,101q35.44,10.68,68.85,18,14.76,3.26,29.15,5.89,15,2.75,29.6,4.88,14.79,2.15,29.23,3.7,14.76,1.59,29.19,2.58,14.71,1,29.1,1.44,14.7.45,29.08.31,14.65-.12,29-.82,14.67-.67,29-1.9,14.66-1.23,29.05-3c19.68-2.37,39-5.41,58.18-9q14.73-2.74,29.28-5.9,14.79-3.18,29.45-6.72,14.85-3.58,29.6-7.47,14.94-3.91,29.83-8.08,15.06-4.22,30.12-8.62,15.47-4.51,31-9.17,15.32-4.58,30.74-9.23T948.47,566q15.75-4.68,31.7-9.3t32.23-9.11q16.26-4.49,32.8-8.76c58.12-15,119.27-27.67,185.9-34.76a1389.68,1389.68,0,0,0,161.2-26.8q12-2.68,23.52-5.41,11.65-2.75,22.91-5.47l22.64-5.51q11.25-2.75,22.31-5.39,11.41-2.72,22.72-5.29,11-2.49,22-4.8t21.94-4.31q10.84-2,21.92-3.74c7.22-1.13,14.52-2.17,22-3.1,14.26-1.8,29-3.22,44.38-4.16,7.31-.46,14.77-.8,22.42-1q11-.32,22.59-.33h0q11.14,0,22.83.33,11.23.31,23,1,11.34.62,23.24,1.56,11.46.9,23.47,2.13,11.55,1.17,23.67,2.65,11.67,1.44,23.87,3.16,11.77,1.65,24.07,3.6,11.87,1.89,24.24,4,11.94,2.07,24.4,4.42l2.5.47q10.58,2,21,4"/><path class="cls-3" d="M0,532.91c86.24,34.29,184.59,70.25,292.47,102.27A698.3,698.3,0,0,0,366.76,653q14.26,2.6,28.19,4.47,14.49,2,28.66,3.22t28.3,1.84q14.26.62,28.24.51,14.24-.06,28.17-.8,14.2-.72,28.12-2.1,14.17-1.38,28.1-3.36,14.22-2,28.2-4.62c19-3.51,37.81-7.78,56.36-12.64q14.24-3.74,28.31-7.91,14.31-4.23,28.48-8.86,14.4-4.66,28.7-9.7,14.5-5.07,28.95-10.42,14.61-5.4,29.22-11,14.81-5.67,29.64-11.49,15.21-6,30.5-12t30.46-11.91q15.43-6,31-11.89t31.69-11.7q16.06-5.79,32.4-11.31t33.17-10.73c59.16-18.3,121.65-32.83,189.84-39.34,63.21-6,114.71-12.89,160.66-19.06l23.68-3.17q11.78-1.57,23.17-3c7.81-1,15.5-2,23.12-2.89s15.33-1.8,22.92-2.62q11.87-1.28,23.65-2.34c7.66-.69,15.31-1.31,23-1.84s15.28-1,23-1.35c7.6-.36,15.28-.63,23.08-.8,15-.34,30.36-.33,46.44.11q11.52.3,23.54.9,11.57.57,23.69,1.44,11.65.84,23.87,2,11.75,1.08,24.07,2.43,11.82,1.3,24.23,2.86,11.91,1.5,24.4,3.26,12,1.68,24.58,3.62,12.08,1.86,24.72,4,12.17,2,24.88,4.24,12.23,2.14,25,4.51,12.3,2.28,25.13,4.76,10,1.93,20.32,4l4.93,1q16.3,3.24,32.37,6.38"/><path class="cls-3" d="M0,559.55c78.45,37,168.06,73.45,267.17,102.38A544,544,0,0,0,347,679q13.79,1.85,27.27,2.91,14,1.13,27.73,1.43t27.34-.14h0c9.18-.29,18.28-.85,27.29-1.63s18.22-1.85,27.21-3.13,18.2-2.81,27.19-4.55,18.16-3.75,27.14-5.94c18.44-4.48,36.61-9.81,54.6-15.82q13.71-4.57,27.31-9.66,13.79-5.15,27.47-10.73,13.88-5.65,27.67-11.69,14-6.09,27.9-12.52,14.1-6.48,28.21-13.22,14.26-6.8,28.55-13.77,14.48-7,29-14.18,14.91-7.3,29.93-14.62t30.05-14.45q15.27-7.24,30.74-14.32,15.64-7.14,31.53-14,16.07-6.93,32.42-13.47,16.51-6.6,33.37-12.7c60.56-21.88,124.76-38.44,195-44.39,63.37-5.38,115.11-9.42,161.48-11.59q12.06-.55,23.67-.95h0q11.81-.39,23.25-.59h0c7.9-.15,15.69-.22,23.42-.22s15.61.08,23.36.23c8.16.16,16.28.41,24.42.75,7.92.33,15.85.74,23.84,1.25s15.9,1.09,24,1.77c15.7,1.33,31.77,3,48.51,5.06q12,1.47,24.49,3.21,12.11,1.68,24.76,3.61c8.12,1.24,16.42,2.55,25,4q12.26,2,25.12,4.26,12.33,2.15,25.29,4.5,12.39,2.25,25.44,4.72,12.47,2.34,25.56,4.88,12.52,2.43,25.68,5,12.59,2.51,25.79,5.15,12.64,2.55,25.87,5.25l26,5.32q12.74,2.64,26,5.4l13.67,2.84q6.22,1.31,12.43,2.56,20.76,4.26,41.15,8.19"/><path class="cls-3" d="M0,587.57c70.72,38.85,151.62,75.27,241.86,101.12a432.14,432.14,0,0,0,85.35,15.64q13.29,1,26.33,1.22,13.54.19,26.82-.52t26.44-2.22q13.27-1.54,26.33-3.89,13.25-2.37,26.3-5.51,13.21-3.17,26.25-7c17.69-5.26,35.16-11.45,52.46-18.4q13.26-5.29,26.4-11.2T591,644.39q13.34-6.48,26.59-13.41,13.42-7,26.8-14.36,13.54-7.43,27.07-15.17,13.69-7.79,27.41-15.82,13.88-8.08,27.81-16.32Q740.78,561,755,552.62q14.55-8.55,29.24-17.07t29.52-16.81q15-8.43,30.31-16.62,15.48-8.26,31.21-16.19,16-8,32.27-15.56,16.51-7.64,33.4-14.65c62.3-25.84,128.59-44.7,201.33-50.11,64.12-4.77,116.47-6,163.61-4,8,.33,15.84.75,23.57,1.27h0q11.77.76,23.2,1.82h0q11.89,1.1,23.53,2.47,11.88,1.41,23.62,3.11,12.56,1.8,25.1,3.93c8.13,1.38,16.27,2.86,24.49,4.43,16.25,3.11,32.77,6.6,49.9,10.45q12.48,2.81,25.43,5.86,12.55,3,25.65,6.15c8.45,2.05,17.08,4.17,25.95,6.36l26.19,6.49,26.36,6.55q12.93,3.19,26.52,6.55,13,3.21,26.64,6.53,13,3.18,26.72,6.46,13.07,3.14,26.8,6.38,13.1,3.09,26.84,6.27,13.14,3,26.89,6.17,13.15,3,26.9,6,13.18,2.93,26.93,5.93l7,1.53q10,2.17,19.93,4.23,25.25,5.26,49.92,9.84"/><path class="cls-3" d="M0,617.19c63.09,39.86,135.34,75.46,216.56,98.25a350.48,350.48,0,0,0,90.89,13.35q12.81.16,25.4-.63c8.71-.54,17.34-1.42,25.91-2.59h0q12.84-1.77,25.49-4.43,12.81-2.68,25.43-6.23T435,707a532,532,0,0,0,50.7-20.64q12.7-5.91,25.32-12.46t25.44-13.78q12.79-7.2,25.53-14.92t25.69-16q12.95-8.25,25.89-16.85,13.1-8.67,26.21-17.61t26.55-18.22q13.44-9.29,27-18.67,13.71-9.48,27.53-19,14.16-9.71,28.48-19.31t28.84-19q14.75-9.52,29.73-18.74,15.24-9.36,30.74-18.27,15.79-9.08,31.92-17.57,16.43-8.65,33.24-16.59c64.39-30.29,133.17-51.85,208.9-56.69,65.41-4.19,118.71-2.36,166.94,4q11.91,1.56,23.43,3.5c7.78,1.3,15.44,2.71,23,4.24h0c7.9,1.59,15.71,3.3,23.49,5.13h0q11.85,2.77,23.59,5.9,12.87,3.42,25.77,7.23c16.55,4.85,33.25,10.16,50.46,15.84q12.75,4.2,25.93,8.68,12.92,4.37,26.37,9,13.07,4.45,26.74,9.11,13.21,4.49,27.1,9.13,13.34,4.46,27.37,9,13.42,4.37,27.58,8.83,13.5,4.26,27.74,8.59,13.56,4.13,27.84,8.29,13.59,4,27.9,8,13.62,3.83,27.92,7.66,13.63,3.66,27.93,7.33,13.64,3.5,27.89,7,13.63,3.35,27.88,6.71,13.64,3.19,27.84,6.4l.44.1q13.75,3.09,27.38,5.93,29.76,6.23,58.74,11.29"/><path class="cls-3" d="M0,648.68c55.52,39.77,119.18,73.75,191.26,93.51a289.63,289.63,0,0,0,96.4,10q12.33-.81,24.46-2.64,12.61-1.89,25-4.81t24.6-6.75q12.32-3.86,24.5-8.62A475.51,475.51,0,0,0,435,707q12.25-6.45,24.45-13.6t24.38-14.95q12.27-7.83,24.51-16.23t24.57-17.33q12.39-9,24.78-18.32t25-19.15q12.61-9.79,25.29-19.85t25.65-20.39q13-10.35,26.11-20.78,13.26-10.53,26.66-21,13.73-10.71,27.62-21.31t28.07-21q14.38-10.52,29-20.68,14.91-10.34,30.1-20.19,15.52-10.07,31.38-19.47,16.23-9.63,32.86-18.45c66.78-35.38,138.44-60.08,217.67-64.35,67.18-3.62,121.73,1.54,171.38,12.74q11.8,2.66,23.26,5.76h0q11.51,3.11,22.75,6.63h0q11.76,3.66,23.34,7.74h0q11.49,4,22.92,8.43c17.25,6.63,34.52,13.84,52.2,21.51q12.83,5.55,26,11.41t26.58,11.86q13.3,5.93,27.19,12.07,13.53,6,27.71,12.07,13.72,5.9,28.16,11.89,13.89,5.75,28.52,11.56,14,5.53,28.78,11.1,14.1,5.29,29,10.59,14.13,5,29,10,14.18,4.75,29.1,9.45,14.17,4.48,29.07,8.89,14.18,4.2,29,8.33,14.14,3.94,28.94,7.8,14.13,3.69,28.88,7.3,11.17,2.73,22.72,5.42l6.05,1.39q14.43,3.3,28.71,6.26,34.32,7.14,67.64,12.51"/><path class="cls-3" d="M0,682.34c48.07,38.38,103.21,69.85,166,86.6a243.25,243.25,0,0,0,101.83,5.44c7.88-1.23,15.72-2.84,23.5-4.78q12.18-3,24.2-7.18t23.69-9.13l0,0a427.52,427.52,0,0,0,47.05-23.89q11.75-6.84,23.43-14.47t23.44-16q11.75-8.35,23.47-17.33T480.15,663q11.82-9.56,23.64-19.57T527.61,623q12-10.49,24-21.24T576,579.87l24.72-22.33q12.53-11.31,25.18-22.66T651.65,512Q664.88,500.41,678.3,489t27.2-22.72q13.95-11.42,28.16-22.43,14.51-11.24,29.29-21.93,15.16-11,30.66-21.24,15.92-10.56,32.24-20.25c69.46-41.19,144.37-69.6,227.6-73.24,69.47-3.05,125.59,5.95,177,22.67h0q11.76,3.81,23.21,8.16h0q11.43,4.33,22.66,9.13,11.84,5,23.55,10.56c15.6,7.34,31.14,15.25,46.88,23.61q13.1,6.95,26.43,14.28,13.14,7.2,26.64,14.71t27.26,15q13.68,7.5,28,15.16,14,7.47,28.64,15,14.21,7.32,29.18,14.65,14.43,7,29.67,14.08,14.58,6.73,30,13.38,14.7,6.34,30.22,12.59,14.76,5.93,30.32,11.74,14.78,5.51,30.34,10.89,14.77,5.1,30.31,10.06,14.74,4.7,30.21,9.26,14.7,4.32,30.08,8.49,14.64,4,29.93,7.79,8.6,2.15,17.4,4.24,6.18,1.5,12.35,2.92,14.88,3.45,29.61,6.49,39,8.08,76.71,13.58"/><path class="cls-3" d="M0,718.44C40.73,754,87.4,781.9,140.66,795.69c36.88,9.55,72.42,8.52,107.16-.58h0q11.28-3,22.47-7,11.77-4.26,23.43-9.68a386.43,386.43,0,0,0,45.45-25.11l0,0q11.3-7.2,22.55-15.27t22.5-16.86q11.28-8.82,22.54-18.33t22.5-19.59h0q11.28-10.08,22.6-20.7t22.69-21.64q11.41-11,22.88-22.45t23.09-23.12q11.65-11.73,23.38-23.64t23.77-24q12-12.15,24.2-24.29t24.78-24.42q12.7-12.4,25.62-24.6t26.23-24.25Q682,437.9,695.74,426.13q14-12,28.34-23.5,14.7-11.76,29.73-22.83,15.5-11.4,31.38-21.91c72.43-47.86,150.95-80.6,238.66-83.58,72-2.44,129.83,10.85,183.2,33.66q11.73,5,23.2,10.63Q1241.4,324,1252.38,330c15.89,8.57,31.63,17.86,47.49,27.71q11.91,7.38,23.94,15.17h0q12.74,8.2,25.74,16.8h0q13.11,8.59,26.61,17.5t27.52,17.92q13.88,9,28.4,18,14.27,8.88,29.25,17.79,14.6,8.67,30,17.28,14.9,8.32,30.62,16.55h0q15.1,7.86,31.07,15.6,15.27,7.38,31.42,14.57,15.33,6.84,31.53,13.46,15.39,6.28,31.59,12.34,15.36,5.75,31.52,11.25,15.33,5.24,31.41,10.21,15.24,4.74,31.2,9.23,15.16,4.27,31,8.31,6.11,1.56,12.3,3.08,9.26,2.29,18.46,4.41,15.36,3.55,30.56,6.64c29.17,5.94,57.85,10.65,85.93,14.31"/><path class="cls-3" d="M0,757.16c33.51,31,71.75,54.38,115.35,65.28,38.57,9.64,75.81,5.7,112.38-8.29q10.65-4.06,21.23-9.25a347.18,347.18,0,0,0,44.77-26.5q10.89-7.51,21.76-16t21.67-17.67q10.8-9.22,21.6-19.18h0q10.78-10,21.59-20.54T402,683.36q10.79-11.1,21.65-22.68t21.76-23.5q10.9-11.94,21.91-24.21t22.13-24.75L511.82,563q11.32-12.72,22.76-25.49t23.22-25.68q11.78-12.93,23.74-25.75,12.16-13,24.53-25.86t25.18-25.53q12.93-12.86,26.12-25.26,13.5-12.7,27.26-24.83,14.16-12.48,28.64-24.23,15-12.15,30.29-23.42h0c75.6-55.44,158-93.25,250.67-95.49,74.86-1.81,134.6,16.42,190.22,46.15Q1196.36,294,1208,301c14.9,8.94,29.61,18.65,44.36,28.95q11.92,8.32,23.94,17.15t24.14,18h0q12.65,9.54,25.6,19.42h0q13.08,10,26.58,20.17h0q13.53,10.21,27.62,20.61h0q14,10.31,28.7,20.68,14.49,10.22,29.73,20.41,14.93,10,30.67,19.81,15.3,9.57,31.49,18.94,15.58,9,32.09,17.83,15.82,8.4,32.54,16.55h0q15.95,7.74,32.77,15.2,16,7.06,32.87,13.81,16,6.4,32.8,12.46,15.93,5.75,32.65,11.17,15.84,5.13,32.42,10,15.74,4.56,32.15,8.81l7.59,1.94q12.17,3.09,24.25,5.86,15.87,3.64,31.57,6.76c32.43,6.46,64.29,11.3,95.4,14.78"/><path class="cls-3" d="M0,798.3C26.4,823,56.26,841,90.05,849.19c40.37,9.61,79.46,1.78,118.09-18.44A314.59,314.59,0,0,0,249,804.9q10.68-7.87,21.34-16.82,10.5-8.76,21-18.48t20.83-20q10.35-10.34,20.73-21.4t20.69-22.61q10.32-11.53,20.69-23.62T395,657.46q10.38-12.4,20.82-25.16t21-25.74q10.51-13,21.15-26.17T479.3,553.9q10.8-13.33,21.76-26.71t22.17-26.82q11.24-13.49,22.68-26.85,11.6-13.54,23.39-26.87t24.05-26.59q12.36-13.38,25-26.33,12.9-13.25,26.06-25.93,13.54-13.07,27.39-25.41,14.32-12.79,29-24.71c79-64.09,165.76-107.76,263.86-109,77.33-1.28,138.72,22.16,196.44,59.1,15.84,10.14,31.41,21.29,47,33.24q11.12,8.53,22.23,17.59,11.64,9.45,23.4,19.38h0q11.92,10,24,20.48h0L1303,380.28q13,11.18,26.41,22.59h0q13.5,11.44,27.57,23h0q14.07,11.57,28.79,23.13t30,22.84Q1431,483.05,1447,494.08q15.64,10.76,32.18,21.26,16,10.17,33,20,16.35,9.46,33.63,18.57,16.53,8.67,34,17,16.64,7.88,34.18,15.34,16.63,7.06,34.13,13.71,16.59,6.29,34,12.16,16.46,5.55,33.7,10.68,16.32,4.86,33.37,9.33l3.32.86q14.91,3.87,29.68,7.22,16.39,3.75,32.63,6.89c35.82,7,71,11.85,105.19,15"/><path class="cls-3" d="M0,841.54c19.31,16.92,40.81,28.93,64.75,34.4,48.81,11.14,96.06-7.6,143.39-45.19q9.8-7.79,19.59-16.6,10-9,20.09-19h0q10-9.93,20-20.73t19.87-22.18q9.87-11.36,19.79-23.41t19.76-24.46Q337,691.93,347,679t19.8-26q9.87-13.12,19.86-26.58t20-27l20.19-27.33q10.13-13.73,20.41-27.54T468,516.86q10.47-13.89,21.12-27.71t21.59-27.68q11-13.92,22.23-27.63t22.88-27.38q11.75-13.77,23.73-27.13,12.25-13.65,24.76-26.78,12.87-13.5,26-26.34,13.62-13.29,27.57-25.76C740.27,226.81,831.34,176.37,935,175.84c90.22-.46,159,37,226,91.93q11.72,9.6,23.39,19.87,11.26,9.89,22.59,20.33,11.63,10.68,23.38,21.84h0q11.88,11.25,24,22.88,12.4,11.88,25.17,24.08,12.92,12.32,26.27,24.82t27.48,25.24q14.06,12.69,28.79,25.35t30.15,25.08q15.32,12.35,31.49,24.46,15.92,11.88,32.75,23.47,16.43,11.28,33.82,22.16h0q16.85,10.51,34.66,20.57,17.13,9.65,35.24,18.78,17.28,8.73,35.52,16.92,17.32,7.77,35.57,15h0q17.28,6.86,35.41,13.2,17.15,6,35.11,11.46,16.8,5.12,34.34,9.76l.38.1q17.21,4.55,34.24,8.38t33.79,7a1013.11,1013.11,0,0,0,115.36,15"/></g></svg>
\ No newline at end of file
diff --git a/oxAuth/Server/src/main/webapp/img/buttons_bg.jpg b/oxAuth/Server/src/main/webapp/img/buttons_bg.jpg
new file mode 100644
index 0000000000000000000000000000000000000000..3d9ad46e11cfe4699d69e00a5d785c680199fc7b
GIT binary patch
literal 14804
zcmeGjX>c3W`K@HjM;s@P9SBFMP%fadwWsy~H`qE71Lm-ubJ_t}TFVNOR?)6(C!G#=
zY3Y;>g!@M)34u~de?Yn085+tx(-}gc1$rg4(3BQP2uFZ|`h9P;vIGtRr|qcJYwxG;
zeeZkU`@Zje@4emk_7$Hm?jmzfi}pnc<6_7P_#?&LZZk5G8X=^=pPWPpX(SEIJmLn7
zfj`0=P3kF5$S`wE8DGzwP~vd`4@Ur!W8uy-JjFWzzw+`FsVkM;4!=*6=6_yD$kMsa
zZ%@J)*1czs8kS*>8aZ!hQ1q@&WfR7@NqClHHTdTRFDGge3;!U3xVJENy~QFSTU=%N
z%ocYU$GY+IFz%9$o=Q8I<0kE3mQ>mSJ}K$Tbh*m1UEQ`g^cH%={w-Ge5^3nm*GLPs
z>D*91aTQ-Dtu#dv7h=ic@5rU3rLnQGsj;Q0sikdJ^Q^Y{b6Q&F%wN#nKEJ(vL0b#G
zN<Vhu<B*v>Yu4=6*>hW4=XSKVwss(B?XZiqeHH=5Uy!y&(m@zE<0Gy%#@)sg{{Ut)
z#YdQBpk+NnFHjgSHv~#uy{DnEsd*NJLv<!YTy7_GE@A2zx2w)o-{5Jicee<T+2*c0
zejZofb55+?x8Wk*({a_-J9`%{nm@2(SP=6U?+i68zIt%)?tO7nI%3;hmn;cy9!f+W
zzS#;M`OM0f^f!Nc=`Vj>`1Ahg(rdO~cK5Z9Jo}foZn@{t=U#q$)yUYluDkW#$A0t5
zJM!|?$??mt|KWX)|Msu%wh@;Lw5_8$HF)YJs>1QyygJZegRi}wzv!wC)L_TJ&b`8-
z;obR*uMQ2)kDKDY#U50kVTttcGoZxHM<yaGgO>hMS%rgZuyj&|;)|rkP3vqU%gF2U
z*FSipNR;h&Z0b8PGpG3UTi;)Q`YVezKU*Zl7mBYn2PeZ`=wgY|+t*)*!AD5LvCx^Y
zKT+CZN}Ic9-`DmBb}ZPs?HkFTJeqj!LCkZ%X6Kax)8+iqa!Y7lD}@v+yU>>Cev>Af
z?e2};i1N>-RMcP{O&?WGA4lujPt#2l0$^w<=*oDZEc;?8@7px7f&@lJASVqFIv`w3
ziL&*^o5~cP($@iWcqB^coTN~h2Ov#I4m#PCmwOLpPnlIboIL7_MwCsSgd6O1ooe4?
zG1Rt;Kzp4Bpm7U;HpJR@0XPP+FCn%Vv8B5J1kMA%A*LdBGGd|g07P~H=tt}<#8xA=
z7O@y&am3C?EQ449v3Xkn9E)HH0v3UWAdKKl1ZxlsBS>!nzkGz)7=or<r4~O95`+$T
zb_5)aNp~LryCpD5V5Fc{LmLm10<qxFAX#FPb0M89<so0?<wOJ05O)UTGEXIgL&Q)j
z(X)kg8dBH?Ji|sIn=sEBULT*#ABbBVq-b{;f_WotWKk7*ouQ9dmFZr~$duAlje+E-
zlaIA|%ycTQo2$}in2=(s>ZzxBK%NJ815NaWD`Yn$^F|?8Me-Q=R5F#-vxN+lX^9M?
z^s^`p(z9a)%UG^w^?c0I6F?wC8*_Szx!Gn$3g+}>l3w`vPuuS<<kLfuHA7HUh4ZT^
z{bo|HqIhCyYbchiqP52Lbb3giu=>muL;YtA8%7!hHag@g=B802zo{pkN;;mJV;jH1
zAw$WAggz20q%A<3#`L^31^X(8T+KdfI2kh1M!v$iZMOX0<>d@0Le4a@=<6oS$emTN
zOx+0#%xg|VAbo<`GHh57P@kaBf+imQI6ECXPC#L#1#Z`}y%e{5TN}k0dmOE^dk6;f
zd9)Pr6W3Y*=tR7c1M|-YdN)}B^YzRF$jk%CEALG20mP2M;~}01SqV49At7@}4@toA
zK1_7tg+Lnx9EW?8VlefR_Cs)ZNr(&*5e3p3=4=6!FfEx_Hq|!}9dPJ9*)R^byWsxh
zu#c}Eq$fI9*&9hT-<O?okR}zA1#-~=dfiX*Uq&g>{Bn2#FASf$>OxG?3j|L++&hx!
zv=TL|#&ysq?@S}M6f>H4^uZ~?squ_ZwnA_0%L4|T%<N|fD2uc?Td9y^Gb8yFU^vlL
z_`x2D={R7|#0~ILM%$>k`^2w}T2@XA1hQsV3}2tR;zlMg5z7U*E;c|;SvHZ2#n0C*
z@30Q@P`B@mpFQOBrV`!0)lxs(p9|@usTG^@`rxKBhvJ*gkE;pavafninb0OOxr}bb
zyc3yp*3>4teN?yxIFbWCFJ-aL@AlDG8t<C^v%MiBuY1KVzKidSvq8Zt30;E32YJ!&
z<ylq<uyR0PJ2^$;c#TuMrOOBP<r5>?KsZ{e4N~2{l3C;9<6YxImyu5fI8{{xEFa+c
zPT=S?H)gHaL}%7q=tv0bW;~zDSt%pyMTs$ZR<OE#psQ^}CRY|arMDc$M7+$GgXxe~
zo`?tZw4TwkmI<Ea&;e9v&Usla7pW3m&Zf=b6awe=_fK8GX}L_MT!m>x#=wkEYiARu
zw!naH8ijmZkBotu3!TbLYe1j$XO(tNW!1%jy<FHzjU1#b=2RJ_!=k~|T4GL_HK&F0
zddz~^7@i26=$U-?2@ML~{#ZPf#U%hVp~SC;;Ss6ZhjG-&@|`?C#051@&_r>a&DC!t
zQX?B3E)L?1?c{|aXRY8XEU&R_i4`I^5wl{4WKP7j5hI_8f%j9HSW*wH&*@2@x7?^2
zeR_bJK{J8M?(f(7vZfWw#`V5%w-40sN~IDSD@3AEK?$k7;Yc{jaY`^4RVB6uh=Lm7
zRHtm%h!-%%uxz0K1tnIIq7g16g`!+I1O-Lt1igG%l!acA4M|Qx`;ju1o`wKyNDazE
zwK42E-9FCerNlKDQ0anAl)?2Z8{iO@^4A_Be=>VzHU&Q9OXbdlddBo{Dyf@Dm4bd=
zlHpe1R{bzw_<31`8)%B?mjo7W4sf6=f}dA|eu3ru0;j;O`XwH2fd?AMky*HbSH`pi
z`EU!Oz@N-TS*b@>1(^#&B|=D2L^c}aSydLJA}1<7FGi_$c4|UTuL-B15lqJylNoC(
zGI;O;&7m<c2%{_nK~RzeXcJ1Wwo(WxLD4U=YLKN6^p`o_hCHR%Pyo8b**u~jOUV?1
ztzZXG00Ko+B$h(36L7E+AoxWVz-tJBAE1g*0ZxEemjFIQh_wjdTZB*+AT0}?MPCRM
zg0_I$6q(`*LKXA`NO@EVaG6KC46OhV+Dhb9kckk>stT4>735JB<WW`1qjD5SX)2Yb
zs#v2+WvZwNtoQ}}(4KyX0e{dh`xU?H2iI_%pX2?U;O9g?v@bAmvLAwh2VMvfh!6-K
z3E~LC03rqg;be~M<&}^ka$%KIdK6ZXBT`5Xa$Ho9q)1N)XAn9lYb#PFj7=L$bJC!`
zp@gMVUOEnIvAEqI%-EQo@Rf+EDf&Dg=?w~eC?bpDUfSoun_-TRh!AkSEGIi<$47PO
zbGW>TLl&nF!KfyP8W(hiEW2LQ7_r7<dA%nI9d)X4v%FO52#$}&vPm7L`hYJmeJi40
z1S<q~`c_CV$*48a76Lb2D@2%qG)b-vEBNVK0qg&)P#abVhh>FOBW)obh7~YI@wL$w
z@?lt^YLZeDRz%>TCoGGs-1~Xw3sK`?UreeAD}-POX1kuC7zu}P)>GjrOBEHE`#DkW
ziHOeRR6XnQ><}ku0*th5ZCD{6mK9Qs^b6$+VTF1aR>&I9)kZ}1Oy3HTt(kt&dl**m
z8ebdFv_fRMR>&HwXhLm_v_X#N1)1lh(B~a#Wld5wp*H$Oke{v<u#6~aY;BCR@S-=(
zwxCwj$kSj%2u8!9NSKwwVVt{rVeugp48nUetma19gS@fw9DQSj=cwA~-4XE%VTCk(
zD?~-(YvYYI0_&X9jVKW!sy5z|BJ%XDkVH+a5i69#utKSo-W`oZBA>pJZZDU8?EL~Z
z0&p2e<7#8pi-H;d`&O{*p>{P6-WKoyCtDl+g5{=b1$1rLRQj((RNTnoH!qVb&be4V
z20O8O-t6{`<c*9smdnAnMRW%zFqTb}HiOGsRbI>RR_tLNbU`?w=V5QAys%waO<4!;
zzq7(auA{U3|3Ld3+KNN&03NKbls<O;H^0ROaD&|5-Uxhr=fh5i?MR4XaM3+vZK_?4
z&(eEfLs?6F{+&&`Qu_nC>FjJ`j8ii!z6)?j@Ua1+<?kH6>U@nb^E=~#84t{OV8#P8
z9+>gK|B(kKzm(Lo@Xf?Hd<R)^VCz);-jW{JvX4W3Cg_^H+~upHBpy$4l`}poQgL7l
zPB>K`*xCkadR%bmsC+dvdg|+%+|6*54GwG(j~nVQXF`^{!PUq#k>*)*iHmW=ku5iB
z<nlBX7&y$;RzJ^kd_%jBG;$q1{KEN7=ky*CTO=Ggu;HQw!&fa1ZM}2v5;5O=)Q+9f
z(%pl>i}zi<Ej(mKqVn?i2`g8vKKibQpLyxc#3k0|OZA(7`paMc`9x)8f8iumThVvg
znzieaqp9^{;}aV<UG}ZZzx|ynuDSNQ>u<R6rtP=f`or6Pbo<@++<V{s4?OtDqmMoQ
z#FI}w``mAS`}_+p{^jLY{<`OHufFy6JMSKN?|m>IkC@fD>+9<3Jf8XtsN4oe%<4H0
z@wNAy)4<0%HZ=BLwD79=16zlW5Ss2>v}0!|zxT-97mIMxY(YG{Z`)l<q@#v{k;Kww
z^ODU`3-w*87gouaUPcw(f8x>CY`+`Nnq6xjHalVY>Jg=U-fZ%)*@`uz6W_k!w)>xW
ze$N55Z*6MhcW(UA15dv2xA#ucPFuHr(-k+}{@_zDzWRRknXng=2d;a&NPh6+u?zM@
zZYq*j|CC>TS@NR;-~I6A3x4%X_rL|Ge|YZo=N6y-eZvQLEQ5n$KVN$1ecyZMqd(qw
j+uw^j|FHSP$BN`vMe_dR|LA-Fp`9OnQ@HY>;tT%*bd@Nq

literal 0
HcmV?d00001

diff --git a/oxAuth/Server/src/main/webapp/img/close.png b/oxAuth/Server/src/main/webapp/img/close.png
new file mode 100644
index 0000000000000000000000000000000000000000..ea3fe904545cbcfa624b751d3d8d7dd497902aec
GIT binary patch
literal 322
zcmeAS@N?(olHy`uVBq!ia0vp^d_XM3!2~3q*j1zfDajJoh?3y^w370~qErUQl>DSr
z1<%~X^wgl##FWaylc_c!wVp1HAr-fh{`~)M&s^Bh*_h!l@6yj;Nk2KaiF?X8RXEuH
zD=tuZyMN!4`sm*O>U@r_4Ll0s8XQxYm^WOCo$cTxz!JzC&hD5k#vE$cG^PI634x~v
zKRi*qqGVSmz$wzgAX(WasokKWY_g%@m64Lbs)r2A_)bQ9I7M7t*mmHuJI{Q(1sbeH
zjZH5aS$URSGHLm}z{|dgB~g*1Oxxg((V@UUjD@y$rW=PDWxO;@{La2<ccYt4ZHEZ!
zgoZEMe*FKz7{YRbp{TLZDxWJz#Noiz?*I06Kl*tZVk(|EE>2JoR&;1!WN><Yvf*>$
S<)uLXGI+ZBxvX<aXaWH6i+MKy

literal 0
HcmV?d00001

diff --git a/oxAuth/Server/src/main/webapp/img/email-ver.png b/oxAuth/Server/src/main/webapp/img/email-ver.png
new file mode 100644
index 0000000000000000000000000000000000000000..14c2c85f44376c48ab34be7fd85b85f0e2838a19
GIT binary patch
literal 41595
zcmeFacU)6V(=dEO@4ZP4U69^8NG~Et?+77u5=iJpKt&W$1OybMC<p=qB25qh1w{ox
zdR0)QOHq2wdlGEdeP7S>+`s32zrVigNcPOm%+Aiv&Th74#SCLU(eLPldbtCDu`wVF
z000R<450(?K?nl=10bvbAr1xrR|wlL*c)>E2M->|BME>Zzy*F#5GfqY0K&=fUI4+5
zv=6{{KR~Ui0RVzDKi?<akgjm3sV6cJiS|VLL#3p|q@l;Hy%2855VQ~=B_SoLBq^mN
zAqka`Qj$?rl92|b004d-<hOo#c)#-4&BOl*LqN@O4-o|a2QSf|Wr6VgE(=8X&$8e_
ze#wx+`z4#M`G-7x@Qsy?dt-(%O8^C~6wX@400grPP~l>LTMU*DGX`7)C`d?1NJ%J2
zNhxT_$;fFLsVOL^8CmG*8R_X+Xen^dkJnM;Uqc8bIXNX2B@Go74FeSw6$3V)VmL}d
z`=1EFv;eduKpt=hAHoCR(L(TPA(#(fA;~ap5Oq*XLI~~w6~;dJ00fVKkcgOsl#Cp7
zfWHzU03QBNA`Ji`fZ*d1;1LoNkr3ijNP|RLd;)GdNy3w7T<CcMVx@=}lJ8b(^71j7
zJ$IFsL7nf>BIZvqU;XqAhL&Zz_xOT<cB+M&&Wrp&Ip$u=&+zY67hC&+rq*-?Zx+N=
zr?vHeS-)TNa$tJH%02i}dSUIW!I@2YJ!_AU_>7{u_MzD=S^y6Z)Rq9J6EP8?EKUV(
zNjd^hg8&|SLaEqf2CN3p&3aa)`CLDt&ZlUZGs4g^-}s5J3J?p(zUT#&$Y*xbv6Ksh
zfBvPyf31PwZxt}300llSPg+17*sw@BWo9-n(p0gLk+*I}Y|&MEY?*F!9RB6pYT>iZ
zrNbAU7@%En!Q{|3Y0rD*fF~s<o4+%9Ds4j$1BkRA)Px)+8({$UiemL0_ldu9@PZs;
z7{JdF0~DBnQcf)B9op6%jy}Zz`UOQr257GB=_msX&>{I3rhm`sgvs|CYieol)zt6V
zXDgQkE*B?l=47WjIZ6|5C@A3XB_-uyfG?{2a=iw8Hw#h>_=WgV3=9qUQp_>$H!RaO
z@*i?ud5;dyx8rbEjlSpeL{1^0nCj4^WD{XmnvMaE<!)blcUYsovsrL+hcewcXw&V>
z@Z#h0;JuY|<>;iOgN@u<nI;JnbJ1rSW*z5iHdIao*d}>J*mM}RJ}>Jk9;=mH+C62B
z0lq!l?K#XPzyRJ82Ye|xx`rdW#qS^OZk>5bFRwBwRT7tofA;YZ-O2S2{<2^1sT(a#
ztk^Yg4@P-n0Fw)cQO&ysIvC({{-X4H)G!~Vc0)HPB|B-~H=Ov;@xx&d*RC=5p@>?=
zYYZUzG4jF#Vho`A(0SkUurm673kFb{I1tD<l!>-!?wyRzMjoaboF=wvEh^e@Xk?E}
z&N{8US;bwsOh6n_yC>hf(lat&l45N)@y&AMZk~+ud0>**Mt$8Zdf!K_I=bjN22eXH
zgGoa3Ms(Sib<Q%qGwlI>@UIn8cVAZ5zo^^2aKIn&%#ds6YBUC5?Jnb*Uybgr!vF>%
z;$`Yq4e<lDu&QE5tu8OMR8O&hgJTuJ-(WT?-TSW!iax{=c(uFDg|5w6t1KbEka-CO
zrt+m^fE8wz0@fe~!1Qcbc0?yO@9Vi^0H@sjJ+lRC(L*WF!W_2`!lT!g41~D0%P>Hj
zyWl<?1MF<R94t55w*rkPO^;>U-*a6w!^t}Gh78q>q(w(nkvpeM#kzR()iv|ZU1?BP
zow#jA5L1gz<bg}^($<T8JZ&Y%uRES)YYbb<(bD@|-#Jm1Yei*g%}NFD$Mbx{DD(Bh
z`paN@rlIwyF_tF}J3AjPcIm>)o2GWUCZqWiIp2;QXfuo@ukMfEX=awU$rIknbzXJq
z#{h{+f~T01ry8mE7Aj4KmQz0W1j$=Cu3z><+aI`cJl!7@Bju}EjwYi0=5!YM;#|_h
z$qlFMezvFN+!=b@MdRva_Rp5AhOSqxl)oCYzZU$c!`EwcQjg7n*?A*mF~4IZZeX1I
z{b-fKP!%d#{=;F`;kdqG6SAhcBhrY|mgH0fO4%nMIYK7IK(z^L5OqxNFZ)LSUz=B<
z*-mNYYa&z#I^$;KMeLXtr97@ai2>F=uemzRGAq7Z2@pfyfp-NAbfc4c(dik3r)E7i
z8ndpXTdio`h>)tPJIrpn-#ljVs1!c(WPMoRsUM6Ja>eHk>k8`nR>sJ|5OGeo$j&S7
z0vB-v?=A)qx|7WJG^ca}y-;WPGT2>Lbop)pab_-T^TN)`f#6#7TU*YeeoiVi=LwI)
zn}%KeYW;58VXwTyD%(~nm=6}aUKrioP|J%RkF03wJ~*B`uzOy;1%9v@J+J+6lgoRe
zz8wQFxbA^|6~0!SU+EZcFrRC_`>eZ&p85E$t26A~wX>^U(Z%Z@_O5yyx<}bBU5;KF
zi(W6$>_*n4tCPPuenpRuk7`2xU=i#jE1F&?so8hj8SG-~DyYey(8|UD1QRnDU~=ee
zJ^Nd=qQE<&Bf6@$Idn7PYZE<2;E5ufr8x(KyT<E_2n=A@j>G^L9Jx*}JX0?*Up)J9
zER)xtRk3P4%J2h|_0zSGB0Xb~P^HL+1-wgN?s%jqg`3dw?v6Vbj2ZByW{G3^{$JHI
z#Ui1NEfYN?O|@;G^~``;rTxQs#hSW#rK`YpdOfLc<jvsa9R(WTb}Ze)^_3kx`a`vf
z-P)43-KR0Y%>ebO1q@K?ow#50W_lF^sFU{%aqXIz4~Bnu#=EE*+dBB-P08J~>nr}e
zA6wzZAw5+dpoQZ1F~Edvu8ms7K$7Xg2fnKfmMscP((@+mhkY2J@BVyLC^Tp`HIKns
zaDU_ehF3<QQ(Cmy!eGN4^7y$&cle&<uI6Mtd-oU=b^f4x)*RXXu=)8$bWczrQRGg2
zSlcb#`|KC?lkQHXC+W=9JHk%%6pffeC&E}Iiw;YMqA$3PHZQ=?sD(H4%vMTH*7Kx-
zA1oGT%vx06VF2CsXsPO#p~oDh#q$oF-ZHqk&bzRW9H#s2nrv|Go<LUY)D_W1XUs<j
zT*%n=I!5|VS5ob=^IAKo3uF6YHj<h6*fa9Gd&i649a9uln^jP3%0G5?*Cb>+B6`uX
z?0Q}Q<EDvZol6V5rzwMMZ|&<5P3&rJAs)9cRX(}qr|h@Kb~^(D*gJ5nk0rq#)L$y~
z@%LHuKi|h4V#}Z`zUVmYv|=y;fBS}aF7w-ghq-xkn!C^3x$bofyBn-tgSY+B$50*6
zv=>DzdR)ulsBra_;REM4&)XirZIgn6ZCb{|kGH*vvM@DyFe+SM&Gg0Ir`ZIXp?3vn
z%ECAk!A&Q5GmpDgaNjqQ7k9m@ICqg^8&m?yYqmPfpWGF@>%P{7-x?kY&&^*)91v|8
z2^P+d_4umig$A1#2VekglSP(j?P#rf3~&zvG}QGS##yikE;8EIF9*OwtiGO0S@9o!
z^~82hBcdt&w4<e?^TFV&SKy!_+YXZN`AU}-FR?v-d4Fl8bfkVKv`+fLrKnQ6sU+C#
z*4o;q^2%#bCcTHLeFsb!U}mu7#col=W6$o_QSPOponf^_s1CwF>!|4A`gGBLWbf0&
zgNdt`m)6c@fWsV2|No=ba-ZC1LpTb}Hfpa<OXkH_)c##^;%d~B+GFRGKbT+XHKKYq
zF{(2^@%_5sew6cupZ$cBl5*vmp2dT6@y9QHcr)h7W;eB;<%8V$dT2L$yuRPratYFP
zf2lHW)#&sJD&ZMl5MB;iOdXcFL3a7pEezn%w&mztboR_Z+2R3wX^(@V>{c~tKvdcI
ze1y8{So5uly<jn;vW?E1%Cv>C`kRk+7@l9ErY~w}KNpdHdv|ZpAXkg|G=D7%26zsR
z({exf91w}`)JD%+JPCRf8N^{<ztdzda*D_RmUylEl6qHk*lcOT!i6l$bgQAcnaVCt
z>Cb~juiiA%?S7ZcStu`fhxAkm(~h{c((O8@KD%Xy0Zv{$^vm6~6yG@*Y<};G0kS*}
z(~RQVd=8usNFS<wrO@xr=y@2WF1}?im#ALOl2fRFkav7J>{r%u=~-;+R(uoaeCIKM
zCI;vkZlJ1ouQuk@(fX#2SfQpYDDBx2{F+O;b+V&LSr@YYa5vX6XQLy!`(qV!m*ug7
zvM&bcEspM9t~<QS5bfHE0rJmF0?4uhw&ruwBr4js^&vw3tKa<hAFm&#ASxYieoj!T
z)pZwrSd)|d_|=E&Gs7!YZpv&A!YSS$I+dm5r>1Q!n{v062NuFZ%ognJ<5IJ(#=IY_
z65b*sg}Lcc8@HCy`$gEj%W&U~UJb3iyDt7PJL2I6k!xl^Q`hS%p6B)lWyE83L3>fw
z%{$F|0l_4(Ar%+oShS8$UCDs-nYzMX^v^$&W-FY^l-zn6aV>oWcJ<>P2isE3@~+9b
z0YARfIZL@GysfQT@!rvxf&WJyiyakkcf8D(X6<yiv{E>@6cIhNmf6@{wl30iEp^_G
z^45xa-kWRe>H*)@#gGT;t3LfV9tTu@FAi2S_Ny(rjArL!7}4EetJx{HVs8_+GgKFe
zpKH=cS==q^XJd6l8dfV-@iHxItjvEo7xJAAdC*YbnUgdS;4ABV#fM$?MlaYgj@7JG
z9A^3r?uKCiW@>T%PMFMDH?fO%7YPef(9q`uT=;KQ9o5z57(RbM%;Cckyw20Q{ZHck
zUr4&8zfb;t#ix`-LD5l5=*g|b4YA;&ExU>J+NWzLyg$rOoC(j-x=@ufuJp8;W>5dH
zd+zpu-wFn}>X>0P&%z;`q(_za2EYH&!dCLm;K<H?fyh$P)#&tXcLRMRiOKlo!#m9@
zXV%rOUh7%Cr0TTiy!`sfH75+f^`)|Ta=6;eK!uE9NtXwz3kBpL;2>5g8Z-Fc*2~6!
zFnpymn-?(P7fW$V0RclZvqkzv`N5BA8$O(Mv&>CjueGvq7Iu6U9ee6LGd#HB(a<h>
zf2MgV_3&GBMR4=x3&SYx_z2d6$|v~5)p4R0UWZ<}16;|*{36*u2H8jBz#*KT@6-xs
zqwRhUv!$cI9lH}r$%m~GzM^g=^`X<vJxWng@<n$7t{H@R6x*WjF9#)M$bQ}5I+43Q
z6NNn3ciwZu0P{K>Ic5eXCK%v4auEFPeu)8UlMZkGB@WI7?=y?t^|>k>F}9xBtJg+w
zb5kLAig<A*sJw_Mp-S{@#^XC4&Ax|waaqR>3Y67fnG7i*qL>rI5f$@&2<72#2ky3K
zQR~POM`h}wD94t33ZO#>-W@vAA>!lvc<brf_>RNY_Tc<>(p>e1pp3jU>+V9y>n+7}
zj#`-V*6l;)JyM|=^>3ZKANIDJH{XDr!<Fc%tc~Wa%IKw3P&sR{6vObOee}7y!%e}1
z$14ZIm4}rFZVMAOCki&C4fePNDh%RsPgR|pM`M5hkGm859Zk+*XfyM5UG+6a3~;9T
z1`qdpp3LW8WSf&|f6YXHPHe#WsCjAN__@+PRCus{CaN^Zgg5y~gww>d)k=hAb&C1q
zfe$!VvYu0<$}cuuvypW2^A#(6m2~gmE7khLgI!<SoM+C@wv{mePg4SqdARRE&lbVW
z{iVf$y@_?uxXDI?rEM4>b7enaSFq1xIq8YO`XY{Jdt#vC+m-%sB4~@OygJdd<FJkq
zKaIutt5Ncm>xWa0`x6_C;tz8jl;Q`KOM|`qScbneBpP1WjL%l}@k84!`V9x4n~uKq
ztOF;Nf4*u<Z=BA2t**>^g=_6c&RflM;N+gC>GJv_SEkxzZePU_Qw7Kr-4k-C6Xa~(
zR5-hF=WAr=Tdt(ufRAGii<ve^5#<pb*(Q<okfh$xmEF-z%0y6QK?B3nDF#AdgEBM&
zgPY*gun04PSz?#_z4#_ACIKjD8W<Ds<JN&_aN!>Tj;4e~K#qX{mVUIzM(&UDLIj!w
z1^NdCf=KLYAz+FQG<QWJeQ_KHh(I_T5#)y@U}5ZA%NK=>Q{&Q_dxc^-G`#|`X|UuY
znQ+u;7eBa#j*SI~Vgs}Q7XSeu!4DKL25bNYKpv0)VKe{-P=FU0qQRIc4n_chI4oA!
zQ6{D+B+}g+9vI|r;_3|p(G)mVBq-1wOlA(U2LeHWKQ;wG=KqTuj6tv{P2WJok5W*$
z26_1gdLeKkK@usBTg%wi=*WV~SbjWFF!*gHx<9OB;veXRM4&-BGnP}!KM?V=;Gkh#
zQNJQ)9%$oV5iJx#>vseZ_&ajS)ffGXa@r#>_*X>7&sY0b1hoBc(V8$Hj~|A>6%PQ+
z^fa|VZLll9fSDT<>V^z*)j&>Sqqs*8h4?p|rtiP=X`<XLED?dayk@>wfB5xi`no~?
z4sV9`4aDJ1Lwz-Df3cGV!(o9)l(tKt3$_F}B~3j{(LX&23uBqVH&$)n6x{tt%)ex7
z0WK{6UAE>h-y^&!3id~~G%ys>-`W!nRxaq(UI>q$=A*(A%s`zqk%56oKVKxm1Dh@Q
zQ2eA|Rrmu>`4eyE<>C1!f&3={)a@5Pwte9*;RMnEZr~fc{Ql#OYkLAX8Wk?Y1?n-t
zk-t&mqS&Q&P8=t;eFC^;Y+M|F4HqZHg<t@|r2?1Xu@BjicVp2w4K{FCeL&pZ9i;ez
zA-HgkrT)O&y`A|BBZb4;f#FXcSsVuI`9Cl?ncH9-z_u*R-#++rSn}VJF#k6+oGq}T
z!Nz!0Is)uA#gS!>EGL1B<3Vs`C&22B<vpU2;9@^oFrEfT06#xyoLC5F;UivFY!u%S
z435f;jRLq$h+Pn10L$))>$u>6C=iV6n4lm81-mpPNDBj@<A5X}giVA^`7h6(I8ffN
z&5d7de=__;{!knnMFja`dsS@ViCmFE2siY<w0u~gBuK+L5P)qizkCvm|BFupn!kMi
zNDZ^!u8l1!5!%-a21i@@p29Xx$Y1gy#L+-B9rz)}MGUn6$cxwmg$(ll3yKJd^78Qd
z)$i(<W2KwmaG(rIm!LqT9vlHjxdg(oO$D$B^Z)r(Lw3ZB#b7B0ejZTp_5XGG@q<vl
zKfbVjR0`Jkf5jN1J$`<v9q|yk_y$_Ic>INn3I+$$!9xQL(E1j}r+#*UBtOxAVJ7uN
zqQX!5dU^b`6!lTz^?#zlk`ueZ-CcrkT{3Af92NLC>{dU~e`P0k_0U54B2j-Bm-a}$
zrrs|Cm;^YDL||=A8i@1<hXZK%pM4&gFW5Q$8<xTq*O~qso*b-V&wpjdwddp5jKJ@1
z(4Ey+aqv+K#BMkqxiBG)56c12je!By#&^I^9tidW5WW}?-wd#T+jIYH-~F?F_s{m-
zKihZzY~TH}eW&OC&-UFv+jsxLF8Dv&cmHhP{j+`dAD$WcXZ!A-?Yn=r@BZ1o!yZ5T
zyYbaO+jswL-~F?F_rKe|J6iYR2C$Dc_`$8mQUfQ!O#>w03NA8Z_rkEt&Vk?ujf4C_
zHirL!0}4oiyJ}M4ax`}747Zkcw5ClAkbqf$f0$2Hy`F)A{z~HF2(*|B_7J}q4CyBx
z>f$dhDJCHfsHlhfyTE+lflyaCxO%I~v+}f=2kPaf%402SEMe@g1^4vQ4@bex!%thl
z!hK+hZanI0P?b=nP(Ob^c%Tb3)Xx`zRti<+!3kFaVJupl2a00}^ik!(9kYkp7@I=1
zkSI7*PE0}+CLtjQl~)v#l#`K{l@@_we?A~CAtf#;D=I0eBrByPDGmMc@PN6Y+}xGS
zv~_>v1;$i)eiSMsBt$GkS`3Nu5SLU`RK&`Vk`e_uMA2c0K$lQa1e*7!1Z_APhVsJg
z=RvU&!M&=WKvf=4)1xBz`Tr98x3>Dp=mz`6=MOF+<1%-HiNk&2esDw}8nmk<w)i-q
z{y%>(@hiz+ME@e=D&uD&(6q+Jf1luIz4`h5$^spz6ATvPzpG_5b~#ww430(yp<r;G
zU{Fn7Y-avSS}3>+xN~O#?%MsVsNdVnfBlWe9|_>#P9I#A2U}~Rl2W1)k`~w>ePI7Y
zCFGPOB#u~(k#1h@VSmet{e8$^SV5O@19uPqM`kyek~<RR=K>bk%g@CFF7E9Q_uzs4
zvZE4iksHhzR8RU(yn&V$xCQL)<qHzf;PxrhKu1eXQc+G$R7y+|r?0WGk^ur8=z@U3
z4YXBxK<kKkdATXUCE=2C(z33i(sBw4qOP)F8C@k{vZ8Wun4F}Pl$@fBgxk;b+DKRs
z)(5cZkD7xU5(dint)8r;q6{cVR#Z_^%1u<lMFuXaC<m7im5^1Cl!Ut|O31=pe@Z*r
zJ8|*-Qz}*~H&CLRoD|H}T|!z^8cZZA0h5szb(N8E5mj`Tb&-*jl7zX#q_KYgJLjKL
zPJ-n_gH?|H(XKRIJbpmFUTWGB(h`zd(h~9#+ESWY5+`LfW#n{EO2|k`oYaxm(UnyZ
z$2J_05qbn2B^LkhbHTZ@lD-!<*RUUXnZpBq<qE}lu#yW5yVI`91H-x`9JJ{X+UsxX
z<UcC?kMtqn{_ub6sz=$Nk?w&ZE-3g(53v6J$EG0uUn-A8U^i@jtMBiE0?$PR!ck~d
z9(NSd4|?Rb{s<3fAo529=fnS{NVH4vZ*hNTjsMI;kBa%X*7&nE{%@@D!_qKM7la2K
z{N@nn!4?MRDo6D!{;w{8qy5nz|6~U{c`W$r+ePi?x4=K|e=P8i1^%(XKNk4M0{>Xx
z|3?=1JwJsbz@bG5IQztWrmz8r^UkJbCb|Zvba0bt3jI@F2qYeOkjf7{If)(L+t}Jc
ziMzmqRHWcJFK~kF0z>;7o9kkarvl*EABvp>VBsGRc=BX(@aRNWpQyem6#A3!AHHc}
z{wVMWCBziumv#eZnjm};gndH-{jqrL`4<LPA1sWAJ-o$$0u=;d7A)*>1dHH!j$jQe
z?B<66k4oWTb@q4jbHl=IAbdGE2z!JI{}c#c3ig7BfN(zu^Z5q(d4VwY3?G9Z+yy+=
zMSwk9!xspLd4jM62veXe%)m341S;U|0Tdp8z^;G5f#6vtkQdNG`iJ38_dt)sgrMLA
zTLG#M5AlTu28x=3iv}(zH*iYt=kJ0D1AwD4V^aZi|2DzGp^t+9miPzXe+Odg_K3cA
z23Kbgrq18E-zk6NkoUmTfZ%ya{2RY<uD1c8E)D=#Mt|e@^1w657XhHQ`;YQ4Vg2Qg
z1qUxUOblz#U(f%@@Qd@m2L8xT44dDt$thI(=r9-*>(wyua90otiU!wg;84+jb>jbZ
z!avmdLk|%%xH}vL2PceBE6~fp1GZpwBiy{O^E9Xz;xAL^KP3Dwll>t93m*A32+$WC
z0u0V#08KXofWOoU5YUqY_zpQB1@f!jPLW!H3uxfl8rSTR--9qn$Ay0h@RGnN9@-0c
zz!1<fvw*^aP{Btm1lSiLc*>R<TzESMa00yGNl#I5c}*Tr1~dR2zz{G2EC5@;34no1
zbbjFB^$;Kuhy^YISAiQq8juO(0tG-ZP!2o>>VQVzIq(YT0Nw)wz!)$IOaqI+DzFLc
zfmb*XLntBikYf-o2tVWmL<*t+QG@6}PC?8dwve+B4+sJh1c`)PfLw*7Kr$hBA;pkN
zNIm2^<PD?;G6MMonTLFb?Be0$QQ$G)ao`EyiQ_5Yoy0T3v%qu2^S}$h3&*>NcOCB*
z-aWjBc(r)X@jCDZ@FwvV@ixF4Hpuar@VW6t@fGm3@J;aT@ZIrI_~-Bw@YC_{;g{n#
z;J4%V;ZNd!#or+yBA_RL5{MEg6X+9I62J%o2+k2C5@ZrQAgCp1Bj_XeM6gP5NJvS@
zPI!V)iO_)1hR}mBgzyq!I$<GU4dF||0m5m*O(G&9CL%#1c_MuxTOx0w2%<!yY@!OH
z7NQ=aDWVNxV&Y@OCx}&vO^98H1BovY-zI)Y+)Ug{JWae!LQcX(B1NK0Vn>1?IZu*K
zQbN*1(n~T+vPVio%1^39YC`Hp8b+E#T0q)B+D$r5x<^J!CP=1AW<lmn7E5-Eteos6
z**Mu6IXO8Gxgz-)axd~2@>}GO$X}CxBHy8)qY$RhqHv%HqPR{`MA1SqLa|0kNhv_7
zL1{-BNO_&In6j1fBjq*~J(U=h0hJq7G*uQ=EmbeoGBqhRKlMp!C+cwObm}VVZtAZz
zq%;CFS~M;+=V-EM>S=~(HfZT-C237){b&<uOK9KF&e0Lm3DD`#xzSyu%cpClo1(|3
z=cU)8htXf4FQ9)(Kg~eIAjn|A;LUKAp^Tx6VU>}NQHIfqF_bZj@fqVJ6F!pwlL3=2
zQxel-ra`7%W)9|)%y8x_%;n6z%v&sMEE+6umIRgxmI0RCW6)zd$9#?@AFDg|ft7$&
znDq>62x|`OOV+P!3~b75Ft!A?$84kQc<jRLX6zB{`RtwS8yuV*dK~^7w>erlzH%~g
zYH)gU-sEiJoadtFQseUCy2;hdwE$&=o`m{BZ$aCjtK96|`rJX>ce%T`_jm+(EP2lJ
zRPcP@CF51#b?3dw`+|3skBiTkFOsj6Z<L>uUxD9~KZC!We@j46z*-<)piW>;kVViy
zFkG-yaQrysarNT?$L}5Q7a|f;5b_bq7J4s?CoC)MDV!zTeFE=<+zGD}*(Z8L2t^b{
z5F+<PhD0euPl^VMmWqB7V-h<hc3!MbY+0O7+)g}Myj}cILRP|8qCjFyl1|c4^1Nh&
z<aa4yDVS82RKGN(w61it^b_fCGACr<GC4BCvh=dXvhlJnWDn%z<xq0va`W<h@@M7m
z$PXznD3~fFD!f)CRMb?AR%}$<QIb;%RC=tmqAaTHqg<jqry{5VS1C}LQsq%~QN61=
zsRmU$tCpuWsm`tLqJB^Pvj(q*n?|9=>`9@M-X|ZPT-KD(L}}J&ZfPlLMQOEY<7?|_
zCun!+(CJv}Wa@m><<a%fE!ADslhupRYtbjvH_}hmA2Q%DfEg4UtQyK2Mj5slQ5cyU
zWg2}xC435Xs=*k~*w8rDc>FZ~X~gL|6Trm4B-P}Dsi0|q>C-brXH3szotZI{G>bHA
zH>WpuHZL*Xw9vFjvKX^GZW(0x!iw6;!K&D5%Uaty#d^|4+$PGV!<N<7%l3&Kv7MD&
zq1}ePj(wW_w1cd}C5J&rLB~+XH%_chzE01ashwS%tIiUhwLV*NcHhOs<(|uitAXns
z*HxGnECaUarr~zeZ62-)Pl3<6tGcJS&v~eNq<YMIs(Yq;e)ZDw%Jll?t?!-dz2#%#
zQ{;p3wf3#>Bk?=ySC61W_#oPloXAjQkN*k(Oa7AqN&#sBt0*H>AsT{qL_Y~+00&c@
zLC1sQf<6VS1!o0shggMFh0=y1LOa8R!>)wQhU<pkk06MEMZAdQj*N}`6m>G{?m5Ug
z*K;qTd802zPsixRJcuQW^@)9VUgCVp`SlCd7aA^dT#UIm6{i<hdWq^1>e5iWa(wP(
zg3Df)yRJxIxqam@!7btKRf((VSN9WPiEpn-Ub}S-bKU)VSCU*(&JCg)h#P~+>d6mM
zXj8&drc#YlYi~ktCfr<4b547cE|Z>{L6#AeF?s9MttYqnZr`}QpXr%7kfoVbafkiR
zl{;J6ZrQy#8ad^;9JyC>ck{gRhVSa#t-U93FFl_qKRAD;z^b7AzQX<DLe|2og$G55
zqR9tl588_5i;GLxOOi_QN`p%0A38jIU#4C5q+GQ8ZUs}t)knaiphpXpXDbIE8$Ete
zrBGE~&0l?|hQ21D7E&8lyISX2H~GZ&Nl(3D{fh?WhMK2hPm3D48?&A<K1*sMYr5Ek
zX%27RXz_3P`rPCB)C=bqW34u={cUI3x?UQ+eEmxIRcrgn_U6~BuN&Vey{Uhz@V2f)
zuA{b7wzKA)?7NySxvtu7`R*t072h}XsPr`Ts`ozc)9!oKZ_wW{aC)F;&~k8i$YE%5
z*ll=j#CPP|Xz=LXSj;%#c)|yo59uG-Ki-=Vny8qRn|$_3`%~v<^Uq^bu&Ko_=r8-z
z7iTDE(r3A5i|3@~8s~NA-!IrNOfUK`?tQ(qM7wln`S^16ipEOks?F;3H`F)G_r$eh
zYenla>n}D;H$HCqZSHL)Y#-Zxu%ockzH7ZZyBD%gynpLJ=%C@y=x`k42mY#M8Q{k4
zRsn7r;8*~>kBSB#5C3RO4LdjhAKX1rN4GHjM<L$t2mjaeM@sCiNO->p|0#fZ0p1e@
zfdISs5b$E9qkE#-AVT1X2Z9e?19hY-HYCL(A%ox(5R((((8Pbzz}us6mq!uc(|{8K
zA^@L=0G}9-7@HbP0l;J=q!P4r8dCJf6v=3y3@qG|@}~YgvP=rBGIA%uyQ27+1%+tA
zEI}jT5s`uSW)XrvT!Mi2PSJwNiMi=WB<Uqio{8mQa0y7R?2)Pp4pE?i-hGbZ?PpA@
zVM^Cb>6PvqkY^z^T{Uw(|5;X!S>s+RU!1uN|Da$-(a<qE0DEN=J^?-n1u;1#s23=j
zmH^<UBa}QzbjF2;UPFqQMj{|qvzM14xyQ^E^;jBR6?jt)>VLQLLMr3)Pv>7~!SeZJ
znB+~rrQ9>`E2!@07YJr1Il2o90$zbd3zoHe5)6Jl44JIw^T3!VC8e<j7Rx5cP`UQt
z8aCo-8npuz6dA{&0sn3_dRFPk_iX$vcP1_D!<x*<C}O*H^VegrRNC4wv)o3A!IsC}
zPwO#LoYDOCX?UsMy3I5#V>B*<3<dG9cWzHp&GLPxxYEriO@`%--;+D2($U<RdsoLt
zo1w4!pgkB0{<=@AGXC2<m8Z8i#8gIxke}vKs$_DC*Mm&vJC_O{#DF$2pep3@DDbiY
zg%Z=zwP$C*wKFozMC049A8PgaILOp1X{xf3O2|941~cmVgTErv50cnd<u$~n_1vss
zrp+W4%zs;1R1>ZOg^a9=yi8frDwJLe_j~n410dv6x^<2-`Mw6|At835Yh<J947)S+
zms<dcUiXsPV7HA_<y*FQPi3&07RP^@X9Xv#_;-)@Kcsrt#k*efCI(DNsIFdamZR3{
zCLW3SOa88qq_BLln(}}s<oV5%5~>xSjWxghXKVpG*Y)~lOBghf^=0NyHah5+=8v5a
zRjw;)uH4xDLnp{!b#rdc{nY2qSD#cezP1~a&F#`(x+JxEDP}at-Z4aQhmy811NFso
zzAg4+NW9Jd0~&kXzIWT*%8c2szKY*>!x=BWzzdu^=wxRk_~)*#%GH0VSBANx*zX59
z*O!k{$$S)Z8|6UTk|6t**>gpg-;Wff(!Bd<*4a~J^de=%dU)bx#v6w9YoTc+gXeCn
z1f%g%I8Lck>-XjXz(sp%r*AYR{*w;bl~vNytMhV7xu;#=RhwURB|dg(k9y=2eVIaR
z2KSXHZ4stj_n67GTDqgNz2RzG5+S|wXj}K1vNJsV?&IDvtKmr@?*7)*^=sh0e<V)r
z!$#EM?Ig)@Z^qc9)tt_y!i?>{5IKEBjGY7Th#Bao8yUi1cs7~vq0a`<P=7c5gLQc?
zw^`R_+EhCmO<d2O_@dM|mz|1-OT!E|7F@Q&bs1v-0<Te<3KB&H$)bC?sNh$fUnq?i
zWM5i)KUwM7*>l@iI=x~-<W!qk3+Z5fJ{p=*^N3UT_666^R%vC~u^VOQs=+I(?ys2&
z$W>G`FD`dZ9=QXH6?oU+g_*2w&gYZeR@SR8-;C}_=gR3WxvOk@kd1IenAg+4R+v!S
znh!axYkg^X!g9radqn6)rS1T-AlzN9raIbER^vxCxqv=S;p%Hl(=Jy0R=i@>38lC)
zEG9UbYY0FZb1kBo!kr`f&;n<fqb<T{?*P9I2Kja<Bw^Fe9{qT%%J?$q_^9F`Ij?iq
zKfS#_bt~o%&jsvjsFLIOQ(tE(Hf-SAXam4(C_<!0CF<dw$hcgMzqFlIhIz@d>S{5<
z$Z-s?y}Nm$1bSk1$W1M_enjV^Bh`(LB=9$ae>ejG8M@hK*CRVK<`rD`He58~@^|>&
z?h~n?DTfTpGr*q>2mp>><Q}Bo8gCXNOdNPe*|z)2__fKyv%eY-SqsQd^d{zc@^iU7
z5X5y8J@ZW1MF~qniB#LdLYqlxX`b)M7%a6Q9{q0ohIx$Ng~(}k;9P92r<J#bE$N)h
zX>3;n;BlBpYJrO*d%QhudsFYW=T`v*;(~f*D3(Z)sM3@)A_LG}3Qu73$ciOC3!Dp^
zcQana67eTZ1iud@#NIvg$XzDbHm-QbJ%)i}F1($i!5d2_>hX3LYd6ir_kH+L?)hUx
zmhSwpyUG29tQag6a#sWU!n>D;ef{~UgIzQU1pFl^A#gBCz!J^%iG>EQ-89K_fy$LV
zhJt9R{g$oUnMmHg8|B1!nf!c3j>d||GsuKwyM<(<2U9&4`YihxzifuEm8mx3>y}rF
zWu~NGcYd>Tv0q4Prl{UWzrdVf`s;N)inb{MZu9rKv2qs0--}OpAG73_JnhuhP_AvU
z`Q0%H>R<RaP0b$B)Rfs=c|7#QbrQ3R^lU@Jx>f2yRp<$>#>285E~~wyhvDsD+=p{N
z)lEsDdzb98wPslfU#hW6c}tCxc6It)^;L-_2rFsd{g{4HQJzlWxX}2a!FJr=i~Mwy
zC>#9bx$+#r?quWR3+9XNM&`MOVbb?445yj~XSnaB)>Cy)Z;4s@PEVQ|gbA858i<8F
zH$HuZ=NcpDT~tJjcTVr(BBj>xd|g`x29H9XIQBQI0r?p`=O1mPJn1&Hv)ircnEZO^
zw1WYHpJcV4Q9>n{FC?6YTe45<7&3VCT?~(_-#`mz%SvB1OSV1;I?J&3_GS*M)7Usw
z>~a&M8FDvAdh-dLA$}+K$o{jn!zF7=o>N!MJXsm$u4~r~P_M@vv(qXQHGA-~#BH!!
zQTwU@skx`nxrFQShY9zp(xP1Bgi3{IXF^+Fg%=hHL3_JX&5f}o;(V}<U=8<nZ@ai4
zyhVsQFH3jv?W++6h7+lt{hocL@o9k#gQ_}yECV+;63hf1FluOCw@bX0Y<J(nn^iJD
z<5gK9Kb#F=J5TR2vMp#_P^2;-W0X+Xbn;0YRo#A&`V<DZ`yvzm!m<d_D`w3bgCb3t
ze#h5V-^-8Zu+YM7B=RiwdGC#KmAjhf&92ELyi`P;YiLmWw?CrCkDhPTNLm#XOFh89
z5zNR+W@*SkKg2t*n#L$(Cd4MX5U%*_S{PAUaJt$0dPxtJ16jk4%#BOq4^7LzmRvDd
zl)0$spi3qwZ0YuhMk3PtX5WKX*NlzdlNx6dyj^~OFCnGeuJ)SBmj(B#WTiWouRmgy
z<3H7q8Jt3qa039AR9bJ5HYAC;#BY=F0G{|HB$qYNOFRJY81Z*OQvwucbkhp1v4EF>
zf{kS)5olph%&NG>ptvTl*2Vi)@ld6SJ^x1VqvH$?b)qrt576$9+1$S<uZ@_QRZI-D
z&pgfXyr^AQuj<W3k}~r))2Zu|f4(ejg__e7&V>XrZ{Y!T!F`*$XRGZcRrRO3gXIYb
zh#xzQ<qXzPUcDclv*qX!YjQ>{C7=2GCHn>an3zref$G9uF|Cj2j~*FhI@-Gi+cn`m
z+3!xjyltJPA#ivG$>I|t^x;g!fGN$;UdHW>{ffTn!#Ymq#enI<FG=ECBFxUqw9=_~
zoD5zQu&pLhD>3KN(8Zg?q>ktPj77P{UrdK@j3#PwTK8A+Gx>ddYK!+W^whhngIZBb
zPQ!bn&mJACiBPP0TmhXhO6*mdw_p7dD4$7sJ!>amnY=jTM#Z4rF8&qL-mLa#*I4yl
zR^RS!OVm0DZoKYwN-nM1=~UypQ`f7|eyxcb8ZIRRj^Sc9CkWy^ZXj!|du!RPXO_$D
zHuoE_cR!x39^9-i)eG@kNKLTRjBC7)u(5ws95lx6TYwUk`TFSc<yYK?PvJ>(vT@BP
z(u4f?Uko>#+E1!9vWjgR@D_iTA;KSr9I2+b^LE!;$u8`Y%wDws@w+a!qGuEH3PUbK
zW<%e)UdZ<N?s2GnbRZ{D8QLD9>b!#is%NNDb$>{%sx7yFI9D6|soveDgQRn>ap<wa
z{#dopJD;46@Or6Krs?Bv3sWU(6b+Y4U9T0n7{JGj%*~ZXo-Ipu2aAa=y1fe<i_{M!
z?-9Qi?)_0F_=BZVJ-4AG^~UHyt<OXv`5EugTHEZKVXCS_rtJ;XJ`qX?hmXfPt;UMO
z3YyO%zjJ)mc)jm)Kj&^(nP^atmeIK{=CZEKMz4j+uA1{g>5s{FM_!A1IC8>Rs!u+&
zP2S)!Ern_MzAKkx(`>3pd;R88U!bYG&v%3Pj;}E6-};Td7bUfty<QB$$3M9+f+Oqg
z$Kr!yw%M?c2n&LOn{7%|&u=klR<^~QnPECuulLJ-8<rbha#K%I{6W%3j*X;7<wdU0
zkU_Q8m4{KECTu9$n_B46!Us9dA7-?5Ql5>F2ReRl`6T|RliNL2-1lZ_<O~EtMSe1`
zY1iMD9ChDkMD<z}<XG>uh)Vtu#0(@xYZg(H?y#{b@B(TZDAplmQQX$J?RsOzEOJCS
z3(2TWab~+fj@_q^MZs$8K}l_JcAej-WBvn8;eg=oK~=|LA5RWp4B#r4ar;|g=Q}<3
z$5|qLoc$_0fziagnH0nl@t0}v_<=>*={*~DHN9^X>}~46!B#Y`L1S<91r9F40%JO%
z#HOf4=xSRFZ6^^hO)C^L9@dT*JImzAKQ@w1U{hnFWNg2FX+hSHGl;b|Nh#Z2FI%^4
zsw>~>+w7Ur(6t8xjbZ%@qbdusNc@Iu`;%Mdr73j1elVx48t?0cDdpOgv{bT=+6iH7
zr5`B=-|Q6zM|iHq)lSey8_VbKx)5kqGFEDm4s)kb@vROuIch8piRZ~4WUSx(euGBE
z#aBLotIv3js3TC|l(+osyFRCd<yVv+2ugNk4XNZlh)XTS4cQ0Z>b(KpZTQ(`U)1P1
z)38$^@=21V@RIs>x&epi8|fvVo5y8KMzuR%J`?G@+QG91*=8Xy{8B_(wj|=jA2C*j
z5PJG_ftJ$R#$Gl8CEMm``}I+tqn+<7hcNrE>C~lusaK3kjWZ!h#bv2o>Nm^Zz}{NB
zJz~8zB2y_=7VJSVQ2Q2WvfATMI&m$f#e2-{ydw4WFxtfXo682bd95$(T)sv8U_6Eb
zI7urH9DLXa3bWd?anCv3wZoMwRQc8o;3O!zp4!f<$Ey)LiRU4S->&^URv}$Qi)1;~
zU<XpeezWDFtl!z|k};_3C)?CRqRyo?4L-sE8$fObRk<Grhw9!aC&w^rX>7CLdYw^6
zP?&G|U4wex4@Gy9n(SBObX>M>U#}=J3JDf18`Yo8ecIG)IN{?_yb~G*zdaa2b9*P~
z@pwW9zrT>i1T<cvdg$KV@Q@h!a&}Pw|Jy9#$cj6l(z{lB_NpcwFNVdUB_-}nd^qtG
zg@ld8py*s=gQ_=_-HQYQGjFR)?mb;xFWamQ&&{}ydJO1(Wh8wgWMDeQ+WI1j$tCb<
z4x019#GgzJ>~*D2Gd{8;dhmCIav6^72zaE-ggsxc%stC#q<8>+_8|8=*OK@<zhCe|
zt6rqM*Z4Wv<V(OEN#FIAM-k=$Y-?$=clV2yS1NkzMn@LTIT3z(^1v!*#34j#tannE
zGq!2oA|r)w(48}KiJH1XF(e|VMJ=R$f)o7UKmEEo%^Ms+Sn=S6b-Kd|yZ1B_j$?h^
zBD`WtzD38S$`?mO@4AU8j-PN27QMgdz90WP8=@&;w|CD+&T@-MtnKA}sOov+l_uG{
zWh?r4s@CJPXlrXn@lK?Wkhf1s&9#U9K5lVUOL@ng1%unsu9Kezs_vh8d2h7w*h_iQ
zq?6qu=Aj=F7~?uEw5l6Eb+#9}jYePjZOGVX)_CWcq$9EUYypS4BU!zNl_sUiQQz9V
zw+}K|0s<dBp6fHWu<G|Qv3ro7{jBOkf%Qaqac@jv*Az>=VmecDU3kTwpoQJHCtvq+
zOS91<PebCE{CGK~?CrrWe{-nqcm1|}B-cgfGslEobeY{cxePf_ca?CKKQomW+6~(<
zPkK0(l{kiYG#pUm6LR(X*vZE#PH*ksRZ)7CPO)X?X?q}~mQL7s@AJO0*bi!R;4v?6
z1s%(_4;?QeN1G&DhXLr;pP{=W>@fiSR>;u2{gUs7y5MInwXw0&%$yXN+6yj;Du;9O
zg&$E4(yns+BdSirUzfXvW}MXRsOxH)Y(i(Qn~gKMMxo9tU8)Zj=;@T>d?)+9?n<}s
z#)~4(vz5K5ERSG;shO7oZy80KIP-iTkK3u&m)&!_)-trrJoG89YWuhQtBYs%#-Ez?
zbGDDN_FRc{nU#FYSbG&wZ!NuA<*rz;E|9q9cHs*;^M;b*yVF|vBBQi<y-Z>Eil>aM
zp<L+>7eyXBu%TKTmQHMyjbE-B%<Ngbw?E--&!5;?`!4#%FPpyEj>iwZg>=d(IfIW6
zS^ZRt^nTXmvA&SMY;;zSOW`1<{m!`-SeN=)$yu&PENe-_6hzatBoO=hsEdQWVa>i~
zlJRG=<lii=7>Gq?I^X;yx8wN}3af#4@Y!?F`bVQ{{;7SIR{a}3=jkh12O`^ldn(gu
z7{{ZxV=fsi%3=OXb9i`MN`_`n<B+!DrFrf3>WaTTEgrSx*W4(2s-j10Ks0OvvCL6s
zBb4C3-Pe(2Yn#~6@>V3Z;>8lurcnjCO8sHN`989ys(-)HdZ4H_L`rK+pT%=JK)IT=
z&8F<$<{o&zV2F;*TSFiEnC*%rk^*l2)br<-cMncPmE{zD+1I)ZTffv-r<i2-)NoMD
zzEL`!rjZ`aO?8IumWGOE3rP~euY$hW37~=!Yy}zI7t`5`I)z@CN&p2Vz`W~5U-6fY
zOz5|t%+Kq2?>Q$E$f`uiA#nYIo<UytPV~Fkw{9#1_#Zx^-n>>vI-U^@LcauiPgN(&
z;kx9l4!V!Ljn5v@RLMux;AM5=d-cr5R?nq2Qa*f3zoP6Le=O_E=zYEy$awDodeX+F
z%5;GhY9Cos$C;&b=_(t+&2(FLYr}5%%`8REbU4(#ad@j<=N4n^_^qzrRIap#%&Z{r
z`}LFT=M@Q1B(-vHHX@b_@#acNAB|4T<fJ_^mmI!*EGYz^UK|5Jf3S(mUI6azp|$f%
zIpx-S`mHv6#}rN>lGLIFZhR2cwHm1hPAR&xBA+ac_k{VGeA&P2?xG*RG^24wV<3ce
zdTev4ziy}X60^EvJ*x(O$K1kobKc~Ok<#s!aE@TeUO^`5DV5eOQ#<WVt=q4bpCnOJ
zeCv_mE%Xg_mk3<Xps%!B@MzK;F4Y`<Bo~N(Bf!Jx8)*iM$u-+nKg3FPHv8g*CH_WD
z_0I;Oy!!^?1k}~{zQw*<;(a<R((T1Rl6zubzkJBxpdcfX$GJM^`>p7<l-0IoFP$0s
z=qrp9-$c8s12<0GvaINIXi<(3$>wgSi)oJ&fxXD!WO%ZAzdcS&MJV8tQ4*O$sM*w?
zNEg7AdSv2gzK%zv4jhVxPA8-$UXr#8*O7d1r!u36Ir)4ZBi|QbMIm)T()iqhKF^1s
zm<VzUarVaocfN59eyF`)JK5f!b))$8^-+(J^LshlE>A@lUX++pug1#0v@b5F-j>`S
z*MHhPaQ`tdFO-`4I=Lm}(~^8t$|nYQ{wtBMtH1O0OYq*hTS&3z_Z6*6NtJp_^<n_=
zlh}D0jmhq(CO0Jn5VLhFrfBqymv1)+=XP(-sSixCYDd1!D02vzcIphXN}p$lO2A9H
zbU}C%ysG*_EB%KhDK?`m(}t87b5oe*qyev#w^ujaQp9x1OOhlr2clj1yl%&6fe8+Y
zhlym#rn+Y@bcTztIStWdMLi+bO#O5%tb?2Jp17DVim`nNk+sOyM_rJ;hBBdP3@n1?
zXCNEjQ1o1idrrXqocJ;?Ib~~gHa{;=kXchoZ%E(v;<Q#KdUZA~@T_UVc?FuVB(3zt
zjx{lpOUD<r_~Q9buI8v-P;o-oKWoVdYdrg%M(X5u*l8D2_~}Tm+-Eq!FG&>7Q`26(
zp4(WZ{pbp$Hu?0aw89I{HyexF!r6U$ct`!d1}Z(_JEg-yL(QEYmK0FV_wEW=e$5y^
z$AHSJ_6H%_ebRj1uaztZ-QYF-%w5kb478aW+yoCR@wpmG4}8_tf4q*ZUy9DXIt$xU
zKTvU2=A=pnw%*ZV05&RlzlOmRQEK$;50{*qC=!5ux`6NJx<t!GHM15&hFHYT7<_ew
zyxwQIHk-)zQujVl9_Lw3*rQ#lPtn{m2?9K~Q@n0)eCcCirqjB&3?CA(;O}NaHmMwR
zNOvsyA1XYrqc3r2$cEloJPkz`1&cfkvH2XB!C%ivV!vz?nL09-kj$uDx>@;MJ%fvP
zC*VfXPJq~_NEezS;mpb}d1eKv={EHrmEzylR^GZmp?xNqQm8CRdKkUM8F3|z`;1wq
z1`v{Zv8M7${u+dP{7f|&K2%FH4?K<l*cRV6+`jnUxy?b(`1JV#AvI>tm-Z(=mEjX|
z*TnUnrVHh>j*HV0BA^MS(bap;6nan3%UyqN{P@hJ>`DI@k@({^2MDhAcHQz3^p|Bk
zcewZTCr052E&rE8CQgbM(4L1Wti9UMzD~n$W@zF^?<f5tItLHSpvO-aU6U#ux{z2x
zWV`ox!nu=<kn5OAnx32>l!&=>x15*oCbZ^RRrrHE3!~#I4v8((tDgzh-0J2(DS7o-
zhUp`14nBR6#A{`$cdUM}&3G%5Vl<&3&f!gmm_iad^UK6Xral_{)|nX@9WIh#4oi=R
zmm6xHF?=>CcTn9gkV#aqP7y`Z=E<B~t+M=Z<<i3Yl4XhhSEo<L7CyL>xL*$d-+G_B
z;hT}w&U>LZ*y5wa5`_!xZoooMelsW)erdp&V0qii+Uu-j=e7IkHFxt6pQT)qfeY!8
zCe48#u6?yz%K0>Wecjmb9B=MZpWSiwr0bXVzvf=OT<2Hf;@9u*!O)t!Q!lj0>wouC
z2c55@maof%-{m#lVk-*ux7w|$l<i`+>_*iHrkDIzzaxZUDJttX+Na&LggR-R2weSI
z1G02V0#x37$wR|hC<Lv7!bxi9RDuVW7Vdq|bm`I*(g;0Ens#q~ZkX{j5lWh3e;q%w
z0zX-Wh}*)H(GkV2EZNswR(I$W>AXw|k+6SafR}I#Fog%fzcF2w1?(g}N7eYwIBLh~
z6VS@E(Vz*qq$PCEeg?k`D}__q-bp|-iurbK1JVkQ8lTjGOC!QW1dZBw-|*Tcy6Nh&
z9`x%oLU`GR7PZzT_6}b@RUy*<T;Ho9qpmMw{ka^%uG--|_-Q{fP=3~J-+`M(X6Uhm
z&1Z)X!>a&_{f#0Z91t?Vp*=U&|2bZtAoit8QkHov!lU6<&Z`+kKk>8$S3&JOe9NFo
zeU%+^-b){qGSK$dn#QeIh6%3;<=&ba5Fu8xX!VmHJamlfO^ci0zvX{I>v<9*al-pV
z(X^2;C3lYksXLt%p*n&ehXxS4?3xQL`AV~|_lenbo@>5R9F9BY4WoEan(O6qHNwv>
zTgSH8_;g#<GiApPNwB~7LcRgqF02JX@(<%K1OBus8rDXxs*gMnnQmE)R+ZY(l(E6b
zw&{(?45|3zNa)>O8+-EUQXiA)j9Cy?Oh`n?L-grRv&LWEJ^q}yk@lPa*3M91TFRh+
zt+%pizjZ@nL?z+N#@NXqLj6fSWc`unBxI6%WG;63U%pq6B2^KB5NjwZcBgK9-3aOD
zCBA5S-EF^+-Q;8J#RaiEJ3Yha2)#>^4!7gwcqK2^yM14|S!`<-`zqDWB7iuSI9=^&
zRK0@{1bWN1l%96989W2T`DzC0!gKyMqe?=Kb^w9D;-_7sl9o&%W^Ho`R(CsdtsFd4
z1+I)XcPf$Ez4^@3>0$46B#T2MwdTGovEN*qz04_8ZA`zYrJ)meLztR2TZaT16Om}@
z=%_`J*iSg+t~UwTT25KIo;IA6?273lSE<zCsYA-TSx0FZ-k8ueyC}tE<t!~R5_<l|
zF7$$SVy{f%Qt|Ejo3t@_4=m2igr2eVNed9Ms*^mWW!j+ohK}Mn>&UqN00B+RJkK@5
z&yHq`>3U+XVkouA-lG^9J5$Y!qYf8(`WaH>%$<&%m&mes^w`)lvZ^#&L29#@UHKW#
z`vNXL^<*qJ<={(5UJbU!56SH9GP3dJzH%$3Ir7}zrx%OEek@6AbHr=bTu-fXtHnp#
zmp@c2k#AO}xB8fLx3Bs8d5nsr^PD7jO={&Za4D0lxcgHf)zIMPqYhL-XojpmrA2Pj
zF^?Ex3K>+M=dkH{VUn-VF99-gbXIS5;GQ;_K+A<`H9s!)n+r)$20?a6Lx;Wpac)iR
zz&tK}l$SwQi5CYYnXD|MwkZu6cwjFWGAGA&Z>&lS_0gi-?h2<95${UUMO3+zqD$Fy
zhlIsJ2gN`WZw}9OujFX}ufH&V>@>?p>Q`98uYZFkl`#}|^;Ik=_8K*&S3Q#6g2TW)
zo2tsOaha}xluYmB3t6TY+GAu|7zLXTeV>udA{&z|s~=d#2OQ3QmQ*)d2{}1?y>O(v
zOh)C3;8nqr)@u<}TXjzxd@mX1S!O4dBq*kYQW*D3>p?$?(=bzwHr9ORb<&^;{2WE=
znwA)HCi{$GQ=`e7n`>NwMFPiYuR2~WzW04){EPrsa^{^@F3WBi#S1ODVM1E`gDD-X
z?n@^1Tu2c?(+!cc4#ff_CoJPk<i5apuM|2E=c}eqdp{nl<B=v#Hh*b@;<@O$^bo05
z@A{z0LdtE?#3n5FcyFf9ZI#pfVbgLIY;*9O<VT1W*0g1w{AS3_0sRN66D@8H&#v&3
zmm0W~T)5>V__>=oz&H5uN#7Egal?ltcJ(oZahEL0h}lh^;(bRven9cn$B^O$6<NV|
zF0O*P@y$68hN5dH)oB&4e~tFAU1nxlS5&HTfIL5`&KJqJ(o$2sK#=Brx_C-t=X=Qw
zlJ;Jt)x{9a)_wHlWn}ohO*58CjTY`@p0q;NjjvWdpQDAKRIQKjbO81T62P%=Q-VH7
zbVf#dtgUBjRqWy6iMv;Wr%YXyD_ickJ?ZZC)~j#reWx(FD62Nh-h3VW{|>NQOW=70
zaHuNs>bSp+|8_tMJc;BLOkAI_h5casKr)NQX2aQPWO)3oa53-s_1FC+{jpkS>@56W
zEk4RFKd~Ht8NxB}FzyS=g5xYJzpy^<<wBLFi}Mj7!!M{ACy@%x>ZWmIiUCV6qQ4pE
z8|y?$xhuwg2FI-5r?jr>%{OJFZEd=(SxxrxGn8I*`^NsAkz;#IY`Nh&WnE<2MWmmy
zmy6)X%GI0d{8t!fPn~ELR+73zXd?k#g`U@;{y%NKWmKC{(>5AhTHFc+S_n=9#hv1=
z!JXn3+@-~>Xo}O~5ZnpwZY^#JZpDifDAteXJLkuH&ink{bFZ~$-?L`Vp1Ec&;LjP(
zwy;u8D8dddb)hg6j56X~w^7cfzk|u&J58wCq<_*3<^|&@I!5qm`xWM)gg%5CU<7#J
z`Lvm-y19SSjx*`Ptz!yHs+Q*52%E69vGZ|^xkiXYev_IJqg7`uFtLGw^DK0*r||t1
zON2k+SFCna*S2<${|FW4%mjj|Fc=OTBIebNcqBuye@;8!WtUZ#mb1QOlg}1y{5=$_
z{s`=qvx;-pL#!RV3lN<_qsbDw0P1{@<J~Pw&n5!T^OEJ=L_1g6*qvIsj*KZ-Tl2ld
zo*?wVA{Rqjyb19i;+w_j*8r`Qj=tJK-*96JmFyo(!={g#x)IM`=OkaZZHOpNlLnKK
z>NZkBeE~eoM5ns&GyFlT$k*1ETb@;c!<w5fhlO#cG_+^eHrtvq3tQvEfUI<>k>;T+
zl2}~v?J%FyXMK*sfT+#d-0yKrxN0YpbsYG>nX$Rj9oHUpXB6JoRabg&XwL{V9HPjr
zFs@5BsvvCOLAy6Q{U{pi^BR`-u2)CL!<*r8Y;H<B2VfqgRb&1!y*fe2HmS;ED9F!J
zeR4DeRs&l8J5MP;Agg$Let+Wl^mT8Wqq(W3mw9r?#LxO!ByoNG&EZbZrT^(fjl05!
z)@Y`KPn8Xw$fn!v3|=<kZ<>9bs($ayqSC}v3$Gjg0ldD5?X7IvH%GVqg;stMEzJun
zXYiCTcE<=7y%?~NHb9NdnN|6j_xC29tKSJG;Efx$$rS8uS<O-7Bke<FHkK@2<v_11
zOh$lYn*wpeT4%nu**sDX*aLCD_GeNbB$UDtXHJWb;h9zDjxye9Q&~8`q}(DaA*Iwg
zn6O4zXu-vRATM3zHmT@vRpRw(`?bv9rDqN^M7Ndt_qa3fyHBOLBIG8Vv+gU(?Z)ub
zSz8*4ri{aa2ui4*r3;Nqi_v6frG(Nsi;Qgzp^&%Fw;|J=_F?ep@8y&6v{tIDY$$zf
zN5Ur+w+azg9p=}Z4eOTQ1wi3ODHf8gCa`G3xu`aU2K~IedFo1&T`;<Z&=}BV72~9^
zq@*RNP{@Z}VI2H2bX65Mk@_XJr7-qbRJ<W`mIN36`D}Y7MYbgrJ^B5|QvZ>;Ng6e^
zIJErH6zWd2a{kxjW%=qAne$tJ!VpBl_<!C73+@%giK(ipU*3ObzUBE8xAmztLqT^i
z7zMyUiJvqlMA)I=lqhPn{zvX7#LLZIU>eDm$OZ-%*!h(Kex-_O(r4*-Ze2rQ)~ngp
z0g<-tSzLc?p_Wx(%!CRFJlr~hQtC1lLb*@7QEFFvYd0d_`y+HT6f`yUJT5floQB`N
z&u=vTBi4iG=H7$WS0Xt2hhDlr#6^Esg;~av3bDG17{QzG2P?!2_JuXRF=)RS8d&9-
z?OvggZ&Nt$!}d`aqp$Oh<*HV4q$Sh<P-b?}(Gob&NY6Vic1@j@7zK6Br$iUFWmF8h
z(5^~MW84WbaLeUi4KoljTnsTF{l8W?e`-E??d!&OwG%nrKi(7_TRw;yp~M`Vio%NS
zDo?(?U_wFPd-B>2qbg$xG-r_c4u)Rd;U3zHR;%&jpjvQ0v+f_@$OLC0_tZ=;ip%t5
zgYqr(^zBP{{mGqjtZjiz447qyM-knFoa<EJd2GHqO?xT-eNBb2yu6M*Dm%IU&iP>G
z+h_QR28~Uz-g;ZM@4@}-b8Ht$W62H7yizLsos?{<&+zT>$JYnSZaKGw&(oj8-$oiR
zw)`3`!rVe={=T@($6`#DC+Z!NPwvgN?T*}b?hH<G|MJXK5xhcMu_vSE;DK2fGT5|p
zU$B0ho#98Hs}SEYIAasPP01>Cq$*Ba*|_<I<J&=1XSI)GWI^c$mVjmNfBp^K`NqVZ
z&7os-YIXJN76-0jGcW_+=F#178fRy200(kGaZf7Ur_2m6AxfC@51_N2piN0FGO}A_
z?!nBhSVR5!;YmB`bJMp#S;*0~+oJdaeC=DPTEv0L*xJJ0GbsSES)=Ta?GKqGa>TwS
zQ;l7PD~&$*8*;tZCr1t|983u3O+^bgKQDPjQtqag!LiR_5;}D>I#K*=sZV^)9ti$}
zJWcLyb(&Yxkmb_h$Iurl0+Lp34gHXWkn50+tH+KYfd!IP&^I159tc!4`aa-GjLAg9
zYNU2^vJOo_>S`mOc7V@6z$ry{!rDK;T&DoW9YQhB80Qsn_u;y7UdVUaEXQ#Sb;6+k
zdGzn@%t}DYDtq-x^3(mV{uCv*V4!V_V)`~Ly<-HCwPiAY|Dj5UHj$)v;WlR_^zw%<
z5@ZwF_e4USJjkE&{bO=UDU|=GGHd==6q|(%JV7L<poL-5tsqX;U6!d5NJ&L9RJ2|0
zFJg(@&h}o(l_@JzNYWaxc&>x$@aY!YNmADZoscXKttGF?WmO+<lU@S;l!U)*LdmXq
z&n8H%_+qHf8nav$o39vqi=aQz>bt6?1qWwUb#-77A8_*h0KEl(F;qN_4TS;srIQJB
z3xXZlS?4(DuR!Y<Z0ft35yVzfL#K>Z&N4^svNj-KV02G6zU~ASV(4rv-pN_iWN1vP
zg{q7z(;1cJ%Gi(%%^v$tW?WUTSaz+gI?ACYI$9`{xI^oOcjmmZD2NReTGsd{%M1j@
z`Hb30UZKjg!ZDIRmKKQC{Y^WZ`|Vd8f&J?G`#h)J+pPOiT3d;g6h#Jy3wzO7BmS>9
zyf;sUVpxqYPK#2>Nx!HS?v5Q%PgG1onQSyyFgd*^e=O%C-zGz4oMLN*LPg|TXFi7s
z{QAM!_QD~V#2r}_uaiBGTctPQ%DWl94DaTg#HKwx>8nuMuu%@oSbYCwRV#-xDEEqS
zR<>3e`0j?Q6>}plHlG@}vs$D@b>|Y)5<6EJ++X!jxW@rqag^wfHfO`Gff(f%t&#Tb
zzItks;<$o3UiHjDi^@b51{1Z8U#BFw@L$A`OQ<Sh7V&?2i+uG)pBSIa2Fh;Q67pdI
zBw14XVZ0CDTAf^FjP_Wd(KHP44{)Psjk+~0fdk|>wKDfF$~AVSmKXKhK7N$&{sCLz
zAm5t-XKi1G#0Mv7ByYvrZ5p%8>#wyMUoAGSbt0}GM>AdsHNRkZ?KLGF^TDj)OOG}O
zj5vZQ-;7_zdpf?m(#Q1M!KhC{Zi*RV{bZ4tewf(aPrGU&YcJAThLb9|-cCarq?uiM
zos)Zzt^9cWeeBE?S<UDo<jgLtFb-j!qL*cqG4upBCg>Q-54<L*f9kC3N`6(fJNP}t
zvDt_^8uj{+_<|h#3Ogx1?kJ)-{}uB3e)ae1>xE6<MLq6cM6j$4)Vk8Y>`D#=hg(Eg
z;Q<#-3d2TyKG@EIh`-s|R!K#zmFj6~ITb$l-&p`ZRn`jy4dTql3W3YNE%r-_4w+W2
z56p%>ZnFjT-*`N!aD7?9))A|%`|wl!%<>5c`-69Vp4;dN+k1Vo{lSjaY*O&a@(X_9
zQc%Gp{vW5!<ZY?E$0??!LIMI>^sqFHu6ta{h2YeUxxXeut-Ghj5Rp9u-Wr0XP@WA-
zddaS5DlDtEkToBSjYXr?7(jLSMg-<^!W47;WsiF($Khb!TBJS$X){(olK(wRu{a}K
za^_lmMK}&V+H7bfjsMeXNW>MC4Ce1hrOw<bD0~AdhqBtih+3nKAOZaAc-08p1BC)v
z8BJt4fCiQ+l$9%q?96lWkV@8<Va!@!_x~x9R;aoM5@qXRWqUy@IHB2^@Zj`lJv)Pe
zblR!HF7*@=rrkFT`@KlfY~=k1qbUwbLT#oS^3b%?7VF^Po%J>LAE4v+(>T`T@R^KR
zeeb2){WQgKZ6NZ~mF)eyHv(@ui9Y?0MfIC3f@RQ?GbQja+sg7HBDGlFcb<fESu622
z;vXOw@!`t1@!&q!o&cRVi~S$K=H!Hu?S-I?GFM47PD!3(K`72ENuWa#idJ7qW|n)|
z6?6O?sktOph7eJ-aC7msqUC`}Ullw3Bf1{?K2^w}!=F@l(h-Zos7}Zu&#X6rTPso!
zfR8J#Rku-E$Zy%dnKxLY;yi0G?)O^Hq{D*mZOBoU&RSCiu{?6h`d4<8x)=UB&BCM?
zr6SNxLvoLR?Bk%mM%e_lOQ+&2x|yd6*g=BL87R*;^9!YXh@1Om3}rCS&3AaeW21$0
z^)_7oZS+7rA(^sPSI5QANMZ&Yw|S4eyU9rmWw(oMq11SF073NLJTI)ELrbQHgjH9U
z3_~FwEELKO%;6t@);{eVa%rs2vzDF|E+Jv}knzhMR7!>+6-$(+pJ=!4Z@Rmm{Gw1Q
zk&PQw(tPCAbD<-@#IuCbM8VZga*N>O6God8f@XdsO_Qq8O@z*y7grze?cC*CeBULP
zwy`xqr{eEvdw32E3B&+m%yR-BF{Og8Dx7EcI!k`-y{Kh4@`Hnxl$fW1_zm}piEivG
z8VPMw6j)Ir_6KaNzkg|iTH1~b?tF|d9YA&pcbUnT_A-*vQA{N{HnCaZ{ikcH3kwEh
zfnTIz2%>iFy=><EruKtB!<*ycKeLht4gb2OJ-+ASpLxWy%i18qDSX)g0#MDzm{ZSk
zOK!Oj!c?!i7HPT`$vyvMW}N$2X7hM_FegyvrQ8^KrB~m&Nm;~@K+{c&S%#l;tU(0p
zP7u>Hwvl-Cj7DR}{XOV-<vSk9`tW?s{y!iOl;?NoKLDL>>VK$b9d&95C>l=uJPBw;
zgKAtxt1-J?&dq%D{mZA}z-q={X86W7LOxwCb;Evm{W>uU_B&dS<rtT@hE*)IaXRV7
zi?U>@`HkDY#;j)2I$4XcYd9kSRgnR}$JE~zqz$3v^Nzf!7;6?v>Cbu48)TbZ&knL@
z^<r)$(ayn=_#8M{KxfXvVzPsqFg-la_h)Pc_{?58`ta4v_<O-4C-a4BkURX#RY&fq
z*Pqc9&Y6qP42z4*cHPSVUlH&BEApSu|0BZqKSZhu-rRNMc9W=qXe>@t^0HEy#AcMg
zpd|v5$rujeJY0lfEBD_|mA6EVw2!v=?TJk_ck$rPQalcClMPF~4>Db?xcFbf!;V$s
z=~^{SAW~&+Q3&vgS5pF=A_I+fthd&%nN1h1OlCskfMBH<z1A6s#Xj<t)HiSG1h$Yy
z?iHn&8USC`Rqsp!#I5(vqR*MfO{Io^V6T;cZjBwuN6x|Kurn%C;<~WQ56`eqrBlD~
zs7%V^ZQe0l6joX=_Sas9?kWWRVJTZQHTqGd<fTTe$hV~ynrf3!fPoP(hOz@7s=4L;
z?6tmYcd<fW6!JiS_Ho1h;4g1_(K6wL`8Ep(a8%C(a!>*f$iTIW#V_IslW>?L^Vchb
zD9(1r27N!aE-0r^+h`>_^DoZ+q&1RtfS3z@U6KGA`_mu3&CQzmP%;gZF_E6#dwvYg
zIvDR>edrc1LrG^;bN3d#r<u^zF!mdOW%lg@&6BX~N#{!545uJRX1;~6E!=a{8$+}V
zG^M9G-ieLDbFF*8MM>DgfE6H#x>Brr@L$$R4Y}@(>Bq&-sd;C6`VR*%wh&Kn&Y<s6
zC%F~lMPA;qk7>e%E(*#(Ra1W80ai$LZ9;Ba_z!19<_xBzZ&X~f+eop9#|XdfiFZo0
zHzK0MDS|_~rN{><kxe<sLdS+H55mtkK7nqlHyLjZwiv=>+&Bg^oiqB~Eff<Dail9p
zKF(F)Qj<cle?MxTa`4a_tAx_7nt;eNHT=R$7}i@MvP0h_ajhcX=(9ax3kOR_3>Re*
zh;PYnze;BP)7AXVfKiR5%yvf9!RyyTj!vM3JZj-_>G?e!ooxN)4gmn$a(IoE;avTT
z(TCQ*vZ4IeF_7x*Ey@z*m}g{lL$cvJ3g2d&+AQmyqK>k6_0_tQV8#3eF}K&*oMgmR
zZt3@2?1V%)wK>Ng2=Z|y`?LvJ9a1T9u6!`n)5_v~?dOt3ykpk@{obc^J)zt`X~xs!
zFQZaj5@SL8uwp!r91z0Tzs7p!KJ}Y#yXtN|zHxx6-xY7_$EhDabAkXR`M#x0$^qU7
zdLSL%ptr<>1vFXGgcLM$UrK5miYg6@GAE^tvJU)g6|4;nwBN`d9#E@Mka~^r#kfp?
zMV<T6`ejSWD(>4d4xbqHk0(?IKCInJ+V_Jnv_=aOX2HAlPnyFYhay*sTB_NC;6g^g
zffRz5foo4~xf*V&Wr8QIiiWbPveOCc=C@bzZ3mamd#5%&B($<?rXTEC|1=qeMjI#m
zs^UeBj53ZY6q_c-&|38mC7$vavGVT=R&S6lSNS#UL8W=yRoZ9EkoYHse3)+c?Q9|~
zEhtE}+3ZT;p+W{&2$`eq3upTQWi{n3s+F8K`gQ3Jz+qJnNNj0hAX1xlMeQ=<NZGpM
z{)q&~fKxh5aQQ^l$yC`E=h{Ud7hEnTgOnS7uG&14t4|sFbNx&z$|_bIoPlC*36|Ii
zE1Jn?r{GGWwb!;}`L^i#cNn6Wygn^P*}(WN8rW1>uj=)OfA#Y;@S^JfZb;*yMw^D}
zw2pxgYcB=2bS4#Cd`I62Q?po=K8Zlsy6AO$QXLw{eMl->j4t(S6gPmdxw->8iygcg
z@K}o*Q_S2Mntr4*D%*3)DjDzU5#o^2E|jt_KUpH?r8?`>y9-#gwuH-skMm$5;x2)X
z<p3zLPCQ};=a_ntAH(<Fe+;{Tv^p0V4)39^X6V@ZvYpk)ytG|7wn-1WW#zpVHOabN
zztO5m_#B%UWvu%-Hn&5q<=yO(QqYChpu_oR47A~s?}08YeCJ&oix|0Eu(MfXUHe<s
z`(a~>y<PQnpxF=32|}#aatd_<Hn6HEz}3U`EeinqeBoOFUn8ZQSbIw~!s!QIl-jU6
zf$<l*<K$gq2HuC<Nz+Qwf~_=CNfY8+j#~U|u6H>%>4v}aF2_e)&U|K1Nf;yNS%bpb
zZ9C-iatRk{g^zznO`gSjeYo^S+|9>Zb$xgWt7#t8(_22aH;b(K+^3MucTF!FH=8(`
z%DAvSoY1ex?zX??r3fj>mS9xU1mH6(!cCh|C{yoK$5vd)mq)^N3b#r;_pAi)!Yh*p
zaXmw}=2uq3oKE@U6giUZIu$!Va2#G)!&7<h>*gYXbbabYS^mtCX?yIR4cqWPbfT3U
z(=I6&#-e(%E&VaOw45B!?d7U8Fp4@4$M$t?YOq88M06QgDGK+zq)>p}*)6V19}h>(
zxQK0uOyWgEljJU|CLdY|t+2x^WbO4ct)auk=udi{EfLiFc;2mFNf)Q~Zc&-$6+;?r
zc4poPfuTzgTcD%cJ>CrO?ht+~oJkJysR2(pKhF!hO3)X$cQe$M`?nqP=rB}omS_D?
zk)^l!2DANXV^xcXE}LAsWsL;l)wIs(+!)~wQV{K1cjictrt6jReG8I^=biX+d{U1<
zSof(^@Z&`yizS?u@yX~yQdR6F5!)l?Q^hjej)Qf}#ian!%{_zjGGm9rU4|TSv!=J_
z=o(>5@=1xW=4;qjCZ0Jdqm55^;wMW$K9oc!4JDZ5<8o&hxLl`BjTF7j&_?_<!}A4p
zxQPz7zS`Dmb#h(1^M=vN%gs!hG0QR=WW_hn)Cwx&!Ire~a_|y9RV5s%0J)}y?3qIF
z>o1j+<ArBqUO<MBk}O7!lIVmAZ|8i`{;THb30&@~YvYzmmZ-g1Ns0PKF-}G6E;#Dk
zo6Gs{BFIYd&!toJ3^2D&6ZG82+&j`Vlf|`1IjR|S!SyW*?Z&d~tr1S41njE$z<OBB
zZ#Jo6Zk-jugnkW4QdY1+DKJ`8uI?$P?aPQ2^7rd+r3-;CMB7KSF3uG>%ii_ZuUU5#
zG`~ACz<~^w-k2KdsVXEKxzyg<`9)<J8r$!ES1@vhH$qe4Tcp@;r^2rH|EFDdON{^3
z<E`lv$KqW*9@F-e89D*eG#OEQ3IN}BRW&iqTZM+`w9<PPq-5dJ@oB!rJp!&yTpP{0
zzYO^kIX+NKexzgqKDmz8^h-fvYf#eR*kgu<7UhV)%(o~LD~vwoLno3-Wq1a9gbmn>
zv7VlO<UYvSK2HTYx(JbmmqRXTV|(@ofTIQ+ssV4JN44GSb@de`!6|@ykN<kks89V{
zixppAsf~|+wH>QeA2hbRd3WCIx7G&Vih8n-cKXCvj5byT&A;Y4enFT>tE-x7oYAnX
zpH4?)QSDg({#hwrj|M?yQ-|=4b(jI5$t$G>kWxD19-;%~oUvh$eUJA&)jt6A8Q>~z
zZw`aodsJa2a<GRa+4ok$XPQZdhmUv+?CyD)qZ(@d>ft>e40TuW4U_fTUsh1P@wqH%
z+4S`j7q;=erTzGKYS!#Rm+t-`@gKn8Fn+Vef`CAAqOWHwAkf@|eOzq?HSn8f6teBu
zX`dSQq(pA}DUmKoLiDGI0ELPyX$}U9VP~k<!;k6b!~x1bz?10$WvgJ|WKqLThSxR5
z+N!6V`%d~6_Qh+jr_IzQBdLW;yIoc`91UJkKD&Uok@H=*yKVH<zcZjQadItbL`U&F
zthFf$_MDgQl_=V?QHVDJU3_!@0FwxpBV9h|BO2$f@k}@N?aNtLclNjdod&8}V`fTs
zV`bHtj}gr-R;*Uc9m#x<eBe;ABhR?I;&|&i_e<!RTdu3u%*8InzJk#U4ya#GLQ%+Z
zQ2ZBtUYwuD8-E>OvaAm#KpK<lRmg~Qvej!DA@0Ivex-f~ng<pa5WX7GyeumVZXUH)
zAYvl_u_iZW{Hz+`m-(reQ5RWAV^qYCUi{osbcudP3{3Tj(I}-Zq9Ob<?m#U0HrzaJ
zj;JpjG%bbSz141XA4PEo`8?>|e1p$<wIbTATFE>(88QURNz_y6X&zY_ZP;szo+^;-
z$u^GK5zb4ST9J;5SEph2Xq)NWcs1SKA4NZ$xB`LbQ#TH$U7#!a#1K^BSRYKbB&F%d
z>PXB+PiedjMR}eQLi;vs2dGCgu%_}4K#8d2o(r`$<97Vwn(5Xf^c8>omCx7e8|L5#
zWBqtB#@SwM%>}GkPH7{L&npUuP8=U2)7w+)sQCs8{sF-q<+Wo2*X83;NA#YL+|<S*
zO@pmGr_Mg0-h{a*!|JW8lf|56E6UtQ0(TK1?}w9W(W|3**o)-1(nB{Q0)3#msmdt8
zNQS$}dLw^YhPHOw>vVzzzdsI0Q1K79s=mH6)#C9_vR_PqCXiDWIHDr%F2leZuQ$9c
z=Z@#VL7GjpnvQMr8unkE0h$}vZX5jj$o`UnRbv4yxXMTHCYC=5tefL&zfa4nry90G
zm=x5dX;xRauE75xO}EW_?IrDv>#&D01y?Tjpl5JBn8uKpj5bh~m1|!jpl;~fl{VDN
zXJzudcIBh<CvoEW!<T$Kv=$s(ONtRK0iTYd77XHaPiXCQKy9gcq05T%!`S0ai>-p+
zmM@UKH<Y&@Up;+<fWJ&<$FK&MPMBE88EP>J&rvG}Pr0WoL><eA;Y2Y^q#YW>)1<Ht
zn|e9mC=rG;D)E7XkIxSYw8c~;9WV|V<XwE%=#sc2A=j@}?Dn*TIHcyPvHfr!JiSxI
zs60voHJq|p>uw0NR#be%h8L5p36ZWM*&?WWeI~Kfk`m5y%ecF{4CPq}On5rP5Ggjk
z#@>k_8x(`I7ynp~s~${Xx_9g7j9sGicspTLhn4Bn6Sw1<x3aLE&$44uQMHO#TmJ_r
z{jO{E_oeX*bN<m=_1^vyk-?-Y{Ox<MFwbLfRP93LrLL7R<7)m*X>8IFM1XDqt=0L=
zrE@p#rs78)lk8aY`Ufx~Wxh%kjw#Z3YdEDtyBG{vZEuet7d6#CZJ9QdcaNTIi1~vx
zTht=>Q?DI$?kIBE#M%d9=)*|@r4C?Us(j=SoG_}U`6g>rRgY});j(E{7XfwCP2#uv
zTdv=H?*ID9%CuxFyS?_*aCb-0MzaGh>tS`Tndy1luaxQ9{vv~(`d*ZYn7#uUQ9B!J
z;K<SGY_kG$^5Jy6<lUg`Ea5(ViKwP<nc%Ou<IsGU4mawyI4$R!2X#BAwc@`&#32B&
zp?t9V+j(9MdvZp6Hms{m|3&$kZ7=m!zUL!$vx2cLM?h!>r(nV?<+wxt$hPJ|(d^Q_
z2+dWP<zH(@>rd{gH^~*`pPLsC7DRSq9o@G-knI+~08H;OaFf3NN-k|xJd~>aj#eCG
z%wOR~)hvy)^Y-3ZfA>Whb>F;O-m*15YfG&~j42zMw}n7=pM%$pOBZd5L|$;-J}DpR
zQKPwjl-DBfs78*>Fvz>Lx%YG#DaQ~4pUa4B>Ul-;8FdEkGEqonRo)q;g{IOe06;i#
zo>{w&PBIyF<%eplr9juodnf+u=UgOoM@1N0dNPkub4kC3u!$fV4`Jbrd-2$9Tlh|H
z^rAf=K_)v}DQ+Kzk_t;5s)Pt;g~wvyO6r+YHAl{lrB!Q^OUav`VKYa4WHWO~IeK7@
z)h^0C<NS(m1;wLiq96tFp;HM)kS1@VhasxV{TF)R3DW{FwIm-s^p(~5LGK084rb={
zS4&IDz|zUyhF#zACE{&s5#N(1As%1~o3UVw+k7aZ^OQ4pQ@3+ugo}En-(mE;0!j0<
z#y8Mr!0DRVVpLMEW<j3xpf{tWjXLF!3doa~^wD#L7-fF!gFho7+pYaT^N){f0Q!~V
zbLzA^eW?cBiOd<1+BqBIfKg)d$SK@~B!8ttN6+gTS~w)vq#5#KnEx}`<jJK6bu;Y6
zPT4tkLXPRzEUQ!1@9yKxBE%mRC@?O@_fj0dZ6QxgsWpq^t^q-DJ~U`Zv=f5tb*jV9
zdne6*DyT+3g`{6p+na?4Vu~>~qv35YSNPcGf|Zhjqm`A6Oi=QIOydI$Ytj>!md=V^
zzZqvYV!wpCbj0iPUqaln6Fz2JlVmh6S9-&BFUQ^XQOP(AlTxwaw=w0bUY<(euVwf7
z?E-cbkm;5lZtmke{+aJOKa5c3wqCV~bA|Tzw;P9n_w7YPfCf1zX$BzgZ)w0q1>GY^
z?+Ca)4s4MmTlju(w-l?jFA4g~?m=^;3zsUp6@mD!e`A0D!g;**MO9gashBNMY>xAR
zM<SOLPqk#il0I%Z@s`r0SDV<obh?7qIH`%29yMxwwEeA9!R~kqWEmo>5yBDhf-#he
z_~4>*pdQ|j6{B}$_l$u_t!(jlFOp8*2ur0jn~zGN#(uoi&hM9yq~%gIBF<q%R5Arq
zE2Y4&m9SEkOt6}(!<u7ztz3X3@OzJDs<Q<B97QmP5cO(Fs(CFiiOza{xWm-I4>Xmo
zJtaY#24A$Sx8rgVXw|Q5uRbf^>F3c**++z}uien-CEWzBPQy-{Z8ztCm><h&q-wh^
z?0k+qwdBz3d1LdZON?Z_+J$x2b0uJPNT*+5g;&LG_DCS8y1Sij!DyGD9ml0BFD(qH
z&n%H~|5IUEEKgUco5pdKuH|=>dpx<89$xX1J+Yw{4!8ULSG!hZ#y;C0boe1l%aK~c
zF(;0d1k#x3i`?OH(U*Xr@de1l3Tzho@x;(5fiR7xC0Y$ZNQ|n1?3Vy6>bDP_l<^CR
z<j;*=`dx>Elx1EN-#gbH=-C*74{K+tt>^QZXQW7peV^&k|M!)so~rc0GqH0+z}zCu
zUH}=oRQV}Tfy;oi^DsAOQ@*V$4T@t{jxclkdChltL1+||^xCgUD-)jq&{&?DuXu9*
z`u}xaC90*pAa0kxPeEDZa7%J;V8<cD$d$<Mh+m!-P4q9(LvS>8L0jkP)A1@u4-eV4
z{FR4q+!_=iMx<mV9LGt3pJOF!|LhW@x9*}yR*QjJ<U7qLMn1NgjB%E<@pQdJ8hx!s
zU+HQk-1d`D48+Q>MJ#s&nREgNYU+qLzIfCdGe{-<^v}^rMz(}Q<>O-K?97GWS2jYl
zye(V2rC+PLUwk!EiiKK>rb{99F;mauB{~e8iBBlLXqUhYPix<}i{1w=kki;`+hc3E
z;pY!T=yoW~<z%#d=Z|nMghx54D6}v}f{Y3+WL#%x9XkqDt&ZWr#d-efEjgb4=8F_a
zQQUV&*AqL4h<MqLs@$z4Tn7!O$3)JpH>`B;(#gT;EQCdGKwgbJ*Y_Sn3#afQYbR&9
z<uwj|Zx{WEZ<&Of*zr3=_pp)y6;@aMWGXF|WTfb-9+eaUQ|1b7nQ-FDN#ZEeL?V_8
zw_5(SA?V0LK%wnWLlf)sbvY;vUyKV!1Dxz_!JU)}xN+Yls+10Drf|43Om{oby%_oj
zIQa(vix9LLyw<8alFg!L-hKD&HJ?*lKhb0zoOr$u4J^_cM@L;|fP?wiqObOh){JhQ
zBU{^?v-#yk*WI2EHQ}U;y&USchv<!$2t~k=PHMdgTMe0s_-IgNLVcyVqWoc+S%l>b
z3@qZ&kzlmjiRRW!VdbsFL{t0Po~xOZ1n2c?o9=O_ni)%dgdmAs?0rHp??+BrAa|`*
zdt}wv&l_ct%+~C%pcq?=-h_s)#wWk?CnDmFh$iXyH+FP{VL7Zur!B>dX+&dV;-i-V
z+a~G{tMI2LO9Rd+?kAl|q8)J5<JR*Ojo|L>dIV%?aa?R@?t(_a$eN@;gsNOA1f8MP
zjKA5@;gp+*Z98~B6ED*7B$c(`$cGX?AKNghcon{(Dl3ow#?lgs!f=Y0G=-{)HddBb
zW0SvoaenVL%RF4D#Q!3^rB9|J;721kNKvjlq4^haF?}rS`JvPODgttj*VU-}i31qh
z-=<>EvC=-z+Uz_5n)ev<%(2ijUB&kcaJ{AduwoZiEIm4kyo9Z8S5LwpPb~jZ@%{sp
z^vs4lRwdX4HiDAu3uGqS6)s*Dtl95#9aWh81JI81{{y@kaS~wB%chwD9p&h>?K=k%
z=a1UohUDv7@um_jl@l<fHa+@m>8q)xt>nZ;x#+&PHmEPX9>o)ZbcoM}-&L)`GL_~U
z-RE`0P3Ri&wdq);z#^z%R4`T}X7w%Y?&j^OSLAx35b;_3E`Nqkw#vdcDa4+!VwG^@
zPCdD@IxuxlPc~ms1KkA^YbxPTrTaMY;G>@@`&ZAf4gsH<G$U&25|Ub5^(EtroA=5C
zE_FnV%JG={3=(dN6*X0ojq$bc&(U%R3IUGZ+a&#59nyvIh3!i9kbaHY3K@2>EYnMC
zcx&Wt%QEq1e`T7b0%4YyZA+37W2fQ!s_sFjSEfMoXe2v_K%8N|ffIbGs)!LJ)7)bn
zec}Nw*HGu4Q+h7CKbHM(%OKeWcOdPDmp3;cj|Lk_uT&$ooD2k%mLYKTjxV!6Qj9JR
zW`M=O`5j)7^o81D3I&F#U#twQY=BTaNvzsL^CL>+OR%(?`#bOv)tRH;!px;&GUZ2m
z<@k53>{9pG7Y@?XK3K#tl*6PY^q+by3H;kX_qud?BVp8eCu|IdFb_Ak+gD8dA*W0$
znB9%Xwl{BRo~jqGzsEgoZ+FkHJk8eSA_INy+RawHdF~URfsT5P_i96*-Okq!Pqdzj
zw@d@kD419I`#ei0PZtDiJ*(JN`{v=VU9TF8c^~wA{05zqlqj|t3u@@7?)pF9rdxh~
zw5`Olc5^N;iw82c79-}DJF}N@-XD8o1C-k)T3Wu>vBpJ6LO#|jX%|m1%*D&us6;3y
z&Ax;`6z7+uGVbuFw9~29MrJy7)as0d7t=Qa2;l!ohnD>VWW(1NDjgZ`FwMqVi$4+l
z7UD<AFv@D%7P2m|PCLig2~E$Rv{rprl;lU_lvKpxrW7ok9*#6u@xbjC;y4JlmW+6z
zdN>7}E0Tq5<eYqo@2n@hX9$f*pzco$gD*LeFZ)!6-f(4GLw};Aj%2&HjA}TG+EB_D
z6%?0x(4w$zsU;}qmaGc+3*eIq8IVjZDNzkM{h(`gJ=ZnC!Trj{9=n(F_sMNqCcKF7
z)6##9!h21w$2}l;O7W~P)4Fvk`|h8wI=9<d<9!-OH1;41>1v*O$#ec}G~vcv4~G={
zPO{4{OzCnESzfx|(w2&IcA(%w;(f{j^hjem1%2K<RZ<7Rux)Dj_KkPGLqZPUKaFxb
zHnQW3S;F79@>DN=2`jZ=cr^)6^>+sKXcx-llWA`7q4^7(uDf))$dpXek6P`ijN4#Q
z&S5Zyd!WuPdM=(Pp!Avo{`=mM@4t@@RvFj`cvue=8J#9W&%8|}ox1VP6$y)qnZx2)
z*=bT?c+^ov0ju>Vag+YL+}q){0@i)s6KfGtGQJsCSMLuwF{O)D8xftO>bRwcY9CsC
z<>bRm=@q{cxn8h4MYDU2ByxyU#5KP@E#g^wdr^f8))owv3x!HPcRQWDYVNmxZhxu5
zlZ&D(?q<9()=;9dPMaxi*@}$-kilptjTm4=>CL{<U&#kAnI<T|+ITb2Cy_ACl3fpE
z$3-y8LW)5b6=@MtZOxsit0W&*(IYxNk;vFZN<BUmH>>n_8mrt{wTyVvC@K|QtflPv
zz@FUyp32c4M!tMOHesafVBKVPT+6}9J=2S;%+0`E_7WCzTTUw6YE7=|5vQaxCOwmG
z6Y|MMjf-+IMYoW6;elZ!A-IW{<Oo;c98ZXyY_0Y7SO*Zfm5uIK#hj$UlB%@F@#YPc
zJzMUa%JR!l+-ysdxUmtMyehDs(!o0$19B68a3PaOwLx)%t(y$EhIcz|0wmn#CR#qH
ztcKMDR|FSuc2Sb+(2C0^cih%&BU@E1r@UcJjRHmdE5ry$F^d#oQVJb5%Cq}rAx<gM
zK<Obs4_v!l)cOYyfOJ>sFDPHV>`wKN`Kw(X(0IQ_nj{o`PT-scH{=<|)X6=C8zruC
z>N~%Pm$L_rI-q^NpIq6xk0Hv>pU<o0k0J*L8ukdsPo95qe&aJ)VyrtKJH3W|p2rVQ
zB^0Lxk0ueGkV}#QWhH@$&A$&jx;7UbqUx%})BoNZZn18t|F1WQT_Syo_`&ZYG%d~j
zExuXf6z&iqBeNE4&hUhD1!?|MnM?0!zJ(sLT;;S4oRjmRn?SDrcwi0mV1=QR!!0|O
z>}*_7^`^>iwJ|UJs>0lEdLY(m+c!U$JI^F`VO&(anBT@k?L^d@m#craiPLxoP5(Y>
zI8BT)$@L5rKE5y9T(s@{eN=mW{|3KZ{MW75@{L?P)*A{URo`~8g!M3~#_IrHbyhxL
zedM>m)a~l*95;e|&`G45UYHWdeZr)R!Jp$>(On-YDV90aQcB+3z*pb!1Dfwwwm|r<
zSi;B6#Q$g<mY$Nk-2NHE`^^*6q{Ova_L^x<{a=0jjftVbi1Bc%#!a2?%Aylh&BWj>
z#cgTLYFRI>09VeLatL`b>E)d)^@wdIomdVB6=RUvx^^+KqHH<vn>w+g#9I=RAe#$<
zspmZB*P6;T$vdhK7hY?1^BB|JWO~kV>18V)$l)nr%hfV})V;TSnJ;CVngw&OvSJ&?
zhlf@D+wK~^(w$M;T}LucsN13ru;7bgUl0u|#^qF54ME%7`!j89R^Nwh<Na)g?}dKu
z6x%3@y?m`&){`%-b}}fh$Z&MNs=1av{*+peoI=;uMrQ=Zds4}3`+PbEhmc1nvY_-w
zSc0gr?p8MEX`Z?`95FhWe`vkRa*Wb$=%Hma+<<p)wc^ot1!4ZwzL{HSG6az~hN%DP
zf2)yet2iMHMN(!b1`fU>Sa~;N-An@=pfI&x6e-D6(ts8>4<yW1WoghSnz`!@ikcjq
zr;e}qhHc*EDpui(Ia7<+|DBIF%00vJdOtHO*FhX&CIhSeEldXRy>+Dy2&(n^?RwL+
zeWTuA^QP_7vsL^9v{!X4Jytid9kqy5B=rxuT^mBw%7u$+peCaO3}o2XEraT9<(eRP
zVWpi_wvWZy<S8LgY2rp+ICS!d@p$`W@v`QL1`S&T>O9#6cnnp$nDK2cQ~e8Rglrrn
za(@Co`k1`>jdp6a<UVl~VR!d+#vnnHeAoF5gXW_m^$0_lp`(Ye<tnM5M^I_UNElN<
zJo)B&rK6kN&reM)5-O$5c7q)JMRVZ1^F{L;%#NIC;M!v1>IeLGu{H6hme_l$Hb&N~
zZhrA%fE_M4;<h8SZJ9n<=E--Y46OL%FJLeJGwQJFi?QCW7y+L1&ZXNF%veQVYsp=@
zBL+hjR5bS&v-0q{k3+QFmBq(eB5T?*Lf$4mz;WxC_gLKRx|7MI!Jf$6u-YfEdeE+A
z(hXiH)4l2zP$VLyy&X>1G@fy2s7{s2f-<ah1s3#Iq{clAqROSrJ6`k-Lxv4!01EO@
zZo7X`9SJ5zS5vq8nyzg4KAAAlIo<dyC4Ku-I+Hd{=MIcOFJ-wzyIv+4K~b`pWo0D0
zg1!h;gb`wR&8|3e<;GRO_Om<8@2%^v6v0!Gxh`1|s)B~1u-e)Fy=>dGKATT`-?s%S
zE&h;8p;fixo?$GhvG8}xDmixUs|JuJd8J?Nwx-z=R)S2N_2Nq=%;L73guF4B9Dl4-
zyPdMDmsRcXckN#PZJoLxg|hLcXN%Xb5(sBd_lFc~s?E(dm~5+dHPT`*qHFvWom;$g
zsQLOev9p}CysM9(hrK3x|A}(G`V7*F<hoz`;2slDZ}wKSWwvTj#PVc3jGkn&jAPiZ
zOqK4VA|EblR^v&ci7&YU1?S+&Imp!~ojf{*+-Znf?ki21Kr}b$>}V%zBkIuv6cLLd
z<3Un!%0A7%vYQFtGok08DRkvg0QL8B#Sp-YVrr!9hn*>KoQQD=!D;1!iw3&CocT`A
zl24g7tSH{WK%L{@FX=Dlm;WeaPRzudZooGSRq^ovfW-lie}I<{!W)RF$HXYJiJIFm
znKIZE7TQ>-<VBX-W<gWvtaOw}PQ0iIY_#%4$z)v9$jGUl@;3ni{C@yU;aQvB-!{Aa
zF3oXSzfv+(7&D9?N5G*-&+w4ts)prv9BdZbuPq~%>ew};h*!*<r!h)@s(`h6In`6B
z{XQSHJP-6{eaoV)!;ow$t~o#i<8LmbX=<?5<;9|@N18g$yQ}C1L_ZI9jWb(9-L%ih
z!cAKoYx7qW&gL{1ZW?n#dMo#8x;^amVxI0cg-Kb`2WoqaVIM0k%Cg|*2&0HuBMc?U
z47H+T$-J}tMNt+PnO5&%Pp4h2{Aa5lZaj&Fd!zIJ0h-7$=<1dcZ_=V39@<#V^cQAO
za1~#bL$zz@3d9ISwWl2P3|@|7iyg6f55C1dy_iicnMsgoI<`;w2MF{Ar>W;fR@P@J
z;@*zw(aUqsZdG?vEU1vVL-Sx<5iQM%Pq=f9u4qfsXTtr>O-fTw<HcV2dADVon!{$s
z**>Sa_ic1R9}(H=G4kY6M?JJXSqY-NUmq{?(hhX^E5%6nVYLZB6?Xr&!O@bfi7o^b
z)WR>|9OjlbhNnYA4C5`?E}lYFD%H+{3eGC^2s<MxY}hKooH$u07<iG#Ke;pd2w!$Y
zK3#}8oAJc#DN7Wmjh1Vf3U2|#B^1$yw=Z(<v1r^Bn8)O40%h*AZewov&Ph%kx0sQO
j1M00c(YYRGMB;m0^g)yV|7CQBH!Re0EqV{%|1JL?MuO?b

literal 0
HcmV?d00001

diff --git a/oxAuth/Server/src/main/webapp/img/eye.png b/oxAuth/Server/src/main/webapp/img/eye.png
new file mode 100644
index 0000000000000000000000000000000000000000..bd331be862b9d4244cf1660b3f8a70966116394a
GIT binary patch
literal 632
zcmV-;0*C#HP)<h;3K|Lk000e1NJLTq001EX000&U0ssI2!TDk>0000PbVXQnQ*UN;
zcVTj606}DLVr3vnZDD6+Qe|Oed2z{QJOBU!8c9S!RCwCVRk@17P!yenxG!L%7AjT>
zR-&k2sdoOItu}(6prv4?jw{;O2!bdmxZu8<IZQw^d5H!_nYl$s9`~N}-Z}TaP%O)S
zygBHXpnQJE8##bpsZ<^$Fpukx$78S88w>`M$z-`)?)Q5vDijKX!4Qo`tyU{X5DW%G
zp^y{^CFRFrv8dH*-EP-nu{azK!0B{4tyar0%;9j@?RF-UNe+QH$K`SXdb{2BcsyRO
z7tjwR;s}s`KA-VU)AVzW?RJ~X<)8+nfFQT^`Fvh179m<75b*hYf)i{un|wZx^Tp$F
zoK;A|@?y1GrPJwBsl@(_*=&|drEoH!;ImvVClU!f1!*8gIY0#KcMkZ8jApaR5|Pbj
zLBPFB5paR>OeVu^<ra7Oa9F3)2?Iz$A(7kd7I;vv*U3zj+iW&KiO&ZJDT)%c7ak~;
zN<IO0TCG+^lS!OAM=Tb@D70EFvWzsj)9Kjlb~3ZkXbgwLNF*ZZIi?JjK<n%E%3tSu
z0NWsXGMPjp2+Tm^p?tkw3)aPZSEW*6FM7S6^Z*j!1mSQPGkB{4E<8A$PUu~YMk8wm
z0SX#YA~LWi$cwH+vfuBQHG@)<Je^K4Txzu%GQx1EIv$Vv{XW!pxm;)p{=mxR;1i5S
zqe7v88w}{UuW$<(jYhNCj5bBP<MZ*wD$XJEvit2n>Qw|!{P<u0+P~-c5?}yKr8I@Y
Se~04$0000<MNUMnLSTZ?#2Zuq

literal 0
HcmV?d00001

diff --git a/oxAuth/Server/src/main/webapp/img/favicon_icosahedron.ico b/oxAuth/Server/src/main/webapp/img/favicon_icosahedron.ico
new file mode 100644
index 0000000000000000000000000000000000000000..04c571577fa16929129e10958f3009d9f331735d
GIT binary patch
literal 19608
zcmeI42{e@J|G-~v_HIp7Xq{-G8nc-h2BVOr40ELruExwOW0@H<V^@@=l2){6v9zc}
z-J&Q&o2)HDq9n<cA_|q_{|>!OUETlObI<ShKmT)Pj`1DO^Ie|z^L(H0^SsV^XFJWt
z;#b8PiU0uoYGr9=2T7#xEiViG=7)rQfP@0q(uofMN-Dy)6p(a84FIHYEK^e&&66YG
z@I5(Pq?M^DlFQ?GuzWxO2zrvaw_xQ>np#Y9b?g>XgaZ3U@p6}2$(f9Y`!)0)Y3*Zr
z?=zj|%hS^z6!a|2mzPtuSl*TL0;w0Qz}}*#r#C^tM&qOPz5YpPbl82zZt|upSh?ek
zNhxjRnAp||&1zk#^?UX|>FB>A)uZ9?#jI!mFa4ZV)A7-D@Q%;foidcomDY*c+x(FR
zm!53NozVEw(i!0p;oY}|xXqwQeJw@m$cY}+A}oDsWROfFUG4ULfE!=tT9os;Q94`6
zh`9CUFH1=4GWUPDsPP*w&}AKAaqHS+)6G>q)~}JZA2|E;SZ&ElS)=5k1##|9^$nAx
z5lZpo3@h7;_WsGYZgvGe#TLq;BhECC8-^k}2#!9r^*zcJZbdr>rQe^VQEoF@*8qTV
zBFo-U;7GM5GdR9FbSB3g)CuzCLaYJ6&^U-oXLy4Gq&v8Q#WvFDx^`Uy$zmF5I1s29
zD%TYBWLbvrz||o(_KXm3hCWlnn4)MHM1~yrf&w}+$k&I>CkGj64ErTRpM}k64dk$j
zz}rY;xiBEokxE0Fa(Ez;phHA4uy{QrNnZy`(AUH1E=A%nSRxvukH+evFjz81pNzpG
zzr8dliqI!R9@B$tXJ-B_9Q2owhNnQlC8N=Sfq^=KcpVOJ0~)KZuaCyy&^R0l(m?Tp
z*#deHip|#?aRU1>1NjUdiz{Gp*hryYx;w{TV5FfT3^e-sc3r;Q(LikeH+B$3bP%13
z#_C|u;~6m-qc&WBp3m^mm<%-N1Nwq&0Uxr%j%x=YrBX*t#|`J}JFX>Pup$7uf^S5|
zwdC6eb3wEn$mjU;7~qNkXe65B4W2Ks1IOTs;R;e8*AW+9t>cetwEL$R1uT!B3`E%T
zQ!_A#^%FB;&xqM@PK`{pAw->Q$^+>F4$q#$@u7^Q>sYOUN)42rB%~IV&S0^H1xVWv
z{iD%X>WujV&FBJ<0@>=JFnAOOXD>``67;hKLnLD`B2Gp$fAB$tmJyRKppWkb`<<8X
zbbs{2VX{1e#qu(yDdL04AbW6lzH|YF<xAfHqPgr1hUl?I5zXQJC0nui0y>)kTA5Lx
z1|1fQNd_4t0+Y_bqUgFFx+q;HUKd5j;5|?v&K>8W?~c>eC4$2^s8mt&zqmHzF#Lr}
z2y#7AZI~Pe<bE`j$oeFGI)*`~qX-~|h{9q??oc2m3FVF@V3_XiBm$A43kMQ$_Lo4m
zJQh?8={_Pl!fRnd!5Hp129ZDlQ3L|s9i_{_gD7{RJ`Tn3AmQ*tB1RXgL2!t1-25e!
zC5sPbUa&|;LU}n{?pA|--?zdYKCI!g#ijH3pm0?iX~4^Rw9bu|F`><Hbs*Cj!h%O(
z2vZ$o8lt~z9UIoD<u^0dU#C+%1S9@M%zqvu&=X|;-9j00HLUe>Cwz{FAdt=jmv4YF
zM7&iz;`e*Q9|IVog<FIV>pw6Re0spYoCpFA#4<q-6qex5MCs~7OG=->V4xUu5(XrZ
zFhr8x=tTdEi5ROj|CbXnmdOlHI(q}iq@dv>h8zBibI0JY13=zCSxC@wr9(#}kjJNZ
z@HoCmI+yFiV$g+)5*@&1emh%?)-t4kgA^&aBjiPV{1>m43G!I~BvVC3If@DS|LmIo
z_1Y9~&l{Om$=ZZ>osnw${muvPrhnZjg=a13$Y3^-pXS0<B`nte`^E_EZP2lmEW#Z=
zsxZVXsXv&1w;I2BhYlz3Y2}|C9!3TyVm_XC&c8jPj6@m7%~&*;ya-^CZP0MER*_9P
zJ{%sE!vraKL-csfB0k5up}Tn6$W1(DIaCZmq@9I{sJTeLh`sRePlirb&@Mk*JSkX1
z^k3S3)OQq~kbL}yPe3Fb26~~f!r$LaMZ14Ab^3c#(e58j$1K;dSpo{~TeKgVMXZE(
zC?haeLwDsMg$Nxo35Mt&n}4*Rv4TJ!M>7_5Hs%Y@cz7t%u+5Jh;~F~s%uuA`o8idv
z6uEyMPKS|J=<Xc)#{hctKLa9}0<Z4>fE>G`|A2GYr6dSULM$o4B^D-FNrDR|A(oWj
z5(^WoB*6uf5KBsMiG>MPlHh_#h$SVs#KHtCNpQg=#F7$RVqt=nB)DJ_Vo3=uu`t0(
z5?n9|v7`i-SeRfX2`-p~SW<#ZEKIPH1Q$#~EGfYy7A9Cpf(s@gmXzQU3lpp)!3C2L
zOG<Ewg$Y)Y;DSkrB_+7T!UQWxaKR+Rk`i2EVS<$;xL^`uNeM2oFu_U^Trdf-qy(2(
zm|!IdE|`Q^Qi4k?Ot6v!7feDdDZwQcCRj;=3nn3!l;9Ez6Rae`1(Og<N^psV309Ke
zf=P%a{}z|x*t7N^8+yP#5PFh+TVwB4=qY?8!_tll03iziAR-a~K0q?+0RZ^A0l=R=
z&_nt=0AQwLWSd+N^qmOCR%XlXgPxpl@a870N!nDU-_+k*P~9$gm`BW0mR>F`D=Ss1
zh1`GIVDYx&YqH3C(l2%$XB5XBNOeTTWID0Q<yTu`V}F?%T~W)PS594jN4;}?l#3No
zV7cgMl;Ent#;-bUZzgMK;^J)He)8WG)^w)rNZZEbwvF2m(!jeGmART}3#EVr1h;tk
zvZ8rK@-nK@QGhZX0ep^c&TEVL;tgC#TH16tdTqZ{B%doU|NQe%6!7BnF=a(5DN}C3
zW229~M|Vg8%7rayQOnY%(h2&VCZ|JljL8?&5`YvvWzT0_d}cTid+ATqmD1WYrAa!4
zEqP6SQc}p(vO8yH#iVv#=?|zQ4KV8F<fX5F;oXAYVWYh-EFiz3e<dd@sJP9c<M6#n
z{+Ttod$m`~_6*4&f0H$lZ;zW~_%+zpbanNfp<Z{3zOFf1NiMx6;M4Q?X@}3wNP0!A
zCoX+gV?WJ+clq)}SJ#{?*9t$`37$Jin=Dv4v<Zl#Stg_!tDiA=)bORXdwqFHKxr7r
zZaz_8eX;zQjz7~)C;KX0eo_Q7VOQjo05E{v%I}{>O=`DaI(yMTgR!BSCwY#wd1s>5
zFPa}3q-Z87GzF~D8eUimzazCM`Z&w={j;NPUmtHtOL79Mju@NB-|9`sPail(I=jGE
zIknb3bgho2*=3x}@2l=4&+VgT9X@K@EVsDM#ce{;q`7nd{4)PkdKt59S!w01My(sa
z9h;r`;Mp|a=Aw+nq{eCL!E-;pIp#Xm%uD{0!$LvM;)Goe^C#x$rDmu{Tu?UgJAEZD
zUU^2T{kcttR?g0wzTxm8?O*W)iRj;Fs5?GVSI}u+HPP7d(BA8*j}8?$ow9przH?(u
zjM5}d*qh14m#;9q!e%W4?xfIy%?S2#Q2@9P^P9Hkfy%+9@der}Pr{(38w!Xky_*qu
z_Y~ftCDkkPJr-+pRE~{6C~mjXB$H-gbb*L9mjz3;lD^!@x(Z%nOCx=qaW`bH7%*4u
zh%PNqkL`_(E_G;J=)Bd;$zfN0y~=O#rfbxLy%Lw)%YOZ#s;Vb0|2+;|x9ZQ={k1k5
z)AA{gj>=~!1e>k$z?LaSZs%^F7j!#Ea83{Oyp2UA&aJjnnSf}s4fnjhUD}kZ2l53q
zx8z>AZFlXkQd=x9Utw)-PhFlimC&iNRO?6-HB+u`^86doU6nzv29#5u+%TPajWSu6
z{kcABAlbOFF72q&r^xz+7PQod>bpyK4KgQuTB}-N-B;MODSJWMokZtYTAKCFg~zK3
znJ-hf?pVk;r>UxKdUM-;*?C2-^`N8Psp$vIWxWCdW;qw04tw=VacjTbAC=VwxnZ@}
zJKMkTtU~8I4$$boc9v(zN+Ig1E!7q)`W!l#h@bA~>WZ*h@f2xa;5&1W^Zdqc=F0Z|
zi>v%N>}hw%1wr{ii#r9XrYf?vq%OBE+MDJLWgeMUGZsH|DY?{osrKs9Ebp1llYAcK
zZa#BN*^m|_w|JKR!54kaI=1=~Cg|U9$bPxR@0v^mVhb5n^=y}A)6q6lBfMIw8spxL
zBl(M`I^yT8j)^R&+<mOWyRa?#Z18ohY>!EP^HTV;>pe=|Jv^JY<X(SHRbxYS?m^%#
z(SRFXJp0|jSu{0Mi|lYOi}^tZDw!Qq5HF_#F_?2Q#Qv_Mu{nWmDSk2wCdjJZ*OybB
zb<^v{)x6fC7@n<Fi)Nwr^_}h7^7ED{tSF;(Z{w6%wD8LA4W8<K{(0N}Y&X?8Qm$$U
zX}!k{`4tNf%koiKPZ5p0B{I_cs&+1^HazJ(q~;TzO`1{_uPw76B2oMC1OJ}%V$b{i
zwrlzeeD+Rt1&~oi2<aJZ>!W%O+_@JTj3FKzYHw9Jf9TLeMMZNh*=o)DMREqo2VeGW
zJVMMa2ljHLmTBK!A7XZBAK}#%a$W23;>(Mu)-loA?@G4DQoM|N%v~QO7~y$kyKnV=
z@DH7{#&#JpHRE8X_E#Re`_a*47sJo*t31R1*lx8)`)2p%s*=@Ly|MzP<r^QIv-cf=
za3b8#Xv-7=h{e|%YiE4?P*@awl9h#xw)#jN*qh@b&stG)q%QY4;>G7Us4%J|rqEa)
z2zvV+o?Y4(@h;rkxCcFbp(%bM@AUcLV9=vESS8+|+N-Rm7ngrVNl&kx8q>{v@Un8V
zCFj#^%b}O=Q#0cG0*{8hE{(kwzNYit@3py7`1ll>EG`70ITe>m%iC-h8qkkVYzl9?
zFjSFt$#n3^GiELsp|C4C+3hQvqcKt5rqu2ImJScI2UuLhRweJja<FpN=Zf&pZBtO~
zePmu1#SJ?!8@Paxshj(CW-V3A`uIS4xyQMN2G^lCp}uk?X3`s@wU>-=^=}(C&VQ`f
zSQS@DKCy^0!Nl^-yrzWy%Q+jnS0Q2(3C50W_kFY0s=VUN#7zJWGjYdeI`>yK^oCL*
zo(E<7ygEO%Ok?mPV%g)jQe635YQU^tFIP7UTx38XzI*WY@h%@PqulLb>FRO_1O~5f
zK7WNgikjx7QKL5Lg5i$xZKup{)g8Jn6`{0wVrg24b>9<P^w;*MgOBeE4%F1lwu#zU
zSdmtHHZC8nvCd>~p<g6N#}%p}J3_Ee-0Cp*{jQY1eocAA-{jBu^L3=k(-ljkyZ215
zw#&V}tN!wWDJt<AXR}(@Em#ngp3bb<T~hnDp^^9Q{gS<urYwDQ-Q9#=KeyB^TgFyj
znu|an)EMPkbfQALo2k8@0`5IuQq$kmKUZ~krBPs}x2ub-s<ySl{NC(UUs`J84*N$S
z=2!obW|+}YbYtI{)|0!Ayw$l){?c4A*XWS0ZuyQ9V=`^Mzf*>5^d9*Y_SAW&PEM(Q
zxb3tR#soX>I6ygE@+DrSq0b`6?3G2J@laIBOZmjdM%SkAx6aVIkT<mG%$<!<UqH&W
zKb-VV^~q%Tw9DTz?VsD>J=9-lmMf@BtX5lDa`kd8YM?oKb5)XqO;_WKOCUWYK>e&s
zFb1oza3Ot522gDTYF*yYT!S}wW~Azq`IXyuanW(Fi~P_!g^4H9ZkKHFbq;Yio&02K
z`AL}-gjJl1<P3-NvVd+(Xp;3l)?urC*-#l;b-+S)e|nycj`_e$kKmHa30D>EoM-gq
zdtnW>c2#DOS@G8IlJK<km1eu@71G^{Lw&a%V3V&5WY(n{^}d?mP%PKsJo)kAnDc{g
zZY^ueqLF_$pj=w->KjncZ>@T>`u+P1j*dxU2Te=KHemNBaJx}k^_@N8)N<(UAXsl@
zYna`0@@#O&oSCHb*O}D@Br12>k>mr$gO45Zoe##{+=#+&^79(lAAb6D1NK?sP+v!H
zGRjM>=lm*G={^mMs!oH(LXt~tj%zDfm)&Tt5FJtGug6?nvXs+0xeJxcIJUx0w(5gh
zWB2PbZwHioord&@m)?EYQF4WS-H?ZJOI5bEzEfj%_u89#&VdOYFKZ5v3!FEFybcVt
z{gBgnaV0M(pg8Iiw0rM3a`B{V3pp3jbWCYtajMcUzkA<F4VF<!w=K^Mqnt|jA`;#X
zMB1dtwWNMgwGHc0P(5NIe@?Hvy`(@hl48ROF@0aiXco9X$!;t=$?wTXZ(ZjiH<2Fa
zvF*C@ra=!|{x4H+X$6KDYh~w!H{oVE)=Ymppl~|MSVpJ9srqBn&^g+v*>70~C!b1L
zLZ%s1C0_S)F&|ua&1Z)7Oj!ZDk(khU;+KrqfyW7ray#ZXnJGwZR-@icKtw(4e!ZXj
zyt4CgPKjU3+Nsff=kA@wE7dU%z1f+BSq7+?L?}%%|MRq;f|?2PUee~kbV_gkNrq0A
zh4%q>-=y~0*K!{pE9ecodp$;}_*77AQ`x25K4p^>KZfqZa8mu?btzyQ61`#n#W#V%
QZ@;oyVPlqMvVP0|03u`X3;+NC

literal 0
HcmV?d00001

diff --git a/oxAuth/Server/src/main/webapp/img/footer_bg.jpg b/oxAuth/Server/src/main/webapp/img/footer_bg.jpg
new file mode 100644
index 0000000000000000000000000000000000000000..f473f46aa838da8a1b5c59623ab549060ef08f79
GIT binary patch
literal 13094
zcmeG?ZIBzql|9m~v|nC(y*3z!0$KhdL|)COMl)t(^l2}#!0fI+aHYy<rCF_vq>(iv
z@7k9u^BIy<T~c7at5UIz6ChQ|6@*W7cZvB-@(Y`9Qo%7K#7Q7$V+@2G*1gxG(MqtK
z@%p&h%5CrV)9cr-U%&VIb@xn9S6-?7j?B6w-WMl~gCVQnk5mpjx5dV?!-OOf<U&G7
z3vn~Ei4!me{s=RlG*g_AA?8apd^2-FmB#@*905qqg<N8Iiq8T3yEkS@Q?>10_<fGF
z{nyomES+WlhSK_w=2<hMo4PTg7d?>y(X&2VNb92p;aQGV;h*O{Jf}*mD#{>&ICn8t
zzm*ChyBsz7%r0jQUyh8BT#U1-qpRKy=Dcw`m?iagfKRIWGChu(Y)8Zrhu%VuSihBe
zUm^{C`3~uzHf@R|h@<jX(n(7seKoeM{DxdlI$By<T3b3=TRXbi+uFP4&g|%zId@)n
z_uTI8d0ibeRe!9)Cm}PVy?sXKj9HzXv*vVmcFsZ2Imc?!^?3wTenGlg$a2Cs882~k
zG0rZg@>?*QsXWE304<vtnm}PpP6(8yW|zCAwXGe(p|O%74yRo?i!e=$)6wK;cDq`d
zogD&Hb~&3C%;uUymnXZuTdv_<b8gywe|X`dx&8Zx1hI7OfrxwY%>zddA4?h1S$iJ1
zZb@|KU^@21-DcqIgKOW=-u>D2Pd;CM^LTveEqiZx@YbhZ`2Bl7eCX*H|8Qd6@YZkM
z_M?ZNdFie9<(2C*qc`4u&m+&i{KpTvh{FNeHc_42u4aj<uz;K01R8Adb~p3a+%yL@
z*x!HPsIX}0aOv8cBLj0&hInkT3l(rLk)AjRO5A;RI<_`oYH!q3_-qZ9j;m04jdVC^
zpIu}HdGD#6d-p~v&%Jk~?~>V<J-DKB;KaPXix&OMeU*bJqC5BA{DaD?m3P|D8V`P<
zhb6&qU!n;^kP!E|Fr{!-QQBfkn|0*a*N^-6&)dD{pE5srI{o54taH9&)m6jOVgJ&0
zOK4pug%qr~+LGvemloTsNsg0=^3R}D)L<hmpHnNJNBcTX%dHdwU}!6t(3nt`l^Du<
zf)-X0|L`!><N(4ngv3-SyYIZKM&T)aBS4!+qLgLh6e{yWC=*hIsWxG99>MAft14$w
zM}2{!aY&rBghN9}n!+y_(EeE332)8L(}A=#`VoDLBea}SS}5gtfIxFxY-O^vQaQPc
z0H+6l`$_<_5SzUVz<k8cMQjmbOAzZpj72Pnn2J~!u_$7z5xW$zb%<?1>`KIj5ZjDc
z4lxt4t}6k23Bh6negq1F2!aHH^$3y(uDTLN`D4V&2wHXlaIZn@TCA9CIuCF{mvbw!
z=VQ_NH2_wGVG(=*8C$iJ9MMUJWJ!Sx0X9Z9!EdHo3qK7BTi6M4l+uvu8SDz2BvpE$
zoXbH8L&!CxmkVj*vZ2kX@%sLh$w7%O1cR_I=JW!pLepw(*sL#yO+8;NQ#JZCBX&LZ
z<}z~GlxD2Utu~;<H1yL<>wr8PvYQtAqII&}nUY>EHjrF;DVxa_v_d%#Z8~BDDE%@@
zgYt}I+0<8R1+A1cH99p0w-vQ2bDPDC6ksKN`HTmCzG(ZM<x*}iwqX#us&jrLC1GT=
z28t`0GY6BI23luI%jE{OF|*HDHJDgEr0Y2p*kY3#m|I8m()Lg;o3TAL(=vXQO@@~4
zv^Jb9=S)Cbw`wJG0`_$_xsknnC==0hda2I2U6%at%31|9A(!d}^mVJL7cVQDhGqu_
z*0tpzkUmB27}8A$s87+`VTeaQ$xhdi3s4y8fb3Xtl;YNW>!LVQosIZ7Xa#g1ZH4^A
zu?YY=5i<ra2K?JVkC1urJTm=&HT{6~*86AjfMrGE0*ER?)<TA8BxEKD!M3f#@~#mN
zSwltuHz6AogGUR}eF_c_iI4#zqCnci%w2#IrX!y$Wc&K#{Wd*Rh~lFAJIJ42{GC80
zq4+@koFws5Utz+fn$&F>$VHdwjXx=!k5b~LmGGWX9=dql)mWqn1W&x^+mh(!5;q!F
zchIL~Zzh%$BVMxg!HvQ0ado6nr#H^%ew}V<)>8$vMcT~WRLHsc;Zhbb-0tf9V6De=
zHL!MMH@te%F{&J1uxrFLi>lvWFnW^slGu~d^Zv19(a-g;esa-@v0^fHm1cT|G}w)L
zz5n_6&%K^(y4Sm2O0bDyL>tMj+FsHIwqH7!+J03^Nqbj()pOC9I+icyH8bfM%jXJ)
zI@ar@!d1YL?Du*oi+NSAm%g}pHYC<~B6>;lh&_A{zbwTD1dk;22ofLQMW2Uf*`S}5
z{Q|p;3#uHiazRfud7-~jdRXm`#;d(Ssn=UIYjkw9XH@9XOBp|>D2kuu{XD-6IF=dP
z3TAR_S;1InONeSls+297S-s#viAi{3FnhhAt7SyKSQ9&;w`|6As>WA@O_6q<PWiQ*
zme&fV0iNa10aR$wekHFpX%Jnjro&-30_P?Y6F0C&E}yS;VVJS4V8;J6&IWF9{(jBS
z%cYbS+X`wfv^z7*er?>J4cghAH8uzKT4OUi{26Vrroku;jz%Wd5^HL#MKw~=k|ylQ
z@LXU=&-lAtWI*sFlBsL~4?56<D!&$m2c=#w#?dmCU&ix;TtMXnRTMW`TnRm$9o}Yh
zaS&%La@i*$UtxKbWvi?Z!Re%#JSB5Fr4H+*d=k8$%_lROe{)gGcs;d2Rp~PX^bDE_
zRCXev_7w~>Sx9Mp(Oxg8-;>Rz)j&8b2~s%B#-g!koZ~`)kQid4vcht~AkWHn+o+x@
zV~k<jav2&*Y*32FxQG;qbI}OL1x1(yVLmF#LRe%YlHJgHuuSGAApi$bh4#>G5~ohD
zm-BikaRUZau51xya6QZVIfT{vD^5{AUcI)E1t0R&c9%jwTeWC5qZvq*0zO`nAqOEV
zK3Fh(yevWnT2S;!0t=Y~9Oyy8$14G!z;Zr;3qn?W5)WD6fd+D97BcY4SeBq3vLFil
zay}-oK_x7O_y`By3&uEbz05~gQREaZq<B3TrRtjOn3mfR&B7oUwlBsjuBfY!>?Sk@
z24IziAP7h>%vDj1RtkY&K=g^M5@0C={bi1~AWtb46o4*q7LVw|Rx*WPE7$=PfItz0
z5=$Z22{>2@5d0zw;5CH64^TlE1Wth1mjFIQh`k8lTZGUSAZ-ht6*&=V5rVb=Es9L>
zAVLN71W0)l32>Q5x(uTL5XK7p2{I94TP28Xl_2scLF7>s%A;@;M`;R`rYP8>LS-tb
z37l&Nd@!Cqhyh=~C;Ngv#Rsn8I3LIRIKjt>J{VtM;$$BL0}s3qA`l@EJQBnagaJeh
z1j2HO6+}@EaWOU&4J)iHvyo^>5`{1y6Gbr)!X1Pz%Id1D0c+E?>Yg;9ZK-0ptcR|{
zYBFWb2P3&vOM9!t>;!Y3kA(vQABo9gG>mgT2;Pix*kN1@vmDHMOW^2;26GM%adFAw
zltEb41X1Mz_L60>8Tzm}nk;Fd3{2FC*3H_1uq`+>k}PC2*y{aW|KzQR|07r-u#>k!
zf=x!55@R87leI!rSwWTLsbK{_c`M*62P;esD}*z$LYN|BA)bL1utxDyV=Uw|utHI#
z;FPc;1`j<^S!Ct#>FyVz%EQ+`X-Zfj1R}88g#uzM8o^ypVdDWs48q>e!3G=??airi
z*W=kiPErL}Y1ye^g?vU<NK<591pgtdP|m;#S>?H@5mBMZTOq<H{V6gp!e?Lwukusl
znO2BR)(Tl=gQ_q!R@wl^^McHCQsi`3T3MA8RhSy{BEV193OGiTRCa2twD6)g$+4hT
zOp&L-K<HGbR1>|iPH@QfMZU47^a6eZ9DnyNCQC^;lh#T`uXnhl=RL_{5x%w3vn>DC
zLb`e^UOTk&n7XI#H19KCjni5QPN{0I`1Re?bnyIdc6iDYg;Sp*{@;#|9}n5BBNG27
zPfx6J)be2*hlQR)s}r4+e4e<2LuoaA`lq8-r`D(V$()X2bWk(vzAe}!_+Wu(?OVxL
z?JpYBztbL=_Q13Uradt2foTu?Kk~r%Z40dc-(5!GE=Aqd_KWe(2EE#T8kbTX<H=b|
zb?xyYx1(0^d6BxS?Qj>o@oM`XP}Ajr>)EyBZgDj?wL072(mz~nCoU)SU#o;Fr`yrO
zw34>=S;WCO;c~kZHFCIG%M4t5?`odyTHx;Xk```Gh+jCj_44pp$wk81{adb?H+0kD
z$nN`(E)h#@=j=ZqEj>ICxc1o1d!mCzEH1B1U9fiD`uPt$aqx|I)7P0huh;JW*^|$|
z`Q_m7@$!X=x~lJz4OeW;jAS=&9Ua@Y{f2Me_^oe$=ayS<yZw$k@7nvrAKi2BeLsHi
zp@$!N^s#+UJ^jqHzx>s&UwHAQmtT4Hwcr2Ytv??5)1Tiv@%{%N{_P_$A1~uKIh&iB
znq02tJgD3Sm+_l97x8w7E_d_EIa^x7*DSngZvXC~vxL_B7wta~DIGog@U<e`$)A^s
z9^3Q466u`5KrFqq&A4u7+(doXYUOqE^*2z3kAHdoEqfotTlu$I*YYn|xqdiUyO}?J
zEq~R9k+E;xaqpwQeC5c8O5YXPZQs80zQ=y`>Yx60p?b;2&D+0o*N^x8`n5lQ)OdUT
z^{=e_utNTA$1@*)@1bw(``XKu=U(6R?8)|%fB*Q#`~Tx#AKClc9hC#G-~H^#8I)4^
z=^cNm9DMyRPwcqo;~8(SeB&D*4S#<}<@rO)pFa7>-;KB5+>|&`dEwBGCr_ULuKv(#
oC;xdJ)V_G=@rx_u{0|Pj-TUwNp7`m{D=!^-^U%HzHdS8zZ;(3beE<Le

literal 0
HcmV?d00001

diff --git a/oxAuth/Server/src/main/webapp/img/glu_icon.png b/oxAuth/Server/src/main/webapp/img/glu_icon.png
new file mode 100644
index 0000000000000000000000000000000000000000..ba312e0a6de726c01117de5ab06a1293ce0a0f2d
GIT binary patch
literal 7578
zcmV;L9cAK)P)<h;3K|Lk000e1NJLTq001-q002A)1^@s6DJz+V0000PbVXQnQ*UN;
zcVTj606}DLVr3vnZDD6+Qe|Oed2z{QJOBV4JV``BRCwCldIy*s)s^n8>gwv8({%Ub
z95ourNJ0pU9JKIkFge-=p7HaNcfH2X3&!iW@WFZ)Cu|I6@!HrXm_?SsVnq-jBv6{s
zC`^t$Jw2UcRd-ca*mG(m8Jl2O@O$su>F<7%s_Ncz&pH49pL2^+Rh9gA`l9YU{5;to
zpCEjdCl<YlL`xac>8T@}SRrLuBs6{~LVRW?k(4Tt!G2EQNt8>Ic2}5W1&&l@nFK6O
zq9`h1bUL_CAQJp7SK&y%uaV3ZlXSG0R&7SJYGDkd2A-v(8Ilu9q$~+Aw?K?KmK0$P
z0kexF`2uNn1ju-Pk$4PN?U^2v9p;zGd?889u+9{pCkBQg6nq?viTGgt)u9ep?O*7N
zrf9<I^kk+GZ#kHp`SBu`dJyIg(G*2=)L(2`!hGT`hmQda$yGT=tdzNFs<3#stjMsH
z6e-0fu5YyYzUE-fkGhSHG6jG8|JooOts^Q?*{ST}XC`v7@0J8ENNAc+U?6@~<f?fz
z6Zu|@&)nGWYq`~Fu)G4^l0VVN_+-M1!VsgP#niydb3?BU#wVUCRf<7_-dJ!M9Yf#;
z1?_Pet$PfNv68QF-LFT6|6^Bd^o4@Rw_|vIQepV9o`NC6(t1*=R%+jj9(j0Y?C}0H
zpI(Pv3E6zloLt+}H{fr)UR7ioM#;{aFX{Ex4|q+Em+}52mp*Gp^w8LBe(4`MN$~1u
zTHBoeCkEl<f>gCl=NE4|lAb*nEhTP%^dTOjV{mn#{jBxjp376^!u)(O#Un})T4$Uq
z#4A&UrO{?*aMP+_`-M(}ZAt}X1cUB;J2o;L=W^Eq;+gQ-)c*~Ga1uS_3FaPO760n>
zg+qJCGm!_&Rl#Z08TbZU;KpuW<Az$RXB&i(lm*x>OQN3A?o?@3Z)8f6h(C)hj+%cT
z2(+zgbBFGvb&MiZ#o$CX`uJP1k=OWYWh2Z+|5w8BL*0SY%YY%6C#g!IcVA-ah4Fms
zclk=OT?ZjoYx6&HUh~@KCVSvvxRgiknlC1atSHE0$C+D4C{<4}WT{frIE&Tk3XQhV
zed_`p%^|z*NxUXkDV?w{F}eNKg`r<oB(YHseDzWMMSmEtusVjs`K)(ueDXUl%?%w)
zma}IPSt5Rmdt1M+Y2|>w`Aa57A2%?1@Q4K0<}j~_N~wr?$Dbvu3aKg*DGFs0<FiBr
zqQu_=7T4T{aL*MR!hP#)2J1e&CsIgUI-H!HI+UKhTT~<mZYcF33}gOWc)>0k0llso
z$;{s?N}?Acf!JBg%nD!A9UbnvEfbljB*<050o&7*PFrM7<cQs1CJuuIRD>jGCdrc0
z<O~S_3?x-9k|i)GWc6s*7-1uLNl?Nz?=FkpaME~o;WF63`+1@4pUOnPxx{6!>-9F?
z(c%m~$56WJ2O0LB2B9H<V7fG4IC(0!_@i8<*on?G=}kPymb<z=jgK%4Q-DQ~XgQ;W
zqt|FBZi7t&3kVa+%or&HV_=FxsS70wQB?+lw$;j-@`57C0vLeTT0zDn%6T%LjRGMv
zq|;p|G};3{TT|2i{K3@hEi<{;SGfvT_jYvTsfkQvN3$z@yN_Y_!TOXxYY<wFlSE3X
zj@fMNAK?4Nm_a&5FZqm){}Zx!eh6`$6p2juibyh~pabI#;2ASltvE|UIRM^i0wCzf
z2&HC87VC@EN}CE$OzBwTbYbb41fLmKX?j6V>84=HF-{a_K_Dl9lyi`y<zkf+>g_&d
zu8>N3P0qi!Fvf=yeD-hWxy;R(N@+trKDis#@kr3-{T6`6!k=nuO`HzKCrL#rL$0vy
z!|Ay@miXM)WLXBb(-AYnPPI9LU$Yyn+f(H{3!=4y(J?LXy-87(76`Wvi1B(!mfRBL
z!|^Yv3fl$yMWgDWwe3<NhX@E>f~%nE<7o^YRv22J((80{MjbO@(Ho~KiZlaoFyS%T
zCTp!;HBv}!8p|)<D@bC1fX9t`W65i_-_vBTdDz2RiypIs3<TQ<b=SyNvL`lXn9MC)
z65%orR;pDu%4=K%8V?i1a5qJ{8kAJI1&ko7a@5<nK#d3~?K^CU$kMt=*y$;^$#x_s
zl+Vr!rIp8k0VBX`vb_q(caWDVEr1zqWx3i~m8&#41|G+@9OkE%iB<xGr$LP;Kst2_
zitN=$0Oy8ljSL&@a0LHXudn%qQycpwX0{No-5(!+5|C*<#1=B9_Uz>wK(8o5u%fC#
z>L}UK6vMN6T^f}1xS7!(wy~xopcbaAM)N|VluJXtaO=Ze!YY3Y`<*?{oUDS^ECzEN
zo+Uvpgbg&4y?ONow;xPSQ#%$88-Q&r^){a$ydMTqZ3PbME-Teu2-`MzmIv0sLKL(E
zPqi;&0eJe@Cc?&pk>LZ$sm+;6@dXQOxPsX>yYKUWDC;T4cr+wr!ZK_QJTniuF#}M%
z0LU_-sPcr{WS<L~-Ai7xqqsXZCP5Ob0J*AJXCNknk?=x=Kp2qEwQV3zjJ$GjypUXv
z8+29Ishdibvh9gOTemOdmo7Y#p4)gu=c%v6OIax;l(=?hC}CmrhjL>1#dNtqndB<f
zSW}}f3l)1wEQhip-vDcC0oC3v%2FLbeN$DD>mh2aT7*E26)7e*{cd{qMn+YsDnT_2
zyi#lTJk#N-yK5$&$heH=5)@Ju$RT+w69xEIp`c=+2s98tDlI^eR}jI<szA&}6S-m4
zxg==wke8+g1HYf#^#E$p4tL`(y1k8qimKADMTY)kAs0LAx$zx8X>*18ukJmKTP$VC
z?xit+dr5m1JQD&*RbgI%l9ePZKB<?O0}A}Fzorp#UD74FoN2C*u(mpbzMQ~+H(E-a
ziZ&D^5%7kh5L4k1;2A>6p9;2)4g{Lwz&{-9h^#&SC_Q4iu4qF!8t$sL2xRlqn+8aY
z%}q)IPwkE#zC{qregkaCnJp*$y@@rb&F-Lle#c37QUEkLF5B|r%--uOPyrkCEa`=+
z)&LbNKI>RZKsh>>dVK!n-(g*HRh3JpH>_M*UDGx~RM|w1t_KiT{ew~f3up83izhRS
zJ*)lAWOblL^9FhW-25&oLo&swPpMx)F6!JsEEK4Oa)s=eKh(K@Y5Y!1>K=dVy|p&q
zY?8|pFba%bJ=o!GdKB;96+LqQXnG+8$VP%duqV~^Xk|7Hxr+SurzBrp_8!V5vZkhk
zoLt*W3Icy3kp4O?_m7!jyLjFDqEtQ$c$BD;NSSo{;+jy$OLcZH>GITSbqdOuB#@sS
zSRI+(%o?=`R>01JTF`m|@Nn2YN%yP6FaK+{oNu$59g%B#&$tRuNW=wM^+wGDCfcxf
ze`@;6)v91jRtm00XK0I6XVj|PeqXZ|&YErn!+;7P=|vKUxx-c$%oQem-bUg!Sx8>w
zsOP8md>7W%Noj&v1>!gSivA-B3dwaiyKqCKlyUOaD#?T9YH|d~XIj^iI=f%<6owm)
zb-@lO73^dr9U;@XC9=q6$cr=kPM^ugHsPM0+OXoL8mp^hfE_i#4(9nH5dbvS1Uq6-
zTHJ**PG_Rm%;%N{u+qhF0w^aSama;j>j{<>*nBa=ny%|PgM0zTr$fD@#_S?tvzKJ~
zVqKieo==w5|GSlfhH$WzLbc+CBt83_hJh#1#YIuna^!;6H3XO%cBVpB)U<*7|4=yt
z6qCh5(!6tF_+L~A#U@wn*0Y;WcmXO@O?={m-K<mNA#9vn-gWvzgG&=%&hy!p7bf5O
z=N4!9tZr|u2&lCT%ka6f`xNr_;+Q6>+MGcx#8JHi;v)Bu1Ig(tv2cVCIvSMkRNJsS
z5E3!qlqkmI!NklrIH{t;P{VM_3!K(&!f;p_YS-?^UB$tGF*@+VuEitQWy^(bn$}4h
zn^t{2XmM51>-c{RAxwHiN&LCq?k{hs@3|4hY^s#nI20e>gk?Bx+_DzbX(0$+hR~zP
zf%L4_(t_fU%oG#k&De+)^6v&*h=a96;QG=rVy3m#K`4a{wl_};_1?`;6c0JjJC<2o
zVFGT_X_KIQ0Rvz-fO8!1cN|U_K7*Bvrse~0L=N1CoY3xV{wd_uP^6G139bmEppBu#
z1Q}c!C;MV!Ahjk)kGtvBup_V)7qM+-@AnQQXKbJo3Gfa?MVS;tUhC_j5_dxGIzYXn
zg7*Q>L4~_EUoJEOVk%wk@HY&!ZsAYrAr(q5g<j`x-Rv}&_hQ%_NzY$r)*C1om~6xZ
zv5Y^Pk&9qh;ddkQm#R=NPVKo@602q-W8}|nJ>ed!!K_LOaunp-(SZ#{9C*KzwU91%
zz5LnM4YyLXUMZD}bz7(2`U>U|dg}OxI;vWZDk6XipoNNVJRSWKQL9i`dY%K7@q#Fe
z%DW0YL6*F%p3S$p>wktjJ(-PNek3#RsS=5BAY5_qN`;sWCKyH_Qa~n_B`-|v85m2=
zeE}VPVqNdoPig3j0YQ^yw_h7gM+a^Q#y$>%wh@H%cpJw-P(Fb3?OPoChxtOHzT4XX
zIamWDNLpYZPvIgFZ5as1$=qUnw2(L#<U8s2Ha`aOQxIg?^^TC!+BZZ}RTI#fvNF)T
z)xerXLEzlLNoTj&LuA0)3^zBCE=L`3zoI2AK0L+e^)Js2-mgM_d9Cj8lj?gOT_!-~
zI58d@3`4=7j}IuBh|OeD&ucsJpDe67D$7;oS0k_9H<OLg89>B%F+*a7j7F^3WI?{d
znLz_yC{)W<tHGK&A<(uR!cw#M7%<T9B(L#gMAzvE$Lj5Y-=f9inT4CmRZ)+90N4o)
z1SazdGM!Iq<KM@2oF6O1PsiOlwSM5Xeor%3s#G*hR~Cfh1OKKXkiepJI{Nsa0ioL6
zb*VMAJ$K^<k0fU<|NZoyHJC?G>1yLx@4E~Gbe<W&;42t^UA~5&6-Az#$VPSgcM$7w
zgOJDyWu6{SFQ~2V&_k#k0O!|kncltPjo1izeenoXr#WH)w8Al&j@oz35C0S18+O%f
zJF%|&#bULr!E5E{z-E6DxWz>4i3x-iC}JRBNO~|B`wICA4}&9XL)}mKZT=yYFk7bI
zei%@Vbs22{1XkD(k>tyGk3h!Kk+r-~YQnXx4|e@{Is4T=>g3Vy?ChXRQ3agdxN?WZ
zXpLea1>o=nmeElLJ)n)=OdL=$yCA7wn;pEVP%bv1x6f}`_tyaVGACD{+z_?FDS{R*
zVb(=FjFq@`7E;T4h$P7*E0i?SMuSSQ31PdpvazxMcJy?%lwC2jG;!%MK4SF@$R?x)
zirTX@@l`Y$V1FA_tTVhMF1OVv>fHuWTH;XzO93dit7}1rp=+mei&t}k;O%oaYFY|E
zI~R}C568#9j=L}rY`%YOxN{u)0X8rekqnIvuy)d9@&mk^HA2NMs~geH9wwcxI?@aY
z-{cNK;)hAd<|Uu&+_=5fQ@<IvcGtq;2M?yE-2lDXe3(Bog{6jAF?AXN`MIj5<p(gI
zoGKSI-g@6Q7P2rhy9jaH=Wl$LVOUV)W&3z0vI%z`Y8NtHh||9v-}x<36wMBkJ=$N>
ze!q@hUNC;yb!Osa>?FvzG?<lD<&WA}SSGrNk+>)m;el&1l>&IGM5?N!p4GhSRz|0<
zlq)6o@5XoCw#a2E2J;uzbuck|nJkH{*<_vT_BFna`E@Wps}cA68iaY20CXvd0%>pt
zmKvQk&!CG3<CE7<<YIak2-BgZskKv?$kpi5b>XhNx?BzEM5#cMr93gKEb%cmVxm|g
z6XktdO&Hn?poEXM5-a3Z8gesHN~4aOT^;KDXY|sZrO~gwzA)V8Vr_&ItCqQZ{6_qH
zt1I}g0gF3#tR4M<jYiyM9+FRnQ1hGJ>Y7mJW1tX}crmph&Sl!56ro<38GH!7(|((8
z=;Vf#zhoH*HO55x?DfP0lS}F{u>ZL)Engu#!$ucrvDCo5b_jPPIlFQ717@Q&4pG9q
zy>R&3qqzt*lAd2(C>I(i#-OYZ^*re{*tF&+d5?MMcb_N_;sSKRGU23f&t8wkeF(wf
zV0`MTXUBJbDP7L5#9C)#^U7PgJav^8TY$9Lg8!xC5acJ^04HN14Mra^0~&UC8*&>P
zR^5jAJ5`8Zygxp9$)3c-ZFqgi>Ujy~oWOeNKzxS0*FgpIUMFy{Xo3pC#u|hbfu@IE
z;W9rykdFMFl9<u7NVmWF;s4or&g&Kc5R@p#eDZP6<7yeN_K+((PyO|w<kUrxLh{00
z(a~SZ6d(bF7v#<(CYF^eV9;=4<~>`(?=lD#z;JAeFd%C>JYhhi@Y8P@$L`@JDS)*H
zrBGz0ul1D_m$y%fJgaJy`3ar^0<?il68gL?FGcc+3!wso9aD+TV4di4*FL`hqIW7A
z)AC1B=|A5&6~HqLl*?tQO5R);0bVjlAWar|DIY+^P3dUm*~y(h{msN1MwR?!4xM2g
z0Ee_hL6y7Akuug%i^*bE$zWfc%Myptg2WHk(jVX<>>oh*u#|R`Pv->g<X0CC{D7;9
zz1rFSavIVVY#(9WkEDi&S)bIa4ww|n{R9wv2Ig3^6Fro!ls3M+F#JlZBlH!A!E%72
zDHR+2IUwivFi1tlt=i2NX$cCbGGA>u5TCj)%B3$tK+x$}(WEy;px|r4Wc8UHI|3HR
z9Sg-Y3r1t_n|xfWG*QdvNzhfR!1Gz4i626gbmJyF4c1Xm6rBk!vp&J+2Ak}GN9rB^
zZw4&RMQp>#c-Ztu20<)VRYl_EY6EDw^X7~32bW81n$%dmuh&>yH`|T&>51&ZuVcl;
zrn0~_tZi8nTN~Czelzw4$-zP>C<_qwsgDQ^njx@hK&a%a>#qTB>m$FN+_Ca-V%m>|
zXRD_UUjeu^Czb{hT=x4pp}2A;7rOy|zO=zvb6e2j*#T9sB+JWvbt?4at$(vv&O87Q
zEHNq(E7gh{cg1Wl$6D;c+gJFTpN(-DQHF({SkvzP?!ITo%3|5=HrgYX_MFk*;R<It
z2$TEvJ`K7I^qW#ekA5g)WVjwnem9i%|9kCK<jSV?<f-|$>i+JPAB}>_Hv28E;oDEV
zY(0Pg_eSIp6os|ssodgK<C*9K6_K}NxLa9Esw~TPS(R9q$$q}he9@Xu!-CEL;AJIQ
zGJ!aqX>-@!+wW_>9=3e1*XWS33~q6R$O$#=ywBu#bud1DEeG`y>{jRLjjMjs>uFY6
zoi!TS$+Ao`9Mmz|5hnGXDKBF~5#&y9ppBg0dLp@R!xurcR>@CBx0xRse*X9QauJUr
zb7!}#J*~f{HNjOYpebYc`c2iunD#Z;eLs~!yO!l@a~V$~5UudoN2mL>E_lVp)fqm2
zj+WrynXuLK+fy4>-U$!nv5$tz82fP-z{L0-j@RN^oG&J$kz(RApu;*d6;4<i?%okC
zrAV7IgjFc<SRBA*MUed5@+rbm!?a=#D&HErk9>LHGvvAz=aQ2`Jy7pdKz*0!Cq`cW
zK_nkP9|7odU8j8Rytb2e`(aL8>`XQaCH-=z7DO~(Yxlj8suVYtq)MAcUJxa{zUH6n
z{`On<966Aj@m8wBYK-S%wbC9brUpDl`;bwmPoqI7DktHAc2E$w>rjCVLva;K^4Zm3
z+-Z=!yBZxeQ&<b(NocbpNZP?T?9x;qwk4>ERQPUyO}lITwd97rbI6)tm-gIc!Ag@y
zhhO;O+lz<qLC{$f>c0Dqb(cLFu(-$~XuQqiJGFVSzmB|D5cq*T@rlP_ZKpzs0@<g+
zW`_Uq+P*U%*Zq&%ZV;0~>30w^n~MV94(@H|gi_aJA%0T{h|_K`54(+49<{)Z=wXuN
za|9uCeX#fC!|9pxxvCI=I{zXd;9u7|d|9kk#i~e*AY(SbqWva^Ru|P;-Q>c~Q=qc#
zC)nK)@Zbv;h`qk&CU>lPdUX31t=4e{w_M(H#!ViRL)i>~^YcU7v}TFTV8UWBG?|Nj
zXCxQ-36$Z@7;1i_?YUNG?FD`Qrl&$yudF-k=FgKu>3P!Wu3s`ThF^h(8wQ>^p<J!F
z3L<xMu3Wer_#k6u*l{SqB`}gWO*SYmTB;6{ZR=oc>>9{D+k7!`N|&eM=b*=`xa+u=
zDDeYe(15>{tgr9W4u~-{wYD-8izWb%t<!IN|LxG$mm!oKPNQw^n!a;3L2{SCTTr3S
zYZU;5s&%25{PJjK{^@L`coKTi&RT}r-L==WyTbSLQZ?ZMqQxG$?(CbtK#pW0#0}vD
z-jS`W@d&W+<6s;Iwf#CU%p2!(p9NMv19E8;D$|9T{E{j{7;UUum4gQl4la#e&57l}
zY#|=(@ic6K8ecsw?=e)+KzbRX>7!%`Q~>pmpnqupv(Kf=g_Q<S-j{WsehQS{Gqd?6
z?VY=FRb(Kn&Yj3DJOiP3m83{USXT}Vxvk&VatnaK7|0|gFYv?zn+zWMgF#-CU3&o!
zlMc8<==RjV?qDrXR8+|WaNG|eQoF!qz6c&_hb-D}*6DMjnFVrf_nFfvp(sse7fyqa
z7yxg^J{9WRhbkI&8c7kL)ePcA*1$p5dT$gIZ8Y_x!OeF=<@<RGintB6eOIjuc5mAW
zo&k`cAlZBNFHJr+Q%u~AuM=QH9@O>^SNU5nw&;zofgx46M(Yh?WAc3rDjz@pv1mGq
z%6rWA&2FP@8<6fQP`Ne0*nK6j@|CJA(~M3xl;U%Og*Cld1fw(MeCI+TzNyY$^P=D4
zj%w{<SUd(`3Mx~4mmvhGWo3-y$<bHOdwFJ$*628~uJ`-BzSal!EsYbP5dT;v^6jC-
z%)gbYd>j7XX|lh1LZI!lz)O!C7={xdl+h4u!f0<of<chyBn+iI{lWE$hC+(hXn(WM
z)3~<V-Eg%*$ELtAW-J@|=I*8OvF(wA7ta<F>e^7(l`!!hNm1xu9D4CLW7+ut7I0W6
zVdzx=C?G6}&tNAL>4o;+Pw&}`bF_LIHUkxaj7sXFT<ZFL@yV%3A#tm$NFa>Ob1S?p
zpIuYaahBiY97c3e-s2rvTqn+fmBNQo%NT|b`y#mc7bk|gy1KlL-v(tNVcv{n=ARl)
zOm3SiB<nt1*MEb}Y>yPGeE9jPT~EZzIW{YDfQ)%9m#|^KCq8cb(eRcnur}Ij^$e{J
zcHTCbS?t&z8QOCsJ^x6#%3IBPQ>oq&xV_KYxWa9+ZH7&eu-Bo!k95Ku?XPJe4zuO`
zLk^N(>#;#SqUkfd37dU&b}#R>IJQGbJ_)~v!0la}$TcsNQhyEC6(EP`f-JQb_*^p(
zpQ+C7e<@zdXkcJuSmyDATOVI4r8ZJ}0|C|X29)-_pb>v2%3=+TClfaBqbG%XFJT$O
zi;%a19^fClKImxyj6yHq24kpU$RSd$ukRsE&VY6Z_mN-GTs|mPR4Z#5Yj@RNV$d-g
z_a~=+SQJa0BdM9M(t4u^P^&1cnI4Lb{*9Bhyxr$-eg?ZeyQ7D0oX<rsB>>;Z?m*xd
zC=kA=CO{j$-RcV8Y+~5GPNP+cmkS>vaulr(ZekcRnvQ(DcTQ1{L9)w$Jg+b`vwA8Y
zyJCq?KLDiZq+r*ymm?sD_AZV8Tu_xkBdxQ&89DHMqBm(p8Ft)2$TBw85{1(Gb};xk
zAYl;@Q}e)wQR(XPAu>sFh2w|KANwU*MSEpT=ArO<^iwtMn|Cjcd}F?pzIpjA4IL@T
zRpY_r^iCjIRYVO5A%ibtAYnE-f_FDLLf>n&`*Pzz0q^YLeV{S0cs$K$wEL0Ev^7wl
z<Xgc<5B>24^W>-NR@^e3UwZ6FX6^wf{?5dfLkXbxSo4YkxdW*AbfZ0RC&-y82(jZQ
z>K`TSkydIQ-gkNP6MM~BJ$m$xXSE@#`vBzDUqS7E?h>E5H(M!mW6l7{?px_^y-iOs
wZ-Tm3-uceMN0|pt)G4?xmQTIw|Nkk#08bc1nRHzv@&Et;07*qoM6N<$f;tY0fdBvi

literal 0
HcmV?d00001

diff --git a/oxAuth/Server/src/main/webapp/img/ios.png b/oxAuth/Server/src/main/webapp/img/ios.png
new file mode 100644
index 0000000000000000000000000000000000000000..c6c0c920abcfa29c232ecdfba56db489a810773c
GIT binary patch
literal 3137
zcmV-H48HS;P)<h;3K|Lk000e1NJLTq003+N001Be1^@s6_xzpO00001b5ch_0Itp)
z=>Px#1ZP1_K>z@;j|==^1poj532;bRa{vGmbN~PnbOGLGA9w%&3)V?QK~!i%?VELM
zRnHQ~mjXYELveT4;8NU6&|nE3JP>H0!3iW-umJr72-4yfAO!c|4ncyuySwh2&%AqX
zZfR-n1>O&M=_H$;bJln4JF~ZOtkC1fkInY&+s(Oi=gh~CA5EM%aZD`ze){_Lt4WX`
zfhk(FsHs}DstE`PFy_&tN49_e{x(&rR94!=mOrqhOP9_L9XixLdGf@XWy_Y?<jIpq
z*)X>JIVEk{w0701Ro3s!nKS0aix=`Omi}aV`0$}QfBwAj`}FCP>(j5J)TvV&k%-^!
z3;q23Owy!DeO?ECBT=G6uD73~xN+m^Sp5B2`uzE`@%z<>+N@bKvvlcF)1yZZ*B9?d
z?6me7F=B-2+qbXDnKP%W=En)a88&Q~GR+sNP@#fp-MaNp30#sSN%SxK>fE`r3h>Vo
z>+y3v{}SretCv}@V1cPoqlWqL;e!zX>Z*yE^5)HJ+O}<L?%cU!GH1?gMvoqCGGxf0
zb@}q;GbKxw)MpN#dMIPYj4HVtN{SRIO#1ZcmC=O@7uI@ze}7ZCa%B@QUOas-R;-vQ
zQlyAJL%DP3HYG}w&~^~*3KS@yeF_#V7>Qw?{b|d5ynicPtZU4eF{WnCnyOv&D_gc~
zgmy5nOqnt!VZwy2FWynyN|h>&*t2Jk>-EQpMa`Ho!=y}^(p<ZCO%MG3{rj%km?=w^
zEG9>e9I6qUH*YpQd-l|EU}U#$-IQUOGG$UB=+L2q`rVNuN19u=ZkguIo2!iv2?;TE
z>((_58Z^-G<idpurb&|~DnwnnbTLhvHZ`(elO|0XbL`kL)2LA+)2>}RW$><DyL4_2
zxpe8$pl7pT!v<X&j0+A9)^V#;siMMh^X5%6ZQ3+bu3R}&uU<WK{rYtkHi+>U>-Fo`
z=IGI*rbUYux;Oe?zI<7=PmsAX4B^<eZJSrZUA=nsU#DS>8#h+Tx_kGoF6P9E6RsNX
z37_-NKmX|Sn>TNagc>F&D9Ef`yVit;hMM~I>+8n8eEFhGM9N_T%!avHvt~8(=FKxZ
zckVQSfq^Q$Xgc3v1P2@*9&Q>oY^Y454rU;1XjH|D74@JOE?lT<a5M}Ju2!v@_Mba<
zt}+_o5p-?FjvZ?RZtLMY1XK3z-D_5?SfO(~d-hC)83D?lKflIQ%!#nEHumW){V>Cj
ze9Vb6+41AY&BTclRboM&_<>xxa%r761hddiHi9(cV9|oNZ{I4DvSrJrfh3!L@Zf=|
zRjZa+zI?fw-+TA&sm5U*5tye>pPKmb<16zqckkc7*S?q}%pmn>Mypn>%*BfrwVxy5
z%%3Muo(N#YG4J$cPY4s=&|<WT@e?ObtZgCI%)Bs_b<mDAqj7wvFKc71bLPx3&!0bc
z^^BQ(Hi>K$sp{Rkw`tR+jj2<oj&2ZXVL_Oue*OBXKSCp5D$<Y1ijF{LNFV+R&6qW7
zmN|Lyq;8Z0;IQ}Y+ozg~U*OOsE>S5*1KB*j4JJbzDuRP1tzW-h4+SmbJuECtvpO6;
zTFUd*ty|5zckk4s!oY(E51P}bPb;Hg2z$dM(SP>r*}7kz4<A0PCi2FO8_IkL3xNN{
z46+B9bN1|6-6L5gw2yDJ!EI3I4KcqNJb17>IE$&&u3g)TtrlU6Od{c~r^qCB+zK<I
z9MdVHVKyKjz>0~ma)^=YWwY*QIZ!P;iv+vB3!`-$zR{j%VXhTT(Ru+1R*<8+y&SX#
zq_p>JlPp;>9pCxp6wm&Q&3v?BE@41~wv0)8&$ZCTX~!P3XV0#C_Usp35ua_nW|&Bm
z73p=cz&8@RZ^hh2Ic{w6zQ8cAeHf+=`|d04-o0CW5{@^PexAH$SgBH_e2&%u4xlPu
zoGP{*;UFvkSo|AAj09i;K~A4OUHz{oi1?$(8<U7VU%h&@%fNY0uU@^f64OLE=J$#?
zYAYZ``-^i{KM_^CUsWV5u!1t}r%#`(02eEO!EV{I#qC>!aaLj_E1^TAzW;Xd+9Zm@
z)Z#0lk-p~SK$WDFKw$)+Ajjy)n{|D!4FN2gOg-TN2vvZ9qFl#>6L7Cvw@#68ROCSa
znCROz_-d^j@(R`iZGq@qr1?TDii0PR^@iBgph1H)c3Hf5v6^AgQg?sGBWqB+cyVpp
zy?b}lzI}U550QCrOfUV)moKl7pYWq)%a#hUFI~E%(A^;zHg4QF&4QCPA$)lG@})Zj
zVXjV{Iw|}o)L;yPVnPOjb%J*a;R163>w)wH+GJx8Rsw2bQ$ia;5pY1CK7CXW$lfql
zOd*d$KEe7?qeiKj@|ENutt>3cF~2Q9W;t}r9UYKZVjFwp$PtCa)B}+v=CX2NRu0)p
zoMk0e(s=~jxFPzIB}+8S5C&NZ=-noE;lhOq^PTyC+l&XzpFiJ<cDw5+!c1=CwVr)o
zqFI*&(E1FmS+mBTI(15)#Sdyfu?$w?D=R_1l^|L7A&k-@Ox1PGm@&h0c`R|7El{99
zgn7SLe1i2sK|xlePZ#DZNnmOlHEI+ouKBj$Pd<M9XghcAtnVB!3>1ygcVZU_T6Ihg
zI8&xfdVtfWP1A2Zdi2oC*d04|==<>D!!;bi|7_m8S-&-I+&IFVdGqGA+qZAmI&O41
zNa7>vh{q;PnxuZMb?er8E06F@o;+FGi<Ve_e}BCZ7Av6NDpsth{n;}#WXKRJ=2Y9U
z2K=QnzG#fLaTpy_@d?%g&z(r#SHcgG_{7vjN96c0S#nUCWW_v@BEsZAm}X24cX;Ic
zNDGlE5RFnZMITHT^_U-$z9exm%Ut=$*=Qcmlh~7!1jcM(;>bsmR$_k4Ed9v1kTb;G
zk=>!6XqRR|s3T1V)vjGz(J^afJYlYyV)Cq*ZYLWwaNt1APeQ)98m}3~L?YF$H{XcE
z#Bq~T`ySx~@ICmI0Rsk@l`B{3-5S0Me+1m;5Fm1K9F#+h&-!3A?EwNDw&&$645W{9
zPvuGUg}G$TVHSTmc!<;$<Omyni66rtD4ye!a^jse(3XN<g?SKZEY?MT!WG6R-ztby
zmBDN9;`-|qv8nz0_q*P_Ck~&5MMpSP5E>b7GXH2KPM=&H`Af3t5KJS1>Ur>J1IQAI
zMkvq-?wimyhe+J=&NayQ2+*-{<3@e<y!1o}9D=!McA-LrBDBGZz@)2JuWEY=Yjyep
zEO=&qZXnQ7=PC%`!<xM!Uvh~QViLy@dqZc>o>dzj)mTo!x6Pb6Q`?iT^sEaB3DNJp
zdiB!x(9lqQ-?V9yI(IQAR#2{f6Vs`2n;g2n<L}5#3S`$Ds2sKxv*aF|SZn<F@#;It
zb=Ip_PeB0jqnImgBZyANnlfdI`a5D$F=zU1>eQ(UlmY_-tuRqR1pbo!Iv@q##W=z&
z1w+C_?T_!JNYJie$yrl$#V63=S#ZF&Z{OBM0}4QL0E9)07Ab1uV8j$CvpB4%#_%iv
z1DrO8`fbh;z#%b_4GRm?AeMs@)21kqL*Z}{Al;0#7pd347nBH!<RC$nIQy<$yG9s0
zXU?1o4j7+(P{iNa;NW04G6mUPxpGAVYY-kN6EG4U9<K8`j1tYV;+wP&j0HKaU%%eX
zFlRo#0dD9El0-nn_qy9eSJ-157{+zBuY|wh!cR711eK{dfiO*&H}1Chj>C<K@Cn#+
z{0=dp$bqZIs2RgKW9kkZIAA7Bn4rJ6=-9ENniyiFLx&EzV>QOY1amP+j7GrAH|m|M
z7f-^}lA59o^K<pVb&Dqf3fL3DGysRS;M?#+1o!mA<YNvY{22Sex8gzoN)AaVp+1c3
zB77>~g)188{GuaanC~X>cNR=1W)2Peo>XGyh{@0tV1HC?{??+f-cy?YbOK3%#E?wK
znMXxv07%k7c>ga1ui}cTkKhL=e+yxjFoBp65Zku|G6QmB+Qg4U8%q3bq_-Cm@WuXA
z`!6VDQ~0U2`=23zr%^SGEx*42|A!45rs&fB??xaxehh*M@iyv?rT;DAvp|)kwEp|=
bMgitOVsspBc_~$o00000NkvXXu0mjfJ1Gsx

literal 0
HcmV?d00001

diff --git a/oxAuth/Server/src/main/webapp/img/iphone.png b/oxAuth/Server/src/main/webapp/img/iphone.png
new file mode 100644
index 0000000000000000000000000000000000000000..dcd27c21a5d96397ffe798053f2b39332a6b984f
GIT binary patch
literal 3021
zcmV;;3o`VHP)<h;3K|Lk000e1NJLTq005K#001Tk1^@s6B0jRJ0000PbVXQnQ*UN;
zcVTj606}DLVr3vnZDD6+Qe|Oed2z{QJOBU-Z%IT!RCwC#n+cE>#TCcr+nYm<5J3<S
z1dK{Th?)Wgl}in3T+l=@KsZcFq!K}6O2lZq36@ns6d@5!Fo{P*h&eb^AVGr=!Xd5*
zBB()bT<+!A<I8)szbPJ_neUrrzh!r`->dr9%yjqk^z^)WXLl?fk9%oKQ>rK<Jq2k>
zGgO+=43(z3L0Kv8uaRJs;Okt+BQSK4V6Nb`h|f4n@KwQD!6%g%YfO+Y*em$E;7fw3
zg5L<{CAjYb!QF!U1Rptd*@CA9?{lnfdO(mXxaX8TQH}Bx;>GyM)8L5Dm_hrODmm6n
z!3M!xuG`S>T}kd6K)ap+b$Nn=f|)6v*C@yq^cA!+Wh(^hPUSdKt@3UTDOV}56&wj^
zb4P^!8w>ghRtv5aG^4zppkaWt%;vnQprg~KRB)4dt}jiGnl{>R2SIaFR?M-8@|MnX
z_fu!76_PcI^ljmk)#sQeXq!ON_Y%A%xP-P!hXjSxw?!&j%3)p_)HWOH4Z$x3lLQ+>
z+ME_a1@}TV-N&&n<*K?q7F@*jZG!bM;0=O*GX_;f*O>ku6Wkf{tn<u$YXm<tjHh^5
zu!844N?loiNulq&Ot3`o2lKJrXZ=&KR8WAr%z**^EO?ds*9m3?Fn}`QG|qo5c*y)5
z%FGJ|AHs0{PuNqi3ibY;pifOyd6l8Hf~*KC^&QSv31)MyV!li;f$M(>mKasmQP7U^
zk5G3W=f28o%{YF{bz?ynK}*3T>P{E*;rtarSHTpndvM=Y!3&(<DmWx)FK8<`Di{@@
zs@_BWb`so3e`BfFy2FC21$R<+lhcRJ+YhO`op;sp`P@5Da0~ULc&3i?aY2q?n&7ik
z@IY1-NFz0HHw1{+P@YC=<RodQqQ5sP<te03FOI58|0KAMKlMVvP-A@GE9fj}!}Ib`
z2dchGLY}AP*9-a!no!o#sKzHyy^jb+3wj`BEM1F=pUgONP)XBFoA!b(f-%h72BhD0
zNViPpbPf{i3DmGV)&kCTOrIJxspYd#|C3OCop_h-%v<XO>a<$DJP&dGS_SX<3*J*A
zx>#@qAFTmuC?BSJT`(PWFix<OKK1?n%7hOV{6H`~;+Q4~ZbcO|r|(#Rx#0f@hXeY^
zhH?MMSk#03EZ~Ro@W!ldQ*5rwOnF&|_ne!=v(7br`eR?lJeD!e8fin-J4wb)7GfBR
zv8#skNWma%gkjV#5^N!Cp*F_>`aN5)nZNZ4W1IMYaE_5=_9yE^A1V>Ac0RU;opKG*
zM;UfL^J)8>g;dlZV7cI6K&WAp;9bF8g3AOy5wsJ$VCFN|e6P$9L9mbG5TvosM7hql
zX^4HfnV)zAcHn>NQeaaj@N~hi@XkC`$u!ha9ui_If86t?&FzA&g6A-@mz(!qiLt75
z3?p?L*FWd{b=tqnpR9c@fH9_HP!Hldi~fD4(faYktyE<_j(YJNZ*vg+zlc;EivjPC
zajhAnzQgAMb5y`Ps+#@|W$$Bf`%-Qhj8lws&xGk;!Fj1P#ZsIcjw4BaU%~q{u=zFq
z%#x5GWQJiT_os*(2^R~HcJ=7DIHW#|GL5}urI>$z0~o9{!Vi&$gi1sWk-Ei|_y!H=
zqoe}uOA~~1s@;aFlK5+ak5(39lUO>Oq&|#F9oxdaH>%xH5`me#h;5S5p(<|wf1&bf
zJH_hCi)Pj0v9}<gn2nTr6yvg{P-i^KO9*Y0V1O^g+dGtIsG3FUdEH{JHxd)72{ago
z!A%Eg(tMy`ro&K~*m(zQJ44lGm6y+PH^*yhh-x_>Z>u35=P;y{{s6!5%7csBX{*87
z`|;$4r6pALs=HozLmCHqkeJH3CJazrbR)4Jjb9D$PF!L$*J+yvLuIB_UiDIM>=Ly}
ze(RN|KF&Z2xD3^Skc3LIcf9gssispjaH*MiP5!QST=%}%WpgOg0OmzVz@?Ojd5eAu
zW1p9Jy_Tkjy5g>@>;4U%qu*q)V2^2gxmTVh(Zuc!-eZ~5-vvBdV_+J$>ce|zoN0w=
zcQJMPQ)+N?K9V#={&?z>!$VHuK26Ym9w9mG<7J-pGS{=YUL4T&4(c>9{B6M(PExv9
zaKCBa(bV-9EDA_u&k-~W8QXZ;l#-|odxtj?B+C6nvnG|_3~8gu>87T?-%+lK>@lX@
zXzJ^ew2lY7|M*n#Ky73woy48avqo@z7>2Oz{Ve+)L5biK!NY=yf-PoZN7BA6D+H7w
zc5$34xL5GDX+KMl5iq{CW_<pK4_b^jg2jSI%+K(oU@|Kt^gRoxD-?`lCBhWb_dHe(
zc&2;}?|F!o3i%GhZ4?ZGX&*Cv<=0h)@>fjmWoe1O^yGlE{KUui&7`e%BufXuX6iNx
zas@2}`zSlcauvJE^HtN|<soCdRPd=I2^I+YIqjOjEK0XIb&rIMLGh63_h!nTGG!|T
z=P;i!v*c#K;C!dAXA?;GYG1K=Drf*lwSD}&o94FObiBWy=(fhHzHmYf&v4!zTg#>(
zW)e5Dk@E+=<EuLRhm7%UY@P|&DIRu<j&ZzWulb&-P2%Qa+$+81jKRZG+-;lyH*+us
zTdIWj{~mRVurd9laSk?=hdo#4jB;Jo+0PiiQ}`e{iDy!-A5xdn1}ziW5YXpRbKcG?
z&&2!mK|p)`P+MWZ4hhD(9p=&XOPc)EWOH+vdR2hOXGtB5HUZ=FsSw7v)Qq9bgi+Q6
z1X+FKexr9{PO^cS+d9WkJq+V?11{+VUFDT8g^fZ-63j=CCs%Cl$&S!}AyQCRAuQm-
z4Tqt^JjMDZln@r|ED9O(VeiDeXQp?2U3!Ky<{0m?$*WvKx=I=9WU|&J5rdMxx>Hqm
zk9XqgfoxPvOWL^%6$=UE+D!qwoN)xrPb2U6y6l}5c*o@gFjY#l4sy87`Cim&c1YWp
zDK9i-{xRmL=>weWQk)S1aj%&7ze)BQ!%*ExE4UxeUu{?tFp+0Q_(L=`aV6)f_h$sO
z(FJO{_^u~?ZgJ|n@lh>Z&r!!*;GMV>xqHAf`gzB9!7Qo3ykw%vJYq@y$Bvu%@l3s{
zv~Oak-R;beM&7?->@_dR54jTQ-h<~9RhbSsg_{(1<FSO%he^D=-lpw$L)zq<Hp3_z
zYRY!tnPsqtZWJzd+-xjpX}mmtpI&{urEY{B;w<tHibV~_{nxh5asN9Tx7~VX^^BLf
z1aGx5b;C^iNqC@Ieir-f;_LzJ<al|y+2Ay1OkIgLDg8}wuBoffW{k!)HEa+>3viJy
zBpwt*>yj|kGqgK^YabS)@&lLtZk8d&{XWWh0lQ4>vs;-RG(JP^GaqR+F)2S7I56P(
zG2HLCi63oq-t&30>&9~!Z4cvWMqe{b-Fm@7Gk>LoMEriHQob#Kp%g!If|(klT5iG{
zL*g}b*Gmws$1Ye&N}@?Xo3aFYTy2T7F&-BimEn@6D_%lPe3@KXsZlQ@u_3N7?dRZ)
zZ4KyeGAd#;UZuYT_W={8aOqjpSZ8Bv?I#_gN#p5G`*Do*GUla-_l+}NRl~Zu;v7(f
zaX--+!*=FpOUOJvP5oHXNL|bv{3F0TI4Mf?65w@4x4ZNlu6EdlLUpfy8a7UtqYPUj
zkpby%SIWRa&_(<Hg8%avqrZ!IX8<F$!hUJQ$DW9x-vW;->YA$-FjS16DcJ|>fStH2
z;D^a0q>)D)ZF7h{oW<N6i!ipP*t3Pku&;4O`3=NbIyy$88l>Oi1=czrUnR#pvhJa#
zo)^4LDXi_$kaB-V&c_v;pKT_H8kKe=kfcGhF^T8AE`q0AQbl8{Hir5Dm)&>KlZn5W
zmwbVLnrabMl?@fIL5yPe-9=e<l!3bQRZW_z(S}M>9jElJmo%l6{wu%$XzF<xO}C9D
P00000NkvXXu0mjf9jVo%

literal 0
HcmV?d00001

diff --git a/oxAuth/Server/src/main/webapp/img/logo.png b/oxAuth/Server/src/main/webapp/img/logo.png
new file mode 100644
index 0000000000000000000000000000000000000000..539f9940bde74e4c817f3c9814c02b9d3051cde3
GIT binary patch
literal 3544
zcmV;}4JY!6P)<h;3K|Lk000e1NJLTq005@|002`61^@s6`V|-B0000PbVXQnQ*UN;
zcVTj606}DLVr3vnZDD6+Qe|Oed2z{QJOBU<dPzh<RCwC#T??2MWf}e#B$itW$RePD
zsGxX7G=tcnP`OxK#A*?hT*VCwN>K!K5d<m_5mbZ))W9St^MVvuiil_sAc!CdLI|=!
zq7|$H>t6ca=e+YUjOWbdoSCy{>3g5&dv?z`bN-q6|98I2`~Nd1tFp4vC={898rlU4
zC8t86<Wwj*6$&M%LdmI6C^;1hC8t8ksZc066-rKpA~SGOstsfp<!LW^<0`QUVr|4e
z6`LtGUF?hMequ)o7G^Fv6`r_3Y^qojzCK0lL9x@tMq+%mi!`iP1zL%Xvk}vdpNZva
z7b!Wb3YUqscKN)Qc9D{^s_+$$&rjAaQgT)mDm*?f*Dg|WDwLcGg_2XD<V-ux6|1Sk
zqR1q2wiTNv_GhtY#lEgXqo`_fLP{AUwnpqGu`|T_ioGs2MeH;kA|+?KQCn<)*g6xN
zLD??$0zdnc*k8qli)|7cBGy2MO39fHbR`iN&~x4^){UMLc*evQO8ivpkl5p5OT>EX
za49*X!dYTZi7glFA@+n=N3mas9kh8z{Dn9@!^GyECyRYc>_xHX#V*!iQ*wp{EP5Cv
zwo&XyVsFw@-YT}kwq2IvFHkIYk5~t>#mq-HkkGAk_)cs@y=3l2u{*@ti)|5`B=%de
zvN+owas0L8ZLvPIyGiyRh&>`!Bz82wG1V12U#yn#o?f(2BDR|zUQx}-iE#ZZhU3E|
z)a(R<Tbo2_%hxR#+Dqe*4xxP+Nk7rV7VM(RFBE&(2idwaO*n&5!|zkfuqgO5v29|r
zOic3nOzBg-$O#dBsMu}vfDen^&%&lLJyr{`<_z};&F9(PGYsPc#r{b$AoTC&Ys;QA
zF<ta-dS+DkPm`?c6CB$WCZ?g*Pa!?Q@m?+Vme_b+C{dsm^YS)){UP^Nl0;iLZ|KH#
z#Qw#0_PK1|g6G(TV~BKYWzd~w7v*KkpPuH}lEJ^jfgCAVSe9;bVs$qb&)!0>1pI@Z
z@?j1tG|Q%9r`o=U1AUJk&mv77dbO{LUC%IV;Xmxy{Twh5_kFerZ;JJizoB<5b{u12
z3dD4xlh|{N4iindtBY`qkBJR(yuXb7TO6RRpYyyM+1}g0w%?7jJ=UMjbrhW?%<(7r
zO@oA(jabmy@8Q9B=g4Pw2|-KJMb2ExJr~6BqNC^qK+;|8U}%>gkYpc|Xk)oOh<3J#
z>7OW=a(D$d<rR1#JMJQ;3}uec+?W?hU;cg3mS?sN*}LH)8pmTB79v51#381kCml}n
zgRUf19mo5~|8bkhwPK$;&gYkL)R6jYXSLXCKKFfxgP2zFUBGBKHC^Pqfy6w(!ex)x
zPO*>ZJ$EsjBr00k@kF+Yb!N!!Pr|QcTk*nP4!!i5VqYV9o3ry<vS3<F@|K(EZYH~(
z-eq(M1g*zVm<R(&luvxL)h`Y)?YTED^feBzd4)@R1N@LvJR>6HcU?9ao=$RF)%6;W
zgG#jjdq^sHAKaNZg;hE3R=kG!YP<qvFKxBsv!^Io*>jttB<gt)5p)>6{qI8v>29e<
zL#8{Q_$0dVXv?|1+sgf%04ZK0m(Lsf?Tj#V&PrQ&Zxisl-B@i~0z0sZc~36Aau777
z_cd`UaghCuh{&1E{If}l?NoT=b>#u%uW}#z3bOCA0Q)Tqu-{0@X#rRC;D7@<nVxZ?
z<De%nA4N6ZEI^w#GG}!=MlX~xomfhF3VHHwAKz=u{VPI3*fT_Z0=VrVENmd6uXTL(
zAw3cD$-8{E*TA^n&Dh;|Pkn9{yN=uTViD4l|1a=y3^y|$R%8e{(MBl?pL1A<c;PH2
z#?UMuO0dlwvA<CcY44-Wj;v6N>4mf6TsUrkitv4=7|vO$ElfXV7<b{m1<y^9A>^#Z
zYJ3zWquvbJiGY>vcXA-dnZ$zdAy%e1#_=A>dKRUTFDOeLFvqW`N8xpeM^X2Hi3!DS
zxl~~sFK<U}Dg}xRA!j9Xxpz!#)&}0|QkU&9Taj;K3qa<1v<)xz9K)-d=R2J;3v$FI
zlu#-i`K_BWfs1Q{k8}Mu&(p0xvz1nvMb5emrN86g^l|ZU<GIaP<L@~^qv;XvrA!eI
z{VBoxkzTW266X*W^jF6+upmO%g$NJ557TTp394zxNAtyA_1P|FjV7^}xjjKzf#PZ}
zy=L8rN#(U&meMLS$%*N(#jMz!-V>70edd^S6vV@zqTkN%JD)v-YPt=jpS=v}Spi8?
z%XmLJ#-1W5F{>Flt%1QT31%>U;ux#~R`ZaEwgqe(RsCcVZ-V2qAM)>PkAlZ-`Vv!a
zeSI7U=I1+k>}Pj`<An>_uNYny^1jOh?6)G*$Y}u;?<*!YXWo_XwPQ$zB=cyJ?P6N;
z4SM9O`Q8Og6Y&0ej}F`F(GMe-yCy;oJ^0xkh1J#+`mVx*1n}<7eYA5D)sUdXcZ+7N
zeewl$!Ks-_PRolSRQBU*>lu~S+RkLJ+>y*FM^Gxl6ep%EXZg5VU-tMM^TBi2HafQf
zRfzh$0I+7Xi$@#Jo75f#dytBN8|g;)7`Ohm3pmKW-4;+oiW}sb?-b=BQVw+~Tr+~4
z@MN1gsF;GptjixL3#9@q@}0(Z3t4y}j4t=_T~zX3Yatu5_=5M}LEFhftAmelHb2Gl
zL+Y{1W1H)k8r4qlc^^85Isx~MbKT={VN9_(949g1G_cy}=CDW<)omK+<cAoFkt<@6
z@B<;qED+|ep%*rkruO;x-hLj-G#}eGPU5&0QCUb8@X)uqkk9afZyU!`U&dTN8Lbr(
z9A@M$^@uJ{8{3q#kg}2&0&@QzVUj4y8{F11Ow?lto*cqHtyMWE+g`5?@cp^$z#bu=
z>o#6AVH6>+@SHk(Y}ea_e=k4MnwyNf9Eb6|Gac1>nB=Umwb`BF(GtTOFh49csXeHx
zg1M~Kd1z}U+lLo9>`_qQV)?O&%{+y9|NB03{B6#upp?1wYbO1RNZw|D4mTNq8X<Nl
zh;bp^K612X4DHsmAS58HTt7DjYh_}Bdj-ibiQeiNN?4uw+RcMu#S`vLdN;&=#4RJE
zO?Wydrgq0v5hpNCt22R|VR+7RN*s?++BuD6K^Wge8R;#0EaX$~q_8i@C|Eg<mF<J+
zT@b2=u}bX1f%UrW7dO>m860i}`CdqUiTh@7bKUj;{p<GmR9=h)5siJK2!{Fqw`9Cz
zzI<O;l>3dub6Sfkt~9ZGhB`BE*<>RE7JA@5pC?n$z)&E}BiTooWB0RsKyo6HU&)lB
zrbj^md_>7*2#-5eG~fkd$A3L8l46f&1Z{Y_iDtguP11v6(3b^L*eFRSIak}l=swC3
zPR$V#(tRY*j3jcY8kA42q)hU7oNe|vq>yz!1{JCTG}230A^+M|kgVfh%lzE8bFDf4
z-W)tFZ)1XO51V7Rrnu$USkHPJFQ%}t%y_TD+Cf!hZpatM1iu?*RaU09-|V715T_fx
z8OXDjS35}Py!CVu!{``FKz@<WPQqYgF8!b*H0D!Y!R*a?68R+)>@hX=YBb)ere^fA
zZebSZ+lK_VVBJxAj_ti8Oivy&{-^p7F`yx0@k~>XZFf?}!?Z6ZK<u+cud|Ik0s5pD
z)2N;v5eZ~k!3cLg$HWdi!(il*f`z5&BB%9lEuQrK4B?we!X@U|ymk{Fd^?6zKcf6M
z_?<%>XuFp99g-aL-5-;bvrTeO#_$82<5FIX@o<#+n$shKOqj80O%J?+{gVuk)3>ME
z(AY)_6l0$<6r<|4W}1+<_G2-+k;j(IEL}}r{Fj^9LYq3a{Z=qFLT&NBknbqDk!wq{
z@U)K=L3S7>Iqd^6lm!qv4>Lm$zE|<{4lIn0Qg3|ErTG@jEl~*Nk?4kD7~yUZbF<l0
z26m;Ph@9o(J>d}{MlUx1Cy4TgS)-V~+|T^73uPsENIdvz4zJ$ztZeZ=ru!28ikYPV
zARLY*F&oi4zDi;ubbp%{Lpq3wx%P|PE_S28P?AwnQX*J4g`vop#DZf0^}r{Xk37iy
z^cM4F@q9cBjLF<)AmtUT4%*5h;RO@?DH|YtONJW1VWXURDDuRP9tDj43UD<br-kLr
z3G?aUrZWe6lsU>E%1-u2lw8jOYYU5@Mf}cgzCSC;yy+?yHQ(g92O(!eA1cG=JZ42T
zA*UtT6fq1BW}%eJ1m5zJn6dc_ll^J7oO1z_@9DH;HOXA&zfu19!K#2&up-SlryGhX
zZM0*hZsnVG=?y!PfYxJOPT_!G&H^Y|VrDU&h?1D_nuSWK>Pt=wkc05>1<XQNnjmDB
zH|gOF!}$P8FzZs>A3X1w5uOin&5<VD`FbU174Ls3b4lc*+ilf8yd=c>uyhJbkBbWM
z_A`}E)idXG0|ax-W<YL&xQ*%1Z6WXDFxzbta=WEe6EvKkpyafGY0vo)wvU;si%odz
zIPpAE+_vzn(&)q|XVlnbVlz_tOeKQ+)QeSAK~jQLw2aEa0i{rMNO}5Fp*T?sB85W9
zsZeq%6iQBol2f5jaw-%`PKA<Fp-^%vl$;8Ml2f5jaw?RZ3WbtWaiZaW0t^5G!VB>B
S%`NQ!0000<MNUMnLSTY>SI1-k

literal 0
HcmV?d00001

diff --git a/oxAuth/Server/src/main/webapp/img/logo_white.png b/oxAuth/Server/src/main/webapp/img/logo_white.png
new file mode 100644
index 0000000000000000000000000000000000000000..94fa558243f117d367569c592e657b54acf32409
GIT binary patch
literal 2570
zcmV+l3ib7gP)<h;3K|Lk000e1NJLTq004LZ001ut1^@s6DDMuP00006VoOIv0RI60
z0RN!9r;`8x010qNS#tmY3ljhU3ljkVnw%H_000McNliru;{_Q50}~V=_^ki{371Jk
zK~#9!?VNj%R%IQ>Kd{SPLoop_Tm(S|5TQjQC(}qx?4n@Qlx9fT3{+a;Sfu6+jF7wl
zp@?})N4By?8@y3kLh1^rs4$8;UO*EOL11lxm2ZE%-*-A5&+R??QtZC_ojG&%J<s(#
zzvuTnzu))yooyqD3dV)NxxoIwyTA>=FMt*^C~YcOz!QL5BA)*c_)V*Tn>VU}r+{G*
zX={MPfgLU3McY=W_IB{H9EJUXy;{nPR;qvjK1_J7Rspx7Rlu!i6>ux|U;z&Y{sKG(
zoY*>)El0rJfvbV1fiDA}0UiWufkCZ9+I$6E4NL-_1AYQ52i^ecfk%L^J8c@UZ*%4b
zDp9~E0*?dpOcI=9&3zr%37iCs174v(|2+eIr<sn4DoMbDfQ4RyM*?#xusm~sMiT~A
zKzrcNKn*Yz=my*hJPI7sx={ZAP#yDpA7BdbQ=lF20C2IF<tS2Mr+?Q2Gdw9S1}0j_
zw*XfFua?-qDxi<=X<GLIus(sns7y!-UuQ~sO$9tF>Ewt!oh0>k`Zh_!B<&rMZ-k_W
zT-R1fQzdnY$QN~ul(bCJc1b%^t{sxLNP1q<weC++-JK<^RWvq8+Bah#_xLM#*l-MR
zIdB}X$;)xAHFyXx02l}y3iP#>w{zJ>V4IDumw}gjtpYZB51#@Y0;~ou1^$pQ?+yl5
z*kaFv9l&g_A`KDgoq-qKP8jd{JvW6`v`OBk8i4zOJ4!IxCU^|0fPVlt23EZwMg!jj
z_Om^+fWqNN77PTw5A*}x27U{yKvF+R3nc9d%;NQuUWu9E?@6kY^k(4MR!K`Gy&Y3#
zt)$mO&+d~{6EpLssyz6+r0ykZ@Vg-m?jq^2h<r0MYSFxivI`}(4dwe<M80<<9hRYu
z!CrZSsFyUljie30Cj&E~0oV+@<yo}GTKOul7I?=-)k^Pu8-T&U(bmrH){MT^_5r>Q
zw)@m2)YdR-dl2(I8_R)Zz!yUrS&9aqZH)_K7jT%zCJsjePsXH;v26p;5qQ?)6vnN<
zSt;-MdtiLT^VQV>;a+5eXq|;vpHSgk56-tucs%bV@fc5nwRWq5=;*c%vUNVs1Klm6
z{-?`mW*iCJ1e}(${80%W$PpO?9EZ;a1l-fxR}@BOFqCUz(gp|Jq@BPLYig2kj{qiH
z2n)T>-sTQ}E1_J2Cr_R4odcG57<T|qlu^jzytkFxFK!CetB4gLFEOJm9h?kw%244f
zS31SURZ;u5*+tqrLmlU(q;CV>Ps#J4wdY0O(+2400i&=vF<EL#o}hsHn2}1tslf5T
zA5Bjdu@0CH^a9RLsbc_eLQ0;)Nj|`+14h}pAL{$jDNFlM;8S}rleJsgEeiN8Ys934
zyq$onfbGD~BGPBuD7(O>dK@NLlafe}FC=KvN>9Y)c83~$uk)mMA?KdhB02D)fLGYJ
zJHeJ=6wa|#Jj;R%;{yw~Bk;?ZIy#%(dWphOV;l}mNSkddpBM}Hx`eVlD~-r%8!)i0
z_uo;61P4(#M0gXJnNZ)KfQKoZEFBx;8uYXi{;wPqD!`VMciOa@jG|^O;4Z*oGawTK
z7H$#KY&=cPFu+s1pZq$4LoRLsw_DTy*Zbg}d=$7__uwjP@y$RF;N(D_PkY~d0=P3n
zozIx4sByU>26=B?Z0*e};7_EqpOoHM=1HJ33T?OU!A0EWPE86lIxFDXWcAf9^-?*V
z{~rDqg?)X7^6L}Q&P@<vSKA74Se-*?O&R!IWe{%Kw$hkXK3sT>HEc9+AaIHajNe5t
zQ)vRa%&Wl#ZfAn6^#?MPuS-Z92HX?D{PYLzwL3(N5%_2hA#F`a`$|gLlQOpPZ{okC
z=x=g~1g5K3{B$i~ae%lU>u2*Nt@1J4!8wkq+WGjdUeYwzc|{<7hM$d$D7%-WH&PA~
zHc5J1(m#FQoRa_EoX3UVO{w?nnD@UprCe|<swKUUkoRdxJtErZC+WqcMxw0M`>e@D
zvj0L88Ko{&JFUHoT*n7Qf9w^<WX+@yITD9`Om<|&+?>nh!`80$G5K$FKkB@^SJ~Yh
zS3=(!frk=Y)Zr9p<OKm2vAfyF11ZrR*>1mhU|{c@kaI8EX#%CnzVDkQl$}rEfZ(_?
z*c!DSz&wW2t7h(!c=n0Dnt~f_`&1_|fHU(NS&adUc`+X)=DRsxb%|G%jiI8ebcETb
zQ~bLj!{j)fj~^wHbD}i`7m?15Hx;WXgd>;P`6{4J(shBQ`zA?~{P$Cmy83{+s)Vbp
zq*~W8UD73zJ`5aq*Cy=2;eBRh84mx)hW6lfG5I!1>K4(D@hUH-MYPdD(j(<;gwXGY
zC4D~7;B-H~Er*dcCBnEFBI&MBn@44+tDB@-oA|EF0#Otl6O62PV&cmPO!{)*@|ZUE
zi-{n~E#NKw`>lu&nzoYeclwV@5bp6V^Rhb}OzYvnmNojY66!rx(j5-}*&Yfr%7RgW
zx^9ojb9YJ~#z%z5<U!KJ?&?*psrW0Bh6a{PNxCLvl6QBM<t|CbWe`Gd$8>EEEx(;4
zogZ*#mRMkUq6NE1>hHc6ui=s=JEkfQQ$zh+6-s|e(tr%@AL4E7{geS-A!$~~h1(_R
z+>Gyey0^$AY?gGhq<ccopOVxo7*#pO%+m-8Av>4Z1!%PKwbaj#O0b681Aj9)GBMy5
zooYUNh|6B$v|YQwSUJx;cocrcM~^zYQuw~Am;1E{c&~)EdQmus9>_;y&DNXRebQdU
zKwzxt*#{{tTBXY4UjrNvFpPKDFk5Oj7JD5dD132J3v3C`nD&x>6wrcYl1_Bm1V4Mk
zBu3PXo8vs!`uA|}!NuixM#Pd`?(3|C*?wh9iFeL=#U&gdX?7^gv$v$H{QK&NGQ|n7
z$jkby(7rY#XD2(@D9UmTO0l@7Rhod){>x4cg-=e#*l)cC_^OxMGXkeeHD+42dRadc
z=<SoG3(by|ibH*9F^cq0SBmICa$MP26v9v|2N`F=X#uWuhws}QaNSwbno!zCFZJzn
z&b$LMaM7h=o1_CPO@p&WINVJkU~Q^-;$o1%ofLwu2LyQBxjxaEL;n9Ybw=U|Nj_Zb
z(=1vwIQi;p7a{C}F3P}4WxeK?S$mgwkET_F)A1VcJ>YW`KBRh%!e<j-;^Uu}=Ed4F
z&f(>D9~!7Yl;d9+R%Z-_DFuD(D>gL>@-E;9BnRTPXp|$$uyHr^>va<lOLCAQ^^V;5
ghL89vR=5EF0rKA$8z&e96aWAK07*qoM6N<$f|`)XAOHXW

literal 0
HcmV?d00001

diff --git a/oxAuth/Server/src/main/webapp/img/panel_header_bg.png b/oxAuth/Server/src/main/webapp/img/panel_header_bg.png
new file mode 100644
index 0000000000000000000000000000000000000000..49c74226385602dcc6edad154ab77251f969172a
GIT binary patch
literal 197
zcmeAS@N?(olHy`uVBq!ia0vp^azJdv!3HF~<FelasUA-k$B>F!Z_l0-Y;s^=IdIb6
zP*+#9tC%%1j8E{i#4&?o$8CPy{qas)^ux_Gt%Q2pl?~q~t!T*Y3prrL8**S$l~#hB
zwN^q`BbP`2G%ktXv$#59U0Hb+E@1j)ww!5~+G3`6SEq7uJZ<I5=rR@!c&@Is;8b6T
sL#1`V!Hvns`(&-l-rN8){ulmXW;hq$o0!d30CX3Fr>mdKI;Vst0K-a2kN^Mx

literal 0
HcmV?d00001

diff --git a/oxAuth/Server/src/main/webapp/img/phone-ver.png b/oxAuth/Server/src/main/webapp/img/phone-ver.png
new file mode 100644
index 0000000000000000000000000000000000000000..79e69e8d2f0ea10c61871a2bca212838a3a62aff
GIT binary patch
literal 7697
zcmV+s9`50ZP)<h;3K|Lk000e1NJLTq005H!005T=0ssI2o)-R80000PbVXQnQ*UN;
zcVTj606}DLVr3vnZDD6+Qe|Oed2z{QJOBV4vq?ljRCwC#T?>#L#d)6YdF|f&CFx`d
zSr#C~t1u)+LIDRG7c!s%N)=otAx_1T>=Y?iQBI;5OhP%2iY?oaA`lWKm9nstid3p#
zTeefSA(#}{1r`_(v4s)nB=nX}(%tFqc6T0~ulwH}&FyRYRx7w!u0<Vld;j)K|6l*l
z{=0_>A&l9U!p3J=FpJ!5n?-K6%_298+-#dgZnn)LH;bHB^E{6(DE{+(Kl(L_2yqdr
zHUr0rr;10ebWM+nu|&@t4Rhu<rXPvt^Lf{GaZxA~9LFKdIG5N5s^QwQtcWi&XpoH2
zQ{f@yY*mdup+6C>rfJeO{k0X4!(f<dM2w5Fp+?sPFmRnwg9KoBy!i7+AL428lO|kR
zFq@vt(Kw@Dp<ysu2%l}+5hG|i)2}lSx#&6)#Hu*8l*~~(efo5Jdpic4%jGhe3@J}Q
zh#r6<J_l1G{W-IYIp=szJRY8tAf!=aAlYmdP~lIQg7^?*xM&@jo1C1)2uajP?ZA=`
z4Glf{<db{%?%lU<A5bLWquyqkodY&_Y&;>JA8291Em^YU!V53F@x~kH&6@`}%QQ+$
zX-kY5z|in^?%cU~^XBc_x0B7sjD}&upKv`hRSlk;oMD<?n0BNyJ32bntXcD^Pkn09
zqD3T>05x)3S^+s448{gjzWwcQZ``<XczAeVU?2(!qKmjAGXwF94~MSz?Afz&<;pL7
z;R`EPtY|4a7sWj!Qros|d*Fcw+S=M+=ir`97a@{Sd>!8<>(blXJ32aAW?JGbF1v^t
zz5=@oMMw4tVub4kLP-eO$jC@nSJ$RZn=Zfna<U7l5IZg82s|jswQJW>NC5c*c#)r`
z*+|)fJLm*o2d~G*#$Y4KDX$|XW#Ew?0e0g<;0H3yhA3Q{E^_$R#Kgn}7hLf8<BxZC
zc9Q;|`N&!NOn>mf2f=7a2^fbF0)Xji6=E)|3$O=ZVEUC;UU}!8cM@`y%&Po^@WXev
zZr%Fgi!TB&m{|P8!&IfO-|*e>@o{_$!`ZQ8$2Y(E&AacuJ1rrdmds&nPe1)MMg`cw
zwaCw&u0Mv}h*^|^L5#6w%a-}`=Qr@&2M!zn<Zu)zcZIGRm`TwP@I3fBEcbW6`(0d<
z%*}AI(;X_1gJghHU=xj#GGWsbaLYPz;sj)lQfT1R;NT#pLLsT;r#3uBziPOE+Jxdo
zw+$q2DD{J<!f^2QW5<rY^wLYURCg+ogNj4Y1}^|S!cf64(s&KzGWz=Z$j)J2BNoJj
zzzlGbnme`OF`jzrDFl?H51_+)dU_f#a_9$QhnYb^Djsatu3g5|G<v%29L3$_Pg1TA
zGac8{ou2d+^aCD|hq+<HhULqb!_3q-Z)MsWP(AnDb0C9~gmZzP_?$xQX+00dMQI?Q
zPM#M!p)t;UnbTrDEK_%PH#8Et7+`b*u%Q7hbOq!fM&LNOhDiXii`I-Z8|DpqpxFa1
zLwso}G~nx^2Qu6A329wQJERr4NL`SvCf}V*9T{*;*y+wqd<A?VH4DDu!d7j%{SZR5
zf<fKl!KMp8jS=4k<oHQ3Trm^NVsak}qjX(h(z@VT)uIvpSF{(tB*K>@{!DNt6unTS
z@2<>&xnLHCN0Xh#3>`IHX2p%i*-Yv<(r42rrXc0RNKaC4at*|ft*>%sl<r`Lc?KLM
zW~PD@Kjj}SUx_R`^Ixcb<?p(-BnJ%R#0U|DVPZn*QR=+`<Z4A}4dk&Bdrp*HO2%SD
z@NvjnshasC@Hlr#mgIMpl!fY7hlhkQ=t3obQdaS~VZY1B!6s3q0>Fb;`N>aya?zqi
zW%U6~$tX4;yJt0cH63^E-1)>4PXIPrWmOJ$#q%%)p$Lr9tu4W&*pXgTW>Uf{3{&vw
z$6V(OIcP`>lK2H*;F@c$S-Em$8dpXtXC#aq9InS7e>|JbVmSB-qd-Y>`YB2vDxtOr
zDpn3_>Hj4xXNqr0E+rZ8k&zKf5Yw7!W3tuUXsO|D0UI<2*>7ANKYpA>M-EE_8#`;m
z{B9ygMO_pOkZadK&Y~8J&r(}9j2u;CjE;`t`l5?2TDx}b%{Sj{L^T<VgecANT$ClE
zsxKf%btugeop&o?L6Z-ff7`Zg7himFv^d;4kvRFy6du4fkZnI3J9myWPt9&aL@%O%
zK?pOWhMW_IZNkfk#}O=AG~Y1hhXIs7Pm$%ejQ2pxaSQXVEtIZ$-U>}4%piC!c!9$`
z!-WF~yUo+)Y`rI{(_Le{EeL&POjw5N2Q2g_;ncG%GaOe4$1qq52lbwiITp4Xre^`T
z(DJPeWK0&a*(z>hX&uyiLgwKAjCyupbRZyuTh$t~HQl4wS2+2TiQWHo>eV-M$Hw7;
zm})p8<lGFTs3k8QFmB4sNBy-%#tl^g941og_emZV=Q3oBmN*!P7uC<(u4r3uTi4|`
zc3foFHosPS#c1ouFCIMl%(23#%t#3dnD7L#*m7*&%gYR6eTBoA?btal$Lcd#_^MAU
z@8@N{GO<tF%=tb`y1OYi(C~cV#rnimc#Mrb>An8s$m_r9F1&Zasw=Y#T1Q*vh5yCF
z-@o_3_G7t`Qi4}WhM{ViT}Q~2zES@_P|9)`4N7h@qLguG0wuRW$yxH<)iQ-JxiHH9
zq!7WNLa`&i|96Kr|8Q(qiy#M}{`Sa^{&V=n%IR-%%XYMu#Z7M7wj-DprQ>8ZDP>+z
zgHo<8!K-D4Q9lI%B@zaIa`b!8PV8v~<bE*nt8bmyQK<<f<G>Ch)P=2il$cC%(%6pX
zq;YIlr%%oxmu?XF4;=r|cvwg`a+9I==!s{`U{j1UE!%23Y&w0?-KFZ&?Ne(iSjDLz
zDGwG-J$CA6=|=9U@i%r&94>R)EYkvub=2&1Vbkf;lKzl8oj$c-ldINDL~8SUr++mu
zRqRrR+|S1MFr#F~i5;aKr^)OvEp6DCK5UxOW|_8rpOP|eF9kc|kNtFVZ;Fw7C3i5s
zuwZdhv!cQVi!Dc+#f}b(ZPQWeROm>XX=$<As%kHpj1GU9Kbm6XhQrB7Rhlva(3LjJ
z)`m?-f`x=l8w_p5TSqGh<8AL$iX-u89Vgm1oEWg%CjQw%=)i`5JQ-jSLVPu0vt^%J
z>eQB#rXFS4pVAnKb1507Mp>0mj6;kilEF~0nOc2X4p^)~NquU-CP>y3D9f_rDU&%_
z52;*|T7zVU6q<qv5I;EF6sF+?h59-wF9M4*1C+7SuBwzdfj%uz7KB%yG9P*}<tY2C
zM~R3Hc-U%42>@3t8mA07DMMzxy{W$8O@!VOXCT|w2gc~Q55ktIP94h74o%7?C--Ua
zq`R92Kkkk17bknn_T=p~B1kuKei-Bnlkuov3TF)gg8Sy(_y=>AcbJZ5b&ITTeK#mU
zbGR_}wIfge$MDZHrj=k>E3$emwX&KE{ZIF={NusvYA6_eRrC%~4mzD*Ua)%S<bj=&
z`!l>|C}P_{)=GB{rM|_&U_REhG+mEvalX8Laag;?7SSa)S*35>N^9Z_ZluS;)IGN+
zYOVmokL5MuOWqpNhM%tOGLvr`c_m%P_z!y%KN)+&ERCW9HnUbpW3>Qm&@&ET<3^id
z|M>K-dk_EM4|}hkW3{O~8JilHSK9|<7}b10p+~9TXE`MR*;5$)yF)+TTR4&BP8>NV
z3uY`R$vTl}>XD0JQ`bg@+uu6%^X+4=WkMET43bC5F(#)lXJx<#epps{fIhj!%P6I1
zD=YpQ?$d}<GP!M1oCqez3%NF4p8P~u4*ii}AX`J);tc9E-MsKm1$o1tVn0C15t#=S
zQ8PmII3;7Q<*=%hUM@ZxfSPn4^!jw5`YI^7!Lr<*(kB9Q+hH0;EXBw{DCFF%Hb{Kx
z7$z(2{#NX;8E4ht$A3Id=}1bmGNU0W*_qoV^=WGM=}(n)TW#sn$#e45DoFvxansUK
zr?psIwa=<7uGXic*C$cx^(k$e*2;cLWsa)?4M*-wOd6!5gjb!&ViAJ5P-w|42BnNX
z>|}+e`jq~mh74gWnv`ipj+_Fy_Q*s+{!qy6z(kp3FPSO9aCN4Fgw3&&_adn+uTm>8
zt|x7BD(J(OKI9;7j;wbRwYk6pBbW$1gtv14Vwg+7*C_6P2c_Dh%IZ;yFk?w!ubqDL
z3ZX0}1f@KzDJ<0Llct@+<>5zi8y}l?5SljR4DS1$sGE;~0DZV^$^6c)&=5_(`>x#K
zmnPnZLs)hS0Famry~{K2yQFhI$y{RM5{Ujfck~yz{f3|C^&JktUlAmv47osre&E$w
zEAT@<!`%lLtXbW2$vN7jlMjQ9hko==$A1Q+6bX}%pZn_ue(T=B8?vT7t=|6O$p1cc
z^l3*%-L+5)p*x(4Zd+<EPr(rD`mb5td&#-mTjg@|FBaT%ZO8e!(2oJ&Ez8V(VE(FU
z!A8CP>HLo@Z-0L-EYvm-vdG$~H~_Mx)(YTLujpFx4&3YfOy8N)wbUU}%QEv!-r#)s
zVB11bW32!VjzdmXMK+eV3~VrO%r-~D{5x>FTx@?A`5LE!$%cD7S>wAZ_^G*3p+(jT
zEC!Y0nv8Eg`NCxApVQm@I(O`uvE5c|XB(8{%if_^CJ!~x+nbZa|1<i!&C1Iu>ceKV
z#9D!>E>#scS!TU3Ika~FmUVqA-e+}$6{fyM99DUXSanMHlRL)`ef8*5hrCmi-KUCo
z$Fg%qu>Qc7dj_umU}jLWPsaHF<&Hjd_^D(5SlL>E-0Wi|gbG&LakDsAg~r9!!81Rd
zc<b4TH-#UHU<!7oI$Ey`5t%uZv0oXb3C>kgdWC`?29UKgurb;TVq^^aL@=@8(03e}
z_}A^TAOaBtao9+ISn`x7(R$gh7;I+w))*;yT(UC93h~&XSgc=7WCinC%yTPlgR4%-
z9BvbT&ujoF-4`0qHr*0s5Wjn^J{@M}gTfTpxYq8LG}}3qq^MJK&SD3sS#>wJMU-+q
zQ*J7@>%`7+7VGp$cXw=8V;)WewiF|0s;x2l8_}k*VUB6ASZ`a9tm{=^Xi$ch_TI_#
zYD=zJNiO$oSjko2Ma3&AbyzG^b-ErHnme!L{t~&Zpp`SurRwy=5`0Mty(c&Oi2CR9
zhEhqY&BAhBrY@zdT{hL8M0IL&JxT?JRScq85~c1|qZA`2H}IHdDC!+_;)!rVCFye_
z6a|gITrS82qEOJdKg-FT0veRUm}G&GM9G<~W`O3eKcZGZE>LG|)|$kSo}BP{c-tL4
zSHIuwRXL-?^)_{ujL!Kqi~(X@N+aRi1$p?q2!EMB@}04rUcO+ndOIkEtWM9Q-p(nl
zQe9IOLT|3s^^L`MUC};2EyMZni6tA}ej;EYuaPg2n`154YVGQD-w>ajvob}nq21Yc
z)knLQ<>g6$)fZr;^J4MVu1=R_ikG%8NZn&!;LZ^>=At7v$C|AbiC5+$ELWK9pf{4b
zC$II)7?D}KxQ(}pw8>Y*SO)*+;pYx|V<~#_=g0OvGq&5QSSyfQ(am~=XjW^$#^upx
zVV1jZdc(i}_P_sL&y`)w6=lUBLe{TVi>VaTG%3rh(OFQ!u<i9m{_W^bM}rAh=2}JB
zM64g-r5-ti+fj85hT6{EJ>KwrNB-OJg%Quz0~nK4=dvG`AO2=>T}qHuJ)}XK5{Q+-
zMk7iL%+rh<73)u}F2%LWOjlLRMQIKyG_LwCPtfPWJd4Qz6&hEk4DzhxE+Ay9Rb;LD
zEJQD2O6W5zl)<K1=A2gK6gz4b1(&&MvLM>zRikoI)~78?AVsx|Mn#`BSzM)0z2}sB
zR<z5UQ<-tr-#I~)Qk@E&nsdeCq(l^LRN(qs1vH=2Ztd!HD#6!boGLCZ?r2KLfyq~y
zsqHpeESAMsiIwD~yK90`N7h>eIVM$#tqwZT*<)erY(!HV74%?JmQ{yR7Ea)w4kas2
zuLRgw`TN6DhFmYp92cX8Uw^s_CU?Zi_Z%h(hNM&p=OCz&e=6%U2xXad0;OzRw@*cx
z_?+A_7h2sZM(*;=`*w{V7IhN#%3@ijrQVH{@REBjw+dT<dd*i|%8={!sVHqw`t>P`
zmesWLfyWY`(}25dU*yh7aSr9`?0NM!U&(E74&nkc$zIA6qjV^ZVtu%xth;cd`c#xW
znX9_bsiv3XW(J(jYulHk7`czMU$DsSuUYmhYq{O3wcOPx9c{|wK9yupZENxdBCfW#
z%PoLO9xvQzY1d8T#>@qs+)XiZy;j@Z{VS^?S1Jll+~=ska57rQ)2q#~$zVtpD+$&(
zGD`O8xLN=++6%(^td2kGyQTvEw6!%oSFGv1GQNShbU?ggXq0Wq+E#h`S=cn#iY(Ry
zLsu>-_>oyN*ZG@yAD?S=rXD$q@xLCtX?6Fdlv;$sDT1NF4pow@b$Yozi!p_4$C(an
zTCy(HsmYzJ`<GqUe<XW;i)6pD-2VE4+b?tn{`KSw6MkMEtzBj?s;g7j3`ZoZK6)91
zq7-#<Rq8wrUXsi5Hz<g5%F_1sWJ<VB^2IM~sWb5Bb8c9feSgbjzf{tJnV*~U+c$S#
zx^?u`XD8k|6pl~EPH&YZ##8qs%ldH3N`MX6!aHQl0^_P#EM`#PC1QQr)ykRhZA+eH
zQ|iQ2innUv6Jy~SN+B%E?sGbpx^q{zFT1IIS*Pi?Qr_}RJKq_&ci^Mr;k8GCvAy0Y
zPXzQf;)CAE1IK>o`F_l^7kR_08c>8>84Z(vy5~dJWfsfbp*0*088V*{5gC}*q=XKL
z#fX>>I+URy`s|ML?4CiZlP77_R#;hW=gtz|zr^m3K6xp(KhFXYJ25e+<9{>5bu#z$
zT>qI0|7}Lwd!rTGa}z@%)JwWE*5`IUJnyy}vKOSxQ)@}&-t>o+u}gABOmm^#{f~od
zK9o5xeLi+eA~%#9P9`$VYuXlnea`9+IDKgxV+$g8IxHMy;|XQtoUQJ>_@TMCb#N!8
z!)!t1_7sMX7DnsC_L=^b_xF9Q>hhg>V{4wvy{UW_xp%Z3@JI5s-fApYzuA}iSFP_|
zQ6mgT$mdUT7m_IVdxxdhpVkiWXOU}K+nGC5E3e<5>G;~f>W{ZCtC~6qJ>eJfPFn`i
zuNkThK4IQqfnnOAVai?UeyCDzvZzesV6R!^rrF*KPF6vVvBjCbM+VpYhP$xrFP@Bn
z1C#T-!wk9EDa?ms7PoC~2ZkHS7yT6VrpZ0hwyJ!S%c4qA5=pKOU1PJzHQE9p_IW3#
z>OXl<-PP@jzdGlZrOuqGVupVOn;Cg#9oWDB8~^fHcW>|A_xxFww<&99tNpHqw0KH$
zPC71AxD}yOm9I?T>qW@8+yN^}2(oi(DO(M>u`qYQKNXibz;<ibWgF+*(rsp^B5LG4
zma*K!LqmW6(AS=Me#e{p4u0<L&$?c|V7Qh{VTPOshN?C2B_2E*I7P%|b|$1ZHbLrK
z!z}hlbqTD9nP7sQGnLwE$nExqPlUNx(8kvFuK25gRq;xmVwDvO9ZQ<CXJ6d0W&8K%
z&70TTm33WPSdJO06fh_0lHV+{$&4HolYS}NC}2!2PGGaza$1h17Ze>!$8x?n@X^oo
zToacw<ymmGAJ`OBUZ<L>k*)sPh}o#%oHsZOzsw&YRoRp6{BrNdZ|l13Oq8ZhqgO}P
z6y1t2^a(lI%PY%5!qmLhr=^hN0eii049G0X_HP=z;|f=9I}W6OA+h9QiVh3qffiF<
z_yO32YO~0_)2-l5zMeaFX=dK0dB3y7=??>s%euIt8dM8!XVhj%_zYD=8Iqn%i>hoj
z<lZ(%uFA~+(%hQ{%r+5v+=Q#=PlkRQ?~H_vq)I__1}FMNo}iu{@XiXknWk7iV01k?
z_g1;(FbtVI9!3gQh81<B3Y(cwi$C(W7(yu$wKJxnr92e7O>jG81!3nWcws`ViSv9x
zs28+S4LU0wG$YepF(uiub`IkSl(+4=E)7p^WNy+R&zxpmQdaaynVU{Jtxi8C(Od06
zB^&ka%2Pf~S{5kYsOYS~rNp4*@oPemsswl~r7bbAOeRA!bYx_NeCR@<U|G#ElX1Xk
zeweD@o<xB@;i@%PCVbx~*z);2?jjcwG`1O}2|0|)S9MefeL6Zih|!MYG?9sscoFX+
ze-CIy^P}mJvV5(Ix<yY<4~B-DdY+e-kWLG^Y&MJWKu;D_+q7xZwr$%cCnss-O)$2c
z6I7(N03PkeC#b?wBV5sfAZVh@9X)y!V`*=1x75yHdYBeL4kN^5B*g`_xnsu;{My9f
z5eG@O0@Wf_8TsoZi@s`A&qQuaOOs5uwY6bH(H&dLLxFff+5j6kh-(ZIqiq&=^2o~4
z_QQBk6?uJei7akLZIY~$dW1R|A0L-zyEbV~%pf~Qa}&traycM}PjJyJlY==yQU%`O
z8r+0nk$R-hDYYmM5Dfw%ZkBP4q!~j)&#YoQcDj+n*b3^%Rg8+X3MMK1v1TDh28?_>
zAhdMp(iJOKTz1)IxYuj1z4rX`&kqd^k;Ie0HSxX_3Bb-lh2ZX(F{!t6k(*9)kfu4<
z2Y~~ZF;w}6g(gi;@;fFbCcwlE8#b(2vqm14pd{?pTW`g^HgDei@WT&N9MUX-i%e-`
zUoo_3t*1qDC~?JQ%C{7<CbEyXMoJj)+<yD*xWFAT{c$h+gs81wzy7}a?jz$0$!K!s
zrDS45d7MI!mPlL+fOtmZTr6UdHeR)A)wS1N3!I=NX_nvu0s&BQeb-%gtz5bC;K764
z-Q7(LB1v14Qc2O`oGx-CWTZKx(5i`Z6EhtlBd|fAgi|~b1rY><xcI~;K0z*0(~*m`
zNQzR=x=N2sLNr41-J6Kqz`($Q1q)!_fK7Bq2pqW#_#9Sn*|KHlop&D0UUOLx4Jt7&
zn##N-@i#sz!P91q6aBZhw^M4ATsw-}43!k7=o><bpUn-qqUR@Xh`g01j_ci*Im7_O
zuSj7UO<kNrSEHk&QN&I6qKN_t12-x59~l{es%)+`DjoL3Xu4p2q$TOBg&YI|PF<Aw
zjq-=hdI<3A$dMzjyz&Y#izid)Pn7Hii(h{E<>SYX<6)WzTa?8nfx|Fc!MBV%lgpPc
zr~D8x6rxZT`jE9~ELy;K0ne5#TO!{l^3J1Zk_Z~JuaOUOrj#LOwkZb-y#jT8)m2wT
zR(ysBc3O<aNN%{{hMt}t;sSof#E(+65qBtS#cH=&{Ub!fWZ$-J+t#gHL52u{;solD
z);}M6?6DVKcmekv9v-fr6RB*p2uEhph?SyHN~pKD7Y}gi)Tv7^z4YRXFK!**QocdP
z^DepMl3Q-M<-~~-lpTgyil#rYCQ2<vtf_2uv?abcXU?3B8#jLCD_?;d38<)m6}LNd
z=+OQ5-~Y%XkM#HV1J1$0!TQ>-)_p1eNlHGx)OYga$<EGB;Cja$cQkj=@tn2<oe)h@
z;Iw=9?tAXJXV0EJ<gi43V6<`;r6FpWz*=HQX)SOKm_ZLCJh<+<>*mj&kN)3y;|+)!
zn2WzsJ_Yho%e|~MmbkMTUvr=f^nCd6;Z>_vVRF#JQ2#UB;AtU;(GnOtckW!je*M_k
zSa)|fxJ=na(v#%DH<pQrucP{<Ml8k!WRWsq#OMan!SqG)T}eYkB}3@;;K75}Uw{3h
zk3QPb(GeBb%zQsZ*A8Q*Q$!3QfbQC{V+S-0)ii(+Wr>yPf)@oF5Gm>e(}Kb~{EU<*
z$#(-jZKT5^%ZI53*`mjWw0-{bpI^9eA<d7*ZZSiVBgJTxDtr)B!Ijv)efwK)y+tb{
z<fKK#Bhwu@u%}!lExwc0i9%yq-yyNa1zg<e2IKT#w8Th5Ko2mkix)3mw{G3))vJxt
zG6)g34svK<TvQ%H?eyu>ufF=~(9jUH4e^5X8%^73Jp?)jAIYUe!)zd{MyeP+W3Esw
z3@GVF)9N2zp;c2_e85jg*!kz5j~IYDBz0Oj##TVCsuz&P(%_aE%UKmnref_l(KAYE
zJ1gYUE_11FjpTUZ#pJD_Ez>xV)Ra2Swnp-nvuzf++19l7{{jpE>JM)mBpIYL00000
LNkvXXu0mjf+3e>`

literal 0
HcmV?d00001

diff --git a/oxAuth/Server/src/main/webapp/img/qr_code.png b/oxAuth/Server/src/main/webapp/img/qr_code.png
new file mode 100644
index 0000000000000000000000000000000000000000..e47701ff25a1726b0df69433079bf3f4ab3a052c
GIT binary patch
literal 122696
zcmWif18`h@6vboPW}7s&?WAGT*l29qw(X>`ZM(5;+t&BK%<N=lXEyoo?tAy%^E>B;
zDac76!r{SzfPf%MNs20hfPi`d4^tR0;2Bns4tn4huA`Wm<8K>dM;Cp2BM_lKHU>r{
zQdasVMv6xIf86Xwjd(#oH&3NRg_K-Z*E^xrlvUfl<WrFR{V_06+Wo`HNb;98=Lh0b
z%_B=W=IklcwpbjlWDY0CKel*AWsN_j=5Y#2DJT;1#SO1I{nQi`FyahUl@dSS&hK`O
zYp1y02m;3)a<<ZWkq92uJt~_$x9S$%Q!MQ4Zv4QZCo{QzD=QxWKfAk%y1G{eW>r;H
z@8jL{Dzf~lIgYhk`?ag98XO$Wp-6<UPgh%o(%8uI@*jS)v$NpP$eH|3=_cHc$FZ52
z1jNKPvqxDxF3|*B_Sf6JYt1&zW^+Y0TU}C8QlOxqui!~ZNfI$ce4fwO3+1Yvot<y@
zCoFnBzCAsH*v0tsv8wAGZgUf}_v+;sjN>yzRQuJplzAd*YRkDo0S1PKe7wAw#0!Pe
zDUatH4n^BCPEL*O?d_W;va(Ut)izVveCX)tYfV;Xv+jsLi3GfPX=ox;-=3cZPrW~0
z8!u@pG}YBty1d@t;NVVAPji#lvYb}xUnoD&B`3Ns)|w^u+ng`LOBw=^US3{SR#v_j
ze)s10#w&fJ3=R(D-U1I8<;!mW>iM)-s$!Ci`{9vZ_z8#l{8zi(8OE*IdPB*t)oyR-
za-&^7n^*m}W&m$X+j26W`?hYL2=I=1F&6?VLy!o$olfUB+Fcrn&O@8s>Wey@kRw6i
z0z*PrB3fEFV}K8ZLAwoOWw!CG*rKCd+w_<`hWB=Sy){x0I?igXX(ES1fI%Pz8Y}=T
z$Mrlc=j;7Qs8{ImRftUBc{||YY)OQ68KkJ=an<7F<m5FFeiCCmgTv-*u@X36JhYD6
zL6UxdFqizlyTPL^pRW%#i^bg8N@*;8MO)kJ3ibMIx5Kp1P#DVYkw2vK_%<ECl$8GH
z)gPM}Yz^psoK*)S5w4;^vNYs7h()B(e%d|6D4?~9+WI`!=O7aEcVO!3n+l#DPGo#N
zHg{+7c_ec*#XgU4hrVBrhv>SW6dp&<JZ((1Ivnx8>?b7AsQTkcDsAz5`P`K2MiR0t
zx`p-ih>ZHY?-5HTmKSm{Fpl?4O<m1M5PR(eVdv-PI~HASv_DlgZ}xR@f5YI@b19b3
zkwYfraZW_W9j(%C-*h|5LZ_4qh57h<I(1f~hRk<AogmMDa{KNuRi51^kjLbf8TaaO
zF*_*z_1W%&3}-2t7Dq0=YcaoOhH@N2><!ZNa3mrkax|60kSix5(5>;PTr8J$4{huA
zd7IL`O|ZbT!EU)e-R^RglZdo86g4(FYUeGPTIBQf<b%yIYz%*m{CuYS6&|6w<!*JB
zTsaz$@SqwP7<dimSp7+9;TRofs;!8O%M1a1+7%LLTB+TRbynyCll-xR>;n>!b@gW~
znU3?8E=^2BWA*W3O_}R!>g!!Tuv?w1cs8%2<6YpZ`|JMc>C2?-Yr8jq!+QN#MOoX3
z>|f=kF9-#~ZK-4={Nch-`ONNu(jG)wkAPhDE37xUejMk*?9Rr&_66mIGT2V%kMvJp
z7ObM%No}0>g!ufnBJsiimZA)^^ySgjHjN(z5}uW_$G;yonZi)+C<_r-nXa3aUoA&d
zNvRSgrXJ+Cg~i0g?!J}Pq0Kf<ql+>)eln9gNy<IuM&~WguDUk9nCv1Y&KtlmFjVKP
zb}Ql|I5am5$**hib?`1Q_54C#&%1GA6K8w>3FBLjj*DCB<L@G&ciy2nOacqO)@bvT
z5KqR<ou0e#a&*H6Gb5Wi2w})Qe62=<bUPG<ujcfjDvTg`;TdU5JTW{>NlROyZpL6D
ztmK3>VKq%4cd`Q;mHM5XJvonEIzRm&Lydz$dM*q(3`emZY%@2Pgl#PB)Xm+siM})|
z4HE85pD|{<Oe6%!&d$zN7wm{xUW82jW1S*t5D}FB|C$I~{noe$St!fsQ0Q1Y1Wcl#
z5#gsJWLf2h(wX8}#Ga6eZqIQcJfe;ueb1Q4Tuh{KB#-Yecb=$^!vg~#;uPEj==eMi
zuj4(wg6H5c6By4`<{@lS{tC6VRwBaG)?3Eoyn5EtD8E7Co(X2jhxdk~3PgnOX;iB~
zaG7P5VMta7Bd||iULVdpQy7Z={^k9+pNmzBpW{AxPBEkS_6^1RFl(HKicV-QmBN!X
z#i?tA2B>VgO{BVGk}z&vU!NXQlq-hGEEj!2@IXc5u-W{^s~<hCq{4Xqi;A3lZ<I2J
zmX=m&PAxtn$Y45+6xWjsg^Qn`D7&x1A-U)kjF$oJJ5x~DRl&*^yValAvY!FWb49Xu
zcXtWzas~!u9SW6%7q<sv3TW2MkmEW>lUWNyD6J=R#r+f&d^S|{^v1Ci^*`vT=sC4>
z`AO`n+Fl~{569C)&&>NqiVSXtwzs##&?(tRDHk<g9nEh4hDNC|fP<A-$S%Tqv$fMs
z%`Yq_B_?8IGEEAD%UX~lj8V#GM^Z>)*lx9e&-7*?;xGC<@5G~1+RLU|jr8}oPVv84
z0_OvZ0!rW1xLc9@7XRcJA5?<6Oe!NNNiO;i@AKu_?yrw4b#--5!ULb<ypSTftg@pf
zD{kx<{>S6vUj?wN&oM2pdoco=-9Fu)&eJcYEA^DJ>7tY_)YMJZ8*P6^<Inq7rdN$a
zBuBRsd#8Bs#(h7*Q!!%UD7-%&mS|Ke1a)eKOG``NG5r>2P^@0==j2tZw4?|oRfCa<
z`CTs8x4u4~o=L{Xe0dZy`0ws+j~G&YwtGN(vw$+^xLBc1F%3>8Xx<Z~ijzoiA^dCX
z-@kqNr`qwE+^7_KpO?WDUHZ3pGXtB1goHF>MaB3q2PW5Ry@q*rNfgka^+t;&${f!=
zf`=cNoT+>s?7U(&Y0p5v!(!0s@OZM`SOvubO3Ye^8%wC(w9c6%grAhOtcZ6!H04=G
zu8A!));34)&u`)K2)TDjg-IAG&o6KKr>PVzxlcXo#NN+4K<@~%6HdmW(+FIcc>v1`
zQfDz9--a%7e!kvuyE|mU);6o8ib;D}^7&XQSFOf_F+z74i2Ji&mW}r+dJZZP49a_h
z2@b{z?~=;-MKsCPas3fg5~I&6zJ9V$j?HknRIO{#s_gB}4~;}X`-9Vp1FN!GKd@Ro
z9Z3W>40glAQB|AhZW#p>v6;2ApP~C54RUDz)<Q>zsE*BcTM&JH2a`0p=xsqFnqYKt
zQvC9u8s)UN^f&Z(%Jxn81ICk=;#-^Kt%eoSA|epT>6^TLbPVw6m3oty_we8+p#Qs6
zZ^oYr69Db|r5{;<B=;5sEv7AB&m5+dUBUZgws0(kA;jRdCZq_Nt(Q>eX2WGGZ*=mA
zDn04P&dz#5D}q!Gg*cH7Mi3~ij24mY@IVQHfcN|HOo97xV6CV&G$P*LFZa`VD$7Vt
zyG67E92y4QOW?nMeSWODHqXo`BthfD`-q8^t5mKwS!Mjdaqg1O;lIxvGU!dF5ZJpW
zlY>Skn*R=$KAy^NI1)?xN_#z>Rw~s5zlLIER#{m2Jij*_15Kb=F7g}-9v#>7kG+;Y
z_-L9K6IF9_wc)1U>DIQHSfouuajemaf-0CMr5eUV6b!+Gn}8hyZD3}C{GYFJdU0$8
z8z|x8oMHzdwGfRL3g@+}AO#h-=r`7H^Gn03UxB2h<J%?}u)-z%i)<l7Q=CT>rKavZ
z_oW6JcI~^?h3coMIl|CXly-mB?NqeA2)R9PZpA*(4a89vNrEQKNn8c>e63xdLG_fI
zF?Q5_WhwG9SzdB)GY+U32>O_G{qnf&o-te5^szpvm<zb6#>sfev@mh{X*FC1b4kbT
z&Cra6G|@e5ea<9FXut6MNjc6QB2Lp!RXpuvqnc)wt`u!{RogvU+S^tJQI`X<evQto
ze@B+`Ii^h%OEaGEUm}${RRkOQ{jN!f@jUQXGqi_=+x@43ZqheNC3WSMW7!t!FY0n?
zipyY`-xDY^c`xzM$14@<?5v{YSyM&^HVWCXO{CNuVG0^`&SL~0o*zp1zG~%v;^@rj
z#;pu#Gm`3(MwG-5?~DvYA+MFc!-=Z!F;^ggY@AAa3@H?B{xF=-FmxJHz{NthI&#4a
zo`v8vAHZnmTuq_n;@YnZD`i3~7DKU<fIUGb<o>4k9hX?<yDo$;Y+2ZwwK`s`-A-T7
z|Km<_a#J7{Fr`o)TAG;2O#cZqPz~!3t5=#QQPXU;CY+U;2lr~SToL}EUuR0@22F-%
z@Eywcs1Jl*yX~)l?b+f5U;EQv3S>D+nLmdzv4ZEoKt$buddCv~{Os!YYqP3|z0$<)
z@q7g+C;qEo^s#u)DkAg1izD$lkiv#JEoREg@vkWdIL^~6tIBTgZ}Hd+FvjBpIjHsP
zFv#AfUA2p&vxcGwhwpkE6%=gk?U_4@pc8*iMVGgX{_R0c;KYlQl#;?_Gf&*-w`Bot
zR<o|~VXashK`cRiy+{ZHJQOXW*v4OE2BOiE`adG~qGF?=HCkdr-X*P(gs)cGDc@|H
z%JwDaPnFBT-@!#GenIbRIU!VTO=94XdM8)8PvHM8KM?rM@UuRp+4>Gkw2wdv7r};O
zyHS5)*xFkHq54%tSYh|h-yiG_QVAmHW$zM=I2xCw$Zlp86&Iy0G7{mhg!I)`W#YtY
zq!0x5FA`5N0btG+I668aAAY_VjwVcynegJ^e!1>P76Q%GOb{*DXWr>dZsT(LnWQvt
zJR1L95AiV*S}vQ{?e*Raoh9NKZrbr;HOUS2>*(;1IZ|A4Y5uw=X)MKXZ`YOT`ln?z
zlu!w%{|IH>Ib<pD=XneUU^dVjida8<UQdc8YyP^rJ^(Tx-?|k68F>k<1U!L3x3i+O
zGvlrExnyxxQzYaW`MpuQ{Sml0IvfvXGrsPOKSw=3VIEiRy3OfydmDv9iupO&*ytJ?
z8fZy+x_=){rapAPA23kb%cIcaLZtZgHkSS_1`9n5Gcktf&4aDh6F(dU{e0~KM~)<5
zA|qi$VVazr{CqvDHnJ(p)^XkTlj;vfgf^Jo1k?iAG{=@FI#v&7Nn%<WY-5I#;6M*j
ztaVbMnRk^m->&2BfRsfTm`vP{!@=|Yi^p@gZZct@4ejZ^g5m;NFzT_<wsEs(ATu-5
zru*Y@APl{3#1L=AG{i|f8jtJ6Zxktj4f#%#VVPE%>p1L%TR`bhKR3D-n15I;kXg?O
zEX`K2?8i=%W7QP77%d-87iu6fM#nXeh0j>It;}Tp)ySF9akCdtx^o(uO(MfG;9*1c
z)?pv-xSX$cdQ5G0b}Sj^+=Hn6V}@{z!aN1~{bfw6iA2I6qyqSHSVY7ep(51Q=qv<9
z;4{|PZ=1BXau^Z5OXQuJb`NEvg;ghu6wj8w$DVN+2k0Ju6A)N$UCs_G=jZ2jI^9p4
zZF>D7bG#mL3z#JnJr8>Pz(LAkFGKehr)JMDE;*LbxIJBmB5U`CBMz^{5I{bIsupgv
z+b7c>evr@)CE*-_OB==-;E^`=*V`Og5UO2H34D1DhGX`@TeS813ria!Bu_Lru^$zl
zQuNh0o+u8eZAQO4UTt<_+CeXf7~nRIw6?;NcJy%kl$LF0ShuqhhPR}+LzQ))K<>Mf
z?L&-c;mSa&fwXEV0!I2J8!eaC=DePC+<bP5Fl3KNOE=avErLYZ{KI#L)T;cQKRcvl
z5$i~A9j0clpn4*+1H7fPAf8LrdEvW33+m}F9&v$n@J0h{rd^VB)KQbtUF#G#5p)xy
zkRBenhB)|~n45V4{1RH<NN`wD*FhE6LV}#mm!&A-m5dNtGTW;EB@$XAH9bnq=h&HS
zr?9*?rhI4Jul$1^n~k<x-QjP?-M!SSyvB8G9Iqj!q?bIB%3@ztxvb@EJ~%Y7zGYWy
z$;)&e!#wqZOKe>@QQ64WNO8t_X?;nN9`HuVy?y(okRWPYzsUIqJ>;(4(&~Cimd8i!
z_Zh9)*r&0RzU1Uex@4kdu1%Qg*wQbYq>WWS3?qae&IzAqXBK5;yu9lRS}|?qI#A~d
zv54(!2vc(=@W@cpK6-k&ZMtdvh+!s9BK7ss8bxG(=|?!{2n>P{ruup5trmOL(a+AW
zscJ+Nz4*QP{XS*kR3IRsABd-Y1ZREcisis(wjBa~t5omM+znU_MK$vW`|Q0&{VV$^
z&oH%}yA8~4NH~lj0sX2dJQ>zt+Nf*f1a+5}k)GtxwuQY`&dLg!FX{~=n`P8C15}-w
zrF8A-dgUyOo0~*(qhZW)nb-VYuOqWkPRflr-MS7j5O2_?5g_2uNW4y`N_$dX@C<@~
z+g7<@%8j?I!ed)SSJ1hR$q%5vy;*F6?@(@jj&>wmryu>EQ|#~SI~UV`_XL^(P-7Zy
z78S?X7T5qpG8{v^^npa#yAd14(W78#c^*qDa?Ozjc?&|zU0)I|)5kwLZDMRZG%!Gt
z$??xdFa(f7IB~q3FOrj}-21h_c>ll{a#_)fks9qYtg81rL1=MdD@0<YVjx-8@w1p{
zqQ)d}=O&p>6UE31Tcll~?>w=Ws?GA{<uwYQBYK+q>Q6S?W$rJC&D{7^%D|%j59r6c
z0F~Tgd0pQV<mzs3Y5`*7{@Y5;X1qt{!C~OE0$mPAlPKvnz*Coih^8n{t#Lb^&I|Yr
z6%fDdgT8)qeJ?ob;NXCZ)>9lo&Ml7&h>0H#gIVF|t(5E)TO_bSZ+o?D-F8;7P8XP;
zpYM_Ew^zI0BjhuAcNB|-HftjFf$4vfe^agtX@!u>{+sUj*i?cTNEY_ChLda~djukW
zXheo-Rz$goC+l`Jcgh-Ov&-djtH~6RKg=drdk7*v7AB@qJ{m4AZWn)-L^N?}n<gd^
zQ8vKVa8b=}6>Uv6JKWlz&JUR|cql2MZ>GJ-C}pc#y8$W9<#MTIOFVrfPbrtV++tTi
zjl38QMZ#=8UjmS&X-ZaBj5l{c0Riv{Tn9$ExoSgE@wfL~#@0U3)SxjsFS9I!+Qt5O
z8jHnZ#pu+O3B6Uon*U&_h~n4i17+re%jYQK6c|*;)22sIP*CLPTz`E_31^pdM_U>v
zHM9A@eJXbB4pjb{tr`N4+x=0OEiad)Ds2PBHm9@45P|odybz*zA{5$ls9swgo$Sxb
zTEpSbOPB71fxL>z<itdh=*M70IliZLhXRQhaf)$r=TY)L4{x0|$5QKqYknQ~lkX7H
zi&xi&Wi;j8udn6FnHucVltm8XEDqUeyhe3@r%<~9wfsLZiOIzWH}sDsW2awyQ5D2h
zuVWq8$S9KjD1HB}aJ6RBokXJRoXoLg#LfwS1UE&eRs+I`&I00o%dnn!y<!Z&y^Yjb
z!{8VK9bL^UeX~Qu9tl8&aog|1$p3o*vB>5gA4^>Wv4tqk=#?g9sGw!|xE*7-Fv6)#
z$vvW}?f|=l!TlBM0>G%V>TawUH1YQrd7o@{FO9=%nb*Wh%~OvX$Hgk`w;_BR3~cO(
zGghnBhUhFFIM6Hke2p_2q{SIc$Ss1R{IQ>no~g(9tbES*IN|!71A3f;*7PE&sElG;
z=kPIhr4;hnv~kn~gCBW5gf6zw+w^_Z)!R(2{nd}Q(4?`Aq(>YsLmKIa80!I;>WwoT
zJbFC^`2{FhZ$pG<@7%vbukfnRC=+|f$%5Q}Ks;}jnL4kI1!BwO|1Os6_$5z|cRGse
z%)UB)j~~zTTC2Fh;nywG3*oZgxv8@`S<PbVk(izwrttNr>yxCFJ>biz6Xb8&g2zb=
zQnK-G-Hp?7v6X)}C8=t)78R$L#+0TI76eZ99LE4Vp&lsm@%f?dvTV!hAIMS1FS+uo
z*u}SZ6Qv$or)QHT3YH3oQj5{Rphjwm?=vM9V9b>G4obg^)Jd_Ij8Amx<)~L27bA}>
zwY4=;<&!oLPAN}WA;FXyU6Puc%CIZlY3d*fqCqcHiEq&mIXG)hA9ba&niPbOdtWMh
znDy==sR;4Pezq>F=O`y!Qk*Ypr533{5w%mP6%jr=?=FY?J)4IhE!AsjSgDV|`V>1s
z&X5|Tg$xf3h)ak`Pf){dSI!xVSIsXft0-$=-{dBxr0m6MRO_Vu{h+3%zLh)F7xWkL
zPvb|Tj!SPVozkbx)fAi0CjNt3Gm5Wm`;x&)K42HP70C5^^KrS+w#T5CsAZ{KUT9)b
zUhaH+aUm-T%LEYH&?@JPMa*Wot`SPtxWd9hYDT8uz2Ru|=vGY?he-7@<9s6B;WlAU
zKD(j|DK1SItM7Kf*^EY>^dhU-0;9}W^%U;|OqTgXvN51rF6WC1cK;@1$(^1qTgo9J
zA?pOzGRHVoP}skH8(1Zc*PnK<wyx^Br0;^#Vc(C6jBLQdoWQ<&94a<0vK`QfJ;uU3
zUTbfzP=oa(PdM$b3#e%MyF9!kG3leZG;5za&(RD@H}G_L;G)4bX}^E<{PJoPJs$Wc
zP`J@aL)&Fn`L0tQLP0&G?(uR<Q(O7saFfKp3X3e@(jH3qkzhretd<+8&g_l?=yvos
z+6qf!DfBk04W;T5OstSRsx3ZWpYI)>5MXT5a&qEzvWq0B1uu6;#QdJi!^0svPGM)W
z0E_*4j``wrK2J?-otB0hap#KfbUIUU(t%>i&-qm#&IJEMU0EFy74?5kB8=wm$(V?`
z>vXkJFR?&?VFL&%i5NnFt6K%!Gz9UGp*4*KZ@r;&N>6pT13asYrdRr?ljCY+hP=18
z7YCe359<^hp<TDzJ2rxt1e?_M=g*&K=~}j=KqbBughrN+83+{J{``8+`2v@^QrUEJ
zsI|C*to8%3B)!=PM#Qgyqecqn0NoW-qr&-Xg3NBSIj)-)9gK&yk?caUKTS=~j&$w;
za3oxC<Z?3V5F!+!eb7xaAtNJ9&#gAA@>jT_Ca+=Vt!|5l_q>koZUNTwjOnG}wPB)@
z$Xr7%?A3qX!4BS`!}1zDlT<t>mr!9m;!YjfcI{nNMAwf`cN~;KDob87&^4k+&o~6Q
zRP;xjFy^n}bH(yL_cIc8##Cp=hkR<)t&&de>O3UOIe<HGHzi=R+k$Gw0@<KM@XX)&
z*73Sp&SEk-9}{!hLjHom3VowdZyfbN#j_D^AOMii=^|ZCY#bcdo87_xYhZ>=7wVO~
z9Db?cb^_g669KPd&4JVE_vxCO@U`Zi`w!@+J2)cWnqUxUY#V^M0{9-o;o|7X1mr9^
zL#u-^wcYc@Uh3uhw{P#eN8PFHR(O$EU-JvmDafUuUcrG({gM@GwO}8rEGoOG(=kH(
z&nPDQ^;7)tFfb_cH8=9Bqy25b2-Wp^S`L7!Y3%uhc7i`!{eZ&KBX%xnDr%~0yET51
z1*gJUz}EHby&f3!zRrWz^?o_X=5ud*ueOQat2ngYVRBDeHHZ>{u!XdKo*Grv14Sa>
z%x!C&Y;l%Vlx$)w?3=xeiT<&+!eYX7n7=dNj?)8(sneE%!C93R*2?R<&X1yyGNc{6
zNCK|eO=HgnNPX>Y?@oT#44z;nm$tzGQQ#_OS5I=NwH#r6R;b)GH@A>6-wF%~+Vf3a
zFW2wH?c8jY)prN?LB;Wk0gIMj+^K*?r{wh6{P}~55-rolg?8dFr-sb!#mx{<6E69f
zjzi=_gzPa-%6SJnb+dIu8y?4CHY3Ei2_q^;GgcH$m*kQ5&%PO4U#{hOGLikZB6PTS
zzgdI7q1x1U1+C01We<qespg*X?=*HX6;{4Io+7mcYfu)wgLI59$<F_2a&<nm47RJ(
zT-+`;1!nBS_N8mi{gK9ZYNFruWngz5>A(D~m#Ve9f7=zSpIdAHB*S0*Yd(&IW-(Z4
z!*0@8yXkr_T6TZhz1iU;?bVZ}3|R`Y_l}|@mo}hoefUBM(dqT}C?q6A|D+->i#LTr
zroWS+<yFX4TbY@{Ogp!%+4alJ<>6F0j#p~c>3Euyn)~Ow+ntoz6Fm3MrTS9&k~jNd
z;<$lX0;IA2Hzqw9OBuB{M!Va_e9u~>vX%^#pDLkv#V4jA5xj;eKciKKCoGk<D<=Z5
z+iIhtqba--l^vj@v=&<(Olrv*RVEH;t}UL!`TI&nN?MjVJCk#J%St=L;z<PRrj|=#
z`e1+FGVIheRre`s&K}kjChLVD?GR-XSzF6pkjz-mC^nIklWMm)&Yab{H=3an5fRPb
zKmJtZs5cd-!63w>5>paQj+9aLPJ*7My@O}Qzx{W}D$H{8Zl@2R`~g{8WrX+6z{}1D
z|5M-!LfspRarmTfdkZG&C!&*_Yj?5v6Oj`k{WF@7ugv)KfVyRSTd!3~`tNm|1W{O6
zSZ|mzi)a-Z&Sp6Y%^PzK4&~jgoJM6|sz)l6A(>rr*qGskE7@i22cWr^`D|=##Mc;V
zx1<?51AQiA`}+EZqVe%jac5|YQ(DohVe|0HoHer@mi8BtmUh0%^;3#dOk|Eyv-v!N
z8>}>aY~cO%8>*i4n(NAbmT|CF{|qa)qYB792l%Jx9FEB!DrRPTKt2G|XEz{KGuW+O
zk*Dc9znxN1QTd6wKZ>HsT*C|B_=b;+Kb;ik96F36kHn{@a@x;JHo_303A2{Py}lw^
z$#*D@qYz_}t~8h>oOjhPxgwmL&J`nj3h4sX1DtSvf_a*fodRnY8VYiLVF8`l<ziL2
zN-W7>*^|sO?g&@M-261+>y`l~n^R&sP$=CMJy<Q9NIVK}5IbzCjG9J7SVSTQccUV|
zguhE8>f;vwK#^sjK!0X#$lzBeWSyOYcnr~n%y%y67s61$n}A?UNlA$qUl|}QrK{R_
z#Kjr8Pv3`RyReXr8P*Vp6FYu8ub*O;3l_!czK>wwf4l$vfU?*d0KJ1dlZ=s=35c_X
zlQ}(b)&-|g_Di*jxlI7o(`&UDjbR<_@r3v#^_MbjBMZFS0#GARI`R)-r~_yJy1fHz
z-`k|IA2_^FqUlb?$XTM1I<7lG{}YF`JID2#`+MPz&(G%W>aFQi;qd72Y@lEV!lKtC
zG-B!YP+Xd3SsV$RA(<F;zHNH&IG@{kKNSdR;w(2=tpVOGr9@9n4q&5r+>TPRu&~%{
zbgT@mQGRQ<nAGOMrdJCkVkY{qt=L8)9|q(5dcQLqj$Y{38L<DCNF@@C5C``{nnwx<
zhq7EP6_v-EVd83y#-BtAb3^f7E^0U_cKkO3=zuSaGCP<6fUXPyo6q1V{QDLt-M!M{
z?DUsw8BYRa7i2A1!4Na^Tm@xF8se;nV-|;_;J}6j<!XR#GVp%&Jy@uw84qUh=z2Y1
z-s*w*1dC)N5GigG>2x|*7M1;*+9DQZ%!Ff~O5EXpI9-8%Lg_Fj!`l0U?V?2s`Iy$l
zVu7LZwA|8)XTSj4h_G;%Q7A)S*$LTGqfJf1$mn*x{lCr8qDMNF&2`rwj!Atf8OEDV
ztDV;XRM+0m2AiY#4qmzlc-H<r3H14zp2{<?JtTnw*A}zZ)>ij;d)wRX#Kgpw+?F?T
z43Z#Nv5)ht>7BbQ9_P!|PH7jl(DV>w{OBZS_L#$~Zl|>-z<y*~!9FuxbfR}Mr*{VE
zjf_?-d^NNL=J5>mt=hY(XJ%$U*D^@sWW_27YUIK7PXB@<zC%m{Ylbf9uA8B=^P|_;
zH@<+AXWCl}({=?tqqpb_?n}qZdAH?jeZjEza9aa-z*u1@|6jMMO_U<b&Dcr!k~5;5
zSnFZ2Xf#`A!CsE2pos`tDMoLm-ShG_G&Usv5wj$)sq>C<!M{=&fXU=zke^a<bp1A>
zxMZMT*@pT%!#_qoDvam!G+c$%0#yRei2ck!IiP!Q`Xf%;D!8Ji?JX_`mNh*|p}9*F
zGvZI(RWd9T6l58wBz`sfgzUQBFHL()0!O{wQ`Q$u?~@$gFjab8rqNq-$|jq2(?$Oj
z(i=}==FvpuEp&N5l0og#%HHZSauWVTe#sS6Yl8*RB=6I5ue6|lA1Wu)hZDI&UOBe+
zuZ?GYdssS-8z@{$^CZx6)?XYcn4K!+`&IXG%{RAjogu?@WAx0_aFNZbq!UC??aR8H
z4fL3owjO?s-G<06fi$}Xa7#w%<M~#S3E{_ChIm!}4!KGXi1?7#iYLDne387oJejm!
zX)^WwFfyGsmD1;xn%hU0&F>-~;^>|BDmd-f<=LgaP{Ox`Z>J|E6Cs2Y#G`6t&b#@R
z6odNORw*1A35aW{1d_A0WmEfL($W<QoFdLkP-2>z!e7Vmfs~AFY#x2+T2+A1cn4rL
z{vwyigF<3RW~_!qBp@Mq9*0IEEMtYVx4Mfs=$cq<YkR!tZyOi{rg}VDH6bCt^X|~-
z=wQ%#lPM^#XM)1M(jhN8ZWsEm`;+wa)6fygL@S_328zkxvk2=II#ngI)g&|05*hxW
zrrvey+XfO8W#2tA+VuyB&~OvK(b7g@`{hL<Vs`>A)bkob0F&v`DipN9=d$6BzJ97f
znz4okp5ru8Ng2`=3K2H8i5gEySp~Ptqt;GqUs*aeug`ALFp&oWOqb_Nor+Jf#FI5&
z+bCjHD3}tN>x}i@FXswe_A#|BO4#~+VYx__fIkQ*|2pm?b--R0FEmZ2Oe5Ku&KHMC
zDlS4EDEpX8NHuQ(UI90Sb(_zV<RUC0+&<tuBiHjoS05w@FRMWvL{ah$Fm5LuZAJFo
z)o}9K!Zmtk*}rv3d%o2?V!BW_)R%^ax5@XF6~#1h<#vtgR?17`=#4N^4fw{HIt`bX
zlk+%&I2w<q_IAe${-B}~s>#66YwE+M)Ahcz{H6cvVB@E-z;YC031tU@&A!u?*HhLv
z^A~Gr`XrZn+N6U6izQ+;21q=+;)aI%f*AhQ2D^luYF#TYD{0%|xsA@cqN3+_H;}16
zU^4&blmIB4=A08)ZXp^Hn#N)>4ulQlef7niFIFFbq6sLR)U<(t0bbs_9SI`0KLeqt
zlCX>TAl!Dl1MhC|NJj+XTWv!wSxgQ?d-A;e`h9^sm@a}-7d*`jFSf9;=424iNJMHi
zdc9%m=#diE)}GhB(3&^YOlMvJ+kL;~`Pl4sMZ>&MV2p2y1wO*egz2|2$$0OlMF0bl
zvSSyw0o%y+t+F{<14+^GeBSIZ5*MHX3s-?V|Kl~0k_r*^aXh}Xhhy4TVs^{aZ8<ep
zwa=4xj!n<K9{$P}8QZn(6QJXyzc31Lwvs_H=q=6`O6z0w1ro6MQYBD^EDJ25p`zX#
z7sSYAup|D05=18AeFm}!=WET?ai0%J(TB@Qst+QecYt}$@_Pc_c~10re1*lP^JB5=
z<Bb&p89pQuL6FbW;aFiYelVgQ*~Bo7gzfzBj9el*(PQ!PYHNxlt@IPiSco!#LMHqa
zC#VtdcCRFo-wY?PPBe^5aE9W@CHUX3`ztCccwDZWVUQ&b0V5(SE{@crKt79`&FAwS
z$grJyCzE#fvxFcKX^gYh*Xyf<gdzz;Cp=IHcUO0RriU5UrhBNSH}>q^`B4UcbRwP|
zFNRK6WMEz~;HVsdqxvNQVXiT^5?VUQV^}*wL;UbQlyaN3rVAix6#I*ClnV_5ht+<5
zWV6%bjG(Vk{q;c6?&wx-9}*Heijb$t<LUBNP|0!r<bBS~%}rSrG4WrXHjj(f*T$1O
z|Mwq1etiEv=*vT)vXSj$!QgRfPzuNDcDoM@7aZgHO~zZrZ`*C(@C1otO_#5Cv}tAa
z4$7;$USEm7Vuj41+dDd6xSe&}1%pWDUABB&UKIP0mU?n~#>dA23y_q;@cB6*28cf;
zdCQ9V`Un~iF`}<CjmN28t=BpL{sWne{hj$2D7ex(lck+6JV}f9et7G)EkK4V%uuaO
z46V*g@MLECk;`3(tF>CuG)|TvT0L6EFfrQd!LPmUE;xjtp}^ZwxjZ@CKtiV`CLlEj
z4|XtbwD(M8a+p{RORQOL@9rGz?KSMXlO9TqAJAjLwEEwsr(g}jNDJr}_&gp(p?WCT
zx~swoo`GR0*{18|@Sn0(I+uh!h^f2jK$bhc$G<Ag^fCGMb<1q~&l5ajmC3B~&*+_T
zq|Z2aANW&<lZOW4XvdkCe0Xepp?hGM;>>hMa67upnvI{eP{q$f2M^sXRp%pcauSOB
zwbNc^Sfj%sruG2+XR5)CpsZ7vE02;&=Yhu6-25fmVySxP*BKF2^$$9l-(umg{vEG4
z$0(hO^?3?tTkY@St*4!3i{b@;>`L46GJ8TwdfgtGcpruwH%Dl!wYrUkA*O$8BlgDT
zFPNVY2umg@*slb)AuzlMvEeAqL>=A8hb19cx0mq_iVdFbQV{BNxC(h~cMQ^~{@#n1
znn49MjgGX|f;SY8`}OPaXoR3hZ=S2q`oTc5w&*npZuZ)_aJN&AgG;U?yu|&gN+q=H
zICB+Tu@Vje6mb{uyiacBEoBmf+Dh*~C|OJI%v-z`=KAMsm-69)-VybcyV1<eqF_}8
zE`(=-UyGltAyiVr<5*Z#u71nm%quOG7!z12?dgbM!h09?Q@ALZALV+EFB#3(Bp-!=
z&70kpSL+tM&JfR5@K3XIF6)9)v_4GK1n2)OYr@0CDe0pbS4J0H-JJYK-QO`jR;|V$
z{|x<HPGhjDZ6~WLSW#ch#wL5(hOcEQdtaVGAa62W#_gt=&c~K)KNIY~qWIJnhXne0
zTAg2e+83ptCjS$ujHRqaIZuN*n3m&uqnRvJl#R-8cdt^X;NMisTCfma)j@zt+3hXO
z`84sh`Q8G5MQ0nGrrbNnZ0|(>+Spr;C$m;YkPCjy{k<bC&Zj@i=sOk}(qgtAeuzpG
zqtzj*@&h~^lANsUV5L#4ExZMn!9I*TkKOIS#BGL}9M!s4+xC5$KMP~Ltry@aG}F+A
z-M6nQqqhz_z#b^6g1t4_?THh}SW)I>(A46~HBy@giy+saOL+AK!g`_xf{}<v<AmWG
zF>e83M?`#fMh1O$gZXCpEh%(LCQEq^D=dV%F1d1_@HI3`Gw@er9Kb<e&mEviZ9Lx<
zszzx6!1=Cgc>wD*ydq5AGn{VXMOjB%Zmu8=p01{}Z-NJzDk6JEJ2Tl}|4A$id}Tyv
z=r$%{0Z;k>nud|U_g|)7$&D?4afC-n5rz={kNFA!U7{61$5|sNBxDW0SjmX;UZm>p
zUn*pD5B}>O@E13?^sKuZ(qk1uvQ1{a9uOTrQ6~65diTdOrxYF{<|0Tb=qH9fDB6M{
zKP-W<mJYT~LExMDdW&64N#OGGq&{wcP1ZG1wJ7~h3N({gAlxPD_!1bha63BQ01!5y
znDg4-!_=Zp-LY&to!*z8Emc{Zbkx)cjRp+G5HoQ6?Bi)A`5lxuFd*8N)R!U9_yt;u
z`YQ^1<`)sUcq9pw&^_YPWrO=Dv9!PLniS#I_sw^uxL#xC#qn_&GIL?5l>wNk#rGED
z{vkw;Dhp_sX$XqDS7MzM>J>>S<O;1?djJ4(*lYxTufaMj^_pE6&hhN9dSh1y<x+LM
z1QhdP5Q8!j@HHWbCcL@LAm&>noX50W=6K$Y0@+Pm(h|Sixqcg;x3&1$_*J}0h2ZL#
zt0ua&R7fUrZA1djShFs`PCv%i79#6v1R~OaALWlHh)~-P_#!f?eRpc85aksOk*&U3
zK)x4<LxJcQej)`(^l2#0#<n6%;J`89ARrk^no6e7Yb*U~YJA+z9o5lC05=`O$OV7B
z8y5Kd^?M{8ui-oY<_|_FMUkAREgzqc*9ZIJ?|+Hn(q1yQ-VcS<aY@eh&c;X<>RNdd
zGBXjpP{2$4hHl~RvT8#Yi*vmHk)Z0m21;zVyXhHK@k?R^L(leN>}KWm<T~eFIG?ZI
z00Y-8tfOELg>3qLx$Xzt#<v0ESl`m0=As7Exk8|Rpm=#@7ORam5-7Ik$F&dmi`Y2~
zP)XAfGlt?{|C>MH-|tbdv5Wg?^oM{ro&Jt~jbIr+Pg;&sYxV9oe=jmdBD&Rx_XM{7
z3KCNdjr30%<F7G>?s)<%X^|B7htnW0@Qwp?b%$QEl{qH<lsDll0$(TFBijdPM*$<V
zSEwMlEN;Hn<AUXq;O|M`A<15imKSY}w=}6}=;$nlLkRQY{432iTLPaq$n&G49Oh;)
z@PHVZK6)DK{<>Vd8m}qZT)~xsH^WC`{_$6R3<hZ;_g@4sBt0F^7y^QqJ1^6&P+8H$
z$Vf~=jE~KuNeUSSuF%OFOHbAh$S*e_kz#Lyf8Of?t?YjUc`%l;rD?|#*aLWM5-HFb
zmq$H+{pg==Pk!{RHd@4a+Fj&<qXEp7_FW=@Y5hrOAL}6Li$gGyv>CW>*Zx#+pi~{^
zE$E&gz6ioyt<^}&jvrnkG^t{0A-CK5E<_^VKoXaI#%VoQ7DX-mDV`8YpF-tv2ErE!
zCfC;s(hrst!CBpnGY6YuUQud$;>fb>x9;lcusAzEIXlLO*OzxQ2&N{S4i|r-ldvQ*
z*@^2ZaRW)J<{R?@V}u}PiYyemQ%ycC+OdD44sx5&<tB4>YfiZB?hn)&(`el9-H|+j
z_z(0C)G-H=p{=lNzW%S}&I@Tdy6_Il_KbZmM`9^5aG2^_L}#amKSP(kbziQe>S9Z=
z4f6{MO^B{a>bSeMwYOzt*xiZzNuKk)oX8JoGs0C9xlB?wHxy@*QCi)Mnw@-8xLry<
zcS|_esXtHF+AUGkp|LK*khWK2{Wsh^`hvDug<9WLrEbVb!aSojMkDo!F(HEG@&_@7
zR3is84*EU{;WeaARXZMgF<DoWE+M_{an4V%7hRwmAPW#b?Lp8E3yX_Gf`an;6%Pa(
zZQiLNK@s4`pGyWXW@cs-)r+J(-)r>yn{2kc&lc&<el8(Qy&glw^nPo-=n?1vEPW6G
z9|58SWgjn`S1u<uvmhfwEW27eSXkKNM!q>VbEiL~mRnt3=;&z5V=>4wGLAcakfobF
z;3&O=_68`kQd9>0CqMb5Wpe=d>3Z@$cAwYu%?PpMc)4~j_MX%Tdn`57&&A)u%l(Nd
zrq1pkk`ZBeXlSm(j(?{%r9B<B)(BsmNBeFQ8tB2*Y9kA61s|UzVrKv}a(b#=OTf&K
z0t;gtO4sr9(X5>7+v^DbA+W0;qSkM27<JHr1VAA%Pp^qaCK3`~oG8IaeVE8w?S5x;
zE7`d^W|~m)w}5@yv<fH!K4&E-o14B=S1qkfjN_RnpV6sM1)1VhpsKDDTxeFUKA4-C
znfZbGLG6x6iasEil<IM`1za&$9Cdm;$(^T!{t8(IvI77jCEF3dsG9$zWIP&Q;l8l-
z6bniO!5&~dZo&9U2#n*FsI91jItnK^-)K+i2|NOBk(Bs&|J!3NRJhCKTJR-RZKql3
z9{^HhAtx7+UDfV%b^<<IL6N}=I1kFdT9=r%h6KJy_hh@<G%`ifDfEE_ksg2}{a#Ka
zfp##Ayantb05U*nJ5;<k7~y24AY{D)W-u*U<*~LxhHs4A!sN%@=f~Sid0RrzQ#27D
zp88QlBy=rJx4QTHvfb!O`ZiJ?oISzTcYbE(_*$t}g3jlJib%<Y3?XpnpeA_bekll4
z+i$6Gu&`1xGJ%mm{@P?Rb4N3h08TQ>g%H=!&`=^02lU6B571_MskUJiNh(m_eggX;
ziB!jTVyl403-)?N;?`!?qBVgRG}$a4BTN09<hknjcwBS0lKoqz`{iv`YId>O?BL*3
zPtQdS5tlAMjSgPpHT(!<J4-Gpt8th-UEi*4e}J#(=X4hA&!*ymN5sUWV2CR!qG?o)
zeRFU-1GXuAzP!9#%2l=uO~t=JKlCB~6=WqyO8qiI(+=8$MkeUc@h0SeND?<K#7W@W
z86e8Vo+f5zss=(NJ+xlc<Oxw>QBuU|o2>=T^5RNL7#-Vm%W_@}WSL3jLia+<H9OOJ
zULFr{cvOK9T?oelJ!?xDcG)!C!?dwIJN?1s#cDm|tQKEgAOD9#l+Up`^(`Kt6@K)Y
zFVpeqCFk>q9}!K74ddc7L&XcrY)C9Fo=j#7jia>kV6G|>I*Px^&{G89#rl_$QhR%Q
zXK_3G!$b}Unyb+^PARX?6ycU^R7Uc;R_Jv8pXpAHFiIOgU#U+E%f5%|=CE45zihwC
z|FtMNO5%Qh+<QhTlbY+3os!ZFm{))$*sJH@gEPy*jPnTWbhy7i-<V<q22AU%dt7xk
z8w|pgRvA2Fp`)`})wwDu-G4l7*)*VFVCw-9?&{7*JPcNdW@aM(cR<YlzYODt`kE7L
zf@Ff@nc}8@$%qG!MXT0oU$}#Yxz-A$niALrTitQ{4;-1dhj!l`<N-90q(=ZGz);Ow
zm`_wEk2L@NVM(|9<uIcoU44udu^6-_WL%ow&LmbX0*GDr3f;i_%IQG3pB80v2t!<t
zaE~0()bUKdAEL`HK3(#}c?dg4r*64{bytiv1!VlcgOrqWb+JeOP)=a&K}Aa&h!H8P
zH3($!!CIo=RJLr<q<n~i+-?f7{iuZ?R*notaJ>M35ankXlAoyz1ZnM&_~?q^AH}sZ
zy|_E&auu`Dx&%u6?d4&7zn29DZ^+$g(r`Gu&nI9lrg_Vo#yZZ)%Y%Pva&jnq?1A+3
zxe@+b$13mb2zm9#A)6!GSkxO-3SvJE75&Tm-INg*aTRFA``dN^@+qU=^8M*Xxr2<!
zJL)&kjGKw(t&W$W43nwsgD6jCAi<=hSv}a>;e5IL(%k)3d2LAw5m)Fwpe6vT$MV($
zm<+AR$w;-+_cA%$y*nHEVi7>>!Xis8mh460A*K7h5V{9J@i+|jM>z#mF3cxsZ9wNa
zMlHxH&6_A*T?aNjSS|LyOuDwo{n}+lHC-A=7hjoxFz0pT-rS(MWpgdceN80sRZpBN
z5$#NaYf-75CL%+uESf&vvbCZKd}9Lc+`9?x*`W22NkZ7_ZOG5)&UI*mz*i<o!U&;~
ziV9jFQehXVZ#tyFHh>anfBVz2ztX#{rNMTuV-Xy*U=GtwD_up@BpL>M9ploJBaVuT
zB+es~Fu@l!CSLBoa%~#7wb1A88nJZRs1As%C|)%88oM@zoe>mo{vLqw!(8aCHOsfw
zNT2A=9_I-w1eN6ubgAKh53Xd$GX-;a#~~|jqg3eMnjP@q%k)xnN&_Wf>r3)aZjs!5
z-V@lB2PL3r2@q$5@=9OTb~<VRZ{WVn<+KlI4=WO+nQ%}kW#A75EtXx!>O3{yqpY%?
zpsqLZGP8^-Y&4A;AFP0Dc6C0*|6a#-u4toTpm+&yDJAQ%EpA|(pjyHK!N@Bzn->KA
zGOzz${ZHuMqn-AUr>9p(2Y$7O@jp(^3F=x3D*Pj}?_8i~g$Pb#Z(i$cdMp>F$!ewL
z%IMgubS*CBGSvOj=?k`ZW!x4ISSnsPhhs3oS?lrhzi&XX*YxSN96Xhx;VjV$c3a?Z
zcHAXDR7IL}JFLY)_9NCPx`;2o`<hgG^V(Qxp3-tGKc38ms0Bd(y@uY7ipYpf_02JA
z*<F;1Gq?soLn2Mv_mRXk9>g#aPv{Qtfgp7hy4!NoI?hbgI8;85CvJ}_h4Am(^Wqt2
z6ZXgA#-I&pCg-B<GPc9EbYZTmsT2sgAXt$k{)~Y*b>C>yBr^<Sh2Wlr9a?Pka{e;n
zdm<LfCFR!dD8=d5b_8*bEcak!{?-!SDJrI@$xfelx^O;iNWKqB0#+Y5imlYtaBkp}
zwU$AXa+T}hwA53eOUtSh$7ZC1Y{r<K3qwNMMMzkbUUn0Jy-XlY3k<)orIkU8B!=ld
zuCD3N5Ub!ivJIM5N+y?e_SCo{-h*S}sJ6#YNCcAmFq%eOVi#JMN#t@$4i3}ZBeS75
zq^RNOn1o5`@zg;p&utIR5UBRZXDwzxycy_ZW@}A!x;;(<7K(oBOT*13)!9GFAYua&
zp!cw>SLzC%J!{)Tc(`kvCo}?@M`fT8a7efchLXgjv%Uou`6#00y#d&(a2J+L_{Yus
zc`+F|Sr`fLcOi?I77gpd(Ow@_j-?iQz(4%`O$Z)|d1^9?=jm)o{weJMZF!j3C({SF
zETvf0UEE#9a(uB;vrq>4bv!5ZYv&&ueA3Ck9a-_kI55MWu|Y3Lh%^kCGnr9~BTX%>
zbzmD1b}S9D+IM8NGQ$clpyD(g5A4V=x#V}goro`N?=Q?gMRf)N*X!IoR%Y5u;E2F_
z;yYass^eo=PQ=m#M4T8~F*r0XEU13g!iVgHg9hCvzB?z7EZH{)MhnF)es=mMi76t6
zj%P3pI3Mx?vf)Tv!>&SfSkK)s%Fy|3hEu>A0#ec|eUQc?WRa>Qj05gsVn=HYH_Wxf
z8cmH=kCyuSDk@FXzkuDw&;0~>z3&cw)@oZq0Z?Yp$X8BA1rYw_0UKdZ94JgcG>+<6
zr1==qP&`n_^G56szRInGxH#0hZma$G?y|0!XZ1)cz{m@>_|<GR$Nm9+Rwvf=`$#U9
zJ6{BPU~^#t(Z3wkx<K>KGvOk=ZkH!8hme4^fJ5QW1|DB$ayc}-+4Av$jsUy4Hr+3e
zoiA7V)P>$Zu2?edae&ps|NCf?j<l8_*dpZfn@6Krz4gZ{5Wth3a6i1>N0;xq{YTRu
zjI?*5=(O(UqqbQ8yo>MSWjMA-muhWSs^k4)M5dn=%}o9L&o_;#46Jg?bq^6tkGr>x
z-^i>$BC5^%gL{kHcDtwJ<*tF}&issEKlMSW`5<%PbfKIS#u+5Y2UrT7j#c4>2)UO@
zXEg&BVmiQrAm$O;lvFfcUrcgF`O=m-Dj)+1`8`|YprKv>Q~47J?4zyaLqVB9C*&qI
zr7`vnFR4bc4S2M9p3L52(rgogReEp(flr3cd$gggohI>+&FJ<J2}#o*yzXxo%}W*P
z{j80zCg2IjUpJK5Ek>;?h@_4!F$AwM1YBq>`u?#n&dsk?SnqYH<l-PLb^naB(|gj1
z_~Y*;zrH4cAfzK26E*|_-NVyUO3;QbuvChm$)KUvIk2-W-W1G(i6^0`qtoSlp%J*U
z)F&Is<bJbk7$cj;3<(iJi!&w`fkldDP%@v2v=WTE9Y>luP_uJI;!y)t#t$@8hOhGj
zQZqBvDxHHdlgVtaqb!%d$!h59arn82`ue4XE15DfS~5d52z=isZJ&tOyMe^1$BF_4
z3#;LA?!M3}1-53?=pQ4Kxd6tBmKGdi84pv9rAzGx_a75h#qwF3fb2Q(53YQ24gOJF
zW<&pE-Hi$jvB?7BNuLI}3R5MY$r<M=%Ut)I)9L=S+U9n)vD*Gvk(0-L^g>pN-bu|<
zk8erEZ*zsw-XFx0@gy=TMelL6!3cGV1C#&15gZ?%AHnQe3-B?ow4t^g^1p?JgIhE=
zhNi3PHSpNJbc8MqS#RLb`QDW+Z$vSX>f353WE|hDMyBucijMj$S^0u|d{A?C0^26&
zASa1=u5WHOW?kS1RNekfVbjV6Vqqhv&7>K5{p@O5rIju;;;MWs7-Qnoet`OhC@CwA
zSkD><-QlgRmuX2t5f3a|eewd-K(y`?Yw!dGwbtj$n{_o-*2Te01A0KeKaXTy@#UA@
z@VVm86{<hTj(-Xtqm3eRKSwLWH4mD{t~6z6Xs&cx?bR<7JOG!PqLgf<Aa52lxkQSe
zuEN%Vg8^5+Bn&ZNp#!ILqq4)oAQvHwJ;SW;Fd<*@L6@3tLV<b1ld>ywfi;Znn{4jC
z0D?(NF;#z5^S81jZE8HG42LkIv5dUyrep;NJBv|PzD`~vp^ZqFW^3G2){@5ZhV{bs
zjF9#aSQo8xEx3}gzw3K{y=VUtY2K}E@W@h+oAOA4fmPJoSOep7pX@?Hb+GZqRb%-Q
zjQBuMFofRG!kDV8AU02q3v<k~7H#kZ!5`oY8gw>mtn>78e>|lcB{`$PLKvZw$Vc#6
zTrhiKY&?fSW<;<<ZDdm02&a*rN0XMu!(>q1c&zFyDqHo$4gIv+djM^=z%Da!%j4<7
zCoL-uDW1R}cW8C|#S>-3r%MNWbmCW!AbZ@avB+fl2s0Q7?BSQufwh={_{sim)(GWT
z?bHM!Qk(Yfl2#o{OH<f&5Rg#nieh+(=KEi?vJk!|+gbdw+ymRq)<T$E_4!X!Yblyt
z_LSvH%v2u&d4GF(N3twpg*7?rTMA{k+I~0e=|!n3;b)i%spAUSmOh}Rnv#9>QMpP8
z{?(0>5yi#C{4UKM3hHQ#u-Uaq=Dnz$ryj{g%PZ3)ah!?S-xCs=K#{LwB?_ZWJ1kl#
zoNfH8gEz}2w1hSr@a!O<pu^oz{^RHz9J64%Fh1LOXS=zvSv9lSwr#71hGsY0Y__dt
z+iq>^yZiouYU_FKbIx_H>vuLs4+z-5)$R_etE-t?Sa8^PGT<zIh15|W4#d}GU1-|d
z-)GioLZM^hq;4o{vj!{sKM$82m{8fejn=r(;Else9Gdx9_{H9p93BmH?4wTz{CZ4F
zDDqy8NYKlzE_7r!8s=CeB$aJg!$ZFlZi{ae*GpS=FScW4=89tz79o+TbDO7x{#JlY
zqkWY<y~>ikUdSrkDc|_5gc0xofbF{q7a$Rsw_dlzd!{BAHt5@}ct$j$-`~!aIdb@0
z4j&#jG`RLb5(}Jwpwz@}iOa75k=6ZDKCU{<<kFx4xvx+3VD26u@fLAMe0M!L{Z|3l
znA`mb5yMc};m%INqVVFj`a}B*3aIZZJ~dygUwt(iZ9HAN`y>Bbn4u(6Ng+!hNfFo`
zDrpGyblnhVWCmMX!Q6a*d+*~|*5rn&m=W*=S>^L*dG7WNvWteczrjSFAWc=7E-4@5
z9y*~m)vu8+hG1kX$7H&c6M<ZBJ^?kfO<TJMbi}JUUrc#@iZt84dwjNw={)gJW%-J*
za@mM0G?lFELu@Q8mATnCX$&M-nDFi_crss%kKJGU`a!wxlRpodeV>Vwy3EySBVii)
z#_}Wt!dRv#=d@e1&V4MX79QOU&mc5QMQ{GejK++|VN+r(b?ZCBXL3(ztJ0rMqg7r{
z^8c})5^?-m30@NXGNVpxeTu(VAe~q<?elQf>huc7Ix#X*tF^SA^sQ#L1-cG@p8hWR
z#?Nv9WM%_I$<+{2Da>P>Y}B7;X-dzHdm${TQ!2(5pe%bqB(>rIDh~>S%0%Sj@5ebs
zq1S^|hrLV*XXhK2DIp&E)>>=GeC?;6-bS0n(N^k`zrdG%YKHpcIB>Jy^}2pJ{~j+_
z#WUh+i~L+AsHq1$>p4O$2XaESq#>$^i0J4Vk1G^{4juQ4!LZ13?wTSP<`L7~=xkAM
zLoq}VhLDWo!NMa8e9yO1<6wi?;=C{8^b5jrLC?ANOf3WKd!Md%_vb$XMf#8X`2uNN
zDrg3vPce`v>1b&??`CD;Od%6eQ*_%Qck#n}Vv^uZKeQ`DF!5|(31ECn)9N(-%^Wqg
z>8V?#&&WH*37PdJk#;nex76DD_3M94Kpg+qPeh=T{l_l;@O1zCFsJL%6g7Xn-Rl-)
z+i5Hc%=Mi})6Bd4U$gxlw3PHC1WF*|3u`LQ=)TiXU|VErjOPdo^YAPwEh=!kgXKcj
zhAId4I=eSek3Q2XLN<EAT{E&U_&;WOh@!?zH^8lJD>|RV9aBNHLxnIeZS+LZ<@jSw
ztG>E!^!_At-)`l8uVJ27X~3!vWp_=X)G?AscZ>8i%*mXw)mZL!*Y;;+Fw*Bf_4HDY
zsO;@s)Ruwo^#IV{L7ZNtQUQDH4osf|J<K24-~NrEUZPXxTnM3)vaj!aQ2EdZmm}Zf
z2YKBdvXi|Afdu9W9)}DkB;`@S$DvN`CZ-J)<aK=_LF>EDjz5`QhzKSdx_l5X!<o`K
zr%Tluvhh0D);s-QG(Y+nNV*=0RyIK|{e5`s((7{S=)5PSh5tKX8u!nCRj2d!GdGTB
zcOWF+Rxtmvm=<?Om%6fY5H7neWC1tlRSeHY9Cr5O5*v5G^IT5m8ZFB^LF;+?q;-Us
z;77a?M!2-JG{d+zh|w3Ip_C0xM-nyJu2Zf`W?5N|>Ns>2()M1LdYmoKV3~tl^;Ekf
zmVH0)KNI(F<4c=wv}quyb52m|@aR7OO!82h>(Nk^6tTzqeEU#Fb!fzpcw(Jy+~R$H
zQn}ikZbO}M|AH&avAXry>F}X)mA3k}p7XY$HXSw;A=2km{R`*bk{w*C@bNj7@W<t_
z&n9v7HVy-hyj88JN`ZJ2Ez}!WpGqXz@wXQkHBfn~rSz0uaS>7pt%vm`4v$?9FG%$B
z-ce;M*K?O@HAkheq?0|{=}x_$VZ0^TFAF)@vkhW9OKRoAOyX>H=$;eD^7n?Z=fykO
zKFGsW?sC!imOARN(QXpZAuhwXj54XS@821&<>|93SAFtoqPjr!5f19TP2+OQy?k_?
zbvbPwf*utWmD%z1OxTY}1#E{kYAvdtf9`2Gd^`r<B!(~KBDjY_N^%!yv7+9@H3fA$
zzIl0hd(DPiT()rA`nxrD_UcZEl^uMx&MxWK7~^PNW9&EL-Rqyv+~nBbFI_NP)O**@
zMN9kXzxk|!%KO9Nf0dgg9rfE+eq1~j-MI4mm9VB$!`9?!$3H3Cvrw2G%)hiYHCsm~
z)O4)jc4cK`P?|sI3k#sL9)BeRGvqjrH$f4#86()VEYNf!L%`(Puhz=1Lwe=E3~sFZ
z__$tTViWZZM}7Tzg<HMK)5{%|7V-=N3(MHcgG$PV3r}msYdYun^gor{k9TP7{0j6e
zMGU)3*z*IGKdh`e&guAthz<tOVuc$6bu^U=wHKnc?UV5LZP8_Rlff3v*j~zDU}9Zw
zbDv{LZgql=P&UUT#;>^0g8gnZJ%EgN!lc952rpMpePB(?h~6(skKe(yX2W8rQ;y5M
z>mnVQ-X2_SNCC1t-K-4=tri#I(2x^hbklKYjk5zMW<7U%7bl0ODK5MgKz@Xyk)(yS
zc|tPsUwW!ix*1(y6etP~(+!Q8FpQ&hf{2@`4(I~aoOI-a@v=2J-aWZhw31t7#i7~d
zqOH%G=uNZjuN|_j>Lj(2IiwhI-##;bI686)3P{X<xgmc>4nje1SG+kG*y=tyJ_Faz
zm*nI|6dST4C{AV&VQO*O1)=l(f<w@SeT|B;Tf=MfxZFr$RJTTK@;>+f$?&-d!y^5O
zDso`H^fOS6d+tt735#Od0{PoXRjM>=jlus<+h6n<Kp6O!CIV?M25L*aqSduKiV2ud
zQ0?QDS71K@hn+I|bQFu-a!X!K2?n!sE%E9{4f$Bhm3bQaD=;2q3zVwCn#E2Vfsokb
z&|y<%53SGq@dGgM8u+~~Y}=kM&c$Z&^=5<D-}A0yCNkH2NSBE2;-V<2T9PUC31CXn
zD)wk$lVP&)_ki8hd@_^4=0E&TdvI%ift=^;?3^ntWjPE)PByFAf~{Obza8+Pzd8S^
z%a@F8(R`Tck;!If)wbM-b2|d=7klr-5FG83nT5utHue8PW(3WxZ;(Xb)3iXs-4St(
znucZ~m0esWcfFYmhOF!5MppXc&(@y|>@DurwO4XRZ>7Gt2};TmuKmMu!Uh57uKE)F
zjblq223P*>3f$AV8lRnORh3NRfYUte##_*V2ocHS+x++WtC}ki5R?{8^==N=0vrKx
z8qWsXU++Iz3jH*PO~M;xVLJsTDEKEEXXGM*hbNPNyBMbzfaAa<g8R}N+z$NBJdYk*
zGw6%~nzhaYNj4f=3|Wdf+#R6m@YO(x19P5&tm01{C%nGIoRq(ylI`-~7aiAHFO(??
z{g!x-IgMv7B9FaxyjZ!4{Y@A|C0mWo^E<y_E9<GD4%FAz@0+7+)APObV=GD#R%>yc
zF8s2V{v&SB;(nsBb8{8gG<rHL(X#w5a;gGM=`E%sSf!Wnfj^pSDrs8slOk)|+MPyr
zXr5@DVQ{+mtVC3-t;_BM!%{(S@_Q$W6);Y$NvcP@VFa(-oT5D8%HIPk6e#32G!jfv
z7|jmr3UX2?7ep2Ox<GS$ecJt2t=l<%izR_h%v)2Qbv`^<A}E;I+yG~4>+L!FGlmC^
z%bDS0yDfJpsa=m17Wwe#=*fI(;#YnJ?+R-Wx>*IHY>fyvSv@W9^TXcmH*^Jgr^dCD
zm>KQc-SjXrCR=*L1M32~-v3BQ){7O%5-UTtG=P&JEs_f|50|qClh^;HC0nHC14Ez3
zgcoGN&Uo_o<SiJsA+Ykof^@xHTsK{h5d|OMkmE6K!U&a^-$U+ITJ@h42roBkfBOA=
z@YRz<5ej|p$;M0bl9`+ihX<jxz8}xv`8}Cae?Z#cDLGu=hmlX`n#KaJgocSGvVK_=
zzhek~qky@S(+}gS#Q4hZ>ujpcVhFB$!yjoT-j$w5AF?v0Kf`_9`LUC+&!bmS)iax+
zzqEePZx-iDzn~Z97f${-TFAJ+G<F{{;0yb>S7fF?dkD(Bw#v^w3c!cy2$AMs;Ac*=
za_cJ~#;K_qGG?2nZR_`7)k(koKpP<3WoY*^|EE3mBwkJmsV&TS@(W}7550t4%P(`J
z5<etQNPJixxdVt`)a3njG_viTx0Gu=6JEQ+T79K;`rKP8dyIY~yX{04M#~__RU35p
zpYyr0dA`#&wZ4|ES$q1tEJfmBx>}&Ky47?NOc`gi9A*`%&{+AS${h0VJ<-yFV{8uQ
z#esci=Os=)$J_UaeJB-S8WTDmyE1<CFYxkECWkvr8huuVeg8S$%FxugOtllEo6D;m
zgF27-p6fV}pl11!wiVG$U;7wTCE@kwc<wiEJi&bj2Le$pS*cu#K1&zesh7-9_22Kh
zH@(uF9<NH?uSM%>*f_VqQ|1d#8t@ve7nrxQ9I7bm2=-H#lY#unJJr&G=--fbc=jvQ
zDYo)Wr83MjtZLol^}mbkL<!W+Xz(tAGGgjI&Ysw{FbFs;;{rq=s9Wqmd?djlltD<D
z<`L!RJ1QH2fi%+eF@cGk=;zOsl#_5*Pu7MHQABtH-;G~@cvo8aWpZ;!$Xj@V61ERc
z-*i~#^cIpSbrw~&{#XSL78V<|0ToeNQ4!s4Db~uG-_OtQw=rP5fN296d8$nls|tqo
zWD>zgorjHHiND35lq7+TDV=bKY00PZ`n2i4Kk*;skW_{_0V>YA4htPtW>n^?@JmS=
z6knVRC*7k&RU1=TP^=Dily$BE`($>94<%(|ANB?5g=moICw6BSUv!*xI4wdGOM2O=
zt(D{8IbZ=jS}x5ewr5)_klQ_%hEAN!791N68i0g`yE|W9g7MfQ3=+Vm`x<Zka%WY7
zBYwu_Ic*3-WGcx!V-ZqJUjES+b6{(;pr8P_QrVq<v8H5X_`Lh8surWC37LA7c@?CD
z+{r=Jho4zn5l(@NgJZkeCf`)qP|HcXEL{3`yDy@=ybSu~HD21S6v6w({lg<G8f?NG
z^*4Jr>}n>hwf4LPfjjG6vvX5k+wiZ)_UY#wQC?m`EG)6PDrNHI)F4jqB|7>JU)adk
zb;z=`6cZCOsLpP^&Fx#E3dK=6rzJ-H>#f0?@4-01(JDxJg@(eo<zxB*7osijC<1U>
zFvfmz-@XQ}T@N`(A$)x@Na%E~x08|i+8Sbwkq<_7P*=(2xEi^@AXgrs+X13=uiZH4
z<fVzU@(ID8ERd0x0HV!iiDiNKdL1OXz_2PmW)~4UIM{!-+T}2HAt;v^k3x`;otk=O
z@b^9i)C~=F4I2$OI@<K5QPGc*F{E6aCiEPXx==bxl{&>65oUKDx+J=U)H|Kd`=cQ1
zHk_?miePn<!~tso7J@Y<Lud?9ZeYmm+_}2ZO=?2%ocZzb&*No^bJQ@rsjUiJ?ncjm
z|IrATXd}Milj0J%HSgFzY@Y#RNjd)jCNo^C$E7|4X?QjOwJ7LuemTOp1{PX$LS6(j
z5!9XC-39qPZod=IkejeYZl)nSy@JyI`SWKr4PhFtfvKf$8qlvA)%xo-Mj_uRm&oFx
zqS+&cp;cm*#X~`r969h2!H`Lx7Z4qx;IAXW#-`GkH#apk98XWe;4ER}HUwEppU3ls
zi^-<7uaHIte&-82w}*`On*(%58Pk#-=btZ-{myx+vls>7^*7tyTwdGmiFoWAG$hr?
zeSr2XARhhgC+gZaB4L(J*_YRxVi#&sN8QN@oNPu3qaZX_f<dbk>AnxO3-rw9pi~I0
z)R{%8Q_L)Yc=>t2>!|@*>I(#C(kU5=c)zScv-^7RZ)6!6*@h50m`rsip$l|O{(>O!
zNQPwH6BzyvTug|;Tp%tV7e$(zmD5EwT8fuG@QVn9VSv4esr1Q4quQ9*Q^ez^=RL?<
z{9_lElt_&k5qQ{+33t8?flLm0Ckxag$hG_5>@g(&p|I|dJALEYTl(qYb23u=DVFqj
z_Z-?R(4^q%=Vhl&!-F~#`{GVTwTD%kZG_0b4E?~sfOF`Okx&%CfwH$J6jqg1m3pWe
zFUCEGUHXz(B=d|ia5v!b@jTDQ79dpwfJJhxJ^%uscy8qe8JbyHm6Af-AlZ_{y(_8%
zpF7t{M%TXlb%>c_hfDpA{R9GwUY#`&301z(KkaD5%1(3zc2Yq5{Xh&6rL1vo|Kzhz
zLXLOy0xCX|GX*Jz5rA8P)IX+IjaT3=ZxrXspDhX^No!X#2`J<j*82Y0YZ;#$<j%j)
zWnalWmen%-Xw^y*@AexWAD>@5(`|g_&7;Uefwq|5V8r;NDE!BD;0D+E1a=O2TJn=b
zld0&O5i~nN0gl5gWWT(rGOOGdlVG23Hf324Ri%(2@wTn;p9HZhzJdk5zmqiklug9^
zdC6CQ26{0>EBn;sC+?Qq6*qz`zL9e>XAR8M!lJ5eK9Nr?6vZQH7P@lL)?WBtuC5J*
zZ$h_MaidnS#mLjB$_^qYPuIGwL!+yUoT%lO&XldPODyymObQf_D!L2ynPy2BwXroA
z$iJjuD>GRa%QsQXQ2Dg!+~gOD&%H35a|s^lE=>~!kxpoQx#xINz0Y%-s&n>eXB<<_
zIu?{<EGU`dNF0Xw(wI}&f5BvV>$oA`&+R!^7r90B;^BXN=_Yg=!-o>@4wgFNzuv1t
z5P)T{JT-k5XVv&BaJavphQr|@ggqrkfwTVOiv$*EtC~u(Q!=s$naE?^`SZ=b2`SN7
z8(+rUdF?zQexdRD^ZUmwtOe41J>+Dx7D-ddH*se~R#gb6`pMQZcX9PGIoIxq^%#+v
z-^1$Vu10QNsjYt*#@J8rQEdFf#cH-rNXjW!Re~kyl7D9WOef{|UesJ_cmkU++p4Xi
za}vsZ+^>u(lTviAv(J*gSV=zPI6rsX5aNy)U7gcbX3WZ7TIE(|!;)af74+`>2fwUJ
z_iwG?fg!YK&ccj5xzMKV{37iMajTEQ+K%D+cV${`>#z*toMQ=X){B052O4Y$UFn&x
zP2VrsOSeoC=gZ=3aEtUVE%tl*_BXV2wC+x@mck(9WWr?m;B<^SvWn}<ZZ5KZPJfI>
z+~!j%v#+lEgu%Ysg6MhRd_-)aXwU!NHP%Ed$2lL_Z$}1V&l*bZQ<zio9K9>Oa)vui
z)xP$1qL&w~Ms@d0%~j1))pbjw@hY&=%k$bn2`bSF3H{s9RWzWu6kwLg;<@1twn1cx
z!w>!D(&*#x9B`J-p4b(>34G};0H#HYIWvxmW0_3Y(m&L9@mS3mpSd})`K9avUVq50
z&-Y2{Q>2hkVsWW)J-uJVgXH`|YhA{w+wPcmCKebF7-LsKO1k*0_%x1>P=tZ+hJuwL
zrRR~sKe=aE+@D|_zTx~wy+d>_l|LlK$9_L*VqdS`7OpL1ZE#>f+DK9FAyjf0>-}a|
zK!9fV(?^*FH)(mN7rV6|+gHXmZgGwTlGR7L@dYpPos15lTqUIK<ln^wl%(%sowN_F
zKl*#7bminsBqoq<4FFLSv8Z9s=8^R1c1}@P5ODJDlB@G<0j1<b^Kz}j=ViI}-<~`9
zJIH6D5pr6BMH&L1K%$v8c7>U-va&KTuYn12)AttjFIL1DZkTJK@E4h`t6t>jg7$Xe
zQseBAk&!a7Ubf&{z}S_}LkYxc_5$_S`O8rlGTuL@+{9fb%#`r$I7hTZEcq35JsW{Q
zA3lf*bmjd0)m!g8G6P;%n$H`V#JY3VDl8KrG~p9Ia}h<4Ai1X?-T{m_BXFmm1W=J>
zWn~jzZKeKIKTKq7-NedffS^iTADkw>Uj^GK&~H$X3sWHi3M3OsoA-U$_itEX-?ONc
zAXs!eUA+LVwa`qPnW&fZlbQ2(9Oi_1lplrV%`Dfb3&-$uvbF41Y{*_xGBRSM=@rHE
zHhl;PNFt#qQ4nCEw%%-kuA--<2CGd`WzG;VmNf%jT(flC<m9BJFcn^x&g)LRV&$}%
zd`YSfU{2wBy4-1Eqt>hk7=l(pk&cFBcnk=P0I9*a$ePIHiv53pgR(lAQ4J$3l+V*9
zB(2zC2!t%->0D8@dAxFvv_-|m<w8O36L%xnC_gI-#>dK0&6)g$F^GI}H~s(E6~yF*
zq+K0q82H=+_9n_va-noZd6T#nKrv3*t~OQj@^4KRO=Rr7uuN?>Z9Xv)FC_c8I2S4A
z#MXB^&KyQZN8^rZNC_!2-*or!Fo*rD90FG9fWS)@-3B&p?!~3qiWE44!>-rWu91_U
zE6^vR=-kCt^=ew7snx@7JSRDk=YQ{tg-d61($ZQ%Z}b`j;t#K@mw)BC4$uXzAPT0*
z0?)eM?yKe7{oXh&CW%|ALm;;nJ8mcWfravfvj@TUCx)(EGoO_02&lCc=A9x}17s}8
z>me(Grydt9U@1Z`TCl|$I}Y+Hqfrv1sV$@Ogx`hzp64?^OaYkglVvf!UuJ1L)jf10
zv#LB1_Fl(ws#>{*7T#+dR;Ik^S@J{9nuCewTNG<2gzvHZLp#0zrs-vK*DLcp+c5N8
zC_?)V0C7c@+?vT1zWbMW&CuZzqaI~r{Y|i9EE6P#Fu;Tox?=$2KeO}E*<PRUz<s_%
znU5vE0K`m+p1aG`%E_zU@EN~9)^B=3JWy^-2|f~wFc6{j?{beH0fFY5;2XaAxO2$@
zYo|^#=oD%OPuS6YVLE=~y7$~VF@MA(B(!!g>Z)i^h0yfhKQxj2hB}6SVCt!>qcJv&
zW=`^b{(b+%=;WwSW>$J~*}KXL%v3tvJNUp2Fx8$E4rHMi6=Yl0pM`X+R6n$5(4wJr
z&2u?jR$@CJFz_vZ^O{+L+*cxVVk9lUXv?>C)~QYW;M1N52@QWF{S3lRd;5nYZYz}N
zmWEDF?4*T)Uc5d{7<abGHsm~iS9C6mn-g2<hQ5(FEPL$<)Tffar{&7dl#VU?V&|7c
z;t*^w;i273J?TuZECN>5`u_f%9fHkA!etslow^!=eeIcRRm=+-Sp>{CjvxS$kbot=
z(N{xcxY_yYoxH26zX84@j2CO{XKaqxUUs_A*VZPTKUKwHK0=xHCEOD6GzQ})c`Rh*
zzO3~kZ*WdmxUe63mlxZTwEbF~^vzOVZr#|pb<UjK#%fWpW_D5jY{z>v&N%*fiGQVm
z{ajSMaB6*uLTLXVr<zqMyrSYab!wBbD8UgptwfG+ZT;2t3Dc<{YNUX#&t;Q5uY|IR
zIMsQ&&3!M1V{{*L?ex>6WKZd<<J=HWxgdG8n5F~h)R!IymR&eiwNlQ}Clv>WRzb9!
zyT~Q_4Y!qkV;fhBmYI!>jfG`$?+v4L|D^rgni*f^SH522f0%{E%%<p3Wkf4<%JH;+
zB*j<4x6U|Q+w+>f1oU%8P2#3e&x5Q_sSZZ)DqKX9U4ifKn42FzD3g>_&^N0xTM75`
z_EEj2Ptsb}ySxoeaw|vNj(bFV{)IIl)<D<%RaPdmxk$xu`q{lLnRAWU7d{cC!<Jt8
zV`O9=2xPZG<Kh%BBbQ(;+z{!0BppY|fSn`R37JtL5%hQ6hDQdB88-Ov;TAC1mfABq
zN0u(@m}<;ol-)9j!ibUK<2(UJj^hG|S~j7gO3TZh5@Xl@?G92Iqa;MXJ6q>(vl{(x
zzS}OmTIDr@0@L8AFYpdTPv9)Qii(QDhp{hlvP*gVZNZ=h;CC>zbpw-ee<K16bF6hd
zi)v~xJoKtXXO7HNHEst<1-*|nM)`KN$oD}C+V6S*ufDDhAKf97%_vyAacpYIVSZSd
zr)o29m49J(9VMZ<82k<Bb}F)KH7r#8=tln;#b;)k#=TRe2nIiO(h(vzMgHz!EY%iG
zO~UMlKOlwyII1V?+v5Qbzbx=r^}o;3_<j`hJu~hgnEinc(DOmO60WXjsK@=jxB}eV
z>WkP$J>Y5Z8UsaBRz?;=U0NS1<sEzVW{U!fbKY6-ns{Y+TsA4GFNu98D1b1qC$Ark
zJ-xCuOi?D3vMvb6)VZ|2gmkt0O<k;8-$Ak;tIM=RhH^mM@3H0h-Y;m>9pu{ce^+Lg
zY(>@?uw;_h7-_GodmmCh78oS3X9}v>Nhh@sT_i2s_W@fzi65%#p$GqX%MaJIckUi8
ziqZsfHtYOhsRtlVNr3yK+-@GtZmH6zxrlbN)J%654XXR!;0xwO3n4ZJKECG#4TFE?
zm+h^JFGdkwWPW#;J7ZfYgvi2Tt6>WMhBtscFdI=|(CRy|x-=wAZnzXnA_rHqMX>V^
zU()&18wHXlZG1ft&l0|c&QH+<9NE4%((CqP9}vlJz=qn{Y~tp!%iwN1;v_-c-u~j>
zF0Qv1gIo<BMp8+&pHom!4=)OA5zqlHxXa&9&8%=+4#_yeyL;<{%K@)IUm=owwSEU%
zZyk0{&#fL;?>;Uth!3uuM${8UeO+4e^6`prL$D!QTO?dp-G{7yYSWeLpD$8KdwxNl
zlKlAb7@evD)Zr`vulM!l5LZWlRPz_OZO!ITH@Py$MR?RJwP6)TM3IhO)?B8*QsS2^
zh3E#TegG4_S}%#dJy515%%t7WQc*EaYG%0huQ#$^<85`sf?NhaNdk>5P~tz5K4E)S
zCTg#0bePcH1a{-olgn&$=rk9bPkj=@pmvlbon}qkVRnQJQ|{7K(XD&x8_3{xNFYhY
z=rLSSJ}%Do2JkiIY4ugj%#1&8e=ez#W2%h3ey4NU)YaD)c4p;~BAlgiTFnAvO*vT&
z)Yf!-*d?ogf$s(zat}!b(~lozbfLy7sf-kz-={UYA_c*~b++&mFXY<s76BQ(8I4LC
z-(sY&2;cL=w?Wsq2(UHbOcy^)kRe?(lZ*dot17O2G|wOcKR@pW`D?Z885!<#__c(}
z{VIvwATp32Bp^+h51#LdBI?ol!~_Gv?INW4E<_|8mGrU(@WlUH@C>qw&`E#szU~ck
z==!5DKoZ(GK6^&f2i$ydz_3$32Uy=gF!1ZI>*&sIB42za+BauO!dc`(!Z!^qOf&rK
zBkRH)q-{gpxn`TcdH;1*A(dBjh{Uf_&tPe-(~o~Hw4K(W)yj&GSiA&S?N|FqQlWgm
z5wnXm_q7NB3^I2Q2@~D>qNQoEx*7dY9XwgnOTaZT8vnu3Y`?M6Ve?o<roP^4!+#A!
ze|NTk9PRi<OR0Ma#8hHl&*=^5;deq@SU>uv0ine4hguE-<Rb3SfjUZo_7I7b4EpI}
zwM!=)2kSpbUq6o*9AJIMaEwf*Zg%XN?nny<M5ONu7)Pj@shZ6?PFd#@kIIkGw%Usq
zFgG@;G7XL0*r!`@!wXCxs_@9SSuN0^!i%C>M4J8yESshMH77In>{OqCHrv%!m)kM<
z#)QwjRURwKKXralHHzVCc`w^i$#9%HUqsQ-S9h*JO>2i!^u9FFMw~z(gLfV4xa5SQ
zIpoBz>Du0;vyA?aK{^ctsXpmNksqN9Nz~BFT7Pm6({bnW>%Ajc%u*WtpH~|81ve4A
zv7L?}rMiqBDaWmMbaaOxqn2LP_VZYUT5!-KMo~sar3>x|jo`h6yKlFD1zEC8)2!5U
z7C!#x5QR~8jC(jrPVDle^mIZjVlg>t9nwN9W``a*QJgi^AL<)Fuw-Lg_cXARmsZQ-
zOgSh6DV_PRz)g+>IGT|QM21C7Z0y7jzMdbfty<xvnwm@Y;BEkVC9HZ3XD?OpQpm67
zV~fu?6fka;#D-tUB54(nO34~K9AT`p6B;A2qHKq^Ac{$2Z#Sh?CcYBFDTQRK6a+8c
z;pf%9-vc2P0^GL>b^XT`u1tp8P#Zxs5510&62RVSvRfy_AwIJpP!lnPctw{cbADOA
zK1sLMD6gjlLrp)_SPa_A2*fQ-b{iiC&HH!OmY?99CMIs2)huZop^f7d8+lp7lXLNF
zN5;lD@IOF$|AIHQgGQlk*CG~nIY80x(udUJUgu5BNsfj;NnU996my}_>jaly9zAWK
zfTLMGNPZq!wU-K<eaUfg-HCXtmWN2k@DXT3N~S9A5wvu4w{)etEKUsvuJZW8kTVj8
zTvWTq6fIN?MEY^5ajDDI(wM&hSNY}4LbxyGQ)=Wj1j)SZzpA;4Pcxq+JOM)J%QZ$%
zdu2JjCL4C`COgK{gCGNLx7vBWL&L1|rD}ErKnBqs*rnm1amosZ=bzRNkna3A?V68<
zXBbKu5ZLo&2vb90rZRXG-St8Ufw9ut{bFr<e5V&y-*0a?9(-4NJzp2V)Z+KJ?g19|
zkV=$cASEa(C-t;T_LsgsGAc@3W#J6H03yL3Xiy;gHWn;<5IGJ)E{%Jd80y<8T~B5Q
zSL3sFDry=7@35xx@DB*+L&B-Dz#@!JS2BCASCflpNJ*JnTD!c}E+hoJt>!qL;MEvb
zR942UvybJkszQ4ozcmSro*w5LF%9Ikh<@0)=a+xaABz=ofRnH&o%>TKq$_7o535$4
z1h-2@TFJ9_`{ETENq9lA@WWBQcm#@3ciHqPBxf+wM#(2TN8kS8csp_NZzLa#>5u3j
zgRZnyk}LOhbCoW;{=R{Pd?Q=yMxl$`Av~G)bivm!%^@J5LdVhzl#F`Zuj}{P&l9+Z
z%&++G`)srk^YrCQsv~+LBO$p;i@+g#bz+)U`p_pa1<I+ig1SP7jv#d3yp@_f9BQzQ
zk~ErZA9Cq$5<<fC`1ttb^n)LlYq*J3+`k449dc-<#u%b`-kv|1N))8}F+rE8s^|u%
z&W5be31i3IR{cvyfjb4i4cF4YQ`5c}9Be?hkG|7+QGkcaqoJk<!yv~%puUS!5>G@!
zqNmJ7GhTA~WO1SE_VzgGH^~1e?D67S6B8Y1H~=McN#C(FE$$G6VT};faM?VCl;OAG
zGMV9mF!|W=d__%n`OECS5uAvbc(zW~Rd>&TL}Yk5;OS!52}U6k65!`wEh73=QQg(V
z5H*DWtT)Nl5beIFO)^RTe?uODr+MImaTN%MYOC$J7mU<#@BMTB==qs!R9|@J-fPv*
zv%n-&{p=q10&bf4R%doRt9w8}`kGq4L-pt}F4@ge{O(~2sI!J9pYJ=KcA}<#$q$(j
z%yG#QK>=h1<U@6N0A1`Co*9@D$Mf_?^Nj~E2%ZoML)k-FQ}2Q<g!*>cZFjcFd8Glw
zHMf|)JY|!<jY>3HFT%8Li6v|?OE9`#l)C-c_uD4?5*TPO2N|SS3v=&bG`9Kn(EO-0
zr;;S+hyy2%Cf1P5<cmz@d$kP@G>-9|hxgoMVu!O`Yr*!?>z@q&!Hvw%;66ZQjnP1o
zl5>N+3B&eyLXF2@ED7U!4lEwVp+$~gQCkiFSJd1~u$8ZM8(SprDl@yNgQBJ%%+Ss3
zaNb7>7XhkfUuw8LcC6?^+MGrA*HB!|%~I@Q=h%Im4W@ZJblrg_8ss^<&Qb<-T|4bD
zWGS11Xd!es5jw@p@t;aFIH-ZaC<3C<pMs(}H6Zu@d(@0r24>qJ=R_)ZMbU^g<TAAQ
zXmX3%N1DQ;P8j6Is^rgDtjD7DIgH62=tNqx41!^yuG;6v9L36rA{&Ea!!80z$s%)7
zq2bCX=2-11RaM20?A+{D+ngP6&34uokdid9LsK(6`^)hrVLV8JTtdukYOZHT?4{7>
z53rc}0@>3OEEt;y2B-6tCUx8}(b$d$X9S`#oFQU3GN^Jrgq+{vaCvL6c=rKRL2cqm
z<@#h6D~o};k=!0{vnhzs)%@lQuLsQl4Yx1N{q=;jo$oHh5aFm@esA(tSU)V2V8%E>
zP`Y0{q|y;L>l{i53><9w^Lff-&V!6O@O%<$jtw%R+G-H4J{++3P=2Z4wn0Edt7VO%
z*xT-aJ~gXl&mnc=-)!|v-Pib--xH(;nN^mDOKiBCCxfU$q%iYPH&L5#s+K)l_cM;Q
zO^<q^UG7s&O&M%g@1Ko?PC6a5pAdo$+K|~;$oqb#d4(5vU$6VGu@7CQeA2~mHS99J
zMo?1a$6Y6^k;aeyNx8WdT<D3z#AgG&uEO;`<GZHyCg#PM_CV~=P19D^1NYB29}EYc
z92UxwV$!w@F364!B_NM9b1mj3R($5aC#9^fBGkqh&#e?LAeGY)^^gv73{6zH!u&3e
zWm-flXPy<9_LO*cOm;VQqmhP5)hz3cSK7gh4rlVy{hXSZ#Wr6u(I5>Is>Yyz&a_o9
z-Y^u{@Q4LGuYgbLvE0Zu=A>-=qj93dFW4e209?zQm9SZ~&6?GIcY9)o<j9nTvzCy#
zH|c7*1Sz|Q{c31t7`<$&SN`5s@|#R}<!X%hRPLZ@N0XJ^uJKN$gidZ_c(V;Vu`G%*
z4ZDWS9Gyb;a*aQ9uUNv)CA~w^TQqLX`t>q;uSX#Uq(JygBe1d8!`F}2>9s<QtkfmF
zbJwBhC7$5erft1M4}aSgeiO&?VmAOIsMShxJA$uMc3Lnd#G|6{t7$wxU^|1V-z<W0
zSKKHcG6^)AA(=Qru(*nVdb<_=n~44kr=_2WhxPKOG3@v5A7JJ8o#@IDs&4$iw|T9r
zeSA|of~r~=0A4^5TB`cIIzmNXJ*;rF*6ISbe=+Y^=;^mkyU9MVsFp|V8lnN*<zDFo
z!j~9qaO$O>={Mf3xJ_tLgMt+X!M{5oTL>JqxgZO|e=|Rh2$unVkvp(TaL06Xbl(U#
z!ac4UnLTLl(%QUQsuZInum}4Gfp`5JD7V0SHA@(nm!L!YcPZ!Z>2!~HA&tWEuq~2z
zU{DWLlqn4cdf@2rupu(H7V-<CDdd!QnU;Jv7(MeaZiO)JZl?m?ID8bjDe)<?L1tuz
zrf-RlE}6gwBo!6vAI<B}BCil47X>y^DhXD8YB<>P40q4+N?Z*ms8{KhQsR4z!&7{a
zE=t^ysc@M*`vA}=s!Rg(N@0g2escvsmO)RvSZ&~7g8%*!jB;t^fTA*ue$pgfjAmsw
z+wg3P2acMVg$n-iF$C(G=64BQ+swIbCo`Jlb)uDrfbgc}m%T1UI3yK>g&Pgafeoez
zo`b0z;eT%=2`i*k)IJ<${)^g&^1yCqtFOm#{Hd;65P4T8<<(+qC<9A{%V8g&`v1i&
zfhm$~GvP6)$P7tne021A{n9@ormtpp=?(-_jg6espbuV}1O7Av2$IA_3zUawWeiU&
zspm;)F-R>T*zYOLEtx16>DL+$fX_(UBvv<8DZBgGa!Cn2(Fr_Q@5;s7n%w>uoiEc+
z7QlND&mL`<yyYY)exCj-={*0$MzuV)>D7Po48W>+hMf4m_-C*g^#a|nWQn|W_wUn?
zaLqiq1RT62xbq_i4Ac()ZB*P%uh`|DKYiH^c<l;!1v4E5-D0%n?>@3OHv6*{poOO4
zl9(CH!oubO#q(0ijQ113bl?m(LgIMBYyBhS9TibG`h#X`<-b6~To*@*<1@?n8-tX8
z=iAhzT}9}>k#c#19iQ{UVq>4GZ~oH^dwyY2jg204!8@|L&shy4f#6IO+4UB}v3UqW
z_}L~Xv!G3^W7Q*+uE%ZHvQnWedj^o}u=^*LAOA!+)~>s{DlBICCx}bXujkT7^J;Wn
z{iHi(E14x%pER-rv&@CPv28{#zp!usILlzTLJIQ`hN%e=-1qqf1#Y9+A*X8PT>ZCU
zGcfX6Cwa18?rfZO@Kt+&qjD8Bz}2Mx03BB+S5yAjI*?6?nca4w3y5EFeL8pj3Oghs
zF5G5*|0aPTD=H6DR#2sHT-ac#{i*2=yWd{LPNTnBLH|i}KD^57(+m?sM-ck{t_f=z
zq15FYMZ#DL3$(8tl*yA6A5&+>>SHyYuEmnA{Er()yqjK_@24Zsmc8V&DRBLt#ZNWg
zU*7wbgHSSrZ!5-U+!weAm?h*=ivZfK(n6ZAr~xj&>ddq+BtDk$Wv1_Gl5(;#x0cWP
zDqE|L<xM9~=+vMyEgTm<wfR7~&u?6nmRf~L+#W>t`ING%Hw^4Fx)OIp+!Fp7D^V%i
zFpnRg88{*)2~{bqci2R7uG(-ME2MTQjF&Qi?h{H9OscTY2zj^7;$s#2-xZhef^&y>
zRuZ9;#DXvPmA!x2UXf2*^;Y5w*KuV6We-!$cxg#}c@8Dr4lS%U3-qc%eoD&a62o?f
zAk)-I)1UGiwS$<?$K6iCecPRmL1OBGV(PUnW8yxoQ~{{dfe#Wr_Fnq<Q%MVj<0a1R
z4me1^jlbsW5Ds#}L^+$A{%wiz-~LaUD_o^ncW)L;(WL6fq`$A2n6a2tBZgweO;Jtl
zYIm7Vf*aAuZR47=mY3E>n82E%n|wjRyj@lqIPGDzvBiLOe3^I9RQwU@@6nN^5^d@L
zmy~t(-gmE~_qknNU90K1+&E^|RET!zv>9awPA51=iywE*=znX-5H`r!6A%$G{v4Ey
zBb@rtRtVi_Jwrmo$j-_zVZqKQa2*~;ziBsHfQZAgPU1_6axA61^Sky^gJL$+D=1Kb
zXJ%)%5v{aXAx}sUN;>SKfO?7AM>s_%&HSldSxl@i6+eELH&7{xM{8a*m-sWmT0PBz
zwNRm(oNe^yT38D>lOywqbfd;#sldpOU&&01LU(WEz~lY5=hdzEq{R71J{{O5kwb2~
z-=K4qh-|&(IM#+|!STh=LOXM~u_Q}jNnBoT^!i4-B^Du;3zq&YB92H>`+ZMpvE=0R
z<ORkt73z^vIG?0_G+}Z2Gd)XKsiML{M29uh|NiVDr7%i?_~pIQWFFzdyq;szHw%k!
z#HYP9i)?8Hg~87u?*W6j&F3-OCRQ#$G5>~kYk)T*GKe}^KtFYn4F5eCUU9mT^lILK
zZm&wH-#GmFB^Z>y@@!qmpc&Ns8NTc5>mtqmvLRV0rP(z%09!W4Vs^Fwc9CvWN$5ny
z3T6uQku>uq!-v8YedGA{=v?32ztGV&<`aajq&g7fzK=^?Z(O0wFmufg2KD3>t0BI}
z5-?L&9ELr3V3`K}6M`^U{@BOFgi^Y>tG&J5aP`ebB|H<i$!ZR;f!Lr-S+Cs|A!3tR
z^iDp9ID~)fJ(*0W{i0oUY*jReCC~DBce;emn`+YQ7l>J%h)2k6i@+@(jEIJIJd+=B
z!rtmqd=jfs?Z4^ox32ox{ev}1I==^tv6u`J+chwb(kf(H`p@+ycAxI27?83V2G($9
zKm1F}fvkBNWEM!gSL!yZxIG}EOpcCv|4vGw6XcR^gGw91u5y+vOY;L_FE}LABot@d
zH=dA~NTs1k)k{Sy@b&~GLW`|&LKTPP`LoBr4}a|Seo7CkTlcG<@Tm=m43xnmkojH(
zt-X(mv}6NS1OQ1bt-m>wi90G?oqecJVbLkO!Htq7e+AbJ(80L2$QIfThe|l#;o~ua
z3OF)<|Gr%s6dwMd+t36rAn<)KGD}1L8;*<&{W=+osUr~)-4{!g^VKyg<F?{PsSD<4
zHgW>q2<}8HoF8BR-MIwUe%w@pxoUbrpuobyLRLG=wetP11mT{b@v4=X-|K=na|<rn
zJ{PTY*`8vJo-TJGLtp%Fzd8KKEYQSKLB#R{%+`TB!~diPgv8<Xq0p4L62B((vuyZW
z3Vx9dkB9&b3moR<;(u{~xWNIc<8NTzk0X3oQvXOCII*PfgBny)>jmNipe!3`3)jK5
zZto{9QElG>PDUFo!SWc1bSjhtKK8**585oTsWfXh@cjNOTtIql?-Uwg11skpT6yEr
zcP9pw-V@qf9j$024R(K;)_vSJ>6M%qT6?ZR1ano2slnjiVNEyx52v8dsI*eW`#}2J
z>viy6{2O|sZfl)aoF70YL-rhq^5PWjRy*#3>i#L#_vj+fY~Ot0n>EEkf)2HX`vhl(
zw8n|R^E(eFDiInf;=6VU$l4VVe6gMaRfE+PdZ`VjSu+dK32;6{iIo=lx*jbhJbW>9
ze|nbiDOt`?XtTwMYS;3V<Q!>sq8*D~X#9FPm519g@RZwb1ttyYS!6M}QYQkHEN>sp
z2104Jx_1!v=Yi+iTN3Jz@hwgH&0${Cv<v)N|5xvVTd;u^2(#7eu*GKp!vOr2mOvbE
zDrfO(8Di(=DcS8Q0EN70BI7K|Hv^p<3ateySiS^ry$gUO>Mz5Jw<3#U5FA$4Fxuel
zzV5+lVcj1Zlz4+x{6XWn4C0{O{D<5p_uAt?DUp6(X%#nly17}lnpqVTbGfCl$aFuc
zsgvFBNqD&Hvoq7P&V{(l8kx+?#$(C4MTV^2*sFiEoD&zPUz+8){L#-FbS=Ki{>_$u
zH5NWpK`aychWX{Y4u=90-j+@Wf}8Za0zQNH!tAJ&h>B}=$fY#~?~v#2s5DA02++=;
z;tLcV!Fe{r(%+OC5w<UwvMP}SV(~?2|GliB9JLsD|51-ek0*C)J~huHpib6Net=g@
zUXBYx*ss_X+K@=%ph+aqYI@u^aO)m>LGn?J@nR10lOS}~d+z}&j(^(*$MN@vp8QxC
z-jf<0y4yO(Q=+W2zPqs@Qos8;pWB2j&KQ3QRVgh+SGZ)Ti4l}*ZL8tsic#abH#}eE
z1!(Sz1P3UUyJm}@Hhfu@bTx;9z9(|*91-|lvSi~B)Wi>uM~3rYdp+Ua{rZj(WWp}p
zUaT5Pdug0~VT;@!m{C*W9>ylil?BTu_UAve6e#llK5zQeY-ui_S66S7S8F{F$qZ2|
zcH*K;u`o?$F{ry<G<u0_Gawsm41Jt7Bkc$>jUim1`J$|diHjSyZS{$pdAdZWnI$_G
z2yL=m<6|G8KEVVd(i@Cf)!R<TJeKL8?@X7d;3q4CJrxgtQAG<%PY37Ju7NYB9#>nU
zO)#dw9&b<T7#bdKJV&Xe+BLnkRjyIBx3{O;;wb8X(w5m}=pS>!RUlDiZF@rSU$8LD
zuP3M7(}ij}QLg`7UY?w8H6f$!fO=y5ALd{}&$xujA2<_y_#u@8JzQmh1gd8CINsaC
zDPgah0)~Nq#y@ZXICU9c&7shJz2E#xJZ8Ka;<Kvu1_c{ETal4mVv)Q}L|Br@9WBGt
zpUqdb-y4Ny`(^+^!>h&ZENP9SJ3Iyr8@Z*;WwT?`KQOT3nIid(_!XQCqfuVYwhoK%
zxL9d5+J!qWx_$%xMd}jeW_>{fPJVtO;j!b+at?gQ*ekF`B%PonNMsF`Pc(cX#!XL5
zNT8(P=sflPC25UlYHrH6;OV}BQ@wrT%Y9p4G?D(C@+V_QAHn=mD5=^uz-3_p&t-oE
z{3&Gu{=!{w@$p8D)~ICclnv$+pqczNltApr@-Gs9sE`F6L)v5O1;Bfeq^{Os!{rzg
zWo4$Cl{FM05!AG_E0QZ`;*oNw<)j~+?^YVixf2AtSs`|q7#K%35??_bIfbFjz~&^H
z!-5Beq88!5kzO)3Lx>;b!wd5N&cUQrcsHKlZv(cuqTv1frT-&8J+#WFfZl~7)}a<X
z4i2YiR)f~y%r?ijm&aI19@XIg06xIy<>(p?6BP;ydfXI4W9%~l>-P4)8^*x!^3&8E
zGv6F^+~8Kj(B`6pai#Cu??Wl1AgBZ<K&A<J>LUYa-;gy?=Kg^}Efyq)wFW2Pw3l>_
zjYJWX(XP8s4eQ8P)HLd7yZ?7o4Q!>Zp0_u2Xdd`r4v-xulfQn83V8W4^ye`k*E@#r
zopARH->Asbgp;bq0b4(z1b2<FcJLa%#|1GFUc>+rF$gQ*;t}Z#^)Ux{iJSt+OH@J4
zp4?9wa(xI1h+mwj-2>pG1h@=zByL`i%O`pL?RPv)aH9q9F}<OJMK8c$jt-QH`E627
zwCiWUjgwIe9|||7Kab|Uu{XQ{L9vy?@8`=^U*9+p91P=M5^%$w+3~#4r_Og)Gn#DE
z+5H9q5P~8)oSpsk`Hq0olZ|nz%avi78+JrlnYBhV<SHE11S%Q_hVug4bOjLe0X%go
zsSqVedgu?xYD<+G&F}oNmqGD!IGi$w%Ly1Udhu@1g@T4+$E*nxZLW?@g53iCsIK1=
z4mT|NOzzYvL+{cnuvPV~_miVyCH=vS?g2mxNTbozTFjq@W{SL`+l>0)>f?$0FXQtO
zeo^UHsjZNb-?%nJn*mOOB>b1X?35~6SW8Wc*&%Els1^|Y9e;JIlGmnNQAE3cr)sZx
z4sJA9w(b^2H?N($I}hv=uj3a1Dqvp(n!{3O*5<3v{KrmO`KQf9Qx9g<^h?h&EVuWF
zgO%O)9{;s0n@wc!@MwhHgF1zj4}uw~3;HX!_7j{*|GDnb|J7i~Jvd}fP;srdyd7kA
zIT(-M;sI~uV&%V^==O6(?>LNiZv)i+W7@YA5Cqp4)A&8IwPN2$53cTwLmQNrUTGQk
zlxNN<GhSHOz6$RgoA%5Fsp8g;rA=~vii<6g%m{Im0uK3l?gKcYcCY&3V%NQlk37ul
z)qAALsJToUg5-Y1gScj8Xo;nK!QgH=)ZfBFw!QDU?@q=nEIy-M+lFy_Z?xM7ANA)x
z2t|@h)qWdRNBYmo{j7r~3W<rn#XdV3hj%pK_p1$=?AZ7ZosSRjy!7~rm8k7_cKiO1
z6!w*63oBhgeaHKlEwMA|`%RIlbmoB&rA7w+#DAgaCO7I(T_^aOY5IeEp`v)36e&_T
zc(G4gKA3BvsC_QeM&+1SW~@jq4%sj`5_Q+O7W*am&PbU53oBQ#{D+;Dg8q#J^lu2&
zKgtrV)9gcw4yQG1ZeJ-zI^Hy(lDQ;9B~#y%kmugp;X{6^(kpgPGOv`2@+5j3IY~<b
zNepmd4ARozuL$#clKh26_Ppx;u(8tCaVc7XNAG=dAMI~kk*gK3Yi1&m>?x7>gNebn
zq!TMFvH+}eRl2Rlv%dfh60FZ*Ft&AC{B92>Jf)L!`5+|7N3ATqy}e~JzDNDWyIw6s
z;+bx4D5~r4dnbeT=@TVM0d@L5(}U%t@*;Vm*Ha2Cc%u3SRpO9@UjIC%SW83;SWc63
z1Vwh3x=#@ExgLStD|C|2X0Auh2E~Hdo<blocBC%$aO#jC`HxTcguY>wzkGbp_DA;_
z1A_~#)#F7qjlhn`$*B822pWFe#zUnq#|#?&3u;>K;By=YLj7Iyz<(H5Wph>S?Xtg9
z?v8`<--VP3nzH}5x2($f05(8!=o&AyV^-|mk&Q+O;wIhdvFDucunB3R@!6q*jW~1K
zmPTQDa{0D`Ah}yV*k2<4=7)E3d;p|N?Xl~Y*)IbfjRm(>))fsa6z};i#j=CN@2%Nz
zsCi7c;s630F9m0*RL^1y8v1mh+yl7j@zuR4ugkqKf^396r?+lqZ-~NpmiaXU&$8+S
zUtX0JTJXB}0CIeMK&dM<h<Lu(At$sShT+<3)WM1s6R$k@`@gf4K#wex3yN72?JW5(
za+0fg*&Y0Iz~P96Ix|^ivuDPHtak8yy|f4jxat;-L6PhEcL)3As;o@J`=;Pxi3;7(
zsJrv^xi>~h04L<?x$Ez3z~kAkK63dCP7(oEM|E{|OVn?C7{1^}3|0j3S~naKx9t<C
zBt}vl;lSnqC?IAFWoo&i-Vt?hL_QHq1wk-pK`+65J+)dN<Ydw~ZI?0XMB;CXtrx_B
z68HDEEQfVZ4+GL##`Lo(8#ybeov~i7(F2N22w9-zeg!YEiukHPd9pegm@5Oeg5WoN
zZ{`29Iu0f`Mo9hVmjTE9o?W&$e4qZ^5ER+x-Z$G1B|X^$p)HM^fX2&ip~OZerlA`^
zF|{e(fbfU>Nr38_!OadLOlGnvwP%ERTuK~F(lUd?$io0ZNn0y*jCPW^2H7OVj$Eg^
z%fAt7EByDx#g#frRIBYj<=S|DCg{ArB48~rG-)xy{ehg9=3+4g83Ak@sDuJXz{?^S
zu<g4&A(k2(QxgalcH$-|tKi!KrltnB(?xHXBbPOk-S_X`Qx75G_})(N(5qHjVFUn0
zNFs7*aG>lD%W4y}m;T(3;u9-NTw}<d#aeMm#Ee$T=zHmE1$LwM4|BECs5PF3-O#{G
z<hI%tmy*HbfJUsC!&h1TLrMuzTtwfI2H*?|K>QK^w#P|Ux%3xVz>8B^z9@Z{eObo{
z>vT2v&1UbRVGLn;f!pG7{9->*==Hu#@SmpYsXz~85V|J(q8>j!%nN70NlOMILi)Q)
zhhKGGi%a$X&&PD1N0+I;kWc5qsb3t^!&7vE)GYyrxm3egW8g7p5sfrTMn8WLdK;|@
z3UMdE!omWlNSISN+NGZ%5<WyY$C3!c(OGH?m>SZ10<UWvKST;UBZ<2A?hk00ud*-D
zFYJqKZrIq^Zo`VB2{o#U5O;5!-Gt(eF*hxr#JFbEX9b2}`4cE3jB92Xr4qqe>L~yz
zjs69GwFCYAa+$pB;CO6>t`#Qr6A0W}Or+Bshm~vt>}!MNjM&dOC58OZPuDR!W=krS
zF%HKNEP*84w)ir7Owq|B%(Y*pThu;yIkI{Pv{tWB4>~8O-}^tRe$h^|n^ESnS-6up
zwN$NmXBxVXlqruWTY=k<s4(_Z-4WGy*Wl>?!R-lOvr=FCqA3d0Gz|_m^T>idtzKtt
z-R%`LRb(#K(wAqqqzZcH(Q%!|nG#9@!4Z;SOkP8N%|TA|Y{!p<HEFAu5Xdjl#ku=v
z2{<3$W!!`po-US_pZG^CVzlm_SoC03C_(YrSJEv-oiXWL?8|zRmP?{}R3<g}cCFb^
z;q9rkyd@ovFUastx$()fB{_fHhaI%YcnDHXCF6}erWiRLwts^~>qS;U5?iH}!e%(J
zN7Oqui&#K|?kb{!GZKLoGwiiA+*HAN>HH3lcs1x>io_>7CSw!6*uWrwLIa5JzqQ8(
zse@OW?Lh`=_ij<XINA*XA<vwYTaA-}Q~&CiHe&fu?acGiMvJnv$sz=~w8gp}b7Zx_
zOSEoFzNxv(af^G|>Q~A>j0F9t(6PGr|5!T5u)N<sjOSXeWi4A<%WfIVwr$(Svbk*A
zE&a1yt5(bA!uDJp$J5*UMRni5`@;D>&(F!WnPNJX!>wxCHKV}7(6m{|fr^+o5L^<&
zI?fy5WfD?L_35-(v6!*1Lbgx(a1yI$&Tm?WGH+#L4$HkCbBaw<wS-OT{JvUyU-d*&
zs~)$Vg`zs4sHe2urM0-Oc)o;xIda%w8bq@}Y$U^q-CLRXS}KV+sRA7z^T$2Om!&GV
z5q1hy*pey{LlPbz3*buwl9s5!7b0y3OAh-bl>wK-Sinv;_`F!I8?OHcoNTq3tWw3K
zzbMN5k<?2XuS`w#nClWdCRvq)-yYrt82JGxMoSi@F3d-b?-fdmZ`LpTj0~L3eXbd%
zc+f@nm>hccv-QJ|EVO;Cb}7}G9W?Qo5h;)Bs<F>}phs}2s$9Rf#|1sbptlkt#rqv{
zGl)vT)z@xqXIitg+5#T6h_p0fp_DM10z~%n?a>cC*5s8Qtk~b7L4>eWtuhK)UC#d2
zF8$L&o#2iF)<zo?cet`o(dUHC#?NuUr2dEAeT6tU!XkBD!z_QK2dO5naEgwS$(*!L
zSj!O(1{R_$E0oiExjc4tDs$*}XdX`~sQr`*RiNaU=)w^y_k;P5iO20ULSon`z!_jn
zv+(}Y|E@1*72*iSG(X#<-X{kR!6ifLW|h#rb8eJmE`0Y~S>=eZe~{;&Dg*6c*=o0`
z5iX~r%X8Ucy*x!SuT%)(bv9EE?X=UFk!J{rI8wq(!shq8^4YAp?6sQw0^BK*Xymu*
z9KX1zxb)uzo$<C%sGU>K^3aC>-I5*5o$6ALZ$UomvnJL^9e~K>@VF<kaYZLUkp&st
z$Yxf*O}K!5sw6!uP8+?!?S0QkWXCa=d^r{XS+N!C`6|E6_V!D_O=}{SqHC#2uhDf~
z?dTDCsLB54-)41vUXR2485nZov$bY3r693GQc~~;v|7$nClGYHU$m$|g-4XiWx*wk
z^4Ed`(Czsq?-Z>cCGJchiBlj3SPsL{m+2RJuTRM7Q{VB@;W#zbij?%J$RhUF!Ty$$
zk?{t=N=VdPY851+$FVehKRN-}DG{%OTR^F`ACvR^Bb2SFsp&xk0$&iKazGVMNrZAh
z|I(M8Gf)<=Nz);w_k|5G_iAyJ<i=WnCJdP7g<IkA-wO-hmi$4K1%~#t_%Tp>?fkgC
zv%5azdb||q3@F{8cGbB3AY?<B#|LboPQy{GVkKbup;|g5w0`M*XSKMByDlp!xn0Yl
zO0?i9V|R|L@9TOzfzKUZuQLMcTgS1!00r|3&o;*It!H3G$<>Cc1zJ3AkLHWtLqCRn
z$fV?mjJ@$F8EpX-ucJ<9rj3{M^NkJP1fCAx_@;Qg0eAvF9!5sr<z6NTM^@<Fv*`#G
zgLs0p!B;5Js3{P(koErFcKzXOlP2z6wxwr*)I7Dk;LYbj^LJOHJ$)TR=Mc6^YT{Po
z>kniJq{%~FMicNP9@}r;`R}VvPIM{Xb>w+KkiX<>R>i!00xy8Y;Lumv|LdU|I<|t%
zGpGZ@=b87WY)~uVkVR@$3`835?#ICyaW5Cf2|faR-(_(qVq*keZ|A`QSGsQAHAMPX
zTm18TdA`|NeL>wpOshZR`hUs8b^1Jk_Vw?%_g^$$VuvFixGeer{+fIapXzz7PYp1W
zHdj2;x>ME-C8C=<VR=x}m|y?=*8{@t|FPcoFckO^uv^^%dY;IOPmUZg_`&=M?OFcR
zF^AsS<R^jfsdM37Hdu~2|4nyptH%TY0MHxn1W(Y9k0M+}`5)j4{HpbTWoSfjM<eF>
zT;M2Dx#m7j!x>=_Q1K(tKy@x`fkd+_?8Q|4qc>Ak|M-kJ@G3T42B9k2T!xBn^b?Ds
zhBA1=N9ON%a2;GW2U*wq)tiY<CR;WCuwpBFcxOKm4wWpf=ofc_AnAoH$mBjYK9;b=
zrM)#ytT>g@W0?wheFW<&kT}EDZt7ILI3W8sxhLX5C}GVzHa1o)R<hQ_emfw`?RG_x
zI0mNf5XZ!{dPd7{k%2P7Gv-hWhv3xUWHotUHlTv^+mG-B;rO^wVgzWyz4&lD(_PU@
zgal`8gapSY_2l<($#KgDLWbO#*a#UPSy<3$MEbt7n2c2*+GCMx%Unpz^q-YSyaYtn
zn?Km4I!=G7_j76CfMHc#VgEij=Up@B=#t`Eeu7Ht^8F?76<)y`B!LEUfsiy5zXMyn
zGj)*L>-npMq1hXA74yOw<=?uCp#e`s|L05%xS97o5bg$z<c5=2TGF)yBh#1|4u~Z%
zPtOYr8oRZ>=a~5URYd7%>keDc+H)0ddcXf}VVU|6kjT8C%Khc4T)otQiFW2c-B!_1
zDk%x&#<r7^;u3~zk6yV_E5^8C6hNQmFk=}<M(K_|Cs?$uGecU;w01yg)u#8XWag)$
zdWskG3Rn9$tbe48u&z>26KhhL5%W7W?;_A(;unUh(d)e~nl7oO$Z+|mX!pM*t5&Py
z!LUi43?0Ed=27((`C$Dq=8_tqHTuNFF4xdr#KeMTM=8$8Qg=9$Sx~L4MM0dPM_yV?
zmeAcDB{71vTXVzELe7v>NoA!8Db2)by@s4MDnQPFvE=1?(ky4aPTC+`Y$a@`;@Ocr
zxX?waQ9o+GSbez?2};An#l@w`gDdRz=L9Aek?-$RzE&4_vENlY^@8qfSqqt2_VQAu
z*Oa}ubgDgjx1qWwt@}>rmD+a+{O4=UNGiJr6?p!VfI!1l7rd!rSxA+VwtbP7nYmUX
zM|gJi=lM_PSNaMuEjb~@QwGMWR3QzigY9_ncd>n3YKbNzE%wV>RrddF1E6<&wh7rs
z5un;TOb-PILnx%rBp&5v^LnG2*8v@2V7*T?!*z;}T28dCi?TzLj)N)W0HXQsv)23G
zWdGLse%O?+RI5Z1WhqZZN}pv=aRMsnL?OJvwtwXVu0g?v2ep>A^G3gn?s`O}()GEW
z?<darI|*qxQd`!Hc-p;`oSGHlNDcf;`sy$_#{`<7&Xwks63~>u(=ww3w_fB4D_frd
zToGS16re*wZK*vWm3%Wb^}Vi&eV-rd{e2ct&v=OhT(}M-<A^xx7!j7)m*@Ei`T|Yz
zWc78FvS(-m>GHWxKTa_Hjry@#q?vS(=l!>@AG*t+l&_%Ux}j~QZL8ZWe3`8QeY~pW
z9k0B+{K#}j6(nT#TcgL#WyGD!;fyf*itFIYr8?+Zv)7unad;}7#|T9Z9Sc+Bbv;Gj
ztlN2Q-dQA=Q`-3#kRQ-eZfnS@e2#^M1@7k1ZT(L9+3YSSOLD;-yFMKoi_#1aCaus>
zz?C5!x2?jQ{8>uY=W!>z{vX(jRE|)P5r~<F$a6M?(!{oz8oo+~(t(|6z1bQb4`6;G
zx?}m%fgLpups-fEpYKHk6BH8+8Vevb;4ao%S$?KiNq0>Y0ih?*OjMnW2PD(YpBfLG
zre8s=AdCV6-6-DH$x6Agk51QC0%n`H+u3UO!J6vgSlp`!2?s94#z;~2#p>l<Objv|
zeN-XhO=BJXmTXf5y@b@yNhKdd9vD;v-!t33Zu|`Vw`kOj(Qneu&WA(0Fgabe$jh<b
z$6ciC6L7g9)AYdS3ZOutB}K+7E@NO5aq^I5>ADQ!S!SR|M!nrYUB<|bii!#<LOY-}
z@2bm3w-Ym{)@h$xu)>Cg#UOgjfaOG-L9;+k_rLy0!=l%fjxCfg`vMBBEJ4LcC@0b?
zAq&wM_w5e+2Wb@BFlZbwo%@Gcup)&1`HM!rs20mU(Nv%`xGSTP4cyP{zr_bGDbOn0
z%oGiaOGv}Kic236X28W&__gcZncdGGV%j(RseXVFzm3&pe7|AyLUSSUx_dHK8lzr=
zhBc)de6-zK8yy#Ay6u1sFkQ?+yMH>gA^LFf!GIUkb^+Td(v(IdRh2XNz=1X}&i-+U
zbdvJv_DDHl=wMXiq1luGnGfLDxGT(m0f&e8-%wnyyD|DUM_tBDMEu>0Q~M`%be?FJ
z>jq*O&Y`&MwJrcvOXse_7luv&w$^7*NJc#IqZX{eFWB4Bu!A%ePuY#j$WJ67J05hh
zJg&m`5%~w8f^G#;hgL4u*E^%fMq)K^*g^%E7Mn^<Ch2)xg(jfIE`(`-NfmCM|68}m
z0I~-Eit<~U4~!!Grnh*;!#eal_px0FVchn|uv5d+Sy?hSZ!#iVTxNK{c`~&IZ-NW3
z)Ipi<EMp$gJgeCRg>e`%{s2LRdL^^v2aa0^h&PC8T_QOW5uO962q7pv{QV}cfGLFt
znlNQoKo}mlIM#J&lPw2(1reMqReJxv&3G%52l}?rYhaa#`|>RV5BgEx+>vsrB6UaG
z=OojMsq@)xcuWa__IP*0o7BlUmvs14IObHNUv|*ypI~Er0U{y>=^c@gs<02(_d&~*
z=<Cv5XK91DX`G&&yC__~L^(NKlgP<NI~)3EnTefq!$OXzT3Y(S@rd4ihSaQ7)`e{U
za&mqm&u>qY$D8ZQHYX(4T*gL58o?)b7&mnvR*oCp{D!j*7c0|JeXCj~+KKXpTyO=)
zPpL>fYj_OJL8tsOQjM|lLX{`WLwj*!emS%PrDb{fit<z4{oa2`K<tUXMp}VIC;tk_
zPu={sItat3;wWfBth=S&Pf;qGHIgiCUZxK<o5AoXOR^q-wNS0ylFOwh+yuhSVwJ{6
z-u^Ju)wQx8;CCWyQZQIQ%phtIaX5`&%B6jgpC4{g`IMT)W1y3@Gxw@`?3Rf+qpX5~
zU6WbDn^hmdib8AIiTGeyVdf)%b)G8lAws>4@cyBJ7M6lkXu=rs!MbsH8WCx79>qhR
zs*8}JSJef{cyS|a1NSaf>Gj3X@8<EB_zntnbFI1x-Cgv5`50!AJc|g`kS3E65C|NF
z`ayhz5?`odq&|;17Y)zR7hU63_v%`rMt;mvq$!6tqMp_27>kUI+G3N!hgq#c+|xqM
z@`;r%$Fd3**z3}t4>pnHDR>@6@w=l_c?VtRcu`n4M>z6bWC9{@@cHytV$C6I4(xvc
z>}Sf)Do#6CH?ZXtr(PwNh}1IgXx_zpen>?`L~StX?qHT`sF|Rf$d>nm(-c^I*!Hy_
zbA>&GhRPsW47VhORJT9~uU3sZ_M`C(=t5s5ZSYib_9SB^t#dRomX(WClxY>0U+W|v
zAJs3`{eA#@(g(XqOS5!OvBGEA{39_j(IKbk%&`0Ej*)3eqm-T*dsWCz7a;k1Rmatw
zmT0MiuO-n)9QdQLNm<Pb#jm)2G|0(3OGM(5Z#x>&55;F&)0X3^u?diE-DT_jf(q*E
zWwli~I<eULgjD+hwP&v_93C3+i+sZoY*s!RjrwkaFf$r6<(M*~X2!z%*eEJf&!U3I
ztM?-;x^5kEcGP;bGeev~A`AVR0sfK>2wPNm4+6r%G4o)MKHgp`mx0tRVKDHVx+_r<
z6JHb#F4LCCTIk1X%y3WrUj{oce&7%c|1?xi?A22Y|I8exxq#HKrqGBdF?0yGcG(}5
zFb7-W>Al?t8A*O)P-u9Oej32KPu$+FWb}-nT1j7AdRCFFb<Xs}&0`{b0L8Fq!AVx&
zm^3UvR=Lr;K^RDqoR{|vKG1YX1d`~zJTSfQ8qCgdVayFW|Ayu0<2hcaVf#J%5yhCm
zsJfhBGeh@r3Cu)4mQpPe{9+rPZB?0e{4=)?Hg>52@(Hxom=A&^6Oe;XJ9oTphv_R^
zj_XUdU42-)kV8Wwp8lI8R);@(1<kPTZ_bRGC3VyqF`2MdL29m)hCjBGa$oCG4Shl;
zjj`M7jNae$6)(JGJFTb_I0i&Mo)$ZoP9aA(f9oZs@pY##5f)aWJOmeR=B9G4gNu>j
z)y(U^FRH$gfzWVTc3Kc+{N4}Q{LZNf{o?>@#rSTLTICOR#wP&bT4`GWI(Xf30AGYL
z)qo<%L67bNM`K9)<vNqt*CKt|9ykXGyDrilz6IH{x;5(P-R(ZKGJ%`EDKa7G{%tTH
zkk97Zq07%ttW(yC%VQPbBPY62p{YXELZKNi{iIuU41#a)f0t|YjfFO-x+rCa(RE^V
z;)z}s78XF$!1!t&6$wlSIJ+SZ?sX}BD1zd=AJxg<l2!UL)`z=|N}mD^8A6Bp3ycBq
zQTRk!L3>t!Z+`r?RsU~QjdF7VhrWP@#5wHow1ZqhH1nP9ZNE$>c#h-&v_wQ?rBoJu
zyY|NGNzR{jj**C2;k_Ms;U({LfhAX{{yxL5hPaKy>yXUiNawu0PRr1Cy?OFDWnWpO
zBx>5LzfG7yz2*h9K9DhT?}?K`^qli|=yy9|`{H4c)PoZO0HW;y4Z$yt&}#;r;m1i*
zbltYuqI_kEYz7GWICA&m-HfIK4fyy|JwhQigZf1JM^Fo6hZp1L(G(N#MZH_xwTy_|
z00muH(^501!<B^aVFi#_t-_XWx8TA8`nqowMqc_`%5iqF3gs+Q2Eqq)Jt~0Ctt^n+
zV4x@#E)~M)|H%_B&iDU*Q{A!Z_a^gAmh+;pmNx&PIc4Ap+ZfL`<bv6N;KPQqf`g-!
zqeZNON?Cc*ABVfl#SeauWXh!D8hDlTO-woXv!q5K%>#}_u**n;sv8}y45yT~5t=u~
z-}u8e0D&c1bLQf!mYipB1RPiU8#43_Gt+GWat=4wGAzHQPf`yYW<hrp2t8Wk+_pD5
znuhDQ#ha7tKB|A7YkLmR?_257_4eUeG_CV%lQS7PgN{W3_g7#?(cJj!x9Z(c`r<rR
zky6?83tEIM9Z;Yo>)!pYZ4x4Yc?(W9V(KbM^M<`d?|D60rc~Rtn2EJE+pgnC2C<uM
zG@7H0t^w+B(kJ2w4<M~ztLnE`b&;9>4p!Dc6aBl7tB=Kdi?cw!XXQl;x=kR0FS*CJ
zVVmOqKrQV9y|~qOox1t(lv`xXYjvUf-sP#PWwnMWeTWNI;6BHBBiF_==@F;tZK}+m
zhHwNN4x~p3yr4MgrIt+~UXF)68iUtmRKZsV-q--;V^GLDJTm%E73yj%OzzD4`Z|Ce
z3lgzITfAPkv@LV-1z!j_tr(dqRpkdxyJZWk>3@91WAt#|vd1}&bmAi!sw)&s@C(HE
z*L%GI_c&XZw?-z{NlFVSA8?3VDYZUHeIE}rFyXOWBc4&zJr?n#(v@%+7e*NK+;<RC
zpIPG<f*@u&Oh(a>A>}KzfD^yV)0v$p{u2ViU$(*lWQ1>jgj|{V6f4cDwd5*YBKtSY
zf-m6+m+V*S?7oO~ewJvJ7tPY#9!ufV@!r&N;IsP~egH<)v+utuib!Avydd+ElIFu#
z<FVGF`>Y7(#vLRm;MJ{qKdjj#&7Shc;c(?XyQ*Axohg5+z_g~`dQLA+StzTfRe+6{
z49KvGRCm~n$&<Q{_zS~(2nvzS7~fO;jFBV1K(fao$nVN<|7-W{vzh8^7>hnTbgYH0
za!G}BjwkM`Uwt@xo#dv^R8l%?EJjmyjkWVMnTDcQt{#MT>dCJf{Ld*?+>JSgur{`A
z(lg=I7i8DWd%CQJDsfL_oUecX-IBIhtJD?{l1Jhi`#X-5?w0zwBW|xBdU9ibVuu-y
zE*&R-3LWtG+;M-F2$_17yKBK(a*!FOk0sF!WH0`L{jvTd&WOfO_;U2mtx*AO0$6+d
zkK$Kzl=5+ci)Ymx?veRwXKQjqVw6Kv{qa9=D>1ZwBttD$s&bYp2%iM#v!3ZL`d^_r
zc#|`8ZOb1YXF4C(QR%M4y!SSakWN8fCe5ocB++7PQWT-s$rCz|7#>NNNb69N`jZ3S
zi=ANC(-*^KO<uQwI0^iGl++xvHj#?4(wxC8aj89v|6utP+z!e&T2K&??ekCl3ur%w
z)X1v+zLw1X3zRuKG|k)gK!z{U-X8+9{vb3w8rcA9dizWOQKigMbLrHk9UBwn(Z*dp
zcWYv$49C9C9TG=NuMIw)G~>oJ70nOAFaMoA-%%WYDgG2{s@$NtqM!2XaI=&1GR4mC
z<D0?Ze!iTC;4?MR$1YVr-3*?}Fu?@P99~!8OnGa2EpTdi)6T+rI^(?Vp6)K(KmOb8
zhlYPt^U?9i+w#2};v0IQhcfPU2*&*faZ-dw!S$`eUf+@~Yhau`=|R_e^&QM=ZINgm
zulv_20-KN=21g1k@brfgn4p`ug9!ZxqO0wm*Jnn~wZ%VTmQo|A#B4by7nfvVJ77k%
z|DBQKBS}&_Ts*t|7GF6iKs73Or@T!~MHR>!(gPE)2Bw9L=JITDht?Q^{y%w9N13Ox
z1q!brpr8ZjT`Zj0aD<_W99C9Yvcz0=w<T>62W#35APYmp81bo)gMvg2q%QhEPB|S?
zK%oCXEExnV$~$JK)VDMU{b=nr%MuDNThikkNxj3?di@2t_F)YzWt;)|JdjOEuc>E>
zDRub~@@$HvI6H|XFcMD<J|OOcpxs(yMY&-x+^G!JDzDc>J<B+8=w$?g9!L?T!bJhs
z$4qsRku-&kc-_geik=_jcYa5a^T98QskQ^6U}L=ObpAMBMM738&h>YNM|egPaK{H%
z!fu()gkE)O4uX5Z$Zq?Ft#WK(YShDJqR{_E(4Q~Qn}pl|X34Mw?@H^zZZng^asVqa
zYZ^;{efZBZpTY{Dcc(4zNr{#G7+4AIK0<{7ts&4u!88sK8GZnY;1DFY?~JrBe5mjL
z%I*YNHIDJ$p@jIqk-WdZHddVzPtE6eR50<0@p0dq$Gwa6e>iiG#$hsovHbncO_m{z
z4!EG3fl4t9j{)pR;N3JSE$RNjY+ziLgdckFZz#Uk=ji&Ou~(nfzCWc>-2j=^3b>*=
ztP8azrIDm*5ru?hPN5`0K?srBXC~N$&9<mf{YDo)G^Jnay-%uO`3pb}BBb^G_xivy
zfPf5EdN{toustdZocIaio<}fe?gc%UWherHD)F0wK=}o5@fjh!7{IAD#095>Chj}?
z^_nwKO1=2q6UmoTdz@IHAL|jIMH8&o#KYPRj(|K{Cmh0ax#n*m$dbMo=V1tT(JoT@
zq>JmIRSVpYSKD9E`v2S=FNtYfo<#nl0jGnY4v{M`5qEgJ+&LtZ`DTC9pO($}FmloJ
ze6IADs)*2lNYKxRrjQZK`q%rSD6R^#N+?McQ9=>Y2(a%cnM_po8YnLK;Ex7jMrKeb
zkOhG=21k^=iKSwGc?ex5hb?_|&Zhhh5#&QN{7rYe77o*9wf6%swe6C5X)ZT|q7G6#
zYK(1>CnfwXCnu9B3(ILIa9F+!SBRhfMl6_`oxM?@8{W3UwY-jIcNUlZgBy%n^}4;9
z<>d5ZG<U@RBGMVpvPQR14<d+!d1Z<mWj8qGL1_Or#zWTR_TTdHjfN*iwXxlc;~G#J
zkdiLR<?@7ThlcN9&to!3s}1H_3|}*}X3bgfTL(^S{5C$Py$I%0`vRiBA?4{?RK)$1
zCcWU63HtA(sVKOy!b=UtJF)AsyCnxr!PANH-gT2bG1cIY-$>y;YM!J$+Eqa&6?<?<
zx+JbHJoOtqoFqn+DW1Y9M+k{}<+6Y0hc|D{TAB9?RWTAS<IDZJeK7~l&s{mtQgASp
zOX|P-c-1aAmGVQBvLQL{Eeh9?fX_W}rE#8c>?eVpnpTd#k(faBWy1(2vXnFp?(7GV
zTX9`Biu1e7mpP{q<mM0+<;@7IrHZ2iT@)-+UoH~eOCq81eb;YWAxL;E`aL#gaXZ$R
z3>R%nC6@~(Q26jK45rSyI5?)JmhaWd*@|nzQn0+yR-(!ZSgfGsA*W^!<Dt#$rL_-D
zjqCPur|<MORGsq))n;GQ6bS8*IJ^;W3cciWxgv82wJ209grdr<znxxVhw8K!{5HQW
z>XdOJBO46`XW3lRZz!h!1t+0e5HLzI>#=s5onl2OgiCt{%1>ahekQ<E@%r^U7Rj^1
zJBJYsYunkA=hr+uBj!h}#9@)W699d?uT*{4tKEXHKo@LCuu4f9#HTU!td_mS2Y6e{
zwYV=%A`%$}1?&@y6FjabVVeaaEE4f0!6h0Am=3u;L1((1Uv1g!R7ZqysB`Ef;XF4N
z7HaueX=h4d`1DdcjJEv6hy%m_IKZG1E>x>emm<ogYVA4&_B|8Q9J^d!o91Dq=y<Wt
zmY#HY{2^`mPAHzGu0%@1MygTjMtox-@>OM`FQdXur!n=F$zqH13r)v-uz-&!O!^LA
z$iSZs9TXnyNyi9v<rPh7VkukA_mB5F2EsVnWh6?Q>{?oXu9#173WmrbVpT3V3fXMu
z*LMFIUsy(qb0+-)CtW17<KppS!96PSR18Mk#l0z#K{90sB&1f27sjqDP=P8cArTq^
zla^W$kKR%ypI}xGtB`eydMHDlfz$UAP;s=ROT{eRpl>E_R=Jnj#lk*UKo&6^Qfqy~
zJzfvX!U;AbetzQl<!Nq1(Q^>8502mN<on6>u^tR34yEvfj-6OV`eUIicSZ?xAWc7F
zc5_Q8cSlkXfJe=pP6MKZt1b1Mz>J^O)trg7>}xkqMO3V!3?m0ei}^z?z2|@;E~vj?
zKQrGkS^B}T$c%{SG@Zxd<TA^qZw!+z(f$yYUe~vDH$eGQRc!NyrM%?MZ=bsMQ(Q%S
zuU~M+I$2&L2E?cW<L}*}Xfw#A2B#ELqm1u!M4_4NRv{9i1_W##&!}ft8sNm1+nfIc
zRZnNp14Nz`u2Cq1xbVdmU2Qg=xU@keF8JL!U_QkVyjokdPODY>ytfeBTJ!_zC#<HA
zDF`1%h_xi8q`>-@|BC*uUB}ZyQd8{twG_{Mv!m?raLv##P*|9228>@%78$G$ricyT
zErg8C=F9-Qu2R*=-mD{YxF&CdRz*&3zr}!m<W~iDa(IiyEcuI&8{vl!f)<zgx%^&M
z+5s%2F2~`^X$w+J?nR@7iL}hjsQE9i7yjniU@jWq1m<{VhUR)x!*{P&64~Y)XteOi
zczsA;!>OnI-l#F=d6O$Gwlb2E>?&SqQ@UYjgd}<B7u_4eqmx;@?qI?kfmzNT`?E5s
z=Y^<sf`sr{Bkh(MovKg%tDWO7uYOR*814b`cHJ>zR$M9sw}z=Tx}8RH1|?cgO_G$D
zNnGWciGMt8bT$ACBO{buav8>?fA4|%Vx#`OPTwUoJj%pzim5YiiIQEQEFk9y8f*uE
zT%}Ys3@nI8K;oKxU_OfgH7S<2KMFNVNg%8LuC$GGn79a&!ok5DfAy}B9nZw(AFSw5
zRxbUz+2Cs3UZ|Dw2lX^LGZWE9yT#_{wf}>c<JI>e!Rn`XsrP8Nts6Vyq~s?|hQ=;C
zV5VFw%2(8B&>sYZeoLJ0@RGDT-;1g$Fi@eBDA8(;fWwHWK@)fp8gOPsg)*Ay6PA3h
zHo&21Q`Ns`XkiStX(2qnKrOt|rlQ+l{(fBmntlXfH%9!(OhpCz_0L_ce!IiYOSQJx
z&JIRQMovz*$x)&VE=#@729N8<Q3PDz*nT!!sscm_#0OIoll$|WyNiE+!-2<`0v0_^
zN=oW$d$ZH6$Au{tLzGZPU&z-~Cf$3Gh=s6qOGr(HJ88CB9HV!~VbNo3ejd92ks+ay
z)kH#qvBmzqvNUq_9{vNwKQt-|!ibx9>+_qeH9FmhO9ifbO=bFe@eFRc!y#Z`&Ncea
zX&c4CaBW4rUQf-Ek%?g)>`gRzJ`KPM@G&=`!hrbek`r!_q!ZthcGYF!H-SX-oLkd_
z+R03Iwlhz{`x%T67mhf)ZSThmhu&LzfMdukHu>lyWwC11;4l6)zLq(3cGmm)dJ8DW
zpLmxa;v|;2>-k10T-%!zgYJhO3)+8OZJh*WuSBeOX{&XDcOI;@b*$s~jj??EK(@cd
zpP!7zNa;|d9e+a}j73V(7=0cCv|(AhtN&PnF+meKcxHqgiv#z->rvk^E8wI@2L*fY
z4*s4!t$WZ;63K_AxjZl3TFxu3w1=6S2&_mXC@Q}9XaD&4RZ40igS+uy;>j$vv@(}!
zXh?$S+e-&{7FJf$0n3LJ<!ra&Z;B`;{}4WX46&g9`*iTNhW`XS`?!8@82mo-Wt<Cv
z0M%ot5A<mJr`#;{mBB$4guW;+^+1GIRQ{vW?&AqqRCB*Iw!#m)+v)U$$xZhGSb)##
zrR?EuPKHPwzgR2B$LaCX@CbeHhygh+e;!uIBdJznPJR+oFn8{<;u_*TX=G<b8caUp
zd9W|v)?I(0ludS-vG@#wL4p#O-3M7{y-OF$gUMi9a?=(5)lY|8??>d*GdfeK^`yT?
z$(uxG&W7U8egr0q=5{RVm8So&(r(7gCbLc+iA`b*7RfXqkUr>g`S(9#i|CFDkE1Z&
z7&<HpKR)Sx{f|G-8z8&0p7(1g(wRy(qXxG743eVg?;08RQx`~u!G-0Ky-^CxnSb`$
z_cGkTNd_Z18(nag=pr*s>@5|Sj}`rw7ndTrYM!?{b1dHGAMk)e10koOk)GlE9zggk
zaV$bb41^|UGE-^uO>q~kRXFX%q)`H&y$7jNm?yT~g&YF9Gpzq<d|z-XF>ADux~-75
zhocj-qL9Ek9?yx9NHu|z(0!ky5<EjtuvL1a?i^wu`)P>^CYv~>lPxp;p=d`2xt~TD
zPHwTmAn$mg?Bz$i6-P||by)Va5Y@=o^E_IrxqonSzdg<-BOOycx2x-Gl&3ztsm&2B
z(&c1Q|91R#-I`&|ExHN!Kk<?CjrvBv?kJhEx=LSR#{00^xW<6~@-dyy76DmdnL}>z
z^r;2xUwB;(-#F6k|HaY-&6*~q@2SzRn}k|3R#@xBRhmd<P|Ia~qVw4O(i82yTBFN5
zn{D=oiulx|zYUX7)&??_3E$L5m+FozF(^2b9pvQrj*N1xj3)DnYGOr0CsknoXnL8o
z;p8MEDLXw6UPFz;#c&1VeN##%(Qp2G#v@SQ-E@l;`7W}_VioGKlGbUKX%uPC$YTu;
z^?Qg<_19W0cN{E9KSV^F)=_GELIVCYZ`A5hp5hwplClih(=nPF*c;O<r=OFFIzIyP
z;cPO)x@FkBPl}H~@-zbGF+YO|N^+D-KwxVZFZ1(%T`Mf<G+^G<WhSB_!ofJKG}Y{u
zKIUP!)TFsJ#HV<lo<TjWP8pQTgMIpl(`&?~aZ1rXOc%N&tH^9g&M5wrld(RlYZ6G-
zQ~FtS(SJyR-{lZ}kfi`_-0#mWu=r2s@R~!>NMLIV0wdbZ_bg73tYPU^rRol*AtNiW
z?QE%$_%4j|nT_G^zY@8u!6?Yjz*59vx~};%01|qoi+Ls(kH_PXbO4Fb$i?Nq!#Tj(
ziMWjT!5ywih458go|D&hD-E9a1uPp-S2oy%1buQ|R!SgNU?%8bF6HRx2>1oi3c*XE
zMlR%e732%WGQg(vX417(LC3}(LeQ9ctGt>&4bopPZuY*3<y@tnF~<dydXHq_@vnzT
z>}LpO(*?y_YfW~A^~}t0(J=Fvk*C0A1sDi^kO4BWzA&E)$q;#q-5c5sFVw8cewF6(
zQ++S*2yT+&_5OVd5G{Ka--wUW(_&#B-d(fOOPhj4R|ymSp9^q*b5OJSYk@1v!czha
z`qr{tTN>K>>1-jq4;A(iBm56^2!!T(eVt!p0OgST*-{B83A1Uxsj%rh;FuqkzpPjM
zRd@zcrr`%Y4wMf=`f+nIn%xcCLe-WA8E-CWBO3V}tT1>+AtmE*VGf&>OJG4l5xOEk
z`lTNEV~d|8GUjx?6iwF3&3V~;lCD~rvUag49q`$^0d+z=silK-$|Z<Mf+w$luMT-)
zpbF~!!aexMU1N<4?txCs3PrD}`^%#2(Fkmz2#)2f!RM!2-JRA#q@(P5(8NFx)Sb{;
z31$L@rHLd|71Jh6%oRZsrUU<QRFce>hyTXa8F5iBnrh}h{G0v|j!H;>pZ+=H`UtVA
za>v$lWe41FspWGSRU3p}K!e8>pdOH4?;#TsQ3!8&oiNQ-*2MCvRcQpy;D0m<QGqqZ
zg?Kn?{i)Yr5*hzV>FA;N-)k_MKpEkG6fWtG`(r8Jaby=uUxH?462c`K;E46%2|$;*
z=>(XzHc$q<#Z=YxJc|_z#m#6P0c&oKLwmx*``1rQq9JBNR);=@UO(6z3J%=P$8rCE
zrXU~e^k?gAXo3DItk3Y6M)_bej|TqcMZ3I{?5?sX1rZ?;HJhVAF4}4@8hpmkF6gDj
z&sjfnvL@yRMxSFZ{lE;tz(A2OwY)ey#@8Vr_D2%<V3UR`Qt#LVWWhbZHfwVvA@}W$
zSZ0U|A^e1Na!42~R6{FMZg_}DtF~CFUi<U)+<nCzXIUc^L_`>mJwZ$f+<tM6ey_DA
z>Yi@2D|3=Iuc(2Hy%=YXbgf7r7mtB{xjg*d2;U3BOI$j0kM8M*ZI)K9O^<|{2Wicu
znyY@bkHO&2u-12;U}W|^Zn6?Cr<fd7pQxLNk<HTi#KJ<pKKKcw&m!Yf_3PE&?06oH
z3JkO(kgJeY((*m$K%^>~Y26yim@jod+bI7sjwg+Wl;}sEm;XIuNEsr9-Nseta@Gaz
zN25rD{7hIdoPi>5$p(huj_F(u0#_1(NJVIq%_1i57a0beI@k538{8@H4=xVfss<Nl
z9|YZqT%H#sm9veqpomkg>v32J!(rJ2$`88*Eg+M%y^^prFQ{trI-`3y$UJ9Il4aWq
z_jFw!8!~MWZ%|S!BcIl9yTnj|qGpKVsgH)P>;+OF_d|Uvp|w<g6Ji6AGc8UQHiq~H
z_FjkAP+JrlrsrXJhS3BCsWR{E5N2zoog|vkP`b1Y#7t4bVX{n^(!9?8Xd>fxM;o~*
zG7Td4B&VfhsfOVF)PvMgiGBR@Tb&Vw($`l7t&6nuR#}6LmUMK3tL?Hpv|Oj;hOR(!
zZ_~F4#JL{a?bJ*Y!}sF;U=21?l2=3+Ub3v~FI1<OE&RAE5o`|q?o$!ZGW^WaEoUE>
z3(cywxg|S$kf7AE<UIfi;}b9sv6(GYii(S(twU((KaKqk>!@M*brjm+dTeA>!OZ1u
zBC1m;{yShUaGg4xiHhzsU8T0?yLV>a4lXY*fiSG)6v!uwP1vlkIZHbhgRpmSP&g)A
zO?axiLy|>9{wYY+G7ho!0|_>^X@?n?4mf+<ZB_1{FePfQ=nuALx6``NaNIXT)^uMF
zrY_7WBjy@=Sj{@WuH6ACW{c2q*DEWaLb>&;h>wVBrt~v+>($NgK#0>?fgLx)UJrT9
zIwt+AqwmPW%~V-ee+3w~a%az#ra;tZv3u^6|Cm}YK-rBhqF??51P5P50;xHQlG`Kf
z@FuI?Q_J?Pjl`x2ID-)&sB25xIwc=n=_N^WZ)j+ERCaS~$$mUtYd<-xFWkCF#c)W#
z6Xv6nU4@53o-vX{z5~pbo|o%!F6FV9F2z0_aE@CzK&|otu@JBrn5`<%XoKJK=kf6>
z_C4lw-t<u1<mjjna<yh7-0==9B|=;){tEoA&HG>a%+b>J(_j@TAC3$S#gpdx=d*cK
z^dr>mV?ZF~kBSmAc57ksx+ac<mCUZb-U@x^Zm-c>nmmtB^^V_(&|D8^$oTm;O=u|p
zg5D|(%$0f?i^a!kuRCC?Fq6vy?NVe9Hs>Izms(}*Csqi`la$6?gdm$n1UX119nVkO
z`$#*Tl;>i90owz_&yvp{5Pd+S^mY>n_bX6qYd2XWWay~7R9fs;q%3}^bU&R*nB)m1
zB)T9))NZyhO-+c3j`hC2qA?~ImJFzsIbe>@t~Jvw_UiFex&cc(p#5kkF1*!BB3VnS
zSpS~L@PRVb3L?Zr4>8UI_)>+i6(%;N?oBOmMv`kFv$tBlXJu?GV`P<B;VP&<p0p;3
z{2l@<GmZ-dk3-u*Vwt{`Iv+-3g!9d@)j_Bqe8}A4Xjvu`NMNIN_{=6QDtdeI^XG58
z<C+beBz6|T+Q+3$4h^HjAeGxLey{w*H_7qMnyY>Eu^#k?@dI4lx7|k}?FbVH9#E|W
zB16PHE)lpZH-HNeQ0rMV<Wd#*P+WBk95h!Twr`mo_zmRpZ9yiV!>{U?T}y+uSQ40G
z7<7f0#NV^9!dmzJ%jUH|Uyv`!EQLN*KfeI?(uEpj^NDnc_}pfz&>TVk-02;ubm11d
zS2E39OOD2Q&`r#Dx1j7mO^IOJe+)QwvtUBEzk(S!gjTZ1VR8tTLNA79IYMHHComQS
z@qXxR2Uh~s&Z$vF3Va1zMdR0)d%z7KPsc;=Az(9`sP(&Jh;jZ6B^R*3o=abu;%ry?
z*qX4#Ea6>+j{x+!7jR<?>0+caNo)?Z@CLC};O{<H@tbgD95T*5$yjb1q}Z09Xt4k1
z7vE`fq(nHaCBkGAuF1?xGQQeNK6PB-BO9ww`hxXt!=Qoxd7=^eVh_hU*CbQ{At1^I
zU9(#}C5pD82p|jo+510dO$ERLgzCS62zUuecZc*mTM@QYJAc+>tCCZju4rC9uweph
z8xAr#mgrb#i6cW=V;AyZC`@=+bbP^AZss!324CtAZjtKD3_SKZYXrkb^PS)JnQ5)n
zCcUAd(0R5q#k>%Mh3-ca%yWG?nAlZqUP7aBd=E(#Z2^&xC)u>nF_6zYT(hgbG>8(L
zob2<?7J5KRJ-F0?lMte5o%2hQFf<&yOoil}FgJ)bU|NgZhcS*g7*v;RB(PgVW4yNn
zVM?uYkM}V3F8r=15KAt6*gQ98vx!48vh6<@2l&>00h2f27JtFNG5R|co5j(9A-^#&
z8qfpe)-_yXV1T<#dcdAl4Sku+@)+C<Zo$kd<IUDOzvNDZa!YEvwP-mkJH+@Q@!5WM
zV^|qg=>eLeOHud}EYdI+J9hJaTO(K*-h_FWih&>9XP6k+#N7b7AxFr$md*#UYGZZ0
zbjRGKNlP<RgC-h57s9l?@MUt=d_YO2QCc9hQ9-D{?Z3nCwZg0z1|bl#?a<%$ct~2I
zuLYuDo@Yz_RDTC6h0MBO7k~_&+r`=@==Ei@fg#$fDWR2d2*f{^Ixj0ZCFU*D>p@-C
z?uebv<CGsK9;6zaskUxa`0zZbw#bx*V`N5dKU=M>Ub|VWMOR=!2Wg&%!SHT`I$?D=
zx|>sC!B0qL50l%q@-Vf#5~?-*QCUvmEO>v)oE)4gzE<<TGC-C6PGp=EbPT=3zo5`C
zK$a>0q8^s!UNKO^UZLLGD-d_WJfR$<Pa980<DYrTG{Ulr=$SXmoI$S2_`=NpZ-RY=
zLdJ(6>lX&yosJddX9hE5goPun3L#g6_?miu7AFbvR`-7o=VfA_bmZ!dq&!j%)8Y{7
z<cSQP3#tCwU+lf!937Qx^h-qh=ug4Y4C<|Nd9D2=klXFTVl}@M?`txZHm15Qrwmg=
zzd$o`rZCFMXs~i5ONm!ZR~25QJmk-ex;`^4*`!8Zagq?{vopx3dTkqFs)mN|(ngrN
z5&fYG36dl3eEt+#QJs+IKh7;UgV|8t^e<ctW`%O!n)PY*x+F?QT*8{0+;w0Bvmhq_
zoHcZ@A+lDcH9d%Ts7{6IG#a;7r~CWtJ6OHZ&V0@Cjhla|O~IseR<Sagc2cWOpLHW5
zW2IzetE4qqCN97jl4A7ZKL_;8&$gd{f;LLq>Aem%UEsVgitrc8$VgZPju;AwID^fU
z)D)m?Pb1xbbWVSdGZfpg-^Nf>hz!`PaYl|vzo$9pnRWBtVBoKJ%K>d+Ry8#hI7RM9
z*Kc)qCItCcLB2v$ggv)6vS~`Gx1c`&X1))dT(8rOiMpQ7J&uI`4SL-VQBkF10AZ&t
zA`)b&!iFHryx99Hr`DCUu|iq@u5HF6ZRQ$iZ&xqH3SpXJl2PAHOiWhtV1%o<C7hh5
zb8p;P=XEu=xo!bk_yEAsE^0G=$HKtG1R%+5^y-)<{rd5wl8u~^n3u=0dd#{GJOry^
z#noKCeB_NdDn{gHA&D~Qcm>~~lOcC6mRT#vzGk!|S^ABjffjXU7KV$BVrMU}j&e#E
z)Dd|iFnepjI+2u;>Th3fcE)vaZ9JsbG1D7rQ*<z%oVGS17~U2M^2KR%=ojg;*nI-#
zqqxY(1cr+W+LVJ$vKFhws>LElBhlc9d@7mLHzWY?X`(vdwC=~vIDvzr|G)5`rS8(T
zQP)Sn+UUn(5$pyw4?+wQL;uI{c)!#7k*E8!=;oO7&~k%z;I<J>6vluAjMoF$Ea9(t
z0{ouWCO*0;Y{Xc5{t|fbT%Uv$)KXe@VfaBFL#N3@u{r)&D3s|16wWS#(IoI-1nh(N
zE6?wVj>W^j{x8Xt(R4O91r=;vBdM^Zl~qpw1gv{>8e;+>519UWg2^TjEAsDPE<g{l
zFIe=Bb2G~yh{o`v-mK1fxwkGJqHW@8fZ_h@*Ds9n)XwB<zhV^1f-aCr>;?@=plqrd
zhsa6&eB+1~0$)W{&-<V;Jr9ECP-5+SLs(N&6Rw^|0TBGRK4|@TiSQ6NxC#(CUTIJ5
z@A=jV@%JtHlXw^~$D1<#dQrrZ@+XCg<Lk?ry+441%iGQh(SV2W3`{Cajy`PvB>f&p
zbw~{Z{%s=e)KC==d%Rt%tR;&pRw3~R<G{?GmY|}QX7A<ylxYY>EAalMFsKI<Wst(r
zx}B{7^_Y%2(e8@F3I0AjCmfBC!*9c*)UTih?V7gH+RQ3T#ib{fN%sh&(3eeqnQF<A
zk4K>a&;*EG1wAfFvrd5(K<yjN+)uD;W`FSGa=W!qMfab)vVar6bvap6rTE0ji92)F
zZ2Rw!!CNEXzv<ru8zcHibwLa^@TdJ?l26qtyHq@&s6Y3#G>>4B+y4d5x}9P)%8l=#
zg--IllU9q(>c3Y0W5&;(*L(kgk)7RYL$OFiHg9wcT)~$4(*OcO&fUrKPYLLeEqMvk
z27{RcItYJ<fBpAoYd^AnW5n`MNMCx0!(6<8kuAuJEkvQP2SY|{%yvQ7W-RYV$wXZh
zJ^rN5blbY}_^^Gl)T|A0Yv>+4_45OK?V(u$e;1>9#)JB0p*G`x{plwhCe<A&2m9EY
z>K*W?`9EdN8et0PsVG_zF5S&i=)*)lR(~9v*mfz#Z5Wdt_mO_7zBLqIx|B)VuT2hQ
z>Q_<QPhQrpNsfAe^%X)1ODts*XceZ?ACEkQ3rtNyA(XtPNp-0l4fio!L|NgYO3s#@
ze^F8G^WPy+cBr8btjKis5?D37;R@uif>ak|WRwlo`1-|1`l04lco&P81Zl=LHN<vb
zncc~L6zZP{5`l!@lkKxLV+syUI6f4Lw5bE>k+Lg;`rOF7=FcpRX{K|A=K@gD&2TZ%
zuVT}QU5c2l#IFSt0hPs3unO0IWn&-C8b6DUr8`Mni*)r4l9tQ={#di{uD-s26q_-p
z<L=lC4gYa~5)CfgVB*%r=0JZ92`F}qO=@L?=P7JR+^JR>8=t^YoUTTv=G-uMn)e$9
zrApQox9{b4KUm75>~W3j?oL<dca?U^^#C$PY16j@pR_ym$_a$DEsxK#v$Mgd`sy80
z9TB;T%ck{$#bX49wOXy>cj4lZKiU<2naX7{n7B9BEWfqeirsS76cZGM`;P_rc0j57
zsr-T%DD&NyNpq05MSS?fU2`os^AA!`Vn}lWaVE0S>{uu}A2f&lWM)o98i{Au!~DxV
zT&GZA9hY|%oTo2lt8*8bTp(?kGFPF>z^Io}uA%1jymSVF-7;ifU&}a36=%^I^i77V
z1T=jVpOl`se^!{w>h<k349<c)^EFF39tuud#y0a^3Ry1mQ3Z(`_>r=Fm;J+w5lYMS
zTufYq+a0xQqcCh5>IHfQ$)RNsvPijD`nqdAL8<09v^f^0P#+|~e*Y*7^y@Q@RZuk+
z)#AP(2rx<z7)k*-Y2nztk5Kr3C#R=5e~rxykEJjq*g?qE(WMj>8@2k%aHYU%)%sm9
zE<PLs79=O4UBq%1(4J&4ldNtwS$QbA1_k>B>m7}NU|*}->vlfTzE0K3&(1qXrT@sh
zf)Ai(gQY6tVJ)`!f!)~xzFNDv(KyV5g-x`NVEpuQ)weCA^MrK3@~9P;DEF=*WDgF7
zgy_T1(SM+(S8em(xeB%G-Z;wi*cen0{m))UqsAgL>M+tEPv?VbVBY(TcbL6}f4(cX
z{kEUnE;NYA$Wo%fIy3_Iw$CrHu$7m<x<?JIEsV{>)`*q;%9eR=l5|SIX;)=UuzB`=
zyDarP-rqoYz)mydmin#=-9cfum?)f*jJVR_d&1e+!(I0;fCRAy@6XKWmM=D)P;)(s
zap2>esSI)KhDwK(+r1u}=ZC+*z=*5wu><QX_@#MY!1c*tY6l$pwpAY;z*_HwD{8Fb
zMkcmHIuB+pfp`dC@3fG+j9b%qL!!UFxH7npy``f?5A}Q9d;z)<9*vlhfrWvdG3Zb}
zhsRV+(Gpb39EMAP+GVA+kBw`9VNk16k1510)p6}amkM)GN6+MCV6)Ko&DnpW)4i5n
z*8@JQ&13GrQr9ewFK}pZESCjVO->)}K^Ja>I+IsX$^e+SC@CpL*<nYjpX*V<lvU{r
z;_!&i_1xvH41Gc4A4G6^5J6(0Q=H?fzgiquPh-?=@Se6K{iZn6s{fON&UWQj`-XE@
zG`f^s0+AZ;L@6!Hp|~pRD7Xke-=DvgKLE>x?VO2?jSbkChkS(YAvraOk5drIuqXA#
z_}3!0jh4@K$5UB4oivG6poKsjb2Mo?)bL9<3LaO!8I$TIBZv5EN;D43TDz^eWqaXf
zdT&Z&(?;O8Z8;mLQDnz#Z-G{`*h~mSX}uPg)t=Xi>(9>MZIS2Ev%pMon*i~uKKAcK
zN`UTCQykUPjl$fmO2%z~Ae7l^QE<*g?k+3SDKSmrq){nDu8|8?{D<>RZHr`hY6+Vo
z#O4}(!)p7kzdWS#C>p+AHccTX7N1~cuYq-Uy!}i0nX+2_c!P4Oyc|&FKcDcppMw_!
zPtx*R-ZD3-%ocX)u+e}2O#7#@q2451;lrg2ROr}xuZG@+zkq_u;)@(TeM`;qth~+h
z;wt3X7a;al8@hav$BssKu<yDGYifHhd$!VJe3{?h0HJOmGWI5<bS$hxqP}td4ndz4
z{b7OP3ozzV2Flg+PGob>Ga{kE==uFIE&p2Xre)Sjp-73Y0rc`)x4sL8+Ab$R3v1y0
zwy#~~JRF1XmB5N7BE68?rK}e!v4qT#=X=h*{DO({-ed+0BFV+d>4);GJfGvvUOybx
zk{wB3g1f)-!Q{|HvhEl9Jl}gwK$Pm<VeF^g{R`S-px{$}Yx!h}4G#@_ez#h|vGu~$
zEG|BTkXPO17bDE|{GEYllCp(OC!8vvu%ZH@SsYvFB8nZ3>RchqwG^a*wWZQBT@y%3
z<Hvt<*}ZtAlg1SyOfcNGkX38#_%~ma%iuL_?zIM`V4li!<P(tO6-{#73cQj+m)%i{
zk9297lCu~rKYbl<S%AHNDf4#o^aN2Ten?FhC*UmidI8#G9>2Sqn%;R$K62X+i6x2f
zRy&6G;>S^KuVYM04m*4*WMeV-Om{7-y49J@E;Z%;rb9=8=`ht$D!Vr2Faz;)N_z`u
z!in_7Ugt!Y$@^sOb;JQN@~z!xU&&sR?V{tNlwQ@de>oCl0T+wG`#;u}DF>E~N^#c<
z|0#16e3V4kI65~Q%NOt^0C`c(G5*2i4zHn$sb)x=NXQ8Ob4w)-gt9xF5Ej-$#(h%;
zlvq{L@t=Pb_FFJsm2l^5tO+D1hMpV042cCos=iCx`r@&;jCw*ZtDshcd$cyLGu*Tq
zD$03kZ)^;)p3SV<%^_W!V1p6&oBYqJz@J#$2@fj=g*xBP+g+pVTJ*-L-a%ejDCP3I
z9wHA-)UcxAeBY;DSrb2{;tE_lb2^sRQg}LoqaU7XmYT(4gG?Pu?2B~`mM;@i2^Dod
z26dCndpOCFjP0bm-FJNmb~31NKpQgzAg_vpIEp}Q?J1{tY821?xD*qswGm||c@I$!
zGqc|{Ih{r3N!>q-xEeKb-fNag+qrhM)9=)hBSoA^%b;9UXT?bXC+R88>mFE-6k@vi
z^m$#6O}2^$U7$XdTb7%D&8v5*PBQQWk~e-ol)eM?QFR5TrX&K(HccLv-@x38Jlr6p
z86=K`Ec4;d9#>vcQ0L-0^g-=mQe@FMO_;UdYT9;6LE}FV1p)58HIP`xe`EeD(JN>q
zOOPjYd)--KEthS31-eM3F{|KMRJuH8Hpf%bn`9-<b+}s7suI+HLj9^{CQiL%bY*Kg
z1`e2EdlgO^+H|wf>maKifN@nFpbct_L75<_uF__OY^-uW^?1w0$~cnE`;gy6{|U<@
zWy->-?d!OmL8%3-v3DzUyk;stF3=9>J*XseGI5S=la~-D)B<5%TwDwi{*jxMHbSn&
zW-$?MpY{u4Z02>QE*RJlc1VByit}s%Qlw@Wewyt~m=4x3RMga<;X;%ADTcACl&2mL
zg}z%hngJ4>aIh$cP5N3%tS4+B3u&UmaX|jqe!Gh$*r5fmo2&4(lISoAX-EY9bm9ol
zL!@8N!}^H?C3(jHVd-Ex&t4C~VC#)VL&(Ee>>34wdOq9@m6F$HS}9%I5b)z#5{}qr
z_!;<hK~wIK96P&bUXSl(FghYtF%`zn&e>WkXV&G_Zy+E3A{@%&b`__(hI>3QmDwk-
z@z9uBu*d5I*e>06C#nYI6P3v7g$4I5&x4g&V=>O?Z6#mPVx_>~FPR+HV@M^R2iuK9
zz#Qd3cND1{Cy3Sr#f<5rL%ZE;2YcnRq+%R^-;J4K5w<rv?1;RS0Pp8Vj9>QaEt7-P
z`DXagaHs|>jI|hqao_Y?4L8H?2(MZ8WvCnw`m&)aJGEQwe7zr3Jtu@K;y6{f0L=R~
zDOm$#UGumsjlSjbGym2N;mM+Am$OaMO407ws<Qxl1cog)H+LUS1QjJEDJ+NGM#R`c
zB!}HTDrt}?2&6890?VwpNMO`H$w*Oc_4D0B)rY~T^oLWdywgNG)M&QCMo*3UntGB+
z-_F-O82}GgSNBZoWpGrp*<p4!6%`l5%pyjSCZ+00TUFH7W@uxhqq9+y!^>&E2E+Cp
zk=N}QLG$mj|LgMVytyYgi=aJ_lH-&9$I)3u1-WfenC|YBlnw!D1c5_$cXxMpi*z>#
z(nw2(bhk)%mw<G0H}}ag&J)9f|6XgZIlno_NI+7Dyo2^L=C;*h^4%!xcXO$6@=-vt
ze;=$uaY90Zrp9eQ!}HVo032VD%qaW2V1GnVm!C_z>5z;<hXF-YLZsN<3YG$vRqAfw
zCE<AXegBxM^2uoeRNByNz{_Qxc_&ly^O8+<j)0SLwTjRP8WXcHbsQ1r$gCKEG0@4D
zmZYj@Z)iTTMyEw$(^5*UGSwB%GLwwyHCL_t&HAtg<cD2q$qCrbhog$G*F5Bg!38UF
zFuzCy3E5pG0Vbj-4$LWbZ)_ztyB#q9jGklm7Rh%i+;AP&4v?NM_$B3LhTilZ;oQdt
z^|JgY(IVfCAlVDd$VM)QHOD0!=3l&bp24XkP2c+vpk9MvyL`~|btTERckN+EhlXD7
z^In}$H`@e7RF!@GL2SnPzftkvPeLO5f!;tecYgde^MRv{p;_r1<a)?|tn!st)zf)f
zem@Y#M&BOG;h+DD@X+l5fwQzM!UqALq@rE)^TBnX1VkL80$kIkH~8U6zTG>;eJcLL
zOmhP&JFd7KaMs>vR!aW%9-CbBap-wodxX3~Zkf{?$c>TbxL3lG+wX{*O!i~j{Cqy`
z(rl7R<<t8#{T{86DXNY%i#42EBbgH%C@*ww(<|Azj@q|^vm8VDbm9w_jGnOm7J-~>
zb3at4Nwc%VVD;GCFXci%psps0&KB^(5(^3pZ|Z+v8=zU<I^%WH{4@BopWzf}M$^3I
zw1~S;yHwI$^HAno<yLU&OJ7JoD79QYN8kRU=h-R_{krkX5c`l_`~LnO9-RbZWms<n
z(4lq>#^S69Tqe0<-)rx8=zW96-q7Bs^Gf=S(9Jkl)7(4*5yMA&f!<d-$Rk4Dx|WrI
z%{b4xmphu$8f@-6=x>Kt?*6IazY$vMj|2PHAE9RJUb`T3enXf~GlGvm(y~xKrwE${
zo7C77#G~HlF+(8+cBJD4W`9iUDdw)^YEel`&Vzhsyt>H-{Jfi&z5aSam3S$9%q)@v
ztP~}GneU;n__%l(L0GBqy;)=7d<ZXLF89pvz9*E_)P0X6TIq5Zh~t<{u7?Jv0Ra>S
zO7ZWh7bqd^YFKlE$4s0#yx-f|jgClH)G>_u;W$*mv?4j>6}~GpzVW!)D^uzSucj#x
zONUc+f1(up_L5qG91L^CSRWH`UvXE4{UH5y+>FY?j{zsnK+CF|2JWNQnR&v|0JbW<
zt7F}{B1R0Jq?EmwvND!BbU@;s;ND^JF@3dHzt(*BtYM<IE&&3NWq4d3qOEwo?Q20K
z5`1pCVMVP_s}Q@~`{(q}*@u~u5-J26bHY`YVe<;SH6NudU2n#;=<~936EN55^k<*~
z8*cIWe?GA%5i?VWwzNd$na%wRw^VFN7XTk;$`o6ej;o5AD@za99|3{CxMBZvqhVl>
z&ArG;!lVpQ7HKnfqS&`+i7(Bfj+g*Wq?t6>obFj*y5`v&ul{>+Ha)gaP{toG&d6NB
z+Gqf9F+*;(-P5oV7qY{zX6)sqX0x52yNJCv7*G7pIy>yo#Et(WS7frD{Nt$ZcR)nz
zda}TFCi1SJJ2cYsHc>yCj69o3Jfk6_1L-iiwTNz55Ol*@MZ}VBK)F4fYM`Au8t%HI
zT_Ii?r*0h^ovALdh)I$fiwlPSQKqVqD2p;&q)8<|192(ItYUEcGNIC-^iVW-e!R6{
z`XZ$q_p^Np_3sDP{jm%x`hLk$5ZDi$*86la)V|VewQVH9Yx&%w)AHTAS-<7!cX{4e
zF#19eGCqr`Mhp=r6rU|8P!`7eA@o7uI5-$s#vngpe%?TDOzS0jLFxgue)<91Z|Bn8
zA~O(ZJk)C?;q?a9RbikirGh7*tucqst*-2_mvXTmm}6o|cqua#<y`=o%hDK_NcKo!
z1M6)U*#qH(FXdHLaX3WQi(&g7-%`+)bTeQmX;?G3ybcv?@kEV<Am`BrAm#B|h_fG>
zwZV(|xEnMruc_NIYE$)53<vaSxDZU?A9dOs^>J_D1;JI-qs8W^Fo-bKY)A?gjs3e6
z;%%Ftq&<scpkd(-f)MoNqt7D2ov4^4Rl*QaN&!()QWEIYFfx%T?-9qJa9C=VI$|3Z
zjw{M2v5r}O-=XHrcp`C*psBhsR(~9*=()FOvGh~j>ksHg<P+7~L7SoApu#3+HK={M
zC>njjt*O>-7;z2KgACm>(a)y;0Odf_B>V1mfhQG4phB%0fa5b~KU#rTO47X<rBKG5
zoy7I<;ys6@=BcjM^qIUKP69m$Z!9HslpLsI8Y7oxE~s*5v9lXI|E-8XtGGBi(pK|s
zwWi#YGgPP=SabEFRuur~VDm)T4`1Fgn908nz8e0CAqEM?#LUbQh9dZ4lHVh|1;^;Q
z@yrR#!@iH8)$5C)bDQL$dTiDw?<-3#ddfyn|MdYbZ@twInKt@4PtXkrx{-XZpv<D`
z3s;t``d9%tQ+D?jP-sOmHHWuJh&c)zI3`H@l2+dVY)+u-70!<*P@fpK)lbDy!7~z)
zdiOi;rBL+F)&f|)5m<>&gK1v=#RWhxE+F~>QkET%r&7F0$~n@$S5`2x+?|6fW5nQp
zlQO?g_j3c#AgM<iQCQ%M`Q1;amY)KKebCR#s~FF8P^Azcp@Kp`qhb_DLCqeL%GS$q
z48ZAbC345w3=EHDdD0}&W{efKq%AnTAK)S|QIS3Cp!)9&0TPRxf_nP>6=1p;+Z?a>
z#GQ)qB%OIF2t>QOo$~rrcgzK(blhlv7z5%uT0j($Nelq2^ClU2UJQ~2thC5jl<w52
zmhL;5afnP}WnpK7h7j;?tsB|O(b~B|cKjvC@p_*_P$ExC@aH8t;XSx&EBSAIt%Irl
z_0n3%Iu!Qcd)=Vn)#k#qqBTW*Mri-0dl${b^uwni|G;U;=MFO;OP~JkgZ@wTZcB!>
zBb2Q|+E-7l1z#7qV#33yX&^#s@d|G4PSuu?8CD&21;Fo{ig)k7ui(ek=kw434Pybj
zN4TW6H*|dDwQy+xP&6*i&IA?B#qC&*VI$scX?abytCZ%!vGA+iMN~Qjusp^PjYY)?
z@2F@0Q*(~XrZno|LH<HgQ4k#khg3evW2@?Sg_mu-0NRG#@dJ!9S0<T`v^YgdIJdcs
zWAmE>mFzJ7eQj?S@L&_Lc`p~CW_RZI%{jr50!Jh^;mZs(*mvC?cyPZqhHCS<oqRFJ
zQ+BafD{EinZR;0w<Fy@agjO(*Ri2G~)S?Pa;{1aGO{y6SD7S6M{>Mr0^^2a;LwiU+
zD{(~e%hQCSqLB)~WDN`EAd7@?Ngrhv`ZU$SfL~g}*d-cgl7$PGL!361jt#VT@zmli
zS;Z|didc&RfGZY_VSq~$adC&5hyXU-0h|qMr<D((Kr3<v-(R|IBXTV9;F!2~{0v{{
zs{;wg5<jzRAqUQK+v!e3YVM4vdT$l1uQDj!xJgk*j_$yDl19vhqSyoh8rt30nD=q3
z$7pD$cgoWZaF7#OtX$n`OB5mofrIbhnR%xkO8=6^X{}&fPMwVtyQlQ_Ps|L?y{|Dt
zMA2CJ@xiD{o=+wxpqgCNJ!gD374@3GI7DD7{7#maj(P|s0m6Nc*bGl!4a0o%stmy+
zXkYuyeh{^q9&Dnd$|FHz=Gm#S{2c{Rqw5LD;p)HlFb8K@(?}Uv5jH0BYDmp^*=l~>
z@7K^~OgKUU-oJl80hz!b$oq{iUle`}2GO>SgnDUeU25$rSdCX&LZ@pwXGNNkZJz<}
zRJC@eMKf`c`G5)kYsI;4e)chTFNV#umKPGC7u3f-#rdSlQ`Uv@6oLU3Z|3_u@&Cj>
z+Al4Hay{|u60e!n&a9#;#|hK)6KM0Ioy;ytx;w9!Mt!z*AVFelhS5!@x{0-NynlSq
zF&*|VArT*B4e{pjU{MLmxz7im6<~w`E^v$sfH}ITs7I`(n50CQXpvDCNrIH@R!mD7
znApjq@6=oY5~k9?%=K)$u(iF^IH>}AjV8~+yRL@hZ+~V+3bn-=l*>MHr|5>lL>M}<
z$y>5yBQ{CiV=ji-;>^&s%DH+*o%aNb@cs$nWqN!!ao2-m>M?_rzF#yIgp0}l(@pgl
zZ<G1TStIV!{o-eFA>Z<ZH%N%-(uULhbKl_$o{A*JYIFT-tWwsOA>@en#xE0%K!@c<
zu_syLp`Z}Pt-HSN&32LhQbV2~*m%YyCfF1gZuH}Z>;r_*E(oxTiS>7P3xh@jaD}Vq
zm0Vvcipt?2%?@b5z~SogUP)?$*TGp$$;ygCv<{$=q_EweAUN+K42HchO@@H0+>t)0
zJ|6~36x6Pke*;CG#~A=*%MPcB5CZS3k&%&NV8rd;<#`g?jh6$eI1!`VYC;YEKd2$Z
zXhiIEG<*Xne4y2jq-anZA=@f-*W!>XV$n7@_?>7Hja)M?J#U#sb*{Ft9u$m7tOCWR
zOMC(wl>-mL419`KwN`y`s`B-<6C5e=%4QqL>i2D94{@m&HYaOKOCBuLe)qzGUi92a
zkiaMho`Kc!_CK6uHm{J+%zDq~f#5Dm>m(|-^K}Gi2R5}=PmG+ifP%=8vm#Q1GGm>I
zOkrwtkX+-3Cg$A7AATY}|0GhGw2aLkE>??V(xCV#_rKT!AmjGW44xOv`i*y;6)IJ3
zj@UGZ>(xS0&6d*z!NI}by1udGw1MNTz~f2%hj%E$jDV&CUBRT^PLL*-QYa~VGF$dr
z!T$*xFANg;GZ>2o37h^SAV-ddjQtGH6J%uhB@`R(hU^Q?2CnbW%<b{->e6OQAoB(P
z$LVyykTM><wuSgLaWs`B>*e-PU}<FmdnIV({DIZ~A2J7x#y)JkAIE-HN`?B?FE~yF
zA|A_)Byd6ndgiE9k#}Raap?K)Lk<go=A$~$(bk^(7G&*w{u{(yM#g?N{bzkvJ(~cX
z7{K=m%%17o4!L~9yZf}LB6gjWtEq2{K|HKhDeuz8z>RRw?$inRKIa8+tO(cFKdLn<
zwQ)&sP|T!B((aMSQD$NYImCPXWmlAmG2~kVPM*KS*R+Yr$f$AsCNrY!Suw84+CSUf
z2ab;Re*?rQQs~gIj|(PoY;aP}VYNM(VT-nF&~|<gH_yYb_d=_!ZYHYnumjIqpatvU
zh!NpS>7}*JH6E*<-vHcKqmRQBZoi{($$o*2YswBpdomZBT|kZKdE~`yg>Sk@{oXiJ
z4wq6YNGMp?7L%*4DIXqIQtHTM^SsgMm+%bb63C(@im9^f0VE*ay>96Pd^e^8-N5fc
zreB11fv8~e>t`y|rKQSdHyZ&|K%@Gy5v*@qfmk1UoIB&@Yv<BNSp)v<rg2#Kxotkd
zP6;rpaeDaeWmpirGuVV1tH=Ns+8lm-QV1ttr~`8++;8^wiuo$2;uVurukA}<Nq9RP
z1D#`+Ib8;HaFN{}e=FqESZHuj&7z}+LcU4SXLz=KuvquKj0yZcoFss{Dga8M&57P@
zodB}l#<&v#$z^*`bM^D;+XgvtLgNCH`8Mq<L;w#2%T-NYAuT?8yS18}oZB9U;YQb3
zG>S{oWQCoE#e0{FzF{EHkO(+V_0ra8r-MqMHtaax39KrerU}*SR5YzrihQpwc3zi_
z(|3;#SuCH5Q)5SW4HANYZK%i8TQv{|PUhmT`N#x@qMFZbYB$J2o0*z7w)>Ue08km|
z?Gi;;g^rB#8d$})AkqA_(X7j1XGAd-QumSGgsaf4vnvOvF+CbpubBZv?}d!}5Pri$
zipoh-nqT6N%{Qy;ll$4vZ_Y~T*T5^=t$#zbnJ6No#;0pEdTs?R>KgDi(xY(b@7}oK
z<4Mgsbhu0&q~k$~no=<$dKyUZbhTIA@MTwMDV{i6Kb!^!%P5#{_)~LS2I|pbIE2-@
zqO6up>5MJ5x|jMUXQlGsg1AKNht+?)7EQq8;O6jaB!w1ymFF8X8OIok>mP0c@bFsg
z3un(k9JuPO>MiHx<^xSKV|cHiaDwP=k9uXd)oI`*kjdl}TDG;5bV;;nSe`F4Mfh97
zGjg?v|Dg+`G5!r!evRl4o%uP=qtJa;yQZaEAF1!gcBWY$cY6BS!*Qp-9U~NqYE$Nj
zEn`wOYcYJhKUqyX{Bb5vd14wxtX}gb<iEAQS^V87Oz~uacJ-X!NF>)8vJ%+rF;>H6
z2<T)Df0gR%&FqS&VdJVmHQ4e*j%-|5_Yx~-64sUn$!e8p{FscVq@=WMmn>BB_;l@<
znI9t(Fy-ILavvR;&f0+U)nkC3$;E{^-O%%L?*XygT4VIf5JDTCIJ0&mf&-yF)JJ(m
zKW#Dgjnbv=Gd|W8m@H<EG7mF{nh>HJx0hpGdr3QolUc8SFqi42S3lV*1)_8%<;(<_
zh+E=`{_K6#X_RBa=SqH-LWY3n|7Zvz(-@>S()uCWw6F`~q{1qY><FK67^P0TdHR@|
zhAAOK@Ij1=O(RHwSXBJydvfFT9f*08nL?@YOfG0r5uz|dB^gdLde7*F$nR*eo@SLl
z^gCKz_TP+RSGTv&Qv2gs7VenNgjT`9p!xPkD3NIO8jsc<9^#}aigFT(2o=g|t4G$=
zMq$pfhpMV7+`@3m(FqamAMd^)%o{A9dDek-Fz<ryrxQRe<c*Gt8zi>iwJn6Ta0IwC
z!PsI|i1!9SiJU(lK?S+ABpQVa<a5SWMI0Q09jf>Lm1{iVIrlJbZEwl#^q_%4lbs;w
zM^eGGfWO=$_%{AidHlY|I>N$1px8~Id&MG9$Vhum#7&Vc7_DwQT>mYyEQc=@np!Jm
z_i5!T@X||#QSDC=;G-J=x;5Lfzg^uWIk9qVd*9K+!V}pq&<U}*UFt~PP=y(ko=)(H
zEg;FG%kVWXpB?`lr5l2g42kIq-CqB>X*^h`KaTc)j*-ja_WSgBe7f2S4-Y$E{$ZPE
z=F4`A{VE@}Le6N7w3!%)Z5uFk^4u=BgoW)hRdHJfZmOxOi;MpU#Is_sGXYo&ilk*;
zd;ra>`Yv-#3~V~Thkd2Gky-;*4P<e3=K~VGS-C8+$HYu+mlu3&RtxGc9QB%HH8=Us
zU1FIB&9<`8)SHpCxm_O2^es4eb01sfuJU^$*8Fbu)H=p6t5YW0-G%8&n%NH!UjgqM
z4(4w3pP9$=%ujo-^KSS}2jA`ZaEh8Q*^%7eQNaHvIG3U=YiaI3dK((Qp448-d<kUS
z*xYn3lu4uFzF0=qSuYhH3N5Tba&BOiiBF){eDQli*a<^B%s9lKFt8*kXMjIvPC`Ri
z7EK}>85`Syle()n<gWhk*z^Go2k}b4kM9+<(lc~S)XySIEbo_3O~o%P5GXE_^!6u4
zy`^4=b{3T6)~zFOYL(ART2>aM2?+@gxD;`RE#g;NY!~Z*i=dZyud%g|M-th@M-3ib
z;JgbOI7EfexyN72b^gHT1QWseoi$U7M=?B4ZwnnIEcNCb4&DJho8Rx@ij;rK6c^zJ
zh_psSfS(lj4g5-=ybL8!1^B&I!{3k@W@|zWg)J7t8Lc$BEgwGpR?JeHtD{eFgMf{P
znzz267HnuI+l&4B0M4Lny6N~hJWfylSslK2i3Cam8}L4bhK3U3;%)*kgU!6W)|5Ay
zd>xA5;|WLo3TEjm+3O2gA|?HNxmraa!{YEQ1EEAL!VvzdUR``38iKLG)qm(Z4;3$i
z0Z$QMB1S1{;i}s&zS>Gk1s?)RRz?_O_vNMIU?uQWF{=M4op^Lt`()7@j_UkV?ljJU
z`1J+;Y!uKY!fIO>Vkr4v8PnRzU)=lc8SIzVH|QpfJC5k=ws&Fm^jP5P*lh1U#NZ@i
z+dAjC)a<4GdMe5|i_;b<?+<q#ZgSHHS5TQ$CQLrf0VZ1%1rX&_y!;UO67hNuop=%}
zNEZ(1$o1OVq`E@ReM6w|#Igl~=Vc%Lm1^AZ*fzm%=D(d;vzj_kIl-t=Icw7Fd_Q9F
z@|4CkZRfi(TM8NN|L{BS=;|u7^^^$br-LnTZWKm3)c}oh%vJ|F?);*V%CG5}kVW%H
zsc_WOZ`FN7t`@SxMr7k&r>(f<1Ha!n7#bmJNL2gjDZt>CKTFF_&BzojeYw8h?>r^%
zP?;xgVk>SZ75!AtGDdFVq*SYquka*ibzdkHM2k))$dvgyF*8^DXnHxiTezVUjkBP6
z`5}B5(AEATJ71<8sdS=MvC=VNxQOqF5RrV*oz+?_QBNU=qxJkd&~Ujwk(QR)_L!Po
zh@aI3!!Bgu%T8)S;w+#ngK=AxHst=ULc__jk3e)aTp|TlNy}<Y(L%Fxf)OP5^%-WT
z+p=)?W~7V0Jp6`tIUM=J*eW(Cbom}0Dr^Z)uc$&|?RsGD^s1$aYCh_HOZ$yo*{4Ob
zdUU-ISM!5RZYW<aVL#kJhq<wAd}Twf*B|Xg<!BEpYBPKnPL+|J{x9}TP8qPG)&#a<
zD96U2=4cIo6=f0iP~nPhB*#aFl#dFU379_j%0QqTB>q(p<X&F7TdBJIfgPV6r2ZsY
zwu-270W(^Lt!w6MMK^&B6F9a-Y*<1v%z2v#h67))T(@%|PLCqma@dAGN9usc8a|>D
zvt|uBE9)ebzCekWrweDp#puEU-U+tg#@{c}rvL412#1V!KnKZ4LTdfzVWgUsVv|mv
zi%&*FOM8hF<(&}G%k4%)ME4V@5&Ap<6m&dvf`a<m^&`TsZOQ~sEc!oAKsTK!H%Fn8
zWW|s=Ac%{5=f{zh3<MjptPtYk&x7T+8Y`i_m6~GN*tgs81J?0Gxe<PP+lM9kDW;tG
zco3k{q%HtUZ%vgIL2x;sV9<o{YCVIy8Mif#ager^3k)WWZ2Gr?dVE&)cF_I+zQkQz
zPYj!m*w{s!HtOng;IjaD1JN2iy65#D%1An*Rq?}Dd3oF1PwQ+)MZ8W!XH&~3@fMTo
zA%A=uId^wpq`$4~{+k*)zzC*;PzrE@&CJQs^DlZ*jvUe3=^zgop|2I7V-Y+Zrp+B2
zndo%f^tJr12$SOU3lz%EltOe8ezct0fv3Ga`J)0W@%;2J8?-T)iC+Z$r4S9j`n!xT
zoQO3v0dV=*?YR~gFp6C#v6*>!ub^J=A8+!X$X`9E(tA`?`J9vUlIYwU1fovgLVe<I
z0FN64=jTpj>Oq?whH&}Kn<;7LW?V`58+dK$9Tq1`3Y$&W+PwhkdIm|_+7DC-($LU^
zQwXbLEY8Y*nFE1Iuj>DbH6OFHNy<cv9SkLz3TJ)U(EFscD9^v_AIqz;#2C>a1TxUh
zV)}$DmPXW=8$Caw*U*c+#Qoa%Fwg=JHLei8;fiIhUxP)|gA_16G$RlNPk?~I(D*8c
z?ZOlgyt<1mSM+}IxgEj8x`HEbK|at*MVJ?<a}BQ*GT7fUGs~%sRw`>vAL&*l>mVUC
zYby6_u>h!7aSKnTEm#g^@#+VH`JKN&W&&v78&u((mV|QCy)*bABl0B};R%@vME*`d
zWhT^0zBK?SWgT#R*aVhVHKLm8vxMFVOiFA{47#=8ni{$ZixJrsCHQ<s2F#>0z+VMx
zzP6lp)F(bd6}q!c-CGoN*Pk5HmU$2@FE`!m&Mq#P?iuF5=L(hGadm_E*TmSQaF-zO
z&2X9o<2W1z?fv?9{iRYRO`hAKbYM+#+i9>!BE(i9SAeh-E>SOQs*{ud>L~@R4&eUZ
z;=5ZH?o#|UTFbgS5-*rP1A@dPlNjSCFuNWe9-?3=h2q|vE~;22KPIiAylp#ho%Tvl
zOxCY2&tyI)Y>U4nY&{!rI;Uns^})5Wlmx&PKJH<ErptZfz=_gXN$;L8^vspgoJ*1w
z&JZ)ML>EQU1>2lrDR^FhTnc0#uwXUF%(D=f2_U)OUf;?|OWPBZon1~EoefnT0NDQU
z$?Re1T8H*W2T1HZdLHOx=y5s@JksZGq`EnHv=g9}elHBrY=u~%w8+t9(j-EZxYR1A
z%4(;rtQ96JGc~k=g47Wg6NALyYNp!V?Z(-Erf&|T2qFa!9TGdT`1go!D3-t?OeP%x
z71hxT3rVFTF7NHA++@FMXte_cA!6VU+~YHZ_eB1FcI$W*fAb^WweIKoP{T{KVR9yQ
ztZs=JvT$;ybbrgY+1u4&%%sm^pn3RdGmpkA@^n92E43Y`chL<`Hk9yr4cW1Grz%HZ
z50SuW3z<id==|nvJ<i_{5{d|JD3!}0IGNI10DrUgBzno9wzl>&Crioz>EHC`vFB}3
zJc5v(tvyKvN-_y!<&QJR$#>+-@GOJmyJZcJ11lNHhYTiU?DSc(c;YE%%_m94wqIj%
zd7Pk>W#TB(xXE!f;a4D_D4RBGH{%}$#)(_nT+Ci&ZjZ3A(+m>ewWI}iEUX&Gs~veg
zE*OQfy4$RORTtFlC?j4ahgU#FvD=ox7fT=T%b)X}B|?yCR=*vswZ4_)dLIEN+Whhn
zW+i1`!2GqJYi^dnHei5o+v}#GSh>lk7*rXcH|wQkP8LC>uHj)kQ#`V+Y<PK@6hq7#
zxeq&EvNGE2&4byrNy8~ty?Oc1p4E+%g|nWAF3UYUy@}Y)NmMBLeV?=YdOOAjHm$<v
z;c$vSxJwWS>3wjI-?*axdVNExJ23vlvd!PaT)Y}OYgm6={aO55s+J`u3J-fvARn}I
zDolWjNh#lem1-56O}_U#G4)fAKzx3DN=YvC<dIPQ``1)o$5DEUvV0pCR|Jt>miDVy
z<PamP))QtG>~to^ByA)RyJ9(rD~aS2sqOn28EK0<4At$j+~g49@%#6T%5Rl8GX7Wt
zm%k4U$@cUeKG)*+f%61wD}i=lk&s!yDhtW7$;;<YUz8=ko7b}-f0Dk?lEil~x#D5F
zUdw2K-;)8jD)0U-)<?KW{NAcbw|Kn+9238AzqK|GhpTe0_=q#8v@s<#(M%m5>n%aG
zG?o-YbYpWUwGkY21kEP@RY0jyM11;cxGiX?YJA)O-=L|f#d#}pR?|-2$o^aBZ#wPS
zu_-S-Lup2zvM#1EyLL6yaCxTkr$+ksA=4jwi|F8?lU(0<Jh~QZ=~)yx?$1HE$&dKE
zs4T%`N)}50_W-LY%aO!>@e@KRMA>w?#J$^uxAJ#`jmC;Ly*qN-)yX0@q-fSK8m2ul
zlO_GL85^U$+8V<)18WjoVocUYMD}=@vm+h%GD!JaE@mznFme-w^r@_3;>Qofrxs+y
zw%2D$OU^K*H~dIxGo#<#pDjs$1fJp+yJapmFInwKSc*>!PFEPjhrCvqTOy`x+)S2X
zUG<)0jKfZgrniIr{T|2De!CaApq2$v5b#4#4p80+q{E8Dm8pCY69ekeI+&|>B4}jd
zM4xhU+T6EpXguTw8sO^9Cv!Uh-GGTEn-kGz^X_e|=lQShtqkUq>z$&jtgDw5uh7QF
z>%-sp2Bh&1paLSj2k1zUU?Sqhwu=^vAuLTH)(xd)EMWwGfg|5w%(@M7QPKOaXl!)M
zM+Sc6?|$W4)CI2~F1&T|dY;N+tOSuY8-b@IzE#XLY9W0ghM0>TYXyF`dA~WNId~c{
zUN)mp5PgksHQT^XQTAOlwtTZa`LO16Mmmt#_P-^ph)#|bC;J4`Jd(bzWT5E_+=cc0
z+N67!WwLW}Vx}v<I&7XZlrh#9_G`io)25N8janUjtkQ<eDc45HPRvfsOl|d;)K|xp
zzHqTjQq0mqn1h%6goAke_2-aHVIhP~9QR99-s@A~cj^WvM|pX)_V<eY4;0WhWsnlF
z@3b16{{)4=rxQQT4(6B29n@yOLb)pLNhZVO+Sr#W!}4j1HG&Q7V-C5+o_K`N<rqh)
z?h~w@VqydjQAvdfhAbi4jW1))wN9rmuS)piwH5l`keVGwhM5Z>5E_e@Bl(CE(jKA)
zSJqlzm$xT*?N!lQlc3;seEnbnGBxK~`z$#nayj0$&7Q!oi^Z^&F}4Msm|sAIqsS~b
z`}3{)9(liL2DNbSPrq0{tOc^Ydg+Knty3-5kue_urXu3xDY!5i>bK|6|1fAmE3=>1
zPr2@9@B;a~$!x*j#csrN9dfS31f&)ihAGA$+r_jE(i2Eukg!cUxa?;%O-ik3gGp1v
ze-@xWJwt!^zTp$?h?~{yjv7EXnKmsA&8pvrpB2HaAyrE&ztZdv{b9>r9sBflWNb%C
z@eBlsQji4Wp?crKmrtXGs_0u)<vdITG4f&Rnsz`<j<B+m|M}_|iNG~51hhs?L2~7h
z9wYf!&|znShgG}c<LrXZqHX$H0)I<%86-k_B+moWGZ4~v<!sCvmhMM>m{00|f+m7F
zhgqOvr(~xZ6$^loNmlp6bc>LlRwBdpDBKz#d%YV}qLM%(`S@kOhme2=OhcLg6hPfy
zvv#vjyD3KU0v>S5YkGG@_#&d!V$`U=r;G^azz7R$t-YQ*n?xRcXB94!1X6H!D$2^L
z2HWL2oXy*c40LR3vCbUa)3$U)y{%zk<@ce*iBF6z`RSp6zz>xR>qxI@b;G*_r?%Hv
zXS|n@!B+<F-tA7n=UOTt%`mVmi<C{o?`~`Ped-<=?}vT^lD`NwKqkYf36p%rE3-RY
zFiz@B`|_#hyS6bbH%?TwRZ?;Ayk=BlYJZJU9ncd&Q&V1pK7ch;>G4)B|8!5jR)3~d
z{2+_8GQBU9FSLXZ1?^_c>p$E?kcbm>g<d-C{0%OuYUE$&M`d1^SXtG9;>sRriI|US
zAL!b7ZD_Y|om3aLEu4Z?Z8^JG+r>P;Pl?CIs~I}R*WtDNZt;`O(GV7fw569QB0m9P
z)Tbwx$!!sK)x!^LAkY(t$P9%{A-RF6SV2Vb6fY&d<_}xWj?DIsV*0JRTf{s_RfIeA
zLD`D_z>0=aYvj@Re5;X+=bJ6m7ca2!%=POnV(&NCozHxtIz62KmFFxUB06j6dz`Bc
z5gm5dg6z%?$>R*<H@+sQMQCr^@~@gK-!wkflXDO7^1(=~_L0gIBH6>S3&hE`wXLM+
zZVpQxg7Q>bM+xO6CdnNZx}p9;&GyaSh&CU3bE?lFKP^{+pb%;ze&Zy=^91HzMMpDd
zaZhG(qfaHIvX(Nfz(_PVmGAB7tGTtH=ji8;+oC#3sz#mTF<f}?DZn<Olffk`?B@v+
zcVjL5MPdCJNo2G;F3lFSDI*AvnU1DtUrZnI5ot4sf$hJdA8NsOe-g?rE`Um5ulY;Z
zPF3R`f?#n`OSaE8jE1{n^Im;FZnjWYby8yd3vJdR$AdsZQ#%DOVO^i$cxt5%3y#5;
z$jUX@P%Et|aQ|f_{aZ@Tj$s?1Ke=qGvH$PfjpH+8=J$y*DHZs8LM;|1y3pUIc*<?L
zd2(%Qp%7|0FH;nzDkAewNUW<Mk?Y>9vTJ-s@~)-~l2R^d9I`?)y~AK+=g;Cj<NQx_
zhg8w)_-}al31kkd<#q5cZ8~*>MXcua1z4oF3{9Fyej(EKHa%-~xhJ>M+M2MA!fLs4
zve9u-QIWCYl|h`%BIn~}PbxjWiKm4=SgOBz<_B#DOkXy9_;1u!AM_GB%9Xxj{GhlZ
zm=NP|i&rp%+bpY%O{aD~T^v;F3;<2U1Xu>9r976qMZ3<q?~20e;hZ`%E>R2CYE6uP
z`TKdH<qaXgT9%V=u0b+2nBWqab`}u1GgK4?{%~EI*0UEl)3t>@E*4kfT&^xx{nSm0
z_^{-{L{+B1-fBN#Q5P|aL(G3tQEIwk&icWJ%LQ$Hfo!>xL-?{q&qgarTUZU)#+n?~
z(Y_B26q@D!!MVMz?W%bu()8xq2Jf~epE3c-u+<#X7_ZLo3YCjGskOx6fLqb2^>3x6
z`DRo8RgyKzzeDH1ZF>?oz3uvK^77)s)XtP+bkBd$sG()wd{>T_*NQNAKR6*N$>n9`
z-YQNuNkj-BYT`cKEP$I!y1cFH4^tT{+0Ff#x*23K{KB#N#p&+-8ztLF9ixp>2KP$s
zK^_*Tw5beo$%aVkljARs>fFdq9OH07sC7Q(+i8AaoClk5k7@i-&qi$diO==Oh#I32
z^ep|a3uQaA$NM|3a~pDq(veZdZRvlT{RL4Q@h~)QVUD~849se~Kh8)=LZ-5NVT3Pt
z3U^XBna72A1zO;kGE$)|AX8(InK<`?A=4Kq66i%gIYhy;QFR9E4#~Hh()Q+ACi98L
zv#TP?cpR<Jvop;6Xtg@bGDal-Xj@u`?evcAi4c0UuV8RsV97hAN`Z<mD)*>-<@0kK
z`~}{yNU&lJ-i>qD7fdRGCQlMig%7v?wg+>Tf334^<j;X}P*|Ol^<R1Uef@*zBp)z_
z|BcKu^XSz04c=_i#!?BTj?@XXym8~&Jh<ymv|4}-;%v1^!`9@Ignk|*@y->;ycs8$
zo3x_eVDSO(UBB`&R7M?zJkMQNHAGD=8!(9Y=HIootaBpTI8UDY1Uk@!@nbCUxB`O>
z(2EVlph-&zGsvG>E&mlHZej6;DXMGJU{(3CsO8s|mU?+MtNI-7Gy`+hD!{V5CI1#`
zgvF94vxO}}KcYlNMcKW>fgxo{GY~H|Ok~uk=5lwj2lr&SkL{YyPL~7YE}c2Q3(Syl
zbhc??GWZoK2MquFuP`*DO237HzGqis<bG13{D#x2$C*{HF*&Gmz2*h*sDoJ(%c;zs
zC-Ct=zb#ZH`Fry8SU7U@LweLoRjN;}M*sE23pZGMd<{IjuCw(Rfwc(&WYyE%Y9%G5
z&o_PWG~$E*h2T$oom!!Br!R_*5KC?>P`-a_XB$mpZ4x3!CFGb<n_tusYyz@18cF(;
zV7E&+3K9|^v~zn$X`Qp8K(J~Zwfgw5;dh0)8JUF;!3FgPPH;>Lgxry*EcBo#H;6&{
zgEF0>V^kvNhxL+xr_DigMjaWLW$dVF=bJ(><1wL><5sX0Dp7qgiws<-M<)4Yea%1(
zx#@8_eR_75mYRCA6(t0!XG>m44&GYJ=BsoVBQ;Y`l;6<}j@#-ZeFYi=69<P1%IA{?
zFbF9Sp{{#vOcl_Rz?uk*pITvjJGuyq*v}d36$}fX2}>lS`NUHuVU14TyU^rd@G|mg
z-T%_AqEy{eih<(tV)wU&LX(VT$r#C?l;N;co1*GZeh&{|uw?1TCJ&<h90P1f-fw&j
zH2=ByZa_x2kN%y{H}_cnt*%_%<-!zPY@zk6+`@wdUPmWiV4p-3KG$+sOhVvsSFa2B
zUp2eFbcy1;PYB>6i-JoVnMS!(H6BEh8XoRFYq5A~zXvqI4ozQ7Yni)@>0qXBcG6AB
zm{bx>293Tz+XhshA$@r0koo%h`cK0vmrm3p78Yhgk1O@yYLq-~D2cyP6I)DAqd_GC
zEc_vZKqM(5dZQvz=m89t@2M{3z&q@I42Vxc_dD1JG}0o?v*GKW$WQk@$gHksbI%Xs
z$MKlT3un!|P5;k>fu}t>eMqqNL-Z%~$0Z_xuG96Gn<l_6kP4?2Us3SCz}9CoA0xnv
zvSOEPP$D;rxtiB(U#vIJY7WU{r}wX@i*?4E$j6r1wMe_w(WT&U54-@7{$nuPtt@6M
z+AY+8ams$B-D_tE6Q|hknLF!xD$AJ9C7S++W~cG)*Ob${&zTC(j{D^xwa?DZp;&?{
zO4M_eCe8A%nt?VoF)==#92e>iztFJszzC+yq$Jkr&<YTxlus5u6!LW}0QID7)kdSL
zn7Sys*&=j8ri<GD!Rk+e&w7yGN?^#3hi~w3`t&V*8gGRPlBA^A+Z9l3+|a9@*y-l!
z$8?j>@aUk`F4YMyn|?!7Q-GcqQ3Zb#s%NXGG}H6>k;Yv%+7@?_t`PGSyY=6o(2G+^
zEU65u-qDJd8(stj1yi{a9pGO1*mtRf5N>TRQ`TGB@-|p(|I~(hPjE;6t?0Z>1K&Xc
zw^FZ7{RH!nn9cvmb4aa(`Ro*mFX$0CVLeB%AR(DBZ1&~rd@Go(4SW_+JaoB&<SmxR
z%~c8V>4;$z&xp5Fphr@FdRAzV%#sgn4QVElJGt88X)-BSXWMy>8V_nCRg-`CQ8j)a
zq7zH(S`?)N2tGwcH~YA!<amMoN=_9$;q}BYTz8uz6r#$9?$pABHO+MeSo&$tRC3$|
z2-T@6spjIA1oq|~J5NovnWdy1G%?GKHpEyY!TB)rnF?KSaI1aK-QN?6`tTrn`pOgQ
z@llU5t!xI>oXZM#j3Y^W?T7$APIKHcsLTEDGN?z_?)m#v0mT4`s_b(mc`_wDAsf_~
zm<HhmOX$V<4X$vlJwJ0tQV*u3yVx`|*R!DrV`DPfww&A3cy?6gnii#ZFHj^0Kd#5S
z;kG>63kzw1mX7~de?@xaXld$mV`32->q>AwQYDjlGA_BMK=N9dN(lqQ6uR2EQ(NO-
z#lnI~wQ#YhJv;5D?%jmI3fPc4m~9Ll88o}aeXY@CBxEFoJYK(D>v3_x<3a42*M3HE
zdJ2?E?FJFAo^x&obxjl&-d3X}q6L|WM``8rsm<UEn6s7lhrH{+Plfo8$Mnt}=UZLf
zh*M&iFdQ80NL79mY{kXDa>n9uV{Ug{E)Q#u5Tk=ULW1m={Ju%BqJgTYX}bbFdw24`
z<5`?diVKV{a~hhzKfJhb%Nq{mBvmkDrXd!@h}smN`F4((k%Yn~?lDXWGpu?x<Q=qY
z3df>y)^_j8YJIw$)jeG}h;K}Guleu0laP~-5gelbA6}{_f|Y$BL@&*oS4W2C3Pn(7
z@_-anFu}+%NlYX0T`N(|J)<PdwiE^Y-w{nG_*<WmWO@WItHUBVR47b;rWp{wAr<l`
znGz8;s*NKSsuCN;)2P<%^xrPNa^p@x%p1%7)K*%Gp!Q?t#$NPCQAM_3d~ipr)iw?G
zq1SviuM5oHR8sn`*5YD6gMtScg3HTO7&txT@_S6!(JiS->CeGg2nq_uM&jdS19(9o
zi`>~TEXgf!9hWxW-PLZZsWlLFtvCCBYBmxjdF(@r^tnArVR9Q7JEpdqtnp^P{_Ojb
zVAfWsTXocdi5(MH55x>|dIpA({nsGmsSF+`$^$CQB>UCY>%Ys~Jah|fp1ObaNXbfe
zX80wk>NG_DSYiMBhY);qEw*<pgBcIJA#YMA7$DM40GXd}!(j<!d!g23h-QGPFrL}P
z1JVHlBORg)biBbk9!%Cs;xTCks!CU09UP>GhTiN6b4iH*SILC|Ou1RSF2$;|kl5)7
zOOwvAmkQ}TwV)w)*UU_~8+B8L;0kz~fZa@3y8AoevA==UL*P(b-LI{SsMeoWJ=Rw{
z{d~sPRD`?1?gAQX(f^Ds6;C{WDT*t=`OeMXWOVj<9Jp`F<Ygft7eCdP2nby7rWx$X
zm-Re@KmD)&Xk?O17zr7ah<pVQMFpYfkCKy<78BVy{I~r2`TXKMXBNE6{27FV|Nhw#
zE;H}it>(s<=rlPc(H!irtgHZLPrWLHtFA7|fq?x<bLN6piu7j7cJqZ^v#*-S9-zj0
z-;bC%s-OkW|1x=gWo79*d8xg%u&|J+2$vjG+u!@%lDF%s+qGY%L0a1mn<^tG_tyCW
ze)B#<qM-7)gKgTJgB|Cb|E!(r2o;Tl+kOS~$oym}E8nYO_`P<&m*v1^zeKP^r>bu;
z68oYBMcM^(tHYNd+yw%v0J%}=Z2k?HC4?TPx9_ewGt?WpiT+7Y5^w}}B@rGy->wUR
zD-?cEx}sX7pc3)EA%jCA!`s-?{{ysWr&qD}KiDnS!DfkVN8!j;#8oryWy_;~a=DQ;
z_ZHXIE+6`^(47Z>g85E^Ezb4M?$HVm)quqX?qXk)BHu&Naj;^09R2iz3JEUwCtI-G
z>|z6X0H!@@)19eJ(HF=Utqd(94;TyPO_z0VOG$@naf%o~kA-BEi56GJcrk#;S=J@Z
zjNdqXS6>AC{W4!}|IZJh1I-1^uR0(oAnh}9z>z-JM>_W}d3z>T+gqEDsNdYMDE8QX
zcn|bO@VT81@z@31bj=YC7L9*I`N?<pZhm5>dDOS!Bwy0=4Bi!k#emmgmN`X!)BH|+
zhSX*NV%i2D3%6cTqD{>#qu3}26^i*^<3kN*sB$D!>*ac7xy<{tv4uuw5E3SgdwKo5
zQZ^Ch@)IeZ!~XSYclWi4B|lMp)tD$<R=*=eDGvI8C828W^lMx>zHKK?g`9TJvZ1t=
zRYu&O5104CW-9VKUN5*QuWq|v4RUsB`f%QVwp)YX4L)*C$<br3-m*iPwS5OSlVPD>
z#Hc@h?=aZtcX__|;I?3iqD)-NaLC(*{_HS7!?qHdQMl{TFs-xuJzy@cjkpA%{yviM
zXE3cJEi;V`>iY`cF^^{qCgaA>wPVK<`rh+op4=TN5182gqJiVv$xLMO5d*O5c=s)B
zdX7d`zaNp&5YcS#)RnZ3O_TgkeVM+~$Ysr*$Um$I&hH5p6tbdIDW*PpnSjMUcgNzm
z+Ax;l7vx%S|8NrRKPO*%je$M-=JDHA?mdtp6!h=JkNTsYTx7)9+p}-G+RDkdv%-r@
z(R6}e5RuPw>j?c)SY%Ds(*mF)(L13xh}`yT8;xJSe3||(5tY*Yft{V*kxVvQ`Oo3t
z3jQ3=j}vFY$-XL+c<*`$j_-1=SwLT0D{ZDoT(8hzwH1rJG3fBdeU-oux?#JBzP|>*
zrWZTHX?8xor5TN05jyi);Lm`AMD59pNJ&fC-`fM#imNLxpu6V)V93-`{S?n*j=8OU
zFUlEG(uvogzJ`4)ci4oTO-MFs{29T$-~XDn4F%d_5)th#KRZ1lPvGgcc#GA4yADE&
zQrP8dwCwiQx>1CDa})Kz{a~+-ii@ib@IzFOu?mL$Q(O_fubxt!$2zkNraC^Gy$a~s
z5(SyLb+8`*KqO*)h7T!lCI(8MzdPFs2iIh6$C6w{<dAiM881~pBnL;w7SM&gH<7~;
zEuD>q#4#RDfhrMAfVs}KhE-5U{Y-gzj%%6*ZFcdQK0{Gem0ApK?6C!Pafi{dt%wkE
z-5OL4X=`Wt1%1rzI`)LRtw*Agh>4DhyIh(vw-bE1+Xg%isaJ4<eE^ope{Z$R(VDvz
zFMRu1yg(G6|Gu9K&a6T}^ah_|XRg<_v(D|~rQw}kU{bOFe6bnb-rf%8{Y+ZR14!M%
zZ8}*LjsAgwH6We<BIgvyrWau`tJJCf*+>FzV&}e3RPm_Ic@3L74e~LZ=y~9*3c$66
zL8cLCr1HBt536VXO&~qFFLH&qCUWliQV9Q!fY&-%Zi}$s8X%Ryl!4@$O7kx;(@N5%
zSAxv%C!mW1mk_5;A=-DOvPgUE@sFE@580y;Lx4vcv_T%0!>U`v;3EQm?g3IxiSKtV
zjI(tb?J_>OxKEstK>B(7Oia@K_6EXJ#PY`TMSB4RBGQ%=j5F|{(aNSP=CQC1y@JQ$
z9(*uICq&1A*iOV~8zLYon`LYMpZyJYy^+kH+1dHD0ENArkGFi9KR~4?iD2JH^Q{8G
z9Biti5dL`Mw{aoaknGn$e}4x5@dPboVq#LUpaAD5D!t6+&vqWXq0av_w9sJHntFY=
zLZ~Fp_XP%vi1VavAHhKoMz_$qIkHAM8)CZNi1`oePoKC58ll-r32xv3)g(=+Uh-V&
zCdzZwy*LJfT~cD==a@!2H7hJOc=z3trC$yK*Q&ibE5LIBG{~C&a;d8#Tc?_P_rXgF
z)!sLBvRF?`4N5agGVI32$%6+xi^nel)wwW;NwLQRxWsjd2aAL<?*GV^mFy#87B(15
zOG}qb<k+1A|BgMLuvh$jRdzJjp))u@dX}Cdd=GkPBxBwwoC>*0suA@;IC+%6OVDgF
z-UV3|j|me;Ze#+un1b49127tJ``p-)lJ)yaDk!8?4)C{K$nX8%CfjK1)HHV|7u^l#
z5liw3%9)KbtDnJ9SI82gDrLL;_bWy%JkA4PTWsvWSJIBkP7YP4W`&`KQG-EbHmCga
zr!MGbd_He*bu%#iy~-$%fTJb?YzUd0)hQKf9=a+=?MpCCaU{G2cGv<qwhSs_+m6OI
z>DR81dcS3-B)C4-8W)(@8tNF|ajDIoju8s~^2*&pInUz{cu{`7fjz0#Noo2zfv?x%
zTO^1s>?F)M*_(Gq^ci=eEauJ#*)vz2F)Pd5jrNe;{GAtMkLO+v_R$<OPJ?<Vi=66t
zk3V+Fj<M9{Vo$(@Ws@u4M{JeZZoONUax;wy3GH{yXL4QRN|oPxqO~!VN$LdkYeuph
z=6))b{z<PS_BaU<k4B7}M-k|?(5Rku#LboOZh;#2`cM^yNl_GrS-swFpVy1Vu)6v+
zDe+}PO^;&kdoC*Vu_1e2`8nR^HIx6q{CKa2n+@;{tBrrJ8-cs>Yd@@K${;t_?P_^|
zm(j}0;cVbv6c`hPtdkG7S}L@PN@ac-c9QV$Vq=?snVM;+m}g*Qkn1S$qw_%eQ)joY
z%d)ETqg~g3vE_#$gm=S}v)iy!G+N(eHnA?9+bT#0SQPslxI(WK#72_-^Gq?nQERmU
zx%a)=nF3@n9d3uesVkMh!H?BBJU-rllU!3M0s&+&tNW6RBHi!z%7+<g2?<7Q5=C;Q
zu8lQkLX$bNieCqo;bGlk7-ifv#ovpCo%mVdV{ILmjNEdfHAD(qljTOxmQWj^7)Jr(
z+vZ&D#|g<n!}R7Ww{1AJmGyLgFcUpq9lG3{X#Fvr4k|a7!qCKXX-G}kulP3T{8?dS
zW0a`2c|y#nkT7-@MeRE?bLApmyBo3#!61@u{Hfm?xS-Rojj;Wyvd+F`qcSZmB}%Qo
zx9F-PC5tre12Z}qk0ZHjypy#%7T#`0Mn*>Jf5KLDs;k_^N^}QfpUx{64OS|%RJ7EJ
z2Q>62KeHP|piQvT=l>IrA?8G^Ou^~>SYKCHbJB&@+@#m$4!*YFzc&&T9{r~u#y42Q
zZ_$L4$M$_2jQtjM&dvYH3ud8&I2M%@)%UfFy!UlG3%Z+E`PI6@iafNKQxA#^dnIB^
z3v@R(pW#u4P8T_L8s~ex>kE`U)ife5*|ZPb4p+i_1OaHXm|Cu-(SFsM@Adouw1Yrq
zhK9m?dC#dLYv|m$WxSp1y;b&Z)jL_Y6~~Zze%Sl-^VO9rheBimfP{Gfk%v}3djmI>
zGF`AC&Qen1Yp36XxtYZxHGlVy=57S$1Cy-|zD3`PI=N#m!#oYzIJJZ)`5f?iO$+9C
z6kUAhI4vdZnp0{wyDXMlZghb6h^G$p0om~499>o2pXS$@Z%%aU=p<qgKMB{Upogdg
zO-nudpmBPNGyi&oJsJczSacf4iXFJS-n#t2yf2ln#^Vf@3mV4WZm^k!DQ=GU8r_C~
zzw9jTGccND-Z71Umm?GcV(v4R!iRcUJ!Ql7Tt8%d=H%0A;J4r3Y!~s_D%ZU34gqGy
zcx$yE=4XN(C30DF6&BS`zwhgaOYx%&gdLMZ`^l9fex<SSI^Rk5kAGEHs?;2hM3;r}
z?y~gjTF~o)T3PfkBzr1W&|B~JPyKGR86*~kpEJV$p3Sp^kD<z`q7M9cx2ryRSD5kD
z-)z)I2Uzst*;CP1j22Kut+~`7jnj=lDm6`-RZ1Zrm>JW*_Z+@}s0ZjS@6|r{dc$Hn
z=YA)oDKP63MgJ69x|cT${{HO0jn_Hoz^C_^b-Mkg05u=5pb;|v<6lrDC*bko8`0N?
z5z?Z?1qUC?clniauCn|MV*2a#d>w4s<$_jb{o};kIUeqwQ6$-yg+uy=A)j&U{>~!G
z-&S^1IhT(bmqXYAhp{i%o-ncMof_WXRm=FYCsIko{j^?X;H7U#H8EM4EC=dY5;#{j
znYvizU(azG{)0m&ep*4E6chh%PD@U?xCL}ifuL5Ya}E7dQ2g6;k%<ZD9V1JiY+HHE
z#1n@a%x}siG;Bj4ThS{%@qtzxvWg_Wa=G9LCp$CVPJfLy&%e%h(K*3r^zc6`k{6IJ
zK_%t-SSpO+j`ZYRtLYZ-hbzGnc1M@XK8JBbi)D5h&>&x~N`$1oLVJGo^Z-C%VCw6`
z!bYFE2OZ=n29ej^cSD<iDM*Uwl%d$`!@P%8-vzUcyN@*4-4)awv^@~_2sq;S<!b^;
z2NRVhPtMv{k{u>wFe)~SGiCuVzw>Hqm{28)5NVGIW<J2+Om#L=f9ZmYHsI+Cj_Vp(
ze|@>-b=fOL2`oSIB^&L7q&lE?yHHZ9BmI%1=#Q)XT}1It-%a#Kt^TLLbqJJ<o*ogl
z#{0B<1GgD}Wy~2pYAjs%yg!85H|<ukG2F-hu#D~4kkRu{20^+51HNVsp~5;6yAfsf
zmgF$!awR99fr}3hyLiI5<6&e{$n9#OwxUS^y7&0Nt1?Edr$4M<dob3<1{V40&Iy;4
zTZPikwoSKS-8w9uBqvz5Y#W!()Fa4L94g;<+t^8MCut}(fo+=Yyw<E`{9;>OUhS`-
zb$ZreHjkG`)|hNWKkm95T(Qpr5|ndqen^BO?^u8DwXyB_J#Z=iQD}C0UPv$rgAJ?v
zuHD8Qr}rqLJ}ui`mD+nSF33my$@`?#YvQ+a_aqayXhYwf>p$Cl<boi2w|5~^tz<<|
z?=j(J&PT(Ijv9}jpFRaK2(7MZz;m{H$5<|rRh`QE`AQO}!HZ;ZxSd47YpTy*ZVkQ*
z7jn~ihaNQMY76^?dEm<oe7Er4grTA$wAIpfOM}7jLP8#EXMIa%dGxPposy78=Ib#?
z*yKu$cM-w1dD?Q=%zK4lZ3G`C!X`>hIp6=>`9tg#MnCD?x^zh^Y4zoS`edjZnfPD0
z(Afq_xW+C|XpP5hbna5it>M3CrZNNRv<Gimd6uNX&|>4Qk@pcHr(04ik%{EP2cq;u
z2DDtfGxn-pnX~W8lqw5+?YZSNKIQYd#oA*t>%@67Hlwp3w+#{J5Q?OTJFF6sNw@wu
z(2{A7-1h*91YpTGUgw)vW?NLck!GX5yu6fKHKXqxQUrdGNHwNaLr)D6c-@^o!^w#s
z2k}Awqv$Ndg3O{IOe5XhEsb=8O9@DKcXxMpcT0!TE#2KngLH?4(jn~i|2{nKE`Il%
zIWzCv%wcTH1N(k*75_Vg-ZWi?)d0u0$D(T%diq--ECE{MKgY&@fZWj+?EXEWB&LmS
zy4*G>%h&n!#cQ4OQ{fy$Wd*=Yu5pz!ilu$HvdLi4W1`I~E14KVL{YO4FNG|3?Hek;
zx874Az1Xp1$@uA&@-u5*wdQ1%<ByvZm(L=hDCzq+F<r#sqejts9Bk}5(>c|$qK5wr
zxS39!v;V;S78K;ex(G(|?SdpdTDMdGz{Lz|A`s^)p$UR7oaK$dYwdIQt9)h^*Xmup
z-?RIo_rc*5Fnanozaf4Ga*v2~Ky-ApjI7*1|35CMl2TGC%*9;ugoFQej*!n{Z);(|
z+pGCX=5H$b93V>`xYg(*IFN3Fn<XF#GJncM03$G>C3>Kpu9MiotNNqr*j?73a8ewg
z<oY_`OjK0`PH?cZCwk4V?Bjq`dKj8#6(?7-f-1DD|H~d30IQKyP|AYr+61t&Fc<K%
zehC9kw+ir2cA~!QDkUC+MJc6ZD!380a;a*LF3QgykNO{16CWi;N<u0~1(4Krn;ezg
zm|V7A!6TRLV~THdaze1Wy82-3i9$Xa9!JzE(<@fq2^_dg9^hocCX2=Y4U2=d=cU25
z4TfJ!3(0z068QR~w7xOW#1VZhE&agN#X2wwMx5)~x2M{<gD${xfquHL4WOrtA@5}X
zlY<oM;};DJbJKqF!_yTa!dXY~=Z6eHJzlSOQ5+!mW0yT3&`_1xWz@Bvf1ATv*8-@V
z1RUW|X1D0?3pL<hjf8k8#x^|q8Ld2t7KYd=*h<K%#^YXrnhIG#=yCtwCMQ!kO!C9T
za0eLiuR%4#GTm=9x;voN;Ur7bEBG8hO90dMOJn|D<W1vGY<-U|M<25;@%$60uMz=L
z;_W%$?GlJwlIaPmcFaUv4W6Ck8-PK*>HW;?df9xooXu^IXwh@kkJJv^`b8}WVSIcd
zl=<d+R|1tp7!mMK--6x?;Aaf}O^yuk^si$I{zZ>)kifk%mgCS(-wLh3d#~cL=}N@w
zXz1<Dzm>KR;V=aNjvHM*2{szFFg&)AdbED*Nw^1cx?RJrlh1{dS33iMEo&8CE&s@a
zd^o*q;Nu6L)D_;zj1M|<tXKlBo=@dp!_j)+rw<hj`|{uZSd^a~?vQ6~0C=Mk^W0a+
zpZmbt3r=9`z_YD{nfzk(h`7#L68^g0n=A76I5Q=WFgo|ICk$yIFjn7g)pK|GdIg}C
zdhXV2C=+9SZ@&Ft)^38}6!Hj4O3E^rvL#-__fs!b=y|O8qKpr{xt9m7zsnZ+M4#UP
z>ZUMoKgQBO1qw|wY)0sLJ=15T)dzN7x5NBA$Du2#{lLF`e0$7CZ(CkX$S`jxGA{1?
zM|B78rwN+u{D4b*4^NU#R6Os@3RZb^>_PY+hky_q{AGhrJH-LufWW=qFr}j?%TuV$
z$62ZFkBycU!MzEbPFcA&G!L2wp457P;TzC2V56dAV!Zy7mW~=GL3af8C}6e!;~q2E
z{i~dga-l?ek2b!nz&i2y9_TRbKVd}sJ9t?TQ0j0Wy&m!F%vB1se;php*d?c>EwcZ&
zN)_iv7}27LVhWr-WiG9$BSwR1mA)0adF?DNx=>=sn4^wbP->E}yQ0=X+^Qrck_bBd
zP2c{joXTE|u;=#23JKMz`|6rBOCsQboyWM)x@V*cYsk#N;yjWf7yt}1x0AI>wT>yD
z---05gutOW-y@nw#6XnWq2jkK<gzRldyG;|%TEc^ePnQ0^Q@knZ~NAz@%#Gp!fA6o
zV9MzP63FfYu8xCj^_Nwa1SL~RpF9?%)Thkp{a;_xJ*PI}0yeZpCxutW$m_LSAHv;6
zo*GwUuGBCh;BX{M0&62j&RJ@hh{m|LC$1hUwQiQP7L;+vV}ERJR42g2|JLEGF;h-2
zZ9*<+A5{2DIe%yN;i8|DWCtoo;}dr{iXAM0?qI+f!IqK4kCk>bNk>ICT-(rR%H+9+
zsaS!2QQzI2pwC&*EL|G*%<2g0ne?RT8^Yg0ZcR-njTJ%JVb1N`B4^hak$5RKF81l+
zv2c8<;Jm5LW|bG1p6!$g-XJrusjWyi*Wm(~`^~MoZPhr^a2_rG$k`kN*#Ms^{eWAm
z#>i1@Y2px>ZWA%2N<}HFn1Pvjh_@?-();4&u~X$M=iP5p^O6Q5haRW_J}_`e<tnl{
z7I?KQ$1^Q_b=GXGGiNX>G#W)4K|B5I>-(jHh37xbl@(fb#;>Qjjaa8dTL=gUeO|*%
zBl~*>zF8Dv5&E5)4GvrWvoLiF&-0jDK}WbOy6>%`*ZlRnjrrhwL73{m*8f&}QyJCH
zP|?u$=L1;UvQ8_(2|YpNl~<H}O3<mpkyVZ<#a<3s5?jyP`w4utY<bf%{*}$LoGg@M
zp@p72Lb}f1y`%k`NFnA)GR#37J~UlL!G9U%<Jx9vL?uGiryWYr1g;OyATBjoFx&?X
z4-(hKpu#SM%U1{_|E;Z0U1o$Lpd;DD(*2(ArP(WwCW4?NzovUID74fsPsPA80_Kn<
zv|VDQL61KT4gOV|aw06p&$jIl4Sui7*Deso{xBJ+5>odO{*xY~SbK%~4yh+LS@dG)
z!kYCgN)Ls(ws&^LIO(sU?<BhSAgAB!7Kv^{LWY;W^5KW8{39DH>*eSU)ltk0`~z$O
zgdypC!rmg_NzJOumx4*cWN|$0(E86UYxe_Geod+M>gg6kg_?}>I3Q^D0A8!rCG0>Q
zF38>sYIvenXQZSwg4kfKueCHv*dt9IYz!&^e~A;80A5b>#ac7tyJL?IsIT(fW^4ci
z9v(C$q~Zxjo5U<HPL%X3eGY{Ok+jwOv4Z{h#TpJ;V*n(PYQIO4hJ2QhNnVl`gjASa
zC9hz;V1uU}&e^6m@7MgX^Do-a*>=s6rvG2ui7RG({()dpo1rhGhsQ;I@kmKUvAL7p
z9u)`U^$?zZ=%V%Kki)5w1hN@l@xMSSz3zE??pdzVGO?fU{4>rNnMizToO_B)+<y@8
zFhI7?9r<rn5c)lcwN_+g2%bM^d(-Sd@<vav(16llo8C`SNmEZN!jf&aR)@?-QJ;}4
zm#VZt<RdvzUq)se<nUwi|NgRINYyz|(N`A+!M*#}r@W)bL~9@8+lqhdgZ-5gg9j_d
zs=?n=4RE4%wJ01Fs{c^0JdgD2`FJnk^=Z>!iX>W_S5r+d@5dnnvl3TeFQJtZ`N*-Y
zt-YE$Ej_}Rhp-(T8_aJl+FD{|TF@f24l3%|;K*tD_#VUX^zlK3(-NcMxQ;^?*U?YD
z)4}wFwJmYTb?__q#N3OhD+Hu9`@}}QbX`dDTQG&F)GD6J$?Y8E_q?R!znFqhe5Vp&
z{l5n$U+(QQ=F<U!J|w^SwnD(uJjlXE9>jO9WZ=WmKHXoUsYn}6BtIVPz0Y_BQ9LuS
z?t3#rgh!lz{hURqaEJrgN!z62pE1a^?y8f_<lwKzG@-AqfR4u)^zMk6@ZQOcH7$p_
z(~`N}?(92gqafk;9j&YjmTNm{wpl_YW@BSyoDiQf9H9{bJ1thBgpcKO5!mMy*DH%C
zd^Hjvl?;I90vNfU6=W((t!Sb)&9mRnJr#T>a5F|wV(PUq6)(a6_WmxC4<m06mAKC8
zx(rNG?E(&Aw!i{K=Db?KR!OkNtBP7{3~_h)Ghin;j9Z{M&-0+Jc_XTm0ng-{Mcw)V
zev>PhqO3rg{Tt0xQx(;V%gf4dYtqf{an1OgmWfxHwq}9!>CjrZ<sS@`wAB$Kt`MjG
zdx@@32{@f@aWXMBPK0{lLc6p`YZIZO8qj+Q6EQP4uQBM+M<ZGY6mngLb3FyeWuUN}
zjxDw7uBgA~_V_8oCCh{$Qq#OjqGt}@-GSp;Clc#mrA>P>dWTh?kUqv?_oob|WOA+L
zwnq`wFws5jU?I%qI-eivg~xtv|1gT^OwHI{G(`J{E2Em<BA;mf(?Q2;?af@!0xh)W
z+|_<+8K0KIG>&!w)(wve;-F&1Or}@a-!(1DDTex=NfX8c!$BW|z!|PA%5)Rrf(^Dd
zp3*qRtKkSMaK@NhyH~G?b-|F8&)B<d-R3H><;xb50$V^~tBaYm@J=nDyriq_-Q_i=
zcDg^p=l{epk|1bLMSQmi7Ho5)slg9b7QM=OXfd4NziJs;5><jad(^>WGA4<m58cqg
zLoShFPVF|rq-<<1f2p4RI~&5KR;wxe2Nq<NN{W(^Z+kENzjL%Dn^M0BDU50=geFHB
zzR0>c2~AyHIga^b(whYX{D?M7Nf<&&3T;+iEacQkNmJWkSpCTy>g~Q2`zRO#r6ZSV
z3isjErQqn%A>LLBdYPr%U|nE;l&y6g82ER4{w|6LWW+Ms&F-_MC1P_uR?O=LM~Aei
zg|b^f%bb`P_xQ5v|HD#!Z%0R~8bCiDua9&Zl*Giu>en@`L;^$(wI-UnH~z{eLU4p0
z@VW1=gcTu`c?1SUZ&4go3?a_`AoCwWZQ5sC9_yRFL)BfW@p}gI%QtUwW}SFa4npVa
zm7*d_<QmHnvvxXU^Zr4E0tGLt$GB*s$M}iLvR}xg#6j%Nyzlw=2s$)kI9&#r$$0FE
zvmvnNww6V>xSBz_icTSK5^%(sf(IU0-m;~#a`9l>oru~8w`O`=GNxaAK@(?rIcm;#
zyXAEHOsRH5xV#y};6vr)zaWW&W``YJOr2Jzb`I;%@XPeA9*|J5vm4MIHn>xXk0i)%
z!KC^~z#|?#le1yQY(rhW>Xe@wbGpn2cTB!vkI@WvSAvt1k$5rzu%Cgu8KsUy1B}T?
zd>A=w7_4Hklyw472(k1Fb6kmqJTAWQ+wC1){%5iwJWYm<pSYmLwFbD?pRw>fr@!!}
zGtpTxqO>la5J+R+Rj0$Is5q#V&oRc@O&)((kJ>YlZowdem-*8Rvd~Uw6Y$mT9%uH>
zsXFI2ov6V835hqoZ)Ij?Cg5?Q+u>gA$3R{Z6BCp2#r&89uqHHPSS!rGgxh0{JBF~?
ziGnK_xC#Wk_IsJ5X8*}`07m$3<FHi4Kh{<REL*{?=EX#1LWaG8|7?%<(uK&&tpf?K
zr>5*%xm+$wAZSyT7D64n7Zekl)k>BA^~;CyuRFQ9xql})W_o7@wan0-o~E<;TmXDb
z*;Ig;+3vKdd{t|eD@}%yl2(M*YdbKA?IJFRXFD8J?OlR>^lm+-PcPu*_ecaX0cCv2
z!a9%Dw6=T}yV>ma$3#lr_n9Y^``gO~BEAo7Rg)0^8efh2VRGPhk}#4~zJ3nF6Uzzx
zPsj5f{JMhI(%;^m#X&p*cu(Rrj)f1>aMFH$w}0MmR6zYD0&zi(DHyOYs`U5y)<Vzl
z`2C1k#cV};Ll-%HCHU!Al7(@p0xmkeC2P=P##}wXRsepWeud-ec0Bdv*OC%8^QDRF
zFRYfgqs0jTY}=4THN48ta60;<IN%{)1Z=b!2QiVct-w@>k@+zM4#$8gTyas35SbYM
zdx85*o{$<`V7<<+aw#k<+=p6F$MOQmsd%-43(ioRwt^!?_os_zV17wO6d0fWbNho}
zY&yrULOC~}_dXse>HC6t$eHIJaOYjN9g$kaFl_kQRb;orkmgNl7uXvy3^Pr=v;9R9
zo|KjgYnRea9Thfh2>7LEpqIpuf3c!Iz$ejUI5sGGDNm|$x$1*Y|9TpBAgH#Id$B-c
zeV>z=={e#cjwSqZHQ>xLd@y7PN*^Hzv+d6Tt=o9B(eEdB-SE1M=W}ig&HL>?{luP+
z2N_-C-H=Ys&d!2#NDglUWUq$8JD_bVWy-uwaj55Ei1jo6_~a;9xT?D$8Bavsu0^I)
zV8OkWGvBf8<qt?!NV&Y>GeTs#@KBSs0&x}$5G$5cWl_u~9IT>sK(NT0M|t@>VelGk
z+2%w3GKFFehrTp597lAEGP)0TSgSe6sAi)~f!2b_%Gz#glT;(~*F&Bj43(h)q<7#s
z&J>bbO<8je3i<bIc4oV3>%xU-bpw80LsONi2-eX6sc53W<U2-NVBuQphB_lDfI#}C
z_M7BkvvQzsTA#7DQN+U<bO&YA9@1HxRNi&(-P$ali@8=1W$|F}O7)1bPCFLGOy`68
zFS%ZxG8Cp;4>>tYdh4K#P&f{YLSu_%oAk2Xbi~rELuAzdqI?o`L|>lb&bW2jMtl71
zOdh7nwhKEp6o@*M2RBV2M5Ml~lng8~YRF}%Cu>|%{)CRvMC7g~dOvXLiBl=rvZ}EV
z!Nd*gr;8~gG2yW8)s+Ff+nNT~nMmu#DKab*DDzKzIwjLIu%|BdFUrG<F(e<PI4gw(
z%0?UIl1o$j>wF{2jf+Gj%nszJ*qQZ9reyonk(|BietRrdR?|2#P;(Aq(+%4$d748c
zf3jj%S38Fxn)pB&u%*2^oVlJ(h&>&l&6GOW)#Aio(oxmrx;i4PC#>Q;XB*4JH)9k(
zzc1?c>+aCa<!I-ETOea7c;s|F^!BtgaV<~r^%au2U&m7^QfBct+7-k5ld2wI2{Z1-
zh^*~28(HiXn!qCuE0CBT$PODC9x`_6FON)A4Z;Xn(p61IZ-C=LR==!tcKI^V@<fd)
z=?PZoeLm*}BC?reTLzQFbpla~-@8LzUS8?-e<X(rAYX->=a(vue&G*PGpLD`fMW}o
zJWcHldx&{>T7HJY4(NpMO@ezBFs|=h0<#kkn&yuGTcAg+$WlH3^WP&I{j1$^D`17q
z)f)5w%-HWxAcp|Suur_<@u@HbJ_BsuIWV8@Z6=2K_C5xEdysdmt5C>G8e;@yFGGy|
zI-zKUg6}#Rd379bvxAA~{cYD!(Z%_*wM-k*BOE#?!tVRXy*f<YWQx+W8WLA1oJO}P
zm<+tU+D_fHwB3Kt4V`X4M-a4v-+y36;BqB)=Yjmh-I$3@XnZ_dsF<v!s;+9`tfd)W
z%VV`h&HD)fjN&q&&?pXN$OND?Balg)4c{Qkq2i(Y>kfEP3mPr9NQv#{-5t}_%3UC2
zKhdCcYD5}t(k716lwP`uM#p412bi1FUJmj7QL&JIaeJ>)@eUOHF!Rx@22;J$b5i<!
zz?cyP4M)7hIoV0U!eS51?JG!=P#?d2XD6nN^nPcD&F*@<J^Jm_x?NQ22RKq=Xf+BH
zF=d|;R8scLkL)C7)fyXR;k66{n%?Eulq;4}`!@53azH?nlaWs@nFZ6YrgO7r)%0bE
z9=L@So>u-_T%Ip`w(3nH_7l*^KKPzesW?$hux4BrfW{QyDOk5Hq!S8un%joX@!xqF
z`WQ3&{d`TIsrvzlY?o`zF-jmw;SQ)++rf7=UPuAifbQjb7;;n)?By@jP(2byl#!Zh
zI#%Jh6xzvCp@v;?2zsn^d;EpEqu%U@bb@D<TTPGa3IU!in2Ys`2-+c?+c}~iC|GI+
zH!4|<U+e3-J_AI&nIZwNe-0*s=n^>v1c*Zaf+V?)XH6nO?zG6?zx|iXRoWqEXBP<I
zCg`~r#{;1i8vT({b`q$!cTaG>l+?KOM|yS6wfbF>arpnFx?q9MB4C!3%i%l-2P@8~
zyrRE<cWFRiL>3}9-lg|Zu7`S!E<G*WJTVA<fnu%n-ptlax_s{jgExN$hsCef9v2tD
zb3n}JD&7;O)b;o7Cm;nF4>7l)uFr$j9Q0Vo<#OYszo%zz^ZI)T;BWvsS}iO5%sb5w
zY-AO0fv@D)l(7$mW4}Vit0YV-Kb42A0h4O?I}Sh^B1{Tg@I{sU$%eTXO0*;G_{FQQ
z=~GN##v$h?A)6&8$ukqx#}r%Ma?`=T|30>m_BTCkZ$l)Rsr61yxtLgTmDN?9wxH?*
z>5w%r3@QYwgVrsV(@7be?QT9(QBeil6q8A>tn>s0xRHD^a4U+GNQjLU-MiRKYxEq$
zv;xf5Y<|ELn!eDHl_4ooPpVeD#t%e+sxSzJM5+mb0H}xT9z$Uct{EI{YI}gUB`1j~
z>YPZH{g-v$loJKN6KA0aShKk601EJHMX6No<!QNRNyztO8IY+FC4Vdi8~p{w-|WOy
z;FX}K*4J95sW%nh<>`5p1IqgWj^!;~o@YO@8WalH3-e2?TV!4EG<G$5o^UoBLXpo|
z(~=am5FjS}BLwF=2lY*asPhmNA|X0&mvkChcAb#{__(&~F1v(#wApEI7&udq6s~Y0
zkwi@z#tj~K0O;+i1ip-vqTvR(dZbrf3PqfQIitCzVWItQ4>Vfr4cOtZ3)Z*iE_-?Z
zt3UfNP&*_1Tt%QD@x}dOt=s{^G2p&qi|_vEcbDIXaNyijRo<JDO+a+{hccf2t?HyY
z6veR&l};q$|AHYUfTbnie~57C0YEsA-7%0XY5RhmZ2npX{t)7(A*(cn4~eBP#-H<E
zz%yBNrWe%4hP-QmdHRoRTcv9OmlC21CZcXtb&s)c)5RP0E+arz9rco2<SBK-=9jGK
z*7<bK<VR@(q92~7Yn<iE)HxJnzE?qq(mAq1g$?~$@oc>MppqtsqrJ>&o3f=hXcYX3
zn_Q2%El2{}B^P7djc*injeFT$nLdl7=BSUbKEgcStW&^y;CB({VGn%fy5s1doEwt1
z)@@TAT4^EgN|pI-YLh<%$Dfs<c{@F`fBsb=Ki#o>koF-O=6pS_&)DL3qw8q8#ucN%
zi2q0KL967DjXcw*Gah68pg#?2O!*T@W_Ab81Ar}ai(*W4N_4SgWRrnCo8L={Jiw=4
zoYXFDg5zvF#w38yzs|xO^V0d^5_ZIP1GBc^bgf=Z2m`m-Y1dkRgRWBKpbsnFMBS@b
zl_89;^%W(ussT6K$_VYjfXiwYIWR>{nKB8|qC<LtxqsMY63+3?bVM>;JM|BvFseI&
zpw(DP9Re5o2+#>#JHxd&VEI1l&{?-GM0Tzv(^@yy?oMAq3Msnb!f#2W;K~}#wdsYo
zc+EdCRTUtM=%776KCMO|*jXQU_!gHuu8j;#^2mJD>hMOz!9f;<&pR0X!eC^F|0SKi
zRhHzt7GFx~{#lveCznsxSSLXT%w-E%Wwux-IK{(x30?6&p33bos8-4mhcpPT8<>`I
z?VQ%O8*I-sFEm1Lt8s!k0m>g#Dw!+1cgP{3H<^u`y@qj^fRjE5u&{ZGKcO|KRS1DL
zhdJiG{0XP&IGWsZ+-Y9mDK9S%RE1LUwgZ^&>LmSJotS2epqt<eA=6bf5zdN#Yj+t<
zt(~Wb*og32y~zl$*<oQ~l0$NLP82;dFy2J7YZ8WWp01Sd0g3WodH2$ROW>9%#)T0s
z05dpUsOkhWxS=`%T^^S^`CU`$t;M7=r5I^genL+4gxAS#scdORD;*V8G1wQ&0(Qn8
z5l+H-b+%7Z_fr9ZKv7L5Oorl}i-AJ(7M~|Nk2t%omzAq4=PTd6V-NL^cRwX}@orXB
zR1`p;f$<}`x6PBs{JkF#SlJ*J46iV;TdKP0(($&Ehi5e<c|$yDR<JP_j&|BQJaS6=
z>ll}74aiPgGkLMEzk3nrW~8NsAs`p3iZ3nCggQ5Qt4pTS#0@21r)OjUGQrc~RQA9l
zGM9zNG^iV97MPvOmT>i1X3_I0xrOj9$P|CF$vad5{7KuaFzm$$D<it@{$kC@$;r<X
zl69?Drz_~4-aesoYwz@s2zI1LX}GPNo!MorKC(!|r1ZDCDJP$}p0D8?TKqUzR8Htq
zlNbHAZ+beV5=NA!hCqTjH$UI@k-zvf{k#6MTg2rX_)OZbw<^hawhocxR}d{b{1Y-X
zX7tO;%X?mLYkz+SVYBg5cZGBN#<6o>iU{C_7<7cC&Gb6^wggU!yID_yL=L8^08`c1
zbI_&viy(_YLGTgAGeUVc0Q{c-MAmYa1{#W$9>1HGbAc8fyE)b1$aGbcC7<oypexAt
zxaiok+%?SXk07*ujkp2@GkK9E<Tk#bzuLuuttYDIak_%A{=34u$aQTWXE%OmaQJHA
zYrbE0BcoJ&ThMoNBQ{}hw@Y)i4reWOIHgJuoCAP}Acg`L@D^DhO?!L1)>YsV-<)i~
z+e2q$AqBU4{x&WrFCKxQae|;BrQ=%Mk*!@@Yyt6G5OJfYr+>$09c54`GD_)I*Q>rX
zf%((_zUv+o_!X(jhxC#HGV<BhO!rDF$Auv9k|tJGbu#t#l#S=FLAa@ID4ZpkpZK14
z*4_gY(D`~B)-F}c_MatYohcL(d|EI<OotArag}CTF5QE5#u$T!rsA*^KNbbr$Mp;{
zq}fVOg`EOWi2y|I)66G$Z_(k_6<+nF^+&U)LS#V*jZCc#%=o1FQ?TSg(mP^4qVF4j
zD(f2fgg*oLIls3(*;|M4nX*=K*H0EJ@xBD??ju;Lxpqfh+OIW@t#iahMUe=4I!bzb
zhmfnmD;Gy_+QT9i4*a9doH)vAaeW#@d=doMUGsHIkj9^Fq7AzJa{!9(huRXWT_@Sz
z7B$>Fr+U1<zk91#taN=C=POgwRD8Gu^;3D&a)_`4+2LI`yRwP;B9P@iU>b5=i~+Cs
zD<JO3#Yc<|eF2j7<u9DZ_PN#JN4>z&POoe0IR%GJPcZc)qIZ#knXfan{g%RTqS^Ui
z9Q?gl`y8QWP-htQ82wLip6u5z+OJ*Foe{eKvL7`TcEc_=fB1*H#ukp1=J^6hurYBl
zZai?jN1&Rwe2gvj$U@{fOO6_o7aD4E-_YM5)Qz}>cFS{%9!x$MhZF4GzqG48L-A5y
z*|xC}{423)gssbK?$B;p>G^m69GW`qe96J#5qZ2xL5(8$?1gcHK37^+I-SSy(~Pud
z^Q=x+DuMK0eqj)b{Xl+rpqCUte@eX_q>lB>1>cUPMCOnoQoxuLuw1yvU(1+L`#E2@
z3uwJ%Mcy|*Mm($doL$aB&cIMQ$iEcKVYkLvMJF=xy>h71Sz|zr*8J5*vfoVlKpuGk
zYeeBw>W_oqwiw>_7(K9~e5A>iQuq+&D1C!by&E%Bm6$ae<7Iq;Z&D$U(G@rA|DO2o
z7`QVhvFOE+#(CU~D%r)hh9bxYVH_a=mexClE>-X2ZHm>-77w-kT1&KWQ$le;lv0be
z#Rl{zt7(j)Q_*lDO{M0&-91We$(7h0aIDogdtw)?LgU!=2WE*SS*hbQUnt@<5BAIH
zC-TRoZdJn{YI7#d>+0%lu`q4K)Evh8Yj6=_hNHj?a0nen6Y2_hN*`HtB_r{ZW#faV
z+j+9+J=jU%;0PpG*2CP`TomQ`rNf@jWgB!@0$YLYqpUHQe&M@ar#&P!6%Q4ib;^;e
zFmKIRKZK#S2z{7^wlQwmQO@Rf{O_L9hq$pF$O97x8A1Vvi#8h2aqv*@%XmK+mRZz%
zgMsaoiEh4ORV@#cbRxz%X?1R!Hh%9`_NIe4Bs;rt{V^No*3X{jjnjYu^4-)R<~QzZ
zl}B&If(@-W;IY1&PyMUG3KfUy#pX3xiR;8wa3!|Hkr9&JdaNHe-o*L$?+Zoj)L({7
zHKh}^Sq;VEVO;km#_1RH8ex$E2Yt0zwbb$|oJ*B{ob_2r#2URWbFcDorC)Px95Tuf
z2>n_N1RRQjk1H#h9uac7c|><@ddAU8#>PV<Ls96);jr9wl9Z52Oplo>_zRgr9Ag|r
zJXXoc$#V^6vIu44e0WTflPNBE(~qj<*oD9hoVgi#3{%Uk#WXeTWS#kLnt?x}H2H?^
zxicIzcr-a|y{4KN%oDbGeDfoXOoo|g4Kh$7@$J_xXedFCHPv6a<XYIR2!zvgufnUO
zzm_{rBu6oAa!)R5S|>L+@*kynIa2BPuX2B*XuPhn6f)0KKYb5&-0AB2A~Y!Md%8Tb
zoBoCF9)IzPb#@vK!_@M<`$J=e_sCLzN|gir2u*4g7Rk2t5(_&!W_ap<S{2&YNmS`n
z?>hgR<`)%%srKu*qr{u57C+ipsq!Q_qSn2o%_xqHcc=aMjy*Zpgwe{lLdaHzC$BvI
zmnyjo3KQQdOItgLcKY03ra{|hdV;iErBPFZ^0er}8teUaOnkf~dI=TLy8#G5e}e)M
z@i6&`jm8L?ATxLrLen)RK})b@BV$NOP78TP3K%DahlSk&C}o3MC16^T2{?UT<d2H{
z^`jX6SB+M+ljUBY7~C^&MOTFwqyOvOD{RQG`IgJ5P8GnP8=n|2fpr9`-`l~_TXF~8
zz4}nKyWLL|Lcwps)k$Ai9W6kJ>m@M8<KQ$c^ElH-a^1vW5+erNf!KYpf)h=s+*2p8
zhv9wJMq`~Qjw-XD#!87*%H8ktdF6TVO*#NusF9SdAw@?-2(lG6yX`TXdMInfDPMI_
zI5LrO`cSAkm1OKTysh3!l1M#2SoZX~ytznI+TP*>^?TfNKLU8%ze8;mULd3NKQ)-g
zW7W5-np^YWI-!>39m)>ND5aWQ$y`c8u}2`k(_Cj8Ltbv?w<!fji+?CvYC1ZpreKz?
z-Ppo)TnvJwtUM)M)sprK9PB?=;L2OA-?+w^Xyp0jFGxltoi8k?7FgU?ECQXp!+lR%
zGlgv*s@f4g(Yld-u;O2|Dj@nGKH8cD4^IFz9xFmz@={Y%Q&B;Ka(VN((_o)cLBUQ5
z>jYIeD-Jm1P<n7mM|1FhUH2*>%3YwSA6Rp<8B#gKvV{^}NZpSBG9rX8I@#VQwFg2@
zO|D<^zg93F={-s&rNa~2R#Afrra?~mmmP|=omT_HmjC^EM8I=m(r=god+@S}fT9dH
za;@?McZ8%ADx9lj;m`Y+e}W*^7g{#GZGIF<Ohz05cTv{^h?sl7NDU1Q{ZT#%(5$_6
zIUOIimdoW=Yr>+oCR|z&Zh;ao?hS-w!<w{^Q@>Infb*ie-t<2^f83hU7;a2(02k&)
zu*i)zNvV$f7?<hh0wIl-E&rc-vVs}hj=n!V@ooO~LU}5a6j$0wH11cGO+w{hg!=$$
zcF*5C9fA@*1A64)`CbxpibuK89U_NL5bR;E9y_Z#vu_EwOK7iK5&>c^0CCA9o66!-
zlo$<2qX|C%jsE!X(_H)`h*N|nw{t|GREnM!A>je{bBIIFGwND@%0b4&#Dw*bTpjU`
ze~kLwI3`3_9iWHV)OHQ8JcMd|&SF0RKAwgx^~#urX55gG8qNCu?wKUofusEy5TDG=
z&C}D<xDl0_5rHA$9rPy&x>hqVKg~jN?JYGRAx=(@!{yXbP$PwEbpomUy=-3itXwAB
z&XLGlTbmrrM4yD9mM{N)Mu6Jwx;Zc*yIitg-LQ?gSv2)3Z!~zt6yzopH@tOsJp;?z
zWKtjE6mdqx%plfkyBp&%RSzX{X0xXC1!9{H;gHw6Y}_wlic=&RM`%gcMHjEynwtOK
zkom{2%|gEW#~7bQb_6%$a~%w3NBCT)jJe!&xht)vp%e$UF^N_l`;~vz89_JDeRVK}
zhd~0NP&YykrjsOwK}Dx|T0th-aG~-py=;C~+6I>+d5?Ffj=#oN-M}l@NKb^khx2nF
zuEW`R(!?wsX|EoH3EO*-C<7OxbdL$)R+8^1^t(t7?-WhXtGv<C;l%h|M=wD>s1xc<
z)D$HtlonY`W=k{(IJk{4es0HyReJr|p^CW08l>39DRb3%5>^d(5UV5{9IIkNO3SKl
zsrJm}o2lZZ2qNvcvNMDxbCAdUWS^$dH!aY5l{lqRoH%4Ez(hVa*+gb4<cG^=W#saY
z<ZE8A#`hl@an4Ewzn4HfeS2=RN_Opn>>uCBhIRc%s@M^|7R*A^$5Q8KHpg5%RrU$n
zc5IFL6vI#Er5;N^gsH16b(T}r77o?Z%F|_7)3Te=#1-fNcB*Pup1O<;Vb(6~0&ZTq
ztr}X!A^ZplgfKn5^hj(lR7la9c(di|ZampLF7SD@X}~BMG^nGG3Z3vf9;KK;K-{T|
zzO*O9Iby7EOD#A2En0tWqdBjUEArh+8WF~^N8>KzI?S##C0Tb4^0Ld!RCXdg`jN3N
zEN=k{3xo7WsS6%aNDP6IP?is#<$tw*KIL%Q&9%$f)H3j|@?@%w@ctaGC%!GDUN1`R
z^x@jpmFdGoY<1iTUek8Ej5y4n=8-<PZI%X<|7cPEbcK8rMVcE255{lq*-+3_RFuv6
z6cH(BwjWKhQcEyS6z~h(#ecCiO$&%RRY{T3W#xj#*9f=ITsj~#9q_(h@&nX?0m29J
zUZDEHu6>~I+gn*#0nVL*BL!j+C0$))t4z9B%lxbH0WVmj5R1sYyYrT<Y%fMZViDXT
z6VYh41#Ew`tJ+qjdasGY+q0#gKgFGIARz<!9z51to%k7d?DZ7?fY>wGWsE06xsb%1
zNqw(A214_TzVEyMluH-)qc4nt@Yh@@HiX3ZFTK!cZ1}R}+VvRVP8m<e)14O*Iz#IJ
zVAP55V$k?p@D5>@-~Od_B~vq|*mM`w{dO{o<45IWq=Q5=FqbO$fWG=Go0~R<zn}3*
z42pq5O>4bPB4)=6Ib~#EpymEqSw%&F)*bsN>CXr$1cmGxPVA89(oQ}`B-D5k0d7uC
zRR*lHF5ewx!2$rOxJm;Cg=k?HEd~QPD)?H6^41mY<1w+}I5IM9;;LxXhsVDBbZYiz
zEb3$z5zw)O{8@8XJ&fUt>BT(-)Ryma+`djWH}>ZV_74n)ky2GU24e>BXrxu~Fb9Y1
zauAl_gJV8)5Z;FZ;1@t=97lQYU^$9aGM0a2WGgG0j^PjZa*0avZ<@(Ns`Ss_e}kHY
z$F&^yx!!y5JgoNw^x(6C&>nh!fgNP17dS8g8`5teOfc1S6Ay=t(JJI2x7O`%qwa<V
zP#lySAw`CDez*p=UXMe987=U!1OdN(eEb${m!^f*h(Sd%jK%6t6%^}RmxpmVo$rL}
z?sGtj<L+1E3{;FVP3YGRJ)ej+(D!i|(&JZWaZmaMBNRm%U)YzomXV1G8{TtyS}*bG
zxW2fThK>K?)oI|8VA>U(ty1KmG7!^DZN~r9*|~lDb6=W`M$_DUYls<Sd}b{KmVw{x
zB8W8fJQ&xfBN|qMnw0{><{-o>!9Sx^5JA{VSpJC;NhD{W=s@*WG4O*Z%shD-t2T1z
zX|ncIKk7@sdKZGO+H&&)+UR!Rx4=O1ckdY*3nGJe1<|5tX$gzJOQ&$!y-ELEUZ${n
zyX-P}TI*h>SIH^Kiskx1`ypi53*yL2@(T|3mp&~;0{<-+JbRv_b)Qy^rb|Enjz`Vb
zFC8<RHu~UMQU4L7aOB_K;pm}ehSS)`3~D?|{7-5N3Lvtv{lTT+e5HO5M8KhwM#n-<
zx0y}}b&K0Udn$ZZz3nr5U@}SaD#!K7*Sv67x3YHE$3G`3U+q=ZchNsqUUpw!0LC}=
zA__6@l}FDri7!jfe**!)v%KZGhjNgDNS$PvXrMQ>@veT<SUqxhQIAh}a(w*h^}Z*8
z+#J(A0+SuK<lzh6N0BS~n@Q-h_oq`8IY-m^V#U|gk>Lt<wrXdsu8)`<p4U@6jN^<q
zSU5}wOD62UJ;Rh_tkyHf66EgeQbER&<0&ARZIz)jHzlPw8lkWlShjn>Ypp@?A(Ebs
z2k25_uztY94k`eu)(}mkjk4(66*v*2+9E%Kur90&=A8?}d#?$nkyf6&5R?Ln)DWo+
zCBc|ORrP<55{O(V2SB&OBm+=FxWqvXR^p(fX1i^9T|TuGGT8@W6k0UFNHyts8Z>9r
z&MBUVk0TNziYqY5mKeB~=3>Gtyn`RsBlc@HI&hhE$#YffVFPiDCB{hF*n^Ez#I2WR
z8_X(!=U|9GTsm<KvBmyp^jIgTsO72sZX`}kM|1z_a))fY7RJo6!@bXg9HAM+MWMxX
zBosd1#ozKbAtc*l*r{KBgoc+GX?3Oez$U;K&Zt|!Ttu>$moR(ry>IrH_ZOnCRSe&C
z?6-9DC8=695oN~5<?J_>M8C-DN#qoVf*SVYLUH==qS`-y(k8|$TxBej&*slw)w1e~
z;HB3Gi|-|wW3G>;D+y1I^XKN2gG$iF&D0J~8oxSdY^kFaY*Amm%qVy|ae*TG0@WON
z!&?`NnN3$1R<hZKLKsnt{m4ze*2I`Y{vR?t-Wz2u-l>J^o{zf+4Rh@Gm-CeRaj~;M
zS<Y6B8#5^t(@-X?WXmj7w#k(~iRb1Z9tJ5kE43`r^a=b$M;c}e-S{EVUOJ`j7V_OI
z1{d`5jnjPCn7(qR<~?=invGb!QAAQ8T>M+faGtTVfYiuZu#>cQ&#ALz5|8pO@)*4^
zRui%+4|4zL48BVB%fzUI<<A-~QJ2~`IcSeb9JER{El119fa^f`7Ptp4CMKp5y-~eh
zN%3PVnIcuUm9>0}C>w|?HOn#c_dq%tUvV;yeRv9ofv+s_S~A(Cf+>B@jmgF2+v-yE
z@B8~x4b9qfG$1+j#OJI`$@+4)G-mhgv?KUN>}P~Ahe>gCW$Y{gpEGqnnSgsN$^bP*
zVc}nA=LBMYQ|zkh$~1<!hU}a)o}3m-VcV5DVCwpVNRJ+u-kZHRV^1?-=+<`%<gic2
z7!`9SjHmG(@o-dS=mb$Zp`E-ghq0#f+(Y>F;g|)gzu4!Q;iJSGoHp$PN+_+<;~GEa
znM!GOH3H^$V9QWGKd7SwC3!;9Rc?l7uYaE|H@fb73!x<=IwMg7Yv{Y;Od;G~FwUX`
zp40w|zvG(Q#}(*6zp{5i{=2Wn&KHIN7I9$A$x6?5f1EqOqM?HziG}AbrH+e}L;2<v
zrbK)cKV#;C8$<D<C*TbjGPcu${Sahx);Z^CFu$R;OrRf}ubs4Th8~85goynoHXKj%
zbFzgX)hlDAsVw=_%M?(qPl37{Xb{+q^kF}Ybqxj<q!8l>guHW#AvkLBfmNxXS8p5V
zmwklE3SBBb<S$f`l3g-#_BO&mn}Ki?5UMl$aA8o>Z2^}wuD*gER1HluxX~qqB}Ccn
z$78$B7Vzp@5`J<Qu}#ZI<Fz}0W$-j4`&FLE4!TrzBp4Ry&-Jwt!|XiBae$|(`({p-
zttV;jRORw75?u?b^@ecO-!UvYkZbX}+WsgE={U+XPydiUrE@jZi&!UiEeQ5MG$GE-
zw`o5KHxvUuSbHz<!pGvKR%;iIZ-@RPTT*V_+g@hkhiv%Wty%zyYDjk(I!>7gMmbZ^
zi=C*2FFfSuKc}d9U~#ZmFb4;F1S-K(WB%)}8-n5qSZ5C4a!!DH;=B$D)PFjVwV26;
zt-}`poMyRLyT+KX_#h|75uwvB@1iqcmLkafR}Pt(UjN-<yM5bwA?HL~j}xbvm5<2m
zsB_y2WfPylmDGN-GmD23TTxrkkgAwfzjKuFAH8;@$ZggIc$!-)zHDP_fi8+!>Ay~D
zIse+JR-h5p-yZf73bCk6D^Kv-rl8d(DB+RuAqH((OvgNi`q{&xS73|evRxa$FDxu5
zQAxglU>q|uV@k+&!S|1{8O*tFx4ximVw*@t%_@U#s=FH;0RS{kPC-FRtS$`LhJzn(
z-OV+j10E*~sGTe9$=eBH6w%JM8m0>}9uREExLuEDf0#&a-FkY~Ej41hX079S@i}Y?
zw!ODhivpfb898ac-6*<tI(Iyzcl%N6N!D|qEjvh@R)`w`UyFuiMnkvi!Sike?1xDg
zxbm<Zx{#a)m~3zi(TxiEzm5e)T9%+kK~A+5HjL^f=v+}#(=*@zl@n4E+>1}l=(i}i
z&<dG(2WcM<fLb@2t5&HljqCfPyXg4%m|)(*^=wlPHM5$5<U?o|xtpO{(pA}LZgMiF
z6=96Ms?^#OhBL@MKONpQ8)=)1GE;bjipmkp*%pFd1xshwzy~hdJ3s?CDg^>=2IkYR
zMhkUyyyZY(d=JY-pLNE8ZX5mrUZ}=Z0i^KyQuJ7rPuggOY+mTuOFysR(6yVk^+3kw
z^ZR83qEg(mEWDH%4`e>UaPq>qU&4Ov?q{@gmJ-h~-7mYcpZ>!RJaMj486h_AO-)gO
z^~$s|lHSnR)+k9BH}Dd5mO@x()Tk{fDSO|ha;A3nC_xaR8YW!ApT!s!^^zWg6Rfw-
zVxVNyId3t2RcYk=B;Zi$e()y^I72wsVq^+~(t7Jbs7sx~om>AL|J3Lk0gu$><&VKV
z(?FZkrl?d-{zTqhV^~x;StqCZzdxV@!mMBwnO;Lp)@uMfqoqv_B8SUURk`KI)mNva
z#T{Hei4QSNtfnE*6D+pM`P4_EVH&YMY!VW4QWDdYve7Z;SYD5ewTfO%5a|YsRxKz6
zf((>KDm;WLsO1z$S2x0O7c>9uBW8+{dU;<jRrd<Gx*aYMe5W1UK6Jtf$8TbGOe_%=
zPTE{jAAYnDzbD4<+t^M<v}mai`W8m*#^zfxS&br=om~52`gXv)*NA%Br{hbX<-+p!
zTq!AuMJ_IH2C1{9k6?gWu;!xCYRof(DE3b6I>p8vr&KJ9@MAEk>{Y+ZLUopt*D$a=
z@u5BQAyQ6RISi^8XL#nc4>VNCFD?5%teW;;zYu>|lkH+f^Eu&XI)P49+t-wYt62L9
zIm;Y+^^kbow!I<&SAR%<QWC?lTMWIjE1QEjncBA>M#|Bz{;$I%wgw^z=4=d`ApSz?
zhAd6-5i;9e=NC|;p6||cjRiJpYV64fqYFPcZi|wW<MhnW&9QTE`28iUo1fC*iK_|M
zsO|eQ`?sJkB%VYh{AhQP4NFyKQT9zNWvtz5p4JU<sYpWh<q;@C>>>N!dqy8uzv02K
zweI5ptNPf)gqXr9Lap~#MI7-|F?B%!y>n3)5Jgz|Zb$Sq_)fOjo;l30R*$FV{2QN|
z23E;jU?=2gF5-wGN?%_e?P|n5k6|x_xg=J<>;o*g{6JWKLqaGx#fHn`@0uA)nbR8m
zn<Aj5kxx@kB1q0BhJ7Y^%T&R`5|39qZLq;#*W9GD!$>=Uv4!4CsHc0OtEo{SY7-U~
zc5t|V$~O<9&SzUaBK)i0%ue<~K5q6H^l-=P=dN%$w=7X3KJtr?a>FuZ#Tzx4J*1e@
zol%=!m9%J7rdNB)VogXHMuX>Ay+-l3^>asa4QErg`R`X(>x6`u2-1Cs!8LD~?9^Yv
zLKjicz>OfOE58kg`THq>RK(i37=m}<-QQlM&zs+FQgJtDD}FSc8V?<SZ=iEut)Jy{
zuX^?NJrWL%2H{#oS&G>S?^=t(mXOc=w|Jp(Gmb}_U#JTM>gZ`a_Sh^%x{E_Q+V#dm
zU`%%-iNuM^N5C@*cMV0PDCV}S+YF0^_~%)YuR^~+1u%tLy@02MlLGFKiWI0jS@Ra2
zVfuX$WDoq979-OnvKdTjG~yB(p!?(IbWt{bo!tljEri93KERl!>KOz$K$hbQdgjI*
z*-I1_Hg}xlge1CGJFUlhqKtXjL3eqt7?`|1+q-7kZux`8yaFsIuln607LP&QBcoXT
zrA`2QX=q?SPP;@U;+}*!CQ%N7(nKp6=qE?*bS;?yUgd3R6-dcPoIXzTNqo2K4$|cK
z!iwS6fScYgjt`)9V#j))%O+6(1#oL-FFzNTw|iXXC1pYK?Usee?A^7gZ>ydEr@h6X
z80kfZft!?`7cM_%m1IWM2YPO7vGWrmBV%G11>6wx_&hF%p-6UO-Y--_{YDgYYU4&B
z#>B!>GH<ut1-8IyaTeWnPwBpoYTIGL;F(<$=xAwBczj9I(0`nA@ZVEHC3S>=HMWL?
z$1T6Nx5GYkoMHt}68PMY(LuaL!~;KKFIi?m|8F5V^I8nJ>Te(kh|tPi$~xc;fj+(i
zsY=Ch{De6wax*JNAjG~;IRr}Y5fKq><(GC;9-IKYMl!15^z>ZdJF8wNHl>C-j-ga}
z0=}?dkr<5oz(to&28$L{Ej^uH_AaI9?KTq<)_??BzSaS%4m8sWy5uK)OI2c&<7Z$b
zS+M#KfzRq-ph4gFw*+7Nf80@(<_xc~p`>rKp6-^Ziq~j{QRHI!6za*y{%K1zKU?hb
z1-%-^GBW~YT}DPPa=R>lP@1btE`cyS5FC+OWJ`HH{ejomS>&hxD7R7IznUrf4`Ykm
zS}*rKZ+@-?sXWc7RxRvSbJTgMT;wz&pb)Ygvr+@YBH<f5J;MVKLV?#$BF~`)#fdXH
zCFP$l>K<vM?#H)}6lk0tJ}|s+4m(F*yZ>Ty7eM5jQ3XOY^ZD=VU7q06pksCP+`szB
zd+cDNI)|-Uy#XYIng&&)C;fkr-iBaKkcQY=WYqlHT*Aiz3QtH$XwMc}#^~?`ILv)3
zOIkGpp7TKr-{<`c?ZKaY%vGSa;IORI<Dsn<k1eXQt$<O8DQ@$YLM=qjFty_(;O%*<
z+H2syl>bhbplj*A3blD`>DQ6Z`?DWmQI}1@`Iwvg^Lx~2*2WeU6@j`9dA#457{IOr
zf)L@xv+!GgFFf4lSz8S3{Xcf&Z2V^!hYG7~u;C81JL-9M65bwW>x#P8Ow{<!>x5I4
z0$~asjW{*sk9DoJr5;0#07?eb)W0cTnY?mq77uxBCL)2@9J33ZDI9JypM6{r${BV^
z?v22OmWyUlTf4N6+v8F)Q4GH3aL|&0iAfa!a@0qU`Tfbs5k97e>C~<*Kgqw5p~$Yn
z;5{6b&V1kQ55o#*0MHchL6x9<7?K(efWbg99&^(_UEY&Qz`LOD6n<@|N12)bY=4s%
zOl0_ROxBi&`oD3wb>i-?IkloQI2X*F&X3WRqxaoKe#_0NluD)dvv%@+us?Mjh#koy
zir~+Vj;T#c%ReQSLj+1+xJF-Kli)CavBciFTtM)$P$`i5<w|1-LjHRKBWJN=`NqaY
zY7>aGp*%kb?&zTJ9r2BYF)W)dkZ(*4qE*LhPi%q@e{IPBnBfjc3pYZ<dZ|!h-f~-$
zpS*~hg8t=&F#9tUxuhp8>K&n-mc_C1GC|GDBDR9v&F7Ka0<py@hGqt7zq;Scnt7Qx
z_dJ;8Qr*<u7oa!hGk`h~SaC;g&M4IWULQOx>UZWwb|BO0I5M(MIzFVRx^Rzr_^u_%
zVX(CpZu;xn=&$0CHP^t!L1itLnIAN6GRkzbo9(E}R<Obu$jh;lvD=A;^=JER6AO2<
zuDwAe;xl-7cq1btvI#`B0znG&(3*NGahStVUG9IgmBO}+igJ?0Z^|T=H0m&ay<1<1
zS0Xv@82J<#Q7db72e=`|;m38jYGVc*92`o*FHEFCq~tJ!wx{4T==~sCqhi!Z?RwIG
zW^-XE8!5^z{_j(`!i+&QIJ2cd<G$>*C|#K~I4J(R-<8s`XdOdVoq3a<ReE0D5K11<
z@f|-Dn7dEa?k;Dpwoae9Po3we@z_+@JW%?45F*E>$qtX(n*_)}F^I`1i2hto%pEAG
zK?S^?VgDQwepd*R6|T9HG1bHBSMu^2NU@@CC@-XfE0Zl*atFFvZB^oQM8BmUy_fCv
z9-lUr`A&Ozu5H4h>errW$BvtxQ<yeys8ysnG;Ks>woNJ^==xCZBAbgCw`cDPTkHG#
zpN7@2<UH%*aHGR|0Trn(a8NdQTSZ0XRt1XAF8=gFp-|gkavSi<pv*QQ1*CsU{zW)8
z2iG5_cpMn`h+h7OpTFdk4Jqb9ZFkP83fmp{wu&+@b^ABG*TH<X_=BhKTi9CCdgzW~
zquFe|2>zZ`Wq8PaG!}X@J{V8?{9eh3s7=KnOn?dbLHOoMOnOW@x%S(9^um_3tU?GX
zcw*@?w%y9%>Fe%aUVKRu>ju}FZM*~)dgt5Mlg67B9d&*G(RWk!hDPG{EaWb(7@>Fy
zU4ot1A7+FsrC2~42?sdmeX;S~1kgE<@1aursB5Z9Jvv0EMs6&?3q{1^AlUjwp2{G^
zppvZODuBw<38Xp1-&RXiCaTzfT<1&@C|n@%a63Ao0P?qI>s!l)Fw<89dGBn!O11R?
z&@x?GS{lVE9tX@r2qGHj=S?$iAPZgiEg6eOlE7=(St@lF*e`oYRI6X)?z+vV2<cg-
zdlm_~DSiZ|L)tQYb%-y=Z75F&wvzrF++!s^!m6h%C30$XY_T^Sm#kAMEDi$^Kn~}5
zd-0*c=|s8O!Uy6TpxR)U05aXsEKl}&o8QFy_Pn&T(yh+l*SBXW8%H2In5g_QQOJ?w
zz(}MZ6mAP#cW1J>kSGoF1BXquAj#cdLBR$kVTFx#Hv9t_zv~02qtI)z#88mw!ujM5
zJkT{u@D+xJk&C9<vb^IMN#|qJWQ1>tpPWM973_F*5q((<`>>IfT;@Go_}PTyvX?;l
zPm&aw7pTfj{JQjBG}q~D?alOL?CrJo4fNd<o=oaU9LfdmT737~9Yh!tQJqM%gBm6!
z5Q5knl%gdhNaR}d?r7Dn)%NGA@zxP_4M<{sDOZTedaQQvvjHhq<7KvV7Cl7&LU{5J
zC_$IQ&tQO76VT%gxIJBT=zgTlF(Wgy25q9}Yv096DhA3y6>cX8J%am;7<3DGU;lu>
z<Z_Dw*?y|H^uLAP3pOUmla$$?bC(Wd4s}Qk7ZbV6o`S+7^9Tel>a7&QZ!GNM?(R}1
zO;kxbpN5GXzVS264W)L;UPg4FS8_as6;dlJt8AZwKz>eY`cy~3jMiHw*L_NxbG$vs
z0jask!qZ=cki9?<d{s%sqyfu-vDBG%Xl;SY4^vtz#`Nw*fsdYmnJ0EDR81^lTm5%I
z?kl?fy%_rA#Y(-HytH21(h8M#<J2Fd1DzIIH6<Q;;tgOY)T())U+UjjCLTCp1Ob-7
z73YNl4kpph(B?S;9yQ4V{}FqW;X5JA?X*<J?@Z?@@#gT@<vk6m=GclY&_78rbhh$o
zhD>1`4x<o7pb-gM@4vs-iOOkcx-|L*msZmR<qV&$&X4}YNKc>S&sucH<FGCWqDV9z
z4=^gONAbCH^YSuOafCuLW4RL<EGDs6vEqMO^}0L#p1<2Hm;JZZ;Dj6EDrq~$m}xXW
zEN7vR-<%}SA1d>{_>@h|)w_;AVNSSDPLXOE5UX$q2`iQz*m36BP+H+a?17t|K}?xW
z=_~uO=a`eBnZeYWX^fHgHjmeWa-Z7z+VFhSiLhavOB@DlD^hy4wokP4eb=2^=FrgW
zZ}0ObE|qGmuAy(#hh7U}xJ&<YbPj%Dw`~;9wY+R&VcA}`wQOUxY}ay2%eHN;TDI+H
zY1!I)@BI(<S@pZG>s;r2PmsRrMiFM3-R2VOO~ZF@o~mi%k5bKC7Be8<a_%UuKvnQ8
zQ-{H6w=0M8baB<pN~mCM#Hc#1eLGUM)>3#>n%>u%TLbHKqT8^UhONNxIra(Ki|+@~
zF*m}y1^lfmgzxR=l!E^0ep<bhE^^zS@4I*0y26s)&4<-@x~|R5UZRVr9li+R4KIIg
zYAQxvd!B`ySQ09yy(sVYy&qiO1dAVFmW}Qpz}csUF!6;OrCgJ1QqLRt*BfOnJ#d_?
zx5=59s2Ul?+uTLNRuj-i*~fWmsHnWh!TCj46ruxMnNDL0THzAnvatbz-1$R=7eTEg
zG}z>KmcJ*n4m>s+k!(eix{5yHhVBvfmq#g+Eu${NXg1?xV-ISfk_zc<*;E@76i&Rt
zwT&9;>dvvY7Z6qI^qY-7NI6PLN=BLqgCL)uM)})=>XefG3Y!oU$#qF<p|;HvK~v0H
zINc5o7FN=aq~Xzj3@2RTTbDgiQLzxS6{sJBo7U3=9pxAus$YyTNP`G4zp!*slLvU3
z$#}?+aIQ6>t_!j-Y5h@1z#Tzi@8FGH4fwGSp0;@CMew1-9cAW;kzQ0&Px_>?{Jr<{
zP{f?vj|jq3=2K!?n7!$fVl~r5J%<~&io#*;@?{+u7;)D_^u_L1YN<yp9O&f@YihFh
zE_AR*dS@Pyd7%FkAbV+PX_43ffAPuee&$oO_`_XGPgY7w7`CZ@0f828FEd%5EtIp_
z>yzvEuAhzndI!%FOd^>LyY+tBi4d8I4~YxkW|aV$#;c+H(}l!r!cGxb4{|>68qZlA
z?vEt?3+^+1yrKWi;{}C{JjJveHTMu(;tUT19H^Y!+*(r5-n`DsRz2^!j(wdaegqk{
zo&a;>b`%EwOpNSG(2QS2rF^QC{aWM1=}K@7hwXpoCu?@Sy^t!z1$MRX#=)Haaf34L
z4kR=|jn&MA2IkX+JUkk{-ie0y%a5589EE_4V%l`JDS$2MqZ}1G=9Zy<1mb7m0%v!0
zcJj%AbjsslL7aB5G21*>M7FHGXC_&Ebs^e^epbsc5aGO}pdt=fu$|fHhu8qMKLO<$
zzTU301KyBqvDggii}22vBIH#M`7Sm;I|NjGe*S6<8P4&!lCjc0Cq7I{u_2~`n?fVt
zkS>uCg7-p4w&Cd&ChPv{Q&VXGzQJ>(@pg1D`DK|Yx4rMT5NQ+?6q?%lhS=L)pAEbG
zh`&YKSYyu9RA{BpUDy@5;j{q`!O_nE0Em=pDTeV9em-r;@qcSeQffvWKC~2mT|r{*
z&drp!&WmD<-xCqy)^Np8dzmeg3!?H)ln*&fU$EW$yZzebeUCUWLq+2sV!5AB^Hnrr
z4lr1SOxqKRJ+D(9(ffu7>Hqb&d!Kh(=A4>gS=!9~;u)@~4&w%k+90UiJS+`bOY57L
zzTV6vZhm(dlaIdo5{^df_vdygh0(zI^_Q#QDs4!_3eUkeIzXIpSg23t&|x`JwS#E}
zv@dyAgrBjJu|$smYs$@9m(k+R?k`M<FSQhD^ams<768>ccPQ@xr&i)Z<{NYNOqxGf
z)_cHetIp|sS!kqa(Q6yPbkI@!Iw~NkJFgk|B5)m?_Ek8GK`PuQp(f+0fE~@Pkx5r$
z8!qq){8)wlzFe2@Wi4f?8mrbQo%y5@WN!5b?89tm3S;2_p>k@|`&>}4OsRT4P*dWf
zJ<F<#mONduopAXX5<~EP=b=)5^p@YVeQQ%^XQsZX;OoAj|38lvtpEP|s7!u$Cday-
zX<7?nv%g*EzK+1G%tcNP*%VmczKS!U3)6&Zvzg!K`|twR-As@^(mU&W@ZAZ;{S{4M
z8Y%hQ-p^IMAE6m*jQK-kvTe)Z*5Y8|75>g~xwh{=E))t$CtMrM4g#Hde&@qrt<-GB
z*W<C8(}PKrq4*rFO6?h-_5<|O+~6UN&iNg5Q+!U2|9<H;vPB{7+bM{-<nv4NH`&#N
z<qDTE6yszr@H2q+*JN0xOuN~BKB7#5KmWzYE3sG7zcr9Ubj{I}J0H~-fxJd7IZFm-
zuU+lG^EadGU{a8^ESj!Xo~_o#=mSxyA2@KfuLru05%>RhI89JvElX&!iJEt|)}rJm
zLEy03TIR0lNS$z*pjEB+?al40C=rr8$+%1gKXrBxK{=RkcKU+h53~gCqobogLBloK
zEs*^>-;1qY+>5yPMVRnRGNo@x)X(s8<%%u3e&@K+$b9ia7M6G4>1#(8_sQ7sUgZ0z
z%R<Qa#*zBuL}w+jT7?mPGu&l!u8-IoFiBFh*l1QB;`wM4e+HA*KftqjZR7KJt51kc
z@|`i;vBo;+_2l*Jg7%Y(RQw+?Fey5Xhv+MPuLWD)c&RnOddjoWskSd8K0(uSwrF3u
z;v8osD8MMttab|hhjxdm@xPOkxpC^3&+^jJ5x%#X|3OZCiV4C%3x^3`7Li>2&~8{E
z?Iq_qKR#zOrKPFKbzr7^B@i4Gl<xPOM>mW4<TLGCK}f7k9Uxi;c}ee*NF*O<cz+9{
zls>w#fqPV`HJA|n@q{6B->V@Fw3+)0`*-JLXU96$uv1~+a?e`r?nE3(N=odWFMnlB
zatG6)6Ff4?`NdlL<CFBvKLY)(8K)J>8A@9?Efp06mX8IaeSvDupTJ!d0~I?CvfHaW
zItB*)db6?-+hE$gy}cshQlf$5a0SoTn96n2p}6E6=9=oVyXxy|+~LuFWvJT8ZEB(o
zMW?J<$MYH;F^Yk~!4ZlWKB-{1tLmR!p^|jA)Okd5KcP5}KR!MSJ`ER07VR`xLg~WZ
zjUF$6Z_MuApaAnP^{o4iuPy+~ixbWN4gMd;_{$JGu*(^#-4{Y6=`o9c-JOah<c_8F
zBw4-^Q&-12T#R8X5S|LXE}|~_#fdwTaLcM1^10SYruB6GJGC4^6_+(i7i9SKv~oO?
z0%M-c+=`EN*-Yb-NKR@?g2!je&Zg$c;a)q^#cT<oR!u91Ncxj-56QuyNJsUJc)Qyt
zulGEd?o6ZzV9$m|+~pgBeb{nMgA{tB@rTM*Z7l%o8Lt<FX3$;Gd6UK>%ag-bl?vxN
zgrD@4?}hV}Oe#yC)H=?59j&Yi$&MJ07?XINX*uk)>MNh`GNb$Q+71337#NvmVgQ+8
zP9`uD1~4keYl}N$LT*4_o{N)nL2|F^bAtuQ`AbT#AAUS<wfhtL4A<FJW6<GsJWrP?
zLab!`r@t7qhCA(wQ&C%tfehn6B57A;<t_HfVs#d$?P6Vl)CrMwU~S6CX5dz~=YRO(
zaY+u!lDRM!e1k5lE&f{-%spPG7p#uZ%W(MorFq@VY5k;EZa&Jot_6rN^64Bh?Z{jF
z_Ffqiq{9&sKb;wokJNlSp8j3j>OI~G<q}nT@UFrTYB6|_@$B!sLlb7ZOaMk55Yno=
zsEq*Ie>X_PKS$lMd%oW4O9ffmD^w*tcmkihf!7hW4`~2gpdYvrf+s}11hEsAlO33L
zLb@}lFW=ernuc4VGXx~`fKGQYYZi~~YtI~i_P-gRz9x{lpteWJ*ONtLVqCz8)T$vJ
zgiVo+vc4oZsc$tasGB8C>ie|1jxDY<Se`Si!pBC>3D)pIn;W=-&Pr)T#cVEn9Yw`S
z;m6r;UF(54#vma2OysRcpfb;=qlAA_Q}x^7Ett;6CMNjH!06X4-)b;7$le&8_hOMD
zlm;nKu_4TA2%(YvFp^o0>^k3Q0EoEP6QKI88*)Wu{>GE!<QERl+BFI}UbT@%_{Q#h
zGdvQfv}pSBUyS#HXGg+}ous_8?A2bJaCS=if5%9``5%f78lB32N`t%zPynkd`43%Z
z@*Tm0^!1)N=iy;F{8yZof|04IX%ta^G9}_?X2WJ89OqkzC;YHa*vops20g}t96Nr*
zGCY9V*GV&y6$UK^?MKLN5nZ3jZNGYRn`-E|+}KydjI+({vOHZKyAxr%F!^!;E%GOF
z3JD46y}dNbLI*aVZl_1xcmCcI&`J!(84afaU_t|iAT6Mm%bpCM3_yy%<SFKc2fYM6
z!@{2?8TW?)7iJ%}gfYQ&JLo6a&ExllI6+Q>9eP6>C9e1$?i8>OoVFX8eXYqrU$}SJ
zfDSsxsJdxreoT22(X(3z9xvtP>IYFaY?t@nu-ibQzep~1Rb0aB_SBrx-NwdN;)&t$
zWd4TzSwD|Fk1J6YPn*^@0-|8@*SmH<K&G0rWMHTe$m{&C-A^nrycum_!eY+CL4ET>
zkG2CQi5RW)23>}Nandetdyn*;hO43241&~6ay=y(!rphCLD-C%T8md2DG5*5p4DE+
z8Ro9Wo77{(#Fh%EH@1tPH+-9|<6hKy`;*we4jAs=qcTF2Sz;DKC>&rPcvVTCaAhnj
z{pm)Yn|QbVAHD9N1_!ZLE}cdW_45D??=-n9f!Sty>sr|-vn|M(simnTjRJzx<q={~
z*HGs`3}lTNr44jM@CR(a%OCbi`hF%q6drySd;?|=CV_U(FsVhRr}r4|?CdC3cJYmq
zvwz_FkJzd=mJu|n0waxMIW1XH(n5DMj?SOem7bqg`HSVB4AOk>b<08v*{OE5{X^Bw
zmn;LqZ+};Xo?rZ@!_kwIfVCa4W|inbI8XC|jlSMh**4?C)5GK8ubqz+qB9py2Ljst
zO)<7%Ux8y}4gAU)%x#q=Zl5HY7(b@aIO{1X!n=11GLuJ_5i2mu{zk%KIE;wA$1t=s
za1}xLVaWJDbCxkGH%pWNwIYp6V2g?8$M3PxQB)!xGTx*`KS5c~$T&Wqfe6jOK!CuJ
zbk<RrXs!ax;;rf}jQRnYXp2CuI;IGt-_=<FoF#wwJ>V~$%L+&nAB3AA;=_IqN8?v<
z4#E~?1z}At-mqyWE2|IaNl~l8aHw{&Okrvnw%7knR9s!}?d?v#ABHyIcHWnMkK=Wz
zGeiF3IuP;Rt0_rRx1)C!P#l4d<jpOmMk`K>aDe?1O|sX~YUDAIKlgxLVZ2bTp~|G1
z5Lo6^@qWU3JWDF2PO;aor6-6o#Acqo$B8&m7M?R>qt>_|JTSX^dkSGyX77G>RelBD
zLGQb>vTlv4dK6g3TsB@_UQlg*eEXwS5u0k-+j6Y8a*v_2tJ~7rD#AA-#G-rR=W2Lp
zXm}m|5mvdOoJBVH$#2(6Co)H%kVWGQN}i=dH3LBapwlP!Kjb>($tQg{fl&ab?`24k
zezE3Qm@X>|jq3z1;>5uLHnVeq#Ds(dFatE3$}ldo#6rC|-A!c)((VXol<Up51|TxA
zL<u<UhETa>$P<2ud>o3!|JqP~b=+i&@iKXs&}ZkoNG@;2p~+hH02(xb1N;oMXgy?P
zGm_y>#1O2Cg#)%q5pZwHhq(QjEsBD{wM&{3fd`zrebjP>Hp;sn;vlN23pZIPU@zk|
z(kBL=fw#Zb=!EH}W)?2}fux?0(`G&(5c-Db`c!D82k{Bp0ijm1@Lv&5<)^HA8Ei|+
zC}zHN{Q&ZZYZCg0Romev+ofz~=D4%v8A77)FjPDqbY(OW0qs*VwJF{Rh(fPIQR-iD
zobSN`E)b6(`ukr#ZmtBaK1{Hl|8Ocop8q&Mz{F}PiT=Ra74^^#IA5nLINYm-x+$Ly
z&wm>_m6^<NN8vE(l!~K8>4B6()F}edSz|$B>J{w(VkMi^b}s4Piy`xpv2ywfc?~J5
z1l(#5&<m&HN<&Hd204jPER#sX8fRj0$K(I@5)=g0JkFpxr`qSLW0THc4u@Y-Tqtz+
zU@Fkhp#9PI&0>dpRLiK0klO*K-1%Eb7jz&ncK~url>6h;;~B&1{i9{h`AUP76F!2(
zkAHFk6GSh9(S9(R&<94w`5MhuOr7t(pnnbd=I8+mw?H!P7b=3?3PwL30`#5xrYF2h
zu>1adQA+@Yu#<Jri4e>?o49lxpty1wjKrQUq?1~=iXyPXqsF9B96n7O+1z<ORGfJj
z1aFpMRAgj`Q?6y{<Vl)kb{(9QMvv^A5%Iq+pL~7Af-34(d&wAYvE$nSs=DY*k1!#j
zX;uU^cF>piZ&!*b{#dFIC_0R4f8>(je10~kB&;AUJuR62_aW{t`t#UaOb0;}?ngJB
zP+gpNsyV)QpREIaV<|6kio6OxuS~5ch$CVRbG8{UVCEAVYwdSeI26TiocsUvwo=rf
zGi?20?BGy60sQb^5jAm#Ulu=#R4y-pKyCH55i!CLnx&t%Z^tT~84M$+4Y4Rw?3pb7
z+5ht|aN_h?Bf4B*AZjF0Op!5edYyc18>XkhxYGj0ao7I+aN(CcqWv+ZY1Jp_VttnD
zWhc`eK?zf8TG{O9v#;$F3n0&5Dfd`mXAcIiEI!w(wk2bIWJHUR??tL*k}3ZPP(ac_
z)ZRwAsngSPmT=bQ!=zPA`kgfj&m)(L_QHQc+ED9uz#tG{w9#mtSTpAr%vBWhKHo#+
zKE8doJ1>Ih(|WsXMN@Uv<a-H6b+iiRD@P}%%g}3Fy^pGA8|go_O(3?0s2HS_ryd1W
zS^Y0=l?n3iHd?ATJhcO%2ua!~?a#Z2JXxjr+U{Kp?>>B-rTj^G!!%ON*}pGfYR~@1
z24$IzR!(WNv=j20f1@&FU!kR!pjADU8Gk~+aZ{a@Y@8@0!s7|NE35nMh@+!1@au@5
z131Fmz1+pCcE-!tRaIq0-ecim;SdzJxI!UCsNcRj2_IqYIydE4?l+oYL;G~|Em6`Q
z^r=0=GCGU?iHxLruaxbcTri+~1v#PaRj=MY8P)Z!OTXP?L@NEar_1S;$XqIH6lZm?
zF^0+XURf11v~H8tj*!>DeqBo(nXDiO*#YO7BP&*cRrQHZ69(hG^tep2W84c_!Gi?5
z;hbm6#2=LVHF)~!e(ZMFH6~0_W6Q6f#*^zT&fS+&drX2qU<h8=(GSoL*>LeEui~PJ
z=>K-@SdA4(Z?W1WoB#8Nx@pekC)ayCIh*5^Q1g{yRjD^gHEMrBdK0u|$#=7|jm2y`
zzh=Y(avW`JY=EhU#rU+~yNNv%-yY8AFCE}Lil{-=Bj^&KYw9c1;U{b$v955FQx$c2
zZnihqVVpZr)Zi%l823FP|D+zSEi!qA9WzG)vHr*Ef3oNBYVWWs^vPb^sKD>+zswXi
zVP(?~b=CFFqb6@Lz80&M@g>DZ3D;<oiQWG$Ze@pRVaB@%QC3PLE5eET=kMVjAik)5
zGF*w8A!YqI7!hqVcD7ih>nzK5&GYg1v2`A=feUzgs&t!oS6SMsX*K$nCv>??#WSd)
zu==2rjbK76Yal=BYimaoe2it85(%M+WOF@N7Z~qhF)+Cw*xxsUByJpvnw|m<xY@vz
z@XP0Rw?8&t*@nwmrrpjrQO<|=0|Nt%5@Vzvan<HWte{h~V%nT0q<dJ((}{S#h_thF
z@+>qbk+LOZ8mUp-h_c+-NRoXUX0MNdh6ZIS^47gH61z#vA>6Q67onRbbHs!cLP8|a
zvR*c_wuT?J?svjTQ|>Y})jzjYo4O3OF1J=if7GRRBC(4h;#C#asPlV|zSk-`ijHp}
zW?*2TshRR!lZ*uGzu&**!ez$g)_V~Dq(D2$D9Vxun0*0KZ679==kJh7!WO&rS_kMm
z!s~4<5WRZ6bMF!K*v>@^qZ5#c>jHP1im`!P^Dx3{%scH)4^~MUe-qovJ}P(l2MBl|
z4DPV*VFZVLENjPFA$Ok6{e&;b9<9cX8~mpeWVl|R4h(u6^r8l97IBXzdl9z4VGg{N
z1F_~vfJ?SG#hlv)q!tJVGhuEjCy3C~$>Xe|5?gWtIAo%LM~~A(R%WR(6!am6bZ1xe
zGcWJ}lH+5AjTh{rE*l?!7eW9i#i*7Zejw;Ko3mtf)^3A6^+7j)6avdT)i3+h1e}pd
z#R%DnC_wE8ENW$5aWy!fb5il_Ur)u<R=W@d;AexF0+8M=_zvNP0!!_d10Ach>w-9I
zr3=U;b;WQ2aj3~Lr~4s5wL(4>p_ddE%~fUtqZ>*a!mdC@@`=h0eP@uO|L0E#D0W7j
zMubUMYOeq@JH68%DyA6ivT9*QIM)5;idzOg`5vG@Q{p*#7;AX7*<QE6S;`QN{|~Sr
zxkRkDeRjp9woHnR`*tgFNQN|kSEpqzAN~upp>6?8PficLp%ub9JS;4zOqyA6uao_6
zD(COrn&X%t83|mIkq+m6GE<}f^T}4oK_&50ZZfd)`vGD}sMwD{L9&ufP^K!5Z5trl
z`|AI8CoC05Ao!(MBvBOS2HdHy_dz3|US66d*}=bHUTd+>#=cow<kv310f&W!4VYBd
z#+8OD#Vn%zN%0e-oobl{di{HLb{O;!vivXw_!T<o=7vA`N9Hj_F}c>|e}UY$%=WYZ
z6Ql`!dh_XgsRQY%-~O-)8~J)@Qh0)Fq#OZCM=ODy4d6&fNJyye4w<>?oTpze1McSA
zf#Dmh0W2;azcLaYmZ>IOCDIuF5*yLx2me3&c-4#OgoMukJ4!zGLX_3a0@3|)H75MB
zgQhxK0cc7}0+$0|ue8+`ot)Vic@0!oR)^T)fkC(k7dLzpW@Zm2O3YXelrUND2AEbb
z`(n;Iug1=dia*hw?gA)Ga{i<dq%q1N2y9Yj>>i4RqrUFM`Qc&XYv^j(-U<%R*Y0@X
zv^h+)1D@NT!-RtSb(Htb#9&GTkuq>Wk5=@2^SgcIH;HcJm0KyRrworP%^Wn1?R(S5
zFB%^13Jpb%nP$N1pYj@|1eK>)^@oiWKeL?GSlQTA@!2j27X#B_#EvfV`YFTWz7$<f
z=M2-l(c|NYJ_&hY8xNt#z~sa%*vL{D<7$8LVyYQI6|Vi;I~e)v`Rj8ays&>BJs$Gt
z7tE$g_)&h3!`uqa;Y&5}0G{P3#u%xsA{LOlwwcB#bzrJE_oToc!Wri3e#-;s?1Bog
zaLB(i|Jfdo(ylxOQ7?&1=8GV5yOtb#svN^u26S0`ma}L9`6XD0Ob4}ylos4G&WKJm
zd0H)YB7Q&Q>(S)sFNiX8w7(Q)T6sbhN@1DN@{Vj2r<XYM7&=Wc>+5>@N6r8{OI9hR
zoiyO91TxLLz00HM0azFQ(M{Q1$BDv*RpOEn<WN2_mNlgA)v&=Lg-P{-Iwsbr8yaN;
zlxG@t-o#~b3Tgw}QO(*od2gNOUp8hdwEN$3W~H&F*Gj%EXxP}=#PH8n_e0LU9SZ#t
zx}~wbWxl<1TjdbdIz`zwx)H5p*Z92Dl+H1@u=hPCyPAV!q5QVIs<{Eik-t(WL;r+3
zMZsCYDbRpl&rbEZV&`r-!9<>>_gIfC(R<#ocLGbw{UFw+H{edpRl4G{0XiwE;|=!L
zu6n@3Dk>_WbSV;TRj*j&?;4x1CcH2%G>VqKOaJnoy|AdrxM#R20Jw&40`vmhRxLjV
zR17_`e0NgQ=)Gz+)fPnfFEtUh%+0QS)C_Ga3YWRw&N|ml==n?BR;HiCP3Jb$SDHF+
z3dBVX>w)xDf|4qN2R<14J=f8o8vU*?{coWs^wr2_x$vh6068r)%&ts`G36$4c~xsr
zAps}N>v2J5@GTSn+ll250rI}nnH$8~IPB>HDYQDMLfOfL0x9`RSG8fy*nXEA<1jG@
z4Dl9Oo91yYV7OQ*p5bWIU}%EiJ?mALJx^dNs${63uQIPjzNX@%VP#d(IX`B<U?=_g
zzWpO*Bkc}CTLy&%*{LZXX)Q*Tm6IF%AYYYA0iQx26ohPxIhjr+*L$}wn8Kv|e(S}-
z0S>yCs&qUbJL0VxVR|agkf~t^m4XDm-i?E^(U*&I+w#Gve{vH*9u5v7?n`)id7W2o
za;Z{&_+SN=5)p-Q9lTZ`B;IK$RlUy#;Kd6>bm(Z1Gv{+ZdjY{)suC*0E@$i;5%e!)
zsKRf6{3s4Cy`k@pM|b1%4?#5z`3*{R?>aEHflNV-E!;aTOEU|+ZWo1*&l8iAcf%o{
z4ncD1Z|^(v^G>Mzk@4}yp0(M-Uc!w|Pj+@OZpp8|A6fwd3>YP)H+Y+;4F525?<h!n
zYeT>eS(uye$Q%`pFn}F>l3|$<joGknz1s`5^<lB4J9(NKQl;7phcJ|`)0ZkaVWkjh
zdn35Bv=mUi^Sh9>E?;;{D@seHA#*|l9V`wpwhn+fr}j=VI$Eo+q$t&p!$ry07p)57
z>t;Y_fm9sR=l1<siT;CuaGg5m!Kw@rJg?j%K;hVnn$0IsfV*=wlL;0RvXlZx|8l63
zT0y0JgvWoUDA_UDJp5&5aP{&_q$yS#S5p!+zuD_{Q}BEjJIeLzGmNt(IJ7(wzL$(&
z2hc2!?QLL4E{~6oe|vpi8>ro97?Bz2s`u)18GmOH*icr$-P*f>+0s~B%OWgnh|8dw
z@iN}lF#L3~RDHRB90Zjiiy?_&;o+fq&baQGV<BW8yn5v}umWnI#u!Ey{!l+^G2xlt
zjf+Qlto)uQ*jZNk&+L9AWsZN~_dj1=39VMOK|;T^dzj0o#Ami*;ZN&-@BaSH*c4hw
zUZbGLn*Ix}smWJ+lI%6QVct-+%3d$no_*E-UOw`+1qKi1F$W{FjXul(7Eb*nNG(u{
zn~^n&-$}=d_y0v&u_30a#>g+Y91bND90XjSZF*aTA4inbBM{-TZ<eV>zNYrc3V~Yg
zkW@S#7J&?t49Qq|jRiot;0Csbh$X>AU^Nn&uX~&sB0bpOkBF6cx|U=_x`pU{d5M~O
zzCYQjw&z#F_QGa)0+1HR<eEy!+ds$PzecXhy}<dosUrU{-f&w~SPU`_obon7J?)Rc
zlBw)BP!D7$XvWG$i;S|G4~D#)zc0T<ow?~9MO>H8qQ|tD<R;g^NH!yupppQ>ED{SD
z7N%o-L}VnI<|y7W4g|8^U<5Ptzjak`jp5DeT0CS9YgV&08WSY}HPipz_&_waA`tai
z&s+z+;oo!%(LB!6xge5Wwj){gJ2P7%aEsA|{-IN9qPV1Y7kWA)Pa%|F7Sd;8jb8iE
z{2*{Cf7oFp1q3&$Sj~6rkATHKuc7Yhct=_Du7LCv0TS``B84lKT=+r~J%&nRi+k6y
zZp}CJIr0u0(xDVaCQLjvj0$3jrmv44_u#leE%6f~8E5(x)t^`JPH;J_f3US$sK*|K
zuNRx5%#e`G{a1r#9@)%?;$KhsuxO0|GmG*Gt~S?{m)nT|!G+eQ|D{rS(&aQ5;lFpb
zT{i=w9>}az6Z$JO1SAGf6RHoKwHjn$XlyNkQ@Tq=iZ~7S6*F5Jh?n^}km-J5z75C!
z1?EEoA*#*eC|}mJiQ?xs%?ta*dJVZt0%Y2Jjjj`1V$7`clyU}aA$7mHgj+(KnGz+^
zF3i|^N_t{RucHywVVz071aW2k3VzB`*Z2tQ!{yc<9XCWK9KWyZ%hoXpcqRwO8Z4p7
z#tQBO5y2$!4mK#eCv~Z6sQfC3<>U%?IA`V<w%ABAl<m*Anzw3gY()pXlV7B>V6WuO
zzL~<#T-7Ah?a5bS<$TzzcSX{R-f!Z9o!cQJXi;gcb8lqc6uA!g4+_2&O;1F9I!=XR
zkaZuvjJVyYUlM0JV!bXbCSy}z$!0kBV-^X+DoevzNEEa+B6|i?lZmUArz-TYL8bOu
zX*+8{;wCZ;3Udq2Io$h-EDo~yWZsBrZYGZza?|nRZzLn_&5}4((k+3VQsiIt)Z=aG
zbxdN+IK5&v)o0fUF6wa)W15{Cp;qP=A&Q}`Ay0kJzc@zj{iqL#e{<b*b3wxOP&XUR
z($A2sF|t`{L8@uD7B}+64otst-?toxoO{PTs_DAQ;o8>38(5!Ui(uiS#fT*1Q#*2#
z+U@X*dg;)rYq=GM|CS`0h63RN4Z#67`bgWUPL%1kgTlmsocO$ePclz2^svhEi?cr7
zV9*S?r7=x+eYV0pEdv-CWIeR$6Isb|=*lJKe}L<jnngexTxih=p`mfc@v3_`P-NDc
zn(j88Z!1!xGSGu;dE-+Qe+L<=5j3i?)z;_8oHaVDzr+*i&Dp6wK-F$Pw|-Zc-DBb6
z!qM&L2>yUpfaqaX=o{)&k!iwps8{c8ubKj*7qI)X(xBCJiq6eE${UJzWAwG1-jhQf
zHOpw1Q+c^5EVm_1K!A}*Y;zT7;Y3kiM=7yk8x>iw;O8eZvl!^l#FYGQN3*a|zvjoZ
zn&FsoNedi_@20?K7_>>6*d#HTD`=a1`V`3Y3Fu!hU@QFTxQlGMY|3>KPA3q3IhE=B
zaiQ2cFO`xOJ&{mu?aSfaA2Eug)YLuMACWQrG0V=aH3ASvafIB8V5-`}XW|U**^18-
zW72PPxmi|mWOnQw=!h?A?}NIfrKY_^<cf_a;IzP+bpypLBIu5w(}^z6HrO82KL63(
zdeZdq5rCLqQQC%sSq>HHP1YD+lN*!0Ki%xN$aADQU8>nit^l?lK1KzsXz_~+)Vs|J
zAzEF~D*zJ`5vQzXA3`q`LsBF~ktH_L@qQ3Oi<X9lV)EfL;tho0Fhmp1932fWU0M;>
zK|7=3BIxM;#thf1U?U&21=4+DbIaSfs&61nj20@rLe^y^JRdPmz~@rBklcX3{ZG)t
zU`TqV;96|QQvBTFX7A+Wgn58!7L4lyE`puB%k<!Em}Cf5cDm8^dp-2p`AZ*#>t4Rf
z^}k{z;7Eb^QB39ih_4d0^%2*7J(a(byw-dyX@7r>lanmpRDI}o&$EDy$j{$2cCy6C
zt-stsh#lPKLcYthi8^pWDywN?bp9hw_QjjPibVY5HP<&ZEI>!p0w#weAf2cR4q@MD
zU?>1sxFJ9`9)|rkmgpP>H_R?Tl|JsW66Lvg{GB5eJF0=Jd2T(GHs3f8q)6`St@v7i
zW1DC1zP`HpcNi>HJClSeSTgXn-^9JH-fBJjeG+bF7W(>pueD~3f=MGEAJ$e(^2Z?7
zY>}6AD(!Jc9$_%~ONhfJz^1|?;nbS*c0!>3z1s7CFUyuc^U0p7ZO*qJV8u~BQQq=J
z<F7W)5Mo5U-A9n-&XB%r!-G>-a%AiU%iH7D+g;0sx0_r;cv<WY{qts)ccF;$%fn^w
zVtL45=K<uiG=(}06C4TwmDY<qyL8fg0Zw!!%p2fjwkG|oYjF=LAfw;-*b0w^6y^`)
zVo>9UxwBmTPXF%#tuP6TQEt8GOe(O~_W`S^&+W1KUgQ2#6M%VnnB_r)vzq?O-5fAv
z&3k8&1Kc9xCvPZ>DJqSQhDRfbCW`rw@wUTRnd?Mz4Ex4k$RRDZZcmmR*IQ@0Ey}GA
zx$&F^BxCW)Y^>Nhoh=`)4!|nvFd62Z4Di0$+0~ITVj`f7Sj+eQjK?sI+E*tfvCe>8
z{WZ7pX<WoFz%Pv04UrEjxn7;0=?>7`$#qwvD8y?+t)}rs&Y1XoiNm^xL>bylsfSFZ
z;tpy?hn$lPRX$yiKuv0R)iIzA-&82LOKEjyPejB;ffCPL`afaYVLF;sI<PZH6}daw
z&Ce}<nKWXfGE$hq#3a;~tzToEW?0WW;o`O#%}ZFISf~yXkq&U{m+mLWPs{dEoxwi|
zTS6jKVI@^TS3SZFXdytAxjg)jHt77j>2M9GK*?q^kMu=z6%&+0nJ9+PI>i!9Ia1li
zZ$tQcyijOt(Pbq>1zT(PUs8OGS8v3m=9*`@q~Qb(%Gp4{2nylv$w%0X@>cD<R5~NY
z5_sx6ghkk*fjvShU;G7kg81T0w$>w!4MHdH^6*#ams?SMZU2{&vz4(b)G3=d?+m2u
zzrwug4%yE`sG#<y9lW%$XJe_=hh{a$)B>%><t@Hw&`@r!js=11){Pi3uPinQAx+#H
znHL}G2s-3sZQA(Q5^uf`GUji--x<ZYyu7ns=`4CBfFcrmjZ7}J;dwVICMtTv7X4AD
z8Q~quWvO~ARr7HTg8i0(VRBg~w014poTyuIz>KhQ?hun<S7pbcSCM;Lg|XpTzgbe9
zc?Im--_3X`i+lXOwIO~g9x4HOIi3s0SoqvTA}Yi(VdZI0My9N~2L5}<tQ#a)1CLu(
z`zcAmNEg6~2g-IBQ(L8>HTE)nv8lXA$c&q)#tSCJf37~ne+U0-?IXa4<oIIbBy$OT
zpU}Zjpwq!g34kr4r+((}iM#ZwHLP^1tbMHSk9beHod$kR^>~W`IYn|x$b-PvOZi6q
znZ3c%0<bk|Lm24k2Sl;L2aSd2VVe=7Bcl=HA}*GGvZBYRn-6Ki;{#r#J|>1@w!p|}
z8swY>NbAgsEhNvGarkw9`Gg2j-wY}qeKL!wSUq%_#>Qq?YyqFK#c?AAl@w4SLAg)|
z|F>%{DG7de0?s?oa1fmk<-@&|;bf5m6%MSC%g~aF$}Suvfl}>NM`8pXzXk?G?2<K-
zX=N3S3QsOAc;)vY@1SNoTu)K}=6;nmNsgTQgvtsQ)-C$Dl%WThA!XteY>4NdRyFz!
z4rhzT0Ati;0ajuMUgpG-#thPVX^1koCBGB!p)h%zwCgLIP0geP!wwZYp&rS!_~ctS
zYJGNg!TtQQKM)$8id5r#Y@o&m$%W7otJss0f`UdN9j2e9LxEGwl^zcE$144g4}@Vy
zYbEDNBWfUUw34@9JDmB#XpdH<kX2QZ_rw<P0CcYu#?L`q4lCv6fBjzn!AG`U{^NEw
z$0w}<UpOyXqLTpee{K=8Vf1MlP6mxCCHx;o|Gs#i*agte$cy`>P<x(^D}W6gv$BHz
z<m%Vk>otvn7YFbpC_p94XK*PPKnex8%E*j>5#I6v$17Q}gG+0qi^!dz8wjHSJx<;x
zJ}=6O#z8&6r<lY0`Zj)_%4`_Bn@o|+*g;31a9*w3g6c#=9T>8Se#sRH|5^Av$`kNE
z1$>V=T8Dw2xiNfMynK`mq)@=I0!DoRVU*CygZR%!z!F$=k0Fm1M&gsqrJ+Q+faV2S
zwh|NJH3|$wH>_lbgY`cIeLF<I+@Gg~M<Ie4kx@d@R$mIO+yVa3;jytqyJGNq^gN$+
zoMBzIA&p!`!d~P0aQ<aLc$bj6B<whfsU{Fa6%A4UkGr^>;+t0K$a|v)f)y{1*F`?b
ze$7_PFvNTpw?K*1c?zYWZQy?OIo?bPe)>H5iB^d1lBArqm0+0|G@T!Wq1?uBC?#jf
z%E*8|3dG%Cuh^^ZP#A61qRH_>FdU$4L#t}ZsPM-RtDAsGsGzYgL#1)Uo2`N9X@cI(
z70N|rXX#X|K5vh|fn0fy<Zza0nWivyoX%b{d683+XY%pO%(hKyfM`uIGVh)Ac|ua=
zz6~7SL)28yF!L}j9Q6Eh_77;1qJ55pY*tAluEvOg)7`yYxkx!>(b1Oy#9(kfB&o{W
z1<#}psL!BD)I@Qi(m~9ShJ}PQEj3*}kpss*4lHc!wk<e<aHGxC>uECzW(Y<LEgzpw
zUo=(UUX$UiJhAZhe2VDLZZU^WurdZQh3w(?g-yzsXizTCYFAqVe1nbc62+qMV97g7
zff9;RAbxmeBP+PJoLXCMtb~tRrI`s9z6?;HFM$!dk-LtsJmMMWK({ApBm6$Syp5jw
z#Pxmf6)*Ak_sN;o#YOIrrzt}o$C4rjdKXG0J?NC;`Sz4fk~j;IUq=(eMU+1j7Y+$G
zbYYSY4i30b>BJen#VWibCqETHgx)jA5_G>W0-x!h0SmY*rL;_zLR?ds{QhTvfW(FM
zp@qXI6S1&3K7GNI?JVgD-b1>^wOB+o7&AVMv$5!P7&@8%*M9Rt?8ZoxV^Wa<S}W$&
z{h`rt>#u`WBLDl7O(8GYMyHLXJNb!Zi9I%-!?j9<lU&V@x+^uKn>b;8H+Ugf>JFoI
zQS%?2w@jN>zkNR~4q*0Y)1SDkuUg$J-z<>Q1ces`9yw*9@0MHcHXGoh)W0`-_O^21
zS}ol}DjXHsB+XUc$ujQoi>gQrQ$g!HaGlil+V#U$RkEQPzWBU8fia*-cS(1lh29a5
zdRigF46g0SLG2!S$P7dsA7(+zwA4|Su)E)N@kIOMarw&JYg6MNjZX#Clqy(V_4QA8
ze{{9At?brY(sni5P~wx5lM@o0?$sxU;I*I*>wI|yUCHu3S?GWhC2;V}2=^+}uWDbP
z<jRe6SiitQ|K8t6VDY3g93Ppm#+{9YA5dNE_T}HK;QyWL@btM7QS0Bqq7{3I2!-lg
z=%kfrk+1Z&Hm|>S(^0R-xH13kj>}<<dtE|a9vKx?L_~`ljiq@SpluWv_p2oVM_n-T
zHULT9_dj6dLc=mQn&|M8F-Re4MrI@?S)Ag|!jWU!_*^#|oHUa#hdrH@ojv(<P~K(s
zmpdJ0%mgN5{0kV}K*Gu^$<vaaz+As@&YRtNaA|lC4V8q$O4-bes<l?<jPct?m*`_2
z04=W2svd2kg=G9oo1lEeWtSvkr!E3yW%r$*p?0dw$yBN0K%4~>bk?`LOD_z*^(!DM
z_;2S10z<|-2i(l>=|OKkd$-(RgQ>K^MhpwV&kcA_DJdP}pd~a3G$K~nw6rXdzAuv?
z9^Li!ZI6V_u+qfuBKK1sIk{xui7qz^&-_N#N^4O<Qc`ASWugQ)DfolL3o;%H#Ol@U
z^+r$6VT01|EFPzp{SRcmf0~v+*p@1g5S3KWtFcgTiNA2kaldACig|b_-(jXx!bFwg
z<@##uujSu2Xbp`P42*VhDZl_T-g|OADcT3|hZ&F>6KEo`KPCQF<Nuo<M8o9z&qY@0
z>$y<*JALyD@=f^$$xbzKE4la#pYgG?e#PQP!RO_;3V`E(TU%SnRHnmHGx3^P*?H&l
zWCEoW@Jd`b!10DX?~rWw+d))y3;d`z`{*piK^+x1DL7%r@g7-#cbzrbPT$b54DGh1
z=M}|EBrG2qV6EVkR>i5bZTvocdMnrX&KkZL_+Efh@z0X=$AFl6fRm}DiVccrZEels
zcL&G6V8+Dn&~yPD+_dh$Zty`fPbxb)ojTQ-w7!DAhd56>Om_F(2?PZg8d+6Kl(IQ0
zF%-_EZ3`VXIwT||j+ZPwka50mqSekFFlYgPK$ZKJZz}%0plY4Y!5g6&%n@GdeUmyY
z<|Ip23WzR%?!IjJ>0*}1&4&kn8xHy(REc=cuoAR{OYVr|I*GyP8en?_J&Qca@q2-<
z@T0OysmU8LE-e3FZi)G6xGl&Jrl+TYrg*@YoRs9lcAp5l#TdU<b%_51o(+(exmoNs
z_`ZOh>8o%WL!czx?G>54L<FR@_SB9$GD#T<TxjnLaIHVzY8f^tBst!nefvI=w{|xz
z$X;vM45tsu3r@P+w@mkD31G8A^sYaQ+kKICaIml_exR#H*0?N@r^_{PC>cKK`St6U
z5NPiEw?CQe2RxBByj_kO8u0q}9pVntM)<kZP6)EqKCY~{0SK7J!bC>p=$yDFGxsX`
zXUCV@^DTeC(~3_a`V0LP=i;a&ryl8Oue$q#bscDvf0#P`EB;r87`v+z|L-IGyrF?(
zVJSR%UpI>?w!>EU0VC>=;d?vu5W3znjB6(SP6Q|D`ZXq#>X&c$5bY)cwi8-4{I~9U
zkQHfD&`N<#H73S}5ZYQ~TrCWGp~5iVcXr;_)n!E&hoKl!nNwg<kt0yMk1~wL5eeo`
z@;{t_TuL6AlnS~3C(@_I?k}GTfa?ijTFB*K^jmL&fZu7WC{qW|*JF8o`>gV#l6(OZ
zBs_g4VzELh@81mf#dm_DA!#J#=bD`8oRz6b*k04`;BcYcRg(v*JB_g<`hyZLn%4tb
zlzx?!mhu?r`OLVU!6LQl>zgX|7f0*OQ7B;31fcy_?qZXwq)nySOg45z7wKXz(zOD=
z?X#Ycz-6MbTgHV3^YHu(c*&Oh!ACZ*My&@UpM#zJd#djOM~P=VxIP~{qg@A9_f1VL
zy?GUKAkBff4nuZaf37H{m}(Ef-os03i6C&+dgDXLt~m}LjZDdjeVgm$RI^(bvFkeF
zFPB>c!DyRV^i3UiXz0&=k}cYT5}Vfg?hFkaZkuLH|22Yx;u8T?wHZctv6(c(^BUo2
z$%jD{hVd2^&QQ{jICoHFzHNnN)2(8C^}DJz-uA#msTmP@{A><juewyRwY}_g#)OX8
zw<ULBvImFTk0OFOGBfefTlm71mwu=}qn*Yf#KqIQDaxf%a2AH7&*wUDpxV!?bh#;<
z%9QO!vl{AX(o-v{yRy>2$TITq^0ukGmMt2^);#0gK2;(!O6WYMI2G^xUaHdNUT3ny
zq3d!ePa6I%zoSv2BKFLazm!F=AwT$XN1)C24s;y`XGHtilKnhJ{x6BG<}R1(qiXs%
z5w9~0r!C(B`eTrxrk-jgDhFZAA%nCmudKE6iDH>NOrRcOg4Y!aJs&Jc6D@Mm(R~|~
zhBeS@zPOX5L)(OElD_{$5??XsBPb|H{5OG@6<*{3EJRA#0%c^su4=J>xf%zD<iE9X
zEgiYfiBx*zasi3y-)Dsc)MbOYsLcDPSgTP625!zaGH~mdH-GF$(8(sU?ZYPhg1Qkh
zUrf?R-)OK@^7!nQR{}fwj@Zsb5O8Se+>|LViQNDWi{%GtwS_6}q`o#Nl@VUc+?2r#
z0;RhkHWKSzI|>X1(ee@RD)-*(H#<Kowbr9%jsTB1P9u=FMx3CWQ@OR@&DF!vtvhjF
zbXu_zo_wE%%?u3>zdxFTf16K34>tkQ5_%w&!WG2z+6SAIcCZhCcaeZ@1{4z&7K(8H
zlX8~%zc29w+?1iwL(YNX^4f{hQ@f0JMIX=@a7D42Oa~sjq7k}!a{OD)Ho(wOL90|(
z1K!34IDz-PK_kP%4+qTt@2H%-F7uXWfUKvWUv%2#?j02ke*xR81@7vel+nhy-hchH
z2;|fIfWNTg1!*~%b+9|Sk<5|#2<@F`hyNzb6r)~id{@CAWLq5uGuY{elQY2%@H+vI
zv)-ckfWy&dK87=LZ6bK*eptl40`5O#>>nU4z|ohj+;j8YQ?uQS^K!f~q#vZ}2R@)?
z4u1XbG!2_UE5Ljl5n{Q@w#5*%6M$XNjCpt(u#l~9hk8VU(}35xY7bTB2KWzvSsa&$
z2-%ZWtjF(FR7}iX83zM{&EvwTQN>k3L0lWJzUJj;sH^Q_Hov<;tcS$gUZZFcI9q&^
z`4%U5hnEzGPu}^BivGigcpMLa(1NTjhYOyA^aQMSK|a3paEY@+UKl&f-eV3sEM;ML
z9BGnu$B?Oh%AdxVIH$1TC-5PFohurWVe<ppYhVp**Z`^vjwQksLD;)Z-B+nvH&Ewm
z?sopp$BE7=m;&U@|LT3x6IFC{o(%uq8a^RU|0BRhZ<Q|9r(7*vbk0+>x>&M6d%S}D
zRLK${mhn01HuJ6T-tO-IG5R%vlQ{n(O^4bf+kb?gX5s>B6v(}LIXp+rc=IhNm3zVN
z6LWQ>RYOowZm9LTEheMik`|xb0C!{trQbXQ*Hcgba1DUOa}0r$4>U?#i)0FipO!&$
zIpw{t=Uy3m$=kz_@G;$L?+cp$1N4>jL@kJEo27XLxWC@k_+#6uz+svU9KF2&-(buu
z1wRy>e5uai%7eRz%(3GSuEDFfTf@H^%*2kw(o^6vmH2@9;Rtgyv_E(8Q*kBIrVs%9
zgcM9L^m0B2O@98aPWLn<{AT>Iy_y^92d6ELs=;KlapCVAe*;uA1t0R;;K#roq5Ji(
zouZoA3k<erw2~)UA4r2Be_U|c#&2@Y!j0N=O5d8hjd~}lsap8o%xFlxXMp`6sDih1
zd(n^PxY8M_)tfCTme4O{@bcFH!FDTK#${S2!A<)=@2%%e5LGf?aTdB>DapATnGE|C
z!YTia^WwjMWx8_jyE`~vh|};RA3|9V;CZn*7wZ1r%qay@6%M|LTmj=H9V4S1@XhW%
znxyU`<uWWoj2qTm9@{8L(2_0w%oo-8NaR!NfUUT9E6wi<SE932Oqqqn3)45NB1gBW
z%k3z00zmE<G9;-LRR->>B>75IVes?QqNT)I;rC%Px?WI+rTYkGtd0CO^B?ZzRx;ph
z`H%6))~quTf<%yHL?cflI8W?V>gcrZK<sf)HB|Y#+V?fs7PSRcDjO?j`S}U5k`fj#
z3CkLOcYZ$Ca!0RkWO52}2Zk`=U2;=jR#h>S<ql+&)|@Mh+A`|wpJ4>7oWbOJ9E(&s
zP-)axeO3VVHH4Yw8w~$sjxZX22GiV;&(49gcKGo=cIC_Tju@?Cb^vGLK>JdbPS9PO
ziWha*-cT$yHcl)a7vsgGg4oPZdwfuUDgR)31b?Uh_IBP^CI^dJ!xu`APaiW}vl$uq
zzg*;2P?3?NB{nhex^rzDR#^x^sc>q-zMl?`D>=d|mOcM5_g&9l3ub=)xVf%unr-V~
zhi3DT-R7VpmS2{>oX%5yS18iNL1Uxd5E?6(x#0X~R;{6_bm{G7-IxGJD7*Zvh<M-e
zGux5;+i3C4{1@A^))6aiW3|{ALY`Fxv6S(<T(yyv)~<Ed1^Q$;46bJkmy_NWy62BD
z7J}<-o+riGDo54`q|<pa8Jv|EMVNUZayJxIvAWC)cQUh21ksZbDTpz}+U35a`Yi~#
z&5BBl*p}-uB9qonWfa87C^vb#JEgHI`h4yx+EV3tgsyq9A!3dU8kFI=4x46)iS-2b
z2-E#P`!7oM`^LORq(icxNE7wCz0zFU+ZD}k!lMt-w|Ggob%j3ZH`tngJCv(0kw$^u
z6q1Avu(*@e72e)1dWdef1rRq1+jwr1=|R^>wcg)>4-X#tXPE+?7!}h=c*Q+QT8DwP
z7qwqDOG~O@TabRG;ks;zNwzBgffoEPF<YU0!&ad`Zx?l=!&M8$=!Qq(kg0_`a};X4
zi%Gw|l!(Hmqb#kYB5M;Hvc(}aIpyf{t&!Bq(wWHjWK-PCxptOa>RM!TW0@0uJ@kqC
z4<A8-Lo7yBQzAid?z*DF+lF!W5XJL%`PTx`IlBEo5ht0t>;p3K&4-WJ-QRp8YD=Bw
z?cpqeCm^`{aowssZGoMS#tSg95O6&`z>(+4UQ&D<&<~9!!OkPPb@~-tQk<nW;db#X
z_}%{uyohBo{5Mo0MgxVk46TJ9*5>!8-Qyh3@s5_cJ*p3_@(!d!f1V~e8_L7VofNSz
zZ%5;^vzR#PUE0>y*PED_Xx13Ss6nIOLSxBT1j}P$V%neGdJ*y>ZJxpV9*CGd-5d?`
zZ}&2I-JeZRfO2h0+F;<;e-NLuls{iDVuwiG<{sN@^h``paXq<<86_M`Wp1hY{Eqel
zv6v0fm;3q%3?hFaUtJCB)$C4html?H#6t_Y)1Gm2H|laTgcNfGUnlv`x5J_Q^-(_L
z^*;fDb(O9eb2QBUZuB%cJG&bk#`~qv_IyPY?ewOuCC`uvI1s2KTSD1?=78mE5m+_k
z5=YBrOG9s|sHs^$3PT*1WIu7`O2S`LNe_H$rVD{e1BsQRKP{U<)$z{=#3`46kJu0m
zD%+poVW`}cOmP3HabH={VNQto{l+aqzl;JnV?=c9A$lM_lwpJP#wW=SWLC4PbJ|}-
zq5^>JbhF!Z2vrlwUqW2Gu(+7w)J3%GP<lEMlkmie{_SWqnV~AbD&d;38zL`w9vDPq
zfBgaRaG<oYcDUaajip9ws~c4$GicW1^Q1{Mz>CLqW6~v{bgN8`Lm)xAd*eeAf%g||
zHa;*7Bfm@qS=I{T@cxS7NQ=O~{JTX}su}il$r?kFSp&7x2+IS&Mtsk`x4?U=79a)}
zL&RDS8jA$1x5>x?9zpmE1xh|uT>=eIPp<j59u>iGpobIqYwYT3d?R2U1e8a(0!u=y
zTkKYVELkI+Mvgos1@4{vx~QGnRO&on4F!G0{i&U<NTC*pAAa=yTm*3$C|3L~BA=ME
zTk<{>sJr2Vy#6rYzZ&D(=?6%ELe4$Ei^2GkO*F2eYt4fypsm_(v@clES3Q>R?$$}s
z;U{j;5{90ioD;4xVTp7-XFDOo+XYg+M89ZA$dN&Z2wjA0e&S|tbceAeY*Kci2|DP7
zWuzR*2fJS;pR25eg%Tc&JT?waHz=IDC}iLdT8X~`ig6uG-t=W0FI-YsW6%;PgX{3V
zuLj#OZegtv3sn0bHIYXO9nuL%URL1_Q`V>Y1V*)Dc~7%l%3m=(7DA8{&~E3euW_IM
zE;svTpzi|*WVY8aoh#G8Zr;ehj=yp1t{w6Tw@ghar<9uYX*zQ)ubunD*qP1_Alc6t
z%wPoWB}*%0gs9-<j<f20rYLTOJLUsMoCQ~I6e^>k(pZpSh=__&V}lw*Wj~CZoEQ0(
zwA+{H#cDImy2P5azGKXb6mQrU&ynax&1&p;nqbi7wZhv^V&l8GKFO+{jsay3^fD+L
z&4??X!@TfmVNrMii28rTvhoDo30>a|#Ue@DA!X-CSP>hC(X1zq$5lRVg&FVY49|s;
zw(k}2%VYtOUy#YA3kI#;%A>Gx56GY>O~7@^%TVp2G`pt-@?5&>Qw@LeR}kr2D3Ge`
zgw4u2$K!fK^5;9jll>4)B1o{Nr-+x9qaT3!T-x()UW>SY0lKovajV<<$U1W0WAK=>
z!W<Wm69LeX!s*+B6}n8HV_j{RvOo;zmD7WFO3MKchK=)($A71j<P|P-xS?22aj%1B
zny|zrm1)%q+pR*^0mE0hk)iC{lUCt&fP#yfj`A9=YttqYyLklJpq&-MX2)mOx#It#
z_)kmjQ<BAb)J`!8ns`}vAQxuOH^Va7+ev9td?JnsI&@Gt7Z#EyCx4#pK`1|^f6^Qr
zj06%HeWYlOKtzW%pYv1}e+7H&#Nc}^F|!I1Eelb?^v>`=?U@3U+;h=K*aF4gtUwua
z9q8N+uZdu9uHKahhBfcKQoTxL>}D2vOexoCXgk$Xb&`v_FY^^Q+eU?zevCsecioLQ
zj0*(;-<fquVeJ;aQy<C501PbPt2VulU6eOW^x&FJtu}1=7Ps1>n7nLe^{fmquXoPy
z4F3TdTBJV&8GjJ!d`mPv%>PI_tEeitEeey;9fEW>5=xhpASqoE(%s$N-QC?F-Ce(Q
zcXvxk-tD-L3?CRCk9+U6=A7Ro;{9e6uV@0-fQpD#4(FI@*%*6;Ya9-_wx|;Z(I57!
z=ObqJ!I`y1qs83laDsie%3CY1CC$x&j2N->wZ`@d6hn>Api1CVOu=+%!}p7$^`PBA
zQBhGuGXr5=Od=vnq3M-1AASf{ra|hpe(F1e33d4d1tUf_pqxET-Z?LIiNJM03y1GB
z<?)D1uE}!#C5oOixwq;f^=JfD&s*g9+H#rSp`3dAu*mbt9kYgn#1J>b*ZG?(+bFu)
zPo%6RepX%Y6olK~o|(<Bv6rjLT2;xWHP3?~0V*d%Jd0c1O(7T-+F2i*bnqH#Avkq^
z$V7rR8MYADT0P6{Jq}p)hjM0YAgHp<P8us=|H5*l^_Y6&(I(1-HZK8U<#^x=@_gB8
zI}uIxfQXH}Q}(IAKhtq%uV;f}1AOfE_RsiO!wxGytDX}Bs%O)G>*V^;pK%1xIv!WB
zzx>jmu;Z8z>wKbTIi`u^M8(a*Z0B~A)J<(|L%&<B4h^+vI()qo6%!wHIL0m+`Nri0
zoOo)=pw$AF0`e8oxj`v2IchsC?U-k1WUBdU=k#R4>3H^N3jxdH<+<S1wd1tJ9{w}Q
zju(4Y!$@#k+#>4~D^Nt`mAhS=Q|0P`jSt9pMa$8E3HJur3_^tkg9AfD#zsc6o<EPP
z*4iSP?OYz3ZFg?8RBF?{5FWO9?eKVqMTa*XC7xn?4r|4%mnv3N?~ubr5fdVrsUg=b
z<^*?o771`Sl++wL-CBm=yP15_wbl^I--Coq&_~J4L9ZDs2emOgq>TWN^ltPEDUT0f
z)?E35el&lhUf;Ws6=K$(0cJ(}dxsEN3xd_Zeqq0}EeQKt@=aVA*{u>@LUmNh85GsV
zKA<Xs)^*2_Q=8We+bo*P>9L_&Q9@x#&a7D5;6+P<^^p4c`F9Vn0b&8c4c67(u}w9~
zMIFkHNC_58t%l%Bj^1i@>IuXfmR#GX@nZZ3K;(F=_IfFgr-|tHl4y%LUOxVJ-10#j
z{K5SX<_YT)!_;LMn!p1Dp#-VF4pn~Z_cizXn7x}L5cG0*eg4}{<ae^x#@TxV>QuO~
z-yz1%0#wLfRUOa5pRDt{X~50rbv;58j>{Cs@WUo&B;HuEI~UNrxFkNDgLlwBCS!kU
zLw_1}2EW6@q<M8`tLK93*XD(l^<wA+fOPTLrii9xkHj&$`>%h$!{!`{zNg4P(!dh$
zR)~VPq+Yw2f{PNy0q|VIitRb$yT?{0HqeATL0NbSK28Kyng{sZ>~01RkAK%Yws(~e
z7XF*yDq3oDpRZ5{VNTW7unWI%u-@wNIz`gTf%sPynvZR&OcgF#cX)>?{O?H!0%Gf+
z=>-j731l)@Y<mL`I0m9+4*fsYxdRf)&5Wt(QOM;!Q`!^U!$dk~w4o2trJ;r1a=hTn
zk(^vM4^!pEK2Ols24DlTpYM|;GMCsnt6@Rf#6gb(Oz>adYwa+2*xB``3x={l#tl8d
zE#B=j{U)u%H%S@S+7~3i{;#%TbPVZ1_F0a3op(%^<yVKqg?U?g2mo8-`>BzHBvQm7
z^z$r!cX{lv-h$dtC>`Lq2RTXkTr<I6U}i>-h}<{oo(}5*xN%Z8;3+)x!VN7gfM|uS
z&68aMHbbBY*M1eP9-UJU(HzO-<^JK!gq?7<pyU0Uo#W%&RyV=Z%^A{{wz>`sabOwV
zYX7*O*j6HI{lOgxiPg!?*ccd;)<63~rwuuV?Q}f_T9JJHZ_eRr07lKATwzwt2^3|+
z+p6juB`u<?=z#|l{jA}QwQYo(A02~;DZ8XJ&B1_`yed3hvr?zs?j?rP8n6@+wCJ}U
zPLMy{9RZ(ob7Rk~R;&92Se)XPfSyl4^oRg<O;ijbgFp*(8B+@93MI1(=-!mc6@U`a
zx_D3HE=hw-(9-wpmaOzi=iVx`!|k^BXB}&4o<0k|KA%WyN5`KoJ(var;r``^+J!1@
zk)(~vAZ5>|n^HwP!IP|fpJZljM(0Rk=iR90(N^jnD1{!W8?yB2kA%E_olUn?A|ZE?
zR?>YTL#j%%%~jogXF-x4b7yQtY6TEmgV3mt9LMUz9rT7W-P4#9Hn%vhFcy|Bn6-Ww
zW>^yM5{0w_eg7&mS1g%)(=Hb5Hk&$wWI88i63N?pf4+X&;<3lJo7+har+t@<R)Jqu
z6yapf7s7qJ<4t<>-SLyt53kzi*PyB&qnU4(eI)}6b%8QFFcE5N{R6MT@M#+-V)WI#
z!H2$$th(j1!SlCRVZcc94z^(qhcu~u1e^0#J&|pM=gdv%eq~~z`dB;>h3vxtJaJKn
zJ~=;p-JhHOnE)acL+=1H5}Uw#U5WH^C%cxfMA#BgQ7@ht`?KXac=vW`oH>j0zLkzy
z2V21Qe|%U~R#6Anpj5Bg8Bsv7+{~fyss-}nP*))s58o6uoSQ{sUR;yP6-Q=_WeJvZ
zsvyg34*Qmyq9aaq#ajBQAsCX%8kY2BEK$&M(07Ak!^9-7CFECfI=MY-9nlE6y5C=o
z$fy$Dlt)7`>c<7u#u*9x?ggR6eDc3rV8vA8spv_8^$HB{d`_oo+B7tW?HK+88my`x
zLNC<-5UbA3`18VzrnK}aNG3nOywKB+lGXj1{dB7AxdYJJ`QrE}V!p;gfA*u`+>X(>
z_$Na{LN*IMq8j^kCY`^lE4S$F1i|Es%J~J1Tppb=T*H4J>p|q@x83e{Wn$G??E}Pt
zYbF=*M2A*Qiod9}C69%Vtb#c~4LqWv51e1%T-50&)Wds2_J`<v!ZctT!_M(C)8cr%
zRv%vAP`NZz+!(^*+?hzr!5eOo*QH2YI7!7*IpA7$X!7rGQ<(P(Fai}Q1-jq<z5N_?
zO(>@R&-$H0U$dq78d=f$!?FIlh{7Q*H8s|CM|`hT@vF-euw(<qj8&v?&{xrb;J^`O
z>HUSVu5TZGfW~&dR6kUZhs;n?#8dvBa_MRL)?9ogTT^^3JCQ+k`Jh^JqP^*2vD0j?
zEFl4#l=8qQ@|ej7^mF3qD%=0ap=5t>J2r+)8wh{DW3AI-7RT#&`k9*A=yY+)&0CoT
z1+nY-TB>D@fB>mJa=P3Gnw<E-?R6p09cd3+JU02J+xN$xcl$43B`J7RGU;)AL-)M9
zH<rXeFqa8q=y5beBbWv32s>x~=z2(?r=aHQXK!yWSkoq@r!&y8gGat0l7ht-Vj(>N
zfa$Y<8H48n>}-tQYfGp1S;HHpirI&2yhzTaU|O|v{ib7JU@!~r7Z9BQGdsW|TnT|_
zriH9DX~oUW4JgZr8*-s&1C{CmZSvodlUl7_T7ikIx37<?g>Z`7<G}_8r;!b<Z8P<s
z1`DqX2GoCavFjhvQBp2AqFk1<iryBvQxP5ts)`5AKXD=Tk@0zc(ODXQxJ}M22aNuo
zU~Nz$GM@^36uLs|Xx=w{;2z=LK5;e`VH6NTxoW=}Bml3OO1a*fQfp7r&jhj5!Du9n
zSF<kf-1ZBFB0jR|fp7z`_>jTt+D%$&d7LcgKq*O>3@6YO8QlHXZu|0X(x<zu%nDEy
z8J_NN*4iE8(IDHhE=RtBJmDP}u>1Z@BNYJSrkfE(x*zesn{76FoU5)Kzym;XO{>lA
z3`l|-9mY-A_c1fd_hjBDca>+FO*&m}{B<G)-(~0+EkHA&#SHZn_JYMo9F=_06s44+
zodOngjSw0*)QOuexZQ3_GN{z;cY(4!#nEJ?3`y!D0!s%<*g)xqG<Ue(K>NQAu8~aO
z^RNC<f0w^BXh~NbxD$pLzPSi2UHK%7eDjbdiyh{iKZk$7^-olTZh4j#B}%p`fnNwb
zppGGqSLJ2tzwcK%zz0h26p#mD`3=tLY~JxWUh&W40Uh-3$7!{p7+E?M-(Kh+t&|Su
zT5pKO#($~%3IJ{ZEEtk!DY@V}5O3?t+Vo1Ll7TW&U`AFq1DLQmXNYVTHlqo2B0<Qp
zKR{Auj7W-VW(raF84$j+*3S~+9{_BE(|QeD#IXKo5{E9_k1F1mJ#c_#;+H8yzzGZ2
z<PPYX&u)*JZNDXOkzxLVEsBp~{B)dzOg=X+x?az*pYw)$Q^haj7XM85yH#~YJao#u
z-(fQA1SIcC-V@NEbXIRPzxKFabluLcxb4x!AFQ`IUjQ&^SzFIMHyOe&wu=T_i{x;&
z3lL`6czeB%FQln7Y+2)T4D#l*UT1WKWm&<{RGS&*CHQ*@T+cr#C{U!uC<;Eh{tZMD
zCn1=*^~g6Yv{Z3-72}5LO{6gEu<|;(HiT(mBaQWwZzTS85b2^uew4ZWG@GjE0s9VJ
z3N!HCtNiTw7?FI4cQNX>9u;W^Y29)mBJwJbceFl3d1Ia4SkR$ON2A~o#oM%}c>PK8
z9=&=pv3a(Ih|a(F`*oVm6tQe{2@c-W$~NawC^wHU6t3s{!N`LLu1)>0+*b95bvk~$
zy-{l|>u(j2nac|mLLMdC-`@3P@F+VSD^>39@M0xPppecah+njyoTk>>u>^Pq3-($F
z_gUqw)Ciyw`9}Vz{PL*G`r)^XZ6T%*IX#T;;ohL-wRp4)_A34BNBaXvtvN?(uOrEl
zNf`Q^ATcauC?%FS+B|$|_5rS1EPqRjA?*w5sQ6G$_E+B2k#PgIkt7R_D57{D%b$u`
z5c)qAEy9FI!zjZjXQVOm;3+9vAK#oeXo$w!?mM2=MeLl=BKD7t))hNnJr6Q2>erCP
z;0S?*A~8K}wfhWwt5wU(B0hQYH1SeU_-g01H>wBdA+J@U9L*x|a8Q+UZWSp?6xU3$
z5Y&9*5agdcw62hvpxBds+scbgiT3=UtKXE@DO)HVjCQf!T8_HxE%n3&nN%L+_J|Ye
z7T{1<uE?00dsd0?Bakba4(=DbT$?FQkhHalg|Q&Vh<HST_3dp>m8;olC1q*)v1+Js
z)2MVIA%^?BV44L2JPKOF#1YmMe;$8)0))rVeEp4v4dLSQ#b}`Oxdk@Sgv7){>#2E0
z6vTn)Y(xaI2YUK~{8MT^d#y<V|I+b9AI>cb(5sr8?W|gr1I5MncXxHKB^oHOEi^RJ
zN@3c1^nIOp>MJUc$<ktCNSzgIsCM&~Us6xRRXP^e@l)~Ne{8U_C@w1c$&*$<=2z5M
zlqAOON9Zy<)F}|uR_?}o`@8g+|L+<Fxp1cO9Ym%wp}(U8>3CGacEh$m+-1bMNrReU
zR-EDs5E?i*`6AtOZLd<c)xxEvr_(~XDMn~halBzo?uuJ(9<g+%j}0f$;*-trnbF!T
z!av{zy!AwReTk?V_pmS0wT8qq{+{=apJ=L)EjL3QZtbqHU&fXpWEX4+0hz8_<ok&6
zoQJ^yD`3qqFd)?pNyW`X3l9dlD;R4B&LOaIk1PDwSyBSuq%l1%xi3%P7oa=M4oXzU
z`Mf**a#u_~PP)4F3}*x*F@g^Awi0R2KLOtleaWPU1M@az=#t-|19Fj3T+n#<DaN3H
zYRq>8@sGw%XzAn6kbW{F5Z3h{^~{8H0X#QuV2ze}@ATUpiJH{G<#-Dg^^K%7au&Bf
zwZOrWy|EZAGKm0RopFIo7c?BQ$5r6_V(BdMykAr`pDRoXOv<gh<w?L$>6L?Y#Q|En
z!J)S#?Dwi`m;6U{y`L4^r!7S60|CKUPKs+$Kb5vzxTdFmt45uHq>~c|F-Z<~vT`yn
za_gSd4hfnM{eM!Wrsc$3_IJoxf9}qB`}%}?$VDx_P4$NVizI<O;Kfg-G3dv?<tLm~
z*5I}ThOr6>di2A3SbMM@y&J0dvifI25Ln$^kab%!Deb<>VzM$cOJ&DF0IwU%72b1v
zdOEM+@vJs0D}3f)k+|cY7>&BXPQZF)8&Z=usLrFe5`NnMkJI|2r@M8J_Wa>kQafU^
zL@p{iB;n18%e-)_3KIXvk7!x3?kn_!%#S3D`S5y2V2Js_7KV3X!caU$siy(62P8eO
z{r~Vc5F)AoaYjX6-p5I=8I+CvPUDv<l(s3p>!XoL3sLE`xx!Q!ln^xyu?n`0>MEt<
zqQ#RvT5G!x!(kxh3;BXZ5vG6-?kAuLyhFyz=^R2^%xroJ|E&YTjNAK+5!l)uM5*@l
z%M@*Zs^6c3;`*?aY?9ssI-(C3U0F|$tbzvDpXMR`L&mGz+l^er&s8BO2~_OhdP+wr
zMG-8H-<JRo6f=$xijY&BTl*yp-d)CwE|;-;d3u$cvu3se#q<NV1wSv^5%iZU43Dmn
zBCI@@9R;=JMe<MF<-Q8$Z3C31rxd^8)4=mVQc^_GOL%!ik>;)L=Hp7|GIfSgC1QXI
zpOQz(u1ToNDX1{)FG&T=NFE%h#&y>NBD%=#xLk=HdUatxjn~k4n%C=OP#xDkkj5hE
zL2Eud@@ueWT(1I3c}ip8OT9Cc$1u;S)W7Z!C^xY3ovfYtbgc!)G)ZRIg^>?lAIb-!
zIbC_%<p0e*jqx1P-Ry5$b8u+pBh%6=;;Q15EQ1=X3GdfG;7KW^!Ixhy^!}d1QYlRd
z{c_Eb4e<vd4`pifgCnr-4p!NF_|bet$U9zR0Gpn5@lvkhK2qLsHmTfTU}Ee7&#B%!
zo|^y@3~4+ox4`y#<MAr37Q5d==Evvrp)sE^m>zK~#<Tc&KQYeMSZbzK62!7`+QxiO
zvXhe`%DqYZ45=c#f<nyK?0DE%>A>oWE%R=SI#0){fTgU<tMfN2lg{;&<h7{Wco$t@
zz3uft84gq2uzplkQW6r*d)W-Gt<Ri(5#|Ngg07hPKfVQxWOw5#(f)ONc%3a(<jem`
z&aBh?{JYe;KcJEO^Z*B{Gu+NxYstLNQ2gd0rJuK(tKr7SV9<d(dmeMr*Lb2L*dbkW
z6+0!dIeLXy2&P0YD2qIi){^^?a;6dY?N=ygQ(7M|&~bS|?JnCVVSK*7g!nbYH`Saq
zE=i$D#(nyQ%9*sKI@;S3%jtBcc*4e#VX0H{{L3o;<9))zn)ss&20Y{&oCdG85#D=j
zjL()%Dm98lX>o|q@EeBZDd%2$?8y%FJa6fIdQD5Gw|@jWB~Y3M<enAqv|kucaypA~
zkxj;`rfX}Z%Y`805YxK}Pu8l%Lak~r0^u2djHZ)6c77_U%@jh<HO>ECaf=kwr82fw
z@JjHqv>3+&rH#bDJ`p5R&TMH_W?k}L#?M&qSv7k_ASEs}yo+L^sdM@+Vyw+lXM5Cj
z^lf*39RsUWvF2+J9i4SS+7PJTq1<}+<40u~&zUr9?n*Z>hm<$VPaPYNB4-L#G@6tT
zN=XnV@JTq;@tQLAFID6Oe`5x<UFczI0DyPpBieLHPR(2<lI$6G(DPpL`!j3;nl{dl
z7RMefru_Y&pg~l+wUZ+jq)Gd+Cbp(0yyX%fT+E++Mws1fq}=H8)MJBTLT%uc3c9Xi
zhCx<?{1L1)c!4QCy%N858y|vs;{I^Tf8sIFQSLm5z9%6eVb)v7ySxkwV}6v{5*g}5
z-F@dr#89WCr-+DfC2IbMv0qH))_>DRaZ_vd?_6i}zT-e&msLgh5oZ1AfZf3&7Vvm@
z9{968o9Y)xR9d7F(IEC!tdCCuaSf9lg_4d4__0w80dF48xS*z_rtEP&lV?OPD=CRO
zASEda7l-I};JpqWl?pWUcyjgzNY!>?QNB+re0WbCRGI+C#_1|=XXI9tMUTuAKYP{C
z(BLLa$1Uq;+h)BXVBr|Z)Tt*gPV&hFJwRAh95Zx?<m)^OL&3kkWm(xM9mw~mE1+mw
zg&v3PU#<Do8_0H%ZKizg<d^@+HAh2f2a-g2c|XNr_CO;S0ryWBDV14o5`3}BT`%B?
z-4+>Ge7kkLt?kfPR8UmYH{rDs_A!L{RK5d!(o4o~v*{Bh&?#rjQR<e#L65>^0jx_^
zp%B5K%a-qURxt#V!n4jEE2pMLzU+5{f>H>E170i-IfxKCu&V&_Q{)R$CrFn3cQP;_
z?ngZA2rkpRmcx`?po|>hSNOuKd;%EtnU0Nr;^5y&_d=NrEo#HY>6sZ<DZO~-db_&U
zz2G+m4F!z_dG7^vzQ%$AQBJ{^J$Z&Z-)T^cJi+sa6+!F>#-1eds8)LOBbkS2@%J8e
zUZXX7XWfOaj<+WJy#o#VA#VR)gV@lT8iH-q*Ha_ksczWL1{*NT+gI+$1*y2ldxvoU
zxk~0s4_TpHyueCwGbgtbvia>5tqXu*!u>SfUSGhvT#QykRN$uxaA8@uUj@z9Lio+i
z%~1!FsQ%4#UO&Q^5}9`Rz;0oh7&OWJ;I)^i3TEaaEizhbARNOZZJN}v_aGMh0gSVk
zEi`X=$$Ve7Pmq0M7<OKO?vXE*#E8%9#2AOf^XH!4#)th4pq<-Ek%iD|R+B*<VP)f0
z#SWQV<sV{YTIwU6S2w+Q`#;%lurN2ti1KvR)n4cC6$9EsYJPXoTBrR}d3C2ot3&B-
zQ*>xlD!(zu@bt;q!wNe21mB<kz;+H<_seh49QgXO@kZoO4i~dIA^64@CmhyafB8F|
zqwA`eQ#M-wCCQh*;5t70x!-kXml_WS$@_68TPP;%qJL<By&nwq{T>|0QBF;~jKVaa
zf^_ib9!?NMdQk+tZ<3`Nb?7O(aAR(6g&$c;u`KuS2}p-mYc?_GoLS^jcJGjU^K)d<
zYDOoYwI92eI==76k{eFN`5^i#`1VKe&N1Lcf$}!;_OJV&x0}Ii+00L)lH{!F7yth7
zB(>w&5`+X|hQQ|=p!sxj^amuoLkd%|)h>H_{Y#SXC?)Q!H4a9fP!5}N+<N$1X12x8
zyQ{)9A%-@;_&c92=2Ck8{J9N;&DksmOPMnO5=25oJf-4~zS=m`DK9Uhk<EY)J|V*!
zd4Eva2j1UFIW*<L%QvUnYEGc*3F4eMz7fXlidViKfcy|q0kYxiPOfBvL}X~F9{i8<
zoNQlzsM*(!C)Ow)`Sb2Yu>mnycckOvlYrzr{XDYyyWvbgNXj@RRMtc+`8h_am*{Q0
z>XpXQLtD0nD@;$vG%_)vIwr~-@{A)7{Rf!y{=K@solhF8IL&uMLcgS?{1|i}qq7fC
z0wASg#9vSh76yHk_me_aGBS~pBvL>0|04gUkdDO|g_1WcYd`O3M%!3z(NxiB<n*rQ
zk&i<B3VCQZWI)a>0__wq##T5R_l)T8!;9^2YTiqx4ELr-W-w?6lOpG&!5#_Qrmgl_
zY)l&G+r|8vW$|hPX@U+xhc@SJccF}vo6aNW0Ix1P-O-t;@z-{TwLM>n2ooux@Q#z+
zHpBJR+116#LwLJG`)(N%v`d*Qmyz`x@BCzFRFg5;>dsirr=m?x^I0<JCI<^9BI5y#
z;4G+~ld8N9(HLTnT%kZ2|4^tOPEq|yO}2%<OI^~_PR{2~cDFvCg~HsPB}o=9Zz*sO
zT2gTbN0*<~RF-!O*_Q}To)&FW9VNbzyNOa#u1kr8ZuU=4Aw_`tFr?zy{iuosYG3gU
zG&qTKrS!i3NviRjQryHuztiCE?CEGj{bP2yM8!<98a6layH97fDQpjitZjEq%$bn|
z_-2!r<6EJgm>rBW>7J_Y9e3A>?%W3I*Pu1U@wbw)a-nKVKkZ~ZOdG!!ENh7g5zA5h
z?9hVb<9te-l8w^z-@!-%kfOSy)OvUwonyEgm@-V|7^<t?uL;6VtP?Vkp5O^{MGbr)
zHs2XpT+}XuyIBPYpR;&9cFFW|D8~9@vqUQxc!LVp{NJ{AF#+o1mvO8s8POd~2|N4!
zWrqH^Iv;qq!I<t+P*kV5KciK}=mJ7(Xn_7c{~MeUL%2JOdPYXnuYZBXEmiwEXBQuB
z!iVPmVnePe2U511q~{}OvNI`Pns$1g<?@?av^hWJ-p@Js&7NUw%uX*22fMewUuW<v
z(;B!PYwQ0GP52kAsbL`5J?O*y(czYe!SGQPND{%114@$N$-wBk#EzNF&nkeSsxy(a
zU7ZcfqCO6u>;<^A{=)X)tbYZ_hVFZ5%q`yg*cOB<ghvLW0ZbFz$Jg`xbe_}IhCc<8
z@er`6M7wj<-d%uApH>%`rVZIHjZ@1U?53+~lWR}9sNQ0?ce{MTh0W)~UT40*tT?!6
zIF^*j?>^79xjgAZk(!)bTtg?9h8vju3iwQ4SjKzHY-fsPf*+j^E;`-z=#@~kFPB^Y
z#xJ0pAc(SH8I2QOI$cpaY=uBmwZz+cMUKsx383~Z_x9*Cd1Xe%Q>j00fM+?ad>qv=
z90e6MtnZeJK63Bh!TE1yh~onN-PI8$vsw{hY3#<R+t3K`Uy`yv3aU7r?lVQd7a)DL
z-5G?Wtr__*Q_{j{1<qLwDgiAlHG)ww6V_O?0P~z_HMh?aFirnKJ3+BQdU_h@R|u-;
zmuERpHL{>}2X{!WUap$-SzWdW57}qDTR@l(NI5-UXugJX>Q9>!$F<r;<$`X8&&+-~
zHExbl_}pI9Xtbo0?0GftzWK2NxAX?|+FV0yCVjiU4_S9DDFy;*Wz)Js;L9OQ>h*td
z#%e}jw3YBw`@r@HSTi9y^vUL(f7UJlK1@RS(uV{%ryD)~+ARhx)DFWeJ>sq;&?$ln
zR>r`UwyzG+QDJv^uI;s51(t8uV;{*rU&0ZB2zVh-ALk@?W_7hBeP^GSCG5PdY6j2*
zk-i{9_B1JML2vs9oxV6MQKj%YTe-M2W2Dj1feQ6f?dqzsR<ql(xwdPk5q=j4bA{-4
z{9N^QeeR4}b~Q&yfy!~@``TWA4O`jb>~7CJ@5k4i*FBy4j0qxsYDY$bAP4$i5j6hY
zCydIlurN>y=MCh;IzwBKM~-h8yC?Cy`R?T<P?YqS@=H$aX&~`wbZ+mje@ROa6H+f?
zcBTwu?soleDF%Dk^OAUmVQ|sz@5=>7H70^E{gsfcEGk66HRLVWYj%OVWJ_`eFI6t6
zn3DRgMavZ*U5tm}+mb$(?Y~D@Zf>H@ELNyimlsjqTr%D9AHmlh!A-6u<S*YnL8Tk#
z3NHY9i5V;#SX?zZf@Lar!3LueUBlntau#^+6n!s|$6r?;FRJpajYA>eC_%(x#PJV=
zyXn<-laiL$#mVRJu}6ic=7M7d%-Gzlt!kTQOezVKgn~F;QcS<aX4`z4BZT>xnHgXt
zJANWI2yco<k1Ll<eHTIyq?^i&@WQko@tbp=@8f-KebmU(*pf$WG{k3e2n7NGk7f`5
zNCZI$ODe4t2&eK@>AP7W!oi}8l|K5=fM*T6Uj{S#GRS4{?~V|lpPKt5-e?QJ@Ru)O
znWcwA|9;xj>iv2r(`^pl)Z#DG8PW5xkW0Zlbl*ZJ-G3=#U{^=!aK9B#%YR7R(f<u?
z2$i53hN+d|#IYeWz%X6}@fmC<f)R|ZE|i;!^**_xkj;IbT_OyKrzaUzj6aSlB22J*
zn^Qy+XVx_4C%xs{IK-z!=PZIQb-Z<S^NE~@^Pdx7K74Pmx=QzFezKOMI5@IQph|L>
zlB*Ic^@xx(s^%!HrSy>~{Q5*TB0%+)u-hiQGr7m(f%=zcs+<h+#cdLTSw&~9Hkt@t
z;nIhf;c-acwHt1d*QVKBpO8F!_-P020P7nh6ujc140eu@EIz%NSBM+WUv9?i;m|u}
zQuc~)sQMk>O;u!izSvFA8ePS~j$=J2A;Qb?`yfY9^CQCJuQj_WcJxBGT3$HW_q?*u
zj?D(<e`KQP85P(IQ4V&;*l=`&r_RjOO*H?!fPJ|67wnAq_h_>!=<HKQpz`1psbQW5
z2@6!VJB0L=6VKx=RXu)1@i+OBt@b&o_RtRC%t{6qbRE1*4Ly*)4HMxt!RUTF@S7{8
zsf~;Zoxj&SU+vJ(3qBd&=jDhUznQEJeF=>C9bvG_?WF7zBjM`WlHlry)o8&>NSg$2
z6qq2?c5fgh<#WcfXC)vKvJoK9X~_6#$vvwb;YG@*H(-yCA)EE<)$L8Yj#~Z6LS=cI
z=6fQdk=?t~wftmPB%7us3%Mc%+fpE|i3FpdpdyMFLc`6Bu<kI64Ge@QGjqUwx(_?T
zSz@;XHU_d>vW5jSXd>S_cSCRQX^lASI#413b<-2hRgX8<Dj3fCJVKM5Bk6W`h`&mQ
z*ZLoRIz>Za0pd;tem&+-EQ{SJB@p7~Tb=!B5!ZT;LKJiZ=MxBrWGkNVTv!hJKKFGA
zFHh!g$Ip1d!wkqLcXLO(+npGm$f!oXm6E+bn0U29K^sG91`?jSm#Hb;<AyrMq6xEY
zm=Na@`!iw{8Xk)-7@KG%o?*Mk<yN)bgAxK_K2eW6=h`S%%2J@%TWD3U53<Ex@X4Q5
zR;4mOM4Wc)4Az>(j3+=WfOPjHxem$G<9=ki{A>?2+~0UBQqaPMX^rto>?Xp*>Lz7;
zZn7=Yul6A~9;D<R-RWkNGZCE;+m{UWk)8has&W>0+QJY7lg`Q}-IBweeEGwuRwMMS
z?vV>ECp$4QkT@w~hIDf$T0pzStZ<=i^X_~1zhGRdl!}uVzx!RqYxi8asvzhWz$49b
zcTPE4ZLte!<4>%KEMS6#g-3NEc*5o4yB?;P^u5l290w7Q4fl%<U`*e{C3ugNv;R9Y
z9jJh+tWluiC<F90a?xTQfN^5A)v>%eH3IeQcp7V~ZNKkx#7d$4`;o;uP}vze*;i7z
z5M^P>+<XEmqv7Ht6hwSo#(huV?LK|t&}y|okUtp|<bMXR#+7>G=-Fe@(=1;1aihq?
zJ}{vO0A~lhtpG@jlqr`xeE$qyDY$GVlcbwQC9VDaK(@@)VBvNRGz3Vjcv|)@55%V+
zQjvd#mUoW^j_``OhKdT`8+k!zLMm`og=lEBIaSib&?-=vOV2A#@Xc|SRu2==g&(_j
z$m4NQQSI%4VGC5D8)QTB!=VF@hMJ~6d^3P<q&rP^^NQsB>?zXI{?+XKW=OFpAOD^i
zT=5rb?#0UIi%4FJp@}|@8$(H-oV_xOAQ43}WVS4f*JT}vwfywle!9&NsVf>_)cFL1
zXP^~U9+uan9D*x~^5eD_K_Xsfr*VE1V5N=_d98uJG-%>+ZaS~BLmS%PH8A)!*a!}B
zbvE{<t1r^^KYam^p;55Jv*DWlZO`7ztFr*{zN52z_3yRD-jcwpUC)w-2l3S>&qoKC
zU|C|5ke#9E@Soj6fVF|>CkY!muBt>j37Pq<QB$1*Fai)N1Bn$*tzE20wDQqKGu+z^
zB_+d(&5@F_X`f61IEJ2Q5bo59%9*_Nt8^-#;Z@$iXn^lP=i@O$*D*E)(K~KU^N02V
zgEJa)po?{_Z1!fIzCp^EEb1Au%%FzsO5glQS+nDq2};zF8ULD^$7F_zIXZRqLshk!
z!S&UlrLJyJGt^zDpw3fwqf;;JL=uAvq99#KS+zRt7<MOn*=ITJQd;)>vA)a);0Du&
ze-&unF>Eexp*(R8-Wnk=6N^Xs3I2pPt+Hm%=5bXpRxQOboDO6jqJt)S9UQCN^)+hv
zf;)}HDgTvIsghv_7~h8vC5UqGV=*UY<<Z=J4!)(!*hO%iCYCAHTzlSsiBnBUou5cO
zYRbTNKDx>@SvW5L@&&cSfOhx<17nJvtxkVyuX@#2v(@1&uZ#Et?gwnUXay0iF-i$v
zp*E58sO}VP*2mX`oXL+ZGxFBSU&SXE$PhlAw@K1#z7TkQ9%#hK9Hmbn;+dhgu#cCz
z^jmOj`Y{^WI8-UlwQL>4B2r`-c6CCdN@ZHXBS|)rcv>FeS|}tjuK4@mjaOzjwA%If
zd0Wm~UFkYIe02K&tj=%pyAP}U;UeMH6%;T-PUjoUrK`15wmmvM4><HAi8E8v;>z9y
zvV-1WHuL@e&Ul?xTV3lF<!g>IB3x>&XNHx}k%dL5indWWrc@e+Ak%UMnRwlFee5;g
z?+qejVPZ))cG!-*Wf9uKsG%;T^uvgVeift0O-oM`kNDubGsp)Czx^)cpUul_>Azd&
z6KBxy<#M?BWyC*?AU)Q<=y3^M)XeM{v=i-KCQzOw(`G@0eeq4~68o+OJG#LYdR(D8
zmDazYJ`EjeGuHsan~j8cw;jLDK$eV;aUmiL%uxv=D9Lb9NrZcqTYbTQXz;v1p#1U3
zYb3SH^T~-1n-0m)&tDUFv+|f;1gZ|*q6+NVWir_keMKQ5aM%7j_ydkG;Md~@n?cqI
zd|77>O)2Px=71_-EH{;J!1|z@D$qftVdh6{RyB8-`&I6jWj}y@RL^OZcc>u6cz#JT
zXc?M(cUwce9~Xt>3b82>YWc-iOBTZOCc<;mu}><Fm4#C~81tV!0^Ay>Dh!S6(|Vyw
zu#0`D6VE_t37*GCvH?Wf6DKy>)pl2V;29JahGK|_4o{CsZ!?+7%gD$$HlITc-rA0m
zkequWWU<){|JWXrp6>o<{x|6uEY**5819Hx{^15WaK?cx_G2Z9yB;EKEF-d>#m%SE
zHXGmH;|#sPTIJ`f?>>+=c#C8OURPNho*L%?tC!4~{{B4tmqI^n<S#)nSTu<sbKHmh
zSWMZ@F=vCv#4-j+G)h*<6yw1@c4D_fG8{NxQM)>OQj8W_1IjS#c;2|xN3g2{0)ipf
zl@mk!OHs)I_OPZXr@v6T<`%jE<rbTnxb^a{P<1-@07<VFOU=0kb2Lf;bZ|M3`x4Ji
zamkg9ix!&D^+y)C`msYM5a<0gt-A^~VYjOn6_ar{S>C0Kw-iOoJYB7|H(nnHhU_+{
zi!i9+@o_H@j?YPb402mUtM&UJpY{3rCr}_RZGdxM^bXkGTURa2SV?A#+5R~ojg0nh
z2{@rLn*s|&D~p+AlRU0xM}VV{h+bfJaS{*QUY~_oj*gE0!%ZRNx4Y?!7MLyX()hgs
zEZRVhNYAbystxfG*JiMWh9ToT_?;dcqpWI~xT^PaNRDvhveedZ!N}YKU=YA%U<^M(
z3&L8x-(IQ|SGQ2;kj4vK^nKbeZ9Sl;gwpK1AitG$c)cuiy?$nhozq}&+BUmVoibYI
zL)+027k?)rA&W0}7llyg@CqESQ6z%vmJQT1N4)sMdZYB_?!7)ZwE@Q2t{lb|QHqD$
z$0sN2p7(42I-JQ9Jn76$E!)$ZC_W0(>I9WkmdZFX?c?L)a9gc%m8)UE6Byc8X@NTN
zjA)uf1DqNxx5X_RwelVoc`Yr%_S|gMs#XoyTR2`n-?UZCOXpM@SuZb;)%VSKuDkQ`
z0elrK!Y|*Sc^nqym3QZtJGl)FjyBp2+5e+Xi~_ubtKE3HqQYVX%bT+m)oLLI`);$o
z?we1+xKc5AqLa}%INy=XA<R0;Dkb&m2Met~CKh0|M`=CHReJ@7BolX2<o#21vm&T1
zGQbVjdD)9pw=^+L?6L_tl2(+rqhO+HH?DT{43;A?=)DUwx!<@jo_xr5vjVomH&K^H
zO^q`U3Q+_X(-XpeyC4fe|HLkR;bz|G+k)Q&|HDTRunk+&<Jb>7@Nb3n^~nUfti*B>
zw8jw$@aeTkCeLq&=Xg)4ab5%F_9&%zcRC*-H^vf^E1Qlj$F;})R)AFh#-6N_0e0D<
zBDyN`;dJp)7EF}6h`q>HrWpn?GHFW{18kqFN^YGgH^?8TBEaNXl$$G1Q0YK&qubH-
zlO0aZOvIMD3gss}iTnsrVzKf_CIEtIb=m%){2&N+Bjj~+r5bJ_;n5<^E@>k2Ht6r*
zJEL>bX}$z>7W#i3X|*6foP?gwLwS$qjML_Pz^aIb>Wwz+NpMB9q;vV=N_^h!e<w?C
z&9TP*X%4LhxS3Y}^Lk8YDiXNOd;di|kv%w1O!-}Z0UFQUB#-}NvS%q(HzogB`c(l%
zw>HmHdgbwoNfC^ON?aqcw(~hN$H}Lo1yiHG$lIWA{TZQ*GXKp@YCs=oXS*>|RvWTV
z%7ELUCfv)>=x?2`w1}twcjTcz!mCDfw$>NVJL#HVM;6)OkyLLbpqJyshD3*STW*in
zkScQWVQ4E|RiQQf{3F;#=eJQXSK>9f=_SjNiEuxtXlW@asTJ(Pd-HfcewwGgE54ML
zltj2IdxdD+1OI^e`T3F3MySE8CN?w#XgFU&<0I_D<$8`mDofnhs1=tBSx!b$Mpkw(
zEgmzos6ZIJje#P=wSHX~F21ju=rIPb1_v|$c@`3-ntLt~)!<`L13(gDGNDjXiImhX
z_&_=1I88F=m|K|b`T|1IjCAhT6Lbg}%!nEx+__3A&Ok;_9ZastKVTPpCa2*TqMe{H
z%UDxdd$eDfUW9Chg9AurVzsumd^5A}M6Qt3kT{G?O-s*3t{y|NXr!dZKon?ob~a=V
zx(G-xj;D*Pq^7ugOhzw|X+r1SySt>SjtuXId~mq@pn#P!M^leWW|DHBO#g}!bqY|A
zZ=hkgAS-@?ic5ZS<R_>+u!}1>S`6s!875twgfLV1THu6wQL(Z~O{DuVHj>W<H!hyc
zKp#8a5&+Fr7|0&Hoo8k(yBokMy+ad`ox;nS=MJ;1Tv(GFiHs~r+D5a{yaYi9Z+nOc
zN#Y1#D&Q1sMF~uK0QZwz2AAHq6r<HvL_}sfCID!uMzyVZ-A}jf#Z=1`!mZ<Vxy-Su
z?xhFPaJFmraNv8~G!A;p>3+$S1`gh8MQS-cu^~BPGz(TtTLUAb!=_eO-DQy(@H+Bi
zAE<~iVf^y(5P1R=kcDRB95C33$cr7Ha*=~wvL@({{O9JLHI2WAXbF1z$Sr~oRmTOK
z=e~Z>$@Cu~#Z~l{gW7Cg+yru#+Eo3%xrh|y-_Iu{Bz)4}j{s*j8*4&8pmk9)nHm}v
zR_ThKcXNbTdzZ_)ubKUV66EFObr!Y)0LVxD{Z-K4F*-oE=<zh+&Aixzw#;q;v(#)F
z&)b|A0>NL*6zBYOXE~m5@uI1bmY<i$&c@dH^x*v0^=O(Z$bQLoCQhxv>14Iz1HX}U
zj1f7R)!pe*Jt)*VJ~rD$?YmOnc>VYh@I^fS0$XRyKD@x80Z>98>1M9~>;bzN@vl+n
z2*03wk<79-$1@IUbL3UuI^UFdILhb|VtxHfxA&;xi)@p>WCWa67fTh3oQ_su<?qi{
z?t9=!9CnIcHsJ&(t$PIT7D3jZL=gcCy{WqEwe=!68ebR8$`Xci(8$l=7Aebwg4uHJ
z{6nN$Ox*18_xhvvmDF0fw2aIPXvCy!`x<W^uj=v=`;|C$AY|R?R|ACcV-MKP;Y9yH
zfeiUqcPYuv$Wh-;^?RM~Zcl(YQ)oWh<2lsi`xEtCwI%VSs@aS`0^@T(o_dY0uM7_)
z<!-ds4FyYHt1!CY>%-1*V!{@kxk@z#3ia7#uE?eo@#VmzPe?MOy271f>M`V<*YQy?
zW#^8K<-Kz><n!x3XV({8iMK<`2Sp+$=aqNVXj-*DVSfs1_t3kZw;Zgxd52LtkY9aJ
z7UHfQ1OlECzvk0EZY6j+fn-ZS?3X#sg5GkugVM{7?@;{^)b~Sw-JPv)g3>vn*{<ik
zkA-Z(D=I$}UzXq8nb?lAARsY7b`N7;8NsdMw_aEF+_yb}r$6tYQ`p+wl)sMi{C;GY
zFu$qsSr;w6hQOt+(}HO^#s1XP0CBL!uqe3^n*6Aqr!*Iajj>ogp6qAo;78`8a=#~=
zy5hEe=dNev&f*)G4QxL!CmgXKO+MtSPWXjn4PmR!2zc&)8vOg4;Qo%9SyiR1wX`#3
za1lw3$F}2wh;;K7u=qp5mrs{@C@XfP_%Q0j)#<JfVQQXMk6pzud174}8f%tW0OiVR
zP1VlD-0G=^a;PY&KL0M~E^VhrhRNEvZ<T<<Af>~1M*)5^wRXjb@zko=)y2B;AH?Ru
z52FpyuQOoPV?&5ler^(dH%?%QS3Tw1=ymyTe5cUaMVq2s1kSa^IG?Ge1Nv`^5^^rD
zUDKzj@@N(<qSXy>RvRr$4dmFrURvcQw=2#n-J8|$iPQ?3`B_C@>Q~{9x?e3v$(<!E
z+C(&1GB7YLtZ9#+kje(>e@z*Tcc2F|leBAu2n-}fW-NL>Zq{ZCdasLm1AELf;wmc_
z95v1TWeoa6#}x@~T1-mJB2DZ<ByDwln5Ki$C$1RX;v=C}mo<(j9Za5vB3?7^YwXfF
zDw@Nar!O8H<eeh#*byxTg(<7{Rrn;SHdu`9r95tgvc+eI*PtV1#)&_qOaJXqBjR{Z
z93XQE`y(toEYg2$MA~JqHxS8fSD_c*Z6c_8izWWML~#s|bi`4YlH4UT2YCCk<)o$i
z1!IrjJ9y=8`_aeSRR_nQlS&>)k60!wpFnG;2TTOwu{cFM-7ql$g<heOl9?GbU4!jl
zG^o!Lh9{6Xg))ULDs*tLRgANBG4!{Mdm!W?umvzRF;JoxUFd2!v&(GMAlg!{_4;0<
zQnnMWQxSe(A9xVcbO1=*Xj8z)4h#(B>;B^(jEv7^Lkc42=Fj;gSTaGuLHdT!k|uKJ
z$zL>7MpZ-Sdk;xJ{nxgtHw-SHI?8s3D|-ISLmYOPV4LgRk=iQ5;#1bJk`IDj9wPew
zu@rR!B?zCbo}0_em3gn7wAyWAy8tc(nSeujqSq4eyB|g%j(kIbJIwc;giJCot$l2w
zkO!z)BHg^JT#+y%e)s#HUZn9CaPbtDl!O?L>TwhM%sQBkLxWaNKA~)MRy3dQRC=23
zw9LI(!34KrBO?@A1<%hO1UhIio`8U-kbtTrtf|>(!8+j3p&@PCu_Im>`GLg-;?wN3
z$49;T0-oNfe0vpNiiqWAZF_!eXJVIGUfaQ0cB*jLjA(n?>s`r0BdS0SLfYa;z?*b|
zNO56nU2~(Fnwml;;|Ebbu<a=-YTS=+$QBwz#~l7fobU`Za!DRb<JdWJ(Z&lWe)j0F
zuy1m5#<g)@SV5u}$01%tT^)fiV<qPnUCzyIA82hBH+$W?zH<C8N?^S3Nf*WOOyKQJ
zR903V4hLJqA6FnYj3ohOMtm}r564p4q4IPTE9YBA=#zl@MaxFsMq#6%^W|wglQX%=
z2f>CQE3UWg-LqU)cQTmthUA9CltsfsQd#t%C{;By=)XE{8g}RsVzs&5(l3u+&RcJU
z%7p~G#1TteW2z?k6k7OAqn9)-FIz59>s%KQCw|%<-SDV47{N?$t}}(t3Ce#0CO$}N
zm4R)N)Ta<^Jo)c)VA3h|=$Icw2S+4~#*Ypt^0%{%*Gm3CtC-KA#^D{L*;do9cdO=R
zW&k(xchetjw1HFN@_p9>?4q*$W~y?z%9m0Fi}$hp&~^8eD4jsm`|Og)8~iW=?i(KA
zFZ|s(<*Jpyf(@AxF+DKt!QD^mnB=N99i6ra(dr83w40b`&}dX&S9b#s5W?XFac~Tn
zT(mxy@gF&@R^hK4oj8{2J}<#X3%+s@+AS>QT>P789$leKKKS|mn1cr3lea=^-jwap
z$rWJAl(yXiA){f+z`UAy@9UZD%RIH%;Sk4@g;3vaboh|B=ZUwQ@>a5w$8+Z{hAlkx
zhS1ZVeUMd$p9tn9$atQ~e*M+nzUnpch1odOMW&dOVQ9oSw;MoB6enz;N)9Hny*Ild
zd$1J)>%H#kvq9o;EEWoQU`zWS`n^4Gb-<UO;edX(5@;F#jW-N^=nvL{>Kn=OLyWTq
z(l(o_%{ZM9rwZ`#2&Df1O{+pBQBSRBiMaW$=M~J8={9cX{p4oui9<aVv;oe2U?4Eu
zaYdohAZhN>ge@b3iG_#fmCJ!p-h}oEQ-rv#@dRPOeEKNikf98jSqw_rg(#&4xqR&6
znGbQ9-$gO+kX8#ToZXn89!~&KqlqSp)Ts1Dy!p3LSwQ5#q5Tt!THn5KwToR8I)j?)
z=!dVkq_8Z~vnY%~c-(dc^z9?ii=NL3qTW{DO<Uh1cI6h<#?Dd3GCm>RN&e*4FjYSS
zER-U-bmmy22n=!2UrV#8wdcreFoRJvZq16$a9a8|p`d=CCEHLZ^IIO`eXx2dd9;9t
z0n(_N05V!9_KuKaOkuH>#KA?zMuYppf9mWwPBpe_P}ARPM(EKS;B8q<u7C3%@fBeH
z$;A?z1KgerR{fwp0jLGYT*mf#p<taXRK;0*k=?5E4fP3pw}uWe`X*x>OvV}n#I!oK
zX6)~F!VR5MRF;8s;bNfap72>w%EX3aW?y(HOZAR*y%c(0X<&A?J0VMFDgLlF$j*TW
z)fpua@9#0umv8g%A+v-PuGN*iH!(5H6-SU!({i1MEr*@~p{4(o8g>op$t2xa21i0B
zplWi%m-%mlwfx<Ct%&xW<u9V49;qtdRdo)YP>jvRX%KwU_GI_=zNPyc-%piQE9+Et
z9xp_RJ1G6CgUWfwhnk^X2$%9Htb9KEm-c2~g5#0Ee=u_H@za!<^_|kgAI!yKKWJO+
z?J@A|!S3{#C*^EuQc=?eE0wvW=4lX>V|tiEpiGw9+K$w2isH9YVOHQs<H*4VLS+<=
zelKp#VP!3dop|zS@tUalIzc??p9U?Pn&#h*I&l0=tT9RJ7@PMa%&LDo#UiB%rDfa2
zCM>lYE{BcoYY`)^d<9!`XXO0qPlKR#70=(4)DC%(k>N6Kq$A>5y>!$U{SGR$w4m-?
zMspojC5+gIWf$_@Z+2P+hNn$y5+zkt0^`6H+qcOOihzLiPJ8#2J4-HXjw(o#_|-Lq
zU3Bu3<-(Ku&U=1|cvB(t#jQn0=~H1bG5KQIXHblikAhf<!9~#_B0CNU>8=mMTl+;u
z{EoTZ*s;E>N2=n+K7E=B-;<LrEL!b-%WtoSNb-erF{OR{{QNrH?-qwQ#((e}$PV+{
zKO&3MVfB%E1B=1!pHV9mxBxZ_#=sYVBngmN$!edS$K%WVs8$2PILU1Rw)R|y@6e#C
zgMAAe>a<OKY5w_nIFP~-Ge5^QL=O8TP0HpT;U8`G4yNa<R5yC!yeHu_sEKWP*8@kz
z=wYD;&{zes`yhP+u-j5nQYd|8rKQ)?g+PK$Q3!M$*|w^+P#XX!5k$N|cuNbC&Ho75
z*x7AceK}x!h82Zn2tBfTW>y=_lbKPdh6FMRmNqqz-&jHXW}@BKCq{HrKDLITD#KHS
zG%MjlBeI5~X8qO-3g-OHjR$a<k^FctF;SzP_o<Ek?i#otld9aY>?sbZgyN^`TZkYC
zh2LLWn_Eh?H3m>!ulJogT1p;I=aw#d=k2bHtBlS*Pe3KPcG?4Kas&UZa9|--0gdf9
zf@(9cHzV=5>;YMy!r>m!S=?!})eC;8$5Zix;R91w+Gq1lW`@23qf9qbGr0`?53HX*
z-zKVRx7gi=VGLU9zw;OOi;#K;gtULtf~fyR5{u72H42>hsR#-<jRuX6Iegt27~&Q1
zk3ux*o9Kt%-u|Nk47LF)gD?c-!=-$h>@%b>G6!H8-~-YGvHlO>>9_8<od@7#p38RR
zSu|#J&JuH*9*s@fdDxYDGb1kdyVD_Jcj+GwHc2^zufSG7kYi;5kBB_ICo55mPFYG!
z>6G7;o_>F^f)?gJaD&;xZoXgf7ipiOQivZaycU&&8>%ycsHCVUozqIIq&Y`*=hiE3
zQh`3s@i*vr18icJ-1Jtusu>Ynhl};hsf~vnlIWy_L#GmCCTecV+;}X0;8#OEC3Q~w
zkR~4W;V+o8K$}i!EwidN_+0jk2?W|4pK#m#BOZXC?*Uw?Zir-4uHV07*g#ys3otVF
zC(*U}gd(Z!1Jw`x#o20u6)}vM>F<foTUv7RL0h1ntl^&Y$S;efy1rmEIIcfNlY%D-
zn#yq=uYiHY3ejSJkGd!=Aq{r=<>^oA!@?NBZz(}y@@i_$rZd#AY|Zf6#}^hsLX{nz
zz>5H`s-|L_5AO^}jP0Km1VTL_Hh|T~6KyH)MBwR^{VC)4^SII1=c;bwILYz-&z%I5
zPTTsx=@?Vw;m?VfQ{eXK*%tr1YUsC~Pu6%*jIxs2FQ+pNZqz7bKL%aZm%LQM?MqMh
z;cvdWTfk=YtUCBN<LiD25yPtn*bt=oU!<S3!YC!bIz&%9%dIYEYIS^g+6xl=R5~Lv
z5Ev$HjHNl!TyM83aZ^Z(2<^Q)91Bd8e<+>Nae?RI2^dqJ?KW-<x9xKU(Y4*eNEEr%
z<!W$jU4gN~&l8s5trKIWG|{!qAyd%0vr`OJd5EU}&&GfWTh)g*=szxFN5((Ux+xV1
zL^mel2z4u?t|FI584^3c22zpK>lj~7?cOB?(wzjxo)pwg3m|0OyS8eF-USNYN)Zf7
zZpX;#ZRzp!)yLeyWJQW1B5!e<g-jc5-J;wcyPoDa;Z7$wF7ZKR+$KCk&{FmB@qf&!
zKI#Tv8?6nsjV#il*gwBoAFX(u=p!z5Za?$8GVIrQC51^QB`2>iD#m3jn~bVhxM@@G
z8{dbVyFCnM%ykVw6q&M%dP89CZx@F1K<c_Y_LiYCig)a8HZ4<XjoP%re_hX)O+*%N
z*%CPPmCW%UVM2Rg6ID~g3%};4NJbv5pj<RPlkdg-6i6mOI(5ZHDSGe`ol+5|{O-gD
zO21SRk<wlKZnm#*5)Nr0yy@XHgF1Cmcn0k)_V=)`s9rdwYmJZUuHG^dy-bvb{fmog
z{KVLpA212tk2NEv6e;_Bps*_ylPi?J?Vz>0w~FN__xC>+M2N7pVqsHA^}X+b$KVI{
zy1Pjvo*9CK>L*e3lr<t)V^g9A<`Z;Xxb9_`vF|LK8i6r6l3KcJhe)Uh^K{?Ta8N3X
zP-5JNZlc00_`UYv9YlvjgPrbV=X!vHj32B7Ls-Wdm#H`E?%h3EH%&o7>;vp$sJIY2
zpq+IlO#Ph!ex3pnbcniV9CP&a$=6o@Q=Tm=17qW_kBV}_c{-q|nd{6gj^-#v=Lnrs
zxw=LG@c#Bgd4vhZ3<XJiDV8Y&1iYRD5T>eNHBSj{K*zEGxF)#Oktk{QWW&NEXDT@$
z2L25++O?*i4>RzuzZyr59M8|?6Z-0Z736vx-l7-?4pWEs=(V{sR%qvFHa}ggP5F+e
zsIocK-!GlTr;cgch#`G{dYUmEr;zb&_J0Ad08sz0@>66LtU4_{?ZGh*>L>bv_QZ)3
zRmEhy8+=1gN05AJ@CyW!o10r$SSX;jV&7AqHn|1?7*mF)=s1F+X3w6DeZf3=V8n<K
z6DCZ6?QKE_&_i}swp7#9HIUek%n(n_{+=*YJ$BqU{8nB;=uDqJT~*@}ib_jM16HyM
za4~7pB=}3GN&X7GNeM$97(ae|OmvJ_0RDdg1^{UIMm3-O6_5Y`002ovPDHLkV1niA
Bl7RpK

literal 0
HcmV?d00001

diff --git a/oxAuth/Server/src/main/webapp/img/securitykey.jpg b/oxAuth/Server/src/main/webapp/img/securitykey.jpg
new file mode 100644
index 0000000000000000000000000000000000000000..87bf6a410ee3a812bc855d68562843ac9eff7a17
GIT binary patch
literal 51755
zcmeEu2UHX7y6zw%0%`=Lm#Bb97X_&j1qA^C=~WPsE*&IDiK6uO)1^j5nv_T{0+B8t
zy+lAtLX)0=!~h|=^Z%#pefPR&-F^05=bU@b{lm&+7MaY<`_22k?Rnmh`i(jdoYhj-
zR0n8i0N^h82T-xVy*qGc2LRB~0Ym`+I0?{1I0MJQJ@62K8+-!*?Hd|^7W}07{eN$c
z{mZw<3f|EE%RbG(?*~#h0r~q*9=;wvP9C1;uSs43<W)6wj{kl(@b$;O&>y>J$M|9=
z6M)L&tIru;Z;(_&sGkAmlQaXz3TSDVfn&@xw9GWr4gd;XlaA((*B?IvH#Em+kJFu?
zKgqzz1RhXx7C1&jOMC1%EgjwOm!Sy;zXy&p)3IETzIB3C-<JNO*SV`N65pN_P_1ZX
zGZ@ATUVG#n%D~9Z!O6ufbV>NKh^UP0bvbzjMYY>^)HUvEY8e_Co0yuJTi89ecW`ua
zcJcA`d+HAlc=qyDSa?KaRCH2uN@`mA>x|5IdGGTJ3X6(AR902j)YjEEG`6*Obar)r
z>FFIA9UGs(e4CuY;uaQ{mREkPt`T;2f9?@~k@gRMmkS)ve-aDa{*z>XBNsRbG{=q~
zr#(*pyIeHK{C^jm`8eGL=@Trs^yzKASTA0Eaq^sM;@gT=27zk^c(zC0!;I{LGFTzP
z@1p%7+21Ev=szUczY6vjxuyX%P_h2cUR3ZT|7T|ae@&eM)zX+c1)QR#0hNiC8Gr#4
z%4JY>pECmgB_A*(f}{Y$al{4DQ-R}Td`<exChZcEJ0#MkI^jhS!vb^OoYm@%>+IPq
z>|Ey{+jl39k*S_@Nvm}hE3bYs^?fq2JB|6q!ZmXD!N_yii)Vi$MRUR0v$VJ(^R+3J
zx54=?jecL{GD8XrW(Mtw%pQEk-IXlemUtY!Jh9Bh_Bb3aq-p2L#do*&IpTxfhB1x`
zFq3Z`#ZiIBXehkfxDgZdU;#0iH4lp+8<x%8wQrsX(!kk-<+4rq^_y&&^lADPt@+o<
z`LnR5r#aeX57Cdx0Qc#sL;uAioNYr=*rnWqVmXd-emzI*-3vmzfnYEF)f1=v_7gpc
zA-<USIiqAT970F78~+(>-8E`7;^!uXO^EaOIb*1Uu8ZI5)*nTc`8vCKJn?X|k6s?x
znlhKza$AabdJLc8LQ8j(Cg%r?6S|fH3S)9Pml|>{V>;%q@qU7KH;KLMo|h&mj<)0Q
zX5TLfTrZ4l!{O_r{VqT99A6zRQ>_-(Dix6Ll|Bf99rr4b3_E4Q@d}P)4eJ;#jBJ18
zxqrgdBK%^QlW2<TP?;W+sGrk#;pMSHgY0~UHZ6U3iE9JOn%D#ulAJ{|elCW5qa1G7
zVc{`J1*&}^EY5NV{57`3zPnPJD%1Hco|ZNiM<2S@rigQcFO(0pUrXA}oErWV+;s=J
zXr-TO>odSTP?>wNM|yT{&AjVQ#>3qwC0u(?be`}FuQh}ps}*2~JZO=EM7Cjw#)TUd
zGGh0O`%F@>PzW@AVW-L1>WpJ(=hC+|-rPC*gm#m*M@5Ggo@IJdSi;#t6J&LsL5`VE
zr_X4%s5&9V>f`!^0%Y$h6$lNa0zEG&9Z;eZtjd&9oIrP<9y9j4`V9YHsy;9yDlngc
ztnzO~OhG6dj${cca01cxfC`*UAd4YL8fe@*g7u3d<Pn+*Fl-a+$T8eoF+_9?6?n9Y
zBpeZu0vmHbX7zHsmZ?B4QcsGv$pCLdxnN3G)4fauOsK$w-rmZgD}`C!U;bd52s=O?
zWl;eEGE(*cJ&vyNq5@mF?bCsXxkDR!wMm2;iRp8bSQmQT=Ab{73OFMisDN#-_EFu{
z)<bAH;z_V0<qqk)a5WKW+)f2}ro01TGdn(dS>uTLJY=Qm#y*~BJ|e8i2A}sCijOA6
z7?4WdlH7mkQ-N0{T~jML?`Gi|-Q4+|>66NuIGsmbu&aj}qlJgJO@?O*C&@)CW)8Uu
z2;~FFkpS6|@Uk=H0v5##?>l<bb47*UVRDOuj)L+mFx;rJl4J4AJr*vuuE2gL6}Qs!
z>MLQaIqcqT{0NaU;%je`Bhvn($qPRnN>X~YLmrH{>anrm7jm)fp(utj++Pv&&7#5G
zEiy;SG2yGUkzKzflWGv5kUJ(hRY%n@mI|<~AL+tULw}#$w1*r=uhENBRKO8+cwvqK
zy?1O#jPh7HhzcaHF6bTQAeqs79|s^mx1S>xU(KTq1?zpNfDuVxzZX=<L`2UIGB}2f
z{#4*Y;pZC4?9mA-u*6Q5q5_{VRKQx81KK{T0IKaM4te+vv96Q?J%iax+!vt~*x>aL
z`&SU(UQ+t$i7r%NTzdWkaBu+L6m{hPR(1A*&Bvm5y`jG}sKBpc(|x(a`&3}L8!>wi
z)bkL8MKA|!xd9a2kqU&cen-rsY<Ap2PEvu&1uW|5W{VJJaSoigdWCFMV6tEkvG;La
zZ9OE33hb!b!-yvHusuB_G#Z>7u*aw=$iiSa>Yr6D74ENtkqnXxETRH!#`8Ilo{7>8
znSKLY-$t$=;Zj1daJpTo^XSn#F=q+rCclwS_0S-%&6<A{;x0Jhl%a#3*|In(E<{Pg
ztdhvvT&$<f+Ap@{S&V4Mf;5Sd6IHrs&hGpwLPbiv+knU>eYT_fTcGA}oM=iRY{{Jq
zKOHCEO=Ect`!(xOgI0~hkj4Z}j5mC>)M=2X#;j;P2z_nqs+|@u`f7hc*JutVnw9Oy
zX-jrE%4(4b8ARei@7OkncO+kg;nNXM5N$U=4de)ur2?Cf4af$1(_^1qcE)uB`Is^_
z3R^hbm_<w>hMTr8E%fd+NfP?n=D1;XFdVm+#z7CIj0!j)+z@TT%#W#n0p%NIh|*65
z5-EDA!FKDgNi*=d=y_}eM{FOZ*Sy^fkS}}zF9~hQqg2@=Cec$i76<8v?v}B{Il}|=
z1Y*%9uJaJ)xK|1zG$UcvM{_Xo{Xk?m6{wKgR3iAdK9lQ!MIcX60ql7^A`(%JsMtf0
z?opu5Hm;POaa8pUHHy%|O7zcugSm}^f~-JSN~#@w)?&cWe%g+j3|hDwriG?azK+Wt
z4Xwu{z$)NbLI>%@TuVv`A=hrtW0Ut2L)JqoFnu+bw|i-?xz;AW4F{Vf_yr?th{ge8
zs%7%e_Bq0M5giRC97;V`q2)`j=REeF=n)IF!-;5<j`22=qXDUF?YIj)k?j+OhrL&p
z7gr)=gc$mITcpS=q#Qg?N3F_P5(<kX-3hu=?DTY2uyPb#8+4;QU`k?%QkXwIdxUC#
zR$E~Q%?Qq0yAqsh`Fd+~gYx7z@oTpP(Qo0-xH^E;n)ry6-d=k6yPZ;~35sEhqx20_
zBJDG=AK|BhgQUi*zSoI$4kj~X%)1;ug9l*qH;=N#w8|7eMhp<-7*@!933+K={IrKk
zd^QYvP_2lGk7g}TBrL}9_>#>loTbK`yC!Xz2*D5P?-rLm@23dC)|rTpKm+7@l#AYo
z2)aZC#+YuR_D2c3;M|FW5uXOBgO<Nt9yXjyLj{spL(v;a*uf*i`GgfQ3gaCrAe=|Y
zqO8tQJ|K@_4g-JkP=ORnJesm?a|F+}LO|dv;30a^h^;6pP`Y(LNXceGW3lic1JMeq
z=3*=8d?1H1(8&_e&~=9v(XOw7c9J^!|FKb`C$n%+bWmMXfM^w@O$CZL+O=TLrevh<
zIVw=4lZaTi?Y8~t^!u~84qCf9DCiD?Ug5V%;u!KY;%EYLv{Z92xY0xfvKFWSd=PXU
zG&?q0u>H5_tz{}O2S1FVFnpo{mmc69DQm)%G7mn}9gopuia~NG<ggOGH-nElz`Q{2
zxXN2n))5E84l7HJWVUsRu3;;bsMZA9lH%=-Mk=5Rng<m5b&D8yTUEJKU>*87Vz+z5
zhN9h6Na+!$r<7k?_{I9aP_7-1?!kSPTp7?XPZB_Vu{<?Tsh)@KUyv80^hol8?n&h&
z#Tz~U-e%_+j0?S$Lj~4~@e+tS^ey!M9W)adXzWn|OjKt#{#QI=$Cp${`GGtbSfX#Q
zIeHwTg(yxZv(AA5Ht{@oXSa?r(R=scqR&-Yz^n>J9s5(Y{#3317}Xm8Q?>q7t^XL+
zn)p}M>cRNUaI_srmf&E_YmFgcZ=5WGXG==g70bR~=XOXhFl+n8k&gM5F2&0}Q9Go*
z(=StA%zfdJy2?YyN&>MM^ajK5&<8d~_=t^?Jm-U_arRykD6&KX`)Z#4m|udJ2ocQ$
z*SH_`MCKEFVo;yuAnUE-nb~PYu4=wZ_P*|s`Xf6Y!@hfz^yU11(Sc13kLAFFvL`Lh
zbA5(8s1BPtsm%ynOtFWo)Rf@@TXmJzs3P3I>tOJegjz!nvl&Tu;dW){dA+{l?5m8B
zQ~~2-HAeF-z5A0C1SU8!D|>D#y{Bg1$p?YQ*wi47c(*rCQ-O#Q9GC;hr0ffj6A#}>
z1|XDM_UXy8m`xihprLfAhQO|o5~)DH5N{&o?$Pj>KM(kG9RAdYKj+1t_Tf)E`KLSh
z|I#f&PlwD=0lpUbpnD`aY#BWc)}<GXJ}aZ77nOM(<(dbd#zAA6O!F;WKEf@#o_e}G
zJ$U-5)W$-sNX;1$?8>&`CGqtsrp{9^R4ik-vh3WuvUAN_QIZLDg?mq3)pdGibq<>?
zgG~`OYhTEryY^tgyb>|zMg_XXUa!K8Ve=W!W^3}nQrrgR>x8V15}1UCd8{0TQnp41
zcF@=xJLI{lfn3M*WzD7Sf&T3}o=o&0tT6XM`ZAQj*n)oEx)7Xju)EPx7nT=Av>rXu
zBjyfH8zO~af(rX?{XIN$sn8+HF`O4CVh^=Oiv9^!eLprF#aW~@G$3jf0vd$)-K`y6
zH@|MW9?pW56*@k`8FVrEEWVmMzM<6RtZ?UpGxp)X44OYh+1s2XEwLNN<FG?_Su}3W
zyEAUQdH$7W7yX84nEEit49ESAw@RvYJUt?#M!~pk9#49fR6t68^?tQsB%eWEL6ybJ
zBehrBO^&nv2of*f^dN+_4{O5~Sw`1krg_=8%;ddMnq`)d5Ld6Jrig5yb$@<fUkVt6
zdch-XMpaJ23r;IpO~{a-xblW;YWBs}Q@2OzUIm?s6VveUjC?G@eZgCf?T*1+W5!^4
z@9YvjTsOp|+dd=YYH5&iuX9(q7=1*CQJic?wxy7cZkb5WEiIp<=%5b<$(jn9U+_vC
zF>l)fUR{1vaqb~0hC`Uq_`_&Sa-Vm~;sV1R1=({b*Ga)mr`-Tk^0`sVi5fkU0b=S|
zS8>rk6kn;FP&YR-v#;VoK5y-qN{pK8+f}Y7_rIR2kaKjw{6OCP`bnyf3gASK)M#F|
z272uAOdT0AX`J2+Mjl`{jtVOZ&xGg(?D*KE=bF@AQwi)Y)fHf-d<eE<wnhsRw}op<
z3{X;XM3|hEa(-WbFUoD-c-zB&4fQR(gCbaQ^ty#>Y7!n{RaFy1VTFlKVNAv(<`WPd
zP_{1=t1I72om(^lcwFKJzIKauV8E(Nl~7Mbh>F*;09(q^>(V=Vdp1+19S=QgO7xOn
z%0FdZDK<zclr&Sn61TX?SyUpJcmNHP-*Drn`Qkj%i7PftAQp;?;KWp!Tl`-4Oi5=(
zH)Xl^nN0gXA<<G8l}cP1kzi)Wq*t`|Ec~rvkmwNB9OWVDzGRl(Iji6o^|(IcyE?yy
z=kv`|8=sGTwLBF2aU-;KK1dkHEzf(2hhEG2!t%I~Hj`=^fA$9z9_;1D_;YVhHq^H<
zd%I?IN$b>b7Expu;+~C@s-$wBjl1f2Zn22^x#+%6F|p5*WfN(TJ-0Z6a;+WTmb4ky
zd!ZsuFh;jRUV7fbd7M={4rOfNS37lOT`|Q=?OX`+@QD1oILS~AUZ=OrXX%XZe*gf}
z{UzL%TA~TTuH#_5(yE}$qU8diOsmGl{+s4lu|be#Mz5c!u8~!tLQjL1fxAJnTkW*t
zPq~v0oFq>qQyb@Zs|#oNdh9qgSS_Su?b5JDcAUlU-z8OQnoF>iCUkmCyWSs@LOahz
zrJL4a($fvViO;qCea5QaOF2sg3OA71y_9K^NK}vF-m<G<GqN>e1go7Y(eNiKte;hA
z+p$jiZP-;RP{uzH&YyC5I0D8+IJeZJn{9V;SJxoBj4eR3XQp;=3BmSZtgL%-Ppd}Q
z<UP7_ztF%td+ABKWOUQ}?>X<1OrHrRRciFMJVEbH=pAmNNlOSdXfAXu9R%`s1Sy|w
zK28cIA?&s%vy+}BQvpWHR;%15Bx>a*^x+WAO(+%fuQ?{g2Qgo5Q=^NLij+Z2nznK0
z^rs~ht{!;AgoyK)2cb6OH1wHW_?huFvt8!g-P#pq%6b8A7hGMZoAqwJ?p|>|**~n#
zgbUt44<76(l;~OCsolm@k)h<PFu?WA=YN>kKsyO@9DJ#`vdKU|Vz*n-XJ%Rp*Q^yW
z>bX-nZCth^)g@v|Wp*~>Q*@#j4Xq*HO>KScJMg&aX^D@StWud(BHo=Xb0eFW!7Wi~
zZx^xRBV{Vko&&S9A>9OV2X;yap^hvB15s)R&|YVNC~0{WxRIJBmw|A`w-(S8eA`6_
z5Mf|}A0_rnsSfepRIVmxJ6H<8`pd?ra8h-m3cc(4Yuau<{OAqk)H<?it_u-qbAo)w
z|HRv3IL8CUXKPP?Jc=+LK|R^@i=#C)<E*mCF}*eBJ9B4~Yw3D|_e7U-thK9em({Qy
z`sd-^?%{y*ozD7}h`4c<bHII?n{>e6{}Gga2;w$9(nIKtpb;vt$4|IpXESeuvq`@G
zmVm~i`=OcQKhOc=h}nm*T-YG$Sc7ifPdy?nDGpBsKKBs3^|(lLZ6W6@sQ~F_3s|XV
z;E43i;X_e+z}>>Buvq_JPq*Q2Vf_vD?7hp-YSqWI{W^0U(0jSexN<RM_!!A9e0TOj
z8sy0HV1+1Y82@$R^ds1~M@f^_M_)0GQzeItvz-&EvWDNr7rhse!kd)S%ljrq^-1Qr
z_RsrLJvI<_d*2_N5-Zz4*W7sbuEgl&ht<QoJ|Fy-RuW_z-uY31I;n2Rt6T-rgEvn6
zX9!@SKv}zFihOHi&oV}Wdv~*+9qEA`WSi3Q9r>JOx$o=~?9ANpwX;z5#I?GmmZ)5A
zukDlY7uhSydTkk9chYe3*QEP?;Hs46#_bGwES0g}b(9qg4ML`KeXqREjQ*Jt;MBVr
z_`w<#W2ODuG8q=yx)e|j;fpHFu_dtPhnH+xIknTi9!=G_e3<<q-$j48*`X{r0KPrR
zM9e2$!~0{OHe*4cn-oqNwP+?R7ne<&nUN6YV-`Bs7ushzD#8)f(^EA`9F3!>i#yh<
z4mQGpT@^j7b;CzO<g*0Uj={56W7l8plwOh&Yr}`zq?&d;s<Qe-$7xsOXmu;5MC02d
zY35E%HAsBh81c9E-jwD-L1B?Lm-HMglGk(l6rLhQm-T3ExYKw*nzPZ@*;ZQidyyVp
z`f%+2>PV{4vlP+p#PL{+#8h;ORZ}<d%Ta*}H`y&2y9Vc>urQ>zq48-Tim&s*S$}mH
zO`IbO!0ZmsyY|?pdl2tTBELqT&WP~HXs8Vy9FA$-x`Kbl>nbS`Z_3~WIjGy?4tT1t
z;0W13ZElwZ+aEH@tj-;3LpB<OO>@UR`ug}im^vuZJ)}x=aqsl#q&{?Ya}(j*jad6V
zbWxy`<F<m<oJsLuKj##oW@{{Xn&@;?ML9`UAl;a!0yL!BUmcktHE)q;nI<3M$-kxo
zD5C`3x>8F{$I49S_s2%>*X{Z|3A1NWm!mW1*@5x3#H(EL8jQ-;=_D(J^$-F~+$$Yl
z6`Eepf7K;b<Vi71Gc|U?IUDAmAjpf(4va77>m_-l_WgFSb({bV_g3NRyBgG0el=c<
zVQ<d$vaPU1!lAltOsC;ej+_W=W+Fm%zD%s_Nye_mW)vY0i|L$;%A}7{rZ3n0uzEe@
z*vL=I;+2saH_5wxN{F+hcL%O^XYw6g1vYBNN|$!unY&H*f2#~g{1SDzGMvy(5yj6v
z-;Irl*;xy4w~tyl72+C^r^oZ6yRH0Ki*`Fn%Xr-CgaES^@3+`9qR7hP%O=)?xkh8c
zx&|aER?<sR+`U8k_#VR5PTS(gq#y~+-moC0IJlkHUcO#3vsP?QF(zNqsq22wgn@VL
z7($!ENEt>PD+^%@k{;S_5r;$XjaMf`%$^#lQR1_-t{Sng8uO(BXPj%(YpW2>H$I4`
z{kqb3?v+aa7tg!xrg&tuH3Xg?O@Ji$Jb}`9sVhl-B@IUV@SYHp>a9=+Q#N7Z$yun7
zx4I)$+*aKncE5!2V^cuGW7N6LzC#p~R|Jy*cH<?3C9L<yBhN`m;|P>Cb4<RfQOWS<
zp?s6<=BDC1T5JNB`z#+g%`_zRB}`#Da`_0tn+yv_j_r-a7}Sqn?QIT&#>0Nve5N{|
z&cX%SO-6Yv*SWSN+>gs$(eaQ<6$|j`6xUVD3!?(JC~=b}&Pi~o)&^^zw1u76K}J&C
zqsomz`pD0AAGc8Kjy0>Iq<hAS^3jrIjMXKE#FT|Wt$fAACSiK1l|dG1Gb?{?NBL6r
zOW{(dO%IhOA6=;_#$7gA?Ddpc*;pG%DIQFFFU;WGvojzm*>AT0?P{GWWauRsJ-BXD
zk35C=fFQH>QSLDjK>)1k#u4ak_OyRTsoMTPss6%Iqwpi#ZI~ax^N8(7`Lbd?_L;68
zvDR|<HRZ1lI#I7=vl1A-buc}SEZeBohM%{NI_32aYkcSFsL88fR?vY^K3R94n^}<}
z$o_IZfQpX)_V@dbzd4d-16j4w<>o^SBn{$!EeJ=rogb5xI<}s7-|Z^)>;1Jx<IS9j
z1k~zj#c)@{4?h&+^9zNh-WLpSnJlVF$Mia<1iZr_R{htPex-8B*9Z+!auHYpq5?%e
zkHCW&fg5R>!h+lY8De1c1iIZ<V&>o`eUoCcy)n0m5~G}b5-|7a(2*=;ZJK(x`3XI|
zo;9gUtW76XA8s~`ZrZxe%<cOfqAJMkAwvkRn!zd71z3kvZ0^PCmwIDOe&sp0eEa;b
zw&y#Wm^^J%dGTI+gRMM1_08&(d-ks<i9B_+uF0n^*@!%|<2TEnJ_v5y5AK$EzxW+#
z*tHh*?;>N;?y%w#HXjh=I$DIrIod)l)Z<ZMZYW8KpMg3Tm7LtS+|H*iMBGP@-SeJp
z9$$oK%!lKY#5@h;ZT&SG(vyrIPghm8q+!UPo*u^6k3?%{SU<2v`_+yf{D3#FbZ$pa
zh2L4}K=R!yn}CtD_Uf@PVw>1l#Ew46w`e7OS9=?Q*;}&_M5Mudb=B@;YWmIWj3;W`
z?wvSu;%(8a_33#w2qjTD?<wc=nVW)MN#+llrw_M}5D&tWECrj{(5Ur><h!>2Q=kEy
zQQ(ET07L{s$T0YPV9(t)#mP*B^#xeyrVPop?qdx;y%Wj{_nz&YonaS)OPn9xo4#B2
zHdMw88_jk*icSCA<@;}-s&EeqBLd7uIq`+*M~R1?A!F`|c6|{RB+SAb>-2d(X16At
zvNa-3I`(9TwHfad-Ywt=Bz=ZjBU-zlY(acQq&m=nZh}eICsgz-)5~@ZQ#_<2Fqo&^
zLa&4GnoZ5v&p>v3Zk=QfG{QH5<ws+9MnKWpkjp^|3p^LhUv!gZ7xc$VWlstWgFx_K
zczhH#gez)akqS%&QU-Vy^eClB7L2b7$R!GgCAP!jZE)$!LAyqG@6-Qq+~7JqfoOL}
zw2f1N7%;VF?4z)ylh4oX3Lx4XkLrGpjL4UudvYYhL%Bma3N!2gap*V=^0Y7;=vA(<
z;vP4tz`fcDDgawsPFdZZv$U9zYNi5x2NefgplJo)CE!`V@=<|>XH`Th@SUu4BjOho
zWUK=bAUS3nyzKHBDnMw~sH3dl_}dSuz;i@<IAU#$3hdG&NV9q1#e4`5+aoZBgJIiY
zdwz)hmuRwwJ~(a-q==6ckUa&(W041qXmaZuMXu<Ni>Q4=An*{9=it!;8_L6NFiaT>
zL~Mmz*npu)^kjKQN;!%OT=Ay@aceiwzhGyH&^a<Kh4&g2Fg2wDua&4k*B<}eAu=)$
zvQ44+TR{>$js`pa6ywjQ@uyP#IXC{aRKHvGKMXExfYLDV{NHZ&_$zYm-|wS-N`v(t
z(2rz+ex#9y3N(i|tRE$S%sj=*!RSN(J=ojm6~+Iw{t^hG@ZXm2e`5Omca`ujgtPw^
z5?+d)4H)=#KGR{f_VTP6@*OQ1EqVFa3h{bH+}xx^+O^oD@O7@AgUPW}Alv^9qxbY6
z&9pMB>df^%o-UuCp0M<len9Q7!b=+JUuaYR&kqnS;tqZ}udKyw=#EQSt#(i4MFYhT
zkY<_J6tF`sL3-$lD9u`?<4YM!piBlf#X*}a@ok15@vWA=hiP?L97XxIev{8YgI9}1
z=I-#bi=yum-W35Mw7dO)%5zRaw`fWt%We0fwerHX(vz@Aa>Y&F^1}IkcJehf2r;;I
zQQPTyH<Gv+wWD>g@5)LAYM%|!r><M`j`?czw=uYx*LDY-xpz<Rj@PfZ$<WX9$9$GP
zg$X^s@-O9BTIyd|M*puri4A2jY}!PDoZN+Eofr5;zA~TlD_>$4F5Eode}3^8^U0@D
zXX$IzPMHuijx)d4zx`GqUY0R3?~O4p4f!Bf^9=(yCiIbu($#Hp(gN>2E~`twPb!V$
zeL|W-U2GS-$ig)t!Whcj+g?m3KjITwEU)`sq(MkQHLH+2IaaFwvSF%)es+?JWWLOl
zPjvE9x>zbw)J4(+#H9?pbT+b69*?+hs_R&PwKofWE|AGteldw*LGw|nmL_jB7oXn!
zUbw)%AMcBs{K7cYsoIz;4Yj8Zo@~Do+;Vk>sN9a=61{ne3nF+dUb`sZru@M_b=blF
zx_tk4=QIC+uQ=8GXuniE)9LfoPo>hVUrZnN*T)|kbG{g=z1Av2^SL&^NLt*Zyj2(`
zzVn96#(VjIrn?!CJ5;9v6a)%}zl5MD+@vSQQ2{d8vVxeu2kv-3hirn5YM%mfmOp2J
z)#fDtIwc3@Ge-eb;02gt5PAVvwFebgIoPEF$H0b<g%kkc1OmK+dn=UVAh_Cn8K4ZK
zsQ_|)kj#Lj0`d20j`F}%6NW*OSYcFv_YLizckt&J{3Cjx;3skGu5Iwsy9)b-sol8p
zCB32e;3C?V;q6RHkHc>?qDpEayeIq^r=M>&JkaE$b>yYF$({1gSPczD<|lBU?&xaU
z1KoqEE`EO8&HRc)Uc2Qq1Et7?Q;YUKv9w8-X@A5h-4&O3SXKMrx9P5mH(Orgujk$U
zpM0uSadZ$?kfCupb{AmLyQv`j&5vS}bNYRjdymWXq~x|+bI81s$LXMJq=W^9ygGcs
z^B_lDRQ`Fv5GcN@rX;PW3-?6a{n(qet!e!e+LcB9LE#7-ga)54g29EzVs-iRb>tLQ
ztkhDLqRg#(?4*73MVj+Y7VGLviR$d+cG<M=6W!!Tdv~m+rL$YuUi1;*CHs`+xZ6qV
zm&Q!CrjWs87O*_?i0nWZpDD;E7+500tl4Ih^ju{oGP~oX=CMtmBrf&3#+<(Vm9_)J
zJ@eD_sji9PyV*C=bp($XWVLWxIi&s3M}A&I6v$@X8OY()5jD$3y}}#UB&bMT?HtOB
z`<g1;XCUL9Eo60FlF?|wEiBm>GF7kfW4AM)-@+_jFja-8&x1=hyHJ}g%Osp!?K$S6
z8_v}u%%S|i%sB5-{+`wceELR9)S+n5$sr2Mck;QHpP#v5Ueo|pE)_Og^%Jsg5A43R
z2sC3@d&e{)FT!LC@?9lLR(onk?`iX#i=Tw`W>2p|7x=w!_7L_GuUy;k1zy%v@!DFZ
zw0P6Br6lCFFCR0M$L}%qT&nJvmzME5+dY`Y`dXVUHk-ggDQkm!wAQO|6}MgK@!Y%m
zY*m|;5tA#%8l~08XUSP+vp)Q6q{ARp?v_O^pMD<aXu_gLw+Bh6yCZ?g+Ik&!T$WSi
z0?9dNIilU7Y$+{aLFf8K?Et15!&O6mBy21z@pZXx)_#<k?TGMi0SS~WxZL4w5+w3t
z{k@XT4LW!F!39o(66DfrD+lK`_(8OY;>g>Ga504*7vrLhk9$}4bI+t0eHiZ-xwWIV
z9~0XWpFw<JQZDvN`t0CU;*$JBX;~+%&l6=2vaDiK{>!c|FtbQcEDkFZc2Z*!3EUxX
z5^UO_(JgejmIzL=9HBe>aae|V4T{OtgnjGme9!4IqO+?P!&>rmzxY*=8Q$3U+>{k8
znw2cKz%8?mNAY_`oK<}nqu&dU5$&3YNop*#Jgvbdeur_cU%gq>_~FkK)+W8SDoGC9
zy<G2b*WVnu0%M$;tSw{m=pEgijB_rJ7SoUTE?w646V6lKOif9BX#Aqp<oMa(lk(>&
z&@|UAJ0Zb*_I!>HUe1L-CK3)d;BGP-qdM-nu_Xb{bVsE`f3X&x$SFC#u4h-X`O4!W
z)Vq7v-rF5}oshGq#NgYvp2gJ=7{D0bbvzN7DROf|Ft+4HT9>Eptv8H+)W)HI)k^*!
z8Ze#l=!EV-A}DA9DljZ}j;0mF>;FAS@ZVJO{}xE555OY!>HDdGO%mcq)-z!BUn4@Y
z^AF$+M2F=6kZXHS*eZp=kw!pXD#}sd<HL8r$raa+@~6XrJw@OULt!X=fp(QTQ9%XL
zLih=v5{mI%Z=ujv5tw~8iu6ISUiy#mPHjqvW3~X~Q{)vx3|P{nl!gq?Goqt1v?*3+
z+(CcOXAJ`r)VD_x7!o7m%|FXXzq<t1j33_%8Oo(k{zT>;8l@bO=DNXhW{nP_4pwF0
zkJpI7j;M&PfFbW^l16AU6&Q6boJE`s7Q&Dnxs*TQ3r-{E6<VHx9aURYz-vFi=0^Z|
zBfzmk8$j6>U!1QGRQST#bFYu)Mhx4vP(3C6n_sLh(`Wnvw<G?cI`KacSN#`1V^6%e
zDhzUSq4XDrLEV_vL(2VVVB<3FHjH$sxx<q(5yBWZz`cHx(A*?&I3g8RBlZrq-Ctb>
z;;+AC$&Nqw^AyqQx#HPu3lRhL>NTcQEI9EKd@wSXb>{v7w2DM4-`(-GK<e3RaUAn*
zQeVj!6&P{u*&}~P<b&<dz~Im0myhM<6@7DN=V&Z133M)4&2%gMH5L9A;l-Ap8kbtC
zccXu1W^9}HI&lJ@*C#X5*v;!Su)*f@z>N2d+_f(3)$er-QQga&WSvv|^t3PE8nVW8
zJtD{oXh6c-ZGUw6x#Gmevz_(xv{;J`-shcEH*n@MMQNN?FBfLD$b~{wv)4^g7Vm#Q
zAlquqxWvFsHAnuAg08oVbhKM_`CxhreaJVky_cdw8tj}sfw#^NI8lY|%b2_Sz?!a7
zkL$<NVwMN46h3vIYtya1BT?d#BXb6pkjgbZmx_MBGsvUUxL?C|oi=p!hT-z<F;~eF
zRwXL!!|@I~y@MQ*=LV!%ip5p5b9<$I^Q>#R3_QDRT}=9x;tmFm$!83taTiGKwm=Am
zVe**k{a1qunN2vG=ro(8Cf*d4PSfk$G3uIUt<I4*@;1mbRy$i1D6aNCPqgCgo*P0A
z`5rkKL1v4GFCM*B<~VlUdTxFzVmV<eBgk=~))=<=gl6ziyrlp=jhZY`_r$BkxN2Ik
zH5m-B!L~)ML|Q)>*vu>^NBfiVgz^(`koQfa3$gE*;GX5D`}(r34?Jmpf~p;{{7!B`
z{gkIXl?N%8w*~P(x1P0nxr!d$dk0yPeglF0Q2_eSs%8Bb&m&*Fb_9MY^CePLyIQ4V
zM*9*>goYd(2Kc4W>>)PfaPrDhho)rqv2s4U==F}e5Wc?Jap$H7Z(RA=YVP5gZp>C4
z>nbb_1A5Mz?mCXrUM%adQ6FT#a_)l2So>p6tG%L<UKzNZQZFf)6?VCsDb*xpPRqq@
zBP4yEsKVtR6(nr!c6q#e{IknO_U^qiViND0rc0tjqbaUtlp<G(cfwC!@&p*O#luaB
zuf~E{vD=(MLWE0&^e@Q_Pg^b$5aDELVhM!x(%S;7vaO5-nqX(SDOoqM_GQ7$2cpMc
zRA=D0$rWq*st!Yl7L`!tJM-c6F;xTX1i1@+>s~M}Tl+-MuHX)sX_x0uym=VI!(D#%
zGzhE4H~WUPryqJ##e1vQy07IKm`f<kyBHZ&AwM_4`{1}1{TKc6cF@Rh(_~{a@+eLE
zp_alcSL||$ZI!V__ECZG=}<3&G;ZdXZ3D0eDPGbsxwN~MAfi{Ju?ao2bG8OZ^m)#%
zm)-`|5_2!s;y(wPhn!!VNR~--wH9#uIOTM}pXGc`F+A^49DCGhvRvlOXr~){hJ79)
z2%j+A{n_JPmwi`@j6*|8-iy}WTHy<*4&~RGLCk45XHmbarBOb{oeq;-Fjj+ddfK>b
z`>gR+<F+ME_(0Pxue&Shga=N8pHv*)BQM4fZh$gZO;h0tUhTWlF_N6(1wXo=&G7QA
z7Bk8^*8UW)E65xvl#s_3VG$rV>oIatpv|UADohSqxlRRGW!LY5gi5Ki*`i6wPzWh-
z;7;z~&FT!Js;ljOr8BoP!{0;-eEc|y=$(7tJ>nYG@|&`z2QfSS`PC;n8tuGNo5s`C
z#R#{R+@40W(rq>^9l?CV)2X&=dbBUHzZ2@ewjWfrOP%r_gm_O=ws|@@r}WJWocmU#
ziXR3f<?x;sc|Wu7f?K;|TAnV!Eu(@)Ez|DN?t>;i^ff&Gv_J6!fi3ooAPCCqwY8kZ
zFP4@y+}<ugGJkm<8#jzR8@Z_eOGv|{y#!oSA*kg!7n>FG2R3m*v<+Of!5p3(eQnA`
zf5|;Xdi`Rd(v1LzN)@=~bS6t|9$fw!39?F?5Pq#A){j#LBtu;Nj-t7ggHdWf3em1v
z*xNFfa1$K;m8?%Xfv!pD7|`n)U~Ny2)>WRAI2)MgckVSgPZ<A8h6d~Vdt3wktKRYd
z&M}!e$sf)?a?qO4e`?+P`JRa4$vOTn_+n*VE_!9`%^UpBWql=F@8g&2@<<VPv!`7e
z&y*CdTiAc$x_%Iz?$5TDGVhhl_LW&PcDIh#G$-3$p7-!_zqj&0!o=0@E0W#z3SlQU
zO6GldWv%!nW1dY<-7hoXsLh_y&E}VEq2+qjZR@x}kQdiEWzAnePQ{PgTEuSV@4Kj8
zohwv3I3Vd0IPQ>Y@C&VI=AR5~)pP7WOrCw{DCaBn;8QL$)XI1vuxX)Q$Tpktl;(3o
zb;_~NCp`8M1mPDx9;Zm#(e)6;S9z~J2fSkX>`m@_#$RJ%IJ}3xn#X|}-&JlY;JDH*
z=YS_=y1k!{MU3fkg9~ox{I+CHq$`a0iubJ$6`2|SfRPk9Emv3Fh7&M_7>nf_q$Igx
zZUE139Y1!mmHxL|YbUo(qM~#PGTmghGG|oQ-Aqy610Can<c^Rb%t3+#;n*hgdB_Rp
z7APjjCy?0hur+BO)^zV;fJ`&H@YiROak3j8#X9+`>vW~*BU{ojfe)_F_U-8^6RJAq
zSg-Q4VasK4rR_>RBpAb<RUuPkl5W}E#@`BGFV_fgj`derm}z!P<-cCYw`4uVCuuBa
z!y1o@-oF<SDsLC=wO{U-WG^3d=9+xjrk9@xD)f3x8kB*3iT4tVpJ9jI>07GVC0bjO
zXWQE$8{_->dk)a3CXGCjT6^PmH2GElKk_Zy<L;Pjzx9FPj>YQKgVMV6WajbcTTH39
z(h`a9j(z<w+j1+>AzMFpkt~;F>li<9ZDWu&#U8GR;1`Cz#yMj>s}0BR=+>Bt=vr@F
z{J!MWS(R|58|&S4=GxV6<G54&v`jW!(Pa|FL+zuf7FDZ(sw~bDkAIrF3G6eF3K#mQ
zKs1y^*^2-%IL(KN4bm%FpL29LO;idz?6I#H9gjG1L$PmzD9wwUu`Do8_&WFV5IcC{
zAz5i&^6Y%j@jOFF+xHu(i?g%RO9wMS{Omc(4vPA#hI}!`gj5q`6G}|z9jtFwV4%c{
z9g*!=Ga7dfBi(5iz=N(Vv?$G24-K|cO%UST-fDH(^m&1*RyG_^xoCa7y5ghZu8xvb
zJ)i2$aGAlXrmq^bm#z(RK7?HQr|{%I38wk?h9~@9`Q(Qr(=yVEG08EHd>ijxNT9#{
z+{$J4Oa<Xgh7XR1lj3njui%dNuZxzRwAMF2j7|#v*8KhcdwjZ8Pi=X5qo0Zz9gd!M
z*-9sV{wq2L9>~)f;3j0r*Z%FvG@a%3woy#h)cjjxjN$uK!nrYf!_!<Nsc?fh3wP^;
zdk1)Ma9~P^`C@A+0_-K?F_gm^ZfG^u1PlB?N^Y~D+ao6XOT=w7suUJOH+kqj)j4fl
z2tANDncaMpc)ByM-}Qo%a0ZWJS&@>z4QB5E`GpGT%$^^p_x}MFYjNJ<gIp;%ugR`k
zsgJzO7<b!nj_C{1=uNm8PDFmZP>+q#CC*RR)6Yq_jH|(**nkye9*63a(4G8Oj*?`e
znheX=LeAF@HF@CBXPiwfYQAGIPc!+Vo&B#XIyKe@ND9_g22MwAETn0$*A|G~eQJ5@
zxKq)m)`08rkT<Baj#g^(myQ(#WGq~>Xs}^f$xu1bqSAcN_!*Z2yFB+dD{hpDVTq``
z^COpb2*ZF@9K=x-DZy=og^WaxQM&&QN|@3h6BYQP;&DI*Q_|bhL-d;elC?t@^uS$r
zl8-T^d)#g7bt0_;)0?Y49wIyg^nzWjmuMSe&-|qM$ynJ~l6OMmesAwB6B8~IgR3Xc
zhn|!dNX!KMfRNOX&#+oq)aRK;h;SJ5_TvPsf3zR7zg<bs^4FG=1h&u73{sDczxQEh
z%<ZCN?W1@$IJ`PPbVc#3m3fhwevTiA<CJZBe~`jHzrJfkV2!u}GwHJT-52SL*%3XH
z?_?{|v(vfK@Z^JWuBB*FOc%D$RH9g9fa}TS5RgHHjIJiZ*i`rjKlCaqy~Yr$y$qI<
zdI+P{LMGa?2>p(t&PPV3TcTa^DJk}mDd@NB+Mg^BEnU}nvI3{YzFcUmYO2mu%Cao6
zjGQo&bSuB$5DgcOnz-u_m8l?L@B65f2@%1WeO;J767{mnb{#7Xw;1>QRw{WZ<;SBd
z-=bMl701MeN;t>!EaL9==2#dDaE)f$b9HLULbqIuohJ%)Yq)<a(JH-Ql4@ZXr{(87
z7M&t$m~9!0m9M$1E77IzTrhgC!i-(u%6;=l<NM|rku*2C1d~4l-kS4gbY!wKV-4M^
zle9ML-f4=}P7e#V9KL)y{v)ldB?1c}pHm_Zjw%Q94Sq(3ahLj2SZkW&$icW02JJ~w
zJQdKZXPJikXw=8W`afew2AuPM7N5rj_j{l^J0Zr!qgR#YrhW9=!I|K5K4(r9M-UP^
zvTNazLLFF9jnH}@E=>)##D^7Qe2V)-XY~*Yk9@bS=pfUJ&tvz?(jU6wT<p$Q)EDW0
zMsUMda9vQvINj6OQY}>4=!abY4E@v}3+qFfsmdo<yneYn{9zngV%=o*HVVb4pC_!E
zQW!~&NB#UxdBpv-sC27U|6J9zvuwud=C88>;CPZQu!wuE5<=iFIjZ>Z{ej3Ox(@a?
zi;re6KIP@Vl^F9?!|noK5iR2%%b5LVA-4Y>TS?PLTIf80wQtkG(cQBbTvLaXnX!no
zaI}@HyvjJd5f)yZ)$C~Ks_oW8j7hY&R|q}5y4+WJqwkYUR;5R!$JQYlR!@*mkGx7@
z#SWauWlv7T8@HQZa_!*C{`j-G_JaNXbz0`v3lA9O5^736etTA)D(Q5nIVES>u%Cov
zfw_82b#?0!gu_}`)<PghIZfJjY#?Q?wAv#M?30m;rd)6~6&n3YNQjqlQZ~mS8J%|D
zr8ME^Ui$LMSswrXZI<+A1CA6M%N?$UIt$JX`mK5(cM+T#vC7W~)2Ck!Tva*N<q5{#
z0R!B*Vj}HJ6oJRQ*K!H&$Lg*w<IV{6IXg}+tEG=eFLpd8-$;A7E8K5+I%)tTSggG~
z$MoY_7n%@bg>SCg=)_;dwDDiQO|r#L{8A-l;ZXFe6=YQslU$^10-FxL8&{h(4<X&f
z5_Yv09=P+M&T1E~GT?a7G^FR2E(di)w;#C@PcedSmE$GyTkl46RO)JL*SDeZiw)Mc
znWV6c#grg+d`kjk<$eO4r@OG&!o6P+cu(9Qlc>XFcz_DiLN*5@;)wySSTAz-vT6T^
zhj=DgRNMZCyw?s=bWsKe==M2&m@~LEP@n0LOu`foHn#)^eHn6*U>Z(l#?D1z_+fbZ
zNXmJ*hb2KbpFcHkHFL314Gt&Y8l5mb<@fvITM9UtD($R(ts5qm0fK2`g-kwT-FE^@
z=IW4TsPST_kj)g*+Xd5C3gO1-q^j1}8*}Yn=Wg`WJ6^^eG?}(FpxGbq=LW<UzUaf7
zzsEzwg3MnT3nGcpUv`3K<>96s3j*;uA_H&)ULQRjgZs7d76%EZ@R3}xdQ4W+B((Z?
zP01W9ys_PIT;dW^rzO7g=M71W?s&D=>HZWSi@7xp4wmoiG5R0lIp1{*ESdM77ECMg
z-<L2hTh2X#NUa9{d=0MKbj-&c(km}_u}4fFcj^-umid%|4S2C#*fry}N4DW<=Amz2
zbw6ZN{N`ko7u`8tqS!RliM7=_TVt-b`{@?wCclP^vMc7~%tbb_;*k%AZ@;m2CO(sj
z^3~2Nx^=YpG_#H@IF<4=oyTXXUot0<TTaSNG&C-=Oa*kY)+KvCVM$lfQ$h=pJX{eS
z4rJNS8Mzi8q)KhC?7RD<O`vpOAu`f))137~C9XS0xg4w~o9)$|y^#+?zC)|!UZ9=P
zB;ng&LQ7^Got}OWq>4AmDF0!)$u+JljT2MaJP3~}dX4rMXiI1Rbv@mS4on$!8>^dd
z#|$_<YD_XL^qX;>2AS(m5I4cr7jrC<TP4yDjtLhsN#!P+x5JeO#X5Q+JW0!>Ak*to
z;+;D}487SdBW0>hEQQf+rtLU8&OnWmc$*5$rgULQFBGq<oe(WI%h^Z>>p=5@eM6_5
z4o<hc$-L)pQBY=E@cn)IRF;KJO=?baT2`P^4_nyx%HH3m#WhzlaQBfyVpEj8BuZ1_
z4q5}n<(W$teAboFA}mza!B&WKa7|j;e;{t<c@`DljrBCn6W6_N7G&6t{ei{9Gb>ZB
zjISuP<#2YXjE_aE>uod>4t0(ST9`;SIAYeD8Tdoj%C!l(gVQtLpS^T$%#A9ZarUoJ
zE7G9*FlV7DR9|1+aJ_a!hV^3qaYM0pn+!f(#JV(a;j0Cb1#C8ifm9qyK(=QmC*aK=
z1f@D8cVjEeO)fS`d$%rle|LLw=2DKbm56@)rB^E&)A!3ZF6$b7xMP&hn3yfFLj^WK
zelQ(7ey|%k1?z$WWh(qGE&LH0Dx&;cgeOyDaw}FUkOsIcbn^zA%(UIRm}z*q)RR*d
z@%c4&mX^OIYn4}UH;s7J)J+_<*pL%`got1@M%IN0+Fkq?@FkEovyFl@>)p;|$8jHS
zcshvbm+Z}m+hDxE&HresTR->Klr?OzYr)Ehjj{JyX13m>A%#&4J2>@n!8Dd~_8VDo
zT=`PtrSvk_TrSL(-xpc6a_3C;61xJc@{)q?g2^0~1K+Xp&2`~CGbVI*a;Gd4WG^Op
zvl%TexIPW00!qOYi-;F!?NVeHnwgaF{7RER+?O=V7hippvt-LM48g*Y^L*vkr#y7#
zb|1Z3ZD%c`N_ZcL>xlXi<fmLj%ecl3!xY9bM_?y{M?VKqg&+(rP<l!azk8oBLj_{R
zxBU9=%wueaY)6z~&LNEfN#l#7vTDUH>DS7J!$)q}y0KV_WNsf_P=4p9z-`jJ_iS2k
z{a|eSKqFYxdoFLwt1Uyqnx&JVE*9yzSEc;8*ui(FF(AZH?cB$BUtYY~T)AC|v2l(f
z%Rw2ZdZ?cm<v<zj1HaapDVGog#p?0Fy`9~aZ!GAYcCr>9D$He&C`76g_|siWoqcrN
zF0)Mc38gMV1X*4P>UPP|q=q@=jJP@^+gv+vjkvb)DH<Ml5f}6>U#mfnd2!M@ICZ>4
z%U5)~uPTV`R6CtPKG&45i{9zTe36mNmBLF{F`0q1jE%5=v+MAG105ZEenYJ_MA+Eu
zr<>}{`ZhBwC9jtwBkJ<gFFPBQDq-FyJG4IYzXe0#;D|#7%Crq9+R^qzOu>Wp1!%;&
zLXrn9Jjr}^WcYFLZe4_|kyIddGGBaq>1LgUnx0^~sp5_Pb}q4f5HWoR3u{qmoUDa0
znTFL*88wIy!qv25z2q}gMP*Ea({+vT8JnWcs{A7*?aN+yy1D$}&Jk~+4k3k~b0rCS
z$GmN??Ac~6MhA`d5O%VQM|5UAXreSHKI`gkr!khZ4d~|Ilhtgo+f(nRFrx4*9w)U+
z=SZ&IL=~|}aRfg6PT?vh9BiORULWnSnPNY%b54{u%3R(N<GX!A;!J|dchmiz*rP0p
zi~;UhfC&?9zSQQ7k#{krX1v?(V|3WbUa?7>H>~*4HM-YEF)78i_{z?QJP8t3BdObv
z9|tf^Nyao&@dr=PO8FV;!<3$QD8zUm&xTFhzc!o?i`&RI_>gB)dL^l1zv57xGKc1%
zC{NFk?Cy!+7qBzSBuD(j3xAoZf+{C(<pdV^Z{2Qwh~v@b4x>*bs+&b|*LSwvq%s8)
z(Jjg+57^)~^W#ArXP1@90p0S}7S%rFbtc_3%hX3EEz{?}7~fNe(p$6W`&N*q_S5Xt
zz5K4gOS!XGkuSVf;<EL-Qr7Lixm&%wSOV9h2`v$M<mHR}_EmaIX3g|f>KOi~2-b5n
zW~ofKD%K%L$mZM1!mXS9HVb;JCE}Uak>{T*No_ILe_nUyIknY;n~$r9HV7^o--k&3
z6MytSjh*)IiaO_QYCOo9E1SY#F_&q9gHnQKHX58yC)w{qQ%PV+_mV~z>`*r30%Bb#
z3z>~(Y&lO#o=3GcLy6Y-^7k?@wjf(Prd^67h>pOYFWG;sb@mjgVSaDCMFJjeIbF;?
zB16)_=?HgG&W~;g)oXf41!>P8Npe26Y%58zj5T7dN{WdIK9}C~%TiVtW0IP%s6vNp
zT4;|y(bvTKrNUKWFz8lK{WTc=lU(Q6Vk`dF8LwZEQUw3<o;2J0B2{IE?0NZg*)|Yt
zio2&PtbpA(t>|r*-bdVyZQ%$KZX!YQ$ozO{99ayjy&X~ejK2_{)lt}?cn>qnPS}2#
z?E*Rrov*m{{^t6|@evb(VXZx;)Gzqy?2kHP_EL3qfRUlrROc))c+(GY<Jlf89}bqd
zc$l#vHrQWGUi_MgkKlTcG&?v%KA`+qxv&5(mp`*}v0=%j1%qU^sI}#4+R;&1er*-v
ztX?OFaoG(LAtdAcx;ORn;FcXeX4-kq=&JHEeCT%f6pN-{nhCgSY)p$hN&B;Z3x6nq
zXXBu(@C8|{5Z*%RrOa$epv0Se-daa7q#AptG+^xcO~9^|C0F<D$62c_pT1FS2~2S=
zBy9TQjLv)FI~&kf-~zXh3SPrB_4i8=?Id&u|D{D<iO61OQ`7wTx9tl25LhR+!Z+U_
zUf^`czO|61LO~F?*ePA*aLrHBTf9xj)#({1(+r%+Y`E0@<L0Bxy@W`|=5e>y<;&&o
zNB8)+4H!&wIlE@opB%CwqEynzx#-N*U&!A=M(%x*N#G{=Wa*~*Cz)V_+9lgft7o|t
z3OKHpM0Fc9H;7<zSvk^m3dYt(Ln~ckvx6ZEn9aaLc6c4}EbLU%#m0LrR~zwi;l8j_
z<QoyK{!gD3z9gGI6u&+79y3^QCvTEZ)D_gOJy$-90KYpKNphduw0s>!T1P8q`?POJ
zVBQ^~`SkZ%MBr55r`KRh%wXsaWaA)P%_iL2s!9ke8l(`}zEF?2(N=o3IKDV4mys)k
zZC><#$3$^Ly91kxov}%AAM@VSZ^*Wm<9OmHTab`GM%u=SeG`tjNq}_Eg+HBQ?Q4GY
zsbOeSD8ZtkR(;?4{4XMVf)~H>N_FNj|EbDyXPBe#aF68@dbu%pWfyYF9+duv8!p@<
zD&Hj6I166fn&RD{m!aDHr1BN^^+X=W`#1T~ZP+CfIfIgjV$Bv8me|1JQg;yVpHG~q
zV<+zPpUF5hy0J-4EVi$yPF6+gYAy@BibJ6`Hr03`ia5cw`D=()n}s9j9@xDUd>cQ$
zeneAjoTud{GEeq~XB%PJ7gS$WHom?)UNrIB%MRSfpXYMp^Ig1V?;e3<`_P9WL$Kpy
z=;6gFCu=Fv+j$hDs|o{wBhEuvEgzoT!R;PXWNB{WVyZZkvsspU)ZaXj@9JeIwUs~m
zu5nlLU2eacRmadoN+BE5^<<rGk5wcFshYsnB!>mj@sIn~h_3H)i4MwgSp<Foxz8&K
zwM-J7L+y_$YO2IlF2zGROmc$k8NXQ|KjpIISi9g$!v9Bm*B#eXwylH6pol~TMG(m-
zB1*M@sFbLTARxt&BFzYj5D+2)5~Um!>CFKVMIkBz(p9>Y2%#uQZ&E`-?}<PNkc79@
z(Q)RE@6Mff_4?l9FMbK<oSd`HUTd%Nt#1X59DKo`f*V8I7y$dkbV)`(lWi6(jVNVm
z6dS1e#bz{aDtw;#OH7z;Sq=BgQXz>=3MNYh{ZS<VL=n=P_8@gP{0>u`D&Wmy|1RTB
zzZzKFc+-+oQCT`#ykL2bM!jeF{$IiZBV;jFXYYXg*3viB^6Q0bSZ(_o+%#J<CYBbt
z-gi4du{nti?w1lTZZ8S7y?ll`6zMhHe%Ll%Q;eoH_FQT7Nl8n<+Bm8rRitWbjGT*I
zGrk$u;^;Z(Skek-V~RNPml?&uy@$vbQYA=l$h-Y(Uy!T^*1UeAZ+@+m?64+Yg>xTM
zg;!%uiC!$HuO5X_onm}G!UQOx8_>XcvV2*MPgd6ws)uLKY7)w)#yqtP>v$}yS+;T`
zXpO{Vu5e{fc=JjwaK_>lIVZ=vi+tK9y*P|7{Lb2D^edzI@!0sJv0+zY273@zCxD?&
z5*L!f^|>8ndKF(N?!O&~<5$~JM0$$NuUQ)q>xJ!*9X7WiuM^ZwGKdmSchWa@NP4x0
zgdl=oR+FXWNIM7UdO0YdiB6yBV;hH93K0+>AF9s)Y#?DG-2;HA77k5^R>0j8k$PWF
zFY-(l0}^xiT^1hH;_CKHvDJU%h2W$&d;kWq4SFD`C0PL*<C3@JW}8a7*iLpFDuCTw
z!#$Yq*1G0#%^We@n!Pc3B6)h*b(-N$(=vx!epkhH(7ZlDIY^1b>`a)+`&~ETlDk!W
ziB&<af7{M`vdL@~3aa<=gI>-aGb(t@Ug>tQ$Irf5Q)`R5oqem3bbD{koy)6NExo-u
zclMd3dB`+sS1o7sr<?m$0Ofya|1M{!P)^>Zio6isOLs}`IBAR)R-!<D`TU8U=&?1Z
zc68zPI*gOTNC1EI_WPPI?J%*St#RHbZds~q(Y_M1H8pZPa=r#f?h-1Z`fyR@m-Wkm
zDL$<2B*uWx&L&FebqBrkmq2(?xl`_ZeG=Er7~gmm-hFl98qPl^Zp$q`roD@CfgU!$
zv&&6@QWaEFf?v|^X4Is}cF8;eyMpH1ER~7z?GnhPu&&x}y&KQiPVb|n8?ZWXFCcg-
zL%Cc<XBC#G+>k=_!Fc1yBVKjW8zg-4igg`~Q_n^<b|qy#ims?}&ejT<Y!7r>SAum3
zCD}SeaM$&`c3Iw1+_TrDG{4vz8SvJ4)<FLdR#9dN{q76;%$+9EN#3-Z_|ek4l)?>&
zu)e+FUSzH$=~5D4k#g^m@y9=L&mNs2q5N4Z>7w%rugDXAh8M7EMbUgMitOEY3=dNq
zm+W;OWEe5SV$96cAJ8|&3I-=BhpjB>+LUg$wS{0YK2q}h$Ee)nz5U06y8Mi+8BNgv
zkeah=tV{w~c;B3KJq0JylPXMUFWzUxu=I^SNXQkoD(;Zm+n2ASr5cUqo*CZfe0j2R
zuZ{k?-3UWA?UbYKa7hlKC<}=JBa1W>lG>;vGVmM&j_`DoCnK*Rc&1XURH*VH47=3K
z32%n;yee@>c}phsktRTo={)x=j$TT+Mvts+n<U5!i)NwLVj;Ecr}a(+>^e`3j*{bD
zt;yLKD+L$-iyHH&@Ra=5IU5FN41KqqZ`|u5R;?&U65=_1%SzF(<W5XUZ-)+<B_UI7
z?ZCHAgkUO#J!87_hU5TTZFQJ_wKYMx;=<gCqd%+=FE)=k)-*3hD{jW0$-}d^GxjqR
z89Jn(4Tq_xt1gk|?KJv_WmcP@&`AIQSA3AvTt9|!*4jUyEq_vt7WzW+5&s%=3uKf1
zJSQVUJ;%7Ab&l9%JduXMAD`nN;<$rdiSo9l_yk{S){L;s9Zj^@mAJR9iFEf^Nq37F
zElZao>#)8<^qffAXkku*yRl6M<#vdjYNn|YYG9@(WOM;GzZ7do8VF!$QhaF7S`<+|
zTKks`P|~iYW&BXUYK_)x#|Gb(o6frW(Dz8zEi})={$;0D%|1IQvnpFQTtV3=Yffw(
zexu=Z{S2}K#jCh|PO{fcv_zl=hNa%2a;`StekfIqfK5&yLm4(Tyc&p~6Z~RsS|;Mg
zt@h=giPer0)roeBryw*vigC-_)aFe+N|1tuu;Ie(&nf*u_Ziw0T3YwY%jD8&1t~ED
zTfOFK_f2E@^9FY{Z#iiu1=!l&?$5|;v25f!V!2Aki9DcvtRVEV64P*`1u{gm76vM^
z-NVjKp{a=C<clt-ZI#ao<tiL`_^ND3mO+G5JI4ceOM0Nhm76^iu11|GD=?N#D#l)(
zjXG*P;HWn+_jF#_qwM5ry4L*8VMMxB@I(qrbTE2bPRm68X~kxE?3=ERks6zeXoKQm
z^7sq1`f2m6QEoCEQ^w(sn>M+s=jWVildbm=X`Y`VX2-iLX655^8Dew$dxbc=vm}bD
z#Y*aXB(wJ?MUt`JDMuxr>;=<qn)Oi9KlrB^7xEA9B$$g{FO^hlHV?f2v@wb+cvb9d
zJm{3CZ#H-!<0suq5i6Hip|f1)!kK58R2?t-)M@6PCL;1|<cMbD*r+r5l#18$b#q5@
z_I6_6GDiD(<}`KW()z4M;zM0#pdhR#?HoD&o`qO3Yb)ve>`LQmtc^gI+Q~xnwFleH
zjwPTtf@8eOt8bcxTWZ1*+q+`5$I6FMt#H=z+qh>FWkW1UQ-;2>Y<dGj>9KW}P(6uK
zSDPACoo%}|EB;dQ%eJh9)&6ap9M%S<-076iSz9t$+PmSB4PUOPhwV@tu4QDdoCcg8
zW$&F7&630p7n5M9Sy7pHTWMdbGFP+~^Nv~b>&NvmK_zE-u?#z9jUD<AykmUq8lBAz
zQck$aSQ_BQ9DqBLO0g=R5FAGG77Eb|WxR!VQ8|k8sAqA`F?-TTm{r3vEWAnZ3X@8S
zf(<9~FkQnJifHXh8a?tDw4JM5XJ_kv#i~~d@(r=`gQ;mP(BU+BWC-qH*G8(L-%dB%
zVgbfp3Ey<%)I!(mX%YDz>US;r7)Q%w-&Lmq^LC^%8Fm_)t5pOHXWkO(OKMgd<0}my
z%1>t4))RnxX#sY`>~N;Fcl=7+)imJ>sTJ0fk;VPcs&d7-tkK&sIhon%Z7&pY()}T)
z7GP2Co$!(!02X7o8+%Tol%8@WSgNP{X$FO{)AyF3fF=Htq?FB_67i<;c#k9c4>Wli
zGU9SgA|~Kh6%mgZiWD_ZH@5p5!X98Z6c-9pJp3_d`T2d+Db>HA9}dNhpZ~=#RV(VI
zvRlzAb?Jd+x$S1ljYR7t+{@>D2tvp!Bxym?_}Yqs^a{F_NCg&>!bbY1ZtC83?gxZ)
z5z`_uP+x;+NH|W*<g<uZMsG`MQ_|nv@jr51V7g0dO?B*kyw!%b>pK~$BJxwu;LC#p
z)Hz*FO}ieQRqa>e#-#b2_;(!M#4uA#fHytb;xr&|9~4?CPn`2lzie>C74(`~y`4Xc
zJUUOi&&97SOI`UwT)Mtf=a}8nW4Iz>)eU!p13KEfBVqmVInn(pQm^YfG&;{js)pAz
z-2+L~sr$>UKMi1mf1eO<*nuCf?Sd~AzJ6J_zylWr!y0(b?{b4t@FkiP0m2BnR(F*I
zc!f1GzEZNc>&C{_x7w*3ZK&KRq1J@i#lcF6Jz+F#NIH=J92XgVB;G?GlysYGsN)`|
z!|5_41NG83(Fzq<xX*b-!vMGG-8So&sp=(Vbsjwl=OQ*<U|igUrzLx^ukb0e7%hBy
zGOeI$JX39`e1JHXG!LVnrV$zy#mH(@T0CW<Oqj2sul8Y+MeReXLD=I#UbCvl?!hA}
z?xzX$<*pca2gR)CURh7q_@;_^4_8kx1;!ks<n~03Hs3{ooM|mfcTSDD_5$jWu*9Zn
z(b5xLtI6B}%a2QX?-wvroMa2ANVE{QV5OlXZ<*h04BmQcYl=~AY2E8nH^rOcP2eY|
zELF%_ysTx=LzCewM{Ec!xJk}#%{~_!L5~1RR?C6L@ds^hf*TAAfJ*vFojXH(8u)B5
zd-#~qQjOQCx$}U^0&$DhQaORVyNlQwd#k?OJkd&c$LXiD=fvDj@=A643mEJvP&TwS
zpX4@NJ0QCweW1@i_GmWWz2hP2+Q;r8PqTO!LUf3Nc(Grefbo7VJ{T=fcRf^G(Hj`+
zpBtsQGHFkfQOF7Bl?JTChPk<6Hi?f6n(IuA+S^SI=UY5X4v!e<2Yqs>z6&rFHzmr9
zm!dSuG|w|fUMkomw6EgAF-Pa8CtjP`Dr%eGwy>NaQ{N<%YGhtA+Ex}NxFg0p_K=s1
zZk+q$k3RT+*ER4@Gr3<->;E74_%HU$|NnqBfBEr$o7D4tpe<Lr9BIrCe)=#lJ&!|Q
zIQI6H9~>H4Zn_*gV^Rt%XcSKohre$?y%hzzLun}bTFwvMp_<wNkTfsD;PU*?JsKMi
z)i5Ji9H5l?uDP_n0YAV3$hIZ-KQy1B(ZtCGm?daW)rH=7r)Esdg6JOPP97uQx33zz
z0KIL6y7dt6+grcokDI8e^C{Xt6X6EfAp_wDH*csq*0M}%*&lz})qejv|3X6Hj~zqr
z4GG(4vvj_XmoHS~|4Pv5z#8_GsyqrITOB>eZooYb(8SpWGXC@l-hC<TMLMJ%wQb9d
z>`=C7!mBIYu4ls9L)|N3PK{qU=WkoeZ$xzPmlGiCpHE+(^Sa^RvHjM*`cr|2Cb&X3
z>6UZxZ0V2}a?9EK@;;9YYxUS^mK(@7S+p;}LTcH-ygb^|1(-54yVDM6#vq`jy6y_{
z<Txbbb{0^LDHs?zmkib5SVv7D>KqJ75^hEgfDY}gQg}KOhM<JlA|^qSJZv42;c*2{
zSIZ2U1&Z`40K-Ba;ADujl{0`I^_FHYz!3M@zv-`UjPo>C#+|Xq;SvpXx&81)JNp)E
zz9$u7zB3!+5qo|(Z_RG=*@)KP>C%Lv%mVDkS^UUb9VRd4z(&!J^-}0Y{MZHxJ6UZs
zmzqu%dl3>K$T8!SkEVbDTDQF1ImYsD5E6|{Oe-P{eWxx(87Qd{SeqNX3ZFh0z7;#>
zymJ3|7nxtYcN?eQm$q;O#Cn0JXd~NrSzL%7xFFrCJI*&Cp3X^7Po)QxwlxOCVT~(j
zBYF)POc_E*iWvuZeb+tpuK~WW<4@~Lyoc=+R2#>Om)YI9{r#2L7Ogq#-)PMP+zgp_
z@m83SHACqP2l{e~NssKDqzopeii#p(t`=_AeANC*L~D!SxoDZ%%!nu6>PE5Hv7<-o
zcPlI@iG)#!bQgIBZwo6>g$DXGN>0&50aKk6Q0j3ET`Y~c-e(lxwtR~ynt&0`7^r>+
zk)nf|+X;Wu046tkc1HjPxePWEDigurouRD&B*UXs^M`HQ;G^pEn+GGu{U{RT{<Mc9
z#%iPO6pU6=Mv#dX9U`x&QqZfP-hkvdc**?n(98{ji=``CQGQSM&cljp%Ed)e)W{+9
zi2kF60+1I=jT#O(`5=-EbIpVgivAPUb^#Wi+4>668`8-e5{;^nDFi$E9}md5pf)Qq
z^V7aQ#@qQ`*R;`Gibyx)i$vpETMo7qu5{bpJSBzcNh?+oF|Kold^}b+W<;UX8w-EL
zdej`NpVrzxc_g|TV3-;u`y=aV730fOQd44YEhmSHIiYWgRLWdLt{4(7RlU$3QXu2!
z9N{=G2cUtDU;-jESb{vQ!%&4^Lote51m65hqJ%+&Tzq#le#!#zG@d2GStP?Uw|>VH
z_zzcpXSaF!K{4nus2KQql;P-sh^6>hFJNIeR)JgzD0#)KVg@0p>y?*7lPeA&G#JWs
zG-ZG!<DHT(KuIHkQ#}Oe%GKypNyc`{eDQOBPenPjgG2flZ@cwLp(hPaIa_g+I{S~L
z9P52^x6*FIfp5k~@|SnJ|FCoL>xRKTfNL9JX{pe_z{K=Rbf6iD?IoGI^d8nW)|p?C
z1H~yWLYodCR6Jhd-#UZC;LLmSMHr@$vS0$PNQP4RRvaM&l_FlVhLf(3e;$^7f7yyf
z7vpmW=WDnazxMXKP0pJ^uO53e5NQ~sAT(`)y_NW3mE3tp(!q@vq3fsiTnAhum{xw4
zHlAh<7M3?%3Lx{u2>QF}qAUTA!zw)?^q5&(r~dh<qK~Z#fM<a1|9Xu7ZFKXuN!#B?
zwDgHV!b5KXR&)$+iwc0!#e6*03_;7}6yQ7~(CRb>TKNIlHVUE9f{`78|3Dz=N;=K2
zyjb~j-Hgp~dcu~R+`NYIGyY0Sr?cM%R!@f;Rczlj<T}#URWJ^5Gxsnq_YgVW1}}L*
zhXRZH1S0s!Il*xf`%)sh9Tio1R}eDZ%078xDvkCk>tnpBxI+#HbBe?JmYM5qzpy{p
zst3tXVyA&<;UNG--)`t$0Gpe_FriJ41!hvuf`Ekg>C|1Ybpd#3B*urxT*mol$1BC^
z3@|n$s0s*m{M<g=Y#bdxL~8+QZY|Otnv+J(1}Vb<_e5dL`|ED{R#!!&BPg1<wiYsR
zOrAsxFh-R!wFxE0L;`psj+%ISWV>2@hD4Prp-h+lc*Dj+ghS67oZQ>avDRLa8n=_3
zM~jB&T8}F>a4BIlE`-_`x3$gS<82Xx5w&6EsY=wCZ9N@u-}SGhF?Y^;OZbSJJ4WvF
z;FK(}pyVIcQPf%KU)+Z^U5BdjO!y`D=M<IYhmL!1FHTd4i}Oe_h@aW<rEufdHM4QR
z3q)xMd8UUtcsq83?2kTx^gcyJ@aT7x%5rePs9ZGw7?qPSYnnb-moVft6e*$?;>zqe
z?*(&TIlmc%e=V%nNZNTK2Y&ht-6jrNiYLgteC+110ONyp&nKqx=4|_P<##iDzqh2*
zZ<@pf6`da)k8Yq@;WaNsR<sTDa72~1m6dgENE$3$UuA`n%y|=Lb~v7>x%8aMky{bm
z_kHiBDM276!+7}2+RkfIru%#-R%-?IMZIH8N`#b*ho$P{QM^1{2|ls=+Hc88951$r
z*N}?eOB&9IynYXYCEZ(qi68n9nZk)g`li09dSj0U{t3*kR?`j!B0W3L`i)7I^J)H)
zp)@IS#0Fv86PYUntb)|7>&H89vx%=8d;scgW5h-PMZur-7S2D<+HDc5@#uV064u=(
z)~qy9UxM_YEORH{1BD9}v4Yrq$>GvHB%#Aw>yHOSOqe+#hIPO1<?@}jc5=WRm8B?#
zo^I}skUk6-k_<P!<zOgw9Q6~`-ZK^(a>Vtv$})R|R<jgFG7@_|SS0+u%=(LMs{MSC
zI;vrBFN2Y(9oXENm6VCKr$oaYlvP5h!iM5EQY5pLD=7QQmgpx;iaT3+zTRfBV?0)F
z-!?s`*_f&=k^K=eHzC4yk4oH>9S(-4R5KI+r?`E@7AO?yqyzNYcWrkBQ=kT*lBg#s
zAq%kmDl7p_nkg`}=ja@O6WxUb5KX(CKEzB&G6xoffvS$hc!puV$O5eT1~}wrW(0Du
zU6~CcMbQD?>2>Fa$*get)sxGix_gwg1=!k&Wx(n_LXvLcEo<iX)LcQ)tvoh@ujJL<
z--!zAN5gBVDJw;Z1z4$TF_JL^r(4RjI<kV&yZKoHL?4JzRrfxwTlFWmtYb)txR$@6
zd*dcWWVg<8tW}XQx8th|kz&^~HcAj851GE^(>fn%A7X2DCcQ%B;FcuVr6tnji;v?%
zjkiREHoRpOPL4kl-azVF`$A2e6zC&LdYvjKX1vc{CA|BB+frM-K7H|W&WKt9sY%0s
z_3_6ElbW}-XIBc_N8TCxWDS0G&HnI*tqY4{9h`((dU11GyRPil_(0(J$&a5Mpn>7)
zVY<wC{Aia42(*W@s8V{$dqG<@^3DfGO^uRdR=!M^vzGWwh7kpg5*A=qD=8)mFasU$
zL@SCWV;95UryN05n?ycOBq?0`EN{jBJvQ%sA<_D`%2nUSm-|Lcsed`R{U>Yg3j+RP
zCi~k6@w0(rUz4%)|F#f6n-sGs#J`(1`8%^f{ugn)eH(TDZsXfOY`|YIhQIDM|6!Z>
zjY1o4yNlH(?Q3oX)gKl=`gng~lan}p%<jewg<r0|;$s^)ntVMeNrL@aGS`g{WSZfy
zJ)b!dp9N!|+?LNHw14s?TSaoOxWsPWD~T)CxWfdtun<wO%hFy}QsKVp-mRkH{b!Vp
zUwFuYp=FgV-{@D=D+p`-rs3r`iWh!gh5s6#zHSu$jmp_yLomO;=GPU|H*yt!|43is
z)7KT#H*yBQhG2ew&95t_Z{+U%{*k`Mr>`rfzvIvigNckt8i}qm4;uQ4N5BYRFl5;G
z@(e=~q8lRKK$NR!<qb{Bl>h?+F~o3fP#d0dgPvX7rG^7z-?VWw#54E2s<#;BIvPqE
zo?&Ug<Cc{b(V1D0r)q{Ljn6vA%JJ9|P0oe2G5dr8Ub)$nm;nAT5UnaKzlpJx0GAO@
zfLN~15l<tqOu*65ceb!iDRxE;P%3jWkeoDKkZX0FSAj^|DIfzA-6>pV)-wZcC)_71
z1npi2PPhs>R*RT7k%Q5!S|VM;O&-il$X5G!IrFiYHk1=IdkP{@AWQh17(PRuwFU=%
zcy_FA)UpfdhMzs*YE6siM6gaE{_)0~Tm@W0h%zh#;l<lpl-A<fTGYfpSgu6_v1m>g
zH=o6=`hUL%A#6x(V6EVt-|ePN7o`S}vOK#{!C8?LB{E*ns(kpv&S91SWvQT6Y6`h#
zxy>9;ltZG96&0zQ@1yPgmL-6(%y?3e8{BG%m6Ep9^XjmErLIt}8vS+<Gzb8m!Jkw3
z*QH1uH&IIjgLWB(le3wrVYmM#H0N(*-Tu3}$`}48obbp^@tW(A_$GV%n8-6m90dvf
zNYN8#wxmfOp9ouO&-Iv(f#0)RZJKGvbm^$7d4_@(VAi0;BEJdv(GCy5sIKND&@HhJ
z$M8H*@F-6P52g|OFeHNDERReSV_61(69}@mX+E0=eaE+<;+$IGxsK=qaRunG4&GP#
zhGzspK7u=c7RhgHqFhX`wB79a=BCNsO73a4M%)B<{}o!u`+L087g-(V@Q_$}`n<|b
zE^0;03R#(%ExPI=Th>}`8FO|B3#?;8CXm^TtoHB-XazYu>rUG>xc;9M%KxN{^Y@B;
ze<O|fg*X2vxAf^qVP*_H`$(fC*)^cuL?ZSl6JO~#P4{PBv#+%zHow{+te3Qgjc_U`
z146Y-F~*(-1elnm>CksESo5yW@$JtM%paW680*_WqW}l`B6J?IAB3g^>hYA*07qOt
zxI#01-gDkXWdU}-I(z}<xj_f?2pF5;IuO4*bxHjwtDDsc7R=!8Sg5-UKq^CO*F{*(
zaMH$o7GMXXB*5H`Jvh*AkdcSXL1sH4=eUPZ^qpYI^-OWZwlWE*5<xy2v&^6!UQ2I8
zWWALa_7h4SbzhPomUUTI=-DW%rzBrL`Ebf`jkEo-Z2$FRr_OR1AL&60y{x!o_Ew`$
zulssy4tpu0Wtu4?n<eM}ESmvuM&XE%%ia6;|B$%+3z0PZ0sai?-8Ax6A25x)I~z<R
zU->Ji)LM8jk{r?xIqMg@eEwcIK_?DCN0II`K;(L$h8K|DtOIE4%E<ONmH8gC(A)I8
zBYGf;gl4xvgoE_mtgF#tK((Ym*FuEs$Dj^j9M4DxSR56WAiM}S#Z5)B*w7FoH|E!C
zJeg}k_Tg9>2uiI7H+Uyjejs>Vp$VeSs^0?9W)RUzf_9PPv-xzO%1dYIc~pg-h%&gJ
zGMEuTaMj@fT%&h-AR+X+=d?6(fZ5sR%F<|&M(4q?X$e<2=kP_{P6BO`?`hjG|BVDw
zHHXclq&V?9_3=>SOYX#o4o8hgrgzhuvhgk~&ROO_C`5STp$ye_Qal%6oGef*@BiU;
z!6R4X2lJx9*)zagNnD1cKmdbu${LOqu9;YXjRWi>PZ1q7ny9!G!x@NoDBRn?`lzLU
zus;8I%`3EDMp<BjVLyU0iU`3?$-DgsAah_EI&$_ZFiwlVw<yowt-;0h@_u_?)W1dh
z^4=yd>cgTwd}+VEGXlZz-8dw_$9h19g`|p=DsQD@0Lah>&#Sn)C+K9$!6wErF#pI1
zt5b6MVu5JkT@2LC+*M(lTliwLze38P>UC0n(jumr+a*e4^R#RSW>_d}&(GrOt%D6j
z;L$8$uzKcz7wPRuv0}0->MX#n7^4<o(zbU$dPnj9KJUmmnui`s0%6^-<B+j_^izxj
z#$5XT#AB1z!^^!T0!+^8+u9u(dL5^k<DU?u`!H8}nf|3Hd5(+Cw7TrsG9<3kvdU>h
zHO9d|6pb=*$<{%Q9Iv<Ced@g%37~sVBx)7U|LZ>GUvNAB)*&;f)=8F{k`AjhfXLiG
zm>C3Jh5S5@4grR`)ganifDIi}CZrzEe-92og8AZ4qAup8s&l>06<ON-OX$9$X@Q>j
zy=e!i#Azma)}3JeKSUP%`%YIP(%ew=WI2OZFDXs+Jwk46aW^jLSnLVpb_~U~pJ<`;
z(<6GT@5z+QP&|_6h!e_1zddFPE7N29T@)L(!LSZP%J&x#vs2T&X|nsEV_a8WrG2eN
zz3SHaeKJ-G+cw#!^oNMqxisW=N7|;3q_H><<&^o8hc71R-8>VWN_7`>H7UsQux*^g
z)3v6MCV0jV0IEG5pB~{n1I?%)?BF{<)rhDvod?``42!7t;U5QRwUhAAPMC7t=Yj$_
zTqpSA35!x%TpEk|uxK?FP33PJ%A!8}tNH*&=C$T&$nV#V?GfRov=2W*KR=ceSUlO*
zrcvd3!B_K#YnrkC%N}t%ipIVe<ZBUiIs3phGbvlGJvD2x!Oqz##?vq$;q1+fpt;z*
zsY0B{(DMO>_Z}EKAe<X56m{D{A(k-Lqc8VjIGPed&BRV*a>-=m`K?uvbuBa+i+dB`
zVzq5&wSRKT$`XT_)oATU33=tIBhSbBMjC2PR0=k3I;r@q(`}bY>8#V3)5PpvmMb9h
z?uPs3FUM{U11ts-`v|Yl=W+H~xmf)QPX`;jv;NDEz;61F_o*J4<YBXaV;DH`D9lVc
zWu|SS;g`!}RlQ9`)nW994edr^lcvG#E)Z>^4eTT;(=xMk(7uKb1MNco4Zr5l?u2~8
zoB*_pM=U4=tV7Pcg;+b)GD56o7GN_wXuBp5V01__k_2zW50J}QEZ~@zZTpyL`z@u&
z*fbZxU;vI8;w!*#St?wwgd;A%ItU-rlHk=Le+CRR0f_lo<N|Dc%*Q<5r^F`3XBag}
zJ-q;fK-RN|&-Dlmf)-$o@YB-N`Mw2M1%b7S2}YAkLKD3UFos3Q$1LGTNDNerNPuce
zLzoO482@o>Or({$0As#Z3d}2?0BKf<KT6?KLU2(Cpvbc*ghe5I$j2|PgvFJxxDpn3
z2jD0y3gJH@glE=@yontePh!iW1*+N5_J>%acA&AlC!RX=502Sf1Sw)PiPrzL#mz3c
z&2&hs&$RU6V2VrO>;;`L2y)<vX)8W*O!A^betpdTa%Y>0)Q;($d$f0GGdsic>rGoO
zPebl)A$HsxZQ({@8)r|uyPF)#emK>S;wv0ZPtR-^lS-DfBV{~Gzb0X;X@YIuCN<W5
zIC#Ce-;!j9a>2yS+t~C@Imwl^+hr%&kIg_K12fSN)whH`Gv1PQB>jl_JAN9rh1UN9
D%yRg%

literal 0
HcmV?d00001

diff --git a/oxAuth/Server/src/main/webapp/img/sg.png b/oxAuth/Server/src/main/webapp/img/sg.png
new file mode 100644
index 0000000000000000000000000000000000000000..022e6a21732b4a4ce85fb4521e54b3209e58fcd1
GIT binary patch
literal 33658
zcmXtgbyS;Aur`uHaEIa!#UZ!{DDK4_inqAC7I!J`PH~6g?(S{@iWe&mUw-$y_m7<S
zoa|<0-kI5%XP!-jijp)MG7&Ni3=EpA%;zsKFt8*4eSiqiZ^rVyPM{B1=P%OYFx68e
z$1pHp7}?Ka>K?FX*@#&rO?ShVH4jrF#O|ii?XVJm2EkSca7d)$mxGwPpYlJ*05K_C
z#NlB3L;>vCF!}d(3iggxJUa-iE5;6j&pvnWzQdd5_L^$~?ekkcB5SLjb268&>VDKQ
zMY4QepWq_FhQP+gMi-;HuY-(Ph>`L%*qwYeG_mha7prb|-4{yY4P)cu?_UfIUKI=@
zbnU3By2ex4-uaKn0O`uVZ^p*P4mC71CinfT4tVgGpu-UXu&rMf<gvnq;o_%&GL~!s
z9|QG1@YYTuaV-56J%aE17TDnyN|QVJXwi>0p2D(@Yw*Lto46yJCnzh-s6Dg){kYW{
z4-apiiHWHc$0GmO@FxSDqZAkkG}TtqTq>E@-0bEazHbz-?79~4=qaMArq<x?*W%WN
zBD^hKuWD&Mr6uYRhIzonzb|sO)^uuW3(0Uc^9rWI`~XO%D2$K#7JLK*M<RK}899=j
zc|tw|uN3|)Rjsdx?@M(%-BupyYg*}FJkMUqo2?fd*|g*uGQl~5dv4_L5N8&Kv?(Yq
zaiYXyZT|?Le29$K#<}v@mDIoBtM%vJ_+Z!eUtclkQd#*)RRvE^PNZgo1pw~2F>M{x
zw<p@bN1t;Iv-2xVOW_NzP_~-ysd!$8zK7NWI$BmjCC?G=!b$q(kzf+c8OkL-h|>?7
zADGJlz~Q~-L1zA%H9NAHN2ig!R6|8S%Bszb%uI5s7}j%Znq1kMoKyR?4gEgfFdL4e
zK_|QCZeTV(&h%G{8rF-s;&F9IP7>koSh`JL8B6Y49UYS65zhcc|Cf4xy90yc*;T*-
zdn9-PQza-`H&$wb%=#fSBcr*nj$B@X?ec8yA2t$i@Yd?5sYyey*t82@Q3KPJ#=h<-
zW?v@CtZ)C_y<w5+8DCG8yRYx-*h(Gf-5meI!G*l{4md^KMiwb_Knc^$-^$YK97-S{
zM+7+%%kmG(?1k@d5Skb%q7cRn1XJY!2uExpYQAt~EmpE@qzrizsI2__Zr$T7kfuJD
z8Y+wn`I%%QiHtgAj+xqFPda<33H$zG$3v8l^_og&E`Ibgo5L0lzsO#0-yNrri_m1o
zq*mL%4)^S=oHs3i(|_-SppnZ)6*F&_L@v04DdAEazD+pBss#@FDKyj<c*TW}8Mbx8
z0av-Wk?P}1VbBO!b?WPwc(kTe@Jdyi5782p%v%Af;|jvY7-6wff+bcye0||QDx@54
zTJLw*eB(XhM5{opc#|6Cu>2G02k%M6`E|Y|*k23otk07mbdhw)-LLO1*v8^7Mdx_j
z{8nX7Bp3^GhRh5Ly!eTe8XUKWPSn>A3R55t3T=tNB;PUI&0ezQD#|VHmhgQA2ZZJ4
zUQyhNcUdP*Co!;L)SpfVcf4mO+Y5Q+QpKad$;G$j6`Kf)!8qyv9J13CNocx5H$O_#
z`WWhsC!Q5<BP-%~EL<!Z;PX!W_;xC;M%&$OMLquflNm))?NT``0NYH!WufL1kR8b~
zduV7Vu0A4bD89M&K%!4X9^(oRc!g#r-_WMj55R!6n78}9b*Y?l5$$&BnYUZj;VdFG
z7J=w!jT;H3hnkmQZ$3dWIABP1OH^rBXd^MFlG2Cl9v6o@XODTD={Ec$94HaIbwOhm
zu?~CVb!bXOjU-)<Ywja*e<B<S7J!a0pI_)FDG`A5(bS5ByvT%PEoH<~Uo-;eOR~v)
zXaQ|C79u+AnAit-#b)RpHdP$5Ns>FVCsAX^C_4}|0QKU~m(7&MrNV)k$H8nmV#{@z
zfDaD8iAo3^B2)sH1p~*1{S?kt2~d`%jR$ElA>^PRs`io;me84<Llx{*0Jwo)s9<!)
zuoHYK$6sZZUv=1Y?tgcQ82<!G?<J*RoB3P|u*qAenIR@m@?qprCL)2>=EqTFJ4aCf
zpQ5f|Pdgn!y+_~2Alsjko?_Qf9JtXX!B`{cuta%w3I%*fyfOD7EPD^#X{DZ?qD5g;
zdB9I_3DRKi_=M@b4b&eWpHVoRQY*DizqdYn=d5Y%mK$`L<^OLtN$B3{buu$eZc(ML
zVvk%d5-%CYQjC^@tGbsKtGX-ymPv<W<(+9oJPE;61M3KX{gwv)K}-^c169tB^x1kv
zzXy?smOAor;PB5maIv2*++ZMu;fXE^5&=~%ywxz?CIzR=TSH#_1JGEOVnSWNNp=B0
zi5*7ik6adB*GN<Ub&!zgf967e-mPau!GuWiDT@T+Isr9afs`-|Tc1fEiWlJZx$TU2
z6ml1&lG`drqcIu3MWWXYRic8UMf3NJ!dI^!^YyRaeVe`7<0W5|2T(!Wyn8?u3`WWk
z+AO^=t<A%0@Tc_^VVTEw>Kc3q3boe&AW)xZBn^zM$mu!UiqKz1V7wW~1<<*}UyqNE
zTQwZiG-Q*+A#9Svav<@Fj4CG(o-=_}9Xnbe3;4tq^hs2aK=ZXA5X_2Z&cz&?jweKj
zVHq)W9=~781%qfQ5z7ULX>Cu7ZV(YnKC6U$Y!Js$cDA1|YhEDTfQ|0)0pxE<ZW5&&
zligwP!mS0Py1x}K=EyOlyyQ}<)HK4b3sFiw$_<G+EY~MX(C?YSXM{!o;Kco+>$CbF
z_4V&<q6@kfur371DA*3VyHckS8skG$gHUxs4+>ZTk3>IxD-`a59M~5%@q64a@04mD
zcUpjgNSM1ka^e1l+RNpan$fwb%Q9X9v1I?F%FHuMB;Aie3}T^_sn-h$`HLSm)`r~#
ze|i%7`4@gQ8hpRB*;TIw4xqt~)cIqpx{VL{oy-vY5X?lJ3~NBDF$s!;TKeCcPxffX
zVqIX#_jExx#(Gq=O#p}Cl>esQB3eB3^s)u2_#=RmyAQ4bZ<g}OIG+Cg*ry@%4Dq}F
zoxmH9shZv?E|rtZ>-3mqO$11UV;2<fR^FB%-t)<ma;Pqo0>QCN63Ist@snJ?T|Bhk
zRF=P8t>tV%1XCy&(P5#!igKh#T)hZ%|Mj{zXFzp`XsEQT^#(aY`BDS07Y#$hV1(0#
z>JFwODf=EL9`9|AT>94gpW?TA7G^L&!wWE0JmFrM8`|f#Vns>dwJ^{rdeZ2iR~o!5
zh9DZJE&;VR;72&j?e*3wie6s_5dW}ChYj{G1uUp(!$KRwKfv8mF&(Ss^i^IxUT>;9
z+TuX!4d}2@vKC~Z&Hp)oG^!b?WWBL4n6Joz8CB3tMF#wjokAZfP5=+&pRZ)kJ7e-W
zt#oDo*9gFZEr}<eXpgeCz2rFj>)%arQZ4{pZU7Y~BEThG8pbJo>#Op}mDCg>eMSFS
zE1gJH1A6XKdKUBY`~QwUC=E{a#3kQvWB^C&?b5Z4s@f%*Xo{#6qr}WpmF4_TFI+@e
z+L67T3=YkanxOoJDE{uC20txy(bal6jQ?FcHg%pvB`tz}qUmYN;vd2-v`5<v%12LT
zDZ|wKC40^vYWDvL;UnCH*h((X9>K!<V{3Oq*!4ts`bQ7vWD5B#Nz_s@+5B#@)Z@a+
z+-u1IU(fdkod}Hu2vmGMmH>)jCM#+P6IB%=KqpF&EU}})pyX(eIuD@Z6RoF~SF5G=
z$A0IlehE!EkoODL6r@8)O&hA#xPexbU_Hv*m5jl*Ia?haoz+PnmmT#rghx;unIu%V
z>PKMYZ&Ax*ZN7c;3hyR1ld%(N&>U8U&6&Vd>coSUq$mK6C<*zLux_@{h~{Ol#JPRd
z{Y(jr){%>soI<ACI}^j+ckBew+~Hml4_}#;<ra>?BzrNzsY-#pVxxH`hlbv)&-BB$
z6S%p#<4TYU4L?xjHE5#%X50irI<mz52!GrIO)4Sb{-hUX$WPUBu{>NFP-8-bT?<4A
z{el7MV2)XwD-jYWcE+<+l+18A(SU(^1ZEha^(tI#&oBq_qjMXRHApTy))5Tdo=+lW
z7IgAR@C2rDnJcN`q>zjtNFe(d^Z4^2^N3~3VJS+fUmH|v>4Fy4mpc)5?66x!D&wnO
zDruMbD&*sBOGGllP=Qk{0cT=ej!d5Mrx1(agWMoYWX<<~=8ENiyQdx(sEESD2@HIL
zDF!F_m~Y6%;zGRkL?iBF!aniihc|9j13#0%u7wvj;(<22ob=XB8q;_zKjC;A9>MzB
zo5J87hCm&HVQq2e=<kPIxHoQhyZ+}P;<=%`|F3K`lrXYyG2>O%5*Bn3g0CSo2k?^^
zbNfOyNnwVN80b&8X4378;{ELYIp&zkxKblOt>gRumjVP(8A}E<?~__f0RI-TV4f=n
z8T@7~q4#8aZ(r*x7ZL>AlA5{knUhAElbQlwgsMw725^ixKipv>-;*D7kKBgi!$E48
z|6FJp8ExmThP_(nJtZu^CfwVL?i)pH3wF>yq13xH;5Z|Mxhzqg-)R$T$*(mqGBH^u
z47u}57xDgpgS{4ng*6PXKPpvA1N|j4xi=g5ru5t4#8MiJG#9J5C4%Z0y>l3BUHN;4
z;!WPN{1DCD*sds_a6~XiHA{N#Z!|;*`Cx4tzCk0|n_k>_-O+C1UyjRe+OY?gV|JKG
z_6ew7z)U>3q1DLE{89I9zbj9{Z%k)t^%(0bfMWDj_1*1yX-zFzsC2oF;i!$0XOVYN
zP=j&1apnhJU;rh!kTWkoe^-BD4VM1%$|MusvFrtmY?ro`&n*$Jc+LGyL>PiI$GtCO
z?0Z!#S((27psT!y<B4#wbO2UG%xH}?17byq?5n0%f^_MX78?rO@16y?=*ayjm>5Mo
z2q!FHu3B`QfKm#-{=(5h#`FgDP1D{+A4$2*-}$X2)O0et16w=tTp7GmPf+_0R0Txn
zhu`zgeIf2ITkOx`ZLn&}m#p4H1^%JQMujPNf58l(_}6z*5Kmpy5Y+Uo#ygPFQSpu{
z2f}A%*1nGp2qxf5rGGwtH>Lvfr;W3pG-qA%SckvhKvS7?ER~>%=!DR4LO8BZolz#B
zE7mZV*j=IisE6YNVR<2CZ>&_xSZ>cFfh7tpRT!*1g+&gmzbc`Z(+B>;&$e&V;%;Iv
z8t5T%Pv{`r)grkRY*-l^z$LlpQPv_8kccup`$c%S`{2Dr_ULl0#=7Vb#D8c|{k^j>
zq;YKa&UkMFpEvoGvWO$Cp)!K$5BMm1O{O)^<Mwcls%M~zn~-(;Cx{{wRY=BDTSXVG
zASnae%;g&7mNEmAEQWqM591Q%vvtVaj_c_(GeQFP;f<Fviim#~x0!Fv8S{UfP&rL^
zIe159o2Tmv!ni#fWIx8F+d@6eF2yXtJd&Y$L$Xt>uHqzL$IcyB`3t<5y+p^)A|?{k
zh6)As`_!PiJ<&gaguk9sN+-kpeuon=uCvvId#UPs50h1Rdq%67+s>E0oFk16zu{nm
z>u=_Kozb~}yB8f<2HNnKH|sS1VZZ%kRlXK1<?`)@4tXnx$n{!@na4}Rd5fO6o6=-7
z#Bk1amJ5zQHN(qCU?hZt=+I(tm(C<@MhYc1rD4q8`2B2PrDxD#wGw}%fO;Z~Z(ho>
zm;t!UrH()Ezl%rqH^|}!C2xLrAxO9BVO0GXT0u@<zNtStx#K1D=!*DA+rI$C4+15i
zhckn`RWuIQ*eU3CA;x;1{EOq=t30+y@q;|s!e7HH@SH&Gd%dmE65?ai4_Vs!$xO>j
zss<%}cp|Jk5nCA%-LTG4ren#j(Dv*O?|{?dp>Xvw;6nh^!w~;b-wR}JekC}nlKd>0
zJq8F9z7tlkmZL>GMksP&zQDW&<JTSeu%BMr5Unyfcd6R{B@2w`KHp__lDZUi$bQv4
zUAu2lOPO-FsL?)Swytze;aPMxoIRo0CBxIGsxB#zcQ$n%cW;`!BcHC;d-**-2O4Bx
z%I&KjQp>8U*5B()Br2qeCxfMx`I|3xG29he^Vj{{td(NaJ)N%8x?bVkI}E1PUH*jS
zFoe@{;fGWWIM#o+a|vh5x|HMKM~@moHKdVwYsgyGX4-dMwPML#m&AT86~Mud^oaR)
zT&duImcDKdV3~?yULgccg$t;56k%C^MGnSfN&O~(JYbi9Y%vX@@cvU9ckc;~y8?Xe
zM19fg_DYmThJ>MxD-LW*$EhxPPEH^Ap`BvEP3LaTm)mb(JPAaXPOwBYsS93?<apFb
zbh`@}Fp@dAb$m^b#<%ABFID@h7|%5&{87_4r(q(Vixh=&M8p=Ye$>d^lcFbjNZ4cg
z*{ZrF5yReb`qlRGmrL%9KI|=3hYvR-V*BEZCL@mGw=jj24)XqXFFJ_kEp7e_&(`Ys
zSSh8Fr^lQG)?Yy23N}sA3YwEo#tjb-jdi?o2t`f9V}+0?;E(VY`~{-9=RH@bvc1W}
zE!nlHMasPudkvP=qgLC^f*>N_<YYJXiBb(!htjWr2NB1yF;-W%)muOMx^C3Y(|jQA
z4=^)Q;!s<piH4^UZ7v8z#x=Ao7F$Xrtf7qwhY7KT^d>aR^mM_#4^s?fQVtQcE*S=*
zRel{0`Izf-BvV@aNRp^qwKD37`<|*)aOPyWtZ1)QFoB^efYDzTZ0T_SE6b>Wr6a;?
zCCkWWx0A^YAZwu|9{Wx=zHwTg=zK+v8@}IYq7*vN{;n{wn&IQ|fnM-84f#Cfpg%aW
zCCJyzty-3cUHv_m&llykGr>LjG)(T&%^W9I;f#NF^?cgCG3qvp5SCJ!$Mpe&(wjEK
zFOkQQ?ZkXo>W{2n!YeUTP?4BY{3ED?{`4#w@xzYN5}0h1-%VLw3LHrT5r$l-_uY&{
z1scE7U1)}1c}}hAF=HR<NIzc_zGmqjAzKuX9jq!WRN~z8?Zj~!+dF^DYREpXo<*an
z4@gBH;9eM?M-#gYpeeSERwRwV6Dt{gSgHpPiNf%c4d`qeef$;{`8A*?$?{^<;iL-F
zG}lUJoPcEvTUxN)F#85lYqcA{O0+iGPARk6%XpAy+X0uDy!%g^q>fSs^vY}Y)YPm`
zyH6fQa=*J_j8f<%Nl_2%aCa`gnLN^BXS!<~S^E@9i@huWzs$G33gN3dN{O~ewk0VP
zd~fuCH`(KjhZxzusU{8wQBX>+j^Bs?=PWLr%^t|iI_y{ois!1D&BA)-k5Jt+PA*HA
z)0QpJR%x;GRFIBHOFPD4r>0V;f$^Gws*-E6YZLUUR+dR$8k0Z+UYNFruXOL9Ms0pz
z5fXb65y^*&Mpb|aB`vzerX3Nd#ueWf)c{m6J@b~)jzrm|9@{Hyb8aOcheQA2O|ec*
zEq7$@6~iH5>wdEmG&;1|z)1gBPu9X|TWV8}y-Ga?7}WwSnSjD=eq;#|S5R|~?l74B
zP06~8S|=^Ty_}v%=k#t6>#-B^i!EmBW}MCs*3C*0+u2Ty{CHfiEu?-E_t>;nlWpXG
z*Vs_W-&`0YpM8Dpn`Kb##p;h+=uPihFG}+$aJ0yx$!aklTj!G?Y0)8d9d1)NfZ1#8
zq#*LbXgPm{CXeigEH=gN`Rhy?&{IP`4r1LsfziiVZc(B1Lo7Gv9#8$NF>j$jJly%*
z+{m}?P~CI9%Ly09_O!wO{a=)lsl4XupN3{h1(98@zhBOQmdoESSiUmm#}EaP^ghez
z&~eU~0nU3!P9D-SGBWt--fPFH<l~!~nn0mlQ4GN&3$)A(@$|VEP)R;x!Fuh03hxCd
zWeMmAZhj`+7}P7JZX~6>E#694`Lpf5*DB?B?J~iM$CgfdZE2Ch{cL6aAWMU;n#gs8
zOzdqlBC}DkuuoQk*@$&HH~Vp%->IgYN;cli3{7~XIAy{n@2K^=t7}s;CS5>$;I=X2
zpyErDZ3#P05Q$yeX1a*)6T+m@xa~kgAWQVvs~9*`!=L*G>74)fZfcI1&ZC{c#tFjV
z@OQ67(Lxc?kkhZou>4!YMcFnjaa@vEGU?v*NnpnGurDlT+MUND5NRg<jCgBWsYm16
zE7Wp7aUe1O*yNI9TRCUR1w6l!x)Yb_S?O)}_)$xjbM$NNF9saltg$itqq;FmKjOIb
z4m#Aikw27O;rCdLxkHL@WtWKJ1xLjZRLO=3G%_GZLPEE8LFxEh390Sllv7tG{%UlN
zE>t_--8sM7G_r>(x``5{TtAU*c%Ojh?+R~>HyD9BX!2Qw$NWPc;!09~i8C^P{ccuQ
z5c+<tre}dl(hqZsd0B|olt^*+MkRIeFBY2%I?pHt=muAbU|)n%Z98986qj(_@;D(H
zCPddOrc^BU{osAYO!VI0AvtH?yrcUyX<d1wuDJLy4m)>Ux#m?eFOZ<Obi!-sF`vPy
zCR_;7&C%50K>mil`?s;@IY*8(Ss?J(SYJ-iA#OCe`L{pfxvZICm6fT**m2s(ry2N9
z6Z;(Qr3!Rv3}!2LR&+d_=jcrRzifr2S(NP@;2eBMd2zDW2}Zg$z09I|M*Evxs>wRn
zO_T49RR7%tZ^-t{+NpD9F($c1_s{O!aeo#Fz3C`g7k}if7ambLltTJhGW_6t%$;ba
z>r@m!-o7DPzhzC0!#|bAVJb0l728}ojIEm|YaZNlBVWSAZvmgoG;zmi<W83PeoVHI
z5SQNDmO3uDl-h{oikauLYMO!sTnnPa{9~lxXOeV`<G<om3HD{^_^JLh9)5VMP$c!i
zBaB^|)AY_%t^VPsVkXBc{M7CXN#bZ3aJ0)(#&wwO!VRDMgEQiwgx2N=zxlw@RK_ME
zUsCFndv)ephV$|n23!)nFJn7DxvlH(`I>sEf8?DZVFO7aByfd!(~;~?jR`gb;;)y7
znjf-=Jc`Y;u1?U2A>Yr%5cu7NmSTdKaU9KVesDT0g;68lgEo%2fTB$ag=Irdu@Vu|
zqqF-y*NnfJjyegoojN>jm8P<Z$@Zd;xfhOARX4p-z9%3aJan0)-?UHXT5E(k`6=ja
z65`>$zAOb}(Rya^CpJ@=TQGSn?uk#c<@5GjiesnT>fHJR@$|jCiA(3x``!=+T3JKh
zb>H+-ox!n-HaPT2dAC3cxJ$OoQ=x}`OW1`8N6nh!qZhlTTtZizwg<$6kD|}QN0T9(
zdW-oNHegb(T*LVsvDs;R;Xkw@U_r+~u{h$nCi2j~fw&A}2q3)<4LL@xkUJ$t4|lx@
z+mJ`>5l7-T<%W>&sl4<V!&fVOjjy`Xy<&M0F(#~O&)*zyoviB>a}#_rW;brb^<RQr
zvR+oHV~rURUCZe8YJ?}?kMLgDFcNe8j{BZRqI784W8Ea^{`&SjDumzobl+Zq3^obo
z<+<RA2=Jb`7#mz=@R}@D%P@+U(_AaYx_&()ENrY)+|6JlWskb{Zu)oo6P!Bhe%~^`
zW^+aGZ-fvZ#jaioN>}}s{XS>wdfakL$GiU?xR7lxSEV*H7ffR>LGPF#kW4}SGh5Si
zj^)K4@Kq>7?yd9AE_Ha>$bYl6tImWtRNFwLu1!D70ejl?6+^6{HGyGp+2=V$sN)tj
z!>&O2{+e~FEThX>1IHh!rE#>CP;<>Y>cDgHRx7JtYjcIc{p~&ri9go7U<_LMdW-Jp
z(5!6aHhjl?FtU3t4KC3)1C;d~%}2eMI)N|?CWZt_osxyMoCQi0Gu`;sM`NasOTqyN
zEo~Y<4R}a}JZc>y+b=CdJP&)7oNqR}P7{g(xIo<`t<}y0JBnGk_vGj5sakZ88ShKn
z+<eo%f`f#jr@}|O_9Dmwg)0wt=q~6aX#(^yAWEDsJf`BAm3T|k;=nW`z~>P#cgUr@
zhPu8IZP$n8PaY0A;1IGT4F0iK8y7*%DMz7?x?LQ#kWc-8pdld2m#(wA>$Rycz1&@)
z#?gc+GWg}uND@hZN>wDb`_WhIxb5KsH6su<w`+N*fNRk9ll9XU6jC`BE(wfE7}LWb
ze2X;6^UHePA1cx7N*IL+)zq5ArR#g^)mQ%%AbPc){dkuvt5P8C`O}$qoQI5*b4sWC
zh+>xYQsN@jgGMA`xn{p%?Qx3p_8W^dMOY)t?_YfK&^kc_fDyTuVob9261j<XcJ7OI
zlvWv>$kw#OF2}atbJbP5hsdux)47O4YM*7;4^qpw?jjq9E=R^ZaDT7kA7~6Cwrlna
z%BTGmNab|iKC@jrcDu~EM1=)(kO5!Bc29?vBz@BvxYyPB;O)T!xGzpmjhAVcIesOQ
z12#%LVIaPwy5=zLg!sFG63BDZmA}&d+^;&d3%=6wHvSuwuCJeF@Q=Q2J_*#=U46Gy
zalH~ycRs=AH{EXSeRN94;B@tLf4@j6C2KWo`B^gn;r@ieWR+WOrhW+bHte>fixrhz
zql%bA@#r&lOhIE5@ka?ZD^QT6V1dw71V59lRB<u1NBTukcKf}*bn5b`!{(YX-Nrn{
zzN6*NdTOV-GcxC}@&F}U(Xf3fU8}qCk99GPO3H)AIIGrnsJ<b$k8&m?7@I-2JP!y2
zc!mEo-0#KQ=N6CsDtNRzG31lw%pTSn881duOcjp?7suS#MLd4!rrftt|Mo^pDXpq0
zqdj+XVC9G&jGO6T#K8ZQ2u~}|RSQ5uLJvT#;iQ;NGGK1z7||#K4qyk;RuUvv9lQv|
z64s|T=tWp&$ay8&jmD*<uw<9ADzr4WLKv-s2E{090kW4@2nsx1M?ri9_=xB+8dyMb
zxJ%Z|{aV&V-obX7v22v(hY+@7`QM3t5phnX=5-=PsUKZL6H#cyuD2Y?z2fVM!;jMj
z1V?xk$e?lLUU*Mt)7yoP1F%6}>s+@(mjC!#eeUP2yk8?tGn;2dhVdvCkVH&8+Sidc
zBR<~IA95XH|4x>w7+J1>^%o1a8|nJTuHJ)H=RS$(MCxtJ&7zfJ2MrJqOF^jn%9Mgp
ztL?9-s5se<FA7E5>LiS<ojYrYlkUsUPHZ-uYinBV=f2lcdnNzd5iG;;uSoiU0?3|H
z>0Vn~Gj*iD_Wuc2c=PfPjAdqEuxS_I5<V*D6{Gf1x3dRAU{07xNgnHscQ2rXth$qW
z_?cfc$YT8#@2x9#yKDPoNm=VBGSlPdls~F-g&_vx1pI~a85RTBru7G29ZH$eI=uUK
zdCs@AcBd5Sgdc;7c2h4akyIEEA)f@bM(&5qg3nh-aP!7{&4uiUH}G4DADZ_szrqI)
zWncwbi{L;6gb^$j>TqFwW((V7k?I2`idot-)&=Rl&ULx=Z-${LObf9CMw9w!VNBQi
z&b&l=2rDA^eFFDwkmFjF5I<(G$>tH%Ng3;Qb_<Wd5_X+y|C+dxjQcE(R9}l~IPBZ*
z0Hgm`x@Dv06zqeMnBR})k->fus$AnpBvDa!!W}qVcU!{Nf*VPMj8*%?x!}w4N%gfW
zR+Kg46kcG>5$ot3zH&cC8S+qnm#9}Gu0s66!EU2(e;H0v+5DTxxrZ*OKJu*l2dL9s
zD1EkJ{V^}-;o0k9>x-=EG)_NSmKr`M64Fj=FUt*HF*co2FJAz}PA&;j7$i^h4)(s&
zx26q?&<tGSP#E)lZtJ!u{Wb1mFRt4#PA`m{kv$On*EJe9o5q&nNcZH;F<v~c>p*AX
zw~D5w8zE_+QR_TRTx3Z}2{FI@xx3!cGbR&`b1V#SU&t1+e=OW}hQR)7SxELmA+Qyv
z-S+XCKetkVw(?&?j`#P_F(Y8bo7jT4^?W47FFc&=Ykw^%gY8r=KTx&n9I54F350ay
zJ`%|T-S)X+#V2*t@b3z?9p4;8OD?^Nk~IQ7U?z$_oQXMtrHDh(6VVch*o#9sUN3M^
z!uabmQU9_Jhp{xWdT(yUHCm;d^uOxpNh>gegW+5mKnFRC#Tp{qrC^|}BQ3khCgF!6
zJU+>CEUAPln-ifLr4Wk58z5_+WK?d}g<YgD(W|naF??gCaFmJ+6rIl(uT&QEfV0$}
z_<+9MoUpIucT#SRhyjIZ$Zv{h6L`hGlv-wT*?)(J1fy1@zZBBJhk3T%FuUEA5_qN$
z*3f+224a6%!9<C{agO(wxxBih73(?rTn4Pz$r&KLKPmXjEH#+Tr+lTOp(qjnt${ve
zFnHq7Bstk(JF#0U>&?XdyCR%=^Ces>(oQhDr81uy3@iE5yQ5`8#XbblLQb~_jA}m{
zafs0RBF899@MF=hk4ZlDyj7!Ci9{w`8?+_Eqo(Y;mEJ#yMV2D}2lF=qRcidfkDL7K
zhWyb5w(&V;Ei**v#e2pSx#)thsh~#{KDfu+hUl>yV+O#1Cvqr|P?t1vcZd`xep~AD
zilyH+0o%kfsPywHpy$EmbH0^v%CeurSUM&{|KdkwtUs!%2i87BI!Zv?#-UKeZTIqh
z#4pP+*|2M&lUCFh2U(zgQF;~$%ru^N+p~_rBF5{g6-P^`^y|#KFljy%L=D!G!<>*r
z85IrS`skpx=Z=2*o3GGF(#t-PMCT9X=bS@@)J(nG&p-PGQ!H|5;cA#aJ6Y;k_>b%x
zZH&KJ$J*N42mD|&Esk}7)Hq8>lrQDT$;k;DW#IkB$qkn)-L?JZb(ulK)-i?6Q}84!
z`vd%G{zcPcg+7)Q6tb@;MKYTDfKz0psQl$nPn*6Fj7on6_DyEPPhnSG>%4TFbClul
zF?N+Ai&MV(RNq4ogq!KX(T-SZ3G+FW0N+7`bhT=a;2=1ti@#a-eBjb9RO21j9Cd-`
z5)&$!a|1IXwOAmH5T%SPZsJSl!Ydc@hRk}MBhkBzM=z{DVi=pk5IFH@KRSs}akn%6
zQ7S%wJ(X0$4I%#9)axHZqtg&EvDn~=pQC(n4m{1@jIZe+9xm~=Dw{zeJv%3f%>=!m
zEq_}J&tf>&?vUSX<YpeDxTTGRt^WH@P~D{Je?zdT>$EtPW~(n+kA0GgKPN<{h&g{R
z^gA@@lf?b|lf`YSDCq11+3)LhxcEpltdE<U&Cz_^m2w?YJ?q6<3$I>lFzL~t)q-P{
zwfJXi2`XXhu&KH3-me88g4HNSP4Gph2fJ{Jj_^P5i6j3zq`Uis3R0(5>oTq52ttDY
zc@Wm~C*$pLv&<bY7Azli^gYQM9-m|5X}p<-Qc`*ix}0yFLW9&^aH}Tt2R(1!+*aB?
z4HnA4(T-5Tevfd=&{LAMvT&N~RTz65IWJv~1k(W;5z~?Ksh(1QdMm{ju-NvQt^J_p
zE3HJaX*g7%dpbAzJnj>hVF+1Y@$Z(!f;@whY13za0j$RYsYXXuZXBD=XK%XG-|0CP
zpCjDTbMON7F+Xm0c5{`rZS3i+<lY%<u2vhdyM4wH{+ydgic~sye2g1HF^I7CBa9OE
zbVBp`Me}8uF}+iS=10uY-U*uQI0?G7V3gk{F?`a!ciNtr(Xb9vZQ=-2EPcg8`w-^M
z(yBN2hBq|;D)9DGjnk5mb$oAWYeDu?oLkPytyQUBo2{&~<GlMYt5>*4ftGdb0F7k@
zlW^wXx4HCYv6LX;@7KX3-#y4Z^GDejL39pE!&6LX|AfHn)*Jf0n9URk*k)pX5BxX@
z1(S9cP#i49QtS`Og17R4E>gzrUB%~v=l{jIg{DLNiwCrX2PZZ*8BDX%x7e?84juYu
zTvkjOl%v72mcJQTMofK^gycY>x@<6E-yND-1vZ2+kLrr+Rgvn|WxfkUf)g-Tx_<O$
zJy+M~-0TcV^BKTh=bP~s6{P;5_rkxEY5bUK>XA+NgCgq4d@j~{dMU0`iOuTD#GRAI
zldf8DU?up5awKxiS$PPG>Jy^9)&PHC2HHMFJB{HC){G%ytj)C97xrh3)f?A<Fke3_
z&$h@&CnafHizn<UMWh%)XwpXzITo6{uZ=_k-R+)TNv2lxuW17ZYcw23_?uLr(M{mb
zm0F*15$ee5UT9{jk4^Qj57W~a(>KbA2D?VEUH?;VKGSM%QMR-vZ38-uBhiJ&TTSn3
z>%PKha-^6z9!IUJqB?*ouE!*p*Nu)jO;=rTTy94GZZ4qUIMd<c_RF-*eh?;YuxXv6
zXLA~^U>3Gn9oEtVULZC_?Kb17Aie)ft=ck;pex>yhu53sU<98+-59%NY9wM`QT<7V
zD3qY^Xj<yd2p1@pN1vH8em3bp`KUbWvUWhafAkcYVhE=8n^?Vyl!RSWT)h4W>x+2I
zkw=tGwL<_WjY_t!HFqW3Qf%Yn6RjcN1V!DTrFI~kAcpq5PWv$UD2a9(uv8EweF=dE
zY7SDbTSi>tkNwG(pim~q0OhRBYM(X7YDUNUj4UIdhf+MVA*r^O);-FUYo(rN2EjOO
z_W1!pd`30Z4li8&?#89&b}v69xcx<QFvAb;6xW?B-ZQK*E?DN;+&s0uCfC+qy<+kN
z%Mc($`t^X5MvqOe*#^{JwT&*eHGC%>fADQLM4DR*&==AJ8_eUNS%Gvx4^N))Y*gAt
z`^uBC$F>XS=5u^jU+#Ew7I0jC;t?KT2|%Ju*|(E!iDheb62`6PIxjxTM<V(OWk)np
zt6b1zIcq-aJe%)K*|WWjwe5}Hwl_v}|3Fzt_|(23duEjQDhhAzKJoJ^n&O!M0)aA?
zYe%Q?oEg=+T;@Nvs5Cm^e&u$<EpeJ9%FAV`&;iN&He%Kw8Yyvq;}+vG6~Q~06v;BN
z;k2X$QI1}tga+vGh<^P!X(;~CEJ+9%<Tk$z`@94ZK7Iau<$>$OMZ_b+c0J_!&#~ES
z-yZ#d(?Kdiir4=x<v#=_3+(}Wl*s4y@n+3F`<*#we}QKaQQqjW^5=e5S?92^xqNx!
z)ej2K=~e-Wa={EnYHuKd`w%$ilc^=4(OnmL=Kar419sIlmi7Z`*U?|>)c``0#!*}S
z*@dAtCmT<T>p4TG=4RrdHSg?&i=KovEsnHy&Tj38X!iRHD}6x$^b(brgGli|jw`CR
zHMO*)?Us?eVuzD@s~{^mvn&1}nsSucHQ3pPOQ3$;Qnk`HD|go^mf;5|ONHp@?C(iU
z20<ja7l6d!GDvEz3c(L0hv%{QI?E-`(fp6%&xe$qgm;n5!3+HXUnitWlN;$gBlDP>
z={t-O(V*6CofN*c)r*YFJ#>k*vr^xS(9_GG(9@NszXGvP!M;Tt)0DHn!ry(o-%pY4
ziUedFFc>@HpF8>0U32e^>25oBHk73vxiU~l%viZO_jz)}Rw#l=Gl2$*>9-rcTCLcY
zRQ*b6!)|4HG;;7JR~M?Ss&8)oXOV)>YSQ<|XXE<|xo%n42Y9Jq%dD*6ugbNmJz61*
zAB&zxfAnI$ThnF7caI8=v?%yNVdTK;dZ*Q(q8(7F$6;vC&+q3KHf!xW%~UO)`$+_L
zJN8lasc$7JgeL3*GUbS0h3u$k9?5LAx7jUY6x{{BB^nJkivk?BkhT84qy`Z&X?t-d
zuZ<LObq*6NUbByXGERl@(n><Zgrw88jp4#}W0gTTHSX<QTIXxz-MclA#GWE9v#wbY
z`7%kgI;IPf(L?lPzo~dTH5w3$r@b%xkrs0{pC30Pt}fj&qGS+21D}E(zLqaeXgWSR
z8X9+5qimHR<dhC0p^1Wb3Fe!bbUS<p^)pep{`P-vIcsMhO9jcbmii-mzLfT@4z504
z6E0y=Ugg=Qv{9CD|M8wrvBk#bbW(LrU|`pGDU!{pVzv(gynMs1n}lga8VqWIVbW8d
z*sbn6#O<hU2+Ut}o@gmk#{#0mnR=l+lC42xO6x0y_~brFCjFS-Nlv}oKl7Pv7gH?<
z3!4#y+ABED#2VNnhUr^u7{KXa^c}par_JqHqF}Ru?<s7Q-90E#w}iKLQ^FoI@)xsV
zJf)-1uG#+<4=N8vg7YvRJiEEGu82u!3WWma#<k4NI0HWK0WDK2s5nm~-{cSva`E-u
z6J-VQyHz50v)b$0X7hY5d8$Dk=J*GS@t8wcDSvW5&&nvq3@ynkG=Dv!3e_xp;IaT|
znPZ9V<cSdrxZ8V#|D&N5Ej~(<A=x|gn(V|H-9qR5xcWPT=bK3w#c^DfqC7J8ukICo
zjF4O&hL|ep49M!pHI)puK4FNTi7dsJ&S5B*HM`E;G^xtifspkJ20Wdh2EH)h2Tkq@
z*S|}eQ~~pYcF6>i;(<9HmH`7>#?D6T^|`2xUI@Y0)pNSdUa&|v-wY&GHibZJ&RqBh
zK#>iEKeOlyQY$dIw)DF7#P{v~RaW*;0hI{?AZ_(5e4hFvaKzzMUR0Q}q(RTKwo1l^
zyx2rTtvr!u>>s8wF<JR6Tk8=LyY|kISS#{Wy<)8k;-yQr)_2LEF!#vf^PuQf3@!U>
zl)`BG%JVu`l%$IlhE8cutZL~Lpo&fdYI(0*NPxnIr~B#l!1wH;O6STl5}bS_{-r%}
z;wD`8HU=2m^~31+a|`GYsDh`C_h~M}n(ItrYJbsnrU0wW8)7L!MI@g%L?l0ch5fhU
z71!W-@1Ym2sJ4g~hz>AA8W~_wiXDs<B)%tlf#S=znyT7kvk8HOZ-0#$zt0_I1aXMF
z<;#+3>JXvp5?_F-SCuWlL&sfMXiTN;oBsCgTLDONE&smtgR#A3{m;_m3I`^r8LI*M
z!UJsR9L|;hxsVZZP94t|>wQ#|sc^2j{$}~|$2XgoSMc}<?KEzk&UPo<b54_G_;u6_
z-*#iD(RIje3RmP0i0_ZD3zywvME3LHFaIfkEL=qz_U`5!DV?Xbd9!;QZsX%E**lhI
zyE>G~OA1%-ewutf<v4`4$qbSg`*+@%a<g%QC@6SuXdt4v{NWyG=OI8+aJal=G0C+m
zspnn--4dbgZ8qIz0zobXgEm_`4*hPi&(euoi%{jV%b@wv$rRmd-Q9GnIh`mp*HH!M
z-7!&|o=?}F%1%8ABZe#$aaTMG+{dk~xB1NcQ_8)5KgX0MUdrAYD9`6+#u&72fV^g%
zg=9HVq^3WK%3cA>VZ6!M%VT3IS~{t?Jc-Tu?<v|{Pu)b3Hv+yVeB@tt5{PVYTt+bc
z)k{FcYdkzezBY6dY#;co42T;Z;N$Z6TBYo6x0|F>v3SeG-aNM{QYo)|^hM@sRuz$t
z*qsyIBLbuuH)pN8mTa~KuwA*oP^XLqV4#+^ADDDn@SM81y!RCOSNB));}p>#%jN)P
zs0lSmqd>u}eltZ1;pV3qF2fe-pw0nEDM*qc5}4eO`1Xe~Qy_`Zt<$?uBD={O(v($6
zGgE1}IQ)3ClgpXq72Y7)|Es_|V?Tt;FX6V}To-|G%Z%ef<wdjkAw&t4m(V-GxYmeu
zsE9?Z?K5t1txNyAtO;SN4Nea$1j&Zxh&=JY@#X!XvAn7fv29Jn=8sBgfqtqNBvLQF
zPku;L*uS3BZ>fFC^ajd<%6NJGBboZStwACVYig@=$z|x@$CMOot&_UM`3g&A!aJ|j
zguF?<BaPVLWb(EX@phhg!v)l-l2=)_U1}Wv5$-99(4!lz3Xc3+lq5UI>+hAvy3uJC
zwICPjKJE}pAPs+DcmH5!<U+t1CYW2~r%W0jsa(9{m~DGi6wzrG;-Qk$Mb=%{&C~sS
zc1enbw=stASh{1oc`nwJ-KI3Zpd0Do?WfB`jk8YgJGZCX3l@`1hjq1@;@IH}c2^hx
z;IB5A-uTmz%tYOen$~+S^L*lfC}{moypDf9A7Cv86h9kHN@2D>mdy9e5Wi`owK^M+
zi?18Mjz(a!)8AEi@cVT$=WZmx#`4hjc)8bhotJ*qWdo;jpLM6HJGk0)c{26yRnxio
zm~%`gV%lvoM{qd5G+q(6$^^QW{o9Mh3gH)<HyiLq-8!SwU?kpm(|c)%vfOjri^o5Q
z&Nk8__S{wBqx*>&?(@P|20)t|PjfL$@}wdW-4-;-9};|TsPmJZN46ZBvv<77W@r-4
zv0P+vN|`y;hf8l3jHo~~yBF0uN3Fg%j=q3mbO!V9!_N0_x7cdZ02CS-*(bsc*7zV^
z1y+twNC3^jjY>)S69)U2W`CIpnF=}#<w8P>Y#Zc(j`V7X_fRR5FQu8dvN@DesDcS6
zZk2gUvT=eOS=P#X`T5pzKU%L2kJsAY)DnA~`?mTE5PMGhq{d>acxtYn0kuJiYDlTS
za^({fTfG-Kv@BrYH$X)fYTle7;Hx`oYp^!AqhPNOSxEgOtTl=jZ5`x0_AA>2kBQ$?
zvGg9HA&Oxh$C``Y3&()(>u%F*)Gbvmcs;gLyBEAQx%CkprGDue?#ye2JIhD7{>kPm
zl<0;)i#8t#6H>|Mf5E~{GQBkEVrO`5G@^P^L#8TWtZvSB^pcY)=u0V2j&2QqS!^@@
zJd(^N_K>GMng}u24^&v;CvSHjc(dm-LU!!Z0)3E+$GjvWH!pK_57kv3==yf%6J8wQ
zKh0z9i<r*xg#$ynH?f{dIjbGA9z0>0KAcsed-UVdh<O!tG|jTX{_wr=Tl~#)PUc~9
z7vd#F(tMJ;Q~PZA(1ouV2>8^^2`3V3<D&Vw1}?5g)v8s#yy>NESCDr2OYnt+R}xXz
z9p$2utlVk}s5*>lCJ;)+Ld1QdCxrEi)?jvC#cE-Bf8KSMtoJW}W3#tr*7%YU8wX_m
z{?ENXkY~Oouk!v13qeu97^*J_%o0I)=rIFUTZ#(iDeKOysg$xh@QgI&VN{srfTCz4
zd~^84<_+lOqY1Q{k+4vbams-(c9%sr(}cT2TKDH-X!ie!`Y+R%w;h{AVYJkQty)mD
zC#*vz27hc}pv<ayP)?Cx8I-uL`WZ}DxcQlMrkNwMEwfNj7w80F9_zKn{pR4$wK{Sp
zlB5m2T7`?X0xVPtFEIJ0W(Qr}VW?J-1TPOyPDJ3)C8X{~s>oJr9~YJY&VSE@1C;CU
zv|5s?LzPGT!3;@#A$a!Vh^5013N>^}Y1$E7ZFNjrfY%rL3yYR?DJf;IJ+dQCSuN+O
zZ-^;Y5;)|ibJ#S`E4B)OA5lmeR(y9%-VndCy7|<Xx}=E5`WK1)v6HLo=-8mqOsB%s
z0hFPjQ!|R<z#oX(IiHNku*OAH&VJKIhFfxMFdt7DrR%y>Wv}ktoW9G<@-7<43!0$@
zcU6aANoS%a<WOTs(Xm0#r36W^g{>N!!0PbbEVKVf<CSYEj29L^AQ~V$?TDFTcvkOb
z+Es&BPOyyopy60$q~f|tR3XpU$sDhAOoz+?s>EetUeK1LfQRcI->KQc67P|Tza=ue
zS(9tY9{E!8-roOXmq;*F9NB)?g2Sdh;3j*d{+ZeHBkF{hw9R((PJ5=^?0qbqx;j20
zU@rO9*P3Z593J6Yq3PQg>W7|Il@zkUj!yvy46(yfln8`UvODM@pQhr1Y}?iX&Mng}
z61EDvytya~>-i{*y_=vV_rg~`di0NFG5A4%G!A?R@plGX<cCii&34ZeKVmNn+FlF1
z(9o%Cz3r2H<^E?{dcfQ*6-My|Y77p(V-vS|_|NFne5w5?E24S#K6G4V|0>RTR5xah
z5h@nAD78`h{q|w57>Obd)qUJRHvoh(fv4uReqSNGyyzlpk#a^fL6RbbBE9OjAF=H3
zn77zsGR}>@S_9K{bh_+>Zj(f5jnK}{+H<S_n_e0)w-8cTE&*Q<i^Nks<&?U~hY|6+
zithOfFcI9myXdZn^+Q&Q?gpH;vQ@;1w=0<>^b3UiTDOx>f1#R_7R=SLMx6lCV*aIr
z{k>h25#^AijjMB{dP0wnWh{M&4oPcPEvGLrb(nv8V05lqhNSO<3xe`sXQ1~7_q@?s
zeIN+Azk(P>!H5?#z7IKtv*R#D`i=;dan<L=EXmh8Crz<8igi729H#VpIx9DWz>Ele
zt>;h2Fp1ozCk{`&?7U6BoZsrCKw4o<I8buzK)N^$c2kyPs#wOUM^-Z1tXMdK>9mo9
z=wQs?<~V4me`72SIL8<KlfHcBo`PX!XjcR53EzES=TP7^nRNNK!n0zQTgAa1!V*$x
zuhZmwA(tueI@X>-#jjX608HliS|@o&ag=s(n!<N*mLxwPbtY->Wd4sMgb{*oXG@7i
zIqti8U270UN>cj!u4F#Ge$k>-+S%?5J*s+i)wf1XLj%t%2mnJZ2DgO5fFP|+5z?PL
zEFSytVd^^OkL1?YJ;7Aap+IR@F@wWXx%eaXOeSL9$>%Ylx)*BZx$G}&3a$u`e2E<`
zGNVuUEX{tFawOg@piv1rreTr!(_+_n_ramqsW0?FKS*f7ay5y>7JG+bs6UiWzG@MK
zqBZYr$g&cQe7$+Y(yQn(*~i7i1RQS`%8DK<p5y}`0s|J%#(7m+N|n%xeP6~fIwR8#
z^-@}S`?s9V(9V+>fAfL{p19pmWt$UDK@d@~e}3&9ID}4x9vQLk89z)CIT*}QVE!B~
z5oQu-XliyHrAR;Mc1hLF*pl-B>hJ$7sny`YielC-VpywN>&4zmlzuId&3wS(DP{KU
z-?|VowpW>Gl*i(A^RbZ&Q*Bhb)E2~|;azP`d>+8n88KrpJt+|7=~fT}p3kdPdj?d2
zVEnDGef3XsDn<kT_)GQ#1f0JL36E1-O9$QC^%+YvQ(5EG9V^N|%wRNp%}t=F<7W{g
z@{a$E?-f*pNlZ^}vR;uQj;X_;9Jb8<{ho%=CkmBxG!(LfspGxKF4=<unCl4oD8}Zb
z$2JH2LehwVqxb}-(#wFDBpyh{Z<w8lePI_tOS-~0h&dIk<G)RcWBylyr}pp+jz%iK
zm5a5`|Dr6J2M?>qhCTOj8S9gPzhO%n_7fS+c}^Xote(|{SYofRL$;wVGT+9GLfk$l
zib_7F=`sZ_-tuuzvy{wUuu|WHJ_#nd+Ts_<9%6tEK=$l;X3FKB?x*p9`1(UiV*-M$
zX75r0f~VEzKI=YPyO6r?>`HEg--QLX#6ZD|d>wLSgr65U&YRA=RI*o)`uI8`v2uTG
zHv52r;3zz8NmxecMLMOi!cpMF;~NPX4!@NC26>uK;>Ka3)H)NM_*;Qs^(2HR)|M`m
zxmOVg+!|v@0i$T7;>(Kp{_j9BqA;zx8`9J&$F_wnQ++4h^IH<=W)lrZZKiQ<M8)^L
zWfs;({1=gzdiW;B`jrp~+%ReSnwUpJawsVM^)Rjtq9#=dF3DZt7eyrVw1H_`>+?e!
z;hB1sT(6M?h91+2|Ge-$tp-;9mCNc}JF2&L1XEzqyxZTWI+rbj;ew*WY!Yo$=H6GZ
zXgs2a-ek}|&>ob&X#nJcU^)kvVz_@WLvKqB-pSI+w%$gptiA7Cprz4DK{6e~f38b6
zOV5f$)*dFE_x<CnFZS6xDgSpGpCc`XOv+}kZrjs*fcwpqpj}wu^R%G!0xP#X)+Yui
z?Qbt_Vot_8@wcRwY!idhSA*X!=|Q&jZ8D|7JWZl@#`Go+tR?B{L)BR4*XTh%fJSiP
zoR0E?NjJ<JhOLt4f&Ctb=GSugouWNF^QbKHe@DXIBco}*g;Qao0;u##t*D6uJnE4w
zmi$6}(_DX#vYM3(%OI^(>9u^P82fqbg?=Q2eP2KuG!uSIJLa<W0U?AO1U(b>MrA}I
zIC$oyemO>hkFh?kYqrScI$3{t8A((q3)88ns3^usn-d&b+Jab~mYGUp)RV&4X(Mn<
zL70`%^F?b-`G5HH9WCWJW{Sm$W$}h?wQiuT#OnQW?pD0~?^+obP$oO^H{NJ)^ZWxD
zHa3zg26np{DMYJ8!4y*Gn#LVMp%~cDx=-4xhPg)(eoYWie?YGMfBywg51V_jmUI(Y
zyZ$rmP4Lh$ZmR%#_beSN+-VbpO%wm)HzI=$@+k4P1juJYU}EjqSu1@U>>&XTujhPq
z-fil^nUv^kUB&@$VN2%m0Y5j}&GtToV@PDGJR<>cPLz#ituyQ%qjh||;!Cn(GNXew
z&@y?WGdI80P^nM>cx)<6Y2~V2MrYd6VxFh6ss3rUnVYl^A(&!d3x-Cr)P4MlrdNU|
zyR8_(%R`MI*{4#d0k8qeY$gieFYa&K^;1kPJ1E+Drd1z9l|7DfYVd0qwpp4}1G@pW
zAVB>ivsVk%4k27ZmFdLp|Lf_k1ETt#|6y2HS-QJ+>F)0C4(aah?vRe9LApVZ5(xo8
z8U#c@T0**8KtO)i_viaO{CBx$&z)0q=FGh2bp%McRMvb?y{xxHq^GLma#N|klJ+X7
z6&(f6x2F*1;aGEVeg8|jG){WrtbHUEEn$5`RM8AqebGk8KELx!_h^=Ql>-|mEq^B!
z(^0%d(LdIbirhi251LVWE3|DJ%_<}ngYw!!Zk|NHRnxm(OZi{^d6Ojc<D~{;pmEwt
zNRmx5ceuS7uF7&0Pbm&Iu~WcQ|D<*HJad6w+r)fA+(*Y4stsY#W#M4xXQxsW|Cn%`
z3OkKg%v4o2ZU`__#W(NqCIy7AX^g&onbG;E38s1@vA^(2j)@<IM-I6~0wF3;cx%5a
z-y64VP8!HIOo)-F@ylT(VS**=BXd;{=P0_wHTje}Rk<HF0s~wG<i;N`7W|c~0w1vd
z9a0JDVDt>krfUZLmH$-P{52g(GA#tM&oU3)mcsTfK@#kSeE&mWBkh&(p(C_&c5dc4
zAHzbugG%%Cy8iGmlm5E1BQBtpnqL;&KBvhnnN4zmQ-LIy&F$n9cMxJl6a+V8H`oaN
z{X|x6FxI>=Gh5l+Z_xY9QSIh)8@V+D5u%3PysxcwfZ}dj`(^VRD1?dKxR~x~1me?y
zuQj<;I<tBj>a+~BDMI@dQa++H7pV6Zzu(RcS*u1jSfATh`QuCHe`x)_Rbpq8@xx%A
zU{T5G`$XaF*f~3u8;;bP8-ilsByf#<XGy0lOYWK=o&>%hNH8>cYdJmvvX)9$Cdnqm
zids9A3oo)#5`06(U&1zi${iSu7x6mMxXpRVwxi3@$*H)HTz>daB?WF<Q=|G99kcmQ
zp^n@3&vJ@2>gl=qGtVA*US7GwGPPyJH?%zIC~=y<F@v*`Slng<7k0kpe4V$piylVN
zZN&v$<He>G7g~E_4^vntU^8ierJ@mh)cod=HA4ZY9K|-V;`ZWc7*k8b3896k)xbVJ
z^K0WF<*R&u%JZwH<+QrBMbSm?RGbQAe84<^Lv3DXG$%_t+P`_j8iT^cVFN)h5FF$J
zzZbhz{Q$y^!Q+p>qsLLj|2^8Ybup@DLHOqgHAx7q{T33H{;r$~>jn7FNZ;`2Tm9h-
z^&`{5SE$lY=^!Z)%Dun8Zi?Zup_Vv&^F){0vHGedH2{tX0nrFEz2+m*0pjOSS(vp2
zjRMKitKQ5@hM$?LQO$~huj~Br!pzG{TS$<(no#O26C}L<WhQy786v0Oh*;2%vSkM=
z7WP;o6Ips#Ls~xdXD7p^3K42dO)P@hFv4v&b-v6;ZI>GRSwrly+Z;{gUXeH{wY&b5
zQiVIjq)5ByW!tcFftPxnFy$4wz8Zhy(x>$Oe(-uT^Z~vzNy4HBrb6Oz627%a8K>@u
zz3<g)2nP#_1T$QDF6(&<w5%kgLDOOj70Mj-hA(Abks{Ch&dleOqI@y>xilYxY)8eS
zuJa9Z_Cbo!%WYX%gU;C;q?GSH)X&+a2$|hISwe)2k=A8f9?l8px4xNoy@W00d5`{1
zT`Wm<4%`Np{^ZJJm^e>Mm>U#A@zpvC>Zs}&s!DJ=9VsZax)VzP3Ft&y_js7&DCR{>
zbzqGQHbe}RMy0Tvwf+g_mht8-6gJG<>}0If6~NQ7Gw%lnyL!LCZaK>AQCPXg>@r!h
zj%r5An@lE=16H_*ER>7=I}CHl!li<goMKeZ?`ywrvdcrKk6c?XRz<QxE7E}+i^u|_
z`g^=z=k|?nnLytqp_ObgKX{h0wlt_^s6=pn544*4NC*w|uazy&dsKZ8JkDEfc&<JP
zTmGg5KT+5>0KRi6*(Vp>%G%b(S8S~msxH(O&2q>}vP9RZABm*q{9r7(-#+~{+8fBc
z?ZjJ7!A5|MTwbQc8|1m_g#j7C=NJ+AYqC2*Ds7vVq_KAm?%61d9SxF@mU5VntZmmA
zK1)-M55eR+*2~d2W+tYh;atv+udrdE1|P!0(d`Bj94-JE8C7h-*Wd)_r34V?#|f;G
zN&(i(H#BM)eHLVUqvCjRlR&<hq;&Y7YA|uDisFwE0nFHLrzB5It~TlVhR0N`mp*w_
zISCRQ*l}7<+-d@m3T48BZyy_&I%}H2gYzdU7zB&Yi#ErSEj7HZJ+%zF(|y_ex+>UB
zP^`*7c0owQj-*S_zEPk4<ar93qTzg&H_$jsYDr7IRfwkr7Pq{Q7Wh{<!pY<#WXXYg
zRO1$!H)p@~NddRQBaSx)+zFM!*HP63gAx(Y-z&Dqs`PV=6NPZ&(6~6(AmcnGpFzjU
z<&J2`U0a$R87{LuJb=w_hq`xSAWL$+v*AYTpE3^*pCGWia=jPmVyVd??`mkQukUVv
zDBk1H7MQQ}&nyyO$c~BN46z+`=`JPuY^L5X3EGPJ>8=>yd}0O!bz6<m|A<8VsjLnq
z79SC&n3C^7KRYkuXrvrC8nRd*LhH1VN~skM!!e&#qVpN+t+aU*Ir=U0+s4P|Mx|Xu
zWns~rMxif`RMHWXOXa1WPcjJPWgkW*o087hS{R~|7xjKUf7>EW@=-1_`i?M5GFs1k
zW8h@?JdA(>$%F5-Yk`6dyeCUXZXiH;c;T6$N^Gt9mInSs=jJsS6d^%#L{>1p5b0Wj
zoc>)4koL@y*b={gv8$oMwL%2ueX{I>!?m)DNDv%JAG2*HS7(*Mi)#cMy-l~_yc4H>
z#rG~gK?07Ii%nzGJ@ba|$6}NWg=1ti;p_ewyj(czX|AuVx~Cz4YYfta$~R{gTAz+&
zU!1(YGK&$}?&(`NX~`|H8yr;Q)y9UPfVd;e;&K9~eMyjU0)Ww>YQ2T_fH@RA(i|=o
z+_w|(ng6OZdVo(&ti2*Dtm3`X{Kg_>7kj6)s5*FvWlNyoiiS6Vf8|JylEI318n`sw
z)3Y;C#@0s9X|KxN0{}jwC&J{Rp-br1(deTaM`)Hls6>t#R4KbbTI*G*+QL)&J%tE4
zU6HMnZq!?JGzB(4BT-*_7v1MwJoCdEKcWMMwe!igU}Kafr_*8zP@b`hVcX9^NDe3^
zEu&BlL9Xl?Sb{_ocAT?Gx!q$r;vYfhm~+Y~5f!Q}EdkT7stXj>xh<SwCRW0O1>)9$
z)l_goz&LWk+Ej&an<&;ySo-^zS=V+U(Y!?YW5(y#flDg%-e~8Km+3cEK!XRK29%pw
zGr#9Qw`WNRw*!p521$~edJF+H{^(~?PgC-l;92hN-~<TOBU(^s3a-(vM<}=**Hw0#
z{@^Y;pd{TUY}B*pnvARa$4ezaT{&zZADdG4Yk`iFy}T_9pD-`#=9%4Ug1|NEpXQ>m
zTsZCv!)5<ooTHjaN<w1YRTF1WvkN4KN}986TLc&56QS#-75sDXAvd_cjKONRpqsxK
zGeni7QYJX~PxZWt!0d^avqDAzz!#EZ@l^YW*sk^o*%XzE^<02zVnB=FN9i&-!yx(h
z{wp@-O$5{?Dm+sfnd>DEJ_E=Udj5$p&7SPbKcXLjfXz<239g_ayjqOrw;Gyx{~X6H
zDjS87mect!{&C%Gv<wQr$>o4*XNz+V)$}OfG65kfPk9Ln0T1pD?UmWpP1I}hx1|wN
z6zZ8l-|-TEQ>oSf`{^h;Vjl6@?&~d)<W%bVLL)R1q0xW-O&}*@I{7BG>ZFwHL^2Se
zK@QsqY<-|}8AbQ}z-{SeRWBKzd!Yo!{;JU~cuarCl*MOrVdXjGyI#Hkc(vigh|1(7
z8TV@F*aTo9?Cr~)ukv&A^M9?DT5KABHDuA3H4&8szQqnFBm8w0F{T%k2Kd*iAl7mc
zhbi&Uw4sxz<Ge2@9&st}cSjdL!^`Toh!?XjR@{3;pZQDETp-QK&3c6*nHKYz^hUMY
zEiVfx{(Y1b)E29}JU-%;s3?s@9Fa1gwzg%#AT(Wh90=c5V>4i2hsCcsclq+VQk}9j
zETB}v0vOPd4`m8P+-HsO5J^F;lydBl%XK+S{1}`Fj7XY+2Sb*-T3HGb&bBPhfn$Ry
zyN$L%^8Oo{sVHeH8N`H3!JLJf4&_x%^Io-ikEk*LB=!pIJW#jFm-C6>Pot4FhxqF?
za<C%1Rm_+t$^5jsk!@SvvEs5rT-uS?HBBn_5*aUXfPSoMYVL6hI(}aNe|#QfN7A%6
zDq<Pdr-n@Kr7|T^P*{>W3qf=dl(AJ*wGFoZg(kHO&FGACiMHo|YzjeOXP+3Ms)4$t
z0ipyra0tI`68mT`5()bL;};<cr!u*7n+uumO3NfdOsHuIs5&@7o~i3M)dyM4fgy6l
zm2)PaqoBh@W{(ki$KQTfG{oIRIb5=NuXNVd-vmmb`i4a0?@fs~*ID2Bc(scpEG)7I
z$%>h`s3OlqCye7o=l~AFtdW&N{X<n)_O#gPcwJ5V63m`%Z^fRQ`s20w9lD;)*D{RA
zOaw3w#)nJvFFwxL(XuHnxU8RCZPMh`R9=2wu*O@=9Rw!qKPPqDr+%`OQS`<c&gDp?
zNcrXfZF8dWdj;#%PAKvTt<&GINv7lg03vqe<Kt7;m3$xr=P8i`oT&`mvB8rr-Nsfc
z^K=0K4ia%pI?^FiBG#ZhchfPW8nP(Hr`FXOz98@|@U1=qRk@1@zFtv1%0m8ZzA?K2
z!SFMDvtj><-&p)RW!JXFhC_P~ko(EOfkSgy{7DkKugqT~t+LL)c&v>_TE1!n5Y{p_
z{C&!F=&I6BLu^`!CdCd5`3%)XLx=QOMLE+HucO4t@_j|uOqMelIGE!%6p`jyx;`r_
zE2C+km7qy@;1wxN6wc1Gxp~24g2=dSolAm*Bm^QjBUUvi+2gR;RmWfLA8jm=-+}!5
zw{Lz#k56l*T#<V$`rVB!!IO}UCw*jQUVZxJDJh~OQA4j0MU~UBWB;oas<lP54_bN8
zF9-?)(~O1Du-`BW>*~ptR6r^YM8%Y!@(i_Xl;A{sOWA#@gX;6TvA@HSUVnLi$cNDN
z_LI-iyu*+*eI!kvmTSTBXUzs;KME_LJ;RCKTQcO%Yho(Cc<-3i!(*d{mbP!N3MhAf
zT6>jx96lvT=wO$GG<`1L`*JzVu$(*zc!u`|T-gU|@^hX0cGc~1b7&uYs7Cox{nB5w
zKJUH!IAM+Q!1=`*q2v+G{hey4W~PPP3z`7hp0Q%Dwfv(n+3#u}6|v7jh(>2=9lepz
z;%lm8=#Zq*B6>(0$3e8&J~B>M5;*=*w0+V5mxe#42ztQSgGijaChcq0^R3O*-O@XR
zv8@X2{m5u2uP$~Il{vM7oSAEtX#DEF^2&UH$!fUyk)Mdh^9U>E=0_JE9_Gm41<NK@
zE#>o#__2*wMd3x<4l%}6Ps5i8IjI~XTu1qqdGU_k-?2(u6yo!Rw7<Q$Wo4wm#xig8
z@W-Du9X!?H=(qdu9x1Osgi%z%RBPN>eKvC^^ip!?+~T`|l`}U+{9qn*1?!KtUB$H$
zU{-+<m(g&so~6Xrx3LlPTq4!>WA!$hO1IU+{3z0LZrs<yeqI7h1>xYg+ZYTBaE1L?
z17a$F6jD`n$(B9mn)W&F9fLM5j<o9PX}xgglOOI05^a!aZM<|93Z+6hVNbcX+gL_2
zmksv<4{8MGP?$<vuJ;h%mIA|N>T*ZptP3M}Y1gTsChA{TVp*%t-wKyb`@$YD-fnZI
zo8V9z{m_wxGK1~8$woJ^rszEfzNokw#XhGUi_W|{wL;wSaxQYXK+U+Trn3nsF1Y-w
z*{_=mdNJ6=;g~?!@}03C3#Caq#z1?xH0><r@eu3ncKrDE1DFF|$<e%2JdeA<lU_p&
zb$S+hPoDDb%Ul?#q!<}?{)pkR{|XKNZzv;LV?Kzwk#}r>ZU6(OFxyP~vZ8B@T8=A(
zkhpx}we|-oD1lF8o15-5N9fNuzN^xDIEp*;*a-QCkEb>+1XsnAS`t8@sqe(7b<KMH
zjO+T2r?_a1meU=}TJ_CL_gpb&T3v>TM!au__>><*k`SkHtquYlxNlbuWfXpVGj(ap
zSs}&YoK$!_*5o;k_U+gTLr#IOD-A<qJlkUXjAc_KBU=s_9A{yAt5dymJ=>3;M~O}v
zMooETarlUTkKTEV<6>V1qV!)kEop;8s09&AAp#DW-{qldK3@ROYu94!2fTR}JJF*y
zf}iiZZD|!GYOR)!1OXZ!Quj5)7~TfTRvIFI&K`w4IM+bszTjfd9BtxHS|WvrPHx|r
zx-SV5cHmRzI@H2S?Cvr<UW5-xL0VB?qOdua?*4L`P>|9e$bgetZ4t(eQHJEun8_xd
zKR<@0tZf-NxFzK58RT{$HQ04eymrEmcnv1FVD^C$Af0TmJG@XOuM%YOY7W_k@hqAf
zp*unO`55cL4pJ|P`yTraUM2d~51DhPO5FrW+!@tJXl!jI^qo~=3=a7p{!ybd`m(Vu
z5I~E6Sbp*Zgp34ozJLGbGMraL<ZPi!Ar5x!-^To9*JeoO1+JJ-UP_%rM8@DEP86|e
zh+#CIwh49~;0qRk6`m@=52oWgDYK+~F$EEGx)T*9G&QfNQzV@7+?XG*`ESB@zefe{
zgz1q#i`n_#d`zixe@+APv}1=(Q{0u{<Qn^wxF8<9v-9g4Az^2MU(RNH96##-%tth2
zmC8meI*_n}>x!MN|CBI;D(~x!MMo8lf&H_k{J5S1oOi?7>6eiUZ}M0S0a$l62<#sa
zCU<!rjZ<+;<dhU4xgpFW$j`Bysev6=mc8w}Ve&JO<={y1o9281J9{aLtZD*n!t)4C
zVaNd|9p=ZPuPDilv$XZ#JPh)i42msA6o9W27d#b%_c=BGy&QMlyLVcj?JdxVxM25&
zNP@0kU-YqwoMUbxnp3rfW{#oJj;cV0R*NHbrN1NyqBw@4VFBykEit07nK!LXWsO}t
z4HW?(ks)mTMa;*Pk2k`7J9p@el`C5^;2?3M$U)j_i6@85C6`y2T6-)&b7pP3=he7Y
z4gupM#w;z<7mm?nQbR{xO8(Hjx%`)9^4x?eJI+J4elcVEdnb9&xlJRyL5TnzF~Fp6
zkXs(2MOVPd-Bo~zS76u*=KZAsBqb6b9y2FjUQ?O9fwHryI=)Sy(hvb#*QRe4{-ID=
z({J~$b)2yH$8%OMsAt)ecjLoJbFUPi@nahg@f#N0v^;{$Xv;3MqSp@DK_=~=q041p
zU@Q$Cu?<Y;nqzVrx(1w6vEj*NjI--k2t<F*$Ya=~rAnG`tRY;C3`{fdiA}|axRU*H
z-~?_8Mez9hwxwq<v4bbY9;SgMsnw)nR-8g0<)}&z_MgeVu>?wKN^al~B&`$TTg_p(
zVUH$40X9?L`uFdj;@$_nW-)3zX0?rQ*?w>MB_SCpg3EZp+@W$AU`msSfQU>`RO}HF
z#ja6UfIaCHMm^B0<i%0wjwDF3Iwo`Zo>=zQGzXCLaTa~qToD_xks^>s<>V&SJ^}$0
zQV?3LS|phbx9d+bsB2zvRF5Do4Y-+q>Sz9;yxZj>*$ld@2IRt=;uYJ_nrR2v)hX^0
zdn&7xLn2ED@UY{7p+om70xMA;oTuN%0xVQe%1CFPp;rzv9+$(PU5%Q(OcXBd+l_(n
znJn}UAc4K<F#Gix<#XG+(sjtT3S4Ez|4Z4mVRsIh)dgy0u9EfRDk@C?MT1bLT<uJP
zL^rlT_SzQdMU2GzZv+tq$mt$I_vaNC84OrT6@h6i4o#D;Mp@*7p@poYBx=CE^(Y^n
z3^FZyB01}&tNaljd#~$n;w{|uGGy#NK(4Qi;r**kRaU!5JZ+ei6^xo1W6%egove_z
zy8V%;jf4=(YEQ6(qVQ~*88`z$m_Q%DX7}Le{7k4MbkV_&zQeOS=uZ08{o>SS_3e-n
zx6;L~EIhdI-ZgIEnyrOB!^bxnM`H0lC_@ylDfF5u%<57*?>`bdNr`a2L+j;t=;=P2
zpHM}|6sF3<!`dtlHg`HcG<!+3{JeksmI#F<2hjX2p#7qN{^9cTuYlu_AJ)u71rbO8
ze>I_05-W3rcENqss&$vz?UogjWVyJ_dfC5_1yK}3hg$|U-&AA~N&+z?XENI%C&J9c
zx#8YLM;7bFr40J!b%Jz6&aQSg+u!dx6T;mf9Ib(3E;{TPpjL;}ylsmt3p;V=PYGUB
zV=-dger)#CaoxxO7v2(!xkWnH`!LO>bl1~TAe_($kOrmv9cG;$#Ut+5=biYSrF8r0
zj}RjvdZm*3tS0zZ0)orT;bLgySm<(nj{U529kxn4*!0z2(!j2(t8B9mZ#zrQ5m0xu
z9>>?KP-RQ{5@)UqqsTY%Nj-a;hN~pXRp%AHSw;;DwU7xj0W&%gRh1jfc%UEs;}NKh
z^rrbLo$aMa=T(I40`s!hJwAF&dJu^IwMw(2oyv#O`r>u{%tX2Tk*C#N{tpaX6&n_3
zg8BAZJ`{_lGkHwih7q!_hpPqEjG)>e2erx?;jXZ=a;`DD<PEWBT6XLbwtk^j9jEU7
zLG$hPYb;6Mqxln79InVo0+-&Y*YQo!<>pTj^c-7QFk%nU1`(FF|40I{M8Wn^*2)u3
zD%szCS?%n92o(3@iLr2X?8;;`EIzmb4weVHUT2$^*cCMW97pKcgT7YA{<;6Yh)^uG
z`B0}Auzhr~?b{8=2b>j4AekV<nAe!4tX!w|bc2edd|h~fnM~*cwhRs@mP(jLZd_wt
zY4|GeA3uKFrf*=L%8Vs(<^JSjJI0`R>lBzqSbA)n*iUHXC!ScG04zJ;I8Op<6%B#D
zG&=L3a9O~YRbH)*+sw6UUg7b)eX(l2g3RjVf=Z{rWlenQtDG=W5}fr<HfNJa;gt%J
zw%=8R_w*UX|KcA&RdhgAdNZ$<2u6z4yFRw&9^?qQI%g>=jO5PXtMwD#&hWiyA48#2
zh|jf{&)1-{iJ>=rGN|b+X1!<{Cm!iV4RRr+pd8>B8MgSS3OKp&BF<q5g5xw_Jm@AJ
z>cq+>|5T5$PjJQP?Kmkjce!A(MP~dx&EE4mL6)4!dIItBpVmh`>fJLCYzHk<yi)tM
zdOVLC^woW@b0_dW+DHk2g|_FQUt?>sKs$T><44UAPgf?n<<Q~y9=qHb`M*>J*PUbR
zdU^EVrR*A)mMPn+q_4W)OWwHUGd+dT^)Ms>LGu63da`{^;6=9^vR|z(VxinFS@nEz
zbCPEsL1<hlbKn0GhzM4bvwVZ3(^9IJEl&K7%b2=?=f{|3L`Gk+4-m8j^xeKXu_Ll(
z(gKc+vVGd%{owkDheFz!&Q{Gm!$&FBsuAbaUm3ss16SDGiWc{XCCl`=iG33C(K<g*
z<Ep+OLT+O<uYb@h5RPHL>je>Zew0IuHq+GtTc#qMQP==e47;Vf+jx0PR`W%CGUEI|
zm6`tWA1}`!XXK2J9aKkf1F*H`u9bI4J8U3@O5k2Q6w~U<uwRCO3}FH^nEP^FWqc_~
zMUbc~-`$V1!s4;Sn*mLW_MeW%1K32Z4isISG=D2D(``+eWuKQ~e?Yu9Ah02v4q~z2
zBlGJn!l{r+iNqC*Pn<-Ajk}`1JXypdZJN^n=Epe-;#Ld-0OI9pCFv}j0P~1h@J7!@
z5Fk9qoP1>o4Tu+|AMI|P&i`*RX@EVY5V$y|=49BMC{(W`Jrl%BBGj!i+1|7_`3V+s
zugHAwR=qeTw_YRJPyTOZFn|Q9`<UzLI}aQdl2f@`9ak}C@!7m{u&n$t+gM4v(bFI2
zoyxUx7mt811L6QdV8k=*a4hSofuf0s#n{D#FCl|RMX@rcA&!4XMz;%CR}@+@xE5C?
ztjEOta00zc!3WrIlH~vNcBLGGC%h3AzkAQV_GXG+bo6_h&#JV_tHQVH1$n36Ve=}G
z+TQ<4CWN0sBqAHjWvcN(BG5Umx!};|OzlV(f)<j-|0`ez8J*@Noq0@xxb5_+Xr$9d
z3+w3Ws{Urd){_w$JOs(G|F={%z>)C?gLmX_$xWC}T9FKxDtO8N*NzAc7+}-9JJz!K
zzk&cV9ml#BKJWd1eJS<txu!)qOZVTL1C}a2;JmApG6b~pf6tJA&tkTOT^Gdzr&!!e
z$XleVW(E+aN9W{JCdZlo`gf23(PVd1dtN%O`l9yjSDJu0O|@!?T&IgLy(+G+r$m62
z@?W{TxNtX7g}9P3AkTzqbtJfdoAonwKvSx~UD~yPUzvFeHO;;H|91U<gP@f9ueibm
zfF=ByXA-E<(FGgh5;O4BJFtMLC2Y784K$d25FR{>D$jEK7i1rj2@hO<6T9{CK4ptc
z4!(=e&6+G61P(rs)FS$%1xfL&8-s88+}(J6E%#4;+L~Rw5sooeSJ-Ma1*F5m21ADn
z-M#D|#NgaM&u`;$2?Du;VG0^Yk<9!h3;9Jm_^$vC`rr>IhDqsXol7Z4q@<*`tpPDw
zpZf(}WS<hgm(H1Fz5W+kfKw0NF*G#Fd;|D#g~}C>@L__<T=HNX!I)bX0hv3hmli>O
z(bx6X!{Y?bN)Op9?2ZeIX3{SM@~((7T+Cs`eoIAe-7irR0TKt7LS5?_!Hjxk8^Y@D
z)yBORmF3#7Tr7P}vonsv%&77BD?L)d%U@)!42~Lyf9L0(>^w|<B5U5dRj*YiwR8>~
z_;_HSpODjt)_mB9^(b%d&l!5MR)kRRapI*bgx-A+Rc>x15cacC*ip4EU*0*fd$eZw
z<1uCAQ8dGbdDZ#3bj`y%#WnYXhR-bm;^Cv*+!1|6N`9HN*f$zI0|)GV8MR84x7FpC
z3TJ28Jp2{00o_CFT9$EVMoo)~Q*;A03{N#GGb^T(+l~Jm#1KNz+z#(|{lFCFJf3P+
zeU*Io9$@#Xl<nh>#N*CuX5!{e9t?lPL77HCCcKG4xuE4c9R~8i=XGIYIbW<QhRlZk
zjT8u6GcZv5mEE0BO|Al6KV{_wzc6?gubxUkXPWpA_t&S;KGyALGq^4RS+hL$oe~@`
z@{Ns+P4CCW8PukR);n3X3EVAVa}R{v#h5Il_O$KuQR2o|j37>l@R+a?ICWKnBUjF+
zbqUfYN@Y<~-g|(~LQl_6w4)%#rN>?LK8)$>6KMAIK?$C|32dfYj6`muVYd;F?tRPi
ztf_~*XEw!sZMd_G{H@6}vHu8c|H;e&ULL)Wom0wlg1(!X=f&OSSPu8*UU^}wYjG%%
zBFr(yw4?iWLqmUJ?dORwfU`1Wz@zt6I}k+F0r{ae<onSf3DX6pKO+%TSAW-vu{V8{
z@x`IPMy~@)UlR4+wqH?X5J<6m7F?Zh&nsD8#wuyRD4kO4d!}#W7)`bFf<MgO$&aI|
zI6_Cl^plh}LCPIvi6QwzZ=H!NIN~?wNa2O)EIH2zf(fSEm5)!!E9~zUHau9h`<NLd
z+Dc>6TxbNdW4zULJmNl?Z2zPo;5Aw93A(L*g+|mg=W;gJSlw{MBeb<>uOx?WebPh$
zla^R!KYVvh7Q3Wlr+>o|qw8XA(ZxFFxqSV#&$eR>ayV2-*Gb7`poJaxqA3uxTwQ?F
zi4Wp1IBrFEqBiq;ki92K7a>f~jD4|%$mXWq+_r5zL*F1ZFG+$PU)&^?<{rxJc{iHB
zGVW^#u2L@+>mGCHjIACju0pRVBF17k5mH!g`3RK{*vp-%qGb$379A0%F_HhvURcV?
z=?S{4NHW)={A_!<yIhb1MvTLI`J{y+L4c?~?%%pU`)XTUQ179#nDRg>H0Q$G;l0R4
zGqICmWzzvR1sK3U;;*EVa2{4Uk7`bka9R!~X%5Ick6<0Y*yQA1dn=W6bQR8=;Znb?
z@Yjr#-?L&eUH#9P6F2qk^cp!Ko@XYGvyPU?qX3YDLxEJ#rRwlv-##!mjOSj~;FY3j
zWXS8TFLidAC#mT!+qzx`0l(lsV$i<^&_oC6C6RId;t0?qrd27kN8RpV^zBi}{~?|n
zl5@#K`_njzr#)sNac%462Gx;-Hpci}p~`Zw(9nRqWC=vey(B1vsrsHkWy<{h1W}@y
z^^k~-X`DxxC#gb&p@ylc*mu^2qY|p=%ha?1IkBQfU#WEb_!jAo;*+>*2o>nK^b=p;
zn9#@?-_t&Ap?u-ro=Nd{o)lz!WoX4V&2AJfVH>-70Ov{N_mQ!R=*%c7y_9plsfbx&
zS%cJ<IyF~)J3Ph@wji^MFv?X-3i`_L_=t#O?OfHz{Zi!=V!?ObYi4UY_9B5{9$3)g
zokST?=jN?2l5#0V%&xX`&9o>*y_f<Z5x0N{g^hmmGv?c#2pST)EfKIjreU99esyah
zYiJq)H_a6xlOFq&G<3q^F~^TAFd8v}V9#NVHgxOFyZG!u7t_IV54@KV=&H>#MZ8-n
z8A8sNsh^S-tn@6l)Kz>VzxFy@xt#PIWT%gT6ycVlKTpiO49%s=YHJzWP<I$r&^rw1
zjCBZ%!G??8Ys@EdDP)529iM+Qi6xI{gT;JC<U+CxcI5%?$-Uo+1H7c5W2JAJ%U-h=
z(ndyZmschP`jHhHlXmrDHYOF&;b9PNu)G>RV8}?6P^I08#BLBr(UFbJ-f_{@AhyVE
zs4O=C;JN$WB;R9+QBDr0hh-n;A!1A8JdDZrZLNKBF|S354Vo)8<5mSIj1{6y*S=;9
ziK>hn;39-!PTLfa#yyk85Q<-LktYK%K12`&KWL_A`^jJmCzo`TCIN#;=8nMSM_{+x
ziagc^Z(KLqA11hcrUawydlW$o4%(M&w+f^{c3T3=G?)?Ee7zMs+~~HcXvL#WRqQTG
z&#*D1pL*8x^Nu%?$SQsQy6Up()ZxYU{+OP27qj^8E0Qil60@ak0_ELlmuP>NUHEql
zM8TrLfqphR<}dbi+x7)X4k%|iEazaxK7<O9h@sz%6OH{A$~i9qwl1=(y+G&NK@-z?
z{Wd0|;B9;iXRU6>?_JWSjHGb?T-kce1=?{`gHx$kIlA2nGPo7)sfO{0hPP5lIAk1D
z7W)pH3cTNAFP&i($}2p%vg@D7D`52PCX#HS{gnnLHE42Y($F<|)So??%%)TMBctth
z&i8{n`%BcfD#%>+f;ga%Me`tE$Q)XB0&Be43<pPh)p?Y^FMalSzg2=BT9#U6_6m-*
z;LZmm*C1`JYm#*f#aJIZj#<&r@l5EGjCh5^?6^9l_V9D<Bml|Rwwn+r(RgX^Kc0^}
z)%j)^x9b6SYOYi|))BLXhj<-=&E`k{#+lJe5o2?8|2OL4M;vPnud30&@6)e2W?h}y
z!j_Ys1#g^l^XMskF;rpfT$u*)#qNe|8Jpkh-8jGnd|u17$7{XWUzBAJu<R8@(x;4`
zx}{5!$=uXZu!)r;aOs;C4s*sXOP=+BXfp=Bq&UQbXYlT2@l3k<RQF3wHOCcm!MeE^
zG~&yi40qG7Oiiy2B@pUk`Gr|;y{4QzSLgDy{p=ll8}{Qgo~@H5%DQEdxtv;2Fh_;u
z3^1A0_!e?{9B!q2^)@+k_+knIF)DRcwV4S(@KUU;`LPRacs|?&K%OMtu^*|<QfODJ
zi$-AHujTT=14*#W3C>aRcXl2yN%>fgLcDtm#GWJqOWM=rO_I~zO{XAG;_rD`NHZ*4
zniv3lyY>GFs!872gDWCfqo6iN%v+Mwmz4cv!?tLYq%T^Lk+peUhOZe5Vk-f<c3W_b
zzu84|=lX?DYEa+mCrhj4R)>M}?r6W<*tb?%4su`|n~_F7OPOkz_^oK>mSnKe4a3ya
zSgM_W@_CYQlIaNGIvma25kv<-x0xX#HYP<EB@y}&!o{pl4ZF@EhgBD1Nw5Loq_i3i
zVK7d-!}J!lGcIpwXLqn~fR`65KZdiTgJH(i>Ge$5aHq0wngatrD06*`IyO~5=fg#z
z;7w_g9vZ#ZdhwmvY^ZpK;#4dRyKC>fmk7|xB#Y0|aQPXc)$B2Ek}Q6Env@Oa;AS>!
zW%kP#Q>4}j%1{3w<qYbXPw9;{MC;<?mcHY^#Tk3^JAI@-N4AK^d2NV&*`C*J1c=Ji
zW*8~jB9ilNliIIJcb;k<9opB*HWwqSkDfQCHp0dSaZdLJ3gXKJlpEzSWuY37^M+eC
zTtThuE{POEEmv`#v~r?|?gXSU$p|imEJne9Jo<v$UlieT=FsHu;7ECbqH0ll6|v#M
zK5d_I45Iq8l@$kvQ21S|NTsZ%sPY>Gn;RF3wYE3Vqx9Kri?iy9wa+i}E>@yXEIPvw
zZ9;UXn3rt=Qz$`cr;;<~x3&YT+Kb1J!JkoDJRV#4dxmuWx&c>yAnlcVB+kBh_0`86
z7dp2haI20X?09z`cGYkkX`KgL926{LPO#mf$0ev`t5<eB{@d;{JSU#)$R8=7BfUIT
zkO*Eu{V<5hh_R)3LGJGQG>7uW#MZTFm`{EI3H%^YD>=ZKRDHA};FhDv*_641ymuM>
zg!$J`<=4IEa;rEE&J<-lb;}MDF5lr9J1BExOigx&qC5ueUW%ubWt^s<{5}ZzIl0(G
zX+HPCtlaoH;VRR*^KU9WD9vSbpK}~=NN0S=l49=?BpZ(W(Ur0D=UE;cy=bqpP5mS1
zLVPPwxG56}z7<e?Zy_AxGVtEdJ!~YY&sSWO86+zkzC#>e#EO)1$o=ky89Q_5gduj}
z7nkd?nn5;prWbUiS6Nt7N0j$+8j58QX>EU_$~3%tT2OM%&k@|hY(yb?_Ivh-5*wkN
z*WTFmS9b`VN}qO2`EOgr(b*FVgTKvUA)_muW_ImuQDu9UR83{|EFM4NEU4K^MEJB%
z<v0tNiVgqRWXFq5Nw3AP3NwE_Ct;z3$lQ}}2UUqwT<UOL|G~lsbZzfAS!~QNFA_9^
zFh58N`@#z5dHwDzUzj2Wr|0&lV!h}}O}&T*k;kOU?^)my4Lt~iSWEv*K}XmriA?Mg
zb8w|_saEgY{g&~WJDvLW8~tj8%h_fYSr3r6GK9NCL4$rf4g|uBKe$Lf@?QtHnRoaE
zMqkc)Y4<hKqo=Usilsg8RDtd74T;{qvv+ASM(l_s_p>G25tw}7OtT~HW;T|*)&gK5
z5z*ZFIkc&COojOXgT=jBXCBhp4Wm;_{ND{{s`C0Z$vn|QujNX$rNK&zvP21MWUZE@
z>M@@su|wX!zj<t6SzBHZPt^A`blyT=mjhS1jvWnkp2S3_RE5^l0(rf5C)Td{{I*_x
z(~mLN+fn@nZPUmYS`3NjpRwV@N6)gB3ipI5^XziX#(dME-K7~X7-O};PfaG{+75XX
zTEkUZ+Jv1_PdV9P?{%#{kd9s?t5|HEVisk2bE)l#5U|)b`~E>ORaH&KWlM9*9Nlmk
z+pu%jtxBqF>3*sBH|dHC7>2*G2t-QK*UU6r@ztq!;rS|Yi-?gt7!JxrfC{ywk}xpN
zL+WU41Sy1J*y!4tu8(y_87J22<!-&2C0U-T7IZ7L9+8s!$yd@-kVlhvy*`Rtu}y*N
z`+LuuGSB71Epc|(vEoo|s<&&9HJQNg63OMfeJ0p&b)RZ>$Ucxw6N#|X{1&PGOrUzA
zpvsv|J`{cD+Vk&Gin_rzd;?if?2ExJ%v-4MTxogygD~<9)gweAy}ISPd<eLQB^p$E
zHqu}G!%-3qI~)p7>t|(Kk4P7Y;9(}i$O7`wOtV_kQdgE0x7&Bg10Zg#H#JiBO14?B
zFLewEcFR(i-q-9gm>9b(`6z%S3?P^kg6C@Sr!FKW_AklR3wN*M=59@NmxnzAQ*J%i
zzEz>!Q7B+uhUSOOZ8uXXaEVDGb|hYXX-ld=SVdN(80)l(B{I^_`tOPi;5NDnmx>o2
z!fj-(A7c3~Oh>;j`!1iNeh?Wyf@)vBL353GOzGdM#rwvG_;QB>WqeZ0+}T3MlnmV0
zjnXdE&?3NSUk@As&812j8cyZ54@NIEm(}We8K)RVEoI^97I14(b;$?!P)^lX6w>Nf
zpLqTr?r?&-*@a?m6;K7jrtXoZ{D1&zOOgrk4Uu888n!|r0(qqPhk)@52aqU|AcaJ}
z!{fg9+XtyL{1sCibT@tljqETQbt_-H{UIRwy4Uq4@PrlEl#d;+i{7Bw#AXNw6ni7#
zd$+VRIyr|zCB!goMeFOU-&?u-RNg-F6u*uOdb=If?fHj!FT+J2&W{TnDg5<TzL{2m
z5eqMg0uR0?P<_0_^cOF|mg!u`S@tH+_(+osyw6zl75BI@&yrr;+UxqF-li+{`A_Ao
zO8CpsVj;e`;5EW5>#-jM#_jE*83A`o5swArP#@|>l)IeoUXQ{t<DYD|U^nQVncZoM
z>dhjSqQSJp>WJ{0V9H!iGZbv}c9DZaO&M^XAae`#YE=iRz5O1S)dgc<(TGQn61MJa
z4XQ+VcN(VWGYNl$NdC~r>(_0AA2Z4aKhuSVF+quYcmcL;GuyhgDVNutgKk<z-#FX0
z8Jg$_bvjdaBqI*K&dz-$>TMuJ@J%67mdxA8KKkef2@g{z`JNijSr@{Sp}h;+dtMO+
zQs@$dQ{+>lqB5w*mD9kmGEFcqN-ZdJKnt-_DP4j|Qd9doS41X**yW54&-WTyf?@ch
z1rAF91GbhUvRFoV+#4vQ06Pk>^bs|wk-#FDY{lz8*p|9}2AoVCPfdkZzpD%S6!vs<
z>h|s0?+@qCHs*21;}JnkApQR4H#Z_vOa7;0%*`eF>L(_5w%bs#etu3RFUPbGhG}D(
zlx-oa!OkOQf(W*_M?7*DY$xv&;9MxIktz{iUd*DVx4sdsuDocL%Rw5t(g|<vK7PbT
z2qTSrz$aOpTYX?r%E{!z{Vm|r9$wmo&gO}Nf{1wdF8h8kP|k38gCc4?<5J^+1{|PB
zae+sR0Gd;$AH7gt{M}eHdn4phgkE>*jZ;GthHWk9a<#EYpscs)!-Y9Y!na!(8^Rzh
zGZlwjf^i5{dic}>;!c0)F48<qu3_bN@OMiP_=;a$w0ZI+sXpnY8MRDZdBFqO17b|z
zvh*YNoOTptz}R+d_z!IIaQZkGpIz_wQDp2DYTo^dD5c#bl=R*^?BITx@SH$|>SmQv
zKg(w`^ig?!^m_$@oB9d*hF`6+;TGq!7kSb>i|@98TU+eoD9c?>2X<RAOf;zw1g9$2
zYy~PM$rnq}x0=K~(raaaCeY3Y=4Is(K0xAT0-5A8%|={B6$jNhp`)br*uSZniS2;J
zO%k~p89jUdZYu4WvL)-4KXyB6ZHAuv%42f_6||4y9bfSxwVu{o)YCX8MOPW&_IAHq
zzSo|VY-qC-^ap&ovxwQgrWezoC`uI3>gx5=DwpzV`_F#-T}(udcC*q;*vQG;7pe&<
z0?nR+cgkV$N=z!?0x>z$aIzDc^5>X5eJ$@=q`b_x_0yiyb%Iej59xRoMQO+{{<2SN
zHw)rd55u%qXH`jl=2Ct{Z%+NvgBnCS&}(FX){5>|7F*SK&zu?Xo?ZbGJ|t&dTzdN%
ztQ8y|G`aPF$R<S`qkmSV=IWX=h_g#ZuO*JOe1F9ECLE%bDrJdPg1C<qkz6hD#EA~y
z0-65(*3SU_)Ej-8wb<izKwTITO|0okz54fl1yS;NxXq$YZZ)~X2>srXM?5LbIsXx+
z{U%I4i8YvW_AsVI2)1%KeEN#>w(m3|n3Oc&>I2MPc-0pJ%!}KpA%-;?l@%uNX~lTI
zU6%ZtRZ*$)H;>+)<ZxG|6oi}C=!$D{KNopkwzC3ukeU1X?mcsWoK-d=w)F&)%u+l(
z2p;t$OmL|9ibw7D&SxU6PKqb~jkaOtxnxY}7-ji$1BXT>z@^<*{72qGjOICP=*-}{
zH^Hc9kV7InMIQ!@Ow#pX;P#M30IeVpqs3E&!N0P3-zG`%3$1Swq8w=+;ee!|P*A9E
zC!|K}mlQM&;+*tO2Rpsorc>x$uyP}of)I#mv|^!YoDc<sM*SB}_AI8XK2B-B@b$#O
znQXMKqAmnPVwqf1wv<*)nLI180s|YZ@X1DdasHT@{a_M$e49R7GrOhO#eTXqnQWph
zVVdOsfR824%oMPkxM!TdKKSI29WD|bj&&|00X{(1bVq!h_)|VApl7JULnyp6%H`;E
za9%2A!#!IT?XXMuDs#k3#L(<@E{TKhNW;LX65=6*-_K;(g>N_%-C)#>>K5mgU^Rz&
z7PSl6s^T}}h2hV;m5}8y%2UiqEZ0OELl=VW)@69vo0CB^W;{fx94sslr{qRo#EY%P
zk7cy6%>#K|BQ*KrF~I+&Bq09K5<vyb@W@xQP67+CDWVvYh3{QtyI5>)Fen%hIu0A?
z9yoK9>95!HS<xYBP59Sr)q-QAW)KJ>P~ula_%2ks0ZE}LrRW#)qM5Ju<l{8;afCl_
z+a&z~(DxD$YnX(v)@17>KXG2mZ)?`B^~KVS(&MDetXz>6EG$V|Nv#efOdmIeOU>gz
zOqcvc6lW@Cll61Bb`u~Wehk8%D~3hJ-AlY6jZgc)R93j0x$Zf($DYP=0^eO?omKeR
zS9`9XTzvFHsc!Bahab&BT3}hgcQaw2V13FjhHso4NMC0>4Q$)X!koD%*QviY>D%Pl
zU|Y-lc*RMvt$ZdgGL5Uye^G(dFN`ZjnjVbO&U&#x3yzj}LnT2vP3mbJ86rN+SNF}Q
zu;8n9=q5EZ5{+_}kHiT`jM`rB_;4QlURC1v<WM&e`UJmm0XYpN&@bsJ2xos~TM^qT
zHwD^TW{U2Fd?!?6`yYV`dmXDSspX7w&K{UCpm`aDDceKzIv@d-xqf+LFRE+;NKQkB
zxOPJlcM-bwM2q*s2XCy(Wl`TUq#qWqdeN#-J*ta%Z!(5@L8|iJXr>$D))H>V#U7>i
zZB{k8|KEslf>hq4(FS>Oxa^Xw*ya5;$FwDJBHeAnoDK1Y#6imk<~6yc8DAK*x$L1X
zf8F%IkUEy#6^U_J5I|v+fIuQzq{DAN#iZ`6jNYMloWPw&5`E3_S0JX2)S4+$C~;s!
z^kz9wU6&Tcb^9GoD{Mj7{|-|~@#+_uY;KRtCqM!P2nek@C7f*GDs=r=E~OQ{&F_lc
zfq4pBFuUqf7GC+~Cm*L<m7PDTujnp$j&s2VP8AgBvvDxuXcOwTK;rS|xD_8-CYS!8
zdA@16)r6nMbh0YOe6n!b2CdH+X8i?I${gQd%*^DEJFLJk<v}G<J$R}REeldST>KnR
z2@LbY4K(S7l%4r_k%-IR?HpYib&Gr$o8hc=cCo%WdfClEImnPdo&d}*M68XTw(>LE
zOV^-}?UbAg0_2tjloCBM)G~c_{ZuN3@4R4r%5!<FRdQBmc54=b+xAyj|C-1k4F)W(
z@RtE@7h*v-B!rSlv)7ztjY_9jjmHf9-OvX~i&{9az)BtgsCjH4yqw%wG&!woXvb`M
zJ4*tb*Da(Q|8K02LGbdeMq;e3;K1bBX7L0?-z;>XD}Yy6pdsmS!O@q_km+>3RX3Y`
zpWqA6lFUn42`~6PRkc4bPauetkm<yF%a=zqGO?SX`I~bA*CeDNGFfrJum5}hzp4P=
zVts;W7Oe2<KJY!W<fW3<{}ykwL^oDAR_a8-b6*I8)!qa-VPgRk|Nr;HggAsmP=g{n
z+Gs0GvFmumW})0CAy=0cSQ&ue<e&!e#$mShaSbR~AHu<;2aapzwta<))FzR6yK$PP
ztQPvOq6j59ptZ-#&+SGR&|$XR{3M10i?w*+o}oe`o;S!5gH(OO(}k(Sq@0PIA2`eu
z0Jt89I`}$2mR@Fu8R6gtcH3wfJSjM{wHkFCm21Ev>qo0+?G5}6+9z)*KI-x6<tLOb
zWw|fD7p4Vc4^6BC>Qg9^5~8DEJs$a;ZuN_)-Iv9Q9wL5R=!odj3p&&n>YocJZEud?
z-nq^&xD42T80o71+fHW~sTV6<2HE>j(Tgs+cpJUEZfq>cKr5Yj9J%!1C(|iL#3<;P
zJV#M}@hnuws)~o7->ro351QG+UKTH8yc^3t7UA19L(xg4$QEh9Jo`Y0OV@!DxXJ|Q
zlPUtReW*&%zG94g!VNgz_)?5(N0lrE|6_*Kx%P5NjDSXT3?-ri+IO{<_8dWPVWjSn
zyB>V88kWEJSF`srT^R!;Niw>fX-IotfX*tJ*^W3A4V7`|(I812i`0N*qJsE(M{7y=
zR08p<?BKyy-Oq2)hZ+Z5k#W>p#w38wPYRsq!UOot?YJhcwef<{%dUC1O?7p7vp+Bu
zPYP?w;(@TK%_&2I!KM&SHQL&X&|;Ub1lIOfH>p1R)0?L$<iZX7;wD+~;gA-tBhk7!
zG|@r@YOWVvv{hc&5-~{VqpH_bXOrjY+K@pIVvz3vXK3n#%20?UT;;-e#h^ZHut>4d
zLmA$Yu1W`NCD!v!Yn5f12V?I(Q<j*MR0XlgUPDKwqk`G=av!55YO$K^2tAGCMLEnV
z#N<NxC_^wMQo2CHS^km0fY5b#qB4>ss}ROr3iA-n*O9^Jhn_$r>B_UWEpH@@u{Hui
z!tH*Dod%nTd_AKQNL>3B)p2{DKvS9^B>^_j{6XH`#3P_Pu~YEPcnTVd?@+RL7wpcO
z00WoFBSZ$L?cI>IXF{c943CN1D7J7;MV~Q!XRDj60gbQX`}EFRs>BkwyU$KKw2gs&
z;f8Yb942-dIwHSj)Cu0E|8G^`gLv$DbJd#1Gr6?0A?IY|sEW&<`&o%?S+CO9X(xO(
z4GakM^HRtVZ=lq%`pDZ-;jikb(HBCZ4YqWnp8P(a=e*rS4Ws>S*ZFHq9nt~o`!JV<
zzqH;bMskHCtoYs|LoXN0T^cYWVp964q!B#3vjQep$Z_nWp~dQHJF|-`<lEbTN(9y?
z8em~rPb)P82*8LX%*E=iF@2(K1^JR8>*8G?gRD@<Cy-eDy}&hyEoO7hN{=8od3&Iy
z=y=JJM7SvkzfQreLd|buo)&Bg7?fPEe`pHkSv1(=qwnfPW#`7U<_Y*lFL)9dv&3?^
z2()q5P>ji^BHRSwMGJtW$W$F~azC7Z{m6Jn_c{}!isEA#&mTuk6hvUNe}$l2wh8OQ
zI<ny@@Iw8O>!@QU{Vg$9e0I8lMW_1LUMzx7AP8)qAD&MfA-EEO^#NzYYA-l2J!}jG
z9*e~Q111noq}hSuY>8S7O&ACxN^0;ICd)*VYORlK9Ks+FTHDm%>!wuVl8dvw9pzVy
z`8M)Fz)A7*1-?2&CIV;)icTdr7HIw|+z_0Fhk)>cOi@Nshk>1HM)n#aKYQ0E-pU6T
z3#2YTNM=FBQ|vE-Xt4i4OJ0{ESN-yHojWot0(1W!Q=)M<`^k!Kj0y^kWC4vT^^1de
zx_Pfv4z;5NQywHp)r^#QS{J@=teuJLD*llSf1`^D^Ls<Nguulo63W~2_aovj1sw?9
zOJImJ&0ka9Q}v0vydWO#LYN_aX;73{WYy#SrZZ2-VYyk+YD`-EvWfIV6vd%hisW*{
z3SVbK94c8#Rdp|F*E={UYUyFnEas<UYn>|0p2>CY-~KMA|3_LDp<g6kE-;fAFaIY$
zHzLW}5L%;JKigfnk@tcG$~TJ@c4PxW2cFGNT&rG&V+mLKP`R??j@yc3IfxIY=r6gr
zE^JF);t^cxI6s<C@3_$eYUrjc2JQ<#?*9=H>e^gS7I;s0GTbn5W;GK+#PYhNZUZ%B
zgtOamo8Wp`Ei@bV*=;+3IJ!fy1~i5mp#@kyEclm7`~aSG0+HwQ{D<Qg7CaoSj-(ot
zDAIz_?xLSu+KZbSeaMD|-<avFaST;hbfNrA2@z}`d6P$^uL8=Dwb%z^3M)BwWU$S&
zV8)>5{^(dRe=QmJ?4F*}ixnpfOpJ~N_@y2f7#iJ))o-I|jc~cBa^{NV%YCpaD<qyo
zMehB1>Tzv@!<!pvDfV%SzVT);wrO3a(PgJ?**VVt#b3GfPtg)oSfe+yu2d*hQjiEK
z?2_g%TpR`+)v3FE(c0SD13VC^JK&IbSEsI@05c@D{HQxDZ$SwzezG{orhs9|gPlK1
z|FgFRvCRG5`PR?{Bc(1Z75v>85{xq?EWa8@UZF_snWkBpPBUud!AdBs^K^4tj6}fD
z2=#qdbh{!is^3c$&dm0hq>qlMqmx=O`tAC`GXX><nrO|-6m7Gpqvd5N5eagD34m|%
z#1ssJNI14F>^Cnu%#yc!z_0LGG|_JR>8JXTu~yw-7Eb0i;(8*96Y8Ia5!#d1T>e>X
zp!dgc<BzHHmDF|DQ$K2}I@`&=gU6Xc{E6XhI(mA&!y!CYgES4w5E}A`XGDZTFY#t9
Sp-lwfPf=D)ra{U)^8W$BMNpyu

literal 0
HcmV?d00001

diff --git a/oxAuth/Server/src/main/webapp/img/step_ver.png b/oxAuth/Server/src/main/webapp/img/step_ver.png
new file mode 100644
index 0000000000000000000000000000000000000000..e90fb543cb865f7949a4e004ee2e5b15855dadfb
GIT binary patch
literal 19123
zcmV*UKwH0wP)<h;3K|Lk000e1NJLTq00Aff007De1^@s67W~~L0000PbVXQnQ*UN;
zcVTj606}DLVr3vnZDD6+Qe|Oed2z{QJOBVnRY^oaRCwC#T?b%fWwkzcW-{r$>}GrK
zjjhyGI!F-(mPHXz)F&2H1QdPxo<4mx>|%Q=MS2%(ARwZ^vMjr7?=9Ps&2D-!_1^o=
zckaEDNiuDdNix~|M~BUB{`v2J|MLCkoc}xL*G$tSB}$Yi$wYCfE>NOGi2^7kN|Y#3
z0Hs8U5(Q97lqgZ607{7xB?_RFC{dzB0hAIYN|dA~9@Pcukpl-0lFQ{HPnL%?jVACv
zX{uM03_~$ZgZ70(VKNMZ#*Q7M04j4v#-wm4^tmjr_ZzA=lnhJZZ8;PUeT^5xkJD0}
zVv?sv4jw*)Kc-}PJZm+Vt5EfblHn?>Ikkqv;f4I;t}&xV_o*)BgG!UMx3}YSo!jG4
z;G|?&3vbeeZLO`>@u$yqDS%3o96oSRYi?{j$Kz2}vy$O0yh+pXW5>^~*?*wVb*a^q
zu0hH26pR@+Zj9#AD9h_r9in8|il%8aaq^@wd-v=q;J>yhfXV>bxqS!zFpG<e<@7>{
zlHn>i&2DaLqFp<8X=j{%M&H0rImy!_v!+ega&vS4#U|bvr216J@K&KH91g$c_xaD<
zykna(@iIYja&j2!&F!I3=nT~xN|ey{?40aASE2wajcP4vw1t%Nq(lkvI@pp9s<Hy8
zw5hfHf0w!4)KeQ3BODUSE!1I6*GZX$89S^re1if^GBp>OZkNnYjemA|vQqn|VQ$BP
zkpig98B1bt+RZ-&_!D2Z1rV{eRW^PWxx8G=(8(;VfQ_g?D#L&YqY>cEW7rN0Z=UXe
zpS&%NJZIfx1pU->csH1s^1B2Q(A=^X6hLLvls3(S{KsMb%fv*3ZZas9O`1c6RpVsP
zjVaTKsz(z+lTwlq;1pt1Y76O<r4Qc|S<~&N{JJAlbYM4W-W+PJtD(k&J4BO8B8M5>
z52k}<sQ@aSDwHOik39(i3g(?2CST)G$}g`bJrpFfse!eqQUy>MqBZ%#26coj%}E=^
zA>SrzO)l1+Fh^bdv#+UM=C0e5l;^ic)<POIPsJop=k(TONOq=zWr4P)&cFM7%Dfw7
z!9oc07_<b#)E?FyWp|kGxdxkfzDP#|+8QWD(7_ro)6soOgG#3cWewhzq)_J4c(5DU
zl-I={MQrC&IBfl_WWcp1NQbR88Km;$I6dQHjo!`L695WxHPG55Eb$a%v%Mme29<%5
zl$iz_KG@z$1`j@d)-VY|At0CPy@6bUyw-GRO`)*(n@j~xQRbaS?l7Bnn47$D8vJvx
zqm`$qE44LXrU#+aib%h}2i2BDg`#kvox=VO9s$krJwc07t7E{lCVc#?H8rtG7tl>*
z&cy<UK!7y+#13;6b2f!d6mx%XI!$jS>6Kdk97()$YvOnecC_$#yDg51-={RFfz+CU
zI<*FEN4V;im>uQ8rir=9b2QlAB6Btc6Yq$8wDhQ>YDJ`9+HEZ=u?lS(wxirWJL>SM
zo*MwIDG<?`45c+C5s%*&={?L<Ar>d^Xq@16D1gdrNhv}y(AsE?Av7nPmY9lW&|lzW
z@E!n-sU@V#&kCH9h@lHfQz9KOSKAs>`<_W#BmSo}_@LA&UVlgmaY%5EV^@-sJggQu
z$>X2hZbdmrGdMw80(C%F=3L6=ol6f}4stoc3)?4nDd{s?)7ccILG=$p?MSwNz?Khn
zw6a|vkW&&3r+C4j+S=2%#$*6mLzdR0!07~LFG5^+F1o@YnVaxEg?ufk_@B__I}|`=
zy0|o)VzedGpu&L;3j5owohfpXr<PGVw5A{<Qd1yIe)yV5fzyfhpgZWC;JIXuh627+
zG^n(m;3<Gg_o}cznr7DWrzY7JkBkO59T9E`PD^~sQQp@fkX6DOQ*$sZr*#ULde@Qe
z$O)cH=BNp6D%s{~YBi>=9kJq4wX|@_6+op;FYf%9h88eQE$K;~At!l_5!KlQFG@+T
zO}e0AX-$ZwQ(9Bs=CWI8FP1Apq8?H@!83PjZZl}brP?0_P#I&mM?TiMM+%H`{`gxP
z<-$)nErAB5@|pKiYcfP@3Y&^_*=ON7=n49zcQH5p&S`UU*=8wC={v?#r+8^wDP|XC
zic&evK*&p5Gnu+|lBcoVZz3iSS68W%yp(oVXiYHb!pfXWn=0xGg~%1OLR>I6F-KD*
z5pT7YLHb5Q0aQ9|jIJuxwqzR!?E8=pCwYEyXJwNqCwT#)tSkjkNwg;PP8*wYzOag+
zORsgOkq7Bj^svln%uUSE)MD_o?dcu|W#Xl6WX*0Lf|LAM;)SMBIN+n8ug%J208W%&
zo#Z8(u+WxZ&UJ)zO7DKHM6zf)CwOp>^W4N7)spuz=6a2pRs&A~RDa4*{v1j+8E}#p
z!bu)fXpE>|o#e&Snjq~6RSASCWGG)#e|5Ac;EUuS#|fU1$_bv#b@OOfcv4RC3|m57
zK0K<lE4kujJ0a}}p!qsT-3${$YcilU>7B{sRJZh-CE&#1$qAlwh?87+uA8AA%Rm8C
z=2-7Bc8}!A>ol?_f&CYlc&0kZi-vq8lY>bYvPqXp`mxX1v_qN|$(_%WQsPBZ>+~%a
z|0%sTo^q0>-3aL-Ta%8G=B8jrGa0&-uue|$;4B~Jj&k&-E*BRV6f|sJlR~Hd-D2T?
z3I(k!nn+Tohh=VJjwT;3ZEJtDNoi31t3l!Fop53eN~4gkjr4$DQUOcq-(X<au0}^|
z^4V!o9B@)H5S_0Hy})IJWwX=+KAD>-#NdTZGIyEO^M4AUG8?q^@qZHLsQ@U28Jt4?
zRx5d(K73E|qLax<3SJf9JKzH#1WlOIpuqUsWNxN#0Vn48KBYkoJ%GZ|>)vEKg9%kS
zLWbj22}k)bTADpm@Tz2TgC%a~6j{;%HOt&gVJ>2hA6Ec1^p>8%c$54jk4!t?j&05R
zhtD-sj;{%6QCd|pxk27fO)Jf>9fKFd;SHsFf=B&wvZI{jX<ceDC8?uaBP$@&bXF%!
zJVPHAJr*zwYFGK1GGsf|g`^4X$>eeIw>70g&_tNmmi`(&1yJeRe&Vgdl&+x)v|A^6
z5>g;Bc{s`Qo|KxDlY+M`tV_NoA_Y!^K6~W^FVvYuQ%5SG=G3xin%egMYL_zc`g<|D
zB*S1h@hIRVuU$e4#1Dm&yuitMlILhm@HMGqa+x$R3{bdcN&?qiG8aP<f|dLPkF~5F
zF^I}(8CeBT{k=0867Eu)OoOt5GTST-3UN?=-$?~f&Z|Ic!YQ3fCYO0z2a?ojrV$my
z9!N!lsx`?x6q{zFXa+;U@WT=8!KCHnB(EvzB+qx!=oXSpPFKm~GF`Q`V(_SI8ldEI
zfRa#Y6hLM6xWmbk)DHz$6JqknImwflJY%T8yGXm8f>-5i%H*BYw6B@62JQr6@Zf(k
z`bmLOPVxbgq+tLc!-)nZX)ZL&2W9&MhGO(E=6OgZlN&NBu1oJc!NVMsRMajl^|{?o
z1FSTtftdlx0m?ba3p+7+L0;jZA!iG9rbSU&)6j84XmZ7r%TB9;IT&zK0HtB`RRERw
zQvgg`e-ahSzTT(9a+K>s?<CLBnk1QASkVWD(!jacyn_~nAmNaG9a;)$ele%__Gi-+
zK&4SlPVlMWNpLjr*EKmc!DXJZb4hm1p>dMeBQ1)dw5FjpcO?c7f!RFwoC{@B2ogTZ
zC2Hak4AL<N6hNg>QBLq_Nh#!oK`9V9$<u~Jc1_G-Ck1btO2Ip1r>@7oX3C1eYm&K`
zg6!h2wj`SQ3ZRArK1qq4sZ<f2Aj~?+%S;Ek146!#m4X*E0+&LjAv<|N(v;I<=L9dc
zFYfH`mZ?*`fy1w@$=0uRNn#UQcUHoBxe6V=D5PP@AfQso<W4U0&J_;ZCwQ97J<P!r
z%sb@akQluFoS9048n{KBQcPa314-&F2Cs%wJj6z25HLwv6kR2gJDC)Jxd#s?c*vs3
za}RScl@mOZwC(-9Z7P6D+em8(Kc=C<2bK74b2-WDkdJ6k5|d}8U(F1yiKy95i=vXr
zoje+pJLr#!!L#RIa)9bE$=H>OZ$kl8Mhvu>@S|yF9VNMj3Tm~%8dK0Y$uphgbs3~J
zsf!CvK7fKNA^Msro`Wfvc!xC7>f)c@sbJwDB`%lN#((TjR?aYVVU$}FgeQ&9H<)u*
z(xM=^*V394ec)uY@gzwdMfpHeJHgw}fYz4Ga!>#@ROW%D?QTs46#T6XmU67wRD(fq
zkjrU~eMx3OX-y}w;%~49W%2F0pCTubErM=IEQh{|I>j5XjY_UV-;#8tNApl%=Hd7k
zz9{#=oa9B4$%Uel$tiR?Y0W!L#|fU5q^>IuFR5%Dh<#H5R9csI((P&+*$FM;&lxSk
z<aN8V<P^`u1j@_ncYs2pa54w_fXdf295zks9z4(t<eI5SB!iaxt2mX``X8Z`iI+}e
zKKY484S(7aZ)#RH!^lY<PFDi`dkvLlx2{dnqNrqY!%2ez|4G9=cy9Xynde>#6oWRI
z%gOvt$_F*%lq{U$9ZEK7^l-2<AG9Qj^7UhrEUl>-$>dZD-eITodvHOAX>;&+&SCDQ
zuo?0k)(#~<!Rz}>QYPNODp`mp03T{b!eWNa=Cxx-aFS=b-Dz(Qd`%r;oqWic&f1!z
zNhuj7)6wOQN>ZoUzE6X-sia@s$=?nPL>m=A4ZI)&;iXBGsLqUr_)A+WQSFiR!UtCs
zWN^ZS%uVfbAtfgpK=Itl>S(j(m}#EK3EuXBnlK8W(zf1H0S`@1^0ZV=^4goMoY1T}
zA!u0Jxh?H&&Led~r$EXjniPDUm~$ze;Aylq9sVT+Py=etYpE7YDZ3_4Q*bw#$D7M@
zK~F{PR-&XA^A?!orf|^LnTss>ZoGA%oB;};23|Iim4$F(d<9D53FD`>`h(;xC><8J
z3@aH#VSoy@HIj~)yyQ7^_Hv0$rZVw{oQ;>N@HRzH@}IXQHU&*Ou;v9)XKG3YZUU!t
z^7e#@IXpn8DGHzlM}Eei8~Ia_eBP*YH6;UN>m`?C{Q3DnHcJ82;LL^^MxNXGhkKIF
znm7~34Eke(7yilPA<dJex_P+hK1enf>kdWC519+zbUo^Jo{u#Hxo0YX8rU5u+8(@@
zKhyYg=ZVcmQ#ebxi_alfPCoy&>%`RDSrk6Bn}Ykc61mmzp8V)!P|m#5$z5FDBagVo
z;~zeDgo4}GS+SgblW$|r4zxnAX7J$3m-*AqpRZG@=X40_42LLp(b?pkG>6PkSH7I)
z%_aXkuTo(5Mwy^WPHu3*hE#ao3UXJDAyW@^oeSBy)c)$T6xjSGm&@(#Q?LVmjX&QS
zj8{~lE`u)^_)GY+Hsx<HK!p$Q6>u^GzOEl%8@YHl#pG1}tCJm{7@!J@WvmSz_a1Wr
z*)fmw>DoG0z34rI1x`wXN~44k5#D=wo-M>zP13IBY4<@*(-ynk?y^K?UZ}2ya<y2K
zHcalq5}vd<WVAJ>)Bm6((<BrmcTpK>IeDU0ch|IWGj;gr!Bo?yi0HcBV4CLJ{Ot$%
z&&RkPUk~Sm0;r)UWo2c3tpXF_e$A!b9|#1-9Xnb-ohL^%|65L%dBJME%j4Cv-QHO|
zo4(LfAvejLS3us`XMDeD)eGD7mKJv=<TO{3W?}6qyQoAjn7-fwa=EWzH0tgPAR`oL
z4SRFH-VqEpnSr1yLD+y~b>@xlNJVAk_UxSO8WVw<PN>x&0+ePdGaxOpuV!CgheH1A
zcDbpksgc&LUB|f66Ik3lMcOEfUiFSGtqr^Pc{D2OQ7FqxfqmQFw@j~l=9KXxC>S=>
z0G(vQ8aA!kzL&OE&Hk>tV)PwyJy{P$+gv+KYgx2Fua|j~EQyZ6ptoS*DO6fg3Qfw6
z%<7v=95-G8R3^yr#)dvYlc`Z9|8X_Xh$^0ZrZ?Lgb9P8VJKZo3G_>Y?{mq(BH3h;&
z?ryuBj{)ht31$EI)WWeZ=6Kv$YK%`xF&hIR;~TH-y>3@S`*g3n>t+_vO`2PgyZer%
z<L@cX&GE=yXC|MB!9Wn;gb8(&|Nc0Cr{3(bjixT;rG2w3l!=!nksYV^5H*%(&!6~*
zc}`uyVEp^=FxSQxc&IwxOZ!^_l<RTz0I0@}z}cRV|Lj(u(w<IA4NB7W$~cps!AS2$
zH)-cNFr_GGa=FL+W=nfpZy)n<jm%3~^Ex<K@2LQ4u(v@Is<&~oOLNUj+5NzuFn@3P
zs6s07y2<PAy00OXcxA3ffJ)_fI(Y>N1{YNo&^*KJ;a<X3^b0EU$=@gQ-kh(QSvT{H
z`--Uz&PJz9yfn$tWA(k91EM!S%>P|^qF)6tx#KuK;o}VGN_#q)1tXvBj_>;p@gxWv
zeO%wB_6Yyy+TMP>s<KjPP$z-(3Q4d_D*b2}Yu`kXn|JzAg)s(miYb6f<8IcwFKQ_!
zyHlcMuqOB5ISLd&rAdOpQ14VH!yu2x<Mw2ENSWJ8GHut@!@64!hf}$VN&!?ROK+Lv
zx*jH%+oh5|Dak;5(y)PQp-_li+Tf6V6+op^3+~nTw3N$fDuK9?G>V)cr=YdVyi*#K
zl6V3}c_0wrPf&G+k~D!6QC60la&vPdV3moY04n1(GmRP=8p-GLQ+BpjB>+~EHUrMr
z(LpUOtyEc2PFjY>Ybt=saBymCYo~xeK-JYFM3YLz%!}R)6P0($Sw*x2Wh}B*YIP+m
zlc{yl3H8~@QVyHnasE_RR%E0Wr2s0!rGt05;*z2+fy3cArz)6WZjUvj2$#vq%8Kc{
zM>*7o4^9zr)ljTDQ4XhzhR*f6T`AV34M<&hH@suYb@89!P$+g?9<IyKtu}K1#j6hi
zx=x!C_3cn8hyE)mDW=-mIw^~H&oq!a5rBGtl3dw6oMqhDalQWT@rH&;hH1q06}Vh(
zxelnUwT=Gw>;FS_b#*eCx(gOrVPPSC<-fj4W5<oBXP<hS9{j@}*fh-Uq9I`tVsd`=
z3!kT1vuD#+zw~9Eq_sWjL_8pVkNW=dr$5sJ_uUu2u3NdTIkV|M@BA{=9f?=hEUxQo
z^w&TCh5m5wy>aWh<@2AV*>mU8SGlg*ICagm>-wA2b)T5OvFiHF=RZet=gp<B-0>x@
z>qzXnX3nH9eCZC#&C8>|@_WXv&k$Af*4uBVMT-~HGfzE558i)&jCZgA{|jHdgHBnv
zke+_x33}*(2V#~3c;5D<FVg%43+Rc*9;Zhhe28*#VwH2#?RS2W=FOi^k3aG#J@&{W
zTwhMNd1A=sbjO`{(ww<-=#hsWrY9eLjIv|Y=V3tp;+OBFNmC{ZJqGPHjG^y?TF9T7
z3X1y2luOKmGbIg6b5j$&wfZfdRDqbOSg<G!UX=B9^)zMbRNAy@6K&qKnF<ODdXxp&
z?cKANCQO(>Z@syi0x{|g@#1Z7ZzmixZ{55leqC*-YY$DBIDyu@`4$BN{v>s6PFU9-
zZr8*~lV}aUtKT1|E-nX+XzLcVYg7Do?cPn3CZn#^<oEf=)h#zS>S}9kWi#4OMa9Lm
zWi$8LMy{{0XMG*q{{8#*(HW<oPFoW6Ey~q!xl>O)mB(OX;&S_IXz9{rv}xl;es=tF
z2Wk$`k|j%N<A(V4!KZZa-~n2+Xc28(zd`EDk6Z2_O`VRE_@Rtm8z%x#9STYYSFlj6
z9oCEsP)Ia}-#KOwc5bh?XI4$@tR5^@21opC#;6m(Y3=+t@$tm3i~rs2vFbwm9PJ=}
zU0Dh1^4N9ZXP9SwsS8?#Qy$>m9iZ?#FY3~)y9i<K#j8&b>(XatlIL2cr&G?Gu-u8)
z7r&gL8?upMEWO?=d9Rq|xKG{gp>b8U@<9zD!NdaHK!|g301A^i;=kc?Fkxa%Qv7=u
zDPs6L@#+lO-<O}m;e>Tz@g}V+5U_tvTvynxE10ldfi7)~Sr>8}al6gvb{R&@cA0ke
z$jEz!Vzn(G{i`K=2P>zNT`u_;q*5-m`T}C+gJ6kr&<;Z}$_4ED6hJ9Smk}tS0~2KS
zoH_A*P&#~21yoj1E{kO9^yzGNO{5%0Lx=`4UWjAIjTOJk?73WLZTC7&sRO^mu03VS
z6q?9&Wyh^+oK+XMFSb7`K(l6Bbxocczb-gy$8lYG`S~=9pB>u=6%gN8vUY{-cI9!q
z=FFW-N8<UQX3b<RGDiS?Dx1a=C&jAI0=Cg($4~&}rcaIgT&EmBV%oH6amK*%RgE4!
znu1(zdYrKmZHKj@QKLt3xgbrS5x*QX&+6)GDK~A#3>weodk()>m**Omuc~@f^^gFm
z6G^wShChoGSfpPX8XF_0NZrkky1IHQDJhbL08IirCl*z_Q#>q6l)>V42%cT)<?q4N
z0r<erg2`&w3G$-r#Lv#Zfy{?;@YD2YBmWNz0t+9D0ShHo`@}zHn--|gAEU15#fJ8y
zEZQIIUGZ*s4!{RM5UVbja}I!_|6=wV|K7{(_W69Gq2x0##%r5%@`ZNg<mQmy7rPul
z0C48zcfeT0s}Ey^y0W;8N8Z&R^CBL!JIk&M{fxH88hiW><=}hE%jbRx_UxDF6Hu!^
zTs+5)QdwE4n1$VG3S8zf*2J#SdKv06e%!b|tqr9?4G|3rlLZs~x4-(eXi)BMngDkH
z@#81Z4L5z5jvPKr_x=7JS-9QHLG3^7^wa6R?|&ct`(OW}XP^0_EF|$;MJ-xgH|YIW
zT}ca<ET+dFd4%46YmI0bT_!tE@|>Jpy78koQE^Ez{ro3Cm6I|o0JDqlCQPHpjG-HE
z`UoB6wmWUpVmQB-EL%obT={-ly=oOb`}8xG#uE)H0ysKd{=WCp(q*U8(@#AqPX4TJ
zrVKy=3;IJh-awUARrH%*{)!GBI4D#H>ejZABdhrxK0-}RP4vU>-z7lY-B*RhylC+v
zx^l(U(icxZ{-jk`x3&RvF1`G6I_-?p>5tt0H(q<KXTRA1{Gkuu$j=@rW4eFeev&lL
z-P%?)VubV?#viAFTQ+UBd}c8O&mJTF{9$_LiKl4ITW`hg7ykbBH{Qr~S6Sw?GVzr3
zO|0D!!1M5f4>M5tdiZ59IdQYh)gQQqc5dH6k3IY-n_N9FYsBt*ly}VcUwsw*>z}XE
zGfzGh_XG?Rc<HIj7%2Wo>(;Kd%!O{dF*LC=-@Tkoj~Q|V-rCyQ!vTwc=%S)xy84<G
zv}gAodi0@(Sp(_WHk`5@K6FURz5cI%)02-q&RSk!%(j*Aj(_@DXVG)dJS$)pt3F?c
zPk^GJs8F8S+}y-%^Yk!_p*3A~&DFGT?_PS0%VAM>*R-%X)G&ywSh<o`z5WJ0`FQ-c
zp+A?O{cig6bAO`OUVT+e-=1yjpe0L}QfX-^J^tupbo|({9_A-B$!u=RrI%kOAp0nf
z{ehaA9-!0dB-iEC?h-Elr{|ud)o-kd)6ag{q(+Y!tpG|%8uch%G<gg<E|=B=ps?G*
z>>$%JfAU$yk2N{*JD58TK@p2HFUA6LOa`0^qCCoFciXw0GEQ4yx;Z9LcM!nuO#Aup
zFLehyr)^%lZJw;eZ4)icwAvQ0J_)dnYMW@33EHOFZA0DN0ZPm|r)~Vsd5QWh(l)QW
zL#%N?{VuoDwj8M|7C?zJ+@_)69i8^YGmV{1DKchp`q?!^t|C(xrYTXPL;;i%B}$Yi
zfKsAFi2^7k126C~z>gA7oMUBB7UE_26vsB|&_KQnNu99-zL}6yF3vGN1kXWP{61mZ
z>^e|3QQJax>SPch^*C)aoVH21VBEIBFK3)U+YCL0e#1M5ta_7;QLJPBnEe(^+&0t+
zb~sKF6VZaCja<fQL$YTN1yN4&At5$Vv#3bOcbhhB6u+tC0CqrT&ir}eNF7mKO%;`u
zbgaI<(@|{VDk>|ge;Q)2`0tY@PnPnCMZ>?lz>%`EEW&Av7&ZvX<C!?2a!Gb#O^&NE
z|3{9hrV%4XNO=$l-&wo1i*s7a@t+_==H=$fv3XTh6&*c#)N&N#(g=V9vJddj)22_C
zf5)@oyzbF9!<2tV+tHG#)27Ka@zORs>!|Y%c-DxK)s&l)E3tiVzx9?loL$}8hWEpv
zLIt-A?{fI?VXH3bH>+)$T@FFp6DCa*XLZlE84|<`@+btcZipwe+Gbr3C1As4D|viI
zR*#ZH0ldqbZ@kg7ZQQuob7#xA!&yEHB;A)@lKQ|u)9g&q0z`Hui@EdW$!RXyux`!T
zNWYNX&-jcOIg+0}QV}(kq$Vdq)I|Cf1io(Bw1tkzU3?mi963Uw{}(P^6e(9%TT81~
zy-B-v?xg1CW}e{LG-m7=TCngGnmuPOIq`hEckQAzZ?2~O`)j1`f`WWm%!`*U5x{YF
z`3>)^r+3z^6RHDt=Tcq-0Fx!lmQqDUg)F>|4j-*~Yc*}%w3+Jbt$PBo;Air}TD)Yj
zfFYg<nggf-yLRrPrlv+&eBepVKjjq3JRqt)mqP$DI8NXQA<!5gg0?N<y0ECFZCrNK
z`VF*h-C8<w=&)!IIJyULp=~&xN86C_4*-S0;(7*02!Ilc9`ynA05$-1^xMuIJE)1r
z1t(_Gwgn4lE^h$N>D#_Nd+oOElbl^>8~O{pF@Qr@4-1GO2pANN!v_ybNKHv;2~Dxv
zhQ5K87!3Hi-`3EUjhlot39zZCsuZ?7#sQ~s)+S`q_HEl~%jPX~@W26T;c-P4g5u&L
zY2);nGk7DI6(M47+^~T+jCFMQ&|%Ru(J#|xOc#0sHZV)m(=wW<sQ_vS0Tcua$s@!{
zO~{m*y_lUiJ?EGo-xX#tFaEF{&xRcr<_R(vKofBSP;+hIfa(u|Vsy-x0~YwlygX~6
zbOzm;l7=`O6)z`@a&BYTHgm9;5yTqZHq?PKSzOj3Y|8tDbtwmJ#BB#WJ4gBWu9L72
z-wD{PaLw+gd<Is0-(jnpcBqaO%jcHRk}O_;AeK5N7@h&G5(xoy2`O>ObD$lej&O{&
zp-q|{SPagQW47WwoftTWvF_wvLVf64GtxG);tbiuMi>izhjE2Ag=d;}_6qa^NTZk=
zZp}@BP=E^Z3*<cjOopM0ChSlrEU*g*XAAWS8y}GZ(8dsSjdC`b6lE+8N>fa7C4D#X
zusA`o{PA5skQ5yj!`g8^M2cD240y48{N|f!-1u?y{cnGVjvqU2WgD;(P)7VC&@w)I
z+vkND{p(-;vh!kwsB)O_7ro~ax_adbdg%T?&<lV2o5f`A_DuZwiBI0lyZB7{{&&7B
znwju*qRL@mz_dZGB*g3CT_WjJx;!%|8pg+O{sjH~`RD232OhHOa;|67Y=0Gl?X}l^
zfX+GZT)O)wKV{8lwZ+DcdZuBUU7x@0Rw^zjp|9QfpQ0s2`ok^<V3{;|3Vr_eFNoIh
ztGn-(--{U))i!|Hg%@8$D?j)Fdi3FkB~Mm_9~RX%0KvyT@d=v48sWFT{teo>eS0Ut
z(k=(kD=RPO{<xjB;bZip@82clQsGBMwGI6N?f4U){uKT5m4DKM_uVfn_6S!Ck0Z;^
zcFnab>HG^Xq~HGLH}uA9uT!=+yURQQAVZt}%;#>AI7RfK@<A!-qgXp}V?%>12<+sE
zh<3>JbjDd{it7K;3xAi0`5w%3p3F5hHT20_K26(s@%-~2uf)wogdk-A!RxQRCX*f-
zL3e3qGv}Oh&y_{~(%=8iAP}1wjeq;-C;mfB#h3p6VoZW1-Vgbn{(}Jz{w0Lu#Lj8e
zN;BAGIrseY>6MpX5pya#Mi>a{TfqPeE#So$Ua&O97)*Sal%L}M*lG7ievJ3D%-{n0
z;PoGpzE~BvKicT5cfCu@F1+Va1W<P)SUTF?O&|XlH5@-qFTeOwOp+)7s->lwZf1a5
z&t~?&Uwt($iyh|Wg%@8;|9tr$Y?8kdvwyMCUH0C~#avbZr6hfNlpVOMX<9;nvhoaB
zJFJ*nu@<Bq-0PTSs5jPRc4FF~6+m;!iBnE;5rKKGk(f~^6APeZ0oocNo*4^JB!3fs
zU-BO%Xq#@QwiVWPPPUYZRiDG0cKR<?3Kuc6ax50MJ5hhw{Q&a|{Sv=FbW2Mkivf;4
z=^h6t0OfIu^W5nVkH^ykpx|K7jxg*K^oO11*<!Kh*w4+0IY)*{J}5;qP@+W1@YbN(
z16FSB;c#V=xEJ_E^Rw0DQlccI0V)t8`oEWm{<fY~%E7ywbU?+hZ$r9#3DHN+hI+0h
znGz)#2~Znri2m>@QI;Dv_VDW1U;K?|@g$-J6VeENh7ma)j^~4lq_+i&+A!lf)P<J7
zbwR?C9+r2Lp1xj5$Kf2C2W_fAEJ4ybVPV_PkHt`T+J+;4CrMtm6RqF9ZFYKKu(!i;
zSm2;cIFx~4f@eDIHtqh1l>pCrray8FFa41ht3Se$(bMXWV1oV#MOf+R=R|EoyFewt
z&kjW-UVorn@f_RIHevs3amN6gr<H0roYEbOCpAF%gJe58hZi_u*uy+G_8m(fKw%+(
z9C_yQvm_r8h>LJccOD^|5$7_}^n$rvQc@xW!?ka}ZDov%nvihtf&_>^r%anF4D};N
z4vSOVxj+D?UPwfTYnCwC@#oq#Z_8<sb5`zfeQ+X#6C^lu7jwCnUVKqbvLfJPry*I$
zzr%4q1f;@UJ9b!kx$S47Je<{_8Q_~BM}iUF*wAP(;hnZI=#Ho!X^|(n+~TFn<dzzF
zCQ*br4X5)A?h6nZi%N=U!6~QE+iTWz?GMxHk3~zDO8-sf_rMJ`AUH~n??``W!s=eM
zc!~5Aj{aA#UM;7IPTTP(_(r%bXWF#s;<U!QyzsZ@yYz>XG6q*uA-5Ii5i@7crXAb1
zMfHa@nc(O~B0p?2xKau%@P>wlu4Bc&1BC-uQ-N}TXM*a1c@o_=901IiX{7^B6#kPj
zYpFkpny+ssy7hkUU@r};E4%ToLEhwMj3F9POjMe0X_4`I`qT-HG<igFqNbe6@nk)8
z=%BE$v4C(D6$qPPfFnC2!Z4f=7VMHpPPSqF2AQlVi;0Z9)nF+jbi+CNN9YOoKL-vR
zkcEWYQsc&r7XU!sY)obV4C=v^MqsLACoV27mIaM+pd(nCiXklKZCkerut;b}RTa&c
zF@t8#nJt7!EH)&!19<M;y@y))nO>W<jlAX)Cr=a&3BZ9XlHPfHt^5gXB)_0g@`lfy
zKbPwrA(=Sw4tO5k6+9<sXy6!uwGDPUPTSBfXc=I3Z{NC|TAG{4g*@IPtL2_O<ncD`
z{r~`g9|r0Hzzip6;FZmpH;=}Q9UIa9kmPPHw+)H*z-t1a<G#7M^XAK?n9d0*u8Z2V
zaRVK%KQ25cfC-ZP;VwbZnp~QU6~J@Hw(Y_a&&|!FQDa7Pf6SIKbuQ!tOMk=q^|Wu#
zJ_evRp+kVhjxj)(3)+ivHT(C|b_Tpd2M@{pcV*>eG?h0a<Yxy^1x1^54PPdCCIOU$
zBT*O5oop=qbzLERPi<^51la=cy1`l|ir3Y*UerkMo|PIv)gP@FpaJR6<?5OD8;b;B
zB2)vOgjmRh3>>X3Eevdjtk^ebWcIBjPO|;UQ>O~IroOIDNQ2JRRhCI%1)d@q8p>f|
z;-0p)w$=!X-7<H=@-u(|3kKiWw{IVX_;<o$w{J|5oZW2JVDXJ&@Ixj|gtOR;LyL_a
z6$Ct)7bog$Y-|)DkY}Q80n4m(j^7b_gT;!=5x^^Q+01a~Ruq&gU~q%R2>OB(LW8zB
z{Q>h+=eAW<RnmCYqR^jv8HB=OR(19VenuO{jUUe%O|^hJ0KqZI9P>}E^Ww!lW!e-T
z$5J}Z?K*P!NGCg8Sp8Pq9jFp`2Y@NY3xF)3infJ<_5|vT5a=9#%?=O_(uffwsj$f6
zNOkx+B&^6CW#S9lp5GDe7FIh~shH%0C>TRO&#hJ-Ut~9xezu6dl#@kN$l&R5+0N}W
zi_Ue1vEagqfiPqw*U2y`krwu|pZt{EbmDMq;tIc@pLfWQfAVI!<#V5<Z+!1A`s342
z_e?))N9lj-JKv^rFF2oW|NIwd^Tv%m@?J}L3jf=0?z@NbxsID|xKVcb?tB_7UYIxc
zKJ<W)EN}hHEiwHn*yX_h|H&`zrh9+)JNn5FeiSo9B~s(!9dL6oSn+>(?$13_8QZM#
zZ~x$XwESJm>9$)wC)!kxcVJBumkIp#{(I$;f{%RYdNEgHy#qiI?|>lQ+dg-z02;-3
zhYK&dh<@<1AJc>P|AFrQ>CfW6!>4Zf4Bh;hPt&*m=Uc*#&&}=m4)FJV??-nD!Sjo^
z-bQb(S{3tpskrlq!E@1)MfCk2|471ce)5AK(qoT2+NDj-<rP2r`A;P#&+iWmUmw(9
z0~1^{wQPcy=C;tK)3(x#5xb}=uZ6;fn+~*<)7qL@^wy#2pbb)4Uiv@^)3}+nr|XwI
zNi(ZzNDt&fSB+bK+{nfJ--(IPMizJnFNo%*W&x*EQnq3u9%pj^Pi}D{?_+#VXR`?l
z6+3>rELcy>%Q6xF25rY<-|&Kk-Mt+C4O$6ElwhGdx6E`GlxuBil?4OlyF=cLrTVt8
zHi2>|5A!HixiGf}Y<4X2_KtQjVPcgF*s*E=9Q-VVR+kq09i%_3cZfv*g=W&y+9I1B
z%vC2YGM1qK<sIyt?J?hh+k?PkJQo*ZoM>uZ^bIs7Xo3Yi>Uf7(b>R0M?H$TVexi$-
zwD@MwiGovrwU(xUK_5KjuXMxW7in~EGYK!%um{D(=(X@KwEp-w`pLiFOK<F7K-C2i
zpJ|`P$Io9ldIz03X#?xp#r$sZ)uaaZ6w*_AFU?{ehqaU@7bd2o9k|`D&RDw`<(%{=
zE?e7)Th9Jn^v~Ua%z0)sgS#j0bS)R}nNlv&w#4t?q=G@9ZM?R1e}{<Uy?ePdzk>r3
z?xgR~8FU@5Tzof%)`f{4uT4WKC;6ZQ6y{WjS7%4SGQqsuqP%R&XVV*v#xdzS*tWmx
zvR}|eQ`hkJR>p`?#^8rL;W`<kF4k)1mma47yYh$hzyG+F9(?;^8eN<okhC0pKwSHi
zkhHJJQc9F$96$j~8rm$5)NK32YhOLl_9H~u+_EB=UB-#k32<rf8T8%v+(Q>lSxaWa
zXwr&F&`x$dm^7`{@w`;+D<XFwkG^{DgVY|(r{}gTr;!DHH}`V6{c8@)rl7xwLc!cP
zhMNUVlO~o>agLgdN|a;_KmnX;+3H$8ljt)S5zQEFYd;~PwR?!Z{~XbtI-<%V%a@dz
zic3`APW1j+Z_wp4Un8Sw1i4Cx{_^iuy6=fbDlhiXwO5qTSqpMWZ?QQ<8cuE8<Zdga
zufF?XT6b_3HTx?lFRS;a9=?a~zg}|+t*gaRzB`_ZB_MfOP6eG)mfXm5G9sQBV4Ge3
zOo;3$luPCDPMPF&nQ1PU+H+GG+4Q%~OsW4;9<L<dPgaL%nhKy2fz#0zqI2gE{pbeE
zoO1*xYo|{q`Yi+2M}I|h;5chixv4D-SZ_IQoo-n8JZnY;<SKB{>+f{X*MEAH-gkZx
z{rS~4di&c)=nvl=L(@ikN%tEOpwL;%$uF*>mGfVw@4dQ$^1Zz`^#GI&KB8}4az8Df
zw4UwFlGr{dmriY5_V4??#ed04Y68OX3kND3+Hl&6vsLRFLlm9&8;(%9w@yflB!8D%
zgl#_)7|ckTh7=->UjkHtj*fQ9cNKJ|pEW!4VY_W7H5|;s1+wW65XoH0b%l$qYyt2Y
z;iL;cJNM^VxxWo@prgFwC&4q3h|Te#IPcLRGys<z)stzZf5Clzjz7w<xlNKs$@W88
zfA1hIKflX6IIMakf3x1fFHZID?|}Z$ZT^zH1J{kd?)nb8l#~2hcIsj{rM>pJIPVa)
z4+~tj9}2Vq{N1Um`#Z>(+I@_1MlwOi;V*rlb;Viu(46l(?`OTU78wsK%c?a8<T*ZH
z<W9a!7x#bv_kX8a_T&5+bt07mT%PCki4$=xYN^42UC5yG%a6tns?B47m@<OsnbmCW
zrNE;C=rsq3=8fD#H=XhVnQXRc`7V0k$wsPe(CI%`meGc7emdHyGdN|@>^XU4c0@6;
z8Khh$PV+kG+3lwZcK0@p4qxlwcf4@Q8k(5LYND@@XNI@uN6+HE@Y0_4vuIp}JEqgK
zok1lhCp&WCB}jWkg@sny5|`F#it<D8Z^%^yUe5ga^XaOUE9mko-YfqOk|BtjSOm^R
z10Z9L9XFP)TCsvIe9y%)k;jf5E2o7xrNd;FY?b_6<k!Cb#v6p8jK3pYEl%H@&>Ji)
z5H-PE|H#KbN)skcqVn=`VP1nTC0r!K;%1dsl+)>Fo+VdwgIHKSYLxJpuy7q9#K|At
z<DyI6Lszf7Mvmnr!5RZ97MO&;2sbNF-VJ3gxadM5sE+1$09aT66pm!vM7rDSKYSxC
zT(nq@;c;_vTT5$~Y@cAcBQ5erKK3yhKVdw#wL*AB01GFa2K|YDKXdtVy5S=qmNdTA
zqelyn;JKlwcNoR*cJZZ`@K{_UZ9{*9GzoBXLU{0QV0K?~?KML6z(L5o`3q>&=u!Oa
zBH<^A(_XXvr<!%r2;LNkvfz@<n>UXxx$IK9?#AmQDVRr(9wY4rrwUvu^ga3-H#eWh
z&mnu`LYvWs?sN<E8~4j*2ID7sd*WA8T---L?f?@t9qsA8i&?{1nY@k<{fubq;pAEr
z>aAn*ZspvU=|9i@0~xL5<SN$a(LXiQ*MCz_B@9-@g>LHbn{>hH1@x8AjUcl=Wcj%4
z#<`)<xWn{;N58^#Rg0O{TY!S8dDrDXqU94dGY}TVrWv@x)WQS5s`gGgV|rFnq9#ax
zWu;~0ak<IIiw{TEn1Em)BmFBD1i%A?OZ<t`EPpT{3jsSjCMZarIKl>psid@2uD{OD
z&6oOgJM}Eu0VXv_p;$;*$Vjvgf+oNL?a0f`6Y?Okbt1<%G!ZN)Fr+1SI+w%g8}cAQ
zJ34;+nAGPHw)kjy58aLj#DYhbM<itfNfabY0PQG*rxX^+b3(SZhQ$kZI_g4sfFKqf
z+T-*41O)L8Ac8hF9G7EvfT&!cz#nhq9Y`*50CfWVGL*x6gFITnb!v77Q@jI0Z$MoD
zLmez`v;&NH^dB@%WZ8^<2lNN}58#2e72+Lu9Kf$aC=Kca>GUX%gLTFH2&$;8u*L!J
zz+j2-^0KC=o4RZ&7zfZTFn)5&F>*rLw<<fg7kgO43NV0UY*9xsgBu8)h!SYxKEoz}
zXB8I}Q&V%39b@TIM9o;%|CsXB%2zP}uiwv|m7AJRs3@mB@*K0>q>IljqE(xH^!i#J
zWFHcFY4ps?Exa?i=$4y!G1Z4VPxefWybK!oSw1rQ_>SdyL_d4=M*8Jz41%UBfjMZ>
z4QFEKGLo2$nwUlpJ@6oH*|b@-CwJrs+%{v#v{~8~Q@eYQIc(+gF1Ub}p1MpzD*pEy
z-xPDD>kg?2;GJ{cd34_S=hHu4epyoLc27VjNBV3ktXR2{=FFQ#k3aGVtzY*}kE^-S
z3M^J=8+iV`zxzGafo$4s$40vm(sA7l*UQZ+Km6YJ?Qo2)ZNuU_{j4+S(#tNRRd1}K
z-~8&=ky}%`o5fdL`96vNd*;cfXf>DZo;1z@st>Vd1<m8Wd+rg2xhF>307}>MI{*NF
z@w1<c2HBm>k2pHSEWZD$D<$0LJKy|Pm*|Dg`b^PymYlkj9(mv)+PY;+oFsD2O*ICc
zd)~S9?sLwO3oJkkb<A|<rWk08xIp6r*MCSr>&3snNU!|kAM$=KVU1g9f$?t02nw*m
z#-e;sJ*ExO@wU{;xA-g*F;zX!7tHQlWMPAfvNZa^Z6j&N-XI+~7NQ^j{uq@NyXl@M
zct`PQ^vMsDk=9_{4gxJFWU|(wd;4_okMB15i9UAPv$Sy3E+T(^Y#Wuq5I(3wzK=nF
zOFU2v4#?w;yw&g}^)@3S!XI|;+(oCIej2TQbCu+`&d=|eP8VuFcI@*nynz1vr$5n?
zk3B94`@0J?0BA&$r%sWDwr$%sD-U)TU^GNqI_q7_<u;M~es_<URnYLdEN)(4&?Mgb
z{`b+Q^&9E_d+rs@sK*$yW`nRD0Mv`mzrfFZP(oOGwyjl6%!P{<F?c>oZ>?S($(k7r
zQ9jnN7A;xA=IMNSW>aI65IDO6Pgvp|FX3nI+qYNVAxrXtcintoRwCdR@9?jGzRE!I
zK<sqI+;0dmnl^K~04xZ#9#4Fg9a`uy)*6xC_@A%5Lihjv-X8Trd&KQB7hQ6Rn9g9V
z|M973?9{~$Oq!xmE<Np3HigG1fQog}0-n>GJ1zcGR)Tf5_bAZ@)}9J-Qgc`%WMyCT
zDBhlMGl?PeBRyo2i+7nBld@^X<ZN27AfJAGcO5<dW;^}<u?DW&Mb}?mLPm=&PU}`*
zG1YgJu_o2G_eA*0*ur|6Szg1lE1rqR>N~gbpwCDOP)_HilJYm9uZ}eyXgE$jY)oE+
zf5dY1OR8V~9~|rP%E=8RyqFD1yPG5Bx--Wehqt2%!EfY=!SqI)n1p~JBY?~Def0<l
zvEL!vPP+?`fIlf_+e{;Js|m6Nh$$2!1ukxVfk`Jf+%O;_WTg8BfcEFwU<qvv&x@5m
z9408z?K(lniTX{_^WvUAZWBzko*HV@cyNEnZ7z0(hFJCDJ)JNh#|H-ATlerAmmIFR
z`Y#YQod;@zVd51qK<%z2`o;5!f$WEWwn&#*sjXcq;B~RNb_&(Dm69tfVC@*1#ii0)
zb<!DxD%~1=;S-hgp-W4srY=mIcd)ACK_TvnoHlyv@DytF<w<~VU*FS{#dT-1$(iko
z^XVWDe-uqqiINP_pakhni{JE{m#m*}I>&N?J94Cv=zGr*y|j_2x+FEyB#Ho3YFl&Y
z@y*NWGiN-`b{1FaGP~H8db>_#C2m@AP9fDchUvm3`DC&Nqq)Q4D|&Fl*_7ky%zV&W
za4KdHer)~4^zxpiY-)OA)~0C&;d;lJW3rR_pp+<405y=R8zVqvA<=JNCVF8#(U~)e
z#*`6lJ52Q2HloJ%)WInl87kP^{{5QsY5A13G{0g$YfcqnN=568;U=A`%RTh%J4O<<
zvMJbRl2%bizj@;dT7P&VjVek{;IL+}nWAfK%Errg?4lfg&eXD690#b`s6<Jo0F-mN
zz{p|?j2?U4GR0u}gBw-V3y_fPoh~@lbLiG*Z>C>fbr(%5ts`nFC*ABMxxxI_gZyW$
z&Zc09wDM#0*oJr0&tAKVMx-IkMY0*Ng}GwEU+J_|f`wfxNKXNvB;~KqCl2Qm4J38^
z5^^gqQrp@WX~s)gYvmWRcslsgh!b<<kV2(gFcg=e3?2?nA)PkF_1)RIr=shP_Z~^x
zW)m2r>y6nq<gv2zMV(07x}R2dZ(C~p+ev~=IQF`edfBQs-aCU*f)hXIGSXP}qD}GI
zr2s01xd*3to;PZBo4p4Kd=KVTlfQ~?c;w4;`@0{a%ciZREXjn18*%M~P|&Kf0@N7H
zr(eIalI~k`DOKcYy$({21yaE<KQEYLJvTwRmE;aD>u9~WxP(qU<8;Xy3G$sxKs)WL
za}9WON?ADOoTq}404FxGV=g=GQ~?VR`3gX!l;d*iYIG-G5SY(6@`n=_>3l&aka9MI
z+qAFV#>w88abu<aNs}khjvd=0_s%&iX*hQAT%;_9a~EV#<ZFVX)@5h%bB@Y!6E8SG
z;9a47Q$s@}O^nkvyy@gAljXgTK@?7WoQgTmbjraY4zeZs1o@rTuYIRWIqOPrlgca0
zsj{k4oYf$Gu6ui})i&FSZ@q&dZG&SPB+aU-DoKpz>ee>A3o>e=%^;TM<>g9BU{@5o
zT*#gtk0kX2PYl^SC5^M464;3jkkBTHA+^%}A`2?Ary`?gcDA?6csN(m&zdub3JVKm
ze36vSup<xLHqAg%N0*jLhSQ+{QYURjP23{W9<uT>%^S6yE}yoJrd92wvg~#WGf35S
zl+c=*8T99!OX)~c1yvSULCfg~QIb%X4x+D||0`NDc01|5f`kB-RdfO67S2j3qb5#f
zKxRC2@F3Ol0s&#Mv9U=ex8LuJXbf01AZ#KpIgXscc^NsXTA0m9OAB%*>O&UDHFj#-
zmgW}96?XYJ;quIyJKLW425s50Sr+(#ni}%)cZ-S&X(BKBWv4Eag=T4H0m)guWz!~E
zykWW8yNqVcoXO=*Wgw`K4hD}1{H3j%H}kt3mlHdXD3MNg@zSNz2DBek0xaBJJ9o-=
z@a|Zgrz~11xwiqRIDy;FVE5MQx2R^{KA}h8R1csE*87yHQ>6WP52Q3kx?gatK>P&J
z5_!XyowiI^>v#uzAE|!9H9LB=PWlpy84UiV{0>3_HIZlQ7_EMDwcJ7s(j~MhFuE6<
zvVayWTo@TY^efW%?%lmtXb(888_&RjeDJt+nC$SA&D>{OH*b-)A@3F1f_?xk1N}RT
zL2T^Uagu=(p*~2xyz2GWX+Mu2`n{~IoM!WQEj#Tr*#w+0BBWG)Yt@@nTU#e5nMlu!
zq<-LZK_kP;R4IQ4Ddn$|W2!Y^<!8!bttrP76lb_UoGqFXPX53cPj^O5fK)IX;CjKa
zO8oY>UeHeOo<%7E6d1(-7aTc9$9zfJSbMk6l5mm=YU9P`@9^1qwmMA{m|K|q05B|i
z@M45rZC?z4dQlGMBqlo+JQ&H)1RQh3iVf2w8z&YB_(q@)K$~f1Fu?+oBs2DLJqVZ1
zZ6qE!iqDo#GVEO(&$Mo#u|j9?JJgkB-)d~wW-ZF;cHEisZ_v0L>V&f}(Y8>?x`D-M
zufyWjZEekMYf=G89UKyk4fRNzphJzY-$7#exSyOp!!N)`1K{emRtGH;8V;E6Af`Iw
z1JH}S17ZRB6PA7p3fQ4O05m8O0M3Tv4b}m)X4PrhH?e@pk3QDzI6%>gYz-BhG8sRY
z7NKUKjCJF)+qwzJrl%m(2AUw~3M%FAAc|@Kr!d<BBGYtJ$jB83eQ9nd$HM3*K1kTe
zw$co1$$Ue&{z*>=wU~@eyi?!y+0To1;ug+KR8n<eRA@3;G3$^b_qk`Eqn+EfTkPqm
zMqq)%r1|-;ekoxdx7_@xPBXx2kdz0gz^wT3-9Mvu)~%yEZ@WXD3G>H{dN4G%v(G+<
zzWKfH&>x?AT2k{mfNDl=Y}I;>j!6+en(5p;5_=To-J;tTqZ1>2U^@L0x145s63oaW
z0MfU8>5Bpsciw)76`<RtZ6ttw`4v~tm;dW)^sBpnLHGRMZzH_4NZVMDY8m~1&9y7(
zt9O2xUViaK0moQvbAqS;^Xvab7hHIur0IR~(Z>Xc%&7OmSRg*{C%^bPJ;Qzc<GX$k
z0eR<Lz$1gU_fswdO%3A(P0QhHIrU*Py78uu(1$;I6N8vf`Je_JsO)(d;y+8X18n}W
ziXO-nVrPG8c1RHeM?c(4MyyzeD9O!E4z*5nJ8oUUZkmXw2@Pxa?%i?$g6y=Oo?#m>
z55b_uZ7PV>a(2w_PGMY9fZZOkTn!9nIWdTnSllqj(9wu50~5QTuwY2d5%eu$=%C#p
zj?Q9VcNK@hj`28Rn_{t?)u`(zn^XXe{V+T2RK$s%jq$(+feRHdCVIDeG3MBqpb6F2
zAC;KA{BBHgw56`DR@&*w@=AG(e|G{XG&($Q*r)upH}i~;AdmO_l0$Ue#Mc-!Li9w<
zGWvJ@6w2y{F~YbvwG(~%VxlDzt)zU3=0b6bLCF9m?1qUh?sQBjl*7ctq>mM)j<5=c
zk#4E_X3PsC5!_2r<zj`{NGcMA+-Fcz=^DWC5TutVAd;}Og$+$wBE5GKY5+m$(mT?Z
zDu@UekOYVzgc=M*0xnX86;Kfq2w-R~y@LoMhzKm`X1#ar+&gpc-0x@JFVC4X@0s~O
zKh4)vggI@-2H(e1Q_j=6a9lbuAk6UX+S>UK>%r^-8P~i<qr0{Cg#b?7O6cUaFA3K8
z@Mv2mJ7hFhP)eRS%IlLpyXxa?N=T*k$gipO&CWhQ&uZ-$Yiuc0lc?fSn$*O2yB1K9
zZTE+}4dbw^Wwxh$ru4g0DogEkugrO6^k#VpiMP4WRw}8%wH%dPMCsmHozh-zkv}*J
zh?u|OWT$%j;7Zsb;E{2D7SX}Ea}qnOCfT>6AFTZduWbLfN)V98qq6dS15!27l^IyV
z464vuZR8dUBFa|vAH9Ug`F+Bx^}r!eAs{|AENIJ2R;k>CT)KMZ<yI0HBZ~syEPB~>
z6WVaDyvYyyI(C?6EyB`F*0KKI*{^Lwa1PLQo5RW1A6T6huiXDIGK_SexS6t?Ifq=?
zx`%<6CazVmh;m3K-~9|3*jE2ID_`T|S~RFOal!Oi4P0ZPC6vlF9s5T8IP>Q6O4}L4
zX&k<$-l46wwQv{zZYPGey1dylkZ^MP;=w@A(jvf%0q7HZTk3>NnP1F%erWuqWJUI#
zaFf}I7j4x8cqaYD<bnzc#Iur0Oc~SI(1;mj$DcH`MV}CWuy1_=yGy+FS<fyhAWaId
zx3_UV5G5eY`Skj#4SFNyGrz@^5!B;m-`8>Rg1rZ=ZyoZ-@1^&Q^`)`gL2RFgE3qlv
zz^<?y=VEeeTN(=J*|fBVle26EGlQT1Y)5z=@=~_vllx6wdnW4aENi_#?_w44HPj+~
z$HoriR+(n3JgMUlB4(wctV{;>d+N)8w00S%+$9w_7dg|@up3+#*^t***}$Lg$u?ED
z22HY-52|ATVVmP)*0}K(fO>QJ9t$hA_OJypiR%mk?dGtQviOsLyloI5m5^Ay(;u#z
z`6Q3KsDTj#ZhA`ySi0&+1N)UCLUux;m~x%Z-fB!gO~_5bz<uqAmIRzgheOJNt6#ZX
zyKdNYhcqyB5q&kck@(dmqRt!4B<dEs!gVmdV*Q3(e-Y~S=!w2t<5!pDI*bn7^#oV@
z5J3y~78F`Ii16+c?9Qb4Jx8-cFAE&BDPK`RHvi^rWXTFu=GUc-2tU>}A(7+^xX<k}
z@$#NRF;Fap|Bhuflg_V;qV#wH%0b8;%m%|vGVcrn^-9&8STu#+N9l7n)HYNpamLh6
z`Q-!qj2br%f6|G<Tna-QE7Hp>f$<|S8c@OJ&;njD7~*s&Gx8lSmJW{n)UEeB03cS)
z`V$c=Zc0h;Try+~f6ds!=*{xwSVLmZ{mUlm1v1ui1J6gvb2!>Wb%G%!>;@hb$_1Dm
zB3+9=Pq(xc;%{}NE%0Y_Yc!9Qy&DSQHIPdH3ZuE5y9^gRyY<X_6MKErSOLLE?)UsI
z_58_hmege7DQ0ynX}#^nsj~1$ivK|4(xAkMM1XF04n!rEskZsyVBO6Z(uT|x_=TWD
zu9qGl(*>vHbEzhgkv|3Aw&Nbb_RfWBm25hjSL3M~yQur+=-_+@&eDs-)Z8%@^lzow
z=ln8_Eu!VGV+h|vRfmjvYT(?%sOP>5@0JftL3aJ}Q$F1t-NJ-iRFk1~rYgT{dB~%*
z`xo)ENvB=8j>L>-oE%lYv(oSP@`N`lCX+rK`GGEGmzsx$xvjS-6q9GE4BVK$?|E#{
zXqk0~`U@XF-P&X`%Xk19P>tHSGq<sqLi|&$*RMc|@wRx~_$AjSufVVL-Hd^S7Q<AS
z-HcEh;Fn<&=9(43GRa$KI+emlxgu5d{e|c_`b%;tE@EH0#`CnI4X&V&L9KJxWAoXP
zu!TkSb!1ug`ZqTMYqJ@oK&_L(qWPBEa<T)@nws_$kGFzq&qn$8h2~!R%-XAkE8#3$
zO_uKSI}i+4<t~dnQStnm#;bXr^(|Jsm1j}Y{!{}Ao3Fy<PuZB&)YtE4hpazQ*&DK{
z;6SjYjJJG_rX`W8JD=V`kH*{-_gO2n8JurNd~HXO58!nk2SW_vsy7@T*GlE{N%HhH
z9a$o2@ZVmExudWP;BgY5{uUF&W+pYqp}9E^RiNt&?bMn#(g?M7*Qc*tTs63vc-L_J
z$(o4w)(xez;#g7@eqU*oEC=cB^uBjkP+0hw|3O~V@MT1JKDoO!pS@z5JLJ*inIPh`
zH+J_8x60I^?eQrGdB-y8#()+HqoreJ?x9J_NgXj#^Jc>!3l8*MB*zB%?w6RBb^jdE
zsm*UDG-I9P>=wS=uJi7LQ(-wyL~0^*4EBv6@pP@4R?%&YE6@#uwtjS$<pW+yvu6pi
z6%vQW7RMtZ;L?cls0}Wk*^k-V4`SLZ=spdz(LHFH!SiQx)hsh|Bt)d$;C!pSVscqg
z!20=4s%LGGmD#<?$w}d_hgggAiaQ)=_AZPEPAX-~F?@rMRX{oPPgOcWQhAUuEm#*f
zAjn3e$RH%uj?Wl0VjA?D&3q$b)2tw#a$&DBWqdwLr$E%C1>opuP$==d)v8NOhu$0O
z;&oeb9RMKxo%T82uDf~;mZPe@)332zv?|yrr>?ZSjBLif3AHyQ1I1yQI;NKux-g;2
zcdqD;N6;gE`hhlN5$&|uPUAEKwjUBt?W?vRE3vg4yr&P*j@}QAx(rC##O&E5bke_t
zWIxgBbv?`7Au(4|gJ#p;-FDfPg>X_}DCBRUhrXgfZ+QQS`TS^j|0m}2ACLYY_vc?Z
z@P8qK=sytAGX-=$=w&b!RH?b%A~rd{^tTg)q)B&_swybt7MD1~z7gG8MoMtTfBfMF
z8~@@>SA{r1DHJNTl0sn*3=C}JPlg6c%?@8?uG!zWjp&-&nvP_$p)_O#cy+l*mS&~)
zyV={DF)<y3Ne=-<_(Pd2-KNr9V6E8Y<XaVvX$#XdWV&&Be8BZOm*u$TOhyZCR&N=M
z3_?pcNk~XzU8Tj6$;R*+M6kpv5!i8M%YRpN?#fUejpr?Kyo#Jiiak2WA^XOo!5%65
z-f{klL?T`1$?@Nf`E+`!1&cC#Od=8JAt<wSy9MVjNajeG;9YqZp=ZLA04sif`UGP<
z1%M_?ZEf6vej&)6EhMb}H2w7}rzC&HnaW>n0<KoZ@4a39>{w`Sw^%Jfu+SPpJm}%}
z)ubykY+V;0<|=AgE{f=q%RMK=kubgD<4Dz8!dC&x+tCVKG4t)m8SZc=945j*8XOg=
z7qlGkPVpTaWmjWD9|qYTrSk)B`uAD?Fr5AYH^G9}zB35`KwPcc>j^oEbcG6lFt##k
IH1N3n7X&^6R{#J2

literal 0
HcmV?d00001

diff --git a/oxAuth/Server/src/main/webapp/img/step_ver_touchid.png b/oxAuth/Server/src/main/webapp/img/step_ver_touchid.png
new file mode 100644
index 0000000000000000000000000000000000000000..35cbf173f97711cf337bdcfaa1beaabdd8e7fb70
GIT binary patch
literal 22055
zcma%i19v9R)Aq);y|HcEwr%H*osDg6Y}?$}ww>HbHpa$!^826n1H5z2pwH=<uI{U=
z`l_m)NF@bH1Xx_yA3uH|NK1*S{P+Pv_5C~n4f%b=eBUPfzJa)?NQ(TZox%V6T>!Tf
zmKXl<qahyd-5BD#4C5rF?egOX;^2QL$f#qv*^eLU-O^&hYMus{`cOvd;wzs9($}FO
zJG?63;Bf92e~b%g+%+{<uXO6)yE<)keafg+(BZB&hTT>%{{DGFMTIV=tn2;qb=gIr
zzWxI)wTE&XJl+M|>ToIZeVUrea4GozH~=AosL#t*LPwV~wv2*2j_h#~&rMn8j)-<d
zY_6m>Ms~XmA6Mn4r)8jBxVVy7A<B9RPlxt8E#BNtNBQ|Ml^_lFqmMJn?r$Q|%bDn0
z#RY(+{*(JuPrlsG?^*^#T&{ifkpAqrKg`X|N$uRbC@5o#aPN{7Xy~bNP}caVtb%NQ
zzW+OnPb&-xV!d$p*^3ApnTPR`HdXx0T?Ffbg4iCm{rUcu9zf}KwO}qSVj=>SH%r7-
zSpfLgZ_`lE*#KA^iS-N5W-DfMdj9n-P~go@*ENOP-xW82jEs!r-(aXX8!LRjdYu|7
z8oI4^|Ls?QQ^)QGvj10mu1Ho>R!?s$pg7tC^<5`;fh&p_H)Ztj#ch9qTohCi5j!&<
z7kTvY>b~cF%jm+|3V-?8Xuh$;6l@a;US0_y0_5X$8%{76>EgSUKR1Ux5VBak$ZNbt
z-yIWzzu0{e>0M=^t;fR@h}ZQF5-35`?KYrR+NO^Y!$vr=vZwHWrq_73*H9OvZ?tcb
zgqR5p-#zcO+P@<=gm6dtU)x}>kLSdK(PTsAVEsZQjXH@NjjYx4B**syd1)|1BQ{A<
zKkJR_*|P8MxNM@u4RSfkz~+Y`R4napI`FBc)`eu{+!)}qQRDRM&2DK-pZW^EL1WHW
z>?IqYCvRNu=R(C_%I3*&hDd7Ms1$i}yMk=Cf>26c;JPp>a)P5x?fm296TgF_-8&r?
z(w!r<(+ZMys+DqNKOFYuTgg_zQ!l;tr_S{j(FQVp4t)6+GD6hL%byU|<v`>cZ#}E+
zYgaS(E4aEMP=8{|fN+J(d_-0)Pqj1}K7kY;_-X3y!nx*stQu;sO^PAl$p9`|_&b7Z
zgWs)U{dy4?D)DVmNRwDFkJYxSZW8BDP>9BvH8`+D=QK=6cW?|0wJK0v+;A{EXhP~>
zlXNI^5rv_7IR)6lznj@AoM1TnblbK}p4(ch$VXz|Xn0n`zlVhk+awM!B-D1Zfmfji
z{=4751)s6Om#P2DoD#jFcJ!|gcz^B?8U&#+e`@cLPC~V!ZYf=0w?gZo0q&24`#lv1
ztH64R`vtnIs=)=QeI0bQV745%3!)E|g6yYdYsN2?59NJ<w$3bj>FMRuhe4@sss@Du
z>+Y%PQW!Ow1T{?vOIV%aY<wIt(7m5h5o3pR!K2Cy<b4_>ndmK4+dPOczo+35=QCkT
zWKaG%!|LZOl!I0+!pItp#JQ!qwGuKauYAal9QTW&sST294k(zia+Oo~0H=>=7}M@r
zD{d*HgZ=#U@nd6UYQ}-$k>H3Q)()_s<5awcnblb;lKSSul`|_v(W9M2t)JIOuF+OT
zbXtvC2COpCuyC2U*kC|9Cu?$`h!Sor<S|QdlZx#fb>jjw!uRX2_^kA5ZmkMh^~xK+
zToG^~zXt>A;VhU}7FMlDITOuN_I+b2pSh2(6bj!)ZrGu2W93K<%GbcWcsxdB$Uw&k
zzYfkHzZqbm{*49v^Eq=eW${p3Qs%g+tum`upnWW4u#H|JJx1r2)3cZ@EdC-iSVeGl
zzbe>K<K=ziNQK4CnK)KvJ_*rh%e$!^6x7?@)g9{JRo)VGuH+L)J&DjcE>9*r?H}ZY
z%*wWRDz+>N)=MD0X1Vfbh0COFDrXd<xmy_j^&Z56``kZR7){Nz&t{)aVl9KOCzfx<
z*%RN~#%EV9*Fgdb?l@l-yJGHdV6drtpegPH1k6Nsf3i1?+tOt<)0wp=+bKNZw-%uo
zH9WhJ+aX*)h9jf!<2t#Et*1G)hF}75q2QB4tQOUd?#kDB<mI4#jI*(S7F*m{HEF^N
zwp4T)<oZu)^sX)#v3iD3luPuzi_2#F_m<3L@a1KW(<V4`!tN+`QN@CRHYI56EoHW+
z#c}IMx-39L{4HNkS%<r4uRkj=VD<b&fJ<j|hIqsU|Aqp|O*ci>DFuBjItq*oQ#5$t
zbLt6>0w%T7PsaAZyR*~aAFi9wS^hRTZpsnEImNjZe^YZm-I)A07<^0oS;T(cn${@q
z_yHus(!GW?<BRmw21Y<PO&fWG<p|dq0<z*OfYa6l4Bp?J28YHt8r9#O^ZEZ1e<Y}c
z5I05bhX;h^9sUScO6E9P(gHXJro~l?b6{NsJ4Bo{KK}1yy`OduxQsF@@+<SNHT_N1
zFm`O%Y{KlA?|VPJdK%F1*#hsmX!k0q)E#MYNBavb?*;-f(n7>cXgp;7VO$;9e->Y<
z&+JL(m~ER8uuriM2D$OS56yuHp{X4jr-u-XSU^je@5$w6v3jW$Sc|K4bPE;HOdTta
zl+Y}cn64_^dy)#>E!AqUGX=!r@U6^yo3$>v37-1~i=e5I8uup+t5j+^UW7^jf12fk
zYSBy}6fTs9EM$fxMCtAL%^WQm#zKZKNxC59X7;mE0?tNWg>oE~zQ;~)$#fhJH1%iw
zAcKKlscSrFLI`#WEBD`pdBJvy(h-O*ch{zYPAL<WbMf=^ziulJV1eI=hn5hsdU3Q*
zMDN|J#J1wHdQEt3&u^o@{9|h_UQv_z+T$x-uTbtMXZW7~25dDN70HC^oZ6D-K_voi
zA3weqIY5K3h?ZfGTG2K}$qf&8G9`V21*GJy9ARE&;7FQl^g$A5=W&TBI4b(;-V0Z-
zWh#$$!C5KyJ2E7p;JX{5B|h}`*wegc0Ts0bG04c{6OuRkEA+fn=PAypa>fryvu2J`
z;0%<r*tiKqq(G>^<lRfegPnP~g0VaSVNmB>=ib5J7N}@owqlhBQ&Gk+uhO-IIlEZ~
zF@;E6K3Q?1eiovR4S8BF9Kt3Nj@WI!A|_%Tq`ZkqYxD^_3jt1EDK-K^HtjjY@ho>d
zIUuZ;;7ZytH&rY)lhf}ev4VY`9yZvW!ULNan7{Qd^Vy_(a&UxT_}eX*)iai*sR*WW
zUioQ{ICii7=b~e)g8Qvi^ZJl5q4R4D4$mbf@MchiG1KOKk;ZKvO0uGx?Oc@vGoWZ{
z59M1;@Gt|mWev&|(s5Y5F5d8L?=r8x2Q3P=(3#?7VdjVgWCT9fG7n3>BATHh`QZj+
zI2zA4G8*PvV0danZ)|wp<WWV%4%&&OBv5w5;f(HI^fIboc@a8jqnXVs=)wt|7KfIl
zO9O5^s%#cFOP2EkgQPkd!QS)Lu>XCcSCQUhzpPv&$dTGq*`i`0KV=dF7+?06P5)lm
zYSGL}-aF9IED#)s94g2ZT!z^IXS`e^41C>3>McJ1`3-v_@gFROeh1D+k-^{Nv}%rw
zZmD;*>ui}!<KwRVRXOA0RK-Fu?4Db-2ax3scF9V!iai&C-$=7y;x^&A#fbvs!ffwi
z(r9Ixbdo*H7`>RK%ctzy_m&-$Nw8HoMl4IsbO-#a`*jz!{-@fa!JU?O#dURTRPNVn
z*C*I1-oXSJ@|hJJIpY9&{rnwUF%q$1pk?XQw?+vAqdKo{DGQa;+JDc1yGbb_se)Bt
z+fXP@?*J%fF|?Agkhw&RDAEm}npa%Sevub<TR~dHX+!0d!sT}sz?_YR=cTn43Wf)&
zK_1=<02`@?Mc{Tw?I_}@OIC`r$0JwF2p1!qq=>akd?e|kqC>Qyw6Rh-FbJy`5neMY
zGQXRoGHS3(l|f#~z@qoywjGG~s^m<+tMxLQI${omPjyfZDQ06P5KiDJUD=afjdPoQ
z&$r{pgt<nIgnTO0#`q>CAeeLpYINSN-xDMx<(b>{aGG4)u{Ju&s2(wk!Ly@JlR!0q
zJr4WXn5)9HUwYe=z)ZgyFYVzzosNOS<K}Vt_BWFW7eyRCDwq4*w>+oy3^#bF*{l_3
zKc{|=SFOrT5Qj^PU^omyFiu0Cah6u1c<sUGs`}GcURB`m9g1m1#3+}I#x@;%ob&vw
zJwS=v!>E8RGg=rU{LNKa_3qyH#@Re1xmvQH%4;g--D?v`Q7#HjJ>?Cb;v#QQ@b8K%
znNobv+AvOhxyFV_g^B&U%W_!Vnb~o2QvHC)Xy)M2|Ln=(zyl4$#Np!xgx#%AEW0Pa
z<`C(Gd$Qd&V=Ae>&6{82ha$?en!lh}${U8KeLQi?jRbKG+|B$c$Zx(vh*CrKGD<#q
zrEqAK?gyRZ6PmJQ@4=we0d2n8*eK-sC>E#4D0hlgHX-?Ong_Y*y>Zz@w|KXNhgmdR
zN$E|oi?j5&Km3bY!m-hyH@cv<HxsDsDYgY6yJTuo#nDGcvyFd5YN?ZUS5O&JZ?Y3s
z#60~R`z${MxlFEyLiR0Tt<A?e^5-7TkqZK@O?kDeKT8^M9Puj<a7VQ5-CYG9WW*>-
zE3fz8yz#+`Wq{>*>W)Q$7@^VL70ex=wx?`yzR#g4CQ+~no!0b5@u<!;eNhliN=qD=
zB{gWui8yeUGHj?W6LYtDn?^2bD}&DSS8sG$J=q4P#2ZR%GzYIRAhD?oJ5M(zt@yE_
z%jr~RDI}w;q0O0KJqjWrqf+KXKTlLkNbJ!?bSX~!Q8KQXobN2SHP#209xjlLh4TC(
zlQw-PU76#+q0+IM1#d~n%-e!zfxqfRDf7jv1|^g%APQE76a`+I^;MIDb}dAG4G@#u
z?E*<>C~Q7$>>96sk&<HWVB;mVrjnSO!l1gRkuu~(N7BZQtg5%`e`wa~Y2&VOjui6P
z*@1Y7LpWqNa5}jXdG_4%plXC6Yqq++y~0uJ|Fl#{RiePKEm2xbcYZh36BMp7Tz0!e
zHWAwO-<_OQGG*lIUMR8MzGnL-?of42_@Bo$d)I3(^~mV#-ngwU?s0_BuIAR>H@fyx
zTdg2Idbah2>kQ~?vilxB37rMl(`i@Yas_Z4Z7F_zwbLQpW&T?2uD9BO+hAZ&(`d5E
z#!s&32xk(+Rg*_nDIpm3`(7y{(+h4_$Rf~Z7%v@*YjB8pqoFZzesgDQtYX1QSH3d1
z?-$33)QH4V3JMh|<|^E&Cm{N&nPgiUSSwh*k@UA+#`n4j8Hd6f9#x4-R1fkK{A}-a
z-@NuHJ}@UZ+|WV5OO3I@Dt`P?+?fnhKyESkC>-_E+n2Yxk|4^C*4FtooJS14zpLIL
zt-YHHb2^g9cj0L1-(D!*%Ual1N2#%oo&XE}Ef;kiE6-Q6q#JM`8O_*!jhq29ny83^
zQBrPL>Mv+qBI&*HF!{F`A*ZvUV6+=|@%G3gXSBT2`>_fn08QH?;9@Py8D}?t-WQ_g
zcuO;h3@1etaHX9X`ODi`Fug<ODchb@Fr)GWm$$@C>nDWGF&N5>RyIk%kbKkmt?6(K
zaBH09*x)watJ)y(MO*cu2W!dB!SkMK{lCXE@of*nSz1^-N@4te6igXLAoRS5C`Bh)
zNlP+n3c`=sM|uWSSGrXDR0q4|tDTt_F#!5crFoGxZxg;h4HJD=i?j2VkDR!AxN(A%
zS?Ny7;6;q0Y)ezf%3Z_GuKipBrGB;>{P5{Dc5g3I+Jew2nG@4$u3i6ZCG4Q?7Wb{<
zOnmRWu(UL|)6o{>VbeEfot_cQ`HsEXcP<4DSoqoFw(BQmW^Q;t>JpL#yCB~6yEvca
z2n9)0uWo4=)6K~BaWZMjxiO4mPkO2DPDnO4U@q-ONoI26mSWG5+dQ!7m;q~lEI^#o
zKA~F6Py5{ZiCsBtKa<3<pxp5=Iu!^_poRGv1)p$z`uj7w|2>Z8Km20dcj4ZTSNzpW
z9t$|fZQnvtVn%azro9LGT(qim(%sfVXT|EW_p-Wl2(PUrjCdHOm8Uk=jB|dljg0Dl
zgb*~jJ_gor45Fo|rJZ2W8TbYm)hQR81BoTR1U?)Ryl?%DIH`OMkWg843lF8!D*<5U
zCUa62kg;6NB`7cnwcEYA_Ct?DB+c~lgMf}2l=FuB5T45url93Y17*B`4}9|%ZX0${
zF0DNx-hlBWB+#x{SbcsZ=5KFT*#Fb=0s=}f6B{G_7lWl9n2)O-zrLZBl^T?xgY2S*
zk@T^KS$f&t(bi1F(_Dd&n^rZ4ryhpZ)1unL3oDR`8Qxc8GBO&I{-Co<BK#X*c;a%h
z7j2S)U>;=jLiX{jn(1E!5ejleG8kO71<Ha>Og|}G&|P@0#JYK5M;+|~n;SQdihqIw
zY3LIec93qWklaE_LggFcqI!C3wN+8q9M!CXc;JzfUc27s$i)ea*cZi%8@`;1M~xO=
zYWC$Kg}bgje%jOLz=nu^oMryQ{u20#6AqA2k%rAqW7E2fbe_X*zSBMR7FA;kAT}Wg
zohbeLv%vPt_!qL8?u+(MVpRfYm<qOPPF&nK5XWW&Zc20FUJsr|%xm$<uM4t<kZ_Zr
zIoG{5Z7FYvtXcavDK8DVpmH4o<CfO6T?<sN>;yDF<P=$SA2B}3xEe4!-aWUvP(g2q
z+C1bP$^htZ+2xRv3c0^LO&!1X%aHyWO`>>?IfM_-u&3ing1x(PXaez~LiHEx52soq
zXaI$S)$|bpKW(7<Y=i+>;6N-J$M}@x+G49txQPTjXWRr_RCU&!Kz2q2&~PRb@;T4=
z6Al=!>BL>by@(H-wr<sQ8cl?6yFeOJ{7E8+gy-`BE<J7|Zg-7l6bp>5e!a*Y#)O!S
zLvXS;AZM(<X=28e|Dp29%pVs_PcAB7%4O=ew$%d;f#cw+pB0tT0^wAnP3BghaFW`x
zCl@QR1IQ3jigY5E>=KVYXn(^sj?F7Ms0p3UgNye|w~~c~c%^Ts_hH#<vY0fmgt3%5
zr3^fAIpXsZ_!Fp{yzWyjTc-NWRelqbJy^bYsfhfsMHWoX^*=<5xblR5cX&<Ofs%E_
z$BzyW-cP|Y%VK1SrGO)*>`7p8_=2;WE^Y$?h)261tMmm)w^tzf(Po2BdIbxQCZAG>
zk3UIHhU|_IY$$xe80pgLLX8A|ZMTZ4wfYv9@hWGY_t)e2ie{Rb_W!G@9;0s|Ef8lb
z)W^>|qeRi8J*iFU<N5qva&yt-C#K=ff+)(Ne<dt&--+5+_VOq}z0bgs8S-HQf@d{0
z)r}h@2Xne0Ac*+v*A%Qp%P8P_%I&PR$J(v&kuku^dcke|ToO(;BLrHT5->Iq$n$!`
zqr3zOk%hTcO*QPg%cm#qF4j1i?nFCp*qN-0%dgVlLVX!hcOUO;V}!Net7A6F-!&h<
zLffMd^lF3F%hnrerhjm|qh74!G5La8Hk_9T|84O^`2``18F2pK8Rp5iGfx<Q!dthh
zyNPG4F2y;U)5d;!K75@lla)e)!J<Lq^v6I2SCVFnVJ&IVI5L(}w_vFk%g2{D!P-8W
zOqPPq0g10Ggz?PaT^DABKYsK6&*~vza&y18-iu!z{9xGS*YGoQ#dG>A4ICgjVZQ3l
zr{kTFwD<C;E%yBpePf@c7R%^?{uik`B1LRF&ZaJ>sPU&sOzywJghdl>Lq=zkf9LF=
zfQ8%9w&~rLt}H7-db9M8W<LlTn?K8hm+}P8{<BN>VY}yb56Td5)f}|2y*Zyx1Khhc
zj~Xc(DVpH1r4aLRrb()QDl85B-3KDE^e){~sgNMD{AA~*y+L(0Lpb@alHPIZ1hjjc
zjSE)K+rm^NkLtx;?Zc-}HZyW}oTtA-LE9%4dw&}KMmXoufx9yMembIDzoP@^M`d@N
ztMLy<QJ?>e>euVMFQ7~%m=c)xHZ85CsbFl5yEk?#VM*!xt4f{g!hbo1+t~)$oMAIx
z_F8ukZd!DS(+J6ni4S&oJ(xFL6McH^MM$6xYu5#QX45w<gJBf9GTy%D$GNrTgs923
z-UJ2gw+$*Djlv+pzt`pr2Q=9MMzqzOiE;8Cn9W(3{N?Ccn>`9nU}uJ~56fsn3+p$-
zdoIzGkFQ7?E#Z`NC@dAwONle4f2}^^w%QrQ0R&xo6|91ykdLq~tSJOFr2{S2?KlEl
z<y@7-wYZz_U*9($(}o0I-d1>Fb8^jeV*wQ2l-L^revbqnoA1cBZQ{4K-`bD(30k)K
zv{aWRQN5|VQL~g8EWYD7zp#LzZy#Jzg&Dh(0l*{Vs@;B03E}EeDXda_UI`m($7k^5
zBb;2ibTK8;VlJ`_9rf$UUZ=;n2Aj_m7`VBuVgh!mwbOr?_m)|SPlvR}Fk)!a0SBUd
z_8;mbM3z9S?KFQWob!(R)up<SiWQcG5Q%>>t~I+E_({p2se%7=d~*2P`_`K@EijUJ
zW27J5qI-M7y~%882~+%vLkap*7{NLt1Q4u?SF6UBiT|wP?Csb7mOi~^a4Zz(hT<Lt
zyGR&32g<*M<tgDdIV3-7R)JJ~g`|;sHPmF=JA%}uF_|^pyM1`Si_~?(D^}8}tn8hJ
ze;A`@XpDr4D7pJ>++^oO2KGH}?~b-)h)e1kx(-N-$<|A<JZrNL&tNhM-pMkT_zNR%
zyS$BebKe~C3+DIQpFVwvP^Tk84H(NSf7W5Xy2wPe7TD_0@swP^<)|LaQ844`tC&9E
zl}8THVEo#pqI310r&y0OpYe)lT?aT=1mI`Q!xJQ%0!*UG%!W3WpWx4<K{dGzcDe8j
zfefM&azVh1tMu7d@AFs75?;-~;;p6<kv~88#ZY3CIe~mHIV2djq!kH<6OSw~t}%1!
zHq?f#l*Bs%&{SWDx4FY2GP*~ujNJZw)t_v7^KX(<dK%jbrI4;4u|JM3cODwv^-M38
ziRL+?y^|rq#-kmzVoTxDd}F4gKs~6vKX2F+#!e${KO{-mCr$w!C8!aPMXl%2itcoM
zs<u6-cP@LeJ*)c{)jNwiX6E{&j^c0vxc->FE4?zDR~`jp9{UY-k}8pCv>tdEHI}Tj
z_zlX1_AQAnZR3e}z)Gu*N9UMKK3TuBEfk*){I9Bz)`jIRm?BE~qmlxpKaTl;b|)dZ
zgCtGTE~ow=in3B96(m82hGHr#hhC%_lSO3H$eL=fH(7=A33ub;nb0wh)Pq_D%Y&3D
z2j`^|)uW+Q_d&r|!iG4s`igt~h$^ipJOL_oxFB8EmVB40TB`VKdMq+%;cs866A!c3
z6^i~T;&`Zzl?tn8t^JafxYWAwB;{W5U=j|20|7){={q&Wm4<cla|bsR5#UzMj|A2>
z8(kv4$<*sa3t8Ga__F>7#k|2p<7$CU4%dy(BEE?>sjzhkAd1(1P&+g<A7%__u1dAi
zFzi1o%4=G88rcetuRZ^Tl5=8oRJ_V$5rnolT55V1F;i$h49on7QfJLM(LQ>hxqf$L
z5gY^L#=Cn#b@7jVEZ89AyswG9vK2-;E?48%+9AWBN0&yV#Bq{?K4WvF;%Ih|e7off
z+lG*Q-zz%~wnrv`zD`n#L6Bmcw%-%=<-{3nqCg*(vtFmaf9<djs=(X*vlBl%jnRmD
z;Yvq%^zpw2*V`F1dYi0oS;tzM`G{)h7Dc~<px}KcPuA`WTt;?PR6;4sVbyCJ6o7|e
z!oMr@n3okUBABmb%^=Gq(wqLG9is&F;4Prk*5;>6ooK$TP$7C;q-|0I@F<6rg^zuX
zK3Yc(NiK?$*DB9`STMx=!B4d^lERq~9D>pjte#lX9`zkV_Z?%HGFFVv|5)(Qzhm-0
zYIIvWdFpXcm+GrEst|dWV14w=^9xjE)b!@=3xX<Id_Dy17&e1*W=LFRtis%HaSBs`
zrrIdIbij1Z@&^Pi8M8s}K-cM+#Cl|o$;0x9tWb}->46Xwtida8EQLHUgUvV8{X-Q~
zYY`_xlLLq0X?lV}<9YEL#7KwwF;`*t1q$LuH`IWX_uOGu@L+!zNoaTA^<y|oxtX~$
zPYx>LhH!xd+EB**XTg-h&R=$Xf^%-f;Yv&lb5T9L?3*a4I=g2O#@a6s(~X>8;a%DB
z8Qjq~=`CNVS3=@}b<Ny#%Ii1Yg2*EY4q0Euo)?G4_s#@6E~q@^wS;1ejW31+JAb~!
zbw+XuabT1Sv^szB139%LuDBDsq*@)tvrRKypK{YK!;dKPOoqY-$-;CHglv^i5PN`+
zSM);up9bxE4DD`n1rkoL+Y1Twg+opsPEHw_{fF*F?d9NJUR`^4?e!%lj3(9YW|EYo
zJD9PTaeqYg99-qBG=A+9rAFYUQY<IhUZlacd?0EHbOaxR>P;m5#8`%`0^$=F;3X!k
z$i(@P1@;tWN4SsgV)In$GCD6T-{13f#Z5}t-sq|_A6Dk;6|<K^3o{`^9jWQ)ge@eg
zm~qZlmZpV^E_)7)XE}#SIdO}I^{dRbpCv^uwLcd0G$xX)o`eIWqN0YU4jm;m*a&oR
z%N2cnUodzkZ^l{!Obq%h_~st;wwA8U_`01b1U4RdXU0x@KF?i<PNQH*6;mAuVwo)?
zE&lzQlf~Tn44CkTn=kbyo**Fi$fgh%AyR5HItu?%3*ObpLm(BP8QH`dAr(l~!PtiV
z5RY4A`~rw5>`t<OiC3FiF%cc>1V=fgq^FaTvuh_N!^Dq@wqdt`#%C@6e(NqRg$D!r
z3glJxNr<<A$0m=`X-r^mPi3CSXPf~b6b(g3hq)eU8D0=@(nA3+slM&cRD;j$MAFVn
zzFcuf=<-$p2Z#5irKNob4~Iwp7_hT<P_|LCs(i1L7j!}wSvr9S<BRqp3e&}zL(u(P
zD3&e-Te*}d^eLuIb9^4bdIt#;ZL<C^AP|GQ|3>T;=F7XCw}P6vdi5qnfOQz=FiA?%
z%^-NrvcZkkR#D4b#n2_fK;WfDDiwo(hP6t7*PS(Y8dTSxR$jxp+34b8viFzB(YaE4
zUSIBeR$n$R788@x5lchmdx7fefbJ*4e;3PeihOre&Mq#t!{ZF(v#dP<eh-SiTmX~P
z_D?bZ!6IDz*NgJeB|L_vV&pl%_hUA|_$~y7_^|UlSFlj?ddE}bU;+U}GhRq<x4iu~
zLu>Q~VB2eU`*gdElkkM~Y72+2mXP1+S`<l&aP-jDYi93OS~uzLdGX`Pw68Dl*|*dR
zJDCE)3o@w?<4NH8N8IHuQJ&u&OsVg)u@ZOEm>&{<M9;_Te)3;driUWxh*$&)%fSyM
z!3Y7rH<OVi>)!%yl|yZ_x@QBXrXf(jOjkUaudbi~a@VFzZWE)=t{bjH;E}Tq@dLr}
zd@*r3yyN#>>YR+^@)0x>6c;8|f2$)A{~k!U0ld$zul$f#PO-#Uc@!0TBJS3{k{2C@
z)WxEY4>dApQ<VMoZe7I1s>z-?VtzjpP{i-;Jw?__$V>da(kl^u5eshI;~pB}hmwS_
zeDF{E_#z$wbgtybX+0Y!%jl?SMR>WK7=LuSX?0o1*VOx8^3WyRcZDvk^`$Wy#$ilq
zj&-ywAFb5rN0&sW8!e8=Q!&yGcJH1*#=7K$e7`zy>2A6lm0ED9Gtkaa*?#;*$mb`a
zcMl4vfyP@M5$Ze+_tY3+H(Zzkq^Q$o)B>IP#5y_bgfgOJbCu)NQ<a@jpJNol!IYJi
zwK_!Z?7o9BE5_pk;%kjwtR_W84J>9mwSxzta1H85CSndRcjm-EOnT%FdR=h_$jNm2
zWS{UP-Cy>)ZPXp+veVCx<75i@QAgCW4ab7_^?p7=4&w_6xAfV9hDWV~8iR^nfmQI6
zvd;CzR#_|?db*k6e>>oG`Y^@Og6>03HTuGdkT36GnDt3A=a!}H6gbfA$I?lZ=dipG
z`PPB~hhp?Cd}RADp55srJgV3`XPDB;CE{?jx6gYmz=-#NkmhIQ(0tlVc3}eHJ-l?s
zHLHr}0?^&+lp@G}$WcxYCGN=48CV)eSqG@($TZtnPC-lGi-N<XLyj&K&9Q&#(X?`%
zNA3K`np7Ddk&_g-XzW2w0OlM2B<l#&OA=S#2AbJ&{gByBt>tF~Zc>7RqesD>o4<$A
zF@_uwad9lU^uP6f_EfH2(hOJO1q>C@3XYmq^(gJn(h3e5uK39hPT_@GamY41My#+&
zF45pR3V>97aUWro?k(SoZ8tAuSu~E-Bn!QPJ4f$Zt{o_fiQq`yebM>^1h2B-5o~IV
zHN=Xjc#Jn-EwlXo`R!|i2bw~%apq&9(s1c7Tq4E%Q5sZY4PZCJ_S_=X|H(1o1W<`{
z^5HW+yz@RoNzYaVbPSFHVTQzCj9B0q{B5L%&Gl68yLqn6I%AmAI~T-plGL70Tq_+&
zdF71r0-tJ9;F1LdZ25s_Sb4>YoiBP^WpSYiE|3RRung_Au9`;SML&46LuoEt(MdOK
zihc^lyO$*_x~7mfqk(p+KXy%!_eM~t2Td)JRk&)7+m|T$+U`Xix7`-QkH3N>{93Ws
zr@EW%$GOK-AR0wt@C1B-cY;zBK#05HE_2zne+5E~Kyc6sCsEVVV%3Q4G~@Fo`ne01
z6PJ{h5Ob54=t#-QiJh<1IDLv^k#JMvbaZ%C$|mLJ8ptzHbK_W7RB&An+|O6K+0tou
zb4g{7OGPLu9pZ@23g~vmcGa7!{%&Vz|539cr5BA^<@mNLXDA}V=S{GPXPM)|;eKhN
zmlZUUT6w@jWWUimY$A;{>Jl{S787OLHq^qcre|Hj_2f&+;BFmUMk{=97P=UYsJ<b0
z`ka)Im{D-o>NS~`)W%JGAMA{!=S!^9Y!#TpP10sAJNL}Onzaua$=K!Pa<SC_rrYLF
zL!SOSCB$O7QO#F-eSHk2!+x_>Jz4Y(zPhU%A!)<H^k~mzj*eE=ZNGIj!E_JXJT1HT
z<{&zO;-uRk?+mnzlFV4iLQ-$5o3Ykvo=8)sz4Ac_UjF)Xag_W1N^Dc1s=h3rwmMC+
z#Ad<BC99k>V8~6iZ9mC$HZ`bI7uqH?#KURunV##C?WZ53KC~NZ;VXO|V@7ly=Npr0
z37jE46Xa-_Ax7-vYw7+Op|Uey`DUsgd>KFs#Xo^hyW)WirSjA__)bs$#(QQ#DNG+^
zLe-@lvrg|Mxs7u7E>b$O60Z2sc4*xG9y|7hY7~&EW1SMf&?bvQ6`8W3TmSEtC)ac}
z=$1QZ$UMkdPS8B#(`a_W^3d<#@Gw;anT~<BOWZkI2mPMWs%QMgO4>tQJk$oBtXj$X
zuw{wwckNoc78gy><O}(SUEus3JYBTXZ9_G-X3AIsevZNfgn|ah;`F<b-jro&3(Z~5
z@afy2Dp!fNrX0^cg;ut~5L{%Je#?F6TTJw<@lm)sLQ+{-ne@Bz^3hB8Fa}1R>*s86
zeE)a4Gi8cEgoEG+y%*pCwc-8_$-6Q<`A7moe-y-tqI&BDG<qsd<Ue{=^1MJ}dJIN&
zi@_Ewg{$tdEk5@M)DyLgz1uUwS1oyaCJj@hhL*Akib7vvj~;Cx;8;PTlv8W+B#Wsu
z@~GACdc@{`^nO^$eeU;McCwvNz7*UaLIaEg)AxJ7UXXg;-{F=M*7j(x8UF5NJ>1dO
z34I+xey?*CT1<{TxLxJ2y=r%BYg{oM06G=2SfcK?+)Qdyu<}<jGH4qc(~+HgHgs0|
zC9BFHYhH&NBR%h7;BQ__#GdzydztA5RJkly5XPPhRCrupK7p*43fv=0(mL2AaJ+wG
z%tfgZ{XP!6tptzdXD|KD?2bDkx%-gpFwCDHNa!fZTa`hvUVVKa?IvsLG>igSw-qRw
zvCWCD4BgKr*-i_Q&ms$7n{~Y_Gi^UW;=BE0wz{|}#`xRpc0hs09k9PSY~-gn1tw#x
z7wes0U`?m0VYf5{EnI0rMz06mX5u_umoA@Qs{)KayS@7F#cPS!En<dpN;(%QgzcTL
z`UN>YBiM&K!s_`pW}*%neLa{R#{z{>XH|%kB<rouXD3*N#V;sHJX-Pdpt3wd5+->J
zaM2eX6~)B=IuVyjn#JdR)xo$^_RhvAdR@fQ8tAi4ncRM3guGND-0;>a-}!^I4u`?<
z2v(d*y+2IY?Q^lNr|+HH1@J_4C8Fnh=~!@kDI1i@1r+7GKT^g1+Ige7%A}&FAHMYX
z1PSQ;643JjGSTU@D_Kja_y1Et^ZD3ro2&8h&~qC%r=q5=VE=Lc;GK}29i-U%jz3uv
z{Ti<8fPql#zJZ_A8W<cm7`|9~a2?=>>DYT)dUmh`zUY2P&v{rN`4ywQs#i8fr{#+Q
z#P9@8ug*CN1?U0x$*E{)Qks{4QW0z0$mjXq;&4<O#&0@wYqQ%N`>89z6>|5D=E;rH
zGX9BKHTaYqYmUV{@OuAS=JXMv{QQt^nDQbbua=U27#h$WgBF$@GRfEp?sIpKz)}lp
zlavkfZZ*Ot-neQ2NUa2Gks7t=zgpBOD)*q!`Cvra<@>}O;eW+G{>0=nEPwepj9qow
zz$ugUb5cWH`ikP%>&IYK-eW+LlKFi8GlLqR++_d0FxeK-=ofQvN)W;52$lCht@Yt*
z(WX7K9j=^gd6${*`4vVc*5Q~!?_bU#N&pvhv_=+l<-T%EyuN)sp_BU7LP#bU)F*+)
zSUl(;Kb`P1a2v6bfs8S35j-_{Wb6uYJd{;q3yFLb^6=@KkW+EHlgl-lt<smv`3CVw
zzLwbej<usMZRS`vMTem<*vrVGahKA&`rfAMWG1%mIa_Q{;n6Vcu&&5u9m#TWmu^ex
zy8iZ+Rmy{6UBJZClL#W=Oe!HuV2m(&l8=a$)Ty1<Zz3D+#~MqYd)m>oP@ktPLHOLd
z1bweqRKmEr^yP4{_Bd0S_mqfscg5MTd+X|k$q`Y&ipG2>#qU*FXc2GC>mO0bGo5J3
z_|0{u<;!M+T)OqUMh*emdm+Z1fKk^&23lT$SsHs;{c0Qd?~xlA8sJ6lr|W&GW@BZA
zuZ=7cwW}U@vFkx>Z>znx_esjn1A@hV9jwcf9i?oqIJ8^?b#Rsj<^hdjA2hl{xTzbj
zW(Gb9M<O5=H=DW(g{;YpqR;t&jKlEmr@vI&w&%VRJ97?N>7`SsC#l&>U=%+*xAFl1
zyd9#TwJ4ItN5+kE=Y;LWF_f7Y+$wapzrHEt(Z5*dQ&1tqQv51+Mq<Iblz2Btf6X80
zH&XQyFxa^PBh<O2zS0qJ`{fGUK|b&jmkK*S4Jo#=`x~JCnjetluno^;5+Axb>(VBB
zN){MqJ|3aKgsO5im127;3LBv~*s>jVFbuMKP)g_=k(o`8%fCSoFWH$Fih&X8Y4t*9
zx7kIFh&gMXna{?S30e%N^>zIaHoCE(=iA`IERcMo+b`k2@D2*2ACljGeC3EbB13ei
z&4r3(yf8KieC~2~L7mfC@6jB9_Ozb`g(z``ulHF1I;L&ZQuTGeKS;HX?#&aP?5*si
z=c{i9de%LOQ$2Rx{+n>DXLe-YQ_Y(?&xbjK28EL6e#3x0Zf1#n;Iblw=est+zjJW$
z*`k>-+S_aB!~!0ruR?%bi)!a0Wwi?7ry!(r2!IKTN;yU}&(jTbr*B@uW^l{|DYy1m
z7un^!P~1p;Pege2Nvbur-bkAlOwVH@BfXg9mHljKcnqR`7lrZoJh&BOkL>Vl4D{na
zqWi@$44#E=;-00WCGA~<8E|6cU1FV%mOm%_AWR5mO-#$a@&~qcI^C}$o_R$S{)DDr
z%Ct-3xWwf)LvzOLYFHCop|M9kQiW^=j#u^cf74m<BrAp4M?Run0#4Kl4Lk##2ZA(5
z-JcLxV@QV6UIwwyp$&I@+}t>q8*P$a+T0T|vZ-ZYkTdw|T=+J(lu#;7y3IlsO%_!2
z)a#U#t4eWT<@#N>P3A(Q3Sr$zw6v<MvhOAMP^!G{2bPZoN8By5hd`h?jlhVmhE8b=
zd{a|Xs_z>jK@8WF4`eI1%UXdc)X?Z~g|!PVEDOVZuAaxJpF*I=<%+yK<joF#cWr8G
zl8RflwPoz}LQB;IUTSNlbK|U!Ij3V_`x;kAfTY`uXV`}IVX;VQarA8Ag2e>H0m(Wu
z(P?4<e;zq8vDAi)SVM&P$xM!Vj~j~DU1Vabv#3HV_4nSJGOy?~8<k(P12|Ke)`#qu
zyv>?G1=ir)QT!sQF{wOdL>Y}Md9Nhxg@oMax48ASbxMR<E7`rBKo&SYxXEg-=wo7O
znt9CN`^NZw`AfwSKZ4nfUnt2vr~}%OsPSMJfYGAEFpp4ve-veZRDMy^hlYgJ5)rv3
zTKoLU0bAOnR}F4<tz(+eMYwOjVY-)8oUOtvi=eLNjZ?tzDY>|UMqAe%ueublrfeuG
zuffLPtKZ>Ees}Mo3Ok);S+)H20fkteGC4Utyv5yHHQXvLF0RsVI@c+0`|muUy781k
zR5?!dT+g%1d{P6$!^9-WW-9xNa{srZmyQXeL9^7lRs-=IY=)Wh)}HX#)RY>TvVlS1
z%l)y*@*T$7pDgQOn;ZUOV+1~jd=k+e7tI|8bKH9WZEti;%<>UQ-in@4!YV!_<dj2D
zvkk6!iHO)}vVmrVg!Z*^^$juim!uM{W-DU%t1)FA2_2nG5{A;)#d|rtvPG<^tTIf@
zMa<}*%8m1^0!f6st1n3o$9PzHSeWSL>msSG{vUH)jzsDd*?ybd0M(!NStav$)~5dR
z4l&@sTkn*GKJh-b`LT5dYZsnWH=h%sjo+M0sQL=wN1MLYdaZi$FUiX+O_|h+sB};>
zBeytO7PcC7{Sz3psi~d~DOIy4k}@)lGNx^W+lg}p+_^e$itkCiknttippz4Psf<f(
z8I1Z}vKa_TENDS&Z2T(?b77ebWwzeu>jC}-Y7+i_<`HBCv3evnr6p=?We|nHZqlKD
zkpOXMIs8<Rs%!fB`pST8jpowGvK{Ko3N+3Sifl?R4G4$GfbX5X(87MuQAVN%Y^~}$
zM{K2LAdSpTpo<B~v1#s7-D!*a%^3wKl;+QmmQNw)4^{#~+&jz+LilPQ*7;*x+Ft8x
zFu8}q3XAsw7dzNtF?xp<o|bAXpgYN}oO}}X%x`2l>Wd>>RA}Ul-AIwb{P9-SDMe|P
z$);0CHWuJ@>a#y*hi%()V>abz1JFXWy!a0}awqHO3+c8~=cc7n*o1J?a1qeX2nD#W
zT%8cI^eErDky=Pc`Yp>dI7%a*NF&L}C@TF@IlL5H5VDO6?4Juv_+sL{WD(}4Tv}$7
zI@k2JCSB+>ZB)A{7iSKqpm1XwCmovBir<dKOhgL35mA#B<5*cnq_NFThDNje4@nGN
zWgX&RD0hNlPQl$A)h$pduO+(}O0ytzDTP07ZfJ<3H-QF-QIi$qjbEfuIZaNZ@TS?+
z_|M~&m*;;!e(8(ENnQr$)E1Em@-L$^QXF7qa@6~>ll*YgPFmCm+fL*(^po#6Rg&<t
z_?wa5uq`!gZrbtEx;fXXuWNqOP8ood(grdCQM=y`)e<AP;}PH8p}BX-xvTcXin}Yo
zt?}$K+xtUPpA~+w)Hmk3=VhectQMg7x#Rt2e}{P;m~QB)Y;Cb5P&v_HTyHCCC_Owp
z?D_J7r6#I;q;Z+sOhrUC>qKku^-L=8=@f;6H4An0TNA&m(|yQ|%k(tE^J%(G>^_6m
zI=a?f5f!sb|7q)qvbebP;KlN*w7GcV9eONLi^u&e#^<UR%T}XiM7OTDb|!hLsx;Qj
zea7qLAaj3}deY%_oW+n(eNlp>{qKq{AjT?W3aQhrf~_8YEb-q0D+`(6mFC8|Y(RiP
zXCOx9du3_ti}2<1ir`kDq5mhRKqi;8c0*Moi6`&NsAc=>hAq?SzhnULU$0T3Bi4)#
zcya1wGAXfYR?q!a*AlMyu`xgN8ME}IQo#Vfh#YP4WGmsSq7(SgSvd8o#h_`gVe5zt
z^oJiEkK?UrOTs$XTJuAe&;&ao=b5dvz}d$BnY@DyU4I`Sb2Qf*lrq;9wYKL1w#B5U
zly7%Qdpe8u{Hm@eJCu^hhp$|mdz5j8`-`vp^%$@HFirRNgL9WAHlKov;_m2+zXtQf
z!2fnw1hk*N$jk0*N>NSoHVw}~ZM!FP@BSg_YI-zprVlRQjd#cAEoX1#ikuwV=U%@3
zdOzH0J9SXaqcVxE^4IO3m#fW%Vf$#~bbSY_DE52NI6&g{l(ykPS6#1i+|yc1B@F8L
zT+_?|9_lX9^>eVZ6BeJK%<XAA<x&!fPSkaws8Es}#_x@t6r9Bdk6FSk*AIlK2--->
zAE;{I_Jzs*xNIWoqh{3r$#(d2>@a>mD64L`u@K*^nlWry-LEl_u`}Jk527s3E9~rb
zMOvxm?DI_N&&}=cM<*Z0<ll7|t;L3SxT$L@45L_MBY3D5#!E+yb1izL2Ys-EwLkFO
z+WW{E+_P@O%r$9#$9QG`v<`{VbmKpoo{f^7rdIP!IqVedZKiiG3L0lpiqj`X6>GQL
ze`V*ua0eSKsaYuG(^$Y13k!7aHq?I^?RO2DMY+nIf^zTu&A5L*c<PNaDzc@?W_qWb
z^FsV|<f7sNo6f;1*oZ$rrl%j`Syjv&@tscQD{glmuvp_~q+x{a1BdCAt}!6iSvQgX
zw<@AA+jrQD*AT}jrO+*gmJ%j`25w(Sci~+{FpqqA;Y6;!x`zl?`^JS-!!wgq6TW<4
zA}Ch!fDp`ihS^?ZFo;0JFi?+^dWFj-Y;DB`c)rj$f*%)|kzS7~N8~-Nc33*n#}+Ur
zl~B})J};|Qbyp3OO|v<~{~urEde?x%uVAJ+%?!#3Zra00GU2?D`bAMr3XQL}&B>3C
zU+syHUV5&hAfBaq$ll-16)Nx4$Ctv+`T>!#c$_^C=jO;$b12lbCAXb?yBd<gq42V(
zCY-?>B9k?S(!9eVk7*M`fmS;HV-fQ#*P@eq6PrUYJBi3SZWe_{@bqlesc^LaeC~z#
zuZ2JK@7eu@5!d+?A^X)tA~`I}ogm?o*cW2!Dji6UbS!&|YcXE~h{u02;#V;1WA|w^
z9a7&rv`E42pxNT^ohQa^`chb#v$<6@hTuV>jWs3={=^H%=kg0Zb+9p+k!q}rmR5sv
zFyVqY=eN16GK7Wl)WphjV-WR@rxyw|4SBxER#}iDipJgIuB;KH29hjtC>=#iw1eI@
zfXrhjFMiPLw5G5<s)gugwDvLf%80OnaS-83E|6?Bhj0RauUueGBOFR6;&EBkdt+iq
z3dP;om2Z<XT8;hA&W!PQ4k#_s@s|>C-t+Iv7q)TgN#=v1Z|4RYUgq9So)9tJaG7fk
zRRna-v(IMrPQ^ba<>`01s|K(5Vp24!NPr%yzsz526_=J#KlSl@Kd6wkT<3<-UFM#S
z#e@BI?U$py(J?1~W82>=tKd?c^=YJAdP!1wZoL#AX~RQFCtZcN3bdytOyPcf@rzOu
z69^?FFOM&vc;bd@G97g{56x*JmGlZM?x&#d`<s(E$;1PhRzH`SF*BaVpj~;9L?t^Y
z$^ofE?eZ5gGQ7$2A6k#+J_+zT6C<}t_B(i|3O-k<PWv6TqOjz9FGitXt^g^K0y7UT
z#mB2EsCcfo`>RrI&;kqL1DB#96n%BI-BmQo{3k`23=c17lU}d>M;3>jSmai6F26L{
zKhB*3Rj3l;MAuV8pWC3&v-Axq5tAgH+=VVj$4E}yX4pX>)AgujNe&u2+XnW$P1efa
zY<tsADcI%<gC-k<sAyQ@md&|B?(qW3PMKG#!S=_i?J7RYh0L6g!3@TYRD#7aB%L<v
zqTHOBqtjmBg5ubo0qa#Uk&~pN9luwaH};+Q*@;<kdc#(9ANOlzcLg#uo|nTmaPA@r
zAKJ9#pqKjwclJdMvZoly$(5RvS=Th`Lz4Y@nY_HEjcz~_vQh<0cs>U2<Szxd41)>#
z?M8@iQZ*8H$xHUfq1d9he^&qj&IA@9eg1ixw+8E8^)Z)$bHVtXRJZ*v{*s>We!Wo>
z5hfAP>{JVDFe@R#Labb0&_GNH14u!~f@`=`s^#*;s$=u#U<uB*J6$S?Zme0)Ne_R2
z_gyZ>&YLe`!u+$~8|ZBJ`&~iT+B!1H6koz)^f{9;G7uqb)o!O7$AP=7daWezHkS;<
zU2y$b2lfR(fScYlhF1R7P1F@*;qRI>GR_4D3yY3Y?!#h_%6M3eU$)!vFD%yW+c%h~
zjc}fV+EGO*8zYD9P&O@o3F-(5vu3>y-d3zDrl+mK*@(m(e%~S^6Kga(n0nviSo|gt
zyz^E%R4SCj$ZvPSvVixq$>E$X_cUj@K|<-(ne3d(ixjuc#<Qn!zXCb(XLvHzG%OhH
zM4Cm4mx2(nGNTR+#sJeAiu5KkOHNH9v!4^R6U&VxJ;-wPlRc}dVYQb$#LPSz;vF28
zw5Y16^EAx*z{JQw8Kq>&=3lekfBxf=`e{dc=i+VkZM&|~uN$@2rf8_B>7t!*oV)&b
zSDkP1o=2Zhx5Jis%kF}-&iHN5y_R25tg`}erjoJ!QRb8Iwzo7!VEK~c9u#q!JG`SY
z*d;r6?3dPSp6h=yn1G`5YMA?q9y{h%(06p|{cU{oeP6dD=bleBZ8z~)29<g%Dj0f3
zla_nw(bv5viqEUn0W^ixkY12+lkX3qz56Muiv0+r614V}E36Tv(vC^j@|pPpDnjYq
z7YYzQkVzzY`%k<6gMJ=g(kPjHVnPEy^7gY`W{2VGdSW;Yyb$Vo?`*~_+Yf7b0h>7i
zef%DuD7yh~H49^v!nuJ*w{7XUqvK_{QC$vQV7;>$MQmfQK}Xzs?I6!@lZ+MST(bfn
z@TH158uaqjrgW3(20r37<1Sp;o)+ULT9+HK4Fn4P3IF0EP-~*N=)fQ9cuniOPW80j
zIVX1_z2VOyel>hn>EVhg7bFBFptS_o3*!>d9uWRTOn8hc;We+Ot)d_0<j124sDPPs
z^pNM~FsThFY8^CmZ}Fu2jo*S=`+4#kfjwKvnS7YMvVZPwn{B5WM+#OCQ<Qt6$wy6A
z;lRWr&6LCL$Q)=svDVm{eVd9G=X0AL2wB4pq{$NohTp<>OVV@043o>@sd=RSQ&$ZO
zH2SQvOxQJgF%|&BBK-dQm`Q>@qcez)h@HYFXes#xp55HjQ2=T5-&DFpZWVgdQ|&PS
zWa&X525Unh8I-|184~p=rsrKm&lsaGfrh#C%xq~u-G4!jE=w{>jp|qMCJ|JQitc_h
zY%0k+k~O7o)<D(qbCW&TOL1aJlVQz^^|wAcN1xFNPK-}Ozw+l^Uf@gqRmB1Sv*n&w
zVXZS0a4i;&LRFKgj#Q+i;><51d;@;C>QAk3Hao6r>sQ=c+N@F@zo6M~rcN~c2FF3i
z7xl-H0VrdQNh!4<gxz!*1ccZkRQG5MEc2&+EXu7wsIKf_m!>%3CTvsu=-RuK)u~(4
z4ca#9#k#1fcWe=Pxn3HS#X85Z^|EDqgo$_>Ied1VgHK$IU07}wxd98~xzT+<P8dpZ
z>3*8W)_=T!4ZYDc37}ZkbQ2y|MvFx+mbfY0h{H&BM@#qVp@i}w>8cX|Yk<YVB0PXA
zNP%I_EUL8chrhXz9ogns%a5&zVX(@Nx*OfNEDoBp%MX_KfEtti4}L@eXjzNS_Ft|N
z8*=coFQx9j(|cn1<grw48?gM8`;f{SFgO`0w#UhaD_~!m{R$KLI)VkOUI&LIS?+QH
zy7Bx%!(Is4{z2#r?l()9WY~%Br_^Z@AS%Pw%Vd{7xq-gcjWijm3HMizqM`fO^WD7X
z+rS(du*HdgM;7%;#BNI+oBhQRn>A5jwu)R1Z3zXWsL^R}6@Tvd2O|`(_4Q!C6YC8h
zl(cpGXrNM@G}R&~wfof~O_p<Yekm#UMCKtX8%DmaA%;gP7kB+sA2a$yM({MB<-{%S
zjFuN)7#MFH4xse^dO548D8GM=D<C0_<WPciN(><-%`kL#$Pbwzg+Uq=hEQPWkO2v)
zp=*#X>7l!X9|8jsk|M2V{9l~4&dpip>by7K%lCcv+I#Kqem>8B;_B0kFN$(j7@zM*
zVHf!V^h>e_b!5j&4E4wl!G(@<ruaub9sGj<OkJmiYO)oM;|@hn`Xnskm0hh8%w+^z
z74XmC@Z0o>$KDHJgrMvp{y)|%3(4Ke(2}ejU0G9lmdcX&KFx;vu+#3eifb~KnGFU0
z5ua_?QwnZTY`>cT{NSwFaxG2z^zGR4Q-$?&jaGyk--!4(g*|xXcP<7EzaSGSF9zW~
zPmcVX;_fwu6pS<%0h`==NHgtZ;Ayr{*DCh5PAiVI<Jnan78aS7n|v%v7F^2r3QZqR
zt%&GNxM2@)uyJUhac_235x6~&6=c1mn1YDP@`IQ*rouFrHJ>x?G2Zb^iIjT%+u3}I
zbZowy2G4o}n0zwcA-ZoT?;*ri&>nEX7;<C9Jc!#|i7qqHddTvbSy)N<XZ4>o3a+CN
z=Yr8tY+G9qI;Ci_7J>qeoHKiNQvZ<iQ`69hu5T~tpk*e^ge5)Q_22E|;B^{Z+)sDp
zsKP)8`=Y_JI0<DxBmpKW!)|U1YeZ(4Q_M%+E_TnJG9(u+5#%AnUGjnx#0@;SC!W_o
zzHh3i`Xa)|UvBSO?7NafJ~Dczv<n;u78s71crNJQs^0mnBzv+tR1V};QZM*oQ#y0z
zsZwCb5Pzw|Px1vp=}uv*Mk7%wbtBW<f@1lVKnA<V&fbmM%xBpesa&)$63RS8#;v)1
zaHIJ7x|&vA=iOwzDY!-YE?JWa{tKfXZaA+a_@e~E2ez(P482~Dh!g31Csrt6`?Se*
z&Z;<D%9QK%w!+zUc}0vP>Z_)Bv?XeqW%L2*neM4`f7~#`ME4Fj?kQ}EC*-p)$2e;{
zt@TR!`c58V8Hde1K{G1+N!&h$a<cW$iT4840zW$rXg5Tg4PvMU-MRySZY+MYg9fP@
zZ+4-(wbmY}q=7+xH?!wfk7w=#nF)sBgqgQk_l#a{WQHWcGC^I$^iZntBHB?~7pz(_
zUzJ3anZHpu-yMtbolHS$6u4`-5BZ|?@pV)1XQ<g3YT}7@t5Ov^WjiJa)k&c#{Gfye
zub*(WACQUM5IXj%sX%>2BHP&%;-&RnY+ZA+7SsFbp%k^1lo8{Ul)2Ew?^#6d?Pxt0
zn>1dM`YAC5ZRV7ab%{wTw8Ie_@P{6aDZ4>Zx4d}n{k<m?l3DqoOxVk>l5AsXGG&d1
z2@}ti3?*&zaZP@67KK&2#2=LR^vKIO7l*K?f3(<itZDL;G2zQ}nbS}803Q!id>pRC
zJhH~b5kABaU!fXEFs+h8wVi+v5z@N$R*MTmnLcz}++V+~NYwUGWnIX6AenPZ1Flz1
z!<Qz%34VK_4boF~G%N^WI(F+Le+g0y)A3&n-Ra)AW1l~=i1bz>vX^XTpCq8;K*i->
z{&Ft9`L*x$7yT70)O|`Nvlu3(iE%6*>uxR|9Q=MY&l>b=iP87gp|NOVGf~lKRc+0U
zeNo|fBfda2{bFcI>5l8-&WhUR^(*9RtmA?Wyjr2v=`R$mht#=Nn)aB~))}p=-|@Ep
zxqk|Ax7tLE`NBYh@1_cqQd8l>k9Y*CieD~&pybUBp%H2S&N+JJfkUFVu(=17JoKpL
zOgnF;Yf6@P6G|W7w{VVVSkdV)zjrNyn9a)bB(T>AjY5Yk>9n6v8v$_32k!%p+!ia(
zqqj>hjH)f$Z!v<iK6&~jy5<)sk^akD?M>OkOXUyO-)JkXTI$Wh7@z9ke=olnEpXXD
zON<+^*Iv4B>%7jf)hR)|j#=hZ%J*JHCC8$FE8Mu;$_IZAQgn4l;{cs5MaPj1$BJeU
zK0!5kC8$`1vkC^wih0_=8I9&fr4hZ6t;Df_2bqfT?blYj57T2%qp#s3?9n+P;yfXe
zmcW5hwqO+jn1_F>$<0L9cf9uBzpR@t4ug+(e==bl-{>0P2VB-^7VY~gMB4_*n$_4<
z(chRw)rIuMQ1a-T*gq;@X)~QYE{`CONA``@boP1uxnn<U*%v8hnj-*aKhkH5cz;SZ
z5g+^zN1&^%z8F0^uv+^SqqN=`!`6N5xZtq%wI$t7;-aTUap`>7+DrQaEh^G=NkdCd
zD}X;<?r`y8pVft!$#bopq{-$@A(fa%LU|&#)*7U=W$Y3b+hqR+U-b8nKvO?pPY5&r
zYMtC4UuluH^%u?tZszP%#1yUtA$9E%zeBN`x7Z!~N;=U-&1#tsLZY$bw$B7dZbV;(
zRS#kEUr70PP4oRZ+1^+2D~<Criy5)cq%s-lMbqmWbR~-;hTfX6`Ps|le&J>&qOm9|
z`*vIfPI1DLi)7}vs?K7X-$|#j%&3gOs=-bd+|4;Gaf#-1x$Dh_Pi5IQ&rW2^vLf4f
z+br98K@poEW$ac^0_ln6l~|Mk6pZts*glie6`3UeC<PZPtIArKPumm=D+)&n0molW
zbo=BJ_SNhWB)ZwJOO)5N3`xYqniq@JRz|56w%(?{F5dHs2qHZ1rl$C7Rt8YxuE77#
zqDdu_q2h&?(_b!|Z^wQN7~kMq_)PC)fb_-zCw0p&l8R)6b`t@_tvAH!BF;9uz?a#h
z0r2o0K4ah-5(Us)L=T@}&<{4q2`S#fcp3_3%(`yR&6mTX;Jchzy#evkvl4=;HbI<J
zEd~>#l2O{`Maq9$2PanrZf?54Jl{{^Yfjw79`U=s(pS)cZ88S@3+Uw#jEqYvVoi)F
z?^Qb|Dd3cQI;p<z)sdUsAQKM-1cu3jH~a2@VR+mO%|zI%Z#v@#jh-tSS@OOIvxY!U
zJ1@-1S}{#M(nT<{pJk|645e)j%}TaQ#==ZY(gfk^%lD=ZV^7<OoN+2A^k}vvHHa;U
z3i~*0E*R+}IhJ3?Z4JDWn^Lx^LJvz!y+T`>NdPT$3-xo&p@J^UWD6Mid5v-J{45Qm
zrKP1nH4^$nd9sj)XccM!U}rDQ?P)LN*ZgDTyQe897Ien-?SnHkqcDpi<4InWox!d`
zI-7#ii%%8lG0Azw5PoN5T3Qj#-~Cg|y*-bK-D3xGs!Um`i3ehu5dg%no}Z(JvzP!9
zhl`!8Epq+>@cxJh6;oN(gjkHU+>b&?EvRb?Jzp{gKFbhJbCy`0o^DP(nIhe~ee1Te
z@#)3!qkVS^G<J8XEz?z|@<7nMx;rH*Zf*f_1zg_R;_^+>P`bSADK9wj(47g7I%9Ca
zo?<Z-+#c@J64O&1nv}_MY)oU~WiR;TIG07Mtm;&9qjE)sG4E0ieTgUlMbq6sXYjx0
z{JD!h-=8mYyF75u8Kn4L6XG>PKkC}(I96`@LE4|~vu6qES8?E`x>50*T<J<y7;fVN
z%&dxfR6;I6s^DvK_K+_Q&W+<P>*v1bVCx3kHnPko?xW~+oU)xC|6E;lsX>k%_9m}F
z5vo@R9v_<e)P~E3nyh*A<~8eC=9RW|Cr$&Q`NU@^0r?Rr^PRHOI`PmX-z2LlN#45g
zMX@&Xot>EQC=t^6>6_q(?;D{rW`XPR^~}|oJGVz~7CEtlA^Q3g&qeubdU$j4?eIeE
zwmEDCCbG}ud|+p@Iy|cqGiB@^t(W2)57g?ja48x%x<V4`rJO=qngiwOc52saL8QA`
zh+X+@TjwI<R3-0ah&x{n{Nv={AD5m-FrcB|#@Ok|-+Rd@ibcJyt7kU;8sfwZHsc$_
zOq@Ia92h42!Y!P$Q6go`_0Jc=0gUst>8GCJD<DlP<M!Fm*erAIx&oqRlAzP-$qpmK
z(a6n7%P4wk<Ku;7qT!~vF7IgcF#046jS~ypth^ic2c5odpX*_tEmlcN4X7fbX0CK%
zuE^3#=i0Jd<dubu^iY@0%^6laKo+Y`W3bprOp*B&nUDTjCX)ULT<;XZ1wpDM$y^*R
zRcuJ-W>#l%|JjlezRDWZVc5UFX&&9e`8->E4PI2G10+b}ke#{CUHGtnzhyQW`FM<u
zv5AKd@r*h*-^j$gz+i3m;_ig4_+zbj#X?OWi6Hvc$=SK8Fz&0R{rH#GIXAL>==%`@
zW|=lgNxgr#OM)%^@J*sh?`=9@X=xmqHn0o!{nN$ZljBgz<D&Y4g3z@4anoP*l<vsn
z&zf9L`bQ^@FS-=1L8!f~*(x_PU`c9|SOT*T(3yBsF+{47PFv&^`(FmjVw7M+TadJD
zz!mzhDy6`ufXm-RCco>ID`vu*L5mFbLHuli8{X~b*UXH64ufOKW?_H`?cC~&tUtKE
zlbkL1lKS>%FJ&wXycpq~s>X)%6X%4E%Le>z**V@t@5a6p*rYYgc(AbZ*S>PxvUM^t
z(PaQS-EOEQ1$!LPB^Q+VU9kEK=*AUU0}&xi2&Q2C>Mrlfv^VNFv6>D3jMD*fkBd6&
zbyU%(0YU8xgqU~s&eg9S=78R4@;!WFZL^Q1?bHGBtEyH8XKn&E75z@_cEbc)f${A8
z>npi#Ex)uEj1UU^vYWXYInL#B1AiwKy6+{6wn&oH+1gD63+d27Y6X9<gN?m}N2AKR
zVmg#mkfGV-u_s&M{2<WRMq=o-@95wjbTe#SwpiYeu=Rz!xv)okMJ-iZ5m<eC@r$R+
zx?<1tz|Gdqkr}p!fj|k>EnY@n+FD}M@c~8hW32<c+8aL@pNUP+%&Z`OXGMb@JFNk*
z4;BO{onfhl|KmL6>Tlu@^l9!Ep~a%U5Xnt+JJVI>$4gY^^z}CRuKEm2Q#G<`9BL7N
zI~xno<9>3*ViMiulYp`hT$%%Np|8KLEK-VSGGz$1lq!0wKl>}yL)3)+y8sPMSPy0=
zWsGon9>n-W&vivJVk7a?ieAD)qQT}AD4#r^ZOJwgPvhtl0t&v~ZdbFx(~1orfM=*|
zNzd-9@yp5E?zBx&>}=@exkK`19VQ@wi(q<e$1#i`bo^mVeZ~&VXX9<4g(by(*<ONf
z89j3$ftrdf>oJ)?yDZ?4ltOp|%ZI$L3<cVjm?<%~F<Kex!C=_08rKk=Y-rMm<g`%4
z!dyGAGsIOTOKUJ(mTnsID$@VTjZwsB??ZHE4hSZLNYt-aX%M4IE7Tl<O(^NNbQf1F
zf0Tn6+F6y$YZ@iY>{NaKWjZc+(eeJhilTvpMb3$1R0&Im>a_MvYjW>Yp^LurPG7X@
zQK~x&dZ7S>e*{t;{Z^>?3ARveQRgoE`|iv=-EII@M4-4r!kZf@F##wivnTy^2+Wmu
z{`D5=eWcitUML+jTomjS^jk<k#7r%pSnKyx>`jqz^g5=ZMgzyQ>y1kNamhv)@F_y?
z2V<##===TlI1!Wa{qLiR3p?0DlZIGHbBAS%m+0Cq&n;r#qcvMh#D&yL=D7}T1bPnR
znTrst0hE|MoctX7h(%V;XZC<~Bz;S*ff&$gCy3R4VwJ+;@+%+*zGK>R&3j>gvOy{u
zMkC`pM14gYl$Ng;jU*7H5q!2fv3)eI2?EubaE49GDYtYLhdvsPj8uc`>hXL1``OkM
zGLS1GUS-{679Hs>`7)>S0IeswXpOs=5<B|R60%y-7@G-rASf!F><<p|@pI24G;wES
z)Go|_0Bl+!ZoZ8$oANdC=V~t?kyr`-c~DTf3f)nkAw^nD=1F^eKuUX6=cfLnOx`C%
ziDaFW<ICKgJh6{66HYg6ZShM89Pu&rjN;Y{V?zF;(f0W#nMf8inv0(lt7MA?q|i^y
zyigLA*4OG6<XX@XZUCj#uY)54$J(6(r-Z`KIfR9EtL|xm^^LKvNv`s-*f5;u*Dw<N
z#gzl<bY)#65AuB7dOH`51gM1)W8^0`U1L{VLq0~X%NjEqtitaF<QlKyCWT0ORGaBP
z#IU^<BfSkr)iQ403)4JO2AU_Eh8j@HaP&!#E1o7BS+9vA=~-r=qux?>p!K;diE%<;
zDa#tjF6+whQHf3CDNP_?Y<|>fzzxYu)r0wT-2qMZ`kGyDYS?f)_VY(DMaQgqAsexV
zL8VDcOPksX$jECRxdW60;8i+}A)WcY%n%e)(-siN+Mn`?`ahPF0}JS^M@DPlza=o?
zvwbe|dwkr}Z2tj@M7xlt2j^Gd9-jEOg3zs{JM#trAR;f*$O(Mi)-i-BuTsDzC`k%X
z$L158(RN~G7y&jas!ngdnLE9|l_A_WM`ae`9Ar_i2-IuqpF$v#ED#2|&T(kOv;pqG
zC@Dz+<P6V`Z_y-2XuK^uSNEBG=l-20mP%5cJXT6J`Bo=~yO=e3-UbdQsBQ}YJk))k
zZ&63i3mpJ7Xgv`A(ZYf%r>-1OghWiE)Qma!%v@u7%PLc^rXsbD)TexVYsF@C3wUsE
z_{o^20gp(x3dCQ>Gjluk&eM7*`EQa2>NAj&68HH478@rXVZ~a8rTl43|2*#U+N1wy
zg`D*NABFSY3d~Q3)E(#gGYQ8H7CGWw)c>g<3Yo9njH$_S#|H9*C%eorowDCNc3Ucs
z{{C#9S7KtKIU;u@nI%M#{nLS8U!Piq2Vw}0YXb-$Fo)UL2qA$ZY9=PM?o!O|DtOck
zT(;ic-a{DA65OafvT8!yJ6Oz;&;^`5l{zfJtC%ZCr)bUV=)7>%zFJGlr$6v(D{XR}
zI^F9oP^G9+R=<ZC!F0G!>XPt?@skUvz?bG`h$(1H)B{_jYlAKFNd)i=EKIn5^wpp#
z%wkJuIhlH<E8x`e3?=MQQT;LLJ+B!=@s4l41{!ZX+NjY5fihxyJY&Kt+*tH1)bM|O
zLZK|sH}#1`lmK7b^*#<9A0>WEHOrO9{sh}!yk-Xg#4u}IWIDai0KpTPWuCpdOj7kf
z;k-{jvS36lDGOC2i}%bePqeSVk0EJQSG%`8n$0`cbDHG7Cc>f4irb#r`BIKsBX@8~
z8}3dNxCubqHIbJ`p=9K2OsN88(IXbMcu2%9?cn8Lulm0{_b=bHOFEGUr&%xJ!d>ry
M)b-S=RU9Jz3p9zv{r~^~

literal 0
HcmV?d00001

diff --git a/oxAuth/Server/src/main/webapp/img/touchid.png b/oxAuth/Server/src/main/webapp/img/touchid.png
new file mode 100644
index 0000000000000000000000000000000000000000..73ea0a16f10c534c4a3f0d7f8e5c1d6ccb130278
GIT binary patch
literal 36023
zcmeFYXHb*hA3ca&K}4k~MHFcP0$=GJ>Ai*C5u{h?gr*=WAShjW2_b~ukrEIQfgps?
zLzkY=A)%Lj{Ox~cXW#G3ok=G1FqsMW-cLE_e9n#5)mEV-XCNmdBcoJPRfLd{T`eLb
zyE1V5D)5&sBMV#L<BAVNMV_o;fC&#gTz8byk|QIl{z7r~>IU$9$4k}Jhm7oA=fC%r
zZqMS^WMrQ;)fD9n0<AXBZ`nLw4dpzua~KTfymQbzJsVJOMsiTwV)uxqp2GK9ZcGOs
zo`k0b@1J<Dwyw6OY3y0WVAPm6<Fm!$OJmqe%bM#@^oe~|*x>FzXW^K;pWyz60e8IB
zLSz|U-4eWJ^WW2*&@g>*(^O&LU#Xhi9Sy%iMrLEFuyl=#Oz66z3>n!=g_r;T!~e&7
zF#p=L;$ZBSv~2gAQArK8nh)VKUKt6ZS@+4vjQ$MnsMdR)7nJ?IAy+y|C?3ZD;ZVN+
zp0Ji78Vwiiug|oac^(cT)u-}-)SmA%H1mv(iSqLDS}--!kSiyqzZOW>LL_zBnlb~y
z<+T`?Blw8Ok%Y4q!MTlbw95`Y^lGuV_c8l}uIt;H7(1MSpL<}r9uNJoORXx(J^**s
zuzH&6!^#(C+0d<pC==fNI<nisS1W}6MQSQ$Xu}TtmLs<k(NfxiXc4|&^{rnDGww|&
zIWuc9;@X>YQ|qnyrn#IGxPlbq#Pr&#Etvc$)i8S8=YjLKM*80YV(O}}QR+=<64vqy
zrp12v_r+|^*w|aFO<BA-(ZRIAs7!Imy5;l8vlR7ZN6ZuG@p2juZOIC|HY}x-Bwag}
z#!E&vJ<WBIT6CAhvq_fY>PoqRtB<Xjv#oA@6=t|yCd^~7T$;*<wBS4J4?jCtTB>8~
z`?<azn4z2vNmb(B8z=7FAbVS{r1kvcOhfqgmZhY>ShlvG{l0{1K}zfyypQM6-HVyV
zix&y1YKaCEf%Picc|{VsD^A*_k-!!Z-WMpVajUaL%C!fdHbma?^lO=Md4w$&z?#*2
zCs@~3Rqc=}!==s3TKN_q5P$<n!rnP+3k}|G+t<$QH)F0#Eg!tt;r)~H60_`WFsDCT
zdqu;Xu_yR#Kr92=a|Nt?<%gsZ9o&vn`-yB&fe9}prks>#7Ttre{}mP{7RMD6e!02L
z_7LPJMmBvPp8p5c)?|T-6%qO&0HV|2Z-)j31}Y}Ap=*TCN6oObr#e!{Bl+}Jg*kpz
zO4n`tkaHF%Pd4XjgST@m!`gGVKFH_8y0w{P{98p*waCdt%Sut3!?_oQGY;m%)}^#D
zA<&f95+vEnBb`{<YKhxqv+QF=V>_{3(vI~EvZP%d(t$6i6NkA!HJq}j+|6-;x4r-+
zfehMb1f<_?a`v5EnQz`<I-EU}3ADKkduQFr`N=%r6p@?BnF}q_b;#V=9lqujI-wrS
zz76VQS3CLDErT7N>D|j|(<hb}Fxsb?FsQ<uB3zbyggVsgHm;1l&`Y(J4B<`DG}^Az
z;-NXFprAl#XXmr95fIj_8|K%&ECWd`3fQo|S?Tjo=@EsIH{5==;|lJSz$O&NyezL)
zO_qRHRN1_poxaUjC)6*JbPrjs`eB)5-^8$^BFbsx`mcC}(zQzlA8hCa-=-|_6E^1f
zF-|%EL3c4-I14l|kR_?oIQpB&U~t&u7^@Bw57@oB?iheufT#fH=4)u!(U-BpVGaI^
z6LqaFg>cvy-!NS$;k@!TAfipIej+11Tccvx@06#yng4s${kY$wVP;-OGgp9kv~||9
z=1x)RRxS+~%S-um7ORk!%2!k0qJG_`-hxz~Al5Jcp9K#A`M`3$B>B#S+%Jv!(px(o
z;BviD&p{%w3>p9iqJ-+kbKe%?>dh#bACwaQ8z%K%mQPbE9Pro4yh1CqDgq0dhoJwy
zrvs<<4R$xbLpBR1$W#&Cp_^;f34L}WwZu%Nk!M0N93}z;v_105yu^qtPXfAF+7+v=
z7{;2SAN-X_CK|D+P`IJ2Xw9Cp+J0I&$IO^p7)G~Av*ioh(9pc*OrxcH{=1slX=n7>
z_h&BGGCcH=!XX1kz@mI5OwCOQ_sPEB<NZnh<$DqvC<PsQ?%BQ@$#N0s;80}34N;Ny
zO}jZ%Jo%~`jSRehOg8={YTVYfMVG7i+IT_AMEHe9`{C)ROx6*#O%s;h1>bm7(n40n
zyXFf2Kp)z2vBndgchADdr~qAge)e?xN@^0s--32$w8bQes;bQ8Z+%g_8P9{``Wx?C
zZ<%O&zA=-|dP7B4QT;H13P|qKd;dO+z1Cw-;zt^9^0b`J3glxd8#saD#|yh8!o#gM
z%@;=s^TH!L=I734=8Qk`eXOj&%^Z%sUb;NIJg{Et9N|K?U)`r7tFlt7u}J7jFxaWa
z>EE<E&5xh4G_v-ahQ1JO-*F7TNE?;xd$p;2kzrA-qo#AC&1|_gjEpQWt=NoPJ;e#+
zBO@LxAS0f7M@0iy!&V|&TgCUvT!!rB^N02z!vQJ;UD$tq8|HTWvMpY(xP)`dX-Z+^
zv{_!wE^*2-GO}cE*9{VWIlWMLbqR4ga`aiXx)+zFrHNUxwZjkg{Y^m759puC(zhPj
zI<2Mb^!)8vi=Oy}I}*~8O^D`QN{WW?@u#vi82XjF87sXpujgo7uAJHA0yc=x7-XqA
zp!Zc)IDG51TjGMOK1dh4J!XDuqu(P^sr$}NImi2T%5o~%TCO$gntZ4(`>H@nqsk8D
zYz@z`y{qkX{;=N-XAA(W_+h3bJ71v87h@k|b*(b^<CQEv`go;o>w8qP5<UdqkP_bL
z<U^q>f!QKqhI%Mi1p^=5jmYsctF`&hl_ZkgTOusx%kgnmb9Z}i*z!4L{$G*ogvsl^
z8u~*D-!sdY-}Y3>0jQ<Skhq^+N|UrK)m5wSSTsfWB+BW!WFUU&a<oU$k<Yn`$%)g^
zpVd&m@5K<$K<U!*?gY=$kU6*T(yEhhfXmBZa$h1|)S1-J;TVg>Ig@-%QPM`?A92+G
zwG_*F)zV&kI%D|TXMN#a-{_GOcA#7DnLZu9Ju@mp_EuSbH>;ecGit;{B!usULe~j)
zZ6bQ&b&-XWh&b1WIT4SP(iadt{&g{<4#pdnN{MLisD;+94XOF{Dg4%?jVHcV)X%ha
zlTIhL7cYp*h6>W2m}%b^hO|M@pSl8HX!yvN$2oy&zv^f?+EL?roFs%2?qF7_M@n?Z
znWpdZTn?xI`TJa@G$6Hevj6G74bRX^<i^@M@KVb>d@M=RdUUjbbX?)r?d9v+)7GKC
zQEQfAj0mGP%L%}P%jt}HXqP4QzkiEQt08^^4;)|)XLh~T8!WfBHY@HmORhQLYlZ7G
zK}XCUk^LpYkoOu4NM6G|+w>Y)Jv5*0>2qd@+$`w_%(4$Mzkki5po82%maP^`=Oc`6
zOBbH}EWMs!9och>?0b-&l2rm+_nC0c9ev?T^}r?g&JNGtK2EzN1!Pc3IdXtc!xk~x
zGK1S1%=BwLaDSdl9{LW3zaE)azxLT*dP?}q<dqqb%b9-0V7D+thrB|oa^|>=yNLKz
z2jiBm8GF(J?kqC?2c6@Tk)!0y!BplH_(@}jJXTv+x=Tv<YK`p+%Yos$I`%NT^ufT?
z&81vw4Wjbea`6JfxN@LdU2bXI2FSV}{Tf3(P3pVywp*GZC!;;f`qjPZ7Q6sbqY{nc
zIuFy2pY$sV&J+!8+aBm2Fv`VNEYIR!I1}%(S0`4`3~)NIq>HO5o$(W=Ctde>o>vxL
z)B5d!=aXCqwPcpl=)=!^`9u=#SZm+nca&G?4MHCoh+EU}sF&3Gf9$hy7H$goF6luc
zdHU23Z=~1X4C{K%GPUOl6h|^qX0_DFsHG4Yxh`qHB;49-4*7KTYqcqfKi+65t0ZA(
z-MmH8H^N|{gHI;#TZK<3><Lqb#~N6QltOaa<+MZ}s9Z}wPR=mcZ#on9QMZn>uSpR^
z4|XVyr5XM!pOM39qT0W@;Hy!q4sSR8Z!pB)L^_+!6EQmMzDt@o0}D+lcgMIdsw|B^
z-Md2OLFd8_R);91YIh^FyAb#Kt;Lv_<7jK~-tSl;^MThYT}8wjB&Hf$CV}<fCjDxs
zN(5(Z!b;$0ewBX48kcxCH?evzZjm647oj3D3P|hweYB>9jrPNjEus71wzif`(M>Nu
zw*Wt<l<Z4<f@cf+!p&!Uu2o<bvU!ID-c|a&-scI`oGSxNX5Ww017C}wUJ47*{?bMT
z)xtL4Hf~@1NIf-gU?Nhv`PBzZg;+(Va0kmt=WN~NDqX0&d_2)9uHARXs2uBAb2t%V
zp5@NS1iq3K`!fd}>Sq^T0m;B{7Nzu`A=TfR{U_B8q%6slaP9w`L+NMrr5Lu9LbMy7
zOrljF^x}-FDE>)Ye6GeHHjN<mZE!Z-_LcBC>Hf?oE;C^P`@g{hV|=CKc2yamZQQGU
z5;%G8P6lPIkxuQ%t6jIMMmHE;^ysR9iBq69FKw5%5$^{Id>?*ZQA8loEYIO;{Y_#-
zY6dUSYgu|^+4AZC9SfyM)@Yi8=lFSz{Cr1xJ}L2lgS(Q8p{=YM$$944?v2N{wp?*%
zFKyPJ=oq(`_j>w%^Hcw0oICIEYbbNkx7B7m{i?%ip7fymzHlbfO}Vsk8sq||=GvL}
zV!GFVxsZDgmNqtScM_uCrqZ*v-vk<El|-`ZXl)-ZiX2pe4;KmFiW=OZ$bZHiWgqt&
z-dLA8bL;%tVS`&yO-@8^j6*KgV~F4xQ*Z$W{q4_u?}Bab#j1B~k7PO<6hU}3Y@01i
zxY+nPR=Kv3xkbKfn#8u^l)O5+)ctedjQ_=Yse&aoR7m1rF`b(KJzw?t%wBJV$*Wtq
z7D+Dr++3SaZlhx)DvBMIXKWNQw`6+xo9kzN>-=E)HHYz=!Gb7eR36++))Z~b2GSe2
z8M`4C=Cby!{$|F|Q>W4|7WaTU{;x)=!vsXlK?6$*KyF}eeS8AsEy<(s8+O;M9oyD9
z6ZCcy*S4FpqJ_Q(6@lgHbI;Xh9KN58n6kO^&EndD1I4lgr)o_Wy@nD}b2H~SBt(L7
zc;Czg=Oms3y`DojUv63h|DVk(cpb;YSA_Y6$fdG^x@{4wCyw0s_`D*zouubCPjyeX
zBr|Uw1_w)mty%_rlQuFMEs96wO+6m^Ua75}S-@AH_(h25^ChQHGF3zTB^crUWWv<N
zrZ%IGQ{gF*J(Z?8A~a-Vtzh!gER&2r_JJ;hH8~|Sxs_C%*RD5r@nV#AspFTHOzzXe
z`pvwaxh;az3vuT_X@5s^C8B@vCq$#N=gz&$4~LE0tu4-rR-QVDF4*FGtnW_KJi8f3
zoflBloaB&>gmRfj9*<aA$ZXhkeWPonGUKFyxI5MFev&KcBO#LlqCZ!b93`^2&7GH?
z2h2>hiraXb*8e8hjR}{I4chun54YltPqxm0^<Hbc;D9|h2MyUCBWpf6$zc}?qCSjR
z^L+{-dwWvwC-JqoC7&*Bu$0KI#m)kNVJM<;7H}Y4HV%B}M(cL9FX!dve!NBD@<qYh
z1FoXr$UL95eqyR8i8O~33N#*`_t2pSe{D4>ic*OEL^o2sCI%KV^JO)EfBS+l3g|_}
z{OTn&yaOu>I)Ac{{}QW#T9WSe`C%DmjF=y9$+9`Iue;u$H9*FG-fR|qIWTBmB-)03
z5Lo3m)h%%t`rR&|y*xej5t!9XS2j!L;^+?^?^ecUbpJ^7AE?yj7ib}tf8(;pbURwz
z`O^A`LFRGhUAjaLxyJs{u*~qcgi}<G2Rf{>qha7+B>3YRc$o3<QCZ#ngYPX)?*?sg
zD{i8$q`Ew(H>gKX3X}rm#3R~yqfL6lpZ`k@k~};lAClAC#gZ$1&QJaEi%NHAR9!s1
zh`71zY!~-r_SOJhl1AU1(OW|QkzY6@`Fw1Nq@w_5X~i2!SH{r{a~34cWlHT$Y#{L#
zbx%{A6O35Mwx9ev)#Kh8UNofHLM-!J&@&;T%aXt-66xLHUbVG<009U87;nTr*m>-3
zFi=rDvsXz4zHUZS_wwc@xXx?Kg<*Pi^UZoW()&W*`(Siud6k|oJ6emq@0h${-I^cB
zwwKIa8zGW^Z3*d7`*WFMAsIC#$%1>6aR)!TB@V*!LLJ-7aruJ$<2Z*gO0%c;Q0a67
zw<ZIy5tB=Izg?GxU*LWb4-xUwD6g<*X}mG^*DpvN){JC71d@aWrZ%O-PeXQwusui1
zzMr;Ev<@QCH@y9uTAF!fS_TSpblOfH=?-4a@3I|!+)_4cnNtC@Zx-U=Y1~1pNpse{
zp`TJTtzLXDlFDhSKU_-uYj3HK;d;$k;p|d-oybMU1^sBq*i)xl8(<c~gcd2Zanup}
zIPm>>CM?R1?(V;X!pbvNi82OS)+9?R)L$%N=_3^k4i~FX>u-TzGtp*8dcP1q{Bsu7
znNXcS5@N)A{P`fV?cFW22DdkLKm~SNJomQd^~lbT>h#G{8ysGkTyTOb1q_bs#J(`+
z`|KdE0$Z#Lbbgj*UwuLr==d)T`jp3dXpXxJ7G=Ll_=|-EiO{FLMs_X)eRrR_H5EXb
z2%)i?2)n$8jVS0Ewc8J`3O(#}pK^Wy(SQ0)C+CyanbXP9?!<Ml3sdc3#XLV1nN5&t
zjZ{ip8{HFlk8JKYt>k_GZ2a5G?ffx!pgqdKyyc|IFyW&AmI_l+q4-Mo9IW|qHj8VS
zkInIm(r>HS&)N>G6UCPU&;D)SEm~rlem;GKLN|;$O|ZkQX-#l)+helWEzYC*_C`$g
zsM=p<Sd?<C_6&6d9S3;G0xpzsC;O9*Oe0XSBot#&5};P*e>GYlZ^%cATKoxP_%mN;
z4tl|zfAM`-=Y}J=95QYwTgAp5j>pk4gI}6`p0Z%3y3w$?=R35JJ)mrT+p6G(OitV{
z4IH6xC-r|@_S6V%rF{$877h}U%GLRHqtnXs->!&CPD$M?l^ZlfM6SyND_eAMT<<KO
zI)p-b%{oK)cD)1N(;cb0JTp>UYJdK(LNP)T;1MP=w3%l>>Bt{x{jnR`P&9RRZm@i4
zcJ6PfU~wnFe!};+Rc0>ThWo|4uwX&3i`o3YgW{G+r`I6L86YA>-~EHc&y=dOc$b03
z@FZ7SI_J)MVE){!uleu~e`A%j(MB`+_Oz79F(uOyRa?`C8W1>_VX?D3_In-d*$CD=
z?+%xMGt|HCw7*$_3H;|?tO|<tfuxD`AoePvD~v-Xn|GBW1>z?WNc}Ud{cPFAb4KcX
zBj06Cpy_h9r8E?1vhHH_JL-W)%RS5c(T|^3y1tOyrgCd)4AO7uvcoczP?vvCWOL}U
zt^1aa;pD7I0O&2mdn?3y%Od2&&345iWW~aE1>zFMhI(n|=(Fqf4ERN^3-&n0Q9;B8
z)XQfp{H5UPV0w+MGY2DVOtS$}x2`1w<0x<IT`ShEQ<O*&4_R^|4S1WhJbwRgGqerv
z>)VI$N?iP!PWOp6B_9Ba*Wi=D|Ee|zisZP}jCln{#q-s($q%zk3TO(esOS>)acd?V
znsJE~y|`Eq`ZS#aDNaCCv8WGNYkw?O2Wli8d9Uh=BrXShwGvXkUdEgU2m$pO9bws)
zoi8VIS}(<wz6e?lV3ro}>M{nZ*w0vV4-pBddsxQX{>_H~Oz^m2G#`RL3~Qfk)NDIR
zku5&BLROaJ3%}3r&@TDrh~>9c!Ms|^{<izfF3>PSb8`9z8eG&XK54>VKGreZel5ZP
zDx!v4v?jxYVB&uaVvfnpKk9(Av$^^T*pQA@e}%JB>3v)CR_kwCX&4H?kqVyP>*c<#
z!;jCEgJXMf4*mfqQUJqFLh?5@k5E#Lc!@JSKE+R`t2k&w*3ouVVMVL+oXrQpaUzHT
zi)@4cm)ziRzXXWY^}4S*p9>=}H~3`)!{5pG*jMS!wpaQ&#^Tg=O}ASsdu*+E5q(jL
z;-cAc@r99`cKVec_*r7(nd9QKKWXKB*0InW(2thQhD*rE`AOAZON2{}b`!Y>kdfCQ
z`_3pD!{gzmHANA5YJI$H>YX@vCw2O#ng&_xR7DpinlA4scYIpl^2R%3!y%q%ci(w2
zmvG%!HUrIn!a^;_H=X)#%tF5kguhdc5emr-j)niFS3uloI#U3v$nM$(GHDl?Zc#Qq
zR@Xi3*Am`&FMxA7)Dlxtn%v~wnhbki^fui8;^#2MDizp5ijEO6pWD~9xXd(quCAqX
z1Eq{yyn&W)8BknqQSfY7FBZh!PclMK*P)@O1a)iErVURkUN}0)g}pfQCV+8}pqG>s
z4EAFT*VQdvrSODhI7a4a(bVG9tGNt+cGbmGd#60CZ-lyqnJL$obN?R@*<zHah#sL=
zP>{`$(H8cV<K5o%of~d-ZYhOL5lXFRHEJvpyMTb<E&7nO-)%=-sichii?81GiGJ)7
zRIJowbSE&aL!MNDadLejZr)#^9osm(fUgRa<joPO&6H5@=1A&vt!g6C(fi%3)%R?0
ziQC}4%9KXm7Y*@{$<6BTMlJw}@YgnmJTwO4qUj_?*IfF&B$rO0pEF9jU#BejG3Gr!
zj<Zi3eHvy?joCG8I{^VCq6&QJpu(bCUJeMs(Z?YX0xP%lyW6BM$d{!@dve!X&gp|a
zU|uA~&CzJW+lPF~I`Izj$wbG+;pAWW@-Y$OoOI42by+qvzCu)+bg64J`+y?DI$buZ
zPw|8IQF81_)#f3ww4j2!SQR42y~@K5y~&+`ggF9KQxG?yDDv=6?aYaj0NR+Owl)Ja
zz)YrcbIZ-(>6y%|a*cI-ib|JsDBb0MCqr|VVR}QVBiD~LF&$t0H#Tda&f>+xHs)cJ
ztd~U%LffM{B@pDN7}}$Gvibfjt%25us57^<h2f4^J`?~yFKk!Kb3NLX5F3=n*~RyY
z+uFZn$TBd7bNKFtxQG~`Ar9+79VLR3b;=(HmIl+OJ`Z@5R%UPdtojqm??vKV{)0>~
z-jLQ(TjoD68VNI*aJkmt6V}9VmI48y&m~NNnz`?NQ4JPnA!Rt=$kU}6<$ggQXw|nH
zc>t8~Zj9enOQpSF{Y|4cEn!Lyj?70Nv1ykFd;5Y-kHBAVT{CBK!g*(gcZwLdNKgV)
zf#<-}#kf8@w#&B3B9+bm1JcmV=$eqg*yPH0{b*$OD#l7314x8d%!kWo+bjnLWHPPu
zt~N`&vedn!9TYAk^X8c_JvSV*sTom$Tbg#Gn*PiDeYo*2-`t05vu&FL2QsDYxHT^q
zEjlaD1wRLr9={W)3Y1fMLdtt)aL9N)+tjrRugMn~^<=_*-~CO4yMMi&+}uFMJqH)2
zUmB*(aQgn}E?;&XSTP#$aon#vs!@46is41HxAss^uXhdumyj&2DWUo#*gedTO1*3X
z5alW#!y(aoInaueW<E=50K6I{bJKuT78iA*25wP+^qz0}`^~J*X+BsNoFJSV7M5k(
zw#;!lKjCsR{~UkCd|yOm%ENJ0CICaH!ZYJ8+LZa(pZkQ=+Q4R9obuzK7sDCZMbzZe
zhF5u)`r;-mWaMBIa>sBBD_*^V^}up1PvTlRK{<vaDU#ueHma+P>8Im(=I4lbvzzy_
zkLj%EI8@#`*a<(k?$l;ftZ#caK4i|Q1}^5LU27EfGYxfdy$L8+w5P5La0rNod_)0X
z5%zlgfb0i(-nZNyr6=jqB#fYnz;Z!6eOUGSnDus3C$e_JuZW=Nmqe`rC^WjzzltFO
zmY}+fY-WxCepmO2a<fS2np9<>jVT>P%HFc3lMsDQUsq(8fgYVkjViu4$MR!ww5n$Z
z?;0{5@zztg$*jK&U^X;6iM)DR)?d+0>YzfVz5tN8XyUygq6dnUld2UgHACnF`82vf
zmP1;T&tvlu?Qf26WW0(U+rhO>$&R#@_AS6fqi9csi}%Jq*j5L+SHQmCG6@nqp4dHF
zLM{>E#0V|NjhaBu{ew9I9`W7s-4e_bB{yhRryQH-DcB-9d5zHxJVRGGZUcW`v{MwM
ztM?#WMBIn<MG%{a|1)9P<O~*!GDpo{q?<1{b#{@NY^BjzHO?Z$3Q0l=Q}b3$=_U+i
zlN^x=c?tM*lrm2Wi6&R191Cx}J7Ip}7RC)j+P~aRx2li`FMZFzCzM3IiANQ$a_<0~
zC^<x#(XaTQDB!AqBpRi~=8gR*3122-xXymA-?2}h=#u~`>Ly6f<7e=MjoK6Bgyp-+
zXQ->o60}4>$Nh+#vGtbl<+xU<Zw<xkbo^agqgvH&eb^MjEAt}zOH>R#P&|!y8ToX;
zAcn9NNO%&|>&<8M2l7K-(gu)}JU0zO2o|;<PVBnwO6TW{OOPBIP`Trf*+%neW(S=g
zO9g3T+^08-E5FA$-E)$0^3X_BZKQ}|n~K3WLrq(L#RA;Cp7Ot)hSXG&CyH?4aD={6
z7Hsd&8}`CPGtR#AFC?QarT=C(pRq~{4kZwz!_{5KRO)0YQETq`Vz)WM;7R|74?`45
zO<Yk>rH7*+_Bab*tT{}*9HK@8Y5?UUqhG><a?6o(W15y<Ms<$+Mab7Cmcs$1(?C_r
z;kg3xSTGt7OQ@!oSNMX-DcXu|5=1QOC)j4pvP;I#*}PfP`Y<ZPs6z=3Ik_#tJB!NM
zGK$UopiAMvR{z7uz#xX!!XV%Q>*Y$+(_7z>$xG^G$=MjrVg`p`%x=h!jp^kLH(?3m
z<*AY<)++lxViE`HM1d%xn~e60${g9bBH@N~3#-V{o^`H#B-eJM$mW6X3}L;cC1?=^
z&fIdI^;H@Ea6UU*J|Kd=0J>a>ux{VmoCaNx3I#q|^9UGK1aRI9U)<Xd7bb4#IAU}^
z{f;puje3d@ALvfGRyHC=mkN$_lD#*CI*(tsCfjq~yL!WDqmt4SWy?Zl^s?^T<KF8!
z97WpfMWDZ#aq-u-W~W-O(fMDUqy^`4bv|64R^;<$l{q$Z+i(gAVPno1=&oyh`9kNh
zPCBQ{YgnES;SX4ORofAG-BLQer!$@hiyA!?3IEcsLM!VxGUw_^u;VOu-Ksy91m`#;
zb(RT#sxe4LBfVw#Yo;{eJ$w`T19~%>U?vw9F7aS$LyoKbgSTEJXXK)lVpt_{UX7!x
zf|EyyzFWW235tDJruOE@SucMB?8%6Ebg+AY+VP>FUHVrIPn?Y_ZgFdN%MFGOj7s9?
zOfB-MrjADD{>g=k1n#<df0$%dz~6|qnOJdaT-TJa(ny&0@TQu`@Nbr+3WR#@5<Or&
zhXGU*nV@-Onei8kIUCQ}1-Gd!x4A|9>?VHl?-rAn(5*jwk$L^eu{2r9ha*4pT66om
zFl<FQnJaMKdNv8(Ct-#<KYhR=JXsFhjFj~HX!h$A9+6SZI>j&U=C<Z(*Yf@oW^J-H
zVx#)f2Q_7^u&N#?dssQVYb~$Fn|)t~KlOKQLMOJGlWqVR{D6-p@o}|kfBd~#MAwqg
z9Vqv%Fhe>s6fvqlT!`x#DA*oM|AWRIPLM|vD&z#T)Z(r!iv`1`Y~TxR!-Sb7r<v8w
zARU`2L<?0&f$Qb1Nq>(3KizBcL#hVrUy34BSnYHMa!>yfcL7?E>7pSXdY`yu)?d*d
zFLLr$-PT@!x+ysWhO5xV?)+ngo;qVay%4MDvq$#P-8M5Dx9c*p)Y~eUN}7-v;d~+Z
zTY}vnQg_X(l6IcNHLQ7ngrtZ`rn}kmC=_%|T>hNHN~N*Jd#p9WWFQ(|*5f~piD4%o
zo(Wk%7Up`^EucP#u9m(TlGply^?G||v-O&IU}<IUEPouFvykpLFp1MC(h2b)b}eGx
zK>f@Z2(B}CM|$QK++dIS)KZWZ8xU_9b~>X2{pO%oT^EyYX-~;Yi;LYPWs|akUI;wo
zE4mR63qe%|>Hk=&aiZkWUk0!i`O)HT^y+hkZrhFTk}=`jTT}g8=2EDDBM~OzfqPx!
z5v4!fF_X%hCp`A}XF^k))cPOo7FCi3NdWl|1$!T>z9u^PZkYIH?VY}M+j9%~pnlNn
z#%6`4>#9kmuS5G0){tcqk@}wbO!e!3Mm+M0bc!r!?4#>xUngY9p{vOp>VH-YtZU87
zdwU2`7aR+bH-{zhiwSiN3^!`_esMqcypa&T2yA^R7bhK{;|n5j#;nhstDUfq4}zgj
z+$I-<CyX5IM3lg&E$q=z{vdqyr-EaWVDegWy;1p_QW#00yk*OM@_YBFQitZV@+Ah9
zztU+sS?Zdo`;VdG-p9C|F5`kU>-f9vObq#3qdoTMi|2ZT-^C`fw3!8;v--M0J$Pp9
zFa$yn^S@zLi5&xEcwo>FBx7hhK7NOO$gQyrl2er1+jR|XALQ&Xp;0N~5(J1)!baL%
zI7zfIdgMM{Bxr$pU&3?{{V7E8!VFM(Oq6yZTizUsa=|jfDjj3?2V4GrTi$*db<LC9
z#1oKOO0Nac*E{3qg-M8a{@3K!fY?Pjk+DtkY@U++K8hW4^ZizTQqXhnd0~1XD3^*#
zn!Zhubgs&wiqr9YW(=Z(lS`W`r52yTIgzTYq%`(~5BjN`=ncXVFb;$-O$UlFaTiYX
zy80=rYeC18VaZz~w+AV%N{g5d44WfX^W!rV{ZYN;je|ob>3&Z<qW~O_R^?VLuWR)_
z`0=(QAuINqqBcJm1HG+yVJ^2cC#ER#gPWXo*fFV=25yJ@s^vPpaof$O!L#nx-H;iK
z(sQ1c4ZYcRrpH0g1T_2O3rs{PPK=UbGniS(H>B1!5n-7R|Ll7EORxm93!L;!BUcsD
ztm3VTQq`+|_*?VqwebYA>2gy@aXL*1lh$ORVdP;kAsHMNs(Q0jh>1H#4mEEW3YKqF
zcBsG7f!EGCvD7u{%3`VwZ`U@73EwWxzYlhJ*kzG6I_0r@TeO1^3XL3z&&S242qf5Y
z=!3-kRxHGvOP#b9_R2oKTxzFPyodulZe;~c@(WIGXAo!@AHAo5xW9ztO?NQR$5F=i
z`Y*CemK?oz75-`%)MHkt4Pg4shm&WA$D*^Nb#Ed8ZPNbZQuR_QyGxpsKsZ6w%}t0=
z+hEUtxQ+`u{XhqUbrYsuQ*G>%Hc9?-3!77`n?TV9M5?KICxFaJC9k9NKd6&1<N?rp
zMGzwEGrv0J)y581F8cX=#ens4!rvfvwb#bwDfTWZPU3Q@!uPUq`IV>jQL}XYvdf`0
zS(#|%=kU);gDHvP0cwtNOV9Vl0l(f4ZlG&f-=?BOL`JJu3~!)DhsPaBr<DF+>$#ZJ
z0@sSKOlV%IdasMo36ly)fz7>dS&~`I+f*A9+goq&U;}@BgHpt}^h3tW*+1A=q&W8>
za#DB~ir(XZq2?xk-D?Y|o12uX>K@jbxfif%<T&*f)-*)`Mti`7x+UXcfqj>&3n^yR
z!@0V*i}f8W5I(@2D_c2Y88#&Je{2+jZsZ_L;LhsaQ4XIo=>IXrfTZ3wLg^uLG|{n}
zg9hguRHG-?+1HfVUW|}$m*|R<`+p9LPQ9jDa}75L$GUNGrrvbZ3OK!m{MERwMVbxx
zf?hX<rRCnU`u;U1HhIY4wJ0O=;gRUj-Mf=lJy20D>n`89MTd_kR3%J|v}<+tgEAX0
z{pWt5F0>j0p^cJLr|w#)0f+Y9EfEt?6EoB(K|eDOx3N(N6_L1_nOzRBQFl5jVcue2
zgs6FfqKjJHw=8BlDoKB9&sVPo-blm;5WqL8fyocMJ&bGy&Ct}ll;<cy-fSpyF4JuW
zK2|?A2-)+NP(7baoX!%RKpWq)Zhhb?8tG*LD4OOVuI|cibyISYX4eOI!y@C*3s9B>
z9cKpqRldSi>)5z~W$I)@K2*~<L3SPwufREt?@yX#MqcO{HJOV{n2SuB1DgBk42nv`
zGt|28fU17071O?Jq%&uvVqV!l=iq-D=dTWhisW|8y7;?S32*NcWd>`OJ2!*FDqQDI
z%>t&eb+0nLo1Ox?L#2E|Iyg<;mJ}gPG`mvk`mx0>7vY%On8t8j=sye1xI+4YUx*Kh
z6!=jY5@qFIW(gm`7MHgPTMoZ$t?p~I8oX-Z6B7ET)0#)q2<}1}o~D3&`y*y61WTga
zEO|m=iqb>QOx$e6P*u9BEAWRXBA??b>LTuZi~}vmeAwJSB;-kRDNQ$b>zbs@l;4gh
zbnE1$%`L-&ay00$zH)B$Eo;`~3jk7CXnx#78Z_x9qZ5_KC?Yf*^UZQ0m%}r+!m3vr
zz65LqfA>3;3%@inW;EOx6(%QV=68G3Ff-m7lmr_sZ)6Cx1g07fvZa_F$E6A+YVy~(
z9IN{vb0A;M9Eh*<7Rw3}Vk5GsOUhF}{2LAh@+8Mb3rx{!+tkCN7sh_AgWjas)9z;G
z_hg~F;(!0<tkH{k4Fy-uHqT(gVq4N;Jd<k9+gLSd)oAEDQ;M7gCJ&pNxA!Pz2J3>p
zl$OpcHMmgPn-=ya1C9`1^F(gJrlY2%jp(&s)oVxiqmigz(<U5Dpw~_j95A~y#Ck<h
z9L)isWY5jj*ndH^^buf3uYDR+`|bcCsHN61=jd7Ry5CT}6B)!!#P>SqI3JWGRfsj<
z-#Ml|@?XR6+tQQh#hae0ieE7V485&QHt#G|i+H0A#7^$|e;hN|UL52~0rlXbd=`>A
z<P#tERW<^RNOU5jrQE7?j7uFNC!Q$7nL2vDGI9$-&}Y`JRe6V~yYtHgB$*I5=&r}B
zzcDP7d`|SwvHZS6`l}EwP9)}1NuN8Wg&oi<=v;QLY3TIlGGaaqFH4~$QhF?nwndC3
zQ;yCX9IjQCyZ7j3-cy{v;Q|3hc{4LYkN%UyFAt^sw2*njCnK0;mWR{lGzZr)WkF-d
zZD8qXVp=)$wav=yF?_&;YQFrv2L83Ujxdi>TepqhT0bfNEXyP&Ss)45v#iNwh1Ltx
zmqvBXPTKD_ljve*6~)6r!r{CkZ+K;7vP^X~T!f=RB;-d1t`Va=iHpFHL`!v9alzC$
zHncc5$+;lHq$uM;_4UT`PS1Y6h7KkdR&|Lx!#S>ChQ9(lD&4J>&9J!4Q@90M7M6=u
z-ha7CR<ekw!3yr;6No=8_!3HKw9L-mqJjW!5?3BPIPCVG0tsNyzeKGE$NuG5*E+m7
z*zj0M4sF{NMzRJBV9&7-4pX$=ozlhYh=JF%cjdFc^i$9e1FUxVIIuN~N1YZr1E@VR
zI$tn0)G3{-%C-3{15Yj|C-U1Fq=}2TB!lkNu7@exgiidkUGD=gw~b6{{>zzP8sW0L
z=tGBi=?7Ah39-6(9k_&jzM757wBA>Z8Uva>tnG@o1ku*%Xq&&CsIyp!dc?qhc@H9u
zavJEp=U+;~@Mc|F1Lui~e$F5D(b4CPT&MnHE%yYzQsbuhTt0n}mHL2Q8mJb<Z2TZp
z695))rf@F3B_D{@cT>KTMzjCnYIY;^YeoNOkEQv=>Nqk7OtwQw3Q@$SrRk7oa?9US
zS1q9$ja@289s2-1Zk<&-gHJ4RTCEJsp<oF>Q&3qBRx8t;AJ&A->a5zTEK*l0s#wQ-
zW{Qr>)z<v-I)Vn{%pNIDDM=BUTaKr*-o9cz=Mi9>i;DJ6hzRGPm!!=N0SSdT{apZz
zSc)8pT-Ab`#Xc$As|X*gel=2|L*ruvz4hID07)KsXgekO`2ZNwq@4O^BcEdTe<5o0
zGI%o5Cp(RwglYozGy5uncmriSo9YcP5QSv37Omg<Yo3p=bJKx_{zSCReq6jo(Yuc~
zEg|9UnSjo>=JrA&<Fo(s%D&`S06-<L`5XsY@zO7QD?P7vKSnd@S!#ELaK9jB_m1aK
zQT8uWr*~bWK+*w2-w_?^Nx$EK8z8)Cdti>?`}X+Ft>c$d6*D<}?FreYpBN~U$K0eZ
zr<*zx^vFqjw&l6JtDH3tT<Cb0s2!;Vfy4SO@XAFwnH^gu>{fTnKe%}Y$|EeZ0Cy|?
zN)8~~%}?HmZw=*GlDxN`!cwW(wDlL@S3d$Z@2zMWT`bP~U5#$HEAkg2u+(~~RC22e
zkc}q|nx5{2Bz0gt-3!dQ`|*Z?wr_-}8MJRDr9`B{s{LIkbrlpbuFh_S-^A0uN#%T#
zO3F${EA2y~6T=Xtb}hA`v9OdAJiAytEP6B+y-hlpUSa%R>bx_X+7CEJCYQGgpxNXB
zE;?D!I<hRSir9e|ziQq-0aRABBj*HvOp4PBEpQ~(*Gq`Gz+!w~J`*=%M-nG;K*KVg
z8vPl%zA+tAIVVw-Sd12}Rv>9g<REUC|6OJ+IU}@_k?kl8EX&K;26s`YzkhTj@g#?{
zS72%zWpSHcP`sMWD<reGeiXYRY=RWmb%5;|v|wr;wl9rjHi}OoVe^jbPlTooWDb7)
zY<iBZc6y<osHnXnGHE6=-LMb1d#IqN*OWh=a3`aMUfgI`a3oX(9-N-c&Nb}Uq8h^s
z?R47Xm_1Y~HTZY`{5<YV=-Y34-2f@*4!k=ir}D$oR~K8BU|OL+oBK)YeXKLXf{01R
z=Zz83x@0bE{bi}R>_3VzrH_u?(r%!X{=2Q7Vx2E<9XWGI2FTocMDD3Vc5W}qRwHrN
zb}MpQaVvCJA1)B2aZZf!K*47=8t|V-X!3@F+P;2H7N9AnRjVQYaK+pwcT~p?G_TM_
zG~oyl5f{w<GJIE`=N;fisHiZPKEF2R&^Vw8PEiDjCPeFQh6%_7NyrGN$LTUgWKbBu
z0OWrV1l@9WsF#^?e#xsJCzEU;_K-Qd=Yx`I4dFA`!7;Y?!GDrqGX<q4vl;l3lr*B5
zJR4#yT_D%DD_$*@^re55nkY4T*svg`t<cX9nMa#kSn372(Y<VZ3Apq{e~P5X+LyGO
z+VfTk;zldc7^9ecTW+&I9DT<H21V%Ee9`02M$ao@pDel9x&<GU%p--LI<sXCjM(k^
zWuR_qXI9YsuKAnb>%~nUODmYDywwoM;)YZ2I;RUR#n`~gU=0-TBjm)A;Qng3MDR*9
zPEZAAhkkc-gL@eH9l?5`u-UThKD#73i5x@#`tJMO9Lex!FA!Trt3&31d|;J1hZMz5
z*vJTH+~eru-P1BdDL5A0I{7RTnFkZk!gP1SeNC<Ee`d&VfHB&7KYY-1)Y^PLz(9*E
z&?ni7aIquR?JCSGU-F#rlv9rz0ZEZk;+=ty+aiue8IT6{A1CSchmTE^dA(_>BXV5c
zv}0F>GM#GzLBV|Dk{OhGVHB-4)OV$g=41i_Do1rNUuk2hn|d@761KITgoSJgDP8P$
zXkb3_>Fvl0_z<GSQ_qp=9VNoPCKDt-|L+nlyjI)^cJPg^k!fGP47kG=HofB~|5ay`
zg($bMsimvG<H&P}fj(n#q1Igzeat+fpfCiNSH|6v4{|JhoBB}Le$7%hR&hm$)x7b`
z|LTP?4G%4)BsT8HK2$D`200gVuGys8l%uC@tKcWnm7?ToBboQ+YD%AwOUzIsq;Rd?
zIgT$I2d~xD9!{n~IVKJ-;%;j>%wPY~G3kD=>D3_0xLL#dksRc5U#h`t#q~KRES#{G
zKi`$s*~$OmLzqzL*_2&nNbp$-Vg&<UqBe8ksY=>9_ShvscJ#dw6ILgGgX}Tkek!dF
zNp_jF3a0K)>EQzP|BdjhLLy%Rla4*-tJf;wEkV_a<?I00garBUXycZ@ranWwN*m7S
zW=Z(BtUw+EFP<hP*|e;jalIJbV-x1aX>y3T*#N`@BHPuf)OR2Qi?>RaPtLe%5UYQs
ze6gP9z$3ehZH;Riq>q2Lkt}EL{|II7IpaiCmu}&Z!)&3O%&m|<KiomFnpB%0|KVXq
zPFBQMi5M3bN(=RY+!(FwIE<#lbERs{{;2YS138tq&@u_wJCuC`SRr(L<RVWO@!_^1
zmR;>nw37OHnQBy6l*15Gw1r6LPhj-t2(K;_x?!~56O!>NJI~N)qgEUtpWA%%UquH{
ztW~nv`@~3Flm2$X_hsc?W}ZS&3aH|4MCx8jOkiyu;&a+-BT@bOepYLoLJn&>`J0T#
z8PaHyLDN^qsU!Q!j%EN#xp?1UQi)3`u#id13StdB0BB7=y*jid-jX9%0(!^gwWcF%
zm0A!m@jge|Xp7&ssjc;kgr%zoAqF-E)BDY&g?UE~H3b)i&H5#-)eCZAosFDRhnA)K
zX_eY6n*y2ppY%VBgOAWVcjz^t7^*Q1%RFg}c@1WMx}E>7rM2qQF#DD6JSHE=GBFAW
zf+gF7?^@Zs>GOYSXQ#2@C8suzd+amHR`e2XVXT4$NAaZ0gE?-&`Rf@4QWipF9)lbb
zmqVgABM@`z_~YX(bJ@9I&KXE}5>{JDJdRnt|4U&c&EMn%;$4HaOL<I(^=A9J@yT{;
zzpRbEwo~Uyj3YggI@y&pWa;vXrYolTYVK+vG>p1G#hXcr5^#zsr4^aO|G?7?7<fLN
zasMMilJdQBFO0{Dd4DRlC^>6;5U=6t+1{~Msq%FU$LQ*7H?=jGV?)x*-xv2hj4NQx
z;ed_3owGqea-MXtwtxMcR-3#`^n&HJjE-M6%}R#(bV}#0qt4$}>WIH+%i;E;J4P>W
zuZcVNh!~%)o_Jh}GH#u2QXbBX)?tf;Aw$DVdki`1t7Z!CA7)!M>LPW`Bexi@m%p>l
z;-OsU+BSy&;uH!VA%C^sWF|>H9r8b%rZl)iQ~iD@S>QAGIN_5-Ue;FCchpUut_F<F
zdR3s)CyAICH^e}pLsQ)7?f^%U0;aZn#oiROYoBo9tWGX&^ob|!beKnF&h!S%&~;}G
zeC2?vWy<E2`C5<&+Fn-#)wjWVGJ*{@u!>V^i8rI&7*Q}o2aXX;>gsZJ3&x*xnJLA_
z6?D;_82_&L5BgW#52dOFbCmrb+&ADcBaH+;l*|u37x<Ge=$9c)v-%{mesqaY6Sz6q
z)w3E@iB-M^%<bJHjL1DBvn}sfrBa~Vc9Y$Of`xoWUSi(}VR)gSTK5PnTyz))RB`QC
zMAwEdp?~ALFq7vf1Bm2o3snJ}$MMoua#Tgeh5k2Dp(QD<DH46b{>tI(lPRx!_51u7
z&@SO0>c5&a9{or`v>|H@-0xuTT8^4Hzx)*P_N19ml_zn&#?``F3vsKte;P+2dp6M&
zE|r~QDL{V8Z7s{4JZgEsbq^%_3+iB!gl!wf?Y>K8Zl4Lpa84c0%+)n@ZWyVg-;j<w
zQJvbt1k7A$ST@dVF|O4FYPRxOf-D9;0PY(%cwyPQuSl0hC(4a^p?KIGt_?svJP{2&
zyf8b=Zl4IAa!}!!g2mZ+a`LAFPK9OGQKG@2zVXy>9K-!yNSFvq`?svj{_5dlRP89E
zh2QSrux`@Ztug}3llphuXuSv_`iMWyaOFz|zyL>x4RcE^x~QR-CM5B+j|{o-?Y`5$
zJldR3=j`mH$~_sYPEI@_Z0Yx%)le4pF6}V7(`5N)Cve*tHI9Kv(&$~k!xPa9`PFxa
zBA$}-Ta=Ho30z5ebFV#7n0CCKd$7!Ovuk51kBv9}`m&pNZ&S6KSSeG#PLSu4pHca{
zz08a0&t};Qo|D^K`J88gr?XTIn_IQQARh3<z!}XkkqfQ#ZWXTwIAf#<eapXwEC7CI
zCiXa!sqa14MJ%f%pLNhSaa{4z!t}Or>c>f#(V>v9A$95soVA)ecjf)cqXZow^hru7
zslUdndn)L5(O<TnS8LcsaizeBC7>6V<;T=QUmf07Mb9^%xg0WIHe9w{iXH7Zws=et
zoc14;O+s_tesL0~`(Y3}+<nlD(U!*Z^RJ2f&p*B)0^f@onRczNjzu1~ngB>F+d(H2
zw+y+5Ls%fPv};32IAy5+!OI+Li`@afid;VWM0gfd6;%^U<~m$8j&=Gi_?JZ|_h{gV
zXYO%037f9Z|M4Sd?E?}<vp2XQT|w=fXIF<`g$fY`yXeJQ64sRPsi@f)*kfMxln}UL
z2WCZUY>gqzo}QH@FNe)Ek?llp$&`G2c~v>oj3i>ot;-@g{EZc9!INFwKH?QR%QA71
zFlK4ME<4c*pIRtiwmlz2sC59Q6$AKJ-c?uT87<?9AkUhIlDh-GeE!d*0{~pe{X#fB
zHnlKD!|_R7y{~EO#(ba^P|vjd#i<LbeU7iw66=YE0VlArm+In$Rv1^yn-qRTt`pa1
zK25)Xn>e}s*}>2YspWIz(MX6)2PFF(S=}x&1`78VDs@Xr^me^pXXGEsTsm$;dhD)^
zQc@|W&TtXFAVccOgL44$*AGs!^zoRuCqY2=K?@i@t|II5tWAVZ)3O;>N6on@>`ftI
zX}IrQDRl%B6P{u#D*9oA@9i{zRxL#gSyDf=I2!T+2tHrd`FOhBr5K6O$YB-A;rk~4
zYoY9aG4AB2Eg_MN<zSk+Wd9NMKz4}}(k^|Q|M8&cZ)=GMxxA|Odg8@8(y`h`yw!>$
zs>*WR_pbaWF|k6nJaOIS))KdpKRjev3OXXDYrIh_d_N-IGTF#n`bDnke<t<H4BCS8
zqLZQ$R}Y2U|2d%nQ;YQ4I&clgCGuscD-RO7SKyt`YE;ZzmLd#&47iC&if=U7W%8}1
zkshP@41{`)D5!C0b*XYk{}=WBeB#gQqhAyWujuxl(e1k&hJ1sBujw8QC3W}!%L^9q
z-L-H@wVh&Jo6_3SI{5L#*tl_2rAuP@9AE%!A{R%~>6{U(;dD~68I&o>s2wf}!4&z{
zWUZ9FV|BIUl7zWG@hAEvA@=pM?9x+*am<LPbicfn#O3ZQwV3wtHMI2NnmcBPT=$1z
z8xqvZsMJ+v2|?6}+~tpJVDoKPTx;iy9L%MZ&ghYFWU*-yA3b_xa?HytK@jlo0QyI9
zW<tmj<9_!F1*pxVqqIWfJGr5&A`aSD!FJQNOV{P^Zd9!-MNTkB;9uRZT_NScd_qL|
zz@yQgH6Xz(Wb~4`C9GVB8AJg_HqjiZer8lV%=)Of_z5N|yxD6dBoP=C4E4tt)YP^*
zKB%xb^k=0m8ZjmW#+ka_{${!a_+2EZh<AwrFuFBjqy7||4t8rWeansEtp8nbSny68
za0{v$Gu3&IXzb6Nhj-?sJ&~Nrj*Nd<n^6C3gwrC3XjJQ_ubMLn@{dhX4_Wjso46zx
zU*t_T0vA=T5V+XsE>Dm0CF4WSV>`dhhAo6&lK#B%+g$TT-Vi^Jw;s;23BrU`q(~pU
zqEs^`7i^lS8|tT75Ip9YaeL?2A<u2dt@{f~9J7k`{8+pA7V%{-ELM7c$W$>-k=jDD
zzy0B3W{gsCji`$sAb6MfSm9O_6p8>Pz~onq>B(Xq4Z>{Nvo83q(M;ldqnfs&6XU|=
z8%cQx-S&3-zTm6oTkbf;s5YfOzB2_o5Wr=mg_$S8TO6>Ne9`e><L<_n3AsobYB&?h
z8jM+Ik2y2UOwYW|$}$ht9jl?t@w{JW?4N&WweyF$`+~5&@+Ew*5y$uK$=<!QIXfL$
zuM^MQIBO%0knHix)<mA}m)3$Yde%yzeo*iMW_|DvwvsWl!`k?KSRXuVPs*HZ^u20W
zU%ta<*{v{7c^uc!AOEtkOT*ARsbj0XWO&M4bHKkgcyQKxaO(2nM?A)#`RwI-yj(C~
zlAsj}lgSMM6eCudAaTaeDFQ^qr2XFX3Vyr#hzqzx*6=hHv<*1qVQ?X(8hy_LhB7|j
z+Q^};{P0{d6dH13muKGKZS#VJk1Vo4s00y32%lqlZhD9m{LdFSrYmXQcjsob=(D}j
z%d0<H@*T=E^6E#76Crsm-AT19V*7{f!o<a3i*wBONx$`-jUu&+%B|p>sq^)jo2!`Y
z^Mh5svp!Wmbt*j<uZA}3V@vyyRfG0Sf|vhK(Wn!7bm^d?@rOZbu1j8gKIh5=?E84G
zOq6tLcI4-<qczbiX|+wHixZjj11+^$InmMl(edUQXZdtWf5gFE4NeXhjfKgBUm1XH
zeRVI|ZZ|rO^?7C2Z$3wPrDgOkNkOfBcvLOwG`o#bUDQhparY1+>ebSC`4$lXD~}=^
z#VBX>c4OEO)}Qa@>hvqeJU;oxEI}=N&x3T}_f0xEq{$mFk;D~6rVV!(AZ?cFndx)@
z%YrRpX&9^0dqMWvR972?D5JIcIEzmaTs2<xe8VYIn_3bmt!2cl&eHg>&VE^_al|m$
z=fb$VTr4B$HHZaNgx@dVo_o4Sw^40<P7hp2Hv1N>zEJ&Ru_;}iI7caaFpu}#Vfc$=
z&OOb&w(TyG!S;?CF2Lz}+Mm-tb%xybJdfH9IUBIEK1EN|?*3ooy=PQYThz9VqM{<8
z(gXyKqV%Hl8blGKOYcRHUZr<L4<aHUy@yVK0HGr_C<4-Js0O4HdPyjOkZ*CGF}^Y0
zG2S1~|MwqZlaRgk-fPV@=Y3z(J$6*b;5$ErNrnos<f(LbaOELP&|@r9br7mP2>sos
zHF#p;TlX#Z#+tRYxBP6J%$2d~ZBE&#brPKY)Zn4zje+Opg{e6^t-sXoWvd$YJ6Ye2
zIA1QY70@((!p%4Uwiyu24a2<mGUQAKLD0uxt&O9(?$Oz`d^*aRuT;-bYdNyb*hy9@
znY~{>4NI8ei|cF_p4;!dgZ`;lobca1!$F&pyph8JVqVDUpsv*>*Hihf+0!&p=XW)d
zUN$|8UwGA4Eolx1{{^Se_)3jhWCv{0(`*oM_>>)t<`$h6TX9&i32%x9U4E6C?KBW=
z%x}9fl=g58Kvc{cKC^Z-$XUR4^P1~1UtNv+N9WjNz%(rqH?sV^(1i1|bz1oP8m*#G
zJg0RrTKl#N*83~XNumN`e`;F>HQRVHvO@?44%Sjk3rD#IdwlWXkAAru&C@>NKcfU*
zCA#)A6Gw}aH~kkwHXBdnjy?fr5m#X$dG{){Rfv$!nXLDp*8bTMn~Hjd3`yvz%kCyI
zB``Etml#tw1KFPItTG<&QMOm7`+_lN!k<T0zUwi+sdICnBYBZ)eoJzZC13+_?NDZI
z>Yq`8^f<im6stz_?s9~!-9xWK$jThvCmo{TQ;aMv?n@eBk1AJkT@laZjdY4Z^0<Z?
zktB9M|6o>xUenqx@p!oW@?Cj?=M5XgY;HazAje4RJv5X>Q1h!MH4MG>-C=Bmu5B7b
zE6sPA2?w#Z3W5*vvI!OztMsQk`rIo#Op1CeFS&y5TkEM-qcMxiyw)dRaq0d=gEmv`
zA1!4N-}1Hv@~qV$H73_1%AvXIu470V#$bpq#@53YNMyKr$(TdU*IIGgD^W6fNNrcW
ztPDtd`+P5u1Ha=Ek&Tbsa`TzRu>M(bm|J&hTIU;e0s#UreHMJ<uFN|tmgT4t!Vi10
zmjUau7W{+Jt+6RDpjIoOFFSJ2L&`XifDAQp=cEfM>m{tuMKPIfEbw+_U%?imAoijZ
zL-KqHLGk%4ox-|Wi&LM#D|trzDigpfwKJN&<Ar^>eCEqf$FuxJD=c`?GEo|yapgz(
z(}bleIoJ_-AqBfE$F7EAc(oSB%x5lSz11hH?4^>@q2qBuY}dK_N=l<UR1*o4hWFTC
zULFci8gfGpd-sN5TIMRg+aylkCR%5_Y+cV&n`v#>%M&KZL-4)yts(48HM@-=Gu|8Y
zQm(XbLl+w8whEN@=As}c?L!jWld_XF^BQ<o!JF*dqk}ddkzSat7gO1$uJ|M8dV>Ec
zUk|l;Y+?`61EUzD7|w-}MK>?P2~>RL=Vkn?%ev!r89M$Cq|b<EXPDHbTLqh^muI;4
zPfLR%EwcL%>NQns2)Tqu_zh+KeVW6Z%Tk|-zLu84)M@=3V}HCbe2|Y@1U@OqSYtI1
z88N8he9U-==rwZL3`t04)Z<=>G@E+ZsTh8z0WE8R(iMn-8~x_!5_+@FE;xTFpw~qs
z+1T|RZ`}<CpdsSVO6gG$c)ZFFdoc#NPOF7oAETR3Y(H6hJk96gpn;uA!*8iU^3cUX
z69EmCpFSJhSGtPyKiBlH##&0rWQN9LqBArFOi!lGvP77l{a^hV6nQ$_x~G3vp2^yx
zAW<u_U#0P^0<sduJ@{KT$N}Xyf2^^8w${#7Emo1vQpYT=M7A6isSLh2PJ-R3Kyahq
z>ZO2y^zKyZ-XB_DE^CdutybrR+<?y7y6!v;Fi7mPKlfZ&?tX3(6l{$q#DUQ7JW(s{
zTo#&fgD#HB_uANr-(!iBK+9&m=gzglK|}QsX*lA$rS7cGPcJD5lu2gF>cMT*5jKgY
zZxe66w4M&3Fg-(157JmyKGGj3q?i0Un>ltq^xOP9HZM7j`Z0wRPp?V@CPu{h9lu#`
zqD|=e>B^r<+0@{MUo4y~8iU>`rZZ)H>%JwSiQYYFU5?^Lzis2Hfwc3VMB}IdIb(9#
zQaWd5wyY%Q{FKyzuFk4h5c&FwYHf51&JR1;J)&+*fl4K(Nu_5<B&W$_W=O`Tq;_{%
z6_h4XH(#5fQ=BQAg{%X;2cMBl&_nE`5GM5nIlV?FM|I){r6-_N%(9C^FKld8_+L5q
zvh76eUq&rcW_CN)03VgJjacGl?GaCpmK?7(LlFPd0AXOb67&}o^@B)&ie<|0PpkWz
zDIeS(Fmq`oN6=P}Y0C0->TqfFv*W2n$nn#x>s8bucU$;t_04WkXbb%=7t{XOE}iL>
zh!Z=HbCi7VQqw{@l)|a#$Z%Ghy6Ab@AH@o3UadEuCNRlPoj1r%?Y0Vd&K{cWbe7ev
zAo`o@P%A`OR90@*SjdgcDQl|0eES2WE0Q1}7Q7alnH6Av<l0)dTHiWy@Jz0xk5;Q^
zw90jvIof5pfkCNV+XzmeA>Nv~K6q0Qk2_oWnTqIVDGc`KoN;S?+hXcW8Sef-G;QnJ
zZ{0`zZV!G#Bl6-}@#JozQi#JR_kENbSTtVV4JUt!TY7xA%X)di4)SZ8bFCZ0ajN6J
z-4kSZj?Pg`{sSLSDzlBsEpWJtg|wi`gf@Kn5-U8yt~`cwR%(xq-QcSRVyKSY-$%C5
z#Qw?1+HFLa*>U<FJrZ(wHqi+^?d=Ue-`}sEOYy~+7siYvBpd--`T3(i*Lt&CmR;sL
z&DX>$x=_|5>qXW|%g2~s*cg}wRHIL8d&E>38#D_A^)q8tb^jQZ1L&GxnYJsY3J)^i
zz+Kzed)`Pl+^)TR7W;eBhr|5zbU3+H<ZvGtNPq{+)_wRbR~Arp6l;N+j;s!rs$j+Z
zx+(sAY#2cybBgY6A0!iqg0*`Q(r-WJ(t4#~YX#H;q`&j(g&DRa{aS>dyOMwqS<>|6
z<nLO&IV7F@1WSjz2b(V9U}MveS3Gx|BMttDJCfQt?ZxO1!agRf*FF)wj;Cwcdi&{R
zso>YvI48AJ#WQ2RO=Y_;9jH^`UnL?HEk%<hm+;Q|Aw>nUQ2%#zDcK~2a>DXalLe1y
zHuR;u75)A(-Ww>??G*46xM?P#jp*w&!X>msTKQ45G<7&reBpVTEzL~mnb<~+AySMP
zgo*5O^iQM+3Qc<L*1r~X_!;>N*ZpZtBb>iPx6(1muw;qHXS9wyp4>Va`x7>{>E{3D
zA$@9p2V23dm%IdLtWjXS-|5bQtACN-2E<1n)?qclfGK9LiUr}PqU9pYGX6(koDs<u
z-5^L&is~yOTOz86(}SOH`g_#}GOE;j>Sumh4^YN>bf<RNYOor8e^o4-k(M>cVcDTt
zsKv=0fT<?jN+_=rGtW)PyPK6X1Cj(nKOz+u;@KJuYFq;3Mii;}3qeA}!DH>JbA0!d
zgZHAK|CLy(3h7pQNc!C=lnP3G^=;jYIikq<QdfH2X1&krzK~LTp~PczmXJa{9Crg}
z6#as1)Ghdnv1bKy<F=M;Qys_oUo^lHH|o978xXSbdp6{tXM65U^?+YAu#)RG*DCaj
zSx_l)1~sl+gj^QBPws17{nN6%n*AkCanb7s@)!P0w}2Z7B+1IL`yaLbUEg{Apo}-l
zKL?px9Eg4887NMj!Sl!g9r#qj{1wo@4r_^;awW*u70Ue;Z<>|&_&za8m><u~TAMtr
zJd}|#WmbS@-a+t20NtZ3R7#2Bb1%lCDnpDjV2gS8(AB->nkv7)&w6AlHP$KBeLivM
zx9ryzEcRzZWOsuvmp=1RQqk4dvH5$dOT}U2gNmKeun*)NPF{c9^9nz?`^(XtNUCR3
zm7_LC#u=w6Zh^78<^Q!@o{Q*v{1C^p%#Yd|5nG8-TUkI(1W{4Yh}XTt@}Q4oX_<m0
ze=ZoNev&!N`T*nmFq|i%^}Z;K=J8%+#5*rW(W_lSVBKLol$~^RuV*N0p&K-(4E!sn
zA<OiVv(EZN)jQZeSerU$TE7=JZE%=@?XaB-O4GI8WXdQ_E~3gGDbi!+GpvO}GEl+m
zK^=(<2DW`PCkilkyaA9+P*2$vrEsex7W4-C4O@bYqLc|U>3AV!{3<T9sduwrekOCP
z-rt|qZu+dUPA1E4?x=DcJ%*f_LRsxKc-q`N)p@M(hPZZ?y4v0jiyH-5D(jpHi<wQQ
zCe%#G&>ZU%DX(Vtf+n9&vjQTFP&09$8v%HS>+~a6D^&*#nF-!&gZ<9#PW#x`AM<85
z^OJf4pT^VDr`Pqu9!CCn?#|1soOs}G_Il7HziFQNX#5iI<@eS@w(pR0^_ZR27<eKp
z3j0HA1#T7II_Vbx8&-QEPdE1`Sbu^et&TW*tnF8+ii9@jcSkPNuWFnH_Ugqzw~k=a
z4Dq+8yj&B@cKV#7DNEueZ`Vz<X3sawBt{XOuF6vU{a$Kdl-9al7vgmtUG=sksz7QJ
z&$*e35qsTG!zFbES=iXrw()KquKjgLh>M!DK29OQ0ny7hRq!tJsUt3dp`V>2@vDxw
z`dhXf%QRE>LdoEhJ;va+>A;ZDLISWeMvp%>eeY5)G2`7J2@2k<x13HvI@Wx<kucG?
za~62CMJ476QlgH6;#Z;vRSMjm5{x{tGw}!+rbgcf5=?y7HTQucZO7ARcDN?=Ard%0
zTW6)(&fSC={h_RCtg<Yb2EREx5`CJCpH94SZiG2c$Pqu8*0EP-r*r3P(bl;*F$}Bf
zJ&Jf3BF&_(zkdx(T@q4dX6U#VPK<PPm)ZnxTld?hd9$diWoeLcrAw%vu`Y&las<P0
z?<Fq{S|$fa9uxlrP3SyOjv^J6{|k*YHR7}m9;k28;nGfmj}Gxgy`|C~)mbUd0G=Vv
z5<{)t%kZJ%b3K+^Z~daDrC%-A<{e^`Tdq+>6^Mpc&Fhxxoe0b8P0YfN45%D04Y?My
znL+bJubZPqV$fQ!=BL*CJQNAIuC@(ORyB9U-78hQ767WXK8D8YxX2)eVX{d}_f0qN
zKU+*^uPs*NT<FokV7EBGQU>znEN(}@4(^>I!?NtzFc!%3Y8ex_X%M&oJFq3b+eZOu
zDqHGRZ$?Ozsz+<@sF!(fVYpE}h)|5wIhANj#s)cT%&$`r-r|2z!D3`Z1J-MQFJqj(
z8j0!yflw+@QR_$bUh3-yFGIw3*0%!s%K6kjo~Dcb!C=;(N?^JN^XbmL&i^#%e6v~1
zL~#2$3hVCy)&zaQQNec8>R5VuBH_uuUZ<-k{GdFLBxgwH`mXLMwPlVHn(HeYdoxJJ
zcL8|_0UGXvZ+eUI{`uZ{tC5*Lg!$u~DN8-JcOlHuen^;WJj#4&YFpg_qiXojP166?
z#&wP;+gx5VPD>FZ#(&%w>?8|CuP1n}@&@82C1_jzj96xt-Fj_Ib<=_G_2lU7+8)>*
zisI7deyj2{=UC=(!h_A#%tF{n2~;~qflp$TwaFUEjv_0Uy=DgA#%+xoPxqBa)g`_E
zA(wTXFL|A&H)_<aU!hAcV53EiNp`&T6o-aV)o=ToTS!GsuWrv;I2SVHHQP2Vs{j>*
zj|6q#W5NCS2JH}`^Pkl@D%uSOC2_FIGWH3G>)^+-nc11TmiC3%NxvlJ9Lsebr~Tpv
zj|;Ry=AM45tRFV)?~puu2KOq$-v^XmfK^b5OrT&Tufr#(@HV2OI?wtbwD5<NN#>S9
zfLv*Y>HrY{e}phsad$&d7?)c?D!Cn4dG_bAS@gY<W^P=p8H0B1b%7s%()?P&XKXw^
zvcIX7UOJwezE$vKEZA{_EGRuOw$_zlBUS=aZ+tXW`-$j^??|;==$M=o5ZSu>Hq`R_
zr>g3~HH#aKDXk$-kEW?U+D_GZDCIYvv978UwAX4RmF-pS4yTP#O(KyzB=^eP?|3#M
zW|@1!QRcGaKP~L}HR$g4-0N6)tAi9!dza=^dRt##^fhusZ%CCsPB`8(xs1hN0$GH8
z<7pfyJ5hJEDn->?Zw+Wn>4tC^Rf}XJ#DFJ~aHk>~k`!2=8e$p&yjDF5D&VFB`hC@v
zyyTICa4V~r{;U%ihAl+q{LBXy17U6ym)GRhT@!jr4#*B|q-yEKiMwtV0l@F1@$%)F
zog{Xxuh`Wrcu#S(D~sGrnl?)^IYojc-S??5_IMMsI2@62+=x5WS<qIo1n88QbTlk=
zB-OdDFkI>==-p_$>|DqMbJ<KfFH0T9es4$58VGEggQU)wSPpTnwf=tU2g>e;NR9i!
zlD=G-l<Mp@gY1QDVapOT_XrY$D|fL9MVh&b|9V&3w#{x1Rm(7yXbacj&s#1FQ{vy9
zOU&tU>jm2$$0jevhx{Qz>gur@A*a_1O4S^XL$0yl!y874tGkO^3SH>!&<{FVR(cdV
zN^HnMWNlJ5_C7-;w)cf>Gx3-hOq@a@cgE(<#tT>z=>&eN7;d19cHSKo`#2gHalTQl
zN89Lo6)gzZP$GYMQ<atnA2&_q#e51M)9hQ2-nil%-d%hMKet;rp^mV}(IX#5gb3nB
zs`s9H(MYYhwro7{gV0Q#fc5f7%(?LS+#?eS5w#Z0IL)g-URK0OMW=OeawUwQ3IPfo
zO4x_hxN3xgB5S%V0bR^Cm*IPIDg;KJ0{Gczm9!`kVy^FMT48?VUQ}1=>Wu$bE9EP+
zyE%mB5~LOp5YYfUkXME+ZC;nr4O{_Y%h$UPJKWB3>Fa<Xp#Or6<_vX8lj|Rk8plGT
zWsoArZ5;kP->ba>+Ezv#a4LuE**hezA`&w}1StX&%dYoPy2(qWK#8XZuy{ovgtrx%
zFCM$!Vway%4q50NqW`vX5NMh7Fl$z-W$IEur0Hp+mqpY?yd%9<-)UQcoI~!N&U-Ma
z%~n3gD&}|~b_R-MWN$!uzR)J?5no{!Y}0(0u6XO+$0<29_=Q&=v_LP_-3h8(FU-PB
zj0g>Obj9S`PBor%^dF2tjtklb*jr4ab{R!dxOOmyLED$ct5Y;$-M86nk%S+kbNFAW
zA%VMNVy$i`l@Difb{w#`Sa)4YX5TDLS+0}Xw&I4XH$#sy&(h~u1C;$}y$ba?&-CtG
zZH}g&EXKh}^{xkDwNE(1@IJQD=O@2~h>lCC$a_JDpcWY9yxD+c2-#z0H$O?n<bl$U
zRBQ^c224V87*kh9T`RQT5iNR?%rUJ5Lg-e&q_x+5tUe=`4L|!TOQyt$K)hlRqk7^2
zt)bwaB=_gjt^P4*@0tth%R8sPQ+kh{$8amt-W=}cl^Ttf{6>(#s5TGVjHR~tAFxNR
zdTUGs%y`eDt56zzFGX+^bWwm#h@2noXWH?;(${?G#*Pga;s~K*yemY`=v^Buq1OkZ
z4PmC9_}SY=uN#!@xv6u+?(t|Yk(<)(uq$SJZ;=25F)wNK)@-K?9pvb_Q`|PRn~aFw
zwKBgSj3s{&6ZmeaQozK2lbkIk@Xc|Az|gmOMdH@)JafjAVs{bgldky#fldyrv=k}=
zuftvTiI~@VbeJ|Zdp=>wG=lm>f?CMfeIM|wI{>#4xU8Z^aowxx6#daDi};xHUeU7<
zY0-UU_b+I3_lh<x)_v#MH_qj=n$Kl)xuj{C3dmTr2Zj`9kFO&ikJ)rdzK#ksGnn_0
zR}zhnWYtiWmh{2TXon+(f{sB9q<J)`t=K9SgylGZK@G%JC_dzjNq0!}r@wsSiye1~
z^a-yfn9X%+)a*2MA;A(FKAyluUs$~vC@z~Wb#&Zk&%JTbqq`EQAZ2|f%F*OD06Z9G
z8bJKzYS8Ry_VR9|rG(~y=B1WL=@^6=e3(((?8%L3{&=gH>aEt5ejj01hid#+Nj3y(
zBZ?B%<QRz{er#>s(xa;7HCO2mao+Chjn(908cvwHM2K+rW~WyXP+X!<NCjm91)(3R
z1s3CsjZP4M^TUp6c~Y>iHT7Nej9(7ZTBioL>WPZ1Z`<fm*x^UX2x8|-Ojhf%kNP(8
zXLk_N13xa1F@4mbU4M31Ofb*h?&C8*b8Vq=&)6lCp~9x1StU-(%v*L5ValoQ^+}Jh
z&zad*Wt~r!Y$B13Y|ym5p0a!w!PnfIRSNhW>cQa{!K>0UQ_yu>$M`eDa!8IQ{B-o3
z>dLM0=^}3LWYZGcN@R(5STNk;tU8p+KdGF)#pVVt`d_4H){iu!jVt9becc%4&@Y=A
z23iBoU572D(N?g)ziJ<53&iTvOqhU|!UPS9mFGM%^+c_SA2GET)*WxAQh#;hyF80i
z0CSeJqrq~zx;FtB5gwKRN5JwC7hOn^wKh#mg?`N1Y9V+8`2>EqIx^GHNbe|v$?F&C
zLS$axP`YFBQM8Nk^o!aE_SNSF8L1PvRMYzJQai5bV3isEWJJi&#F6V|W61Wlry~Wu
z`ySHto<Bs~<f}SRUEy}3&PBO5@y~V^{+^4y&=5(F0aDSv<-56$8n8*~a1IOi5vIVI
z-g8k(U<7KaTza)Rt$fV>(Mp`2rMoL@YVQPbD2p}s-<Dd#;HlVRMvi*RL>fHVVdHD#
z>F5s~#kM~2mgllj=h$RpA7aztOl##HHL-a)KK!oLys|pHIP*%G5yG|Rm}TmG%G_~A
zW3c`3i)H(o9y6T9VK5k<r4ro|my)aZJbwJ=wUT%L^p;6BjdVrhXDo0*w!JWaHB=N{
zS+v@e5_4qIPqln}zHYpaaqe*-eYoXa6YOy?Si9y}j1U!}nRt8Bl~y;*=V<%Nz06O?
z`1Qsu5yV)PpgtFul-&4H&`oLAH}r)<O`df10}CPsLD!7qhgqHgLE~(&BQ<KTDPz-u
zK$a#JlJ9jCU|fgZV$HWS9da|Q6gO9es`OX&t_)-a*_@xf6@7l7vFsXy@(CFIbX2$P
zTja&$MOE*DL?hn}4gVbAZ~m?XO^dT$R&Au|)1Q45=K0k06~D=6wbr}o8GRhwRb%<}
zPSs@FPSd`|78}=ypJZCkHBRuZ)h9(cZlcWRa&~J5Z%Z@MU}Sn(^7a}Dk7H}~TyMz)
zOM;XNb5?H`M&sKGa&GpIrTa+07+=G4i;wMz*zs#7N;~YD@Sld#{0h@S<<JOAOL10|
z<G*}$HtFMT$?zjr+ZbqHU(oM*!=TTM0U3Sj-}Wnoh-;`+qW_}e)ljBh#dGiNUni>H
z3eO7KDAO(8jt&pfTYs)<YBq$2w6)Az0nd}9l&g=Y^xyT6-=ng2IH-oAvbz@*WMR~J
z+Y48hRwmF1qwjHAUDeCmpgP??z-+A->=nDY4$sVOpi^ifts3kisQnDTP2vOVIxQk=
ziw$jWBzj~#+Nr1~)VDTm8P%P{+oanxw=el4d^{>LpgrupjC(x+tKXT&ZD6zaxonC;
z5P4fWVnJisCXDYHZ?Ajs#B<eekOx5$bgia#9fzN4(#a_B1P!Pl5Z}M9QRhk~3eM)$
z*QKMGwn9P3r>8hWY1?Jyb96~#XKR*%OoniZ1}T!vk98|7@Hxkd;TJU-x48;o2bJxW
zm9UTWX3-{)J6Rdsm0JYix{jsXii?`}C0BD~OLvYCT>tZTy$Iz%LuoqZ5I#ZWhSr*g
zFxi;Ef)wr*&kyPd5rZq4YVi7-je2>`a8y8K|D0`&qVh@mW{+fh*UDgrP>ymzwsdrk
zEQNOoX`WR$-0I_tmTQZ+?3lcV5o6hYmfL-vqI!3EPJ@8qR?Nx02LE*|*gA<PV%(FY
zlGz{L;`MQ3c~0C!fN1j~m7^kadomV#Uqj^ES<A_2h&awto%@_9xpP*qVoLA+BS3?&
z6|&uU6uCua=*C^C7;}t{lqI~wZaOxFq#Ioefe@y%`kTj`-3fCtN9a|IKL3-!U{#E9
z_qz|Df{m_v*U?{v|G+G-vFcGN?T0XgtcR$!=11o#2KFEq5n>?*NnyT^37(z_J%v(e
zbeTWm6MRUeI&!IsZ+P=moqyGeBd+?vQ!bU}=tVIj!s!<CUD%1zTA&<T>!8fv35hY8
zo2YP3fgjL$OVL0<5$gD=xZezZTQ=}4ONcqY3?oA>7waMA_Zm8XiDg=Ny|9U?@`h@o
z*5_n*#7jkBaRrDNun*2Jj8TKvO(wDOwKp52^(lM|qY2}u?Wb9#nE~=OTE~gBz7No{
z)|E+bpS1Ul9}IF`q?wreKSe8WsIwOWzLNnLeD!MNz@(EWU};L<o~)XinX$$-Vw2W+
zT4FN{dUS4@Gx;BC@JlOIYc~06(RMXZ9L^Zm&kZ;4QED7ri=235hZ4DB?M(sg8D847
z%9)>_<A>ff`<*;x|JZTO@#)%iC$G8?z*#z-_SOk+4M=qlg~ZAtv14;)!L9!!0mqMR
zfGg3h3(6mv4CtY0%gVW+r1SZ#_EKy}wP9SC{v)0+*>t~U1iSeZm>LU?TKAr>`-HO+
zw#PNli<XK*npc8t565<*A^U^r5GCvJkTl;f!Laiet3cG(9I5PAxA5$RZWCjl6VXqZ
z(2;DB_sGGh=to&T#?|y}xc&o2Vx_0~@k!e_!uj}~%r_ZjCC9p`O!{I5IgOu;w|nAw
z2%8KBx2i*X5+WzBdM4;zreU~`(6`M?o5TJ@Wce0PkB<C8J?P0BudME7;7*I-V2|ly
z2O<D~WvS`DbFV^FS5ZLBs3w<Jds_=y%yh>$n%);0r>k*N@&@3$&&#!zrI#hWfE3-1
zUB2w!ZWCdxzM*d)bPBJ@!GTlb01zMMwlLe(C&p?n@PTaeKN3U=+73aPq?hL%0Q6Ed
zk@0ZipS5&eXjJ(jnX%9P-9v1;sf%??gB#d@(}w`b&mv~gs{6zM5{#k^#|)<K2PZde
zP@A64QBN8%<F}*oKhnon6Q$3mV{Fx5x5N84&v6t-fkn>AYPObq53WAUviKk0yyIos
zRv(GRxeZq7Ov>~6h}FLP#@#1J<Q$OAnT4Tr^+z_c9vE{LHypE)8nL^Nhjq{89N(GM
z)P>H2WjU05ouVEaf3F?v5ON=K1dA6Sa=LGG4137lF!z7tzSmV586!VH1V5!8bg@KH
z3~PjVS(<qy=j}i=5YrD|Q)fXF90HQ&cw?sC_88#9GjAJ6R714_;Zv#_FG=ADjWTiv
z3eJY-@mvDW2i><S?S+#aV%jQ$NR!mF{~!(#Dqx-ju$G3Uz7DMP;H>28u(2c`i}eiw
zq7-a3KRFv)<q!o3OxyvDB94YSkyQyctE=5WOs{+dcnr6f&HbS^JFlG10v%k$nfo{=
zd~590%IJ=Op%-K_O#43u$e{Vy>176`Byw)oKH-0~3L>3It>qGJ>}^fD_~rYx*L>yR
z^qwv)Q@m^To$LpD$$5(c;h!}A{giw1Z(u*fAImXj>o^S_74JH4qh?gj&NY!wYmsh}
z5ZrUO&n_^JO3Fx|$m%Ts87(V6EHK`yw9NWvf8v__dD;*AX35_0pmc9z<KWveA<`nr
zB{bnTb6Um^2Tjjr1E0!hzN%qlHfKHlZEJiqS*uX8_E<T>$g6ox>VN|hf+4dNJOGu=
zgVft-v%Y@^xCmoHdT*2E;p)ofRuo64=p%2&43x}90*6)ljWKA4g^g^?CO^tU`D?Y*
z<|no9;uJH16~5u;x-(ZwL%JKVy24s<j|wo^_vNxFO@G}y=Rq`4T61^g>QK^Y<xRad
z%x&w{o&`=AJEgJHgg_CUs?~yhRsLY^r(WWshwj*Ypv2=Yj_KqWV7KjbzvFP_ZHMK{
zqzp-q>h4P571iinIVCj)60^;^<NMcy9zS%v*2;|Mw66l-oYrsIcZq-=r$QUpoYJlP
zg(a^)8?{={llrR<;Ds~4Mzi0vcc9aO8GkUk8_<ld$K$z<9UcG9B?1(2LfNrwn&i{W
zNV;EwjzhxE`Jz`^me=KP%0mouWYyk(dM@W110$w7BhM6DsOr))G!zwfWcDUrr0&{8
z5)ovwXYFNKQ;Sa8?D-!~qx9bs9gjD4AK#Ipi!O0lZm#1EO1`qokybyuvY8LFL@(?*
zREAJ^c@eZ!Z2y*QZPyn5*7eh{yY6_GvmFscz9F>}q2fAg;aHgBW2Z*ro-8ESbH3-4
z@&&z4gVX=kQ{8Y31Qzhhr*wz&DgvLv%_E~V$t_+rRPm`T4jZ4AsWq8o)(4PnV_m-k
zPz>L!8TW^DRmux!d>M5ub2}qN`62sg`ju*4K)S-Hu6a70fqX*F&`{3bA^3bRprco(
zzEWzeg4;(yCycy0_2L}?C^*U1YpqG1Jdl@~QR!;9)<LR!Y})Xc|0D)ex>ZZ20`z)G
z@r<Dk_iujKg*yjOZJnX!9Ay9AzC~;}g>v|u?}rnNXGJNw<S29+;fX>jzRLm1gQ{M&
zj7#gcJD3Nch(m~p%(}Xtsh9W|Evlcit`Ly6+Bb9l^h6ZQkNu2{oyYL3=9M+Q<qCmx
zsMnslzg?0KbeE=%NUXAMcpgG(1U<UP+oCte2Zd5y@eXXXBCa;M1Za#VIhT8Tr><;_
z*m$$<;)b1Z=S&t-NuS&!vId~|jo8(5%i{|Y;LCj_Z}B-1H3iFI#<Z`8E<94k(KBwD
z9wLcR5c+0cE|Fv|dQ~IS^bWOH<d502aj8e5ykN`VZj|<2S$0RvfLOHpL;sL)NSyM6
zy>Rt!Pirllw)`uc<vim^o6wHs>P<}1*B?D_014P=A%|Mz{mIioV+dv}RXn!SOd_6Y
zEM0R*bN$F5@Kjpn5?d3^=39OR+CyK_xMG^QilQ=7ug9?_v5%pPrAB$?t{c_I^-|L=
z05yd{yTybonzsIs3M36cqmA!7XVS$?SO`@Hy+nl1STIzG92pS+OFKPlP<=rEOFU-i
z<ajJ~a>-ZHpoj+1AAo;RAVHOq+4RSh<|N^$HvY8LqvjhblC*{9K8s4Y{evqBDpwCD
z1Hqw|Lkli&!h-PS^6B<+r9pdMM!u$z=HKH>$gBRJC4U6`A=TJC-c*OX2T4C(;aZw1
z6Vwy1LyiS^Q5(yiau9ZEi;#bvCL~0sjK#Pt7&Ps?j035T#i*u@uBfN<cg6hbR20m4
z9cx-wE2$}C=+(&rcdgFz`dAjR@+LA5N9Vc&<gk$0)}x7lZG0kB3Nq@q5s+5D>FF)X
zu!%jA6EX=}^2*6=2F$j#>wgwDD4NgxRS+*O2}Cd&T^`dMU5#1~NTYVh!_K6EMNj!g
z|H>A+Ue6<O<oN?XfR%MfG5wnbjbGWy(eo~DV+w?AOfucKtJ!q>HXGG0=PxEfhw9NU
z9)FQkZlfPAz<f$qqCK)hH$xtcu3C+?TU+2<wvet<WRCQYaIrr&W>qA^J-Zr|n{Yaj
zx;O{*7cu7g!g%6gN+vs1IagLcx#9gaSWS+%OJ%A!a5K<7Y2DP}y4K#-2*3+*#TC!>
zZA_UD+|}FgDwjn_+({P)LAK5OPnDecw_HA3mjYZP&vVn&C`*3JPPT54Zb<=Yr%%%&
zbbq2ervfJ7=X5v*a5zR@*Xn2SDlPRvRi|_@v-nRF!$0Kwujqm+_&WH5*~E)6b7Q(m
zCtE4HNu6DI-t1SS1vr(?#1dS$3Ge2uZ!f&tWAs{+?omW$NsYhqnb<TN<9g4dwKIj8
zYXPId8b{eJ1ygoMjHQ&BnuF2qrBX5o9HW!YAEa!>VtnSQ>~!7gj}<<!%V65N^hJgZ
z(Zs!z-0{BU1dwpa0)w!@=ubW^EgAdJmEwt&kndhIe642OScFxcR1k-}A)^xC+1r(0
zm`R<Nbj9e3!I>Aj!EpD<H(rw8uK_`RG$-_Nv~74zb!ltdT+eT@Z1rp-Nrr&$`?us}
z#-J2$lP3_-Z`vybJvwgO*Jzlr2VPkWvP<?DTF3|NnLS2j?wgh^!{&+6^t>N_*j8v-
z?}$xuVwiRQko%{>C7F4OHa%7+x3>K+a0qkn-4%>ar6eW?|5>{)>47Z646H=?;K^KF
zr-y7E1s!n{?=GLcdKx4N@sfP178abFk;gIh*RBEPM_v2q>rW|}TRBhP43qE*iM-dn
z&++<+$L8Ayh~6ECIjI+;qwT4Vto2KqVy;i<^yFb39?2oQq<m7csLGJ^>ZpPNJi)#|
zF!Q;8J!~W1^ppz+z})qzCfCfmkZ5DQ@z0Y-z5qsHH3t%h&FBH5E6`K<y38+Bu1%`)
z>&0=8^-OKr1wE-K>sm*sUvj++^0j@OY4D(1#>>GU-<;t&0?}w7fG>ICW|Ta;AY@cL
zR+yGv))bsv)(D6x*@jPEzeA!?d(SL-!=(-b^Q{I!%Lt!FDY41)rm|M=$O~|o{7#jB
zap~Or`gb%kbeilUm-E^JL_<^*z+W?=IcM7wR_ugz`mX^*tWE`|o+K}n?6NT^go2%F
zEqBT2kMxU1X@73>39KbX{z<86-1uB6qTF=@04!;ifE#BQIJfc7P6uYrNE7fMqmv-U
z+K3i##{m4+)b{rGGW+(^8Smi6jWz_;AHt7A)0xSW!24q^MUdg9*b<sg+T_4dhX_;b
z8hN0ZwDuS>(i(0S2KgY?boZaJ|N1W^XiZd?`vY>Jgh|pb06|Es8rCZO{#<b#ao@ko
zC|c}>KWM~~NC<Y_0cvjm0X(HPt$*D}l=ec`2Ul$*#dvP|0kE!~`CK;J-=_wAl6rs4
zyMj4tNZNr#{}>zZ0ie!Z@yi)=Z*A$x+<hn}jqO;*kJ1vC_oFEp8s)@a?R3unBLiA%
z#Vvo(8AyoSbJvS2(5nu(N;wl?EEfE2mdR4$XY@a1vn_OyRyc#vjYQ668~4hrfy|T6
z<<+jy`8b`aosEF(FjIlQ(S>q2qZU^RGRz&F3$itWGcjC?Jp3nph_ugsWtdR1)&amv
zuAi^3;a-|{|KQP|^J|YTyWB9_Y^%@5z06;*5-jMkaPqg{)dT0zR8dKzBi}~X11jv~
znYi9^=7o!p7a8}6(v}WNZtDMbdu;K*b^vCBLY+=7?wjUx=+g97x*rBw9>%7|3tS5?
z`s2gE3y{|!CI*jtCg8wum1wumTr`;Bl~rQ1<?b+$Nam(rA@2sM29``InY0_r`C8VQ
z<M>|ngaW4mUkPUX@Yo($qJe0J3!SbS4al3}#`Uf~UTc0^BLt4W&i^5@SrcKjhP*tc
z`6+%}g8QCpKMSzZIPJ1Q^|ANv#Qx!*IWH3s2|vTIC%^g@t6`wBl^-0Ry;J4u)6fLi
zc{Sa`CC0JU_scmhh`GzQcRd44OhGLkZRzTT;ia)yO#N+jV9Sy!B@#zj*yFdiHPHI!
zx83|Bl?D)y#1zI5eOG=NNb)Mj0l*w)`^<OZTq>O`)4w`<`w__wn5h5_p5ZFmMsdUR
z{6}Vaw0d>;_NOmgCAh2`rqbzYnS77jEtLWZ_6(s#6PE`P$VVF{flMd<z!o$(xCu!2
zWvw&oGaHy-4T}wajbvThHukgsQ0PUZshOpndDVZGna(UWqRXO1xm8sx!*t85Iasn}
zh2qR!RT;6;%LZnCdGs<8L*8x3y-oDm|NYv%^^vaKu(L;PNR8DFpa%wBV=~T)NgDC`
zpUV<$Y98vd)(;dQIvYFhd~il*dYMm+23qNu0ozEMA8wv2h{V7Dq)7gO?o~}nj@~ek
ze*qh~d4vfi{U}`-fNnR>%>=mi7G{>K8|51mgrF~+k+|m#`Kw{?hy9Qtqv1wAE`a@u
z)BD16(T7jHx4iM+wGtpl!8mQc^4tv9zEJ3TKC1nvJ8r@bJ->cz*98UD`T8_dg))|n
z16SakAjvl49OjzHlso|YE;-k^vet9vfoK-^Agmr}em`cv46KYgihI>@;mwhjJP+Jm
zAkR_Z$fcfA?slzl^{QjV0-!7FpKS-gi!v(N8GhAx>Ehbsa~pNKZh)dR>3M(F`Xn*7
z4LTD<TE-4D93tm&w<e^ga(4Sw26Bty*!2Fe1_T~rec5xD!zd$H-y?`t%%`(6jd|z=
zoAAGE8?G149kN@Co><S|yjCdcRtVeRvw~)rw^&-dFsX0l4Y`#PO$t(qX^It@zqf*B
zB_$cGz5hllbOB|fOp{xvzryGPW`QE6ogF8}i{3^{PG0MLPNy>Kr%a!IlNJ4(*Mb+_
zp@S^bqOhW6l@sebHNLl+>m;AcJ<Teo$t~CfWDprt&W4e4!!beoV6_$Ez6Kg<0c7Q{
zW#_|tby89+lupD~tI*Rlv8#RRk2l}={j;Bw!>7i$N!t7+iT}*&J`u}K@nO7JNPE}Z
z>)nyOglyam77bMhb+a!oL?Yvcf^zB?-m+>_JZ3B5@l%6WnHmGFj4UTpe;R-u)SSYc
zW$<5e%Lep918PpAgRpfTx>bIt4xcCyS#WIldi!K(==OnFPUqR{mHoYmTq{{Xfc2pk
z2y(@*4blyOOvKCLhdmqXZG<npD;*<YzcyoF>VW|ZC`63(sg|9%$*a*Ky7&W7n?a6w
zoC3nUPe7B5KhyY<fRsE$xba%CfUAwc#B)w`UPm8*XexyOIwkNsVg81J)>SN#8eeVM
zBHYU#MmS;-+T*{++#-^z@-Rd5yK7*62r10a-tqN30|dG}uv7u8X826q97_6o*C@bc
z0DSbv-9`%53SMvyYvo`3#t1x{C0A!F%J|LNH+(}^#c%$edVYplTSE@qKZRGW27{Rw
zP%%a61(b5XiwgYUP<9%W_a_g}%acuk93uH;a4p?zin)0}MHO_Ia70ERu<lF~;Xyv=
z6{hPcnRJ;s_*Vulz@Ep$8O-Va4bO9pycyJ6w}J9yWh*4x&jVSj)Jv{|HCOIujfi5s
zY3eWGf8yybY1E?!YsDy4sXj%th9&=OmraAHqrqZi9{JTwb>JmA12Y0`;TR0Un-^s>
z+pbepGia1E&Myk|XQ39qqTO=c{Cqzd<X8`|)!`*Uy-Vi-JLQKWU$u&Lwn*ROewT=V
zPBmrh`Z1_3`|k!%jlcCoxJO$8YpjO;O>09Z!ATI0u9KEWnjsK}D8rXYUo5S;nPeE5
z18mNJQo*7DCP$Jw3-E0@lI}}Vw~Pj)i3NfA$oZTi;Yf`=+}-k_!#N60s5eonDJ1<Y
zQhD)33g%7;fVqG2pEYdaiD0T~E!Fy0BmMk0`T~e2_#oJAqsse@CjdkK<pelJBQYm?
zPH!JF<ung|DKH&~22WtX8B@Ku5j>u|tJe0{!;buyLmOAoQW45<l+l*)FVPy6xKE>h
z{)X;g!*WiP65J~-*^PSsy~(xCx!)x;U+J0RQoIIB27Sm3sykP9YESCLXGA4PLASOX
zA^ofZ=>KG<-w<xJ(RNtg@k7ShX^w*a0cI_8yQM~Kj~9S_C~K#6YgOtH#JUse`ed|6
znRFV-D8Q(Pk8*u+w}xZ^r^-vEgz_WFX6(I^-@Tg*<-|cKFtYrk&!ySP8lxsH7_^_B
zCve`~!Et`HTRj#c38Ce&_KiNc#|t)ZvJ(wE0GL9=x1m8_2M4hLCnIf~VfOj!Wdudh
zzCMX=2F8=o54msGJ>w+Gds0wzOi4RRezIgBswxAlwHJh6&(~^wom#&fmO!#gV|DPQ
zvOVI*`iP;4fAtGnEy;1KyPgVWJ}CcvNB9}QX*`es`(c3R$r|1knJ$-99FmIVUe)M;
z4RqKljQ%J#apI>3M0K6zQAOo`8ssp5sCgMkkKv36ghQJWT(R-I)$Z$MYIy+T{Egtj
z)9p%Y)H^IqxH>*GQ8E2XbK=RPbeAreq5wjW)~?aMq=rNZKkKbD#oN>9F3}nWa!Kzi
zzR<`}SJ$qoPq}Yu158zlQKajQyex<xE91uHUr>&0A=1?6=VO&Xeh**@c`_Blcih(J
za1MtUC#);KEOBzvzGNQ|iTfKE`GFh0cO8w{zL;$noS16JRE=Z?r+tNuc?fcB`!~Gj
zjG2@tgAh=Mr`o)9T&JjD0|p1HUJHvZ>jyi@xv$?&+WTMqq69rRR#nza`VuFe8kwQ2
z9{!~mu(0@fk{%ZHsX`!W6qy?RYD*6f!XC*)4O(bteJg5G(|Pn1Xm`G(susL@6Cw(c
zNu!J^cp=o_Td0*?NtY?t#cy?>E*sr!pw|xd|N6nDZML}=?FAb1wDhO%*j;psVfMUo
znLXLmcEnw}B`R?+-~;;T`oj?CXG;^^Bdj7fSu|-3-(2NUxqT&byN7$t2Pz!(KIs}C
zrFXA?iAv!^6^TmWWQ|)e`rHC1bzab<qB$e)D{Jp3fk&$`T^zOtH+sAfv&ywic+Omf
zV5PgT>PpbV&6FSXI|R`r==aoRNu7tWFym$Lb#B|t9Sd0niP(F#)tb5CQrJQnD6}a}
ztQFzh6%^X9Ge;$9l=hVpKJfeSwn+;W{e^ejk@R86)u9;8oYw{&S^1wHE5!{TH!_d@
zb=LG{tZn>{o+zI)YwLJ3CBvnqgLkdA`JbM+7mn`hd>`wQ`lI1&vSvLpk{<g&vjnp3
z>YeQ2+T_6VX*iJh_NhJ>Al}%;X3m1j6T_8Ed|UmGa>`PG;!oJtncMO7s-!qn2v@Tm
z;|ibE<uKO$3^ZZpOt(*XNPGQsUkj<2R#NTUUT%q|&ycK6J8BUPfe&Mz8kBwreQxwu
zTq()apWF-7ywl5z_t`qIveC$WbVU2=T_HBiKeTH)ne_SY02Ha|DW=&2+T4Nuc7P(T
ze%ZM90Be+~H+a!nPd@+<ke%;vZ`iZD#x;ZR^Fx0U35jD0l)l;DF$;y9Lm#~Et<$L8
zAx1%)T7{2y5#DnrKibqw_Ti&^58Rr&ES!a!xKhy9$d?<<hN^<D3TGryr+tkkw9cvx
zypLtxAVyzKXV267?EY5v&lrfqoOmFj^9aenn-hwIj?9wUfRsHo>)$qd3SHr2wVxr7
zXOaOT(*~g2yTI!u(RZ=8drtYvLHDL{u;+^JexvPODs<h*;S$z>5FjlBFm!pl{OYmt
zv4f&xR!x)r6tPqkYJ@PY;No5F+8&3j%aBMWc@Z%_Ic5%nD>7)kaQ-)=3_u@nW=wi?
zKJb?mIpQ-x8d~=8kk0$AN%h8$wmLH7dKd2+e3ZAt6&+TRjjIq%J3CGu*XPHtUG5jO
zMuXfN_!u(2H+Qi!rp%z?91=1!aCD_^+uH{>lO|a<8x`FKHmFp1vPNeJY?c=!#+d_i
zNe~~K4c{32g-5Q6d&$V62p7F=JbkXIsuP$*Xe^k)?$ac6qp9>J@1bt~;??@u5nETu
zHKy;VxjAQC1D0-!$(i!K7fCEtlzN#UYOCwo)w;)sdq!jHg8HWzx|hV8LgaYBJfl4V
z?cy@&5E%4k6`3RD0Px}ey?=^RFu(GMu>MoA;_~eALc=C^;N~RW$M@ANW0=P#wGN1b
zIIYG~io?{($n-jORiG}8FD$OU?sJrwFO;;U9HV;3%E+jjls|6X6h`ZTvV=j6WJ!2I
z7bxMH0?da6cUnHvV-Ooi$}PQk@uF|;-`yONu^Zq$%<H|n;a+?sJfz@jZ<nMfE|pfm
z>BNmpNpPTn<o6E?;Sb4*k(L#0IkQ8bO>V|gxrv-9l-}cYD1!S7b53Bhc-1?qMgQtZ
z^AzSkqba+Eml)?MIm#I*m!Tb8H)8C@eYVvKm}XLX=zkZwipsj0@rBGHlans;_i3Vh
zWE!0~-{E?Y-4hj|Ru(^vq-A@I(s<Y4WstS`(u!JkXYfP*v<n@zM2rr~knjRdWKlUj
z&sf)sv-I=&bMv$7B`+>zQ-a%7e|&nFZ*WniGS?yf6>3bM?D8{EETv$a9{HN{`_2`)
zC{}}~6a3y+WS?bT1h1xv!nvG!J8d^}JA!p*;L~Izy%#5T6%0ja2W5re#YTjL;!-SC
z+xR0Z>-~~;7|Cnb&w+M!>)h6j9gWMn`lmFzhW|5uj6FT+w;?na154UWxo;EpCX}@F
z9>{#sesAq9X|p6VU;yv*bVw|Akrm~v;PdMk%GFD5nAWK0#9vw`qaQS7a@+gkpC@oR
zF4$|H&ES&QOoxa5i2LI^{7~`=J<ZOdr`qJ{MpUI=;Yrfy@lPae`_I88%<GBM+2Jg2
zB*%Gg?RP1XyuR3zlDz+P(ff+T?)v}Yg~7{p`fvK`km_~w&VuSt^K0+DuA4i(*ZqfQ
zHF@!^QUeSc{R#hAy)YDLvk_)eWYLmV>#CRA8bdt*?_Ip>yitA*!d)6!bv&n#b)tUk
zS@b<Et7^`IP~&<UvfVP#c4Pgku40?y2anA;@eC_gl35WwGit+w#7bKt5~H8j!7JdX
zSDD9<J(ZnW+<%XxR0!Ois0Uo;kVeAcPbDR`FN}r@!tlvThM~_+HgvYPNX8ig%P#4K
z8!3!B7iBE_Lf1D@FNK~}|FE%n*9kc2VEjv?d8E3!zsj2{_~BY(1U0}>IU#N4_i863
z8<Y=OExdTS@~(QfD=|hD{V}D@6(p5UWdPZajXU6&Nafoy8$MjAnYC$veKa%Yb&`#{
z7r#dTyD?a)%xcl{93&%1g#QBoQwxh}8U|_i-}>(XYvZOC*)L(uf#qJD%Iu~0USuG7
zcJp|GesrW?)5u(eNx%OQNvRh&Kiz-$xC#l9k<-;*V6})APiLFoBdJ&Zn=&eTf?KVd
zrrQVptyXprFimG5F$e+oA^fkh+@QxrO=Qj)$(LPUwm=u;Z=ZH4jRJ6^9((=eF83mN
z@88zpF>%dA+D9hN!Py1RID6{^kDvN37*OHzccDRyl78^&`;Cf}ql{0hem&DD(@G7Y
zHvVmog85KZviG=aa}Muy+Z@Gj>Z|MRn^{WrR5qKN<h9=P9shfAaT)}zCaqX4f-c7Q
zGF_=)Q-MLEZxUYTEn=a23sYd2s1Ze##^60dT;J4HByDTF;BqssH+m-Fc`b@*E2dAl
zhi~cXOH{0Mtvg$j{P&!cQifVF4Z!^nPQ$Ql-Okd>NqdpiIRkh5p@P>)#;F3~;4;5@
zz~lHfly-ETo1n{Eib^gY_|#_e)g}fF#`nT_Bv}$$lCh*$R-td|C7NLPe1Wu7_J48L
z|1Teo|2O~4oJl+ye%KOQ&q7W@aaopTcl;vi8bqQv9{0M}QjsuD8WU-naf8=|FP~j4
zrI5@lpRT`BJ2mV?_8#6mCD6`v{`J`l(13=*=p}C8p;FxIInp-WHQUhO`z1bfE%UC|
zg&9Hh`OTAi<qr9IzsTN;d7@%S37$h#uW*#YPXN>Xxw%o^@GCVh+-d1-?hx5~MjTnr
zA+?+=JvJ}2nT)pna_HXwv9|+r-7Y1s{@pU*%1#8G#fNVH|5Nw>doL<nx~ojKNC6Oy
zq}1wumnmxW_r+*{KIy0s&264>gQZ@^=;X&Zk33_~wV|9B;oH+LPua@f-nUk)MTC}B
z{-%Gcx!|jA|9!Y@M3YMLzrXP*fLs4NLazJgX6eT9fAoT#Yi{?`b-8!Bc8kYt#TY4?
zj0tX+NJ#Fb=2>JrX^(_{3DD!LYI1P<lZ^;orYZ??97>BgEATbUH46EUKSA>T4LpQa
zrQNdOpM8KVPz2w$t;Aq77TH<1Oj=6n=rZ``KKe=p1SH(`J}@45s*Ia_C=o*HIA1p+
zC2_nCB7@lkQdRNjut$VEY$-0fg*>_i;b=@s;x_uT4#YQ>Hw5e-sf#j3(d9*q-W1N3
zbcrhJe?ri^tw}>3_WWrw>?yW&O!MDb(vlXE4F>Q(+nB7>95Oq%-3**X4H1dH>Py0o
zaJb!)k>bH120(OC>z+fWB{}s<elh;6f7t=%uZSbMI+gia3-qq$H^VN(l)A-gYw7HW
zRPK>(P)x1JC4+7%HxG~kAB!Ef8)NWH_;*aHbjjSR9DOUN^#(p`Hu;C04%x_CCvop(
z((ery;F`}5L9@F@5JdlQ`uK=mPc0u^b$9;Z5U0QP^}zS(_b-ZASL9v?Bz4Z$PBpNb
zq+<fN&<}vr{jxmd8FO)RaISp*H*<|*1F4+i=|IE0sC(}fK=4)s`@(4_u4EZrp%N&<
zG2y9JIv_nm6}u>}sbefeQo(+~9OKmft$nrcpt&ekqSy#nWYWHi4mxOrNviWM9e9Q>
zu#${}74I2yM8gLIUdOkZ@OjP?E&;A{_~Lj1+{PFl`>WXi>~VKGa5Wv5Ele*?TJt3v
zhex+oajs5#kHfBr!GgKeOh;VGz+?M=mSsu;-`9fD(rZQOE+txtSXCRLR4qdj4?l!U
z18ho9J1e1g*;6u8nLWQsP%p``Y5!828s+LFSy7&mmKK$O`P6Vw(CayU9OW~sHi^SI
zu2SMhg%>%m>K*vYkq-C#s3<HS|8#tL88ClYWx;e%u~I7UTlVT%x%?8-t!uT4<DB|8
z%|A8?Tq1c!YMH*Au&cE*zTnhQ^p4YUvRF!wgoCH+=ENP?$s+Lt7W?W}I)Q}5B1(&`
zZ^MhoO5Bd@t-ISw7lHkk=Wa}f4l(UCBxI4vDvx@MjVs{EaC+X=a3cUJcCm@n>`==1
zq%R1E)o)D568*e31#|Gw53$VKJzNCT58RJTCdRVEakBc!`<9Vv_MC6Bz}pO{4c-@%
z6?5MyEGb(xXUCp3E0jAit|2Ikn7*9#qGs_$WrHx5RDJkGlqd4BBv8FE&brsU-aSrX
zMT`oow==GW_L<9jna9uE_;QvMG^2kpuS+giYwM?!(2;;w4tUP2#lchA72Glh!kD(3
zMcNsa{suPhOkxgyY4O~-2zV>j|Cf{Ju|Mn8>);Jyq-GL#_|+4^2Ua-f6&|k?Jcf}g
z9D<jnUkg%=n@XHbKc>(h^Q0eGv+$gNNkZ@ENMD)tJJb5Q10%3@sQA3Th^b0H7o;``
zM{a~CKlaA4(1M2o42Pde_4i=kcip`fpglZETaR}2_gSt!@(=Ix!JKdKMrESZ@oK2c
zMoW3-gne!8#9#4@RB*uJF>hIYt&wvr0_vNop52ygu;x+Ke0Sz9__o=fs<NuS`@^8$
z-*OAdAfF++4x~9e;uID{{=WcL0;&DH%wbhO002N8u_~XFWQpSiO{>4zVYgOC)D0(!
z;?UTnBuVVWxe6y!-dD!~002P!Q08)ihSvxK-Q66;Z=JX0a}@MbbMxs;j_$BZpKV$|
z<^uo#)SWC#6302M=Jpo9rv4YYW07AhRZb6GsEF#TQQp(Ay0<j|000^pMJ;8nPN&;C
z&~MPM#O`}6^68&*Lzkn8goYDjjmQSeyoSTBd;kCd_0`eb)YH+f(NN~ry~?k?z^48l
zi_xg&JuC6qYXblPKpk03rmnVDrFSI`lCQo7$8lQ+`whxDemRYRJ@^0s0B)SRDxLmS
zZk3hji}YIE)`5W~*S4#>E0M1^7&iCy=>+Z4Rr+i@gRI<Q(>?$Iz`Ie~F^=WF8up6`
zOEvbk4Fg64RoW|;`PFUtlCt%ldWyy3sY}E8VnG=taU8qS4~?LCR;EPo0{{TLQ)<X^
zRLjef%(9dXahNSz2m5t8U9C;9GOCeJg}ltMQv%35Crg##@tH_0DT<=RRg^RH&?v1e
zi_`$1W`OcQ0002Eg2G#k@TEacJtAM>M9Nx0;ALLWxA;8WZLP}s{5RNTuda=N#mK)x
zodc;<5hrG*<H=mESkP*;qNYsaDErlw0RR91a1}LD)zq&I;bpBXa3;OhYPI!s1oT=R
zWiO|!Td%ERUzt7jUmy9Btl{akue`7%RZ^*3EETVmxr$hpsK~EWw?hB`0Kl~<SSj^+
zo?WX}tJNBeT9?ggw%7!|nzG6+a_Y1zNTd1x12be_p2+Ut{Qv*}07*qoM6N<$f_{WL
A#{d8T

literal 0
HcmV?d00001

diff --git a/oxAuth/Server/src/main/webapp/img/tube_1.jpg b/oxAuth/Server/src/main/webapp/img/tube_1.jpg
new file mode 100644
index 0000000000000000000000000000000000000000..e5cb141da8db901aefaa8883f841c9c0506eac52
GIT binary patch
literal 8307
zcma)gbyQSs_x7O?=@O6_29S=SK|*3k>FyYYbY@_N97I8o5*Uf05d`T_T1rvrP^6TW
z77-96q~ycrd*0{y{qcLh_3d@eS$FK~+WWrmYoB%2x%hms2(Undz1#snS62ui2mZB-
z?*N@<0L&)@AOMIjhur|+Vv$JL)8F4$QCu8}5p!`vxx&R@D1>;hi?29DOhOz`QVsTX
zf%(AwL9TEQFQhVfr|mTu<mILewvsWBF!0rYdwS_$(Qq@Yp*ale15<DVtEzyMf)#@i
zz6iL#3n&<I2Z>P(RtEn?u6Wu0Gb|1U{pI5CqYPI26BT4_U<}egq2VAIF)2})1Ox(-
zl@)_X%gD+?L_m@f5J_=~%S%=iBCRMRt0*Z4`rE*l(a>)0il&-cf5*D)DTDuBR8UZm
zSdf$$3hf~dQBY9$!yzdtdg&pG2|@b11dAduJpW<PgkxZ6FJFHz6cY4@(Zv-N;I9n6
z%=G^*0pa@(?f<%0|HIM1;Q#H4K>XQ&zi2W3rtp9B{a=YO<{`dtaZ@-36@Z4pFWq_m
zfPED;&~O)j6xtkxy7Ql1H1<UKqcEN*Uyz2GEJ(o03+aXm!U+E5Z(yLPi^TZ5AYpJ_
zO=a*UgP50>n<5mVp{WT~la-Xwl7&E^a_VxD5(?5%>T+sQnvzgiiT_|VQLq369O?fb
ztlPg>x&Mm&BL#%-Wn@h_+A9$5riDf!Kz}V+(d)nGBK=?a{>Hlf_grNDD^~n68Sy^{
z`#%o)KSP)5`P2MIwwIlMgbznvsvUhP>x*rG`Y*8pZk?CqLvS$zL;(c<|3>()5&dI-
z!wCrpE@v<Ae<uEa8yB4b9XX%{Xb}<60fck}M05lfT|hGc{E0^NZ}pRrlTwgeAs_+>
zi3tFJl<4yDj}Z}*kdj>i2*?R(0e}o3AS5Ot{xfiC1cZN0k^^+y^bCv;wJTsro<?bZ
zCW}BhlL*t)3Fd1qe(J91G2S%3%kY;-VnPzKE2Lz9W9f(idJ<A@hzXe*gNq+nk~|{$
z=^Gv?#vipG7u8+OFifU(qxI7M=oDBgFSG2$G(dTo7$F@I9iR%#%S{-4D-9S%j@f%G
zD~$%6QiVxRf3r<B|A-N$6561bXG2I^fro8$A>QSb=f|-DCgxw_K^l+OH#iRu26I9&
z>dI@oWCi<USwFgi&dkoteXg5XXEZCfq-m7B6$}Xm#FC(QV};+?sByZbiCq7DyV!cE
z=}?*U+%Lt^eJ<qXG<>!!z+TU~>L<o%(nRA*5~ej7yXe%w^Me4OdF=m0cqqllR9Dqd
z*vx!(=8=7?Tx<8i+{6r9M!FZr%M+Wp6Tk5DYSGhC{R<%M)A@X}S=2(${C#Gp<DC5^
zj83U%>-7aM8<Dms9be%VE1G%PSXZvys~Nq<W(;XcVUi)^T*=t!7!0)h?6a?@t=Q_U
zSqK)D`|;DGbmvE#-eW6F%B0kXoH7oq8qGmAt>v%`9*oEd?+0dQ>h{RP52RmqsI9I%
z*1S4}0%hJKC7=~o&ve9_nT_qcoR%Gq*+%!nM|Tp3zu4Bf3+EhrK!y$Ny&PY$SZ_8~
z<BaEistCgMdn6YcH!NVzx+U-XtjeVYq6=D9p38kwf9fDMTxVb@a$CxA&(dn+sumOy
zp}`RNL;2n65+mlEvt9WW*Ke+7kB}p!AKn;;jTt!u|7*=mE<94^)zvSMq#nll$`o&-
zZW7usHl2O?Vz{%vA7+d}j#sty(1lovQD1+IE6kbX^`6ds02LluH;H;6uVDoi8FhZT
zu~+>4!A5Sa;rLO1VP)<1*4_Mu_*YiAqOosh^Hqji3>N@Jb-nbvS?bZ^F+`51xsy#u
zojzY{0R;*yqTkOD`boH}XCgW5!7U<prN}vmS5FgVv-K-eK2|XcJ)IoJSS@)7)vR$^
zgnxakjb$(GcmG^D;}Ysv!fzO@q37dV?`epB!s46q(an?n9R?ac-px&Q<<<0-do#b~
z`vt!2!(G01CrRy8Q8gWRp6@{QWUE;R?udbta(cvU%e)&?WOwgZ8ryn)^aE;dbJd%_
z5C}3^@`K8iKjSzj2`@I)KjxhKCD3|HS(D-RLVk?NZ5z^v-H`Ilj_6N8>e?tS^uBy`
zq@YtR9*Hbyyr#=>-+9<7sYN47WqFk;bwtF}>gv|gjAYB~;53rihrQ^bA-{>orFPx&
z*n1^nb9U{?$xZ>HXAAU3lDevbHNscX-Wj&@i?1fdb$tdaTj1#6i6>g_C%Qe%%+#*E
z;Dp<huzoMTE&|yE6Ul+Y<2*H*7xB>J+$B>+B~9#`u2ptJ^3NMbt$A;!KWpyI%JG?)
zoy3?1)38g5)ah}$eY`SP(>d1_H%5{<;+)I$uJ^_d`s8o1xs@VDauMx?DFi=_HI}$F
zaS7|VLoMFTu)G39rsV~IHRN2w+gT@C?+>XxuSs*7mw#g?tKZR|X(?cFgcriPF>fta
zim+e(Bzks>e0Q0V{7TyD)|vq=xAqqpS2e4{IiArla(_|PdLFx0OS3=x8hMy~>rm6T
zd`Npo630c`z~K`o*0pp25ScEs!wKtAwchD6HtQ{`^c7I!#@U9Do-G<019$%KIZ`4y
z0rq|Jn5im%@2jn7J}3{32Fpt7p!J*K<Bs5TY0fzma>+Xs=8YiWdsX4067YtS{ylf<
zP&PIgRAc>t)iD_tJld7%MD^nyv!C28{MuGZ{k=~L6dm3kDbs4#m5=J>%DTob0E4}I
zs!cJPh&$k2I1pzxNUg5NW+UTH*0=Fy$RfVihsg~b*;~F(Lyx7jv(>LX<*wy!9!GY+
zit%KktdTMb@ZBegGAR$K;YWhyM;;3lkT{YgNVyM&@Mwj0=PlWig+AM~7=(MMwAwA=
z*v3+%t%=(+*pD=xzw%;RD(^olE=|^_H0GTcTU*h(CqcpaCE*+@ZPvS{=^Ya@u11#3
z9xLyM;8<)rT8qy9J@rz*TFkU>!nCSNUYGKt4iQiM$K?PfvSd?Xt9jIq(XCG9R#oxb
zFmcqohSC&$Kb&g@oz2;@mX09!lx~zO9Lw`!q(}!Q<L@Fc?P5w6CD008q(~0(cD}Q5
z#Q#-U*@33d&+;|%0_DccV0mc93m4Qm^_t$?Oc}4&*iAD<|N1Oky(9A;JAQ8p{d|O>
z4nh|cC}PjSJQ-hUeI+g4g|IDAebcbM@Ie758S&~S!W`g=h+8PUC&RvBlu~eRy-an}
zq_wW@bwfmK^!9}7;{a$&b1uzkGWRj5JoJHSGcWj)!kD_=`!wtT-)APU5g!2wWo9O&
zu`zkU;Wi=1$p>1+TyJ6j_Q~$5sMwX(0iAU%EE_g>@u=QGKnY{;5GjV|<xTSp(p5@i
zhO=_rdERWz3+KpvKihWu3n@fXDV&tLlZ!f0>KU0(dHLDP<$^|Kk6T*<y`^?G{prv$
zxbW7<$a-KUy<iubiIIgwY2_{(a#kg(Z<F}m%2LHBCO!pvGC+Rxv#Lz`fKvG^6dO*k
z_f`C6qB;;J@BCplPvM4FRYQ)GLLA?U!sjQ?R-cb0fsds^Lxox9{HMCL6!Ex62olY*
za^=A0q5c+OPa)>}P9zRWb&iOgu7u@j@GUOLP+f@uG2Zxr=GY)8QLs0khVteqs{H6`
z>-D!Yo`_gyo3%T`t6D%3AJ5G;h;u9%;ab{riYF`!WNdZuswA`O=+s<qrS#R`^;boS
z(p*})V8bd-xDZ%Wzc9RT?XhueMPvHjH-#2<Pb*W#GI<ja&K>>YRzYi}E>*UrUb+fE
z-#bpmMrmu2*o(Ty-n7qluUe$}dXA~9wO!ZPyhDRe)>#>SjcD~`wHegJ5|&k_Sm-Zw
z0SN3I<~|B&^161@@zmq_>`Nz9FW6K}Ki9)Tlef5H<_WfKOfIX+Nr0g`-6MeK-~-=g
zcmpF;HG)9MzRxAMHbuiaevd*v#_^$U(Wk^PGTMhF9bR*y_cpzEDy#L5EI!q^zMT2Q
zOc&we;X@u2Y24`k?D6c3UQKp5{%p3h%QTYq&N9=AOoqm6t*COFaN|jkO_k@VR50&y
zU1$%&4XU|R#~HXQe#>(fzpf8$PShEr6HDgl&X;qje<1P*KdNH;TT(b$i(-_S)A<NW
zUXZMGDY&%V>fi&@tt;EFMz@*kiyW)i(wkKZQoc>r#CaW}xrC@-hFR+GM8w%50*K1e
z^kSmjrTsargmc#h4i`#elzi^kA^m>|#ATJY);ou5s8y!uYVH}{@vHszs^T%t)aU8a
zQ?+a|6Wijad`q(-Q#GHr(^)kLtAt89>O(v{%BF@(y&>9urS_V;`i${x3Ov3RAIHZf
z>r%*7^O-#1Z<EZQ4hlXmr5vAdZ0s)ubz_rirH8gQY;RDsj~dPHMQ1Q9G~|4><rOK4
zqxiw~esqcx(klUO70P0ng1@9qxm!|AQxJ?jgIHpl-;z9u+$AYS*d_b%dmK!8q_CP6
z7oJH=I`o$eolRt_t@iShh6akzWL;;c<bIv`_yXvuQoU(ZsM??mW0!)xLqmTb+#g~I
zQXpZO{Au~J(fu*ooAdz)UeTEoj*m%q&fcNUkGZci+||2v-n4wK%=#pWN_nMgc~;o^
zU`uRI!0G}})yF%H!jjccDY;=@8$E4(x@5RT7f``EqN&pSozR3B-Ym(~eJ-d`H#SAA
z-XcbO*NxAKrO<_rUd}thu<aqenpBzTx2o@SB=&n;88M}F%<n$iRkq|5E_mMAv}~C~
zQW-`0_9!2(-!pl~vNRN&AD{stVy0U3VDvfzH#X%>z8=IHP0(-Y82>u-^z?y0r(fDY
zip-bVJbl$V={l#S>C|BCR&NuENo~IQlzSR-)AMbfwoojr{**-FxxMd~DW9J3$JEB2
zo<=IcO`;E*1Nq-2WzM~vDp5A-z&@<#7ukDr6DspA`b=7?pCZ}A^Ltg(u2hXTE8JQ4
zjv+GRSd{xTOzht3ou|;gZ(gzyuWa#B)eIYL!?Jzc^gA+bEaj1<xsH>$AgyOYT~Ywl
zHB)1VXZDfKD3?qYUjNt62aZ7b1yC~ogdHmZmi~0Gnb+^zhBIkxt&KL&OLn;J6VNF0
zgYddtd_u2whcgdrM1mk|nq+o;d%&_k^;nPieo}Du4XOS!8ux}N_kFFZF})9YJF>bm
zqGs3ZTh($rr&lKJ!s4(NkDW)<l0OTXR&hSndz$zLSwDSzo9*Vy*@<?G5A1^`>Qz+Q
z52<L_bvs(NnzGtM-DPW@o@;1tTRyBDlx}uG4<gD2eq%m(_R;g#w`f?zOVaj0z2Df!
z)i{|avHK3U84CEh)Wp1hrLL~>7?&6R0a4`vW^r)iY)OBivu%%WtZ5`I*|3R0vbQHW
zKT9nkgyC<HoEG{SbQD&xCi*PtL-^zPKXv`0&dj`DeK=UFNKz9~{q2o7XEAe#?Xq!u
za%Nlq>Vr{P4|mKPZoS+Fma$S11*-%86~2m$KI2cmjv$+t#lDRag_?eoSqjxN-J)WI
zDz8x$4vorc`}R~NBs%MYtb?RKND^!fa;)y<S4}W5vZ5XoNxQZf$S)DiJF%X)r<N|v
zBOI9RYT=6A*=sHoZMltwT6N0TB&uz6K}qbp&tspVwvd)#RXMM|E~lasSrzT@l8QuA
z1{0AbsUOAZ5l$~&L%R&zD+-@6W`sNUw@an#RZLl~>uLa{Ipu?KSN+&q@6K2Gk$mdL
zg~&J@`MloQ-kNK8yMu7%5iafFGedzqEh78YSf8m$Cyff;8PFCn;=Ta>E!qp<vTA9m
za2J5~wbO|UK*Hs9awE6XD&vY0E^Q>kIx~AHMTlmR)x&S`RDMn17x|+|3e|0EEay|C
zZF?-R1aFy0HQM%{w30rf`mTF5a&Q_tU^MvdW9IVC$zAJTdEwiq>BWT@$&EzxVP5-J
zdqkg9(^R2tI*K4#!%}DxUz1MJ;$>Ph?&5;knYCVLc@ORI{1`DE607ws$fCYkr)Y?*
z>24U4ba&C2Sl~MHj>@FX{Dwr?WFy>bdtLZ2B_Gn|x5gt8&1*p(zA~Kk)h4dzjMq46
ze0!QXd`E9meqsRYE=A_q{JeXE<(xTYKm;uD9tZtY$98sR{#H@cHz_YKlY5o7BWyWE
z${+KrO&fXSN9u~CTS+o*M;osZHW1T#W6f~U>>S-&!&S{kVSOKE98l0%lh08v5z->V
zL5u|1GNCr~&~)oJ@Psm|wAHfm3Lj^9hBf4g=3Z(>J8q=5%3ad%I$u5Fy;O7vA|pq^
z8j_eETl9IiTqodJvCLOHHS@^W)CaCMUi2ZUPzd3bfgGmi%NFw<0qW@V0fu2c%Y<jX
z1G@Haqa&k1VR<t-Nn2`FNUC=g-m=-2@Wvct*?#AMYFTMr>-m}6@s9_+7YnadROp!#
zK+A3&irxL5Z*qL}tEl;ej8-0tU3#qWThzQZL2ROthxv^xM689sP@_c}@7j8z0GJC(
z80rX@a3&P36W+K*rHkcg&wNSYi~4vR@K)vbuhx%Z&vTmc^729Y?hgZ8iEjAY$EWLp
zRNReK$NMN+oa!wZ(XG3eZ|}se<^8J+6=!g7VL|7^W)dRiH|=hEW)!qaoo{m7Mm6d-
z@(9zu5Mm<pC1P=Y8!C$BUQYA2xQrTkGn81RNBQRUg}`Cu$$FnW%KA24kyN=yH&c2F
z%Gf=L5(+bq;;?J_iEQ?dCP+L|u8ljkncovq@c#x0c&~aO;P<<x9k)O181lO|YEXBz
zb*rWb0~wais2IYg^ywb|Xskcyv^pTZ0HhN)d%%77ww+dSJ0-ln7r>Ct{bft8ywb^g
zBL@jWpD%#@<og{?KS`<WNMVKE?P+;c=F6gV6PaxGDyd~(1I8`%Ec5f5un)s(y^Usj
zT59TEeqIl4^4_+Y#V`|drynGg-7r>VYR>l^I@p`c7u@)^nY8u&^}DtFxmPRSt~UqP
z-`|*)PGA1<MZ#w$`qsCEr7XlU1!aq_2QPn}kbYuc=m*B&;cofa>NeS=N1kqy(rgKo
zutCzK$+HxFo!b1Ec=Mt=x%0Gm?lgxWG6AhjOQi?Tkgy|bJ`)Tl1;hiJUi=I(2X-(s
zPoE#usE>Zm!<57VQ`-}&h`3dR3nyO04E-(-X=at@-#^a|^2?cSIfz2LguwisL}YKs
zgm&BE6j!2tDn}CGYiEV~#^=;E#+_sp(epn>-ouMvX{b5b&RU{tv`j-BUYqYsLd$0?
zXA;}S97pYtydguI7&_wut2wHCx#-(1KSLETzCBXD3xy#qWfBW5G2V?&`ia|qx(18N
z54H`+587b~;|;*qYzXu&fck;j@3L1P^xuF9xOlN?vfgkqkzD(BGl{rKZF70E8+kOd
z6nZBJEhyWOI9cpbOJtHFy|>aa5G>Qb^p<T`-&g$!sqqkCZ{RMTMDyKv*hl<;<c?6k
zjFOJ*ZM~N&2BuXhodpeNl3>@6_kKSF0nNKN_sz+#0#fcj){{I(w{9Y2izsc)v$MvP
zy7%@Xj5~j*>;MX>eSi^nWYcTLF@4<Q;mQnhfz43<gtceR4lL#6QX6s-&EAV{orTbN
z6$`3Wp%Q@zU{x^GU!-X0R0bq3Q^M8uYLufNbz^#L2ZXcKw&4VOx)uH)#?f_V6KYe0
z3x+#Ste2npeJuE%oCJP0(jp;W@Djkg-EOeaS*_?|;9aeIV6vC{0HoX&Oym2Nvg(C|
zi$>1oyXz+ozi~6wTD>NTMKA3dzTAbvmP(V!%F5nWeb^6i8fQ2gl`Gh#(>Ow303!Fp
zB#ir|LX$qWb-A<7KGb3xEsFCQ>aIAK?4fv=<$=G}8|pK@^TDyh6=tz1I+NQu!4R3n
zH2C$g+3m`j*cWej_eczHjpqX@b$7`=Bt7^p2a{9926e@i)Hcp22K0r_47Ehv`{)+U
zr^LBre8oa#K)h++F_dBSxLP|j&*7I{XCg={`$i0xFh|GvEfn70P5kU(?VzM3HByzj
z>NU%+ui2yDsf%tLvT~zXuQNNVlhl>&y(ZCWZ^nHu1U-4hw7b0I=Q7i_#NUvYzjumw
z@nm$zv6)z&^8QuIsDy>MR-=v<OgH|@)1xdci=Gbe<A?PLCoAu}5w1-SPL?;JhVxcL
z1KP6XuXJ-<YD}|QOctenJ&<)xPMDA)SYaf(il1fGVAnD5!{kf94jMt1ZX7Jfoz~93
z-$ptNG8eTIYh3;+@AdG?`Qc)ho0yrAf<=e4(7*xWW&Zm0J}c^;Wdq-!td92LAjZIo
zvcOugJfJGL{xKye6;3uJ5YZNLx8(M{k4m?a2~WL_5QBSXpVx<X8b$VxQ++)L>O8IP
zjY@DXb1Ga}Q$l}=eQMSn903q(0)VFGtzyAjw_z-A0n@YsLa+<ncYuqto%5wDU_Ii;
zPqi8nc~8|ewZ6Z>V6r*L+Z`VaE8V{K0B3)74t_n2vOx4O79LL2GENWXBH9-Kle}NR
z&c+xG_A=baL2;oPAm#R;uo-NNa}pjR9Gv{Vy>iKb;nX_Oa#x`^e44r$u1w9R%_C6X
zTN829{!wv~aC}+DkdTCbOK(eP#HZa;!Gjg(JEc;gpZmY7Zg{obIF6gOYg+j{o&Me?
zXDc_=ktjQL$g=vQ-%JhiJHq0paYe#>r6Yfx?r?M%{8|>C7yHnHfi^}i4`iX)*=yk<
zS#jU31F`yEQb0lRN$~uSg%{q~kP+#qz!$6<27))V`@EGcK=ig%SW2<mmtQORb2Zgr
z9xM%Au4<6@UhmNugQMP}=bGJi#uG=M*h=U3$iVDn3n#iaBoiS+<<G!Lb-XsRKWWYU
zqCNLx6?vk2<ng!ob8jAet4ZXw07Zk6iZYMMc{aK#TWgw+JmoAGKVvP6?w3pr2k^>4
zG=#O9A;NNLA2JfzBq{3fu8C>6C7B$VnhT*@!9eh@UqB%6JE@c4Q@(aI7zC`oBUQQp
zkS|Rb$Q!Bg=@n1I_+`pJoTYb0MAr7b381J*IL&z1|M@F!C=YAHq2T8jLxbpe6%cks
zm3+Tt6h}mvYnjKGy?Ws1Sg_dmz8K9xN`bB<hG}bmHZ!piSu=3ug*>-7MRHB*VOSW5
z1g8v#lX!)Si6Y3s&R>JiN=e9okmsdk=hhjATk|8cvJ75<yuB#jE1}vd%fSsYt6w~$
z!^6=@pe_vO&HH#Hy6Gyqn)B^s9>s*8gJ$f!#sFuX89E$8h%igwk0~h#zZ%XEHX0MA
zeZ_K^zqP$XC3S3n@w(69hJT{BgSM5>q2;i(_btm^dgWjsk7nzHj6Go4vtWXMWlab{
z_xdY!R3GP*5V%2_{z^#vTog+n_0|l*t4&{!0CG*SgpPJ|P$%LMXqexL#uE4x)D&5?
zFc?%^HZDiR#=4N;M?(_p?=)ASr0c5tHpi#MW_#}jzCphgA29nij!`bTNRlP=<aSo+
zDslpJ0i<>GuJMfU*0a@?cd1owW|y>~k&Ozrx=I8`RwEVi1m8H@wG@Z=oGaCbOKTVr
zZ+~<bzH{mqIEdRgrUjjvb4(xTad1*gd^=wVJo8|$QNIh7jgjkA>?VmLN~ty)xW(nj
zaY8-$dg5@c<)y3E@BC*|Z+LO1+$FCXn>6_=L#p1DX>B|LojYT;$reO+`@e>+s4xu#
z57cW@&hcx#o`;Dv!h~LELcb1sGI<^FP?|BRIe-0j<5*fVl(&x4SO|Y&*B&`@#sAt<
zP*S2%QEwi^?E<*gO6GDfXDBm!@?DV&UDRw^C0bKsX&t<xpX@_iOuoF@!u@u%Y$F|y
z%ZW&cOZM%?PgZ-}i5oI60oggwCI*_~oGpl}#!psS;qt-ZLgUdi`MT|Qz4oj&iI~F5
zybc3{L`ka88)tdal0^re9$YDiH_9WcWWl*F997b6ud2So4$<wwev90fx&R_Mwz6=o
zi0{S5NAtDH`SpfA^Px$L8>ddF>zgO@sF>8PpiO!6fX)&1-{{|LChOzy0p4LJ3KL<+
zOj%DVIf5#!hli&2!hAa6nKd~V0Qc#yXI>Y83#V9E=e5o!XB77qfSu)$B)-AJsMWKU
z-|fmr#CBgd{HU<H(b;4a(aU4Q16h@0!^>kpr~Ax{Ks;`1?|W`3>e~gdw$DXFZS4{Q
zxd50|vo3%)IOUxC^Hr*CX%_(1CgjQO``x&;`#+o?<&1niJYK63I}PLF4VUb`a+UZ1
zX5QGU)_lK9=?(`tM&4t){k88SdCyE-*B1_F(_R6gqVn<+;G~D+x|7;WYsU%nWx${^
zztQkkKkv2r7mj7=lXYt<(QaJr5O+lqqKzj`CHHnTo^J1v_0sU%_G;Ni2xdr(n2fw#
zH}TWS%6ukYmNE_@^5MmbOcimuJN6BvF>h_N6UOu9f61eJZ<{czks|}W!dNYA$XKk*
zQlEEK{g)3HRrXq3q0gN_6Cb~FZ}9x`E_i*H_PR$Xj4VI(!ycZ;I(|h=>eJBU`xjIH
E2W1-mGXMYp

literal 0
HcmV?d00001

diff --git a/oxAuth/Server/src/main/webapp/img/ver_code.png b/oxAuth/Server/src/main/webapp/img/ver_code.png
new file mode 100644
index 0000000000000000000000000000000000000000..ea869e497b7165d635114b024b37f3314d28c99a
GIT binary patch
literal 15871
zcmV<bJpjUqP)<h;3K|Lk000e1NJLTq004Uc005N;1^@s6c!`CL00009a7bBm000XU
z000XU0RWnu7ytkYPiaF#P*7-ZbZ>KLZ*U+<Lqi~Na&Km7Y-Iodc-oy)XH-+^7Crag
z^g>IBfRsybQWXdwQbLP>6p<z>Aqfylh#{fb6;Z(vMMVS~$e@S=j*ftg6;Uh<iVD~V
z<RPMtgQJLw%KPDaqifc@_vX$1wbwr9tn;0-&j-K=43<bUQ8j=JsX`tR;Dg7+#^K~H
zK!FM*Z~zbpvt%K2{UZSY_<lS*D<Z%Lz5oGu(+dayz)hRLFdT>f59&ghTmgWD0l;*T
zI7<kC6aYYajzXpYKt=(8otP$50H6c_V9R4-;{Z@C0AMG7=F<Rxo%or10RUT+Ar%3j
zkpLhQWr#!oXgdI`&sK^>09Y^p6lP1rIRMx#05C~cW=H_Aw*bJ-5DT&Z2n+x)QHX^p
z00esgV8|mQcmRZ%02D^@S3L16t`O%c004NIvOKvYIYoh62rY33S640`D9%Y2D-<?i
z0%4j!F2Z@488U%158(66005wo6%pWr^Zj_v4zAA5HjcIqUoGmt2LB>rV&neh&#Q1i
z007~1e$oCcFS8neI|hJl{-P!B1ZZ9hpmq0)X0i`JwE&>$+E?>%_<lS*MWK+n+1cgf
z<k(8YLR(?VSAG6x!e78w{cQPuJpA|d;J)G{fihizM+Erb!p!tcr5w+a34~(Y=8s4G
zw+sLL9n&JjNn*KJDiq^U5^;`1nvC-@r6P$!k}1U{(*I=Q-z@tBKHoI}uxdU5dyy@u
zU1J0GOD7Ombim^G008p4Z^6_k2m^p<gW=D2|L;HjN1!DDfM!XOaR2~bL?kX$%CkSm
z2mk;?pn)o|K^yeJ7%adB9Ki+L!3+FgHiSYX#KJ-lLJDMn9CBbOtb#%)hRv`YDqt_v
zKpix|QD}yfa1JiQRk#j4a1Z)n2%f<xynzV>LC6RbVIkUx0b+_+BaR3cnT7Zv!AJxW
zizFb)h!jyGOOZ85F;a?DAXP{m@;!0_Ifq<Ex{*7`05XF7hP+2Hl!3BQJ=6@fL%FCo
z8iYoo3(#bAF`ADSpqtQgv>H8(HlgRxt7s3}k3K`kFu>>-2Q$QMFfPW!La{h336o>X
zu_CMttHv6zR;&ZNiS=X8v3CR#fknUxHUxJ<AYmRsNLWl*PS{AOARHt#5!wki2?K;t
z!Y3k=s7tgax)J%r7-BLphge7~Bi0g+6E6^Zh(p9TBoc{3GAFr^0!gu?RMHaCM$&Fl
zBk3%un>0uoBa_M6WNWeqIg~6QE69c9o#eyhGvpiOA@W-aonk<7r1(?fC{oI5N*U!4
z<uv66WtcKSRim0x-Ke2d5jBrmLam{;Qm;{ms1r1GnmNsb7D-E`t)i9F8fX`2_i3-_
zbh;7Ul^#x)&{xvS=|||7=mYe33=M`AgU5(xC>fg=2N-7=cNnjjOr{yriy6mMFgG#l
znCF=fnQv8CDz++o6_Lscl}eQ+l^ZHARH>?_s@|##Rr6KLRFA1%Q+=*RRWnoLsR`7U
zt5vF<Q0r40Q)j6=sE4X&sBct1q<&fbi3VB2Ov6t@q*0);U*o*SAPZv|vv@2aYYnT0
zb%8a+Cb7-ge0D0knEf5Qi#@8Tp*ce{N;6lpQuCB%KL_KOarm5cP6_8Ir<e17iry6O
zDdH&`rZh~sF=bq9s+O0QSgS~@QL9Jmy*94xr=6y~MY~!1fet~(N+(<=M`w@D1)b+p
z*;C!83a1uLJv#NSE~;y#8=<>IcfW3@?wFpwUVxrVZ>QdQz32KIeJ}k~{cZZE^+ya?
z2D1z#2HOnI7(B%_ac?{wFUQ;QQA1tBKtrWrm0_3Rgps+?Jfqb{jYbcQX~taRB;#$y
zZN{S}1|}gUOHJxc?wV3fxuz+mJ4`!F$IZ;mqRrNsHJd##*D~ju=bP7?-?v~|cv>vB
zsJ6IeNwVZxrdjT`yl#bBIa#GxRa#xMMy;K#CDyyGyQdMSxlWT#tDe?p!?5wT$+oGt
z8L;Kp2HUQ-ZMJ=3XJQv;x5ci*?vuTfeY$;({XGW_huIFR9a<fJbF^|4I#xQ~n$Dc=
zKYhjYmgz5NSkDm8*fZm{6U!;YX`NG>(?@3)XSs8O^N5RyOM=TTmp(3=8^+zpz2r)C
z^>JO{deZfso3oq3?Wo(Y?l$ge?uXo;%ru`Vo>?<<(8I_>;8Eq#KMS9gFl*neeosSB
zfoHYnBQIkwkyowPu(zdms`p{<7e4kra-ZWq<2*OsGTvEV%s0Td$hXT+!*8Bnh2KMe
zBmZRodjHV?r+_5^X9J0WL4jKW`}lf%A-|44I@@LTvf1rHjG(ze6+w@Jt%Bvjts!X0
z?2xS?_ve_-k<Mujg;0Lz*3buG=3$G&ehepthlN*$KaOySSQ^nWmo<0M+(UEUMEXRQ
zMBbZcF;6+KElM>iKB_KiJlZ$9G`c^=E@oNG)mWWaNo-3TIW8)$Hg0Ub-~8?KhvJ>$
z3*&nim@mj(aCxE5!t{lw7O5^0EIO7zOo&c6l<+|iDySBWCGrz@C5{St!X3hAA}`T4
z(TLbXTq+(;@<=L8dXnssyft|w#WSTW<++3>sgS%(4NTpeI-VAqb|7ssJvzNHgOZVu
zaYCvgO_R1~>SyL=cFU|~g|hy|Zi}}s9+d~lYqOB71z9Z$wnC=pR9Yz4DhIM>Wmjgu
z&56o6maCpC&F##y%G;1PobR9i?GnNg;gYtchD%p19a!eQtZF&3JaKv33gZ<8D~47E
ztUS1iwkmDaPpj=$m#%)jCVEY4fnLGNg2A-`YwHVD3gv};>)hAvT~AmqS>Lr``i7kw
zJ{5_It`yrBmlc25DBO7E8;5VoznR>Ww5hAaxn$2~(q`%A-YuS64wkBy=9dm`4cXeX
z4c}I@?e+FW+b@^RDBHV(wnMq2zdX3SWv9u`%{xC-q*U}&`cyXV(%rRT*Z6MH?i+i&
z_B8C(+grT%{XWUQ+f@NoP1R=AW&26{v-dx)iK^-Nmiuj8txj!m?Z*Ss1N{dh4z}01
z)YTo*JycSU)+_5r4#yw9{+;i4Ee$peRgIj+;v;ZGdF1K$3E%e~4LaI(jC-u%2h$&R
z9cLXcYC@Xwnns&bn)_Q~Te?roKGD|d-g^8;+aC{{G(1^(O7m37Y1-+6)01cN&y1aw
zoqc{T`P^XJqPBbIW6s}d4{z_f5Om?vMgNQEJG?v2T=KYd^0M3I6IZxbny)%vZR&LD
zJpPl@Psh8QyPB@KTx+@RdcC!KX7}kEo;S|j^u2lU7XQ}Oo;f|;z4Ll+_r>@1-xl3|
zawq-H%e&ckC+@AhPrP6BK<z=<L*0kfKU@CX*zeqbYQT4(^U>T#_XdT7&;F71j}Joy
zkC~6lh7E@6o;W@^IpRNZ{ptLtL(gQ-CY~4mqW;US7Zxvm_|@yz&e53Bp_lTPlfP|z
zrTyx_>lv@x#=^!PzR7qqF<$gm`|ZJZ+;<)Cqu&ot<a{81DF0~rvGr5Xr~8u`lav1h
z1DNytV>2z=0000WV@Og>004R=004l4008;_004mL004C`008P>0026e000+nl3&F}
z001*8Nkl<Zc-ri}d6;HZb?^UKd+&43JJi_K^T;6cC<qFIf*3U<*WAQe{9QF6C`Qb6
zc%lhO6n@d<iV0DZXkro)6R(Le#wa+0q6ox*3J5K8)ALyKJDs!lUiXjlR?!1PK|^&l
z)P6WLO~3utIp@3Au-EWiqN>cVXU8)0uV5bR`85yr{F(=Qe$9hDzvk9*`}+kW8*Y8v
z&!{Rc$>>{hIGD)a|J4^b>X-%Ah^-!Z#G&!0x2;8^MUcn+E)gNdh=^dU)!@AVxFk_u
z6h=f;#Go1<_q(EcYW0+3j(HAu-g%F-Iz^)~D*WmNuS9)^(XIEv96qfKt~zyg!Jg?-
z6imvljSmjq_S3uHa`jiYy}aEHt29cq4#CKb-m8dAZy-QndWWd0im?WbGXqEjG$=8m
z#;VCOxAwUwAMv&G$HzXG_4Rb-CHqOPBuUt|dCSt@di#g|?`><>pDU(9V$*UH5KyDt
z|DM6diHb3X7~>;u0x>c(un{E6^lJ#QbL{PF?|#*eT|3YElRv%moz~iB@O~cbsnx$=
z$&5tExP(9d@ZZ1p*4sCo+t)vc5Kt|pt8^XAZbJGvV4HGNh!y&JdkHZzIWaNyWz)bv
zzP5>o)vlHhQpt#Eov(fK*0-L0);F$w^&4OIIc<05!JhW;Ol1aQZJ8V%JLHEy`0<;o
z)ha^7s1j8XH6Vs3Vi}E??#~tm1_mjLf@Y(Mh@d(J-b}nx1FDE9s<HgNi5Tnn?sfn5
zzSq3&6<-opZ4q@I>{2|68GJ_RbXxtLJT4LwQ4B#1st{wq7*_%$Is+vUiJ^4RViDQ6
zX#+7vilV?6gQ|9aef)!lAfSe*9%CF45Dkb3t(HF=-!X`p(@xs#f^BA?=1c&S`zQv%
zA}BU7rPdWG{VbIkNu-c=)qQCLR26Ft&Lv$?r0Wj)8E7Rb{R9DG>E)NVV2C0)CXb~T
zHxKso>z~<Y%Fo3ZF$VtdgYV<0qYuIR;t71u%s)1ByP&8-mZe;G?M;0A&;JIIY@hp{
z2Yc%LGLz4U2$cV5ghLNq!BI!AqS@>qa$qD!1WJcqsMqWKeC_=NAF)m-Rglc=`R2ji
z^D`on15KcYI*Ov8(P~iSraXFSoRJjC3~zZRYFs3iuRy`NNqnKZzmicz;yl>9t>D9q
z!1g|D7U2$*=XZ@H28+gs7(v9&@F&jX+$+e8BEc3Vf(pi1Aasv_3UGb!p);3lwoPXl
z>_7bA-_PvEtl*qA)5<_%`C_H$hQZ7X4ee8Dw51EM?cPg30AmczX2)KB`9I)8e1yY=
z5<)oOVE>;hKQg;ukB&~x=yPdmIhdBJGB(zr*h_OoRgA#U(BO>X@6RYTZtctxXT}_S
z2{vmDaW55KbaH;}RWIe-b55hvDV|+mKbw~Kf#u5<a{BX*qbNKFTm9aAKKqF{qapC3
zvrnP7uTBW@pu7KhuxBjQo+XQic>d|f(`>d6%4e7ddxoKePN(1{FFB1gJ$NnOJlHc>
zole2(HOn~pq$BV?%!B<*Ud9++c*cqJ_U>-0g@Y}2KJSgs;JjU{RXFvOV`+ChS|&z~
zAt>F*jbhNL?A<)r2Qk=Pz$I^xrm@VI6V++KRM<Cny%Z)x<~Z2%YW#6lqtW85vrlHA
z7D$F4z~z&;n3qy*1i$S8{NyNN=6-~59_+_Z-{a#A4nKSqr=4*Eq41~%g3nRy+G%4U
zl>dL;W*@{rr)k13|Bo{{^ZBPx8K|M7lVxU3EWSB@j5_zrCbX}>cR(z95IAe@U<9H(
z`#v2nRuBR{8q!Kte&sbU!H+AA*0`Wi{p8r$y78Xhw7&gIxnY55;kCB-KTy`$*n#Nh
zG~fpv*z&X%6DYwr5&~&xw8DfZc9h<c^_mZFeq$Kl^7mEAvuF*X76X6A<kmOnwx4|>
z%Z~kLru!CVYaKefHoGXEIYsoP=76XMui4?4fE&4+eB0f>DWe<zp=v`GjUkVMGfGZ^
z7;~B(zW+1%@Rl`Ytz(?MYqll3R!wPl{ESnbbNiSjI0BvwP3z~zkqx)7=}zN{;p1ag
zONtmE8WM3>-^RNtt>{RNR*I3$?@v?v4&vN(*7h6hv(7k@Yrc6KS(ZE_04I3TN*%_x
zU>>~j)Y$2uwu%c8Z!BsR(E=|iP74y>LX5@w_Tf6V?MX@8llL%Y8SGy?|D_yt-06J!
zZ~lo+yC6;6L0h9IfEq_6fbU>@BshyvLm(g;yH)9eQBO{d#70C56oc4gPFJt&H`uAQ
z9DDLnyzR{|;tOB6iEX1zj0j0$58B##1;iLs%F0(k(Y-csVH2F6K#~f+QxNL|pAL(U
zK!cyN;O#fqs!Gx7aO|2vK6v4a`N4goeE+7Ovwrg~s+E*y>XN89m!j<nLN@euw_x=*
zBS{%(d8Qw|3LlUVdGQ%XankXJ@X5dZCR?_R;M@!zUW96;TGo8UNUPN%#z>ZBq-lz(
z(r&j=RjSqM^bxGpYVA?wS+CboRT_;3)oK;z%Ez1f&N5h%?)IHIK0LWPvP3;?pJCF$
zZzRi)eS@aGO~Txcq&?;5>~^!wz_JDW;<+dCna^D}Be1h1;R|2*0@q&q9R>#nx#W^d
zShHpgH{N(7S6y`#&N(i=_+o~JhPeFl%NZRVrCP1>-uJ$jp`jr{2=w&yaK#l@V2t72
z?|wI*|NQ6q_P4){bB@zbKb;FMxPV%%#?3e1%vD!iMUo`^#;^Y-$DME#Mdz{YtO}(n
zM^Frgh!@4!_@QL=Nq?zH&sZ5y;n@W?0F4f(9>0ofmJG6K+ZdJX(SJ;>R^#9P?O*xa
z|NT54`{+kmykrU0YL#1Wy_L%^znu5K|NWeF(n(}l#;v#B${~jw!Yg0-O0Kx#3a-5J
zN<Q|nk711Anrp7%V;}n%=bwK*)>>Mv78hM~5&ixByzz~1<j5nBq_3}!4}bW>yyrdd
z;gnNO0b{$pX7+JBUO|l@3SJFFKW1tJpJmB&KJ4p@ebh4Psk0nCb8`ahu9|)I3l?(K
zcbc?|N0uC846Rn1FMs*VoPYlLY}~YoyeK&J)KmG=m%hX?#~g!*aQp4IbJ}UA@q!n;
zfET{-g=AUA(MKQ6jW^y%nx@=&=be1!GoRs2Z+a7Xo@1@$!V51XNfI_}*uc=x5Y}3*
zzWQp8KmK^EwcL5<ojmuH=MiK6xMyz@BOZqpPwFQoL;tF`u<)=i=ZlV%fLJsJK`}8r
z3nd%yK62b)y_|960AIOf8`&e&Zk2Yo$@=vh_|CV#O;O}rcG+cIam5vE*|LQP9(aId
z%a(ENwb$~7H@txhF1UagBbzpD;-CNdpLx%F-b16&;Nu_vIG0><36qnPeCu1^LPXfK
zX%m0(7k|NxH{QtMhab*4=bXbQKlw=>dgvjBhKBg=cdz3$uYMhGe#@I^Had?9w-KSD
zE%LyyUwrf%lG@<6n)M~bpcwH%fJ)K8YVj-rTcq?xjRWHeEzc`XUC#P3;pY!-f5g8M
zL&O-vAN=m6oPOpDK;g5W{VbhMhYK#afQv7_m{U$Ug)6VTlDE9&EsT$k^R9Qji}TJq
zkJrBTwS4MRpW@nUujQnZPU40eZeZQIbzFb_^_+U@sl4^AZ{-bdcmtPSdMRK3`qweW
z@b<UAor^BIh~thsmcRPTPxHDryt>=x_2?_2crVwx703K>7+U=;VjxQ#KDIRtEi6+-
zD|0)*V4f0$jWZaF2?aW_^XT@*yFXS8Z$24Ss;QHUfBhA_?d`uJ(TDCkd6?{`R<E;s
z#d7Yy|9${AY~0AQWy?6~sH0f7ZXEy{H*Ta-sW3S?$p=300nR-0Og{YK4+C)KnP+n4
zl~=NC*)sb3`>EIK)a!LdM@KpCxZ^nW)Kls2?`Q4WwVZh3i9GbsL*4J(M5S6SJ@dVi
z7iF@tTX&)n6|>1MJMw>N@8WOj*j6N|kcg)mC&flDWz<aOe2#PfCEHJ;<Bb@`M=r5D
z?mZ(56R%Z`wuthYkoA5^E6FD+sd?}@hc1#3j1y5j5mbpWQmJIT^PRuN<(GY!AKvss
z?!EthKJkf9kR%E3de^(S@WKnZ@4ox^(1$+6r$7B^zWUX#(%;|Dd*AzB1_lOr``h0>
zZHGrkN3qs&^wCFi;e{8nWXTf7$H(b(I=t#tufluJJKpgQF1qL<)~#E|@BGdON>IC;
zDXQAF(TcY<V(cImSaa4NXqK!G8}A_IEkaVq_6$M{_^e+PH1#cg#@C=p%vHAB^PF_+
z&oA|2mKc*_MRCgN82$gY6PsTfH>4MJ>MO4Cm0GTB#qw~Id%NA{^wVF!-~HX+v2(|E
zR;*gd;J_dNfBn~g&HDB085$a5)v8sjS+j=o&p)5Z$+DR+O;bdKiHQjSUh#@oaNc?6
z;l1aBAN(LABO@4NIQ;O#sZ=VcDpy@~)wI*La^)&o?FL{UmSl+t2{w!n(-TM!IftS(
zdTQA8z=&;)tTqIRJMWtmzvkLl8(in>PF2B>;6gs9oA>t{>^MHw6L+rvHz6)DwhGbX
zyFJ%d6--#}hu8f}7$3hWEhdg6rl5P;$f77%x@0L!moFvyKv9&APH%57C!TmBF-F?$
zHbX;0EMB~L&*)uIOcylN>vcqg5CSV#u4MJ<)n#rY1bmmztgo+c`aAPZjxj>il7+>X
zl29it3MSkD@vyVWM>nF|?)WX!DSpeCE^*Iz8$Y(=4zu{Mi;|R|sLeVe0?s_MC0kn~
z3n>~$2Uh}J0&JLSVlPZWYP82qZ2bj%6S3KD5$K0)WbmFMMC@*wFodv2glzBM@3ZlC
zBf;~JLRPoucXZhhm1%W8);8Ea;mjlIR5pB{_UI^?iICK2s{=8l#*@VM34Z(CH<>g&
zS67_=y%2LO4W7}JDn&m2zYQVFihxfQ69uo@B|s9a3PuGbr7$T`THVHb*(b(6TN-ex
z<Tp&c0103$0XXZ}I`4n|F`RnjVmf0JI9DfzNK_@&9D_nsI<`tm8^3eY2V{xA9&4ud
z@0>N<`>l7xq&HYxJ6eb_A#^=i=>ljJqC^ae3%W;KYWFOY3Yb}XO`(JghsSF|Gwr3h
zYcppr+R10%e+H)?y@1$hVZ?!Y)WmM)O9&W(u_Q4kNP>jc8g~9XA%>X|xgE@s?ULT>
zK*g9G8|^-+z`3*(!AitNPc8`|tz%mw^sfIAZp%;Uk1f<D<gJqU&UQ)k9;pvoMKG~I
ztrN*A;;e`G46iOV3l@$Q<4Z1+(Jg<hm9B1_lS>eR5F^3WNn?|2^MAp{TS+_Hh{lqe
zK8PUVr+t9ZyvQReMIoncdLQVi_2tBZxlVhz|1=x*B|%r8_9uDxZ)4g!F1Og3GtSN`
z)(W9OT#EWO`oMQdcHV*Zt|ae25!2d%X^x?oJ%T=uTFqKkCc@C+|9{&pP{QnoN-MJs
zHnxtbMAE^9pO7uXKaMec7ULF4H-xBS5DsvujtHV2?`l{rSai=9Xitt4S3DP+R7i})
z_bkM3U5jn)LTuIr+Dto++LdLcRO>;Nq<6_>mBp)n)Q}2dl4k+f8bLiI*`zEw;(B)8
zUojd8Dp=9E;h?IPHDUle?nNiIVV9kXR_bWc#uPa=?Lqn$6Y>T|6j3Ee$&EHe&}f6F
zhyh6}8{FXXi|yhguTh(o<hIQH8Z7rzyhur^n1#oIbuB^vNVnYeo@lE}tOzC)U=M6N
zs{+mldAmuv<qkq^DXvl>_)aOQrmUB<Sua{2z)$QVu?93^1PqFLPcR7#9RiEie8lw*
zT_Z)a%V=yc@+<&*JTJO7E`unhULX2skyMW~s=pCbNJS2~&o*Us+wC^B)=tdAmH1dz
zh>BQZ6f_hBn_}uigyuL=i|LsqLA#8J3PevB+5C0!Ij(<E>El~4I`_+{_xld3afE6Z
zrW$rp^}C`}YM7n{e=V`2<sb<2l&UzLGN4cNY#o)3_o&Ojw@Zl?x(=Da#T?a$rghY&
zh&;@=s6^BmjCkzu10>si_Mc(PU0;likrfA1-SmEgorr(<GG1^Ntq+Z%QACya6g%c7
zNGU~+kz<laIP5E6#8FfRiOubp2p)%Mz-U2CE2vnsIf@pY=_Y)j^gW`dz!9=Oyz4zl
z8arQ=ufOB6*co+#k!J<ih<W%zG!GVETf7UKY<@ZpU}_@K#3?rGN0I)0w}BM_3p@Lc
zr4y^jw%ag83pFXxR-o0uZoeCLK7f;{`6VTJebkZ^-w=_|!DxZF3^O_MIx{(PIw&zJ
zI?LDWJ7{~KFJr)H*d@mPJ277Ja0SPKbYPSy8TD$)XnTmA3(iKzZp3cAmn;zwhZIe`
zf|>;Lm`6p~EgDBp9NW1#TR5@X<f&({gBI3)Z{II0t5MusiLD5Nk8S!Bi|whf#Vn$o
zycE%K`X<-0XyTqyh1(Pxiy1>E3L$u#SOw-jkLmvBvmc4pQ9xBfH=c38cf0~lA;*&R
zI+pf8J_gk-cTsO`MqCxIf(`9%!oxm}WGiSujYSCUe8X*1BMD}8r3+4&U9cZ9Q&l=o
zCQb?YlT_nEBw#RNc-YxfoG3Aba#KN<=0b4-XrN>bw|lB_;|OX=wTbgEu=N|5i4jcS
zLPGEIl4gF_Lug|c#!6Y9)IBsxjHr~oUq*AhNiZ=`m<%_#YA4nn6hmY7AM8f~Q5D(W
zqIpFSF=d2G1A;?D@g^hKk`UfVL_<Lqngn&UCBqtni^U$>#>4`Z0Jb0d;J3)ewvsPB
z0ZD6!8q^qU&jNgV9MmJ$mHhW8xvPN|B<cya2jg1=P42PF4*Od>xat-$hJzr0Hn(Xu
zqF9`inWrEL(w)7PjIE<Sv5_JQ+OwF@vy#HqQ4uPkgA@gE@0ki>%MOs?4fJgPDSqKG
zn5+kl5gR)Mbx<3`_BDxPo3WuNr5Q`2EdqiV6X=YOP#s)r79I9_*Eh6T1n6p+d9e5A
z=3+ny6q2DfC28-Zcf<E7c5NV$4w+5pY>G&2A+5t+O6XaPlZdzbK2|ga)ePBj8;MD1
z)d$I9LBw=lf}mJzeF$lf5u2mnDy4Rbf{O;9W*b?4*co<U>8@xid5jTtJ+s<?zdzv3
zX|UDUayp+iRPvq3gWn^JZzNrO7{0y;Vjw9dh`Syn{rP{Q$NVDWJ%^CS0@;h3%*DW@
zZ(@TZT8C3lmxvNI4#grN2bZDML8LuF5QiZUafnqCOQjIEAhbGL(lpSnEJTxo2kbc=
z(2WXF99F;%KR`OR4!iV7q}qps4i=B5y@VylQ?-G(?k1`fn7t+hX*UWMLQdQD5krm*
z0mXG4I!aK*;>C5F24uRO#~Kd=LZ`VzH{Ee9+t&W2Hij2qEGBv}(Q_cKXOtQ*W9qTA
zmy=tNtPW{UIk2@mX%7uJ13It*vvVViZ6fbmiKyS>uoN&DlQNMGflYARZ>O{BOjIpi
z9jOFN=ny7$p%Xi?-Lj+*BXKJHDuPWbOX!ThqrHo|=~@1pnbkt$0m|3+uY9IRb{P+K
z5{U@X9EP+9F%G%~1UdzJREl&EYaDjufk$+V3oO0HW70Yg44zFhTI{A<v16ObTH9fA
zJ8Zibv+F*R*g=e?)2(lp-PN=z7>DhQyjgeNcPZ_0XpckDLPclwn*G>#@cUj*Rb#pe
zmPp~178M8u+HH%Kata`d64W7S1(#&#@H$+~yRrH`kBHGGEa=I|tBcvR_#DQ}0PV4z
zu;X6*jt7YCQB3!gj+SK8<<Hso)~o>?+k8T_iAc`?WYuRu1Z{Bnz5%8fk@21TnZ{P4
z7>E%cJd@Ss^p5@n4FwoGJ=#;J0y~r2(7Z|N8~Cv;FnGuwj+0Se+W%S~OLdr$_98ZB
zFQLD=o+Z0(#n=L>gMd&p$FZ@4vu3x+y?gC(Q^CaWE81zEh_ScnLBLA9|4jm`PuvS^
zL5kejiR%Y7#A&s=yB6%WV3a9DEt!eBTo!xSYp0&J?Irb1M$)A$ir^aC34?1$LP3!S
zY<mQ0jZkzZFwx`0kdE9%V{i?QoTwFoRg9M7lAQr+i&)raNjKh1w(}-@(u*5dNvQM_
zjYUQ_q9YGsP`rYXse3ECTue8bmzz{miLuOrOefm)nJd|TuLOV?#D~QOdHuuj%)N!*
zps}34DaH^(D2Kf5bA$;*5-O%Z(+aKXBI=_XiM~Uj9Xdsa)K6kV1uI&1bwn@|+pwJ$
zc~&8dfe<aILBtS42QdcM8AZ3>hRZ70g@=I4kl;~uxcUI0xeK4SG1fx#m~Qc5R3V7P
zg{GS7;&+nN?+|N2bf5Ba+3nwRVeP-ow$;6^1hvUF74wgXmV-@qd*D()A|hJybW6b4
z*qxr6PG3rj*9;q##8ybMK1Qq0!Dvc4wiDBAkmV5<(();$%6~<W#xU9BdSX%~(!oh6
zn+X+EGmKR5Ti282P3T<)E+Z7a8^aGom*M&r6U1RPfCw>y#DJ3sF~?(nnyftW^PTz<
z!Kg?{tFp&6)fw}2U9&FPnhxx-m(wkGVA^9L7(1dt9_9QT$SNuIdJnFXAVy26-pj*O
zY#G-Q%a9W$SW1!iku^3DHATo!NxS2drCavvu#%JSyo>ts6R7kK5@Ui$K&6Etqg6mr
zOyW#L(;h+qV{BP(;yqCWTOT56juV>0V3V?YGbmo|F4w!@6SDBo&-$JP<6eyol0`Fp
z)GG&s%QI1p@1E^ZV~IVBNk%ph#B|A|_MDz8A_xiJyY5EryJr(c?hzBwxNqr+b~{0%
z7>q`Shle@2zrhPu4B&kr(Xd->x0$Xk3C5AMw)4Gje1lzWi!~`qfryYqWmmhy8n=O8
zSX0C6l%zy7Dn^uup&%it^w4RJmVI3z?x4Ex^R|EK6=Bhujh$>MHWr{EbhI|@uOJT7
z+Ce2Yq0)E2qH9lkP(?IKtn_GHeiS;ob<*s-2aM?^CPUY5mgnP7{nfwV{Z#qSV_TG|
zEi=*1dBM?xeC~J8!P-EQ8*-WI4vyVl11gTx8E(AhU-;Xrw^6Hi3;cb8Nji+SbIy8B
zKhOWrOX<m5gq{rV0~SlbBF<rar094g79k|*?JPdxl2q&uqjPjHNQkm~C8dhNgd8)u
z0oU4z4lJ8<(*4v%&{S28L#qQwk$+Wp=(`P}FJjq)U`D{X3eI)2-7_4M<SHq5tsCR6
zbvrrbs9s_Yi0(^WBMO@H$`>Bamu?&<h>%JSng9ud72)>#$GPrD_whf^ReUSKrFFas
z*a+kkgvNTLIhNajLw+pFR-YBK{-E2}6Kji5H-sy<X}32_Nn?XJx(PZX(~fG_NqFXf
zy?4$!(E=fo^bFkEsrG+ETVt=q+CAdbOiS}rPgR`Jgn-l-w&%*XZyVv1qkD<d)9m;4
z_w$bDgw?$qv!>3E?{AT&LX?2j6hjNG_Hg+>-O1pB#k~0Vham3*Q^Cdtv?tg&JjTLf
zU;NK3Jmj6tm<A-L+S^7=4Y5f#aAYuAkkN$b$){4O#PXC<87$jkx*Rf3^|G@Kb}csc
za_<YUmgo|6VD**0dFQV>A=%v<--n%OhPBtKP^qR|d&^ed_RFj3v4W^}O~CF<4gxVD
zsV2PixeK{v?fsZa6^(%+wn<V!lbrEp#(V$t27cuwEBK}7EoDh1VXV{PAFtiWF29sd
z{q-R}wzjua2d!}?5ZbWiXSl;pM+_)c)K<z?-EO`d;}9a=d!orye1WF5ec}xVCD?ms
zm=J>^GGY6v4XpT)+4bNDHFiF-yVQvoVz<bs40+Bh7NI~r$#`(fC_lP;2QPc>3W|2Y
zlt$e{->9My&O3PlpZWR*TJ55Yh`9nSdZ|bxP1`iQ<!`>aiGTg(da`Pbi4HU-CwcK%
zy%4ijIyOqyxG!jZ*--SIVIRGkVgg@TAkn01G@_F`$<>`6M>f9Ibw)DPU}8GD&2=U|
zBCX-Ee8s6q?-C9~r{_~_v*nSa+NubF*uV52+{gp}%Ou&+S*k>@s40-{u}Wj9!c`tW
z0HGonG2{~Y+O4~I*@;7V>#!m2)pa6>4a7WW^^#srKC;gBw~V88PbLXPF5n=#h-!s_
zdJjsI93`uym^`JvU;&245&8JoYt87!<7L;zw~6Z2n)duOAKm${+LLZKJylH1@nc&S
z=#B?JXks`YB2mG#CeewlCu{%WizVg{*w(OkTTx@m_i`YDEl*#HQ<Y#)yKvPO-;~$%
zCmX*0yyJRTuHDkW8CyyoAl+g?8=3B{daRVEF$I08;l|syvuWf=miBiD*gapKYPV2P
za4zHJ&t1w5w@gy)IGRa8l5}V^l}e?L6+@9|a&`?nTFruLHIhf+CC@t?``~xZ_rt^I
zM=^*-65-cPYm~5M;^pbW=G$y)HfhnRwuiU;sf)$=#wO@grVK#C%Zkyhf0@=EywFyA
zHx<2WFwWy>K1E<3GTRQCKBBsfCZ|zffB-!!+|SIm@ojH^`Kpz7tR3Nw2U=8Wf{H7{
zq%l(9XVf+oH6f82>v!aQ`?g`;a^B!RGg!)8m?db$b_&irb^#w-Y}h(JNyTUQ7<k=F
zR`P3SuVT%D6rsZdTXX*P``h{A_wMGUFMlEb<Fo~Yt+$YvK4J_+D<xU2g+x2QRP0*+
zDeYbQ$~d;|g=s$W7D;MlS@rG@A%-M$Uctzw3z~zceH58;C=U!@f#`mEiOpU2KH?S#
z)2@<8X3;ni)?^QS>y%C7+phTd)w>SA^^T3S^9W)n$(xhMrEpe+VA>?nGTNHp>|+-4
zXYV`<=i9{HGh7Hh25=7B_PBwRKl-P;_~H*n=y9HR{@Rhe{ukCjK8l8fK!&SE@|JMJ
z&s&^u{x31O@mgX#qBv4*5kx>zA{Nz%iLD|oSo3Cz&hd6^!|$o9JZckTjPW6R*l8yh
z3y&F1wE5IY_Tb603pQJ~KA!BGiTXO57PZ1`c?dhc@vX);|9<<(Bs)hM_#&3!6bapk
z+oRiVMQ{q3lt#Nrqt)iQN3Wt@N%o;LF+_4Pq+TehmgZ=K4Vx$E>vODLJ%DyVVn&oU
z5YXT-F5)T`{LtZqO?Q(-#aj>R5Cz+%yHo*BS?c6n4<?_$7+c!v-CBpF8*I^{t?AIJ
z-|rlG?nlzt5GkEnoo%q60-LRmr{*Innj~IWv_d=eCI6tC?l@|3PviXqy^9HxV~kD)
zP>->co_e=lTlT5O5L6Au8U|}Mc8nH`HagU6DJGP*T1AKwiE3~P(JD6g^wm>VE;97?
z^q`$m(PMIm2Eia!Q8g6JHni4aO7{|p_F-)$KsT{tyS{-dCc7cL_=qt;qmewxq?j0f
zo}Ju=R4aO*LTj^CgQluw)+kA=+9j($Q#`ok{c50Es}Yh&W3oZfDTo@dwrr5!7i<NI
zPz1zSj7=FIn_$^cFB$`hODMu4&%;zTBx$WX(WgtwH<ef4>*)CK&yq*j(DHaEkv+sf
zfmD^kH(z2W$Bu6f4E*e=8uV71i(soLv53$vz!-8#RMnA+q41uxl90F_TFrt+qk;E%
zcbJRp%R#2TECWNRW*H;n6Exd7^-4yFez!>az8fV;rUt}3ox@xA&d3{VEU?6W9p3WW
zamkY3JW%KDr|X=($DgLTLvp}mU<^iLP@<}OiQ+J^JazZ<RH;-PjmZ{`Mia!A<gt5v
zpG7318gb5GtuQ<~PS5hC_#($z_o$J{ByrQ3u^44H*?Ss2;I1bkCPSM$&v84pph^1F
z{M@10j*UOws03Bgv68BytWQ%U1cRsq0xGuK0aylDQkP(REm@W^G1<WTDYl|1wn3S$
z5VBUtQpfm2lfrwfwNw1Kk7!4xn(H5}h;Z88JcUv(Xc;~Z7D78S?e-C&)^ji3AAFMS
z^UX5|;_g;kAwoBzq7o4+O4Lv~Nt7+XB2djzveYrzXwsN$5jA41BT7KEWDph&R8z-f
zv%}<M!9Z_Hj73@WuoqS(&=0dIJep)Z)v8@6Srv_gj<>7Qu}yEz(&YC|k}%ulYEOY0
ze}a`wA|OVms5!KI&eo~#k=<M(W9aSgCCw^KOf)EpvH(HMl#?Y`E2K#|MPP7XDa3B^
z;+(1bGeATlWCnbzakSPJN;<GW3I5;$TW7)@qq|9V4AXjcO2V|utMmv_0Ah$_m4qbe
zr_pTCXteO5q_iqaiG*5~(P&JP7oNn;HLxlDh!D!!G@rjJj%@fNGIwd)4D8o^&N{<k
zy0G{0Og5p}i!&vuyzlIUVp66i(;^l_DCwv6jg6L@#0M-wf4xE_v9wxkn#~Te@Hp$J
zBtlaoW20j%S~NJPYIzM26rvHLYMI&}-E?~1zZzdlX0>c-md@ESrOt%PV%6sMNnAzB
zFoY?cH+>|(-b|M*b#(wqH6^L^kW^YU8!b9Tfx0@TVi;~k7DSK4F3A~>LpD1*AqGM$
z$?J8BcdauK>5N)>mWA1*b#=1?bQ`6GPX;UAxGPwE%!)90Bqo-a1fBUDm55?R$qd9!
z!Nl+|R+LJ!#jf#5CgWQArA^%HEgmS)W0(4Rs^V0|LdZ`sja}zdmL}H{&8+1_W(91Q
zL@*u1ph4_gNvbtt!E~cpmTo2KOzdCD-+>r|l^mN<a-7r(d>En87@;q$MKzu72b)t%
z!Ai2Qm>gS~j6PJ}W2N#W%a&HoGT4tXR22aU$^#EI@UhMEWwG6}pf>g-B7J+rq`Do~
z7$?-5js%alkPi+}ung0@AI-~_USsBBqpHQ`lW+H<o4;V|{ViL~W~DH3zrp^G>mPh{
ztPSKHf5KH)-+ub8;N$5>-Jc$}W<?cWfLc6LBcbHc`sel$3sqP4UI8I*Gd?<uH91H^
zqlmP|hk4U;GEQ7nkmsTMcjlI82N7Io9M<l1vf9$2R<{9M=RDY-{@Q(yaikW!4=?)f
zyNCZm6T?sLxdY$%F=Au)T&;Wd!^uA32*5r((ouk-=$@q`6ivv-F-D0t!{CWy<K(Y6
zgpa@e5F`)82u8Y<D|5h4*RIKmk<<`Rq20VLI`^c&p7nymfz&@{{3JKp^3IVEsAd9L
z%1m?UqA8I`G=W5**+@BTnehBW`dMCyY#r<6=6jTTcQ#2Y88%w-fdQ^wJI<w}O%_!g
zg&LrPlFgACZoz86o611e*!FrmTDvYRTp5{#am@SQ#rYV7sUi?#siXG@o2brU8w<Hn
zsxcB`N?tU1?+a_Z?~FPNdjLF0FFPB({Mn7W`15aWB{(I^ly%!$eD~f7UU$lZG65qA
zHpV%l#;5Y(F@zAR145DOL1D8W%i9%UdgOw1)pa?GRvx#wP*JRn*Z^aB!aL6x;*Vbe
z+7a?Rg2{*>XCQTa<mCe_t4#9lujHgeq6>WKr<1(;)P-maUG8wtTwoQEsktd)Am$gu
z*2pKMW7d{!qR)t+%9Poa-NK}g|9P7`S`s;QVTa#66Qq^V5nDFahd^Qs8azci;gT1x
zB>G`~=bEjUw957Oj&skBCdUl+5IPY}49o%HE)#zOqF4>R#n_f1U3x6k26&>Xe9rQq
zl@B@dz=j}*3$&V!bB-)n(px9=t;V??Ok*p4Y-?G*BxNg3XeRvjnF)j%zw`A5+s2ja
zem24}=T`B-V*C`F>KuSu6++p$ZVXi&T1}Dk?n%^huuAsBi4J)Jnm|kLQ0cIsuZHbe
zK&Li@1jP-k1WE9tn@KfCaRj5}I>6gbPl$1t_x<Na{{1Ioy!AyZF|mypHz#7|ieQW&
z8q1E+=-(!t$#2^bo;cWjOXsF!Kk@x9h+0HiY#vF#gOi-7k#?-$238=^6UMh-h$Nwf
zcY{b;<>HeaKCa|<zp;rsHZ*zuYD2S#By(bRWVdtG7zlwF<8n9r0OrYf<BN}eW`GS!
zVWA$Y-1y)G8+L4BRgw~VR$_}b)_bIXh-MLRt!=2usD*I~TcwfpbMdK7n&Zp)@{c!j
z+L~1u&7kbFJn&DZvFrsDplExo4Pl>z&3>Y5?vmbV$tx<(@z7|&pL}<c*w}>`+eG3l
zIVn+6T$X|u+NO#cgT_c-)zA#^&NEX^UD?lM6H@KWok!~u5{M|G;Ux9(MWRyX;h)Gg
zR~@t`uEz}~M7%^Qy*+&92isZNWBI*vJ;4-ETS+JiTyrxq2CB3O8VSZ?B%{_3qdP}9
zbA{kSpl}wW51$C82CE;4M2TP!iGU-<yif9p6(P^23H=UwZ~V!q@raTbM^O}HJvA=-
z##TZ!eCTBg<0G_ixIEyD?M@U(Ni-)$rRq{bPcLI*V>H{2fl8&E+ogKIK;FY67eQmG
zSWV~<Li=e~<8zv*7AcQwHmwkH#a7|6?~YL|g!iAHP|F=2Tk?47v=2Y+2Gwd++U+*&
zcAFS`G2LRr16|NyD63=vEQ*H0#-j7=23wG_f7=+6tX6h`XoE|y--*wbap`%UwCyPN
zVp<Y0(|zAPy}j%j9;V&yP_I>{CHp`Fu3Db6Ef9Uj1>Zq@!PA-in&Xn)4XSFyM<q!s
z#1JTKn?LyGCd4e__s*?jI|V^?k1(xjDaC2#=&AS8Zg;3vvpJx`*`w1_h^Q}YEOLyi
zbU9h{*$1{p#h5bJZA41$@2p1E3!Q3*%f7M+Uo`o{moLM2z-pTi(y~Xa8>lh}J@pD>
zV;%CmLz1L(<D?;F?Ol)r=i9xuJxad%EHvxo>5A*RIWE|H#?e(V1dPjYQLwd~Kl;+$
zB+>J`=dXsQBiaIu8Q?KSh@os0tX4CMydX`p18%pc$oxbgszqY3an)(Wq>9AivEwn%
z$aD6i-LN=fjJT|VHz}sx$M1h-GavohCa4%J4xxqYR$UrnB+DuoYl&T3ejrtO5b#oN
zHjAP@|NqcfHP#~5AlB}4rK!VZ2Ae*7J>$WSI+gkr(s~aVOHxVrz*pAu(Qj_SRFZO-
zYK+7fr)$tege=Pr_!+w^+9flycFj~M4oxODEp-yHrY!WR#AbPElPtEl>!DG65~=nZ
zs{KN>U!Lh;OG#xR291GG6j+yHouyLCxb&-=`9I&@Op+y--Okff=3sZ=r&RfYI%P~%
z)<zLjeQy}w{ti2_gOCfUpTNe}!&hi=|CVuDo$#<ae-gKTkb&I|F&gd8!|n!{T~>Or
ziQ^Cd{a!wD?KWJ!f*J=}5Y<cvROUu$v7%ZsIH)St7|F+XEX<1zMgmOJc6Tp@#G3t{
z%YM+Q@!hv{+37222-vJjVl7Ff%4J`?iz~jfnJhCUjfN=@N%nI7<N!azZlWm`7dxlB
z&gfxPH%`!`Jad||vn8hKQ&Pop5Q4o&fUPU-hUg<Ms}gL2)cW|qmmcKG>$c)*DM@q~
z>CD;Z@M7?$cC3tU`J2!#$fZxCab;xC8Z>=sj*ISK23vQN(ij6#6_cb83(%DJeepgl
zmUo@IkkAo?I47UOptxd!IPMo{-o^}6T^^-o2;*CaM{rpiYh+%s0YX%aHC@GCHqlv^
zl4Ke0`QqJN`Td=wRfjcm<*vICpXedvNC<@fLkWkUJs5kBcvoKS`?AlLo)IgH*tBa5
zuR<l+|4N&KTC%5itlga+qs)M*wHUyO;RBz)gH||!-#c$HrtQfC1ZPQNj;JBGf>Do+
zw#%mU$c#&mdw#}XMX_486-Kd0?9z0LB1BBgr#aiCHi%z%6gu=As4qd&>LEVp$H`kH
zl6)nr<}B>9tlK(%_=X*AcUrRG?mc$-vk~lvdxyGI8VE|nxU`JARqI^-g`Y7weiR@4
zl_jK7VB2M;EJz^r79*A*fhe(TM|u*skx~#M6jG7|NOx)wu|R^yn+iT1L<d%579K_z
zSWQfNhyvc{^u#tU5lCz79BX|1njil3`CqwtZS9&LJ@n#bgT3aL&tCo9hQ=)+Mns{v
z@7W0UKG<t_j;3N<RyGmU41fHs2e@^6&L{up5JxUc>9ng5bE3^D)L=}4gus(6RV(Q>
z6TC^VF(>ItaZKxI-zr#mG%~mvlhz4h@e!N`Y9?YT36mYq&9`slt2f@sH*dbJa^JSj
zuLrNx6S#NFC_lby<B>0Y;qhB^d<5TW!93XAP88Lt;eog`qwqp%;M$*V<t6JTdEd(y
z@f*+Yr#DsTSRyr`jgbQ7$x&AYaU{M;;@fD}Pv~Dm7<vw7;h}{3@{)Kjbm(X#lSs9e
zkr&Dx>$dT=n{MZto7Zy7ecS2yK+Q&KSq3h_lG7+GU%27kOI~)?$=9nXCl5b6)%YVt
z+O(YAVMM!O(+m?WS#^S~%_i^um;3qGoBDa{i<a}6lWPoCCuw&QAS=_3(>*J?r~g0Q
zi?};ajPK6tw)pB|!h*w)MbE+XEk|uah!H7Tq=_Y|Wr!+UwvF(uTYkcqe|Q%+{A@kr
zlO2pzYMCKP9MPmD+ha7eQ-jG2H~e(NIU6@_KYeAt{OEw#?8gf^?)~RaRfJO5v#n^a
z_|(G`SY^KvhKNlpAyi3BB(sj2H#WKXbNBG^YpY!LiWR*2v;~A#Ig&A0a0oVPSFLwz
zV5BTMP(XcwBchew(*6z|g$%5MN<T4pf_fwr)Kdpp%8s!%H~;rN{QFJ!@V)=KosGi{
zB2dXvdV5@#UZvbXrW?NxCdY-+*}P|Gd+2+&tv}&SFF))@?N*QJd4jpnS?TpUaG_P%
zE!w7KJC#YW-H>Fhrf8wuy={^={^JHBEna)-(y~T9Z-GrHC{?B?<Wdse*w_J^Viv8T
zSa29DIE;2}36)TkRWm+PF+x(QGS+PK{X5rl^-Xv2wHxo`=Nor|Z<E&QRBH9ER*1Xt
z=<GEEt@{klf`$%X`oYgGe$y`=_Yak1BFuR;{%8z@v!dF&QjUPQuAMeb>Imbp;Qd!m
zaOP2qSz2=h>BU;X#U?Q*5<QtV(B2jJMbE<z9*XH(hT0S@+GNE9&IpxS1-xhNL)-bv
zf8Wd3Z@!yb?z*2w$K%qBYNdimg`nMByLt3si@R$@1*+AI8}8Y5{9X5NKkV3L$-Q$C
zZ1ZU9c9x+o32dfXk&KXv;)5rqeHh8vxP6%axP6dI&K$x@pyfR_MofJX`M@g7q9dVi
z8PWA(w7^G!Jg1skjIFS4#|YP6e>d0s;5Kgh*}ZHZYmqsJBvq=_6bU&d76b%Q!J4UQ
zgLXz4IAeqzqpj@f|GNLTkNDN+zB8GFV7Gvg-MctNp6uw*{n#&B1~tl`Z6GRz6d36v
zHywI4W84Z~`^iq;^88iwng(WY8FA^E#J<(UG$p7&jHQY<U^S8$!>wyK@OR(1jqlvL
zmWQ^FVa1VVLT|m+b>ln~IT%MUNjZ>R%9*57K+hyG6BH6>x#s43SDv(LFnReohdd#A
zV^N*6<DTc&Qyzn#U-MwkuX(WN*F4zsYaZ<RH4paung@G+&4WF^=E0s{Pk8;m0RVQk
Vhq=yH6IB2J002ovPDHLkV1gz&?HK?7

literal 0
HcmV?d00001

diff --git a/oxAuth/Server/src/main/webapp/img/ver_code_1.png b/oxAuth/Server/src/main/webapp/img/ver_code_1.png
new file mode 100644
index 0000000000000000000000000000000000000000..41ae640925251c9d55e4d932b3ec7465855bb08e
GIT binary patch
literal 10131
zcmV;ECv4b>P)<h;3K|Lk000e1NJLTq004Uc005N;0ssI2_v;ec0000PbVXQnQ*UN;
zcVTj606}DLVr3vnZDD6+Qe|Oed2z{QJOBVEHAzH4RCwC#eF<=0*LB`q-+TXxjR3(_
zBt(l8CCZ{C$FY{!mSoHEntI$g^>mt~cBghHP9}|KoHU#5EOwG+@gz-Kr=5xGI<ZoD
zlPy`6Ol_8_#gs*H-#3uNN&-Lr?Y(!mo^u~Sf)okK6aWGwp8f$L{QGy$J?A^;o`pK+
z$ig*?7h8Z}0r3UI7p?`w7Z6{#77(AqmzdF42kL39VT@V(S~)0%XPy1U`F~&iDU?xo
z3(on~i#Q<t)Z;&T`pFkg9v`BFQSRUenF4l7vn860Ijk3Dj7;q@z{3r!EG5+TT)W~O
z@4EBmTW@+T>vXv;Iujlc$o1!b?+ahO{}IX}$pbH{#xdunf*cmf`Q2bAmVjov1mt&0
zz$vvf6CGm{qZ*(4%&&jsmp?pbL7x%CH$D2q$3FJia!Z+__yHu&i!GZPh3u06(B)Fe
zSX--BGr`ZGzv#0F;O%AHKhQeSsEt1U#FtmDUUjutPHXi4{vTh><#O=#L98ig1`C*T
z;=ES5_>F-Ep^P)u+S*nwl^Nq4{*SU(d6oke&Tuguyd8l}!npXq|9C$kb2NG(W<aIr
z!NF0=z*e$Mm3ZSRP=u+wxEhB?!OBpp?C}%5pj(tupk&}#{wJG4s}Kiorr|9t;%?wY
zdXEiUMV1q`w?);<0SPV{rI}R(9X^!?qa+x&nG_!e;w^+cV@Ms*7u}?cqIvM|3hU(G
z0l*hm5#ke)j$8c?{_s<4*R9f8O{~R~3pJ&-el-?K!Z3Jz)3aavn=ersUS;f%PV99{
zR<B;RcHN3bBcXJrv?^LlWH+=>DD2sN&}hpAwa#8uGET$DOPLd(i|ft0N}1=(b_z+R
zQ+|>uv<hf`{1%RIQPaw0-zZ<mUqy&BF0Z|I#nEGfnM!AbgEs_<ozkftLOrD%Pr<3c
zxw2p+fZM>jdiLekUH^tT%g3i5aiuh+Y}|`P0c3<KZvokq`uLI+IrTtu|3-$Q-DGhy
zxr!oLbKw|oE*~V$MC_1~g==;ZU$_<!UqE~T@r7#v@dd;et_8#w5MQ_!5MMxi7QOsA
zoG{F;NVtW#K%CO4h8a6~**~7Rve2fK7;PDs@*J#dL#Fp7I<O}-arlO}(#7j(SXw~*
z0@`5eyon3GfMG%sljmn&#|$5eU;28^H7#e<akuXWq;H2^^LF0Rv!GQF;>p(~tr@Y7
z^$(1W!`-)2Z@E85Q_EOtsbDT8l2rTMi(hrBc~#3er58QvpW?3b;U-joRw3c8{U`L`
zR&sO~89hLQP+3?9CaK^$)*{!mA|MTQY)f$MT~{OG6c5b^19Qg(W7K9jg#PcCOX#dN
z#u3Nh51G)@DNh`X4x$1X>!W)gwe^JXKp3kT2X#W7(liiGN!_H3>-zB3CF6jmAx03&
z91TTisX10ZwXfFS*Bq(o81600{EB?X+ERCS)B?+3wbgivthmp_y2xw7$_Psg(FxPm
z2+kaXcfq_czXO=lDalK20eyFwH0tG(ac2qR))E@A-IZgH4Dak49j>aFOO6^GAa-Q)
zplylrt6CSoxAUg%TpLS`<BVBn=+wFepoMkB1Oj}aNe@<B3SFf#(uoo)HeOwbgP2J)
zW#Xx$FF!c^5~vO#gIpA4sf0dV(XogoR_z!#e0XH=BTH_%v1_$eBxRr@E-@Vil#~#G
zi>qYmt-N*lRm4>&<~#^a-9v*feQkIvCoJF*=4e{V9j11I&W2w=?=Z(B5ydY3`@ZL2
z7&#Jf_Ii@?r9;zcmTU|*yq8dR6(J7P17z(-)x%Hpz7z>&Xn=%-BBd}?TW&1Z6f;;5
zat-%Tnz!Vk{VyC$hNGY6GkYWKNS3-w2)tDAhPTKK?<4H8ZEiMeLhZbEc9=8-%7j%_
z<$HbG2&ck=K?CCk>Vk604d`GE59AExn>CE-5QUTii?(AzJ#>7Vu@*TD8_(x=7w7FX
zqe7URgi8nfQ1tv9Uv)d-^2(2^U}o(&wI*CU$;H-FM=Omw_la5-d_`^oN|-jGC6e&~
zm<c0Qqu<oJ`ZsQQ|GPSGiUC^557Y;CHu^#)I5I{=dkU`Z#&e_vJRoq1xcNh@=jRB$
z%*h?IrBzV2F$<jfw@j?wTIr>N0xw3uJPkM6q>?G>n#`txR8{(xa?ihCe|MKG|Kggr
zEX#MW#ELlCIob=TF*}hQXQ!ynLivtd)4@Bv`J=3T)m-rP#LS?3;XUqiU;$owI&BQ;
znsBJ2L9v)L?Fd^mcSC8ll}Tb;MX8P5Js-R7?m&jAGv7S$>|k?*a;Bo7w>}bEC7Gvw
z<W*AZVE5SaD!KkXT3S3uyzAF1<1Vf1z8y9mJG+KLIAc63rjzkzE+d6VmdA9Oq_G5*
zLTRcLcsifF={+A_duJ=n)vZ2F(_6cGKC$i|DFa39xAs5#{o_A@{b4!DC#0^EI*>&4
zoIs-x_6h-~-o5hX(z>WDH-2dD!2P;pT#p=PCw7y*Ez}wnwu)sN*^1j}R0L05DMUk~
zgq@K;Ou_^Lo>0JzDx~97Ny=gcTmPLs8<!T^;TEhTf4BRwTRN8i%DQ`UEHZ>Vu>XgT
zpLi((W)7wgYc@5wl!|zJX@E;&fdrk%PItcY1xr+T-r58fl->Lx63ng4W^t*aU8665
zQ>i8cb0!4WO>^{lcVZg{fofSw3q_zF+*kgc>-C^W0uu?q-2`{MnKB`Oet-MGmQLBy
zQ(kgISI?({_b-u!B8e=q5A1pRvHl&Q%n@rjxSGT%fliYIBI&u$xC(RGhVr;$siEX%
z#0DFJRd2I##c0?UL&%ka0&Ba5z^lza#6hUHev_qDCJMxA?bE~20;-Do$v@TF*9{y#
zKx{x9KQ{!3GS5)}U0aY3WDpYtpaqunC)K~(`PhHjaNnBJ;_F(L5ENhX^}RoQ<itzG
zD6g^d$~pku(bU-vnJ>!Fz$2W;8Vls8FBNqRi*#9_R8_Rvp1ab~<8EL(O%!KX(*@7a
z#cp}?2Wh_ja=Aa3sK=d7T&36WoV8&2FjwAx0jGfQ5@nBVsg4X$9{QYaH(9rW_;HkR
z+ajZtQCq`le0xUoLXM@?f7trS(Xjz|TuRLUJNWeXPHrpa3f4HLv`_tq4Z@tVJ^7A^
z2?NXLi=dsaIr0)uVO=UQOG0}48wyeH)3*1=fo@1CQ&vb=k%~w(`qdBr)-_JeGs~$4
zcRHH}%3$%NcWdCQ!dC_v#E=LH6bmd>=ypspYi=T@l(EEH+E+$S0%8gowTT2DB8|V@
z_1J;R@dpn-zv=i(IWEB)!sP^VgEgBV_@+%1u3xkacqFbfMg%d!0t?Gw9T|uByK{Zv
z%b$AVZ@lNaq*4{4U|m7O2XZNJL}t>2<v17m;E(2+R^i2N5Mgx5twhh6jJtop9xNi`
zgmGt`zB7aoZ67`wv~X(ljpgOnmb&*;dy8Bc4o_!!M{059ueW^{)=$a^Ud`83VLhjz
z7GATa^_#n{>j@U6Rxu_GJcl|#G<Z~L5Rp?S@9G?W&!^u~$T8If10!HFW*z`YgYh*Q
z(x!$=+8Dx>qVp$O%S+uTr%Z8Ft(Rm7oC}$J@5(p!?ivD8?u^Cb2Y}Xp9yXzuy+MTK
zK~kf%S(0nNZ`lTA8E_Rz6d?wW(1HSQj+BnQAo{kp*rww$ZDJ8E_tm%OIiwC<Cq*u6
zZp9_7GZ%FIyG`ocrE*J9y0JB@bBjLObBAT3No~M5_~Tgdosm4>0KxcQLJ^D+T@FkC
zVfCG59w~%VXloKtkW?2>KA+qE&-r6d2s4(_oU$Sdv{-+=^813WQ-!X1W;p>dvFv7d
z;|GjYmq;#gi`zI&*R?JG_#58V!`qWMHdX^80Rac`<dkV+fI@1mOf%k?U;c@;cX#Gn
z(^N5FIJ!wWMqb^4C*;9LMUYFoZnA|g<`U}ES+nuV5Q;x|4%WPNUV1=s*#?ns(c8a8
zbei=z@O?R6+gSm8aZZ77B#G{cIzPVt-ls<P?(I7^nAWShNd#&Y=~&T;rNzZJbg#a%
z^;&T1jWU=3L5&f4?o{W#e~D{jcG*TQBgwcfF4FzGdGi$57!Nn|KeI>xI!b7uVaKe0
zFUz;i&$tQ`6dVfNpFrWz`*Rl$s$A$e1_L9Yy_K~g4c_0rvD&)6FR2X2qczpUbIu^&
z6}2r6%Q-4yu#Q>r{djnakfHsqI>49Q>Y{>EF;giIinQEi(mE~*fQwN{gPakRkkQH-
zR_c^DzMqzt&F4rK<9z+Q?T+t&3g#eG;C^#@3AKHoOd48CE?4Cj_vE`WpWS(O39sBR
z=1h?})+95U#*LtFyUBNpC<2!f<=4j`d029VR$V<MIWQ*A;NdQ<4U?o}6<d1`Ep^ZP
zNEYi_>z3RIVucL(byVL|s)6Gh6{k8)Y?_!P)rnOJ`c+h)d&ofII2O%e78NyiZqe8y
z1jHJZPQVHsgiGtGI>Fj>ioq^)lQa#>S3>L%x5>&|sr7>PDy^`l3h$;INH@!}fjoXb
zC<yDosAA`QNMJMxC>aqF9itRepG-lSuqk?CLBa9B7fok}ZPsBHjOM2gxh?;w_I!_+
zWZolAM2_IeJ31AYDBy$y8a#IpM)0AS;T&iRzM5rH<L$iV0q;gdZMHFpE*08YgYJJ2
z;c;|h)TzWxq%fj&v04#f!m?`C-O=aOq0N`Krg>Trk9=(C^~Kq#wG3t3cLcJ`d0x)^
zAK5wl2Mh-I^~2@$iOtc0m%+buEU-Kx%{m|4ONI{#nl<O5KKg*Yb-=b$lfbG_5xT=a
zcFmFbeFg;n2wQx;JN9Ej+^glNO~V0`rC}i#jK&?q?RUA#X5PO)l%RhERShIGOtK3z
zR3D0f4-3jCuF+ikJVtzCug}JbEkLVn+#)$IMt!U^miJOOR<0fCtnNdV!UJyA)C=yJ
zxtZTGPO_G4<ELyht0IvdI+6k%DT(ePNh>7Rx2w=RNkvWr<R<oMZ~P)M4qzLH{w$mK
zh-co9%epnaHqgN=nu*f{Z*m=2Kx@o+Mh`Xtg}-19zVRtsXSE8LSP*8{5Sq01Kf<ab
zth~sSmU6i3)KOPI#qcN&$cpiPmc<Y<hIUi1!OR-P!Z2#N5)h|9rB?B_4S77?fNub=
zW}(5xvp%KSsL(Ww6EO`r_SHKRz`@`jIQoRQ@WYRWmHxDQ0}b-jF~=A$w(EF|07J)K
zS@<TY$OEI7P8(iix@q%^gSBs`R{-Ld60r5CV61~m>RT1c%8^3#xB{M8>@vmWN)#NW
zkx8ghmIsq9HTb&vbZ>ERt6p?H3yXLlXA@W+l5gYXhOM0BMxkhf@^MYrA`})9JfP0C
z!G`xz5zS{W|Mk4FH5fRhA!rC050`qMR;PL;O+qe{6PD%|HGA$g#V%MC&CmIe76acQ
z9eP<Z*(|h$R@w0^Ld<>Pg$^25Y-1EStIx@z!ZK6tl(&5Zv8I>5+s<V}-1&ew<t$2v
z>ES2M*zusNM;AIly-QWKrw#{uzU{96`LW`vz$!Y4UBFV+bb}jVxe!j{D<N|iS*j5M
z#+_@Uan(?P=X9X2IM@S?DHoUf6o2|Wpi9##*y2}k@J~)33Mxl<_jNQ^20w)p?Shh7
zd}EFqd*s<1QEXD1IOp9+W71fZtw}i+tO##i3G?|Ynu@GzIro8b&M-mOREN{eU()-Z
zz*D2E7IBKfL5oVZ)(1Wf35wQdpx}9%H3Bq8>oV3D<`qyeax%q3hQoq-fDtP(xXp^t
zh)A&<{4auD9Rz$aI*yIYE#~18p9bc%JN!(#|4DMW%bD3_0~`qo7NyX}X@HxeDt6=N
zZN4T&1#O%OK62<hgcRW=rdd!p)OJ_Ha(?1PUO5>y2T5&^4D4s84oI6&#uJ|{L(f!G
zV4O{mqnq`~ZC9y`6LeIp(ymD&P_iJ`WTKwaJ1T+(k&vM~eMH!F^06d}E|=}aFwJ$H
z=z3d)wZ@fUGPGY09kTJLPXP7jQRD(Op%`H~b?Ayf{HHH2ws;_Bwb8ZQQksmRWy=^k
zCa7@q3Tp!{Z3M{>t@M#eZY1gl;CuOUcahnA=kdjN4|Uv{(j2f&QtBkdZiU(XS`a<a
z+Ido>mql)Hw@YjD9dSS|cD{7sjKewZgl1(CNYhw0fFQfU51<(_F9j~G2HhHzOMTFa
z0L#--L&t{M;9fI)#F_+FAQ;(Yk&vYD!!Tdt3FZ<^ZoYF-*ODG{Wa;paoRDJCYSMA7
z?R*0*FV0kx!AjArHkA6M!mvB|ob<AGWSj<e2>ziR*h9$qrxBRIjQM^T#{l;|Gi8$n
z&Jr0h<$|c0>nw~Ow>nWSNmLT(8aEO8>J0b_VbuYiG}AB&;Z-d6=bZ3@psbllM&01c
zB8>Q=Rlp0W(b#vQ&}tf|bQ&}7_%MIO3})HDE-=mLhWC-6Fu!G-a!Hrm<YOymyD$41
z6zgNuz(??a!FOK{vYR7;b|JS;@<@i|(cBv5f}k?Y8uc)>!UTTigjdM0WcAZw?U<E0
zOA-P8Jq}19m|{dD-G3}h8>F-Z;5I7D4l}@BM7az2ILEj4))~kTc>Ojt<)vcrx+}l~
zqBO|4S8P@5Oc(`)LQy0VU2Y6mxk=30H{qweL(nSeR%tn`_gWWF5;_|A_Se*>KLBS>
z)8So(r5mDBo3)Zs<7ktSu&IbrHNoIXMT4A?`*Jos`vlKZHpUFFAdm(C-8dtP!J0eh
z;`M~_D**BFu=C{Z%U)N@Cm-K@VBZOqYD}ZI=jhL@^v(K&&C{n(-`rCF*=4O-8;OG;
z*hIn!z796<XbwL4$Rnp>&KWEQW@Sn1PQ}SJqW2xw<h9FkcdbA2!CGiAo-!&XjZsWA
z<Pq<=OI&jsof|&qG{wjBtqgoT%-;scjaRkEtpEGpe+@wNz+G5_`LHUf#_7+lYy0Z&
zyp3}sQ<i%B>M}ZmNdh7eZ1Y23`(NK3$QOLNkCsd(qj7rYnwB?z=H6o3G{q3!h!bwG
zUQsY@Rifc>wspC@;RCeLLFUXgJ&5zRYcO-cft}-L&x1g7i%1AJF7X$Sn~Nyeb)>TE
z$nY&|OF+J}a63I`|D^A~<Jxa*9s~IgXo`uRM7BkA+rhENUpVj!Z+E&WMNrVpa4;ol
z)zpvCxF(j}#%}!ixz;OsdiXev%53RP&Zx-&5Kjs-KZLj`E9nEqs;PVI<q>~;&&l}*
zl{8KChLxr3uPLO;w~@!9BJgGsmMeblD?6Whxf(Q&^4f7x8xgf*V&u?Z|0%NJU$Gm0
zeh#+go;IJ8U-K4BWT0mQAd_c`y~^AwN1|M?X-ofTJ$tB|JjTG!5tA~I_ikKd)0D9s
zz^!a7fp*GttP%d!Uq16kU-`*TcI@fjw{zFdy`TQl3!nK~g_Rf0h1l#2Mr&EVovwR_
zJNSc1ATvuW9j{a-Q)m^qqaee>eWNez9eU@+Wh(Y5-jnkEeIf+8=jQf*_+D=_Rs!T(
zD5pvhwLuWqHUH9gPTc?fV__~|O-Q{~d+VJgP&*U6UtO>)+$A;Lzmug^3d%6*5X*0#
zonrmzd=I+xCersJOUJ?hyin(u%H}YkJ4&+-K=dLZ7WD2@Y9D^_)H`qL&|HA$Gs&UC
zTuqSfm5WO^Usrf)%a|+ZkV=&z#kT@n(5Mxw>l&cofse8@D73dzQ@0~yZsdqNv6XdP
z>spqx#cQdU7!_nvwfkW=xX%~a;s?;D4)XQyo`oK9(;CSF`gPMsTG~pt-B5~wWPq!Q
zS%IjUHCDReiOdCWIE{>`a=<ok8$2-rK2mayDo4J8^|C^Q_igOvgyoVjHXP_my{Vij
zFY6GC7J;@AaRW;}Q%mo@?OL|~+iJ`I(TAR~@fbb%lG*W~+WsI>jVvmW?t799?!kGU
zOd@Az!VMotcRoaBzFpZg?;{E{F~9iZ_pR8zdu02eW|Rlf7U<twtB9ULuVU#B%^w>|
zAA9-quiVpS%{h^DaF>j;JW=<oZ~w1dtbeQ)=}=qq;k%cA@U9itw1eN29O_T+e|qqN
zC->fa-yQFJQ@iQkB3aq`tY0uNi0$xhy^D%Be#lk_*|BG+%)^~$bv<|nLwoGNb!_=9
zGaIL#_J*TQD>`~?VB5F<^8WoVZa*HUSmT5lg+#iGX%&nE#M1K7X7#S?7yZ?*-6?c@
zW^NT0-NFh8!DB62gFpVtt_OZNQWW~vK6u?Pz2h2^jyfX^2}RDPP5R89=7x8_r|tMA
z3ok%K;F>;%JOJA2aJXT@Z~cg^4U=8pad;4Verl=<OTir<pHYQA?TC*vX*als?)~oI
zNNsqeu9fxkfy{W%k5}N1UGp%3GpNUndNba*Zbc!Iljj7(9!V(+G*vm?7_Il7td`4S
z<;qr<096bvjWKW82qvtEBHeMVIk8t_sjl`}FbKA9ON5~V4vJ0`vHX{D9IrT`zI;g>
zxN&jt#$O;y-Z-CR{On=P(I3l$52rM5YL(F%IHH<y->1W7#?qbpF)%J-jTsuPw6u3D
z>nvf0k9YQQzUQQpI(TAbbfi=)W3{+%5;UIFJD#SLl@0nzPd@`{f+L-AsxF+cmpwEE
z53B2XzTpG&@(f5Wy+IjFlFjAwrM3bKgwiff@i15!stlQQbC|EM;8)6cFjlF;su*h+
z=crrGtzd+;kwM;N8REXY$0sOF2+sIvk(*G^ZW5&D{c`@^v>4TNYH$w_$9ai3YG)^~
z6cf8X^48X3u~g(>$8^ekq5OI3ACrZM&4po-q>VUb9D75Kx4Js_p;Drr#bKP&x<L(g
z)-l-C;rO<BiMThIfQq(MV5SbC#bU0bqor8L8?CXG!8x0n`{<Vyg2Jkt9v!229O2I~
zUb%ZD@*jT}pGH64lOj-ip&QsWFA)d)Ft-G2aj^LV?tg0oA<Ly=dwZLd-kuRRF*AIe
zH2~aUAjYZ<r9toW3zcL#a&`>%1@66M!N*U4dQ1@Am^sBVqgn;ifGCC&9T11C|D7ME
zOmbncs2zko!kD(kiIU##VJ56ICKrfQ=~_)u$HA7qvPJfp5(uw*&%c+_OD~Qw7E^cA
zxNiG*%tx()sX4yA5}r)@)XVXo)>q+|T1sslZ8DSwli7$LCC+@wq6j1(9UZ0I&ljJ)
zfE3FntcIWsNBid?;{HJ2x{F+xyJo^jwu7*ja(K*Ol*LT}`dQ?|uwJi$q>od**}7n{
z$4mD5w(FS@^O-~(T@S^<5h2FkG@E?08r#q66dur0h&oz}rF@8I8Y-qnMG^^hWwbJj
z0`9#bFg1*7)aQf@?VAU2m2;^I2T$7KqB1|2_dHq6jxl{jKM=lLAfuv;n&5OMN;y$r
z5j)+q?N(#!p@|NjGrRz>;6M?%%W6b1sx|%fO*7<kI+Z5Qq-nFse0L?|UgdZITWC>i
zoeFploj#4ec%yl0tahE<-C|;!RXljaXCC(n*OpOv+b>UhVfjqSc%rerIE#wRJBOT1
z^lrPD0`&<~IG&oOJS14NlULe|)axT<v)j4g^^lNDREbL2MupE4#Az}A({>p&S#~%R
zw9pWeXi)!YTdN{VSmU5eo$vZK%Xz8X^==`ZYo<5FWjYbB)T+;IKb#WMR?6=?HkdS<
zAl#Z{z4@q{N+sgdB;Uk?02v+|J<VB4sH`j796SAQ*Mv89sx&pTJIf05W<>3zk3Gy)
z#Gl-H^xyr_KRL;o3DJq7Su~VP*vE5B=fueM@!pU)^qp9rn5Y^g9mBjK4zyU?%2@iY
zRbTw2RWt?fgkW(TVQl6L>oac{{4ZKR&CA_$6!Bujw7>yKxsZ}Dm|7sI3oHRDW`GAa
z>Os#E`sP(FOC#G~DLuE(?H_IgQOGS%TU)=od+c{d8=a9*4%<3A63$AU1MEwq9Si!l
zlR1kx4%_gqjhh?+xybiPnakmsSdgm5Z{3mq)LRORitu-Ec}m0e(qC;p^*7(|H^POX
zJ2KFGVt@6+x3p7C9+KSJ+0iP#j*-~uo~bgeuQq8`mG|%|yT}Fng=6bJQcL8=-rVu|
zcggmMrm0JH7{_UAVE^>K)<63|5qwf+BP;kfw$=;<MPpI(kl8?-X8q(ryY+2#Np(*9
zoNgi?$W3(-o{A>rs~07|bGxQZo@P19#z<uETE*;>Z(aVE?`}<X%7WZe`^WYTH3BIy
z8EaM;i?0F0^gFJa(;G)*GxJ&9t33vIfN3WDZA<LpQo(fgi0&IiOE<Rt#4{f(D=`iJ
z8@J0pe^*{uH8AEL-!Vdj(Za_F$Sg@Y#u72>PS0J$Ut@S0kIV3@B<<x0i|O+nmIthL
zIcZ&?fs(rvpf}7lN$Y?7neH##*9NZW*I%kM@C+}eY&IC8%R-qrmWbQFZF5@2Uz_}Z
z6D=rBPmU<xcPXVVi7jWX%dot`kB5+^?wBM&?h`kQFT8L0(?_e@dmB**t1)YqGfVp*
zHm=Tl#4+%~NrC4!AFlQeo#3@oP8KlGs2j4SL+83Ip8SV-GsZcK!<J9nn*06RmwxLf
zCoKlr!&&->ZoJDjjzgUHh+{)+M};^#s=n|<&DKw`$_XiWN&-s*5e6V#G0Qo0glsv-
z8ixGZ?ZK_fTWSrQGc!w{k!ItD9I5uX=IA^}9JZ^m+Nr2i{D&V7{>cvpXuaRmP5=)v
z%815EW=+mE!EPB)qcqI76r0Z7z6{K*QH-7;qOa#v^EIeGA9tW&xtlJn&-K{ht9wht
zNhXw1VKM*NNBWIrpLwSvV<Sx>L}~={b9-qZU23h%iNF*~l}e=%i`FRe9p<x><r$48
zdUKQIlQ}!z5zi{691kJ`R6IvM`$Q$D=%?Q;^Qi#3;;FFLKI1*yNIsv7{bg;5O-T2Q
zBF-kp0$@LSYv}yeD%r>$@2|@+FM@o;&F?-n{3n|T3v__Bmy<nN<}=Vqu~dRZisR%A
z&@&xNbQ9GyZu%(s<?DnnULb^}`7(&4h)9n9{`XJ(=@Ti5LSLGB=7A(Ts|rF<ER+E8
zGb&|9Wt^TJJ7S47^B!@m+xCVD{0y{^VLm6|Kl#}QPkipt6D;D62|VMq<JqrXztCbK
zg72TEvqD$=gb{24LnWQQO#aKKRp=z0fKxv-6QSTyke7e_jlG}$UT+ZjeoI_AU$KZC
z;*0@$p38+QRcAssGszCKnZa&6w`|^PmGeFakT7dS7-<%;LizU|Jo)DjpCA$A*kz(g
zC(iQWF<}^C&aJO4no+F+wlW*WiaBK`wv%b1D{}?$i9A^v6pDo5oPyte@YtV!zmG){
z8v*+(JLd!l!VulgY%s?Rf{sFt_3F62>cd3GR}$jb*~4=Z@Ng6t0SEn(4}bSNC;#lR
zlQNX-tf};ahbEw(VGoFAi3r$2Lrq&I;v7L7ooV0s!25aF@Fv6)7%BeX>-+z7(|{;M
zU`UBm*0Id}nUze6j2z;+a>jIZ=!()RXHsNsb`$_cGR#R1>LvHt2X_6%4^D=dehD%M
zHd9V!m^1v5CN>b|bo8jpiW9FC#Lw(yGCrG1gCWfsE@{5}+uu0+*N^v$d>}1Q#>+64
zK*Lfu>Sq6w^V!RvQq*ZSliJt(5S$AZeCmM%obX?N`y!K2O6)9uDjZg)s;<(1HY{|h
zQ?taJlyMx-0o2>;80!<tv9-{DeqgWR<Tu~eWs}s{+1YG3=G@y(Zdz8mr5k7xr(oGB
zmOEb|h>yz@KT~&tLBtGxLD_Hr^Y*6M@L%rfVzEvQF@j5*QpZvbc31n!evJ5zPp^q_
z6YN#aeS8Ne2xs}fSjuRbO|ybhns3vK*1C>0q_EfpIc1znnn9S$TB0{$0hDbi=I1@)
z6Riqq=G;4gKm_QT<_e$tmmRgSwSV}5#Q{}3#t@^SCeWOL7*b=Y^?}FNbOl7gUQt+z
z0a^^Z#(@T-Mr#)7pv|?eWQ%%C>q;w&7Q7*y7HupfB|-kwSpDe9lh5xt_TRq!LT9<K
z>5HFauQ@kyt|EReN8@;a0sJt;%(*=K{G*3n98CZA7doz65+resfIRY4Ax)RmnAbkQ
z(pRVB{2Ojl>4n+`1y^1{7OkUgD_Kx5lxs_bGkIpg7po=uxoyY4vw7$DpL_YhKw`8j
zNPF<)Xr)?hYiYf55T`zpj#XRm<%3XZ8ZfeHYyaIxYM;8V^P_KWDFu!s+!EN@F{8?1
zgTL1#<%SBW8&bzEY%wj@n2t4U(P~pziU!*xiL)WKxqJwVx&6q%!_RJe=(*in4h$yR
z<hjj*-zy|1X<hNJZF=z&AH3(vL3~`dP~Ybbef^MGAnVosM&mcXcJTgZTYmNDmj3IT
z^KH3WoB&l1sV}jklQ@2suHo}d>9~r=3DLM=bgs*^_t4HYti055X{@EH8AvYkA-rqf
zz{sOpUi#LLc0IG>*jO!L+~q?irLZip&Tz}(06)%`AKvoO_udf%(X1mr$>F{<-<zI^
zdb`Pcf4npztFs4P%Oy7^Cz%boc<y-Pxv%c~;-=hZ-?i*RZ)!J9tYZX9BXIOjc7~Jn
z(s5ZKqSH#il0+p`&>d@O>k1OJSe)FfsZoVMkT4jk#LxYB-`Ahr_vG{2j-Rf>6QeLF
z6@`yw`L1?8q+?hr44U*84xc{Oe|pWzrL&Is40?cP-Fjag1;9&AakgPT@0@ab2WlVr
za<3)LU%a&&6JXLN;ZhOoC=X^d1vk~<tO>#c)_IL;?;-6yaei@RltP<mBSyiwtu*4N
zcOLuhv%4PNymQZS3|$5JLX<D~4RNOV$fSmj{v!#XRVMkL-+JmVe*NEEPOaiYPBW%t
zvZfL^>B_5b)+i7<X4R*^TfKd4S9e|*TH>4v+rY`8R)?<cO3QTTZMtnWD=)#>HYyHP
z75vvI9{~&5eRS}_AMgL(b9=Y!I#^FMSc_Z~;n)!8gYt}CphJl}JHRrR3;+3<-GB1&
zBnZM;MLY{Iou?CKz%y}KY9s1qMguGa)ix+InjRlK{mpG{pS-;T#J{P5o?BMvOj}p5
z&g)2di4`U0lm?+r(_FwAkB$tDY<g<%LqB}^*&X`_E6q>{Ds#D9KuyXlHo~B8d_p$5
z1s9hf#^{Nm>eE~I-1{?coK?gFDO!s;j-6{>rM1Qdo%@WE;GA}r`0ziy*uv8BW*+#j
z1&d0$HBCEQp~~FT`<lOcM_Vy$@RsFn@z0pjawnz6*S12%;H`r)7M#7j@Ay|X?RaYI
z-rnIc*bFiVS1iucGe?>XXlRc5=J9p{?kS>XU^xl_f8wP>_q^$*R}HRFce&>(Tx}Oy
zfM5af1;iJw1;iH+U$_<!UqF1}T0s1=UH@Nz0RUY$H$fTZ#a;ja002ovPDHLkV1k!|
B#5Mo`

literal 0
HcmV?d00001

diff --git a/oxAuth/Server/src/main/webapp/index.jsp b/oxAuth/Server/src/main/webapp/index.jsp
new file mode 100644
index 00000000..ac27d5d4
--- /dev/null
+++ b/oxAuth/Server/src/main/webapp/index.jsp
@@ -0,0 +1 @@
+<% response.sendRedirect(".well-known/openid-configuration"); %>
\ No newline at end of file
diff --git a/oxAuth/Server/src/main/webapp/js/bootstrap.bundle.min.js b/oxAuth/Server/src/main/webapp/js/bootstrap.bundle.min.js
new file mode 100644
index 00000000..b1999d9a
--- /dev/null
+++ b/oxAuth/Server/src/main/webapp/js/bootstrap.bundle.min.js
@@ -0,0 +1,7 @@
+/*!
+  * Bootstrap v5.3.2 (https://getbootstrap.com/)
+  * Copyright 2011-2023 The Bootstrap Authors (https://github.com/twbs/bootstrap/graphs/contributors)
+  * Licensed under MIT (https://github.com/twbs/bootstrap/blob/main/LICENSE)
+  */
+!function(t,e){"object"==typeof exports&&"undefined"!=typeof module?module.exports=e():"function"==typeof define&&define.amd?define(e):(t="undefined"!=typeof globalThis?globalThis:t||self).bootstrap=e()}(this,(function(){"use strict";const t=new Map,e={set(e,i,n){t.has(e)||t.set(e,new Map);const s=t.get(e);s.has(i)||0===s.size?s.set(i,n):console.error(`Bootstrap doesn't allow more than one instance per element. Bound instance: ${Array.from(s.keys())[0]}.`)},get:(e,i)=>t.has(e)&&t.get(e).get(i)||null,remove(e,i){if(!t.has(e))return;const n=t.get(e);n.delete(i),0===n.size&&t.delete(e)}},i="transitionend",n=t=>(t&&window.CSS&&window.CSS.escape&&(t=t.replace(/#([^\s"#']+)/g,((t,e)=>`#${CSS.escape(e)}`))),t),s=t=>{t.dispatchEvent(new Event(i))},o=t=>!(!t||"object"!=typeof t)&&(void 0!==t.jquery&&(t=t[0]),void 0!==t.nodeType),r=t=>o(t)?t.jquery?t[0]:t:"string"==typeof t&&t.length>0?document.querySelector(n(t)):null,a=t=>{if(!o(t)||0===t.getClientRects().length)return!1;const e="visible"===getComputedStyle(t).getPropertyValue("visibility"),i=t.closest("details:not([open])");if(!i)return e;if(i!==t){const e=t.closest("summary");if(e&&e.parentNode!==i)return!1;if(null===e)return!1}return e},l=t=>!t||t.nodeType!==Node.ELEMENT_NODE||!!t.classList.contains("disabled")||(void 0!==t.disabled?t.disabled:t.hasAttribute("disabled")&&"false"!==t.getAttribute("disabled")),c=t=>{if(!document.documentElement.attachShadow)return null;if("function"==typeof t.getRootNode){const e=t.getRootNode();return e instanceof ShadowRoot?e:null}return t instanceof ShadowRoot?t:t.parentNode?c(t.parentNode):null},h=()=>{},d=t=>{t.offsetHeight},u=()=>window.jQuery&&!document.body.hasAttribute("data-bs-no-jquery")?window.jQuery:null,f=[],p=()=>"rtl"===document.documentElement.dir,m=t=>{var e;e=()=>{const e=u();if(e){const i=t.NAME,n=e.fn[i];e.fn[i]=t.jQueryInterface,e.fn[i].Constructor=t,e.fn[i].noConflict=()=>(e.fn[i]=n,t.jQueryInterface)}},"loading"===document.readyState?(f.length||document.addEventListener("DOMContentLoaded",(()=>{for(const t of f)t()})),f.push(e)):e()},g=(t,e=[],i=t)=>"function"==typeof t?t(...e):i,_=(t,e,n=!0)=>{if(!n)return void g(t);const o=(t=>{if(!t)return 0;let{transitionDuration:e,transitionDelay:i}=window.getComputedStyle(t);const n=Number.parseFloat(e),s=Number.parseFloat(i);return n||s?(e=e.split(",")[0],i=i.split(",")[0],1e3*(Number.parseFloat(e)+Number.parseFloat(i))):0})(e)+5;let r=!1;const a=({target:n})=>{n===e&&(r=!0,e.removeEventListener(i,a),g(t))};e.addEventListener(i,a),setTimeout((()=>{r||s(e)}),o)},b=(t,e,i,n)=>{const s=t.length;let o=t.indexOf(e);return-1===o?!i&&n?t[s-1]:t[0]:(o+=i?1:-1,n&&(o=(o+s)%s),t[Math.max(0,Math.min(o,s-1))])},v=/[^.]*(?=\..*)\.|.*/,y=/\..*/,w=/::\d+$/,A={};let E=1;const T={mouseenter:"mouseover",mouseleave:"mouseout"},C=new Set(["click","dblclick","mouseup","mousedown","contextmenu","mousewheel","DOMMouseScroll","mouseover","mouseout","mousemove","selectstart","selectend","keydown","keypress","keyup","orientationchange","touchstart","touchmove","touchend","touchcancel","pointerdown","pointermove","pointerup","pointerleave","pointercancel","gesturestart","gesturechange","gestureend","focus","blur","change","reset","select","submit","focusin","focusout","load","unload","beforeunload","resize","move","DOMContentLoaded","readystatechange","error","abort","scroll"]);function O(t,e){return e&&`${e}::${E++}`||t.uidEvent||E++}function x(t){const e=O(t);return t.uidEvent=e,A[e]=A[e]||{},A[e]}function k(t,e,i=null){return Object.values(t).find((t=>t.callable===e&&t.delegationSelector===i))}function L(t,e,i){const n="string"==typeof e,s=n?i:e||i;let o=I(t);return C.has(o)||(o=t),[n,s,o]}function S(t,e,i,n,s){if("string"!=typeof e||!t)return;let[o,r,a]=L(e,i,n);if(e in T){const t=t=>function(e){if(!e.relatedTarget||e.relatedTarget!==e.delegateTarget&&!e.delegateTarget.contains(e.relatedTarget))return t.call(this,e)};r=t(r)}const l=x(t),c=l[a]||(l[a]={}),h=k(c,r,o?i:null);if(h)return void(h.oneOff=h.oneOff&&s);const d=O(r,e.replace(v,"")),u=o?function(t,e,i){return function n(s){const o=t.querySelectorAll(e);for(let{target:r}=s;r&&r!==this;r=r.parentNode)for(const a of o)if(a===r)return P(s,{delegateTarget:r}),n.oneOff&&N.off(t,s.type,e,i),i.apply(r,[s])}}(t,i,r):function(t,e){return function i(n){return P(n,{delegateTarget:t}),i.oneOff&&N.off(t,n.type,e),e.apply(t,[n])}}(t,r);u.delegationSelector=o?i:null,u.callable=r,u.oneOff=s,u.uidEvent=d,c[d]=u,t.addEventListener(a,u,o)}function D(t,e,i,n,s){const o=k(e[i],n,s);o&&(t.removeEventListener(i,o,Boolean(s)),delete e[i][o.uidEvent])}function $(t,e,i,n){const s=e[i]||{};for(const[o,r]of Object.entries(s))o.includes(n)&&D(t,e,i,r.callable,r.delegationSelector)}function I(t){return t=t.replace(y,""),T[t]||t}const N={on(t,e,i,n){S(t,e,i,n,!1)},one(t,e,i,n){S(t,e,i,n,!0)},off(t,e,i,n){if("string"!=typeof e||!t)return;const[s,o,r]=L(e,i,n),a=r!==e,l=x(t),c=l[r]||{},h=e.startsWith(".");if(void 0===o){if(h)for(const i of Object.keys(l))$(t,l,i,e.slice(1));for(const[i,n]of Object.entries(c)){const s=i.replace(w,"");a&&!e.includes(s)||D(t,l,r,n.callable,n.delegationSelector)}}else{if(!Object.keys(c).length)return;D(t,l,r,o,s?i:null)}},trigger(t,e,i){if("string"!=typeof e||!t)return null;const n=u();let s=null,o=!0,r=!0,a=!1;e!==I(e)&&n&&(s=n.Event(e,i),n(t).trigger(s),o=!s.isPropagationStopped(),r=!s.isImmediatePropagationStopped(),a=s.isDefaultPrevented());const l=P(new Event(e,{bubbles:o,cancelable:!0}),i);return a&&l.preventDefault(),r&&t.dispatchEvent(l),l.defaultPrevented&&s&&s.preventDefault(),l}};function P(t,e={}){for(const[i,n]of Object.entries(e))try{t[i]=n}catch(e){Object.defineProperty(t,i,{configurable:!0,get:()=>n})}return t}function M(t){if("true"===t)return!0;if("false"===t)return!1;if(t===Number(t).toString())return Number(t);if(""===t||"null"===t)return null;if("string"!=typeof t)return t;try{return JSON.parse(decodeURIComponent(t))}catch(e){return t}}function j(t){return t.replace(/[A-Z]/g,(t=>`-${t.toLowerCase()}`))}const F={setDataAttribute(t,e,i){t.setAttribute(`data-bs-${j(e)}`,i)},removeDataAttribute(t,e){t.removeAttribute(`data-bs-${j(e)}`)},getDataAttributes(t){if(!t)return{};const e={},i=Object.keys(t.dataset).filter((t=>t.startsWith("bs")&&!t.startsWith("bsConfig")));for(const n of i){let i=n.replace(/^bs/,"");i=i.charAt(0).toLowerCase()+i.slice(1,i.length),e[i]=M(t.dataset[n])}return e},getDataAttribute:(t,e)=>M(t.getAttribute(`data-bs-${j(e)}`))};class H{static get Default(){return{}}static get DefaultType(){return{}}static get NAME(){throw new Error('You have to implement the static method "NAME", for each component!')}_getConfig(t){return t=this._mergeConfigObj(t),t=this._configAfterMerge(t),this._typeCheckConfig(t),t}_configAfterMerge(t){return t}_mergeConfigObj(t,e){const i=o(e)?F.getDataAttribute(e,"config"):{};return{...this.constructor.Default,..."object"==typeof i?i:{},...o(e)?F.getDataAttributes(e):{},..."object"==typeof t?t:{}}}_typeCheckConfig(t,e=this.constructor.DefaultType){for(const[n,s]of Object.entries(e)){const e=t[n],r=o(e)?"element":null==(i=e)?`${i}`:Object.prototype.toString.call(i).match(/\s([a-z]+)/i)[1].toLowerCase();if(!new RegExp(s).test(r))throw new TypeError(`${this.constructor.NAME.toUpperCase()}: Option "${n}" provided type "${r}" but expected type "${s}".`)}var i}}class W extends H{constructor(t,i){super(),(t=r(t))&&(this._element=t,this._config=this._getConfig(i),e.set(this._element,this.constructor.DATA_KEY,this))}dispose(){e.remove(this._element,this.constructor.DATA_KEY),N.off(this._element,this.constructor.EVENT_KEY);for(const t of Object.getOwnPropertyNames(this))this[t]=null}_queueCallback(t,e,i=!0){_(t,e,i)}_getConfig(t){return t=this._mergeConfigObj(t,this._element),t=this._configAfterMerge(t),this._typeCheckConfig(t),t}static getInstance(t){return e.get(r(t),this.DATA_KEY)}static getOrCreateInstance(t,e={}){return this.getInstance(t)||new this(t,"object"==typeof e?e:null)}static get VERSION(){return"5.3.2"}static get DATA_KEY(){return`bs.${this.NAME}`}static get EVENT_KEY(){return`.${this.DATA_KEY}`}static eventName(t){return`${t}${this.EVENT_KEY}`}}const B=t=>{let e=t.getAttribute("data-bs-target");if(!e||"#"===e){let i=t.getAttribute("href");if(!i||!i.includes("#")&&!i.startsWith("."))return null;i.includes("#")&&!i.startsWith("#")&&(i=`#${i.split("#")[1]}`),e=i&&"#"!==i?n(i.trim()):null}return e},z={find:(t,e=document.documentElement)=>[].concat(...Element.prototype.querySelectorAll.call(e,t)),findOne:(t,e=document.documentElement)=>Element.prototype.querySelector.call(e,t),children:(t,e)=>[].concat(...t.children).filter((t=>t.matches(e))),parents(t,e){const i=[];let n=t.parentNode.closest(e);for(;n;)i.push(n),n=n.parentNode.closest(e);return i},prev(t,e){let i=t.previousElementSibling;for(;i;){if(i.matches(e))return[i];i=i.previousElementSibling}return[]},next(t,e){let i=t.nextElementSibling;for(;i;){if(i.matches(e))return[i];i=i.nextElementSibling}return[]},focusableChildren(t){const e=["a","button","input","textarea","select","details","[tabindex]",'[contenteditable="true"]'].map((t=>`${t}:not([tabindex^="-"])`)).join(",");return this.find(e,t).filter((t=>!l(t)&&a(t)))},getSelectorFromElement(t){const e=B(t);return e&&z.findOne(e)?e:null},getElementFromSelector(t){const e=B(t);return e?z.findOne(e):null},getMultipleElementsFromSelector(t){const e=B(t);return e?z.find(e):[]}},R=(t,e="hide")=>{const i=`click.dismiss${t.EVENT_KEY}`,n=t.NAME;N.on(document,i,`[data-bs-dismiss="${n}"]`,(function(i){if(["A","AREA"].includes(this.tagName)&&i.preventDefault(),l(this))return;const s=z.getElementFromSelector(this)||this.closest(`.${n}`);t.getOrCreateInstance(s)[e]()}))},q=".bs.alert",V=`close${q}`,K=`closed${q}`;class Q extends W{static get NAME(){return"alert"}close(){if(N.trigger(this._element,V).defaultPrevented)return;this._element.classList.remove("show");const t=this._element.classList.contains("fade");this._queueCallback((()=>this._destroyElement()),this._element,t)}_destroyElement(){this._element.remove(),N.trigger(this._element,K),this.dispose()}static jQueryInterface(t){return this.each((function(){const e=Q.getOrCreateInstance(this);if("string"==typeof t){if(void 0===e[t]||t.startsWith("_")||"constructor"===t)throw new TypeError(`No method named "${t}"`);e[t](this)}}))}}R(Q,"close"),m(Q);const X='[data-bs-toggle="button"]';class Y extends W{static get NAME(){return"button"}toggle(){this._element.setAttribute("aria-pressed",this._element.classList.toggle("active"))}static jQueryInterface(t){return this.each((function(){const e=Y.getOrCreateInstance(this);"toggle"===t&&e[t]()}))}}N.on(document,"click.bs.button.data-api",X,(t=>{t.preventDefault();const e=t.target.closest(X);Y.getOrCreateInstance(e).toggle()})),m(Y);const U=".bs.swipe",G=`touchstart${U}`,J=`touchmove${U}`,Z=`touchend${U}`,tt=`pointerdown${U}`,et=`pointerup${U}`,it={endCallback:null,leftCallback:null,rightCallback:null},nt={endCallback:"(function|null)",leftCallback:"(function|null)",rightCallback:"(function|null)"};class st extends H{constructor(t,e){super(),this._element=t,t&&st.isSupported()&&(this._config=this._getConfig(e),this._deltaX=0,this._supportPointerEvents=Boolean(window.PointerEvent),this._initEvents())}static get Default(){return it}static get DefaultType(){return nt}static get NAME(){return"swipe"}dispose(){N.off(this._element,U)}_start(t){this._supportPointerEvents?this._eventIsPointerPenTouch(t)&&(this._deltaX=t.clientX):this._deltaX=t.touches[0].clientX}_end(t){this._eventIsPointerPenTouch(t)&&(this._deltaX=t.clientX-this._deltaX),this._handleSwipe(),g(this._config.endCallback)}_move(t){this._deltaX=t.touches&&t.touches.length>1?0:t.touches[0].clientX-this._deltaX}_handleSwipe(){const t=Math.abs(this._deltaX);if(t<=40)return;const e=t/this._deltaX;this._deltaX=0,e&&g(e>0?this._config.rightCallback:this._config.leftCallback)}_initEvents(){this._supportPointerEvents?(N.on(this._element,tt,(t=>this._start(t))),N.on(this._element,et,(t=>this._end(t))),this._element.classList.add("pointer-event")):(N.on(this._element,G,(t=>this._start(t))),N.on(this._element,J,(t=>this._move(t))),N.on(this._element,Z,(t=>this._end(t))))}_eventIsPointerPenTouch(t){return this._supportPointerEvents&&("pen"===t.pointerType||"touch"===t.pointerType)}static isSupported(){return"ontouchstart"in document.documentElement||navigator.maxTouchPoints>0}}const ot=".bs.carousel",rt=".data-api",at="next",lt="prev",ct="left",ht="right",dt=`slide${ot}`,ut=`slid${ot}`,ft=`keydown${ot}`,pt=`mouseenter${ot}`,mt=`mouseleave${ot}`,gt=`dragstart${ot}`,_t=`load${ot}${rt}`,bt=`click${ot}${rt}`,vt="carousel",yt="active",wt=".active",At=".carousel-item",Et=wt+At,Tt={ArrowLeft:ht,ArrowRight:ct},Ct={interval:5e3,keyboard:!0,pause:"hover",ride:!1,touch:!0,wrap:!0},Ot={interval:"(number|boolean)",keyboard:"boolean",pause:"(string|boolean)",ride:"(boolean|string)",touch:"boolean",wrap:"boolean"};class xt extends W{constructor(t,e){super(t,e),this._interval=null,this._activeElement=null,this._isSliding=!1,this.touchTimeout=null,this._swipeHelper=null,this._indicatorsElement=z.findOne(".carousel-indicators",this._element),this._addEventListeners(),this._config.ride===vt&&this.cycle()}static get Default(){return Ct}static get DefaultType(){return Ot}static get NAME(){return"carousel"}next(){this._slide(at)}nextWhenVisible(){!document.hidden&&a(this._element)&&this.next()}prev(){this._slide(lt)}pause(){this._isSliding&&s(this._element),this._clearInterval()}cycle(){this._clearInterval(),this._updateInterval(),this._interval=setInterval((()=>this.nextWhenVisible()),this._config.interval)}_maybeEnableCycle(){this._config.ride&&(this._isSliding?N.one(this._element,ut,(()=>this.cycle())):this.cycle())}to(t){const e=this._getItems();if(t>e.length-1||t<0)return;if(this._isSliding)return void N.one(this._element,ut,(()=>this.to(t)));const i=this._getItemIndex(this._getActive());if(i===t)return;const n=t>i?at:lt;this._slide(n,e[t])}dispose(){this._swipeHelper&&this._swipeHelper.dispose(),super.dispose()}_configAfterMerge(t){return t.defaultInterval=t.interval,t}_addEventListeners(){this._config.keyboard&&N.on(this._element,ft,(t=>this._keydown(t))),"hover"===this._config.pause&&(N.on(this._element,pt,(()=>this.pause())),N.on(this._element,mt,(()=>this._maybeEnableCycle()))),this._config.touch&&st.isSupported()&&this._addTouchEventListeners()}_addTouchEventListeners(){for(const t of z.find(".carousel-item img",this._element))N.on(t,gt,(t=>t.preventDefault()));const t={leftCallback:()=>this._slide(this._directionToOrder(ct)),rightCallback:()=>this._slide(this._directionToOrder(ht)),endCallback:()=>{"hover"===this._config.pause&&(this.pause(),this.touchTimeout&&clearTimeout(this.touchTimeout),this.touchTimeout=setTimeout((()=>this._maybeEnableCycle()),500+this._config.interval))}};this._swipeHelper=new st(this._element,t)}_keydown(t){if(/input|textarea/i.test(t.target.tagName))return;const e=Tt[t.key];e&&(t.preventDefault(),this._slide(this._directionToOrder(e)))}_getItemIndex(t){return this._getItems().indexOf(t)}_setActiveIndicatorElement(t){if(!this._indicatorsElement)return;const e=z.findOne(wt,this._indicatorsElement);e.classList.remove(yt),e.removeAttribute("aria-current");const i=z.findOne(`[data-bs-slide-to="${t}"]`,this._indicatorsElement);i&&(i.classList.add(yt),i.setAttribute("aria-current","true"))}_updateInterval(){const t=this._activeElement||this._getActive();if(!t)return;const e=Number.parseInt(t.getAttribute("data-bs-interval"),10);this._config.interval=e||this._config.defaultInterval}_slide(t,e=null){if(this._isSliding)return;const i=this._getActive(),n=t===at,s=e||b(this._getItems(),i,n,this._config.wrap);if(s===i)return;const o=this._getItemIndex(s),r=e=>N.trigger(this._element,e,{relatedTarget:s,direction:this._orderToDirection(t),from:this._getItemIndex(i),to:o});if(r(dt).defaultPrevented)return;if(!i||!s)return;const a=Boolean(this._interval);this.pause(),this._isSliding=!0,this._setActiveIndicatorElement(o),this._activeElement=s;const l=n?"carousel-item-start":"carousel-item-end",c=n?"carousel-item-next":"carousel-item-prev";s.classList.add(c),d(s),i.classList.add(l),s.classList.add(l),this._queueCallback((()=>{s.classList.remove(l,c),s.classList.add(yt),i.classList.remove(yt,c,l),this._isSliding=!1,r(ut)}),i,this._isAnimated()),a&&this.cycle()}_isAnimated(){return this._element.classList.contains("slide")}_getActive(){return z.findOne(Et,this._element)}_getItems(){return z.find(At,this._element)}_clearInterval(){this._interval&&(clearInterval(this._interval),this._interval=null)}_directionToOrder(t){return p()?t===ct?lt:at:t===ct?at:lt}_orderToDirection(t){return p()?t===lt?ct:ht:t===lt?ht:ct}static jQueryInterface(t){return this.each((function(){const e=xt.getOrCreateInstance(this,t);if("number"!=typeof t){if("string"==typeof t){if(void 0===e[t]||t.startsWith("_")||"constructor"===t)throw new TypeError(`No method named "${t}"`);e[t]()}}else e.to(t)}))}}N.on(document,bt,"[data-bs-slide], [data-bs-slide-to]",(function(t){const e=z.getElementFromSelector(this);if(!e||!e.classList.contains(vt))return;t.preventDefault();const i=xt.getOrCreateInstance(e),n=this.getAttribute("data-bs-slide-to");return n?(i.to(n),void i._maybeEnableCycle()):"next"===F.getDataAttribute(this,"slide")?(i.next(),void i._maybeEnableCycle()):(i.prev(),void i._maybeEnableCycle())})),N.on(window,_t,(()=>{const t=z.find('[data-bs-ride="carousel"]');for(const e of t)xt.getOrCreateInstance(e)})),m(xt);const kt=".bs.collapse",Lt=`show${kt}`,St=`shown${kt}`,Dt=`hide${kt}`,$t=`hidden${kt}`,It=`click${kt}.data-api`,Nt="show",Pt="collapse",Mt="collapsing",jt=`:scope .${Pt} .${Pt}`,Ft='[data-bs-toggle="collapse"]',Ht={parent:null,toggle:!0},Wt={parent:"(null|element)",toggle:"boolean"};class Bt extends W{constructor(t,e){super(t,e),this._isTransitioning=!1,this._triggerArray=[];const i=z.find(Ft);for(const t of i){const e=z.getSelectorFromElement(t),i=z.find(e).filter((t=>t===this._element));null!==e&&i.length&&this._triggerArray.push(t)}this._initializeChildren(),this._config.parent||this._addAriaAndCollapsedClass(this._triggerArray,this._isShown()),this._config.toggle&&this.toggle()}static get Default(){return Ht}static get DefaultType(){return Wt}static get NAME(){return"collapse"}toggle(){this._isShown()?this.hide():this.show()}show(){if(this._isTransitioning||this._isShown())return;let t=[];if(this._config.parent&&(t=this._getFirstLevelChildren(".collapse.show, .collapse.collapsing").filter((t=>t!==this._element)).map((t=>Bt.getOrCreateInstance(t,{toggle:!1})))),t.length&&t[0]._isTransitioning)return;if(N.trigger(this._element,Lt).defaultPrevented)return;for(const e of t)e.hide();const e=this._getDimension();this._element.classList.remove(Pt),this._element.classList.add(Mt),this._element.style[e]=0,this._addAriaAndCollapsedClass(this._triggerArray,!0),this._isTransitioning=!0;const i=`scroll${e[0].toUpperCase()+e.slice(1)}`;this._queueCallback((()=>{this._isTransitioning=!1,this._element.classList.remove(Mt),this._element.classList.add(Pt,Nt),this._element.style[e]="",N.trigger(this._element,St)}),this._element,!0),this._element.style[e]=`${this._element[i]}px`}hide(){if(this._isTransitioning||!this._isShown())return;if(N.trigger(this._element,Dt).defaultPrevented)return;const t=this._getDimension();this._element.style[t]=`${this._element.getBoundingClientRect()[t]}px`,d(this._element),this._element.classList.add(Mt),this._element.classList.remove(Pt,Nt);for(const t of this._triggerArray){const e=z.getElementFromSelector(t);e&&!this._isShown(e)&&this._addAriaAndCollapsedClass([t],!1)}this._isTransitioning=!0,this._element.style[t]="",this._queueCallback((()=>{this._isTransitioning=!1,this._element.classList.remove(Mt),this._element.classList.add(Pt),N.trigger(this._element,$t)}),this._element,!0)}_isShown(t=this._element){return t.classList.contains(Nt)}_configAfterMerge(t){return t.toggle=Boolean(t.toggle),t.parent=r(t.parent),t}_getDimension(){return this._element.classList.contains("collapse-horizontal")?"width":"height"}_initializeChildren(){if(!this._config.parent)return;const t=this._getFirstLevelChildren(Ft);for(const e of t){const t=z.getElementFromSelector(e);t&&this._addAriaAndCollapsedClass([e],this._isShown(t))}}_getFirstLevelChildren(t){const e=z.find(jt,this._config.parent);return z.find(t,this._config.parent).filter((t=>!e.includes(t)))}_addAriaAndCollapsedClass(t,e){if(t.length)for(const i of t)i.classList.toggle("collapsed",!e),i.setAttribute("aria-expanded",e)}static jQueryInterface(t){const e={};return"string"==typeof t&&/show|hide/.test(t)&&(e.toggle=!1),this.each((function(){const i=Bt.getOrCreateInstance(this,e);if("string"==typeof t){if(void 0===i[t])throw new TypeError(`No method named "${t}"`);i[t]()}}))}}N.on(document,It,Ft,(function(t){("A"===t.target.tagName||t.delegateTarget&&"A"===t.delegateTarget.tagName)&&t.preventDefault();for(const t of z.getMultipleElementsFromSelector(this))Bt.getOrCreateInstance(t,{toggle:!1}).toggle()})),m(Bt);var zt="top",Rt="bottom",qt="right",Vt="left",Kt="auto",Qt=[zt,Rt,qt,Vt],Xt="start",Yt="end",Ut="clippingParents",Gt="viewport",Jt="popper",Zt="reference",te=Qt.reduce((function(t,e){return t.concat([e+"-"+Xt,e+"-"+Yt])}),[]),ee=[].concat(Qt,[Kt]).reduce((function(t,e){return t.concat([e,e+"-"+Xt,e+"-"+Yt])}),[]),ie="beforeRead",ne="read",se="afterRead",oe="beforeMain",re="main",ae="afterMain",le="beforeWrite",ce="write",he="afterWrite",de=[ie,ne,se,oe,re,ae,le,ce,he];function ue(t){return t?(t.nodeName||"").toLowerCase():null}function fe(t){if(null==t)return window;if("[object Window]"!==t.toString()){var e=t.ownerDocument;return e&&e.defaultView||window}return t}function pe(t){return t instanceof fe(t).Element||t instanceof Element}function me(t){return t instanceof fe(t).HTMLElement||t instanceof HTMLElement}function ge(t){return"undefined"!=typeof ShadowRoot&&(t instanceof fe(t).ShadowRoot||t instanceof ShadowRoot)}const _e={name:"applyStyles",enabled:!0,phase:"write",fn:function(t){var e=t.state;Object.keys(e.elements).forEach((function(t){var i=e.styles[t]||{},n=e.attributes[t]||{},s=e.elements[t];me(s)&&ue(s)&&(Object.assign(s.style,i),Object.keys(n).forEach((function(t){var e=n[t];!1===e?s.removeAttribute(t):s.setAttribute(t,!0===e?"":e)})))}))},effect:function(t){var e=t.state,i={popper:{position:e.options.strategy,left:"0",top:"0",margin:"0"},arrow:{position:"absolute"},reference:{}};return Object.assign(e.elements.popper.style,i.popper),e.styles=i,e.elements.arrow&&Object.assign(e.elements.arrow.style,i.arrow),function(){Object.keys(e.elements).forEach((function(t){var n=e.elements[t],s=e.attributes[t]||{},o=Object.keys(e.styles.hasOwnProperty(t)?e.styles[t]:i[t]).reduce((function(t,e){return t[e]="",t}),{});me(n)&&ue(n)&&(Object.assign(n.style,o),Object.keys(s).forEach((function(t){n.removeAttribute(t)})))}))}},requires:["computeStyles"]};function be(t){return t.split("-")[0]}var ve=Math.max,ye=Math.min,we=Math.round;function Ae(){var t=navigator.userAgentData;return null!=t&&t.brands&&Array.isArray(t.brands)?t.brands.map((function(t){return t.brand+"/"+t.version})).join(" "):navigator.userAgent}function Ee(){return!/^((?!chrome|android).)*safari/i.test(Ae())}function Te(t,e,i){void 0===e&&(e=!1),void 0===i&&(i=!1);var n=t.getBoundingClientRect(),s=1,o=1;e&&me(t)&&(s=t.offsetWidth>0&&we(n.width)/t.offsetWidth||1,o=t.offsetHeight>0&&we(n.height)/t.offsetHeight||1);var r=(pe(t)?fe(t):window).visualViewport,a=!Ee()&&i,l=(n.left+(a&&r?r.offsetLeft:0))/s,c=(n.top+(a&&r?r.offsetTop:0))/o,h=n.width/s,d=n.height/o;return{width:h,height:d,top:c,right:l+h,bottom:c+d,left:l,x:l,y:c}}function Ce(t){var e=Te(t),i=t.offsetWidth,n=t.offsetHeight;return Math.abs(e.width-i)<=1&&(i=e.width),Math.abs(e.height-n)<=1&&(n=e.height),{x:t.offsetLeft,y:t.offsetTop,width:i,height:n}}function Oe(t,e){var i=e.getRootNode&&e.getRootNode();if(t.contains(e))return!0;if(i&&ge(i)){var n=e;do{if(n&&t.isSameNode(n))return!0;n=n.parentNode||n.host}while(n)}return!1}function xe(t){return fe(t).getComputedStyle(t)}function ke(t){return["table","td","th"].indexOf(ue(t))>=0}function Le(t){return((pe(t)?t.ownerDocument:t.document)||window.document).documentElement}function Se(t){return"html"===ue(t)?t:t.assignedSlot||t.parentNode||(ge(t)?t.host:null)||Le(t)}function De(t){return me(t)&&"fixed"!==xe(t).position?t.offsetParent:null}function $e(t){for(var e=fe(t),i=De(t);i&&ke(i)&&"static"===xe(i).position;)i=De(i);return i&&("html"===ue(i)||"body"===ue(i)&&"static"===xe(i).position)?e:i||function(t){var e=/firefox/i.test(Ae());if(/Trident/i.test(Ae())&&me(t)&&"fixed"===xe(t).position)return null;var i=Se(t);for(ge(i)&&(i=i.host);me(i)&&["html","body"].indexOf(ue(i))<0;){var n=xe(i);if("none"!==n.transform||"none"!==n.perspective||"paint"===n.contain||-1!==["transform","perspective"].indexOf(n.willChange)||e&&"filter"===n.willChange||e&&n.filter&&"none"!==n.filter)return i;i=i.parentNode}return null}(t)||e}function Ie(t){return["top","bottom"].indexOf(t)>=0?"x":"y"}function Ne(t,e,i){return ve(t,ye(e,i))}function Pe(t){return Object.assign({},{top:0,right:0,bottom:0,left:0},t)}function Me(t,e){return e.reduce((function(e,i){return e[i]=t,e}),{})}const je={name:"arrow",enabled:!0,phase:"main",fn:function(t){var e,i=t.state,n=t.name,s=t.options,o=i.elements.arrow,r=i.modifiersData.popperOffsets,a=be(i.placement),l=Ie(a),c=[Vt,qt].indexOf(a)>=0?"height":"width";if(o&&r){var h=function(t,e){return Pe("number"!=typeof(t="function"==typeof t?t(Object.assign({},e.rects,{placement:e.placement})):t)?t:Me(t,Qt))}(s.padding,i),d=Ce(o),u="y"===l?zt:Vt,f="y"===l?Rt:qt,p=i.rects.reference[c]+i.rects.reference[l]-r[l]-i.rects.popper[c],m=r[l]-i.rects.reference[l],g=$e(o),_=g?"y"===l?g.clientHeight||0:g.clientWidth||0:0,b=p/2-m/2,v=h[u],y=_-d[c]-h[f],w=_/2-d[c]/2+b,A=Ne(v,w,y),E=l;i.modifiersData[n]=((e={})[E]=A,e.centerOffset=A-w,e)}},effect:function(t){var e=t.state,i=t.options.element,n=void 0===i?"[data-popper-arrow]":i;null!=n&&("string"!=typeof n||(n=e.elements.popper.querySelector(n)))&&Oe(e.elements.popper,n)&&(e.elements.arrow=n)},requires:["popperOffsets"],requiresIfExists:["preventOverflow"]};function Fe(t){return t.split("-")[1]}var He={top:"auto",right:"auto",bottom:"auto",left:"auto"};function We(t){var e,i=t.popper,n=t.popperRect,s=t.placement,o=t.variation,r=t.offsets,a=t.position,l=t.gpuAcceleration,c=t.adaptive,h=t.roundOffsets,d=t.isFixed,u=r.x,f=void 0===u?0:u,p=r.y,m=void 0===p?0:p,g="function"==typeof h?h({x:f,y:m}):{x:f,y:m};f=g.x,m=g.y;var _=r.hasOwnProperty("x"),b=r.hasOwnProperty("y"),v=Vt,y=zt,w=window;if(c){var A=$e(i),E="clientHeight",T="clientWidth";A===fe(i)&&"static"!==xe(A=Le(i)).position&&"absolute"===a&&(E="scrollHeight",T="scrollWidth"),(s===zt||(s===Vt||s===qt)&&o===Yt)&&(y=Rt,m-=(d&&A===w&&w.visualViewport?w.visualViewport.height:A[E])-n.height,m*=l?1:-1),s!==Vt&&(s!==zt&&s!==Rt||o!==Yt)||(v=qt,f-=(d&&A===w&&w.visualViewport?w.visualViewport.width:A[T])-n.width,f*=l?1:-1)}var C,O=Object.assign({position:a},c&&He),x=!0===h?function(t,e){var i=t.x,n=t.y,s=e.devicePixelRatio||1;return{x:we(i*s)/s||0,y:we(n*s)/s||0}}({x:f,y:m},fe(i)):{x:f,y:m};return f=x.x,m=x.y,l?Object.assign({},O,((C={})[y]=b?"0":"",C[v]=_?"0":"",C.transform=(w.devicePixelRatio||1)<=1?"translate("+f+"px, "+m+"px)":"translate3d("+f+"px, "+m+"px, 0)",C)):Object.assign({},O,((e={})[y]=b?m+"px":"",e[v]=_?f+"px":"",e.transform="",e))}const Be={name:"computeStyles",enabled:!0,phase:"beforeWrite",fn:function(t){var e=t.state,i=t.options,n=i.gpuAcceleration,s=void 0===n||n,o=i.adaptive,r=void 0===o||o,a=i.roundOffsets,l=void 0===a||a,c={placement:be(e.placement),variation:Fe(e.placement),popper:e.elements.popper,popperRect:e.rects.popper,gpuAcceleration:s,isFixed:"fixed"===e.options.strategy};null!=e.modifiersData.popperOffsets&&(e.styles.popper=Object.assign({},e.styles.popper,We(Object.assign({},c,{offsets:e.modifiersData.popperOffsets,position:e.options.strategy,adaptive:r,roundOffsets:l})))),null!=e.modifiersData.arrow&&(e.styles.arrow=Object.assign({},e.styles.arrow,We(Object.assign({},c,{offsets:e.modifiersData.arrow,position:"absolute",adaptive:!1,roundOffsets:l})))),e.attributes.popper=Object.assign({},e.attributes.popper,{"data-popper-placement":e.placement})},data:{}};var ze={passive:!0};const Re={name:"eventListeners",enabled:!0,phase:"write",fn:function(){},effect:function(t){var e=t.state,i=t.instance,n=t.options,s=n.scroll,o=void 0===s||s,r=n.resize,a=void 0===r||r,l=fe(e.elements.popper),c=[].concat(e.scrollParents.reference,e.scrollParents.popper);return o&&c.forEach((function(t){t.addEventListener("scroll",i.update,ze)})),a&&l.addEventListener("resize",i.update,ze),function(){o&&c.forEach((function(t){t.removeEventListener("scroll",i.update,ze)})),a&&l.removeEventListener("resize",i.update,ze)}},data:{}};var qe={left:"right",right:"left",bottom:"top",top:"bottom"};function Ve(t){return t.replace(/left|right|bottom|top/g,(function(t){return qe[t]}))}var Ke={start:"end",end:"start"};function Qe(t){return t.replace(/start|end/g,(function(t){return Ke[t]}))}function Xe(t){var e=fe(t);return{scrollLeft:e.pageXOffset,scrollTop:e.pageYOffset}}function Ye(t){return Te(Le(t)).left+Xe(t).scrollLeft}function Ue(t){var e=xe(t),i=e.overflow,n=e.overflowX,s=e.overflowY;return/auto|scroll|overlay|hidden/.test(i+s+n)}function Ge(t){return["html","body","#document"].indexOf(ue(t))>=0?t.ownerDocument.body:me(t)&&Ue(t)?t:Ge(Se(t))}function Je(t,e){var i;void 0===e&&(e=[]);var n=Ge(t),s=n===(null==(i=t.ownerDocument)?void 0:i.body),o=fe(n),r=s?[o].concat(o.visualViewport||[],Ue(n)?n:[]):n,a=e.concat(r);return s?a:a.concat(Je(Se(r)))}function Ze(t){return Object.assign({},t,{left:t.x,top:t.y,right:t.x+t.width,bottom:t.y+t.height})}function ti(t,e,i){return e===Gt?Ze(function(t,e){var i=fe(t),n=Le(t),s=i.visualViewport,o=n.clientWidth,r=n.clientHeight,a=0,l=0;if(s){o=s.width,r=s.height;var c=Ee();(c||!c&&"fixed"===e)&&(a=s.offsetLeft,l=s.offsetTop)}return{width:o,height:r,x:a+Ye(t),y:l}}(t,i)):pe(e)?function(t,e){var i=Te(t,!1,"fixed"===e);return i.top=i.top+t.clientTop,i.left=i.left+t.clientLeft,i.bottom=i.top+t.clientHeight,i.right=i.left+t.clientWidth,i.width=t.clientWidth,i.height=t.clientHeight,i.x=i.left,i.y=i.top,i}(e,i):Ze(function(t){var e,i=Le(t),n=Xe(t),s=null==(e=t.ownerDocument)?void 0:e.body,o=ve(i.scrollWidth,i.clientWidth,s?s.scrollWidth:0,s?s.clientWidth:0),r=ve(i.scrollHeight,i.clientHeight,s?s.scrollHeight:0,s?s.clientHeight:0),a=-n.scrollLeft+Ye(t),l=-n.scrollTop;return"rtl"===xe(s||i).direction&&(a+=ve(i.clientWidth,s?s.clientWidth:0)-o),{width:o,height:r,x:a,y:l}}(Le(t)))}function ei(t){var e,i=t.reference,n=t.element,s=t.placement,o=s?be(s):null,r=s?Fe(s):null,a=i.x+i.width/2-n.width/2,l=i.y+i.height/2-n.height/2;switch(o){case zt:e={x:a,y:i.y-n.height};break;case Rt:e={x:a,y:i.y+i.height};break;case qt:e={x:i.x+i.width,y:l};break;case Vt:e={x:i.x-n.width,y:l};break;default:e={x:i.x,y:i.y}}var c=o?Ie(o):null;if(null!=c){var h="y"===c?"height":"width";switch(r){case Xt:e[c]=e[c]-(i[h]/2-n[h]/2);break;case Yt:e[c]=e[c]+(i[h]/2-n[h]/2)}}return e}function ii(t,e){void 0===e&&(e={});var i=e,n=i.placement,s=void 0===n?t.placement:n,o=i.strategy,r=void 0===o?t.strategy:o,a=i.boundary,l=void 0===a?Ut:a,c=i.rootBoundary,h=void 0===c?Gt:c,d=i.elementContext,u=void 0===d?Jt:d,f=i.altBoundary,p=void 0!==f&&f,m=i.padding,g=void 0===m?0:m,_=Pe("number"!=typeof g?g:Me(g,Qt)),b=u===Jt?Zt:Jt,v=t.rects.popper,y=t.elements[p?b:u],w=function(t,e,i,n){var s="clippingParents"===e?function(t){var e=Je(Se(t)),i=["absolute","fixed"].indexOf(xe(t).position)>=0&&me(t)?$e(t):t;return pe(i)?e.filter((function(t){return pe(t)&&Oe(t,i)&&"body"!==ue(t)})):[]}(t):[].concat(e),o=[].concat(s,[i]),r=o[0],a=o.reduce((function(e,i){var s=ti(t,i,n);return e.top=ve(s.top,e.top),e.right=ye(s.right,e.right),e.bottom=ye(s.bottom,e.bottom),e.left=ve(s.left,e.left),e}),ti(t,r,n));return a.width=a.right-a.left,a.height=a.bottom-a.top,a.x=a.left,a.y=a.top,a}(pe(y)?y:y.contextElement||Le(t.elements.popper),l,h,r),A=Te(t.elements.reference),E=ei({reference:A,element:v,strategy:"absolute",placement:s}),T=Ze(Object.assign({},v,E)),C=u===Jt?T:A,O={top:w.top-C.top+_.top,bottom:C.bottom-w.bottom+_.bottom,left:w.left-C.left+_.left,right:C.right-w.right+_.right},x=t.modifiersData.offset;if(u===Jt&&x){var k=x[s];Object.keys(O).forEach((function(t){var e=[qt,Rt].indexOf(t)>=0?1:-1,i=[zt,Rt].indexOf(t)>=0?"y":"x";O[t]+=k[i]*e}))}return O}function ni(t,e){void 0===e&&(e={});var i=e,n=i.placement,s=i.boundary,o=i.rootBoundary,r=i.padding,a=i.flipVariations,l=i.allowedAutoPlacements,c=void 0===l?ee:l,h=Fe(n),d=h?a?te:te.filter((function(t){return Fe(t)===h})):Qt,u=d.filter((function(t){return c.indexOf(t)>=0}));0===u.length&&(u=d);var f=u.reduce((function(e,i){return e[i]=ii(t,{placement:i,boundary:s,rootBoundary:o,padding:r})[be(i)],e}),{});return Object.keys(f).sort((function(t,e){return f[t]-f[e]}))}const si={name:"flip",enabled:!0,phase:"main",fn:function(t){var e=t.state,i=t.options,n=t.name;if(!e.modifiersData[n]._skip){for(var s=i.mainAxis,o=void 0===s||s,r=i.altAxis,a=void 0===r||r,l=i.fallbackPlacements,c=i.padding,h=i.boundary,d=i.rootBoundary,u=i.altBoundary,f=i.flipVariations,p=void 0===f||f,m=i.allowedAutoPlacements,g=e.options.placement,_=be(g),b=l||(_!==g&&p?function(t){if(be(t)===Kt)return[];var e=Ve(t);return[Qe(t),e,Qe(e)]}(g):[Ve(g)]),v=[g].concat(b).reduce((function(t,i){return t.concat(be(i)===Kt?ni(e,{placement:i,boundary:h,rootBoundary:d,padding:c,flipVariations:p,allowedAutoPlacements:m}):i)}),[]),y=e.rects.reference,w=e.rects.popper,A=new Map,E=!0,T=v[0],C=0;C<v.length;C++){var O=v[C],x=be(O),k=Fe(O)===Xt,L=[zt,Rt].indexOf(x)>=0,S=L?"width":"height",D=ii(e,{placement:O,boundary:h,rootBoundary:d,altBoundary:u,padding:c}),$=L?k?qt:Vt:k?Rt:zt;y[S]>w[S]&&($=Ve($));var I=Ve($),N=[];if(o&&N.push(D[x]<=0),a&&N.push(D[$]<=0,D[I]<=0),N.every((function(t){return t}))){T=O,E=!1;break}A.set(O,N)}if(E)for(var P=function(t){var e=v.find((function(e){var i=A.get(e);if(i)return i.slice(0,t).every((function(t){return t}))}));if(e)return T=e,"break"},M=p?3:1;M>0&&"break"!==P(M);M--);e.placement!==T&&(e.modifiersData[n]._skip=!0,e.placement=T,e.reset=!0)}},requiresIfExists:["offset"],data:{_skip:!1}};function oi(t,e,i){return void 0===i&&(i={x:0,y:0}),{top:t.top-e.height-i.y,right:t.right-e.width+i.x,bottom:t.bottom-e.height+i.y,left:t.left-e.width-i.x}}function ri(t){return[zt,qt,Rt,Vt].some((function(e){return t[e]>=0}))}const ai={name:"hide",enabled:!0,phase:"main",requiresIfExists:["preventOverflow"],fn:function(t){var e=t.state,i=t.name,n=e.rects.reference,s=e.rects.popper,o=e.modifiersData.preventOverflow,r=ii(e,{elementContext:"reference"}),a=ii(e,{altBoundary:!0}),l=oi(r,n),c=oi(a,s,o),h=ri(l),d=ri(c);e.modifiersData[i]={referenceClippingOffsets:l,popperEscapeOffsets:c,isReferenceHidden:h,hasPopperEscaped:d},e.attributes.popper=Object.assign({},e.attributes.popper,{"data-popper-reference-hidden":h,"data-popper-escaped":d})}},li={name:"offset",enabled:!0,phase:"main",requires:["popperOffsets"],fn:function(t){var e=t.state,i=t.options,n=t.name,s=i.offset,o=void 0===s?[0,0]:s,r=ee.reduce((function(t,i){return t[i]=function(t,e,i){var n=be(t),s=[Vt,zt].indexOf(n)>=0?-1:1,o="function"==typeof i?i(Object.assign({},e,{placement:t})):i,r=o[0],a=o[1];return r=r||0,a=(a||0)*s,[Vt,qt].indexOf(n)>=0?{x:a,y:r}:{x:r,y:a}}(i,e.rects,o),t}),{}),a=r[e.placement],l=a.x,c=a.y;null!=e.modifiersData.popperOffsets&&(e.modifiersData.popperOffsets.x+=l,e.modifiersData.popperOffsets.y+=c),e.modifiersData[n]=r}},ci={name:"popperOffsets",enabled:!0,phase:"read",fn:function(t){var e=t.state,i=t.name;e.modifiersData[i]=ei({reference:e.rects.reference,element:e.rects.popper,strategy:"absolute",placement:e.placement})},data:{}},hi={name:"preventOverflow",enabled:!0,phase:"main",fn:function(t){var e=t.state,i=t.options,n=t.name,s=i.mainAxis,o=void 0===s||s,r=i.altAxis,a=void 0!==r&&r,l=i.boundary,c=i.rootBoundary,h=i.altBoundary,d=i.padding,u=i.tether,f=void 0===u||u,p=i.tetherOffset,m=void 0===p?0:p,g=ii(e,{boundary:l,rootBoundary:c,padding:d,altBoundary:h}),_=be(e.placement),b=Fe(e.placement),v=!b,y=Ie(_),w="x"===y?"y":"x",A=e.modifiersData.popperOffsets,E=e.rects.reference,T=e.rects.popper,C="function"==typeof m?m(Object.assign({},e.rects,{placement:e.placement})):m,O="number"==typeof C?{mainAxis:C,altAxis:C}:Object.assign({mainAxis:0,altAxis:0},C),x=e.modifiersData.offset?e.modifiersData.offset[e.placement]:null,k={x:0,y:0};if(A){if(o){var L,S="y"===y?zt:Vt,D="y"===y?Rt:qt,$="y"===y?"height":"width",I=A[y],N=I+g[S],P=I-g[D],M=f?-T[$]/2:0,j=b===Xt?E[$]:T[$],F=b===Xt?-T[$]:-E[$],H=e.elements.arrow,W=f&&H?Ce(H):{width:0,height:0},B=e.modifiersData["arrow#persistent"]?e.modifiersData["arrow#persistent"].padding:{top:0,right:0,bottom:0,left:0},z=B[S],R=B[D],q=Ne(0,E[$],W[$]),V=v?E[$]/2-M-q-z-O.mainAxis:j-q-z-O.mainAxis,K=v?-E[$]/2+M+q+R+O.mainAxis:F+q+R+O.mainAxis,Q=e.elements.arrow&&$e(e.elements.arrow),X=Q?"y"===y?Q.clientTop||0:Q.clientLeft||0:0,Y=null!=(L=null==x?void 0:x[y])?L:0,U=I+K-Y,G=Ne(f?ye(N,I+V-Y-X):N,I,f?ve(P,U):P);A[y]=G,k[y]=G-I}if(a){var J,Z="x"===y?zt:Vt,tt="x"===y?Rt:qt,et=A[w],it="y"===w?"height":"width",nt=et+g[Z],st=et-g[tt],ot=-1!==[zt,Vt].indexOf(_),rt=null!=(J=null==x?void 0:x[w])?J:0,at=ot?nt:et-E[it]-T[it]-rt+O.altAxis,lt=ot?et+E[it]+T[it]-rt-O.altAxis:st,ct=f&&ot?function(t,e,i){var n=Ne(t,e,i);return n>i?i:n}(at,et,lt):Ne(f?at:nt,et,f?lt:st);A[w]=ct,k[w]=ct-et}e.modifiersData[n]=k}},requiresIfExists:["offset"]};function di(t,e,i){void 0===i&&(i=!1);var n,s,o=me(e),r=me(e)&&function(t){var e=t.getBoundingClientRect(),i=we(e.width)/t.offsetWidth||1,n=we(e.height)/t.offsetHeight||1;return 1!==i||1!==n}(e),a=Le(e),l=Te(t,r,i),c={scrollLeft:0,scrollTop:0},h={x:0,y:0};return(o||!o&&!i)&&(("body"!==ue(e)||Ue(a))&&(c=(n=e)!==fe(n)&&me(n)?{scrollLeft:(s=n).scrollLeft,scrollTop:s.scrollTop}:Xe(n)),me(e)?((h=Te(e,!0)).x+=e.clientLeft,h.y+=e.clientTop):a&&(h.x=Ye(a))),{x:l.left+c.scrollLeft-h.x,y:l.top+c.scrollTop-h.y,width:l.width,height:l.height}}function ui(t){var e=new Map,i=new Set,n=[];function s(t){i.add(t.name),[].concat(t.requires||[],t.requiresIfExists||[]).forEach((function(t){if(!i.has(t)){var n=e.get(t);n&&s(n)}})),n.push(t)}return t.forEach((function(t){e.set(t.name,t)})),t.forEach((function(t){i.has(t.name)||s(t)})),n}var fi={placement:"bottom",modifiers:[],strategy:"absolute"};function pi(){for(var t=arguments.length,e=new Array(t),i=0;i<t;i++)e[i]=arguments[i];return!e.some((function(t){return!(t&&"function"==typeof t.getBoundingClientRect)}))}function mi(t){void 0===t&&(t={});var e=t,i=e.defaultModifiers,n=void 0===i?[]:i,s=e.defaultOptions,o=void 0===s?fi:s;return function(t,e,i){void 0===i&&(i=o);var s,r,a={placement:"bottom",orderedModifiers:[],options:Object.assign({},fi,o),modifiersData:{},elements:{reference:t,popper:e},attributes:{},styles:{}},l=[],c=!1,h={state:a,setOptions:function(i){var s="function"==typeof i?i(a.options):i;d(),a.options=Object.assign({},o,a.options,s),a.scrollParents={reference:pe(t)?Je(t):t.contextElement?Je(t.contextElement):[],popper:Je(e)};var r,c,u=function(t){var e=ui(t);return de.reduce((function(t,i){return t.concat(e.filter((function(t){return t.phase===i})))}),[])}((r=[].concat(n,a.options.modifiers),c=r.reduce((function(t,e){var i=t[e.name];return t[e.name]=i?Object.assign({},i,e,{options:Object.assign({},i.options,e.options),data:Object.assign({},i.data,e.data)}):e,t}),{}),Object.keys(c).map((function(t){return c[t]}))));return a.orderedModifiers=u.filter((function(t){return t.enabled})),a.orderedModifiers.forEach((function(t){var e=t.name,i=t.options,n=void 0===i?{}:i,s=t.effect;if("function"==typeof s){var o=s({state:a,name:e,instance:h,options:n});l.push(o||function(){})}})),h.update()},forceUpdate:function(){if(!c){var t=a.elements,e=t.reference,i=t.popper;if(pi(e,i)){a.rects={reference:di(e,$e(i),"fixed"===a.options.strategy),popper:Ce(i)},a.reset=!1,a.placement=a.options.placement,a.orderedModifiers.forEach((function(t){return a.modifiersData[t.name]=Object.assign({},t.data)}));for(var n=0;n<a.orderedModifiers.length;n++)if(!0!==a.reset){var s=a.orderedModifiers[n],o=s.fn,r=s.options,l=void 0===r?{}:r,d=s.name;"function"==typeof o&&(a=o({state:a,options:l,name:d,instance:h})||a)}else a.reset=!1,n=-1}}},update:(s=function(){return new Promise((function(t){h.forceUpdate(),t(a)}))},function(){return r||(r=new Promise((function(t){Promise.resolve().then((function(){r=void 0,t(s())}))}))),r}),destroy:function(){d(),c=!0}};if(!pi(t,e))return h;function d(){l.forEach((function(t){return t()})),l=[]}return h.setOptions(i).then((function(t){!c&&i.onFirstUpdate&&i.onFirstUpdate(t)})),h}}var gi=mi(),_i=mi({defaultModifiers:[Re,ci,Be,_e]}),bi=mi({defaultModifiers:[Re,ci,Be,_e,li,si,hi,je,ai]});const vi=Object.freeze(Object.defineProperty({__proto__:null,afterMain:ae,afterRead:se,afterWrite:he,applyStyles:_e,arrow:je,auto:Kt,basePlacements:Qt,beforeMain:oe,beforeRead:ie,beforeWrite:le,bottom:Rt,clippingParents:Ut,computeStyles:Be,createPopper:bi,createPopperBase:gi,createPopperLite:_i,detectOverflow:ii,end:Yt,eventListeners:Re,flip:si,hide:ai,left:Vt,main:re,modifierPhases:de,offset:li,placements:ee,popper:Jt,popperGenerator:mi,popperOffsets:ci,preventOverflow:hi,read:ne,reference:Zt,right:qt,start:Xt,top:zt,variationPlacements:te,viewport:Gt,write:ce},Symbol.toStringTag,{value:"Module"})),yi="dropdown",wi=".bs.dropdown",Ai=".data-api",Ei="ArrowUp",Ti="ArrowDown",Ci=`hide${wi}`,Oi=`hidden${wi}`,xi=`show${wi}`,ki=`shown${wi}`,Li=`click${wi}${Ai}`,Si=`keydown${wi}${Ai}`,Di=`keyup${wi}${Ai}`,$i="show",Ii='[data-bs-toggle="dropdown"]:not(.disabled):not(:disabled)',Ni=`${Ii}.${$i}`,Pi=".dropdown-menu",Mi=p()?"top-end":"top-start",ji=p()?"top-start":"top-end",Fi=p()?"bottom-end":"bottom-start",Hi=p()?"bottom-start":"bottom-end",Wi=p()?"left-start":"right-start",Bi=p()?"right-start":"left-start",zi={autoClose:!0,boundary:"clippingParents",display:"dynamic",offset:[0,2],popperConfig:null,reference:"toggle"},Ri={autoClose:"(boolean|string)",boundary:"(string|element)",display:"string",offset:"(array|string|function)",popperConfig:"(null|object|function)",reference:"(string|element|object)"};class qi extends W{constructor(t,e){super(t,e),this._popper=null,this._parent=this._element.parentNode,this._menu=z.next(this._element,Pi)[0]||z.prev(this._element,Pi)[0]||z.findOne(Pi,this._parent),this._inNavbar=this._detectNavbar()}static get Default(){return zi}static get DefaultType(){return Ri}static get NAME(){return yi}toggle(){return this._isShown()?this.hide():this.show()}show(){if(l(this._element)||this._isShown())return;const t={relatedTarget:this._element};if(!N.trigger(this._element,xi,t).defaultPrevented){if(this._createPopper(),"ontouchstart"in document.documentElement&&!this._parent.closest(".navbar-nav"))for(const t of[].concat(...document.body.children))N.on(t,"mouseover",h);this._element.focus(),this._element.setAttribute("aria-expanded",!0),this._menu.classList.add($i),this._element.classList.add($i),N.trigger(this._element,ki,t)}}hide(){if(l(this._element)||!this._isShown())return;const t={relatedTarget:this._element};this._completeHide(t)}dispose(){this._popper&&this._popper.destroy(),super.dispose()}update(){this._inNavbar=this._detectNavbar(),this._popper&&this._popper.update()}_completeHide(t){if(!N.trigger(this._element,Ci,t).defaultPrevented){if("ontouchstart"in document.documentElement)for(const t of[].concat(...document.body.children))N.off(t,"mouseover",h);this._popper&&this._popper.destroy(),this._menu.classList.remove($i),this._element.classList.remove($i),this._element.setAttribute("aria-expanded","false"),F.removeDataAttribute(this._menu,"popper"),N.trigger(this._element,Oi,t)}}_getConfig(t){if("object"==typeof(t=super._getConfig(t)).reference&&!o(t.reference)&&"function"!=typeof t.reference.getBoundingClientRect)throw new TypeError(`${yi.toUpperCase()}: Option "reference" provided type "object" without a required "getBoundingClientRect" method.`);return t}_createPopper(){if(void 0===vi)throw new TypeError("Bootstrap's dropdowns require Popper (https://popper.js.org)");let t=this._element;"parent"===this._config.reference?t=this._parent:o(this._config.reference)?t=r(this._config.reference):"object"==typeof this._config.reference&&(t=this._config.reference);const e=this._getPopperConfig();this._popper=bi(t,this._menu,e)}_isShown(){return this._menu.classList.contains($i)}_getPlacement(){const t=this._parent;if(t.classList.contains("dropend"))return Wi;if(t.classList.contains("dropstart"))return Bi;if(t.classList.contains("dropup-center"))return"top";if(t.classList.contains("dropdown-center"))return"bottom";const e="end"===getComputedStyle(this._menu).getPropertyValue("--bs-position").trim();return t.classList.contains("dropup")?e?ji:Mi:e?Hi:Fi}_detectNavbar(){return null!==this._element.closest(".navbar")}_getOffset(){const{offset:t}=this._config;return"string"==typeof t?t.split(",").map((t=>Number.parseInt(t,10))):"function"==typeof t?e=>t(e,this._element):t}_getPopperConfig(){const t={placement:this._getPlacement(),modifiers:[{name:"preventOverflow",options:{boundary:this._config.boundary}},{name:"offset",options:{offset:this._getOffset()}}]};return(this._inNavbar||"static"===this._config.display)&&(F.setDataAttribute(this._menu,"popper","static"),t.modifiers=[{name:"applyStyles",enabled:!1}]),{...t,...g(this._config.popperConfig,[t])}}_selectMenuItem({key:t,target:e}){const i=z.find(".dropdown-menu .dropdown-item:not(.disabled):not(:disabled)",this._menu).filter((t=>a(t)));i.length&&b(i,e,t===Ti,!i.includes(e)).focus()}static jQueryInterface(t){return this.each((function(){const e=qi.getOrCreateInstance(this,t);if("string"==typeof t){if(void 0===e[t])throw new TypeError(`No method named "${t}"`);e[t]()}}))}static clearMenus(t){if(2===t.button||"keyup"===t.type&&"Tab"!==t.key)return;const e=z.find(Ni);for(const i of e){const e=qi.getInstance(i);if(!e||!1===e._config.autoClose)continue;const n=t.composedPath(),s=n.includes(e._menu);if(n.includes(e._element)||"inside"===e._config.autoClose&&!s||"outside"===e._config.autoClose&&s)continue;if(e._menu.contains(t.target)&&("keyup"===t.type&&"Tab"===t.key||/input|select|option|textarea|form/i.test(t.target.tagName)))continue;const o={relatedTarget:e._element};"click"===t.type&&(o.clickEvent=t),e._completeHide(o)}}static dataApiKeydownHandler(t){const e=/input|textarea/i.test(t.target.tagName),i="Escape"===t.key,n=[Ei,Ti].includes(t.key);if(!n&&!i)return;if(e&&!i)return;t.preventDefault();const s=this.matches(Ii)?this:z.prev(this,Ii)[0]||z.next(this,Ii)[0]||z.findOne(Ii,t.delegateTarget.parentNode),o=qi.getOrCreateInstance(s);if(n)return t.stopPropagation(),o.show(),void o._selectMenuItem(t);o._isShown()&&(t.stopPropagation(),o.hide(),s.focus())}}N.on(document,Si,Ii,qi.dataApiKeydownHandler),N.on(document,Si,Pi,qi.dataApiKeydownHandler),N.on(document,Li,qi.clearMenus),N.on(document,Di,qi.clearMenus),N.on(document,Li,Ii,(function(t){t.preventDefault(),qi.getOrCreateInstance(this).toggle()})),m(qi);const Vi="backdrop",Ki="show",Qi=`mousedown.bs.${Vi}`,Xi={className:"modal-backdrop",clickCallback:null,isAnimated:!1,isVisible:!0,rootElement:"body"},Yi={className:"string",clickCallback:"(function|null)",isAnimated:"boolean",isVisible:"boolean",rootElement:"(element|string)"};class Ui extends H{constructor(t){super(),this._config=this._getConfig(t),this._isAppended=!1,this._element=null}static get Default(){return Xi}static get DefaultType(){return Yi}static get NAME(){return Vi}show(t){if(!this._config.isVisible)return void g(t);this._append();const e=this._getElement();this._config.isAnimated&&d(e),e.classList.add(Ki),this._emulateAnimation((()=>{g(t)}))}hide(t){this._config.isVisible?(this._getElement().classList.remove(Ki),this._emulateAnimation((()=>{this.dispose(),g(t)}))):g(t)}dispose(){this._isAppended&&(N.off(this._element,Qi),this._element.remove(),this._isAppended=!1)}_getElement(){if(!this._element){const t=document.createElement("div");t.className=this._config.className,this._config.isAnimated&&t.classList.add("fade"),this._element=t}return this._element}_configAfterMerge(t){return t.rootElement=r(t.rootElement),t}_append(){if(this._isAppended)return;const t=this._getElement();this._config.rootElement.append(t),N.on(t,Qi,(()=>{g(this._config.clickCallback)})),this._isAppended=!0}_emulateAnimation(t){_(t,this._getElement(),this._config.isAnimated)}}const Gi=".bs.focustrap",Ji=`focusin${Gi}`,Zi=`keydown.tab${Gi}`,tn="backward",en={autofocus:!0,trapElement:null},nn={autofocus:"boolean",trapElement:"element"};class sn extends H{constructor(t){super(),this._config=this._getConfig(t),this._isActive=!1,this._lastTabNavDirection=null}static get Default(){return en}static get DefaultType(){return nn}static get NAME(){return"focustrap"}activate(){this._isActive||(this._config.autofocus&&this._config.trapElement.focus(),N.off(document,Gi),N.on(document,Ji,(t=>this._handleFocusin(t))),N.on(document,Zi,(t=>this._handleKeydown(t))),this._isActive=!0)}deactivate(){this._isActive&&(this._isActive=!1,N.off(document,Gi))}_handleFocusin(t){const{trapElement:e}=this._config;if(t.target===document||t.target===e||e.contains(t.target))return;const i=z.focusableChildren(e);0===i.length?e.focus():this._lastTabNavDirection===tn?i[i.length-1].focus():i[0].focus()}_handleKeydown(t){"Tab"===t.key&&(this._lastTabNavDirection=t.shiftKey?tn:"forward")}}const on=".fixed-top, .fixed-bottom, .is-fixed, .sticky-top",rn=".sticky-top",an="padding-right",ln="margin-right";class cn{constructor(){this._element=document.body}getWidth(){const t=document.documentElement.clientWidth;return Math.abs(window.innerWidth-t)}hide(){const t=this.getWidth();this._disableOverFlow(),this._setElementAttributes(this._element,an,(e=>e+t)),this._setElementAttributes(on,an,(e=>e+t)),this._setElementAttributes(rn,ln,(e=>e-t))}reset(){this._resetElementAttributes(this._element,"overflow"),this._resetElementAttributes(this._element,an),this._resetElementAttributes(on,an),this._resetElementAttributes(rn,ln)}isOverflowing(){return this.getWidth()>0}_disableOverFlow(){this._saveInitialAttribute(this._element,"overflow"),this._element.style.overflow="hidden"}_setElementAttributes(t,e,i){const n=this.getWidth();this._applyManipulationCallback(t,(t=>{if(t!==this._element&&window.innerWidth>t.clientWidth+n)return;this._saveInitialAttribute(t,e);const s=window.getComputedStyle(t).getPropertyValue(e);t.style.setProperty(e,`${i(Number.parseFloat(s))}px`)}))}_saveInitialAttribute(t,e){const i=t.style.getPropertyValue(e);i&&F.setDataAttribute(t,e,i)}_resetElementAttributes(t,e){this._applyManipulationCallback(t,(t=>{const i=F.getDataAttribute(t,e);null!==i?(F.removeDataAttribute(t,e),t.style.setProperty(e,i)):t.style.removeProperty(e)}))}_applyManipulationCallback(t,e){if(o(t))e(t);else for(const i of z.find(t,this._element))e(i)}}const hn=".bs.modal",dn=`hide${hn}`,un=`hidePrevented${hn}`,fn=`hidden${hn}`,pn=`show${hn}`,mn=`shown${hn}`,gn=`resize${hn}`,_n=`click.dismiss${hn}`,bn=`mousedown.dismiss${hn}`,vn=`keydown.dismiss${hn}`,yn=`click${hn}.data-api`,wn="modal-open",An="show",En="modal-static",Tn={backdrop:!0,focus:!0,keyboard:!0},Cn={backdrop:"(boolean|string)",focus:"boolean",keyboard:"boolean"};class On extends W{constructor(t,e){super(t,e),this._dialog=z.findOne(".modal-dialog",this._element),this._backdrop=this._initializeBackDrop(),this._focustrap=this._initializeFocusTrap(),this._isShown=!1,this._isTransitioning=!1,this._scrollBar=new cn,this._addEventListeners()}static get Default(){return Tn}static get DefaultType(){return Cn}static get NAME(){return"modal"}toggle(t){return this._isShown?this.hide():this.show(t)}show(t){this._isShown||this._isTransitioning||N.trigger(this._element,pn,{relatedTarget:t}).defaultPrevented||(this._isShown=!0,this._isTransitioning=!0,this._scrollBar.hide(),document.body.classList.add(wn),this._adjustDialog(),this._backdrop.show((()=>this._showElement(t))))}hide(){this._isShown&&!this._isTransitioning&&(N.trigger(this._element,dn).defaultPrevented||(this._isShown=!1,this._isTransitioning=!0,this._focustrap.deactivate(),this._element.classList.remove(An),this._queueCallback((()=>this._hideModal()),this._element,this._isAnimated())))}dispose(){N.off(window,hn),N.off(this._dialog,hn),this._backdrop.dispose(),this._focustrap.deactivate(),super.dispose()}handleUpdate(){this._adjustDialog()}_initializeBackDrop(){return new Ui({isVisible:Boolean(this._config.backdrop),isAnimated:this._isAnimated()})}_initializeFocusTrap(){return new sn({trapElement:this._element})}_showElement(t){document.body.contains(this._element)||document.body.append(this._element),this._element.style.display="block",this._element.removeAttribute("aria-hidden"),this._element.setAttribute("aria-modal",!0),this._element.setAttribute("role","dialog"),this._element.scrollTop=0;const e=z.findOne(".modal-body",this._dialog);e&&(e.scrollTop=0),d(this._element),this._element.classList.add(An),this._queueCallback((()=>{this._config.focus&&this._focustrap.activate(),this._isTransitioning=!1,N.trigger(this._element,mn,{relatedTarget:t})}),this._dialog,this._isAnimated())}_addEventListeners(){N.on(this._element,vn,(t=>{"Escape"===t.key&&(this._config.keyboard?this.hide():this._triggerBackdropTransition())})),N.on(window,gn,(()=>{this._isShown&&!this._isTransitioning&&this._adjustDialog()})),N.on(this._element,bn,(t=>{N.one(this._element,_n,(e=>{this._element===t.target&&this._element===e.target&&("static"!==this._config.backdrop?this._config.backdrop&&this.hide():this._triggerBackdropTransition())}))}))}_hideModal(){this._element.style.display="none",this._element.setAttribute("aria-hidden",!0),this._element.removeAttribute("aria-modal"),this._element.removeAttribute("role"),this._isTransitioning=!1,this._backdrop.hide((()=>{document.body.classList.remove(wn),this._resetAdjustments(),this._scrollBar.reset(),N.trigger(this._element,fn)}))}_isAnimated(){return this._element.classList.contains("fade")}_triggerBackdropTransition(){if(N.trigger(this._element,un).defaultPrevented)return;const t=this._element.scrollHeight>document.documentElement.clientHeight,e=this._element.style.overflowY;"hidden"===e||this._element.classList.contains(En)||(t||(this._element.style.overflowY="hidden"),this._element.classList.add(En),this._queueCallback((()=>{this._element.classList.remove(En),this._queueCallback((()=>{this._element.style.overflowY=e}),this._dialog)}),this._dialog),this._element.focus())}_adjustDialog(){const t=this._element.scrollHeight>document.documentElement.clientHeight,e=this._scrollBar.getWidth(),i=e>0;if(i&&!t){const t=p()?"paddingLeft":"paddingRight";this._element.style[t]=`${e}px`}if(!i&&t){const t=p()?"paddingRight":"paddingLeft";this._element.style[t]=`${e}px`}}_resetAdjustments(){this._element.style.paddingLeft="",this._element.style.paddingRight=""}static jQueryInterface(t,e){return this.each((function(){const i=On.getOrCreateInstance(this,t);if("string"==typeof t){if(void 0===i[t])throw new TypeError(`No method named "${t}"`);i[t](e)}}))}}N.on(document,yn,'[data-bs-toggle="modal"]',(function(t){const e=z.getElementFromSelector(this);["A","AREA"].includes(this.tagName)&&t.preventDefault(),N.one(e,pn,(t=>{t.defaultPrevented||N.one(e,fn,(()=>{a(this)&&this.focus()}))}));const i=z.findOne(".modal.show");i&&On.getInstance(i).hide(),On.getOrCreateInstance(e).toggle(this)})),R(On),m(On);const xn=".bs.offcanvas",kn=".data-api",Ln=`load${xn}${kn}`,Sn="show",Dn="showing",$n="hiding",In=".offcanvas.show",Nn=`show${xn}`,Pn=`shown${xn}`,Mn=`hide${xn}`,jn=`hidePrevented${xn}`,Fn=`hidden${xn}`,Hn=`resize${xn}`,Wn=`click${xn}${kn}`,Bn=`keydown.dismiss${xn}`,zn={backdrop:!0,keyboard:!0,scroll:!1},Rn={backdrop:"(boolean|string)",keyboard:"boolean",scroll:"boolean"};class qn extends W{constructor(t,e){super(t,e),this._isShown=!1,this._backdrop=this._initializeBackDrop(),this._focustrap=this._initializeFocusTrap(),this._addEventListeners()}static get Default(){return zn}static get DefaultType(){return Rn}static get NAME(){return"offcanvas"}toggle(t){return this._isShown?this.hide():this.show(t)}show(t){this._isShown||N.trigger(this._element,Nn,{relatedTarget:t}).defaultPrevented||(this._isShown=!0,this._backdrop.show(),this._config.scroll||(new cn).hide(),this._element.setAttribute("aria-modal",!0),this._element.setAttribute("role","dialog"),this._element.classList.add(Dn),this._queueCallback((()=>{this._config.scroll&&!this._config.backdrop||this._focustrap.activate(),this._element.classList.add(Sn),this._element.classList.remove(Dn),N.trigger(this._element,Pn,{relatedTarget:t})}),this._element,!0))}hide(){this._isShown&&(N.trigger(this._element,Mn).defaultPrevented||(this._focustrap.deactivate(),this._element.blur(),this._isShown=!1,this._element.classList.add($n),this._backdrop.hide(),this._queueCallback((()=>{this._element.classList.remove(Sn,$n),this._element.removeAttribute("aria-modal"),this._element.removeAttribute("role"),this._config.scroll||(new cn).reset(),N.trigger(this._element,Fn)}),this._element,!0)))}dispose(){this._backdrop.dispose(),this._focustrap.deactivate(),super.dispose()}_initializeBackDrop(){const t=Boolean(this._config.backdrop);return new Ui({className:"offcanvas-backdrop",isVisible:t,isAnimated:!0,rootElement:this._element.parentNode,clickCallback:t?()=>{"static"!==this._config.backdrop?this.hide():N.trigger(this._element,jn)}:null})}_initializeFocusTrap(){return new sn({trapElement:this._element})}_addEventListeners(){N.on(this._element,Bn,(t=>{"Escape"===t.key&&(this._config.keyboard?this.hide():N.trigger(this._element,jn))}))}static jQueryInterface(t){return this.each((function(){const e=qn.getOrCreateInstance(this,t);if("string"==typeof t){if(void 0===e[t]||t.startsWith("_")||"constructor"===t)throw new TypeError(`No method named "${t}"`);e[t](this)}}))}}N.on(document,Wn,'[data-bs-toggle="offcanvas"]',(function(t){const e=z.getElementFromSelector(this);if(["A","AREA"].includes(this.tagName)&&t.preventDefault(),l(this))return;N.one(e,Fn,(()=>{a(this)&&this.focus()}));const i=z.findOne(In);i&&i!==e&&qn.getInstance(i).hide(),qn.getOrCreateInstance(e).toggle(this)})),N.on(window,Ln,(()=>{for(const t of z.find(In))qn.getOrCreateInstance(t).show()})),N.on(window,Hn,(()=>{for(const t of z.find("[aria-modal][class*=show][class*=offcanvas-]"))"fixed"!==getComputedStyle(t).position&&qn.getOrCreateInstance(t).hide()})),R(qn),m(qn);const Vn={"*":["class","dir","id","lang","role",/^aria-[\w-]*$/i],a:["target","href","title","rel"],area:[],b:[],br:[],col:[],code:[],div:[],em:[],hr:[],h1:[],h2:[],h3:[],h4:[],h5:[],h6:[],i:[],img:["src","srcset","alt","title","width","height"],li:[],ol:[],p:[],pre:[],s:[],small:[],span:[],sub:[],sup:[],strong:[],u:[],ul:[]},Kn=new Set(["background","cite","href","itemtype","longdesc","poster","src","xlink:href"]),Qn=/^(?!javascript:)(?:[a-z0-9+.-]+:|[^&:/?#]*(?:[/?#]|$))/i,Xn=(t,e)=>{const i=t.nodeName.toLowerCase();return e.includes(i)?!Kn.has(i)||Boolean(Qn.test(t.nodeValue)):e.filter((t=>t instanceof RegExp)).some((t=>t.test(i)))},Yn={allowList:Vn,content:{},extraClass:"",html:!1,sanitize:!0,sanitizeFn:null,template:"<div></div>"},Un={allowList:"object",content:"object",extraClass:"(string|function)",html:"boolean",sanitize:"boolean",sanitizeFn:"(null|function)",template:"string"},Gn={entry:"(string|element|function|null)",selector:"(string|element)"};class Jn extends H{constructor(t){super(),this._config=this._getConfig(t)}static get Default(){return Yn}static get DefaultType(){return Un}static get NAME(){return"TemplateFactory"}getContent(){return Object.values(this._config.content).map((t=>this._resolvePossibleFunction(t))).filter(Boolean)}hasContent(){return this.getContent().length>0}changeContent(t){return this._checkContent(t),this._config.content={...this._config.content,...t},this}toHtml(){const t=document.createElement("div");t.innerHTML=this._maybeSanitize(this._config.template);for(const[e,i]of Object.entries(this._config.content))this._setContent(t,i,e);const e=t.children[0],i=this._resolvePossibleFunction(this._config.extraClass);return i&&e.classList.add(...i.split(" ")),e}_typeCheckConfig(t){super._typeCheckConfig(t),this._checkContent(t.content)}_checkContent(t){for(const[e,i]of Object.entries(t))super._typeCheckConfig({selector:e,entry:i},Gn)}_setContent(t,e,i){const n=z.findOne(i,t);n&&((e=this._resolvePossibleFunction(e))?o(e)?this._putElementInTemplate(r(e),n):this._config.html?n.innerHTML=this._maybeSanitize(e):n.textContent=e:n.remove())}_maybeSanitize(t){return this._config.sanitize?function(t,e,i){if(!t.length)return t;if(i&&"function"==typeof i)return i(t);const n=(new window.DOMParser).parseFromString(t,"text/html"),s=[].concat(...n.body.querySelectorAll("*"));for(const t of s){const i=t.nodeName.toLowerCase();if(!Object.keys(e).includes(i)){t.remove();continue}const n=[].concat(...t.attributes),s=[].concat(e["*"]||[],e[i]||[]);for(const e of n)Xn(e,s)||t.removeAttribute(e.nodeName)}return n.body.innerHTML}(t,this._config.allowList,this._config.sanitizeFn):t}_resolvePossibleFunction(t){return g(t,[this])}_putElementInTemplate(t,e){if(this._config.html)return e.innerHTML="",void e.append(t);e.textContent=t.textContent}}const Zn=new Set(["sanitize","allowList","sanitizeFn"]),ts="fade",es="show",is=".modal",ns="hide.bs.modal",ss="hover",os="focus",rs={AUTO:"auto",TOP:"top",RIGHT:p()?"left":"right",BOTTOM:"bottom",LEFT:p()?"right":"left"},as={allowList:Vn,animation:!0,boundary:"clippingParents",container:!1,customClass:"",delay:0,fallbackPlacements:["top","right","bottom","left"],html:!1,offset:[0,6],placement:"top",popperConfig:null,sanitize:!0,sanitizeFn:null,selector:!1,template:'<div class="tooltip" role="tooltip"><div class="tooltip-arrow"></div><div class="tooltip-inner"></div></div>',title:"",trigger:"hover focus"},ls={allowList:"object",animation:"boolean",boundary:"(string|element)",container:"(string|element|boolean)",customClass:"(string|function)",delay:"(number|object)",fallbackPlacements:"array",html:"boolean",offset:"(array|string|function)",placement:"(string|function)",popperConfig:"(null|object|function)",sanitize:"boolean",sanitizeFn:"(null|function)",selector:"(string|boolean)",template:"string",title:"(string|element|function)",trigger:"string"};class cs extends W{constructor(t,e){if(void 0===vi)throw new TypeError("Bootstrap's tooltips require Popper (https://popper.js.org)");super(t,e),this._isEnabled=!0,this._timeout=0,this._isHovered=null,this._activeTrigger={},this._popper=null,this._templateFactory=null,this._newContent=null,this.tip=null,this._setListeners(),this._config.selector||this._fixTitle()}static get Default(){return as}static get DefaultType(){return ls}static get NAME(){return"tooltip"}enable(){this._isEnabled=!0}disable(){this._isEnabled=!1}toggleEnabled(){this._isEnabled=!this._isEnabled}toggle(){this._isEnabled&&(this._activeTrigger.click=!this._activeTrigger.click,this._isShown()?this._leave():this._enter())}dispose(){clearTimeout(this._timeout),N.off(this._element.closest(is),ns,this._hideModalHandler),this._element.getAttribute("data-bs-original-title")&&this._element.setAttribute("title",this._element.getAttribute("data-bs-original-title")),this._disposePopper(),super.dispose()}show(){if("none"===this._element.style.display)throw new Error("Please use show on visible elements");if(!this._isWithContent()||!this._isEnabled)return;const t=N.trigger(this._element,this.constructor.eventName("show")),e=(c(this._element)||this._element.ownerDocument.documentElement).contains(this._element);if(t.defaultPrevented||!e)return;this._disposePopper();const i=this._getTipElement();this._element.setAttribute("aria-describedby",i.getAttribute("id"));const{container:n}=this._config;if(this._element.ownerDocument.documentElement.contains(this.tip)||(n.append(i),N.trigger(this._element,this.constructor.eventName("inserted"))),this._popper=this._createPopper(i),i.classList.add(es),"ontouchstart"in document.documentElement)for(const t of[].concat(...document.body.children))N.on(t,"mouseover",h);this._queueCallback((()=>{N.trigger(this._element,this.constructor.eventName("shown")),!1===this._isHovered&&this._leave(),this._isHovered=!1}),this.tip,this._isAnimated())}hide(){if(this._isShown()&&!N.trigger(this._element,this.constructor.eventName("hide")).defaultPrevented){if(this._getTipElement().classList.remove(es),"ontouchstart"in document.documentElement)for(const t of[].concat(...document.body.children))N.off(t,"mouseover",h);this._activeTrigger.click=!1,this._activeTrigger[os]=!1,this._activeTrigger[ss]=!1,this._isHovered=null,this._queueCallback((()=>{this._isWithActiveTrigger()||(this._isHovered||this._disposePopper(),this._element.removeAttribute("aria-describedby"),N.trigger(this._element,this.constructor.eventName("hidden")))}),this.tip,this._isAnimated())}}update(){this._popper&&this._popper.update()}_isWithContent(){return Boolean(this._getTitle())}_getTipElement(){return this.tip||(this.tip=this._createTipElement(this._newContent||this._getContentForTemplate())),this.tip}_createTipElement(t){const e=this._getTemplateFactory(t).toHtml();if(!e)return null;e.classList.remove(ts,es),e.classList.add(`bs-${this.constructor.NAME}-auto`);const i=(t=>{do{t+=Math.floor(1e6*Math.random())}while(document.getElementById(t));return t})(this.constructor.NAME).toString();return e.setAttribute("id",i),this._isAnimated()&&e.classList.add(ts),e}setContent(t){this._newContent=t,this._isShown()&&(this._disposePopper(),this.show())}_getTemplateFactory(t){return this._templateFactory?this._templateFactory.changeContent(t):this._templateFactory=new Jn({...this._config,content:t,extraClass:this._resolvePossibleFunction(this._config.customClass)}),this._templateFactory}_getContentForTemplate(){return{".tooltip-inner":this._getTitle()}}_getTitle(){return this._resolvePossibleFunction(this._config.title)||this._element.getAttribute("data-bs-original-title")}_initializeOnDelegatedTarget(t){return this.constructor.getOrCreateInstance(t.delegateTarget,this._getDelegateConfig())}_isAnimated(){return this._config.animation||this.tip&&this.tip.classList.contains(ts)}_isShown(){return this.tip&&this.tip.classList.contains(es)}_createPopper(t){const e=g(this._config.placement,[this,t,this._element]),i=rs[e.toUpperCase()];return bi(this._element,t,this._getPopperConfig(i))}_getOffset(){const{offset:t}=this._config;return"string"==typeof t?t.split(",").map((t=>Number.parseInt(t,10))):"function"==typeof t?e=>t(e,this._element):t}_resolvePossibleFunction(t){return g(t,[this._element])}_getPopperConfig(t){const e={placement:t,modifiers:[{name:"flip",options:{fallbackPlacements:this._config.fallbackPlacements}},{name:"offset",options:{offset:this._getOffset()}},{name:"preventOverflow",options:{boundary:this._config.boundary}},{name:"arrow",options:{element:`.${this.constructor.NAME}-arrow`}},{name:"preSetPlacement",enabled:!0,phase:"beforeMain",fn:t=>{this._getTipElement().setAttribute("data-popper-placement",t.state.placement)}}]};return{...e,...g(this._config.popperConfig,[e])}}_setListeners(){const t=this._config.trigger.split(" ");for(const e of t)if("click"===e)N.on(this._element,this.constructor.eventName("click"),this._config.selector,(t=>{this._initializeOnDelegatedTarget(t).toggle()}));else if("manual"!==e){const t=e===ss?this.constructor.eventName("mouseenter"):this.constructor.eventName("focusin"),i=e===ss?this.constructor.eventName("mouseleave"):this.constructor.eventName("focusout");N.on(this._element,t,this._config.selector,(t=>{const e=this._initializeOnDelegatedTarget(t);e._activeTrigger["focusin"===t.type?os:ss]=!0,e._enter()})),N.on(this._element,i,this._config.selector,(t=>{const e=this._initializeOnDelegatedTarget(t);e._activeTrigger["focusout"===t.type?os:ss]=e._element.contains(t.relatedTarget),e._leave()}))}this._hideModalHandler=()=>{this._element&&this.hide()},N.on(this._element.closest(is),ns,this._hideModalHandler)}_fixTitle(){const t=this._element.getAttribute("title");t&&(this._element.getAttribute("aria-label")||this._element.textContent.trim()||this._element.setAttribute("aria-label",t),this._element.setAttribute("data-bs-original-title",t),this._element.removeAttribute("title"))}_enter(){this._isShown()||this._isHovered?this._isHovered=!0:(this._isHovered=!0,this._setTimeout((()=>{this._isHovered&&this.show()}),this._config.delay.show))}_leave(){this._isWithActiveTrigger()||(this._isHovered=!1,this._setTimeout((()=>{this._isHovered||this.hide()}),this._config.delay.hide))}_setTimeout(t,e){clearTimeout(this._timeout),this._timeout=setTimeout(t,e)}_isWithActiveTrigger(){return Object.values(this._activeTrigger).includes(!0)}_getConfig(t){const e=F.getDataAttributes(this._element);for(const t of Object.keys(e))Zn.has(t)&&delete e[t];return t={...e,..."object"==typeof t&&t?t:{}},t=this._mergeConfigObj(t),t=this._configAfterMerge(t),this._typeCheckConfig(t),t}_configAfterMerge(t){return t.container=!1===t.container?document.body:r(t.container),"number"==typeof t.delay&&(t.delay={show:t.delay,hide:t.delay}),"number"==typeof t.title&&(t.title=t.title.toString()),"number"==typeof t.content&&(t.content=t.content.toString()),t}_getDelegateConfig(){const t={};for(const[e,i]of Object.entries(this._config))this.constructor.Default[e]!==i&&(t[e]=i);return t.selector=!1,t.trigger="manual",t}_disposePopper(){this._popper&&(this._popper.destroy(),this._popper=null),this.tip&&(this.tip.remove(),this.tip=null)}static jQueryInterface(t){return this.each((function(){const e=cs.getOrCreateInstance(this,t);if("string"==typeof t){if(void 0===e[t])throw new TypeError(`No method named "${t}"`);e[t]()}}))}}m(cs);const hs={...cs.Default,content:"",offset:[0,8],placement:"right",template:'<div class="popover" role="tooltip"><div class="popover-arrow"></div><h3 class="popover-header"></h3><div class="popover-body"></div></div>',trigger:"click"},ds={...cs.DefaultType,content:"(null|string|element|function)"};class us extends cs{static get Default(){return hs}static get DefaultType(){return ds}static get NAME(){return"popover"}_isWithContent(){return this._getTitle()||this._getContent()}_getContentForTemplate(){return{".popover-header":this._getTitle(),".popover-body":this._getContent()}}_getContent(){return this._resolvePossibleFunction(this._config.content)}static jQueryInterface(t){return this.each((function(){const e=us.getOrCreateInstance(this,t);if("string"==typeof t){if(void 0===e[t])throw new TypeError(`No method named "${t}"`);e[t]()}}))}}m(us);const fs=".bs.scrollspy",ps=`activate${fs}`,ms=`click${fs}`,gs=`load${fs}.data-api`,_s="active",bs="[href]",vs=".nav-link",ys=`${vs}, .nav-item > ${vs}, .list-group-item`,ws={offset:null,rootMargin:"0px 0px -25%",smoothScroll:!1,target:null,threshold:[.1,.5,1]},As={offset:"(number|null)",rootMargin:"string",smoothScroll:"boolean",target:"element",threshold:"array"};class Es extends W{constructor(t,e){super(t,e),this._targetLinks=new Map,this._observableSections=new Map,this._rootElement="visible"===getComputedStyle(this._element).overflowY?null:this._element,this._activeTarget=null,this._observer=null,this._previousScrollData={visibleEntryTop:0,parentScrollTop:0},this.refresh()}static get Default(){return ws}static get DefaultType(){return As}static get NAME(){return"scrollspy"}refresh(){this._initializeTargetsAndObservables(),this._maybeEnableSmoothScroll(),this._observer?this._observer.disconnect():this._observer=this._getNewObserver();for(const t of this._observableSections.values())this._observer.observe(t)}dispose(){this._observer.disconnect(),super.dispose()}_configAfterMerge(t){return t.target=r(t.target)||document.body,t.rootMargin=t.offset?`${t.offset}px 0px -30%`:t.rootMargin,"string"==typeof t.threshold&&(t.threshold=t.threshold.split(",").map((t=>Number.parseFloat(t)))),t}_maybeEnableSmoothScroll(){this._config.smoothScroll&&(N.off(this._config.target,ms),N.on(this._config.target,ms,bs,(t=>{const e=this._observableSections.get(t.target.hash);if(e){t.preventDefault();const i=this._rootElement||window,n=e.offsetTop-this._element.offsetTop;if(i.scrollTo)return void i.scrollTo({top:n,behavior:"smooth"});i.scrollTop=n}})))}_getNewObserver(){const t={root:this._rootElement,threshold:this._config.threshold,rootMargin:this._config.rootMargin};return new IntersectionObserver((t=>this._observerCallback(t)),t)}_observerCallback(t){const e=t=>this._targetLinks.get(`#${t.target.id}`),i=t=>{this._previousScrollData.visibleEntryTop=t.target.offsetTop,this._process(e(t))},n=(this._rootElement||document.documentElement).scrollTop,s=n>=this._previousScrollData.parentScrollTop;this._previousScrollData.parentScrollTop=n;for(const o of t){if(!o.isIntersecting){this._activeTarget=null,this._clearActiveClass(e(o));continue}const t=o.target.offsetTop>=this._previousScrollData.visibleEntryTop;if(s&&t){if(i(o),!n)return}else s||t||i(o)}}_initializeTargetsAndObservables(){this._targetLinks=new Map,this._observableSections=new Map;const t=z.find(bs,this._config.target);for(const e of t){if(!e.hash||l(e))continue;const t=z.findOne(decodeURI(e.hash),this._element);a(t)&&(this._targetLinks.set(decodeURI(e.hash),e),this._observableSections.set(e.hash,t))}}_process(t){this._activeTarget!==t&&(this._clearActiveClass(this._config.target),this._activeTarget=t,t.classList.add(_s),this._activateParents(t),N.trigger(this._element,ps,{relatedTarget:t}))}_activateParents(t){if(t.classList.contains("dropdown-item"))z.findOne(".dropdown-toggle",t.closest(".dropdown")).classList.add(_s);else for(const e of z.parents(t,".nav, .list-group"))for(const t of z.prev(e,ys))t.classList.add(_s)}_clearActiveClass(t){t.classList.remove(_s);const e=z.find(`${bs}.${_s}`,t);for(const t of e)t.classList.remove(_s)}static jQueryInterface(t){return this.each((function(){const e=Es.getOrCreateInstance(this,t);if("string"==typeof t){if(void 0===e[t]||t.startsWith("_")||"constructor"===t)throw new TypeError(`No method named "${t}"`);e[t]()}}))}}N.on(window,gs,(()=>{for(const t of z.find('[data-bs-spy="scroll"]'))Es.getOrCreateInstance(t)})),m(Es);const Ts=".bs.tab",Cs=`hide${Ts}`,Os=`hidden${Ts}`,xs=`show${Ts}`,ks=`shown${Ts}`,Ls=`click${Ts}`,Ss=`keydown${Ts}`,Ds=`load${Ts}`,$s="ArrowLeft",Is="ArrowRight",Ns="ArrowUp",Ps="ArrowDown",Ms="Home",js="End",Fs="active",Hs="fade",Ws="show",Bs=".dropdown-toggle",zs=`:not(${Bs})`,Rs='[data-bs-toggle="tab"], [data-bs-toggle="pill"], [data-bs-toggle="list"]',qs=`.nav-link${zs}, .list-group-item${zs}, [role="tab"]${zs}, ${Rs}`,Vs=`.${Fs}[data-bs-toggle="tab"], .${Fs}[data-bs-toggle="pill"], .${Fs}[data-bs-toggle="list"]`;class Ks extends W{constructor(t){super(t),this._parent=this._element.closest('.list-group, .nav, [role="tablist"]'),this._parent&&(this._setInitialAttributes(this._parent,this._getChildren()),N.on(this._element,Ss,(t=>this._keydown(t))))}static get NAME(){return"tab"}show(){const t=this._element;if(this._elemIsActive(t))return;const e=this._getActiveElem(),i=e?N.trigger(e,Cs,{relatedTarget:t}):null;N.trigger(t,xs,{relatedTarget:e}).defaultPrevented||i&&i.defaultPrevented||(this._deactivate(e,t),this._activate(t,e))}_activate(t,e){t&&(t.classList.add(Fs),this._activate(z.getElementFromSelector(t)),this._queueCallback((()=>{"tab"===t.getAttribute("role")?(t.removeAttribute("tabindex"),t.setAttribute("aria-selected",!0),this._toggleDropDown(t,!0),N.trigger(t,ks,{relatedTarget:e})):t.classList.add(Ws)}),t,t.classList.contains(Hs)))}_deactivate(t,e){t&&(t.classList.remove(Fs),t.blur(),this._deactivate(z.getElementFromSelector(t)),this._queueCallback((()=>{"tab"===t.getAttribute("role")?(t.setAttribute("aria-selected",!1),t.setAttribute("tabindex","-1"),this._toggleDropDown(t,!1),N.trigger(t,Os,{relatedTarget:e})):t.classList.remove(Ws)}),t,t.classList.contains(Hs)))}_keydown(t){if(![$s,Is,Ns,Ps,Ms,js].includes(t.key))return;t.stopPropagation(),t.preventDefault();const e=this._getChildren().filter((t=>!l(t)));let i;if([Ms,js].includes(t.key))i=e[t.key===Ms?0:e.length-1];else{const n=[Is,Ps].includes(t.key);i=b(e,t.target,n,!0)}i&&(i.focus({preventScroll:!0}),Ks.getOrCreateInstance(i).show())}_getChildren(){return z.find(qs,this._parent)}_getActiveElem(){return this._getChildren().find((t=>this._elemIsActive(t)))||null}_setInitialAttributes(t,e){this._setAttributeIfNotExists(t,"role","tablist");for(const t of e)this._setInitialAttributesOnChild(t)}_setInitialAttributesOnChild(t){t=this._getInnerElement(t);const e=this._elemIsActive(t),i=this._getOuterElement(t);t.setAttribute("aria-selected",e),i!==t&&this._setAttributeIfNotExists(i,"role","presentation"),e||t.setAttribute("tabindex","-1"),this._setAttributeIfNotExists(t,"role","tab"),this._setInitialAttributesOnTargetPanel(t)}_setInitialAttributesOnTargetPanel(t){const e=z.getElementFromSelector(t);e&&(this._setAttributeIfNotExists(e,"role","tabpanel"),t.id&&this._setAttributeIfNotExists(e,"aria-labelledby",`${t.id}`))}_toggleDropDown(t,e){const i=this._getOuterElement(t);if(!i.classList.contains("dropdown"))return;const n=(t,n)=>{const s=z.findOne(t,i);s&&s.classList.toggle(n,e)};n(Bs,Fs),n(".dropdown-menu",Ws),i.setAttribute("aria-expanded",e)}_setAttributeIfNotExists(t,e,i){t.hasAttribute(e)||t.setAttribute(e,i)}_elemIsActive(t){return t.classList.contains(Fs)}_getInnerElement(t){return t.matches(qs)?t:z.findOne(qs,t)}_getOuterElement(t){return t.closest(".nav-item, .list-group-item")||t}static jQueryInterface(t){return this.each((function(){const e=Ks.getOrCreateInstance(this);if("string"==typeof t){if(void 0===e[t]||t.startsWith("_")||"constructor"===t)throw new TypeError(`No method named "${t}"`);e[t]()}}))}}N.on(document,Ls,Rs,(function(t){["A","AREA"].includes(this.tagName)&&t.preventDefault(),l(this)||Ks.getOrCreateInstance(this).show()})),N.on(window,Ds,(()=>{for(const t of z.find(Vs))Ks.getOrCreateInstance(t)})),m(Ks);const Qs=".bs.toast",Xs=`mouseover${Qs}`,Ys=`mouseout${Qs}`,Us=`focusin${Qs}`,Gs=`focusout${Qs}`,Js=`hide${Qs}`,Zs=`hidden${Qs}`,to=`show${Qs}`,eo=`shown${Qs}`,io="hide",no="show",so="showing",oo={animation:"boolean",autohide:"boolean",delay:"number"},ro={animation:!0,autohide:!0,delay:5e3};class ao extends W{constructor(t,e){super(t,e),this._timeout=null,this._hasMouseInteraction=!1,this._hasKeyboardInteraction=!1,this._setListeners()}static get Default(){return ro}static get DefaultType(){return oo}static get NAME(){return"toast"}show(){N.trigger(this._element,to).defaultPrevented||(this._clearTimeout(),this._config.animation&&this._element.classList.add("fade"),this._element.classList.remove(io),d(this._element),this._element.classList.add(no,so),this._queueCallback((()=>{this._element.classList.remove(so),N.trigger(this._element,eo),this._maybeScheduleHide()}),this._element,this._config.animation))}hide(){this.isShown()&&(N.trigger(this._element,Js).defaultPrevented||(this._element.classList.add(so),this._queueCallback((()=>{this._element.classList.add(io),this._element.classList.remove(so,no),N.trigger(this._element,Zs)}),this._element,this._config.animation)))}dispose(){this._clearTimeout(),this.isShown()&&this._element.classList.remove(no),super.dispose()}isShown(){return this._element.classList.contains(no)}_maybeScheduleHide(){this._config.autohide&&(this._hasMouseInteraction||this._hasKeyboardInteraction||(this._timeout=setTimeout((()=>{this.hide()}),this._config.delay)))}_onInteraction(t,e){switch(t.type){case"mouseover":case"mouseout":this._hasMouseInteraction=e;break;case"focusin":case"focusout":this._hasKeyboardInteraction=e}if(e)return void this._clearTimeout();const i=t.relatedTarget;this._element===i||this._element.contains(i)||this._maybeScheduleHide()}_setListeners(){N.on(this._element,Xs,(t=>this._onInteraction(t,!0))),N.on(this._element,Ys,(t=>this._onInteraction(t,!1))),N.on(this._element,Us,(t=>this._onInteraction(t,!0))),N.on(this._element,Gs,(t=>this._onInteraction(t,!1)))}_clearTimeout(){clearTimeout(this._timeout),this._timeout=null}static jQueryInterface(t){return this.each((function(){const e=ao.getOrCreateInstance(this,t);if("string"==typeof t){if(void 0===e[t])throw new TypeError(`No method named "${t}"`);e[t](this)}}))}}return R(ao),m(ao),{Alert:Q,Button:Y,Carousel:xt,Collapse:Bt,Dropdown:qi,Modal:On,Offcanvas:qn,Popover:us,ScrollSpy:Es,Tab:Ks,Toast:ao,Tooltip:cs}}));
+//# sourceMappingURL=bootstrap.bundle.min.js.map
\ No newline at end of file
diff --git a/oxAuth/Server/src/main/webapp/js/bootstrap.min.js b/oxAuth/Server/src/main/webapp/js/bootstrap.min.js
new file mode 100644
index 00000000..c35e1da1
--- /dev/null
+++ b/oxAuth/Server/src/main/webapp/js/bootstrap.min.js
@@ -0,0 +1,7 @@
+/*!
+  * Bootstrap v5.3.2 (https://getbootstrap.com/)
+  * Copyright 2011-2023 The Bootstrap Authors (https://github.com/twbs/bootstrap/graphs/contributors)
+  * Licensed under MIT (https://github.com/twbs/bootstrap/blob/main/LICENSE)
+  */
+!function(t,e){"object"==typeof exports&&"undefined"!=typeof module?module.exports=e(require("@popperjs/core")):"function"==typeof define&&define.amd?define(["@popperjs/core"],e):(t="undefined"!=typeof globalThis?globalThis:t||self).bootstrap=e(t.Popper)}(this,(function(t){"use strict";function e(t){const e=Object.create(null,{[Symbol.toStringTag]:{value:"Module"}});if(t)for(const i in t)if("default"!==i){const s=Object.getOwnPropertyDescriptor(t,i);Object.defineProperty(e,i,s.get?s:{enumerable:!0,get:()=>t[i]})}return e.default=t,Object.freeze(e)}const i=e(t),s=new Map,n={set(t,e,i){s.has(t)||s.set(t,new Map);const n=s.get(t);n.has(e)||0===n.size?n.set(e,i):console.error(`Bootstrap doesn't allow more than one instance per element. Bound instance: ${Array.from(n.keys())[0]}.`)},get:(t,e)=>s.has(t)&&s.get(t).get(e)||null,remove(t,e){if(!s.has(t))return;const i=s.get(t);i.delete(e),0===i.size&&s.delete(t)}},o="transitionend",r=t=>(t&&window.CSS&&window.CSS.escape&&(t=t.replace(/#([^\s"#']+)/g,((t,e)=>`#${CSS.escape(e)}`))),t),a=t=>{t.dispatchEvent(new Event(o))},l=t=>!(!t||"object"!=typeof t)&&(void 0!==t.jquery&&(t=t[0]),void 0!==t.nodeType),c=t=>l(t)?t.jquery?t[0]:t:"string"==typeof t&&t.length>0?document.querySelector(r(t)):null,h=t=>{if(!l(t)||0===t.getClientRects().length)return!1;const e="visible"===getComputedStyle(t).getPropertyValue("visibility"),i=t.closest("details:not([open])");if(!i)return e;if(i!==t){const e=t.closest("summary");if(e&&e.parentNode!==i)return!1;if(null===e)return!1}return e},d=t=>!t||t.nodeType!==Node.ELEMENT_NODE||!!t.classList.contains("disabled")||(void 0!==t.disabled?t.disabled:t.hasAttribute("disabled")&&"false"!==t.getAttribute("disabled")),u=t=>{if(!document.documentElement.attachShadow)return null;if("function"==typeof t.getRootNode){const e=t.getRootNode();return e instanceof ShadowRoot?e:null}return t instanceof ShadowRoot?t:t.parentNode?u(t.parentNode):null},_=()=>{},g=t=>{t.offsetHeight},f=()=>window.jQuery&&!document.body.hasAttribute("data-bs-no-jquery")?window.jQuery:null,m=[],p=()=>"rtl"===document.documentElement.dir,b=t=>{var e;e=()=>{const e=f();if(e){const i=t.NAME,s=e.fn[i];e.fn[i]=t.jQueryInterface,e.fn[i].Constructor=t,e.fn[i].noConflict=()=>(e.fn[i]=s,t.jQueryInterface)}},"loading"===document.readyState?(m.length||document.addEventListener("DOMContentLoaded",(()=>{for(const t of m)t()})),m.push(e)):e()},v=(t,e=[],i=t)=>"function"==typeof t?t(...e):i,y=(t,e,i=!0)=>{if(!i)return void v(t);const s=(t=>{if(!t)return 0;let{transitionDuration:e,transitionDelay:i}=window.getComputedStyle(t);const s=Number.parseFloat(e),n=Number.parseFloat(i);return s||n?(e=e.split(",")[0],i=i.split(",")[0],1e3*(Number.parseFloat(e)+Number.parseFloat(i))):0})(e)+5;let n=!1;const r=({target:i})=>{i===e&&(n=!0,e.removeEventListener(o,r),v(t))};e.addEventListener(o,r),setTimeout((()=>{n||a(e)}),s)},w=(t,e,i,s)=>{const n=t.length;let o=t.indexOf(e);return-1===o?!i&&s?t[n-1]:t[0]:(o+=i?1:-1,s&&(o=(o+n)%n),t[Math.max(0,Math.min(o,n-1))])},A=/[^.]*(?=\..*)\.|.*/,E=/\..*/,C=/::\d+$/,T={};let k=1;const $={mouseenter:"mouseover",mouseleave:"mouseout"},S=new Set(["click","dblclick","mouseup","mousedown","contextmenu","mousewheel","DOMMouseScroll","mouseover","mouseout","mousemove","selectstart","selectend","keydown","keypress","keyup","orientationchange","touchstart","touchmove","touchend","touchcancel","pointerdown","pointermove","pointerup","pointerleave","pointercancel","gesturestart","gesturechange","gestureend","focus","blur","change","reset","select","submit","focusin","focusout","load","unload","beforeunload","resize","move","DOMContentLoaded","readystatechange","error","abort","scroll"]);function L(t,e){return e&&`${e}::${k++}`||t.uidEvent||k++}function O(t){const e=L(t);return t.uidEvent=e,T[e]=T[e]||{},T[e]}function I(t,e,i=null){return Object.values(t).find((t=>t.callable===e&&t.delegationSelector===i))}function D(t,e,i){const s="string"==typeof e,n=s?i:e||i;let o=M(t);return S.has(o)||(o=t),[s,n,o]}function N(t,e,i,s,n){if("string"!=typeof e||!t)return;let[o,r,a]=D(e,i,s);if(e in $){const t=t=>function(e){if(!e.relatedTarget||e.relatedTarget!==e.delegateTarget&&!e.delegateTarget.contains(e.relatedTarget))return t.call(this,e)};r=t(r)}const l=O(t),c=l[a]||(l[a]={}),h=I(c,r,o?i:null);if(h)return void(h.oneOff=h.oneOff&&n);const d=L(r,e.replace(A,"")),u=o?function(t,e,i){return function s(n){const o=t.querySelectorAll(e);for(let{target:r}=n;r&&r!==this;r=r.parentNode)for(const a of o)if(a===r)return F(n,{delegateTarget:r}),s.oneOff&&j.off(t,n.type,e,i),i.apply(r,[n])}}(t,i,r):function(t,e){return function i(s){return F(s,{delegateTarget:t}),i.oneOff&&j.off(t,s.type,e),e.apply(t,[s])}}(t,r);u.delegationSelector=o?i:null,u.callable=r,u.oneOff=n,u.uidEvent=d,c[d]=u,t.addEventListener(a,u,o)}function P(t,e,i,s,n){const o=I(e[i],s,n);o&&(t.removeEventListener(i,o,Boolean(n)),delete e[i][o.uidEvent])}function x(t,e,i,s){const n=e[i]||{};for(const[o,r]of Object.entries(n))o.includes(s)&&P(t,e,i,r.callable,r.delegationSelector)}function M(t){return t=t.replace(E,""),$[t]||t}const j={on(t,e,i,s){N(t,e,i,s,!1)},one(t,e,i,s){N(t,e,i,s,!0)},off(t,e,i,s){if("string"!=typeof e||!t)return;const[n,o,r]=D(e,i,s),a=r!==e,l=O(t),c=l[r]||{},h=e.startsWith(".");if(void 0===o){if(h)for(const i of Object.keys(l))x(t,l,i,e.slice(1));for(const[i,s]of Object.entries(c)){const n=i.replace(C,"");a&&!e.includes(n)||P(t,l,r,s.callable,s.delegationSelector)}}else{if(!Object.keys(c).length)return;P(t,l,r,o,n?i:null)}},trigger(t,e,i){if("string"!=typeof e||!t)return null;const s=f();let n=null,o=!0,r=!0,a=!1;e!==M(e)&&s&&(n=s.Event(e,i),s(t).trigger(n),o=!n.isPropagationStopped(),r=!n.isImmediatePropagationStopped(),a=n.isDefaultPrevented());const l=F(new Event(e,{bubbles:o,cancelable:!0}),i);return a&&l.preventDefault(),r&&t.dispatchEvent(l),l.defaultPrevented&&n&&n.preventDefault(),l}};function F(t,e={}){for(const[i,s]of Object.entries(e))try{t[i]=s}catch(e){Object.defineProperty(t,i,{configurable:!0,get:()=>s})}return t}function z(t){if("true"===t)return!0;if("false"===t)return!1;if(t===Number(t).toString())return Number(t);if(""===t||"null"===t)return null;if("string"!=typeof t)return t;try{return JSON.parse(decodeURIComponent(t))}catch(e){return t}}function H(t){return t.replace(/[A-Z]/g,(t=>`-${t.toLowerCase()}`))}const B={setDataAttribute(t,e,i){t.setAttribute(`data-bs-${H(e)}`,i)},removeDataAttribute(t,e){t.removeAttribute(`data-bs-${H(e)}`)},getDataAttributes(t){if(!t)return{};const e={},i=Object.keys(t.dataset).filter((t=>t.startsWith("bs")&&!t.startsWith("bsConfig")));for(const s of i){let i=s.replace(/^bs/,"");i=i.charAt(0).toLowerCase()+i.slice(1,i.length),e[i]=z(t.dataset[s])}return e},getDataAttribute:(t,e)=>z(t.getAttribute(`data-bs-${H(e)}`))};class q{static get Default(){return{}}static get DefaultType(){return{}}static get NAME(){throw new Error('You have to implement the static method "NAME", for each component!')}_getConfig(t){return t=this._mergeConfigObj(t),t=this._configAfterMerge(t),this._typeCheckConfig(t),t}_configAfterMerge(t){return t}_mergeConfigObj(t,e){const i=l(e)?B.getDataAttribute(e,"config"):{};return{...this.constructor.Default,..."object"==typeof i?i:{},...l(e)?B.getDataAttributes(e):{},..."object"==typeof t?t:{}}}_typeCheckConfig(t,e=this.constructor.DefaultType){for(const[s,n]of Object.entries(e)){const e=t[s],o=l(e)?"element":null==(i=e)?`${i}`:Object.prototype.toString.call(i).match(/\s([a-z]+)/i)[1].toLowerCase();if(!new RegExp(n).test(o))throw new TypeError(`${this.constructor.NAME.toUpperCase()}: Option "${s}" provided type "${o}" but expected type "${n}".`)}var i}}class W extends q{constructor(t,e){super(),(t=c(t))&&(this._element=t,this._config=this._getConfig(e),n.set(this._element,this.constructor.DATA_KEY,this))}dispose(){n.remove(this._element,this.constructor.DATA_KEY),j.off(this._element,this.constructor.EVENT_KEY);for(const t of Object.getOwnPropertyNames(this))this[t]=null}_queueCallback(t,e,i=!0){y(t,e,i)}_getConfig(t){return t=this._mergeConfigObj(t,this._element),t=this._configAfterMerge(t),this._typeCheckConfig(t),t}static getInstance(t){return n.get(c(t),this.DATA_KEY)}static getOrCreateInstance(t,e={}){return this.getInstance(t)||new this(t,"object"==typeof e?e:null)}static get VERSION(){return"5.3.2"}static get DATA_KEY(){return`bs.${this.NAME}`}static get EVENT_KEY(){return`.${this.DATA_KEY}`}static eventName(t){return`${t}${this.EVENT_KEY}`}}const R=t=>{let e=t.getAttribute("data-bs-target");if(!e||"#"===e){let i=t.getAttribute("href");if(!i||!i.includes("#")&&!i.startsWith("."))return null;i.includes("#")&&!i.startsWith("#")&&(i=`#${i.split("#")[1]}`),e=i&&"#"!==i?r(i.trim()):null}return e},K={find:(t,e=document.documentElement)=>[].concat(...Element.prototype.querySelectorAll.call(e,t)),findOne:(t,e=document.documentElement)=>Element.prototype.querySelector.call(e,t),children:(t,e)=>[].concat(...t.children).filter((t=>t.matches(e))),parents(t,e){const i=[];let s=t.parentNode.closest(e);for(;s;)i.push(s),s=s.parentNode.closest(e);return i},prev(t,e){let i=t.previousElementSibling;for(;i;){if(i.matches(e))return[i];i=i.previousElementSibling}return[]},next(t,e){let i=t.nextElementSibling;for(;i;){if(i.matches(e))return[i];i=i.nextElementSibling}return[]},focusableChildren(t){const e=["a","button","input","textarea","select","details","[tabindex]",'[contenteditable="true"]'].map((t=>`${t}:not([tabindex^="-"])`)).join(",");return this.find(e,t).filter((t=>!d(t)&&h(t)))},getSelectorFromElement(t){const e=R(t);return e&&K.findOne(e)?e:null},getElementFromSelector(t){const e=R(t);return e?K.findOne(e):null},getMultipleElementsFromSelector(t){const e=R(t);return e?K.find(e):[]}},V=(t,e="hide")=>{const i=`click.dismiss${t.EVENT_KEY}`,s=t.NAME;j.on(document,i,`[data-bs-dismiss="${s}"]`,(function(i){if(["A","AREA"].includes(this.tagName)&&i.preventDefault(),d(this))return;const n=K.getElementFromSelector(this)||this.closest(`.${s}`);t.getOrCreateInstance(n)[e]()}))},Q=".bs.alert",X=`close${Q}`,Y=`closed${Q}`;class U extends W{static get NAME(){return"alert"}close(){if(j.trigger(this._element,X).defaultPrevented)return;this._element.classList.remove("show");const t=this._element.classList.contains("fade");this._queueCallback((()=>this._destroyElement()),this._element,t)}_destroyElement(){this._element.remove(),j.trigger(this._element,Y),this.dispose()}static jQueryInterface(t){return this.each((function(){const e=U.getOrCreateInstance(this);if("string"==typeof t){if(void 0===e[t]||t.startsWith("_")||"constructor"===t)throw new TypeError(`No method named "${t}"`);e[t](this)}}))}}V(U,"close"),b(U);const G='[data-bs-toggle="button"]';class J extends W{static get NAME(){return"button"}toggle(){this._element.setAttribute("aria-pressed",this._element.classList.toggle("active"))}static jQueryInterface(t){return this.each((function(){const e=J.getOrCreateInstance(this);"toggle"===t&&e[t]()}))}}j.on(document,"click.bs.button.data-api",G,(t=>{t.preventDefault();const e=t.target.closest(G);J.getOrCreateInstance(e).toggle()})),b(J);const Z=".bs.swipe",tt=`touchstart${Z}`,et=`touchmove${Z}`,it=`touchend${Z}`,st=`pointerdown${Z}`,nt=`pointerup${Z}`,ot={endCallback:null,leftCallback:null,rightCallback:null},rt={endCallback:"(function|null)",leftCallback:"(function|null)",rightCallback:"(function|null)"};class at extends q{constructor(t,e){super(),this._element=t,t&&at.isSupported()&&(this._config=this._getConfig(e),this._deltaX=0,this._supportPointerEvents=Boolean(window.PointerEvent),this._initEvents())}static get Default(){return ot}static get DefaultType(){return rt}static get NAME(){return"swipe"}dispose(){j.off(this._element,Z)}_start(t){this._supportPointerEvents?this._eventIsPointerPenTouch(t)&&(this._deltaX=t.clientX):this._deltaX=t.touches[0].clientX}_end(t){this._eventIsPointerPenTouch(t)&&(this._deltaX=t.clientX-this._deltaX),this._handleSwipe(),v(this._config.endCallback)}_move(t){this._deltaX=t.touches&&t.touches.length>1?0:t.touches[0].clientX-this._deltaX}_handleSwipe(){const t=Math.abs(this._deltaX);if(t<=40)return;const e=t/this._deltaX;this._deltaX=0,e&&v(e>0?this._config.rightCallback:this._config.leftCallback)}_initEvents(){this._supportPointerEvents?(j.on(this._element,st,(t=>this._start(t))),j.on(this._element,nt,(t=>this._end(t))),this._element.classList.add("pointer-event")):(j.on(this._element,tt,(t=>this._start(t))),j.on(this._element,et,(t=>this._move(t))),j.on(this._element,it,(t=>this._end(t))))}_eventIsPointerPenTouch(t){return this._supportPointerEvents&&("pen"===t.pointerType||"touch"===t.pointerType)}static isSupported(){return"ontouchstart"in document.documentElement||navigator.maxTouchPoints>0}}const lt=".bs.carousel",ct=".data-api",ht="next",dt="prev",ut="left",_t="right",gt=`slide${lt}`,ft=`slid${lt}`,mt=`keydown${lt}`,pt=`mouseenter${lt}`,bt=`mouseleave${lt}`,vt=`dragstart${lt}`,yt=`load${lt}${ct}`,wt=`click${lt}${ct}`,At="carousel",Et="active",Ct=".active",Tt=".carousel-item",kt=Ct+Tt,$t={ArrowLeft:_t,ArrowRight:ut},St={interval:5e3,keyboard:!0,pause:"hover",ride:!1,touch:!0,wrap:!0},Lt={interval:"(number|boolean)",keyboard:"boolean",pause:"(string|boolean)",ride:"(boolean|string)",touch:"boolean",wrap:"boolean"};class Ot extends W{constructor(t,e){super(t,e),this._interval=null,this._activeElement=null,this._isSliding=!1,this.touchTimeout=null,this._swipeHelper=null,this._indicatorsElement=K.findOne(".carousel-indicators",this._element),this._addEventListeners(),this._config.ride===At&&this.cycle()}static get Default(){return St}static get DefaultType(){return Lt}static get NAME(){return"carousel"}next(){this._slide(ht)}nextWhenVisible(){!document.hidden&&h(this._element)&&this.next()}prev(){this._slide(dt)}pause(){this._isSliding&&a(this._element),this._clearInterval()}cycle(){this._clearInterval(),this._updateInterval(),this._interval=setInterval((()=>this.nextWhenVisible()),this._config.interval)}_maybeEnableCycle(){this._config.ride&&(this._isSliding?j.one(this._element,ft,(()=>this.cycle())):this.cycle())}to(t){const e=this._getItems();if(t>e.length-1||t<0)return;if(this._isSliding)return void j.one(this._element,ft,(()=>this.to(t)));const i=this._getItemIndex(this._getActive());if(i===t)return;const s=t>i?ht:dt;this._slide(s,e[t])}dispose(){this._swipeHelper&&this._swipeHelper.dispose(),super.dispose()}_configAfterMerge(t){return t.defaultInterval=t.interval,t}_addEventListeners(){this._config.keyboard&&j.on(this._element,mt,(t=>this._keydown(t))),"hover"===this._config.pause&&(j.on(this._element,pt,(()=>this.pause())),j.on(this._element,bt,(()=>this._maybeEnableCycle()))),this._config.touch&&at.isSupported()&&this._addTouchEventListeners()}_addTouchEventListeners(){for(const t of K.find(".carousel-item img",this._element))j.on(t,vt,(t=>t.preventDefault()));const t={leftCallback:()=>this._slide(this._directionToOrder(ut)),rightCallback:()=>this._slide(this._directionToOrder(_t)),endCallback:()=>{"hover"===this._config.pause&&(this.pause(),this.touchTimeout&&clearTimeout(this.touchTimeout),this.touchTimeout=setTimeout((()=>this._maybeEnableCycle()),500+this._config.interval))}};this._swipeHelper=new at(this._element,t)}_keydown(t){if(/input|textarea/i.test(t.target.tagName))return;const e=$t[t.key];e&&(t.preventDefault(),this._slide(this._directionToOrder(e)))}_getItemIndex(t){return this._getItems().indexOf(t)}_setActiveIndicatorElement(t){if(!this._indicatorsElement)return;const e=K.findOne(Ct,this._indicatorsElement);e.classList.remove(Et),e.removeAttribute("aria-current");const i=K.findOne(`[data-bs-slide-to="${t}"]`,this._indicatorsElement);i&&(i.classList.add(Et),i.setAttribute("aria-current","true"))}_updateInterval(){const t=this._activeElement||this._getActive();if(!t)return;const e=Number.parseInt(t.getAttribute("data-bs-interval"),10);this._config.interval=e||this._config.defaultInterval}_slide(t,e=null){if(this._isSliding)return;const i=this._getActive(),s=t===ht,n=e||w(this._getItems(),i,s,this._config.wrap);if(n===i)return;const o=this._getItemIndex(n),r=e=>j.trigger(this._element,e,{relatedTarget:n,direction:this._orderToDirection(t),from:this._getItemIndex(i),to:o});if(r(gt).defaultPrevented)return;if(!i||!n)return;const a=Boolean(this._interval);this.pause(),this._isSliding=!0,this._setActiveIndicatorElement(o),this._activeElement=n;const l=s?"carousel-item-start":"carousel-item-end",c=s?"carousel-item-next":"carousel-item-prev";n.classList.add(c),g(n),i.classList.add(l),n.classList.add(l),this._queueCallback((()=>{n.classList.remove(l,c),n.classList.add(Et),i.classList.remove(Et,c,l),this._isSliding=!1,r(ft)}),i,this._isAnimated()),a&&this.cycle()}_isAnimated(){return this._element.classList.contains("slide")}_getActive(){return K.findOne(kt,this._element)}_getItems(){return K.find(Tt,this._element)}_clearInterval(){this._interval&&(clearInterval(this._interval),this._interval=null)}_directionToOrder(t){return p()?t===ut?dt:ht:t===ut?ht:dt}_orderToDirection(t){return p()?t===dt?ut:_t:t===dt?_t:ut}static jQueryInterface(t){return this.each((function(){const e=Ot.getOrCreateInstance(this,t);if("number"!=typeof t){if("string"==typeof t){if(void 0===e[t]||t.startsWith("_")||"constructor"===t)throw new TypeError(`No method named "${t}"`);e[t]()}}else e.to(t)}))}}j.on(document,wt,"[data-bs-slide], [data-bs-slide-to]",(function(t){const e=K.getElementFromSelector(this);if(!e||!e.classList.contains(At))return;t.preventDefault();const i=Ot.getOrCreateInstance(e),s=this.getAttribute("data-bs-slide-to");return s?(i.to(s),void i._maybeEnableCycle()):"next"===B.getDataAttribute(this,"slide")?(i.next(),void i._maybeEnableCycle()):(i.prev(),void i._maybeEnableCycle())})),j.on(window,yt,(()=>{const t=K.find('[data-bs-ride="carousel"]');for(const e of t)Ot.getOrCreateInstance(e)})),b(Ot);const It=".bs.collapse",Dt=`show${It}`,Nt=`shown${It}`,Pt=`hide${It}`,xt=`hidden${It}`,Mt=`click${It}.data-api`,jt="show",Ft="collapse",zt="collapsing",Ht=`:scope .${Ft} .${Ft}`,Bt='[data-bs-toggle="collapse"]',qt={parent:null,toggle:!0},Wt={parent:"(null|element)",toggle:"boolean"};class Rt extends W{constructor(t,e){super(t,e),this._isTransitioning=!1,this._triggerArray=[];const i=K.find(Bt);for(const t of i){const e=K.getSelectorFromElement(t),i=K.find(e).filter((t=>t===this._element));null!==e&&i.length&&this._triggerArray.push(t)}this._initializeChildren(),this._config.parent||this._addAriaAndCollapsedClass(this._triggerArray,this._isShown()),this._config.toggle&&this.toggle()}static get Default(){return qt}static get DefaultType(){return Wt}static get NAME(){return"collapse"}toggle(){this._isShown()?this.hide():this.show()}show(){if(this._isTransitioning||this._isShown())return;let t=[];if(this._config.parent&&(t=this._getFirstLevelChildren(".collapse.show, .collapse.collapsing").filter((t=>t!==this._element)).map((t=>Rt.getOrCreateInstance(t,{toggle:!1})))),t.length&&t[0]._isTransitioning)return;if(j.trigger(this._element,Dt).defaultPrevented)return;for(const e of t)e.hide();const e=this._getDimension();this._element.classList.remove(Ft),this._element.classList.add(zt),this._element.style[e]=0,this._addAriaAndCollapsedClass(this._triggerArray,!0),this._isTransitioning=!0;const i=`scroll${e[0].toUpperCase()+e.slice(1)}`;this._queueCallback((()=>{this._isTransitioning=!1,this._element.classList.remove(zt),this._element.classList.add(Ft,jt),this._element.style[e]="",j.trigger(this._element,Nt)}),this._element,!0),this._element.style[e]=`${this._element[i]}px`}hide(){if(this._isTransitioning||!this._isShown())return;if(j.trigger(this._element,Pt).defaultPrevented)return;const t=this._getDimension();this._element.style[t]=`${this._element.getBoundingClientRect()[t]}px`,g(this._element),this._element.classList.add(zt),this._element.classList.remove(Ft,jt);for(const t of this._triggerArray){const e=K.getElementFromSelector(t);e&&!this._isShown(e)&&this._addAriaAndCollapsedClass([t],!1)}this._isTransitioning=!0,this._element.style[t]="",this._queueCallback((()=>{this._isTransitioning=!1,this._element.classList.remove(zt),this._element.classList.add(Ft),j.trigger(this._element,xt)}),this._element,!0)}_isShown(t=this._element){return t.classList.contains(jt)}_configAfterMerge(t){return t.toggle=Boolean(t.toggle),t.parent=c(t.parent),t}_getDimension(){return this._element.classList.contains("collapse-horizontal")?"width":"height"}_initializeChildren(){if(!this._config.parent)return;const t=this._getFirstLevelChildren(Bt);for(const e of t){const t=K.getElementFromSelector(e);t&&this._addAriaAndCollapsedClass([e],this._isShown(t))}}_getFirstLevelChildren(t){const e=K.find(Ht,this._config.parent);return K.find(t,this._config.parent).filter((t=>!e.includes(t)))}_addAriaAndCollapsedClass(t,e){if(t.length)for(const i of t)i.classList.toggle("collapsed",!e),i.setAttribute("aria-expanded",e)}static jQueryInterface(t){const e={};return"string"==typeof t&&/show|hide/.test(t)&&(e.toggle=!1),this.each((function(){const i=Rt.getOrCreateInstance(this,e);if("string"==typeof t){if(void 0===i[t])throw new TypeError(`No method named "${t}"`);i[t]()}}))}}j.on(document,Mt,Bt,(function(t){("A"===t.target.tagName||t.delegateTarget&&"A"===t.delegateTarget.tagName)&&t.preventDefault();for(const t of K.getMultipleElementsFromSelector(this))Rt.getOrCreateInstance(t,{toggle:!1}).toggle()})),b(Rt);const Kt="dropdown",Vt=".bs.dropdown",Qt=".data-api",Xt="ArrowUp",Yt="ArrowDown",Ut=`hide${Vt}`,Gt=`hidden${Vt}`,Jt=`show${Vt}`,Zt=`shown${Vt}`,te=`click${Vt}${Qt}`,ee=`keydown${Vt}${Qt}`,ie=`keyup${Vt}${Qt}`,se="show",ne='[data-bs-toggle="dropdown"]:not(.disabled):not(:disabled)',oe=`${ne}.${se}`,re=".dropdown-menu",ae=p()?"top-end":"top-start",le=p()?"top-start":"top-end",ce=p()?"bottom-end":"bottom-start",he=p()?"bottom-start":"bottom-end",de=p()?"left-start":"right-start",ue=p()?"right-start":"left-start",_e={autoClose:!0,boundary:"clippingParents",display:"dynamic",offset:[0,2],popperConfig:null,reference:"toggle"},ge={autoClose:"(boolean|string)",boundary:"(string|element)",display:"string",offset:"(array|string|function)",popperConfig:"(null|object|function)",reference:"(string|element|object)"};class fe extends W{constructor(t,e){super(t,e),this._popper=null,this._parent=this._element.parentNode,this._menu=K.next(this._element,re)[0]||K.prev(this._element,re)[0]||K.findOne(re,this._parent),this._inNavbar=this._detectNavbar()}static get Default(){return _e}static get DefaultType(){return ge}static get NAME(){return Kt}toggle(){return this._isShown()?this.hide():this.show()}show(){if(d(this._element)||this._isShown())return;const t={relatedTarget:this._element};if(!j.trigger(this._element,Jt,t).defaultPrevented){if(this._createPopper(),"ontouchstart"in document.documentElement&&!this._parent.closest(".navbar-nav"))for(const t of[].concat(...document.body.children))j.on(t,"mouseover",_);this._element.focus(),this._element.setAttribute("aria-expanded",!0),this._menu.classList.add(se),this._element.classList.add(se),j.trigger(this._element,Zt,t)}}hide(){if(d(this._element)||!this._isShown())return;const t={relatedTarget:this._element};this._completeHide(t)}dispose(){this._popper&&this._popper.destroy(),super.dispose()}update(){this._inNavbar=this._detectNavbar(),this._popper&&this._popper.update()}_completeHide(t){if(!j.trigger(this._element,Ut,t).defaultPrevented){if("ontouchstart"in document.documentElement)for(const t of[].concat(...document.body.children))j.off(t,"mouseover",_);this._popper&&this._popper.destroy(),this._menu.classList.remove(se),this._element.classList.remove(se),this._element.setAttribute("aria-expanded","false"),B.removeDataAttribute(this._menu,"popper"),j.trigger(this._element,Gt,t)}}_getConfig(t){if("object"==typeof(t=super._getConfig(t)).reference&&!l(t.reference)&&"function"!=typeof t.reference.getBoundingClientRect)throw new TypeError(`${Kt.toUpperCase()}: Option "reference" provided type "object" without a required "getBoundingClientRect" method.`);return t}_createPopper(){if(void 0===i)throw new TypeError("Bootstrap's dropdowns require Popper (https://popper.js.org)");let t=this._element;"parent"===this._config.reference?t=this._parent:l(this._config.reference)?t=c(this._config.reference):"object"==typeof this._config.reference&&(t=this._config.reference);const e=this._getPopperConfig();this._popper=i.createPopper(t,this._menu,e)}_isShown(){return this._menu.classList.contains(se)}_getPlacement(){const t=this._parent;if(t.classList.contains("dropend"))return de;if(t.classList.contains("dropstart"))return ue;if(t.classList.contains("dropup-center"))return"top";if(t.classList.contains("dropdown-center"))return"bottom";const e="end"===getComputedStyle(this._menu).getPropertyValue("--bs-position").trim();return t.classList.contains("dropup")?e?le:ae:e?he:ce}_detectNavbar(){return null!==this._element.closest(".navbar")}_getOffset(){const{offset:t}=this._config;return"string"==typeof t?t.split(",").map((t=>Number.parseInt(t,10))):"function"==typeof t?e=>t(e,this._element):t}_getPopperConfig(){const t={placement:this._getPlacement(),modifiers:[{name:"preventOverflow",options:{boundary:this._config.boundary}},{name:"offset",options:{offset:this._getOffset()}}]};return(this._inNavbar||"static"===this._config.display)&&(B.setDataAttribute(this._menu,"popper","static"),t.modifiers=[{name:"applyStyles",enabled:!1}]),{...t,...v(this._config.popperConfig,[t])}}_selectMenuItem({key:t,target:e}){const i=K.find(".dropdown-menu .dropdown-item:not(.disabled):not(:disabled)",this._menu).filter((t=>h(t)));i.length&&w(i,e,t===Yt,!i.includes(e)).focus()}static jQueryInterface(t){return this.each((function(){const e=fe.getOrCreateInstance(this,t);if("string"==typeof t){if(void 0===e[t])throw new TypeError(`No method named "${t}"`);e[t]()}}))}static clearMenus(t){if(2===t.button||"keyup"===t.type&&"Tab"!==t.key)return;const e=K.find(oe);for(const i of e){const e=fe.getInstance(i);if(!e||!1===e._config.autoClose)continue;const s=t.composedPath(),n=s.includes(e._menu);if(s.includes(e._element)||"inside"===e._config.autoClose&&!n||"outside"===e._config.autoClose&&n)continue;if(e._menu.contains(t.target)&&("keyup"===t.type&&"Tab"===t.key||/input|select|option|textarea|form/i.test(t.target.tagName)))continue;const o={relatedTarget:e._element};"click"===t.type&&(o.clickEvent=t),e._completeHide(o)}}static dataApiKeydownHandler(t){const e=/input|textarea/i.test(t.target.tagName),i="Escape"===t.key,s=[Xt,Yt].includes(t.key);if(!s&&!i)return;if(e&&!i)return;t.preventDefault();const n=this.matches(ne)?this:K.prev(this,ne)[0]||K.next(this,ne)[0]||K.findOne(ne,t.delegateTarget.parentNode),o=fe.getOrCreateInstance(n);if(s)return t.stopPropagation(),o.show(),void o._selectMenuItem(t);o._isShown()&&(t.stopPropagation(),o.hide(),n.focus())}}j.on(document,ee,ne,fe.dataApiKeydownHandler),j.on(document,ee,re,fe.dataApiKeydownHandler),j.on(document,te,fe.clearMenus),j.on(document,ie,fe.clearMenus),j.on(document,te,ne,(function(t){t.preventDefault(),fe.getOrCreateInstance(this).toggle()})),b(fe);const me="backdrop",pe="show",be=`mousedown.bs.${me}`,ve={className:"modal-backdrop",clickCallback:null,isAnimated:!1,isVisible:!0,rootElement:"body"},ye={className:"string",clickCallback:"(function|null)",isAnimated:"boolean",isVisible:"boolean",rootElement:"(element|string)"};class we extends q{constructor(t){super(),this._config=this._getConfig(t),this._isAppended=!1,this._element=null}static get Default(){return ve}static get DefaultType(){return ye}static get NAME(){return me}show(t){if(!this._config.isVisible)return void v(t);this._append();const e=this._getElement();this._config.isAnimated&&g(e),e.classList.add(pe),this._emulateAnimation((()=>{v(t)}))}hide(t){this._config.isVisible?(this._getElement().classList.remove(pe),this._emulateAnimation((()=>{this.dispose(),v(t)}))):v(t)}dispose(){this._isAppended&&(j.off(this._element,be),this._element.remove(),this._isAppended=!1)}_getElement(){if(!this._element){const t=document.createElement("div");t.className=this._config.className,this._config.isAnimated&&t.classList.add("fade"),this._element=t}return this._element}_configAfterMerge(t){return t.rootElement=c(t.rootElement),t}_append(){if(this._isAppended)return;const t=this._getElement();this._config.rootElement.append(t),j.on(t,be,(()=>{v(this._config.clickCallback)})),this._isAppended=!0}_emulateAnimation(t){y(t,this._getElement(),this._config.isAnimated)}}const Ae=".bs.focustrap",Ee=`focusin${Ae}`,Ce=`keydown.tab${Ae}`,Te="backward",ke={autofocus:!0,trapElement:null},$e={autofocus:"boolean",trapElement:"element"};class Se extends q{constructor(t){super(),this._config=this._getConfig(t),this._isActive=!1,this._lastTabNavDirection=null}static get Default(){return ke}static get DefaultType(){return $e}static get NAME(){return"focustrap"}activate(){this._isActive||(this._config.autofocus&&this._config.trapElement.focus(),j.off(document,Ae),j.on(document,Ee,(t=>this._handleFocusin(t))),j.on(document,Ce,(t=>this._handleKeydown(t))),this._isActive=!0)}deactivate(){this._isActive&&(this._isActive=!1,j.off(document,Ae))}_handleFocusin(t){const{trapElement:e}=this._config;if(t.target===document||t.target===e||e.contains(t.target))return;const i=K.focusableChildren(e);0===i.length?e.focus():this._lastTabNavDirection===Te?i[i.length-1].focus():i[0].focus()}_handleKeydown(t){"Tab"===t.key&&(this._lastTabNavDirection=t.shiftKey?Te:"forward")}}const Le=".fixed-top, .fixed-bottom, .is-fixed, .sticky-top",Oe=".sticky-top",Ie="padding-right",De="margin-right";class Ne{constructor(){this._element=document.body}getWidth(){const t=document.documentElement.clientWidth;return Math.abs(window.innerWidth-t)}hide(){const t=this.getWidth();this._disableOverFlow(),this._setElementAttributes(this._element,Ie,(e=>e+t)),this._setElementAttributes(Le,Ie,(e=>e+t)),this._setElementAttributes(Oe,De,(e=>e-t))}reset(){this._resetElementAttributes(this._element,"overflow"),this._resetElementAttributes(this._element,Ie),this._resetElementAttributes(Le,Ie),this._resetElementAttributes(Oe,De)}isOverflowing(){return this.getWidth()>0}_disableOverFlow(){this._saveInitialAttribute(this._element,"overflow"),this._element.style.overflow="hidden"}_setElementAttributes(t,e,i){const s=this.getWidth();this._applyManipulationCallback(t,(t=>{if(t!==this._element&&window.innerWidth>t.clientWidth+s)return;this._saveInitialAttribute(t,e);const n=window.getComputedStyle(t).getPropertyValue(e);t.style.setProperty(e,`${i(Number.parseFloat(n))}px`)}))}_saveInitialAttribute(t,e){const i=t.style.getPropertyValue(e);i&&B.setDataAttribute(t,e,i)}_resetElementAttributes(t,e){this._applyManipulationCallback(t,(t=>{const i=B.getDataAttribute(t,e);null!==i?(B.removeDataAttribute(t,e),t.style.setProperty(e,i)):t.style.removeProperty(e)}))}_applyManipulationCallback(t,e){if(l(t))e(t);else for(const i of K.find(t,this._element))e(i)}}const Pe=".bs.modal",xe=`hide${Pe}`,Me=`hidePrevented${Pe}`,je=`hidden${Pe}`,Fe=`show${Pe}`,ze=`shown${Pe}`,He=`resize${Pe}`,Be=`click.dismiss${Pe}`,qe=`mousedown.dismiss${Pe}`,We=`keydown.dismiss${Pe}`,Re=`click${Pe}.data-api`,Ke="modal-open",Ve="show",Qe="modal-static",Xe={backdrop:!0,focus:!0,keyboard:!0},Ye={backdrop:"(boolean|string)",focus:"boolean",keyboard:"boolean"};class Ue extends W{constructor(t,e){super(t,e),this._dialog=K.findOne(".modal-dialog",this._element),this._backdrop=this._initializeBackDrop(),this._focustrap=this._initializeFocusTrap(),this._isShown=!1,this._isTransitioning=!1,this._scrollBar=new Ne,this._addEventListeners()}static get Default(){return Xe}static get DefaultType(){return Ye}static get NAME(){return"modal"}toggle(t){return this._isShown?this.hide():this.show(t)}show(t){this._isShown||this._isTransitioning||j.trigger(this._element,Fe,{relatedTarget:t}).defaultPrevented||(this._isShown=!0,this._isTransitioning=!0,this._scrollBar.hide(),document.body.classList.add(Ke),this._adjustDialog(),this._backdrop.show((()=>this._showElement(t))))}hide(){this._isShown&&!this._isTransitioning&&(j.trigger(this._element,xe).defaultPrevented||(this._isShown=!1,this._isTransitioning=!0,this._focustrap.deactivate(),this._element.classList.remove(Ve),this._queueCallback((()=>this._hideModal()),this._element,this._isAnimated())))}dispose(){j.off(window,Pe),j.off(this._dialog,Pe),this._backdrop.dispose(),this._focustrap.deactivate(),super.dispose()}handleUpdate(){this._adjustDialog()}_initializeBackDrop(){return new we({isVisible:Boolean(this._config.backdrop),isAnimated:this._isAnimated()})}_initializeFocusTrap(){return new Se({trapElement:this._element})}_showElement(t){document.body.contains(this._element)||document.body.append(this._element),this._element.style.display="block",this._element.removeAttribute("aria-hidden"),this._element.setAttribute("aria-modal",!0),this._element.setAttribute("role","dialog"),this._element.scrollTop=0;const e=K.findOne(".modal-body",this._dialog);e&&(e.scrollTop=0),g(this._element),this._element.classList.add(Ve),this._queueCallback((()=>{this._config.focus&&this._focustrap.activate(),this._isTransitioning=!1,j.trigger(this._element,ze,{relatedTarget:t})}),this._dialog,this._isAnimated())}_addEventListeners(){j.on(this._element,We,(t=>{"Escape"===t.key&&(this._config.keyboard?this.hide():this._triggerBackdropTransition())})),j.on(window,He,(()=>{this._isShown&&!this._isTransitioning&&this._adjustDialog()})),j.on(this._element,qe,(t=>{j.one(this._element,Be,(e=>{this._element===t.target&&this._element===e.target&&("static"!==this._config.backdrop?this._config.backdrop&&this.hide():this._triggerBackdropTransition())}))}))}_hideModal(){this._element.style.display="none",this._element.setAttribute("aria-hidden",!0),this._element.removeAttribute("aria-modal"),this._element.removeAttribute("role"),this._isTransitioning=!1,this._backdrop.hide((()=>{document.body.classList.remove(Ke),this._resetAdjustments(),this._scrollBar.reset(),j.trigger(this._element,je)}))}_isAnimated(){return this._element.classList.contains("fade")}_triggerBackdropTransition(){if(j.trigger(this._element,Me).defaultPrevented)return;const t=this._element.scrollHeight>document.documentElement.clientHeight,e=this._element.style.overflowY;"hidden"===e||this._element.classList.contains(Qe)||(t||(this._element.style.overflowY="hidden"),this._element.classList.add(Qe),this._queueCallback((()=>{this._element.classList.remove(Qe),this._queueCallback((()=>{this._element.style.overflowY=e}),this._dialog)}),this._dialog),this._element.focus())}_adjustDialog(){const t=this._element.scrollHeight>document.documentElement.clientHeight,e=this._scrollBar.getWidth(),i=e>0;if(i&&!t){const t=p()?"paddingLeft":"paddingRight";this._element.style[t]=`${e}px`}if(!i&&t){const t=p()?"paddingRight":"paddingLeft";this._element.style[t]=`${e}px`}}_resetAdjustments(){this._element.style.paddingLeft="",this._element.style.paddingRight=""}static jQueryInterface(t,e){return this.each((function(){const i=Ue.getOrCreateInstance(this,t);if("string"==typeof t){if(void 0===i[t])throw new TypeError(`No method named "${t}"`);i[t](e)}}))}}j.on(document,Re,'[data-bs-toggle="modal"]',(function(t){const e=K.getElementFromSelector(this);["A","AREA"].includes(this.tagName)&&t.preventDefault(),j.one(e,Fe,(t=>{t.defaultPrevented||j.one(e,je,(()=>{h(this)&&this.focus()}))}));const i=K.findOne(".modal.show");i&&Ue.getInstance(i).hide(),Ue.getOrCreateInstance(e).toggle(this)})),V(Ue),b(Ue);const Ge=".bs.offcanvas",Je=".data-api",Ze=`load${Ge}${Je}`,ti="show",ei="showing",ii="hiding",si=".offcanvas.show",ni=`show${Ge}`,oi=`shown${Ge}`,ri=`hide${Ge}`,ai=`hidePrevented${Ge}`,li=`hidden${Ge}`,ci=`resize${Ge}`,hi=`click${Ge}${Je}`,di=`keydown.dismiss${Ge}`,ui={backdrop:!0,keyboard:!0,scroll:!1},_i={backdrop:"(boolean|string)",keyboard:"boolean",scroll:"boolean"};class gi extends W{constructor(t,e){super(t,e),this._isShown=!1,this._backdrop=this._initializeBackDrop(),this._focustrap=this._initializeFocusTrap(),this._addEventListeners()}static get Default(){return ui}static get DefaultType(){return _i}static get NAME(){return"offcanvas"}toggle(t){return this._isShown?this.hide():this.show(t)}show(t){this._isShown||j.trigger(this._element,ni,{relatedTarget:t}).defaultPrevented||(this._isShown=!0,this._backdrop.show(),this._config.scroll||(new Ne).hide(),this._element.setAttribute("aria-modal",!0),this._element.setAttribute("role","dialog"),this._element.classList.add(ei),this._queueCallback((()=>{this._config.scroll&&!this._config.backdrop||this._focustrap.activate(),this._element.classList.add(ti),this._element.classList.remove(ei),j.trigger(this._element,oi,{relatedTarget:t})}),this._element,!0))}hide(){this._isShown&&(j.trigger(this._element,ri).defaultPrevented||(this._focustrap.deactivate(),this._element.blur(),this._isShown=!1,this._element.classList.add(ii),this._backdrop.hide(),this._queueCallback((()=>{this._element.classList.remove(ti,ii),this._element.removeAttribute("aria-modal"),this._element.removeAttribute("role"),this._config.scroll||(new Ne).reset(),j.trigger(this._element,li)}),this._element,!0)))}dispose(){this._backdrop.dispose(),this._focustrap.deactivate(),super.dispose()}_initializeBackDrop(){const t=Boolean(this._config.backdrop);return new we({className:"offcanvas-backdrop",isVisible:t,isAnimated:!0,rootElement:this._element.parentNode,clickCallback:t?()=>{"static"!==this._config.backdrop?this.hide():j.trigger(this._element,ai)}:null})}_initializeFocusTrap(){return new Se({trapElement:this._element})}_addEventListeners(){j.on(this._element,di,(t=>{"Escape"===t.key&&(this._config.keyboard?this.hide():j.trigger(this._element,ai))}))}static jQueryInterface(t){return this.each((function(){const e=gi.getOrCreateInstance(this,t);if("string"==typeof t){if(void 0===e[t]||t.startsWith("_")||"constructor"===t)throw new TypeError(`No method named "${t}"`);e[t](this)}}))}}j.on(document,hi,'[data-bs-toggle="offcanvas"]',(function(t){const e=K.getElementFromSelector(this);if(["A","AREA"].includes(this.tagName)&&t.preventDefault(),d(this))return;j.one(e,li,(()=>{h(this)&&this.focus()}));const i=K.findOne(si);i&&i!==e&&gi.getInstance(i).hide(),gi.getOrCreateInstance(e).toggle(this)})),j.on(window,Ze,(()=>{for(const t of K.find(si))gi.getOrCreateInstance(t).show()})),j.on(window,ci,(()=>{for(const t of K.find("[aria-modal][class*=show][class*=offcanvas-]"))"fixed"!==getComputedStyle(t).position&&gi.getOrCreateInstance(t).hide()})),V(gi),b(gi);const fi={"*":["class","dir","id","lang","role",/^aria-[\w-]*$/i],a:["target","href","title","rel"],area:[],b:[],br:[],col:[],code:[],div:[],em:[],hr:[],h1:[],h2:[],h3:[],h4:[],h5:[],h6:[],i:[],img:["src","srcset","alt","title","width","height"],li:[],ol:[],p:[],pre:[],s:[],small:[],span:[],sub:[],sup:[],strong:[],u:[],ul:[]},mi=new Set(["background","cite","href","itemtype","longdesc","poster","src","xlink:href"]),pi=/^(?!javascript:)(?:[a-z0-9+.-]+:|[^&:/?#]*(?:[/?#]|$))/i,bi=(t,e)=>{const i=t.nodeName.toLowerCase();return e.includes(i)?!mi.has(i)||Boolean(pi.test(t.nodeValue)):e.filter((t=>t instanceof RegExp)).some((t=>t.test(i)))},vi={allowList:fi,content:{},extraClass:"",html:!1,sanitize:!0,sanitizeFn:null,template:"<div></div>"},yi={allowList:"object",content:"object",extraClass:"(string|function)",html:"boolean",sanitize:"boolean",sanitizeFn:"(null|function)",template:"string"},wi={entry:"(string|element|function|null)",selector:"(string|element)"};class Ai extends q{constructor(t){super(),this._config=this._getConfig(t)}static get Default(){return vi}static get DefaultType(){return yi}static get NAME(){return"TemplateFactory"}getContent(){return Object.values(this._config.content).map((t=>this._resolvePossibleFunction(t))).filter(Boolean)}hasContent(){return this.getContent().length>0}changeContent(t){return this._checkContent(t),this._config.content={...this._config.content,...t},this}toHtml(){const t=document.createElement("div");t.innerHTML=this._maybeSanitize(this._config.template);for(const[e,i]of Object.entries(this._config.content))this._setContent(t,i,e);const e=t.children[0],i=this._resolvePossibleFunction(this._config.extraClass);return i&&e.classList.add(...i.split(" ")),e}_typeCheckConfig(t){super._typeCheckConfig(t),this._checkContent(t.content)}_checkContent(t){for(const[e,i]of Object.entries(t))super._typeCheckConfig({selector:e,entry:i},wi)}_setContent(t,e,i){const s=K.findOne(i,t);s&&((e=this._resolvePossibleFunction(e))?l(e)?this._putElementInTemplate(c(e),s):this._config.html?s.innerHTML=this._maybeSanitize(e):s.textContent=e:s.remove())}_maybeSanitize(t){return this._config.sanitize?function(t,e,i){if(!t.length)return t;if(i&&"function"==typeof i)return i(t);const s=(new window.DOMParser).parseFromString(t,"text/html"),n=[].concat(...s.body.querySelectorAll("*"));for(const t of n){const i=t.nodeName.toLowerCase();if(!Object.keys(e).includes(i)){t.remove();continue}const s=[].concat(...t.attributes),n=[].concat(e["*"]||[],e[i]||[]);for(const e of s)bi(e,n)||t.removeAttribute(e.nodeName)}return s.body.innerHTML}(t,this._config.allowList,this._config.sanitizeFn):t}_resolvePossibleFunction(t){return v(t,[this])}_putElementInTemplate(t,e){if(this._config.html)return e.innerHTML="",void e.append(t);e.textContent=t.textContent}}const Ei=new Set(["sanitize","allowList","sanitizeFn"]),Ci="fade",Ti="show",ki=".modal",$i="hide.bs.modal",Si="hover",Li="focus",Oi={AUTO:"auto",TOP:"top",RIGHT:p()?"left":"right",BOTTOM:"bottom",LEFT:p()?"right":"left"},Ii={allowList:fi,animation:!0,boundary:"clippingParents",container:!1,customClass:"",delay:0,fallbackPlacements:["top","right","bottom","left"],html:!1,offset:[0,6],placement:"top",popperConfig:null,sanitize:!0,sanitizeFn:null,selector:!1,template:'<div class="tooltip" role="tooltip"><div class="tooltip-arrow"></div><div class="tooltip-inner"></div></div>',title:"",trigger:"hover focus"},Di={allowList:"object",animation:"boolean",boundary:"(string|element)",container:"(string|element|boolean)",customClass:"(string|function)",delay:"(number|object)",fallbackPlacements:"array",html:"boolean",offset:"(array|string|function)",placement:"(string|function)",popperConfig:"(null|object|function)",sanitize:"boolean",sanitizeFn:"(null|function)",selector:"(string|boolean)",template:"string",title:"(string|element|function)",trigger:"string"};class Ni extends W{constructor(t,e){if(void 0===i)throw new TypeError("Bootstrap's tooltips require Popper (https://popper.js.org)");super(t,e),this._isEnabled=!0,this._timeout=0,this._isHovered=null,this._activeTrigger={},this._popper=null,this._templateFactory=null,this._newContent=null,this.tip=null,this._setListeners(),this._config.selector||this._fixTitle()}static get Default(){return Ii}static get DefaultType(){return Di}static get NAME(){return"tooltip"}enable(){this._isEnabled=!0}disable(){this._isEnabled=!1}toggleEnabled(){this._isEnabled=!this._isEnabled}toggle(){this._isEnabled&&(this._activeTrigger.click=!this._activeTrigger.click,this._isShown()?this._leave():this._enter())}dispose(){clearTimeout(this._timeout),j.off(this._element.closest(ki),$i,this._hideModalHandler),this._element.getAttribute("data-bs-original-title")&&this._element.setAttribute("title",this._element.getAttribute("data-bs-original-title")),this._disposePopper(),super.dispose()}show(){if("none"===this._element.style.display)throw new Error("Please use show on visible elements");if(!this._isWithContent()||!this._isEnabled)return;const t=j.trigger(this._element,this.constructor.eventName("show")),e=(u(this._element)||this._element.ownerDocument.documentElement).contains(this._element);if(t.defaultPrevented||!e)return;this._disposePopper();const i=this._getTipElement();this._element.setAttribute("aria-describedby",i.getAttribute("id"));const{container:s}=this._config;if(this._element.ownerDocument.documentElement.contains(this.tip)||(s.append(i),j.trigger(this._element,this.constructor.eventName("inserted"))),this._popper=this._createPopper(i),i.classList.add(Ti),"ontouchstart"in document.documentElement)for(const t of[].concat(...document.body.children))j.on(t,"mouseover",_);this._queueCallback((()=>{j.trigger(this._element,this.constructor.eventName("shown")),!1===this._isHovered&&this._leave(),this._isHovered=!1}),this.tip,this._isAnimated())}hide(){if(this._isShown()&&!j.trigger(this._element,this.constructor.eventName("hide")).defaultPrevented){if(this._getTipElement().classList.remove(Ti),"ontouchstart"in document.documentElement)for(const t of[].concat(...document.body.children))j.off(t,"mouseover",_);this._activeTrigger.click=!1,this._activeTrigger[Li]=!1,this._activeTrigger[Si]=!1,this._isHovered=null,this._queueCallback((()=>{this._isWithActiveTrigger()||(this._isHovered||this._disposePopper(),this._element.removeAttribute("aria-describedby"),j.trigger(this._element,this.constructor.eventName("hidden")))}),this.tip,this._isAnimated())}}update(){this._popper&&this._popper.update()}_isWithContent(){return Boolean(this._getTitle())}_getTipElement(){return this.tip||(this.tip=this._createTipElement(this._newContent||this._getContentForTemplate())),this.tip}_createTipElement(t){const e=this._getTemplateFactory(t).toHtml();if(!e)return null;e.classList.remove(Ci,Ti),e.classList.add(`bs-${this.constructor.NAME}-auto`);const i=(t=>{do{t+=Math.floor(1e6*Math.random())}while(document.getElementById(t));return t})(this.constructor.NAME).toString();return e.setAttribute("id",i),this._isAnimated()&&e.classList.add(Ci),e}setContent(t){this._newContent=t,this._isShown()&&(this._disposePopper(),this.show())}_getTemplateFactory(t){return this._templateFactory?this._templateFactory.changeContent(t):this._templateFactory=new Ai({...this._config,content:t,extraClass:this._resolvePossibleFunction(this._config.customClass)}),this._templateFactory}_getContentForTemplate(){return{".tooltip-inner":this._getTitle()}}_getTitle(){return this._resolvePossibleFunction(this._config.title)||this._element.getAttribute("data-bs-original-title")}_initializeOnDelegatedTarget(t){return this.constructor.getOrCreateInstance(t.delegateTarget,this._getDelegateConfig())}_isAnimated(){return this._config.animation||this.tip&&this.tip.classList.contains(Ci)}_isShown(){return this.tip&&this.tip.classList.contains(Ti)}_createPopper(t){const e=v(this._config.placement,[this,t,this._element]),s=Oi[e.toUpperCase()];return i.createPopper(this._element,t,this._getPopperConfig(s))}_getOffset(){const{offset:t}=this._config;return"string"==typeof t?t.split(",").map((t=>Number.parseInt(t,10))):"function"==typeof t?e=>t(e,this._element):t}_resolvePossibleFunction(t){return v(t,[this._element])}_getPopperConfig(t){const e={placement:t,modifiers:[{name:"flip",options:{fallbackPlacements:this._config.fallbackPlacements}},{name:"offset",options:{offset:this._getOffset()}},{name:"preventOverflow",options:{boundary:this._config.boundary}},{name:"arrow",options:{element:`.${this.constructor.NAME}-arrow`}},{name:"preSetPlacement",enabled:!0,phase:"beforeMain",fn:t=>{this._getTipElement().setAttribute("data-popper-placement",t.state.placement)}}]};return{...e,...v(this._config.popperConfig,[e])}}_setListeners(){const t=this._config.trigger.split(" ");for(const e of t)if("click"===e)j.on(this._element,this.constructor.eventName("click"),this._config.selector,(t=>{this._initializeOnDelegatedTarget(t).toggle()}));else if("manual"!==e){const t=e===Si?this.constructor.eventName("mouseenter"):this.constructor.eventName("focusin"),i=e===Si?this.constructor.eventName("mouseleave"):this.constructor.eventName("focusout");j.on(this._element,t,this._config.selector,(t=>{const e=this._initializeOnDelegatedTarget(t);e._activeTrigger["focusin"===t.type?Li:Si]=!0,e._enter()})),j.on(this._element,i,this._config.selector,(t=>{const e=this._initializeOnDelegatedTarget(t);e._activeTrigger["focusout"===t.type?Li:Si]=e._element.contains(t.relatedTarget),e._leave()}))}this._hideModalHandler=()=>{this._element&&this.hide()},j.on(this._element.closest(ki),$i,this._hideModalHandler)}_fixTitle(){const t=this._element.getAttribute("title");t&&(this._element.getAttribute("aria-label")||this._element.textContent.trim()||this._element.setAttribute("aria-label",t),this._element.setAttribute("data-bs-original-title",t),this._element.removeAttribute("title"))}_enter(){this._isShown()||this._isHovered?this._isHovered=!0:(this._isHovered=!0,this._setTimeout((()=>{this._isHovered&&this.show()}),this._config.delay.show))}_leave(){this._isWithActiveTrigger()||(this._isHovered=!1,this._setTimeout((()=>{this._isHovered||this.hide()}),this._config.delay.hide))}_setTimeout(t,e){clearTimeout(this._timeout),this._timeout=setTimeout(t,e)}_isWithActiveTrigger(){return Object.values(this._activeTrigger).includes(!0)}_getConfig(t){const e=B.getDataAttributes(this._element);for(const t of Object.keys(e))Ei.has(t)&&delete e[t];return t={...e,..."object"==typeof t&&t?t:{}},t=this._mergeConfigObj(t),t=this._configAfterMerge(t),this._typeCheckConfig(t),t}_configAfterMerge(t){return t.container=!1===t.container?document.body:c(t.container),"number"==typeof t.delay&&(t.delay={show:t.delay,hide:t.delay}),"number"==typeof t.title&&(t.title=t.title.toString()),"number"==typeof t.content&&(t.content=t.content.toString()),t}_getDelegateConfig(){const t={};for(const[e,i]of Object.entries(this._config))this.constructor.Default[e]!==i&&(t[e]=i);return t.selector=!1,t.trigger="manual",t}_disposePopper(){this._popper&&(this._popper.destroy(),this._popper=null),this.tip&&(this.tip.remove(),this.tip=null)}static jQueryInterface(t){return this.each((function(){const e=Ni.getOrCreateInstance(this,t);if("string"==typeof t){if(void 0===e[t])throw new TypeError(`No method named "${t}"`);e[t]()}}))}}b(Ni);const Pi={...Ni.Default,content:"",offset:[0,8],placement:"right",template:'<div class="popover" role="tooltip"><div class="popover-arrow"></div><h3 class="popover-header"></h3><div class="popover-body"></div></div>',trigger:"click"},xi={...Ni.DefaultType,content:"(null|string|element|function)"};class Mi extends Ni{static get Default(){return Pi}static get DefaultType(){return xi}static get NAME(){return"popover"}_isWithContent(){return this._getTitle()||this._getContent()}_getContentForTemplate(){return{".popover-header":this._getTitle(),".popover-body":this._getContent()}}_getContent(){return this._resolvePossibleFunction(this._config.content)}static jQueryInterface(t){return this.each((function(){const e=Mi.getOrCreateInstance(this,t);if("string"==typeof t){if(void 0===e[t])throw new TypeError(`No method named "${t}"`);e[t]()}}))}}b(Mi);const ji=".bs.scrollspy",Fi=`activate${ji}`,zi=`click${ji}`,Hi=`load${ji}.data-api`,Bi="active",qi="[href]",Wi=".nav-link",Ri=`${Wi}, .nav-item > ${Wi}, .list-group-item`,Ki={offset:null,rootMargin:"0px 0px -25%",smoothScroll:!1,target:null,threshold:[.1,.5,1]},Vi={offset:"(number|null)",rootMargin:"string",smoothScroll:"boolean",target:"element",threshold:"array"};class Qi extends W{constructor(t,e){super(t,e),this._targetLinks=new Map,this._observableSections=new Map,this._rootElement="visible"===getComputedStyle(this._element).overflowY?null:this._element,this._activeTarget=null,this._observer=null,this._previousScrollData={visibleEntryTop:0,parentScrollTop:0},this.refresh()}static get Default(){return Ki}static get DefaultType(){return Vi}static get NAME(){return"scrollspy"}refresh(){this._initializeTargetsAndObservables(),this._maybeEnableSmoothScroll(),this._observer?this._observer.disconnect():this._observer=this._getNewObserver();for(const t of this._observableSections.values())this._observer.observe(t)}dispose(){this._observer.disconnect(),super.dispose()}_configAfterMerge(t){return t.target=c(t.target)||document.body,t.rootMargin=t.offset?`${t.offset}px 0px -30%`:t.rootMargin,"string"==typeof t.threshold&&(t.threshold=t.threshold.split(",").map((t=>Number.parseFloat(t)))),t}_maybeEnableSmoothScroll(){this._config.smoothScroll&&(j.off(this._config.target,zi),j.on(this._config.target,zi,qi,(t=>{const e=this._observableSections.get(t.target.hash);if(e){t.preventDefault();const i=this._rootElement||window,s=e.offsetTop-this._element.offsetTop;if(i.scrollTo)return void i.scrollTo({top:s,behavior:"smooth"});i.scrollTop=s}})))}_getNewObserver(){const t={root:this._rootElement,threshold:this._config.threshold,rootMargin:this._config.rootMargin};return new IntersectionObserver((t=>this._observerCallback(t)),t)}_observerCallback(t){const e=t=>this._targetLinks.get(`#${t.target.id}`),i=t=>{this._previousScrollData.visibleEntryTop=t.target.offsetTop,this._process(e(t))},s=(this._rootElement||document.documentElement).scrollTop,n=s>=this._previousScrollData.parentScrollTop;this._previousScrollData.parentScrollTop=s;for(const o of t){if(!o.isIntersecting){this._activeTarget=null,this._clearActiveClass(e(o));continue}const t=o.target.offsetTop>=this._previousScrollData.visibleEntryTop;if(n&&t){if(i(o),!s)return}else n||t||i(o)}}_initializeTargetsAndObservables(){this._targetLinks=new Map,this._observableSections=new Map;const t=K.find(qi,this._config.target);for(const e of t){if(!e.hash||d(e))continue;const t=K.findOne(decodeURI(e.hash),this._element);h(t)&&(this._targetLinks.set(decodeURI(e.hash),e),this._observableSections.set(e.hash,t))}}_process(t){this._activeTarget!==t&&(this._clearActiveClass(this._config.target),this._activeTarget=t,t.classList.add(Bi),this._activateParents(t),j.trigger(this._element,Fi,{relatedTarget:t}))}_activateParents(t){if(t.classList.contains("dropdown-item"))K.findOne(".dropdown-toggle",t.closest(".dropdown")).classList.add(Bi);else for(const e of K.parents(t,".nav, .list-group"))for(const t of K.prev(e,Ri))t.classList.add(Bi)}_clearActiveClass(t){t.classList.remove(Bi);const e=K.find(`${qi}.${Bi}`,t);for(const t of e)t.classList.remove(Bi)}static jQueryInterface(t){return this.each((function(){const e=Qi.getOrCreateInstance(this,t);if("string"==typeof t){if(void 0===e[t]||t.startsWith("_")||"constructor"===t)throw new TypeError(`No method named "${t}"`);e[t]()}}))}}j.on(window,Hi,(()=>{for(const t of K.find('[data-bs-spy="scroll"]'))Qi.getOrCreateInstance(t)})),b(Qi);const Xi=".bs.tab",Yi=`hide${Xi}`,Ui=`hidden${Xi}`,Gi=`show${Xi}`,Ji=`shown${Xi}`,Zi=`click${Xi}`,ts=`keydown${Xi}`,es=`load${Xi}`,is="ArrowLeft",ss="ArrowRight",ns="ArrowUp",os="ArrowDown",rs="Home",as="End",ls="active",cs="fade",hs="show",ds=".dropdown-toggle",us=`:not(${ds})`,_s='[data-bs-toggle="tab"], [data-bs-toggle="pill"], [data-bs-toggle="list"]',gs=`.nav-link${us}, .list-group-item${us}, [role="tab"]${us}, ${_s}`,fs=`.${ls}[data-bs-toggle="tab"], .${ls}[data-bs-toggle="pill"], .${ls}[data-bs-toggle="list"]`;class ms extends W{constructor(t){super(t),this._parent=this._element.closest('.list-group, .nav, [role="tablist"]'),this._parent&&(this._setInitialAttributes(this._parent,this._getChildren()),j.on(this._element,ts,(t=>this._keydown(t))))}static get NAME(){return"tab"}show(){const t=this._element;if(this._elemIsActive(t))return;const e=this._getActiveElem(),i=e?j.trigger(e,Yi,{relatedTarget:t}):null;j.trigger(t,Gi,{relatedTarget:e}).defaultPrevented||i&&i.defaultPrevented||(this._deactivate(e,t),this._activate(t,e))}_activate(t,e){t&&(t.classList.add(ls),this._activate(K.getElementFromSelector(t)),this._queueCallback((()=>{"tab"===t.getAttribute("role")?(t.removeAttribute("tabindex"),t.setAttribute("aria-selected",!0),this._toggleDropDown(t,!0),j.trigger(t,Ji,{relatedTarget:e})):t.classList.add(hs)}),t,t.classList.contains(cs)))}_deactivate(t,e){t&&(t.classList.remove(ls),t.blur(),this._deactivate(K.getElementFromSelector(t)),this._queueCallback((()=>{"tab"===t.getAttribute("role")?(t.setAttribute("aria-selected",!1),t.setAttribute("tabindex","-1"),this._toggleDropDown(t,!1),j.trigger(t,Ui,{relatedTarget:e})):t.classList.remove(hs)}),t,t.classList.contains(cs)))}_keydown(t){if(![is,ss,ns,os,rs,as].includes(t.key))return;t.stopPropagation(),t.preventDefault();const e=this._getChildren().filter((t=>!d(t)));let i;if([rs,as].includes(t.key))i=e[t.key===rs?0:e.length-1];else{const s=[ss,os].includes(t.key);i=w(e,t.target,s,!0)}i&&(i.focus({preventScroll:!0}),ms.getOrCreateInstance(i).show())}_getChildren(){return K.find(gs,this._parent)}_getActiveElem(){return this._getChildren().find((t=>this._elemIsActive(t)))||null}_setInitialAttributes(t,e){this._setAttributeIfNotExists(t,"role","tablist");for(const t of e)this._setInitialAttributesOnChild(t)}_setInitialAttributesOnChild(t){t=this._getInnerElement(t);const e=this._elemIsActive(t),i=this._getOuterElement(t);t.setAttribute("aria-selected",e),i!==t&&this._setAttributeIfNotExists(i,"role","presentation"),e||t.setAttribute("tabindex","-1"),this._setAttributeIfNotExists(t,"role","tab"),this._setInitialAttributesOnTargetPanel(t)}_setInitialAttributesOnTargetPanel(t){const e=K.getElementFromSelector(t);e&&(this._setAttributeIfNotExists(e,"role","tabpanel"),t.id&&this._setAttributeIfNotExists(e,"aria-labelledby",`${t.id}`))}_toggleDropDown(t,e){const i=this._getOuterElement(t);if(!i.classList.contains("dropdown"))return;const s=(t,s)=>{const n=K.findOne(t,i);n&&n.classList.toggle(s,e)};s(ds,ls),s(".dropdown-menu",hs),i.setAttribute("aria-expanded",e)}_setAttributeIfNotExists(t,e,i){t.hasAttribute(e)||t.setAttribute(e,i)}_elemIsActive(t){return t.classList.contains(ls)}_getInnerElement(t){return t.matches(gs)?t:K.findOne(gs,t)}_getOuterElement(t){return t.closest(".nav-item, .list-group-item")||t}static jQueryInterface(t){return this.each((function(){const e=ms.getOrCreateInstance(this);if("string"==typeof t){if(void 0===e[t]||t.startsWith("_")||"constructor"===t)throw new TypeError(`No method named "${t}"`);e[t]()}}))}}j.on(document,Zi,_s,(function(t){["A","AREA"].includes(this.tagName)&&t.preventDefault(),d(this)||ms.getOrCreateInstance(this).show()})),j.on(window,es,(()=>{for(const t of K.find(fs))ms.getOrCreateInstance(t)})),b(ms);const ps=".bs.toast",bs=`mouseover${ps}`,vs=`mouseout${ps}`,ys=`focusin${ps}`,ws=`focusout${ps}`,As=`hide${ps}`,Es=`hidden${ps}`,Cs=`show${ps}`,Ts=`shown${ps}`,ks="hide",$s="show",Ss="showing",Ls={animation:"boolean",autohide:"boolean",delay:"number"},Os={animation:!0,autohide:!0,delay:5e3};class Is extends W{constructor(t,e){super(t,e),this._timeout=null,this._hasMouseInteraction=!1,this._hasKeyboardInteraction=!1,this._setListeners()}static get Default(){return Os}static get DefaultType(){return Ls}static get NAME(){return"toast"}show(){j.trigger(this._element,Cs).defaultPrevented||(this._clearTimeout(),this._config.animation&&this._element.classList.add("fade"),this._element.classList.remove(ks),g(this._element),this._element.classList.add($s,Ss),this._queueCallback((()=>{this._element.classList.remove(Ss),j.trigger(this._element,Ts),this._maybeScheduleHide()}),this._element,this._config.animation))}hide(){this.isShown()&&(j.trigger(this._element,As).defaultPrevented||(this._element.classList.add(Ss),this._queueCallback((()=>{this._element.classList.add(ks),this._element.classList.remove(Ss,$s),j.trigger(this._element,Es)}),this._element,this._config.animation)))}dispose(){this._clearTimeout(),this.isShown()&&this._element.classList.remove($s),super.dispose()}isShown(){return this._element.classList.contains($s)}_maybeScheduleHide(){this._config.autohide&&(this._hasMouseInteraction||this._hasKeyboardInteraction||(this._timeout=setTimeout((()=>{this.hide()}),this._config.delay)))}_onInteraction(t,e){switch(t.type){case"mouseover":case"mouseout":this._hasMouseInteraction=e;break;case"focusin":case"focusout":this._hasKeyboardInteraction=e}if(e)return void this._clearTimeout();const i=t.relatedTarget;this._element===i||this._element.contains(i)||this._maybeScheduleHide()}_setListeners(){j.on(this._element,bs,(t=>this._onInteraction(t,!0))),j.on(this._element,vs,(t=>this._onInteraction(t,!1))),j.on(this._element,ys,(t=>this._onInteraction(t,!0))),j.on(this._element,ws,(t=>this._onInteraction(t,!1)))}_clearTimeout(){clearTimeout(this._timeout),this._timeout=null}static jQueryInterface(t){return this.each((function(){const e=Is.getOrCreateInstance(this,t);if("string"==typeof t){if(void 0===e[t])throw new TypeError(`No method named "${t}"`);e[t](this)}}))}}return V(Is),b(Is),{Alert:U,Button:J,Carousel:Ot,Collapse:Rt,Dropdown:fe,Modal:Ue,Offcanvas:gi,Popover:Mi,ScrollSpy:Qi,Tab:ms,Toast:Is,Tooltip:Ni}}));
+//# sourceMappingURL=bootstrap.min.js.map
\ No newline at end of file
diff --git a/oxAuth/Server/src/main/webapp/js/crypto-js-4.1.1/CONTRIBUTING.md b/oxAuth/Server/src/main/webapp/js/crypto-js-4.1.1/CONTRIBUTING.md
new file mode 100644
index 00000000..09bf774a
--- /dev/null
+++ b/oxAuth/Server/src/main/webapp/js/crypto-js-4.1.1/CONTRIBUTING.md
@@ -0,0 +1,28 @@
+# Contribution
+
+# Git Flow 
+
+The crypto-js project uses [git flow](https://github.com/nvie/gitflow) to manage branches. 
+Do your changes on the `develop` or even better on a `feature/*` branch. Don't do any changes on the `master` branch.
+
+# Pull request
+
+Target your pull request on `develop` branch. Other pull request won't be accepted.
+
+# How to build
+
+1. Clone
+
+2. Run
+
+    ```sh
+    npm install
+    ```
+
+3. Run
+
+    ```sh
+    npm run build
+    ```
+    
+4. Check `build` folder
\ No newline at end of file
diff --git a/oxAuth/Server/src/main/webapp/js/crypto-js-4.1.1/LICENSE b/oxAuth/Server/src/main/webapp/js/crypto-js-4.1.1/LICENSE
new file mode 100644
index 00000000..b0828e52
--- /dev/null
+++ b/oxAuth/Server/src/main/webapp/js/crypto-js-4.1.1/LICENSE
@@ -0,0 +1,24 @@
+# License
+
+[The MIT License (MIT)](http://opensource.org/licenses/MIT)
+
+Copyright (c) 2009-2013 Jeff Mott  
+Copyright (c) 2013-2016 Evan Vosberg
+
+Permission is hereby granted, free of charge, to any person obtaining a copy
+of this software and associated documentation files (the "Software"), to deal
+in the Software without restriction, including without limitation the rights
+to use, copy, modify, merge, publish, distribute, sublicense, and/or sell
+copies of the Software, and to permit persons to whom the Software is
+furnished to do so, subject to the following conditions:
+
+The above copyright notice and this permission notice shall be included in
+all copies or substantial portions of the Software.
+
+THE SOFTWARE IS PROVIDED "AS IS", WITHOUT WARRANTY OF ANY KIND, EXPRESS OR
+IMPLIED, INCLUDING BUT NOT LIMITED TO THE WARRANTIES OF MERCHANTABILITY,
+FITNESS FOR A PARTICULAR PURPOSE AND NONINFRINGEMENT. IN NO EVENT SHALL THE
+AUTHORS OR COPYRIGHT HOLDERS BE LIABLE FOR ANY CLAIM, DAMAGES OR OTHER
+LIABILITY, WHETHER IN AN ACTION OF CONTRACT, TORT OR OTHERWISE, ARISING FROM,
+OUT OF OR IN CONNECTION WITH THE SOFTWARE OR THE USE OR OTHER DEALINGS IN
+THE SOFTWARE.
diff --git a/oxAuth/Server/src/main/webapp/js/crypto-js-4.1.1/README.md b/oxAuth/Server/src/main/webapp/js/crypto-js-4.1.1/README.md
new file mode 100644
index 00000000..23795aa4
--- /dev/null
+++ b/oxAuth/Server/src/main/webapp/js/crypto-js-4.1.1/README.md
@@ -0,0 +1,261 @@
+# crypto-js [![Build Status](https://travis-ci.org/brix/crypto-js.svg?branch=develop)](https://travis-ci.org/brix/crypto-js)
+
+JavaScript library of crypto standards.
+
+## Node.js (Install)
+
+Requirements:
+
+- Node.js
+- npm (Node.js package manager)
+
+```bash
+npm install crypto-js
+```
+
+### Usage
+
+ES6 import for typical API call signing use case:
+
+```javascript
+import sha256 from 'crypto-js/sha256';
+import hmacSHA512 from 'crypto-js/hmac-sha512';
+import Base64 from 'crypto-js/enc-base64';
+
+const message, nonce, path, privateKey; // ...
+const hashDigest = sha256(nonce + message);
+const hmacDigest = Base64.stringify(hmacSHA512(path + hashDigest, privateKey));
+```
+
+Modular include:
+
+```javascript
+var AES = require("crypto-js/aes");
+var SHA256 = require("crypto-js/sha256");
+...
+console.log(SHA256("Message"));
+```
+
+Including all libraries, for access to extra methods:
+
+```javascript
+var CryptoJS = require("crypto-js");
+console.log(CryptoJS.HmacSHA1("Message", "Key"));
+```
+
+## Client (browser)
+
+Requirements:
+
+- Node.js
+- Bower (package manager for frontend)
+
+```bash
+bower install crypto-js
+```
+
+### Usage
+
+Modular include:
+
+```javascript
+require.config({
+    packages: [
+        {
+            name: 'crypto-js',
+            location: 'path-to/bower_components/crypto-js',
+            main: 'index'
+        }
+    ]
+});
+
+require(["crypto-js/aes", "crypto-js/sha256"], function (AES, SHA256) {
+    console.log(SHA256("Message"));
+});
+```
+
+Including all libraries, for access to extra methods:
+
+```javascript
+// Above-mentioned will work or use this simple form
+require.config({
+    paths: {
+        'crypto-js': 'path-to/bower_components/crypto-js/crypto-js'
+    }
+});
+
+require(["crypto-js"], function (CryptoJS) {
+    console.log(CryptoJS.HmacSHA1("Message", "Key"));
+});
+```
+
+### Usage without RequireJS
+
+```html
+<script type="text/javascript" src="path-to/bower_components/crypto-js/crypto-js.js"></script>
+<script type="text/javascript">
+    var encrypted = CryptoJS.AES(...);
+    var encrypted = CryptoJS.SHA256(...);
+</script>
+```
+
+## API
+
+See: https://cryptojs.gitbook.io/docs/
+
+### AES Encryption
+
+#### Plain text encryption
+
+```javascript
+var CryptoJS = require("crypto-js");
+
+// Encrypt
+var ciphertext = CryptoJS.AES.encrypt('my message', 'secret key 123').toString();
+
+// Decrypt
+var bytes  = CryptoJS.AES.decrypt(ciphertext, 'secret key 123');
+var originalText = bytes.toString(CryptoJS.enc.Utf8);
+
+console.log(originalText); // 'my message'
+```
+
+#### Object encryption
+
+```javascript
+var CryptoJS = require("crypto-js");
+
+var data = [{id: 1}, {id: 2}]
+
+// Encrypt
+var ciphertext = CryptoJS.AES.encrypt(JSON.stringify(data), 'secret key 123').toString();
+
+// Decrypt
+var bytes  = CryptoJS.AES.decrypt(ciphertext, 'secret key 123');
+var decryptedData = JSON.parse(bytes.toString(CryptoJS.enc.Utf8));
+
+console.log(decryptedData); // [{id: 1}, {id: 2}]
+```
+
+### List of modules
+
+
+- ```crypto-js/core```
+- ```crypto-js/x64-core```
+- ```crypto-js/lib-typedarrays```
+
+---
+
+- ```crypto-js/md5```
+- ```crypto-js/sha1```
+- ```crypto-js/sha256```
+- ```crypto-js/sha224```
+- ```crypto-js/sha512```
+- ```crypto-js/sha384```
+- ```crypto-js/sha3```
+- ```crypto-js/ripemd160```
+
+---
+
+- ```crypto-js/hmac-md5```
+- ```crypto-js/hmac-sha1```
+- ```crypto-js/hmac-sha256```
+- ```crypto-js/hmac-sha224```
+- ```crypto-js/hmac-sha512```
+- ```crypto-js/hmac-sha384```
+- ```crypto-js/hmac-sha3```
+- ```crypto-js/hmac-ripemd160```
+
+---
+
+- ```crypto-js/pbkdf2```
+
+---
+
+- ```crypto-js/aes```
+- ```crypto-js/tripledes```
+- ```crypto-js/rc4```
+- ```crypto-js/rabbit```
+- ```crypto-js/rabbit-legacy```
+- ```crypto-js/evpkdf```
+
+---
+
+- ```crypto-js/format-openssl```
+- ```crypto-js/format-hex```
+
+---
+
+- ```crypto-js/enc-latin1```
+- ```crypto-js/enc-utf8```
+- ```crypto-js/enc-hex```
+- ```crypto-js/enc-utf16```
+- ```crypto-js/enc-base64```
+
+---
+
+- ```crypto-js/mode-cfb```
+- ```crypto-js/mode-ctr```
+- ```crypto-js/mode-ctr-gladman```
+- ```crypto-js/mode-ofb```
+- ```crypto-js/mode-ecb```
+
+---
+
+- ```crypto-js/pad-pkcs7```
+- ```crypto-js/pad-ansix923```
+- ```crypto-js/pad-iso10126```
+- ```crypto-js/pad-iso97971```
+- ```crypto-js/pad-zeropadding```
+- ```crypto-js/pad-nopadding```
+
+
+## Release notes
+
+### 4.1.1
+
+Fix module order in bundled release.
+
+Include the browser field in the released package.json.
+
+### 4.1.0
+
+Added url safe variant of base64 encoding. [357](https://github.com/brix/crypto-js/pull/357)
+
+Avoid webpack to add crypto-browser package. [364](https://github.com/brix/crypto-js/pull/364)
+
+### 4.0.0
+
+This is an update including breaking changes for some environments.
+
+In this version `Math.random()` has been replaced by the random methods of the native crypto module.
+
+For this reason CryptoJS might not run in some JavaScript environments without native crypto module. Such as IE 10 or before or React Native.
+
+### 3.3.0
+
+Rollback, `3.3.0` is the same as `3.1.9-1`.
+
+The move of using native secure crypto module will be shifted to a new `4.x.x` version. As it is a breaking change the impact is too big for a minor release.
+
+### 3.2.1
+
+The usage of the native crypto module has been fixed. The import and access of the native crypto module has been improved.
+
+### 3.2.0
+
+In this version `Math.random()` has been replaced by the random methods of the native crypto module.
+
+For this reason CryptoJS might does not run in some JavaScript environments without native crypto module. Such as IE 10 or before.
+
+If it's absolute required to run CryptoJS in such an environment, stay with `3.1.x` version. Encrypting and decrypting stays compatible. But keep in mind `3.1.x` versions still use `Math.random()` which is cryptographically not secure, as it's not random enough. 
+
+This version came along with `CRITICAL` `BUG`. 
+
+DO NOT USE THIS VERSION! Please, go for a newer version!
+
+### 3.1.x
+
+The `3.1.x` are based on the original CryptoJS, wrapped in CommonJS modules.
+
+
diff --git a/oxAuth/Server/src/main/webapp/js/crypto-js-4.1.1/aes.js b/oxAuth/Server/src/main/webapp/js/crypto-js-4.1.1/aes.js
new file mode 100644
index 00000000..166e3eac
--- /dev/null
+++ b/oxAuth/Server/src/main/webapp/js/crypto-js-4.1.1/aes.js
@@ -0,0 +1,234 @@
+;(function (root, factory, undef) {
+	if (typeof exports === "object") {
+		// CommonJS
+		module.exports = exports = factory(require("./core"), require("./enc-base64"), require("./md5"), require("./evpkdf"), require("./cipher-core"));
+	}
+	else if (typeof define === "function" && define.amd) {
+		// AMD
+		define(["./core", "./enc-base64", "./md5", "./evpkdf", "./cipher-core"], factory);
+	}
+	else {
+		// Global (browser)
+		factory(root.CryptoJS);
+	}
+}(this, function (CryptoJS) {
+
+	(function () {
+	    // Shortcuts
+	    var C = CryptoJS;
+	    var C_lib = C.lib;
+	    var BlockCipher = C_lib.BlockCipher;
+	    var C_algo = C.algo;
+
+	    // Lookup tables
+	    var SBOX = [];
+	    var INV_SBOX = [];
+	    var SUB_MIX_0 = [];
+	    var SUB_MIX_1 = [];
+	    var SUB_MIX_2 = [];
+	    var SUB_MIX_3 = [];
+	    var INV_SUB_MIX_0 = [];
+	    var INV_SUB_MIX_1 = [];
+	    var INV_SUB_MIX_2 = [];
+	    var INV_SUB_MIX_3 = [];
+
+	    // Compute lookup tables
+	    (function () {
+	        // Compute double table
+	        var d = [];
+	        for (var i = 0; i < 256; i++) {
+	            if (i < 128) {
+	                d[i] = i << 1;
+	            } else {
+	                d[i] = (i << 1) ^ 0x11b;
+	            }
+	        }
+
+	        // Walk GF(2^8)
+	        var x = 0;
+	        var xi = 0;
+	        for (var i = 0; i < 256; i++) {
+	            // Compute sbox
+	            var sx = xi ^ (xi << 1) ^ (xi << 2) ^ (xi << 3) ^ (xi << 4);
+	            sx = (sx >>> 8) ^ (sx & 0xff) ^ 0x63;
+	            SBOX[x] = sx;
+	            INV_SBOX[sx] = x;
+
+	            // Compute multiplication
+	            var x2 = d[x];
+	            var x4 = d[x2];
+	            var x8 = d[x4];
+
+	            // Compute sub bytes, mix columns tables
+	            var t = (d[sx] * 0x101) ^ (sx * 0x1010100);
+	            SUB_MIX_0[x] = (t << 24) | (t >>> 8);
+	            SUB_MIX_1[x] = (t << 16) | (t >>> 16);
+	            SUB_MIX_2[x] = (t << 8)  | (t >>> 24);
+	            SUB_MIX_3[x] = t;
+
+	            // Compute inv sub bytes, inv mix columns tables
+	            var t = (x8 * 0x1010101) ^ (x4 * 0x10001) ^ (x2 * 0x101) ^ (x * 0x1010100);
+	            INV_SUB_MIX_0[sx] = (t << 24) | (t >>> 8);
+	            INV_SUB_MIX_1[sx] = (t << 16) | (t >>> 16);
+	            INV_SUB_MIX_2[sx] = (t << 8)  | (t >>> 24);
+	            INV_SUB_MIX_3[sx] = t;
+
+	            // Compute next counter
+	            if (!x) {
+	                x = xi = 1;
+	            } else {
+	                x = x2 ^ d[d[d[x8 ^ x2]]];
+	                xi ^= d[d[xi]];
+	            }
+	        }
+	    }());
+
+	    // Precomputed Rcon lookup
+	    var RCON = [0x00, 0x01, 0x02, 0x04, 0x08, 0x10, 0x20, 0x40, 0x80, 0x1b, 0x36];
+
+	    /**
+	     * AES block cipher algorithm.
+	     */
+	    var AES = C_algo.AES = BlockCipher.extend({
+	        _doReset: function () {
+	            var t;
+
+	            // Skip reset of nRounds has been set before and key did not change
+	            if (this._nRounds && this._keyPriorReset === this._key) {
+	                return;
+	            }
+
+	            // Shortcuts
+	            var key = this._keyPriorReset = this._key;
+	            var keyWords = key.words;
+	            var keySize = key.sigBytes / 4;
+
+	            // Compute number of rounds
+	            var nRounds = this._nRounds = keySize + 6;
+
+	            // Compute number of key schedule rows
+	            var ksRows = (nRounds + 1) * 4;
+
+	            // Compute key schedule
+	            var keySchedule = this._keySchedule = [];
+	            for (var ksRow = 0; ksRow < ksRows; ksRow++) {
+	                if (ksRow < keySize) {
+	                    keySchedule[ksRow] = keyWords[ksRow];
+	                } else {
+	                    t = keySchedule[ksRow - 1];
+
+	                    if (!(ksRow % keySize)) {
+	                        // Rot word
+	                        t = (t << 8) | (t >>> 24);
+
+	                        // Sub word
+	                        t = (SBOX[t >>> 24] << 24) | (SBOX[(t >>> 16) & 0xff] << 16) | (SBOX[(t >>> 8) & 0xff] << 8) | SBOX[t & 0xff];
+
+	                        // Mix Rcon
+	                        t ^= RCON[(ksRow / keySize) | 0] << 24;
+	                    } else if (keySize > 6 && ksRow % keySize == 4) {
+	                        // Sub word
+	                        t = (SBOX[t >>> 24] << 24) | (SBOX[(t >>> 16) & 0xff] << 16) | (SBOX[(t >>> 8) & 0xff] << 8) | SBOX[t & 0xff];
+	                    }
+
+	                    keySchedule[ksRow] = keySchedule[ksRow - keySize] ^ t;
+	                }
+	            }
+
+	            // Compute inv key schedule
+	            var invKeySchedule = this._invKeySchedule = [];
+	            for (var invKsRow = 0; invKsRow < ksRows; invKsRow++) {
+	                var ksRow = ksRows - invKsRow;
+
+	                if (invKsRow % 4) {
+	                    var t = keySchedule[ksRow];
+	                } else {
+	                    var t = keySchedule[ksRow - 4];
+	                }
+
+	                if (invKsRow < 4 || ksRow <= 4) {
+	                    invKeySchedule[invKsRow] = t;
+	                } else {
+	                    invKeySchedule[invKsRow] = INV_SUB_MIX_0[SBOX[t >>> 24]] ^ INV_SUB_MIX_1[SBOX[(t >>> 16) & 0xff]] ^
+	                                               INV_SUB_MIX_2[SBOX[(t >>> 8) & 0xff]] ^ INV_SUB_MIX_3[SBOX[t & 0xff]];
+	                }
+	            }
+	        },
+
+	        encryptBlock: function (M, offset) {
+	            this._doCryptBlock(M, offset, this._keySchedule, SUB_MIX_0, SUB_MIX_1, SUB_MIX_2, SUB_MIX_3, SBOX);
+	        },
+
+	        decryptBlock: function (M, offset) {
+	            // Swap 2nd and 4th rows
+	            var t = M[offset + 1];
+	            M[offset + 1] = M[offset + 3];
+	            M[offset + 3] = t;
+
+	            this._doCryptBlock(M, offset, this._invKeySchedule, INV_SUB_MIX_0, INV_SUB_MIX_1, INV_SUB_MIX_2, INV_SUB_MIX_3, INV_SBOX);
+
+	            // Inv swap 2nd and 4th rows
+	            var t = M[offset + 1];
+	            M[offset + 1] = M[offset + 3];
+	            M[offset + 3] = t;
+	        },
+
+	        _doCryptBlock: function (M, offset, keySchedule, SUB_MIX_0, SUB_MIX_1, SUB_MIX_2, SUB_MIX_3, SBOX) {
+	            // Shortcut
+	            var nRounds = this._nRounds;
+
+	            // Get input, add round key
+	            var s0 = M[offset]     ^ keySchedule[0];
+	            var s1 = M[offset + 1] ^ keySchedule[1];
+	            var s2 = M[offset + 2] ^ keySchedule[2];
+	            var s3 = M[offset + 3] ^ keySchedule[3];
+
+	            // Key schedule row counter
+	            var ksRow = 4;
+
+	            // Rounds
+	            for (var round = 1; round < nRounds; round++) {
+	                // Shift rows, sub bytes, mix columns, add round key
+	                var t0 = SUB_MIX_0[s0 >>> 24] ^ SUB_MIX_1[(s1 >>> 16) & 0xff] ^ SUB_MIX_2[(s2 >>> 8) & 0xff] ^ SUB_MIX_3[s3 & 0xff] ^ keySchedule[ksRow++];
+	                var t1 = SUB_MIX_0[s1 >>> 24] ^ SUB_MIX_1[(s2 >>> 16) & 0xff] ^ SUB_MIX_2[(s3 >>> 8) & 0xff] ^ SUB_MIX_3[s0 & 0xff] ^ keySchedule[ksRow++];
+	                var t2 = SUB_MIX_0[s2 >>> 24] ^ SUB_MIX_1[(s3 >>> 16) & 0xff] ^ SUB_MIX_2[(s0 >>> 8) & 0xff] ^ SUB_MIX_3[s1 & 0xff] ^ keySchedule[ksRow++];
+	                var t3 = SUB_MIX_0[s3 >>> 24] ^ SUB_MIX_1[(s0 >>> 16) & 0xff] ^ SUB_MIX_2[(s1 >>> 8) & 0xff] ^ SUB_MIX_3[s2 & 0xff] ^ keySchedule[ksRow++];
+
+	                // Update state
+	                s0 = t0;
+	                s1 = t1;
+	                s2 = t2;
+	                s3 = t3;
+	            }
+
+	            // Shift rows, sub bytes, add round key
+	            var t0 = ((SBOX[s0 >>> 24] << 24) | (SBOX[(s1 >>> 16) & 0xff] << 16) | (SBOX[(s2 >>> 8) & 0xff] << 8) | SBOX[s3 & 0xff]) ^ keySchedule[ksRow++];
+	            var t1 = ((SBOX[s1 >>> 24] << 24) | (SBOX[(s2 >>> 16) & 0xff] << 16) | (SBOX[(s3 >>> 8) & 0xff] << 8) | SBOX[s0 & 0xff]) ^ keySchedule[ksRow++];
+	            var t2 = ((SBOX[s2 >>> 24] << 24) | (SBOX[(s3 >>> 16) & 0xff] << 16) | (SBOX[(s0 >>> 8) & 0xff] << 8) | SBOX[s1 & 0xff]) ^ keySchedule[ksRow++];
+	            var t3 = ((SBOX[s3 >>> 24] << 24) | (SBOX[(s0 >>> 16) & 0xff] << 16) | (SBOX[(s1 >>> 8) & 0xff] << 8) | SBOX[s2 & 0xff]) ^ keySchedule[ksRow++];
+
+	            // Set output
+	            M[offset]     = t0;
+	            M[offset + 1] = t1;
+	            M[offset + 2] = t2;
+	            M[offset + 3] = t3;
+	        },
+
+	        keySize: 256/32
+	    });
+
+	    /**
+	     * Shortcut functions to the cipher's object interface.
+	     *
+	     * @example
+	     *
+	     *     var ciphertext = CryptoJS.AES.encrypt(message, key, cfg);
+	     *     var plaintext  = CryptoJS.AES.decrypt(ciphertext, key, cfg);
+	     */
+	    C.AES = BlockCipher._createHelper(AES);
+	}());
+
+
+	return CryptoJS.AES;
+
+}));
\ No newline at end of file
diff --git a/oxAuth/Server/src/main/webapp/js/crypto-js-4.1.1/bower.json b/oxAuth/Server/src/main/webapp/js/crypto-js-4.1.1/bower.json
new file mode 100644
index 00000000..1e12fdc3
--- /dev/null
+++ b/oxAuth/Server/src/main/webapp/js/crypto-js-4.1.1/bower.json
@@ -0,0 +1,39 @@
+{
+  "name": "crypto-js",
+  "version": "4.1.1",
+  "description": "JavaScript library of crypto standards.",
+  "license": "MIT",
+  "homepage": "http://github.com/brix/crypto-js",
+  "repository": {
+    "type": "git",
+    "url": "http://github.com/brix/crypto-js.git"
+  },
+  "keywords": [
+    "security",
+    "crypto",
+    "Hash",
+    "MD5",
+    "SHA1",
+    "SHA-1",
+    "SHA256",
+    "SHA-256",
+    "RC4",
+    "Rabbit",
+    "AES",
+    "DES",
+    "PBKDF2",
+    "HMAC",
+    "OFB",
+    "CFB",
+    "CTR",
+    "CBC",
+    "Base64",
+    "Base64url"
+  ],
+  "main": "index.js",
+  "dependencies": {},
+  "browser": {
+    "crypto": false
+  },
+  "ignore": []
+}
diff --git a/oxAuth/Server/src/main/webapp/js/crypto-js-4.1.1/cipher-core.js b/oxAuth/Server/src/main/webapp/js/crypto-js-4.1.1/cipher-core.js
new file mode 100644
index 00000000..c560c9eb
--- /dev/null
+++ b/oxAuth/Server/src/main/webapp/js/crypto-js-4.1.1/cipher-core.js
@@ -0,0 +1,890 @@
+;(function (root, factory, undef) {
+	if (typeof exports === "object") {
+		// CommonJS
+		module.exports = exports = factory(require("./core"), require("./evpkdf"));
+	}
+	else if (typeof define === "function" && define.amd) {
+		// AMD
+		define(["./core", "./evpkdf"], factory);
+	}
+	else {
+		// Global (browser)
+		factory(root.CryptoJS);
+	}
+}(this, function (CryptoJS) {
+
+	/**
+	 * Cipher core components.
+	 */
+	CryptoJS.lib.Cipher || (function (undefined) {
+	    // Shortcuts
+	    var C = CryptoJS;
+	    var C_lib = C.lib;
+	    var Base = C_lib.Base;
+	    var WordArray = C_lib.WordArray;
+	    var BufferedBlockAlgorithm = C_lib.BufferedBlockAlgorithm;
+	    var C_enc = C.enc;
+	    var Utf8 = C_enc.Utf8;
+	    var Base64 = C_enc.Base64;
+	    var C_algo = C.algo;
+	    var EvpKDF = C_algo.EvpKDF;
+
+	    /**
+	     * Abstract base cipher template.
+	     *
+	     * @property {number} keySize This cipher's key size. Default: 4 (128 bits)
+	     * @property {number} ivSize This cipher's IV size. Default: 4 (128 bits)
+	     * @property {number} _ENC_XFORM_MODE A constant representing encryption mode.
+	     * @property {number} _DEC_XFORM_MODE A constant representing decryption mode.
+	     */
+	    var Cipher = C_lib.Cipher = BufferedBlockAlgorithm.extend({
+	        /**
+	         * Configuration options.
+	         *
+	         * @property {WordArray} iv The IV to use for this operation.
+	         */
+	        cfg: Base.extend(),
+
+	        /**
+	         * Creates this cipher in encryption mode.
+	         *
+	         * @param {WordArray} key The key.
+	         * @param {Object} cfg (Optional) The configuration options to use for this operation.
+	         *
+	         * @return {Cipher} A cipher instance.
+	         *
+	         * @static
+	         *
+	         * @example
+	         *
+	         *     var cipher = CryptoJS.algo.AES.createEncryptor(keyWordArray, { iv: ivWordArray });
+	         */
+	        createEncryptor: function (key, cfg) {
+	            return this.create(this._ENC_XFORM_MODE, key, cfg);
+	        },
+
+	        /**
+	         * Creates this cipher in decryption mode.
+	         *
+	         * @param {WordArray} key The key.
+	         * @param {Object} cfg (Optional) The configuration options to use for this operation.
+	         *
+	         * @return {Cipher} A cipher instance.
+	         *
+	         * @static
+	         *
+	         * @example
+	         *
+	         *     var cipher = CryptoJS.algo.AES.createDecryptor(keyWordArray, { iv: ivWordArray });
+	         */
+	        createDecryptor: function (key, cfg) {
+	            return this.create(this._DEC_XFORM_MODE, key, cfg);
+	        },
+
+	        /**
+	         * Initializes a newly created cipher.
+	         *
+	         * @param {number} xformMode Either the encryption or decryption transormation mode constant.
+	         * @param {WordArray} key The key.
+	         * @param {Object} cfg (Optional) The configuration options to use for this operation.
+	         *
+	         * @example
+	         *
+	         *     var cipher = CryptoJS.algo.AES.create(CryptoJS.algo.AES._ENC_XFORM_MODE, keyWordArray, { iv: ivWordArray });
+	         */
+	        init: function (xformMode, key, cfg) {
+	            // Apply config defaults
+	            this.cfg = this.cfg.extend(cfg);
+
+	            // Store transform mode and key
+	            this._xformMode = xformMode;
+	            this._key = key;
+
+	            // Set initial values
+	            this.reset();
+	        },
+
+	        /**
+	         * Resets this cipher to its initial state.
+	         *
+	         * @example
+	         *
+	         *     cipher.reset();
+	         */
+	        reset: function () {
+	            // Reset data buffer
+	            BufferedBlockAlgorithm.reset.call(this);
+
+	            // Perform concrete-cipher logic
+	            this._doReset();
+	        },
+
+	        /**
+	         * Adds data to be encrypted or decrypted.
+	         *
+	         * @param {WordArray|string} dataUpdate The data to encrypt or decrypt.
+	         *
+	         * @return {WordArray} The data after processing.
+	         *
+	         * @example
+	         *
+	         *     var encrypted = cipher.process('data');
+	         *     var encrypted = cipher.process(wordArray);
+	         */
+	        process: function (dataUpdate) {
+	            // Append
+	            this._append(dataUpdate);
+
+	            // Process available blocks
+	            return this._process();
+	        },
+
+	        /**
+	         * Finalizes the encryption or decryption process.
+	         * Note that the finalize operation is effectively a destructive, read-once operation.
+	         *
+	         * @param {WordArray|string} dataUpdate The final data to encrypt or decrypt.
+	         *
+	         * @return {WordArray} The data after final processing.
+	         *
+	         * @example
+	         *
+	         *     var encrypted = cipher.finalize();
+	         *     var encrypted = cipher.finalize('data');
+	         *     var encrypted = cipher.finalize(wordArray);
+	         */
+	        finalize: function (dataUpdate) {
+	            // Final data update
+	            if (dataUpdate) {
+	                this._append(dataUpdate);
+	            }
+
+	            // Perform concrete-cipher logic
+	            var finalProcessedData = this._doFinalize();
+
+	            return finalProcessedData;
+	        },
+
+	        keySize: 128/32,
+
+	        ivSize: 128/32,
+
+	        _ENC_XFORM_MODE: 1,
+
+	        _DEC_XFORM_MODE: 2,
+
+	        /**
+	         * Creates shortcut functions to a cipher's object interface.
+	         *
+	         * @param {Cipher} cipher The cipher to create a helper for.
+	         *
+	         * @return {Object} An object with encrypt and decrypt shortcut functions.
+	         *
+	         * @static
+	         *
+	         * @example
+	         *
+	         *     var AES = CryptoJS.lib.Cipher._createHelper(CryptoJS.algo.AES);
+	         */
+	        _createHelper: (function () {
+	            function selectCipherStrategy(key) {
+	                if (typeof key == 'string') {
+	                    return PasswordBasedCipher;
+	                } else {
+	                    return SerializableCipher;
+	                }
+	            }
+
+	            return function (cipher) {
+	                return {
+	                    encrypt: function (message, key, cfg) {
+	                        return selectCipherStrategy(key).encrypt(cipher, message, key, cfg);
+	                    },
+
+	                    decrypt: function (ciphertext, key, cfg) {
+	                        return selectCipherStrategy(key).decrypt(cipher, ciphertext, key, cfg);
+	                    }
+	                };
+	            };
+	        }())
+	    });
+
+	    /**
+	     * Abstract base stream cipher template.
+	     *
+	     * @property {number} blockSize The number of 32-bit words this cipher operates on. Default: 1 (32 bits)
+	     */
+	    var StreamCipher = C_lib.StreamCipher = Cipher.extend({
+	        _doFinalize: function () {
+	            // Process partial blocks
+	            var finalProcessedBlocks = this._process(!!'flush');
+
+	            return finalProcessedBlocks;
+	        },
+
+	        blockSize: 1
+	    });
+
+	    /**
+	     * Mode namespace.
+	     */
+	    var C_mode = C.mode = {};
+
+	    /**
+	     * Abstract base block cipher mode template.
+	     */
+	    var BlockCipherMode = C_lib.BlockCipherMode = Base.extend({
+	        /**
+	         * Creates this mode for encryption.
+	         *
+	         * @param {Cipher} cipher A block cipher instance.
+	         * @param {Array} iv The IV words.
+	         *
+	         * @static
+	         *
+	         * @example
+	         *
+	         *     var mode = CryptoJS.mode.CBC.createEncryptor(cipher, iv.words);
+	         */
+	        createEncryptor: function (cipher, iv) {
+	            return this.Encryptor.create(cipher, iv);
+	        },
+
+	        /**
+	         * Creates this mode for decryption.
+	         *
+	         * @param {Cipher} cipher A block cipher instance.
+	         * @param {Array} iv The IV words.
+	         *
+	         * @static
+	         *
+	         * @example
+	         *
+	         *     var mode = CryptoJS.mode.CBC.createDecryptor(cipher, iv.words);
+	         */
+	        createDecryptor: function (cipher, iv) {
+	            return this.Decryptor.create(cipher, iv);
+	        },
+
+	        /**
+	         * Initializes a newly created mode.
+	         *
+	         * @param {Cipher} cipher A block cipher instance.
+	         * @param {Array} iv The IV words.
+	         *
+	         * @example
+	         *
+	         *     var mode = CryptoJS.mode.CBC.Encryptor.create(cipher, iv.words);
+	         */
+	        init: function (cipher, iv) {
+	            this._cipher = cipher;
+	            this._iv = iv;
+	        }
+	    });
+
+	    /**
+	     * Cipher Block Chaining mode.
+	     */
+	    var CBC = C_mode.CBC = (function () {
+	        /**
+	         * Abstract base CBC mode.
+	         */
+	        var CBC = BlockCipherMode.extend();
+
+	        /**
+	         * CBC encryptor.
+	         */
+	        CBC.Encryptor = CBC.extend({
+	            /**
+	             * Processes the data block at offset.
+	             *
+	             * @param {Array} words The data words to operate on.
+	             * @param {number} offset The offset where the block starts.
+	             *
+	             * @example
+	             *
+	             *     mode.processBlock(data.words, offset);
+	             */
+	            processBlock: function (words, offset) {
+	                // Shortcuts
+	                var cipher = this._cipher;
+	                var blockSize = cipher.blockSize;
+
+	                // XOR and encrypt
+	                xorBlock.call(this, words, offset, blockSize);
+	                cipher.encryptBlock(words, offset);
+
+	                // Remember this block to use with next block
+	                this._prevBlock = words.slice(offset, offset + blockSize);
+	            }
+	        });
+
+	        /**
+	         * CBC decryptor.
+	         */
+	        CBC.Decryptor = CBC.extend({
+	            /**
+	             * Processes the data block at offset.
+	             *
+	             * @param {Array} words The data words to operate on.
+	             * @param {number} offset The offset where the block starts.
+	             *
+	             * @example
+	             *
+	             *     mode.processBlock(data.words, offset);
+	             */
+	            processBlock: function (words, offset) {
+	                // Shortcuts
+	                var cipher = this._cipher;
+	                var blockSize = cipher.blockSize;
+
+	                // Remember this block to use with next block
+	                var thisBlock = words.slice(offset, offset + blockSize);
+
+	                // Decrypt and XOR
+	                cipher.decryptBlock(words, offset);
+	                xorBlock.call(this, words, offset, blockSize);
+
+	                // This block becomes the previous block
+	                this._prevBlock = thisBlock;
+	            }
+	        });
+
+	        function xorBlock(words, offset, blockSize) {
+	            var block;
+
+	            // Shortcut
+	            var iv = this._iv;
+
+	            // Choose mixing block
+	            if (iv) {
+	                block = iv;
+
+	                // Remove IV for subsequent blocks
+	                this._iv = undefined;
+	            } else {
+	                block = this._prevBlock;
+	            }
+
+	            // XOR blocks
+	            for (var i = 0; i < blockSize; i++) {
+	                words[offset + i] ^= block[i];
+	            }
+	        }
+
+	        return CBC;
+	    }());
+
+	    /**
+	     * Padding namespace.
+	     */
+	    var C_pad = C.pad = {};
+
+	    /**
+	     * PKCS #5/7 padding strategy.
+	     */
+	    var Pkcs7 = C_pad.Pkcs7 = {
+	        /**
+	         * Pads data using the algorithm defined in PKCS #5/7.
+	         *
+	         * @param {WordArray} data The data to pad.
+	         * @param {number} blockSize The multiple that the data should be padded to.
+	         *
+	         * @static
+	         *
+	         * @example
+	         *
+	         *     CryptoJS.pad.Pkcs7.pad(wordArray, 4);
+	         */
+	        pad: function (data, blockSize) {
+	            // Shortcut
+	            var blockSizeBytes = blockSize * 4;
+
+	            // Count padding bytes
+	            var nPaddingBytes = blockSizeBytes - data.sigBytes % blockSizeBytes;
+
+	            // Create padding word
+	            var paddingWord = (nPaddingBytes << 24) | (nPaddingBytes << 16) | (nPaddingBytes << 8) | nPaddingBytes;
+
+	            // Create padding
+	            var paddingWords = [];
+	            for (var i = 0; i < nPaddingBytes; i += 4) {
+	                paddingWords.push(paddingWord);
+	            }
+	            var padding = WordArray.create(paddingWords, nPaddingBytes);
+
+	            // Add padding
+	            data.concat(padding);
+	        },
+
+	        /**
+	         * Unpads data that had been padded using the algorithm defined in PKCS #5/7.
+	         *
+	         * @param {WordArray} data The data to unpad.
+	         *
+	         * @static
+	         *
+	         * @example
+	         *
+	         *     CryptoJS.pad.Pkcs7.unpad(wordArray);
+	         */
+	        unpad: function (data) {
+	            // Get number of padding bytes from last byte
+	            var nPaddingBytes = data.words[(data.sigBytes - 1) >>> 2] & 0xff;
+
+	            // Remove padding
+	            data.sigBytes -= nPaddingBytes;
+	        }
+	    };
+
+	    /**
+	     * Abstract base block cipher template.
+	     *
+	     * @property {number} blockSize The number of 32-bit words this cipher operates on. Default: 4 (128 bits)
+	     */
+	    var BlockCipher = C_lib.BlockCipher = Cipher.extend({
+	        /**
+	         * Configuration options.
+	         *
+	         * @property {Mode} mode The block mode to use. Default: CBC
+	         * @property {Padding} padding The padding strategy to use. Default: Pkcs7
+	         */
+	        cfg: Cipher.cfg.extend({
+	            mode: CBC,
+	            padding: Pkcs7
+	        }),
+
+	        reset: function () {
+	            var modeCreator;
+
+	            // Reset cipher
+	            Cipher.reset.call(this);
+
+	            // Shortcuts
+	            var cfg = this.cfg;
+	            var iv = cfg.iv;
+	            var mode = cfg.mode;
+
+	            // Reset block mode
+	            if (this._xformMode == this._ENC_XFORM_MODE) {
+	                modeCreator = mode.createEncryptor;
+	            } else /* if (this._xformMode == this._DEC_XFORM_MODE) */ {
+	                modeCreator = mode.createDecryptor;
+	                // Keep at least one block in the buffer for unpadding
+	                this._minBufferSize = 1;
+	            }
+
+	            if (this._mode && this._mode.__creator == modeCreator) {
+	                this._mode.init(this, iv && iv.words);
+	            } else {
+	                this._mode = modeCreator.call(mode, this, iv && iv.words);
+	                this._mode.__creator = modeCreator;
+	            }
+	        },
+
+	        _doProcessBlock: function (words, offset) {
+	            this._mode.processBlock(words, offset);
+	        },
+
+	        _doFinalize: function () {
+	            var finalProcessedBlocks;
+
+	            // Shortcut
+	            var padding = this.cfg.padding;
+
+	            // Finalize
+	            if (this._xformMode == this._ENC_XFORM_MODE) {
+	                // Pad data
+	                padding.pad(this._data, this.blockSize);
+
+	                // Process final blocks
+	                finalProcessedBlocks = this._process(!!'flush');
+	            } else /* if (this._xformMode == this._DEC_XFORM_MODE) */ {
+	                // Process final blocks
+	                finalProcessedBlocks = this._process(!!'flush');
+
+	                // Unpad data
+	                padding.unpad(finalProcessedBlocks);
+	            }
+
+	            return finalProcessedBlocks;
+	        },
+
+	        blockSize: 128/32
+	    });
+
+	    /**
+	     * A collection of cipher parameters.
+	     *
+	     * @property {WordArray} ciphertext The raw ciphertext.
+	     * @property {WordArray} key The key to this ciphertext.
+	     * @property {WordArray} iv The IV used in the ciphering operation.
+	     * @property {WordArray} salt The salt used with a key derivation function.
+	     * @property {Cipher} algorithm The cipher algorithm.
+	     * @property {Mode} mode The block mode used in the ciphering operation.
+	     * @property {Padding} padding The padding scheme used in the ciphering operation.
+	     * @property {number} blockSize The block size of the cipher.
+	     * @property {Format} formatter The default formatting strategy to convert this cipher params object to a string.
+	     */
+	    var CipherParams = C_lib.CipherParams = Base.extend({
+	        /**
+	         * Initializes a newly created cipher params object.
+	         *
+	         * @param {Object} cipherParams An object with any of the possible cipher parameters.
+	         *
+	         * @example
+	         *
+	         *     var cipherParams = CryptoJS.lib.CipherParams.create({
+	         *         ciphertext: ciphertextWordArray,
+	         *         key: keyWordArray,
+	         *         iv: ivWordArray,
+	         *         salt: saltWordArray,
+	         *         algorithm: CryptoJS.algo.AES,
+	         *         mode: CryptoJS.mode.CBC,
+	         *         padding: CryptoJS.pad.PKCS7,
+	         *         blockSize: 4,
+	         *         formatter: CryptoJS.format.OpenSSL
+	         *     });
+	         */
+	        init: function (cipherParams) {
+	            this.mixIn(cipherParams);
+	        },
+
+	        /**
+	         * Converts this cipher params object to a string.
+	         *
+	         * @param {Format} formatter (Optional) The formatting strategy to use.
+	         *
+	         * @return {string} The stringified cipher params.
+	         *
+	         * @throws Error If neither the formatter nor the default formatter is set.
+	         *
+	         * @example
+	         *
+	         *     var string = cipherParams + '';
+	         *     var string = cipherParams.toString();
+	         *     var string = cipherParams.toString(CryptoJS.format.OpenSSL);
+	         */
+	        toString: function (formatter) {
+	            return (formatter || this.formatter).stringify(this);
+	        }
+	    });
+
+	    /**
+	     * Format namespace.
+	     */
+	    var C_format = C.format = {};
+
+	    /**
+	     * OpenSSL formatting strategy.
+	     */
+	    var OpenSSLFormatter = C_format.OpenSSL = {
+	        /**
+	         * Converts a cipher params object to an OpenSSL-compatible string.
+	         *
+	         * @param {CipherParams} cipherParams The cipher params object.
+	         *
+	         * @return {string} The OpenSSL-compatible string.
+	         *
+	         * @static
+	         *
+	         * @example
+	         *
+	         *     var openSSLString = CryptoJS.format.OpenSSL.stringify(cipherParams);
+	         */
+	        stringify: function (cipherParams) {
+	            var wordArray;
+
+	            // Shortcuts
+	            var ciphertext = cipherParams.ciphertext;
+	            var salt = cipherParams.salt;
+
+	            // Format
+	            if (salt) {
+	                wordArray = WordArray.create([0x53616c74, 0x65645f5f]).concat(salt).concat(ciphertext);
+	            } else {
+	                wordArray = ciphertext;
+	            }
+
+	            return wordArray.toString(Base64);
+	        },
+
+	        /**
+	         * Converts an OpenSSL-compatible string to a cipher params object.
+	         *
+	         * @param {string} openSSLStr The OpenSSL-compatible string.
+	         *
+	         * @return {CipherParams} The cipher params object.
+	         *
+	         * @static
+	         *
+	         * @example
+	         *
+	         *     var cipherParams = CryptoJS.format.OpenSSL.parse(openSSLString);
+	         */
+	        parse: function (openSSLStr) {
+	            var salt;
+
+	            // Parse base64
+	            var ciphertext = Base64.parse(openSSLStr);
+
+	            // Shortcut
+	            var ciphertextWords = ciphertext.words;
+
+	            // Test for salt
+	            if (ciphertextWords[0] == 0x53616c74 && ciphertextWords[1] == 0x65645f5f) {
+	                // Extract salt
+	                salt = WordArray.create(ciphertextWords.slice(2, 4));
+
+	                // Remove salt from ciphertext
+	                ciphertextWords.splice(0, 4);
+	                ciphertext.sigBytes -= 16;
+	            }
+
+	            return CipherParams.create({ ciphertext: ciphertext, salt: salt });
+	        }
+	    };
+
+	    /**
+	     * A cipher wrapper that returns ciphertext as a serializable cipher params object.
+	     */
+	    var SerializableCipher = C_lib.SerializableCipher = Base.extend({
+	        /**
+	         * Configuration options.
+	         *
+	         * @property {Formatter} format The formatting strategy to convert cipher param objects to and from a string. Default: OpenSSL
+	         */
+	        cfg: Base.extend({
+	            format: OpenSSLFormatter
+	        }),
+
+	        /**
+	         * Encrypts a message.
+	         *
+	         * @param {Cipher} cipher The cipher algorithm to use.
+	         * @param {WordArray|string} message The message to encrypt.
+	         * @param {WordArray} key The key.
+	         * @param {Object} cfg (Optional) The configuration options to use for this operation.
+	         *
+	         * @return {CipherParams} A cipher params object.
+	         *
+	         * @static
+	         *
+	         * @example
+	         *
+	         *     var ciphertextParams = CryptoJS.lib.SerializableCipher.encrypt(CryptoJS.algo.AES, message, key);
+	         *     var ciphertextParams = CryptoJS.lib.SerializableCipher.encrypt(CryptoJS.algo.AES, message, key, { iv: iv });
+	         *     var ciphertextParams = CryptoJS.lib.SerializableCipher.encrypt(CryptoJS.algo.AES, message, key, { iv: iv, format: CryptoJS.format.OpenSSL });
+	         */
+	        encrypt: function (cipher, message, key, cfg) {
+	            // Apply config defaults
+	            cfg = this.cfg.extend(cfg);
+
+	            // Encrypt
+	            var encryptor = cipher.createEncryptor(key, cfg);
+	            var ciphertext = encryptor.finalize(message);
+
+	            // Shortcut
+	            var cipherCfg = encryptor.cfg;
+
+	            // Create and return serializable cipher params
+	            return CipherParams.create({
+	                ciphertext: ciphertext,
+	                key: key,
+	                iv: cipherCfg.iv,
+	                algorithm: cipher,
+	                mode: cipherCfg.mode,
+	                padding: cipherCfg.padding,
+	                blockSize: cipher.blockSize,
+	                formatter: cfg.format
+	            });
+	        },
+
+	        /**
+	         * Decrypts serialized ciphertext.
+	         *
+	         * @param {Cipher} cipher The cipher algorithm to use.
+	         * @param {CipherParams|string} ciphertext The ciphertext to decrypt.
+	         * @param {WordArray} key The key.
+	         * @param {Object} cfg (Optional) The configuration options to use for this operation.
+	         *
+	         * @return {WordArray} The plaintext.
+	         *
+	         * @static
+	         *
+	         * @example
+	         *
+	         *     var plaintext = CryptoJS.lib.SerializableCipher.decrypt(CryptoJS.algo.AES, formattedCiphertext, key, { iv: iv, format: CryptoJS.format.OpenSSL });
+	         *     var plaintext = CryptoJS.lib.SerializableCipher.decrypt(CryptoJS.algo.AES, ciphertextParams, key, { iv: iv, format: CryptoJS.format.OpenSSL });
+	         */
+	        decrypt: function (cipher, ciphertext, key, cfg) {
+	            // Apply config defaults
+	            cfg = this.cfg.extend(cfg);
+
+	            // Convert string to CipherParams
+	            ciphertext = this._parse(ciphertext, cfg.format);
+
+	            // Decrypt
+	            var plaintext = cipher.createDecryptor(key, cfg).finalize(ciphertext.ciphertext);
+
+	            return plaintext;
+	        },
+
+	        /**
+	         * Converts serialized ciphertext to CipherParams,
+	         * else assumed CipherParams already and returns ciphertext unchanged.
+	         *
+	         * @param {CipherParams|string} ciphertext The ciphertext.
+	         * @param {Formatter} format The formatting strategy to use to parse serialized ciphertext.
+	         *
+	         * @return {CipherParams} The unserialized ciphertext.
+	         *
+	         * @static
+	         *
+	         * @example
+	         *
+	         *     var ciphertextParams = CryptoJS.lib.SerializableCipher._parse(ciphertextStringOrParams, format);
+	         */
+	        _parse: function (ciphertext, format) {
+	            if (typeof ciphertext == 'string') {
+	                return format.parse(ciphertext, this);
+	            } else {
+	                return ciphertext;
+	            }
+	        }
+	    });
+
+	    /**
+	     * Key derivation function namespace.
+	     */
+	    var C_kdf = C.kdf = {};
+
+	    /**
+	     * OpenSSL key derivation function.
+	     */
+	    var OpenSSLKdf = C_kdf.OpenSSL = {
+	        /**
+	         * Derives a key and IV from a password.
+	         *
+	         * @param {string} password The password to derive from.
+	         * @param {number} keySize The size in words of the key to generate.
+	         * @param {number} ivSize The size in words of the IV to generate.
+	         * @param {WordArray|string} salt (Optional) A 64-bit salt to use. If omitted, a salt will be generated randomly.
+	         *
+	         * @return {CipherParams} A cipher params object with the key, IV, and salt.
+	         *
+	         * @static
+	         *
+	         * @example
+	         *
+	         *     var derivedParams = CryptoJS.kdf.OpenSSL.execute('Password', 256/32, 128/32);
+	         *     var derivedParams = CryptoJS.kdf.OpenSSL.execute('Password', 256/32, 128/32, 'saltsalt');
+	         */
+	        execute: function (password, keySize, ivSize, salt) {
+	            // Generate random salt
+	            if (!salt) {
+	                salt = WordArray.random(64/8);
+	            }
+
+	            // Derive key and IV
+	            var key = EvpKDF.create({ keySize: keySize + ivSize }).compute(password, salt);
+
+	            // Separate key and IV
+	            var iv = WordArray.create(key.words.slice(keySize), ivSize * 4);
+	            key.sigBytes = keySize * 4;
+
+	            // Return params
+	            return CipherParams.create({ key: key, iv: iv, salt: salt });
+	        }
+	    };
+
+	    /**
+	     * A serializable cipher wrapper that derives the key from a password,
+	     * and returns ciphertext as a serializable cipher params object.
+	     */
+	    var PasswordBasedCipher = C_lib.PasswordBasedCipher = SerializableCipher.extend({
+	        /**
+	         * Configuration options.
+	         *
+	         * @property {KDF} kdf The key derivation function to use to generate a key and IV from a password. Default: OpenSSL
+	         */
+	        cfg: SerializableCipher.cfg.extend({
+	            kdf: OpenSSLKdf
+	        }),
+
+	        /**
+	         * Encrypts a message using a password.
+	         *
+	         * @param {Cipher} cipher The cipher algorithm to use.
+	         * @param {WordArray|string} message The message to encrypt.
+	         * @param {string} password The password.
+	         * @param {Object} cfg (Optional) The configuration options to use for this operation.
+	         *
+	         * @return {CipherParams} A cipher params object.
+	         *
+	         * @static
+	         *
+	         * @example
+	         *
+	         *     var ciphertextParams = CryptoJS.lib.PasswordBasedCipher.encrypt(CryptoJS.algo.AES, message, 'password');
+	         *     var ciphertextParams = CryptoJS.lib.PasswordBasedCipher.encrypt(CryptoJS.algo.AES, message, 'password', { format: CryptoJS.format.OpenSSL });
+	         */
+	        encrypt: function (cipher, message, password, cfg) {
+	            // Apply config defaults
+	            cfg = this.cfg.extend(cfg);
+
+	            // Derive key and other params
+	            var derivedParams = cfg.kdf.execute(password, cipher.keySize, cipher.ivSize);
+
+	            // Add IV to config
+	            cfg.iv = derivedParams.iv;
+
+	            // Encrypt
+	            var ciphertext = SerializableCipher.encrypt.call(this, cipher, message, derivedParams.key, cfg);
+
+	            // Mix in derived params
+	            ciphertext.mixIn(derivedParams);
+
+	            return ciphertext;
+	        },
+
+	        /**
+	         * Decrypts serialized ciphertext using a password.
+	         *
+	         * @param {Cipher} cipher The cipher algorithm to use.
+	         * @param {CipherParams|string} ciphertext The ciphertext to decrypt.
+	         * @param {string} password The password.
+	         * @param {Object} cfg (Optional) The configuration options to use for this operation.
+	         *
+	         * @return {WordArray} The plaintext.
+	         *
+	         * @static
+	         *
+	         * @example
+	         *
+	         *     var plaintext = CryptoJS.lib.PasswordBasedCipher.decrypt(CryptoJS.algo.AES, formattedCiphertext, 'password', { format: CryptoJS.format.OpenSSL });
+	         *     var plaintext = CryptoJS.lib.PasswordBasedCipher.decrypt(CryptoJS.algo.AES, ciphertextParams, 'password', { format: CryptoJS.format.OpenSSL });
+	         */
+	        decrypt: function (cipher, ciphertext, password, cfg) {
+	            // Apply config defaults
+	            cfg = this.cfg.extend(cfg);
+
+	            // Convert string to CipherParams
+	            ciphertext = this._parse(ciphertext, cfg.format);
+
+	            // Derive key and other params
+	            var derivedParams = cfg.kdf.execute(password, cipher.keySize, cipher.ivSize, ciphertext.salt);
+
+	            // Add IV to config
+	            cfg.iv = derivedParams.iv;
+
+	            // Decrypt
+	            var plaintext = SerializableCipher.decrypt.call(this, cipher, ciphertext, derivedParams.key, cfg);
+
+	            return plaintext;
+	        }
+	    });
+	}());
+
+
+}));
\ No newline at end of file
diff --git a/oxAuth/Server/src/main/webapp/js/crypto-js-4.1.1/core.js b/oxAuth/Server/src/main/webapp/js/crypto-js-4.1.1/core.js
new file mode 100644
index 00000000..e3a498bc
--- /dev/null
+++ b/oxAuth/Server/src/main/webapp/js/crypto-js-4.1.1/core.js
@@ -0,0 +1,807 @@
+;(function (root, factory) {
+	if (typeof exports === "object") {
+		// CommonJS
+		module.exports = exports = factory();
+	}
+	else if (typeof define === "function" && define.amd) {
+		// AMD
+		define([], factory);
+	}
+	else {
+		// Global (browser)
+		root.CryptoJS = factory();
+	}
+}(this, function () {
+
+	/*globals window, global, require*/
+
+	/**
+	 * CryptoJS core components.
+	 */
+	var CryptoJS = CryptoJS || (function (Math, undefined) {
+
+	    var crypto;
+
+	    // Native crypto from window (Browser)
+	    if (typeof window !== 'undefined' && window.crypto) {
+	        crypto = window.crypto;
+	    }
+
+	    // Native crypto in web worker (Browser)
+	    if (typeof self !== 'undefined' && self.crypto) {
+	        crypto = self.crypto;
+	    }
+
+	    // Native crypto from worker
+	    if (typeof globalThis !== 'undefined' && globalThis.crypto) {
+	        crypto = globalThis.crypto;
+	    }
+
+	    // Native (experimental IE 11) crypto from window (Browser)
+	    if (!crypto && typeof window !== 'undefined' && window.msCrypto) {
+	        crypto = window.msCrypto;
+	    }
+
+	    // Native crypto from global (NodeJS)
+	    if (!crypto && typeof global !== 'undefined' && global.crypto) {
+	        crypto = global.crypto;
+	    }
+
+	    // Native crypto import via require (NodeJS)
+	    if (!crypto && typeof require === 'function') {
+	        try {
+	            crypto = require('crypto');
+	        } catch (err) {}
+	    }
+
+	    /*
+	     * Cryptographically secure pseudorandom number generator
+	     *
+	     * As Math.random() is cryptographically not safe to use
+	     */
+	    var cryptoSecureRandomInt = function () {
+	        if (crypto) {
+	            // Use getRandomValues method (Browser)
+	            if (typeof crypto.getRandomValues === 'function') {
+	                try {
+	                    return crypto.getRandomValues(new Uint32Array(1))[0];
+	                } catch (err) {}
+	            }
+
+	            // Use randomBytes method (NodeJS)
+	            if (typeof crypto.randomBytes === 'function') {
+	                try {
+	                    return crypto.randomBytes(4).readInt32LE();
+	                } catch (err) {}
+	            }
+	        }
+
+	        throw new Error('Native crypto module could not be used to get secure random number.');
+	    };
+
+	    /*
+	     * Local polyfill of Object.create
+
+	     */
+	    var create = Object.create || (function () {
+	        function F() {}
+
+	        return function (obj) {
+	            var subtype;
+
+	            F.prototype = obj;
+
+	            subtype = new F();
+
+	            F.prototype = null;
+
+	            return subtype;
+	        };
+	    }());
+
+	    /**
+	     * CryptoJS namespace.
+	     */
+	    var C = {};
+
+	    /**
+	     * Library namespace.
+	     */
+	    var C_lib = C.lib = {};
+
+	    /**
+	     * Base object for prototypal inheritance.
+	     */
+	    var Base = C_lib.Base = (function () {
+
+
+	        return {
+	            /**
+	             * Creates a new object that inherits from this object.
+	             *
+	             * @param {Object} overrides Properties to copy into the new object.
+	             *
+	             * @return {Object} The new object.
+	             *
+	             * @static
+	             *
+	             * @example
+	             *
+	             *     var MyType = CryptoJS.lib.Base.extend({
+	             *         field: 'value',
+	             *
+	             *         method: function () {
+	             *         }
+	             *     });
+	             */
+	            extend: function (overrides) {
+	                // Spawn
+	                var subtype = create(this);
+
+	                // Augment
+	                if (overrides) {
+	                    subtype.mixIn(overrides);
+	                }
+
+	                // Create default initializer
+	                if (!subtype.hasOwnProperty('init') || this.init === subtype.init) {
+	                    subtype.init = function () {
+	                        subtype.$super.init.apply(this, arguments);
+	                    };
+	                }
+
+	                // Initializer's prototype is the subtype object
+	                subtype.init.prototype = subtype;
+
+	                // Reference supertype
+	                subtype.$super = this;
+
+	                return subtype;
+	            },
+
+	            /**
+	             * Extends this object and runs the init method.
+	             * Arguments to create() will be passed to init().
+	             *
+	             * @return {Object} The new object.
+	             *
+	             * @static
+	             *
+	             * @example
+	             *
+	             *     var instance = MyType.create();
+	             */
+	            create: function () {
+	                var instance = this.extend();
+	                instance.init.apply(instance, arguments);
+
+	                return instance;
+	            },
+
+	            /**
+	             * Initializes a newly created object.
+	             * Override this method to add some logic when your objects are created.
+	             *
+	             * @example
+	             *
+	             *     var MyType = CryptoJS.lib.Base.extend({
+	             *         init: function () {
+	             *             // ...
+	             *         }
+	             *     });
+	             */
+	            init: function () {
+	            },
+
+	            /**
+	             * Copies properties into this object.
+	             *
+	             * @param {Object} properties The properties to mix in.
+	             *
+	             * @example
+	             *
+	             *     MyType.mixIn({
+	             *         field: 'value'
+	             *     });
+	             */
+	            mixIn: function (properties) {
+	                for (var propertyName in properties) {
+	                    if (properties.hasOwnProperty(propertyName)) {
+	                        this[propertyName] = properties[propertyName];
+	                    }
+	                }
+
+	                // IE won't copy toString using the loop above
+	                if (properties.hasOwnProperty('toString')) {
+	                    this.toString = properties.toString;
+	                }
+	            },
+
+	            /**
+	             * Creates a copy of this object.
+	             *
+	             * @return {Object} The clone.
+	             *
+	             * @example
+	             *
+	             *     var clone = instance.clone();
+	             */
+	            clone: function () {
+	                return this.init.prototype.extend(this);
+	            }
+	        };
+	    }());
+
+	    /**
+	     * An array of 32-bit words.
+	     *
+	     * @property {Array} words The array of 32-bit words.
+	     * @property {number} sigBytes The number of significant bytes in this word array.
+	     */
+	    var WordArray = C_lib.WordArray = Base.extend({
+	        /**
+	         * Initializes a newly created word array.
+	         *
+	         * @param {Array} words (Optional) An array of 32-bit words.
+	         * @param {number} sigBytes (Optional) The number of significant bytes in the words.
+	         *
+	         * @example
+	         *
+	         *     var wordArray = CryptoJS.lib.WordArray.create();
+	         *     var wordArray = CryptoJS.lib.WordArray.create([0x00010203, 0x04050607]);
+	         *     var wordArray = CryptoJS.lib.WordArray.create([0x00010203, 0x04050607], 6);
+	         */
+	        init: function (words, sigBytes) {
+	            words = this.words = words || [];
+
+	            if (sigBytes != undefined) {
+	                this.sigBytes = sigBytes;
+	            } else {
+	                this.sigBytes = words.length * 4;
+	            }
+	        },
+
+	        /**
+	         * Converts this word array to a string.
+	         *
+	         * @param {Encoder} encoder (Optional) The encoding strategy to use. Default: CryptoJS.enc.Hex
+	         *
+	         * @return {string} The stringified word array.
+	         *
+	         * @example
+	         *
+	         *     var string = wordArray + '';
+	         *     var string = wordArray.toString();
+	         *     var string = wordArray.toString(CryptoJS.enc.Utf8);
+	         */
+	        toString: function (encoder) {
+	            return (encoder || Hex).stringify(this);
+	        },
+
+	        /**
+	         * Concatenates a word array to this word array.
+	         *
+	         * @param {WordArray} wordArray The word array to append.
+	         *
+	         * @return {WordArray} This word array.
+	         *
+	         * @example
+	         *
+	         *     wordArray1.concat(wordArray2);
+	         */
+	        concat: function (wordArray) {
+	            // Shortcuts
+	            var thisWords = this.words;
+	            var thatWords = wordArray.words;
+	            var thisSigBytes = this.sigBytes;
+	            var thatSigBytes = wordArray.sigBytes;
+
+	            // Clamp excess bits
+	            this.clamp();
+
+	            // Concat
+	            if (thisSigBytes % 4) {
+	                // Copy one byte at a time
+	                for (var i = 0; i < thatSigBytes; i++) {
+	                    var thatByte = (thatWords[i >>> 2] >>> (24 - (i % 4) * 8)) & 0xff;
+	                    thisWords[(thisSigBytes + i) >>> 2] |= thatByte << (24 - ((thisSigBytes + i) % 4) * 8);
+	                }
+	            } else {
+	                // Copy one word at a time
+	                for (var j = 0; j < thatSigBytes; j += 4) {
+	                    thisWords[(thisSigBytes + j) >>> 2] = thatWords[j >>> 2];
+	                }
+	            }
+	            this.sigBytes += thatSigBytes;
+
+	            // Chainable
+	            return this;
+	        },
+
+	        /**
+	         * Removes insignificant bits.
+	         *
+	         * @example
+	         *
+	         *     wordArray.clamp();
+	         */
+	        clamp: function () {
+	            // Shortcuts
+	            var words = this.words;
+	            var sigBytes = this.sigBytes;
+
+	            // Clamp
+	            words[sigBytes >>> 2] &= 0xffffffff << (32 - (sigBytes % 4) * 8);
+	            words.length = Math.ceil(sigBytes / 4);
+	        },
+
+	        /**
+	         * Creates a copy of this word array.
+	         *
+	         * @return {WordArray} The clone.
+	         *
+	         * @example
+	         *
+	         *     var clone = wordArray.clone();
+	         */
+	        clone: function () {
+	            var clone = Base.clone.call(this);
+	            clone.words = this.words.slice(0);
+
+	            return clone;
+	        },
+
+	        /**
+	         * Creates a word array filled with random bytes.
+	         *
+	         * @param {number} nBytes The number of random bytes to generate.
+	         *
+	         * @return {WordArray} The random word array.
+	         *
+	         * @static
+	         *
+	         * @example
+	         *
+	         *     var wordArray = CryptoJS.lib.WordArray.random(16);
+	         */
+	        random: function (nBytes) {
+	            var words = [];
+
+	            for (var i = 0; i < nBytes; i += 4) {
+	                words.push(cryptoSecureRandomInt());
+	            }
+
+	            return new WordArray.init(words, nBytes);
+	        }
+	    });
+
+	    /**
+	     * Encoder namespace.
+	     */
+	    var C_enc = C.enc = {};
+
+	    /**
+	     * Hex encoding strategy.
+	     */
+	    var Hex = C_enc.Hex = {
+	        /**
+	         * Converts a word array to a hex string.
+	         *
+	         * @param {WordArray} wordArray The word array.
+	         *
+	         * @return {string} The hex string.
+	         *
+	         * @static
+	         *
+	         * @example
+	         *
+	         *     var hexString = CryptoJS.enc.Hex.stringify(wordArray);
+	         */
+	        stringify: function (wordArray) {
+	            // Shortcuts
+	            var words = wordArray.words;
+	            var sigBytes = wordArray.sigBytes;
+
+	            // Convert
+	            var hexChars = [];
+	            for (var i = 0; i < sigBytes; i++) {
+	                var bite = (words[i >>> 2] >>> (24 - (i % 4) * 8)) & 0xff;
+	                hexChars.push((bite >>> 4).toString(16));
+	                hexChars.push((bite & 0x0f).toString(16));
+	            }
+
+	            return hexChars.join('');
+	        },
+
+	        /**
+	         * Converts a hex string to a word array.
+	         *
+	         * @param {string} hexStr The hex string.
+	         *
+	         * @return {WordArray} The word array.
+	         *
+	         * @static
+	         *
+	         * @example
+	         *
+	         *     var wordArray = CryptoJS.enc.Hex.parse(hexString);
+	         */
+	        parse: function (hexStr) {
+	            // Shortcut
+	            var hexStrLength = hexStr.length;
+
+	            // Convert
+	            var words = [];
+	            for (var i = 0; i < hexStrLength; i += 2) {
+	                words[i >>> 3] |= parseInt(hexStr.substr(i, 2), 16) << (24 - (i % 8) * 4);
+	            }
+
+	            return new WordArray.init(words, hexStrLength / 2);
+	        }
+	    };
+
+	    /**
+	     * Latin1 encoding strategy.
+	     */
+	    var Latin1 = C_enc.Latin1 = {
+	        /**
+	         * Converts a word array to a Latin1 string.
+	         *
+	         * @param {WordArray} wordArray The word array.
+	         *
+	         * @return {string} The Latin1 string.
+	         *
+	         * @static
+	         *
+	         * @example
+	         *
+	         *     var latin1String = CryptoJS.enc.Latin1.stringify(wordArray);
+	         */
+	        stringify: function (wordArray) {
+	            // Shortcuts
+	            var words = wordArray.words;
+	            var sigBytes = wordArray.sigBytes;
+
+	            // Convert
+	            var latin1Chars = [];
+	            for (var i = 0; i < sigBytes; i++) {
+	                var bite = (words[i >>> 2] >>> (24 - (i % 4) * 8)) & 0xff;
+	                latin1Chars.push(String.fromCharCode(bite));
+	            }
+
+	            return latin1Chars.join('');
+	        },
+
+	        /**
+	         * Converts a Latin1 string to a word array.
+	         *
+	         * @param {string} latin1Str The Latin1 string.
+	         *
+	         * @return {WordArray} The word array.
+	         *
+	         * @static
+	         *
+	         * @example
+	         *
+	         *     var wordArray = CryptoJS.enc.Latin1.parse(latin1String);
+	         */
+	        parse: function (latin1Str) {
+	            // Shortcut
+	            var latin1StrLength = latin1Str.length;
+
+	            // Convert
+	            var words = [];
+	            for (var i = 0; i < latin1StrLength; i++) {
+	                words[i >>> 2] |= (latin1Str.charCodeAt(i) & 0xff) << (24 - (i % 4) * 8);
+	            }
+
+	            return new WordArray.init(words, latin1StrLength);
+	        }
+	    };
+
+	    /**
+	     * UTF-8 encoding strategy.
+	     */
+	    var Utf8 = C_enc.Utf8 = {
+	        /**
+	         * Converts a word array to a UTF-8 string.
+	         *
+	         * @param {WordArray} wordArray The word array.
+	         *
+	         * @return {string} The UTF-8 string.
+	         *
+	         * @static
+	         *
+	         * @example
+	         *
+	         *     var utf8String = CryptoJS.enc.Utf8.stringify(wordArray);
+	         */
+	        stringify: function (wordArray) {
+	            try {
+	                return decodeURIComponent(escape(Latin1.stringify(wordArray)));
+	            } catch (e) {
+	                throw new Error('Malformed UTF-8 data');
+	            }
+	        },
+
+	        /**
+	         * Converts a UTF-8 string to a word array.
+	         *
+	         * @param {string} utf8Str The UTF-8 string.
+	         *
+	         * @return {WordArray} The word array.
+	         *
+	         * @static
+	         *
+	         * @example
+	         *
+	         *     var wordArray = CryptoJS.enc.Utf8.parse(utf8String);
+	         */
+	        parse: function (utf8Str) {
+	            return Latin1.parse(unescape(encodeURIComponent(utf8Str)));
+	        }
+	    };
+
+	    /**
+	     * Abstract buffered block algorithm template.
+	     *
+	     * The property blockSize must be implemented in a concrete subtype.
+	     *
+	     * @property {number} _minBufferSize The number of blocks that should be kept unprocessed in the buffer. Default: 0
+	     */
+	    var BufferedBlockAlgorithm = C_lib.BufferedBlockAlgorithm = Base.extend({
+	        /**
+	         * Resets this block algorithm's data buffer to its initial state.
+	         *
+	         * @example
+	         *
+	         *     bufferedBlockAlgorithm.reset();
+	         */
+	        reset: function () {
+	            // Initial values
+	            this._data = new WordArray.init();
+	            this._nDataBytes = 0;
+	        },
+
+	        /**
+	         * Adds new data to this block algorithm's buffer.
+	         *
+	         * @param {WordArray|string} data The data to append. Strings are converted to a WordArray using UTF-8.
+	         *
+	         * @example
+	         *
+	         *     bufferedBlockAlgorithm._append('data');
+	         *     bufferedBlockAlgorithm._append(wordArray);
+	         */
+	        _append: function (data) {
+	            // Convert string to WordArray, else assume WordArray already
+	            if (typeof data == 'string') {
+	                data = Utf8.parse(data);
+	            }
+
+	            // Append
+	            this._data.concat(data);
+	            this._nDataBytes += data.sigBytes;
+	        },
+
+	        /**
+	         * Processes available data blocks.
+	         *
+	         * This method invokes _doProcessBlock(offset), which must be implemented by a concrete subtype.
+	         *
+	         * @param {boolean} doFlush Whether all blocks and partial blocks should be processed.
+	         *
+	         * @return {WordArray} The processed data.
+	         *
+	         * @example
+	         *
+	         *     var processedData = bufferedBlockAlgorithm._process();
+	         *     var processedData = bufferedBlockAlgorithm._process(!!'flush');
+	         */
+	        _process: function (doFlush) {
+	            var processedWords;
+
+	            // Shortcuts
+	            var data = this._data;
+	            var dataWords = data.words;
+	            var dataSigBytes = data.sigBytes;
+	            var blockSize = this.blockSize;
+	            var blockSizeBytes = blockSize * 4;
+
+	            // Count blocks ready
+	            var nBlocksReady = dataSigBytes / blockSizeBytes;
+	            if (doFlush) {
+	                // Round up to include partial blocks
+	                nBlocksReady = Math.ceil(nBlocksReady);
+	            } else {
+	                // Round down to include only full blocks,
+	                // less the number of blocks that must remain in the buffer
+	                nBlocksReady = Math.max((nBlocksReady | 0) - this._minBufferSize, 0);
+	            }
+
+	            // Count words ready
+	            var nWordsReady = nBlocksReady * blockSize;
+
+	            // Count bytes ready
+	            var nBytesReady = Math.min(nWordsReady * 4, dataSigBytes);
+
+	            // Process blocks
+	            if (nWordsReady) {
+	                for (var offset = 0; offset < nWordsReady; offset += blockSize) {
+	                    // Perform concrete-algorithm logic
+	                    this._doProcessBlock(dataWords, offset);
+	                }
+
+	                // Remove processed words
+	                processedWords = dataWords.splice(0, nWordsReady);
+	                data.sigBytes -= nBytesReady;
+	            }
+
+	            // Return processed words
+	            return new WordArray.init(processedWords, nBytesReady);
+	        },
+
+	        /**
+	         * Creates a copy of this object.
+	         *
+	         * @return {Object} The clone.
+	         *
+	         * @example
+	         *
+	         *     var clone = bufferedBlockAlgorithm.clone();
+	         */
+	        clone: function () {
+	            var clone = Base.clone.call(this);
+	            clone._data = this._data.clone();
+
+	            return clone;
+	        },
+
+	        _minBufferSize: 0
+	    });
+
+	    /**
+	     * Abstract hasher template.
+	     *
+	     * @property {number} blockSize The number of 32-bit words this hasher operates on. Default: 16 (512 bits)
+	     */
+	    var Hasher = C_lib.Hasher = BufferedBlockAlgorithm.extend({
+	        /**
+	         * Configuration options.
+	         */
+	        cfg: Base.extend(),
+
+	        /**
+	         * Initializes a newly created hasher.
+	         *
+	         * @param {Object} cfg (Optional) The configuration options to use for this hash computation.
+	         *
+	         * @example
+	         *
+	         *     var hasher = CryptoJS.algo.SHA256.create();
+	         */
+	        init: function (cfg) {
+	            // Apply config defaults
+	            this.cfg = this.cfg.extend(cfg);
+
+	            // Set initial values
+	            this.reset();
+	        },
+
+	        /**
+	         * Resets this hasher to its initial state.
+	         *
+	         * @example
+	         *
+	         *     hasher.reset();
+	         */
+	        reset: function () {
+	            // Reset data buffer
+	            BufferedBlockAlgorithm.reset.call(this);
+
+	            // Perform concrete-hasher logic
+	            this._doReset();
+	        },
+
+	        /**
+	         * Updates this hasher with a message.
+	         *
+	         * @param {WordArray|string} messageUpdate The message to append.
+	         *
+	         * @return {Hasher} This hasher.
+	         *
+	         * @example
+	         *
+	         *     hasher.update('message');
+	         *     hasher.update(wordArray);
+	         */
+	        update: function (messageUpdate) {
+	            // Append
+	            this._append(messageUpdate);
+
+	            // Update the hash
+	            this._process();
+
+	            // Chainable
+	            return this;
+	        },
+
+	        /**
+	         * Finalizes the hash computation.
+	         * Note that the finalize operation is effectively a destructive, read-once operation.
+	         *
+	         * @param {WordArray|string} messageUpdate (Optional) A final message update.
+	         *
+	         * @return {WordArray} The hash.
+	         *
+	         * @example
+	         *
+	         *     var hash = hasher.finalize();
+	         *     var hash = hasher.finalize('message');
+	         *     var hash = hasher.finalize(wordArray);
+	         */
+	        finalize: function (messageUpdate) {
+	            // Final message update
+	            if (messageUpdate) {
+	                this._append(messageUpdate);
+	            }
+
+	            // Perform concrete-hasher logic
+	            var hash = this._doFinalize();
+
+	            return hash;
+	        },
+
+	        blockSize: 512/32,
+
+	        /**
+	         * Creates a shortcut function to a hasher's object interface.
+	         *
+	         * @param {Hasher} hasher The hasher to create a helper for.
+	         *
+	         * @return {Function} The shortcut function.
+	         *
+	         * @static
+	         *
+	         * @example
+	         *
+	         *     var SHA256 = CryptoJS.lib.Hasher._createHelper(CryptoJS.algo.SHA256);
+	         */
+	        _createHelper: function (hasher) {
+	            return function (message, cfg) {
+	                return new hasher.init(cfg).finalize(message);
+	            };
+	        },
+
+	        /**
+	         * Creates a shortcut function to the HMAC's object interface.
+	         *
+	         * @param {Hasher} hasher The hasher to use in this HMAC helper.
+	         *
+	         * @return {Function} The shortcut function.
+	         *
+	         * @static
+	         *
+	         * @example
+	         *
+	         *     var HmacSHA256 = CryptoJS.lib.Hasher._createHmacHelper(CryptoJS.algo.SHA256);
+	         */
+	        _createHmacHelper: function (hasher) {
+	            return function (message, key) {
+	                return new C_algo.HMAC.init(hasher, key).finalize(message);
+	            };
+	        }
+	    });
+
+	    /**
+	     * Algorithm namespace.
+	     */
+	    var C_algo = C.algo = {};
+
+	    return C;
+	}(Math));
+
+
+	return CryptoJS;
+
+}));
\ No newline at end of file
diff --git a/oxAuth/Server/src/main/webapp/js/crypto-js-4.1.1/crypto-js.js b/oxAuth/Server/src/main/webapp/js/crypto-js-4.1.1/crypto-js.js
new file mode 100644
index 00000000..27f0a620
--- /dev/null
+++ b/oxAuth/Server/src/main/webapp/js/crypto-js-4.1.1/crypto-js.js
@@ -0,0 +1,6191 @@
+;(function (root, factory) {
+	if (typeof exports === "object") {
+		// CommonJS
+		module.exports = exports = factory();
+	}
+	else if (typeof define === "function" && define.amd) {
+		// AMD
+		define([], factory);
+	}
+	else {
+		// Global (browser)
+		root.CryptoJS = factory();
+	}
+}(this, function () {
+
+	/*globals window, global, require*/
+
+	/**
+	 * CryptoJS core components.
+	 */
+	var CryptoJS = CryptoJS || (function (Math, undefined) {
+
+	    var crypto;
+
+	    // Native crypto from window (Browser)
+	    if (typeof window !== 'undefined' && window.crypto) {
+	        crypto = window.crypto;
+	    }
+
+	    // Native crypto in web worker (Browser)
+	    if (typeof self !== 'undefined' && self.crypto) {
+	        crypto = self.crypto;
+	    }
+
+	    // Native crypto from worker
+	    if (typeof globalThis !== 'undefined' && globalThis.crypto) {
+	        crypto = globalThis.crypto;
+	    }
+
+	    // Native (experimental IE 11) crypto from window (Browser)
+	    if (!crypto && typeof window !== 'undefined' && window.msCrypto) {
+	        crypto = window.msCrypto;
+	    }
+
+	    // Native crypto from global (NodeJS)
+	    if (!crypto && typeof global !== 'undefined' && global.crypto) {
+	        crypto = global.crypto;
+	    }
+
+	    // Native crypto import via require (NodeJS)
+	    if (!crypto && typeof require === 'function') {
+	        try {
+	            crypto = require('crypto');
+	        } catch (err) {}
+	    }
+
+	    /*
+	     * Cryptographically secure pseudorandom number generator
+	     *
+	     * As Math.random() is cryptographically not safe to use
+	     */
+	    var cryptoSecureRandomInt = function () {
+	        if (crypto) {
+	            // Use getRandomValues method (Browser)
+	            if (typeof crypto.getRandomValues === 'function') {
+	                try {
+	                    return crypto.getRandomValues(new Uint32Array(1))[0];
+	                } catch (err) {}
+	            }
+
+	            // Use randomBytes method (NodeJS)
+	            if (typeof crypto.randomBytes === 'function') {
+	                try {
+	                    return crypto.randomBytes(4).readInt32LE();
+	                } catch (err) {}
+	            }
+	        }
+
+	        throw new Error('Native crypto module could not be used to get secure random number.');
+	    };
+
+	    /*
+	     * Local polyfill of Object.create
+
+	     */
+	    var create = Object.create || (function () {
+	        function F() {}
+
+	        return function (obj) {
+	            var subtype;
+
+	            F.prototype = obj;
+
+	            subtype = new F();
+
+	            F.prototype = null;
+
+	            return subtype;
+	        };
+	    }());
+
+	    /**
+	     * CryptoJS namespace.
+	     */
+	    var C = {};
+
+	    /**
+	     * Library namespace.
+	     */
+	    var C_lib = C.lib = {};
+
+	    /**
+	     * Base object for prototypal inheritance.
+	     */
+	    var Base = C_lib.Base = (function () {
+
+
+	        return {
+	            /**
+	             * Creates a new object that inherits from this object.
+	             *
+	             * @param {Object} overrides Properties to copy into the new object.
+	             *
+	             * @return {Object} The new object.
+	             *
+	             * @static
+	             *
+	             * @example
+	             *
+	             *     var MyType = CryptoJS.lib.Base.extend({
+	             *         field: 'value',
+	             *
+	             *         method: function () {
+	             *         }
+	             *     });
+	             */
+	            extend: function (overrides) {
+	                // Spawn
+	                var subtype = create(this);
+
+	                // Augment
+	                if (overrides) {
+	                    subtype.mixIn(overrides);
+	                }
+
+	                // Create default initializer
+	                if (!subtype.hasOwnProperty('init') || this.init === subtype.init) {
+	                    subtype.init = function () {
+	                        subtype.$super.init.apply(this, arguments);
+	                    };
+	                }
+
+	                // Initializer's prototype is the subtype object
+	                subtype.init.prototype = subtype;
+
+	                // Reference supertype
+	                subtype.$super = this;
+
+	                return subtype;
+	            },
+
+	            /**
+	             * Extends this object and runs the init method.
+	             * Arguments to create() will be passed to init().
+	             *
+	             * @return {Object} The new object.
+	             *
+	             * @static
+	             *
+	             * @example
+	             *
+	             *     var instance = MyType.create();
+	             */
+	            create: function () {
+	                var instance = this.extend();
+	                instance.init.apply(instance, arguments);
+
+	                return instance;
+	            },
+
+	            /**
+	             * Initializes a newly created object.
+	             * Override this method to add some logic when your objects are created.
+	             *
+	             * @example
+	             *
+	             *     var MyType = CryptoJS.lib.Base.extend({
+	             *         init: function () {
+	             *             // ...
+	             *         }
+	             *     });
+	             */
+	            init: function () {
+	            },
+
+	            /**
+	             * Copies properties into this object.
+	             *
+	             * @param {Object} properties The properties to mix in.
+	             *
+	             * @example
+	             *
+	             *     MyType.mixIn({
+	             *         field: 'value'
+	             *     });
+	             */
+	            mixIn: function (properties) {
+	                for (var propertyName in properties) {
+	                    if (properties.hasOwnProperty(propertyName)) {
+	                        this[propertyName] = properties[propertyName];
+	                    }
+	                }
+
+	                // IE won't copy toString using the loop above
+	                if (properties.hasOwnProperty('toString')) {
+	                    this.toString = properties.toString;
+	                }
+	            },
+
+	            /**
+	             * Creates a copy of this object.
+	             *
+	             * @return {Object} The clone.
+	             *
+	             * @example
+	             *
+	             *     var clone = instance.clone();
+	             */
+	            clone: function () {
+	                return this.init.prototype.extend(this);
+	            }
+	        };
+	    }());
+
+	    /**
+	     * An array of 32-bit words.
+	     *
+	     * @property {Array} words The array of 32-bit words.
+	     * @property {number} sigBytes The number of significant bytes in this word array.
+	     */
+	    var WordArray = C_lib.WordArray = Base.extend({
+	        /**
+	         * Initializes a newly created word array.
+	         *
+	         * @param {Array} words (Optional) An array of 32-bit words.
+	         * @param {number} sigBytes (Optional) The number of significant bytes in the words.
+	         *
+	         * @example
+	         *
+	         *     var wordArray = CryptoJS.lib.WordArray.create();
+	         *     var wordArray = CryptoJS.lib.WordArray.create([0x00010203, 0x04050607]);
+	         *     var wordArray = CryptoJS.lib.WordArray.create([0x00010203, 0x04050607], 6);
+	         */
+	        init: function (words, sigBytes) {
+	            words = this.words = words || [];
+
+	            if (sigBytes != undefined) {
+	                this.sigBytes = sigBytes;
+	            } else {
+	                this.sigBytes = words.length * 4;
+	            }
+	        },
+
+	        /**
+	         * Converts this word array to a string.
+	         *
+	         * @param {Encoder} encoder (Optional) The encoding strategy to use. Default: CryptoJS.enc.Hex
+	         *
+	         * @return {string} The stringified word array.
+	         *
+	         * @example
+	         *
+	         *     var string = wordArray + '';
+	         *     var string = wordArray.toString();
+	         *     var string = wordArray.toString(CryptoJS.enc.Utf8);
+	         */
+	        toString: function (encoder) {
+	            return (encoder || Hex).stringify(this);
+	        },
+
+	        /**
+	         * Concatenates a word array to this word array.
+	         *
+	         * @param {WordArray} wordArray The word array to append.
+	         *
+	         * @return {WordArray} This word array.
+	         *
+	         * @example
+	         *
+	         *     wordArray1.concat(wordArray2);
+	         */
+	        concat: function (wordArray) {
+	            // Shortcuts
+	            var thisWords = this.words;
+	            var thatWords = wordArray.words;
+	            var thisSigBytes = this.sigBytes;
+	            var thatSigBytes = wordArray.sigBytes;
+
+	            // Clamp excess bits
+	            this.clamp();
+
+	            // Concat
+	            if (thisSigBytes % 4) {
+	                // Copy one byte at a time
+	                for (var i = 0; i < thatSigBytes; i++) {
+	                    var thatByte = (thatWords[i >>> 2] >>> (24 - (i % 4) * 8)) & 0xff;
+	                    thisWords[(thisSigBytes + i) >>> 2] |= thatByte << (24 - ((thisSigBytes + i) % 4) * 8);
+	                }
+	            } else {
+	                // Copy one word at a time
+	                for (var j = 0; j < thatSigBytes; j += 4) {
+	                    thisWords[(thisSigBytes + j) >>> 2] = thatWords[j >>> 2];
+	                }
+	            }
+	            this.sigBytes += thatSigBytes;
+
+	            // Chainable
+	            return this;
+	        },
+
+	        /**
+	         * Removes insignificant bits.
+	         *
+	         * @example
+	         *
+	         *     wordArray.clamp();
+	         */
+	        clamp: function () {
+	            // Shortcuts
+	            var words = this.words;
+	            var sigBytes = this.sigBytes;
+
+	            // Clamp
+	            words[sigBytes >>> 2] &= 0xffffffff << (32 - (sigBytes % 4) * 8);
+	            words.length = Math.ceil(sigBytes / 4);
+	        },
+
+	        /**
+	         * Creates a copy of this word array.
+	         *
+	         * @return {WordArray} The clone.
+	         *
+	         * @example
+	         *
+	         *     var clone = wordArray.clone();
+	         */
+	        clone: function () {
+	            var clone = Base.clone.call(this);
+	            clone.words = this.words.slice(0);
+
+	            return clone;
+	        },
+
+	        /**
+	         * Creates a word array filled with random bytes.
+	         *
+	         * @param {number} nBytes The number of random bytes to generate.
+	         *
+	         * @return {WordArray} The random word array.
+	         *
+	         * @static
+	         *
+	         * @example
+	         *
+	         *     var wordArray = CryptoJS.lib.WordArray.random(16);
+	         */
+	        random: function (nBytes) {
+	            var words = [];
+
+	            for (var i = 0; i < nBytes; i += 4) {
+	                words.push(cryptoSecureRandomInt());
+	            }
+
+	            return new WordArray.init(words, nBytes);
+	        }
+	    });
+
+	    /**
+	     * Encoder namespace.
+	     */
+	    var C_enc = C.enc = {};
+
+	    /**
+	     * Hex encoding strategy.
+	     */
+	    var Hex = C_enc.Hex = {
+	        /**
+	         * Converts a word array to a hex string.
+	         *
+	         * @param {WordArray} wordArray The word array.
+	         *
+	         * @return {string} The hex string.
+	         *
+	         * @static
+	         *
+	         * @example
+	         *
+	         *     var hexString = CryptoJS.enc.Hex.stringify(wordArray);
+	         */
+	        stringify: function (wordArray) {
+	            // Shortcuts
+	            var words = wordArray.words;
+	            var sigBytes = wordArray.sigBytes;
+
+	            // Convert
+	            var hexChars = [];
+	            for (var i = 0; i < sigBytes; i++) {
+	                var bite = (words[i >>> 2] >>> (24 - (i % 4) * 8)) & 0xff;
+	                hexChars.push((bite >>> 4).toString(16));
+	                hexChars.push((bite & 0x0f).toString(16));
+	            }
+
+	            return hexChars.join('');
+	        },
+
+	        /**
+	         * Converts a hex string to a word array.
+	         *
+	         * @param {string} hexStr The hex string.
+	         *
+	         * @return {WordArray} The word array.
+	         *
+	         * @static
+	         *
+	         * @example
+	         *
+	         *     var wordArray = CryptoJS.enc.Hex.parse(hexString);
+	         */
+	        parse: function (hexStr) {
+	            // Shortcut
+	            var hexStrLength = hexStr.length;
+
+	            // Convert
+	            var words = [];
+	            for (var i = 0; i < hexStrLength; i += 2) {
+	                words[i >>> 3] |= parseInt(hexStr.substr(i, 2), 16) << (24 - (i % 8) * 4);
+	            }
+
+	            return new WordArray.init(words, hexStrLength / 2);
+	        }
+	    };
+
+	    /**
+	     * Latin1 encoding strategy.
+	     */
+	    var Latin1 = C_enc.Latin1 = {
+	        /**
+	         * Converts a word array to a Latin1 string.
+	         *
+	         * @param {WordArray} wordArray The word array.
+	         *
+	         * @return {string} The Latin1 string.
+	         *
+	         * @static
+	         *
+	         * @example
+	         *
+	         *     var latin1String = CryptoJS.enc.Latin1.stringify(wordArray);
+	         */
+	        stringify: function (wordArray) {
+	            // Shortcuts
+	            var words = wordArray.words;
+	            var sigBytes = wordArray.sigBytes;
+
+	            // Convert
+	            var latin1Chars = [];
+	            for (var i = 0; i < sigBytes; i++) {
+	                var bite = (words[i >>> 2] >>> (24 - (i % 4) * 8)) & 0xff;
+	                latin1Chars.push(String.fromCharCode(bite));
+	            }
+
+	            return latin1Chars.join('');
+	        },
+
+	        /**
+	         * Converts a Latin1 string to a word array.
+	         *
+	         * @param {string} latin1Str The Latin1 string.
+	         *
+	         * @return {WordArray} The word array.
+	         *
+	         * @static
+	         *
+	         * @example
+	         *
+	         *     var wordArray = CryptoJS.enc.Latin1.parse(latin1String);
+	         */
+	        parse: function (latin1Str) {
+	            // Shortcut
+	            var latin1StrLength = latin1Str.length;
+
+	            // Convert
+	            var words = [];
+	            for (var i = 0; i < latin1StrLength; i++) {
+	                words[i >>> 2] |= (latin1Str.charCodeAt(i) & 0xff) << (24 - (i % 4) * 8);
+	            }
+
+	            return new WordArray.init(words, latin1StrLength);
+	        }
+	    };
+
+	    /**
+	     * UTF-8 encoding strategy.
+	     */
+	    var Utf8 = C_enc.Utf8 = {
+	        /**
+	         * Converts a word array to a UTF-8 string.
+	         *
+	         * @param {WordArray} wordArray The word array.
+	         *
+	         * @return {string} The UTF-8 string.
+	         *
+	         * @static
+	         *
+	         * @example
+	         *
+	         *     var utf8String = CryptoJS.enc.Utf8.stringify(wordArray);
+	         */
+	        stringify: function (wordArray) {
+	            try {
+	                return decodeURIComponent(escape(Latin1.stringify(wordArray)));
+	            } catch (e) {
+	                throw new Error('Malformed UTF-8 data');
+	            }
+	        },
+
+	        /**
+	         * Converts a UTF-8 string to a word array.
+	         *
+	         * @param {string} utf8Str The UTF-8 string.
+	         *
+	         * @return {WordArray} The word array.
+	         *
+	         * @static
+	         *
+	         * @example
+	         *
+	         *     var wordArray = CryptoJS.enc.Utf8.parse(utf8String);
+	         */
+	        parse: function (utf8Str) {
+	            return Latin1.parse(unescape(encodeURIComponent(utf8Str)));
+	        }
+	    };
+
+	    /**
+	     * Abstract buffered block algorithm template.
+	     *
+	     * The property blockSize must be implemented in a concrete subtype.
+	     *
+	     * @property {number} _minBufferSize The number of blocks that should be kept unprocessed in the buffer. Default: 0
+	     */
+	    var BufferedBlockAlgorithm = C_lib.BufferedBlockAlgorithm = Base.extend({
+	        /**
+	         * Resets this block algorithm's data buffer to its initial state.
+	         *
+	         * @example
+	         *
+	         *     bufferedBlockAlgorithm.reset();
+	         */
+	        reset: function () {
+	            // Initial values
+	            this._data = new WordArray.init();
+	            this._nDataBytes = 0;
+	        },
+
+	        /**
+	         * Adds new data to this block algorithm's buffer.
+	         *
+	         * @param {WordArray|string} data The data to append. Strings are converted to a WordArray using UTF-8.
+	         *
+	         * @example
+	         *
+	         *     bufferedBlockAlgorithm._append('data');
+	         *     bufferedBlockAlgorithm._append(wordArray);
+	         */
+	        _append: function (data) {
+	            // Convert string to WordArray, else assume WordArray already
+	            if (typeof data == 'string') {
+	                data = Utf8.parse(data);
+	            }
+
+	            // Append
+	            this._data.concat(data);
+	            this._nDataBytes += data.sigBytes;
+	        },
+
+	        /**
+	         * Processes available data blocks.
+	         *
+	         * This method invokes _doProcessBlock(offset), which must be implemented by a concrete subtype.
+	         *
+	         * @param {boolean} doFlush Whether all blocks and partial blocks should be processed.
+	         *
+	         * @return {WordArray} The processed data.
+	         *
+	         * @example
+	         *
+	         *     var processedData = bufferedBlockAlgorithm._process();
+	         *     var processedData = bufferedBlockAlgorithm._process(!!'flush');
+	         */
+	        _process: function (doFlush) {
+	            var processedWords;
+
+	            // Shortcuts
+	            var data = this._data;
+	            var dataWords = data.words;
+	            var dataSigBytes = data.sigBytes;
+	            var blockSize = this.blockSize;
+	            var blockSizeBytes = blockSize * 4;
+
+	            // Count blocks ready
+	            var nBlocksReady = dataSigBytes / blockSizeBytes;
+	            if (doFlush) {
+	                // Round up to include partial blocks
+	                nBlocksReady = Math.ceil(nBlocksReady);
+	            } else {
+	                // Round down to include only full blocks,
+	                // less the number of blocks that must remain in the buffer
+	                nBlocksReady = Math.max((nBlocksReady | 0) - this._minBufferSize, 0);
+	            }
+
+	            // Count words ready
+	            var nWordsReady = nBlocksReady * blockSize;
+
+	            // Count bytes ready
+	            var nBytesReady = Math.min(nWordsReady * 4, dataSigBytes);
+
+	            // Process blocks
+	            if (nWordsReady) {
+	                for (var offset = 0; offset < nWordsReady; offset += blockSize) {
+	                    // Perform concrete-algorithm logic
+	                    this._doProcessBlock(dataWords, offset);
+	                }
+
+	                // Remove processed words
+	                processedWords = dataWords.splice(0, nWordsReady);
+	                data.sigBytes -= nBytesReady;
+	            }
+
+	            // Return processed words
+	            return new WordArray.init(processedWords, nBytesReady);
+	        },
+
+	        /**
+	         * Creates a copy of this object.
+	         *
+	         * @return {Object} The clone.
+	         *
+	         * @example
+	         *
+	         *     var clone = bufferedBlockAlgorithm.clone();
+	         */
+	        clone: function () {
+	            var clone = Base.clone.call(this);
+	            clone._data = this._data.clone();
+
+	            return clone;
+	        },
+
+	        _minBufferSize: 0
+	    });
+
+	    /**
+	     * Abstract hasher template.
+	     *
+	     * @property {number} blockSize The number of 32-bit words this hasher operates on. Default: 16 (512 bits)
+	     */
+	    var Hasher = C_lib.Hasher = BufferedBlockAlgorithm.extend({
+	        /**
+	         * Configuration options.
+	         */
+	        cfg: Base.extend(),
+
+	        /**
+	         * Initializes a newly created hasher.
+	         *
+	         * @param {Object} cfg (Optional) The configuration options to use for this hash computation.
+	         *
+	         * @example
+	         *
+	         *     var hasher = CryptoJS.algo.SHA256.create();
+	         */
+	        init: function (cfg) {
+	            // Apply config defaults
+	            this.cfg = this.cfg.extend(cfg);
+
+	            // Set initial values
+	            this.reset();
+	        },
+
+	        /**
+	         * Resets this hasher to its initial state.
+	         *
+	         * @example
+	         *
+	         *     hasher.reset();
+	         */
+	        reset: function () {
+	            // Reset data buffer
+	            BufferedBlockAlgorithm.reset.call(this);
+
+	            // Perform concrete-hasher logic
+	            this._doReset();
+	        },
+
+	        /**
+	         * Updates this hasher with a message.
+	         *
+	         * @param {WordArray|string} messageUpdate The message to append.
+	         *
+	         * @return {Hasher} This hasher.
+	         *
+	         * @example
+	         *
+	         *     hasher.update('message');
+	         *     hasher.update(wordArray);
+	         */
+	        update: function (messageUpdate) {
+	            // Append
+	            this._append(messageUpdate);
+
+	            // Update the hash
+	            this._process();
+
+	            // Chainable
+	            return this;
+	        },
+
+	        /**
+	         * Finalizes the hash computation.
+	         * Note that the finalize operation is effectively a destructive, read-once operation.
+	         *
+	         * @param {WordArray|string} messageUpdate (Optional) A final message update.
+	         *
+	         * @return {WordArray} The hash.
+	         *
+	         * @example
+	         *
+	         *     var hash = hasher.finalize();
+	         *     var hash = hasher.finalize('message');
+	         *     var hash = hasher.finalize(wordArray);
+	         */
+	        finalize: function (messageUpdate) {
+	            // Final message update
+	            if (messageUpdate) {
+	                this._append(messageUpdate);
+	            }
+
+	            // Perform concrete-hasher logic
+	            var hash = this._doFinalize();
+
+	            return hash;
+	        },
+
+	        blockSize: 512/32,
+
+	        /**
+	         * Creates a shortcut function to a hasher's object interface.
+	         *
+	         * @param {Hasher} hasher The hasher to create a helper for.
+	         *
+	         * @return {Function} The shortcut function.
+	         *
+	         * @static
+	         *
+	         * @example
+	         *
+	         *     var SHA256 = CryptoJS.lib.Hasher._createHelper(CryptoJS.algo.SHA256);
+	         */
+	        _createHelper: function (hasher) {
+	            return function (message, cfg) {
+	                return new hasher.init(cfg).finalize(message);
+	            };
+	        },
+
+	        /**
+	         * Creates a shortcut function to the HMAC's object interface.
+	         *
+	         * @param {Hasher} hasher The hasher to use in this HMAC helper.
+	         *
+	         * @return {Function} The shortcut function.
+	         *
+	         * @static
+	         *
+	         * @example
+	         *
+	         *     var HmacSHA256 = CryptoJS.lib.Hasher._createHmacHelper(CryptoJS.algo.SHA256);
+	         */
+	        _createHmacHelper: function (hasher) {
+	            return function (message, key) {
+	                return new C_algo.HMAC.init(hasher, key).finalize(message);
+	            };
+	        }
+	    });
+
+	    /**
+	     * Algorithm namespace.
+	     */
+	    var C_algo = C.algo = {};
+
+	    return C;
+	}(Math));
+
+
+	(function (undefined) {
+	    // Shortcuts
+	    var C = CryptoJS;
+	    var C_lib = C.lib;
+	    var Base = C_lib.Base;
+	    var X32WordArray = C_lib.WordArray;
+
+	    /**
+	     * x64 namespace.
+	     */
+	    var C_x64 = C.x64 = {};
+
+	    /**
+	     * A 64-bit word.
+	     */
+	    var X64Word = C_x64.Word = Base.extend({
+	        /**
+	         * Initializes a newly created 64-bit word.
+	         *
+	         * @param {number} high The high 32 bits.
+	         * @param {number} low The low 32 bits.
+	         *
+	         * @example
+	         *
+	         *     var x64Word = CryptoJS.x64.Word.create(0x00010203, 0x04050607);
+	         */
+	        init: function (high, low) {
+	            this.high = high;
+	            this.low = low;
+	        }
+
+	        /**
+	         * Bitwise NOTs this word.
+	         *
+	         * @return {X64Word} A new x64-Word object after negating.
+	         *
+	         * @example
+	         *
+	         *     var negated = x64Word.not();
+	         */
+	        // not: function () {
+	            // var high = ~this.high;
+	            // var low = ~this.low;
+
+	            // return X64Word.create(high, low);
+	        // },
+
+	        /**
+	         * Bitwise ANDs this word with the passed word.
+	         *
+	         * @param {X64Word} word The x64-Word to AND with this word.
+	         *
+	         * @return {X64Word} A new x64-Word object after ANDing.
+	         *
+	         * @example
+	         *
+	         *     var anded = x64Word.and(anotherX64Word);
+	         */
+	        // and: function (word) {
+	            // var high = this.high & word.high;
+	            // var low = this.low & word.low;
+
+	            // return X64Word.create(high, low);
+	        // },
+
+	        /**
+	         * Bitwise ORs this word with the passed word.
+	         *
+	         * @param {X64Word} word The x64-Word to OR with this word.
+	         *
+	         * @return {X64Word} A new x64-Word object after ORing.
+	         *
+	         * @example
+	         *
+	         *     var ored = x64Word.or(anotherX64Word);
+	         */
+	        // or: function (word) {
+	            // var high = this.high | word.high;
+	            // var low = this.low | word.low;
+
+	            // return X64Word.create(high, low);
+	        // },
+
+	        /**
+	         * Bitwise XORs this word with the passed word.
+	         *
+	         * @param {X64Word} word The x64-Word to XOR with this word.
+	         *
+	         * @return {X64Word} A new x64-Word object after XORing.
+	         *
+	         * @example
+	         *
+	         *     var xored = x64Word.xor(anotherX64Word);
+	         */
+	        // xor: function (word) {
+	            // var high = this.high ^ word.high;
+	            // var low = this.low ^ word.low;
+
+	            // return X64Word.create(high, low);
+	        // },
+
+	        /**
+	         * Shifts this word n bits to the left.
+	         *
+	         * @param {number} n The number of bits to shift.
+	         *
+	         * @return {X64Word} A new x64-Word object after shifting.
+	         *
+	         * @example
+	         *
+	         *     var shifted = x64Word.shiftL(25);
+	         */
+	        // shiftL: function (n) {
+	            // if (n < 32) {
+	                // var high = (this.high << n) | (this.low >>> (32 - n));
+	                // var low = this.low << n;
+	            // } else {
+	                // var high = this.low << (n - 32);
+	                // var low = 0;
+	            // }
+
+	            // return X64Word.create(high, low);
+	        // },
+
+	        /**
+	         * Shifts this word n bits to the right.
+	         *
+	         * @param {number} n The number of bits to shift.
+	         *
+	         * @return {X64Word} A new x64-Word object after shifting.
+	         *
+	         * @example
+	         *
+	         *     var shifted = x64Word.shiftR(7);
+	         */
+	        // shiftR: function (n) {
+	            // if (n < 32) {
+	                // var low = (this.low >>> n) | (this.high << (32 - n));
+	                // var high = this.high >>> n;
+	            // } else {
+	                // var low = this.high >>> (n - 32);
+	                // var high = 0;
+	            // }
+
+	            // return X64Word.create(high, low);
+	        // },
+
+	        /**
+	         * Rotates this word n bits to the left.
+	         *
+	         * @param {number} n The number of bits to rotate.
+	         *
+	         * @return {X64Word} A new x64-Word object after rotating.
+	         *
+	         * @example
+	         *
+	         *     var rotated = x64Word.rotL(25);
+	         */
+	        // rotL: function (n) {
+	            // return this.shiftL(n).or(this.shiftR(64 - n));
+	        // },
+
+	        /**
+	         * Rotates this word n bits to the right.
+	         *
+	         * @param {number} n The number of bits to rotate.
+	         *
+	         * @return {X64Word} A new x64-Word object after rotating.
+	         *
+	         * @example
+	         *
+	         *     var rotated = x64Word.rotR(7);
+	         */
+	        // rotR: function (n) {
+	            // return this.shiftR(n).or(this.shiftL(64 - n));
+	        // },
+
+	        /**
+	         * Adds this word with the passed word.
+	         *
+	         * @param {X64Word} word The x64-Word to add with this word.
+	         *
+	         * @return {X64Word} A new x64-Word object after adding.
+	         *
+	         * @example
+	         *
+	         *     var added = x64Word.add(anotherX64Word);
+	         */
+	        // add: function (word) {
+	            // var low = (this.low + word.low) | 0;
+	            // var carry = (low >>> 0) < (this.low >>> 0) ? 1 : 0;
+	            // var high = (this.high + word.high + carry) | 0;
+
+	            // return X64Word.create(high, low);
+	        // }
+	    });
+
+	    /**
+	     * An array of 64-bit words.
+	     *
+	     * @property {Array} words The array of CryptoJS.x64.Word objects.
+	     * @property {number} sigBytes The number of significant bytes in this word array.
+	     */
+	    var X64WordArray = C_x64.WordArray = Base.extend({
+	        /**
+	         * Initializes a newly created word array.
+	         *
+	         * @param {Array} words (Optional) An array of CryptoJS.x64.Word objects.
+	         * @param {number} sigBytes (Optional) The number of significant bytes in the words.
+	         *
+	         * @example
+	         *
+	         *     var wordArray = CryptoJS.x64.WordArray.create();
+	         *
+	         *     var wordArray = CryptoJS.x64.WordArray.create([
+	         *         CryptoJS.x64.Word.create(0x00010203, 0x04050607),
+	         *         CryptoJS.x64.Word.create(0x18191a1b, 0x1c1d1e1f)
+	         *     ]);
+	         *
+	         *     var wordArray = CryptoJS.x64.WordArray.create([
+	         *         CryptoJS.x64.Word.create(0x00010203, 0x04050607),
+	         *         CryptoJS.x64.Word.create(0x18191a1b, 0x1c1d1e1f)
+	         *     ], 10);
+	         */
+	        init: function (words, sigBytes) {
+	            words = this.words = words || [];
+
+	            if (sigBytes != undefined) {
+	                this.sigBytes = sigBytes;
+	            } else {
+	                this.sigBytes = words.length * 8;
+	            }
+	        },
+
+	        /**
+	         * Converts this 64-bit word array to a 32-bit word array.
+	         *
+	         * @return {CryptoJS.lib.WordArray} This word array's data as a 32-bit word array.
+	         *
+	         * @example
+	         *
+	         *     var x32WordArray = x64WordArray.toX32();
+	         */
+	        toX32: function () {
+	            // Shortcuts
+	            var x64Words = this.words;
+	            var x64WordsLength = x64Words.length;
+
+	            // Convert
+	            var x32Words = [];
+	            for (var i = 0; i < x64WordsLength; i++) {
+	                var x64Word = x64Words[i];
+	                x32Words.push(x64Word.high);
+	                x32Words.push(x64Word.low);
+	            }
+
+	            return X32WordArray.create(x32Words, this.sigBytes);
+	        },
+
+	        /**
+	         * Creates a copy of this word array.
+	         *
+	         * @return {X64WordArray} The clone.
+	         *
+	         * @example
+	         *
+	         *     var clone = x64WordArray.clone();
+	         */
+	        clone: function () {
+	            var clone = Base.clone.call(this);
+
+	            // Clone "words" array
+	            var words = clone.words = this.words.slice(0);
+
+	            // Clone each X64Word object
+	            var wordsLength = words.length;
+	            for (var i = 0; i < wordsLength; i++) {
+	                words[i] = words[i].clone();
+	            }
+
+	            return clone;
+	        }
+	    });
+	}());
+
+
+	(function () {
+	    // Check if typed arrays are supported
+	    if (typeof ArrayBuffer != 'function') {
+	        return;
+	    }
+
+	    // Shortcuts
+	    var C = CryptoJS;
+	    var C_lib = C.lib;
+	    var WordArray = C_lib.WordArray;
+
+	    // Reference original init
+	    var superInit = WordArray.init;
+
+	    // Augment WordArray.init to handle typed arrays
+	    var subInit = WordArray.init = function (typedArray) {
+	        // Convert buffers to uint8
+	        if (typedArray instanceof ArrayBuffer) {
+	            typedArray = new Uint8Array(typedArray);
+	        }
+
+	        // Convert other array views to uint8
+	        if (
+	            typedArray instanceof Int8Array ||
+	            (typeof Uint8ClampedArray !== "undefined" && typedArray instanceof Uint8ClampedArray) ||
+	            typedArray instanceof Int16Array ||
+	            typedArray instanceof Uint16Array ||
+	            typedArray instanceof Int32Array ||
+	            typedArray instanceof Uint32Array ||
+	            typedArray instanceof Float32Array ||
+	            typedArray instanceof Float64Array
+	        ) {
+	            typedArray = new Uint8Array(typedArray.buffer, typedArray.byteOffset, typedArray.byteLength);
+	        }
+
+	        // Handle Uint8Array
+	        if (typedArray instanceof Uint8Array) {
+	            // Shortcut
+	            var typedArrayByteLength = typedArray.byteLength;
+
+	            // Extract bytes
+	            var words = [];
+	            for (var i = 0; i < typedArrayByteLength; i++) {
+	                words[i >>> 2] |= typedArray[i] << (24 - (i % 4) * 8);
+	            }
+
+	            // Initialize this word array
+	            superInit.call(this, words, typedArrayByteLength);
+	        } else {
+	            // Else call normal init
+	            superInit.apply(this, arguments);
+	        }
+	    };
+
+	    subInit.prototype = WordArray;
+	}());
+
+
+	(function () {
+	    // Shortcuts
+	    var C = CryptoJS;
+	    var C_lib = C.lib;
+	    var WordArray = C_lib.WordArray;
+	    var C_enc = C.enc;
+
+	    /**
+	     * UTF-16 BE encoding strategy.
+	     */
+	    var Utf16BE = C_enc.Utf16 = C_enc.Utf16BE = {
+	        /**
+	         * Converts a word array to a UTF-16 BE string.
+	         *
+	         * @param {WordArray} wordArray The word array.
+	         *
+	         * @return {string} The UTF-16 BE string.
+	         *
+	         * @static
+	         *
+	         * @example
+	         *
+	         *     var utf16String = CryptoJS.enc.Utf16.stringify(wordArray);
+	         */
+	        stringify: function (wordArray) {
+	            // Shortcuts
+	            var words = wordArray.words;
+	            var sigBytes = wordArray.sigBytes;
+
+	            // Convert
+	            var utf16Chars = [];
+	            for (var i = 0; i < sigBytes; i += 2) {
+	                var codePoint = (words[i >>> 2] >>> (16 - (i % 4) * 8)) & 0xffff;
+	                utf16Chars.push(String.fromCharCode(codePoint));
+	            }
+
+	            return utf16Chars.join('');
+	        },
+
+	        /**
+	         * Converts a UTF-16 BE string to a word array.
+	         *
+	         * @param {string} utf16Str The UTF-16 BE string.
+	         *
+	         * @return {WordArray} The word array.
+	         *
+	         * @static
+	         *
+	         * @example
+	         *
+	         *     var wordArray = CryptoJS.enc.Utf16.parse(utf16String);
+	         */
+	        parse: function (utf16Str) {
+	            // Shortcut
+	            var utf16StrLength = utf16Str.length;
+
+	            // Convert
+	            var words = [];
+	            for (var i = 0; i < utf16StrLength; i++) {
+	                words[i >>> 1] |= utf16Str.charCodeAt(i) << (16 - (i % 2) * 16);
+	            }
+
+	            return WordArray.create(words, utf16StrLength * 2);
+	        }
+	    };
+
+	    /**
+	     * UTF-16 LE encoding strategy.
+	     */
+	    C_enc.Utf16LE = {
+	        /**
+	         * Converts a word array to a UTF-16 LE string.
+	         *
+	         * @param {WordArray} wordArray The word array.
+	         *
+	         * @return {string} The UTF-16 LE string.
+	         *
+	         * @static
+	         *
+	         * @example
+	         *
+	         *     var utf16Str = CryptoJS.enc.Utf16LE.stringify(wordArray);
+	         */
+	        stringify: function (wordArray) {
+	            // Shortcuts
+	            var words = wordArray.words;
+	            var sigBytes = wordArray.sigBytes;
+
+	            // Convert
+	            var utf16Chars = [];
+	            for (var i = 0; i < sigBytes; i += 2) {
+	                var codePoint = swapEndian((words[i >>> 2] >>> (16 - (i % 4) * 8)) & 0xffff);
+	                utf16Chars.push(String.fromCharCode(codePoint));
+	            }
+
+	            return utf16Chars.join('');
+	        },
+
+	        /**
+	         * Converts a UTF-16 LE string to a word array.
+	         *
+	         * @param {string} utf16Str The UTF-16 LE string.
+	         *
+	         * @return {WordArray} The word array.
+	         *
+	         * @static
+	         *
+	         * @example
+	         *
+	         *     var wordArray = CryptoJS.enc.Utf16LE.parse(utf16Str);
+	         */
+	        parse: function (utf16Str) {
+	            // Shortcut
+	            var utf16StrLength = utf16Str.length;
+
+	            // Convert
+	            var words = [];
+	            for (var i = 0; i < utf16StrLength; i++) {
+	                words[i >>> 1] |= swapEndian(utf16Str.charCodeAt(i) << (16 - (i % 2) * 16));
+	            }
+
+	            return WordArray.create(words, utf16StrLength * 2);
+	        }
+	    };
+
+	    function swapEndian(word) {
+	        return ((word << 8) & 0xff00ff00) | ((word >>> 8) & 0x00ff00ff);
+	    }
+	}());
+
+
+	(function () {
+	    // Shortcuts
+	    var C = CryptoJS;
+	    var C_lib = C.lib;
+	    var WordArray = C_lib.WordArray;
+	    var C_enc = C.enc;
+
+	    /**
+	     * Base64 encoding strategy.
+	     */
+	    var Base64 = C_enc.Base64 = {
+	        /**
+	         * Converts a word array to a Base64 string.
+	         *
+	         * @param {WordArray} wordArray The word array.
+	         *
+	         * @return {string} The Base64 string.
+	         *
+	         * @static
+	         *
+	         * @example
+	         *
+	         *     var base64String = CryptoJS.enc.Base64.stringify(wordArray);
+	         */
+	        stringify: function (wordArray) {
+	            // Shortcuts
+	            var words = wordArray.words;
+	            var sigBytes = wordArray.sigBytes;
+	            var map = this._map;
+
+	            // Clamp excess bits
+	            wordArray.clamp();
+
+	            // Convert
+	            var base64Chars = [];
+	            for (var i = 0; i < sigBytes; i += 3) {
+	                var byte1 = (words[i >>> 2]       >>> (24 - (i % 4) * 8))       & 0xff;
+	                var byte2 = (words[(i + 1) >>> 2] >>> (24 - ((i + 1) % 4) * 8)) & 0xff;
+	                var byte3 = (words[(i + 2) >>> 2] >>> (24 - ((i + 2) % 4) * 8)) & 0xff;
+
+	                var triplet = (byte1 << 16) | (byte2 << 8) | byte3;
+
+	                for (var j = 0; (j < 4) && (i + j * 0.75 < sigBytes); j++) {
+	                    base64Chars.push(map.charAt((triplet >>> (6 * (3 - j))) & 0x3f));
+	                }
+	            }
+
+	            // Add padding
+	            var paddingChar = map.charAt(64);
+	            if (paddingChar) {
+	                while (base64Chars.length % 4) {
+	                    base64Chars.push(paddingChar);
+	                }
+	            }
+
+	            return base64Chars.join('');
+	        },
+
+	        /**
+	         * Converts a Base64 string to a word array.
+	         *
+	         * @param {string} base64Str The Base64 string.
+	         *
+	         * @return {WordArray} The word array.
+	         *
+	         * @static
+	         *
+	         * @example
+	         *
+	         *     var wordArray = CryptoJS.enc.Base64.parse(base64String);
+	         */
+	        parse: function (base64Str) {
+	            // Shortcuts
+	            var base64StrLength = base64Str.length;
+	            var map = this._map;
+	            var reverseMap = this._reverseMap;
+
+	            if (!reverseMap) {
+	                    reverseMap = this._reverseMap = [];
+	                    for (var j = 0; j < map.length; j++) {
+	                        reverseMap[map.charCodeAt(j)] = j;
+	                    }
+	            }
+
+	            // Ignore padding
+	            var paddingChar = map.charAt(64);
+	            if (paddingChar) {
+	                var paddingIndex = base64Str.indexOf(paddingChar);
+	                if (paddingIndex !== -1) {
+	                    base64StrLength = paddingIndex;
+	                }
+	            }
+
+	            // Convert
+	            return parseLoop(base64Str, base64StrLength, reverseMap);
+
+	        },
+
+	        _map: 'ABCDEFGHIJKLMNOPQRSTUVWXYZabcdefghijklmnopqrstuvwxyz0123456789+/='
+	    };
+
+	    function parseLoop(base64Str, base64StrLength, reverseMap) {
+	      var words = [];
+	      var nBytes = 0;
+	      for (var i = 0; i < base64StrLength; i++) {
+	          if (i % 4) {
+	              var bits1 = reverseMap[base64Str.charCodeAt(i - 1)] << ((i % 4) * 2);
+	              var bits2 = reverseMap[base64Str.charCodeAt(i)] >>> (6 - (i % 4) * 2);
+	              var bitsCombined = bits1 | bits2;
+	              words[nBytes >>> 2] |= bitsCombined << (24 - (nBytes % 4) * 8);
+	              nBytes++;
+	          }
+	      }
+	      return WordArray.create(words, nBytes);
+	    }
+	}());
+
+
+	(function () {
+	    // Shortcuts
+	    var C = CryptoJS;
+	    var C_lib = C.lib;
+	    var WordArray = C_lib.WordArray;
+	    var C_enc = C.enc;
+
+	    /**
+	     * Base64url encoding strategy.
+	     */
+	    var Base64url = C_enc.Base64url = {
+	        /**
+	         * Converts a word array to a Base64url string.
+	         *
+	         * @param {WordArray} wordArray The word array.
+	         *
+	         * @param {boolean} urlSafe Whether to use url safe
+	         *
+	         * @return {string} The Base64url string.
+	         *
+	         * @static
+	         *
+	         * @example
+	         *
+	         *     var base64String = CryptoJS.enc.Base64url.stringify(wordArray);
+	         */
+	        stringify: function (wordArray, urlSafe=true) {
+	            // Shortcuts
+	            var words = wordArray.words;
+	            var sigBytes = wordArray.sigBytes;
+	            var map = urlSafe ? this._safe_map : this._map;
+
+	            // Clamp excess bits
+	            wordArray.clamp();
+
+	            // Convert
+	            var base64Chars = [];
+	            for (var i = 0; i < sigBytes; i += 3) {
+	                var byte1 = (words[i >>> 2]       >>> (24 - (i % 4) * 8))       & 0xff;
+	                var byte2 = (words[(i + 1) >>> 2] >>> (24 - ((i + 1) % 4) * 8)) & 0xff;
+	                var byte3 = (words[(i + 2) >>> 2] >>> (24 - ((i + 2) % 4) * 8)) & 0xff;
+
+	                var triplet = (byte1 << 16) | (byte2 << 8) | byte3;
+
+	                for (var j = 0; (j < 4) && (i + j * 0.75 < sigBytes); j++) {
+	                    base64Chars.push(map.charAt((triplet >>> (6 * (3 - j))) & 0x3f));
+	                }
+	            }
+
+	            // Add padding
+	            var paddingChar = map.charAt(64);
+	            if (paddingChar) {
+	                while (base64Chars.length % 4) {
+	                    base64Chars.push(paddingChar);
+	                }
+	            }
+
+	            return base64Chars.join('');
+	        },
+
+	        /**
+	         * Converts a Base64url string to a word array.
+	         *
+	         * @param {string} base64Str The Base64url string.
+	         *
+	         * @param {boolean} urlSafe Whether to use url safe
+	         *
+	         * @return {WordArray} The word array.
+	         *
+	         * @static
+	         *
+	         * @example
+	         *
+	         *     var wordArray = CryptoJS.enc.Base64url.parse(base64String);
+	         */
+	        parse: function (base64Str, urlSafe=true) {
+	            // Shortcuts
+	            var base64StrLength = base64Str.length;
+	            var map = urlSafe ? this._safe_map : this._map;
+	            var reverseMap = this._reverseMap;
+
+	            if (!reverseMap) {
+	                reverseMap = this._reverseMap = [];
+	                for (var j = 0; j < map.length; j++) {
+	                    reverseMap[map.charCodeAt(j)] = j;
+	                }
+	            }
+
+	            // Ignore padding
+	            var paddingChar = map.charAt(64);
+	            if (paddingChar) {
+	                var paddingIndex = base64Str.indexOf(paddingChar);
+	                if (paddingIndex !== -1) {
+	                    base64StrLength = paddingIndex;
+	                }
+	            }
+
+	            // Convert
+	            return parseLoop(base64Str, base64StrLength, reverseMap);
+
+	        },
+
+	        _map: 'ABCDEFGHIJKLMNOPQRSTUVWXYZabcdefghijklmnopqrstuvwxyz0123456789+/=',
+	        _safe_map: 'ABCDEFGHIJKLMNOPQRSTUVWXYZabcdefghijklmnopqrstuvwxyz0123456789-_',
+	    };
+
+	    function parseLoop(base64Str, base64StrLength, reverseMap) {
+	        var words = [];
+	        var nBytes = 0;
+	        for (var i = 0; i < base64StrLength; i++) {
+	            if (i % 4) {
+	                var bits1 = reverseMap[base64Str.charCodeAt(i - 1)] << ((i % 4) * 2);
+	                var bits2 = reverseMap[base64Str.charCodeAt(i)] >>> (6 - (i % 4) * 2);
+	                var bitsCombined = bits1 | bits2;
+	                words[nBytes >>> 2] |= bitsCombined << (24 - (nBytes % 4) * 8);
+	                nBytes++;
+	            }
+	        }
+	        return WordArray.create(words, nBytes);
+	    }
+	}());
+
+	(function (Math) {
+	    // Shortcuts
+	    var C = CryptoJS;
+	    var C_lib = C.lib;
+	    var WordArray = C_lib.WordArray;
+	    var Hasher = C_lib.Hasher;
+	    var C_algo = C.algo;
+
+	    // Constants table
+	    var T = [];
+
+	    // Compute constants
+	    (function () {
+	        for (var i = 0; i < 64; i++) {
+	            T[i] = (Math.abs(Math.sin(i + 1)) * 0x100000000) | 0;
+	        }
+	    }());
+
+	    /**
+	     * MD5 hash algorithm.
+	     */
+	    var MD5 = C_algo.MD5 = Hasher.extend({
+	        _doReset: function () {
+	            this._hash = new WordArray.init([
+	                0x67452301, 0xefcdab89,
+	                0x98badcfe, 0x10325476
+	            ]);
+	        },
+
+	        _doProcessBlock: function (M, offset) {
+	            // Swap endian
+	            for (var i = 0; i < 16; i++) {
+	                // Shortcuts
+	                var offset_i = offset + i;
+	                var M_offset_i = M[offset_i];
+
+	                M[offset_i] = (
+	                    (((M_offset_i << 8)  | (M_offset_i >>> 24)) & 0x00ff00ff) |
+	                    (((M_offset_i << 24) | (M_offset_i >>> 8))  & 0xff00ff00)
+	                );
+	            }
+
+	            // Shortcuts
+	            var H = this._hash.words;
+
+	            var M_offset_0  = M[offset + 0];
+	            var M_offset_1  = M[offset + 1];
+	            var M_offset_2  = M[offset + 2];
+	            var M_offset_3  = M[offset + 3];
+	            var M_offset_4  = M[offset + 4];
+	            var M_offset_5  = M[offset + 5];
+	            var M_offset_6  = M[offset + 6];
+	            var M_offset_7  = M[offset + 7];
+	            var M_offset_8  = M[offset + 8];
+	            var M_offset_9  = M[offset + 9];
+	            var M_offset_10 = M[offset + 10];
+	            var M_offset_11 = M[offset + 11];
+	            var M_offset_12 = M[offset + 12];
+	            var M_offset_13 = M[offset + 13];
+	            var M_offset_14 = M[offset + 14];
+	            var M_offset_15 = M[offset + 15];
+
+	            // Working varialbes
+	            var a = H[0];
+	            var b = H[1];
+	            var c = H[2];
+	            var d = H[3];
+
+	            // Computation
+	            a = FF(a, b, c, d, M_offset_0,  7,  T[0]);
+	            d = FF(d, a, b, c, M_offset_1,  12, T[1]);
+	            c = FF(c, d, a, b, M_offset_2,  17, T[2]);
+	            b = FF(b, c, d, a, M_offset_3,  22, T[3]);
+	            a = FF(a, b, c, d, M_offset_4,  7,  T[4]);
+	            d = FF(d, a, b, c, M_offset_5,  12, T[5]);
+	            c = FF(c, d, a, b, M_offset_6,  17, T[6]);
+	            b = FF(b, c, d, a, M_offset_7,  22, T[7]);
+	            a = FF(a, b, c, d, M_offset_8,  7,  T[8]);
+	            d = FF(d, a, b, c, M_offset_9,  12, T[9]);
+	            c = FF(c, d, a, b, M_offset_10, 17, T[10]);
+	            b = FF(b, c, d, a, M_offset_11, 22, T[11]);
+	            a = FF(a, b, c, d, M_offset_12, 7,  T[12]);
+	            d = FF(d, a, b, c, M_offset_13, 12, T[13]);
+	            c = FF(c, d, a, b, M_offset_14, 17, T[14]);
+	            b = FF(b, c, d, a, M_offset_15, 22, T[15]);
+
+	            a = GG(a, b, c, d, M_offset_1,  5,  T[16]);
+	            d = GG(d, a, b, c, M_offset_6,  9,  T[17]);
+	            c = GG(c, d, a, b, M_offset_11, 14, T[18]);
+	            b = GG(b, c, d, a, M_offset_0,  20, T[19]);
+	            a = GG(a, b, c, d, M_offset_5,  5,  T[20]);
+	            d = GG(d, a, b, c, M_offset_10, 9,  T[21]);
+	            c = GG(c, d, a, b, M_offset_15, 14, T[22]);
+	            b = GG(b, c, d, a, M_offset_4,  20, T[23]);
+	            a = GG(a, b, c, d, M_offset_9,  5,  T[24]);
+	            d = GG(d, a, b, c, M_offset_14, 9,  T[25]);
+	            c = GG(c, d, a, b, M_offset_3,  14, T[26]);
+	            b = GG(b, c, d, a, M_offset_8,  20, T[27]);
+	            a = GG(a, b, c, d, M_offset_13, 5,  T[28]);
+	            d = GG(d, a, b, c, M_offset_2,  9,  T[29]);
+	            c = GG(c, d, a, b, M_offset_7,  14, T[30]);
+	            b = GG(b, c, d, a, M_offset_12, 20, T[31]);
+
+	            a = HH(a, b, c, d, M_offset_5,  4,  T[32]);
+	            d = HH(d, a, b, c, M_offset_8,  11, T[33]);
+	            c = HH(c, d, a, b, M_offset_11, 16, T[34]);
+	            b = HH(b, c, d, a, M_offset_14, 23, T[35]);
+	            a = HH(a, b, c, d, M_offset_1,  4,  T[36]);
+	            d = HH(d, a, b, c, M_offset_4,  11, T[37]);
+	            c = HH(c, d, a, b, M_offset_7,  16, T[38]);
+	            b = HH(b, c, d, a, M_offset_10, 23, T[39]);
+	            a = HH(a, b, c, d, M_offset_13, 4,  T[40]);
+	            d = HH(d, a, b, c, M_offset_0,  11, T[41]);
+	            c = HH(c, d, a, b, M_offset_3,  16, T[42]);
+	            b = HH(b, c, d, a, M_offset_6,  23, T[43]);
+	            a = HH(a, b, c, d, M_offset_9,  4,  T[44]);
+	            d = HH(d, a, b, c, M_offset_12, 11, T[45]);
+	            c = HH(c, d, a, b, M_offset_15, 16, T[46]);
+	            b = HH(b, c, d, a, M_offset_2,  23, T[47]);
+
+	            a = II(a, b, c, d, M_offset_0,  6,  T[48]);
+	            d = II(d, a, b, c, M_offset_7,  10, T[49]);
+	            c = II(c, d, a, b, M_offset_14, 15, T[50]);
+	            b = II(b, c, d, a, M_offset_5,  21, T[51]);
+	            a = II(a, b, c, d, M_offset_12, 6,  T[52]);
+	            d = II(d, a, b, c, M_offset_3,  10, T[53]);
+	            c = II(c, d, a, b, M_offset_10, 15, T[54]);
+	            b = II(b, c, d, a, M_offset_1,  21, T[55]);
+	            a = II(a, b, c, d, M_offset_8,  6,  T[56]);
+	            d = II(d, a, b, c, M_offset_15, 10, T[57]);
+	            c = II(c, d, a, b, M_offset_6,  15, T[58]);
+	            b = II(b, c, d, a, M_offset_13, 21, T[59]);
+	            a = II(a, b, c, d, M_offset_4,  6,  T[60]);
+	            d = II(d, a, b, c, M_offset_11, 10, T[61]);
+	            c = II(c, d, a, b, M_offset_2,  15, T[62]);
+	            b = II(b, c, d, a, M_offset_9,  21, T[63]);
+
+	            // Intermediate hash value
+	            H[0] = (H[0] + a) | 0;
+	            H[1] = (H[1] + b) | 0;
+	            H[2] = (H[2] + c) | 0;
+	            H[3] = (H[3] + d) | 0;
+	        },
+
+	        _doFinalize: function () {
+	            // Shortcuts
+	            var data = this._data;
+	            var dataWords = data.words;
+
+	            var nBitsTotal = this._nDataBytes * 8;
+	            var nBitsLeft = data.sigBytes * 8;
+
+	            // Add padding
+	            dataWords[nBitsLeft >>> 5] |= 0x80 << (24 - nBitsLeft % 32);
+
+	            var nBitsTotalH = Math.floor(nBitsTotal / 0x100000000);
+	            var nBitsTotalL = nBitsTotal;
+	            dataWords[(((nBitsLeft + 64) >>> 9) << 4) + 15] = (
+	                (((nBitsTotalH << 8)  | (nBitsTotalH >>> 24)) & 0x00ff00ff) |
+	                (((nBitsTotalH << 24) | (nBitsTotalH >>> 8))  & 0xff00ff00)
+	            );
+	            dataWords[(((nBitsLeft + 64) >>> 9) << 4) + 14] = (
+	                (((nBitsTotalL << 8)  | (nBitsTotalL >>> 24)) & 0x00ff00ff) |
+	                (((nBitsTotalL << 24) | (nBitsTotalL >>> 8))  & 0xff00ff00)
+	            );
+
+	            data.sigBytes = (dataWords.length + 1) * 4;
+
+	            // Hash final blocks
+	            this._process();
+
+	            // Shortcuts
+	            var hash = this._hash;
+	            var H = hash.words;
+
+	            // Swap endian
+	            for (var i = 0; i < 4; i++) {
+	                // Shortcut
+	                var H_i = H[i];
+
+	                H[i] = (((H_i << 8)  | (H_i >>> 24)) & 0x00ff00ff) |
+	                       (((H_i << 24) | (H_i >>> 8))  & 0xff00ff00);
+	            }
+
+	            // Return final computed hash
+	            return hash;
+	        },
+
+	        clone: function () {
+	            var clone = Hasher.clone.call(this);
+	            clone._hash = this._hash.clone();
+
+	            return clone;
+	        }
+	    });
+
+	    function FF(a, b, c, d, x, s, t) {
+	        var n = a + ((b & c) | (~b & d)) + x + t;
+	        return ((n << s) | (n >>> (32 - s))) + b;
+	    }
+
+	    function GG(a, b, c, d, x, s, t) {
+	        var n = a + ((b & d) | (c & ~d)) + x + t;
+	        return ((n << s) | (n >>> (32 - s))) + b;
+	    }
+
+	    function HH(a, b, c, d, x, s, t) {
+	        var n = a + (b ^ c ^ d) + x + t;
+	        return ((n << s) | (n >>> (32 - s))) + b;
+	    }
+
+	    function II(a, b, c, d, x, s, t) {
+	        var n = a + (c ^ (b | ~d)) + x + t;
+	        return ((n << s) | (n >>> (32 - s))) + b;
+	    }
+
+	    /**
+	     * Shortcut function to the hasher's object interface.
+	     *
+	     * @param {WordArray|string} message The message to hash.
+	     *
+	     * @return {WordArray} The hash.
+	     *
+	     * @static
+	     *
+	     * @example
+	     *
+	     *     var hash = CryptoJS.MD5('message');
+	     *     var hash = CryptoJS.MD5(wordArray);
+	     */
+	    C.MD5 = Hasher._createHelper(MD5);
+
+	    /**
+	     * Shortcut function to the HMAC's object interface.
+	     *
+	     * @param {WordArray|string} message The message to hash.
+	     * @param {WordArray|string} key The secret key.
+	     *
+	     * @return {WordArray} The HMAC.
+	     *
+	     * @static
+	     *
+	     * @example
+	     *
+	     *     var hmac = CryptoJS.HmacMD5(message, key);
+	     */
+	    C.HmacMD5 = Hasher._createHmacHelper(MD5);
+	}(Math));
+
+
+	(function () {
+	    // Shortcuts
+	    var C = CryptoJS;
+	    var C_lib = C.lib;
+	    var WordArray = C_lib.WordArray;
+	    var Hasher = C_lib.Hasher;
+	    var C_algo = C.algo;
+
+	    // Reusable object
+	    var W = [];
+
+	    /**
+	     * SHA-1 hash algorithm.
+	     */
+	    var SHA1 = C_algo.SHA1 = Hasher.extend({
+	        _doReset: function () {
+	            this._hash = new WordArray.init([
+	                0x67452301, 0xefcdab89,
+	                0x98badcfe, 0x10325476,
+	                0xc3d2e1f0
+	            ]);
+	        },
+
+	        _doProcessBlock: function (M, offset) {
+	            // Shortcut
+	            var H = this._hash.words;
+
+	            // Working variables
+	            var a = H[0];
+	            var b = H[1];
+	            var c = H[2];
+	            var d = H[3];
+	            var e = H[4];
+
+	            // Computation
+	            for (var i = 0; i < 80; i++) {
+	                if (i < 16) {
+	                    W[i] = M[offset + i] | 0;
+	                } else {
+	                    var n = W[i - 3] ^ W[i - 8] ^ W[i - 14] ^ W[i - 16];
+	                    W[i] = (n << 1) | (n >>> 31);
+	                }
+
+	                var t = ((a << 5) | (a >>> 27)) + e + W[i];
+	                if (i < 20) {
+	                    t += ((b & c) | (~b & d)) + 0x5a827999;
+	                } else if (i < 40) {
+	                    t += (b ^ c ^ d) + 0x6ed9eba1;
+	                } else if (i < 60) {
+	                    t += ((b & c) | (b & d) | (c & d)) - 0x70e44324;
+	                } else /* if (i < 80) */ {
+	                    t += (b ^ c ^ d) - 0x359d3e2a;
+	                }
+
+	                e = d;
+	                d = c;
+	                c = (b << 30) | (b >>> 2);
+	                b = a;
+	                a = t;
+	            }
+
+	            // Intermediate hash value
+	            H[0] = (H[0] + a) | 0;
+	            H[1] = (H[1] + b) | 0;
+	            H[2] = (H[2] + c) | 0;
+	            H[3] = (H[3] + d) | 0;
+	            H[4] = (H[4] + e) | 0;
+	        },
+
+	        _doFinalize: function () {
+	            // Shortcuts
+	            var data = this._data;
+	            var dataWords = data.words;
+
+	            var nBitsTotal = this._nDataBytes * 8;
+	            var nBitsLeft = data.sigBytes * 8;
+
+	            // Add padding
+	            dataWords[nBitsLeft >>> 5] |= 0x80 << (24 - nBitsLeft % 32);
+	            dataWords[(((nBitsLeft + 64) >>> 9) << 4) + 14] = Math.floor(nBitsTotal / 0x100000000);
+	            dataWords[(((nBitsLeft + 64) >>> 9) << 4) + 15] = nBitsTotal;
+	            data.sigBytes = dataWords.length * 4;
+
+	            // Hash final blocks
+	            this._process();
+
+	            // Return final computed hash
+	            return this._hash;
+	        },
+
+	        clone: function () {
+	            var clone = Hasher.clone.call(this);
+	            clone._hash = this._hash.clone();
+
+	            return clone;
+	        }
+	    });
+
+	    /**
+	     * Shortcut function to the hasher's object interface.
+	     *
+	     * @param {WordArray|string} message The message to hash.
+	     *
+	     * @return {WordArray} The hash.
+	     *
+	     * @static
+	     *
+	     * @example
+	     *
+	     *     var hash = CryptoJS.SHA1('message');
+	     *     var hash = CryptoJS.SHA1(wordArray);
+	     */
+	    C.SHA1 = Hasher._createHelper(SHA1);
+
+	    /**
+	     * Shortcut function to the HMAC's object interface.
+	     *
+	     * @param {WordArray|string} message The message to hash.
+	     * @param {WordArray|string} key The secret key.
+	     *
+	     * @return {WordArray} The HMAC.
+	     *
+	     * @static
+	     *
+	     * @example
+	     *
+	     *     var hmac = CryptoJS.HmacSHA1(message, key);
+	     */
+	    C.HmacSHA1 = Hasher._createHmacHelper(SHA1);
+	}());
+
+
+	(function (Math) {
+	    // Shortcuts
+	    var C = CryptoJS;
+	    var C_lib = C.lib;
+	    var WordArray = C_lib.WordArray;
+	    var Hasher = C_lib.Hasher;
+	    var C_algo = C.algo;
+
+	    // Initialization and round constants tables
+	    var H = [];
+	    var K = [];
+
+	    // Compute constants
+	    (function () {
+	        function isPrime(n) {
+	            var sqrtN = Math.sqrt(n);
+	            for (var factor = 2; factor <= sqrtN; factor++) {
+	                if (!(n % factor)) {
+	                    return false;
+	                }
+	            }
+
+	            return true;
+	        }
+
+	        function getFractionalBits(n) {
+	            return ((n - (n | 0)) * 0x100000000) | 0;
+	        }
+
+	        var n = 2;
+	        var nPrime = 0;
+	        while (nPrime < 64) {
+	            if (isPrime(n)) {
+	                if (nPrime < 8) {
+	                    H[nPrime] = getFractionalBits(Math.pow(n, 1 / 2));
+	                }
+	                K[nPrime] = getFractionalBits(Math.pow(n, 1 / 3));
+
+	                nPrime++;
+	            }
+
+	            n++;
+	        }
+	    }());
+
+	    // Reusable object
+	    var W = [];
+
+	    /**
+	     * SHA-256 hash algorithm.
+	     */
+	    var SHA256 = C_algo.SHA256 = Hasher.extend({
+	        _doReset: function () {
+	            this._hash = new WordArray.init(H.slice(0));
+	        },
+
+	        _doProcessBlock: function (M, offset) {
+	            // Shortcut
+	            var H = this._hash.words;
+
+	            // Working variables
+	            var a = H[0];
+	            var b = H[1];
+	            var c = H[2];
+	            var d = H[3];
+	            var e = H[4];
+	            var f = H[5];
+	            var g = H[6];
+	            var h = H[7];
+
+	            // Computation
+	            for (var i = 0; i < 64; i++) {
+	                if (i < 16) {
+	                    W[i] = M[offset + i] | 0;
+	                } else {
+	                    var gamma0x = W[i - 15];
+	                    var gamma0  = ((gamma0x << 25) | (gamma0x >>> 7))  ^
+	                                  ((gamma0x << 14) | (gamma0x >>> 18)) ^
+	                                   (gamma0x >>> 3);
+
+	                    var gamma1x = W[i - 2];
+	                    var gamma1  = ((gamma1x << 15) | (gamma1x >>> 17)) ^
+	                                  ((gamma1x << 13) | (gamma1x >>> 19)) ^
+	                                   (gamma1x >>> 10);
+
+	                    W[i] = gamma0 + W[i - 7] + gamma1 + W[i - 16];
+	                }
+
+	                var ch  = (e & f) ^ (~e & g);
+	                var maj = (a & b) ^ (a & c) ^ (b & c);
+
+	                var sigma0 = ((a << 30) | (a >>> 2)) ^ ((a << 19) | (a >>> 13)) ^ ((a << 10) | (a >>> 22));
+	                var sigma1 = ((e << 26) | (e >>> 6)) ^ ((e << 21) | (e >>> 11)) ^ ((e << 7)  | (e >>> 25));
+
+	                var t1 = h + sigma1 + ch + K[i] + W[i];
+	                var t2 = sigma0 + maj;
+
+	                h = g;
+	                g = f;
+	                f = e;
+	                e = (d + t1) | 0;
+	                d = c;
+	                c = b;
+	                b = a;
+	                a = (t1 + t2) | 0;
+	            }
+
+	            // Intermediate hash value
+	            H[0] = (H[0] + a) | 0;
+	            H[1] = (H[1] + b) | 0;
+	            H[2] = (H[2] + c) | 0;
+	            H[3] = (H[3] + d) | 0;
+	            H[4] = (H[4] + e) | 0;
+	            H[5] = (H[5] + f) | 0;
+	            H[6] = (H[6] + g) | 0;
+	            H[7] = (H[7] + h) | 0;
+	        },
+
+	        _doFinalize: function () {
+	            // Shortcuts
+	            var data = this._data;
+	            var dataWords = data.words;
+
+	            var nBitsTotal = this._nDataBytes * 8;
+	            var nBitsLeft = data.sigBytes * 8;
+
+	            // Add padding
+	            dataWords[nBitsLeft >>> 5] |= 0x80 << (24 - nBitsLeft % 32);
+	            dataWords[(((nBitsLeft + 64) >>> 9) << 4) + 14] = Math.floor(nBitsTotal / 0x100000000);
+	            dataWords[(((nBitsLeft + 64) >>> 9) << 4) + 15] = nBitsTotal;
+	            data.sigBytes = dataWords.length * 4;
+
+	            // Hash final blocks
+	            this._process();
+
+	            // Return final computed hash
+	            return this._hash;
+	        },
+
+	        clone: function () {
+	            var clone = Hasher.clone.call(this);
+	            clone._hash = this._hash.clone();
+
+	            return clone;
+	        }
+	    });
+
+	    /**
+	     * Shortcut function to the hasher's object interface.
+	     *
+	     * @param {WordArray|string} message The message to hash.
+	     *
+	     * @return {WordArray} The hash.
+	     *
+	     * @static
+	     *
+	     * @example
+	     *
+	     *     var hash = CryptoJS.SHA256('message');
+	     *     var hash = CryptoJS.SHA256(wordArray);
+	     */
+	    C.SHA256 = Hasher._createHelper(SHA256);
+
+	    /**
+	     * Shortcut function to the HMAC's object interface.
+	     *
+	     * @param {WordArray|string} message The message to hash.
+	     * @param {WordArray|string} key The secret key.
+	     *
+	     * @return {WordArray} The HMAC.
+	     *
+	     * @static
+	     *
+	     * @example
+	     *
+	     *     var hmac = CryptoJS.HmacSHA256(message, key);
+	     */
+	    C.HmacSHA256 = Hasher._createHmacHelper(SHA256);
+	}(Math));
+
+
+	(function () {
+	    // Shortcuts
+	    var C = CryptoJS;
+	    var C_lib = C.lib;
+	    var WordArray = C_lib.WordArray;
+	    var C_algo = C.algo;
+	    var SHA256 = C_algo.SHA256;
+
+	    /**
+	     * SHA-224 hash algorithm.
+	     */
+	    var SHA224 = C_algo.SHA224 = SHA256.extend({
+	        _doReset: function () {
+	            this._hash = new WordArray.init([
+	                0xc1059ed8, 0x367cd507, 0x3070dd17, 0xf70e5939,
+	                0xffc00b31, 0x68581511, 0x64f98fa7, 0xbefa4fa4
+	            ]);
+	        },
+
+	        _doFinalize: function () {
+	            var hash = SHA256._doFinalize.call(this);
+
+	            hash.sigBytes -= 4;
+
+	            return hash;
+	        }
+	    });
+
+	    /**
+	     * Shortcut function to the hasher's object interface.
+	     *
+	     * @param {WordArray|string} message The message to hash.
+	     *
+	     * @return {WordArray} The hash.
+	     *
+	     * @static
+	     *
+	     * @example
+	     *
+	     *     var hash = CryptoJS.SHA224('message');
+	     *     var hash = CryptoJS.SHA224(wordArray);
+	     */
+	    C.SHA224 = SHA256._createHelper(SHA224);
+
+	    /**
+	     * Shortcut function to the HMAC's object interface.
+	     *
+	     * @param {WordArray|string} message The message to hash.
+	     * @param {WordArray|string} key The secret key.
+	     *
+	     * @return {WordArray} The HMAC.
+	     *
+	     * @static
+	     *
+	     * @example
+	     *
+	     *     var hmac = CryptoJS.HmacSHA224(message, key);
+	     */
+	    C.HmacSHA224 = SHA256._createHmacHelper(SHA224);
+	}());
+
+
+	(function () {
+	    // Shortcuts
+	    var C = CryptoJS;
+	    var C_lib = C.lib;
+	    var Hasher = C_lib.Hasher;
+	    var C_x64 = C.x64;
+	    var X64Word = C_x64.Word;
+	    var X64WordArray = C_x64.WordArray;
+	    var C_algo = C.algo;
+
+	    function X64Word_create() {
+	        return X64Word.create.apply(X64Word, arguments);
+	    }
+
+	    // Constants
+	    var K = [
+	        X64Word_create(0x428a2f98, 0xd728ae22), X64Word_create(0x71374491, 0x23ef65cd),
+	        X64Word_create(0xb5c0fbcf, 0xec4d3b2f), X64Word_create(0xe9b5dba5, 0x8189dbbc),
+	        X64Word_create(0x3956c25b, 0xf348b538), X64Word_create(0x59f111f1, 0xb605d019),
+	        X64Word_create(0x923f82a4, 0xaf194f9b), X64Word_create(0xab1c5ed5, 0xda6d8118),
+	        X64Word_create(0xd807aa98, 0xa3030242), X64Word_create(0x12835b01, 0x45706fbe),
+	        X64Word_create(0x243185be, 0x4ee4b28c), X64Word_create(0x550c7dc3, 0xd5ffb4e2),
+	        X64Word_create(0x72be5d74, 0xf27b896f), X64Word_create(0x80deb1fe, 0x3b1696b1),
+	        X64Word_create(0x9bdc06a7, 0x25c71235), X64Word_create(0xc19bf174, 0xcf692694),
+	        X64Word_create(0xe49b69c1, 0x9ef14ad2), X64Word_create(0xefbe4786, 0x384f25e3),
+	        X64Word_create(0x0fc19dc6, 0x8b8cd5b5), X64Word_create(0x240ca1cc, 0x77ac9c65),
+	        X64Word_create(0x2de92c6f, 0x592b0275), X64Word_create(0x4a7484aa, 0x6ea6e483),
+	        X64Word_create(0x5cb0a9dc, 0xbd41fbd4), X64Word_create(0x76f988da, 0x831153b5),
+	        X64Word_create(0x983e5152, 0xee66dfab), X64Word_create(0xa831c66d, 0x2db43210),
+	        X64Word_create(0xb00327c8, 0x98fb213f), X64Word_create(0xbf597fc7, 0xbeef0ee4),
+	        X64Word_create(0xc6e00bf3, 0x3da88fc2), X64Word_create(0xd5a79147, 0x930aa725),
+	        X64Word_create(0x06ca6351, 0xe003826f), X64Word_create(0x14292967, 0x0a0e6e70),
+	        X64Word_create(0x27b70a85, 0x46d22ffc), X64Word_create(0x2e1b2138, 0x5c26c926),
+	        X64Word_create(0x4d2c6dfc, 0x5ac42aed), X64Word_create(0x53380d13, 0x9d95b3df),
+	        X64Word_create(0x650a7354, 0x8baf63de), X64Word_create(0x766a0abb, 0x3c77b2a8),
+	        X64Word_create(0x81c2c92e, 0x47edaee6), X64Word_create(0x92722c85, 0x1482353b),
+	        X64Word_create(0xa2bfe8a1, 0x4cf10364), X64Word_create(0xa81a664b, 0xbc423001),
+	        X64Word_create(0xc24b8b70, 0xd0f89791), X64Word_create(0xc76c51a3, 0x0654be30),
+	        X64Word_create(0xd192e819, 0xd6ef5218), X64Word_create(0xd6990624, 0x5565a910),
+	        X64Word_create(0xf40e3585, 0x5771202a), X64Word_create(0x106aa070, 0x32bbd1b8),
+	        X64Word_create(0x19a4c116, 0xb8d2d0c8), X64Word_create(0x1e376c08, 0x5141ab53),
+	        X64Word_create(0x2748774c, 0xdf8eeb99), X64Word_create(0x34b0bcb5, 0xe19b48a8),
+	        X64Word_create(0x391c0cb3, 0xc5c95a63), X64Word_create(0x4ed8aa4a, 0xe3418acb),
+	        X64Word_create(0x5b9cca4f, 0x7763e373), X64Word_create(0x682e6ff3, 0xd6b2b8a3),
+	        X64Word_create(0x748f82ee, 0x5defb2fc), X64Word_create(0x78a5636f, 0x43172f60),
+	        X64Word_create(0x84c87814, 0xa1f0ab72), X64Word_create(0x8cc70208, 0x1a6439ec),
+	        X64Word_create(0x90befffa, 0x23631e28), X64Word_create(0xa4506ceb, 0xde82bde9),
+	        X64Word_create(0xbef9a3f7, 0xb2c67915), X64Word_create(0xc67178f2, 0xe372532b),
+	        X64Word_create(0xca273ece, 0xea26619c), X64Word_create(0xd186b8c7, 0x21c0c207),
+	        X64Word_create(0xeada7dd6, 0xcde0eb1e), X64Word_create(0xf57d4f7f, 0xee6ed178),
+	        X64Word_create(0x06f067aa, 0x72176fba), X64Word_create(0x0a637dc5, 0xa2c898a6),
+	        X64Word_create(0x113f9804, 0xbef90dae), X64Word_create(0x1b710b35, 0x131c471b),
+	        X64Word_create(0x28db77f5, 0x23047d84), X64Word_create(0x32caab7b, 0x40c72493),
+	        X64Word_create(0x3c9ebe0a, 0x15c9bebc), X64Word_create(0x431d67c4, 0x9c100d4c),
+	        X64Word_create(0x4cc5d4be, 0xcb3e42b6), X64Word_create(0x597f299c, 0xfc657e2a),
+	        X64Word_create(0x5fcb6fab, 0x3ad6faec), X64Word_create(0x6c44198c, 0x4a475817)
+	    ];
+
+	    // Reusable objects
+	    var W = [];
+	    (function () {
+	        for (var i = 0; i < 80; i++) {
+	            W[i] = X64Word_create();
+	        }
+	    }());
+
+	    /**
+	     * SHA-512 hash algorithm.
+	     */
+	    var SHA512 = C_algo.SHA512 = Hasher.extend({
+	        _doReset: function () {
+	            this._hash = new X64WordArray.init([
+	                new X64Word.init(0x6a09e667, 0xf3bcc908), new X64Word.init(0xbb67ae85, 0x84caa73b),
+	                new X64Word.init(0x3c6ef372, 0xfe94f82b), new X64Word.init(0xa54ff53a, 0x5f1d36f1),
+	                new X64Word.init(0x510e527f, 0xade682d1), new X64Word.init(0x9b05688c, 0x2b3e6c1f),
+	                new X64Word.init(0x1f83d9ab, 0xfb41bd6b), new X64Word.init(0x5be0cd19, 0x137e2179)
+	            ]);
+	        },
+
+	        _doProcessBlock: function (M, offset) {
+	            // Shortcuts
+	            var H = this._hash.words;
+
+	            var H0 = H[0];
+	            var H1 = H[1];
+	            var H2 = H[2];
+	            var H3 = H[3];
+	            var H4 = H[4];
+	            var H5 = H[5];
+	            var H6 = H[6];
+	            var H7 = H[7];
+
+	            var H0h = H0.high;
+	            var H0l = H0.low;
+	            var H1h = H1.high;
+	            var H1l = H1.low;
+	            var H2h = H2.high;
+	            var H2l = H2.low;
+	            var H3h = H3.high;
+	            var H3l = H3.low;
+	            var H4h = H4.high;
+	            var H4l = H4.low;
+	            var H5h = H5.high;
+	            var H5l = H5.low;
+	            var H6h = H6.high;
+	            var H6l = H6.low;
+	            var H7h = H7.high;
+	            var H7l = H7.low;
+
+	            // Working variables
+	            var ah = H0h;
+	            var al = H0l;
+	            var bh = H1h;
+	            var bl = H1l;
+	            var ch = H2h;
+	            var cl = H2l;
+	            var dh = H3h;
+	            var dl = H3l;
+	            var eh = H4h;
+	            var el = H4l;
+	            var fh = H5h;
+	            var fl = H5l;
+	            var gh = H6h;
+	            var gl = H6l;
+	            var hh = H7h;
+	            var hl = H7l;
+
+	            // Rounds
+	            for (var i = 0; i < 80; i++) {
+	                var Wil;
+	                var Wih;
+
+	                // Shortcut
+	                var Wi = W[i];
+
+	                // Extend message
+	                if (i < 16) {
+	                    Wih = Wi.high = M[offset + i * 2]     | 0;
+	                    Wil = Wi.low  = M[offset + i * 2 + 1] | 0;
+	                } else {
+	                    // Gamma0
+	                    var gamma0x  = W[i - 15];
+	                    var gamma0xh = gamma0x.high;
+	                    var gamma0xl = gamma0x.low;
+	                    var gamma0h  = ((gamma0xh >>> 1) | (gamma0xl << 31)) ^ ((gamma0xh >>> 8) | (gamma0xl << 24)) ^ (gamma0xh >>> 7);
+	                    var gamma0l  = ((gamma0xl >>> 1) | (gamma0xh << 31)) ^ ((gamma0xl >>> 8) | (gamma0xh << 24)) ^ ((gamma0xl >>> 7) | (gamma0xh << 25));
+
+	                    // Gamma1
+	                    var gamma1x  = W[i - 2];
+	                    var gamma1xh = gamma1x.high;
+	                    var gamma1xl = gamma1x.low;
+	                    var gamma1h  = ((gamma1xh >>> 19) | (gamma1xl << 13)) ^ ((gamma1xh << 3) | (gamma1xl >>> 29)) ^ (gamma1xh >>> 6);
+	                    var gamma1l  = ((gamma1xl >>> 19) | (gamma1xh << 13)) ^ ((gamma1xl << 3) | (gamma1xh >>> 29)) ^ ((gamma1xl >>> 6) | (gamma1xh << 26));
+
+	                    // W[i] = gamma0 + W[i - 7] + gamma1 + W[i - 16]
+	                    var Wi7  = W[i - 7];
+	                    var Wi7h = Wi7.high;
+	                    var Wi7l = Wi7.low;
+
+	                    var Wi16  = W[i - 16];
+	                    var Wi16h = Wi16.high;
+	                    var Wi16l = Wi16.low;
+
+	                    Wil = gamma0l + Wi7l;
+	                    Wih = gamma0h + Wi7h + ((Wil >>> 0) < (gamma0l >>> 0) ? 1 : 0);
+	                    Wil = Wil + gamma1l;
+	                    Wih = Wih + gamma1h + ((Wil >>> 0) < (gamma1l >>> 0) ? 1 : 0);
+	                    Wil = Wil + Wi16l;
+	                    Wih = Wih + Wi16h + ((Wil >>> 0) < (Wi16l >>> 0) ? 1 : 0);
+
+	                    Wi.high = Wih;
+	                    Wi.low  = Wil;
+	                }
+
+	                var chh  = (eh & fh) ^ (~eh & gh);
+	                var chl  = (el & fl) ^ (~el & gl);
+	                var majh = (ah & bh) ^ (ah & ch) ^ (bh & ch);
+	                var majl = (al & bl) ^ (al & cl) ^ (bl & cl);
+
+	                var sigma0h = ((ah >>> 28) | (al << 4))  ^ ((ah << 30)  | (al >>> 2)) ^ ((ah << 25) | (al >>> 7));
+	                var sigma0l = ((al >>> 28) | (ah << 4))  ^ ((al << 30)  | (ah >>> 2)) ^ ((al << 25) | (ah >>> 7));
+	                var sigma1h = ((eh >>> 14) | (el << 18)) ^ ((eh >>> 18) | (el << 14)) ^ ((eh << 23) | (el >>> 9));
+	                var sigma1l = ((el >>> 14) | (eh << 18)) ^ ((el >>> 18) | (eh << 14)) ^ ((el << 23) | (eh >>> 9));
+
+	                // t1 = h + sigma1 + ch + K[i] + W[i]
+	                var Ki  = K[i];
+	                var Kih = Ki.high;
+	                var Kil = Ki.low;
+
+	                var t1l = hl + sigma1l;
+	                var t1h = hh + sigma1h + ((t1l >>> 0) < (hl >>> 0) ? 1 : 0);
+	                var t1l = t1l + chl;
+	                var t1h = t1h + chh + ((t1l >>> 0) < (chl >>> 0) ? 1 : 0);
+	                var t1l = t1l + Kil;
+	                var t1h = t1h + Kih + ((t1l >>> 0) < (Kil >>> 0) ? 1 : 0);
+	                var t1l = t1l + Wil;
+	                var t1h = t1h + Wih + ((t1l >>> 0) < (Wil >>> 0) ? 1 : 0);
+
+	                // t2 = sigma0 + maj
+	                var t2l = sigma0l + majl;
+	                var t2h = sigma0h + majh + ((t2l >>> 0) < (sigma0l >>> 0) ? 1 : 0);
+
+	                // Update working variables
+	                hh = gh;
+	                hl = gl;
+	                gh = fh;
+	                gl = fl;
+	                fh = eh;
+	                fl = el;
+	                el = (dl + t1l) | 0;
+	                eh = (dh + t1h + ((el >>> 0) < (dl >>> 0) ? 1 : 0)) | 0;
+	                dh = ch;
+	                dl = cl;
+	                ch = bh;
+	                cl = bl;
+	                bh = ah;
+	                bl = al;
+	                al = (t1l + t2l) | 0;
+	                ah = (t1h + t2h + ((al >>> 0) < (t1l >>> 0) ? 1 : 0)) | 0;
+	            }
+
+	            // Intermediate hash value
+	            H0l = H0.low  = (H0l + al);
+	            H0.high = (H0h + ah + ((H0l >>> 0) < (al >>> 0) ? 1 : 0));
+	            H1l = H1.low  = (H1l + bl);
+	            H1.high = (H1h + bh + ((H1l >>> 0) < (bl >>> 0) ? 1 : 0));
+	            H2l = H2.low  = (H2l + cl);
+	            H2.high = (H2h + ch + ((H2l >>> 0) < (cl >>> 0) ? 1 : 0));
+	            H3l = H3.low  = (H3l + dl);
+	            H3.high = (H3h + dh + ((H3l >>> 0) < (dl >>> 0) ? 1 : 0));
+	            H4l = H4.low  = (H4l + el);
+	            H4.high = (H4h + eh + ((H4l >>> 0) < (el >>> 0) ? 1 : 0));
+	            H5l = H5.low  = (H5l + fl);
+	            H5.high = (H5h + fh + ((H5l >>> 0) < (fl >>> 0) ? 1 : 0));
+	            H6l = H6.low  = (H6l + gl);
+	            H6.high = (H6h + gh + ((H6l >>> 0) < (gl >>> 0) ? 1 : 0));
+	            H7l = H7.low  = (H7l + hl);
+	            H7.high = (H7h + hh + ((H7l >>> 0) < (hl >>> 0) ? 1 : 0));
+	        },
+
+	        _doFinalize: function () {
+	            // Shortcuts
+	            var data = this._data;
+	            var dataWords = data.words;
+
+	            var nBitsTotal = this._nDataBytes * 8;
+	            var nBitsLeft = data.sigBytes * 8;
+
+	            // Add padding
+	            dataWords[nBitsLeft >>> 5] |= 0x80 << (24 - nBitsLeft % 32);
+	            dataWords[(((nBitsLeft + 128) >>> 10) << 5) + 30] = Math.floor(nBitsTotal / 0x100000000);
+	            dataWords[(((nBitsLeft + 128) >>> 10) << 5) + 31] = nBitsTotal;
+	            data.sigBytes = dataWords.length * 4;
+
+	            // Hash final blocks
+	            this._process();
+
+	            // Convert hash to 32-bit word array before returning
+	            var hash = this._hash.toX32();
+
+	            // Return final computed hash
+	            return hash;
+	        },
+
+	        clone: function () {
+	            var clone = Hasher.clone.call(this);
+	            clone._hash = this._hash.clone();
+
+	            return clone;
+	        },
+
+	        blockSize: 1024/32
+	    });
+
+	    /**
+	     * Shortcut function to the hasher's object interface.
+	     *
+	     * @param {WordArray|string} message The message to hash.
+	     *
+	     * @return {WordArray} The hash.
+	     *
+	     * @static
+	     *
+	     * @example
+	     *
+	     *     var hash = CryptoJS.SHA512('message');
+	     *     var hash = CryptoJS.SHA512(wordArray);
+	     */
+	    C.SHA512 = Hasher._createHelper(SHA512);
+
+	    /**
+	     * Shortcut function to the HMAC's object interface.
+	     *
+	     * @param {WordArray|string} message The message to hash.
+	     * @param {WordArray|string} key The secret key.
+	     *
+	     * @return {WordArray} The HMAC.
+	     *
+	     * @static
+	     *
+	     * @example
+	     *
+	     *     var hmac = CryptoJS.HmacSHA512(message, key);
+	     */
+	    C.HmacSHA512 = Hasher._createHmacHelper(SHA512);
+	}());
+
+
+	(function () {
+	    // Shortcuts
+	    var C = CryptoJS;
+	    var C_x64 = C.x64;
+	    var X64Word = C_x64.Word;
+	    var X64WordArray = C_x64.WordArray;
+	    var C_algo = C.algo;
+	    var SHA512 = C_algo.SHA512;
+
+	    /**
+	     * SHA-384 hash algorithm.
+	     */
+	    var SHA384 = C_algo.SHA384 = SHA512.extend({
+	        _doReset: function () {
+	            this._hash = new X64WordArray.init([
+	                new X64Word.init(0xcbbb9d5d, 0xc1059ed8), new X64Word.init(0x629a292a, 0x367cd507),
+	                new X64Word.init(0x9159015a, 0x3070dd17), new X64Word.init(0x152fecd8, 0xf70e5939),
+	                new X64Word.init(0x67332667, 0xffc00b31), new X64Word.init(0x8eb44a87, 0x68581511),
+	                new X64Word.init(0xdb0c2e0d, 0x64f98fa7), new X64Word.init(0x47b5481d, 0xbefa4fa4)
+	            ]);
+	        },
+
+	        _doFinalize: function () {
+	            var hash = SHA512._doFinalize.call(this);
+
+	            hash.sigBytes -= 16;
+
+	            return hash;
+	        }
+	    });
+
+	    /**
+	     * Shortcut function to the hasher's object interface.
+	     *
+	     * @param {WordArray|string} message The message to hash.
+	     *
+	     * @return {WordArray} The hash.
+	     *
+	     * @static
+	     *
+	     * @example
+	     *
+	     *     var hash = CryptoJS.SHA384('message');
+	     *     var hash = CryptoJS.SHA384(wordArray);
+	     */
+	    C.SHA384 = SHA512._createHelper(SHA384);
+
+	    /**
+	     * Shortcut function to the HMAC's object interface.
+	     *
+	     * @param {WordArray|string} message The message to hash.
+	     * @param {WordArray|string} key The secret key.
+	     *
+	     * @return {WordArray} The HMAC.
+	     *
+	     * @static
+	     *
+	     * @example
+	     *
+	     *     var hmac = CryptoJS.HmacSHA384(message, key);
+	     */
+	    C.HmacSHA384 = SHA512._createHmacHelper(SHA384);
+	}());
+
+
+	(function (Math) {
+	    // Shortcuts
+	    var C = CryptoJS;
+	    var C_lib = C.lib;
+	    var WordArray = C_lib.WordArray;
+	    var Hasher = C_lib.Hasher;
+	    var C_x64 = C.x64;
+	    var X64Word = C_x64.Word;
+	    var C_algo = C.algo;
+
+	    // Constants tables
+	    var RHO_OFFSETS = [];
+	    var PI_INDEXES  = [];
+	    var ROUND_CONSTANTS = [];
+
+	    // Compute Constants
+	    (function () {
+	        // Compute rho offset constants
+	        var x = 1, y = 0;
+	        for (var t = 0; t < 24; t++) {
+	            RHO_OFFSETS[x + 5 * y] = ((t + 1) * (t + 2) / 2) % 64;
+
+	            var newX = y % 5;
+	            var newY = (2 * x + 3 * y) % 5;
+	            x = newX;
+	            y = newY;
+	        }
+
+	        // Compute pi index constants
+	        for (var x = 0; x < 5; x++) {
+	            for (var y = 0; y < 5; y++) {
+	                PI_INDEXES[x + 5 * y] = y + ((2 * x + 3 * y) % 5) * 5;
+	            }
+	        }
+
+	        // Compute round constants
+	        var LFSR = 0x01;
+	        for (var i = 0; i < 24; i++) {
+	            var roundConstantMsw = 0;
+	            var roundConstantLsw = 0;
+
+	            for (var j = 0; j < 7; j++) {
+	                if (LFSR & 0x01) {
+	                    var bitPosition = (1 << j) - 1;
+	                    if (bitPosition < 32) {
+	                        roundConstantLsw ^= 1 << bitPosition;
+	                    } else /* if (bitPosition >= 32) */ {
+	                        roundConstantMsw ^= 1 << (bitPosition - 32);
+	                    }
+	                }
+
+	                // Compute next LFSR
+	                if (LFSR & 0x80) {
+	                    // Primitive polynomial over GF(2): x^8 + x^6 + x^5 + x^4 + 1
+	                    LFSR = (LFSR << 1) ^ 0x71;
+	                } else {
+	                    LFSR <<= 1;
+	                }
+	            }
+
+	            ROUND_CONSTANTS[i] = X64Word.create(roundConstantMsw, roundConstantLsw);
+	        }
+	    }());
+
+	    // Reusable objects for temporary values
+	    var T = [];
+	    (function () {
+	        for (var i = 0; i < 25; i++) {
+	            T[i] = X64Word.create();
+	        }
+	    }());
+
+	    /**
+	     * SHA-3 hash algorithm.
+	     */
+	    var SHA3 = C_algo.SHA3 = Hasher.extend({
+	        /**
+	         * Configuration options.
+	         *
+	         * @property {number} outputLength
+	         *   The desired number of bits in the output hash.
+	         *   Only values permitted are: 224, 256, 384, 512.
+	         *   Default: 512
+	         */
+	        cfg: Hasher.cfg.extend({
+	            outputLength: 512
+	        }),
+
+	        _doReset: function () {
+	            var state = this._state = []
+	            for (var i = 0; i < 25; i++) {
+	                state[i] = new X64Word.init();
+	            }
+
+	            this.blockSize = (1600 - 2 * this.cfg.outputLength) / 32;
+	        },
+
+	        _doProcessBlock: function (M, offset) {
+	            // Shortcuts
+	            var state = this._state;
+	            var nBlockSizeLanes = this.blockSize / 2;
+
+	            // Absorb
+	            for (var i = 0; i < nBlockSizeLanes; i++) {
+	                // Shortcuts
+	                var M2i  = M[offset + 2 * i];
+	                var M2i1 = M[offset + 2 * i + 1];
+
+	                // Swap endian
+	                M2i = (
+	                    (((M2i << 8)  | (M2i >>> 24)) & 0x00ff00ff) |
+	                    (((M2i << 24) | (M2i >>> 8))  & 0xff00ff00)
+	                );
+	                M2i1 = (
+	                    (((M2i1 << 8)  | (M2i1 >>> 24)) & 0x00ff00ff) |
+	                    (((M2i1 << 24) | (M2i1 >>> 8))  & 0xff00ff00)
+	                );
+
+	                // Absorb message into state
+	                var lane = state[i];
+	                lane.high ^= M2i1;
+	                lane.low  ^= M2i;
+	            }
+
+	            // Rounds
+	            for (var round = 0; round < 24; round++) {
+	                // Theta
+	                for (var x = 0; x < 5; x++) {
+	                    // Mix column lanes
+	                    var tMsw = 0, tLsw = 0;
+	                    for (var y = 0; y < 5; y++) {
+	                        var lane = state[x + 5 * y];
+	                        tMsw ^= lane.high;
+	                        tLsw ^= lane.low;
+	                    }
+
+	                    // Temporary values
+	                    var Tx = T[x];
+	                    Tx.high = tMsw;
+	                    Tx.low  = tLsw;
+	                }
+	                for (var x = 0; x < 5; x++) {
+	                    // Shortcuts
+	                    var Tx4 = T[(x + 4) % 5];
+	                    var Tx1 = T[(x + 1) % 5];
+	                    var Tx1Msw = Tx1.high;
+	                    var Tx1Lsw = Tx1.low;
+
+	                    // Mix surrounding columns
+	                    var tMsw = Tx4.high ^ ((Tx1Msw << 1) | (Tx1Lsw >>> 31));
+	                    var tLsw = Tx4.low  ^ ((Tx1Lsw << 1) | (Tx1Msw >>> 31));
+	                    for (var y = 0; y < 5; y++) {
+	                        var lane = state[x + 5 * y];
+	                        lane.high ^= tMsw;
+	                        lane.low  ^= tLsw;
+	                    }
+	                }
+
+	                // Rho Pi
+	                for (var laneIndex = 1; laneIndex < 25; laneIndex++) {
+	                    var tMsw;
+	                    var tLsw;
+
+	                    // Shortcuts
+	                    var lane = state[laneIndex];
+	                    var laneMsw = lane.high;
+	                    var laneLsw = lane.low;
+	                    var rhoOffset = RHO_OFFSETS[laneIndex];
+
+	                    // Rotate lanes
+	                    if (rhoOffset < 32) {
+	                        tMsw = (laneMsw << rhoOffset) | (laneLsw >>> (32 - rhoOffset));
+	                        tLsw = (laneLsw << rhoOffset) | (laneMsw >>> (32 - rhoOffset));
+	                    } else /* if (rhoOffset >= 32) */ {
+	                        tMsw = (laneLsw << (rhoOffset - 32)) | (laneMsw >>> (64 - rhoOffset));
+	                        tLsw = (laneMsw << (rhoOffset - 32)) | (laneLsw >>> (64 - rhoOffset));
+	                    }
+
+	                    // Transpose lanes
+	                    var TPiLane = T[PI_INDEXES[laneIndex]];
+	                    TPiLane.high = tMsw;
+	                    TPiLane.low  = tLsw;
+	                }
+
+	                // Rho pi at x = y = 0
+	                var T0 = T[0];
+	                var state0 = state[0];
+	                T0.high = state0.high;
+	                T0.low  = state0.low;
+
+	                // Chi
+	                for (var x = 0; x < 5; x++) {
+	                    for (var y = 0; y < 5; y++) {
+	                        // Shortcuts
+	                        var laneIndex = x + 5 * y;
+	                        var lane = state[laneIndex];
+	                        var TLane = T[laneIndex];
+	                        var Tx1Lane = T[((x + 1) % 5) + 5 * y];
+	                        var Tx2Lane = T[((x + 2) % 5) + 5 * y];
+
+	                        // Mix rows
+	                        lane.high = TLane.high ^ (~Tx1Lane.high & Tx2Lane.high);
+	                        lane.low  = TLane.low  ^ (~Tx1Lane.low  & Tx2Lane.low);
+	                    }
+	                }
+
+	                // Iota
+	                var lane = state[0];
+	                var roundConstant = ROUND_CONSTANTS[round];
+	                lane.high ^= roundConstant.high;
+	                lane.low  ^= roundConstant.low;
+	            }
+	        },
+
+	        _doFinalize: function () {
+	            // Shortcuts
+	            var data = this._data;
+	            var dataWords = data.words;
+	            var nBitsTotal = this._nDataBytes * 8;
+	            var nBitsLeft = data.sigBytes * 8;
+	            var blockSizeBits = this.blockSize * 32;
+
+	            // Add padding
+	            dataWords[nBitsLeft >>> 5] |= 0x1 << (24 - nBitsLeft % 32);
+	            dataWords[((Math.ceil((nBitsLeft + 1) / blockSizeBits) * blockSizeBits) >>> 5) - 1] |= 0x80;
+	            data.sigBytes = dataWords.length * 4;
+
+	            // Hash final blocks
+	            this._process();
+
+	            // Shortcuts
+	            var state = this._state;
+	            var outputLengthBytes = this.cfg.outputLength / 8;
+	            var outputLengthLanes = outputLengthBytes / 8;
+
+	            // Squeeze
+	            var hashWords = [];
+	            for (var i = 0; i < outputLengthLanes; i++) {
+	                // Shortcuts
+	                var lane = state[i];
+	                var laneMsw = lane.high;
+	                var laneLsw = lane.low;
+
+	                // Swap endian
+	                laneMsw = (
+	                    (((laneMsw << 8)  | (laneMsw >>> 24)) & 0x00ff00ff) |
+	                    (((laneMsw << 24) | (laneMsw >>> 8))  & 0xff00ff00)
+	                );
+	                laneLsw = (
+	                    (((laneLsw << 8)  | (laneLsw >>> 24)) & 0x00ff00ff) |
+	                    (((laneLsw << 24) | (laneLsw >>> 8))  & 0xff00ff00)
+	                );
+
+	                // Squeeze state to retrieve hash
+	                hashWords.push(laneLsw);
+	                hashWords.push(laneMsw);
+	            }
+
+	            // Return final computed hash
+	            return new WordArray.init(hashWords, outputLengthBytes);
+	        },
+
+	        clone: function () {
+	            var clone = Hasher.clone.call(this);
+
+	            var state = clone._state = this._state.slice(0);
+	            for (var i = 0; i < 25; i++) {
+	                state[i] = state[i].clone();
+	            }
+
+	            return clone;
+	        }
+	    });
+
+	    /**
+	     * Shortcut function to the hasher's object interface.
+	     *
+	     * @param {WordArray|string} message The message to hash.
+	     *
+	     * @return {WordArray} The hash.
+	     *
+	     * @static
+	     *
+	     * @example
+	     *
+	     *     var hash = CryptoJS.SHA3('message');
+	     *     var hash = CryptoJS.SHA3(wordArray);
+	     */
+	    C.SHA3 = Hasher._createHelper(SHA3);
+
+	    /**
+	     * Shortcut function to the HMAC's object interface.
+	     *
+	     * @param {WordArray|string} message The message to hash.
+	     * @param {WordArray|string} key The secret key.
+	     *
+	     * @return {WordArray} The HMAC.
+	     *
+	     * @static
+	     *
+	     * @example
+	     *
+	     *     var hmac = CryptoJS.HmacSHA3(message, key);
+	     */
+	    C.HmacSHA3 = Hasher._createHmacHelper(SHA3);
+	}(Math));
+
+
+	/** @preserve
+	(c) 2012 by Cédric Mesnil. All rights reserved.
+
+	Redistribution and use in source and binary forms, with or without modification, are permitted provided that the following conditions are met:
+
+	    - Redistributions of source code must retain the above copyright notice, this list of conditions and the following disclaimer.
+	    - Redistributions in binary form must reproduce the above copyright notice, this list of conditions and the following disclaimer in the documentation and/or other materials provided with the distribution.
+
+	THIS SOFTWARE IS PROVIDED BY THE COPYRIGHT HOLDERS AND CONTRIBUTORS "AS IS" AND ANY EXPRESS OR IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR PURPOSE ARE DISCLAIMED. IN NO EVENT SHALL THE COPYRIGHT HOLDER OR CONTRIBUTORS BE LIABLE FOR ANY DIRECT, INDIRECT, INCIDENTAL, SPECIAL, EXEMPLARY, OR CONSEQUENTIAL DAMAGES (INCLUDING, BUT NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS OR SERVICES; LOSS OF USE, DATA, OR PROFITS; OR BUSINESS INTERRUPTION) HOWEVER CAUSED AND ON ANY THEORY OF LIABILITY, WHETHER IN CONTRACT, STRICT LIABILITY, OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY OUT OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF SUCH DAMAGE.
+	*/
+
+	(function (Math) {
+	    // Shortcuts
+	    var C = CryptoJS;
+	    var C_lib = C.lib;
+	    var WordArray = C_lib.WordArray;
+	    var Hasher = C_lib.Hasher;
+	    var C_algo = C.algo;
+
+	    // Constants table
+	    var _zl = WordArray.create([
+	        0,  1,  2,  3,  4,  5,  6,  7,  8,  9, 10, 11, 12, 13, 14, 15,
+	        7,  4, 13,  1, 10,  6, 15,  3, 12,  0,  9,  5,  2, 14, 11,  8,
+	        3, 10, 14,  4,  9, 15,  8,  1,  2,  7,  0,  6, 13, 11,  5, 12,
+	        1,  9, 11, 10,  0,  8, 12,  4, 13,  3,  7, 15, 14,  5,  6,  2,
+	        4,  0,  5,  9,  7, 12,  2, 10, 14,  1,  3,  8, 11,  6, 15, 13]);
+	    var _zr = WordArray.create([
+	        5, 14,  7,  0,  9,  2, 11,  4, 13,  6, 15,  8,  1, 10,  3, 12,
+	        6, 11,  3,  7,  0, 13,  5, 10, 14, 15,  8, 12,  4,  9,  1,  2,
+	        15,  5,  1,  3,  7, 14,  6,  9, 11,  8, 12,  2, 10,  0,  4, 13,
+	        8,  6,  4,  1,  3, 11, 15,  0,  5, 12,  2, 13,  9,  7, 10, 14,
+	        12, 15, 10,  4,  1,  5,  8,  7,  6,  2, 13, 14,  0,  3,  9, 11]);
+	    var _sl = WordArray.create([
+	         11, 14, 15, 12,  5,  8,  7,  9, 11, 13, 14, 15,  6,  7,  9,  8,
+	        7, 6,   8, 13, 11,  9,  7, 15,  7, 12, 15,  9, 11,  7, 13, 12,
+	        11, 13,  6,  7, 14,  9, 13, 15, 14,  8, 13,  6,  5, 12,  7,  5,
+	          11, 12, 14, 15, 14, 15,  9,  8,  9, 14,  5,  6,  8,  6,  5, 12,
+	        9, 15,  5, 11,  6,  8, 13, 12,  5, 12, 13, 14, 11,  8,  5,  6 ]);
+	    var _sr = WordArray.create([
+	        8,  9,  9, 11, 13, 15, 15,  5,  7,  7,  8, 11, 14, 14, 12,  6,
+	        9, 13, 15,  7, 12,  8,  9, 11,  7,  7, 12,  7,  6, 15, 13, 11,
+	        9,  7, 15, 11,  8,  6,  6, 14, 12, 13,  5, 14, 13, 13,  7,  5,
+	        15,  5,  8, 11, 14, 14,  6, 14,  6,  9, 12,  9, 12,  5, 15,  8,
+	        8,  5, 12,  9, 12,  5, 14,  6,  8, 13,  6,  5, 15, 13, 11, 11 ]);
+
+	    var _hl =  WordArray.create([ 0x00000000, 0x5A827999, 0x6ED9EBA1, 0x8F1BBCDC, 0xA953FD4E]);
+	    var _hr =  WordArray.create([ 0x50A28BE6, 0x5C4DD124, 0x6D703EF3, 0x7A6D76E9, 0x00000000]);
+
+	    /**
+	     * RIPEMD160 hash algorithm.
+	     */
+	    var RIPEMD160 = C_algo.RIPEMD160 = Hasher.extend({
+	        _doReset: function () {
+	            this._hash  = WordArray.create([0x67452301, 0xEFCDAB89, 0x98BADCFE, 0x10325476, 0xC3D2E1F0]);
+	        },
+
+	        _doProcessBlock: function (M, offset) {
+
+	            // Swap endian
+	            for (var i = 0; i < 16; i++) {
+	                // Shortcuts
+	                var offset_i = offset + i;
+	                var M_offset_i = M[offset_i];
+
+	                // Swap
+	                M[offset_i] = (
+	                    (((M_offset_i << 8)  | (M_offset_i >>> 24)) & 0x00ff00ff) |
+	                    (((M_offset_i << 24) | (M_offset_i >>> 8))  & 0xff00ff00)
+	                );
+	            }
+	            // Shortcut
+	            var H  = this._hash.words;
+	            var hl = _hl.words;
+	            var hr = _hr.words;
+	            var zl = _zl.words;
+	            var zr = _zr.words;
+	            var sl = _sl.words;
+	            var sr = _sr.words;
+
+	            // Working variables
+	            var al, bl, cl, dl, el;
+	            var ar, br, cr, dr, er;
+
+	            ar = al = H[0];
+	            br = bl = H[1];
+	            cr = cl = H[2];
+	            dr = dl = H[3];
+	            er = el = H[4];
+	            // Computation
+	            var t;
+	            for (var i = 0; i < 80; i += 1) {
+	                t = (al +  M[offset+zl[i]])|0;
+	                if (i<16){
+		            t +=  f1(bl,cl,dl) + hl[0];
+	                } else if (i<32) {
+		            t +=  f2(bl,cl,dl) + hl[1];
+	                } else if (i<48) {
+		            t +=  f3(bl,cl,dl) + hl[2];
+	                } else if (i<64) {
+		            t +=  f4(bl,cl,dl) + hl[3];
+	                } else {// if (i<80) {
+		            t +=  f5(bl,cl,dl) + hl[4];
+	                }
+	                t = t|0;
+	                t =  rotl(t,sl[i]);
+	                t = (t+el)|0;
+	                al = el;
+	                el = dl;
+	                dl = rotl(cl, 10);
+	                cl = bl;
+	                bl = t;
+
+	                t = (ar + M[offset+zr[i]])|0;
+	                if (i<16){
+		            t +=  f5(br,cr,dr) + hr[0];
+	                } else if (i<32) {
+		            t +=  f4(br,cr,dr) + hr[1];
+	                } else if (i<48) {
+		            t +=  f3(br,cr,dr) + hr[2];
+	                } else if (i<64) {
+		            t +=  f2(br,cr,dr) + hr[3];
+	                } else {// if (i<80) {
+		            t +=  f1(br,cr,dr) + hr[4];
+	                }
+	                t = t|0;
+	                t =  rotl(t,sr[i]) ;
+	                t = (t+er)|0;
+	                ar = er;
+	                er = dr;
+	                dr = rotl(cr, 10);
+	                cr = br;
+	                br = t;
+	            }
+	            // Intermediate hash value
+	            t    = (H[1] + cl + dr)|0;
+	            H[1] = (H[2] + dl + er)|0;
+	            H[2] = (H[3] + el + ar)|0;
+	            H[3] = (H[4] + al + br)|0;
+	            H[4] = (H[0] + bl + cr)|0;
+	            H[0] =  t;
+	        },
+
+	        _doFinalize: function () {
+	            // Shortcuts
+	            var data = this._data;
+	            var dataWords = data.words;
+
+	            var nBitsTotal = this._nDataBytes * 8;
+	            var nBitsLeft = data.sigBytes * 8;
+
+	            // Add padding
+	            dataWords[nBitsLeft >>> 5] |= 0x80 << (24 - nBitsLeft % 32);
+	            dataWords[(((nBitsLeft + 64) >>> 9) << 4) + 14] = (
+	                (((nBitsTotal << 8)  | (nBitsTotal >>> 24)) & 0x00ff00ff) |
+	                (((nBitsTotal << 24) | (nBitsTotal >>> 8))  & 0xff00ff00)
+	            );
+	            data.sigBytes = (dataWords.length + 1) * 4;
+
+	            // Hash final blocks
+	            this._process();
+
+	            // Shortcuts
+	            var hash = this._hash;
+	            var H = hash.words;
+
+	            // Swap endian
+	            for (var i = 0; i < 5; i++) {
+	                // Shortcut
+	                var H_i = H[i];
+
+	                // Swap
+	                H[i] = (((H_i << 8)  | (H_i >>> 24)) & 0x00ff00ff) |
+	                       (((H_i << 24) | (H_i >>> 8))  & 0xff00ff00);
+	            }
+
+	            // Return final computed hash
+	            return hash;
+	        },
+
+	        clone: function () {
+	            var clone = Hasher.clone.call(this);
+	            clone._hash = this._hash.clone();
+
+	            return clone;
+	        }
+	    });
+
+
+	    function f1(x, y, z) {
+	        return ((x) ^ (y) ^ (z));
+
+	    }
+
+	    function f2(x, y, z) {
+	        return (((x)&(y)) | ((~x)&(z)));
+	    }
+
+	    function f3(x, y, z) {
+	        return (((x) | (~(y))) ^ (z));
+	    }
+
+	    function f4(x, y, z) {
+	        return (((x) & (z)) | ((y)&(~(z))));
+	    }
+
+	    function f5(x, y, z) {
+	        return ((x) ^ ((y) |(~(z))));
+
+	    }
+
+	    function rotl(x,n) {
+	        return (x<<n) | (x>>>(32-n));
+	    }
+
+
+	    /**
+	     * Shortcut function to the hasher's object interface.
+	     *
+	     * @param {WordArray|string} message The message to hash.
+	     *
+	     * @return {WordArray} The hash.
+	     *
+	     * @static
+	     *
+	     * @example
+	     *
+	     *     var hash = CryptoJS.RIPEMD160('message');
+	     *     var hash = CryptoJS.RIPEMD160(wordArray);
+	     */
+	    C.RIPEMD160 = Hasher._createHelper(RIPEMD160);
+
+	    /**
+	     * Shortcut function to the HMAC's object interface.
+	     *
+	     * @param {WordArray|string} message The message to hash.
+	     * @param {WordArray|string} key The secret key.
+	     *
+	     * @return {WordArray} The HMAC.
+	     *
+	     * @static
+	     *
+	     * @example
+	     *
+	     *     var hmac = CryptoJS.HmacRIPEMD160(message, key);
+	     */
+	    C.HmacRIPEMD160 = Hasher._createHmacHelper(RIPEMD160);
+	}(Math));
+
+
+	(function () {
+	    // Shortcuts
+	    var C = CryptoJS;
+	    var C_lib = C.lib;
+	    var Base = C_lib.Base;
+	    var C_enc = C.enc;
+	    var Utf8 = C_enc.Utf8;
+	    var C_algo = C.algo;
+
+	    /**
+	     * HMAC algorithm.
+	     */
+	    var HMAC = C_algo.HMAC = Base.extend({
+	        /**
+	         * Initializes a newly created HMAC.
+	         *
+	         * @param {Hasher} hasher The hash algorithm to use.
+	         * @param {WordArray|string} key The secret key.
+	         *
+	         * @example
+	         *
+	         *     var hmacHasher = CryptoJS.algo.HMAC.create(CryptoJS.algo.SHA256, key);
+	         */
+	        init: function (hasher, key) {
+	            // Init hasher
+	            hasher = this._hasher = new hasher.init();
+
+	            // Convert string to WordArray, else assume WordArray already
+	            if (typeof key == 'string') {
+	                key = Utf8.parse(key);
+	            }
+
+	            // Shortcuts
+	            var hasherBlockSize = hasher.blockSize;
+	            var hasherBlockSizeBytes = hasherBlockSize * 4;
+
+	            // Allow arbitrary length keys
+	            if (key.sigBytes > hasherBlockSizeBytes) {
+	                key = hasher.finalize(key);
+	            }
+
+	            // Clamp excess bits
+	            key.clamp();
+
+	            // Clone key for inner and outer pads
+	            var oKey = this._oKey = key.clone();
+	            var iKey = this._iKey = key.clone();
+
+	            // Shortcuts
+	            var oKeyWords = oKey.words;
+	            var iKeyWords = iKey.words;
+
+	            // XOR keys with pad constants
+	            for (var i = 0; i < hasherBlockSize; i++) {
+	                oKeyWords[i] ^= 0x5c5c5c5c;
+	                iKeyWords[i] ^= 0x36363636;
+	            }
+	            oKey.sigBytes = iKey.sigBytes = hasherBlockSizeBytes;
+
+	            // Set initial values
+	            this.reset();
+	        },
+
+	        /**
+	         * Resets this HMAC to its initial state.
+	         *
+	         * @example
+	         *
+	         *     hmacHasher.reset();
+	         */
+	        reset: function () {
+	            // Shortcut
+	            var hasher = this._hasher;
+
+	            // Reset
+	            hasher.reset();
+	            hasher.update(this._iKey);
+	        },
+
+	        /**
+	         * Updates this HMAC with a message.
+	         *
+	         * @param {WordArray|string} messageUpdate The message to append.
+	         *
+	         * @return {HMAC} This HMAC instance.
+	         *
+	         * @example
+	         *
+	         *     hmacHasher.update('message');
+	         *     hmacHasher.update(wordArray);
+	         */
+	        update: function (messageUpdate) {
+	            this._hasher.update(messageUpdate);
+
+	            // Chainable
+	            return this;
+	        },
+
+	        /**
+	         * Finalizes the HMAC computation.
+	         * Note that the finalize operation is effectively a destructive, read-once operation.
+	         *
+	         * @param {WordArray|string} messageUpdate (Optional) A final message update.
+	         *
+	         * @return {WordArray} The HMAC.
+	         *
+	         * @example
+	         *
+	         *     var hmac = hmacHasher.finalize();
+	         *     var hmac = hmacHasher.finalize('message');
+	         *     var hmac = hmacHasher.finalize(wordArray);
+	         */
+	        finalize: function (messageUpdate) {
+	            // Shortcut
+	            var hasher = this._hasher;
+
+	            // Compute HMAC
+	            var innerHash = hasher.finalize(messageUpdate);
+	            hasher.reset();
+	            var hmac = hasher.finalize(this._oKey.clone().concat(innerHash));
+
+	            return hmac;
+	        }
+	    });
+	}());
+
+
+	(function () {
+	    // Shortcuts
+	    var C = CryptoJS;
+	    var C_lib = C.lib;
+	    var Base = C_lib.Base;
+	    var WordArray = C_lib.WordArray;
+	    var C_algo = C.algo;
+	    var SHA1 = C_algo.SHA1;
+	    var HMAC = C_algo.HMAC;
+
+	    /**
+	     * Password-Based Key Derivation Function 2 algorithm.
+	     */
+	    var PBKDF2 = C_algo.PBKDF2 = Base.extend({
+	        /**
+	         * Configuration options.
+	         *
+	         * @property {number} keySize The key size in words to generate. Default: 4 (128 bits)
+	         * @property {Hasher} hasher The hasher to use. Default: SHA1
+	         * @property {number} iterations The number of iterations to perform. Default: 1
+	         */
+	        cfg: Base.extend({
+	            keySize: 128/32,
+	            hasher: SHA1,
+	            iterations: 1
+	        }),
+
+	        /**
+	         * Initializes a newly created key derivation function.
+	         *
+	         * @param {Object} cfg (Optional) The configuration options to use for the derivation.
+	         *
+	         * @example
+	         *
+	         *     var kdf = CryptoJS.algo.PBKDF2.create();
+	         *     var kdf = CryptoJS.algo.PBKDF2.create({ keySize: 8 });
+	         *     var kdf = CryptoJS.algo.PBKDF2.create({ keySize: 8, iterations: 1000 });
+	         */
+	        init: function (cfg) {
+	            this.cfg = this.cfg.extend(cfg);
+	        },
+
+	        /**
+	         * Computes the Password-Based Key Derivation Function 2.
+	         *
+	         * @param {WordArray|string} password The password.
+	         * @param {WordArray|string} salt A salt.
+	         *
+	         * @return {WordArray} The derived key.
+	         *
+	         * @example
+	         *
+	         *     var key = kdf.compute(password, salt);
+	         */
+	        compute: function (password, salt) {
+	            // Shortcut
+	            var cfg = this.cfg;
+
+	            // Init HMAC
+	            var hmac = HMAC.create(cfg.hasher, password);
+
+	            // Initial values
+	            var derivedKey = WordArray.create();
+	            var blockIndex = WordArray.create([0x00000001]);
+
+	            // Shortcuts
+	            var derivedKeyWords = derivedKey.words;
+	            var blockIndexWords = blockIndex.words;
+	            var keySize = cfg.keySize;
+	            var iterations = cfg.iterations;
+
+	            // Generate key
+	            while (derivedKeyWords.length < keySize) {
+	                var block = hmac.update(salt).finalize(blockIndex);
+	                hmac.reset();
+
+	                // Shortcuts
+	                var blockWords = block.words;
+	                var blockWordsLength = blockWords.length;
+
+	                // Iterations
+	                var intermediate = block;
+	                for (var i = 1; i < iterations; i++) {
+	                    intermediate = hmac.finalize(intermediate);
+	                    hmac.reset();
+
+	                    // Shortcut
+	                    var intermediateWords = intermediate.words;
+
+	                    // XOR intermediate with block
+	                    for (var j = 0; j < blockWordsLength; j++) {
+	                        blockWords[j] ^= intermediateWords[j];
+	                    }
+	                }
+
+	                derivedKey.concat(block);
+	                blockIndexWords[0]++;
+	            }
+	            derivedKey.sigBytes = keySize * 4;
+
+	            return derivedKey;
+	        }
+	    });
+
+	    /**
+	     * Computes the Password-Based Key Derivation Function 2.
+	     *
+	     * @param {WordArray|string} password The password.
+	     * @param {WordArray|string} salt A salt.
+	     * @param {Object} cfg (Optional) The configuration options to use for this computation.
+	     *
+	     * @return {WordArray} The derived key.
+	     *
+	     * @static
+	     *
+	     * @example
+	     *
+	     *     var key = CryptoJS.PBKDF2(password, salt);
+	     *     var key = CryptoJS.PBKDF2(password, salt, { keySize: 8 });
+	     *     var key = CryptoJS.PBKDF2(password, salt, { keySize: 8, iterations: 1000 });
+	     */
+	    C.PBKDF2 = function (password, salt, cfg) {
+	        return PBKDF2.create(cfg).compute(password, salt);
+	    };
+	}());
+
+
+	(function () {
+	    // Shortcuts
+	    var C = CryptoJS;
+	    var C_lib = C.lib;
+	    var Base = C_lib.Base;
+	    var WordArray = C_lib.WordArray;
+	    var C_algo = C.algo;
+	    var MD5 = C_algo.MD5;
+
+	    /**
+	     * This key derivation function is meant to conform with EVP_BytesToKey.
+	     * www.openssl.org/docs/crypto/EVP_BytesToKey.html
+	     */
+	    var EvpKDF = C_algo.EvpKDF = Base.extend({
+	        /**
+	         * Configuration options.
+	         *
+	         * @property {number} keySize The key size in words to generate. Default: 4 (128 bits)
+	         * @property {Hasher} hasher The hash algorithm to use. Default: MD5
+	         * @property {number} iterations The number of iterations to perform. Default: 1
+	         */
+	        cfg: Base.extend({
+	            keySize: 128/32,
+	            hasher: MD5,
+	            iterations: 1
+	        }),
+
+	        /**
+	         * Initializes a newly created key derivation function.
+	         *
+	         * @param {Object} cfg (Optional) The configuration options to use for the derivation.
+	         *
+	         * @example
+	         *
+	         *     var kdf = CryptoJS.algo.EvpKDF.create();
+	         *     var kdf = CryptoJS.algo.EvpKDF.create({ keySize: 8 });
+	         *     var kdf = CryptoJS.algo.EvpKDF.create({ keySize: 8, iterations: 1000 });
+	         */
+	        init: function (cfg) {
+	            this.cfg = this.cfg.extend(cfg);
+	        },
+
+	        /**
+	         * Derives a key from a password.
+	         *
+	         * @param {WordArray|string} password The password.
+	         * @param {WordArray|string} salt A salt.
+	         *
+	         * @return {WordArray} The derived key.
+	         *
+	         * @example
+	         *
+	         *     var key = kdf.compute(password, salt);
+	         */
+	        compute: function (password, salt) {
+	            var block;
+
+	            // Shortcut
+	            var cfg = this.cfg;
+
+	            // Init hasher
+	            var hasher = cfg.hasher.create();
+
+	            // Initial values
+	            var derivedKey = WordArray.create();
+
+	            // Shortcuts
+	            var derivedKeyWords = derivedKey.words;
+	            var keySize = cfg.keySize;
+	            var iterations = cfg.iterations;
+
+	            // Generate key
+	            while (derivedKeyWords.length < keySize) {
+	                if (block) {
+	                    hasher.update(block);
+	                }
+	                block = hasher.update(password).finalize(salt);
+	                hasher.reset();
+
+	                // Iterations
+	                for (var i = 1; i < iterations; i++) {
+	                    block = hasher.finalize(block);
+	                    hasher.reset();
+	                }
+
+	                derivedKey.concat(block);
+	            }
+	            derivedKey.sigBytes = keySize * 4;
+
+	            return derivedKey;
+	        }
+	    });
+
+	    /**
+	     * Derives a key from a password.
+	     *
+	     * @param {WordArray|string} password The password.
+	     * @param {WordArray|string} salt A salt.
+	     * @param {Object} cfg (Optional) The configuration options to use for this computation.
+	     *
+	     * @return {WordArray} The derived key.
+	     *
+	     * @static
+	     *
+	     * @example
+	     *
+	     *     var key = CryptoJS.EvpKDF(password, salt);
+	     *     var key = CryptoJS.EvpKDF(password, salt, { keySize: 8 });
+	     *     var key = CryptoJS.EvpKDF(password, salt, { keySize: 8, iterations: 1000 });
+	     */
+	    C.EvpKDF = function (password, salt, cfg) {
+	        return EvpKDF.create(cfg).compute(password, salt);
+	    };
+	}());
+
+
+	/**
+	 * Cipher core components.
+	 */
+	CryptoJS.lib.Cipher || (function (undefined) {
+	    // Shortcuts
+	    var C = CryptoJS;
+	    var C_lib = C.lib;
+	    var Base = C_lib.Base;
+	    var WordArray = C_lib.WordArray;
+	    var BufferedBlockAlgorithm = C_lib.BufferedBlockAlgorithm;
+	    var C_enc = C.enc;
+	    var Utf8 = C_enc.Utf8;
+	    var Base64 = C_enc.Base64;
+	    var C_algo = C.algo;
+	    var EvpKDF = C_algo.EvpKDF;
+
+	    /**
+	     * Abstract base cipher template.
+	     *
+	     * @property {number} keySize This cipher's key size. Default: 4 (128 bits)
+	     * @property {number} ivSize This cipher's IV size. Default: 4 (128 bits)
+	     * @property {number} _ENC_XFORM_MODE A constant representing encryption mode.
+	     * @property {number} _DEC_XFORM_MODE A constant representing decryption mode.
+	     */
+	    var Cipher = C_lib.Cipher = BufferedBlockAlgorithm.extend({
+	        /**
+	         * Configuration options.
+	         *
+	         * @property {WordArray} iv The IV to use for this operation.
+	         */
+	        cfg: Base.extend(),
+
+	        /**
+	         * Creates this cipher in encryption mode.
+	         *
+	         * @param {WordArray} key The key.
+	         * @param {Object} cfg (Optional) The configuration options to use for this operation.
+	         *
+	         * @return {Cipher} A cipher instance.
+	         *
+	         * @static
+	         *
+	         * @example
+	         *
+	         *     var cipher = CryptoJS.algo.AES.createEncryptor(keyWordArray, { iv: ivWordArray });
+	         */
+	        createEncryptor: function (key, cfg) {
+	            return this.create(this._ENC_XFORM_MODE, key, cfg);
+	        },
+
+	        /**
+	         * Creates this cipher in decryption mode.
+	         *
+	         * @param {WordArray} key The key.
+	         * @param {Object} cfg (Optional) The configuration options to use for this operation.
+	         *
+	         * @return {Cipher} A cipher instance.
+	         *
+	         * @static
+	         *
+	         * @example
+	         *
+	         *     var cipher = CryptoJS.algo.AES.createDecryptor(keyWordArray, { iv: ivWordArray });
+	         */
+	        createDecryptor: function (key, cfg) {
+	            return this.create(this._DEC_XFORM_MODE, key, cfg);
+	        },
+
+	        /**
+	         * Initializes a newly created cipher.
+	         *
+	         * @param {number} xformMode Either the encryption or decryption transormation mode constant.
+	         * @param {WordArray} key The key.
+	         * @param {Object} cfg (Optional) The configuration options to use for this operation.
+	         *
+	         * @example
+	         *
+	         *     var cipher = CryptoJS.algo.AES.create(CryptoJS.algo.AES._ENC_XFORM_MODE, keyWordArray, { iv: ivWordArray });
+	         */
+	        init: function (xformMode, key, cfg) {
+	            // Apply config defaults
+	            this.cfg = this.cfg.extend(cfg);
+
+	            // Store transform mode and key
+	            this._xformMode = xformMode;
+	            this._key = key;
+
+	            // Set initial values
+	            this.reset();
+	        },
+
+	        /**
+	         * Resets this cipher to its initial state.
+	         *
+	         * @example
+	         *
+	         *     cipher.reset();
+	         */
+	        reset: function () {
+	            // Reset data buffer
+	            BufferedBlockAlgorithm.reset.call(this);
+
+	            // Perform concrete-cipher logic
+	            this._doReset();
+	        },
+
+	        /**
+	         * Adds data to be encrypted or decrypted.
+	         *
+	         * @param {WordArray|string} dataUpdate The data to encrypt or decrypt.
+	         *
+	         * @return {WordArray} The data after processing.
+	         *
+	         * @example
+	         *
+	         *     var encrypted = cipher.process('data');
+	         *     var encrypted = cipher.process(wordArray);
+	         */
+	        process: function (dataUpdate) {
+	            // Append
+	            this._append(dataUpdate);
+
+	            // Process available blocks
+	            return this._process();
+	        },
+
+	        /**
+	         * Finalizes the encryption or decryption process.
+	         * Note that the finalize operation is effectively a destructive, read-once operation.
+	         *
+	         * @param {WordArray|string} dataUpdate The final data to encrypt or decrypt.
+	         *
+	         * @return {WordArray} The data after final processing.
+	         *
+	         * @example
+	         *
+	         *     var encrypted = cipher.finalize();
+	         *     var encrypted = cipher.finalize('data');
+	         *     var encrypted = cipher.finalize(wordArray);
+	         */
+	        finalize: function (dataUpdate) {
+	            // Final data update
+	            if (dataUpdate) {
+	                this._append(dataUpdate);
+	            }
+
+	            // Perform concrete-cipher logic
+	            var finalProcessedData = this._doFinalize();
+
+	            return finalProcessedData;
+	        },
+
+	        keySize: 128/32,
+
+	        ivSize: 128/32,
+
+	        _ENC_XFORM_MODE: 1,
+
+	        _DEC_XFORM_MODE: 2,
+
+	        /**
+	         * Creates shortcut functions to a cipher's object interface.
+	         *
+	         * @param {Cipher} cipher The cipher to create a helper for.
+	         *
+	         * @return {Object} An object with encrypt and decrypt shortcut functions.
+	         *
+	         * @static
+	         *
+	         * @example
+	         *
+	         *     var AES = CryptoJS.lib.Cipher._createHelper(CryptoJS.algo.AES);
+	         */
+	        _createHelper: (function () {
+	            function selectCipherStrategy(key) {
+	                if (typeof key == 'string') {
+	                    return PasswordBasedCipher;
+	                } else {
+	                    return SerializableCipher;
+	                }
+	            }
+
+	            return function (cipher) {
+	                return {
+	                    encrypt: function (message, key, cfg) {
+	                        return selectCipherStrategy(key).encrypt(cipher, message, key, cfg);
+	                    },
+
+	                    decrypt: function (ciphertext, key, cfg) {
+	                        return selectCipherStrategy(key).decrypt(cipher, ciphertext, key, cfg);
+	                    }
+	                };
+	            };
+	        }())
+	    });
+
+	    /**
+	     * Abstract base stream cipher template.
+	     *
+	     * @property {number} blockSize The number of 32-bit words this cipher operates on. Default: 1 (32 bits)
+	     */
+	    var StreamCipher = C_lib.StreamCipher = Cipher.extend({
+	        _doFinalize: function () {
+	            // Process partial blocks
+	            var finalProcessedBlocks = this._process(!!'flush');
+
+	            return finalProcessedBlocks;
+	        },
+
+	        blockSize: 1
+	    });
+
+	    /**
+	     * Mode namespace.
+	     */
+	    var C_mode = C.mode = {};
+
+	    /**
+	     * Abstract base block cipher mode template.
+	     */
+	    var BlockCipherMode = C_lib.BlockCipherMode = Base.extend({
+	        /**
+	         * Creates this mode for encryption.
+	         *
+	         * @param {Cipher} cipher A block cipher instance.
+	         * @param {Array} iv The IV words.
+	         *
+	         * @static
+	         *
+	         * @example
+	         *
+	         *     var mode = CryptoJS.mode.CBC.createEncryptor(cipher, iv.words);
+	         */
+	        createEncryptor: function (cipher, iv) {
+	            return this.Encryptor.create(cipher, iv);
+	        },
+
+	        /**
+	         * Creates this mode for decryption.
+	         *
+	         * @param {Cipher} cipher A block cipher instance.
+	         * @param {Array} iv The IV words.
+	         *
+	         * @static
+	         *
+	         * @example
+	         *
+	         *     var mode = CryptoJS.mode.CBC.createDecryptor(cipher, iv.words);
+	         */
+	        createDecryptor: function (cipher, iv) {
+	            return this.Decryptor.create(cipher, iv);
+	        },
+
+	        /**
+	         * Initializes a newly created mode.
+	         *
+	         * @param {Cipher} cipher A block cipher instance.
+	         * @param {Array} iv The IV words.
+	         *
+	         * @example
+	         *
+	         *     var mode = CryptoJS.mode.CBC.Encryptor.create(cipher, iv.words);
+	         */
+	        init: function (cipher, iv) {
+	            this._cipher = cipher;
+	            this._iv = iv;
+	        }
+	    });
+
+	    /**
+	     * Cipher Block Chaining mode.
+	     */
+	    var CBC = C_mode.CBC = (function () {
+	        /**
+	         * Abstract base CBC mode.
+	         */
+	        var CBC = BlockCipherMode.extend();
+
+	        /**
+	         * CBC encryptor.
+	         */
+	        CBC.Encryptor = CBC.extend({
+	            /**
+	             * Processes the data block at offset.
+	             *
+	             * @param {Array} words The data words to operate on.
+	             * @param {number} offset The offset where the block starts.
+	             *
+	             * @example
+	             *
+	             *     mode.processBlock(data.words, offset);
+	             */
+	            processBlock: function (words, offset) {
+	                // Shortcuts
+	                var cipher = this._cipher;
+	                var blockSize = cipher.blockSize;
+
+	                // XOR and encrypt
+	                xorBlock.call(this, words, offset, blockSize);
+	                cipher.encryptBlock(words, offset);
+
+	                // Remember this block to use with next block
+	                this._prevBlock = words.slice(offset, offset + blockSize);
+	            }
+	        });
+
+	        /**
+	         * CBC decryptor.
+	         */
+	        CBC.Decryptor = CBC.extend({
+	            /**
+	             * Processes the data block at offset.
+	             *
+	             * @param {Array} words The data words to operate on.
+	             * @param {number} offset The offset where the block starts.
+	             *
+	             * @example
+	             *
+	             *     mode.processBlock(data.words, offset);
+	             */
+	            processBlock: function (words, offset) {
+	                // Shortcuts
+	                var cipher = this._cipher;
+	                var blockSize = cipher.blockSize;
+
+	                // Remember this block to use with next block
+	                var thisBlock = words.slice(offset, offset + blockSize);
+
+	                // Decrypt and XOR
+	                cipher.decryptBlock(words, offset);
+	                xorBlock.call(this, words, offset, blockSize);
+
+	                // This block becomes the previous block
+	                this._prevBlock = thisBlock;
+	            }
+	        });
+
+	        function xorBlock(words, offset, blockSize) {
+	            var block;
+
+	            // Shortcut
+	            var iv = this._iv;
+
+	            // Choose mixing block
+	            if (iv) {
+	                block = iv;
+
+	                // Remove IV for subsequent blocks
+	                this._iv = undefined;
+	            } else {
+	                block = this._prevBlock;
+	            }
+
+	            // XOR blocks
+	            for (var i = 0; i < blockSize; i++) {
+	                words[offset + i] ^= block[i];
+	            }
+	        }
+
+	        return CBC;
+	    }());
+
+	    /**
+	     * Padding namespace.
+	     */
+	    var C_pad = C.pad = {};
+
+	    /**
+	     * PKCS #5/7 padding strategy.
+	     */
+	    var Pkcs7 = C_pad.Pkcs7 = {
+	        /**
+	         * Pads data using the algorithm defined in PKCS #5/7.
+	         *
+	         * @param {WordArray} data The data to pad.
+	         * @param {number} blockSize The multiple that the data should be padded to.
+	         *
+	         * @static
+	         *
+	         * @example
+	         *
+	         *     CryptoJS.pad.Pkcs7.pad(wordArray, 4);
+	         */
+	        pad: function (data, blockSize) {
+	            // Shortcut
+	            var blockSizeBytes = blockSize * 4;
+
+	            // Count padding bytes
+	            var nPaddingBytes = blockSizeBytes - data.sigBytes % blockSizeBytes;
+
+	            // Create padding word
+	            var paddingWord = (nPaddingBytes << 24) | (nPaddingBytes << 16) | (nPaddingBytes << 8) | nPaddingBytes;
+
+	            // Create padding
+	            var paddingWords = [];
+	            for (var i = 0; i < nPaddingBytes; i += 4) {
+	                paddingWords.push(paddingWord);
+	            }
+	            var padding = WordArray.create(paddingWords, nPaddingBytes);
+
+	            // Add padding
+	            data.concat(padding);
+	        },
+
+	        /**
+	         * Unpads data that had been padded using the algorithm defined in PKCS #5/7.
+	         *
+	         * @param {WordArray} data The data to unpad.
+	         *
+	         * @static
+	         *
+	         * @example
+	         *
+	         *     CryptoJS.pad.Pkcs7.unpad(wordArray);
+	         */
+	        unpad: function (data) {
+	            // Get number of padding bytes from last byte
+	            var nPaddingBytes = data.words[(data.sigBytes - 1) >>> 2] & 0xff;
+
+	            // Remove padding
+	            data.sigBytes -= nPaddingBytes;
+	        }
+	    };
+
+	    /**
+	     * Abstract base block cipher template.
+	     *
+	     * @property {number} blockSize The number of 32-bit words this cipher operates on. Default: 4 (128 bits)
+	     */
+	    var BlockCipher = C_lib.BlockCipher = Cipher.extend({
+	        /**
+	         * Configuration options.
+	         *
+	         * @property {Mode} mode The block mode to use. Default: CBC
+	         * @property {Padding} padding The padding strategy to use. Default: Pkcs7
+	         */
+	        cfg: Cipher.cfg.extend({
+	            mode: CBC,
+	            padding: Pkcs7
+	        }),
+
+	        reset: function () {
+	            var modeCreator;
+
+	            // Reset cipher
+	            Cipher.reset.call(this);
+
+	            // Shortcuts
+	            var cfg = this.cfg;
+	            var iv = cfg.iv;
+	            var mode = cfg.mode;
+
+	            // Reset block mode
+	            if (this._xformMode == this._ENC_XFORM_MODE) {
+	                modeCreator = mode.createEncryptor;
+	            } else /* if (this._xformMode == this._DEC_XFORM_MODE) */ {
+	                modeCreator = mode.createDecryptor;
+	                // Keep at least one block in the buffer for unpadding
+	                this._minBufferSize = 1;
+	            }
+
+	            if (this._mode && this._mode.__creator == modeCreator) {
+	                this._mode.init(this, iv && iv.words);
+	            } else {
+	                this._mode = modeCreator.call(mode, this, iv && iv.words);
+	                this._mode.__creator = modeCreator;
+	            }
+	        },
+
+	        _doProcessBlock: function (words, offset) {
+	            this._mode.processBlock(words, offset);
+	        },
+
+	        _doFinalize: function () {
+	            var finalProcessedBlocks;
+
+	            // Shortcut
+	            var padding = this.cfg.padding;
+
+	            // Finalize
+	            if (this._xformMode == this._ENC_XFORM_MODE) {
+	                // Pad data
+	                padding.pad(this._data, this.blockSize);
+
+	                // Process final blocks
+	                finalProcessedBlocks = this._process(!!'flush');
+	            } else /* if (this._xformMode == this._DEC_XFORM_MODE) */ {
+	                // Process final blocks
+	                finalProcessedBlocks = this._process(!!'flush');
+
+	                // Unpad data
+	                padding.unpad(finalProcessedBlocks);
+	            }
+
+	            return finalProcessedBlocks;
+	        },
+
+	        blockSize: 128/32
+	    });
+
+	    /**
+	     * A collection of cipher parameters.
+	     *
+	     * @property {WordArray} ciphertext The raw ciphertext.
+	     * @property {WordArray} key The key to this ciphertext.
+	     * @property {WordArray} iv The IV used in the ciphering operation.
+	     * @property {WordArray} salt The salt used with a key derivation function.
+	     * @property {Cipher} algorithm The cipher algorithm.
+	     * @property {Mode} mode The block mode used in the ciphering operation.
+	     * @property {Padding} padding The padding scheme used in the ciphering operation.
+	     * @property {number} blockSize The block size of the cipher.
+	     * @property {Format} formatter The default formatting strategy to convert this cipher params object to a string.
+	     */
+	    var CipherParams = C_lib.CipherParams = Base.extend({
+	        /**
+	         * Initializes a newly created cipher params object.
+	         *
+	         * @param {Object} cipherParams An object with any of the possible cipher parameters.
+	         *
+	         * @example
+	         *
+	         *     var cipherParams = CryptoJS.lib.CipherParams.create({
+	         *         ciphertext: ciphertextWordArray,
+	         *         key: keyWordArray,
+	         *         iv: ivWordArray,
+	         *         salt: saltWordArray,
+	         *         algorithm: CryptoJS.algo.AES,
+	         *         mode: CryptoJS.mode.CBC,
+	         *         padding: CryptoJS.pad.PKCS7,
+	         *         blockSize: 4,
+	         *         formatter: CryptoJS.format.OpenSSL
+	         *     });
+	         */
+	        init: function (cipherParams) {
+	            this.mixIn(cipherParams);
+	        },
+
+	        /**
+	         * Converts this cipher params object to a string.
+	         *
+	         * @param {Format} formatter (Optional) The formatting strategy to use.
+	         *
+	         * @return {string} The stringified cipher params.
+	         *
+	         * @throws Error If neither the formatter nor the default formatter is set.
+	         *
+	         * @example
+	         *
+	         *     var string = cipherParams + '';
+	         *     var string = cipherParams.toString();
+	         *     var string = cipherParams.toString(CryptoJS.format.OpenSSL);
+	         */
+	        toString: function (formatter) {
+	            return (formatter || this.formatter).stringify(this);
+	        }
+	    });
+
+	    /**
+	     * Format namespace.
+	     */
+	    var C_format = C.format = {};
+
+	    /**
+	     * OpenSSL formatting strategy.
+	     */
+	    var OpenSSLFormatter = C_format.OpenSSL = {
+	        /**
+	         * Converts a cipher params object to an OpenSSL-compatible string.
+	         *
+	         * @param {CipherParams} cipherParams The cipher params object.
+	         *
+	         * @return {string} The OpenSSL-compatible string.
+	         *
+	         * @static
+	         *
+	         * @example
+	         *
+	         *     var openSSLString = CryptoJS.format.OpenSSL.stringify(cipherParams);
+	         */
+	        stringify: function (cipherParams) {
+	            var wordArray;
+
+	            // Shortcuts
+	            var ciphertext = cipherParams.ciphertext;
+	            var salt = cipherParams.salt;
+
+	            // Format
+	            if (salt) {
+	                wordArray = WordArray.create([0x53616c74, 0x65645f5f]).concat(salt).concat(ciphertext);
+	            } else {
+	                wordArray = ciphertext;
+	            }
+
+	            return wordArray.toString(Base64);
+	        },
+
+	        /**
+	         * Converts an OpenSSL-compatible string to a cipher params object.
+	         *
+	         * @param {string} openSSLStr The OpenSSL-compatible string.
+	         *
+	         * @return {CipherParams} The cipher params object.
+	         *
+	         * @static
+	         *
+	         * @example
+	         *
+	         *     var cipherParams = CryptoJS.format.OpenSSL.parse(openSSLString);
+	         */
+	        parse: function (openSSLStr) {
+	            var salt;
+
+	            // Parse base64
+	            var ciphertext = Base64.parse(openSSLStr);
+
+	            // Shortcut
+	            var ciphertextWords = ciphertext.words;
+
+	            // Test for salt
+	            if (ciphertextWords[0] == 0x53616c74 && ciphertextWords[1] == 0x65645f5f) {
+	                // Extract salt
+	                salt = WordArray.create(ciphertextWords.slice(2, 4));
+
+	                // Remove salt from ciphertext
+	                ciphertextWords.splice(0, 4);
+	                ciphertext.sigBytes -= 16;
+	            }
+
+	            return CipherParams.create({ ciphertext: ciphertext, salt: salt });
+	        }
+	    };
+
+	    /**
+	     * A cipher wrapper that returns ciphertext as a serializable cipher params object.
+	     */
+	    var SerializableCipher = C_lib.SerializableCipher = Base.extend({
+	        /**
+	         * Configuration options.
+	         *
+	         * @property {Formatter} format The formatting strategy to convert cipher param objects to and from a string. Default: OpenSSL
+	         */
+	        cfg: Base.extend({
+	            format: OpenSSLFormatter
+	        }),
+
+	        /**
+	         * Encrypts a message.
+	         *
+	         * @param {Cipher} cipher The cipher algorithm to use.
+	         * @param {WordArray|string} message The message to encrypt.
+	         * @param {WordArray} key The key.
+	         * @param {Object} cfg (Optional) The configuration options to use for this operation.
+	         *
+	         * @return {CipherParams} A cipher params object.
+	         *
+	         * @static
+	         *
+	         * @example
+	         *
+	         *     var ciphertextParams = CryptoJS.lib.SerializableCipher.encrypt(CryptoJS.algo.AES, message, key);
+	         *     var ciphertextParams = CryptoJS.lib.SerializableCipher.encrypt(CryptoJS.algo.AES, message, key, { iv: iv });
+	         *     var ciphertextParams = CryptoJS.lib.SerializableCipher.encrypt(CryptoJS.algo.AES, message, key, { iv: iv, format: CryptoJS.format.OpenSSL });
+	         */
+	        encrypt: function (cipher, message, key, cfg) {
+	            // Apply config defaults
+	            cfg = this.cfg.extend(cfg);
+
+	            // Encrypt
+	            var encryptor = cipher.createEncryptor(key, cfg);
+	            var ciphertext = encryptor.finalize(message);
+
+	            // Shortcut
+	            var cipherCfg = encryptor.cfg;
+
+	            // Create and return serializable cipher params
+	            return CipherParams.create({
+	                ciphertext: ciphertext,
+	                key: key,
+	                iv: cipherCfg.iv,
+	                algorithm: cipher,
+	                mode: cipherCfg.mode,
+	                padding: cipherCfg.padding,
+	                blockSize: cipher.blockSize,
+	                formatter: cfg.format
+	            });
+	        },
+
+	        /**
+	         * Decrypts serialized ciphertext.
+	         *
+	         * @param {Cipher} cipher The cipher algorithm to use.
+	         * @param {CipherParams|string} ciphertext The ciphertext to decrypt.
+	         * @param {WordArray} key The key.
+	         * @param {Object} cfg (Optional) The configuration options to use for this operation.
+	         *
+	         * @return {WordArray} The plaintext.
+	         *
+	         * @static
+	         *
+	         * @example
+	         *
+	         *     var plaintext = CryptoJS.lib.SerializableCipher.decrypt(CryptoJS.algo.AES, formattedCiphertext, key, { iv: iv, format: CryptoJS.format.OpenSSL });
+	         *     var plaintext = CryptoJS.lib.SerializableCipher.decrypt(CryptoJS.algo.AES, ciphertextParams, key, { iv: iv, format: CryptoJS.format.OpenSSL });
+	         */
+	        decrypt: function (cipher, ciphertext, key, cfg) {
+	            // Apply config defaults
+	            cfg = this.cfg.extend(cfg);
+
+	            // Convert string to CipherParams
+	            ciphertext = this._parse(ciphertext, cfg.format);
+
+	            // Decrypt
+	            var plaintext = cipher.createDecryptor(key, cfg).finalize(ciphertext.ciphertext);
+
+	            return plaintext;
+	        },
+
+	        /**
+	         * Converts serialized ciphertext to CipherParams,
+	         * else assumed CipherParams already and returns ciphertext unchanged.
+	         *
+	         * @param {CipherParams|string} ciphertext The ciphertext.
+	         * @param {Formatter} format The formatting strategy to use to parse serialized ciphertext.
+	         *
+	         * @return {CipherParams} The unserialized ciphertext.
+	         *
+	         * @static
+	         *
+	         * @example
+	         *
+	         *     var ciphertextParams = CryptoJS.lib.SerializableCipher._parse(ciphertextStringOrParams, format);
+	         */
+	        _parse: function (ciphertext, format) {
+	            if (typeof ciphertext == 'string') {
+	                return format.parse(ciphertext, this);
+	            } else {
+	                return ciphertext;
+	            }
+	        }
+	    });
+
+	    /**
+	     * Key derivation function namespace.
+	     */
+	    var C_kdf = C.kdf = {};
+
+	    /**
+	     * OpenSSL key derivation function.
+	     */
+	    var OpenSSLKdf = C_kdf.OpenSSL = {
+	        /**
+	         * Derives a key and IV from a password.
+	         *
+	         * @param {string} password The password to derive from.
+	         * @param {number} keySize The size in words of the key to generate.
+	         * @param {number} ivSize The size in words of the IV to generate.
+	         * @param {WordArray|string} salt (Optional) A 64-bit salt to use. If omitted, a salt will be generated randomly.
+	         *
+	         * @return {CipherParams} A cipher params object with the key, IV, and salt.
+	         *
+	         * @static
+	         *
+	         * @example
+	         *
+	         *     var derivedParams = CryptoJS.kdf.OpenSSL.execute('Password', 256/32, 128/32);
+	         *     var derivedParams = CryptoJS.kdf.OpenSSL.execute('Password', 256/32, 128/32, 'saltsalt');
+	         */
+	        execute: function (password, keySize, ivSize, salt) {
+	            // Generate random salt
+	            if (!salt) {
+	                salt = WordArray.random(64/8);
+	            }
+
+	            // Derive key and IV
+	            var key = EvpKDF.create({ keySize: keySize + ivSize }).compute(password, salt);
+
+	            // Separate key and IV
+	            var iv = WordArray.create(key.words.slice(keySize), ivSize * 4);
+	            key.sigBytes = keySize * 4;
+
+	            // Return params
+	            return CipherParams.create({ key: key, iv: iv, salt: salt });
+	        }
+	    };
+
+	    /**
+	     * A serializable cipher wrapper that derives the key from a password,
+	     * and returns ciphertext as a serializable cipher params object.
+	     */
+	    var PasswordBasedCipher = C_lib.PasswordBasedCipher = SerializableCipher.extend({
+	        /**
+	         * Configuration options.
+	         *
+	         * @property {KDF} kdf The key derivation function to use to generate a key and IV from a password. Default: OpenSSL
+	         */
+	        cfg: SerializableCipher.cfg.extend({
+	            kdf: OpenSSLKdf
+	        }),
+
+	        /**
+	         * Encrypts a message using a password.
+	         *
+	         * @param {Cipher} cipher The cipher algorithm to use.
+	         * @param {WordArray|string} message The message to encrypt.
+	         * @param {string} password The password.
+	         * @param {Object} cfg (Optional) The configuration options to use for this operation.
+	         *
+	         * @return {CipherParams} A cipher params object.
+	         *
+	         * @static
+	         *
+	         * @example
+	         *
+	         *     var ciphertextParams = CryptoJS.lib.PasswordBasedCipher.encrypt(CryptoJS.algo.AES, message, 'password');
+	         *     var ciphertextParams = CryptoJS.lib.PasswordBasedCipher.encrypt(CryptoJS.algo.AES, message, 'password', { format: CryptoJS.format.OpenSSL });
+	         */
+	        encrypt: function (cipher, message, password, cfg) {
+	            // Apply config defaults
+	            cfg = this.cfg.extend(cfg);
+
+	            // Derive key and other params
+	            var derivedParams = cfg.kdf.execute(password, cipher.keySize, cipher.ivSize);
+
+	            // Add IV to config
+	            cfg.iv = derivedParams.iv;
+
+	            // Encrypt
+	            var ciphertext = SerializableCipher.encrypt.call(this, cipher, message, derivedParams.key, cfg);
+
+	            // Mix in derived params
+	            ciphertext.mixIn(derivedParams);
+
+	            return ciphertext;
+	        },
+
+	        /**
+	         * Decrypts serialized ciphertext using a password.
+	         *
+	         * @param {Cipher} cipher The cipher algorithm to use.
+	         * @param {CipherParams|string} ciphertext The ciphertext to decrypt.
+	         * @param {string} password The password.
+	         * @param {Object} cfg (Optional) The configuration options to use for this operation.
+	         *
+	         * @return {WordArray} The plaintext.
+	         *
+	         * @static
+	         *
+	         * @example
+	         *
+	         *     var plaintext = CryptoJS.lib.PasswordBasedCipher.decrypt(CryptoJS.algo.AES, formattedCiphertext, 'password', { format: CryptoJS.format.OpenSSL });
+	         *     var plaintext = CryptoJS.lib.PasswordBasedCipher.decrypt(CryptoJS.algo.AES, ciphertextParams, 'password', { format: CryptoJS.format.OpenSSL });
+	         */
+	        decrypt: function (cipher, ciphertext, password, cfg) {
+	            // Apply config defaults
+	            cfg = this.cfg.extend(cfg);
+
+	            // Convert string to CipherParams
+	            ciphertext = this._parse(ciphertext, cfg.format);
+
+	            // Derive key and other params
+	            var derivedParams = cfg.kdf.execute(password, cipher.keySize, cipher.ivSize, ciphertext.salt);
+
+	            // Add IV to config
+	            cfg.iv = derivedParams.iv;
+
+	            // Decrypt
+	            var plaintext = SerializableCipher.decrypt.call(this, cipher, ciphertext, derivedParams.key, cfg);
+
+	            return plaintext;
+	        }
+	    });
+	}());
+
+
+	/**
+	 * Cipher Feedback block mode.
+	 */
+	CryptoJS.mode.CFB = (function () {
+	    var CFB = CryptoJS.lib.BlockCipherMode.extend();
+
+	    CFB.Encryptor = CFB.extend({
+	        processBlock: function (words, offset) {
+	            // Shortcuts
+	            var cipher = this._cipher;
+	            var blockSize = cipher.blockSize;
+
+	            generateKeystreamAndEncrypt.call(this, words, offset, blockSize, cipher);
+
+	            // Remember this block to use with next block
+	            this._prevBlock = words.slice(offset, offset + blockSize);
+	        }
+	    });
+
+	    CFB.Decryptor = CFB.extend({
+	        processBlock: function (words, offset) {
+	            // Shortcuts
+	            var cipher = this._cipher;
+	            var blockSize = cipher.blockSize;
+
+	            // Remember this block to use with next block
+	            var thisBlock = words.slice(offset, offset + blockSize);
+
+	            generateKeystreamAndEncrypt.call(this, words, offset, blockSize, cipher);
+
+	            // This block becomes the previous block
+	            this._prevBlock = thisBlock;
+	        }
+	    });
+
+	    function generateKeystreamAndEncrypt(words, offset, blockSize, cipher) {
+	        var keystream;
+
+	        // Shortcut
+	        var iv = this._iv;
+
+	        // Generate keystream
+	        if (iv) {
+	            keystream = iv.slice(0);
+
+	            // Remove IV for subsequent blocks
+	            this._iv = undefined;
+	        } else {
+	            keystream = this._prevBlock;
+	        }
+	        cipher.encryptBlock(keystream, 0);
+
+	        // Encrypt
+	        for (var i = 0; i < blockSize; i++) {
+	            words[offset + i] ^= keystream[i];
+	        }
+	    }
+
+	    return CFB;
+	}());
+
+
+	/**
+	 * Counter block mode.
+	 */
+	CryptoJS.mode.CTR = (function () {
+	    var CTR = CryptoJS.lib.BlockCipherMode.extend();
+
+	    var Encryptor = CTR.Encryptor = CTR.extend({
+	        processBlock: function (words, offset) {
+	            // Shortcuts
+	            var cipher = this._cipher
+	            var blockSize = cipher.blockSize;
+	            var iv = this._iv;
+	            var counter = this._counter;
+
+	            // Generate keystream
+	            if (iv) {
+	                counter = this._counter = iv.slice(0);
+
+	                // Remove IV for subsequent blocks
+	                this._iv = undefined;
+	            }
+	            var keystream = counter.slice(0);
+	            cipher.encryptBlock(keystream, 0);
+
+	            // Increment counter
+	            counter[blockSize - 1] = (counter[blockSize - 1] + 1) | 0
+
+	            // Encrypt
+	            for (var i = 0; i < blockSize; i++) {
+	                words[offset + i] ^= keystream[i];
+	            }
+	        }
+	    });
+
+	    CTR.Decryptor = Encryptor;
+
+	    return CTR;
+	}());
+
+
+	/** @preserve
+	 * Counter block mode compatible with  Dr Brian Gladman fileenc.c
+	 * derived from CryptoJS.mode.CTR
+	 * Jan Hruby jhruby.web@gmail.com
+	 */
+	CryptoJS.mode.CTRGladman = (function () {
+	    var CTRGladman = CryptoJS.lib.BlockCipherMode.extend();
+
+		function incWord(word)
+		{
+			if (((word >> 24) & 0xff) === 0xff) { //overflow
+			var b1 = (word >> 16)&0xff;
+			var b2 = (word >> 8)&0xff;
+			var b3 = word & 0xff;
+
+			if (b1 === 0xff) // overflow b1
+			{
+			b1 = 0;
+			if (b2 === 0xff)
+			{
+				b2 = 0;
+				if (b3 === 0xff)
+				{
+					b3 = 0;
+				}
+				else
+				{
+					++b3;
+				}
+			}
+			else
+			{
+				++b2;
+			}
+			}
+			else
+			{
+			++b1;
+			}
+
+			word = 0;
+			word += (b1 << 16);
+			word += (b2 << 8);
+			word += b3;
+			}
+			else
+			{
+			word += (0x01 << 24);
+			}
+			return word;
+		}
+
+		function incCounter(counter)
+		{
+			if ((counter[0] = incWord(counter[0])) === 0)
+			{
+				// encr_data in fileenc.c from  Dr Brian Gladman's counts only with DWORD j < 8
+				counter[1] = incWord(counter[1]);
+			}
+			return counter;
+		}
+
+	    var Encryptor = CTRGladman.Encryptor = CTRGladman.extend({
+	        processBlock: function (words, offset) {
+	            // Shortcuts
+	            var cipher = this._cipher
+	            var blockSize = cipher.blockSize;
+	            var iv = this._iv;
+	            var counter = this._counter;
+
+	            // Generate keystream
+	            if (iv) {
+	                counter = this._counter = iv.slice(0);
+
+	                // Remove IV for subsequent blocks
+	                this._iv = undefined;
+	            }
+
+				incCounter(counter);
+
+				var keystream = counter.slice(0);
+	            cipher.encryptBlock(keystream, 0);
+
+	            // Encrypt
+	            for (var i = 0; i < blockSize; i++) {
+	                words[offset + i] ^= keystream[i];
+	            }
+	        }
+	    });
+
+	    CTRGladman.Decryptor = Encryptor;
+
+	    return CTRGladman;
+	}());
+
+
+
+
+	/**
+	 * Output Feedback block mode.
+	 */
+	CryptoJS.mode.OFB = (function () {
+	    var OFB = CryptoJS.lib.BlockCipherMode.extend();
+
+	    var Encryptor = OFB.Encryptor = OFB.extend({
+	        processBlock: function (words, offset) {
+	            // Shortcuts
+	            var cipher = this._cipher
+	            var blockSize = cipher.blockSize;
+	            var iv = this._iv;
+	            var keystream = this._keystream;
+
+	            // Generate keystream
+	            if (iv) {
+	                keystream = this._keystream = iv.slice(0);
+
+	                // Remove IV for subsequent blocks
+	                this._iv = undefined;
+	            }
+	            cipher.encryptBlock(keystream, 0);
+
+	            // Encrypt
+	            for (var i = 0; i < blockSize; i++) {
+	                words[offset + i] ^= keystream[i];
+	            }
+	        }
+	    });
+
+	    OFB.Decryptor = Encryptor;
+
+	    return OFB;
+	}());
+
+
+	/**
+	 * Electronic Codebook block mode.
+	 */
+	CryptoJS.mode.ECB = (function () {
+	    var ECB = CryptoJS.lib.BlockCipherMode.extend();
+
+	    ECB.Encryptor = ECB.extend({
+	        processBlock: function (words, offset) {
+	            this._cipher.encryptBlock(words, offset);
+	        }
+	    });
+
+	    ECB.Decryptor = ECB.extend({
+	        processBlock: function (words, offset) {
+	            this._cipher.decryptBlock(words, offset);
+	        }
+	    });
+
+	    return ECB;
+	}());
+
+
+	/**
+	 * ANSI X.923 padding strategy.
+	 */
+	CryptoJS.pad.AnsiX923 = {
+	    pad: function (data, blockSize) {
+	        // Shortcuts
+	        var dataSigBytes = data.sigBytes;
+	        var blockSizeBytes = blockSize * 4;
+
+	        // Count padding bytes
+	        var nPaddingBytes = blockSizeBytes - dataSigBytes % blockSizeBytes;
+
+	        // Compute last byte position
+	        var lastBytePos = dataSigBytes + nPaddingBytes - 1;
+
+	        // Pad
+	        data.clamp();
+	        data.words[lastBytePos >>> 2] |= nPaddingBytes << (24 - (lastBytePos % 4) * 8);
+	        data.sigBytes += nPaddingBytes;
+	    },
+
+	    unpad: function (data) {
+	        // Get number of padding bytes from last byte
+	        var nPaddingBytes = data.words[(data.sigBytes - 1) >>> 2] & 0xff;
+
+	        // Remove padding
+	        data.sigBytes -= nPaddingBytes;
+	    }
+	};
+
+
+	/**
+	 * ISO 10126 padding strategy.
+	 */
+	CryptoJS.pad.Iso10126 = {
+	    pad: function (data, blockSize) {
+	        // Shortcut
+	        var blockSizeBytes = blockSize * 4;
+
+	        // Count padding bytes
+	        var nPaddingBytes = blockSizeBytes - data.sigBytes % blockSizeBytes;
+
+	        // Pad
+	        data.concat(CryptoJS.lib.WordArray.random(nPaddingBytes - 1)).
+	             concat(CryptoJS.lib.WordArray.create([nPaddingBytes << 24], 1));
+	    },
+
+	    unpad: function (data) {
+	        // Get number of padding bytes from last byte
+	        var nPaddingBytes = data.words[(data.sigBytes - 1) >>> 2] & 0xff;
+
+	        // Remove padding
+	        data.sigBytes -= nPaddingBytes;
+	    }
+	};
+
+
+	/**
+	 * ISO/IEC 9797-1 Padding Method 2.
+	 */
+	CryptoJS.pad.Iso97971 = {
+	    pad: function (data, blockSize) {
+	        // Add 0x80 byte
+	        data.concat(CryptoJS.lib.WordArray.create([0x80000000], 1));
+
+	        // Zero pad the rest
+	        CryptoJS.pad.ZeroPadding.pad(data, blockSize);
+	    },
+
+	    unpad: function (data) {
+	        // Remove zero padding
+	        CryptoJS.pad.ZeroPadding.unpad(data);
+
+	        // Remove one more byte -- the 0x80 byte
+	        data.sigBytes--;
+	    }
+	};
+
+
+	/**
+	 * Zero padding strategy.
+	 */
+	CryptoJS.pad.ZeroPadding = {
+	    pad: function (data, blockSize) {
+	        // Shortcut
+	        var blockSizeBytes = blockSize * 4;
+
+	        // Pad
+	        data.clamp();
+	        data.sigBytes += blockSizeBytes - ((data.sigBytes % blockSizeBytes) || blockSizeBytes);
+	    },
+
+	    unpad: function (data) {
+	        // Shortcut
+	        var dataWords = data.words;
+
+	        // Unpad
+	        var i = data.sigBytes - 1;
+	        for (var i = data.sigBytes - 1; i >= 0; i--) {
+	            if (((dataWords[i >>> 2] >>> (24 - (i % 4) * 8)) & 0xff)) {
+	                data.sigBytes = i + 1;
+	                break;
+	            }
+	        }
+	    }
+	};
+
+
+	/**
+	 * A noop padding strategy.
+	 */
+	CryptoJS.pad.NoPadding = {
+	    pad: function () {
+	    },
+
+	    unpad: function () {
+	    }
+	};
+
+
+	(function (undefined) {
+	    // Shortcuts
+	    var C = CryptoJS;
+	    var C_lib = C.lib;
+	    var CipherParams = C_lib.CipherParams;
+	    var C_enc = C.enc;
+	    var Hex = C_enc.Hex;
+	    var C_format = C.format;
+
+	    var HexFormatter = C_format.Hex = {
+	        /**
+	         * Converts the ciphertext of a cipher params object to a hexadecimally encoded string.
+	         *
+	         * @param {CipherParams} cipherParams The cipher params object.
+	         *
+	         * @return {string} The hexadecimally encoded string.
+	         *
+	         * @static
+	         *
+	         * @example
+	         *
+	         *     var hexString = CryptoJS.format.Hex.stringify(cipherParams);
+	         */
+	        stringify: function (cipherParams) {
+	            return cipherParams.ciphertext.toString(Hex);
+	        },
+
+	        /**
+	         * Converts a hexadecimally encoded ciphertext string to a cipher params object.
+	         *
+	         * @param {string} input The hexadecimally encoded string.
+	         *
+	         * @return {CipherParams} The cipher params object.
+	         *
+	         * @static
+	         *
+	         * @example
+	         *
+	         *     var cipherParams = CryptoJS.format.Hex.parse(hexString);
+	         */
+	        parse: function (input) {
+	            var ciphertext = Hex.parse(input);
+	            return CipherParams.create({ ciphertext: ciphertext });
+	        }
+	    };
+	}());
+
+
+	(function () {
+	    // Shortcuts
+	    var C = CryptoJS;
+	    var C_lib = C.lib;
+	    var BlockCipher = C_lib.BlockCipher;
+	    var C_algo = C.algo;
+
+	    // Lookup tables
+	    var SBOX = [];
+	    var INV_SBOX = [];
+	    var SUB_MIX_0 = [];
+	    var SUB_MIX_1 = [];
+	    var SUB_MIX_2 = [];
+	    var SUB_MIX_3 = [];
+	    var INV_SUB_MIX_0 = [];
+	    var INV_SUB_MIX_1 = [];
+	    var INV_SUB_MIX_2 = [];
+	    var INV_SUB_MIX_3 = [];
+
+	    // Compute lookup tables
+	    (function () {
+	        // Compute double table
+	        var d = [];
+	        for (var i = 0; i < 256; i++) {
+	            if (i < 128) {
+	                d[i] = i << 1;
+	            } else {
+	                d[i] = (i << 1) ^ 0x11b;
+	            }
+	        }
+
+	        // Walk GF(2^8)
+	        var x = 0;
+	        var xi = 0;
+	        for (var i = 0; i < 256; i++) {
+	            // Compute sbox
+	            var sx = xi ^ (xi << 1) ^ (xi << 2) ^ (xi << 3) ^ (xi << 4);
+	            sx = (sx >>> 8) ^ (sx & 0xff) ^ 0x63;
+	            SBOX[x] = sx;
+	            INV_SBOX[sx] = x;
+
+	            // Compute multiplication
+	            var x2 = d[x];
+	            var x4 = d[x2];
+	            var x8 = d[x4];
+
+	            // Compute sub bytes, mix columns tables
+	            var t = (d[sx] * 0x101) ^ (sx * 0x1010100);
+	            SUB_MIX_0[x] = (t << 24) | (t >>> 8);
+	            SUB_MIX_1[x] = (t << 16) | (t >>> 16);
+	            SUB_MIX_2[x] = (t << 8)  | (t >>> 24);
+	            SUB_MIX_3[x] = t;
+
+	            // Compute inv sub bytes, inv mix columns tables
+	            var t = (x8 * 0x1010101) ^ (x4 * 0x10001) ^ (x2 * 0x101) ^ (x * 0x1010100);
+	            INV_SUB_MIX_0[sx] = (t << 24) | (t >>> 8);
+	            INV_SUB_MIX_1[sx] = (t << 16) | (t >>> 16);
+	            INV_SUB_MIX_2[sx] = (t << 8)  | (t >>> 24);
+	            INV_SUB_MIX_3[sx] = t;
+
+	            // Compute next counter
+	            if (!x) {
+	                x = xi = 1;
+	            } else {
+	                x = x2 ^ d[d[d[x8 ^ x2]]];
+	                xi ^= d[d[xi]];
+	            }
+	        }
+	    }());
+
+	    // Precomputed Rcon lookup
+	    var RCON = [0x00, 0x01, 0x02, 0x04, 0x08, 0x10, 0x20, 0x40, 0x80, 0x1b, 0x36];
+
+	    /**
+	     * AES block cipher algorithm.
+	     */
+	    var AES = C_algo.AES = BlockCipher.extend({
+	        _doReset: function () {
+	            var t;
+
+	            // Skip reset of nRounds has been set before and key did not change
+	            if (this._nRounds && this._keyPriorReset === this._key) {
+	                return;
+	            }
+
+	            // Shortcuts
+	            var key = this._keyPriorReset = this._key;
+	            var keyWords = key.words;
+	            var keySize = key.sigBytes / 4;
+
+	            // Compute number of rounds
+	            var nRounds = this._nRounds = keySize + 6;
+
+	            // Compute number of key schedule rows
+	            var ksRows = (nRounds + 1) * 4;
+
+	            // Compute key schedule
+	            var keySchedule = this._keySchedule = [];
+	            for (var ksRow = 0; ksRow < ksRows; ksRow++) {
+	                if (ksRow < keySize) {
+	                    keySchedule[ksRow] = keyWords[ksRow];
+	                } else {
+	                    t = keySchedule[ksRow - 1];
+
+	                    if (!(ksRow % keySize)) {
+	                        // Rot word
+	                        t = (t << 8) | (t >>> 24);
+
+	                        // Sub word
+	                        t = (SBOX[t >>> 24] << 24) | (SBOX[(t >>> 16) & 0xff] << 16) | (SBOX[(t >>> 8) & 0xff] << 8) | SBOX[t & 0xff];
+
+	                        // Mix Rcon
+	                        t ^= RCON[(ksRow / keySize) | 0] << 24;
+	                    } else if (keySize > 6 && ksRow % keySize == 4) {
+	                        // Sub word
+	                        t = (SBOX[t >>> 24] << 24) | (SBOX[(t >>> 16) & 0xff] << 16) | (SBOX[(t >>> 8) & 0xff] << 8) | SBOX[t & 0xff];
+	                    }
+
+	                    keySchedule[ksRow] = keySchedule[ksRow - keySize] ^ t;
+	                }
+	            }
+
+	            // Compute inv key schedule
+	            var invKeySchedule = this._invKeySchedule = [];
+	            for (var invKsRow = 0; invKsRow < ksRows; invKsRow++) {
+	                var ksRow = ksRows - invKsRow;
+
+	                if (invKsRow % 4) {
+	                    var t = keySchedule[ksRow];
+	                } else {
+	                    var t = keySchedule[ksRow - 4];
+	                }
+
+	                if (invKsRow < 4 || ksRow <= 4) {
+	                    invKeySchedule[invKsRow] = t;
+	                } else {
+	                    invKeySchedule[invKsRow] = INV_SUB_MIX_0[SBOX[t >>> 24]] ^ INV_SUB_MIX_1[SBOX[(t >>> 16) & 0xff]] ^
+	                                               INV_SUB_MIX_2[SBOX[(t >>> 8) & 0xff]] ^ INV_SUB_MIX_3[SBOX[t & 0xff]];
+	                }
+	            }
+	        },
+
+	        encryptBlock: function (M, offset) {
+	            this._doCryptBlock(M, offset, this._keySchedule, SUB_MIX_0, SUB_MIX_1, SUB_MIX_2, SUB_MIX_3, SBOX);
+	        },
+
+	        decryptBlock: function (M, offset) {
+	            // Swap 2nd and 4th rows
+	            var t = M[offset + 1];
+	            M[offset + 1] = M[offset + 3];
+	            M[offset + 3] = t;
+
+	            this._doCryptBlock(M, offset, this._invKeySchedule, INV_SUB_MIX_0, INV_SUB_MIX_1, INV_SUB_MIX_2, INV_SUB_MIX_3, INV_SBOX);
+
+	            // Inv swap 2nd and 4th rows
+	            var t = M[offset + 1];
+	            M[offset + 1] = M[offset + 3];
+	            M[offset + 3] = t;
+	        },
+
+	        _doCryptBlock: function (M, offset, keySchedule, SUB_MIX_0, SUB_MIX_1, SUB_MIX_2, SUB_MIX_3, SBOX) {
+	            // Shortcut
+	            var nRounds = this._nRounds;
+
+	            // Get input, add round key
+	            var s0 = M[offset]     ^ keySchedule[0];
+	            var s1 = M[offset + 1] ^ keySchedule[1];
+	            var s2 = M[offset + 2] ^ keySchedule[2];
+	            var s3 = M[offset + 3] ^ keySchedule[3];
+
+	            // Key schedule row counter
+	            var ksRow = 4;
+
+	            // Rounds
+	            for (var round = 1; round < nRounds; round++) {
+	                // Shift rows, sub bytes, mix columns, add round key
+	                var t0 = SUB_MIX_0[s0 >>> 24] ^ SUB_MIX_1[(s1 >>> 16) & 0xff] ^ SUB_MIX_2[(s2 >>> 8) & 0xff] ^ SUB_MIX_3[s3 & 0xff] ^ keySchedule[ksRow++];
+	                var t1 = SUB_MIX_0[s1 >>> 24] ^ SUB_MIX_1[(s2 >>> 16) & 0xff] ^ SUB_MIX_2[(s3 >>> 8) & 0xff] ^ SUB_MIX_3[s0 & 0xff] ^ keySchedule[ksRow++];
+	                var t2 = SUB_MIX_0[s2 >>> 24] ^ SUB_MIX_1[(s3 >>> 16) & 0xff] ^ SUB_MIX_2[(s0 >>> 8) & 0xff] ^ SUB_MIX_3[s1 & 0xff] ^ keySchedule[ksRow++];
+	                var t3 = SUB_MIX_0[s3 >>> 24] ^ SUB_MIX_1[(s0 >>> 16) & 0xff] ^ SUB_MIX_2[(s1 >>> 8) & 0xff] ^ SUB_MIX_3[s2 & 0xff] ^ keySchedule[ksRow++];
+
+	                // Update state
+	                s0 = t0;
+	                s1 = t1;
+	                s2 = t2;
+	                s3 = t3;
+	            }
+
+	            // Shift rows, sub bytes, add round key
+	            var t0 = ((SBOX[s0 >>> 24] << 24) | (SBOX[(s1 >>> 16) & 0xff] << 16) | (SBOX[(s2 >>> 8) & 0xff] << 8) | SBOX[s3 & 0xff]) ^ keySchedule[ksRow++];
+	            var t1 = ((SBOX[s1 >>> 24] << 24) | (SBOX[(s2 >>> 16) & 0xff] << 16) | (SBOX[(s3 >>> 8) & 0xff] << 8) | SBOX[s0 & 0xff]) ^ keySchedule[ksRow++];
+	            var t2 = ((SBOX[s2 >>> 24] << 24) | (SBOX[(s3 >>> 16) & 0xff] << 16) | (SBOX[(s0 >>> 8) & 0xff] << 8) | SBOX[s1 & 0xff]) ^ keySchedule[ksRow++];
+	            var t3 = ((SBOX[s3 >>> 24] << 24) | (SBOX[(s0 >>> 16) & 0xff] << 16) | (SBOX[(s1 >>> 8) & 0xff] << 8) | SBOX[s2 & 0xff]) ^ keySchedule[ksRow++];
+
+	            // Set output
+	            M[offset]     = t0;
+	            M[offset + 1] = t1;
+	            M[offset + 2] = t2;
+	            M[offset + 3] = t3;
+	        },
+
+	        keySize: 256/32
+	    });
+
+	    /**
+	     * Shortcut functions to the cipher's object interface.
+	     *
+	     * @example
+	     *
+	     *     var ciphertext = CryptoJS.AES.encrypt(message, key, cfg);
+	     *     var plaintext  = CryptoJS.AES.decrypt(ciphertext, key, cfg);
+	     */
+	    C.AES = BlockCipher._createHelper(AES);
+	}());
+
+
+	(function () {
+	    // Shortcuts
+	    var C = CryptoJS;
+	    var C_lib = C.lib;
+	    var WordArray = C_lib.WordArray;
+	    var BlockCipher = C_lib.BlockCipher;
+	    var C_algo = C.algo;
+
+	    // Permuted Choice 1 constants
+	    var PC1 = [
+	        57, 49, 41, 33, 25, 17, 9,  1,
+	        58, 50, 42, 34, 26, 18, 10, 2,
+	        59, 51, 43, 35, 27, 19, 11, 3,
+	        60, 52, 44, 36, 63, 55, 47, 39,
+	        31, 23, 15, 7,  62, 54, 46, 38,
+	        30, 22, 14, 6,  61, 53, 45, 37,
+	        29, 21, 13, 5,  28, 20, 12, 4
+	    ];
+
+	    // Permuted Choice 2 constants
+	    var PC2 = [
+	        14, 17, 11, 24, 1,  5,
+	        3,  28, 15, 6,  21, 10,
+	        23, 19, 12, 4,  26, 8,
+	        16, 7,  27, 20, 13, 2,
+	        41, 52, 31, 37, 47, 55,
+	        30, 40, 51, 45, 33, 48,
+	        44, 49, 39, 56, 34, 53,
+	        46, 42, 50, 36, 29, 32
+	    ];
+
+	    // Cumulative bit shift constants
+	    var BIT_SHIFTS = [1,  2,  4,  6,  8,  10, 12, 14, 15, 17, 19, 21, 23, 25, 27, 28];
+
+	    // SBOXes and round permutation constants
+	    var SBOX_P = [
+	        {
+	            0x0: 0x808200,
+	            0x10000000: 0x8000,
+	            0x20000000: 0x808002,
+	            0x30000000: 0x2,
+	            0x40000000: 0x200,
+	            0x50000000: 0x808202,
+	            0x60000000: 0x800202,
+	            0x70000000: 0x800000,
+	            0x80000000: 0x202,
+	            0x90000000: 0x800200,
+	            0xa0000000: 0x8200,
+	            0xb0000000: 0x808000,
+	            0xc0000000: 0x8002,
+	            0xd0000000: 0x800002,
+	            0xe0000000: 0x0,
+	            0xf0000000: 0x8202,
+	            0x8000000: 0x0,
+	            0x18000000: 0x808202,
+	            0x28000000: 0x8202,
+	            0x38000000: 0x8000,
+	            0x48000000: 0x808200,
+	            0x58000000: 0x200,
+	            0x68000000: 0x808002,
+	            0x78000000: 0x2,
+	            0x88000000: 0x800200,
+	            0x98000000: 0x8200,
+	            0xa8000000: 0x808000,
+	            0xb8000000: 0x800202,
+	            0xc8000000: 0x800002,
+	            0xd8000000: 0x8002,
+	            0xe8000000: 0x202,
+	            0xf8000000: 0x800000,
+	            0x1: 0x8000,
+	            0x10000001: 0x2,
+	            0x20000001: 0x808200,
+	            0x30000001: 0x800000,
+	            0x40000001: 0x808002,
+	            0x50000001: 0x8200,
+	            0x60000001: 0x200,
+	            0x70000001: 0x800202,
+	            0x80000001: 0x808202,
+	            0x90000001: 0x808000,
+	            0xa0000001: 0x800002,
+	            0xb0000001: 0x8202,
+	            0xc0000001: 0x202,
+	            0xd0000001: 0x800200,
+	            0xe0000001: 0x8002,
+	            0xf0000001: 0x0,
+	            0x8000001: 0x808202,
+	            0x18000001: 0x808000,
+	            0x28000001: 0x800000,
+	            0x38000001: 0x200,
+	            0x48000001: 0x8000,
+	            0x58000001: 0x800002,
+	            0x68000001: 0x2,
+	            0x78000001: 0x8202,
+	            0x88000001: 0x8002,
+	            0x98000001: 0x800202,
+	            0xa8000001: 0x202,
+	            0xb8000001: 0x808200,
+	            0xc8000001: 0x800200,
+	            0xd8000001: 0x0,
+	            0xe8000001: 0x8200,
+	            0xf8000001: 0x808002
+	        },
+	        {
+	            0x0: 0x40084010,
+	            0x1000000: 0x4000,
+	            0x2000000: 0x80000,
+	            0x3000000: 0x40080010,
+	            0x4000000: 0x40000010,
+	            0x5000000: 0x40084000,
+	            0x6000000: 0x40004000,
+	            0x7000000: 0x10,
+	            0x8000000: 0x84000,
+	            0x9000000: 0x40004010,
+	            0xa000000: 0x40000000,
+	            0xb000000: 0x84010,
+	            0xc000000: 0x80010,
+	            0xd000000: 0x0,
+	            0xe000000: 0x4010,
+	            0xf000000: 0x40080000,
+	            0x800000: 0x40004000,
+	            0x1800000: 0x84010,
+	            0x2800000: 0x10,
+	            0x3800000: 0x40004010,
+	            0x4800000: 0x40084010,
+	            0x5800000: 0x40000000,
+	            0x6800000: 0x80000,
+	            0x7800000: 0x40080010,
+	            0x8800000: 0x80010,
+	            0x9800000: 0x0,
+	            0xa800000: 0x4000,
+	            0xb800000: 0x40080000,
+	            0xc800000: 0x40000010,
+	            0xd800000: 0x84000,
+	            0xe800000: 0x40084000,
+	            0xf800000: 0x4010,
+	            0x10000000: 0x0,
+	            0x11000000: 0x40080010,
+	            0x12000000: 0x40004010,
+	            0x13000000: 0x40084000,
+	            0x14000000: 0x40080000,
+	            0x15000000: 0x10,
+	            0x16000000: 0x84010,
+	            0x17000000: 0x4000,
+	            0x18000000: 0x4010,
+	            0x19000000: 0x80000,
+	            0x1a000000: 0x80010,
+	            0x1b000000: 0x40000010,
+	            0x1c000000: 0x84000,
+	            0x1d000000: 0x40004000,
+	            0x1e000000: 0x40000000,
+	            0x1f000000: 0x40084010,
+	            0x10800000: 0x84010,
+	            0x11800000: 0x80000,
+	            0x12800000: 0x40080000,
+	            0x13800000: 0x4000,
+	            0x14800000: 0x40004000,
+	            0x15800000: 0x40084010,
+	            0x16800000: 0x10,
+	            0x17800000: 0x40000000,
+	            0x18800000: 0x40084000,
+	            0x19800000: 0x40000010,
+	            0x1a800000: 0x40004010,
+	            0x1b800000: 0x80010,
+	            0x1c800000: 0x0,
+	            0x1d800000: 0x4010,
+	            0x1e800000: 0x40080010,
+	            0x1f800000: 0x84000
+	        },
+	        {
+	            0x0: 0x104,
+	            0x100000: 0x0,
+	            0x200000: 0x4000100,
+	            0x300000: 0x10104,
+	            0x400000: 0x10004,
+	            0x500000: 0x4000004,
+	            0x600000: 0x4010104,
+	            0x700000: 0x4010000,
+	            0x800000: 0x4000000,
+	            0x900000: 0x4010100,
+	            0xa00000: 0x10100,
+	            0xb00000: 0x4010004,
+	            0xc00000: 0x4000104,
+	            0xd00000: 0x10000,
+	            0xe00000: 0x4,
+	            0xf00000: 0x100,
+	            0x80000: 0x4010100,
+	            0x180000: 0x4010004,
+	            0x280000: 0x0,
+	            0x380000: 0x4000100,
+	            0x480000: 0x4000004,
+	            0x580000: 0x10000,
+	            0x680000: 0x10004,
+	            0x780000: 0x104,
+	            0x880000: 0x4,
+	            0x980000: 0x100,
+	            0xa80000: 0x4010000,
+	            0xb80000: 0x10104,
+	            0xc80000: 0x10100,
+	            0xd80000: 0x4000104,
+	            0xe80000: 0x4010104,
+	            0xf80000: 0x4000000,
+	            0x1000000: 0x4010100,
+	            0x1100000: 0x10004,
+	            0x1200000: 0x10000,
+	            0x1300000: 0x4000100,
+	            0x1400000: 0x100,
+	            0x1500000: 0x4010104,
+	            0x1600000: 0x4000004,
+	            0x1700000: 0x0,
+	            0x1800000: 0x4000104,
+	            0x1900000: 0x4000000,
+	            0x1a00000: 0x4,
+	            0x1b00000: 0x10100,
+	            0x1c00000: 0x4010000,
+	            0x1d00000: 0x104,
+	            0x1e00000: 0x10104,
+	            0x1f00000: 0x4010004,
+	            0x1080000: 0x4000000,
+	            0x1180000: 0x104,
+	            0x1280000: 0x4010100,
+	            0x1380000: 0x0,
+	            0x1480000: 0x10004,
+	            0x1580000: 0x4000100,
+	            0x1680000: 0x100,
+	            0x1780000: 0x4010004,
+	            0x1880000: 0x10000,
+	            0x1980000: 0x4010104,
+	            0x1a80000: 0x10104,
+	            0x1b80000: 0x4000004,
+	            0x1c80000: 0x4000104,
+	            0x1d80000: 0x4010000,
+	            0x1e80000: 0x4,
+	            0x1f80000: 0x10100
+	        },
+	        {
+	            0x0: 0x80401000,
+	            0x10000: 0x80001040,
+	            0x20000: 0x401040,
+	            0x30000: 0x80400000,
+	            0x40000: 0x0,
+	            0x50000: 0x401000,
+	            0x60000: 0x80000040,
+	            0x70000: 0x400040,
+	            0x80000: 0x80000000,
+	            0x90000: 0x400000,
+	            0xa0000: 0x40,
+	            0xb0000: 0x80001000,
+	            0xc0000: 0x80400040,
+	            0xd0000: 0x1040,
+	            0xe0000: 0x1000,
+	            0xf0000: 0x80401040,
+	            0x8000: 0x80001040,
+	            0x18000: 0x40,
+	            0x28000: 0x80400040,
+	            0x38000: 0x80001000,
+	            0x48000: 0x401000,
+	            0x58000: 0x80401040,
+	            0x68000: 0x0,
+	            0x78000: 0x80400000,
+	            0x88000: 0x1000,
+	            0x98000: 0x80401000,
+	            0xa8000: 0x400000,
+	            0xb8000: 0x1040,
+	            0xc8000: 0x80000000,
+	            0xd8000: 0x400040,
+	            0xe8000: 0x401040,
+	            0xf8000: 0x80000040,
+	            0x100000: 0x400040,
+	            0x110000: 0x401000,
+	            0x120000: 0x80000040,
+	            0x130000: 0x0,
+	            0x140000: 0x1040,
+	            0x150000: 0x80400040,
+	            0x160000: 0x80401000,
+	            0x170000: 0x80001040,
+	            0x180000: 0x80401040,
+	            0x190000: 0x80000000,
+	            0x1a0000: 0x80400000,
+	            0x1b0000: 0x401040,
+	            0x1c0000: 0x80001000,
+	            0x1d0000: 0x400000,
+	            0x1e0000: 0x40,
+	            0x1f0000: 0x1000,
+	            0x108000: 0x80400000,
+	            0x118000: 0x80401040,
+	            0x128000: 0x0,
+	            0x138000: 0x401000,
+	            0x148000: 0x400040,
+	            0x158000: 0x80000000,
+	            0x168000: 0x80001040,
+	            0x178000: 0x40,
+	            0x188000: 0x80000040,
+	            0x198000: 0x1000,
+	            0x1a8000: 0x80001000,
+	            0x1b8000: 0x80400040,
+	            0x1c8000: 0x1040,
+	            0x1d8000: 0x80401000,
+	            0x1e8000: 0x400000,
+	            0x1f8000: 0x401040
+	        },
+	        {
+	            0x0: 0x80,
+	            0x1000: 0x1040000,
+	            0x2000: 0x40000,
+	            0x3000: 0x20000000,
+	            0x4000: 0x20040080,
+	            0x5000: 0x1000080,
+	            0x6000: 0x21000080,
+	            0x7000: 0x40080,
+	            0x8000: 0x1000000,
+	            0x9000: 0x20040000,
+	            0xa000: 0x20000080,
+	            0xb000: 0x21040080,
+	            0xc000: 0x21040000,
+	            0xd000: 0x0,
+	            0xe000: 0x1040080,
+	            0xf000: 0x21000000,
+	            0x800: 0x1040080,
+	            0x1800: 0x21000080,
+	            0x2800: 0x80,
+	            0x3800: 0x1040000,
+	            0x4800: 0x40000,
+	            0x5800: 0x20040080,
+	            0x6800: 0x21040000,
+	            0x7800: 0x20000000,
+	            0x8800: 0x20040000,
+	            0x9800: 0x0,
+	            0xa800: 0x21040080,
+	            0xb800: 0x1000080,
+	            0xc800: 0x20000080,
+	            0xd800: 0x21000000,
+	            0xe800: 0x1000000,
+	            0xf800: 0x40080,
+	            0x10000: 0x40000,
+	            0x11000: 0x80,
+	            0x12000: 0x20000000,
+	            0x13000: 0x21000080,
+	            0x14000: 0x1000080,
+	            0x15000: 0x21040000,
+	            0x16000: 0x20040080,
+	            0x17000: 0x1000000,
+	            0x18000: 0x21040080,
+	            0x19000: 0x21000000,
+	            0x1a000: 0x1040000,
+	            0x1b000: 0x20040000,
+	            0x1c000: 0x40080,
+	            0x1d000: 0x20000080,
+	            0x1e000: 0x0,
+	            0x1f000: 0x1040080,
+	            0x10800: 0x21000080,
+	            0x11800: 0x1000000,
+	            0x12800: 0x1040000,
+	            0x13800: 0x20040080,
+	            0x14800: 0x20000000,
+	            0x15800: 0x1040080,
+	            0x16800: 0x80,
+	            0x17800: 0x21040000,
+	            0x18800: 0x40080,
+	            0x19800: 0x21040080,
+	            0x1a800: 0x0,
+	            0x1b800: 0x21000000,
+	            0x1c800: 0x1000080,
+	            0x1d800: 0x40000,
+	            0x1e800: 0x20040000,
+	            0x1f800: 0x20000080
+	        },
+	        {
+	            0x0: 0x10000008,
+	            0x100: 0x2000,
+	            0x200: 0x10200000,
+	            0x300: 0x10202008,
+	            0x400: 0x10002000,
+	            0x500: 0x200000,
+	            0x600: 0x200008,
+	            0x700: 0x10000000,
+	            0x800: 0x0,
+	            0x900: 0x10002008,
+	            0xa00: 0x202000,
+	            0xb00: 0x8,
+	            0xc00: 0x10200008,
+	            0xd00: 0x202008,
+	            0xe00: 0x2008,
+	            0xf00: 0x10202000,
+	            0x80: 0x10200000,
+	            0x180: 0x10202008,
+	            0x280: 0x8,
+	            0x380: 0x200000,
+	            0x480: 0x202008,
+	            0x580: 0x10000008,
+	            0x680: 0x10002000,
+	            0x780: 0x2008,
+	            0x880: 0x200008,
+	            0x980: 0x2000,
+	            0xa80: 0x10002008,
+	            0xb80: 0x10200008,
+	            0xc80: 0x0,
+	            0xd80: 0x10202000,
+	            0xe80: 0x202000,
+	            0xf80: 0x10000000,
+	            0x1000: 0x10002000,
+	            0x1100: 0x10200008,
+	            0x1200: 0x10202008,
+	            0x1300: 0x2008,
+	            0x1400: 0x200000,
+	            0x1500: 0x10000000,
+	            0x1600: 0x10000008,
+	            0x1700: 0x202000,
+	            0x1800: 0x202008,
+	            0x1900: 0x0,
+	            0x1a00: 0x8,
+	            0x1b00: 0x10200000,
+	            0x1c00: 0x2000,
+	            0x1d00: 0x10002008,
+	            0x1e00: 0x10202000,
+	            0x1f00: 0x200008,
+	            0x1080: 0x8,
+	            0x1180: 0x202000,
+	            0x1280: 0x200000,
+	            0x1380: 0x10000008,
+	            0x1480: 0x10002000,
+	            0x1580: 0x2008,
+	            0x1680: 0x10202008,
+	            0x1780: 0x10200000,
+	            0x1880: 0x10202000,
+	            0x1980: 0x10200008,
+	            0x1a80: 0x2000,
+	            0x1b80: 0x202008,
+	            0x1c80: 0x200008,
+	            0x1d80: 0x0,
+	            0x1e80: 0x10000000,
+	            0x1f80: 0x10002008
+	        },
+	        {
+	            0x0: 0x100000,
+	            0x10: 0x2000401,
+	            0x20: 0x400,
+	            0x30: 0x100401,
+	            0x40: 0x2100401,
+	            0x50: 0x0,
+	            0x60: 0x1,
+	            0x70: 0x2100001,
+	            0x80: 0x2000400,
+	            0x90: 0x100001,
+	            0xa0: 0x2000001,
+	            0xb0: 0x2100400,
+	            0xc0: 0x2100000,
+	            0xd0: 0x401,
+	            0xe0: 0x100400,
+	            0xf0: 0x2000000,
+	            0x8: 0x2100001,
+	            0x18: 0x0,
+	            0x28: 0x2000401,
+	            0x38: 0x2100400,
+	            0x48: 0x100000,
+	            0x58: 0x2000001,
+	            0x68: 0x2000000,
+	            0x78: 0x401,
+	            0x88: 0x100401,
+	            0x98: 0x2000400,
+	            0xa8: 0x2100000,
+	            0xb8: 0x100001,
+	            0xc8: 0x400,
+	            0xd8: 0x2100401,
+	            0xe8: 0x1,
+	            0xf8: 0x100400,
+	            0x100: 0x2000000,
+	            0x110: 0x100000,
+	            0x120: 0x2000401,
+	            0x130: 0x2100001,
+	            0x140: 0x100001,
+	            0x150: 0x2000400,
+	            0x160: 0x2100400,
+	            0x170: 0x100401,
+	            0x180: 0x401,
+	            0x190: 0x2100401,
+	            0x1a0: 0x100400,
+	            0x1b0: 0x1,
+	            0x1c0: 0x0,
+	            0x1d0: 0x2100000,
+	            0x1e0: 0x2000001,
+	            0x1f0: 0x400,
+	            0x108: 0x100400,
+	            0x118: 0x2000401,
+	            0x128: 0x2100001,
+	            0x138: 0x1,
+	            0x148: 0x2000000,
+	            0x158: 0x100000,
+	            0x168: 0x401,
+	            0x178: 0x2100400,
+	            0x188: 0x2000001,
+	            0x198: 0x2100000,
+	            0x1a8: 0x0,
+	            0x1b8: 0x2100401,
+	            0x1c8: 0x100401,
+	            0x1d8: 0x400,
+	            0x1e8: 0x2000400,
+	            0x1f8: 0x100001
+	        },
+	        {
+	            0x0: 0x8000820,
+	            0x1: 0x20000,
+	            0x2: 0x8000000,
+	            0x3: 0x20,
+	            0x4: 0x20020,
+	            0x5: 0x8020820,
+	            0x6: 0x8020800,
+	            0x7: 0x800,
+	            0x8: 0x8020000,
+	            0x9: 0x8000800,
+	            0xa: 0x20800,
+	            0xb: 0x8020020,
+	            0xc: 0x820,
+	            0xd: 0x0,
+	            0xe: 0x8000020,
+	            0xf: 0x20820,
+	            0x80000000: 0x800,
+	            0x80000001: 0x8020820,
+	            0x80000002: 0x8000820,
+	            0x80000003: 0x8000000,
+	            0x80000004: 0x8020000,
+	            0x80000005: 0x20800,
+	            0x80000006: 0x20820,
+	            0x80000007: 0x20,
+	            0x80000008: 0x8000020,
+	            0x80000009: 0x820,
+	            0x8000000a: 0x20020,
+	            0x8000000b: 0x8020800,
+	            0x8000000c: 0x0,
+	            0x8000000d: 0x8020020,
+	            0x8000000e: 0x8000800,
+	            0x8000000f: 0x20000,
+	            0x10: 0x20820,
+	            0x11: 0x8020800,
+	            0x12: 0x20,
+	            0x13: 0x800,
+	            0x14: 0x8000800,
+	            0x15: 0x8000020,
+	            0x16: 0x8020020,
+	            0x17: 0x20000,
+	            0x18: 0x0,
+	            0x19: 0x20020,
+	            0x1a: 0x8020000,
+	            0x1b: 0x8000820,
+	            0x1c: 0x8020820,
+	            0x1d: 0x20800,
+	            0x1e: 0x820,
+	            0x1f: 0x8000000,
+	            0x80000010: 0x20000,
+	            0x80000011: 0x800,
+	            0x80000012: 0x8020020,
+	            0x80000013: 0x20820,
+	            0x80000014: 0x20,
+	            0x80000015: 0x8020000,
+	            0x80000016: 0x8000000,
+	            0x80000017: 0x8000820,
+	            0x80000018: 0x8020820,
+	            0x80000019: 0x8000020,
+	            0x8000001a: 0x8000800,
+	            0x8000001b: 0x0,
+	            0x8000001c: 0x20800,
+	            0x8000001d: 0x820,
+	            0x8000001e: 0x20020,
+	            0x8000001f: 0x8020800
+	        }
+	    ];
+
+	    // Masks that select the SBOX input
+	    var SBOX_MASK = [
+	        0xf8000001, 0x1f800000, 0x01f80000, 0x001f8000,
+	        0x0001f800, 0x00001f80, 0x000001f8, 0x8000001f
+	    ];
+
+	    /**
+	     * DES block cipher algorithm.
+	     */
+	    var DES = C_algo.DES = BlockCipher.extend({
+	        _doReset: function () {
+	            // Shortcuts
+	            var key = this._key;
+	            var keyWords = key.words;
+
+	            // Select 56 bits according to PC1
+	            var keyBits = [];
+	            for (var i = 0; i < 56; i++) {
+	                var keyBitPos = PC1[i] - 1;
+	                keyBits[i] = (keyWords[keyBitPos >>> 5] >>> (31 - keyBitPos % 32)) & 1;
+	            }
+
+	            // Assemble 16 subkeys
+	            var subKeys = this._subKeys = [];
+	            for (var nSubKey = 0; nSubKey < 16; nSubKey++) {
+	                // Create subkey
+	                var subKey = subKeys[nSubKey] = [];
+
+	                // Shortcut
+	                var bitShift = BIT_SHIFTS[nSubKey];
+
+	                // Select 48 bits according to PC2
+	                for (var i = 0; i < 24; i++) {
+	                    // Select from the left 28 key bits
+	                    subKey[(i / 6) | 0] |= keyBits[((PC2[i] - 1) + bitShift) % 28] << (31 - i % 6);
+
+	                    // Select from the right 28 key bits
+	                    subKey[4 + ((i / 6) | 0)] |= keyBits[28 + (((PC2[i + 24] - 1) + bitShift) % 28)] << (31 - i % 6);
+	                }
+
+	                // Since each subkey is applied to an expanded 32-bit input,
+	                // the subkey can be broken into 8 values scaled to 32-bits,
+	                // which allows the key to be used without expansion
+	                subKey[0] = (subKey[0] << 1) | (subKey[0] >>> 31);
+	                for (var i = 1; i < 7; i++) {
+	                    subKey[i] = subKey[i] >>> ((i - 1) * 4 + 3);
+	                }
+	                subKey[7] = (subKey[7] << 5) | (subKey[7] >>> 27);
+	            }
+
+	            // Compute inverse subkeys
+	            var invSubKeys = this._invSubKeys = [];
+	            for (var i = 0; i < 16; i++) {
+	                invSubKeys[i] = subKeys[15 - i];
+	            }
+	        },
+
+	        encryptBlock: function (M, offset) {
+	            this._doCryptBlock(M, offset, this._subKeys);
+	        },
+
+	        decryptBlock: function (M, offset) {
+	            this._doCryptBlock(M, offset, this._invSubKeys);
+	        },
+
+	        _doCryptBlock: function (M, offset, subKeys) {
+	            // Get input
+	            this._lBlock = M[offset];
+	            this._rBlock = M[offset + 1];
+
+	            // Initial permutation
+	            exchangeLR.call(this, 4,  0x0f0f0f0f);
+	            exchangeLR.call(this, 16, 0x0000ffff);
+	            exchangeRL.call(this, 2,  0x33333333);
+	            exchangeRL.call(this, 8,  0x00ff00ff);
+	            exchangeLR.call(this, 1,  0x55555555);
+
+	            // Rounds
+	            for (var round = 0; round < 16; round++) {
+	                // Shortcuts
+	                var subKey = subKeys[round];
+	                var lBlock = this._lBlock;
+	                var rBlock = this._rBlock;
+
+	                // Feistel function
+	                var f = 0;
+	                for (var i = 0; i < 8; i++) {
+	                    f |= SBOX_P[i][((rBlock ^ subKey[i]) & SBOX_MASK[i]) >>> 0];
+	                }
+	                this._lBlock = rBlock;
+	                this._rBlock = lBlock ^ f;
+	            }
+
+	            // Undo swap from last round
+	            var t = this._lBlock;
+	            this._lBlock = this._rBlock;
+	            this._rBlock = t;
+
+	            // Final permutation
+	            exchangeLR.call(this, 1,  0x55555555);
+	            exchangeRL.call(this, 8,  0x00ff00ff);
+	            exchangeRL.call(this, 2,  0x33333333);
+	            exchangeLR.call(this, 16, 0x0000ffff);
+	            exchangeLR.call(this, 4,  0x0f0f0f0f);
+
+	            // Set output
+	            M[offset] = this._lBlock;
+	            M[offset + 1] = this._rBlock;
+	        },
+
+	        keySize: 64/32,
+
+	        ivSize: 64/32,
+
+	        blockSize: 64/32
+	    });
+
+	    // Swap bits across the left and right words
+	    function exchangeLR(offset, mask) {
+	        var t = ((this._lBlock >>> offset) ^ this._rBlock) & mask;
+	        this._rBlock ^= t;
+	        this._lBlock ^= t << offset;
+	    }
+
+	    function exchangeRL(offset, mask) {
+	        var t = ((this._rBlock >>> offset) ^ this._lBlock) & mask;
+	        this._lBlock ^= t;
+	        this._rBlock ^= t << offset;
+	    }
+
+	    /**
+	     * Shortcut functions to the cipher's object interface.
+	     *
+	     * @example
+	     *
+	     *     var ciphertext = CryptoJS.DES.encrypt(message, key, cfg);
+	     *     var plaintext  = CryptoJS.DES.decrypt(ciphertext, key, cfg);
+	     */
+	    C.DES = BlockCipher._createHelper(DES);
+
+	    /**
+	     * Triple-DES block cipher algorithm.
+	     */
+	    var TripleDES = C_algo.TripleDES = BlockCipher.extend({
+	        _doReset: function () {
+	            // Shortcuts
+	            var key = this._key;
+	            var keyWords = key.words;
+	            // Make sure the key length is valid (64, 128 or >= 192 bit)
+	            if (keyWords.length !== 2 && keyWords.length !== 4 && keyWords.length < 6) {
+	                throw new Error('Invalid key length - 3DES requires the key length to be 64, 128, 192 or >192.');
+	            }
+
+	            // Extend the key according to the keying options defined in 3DES standard
+	            var key1 = keyWords.slice(0, 2);
+	            var key2 = keyWords.length < 4 ? keyWords.slice(0, 2) : keyWords.slice(2, 4);
+	            var key3 = keyWords.length < 6 ? keyWords.slice(0, 2) : keyWords.slice(4, 6);
+
+	            // Create DES instances
+	            this._des1 = DES.createEncryptor(WordArray.create(key1));
+	            this._des2 = DES.createEncryptor(WordArray.create(key2));
+	            this._des3 = DES.createEncryptor(WordArray.create(key3));
+	        },
+
+	        encryptBlock: function (M, offset) {
+	            this._des1.encryptBlock(M, offset);
+	            this._des2.decryptBlock(M, offset);
+	            this._des3.encryptBlock(M, offset);
+	        },
+
+	        decryptBlock: function (M, offset) {
+	            this._des3.decryptBlock(M, offset);
+	            this._des2.encryptBlock(M, offset);
+	            this._des1.decryptBlock(M, offset);
+	        },
+
+	        keySize: 192/32,
+
+	        ivSize: 64/32,
+
+	        blockSize: 64/32
+	    });
+
+	    /**
+	     * Shortcut functions to the cipher's object interface.
+	     *
+	     * @example
+	     *
+	     *     var ciphertext = CryptoJS.TripleDES.encrypt(message, key, cfg);
+	     *     var plaintext  = CryptoJS.TripleDES.decrypt(ciphertext, key, cfg);
+	     */
+	    C.TripleDES = BlockCipher._createHelper(TripleDES);
+	}());
+
+
+	(function () {
+	    // Shortcuts
+	    var C = CryptoJS;
+	    var C_lib = C.lib;
+	    var StreamCipher = C_lib.StreamCipher;
+	    var C_algo = C.algo;
+
+	    /**
+	     * RC4 stream cipher algorithm.
+	     */
+	    var RC4 = C_algo.RC4 = StreamCipher.extend({
+	        _doReset: function () {
+	            // Shortcuts
+	            var key = this._key;
+	            var keyWords = key.words;
+	            var keySigBytes = key.sigBytes;
+
+	            // Init sbox
+	            var S = this._S = [];
+	            for (var i = 0; i < 256; i++) {
+	                S[i] = i;
+	            }
+
+	            // Key setup
+	            for (var i = 0, j = 0; i < 256; i++) {
+	                var keyByteIndex = i % keySigBytes;
+	                var keyByte = (keyWords[keyByteIndex >>> 2] >>> (24 - (keyByteIndex % 4) * 8)) & 0xff;
+
+	                j = (j + S[i] + keyByte) % 256;
+
+	                // Swap
+	                var t = S[i];
+	                S[i] = S[j];
+	                S[j] = t;
+	            }
+
+	            // Counters
+	            this._i = this._j = 0;
+	        },
+
+	        _doProcessBlock: function (M, offset) {
+	            M[offset] ^= generateKeystreamWord.call(this);
+	        },
+
+	        keySize: 256/32,
+
+	        ivSize: 0
+	    });
+
+	    function generateKeystreamWord() {
+	        // Shortcuts
+	        var S = this._S;
+	        var i = this._i;
+	        var j = this._j;
+
+	        // Generate keystream word
+	        var keystreamWord = 0;
+	        for (var n = 0; n < 4; n++) {
+	            i = (i + 1) % 256;
+	            j = (j + S[i]) % 256;
+
+	            // Swap
+	            var t = S[i];
+	            S[i] = S[j];
+	            S[j] = t;
+
+	            keystreamWord |= S[(S[i] + S[j]) % 256] << (24 - n * 8);
+	        }
+
+	        // Update counters
+	        this._i = i;
+	        this._j = j;
+
+	        return keystreamWord;
+	    }
+
+	    /**
+	     * Shortcut functions to the cipher's object interface.
+	     *
+	     * @example
+	     *
+	     *     var ciphertext = CryptoJS.RC4.encrypt(message, key, cfg);
+	     *     var plaintext  = CryptoJS.RC4.decrypt(ciphertext, key, cfg);
+	     */
+	    C.RC4 = StreamCipher._createHelper(RC4);
+
+	    /**
+	     * Modified RC4 stream cipher algorithm.
+	     */
+	    var RC4Drop = C_algo.RC4Drop = RC4.extend({
+	        /**
+	         * Configuration options.
+	         *
+	         * @property {number} drop The number of keystream words to drop. Default 192
+	         */
+	        cfg: RC4.cfg.extend({
+	            drop: 192
+	        }),
+
+	        _doReset: function () {
+	            RC4._doReset.call(this);
+
+	            // Drop
+	            for (var i = this.cfg.drop; i > 0; i--) {
+	                generateKeystreamWord.call(this);
+	            }
+	        }
+	    });
+
+	    /**
+	     * Shortcut functions to the cipher's object interface.
+	     *
+	     * @example
+	     *
+	     *     var ciphertext = CryptoJS.RC4Drop.encrypt(message, key, cfg);
+	     *     var plaintext  = CryptoJS.RC4Drop.decrypt(ciphertext, key, cfg);
+	     */
+	    C.RC4Drop = StreamCipher._createHelper(RC4Drop);
+	}());
+
+
+	(function () {
+	    // Shortcuts
+	    var C = CryptoJS;
+	    var C_lib = C.lib;
+	    var StreamCipher = C_lib.StreamCipher;
+	    var C_algo = C.algo;
+
+	    // Reusable objects
+	    var S  = [];
+	    var C_ = [];
+	    var G  = [];
+
+	    /**
+	     * Rabbit stream cipher algorithm
+	     */
+	    var Rabbit = C_algo.Rabbit = StreamCipher.extend({
+	        _doReset: function () {
+	            // Shortcuts
+	            var K = this._key.words;
+	            var iv = this.cfg.iv;
+
+	            // Swap endian
+	            for (var i = 0; i < 4; i++) {
+	                K[i] = (((K[i] << 8)  | (K[i] >>> 24)) & 0x00ff00ff) |
+	                       (((K[i] << 24) | (K[i] >>> 8))  & 0xff00ff00);
+	            }
+
+	            // Generate initial state values
+	            var X = this._X = [
+	                K[0], (K[3] << 16) | (K[2] >>> 16),
+	                K[1], (K[0] << 16) | (K[3] >>> 16),
+	                K[2], (K[1] << 16) | (K[0] >>> 16),
+	                K[3], (K[2] << 16) | (K[1] >>> 16)
+	            ];
+
+	            // Generate initial counter values
+	            var C = this._C = [
+	                (K[2] << 16) | (K[2] >>> 16), (K[0] & 0xffff0000) | (K[1] & 0x0000ffff),
+	                (K[3] << 16) | (K[3] >>> 16), (K[1] & 0xffff0000) | (K[2] & 0x0000ffff),
+	                (K[0] << 16) | (K[0] >>> 16), (K[2] & 0xffff0000) | (K[3] & 0x0000ffff),
+	                (K[1] << 16) | (K[1] >>> 16), (K[3] & 0xffff0000) | (K[0] & 0x0000ffff)
+	            ];
+
+	            // Carry bit
+	            this._b = 0;
+
+	            // Iterate the system four times
+	            for (var i = 0; i < 4; i++) {
+	                nextState.call(this);
+	            }
+
+	            // Modify the counters
+	            for (var i = 0; i < 8; i++) {
+	                C[i] ^= X[(i + 4) & 7];
+	            }
+
+	            // IV setup
+	            if (iv) {
+	                // Shortcuts
+	                var IV = iv.words;
+	                var IV_0 = IV[0];
+	                var IV_1 = IV[1];
+
+	                // Generate four subvectors
+	                var i0 = (((IV_0 << 8) | (IV_0 >>> 24)) & 0x00ff00ff) | (((IV_0 << 24) | (IV_0 >>> 8)) & 0xff00ff00);
+	                var i2 = (((IV_1 << 8) | (IV_1 >>> 24)) & 0x00ff00ff) | (((IV_1 << 24) | (IV_1 >>> 8)) & 0xff00ff00);
+	                var i1 = (i0 >>> 16) | (i2 & 0xffff0000);
+	                var i3 = (i2 << 16)  | (i0 & 0x0000ffff);
+
+	                // Modify counter values
+	                C[0] ^= i0;
+	                C[1] ^= i1;
+	                C[2] ^= i2;
+	                C[3] ^= i3;
+	                C[4] ^= i0;
+	                C[5] ^= i1;
+	                C[6] ^= i2;
+	                C[7] ^= i3;
+
+	                // Iterate the system four times
+	                for (var i = 0; i < 4; i++) {
+	                    nextState.call(this);
+	                }
+	            }
+	        },
+
+	        _doProcessBlock: function (M, offset) {
+	            // Shortcut
+	            var X = this._X;
+
+	            // Iterate the system
+	            nextState.call(this);
+
+	            // Generate four keystream words
+	            S[0] = X[0] ^ (X[5] >>> 16) ^ (X[3] << 16);
+	            S[1] = X[2] ^ (X[7] >>> 16) ^ (X[5] << 16);
+	            S[2] = X[4] ^ (X[1] >>> 16) ^ (X[7] << 16);
+	            S[3] = X[6] ^ (X[3] >>> 16) ^ (X[1] << 16);
+
+	            for (var i = 0; i < 4; i++) {
+	                // Swap endian
+	                S[i] = (((S[i] << 8)  | (S[i] >>> 24)) & 0x00ff00ff) |
+	                       (((S[i] << 24) | (S[i] >>> 8))  & 0xff00ff00);
+
+	                // Encrypt
+	                M[offset + i] ^= S[i];
+	            }
+	        },
+
+	        blockSize: 128/32,
+
+	        ivSize: 64/32
+	    });
+
+	    function nextState() {
+	        // Shortcuts
+	        var X = this._X;
+	        var C = this._C;
+
+	        // Save old counter values
+	        for (var i = 0; i < 8; i++) {
+	            C_[i] = C[i];
+	        }
+
+	        // Calculate new counter values
+	        C[0] = (C[0] + 0x4d34d34d + this._b) | 0;
+	        C[1] = (C[1] + 0xd34d34d3 + ((C[0] >>> 0) < (C_[0] >>> 0) ? 1 : 0)) | 0;
+	        C[2] = (C[2] + 0x34d34d34 + ((C[1] >>> 0) < (C_[1] >>> 0) ? 1 : 0)) | 0;
+	        C[3] = (C[3] + 0x4d34d34d + ((C[2] >>> 0) < (C_[2] >>> 0) ? 1 : 0)) | 0;
+	        C[4] = (C[4] + 0xd34d34d3 + ((C[3] >>> 0) < (C_[3] >>> 0) ? 1 : 0)) | 0;
+	        C[5] = (C[5] + 0x34d34d34 + ((C[4] >>> 0) < (C_[4] >>> 0) ? 1 : 0)) | 0;
+	        C[6] = (C[6] + 0x4d34d34d + ((C[5] >>> 0) < (C_[5] >>> 0) ? 1 : 0)) | 0;
+	        C[7] = (C[7] + 0xd34d34d3 + ((C[6] >>> 0) < (C_[6] >>> 0) ? 1 : 0)) | 0;
+	        this._b = (C[7] >>> 0) < (C_[7] >>> 0) ? 1 : 0;
+
+	        // Calculate the g-values
+	        for (var i = 0; i < 8; i++) {
+	            var gx = X[i] + C[i];
+
+	            // Construct high and low argument for squaring
+	            var ga = gx & 0xffff;
+	            var gb = gx >>> 16;
+
+	            // Calculate high and low result of squaring
+	            var gh = ((((ga * ga) >>> 17) + ga * gb) >>> 15) + gb * gb;
+	            var gl = (((gx & 0xffff0000) * gx) | 0) + (((gx & 0x0000ffff) * gx) | 0);
+
+	            // High XOR low
+	            G[i] = gh ^ gl;
+	        }
+
+	        // Calculate new state values
+	        X[0] = (G[0] + ((G[7] << 16) | (G[7] >>> 16)) + ((G[6] << 16) | (G[6] >>> 16))) | 0;
+	        X[1] = (G[1] + ((G[0] << 8)  | (G[0] >>> 24)) + G[7]) | 0;
+	        X[2] = (G[2] + ((G[1] << 16) | (G[1] >>> 16)) + ((G[0] << 16) | (G[0] >>> 16))) | 0;
+	        X[3] = (G[3] + ((G[2] << 8)  | (G[2] >>> 24)) + G[1]) | 0;
+	        X[4] = (G[4] + ((G[3] << 16) | (G[3] >>> 16)) + ((G[2] << 16) | (G[2] >>> 16))) | 0;
+	        X[5] = (G[5] + ((G[4] << 8)  | (G[4] >>> 24)) + G[3]) | 0;
+	        X[6] = (G[6] + ((G[5] << 16) | (G[5] >>> 16)) + ((G[4] << 16) | (G[4] >>> 16))) | 0;
+	        X[7] = (G[7] + ((G[6] << 8)  | (G[6] >>> 24)) + G[5]) | 0;
+	    }
+
+	    /**
+	     * Shortcut functions to the cipher's object interface.
+	     *
+	     * @example
+	     *
+	     *     var ciphertext = CryptoJS.Rabbit.encrypt(message, key, cfg);
+	     *     var plaintext  = CryptoJS.Rabbit.decrypt(ciphertext, key, cfg);
+	     */
+	    C.Rabbit = StreamCipher._createHelper(Rabbit);
+	}());
+
+
+	(function () {
+	    // Shortcuts
+	    var C = CryptoJS;
+	    var C_lib = C.lib;
+	    var StreamCipher = C_lib.StreamCipher;
+	    var C_algo = C.algo;
+
+	    // Reusable objects
+	    var S  = [];
+	    var C_ = [];
+	    var G  = [];
+
+	    /**
+	     * Rabbit stream cipher algorithm.
+	     *
+	     * This is a legacy version that neglected to convert the key to little-endian.
+	     * This error doesn't affect the cipher's security,
+	     * but it does affect its compatibility with other implementations.
+	     */
+	    var RabbitLegacy = C_algo.RabbitLegacy = StreamCipher.extend({
+	        _doReset: function () {
+	            // Shortcuts
+	            var K = this._key.words;
+	            var iv = this.cfg.iv;
+
+	            // Generate initial state values
+	            var X = this._X = [
+	                K[0], (K[3] << 16) | (K[2] >>> 16),
+	                K[1], (K[0] << 16) | (K[3] >>> 16),
+	                K[2], (K[1] << 16) | (K[0] >>> 16),
+	                K[3], (K[2] << 16) | (K[1] >>> 16)
+	            ];
+
+	            // Generate initial counter values
+	            var C = this._C = [
+	                (K[2] << 16) | (K[2] >>> 16), (K[0] & 0xffff0000) | (K[1] & 0x0000ffff),
+	                (K[3] << 16) | (K[3] >>> 16), (K[1] & 0xffff0000) | (K[2] & 0x0000ffff),
+	                (K[0] << 16) | (K[0] >>> 16), (K[2] & 0xffff0000) | (K[3] & 0x0000ffff),
+	                (K[1] << 16) | (K[1] >>> 16), (K[3] & 0xffff0000) | (K[0] & 0x0000ffff)
+	            ];
+
+	            // Carry bit
+	            this._b = 0;
+
+	            // Iterate the system four times
+	            for (var i = 0; i < 4; i++) {
+	                nextState.call(this);
+	            }
+
+	            // Modify the counters
+	            for (var i = 0; i < 8; i++) {
+	                C[i] ^= X[(i + 4) & 7];
+	            }
+
+	            // IV setup
+	            if (iv) {
+	                // Shortcuts
+	                var IV = iv.words;
+	                var IV_0 = IV[0];
+	                var IV_1 = IV[1];
+
+	                // Generate four subvectors
+	                var i0 = (((IV_0 << 8) | (IV_0 >>> 24)) & 0x00ff00ff) | (((IV_0 << 24) | (IV_0 >>> 8)) & 0xff00ff00);
+	                var i2 = (((IV_1 << 8) | (IV_1 >>> 24)) & 0x00ff00ff) | (((IV_1 << 24) | (IV_1 >>> 8)) & 0xff00ff00);
+	                var i1 = (i0 >>> 16) | (i2 & 0xffff0000);
+	                var i3 = (i2 << 16)  | (i0 & 0x0000ffff);
+
+	                // Modify counter values
+	                C[0] ^= i0;
+	                C[1] ^= i1;
+	                C[2] ^= i2;
+	                C[3] ^= i3;
+	                C[4] ^= i0;
+	                C[5] ^= i1;
+	                C[6] ^= i2;
+	                C[7] ^= i3;
+
+	                // Iterate the system four times
+	                for (var i = 0; i < 4; i++) {
+	                    nextState.call(this);
+	                }
+	            }
+	        },
+
+	        _doProcessBlock: function (M, offset) {
+	            // Shortcut
+	            var X = this._X;
+
+	            // Iterate the system
+	            nextState.call(this);
+
+	            // Generate four keystream words
+	            S[0] = X[0] ^ (X[5] >>> 16) ^ (X[3] << 16);
+	            S[1] = X[2] ^ (X[7] >>> 16) ^ (X[5] << 16);
+	            S[2] = X[4] ^ (X[1] >>> 16) ^ (X[7] << 16);
+	            S[3] = X[6] ^ (X[3] >>> 16) ^ (X[1] << 16);
+
+	            for (var i = 0; i < 4; i++) {
+	                // Swap endian
+	                S[i] = (((S[i] << 8)  | (S[i] >>> 24)) & 0x00ff00ff) |
+	                       (((S[i] << 24) | (S[i] >>> 8))  & 0xff00ff00);
+
+	                // Encrypt
+	                M[offset + i] ^= S[i];
+	            }
+	        },
+
+	        blockSize: 128/32,
+
+	        ivSize: 64/32
+	    });
+
+	    function nextState() {
+	        // Shortcuts
+	        var X = this._X;
+	        var C = this._C;
+
+	        // Save old counter values
+	        for (var i = 0; i < 8; i++) {
+	            C_[i] = C[i];
+	        }
+
+	        // Calculate new counter values
+	        C[0] = (C[0] + 0x4d34d34d + this._b) | 0;
+	        C[1] = (C[1] + 0xd34d34d3 + ((C[0] >>> 0) < (C_[0] >>> 0) ? 1 : 0)) | 0;
+	        C[2] = (C[2] + 0x34d34d34 + ((C[1] >>> 0) < (C_[1] >>> 0) ? 1 : 0)) | 0;
+	        C[3] = (C[3] + 0x4d34d34d + ((C[2] >>> 0) < (C_[2] >>> 0) ? 1 : 0)) | 0;
+	        C[4] = (C[4] + 0xd34d34d3 + ((C[3] >>> 0) < (C_[3] >>> 0) ? 1 : 0)) | 0;
+	        C[5] = (C[5] + 0x34d34d34 + ((C[4] >>> 0) < (C_[4] >>> 0) ? 1 : 0)) | 0;
+	        C[6] = (C[6] + 0x4d34d34d + ((C[5] >>> 0) < (C_[5] >>> 0) ? 1 : 0)) | 0;
+	        C[7] = (C[7] + 0xd34d34d3 + ((C[6] >>> 0) < (C_[6] >>> 0) ? 1 : 0)) | 0;
+	        this._b = (C[7] >>> 0) < (C_[7] >>> 0) ? 1 : 0;
+
+	        // Calculate the g-values
+	        for (var i = 0; i < 8; i++) {
+	            var gx = X[i] + C[i];
+
+	            // Construct high and low argument for squaring
+	            var ga = gx & 0xffff;
+	            var gb = gx >>> 16;
+
+	            // Calculate high and low result of squaring
+	            var gh = ((((ga * ga) >>> 17) + ga * gb) >>> 15) + gb * gb;
+	            var gl = (((gx & 0xffff0000) * gx) | 0) + (((gx & 0x0000ffff) * gx) | 0);
+
+	            // High XOR low
+	            G[i] = gh ^ gl;
+	        }
+
+	        // Calculate new state values
+	        X[0] = (G[0] + ((G[7] << 16) | (G[7] >>> 16)) + ((G[6] << 16) | (G[6] >>> 16))) | 0;
+	        X[1] = (G[1] + ((G[0] << 8)  | (G[0] >>> 24)) + G[7]) | 0;
+	        X[2] = (G[2] + ((G[1] << 16) | (G[1] >>> 16)) + ((G[0] << 16) | (G[0] >>> 16))) | 0;
+	        X[3] = (G[3] + ((G[2] << 8)  | (G[2] >>> 24)) + G[1]) | 0;
+	        X[4] = (G[4] + ((G[3] << 16) | (G[3] >>> 16)) + ((G[2] << 16) | (G[2] >>> 16))) | 0;
+	        X[5] = (G[5] + ((G[4] << 8)  | (G[4] >>> 24)) + G[3]) | 0;
+	        X[6] = (G[6] + ((G[5] << 16) | (G[5] >>> 16)) + ((G[4] << 16) | (G[4] >>> 16))) | 0;
+	        X[7] = (G[7] + ((G[6] << 8)  | (G[6] >>> 24)) + G[5]) | 0;
+	    }
+
+	    /**
+	     * Shortcut functions to the cipher's object interface.
+	     *
+	     * @example
+	     *
+	     *     var ciphertext = CryptoJS.RabbitLegacy.encrypt(message, key, cfg);
+	     *     var plaintext  = CryptoJS.RabbitLegacy.decrypt(ciphertext, key, cfg);
+	     */
+	    C.RabbitLegacy = StreamCipher._createHelper(RabbitLegacy);
+	}());
+
+
+	return CryptoJS;
+
+}));
\ No newline at end of file
diff --git a/oxAuth/Server/src/main/webapp/js/crypto-js-4.1.1/docs/QuickStartGuide.wiki b/oxAuth/Server/src/main/webapp/js/crypto-js-4.1.1/docs/QuickStartGuide.wiki
new file mode 100644
index 00000000..2bee35d2
--- /dev/null
+++ b/oxAuth/Server/src/main/webapp/js/crypto-js-4.1.1/docs/QuickStartGuide.wiki
@@ -0,0 +1,470 @@
+<wiki:toc/>
+
+----
+
+= Quick-start Guide =
+
+== Hashers ==
+
+=== The Hasher Algorithms ===
+
+==== MD5 ====
+
+MD5 is a widely used hash function. It's been used in a variety of security applications and is also commonly used to check the integrity of files. Though, MD5 is not collision resistant, and it isn't suitable for applications like SSL certificates or digital signatures that rely on this property.
+
+{{{
+<script src="http://crypto-js.googlecode.com/svn/tags/3.1/build/rollups/md5.js"></script>
+<script>
+    var hash = CryptoJS.MD5("Message");
+</script>
+}}}
+
+==== SHA-1 ====
+
+The SHA hash functions were designed by the National Security Agency (NSA). SHA-1 is the most established of the existing SHA hash functions, and it's used in a variety of security applications and protocols. Though, SHA-1's collision resistance has been weakening as new attacks are discovered or improved.
+
+{{{
+<script src="http://crypto-js.googlecode.com/svn/tags/3.1/build/rollups/sha1.js"></script>
+<script>
+    var hash = CryptoJS.SHA1("Message");
+</script>
+}}}
+
+==== SHA-2 ====
+
+SHA-256 is one of the four variants in the SHA-2 set. It isn't as widely used as SHA-1, though it appears to provide much better security.
+
+{{{
+<script src="http://crypto-js.googlecode.com/svn/tags/3.1/build/rollups/sha256.js"></script>
+<script>
+    var hash = CryptoJS.SHA256("Message");
+</script>
+}}}
+
+SHA-512 is largely identical to SHA-256 but operates on 64-bit words rather than 32.
+
+{{{
+<script src="http://crypto-js.googlecode.com/svn/tags/3.1/build/rollups/sha512.js"></script>
+<script>
+    var hash = CryptoJS.SHA512("Message");
+</script>
+}}}
+
+CryptoJS also supports SHA-224 and SHA-384, which are largely identical but truncated versions of SHA-256 and SHA-512 respectively.
+
+==== SHA-3 ====
+
+SHA-3 is the winner of a five-year competition to select a new cryptographic hash algorithm where 64 competing designs were evaluated.
+
+{{{
+<script src="http://crypto-js.googlecode.com/svn/tags/3.1/build/rollups/sha3.js"></script>
+<script>
+    var hash = CryptoJS.SHA3("Message");
+</script>
+}}}
+
+SHA-3 can be configured to output hash lengths of one of 224, 256, 384, or 512 bits. The default is 512 bits.
+
+{{{
+<script src="http://crypto-js.googlecode.com/svn/tags/3.1/build/rollups/sha3.js"></script>
+<script>
+    var hash = CryptoJS.SHA3("Message", { outputLength: 512 });
+    var hash = CryptoJS.SHA3("Message", { outputLength: 384 });
+    var hash = CryptoJS.SHA3("Message", { outputLength: 256 });
+    var hash = CryptoJS.SHA3("Message", { outputLength: 224 });
+</script>
+}}}
+
+==== RIPEMD-160 ====
+
+{{{
+<script src="http://crypto-js.googlecode.com/svn/tags/3.1/build/rollups/ripemd160.js"></script>
+<script>
+    var hash = CryptoJS.RIPEMD160("Message");
+</script>
+}}}
+
+=== The Hasher Input ===
+
+The hash algorithms accept either strings or instances of CryptoJS.lib.WordArray. A WordArray object represents an array of 32-bit words. When you pass a string, it's automatically converted to a WordArray encoded as UTF-8.
+
+=== The Hasher Output ===
+
+The hash you get back isn't a string yet. It's a WordArray object. When you use a WordArray object in a string context, it's automatically converted to a hex string.
+
+{{{
+<script src="http://crypto-js.googlecode.com/svn/tags/3.1/build/rollups/sha256.js"></script>
+<script>
+    var hash = CryptoJS.SHA256("Message");
+
+    alert(typeof hash); // object
+
+    alert(hash); // 2f77668a9dfbf8d5848b9eeb4a7145ca94c6ed9236e4a773f6dcafa5132b2f91
+</script>
+}}}
+
+You can convert a WordArray object to other formats by explicitly calling the toString method and passing an encoder.
+
+{{{
+<script src="http://crypto-js.googlecode.com/svn/tags/3.1/build/rollups/sha256.js"></script>
+<script src="http://crypto-js.googlecode.com/svn/tags/3.1/build/components/enc-base64-min.js"></script>
+<script>
+    var hash = CryptoJS.SHA256("Message");
+
+    alert(hash.toString(CryptoJS.enc.Base64)); // L3dmip37+NWEi57rSnFFypTG7ZI25Kdz9tyvpRMrL5E=
+
+    alert(hash.toString(CryptoJS.enc.Latin1)); // /wf��ûøÕ���ëJqEÊ�Æí�6ä§söܯ¥+/�
+
+    alert(hash.toString(CryptoJS.enc.Hex)); // 2f77668a9dfbf8d5848b9eeb4a7145ca94c6ed9236e4a773f6dcafa5132b2f91
+</script>
+}}}
+
+=== Progressive Hashing ===
+
+{{{
+<script src="http://crypto-js.googlecode.com/svn/tags/3.1/build/rollups/sha256.js"></script>
+<script>
+    var sha256 = CryptoJS.algo.SHA256.create();
+
+    sha256.update("Message Part 1");
+    sha256.update("Message Part 2");
+    sha256.update("Message Part 3");
+
+    var hash = sha256.finalize();
+</script>
+}}}
+
+== HMAC ==
+
+Keyed-hash message authentication codes (HMAC) is a mechanism for message authentication using cryptographic hash functions.
+
+HMAC can be used in combination with any iterated cryptographic hash function.
+
+{{{
+<script src="http://crypto-js.googlecode.com/svn/tags/3.1/build/rollups/hmac-md5.js"></script>
+<script src="http://crypto-js.googlecode.com/svn/tags/3.1/build/rollups/hmac-sha1.js"></script>
+<script src="http://crypto-js.googlecode.com/svn/tags/3.1/build/rollups/hmac-sha256.js"></script>
+<script src="http://crypto-js.googlecode.com/svn/tags/3.1/build/rollups/hmac-sha512.js"></script>
+<script>
+    var hash = CryptoJS.HmacMD5("Message", "Secret Passphrase");
+    var hash = CryptoJS.HmacSHA1("Message", "Secret Passphrase");
+    var hash = CryptoJS.HmacSHA256("Message", "Secret Passphrase");
+    var hash = CryptoJS.HmacSHA512("Message", "Secret Passphrase");
+</script>
+}}}
+
+=== Progressive HMAC Hashing ===
+
+{{{
+<script src="http://crypto-js.googlecode.com/svn/tags/3.1/build/rollups/hmac-sha256.js"></script>
+<script>
+    var hmac = CryptoJS.algo.HMAC.create(CryptoJS.algo.SHA256, "Secret Passphrase");
+
+    hmac.update("Message Part 1");
+    hmac.update("Message Part 2");
+    hmac.update("Message Part 3");
+
+    var hash = hmac.finalize();
+</script>
+}}}
+
+== PBKDF2 ==
+
+PBKDF2 is a password-based key derivation function. In many applications of cryptography, user security is ultimately dependent on a password, and because a password usually can't be used directly as a cryptographic key, some processing is required.
+
+A salt provides a large set of keys for any given password, and an iteration count increases the cost of producing keys from a password, thereby also increasing the difficulty of attack.
+
+{{{
+<script src="http://crypto-js.googlecode.com/svn/tags/3.1/build/rollups/pbkdf2.js"></script>
+<script>
+    var salt = CryptoJS.lib.WordArray.random(128/8);
+
+    var key128Bits = CryptoJS.PBKDF2("Secret Passphrase", salt, { keySize: 128/32 });
+    var key256Bits = CryptoJS.PBKDF2("Secret Passphrase", salt, { keySize: 256/32 });
+    var key512Bits = CryptoJS.PBKDF2("Secret Passphrase", salt, { keySize: 512/32 });
+
+    var key512Bits1000Iterations = CryptoJS.PBKDF2("Secret Passphrase", salt, { keySize: 512/32, iterations: 1000 });
+</script>
+}}}
+
+== Ciphers ==
+
+=== The Cipher Algorithms ===
+
+==== AES ====
+
+The Advanced Encryption Standard (AES) is a U.S. Federal Information Processing Standard (FIPS). It was selected after a 5-year process where 15 competing designs were evaluated.
+
+{{{
+<script src="http://crypto-js.googlecode.com/svn/tags/3.1/build/rollups/aes.js"></script>
+<script>
+    var encrypted = CryptoJS.AES.encrypt("Message", "Secret Passphrase");
+
+    var decrypted = CryptoJS.AES.decrypt(encrypted, "Secret Passphrase");
+</script>
+}}}
+
+CryptoJS supports AES-128, AES-192, and AES-256. It will pick the variant by the size of the key you pass in. If you use a passphrase, then it will generate a 256-bit key.
+
+==== DES, Triple DES ====
+
+DES is a previously dominant algorithm for encryption, and was published as an official Federal Information Processing Standard (FIPS). DES is now considered to be insecure due to the small key size.
+
+{{{
+<script src="http://crypto-js.googlecode.com/svn/tags/3.1/build/rollups/tripledes.js"></script>
+<script>
+    var encrypted = CryptoJS.DES.encrypt("Message", "Secret Passphrase");
+
+    var decrypted = CryptoJS.DES.decrypt(encrypted, "Secret Passphrase");
+</script>
+}}}
+
+Triple DES applies DES three times to each block to increase the key size. The algorithm is believed to be secure in this form.
+
+{{{
+<script src="http://crypto-js.googlecode.com/svn/tags/3.1/build/rollups/tripledes.js"></script>
+<script>
+    var encrypted = CryptoJS.TripleDES.encrypt("Message", "Secret Passphrase");
+
+    var decrypted = CryptoJS.TripleDES.decrypt(encrypted, "Secret Passphrase");
+</script>
+}}}
+
+==== Rabbit ====
+
+Rabbit is a high-performance stream cipher and a finalist in the eSTREAM Portfolio. It is one of the four designs selected after a 3 1/2-year process where 22 designs were evaluated.
+
+{{{
+<script src="http://crypto-js.googlecode.com/svn/tags/3.1/build/rollups/rabbit.js"></script>
+<script>
+    var encrypted = CryptoJS.Rabbit.encrypt("Message", "Secret Passphrase");
+
+    var decrypted = CryptoJS.Rabbit.decrypt(encrypted, "Secret Passphrase");
+</script>
+}}}
+
+==== RC4, RC4Drop ====
+
+RC4 is a widely-used stream cipher. It's used in popular protocols such as SSL and WEP. Although remarkable for its simplicity and speed, the algorithm's history doesn't inspire confidence in its security.
+
+{{{
+<script src="http://crypto-js.googlecode.com/svn/tags/3.1/build/rollups/rc4.js"></script>
+<script>
+    var encrypted = CryptoJS.RC4.encrypt("Message", "Secret Passphrase");
+
+    var decrypted = CryptoJS.RC4.decrypt(encrypted, "Secret Passphrase");
+</script>
+}}}
+
+It was discovered that the first few bytes of keystream are strongly non-random and leak information about the key. We can defend against this attack by discarding the initial portion of the keystream. This modified algorithm is traditionally called RC4-drop.
+
+By default, 192 words (768 bytes) are dropped, but you can configure the algorithm to drop any number of words.
+
+{{{
+<script src="http://crypto-js.googlecode.com/svn/tags/3.1/build/rollups/rc4.js"></script>
+<script>
+    var encrypted = CryptoJS.RC4Drop.encrypt("Message", "Secret Passphrase");
+
+    var encrypted = CryptoJS.RC4Drop.encrypt("Message", "Secret Passphrase", { drop: 3072/4 });
+
+    var decrypted = CryptoJS.RC4Drop.decrypt(encrypted, "Secret Passphrase", { drop: 3072/4 });
+</script>
+}}}
+
+=== Custom Key and IV ===
+
+{{{
+<script src="http://crypto-js.googlecode.com/svn/tags/3.1/build/rollups/aes.js"></script>
+<script>
+    var key = CryptoJS.enc.Hex.parse('000102030405060708090a0b0c0d0e0f');
+    var iv  = CryptoJS.enc.Hex.parse('101112131415161718191a1b1c1d1e1f');
+
+    var encrypted = CryptoJS.AES.encrypt("Message", key, { iv: iv });
+</script>
+}}}
+
+=== Block Modes and Padding ===
+
+{{{
+<script src="http://crypto-js.googlecode.com/svn/tags/3.1/build/rollups/aes.js"></script>
+<script src="http://crypto-js.googlecode.com/svn/tags/3.1/build/components/mode-cfb-min.js"></script>
+<script src="http://crypto-js.googlecode.com/svn/tags/3.1/build/components/pad-ansix923-min.js"></script>
+<script>
+    var encrypted = CryptoJS.AES.encrypt("Message", "Secret Passphrase", { mode: CryptoJS.mode.CFB, padding: CryptoJS.pad.AnsiX923 });
+</script>
+}}}
+
+CryptoJS supports the following modes:
+
+  * CBC (the default)
+  * CFB
+  * CTR
+  * OFB
+  * ECB
+
+And CryptoJS supports the following padding schemes:
+
+  * Pkcs7 (the default)
+  * Iso97971
+  * AnsiX923
+  * Iso10126
+  * ZeroPadding
+  * NoPadding
+
+=== The Cipher Input ===
+
+For the plaintext message, the cipher algorithms accept either strings or instances of CryptoJS.lib.WordArray.
+
+For the key, when you pass a string, it's treated as a passphrase and used to derive an actual key and IV. Or you can pass a WordArray that represents the actual key. If you pass the actual key, you must also pass the actual IV.
+
+For the ciphertext, the cipher algorithms accept either strings or instances of CryptoJS.lib.CipherParams. A CipherParams object represents a collection of parameters such as the IV, a salt, and the raw ciphertext itself. When you pass a string, it's automatically converted to a CipherParams object according to a configurable format strategy.
+
+=== The Cipher Output ===
+
+The plaintext you get back after decryption is a WordArray object. See Hashers' Output for more detail.
+
+The ciphertext you get back after encryption isn't a string yet. It's a CipherParams object. A CipherParams object gives you access to all the parameters used during encryption. When you use a CipherParams object in a string context, it's automatically converted to a string according to a format strategy. The default is an OpenSSL-compatible format.
+
+{{{
+<script src="http://crypto-js.googlecode.com/svn/tags/3.1/build/rollups/aes.js"></script>
+<script>
+    var encrypted = CryptoJS.AES.encrypt("Message", "Secret Passphrase");
+
+    alert(encrypted.key);        // 74eb593087a982e2a6f5dded54ecd96d1fd0f3d44a58728cdcd40c55227522223
+    alert(encrypted.iv);         // 7781157e2629b094f0e3dd48c4d786115
+    alert(encrypted.salt);       // 7a25f9132ec6a8b34
+    alert(encrypted.ciphertext); // 73e54154a15d1beeb509d9e12f1e462a0
+
+    alert(encrypted);            // U2FsdGVkX1+iX5Ey7GqLND5UFUoV0b7rUJ2eEvHkYqA=
+</script>
+}}}
+
+You can define your own formats in order to be compatible with other crypto implementations. A format is an object with two methods—stringify and parse—that converts between CipherParams objects and ciphertext strings.
+
+Here's how you might write a JSON formatter:
+
+{{{
+<script src="http://crypto-js.googlecode.com/svn/tags/3.1/build/rollups/aes.js"></script>
+<script>
+    var JsonFormatter = {
+        stringify: function (cipherParams) {
+            // create json object with ciphertext
+            var jsonObj = {
+                ct: cipherParams.ciphertext.toString(CryptoJS.enc.Base64)
+            };
+
+            // optionally add iv and salt
+            if (cipherParams.iv) {
+                jsonObj.iv = cipherParams.iv.toString();
+            }
+            if (cipherParams.salt) {
+                jsonObj.s = cipherParams.salt.toString();
+            }
+
+            // stringify json object
+            return JSON.stringify(jsonObj);
+        },
+
+        parse: function (jsonStr) {
+            // parse json string
+            var jsonObj = JSON.parse(jsonStr);
+
+            // extract ciphertext from json object, and create cipher params object
+            var cipherParams = CryptoJS.lib.CipherParams.create({
+                ciphertext: CryptoJS.enc.Base64.parse(jsonObj.ct)
+            });
+
+            // optionally extract iv and salt
+            if (jsonObj.iv) {
+                cipherParams.iv = CryptoJS.enc.Hex.parse(jsonObj.iv)
+            }
+            if (jsonObj.s) {
+                cipherParams.salt = CryptoJS.enc.Hex.parse(jsonObj.s)
+            }
+
+            return cipherParams;
+        }
+    };
+
+    var encrypted = CryptoJS.AES.encrypt("Message", "Secret Passphrase", { format: JsonFormatter });
+
+    alert(encrypted); // {"ct":"tZ4MsEnfbcDOwqau68aOrQ==","iv":"8a8c8fd8fe33743d3638737ea4a00698","s":"ba06373c8f57179c"}
+
+    var decrypted = CryptoJS.AES.decrypt(encrypted, "Secret Passphrase", { format: JsonFormatter });
+
+    alert(decrypted.toString(CryptoJS.enc.Utf8)); // Message
+</script>
+}}}
+
+=== Progressive Ciphering ===
+
+{{{
+<script src="http://crypto-js.googlecode.com/svn/tags/3.1/build/rollups/aes.js"></script>
+<script>
+    var key = CryptoJS.enc.Hex.parse('000102030405060708090a0b0c0d0e0f');
+    var iv  = CryptoJS.enc.Hex.parse('101112131415161718191a1b1c1d1e1f');
+
+    var aesEncryptor = CryptoJS.algo.AES.createEncryptor(key, { iv: iv });
+
+    var ciphertextPart1 = aesEncryptor.process("Message Part 1");
+    var ciphertextPart2 = aesEncryptor.process("Message Part 2");
+    var ciphertextPart3 = aesEncryptor.process("Message Part 3");
+    var ciphertextPart4 = aesEncryptor.finalize();
+
+    var aesDecryptor = CryptoJS.algo.AES.createDecryptor(key, { iv: iv });
+
+    var plaintextPart1 = aesDecryptor.process(ciphertextPart1);
+    var plaintextPart2 = aesDecryptor.process(ciphertextPart2);
+    var plaintextPart3 = aesDecryptor.process(ciphertextPart3);
+    var plaintextPart4 = aesDecryptor.process(ciphertextPart4);
+    var plaintextPart5 = aesDecryptor.finalize();
+</script>
+}}}
+
+=== Interoperability ===
+
+==== With OpenSSL ====
+
+Encrypt with OpenSSL:
+
+{{{
+openssl enc -aes-256-cbc -in infile -out outfile -pass pass:"Secret Passphrase" -e -base64
+}}}
+
+Decrypt with CryptoJS:
+
+{{{
+<script src="http://crypto-js.googlecode.com/svn/tags/3.1/build/rollups/aes.js"></script>
+<script>
+    var decrypted = CryptoJS.AES.decrypt(openSSLEncrypted, "Secret Passphrase");
+</script>
+}}}
+
+== Encoders ==
+
+CryptoJS can convert from encoding formats such as Base64, Latin1 or Hex to WordArray objects and vica versa.
+
+{{{
+<script src="http://crypto-js.googlecode.com/svn/tags/3.1/build/components/core-min.js"></script>
+<script src="http://crypto-js.googlecode.com/svn/tags/3.1/build/components/enc-utf16-min.js"></script>
+<script src="http://crypto-js.googlecode.com/svn/tags/3.1/build/components/enc-base64-min.js"></script>
+<script>
+    var words  = CryptoJS.enc.Base64.parse('SGVsbG8sIFdvcmxkIQ==');
+    var base64 = CryptoJS.enc.Base64.stringify(words);
+
+    var words  = CryptoJS.enc.Latin1.parse('Hello, World!');
+    var latin1 = CryptoJS.enc.Latin1.stringify(words);
+
+    var words = CryptoJS.enc.Hex.parse('48656c6c6f2c20576f726c6421');
+    var hex   = CryptoJS.enc.Hex.stringify(words);
+
+    var words = CryptoJS.enc.Utf8.parse('𤭢');
+    var utf8  = CryptoJS.enc.Utf8.stringify(words);
+
+    var words = CryptoJS.enc.Utf16.parse('Hello, World!');
+    var utf16 = CryptoJS.enc.Utf16.stringify(words);
+
+    var words = CryptoJS.enc.Utf16LE.parse('Hello, World!');
+    var utf16 = CryptoJS.enc.Utf16LE.stringify(words);
+</script>
+}}}
\ No newline at end of file
diff --git a/oxAuth/Server/src/main/webapp/js/crypto-js-4.1.1/enc-base64.js b/oxAuth/Server/src/main/webapp/js/crypto-js-4.1.1/enc-base64.js
new file mode 100644
index 00000000..0ffcd53c
--- /dev/null
+++ b/oxAuth/Server/src/main/webapp/js/crypto-js-4.1.1/enc-base64.js
@@ -0,0 +1,136 @@
+;(function (root, factory) {
+	if (typeof exports === "object") {
+		// CommonJS
+		module.exports = exports = factory(require("./core"));
+	}
+	else if (typeof define === "function" && define.amd) {
+		// AMD
+		define(["./core"], factory);
+	}
+	else {
+		// Global (browser)
+		factory(root.CryptoJS);
+	}
+}(this, function (CryptoJS) {
+
+	(function () {
+	    // Shortcuts
+	    var C = CryptoJS;
+	    var C_lib = C.lib;
+	    var WordArray = C_lib.WordArray;
+	    var C_enc = C.enc;
+
+	    /**
+	     * Base64 encoding strategy.
+	     */
+	    var Base64 = C_enc.Base64 = {
+	        /**
+	         * Converts a word array to a Base64 string.
+	         *
+	         * @param {WordArray} wordArray The word array.
+	         *
+	         * @return {string} The Base64 string.
+	         *
+	         * @static
+	         *
+	         * @example
+	         *
+	         *     var base64String = CryptoJS.enc.Base64.stringify(wordArray);
+	         */
+	        stringify: function (wordArray) {
+	            // Shortcuts
+	            var words = wordArray.words;
+	            var sigBytes = wordArray.sigBytes;
+	            var map = this._map;
+
+	            // Clamp excess bits
+	            wordArray.clamp();
+
+	            // Convert
+	            var base64Chars = [];
+	            for (var i = 0; i < sigBytes; i += 3) {
+	                var byte1 = (words[i >>> 2]       >>> (24 - (i % 4) * 8))       & 0xff;
+	                var byte2 = (words[(i + 1) >>> 2] >>> (24 - ((i + 1) % 4) * 8)) & 0xff;
+	                var byte3 = (words[(i + 2) >>> 2] >>> (24 - ((i + 2) % 4) * 8)) & 0xff;
+
+	                var triplet = (byte1 << 16) | (byte2 << 8) | byte3;
+
+	                for (var j = 0; (j < 4) && (i + j * 0.75 < sigBytes); j++) {
+	                    base64Chars.push(map.charAt((triplet >>> (6 * (3 - j))) & 0x3f));
+	                }
+	            }
+
+	            // Add padding
+	            var paddingChar = map.charAt(64);
+	            if (paddingChar) {
+	                while (base64Chars.length % 4) {
+	                    base64Chars.push(paddingChar);
+	                }
+	            }
+
+	            return base64Chars.join('');
+	        },
+
+	        /**
+	         * Converts a Base64 string to a word array.
+	         *
+	         * @param {string} base64Str The Base64 string.
+	         *
+	         * @return {WordArray} The word array.
+	         *
+	         * @static
+	         *
+	         * @example
+	         *
+	         *     var wordArray = CryptoJS.enc.Base64.parse(base64String);
+	         */
+	        parse: function (base64Str) {
+	            // Shortcuts
+	            var base64StrLength = base64Str.length;
+	            var map = this._map;
+	            var reverseMap = this._reverseMap;
+
+	            if (!reverseMap) {
+	                    reverseMap = this._reverseMap = [];
+	                    for (var j = 0; j < map.length; j++) {
+	                        reverseMap[map.charCodeAt(j)] = j;
+	                    }
+	            }
+
+	            // Ignore padding
+	            var paddingChar = map.charAt(64);
+	            if (paddingChar) {
+	                var paddingIndex = base64Str.indexOf(paddingChar);
+	                if (paddingIndex !== -1) {
+	                    base64StrLength = paddingIndex;
+	                }
+	            }
+
+	            // Convert
+	            return parseLoop(base64Str, base64StrLength, reverseMap);
+
+	        },
+
+	        _map: 'ABCDEFGHIJKLMNOPQRSTUVWXYZabcdefghijklmnopqrstuvwxyz0123456789+/='
+	    };
+
+	    function parseLoop(base64Str, base64StrLength, reverseMap) {
+	      var words = [];
+	      var nBytes = 0;
+	      for (var i = 0; i < base64StrLength; i++) {
+	          if (i % 4) {
+	              var bits1 = reverseMap[base64Str.charCodeAt(i - 1)] << ((i % 4) * 2);
+	              var bits2 = reverseMap[base64Str.charCodeAt(i)] >>> (6 - (i % 4) * 2);
+	              var bitsCombined = bits1 | bits2;
+	              words[nBytes >>> 2] |= bitsCombined << (24 - (nBytes % 4) * 8);
+	              nBytes++;
+	          }
+	      }
+	      return WordArray.create(words, nBytes);
+	    }
+	}());
+
+
+	return CryptoJS.enc.Base64;
+
+}));
\ No newline at end of file
diff --git a/oxAuth/Server/src/main/webapp/js/crypto-js-4.1.1/enc-base64url.js b/oxAuth/Server/src/main/webapp/js/crypto-js-4.1.1/enc-base64url.js
new file mode 100644
index 00000000..24689121
--- /dev/null
+++ b/oxAuth/Server/src/main/webapp/js/crypto-js-4.1.1/enc-base64url.js
@@ -0,0 +1,140 @@
+;(function (root, factory) {
+	if (typeof exports === "object") {
+		// CommonJS
+		module.exports = exports = factory(require("./core"));
+	}
+	else if (typeof define === "function" && define.amd) {
+		// AMD
+		define(["./core"], factory);
+	}
+	else {
+		// Global (browser)
+		factory(root.CryptoJS);
+	}
+}(this, function (CryptoJS) {
+
+	(function () {
+	    // Shortcuts
+	    var C = CryptoJS;
+	    var C_lib = C.lib;
+	    var WordArray = C_lib.WordArray;
+	    var C_enc = C.enc;
+
+	    /**
+	     * Base64url encoding strategy.
+	     */
+	    var Base64url = C_enc.Base64url = {
+	        /**
+	         * Converts a word array to a Base64url string.
+	         *
+	         * @param {WordArray} wordArray The word array.
+	         *
+	         * @param {boolean} urlSafe Whether to use url safe
+	         *
+	         * @return {string} The Base64url string.
+	         *
+	         * @static
+	         *
+	         * @example
+	         *
+	         *     var base64String = CryptoJS.enc.Base64url.stringify(wordArray);
+	         */
+	        stringify: function (wordArray, urlSafe=true) {
+	            // Shortcuts
+	            var words = wordArray.words;
+	            var sigBytes = wordArray.sigBytes;
+	            var map = urlSafe ? this._safe_map : this._map;
+
+	            // Clamp excess bits
+	            wordArray.clamp();
+
+	            // Convert
+	            var base64Chars = [];
+	            for (var i = 0; i < sigBytes; i += 3) {
+	                var byte1 = (words[i >>> 2]       >>> (24 - (i % 4) * 8))       & 0xff;
+	                var byte2 = (words[(i + 1) >>> 2] >>> (24 - ((i + 1) % 4) * 8)) & 0xff;
+	                var byte3 = (words[(i + 2) >>> 2] >>> (24 - ((i + 2) % 4) * 8)) & 0xff;
+
+	                var triplet = (byte1 << 16) | (byte2 << 8) | byte3;
+
+	                for (var j = 0; (j < 4) && (i + j * 0.75 < sigBytes); j++) {
+	                    base64Chars.push(map.charAt((triplet >>> (6 * (3 - j))) & 0x3f));
+	                }
+	            }
+
+	            // Add padding
+	            var paddingChar = map.charAt(64);
+	            if (paddingChar) {
+	                while (base64Chars.length % 4) {
+	                    base64Chars.push(paddingChar);
+	                }
+	            }
+
+	            return base64Chars.join('');
+	        },
+
+	        /**
+	         * Converts a Base64url string to a word array.
+	         *
+	         * @param {string} base64Str The Base64url string.
+	         *
+	         * @param {boolean} urlSafe Whether to use url safe
+	         *
+	         * @return {WordArray} The word array.
+	         *
+	         * @static
+	         *
+	         * @example
+	         *
+	         *     var wordArray = CryptoJS.enc.Base64url.parse(base64String);
+	         */
+	        parse: function (base64Str, urlSafe=true) {
+	            // Shortcuts
+	            var base64StrLength = base64Str.length;
+	            var map = urlSafe ? this._safe_map : this._map;
+	            var reverseMap = this._reverseMap;
+
+	            if (!reverseMap) {
+	                reverseMap = this._reverseMap = [];
+	                for (var j = 0; j < map.length; j++) {
+	                    reverseMap[map.charCodeAt(j)] = j;
+	                }
+	            }
+
+	            // Ignore padding
+	            var paddingChar = map.charAt(64);
+	            if (paddingChar) {
+	                var paddingIndex = base64Str.indexOf(paddingChar);
+	                if (paddingIndex !== -1) {
+	                    base64StrLength = paddingIndex;
+	                }
+	            }
+
+	            // Convert
+	            return parseLoop(base64Str, base64StrLength, reverseMap);
+
+	        },
+
+	        _map: 'ABCDEFGHIJKLMNOPQRSTUVWXYZabcdefghijklmnopqrstuvwxyz0123456789+/=',
+	        _safe_map: 'ABCDEFGHIJKLMNOPQRSTUVWXYZabcdefghijklmnopqrstuvwxyz0123456789-_',
+	    };
+
+	    function parseLoop(base64Str, base64StrLength, reverseMap) {
+	        var words = [];
+	        var nBytes = 0;
+	        for (var i = 0; i < base64StrLength; i++) {
+	            if (i % 4) {
+	                var bits1 = reverseMap[base64Str.charCodeAt(i - 1)] << ((i % 4) * 2);
+	                var bits2 = reverseMap[base64Str.charCodeAt(i)] >>> (6 - (i % 4) * 2);
+	                var bitsCombined = bits1 | bits2;
+	                words[nBytes >>> 2] |= bitsCombined << (24 - (nBytes % 4) * 8);
+	                nBytes++;
+	            }
+	        }
+	        return WordArray.create(words, nBytes);
+	    }
+	}());
+
+	return CryptoJS.enc.Base64url;
+
+}));
\ No newline at end of file
diff --git a/oxAuth/Server/src/main/webapp/js/crypto-js-4.1.1/enc-hex.js b/oxAuth/Server/src/main/webapp/js/crypto-js-4.1.1/enc-hex.js
new file mode 100644
index 00000000..88161ff5
--- /dev/null
+++ b/oxAuth/Server/src/main/webapp/js/crypto-js-4.1.1/enc-hex.js
@@ -0,0 +1,18 @@
+;(function (root, factory) {
+	if (typeof exports === "object") {
+		// CommonJS
+		module.exports = exports = factory(require("./core"));
+	}
+	else if (typeof define === "function" && define.amd) {
+		// AMD
+		define(["./core"], factory);
+	}
+	else {
+		// Global (browser)
+		factory(root.CryptoJS);
+	}
+}(this, function (CryptoJS) {
+
+	return CryptoJS.enc.Hex;
+
+}));
\ No newline at end of file
diff --git a/oxAuth/Server/src/main/webapp/js/crypto-js-4.1.1/enc-latin1.js b/oxAuth/Server/src/main/webapp/js/crypto-js-4.1.1/enc-latin1.js
new file mode 100644
index 00000000..ade56dcd
--- /dev/null
+++ b/oxAuth/Server/src/main/webapp/js/crypto-js-4.1.1/enc-latin1.js
@@ -0,0 +1,18 @@
+;(function (root, factory) {
+	if (typeof exports === "object") {
+		// CommonJS
+		module.exports = exports = factory(require("./core"));
+	}
+	else if (typeof define === "function" && define.amd) {
+		// AMD
+		define(["./core"], factory);
+	}
+	else {
+		// Global (browser)
+		factory(root.CryptoJS);
+	}
+}(this, function (CryptoJS) {
+
+	return CryptoJS.enc.Latin1;
+
+}));
\ No newline at end of file
diff --git a/oxAuth/Server/src/main/webapp/js/crypto-js-4.1.1/enc-utf16.js b/oxAuth/Server/src/main/webapp/js/crypto-js-4.1.1/enc-utf16.js
new file mode 100644
index 00000000..7de62457
--- /dev/null
+++ b/oxAuth/Server/src/main/webapp/js/crypto-js-4.1.1/enc-utf16.js
@@ -0,0 +1,149 @@
+;(function (root, factory) {
+	if (typeof exports === "object") {
+		// CommonJS
+		module.exports = exports = factory(require("./core"));
+	}
+	else if (typeof define === "function" && define.amd) {
+		// AMD
+		define(["./core"], factory);
+	}
+	else {
+		// Global (browser)
+		factory(root.CryptoJS);
+	}
+}(this, function (CryptoJS) {
+
+	(function () {
+	    // Shortcuts
+	    var C = CryptoJS;
+	    var C_lib = C.lib;
+	    var WordArray = C_lib.WordArray;
+	    var C_enc = C.enc;
+
+	    /**
+	     * UTF-16 BE encoding strategy.
+	     */
+	    var Utf16BE = C_enc.Utf16 = C_enc.Utf16BE = {
+	        /**
+	         * Converts a word array to a UTF-16 BE string.
+	         *
+	         * @param {WordArray} wordArray The word array.
+	         *
+	         * @return {string} The UTF-16 BE string.
+	         *
+	         * @static
+	         *
+	         * @example
+	         *
+	         *     var utf16String = CryptoJS.enc.Utf16.stringify(wordArray);
+	         */
+	        stringify: function (wordArray) {
+	            // Shortcuts
+	            var words = wordArray.words;
+	            var sigBytes = wordArray.sigBytes;
+
+	            // Convert
+	            var utf16Chars = [];
+	            for (var i = 0; i < sigBytes; i += 2) {
+	                var codePoint = (words[i >>> 2] >>> (16 - (i % 4) * 8)) & 0xffff;
+	                utf16Chars.push(String.fromCharCode(codePoint));
+	            }
+
+	            return utf16Chars.join('');
+	        },
+
+	        /**
+	         * Converts a UTF-16 BE string to a word array.
+	         *
+	         * @param {string} utf16Str The UTF-16 BE string.
+	         *
+	         * @return {WordArray} The word array.
+	         *
+	         * @static
+	         *
+	         * @example
+	         *
+	         *     var wordArray = CryptoJS.enc.Utf16.parse(utf16String);
+	         */
+	        parse: function (utf16Str) {
+	            // Shortcut
+	            var utf16StrLength = utf16Str.length;
+
+	            // Convert
+	            var words = [];
+	            for (var i = 0; i < utf16StrLength; i++) {
+	                words[i >>> 1] |= utf16Str.charCodeAt(i) << (16 - (i % 2) * 16);
+	            }
+
+	            return WordArray.create(words, utf16StrLength * 2);
+	        }
+	    };
+
+	    /**
+	     * UTF-16 LE encoding strategy.
+	     */
+	    C_enc.Utf16LE = {
+	        /**
+	         * Converts a word array to a UTF-16 LE string.
+	         *
+	         * @param {WordArray} wordArray The word array.
+	         *
+	         * @return {string} The UTF-16 LE string.
+	         *
+	         * @static
+	         *
+	         * @example
+	         *
+	         *     var utf16Str = CryptoJS.enc.Utf16LE.stringify(wordArray);
+	         */
+	        stringify: function (wordArray) {
+	            // Shortcuts
+	            var words = wordArray.words;
+	            var sigBytes = wordArray.sigBytes;
+
+	            // Convert
+	            var utf16Chars = [];
+	            for (var i = 0; i < sigBytes; i += 2) {
+	                var codePoint = swapEndian((words[i >>> 2] >>> (16 - (i % 4) * 8)) & 0xffff);
+	                utf16Chars.push(String.fromCharCode(codePoint));
+	            }
+
+	            return utf16Chars.join('');
+	        },
+
+	        /**
+	         * Converts a UTF-16 LE string to a word array.
+	         *
+	         * @param {string} utf16Str The UTF-16 LE string.
+	         *
+	         * @return {WordArray} The word array.
+	         *
+	         * @static
+	         *
+	         * @example
+	         *
+	         *     var wordArray = CryptoJS.enc.Utf16LE.parse(utf16Str);
+	         */
+	        parse: function (utf16Str) {
+	            // Shortcut
+	            var utf16StrLength = utf16Str.length;
+
+	            // Convert
+	            var words = [];
+	            for (var i = 0; i < utf16StrLength; i++) {
+	                words[i >>> 1] |= swapEndian(utf16Str.charCodeAt(i) << (16 - (i % 2) * 16));
+	            }
+
+	            return WordArray.create(words, utf16StrLength * 2);
+	        }
+	    };
+
+	    function swapEndian(word) {
+	        return ((word << 8) & 0xff00ff00) | ((word >>> 8) & 0x00ff00ff);
+	    }
+	}());
+
+
+	return CryptoJS.enc.Utf16;
+
+}));
\ No newline at end of file
diff --git a/oxAuth/Server/src/main/webapp/js/crypto-js-4.1.1/enc-utf8.js b/oxAuth/Server/src/main/webapp/js/crypto-js-4.1.1/enc-utf8.js
new file mode 100644
index 00000000..e7a251d8
--- /dev/null
+++ b/oxAuth/Server/src/main/webapp/js/crypto-js-4.1.1/enc-utf8.js
@@ -0,0 +1,18 @@
+;(function (root, factory) {
+	if (typeof exports === "object") {
+		// CommonJS
+		module.exports = exports = factory(require("./core"));
+	}
+	else if (typeof define === "function" && define.amd) {
+		// AMD
+		define(["./core"], factory);
+	}
+	else {
+		// Global (browser)
+		factory(root.CryptoJS);
+	}
+}(this, function (CryptoJS) {
+
+	return CryptoJS.enc.Utf8;
+
+}));
\ No newline at end of file
diff --git a/oxAuth/Server/src/main/webapp/js/crypto-js-4.1.1/evpkdf.js b/oxAuth/Server/src/main/webapp/js/crypto-js-4.1.1/evpkdf.js
new file mode 100644
index 00000000..578974aa
--- /dev/null
+++ b/oxAuth/Server/src/main/webapp/js/crypto-js-4.1.1/evpkdf.js
@@ -0,0 +1,134 @@
+;(function (root, factory, undef) {
+	if (typeof exports === "object") {
+		// CommonJS
+		module.exports = exports = factory(require("./core"), require("./sha1"), require("./hmac"));
+	}
+	else if (typeof define === "function" && define.amd) {
+		// AMD
+		define(["./core", "./sha1", "./hmac"], factory);
+	}
+	else {
+		// Global (browser)
+		factory(root.CryptoJS);
+	}
+}(this, function (CryptoJS) {
+
+	(function () {
+	    // Shortcuts
+	    var C = CryptoJS;
+	    var C_lib = C.lib;
+	    var Base = C_lib.Base;
+	    var WordArray = C_lib.WordArray;
+	    var C_algo = C.algo;
+	    var MD5 = C_algo.MD5;
+
+	    /**
+	     * This key derivation function is meant to conform with EVP_BytesToKey.
+	     * www.openssl.org/docs/crypto/EVP_BytesToKey.html
+	     */
+	    var EvpKDF = C_algo.EvpKDF = Base.extend({
+	        /**
+	         * Configuration options.
+	         *
+	         * @property {number} keySize The key size in words to generate. Default: 4 (128 bits)
+	         * @property {Hasher} hasher The hash algorithm to use. Default: MD5
+	         * @property {number} iterations The number of iterations to perform. Default: 1
+	         */
+	        cfg: Base.extend({
+	            keySize: 128/32,
+	            hasher: MD5,
+	            iterations: 1
+	        }),
+
+	        /**
+	         * Initializes a newly created key derivation function.
+	         *
+	         * @param {Object} cfg (Optional) The configuration options to use for the derivation.
+	         *
+	         * @example
+	         *
+	         *     var kdf = CryptoJS.algo.EvpKDF.create();
+	         *     var kdf = CryptoJS.algo.EvpKDF.create({ keySize: 8 });
+	         *     var kdf = CryptoJS.algo.EvpKDF.create({ keySize: 8, iterations: 1000 });
+	         */
+	        init: function (cfg) {
+	            this.cfg = this.cfg.extend(cfg);
+	        },
+
+	        /**
+	         * Derives a key from a password.
+	         *
+	         * @param {WordArray|string} password The password.
+	         * @param {WordArray|string} salt A salt.
+	         *
+	         * @return {WordArray} The derived key.
+	         *
+	         * @example
+	         *
+	         *     var key = kdf.compute(password, salt);
+	         */
+	        compute: function (password, salt) {
+	            var block;
+
+	            // Shortcut
+	            var cfg = this.cfg;
+
+	            // Init hasher
+	            var hasher = cfg.hasher.create();
+
+	            // Initial values
+	            var derivedKey = WordArray.create();
+
+	            // Shortcuts
+	            var derivedKeyWords = derivedKey.words;
+	            var keySize = cfg.keySize;
+	            var iterations = cfg.iterations;
+
+	            // Generate key
+	            while (derivedKeyWords.length < keySize) {
+	                if (block) {
+	                    hasher.update(block);
+	                }
+	                block = hasher.update(password).finalize(salt);
+	                hasher.reset();
+
+	                // Iterations
+	                for (var i = 1; i < iterations; i++) {
+	                    block = hasher.finalize(block);
+	                    hasher.reset();
+	                }
+
+	                derivedKey.concat(block);
+	            }
+	            derivedKey.sigBytes = keySize * 4;
+
+	            return derivedKey;
+	        }
+	    });
+
+	    /**
+	     * Derives a key from a password.
+	     *
+	     * @param {WordArray|string} password The password.
+	     * @param {WordArray|string} salt A salt.
+	     * @param {Object} cfg (Optional) The configuration options to use for this computation.
+	     *
+	     * @return {WordArray} The derived key.
+	     *
+	     * @static
+	     *
+	     * @example
+	     *
+	     *     var key = CryptoJS.EvpKDF(password, salt);
+	     *     var key = CryptoJS.EvpKDF(password, salt, { keySize: 8 });
+	     *     var key = CryptoJS.EvpKDF(password, salt, { keySize: 8, iterations: 1000 });
+	     */
+	    C.EvpKDF = function (password, salt, cfg) {
+	        return EvpKDF.create(cfg).compute(password, salt);
+	    };
+	}());
+
+
+	return CryptoJS.EvpKDF;
+
+}));
\ No newline at end of file
diff --git a/oxAuth/Server/src/main/webapp/js/crypto-js-4.1.1/format-hex.js b/oxAuth/Server/src/main/webapp/js/crypto-js-4.1.1/format-hex.js
new file mode 100644
index 00000000..2e9a861f
--- /dev/null
+++ b/oxAuth/Server/src/main/webapp/js/crypto-js-4.1.1/format-hex.js
@@ -0,0 +1,66 @@
+;(function (root, factory, undef) {
+	if (typeof exports === "object") {
+		// CommonJS
+		module.exports = exports = factory(require("./core"), require("./cipher-core"));
+	}
+	else if (typeof define === "function" && define.amd) {
+		// AMD
+		define(["./core", "./cipher-core"], factory);
+	}
+	else {
+		// Global (browser)
+		factory(root.CryptoJS);
+	}
+}(this, function (CryptoJS) {
+
+	(function (undefined) {
+	    // Shortcuts
+	    var C = CryptoJS;
+	    var C_lib = C.lib;
+	    var CipherParams = C_lib.CipherParams;
+	    var C_enc = C.enc;
+	    var Hex = C_enc.Hex;
+	    var C_format = C.format;
+
+	    var HexFormatter = C_format.Hex = {
+	        /**
+	         * Converts the ciphertext of a cipher params object to a hexadecimally encoded string.
+	         *
+	         * @param {CipherParams} cipherParams The cipher params object.
+	         *
+	         * @return {string} The hexadecimally encoded string.
+	         *
+	         * @static
+	         *
+	         * @example
+	         *
+	         *     var hexString = CryptoJS.format.Hex.stringify(cipherParams);
+	         */
+	        stringify: function (cipherParams) {
+	            return cipherParams.ciphertext.toString(Hex);
+	        },
+
+	        /**
+	         * Converts a hexadecimally encoded ciphertext string to a cipher params object.
+	         *
+	         * @param {string} input The hexadecimally encoded string.
+	         *
+	         * @return {CipherParams} The cipher params object.
+	         *
+	         * @static
+	         *
+	         * @example
+	         *
+	         *     var cipherParams = CryptoJS.format.Hex.parse(hexString);
+	         */
+	        parse: function (input) {
+	            var ciphertext = Hex.parse(input);
+	            return CipherParams.create({ ciphertext: ciphertext });
+	        }
+	    };
+	}());
+
+
+	return CryptoJS.format.Hex;
+
+}));
\ No newline at end of file
diff --git a/oxAuth/Server/src/main/webapp/js/crypto-js-4.1.1/format-openssl.js b/oxAuth/Server/src/main/webapp/js/crypto-js-4.1.1/format-openssl.js
new file mode 100644
index 00000000..3373edc6
--- /dev/null
+++ b/oxAuth/Server/src/main/webapp/js/crypto-js-4.1.1/format-openssl.js
@@ -0,0 +1,18 @@
+;(function (root, factory, undef) {
+	if (typeof exports === "object") {
+		// CommonJS
+		module.exports = exports = factory(require("./core"), require("./cipher-core"));
+	}
+	else if (typeof define === "function" && define.amd) {
+		// AMD
+		define(["./core", "./cipher-core"], factory);
+	}
+	else {
+		// Global (browser)
+		factory(root.CryptoJS);
+	}
+}(this, function (CryptoJS) {
+
+	return CryptoJS.format.OpenSSL;
+
+}));
\ No newline at end of file
diff --git a/oxAuth/Server/src/main/webapp/js/crypto-js-4.1.1/hmac-md5.js b/oxAuth/Server/src/main/webapp/js/crypto-js-4.1.1/hmac-md5.js
new file mode 100644
index 00000000..ad7a90ad
--- /dev/null
+++ b/oxAuth/Server/src/main/webapp/js/crypto-js-4.1.1/hmac-md5.js
@@ -0,0 +1,18 @@
+;(function (root, factory, undef) {
+	if (typeof exports === "object") {
+		// CommonJS
+		module.exports = exports = factory(require("./core"), require("./md5"), require("./hmac"));
+	}
+	else if (typeof define === "function" && define.amd) {
+		// AMD
+		define(["./core", "./md5", "./hmac"], factory);
+	}
+	else {
+		// Global (browser)
+		factory(root.CryptoJS);
+	}
+}(this, function (CryptoJS) {
+
+	return CryptoJS.HmacMD5;
+
+}));
\ No newline at end of file
diff --git a/oxAuth/Server/src/main/webapp/js/crypto-js-4.1.1/hmac-ripemd160.js b/oxAuth/Server/src/main/webapp/js/crypto-js-4.1.1/hmac-ripemd160.js
new file mode 100644
index 00000000..73d55a77
--- /dev/null
+++ b/oxAuth/Server/src/main/webapp/js/crypto-js-4.1.1/hmac-ripemd160.js
@@ -0,0 +1,18 @@
+;(function (root, factory, undef) {
+	if (typeof exports === "object") {
+		// CommonJS
+		module.exports = exports = factory(require("./core"), require("./ripemd160"), require("./hmac"));
+	}
+	else if (typeof define === "function" && define.amd) {
+		// AMD
+		define(["./core", "./ripemd160", "./hmac"], factory);
+	}
+	else {
+		// Global (browser)
+		factory(root.CryptoJS);
+	}
+}(this, function (CryptoJS) {
+
+	return CryptoJS.HmacRIPEMD160;
+
+}));
\ No newline at end of file
diff --git a/oxAuth/Server/src/main/webapp/js/crypto-js-4.1.1/hmac-sha1.js b/oxAuth/Server/src/main/webapp/js/crypto-js-4.1.1/hmac-sha1.js
new file mode 100644
index 00000000..0b570cbc
--- /dev/null
+++ b/oxAuth/Server/src/main/webapp/js/crypto-js-4.1.1/hmac-sha1.js
@@ -0,0 +1,18 @@
+;(function (root, factory, undef) {
+	if (typeof exports === "object") {
+		// CommonJS
+		module.exports = exports = factory(require("./core"), require("./sha1"), require("./hmac"));
+	}
+	else if (typeof define === "function" && define.amd) {
+		// AMD
+		define(["./core", "./sha1", "./hmac"], factory);
+	}
+	else {
+		// Global (browser)
+		factory(root.CryptoJS);
+	}
+}(this, function (CryptoJS) {
+
+	return CryptoJS.HmacSHA1;
+
+}));
\ No newline at end of file
diff --git a/oxAuth/Server/src/main/webapp/js/crypto-js-4.1.1/hmac-sha224.js b/oxAuth/Server/src/main/webapp/js/crypto-js-4.1.1/hmac-sha224.js
new file mode 100644
index 00000000..3778863a
--- /dev/null
+++ b/oxAuth/Server/src/main/webapp/js/crypto-js-4.1.1/hmac-sha224.js
@@ -0,0 +1,18 @@
+;(function (root, factory, undef) {
+	if (typeof exports === "object") {
+		// CommonJS
+		module.exports = exports = factory(require("./core"), require("./sha256"), require("./sha224"), require("./hmac"));
+	}
+	else if (typeof define === "function" && define.amd) {
+		// AMD
+		define(["./core", "./sha256", "./sha224", "./hmac"], factory);
+	}
+	else {
+		// Global (browser)
+		factory(root.CryptoJS);
+	}
+}(this, function (CryptoJS) {
+
+	return CryptoJS.HmacSHA224;
+
+}));
\ No newline at end of file
diff --git a/oxAuth/Server/src/main/webapp/js/crypto-js-4.1.1/hmac-sha256.js b/oxAuth/Server/src/main/webapp/js/crypto-js-4.1.1/hmac-sha256.js
new file mode 100644
index 00000000..33b0c9fe
--- /dev/null
+++ b/oxAuth/Server/src/main/webapp/js/crypto-js-4.1.1/hmac-sha256.js
@@ -0,0 +1,18 @@
+;(function (root, factory, undef) {
+	if (typeof exports === "object") {
+		// CommonJS
+		module.exports = exports = factory(require("./core"), require("./sha256"), require("./hmac"));
+	}
+	else if (typeof define === "function" && define.amd) {
+		// AMD
+		define(["./core", "./sha256", "./hmac"], factory);
+	}
+	else {
+		// Global (browser)
+		factory(root.CryptoJS);
+	}
+}(this, function (CryptoJS) {
+
+	return CryptoJS.HmacSHA256;
+
+}));
\ No newline at end of file
diff --git a/oxAuth/Server/src/main/webapp/js/crypto-js-4.1.1/hmac-sha3.js b/oxAuth/Server/src/main/webapp/js/crypto-js-4.1.1/hmac-sha3.js
new file mode 100644
index 00000000..12488049
--- /dev/null
+++ b/oxAuth/Server/src/main/webapp/js/crypto-js-4.1.1/hmac-sha3.js
@@ -0,0 +1,18 @@
+;(function (root, factory, undef) {
+	if (typeof exports === "object") {
+		// CommonJS
+		module.exports = exports = factory(require("./core"), require("./x64-core"), require("./sha3"), require("./hmac"));
+	}
+	else if (typeof define === "function" && define.amd) {
+		// AMD
+		define(["./core", "./x64-core", "./sha3", "./hmac"], factory);
+	}
+	else {
+		// Global (browser)
+		factory(root.CryptoJS);
+	}
+}(this, function (CryptoJS) {
+
+	return CryptoJS.HmacSHA3;
+
+}));
\ No newline at end of file
diff --git a/oxAuth/Server/src/main/webapp/js/crypto-js-4.1.1/hmac-sha384.js b/oxAuth/Server/src/main/webapp/js/crypto-js-4.1.1/hmac-sha384.js
new file mode 100644
index 00000000..0036e2b8
--- /dev/null
+++ b/oxAuth/Server/src/main/webapp/js/crypto-js-4.1.1/hmac-sha384.js
@@ -0,0 +1,18 @@
+;(function (root, factory, undef) {
+	if (typeof exports === "object") {
+		// CommonJS
+		module.exports = exports = factory(require("./core"), require("./x64-core"), require("./sha512"), require("./sha384"), require("./hmac"));
+	}
+	else if (typeof define === "function" && define.amd) {
+		// AMD
+		define(["./core", "./x64-core", "./sha512", "./sha384", "./hmac"], factory);
+	}
+	else {
+		// Global (browser)
+		factory(root.CryptoJS);
+	}
+}(this, function (CryptoJS) {
+
+	return CryptoJS.HmacSHA384;
+
+}));
\ No newline at end of file
diff --git a/oxAuth/Server/src/main/webapp/js/crypto-js-4.1.1/hmac-sha512.js b/oxAuth/Server/src/main/webapp/js/crypto-js-4.1.1/hmac-sha512.js
new file mode 100644
index 00000000..c1005b6a
--- /dev/null
+++ b/oxAuth/Server/src/main/webapp/js/crypto-js-4.1.1/hmac-sha512.js
@@ -0,0 +1,18 @@
+;(function (root, factory, undef) {
+	if (typeof exports === "object") {
+		// CommonJS
+		module.exports = exports = factory(require("./core"), require("./x64-core"), require("./sha512"), require("./hmac"));
+	}
+	else if (typeof define === "function" && define.amd) {
+		// AMD
+		define(["./core", "./x64-core", "./sha512", "./hmac"], factory);
+	}
+	else {
+		// Global (browser)
+		factory(root.CryptoJS);
+	}
+}(this, function (CryptoJS) {
+
+	return CryptoJS.HmacSHA512;
+
+}));
\ No newline at end of file
diff --git a/oxAuth/Server/src/main/webapp/js/crypto-js-4.1.1/hmac.js b/oxAuth/Server/src/main/webapp/js/crypto-js-4.1.1/hmac.js
new file mode 100644
index 00000000..8c098511
--- /dev/null
+++ b/oxAuth/Server/src/main/webapp/js/crypto-js-4.1.1/hmac.js
@@ -0,0 +1,143 @@
+;(function (root, factory) {
+	if (typeof exports === "object") {
+		// CommonJS
+		module.exports = exports = factory(require("./core"));
+	}
+	else if (typeof define === "function" && define.amd) {
+		// AMD
+		define(["./core"], factory);
+	}
+	else {
+		// Global (browser)
+		factory(root.CryptoJS);
+	}
+}(this, function (CryptoJS) {
+
+	(function () {
+	    // Shortcuts
+	    var C = CryptoJS;
+	    var C_lib = C.lib;
+	    var Base = C_lib.Base;
+	    var C_enc = C.enc;
+	    var Utf8 = C_enc.Utf8;
+	    var C_algo = C.algo;
+
+	    /**
+	     * HMAC algorithm.
+	     */
+	    var HMAC = C_algo.HMAC = Base.extend({
+	        /**
+	         * Initializes a newly created HMAC.
+	         *
+	         * @param {Hasher} hasher The hash algorithm to use.
+	         * @param {WordArray|string} key The secret key.
+	         *
+	         * @example
+	         *
+	         *     var hmacHasher = CryptoJS.algo.HMAC.create(CryptoJS.algo.SHA256, key);
+	         */
+	        init: function (hasher, key) {
+	            // Init hasher
+	            hasher = this._hasher = new hasher.init();
+
+	            // Convert string to WordArray, else assume WordArray already
+	            if (typeof key == 'string') {
+	                key = Utf8.parse(key);
+	            }
+
+	            // Shortcuts
+	            var hasherBlockSize = hasher.blockSize;
+	            var hasherBlockSizeBytes = hasherBlockSize * 4;
+
+	            // Allow arbitrary length keys
+	            if (key.sigBytes > hasherBlockSizeBytes) {
+	                key = hasher.finalize(key);
+	            }
+
+	            // Clamp excess bits
+	            key.clamp();
+
+	            // Clone key for inner and outer pads
+	            var oKey = this._oKey = key.clone();
+	            var iKey = this._iKey = key.clone();
+
+	            // Shortcuts
+	            var oKeyWords = oKey.words;
+	            var iKeyWords = iKey.words;
+
+	            // XOR keys with pad constants
+	            for (var i = 0; i < hasherBlockSize; i++) {
+	                oKeyWords[i] ^= 0x5c5c5c5c;
+	                iKeyWords[i] ^= 0x36363636;
+	            }
+	            oKey.sigBytes = iKey.sigBytes = hasherBlockSizeBytes;
+
+	            // Set initial values
+	            this.reset();
+	        },
+
+	        /**
+	         * Resets this HMAC to its initial state.
+	         *
+	         * @example
+	         *
+	         *     hmacHasher.reset();
+	         */
+	        reset: function () {
+	            // Shortcut
+	            var hasher = this._hasher;
+
+	            // Reset
+	            hasher.reset();
+	            hasher.update(this._iKey);
+	        },
+
+	        /**
+	         * Updates this HMAC with a message.
+	         *
+	         * @param {WordArray|string} messageUpdate The message to append.
+	         *
+	         * @return {HMAC} This HMAC instance.
+	         *
+	         * @example
+	         *
+	         *     hmacHasher.update('message');
+	         *     hmacHasher.update(wordArray);
+	         */
+	        update: function (messageUpdate) {
+	            this._hasher.update(messageUpdate);
+
+	            // Chainable
+	            return this;
+	        },
+
+	        /**
+	         * Finalizes the HMAC computation.
+	         * Note that the finalize operation is effectively a destructive, read-once operation.
+	         *
+	         * @param {WordArray|string} messageUpdate (Optional) A final message update.
+	         *
+	         * @return {WordArray} The HMAC.
+	         *
+	         * @example
+	         *
+	         *     var hmac = hmacHasher.finalize();
+	         *     var hmac = hmacHasher.finalize('message');
+	         *     var hmac = hmacHasher.finalize(wordArray);
+	         */
+	        finalize: function (messageUpdate) {
+	            // Shortcut
+	            var hasher = this._hasher;
+
+	            // Compute HMAC
+	            var innerHash = hasher.finalize(messageUpdate);
+	            hasher.reset();
+	            var hmac = hasher.finalize(this._oKey.clone().concat(innerHash));
+
+	            return hmac;
+	        }
+	    });
+	}());
+
+
+}));
\ No newline at end of file
diff --git a/oxAuth/Server/src/main/webapp/js/crypto-js-4.1.1/index.js b/oxAuth/Server/src/main/webapp/js/crypto-js-4.1.1/index.js
new file mode 100644
index 00000000..72353918
--- /dev/null
+++ b/oxAuth/Server/src/main/webapp/js/crypto-js-4.1.1/index.js
@@ -0,0 +1,18 @@
+;(function (root, factory, undef) {
+	if (typeof exports === "object") {
+		// CommonJS
+		module.exports = exports = factory(require("./core"), require("./x64-core"), require("./lib-typedarrays"), require("./enc-utf16"), require("./enc-base64"), require("./enc-base64url"), require("./md5"), require("./sha1"), require("./sha256"), require("./sha224"), require("./sha512"), require("./sha384"), require("./sha3"), require("./ripemd160"), require("./hmac"), require("./pbkdf2"), require("./evpkdf"), require("./cipher-core"), require("./mode-cfb"), require("./mode-ctr"), require("./mode-ctr-gladman"), require("./mode-ofb"), require("./mode-ecb"), require("./pad-ansix923"), require("./pad-iso10126"), require("./pad-iso97971"), require("./pad-zeropadding"), require("./pad-nopadding"), require("./format-hex"), require("./aes"), require("./tripledes"), require("./rc4"), require("./rabbit"), require("./rabbit-legacy"));
+	}
+	else if (typeof define === "function" && define.amd) {
+		// AMD
+		define(["./core", "./x64-core", "./lib-typedarrays", "./enc-utf16", "./enc-base64", "./enc-base64url", "./md5", "./sha1", "./sha256", "./sha224", "./sha512", "./sha384", "./sha3", "./ripemd160", "./hmac", "./pbkdf2", "./evpkdf", "./cipher-core", "./mode-cfb", "./mode-ctr", "./mode-ctr-gladman", "./mode-ofb", "./mode-ecb", "./pad-ansix923", "./pad-iso10126", "./pad-iso97971", "./pad-zeropadding", "./pad-nopadding", "./format-hex", "./aes", "./tripledes", "./rc4", "./rabbit", "./rabbit-legacy"], factory);
+	}
+	else {
+		// Global (browser)
+		root.CryptoJS = factory(root.CryptoJS);
+	}
+}(this, function (CryptoJS) {
+
+	return CryptoJS;
+
+}));
\ No newline at end of file
diff --git a/oxAuth/Server/src/main/webapp/js/crypto-js-4.1.1/lib-typedarrays.js b/oxAuth/Server/src/main/webapp/js/crypto-js-4.1.1/lib-typedarrays.js
new file mode 100644
index 00000000..264b2107
--- /dev/null
+++ b/oxAuth/Server/src/main/webapp/js/crypto-js-4.1.1/lib-typedarrays.js
@@ -0,0 +1,76 @@
+;(function (root, factory) {
+	if (typeof exports === "object") {
+		// CommonJS
+		module.exports = exports = factory(require("./core"));
+	}
+	else if (typeof define === "function" && define.amd) {
+		// AMD
+		define(["./core"], factory);
+	}
+	else {
+		// Global (browser)
+		factory(root.CryptoJS);
+	}
+}(this, function (CryptoJS) {
+
+	(function () {
+	    // Check if typed arrays are supported
+	    if (typeof ArrayBuffer != 'function') {
+	        return;
+	    }
+
+	    // Shortcuts
+	    var C = CryptoJS;
+	    var C_lib = C.lib;
+	    var WordArray = C_lib.WordArray;
+
+	    // Reference original init
+	    var superInit = WordArray.init;
+
+	    // Augment WordArray.init to handle typed arrays
+	    var subInit = WordArray.init = function (typedArray) {
+	        // Convert buffers to uint8
+	        if (typedArray instanceof ArrayBuffer) {
+	            typedArray = new Uint8Array(typedArray);
+	        }
+
+	        // Convert other array views to uint8
+	        if (
+	            typedArray instanceof Int8Array ||
+	            (typeof Uint8ClampedArray !== "undefined" && typedArray instanceof Uint8ClampedArray) ||
+	            typedArray instanceof Int16Array ||
+	            typedArray instanceof Uint16Array ||
+	            typedArray instanceof Int32Array ||
+	            typedArray instanceof Uint32Array ||
+	            typedArray instanceof Float32Array ||
+	            typedArray instanceof Float64Array
+	        ) {
+	            typedArray = new Uint8Array(typedArray.buffer, typedArray.byteOffset, typedArray.byteLength);
+	        }
+
+	        // Handle Uint8Array
+	        if (typedArray instanceof Uint8Array) {
+	            // Shortcut
+	            var typedArrayByteLength = typedArray.byteLength;
+
+	            // Extract bytes
+	            var words = [];
+	            for (var i = 0; i < typedArrayByteLength; i++) {
+	                words[i >>> 2] |= typedArray[i] << (24 - (i % 4) * 8);
+	            }
+
+	            // Initialize this word array
+	            superInit.call(this, words, typedArrayByteLength);
+	        } else {
+	            // Else call normal init
+	            superInit.apply(this, arguments);
+	        }
+	    };
+
+	    subInit.prototype = WordArray;
+	}());
+
+
+	return CryptoJS.lib.WordArray;
+
+}));
\ No newline at end of file
diff --git a/oxAuth/Server/src/main/webapp/js/crypto-js-4.1.1/md5.js b/oxAuth/Server/src/main/webapp/js/crypto-js-4.1.1/md5.js
new file mode 100644
index 00000000..12b0fdd4
--- /dev/null
+++ b/oxAuth/Server/src/main/webapp/js/crypto-js-4.1.1/md5.js
@@ -0,0 +1,268 @@
+;(function (root, factory) {
+	if (typeof exports === "object") {
+		// CommonJS
+		module.exports = exports = factory(require("./core"));
+	}
+	else if (typeof define === "function" && define.amd) {
+		// AMD
+		define(["./core"], factory);
+	}
+	else {
+		// Global (browser)
+		factory(root.CryptoJS);
+	}
+}(this, function (CryptoJS) {
+
+	(function (Math) {
+	    // Shortcuts
+	    var C = CryptoJS;
+	    var C_lib = C.lib;
+	    var WordArray = C_lib.WordArray;
+	    var Hasher = C_lib.Hasher;
+	    var C_algo = C.algo;
+
+	    // Constants table
+	    var T = [];
+
+	    // Compute constants
+	    (function () {
+	        for (var i = 0; i < 64; i++) {
+	            T[i] = (Math.abs(Math.sin(i + 1)) * 0x100000000) | 0;
+	        }
+	    }());
+
+	    /**
+	     * MD5 hash algorithm.
+	     */
+	    var MD5 = C_algo.MD5 = Hasher.extend({
+	        _doReset: function () {
+	            this._hash = new WordArray.init([
+	                0x67452301, 0xefcdab89,
+	                0x98badcfe, 0x10325476
+	            ]);
+	        },
+
+	        _doProcessBlock: function (M, offset) {
+	            // Swap endian
+	            for (var i = 0; i < 16; i++) {
+	                // Shortcuts
+	                var offset_i = offset + i;
+	                var M_offset_i = M[offset_i];
+
+	                M[offset_i] = (
+	                    (((M_offset_i << 8)  | (M_offset_i >>> 24)) & 0x00ff00ff) |
+	                    (((M_offset_i << 24) | (M_offset_i >>> 8))  & 0xff00ff00)
+	                );
+	            }
+
+	            // Shortcuts
+	            var H = this._hash.words;
+
+	            var M_offset_0  = M[offset + 0];
+	            var M_offset_1  = M[offset + 1];
+	            var M_offset_2  = M[offset + 2];
+	            var M_offset_3  = M[offset + 3];
+	            var M_offset_4  = M[offset + 4];
+	            var M_offset_5  = M[offset + 5];
+	            var M_offset_6  = M[offset + 6];
+	            var M_offset_7  = M[offset + 7];
+	            var M_offset_8  = M[offset + 8];
+	            var M_offset_9  = M[offset + 9];
+	            var M_offset_10 = M[offset + 10];
+	            var M_offset_11 = M[offset + 11];
+	            var M_offset_12 = M[offset + 12];
+	            var M_offset_13 = M[offset + 13];
+	            var M_offset_14 = M[offset + 14];
+	            var M_offset_15 = M[offset + 15];
+
+	            // Working varialbes
+	            var a = H[0];
+	            var b = H[1];
+	            var c = H[2];
+	            var d = H[3];
+
+	            // Computation
+	            a = FF(a, b, c, d, M_offset_0,  7,  T[0]);
+	            d = FF(d, a, b, c, M_offset_1,  12, T[1]);
+	            c = FF(c, d, a, b, M_offset_2,  17, T[2]);
+	            b = FF(b, c, d, a, M_offset_3,  22, T[3]);
+	            a = FF(a, b, c, d, M_offset_4,  7,  T[4]);
+	            d = FF(d, a, b, c, M_offset_5,  12, T[5]);
+	            c = FF(c, d, a, b, M_offset_6,  17, T[6]);
+	            b = FF(b, c, d, a, M_offset_7,  22, T[7]);
+	            a = FF(a, b, c, d, M_offset_8,  7,  T[8]);
+	            d = FF(d, a, b, c, M_offset_9,  12, T[9]);
+	            c = FF(c, d, a, b, M_offset_10, 17, T[10]);
+	            b = FF(b, c, d, a, M_offset_11, 22, T[11]);
+	            a = FF(a, b, c, d, M_offset_12, 7,  T[12]);
+	            d = FF(d, a, b, c, M_offset_13, 12, T[13]);
+	            c = FF(c, d, a, b, M_offset_14, 17, T[14]);
+	            b = FF(b, c, d, a, M_offset_15, 22, T[15]);
+
+	            a = GG(a, b, c, d, M_offset_1,  5,  T[16]);
+	            d = GG(d, a, b, c, M_offset_6,  9,  T[17]);
+	            c = GG(c, d, a, b, M_offset_11, 14, T[18]);
+	            b = GG(b, c, d, a, M_offset_0,  20, T[19]);
+	            a = GG(a, b, c, d, M_offset_5,  5,  T[20]);
+	            d = GG(d, a, b, c, M_offset_10, 9,  T[21]);
+	            c = GG(c, d, a, b, M_offset_15, 14, T[22]);
+	            b = GG(b, c, d, a, M_offset_4,  20, T[23]);
+	            a = GG(a, b, c, d, M_offset_9,  5,  T[24]);
+	            d = GG(d, a, b, c, M_offset_14, 9,  T[25]);
+	            c = GG(c, d, a, b, M_offset_3,  14, T[26]);
+	            b = GG(b, c, d, a, M_offset_8,  20, T[27]);
+	            a = GG(a, b, c, d, M_offset_13, 5,  T[28]);
+	            d = GG(d, a, b, c, M_offset_2,  9,  T[29]);
+	            c = GG(c, d, a, b, M_offset_7,  14, T[30]);
+	            b = GG(b, c, d, a, M_offset_12, 20, T[31]);
+
+	            a = HH(a, b, c, d, M_offset_5,  4,  T[32]);
+	            d = HH(d, a, b, c, M_offset_8,  11, T[33]);
+	            c = HH(c, d, a, b, M_offset_11, 16, T[34]);
+	            b = HH(b, c, d, a, M_offset_14, 23, T[35]);
+	            a = HH(a, b, c, d, M_offset_1,  4,  T[36]);
+	            d = HH(d, a, b, c, M_offset_4,  11, T[37]);
+	            c = HH(c, d, a, b, M_offset_7,  16, T[38]);
+	            b = HH(b, c, d, a, M_offset_10, 23, T[39]);
+	            a = HH(a, b, c, d, M_offset_13, 4,  T[40]);
+	            d = HH(d, a, b, c, M_offset_0,  11, T[41]);
+	            c = HH(c, d, a, b, M_offset_3,  16, T[42]);
+	            b = HH(b, c, d, a, M_offset_6,  23, T[43]);
+	            a = HH(a, b, c, d, M_offset_9,  4,  T[44]);
+	            d = HH(d, a, b, c, M_offset_12, 11, T[45]);
+	            c = HH(c, d, a, b, M_offset_15, 16, T[46]);
+	            b = HH(b, c, d, a, M_offset_2,  23, T[47]);
+
+	            a = II(a, b, c, d, M_offset_0,  6,  T[48]);
+	            d = II(d, a, b, c, M_offset_7,  10, T[49]);
+	            c = II(c, d, a, b, M_offset_14, 15, T[50]);
+	            b = II(b, c, d, a, M_offset_5,  21, T[51]);
+	            a = II(a, b, c, d, M_offset_12, 6,  T[52]);
+	            d = II(d, a, b, c, M_offset_3,  10, T[53]);
+	            c = II(c, d, a, b, M_offset_10, 15, T[54]);
+	            b = II(b, c, d, a, M_offset_1,  21, T[55]);
+	            a = II(a, b, c, d, M_offset_8,  6,  T[56]);
+	            d = II(d, a, b, c, M_offset_15, 10, T[57]);
+	            c = II(c, d, a, b, M_offset_6,  15, T[58]);
+	            b = II(b, c, d, a, M_offset_13, 21, T[59]);
+	            a = II(a, b, c, d, M_offset_4,  6,  T[60]);
+	            d = II(d, a, b, c, M_offset_11, 10, T[61]);
+	            c = II(c, d, a, b, M_offset_2,  15, T[62]);
+	            b = II(b, c, d, a, M_offset_9,  21, T[63]);
+
+	            // Intermediate hash value
+	            H[0] = (H[0] + a) | 0;
+	            H[1] = (H[1] + b) | 0;
+	            H[2] = (H[2] + c) | 0;
+	            H[3] = (H[3] + d) | 0;
+	        },
+
+	        _doFinalize: function () {
+	            // Shortcuts
+	            var data = this._data;
+	            var dataWords = data.words;
+
+	            var nBitsTotal = this._nDataBytes * 8;
+	            var nBitsLeft = data.sigBytes * 8;
+
+	            // Add padding
+	            dataWords[nBitsLeft >>> 5] |= 0x80 << (24 - nBitsLeft % 32);
+
+	            var nBitsTotalH = Math.floor(nBitsTotal / 0x100000000);
+	            var nBitsTotalL = nBitsTotal;
+	            dataWords[(((nBitsLeft + 64) >>> 9) << 4) + 15] = (
+	                (((nBitsTotalH << 8)  | (nBitsTotalH >>> 24)) & 0x00ff00ff) |
+	                (((nBitsTotalH << 24) | (nBitsTotalH >>> 8))  & 0xff00ff00)
+	            );
+	            dataWords[(((nBitsLeft + 64) >>> 9) << 4) + 14] = (
+	                (((nBitsTotalL << 8)  | (nBitsTotalL >>> 24)) & 0x00ff00ff) |
+	                (((nBitsTotalL << 24) | (nBitsTotalL >>> 8))  & 0xff00ff00)
+	            );
+
+	            data.sigBytes = (dataWords.length + 1) * 4;
+
+	            // Hash final blocks
+	            this._process();
+
+	            // Shortcuts
+	            var hash = this._hash;
+	            var H = hash.words;
+
+	            // Swap endian
+	            for (var i = 0; i < 4; i++) {
+	                // Shortcut
+	                var H_i = H[i];
+
+	                H[i] = (((H_i << 8)  | (H_i >>> 24)) & 0x00ff00ff) |
+	                       (((H_i << 24) | (H_i >>> 8))  & 0xff00ff00);
+	            }
+
+	            // Return final computed hash
+	            return hash;
+	        },
+
+	        clone: function () {
+	            var clone = Hasher.clone.call(this);
+	            clone._hash = this._hash.clone();
+
+	            return clone;
+	        }
+	    });
+
+	    function FF(a, b, c, d, x, s, t) {
+	        var n = a + ((b & c) | (~b & d)) + x + t;
+	        return ((n << s) | (n >>> (32 - s))) + b;
+	    }
+
+	    function GG(a, b, c, d, x, s, t) {
+	        var n = a + ((b & d) | (c & ~d)) + x + t;
+	        return ((n << s) | (n >>> (32 - s))) + b;
+	    }
+
+	    function HH(a, b, c, d, x, s, t) {
+	        var n = a + (b ^ c ^ d) + x + t;
+	        return ((n << s) | (n >>> (32 - s))) + b;
+	    }
+
+	    function II(a, b, c, d, x, s, t) {
+	        var n = a + (c ^ (b | ~d)) + x + t;
+	        return ((n << s) | (n >>> (32 - s))) + b;
+	    }
+
+	    /**
+	     * Shortcut function to the hasher's object interface.
+	     *
+	     * @param {WordArray|string} message The message to hash.
+	     *
+	     * @return {WordArray} The hash.
+	     *
+	     * @static
+	     *
+	     * @example
+	     *
+	     *     var hash = CryptoJS.MD5('message');
+	     *     var hash = CryptoJS.MD5(wordArray);
+	     */
+	    C.MD5 = Hasher._createHelper(MD5);
+
+	    /**
+	     * Shortcut function to the HMAC's object interface.
+	     *
+	     * @param {WordArray|string} message The message to hash.
+	     * @param {WordArray|string} key The secret key.
+	     *
+	     * @return {WordArray} The HMAC.
+	     *
+	     * @static
+	     *
+	     * @example
+	     *
+	     *     var hmac = CryptoJS.HmacMD5(message, key);
+	     */
+	    C.HmacMD5 = Hasher._createHmacHelper(MD5);
+	}(Math));
+
+
+	return CryptoJS.MD5;
+
+}));
\ No newline at end of file
diff --git a/oxAuth/Server/src/main/webapp/js/crypto-js-4.1.1/mode-cfb.js b/oxAuth/Server/src/main/webapp/js/crypto-js-4.1.1/mode-cfb.js
new file mode 100644
index 00000000..444c9cb9
--- /dev/null
+++ b/oxAuth/Server/src/main/webapp/js/crypto-js-4.1.1/mode-cfb.js
@@ -0,0 +1,80 @@
+;(function (root, factory, undef) {
+	if (typeof exports === "object") {
+		// CommonJS
+		module.exports = exports = factory(require("./core"), require("./cipher-core"));
+	}
+	else if (typeof define === "function" && define.amd) {
+		// AMD
+		define(["./core", "./cipher-core"], factory);
+	}
+	else {
+		// Global (browser)
+		factory(root.CryptoJS);
+	}
+}(this, function (CryptoJS) {
+
+	/**
+	 * Cipher Feedback block mode.
+	 */
+	CryptoJS.mode.CFB = (function () {
+	    var CFB = CryptoJS.lib.BlockCipherMode.extend();
+
+	    CFB.Encryptor = CFB.extend({
+	        processBlock: function (words, offset) {
+	            // Shortcuts
+	            var cipher = this._cipher;
+	            var blockSize = cipher.blockSize;
+
+	            generateKeystreamAndEncrypt.call(this, words, offset, blockSize, cipher);
+
+	            // Remember this block to use with next block
+	            this._prevBlock = words.slice(offset, offset + blockSize);
+	        }
+	    });
+
+	    CFB.Decryptor = CFB.extend({
+	        processBlock: function (words, offset) {
+	            // Shortcuts
+	            var cipher = this._cipher;
+	            var blockSize = cipher.blockSize;
+
+	            // Remember this block to use with next block
+	            var thisBlock = words.slice(offset, offset + blockSize);
+
+	            generateKeystreamAndEncrypt.call(this, words, offset, blockSize, cipher);
+
+	            // This block becomes the previous block
+	            this._prevBlock = thisBlock;
+	        }
+	    });
+
+	    function generateKeystreamAndEncrypt(words, offset, blockSize, cipher) {
+	        var keystream;
+
+	        // Shortcut
+	        var iv = this._iv;
+
+	        // Generate keystream
+	        if (iv) {
+	            keystream = iv.slice(0);
+
+	            // Remove IV for subsequent blocks
+	            this._iv = undefined;
+	        } else {
+	            keystream = this._prevBlock;
+	        }
+	        cipher.encryptBlock(keystream, 0);
+
+	        // Encrypt
+	        for (var i = 0; i < blockSize; i++) {
+	            words[offset + i] ^= keystream[i];
+	        }
+	    }
+
+	    return CFB;
+	}());
+
+
+	return CryptoJS.mode.CFB;
+
+}));
\ No newline at end of file
diff --git a/oxAuth/Server/src/main/webapp/js/crypto-js-4.1.1/mode-ctr-gladman.js b/oxAuth/Server/src/main/webapp/js/crypto-js-4.1.1/mode-ctr-gladman.js
new file mode 100644
index 00000000..bbc56876
--- /dev/null
+++ b/oxAuth/Server/src/main/webapp/js/crypto-js-4.1.1/mode-ctr-gladman.js
@@ -0,0 +1,116 @@
+;(function (root, factory, undef) {
+	if (typeof exports === "object") {
+		// CommonJS
+		module.exports = exports = factory(require("./core"), require("./cipher-core"));
+	}
+	else if (typeof define === "function" && define.amd) {
+		// AMD
+		define(["./core", "./cipher-core"], factory);
+	}
+	else {
+		// Global (browser)
+		factory(root.CryptoJS);
+	}
+}(this, function (CryptoJS) {
+
+	/** @preserve
+	 * Counter block mode compatible with  Dr Brian Gladman fileenc.c
+	 * derived from CryptoJS.mode.CTR
+	 * Jan Hruby jhruby.web@gmail.com
+	 */
+	CryptoJS.mode.CTRGladman = (function () {
+	    var CTRGladman = CryptoJS.lib.BlockCipherMode.extend();
+
+		function incWord(word)
+		{
+			if (((word >> 24) & 0xff) === 0xff) { //overflow
+			var b1 = (word >> 16)&0xff;
+			var b2 = (word >> 8)&0xff;
+			var b3 = word & 0xff;
+
+			if (b1 === 0xff) // overflow b1
+			{
+			b1 = 0;
+			if (b2 === 0xff)
+			{
+				b2 = 0;
+				if (b3 === 0xff)
+				{
+					b3 = 0;
+				}
+				else
+				{
+					++b3;
+				}
+			}
+			else
+			{
+				++b2;
+			}
+			}
+			else
+			{
+			++b1;
+			}
+
+			word = 0;
+			word += (b1 << 16);
+			word += (b2 << 8);
+			word += b3;
+			}
+			else
+			{
+			word += (0x01 << 24);
+			}
+			return word;
+		}
+
+		function incCounter(counter)
+		{
+			if ((counter[0] = incWord(counter[0])) === 0)
+			{
+				// encr_data in fileenc.c from  Dr Brian Gladman's counts only with DWORD j < 8
+				counter[1] = incWord(counter[1]);
+			}
+			return counter;
+		}
+
+	    var Encryptor = CTRGladman.Encryptor = CTRGladman.extend({
+	        processBlock: function (words, offset) {
+	            // Shortcuts
+	            var cipher = this._cipher
+	            var blockSize = cipher.blockSize;
+	            var iv = this._iv;
+	            var counter = this._counter;
+
+	            // Generate keystream
+	            if (iv) {
+	                counter = this._counter = iv.slice(0);
+
+	                // Remove IV for subsequent blocks
+	                this._iv = undefined;
+	            }
+
+				incCounter(counter);
+
+				var keystream = counter.slice(0);
+	            cipher.encryptBlock(keystream, 0);
+
+	            // Encrypt
+	            for (var i = 0; i < blockSize; i++) {
+	                words[offset + i] ^= keystream[i];
+	            }
+	        }
+	    });
+
+	    CTRGladman.Decryptor = Encryptor;
+
+	    return CTRGladman;
+	}());
+
+
+
+
+	return CryptoJS.mode.CTRGladman;
+
+}));
\ No newline at end of file
diff --git a/oxAuth/Server/src/main/webapp/js/crypto-js-4.1.1/mode-ctr.js b/oxAuth/Server/src/main/webapp/js/crypto-js-4.1.1/mode-ctr.js
new file mode 100644
index 00000000..c3d470a6
--- /dev/null
+++ b/oxAuth/Server/src/main/webapp/js/crypto-js-4.1.1/mode-ctr.js
@@ -0,0 +1,58 @@
+;(function (root, factory, undef) {
+	if (typeof exports === "object") {
+		// CommonJS
+		module.exports = exports = factory(require("./core"), require("./cipher-core"));
+	}
+	else if (typeof define === "function" && define.amd) {
+		// AMD
+		define(["./core", "./cipher-core"], factory);
+	}
+	else {
+		// Global (browser)
+		factory(root.CryptoJS);
+	}
+}(this, function (CryptoJS) {
+
+	/**
+	 * Counter block mode.
+	 */
+	CryptoJS.mode.CTR = (function () {
+	    var CTR = CryptoJS.lib.BlockCipherMode.extend();
+
+	    var Encryptor = CTR.Encryptor = CTR.extend({
+	        processBlock: function (words, offset) {
+	            // Shortcuts
+	            var cipher = this._cipher
+	            var blockSize = cipher.blockSize;
+	            var iv = this._iv;
+	            var counter = this._counter;
+
+	            // Generate keystream
+	            if (iv) {
+	                counter = this._counter = iv.slice(0);
+
+	                // Remove IV for subsequent blocks
+	                this._iv = undefined;
+	            }
+	            var keystream = counter.slice(0);
+	            cipher.encryptBlock(keystream, 0);
+
+	            // Increment counter
+	            counter[blockSize - 1] = (counter[blockSize - 1] + 1) | 0
+
+	            // Encrypt
+	            for (var i = 0; i < blockSize; i++) {
+	                words[offset + i] ^= keystream[i];
+	            }
+	        }
+	    });
+
+	    CTR.Decryptor = Encryptor;
+
+	    return CTR;
+	}());
+
+
+	return CryptoJS.mode.CTR;
+
+}));
\ No newline at end of file
diff --git a/oxAuth/Server/src/main/webapp/js/crypto-js-4.1.1/mode-ecb.js b/oxAuth/Server/src/main/webapp/js/crypto-js-4.1.1/mode-ecb.js
new file mode 100644
index 00000000..ff069217
--- /dev/null
+++ b/oxAuth/Server/src/main/webapp/js/crypto-js-4.1.1/mode-ecb.js
@@ -0,0 +1,40 @@
+;(function (root, factory, undef) {
+	if (typeof exports === "object") {
+		// CommonJS
+		module.exports = exports = factory(require("./core"), require("./cipher-core"));
+	}
+	else if (typeof define === "function" && define.amd) {
+		// AMD
+		define(["./core", "./cipher-core"], factory);
+	}
+	else {
+		// Global (browser)
+		factory(root.CryptoJS);
+	}
+}(this, function (CryptoJS) {
+
+	/**
+	 * Electronic Codebook block mode.
+	 */
+	CryptoJS.mode.ECB = (function () {
+	    var ECB = CryptoJS.lib.BlockCipherMode.extend();
+
+	    ECB.Encryptor = ECB.extend({
+	        processBlock: function (words, offset) {
+	            this._cipher.encryptBlock(words, offset);
+	        }
+	    });
+
+	    ECB.Decryptor = ECB.extend({
+	        processBlock: function (words, offset) {
+	            this._cipher.decryptBlock(words, offset);
+	        }
+	    });
+
+	    return ECB;
+	}());
+
+
+	return CryptoJS.mode.ECB;
+
+}));
\ No newline at end of file
diff --git a/oxAuth/Server/src/main/webapp/js/crypto-js-4.1.1/mode-ofb.js b/oxAuth/Server/src/main/webapp/js/crypto-js-4.1.1/mode-ofb.js
new file mode 100644
index 00000000..c01314c2
--- /dev/null
+++ b/oxAuth/Server/src/main/webapp/js/crypto-js-4.1.1/mode-ofb.js
@@ -0,0 +1,54 @@
+;(function (root, factory, undef) {
+	if (typeof exports === "object") {
+		// CommonJS
+		module.exports = exports = factory(require("./core"), require("./cipher-core"));
+	}
+	else if (typeof define === "function" && define.amd) {
+		// AMD
+		define(["./core", "./cipher-core"], factory);
+	}
+	else {
+		// Global (browser)
+		factory(root.CryptoJS);
+	}
+}(this, function (CryptoJS) {
+
+	/**
+	 * Output Feedback block mode.
+	 */
+	CryptoJS.mode.OFB = (function () {
+	    var OFB = CryptoJS.lib.BlockCipherMode.extend();
+
+	    var Encryptor = OFB.Encryptor = OFB.extend({
+	        processBlock: function (words, offset) {
+	            // Shortcuts
+	            var cipher = this._cipher
+	            var blockSize = cipher.blockSize;
+	            var iv = this._iv;
+	            var keystream = this._keystream;
+
+	            // Generate keystream
+	            if (iv) {
+	                keystream = this._keystream = iv.slice(0);
+
+	                // Remove IV for subsequent blocks
+	                this._iv = undefined;
+	            }
+	            cipher.encryptBlock(keystream, 0);
+
+	            // Encrypt
+	            for (var i = 0; i < blockSize; i++) {
+	                words[offset + i] ^= keystream[i];
+	            }
+	        }
+	    });
+
+	    OFB.Decryptor = Encryptor;
+
+	    return OFB;
+	}());
+
+
+	return CryptoJS.mode.OFB;
+
+}));
\ No newline at end of file
diff --git a/oxAuth/Server/src/main/webapp/js/crypto-js-4.1.1/package.json b/oxAuth/Server/src/main/webapp/js/crypto-js-4.1.1/package.json
new file mode 100644
index 00000000..76bb388a
--- /dev/null
+++ b/oxAuth/Server/src/main/webapp/js/crypto-js-4.1.1/package.json
@@ -0,0 +1,42 @@
+{
+  "name": "crypto-js",
+  "version": "4.1.1",
+  "description": "JavaScript library of crypto standards.",
+  "license": "MIT",
+  "author": {
+    "name": "Evan Vosberg",
+    "url": "http://github.com/evanvosberg"
+  },
+  "homepage": "http://github.com/brix/crypto-js",
+  "repository": {
+    "type": "git",
+    "url": "http://github.com/brix/crypto-js.git"
+  },
+  "keywords": [
+    "security",
+    "crypto",
+    "Hash",
+    "MD5",
+    "SHA1",
+    "SHA-1",
+    "SHA256",
+    "SHA-256",
+    "RC4",
+    "Rabbit",
+    "AES",
+    "DES",
+    "PBKDF2",
+    "HMAC",
+    "OFB",
+    "CFB",
+    "CTR",
+    "CBC",
+    "Base64",
+    "Base64url"
+  ],
+  "main": "index.js",
+  "dependencies": {},
+  "browser": {
+    "crypto": false
+  }
+}
diff --git a/oxAuth/Server/src/main/webapp/js/crypto-js-4.1.1/pad-ansix923.js b/oxAuth/Server/src/main/webapp/js/crypto-js-4.1.1/pad-ansix923.js
new file mode 100644
index 00000000..f01f21e4
--- /dev/null
+++ b/oxAuth/Server/src/main/webapp/js/crypto-js-4.1.1/pad-ansix923.js
@@ -0,0 +1,49 @@
+;(function (root, factory, undef) {
+	if (typeof exports === "object") {
+		// CommonJS
+		module.exports = exports = factory(require("./core"), require("./cipher-core"));
+	}
+	else if (typeof define === "function" && define.amd) {
+		// AMD
+		define(["./core", "./cipher-core"], factory);
+	}
+	else {
+		// Global (browser)
+		factory(root.CryptoJS);
+	}
+}(this, function (CryptoJS) {
+
+	/**
+	 * ANSI X.923 padding strategy.
+	 */
+	CryptoJS.pad.AnsiX923 = {
+	    pad: function (data, blockSize) {
+	        // Shortcuts
+	        var dataSigBytes = data.sigBytes;
+	        var blockSizeBytes = blockSize * 4;
+
+	        // Count padding bytes
+	        var nPaddingBytes = blockSizeBytes - dataSigBytes % blockSizeBytes;
+
+	        // Compute last byte position
+	        var lastBytePos = dataSigBytes + nPaddingBytes - 1;
+
+	        // Pad
+	        data.clamp();
+	        data.words[lastBytePos >>> 2] |= nPaddingBytes << (24 - (lastBytePos % 4) * 8);
+	        data.sigBytes += nPaddingBytes;
+	    },
+
+	    unpad: function (data) {
+	        // Get number of padding bytes from last byte
+	        var nPaddingBytes = data.words[(data.sigBytes - 1) >>> 2] & 0xff;
+
+	        // Remove padding
+	        data.sigBytes -= nPaddingBytes;
+	    }
+	};
+
+
+	return CryptoJS.pad.Ansix923;
+
+}));
\ No newline at end of file
diff --git a/oxAuth/Server/src/main/webapp/js/crypto-js-4.1.1/pad-iso10126.js b/oxAuth/Server/src/main/webapp/js/crypto-js-4.1.1/pad-iso10126.js
new file mode 100644
index 00000000..6e2aefd8
--- /dev/null
+++ b/oxAuth/Server/src/main/webapp/js/crypto-js-4.1.1/pad-iso10126.js
@@ -0,0 +1,44 @@
+;(function (root, factory, undef) {
+	if (typeof exports === "object") {
+		// CommonJS
+		module.exports = exports = factory(require("./core"), require("./cipher-core"));
+	}
+	else if (typeof define === "function" && define.amd) {
+		// AMD
+		define(["./core", "./cipher-core"], factory);
+	}
+	else {
+		// Global (browser)
+		factory(root.CryptoJS);
+	}
+}(this, function (CryptoJS) {
+
+	/**
+	 * ISO 10126 padding strategy.
+	 */
+	CryptoJS.pad.Iso10126 = {
+	    pad: function (data, blockSize) {
+	        // Shortcut
+	        var blockSizeBytes = blockSize * 4;
+
+	        // Count padding bytes
+	        var nPaddingBytes = blockSizeBytes - data.sigBytes % blockSizeBytes;
+
+	        // Pad
+	        data.concat(CryptoJS.lib.WordArray.random(nPaddingBytes - 1)).
+	             concat(CryptoJS.lib.WordArray.create([nPaddingBytes << 24], 1));
+	    },
+
+	    unpad: function (data) {
+	        // Get number of padding bytes from last byte
+	        var nPaddingBytes = data.words[(data.sigBytes - 1) >>> 2] & 0xff;
+
+	        // Remove padding
+	        data.sigBytes -= nPaddingBytes;
+	    }
+	};
+
+
+	return CryptoJS.pad.Iso10126;
+
+}));
\ No newline at end of file
diff --git a/oxAuth/Server/src/main/webapp/js/crypto-js-4.1.1/pad-iso97971.js b/oxAuth/Server/src/main/webapp/js/crypto-js-4.1.1/pad-iso97971.js
new file mode 100644
index 00000000..41049b45
--- /dev/null
+++ b/oxAuth/Server/src/main/webapp/js/crypto-js-4.1.1/pad-iso97971.js
@@ -0,0 +1,40 @@
+;(function (root, factory, undef) {
+	if (typeof exports === "object") {
+		// CommonJS
+		module.exports = exports = factory(require("./core"), require("./cipher-core"));
+	}
+	else if (typeof define === "function" && define.amd) {
+		// AMD
+		define(["./core", "./cipher-core"], factory);
+	}
+	else {
+		// Global (browser)
+		factory(root.CryptoJS);
+	}
+}(this, function (CryptoJS) {
+
+	/**
+	 * ISO/IEC 9797-1 Padding Method 2.
+	 */
+	CryptoJS.pad.Iso97971 = {
+	    pad: function (data, blockSize) {
+	        // Add 0x80 byte
+	        data.concat(CryptoJS.lib.WordArray.create([0x80000000], 1));
+
+	        // Zero pad the rest
+	        CryptoJS.pad.ZeroPadding.pad(data, blockSize);
+	    },
+
+	    unpad: function (data) {
+	        // Remove zero padding
+	        CryptoJS.pad.ZeroPadding.unpad(data);
+
+	        // Remove one more byte -- the 0x80 byte
+	        data.sigBytes--;
+	    }
+	};
+
+
+	return CryptoJS.pad.Iso97971;
+
+}));
\ No newline at end of file
diff --git a/oxAuth/Server/src/main/webapp/js/crypto-js-4.1.1/pad-nopadding.js b/oxAuth/Server/src/main/webapp/js/crypto-js-4.1.1/pad-nopadding.js
new file mode 100644
index 00000000..c7787c94
--- /dev/null
+++ b/oxAuth/Server/src/main/webapp/js/crypto-js-4.1.1/pad-nopadding.js
@@ -0,0 +1,30 @@
+;(function (root, factory, undef) {
+	if (typeof exports === "object") {
+		// CommonJS
+		module.exports = exports = factory(require("./core"), require("./cipher-core"));
+	}
+	else if (typeof define === "function" && define.amd) {
+		// AMD
+		define(["./core", "./cipher-core"], factory);
+	}
+	else {
+		// Global (browser)
+		factory(root.CryptoJS);
+	}
+}(this, function (CryptoJS) {
+
+	/**
+	 * A noop padding strategy.
+	 */
+	CryptoJS.pad.NoPadding = {
+	    pad: function () {
+	    },
+
+	    unpad: function () {
+	    }
+	};
+
+
+	return CryptoJS.pad.NoPadding;
+
+}));
\ No newline at end of file
diff --git a/oxAuth/Server/src/main/webapp/js/crypto-js-4.1.1/pad-pkcs7.js b/oxAuth/Server/src/main/webapp/js/crypto-js-4.1.1/pad-pkcs7.js
new file mode 100644
index 00000000..35551685
--- /dev/null
+++ b/oxAuth/Server/src/main/webapp/js/crypto-js-4.1.1/pad-pkcs7.js
@@ -0,0 +1,18 @@
+;(function (root, factory, undef) {
+	if (typeof exports === "object") {
+		// CommonJS
+		module.exports = exports = factory(require("./core"), require("./cipher-core"));
+	}
+	else if (typeof define === "function" && define.amd) {
+		// AMD
+		define(["./core", "./cipher-core"], factory);
+	}
+	else {
+		// Global (browser)
+		factory(root.CryptoJS);
+	}
+}(this, function (CryptoJS) {
+
+	return CryptoJS.pad.Pkcs7;
+
+}));
\ No newline at end of file
diff --git a/oxAuth/Server/src/main/webapp/js/crypto-js-4.1.1/pad-zeropadding.js b/oxAuth/Server/src/main/webapp/js/crypto-js-4.1.1/pad-zeropadding.js
new file mode 100644
index 00000000..a1a459ef
--- /dev/null
+++ b/oxAuth/Server/src/main/webapp/js/crypto-js-4.1.1/pad-zeropadding.js
@@ -0,0 +1,47 @@
+;(function (root, factory, undef) {
+	if (typeof exports === "object") {
+		// CommonJS
+		module.exports = exports = factory(require("./core"), require("./cipher-core"));
+	}
+	else if (typeof define === "function" && define.amd) {
+		// AMD
+		define(["./core", "./cipher-core"], factory);
+	}
+	else {
+		// Global (browser)
+		factory(root.CryptoJS);
+	}
+}(this, function (CryptoJS) {
+
+	/**
+	 * Zero padding strategy.
+	 */
+	CryptoJS.pad.ZeroPadding = {
+	    pad: function (data, blockSize) {
+	        // Shortcut
+	        var blockSizeBytes = blockSize * 4;
+
+	        // Pad
+	        data.clamp();
+	        data.sigBytes += blockSizeBytes - ((data.sigBytes % blockSizeBytes) || blockSizeBytes);
+	    },
+
+	    unpad: function (data) {
+	        // Shortcut
+	        var dataWords = data.words;
+
+	        // Unpad
+	        var i = data.sigBytes - 1;
+	        for (var i = data.sigBytes - 1; i >= 0; i--) {
+	            if (((dataWords[i >>> 2] >>> (24 - (i % 4) * 8)) & 0xff)) {
+	                data.sigBytes = i + 1;
+	                break;
+	            }
+	        }
+	    }
+	};
+
+
+	return CryptoJS.pad.ZeroPadding;
+
+}));
\ No newline at end of file
diff --git a/oxAuth/Server/src/main/webapp/js/crypto-js-4.1.1/pbkdf2.js b/oxAuth/Server/src/main/webapp/js/crypto-js-4.1.1/pbkdf2.js
new file mode 100644
index 00000000..1258251a
--- /dev/null
+++ b/oxAuth/Server/src/main/webapp/js/crypto-js-4.1.1/pbkdf2.js
@@ -0,0 +1,145 @@
+;(function (root, factory, undef) {
+	if (typeof exports === "object") {
+		// CommonJS
+		module.exports = exports = factory(require("./core"), require("./sha1"), require("./hmac"));
+	}
+	else if (typeof define === "function" && define.amd) {
+		// AMD
+		define(["./core", "./sha1", "./hmac"], factory);
+	}
+	else {
+		// Global (browser)
+		factory(root.CryptoJS);
+	}
+}(this, function (CryptoJS) {
+
+	(function () {
+	    // Shortcuts
+	    var C = CryptoJS;
+	    var C_lib = C.lib;
+	    var Base = C_lib.Base;
+	    var WordArray = C_lib.WordArray;
+	    var C_algo = C.algo;
+	    var SHA1 = C_algo.SHA1;
+	    var HMAC = C_algo.HMAC;
+
+	    /**
+	     * Password-Based Key Derivation Function 2 algorithm.
+	     */
+	    var PBKDF2 = C_algo.PBKDF2 = Base.extend({
+	        /**
+	         * Configuration options.
+	         *
+	         * @property {number} keySize The key size in words to generate. Default: 4 (128 bits)
+	         * @property {Hasher} hasher The hasher to use. Default: SHA1
+	         * @property {number} iterations The number of iterations to perform. Default: 1
+	         */
+	        cfg: Base.extend({
+	            keySize: 128/32,
+	            hasher: SHA1,
+	            iterations: 1
+	        }),
+
+	        /**
+	         * Initializes a newly created key derivation function.
+	         *
+	         * @param {Object} cfg (Optional) The configuration options to use for the derivation.
+	         *
+	         * @example
+	         *
+	         *     var kdf = CryptoJS.algo.PBKDF2.create();
+	         *     var kdf = CryptoJS.algo.PBKDF2.create({ keySize: 8 });
+	         *     var kdf = CryptoJS.algo.PBKDF2.create({ keySize: 8, iterations: 1000 });
+	         */
+	        init: function (cfg) {
+	            this.cfg = this.cfg.extend(cfg);
+	        },
+
+	        /**
+	         * Computes the Password-Based Key Derivation Function 2.
+	         *
+	         * @param {WordArray|string} password The password.
+	         * @param {WordArray|string} salt A salt.
+	         *
+	         * @return {WordArray} The derived key.
+	         *
+	         * @example
+	         *
+	         *     var key = kdf.compute(password, salt);
+	         */
+	        compute: function (password, salt) {
+	            // Shortcut
+	            var cfg = this.cfg;
+
+	            // Init HMAC
+	            var hmac = HMAC.create(cfg.hasher, password);
+
+	            // Initial values
+	            var derivedKey = WordArray.create();
+	            var blockIndex = WordArray.create([0x00000001]);
+
+	            // Shortcuts
+	            var derivedKeyWords = derivedKey.words;
+	            var blockIndexWords = blockIndex.words;
+	            var keySize = cfg.keySize;
+	            var iterations = cfg.iterations;
+
+	            // Generate key
+	            while (derivedKeyWords.length < keySize) {
+	                var block = hmac.update(salt).finalize(blockIndex);
+	                hmac.reset();
+
+	                // Shortcuts
+	                var blockWords = block.words;
+	                var blockWordsLength = blockWords.length;
+
+	                // Iterations
+	                var intermediate = block;
+	                for (var i = 1; i < iterations; i++) {
+	                    intermediate = hmac.finalize(intermediate);
+	                    hmac.reset();
+
+	                    // Shortcut
+	                    var intermediateWords = intermediate.words;
+
+	                    // XOR intermediate with block
+	                    for (var j = 0; j < blockWordsLength; j++) {
+	                        blockWords[j] ^= intermediateWords[j];
+	                    }
+	                }
+
+	                derivedKey.concat(block);
+	                blockIndexWords[0]++;
+	            }
+	            derivedKey.sigBytes = keySize * 4;
+
+	            return derivedKey;
+	        }
+	    });
+
+	    /**
+	     * Computes the Password-Based Key Derivation Function 2.
+	     *
+	     * @param {WordArray|string} password The password.
+	     * @param {WordArray|string} salt A salt.
+	     * @param {Object} cfg (Optional) The configuration options to use for this computation.
+	     *
+	     * @return {WordArray} The derived key.
+	     *
+	     * @static
+	     *
+	     * @example
+	     *
+	     *     var key = CryptoJS.PBKDF2(password, salt);
+	     *     var key = CryptoJS.PBKDF2(password, salt, { keySize: 8 });
+	     *     var key = CryptoJS.PBKDF2(password, salt, { keySize: 8, iterations: 1000 });
+	     */
+	    C.PBKDF2 = function (password, salt, cfg) {
+	        return PBKDF2.create(cfg).compute(password, salt);
+	    };
+	}());
+
+
+	return CryptoJS.PBKDF2;
+
+}));
\ No newline at end of file
diff --git a/oxAuth/Server/src/main/webapp/js/crypto-js-4.1.1/rabbit-legacy.js b/oxAuth/Server/src/main/webapp/js/crypto-js-4.1.1/rabbit-legacy.js
new file mode 100644
index 00000000..e118b6b6
--- /dev/null
+++ b/oxAuth/Server/src/main/webapp/js/crypto-js-4.1.1/rabbit-legacy.js
@@ -0,0 +1,190 @@
+;(function (root, factory, undef) {
+	if (typeof exports === "object") {
+		// CommonJS
+		module.exports = exports = factory(require("./core"), require("./enc-base64"), require("./md5"), require("./evpkdf"), require("./cipher-core"));
+	}
+	else if (typeof define === "function" && define.amd) {
+		// AMD
+		define(["./core", "./enc-base64", "./md5", "./evpkdf", "./cipher-core"], factory);
+	}
+	else {
+		// Global (browser)
+		factory(root.CryptoJS);
+	}
+}(this, function (CryptoJS) {
+
+	(function () {
+	    // Shortcuts
+	    var C = CryptoJS;
+	    var C_lib = C.lib;
+	    var StreamCipher = C_lib.StreamCipher;
+	    var C_algo = C.algo;
+
+	    // Reusable objects
+	    var S  = [];
+	    var C_ = [];
+	    var G  = [];
+
+	    /**
+	     * Rabbit stream cipher algorithm.
+	     *
+	     * This is a legacy version that neglected to convert the key to little-endian.
+	     * This error doesn't affect the cipher's security,
+	     * but it does affect its compatibility with other implementations.
+	     */
+	    var RabbitLegacy = C_algo.RabbitLegacy = StreamCipher.extend({
+	        _doReset: function () {
+	            // Shortcuts
+	            var K = this._key.words;
+	            var iv = this.cfg.iv;
+
+	            // Generate initial state values
+	            var X = this._X = [
+	                K[0], (K[3] << 16) | (K[2] >>> 16),
+	                K[1], (K[0] << 16) | (K[3] >>> 16),
+	                K[2], (K[1] << 16) | (K[0] >>> 16),
+	                K[3], (K[2] << 16) | (K[1] >>> 16)
+	            ];
+
+	            // Generate initial counter values
+	            var C = this._C = [
+	                (K[2] << 16) | (K[2] >>> 16), (K[0] & 0xffff0000) | (K[1] & 0x0000ffff),
+	                (K[3] << 16) | (K[3] >>> 16), (K[1] & 0xffff0000) | (K[2] & 0x0000ffff),
+	                (K[0] << 16) | (K[0] >>> 16), (K[2] & 0xffff0000) | (K[3] & 0x0000ffff),
+	                (K[1] << 16) | (K[1] >>> 16), (K[3] & 0xffff0000) | (K[0] & 0x0000ffff)
+	            ];
+
+	            // Carry bit
+	            this._b = 0;
+
+	            // Iterate the system four times
+	            for (var i = 0; i < 4; i++) {
+	                nextState.call(this);
+	            }
+
+	            // Modify the counters
+	            for (var i = 0; i < 8; i++) {
+	                C[i] ^= X[(i + 4) & 7];
+	            }
+
+	            // IV setup
+	            if (iv) {
+	                // Shortcuts
+	                var IV = iv.words;
+	                var IV_0 = IV[0];
+	                var IV_1 = IV[1];
+
+	                // Generate four subvectors
+	                var i0 = (((IV_0 << 8) | (IV_0 >>> 24)) & 0x00ff00ff) | (((IV_0 << 24) | (IV_0 >>> 8)) & 0xff00ff00);
+	                var i2 = (((IV_1 << 8) | (IV_1 >>> 24)) & 0x00ff00ff) | (((IV_1 << 24) | (IV_1 >>> 8)) & 0xff00ff00);
+	                var i1 = (i0 >>> 16) | (i2 & 0xffff0000);
+	                var i3 = (i2 << 16)  | (i0 & 0x0000ffff);
+
+	                // Modify counter values
+	                C[0] ^= i0;
+	                C[1] ^= i1;
+	                C[2] ^= i2;
+	                C[3] ^= i3;
+	                C[4] ^= i0;
+	                C[5] ^= i1;
+	                C[6] ^= i2;
+	                C[7] ^= i3;
+
+	                // Iterate the system four times
+	                for (var i = 0; i < 4; i++) {
+	                    nextState.call(this);
+	                }
+	            }
+	        },
+
+	        _doProcessBlock: function (M, offset) {
+	            // Shortcut
+	            var X = this._X;
+
+	            // Iterate the system
+	            nextState.call(this);
+
+	            // Generate four keystream words
+	            S[0] = X[0] ^ (X[5] >>> 16) ^ (X[3] << 16);
+	            S[1] = X[2] ^ (X[7] >>> 16) ^ (X[5] << 16);
+	            S[2] = X[4] ^ (X[1] >>> 16) ^ (X[7] << 16);
+	            S[3] = X[6] ^ (X[3] >>> 16) ^ (X[1] << 16);
+
+	            for (var i = 0; i < 4; i++) {
+	                // Swap endian
+	                S[i] = (((S[i] << 8)  | (S[i] >>> 24)) & 0x00ff00ff) |
+	                       (((S[i] << 24) | (S[i] >>> 8))  & 0xff00ff00);
+
+	                // Encrypt
+	                M[offset + i] ^= S[i];
+	            }
+	        },
+
+	        blockSize: 128/32,
+
+	        ivSize: 64/32
+	    });
+
+	    function nextState() {
+	        // Shortcuts
+	        var X = this._X;
+	        var C = this._C;
+
+	        // Save old counter values
+	        for (var i = 0; i < 8; i++) {
+	            C_[i] = C[i];
+	        }
+
+	        // Calculate new counter values
+	        C[0] = (C[0] + 0x4d34d34d + this._b) | 0;
+	        C[1] = (C[1] + 0xd34d34d3 + ((C[0] >>> 0) < (C_[0] >>> 0) ? 1 : 0)) | 0;
+	        C[2] = (C[2] + 0x34d34d34 + ((C[1] >>> 0) < (C_[1] >>> 0) ? 1 : 0)) | 0;
+	        C[3] = (C[3] + 0x4d34d34d + ((C[2] >>> 0) < (C_[2] >>> 0) ? 1 : 0)) | 0;
+	        C[4] = (C[4] + 0xd34d34d3 + ((C[3] >>> 0) < (C_[3] >>> 0) ? 1 : 0)) | 0;
+	        C[5] = (C[5] + 0x34d34d34 + ((C[4] >>> 0) < (C_[4] >>> 0) ? 1 : 0)) | 0;
+	        C[6] = (C[6] + 0x4d34d34d + ((C[5] >>> 0) < (C_[5] >>> 0) ? 1 : 0)) | 0;
+	        C[7] = (C[7] + 0xd34d34d3 + ((C[6] >>> 0) < (C_[6] >>> 0) ? 1 : 0)) | 0;
+	        this._b = (C[7] >>> 0) < (C_[7] >>> 0) ? 1 : 0;
+
+	        // Calculate the g-values
+	        for (var i = 0; i < 8; i++) {
+	            var gx = X[i] + C[i];
+
+	            // Construct high and low argument for squaring
+	            var ga = gx & 0xffff;
+	            var gb = gx >>> 16;
+
+	            // Calculate high and low result of squaring
+	            var gh = ((((ga * ga) >>> 17) + ga * gb) >>> 15) + gb * gb;
+	            var gl = (((gx & 0xffff0000) * gx) | 0) + (((gx & 0x0000ffff) * gx) | 0);
+
+	            // High XOR low
+	            G[i] = gh ^ gl;
+	        }
+
+	        // Calculate new state values
+	        X[0] = (G[0] + ((G[7] << 16) | (G[7] >>> 16)) + ((G[6] << 16) | (G[6] >>> 16))) | 0;
+	        X[1] = (G[1] + ((G[0] << 8)  | (G[0] >>> 24)) + G[7]) | 0;
+	        X[2] = (G[2] + ((G[1] << 16) | (G[1] >>> 16)) + ((G[0] << 16) | (G[0] >>> 16))) | 0;
+	        X[3] = (G[3] + ((G[2] << 8)  | (G[2] >>> 24)) + G[1]) | 0;
+	        X[4] = (G[4] + ((G[3] << 16) | (G[3] >>> 16)) + ((G[2] << 16) | (G[2] >>> 16))) | 0;
+	        X[5] = (G[5] + ((G[4] << 8)  | (G[4] >>> 24)) + G[3]) | 0;
+	        X[6] = (G[6] + ((G[5] << 16) | (G[5] >>> 16)) + ((G[4] << 16) | (G[4] >>> 16))) | 0;
+	        X[7] = (G[7] + ((G[6] << 8)  | (G[6] >>> 24)) + G[5]) | 0;
+	    }
+
+	    /**
+	     * Shortcut functions to the cipher's object interface.
+	     *
+	     * @example
+	     *
+	     *     var ciphertext = CryptoJS.RabbitLegacy.encrypt(message, key, cfg);
+	     *     var plaintext  = CryptoJS.RabbitLegacy.decrypt(ciphertext, key, cfg);
+	     */
+	    C.RabbitLegacy = StreamCipher._createHelper(RabbitLegacy);
+	}());
+
+
+	return CryptoJS.RabbitLegacy;
+
+}));
\ No newline at end of file
diff --git a/oxAuth/Server/src/main/webapp/js/crypto-js-4.1.1/rabbit.js b/oxAuth/Server/src/main/webapp/js/crypto-js-4.1.1/rabbit.js
new file mode 100644
index 00000000..1b068336
--- /dev/null
+++ b/oxAuth/Server/src/main/webapp/js/crypto-js-4.1.1/rabbit.js
@@ -0,0 +1,192 @@
+;(function (root, factory, undef) {
+	if (typeof exports === "object") {
+		// CommonJS
+		module.exports = exports = factory(require("./core"), require("./enc-base64"), require("./md5"), require("./evpkdf"), require("./cipher-core"));
+	}
+	else if (typeof define === "function" && define.amd) {
+		// AMD
+		define(["./core", "./enc-base64", "./md5", "./evpkdf", "./cipher-core"], factory);
+	}
+	else {
+		// Global (browser)
+		factory(root.CryptoJS);
+	}
+}(this, function (CryptoJS) {
+
+	(function () {
+	    // Shortcuts
+	    var C = CryptoJS;
+	    var C_lib = C.lib;
+	    var StreamCipher = C_lib.StreamCipher;
+	    var C_algo = C.algo;
+
+	    // Reusable objects
+	    var S  = [];
+	    var C_ = [];
+	    var G  = [];
+
+	    /**
+	     * Rabbit stream cipher algorithm
+	     */
+	    var Rabbit = C_algo.Rabbit = StreamCipher.extend({
+	        _doReset: function () {
+	            // Shortcuts
+	            var K = this._key.words;
+	            var iv = this.cfg.iv;
+
+	            // Swap endian
+	            for (var i = 0; i < 4; i++) {
+	                K[i] = (((K[i] << 8)  | (K[i] >>> 24)) & 0x00ff00ff) |
+	                       (((K[i] << 24) | (K[i] >>> 8))  & 0xff00ff00);
+	            }
+
+	            // Generate initial state values
+	            var X = this._X = [
+	                K[0], (K[3] << 16) | (K[2] >>> 16),
+	                K[1], (K[0] << 16) | (K[3] >>> 16),
+	                K[2], (K[1] << 16) | (K[0] >>> 16),
+	                K[3], (K[2] << 16) | (K[1] >>> 16)
+	            ];
+
+	            // Generate initial counter values
+	            var C = this._C = [
+	                (K[2] << 16) | (K[2] >>> 16), (K[0] & 0xffff0000) | (K[1] & 0x0000ffff),
+	                (K[3] << 16) | (K[3] >>> 16), (K[1] & 0xffff0000) | (K[2] & 0x0000ffff),
+	                (K[0] << 16) | (K[0] >>> 16), (K[2] & 0xffff0000) | (K[3] & 0x0000ffff),
+	                (K[1] << 16) | (K[1] >>> 16), (K[3] & 0xffff0000) | (K[0] & 0x0000ffff)
+	            ];
+
+	            // Carry bit
+	            this._b = 0;
+
+	            // Iterate the system four times
+	            for (var i = 0; i < 4; i++) {
+	                nextState.call(this);
+	            }
+
+	            // Modify the counters
+	            for (var i = 0; i < 8; i++) {
+	                C[i] ^= X[(i + 4) & 7];
+	            }
+
+	            // IV setup
+	            if (iv) {
+	                // Shortcuts
+	                var IV = iv.words;
+	                var IV_0 = IV[0];
+	                var IV_1 = IV[1];
+
+	                // Generate four subvectors
+	                var i0 = (((IV_0 << 8) | (IV_0 >>> 24)) & 0x00ff00ff) | (((IV_0 << 24) | (IV_0 >>> 8)) & 0xff00ff00);
+	                var i2 = (((IV_1 << 8) | (IV_1 >>> 24)) & 0x00ff00ff) | (((IV_1 << 24) | (IV_1 >>> 8)) & 0xff00ff00);
+	                var i1 = (i0 >>> 16) | (i2 & 0xffff0000);
+	                var i3 = (i2 << 16)  | (i0 & 0x0000ffff);
+
+	                // Modify counter values
+	                C[0] ^= i0;
+	                C[1] ^= i1;
+	                C[2] ^= i2;
+	                C[3] ^= i3;
+	                C[4] ^= i0;
+	                C[5] ^= i1;
+	                C[6] ^= i2;
+	                C[7] ^= i3;
+
+	                // Iterate the system four times
+	                for (var i = 0; i < 4; i++) {
+	                    nextState.call(this);
+	                }
+	            }
+	        },
+
+	        _doProcessBlock: function (M, offset) {
+	            // Shortcut
+	            var X = this._X;
+
+	            // Iterate the system
+	            nextState.call(this);
+
+	            // Generate four keystream words
+	            S[0] = X[0] ^ (X[5] >>> 16) ^ (X[3] << 16);
+	            S[1] = X[2] ^ (X[7] >>> 16) ^ (X[5] << 16);
+	            S[2] = X[4] ^ (X[1] >>> 16) ^ (X[7] << 16);
+	            S[3] = X[6] ^ (X[3] >>> 16) ^ (X[1] << 16);
+
+	            for (var i = 0; i < 4; i++) {
+	                // Swap endian
+	                S[i] = (((S[i] << 8)  | (S[i] >>> 24)) & 0x00ff00ff) |
+	                       (((S[i] << 24) | (S[i] >>> 8))  & 0xff00ff00);
+
+	                // Encrypt
+	                M[offset + i] ^= S[i];
+	            }
+	        },
+
+	        blockSize: 128/32,
+
+	        ivSize: 64/32
+	    });
+
+	    function nextState() {
+	        // Shortcuts
+	        var X = this._X;
+	        var C = this._C;
+
+	        // Save old counter values
+	        for (var i = 0; i < 8; i++) {
+	            C_[i] = C[i];
+	        }
+
+	        // Calculate new counter values
+	        C[0] = (C[0] + 0x4d34d34d + this._b) | 0;
+	        C[1] = (C[1] + 0xd34d34d3 + ((C[0] >>> 0) < (C_[0] >>> 0) ? 1 : 0)) | 0;
+	        C[2] = (C[2] + 0x34d34d34 + ((C[1] >>> 0) < (C_[1] >>> 0) ? 1 : 0)) | 0;
+	        C[3] = (C[3] + 0x4d34d34d + ((C[2] >>> 0) < (C_[2] >>> 0) ? 1 : 0)) | 0;
+	        C[4] = (C[4] + 0xd34d34d3 + ((C[3] >>> 0) < (C_[3] >>> 0) ? 1 : 0)) | 0;
+	        C[5] = (C[5] + 0x34d34d34 + ((C[4] >>> 0) < (C_[4] >>> 0) ? 1 : 0)) | 0;
+	        C[6] = (C[6] + 0x4d34d34d + ((C[5] >>> 0) < (C_[5] >>> 0) ? 1 : 0)) | 0;
+	        C[7] = (C[7] + 0xd34d34d3 + ((C[6] >>> 0) < (C_[6] >>> 0) ? 1 : 0)) | 0;
+	        this._b = (C[7] >>> 0) < (C_[7] >>> 0) ? 1 : 0;
+
+	        // Calculate the g-values
+	        for (var i = 0; i < 8; i++) {
+	            var gx = X[i] + C[i];
+
+	            // Construct high and low argument for squaring
+	            var ga = gx & 0xffff;
+	            var gb = gx >>> 16;
+
+	            // Calculate high and low result of squaring
+	            var gh = ((((ga * ga) >>> 17) + ga * gb) >>> 15) + gb * gb;
+	            var gl = (((gx & 0xffff0000) * gx) | 0) + (((gx & 0x0000ffff) * gx) | 0);
+
+	            // High XOR low
+	            G[i] = gh ^ gl;
+	        }
+
+	        // Calculate new state values
+	        X[0] = (G[0] + ((G[7] << 16) | (G[7] >>> 16)) + ((G[6] << 16) | (G[6] >>> 16))) | 0;
+	        X[1] = (G[1] + ((G[0] << 8)  | (G[0] >>> 24)) + G[7]) | 0;
+	        X[2] = (G[2] + ((G[1] << 16) | (G[1] >>> 16)) + ((G[0] << 16) | (G[0] >>> 16))) | 0;
+	        X[3] = (G[3] + ((G[2] << 8)  | (G[2] >>> 24)) + G[1]) | 0;
+	        X[4] = (G[4] + ((G[3] << 16) | (G[3] >>> 16)) + ((G[2] << 16) | (G[2] >>> 16))) | 0;
+	        X[5] = (G[5] + ((G[4] << 8)  | (G[4] >>> 24)) + G[3]) | 0;
+	        X[6] = (G[6] + ((G[5] << 16) | (G[5] >>> 16)) + ((G[4] << 16) | (G[4] >>> 16))) | 0;
+	        X[7] = (G[7] + ((G[6] << 8)  | (G[6] >>> 24)) + G[5]) | 0;
+	    }
+
+	    /**
+	     * Shortcut functions to the cipher's object interface.
+	     *
+	     * @example
+	     *
+	     *     var ciphertext = CryptoJS.Rabbit.encrypt(message, key, cfg);
+	     *     var plaintext  = CryptoJS.Rabbit.decrypt(ciphertext, key, cfg);
+	     */
+	    C.Rabbit = StreamCipher._createHelper(Rabbit);
+	}());
+
+
+	return CryptoJS.Rabbit;
+
+}));
\ No newline at end of file
diff --git a/oxAuth/Server/src/main/webapp/js/crypto-js-4.1.1/rc4.js b/oxAuth/Server/src/main/webapp/js/crypto-js-4.1.1/rc4.js
new file mode 100644
index 00000000..0e4bdff5
--- /dev/null
+++ b/oxAuth/Server/src/main/webapp/js/crypto-js-4.1.1/rc4.js
@@ -0,0 +1,139 @@
+;(function (root, factory, undef) {
+	if (typeof exports === "object") {
+		// CommonJS
+		module.exports = exports = factory(require("./core"), require("./enc-base64"), require("./md5"), require("./evpkdf"), require("./cipher-core"));
+	}
+	else if (typeof define === "function" && define.amd) {
+		// AMD
+		define(["./core", "./enc-base64", "./md5", "./evpkdf", "./cipher-core"], factory);
+	}
+	else {
+		// Global (browser)
+		factory(root.CryptoJS);
+	}
+}(this, function (CryptoJS) {
+
+	(function () {
+	    // Shortcuts
+	    var C = CryptoJS;
+	    var C_lib = C.lib;
+	    var StreamCipher = C_lib.StreamCipher;
+	    var C_algo = C.algo;
+
+	    /**
+	     * RC4 stream cipher algorithm.
+	     */
+	    var RC4 = C_algo.RC4 = StreamCipher.extend({
+	        _doReset: function () {
+	            // Shortcuts
+	            var key = this._key;
+	            var keyWords = key.words;
+	            var keySigBytes = key.sigBytes;
+
+	            // Init sbox
+	            var S = this._S = [];
+	            for (var i = 0; i < 256; i++) {
+	                S[i] = i;
+	            }
+
+	            // Key setup
+	            for (var i = 0, j = 0; i < 256; i++) {
+	                var keyByteIndex = i % keySigBytes;
+	                var keyByte = (keyWords[keyByteIndex >>> 2] >>> (24 - (keyByteIndex % 4) * 8)) & 0xff;
+
+	                j = (j + S[i] + keyByte) % 256;
+
+	                // Swap
+	                var t = S[i];
+	                S[i] = S[j];
+	                S[j] = t;
+	            }
+
+	            // Counters
+	            this._i = this._j = 0;
+	        },
+
+	        _doProcessBlock: function (M, offset) {
+	            M[offset] ^= generateKeystreamWord.call(this);
+	        },
+
+	        keySize: 256/32,
+
+	        ivSize: 0
+	    });
+
+	    function generateKeystreamWord() {
+	        // Shortcuts
+	        var S = this._S;
+	        var i = this._i;
+	        var j = this._j;
+
+	        // Generate keystream word
+	        var keystreamWord = 0;
+	        for (var n = 0; n < 4; n++) {
+	            i = (i + 1) % 256;
+	            j = (j + S[i]) % 256;
+
+	            // Swap
+	            var t = S[i];
+	            S[i] = S[j];
+	            S[j] = t;
+
+	            keystreamWord |= S[(S[i] + S[j]) % 256] << (24 - n * 8);
+	        }
+
+	        // Update counters
+	        this._i = i;
+	        this._j = j;
+
+	        return keystreamWord;
+	    }
+
+	    /**
+	     * Shortcut functions to the cipher's object interface.
+	     *
+	     * @example
+	     *
+	     *     var ciphertext = CryptoJS.RC4.encrypt(message, key, cfg);
+	     *     var plaintext  = CryptoJS.RC4.decrypt(ciphertext, key, cfg);
+	     */
+	    C.RC4 = StreamCipher._createHelper(RC4);
+
+	    /**
+	     * Modified RC4 stream cipher algorithm.
+	     */
+	    var RC4Drop = C_algo.RC4Drop = RC4.extend({
+	        /**
+	         * Configuration options.
+	         *
+	         * @property {number} drop The number of keystream words to drop. Default 192
+	         */
+	        cfg: RC4.cfg.extend({
+	            drop: 192
+	        }),
+
+	        _doReset: function () {
+	            RC4._doReset.call(this);
+
+	            // Drop
+	            for (var i = this.cfg.drop; i > 0; i--) {
+	                generateKeystreamWord.call(this);
+	            }
+	        }
+	    });
+
+	    /**
+	     * Shortcut functions to the cipher's object interface.
+	     *
+	     * @example
+	     *
+	     *     var ciphertext = CryptoJS.RC4Drop.encrypt(message, key, cfg);
+	     *     var plaintext  = CryptoJS.RC4Drop.decrypt(ciphertext, key, cfg);
+	     */
+	    C.RC4Drop = StreamCipher._createHelper(RC4Drop);
+	}());
+
+
+	return CryptoJS.RC4;
+
+}));
\ No newline at end of file
diff --git a/oxAuth/Server/src/main/webapp/js/crypto-js-4.1.1/ripemd160.js b/oxAuth/Server/src/main/webapp/js/crypto-js-4.1.1/ripemd160.js
new file mode 100644
index 00000000..24feb47c
--- /dev/null
+++ b/oxAuth/Server/src/main/webapp/js/crypto-js-4.1.1/ripemd160.js
@@ -0,0 +1,267 @@
+;(function (root, factory) {
+	if (typeof exports === "object") {
+		// CommonJS
+		module.exports = exports = factory(require("./core"));
+	}
+	else if (typeof define === "function" && define.amd) {
+		// AMD
+		define(["./core"], factory);
+	}
+	else {
+		// Global (browser)
+		factory(root.CryptoJS);
+	}
+}(this, function (CryptoJS) {
+
+	/** @preserve
+	(c) 2012 by Cédric Mesnil. All rights reserved.
+
+	Redistribution and use in source and binary forms, with or without modification, are permitted provided that the following conditions are met:
+
+	    - Redistributions of source code must retain the above copyright notice, this list of conditions and the following disclaimer.
+	    - Redistributions in binary form must reproduce the above copyright notice, this list of conditions and the following disclaimer in the documentation and/or other materials provided with the distribution.
+
+	THIS SOFTWARE IS PROVIDED BY THE COPYRIGHT HOLDERS AND CONTRIBUTORS "AS IS" AND ANY EXPRESS OR IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR PURPOSE ARE DISCLAIMED. IN NO EVENT SHALL THE COPYRIGHT HOLDER OR CONTRIBUTORS BE LIABLE FOR ANY DIRECT, INDIRECT, INCIDENTAL, SPECIAL, EXEMPLARY, OR CONSEQUENTIAL DAMAGES (INCLUDING, BUT NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS OR SERVICES; LOSS OF USE, DATA, OR PROFITS; OR BUSINESS INTERRUPTION) HOWEVER CAUSED AND ON ANY THEORY OF LIABILITY, WHETHER IN CONTRACT, STRICT LIABILITY, OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY OUT OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF SUCH DAMAGE.
+	*/
+
+	(function (Math) {
+	    // Shortcuts
+	    var C = CryptoJS;
+	    var C_lib = C.lib;
+	    var WordArray = C_lib.WordArray;
+	    var Hasher = C_lib.Hasher;
+	    var C_algo = C.algo;
+
+	    // Constants table
+	    var _zl = WordArray.create([
+	        0,  1,  2,  3,  4,  5,  6,  7,  8,  9, 10, 11, 12, 13, 14, 15,
+	        7,  4, 13,  1, 10,  6, 15,  3, 12,  0,  9,  5,  2, 14, 11,  8,
+	        3, 10, 14,  4,  9, 15,  8,  1,  2,  7,  0,  6, 13, 11,  5, 12,
+	        1,  9, 11, 10,  0,  8, 12,  4, 13,  3,  7, 15, 14,  5,  6,  2,
+	        4,  0,  5,  9,  7, 12,  2, 10, 14,  1,  3,  8, 11,  6, 15, 13]);
+	    var _zr = WordArray.create([
+	        5, 14,  7,  0,  9,  2, 11,  4, 13,  6, 15,  8,  1, 10,  3, 12,
+	        6, 11,  3,  7,  0, 13,  5, 10, 14, 15,  8, 12,  4,  9,  1,  2,
+	        15,  5,  1,  3,  7, 14,  6,  9, 11,  8, 12,  2, 10,  0,  4, 13,
+	        8,  6,  4,  1,  3, 11, 15,  0,  5, 12,  2, 13,  9,  7, 10, 14,
+	        12, 15, 10,  4,  1,  5,  8,  7,  6,  2, 13, 14,  0,  3,  9, 11]);
+	    var _sl = WordArray.create([
+	         11, 14, 15, 12,  5,  8,  7,  9, 11, 13, 14, 15,  6,  7,  9,  8,
+	        7, 6,   8, 13, 11,  9,  7, 15,  7, 12, 15,  9, 11,  7, 13, 12,
+	        11, 13,  6,  7, 14,  9, 13, 15, 14,  8, 13,  6,  5, 12,  7,  5,
+	          11, 12, 14, 15, 14, 15,  9,  8,  9, 14,  5,  6,  8,  6,  5, 12,
+	        9, 15,  5, 11,  6,  8, 13, 12,  5, 12, 13, 14, 11,  8,  5,  6 ]);
+	    var _sr = WordArray.create([
+	        8,  9,  9, 11, 13, 15, 15,  5,  7,  7,  8, 11, 14, 14, 12,  6,
+	        9, 13, 15,  7, 12,  8,  9, 11,  7,  7, 12,  7,  6, 15, 13, 11,
+	        9,  7, 15, 11,  8,  6,  6, 14, 12, 13,  5, 14, 13, 13,  7,  5,
+	        15,  5,  8, 11, 14, 14,  6, 14,  6,  9, 12,  9, 12,  5, 15,  8,
+	        8,  5, 12,  9, 12,  5, 14,  6,  8, 13,  6,  5, 15, 13, 11, 11 ]);
+
+	    var _hl =  WordArray.create([ 0x00000000, 0x5A827999, 0x6ED9EBA1, 0x8F1BBCDC, 0xA953FD4E]);
+	    var _hr =  WordArray.create([ 0x50A28BE6, 0x5C4DD124, 0x6D703EF3, 0x7A6D76E9, 0x00000000]);
+
+	    /**
+	     * RIPEMD160 hash algorithm.
+	     */
+	    var RIPEMD160 = C_algo.RIPEMD160 = Hasher.extend({
+	        _doReset: function () {
+	            this._hash  = WordArray.create([0x67452301, 0xEFCDAB89, 0x98BADCFE, 0x10325476, 0xC3D2E1F0]);
+	        },
+
+	        _doProcessBlock: function (M, offset) {
+
+	            // Swap endian
+	            for (var i = 0; i < 16; i++) {
+	                // Shortcuts
+	                var offset_i = offset + i;
+	                var M_offset_i = M[offset_i];
+
+	                // Swap
+	                M[offset_i] = (
+	                    (((M_offset_i << 8)  | (M_offset_i >>> 24)) & 0x00ff00ff) |
+	                    (((M_offset_i << 24) | (M_offset_i >>> 8))  & 0xff00ff00)
+	                );
+	            }
+	            // Shortcut
+	            var H  = this._hash.words;
+	            var hl = _hl.words;
+	            var hr = _hr.words;
+	            var zl = _zl.words;
+	            var zr = _zr.words;
+	            var sl = _sl.words;
+	            var sr = _sr.words;
+
+	            // Working variables
+	            var al, bl, cl, dl, el;
+	            var ar, br, cr, dr, er;
+
+	            ar = al = H[0];
+	            br = bl = H[1];
+	            cr = cl = H[2];
+	            dr = dl = H[3];
+	            er = el = H[4];
+	            // Computation
+	            var t;
+	            for (var i = 0; i < 80; i += 1) {
+	                t = (al +  M[offset+zl[i]])|0;
+	                if (i<16){
+		            t +=  f1(bl,cl,dl) + hl[0];
+	                } else if (i<32) {
+		            t +=  f2(bl,cl,dl) + hl[1];
+	                } else if (i<48) {
+		            t +=  f3(bl,cl,dl) + hl[2];
+	                } else if (i<64) {
+		            t +=  f4(bl,cl,dl) + hl[3];
+	                } else {// if (i<80) {
+		            t +=  f5(bl,cl,dl) + hl[4];
+	                }
+	                t = t|0;
+	                t =  rotl(t,sl[i]);
+	                t = (t+el)|0;
+	                al = el;
+	                el = dl;
+	                dl = rotl(cl, 10);
+	                cl = bl;
+	                bl = t;
+
+	                t = (ar + M[offset+zr[i]])|0;
+	                if (i<16){
+		            t +=  f5(br,cr,dr) + hr[0];
+	                } else if (i<32) {
+		            t +=  f4(br,cr,dr) + hr[1];
+	                } else if (i<48) {
+		            t +=  f3(br,cr,dr) + hr[2];
+	                } else if (i<64) {
+		            t +=  f2(br,cr,dr) + hr[3];
+	                } else {// if (i<80) {
+		            t +=  f1(br,cr,dr) + hr[4];
+	                }
+	                t = t|0;
+	                t =  rotl(t,sr[i]) ;
+	                t = (t+er)|0;
+	                ar = er;
+	                er = dr;
+	                dr = rotl(cr, 10);
+	                cr = br;
+	                br = t;
+	            }
+	            // Intermediate hash value
+	            t    = (H[1] + cl + dr)|0;
+	            H[1] = (H[2] + dl + er)|0;
+	            H[2] = (H[3] + el + ar)|0;
+	            H[3] = (H[4] + al + br)|0;
+	            H[4] = (H[0] + bl + cr)|0;
+	            H[0] =  t;
+	        },
+
+	        _doFinalize: function () {
+	            // Shortcuts
+	            var data = this._data;
+	            var dataWords = data.words;
+
+	            var nBitsTotal = this._nDataBytes * 8;
+	            var nBitsLeft = data.sigBytes * 8;
+
+	            // Add padding
+	            dataWords[nBitsLeft >>> 5] |= 0x80 << (24 - nBitsLeft % 32);
+	            dataWords[(((nBitsLeft + 64) >>> 9) << 4) + 14] = (
+	                (((nBitsTotal << 8)  | (nBitsTotal >>> 24)) & 0x00ff00ff) |
+	                (((nBitsTotal << 24) | (nBitsTotal >>> 8))  & 0xff00ff00)
+	            );
+	            data.sigBytes = (dataWords.length + 1) * 4;
+
+	            // Hash final blocks
+	            this._process();
+
+	            // Shortcuts
+	            var hash = this._hash;
+	            var H = hash.words;
+
+	            // Swap endian
+	            for (var i = 0; i < 5; i++) {
+	                // Shortcut
+	                var H_i = H[i];
+
+	                // Swap
+	                H[i] = (((H_i << 8)  | (H_i >>> 24)) & 0x00ff00ff) |
+	                       (((H_i << 24) | (H_i >>> 8))  & 0xff00ff00);
+	            }
+
+	            // Return final computed hash
+	            return hash;
+	        },
+
+	        clone: function () {
+	            var clone = Hasher.clone.call(this);
+	            clone._hash = this._hash.clone();
+
+	            return clone;
+	        }
+	    });
+
+
+	    function f1(x, y, z) {
+	        return ((x) ^ (y) ^ (z));
+
+	    }
+
+	    function f2(x, y, z) {
+	        return (((x)&(y)) | ((~x)&(z)));
+	    }
+
+	    function f3(x, y, z) {
+	        return (((x) | (~(y))) ^ (z));
+	    }
+
+	    function f4(x, y, z) {
+	        return (((x) & (z)) | ((y)&(~(z))));
+	    }
+
+	    function f5(x, y, z) {
+	        return ((x) ^ ((y) |(~(z))));
+
+	    }
+
+	    function rotl(x,n) {
+	        return (x<<n) | (x>>>(32-n));
+	    }
+
+
+	    /**
+	     * Shortcut function to the hasher's object interface.
+	     *
+	     * @param {WordArray|string} message The message to hash.
+	     *
+	     * @return {WordArray} The hash.
+	     *
+	     * @static
+	     *
+	     * @example
+	     *
+	     *     var hash = CryptoJS.RIPEMD160('message');
+	     *     var hash = CryptoJS.RIPEMD160(wordArray);
+	     */
+	    C.RIPEMD160 = Hasher._createHelper(RIPEMD160);
+
+	    /**
+	     * Shortcut function to the HMAC's object interface.
+	     *
+	     * @param {WordArray|string} message The message to hash.
+	     * @param {WordArray|string} key The secret key.
+	     *
+	     * @return {WordArray} The HMAC.
+	     *
+	     * @static
+	     *
+	     * @example
+	     *
+	     *     var hmac = CryptoJS.HmacRIPEMD160(message, key);
+	     */
+	    C.HmacRIPEMD160 = Hasher._createHmacHelper(RIPEMD160);
+	}(Math));
+
+
+	return CryptoJS.RIPEMD160;
+
+}));
\ No newline at end of file
diff --git a/oxAuth/Server/src/main/webapp/js/crypto-js-4.1.1/sha1.js b/oxAuth/Server/src/main/webapp/js/crypto-js-4.1.1/sha1.js
new file mode 100644
index 00000000..66911496
--- /dev/null
+++ b/oxAuth/Server/src/main/webapp/js/crypto-js-4.1.1/sha1.js
@@ -0,0 +1,150 @@
+;(function (root, factory) {
+	if (typeof exports === "object") {
+		// CommonJS
+		module.exports = exports = factory(require("./core"));
+	}
+	else if (typeof define === "function" && define.amd) {
+		// AMD
+		define(["./core"], factory);
+	}
+	else {
+		// Global (browser)
+		factory(root.CryptoJS);
+	}
+}(this, function (CryptoJS) {
+
+	(function () {
+	    // Shortcuts
+	    var C = CryptoJS;
+	    var C_lib = C.lib;
+	    var WordArray = C_lib.WordArray;
+	    var Hasher = C_lib.Hasher;
+	    var C_algo = C.algo;
+
+	    // Reusable object
+	    var W = [];
+
+	    /**
+	     * SHA-1 hash algorithm.
+	     */
+	    var SHA1 = C_algo.SHA1 = Hasher.extend({
+	        _doReset: function () {
+	            this._hash = new WordArray.init([
+	                0x67452301, 0xefcdab89,
+	                0x98badcfe, 0x10325476,
+	                0xc3d2e1f0
+	            ]);
+	        },
+
+	        _doProcessBlock: function (M, offset) {
+	            // Shortcut
+	            var H = this._hash.words;
+
+	            // Working variables
+	            var a = H[0];
+	            var b = H[1];
+	            var c = H[2];
+	            var d = H[3];
+	            var e = H[4];
+
+	            // Computation
+	            for (var i = 0; i < 80; i++) {
+	                if (i < 16) {
+	                    W[i] = M[offset + i] | 0;
+	                } else {
+	                    var n = W[i - 3] ^ W[i - 8] ^ W[i - 14] ^ W[i - 16];
+	                    W[i] = (n << 1) | (n >>> 31);
+	                }
+
+	                var t = ((a << 5) | (a >>> 27)) + e + W[i];
+	                if (i < 20) {
+	                    t += ((b & c) | (~b & d)) + 0x5a827999;
+	                } else if (i < 40) {
+	                    t += (b ^ c ^ d) + 0x6ed9eba1;
+	                } else if (i < 60) {
+	                    t += ((b & c) | (b & d) | (c & d)) - 0x70e44324;
+	                } else /* if (i < 80) */ {
+	                    t += (b ^ c ^ d) - 0x359d3e2a;
+	                }
+
+	                e = d;
+	                d = c;
+	                c = (b << 30) | (b >>> 2);
+	                b = a;
+	                a = t;
+	            }
+
+	            // Intermediate hash value
+	            H[0] = (H[0] + a) | 0;
+	            H[1] = (H[1] + b) | 0;
+	            H[2] = (H[2] + c) | 0;
+	            H[3] = (H[3] + d) | 0;
+	            H[4] = (H[4] + e) | 0;
+	        },
+
+	        _doFinalize: function () {
+	            // Shortcuts
+	            var data = this._data;
+	            var dataWords = data.words;
+
+	            var nBitsTotal = this._nDataBytes * 8;
+	            var nBitsLeft = data.sigBytes * 8;
+
+	            // Add padding
+	            dataWords[nBitsLeft >>> 5] |= 0x80 << (24 - nBitsLeft % 32);
+	            dataWords[(((nBitsLeft + 64) >>> 9) << 4) + 14] = Math.floor(nBitsTotal / 0x100000000);
+	            dataWords[(((nBitsLeft + 64) >>> 9) << 4) + 15] = nBitsTotal;
+	            data.sigBytes = dataWords.length * 4;
+
+	            // Hash final blocks
+	            this._process();
+
+	            // Return final computed hash
+	            return this._hash;
+	        },
+
+	        clone: function () {
+	            var clone = Hasher.clone.call(this);
+	            clone._hash = this._hash.clone();
+
+	            return clone;
+	        }
+	    });
+
+	    /**
+	     * Shortcut function to the hasher's object interface.
+	     *
+	     * @param {WordArray|string} message The message to hash.
+	     *
+	     * @return {WordArray} The hash.
+	     *
+	     * @static
+	     *
+	     * @example
+	     *
+	     *     var hash = CryptoJS.SHA1('message');
+	     *     var hash = CryptoJS.SHA1(wordArray);
+	     */
+	    C.SHA1 = Hasher._createHelper(SHA1);
+
+	    /**
+	     * Shortcut function to the HMAC's object interface.
+	     *
+	     * @param {WordArray|string} message The message to hash.
+	     * @param {WordArray|string} key The secret key.
+	     *
+	     * @return {WordArray} The HMAC.
+	     *
+	     * @static
+	     *
+	     * @example
+	     *
+	     *     var hmac = CryptoJS.HmacSHA1(message, key);
+	     */
+	    C.HmacSHA1 = Hasher._createHmacHelper(SHA1);
+	}());
+
+
+	return CryptoJS.SHA1;
+
+}));
\ No newline at end of file
diff --git a/oxAuth/Server/src/main/webapp/js/crypto-js-4.1.1/sha224.js b/oxAuth/Server/src/main/webapp/js/crypto-js-4.1.1/sha224.js
new file mode 100644
index 00000000..d8ce9885
--- /dev/null
+++ b/oxAuth/Server/src/main/webapp/js/crypto-js-4.1.1/sha224.js
@@ -0,0 +1,80 @@
+;(function (root, factory, undef) {
+	if (typeof exports === "object") {
+		// CommonJS
+		module.exports = exports = factory(require("./core"), require("./sha256"));
+	}
+	else if (typeof define === "function" && define.amd) {
+		// AMD
+		define(["./core", "./sha256"], factory);
+	}
+	else {
+		// Global (browser)
+		factory(root.CryptoJS);
+	}
+}(this, function (CryptoJS) {
+
+	(function () {
+	    // Shortcuts
+	    var C = CryptoJS;
+	    var C_lib = C.lib;
+	    var WordArray = C_lib.WordArray;
+	    var C_algo = C.algo;
+	    var SHA256 = C_algo.SHA256;
+
+	    /**
+	     * SHA-224 hash algorithm.
+	     */
+	    var SHA224 = C_algo.SHA224 = SHA256.extend({
+	        _doReset: function () {
+	            this._hash = new WordArray.init([
+	                0xc1059ed8, 0x367cd507, 0x3070dd17, 0xf70e5939,
+	                0xffc00b31, 0x68581511, 0x64f98fa7, 0xbefa4fa4
+	            ]);
+	        },
+
+	        _doFinalize: function () {
+	            var hash = SHA256._doFinalize.call(this);
+
+	            hash.sigBytes -= 4;
+
+	            return hash;
+	        }
+	    });
+
+	    /**
+	     * Shortcut function to the hasher's object interface.
+	     *
+	     * @param {WordArray|string} message The message to hash.
+	     *
+	     * @return {WordArray} The hash.
+	     *
+	     * @static
+	     *
+	     * @example
+	     *
+	     *     var hash = CryptoJS.SHA224('message');
+	     *     var hash = CryptoJS.SHA224(wordArray);
+	     */
+	    C.SHA224 = SHA256._createHelper(SHA224);
+
+	    /**
+	     * Shortcut function to the HMAC's object interface.
+	     *
+	     * @param {WordArray|string} message The message to hash.
+	     * @param {WordArray|string} key The secret key.
+	     *
+	     * @return {WordArray} The HMAC.
+	     *
+	     * @static
+	     *
+	     * @example
+	     *
+	     *     var hmac = CryptoJS.HmacSHA224(message, key);
+	     */
+	    C.HmacSHA224 = SHA256._createHmacHelper(SHA224);
+	}());
+
+
+	return CryptoJS.SHA224;
+
+}));
\ No newline at end of file
diff --git a/oxAuth/Server/src/main/webapp/js/crypto-js-4.1.1/sha256.js b/oxAuth/Server/src/main/webapp/js/crypto-js-4.1.1/sha256.js
new file mode 100644
index 00000000..de2d7fca
--- /dev/null
+++ b/oxAuth/Server/src/main/webapp/js/crypto-js-4.1.1/sha256.js
@@ -0,0 +1,199 @@
+;(function (root, factory) {
+	if (typeof exports === "object") {
+		// CommonJS
+		module.exports = exports = factory(require("./core"));
+	}
+	else if (typeof define === "function" && define.amd) {
+		// AMD
+		define(["./core"], factory);
+	}
+	else {
+		// Global (browser)
+		factory(root.CryptoJS);
+	}
+}(this, function (CryptoJS) {
+
+	(function (Math) {
+	    // Shortcuts
+	    var C = CryptoJS;
+	    var C_lib = C.lib;
+	    var WordArray = C_lib.WordArray;
+	    var Hasher = C_lib.Hasher;
+	    var C_algo = C.algo;
+
+	    // Initialization and round constants tables
+	    var H = [];
+	    var K = [];
+
+	    // Compute constants
+	    (function () {
+	        function isPrime(n) {
+	            var sqrtN = Math.sqrt(n);
+	            for (var factor = 2; factor <= sqrtN; factor++) {
+	                if (!(n % factor)) {
+	                    return false;
+	                }
+	            }
+
+	            return true;
+	        }
+
+	        function getFractionalBits(n) {
+	            return ((n - (n | 0)) * 0x100000000) | 0;
+	        }
+
+	        var n = 2;
+	        var nPrime = 0;
+	        while (nPrime < 64) {
+	            if (isPrime(n)) {
+	                if (nPrime < 8) {
+	                    H[nPrime] = getFractionalBits(Math.pow(n, 1 / 2));
+	                }
+	                K[nPrime] = getFractionalBits(Math.pow(n, 1 / 3));
+
+	                nPrime++;
+	            }
+
+	            n++;
+	        }
+	    }());
+
+	    // Reusable object
+	    var W = [];
+
+	    /**
+	     * SHA-256 hash algorithm.
+	     */
+	    var SHA256 = C_algo.SHA256 = Hasher.extend({
+	        _doReset: function () {
+	            this._hash = new WordArray.init(H.slice(0));
+	        },
+
+	        _doProcessBlock: function (M, offset) {
+	            // Shortcut
+	            var H = this._hash.words;
+
+	            // Working variables
+	            var a = H[0];
+	            var b = H[1];
+	            var c = H[2];
+	            var d = H[3];
+	            var e = H[4];
+	            var f = H[5];
+	            var g = H[6];
+	            var h = H[7];
+
+	            // Computation
+	            for (var i = 0; i < 64; i++) {
+	                if (i < 16) {
+	                    W[i] = M[offset + i] | 0;
+	                } else {
+	                    var gamma0x = W[i - 15];
+	                    var gamma0  = ((gamma0x << 25) | (gamma0x >>> 7))  ^
+	                                  ((gamma0x << 14) | (gamma0x >>> 18)) ^
+	                                   (gamma0x >>> 3);
+
+	                    var gamma1x = W[i - 2];
+	                    var gamma1  = ((gamma1x << 15) | (gamma1x >>> 17)) ^
+	                                  ((gamma1x << 13) | (gamma1x >>> 19)) ^
+	                                   (gamma1x >>> 10);
+
+	                    W[i] = gamma0 + W[i - 7] + gamma1 + W[i - 16];
+	                }
+
+	                var ch  = (e & f) ^ (~e & g);
+	                var maj = (a & b) ^ (a & c) ^ (b & c);
+
+	                var sigma0 = ((a << 30) | (a >>> 2)) ^ ((a << 19) | (a >>> 13)) ^ ((a << 10) | (a >>> 22));
+	                var sigma1 = ((e << 26) | (e >>> 6)) ^ ((e << 21) | (e >>> 11)) ^ ((e << 7)  | (e >>> 25));
+
+	                var t1 = h + sigma1 + ch + K[i] + W[i];
+	                var t2 = sigma0 + maj;
+
+	                h = g;
+	                g = f;
+	                f = e;
+	                e = (d + t1) | 0;
+	                d = c;
+	                c = b;
+	                b = a;
+	                a = (t1 + t2) | 0;
+	            }
+
+	            // Intermediate hash value
+	            H[0] = (H[0] + a) | 0;
+	            H[1] = (H[1] + b) | 0;
+	            H[2] = (H[2] + c) | 0;
+	            H[3] = (H[3] + d) | 0;
+	            H[4] = (H[4] + e) | 0;
+	            H[5] = (H[5] + f) | 0;
+	            H[6] = (H[6] + g) | 0;
+	            H[7] = (H[7] + h) | 0;
+	        },
+
+	        _doFinalize: function () {
+	            // Shortcuts
+	            var data = this._data;
+	            var dataWords = data.words;
+
+	            var nBitsTotal = this._nDataBytes * 8;
+	            var nBitsLeft = data.sigBytes * 8;
+
+	            // Add padding
+	            dataWords[nBitsLeft >>> 5] |= 0x80 << (24 - nBitsLeft % 32);
+	            dataWords[(((nBitsLeft + 64) >>> 9) << 4) + 14] = Math.floor(nBitsTotal / 0x100000000);
+	            dataWords[(((nBitsLeft + 64) >>> 9) << 4) + 15] = nBitsTotal;
+	            data.sigBytes = dataWords.length * 4;
+
+	            // Hash final blocks
+	            this._process();
+
+	            // Return final computed hash
+	            return this._hash;
+	        },
+
+	        clone: function () {
+	            var clone = Hasher.clone.call(this);
+	            clone._hash = this._hash.clone();
+
+	            return clone;
+	        }
+	    });
+
+	    /**
+	     * Shortcut function to the hasher's object interface.
+	     *
+	     * @param {WordArray|string} message The message to hash.
+	     *
+	     * @return {WordArray} The hash.
+	     *
+	     * @static
+	     *
+	     * @example
+	     *
+	     *     var hash = CryptoJS.SHA256('message');
+	     *     var hash = CryptoJS.SHA256(wordArray);
+	     */
+	    C.SHA256 = Hasher._createHelper(SHA256);
+
+	    /**
+	     * Shortcut function to the HMAC's object interface.
+	     *
+	     * @param {WordArray|string} message The message to hash.
+	     * @param {WordArray|string} key The secret key.
+	     *
+	     * @return {WordArray} The HMAC.
+	     *
+	     * @static
+	     *
+	     * @example
+	     *
+	     *     var hmac = CryptoJS.HmacSHA256(message, key);
+	     */
+	    C.HmacSHA256 = Hasher._createHmacHelper(SHA256);
+	}(Math));
+
+
+	return CryptoJS.SHA256;
+
+}));
\ No newline at end of file
diff --git a/oxAuth/Server/src/main/webapp/js/crypto-js-4.1.1/sha3.js b/oxAuth/Server/src/main/webapp/js/crypto-js-4.1.1/sha3.js
new file mode 100644
index 00000000..34ad86c9
--- /dev/null
+++ b/oxAuth/Server/src/main/webapp/js/crypto-js-4.1.1/sha3.js
@@ -0,0 +1,326 @@
+;(function (root, factory, undef) {
+	if (typeof exports === "object") {
+		// CommonJS
+		module.exports = exports = factory(require("./core"), require("./x64-core"));
+	}
+	else if (typeof define === "function" && define.amd) {
+		// AMD
+		define(["./core", "./x64-core"], factory);
+	}
+	else {
+		// Global (browser)
+		factory(root.CryptoJS);
+	}
+}(this, function (CryptoJS) {
+
+	(function (Math) {
+	    // Shortcuts
+	    var C = CryptoJS;
+	    var C_lib = C.lib;
+	    var WordArray = C_lib.WordArray;
+	    var Hasher = C_lib.Hasher;
+	    var C_x64 = C.x64;
+	    var X64Word = C_x64.Word;
+	    var C_algo = C.algo;
+
+	    // Constants tables
+	    var RHO_OFFSETS = [];
+	    var PI_INDEXES  = [];
+	    var ROUND_CONSTANTS = [];
+
+	    // Compute Constants
+	    (function () {
+	        // Compute rho offset constants
+	        var x = 1, y = 0;
+	        for (var t = 0; t < 24; t++) {
+	            RHO_OFFSETS[x + 5 * y] = ((t + 1) * (t + 2) / 2) % 64;
+
+	            var newX = y % 5;
+	            var newY = (2 * x + 3 * y) % 5;
+	            x = newX;
+	            y = newY;
+	        }
+
+	        // Compute pi index constants
+	        for (var x = 0; x < 5; x++) {
+	            for (var y = 0; y < 5; y++) {
+	                PI_INDEXES[x + 5 * y] = y + ((2 * x + 3 * y) % 5) * 5;
+	            }
+	        }
+
+	        // Compute round constants
+	        var LFSR = 0x01;
+	        for (var i = 0; i < 24; i++) {
+	            var roundConstantMsw = 0;
+	            var roundConstantLsw = 0;
+
+	            for (var j = 0; j < 7; j++) {
+	                if (LFSR & 0x01) {
+	                    var bitPosition = (1 << j) - 1;
+	                    if (bitPosition < 32) {
+	                        roundConstantLsw ^= 1 << bitPosition;
+	                    } else /* if (bitPosition >= 32) */ {
+	                        roundConstantMsw ^= 1 << (bitPosition - 32);
+	                    }
+	                }
+
+	                // Compute next LFSR
+	                if (LFSR & 0x80) {
+	                    // Primitive polynomial over GF(2): x^8 + x^6 + x^5 + x^4 + 1
+	                    LFSR = (LFSR << 1) ^ 0x71;
+	                } else {
+	                    LFSR <<= 1;
+	                }
+	            }
+
+	            ROUND_CONSTANTS[i] = X64Word.create(roundConstantMsw, roundConstantLsw);
+	        }
+	    }());
+
+	    // Reusable objects for temporary values
+	    var T = [];
+	    (function () {
+	        for (var i = 0; i < 25; i++) {
+	            T[i] = X64Word.create();
+	        }
+	    }());
+
+	    /**
+	     * SHA-3 hash algorithm.
+	     */
+	    var SHA3 = C_algo.SHA3 = Hasher.extend({
+	        /**
+	         * Configuration options.
+	         *
+	         * @property {number} outputLength
+	         *   The desired number of bits in the output hash.
+	         *   Only values permitted are: 224, 256, 384, 512.
+	         *   Default: 512
+	         */
+	        cfg: Hasher.cfg.extend({
+	            outputLength: 512
+	        }),
+
+	        _doReset: function () {
+	            var state = this._state = []
+	            for (var i = 0; i < 25; i++) {
+	                state[i] = new X64Word.init();
+	            }
+
+	            this.blockSize = (1600 - 2 * this.cfg.outputLength) / 32;
+	        },
+
+	        _doProcessBlock: function (M, offset) {
+	            // Shortcuts
+	            var state = this._state;
+	            var nBlockSizeLanes = this.blockSize / 2;
+
+	            // Absorb
+	            for (var i = 0; i < nBlockSizeLanes; i++) {
+	                // Shortcuts
+	                var M2i  = M[offset + 2 * i];
+	                var M2i1 = M[offset + 2 * i + 1];
+
+	                // Swap endian
+	                M2i = (
+	                    (((M2i << 8)  | (M2i >>> 24)) & 0x00ff00ff) |
+	                    (((M2i << 24) | (M2i >>> 8))  & 0xff00ff00)
+	                );
+	                M2i1 = (
+	                    (((M2i1 << 8)  | (M2i1 >>> 24)) & 0x00ff00ff) |
+	                    (((M2i1 << 24) | (M2i1 >>> 8))  & 0xff00ff00)
+	                );
+
+	                // Absorb message into state
+	                var lane = state[i];
+	                lane.high ^= M2i1;
+	                lane.low  ^= M2i;
+	            }
+
+	            // Rounds
+	            for (var round = 0; round < 24; round++) {
+	                // Theta
+	                for (var x = 0; x < 5; x++) {
+	                    // Mix column lanes
+	                    var tMsw = 0, tLsw = 0;
+	                    for (var y = 0; y < 5; y++) {
+	                        var lane = state[x + 5 * y];
+	                        tMsw ^= lane.high;
+	                        tLsw ^= lane.low;
+	                    }
+
+	                    // Temporary values
+	                    var Tx = T[x];
+	                    Tx.high = tMsw;
+	                    Tx.low  = tLsw;
+	                }
+	                for (var x = 0; x < 5; x++) {
+	                    // Shortcuts
+	                    var Tx4 = T[(x + 4) % 5];
+	                    var Tx1 = T[(x + 1) % 5];
+	                    var Tx1Msw = Tx1.high;
+	                    var Tx1Lsw = Tx1.low;
+
+	                    // Mix surrounding columns
+	                    var tMsw = Tx4.high ^ ((Tx1Msw << 1) | (Tx1Lsw >>> 31));
+	                    var tLsw = Tx4.low  ^ ((Tx1Lsw << 1) | (Tx1Msw >>> 31));
+	                    for (var y = 0; y < 5; y++) {
+	                        var lane = state[x + 5 * y];
+	                        lane.high ^= tMsw;
+	                        lane.low  ^= tLsw;
+	                    }
+	                }
+
+	                // Rho Pi
+	                for (var laneIndex = 1; laneIndex < 25; laneIndex++) {
+	                    var tMsw;
+	                    var tLsw;
+
+	                    // Shortcuts
+	                    var lane = state[laneIndex];
+	                    var laneMsw = lane.high;
+	                    var laneLsw = lane.low;
+	                    var rhoOffset = RHO_OFFSETS[laneIndex];
+
+	                    // Rotate lanes
+	                    if (rhoOffset < 32) {
+	                        tMsw = (laneMsw << rhoOffset) | (laneLsw >>> (32 - rhoOffset));
+	                        tLsw = (laneLsw << rhoOffset) | (laneMsw >>> (32 - rhoOffset));
+	                    } else /* if (rhoOffset >= 32) */ {
+	                        tMsw = (laneLsw << (rhoOffset - 32)) | (laneMsw >>> (64 - rhoOffset));
+	                        tLsw = (laneMsw << (rhoOffset - 32)) | (laneLsw >>> (64 - rhoOffset));
+	                    }
+
+	                    // Transpose lanes
+	                    var TPiLane = T[PI_INDEXES[laneIndex]];
+	                    TPiLane.high = tMsw;
+	                    TPiLane.low  = tLsw;
+	                }
+
+	                // Rho pi at x = y = 0
+	                var T0 = T[0];
+	                var state0 = state[0];
+	                T0.high = state0.high;
+	                T0.low  = state0.low;
+
+	                // Chi
+	                for (var x = 0; x < 5; x++) {
+	                    for (var y = 0; y < 5; y++) {
+	                        // Shortcuts
+	                        var laneIndex = x + 5 * y;
+	                        var lane = state[laneIndex];
+	                        var TLane = T[laneIndex];
+	                        var Tx1Lane = T[((x + 1) % 5) + 5 * y];
+	                        var Tx2Lane = T[((x + 2) % 5) + 5 * y];
+
+	                        // Mix rows
+	                        lane.high = TLane.high ^ (~Tx1Lane.high & Tx2Lane.high);
+	                        lane.low  = TLane.low  ^ (~Tx1Lane.low  & Tx2Lane.low);
+	                    }
+	                }
+
+	                // Iota
+	                var lane = state[0];
+	                var roundConstant = ROUND_CONSTANTS[round];
+	                lane.high ^= roundConstant.high;
+	                lane.low  ^= roundConstant.low;
+	            }
+	        },
+
+	        _doFinalize: function () {
+	            // Shortcuts
+	            var data = this._data;
+	            var dataWords = data.words;
+	            var nBitsTotal = this._nDataBytes * 8;
+	            var nBitsLeft = data.sigBytes * 8;
+	            var blockSizeBits = this.blockSize * 32;
+
+	            // Add padding
+	            dataWords[nBitsLeft >>> 5] |= 0x1 << (24 - nBitsLeft % 32);
+	            dataWords[((Math.ceil((nBitsLeft + 1) / blockSizeBits) * blockSizeBits) >>> 5) - 1] |= 0x80;
+	            data.sigBytes = dataWords.length * 4;
+
+	            // Hash final blocks
+	            this._process();
+
+	            // Shortcuts
+	            var state = this._state;
+	            var outputLengthBytes = this.cfg.outputLength / 8;
+	            var outputLengthLanes = outputLengthBytes / 8;
+
+	            // Squeeze
+	            var hashWords = [];
+	            for (var i = 0; i < outputLengthLanes; i++) {
+	                // Shortcuts
+	                var lane = state[i];
+	                var laneMsw = lane.high;
+	                var laneLsw = lane.low;
+
+	                // Swap endian
+	                laneMsw = (
+	                    (((laneMsw << 8)  | (laneMsw >>> 24)) & 0x00ff00ff) |
+	                    (((laneMsw << 24) | (laneMsw >>> 8))  & 0xff00ff00)
+	                );
+	                laneLsw = (
+	                    (((laneLsw << 8)  | (laneLsw >>> 24)) & 0x00ff00ff) |
+	                    (((laneLsw << 24) | (laneLsw >>> 8))  & 0xff00ff00)
+	                );
+
+	                // Squeeze state to retrieve hash
+	                hashWords.push(laneLsw);
+	                hashWords.push(laneMsw);
+	            }
+
+	            // Return final computed hash
+	            return new WordArray.init(hashWords, outputLengthBytes);
+	        },
+
+	        clone: function () {
+	            var clone = Hasher.clone.call(this);
+
+	            var state = clone._state = this._state.slice(0);
+	            for (var i = 0; i < 25; i++) {
+	                state[i] = state[i].clone();
+	            }
+
+	            return clone;
+	        }
+	    });
+
+	    /**
+	     * Shortcut function to the hasher's object interface.
+	     *
+	     * @param {WordArray|string} message The message to hash.
+	     *
+	     * @return {WordArray} The hash.
+	     *
+	     * @static
+	     *
+	     * @example
+	     *
+	     *     var hash = CryptoJS.SHA3('message');
+	     *     var hash = CryptoJS.SHA3(wordArray);
+	     */
+	    C.SHA3 = Hasher._createHelper(SHA3);
+
+	    /**
+	     * Shortcut function to the HMAC's object interface.
+	     *
+	     * @param {WordArray|string} message The message to hash.
+	     * @param {WordArray|string} key The secret key.
+	     *
+	     * @return {WordArray} The HMAC.
+	     *
+	     * @static
+	     *
+	     * @example
+	     *
+	     *     var hmac = CryptoJS.HmacSHA3(message, key);
+	     */
+	    C.HmacSHA3 = Hasher._createHmacHelper(SHA3);
+	}(Math));
+
+
+	return CryptoJS.SHA3;
+
+}));
\ No newline at end of file
diff --git a/oxAuth/Server/src/main/webapp/js/crypto-js-4.1.1/sha384.js b/oxAuth/Server/src/main/webapp/js/crypto-js-4.1.1/sha384.js
new file mode 100644
index 00000000..a0b95bf6
--- /dev/null
+++ b/oxAuth/Server/src/main/webapp/js/crypto-js-4.1.1/sha384.js
@@ -0,0 +1,83 @@
+;(function (root, factory, undef) {
+	if (typeof exports === "object") {
+		// CommonJS
+		module.exports = exports = factory(require("./core"), require("./x64-core"), require("./sha512"));
+	}
+	else if (typeof define === "function" && define.amd) {
+		// AMD
+		define(["./core", "./x64-core", "./sha512"], factory);
+	}
+	else {
+		// Global (browser)
+		factory(root.CryptoJS);
+	}
+}(this, function (CryptoJS) {
+
+	(function () {
+	    // Shortcuts
+	    var C = CryptoJS;
+	    var C_x64 = C.x64;
+	    var X64Word = C_x64.Word;
+	    var X64WordArray = C_x64.WordArray;
+	    var C_algo = C.algo;
+	    var SHA512 = C_algo.SHA512;
+
+	    /**
+	     * SHA-384 hash algorithm.
+	     */
+	    var SHA384 = C_algo.SHA384 = SHA512.extend({
+	        _doReset: function () {
+	            this._hash = new X64WordArray.init([
+	                new X64Word.init(0xcbbb9d5d, 0xc1059ed8), new X64Word.init(0x629a292a, 0x367cd507),
+	                new X64Word.init(0x9159015a, 0x3070dd17), new X64Word.init(0x152fecd8, 0xf70e5939),
+	                new X64Word.init(0x67332667, 0xffc00b31), new X64Word.init(0x8eb44a87, 0x68581511),
+	                new X64Word.init(0xdb0c2e0d, 0x64f98fa7), new X64Word.init(0x47b5481d, 0xbefa4fa4)
+	            ]);
+	        },
+
+	        _doFinalize: function () {
+	            var hash = SHA512._doFinalize.call(this);
+
+	            hash.sigBytes -= 16;
+
+	            return hash;
+	        }
+	    });
+
+	    /**
+	     * Shortcut function to the hasher's object interface.
+	     *
+	     * @param {WordArray|string} message The message to hash.
+	     *
+	     * @return {WordArray} The hash.
+	     *
+	     * @static
+	     *
+	     * @example
+	     *
+	     *     var hash = CryptoJS.SHA384('message');
+	     *     var hash = CryptoJS.SHA384(wordArray);
+	     */
+	    C.SHA384 = SHA512._createHelper(SHA384);
+
+	    /**
+	     * Shortcut function to the HMAC's object interface.
+	     *
+	     * @param {WordArray|string} message The message to hash.
+	     * @param {WordArray|string} key The secret key.
+	     *
+	     * @return {WordArray} The HMAC.
+	     *
+	     * @static
+	     *
+	     * @example
+	     *
+	     *     var hmac = CryptoJS.HmacSHA384(message, key);
+	     */
+	    C.HmacSHA384 = SHA512._createHmacHelper(SHA384);
+	}());
+
+
+	return CryptoJS.SHA384;
+
+}));
\ No newline at end of file
diff --git a/oxAuth/Server/src/main/webapp/js/crypto-js-4.1.1/sha512.js b/oxAuth/Server/src/main/webapp/js/crypto-js-4.1.1/sha512.js
new file mode 100644
index 00000000..d274ab0d
--- /dev/null
+++ b/oxAuth/Server/src/main/webapp/js/crypto-js-4.1.1/sha512.js
@@ -0,0 +1,326 @@
+;(function (root, factory, undef) {
+	if (typeof exports === "object") {
+		// CommonJS
+		module.exports = exports = factory(require("./core"), require("./x64-core"));
+	}
+	else if (typeof define === "function" && define.amd) {
+		// AMD
+		define(["./core", "./x64-core"], factory);
+	}
+	else {
+		// Global (browser)
+		factory(root.CryptoJS);
+	}
+}(this, function (CryptoJS) {
+
+	(function () {
+	    // Shortcuts
+	    var C = CryptoJS;
+	    var C_lib = C.lib;
+	    var Hasher = C_lib.Hasher;
+	    var C_x64 = C.x64;
+	    var X64Word = C_x64.Word;
+	    var X64WordArray = C_x64.WordArray;
+	    var C_algo = C.algo;
+
+	    function X64Word_create() {
+	        return X64Word.create.apply(X64Word, arguments);
+	    }
+
+	    // Constants
+	    var K = [
+	        X64Word_create(0x428a2f98, 0xd728ae22), X64Word_create(0x71374491, 0x23ef65cd),
+	        X64Word_create(0xb5c0fbcf, 0xec4d3b2f), X64Word_create(0xe9b5dba5, 0x8189dbbc),
+	        X64Word_create(0x3956c25b, 0xf348b538), X64Word_create(0x59f111f1, 0xb605d019),
+	        X64Word_create(0x923f82a4, 0xaf194f9b), X64Word_create(0xab1c5ed5, 0xda6d8118),
+	        X64Word_create(0xd807aa98, 0xa3030242), X64Word_create(0x12835b01, 0x45706fbe),
+	        X64Word_create(0x243185be, 0x4ee4b28c), X64Word_create(0x550c7dc3, 0xd5ffb4e2),
+	        X64Word_create(0x72be5d74, 0xf27b896f), X64Word_create(0x80deb1fe, 0x3b1696b1),
+	        X64Word_create(0x9bdc06a7, 0x25c71235), X64Word_create(0xc19bf174, 0xcf692694),
+	        X64Word_create(0xe49b69c1, 0x9ef14ad2), X64Word_create(0xefbe4786, 0x384f25e3),
+	        X64Word_create(0x0fc19dc6, 0x8b8cd5b5), X64Word_create(0x240ca1cc, 0x77ac9c65),
+	        X64Word_create(0x2de92c6f, 0x592b0275), X64Word_create(0x4a7484aa, 0x6ea6e483),
+	        X64Word_create(0x5cb0a9dc, 0xbd41fbd4), X64Word_create(0x76f988da, 0x831153b5),
+	        X64Word_create(0x983e5152, 0xee66dfab), X64Word_create(0xa831c66d, 0x2db43210),
+	        X64Word_create(0xb00327c8, 0x98fb213f), X64Word_create(0xbf597fc7, 0xbeef0ee4),
+	        X64Word_create(0xc6e00bf3, 0x3da88fc2), X64Word_create(0xd5a79147, 0x930aa725),
+	        X64Word_create(0x06ca6351, 0xe003826f), X64Word_create(0x14292967, 0x0a0e6e70),
+	        X64Word_create(0x27b70a85, 0x46d22ffc), X64Word_create(0x2e1b2138, 0x5c26c926),
+	        X64Word_create(0x4d2c6dfc, 0x5ac42aed), X64Word_create(0x53380d13, 0x9d95b3df),
+	        X64Word_create(0x650a7354, 0x8baf63de), X64Word_create(0x766a0abb, 0x3c77b2a8),
+	        X64Word_create(0x81c2c92e, 0x47edaee6), X64Word_create(0x92722c85, 0x1482353b),
+	        X64Word_create(0xa2bfe8a1, 0x4cf10364), X64Word_create(0xa81a664b, 0xbc423001),
+	        X64Word_create(0xc24b8b70, 0xd0f89791), X64Word_create(0xc76c51a3, 0x0654be30),
+	        X64Word_create(0xd192e819, 0xd6ef5218), X64Word_create(0xd6990624, 0x5565a910),
+	        X64Word_create(0xf40e3585, 0x5771202a), X64Word_create(0x106aa070, 0x32bbd1b8),
+	        X64Word_create(0x19a4c116, 0xb8d2d0c8), X64Word_create(0x1e376c08, 0x5141ab53),
+	        X64Word_create(0x2748774c, 0xdf8eeb99), X64Word_create(0x34b0bcb5, 0xe19b48a8),
+	        X64Word_create(0x391c0cb3, 0xc5c95a63), X64Word_create(0x4ed8aa4a, 0xe3418acb),
+	        X64Word_create(0x5b9cca4f, 0x7763e373), X64Word_create(0x682e6ff3, 0xd6b2b8a3),
+	        X64Word_create(0x748f82ee, 0x5defb2fc), X64Word_create(0x78a5636f, 0x43172f60),
+	        X64Word_create(0x84c87814, 0xa1f0ab72), X64Word_create(0x8cc70208, 0x1a6439ec),
+	        X64Word_create(0x90befffa, 0x23631e28), X64Word_create(0xa4506ceb, 0xde82bde9),
+	        X64Word_create(0xbef9a3f7, 0xb2c67915), X64Word_create(0xc67178f2, 0xe372532b),
+	        X64Word_create(0xca273ece, 0xea26619c), X64Word_create(0xd186b8c7, 0x21c0c207),
+	        X64Word_create(0xeada7dd6, 0xcde0eb1e), X64Word_create(0xf57d4f7f, 0xee6ed178),
+	        X64Word_create(0x06f067aa, 0x72176fba), X64Word_create(0x0a637dc5, 0xa2c898a6),
+	        X64Word_create(0x113f9804, 0xbef90dae), X64Word_create(0x1b710b35, 0x131c471b),
+	        X64Word_create(0x28db77f5, 0x23047d84), X64Word_create(0x32caab7b, 0x40c72493),
+	        X64Word_create(0x3c9ebe0a, 0x15c9bebc), X64Word_create(0x431d67c4, 0x9c100d4c),
+	        X64Word_create(0x4cc5d4be, 0xcb3e42b6), X64Word_create(0x597f299c, 0xfc657e2a),
+	        X64Word_create(0x5fcb6fab, 0x3ad6faec), X64Word_create(0x6c44198c, 0x4a475817)
+	    ];
+
+	    // Reusable objects
+	    var W = [];
+	    (function () {
+	        for (var i = 0; i < 80; i++) {
+	            W[i] = X64Word_create();
+	        }
+	    }());
+
+	    /**
+	     * SHA-512 hash algorithm.
+	     */
+	    var SHA512 = C_algo.SHA512 = Hasher.extend({
+	        _doReset: function () {
+	            this._hash = new X64WordArray.init([
+	                new X64Word.init(0x6a09e667, 0xf3bcc908), new X64Word.init(0xbb67ae85, 0x84caa73b),
+	                new X64Word.init(0x3c6ef372, 0xfe94f82b), new X64Word.init(0xa54ff53a, 0x5f1d36f1),
+	                new X64Word.init(0x510e527f, 0xade682d1), new X64Word.init(0x9b05688c, 0x2b3e6c1f),
+	                new X64Word.init(0x1f83d9ab, 0xfb41bd6b), new X64Word.init(0x5be0cd19, 0x137e2179)
+	            ]);
+	        },
+
+	        _doProcessBlock: function (M, offset) {
+	            // Shortcuts
+	            var H = this._hash.words;
+
+	            var H0 = H[0];
+	            var H1 = H[1];
+	            var H2 = H[2];
+	            var H3 = H[3];
+	            var H4 = H[4];
+	            var H5 = H[5];
+	            var H6 = H[6];
+	            var H7 = H[7];
+
+	            var H0h = H0.high;
+	            var H0l = H0.low;
+	            var H1h = H1.high;
+	            var H1l = H1.low;
+	            var H2h = H2.high;
+	            var H2l = H2.low;
+	            var H3h = H3.high;
+	            var H3l = H3.low;
+	            var H4h = H4.high;
+	            var H4l = H4.low;
+	            var H5h = H5.high;
+	            var H5l = H5.low;
+	            var H6h = H6.high;
+	            var H6l = H6.low;
+	            var H7h = H7.high;
+	            var H7l = H7.low;
+
+	            // Working variables
+	            var ah = H0h;
+	            var al = H0l;
+	            var bh = H1h;
+	            var bl = H1l;
+	            var ch = H2h;
+	            var cl = H2l;
+	            var dh = H3h;
+	            var dl = H3l;
+	            var eh = H4h;
+	            var el = H4l;
+	            var fh = H5h;
+	            var fl = H5l;
+	            var gh = H6h;
+	            var gl = H6l;
+	            var hh = H7h;
+	            var hl = H7l;
+
+	            // Rounds
+	            for (var i = 0; i < 80; i++) {
+	                var Wil;
+	                var Wih;
+
+	                // Shortcut
+	                var Wi = W[i];
+
+	                // Extend message
+	                if (i < 16) {
+	                    Wih = Wi.high = M[offset + i * 2]     | 0;
+	                    Wil = Wi.low  = M[offset + i * 2 + 1] | 0;
+	                } else {
+	                    // Gamma0
+	                    var gamma0x  = W[i - 15];
+	                    var gamma0xh = gamma0x.high;
+	                    var gamma0xl = gamma0x.low;
+	                    var gamma0h  = ((gamma0xh >>> 1) | (gamma0xl << 31)) ^ ((gamma0xh >>> 8) | (gamma0xl << 24)) ^ (gamma0xh >>> 7);
+	                    var gamma0l  = ((gamma0xl >>> 1) | (gamma0xh << 31)) ^ ((gamma0xl >>> 8) | (gamma0xh << 24)) ^ ((gamma0xl >>> 7) | (gamma0xh << 25));
+
+	                    // Gamma1
+	                    var gamma1x  = W[i - 2];
+	                    var gamma1xh = gamma1x.high;
+	                    var gamma1xl = gamma1x.low;
+	                    var gamma1h  = ((gamma1xh >>> 19) | (gamma1xl << 13)) ^ ((gamma1xh << 3) | (gamma1xl >>> 29)) ^ (gamma1xh >>> 6);
+	                    var gamma1l  = ((gamma1xl >>> 19) | (gamma1xh << 13)) ^ ((gamma1xl << 3) | (gamma1xh >>> 29)) ^ ((gamma1xl >>> 6) | (gamma1xh << 26));
+
+	                    // W[i] = gamma0 + W[i - 7] + gamma1 + W[i - 16]
+	                    var Wi7  = W[i - 7];
+	                    var Wi7h = Wi7.high;
+	                    var Wi7l = Wi7.low;
+
+	                    var Wi16  = W[i - 16];
+	                    var Wi16h = Wi16.high;
+	                    var Wi16l = Wi16.low;
+
+	                    Wil = gamma0l + Wi7l;
+	                    Wih = gamma0h + Wi7h + ((Wil >>> 0) < (gamma0l >>> 0) ? 1 : 0);
+	                    Wil = Wil + gamma1l;
+	                    Wih = Wih + gamma1h + ((Wil >>> 0) < (gamma1l >>> 0) ? 1 : 0);
+	                    Wil = Wil + Wi16l;
+	                    Wih = Wih + Wi16h + ((Wil >>> 0) < (Wi16l >>> 0) ? 1 : 0);
+
+	                    Wi.high = Wih;
+	                    Wi.low  = Wil;
+	                }
+
+	                var chh  = (eh & fh) ^ (~eh & gh);
+	                var chl  = (el & fl) ^ (~el & gl);
+	                var majh = (ah & bh) ^ (ah & ch) ^ (bh & ch);
+	                var majl = (al & bl) ^ (al & cl) ^ (bl & cl);
+
+	                var sigma0h = ((ah >>> 28) | (al << 4))  ^ ((ah << 30)  | (al >>> 2)) ^ ((ah << 25) | (al >>> 7));
+	                var sigma0l = ((al >>> 28) | (ah << 4))  ^ ((al << 30)  | (ah >>> 2)) ^ ((al << 25) | (ah >>> 7));
+	                var sigma1h = ((eh >>> 14) | (el << 18)) ^ ((eh >>> 18) | (el << 14)) ^ ((eh << 23) | (el >>> 9));
+	                var sigma1l = ((el >>> 14) | (eh << 18)) ^ ((el >>> 18) | (eh << 14)) ^ ((el << 23) | (eh >>> 9));
+
+	                // t1 = h + sigma1 + ch + K[i] + W[i]
+	                var Ki  = K[i];
+	                var Kih = Ki.high;
+	                var Kil = Ki.low;
+
+	                var t1l = hl + sigma1l;
+	                var t1h = hh + sigma1h + ((t1l >>> 0) < (hl >>> 0) ? 1 : 0);
+	                var t1l = t1l + chl;
+	                var t1h = t1h + chh + ((t1l >>> 0) < (chl >>> 0) ? 1 : 0);
+	                var t1l = t1l + Kil;
+	                var t1h = t1h + Kih + ((t1l >>> 0) < (Kil >>> 0) ? 1 : 0);
+	                var t1l = t1l + Wil;
+	                var t1h = t1h + Wih + ((t1l >>> 0) < (Wil >>> 0) ? 1 : 0);
+
+	                // t2 = sigma0 + maj
+	                var t2l = sigma0l + majl;
+	                var t2h = sigma0h + majh + ((t2l >>> 0) < (sigma0l >>> 0) ? 1 : 0);
+
+	                // Update working variables
+	                hh = gh;
+	                hl = gl;
+	                gh = fh;
+	                gl = fl;
+	                fh = eh;
+	                fl = el;
+	                el = (dl + t1l) | 0;
+	                eh = (dh + t1h + ((el >>> 0) < (dl >>> 0) ? 1 : 0)) | 0;
+	                dh = ch;
+	                dl = cl;
+	                ch = bh;
+	                cl = bl;
+	                bh = ah;
+	                bl = al;
+	                al = (t1l + t2l) | 0;
+	                ah = (t1h + t2h + ((al >>> 0) < (t1l >>> 0) ? 1 : 0)) | 0;
+	            }
+
+	            // Intermediate hash value
+	            H0l = H0.low  = (H0l + al);
+	            H0.high = (H0h + ah + ((H0l >>> 0) < (al >>> 0) ? 1 : 0));
+	            H1l = H1.low  = (H1l + bl);
+	            H1.high = (H1h + bh + ((H1l >>> 0) < (bl >>> 0) ? 1 : 0));
+	            H2l = H2.low  = (H2l + cl);
+	            H2.high = (H2h + ch + ((H2l >>> 0) < (cl >>> 0) ? 1 : 0));
+	            H3l = H3.low  = (H3l + dl);
+	            H3.high = (H3h + dh + ((H3l >>> 0) < (dl >>> 0) ? 1 : 0));
+	            H4l = H4.low  = (H4l + el);
+	            H4.high = (H4h + eh + ((H4l >>> 0) < (el >>> 0) ? 1 : 0));
+	            H5l = H5.low  = (H5l + fl);
+	            H5.high = (H5h + fh + ((H5l >>> 0) < (fl >>> 0) ? 1 : 0));
+	            H6l = H6.low  = (H6l + gl);
+	            H6.high = (H6h + gh + ((H6l >>> 0) < (gl >>> 0) ? 1 : 0));
+	            H7l = H7.low  = (H7l + hl);
+	            H7.high = (H7h + hh + ((H7l >>> 0) < (hl >>> 0) ? 1 : 0));
+	        },
+
+	        _doFinalize: function () {
+	            // Shortcuts
+	            var data = this._data;
+	            var dataWords = data.words;
+
+	            var nBitsTotal = this._nDataBytes * 8;
+	            var nBitsLeft = data.sigBytes * 8;
+
+	            // Add padding
+	            dataWords[nBitsLeft >>> 5] |= 0x80 << (24 - nBitsLeft % 32);
+	            dataWords[(((nBitsLeft + 128) >>> 10) << 5) + 30] = Math.floor(nBitsTotal / 0x100000000);
+	            dataWords[(((nBitsLeft + 128) >>> 10) << 5) + 31] = nBitsTotal;
+	            data.sigBytes = dataWords.length * 4;
+
+	            // Hash final blocks
+	            this._process();
+
+	            // Convert hash to 32-bit word array before returning
+	            var hash = this._hash.toX32();
+
+	            // Return final computed hash
+	            return hash;
+	        },
+
+	        clone: function () {
+	            var clone = Hasher.clone.call(this);
+	            clone._hash = this._hash.clone();
+
+	            return clone;
+	        },
+
+	        blockSize: 1024/32
+	    });
+
+	    /**
+	     * Shortcut function to the hasher's object interface.
+	     *
+	     * @param {WordArray|string} message The message to hash.
+	     *
+	     * @return {WordArray} The hash.
+	     *
+	     * @static
+	     *
+	     * @example
+	     *
+	     *     var hash = CryptoJS.SHA512('message');
+	     *     var hash = CryptoJS.SHA512(wordArray);
+	     */
+	    C.SHA512 = Hasher._createHelper(SHA512);
+
+	    /**
+	     * Shortcut function to the HMAC's object interface.
+	     *
+	     * @param {WordArray|string} message The message to hash.
+	     * @param {WordArray|string} key The secret key.
+	     *
+	     * @return {WordArray} The HMAC.
+	     *
+	     * @static
+	     *
+	     * @example
+	     *
+	     *     var hmac = CryptoJS.HmacSHA512(message, key);
+	     */
+	    C.HmacSHA512 = Hasher._createHmacHelper(SHA512);
+	}());
+
+
+	return CryptoJS.SHA512;
+
+}));
\ No newline at end of file
diff --git a/oxAuth/Server/src/main/webapp/js/crypto-js-4.1.1/tripledes.js b/oxAuth/Server/src/main/webapp/js/crypto-js-4.1.1/tripledes.js
new file mode 100644
index 00000000..1a924772
--- /dev/null
+++ b/oxAuth/Server/src/main/webapp/js/crypto-js-4.1.1/tripledes.js
@@ -0,0 +1,779 @@
+;(function (root, factory, undef) {
+	if (typeof exports === "object") {
+		// CommonJS
+		module.exports = exports = factory(require("./core"), require("./enc-base64"), require("./md5"), require("./evpkdf"), require("./cipher-core"));
+	}
+	else if (typeof define === "function" && define.amd) {
+		// AMD
+		define(["./core", "./enc-base64", "./md5", "./evpkdf", "./cipher-core"], factory);
+	}
+	else {
+		// Global (browser)
+		factory(root.CryptoJS);
+	}
+}(this, function (CryptoJS) {
+
+	(function () {
+	    // Shortcuts
+	    var C = CryptoJS;
+	    var C_lib = C.lib;
+	    var WordArray = C_lib.WordArray;
+	    var BlockCipher = C_lib.BlockCipher;
+	    var C_algo = C.algo;
+
+	    // Permuted Choice 1 constants
+	    var PC1 = [
+	        57, 49, 41, 33, 25, 17, 9,  1,
+	        58, 50, 42, 34, 26, 18, 10, 2,
+	        59, 51, 43, 35, 27, 19, 11, 3,
+	        60, 52, 44, 36, 63, 55, 47, 39,
+	        31, 23, 15, 7,  62, 54, 46, 38,
+	        30, 22, 14, 6,  61, 53, 45, 37,
+	        29, 21, 13, 5,  28, 20, 12, 4
+	    ];
+
+	    // Permuted Choice 2 constants
+	    var PC2 = [
+	        14, 17, 11, 24, 1,  5,
+	        3,  28, 15, 6,  21, 10,
+	        23, 19, 12, 4,  26, 8,
+	        16, 7,  27, 20, 13, 2,
+	        41, 52, 31, 37, 47, 55,
+	        30, 40, 51, 45, 33, 48,
+	        44, 49, 39, 56, 34, 53,
+	        46, 42, 50, 36, 29, 32
+	    ];
+
+	    // Cumulative bit shift constants
+	    var BIT_SHIFTS = [1,  2,  4,  6,  8,  10, 12, 14, 15, 17, 19, 21, 23, 25, 27, 28];
+
+	    // SBOXes and round permutation constants
+	    var SBOX_P = [
+	        {
+	            0x0: 0x808200,
+	            0x10000000: 0x8000,
+	            0x20000000: 0x808002,
+	            0x30000000: 0x2,
+	            0x40000000: 0x200,
+	            0x50000000: 0x808202,
+	            0x60000000: 0x800202,
+	            0x70000000: 0x800000,
+	            0x80000000: 0x202,
+	            0x90000000: 0x800200,
+	            0xa0000000: 0x8200,
+	            0xb0000000: 0x808000,
+	            0xc0000000: 0x8002,
+	            0xd0000000: 0x800002,
+	            0xe0000000: 0x0,
+	            0xf0000000: 0x8202,
+	            0x8000000: 0x0,
+	            0x18000000: 0x808202,
+	            0x28000000: 0x8202,
+	            0x38000000: 0x8000,
+	            0x48000000: 0x808200,
+	            0x58000000: 0x200,
+	            0x68000000: 0x808002,
+	            0x78000000: 0x2,
+	            0x88000000: 0x800200,
+	            0x98000000: 0x8200,
+	            0xa8000000: 0x808000,
+	            0xb8000000: 0x800202,
+	            0xc8000000: 0x800002,
+	            0xd8000000: 0x8002,
+	            0xe8000000: 0x202,
+	            0xf8000000: 0x800000,
+	            0x1: 0x8000,
+	            0x10000001: 0x2,
+	            0x20000001: 0x808200,
+	            0x30000001: 0x800000,
+	            0x40000001: 0x808002,
+	            0x50000001: 0x8200,
+	            0x60000001: 0x200,
+	            0x70000001: 0x800202,
+	            0x80000001: 0x808202,
+	            0x90000001: 0x808000,
+	            0xa0000001: 0x800002,
+	            0xb0000001: 0x8202,
+	            0xc0000001: 0x202,
+	            0xd0000001: 0x800200,
+	            0xe0000001: 0x8002,
+	            0xf0000001: 0x0,
+	            0x8000001: 0x808202,
+	            0x18000001: 0x808000,
+	            0x28000001: 0x800000,
+	            0x38000001: 0x200,
+	            0x48000001: 0x8000,
+	            0x58000001: 0x800002,
+	            0x68000001: 0x2,
+	            0x78000001: 0x8202,
+	            0x88000001: 0x8002,
+	            0x98000001: 0x800202,
+	            0xa8000001: 0x202,
+	            0xb8000001: 0x808200,
+	            0xc8000001: 0x800200,
+	            0xd8000001: 0x0,
+	            0xe8000001: 0x8200,
+	            0xf8000001: 0x808002
+	        },
+	        {
+	            0x0: 0x40084010,
+	            0x1000000: 0x4000,
+	            0x2000000: 0x80000,
+	            0x3000000: 0x40080010,
+	            0x4000000: 0x40000010,
+	            0x5000000: 0x40084000,
+	            0x6000000: 0x40004000,
+	            0x7000000: 0x10,
+	            0x8000000: 0x84000,
+	            0x9000000: 0x40004010,
+	            0xa000000: 0x40000000,
+	            0xb000000: 0x84010,
+	            0xc000000: 0x80010,
+	            0xd000000: 0x0,
+	            0xe000000: 0x4010,
+	            0xf000000: 0x40080000,
+	            0x800000: 0x40004000,
+	            0x1800000: 0x84010,
+	            0x2800000: 0x10,
+	            0x3800000: 0x40004010,
+	            0x4800000: 0x40084010,
+	            0x5800000: 0x40000000,
+	            0x6800000: 0x80000,
+	            0x7800000: 0x40080010,
+	            0x8800000: 0x80010,
+	            0x9800000: 0x0,
+	            0xa800000: 0x4000,
+	            0xb800000: 0x40080000,
+	            0xc800000: 0x40000010,
+	            0xd800000: 0x84000,
+	            0xe800000: 0x40084000,
+	            0xf800000: 0x4010,
+	            0x10000000: 0x0,
+	            0x11000000: 0x40080010,
+	            0x12000000: 0x40004010,
+	            0x13000000: 0x40084000,
+	            0x14000000: 0x40080000,
+	            0x15000000: 0x10,
+	            0x16000000: 0x84010,
+	            0x17000000: 0x4000,
+	            0x18000000: 0x4010,
+	            0x19000000: 0x80000,
+	            0x1a000000: 0x80010,
+	            0x1b000000: 0x40000010,
+	            0x1c000000: 0x84000,
+	            0x1d000000: 0x40004000,
+	            0x1e000000: 0x40000000,
+	            0x1f000000: 0x40084010,
+	            0x10800000: 0x84010,
+	            0x11800000: 0x80000,
+	            0x12800000: 0x40080000,
+	            0x13800000: 0x4000,
+	            0x14800000: 0x40004000,
+	            0x15800000: 0x40084010,
+	            0x16800000: 0x10,
+	            0x17800000: 0x40000000,
+	            0x18800000: 0x40084000,
+	            0x19800000: 0x40000010,
+	            0x1a800000: 0x40004010,
+	            0x1b800000: 0x80010,
+	            0x1c800000: 0x0,
+	            0x1d800000: 0x4010,
+	            0x1e800000: 0x40080010,
+	            0x1f800000: 0x84000
+	        },
+	        {
+	            0x0: 0x104,
+	            0x100000: 0x0,
+	            0x200000: 0x4000100,
+	            0x300000: 0x10104,
+	            0x400000: 0x10004,
+	            0x500000: 0x4000004,
+	            0x600000: 0x4010104,
+	            0x700000: 0x4010000,
+	            0x800000: 0x4000000,
+	            0x900000: 0x4010100,
+	            0xa00000: 0x10100,
+	            0xb00000: 0x4010004,
+	            0xc00000: 0x4000104,
+	            0xd00000: 0x10000,
+	            0xe00000: 0x4,
+	            0xf00000: 0x100,
+	            0x80000: 0x4010100,
+	            0x180000: 0x4010004,
+	            0x280000: 0x0,
+	            0x380000: 0x4000100,
+	            0x480000: 0x4000004,
+	            0x580000: 0x10000,
+	            0x680000: 0x10004,
+	            0x780000: 0x104,
+	            0x880000: 0x4,
+	            0x980000: 0x100,
+	            0xa80000: 0x4010000,
+	            0xb80000: 0x10104,
+	            0xc80000: 0x10100,
+	            0xd80000: 0x4000104,
+	            0xe80000: 0x4010104,
+	            0xf80000: 0x4000000,
+	            0x1000000: 0x4010100,
+	            0x1100000: 0x10004,
+	            0x1200000: 0x10000,
+	            0x1300000: 0x4000100,
+	            0x1400000: 0x100,
+	            0x1500000: 0x4010104,
+	            0x1600000: 0x4000004,
+	            0x1700000: 0x0,
+	            0x1800000: 0x4000104,
+	            0x1900000: 0x4000000,
+	            0x1a00000: 0x4,
+	            0x1b00000: 0x10100,
+	            0x1c00000: 0x4010000,
+	            0x1d00000: 0x104,
+	            0x1e00000: 0x10104,
+	            0x1f00000: 0x4010004,
+	            0x1080000: 0x4000000,
+	            0x1180000: 0x104,
+	            0x1280000: 0x4010100,
+	            0x1380000: 0x0,
+	            0x1480000: 0x10004,
+	            0x1580000: 0x4000100,
+	            0x1680000: 0x100,
+	            0x1780000: 0x4010004,
+	            0x1880000: 0x10000,
+	            0x1980000: 0x4010104,
+	            0x1a80000: 0x10104,
+	            0x1b80000: 0x4000004,
+	            0x1c80000: 0x4000104,
+	            0x1d80000: 0x4010000,
+	            0x1e80000: 0x4,
+	            0x1f80000: 0x10100
+	        },
+	        {
+	            0x0: 0x80401000,
+	            0x10000: 0x80001040,
+	            0x20000: 0x401040,
+	            0x30000: 0x80400000,
+	            0x40000: 0x0,
+	            0x50000: 0x401000,
+	            0x60000: 0x80000040,
+	            0x70000: 0x400040,
+	            0x80000: 0x80000000,
+	            0x90000: 0x400000,
+	            0xa0000: 0x40,
+	            0xb0000: 0x80001000,
+	            0xc0000: 0x80400040,
+	            0xd0000: 0x1040,
+	            0xe0000: 0x1000,
+	            0xf0000: 0x80401040,
+	            0x8000: 0x80001040,
+	            0x18000: 0x40,
+	            0x28000: 0x80400040,
+	            0x38000: 0x80001000,
+	            0x48000: 0x401000,
+	            0x58000: 0x80401040,
+	            0x68000: 0x0,
+	            0x78000: 0x80400000,
+	            0x88000: 0x1000,
+	            0x98000: 0x80401000,
+	            0xa8000: 0x400000,
+	            0xb8000: 0x1040,
+	            0xc8000: 0x80000000,
+	            0xd8000: 0x400040,
+	            0xe8000: 0x401040,
+	            0xf8000: 0x80000040,
+	            0x100000: 0x400040,
+	            0x110000: 0x401000,
+	            0x120000: 0x80000040,
+	            0x130000: 0x0,
+	            0x140000: 0x1040,
+	            0x150000: 0x80400040,
+	            0x160000: 0x80401000,
+	            0x170000: 0x80001040,
+	            0x180000: 0x80401040,
+	            0x190000: 0x80000000,
+	            0x1a0000: 0x80400000,
+	            0x1b0000: 0x401040,
+	            0x1c0000: 0x80001000,
+	            0x1d0000: 0x400000,
+	            0x1e0000: 0x40,
+	            0x1f0000: 0x1000,
+	            0x108000: 0x80400000,
+	            0x118000: 0x80401040,
+	            0x128000: 0x0,
+	            0x138000: 0x401000,
+	            0x148000: 0x400040,
+	            0x158000: 0x80000000,
+	            0x168000: 0x80001040,
+	            0x178000: 0x40,
+	            0x188000: 0x80000040,
+	            0x198000: 0x1000,
+	            0x1a8000: 0x80001000,
+	            0x1b8000: 0x80400040,
+	            0x1c8000: 0x1040,
+	            0x1d8000: 0x80401000,
+	            0x1e8000: 0x400000,
+	            0x1f8000: 0x401040
+	        },
+	        {
+	            0x0: 0x80,
+	            0x1000: 0x1040000,
+	            0x2000: 0x40000,
+	            0x3000: 0x20000000,
+	            0x4000: 0x20040080,
+	            0x5000: 0x1000080,
+	            0x6000: 0x21000080,
+	            0x7000: 0x40080,
+	            0x8000: 0x1000000,
+	            0x9000: 0x20040000,
+	            0xa000: 0x20000080,
+	            0xb000: 0x21040080,
+	            0xc000: 0x21040000,
+	            0xd000: 0x0,
+	            0xe000: 0x1040080,
+	            0xf000: 0x21000000,
+	            0x800: 0x1040080,
+	            0x1800: 0x21000080,
+	            0x2800: 0x80,
+	            0x3800: 0x1040000,
+	            0x4800: 0x40000,
+	            0x5800: 0x20040080,
+	            0x6800: 0x21040000,
+	            0x7800: 0x20000000,
+	            0x8800: 0x20040000,
+	            0x9800: 0x0,
+	            0xa800: 0x21040080,
+	            0xb800: 0x1000080,
+	            0xc800: 0x20000080,
+	            0xd800: 0x21000000,
+	            0xe800: 0x1000000,
+	            0xf800: 0x40080,
+	            0x10000: 0x40000,
+	            0x11000: 0x80,
+	            0x12000: 0x20000000,
+	            0x13000: 0x21000080,
+	            0x14000: 0x1000080,
+	            0x15000: 0x21040000,
+	            0x16000: 0x20040080,
+	            0x17000: 0x1000000,
+	            0x18000: 0x21040080,
+	            0x19000: 0x21000000,
+	            0x1a000: 0x1040000,
+	            0x1b000: 0x20040000,
+	            0x1c000: 0x40080,
+	            0x1d000: 0x20000080,
+	            0x1e000: 0x0,
+	            0x1f000: 0x1040080,
+	            0x10800: 0x21000080,
+	            0x11800: 0x1000000,
+	            0x12800: 0x1040000,
+	            0x13800: 0x20040080,
+	            0x14800: 0x20000000,
+	            0x15800: 0x1040080,
+	            0x16800: 0x80,
+	            0x17800: 0x21040000,
+	            0x18800: 0x40080,
+	            0x19800: 0x21040080,
+	            0x1a800: 0x0,
+	            0x1b800: 0x21000000,
+	            0x1c800: 0x1000080,
+	            0x1d800: 0x40000,
+	            0x1e800: 0x20040000,
+	            0x1f800: 0x20000080
+	        },
+	        {
+	            0x0: 0x10000008,
+	            0x100: 0x2000,
+	            0x200: 0x10200000,
+	            0x300: 0x10202008,
+	            0x400: 0x10002000,
+	            0x500: 0x200000,
+	            0x600: 0x200008,
+	            0x700: 0x10000000,
+	            0x800: 0x0,
+	            0x900: 0x10002008,
+	            0xa00: 0x202000,
+	            0xb00: 0x8,
+	            0xc00: 0x10200008,
+	            0xd00: 0x202008,
+	            0xe00: 0x2008,
+	            0xf00: 0x10202000,
+	            0x80: 0x10200000,
+	            0x180: 0x10202008,
+	            0x280: 0x8,
+	            0x380: 0x200000,
+	            0x480: 0x202008,
+	            0x580: 0x10000008,
+	            0x680: 0x10002000,
+	            0x780: 0x2008,
+	            0x880: 0x200008,
+	            0x980: 0x2000,
+	            0xa80: 0x10002008,
+	            0xb80: 0x10200008,
+	            0xc80: 0x0,
+	            0xd80: 0x10202000,
+	            0xe80: 0x202000,
+	            0xf80: 0x10000000,
+	            0x1000: 0x10002000,
+	            0x1100: 0x10200008,
+	            0x1200: 0x10202008,
+	            0x1300: 0x2008,
+	            0x1400: 0x200000,
+	            0x1500: 0x10000000,
+	            0x1600: 0x10000008,
+	            0x1700: 0x202000,
+	            0x1800: 0x202008,
+	            0x1900: 0x0,
+	            0x1a00: 0x8,
+	            0x1b00: 0x10200000,
+	            0x1c00: 0x2000,
+	            0x1d00: 0x10002008,
+	            0x1e00: 0x10202000,
+	            0x1f00: 0x200008,
+	            0x1080: 0x8,
+	            0x1180: 0x202000,
+	            0x1280: 0x200000,
+	            0x1380: 0x10000008,
+	            0x1480: 0x10002000,
+	            0x1580: 0x2008,
+	            0x1680: 0x10202008,
+	            0x1780: 0x10200000,
+	            0x1880: 0x10202000,
+	            0x1980: 0x10200008,
+	            0x1a80: 0x2000,
+	            0x1b80: 0x202008,
+	            0x1c80: 0x200008,
+	            0x1d80: 0x0,
+	            0x1e80: 0x10000000,
+	            0x1f80: 0x10002008
+	        },
+	        {
+	            0x0: 0x100000,
+	            0x10: 0x2000401,
+	            0x20: 0x400,
+	            0x30: 0x100401,
+	            0x40: 0x2100401,
+	            0x50: 0x0,
+	            0x60: 0x1,
+	            0x70: 0x2100001,
+	            0x80: 0x2000400,
+	            0x90: 0x100001,
+	            0xa0: 0x2000001,
+	            0xb0: 0x2100400,
+	            0xc0: 0x2100000,
+	            0xd0: 0x401,
+	            0xe0: 0x100400,
+	            0xf0: 0x2000000,
+	            0x8: 0x2100001,
+	            0x18: 0x0,
+	            0x28: 0x2000401,
+	            0x38: 0x2100400,
+	            0x48: 0x100000,
+	            0x58: 0x2000001,
+	            0x68: 0x2000000,
+	            0x78: 0x401,
+	            0x88: 0x100401,
+	            0x98: 0x2000400,
+	            0xa8: 0x2100000,
+	            0xb8: 0x100001,
+	            0xc8: 0x400,
+	            0xd8: 0x2100401,
+	            0xe8: 0x1,
+	            0xf8: 0x100400,
+	            0x100: 0x2000000,
+	            0x110: 0x100000,
+	            0x120: 0x2000401,
+	            0x130: 0x2100001,
+	            0x140: 0x100001,
+	            0x150: 0x2000400,
+	            0x160: 0x2100400,
+	            0x170: 0x100401,
+	            0x180: 0x401,
+	            0x190: 0x2100401,
+	            0x1a0: 0x100400,
+	            0x1b0: 0x1,
+	            0x1c0: 0x0,
+	            0x1d0: 0x2100000,
+	            0x1e0: 0x2000001,
+	            0x1f0: 0x400,
+	            0x108: 0x100400,
+	            0x118: 0x2000401,
+	            0x128: 0x2100001,
+	            0x138: 0x1,
+	            0x148: 0x2000000,
+	            0x158: 0x100000,
+	            0x168: 0x401,
+	            0x178: 0x2100400,
+	            0x188: 0x2000001,
+	            0x198: 0x2100000,
+	            0x1a8: 0x0,
+	            0x1b8: 0x2100401,
+	            0x1c8: 0x100401,
+	            0x1d8: 0x400,
+	            0x1e8: 0x2000400,
+	            0x1f8: 0x100001
+	        },
+	        {
+	            0x0: 0x8000820,
+	            0x1: 0x20000,
+	            0x2: 0x8000000,
+	            0x3: 0x20,
+	            0x4: 0x20020,
+	            0x5: 0x8020820,
+	            0x6: 0x8020800,
+	            0x7: 0x800,
+	            0x8: 0x8020000,
+	            0x9: 0x8000800,
+	            0xa: 0x20800,
+	            0xb: 0x8020020,
+	            0xc: 0x820,
+	            0xd: 0x0,
+	            0xe: 0x8000020,
+	            0xf: 0x20820,
+	            0x80000000: 0x800,
+	            0x80000001: 0x8020820,
+	            0x80000002: 0x8000820,
+	            0x80000003: 0x8000000,
+	            0x80000004: 0x8020000,
+	            0x80000005: 0x20800,
+	            0x80000006: 0x20820,
+	            0x80000007: 0x20,
+	            0x80000008: 0x8000020,
+	            0x80000009: 0x820,
+	            0x8000000a: 0x20020,
+	            0x8000000b: 0x8020800,
+	            0x8000000c: 0x0,
+	            0x8000000d: 0x8020020,
+	            0x8000000e: 0x8000800,
+	            0x8000000f: 0x20000,
+	            0x10: 0x20820,
+	            0x11: 0x8020800,
+	            0x12: 0x20,
+	            0x13: 0x800,
+	            0x14: 0x8000800,
+	            0x15: 0x8000020,
+	            0x16: 0x8020020,
+	            0x17: 0x20000,
+	            0x18: 0x0,
+	            0x19: 0x20020,
+	            0x1a: 0x8020000,
+	            0x1b: 0x8000820,
+	            0x1c: 0x8020820,
+	            0x1d: 0x20800,
+	            0x1e: 0x820,
+	            0x1f: 0x8000000,
+	            0x80000010: 0x20000,
+	            0x80000011: 0x800,
+	            0x80000012: 0x8020020,
+	            0x80000013: 0x20820,
+	            0x80000014: 0x20,
+	            0x80000015: 0x8020000,
+	            0x80000016: 0x8000000,
+	            0x80000017: 0x8000820,
+	            0x80000018: 0x8020820,
+	            0x80000019: 0x8000020,
+	            0x8000001a: 0x8000800,
+	            0x8000001b: 0x0,
+	            0x8000001c: 0x20800,
+	            0x8000001d: 0x820,
+	            0x8000001e: 0x20020,
+	            0x8000001f: 0x8020800
+	        }
+	    ];
+
+	    // Masks that select the SBOX input
+	    var SBOX_MASK = [
+	        0xf8000001, 0x1f800000, 0x01f80000, 0x001f8000,
+	        0x0001f800, 0x00001f80, 0x000001f8, 0x8000001f
+	    ];
+
+	    /**
+	     * DES block cipher algorithm.
+	     */
+	    var DES = C_algo.DES = BlockCipher.extend({
+	        _doReset: function () {
+	            // Shortcuts
+	            var key = this._key;
+	            var keyWords = key.words;
+
+	            // Select 56 bits according to PC1
+	            var keyBits = [];
+	            for (var i = 0; i < 56; i++) {
+	                var keyBitPos = PC1[i] - 1;
+	                keyBits[i] = (keyWords[keyBitPos >>> 5] >>> (31 - keyBitPos % 32)) & 1;
+	            }
+
+	            // Assemble 16 subkeys
+	            var subKeys = this._subKeys = [];
+	            for (var nSubKey = 0; nSubKey < 16; nSubKey++) {
+	                // Create subkey
+	                var subKey = subKeys[nSubKey] = [];
+
+	                // Shortcut
+	                var bitShift = BIT_SHIFTS[nSubKey];
+
+	                // Select 48 bits according to PC2
+	                for (var i = 0; i < 24; i++) {
+	                    // Select from the left 28 key bits
+	                    subKey[(i / 6) | 0] |= keyBits[((PC2[i] - 1) + bitShift) % 28] << (31 - i % 6);
+
+	                    // Select from the right 28 key bits
+	                    subKey[4 + ((i / 6) | 0)] |= keyBits[28 + (((PC2[i + 24] - 1) + bitShift) % 28)] << (31 - i % 6);
+	                }
+
+	                // Since each subkey is applied to an expanded 32-bit input,
+	                // the subkey can be broken into 8 values scaled to 32-bits,
+	                // which allows the key to be used without expansion
+	                subKey[0] = (subKey[0] << 1) | (subKey[0] >>> 31);
+	                for (var i = 1; i < 7; i++) {
+	                    subKey[i] = subKey[i] >>> ((i - 1) * 4 + 3);
+	                }
+	                subKey[7] = (subKey[7] << 5) | (subKey[7] >>> 27);
+	            }
+
+	            // Compute inverse subkeys
+	            var invSubKeys = this._invSubKeys = [];
+	            for (var i = 0; i < 16; i++) {
+	                invSubKeys[i] = subKeys[15 - i];
+	            }
+	        },
+
+	        encryptBlock: function (M, offset) {
+	            this._doCryptBlock(M, offset, this._subKeys);
+	        },
+
+	        decryptBlock: function (M, offset) {
+	            this._doCryptBlock(M, offset, this._invSubKeys);
+	        },
+
+	        _doCryptBlock: function (M, offset, subKeys) {
+	            // Get input
+	            this._lBlock = M[offset];
+	            this._rBlock = M[offset + 1];
+
+	            // Initial permutation
+	            exchangeLR.call(this, 4,  0x0f0f0f0f);
+	            exchangeLR.call(this, 16, 0x0000ffff);
+	            exchangeRL.call(this, 2,  0x33333333);
+	            exchangeRL.call(this, 8,  0x00ff00ff);
+	            exchangeLR.call(this, 1,  0x55555555);
+
+	            // Rounds
+	            for (var round = 0; round < 16; round++) {
+	                // Shortcuts
+	                var subKey = subKeys[round];
+	                var lBlock = this._lBlock;
+	                var rBlock = this._rBlock;
+
+	                // Feistel function
+	                var f = 0;
+	                for (var i = 0; i < 8; i++) {
+	                    f |= SBOX_P[i][((rBlock ^ subKey[i]) & SBOX_MASK[i]) >>> 0];
+	                }
+	                this._lBlock = rBlock;
+	                this._rBlock = lBlock ^ f;
+	            }
+
+	            // Undo swap from last round
+	            var t = this._lBlock;
+	            this._lBlock = this._rBlock;
+	            this._rBlock = t;
+
+	            // Final permutation
+	            exchangeLR.call(this, 1,  0x55555555);
+	            exchangeRL.call(this, 8,  0x00ff00ff);
+	            exchangeRL.call(this, 2,  0x33333333);
+	            exchangeLR.call(this, 16, 0x0000ffff);
+	            exchangeLR.call(this, 4,  0x0f0f0f0f);
+
+	            // Set output
+	            M[offset] = this._lBlock;
+	            M[offset + 1] = this._rBlock;
+	        },
+
+	        keySize: 64/32,
+
+	        ivSize: 64/32,
+
+	        blockSize: 64/32
+	    });
+
+	    // Swap bits across the left and right words
+	    function exchangeLR(offset, mask) {
+	        var t = ((this._lBlock >>> offset) ^ this._rBlock) & mask;
+	        this._rBlock ^= t;
+	        this._lBlock ^= t << offset;
+	    }
+
+	    function exchangeRL(offset, mask) {
+	        var t = ((this._rBlock >>> offset) ^ this._lBlock) & mask;
+	        this._lBlock ^= t;
+	        this._rBlock ^= t << offset;
+	    }
+
+	    /**
+	     * Shortcut functions to the cipher's object interface.
+	     *
+	     * @example
+	     *
+	     *     var ciphertext = CryptoJS.DES.encrypt(message, key, cfg);
+	     *     var plaintext  = CryptoJS.DES.decrypt(ciphertext, key, cfg);
+	     */
+	    C.DES = BlockCipher._createHelper(DES);
+
+	    /**
+	     * Triple-DES block cipher algorithm.
+	     */
+	    var TripleDES = C_algo.TripleDES = BlockCipher.extend({
+	        _doReset: function () {
+	            // Shortcuts
+	            var key = this._key;
+	            var keyWords = key.words;
+	            // Make sure the key length is valid (64, 128 or >= 192 bit)
+	            if (keyWords.length !== 2 && keyWords.length !== 4 && keyWords.length < 6) {
+	                throw new Error('Invalid key length - 3DES requires the key length to be 64, 128, 192 or >192.');
+	            }
+
+	            // Extend the key according to the keying options defined in 3DES standard
+	            var key1 = keyWords.slice(0, 2);
+	            var key2 = keyWords.length < 4 ? keyWords.slice(0, 2) : keyWords.slice(2, 4);
+	            var key3 = keyWords.length < 6 ? keyWords.slice(0, 2) : keyWords.slice(4, 6);
+
+	            // Create DES instances
+	            this._des1 = DES.createEncryptor(WordArray.create(key1));
+	            this._des2 = DES.createEncryptor(WordArray.create(key2));
+	            this._des3 = DES.createEncryptor(WordArray.create(key3));
+	        },
+
+	        encryptBlock: function (M, offset) {
+	            this._des1.encryptBlock(M, offset);
+	            this._des2.decryptBlock(M, offset);
+	            this._des3.encryptBlock(M, offset);
+	        },
+
+	        decryptBlock: function (M, offset) {
+	            this._des3.decryptBlock(M, offset);
+	            this._des2.encryptBlock(M, offset);
+	            this._des1.decryptBlock(M, offset);
+	        },
+
+	        keySize: 192/32,
+
+	        ivSize: 64/32,
+
+	        blockSize: 64/32
+	    });
+
+	    /**
+	     * Shortcut functions to the cipher's object interface.
+	     *
+	     * @example
+	     *
+	     *     var ciphertext = CryptoJS.TripleDES.encrypt(message, key, cfg);
+	     *     var plaintext  = CryptoJS.TripleDES.decrypt(ciphertext, key, cfg);
+	     */
+	    C.TripleDES = BlockCipher._createHelper(TripleDES);
+	}());
+
+
+	return CryptoJS.TripleDES;
+
+}));
\ No newline at end of file
diff --git a/oxAuth/Server/src/main/webapp/js/crypto-js-4.1.1/x64-core.js b/oxAuth/Server/src/main/webapp/js/crypto-js-4.1.1/x64-core.js
new file mode 100644
index 00000000..57dcc144
--- /dev/null
+++ b/oxAuth/Server/src/main/webapp/js/crypto-js-4.1.1/x64-core.js
@@ -0,0 +1,304 @@
+;(function (root, factory) {
+	if (typeof exports === "object") {
+		// CommonJS
+		module.exports = exports = factory(require("./core"));
+	}
+	else if (typeof define === "function" && define.amd) {
+		// AMD
+		define(["./core"], factory);
+	}
+	else {
+		// Global (browser)
+		factory(root.CryptoJS);
+	}
+}(this, function (CryptoJS) {
+
+	(function (undefined) {
+	    // Shortcuts
+	    var C = CryptoJS;
+	    var C_lib = C.lib;
+	    var Base = C_lib.Base;
+	    var X32WordArray = C_lib.WordArray;
+
+	    /**
+	     * x64 namespace.
+	     */
+	    var C_x64 = C.x64 = {};
+
+	    /**
+	     * A 64-bit word.
+	     */
+	    var X64Word = C_x64.Word = Base.extend({
+	        /**
+	         * Initializes a newly created 64-bit word.
+	         *
+	         * @param {number} high The high 32 bits.
+	         * @param {number} low The low 32 bits.
+	         *
+	         * @example
+	         *
+	         *     var x64Word = CryptoJS.x64.Word.create(0x00010203, 0x04050607);
+	         */
+	        init: function (high, low) {
+	            this.high = high;
+	            this.low = low;
+	        }
+
+	        /**
+	         * Bitwise NOTs this word.
+	         *
+	         * @return {X64Word} A new x64-Word object after negating.
+	         *
+	         * @example
+	         *
+	         *     var negated = x64Word.not();
+	         */
+	        // not: function () {
+	            // var high = ~this.high;
+	            // var low = ~this.low;
+
+	            // return X64Word.create(high, low);
+	        // },
+
+	        /**
+	         * Bitwise ANDs this word with the passed word.
+	         *
+	         * @param {X64Word} word The x64-Word to AND with this word.
+	         *
+	         * @return {X64Word} A new x64-Word object after ANDing.
+	         *
+	         * @example
+	         *
+	         *     var anded = x64Word.and(anotherX64Word);
+	         */
+	        // and: function (word) {
+	            // var high = this.high & word.high;
+	            // var low = this.low & word.low;
+
+	            // return X64Word.create(high, low);
+	        // },
+
+	        /**
+	         * Bitwise ORs this word with the passed word.
+	         *
+	         * @param {X64Word} word The x64-Word to OR with this word.
+	         *
+	         * @return {X64Word} A new x64-Word object after ORing.
+	         *
+	         * @example
+	         *
+	         *     var ored = x64Word.or(anotherX64Word);
+	         */
+	        // or: function (word) {
+	            // var high = this.high | word.high;
+	            // var low = this.low | word.low;
+
+	            // return X64Word.create(high, low);
+	        // },
+
+	        /**
+	         * Bitwise XORs this word with the passed word.
+	         *
+	         * @param {X64Word} word The x64-Word to XOR with this word.
+	         *
+	         * @return {X64Word} A new x64-Word object after XORing.
+	         *
+	         * @example
+	         *
+	         *     var xored = x64Word.xor(anotherX64Word);
+	         */
+	        // xor: function (word) {
+	            // var high = this.high ^ word.high;
+	            // var low = this.low ^ word.low;
+
+	            // return X64Word.create(high, low);
+	        // },
+
+	        /**
+	         * Shifts this word n bits to the left.
+	         *
+	         * @param {number} n The number of bits to shift.
+	         *
+	         * @return {X64Word} A new x64-Word object after shifting.
+	         *
+	         * @example
+	         *
+	         *     var shifted = x64Word.shiftL(25);
+	         */
+	        // shiftL: function (n) {
+	            // if (n < 32) {
+	                // var high = (this.high << n) | (this.low >>> (32 - n));
+	                // var low = this.low << n;
+	            // } else {
+	                // var high = this.low << (n - 32);
+	                // var low = 0;
+	            // }
+
+	            // return X64Word.create(high, low);
+	        // },
+
+	        /**
+	         * Shifts this word n bits to the right.
+	         *
+	         * @param {number} n The number of bits to shift.
+	         *
+	         * @return {X64Word} A new x64-Word object after shifting.
+	         *
+	         * @example
+	         *
+	         *     var shifted = x64Word.shiftR(7);
+	         */
+	        // shiftR: function (n) {
+	            // if (n < 32) {
+	                // var low = (this.low >>> n) | (this.high << (32 - n));
+	                // var high = this.high >>> n;
+	            // } else {
+	                // var low = this.high >>> (n - 32);
+	                // var high = 0;
+	            // }
+
+	            // return X64Word.create(high, low);
+	        // },
+
+	        /**
+	         * Rotates this word n bits to the left.
+	         *
+	         * @param {number} n The number of bits to rotate.
+	         *
+	         * @return {X64Word} A new x64-Word object after rotating.
+	         *
+	         * @example
+	         *
+	         *     var rotated = x64Word.rotL(25);
+	         */
+	        // rotL: function (n) {
+	            // return this.shiftL(n).or(this.shiftR(64 - n));
+	        // },
+
+	        /**
+	         * Rotates this word n bits to the right.
+	         *
+	         * @param {number} n The number of bits to rotate.
+	         *
+	         * @return {X64Word} A new x64-Word object after rotating.
+	         *
+	         * @example
+	         *
+	         *     var rotated = x64Word.rotR(7);
+	         */
+	        // rotR: function (n) {
+	            // return this.shiftR(n).or(this.shiftL(64 - n));
+	        // },
+
+	        /**
+	         * Adds this word with the passed word.
+	         *
+	         * @param {X64Word} word The x64-Word to add with this word.
+	         *
+	         * @return {X64Word} A new x64-Word object after adding.
+	         *
+	         * @example
+	         *
+	         *     var added = x64Word.add(anotherX64Word);
+	         */
+	        // add: function (word) {
+	            // var low = (this.low + word.low) | 0;
+	            // var carry = (low >>> 0) < (this.low >>> 0) ? 1 : 0;
+	            // var high = (this.high + word.high + carry) | 0;
+
+	            // return X64Word.create(high, low);
+	        // }
+	    });
+
+	    /**
+	     * An array of 64-bit words.
+	     *
+	     * @property {Array} words The array of CryptoJS.x64.Word objects.
+	     * @property {number} sigBytes The number of significant bytes in this word array.
+	     */
+	    var X64WordArray = C_x64.WordArray = Base.extend({
+	        /**
+	         * Initializes a newly created word array.
+	         *
+	         * @param {Array} words (Optional) An array of CryptoJS.x64.Word objects.
+	         * @param {number} sigBytes (Optional) The number of significant bytes in the words.
+	         *
+	         * @example
+	         *
+	         *     var wordArray = CryptoJS.x64.WordArray.create();
+	         *
+	         *     var wordArray = CryptoJS.x64.WordArray.create([
+	         *         CryptoJS.x64.Word.create(0x00010203, 0x04050607),
+	         *         CryptoJS.x64.Word.create(0x18191a1b, 0x1c1d1e1f)
+	         *     ]);
+	         *
+	         *     var wordArray = CryptoJS.x64.WordArray.create([
+	         *         CryptoJS.x64.Word.create(0x00010203, 0x04050607),
+	         *         CryptoJS.x64.Word.create(0x18191a1b, 0x1c1d1e1f)
+	         *     ], 10);
+	         */
+	        init: function (words, sigBytes) {
+	            words = this.words = words || [];
+
+	            if (sigBytes != undefined) {
+	                this.sigBytes = sigBytes;
+	            } else {
+	                this.sigBytes = words.length * 8;
+	            }
+	        },
+
+	        /**
+	         * Converts this 64-bit word array to a 32-bit word array.
+	         *
+	         * @return {CryptoJS.lib.WordArray} This word array's data as a 32-bit word array.
+	         *
+	         * @example
+	         *
+	         *     var x32WordArray = x64WordArray.toX32();
+	         */
+	        toX32: function () {
+	            // Shortcuts
+	            var x64Words = this.words;
+	            var x64WordsLength = x64Words.length;
+
+	            // Convert
+	            var x32Words = [];
+	            for (var i = 0; i < x64WordsLength; i++) {
+	                var x64Word = x64Words[i];
+	                x32Words.push(x64Word.high);
+	                x32Words.push(x64Word.low);
+	            }
+
+	            return X32WordArray.create(x32Words, this.sigBytes);
+	        },
+
+	        /**
+	         * Creates a copy of this word array.
+	         *
+	         * @return {X64WordArray} The clone.
+	         *
+	         * @example
+	         *
+	         *     var clone = x64WordArray.clone();
+	         */
+	        clone: function () {
+	            var clone = Base.clone.call(this);
+
+	            // Clone "words" array
+	            var words = clone.words = this.words.slice(0);
+
+	            // Clone each X64Word object
+	            var wordsLength = words.length;
+	            for (var i = 0; i < wordsLength; i++) {
+	                words[i] = words[i].clone();
+	            }
+
+	            return clone;
+	        }
+	    });
+	}());
+
+
+	return CryptoJS;
+
+}));
\ No newline at end of file
diff --git a/oxAuth/Server/src/main/webapp/js/fontawesome.min.js b/oxAuth/Server/src/main/webapp/js/fontawesome.min.js
new file mode 100644
index 00000000..6b1c054a
--- /dev/null
+++ b/oxAuth/Server/src/main/webapp/js/fontawesome.min.js
@@ -0,0 +1,5 @@
+/*!
+ * Font Awesome Free 5.8.2 by @fontawesome - https://fontawesome.com
+ * License - https://fontawesome.com/license/free (Icons: CC BY 4.0, Fonts: SIL OFL 1.1, Code: MIT License)
+ */
+!function(){"use strict";function r(t){return(r="function"==typeof Symbol&&"symbol"==typeof Symbol.iterator?function(t){return typeof t}:function(t){return t&&"function"==typeof Symbol&&t.constructor===Symbol&&t!==Symbol.prototype?"symbol":typeof t})(t)}function i(t,e){for(var n=0;n<e.length;n++){var a=e[n];a.enumerable=a.enumerable||!1,a.configurable=!0,"value"in a&&(a.writable=!0),Object.defineProperty(t,a.key,a)}}function B(r){for(var t=1;t<arguments.length;t++){var i=null!=arguments[t]?arguments[t]:{},e=Object.keys(i);"function"==typeof Object.getOwnPropertySymbols&&(e=e.concat(Object.getOwnPropertySymbols(i).filter(function(t){return Object.getOwnPropertyDescriptor(i,t).enumerable}))),e.forEach(function(t){var e,n,a;e=r,a=i[n=t],n in e?Object.defineProperty(e,n,{value:a,enumerable:!0,configurable:!0,writable:!0}):e[n]=a})}return r}function d(t,e){return function(t){if(Array.isArray(t))return t}(t)||function(t,e){var n=[],a=!0,r=!1,i=void 0;try{for(var o,c=t[Symbol.iterator]();!(a=(o=c.next()).done)&&(n.push(o.value),!e||n.length!==e);a=!0);}catch(t){r=!0,i=t}finally{try{a||null==c.return||c.return()}finally{if(r)throw i}}return n}(t,e)||function(){throw new TypeError("Invalid attempt to destructure non-iterable instance")}()}function m(t){return function(t){if(Array.isArray(t)){for(var e=0,n=new Array(t.length);e<t.length;e++)n[e]=t[e];return n}}(t)||function(t){if(Symbol.iterator in Object(t)||"[object Arguments]"===Object.prototype.toString.call(t))return Array.from(t)}(t)||function(){throw new TypeError("Invalid attempt to spread non-iterable instance")}()}var t=function(){},e={},n={},a=null,o={mark:t,measure:t};try{"undefined"!=typeof window&&(e=window),"undefined"!=typeof document&&(n=document),"undefined"!=typeof MutationObserver&&(a=MutationObserver),"undefined"!=typeof performance&&(o=performance)}catch(t){}var c=(e.navigator||{}).userAgent,s=void 0===c?"":c,g=e,v=n,l=a,f=o,u=!!g.document,h=!!v.documentElement&&!!v.head&&"function"==typeof v.addEventListener&&"function"==typeof v.createElement,k=~s.indexOf("MSIE")||~s.indexOf("Trident/"),p="___FONT_AWESOME___",A=16,b="fa",y="svg-inline--fa",U="data-fa-i2svg",w="data-fa-pseudo-element",x="data-fa-pseudo-element-pending",C="data-prefix",N="data-icon",S="fontawesome-i2svg",z="async",M=["HTML","HEAD","STYLE","SCRIPT"],O=function(){try{return!0}catch(t){return!1}}(),E={fas:"solid",far:"regular",fal:"light",fab:"brands",fa:"solid"},j={solid:"fas",regular:"far",light:"fal",brands:"fab"},P="fa-layers-text",L=/Font Awesome 5 (Solid|Regular|Light|Brands|Free|Pro)/,_={900:"fas",400:"far",normal:"far",300:"fal"},T=[1,2,3,4,5,6,7,8,9,10],R=T.concat([11,12,13,14,15,16,17,18,19,20]),H=["class","data-prefix","data-icon","data-fa-transform","data-fa-mask"],I=["xs","sm","lg","fw","ul","li","border","pull-left","pull-right","spin","pulse","rotate-90","rotate-180","rotate-270","flip-horizontal","flip-vertical","flip-both","stack","stack-1x","stack-2x","inverse","layers","layers-text","layers-counter"].concat(T.map(function(t){return"".concat(t,"x")})).concat(R.map(function(t){return"w-".concat(t)})),F=g.FontAwesomeConfig||{};if(v&&"function"==typeof v.querySelector){[["data-family-prefix","familyPrefix"],["data-replacement-class","replacementClass"],["data-auto-replace-svg","autoReplaceSvg"],["data-auto-add-css","autoAddCss"],["data-auto-a11y","autoA11y"],["data-search-pseudo-elements","searchPseudoElements"],["data-observe-mutations","observeMutations"],["data-mutate-approach","mutateApproach"],["data-keep-original-source","keepOriginalSource"],["data-measure-performance","measurePerformance"],["data-show-missing-icons","showMissingIcons"]].forEach(function(t){var e,n=d(t,2),a=n[0],r=n[1],i=""===(e=function(t){var e=v.querySelector("script["+t+"]");if(e)return e.getAttribute(t)}(a))||"false"!==e&&("true"===e||e);null!=i&&(F[r]=i)})}var Y=B({},{familyPrefix:b,replacementClass:y,autoReplaceSvg:!0,autoAddCss:!0,autoA11y:!0,searchPseudoElements:!1,observeMutations:!0,mutateApproach:"async",keepOriginalSource:!0,measurePerformance:!1,showMissingIcons:!0},F);Y.autoReplaceSvg||(Y.observeMutations=!1);var V=B({},Y);g.FontAwesomeConfig=V;var D=g||{};D[p]||(D[p]={}),D[p].styles||(D[p].styles={}),D[p].hooks||(D[p].hooks={}),D[p].shims||(D[p].shims=[]);var q=D[p],W=[],X=!1;function K(t){h&&(X?setTimeout(t,0):W.push(t))}h&&((X=(v.documentElement.doScroll?/^loaded|^c/:/^loaded|^i|^c/).test(v.readyState))||v.addEventListener("DOMContentLoaded",function t(){v.removeEventListener("DOMContentLoaded",t),X=1,W.map(function(t){return t()})}));var G,J="pending",Q="settled",Z="fulfilled",$="rejected",tt=function(){},et="undefined"!=typeof global&&void 0!==global.process&&"function"==typeof global.process.emit,nt="undefined"==typeof setImmediate?setTimeout:setImmediate,at=[];function rt(){for(var t=0;t<at.length;t++)at[t][0](at[t][1]);G=!(at=[])}function it(t,e){at.push([t,e]),G||(G=!0,nt(rt,0))}function ot(t){var e=t.owner,n=e._state,a=e._data,r=t[n],i=t.then;if("function"==typeof r){n=Z;try{a=r(a)}catch(t){ft(i,t)}}ct(i,a)||(n===Z&&st(i,a),n===$&&ft(i,a))}function ct(e,n){var a;try{if(e===n)throw new TypeError("A promises callback cannot return that same promise.");if(n&&("function"==typeof n||"object"===r(n))){var t=n.then;if("function"==typeof t)return t.call(n,function(t){a||(a=!0,n===t?lt(e,t):st(e,t))},function(t){a||(a=!0,ft(e,t))}),!0}}catch(t){return a||ft(e,t),!0}return!1}function st(t,e){t!==e&&ct(t,e)||lt(t,e)}function lt(t,e){t._state===J&&(t._state=Q,t._data=e,it(dt,t))}function ft(t,e){t._state===J&&(t._state=Q,t._data=e,it(mt,t))}function ut(t){t._then=t._then.forEach(ot)}function dt(t){t._state=Z,ut(t)}function mt(t){t._state=$,ut(t),!t._handled&&et&&global.process.emit("unhandledRejection",t._data,t)}function ht(t){global.process.emit("rejectionHandled",t)}function pt(t){if("function"!=typeof t)throw new TypeError("Promise resolver "+t+" is not a function");if(this instanceof pt==!1)throw new TypeError("Failed to construct 'Promise': Please use the 'new' operator, this object constructor cannot be called as a function.");this._then=[],function(t,e){function n(t){ft(e,t)}try{t(function(t){st(e,t)},n)}catch(t){n(t)}}(t,this)}pt.prototype={constructor:pt,_state:J,_then:null,_data:void 0,_handled:!1,then:function(t,e){var n={owner:this,then:new this.constructor(tt),fulfilled:t,rejected:e};return!e&&!t||this._handled||(this._handled=!0,this._state===$&&et&&it(ht,this)),this._state===Z||this._state===$?it(ot,n):this._then.push(n),n.then},catch:function(t){return this.then(null,t)}},pt.all=function(c){if(!Array.isArray(c))throw new TypeError("You must pass an array to Promise.all().");return new pt(function(n,t){var a=[],r=0;function e(e){return r++,function(t){a[e]=t,--r||n(a)}}for(var i,o=0;o<c.length;o++)(i=c[o])&&"function"==typeof i.then?i.then(e(o),t):a[o]=i;r||n(a)})},pt.race=function(r){if(!Array.isArray(r))throw new TypeError("You must pass an array to Promise.race().");return new pt(function(t,e){for(var n,a=0;a<r.length;a++)(n=r[a])&&"function"==typeof n.then?n.then(t,e):t(n)})},pt.resolve=function(e){return e&&"object"===r(e)&&e.constructor===pt?e:new pt(function(t){t(e)})},pt.reject=function(n){return new pt(function(t,e){e(n)})};var gt="function"==typeof Promise?Promise:pt,vt=A,bt={size:16,x:0,y:0,rotate:0,flipX:!1,flipY:!1};function yt(t){if(t&&h){var e=v.createElement("style");e.setAttribute("type","text/css"),e.innerHTML=t;for(var n=v.head.childNodes,a=null,r=n.length-1;-1<r;r--){var i=n[r],o=(i.tagName||"").toUpperCase();-1<["STYLE","LINK"].indexOf(o)&&(a=i)}return v.head.insertBefore(e,a),t}}var wt="0123456789abcdefghijklmnopqrstuvwxyzABCDEFGHIJKLMNOPQRSTUVWXYZ";function xt(){for(var t=12,e="";0<t--;)e+=wt[62*Math.random()|0];return e}function kt(t){for(var e=[],n=(t||[]).length>>>0;n--;)e[n]=t[n];return e}function At(t){return t.classList?kt(t.classList):(t.getAttribute("class")||"").split(" ").filter(function(t){return t})}function Ct(t,e){var n,a=e.split("-"),r=a[0],i=a.slice(1).join("-");return r!==t||""===i||(n=i,~I.indexOf(n))?null:i}function Nt(t){return"".concat(t).replace(/&/g,"&amp;").replace(/"/g,"&quot;").replace(/'/g,"&#39;").replace(/</g,"&lt;").replace(/>/g,"&gt;")}function St(n){return Object.keys(n||{}).reduce(function(t,e){return t+"".concat(e,": ").concat(n[e],";")},"")}function zt(t){return t.size!==bt.size||t.x!==bt.x||t.y!==bt.y||t.rotate!==bt.rotate||t.flipX||t.flipY}function Mt(t){var e=t.transform,n=t.containerWidth,a=t.iconWidth,r={transform:"translate(".concat(n/2," 256)")},i="translate(".concat(32*e.x,", ").concat(32*e.y,") "),o="scale(".concat(e.size/16*(e.flipX?-1:1),", ").concat(e.size/16*(e.flipY?-1:1),") "),c="rotate(".concat(e.rotate," 0 0)");return{outer:r,inner:{transform:"".concat(i," ").concat(o," ").concat(c)},path:{transform:"translate(".concat(a/2*-1," -256)")}}}var Ot={x:0,y:0,width:"100%",height:"100%"};function Et(t){var e=t.icons,n=e.main,a=e.mask,r=t.prefix,i=t.iconName,o=t.transform,c=t.symbol,s=t.title,l=t.extra,f=t.watchable,u=void 0!==f&&f,d=a.found?a:n,m=d.width,h=d.height,p="fa-w-".concat(Math.ceil(m/h*16)),g=[V.replacementClass,i?"".concat(V.familyPrefix,"-").concat(i):"",p].filter(function(t){return-1===l.classes.indexOf(t)}).concat(l.classes).join(" "),v={children:[],attributes:B({},l.attributes,{"data-prefix":r,"data-icon":i,class:g,role:l.attributes.role||"img",xmlns:"http://www.w3.org/2000/svg",viewBox:"0 0 ".concat(m," ").concat(h)})};u&&(v.attributes[U]=""),s&&v.children.push({tag:"title",attributes:{id:v.attributes["aria-labelledby"]||"title-".concat(xt())},children:[s]});var b,y,w,x,k,A,C,N,S,z,M,O,E,j,P,L,_,T,R,H,I,F,Y,D=B({},v,{prefix:r,iconName:i,main:n,mask:a,transform:o,symbol:c,styles:l.styles}),q=a.found&&n.found?(y=(b=D).children,w=b.attributes,x=b.main,k=b.mask,A=b.transform,C=x.width,N=x.icon,S=k.width,z=k.icon,M=Mt({transform:A,containerWidth:S,iconWidth:C}),O={tag:"rect",attributes:B({},Ot,{fill:"white"})},E={tag:"g",attributes:B({},M.inner),children:[{tag:"path",attributes:B({},N.attributes,M.path,{fill:"black"})}]},j={tag:"g",attributes:B({},M.outer),children:[E]},P="mask-".concat(xt()),L="clip-".concat(xt()),_={tag:"defs",children:[{tag:"clipPath",attributes:{id:L},children:[z]},{tag:"mask",attributes:B({},Ot,{id:P,maskUnits:"userSpaceOnUse",maskContentUnits:"userSpaceOnUse"}),children:[O,j]}]},y.push(_,{tag:"rect",attributes:B({fill:"currentColor","clip-path":"url(#".concat(L,")"),mask:"url(#".concat(P,")")},Ot)}),{children:y,attributes:w}):function(t){var e=t.children,n=t.attributes,a=t.main,r=t.transform,i=St(t.styles);if(0<i.length&&(n.style=i),zt(r)){var o=Mt({transform:r,containerWidth:a.width,iconWidth:a.width});e.push({tag:"g",attributes:B({},o.outer),children:[{tag:"g",attributes:B({},o.inner),children:[{tag:a.icon.tag,children:a.icon.children,attributes:B({},a.icon.attributes,o.path)}]}]})}else e.push(a.icon);return{children:e,attributes:n}}(D),W=q.children,X=q.attributes;return D.children=W,D.attributes=X,c?(R=(T=D).prefix,H=T.iconName,I=T.children,F=T.attributes,Y=T.symbol,[{tag:"svg",attributes:{style:"display: none;"},children:[{tag:"symbol",attributes:B({},F,{id:!0===Y?"".concat(R,"-").concat(V.familyPrefix,"-").concat(H):Y}),children:I}]}]):function(t){var e=t.children,n=t.main,a=t.mask,r=t.attributes,i=t.styles,o=t.transform;if(zt(o)&&n.found&&!a.found){var c=n.width/n.height/2,s=.5;r.style=St(B({},i,{"transform-origin":"".concat(c+o.x/16,"em ").concat(s+o.y/16,"em")}))}return[{tag:"svg",attributes:r,children:e}]}(D)}function jt(t){var e=t.content,n=t.width,a=t.height,r=t.transform,i=t.title,o=t.extra,c=t.watchable,s=void 0!==c&&c,l=B({},o.attributes,i?{title:i}:{},{class:o.classes.join(" ")});s&&(l[U]="");var f,u,d,m,h,p,g,v,b,y=B({},o.styles);zt(r)&&(y.transform=(u=(f={transform:r,startCentered:!0,width:n,height:a}).transform,d=f.width,m=void 0===d?A:d,h=f.height,p=void 0===h?A:h,g=f.startCentered,b="",b+=(v=void 0!==g&&g)&&k?"translate(".concat(u.x/vt-m/2,"em, ").concat(u.y/vt-p/2,"em) "):v?"translate(calc(-50% + ".concat(u.x/vt,"em), calc(-50% + ").concat(u.y/vt,"em)) "):"translate(".concat(u.x/vt,"em, ").concat(u.y/vt,"em) "),b+="scale(".concat(u.size/vt*(u.flipX?-1:1),", ").concat(u.size/vt*(u.flipY?-1:1),") "),b+="rotate(".concat(u.rotate,"deg) ")),y["-webkit-transform"]=y.transform);var w=St(y);0<w.length&&(l.style=w);var x=[];return x.push({tag:"span",attributes:l,children:[e]}),i&&x.push({tag:"span",attributes:{class:"sr-only"},children:[i]}),x}var Pt=function(){},Lt=V.measurePerformance&&f&&f.mark&&f.measure?f:{mark:Pt,measure:Pt},_t='FA "5.8.2"',Tt=function(t){Lt.mark("".concat(_t," ").concat(t," ends")),Lt.measure("".concat(_t," ").concat(t),"".concat(_t," ").concat(t," begins"),"".concat(_t," ").concat(t," ends"))},Rt={begin:function(t){return Lt.mark("".concat(_t," ").concat(t," begins")),function(){return Tt(t)}},end:Tt},Ht=function(t,e,n,a){var r,i,o,c,s,l=Object.keys(t),f=l.length,u=void 0!==a?(c=e,s=a,function(t,e,n,a){return c.call(s,t,e,n,a)}):e;for(o=void 0===n?(r=1,t[l[0]]):(r=0,n);r<f;r++)o=u(o,t[i=l[r]],i,t);return o};function It(t){for(var e="",n=0;n<t.length;n++){e+=("000"+t.charCodeAt(n).toString(16)).slice(-4)}return e}var Ft=q.styles,Yt=q.shims,Dt={},qt={},Wt={},Xt=function(){var t=function(a){return Ht(Ft,function(t,e,n){return t[n]=Ht(e,a,{}),t},{})};Dt=t(function(t,e,n){return e[3]&&(t[e[3]]=n),t}),qt=t(function(e,t,n){var a=t[2];return e[n]=n,a.forEach(function(t){e[t]=n}),e});var i="far"in Ft;Wt=Ht(Yt,function(t,e){var n=e[0],a=e[1],r=e[2];return"far"!==a||i||(a="fas"),t[n]={prefix:a,iconName:r},t},{})};function Bt(t,e){return(Dt[t]||{})[e]}Xt();var Ut=q.styles,Vt=function(){return{prefix:null,iconName:null,rest:[]}};function Kt(t){return t.reduce(function(t,e){var n=Ct(V.familyPrefix,e);if(Ut[e])t.prefix=e;else if(V.autoFetchSvg&&-1<["fas","far","fal","fab","fa"].indexOf(e))t.prefix=e;else if(n){var a="fa"===t.prefix?Wt[n]||{prefix:null,iconName:null}:{};t.iconName=a.iconName||n,t.prefix=a.prefix||t.prefix}else e!==V.replacementClass&&0!==e.indexOf("fa-w-")&&t.rest.push(e);return t},Vt())}function Gt(t,e,n){if(t&&t[e]&&t[e][n])return{prefix:e,iconName:n,icon:t[e][n]}}function Jt(t){var n,e=t.tag,a=t.attributes,r=void 0===a?{}:a,i=t.children,o=void 0===i?[]:i;return"string"==typeof t?Nt(t):"<".concat(e," ").concat((n=r,Object.keys(n||{}).reduce(function(t,e){return t+"".concat(e,'="').concat(Nt(n[e]),'" ')},"").trim()),">").concat(o.map(Jt).join(""),"</").concat(e,">")}var Qt=function(){};function Zt(t){return"string"==typeof(t.getAttribute?t.getAttribute(U):null)}var $t={replace:function(t){var e=t[0],n=t[1].map(function(t){return Jt(t)}).join("\n");if(e.parentNode&&e.outerHTML)e.outerHTML=n+(V.keepOriginalSource&&"svg"!==e.tagName.toLowerCase()?"\x3c!-- ".concat(e.outerHTML," --\x3e"):"");else if(e.parentNode){var a=document.createElement("span");e.parentNode.replaceChild(a,e),a.outerHTML=n}},nest:function(t){var e=t[0],n=t[1];if(~At(e).indexOf(V.replacementClass))return $t.replace(t);var a=new RegExp("".concat(V.familyPrefix,"-.*"));delete n[0].attributes.style;var r=n[0].attributes.class.split(" ").reduce(function(t,e){return e===V.replacementClass||e.match(a)?t.toSvg.push(e):t.toNode.push(e),t},{toNode:[],toSvg:[]});n[0].attributes.class=r.toSvg.join(" ");var i=n.map(function(t){return Jt(t)}).join("\n");e.setAttribute("class",r.toNode.join(" ")),e.setAttribute(U,""),e.innerHTML=i}};function te(t){t()}function ee(n,t){var a="function"==typeof t?t:Qt;if(0===n.length)a();else{var e=te;V.mutateApproach===z&&(e=g.requestAnimationFrame||te),e(function(){var t=!0===V.autoReplaceSvg?$t.replace:$t[V.autoReplaceSvg]||$t.replace,e=Rt.begin("mutate");n.map(t),e(),a()})}}var ne=!1;function ae(){ne=!1}var re=null;function ie(t){if(l&&V.observeMutations){var r=t.treeCallback,i=t.nodeCallback,o=t.pseudoElementsCallback,e=t.observeMutationsRoot,n=void 0===e?v:e;re=new l(function(t){ne||kt(t).forEach(function(t){if("childList"===t.type&&0<t.addedNodes.length&&!Zt(t.addedNodes[0])&&(V.searchPseudoElements&&o(t.target),r(t.target)),"attributes"===t.type&&t.target.parentNode&&V.searchPseudoElements&&o(t.target.parentNode),"attributes"===t.type&&Zt(t.target)&&~H.indexOf(t.attributeName))if("class"===t.attributeName){var e=Kt(At(t.target)),n=e.prefix,a=e.iconName;n&&t.target.setAttribute("data-prefix",n),a&&t.target.setAttribute("data-icon",a)}else i(t.target)})}),h&&re.observe(n,{childList:!0,attributes:!0,characterData:!0,subtree:!0})}}function oe(t){var e,n,a=t.getAttribute("data-prefix"),r=t.getAttribute("data-icon"),i=void 0!==t.innerText?t.innerText.trim():"",o=Kt(At(t));return a&&r&&(o.prefix=a,o.iconName=r),o.prefix&&1<i.length?o.iconName=(e=o.prefix,n=t.innerText,(qt[e]||{})[n]):o.prefix&&1===i.length&&(o.iconName=Bt(o.prefix,It(t.innerText))),o}var ce=function(t){var e={size:16,x:0,y:0,flipX:!1,flipY:!1,rotate:0};return t?t.toLowerCase().split(" ").reduce(function(t,e){var n=e.toLowerCase().split("-"),a=n[0],r=n.slice(1).join("-");if(a&&"h"===r)return t.flipX=!0,t;if(a&&"v"===r)return t.flipY=!0,t;if(r=parseFloat(r),isNaN(r))return t;switch(a){case"grow":t.size=t.size+r;break;case"shrink":t.size=t.size-r;break;case"left":t.x=t.x-r;break;case"right":t.x=t.x+r;break;case"up":t.y=t.y-r;break;case"down":t.y=t.y+r;break;case"rotate":t.rotate=t.rotate+r}return t},e):e};function se(t){var e,n,a,r,i,o,c,s=oe(t),l=s.iconName,f=s.prefix,u=s.rest,d=(e=t.getAttribute("style"),n=[],e&&(n=e.split(";").reduce(function(t,e){var n=e.split(":"),a=n[0],r=n.slice(1);return a&&0<r.length&&(t[a]=r.join(":").trim()),t},{})),n),m=ce(t.getAttribute("data-fa-transform")),h=null!==(a=t.getAttribute("data-fa-symbol"))&&(""===a||a),p=(i=kt((r=t).attributes).reduce(function(t,e){return"class"!==t.name&&"style"!==t.name&&(t[e.name]=e.value),t},{}),o=r.getAttribute("title"),V.autoA11y&&(o?i["aria-labelledby"]="".concat(V.replacementClass,"-title-").concat(xt()):(i["aria-hidden"]="true",i.focusable="false")),i),g=(c=t.getAttribute("data-fa-mask"))?Kt(c.split(" ").map(function(t){return t.trim()})):Vt();return{iconName:l,title:t.getAttribute("title"),prefix:f,transform:m,symbol:h,mask:g,extra:{classes:u,styles:d,attributes:p}}}function le(t){this.name="MissingIcon",this.message=t||"Icon unavailable",this.stack=(new Error).stack}(le.prototype=Object.create(Error.prototype)).constructor=le;var fe={fill:"currentColor"},ue={attributeType:"XML",repeatCount:"indefinite",dur:"2s"},de={tag:"path",attributes:B({},fe,{d:"M156.5,447.7l-12.6,29.5c-18.7-9.5-35.9-21.2-51.5-34.9l22.7-22.7C127.6,430.5,141.5,440,156.5,447.7z M40.6,272H8.5 c1.4,21.2,5.4,41.7,11.7,61.1L50,321.2C45.1,305.5,41.8,289,40.6,272z M40.6,240c1.4-18.8,5.2-37,11.1-54.1l-29.5-12.6 C14.7,194.3,10,216.7,8.5,240H40.6z M64.3,156.5c7.8-14.9,17.2-28.8,28.1-41.5L69.7,92.3c-13.7,15.6-25.5,32.8-34.9,51.5 L64.3,156.5z M397,419.6c-13.9,12-29.4,22.3-46.1,30.4l11.9,29.8c20.7-9.9,39.8-22.6,56.9-37.6L397,419.6z M115,92.4 c13.9-12,29.4-22.3,46.1-30.4l-11.9-29.8c-20.7,9.9-39.8,22.6-56.8,37.6L115,92.4z M447.7,355.5c-7.8,14.9-17.2,28.8-28.1,41.5 l22.7,22.7c13.7-15.6,25.5-32.9,34.9-51.5L447.7,355.5z M471.4,272c-1.4,18.8-5.2,37-11.1,54.1l29.5,12.6 c7.5-21.1,12.2-43.5,13.6-66.8H471.4z M321.2,462c-15.7,5-32.2,8.2-49.2,9.4v32.1c21.2-1.4,41.7-5.4,61.1-11.7L321.2,462z M240,471.4c-18.8-1.4-37-5.2-54.1-11.1l-12.6,29.5c21.1,7.5,43.5,12.2,66.8,13.6V471.4z M462,190.8c5,15.7,8.2,32.2,9.4,49.2h32.1 c-1.4-21.2-5.4-41.7-11.7-61.1L462,190.8z M92.4,397c-12-13.9-22.3-29.4-30.4-46.1l-29.8,11.9c9.9,20.7,22.6,39.8,37.6,56.9 L92.4,397z M272,40.6c18.8,1.4,36.9,5.2,54.1,11.1l12.6-29.5C317.7,14.7,295.3,10,272,8.5V40.6z M190.8,50 c15.7-5,32.2-8.2,49.2-9.4V8.5c-21.2,1.4-41.7,5.4-61.1,11.7L190.8,50z M442.3,92.3L419.6,115c12,13.9,22.3,29.4,30.5,46.1 l29.8-11.9C470,128.5,457.3,109.4,442.3,92.3z M397,92.4l22.7-22.7c-15.6-13.7-32.8-25.5-51.5-34.9l-12.6,29.5 C370.4,72.1,384.4,81.5,397,92.4z"})},me=B({},ue,{attributeName:"opacity"}),he={tag:"g",children:[de,{tag:"circle",attributes:B({},fe,{cx:"256",cy:"364",r:"28"}),children:[{tag:"animate",attributes:B({},ue,{attributeName:"r",values:"28;14;28;28;14;28;"})},{tag:"animate",attributes:B({},me,{values:"1;0;1;1;0;1;"})}]},{tag:"path",attributes:B({},fe,{opacity:"1",d:"M263.7,312h-16c-6.6,0-12-5.4-12-12c0-71,77.4-63.9,77.4-107.8c0-20-17.8-40.2-57.4-40.2c-29.1,0-44.3,9.6-59.2,28.7 c-3.9,5-11.1,6-16.2,2.4l-13.1-9.2c-5.6-3.9-6.9-11.8-2.6-17.2c21.2-27.2,46.4-44.7,91.2-44.7c52.3,0,97.4,29.8,97.4,80.2 c0,67.6-77.4,63.5-77.4,107.8C275.7,306.6,270.3,312,263.7,312z"}),children:[{tag:"animate",attributes:B({},me,{values:"1;0;0;0;0;1;"})}]},{tag:"path",attributes:B({},fe,{opacity:"0",d:"M232.5,134.5l7,168c0.3,6.4,5.6,11.5,12,11.5h9c6.4,0,11.7-5.1,12-11.5l7-168c0.3-6.8-5.2-12.5-12-12.5h-23 C237.7,122,232.2,127.7,232.5,134.5z"}),children:[{tag:"animate",attributes:B({},me,{values:"0;0;1;1;0;0;"})}]}]},pe=q.styles;function ge(r,i){return new gt(function(t,e){var n={found:!1,width:512,height:512,icon:he};if(r&&i&&pe[i]&&pe[i][r]){var a=pe[i][r];return t(n={found:!0,width:a[0],height:a[1],icon:{tag:"path",attributes:{fill:"currentColor",d:a.slice(4)[0]}}})}r&&i&&!V.showMissingIcons?e(new le("Icon is missing for prefix ".concat(i," with icon name ").concat(r))):t(n)})}var ve=q.styles;function be(t){var i,e,o,c,s,l,f,n,u,a=se(t);return~a.extra.classes.indexOf(P)?function(t,e){var n=e.title,a=e.transform,r=e.extra,i=null,o=null;if(k){var c=parseInt(getComputedStyle(t).fontSize,10),s=t.getBoundingClientRect();i=s.width/c,o=s.height/c}return V.autoA11y&&!n&&(r.attributes["aria-hidden"]="true"),gt.resolve([t,jt({content:t.innerHTML,width:i,height:o,transform:a,title:n,extra:r,watchable:!0})])}(t,a):(i=t,o=(e=a).iconName,c=e.title,s=e.prefix,l=e.transform,f=e.symbol,n=e.mask,u=e.extra,new gt(function(r,t){gt.all([ge(o,s),ge(n.iconName,n.prefix)]).then(function(t){var e=d(t,2),n=e[0],a=e[1];r([i,Et({icons:{main:n,mask:a},prefix:s,iconName:o,transform:l,symbol:f,mask:a,title:c,extra:u,watchable:!0})])})}))}function ye(t){var n=1<arguments.length&&void 0!==arguments[1]?arguments[1]:null;if(h){var e=v.documentElement.classList,a=function(t){return e.add("".concat(S,"-").concat(t))},r=function(t){return e.remove("".concat(S,"-").concat(t))},i=V.autoFetchSvg?Object.keys(E):Object.keys(ve),o=[".".concat(P,":not([").concat(U,"])")].concat(i.map(function(t){return".".concat(t,":not([").concat(U,"])")})).join(", ");if(0!==o.length){var c=[];try{c=kt(t.querySelectorAll(o))}catch(t){}if(0<c.length){a("pending"),r("complete");var s=Rt.begin("onTree"),l=c.reduce(function(t,e){try{var n=be(e);n&&t.push(n)}catch(t){O||t instanceof le&&console.error(t)}return t},[]);return new gt(function(e,t){gt.all(l).then(function(t){ee(t,function(){a("active"),a("complete"),r("pending"),"function"==typeof n&&n(),s(),e()})}).catch(function(){s(),t()})})}}}}function we(t){var e=1<arguments.length&&void 0!==arguments[1]?arguments[1]:null;be(t).then(function(t){t&&ee([t],e)})}function xe(m,h){var p="".concat(x).concat(h.replace(":","-"));return new gt(function(a,t){if(null!==m.getAttribute(p))return a();var e=kt(m.children).filter(function(t){return t.getAttribute(w)===h})[0],n=g.getComputedStyle(m,h),r=n.getPropertyValue("font-family").match(L),i=n.getPropertyValue("font-weight");if(e&&!r)return m.removeChild(e),a();if(r){var o=n.getPropertyValue("content"),c=~["Light","Regular","Solid","Brands"].indexOf(r[1])?j[r[1].toLowerCase()]:_[i],s=It(3===o.length?o.substr(1,1):o),l=Bt(c,s),f=l;if(!l||e&&e.getAttribute(C)===c&&e.getAttribute(N)===f)a();else{m.setAttribute(p,f),e&&m.removeChild(e);var u={iconName:null,title:null,prefix:null,transform:bt,symbol:!1,mask:null,extra:{classes:[],styles:{},attributes:{}}},d=u.extra;d.attributes[w]=h,ge(l,c).then(function(t){var e=Et(B({},u,{icons:{main:t,mask:Vt()},prefix:c,iconName:f,extra:d,watchable:!0})),n=v.createElement("svg");":before"===h?m.insertBefore(n,m.firstChild):m.appendChild(n),n.outerHTML=e.map(function(t){return Jt(t)}).join("\n"),m.removeAttribute(p),a()}).catch(t)}}else a()})}function ke(t){return gt.all([xe(t,":before"),xe(t,":after")])}function Ae(t){return!(t.parentNode===document.head||~M.indexOf(t.tagName.toUpperCase())||t.getAttribute(w)||t.parentNode&&"svg"===t.parentNode.tagName)}function Ce(r){if(h)return new gt(function(t,e){var n=kt(r.querySelectorAll("*")).filter(Ae).map(ke),a=Rt.begin("searchPseudoElements");ne=!0,gt.all(n).then(function(){a(),ae(),t()}).catch(function(){a(),ae(),e()})})}var Ne="svg:not(:root).svg-inline--fa{overflow:visible}.svg-inline--fa{display:inline-block;font-size:inherit;height:1em;overflow:visible;vertical-align:-.125em}.svg-inline--fa.fa-lg{vertical-align:-.225em}.svg-inline--fa.fa-w-1{width:.0625em}.svg-inline--fa.fa-w-2{width:.125em}.svg-inline--fa.fa-w-3{width:.1875em}.svg-inline--fa.fa-w-4{width:.25em}.svg-inline--fa.fa-w-5{width:.3125em}.svg-inline--fa.fa-w-6{width:.375em}.svg-inline--fa.fa-w-7{width:.4375em}.svg-inline--fa.fa-w-8{width:.5em}.svg-inline--fa.fa-w-9{width:.5625em}.svg-inline--fa.fa-w-10{width:.625em}.svg-inline--fa.fa-w-11{width:.6875em}.svg-inline--fa.fa-w-12{width:.75em}.svg-inline--fa.fa-w-13{width:.8125em}.svg-inline--fa.fa-w-14{width:.875em}.svg-inline--fa.fa-w-15{width:.9375em}.svg-inline--fa.fa-w-16{width:1em}.svg-inline--fa.fa-w-17{width:1.0625em}.svg-inline--fa.fa-w-18{width:1.125em}.svg-inline--fa.fa-w-19{width:1.1875em}.svg-inline--fa.fa-w-20{width:1.25em}.svg-inline--fa.fa-pull-left{margin-right:.3em;width:auto}.svg-inline--fa.fa-pull-right{margin-left:.3em;width:auto}.svg-inline--fa.fa-border{height:1.5em}.svg-inline--fa.fa-li{width:2em}.svg-inline--fa.fa-fw{width:1.25em}.fa-layers svg.svg-inline--fa{bottom:0;left:0;margin:auto;position:absolute;right:0;top:0}.fa-layers{display:inline-block;height:1em;position:relative;text-align:center;vertical-align:-.125em;width:1em}.fa-layers svg.svg-inline--fa{-webkit-transform-origin:center center;transform-origin:center center}.fa-layers-counter,.fa-layers-text{display:inline-block;position:absolute;text-align:center}.fa-layers-text{left:50%;top:50%;-webkit-transform:translate(-50%,-50%);transform:translate(-50%,-50%);-webkit-transform-origin:center center;transform-origin:center center}.fa-layers-counter{background-color:#ff253a;border-radius:1em;-webkit-box-sizing:border-box;box-sizing:border-box;color:#fff;height:1.5em;line-height:1;max-width:5em;min-width:1.5em;overflow:hidden;padding:.25em;right:0;text-overflow:ellipsis;top:0;-webkit-transform:scale(.25);transform:scale(.25);-webkit-transform-origin:top right;transform-origin:top right}.fa-layers-bottom-right{bottom:0;right:0;top:auto;-webkit-transform:scale(.25);transform:scale(.25);-webkit-transform-origin:bottom right;transform-origin:bottom right}.fa-layers-bottom-left{bottom:0;left:0;right:auto;top:auto;-webkit-transform:scale(.25);transform:scale(.25);-webkit-transform-origin:bottom left;transform-origin:bottom left}.fa-layers-top-right{right:0;top:0;-webkit-transform:scale(.25);transform:scale(.25);-webkit-transform-origin:top right;transform-origin:top right}.fa-layers-top-left{left:0;right:auto;top:0;-webkit-transform:scale(.25);transform:scale(.25);-webkit-transform-origin:top left;transform-origin:top left}.fa-lg{font-size:1.3333333333em;line-height:.75em;vertical-align:-.0667em}.fa-xs{font-size:.75em}.fa-sm{font-size:.875em}.fa-1x{font-size:1em}.fa-2x{font-size:2em}.fa-3x{font-size:3em}.fa-4x{font-size:4em}.fa-5x{font-size:5em}.fa-6x{font-size:6em}.fa-7x{font-size:7em}.fa-8x{font-size:8em}.fa-9x{font-size:9em}.fa-10x{font-size:10em}.fa-fw{text-align:center;width:1.25em}.fa-ul{list-style-type:none;margin-left:2.5em;padding-left:0}.fa-ul>li{position:relative}.fa-li{left:-2em;position:absolute;text-align:center;width:2em;line-height:inherit}.fa-border{border:solid .08em #eee;border-radius:.1em;padding:.2em .25em .15em}.fa-pull-left{float:left}.fa-pull-right{float:right}.fa.fa-pull-left,.fab.fa-pull-left,.fal.fa-pull-left,.far.fa-pull-left,.fas.fa-pull-left{margin-right:.3em}.fa.fa-pull-right,.fab.fa-pull-right,.fal.fa-pull-right,.far.fa-pull-right,.fas.fa-pull-right{margin-left:.3em}.fa-spin{-webkit-animation:fa-spin 2s infinite linear;animation:fa-spin 2s infinite linear}.fa-pulse{-webkit-animation:fa-spin 1s infinite steps(8);animation:fa-spin 1s infinite steps(8)}@-webkit-keyframes fa-spin{0%{-webkit-transform:rotate(0);transform:rotate(0)}100%{-webkit-transform:rotate(360deg);transform:rotate(360deg)}}@keyframes fa-spin{0%{-webkit-transform:rotate(0);transform:rotate(0)}100%{-webkit-transform:rotate(360deg);transform:rotate(360deg)}}.fa-rotate-90{-webkit-transform:rotate(90deg);transform:rotate(90deg)}.fa-rotate-180{-webkit-transform:rotate(180deg);transform:rotate(180deg)}.fa-rotate-270{-webkit-transform:rotate(270deg);transform:rotate(270deg)}.fa-flip-horizontal{-webkit-transform:scale(-1,1);transform:scale(-1,1)}.fa-flip-vertical{-webkit-transform:scale(1,-1);transform:scale(1,-1)}.fa-flip-both,.fa-flip-horizontal.fa-flip-vertical{-webkit-transform:scale(-1,-1);transform:scale(-1,-1)}:root .fa-flip-both,:root .fa-flip-horizontal,:root .fa-flip-vertical,:root .fa-rotate-180,:root .fa-rotate-270,:root .fa-rotate-90{-webkit-filter:none;filter:none}.fa-stack{display:inline-block;height:2em;position:relative;width:2.5em}.fa-stack-1x,.fa-stack-2x{bottom:0;left:0;margin:auto;position:absolute;right:0;top:0}.svg-inline--fa.fa-stack-1x{height:1em;width:1.25em}.svg-inline--fa.fa-stack-2x{height:2em;width:2.5em}.fa-inverse{color:#fff}.sr-only{border:0;clip:rect(0,0,0,0);height:1px;margin:-1px;overflow:hidden;padding:0;position:absolute;width:1px}.sr-only-focusable:active,.sr-only-focusable:focus{clip:auto;height:auto;margin:0;overflow:visible;position:static;width:auto}";function Se(){var t=b,e=y,n=V.familyPrefix,a=V.replacementClass,r=Ne;if(n!==t||a!==e){var i=new RegExp("\\.".concat(t,"\\-"),"g"),o=new RegExp("\\.".concat(e),"g");r=r.replace(i,".".concat(n,"-")).replace(o,".".concat(a))}return r}function ze(t){return{found:!0,width:t[0],height:t[1],icon:{tag:"path",attributes:{fill:"currentColor",d:t.slice(4)[0]}}}}function Me(){V.autoAddCss&&!Le&&(yt(Se()),Le=!0)}function Oe(e,t){return Object.defineProperty(e,"abstract",{get:t}),Object.defineProperty(e,"html",{get:function(){return e.abstract.map(function(t){return Jt(t)})}}),Object.defineProperty(e,"node",{get:function(){if(h){var t=v.createElement("div");return t.innerHTML=e.html,t.children}}}),e}function Ee(t){var e=t.prefix,n=void 0===e?"fa":e,a=t.iconName;if(a)return Gt(Pe.definitions,n,a)||Gt(q.styles,n,a)}var je,Pe=new(function(){function t(){!function(t,e){if(!(t instanceof e))throw new TypeError("Cannot call a class as a function")}(this,t),this.definitions={}}var e,n,a;return e=t,(n=[{key:"add",value:function(){for(var e=this,t=arguments.length,n=new Array(t),a=0;a<t;a++)n[a]=arguments[a];var r=n.reduce(this._pullDefinitions,{});Object.keys(r).forEach(function(t){e.definitions[t]=B({},e.definitions[t]||{},r[t]),function t(e,a){var n=(2<arguments.length&&void 0!==arguments[2]?arguments[2]:{}).skipHooks,r=void 0!==n&&n,i=Object.keys(a).reduce(function(t,e){var n=a[e];return n.icon?t[n.iconName]=n.icon:t[e]=n,t},{});"function"!=typeof q.hooks.addPack||r?q.styles[e]=B({},q.styles[e]||{},i):q.hooks.addPack(e,i),"fas"===e&&t("fa",a)}(t,r[t]),Xt()})}},{key:"reset",value:function(){this.definitions={}}},{key:"_pullDefinitions",value:function(i,t){var o=t.prefix&&t.iconName&&t.icon?{0:t}:t;return Object.keys(o).map(function(t){var e=o[t],n=e.prefix,a=e.iconName,r=e.icon;i[n]||(i[n]={}),i[n][a]=r}),i}}])&&i(e.prototype,n),a&&i(e,a),t}()),Le=!1,_e={i2svg:function(){var t=0<arguments.length&&void 0!==arguments[0]?arguments[0]:{};if(h){Me();var e=t.node,n=void 0===e?v:e,a=t.callback,r=void 0===a?function(){}:a;return V.searchPseudoElements&&Ce(n),ye(n,r)}return gt.reject("Operation requires a DOM of some kind.")},css:Se,insertCss:function(){Le||(yt(Se()),Le=!0)},watch:function(){var t=0<arguments.length&&void 0!==arguments[0]?arguments[0]:{},e=t.autoReplaceSvgRoot,n=t.observeMutationsRoot;!1===V.autoReplaceSvg&&(V.autoReplaceSvg=!0),V.observeMutations=!0,K(function(){He({autoReplaceSvgRoot:e}),ie({treeCallback:ye,nodeCallback:we,pseudoElementsCallback:Ce,observeMutationsRoot:n})})}},Te=(je=function(t){var e=1<arguments.length&&void 0!==arguments[1]?arguments[1]:{},n=e.transform,a=void 0===n?bt:n,r=e.symbol,i=void 0!==r&&r,o=e.mask,c=void 0===o?null:o,s=e.title,l=void 0===s?null:s,f=e.classes,u=void 0===f?[]:f,d=e.attributes,m=void 0===d?{}:d,h=e.styles,p=void 0===h?{}:h;if(t){var g=t.prefix,v=t.iconName,b=t.icon;return Oe(B({type:"icon"},t),function(){return Me(),V.autoA11y&&(l?m["aria-labelledby"]="".concat(V.replacementClass,"-title-").concat(xt()):(m["aria-hidden"]="true",m.focusable="false")),Et({icons:{main:ze(b),mask:c?ze(c.icon):{found:!1,width:null,height:null,icon:{}}},prefix:g,iconName:v,transform:B({},bt,a),symbol:i,title:l,extra:{attributes:m,styles:p,classes:u}})})}},function(t){var e=1<arguments.length&&void 0!==arguments[1]?arguments[1]:{},n=(t||{}).icon?t:Ee(t||{}),a=e.mask;return a&&(a=(a||{}).icon?a:Ee(a||{})),je(n,B({},e,{mask:a}))}),Re={noAuto:function(){V.autoReplaceSvg=!1,V.observeMutations=!1,re&&re.disconnect()},config:V,dom:_e,library:Pe,parse:{transform:function(t){return ce(t)}},findIconDefinition:Ee,icon:Te,text:function(t){var e=1<arguments.length&&void 0!==arguments[1]?arguments[1]:{},n=e.transform,a=void 0===n?bt:n,r=e.title,i=void 0===r?null:r,o=e.classes,c=void 0===o?[]:o,s=e.attributes,l=void 0===s?{}:s,f=e.styles,u=void 0===f?{}:f;return Oe({type:"text",content:t},function(){return Me(),jt({content:t,transform:B({},bt,a),title:i,extra:{attributes:l,styles:u,classes:["".concat(V.familyPrefix,"-layers-text")].concat(m(c))}})})},counter:function(t){var e=1<arguments.length&&void 0!==arguments[1]?arguments[1]:{},n=e.title,a=void 0===n?null:n,r=e.classes,i=void 0===r?[]:r,o=e.attributes,c=void 0===o?{}:o,s=e.styles,l=void 0===s?{}:s;return Oe({type:"counter",content:t},function(){return Me(),function(t){var e=t.content,n=t.title,a=t.extra,r=B({},a.attributes,n?{title:n}:{},{class:a.classes.join(" ")}),i=St(a.styles);0<i.length&&(r.style=i);var o=[];return o.push({tag:"span",attributes:r,children:[e]}),n&&o.push({tag:"span",attributes:{class:"sr-only"},children:[n]}),o}({content:t.toString(),title:a,extra:{attributes:c,styles:l,classes:["".concat(V.familyPrefix,"-layers-counter")].concat(m(i))}})})},layer:function(t){return Oe({type:"layer"},function(){Me();var e=[];return t(function(t){Array.isArray(t)?t.map(function(t){e=e.concat(t.abstract)}):e=e.concat(t.abstract)}),[{tag:"span",attributes:{class:"".concat(V.familyPrefix,"-layers")},children:e}]})},toHtml:Jt},He=function(){var t=(0<arguments.length&&void 0!==arguments[0]?arguments[0]:{}).autoReplaceSvgRoot,e=void 0===t?v:t;(0<Object.keys(q.styles).length||V.autoFetchSvg)&&h&&V.autoReplaceSvg&&Re.dom.i2svg({node:e})};!function(t){try{t()}catch(t){if(!O)throw t}}(function(){u&&(g.FontAwesome||(g.FontAwesome=Re),K(function(){He(),ie({treeCallback:ye,nodeCallback:we,pseudoElementsCallback:Ce})})),q.hooks=B({},q.hooks,{addPack:function(t,e){q.styles[t]=B({},q.styles[t]||{},e),Xt(),He()},addShims:function(t){var e;(e=q.shims).push.apply(e,m(t)),Xt(),He()}})})}();
\ No newline at end of file
diff --git a/oxAuth/Server/src/main/webapp/js/gluu-auth.js b/oxAuth/Server/src/main/webapp/js/gluu-auth.js
new file mode 100644
index 00000000..2db773db
--- /dev/null
+++ b/oxAuth/Server/src/main/webapp/js/gluu-auth.js
@@ -0,0 +1,201 @@
+// oxAuth is available under the MIT License (2008). See http://opensource.org/licenses/MIT for full text.
+//
+// Copyright (c) 2015, Gluu
+
+'use strict';
+
+/** Gluu Authentiocation API.
+ */
+var gluu_auth = {
+
+	//--------------------------------------------------------------------------------
+	// Utility methods
+	//--------------------------------------------------------------------------------
+	cloneObject: function(obj) {
+		var clone = {};
+		for (var i in obj) {
+			if ((typeof (obj[i]) == "object") && (obj[i] != null)) {
+				clone[i] = this.cloneObject(obj[i]);
+			} else {
+				clone[i] = obj[i];
+			}
+		}
+	
+		return clone;
+	},
+
+	updateObject: function(obj, updObj) {
+		for (var i in updObj) {
+			obj[i] = updObj[i];
+		}
+	
+		return obj;
+	},
+
+	//--------------------------------------------------------------------------------
+	// QR code
+	//--------------------------------------------------------------------------------
+	QR_CODE_DEFAULT_OPTIONS: {
+		// render method: 'canvas', 'image' or 'div'
+		render : 'canvas',
+	
+		// version range somewhere in 1 . 40
+		minVersion : 1,
+		maxVersion : 40,
+	
+		// error correction level: 'L', 'M', 'Q' or 'H'
+		ecLevel : 'M',
+	
+		// offset in pixel if drawn onto existing canvas
+		left : 0,
+		top : 0,
+	
+		// size in pixel
+		size : 400,
+	
+		// code color or image element
+		fill : '#000',
+	
+		// background color or image element, null for transparent background
+		background : null,
+	
+		// content
+	    text: '',
+	
+		// corner radius relative to module width: 0.0 . 0.5
+		radius : 0.3,
+	
+		// quiet zone in modules
+		quiet : 1,
+	
+		// modes
+		// 0: normal
+		// 1: label strip
+		// 2: label box
+		// 3: image strip
+		// 4: image box
+		mode : 2,
+	
+		mSize : 0.1,
+		mPosX : 0.5,
+		mPosY : 0.5,
+	
+		label : 'Gluu Auth',
+		fontname : 'sans',
+		fontcolor : '#000',
+	
+		image : null
+	},
+	
+	getQrCodeOptions:  function(request, custom_qr_options, label) {
+		var options = this.cloneObject(this.QR_CODE_DEFAULT_OPTIONS);
+		var options = this.updateObject(options, custom_qr_options);
+
+		options.text = request;
+		
+		if ((typeof label !== 'undefined') && (label != null) && (label != '')) {
+			options.label = label
+		}
+		
+		return options;
+	},
+	
+	renderQrCode: function(container, request, custom_qr_options, label) {
+	    var options = this.getQrCodeOptions(request, custom_qr_options, label);
+	    $(container).qrcode(options);
+	},
+
+	//--------------------------------------------------------------------------------
+	// Progress bar
+	//--------------------------------------------------------------------------------
+	progress: {
+		value: 0,
+		maxValue: 4*60,
+		container: null,
+		timer: null
+	},
+	
+	startProgressBar: function(container, timeout, callback) {
+		this.progress.value = 0;
+		this.progress.maxValue = 4 * timeout;
+		this.progress.container = $(container);
+	
+		this.progress.container.progressbar({
+			value : gluu_auth.progress.value,
+			max : gluu_auth.progress.maxValue
+		});
+
+		function worker() {
+			gluu_auth.progress.container.progressbar({
+				value : ++gluu_auth.progress.value
+			});
+		
+			if (gluu_auth.progress.value >= gluu_auth.progress.maxValue) {
+				clearInterval(gluu_auth.progress.timer);
+				gluu_auth.progress.timer = null;
+				gluu_auth.progress.container = null;
+				
+				if (callback !== undefined) {
+					callback.call(this, "timeout");
+				}
+			}
+		};
+
+		this.progress.timer = setInterval(worker, 1000 / 4);
+	},
+
+	//--------------------------------------------------------------------------------
+	// Session status checker
+	//--------------------------------------------------------------------------------
+	checker: {
+		stop: false,
+		endTime: null,
+		poolInterval: 5 * 1000,
+		timeout: 10 * 1000
+	},
+
+	startSessionChecker : function(callback, timeout) {
+		gluu_auth.checker.stop = false;
+		gluu_auth.endTime = (new Date()).getTime() + timeout * 1000;
+
+		(function worker() {
+			$.ajax({
+				url: '/oxauth/restv1/session_status',
+				cache: false,
+				timeout: gluu_auth.checker.timeout,
+				success: function(result, status, xhr) {
+					if ((result.state == 'unknown') || ((result.state == 'unauthenticated') && ((result.custom_state == 'declined') || (result.custom_state == 'expired')))) {
+						callCallback(callback, 'error');
+					} else if ((result.state == 'authenticated') || ((result.state == 'unauthenticated') && (result.custom_state == 'approved'))) {
+						callCallback(callback, 'success');
+					}
+				},
+				error: function(xhr, status, error) {
+					if(status == 'timeout')
+					{
+						callCallback(callback, 'timeout');
+					}
+					else
+					{
+						// Stop status checker on error
+						callCallback(callback, 'error');
+					}
+				},
+				complete: function(xhr, status) {
+					if (gluu_auth.endTime < (new Date()).getTime()) {
+						callCallback(callback, 'timeout');
+					}
+					// Schedule the next request when the current one's complete
+					if (!gluu_auth.checker.stop) {
+						setTimeout(worker, gluu_auth.checker.poolInterval);
+					}
+				}
+			});
+		})();
+		
+		function callCallback(callback, status) {
+			gluu_auth.checker.stop = true
+			callback.call(this, status);
+		};
+	},
+};
diff --git a/oxAuth/Server/src/main/webapp/js/jquery-3.6.0.min.js b/oxAuth/Server/src/main/webapp/js/jquery-3.6.0.min.js
new file mode 100644
index 00000000..c4c6022f
--- /dev/null
+++ b/oxAuth/Server/src/main/webapp/js/jquery-3.6.0.min.js
@@ -0,0 +1,2 @@
+/*! jQuery v3.6.0 | (c) OpenJS Foundation and other contributors | jquery.org/license */
+!function(e,t){"use strict";"object"==typeof module&&"object"==typeof module.exports?module.exports=e.document?t(e,!0):function(e){if(!e.document)throw new Error("jQuery requires a window with a document");return t(e)}:t(e)}("undefined"!=typeof window?window:this,function(C,e){"use strict";var t=[],r=Object.getPrototypeOf,s=t.slice,g=t.flat?function(e){return t.flat.call(e)}:function(e){return t.concat.apply([],e)},u=t.push,i=t.indexOf,n={},o=n.toString,v=n.hasOwnProperty,a=v.toString,l=a.call(Object),y={},m=function(e){return"function"==typeof e&&"number"!=typeof e.nodeType&&"function"!=typeof e.item},x=function(e){return null!=e&&e===e.window},E=C.document,c={type:!0,src:!0,nonce:!0,noModule:!0};function b(e,t,n){var r,i,o=(n=n||E).createElement("script");if(o.text=e,t)for(r in c)(i=t[r]||t.getAttribute&&t.getAttribute(r))&&o.setAttribute(r,i);n.head.appendChild(o).parentNode.removeChild(o)}function w(e){return null==e?e+"":"object"==typeof e||"function"==typeof e?n[o.call(e)]||"object":typeof e}var f="3.6.0",S=function(e,t){return new S.fn.init(e,t)};function p(e){var t=!!e&&"length"in e&&e.length,n=w(e);return!m(e)&&!x(e)&&("array"===n||0===t||"number"==typeof t&&0<t&&t-1 in e)}S.fn=S.prototype={jquery:f,constructor:S,length:0,toArray:function(){return s.call(this)},get:function(e){return null==e?s.call(this):e<0?this[e+this.length]:this[e]},pushStack:function(e){var t=S.merge(this.constructor(),e);return t.prevObject=this,t},each:function(e){return S.each(this,e)},map:function(n){return this.pushStack(S.map(this,function(e,t){return n.call(e,t,e)}))},slice:function(){return this.pushStack(s.apply(this,arguments))},first:function(){return this.eq(0)},last:function(){return this.eq(-1)},even:function(){return this.pushStack(S.grep(this,function(e,t){return(t+1)%2}))},odd:function(){return this.pushStack(S.grep(this,function(e,t){return t%2}))},eq:function(e){var t=this.length,n=+e+(e<0?t:0);return this.pushStack(0<=n&&n<t?[this[n]]:[])},end:function(){return this.prevObject||this.constructor()},push:u,sort:t.sort,splice:t.splice},S.extend=S.fn.extend=function(){var e,t,n,r,i,o,a=arguments[0]||{},s=1,u=arguments.length,l=!1;for("boolean"==typeof a&&(l=a,a=arguments[s]||{},s++),"object"==typeof a||m(a)||(a={}),s===u&&(a=this,s--);s<u;s++)if(null!=(e=arguments[s]))for(t in e)r=e[t],"__proto__"!==t&&a!==r&&(l&&r&&(S.isPlainObject(r)||(i=Array.isArray(r)))?(n=a[t],o=i&&!Array.isArray(n)?[]:i||S.isPlainObject(n)?n:{},i=!1,a[t]=S.extend(l,o,r)):void 0!==r&&(a[t]=r));return a},S.extend({expando:"jQuery"+(f+Math.random()).replace(/\D/g,""),isReady:!0,error:function(e){throw new Error(e)},noop:function(){},isPlainObject:function(e){var t,n;return!(!e||"[object Object]"!==o.call(e))&&(!(t=r(e))||"function"==typeof(n=v.call(t,"constructor")&&t.constructor)&&a.call(n)===l)},isEmptyObject:function(e){var t;for(t in e)return!1;return!0},globalEval:function(e,t,n){b(e,{nonce:t&&t.nonce},n)},each:function(e,t){var n,r=0;if(p(e)){for(n=e.length;r<n;r++)if(!1===t.call(e[r],r,e[r]))break}else for(r in e)if(!1===t.call(e[r],r,e[r]))break;return e},makeArray:function(e,t){var n=t||[];return null!=e&&(p(Object(e))?S.merge(n,"string"==typeof e?[e]:e):u.call(n,e)),n},inArray:function(e,t,n){return null==t?-1:i.call(t,e,n)},merge:function(e,t){for(var n=+t.length,r=0,i=e.length;r<n;r++)e[i++]=t[r];return e.length=i,e},grep:function(e,t,n){for(var r=[],i=0,o=e.length,a=!n;i<o;i++)!t(e[i],i)!==a&&r.push(e[i]);return r},map:function(e,t,n){var r,i,o=0,a=[];if(p(e))for(r=e.length;o<r;o++)null!=(i=t(e[o],o,n))&&a.push(i);else for(o in e)null!=(i=t(e[o],o,n))&&a.push(i);return g(a)},guid:1,support:y}),"function"==typeof Symbol&&(S.fn[Symbol.iterator]=t[Symbol.iterator]),S.each("Boolean Number String Function Array Date RegExp Object Error Symbol".split(" "),function(e,t){n["[object "+t+"]"]=t.toLowerCase()});var d=function(n){var e,d,b,o,i,h,f,g,w,u,l,T,C,a,E,v,s,c,y,S="sizzle"+1*new Date,p=n.document,k=0,r=0,m=ue(),x=ue(),A=ue(),N=ue(),j=function(e,t){return e===t&&(l=!0),0},D={}.hasOwnProperty,t=[],q=t.pop,L=t.push,H=t.push,O=t.slice,P=function(e,t){for(var n=0,r=e.length;n<r;n++)if(e[n]===t)return n;return-1},R="checked|selected|async|autofocus|autoplay|controls|defer|disabled|hidden|ismap|loop|multiple|open|readonly|required|scoped",M="[\\x20\\t\\r\\n\\f]",I="(?:\\\\[\\da-fA-F]{1,6}"+M+"?|\\\\[^\\r\\n\\f]|[\\w-]|[^\0-\\x7f])+",W="\\["+M+"*("+I+")(?:"+M+"*([*^$|!~]?=)"+M+"*(?:'((?:\\\\.|[^\\\\'])*)'|\"((?:\\\\.|[^\\\\\"])*)\"|("+I+"))|)"+M+"*\\]",F=":("+I+")(?:\\((('((?:\\\\.|[^\\\\'])*)'|\"((?:\\\\.|[^\\\\\"])*)\")|((?:\\\\.|[^\\\\()[\\]]|"+W+")*)|.*)\\)|)",B=new RegExp(M+"+","g"),$=new RegExp("^"+M+"+|((?:^|[^\\\\])(?:\\\\.)*)"+M+"+$","g"),_=new RegExp("^"+M+"*,"+M+"*"),z=new RegExp("^"+M+"*([>+~]|"+M+")"+M+"*"),U=new RegExp(M+"|>"),X=new RegExp(F),V=new RegExp("^"+I+"$"),G={ID:new RegExp("^#("+I+")"),CLASS:new RegExp("^\\.("+I+")"),TAG:new RegExp("^("+I+"|[*])"),ATTR:new RegExp("^"+W),PSEUDO:new RegExp("^"+F),CHILD:new RegExp("^:(only|first|last|nth|nth-last)-(child|of-type)(?:\\("+M+"*(even|odd|(([+-]|)(\\d*)n|)"+M+"*(?:([+-]|)"+M+"*(\\d+)|))"+M+"*\\)|)","i"),bool:new RegExp("^(?:"+R+")$","i"),needsContext:new RegExp("^"+M+"*[>+~]|:(even|odd|eq|gt|lt|nth|first|last)(?:\\("+M+"*((?:-\\d)?\\d*)"+M+"*\\)|)(?=[^-]|$)","i")},Y=/HTML$/i,Q=/^(?:input|select|textarea|button)$/i,J=/^h\d$/i,K=/^[^{]+\{\s*\[native \w/,Z=/^(?:#([\w-]+)|(\w+)|\.([\w-]+))$/,ee=/[+~]/,te=new RegExp("\\\\[\\da-fA-F]{1,6}"+M+"?|\\\\([^\\r\\n\\f])","g"),ne=function(e,t){var n="0x"+e.slice(1)-65536;return t||(n<0?String.fromCharCode(n+65536):String.fromCharCode(n>>10|55296,1023&n|56320))},re=/([\0-\x1f\x7f]|^-?\d)|^-$|[^\0-\x1f\x7f-\uFFFF\w-]/g,ie=function(e,t){return t?"\0"===e?"\ufffd":e.slice(0,-1)+"\\"+e.charCodeAt(e.length-1).toString(16)+" ":"\\"+e},oe=function(){T()},ae=be(function(e){return!0===e.disabled&&"fieldset"===e.nodeName.toLowerCase()},{dir:"parentNode",next:"legend"});try{H.apply(t=O.call(p.childNodes),p.childNodes),t[p.childNodes.length].nodeType}catch(e){H={apply:t.length?function(e,t){L.apply(e,O.call(t))}:function(e,t){var n=e.length,r=0;while(e[n++]=t[r++]);e.length=n-1}}}function se(t,e,n,r){var i,o,a,s,u,l,c,f=e&&e.ownerDocument,p=e?e.nodeType:9;if(n=n||[],"string"!=typeof t||!t||1!==p&&9!==p&&11!==p)return n;if(!r&&(T(e),e=e||C,E)){if(11!==p&&(u=Z.exec(t)))if(i=u[1]){if(9===p){if(!(a=e.getElementById(i)))return n;if(a.id===i)return n.push(a),n}else if(f&&(a=f.getElementById(i))&&y(e,a)&&a.id===i)return n.push(a),n}else{if(u[2])return H.apply(n,e.getElementsByTagName(t)),n;if((i=u[3])&&d.getElementsByClassName&&e.getElementsByClassName)return H.apply(n,e.getElementsByClassName(i)),n}if(d.qsa&&!N[t+" "]&&(!v||!v.test(t))&&(1!==p||"object"!==e.nodeName.toLowerCase())){if(c=t,f=e,1===p&&(U.test(t)||z.test(t))){(f=ee.test(t)&&ye(e.parentNode)||e)===e&&d.scope||((s=e.getAttribute("id"))?s=s.replace(re,ie):e.setAttribute("id",s=S)),o=(l=h(t)).length;while(o--)l[o]=(s?"#"+s:":scope")+" "+xe(l[o]);c=l.join(",")}try{return H.apply(n,f.querySelectorAll(c)),n}catch(e){N(t,!0)}finally{s===S&&e.removeAttribute("id")}}}return g(t.replace($,"$1"),e,n,r)}function ue(){var r=[];return function e(t,n){return r.push(t+" ")>b.cacheLength&&delete e[r.shift()],e[t+" "]=n}}function le(e){return e[S]=!0,e}function ce(e){var t=C.createElement("fieldset");try{return!!e(t)}catch(e){return!1}finally{t.parentNode&&t.parentNode.removeChild(t),t=null}}function fe(e,t){var n=e.split("|"),r=n.length;while(r--)b.attrHandle[n[r]]=t}function pe(e,t){var n=t&&e,r=n&&1===e.nodeType&&1===t.nodeType&&e.sourceIndex-t.sourceIndex;if(r)return r;if(n)while(n=n.nextSibling)if(n===t)return-1;return e?1:-1}function de(t){return function(e){return"input"===e.nodeName.toLowerCase()&&e.type===t}}function he(n){return function(e){var t=e.nodeName.toLowerCase();return("input"===t||"button"===t)&&e.type===n}}function ge(t){return function(e){return"form"in e?e.parentNode&&!1===e.disabled?"label"in e?"label"in e.parentNode?e.parentNode.disabled===t:e.disabled===t:e.isDisabled===t||e.isDisabled!==!t&&ae(e)===t:e.disabled===t:"label"in e&&e.disabled===t}}function ve(a){return le(function(o){return o=+o,le(function(e,t){var n,r=a([],e.length,o),i=r.length;while(i--)e[n=r[i]]&&(e[n]=!(t[n]=e[n]))})})}function ye(e){return e&&"undefined"!=typeof e.getElementsByTagName&&e}for(e in d=se.support={},i=se.isXML=function(e){var t=e&&e.namespaceURI,n=e&&(e.ownerDocument||e).documentElement;return!Y.test(t||n&&n.nodeName||"HTML")},T=se.setDocument=function(e){var t,n,r=e?e.ownerDocument||e:p;return r!=C&&9===r.nodeType&&r.documentElement&&(a=(C=r).documentElement,E=!i(C),p!=C&&(n=C.defaultView)&&n.top!==n&&(n.addEventListener?n.addEventListener("unload",oe,!1):n.attachEvent&&n.attachEvent("onunload",oe)),d.scope=ce(function(e){return a.appendChild(e).appendChild(C.createElement("div")),"undefined"!=typeof e.querySelectorAll&&!e.querySelectorAll(":scope fieldset div").length}),d.attributes=ce(function(e){return e.className="i",!e.getAttribute("className")}),d.getElementsByTagName=ce(function(e){return e.appendChild(C.createComment("")),!e.getElementsByTagName("*").length}),d.getElementsByClassName=K.test(C.getElementsByClassName),d.getById=ce(function(e){return a.appendChild(e).id=S,!C.getElementsByName||!C.getElementsByName(S).length}),d.getById?(b.filter.ID=function(e){var t=e.replace(te,ne);return function(e){return e.getAttribute("id")===t}},b.find.ID=function(e,t){if("undefined"!=typeof t.getElementById&&E){var n=t.getElementById(e);return n?[n]:[]}}):(b.filter.ID=function(e){var n=e.replace(te,ne);return function(e){var t="undefined"!=typeof e.getAttributeNode&&e.getAttributeNode("id");return t&&t.value===n}},b.find.ID=function(e,t){if("undefined"!=typeof t.getElementById&&E){var n,r,i,o=t.getElementById(e);if(o){if((n=o.getAttributeNode("id"))&&n.value===e)return[o];i=t.getElementsByName(e),r=0;while(o=i[r++])if((n=o.getAttributeNode("id"))&&n.value===e)return[o]}return[]}}),b.find.TAG=d.getElementsByTagName?function(e,t){return"undefined"!=typeof t.getElementsByTagName?t.getElementsByTagName(e):d.qsa?t.querySelectorAll(e):void 0}:function(e,t){var n,r=[],i=0,o=t.getElementsByTagName(e);if("*"===e){while(n=o[i++])1===n.nodeType&&r.push(n);return r}return o},b.find.CLASS=d.getElementsByClassName&&function(e,t){if("undefined"!=typeof t.getElementsByClassName&&E)return t.getElementsByClassName(e)},s=[],v=[],(d.qsa=K.test(C.querySelectorAll))&&(ce(function(e){var t;a.appendChild(e).innerHTML="<a id='"+S+"'></a><select id='"+S+"-\r\\' msallowcapture=''><option selected=''></option></select>",e.querySelectorAll("[msallowcapture^='']").length&&v.push("[*^$]="+M+"*(?:''|\"\")"),e.querySelectorAll("[selected]").length||v.push("\\["+M+"*(?:value|"+R+")"),e.querySelectorAll("[id~="+S+"-]").length||v.push("~="),(t=C.createElement("input")).setAttribute("name",""),e.appendChild(t),e.querySelectorAll("[name='']").length||v.push("\\["+M+"*name"+M+"*="+M+"*(?:''|\"\")"),e.querySelectorAll(":checked").length||v.push(":checked"),e.querySelectorAll("a#"+S+"+*").length||v.push(".#.+[+~]"),e.querySelectorAll("\\\f"),v.push("[\\r\\n\\f]")}),ce(function(e){e.innerHTML="<a href='' disabled='disabled'></a><select disabled='disabled'><option/></select>";var t=C.createElement("input");t.setAttribute("type","hidden"),e.appendChild(t).setAttribute("name","D"),e.querySelectorAll("[name=d]").length&&v.push("name"+M+"*[*^$|!~]?="),2!==e.querySelectorAll(":enabled").length&&v.push(":enabled",":disabled"),a.appendChild(e).disabled=!0,2!==e.querySelectorAll(":disabled").length&&v.push(":enabled",":disabled"),e.querySelectorAll("*,:x"),v.push(",.*:")})),(d.matchesSelector=K.test(c=a.matches||a.webkitMatchesSelector||a.mozMatchesSelector||a.oMatchesSelector||a.msMatchesSelector))&&ce(function(e){d.disconnectedMatch=c.call(e,"*"),c.call(e,"[s!='']:x"),s.push("!=",F)}),v=v.length&&new RegExp(v.join("|")),s=s.length&&new RegExp(s.join("|")),t=K.test(a.compareDocumentPosition),y=t||K.test(a.contains)?function(e,t){var n=9===e.nodeType?e.documentElement:e,r=t&&t.parentNode;return e===r||!(!r||1!==r.nodeType||!(n.contains?n.contains(r):e.compareDocumentPosition&&16&e.compareDocumentPosition(r)))}:function(e,t){if(t)while(t=t.parentNode)if(t===e)return!0;return!1},j=t?function(e,t){if(e===t)return l=!0,0;var n=!e.compareDocumentPosition-!t.compareDocumentPosition;return n||(1&(n=(e.ownerDocument||e)==(t.ownerDocument||t)?e.compareDocumentPosition(t):1)||!d.sortDetached&&t.compareDocumentPosition(e)===n?e==C||e.ownerDocument==p&&y(p,e)?-1:t==C||t.ownerDocument==p&&y(p,t)?1:u?P(u,e)-P(u,t):0:4&n?-1:1)}:function(e,t){if(e===t)return l=!0,0;var n,r=0,i=e.parentNode,o=t.parentNode,a=[e],s=[t];if(!i||!o)return e==C?-1:t==C?1:i?-1:o?1:u?P(u,e)-P(u,t):0;if(i===o)return pe(e,t);n=e;while(n=n.parentNode)a.unshift(n);n=t;while(n=n.parentNode)s.unshift(n);while(a[r]===s[r])r++;return r?pe(a[r],s[r]):a[r]==p?-1:s[r]==p?1:0}),C},se.matches=function(e,t){return se(e,null,null,t)},se.matchesSelector=function(e,t){if(T(e),d.matchesSelector&&E&&!N[t+" "]&&(!s||!s.test(t))&&(!v||!v.test(t)))try{var n=c.call(e,t);if(n||d.disconnectedMatch||e.document&&11!==e.document.nodeType)return n}catch(e){N(t,!0)}return 0<se(t,C,null,[e]).length},se.contains=function(e,t){return(e.ownerDocument||e)!=C&&T(e),y(e,t)},se.attr=function(e,t){(e.ownerDocument||e)!=C&&T(e);var n=b.attrHandle[t.toLowerCase()],r=n&&D.call(b.attrHandle,t.toLowerCase())?n(e,t,!E):void 0;return void 0!==r?r:d.attributes||!E?e.getAttribute(t):(r=e.getAttributeNode(t))&&r.specified?r.value:null},se.escape=function(e){return(e+"").replace(re,ie)},se.error=function(e){throw new Error("Syntax error, unrecognized expression: "+e)},se.uniqueSort=function(e){var t,n=[],r=0,i=0;if(l=!d.detectDuplicates,u=!d.sortStable&&e.slice(0),e.sort(j),l){while(t=e[i++])t===e[i]&&(r=n.push(i));while(r--)e.splice(n[r],1)}return u=null,e},o=se.getText=function(e){var t,n="",r=0,i=e.nodeType;if(i){if(1===i||9===i||11===i){if("string"==typeof e.textContent)return e.textContent;for(e=e.firstChild;e;e=e.nextSibling)n+=o(e)}else if(3===i||4===i)return e.nodeValue}else while(t=e[r++])n+=o(t);return n},(b=se.selectors={cacheLength:50,createPseudo:le,match:G,attrHandle:{},find:{},relative:{">":{dir:"parentNode",first:!0}," ":{dir:"parentNode"},"+":{dir:"previousSibling",first:!0},"~":{dir:"previousSibling"}},preFilter:{ATTR:function(e){return e[1]=e[1].replace(te,ne),e[3]=(e[3]||e[4]||e[5]||"").replace(te,ne),"~="===e[2]&&(e[3]=" "+e[3]+" "),e.slice(0,4)},CHILD:function(e){return e[1]=e[1].toLowerCase(),"nth"===e[1].slice(0,3)?(e[3]||se.error(e[0]),e[4]=+(e[4]?e[5]+(e[6]||1):2*("even"===e[3]||"odd"===e[3])),e[5]=+(e[7]+e[8]||"odd"===e[3])):e[3]&&se.error(e[0]),e},PSEUDO:function(e){var t,n=!e[6]&&e[2];return G.CHILD.test(e[0])?null:(e[3]?e[2]=e[4]||e[5]||"":n&&X.test(n)&&(t=h(n,!0))&&(t=n.indexOf(")",n.length-t)-n.length)&&(e[0]=e[0].slice(0,t),e[2]=n.slice(0,t)),e.slice(0,3))}},filter:{TAG:function(e){var t=e.replace(te,ne).toLowerCase();return"*"===e?function(){return!0}:function(e){return e.nodeName&&e.nodeName.toLowerCase()===t}},CLASS:function(e){var t=m[e+" "];return t||(t=new RegExp("(^|"+M+")"+e+"("+M+"|$)"))&&m(e,function(e){return t.test("string"==typeof e.className&&e.className||"undefined"!=typeof e.getAttribute&&e.getAttribute("class")||"")})},ATTR:function(n,r,i){return function(e){var t=se.attr(e,n);return null==t?"!="===r:!r||(t+="","="===r?t===i:"!="===r?t!==i:"^="===r?i&&0===t.indexOf(i):"*="===r?i&&-1<t.indexOf(i):"$="===r?i&&t.slice(-i.length)===i:"~="===r?-1<(" "+t.replace(B," ")+" ").indexOf(i):"|="===r&&(t===i||t.slice(0,i.length+1)===i+"-"))}},CHILD:function(h,e,t,g,v){var y="nth"!==h.slice(0,3),m="last"!==h.slice(-4),x="of-type"===e;return 1===g&&0===v?function(e){return!!e.parentNode}:function(e,t,n){var r,i,o,a,s,u,l=y!==m?"nextSibling":"previousSibling",c=e.parentNode,f=x&&e.nodeName.toLowerCase(),p=!n&&!x,d=!1;if(c){if(y){while(l){a=e;while(a=a[l])if(x?a.nodeName.toLowerCase()===f:1===a.nodeType)return!1;u=l="only"===h&&!u&&"nextSibling"}return!0}if(u=[m?c.firstChild:c.lastChild],m&&p){d=(s=(r=(i=(o=(a=c)[S]||(a[S]={}))[a.uniqueID]||(o[a.uniqueID]={}))[h]||[])[0]===k&&r[1])&&r[2],a=s&&c.childNodes[s];while(a=++s&&a&&a[l]||(d=s=0)||u.pop())if(1===a.nodeType&&++d&&a===e){i[h]=[k,s,d];break}}else if(p&&(d=s=(r=(i=(o=(a=e)[S]||(a[S]={}))[a.uniqueID]||(o[a.uniqueID]={}))[h]||[])[0]===k&&r[1]),!1===d)while(a=++s&&a&&a[l]||(d=s=0)||u.pop())if((x?a.nodeName.toLowerCase()===f:1===a.nodeType)&&++d&&(p&&((i=(o=a[S]||(a[S]={}))[a.uniqueID]||(o[a.uniqueID]={}))[h]=[k,d]),a===e))break;return(d-=v)===g||d%g==0&&0<=d/g}}},PSEUDO:function(e,o){var t,a=b.pseudos[e]||b.setFilters[e.toLowerCase()]||se.error("unsupported pseudo: "+e);return a[S]?a(o):1<a.length?(t=[e,e,"",o],b.setFilters.hasOwnProperty(e.toLowerCase())?le(function(e,t){var n,r=a(e,o),i=r.length;while(i--)e[n=P(e,r[i])]=!(t[n]=r[i])}):function(e){return a(e,0,t)}):a}},pseudos:{not:le(function(e){var r=[],i=[],s=f(e.replace($,"$1"));return s[S]?le(function(e,t,n,r){var i,o=s(e,null,r,[]),a=e.length;while(a--)(i=o[a])&&(e[a]=!(t[a]=i))}):function(e,t,n){return r[0]=e,s(r,null,n,i),r[0]=null,!i.pop()}}),has:le(function(t){return function(e){return 0<se(t,e).length}}),contains:le(function(t){return t=t.replace(te,ne),function(e){return-1<(e.textContent||o(e)).indexOf(t)}}),lang:le(function(n){return V.test(n||"")||se.error("unsupported lang: "+n),n=n.replace(te,ne).toLowerCase(),function(e){var t;do{if(t=E?e.lang:e.getAttribute("xml:lang")||e.getAttribute("lang"))return(t=t.toLowerCase())===n||0===t.indexOf(n+"-")}while((e=e.parentNode)&&1===e.nodeType);return!1}}),target:function(e){var t=n.location&&n.location.hash;return t&&t.slice(1)===e.id},root:function(e){return e===a},focus:function(e){return e===C.activeElement&&(!C.hasFocus||C.hasFocus())&&!!(e.type||e.href||~e.tabIndex)},enabled:ge(!1),disabled:ge(!0),checked:function(e){var t=e.nodeName.toLowerCase();return"input"===t&&!!e.checked||"option"===t&&!!e.selected},selected:function(e){return e.parentNode&&e.parentNode.selectedIndex,!0===e.selected},empty:function(e){for(e=e.firstChild;e;e=e.nextSibling)if(e.nodeType<6)return!1;return!0},parent:function(e){return!b.pseudos.empty(e)},header:function(e){return J.test(e.nodeName)},input:function(e){return Q.test(e.nodeName)},button:function(e){var t=e.nodeName.toLowerCase();return"input"===t&&"button"===e.type||"button"===t},text:function(e){var t;return"input"===e.nodeName.toLowerCase()&&"text"===e.type&&(null==(t=e.getAttribute("type"))||"text"===t.toLowerCase())},first:ve(function(){return[0]}),last:ve(function(e,t){return[t-1]}),eq:ve(function(e,t,n){return[n<0?n+t:n]}),even:ve(function(e,t){for(var n=0;n<t;n+=2)e.push(n);return e}),odd:ve(function(e,t){for(var n=1;n<t;n+=2)e.push(n);return e}),lt:ve(function(e,t,n){for(var r=n<0?n+t:t<n?t:n;0<=--r;)e.push(r);return e}),gt:ve(function(e,t,n){for(var r=n<0?n+t:n;++r<t;)e.push(r);return e})}}).pseudos.nth=b.pseudos.eq,{radio:!0,checkbox:!0,file:!0,password:!0,image:!0})b.pseudos[e]=de(e);for(e in{submit:!0,reset:!0})b.pseudos[e]=he(e);function me(){}function xe(e){for(var t=0,n=e.length,r="";t<n;t++)r+=e[t].value;return r}function be(s,e,t){var u=e.dir,l=e.next,c=l||u,f=t&&"parentNode"===c,p=r++;return e.first?function(e,t,n){while(e=e[u])if(1===e.nodeType||f)return s(e,t,n);return!1}:function(e,t,n){var r,i,o,a=[k,p];if(n){while(e=e[u])if((1===e.nodeType||f)&&s(e,t,n))return!0}else while(e=e[u])if(1===e.nodeType||f)if(i=(o=e[S]||(e[S]={}))[e.uniqueID]||(o[e.uniqueID]={}),l&&l===e.nodeName.toLowerCase())e=e[u]||e;else{if((r=i[c])&&r[0]===k&&r[1]===p)return a[2]=r[2];if((i[c]=a)[2]=s(e,t,n))return!0}return!1}}function we(i){return 1<i.length?function(e,t,n){var r=i.length;while(r--)if(!i[r](e,t,n))return!1;return!0}:i[0]}function Te(e,t,n,r,i){for(var o,a=[],s=0,u=e.length,l=null!=t;s<u;s++)(o=e[s])&&(n&&!n(o,r,i)||(a.push(o),l&&t.push(s)));return a}function Ce(d,h,g,v,y,e){return v&&!v[S]&&(v=Ce(v)),y&&!y[S]&&(y=Ce(y,e)),le(function(e,t,n,r){var i,o,a,s=[],u=[],l=t.length,c=e||function(e,t,n){for(var r=0,i=t.length;r<i;r++)se(e,t[r],n);return n}(h||"*",n.nodeType?[n]:n,[]),f=!d||!e&&h?c:Te(c,s,d,n,r),p=g?y||(e?d:l||v)?[]:t:f;if(g&&g(f,p,n,r),v){i=Te(p,u),v(i,[],n,r),o=i.length;while(o--)(a=i[o])&&(p[u[o]]=!(f[u[o]]=a))}if(e){if(y||d){if(y){i=[],o=p.length;while(o--)(a=p[o])&&i.push(f[o]=a);y(null,p=[],i,r)}o=p.length;while(o--)(a=p[o])&&-1<(i=y?P(e,a):s[o])&&(e[i]=!(t[i]=a))}}else p=Te(p===t?p.splice(l,p.length):p),y?y(null,t,p,r):H.apply(t,p)})}function Ee(e){for(var i,t,n,r=e.length,o=b.relative[e[0].type],a=o||b.relative[" "],s=o?1:0,u=be(function(e){return e===i},a,!0),l=be(function(e){return-1<P(i,e)},a,!0),c=[function(e,t,n){var r=!o&&(n||t!==w)||((i=t).nodeType?u(e,t,n):l(e,t,n));return i=null,r}];s<r;s++)if(t=b.relative[e[s].type])c=[be(we(c),t)];else{if((t=b.filter[e[s].type].apply(null,e[s].matches))[S]){for(n=++s;n<r;n++)if(b.relative[e[n].type])break;return Ce(1<s&&we(c),1<s&&xe(e.slice(0,s-1).concat({value:" "===e[s-2].type?"*":""})).replace($,"$1"),t,s<n&&Ee(e.slice(s,n)),n<r&&Ee(e=e.slice(n)),n<r&&xe(e))}c.push(t)}return we(c)}return me.prototype=b.filters=b.pseudos,b.setFilters=new me,h=se.tokenize=function(e,t){var n,r,i,o,a,s,u,l=x[e+" "];if(l)return t?0:l.slice(0);a=e,s=[],u=b.preFilter;while(a){for(o in n&&!(r=_.exec(a))||(r&&(a=a.slice(r[0].length)||a),s.push(i=[])),n=!1,(r=z.exec(a))&&(n=r.shift(),i.push({value:n,type:r[0].replace($," ")}),a=a.slice(n.length)),b.filter)!(r=G[o].exec(a))||u[o]&&!(r=u[o](r))||(n=r.shift(),i.push({value:n,type:o,matches:r}),a=a.slice(n.length));if(!n)break}return t?a.length:a?se.error(e):x(e,s).slice(0)},f=se.compile=function(e,t){var n,v,y,m,x,r,i=[],o=[],a=A[e+" "];if(!a){t||(t=h(e)),n=t.length;while(n--)(a=Ee(t[n]))[S]?i.push(a):o.push(a);(a=A(e,(v=o,m=0<(y=i).length,x=0<v.length,r=function(e,t,n,r,i){var o,a,s,u=0,l="0",c=e&&[],f=[],p=w,d=e||x&&b.find.TAG("*",i),h=k+=null==p?1:Math.random()||.1,g=d.length;for(i&&(w=t==C||t||i);l!==g&&null!=(o=d[l]);l++){if(x&&o){a=0,t||o.ownerDocument==C||(T(o),n=!E);while(s=v[a++])if(s(o,t||C,n)){r.push(o);break}i&&(k=h)}m&&((o=!s&&o)&&u--,e&&c.push(o))}if(u+=l,m&&l!==u){a=0;while(s=y[a++])s(c,f,t,n);if(e){if(0<u)while(l--)c[l]||f[l]||(f[l]=q.call(r));f=Te(f)}H.apply(r,f),i&&!e&&0<f.length&&1<u+y.length&&se.uniqueSort(r)}return i&&(k=h,w=p),c},m?le(r):r))).selector=e}return a},g=se.select=function(e,t,n,r){var i,o,a,s,u,l="function"==typeof e&&e,c=!r&&h(e=l.selector||e);if(n=n||[],1===c.length){if(2<(o=c[0]=c[0].slice(0)).length&&"ID"===(a=o[0]).type&&9===t.nodeType&&E&&b.relative[o[1].type]){if(!(t=(b.find.ID(a.matches[0].replace(te,ne),t)||[])[0]))return n;l&&(t=t.parentNode),e=e.slice(o.shift().value.length)}i=G.needsContext.test(e)?0:o.length;while(i--){if(a=o[i],b.relative[s=a.type])break;if((u=b.find[s])&&(r=u(a.matches[0].replace(te,ne),ee.test(o[0].type)&&ye(t.parentNode)||t))){if(o.splice(i,1),!(e=r.length&&xe(o)))return H.apply(n,r),n;break}}}return(l||f(e,c))(r,t,!E,n,!t||ee.test(e)&&ye(t.parentNode)||t),n},d.sortStable=S.split("").sort(j).join("")===S,d.detectDuplicates=!!l,T(),d.sortDetached=ce(function(e){return 1&e.compareDocumentPosition(C.createElement("fieldset"))}),ce(function(e){return e.innerHTML="<a href='#'></a>","#"===e.firstChild.getAttribute("href")})||fe("type|href|height|width",function(e,t,n){if(!n)return e.getAttribute(t,"type"===t.toLowerCase()?1:2)}),d.attributes&&ce(function(e){return e.innerHTML="<input/>",e.firstChild.setAttribute("value",""),""===e.firstChild.getAttribute("value")})||fe("value",function(e,t,n){if(!n&&"input"===e.nodeName.toLowerCase())return e.defaultValue}),ce(function(e){return null==e.getAttribute("disabled")})||fe(R,function(e,t,n){var r;if(!n)return!0===e[t]?t.toLowerCase():(r=e.getAttributeNode(t))&&r.specified?r.value:null}),se}(C);S.find=d,S.expr=d.selectors,S.expr[":"]=S.expr.pseudos,S.uniqueSort=S.unique=d.uniqueSort,S.text=d.getText,S.isXMLDoc=d.isXML,S.contains=d.contains,S.escapeSelector=d.escape;var h=function(e,t,n){var r=[],i=void 0!==n;while((e=e[t])&&9!==e.nodeType)if(1===e.nodeType){if(i&&S(e).is(n))break;r.push(e)}return r},T=function(e,t){for(var n=[];e;e=e.nextSibling)1===e.nodeType&&e!==t&&n.push(e);return n},k=S.expr.match.needsContext;function A(e,t){return e.nodeName&&e.nodeName.toLowerCase()===t.toLowerCase()}var N=/^<([a-z][^\/\0>:\x20\t\r\n\f]*)[\x20\t\r\n\f]*\/?>(?:<\/\1>|)$/i;function j(e,n,r){return m(n)?S.grep(e,function(e,t){return!!n.call(e,t,e)!==r}):n.nodeType?S.grep(e,function(e){return e===n!==r}):"string"!=typeof n?S.grep(e,function(e){return-1<i.call(n,e)!==r}):S.filter(n,e,r)}S.filter=function(e,t,n){var r=t[0];return n&&(e=":not("+e+")"),1===t.length&&1===r.nodeType?S.find.matchesSelector(r,e)?[r]:[]:S.find.matches(e,S.grep(t,function(e){return 1===e.nodeType}))},S.fn.extend({find:function(e){var t,n,r=this.length,i=this;if("string"!=typeof e)return this.pushStack(S(e).filter(function(){for(t=0;t<r;t++)if(S.contains(i[t],this))return!0}));for(n=this.pushStack([]),t=0;t<r;t++)S.find(e,i[t],n);return 1<r?S.uniqueSort(n):n},filter:function(e){return this.pushStack(j(this,e||[],!1))},not:function(e){return this.pushStack(j(this,e||[],!0))},is:function(e){return!!j(this,"string"==typeof e&&k.test(e)?S(e):e||[],!1).length}});var D,q=/^(?:\s*(<[\w\W]+>)[^>]*|#([\w-]+))$/;(S.fn.init=function(e,t,n){var r,i;if(!e)return this;if(n=n||D,"string"==typeof e){if(!(r="<"===e[0]&&">"===e[e.length-1]&&3<=e.length?[null,e,null]:q.exec(e))||!r[1]&&t)return!t||t.jquery?(t||n).find(e):this.constructor(t).find(e);if(r[1]){if(t=t instanceof S?t[0]:t,S.merge(this,S.parseHTML(r[1],t&&t.nodeType?t.ownerDocument||t:E,!0)),N.test(r[1])&&S.isPlainObject(t))for(r in t)m(this[r])?this[r](t[r]):this.attr(r,t[r]);return this}return(i=E.getElementById(r[2]))&&(this[0]=i,this.length=1),this}return e.nodeType?(this[0]=e,this.length=1,this):m(e)?void 0!==n.ready?n.ready(e):e(S):S.makeArray(e,this)}).prototype=S.fn,D=S(E);var L=/^(?:parents|prev(?:Until|All))/,H={children:!0,contents:!0,next:!0,prev:!0};function O(e,t){while((e=e[t])&&1!==e.nodeType);return e}S.fn.extend({has:function(e){var t=S(e,this),n=t.length;return this.filter(function(){for(var e=0;e<n;e++)if(S.contains(this,t[e]))return!0})},closest:function(e,t){var n,r=0,i=this.length,o=[],a="string"!=typeof e&&S(e);if(!k.test(e))for(;r<i;r++)for(n=this[r];n&&n!==t;n=n.parentNode)if(n.nodeType<11&&(a?-1<a.index(n):1===n.nodeType&&S.find.matchesSelector(n,e))){o.push(n);break}return this.pushStack(1<o.length?S.uniqueSort(o):o)},index:function(e){return e?"string"==typeof e?i.call(S(e),this[0]):i.call(this,e.jquery?e[0]:e):this[0]&&this[0].parentNode?this.first().prevAll().length:-1},add:function(e,t){return this.pushStack(S.uniqueSort(S.merge(this.get(),S(e,t))))},addBack:function(e){return this.add(null==e?this.prevObject:this.prevObject.filter(e))}}),S.each({parent:function(e){var t=e.parentNode;return t&&11!==t.nodeType?t:null},parents:function(e){return h(e,"parentNode")},parentsUntil:function(e,t,n){return h(e,"parentNode",n)},next:function(e){return O(e,"nextSibling")},prev:function(e){return O(e,"previousSibling")},nextAll:function(e){return h(e,"nextSibling")},prevAll:function(e){return h(e,"previousSibling")},nextUntil:function(e,t,n){return h(e,"nextSibling",n)},prevUntil:function(e,t,n){return h(e,"previousSibling",n)},siblings:function(e){return T((e.parentNode||{}).firstChild,e)},children:function(e){return T(e.firstChild)},contents:function(e){return null!=e.contentDocument&&r(e.contentDocument)?e.contentDocument:(A(e,"template")&&(e=e.content||e),S.merge([],e.childNodes))}},function(r,i){S.fn[r]=function(e,t){var n=S.map(this,i,e);return"Until"!==r.slice(-5)&&(t=e),t&&"string"==typeof t&&(n=S.filter(t,n)),1<this.length&&(H[r]||S.uniqueSort(n),L.test(r)&&n.reverse()),this.pushStack(n)}});var P=/[^\x20\t\r\n\f]+/g;function R(e){return e}function M(e){throw e}function I(e,t,n,r){var i;try{e&&m(i=e.promise)?i.call(e).done(t).fail(n):e&&m(i=e.then)?i.call(e,t,n):t.apply(void 0,[e].slice(r))}catch(e){n.apply(void 0,[e])}}S.Callbacks=function(r){var e,n;r="string"==typeof r?(e=r,n={},S.each(e.match(P)||[],function(e,t){n[t]=!0}),n):S.extend({},r);var i,t,o,a,s=[],u=[],l=-1,c=function(){for(a=a||r.once,o=i=!0;u.length;l=-1){t=u.shift();while(++l<s.length)!1===s[l].apply(t[0],t[1])&&r.stopOnFalse&&(l=s.length,t=!1)}r.memory||(t=!1),i=!1,a&&(s=t?[]:"")},f={add:function(){return s&&(t&&!i&&(l=s.length-1,u.push(t)),function n(e){S.each(e,function(e,t){m(t)?r.unique&&f.has(t)||s.push(t):t&&t.length&&"string"!==w(t)&&n(t)})}(arguments),t&&!i&&c()),this},remove:function(){return S.each(arguments,function(e,t){var n;while(-1<(n=S.inArray(t,s,n)))s.splice(n,1),n<=l&&l--}),this},has:function(e){return e?-1<S.inArray(e,s):0<s.length},empty:function(){return s&&(s=[]),this},disable:function(){return a=u=[],s=t="",this},disabled:function(){return!s},lock:function(){return a=u=[],t||i||(s=t=""),this},locked:function(){return!!a},fireWith:function(e,t){return a||(t=[e,(t=t||[]).slice?t.slice():t],u.push(t),i||c()),this},fire:function(){return f.fireWith(this,arguments),this},fired:function(){return!!o}};return f},S.extend({Deferred:function(e){var o=[["notify","progress",S.Callbacks("memory"),S.Callbacks("memory"),2],["resolve","done",S.Callbacks("once memory"),S.Callbacks("once memory"),0,"resolved"],["reject","fail",S.Callbacks("once memory"),S.Callbacks("once memory"),1,"rejected"]],i="pending",a={state:function(){return i},always:function(){return s.done(arguments).fail(arguments),this},"catch":function(e){return a.then(null,e)},pipe:function(){var i=arguments;return S.Deferred(function(r){S.each(o,function(e,t){var n=m(i[t[4]])&&i[t[4]];s[t[1]](function(){var e=n&&n.apply(this,arguments);e&&m(e.promise)?e.promise().progress(r.notify).done(r.resolve).fail(r.reject):r[t[0]+"With"](this,n?[e]:arguments)})}),i=null}).promise()},then:function(t,n,r){var u=0;function l(i,o,a,s){return function(){var n=this,r=arguments,e=function(){var e,t;if(!(i<u)){if((e=a.apply(n,r))===o.promise())throw new TypeError("Thenable self-resolution");t=e&&("object"==typeof e||"function"==typeof e)&&e.then,m(t)?s?t.call(e,l(u,o,R,s),l(u,o,M,s)):(u++,t.call(e,l(u,o,R,s),l(u,o,M,s),l(u,o,R,o.notifyWith))):(a!==R&&(n=void 0,r=[e]),(s||o.resolveWith)(n,r))}},t=s?e:function(){try{e()}catch(e){S.Deferred.exceptionHook&&S.Deferred.exceptionHook(e,t.stackTrace),u<=i+1&&(a!==M&&(n=void 0,r=[e]),o.rejectWith(n,r))}};i?t():(S.Deferred.getStackHook&&(t.stackTrace=S.Deferred.getStackHook()),C.setTimeout(t))}}return S.Deferred(function(e){o[0][3].add(l(0,e,m(r)?r:R,e.notifyWith)),o[1][3].add(l(0,e,m(t)?t:R)),o[2][3].add(l(0,e,m(n)?n:M))}).promise()},promise:function(e){return null!=e?S.extend(e,a):a}},s={};return S.each(o,function(e,t){var n=t[2],r=t[5];a[t[1]]=n.add,r&&n.add(function(){i=r},o[3-e][2].disable,o[3-e][3].disable,o[0][2].lock,o[0][3].lock),n.add(t[3].fire),s[t[0]]=function(){return s[t[0]+"With"](this===s?void 0:this,arguments),this},s[t[0]+"With"]=n.fireWith}),a.promise(s),e&&e.call(s,s),s},when:function(e){var n=arguments.length,t=n,r=Array(t),i=s.call(arguments),o=S.Deferred(),a=function(t){return function(e){r[t]=this,i[t]=1<arguments.length?s.call(arguments):e,--n||o.resolveWith(r,i)}};if(n<=1&&(I(e,o.done(a(t)).resolve,o.reject,!n),"pending"===o.state()||m(i[t]&&i[t].then)))return o.then();while(t--)I(i[t],a(t),o.reject);return o.promise()}});var W=/^(Eval|Internal|Range|Reference|Syntax|Type|URI)Error$/;S.Deferred.exceptionHook=function(e,t){C.console&&C.console.warn&&e&&W.test(e.name)&&C.console.warn("jQuery.Deferred exception: "+e.message,e.stack,t)},S.readyException=function(e){C.setTimeout(function(){throw e})};var F=S.Deferred();function B(){E.removeEventListener("DOMContentLoaded",B),C.removeEventListener("load",B),S.ready()}S.fn.ready=function(e){return F.then(e)["catch"](function(e){S.readyException(e)}),this},S.extend({isReady:!1,readyWait:1,ready:function(e){(!0===e?--S.readyWait:S.isReady)||(S.isReady=!0)!==e&&0<--S.readyWait||F.resolveWith(E,[S])}}),S.ready.then=F.then,"complete"===E.readyState||"loading"!==E.readyState&&!E.documentElement.doScroll?C.setTimeout(S.ready):(E.addEventListener("DOMContentLoaded",B),C.addEventListener("load",B));var $=function(e,t,n,r,i,o,a){var s=0,u=e.length,l=null==n;if("object"===w(n))for(s in i=!0,n)$(e,t,s,n[s],!0,o,a);else if(void 0!==r&&(i=!0,m(r)||(a=!0),l&&(a?(t.call(e,r),t=null):(l=t,t=function(e,t,n){return l.call(S(e),n)})),t))for(;s<u;s++)t(e[s],n,a?r:r.call(e[s],s,t(e[s],n)));return i?e:l?t.call(e):u?t(e[0],n):o},_=/^-ms-/,z=/-([a-z])/g;function U(e,t){return t.toUpperCase()}function X(e){return e.replace(_,"ms-").replace(z,U)}var V=function(e){return 1===e.nodeType||9===e.nodeType||!+e.nodeType};function G(){this.expando=S.expando+G.uid++}G.uid=1,G.prototype={cache:function(e){var t=e[this.expando];return t||(t={},V(e)&&(e.nodeType?e[this.expando]=t:Object.defineProperty(e,this.expando,{value:t,configurable:!0}))),t},set:function(e,t,n){var r,i=this.cache(e);if("string"==typeof t)i[X(t)]=n;else for(r in t)i[X(r)]=t[r];return i},get:function(e,t){return void 0===t?this.cache(e):e[this.expando]&&e[this.expando][X(t)]},access:function(e,t,n){return void 0===t||t&&"string"==typeof t&&void 0===n?this.get(e,t):(this.set(e,t,n),void 0!==n?n:t)},remove:function(e,t){var n,r=e[this.expando];if(void 0!==r){if(void 0!==t){n=(t=Array.isArray(t)?t.map(X):(t=X(t))in r?[t]:t.match(P)||[]).length;while(n--)delete r[t[n]]}(void 0===t||S.isEmptyObject(r))&&(e.nodeType?e[this.expando]=void 0:delete e[this.expando])}},hasData:function(e){var t=e[this.expando];return void 0!==t&&!S.isEmptyObject(t)}};var Y=new G,Q=new G,J=/^(?:\{[\w\W]*\}|\[[\w\W]*\])$/,K=/[A-Z]/g;function Z(e,t,n){var r,i;if(void 0===n&&1===e.nodeType)if(r="data-"+t.replace(K,"-$&").toLowerCase(),"string"==typeof(n=e.getAttribute(r))){try{n="true"===(i=n)||"false"!==i&&("null"===i?null:i===+i+""?+i:J.test(i)?JSON.parse(i):i)}catch(e){}Q.set(e,t,n)}else n=void 0;return n}S.extend({hasData:function(e){return Q.hasData(e)||Y.hasData(e)},data:function(e,t,n){return Q.access(e,t,n)},removeData:function(e,t){Q.remove(e,t)},_data:function(e,t,n){return Y.access(e,t,n)},_removeData:function(e,t){Y.remove(e,t)}}),S.fn.extend({data:function(n,e){var t,r,i,o=this[0],a=o&&o.attributes;if(void 0===n){if(this.length&&(i=Q.get(o),1===o.nodeType&&!Y.get(o,"hasDataAttrs"))){t=a.length;while(t--)a[t]&&0===(r=a[t].name).indexOf("data-")&&(r=X(r.slice(5)),Z(o,r,i[r]));Y.set(o,"hasDataAttrs",!0)}return i}return"object"==typeof n?this.each(function(){Q.set(this,n)}):$(this,function(e){var t;if(o&&void 0===e)return void 0!==(t=Q.get(o,n))?t:void 0!==(t=Z(o,n))?t:void 0;this.each(function(){Q.set(this,n,e)})},null,e,1<arguments.length,null,!0)},removeData:function(e){return this.each(function(){Q.remove(this,e)})}}),S.extend({queue:function(e,t,n){var r;if(e)return t=(t||"fx")+"queue",r=Y.get(e,t),n&&(!r||Array.isArray(n)?r=Y.access(e,t,S.makeArray(n)):r.push(n)),r||[]},dequeue:function(e,t){t=t||"fx";var n=S.queue(e,t),r=n.length,i=n.shift(),o=S._queueHooks(e,t);"inprogress"===i&&(i=n.shift(),r--),i&&("fx"===t&&n.unshift("inprogress"),delete o.stop,i.call(e,function(){S.dequeue(e,t)},o)),!r&&o&&o.empty.fire()},_queueHooks:function(e,t){var n=t+"queueHooks";return Y.get(e,n)||Y.access(e,n,{empty:S.Callbacks("once memory").add(function(){Y.remove(e,[t+"queue",n])})})}}),S.fn.extend({queue:function(t,n){var e=2;return"string"!=typeof t&&(n=t,t="fx",e--),arguments.length<e?S.queue(this[0],t):void 0===n?this:this.each(function(){var e=S.queue(this,t,n);S._queueHooks(this,t),"fx"===t&&"inprogress"!==e[0]&&S.dequeue(this,t)})},dequeue:function(e){return this.each(function(){S.dequeue(this,e)})},clearQueue:function(e){return this.queue(e||"fx",[])},promise:function(e,t){var n,r=1,i=S.Deferred(),o=this,a=this.length,s=function(){--r||i.resolveWith(o,[o])};"string"!=typeof e&&(t=e,e=void 0),e=e||"fx";while(a--)(n=Y.get(o[a],e+"queueHooks"))&&n.empty&&(r++,n.empty.add(s));return s(),i.promise(t)}});var ee=/[+-]?(?:\d*\.|)\d+(?:[eE][+-]?\d+|)/.source,te=new RegExp("^(?:([+-])=|)("+ee+")([a-z%]*)$","i"),ne=["Top","Right","Bottom","Left"],re=E.documentElement,ie=function(e){return S.contains(e.ownerDocument,e)},oe={composed:!0};re.getRootNode&&(ie=function(e){return S.contains(e.ownerDocument,e)||e.getRootNode(oe)===e.ownerDocument});var ae=function(e,t){return"none"===(e=t||e).style.display||""===e.style.display&&ie(e)&&"none"===S.css(e,"display")};function se(e,t,n,r){var i,o,a=20,s=r?function(){return r.cur()}:function(){return S.css(e,t,"")},u=s(),l=n&&n[3]||(S.cssNumber[t]?"":"px"),c=e.nodeType&&(S.cssNumber[t]||"px"!==l&&+u)&&te.exec(S.css(e,t));if(c&&c[3]!==l){u/=2,l=l||c[3],c=+u||1;while(a--)S.style(e,t,c+l),(1-o)*(1-(o=s()/u||.5))<=0&&(a=0),c/=o;c*=2,S.style(e,t,c+l),n=n||[]}return n&&(c=+c||+u||0,i=n[1]?c+(n[1]+1)*n[2]:+n[2],r&&(r.unit=l,r.start=c,r.end=i)),i}var ue={};function le(e,t){for(var n,r,i,o,a,s,u,l=[],c=0,f=e.length;c<f;c++)(r=e[c]).style&&(n=r.style.display,t?("none"===n&&(l[c]=Y.get(r,"display")||null,l[c]||(r.style.display="")),""===r.style.display&&ae(r)&&(l[c]=(u=a=o=void 0,a=(i=r).ownerDocument,s=i.nodeName,(u=ue[s])||(o=a.body.appendChild(a.createElement(s)),u=S.css(o,"display"),o.parentNode.removeChild(o),"none"===u&&(u="block"),ue[s]=u)))):"none"!==n&&(l[c]="none",Y.set(r,"display",n)));for(c=0;c<f;c++)null!=l[c]&&(e[c].style.display=l[c]);return e}S.fn.extend({show:function(){return le(this,!0)},hide:function(){return le(this)},toggle:function(e){return"boolean"==typeof e?e?this.show():this.hide():this.each(function(){ae(this)?S(this).show():S(this).hide()})}});var ce,fe,pe=/^(?:checkbox|radio)$/i,de=/<([a-z][^\/\0>\x20\t\r\n\f]*)/i,he=/^$|^module$|\/(?:java|ecma)script/i;ce=E.createDocumentFragment().appendChild(E.createElement("div")),(fe=E.createElement("input")).setAttribute("type","radio"),fe.setAttribute("checked","checked"),fe.setAttribute("name","t"),ce.appendChild(fe),y.checkClone=ce.cloneNode(!0).cloneNode(!0).lastChild.checked,ce.innerHTML="<textarea>x</textarea>",y.noCloneChecked=!!ce.cloneNode(!0).lastChild.defaultValue,ce.innerHTML="<option></option>",y.option=!!ce.lastChild;var ge={thead:[1,"<table>","</table>"],col:[2,"<table><colgroup>","</colgroup></table>"],tr:[2,"<table><tbody>","</tbody></table>"],td:[3,"<table><tbody><tr>","</tr></tbody></table>"],_default:[0,"",""]};function ve(e,t){var n;return n="undefined"!=typeof e.getElementsByTagName?e.getElementsByTagName(t||"*"):"undefined"!=typeof e.querySelectorAll?e.querySelectorAll(t||"*"):[],void 0===t||t&&A(e,t)?S.merge([e],n):n}function ye(e,t){for(var n=0,r=e.length;n<r;n++)Y.set(e[n],"globalEval",!t||Y.get(t[n],"globalEval"))}ge.tbody=ge.tfoot=ge.colgroup=ge.caption=ge.thead,ge.th=ge.td,y.option||(ge.optgroup=ge.option=[1,"<select multiple='multiple'>","</select>"]);var me=/<|&#?\w+;/;function xe(e,t,n,r,i){for(var o,a,s,u,l,c,f=t.createDocumentFragment(),p=[],d=0,h=e.length;d<h;d++)if((o=e[d])||0===o)if("object"===w(o))S.merge(p,o.nodeType?[o]:o);else if(me.test(o)){a=a||f.appendChild(t.createElement("div")),s=(de.exec(o)||["",""])[1].toLowerCase(),u=ge[s]||ge._default,a.innerHTML=u[1]+S.htmlPrefilter(o)+u[2],c=u[0];while(c--)a=a.lastChild;S.merge(p,a.childNodes),(a=f.firstChild).textContent=""}else p.push(t.createTextNode(o));f.textContent="",d=0;while(o=p[d++])if(r&&-1<S.inArray(o,r))i&&i.push(o);else if(l=ie(o),a=ve(f.appendChild(o),"script"),l&&ye(a),n){c=0;while(o=a[c++])he.test(o.type||"")&&n.push(o)}return f}var be=/^([^.]*)(?:\.(.+)|)/;function we(){return!0}function Te(){return!1}function Ce(e,t){return e===function(){try{return E.activeElement}catch(e){}}()==("focus"===t)}function Ee(e,t,n,r,i,o){var a,s;if("object"==typeof t){for(s in"string"!=typeof n&&(r=r||n,n=void 0),t)Ee(e,s,n,r,t[s],o);return e}if(null==r&&null==i?(i=n,r=n=void 0):null==i&&("string"==typeof n?(i=r,r=void 0):(i=r,r=n,n=void 0)),!1===i)i=Te;else if(!i)return e;return 1===o&&(a=i,(i=function(e){return S().off(e),a.apply(this,arguments)}).guid=a.guid||(a.guid=S.guid++)),e.each(function(){S.event.add(this,t,i,r,n)})}function Se(e,i,o){o?(Y.set(e,i,!1),S.event.add(e,i,{namespace:!1,handler:function(e){var t,n,r=Y.get(this,i);if(1&e.isTrigger&&this[i]){if(r.length)(S.event.special[i]||{}).delegateType&&e.stopPropagation();else if(r=s.call(arguments),Y.set(this,i,r),t=o(this,i),this[i](),r!==(n=Y.get(this,i))||t?Y.set(this,i,!1):n={},r!==n)return e.stopImmediatePropagation(),e.preventDefault(),n&&n.value}else r.length&&(Y.set(this,i,{value:S.event.trigger(S.extend(r[0],S.Event.prototype),r.slice(1),this)}),e.stopImmediatePropagation())}})):void 0===Y.get(e,i)&&S.event.add(e,i,we)}S.event={global:{},add:function(t,e,n,r,i){var o,a,s,u,l,c,f,p,d,h,g,v=Y.get(t);if(V(t)){n.handler&&(n=(o=n).handler,i=o.selector),i&&S.find.matchesSelector(re,i),n.guid||(n.guid=S.guid++),(u=v.events)||(u=v.events=Object.create(null)),(a=v.handle)||(a=v.handle=function(e){return"undefined"!=typeof S&&S.event.triggered!==e.type?S.event.dispatch.apply(t,arguments):void 0}),l=(e=(e||"").match(P)||[""]).length;while(l--)d=g=(s=be.exec(e[l])||[])[1],h=(s[2]||"").split(".").sort(),d&&(f=S.event.special[d]||{},d=(i?f.delegateType:f.bindType)||d,f=S.event.special[d]||{},c=S.extend({type:d,origType:g,data:r,handler:n,guid:n.guid,selector:i,needsContext:i&&S.expr.match.needsContext.test(i),namespace:h.join(".")},o),(p=u[d])||((p=u[d]=[]).delegateCount=0,f.setup&&!1!==f.setup.call(t,r,h,a)||t.addEventListener&&t.addEventListener(d,a)),f.add&&(f.add.call(t,c),c.handler.guid||(c.handler.guid=n.guid)),i?p.splice(p.delegateCount++,0,c):p.push(c),S.event.global[d]=!0)}},remove:function(e,t,n,r,i){var o,a,s,u,l,c,f,p,d,h,g,v=Y.hasData(e)&&Y.get(e);if(v&&(u=v.events)){l=(t=(t||"").match(P)||[""]).length;while(l--)if(d=g=(s=be.exec(t[l])||[])[1],h=(s[2]||"").split(".").sort(),d){f=S.event.special[d]||{},p=u[d=(r?f.delegateType:f.bindType)||d]||[],s=s[2]&&new RegExp("(^|\\.)"+h.join("\\.(?:.*\\.|)")+"(\\.|$)"),a=o=p.length;while(o--)c=p[o],!i&&g!==c.origType||n&&n.guid!==c.guid||s&&!s.test(c.namespace)||r&&r!==c.selector&&("**"!==r||!c.selector)||(p.splice(o,1),c.selector&&p.delegateCount--,f.remove&&f.remove.call(e,c));a&&!p.length&&(f.teardown&&!1!==f.teardown.call(e,h,v.handle)||S.removeEvent(e,d,v.handle),delete u[d])}else for(d in u)S.event.remove(e,d+t[l],n,r,!0);S.isEmptyObject(u)&&Y.remove(e,"handle events")}},dispatch:function(e){var t,n,r,i,o,a,s=new Array(arguments.length),u=S.event.fix(e),l=(Y.get(this,"events")||Object.create(null))[u.type]||[],c=S.event.special[u.type]||{};for(s[0]=u,t=1;t<arguments.length;t++)s[t]=arguments[t];if(u.delegateTarget=this,!c.preDispatch||!1!==c.preDispatch.call(this,u)){a=S.event.handlers.call(this,u,l),t=0;while((i=a[t++])&&!u.isPropagationStopped()){u.currentTarget=i.elem,n=0;while((o=i.handlers[n++])&&!u.isImmediatePropagationStopped())u.rnamespace&&!1!==o.namespace&&!u.rnamespace.test(o.namespace)||(u.handleObj=o,u.data=o.data,void 0!==(r=((S.event.special[o.origType]||{}).handle||o.handler).apply(i.elem,s))&&!1===(u.result=r)&&(u.preventDefault(),u.stopPropagation()))}return c.postDispatch&&c.postDispatch.call(this,u),u.result}},handlers:function(e,t){var n,r,i,o,a,s=[],u=t.delegateCount,l=e.target;if(u&&l.nodeType&&!("click"===e.type&&1<=e.button))for(;l!==this;l=l.parentNode||this)if(1===l.nodeType&&("click"!==e.type||!0!==l.disabled)){for(o=[],a={},n=0;n<u;n++)void 0===a[i=(r=t[n]).selector+" "]&&(a[i]=r.needsContext?-1<S(i,this).index(l):S.find(i,this,null,[l]).length),a[i]&&o.push(r);o.length&&s.push({elem:l,handlers:o})}return l=this,u<t.length&&s.push({elem:l,handlers:t.slice(u)}),s},addProp:function(t,e){Object.defineProperty(S.Event.prototype,t,{enumerable:!0,configurable:!0,get:m(e)?function(){if(this.originalEvent)return e(this.originalEvent)}:function(){if(this.originalEvent)return this.originalEvent[t]},set:function(e){Object.defineProperty(this,t,{enumerable:!0,configurable:!0,writable:!0,value:e})}})},fix:function(e){return e[S.expando]?e:new S.Event(e)},special:{load:{noBubble:!0},click:{setup:function(e){var t=this||e;return pe.test(t.type)&&t.click&&A(t,"input")&&Se(t,"click",we),!1},trigger:function(e){var t=this||e;return pe.test(t.type)&&t.click&&A(t,"input")&&Se(t,"click"),!0},_default:function(e){var t=e.target;return pe.test(t.type)&&t.click&&A(t,"input")&&Y.get(t,"click")||A(t,"a")}},beforeunload:{postDispatch:function(e){void 0!==e.result&&e.originalEvent&&(e.originalEvent.returnValue=e.result)}}}},S.removeEvent=function(e,t,n){e.removeEventListener&&e.removeEventListener(t,n)},S.Event=function(e,t){if(!(this instanceof S.Event))return new S.Event(e,t);e&&e.type?(this.originalEvent=e,this.type=e.type,this.isDefaultPrevented=e.defaultPrevented||void 0===e.defaultPrevented&&!1===e.returnValue?we:Te,this.target=e.target&&3===e.target.nodeType?e.target.parentNode:e.target,this.currentTarget=e.currentTarget,this.relatedTarget=e.relatedTarget):this.type=e,t&&S.extend(this,t),this.timeStamp=e&&e.timeStamp||Date.now(),this[S.expando]=!0},S.Event.prototype={constructor:S.Event,isDefaultPrevented:Te,isPropagationStopped:Te,isImmediatePropagationStopped:Te,isSimulated:!1,preventDefault:function(){var e=this.originalEvent;this.isDefaultPrevented=we,e&&!this.isSimulated&&e.preventDefault()},stopPropagation:function(){var e=this.originalEvent;this.isPropagationStopped=we,e&&!this.isSimulated&&e.stopPropagation()},stopImmediatePropagation:function(){var e=this.originalEvent;this.isImmediatePropagationStopped=we,e&&!this.isSimulated&&e.stopImmediatePropagation(),this.stopPropagation()}},S.each({altKey:!0,bubbles:!0,cancelable:!0,changedTouches:!0,ctrlKey:!0,detail:!0,eventPhase:!0,metaKey:!0,pageX:!0,pageY:!0,shiftKey:!0,view:!0,"char":!0,code:!0,charCode:!0,key:!0,keyCode:!0,button:!0,buttons:!0,clientX:!0,clientY:!0,offsetX:!0,offsetY:!0,pointerId:!0,pointerType:!0,screenX:!0,screenY:!0,targetTouches:!0,toElement:!0,touches:!0,which:!0},S.event.addProp),S.each({focus:"focusin",blur:"focusout"},function(e,t){S.event.special[e]={setup:function(){return Se(this,e,Ce),!1},trigger:function(){return Se(this,e),!0},_default:function(){return!0},delegateType:t}}),S.each({mouseenter:"mouseover",mouseleave:"mouseout",pointerenter:"pointerover",pointerleave:"pointerout"},function(e,i){S.event.special[e]={delegateType:i,bindType:i,handle:function(e){var t,n=e.relatedTarget,r=e.handleObj;return n&&(n===this||S.contains(this,n))||(e.type=r.origType,t=r.handler.apply(this,arguments),e.type=i),t}}}),S.fn.extend({on:function(e,t,n,r){return Ee(this,e,t,n,r)},one:function(e,t,n,r){return Ee(this,e,t,n,r,1)},off:function(e,t,n){var r,i;if(e&&e.preventDefault&&e.handleObj)return r=e.handleObj,S(e.delegateTarget).off(r.namespace?r.origType+"."+r.namespace:r.origType,r.selector,r.handler),this;if("object"==typeof e){for(i in e)this.off(i,t,e[i]);return this}return!1!==t&&"function"!=typeof t||(n=t,t=void 0),!1===n&&(n=Te),this.each(function(){S.event.remove(this,e,n,t)})}});var ke=/<script|<style|<link/i,Ae=/checked\s*(?:[^=]|=\s*.checked.)/i,Ne=/^\s*<!(?:\[CDATA\[|--)|(?:\]\]|--)>\s*$/g;function je(e,t){return A(e,"table")&&A(11!==t.nodeType?t:t.firstChild,"tr")&&S(e).children("tbody")[0]||e}function De(e){return e.type=(null!==e.getAttribute("type"))+"/"+e.type,e}function qe(e){return"true/"===(e.type||"").slice(0,5)?e.type=e.type.slice(5):e.removeAttribute("type"),e}function Le(e,t){var n,r,i,o,a,s;if(1===t.nodeType){if(Y.hasData(e)&&(s=Y.get(e).events))for(i in Y.remove(t,"handle events"),s)for(n=0,r=s[i].length;n<r;n++)S.event.add(t,i,s[i][n]);Q.hasData(e)&&(o=Q.access(e),a=S.extend({},o),Q.set(t,a))}}function He(n,r,i,o){r=g(r);var e,t,a,s,u,l,c=0,f=n.length,p=f-1,d=r[0],h=m(d);if(h||1<f&&"string"==typeof d&&!y.checkClone&&Ae.test(d))return n.each(function(e){var t=n.eq(e);h&&(r[0]=d.call(this,e,t.html())),He(t,r,i,o)});if(f&&(t=(e=xe(r,n[0].ownerDocument,!1,n,o)).firstChild,1===e.childNodes.length&&(e=t),t||o)){for(s=(a=S.map(ve(e,"script"),De)).length;c<f;c++)u=e,c!==p&&(u=S.clone(u,!0,!0),s&&S.merge(a,ve(u,"script"))),i.call(n[c],u,c);if(s)for(l=a[a.length-1].ownerDocument,S.map(a,qe),c=0;c<s;c++)u=a[c],he.test(u.type||"")&&!Y.access(u,"globalEval")&&S.contains(l,u)&&(u.src&&"module"!==(u.type||"").toLowerCase()?S._evalUrl&&!u.noModule&&S._evalUrl(u.src,{nonce:u.nonce||u.getAttribute("nonce")},l):b(u.textContent.replace(Ne,""),u,l))}return n}function Oe(e,t,n){for(var r,i=t?S.filter(t,e):e,o=0;null!=(r=i[o]);o++)n||1!==r.nodeType||S.cleanData(ve(r)),r.parentNode&&(n&&ie(r)&&ye(ve(r,"script")),r.parentNode.removeChild(r));return e}S.extend({htmlPrefilter:function(e){return e},clone:function(e,t,n){var r,i,o,a,s,u,l,c=e.cloneNode(!0),f=ie(e);if(!(y.noCloneChecked||1!==e.nodeType&&11!==e.nodeType||S.isXMLDoc(e)))for(a=ve(c),r=0,i=(o=ve(e)).length;r<i;r++)s=o[r],u=a[r],void 0,"input"===(l=u.nodeName.toLowerCase())&&pe.test(s.type)?u.checked=s.checked:"input"!==l&&"textarea"!==l||(u.defaultValue=s.defaultValue);if(t)if(n)for(o=o||ve(e),a=a||ve(c),r=0,i=o.length;r<i;r++)Le(o[r],a[r]);else Le(e,c);return 0<(a=ve(c,"script")).length&&ye(a,!f&&ve(e,"script")),c},cleanData:function(e){for(var t,n,r,i=S.event.special,o=0;void 0!==(n=e[o]);o++)if(V(n)){if(t=n[Y.expando]){if(t.events)for(r in t.events)i[r]?S.event.remove(n,r):S.removeEvent(n,r,t.handle);n[Y.expando]=void 0}n[Q.expando]&&(n[Q.expando]=void 0)}}}),S.fn.extend({detach:function(e){return Oe(this,e,!0)},remove:function(e){return Oe(this,e)},text:function(e){return $(this,function(e){return void 0===e?S.text(this):this.empty().each(function(){1!==this.nodeType&&11!==this.nodeType&&9!==this.nodeType||(this.textContent=e)})},null,e,arguments.length)},append:function(){return He(this,arguments,function(e){1!==this.nodeType&&11!==this.nodeType&&9!==this.nodeType||je(this,e).appendChild(e)})},prepend:function(){return He(this,arguments,function(e){if(1===this.nodeType||11===this.nodeType||9===this.nodeType){var t=je(this,e);t.insertBefore(e,t.firstChild)}})},before:function(){return He(this,arguments,function(e){this.parentNode&&this.parentNode.insertBefore(e,this)})},after:function(){return He(this,arguments,function(e){this.parentNode&&this.parentNode.insertBefore(e,this.nextSibling)})},empty:function(){for(var e,t=0;null!=(e=this[t]);t++)1===e.nodeType&&(S.cleanData(ve(e,!1)),e.textContent="");return this},clone:function(e,t){return e=null!=e&&e,t=null==t?e:t,this.map(function(){return S.clone(this,e,t)})},html:function(e){return $(this,function(e){var t=this[0]||{},n=0,r=this.length;if(void 0===e&&1===t.nodeType)return t.innerHTML;if("string"==typeof e&&!ke.test(e)&&!ge[(de.exec(e)||["",""])[1].toLowerCase()]){e=S.htmlPrefilter(e);try{for(;n<r;n++)1===(t=this[n]||{}).nodeType&&(S.cleanData(ve(t,!1)),t.innerHTML=e);t=0}catch(e){}}t&&this.empty().append(e)},null,e,arguments.length)},replaceWith:function(){var n=[];return He(this,arguments,function(e){var t=this.parentNode;S.inArray(this,n)<0&&(S.cleanData(ve(this)),t&&t.replaceChild(e,this))},n)}}),S.each({appendTo:"append",prependTo:"prepend",insertBefore:"before",insertAfter:"after",replaceAll:"replaceWith"},function(e,a){S.fn[e]=function(e){for(var t,n=[],r=S(e),i=r.length-1,o=0;o<=i;o++)t=o===i?this:this.clone(!0),S(r[o])[a](t),u.apply(n,t.get());return this.pushStack(n)}});var Pe=new RegExp("^("+ee+")(?!px)[a-z%]+$","i"),Re=function(e){var t=e.ownerDocument.defaultView;return t&&t.opener||(t=C),t.getComputedStyle(e)},Me=function(e,t,n){var r,i,o={};for(i in t)o[i]=e.style[i],e.style[i]=t[i];for(i in r=n.call(e),t)e.style[i]=o[i];return r},Ie=new RegExp(ne.join("|"),"i");function We(e,t,n){var r,i,o,a,s=e.style;return(n=n||Re(e))&&(""!==(a=n.getPropertyValue(t)||n[t])||ie(e)||(a=S.style(e,t)),!y.pixelBoxStyles()&&Pe.test(a)&&Ie.test(t)&&(r=s.width,i=s.minWidth,o=s.maxWidth,s.minWidth=s.maxWidth=s.width=a,a=n.width,s.width=r,s.minWidth=i,s.maxWidth=o)),void 0!==a?a+"":a}function Fe(e,t){return{get:function(){if(!e())return(this.get=t).apply(this,arguments);delete this.get}}}!function(){function e(){if(l){u.style.cssText="position:absolute;left:-11111px;width:60px;margin-top:1px;padding:0;border:0",l.style.cssText="position:relative;display:block;box-sizing:border-box;overflow:scroll;margin:auto;border:1px;padding:1px;width:60%;top:1%",re.appendChild(u).appendChild(l);var e=C.getComputedStyle(l);n="1%"!==e.top,s=12===t(e.marginLeft),l.style.right="60%",o=36===t(e.right),r=36===t(e.width),l.style.position="absolute",i=12===t(l.offsetWidth/3),re.removeChild(u),l=null}}function t(e){return Math.round(parseFloat(e))}var n,r,i,o,a,s,u=E.createElement("div"),l=E.createElement("div");l.style&&(l.style.backgroundClip="content-box",l.cloneNode(!0).style.backgroundClip="",y.clearCloneStyle="content-box"===l.style.backgroundClip,S.extend(y,{boxSizingReliable:function(){return e(),r},pixelBoxStyles:function(){return e(),o},pixelPosition:function(){return e(),n},reliableMarginLeft:function(){return e(),s},scrollboxSize:function(){return e(),i},reliableTrDimensions:function(){var e,t,n,r;return null==a&&(e=E.createElement("table"),t=E.createElement("tr"),n=E.createElement("div"),e.style.cssText="position:absolute;left:-11111px;border-collapse:separate",t.style.cssText="border:1px solid",t.style.height="1px",n.style.height="9px",n.style.display="block",re.appendChild(e).appendChild(t).appendChild(n),r=C.getComputedStyle(t),a=parseInt(r.height,10)+parseInt(r.borderTopWidth,10)+parseInt(r.borderBottomWidth,10)===t.offsetHeight,re.removeChild(e)),a}}))}();var Be=["Webkit","Moz","ms"],$e=E.createElement("div").style,_e={};function ze(e){var t=S.cssProps[e]||_e[e];return t||(e in $e?e:_e[e]=function(e){var t=e[0].toUpperCase()+e.slice(1),n=Be.length;while(n--)if((e=Be[n]+t)in $e)return e}(e)||e)}var Ue=/^(none|table(?!-c[ea]).+)/,Xe=/^--/,Ve={position:"absolute",visibility:"hidden",display:"block"},Ge={letterSpacing:"0",fontWeight:"400"};function Ye(e,t,n){var r=te.exec(t);return r?Math.max(0,r[2]-(n||0))+(r[3]||"px"):t}function Qe(e,t,n,r,i,o){var a="width"===t?1:0,s=0,u=0;if(n===(r?"border":"content"))return 0;for(;a<4;a+=2)"margin"===n&&(u+=S.css(e,n+ne[a],!0,i)),r?("content"===n&&(u-=S.css(e,"padding"+ne[a],!0,i)),"margin"!==n&&(u-=S.css(e,"border"+ne[a]+"Width",!0,i))):(u+=S.css(e,"padding"+ne[a],!0,i),"padding"!==n?u+=S.css(e,"border"+ne[a]+"Width",!0,i):s+=S.css(e,"border"+ne[a]+"Width",!0,i));return!r&&0<=o&&(u+=Math.max(0,Math.ceil(e["offset"+t[0].toUpperCase()+t.slice(1)]-o-u-s-.5))||0),u}function Je(e,t,n){var r=Re(e),i=(!y.boxSizingReliable()||n)&&"border-box"===S.css(e,"boxSizing",!1,r),o=i,a=We(e,t,r),s="offset"+t[0].toUpperCase()+t.slice(1);if(Pe.test(a)){if(!n)return a;a="auto"}return(!y.boxSizingReliable()&&i||!y.reliableTrDimensions()&&A(e,"tr")||"auto"===a||!parseFloat(a)&&"inline"===S.css(e,"display",!1,r))&&e.getClientRects().length&&(i="border-box"===S.css(e,"boxSizing",!1,r),(o=s in e)&&(a=e[s])),(a=parseFloat(a)||0)+Qe(e,t,n||(i?"border":"content"),o,r,a)+"px"}function Ke(e,t,n,r,i){return new Ke.prototype.init(e,t,n,r,i)}S.extend({cssHooks:{opacity:{get:function(e,t){if(t){var n=We(e,"opacity");return""===n?"1":n}}}},cssNumber:{animationIterationCount:!0,columnCount:!0,fillOpacity:!0,flexGrow:!0,flexShrink:!0,fontWeight:!0,gridArea:!0,gridColumn:!0,gridColumnEnd:!0,gridColumnStart:!0,gridRow:!0,gridRowEnd:!0,gridRowStart:!0,lineHeight:!0,opacity:!0,order:!0,orphans:!0,widows:!0,zIndex:!0,zoom:!0},cssProps:{},style:function(e,t,n,r){if(e&&3!==e.nodeType&&8!==e.nodeType&&e.style){var i,o,a,s=X(t),u=Xe.test(t),l=e.style;if(u||(t=ze(s)),a=S.cssHooks[t]||S.cssHooks[s],void 0===n)return a&&"get"in a&&void 0!==(i=a.get(e,!1,r))?i:l[t];"string"===(o=typeof n)&&(i=te.exec(n))&&i[1]&&(n=se(e,t,i),o="number"),null!=n&&n==n&&("number"!==o||u||(n+=i&&i[3]||(S.cssNumber[s]?"":"px")),y.clearCloneStyle||""!==n||0!==t.indexOf("background")||(l[t]="inherit"),a&&"set"in a&&void 0===(n=a.set(e,n,r))||(u?l.setProperty(t,n):l[t]=n))}},css:function(e,t,n,r){var i,o,a,s=X(t);return Xe.test(t)||(t=ze(s)),(a=S.cssHooks[t]||S.cssHooks[s])&&"get"in a&&(i=a.get(e,!0,n)),void 0===i&&(i=We(e,t,r)),"normal"===i&&t in Ge&&(i=Ge[t]),""===n||n?(o=parseFloat(i),!0===n||isFinite(o)?o||0:i):i}}),S.each(["height","width"],function(e,u){S.cssHooks[u]={get:function(e,t,n){if(t)return!Ue.test(S.css(e,"display"))||e.getClientRects().length&&e.getBoundingClientRect().width?Je(e,u,n):Me(e,Ve,function(){return Je(e,u,n)})},set:function(e,t,n){var r,i=Re(e),o=!y.scrollboxSize()&&"absolute"===i.position,a=(o||n)&&"border-box"===S.css(e,"boxSizing",!1,i),s=n?Qe(e,u,n,a,i):0;return a&&o&&(s-=Math.ceil(e["offset"+u[0].toUpperCase()+u.slice(1)]-parseFloat(i[u])-Qe(e,u,"border",!1,i)-.5)),s&&(r=te.exec(t))&&"px"!==(r[3]||"px")&&(e.style[u]=t,t=S.css(e,u)),Ye(0,t,s)}}}),S.cssHooks.marginLeft=Fe(y.reliableMarginLeft,function(e,t){if(t)return(parseFloat(We(e,"marginLeft"))||e.getBoundingClientRect().left-Me(e,{marginLeft:0},function(){return e.getBoundingClientRect().left}))+"px"}),S.each({margin:"",padding:"",border:"Width"},function(i,o){S.cssHooks[i+o]={expand:function(e){for(var t=0,n={},r="string"==typeof e?e.split(" "):[e];t<4;t++)n[i+ne[t]+o]=r[t]||r[t-2]||r[0];return n}},"margin"!==i&&(S.cssHooks[i+o].set=Ye)}),S.fn.extend({css:function(e,t){return $(this,function(e,t,n){var r,i,o={},a=0;if(Array.isArray(t)){for(r=Re(e),i=t.length;a<i;a++)o[t[a]]=S.css(e,t[a],!1,r);return o}return void 0!==n?S.style(e,t,n):S.css(e,t)},e,t,1<arguments.length)}}),((S.Tween=Ke).prototype={constructor:Ke,init:function(e,t,n,r,i,o){this.elem=e,this.prop=n,this.easing=i||S.easing._default,this.options=t,this.start=this.now=this.cur(),this.end=r,this.unit=o||(S.cssNumber[n]?"":"px")},cur:function(){var e=Ke.propHooks[this.prop];return e&&e.get?e.get(this):Ke.propHooks._default.get(this)},run:function(e){var t,n=Ke.propHooks[this.prop];return this.options.duration?this.pos=t=S.easing[this.easing](e,this.options.duration*e,0,1,this.options.duration):this.pos=t=e,this.now=(this.end-this.start)*t+this.start,this.options.step&&this.options.step.call(this.elem,this.now,this),n&&n.set?n.set(this):Ke.propHooks._default.set(this),this}}).init.prototype=Ke.prototype,(Ke.propHooks={_default:{get:function(e){var t;return 1!==e.elem.nodeType||null!=e.elem[e.prop]&&null==e.elem.style[e.prop]?e.elem[e.prop]:(t=S.css(e.elem,e.prop,""))&&"auto"!==t?t:0},set:function(e){S.fx.step[e.prop]?S.fx.step[e.prop](e):1!==e.elem.nodeType||!S.cssHooks[e.prop]&&null==e.elem.style[ze(e.prop)]?e.elem[e.prop]=e.now:S.style(e.elem,e.prop,e.now+e.unit)}}}).scrollTop=Ke.propHooks.scrollLeft={set:function(e){e.elem.nodeType&&e.elem.parentNode&&(e.elem[e.prop]=e.now)}},S.easing={linear:function(e){return e},swing:function(e){return.5-Math.cos(e*Math.PI)/2},_default:"swing"},S.fx=Ke.prototype.init,S.fx.step={};var Ze,et,tt,nt,rt=/^(?:toggle|show|hide)$/,it=/queueHooks$/;function ot(){et&&(!1===E.hidden&&C.requestAnimationFrame?C.requestAnimationFrame(ot):C.setTimeout(ot,S.fx.interval),S.fx.tick())}function at(){return C.setTimeout(function(){Ze=void 0}),Ze=Date.now()}function st(e,t){var n,r=0,i={height:e};for(t=t?1:0;r<4;r+=2-t)i["margin"+(n=ne[r])]=i["padding"+n]=e;return t&&(i.opacity=i.width=e),i}function ut(e,t,n){for(var r,i=(lt.tweeners[t]||[]).concat(lt.tweeners["*"]),o=0,a=i.length;o<a;o++)if(r=i[o].call(n,t,e))return r}function lt(o,e,t){var n,a,r=0,i=lt.prefilters.length,s=S.Deferred().always(function(){delete u.elem}),u=function(){if(a)return!1;for(var e=Ze||at(),t=Math.max(0,l.startTime+l.duration-e),n=1-(t/l.duration||0),r=0,i=l.tweens.length;r<i;r++)l.tweens[r].run(n);return s.notifyWith(o,[l,n,t]),n<1&&i?t:(i||s.notifyWith(o,[l,1,0]),s.resolveWith(o,[l]),!1)},l=s.promise({elem:o,props:S.extend({},e),opts:S.extend(!0,{specialEasing:{},easing:S.easing._default},t),originalProperties:e,originalOptions:t,startTime:Ze||at(),duration:t.duration,tweens:[],createTween:function(e,t){var n=S.Tween(o,l.opts,e,t,l.opts.specialEasing[e]||l.opts.easing);return l.tweens.push(n),n},stop:function(e){var t=0,n=e?l.tweens.length:0;if(a)return this;for(a=!0;t<n;t++)l.tweens[t].run(1);return e?(s.notifyWith(o,[l,1,0]),s.resolveWith(o,[l,e])):s.rejectWith(o,[l,e]),this}}),c=l.props;for(!function(e,t){var n,r,i,o,a;for(n in e)if(i=t[r=X(n)],o=e[n],Array.isArray(o)&&(i=o[1],o=e[n]=o[0]),n!==r&&(e[r]=o,delete e[n]),(a=S.cssHooks[r])&&"expand"in a)for(n in o=a.expand(o),delete e[r],o)n in e||(e[n]=o[n],t[n]=i);else t[r]=i}(c,l.opts.specialEasing);r<i;r++)if(n=lt.prefilters[r].call(l,o,c,l.opts))return m(n.stop)&&(S._queueHooks(l.elem,l.opts.queue).stop=n.stop.bind(n)),n;return S.map(c,ut,l),m(l.opts.start)&&l.opts.start.call(o,l),l.progress(l.opts.progress).done(l.opts.done,l.opts.complete).fail(l.opts.fail).always(l.opts.always),S.fx.timer(S.extend(u,{elem:o,anim:l,queue:l.opts.queue})),l}S.Animation=S.extend(lt,{tweeners:{"*":[function(e,t){var n=this.createTween(e,t);return se(n.elem,e,te.exec(t),n),n}]},tweener:function(e,t){m(e)?(t=e,e=["*"]):e=e.match(P);for(var n,r=0,i=e.length;r<i;r++)n=e[r],lt.tweeners[n]=lt.tweeners[n]||[],lt.tweeners[n].unshift(t)},prefilters:[function(e,t,n){var r,i,o,a,s,u,l,c,f="width"in t||"height"in t,p=this,d={},h=e.style,g=e.nodeType&&ae(e),v=Y.get(e,"fxshow");for(r in n.queue||(null==(a=S._queueHooks(e,"fx")).unqueued&&(a.unqueued=0,s=a.empty.fire,a.empty.fire=function(){a.unqueued||s()}),a.unqueued++,p.always(function(){p.always(function(){a.unqueued--,S.queue(e,"fx").length||a.empty.fire()})})),t)if(i=t[r],rt.test(i)){if(delete t[r],o=o||"toggle"===i,i===(g?"hide":"show")){if("show"!==i||!v||void 0===v[r])continue;g=!0}d[r]=v&&v[r]||S.style(e,r)}if((u=!S.isEmptyObject(t))||!S.isEmptyObject(d))for(r in f&&1===e.nodeType&&(n.overflow=[h.overflow,h.overflowX,h.overflowY],null==(l=v&&v.display)&&(l=Y.get(e,"display")),"none"===(c=S.css(e,"display"))&&(l?c=l:(le([e],!0),l=e.style.display||l,c=S.css(e,"display"),le([e]))),("inline"===c||"inline-block"===c&&null!=l)&&"none"===S.css(e,"float")&&(u||(p.done(function(){h.display=l}),null==l&&(c=h.display,l="none"===c?"":c)),h.display="inline-block")),n.overflow&&(h.overflow="hidden",p.always(function(){h.overflow=n.overflow[0],h.overflowX=n.overflow[1],h.overflowY=n.overflow[2]})),u=!1,d)u||(v?"hidden"in v&&(g=v.hidden):v=Y.access(e,"fxshow",{display:l}),o&&(v.hidden=!g),g&&le([e],!0),p.done(function(){for(r in g||le([e]),Y.remove(e,"fxshow"),d)S.style(e,r,d[r])})),u=ut(g?v[r]:0,r,p),r in v||(v[r]=u.start,g&&(u.end=u.start,u.start=0))}],prefilter:function(e,t){t?lt.prefilters.unshift(e):lt.prefilters.push(e)}}),S.speed=function(e,t,n){var r=e&&"object"==typeof e?S.extend({},e):{complete:n||!n&&t||m(e)&&e,duration:e,easing:n&&t||t&&!m(t)&&t};return S.fx.off?r.duration=0:"number"!=typeof r.duration&&(r.duration in S.fx.speeds?r.duration=S.fx.speeds[r.duration]:r.duration=S.fx.speeds._default),null!=r.queue&&!0!==r.queue||(r.queue="fx"),r.old=r.complete,r.complete=function(){m(r.old)&&r.old.call(this),r.queue&&S.dequeue(this,r.queue)},r},S.fn.extend({fadeTo:function(e,t,n,r){return this.filter(ae).css("opacity",0).show().end().animate({opacity:t},e,n,r)},animate:function(t,e,n,r){var i=S.isEmptyObject(t),o=S.speed(e,n,r),a=function(){var e=lt(this,S.extend({},t),o);(i||Y.get(this,"finish"))&&e.stop(!0)};return a.finish=a,i||!1===o.queue?this.each(a):this.queue(o.queue,a)},stop:function(i,e,o){var a=function(e){var t=e.stop;delete e.stop,t(o)};return"string"!=typeof i&&(o=e,e=i,i=void 0),e&&this.queue(i||"fx",[]),this.each(function(){var e=!0,t=null!=i&&i+"queueHooks",n=S.timers,r=Y.get(this);if(t)r[t]&&r[t].stop&&a(r[t]);else for(t in r)r[t]&&r[t].stop&&it.test(t)&&a(r[t]);for(t=n.length;t--;)n[t].elem!==this||null!=i&&n[t].queue!==i||(n[t].anim.stop(o),e=!1,n.splice(t,1));!e&&o||S.dequeue(this,i)})},finish:function(a){return!1!==a&&(a=a||"fx"),this.each(function(){var e,t=Y.get(this),n=t[a+"queue"],r=t[a+"queueHooks"],i=S.timers,o=n?n.length:0;for(t.finish=!0,S.queue(this,a,[]),r&&r.stop&&r.stop.call(this,!0),e=i.length;e--;)i[e].elem===this&&i[e].queue===a&&(i[e].anim.stop(!0),i.splice(e,1));for(e=0;e<o;e++)n[e]&&n[e].finish&&n[e].finish.call(this);delete t.finish})}}),S.each(["toggle","show","hide"],function(e,r){var i=S.fn[r];S.fn[r]=function(e,t,n){return null==e||"boolean"==typeof e?i.apply(this,arguments):this.animate(st(r,!0),e,t,n)}}),S.each({slideDown:st("show"),slideUp:st("hide"),slideToggle:st("toggle"),fadeIn:{opacity:"show"},fadeOut:{opacity:"hide"},fadeToggle:{opacity:"toggle"}},function(e,r){S.fn[e]=function(e,t,n){return this.animate(r,e,t,n)}}),S.timers=[],S.fx.tick=function(){var e,t=0,n=S.timers;for(Ze=Date.now();t<n.length;t++)(e=n[t])()||n[t]!==e||n.splice(t--,1);n.length||S.fx.stop(),Ze=void 0},S.fx.timer=function(e){S.timers.push(e),S.fx.start()},S.fx.interval=13,S.fx.start=function(){et||(et=!0,ot())},S.fx.stop=function(){et=null},S.fx.speeds={slow:600,fast:200,_default:400},S.fn.delay=function(r,e){return r=S.fx&&S.fx.speeds[r]||r,e=e||"fx",this.queue(e,function(e,t){var n=C.setTimeout(e,r);t.stop=function(){C.clearTimeout(n)}})},tt=E.createElement("input"),nt=E.createElement("select").appendChild(E.createElement("option")),tt.type="checkbox",y.checkOn=""!==tt.value,y.optSelected=nt.selected,(tt=E.createElement("input")).value="t",tt.type="radio",y.radioValue="t"===tt.value;var ct,ft=S.expr.attrHandle;S.fn.extend({attr:function(e,t){return $(this,S.attr,e,t,1<arguments.length)},removeAttr:function(e){return this.each(function(){S.removeAttr(this,e)})}}),S.extend({attr:function(e,t,n){var r,i,o=e.nodeType;if(3!==o&&8!==o&&2!==o)return"undefined"==typeof e.getAttribute?S.prop(e,t,n):(1===o&&S.isXMLDoc(e)||(i=S.attrHooks[t.toLowerCase()]||(S.expr.match.bool.test(t)?ct:void 0)),void 0!==n?null===n?void S.removeAttr(e,t):i&&"set"in i&&void 0!==(r=i.set(e,n,t))?r:(e.setAttribute(t,n+""),n):i&&"get"in i&&null!==(r=i.get(e,t))?r:null==(r=S.find.attr(e,t))?void 0:r)},attrHooks:{type:{set:function(e,t){if(!y.radioValue&&"radio"===t&&A(e,"input")){var n=e.value;return e.setAttribute("type",t),n&&(e.value=n),t}}}},removeAttr:function(e,t){var n,r=0,i=t&&t.match(P);if(i&&1===e.nodeType)while(n=i[r++])e.removeAttribute(n)}}),ct={set:function(e,t,n){return!1===t?S.removeAttr(e,n):e.setAttribute(n,n),n}},S.each(S.expr.match.bool.source.match(/\w+/g),function(e,t){var a=ft[t]||S.find.attr;ft[t]=function(e,t,n){var r,i,o=t.toLowerCase();return n||(i=ft[o],ft[o]=r,r=null!=a(e,t,n)?o:null,ft[o]=i),r}});var pt=/^(?:input|select|textarea|button)$/i,dt=/^(?:a|area)$/i;function ht(e){return(e.match(P)||[]).join(" ")}function gt(e){return e.getAttribute&&e.getAttribute("class")||""}function vt(e){return Array.isArray(e)?e:"string"==typeof e&&e.match(P)||[]}S.fn.extend({prop:function(e,t){return $(this,S.prop,e,t,1<arguments.length)},removeProp:function(e){return this.each(function(){delete this[S.propFix[e]||e]})}}),S.extend({prop:function(e,t,n){var r,i,o=e.nodeType;if(3!==o&&8!==o&&2!==o)return 1===o&&S.isXMLDoc(e)||(t=S.propFix[t]||t,i=S.propHooks[t]),void 0!==n?i&&"set"in i&&void 0!==(r=i.set(e,n,t))?r:e[t]=n:i&&"get"in i&&null!==(r=i.get(e,t))?r:e[t]},propHooks:{tabIndex:{get:function(e){var t=S.find.attr(e,"tabindex");return t?parseInt(t,10):pt.test(e.nodeName)||dt.test(e.nodeName)&&e.href?0:-1}}},propFix:{"for":"htmlFor","class":"className"}}),y.optSelected||(S.propHooks.selected={get:function(e){var t=e.parentNode;return t&&t.parentNode&&t.parentNode.selectedIndex,null},set:function(e){var t=e.parentNode;t&&(t.selectedIndex,t.parentNode&&t.parentNode.selectedIndex)}}),S.each(["tabIndex","readOnly","maxLength","cellSpacing","cellPadding","rowSpan","colSpan","useMap","frameBorder","contentEditable"],function(){S.propFix[this.toLowerCase()]=this}),S.fn.extend({addClass:function(t){var e,n,r,i,o,a,s,u=0;if(m(t))return this.each(function(e){S(this).addClass(t.call(this,e,gt(this)))});if((e=vt(t)).length)while(n=this[u++])if(i=gt(n),r=1===n.nodeType&&" "+ht(i)+" "){a=0;while(o=e[a++])r.indexOf(" "+o+" ")<0&&(r+=o+" ");i!==(s=ht(r))&&n.setAttribute("class",s)}return this},removeClass:function(t){var e,n,r,i,o,a,s,u=0;if(m(t))return this.each(function(e){S(this).removeClass(t.call(this,e,gt(this)))});if(!arguments.length)return this.attr("class","");if((e=vt(t)).length)while(n=this[u++])if(i=gt(n),r=1===n.nodeType&&" "+ht(i)+" "){a=0;while(o=e[a++])while(-1<r.indexOf(" "+o+" "))r=r.replace(" "+o+" "," ");i!==(s=ht(r))&&n.setAttribute("class",s)}return this},toggleClass:function(i,t){var o=typeof i,a="string"===o||Array.isArray(i);return"boolean"==typeof t&&a?t?this.addClass(i):this.removeClass(i):m(i)?this.each(function(e){S(this).toggleClass(i.call(this,e,gt(this),t),t)}):this.each(function(){var e,t,n,r;if(a){t=0,n=S(this),r=vt(i);while(e=r[t++])n.hasClass(e)?n.removeClass(e):n.addClass(e)}else void 0!==i&&"boolean"!==o||((e=gt(this))&&Y.set(this,"__className__",e),this.setAttribute&&this.setAttribute("class",e||!1===i?"":Y.get(this,"__className__")||""))})},hasClass:function(e){var t,n,r=0;t=" "+e+" ";while(n=this[r++])if(1===n.nodeType&&-1<(" "+ht(gt(n))+" ").indexOf(t))return!0;return!1}});var yt=/\r/g;S.fn.extend({val:function(n){var r,e,i,t=this[0];return arguments.length?(i=m(n),this.each(function(e){var t;1===this.nodeType&&(null==(t=i?n.call(this,e,S(this).val()):n)?t="":"number"==typeof t?t+="":Array.isArray(t)&&(t=S.map(t,function(e){return null==e?"":e+""})),(r=S.valHooks[this.type]||S.valHooks[this.nodeName.toLowerCase()])&&"set"in r&&void 0!==r.set(this,t,"value")||(this.value=t))})):t?(r=S.valHooks[t.type]||S.valHooks[t.nodeName.toLowerCase()])&&"get"in r&&void 0!==(e=r.get(t,"value"))?e:"string"==typeof(e=t.value)?e.replace(yt,""):null==e?"":e:void 0}}),S.extend({valHooks:{option:{get:function(e){var t=S.find.attr(e,"value");return null!=t?t:ht(S.text(e))}},select:{get:function(e){var t,n,r,i=e.options,o=e.selectedIndex,a="select-one"===e.type,s=a?null:[],u=a?o+1:i.length;for(r=o<0?u:a?o:0;r<u;r++)if(((n=i[r]).selected||r===o)&&!n.disabled&&(!n.parentNode.disabled||!A(n.parentNode,"optgroup"))){if(t=S(n).val(),a)return t;s.push(t)}return s},set:function(e,t){var n,r,i=e.options,o=S.makeArray(t),a=i.length;while(a--)((r=i[a]).selected=-1<S.inArray(S.valHooks.option.get(r),o))&&(n=!0);return n||(e.selectedIndex=-1),o}}}}),S.each(["radio","checkbox"],function(){S.valHooks[this]={set:function(e,t){if(Array.isArray(t))return e.checked=-1<S.inArray(S(e).val(),t)}},y.checkOn||(S.valHooks[this].get=function(e){return null===e.getAttribute("value")?"on":e.value})}),y.focusin="onfocusin"in C;var mt=/^(?:focusinfocus|focusoutblur)$/,xt=function(e){e.stopPropagation()};S.extend(S.event,{trigger:function(e,t,n,r){var i,o,a,s,u,l,c,f,p=[n||E],d=v.call(e,"type")?e.type:e,h=v.call(e,"namespace")?e.namespace.split("."):[];if(o=f=a=n=n||E,3!==n.nodeType&&8!==n.nodeType&&!mt.test(d+S.event.triggered)&&(-1<d.indexOf(".")&&(d=(h=d.split(".")).shift(),h.sort()),u=d.indexOf(":")<0&&"on"+d,(e=e[S.expando]?e:new S.Event(d,"object"==typeof e&&e)).isTrigger=r?2:3,e.namespace=h.join("."),e.rnamespace=e.namespace?new RegExp("(^|\\.)"+h.join("\\.(?:.*\\.|)")+"(\\.|$)"):null,e.result=void 0,e.target||(e.target=n),t=null==t?[e]:S.makeArray(t,[e]),c=S.event.special[d]||{},r||!c.trigger||!1!==c.trigger.apply(n,t))){if(!r&&!c.noBubble&&!x(n)){for(s=c.delegateType||d,mt.test(s+d)||(o=o.parentNode);o;o=o.parentNode)p.push(o),a=o;a===(n.ownerDocument||E)&&p.push(a.defaultView||a.parentWindow||C)}i=0;while((o=p[i++])&&!e.isPropagationStopped())f=o,e.type=1<i?s:c.bindType||d,(l=(Y.get(o,"events")||Object.create(null))[e.type]&&Y.get(o,"handle"))&&l.apply(o,t),(l=u&&o[u])&&l.apply&&V(o)&&(e.result=l.apply(o,t),!1===e.result&&e.preventDefault());return e.type=d,r||e.isDefaultPrevented()||c._default&&!1!==c._default.apply(p.pop(),t)||!V(n)||u&&m(n[d])&&!x(n)&&((a=n[u])&&(n[u]=null),S.event.triggered=d,e.isPropagationStopped()&&f.addEventListener(d,xt),n[d](),e.isPropagationStopped()&&f.removeEventListener(d,xt),S.event.triggered=void 0,a&&(n[u]=a)),e.result}},simulate:function(e,t,n){var r=S.extend(new S.Event,n,{type:e,isSimulated:!0});S.event.trigger(r,null,t)}}),S.fn.extend({trigger:function(e,t){return this.each(function(){S.event.trigger(e,t,this)})},triggerHandler:function(e,t){var n=this[0];if(n)return S.event.trigger(e,t,n,!0)}}),y.focusin||S.each({focus:"focusin",blur:"focusout"},function(n,r){var i=function(e){S.event.simulate(r,e.target,S.event.fix(e))};S.event.special[r]={setup:function(){var e=this.ownerDocument||this.document||this,t=Y.access(e,r);t||e.addEventListener(n,i,!0),Y.access(e,r,(t||0)+1)},teardown:function(){var e=this.ownerDocument||this.document||this,t=Y.access(e,r)-1;t?Y.access(e,r,t):(e.removeEventListener(n,i,!0),Y.remove(e,r))}}});var bt=C.location,wt={guid:Date.now()},Tt=/\?/;S.parseXML=function(e){var t,n;if(!e||"string"!=typeof e)return null;try{t=(new C.DOMParser).parseFromString(e,"text/xml")}catch(e){}return n=t&&t.getElementsByTagName("parsererror")[0],t&&!n||S.error("Invalid XML: "+(n?S.map(n.childNodes,function(e){return e.textContent}).join("\n"):e)),t};var Ct=/\[\]$/,Et=/\r?\n/g,St=/^(?:submit|button|image|reset|file)$/i,kt=/^(?:input|select|textarea|keygen)/i;function At(n,e,r,i){var t;if(Array.isArray(e))S.each(e,function(e,t){r||Ct.test(n)?i(n,t):At(n+"["+("object"==typeof t&&null!=t?e:"")+"]",t,r,i)});else if(r||"object"!==w(e))i(n,e);else for(t in e)At(n+"["+t+"]",e[t],r,i)}S.param=function(e,t){var n,r=[],i=function(e,t){var n=m(t)?t():t;r[r.length]=encodeURIComponent(e)+"="+encodeURIComponent(null==n?"":n)};if(null==e)return"";if(Array.isArray(e)||e.jquery&&!S.isPlainObject(e))S.each(e,function(){i(this.name,this.value)});else for(n in e)At(n,e[n],t,i);return r.join("&")},S.fn.extend({serialize:function(){return S.param(this.serializeArray())},serializeArray:function(){return this.map(function(){var e=S.prop(this,"elements");return e?S.makeArray(e):this}).filter(function(){var e=this.type;return this.name&&!S(this).is(":disabled")&&kt.test(this.nodeName)&&!St.test(e)&&(this.checked||!pe.test(e))}).map(function(e,t){var n=S(this).val();return null==n?null:Array.isArray(n)?S.map(n,function(e){return{name:t.name,value:e.replace(Et,"\r\n")}}):{name:t.name,value:n.replace(Et,"\r\n")}}).get()}});var Nt=/%20/g,jt=/#.*$/,Dt=/([?&])_=[^&]*/,qt=/^(.*?):[ \t]*([^\r\n]*)$/gm,Lt=/^(?:GET|HEAD)$/,Ht=/^\/\//,Ot={},Pt={},Rt="*/".concat("*"),Mt=E.createElement("a");function It(o){return function(e,t){"string"!=typeof e&&(t=e,e="*");var n,r=0,i=e.toLowerCase().match(P)||[];if(m(t))while(n=i[r++])"+"===n[0]?(n=n.slice(1)||"*",(o[n]=o[n]||[]).unshift(t)):(o[n]=o[n]||[]).push(t)}}function Wt(t,i,o,a){var s={},u=t===Pt;function l(e){var r;return s[e]=!0,S.each(t[e]||[],function(e,t){var n=t(i,o,a);return"string"!=typeof n||u||s[n]?u?!(r=n):void 0:(i.dataTypes.unshift(n),l(n),!1)}),r}return l(i.dataTypes[0])||!s["*"]&&l("*")}function Ft(e,t){var n,r,i=S.ajaxSettings.flatOptions||{};for(n in t)void 0!==t[n]&&((i[n]?e:r||(r={}))[n]=t[n]);return r&&S.extend(!0,e,r),e}Mt.href=bt.href,S.extend({active:0,lastModified:{},etag:{},ajaxSettings:{url:bt.href,type:"GET",isLocal:/^(?:about|app|app-storage|.+-extension|file|res|widget):$/.test(bt.protocol),global:!0,processData:!0,async:!0,contentType:"application/x-www-form-urlencoded; charset=UTF-8",accepts:{"*":Rt,text:"text/plain",html:"text/html",xml:"application/xml, text/xml",json:"application/json, text/javascript"},contents:{xml:/\bxml\b/,html:/\bhtml/,json:/\bjson\b/},responseFields:{xml:"responseXML",text:"responseText",json:"responseJSON"},converters:{"* text":String,"text html":!0,"text json":JSON.parse,"text xml":S.parseXML},flatOptions:{url:!0,context:!0}},ajaxSetup:function(e,t){return t?Ft(Ft(e,S.ajaxSettings),t):Ft(S.ajaxSettings,e)},ajaxPrefilter:It(Ot),ajaxTransport:It(Pt),ajax:function(e,t){"object"==typeof e&&(t=e,e=void 0),t=t||{};var c,f,p,n,d,r,h,g,i,o,v=S.ajaxSetup({},t),y=v.context||v,m=v.context&&(y.nodeType||y.jquery)?S(y):S.event,x=S.Deferred(),b=S.Callbacks("once memory"),w=v.statusCode||{},a={},s={},u="canceled",T={readyState:0,getResponseHeader:function(e){var t;if(h){if(!n){n={};while(t=qt.exec(p))n[t[1].toLowerCase()+" "]=(n[t[1].toLowerCase()+" "]||[]).concat(t[2])}t=n[e.toLowerCase()+" "]}return null==t?null:t.join(", ")},getAllResponseHeaders:function(){return h?p:null},setRequestHeader:function(e,t){return null==h&&(e=s[e.toLowerCase()]=s[e.toLowerCase()]||e,a[e]=t),this},overrideMimeType:function(e){return null==h&&(v.mimeType=e),this},statusCode:function(e){var t;if(e)if(h)T.always(e[T.status]);else for(t in e)w[t]=[w[t],e[t]];return this},abort:function(e){var t=e||u;return c&&c.abort(t),l(0,t),this}};if(x.promise(T),v.url=((e||v.url||bt.href)+"").replace(Ht,bt.protocol+"//"),v.type=t.method||t.type||v.method||v.type,v.dataTypes=(v.dataType||"*").toLowerCase().match(P)||[""],null==v.crossDomain){r=E.createElement("a");try{r.href=v.url,r.href=r.href,v.crossDomain=Mt.protocol+"//"+Mt.host!=r.protocol+"//"+r.host}catch(e){v.crossDomain=!0}}if(v.data&&v.processData&&"string"!=typeof v.data&&(v.data=S.param(v.data,v.traditional)),Wt(Ot,v,t,T),h)return T;for(i in(g=S.event&&v.global)&&0==S.active++&&S.event.trigger("ajaxStart"),v.type=v.type.toUpperCase(),v.hasContent=!Lt.test(v.type),f=v.url.replace(jt,""),v.hasContent?v.data&&v.processData&&0===(v.contentType||"").indexOf("application/x-www-form-urlencoded")&&(v.data=v.data.replace(Nt,"+")):(o=v.url.slice(f.length),v.data&&(v.processData||"string"==typeof v.data)&&(f+=(Tt.test(f)?"&":"?")+v.data,delete v.data),!1===v.cache&&(f=f.replace(Dt,"$1"),o=(Tt.test(f)?"&":"?")+"_="+wt.guid+++o),v.url=f+o),v.ifModified&&(S.lastModified[f]&&T.setRequestHeader("If-Modified-Since",S.lastModified[f]),S.etag[f]&&T.setRequestHeader("If-None-Match",S.etag[f])),(v.data&&v.hasContent&&!1!==v.contentType||t.contentType)&&T.setRequestHeader("Content-Type",v.contentType),T.setRequestHeader("Accept",v.dataTypes[0]&&v.accepts[v.dataTypes[0]]?v.accepts[v.dataTypes[0]]+("*"!==v.dataTypes[0]?", "+Rt+"; q=0.01":""):v.accepts["*"]),v.headers)T.setRequestHeader(i,v.headers[i]);if(v.beforeSend&&(!1===v.beforeSend.call(y,T,v)||h))return T.abort();if(u="abort",b.add(v.complete),T.done(v.success),T.fail(v.error),c=Wt(Pt,v,t,T)){if(T.readyState=1,g&&m.trigger("ajaxSend",[T,v]),h)return T;v.async&&0<v.timeout&&(d=C.setTimeout(function(){T.abort("timeout")},v.timeout));try{h=!1,c.send(a,l)}catch(e){if(h)throw e;l(-1,e)}}else l(-1,"No Transport");function l(e,t,n,r){var i,o,a,s,u,l=t;h||(h=!0,d&&C.clearTimeout(d),c=void 0,p=r||"",T.readyState=0<e?4:0,i=200<=e&&e<300||304===e,n&&(s=function(e,t,n){var r,i,o,a,s=e.contents,u=e.dataTypes;while("*"===u[0])u.shift(),void 0===r&&(r=e.mimeType||t.getResponseHeader("Content-Type"));if(r)for(i in s)if(s[i]&&s[i].test(r)){u.unshift(i);break}if(u[0]in n)o=u[0];else{for(i in n){if(!u[0]||e.converters[i+" "+u[0]]){o=i;break}a||(a=i)}o=o||a}if(o)return o!==u[0]&&u.unshift(o),n[o]}(v,T,n)),!i&&-1<S.inArray("script",v.dataTypes)&&S.inArray("json",v.dataTypes)<0&&(v.converters["text script"]=function(){}),s=function(e,t,n,r){var i,o,a,s,u,l={},c=e.dataTypes.slice();if(c[1])for(a in e.converters)l[a.toLowerCase()]=e.converters[a];o=c.shift();while(o)if(e.responseFields[o]&&(n[e.responseFields[o]]=t),!u&&r&&e.dataFilter&&(t=e.dataFilter(t,e.dataType)),u=o,o=c.shift())if("*"===o)o=u;else if("*"!==u&&u!==o){if(!(a=l[u+" "+o]||l["* "+o]))for(i in l)if((s=i.split(" "))[1]===o&&(a=l[u+" "+s[0]]||l["* "+s[0]])){!0===a?a=l[i]:!0!==l[i]&&(o=s[0],c.unshift(s[1]));break}if(!0!==a)if(a&&e["throws"])t=a(t);else try{t=a(t)}catch(e){return{state:"parsererror",error:a?e:"No conversion from "+u+" to "+o}}}return{state:"success",data:t}}(v,s,T,i),i?(v.ifModified&&((u=T.getResponseHeader("Last-Modified"))&&(S.lastModified[f]=u),(u=T.getResponseHeader("etag"))&&(S.etag[f]=u)),204===e||"HEAD"===v.type?l="nocontent":304===e?l="notmodified":(l=s.state,o=s.data,i=!(a=s.error))):(a=l,!e&&l||(l="error",e<0&&(e=0))),T.status=e,T.statusText=(t||l)+"",i?x.resolveWith(y,[o,l,T]):x.rejectWith(y,[T,l,a]),T.statusCode(w),w=void 0,g&&m.trigger(i?"ajaxSuccess":"ajaxError",[T,v,i?o:a]),b.fireWith(y,[T,l]),g&&(m.trigger("ajaxComplete",[T,v]),--S.active||S.event.trigger("ajaxStop")))}return T},getJSON:function(e,t,n){return S.get(e,t,n,"json")},getScript:function(e,t){return S.get(e,void 0,t,"script")}}),S.each(["get","post"],function(e,i){S[i]=function(e,t,n,r){return m(t)&&(r=r||n,n=t,t=void 0),S.ajax(S.extend({url:e,type:i,dataType:r,data:t,success:n},S.isPlainObject(e)&&e))}}),S.ajaxPrefilter(function(e){var t;for(t in e.headers)"content-type"===t.toLowerCase()&&(e.contentType=e.headers[t]||"")}),S._evalUrl=function(e,t,n){return S.ajax({url:e,type:"GET",dataType:"script",cache:!0,async:!1,global:!1,converters:{"text script":function(){}},dataFilter:function(e){S.globalEval(e,t,n)}})},S.fn.extend({wrapAll:function(e){var t;return this[0]&&(m(e)&&(e=e.call(this[0])),t=S(e,this[0].ownerDocument).eq(0).clone(!0),this[0].parentNode&&t.insertBefore(this[0]),t.map(function(){var e=this;while(e.firstElementChild)e=e.firstElementChild;return e}).append(this)),this},wrapInner:function(n){return m(n)?this.each(function(e){S(this).wrapInner(n.call(this,e))}):this.each(function(){var e=S(this),t=e.contents();t.length?t.wrapAll(n):e.append(n)})},wrap:function(t){var n=m(t);return this.each(function(e){S(this).wrapAll(n?t.call(this,e):t)})},unwrap:function(e){return this.parent(e).not("body").each(function(){S(this).replaceWith(this.childNodes)}),this}}),S.expr.pseudos.hidden=function(e){return!S.expr.pseudos.visible(e)},S.expr.pseudos.visible=function(e){return!!(e.offsetWidth||e.offsetHeight||e.getClientRects().length)},S.ajaxSettings.xhr=function(){try{return new C.XMLHttpRequest}catch(e){}};var Bt={0:200,1223:204},$t=S.ajaxSettings.xhr();y.cors=!!$t&&"withCredentials"in $t,y.ajax=$t=!!$t,S.ajaxTransport(function(i){var o,a;if(y.cors||$t&&!i.crossDomain)return{send:function(e,t){var n,r=i.xhr();if(r.open(i.type,i.url,i.async,i.username,i.password),i.xhrFields)for(n in i.xhrFields)r[n]=i.xhrFields[n];for(n in i.mimeType&&r.overrideMimeType&&r.overrideMimeType(i.mimeType),i.crossDomain||e["X-Requested-With"]||(e["X-Requested-With"]="XMLHttpRequest"),e)r.setRequestHeader(n,e[n]);o=function(e){return function(){o&&(o=a=r.onload=r.onerror=r.onabort=r.ontimeout=r.onreadystatechange=null,"abort"===e?r.abort():"error"===e?"number"!=typeof r.status?t(0,"error"):t(r.status,r.statusText):t(Bt[r.status]||r.status,r.statusText,"text"!==(r.responseType||"text")||"string"!=typeof r.responseText?{binary:r.response}:{text:r.responseText},r.getAllResponseHeaders()))}},r.onload=o(),a=r.onerror=r.ontimeout=o("error"),void 0!==r.onabort?r.onabort=a:r.onreadystatechange=function(){4===r.readyState&&C.setTimeout(function(){o&&a()})},o=o("abort");try{r.send(i.hasContent&&i.data||null)}catch(e){if(o)throw e}},abort:function(){o&&o()}}}),S.ajaxPrefilter(function(e){e.crossDomain&&(e.contents.script=!1)}),S.ajaxSetup({accepts:{script:"text/javascript, application/javascript, application/ecmascript, application/x-ecmascript"},contents:{script:/\b(?:java|ecma)script\b/},converters:{"text script":function(e){return S.globalEval(e),e}}}),S.ajaxPrefilter("script",function(e){void 0===e.cache&&(e.cache=!1),e.crossDomain&&(e.type="GET")}),S.ajaxTransport("script",function(n){var r,i;if(n.crossDomain||n.scriptAttrs)return{send:function(e,t){r=S("<script>").attr(n.scriptAttrs||{}).prop({charset:n.scriptCharset,src:n.url}).on("load error",i=function(e){r.remove(),i=null,e&&t("error"===e.type?404:200,e.type)}),E.head.appendChild(r[0])},abort:function(){i&&i()}}});var _t,zt=[],Ut=/(=)\?(?=&|$)|\?\?/;S.ajaxSetup({jsonp:"callback",jsonpCallback:function(){var e=zt.pop()||S.expando+"_"+wt.guid++;return this[e]=!0,e}}),S.ajaxPrefilter("json jsonp",function(e,t,n){var r,i,o,a=!1!==e.jsonp&&(Ut.test(e.url)?"url":"string"==typeof e.data&&0===(e.contentType||"").indexOf("application/x-www-form-urlencoded")&&Ut.test(e.data)&&"data");if(a||"jsonp"===e.dataTypes[0])return r=e.jsonpCallback=m(e.jsonpCallback)?e.jsonpCallback():e.jsonpCallback,a?e[a]=e[a].replace(Ut,"$1"+r):!1!==e.jsonp&&(e.url+=(Tt.test(e.url)?"&":"?")+e.jsonp+"="+r),e.converters["script json"]=function(){return o||S.error(r+" was not called"),o[0]},e.dataTypes[0]="json",i=C[r],C[r]=function(){o=arguments},n.always(function(){void 0===i?S(C).removeProp(r):C[r]=i,e[r]&&(e.jsonpCallback=t.jsonpCallback,zt.push(r)),o&&m(i)&&i(o[0]),o=i=void 0}),"script"}),y.createHTMLDocument=((_t=E.implementation.createHTMLDocument("").body).innerHTML="<form></form><form></form>",2===_t.childNodes.length),S.parseHTML=function(e,t,n){return"string"!=typeof e?[]:("boolean"==typeof t&&(n=t,t=!1),t||(y.createHTMLDocument?((r=(t=E.implementation.createHTMLDocument("")).createElement("base")).href=E.location.href,t.head.appendChild(r)):t=E),o=!n&&[],(i=N.exec(e))?[t.createElement(i[1])]:(i=xe([e],t,o),o&&o.length&&S(o).remove(),S.merge([],i.childNodes)));var r,i,o},S.fn.load=function(e,t,n){var r,i,o,a=this,s=e.indexOf(" ");return-1<s&&(r=ht(e.slice(s)),e=e.slice(0,s)),m(t)?(n=t,t=void 0):t&&"object"==typeof t&&(i="POST"),0<a.length&&S.ajax({url:e,type:i||"GET",dataType:"html",data:t}).done(function(e){o=arguments,a.html(r?S("<div>").append(S.parseHTML(e)).find(r):e)}).always(n&&function(e,t){a.each(function(){n.apply(this,o||[e.responseText,t,e])})}),this},S.expr.pseudos.animated=function(t){return S.grep(S.timers,function(e){return t===e.elem}).length},S.offset={setOffset:function(e,t,n){var r,i,o,a,s,u,l=S.css(e,"position"),c=S(e),f={};"static"===l&&(e.style.position="relative"),s=c.offset(),o=S.css(e,"top"),u=S.css(e,"left"),("absolute"===l||"fixed"===l)&&-1<(o+u).indexOf("auto")?(a=(r=c.position()).top,i=r.left):(a=parseFloat(o)||0,i=parseFloat(u)||0),m(t)&&(t=t.call(e,n,S.extend({},s))),null!=t.top&&(f.top=t.top-s.top+a),null!=t.left&&(f.left=t.left-s.left+i),"using"in t?t.using.call(e,f):c.css(f)}},S.fn.extend({offset:function(t){if(arguments.length)return void 0===t?this:this.each(function(e){S.offset.setOffset(this,t,e)});var e,n,r=this[0];return r?r.getClientRects().length?(e=r.getBoundingClientRect(),n=r.ownerDocument.defaultView,{top:e.top+n.pageYOffset,left:e.left+n.pageXOffset}):{top:0,left:0}:void 0},position:function(){if(this[0]){var e,t,n,r=this[0],i={top:0,left:0};if("fixed"===S.css(r,"position"))t=r.getBoundingClientRect();else{t=this.offset(),n=r.ownerDocument,e=r.offsetParent||n.documentElement;while(e&&(e===n.body||e===n.documentElement)&&"static"===S.css(e,"position"))e=e.parentNode;e&&e!==r&&1===e.nodeType&&((i=S(e).offset()).top+=S.css(e,"borderTopWidth",!0),i.left+=S.css(e,"borderLeftWidth",!0))}return{top:t.top-i.top-S.css(r,"marginTop",!0),left:t.left-i.left-S.css(r,"marginLeft",!0)}}},offsetParent:function(){return this.map(function(){var e=this.offsetParent;while(e&&"static"===S.css(e,"position"))e=e.offsetParent;return e||re})}}),S.each({scrollLeft:"pageXOffset",scrollTop:"pageYOffset"},function(t,i){var o="pageYOffset"===i;S.fn[t]=function(e){return $(this,function(e,t,n){var r;if(x(e)?r=e:9===e.nodeType&&(r=e.defaultView),void 0===n)return r?r[i]:e[t];r?r.scrollTo(o?r.pageXOffset:n,o?n:r.pageYOffset):e[t]=n},t,e,arguments.length)}}),S.each(["top","left"],function(e,n){S.cssHooks[n]=Fe(y.pixelPosition,function(e,t){if(t)return t=We(e,n),Pe.test(t)?S(e).position()[n]+"px":t})}),S.each({Height:"height",Width:"width"},function(a,s){S.each({padding:"inner"+a,content:s,"":"outer"+a},function(r,o){S.fn[o]=function(e,t){var n=arguments.length&&(r||"boolean"!=typeof e),i=r||(!0===e||!0===t?"margin":"border");return $(this,function(e,t,n){var r;return x(e)?0===o.indexOf("outer")?e["inner"+a]:e.document.documentElement["client"+a]:9===e.nodeType?(r=e.documentElement,Math.max(e.body["scroll"+a],r["scroll"+a],e.body["offset"+a],r["offset"+a],r["client"+a])):void 0===n?S.css(e,t,i):S.style(e,t,n,i)},s,n?e:void 0,n)}})}),S.each(["ajaxStart","ajaxStop","ajaxComplete","ajaxError","ajaxSuccess","ajaxSend"],function(e,t){S.fn[t]=function(e){return this.on(t,e)}}),S.fn.extend({bind:function(e,t,n){return this.on(e,null,t,n)},unbind:function(e,t){return this.off(e,null,t)},delegate:function(e,t,n,r){return this.on(t,e,n,r)},undelegate:function(e,t,n){return 1===arguments.length?this.off(e,"**"):this.off(t,e||"**",n)},hover:function(e,t){return this.mouseenter(e).mouseleave(t||e)}}),S.each("blur focus focusin focusout resize scroll click dblclick mousedown mouseup mousemove mouseover mouseout mouseenter mouseleave change select submit keydown keypress keyup contextmenu".split(" "),function(e,n){S.fn[n]=function(e,t){return 0<arguments.length?this.on(n,null,e,t):this.trigger(n)}});var Xt=/^[\s\uFEFF\xA0]+|[\s\uFEFF\xA0]+$/g;S.proxy=function(e,t){var n,r,i;if("string"==typeof t&&(n=e[t],t=e,e=n),m(e))return r=s.call(arguments,2),(i=function(){return e.apply(t||this,r.concat(s.call(arguments)))}).guid=e.guid=e.guid||S.guid++,i},S.holdReady=function(e){e?S.readyWait++:S.ready(!0)},S.isArray=Array.isArray,S.parseJSON=JSON.parse,S.nodeName=A,S.isFunction=m,S.isWindow=x,S.camelCase=X,S.type=w,S.now=Date.now,S.isNumeric=function(e){var t=S.type(e);return("number"===t||"string"===t)&&!isNaN(e-parseFloat(e))},S.trim=function(e){return null==e?"":(e+"").replace(Xt,"")},"function"==typeof define&&define.amd&&define("jquery",[],function(){return S});var Vt=C.jQuery,Gt=C.$;return S.noConflict=function(e){return C.$===S&&(C.$=Gt),e&&C.jQuery===S&&(C.jQuery=Vt),S},"undefined"==typeof e&&(C.jQuery=C.$=S),S});
diff --git a/oxAuth/Server/src/main/webapp/js/jquery-qrcode-0.17.0.min.js b/oxAuth/Server/src/main/webapp/js/jquery-qrcode-0.17.0.min.js
new file mode 100644
index 00000000..7faf421d
--- /dev/null
+++ b/oxAuth/Server/src/main/webapp/js/jquery-qrcode-0.17.0.min.js
@@ -0,0 +1,2 @@
+/*! jquery-qrcode v0.17.0 - https://larsjung.de/jquery-qrcode/ */
+!function(t,r){"object"==typeof exports&&"object"==typeof module?module.exports=r():"function"==typeof define&&define.amd?define("jquery-qrcode",[],r):"object"==typeof exports?exports["jquery-qrcode"]=r():t["jquery-qrcode"]=r()}("undefined"!=typeof self?self:this,function(){return function(e){var n={};function o(t){if(n[t])return n[t].exports;var r=n[t]={i:t,l:!1,exports:{}};return e[t].call(r.exports,r,r.exports,o),r.l=!0,r.exports}return o.m=e,o.c=n,o.d=function(t,r,e){o.o(t,r)||Object.defineProperty(t,r,{enumerable:!0,get:e})},o.r=function(t){"undefined"!=typeof Symbol&&Symbol.toStringTag&&Object.defineProperty(t,Symbol.toStringTag,{value:"Module"}),Object.defineProperty(t,"__esModule",{value:!0})},o.t=function(r,t){if(1&t&&(r=o(r)),8&t)return r;if(4&t&&"object"==typeof r&&r&&r.__esModule)return r;var e=Object.create(null);if(o.r(e),Object.defineProperty(e,"default",{enumerable:!0,value:r}),2&t&&"string"!=typeof r)for(var n in r)o.d(e,n,function(t){return r[t]}.bind(null,n));return e},o.n=function(t){var r=t&&t.__esModule?function(){return t.default}:function(){return t};return o.d(r,"a",r),r},o.o=function(t,r){return Object.prototype.hasOwnProperty.call(t,r)},o.p="",o(o.s=0)}([function(v,t,p){(function(t){function c(t){return t&&"string"==typeof t.tagName&&"IMG"===t.tagName.toUpperCase()}function a(t,r,e,n){var o={},i=p(2);i.stringToBytes=i.stringToBytesFuncs["UTF-8"];var a=i(e,r);a.addData(t),a.make(),n=n||0;var u=a.getModuleCount(),s=u+2*n;return o.text=t,o.level=r,o.version=e,o.module_count=s,o.is_dark=function(t,r){return r-=n,0<=(t-=n)&&t<u&&0<=r&&r<u&&a.isDark(t,r)},o.add_blank=function(a,u,f,c){var l=o.is_dark,g=1/s;o.is_dark=function(t,r){var e=r*g,n=t*g,o=e+g,i=n+g;return l(t,r)&&(o<a||f<e||i<u||c<n)}},o}function h(t,r,e,n,o){e=Math.max(1,e||1),n=Math.min(40,n||40);for(var i=e;i<=n;i+=1)try{return a(t,r,i,o)}catch(t){}}function i(t,r,e){c(e.background)?r.drawImage(e.background,0,0,e.size,e.size):e.background&&(r.fillStyle=e.background,r.fillRect(e.left,e.top,e.size,e.size));var n=e.mode;1===n||2===n?function(t,r,e){var n=e.size,o="bold "+e.mSize*n+"px "+e.fontname,i=d("<canvas/>")[0].getContext("2d");i.font=o;var a=i.measureText(e.label).width,u=e.mSize,f=a/n,c=(1-f)*e.mPosX,l=(1-u)*e.mPosY,g=c+f,s=l+u;1===e.mode?t.add_blank(0,l-.01,n,s+.01):t.add_blank(c-.01,l-.01,.01+g,s+.01),r.fillStyle=e.fontcolor,r.font=o,r.fillText(e.label,c*n,l*n+.75*e.mSize*n)}(t,r,e):!c(e.image)||3!==n&&4!==n||function(t,r,e){var n=e.size,o=e.image.naturalWidth||1,i=e.image.naturalHeight||1,a=e.mSize,u=a*o/i,f=(1-u)*e.mPosX,c=(1-a)*e.mPosY,l=f+u,g=c+a;3===e.mode?t.add_blank(0,c-.01,n,g+.01):t.add_blank(f-.01,c-.01,.01+l,g+.01),r.drawImage(e.image,f*n,c*n,u*n,a*n)}(t,r,e)}function l(t,r,e,n,o,i,a,u){t.is_dark(a,u)&&r.rect(n,o,i,i)}function g(t,r,e,n,o,i,a,u){var f=t.is_dark,c=n+i,l=o+i,g=e.radius*i,s=a-1,h=a+1,d=u-1,v=u+1,p=f(a,u),w=f(s,d),y=f(s,u),m=f(s,v),b=f(a,v),k=f(h,v),C=f(h,u),B=f(h,d),x=f(a,d);p?function(t,r,e,n,o,i,a,u,f,c){a?t.moveTo(r+i,e):t.moveTo(r,e),u?(t.lineTo(n-i,e),t.arcTo(n,e,n,o,i)):t.lineTo(n,e),f?(t.lineTo(n,o-i),t.arcTo(n,o,r,o,i)):t.lineTo(n,o),c?(t.lineTo(r+i,o),t.arcTo(r,o,r,e,i)):t.lineTo(r,o),a?(t.lineTo(r,e+i),t.arcTo(r,e,n,e,i)):t.lineTo(r,e)}(r,n,o,c,l,g,!y&&!x,!y&&!b,!C&&!b,!C&&!x):function(t,r,e,n,o,i,a,u,f,c){a&&(t.moveTo(r+i,e),t.lineTo(r,e),t.lineTo(r,e+i),t.arcTo(r,e,r+i,e,i)),u&&(t.moveTo(n-i,e),t.lineTo(n,e),t.lineTo(n,e+i),t.arcTo(n,e,n-i,e,i)),f&&(t.moveTo(n-i,o),t.lineTo(n,o),t.lineTo(n,o-i),t.arcTo(n,o,n-i,o,i)),c&&(t.moveTo(r+i,o),t.lineTo(r,o),t.lineTo(r,o-i),t.arcTo(r,o,r+i,o,i))}(r,n,o,c,l,g,y&&x&&w,y&&b&&m,C&&b&&k,C&&x&&B)}function n(t,r){var e=h(r.text,r.ecLevel,r.minVersion,r.maxVersion,r.quiet);if(!e)return null;var n=d(t).data("qrcode",e),o=n[0].getContext("2d");return i(e,o,r),function(t,r,e){var n,o,i=t.module_count,a=e.size/i,u=l;for(0<e.radius&&e.radius<=.5&&(u=g),r.beginPath(),n=0;n<i;n+=1)for(o=0;o<i;o+=1)u(t,r,e,e.left+o*a,e.top+n*a,a,n,o);if(c(e.fill)){r.strokeStyle="rgba(0,0,0,0.5)",r.lineWidth=2,r.stroke();var f=r.globalCompositeOperation;r.globalCompositeOperation="destination-out",r.fill(),r.globalCompositeOperation=f,r.clip(),r.drawImage(e.fill,0,0,e.size,e.size),r.restore()}else r.fillStyle=e.fill,r.fill()}(e,o,r),n}function r(t){var r=d("<canvas/>").attr("width",t.size).attr("height",t.size);return n(r,t)}function o(t){return f&&"canvas"===t.render?r(t):f&&"image"===t.render?function(t){return d("<img/>").attr("src",r(t)[0].toDataURL("image/png"))}(t):function(t){var r=h(t.text,t.ecLevel,t.minVersion,t.maxVersion,t.quiet);if(!r)return null;var e,n,o=t.size,i=t.background,a=Math.floor,u=r.module_count,f=a(o/u),c=a(.5*(o-f*u)),l={position:"relative",left:0,top:0,padding:0,margin:0,width:o,height:o},g={position:"absolute",padding:0,margin:0,width:f,height:f,"background-color":t.fill},s=d("<div/>").data("qrcode",r).css(l);for(i&&s.css("background-color",i),e=0;e<u;e+=1)for(n=0;n<u;n+=1)r.is_dark(e,n)&&d("<div/>").css(g).css({left:c+n*f,top:c+e*f}).appendTo(s);return s}(t)}var e,u=t.window,d=u.jQuery,f=!(!(e=u.document.createElement("canvas")).getContext||!e.getContext("2d")),s={render:"canvas",minVersion:1,maxVersion:40,ecLevel:"L",left:0,top:0,size:200,fill:"#000",background:"#fff",text:"no text",radius:0,quiet:0,mode:0,mSize:.1,mPosX:.5,mPosY:.5,label:"no label",fontname:"sans",fontcolor:"#000",image:null};d.fn.qrcode=v.exports=function(t){var e=d.extend({},s,t);return this.each(function(t,r){"canvas"===r.nodeName.toLowerCase()?n(r,e):d(r).append(o(e))})}}).call(this,p(1))},function(t,r){var e;e=function(){return this}();try{e=e||new Function("return this")()}catch(t){"object"==typeof window&&(e=window)}t.exports=e},function(t,r,e){var n,o,i,a=function(){function i(t,r){function a(t,r){l=function(t){for(var r=new Array(t),e=0;e<t;e+=1){r[e]=new Array(t);for(var n=0;n<t;n+=1)r[e][n]=null}return r}(g=4*u+17),e(0,0),e(g-7,0),e(0,g-7),i(),o(),d(t,r),7<=u&&s(t),null==n&&(n=p(u,f,c)),v(n,r)}var u=t,f=w[r],l=null,g=0,n=null,c=[],h={},e=function(t,r){for(var e=-1;e<=7;e+=1)if(!(t+e<=-1||g<=t+e))for(var n=-1;n<=7;n+=1)r+n<=-1||g<=r+n||(l[t+e][r+n]=0<=e&&e<=6&&(0==n||6==n)||0<=n&&n<=6&&(0==e||6==e)||2<=e&&e<=4&&2<=n&&n<=4)},o=function(){for(var t=8;t<g-8;t+=1)null==l[t][6]&&(l[t][6]=t%2==0);for(var r=8;r<g-8;r+=1)null==l[6][r]&&(l[6][r]=r%2==0)},i=function(){for(var t=y.getPatternPosition(u),r=0;r<t.length;r+=1)for(var e=0;e<t.length;e+=1){var n=t[r],o=t[e];if(null==l[n][o])for(var i=-2;i<=2;i+=1)for(var a=-2;a<=2;a+=1)l[n+i][o+a]=-2==i||2==i||-2==a||2==a||0==i&&0==a}},s=function(t){for(var r=y.getBCHTypeNumber(u),e=0;e<18;e+=1){var n=!t&&1==(r>>e&1);l[Math.floor(e/3)][e%3+g-8-3]=n}for(e=0;e<18;e+=1){n=!t&&1==(r>>e&1);l[e%3+g-8-3][Math.floor(e/3)]=n}},d=function(t,r){for(var e=f<<3|r,n=y.getBCHTypeInfo(e),o=0;o<15;o+=1){var i=!t&&1==(n>>o&1);o<6?l[o][8]=i:o<8?l[o+1][8]=i:l[g-15+o][8]=i}for(o=0;o<15;o+=1){i=!t&&1==(n>>o&1);o<8?l[8][g-o-1]=i:o<9?l[8][15-o-1+1]=i:l[8][15-o-1]=i}l[g-8][8]=!t},v=function(t,r){for(var e=-1,n=g-1,o=7,i=0,a=y.getMaskFunction(r),u=g-1;0<u;u-=2)for(6==u&&(u-=1);;){for(var f=0;f<2;f+=1)if(null==l[n][u-f]){var c=!1;i<t.length&&(c=1==(t[i]>>>o&1)),a(n,u-f)&&(c=!c),l[n][u-f]=c,-1==(o-=1)&&(i+=1,o=7)}if((n+=e)<0||g<=n){n-=e,e=-e;break}}},p=function(t,r,e){for(var n=C.getRSBlocks(t,r),o=B(),i=0;i<e.length;i+=1){var a=e[i];o.put(a.getMode(),4),o.put(a.getLength(),y.getLengthInBits(a.getMode(),t)),a.write(o)}var u=0;for(i=0;i<n.length;i+=1)u+=n[i].dataCount;if(o.getLengthInBits()>8*u)throw"code length overflow. ("+o.getLengthInBits()+">"+8*u+")";for(o.getLengthInBits()+4<=8*u&&o.put(0,4);o.getLengthInBits()%8!=0;)o.putBit(!1);for(;!(o.getLengthInBits()>=8*u||(o.put(236,8),o.getLengthInBits()>=8*u));)o.put(17,8);return function(t,r){for(var e=0,n=0,o=0,i=new Array(r.length),a=new Array(r.length),u=0;u<r.length;u+=1){var f=r[u].dataCount,c=r[u].totalCount-f;n=Math.max(n,f),o=Math.max(o,c),i[u]=new Array(f);for(var l=0;l<i[u].length;l+=1)i[u][l]=255&t.getBuffer()[l+e];e+=f;var g=y.getErrorCorrectPolynomial(c),s=m(i[u],g.getLength()-1).mod(g);for(a[u]=new Array(g.getLength()-1),l=0;l<a[u].length;l+=1){var h=l+s.getLength()-a[u].length;a[u][l]=0<=h?s.getAt(h):0}}var d=0;for(l=0;l<r.length;l+=1)d+=r[l].totalCount;var v=new Array(d),p=0;for(l=0;l<n;l+=1)for(u=0;u<r.length;u+=1)l<i[u].length&&(v[p]=i[u][l],p+=1);for(l=0;l<o;l+=1)for(u=0;u<r.length;u+=1)l<a[u].length&&(v[p]=a[u][l],p+=1);return v}(o,n)};return h.addData=function(t,r){var e=null;switch(r=r||"Byte"){case"Numeric":e=x(t);break;case"Alphanumeric":e=T(t);break;case"Byte":e=M(t);break;case"Kanji":e=A(t);break;default:throw"mode:"+r}c.push(e),n=null},h.isDark=function(t,r){if(t<0||g<=t||r<0||g<=r)throw t+","+r;return l[t][r]},h.getModuleCount=function(){return g},h.make=function(){if(u<1){for(var t=1;t<40;t++){for(var r=C.getRSBlocks(t,f),e=B(),n=0;n<c.length;n++){var o=c[n];e.put(o.getMode(),4),e.put(o.getLength(),y.getLengthInBits(o.getMode(),t)),o.write(e)}var i=0;for(n=0;n<r.length;n++)i+=r[n].dataCount;if(e.getLengthInBits()<=8*i)break}u=t}a(!1,function(){for(var t=0,r=0,e=0;e<8;e+=1){a(!0,e);var n=y.getLostPoint(h);(0==e||n<t)&&(t=n,r=e)}return r}())},h.createTableTag=function(t,r){t=t||2;var e="";e+='<table style="',e+=" border-width: 0px; border-style: none;",e+=" border-collapse: collapse;",e+=" padding: 0px; margin: "+(r=void 0===r?4*t:r)+"px;",e+='">',e+="<tbody>";for(var n=0;n<h.getModuleCount();n+=1){e+="<tr>";for(var o=0;o<h.getModuleCount();o+=1)e+='<td style="',e+=" border-width: 0px; border-style: none;",e+=" border-collapse: collapse;",e+=" padding: 0px; margin: 0px;",e+=" width: "+t+"px;",e+=" height: "+t+"px;",e+=" background-color: ",e+=h.isDark(n,o)?"#000000":"#ffffff",e+=";",e+='"/>';e+="</tr>"}return e+="</tbody>",e+="</table>"},h.createSvgTag=function(t,r){var e={};"object"==typeof t&&(t=(e=t).cellSize,r=e.margin),t=t||2,r=void 0===r?4*t:r;var n,o,i,a,u=h.getModuleCount()*t+2*r,f="";for(a="l"+t+",0 0,"+t+" -"+t+",0 0,-"+t+"z ",f+='<svg version="1.1" xmlns="http://www.w3.org/2000/svg"',f+=e.scalable?"":' width="'+u+'px" height="'+u+'px"',f+=' viewBox="0 0 '+u+" "+u+'" ',f+=' preserveAspectRatio="xMinYMin meet">',f+='<rect width="100%" height="100%" fill="white" cx="0" cy="0"/>',f+='<path d="',o=0;o<h.getModuleCount();o+=1)for(i=o*t+r,n=0;n<h.getModuleCount();n+=1)h.isDark(o,n)&&(f+="M"+(n*t+r)+","+i+a);return f+='" stroke="transparent" fill="black"/>',f+="</svg>"},h.createDataURL=function(o,t){o=o||2,t=void 0===t?4*o:t;var r=h.getModuleCount()*o+2*t,i=t,a=r-t;return L(r,r,function(t,r){if(i<=t&&t<a&&i<=r&&r<a){var e=Math.floor((t-i)/o),n=Math.floor((r-i)/o);return h.isDark(n,e)?0:1}return 1})},h.createImgTag=function(t,r,e){t=t||2,r=void 0===r?4*t:r;var n=h.getModuleCount()*t+2*r,o="";return o+="<img",o+=' src="',o+=h.createDataURL(t,r),o+='"',o+=' width="',o+=n,o+='"',o+=' height="',o+=n,o+='"',e&&(o+=' alt="',o+=e,o+='"'),o+="/>"},h.createASCII=function(t,r){if((t=t||1)<2)return function(t){t=void 0===t?2:t;var r,e,n,o,i,a=1*h.getModuleCount()+2*t,u=t,f=a-t,c={"██":"█","█ ":"▀"," █":"▄","  ":" "},l={"██":"▀","█ ":"▀"," █":" ","  ":" "},g="";for(r=0;r<a;r+=2){for(n=Math.floor((r-u)/1),o=Math.floor((r+1-u)/1),e=0;e<a;e+=1)i="█",u<=e&&e<f&&u<=r&&r<f&&h.isDark(n,Math.floor((e-u)/1))&&(i=" "),u<=e&&e<f&&u<=r+1&&r+1<f&&h.isDark(o,Math.floor((e-u)/1))?i+=" ":i+="█",g+=t<1&&f<=r+1?l[i]:c[i];g+="\n"}return a%2&&0<t?g.substring(0,g.length-a-1)+Array(1+a).join("▀"):g.substring(0,g.length-1)}(r);t-=1,r=void 0===r?2*t:r;var e,n,o,i,a=h.getModuleCount()*t+2*r,u=r,f=a-r,c=Array(t+1).join("██"),l=Array(t+1).join("  "),g="",s="";for(e=0;e<a;e+=1){for(o=Math.floor((e-u)/t),s="",n=0;n<a;n+=1)i=1,u<=n&&n<f&&u<=e&&e<f&&h.isDark(o,Math.floor((n-u)/t))&&(i=0),s+=i?c:l;for(o=0;o<t;o+=1)g+=s+"\n"}return g.substring(0,g.length-1)},h.renderTo2dContext=function(t,r){r=r||2;for(var e=h.getModuleCount(),n=0;n<e;n++)for(var o=0;o<e;o++)t.fillStyle=h.isDark(n,o)?"black":"white",t.fillRect(n*r,o*r,r,r)},h}i.stringToBytes=(i.stringToBytesFuncs={default:function(t){for(var r=[],e=0;e<t.length;e+=1){var n=t.charCodeAt(e);r.push(255&n)}return r}}).default,i.createStringToBytes=function(u,f){var i=function(){function t(){var t=r.read();if(-1==t)throw"eof";return t}for(var r=S(u),e=0,n={};;){var o=r.read();if(-1==o)break;var i=t(),a=t()<<8|t();n[String.fromCharCode(o<<8|i)]=a,e+=1}if(e!=f)throw e+" != "+f;return n}(),a="?".charCodeAt(0);return function(t){for(var r=[],e=0;e<t.length;e+=1){var n=t.charCodeAt(e);if(n<128)r.push(n);else{var o=i[t.charAt(e)];"number"==typeof o?(255&o)==o?r.push(o):(r.push(o>>>8),r.push(255&o)):r.push(a)}}return r}};var a=1,u=2,o=4,f=8,w={L:1,M:0,Q:3,H:2},n=0,c=1,l=2,g=3,s=4,h=5,d=6,v=7,y=function(){function e(t){for(var r=0;0!=t;)r+=1,t>>>=1;return r}var r=[[],[6,18],[6,22],[6,26],[6,30],[6,34],[6,22,38],[6,24,42],[6,26,46],[6,28,50],[6,30,54],[6,32,58],[6,34,62],[6,26,46,66],[6,26,48,70],[6,26,50,74],[6,30,54,78],[6,30,56,82],[6,30,58,86],[6,34,62,90],[6,28,50,72,94],[6,26,50,74,98],[6,30,54,78,102],[6,28,54,80,106],[6,32,58,84,110],[6,30,58,86,114],[6,34,62,90,118],[6,26,50,74,98,122],[6,30,54,78,102,126],[6,26,52,78,104,130],[6,30,56,82,108,134],[6,34,60,86,112,138],[6,30,58,86,114,142],[6,34,62,90,118,146],[6,30,54,78,102,126,150],[6,24,50,76,102,128,154],[6,28,54,80,106,132,158],[6,32,58,84,110,136,162],[6,26,54,82,110,138,166],[6,30,58,86,114,142,170]],t={};return t.getBCHTypeInfo=function(t){for(var r=t<<10;0<=e(r)-e(1335);)r^=1335<<e(r)-e(1335);return 21522^(t<<10|r)},t.getBCHTypeNumber=function(t){for(var r=t<<12;0<=e(r)-e(7973);)r^=7973<<e(r)-e(7973);return t<<12|r},t.getPatternPosition=function(t){return r[t-1]},t.getMaskFunction=function(t){switch(t){case n:return function(t,r){return(t+r)%2==0};case c:return function(t,r){return t%2==0};case l:return function(t,r){return r%3==0};case g:return function(t,r){return(t+r)%3==0};case s:return function(t,r){return(Math.floor(t/2)+Math.floor(r/3))%2==0};case h:return function(t,r){return t*r%2+t*r%3==0};case d:return function(t,r){return(t*r%2+t*r%3)%2==0};case v:return function(t,r){return(t*r%3+(t+r)%2)%2==0};default:throw"bad maskPattern:"+t}},t.getErrorCorrectPolynomial=function(t){for(var r=m([1],0),e=0;e<t;e+=1)r=r.multiply(m([1,p.gexp(e)],0));return r},t.getLengthInBits=function(t,r){if(1<=r&&r<10)switch(t){case a:return 10;case u:return 9;case o:case f:return 8;default:throw"mode:"+t}else if(r<27)switch(t){case a:return 12;case u:return 11;case o:return 16;case f:return 10;default:throw"mode:"+t}else{if(!(r<41))throw"type:"+r;switch(t){case a:return 14;case u:return 13;case o:return 16;case f:return 12;default:throw"mode:"+t}}},t.getLostPoint=function(t){for(var r=t.getModuleCount(),e=0,n=0;n<r;n+=1)for(var o=0;o<r;o+=1){for(var i=0,a=t.isDark(n,o),u=-1;u<=1;u+=1)if(!(n+u<0||r<=n+u))for(var f=-1;f<=1;f+=1)o+f<0||r<=o+f||0==u&&0==f||a==t.isDark(n+u,o+f)&&(i+=1);5<i&&(e+=3+i-5)}for(n=0;n<r-1;n+=1)for(o=0;o<r-1;o+=1){var c=0;t.isDark(n,o)&&(c+=1),t.isDark(n+1,o)&&(c+=1),t.isDark(n,o+1)&&(c+=1),t.isDark(n+1,o+1)&&(c+=1),0!=c&&4!=c||(e+=3)}for(n=0;n<r;n+=1)for(o=0;o<r-6;o+=1)t.isDark(n,o)&&!t.isDark(n,o+1)&&t.isDark(n,o+2)&&t.isDark(n,o+3)&&t.isDark(n,o+4)&&!t.isDark(n,o+5)&&t.isDark(n,o+6)&&(e+=40);for(o=0;o<r;o+=1)for(n=0;n<r-6;n+=1)t.isDark(n,o)&&!t.isDark(n+1,o)&&t.isDark(n+2,o)&&t.isDark(n+3,o)&&t.isDark(n+4,o)&&!t.isDark(n+5,o)&&t.isDark(n+6,o)&&(e+=40);var l=0;for(o=0;o<r;o+=1)for(n=0;n<r;n+=1)t.isDark(n,o)&&(l+=1);return e+=10*(Math.abs(100*l/r/r-50)/5)},t}(),p=function(){for(var r=new Array(256),e=new Array(256),t=0;t<8;t+=1)r[t]=1<<t;for(t=8;t<256;t+=1)r[t]=r[t-4]^r[t-5]^r[t-6]^r[t-8];for(t=0;t<255;t+=1)e[r[t]]=t;var n={glog:function(t){if(t<1)throw"glog("+t+")";return e[t]},gexp:function(t){for(;t<0;)t+=255;for(;256<=t;)t-=255;return r[t]}};return n}();function m(n,o){if(void 0===n.length)throw n.length+"/"+o;var r=function(){for(var t=0;t<n.length&&0==n[t];)t+=1;for(var r=new Array(n.length-t+o),e=0;e<n.length-t;e+=1)r[e]=n[e+t];return r}(),i={getAt:function(t){return r[t]},getLength:function(){return r.length},multiply:function(t){for(var r=new Array(i.getLength()+t.getLength()-1),e=0;e<i.getLength();e+=1)for(var n=0;n<t.getLength();n+=1)r[e+n]^=p.gexp(p.glog(i.getAt(e))+p.glog(t.getAt(n)));return m(r,0)},mod:function(t){if(i.getLength()-t.getLength()<0)return i;for(var r=p.glog(i.getAt(0))-p.glog(t.getAt(0)),e=new Array(i.getLength()),n=0;n<i.getLength();n+=1)e[n]=i.getAt(n);for(n=0;n<t.getLength();n+=1)e[n]^=p.gexp(p.glog(t.getAt(n))+r);return m(e,0).mod(t)}};return i}function b(){var e=[],o={writeByte:function(t){e.push(255&t)},writeShort:function(t){o.writeByte(t),o.writeByte(t>>>8)},writeBytes:function(t,r,e){r=r||0,e=e||t.length;for(var n=0;n<e;n+=1)o.writeByte(t[n+r])},writeString:function(t){for(var r=0;r<t.length;r+=1)o.writeByte(t.charCodeAt(r))},toByteArray:function(){return e},toString:function(){var t="";t+="[";for(var r=0;r<e.length;r+=1)0<r&&(t+=","),t+=e[r];return t+="]"}};return o}var k,t,C=(k=[[1,26,19],[1,26,16],[1,26,13],[1,26,9],[1,44,34],[1,44,28],[1,44,22],[1,44,16],[1,70,55],[1,70,44],[2,35,17],[2,35,13],[1,100,80],[2,50,32],[2,50,24],[4,25,9],[1,134,108],[2,67,43],[2,33,15,2,34,16],[2,33,11,2,34,12],[2,86,68],[4,43,27],[4,43,19],[4,43,15],[2,98,78],[4,49,31],[2,32,14,4,33,15],[4,39,13,1,40,14],[2,121,97],[2,60,38,2,61,39],[4,40,18,2,41,19],[4,40,14,2,41,15],[2,146,116],[3,58,36,2,59,37],[4,36,16,4,37,17],[4,36,12,4,37,13],[2,86,68,2,87,69],[4,69,43,1,70,44],[6,43,19,2,44,20],[6,43,15,2,44,16],[4,101,81],[1,80,50,4,81,51],[4,50,22,4,51,23],[3,36,12,8,37,13],[2,116,92,2,117,93],[6,58,36,2,59,37],[4,46,20,6,47,21],[7,42,14,4,43,15],[4,133,107],[8,59,37,1,60,38],[8,44,20,4,45,21],[12,33,11,4,34,12],[3,145,115,1,146,116],[4,64,40,5,65,41],[11,36,16,5,37,17],[11,36,12,5,37,13],[5,109,87,1,110,88],[5,65,41,5,66,42],[5,54,24,7,55,25],[11,36,12,7,37,13],[5,122,98,1,123,99],[7,73,45,3,74,46],[15,43,19,2,44,20],[3,45,15,13,46,16],[1,135,107,5,136,108],[10,74,46,1,75,47],[1,50,22,15,51,23],[2,42,14,17,43,15],[5,150,120,1,151,121],[9,69,43,4,70,44],[17,50,22,1,51,23],[2,42,14,19,43,15],[3,141,113,4,142,114],[3,70,44,11,71,45],[17,47,21,4,48,22],[9,39,13,16,40,14],[3,135,107,5,136,108],[3,67,41,13,68,42],[15,54,24,5,55,25],[15,43,15,10,44,16],[4,144,116,4,145,117],[17,68,42],[17,50,22,6,51,23],[19,46,16,6,47,17],[2,139,111,7,140,112],[17,74,46],[7,54,24,16,55,25],[34,37,13],[4,151,121,5,152,122],[4,75,47,14,76,48],[11,54,24,14,55,25],[16,45,15,14,46,16],[6,147,117,4,148,118],[6,73,45,14,74,46],[11,54,24,16,55,25],[30,46,16,2,47,17],[8,132,106,4,133,107],[8,75,47,13,76,48],[7,54,24,22,55,25],[22,45,15,13,46,16],[10,142,114,2,143,115],[19,74,46,4,75,47],[28,50,22,6,51,23],[33,46,16,4,47,17],[8,152,122,4,153,123],[22,73,45,3,74,46],[8,53,23,26,54,24],[12,45,15,28,46,16],[3,147,117,10,148,118],[3,73,45,23,74,46],[4,54,24,31,55,25],[11,45,15,31,46,16],[7,146,116,7,147,117],[21,73,45,7,74,46],[1,53,23,37,54,24],[19,45,15,26,46,16],[5,145,115,10,146,116],[19,75,47,10,76,48],[15,54,24,25,55,25],[23,45,15,25,46,16],[13,145,115,3,146,116],[2,74,46,29,75,47],[42,54,24,1,55,25],[23,45,15,28,46,16],[17,145,115],[10,74,46,23,75,47],[10,54,24,35,55,25],[19,45,15,35,46,16],[17,145,115,1,146,116],[14,74,46,21,75,47],[29,54,24,19,55,25],[11,45,15,46,46,16],[13,145,115,6,146,116],[14,74,46,23,75,47],[44,54,24,7,55,25],[59,46,16,1,47,17],[12,151,121,7,152,122],[12,75,47,26,76,48],[39,54,24,14,55,25],[22,45,15,41,46,16],[6,151,121,14,152,122],[6,75,47,34,76,48],[46,54,24,10,55,25],[2,45,15,64,46,16],[17,152,122,4,153,123],[29,74,46,14,75,47],[49,54,24,10,55,25],[24,45,15,46,46,16],[4,152,122,18,153,123],[13,74,46,32,75,47],[48,54,24,14,55,25],[42,45,15,32,46,16],[20,147,117,4,148,118],[40,75,47,7,76,48],[43,54,24,22,55,25],[10,45,15,67,46,16],[19,148,118,6,149,119],[18,75,47,31,76,48],[34,54,24,34,55,25],[20,45,15,61,46,16]],(t={}).getRSBlocks=function(t,r){var e=function(t,r){switch(r){case w.L:return k[4*(t-1)+0];case w.M:return k[4*(t-1)+1];case w.Q:return k[4*(t-1)+2];case w.H:return k[4*(t-1)+3];default:return}}(t,r);if(void 0===e)throw"bad rs block @ typeNumber:"+t+"/errorCorrectionLevel:"+r;for(var n,o,i=e.length/3,a=[],u=0;u<i;u+=1)for(var f=e[3*u+0],c=e[3*u+1],l=e[3*u+2],g=0;g<f;g+=1)a.push((n=l,o=void 0,(o={}).totalCount=c,o.dataCount=n,o));return a},t),B=function(){var e=[],n=0,o={getBuffer:function(){return e},getAt:function(t){var r=Math.floor(t/8);return 1==(e[r]>>>7-t%8&1)},put:function(t,r){for(var e=0;e<r;e+=1)o.putBit(1==(t>>>r-e-1&1))},getLengthInBits:function(){return n},putBit:function(t){var r=Math.floor(n/8);e.length<=r&&e.push(0),t&&(e[r]|=128>>>n%8),n+=1}};return o},x=function(t){var r=a,n=t,e={getMode:function(){return r},getLength:function(t){return n.length},write:function(t){for(var r=n,e=0;e+2<r.length;)t.put(o(r.substring(e,e+3)),10),e+=3;e<r.length&&(r.length-e==1?t.put(o(r.substring(e,e+1)),4):r.length-e==2&&t.put(o(r.substring(e,e+2)),7))}},o=function(t){for(var r=0,e=0;e<t.length;e+=1)r=10*r+i(t.charAt(e));return r},i=function(t){if("0"<=t&&t<="9")return t.charCodeAt(0)-"0".charCodeAt(0);throw"illegal char :"+t};return e},T=function(t){var r=u,n=t,e={getMode:function(){return r},getLength:function(t){return n.length},write:function(t){for(var r=n,e=0;e+1<r.length;)t.put(45*o(r.charAt(e))+o(r.charAt(e+1)),11),e+=2;e<r.length&&t.put(o(r.charAt(e)),6)}},o=function(t){if("0"<=t&&t<="9")return t.charCodeAt(0)-"0".charCodeAt(0);if("A"<=t&&t<="Z")return t.charCodeAt(0)-"A".charCodeAt(0)+10;switch(t){case" ":return 36;case"$":return 37;case"%":return 38;case"*":return 39;case"+":return 40;case"-":return 41;case".":return 42;case"/":return 43;case":":return 44;default:throw"illegal char :"+t}};return e},M=function(t){var r=o,e=i.stringToBytes(t),n={getMode:function(){return r},getLength:function(t){return e.length},write:function(t){for(var r=0;r<e.length;r+=1)t.put(e[r],8)}};return n},A=function(t){var r=f,n=i.stringToBytesFuncs.SJIS;if(!n)throw"sjis not supported.";!function(t,r){var e=n("�");if(2!=e.length||38726!=(e[0]<<8|e[1]))throw"sjis not supported."}();var o=n(t),e={getMode:function(){return r},getLength:function(t){return~~(o.length/2)},write:function(t){for(var r=o,e=0;e+1<r.length;){var n=(255&r[e])<<8|255&r[e+1];if(33088<=n&&n<=40956)n-=33088;else{if(!(57408<=n&&n<=60351))throw"illegal char at "+(e+1)+"/"+n;n-=49472}n=192*(n>>>8&255)+(255&n),t.put(n,13),e+=2}if(e<r.length)throw"illegal char at "+(e+1)}};return e},S=function(t){var e=t,n=0,o=0,i=0,r={read:function(){for(;i<8;){if(n>=e.length){if(0==i)return-1;throw"unexpected end of file./"+i}var t=e.charAt(n);if(n+=1,"="==t)return i=0,-1;t.match(/^\s$/)||(o=o<<6|a(t.charCodeAt(0)),i+=6)}var r=o>>>i-8&255;return i-=8,r}},a=function(t){if(65<=t&&t<=90)return t-65;if(97<=t&&t<=122)return t-97+26;if(48<=t&&t<=57)return t-48+52;if(43==t)return 62;if(47==t)return 63;throw"c:"+t};return r},L=function(t,r,e){for(var n=function(t,r){var n=t,o=r,g=new Array(t*r),e={setPixel:function(t,r,e){g[r*n+t]=e},write:function(t){t.writeString("GIF87a"),t.writeShort(n),t.writeShort(o),t.writeByte(128),t.writeByte(0),t.writeByte(0),t.writeByte(0),t.writeByte(0),t.writeByte(0),t.writeByte(255),t.writeByte(255),t.writeByte(255),t.writeString(","),t.writeShort(0),t.writeShort(0),t.writeShort(n),t.writeShort(o),t.writeByte(0);var r=i(2);t.writeByte(2);for(var e=0;255<r.length-e;)t.writeByte(255),t.writeBytes(r,e,255),e+=255;t.writeByte(r.length-e),t.writeBytes(r,e,r.length-e),t.writeByte(0),t.writeString(";")}},i=function(t){for(var r=1<<t,e=1+(1<<t),n=t+1,o=s(),i=0;i<r;i+=1)o.add(String.fromCharCode(i));o.add(String.fromCharCode(r)),o.add(String.fromCharCode(e));var a=b(),u=function(t){var e=t,n=0,o=0,r={write:function(t,r){if(t>>>r!=0)throw"length over";for(;8<=n+r;)e.writeByte(255&(t<<n|o)),r-=8-n,t>>>=8-n,n=o=0;o|=t<<n,n+=r},flush:function(){0<n&&e.writeByte(o)}};return r}(a);u.write(r,n);var f=0,c=String.fromCharCode(g[f]);for(f+=1;f<g.length;){var l=String.fromCharCode(g[f]);f+=1,o.contains(c+l)?c+=l:(u.write(o.indexOf(c),n),o.size()<4095&&(o.size()==1<<n&&(n+=1),o.add(c+l)),c=l)}return u.write(o.indexOf(c),n),u.write(e,n),u.flush(),a.toByteArray()},s=function(){var r={},e=0,n={add:function(t){if(n.contains(t))throw"dup key:"+t;r[t]=e,e+=1},size:function(){return e},indexOf:function(t){return r[t]},contains:function(t){return void 0!==r[t]}};return n};return e}(t,r),o=0;o<r;o+=1)for(var i=0;i<t;i+=1)n.setPixel(i,o,e(i,o));var a=b();n.write(a);for(var u=function(){function e(t){a+=String.fromCharCode(r(63&t))}var n=0,o=0,i=0,a="",t={},r=function(t){if(t<0);else{if(t<26)return 65+t;if(t<52)return t-26+97;if(t<62)return t-52+48;if(62==t)return 43;if(63==t)return 47}throw"n:"+t};return t.writeByte=function(t){for(n=n<<8|255&t,o+=8,i+=1;6<=o;)e(n>>>o-6),o-=6},t.flush=function(){if(0<o&&(e(n<<6-o),o=n=0),i%3!=0)for(var t=3-i%3,r=0;r<t;r+=1)a+="="},t.toString=function(){return a},t}(),f=a.toByteArray(),c=0;c<f.length;c+=1)u.writeByte(f[c]);return u.flush(),"data:image/gif;base64,"+u};return i}();a.stringToBytesFuncs["UTF-8"]=function(t){return function(t){for(var r=[],e=0;e<t.length;e++){var n=t.charCodeAt(e);n<128?r.push(n):n<2048?r.push(192|n>>6,128|63&n):n<55296||57344<=n?r.push(224|n>>12,128|n>>6&63,128|63&n):(e++,n=65536+((1023&n)<<10|1023&t.charCodeAt(e)),r.push(240|n>>18,128|n>>12&63,128|n>>6&63,128|63&n))}return r}(t)},o=[],void 0===(i="function"==typeof(n=function(){return a})?n.apply(r,o):n)||(t.exports=i)}])});
\ No newline at end of file
diff --git a/oxAuth/Server/src/main/webapp/js/jquery-ui.min.js b/oxAuth/Server/src/main/webapp/js/jquery-ui.min.js
new file mode 100644
index 00000000..50b036f4
--- /dev/null
+++ b/oxAuth/Server/src/main/webapp/js/jquery-ui.min.js
@@ -0,0 +1,6 @@
+/*! jQuery UI - v1.13.2 - 2022-07-14
+* http://jqueryui.com
+* Includes: widget.js, position.js, data.js, disable-selection.js, effect.js, effects/effect-blind.js, effects/effect-bounce.js, effects/effect-clip.js, effects/effect-drop.js, effects/effect-explode.js, effects/effect-fade.js, effects/effect-fold.js, effects/effect-highlight.js, effects/effect-puff.js, effects/effect-pulsate.js, effects/effect-scale.js, effects/effect-shake.js, effects/effect-size.js, effects/effect-slide.js, effects/effect-transfer.js, focusable.js, form-reset-mixin.js, jquery-patch.js, keycode.js, labels.js, scroll-parent.js, tabbable.js, unique-id.js, widgets/accordion.js, widgets/autocomplete.js, widgets/button.js, widgets/checkboxradio.js, widgets/controlgroup.js, widgets/datepicker.js, widgets/dialog.js, widgets/draggable.js, widgets/droppable.js, widgets/menu.js, widgets/mouse.js, widgets/progressbar.js, widgets/resizable.js, widgets/selectable.js, widgets/selectmenu.js, widgets/slider.js, widgets/sortable.js, widgets/spinner.js, widgets/tabs.js, widgets/tooltip.js
+* Copyright jQuery Foundation and other contributors; Licensed MIT */
+
+!function(t){"use strict";"function"==typeof define&&define.amd?define(["jquery"],t):t(jQuery)}(function(V){"use strict";V.ui=V.ui||{};V.ui.version="1.13.2";var n,i=0,a=Array.prototype.hasOwnProperty,r=Array.prototype.slice;V.cleanData=(n=V.cleanData,function(t){for(var e,i,s=0;null!=(i=t[s]);s++)(e=V._data(i,"events"))&&e.remove&&V(i).triggerHandler("remove");n(t)}),V.widget=function(t,i,e){var s,n,o,a={},r=t.split(".")[0],l=r+"-"+(t=t.split(".")[1]);return e||(e=i,i=V.Widget),Array.isArray(e)&&(e=V.extend.apply(null,[{}].concat(e))),V.expr.pseudos[l.toLowerCase()]=function(t){return!!V.data(t,l)},V[r]=V[r]||{},s=V[r][t],n=V[r][t]=function(t,e){if(!this||!this._createWidget)return new n(t,e);arguments.length&&this._createWidget(t,e)},V.extend(n,s,{version:e.version,_proto:V.extend({},e),_childConstructors:[]}),(o=new i).options=V.widget.extend({},o.options),V.each(e,function(e,s){function n(){return i.prototype[e].apply(this,arguments)}function o(t){return i.prototype[e].apply(this,t)}a[e]="function"==typeof s?function(){var t,e=this._super,i=this._superApply;return this._super=n,this._superApply=o,t=s.apply(this,arguments),this._super=e,this._superApply=i,t}:s}),n.prototype=V.widget.extend(o,{widgetEventPrefix:s&&o.widgetEventPrefix||t},a,{constructor:n,namespace:r,widgetName:t,widgetFullName:l}),s?(V.each(s._childConstructors,function(t,e){var i=e.prototype;V.widget(i.namespace+"."+i.widgetName,n,e._proto)}),delete s._childConstructors):i._childConstructors.push(n),V.widget.bridge(t,n),n},V.widget.extend=function(t){for(var e,i,s=r.call(arguments,1),n=0,o=s.length;n<o;n++)for(e in s[n])i=s[n][e],a.call(s[n],e)&&void 0!==i&&(V.isPlainObject(i)?t[e]=V.isPlainObject(t[e])?V.widget.extend({},t[e],i):V.widget.extend({},i):t[e]=i);return t},V.widget.bridge=function(o,e){var a=e.prototype.widgetFullName||o;V.fn[o]=function(i){var t="string"==typeof i,s=r.call(arguments,1),n=this;return t?this.length||"instance"!==i?this.each(function(){var t,e=V.data(this,a);return"instance"===i?(n=e,!1):e?"function"!=typeof e[i]||"_"===i.charAt(0)?V.error("no such method '"+i+"' for "+o+" widget instance"):(t=e[i].apply(e,s))!==e&&void 0!==t?(n=t&&t.jquery?n.pushStack(t.get()):t,!1):void 0:V.error("cannot call methods on "+o+" prior to initialization; attempted to call method '"+i+"'")}):n=void 0:(s.length&&(i=V.widget.extend.apply(null,[i].concat(s))),this.each(function(){var t=V.data(this,a);t?(t.option(i||{}),t._init&&t._init()):V.data(this,a,new e(i,this))})),n}},V.Widget=function(){},V.Widget._childConstructors=[],V.Widget.prototype={widgetName:"widget",widgetEventPrefix:"",defaultElement:"<div>",options:{classes:{},disabled:!1,create:null},_createWidget:function(t,e){e=V(e||this.defaultElement||this)[0],this.element=V(e),this.uuid=i++,this.eventNamespace="."+this.widgetName+this.uuid,this.bindings=V(),this.hoverable=V(),this.focusable=V(),this.classesElementLookup={},e!==this&&(V.data(e,this.widgetFullName,this),this._on(!0,this.element,{remove:function(t){t.target===e&&this.destroy()}}),this.document=V(e.style?e.ownerDocument:e.document||e),this.window=V(this.document[0].defaultView||this.document[0].parentWindow)),this.options=V.widget.extend({},this.options,this._getCreateOptions(),t),this._create(),this.options.disabled&&this._setOptionDisabled(this.options.disabled),this._trigger("create",null,this._getCreateEventData()),this._init()},_getCreateOptions:function(){return{}},_getCreateEventData:V.noop,_create:V.noop,_init:V.noop,destroy:function(){var i=this;this._destroy(),V.each(this.classesElementLookup,function(t,e){i._removeClass(e,t)}),this.element.off(this.eventNamespace).removeData(this.widgetFullName),this.widget().off(this.eventNamespace).removeAttr("aria-disabled"),this.bindings.off(this.eventNamespace)},_destroy:V.noop,widget:function(){return this.element},option:function(t,e){var i,s,n,o=t;if(0===arguments.length)return V.widget.extend({},this.options);if("string"==typeof t)if(o={},t=(i=t.split(".")).shift(),i.length){for(s=o[t]=V.widget.extend({},this.options[t]),n=0;n<i.length-1;n++)s[i[n]]=s[i[n]]||{},s=s[i[n]];if(t=i.pop(),1===arguments.length)return void 0===s[t]?null:s[t];s[t]=e}else{if(1===arguments.length)return void 0===this.options[t]?null:this.options[t];o[t]=e}return this._setOptions(o),this},_setOptions:function(t){for(var e in t)this._setOption(e,t[e]);return this},_setOption:function(t,e){return"classes"===t&&this._setOptionClasses(e),this.options[t]=e,"disabled"===t&&this._setOptionDisabled(e),this},_setOptionClasses:function(t){var e,i,s;for(e in t)s=this.classesElementLookup[e],t[e]!==this.options.classes[e]&&s&&s.length&&(i=V(s.get()),this._removeClass(s,e),i.addClass(this._classes({element:i,keys:e,classes:t,add:!0})))},_setOptionDisabled:function(t){this._toggleClass(this.widget(),this.widgetFullName+"-disabled",null,!!t),t&&(this._removeClass(this.hoverable,null,"ui-state-hover"),this._removeClass(this.focusable,null,"ui-state-focus"))},enable:function(){return this._setOptions({disabled:!1})},disable:function(){return this._setOptions({disabled:!0})},_classes:function(n){var o=[],a=this;function t(t,e){for(var i,s=0;s<t.length;s++)i=a.classesElementLookup[t[s]]||V(),i=n.add?(function(){var i=[];n.element.each(function(t,e){V.map(a.classesElementLookup,function(t){return t}).some(function(t){return t.is(e)})||i.push(e)}),a._on(V(i),{remove:"_untrackClassesElement"})}(),V(V.uniqueSort(i.get().concat(n.element.get())))):V(i.not(n.element).get()),a.classesElementLookup[t[s]]=i,o.push(t[s]),e&&n.classes[t[s]]&&o.push(n.classes[t[s]])}return(n=V.extend({element:this.element,classes:this.options.classes||{}},n)).keys&&t(n.keys.match(/\S+/g)||[],!0),n.extra&&t(n.extra.match(/\S+/g)||[]),o.join(" ")},_untrackClassesElement:function(i){var s=this;V.each(s.classesElementLookup,function(t,e){-1!==V.inArray(i.target,e)&&(s.classesElementLookup[t]=V(e.not(i.target).get()))}),this._off(V(i.target))},_removeClass:function(t,e,i){return this._toggleClass(t,e,i,!1)},_addClass:function(t,e,i){return this._toggleClass(t,e,i,!0)},_toggleClass:function(t,e,i,s){var n="string"==typeof t||null===t,i={extra:n?e:i,keys:n?t:e,element:n?this.element:t,add:s="boolean"==typeof s?s:i};return i.element.toggleClass(this._classes(i),s),this},_on:function(n,o,t){var a,r=this;"boolean"!=typeof n&&(t=o,o=n,n=!1),t?(o=a=V(o),this.bindings=this.bindings.add(o)):(t=o,o=this.element,a=this.widget()),V.each(t,function(t,e){function i(){if(n||!0!==r.options.disabled&&!V(this).hasClass("ui-state-disabled"))return("string"==typeof e?r[e]:e).apply(r,arguments)}"string"!=typeof e&&(i.guid=e.guid=e.guid||i.guid||V.guid++);var s=t.match(/^([\w:-]*)\s*(.*)$/),t=s[1]+r.eventNamespace,s=s[2];s?a.on(t,s,i):o.on(t,i)})},_off:function(t,e){e=(e||"").split(" ").join(this.eventNamespace+" ")+this.eventNamespace,t.off(e),this.bindings=V(this.bindings.not(t).get()),this.focusable=V(this.focusable.not(t).get()),this.hoverable=V(this.hoverable.not(t).get())},_delay:function(t,e){var i=this;return setTimeout(function(){return("string"==typeof t?i[t]:t).apply(i,arguments)},e||0)},_hoverable:function(t){this.hoverable=this.hoverable.add(t),this._on(t,{mouseenter:function(t){this._addClass(V(t.currentTarget),null,"ui-state-hover")},mouseleave:function(t){this._removeClass(V(t.currentTarget),null,"ui-state-hover")}})},_focusable:function(t){this.focusable=this.focusable.add(t),this._on(t,{focusin:function(t){this._addClass(V(t.currentTarget),null,"ui-state-focus")},focusout:function(t){this._removeClass(V(t.currentTarget),null,"ui-state-focus")}})},_trigger:function(t,e,i){var s,n,o=this.options[t];if(i=i||{},(e=V.Event(e)).type=(t===this.widgetEventPrefix?t:this.widgetEventPrefix+t).toLowerCase(),e.target=this.element[0],n=e.originalEvent)for(s in n)s in e||(e[s]=n[s]);return this.element.trigger(e,i),!("function"==typeof o&&!1===o.apply(this.element[0],[e].concat(i))||e.isDefaultPrevented())}},V.each({show:"fadeIn",hide:"fadeOut"},function(o,a){V.Widget.prototype["_"+o]=function(e,t,i){var s,n=(t="string"==typeof t?{effect:t}:t)?!0!==t&&"number"!=typeof t&&t.effect||a:o;"number"==typeof(t=t||{})?t={duration:t}:!0===t&&(t={}),s=!V.isEmptyObject(t),t.complete=i,t.delay&&e.delay(t.delay),s&&V.effects&&V.effects.effect[n]?e[o](t):n!==o&&e[n]?e[n](t.duration,t.easing,i):e.queue(function(t){V(this)[o](),i&&i.call(e[0]),t()})}});var s,x,k,o,l,h,c,u,C;V.widget;function D(t,e,i){return[parseFloat(t[0])*(u.test(t[0])?e/100:1),parseFloat(t[1])*(u.test(t[1])?i/100:1)]}function I(t,e){return parseInt(V.css(t,e),10)||0}function T(t){return null!=t&&t===t.window}x=Math.max,k=Math.abs,o=/left|center|right/,l=/top|center|bottom/,h=/[\+\-]\d+(\.[\d]+)?%?/,c=/^\w+/,u=/%$/,C=V.fn.position,V.position={scrollbarWidth:function(){if(void 0!==s)return s;var t,e=V("<div style='display:block;position:absolute;width:200px;height:200px;overflow:hidden;'><div style='height:300px;width:auto;'></div></div>"),i=e.children()[0];return V("body").append(e),t=i.offsetWidth,e.css("overflow","scroll"),t===(i=i.offsetWidth)&&(i=e[0].clientWidth),e.remove(),s=t-i},getScrollInfo:function(t){var e=t.isWindow||t.isDocument?"":t.element.css("overflow-x"),i=t.isWindow||t.isDocument?"":t.element.css("overflow-y"),e="scroll"===e||"auto"===e&&t.width<t.element[0].scrollWidth;return{width:"scroll"===i||"auto"===i&&t.height<t.element[0].scrollHeight?V.position.scrollbarWidth():0,height:e?V.position.scrollbarWidth():0}},getWithinInfo:function(t){var e=V(t||window),i=T(e[0]),s=!!e[0]&&9===e[0].nodeType;return{element:e,isWindow:i,isDocument:s,offset:!i&&!s?V(t).offset():{left:0,top:0},scrollLeft:e.scrollLeft(),scrollTop:e.scrollTop(),width:e.outerWidth(),height:e.outerHeight()}}},V.fn.position=function(u){if(!u||!u.of)return C.apply(this,arguments);var d,p,f,g,m,t,_="string"==typeof(u=V.extend({},u)).of?V(document).find(u.of):V(u.of),v=V.position.getWithinInfo(u.within),b=V.position.getScrollInfo(v),y=(u.collision||"flip").split(" "),w={},e=9===(t=(e=_)[0]).nodeType?{width:e.width(),height:e.height(),offset:{top:0,left:0}}:T(t)?{width:e.width(),height:e.height(),offset:{top:e.scrollTop(),left:e.scrollLeft()}}:t.preventDefault?{width:0,height:0,offset:{top:t.pageY,left:t.pageX}}:{width:e.outerWidth(),height:e.outerHeight(),offset:e.offset()};return _[0].preventDefault&&(u.at="left top"),p=e.width,f=e.height,m=V.extend({},g=e.offset),V.each(["my","at"],function(){var t,e,i=(u[this]||"").split(" ");(i=1===i.length?o.test(i[0])?i.concat(["center"]):l.test(i[0])?["center"].concat(i):["center","center"]:i)[0]=o.test(i[0])?i[0]:"center",i[1]=l.test(i[1])?i[1]:"center",t=h.exec(i[0]),e=h.exec(i[1]),w[this]=[t?t[0]:0,e?e[0]:0],u[this]=[c.exec(i[0])[0],c.exec(i[1])[0]]}),1===y.length&&(y[1]=y[0]),"right"===u.at[0]?m.left+=p:"center"===u.at[0]&&(m.left+=p/2),"bottom"===u.at[1]?m.top+=f:"center"===u.at[1]&&(m.top+=f/2),d=D(w.at,p,f),m.left+=d[0],m.top+=d[1],this.each(function(){var i,t,a=V(this),r=a.outerWidth(),l=a.outerHeight(),e=I(this,"marginLeft"),s=I(this,"marginTop"),n=r+e+I(this,"marginRight")+b.width,o=l+s+I(this,"marginBottom")+b.height,h=V.extend({},m),c=D(w.my,a.outerWidth(),a.outerHeight());"right"===u.my[0]?h.left-=r:"center"===u.my[0]&&(h.left-=r/2),"bottom"===u.my[1]?h.top-=l:"center"===u.my[1]&&(h.top-=l/2),h.left+=c[0],h.top+=c[1],i={marginLeft:e,marginTop:s},V.each(["left","top"],function(t,e){V.ui.position[y[t]]&&V.ui.position[y[t]][e](h,{targetWidth:p,targetHeight:f,elemWidth:r,elemHeight:l,collisionPosition:i,collisionWidth:n,collisionHeight:o,offset:[d[0]+c[0],d[1]+c[1]],my:u.my,at:u.at,within:v,elem:a})}),u.using&&(t=function(t){var e=g.left-h.left,i=e+p-r,s=g.top-h.top,n=s+f-l,o={target:{element:_,left:g.left,top:g.top,width:p,height:f},element:{element:a,left:h.left,top:h.top,width:r,height:l},horizontal:i<0?"left":0<e?"right":"center",vertical:n<0?"top":0<s?"bottom":"middle"};p<r&&k(e+i)<p&&(o.horizontal="center"),f<l&&k(s+n)<f&&(o.vertical="middle"),x(k(e),k(i))>x(k(s),k(n))?o.important="horizontal":o.important="vertical",u.using.call(this,t,o)}),a.offset(V.extend(h,{using:t}))})},V.ui.position={fit:{left:function(t,e){var i=e.within,s=i.isWindow?i.scrollLeft:i.offset.left,n=i.width,o=t.left-e.collisionPosition.marginLeft,a=s-o,r=o+e.collisionWidth-n-s;e.collisionWidth>n?0<a&&r<=0?(i=t.left+a+e.collisionWidth-n-s,t.left+=a-i):t.left=!(0<r&&a<=0)&&r<a?s+n-e.collisionWidth:s:0<a?t.left+=a:0<r?t.left-=r:t.left=x(t.left-o,t.left)},top:function(t,e){var i=e.within,s=i.isWindow?i.scrollTop:i.offset.top,n=e.within.height,o=t.top-e.collisionPosition.marginTop,a=s-o,r=o+e.collisionHeight-n-s;e.collisionHeight>n?0<a&&r<=0?(i=t.top+a+e.collisionHeight-n-s,t.top+=a-i):t.top=!(0<r&&a<=0)&&r<a?s+n-e.collisionHeight:s:0<a?t.top+=a:0<r?t.top-=r:t.top=x(t.top-o,t.top)}},flip:{left:function(t,e){var i=e.within,s=i.offset.left+i.scrollLeft,n=i.width,o=i.isWindow?i.scrollLeft:i.offset.left,a=t.left-e.collisionPosition.marginLeft,r=a-o,l=a+e.collisionWidth-n-o,h="left"===e.my[0]?-e.elemWidth:"right"===e.my[0]?e.elemWidth:0,i="left"===e.at[0]?e.targetWidth:"right"===e.at[0]?-e.targetWidth:0,a=-2*e.offset[0];r<0?((s=t.left+h+i+a+e.collisionWidth-n-s)<0||s<k(r))&&(t.left+=h+i+a):0<l&&(0<(o=t.left-e.collisionPosition.marginLeft+h+i+a-o)||k(o)<l)&&(t.left+=h+i+a)},top:function(t,e){var i=e.within,s=i.offset.top+i.scrollTop,n=i.height,o=i.isWindow?i.scrollTop:i.offset.top,a=t.top-e.collisionPosition.marginTop,r=a-o,l=a+e.collisionHeight-n-o,h="top"===e.my[1]?-e.elemHeight:"bottom"===e.my[1]?e.elemHeight:0,i="top"===e.at[1]?e.targetHeight:"bottom"===e.at[1]?-e.targetHeight:0,a=-2*e.offset[1];r<0?((s=t.top+h+i+a+e.collisionHeight-n-s)<0||s<k(r))&&(t.top+=h+i+a):0<l&&(0<(o=t.top-e.collisionPosition.marginTop+h+i+a-o)||k(o)<l)&&(t.top+=h+i+a)}},flipfit:{left:function(){V.ui.position.flip.left.apply(this,arguments),V.ui.position.fit.left.apply(this,arguments)},top:function(){V.ui.position.flip.top.apply(this,arguments),V.ui.position.fit.top.apply(this,arguments)}}};V.ui.position,V.extend(V.expr.pseudos,{data:V.expr.createPseudo?V.expr.createPseudo(function(e){return function(t){return!!V.data(t,e)}}):function(t,e,i){return!!V.data(t,i[3])}}),V.fn.extend({disableSelection:(t="onselectstart"in document.createElement("div")?"selectstart":"mousedown",function(){return this.on(t+".ui-disableSelection",function(t){t.preventDefault()})}),enableSelection:function(){return this.off(".ui-disableSelection")}});var t,d=V,p={},e=p.toString,f=/^([\-+])=\s*(\d+\.?\d*)/,g=[{re:/rgba?\(\s*(\d{1,3})\s*,\s*(\d{1,3})\s*,\s*(\d{1,3})\s*(?:,\s*(\d?(?:\.\d+)?)\s*)?\)/,parse:function(t){return[t[1],t[2],t[3],t[4]]}},{re:/rgba?\(\s*(\d+(?:\.\d+)?)\%\s*,\s*(\d+(?:\.\d+)?)\%\s*,\s*(\d+(?:\.\d+)?)\%\s*(?:,\s*(\d?(?:\.\d+)?)\s*)?\)/,parse:function(t){return[2.55*t[1],2.55*t[2],2.55*t[3],t[4]]}},{re:/#([a-f0-9]{2})([a-f0-9]{2})([a-f0-9]{2})([a-f0-9]{2})?/,parse:function(t){return[parseInt(t[1],16),parseInt(t[2],16),parseInt(t[3],16),t[4]?(parseInt(t[4],16)/255).toFixed(2):1]}},{re:/#([a-f0-9])([a-f0-9])([a-f0-9])([a-f0-9])?/,parse:function(t){return[parseInt(t[1]+t[1],16),parseInt(t[2]+t[2],16),parseInt(t[3]+t[3],16),t[4]?(parseInt(t[4]+t[4],16)/255).toFixed(2):1]}},{re:/hsla?\(\s*(\d+(?:\.\d+)?)\s*,\s*(\d+(?:\.\d+)?)\%\s*,\s*(\d+(?:\.\d+)?)\%\s*(?:,\s*(\d?(?:\.\d+)?)\s*)?\)/,space:"hsla",parse:function(t){return[t[1],t[2]/100,t[3]/100,t[4]]}}],m=d.Color=function(t,e,i,s){return new d.Color.fn.parse(t,e,i,s)},_={rgba:{props:{red:{idx:0,type:"byte"},green:{idx:1,type:"byte"},blue:{idx:2,type:"byte"}}},hsla:{props:{hue:{idx:0,type:"degrees"},saturation:{idx:1,type:"percent"},lightness:{idx:2,type:"percent"}}}},v={byte:{floor:!0,max:255},percent:{max:1},degrees:{mod:360,floor:!0}},b=m.support={},y=d("<p>")[0],w=d.each;function P(t){return null==t?t+"":"object"==typeof t?p[e.call(t)]||"object":typeof t}function M(t,e,i){var s=v[e.type]||{};return null==t?i||!e.def?null:e.def:(t=s.floor?~~t:parseFloat(t),isNaN(t)?e.def:s.mod?(t+s.mod)%s.mod:Math.min(s.max,Math.max(0,t)))}function S(s){var n=m(),o=n._rgba=[];return s=s.toLowerCase(),w(g,function(t,e){var i=e.re.exec(s),i=i&&e.parse(i),e=e.space||"rgba";if(i)return i=n[e](i),n[_[e].cache]=i[_[e].cache],o=n._rgba=i._rgba,!1}),o.length?("0,0,0,0"===o.join()&&d.extend(o,B.transparent),n):B[s]}function H(t,e,i){return 6*(i=(i+1)%1)<1?t+(e-t)*i*6:2*i<1?e:3*i<2?t+(e-t)*(2/3-i)*6:t}y.style.cssText="background-color:rgba(1,1,1,.5)",b.rgba=-1<y.style.backgroundColor.indexOf("rgba"),w(_,function(t,e){e.cache="_"+t,e.props.alpha={idx:3,type:"percent",def:1}}),d.each("Boolean Number String Function Array Date RegExp Object Error Symbol".split(" "),function(t,e){p["[object "+e+"]"]=e.toLowerCase()}),(m.fn=d.extend(m.prototype,{parse:function(n,t,e,i){if(void 0===n)return this._rgba=[null,null,null,null],this;(n.jquery||n.nodeType)&&(n=d(n).css(t),t=void 0);var o=this,s=P(n),a=this._rgba=[];return void 0!==t&&(n=[n,t,e,i],s="array"),"string"===s?this.parse(S(n)||B._default):"array"===s?(w(_.rgba.props,function(t,e){a[e.idx]=M(n[e.idx],e)}),this):"object"===s?(w(_,n instanceof m?function(t,e){n[e.cache]&&(o[e.cache]=n[e.cache].slice())}:function(t,i){var s=i.cache;w(i.props,function(t,e){if(!o[s]&&i.to){if("alpha"===t||null==n[t])return;o[s]=i.to(o._rgba)}o[s][e.idx]=M(n[t],e,!0)}),o[s]&&d.inArray(null,o[s].slice(0,3))<0&&(null==o[s][3]&&(o[s][3]=1),i.from&&(o._rgba=i.from(o[s])))}),this):void 0},is:function(t){var n=m(t),o=!0,a=this;return w(_,function(t,e){var i,s=n[e.cache];return s&&(i=a[e.cache]||e.to&&e.to(a._rgba)||[],w(e.props,function(t,e){if(null!=s[e.idx])return o=s[e.idx]===i[e.idx]})),o}),o},_space:function(){var i=[],s=this;return w(_,function(t,e){s[e.cache]&&i.push(t)}),i.pop()},transition:function(t,a){var e=(h=m(t))._space(),i=_[e],t=0===this.alpha()?m("transparent"):this,r=t[i.cache]||i.to(t._rgba),l=r.slice(),h=h[i.cache];return w(i.props,function(t,e){var i=e.idx,s=r[i],n=h[i],o=v[e.type]||{};null!==n&&(null===s?l[i]=n:(o.mod&&(n-s>o.mod/2?s+=o.mod:s-n>o.mod/2&&(s-=o.mod)),l[i]=M((n-s)*a+s,e)))}),this[e](l)},blend:function(t){if(1===this._rgba[3])return this;var e=this._rgba.slice(),i=e.pop(),s=m(t)._rgba;return m(d.map(e,function(t,e){return(1-i)*s[e]+i*t}))},toRgbaString:function(){var t="rgba(",e=d.map(this._rgba,function(t,e){return null!=t?t:2<e?1:0});return 1===e[3]&&(e.pop(),t="rgb("),t+e.join()+")"},toHslaString:function(){var t="hsla(",e=d.map(this.hsla(),function(t,e){return null==t&&(t=2<e?1:0),t=e&&e<3?Math.round(100*t)+"%":t});return 1===e[3]&&(e.pop(),t="hsl("),t+e.join()+")"},toHexString:function(t){var e=this._rgba.slice(),i=e.pop();return t&&e.push(~~(255*i)),"#"+d.map(e,function(t){return 1===(t=(t||0).toString(16)).length?"0"+t:t}).join("")},toString:function(){return 0===this._rgba[3]?"transparent":this.toRgbaString()}})).parse.prototype=m.fn,_.hsla.to=function(t){if(null==t[0]||null==t[1]||null==t[2])return[null,null,null,t[3]];var e=t[0]/255,i=t[1]/255,s=t[2]/255,n=t[3],o=Math.max(e,i,s),a=Math.min(e,i,s),r=o-a,l=o+a,t=.5*l,i=a===o?0:e===o?60*(i-s)/r+360:i===o?60*(s-e)/r+120:60*(e-i)/r+240,l=0==r?0:t<=.5?r/l:r/(2-l);return[Math.round(i)%360,l,t,null==n?1:n]},_.hsla.from=function(t){if(null==t[0]||null==t[1]||null==t[2])return[null,null,null,t[3]];var e=t[0]/360,i=t[1],s=t[2],t=t[3],i=s<=.5?s*(1+i):s+i-s*i,s=2*s-i;return[Math.round(255*H(s,i,e+1/3)),Math.round(255*H(s,i,e)),Math.round(255*H(s,i,e-1/3)),t]},w(_,function(l,t){var e=t.props,o=t.cache,a=t.to,r=t.from;m.fn[l]=function(t){if(a&&!this[o]&&(this[o]=a(this._rgba)),void 0===t)return this[o].slice();var i=P(t),s="array"===i||"object"===i?t:arguments,n=this[o].slice();return w(e,function(t,e){t=s["object"===i?t:e.idx];null==t&&(t=n[e.idx]),n[e.idx]=M(t,e)}),r?((t=m(r(n)))[o]=n,t):m(n)},w(e,function(a,r){m.fn[a]||(m.fn[a]=function(t){var e,i=P(t),s="alpha"===a?this._hsla?"hsla":"rgba":l,n=this[s](),o=n[r.idx];return"undefined"===i?o:("function"===i&&(i=P(t=t.call(this,o))),null==t&&r.empty?this:("string"===i&&(e=f.exec(t))&&(t=o+parseFloat(e[2])*("+"===e[1]?1:-1)),n[r.idx]=t,this[s](n)))})})}),(m.hook=function(t){t=t.split(" ");w(t,function(t,o){d.cssHooks[o]={set:function(t,e){var i,s,n="";if("transparent"!==e&&("string"!==P(e)||(i=S(e)))){if(e=m(i||e),!b.rgba&&1!==e._rgba[3]){for(s="backgroundColor"===o?t.parentNode:t;(""===n||"transparent"===n)&&s&&s.style;)try{n=d.css(s,"backgroundColor"),s=s.parentNode}catch(t){}e=e.blend(n&&"transparent"!==n?n:"_default")}e=e.toRgbaString()}try{t.style[o]=e}catch(t){}}},d.fx.step[o]=function(t){t.colorInit||(t.start=m(t.elem,o),t.end=m(t.end),t.colorInit=!0),d.cssHooks[o].set(t.elem,t.start.transition(t.end,t.pos))}})})("backgroundColor borderBottomColor borderLeftColor borderRightColor borderTopColor color columnRuleColor outlineColor textDecorationColor textEmphasisColor"),d.cssHooks.borderColor={expand:function(i){var s={};return w(["Top","Right","Bottom","Left"],function(t,e){s["border"+e+"Color"]=i}),s}};var z,A,O,N,E,W,F,L,R,Y,B=d.Color.names={aqua:"#00ffff",black:"#000000",blue:"#0000ff",fuchsia:"#ff00ff",gray:"#808080",green:"#008000",lime:"#00ff00",maroon:"#800000",navy:"#000080",olive:"#808000",purple:"#800080",red:"#ff0000",silver:"#c0c0c0",teal:"#008080",white:"#ffffff",yellow:"#ffff00",transparent:[null,null,null,0],_default:"#ffffff"},j="ui-effects-",q="ui-effects-style",K="ui-effects-animated";function U(t){var e,i,s=t.ownerDocument.defaultView?t.ownerDocument.defaultView.getComputedStyle(t,null):t.currentStyle,n={};if(s&&s.length&&s[0]&&s[s[0]])for(i=s.length;i--;)"string"==typeof s[e=s[i]]&&(n[e.replace(/-([\da-z])/gi,function(t,e){return e.toUpperCase()})]=s[e]);else for(e in s)"string"==typeof s[e]&&(n[e]=s[e]);return n}function X(t,e,i,s){return t={effect:t=V.isPlainObject(t)?(e=t).effect:t},"function"==typeof(e=null==e?{}:e)&&(s=e,i=null,e={}),"number"!=typeof e&&!V.fx.speeds[e]||(s=i,i=e,e={}),"function"==typeof i&&(s=i,i=null),e&&V.extend(t,e),i=i||e.duration,t.duration=V.fx.off?0:"number"==typeof i?i:i in V.fx.speeds?V.fx.speeds[i]:V.fx.speeds._default,t.complete=s||e.complete,t}function $(t){return!t||"number"==typeof t||V.fx.speeds[t]||("string"==typeof t&&!V.effects.effect[t]||("function"==typeof t||"object"==typeof t&&!t.effect))}function G(t,e){var i=e.outerWidth(),e=e.outerHeight(),t=/^rect\((-?\d*\.?\d*px|-?\d+%|auto),?\s*(-?\d*\.?\d*px|-?\d+%|auto),?\s*(-?\d*\.?\d*px|-?\d+%|auto),?\s*(-?\d*\.?\d*px|-?\d+%|auto)\)$/.exec(t)||["",0,i,e,0];return{top:parseFloat(t[1])||0,right:"auto"===t[2]?i:parseFloat(t[2]),bottom:"auto"===t[3]?e:parseFloat(t[3]),left:parseFloat(t[4])||0}}V.effects={effect:{}},N=["add","remove","toggle"],E={border:1,borderBottom:1,borderColor:1,borderLeft:1,borderRight:1,borderTop:1,borderWidth:1,margin:1,padding:1},V.each(["borderLeftStyle","borderRightStyle","borderBottomStyle","borderTopStyle"],function(t,e){V.fx.step[e]=function(t){("none"!==t.end&&!t.setAttr||1===t.pos&&!t.setAttr)&&(d.style(t.elem,e,t.end),t.setAttr=!0)}}),V.fn.addBack||(V.fn.addBack=function(t){return this.add(null==t?this.prevObject:this.prevObject.filter(t))}),V.effects.animateClass=function(n,t,e,i){var o=V.speed(t,e,i);return this.queue(function(){var i=V(this),t=i.attr("class")||"",e=(e=o.children?i.find("*").addBack():i).map(function(){return{el:V(this),start:U(this)}}),s=function(){V.each(N,function(t,e){n[e]&&i[e+"Class"](n[e])})};s(),e=e.map(function(){return this.end=U(this.el[0]),this.diff=function(t,e){var i,s,n={};for(i in e)s=e[i],t[i]!==s&&(E[i]||!V.fx.step[i]&&isNaN(parseFloat(s))||(n[i]=s));return n}(this.start,this.end),this}),i.attr("class",t),e=e.map(function(){var t=this,e=V.Deferred(),i=V.extend({},o,{queue:!1,complete:function(){e.resolve(t)}});return this.el.animate(this.diff,i),e.promise()}),V.when.apply(V,e.get()).done(function(){s(),V.each(arguments,function(){var e=this.el;V.each(this.diff,function(t){e.css(t,"")})}),o.complete.call(i[0])})})},V.fn.extend({addClass:(O=V.fn.addClass,function(t,e,i,s){return e?V.effects.animateClass.call(this,{add:t},e,i,s):O.apply(this,arguments)}),removeClass:(A=V.fn.removeClass,function(t,e,i,s){return 1<arguments.length?V.effects.animateClass.call(this,{remove:t},e,i,s):A.apply(this,arguments)}),toggleClass:(z=V.fn.toggleClass,function(t,e,i,s,n){return"boolean"==typeof e||void 0===e?i?V.effects.animateClass.call(this,e?{add:t}:{remove:t},i,s,n):z.apply(this,arguments):V.effects.animateClass.call(this,{toggle:t},e,i,s)}),switchClass:function(t,e,i,s,n){return V.effects.animateClass.call(this,{add:e,remove:t},i,s,n)}}),V.expr&&V.expr.pseudos&&V.expr.pseudos.animated&&(V.expr.pseudos.animated=(W=V.expr.pseudos.animated,function(t){return!!V(t).data(K)||W(t)})),!1!==V.uiBackCompat&&V.extend(V.effects,{save:function(t,e){for(var i=0,s=e.length;i<s;i++)null!==e[i]&&t.data(j+e[i],t[0].style[e[i]])},restore:function(t,e){for(var i,s=0,n=e.length;s<n;s++)null!==e[s]&&(i=t.data(j+e[s]),t.css(e[s],i))},setMode:function(t,e){return e="toggle"===e?t.is(":hidden")?"show":"hide":e},createWrapper:function(i){if(i.parent().is(".ui-effects-wrapper"))return i.parent();var s={width:i.outerWidth(!0),height:i.outerHeight(!0),float:i.css("float")},t=V("<div></div>").addClass("ui-effects-wrapper").css({fontSize:"100%",background:"transparent",border:"none",margin:0,padding:0}),e={width:i.width(),height:i.height()},n=document.activeElement;try{n.id}catch(t){n=document.body}return i.wrap(t),i[0]!==n&&!V.contains(i[0],n)||V(n).trigger("focus"),t=i.parent(),"static"===i.css("position")?(t.css({position:"relative"}),i.css({position:"relative"})):(V.extend(s,{position:i.css("position"),zIndex:i.css("z-index")}),V.each(["top","left","bottom","right"],function(t,e){s[e]=i.css(e),isNaN(parseInt(s[e],10))&&(s[e]="auto")}),i.css({position:"relative",top:0,left:0,right:"auto",bottom:"auto"})),i.css(e),t.css(s).show()},removeWrapper:function(t){var e=document.activeElement;return t.parent().is(".ui-effects-wrapper")&&(t.parent().replaceWith(t),t[0]!==e&&!V.contains(t[0],e)||V(e).trigger("focus")),t}}),V.extend(V.effects,{version:"1.13.2",define:function(t,e,i){return i||(i=e,e="effect"),V.effects.effect[t]=i,V.effects.effect[t].mode=e,i},scaledDimensions:function(t,e,i){if(0===e)return{height:0,width:0,outerHeight:0,outerWidth:0};var s="horizontal"!==i?(e||100)/100:1,e="vertical"!==i?(e||100)/100:1;return{height:t.height()*e,width:t.width()*s,outerHeight:t.outerHeight()*e,outerWidth:t.outerWidth()*s}},clipToBox:function(t){return{width:t.clip.right-t.clip.left,height:t.clip.bottom-t.clip.top,left:t.clip.left,top:t.clip.top}},unshift:function(t,e,i){var s=t.queue();1<e&&s.splice.apply(s,[1,0].concat(s.splice(e,i))),t.dequeue()},saveStyle:function(t){t.data(q,t[0].style.cssText)},restoreStyle:function(t){t[0].style.cssText=t.data(q)||"",t.removeData(q)},mode:function(t,e){t=t.is(":hidden");return"toggle"===e&&(e=t?"show":"hide"),e=(t?"hide"===e:"show"===e)?"none":e},getBaseline:function(t,e){var i,s;switch(t[0]){case"top":i=0;break;case"middle":i=.5;break;case"bottom":i=1;break;default:i=t[0]/e.height}switch(t[1]){case"left":s=0;break;case"center":s=.5;break;case"right":s=1;break;default:s=t[1]/e.width}return{x:s,y:i}},createPlaceholder:function(t){var e,i=t.css("position"),s=t.position();return t.css({marginTop:t.css("marginTop"),marginBottom:t.css("marginBottom"),marginLeft:t.css("marginLeft"),marginRight:t.css("marginRight")}).outerWidth(t.outerWidth()).outerHeight(t.outerHeight()),/^(static|relative)/.test(i)&&(i="absolute",e=V("<"+t[0].nodeName+">").insertAfter(t).css({display:/^(inline|ruby)/.test(t.css("display"))?"inline-block":"block",visibility:"hidden",marginTop:t.css("marginTop"),marginBottom:t.css("marginBottom"),marginLeft:t.css("marginLeft"),marginRight:t.css("marginRight"),float:t.css("float")}).outerWidth(t.outerWidth()).outerHeight(t.outerHeight()).addClass("ui-effects-placeholder"),t.data(j+"placeholder",e)),t.css({position:i,left:s.left,top:s.top}),e},removePlaceholder:function(t){var e=j+"placeholder",i=t.data(e);i&&(i.remove(),t.removeData(e))},cleanUp:function(t){V.effects.restoreStyle(t),V.effects.removePlaceholder(t)},setTransition:function(s,t,n,o){return o=o||{},V.each(t,function(t,e){var i=s.cssUnit(e);0<i[0]&&(o[e]=i[0]*n+i[1])}),o}}),V.fn.extend({effect:function(){function t(t){var e=V(this),i=V.effects.mode(e,r)||o;e.data(K,!0),l.push(i),o&&("show"===i||i===o&&"hide"===i)&&e.show(),o&&"none"===i||V.effects.saveStyle(e),"function"==typeof t&&t()}var s=X.apply(this,arguments),n=V.effects.effect[s.effect],o=n.mode,e=s.queue,i=e||"fx",a=s.complete,r=s.mode,l=[];return V.fx.off||!n?r?this[r](s.duration,a):this.each(function(){a&&a.call(this)}):!1===e?this.each(t).each(h):this.queue(i,t).queue(i,h);function h(t){var e=V(this);function i(){"function"==typeof a&&a.call(e[0]),"function"==typeof t&&t()}s.mode=l.shift(),!1===V.uiBackCompat||o?"none"===s.mode?(e[r](),i()):n.call(e[0],s,function(){e.removeData(K),V.effects.cleanUp(e),"hide"===s.mode&&e.hide(),i()}):(e.is(":hidden")?"hide"===r:"show"===r)?(e[r](),i()):n.call(e[0],s,i)}},show:(R=V.fn.show,function(t){if($(t))return R.apply(this,arguments);t=X.apply(this,arguments);return t.mode="show",this.effect.call(this,t)}),hide:(L=V.fn.hide,function(t){if($(t))return L.apply(this,arguments);t=X.apply(this,arguments);return t.mode="hide",this.effect.call(this,t)}),toggle:(F=V.fn.toggle,function(t){if($(t)||"boolean"==typeof t)return F.apply(this,arguments);t=X.apply(this,arguments);return t.mode="toggle",this.effect.call(this,t)}),cssUnit:function(t){var i=this.css(t),s=[];return V.each(["em","px","%","pt"],function(t,e){0<i.indexOf(e)&&(s=[parseFloat(i),e])}),s},cssClip:function(t){return t?this.css("clip","rect("+t.top+"px "+t.right+"px "+t.bottom+"px "+t.left+"px)"):G(this.css("clip"),this)},transfer:function(t,e){var i=V(this),s=V(t.to),n="fixed"===s.css("position"),o=V("body"),a=n?o.scrollTop():0,r=n?o.scrollLeft():0,o=s.offset(),o={top:o.top-a,left:o.left-r,height:s.innerHeight(),width:s.innerWidth()},s=i.offset(),l=V("<div class='ui-effects-transfer'></div>");l.appendTo("body").addClass(t.className).css({top:s.top-a,left:s.left-r,height:i.innerHeight(),width:i.innerWidth(),position:n?"fixed":"absolute"}).animate(o,t.duration,t.easing,function(){l.remove(),"function"==typeof e&&e()})}}),V.fx.step.clip=function(t){t.clipInit||(t.start=V(t.elem).cssClip(),"string"==typeof t.end&&(t.end=G(t.end,t.elem)),t.clipInit=!0),V(t.elem).cssClip({top:t.pos*(t.end.top-t.start.top)+t.start.top,right:t.pos*(t.end.right-t.start.right)+t.start.right,bottom:t.pos*(t.end.bottom-t.start.bottom)+t.start.bottom,left:t.pos*(t.end.left-t.start.left)+t.start.left})},Y={},V.each(["Quad","Cubic","Quart","Quint","Expo"],function(e,t){Y[t]=function(t){return Math.pow(t,e+2)}}),V.extend(Y,{Sine:function(t){return 1-Math.cos(t*Math.PI/2)},Circ:function(t){return 1-Math.sqrt(1-t*t)},Elastic:function(t){return 0===t||1===t?t:-Math.pow(2,8*(t-1))*Math.sin((80*(t-1)-7.5)*Math.PI/15)},Back:function(t){return t*t*(3*t-2)},Bounce:function(t){for(var e,i=4;t<((e=Math.pow(2,--i))-1)/11;);return 1/Math.pow(4,3-i)-7.5625*Math.pow((3*e-2)/22-t,2)}}),V.each(Y,function(t,e){V.easing["easeIn"+t]=e,V.easing["easeOut"+t]=function(t){return 1-e(1-t)},V.easing["easeInOut"+t]=function(t){return t<.5?e(2*t)/2:1-e(-2*t+2)/2}});y=V.effects,V.effects.define("blind","hide",function(t,e){var i={up:["bottom","top"],vertical:["bottom","top"],down:["top","bottom"],left:["right","left"],horizontal:["right","left"],right:["left","right"]},s=V(this),n=t.direction||"up",o=s.cssClip(),a={clip:V.extend({},o)},r=V.effects.createPlaceholder(s);a.clip[i[n][0]]=a.clip[i[n][1]],"show"===t.mode&&(s.cssClip(a.clip),r&&r.css(V.effects.clipToBox(a)),a.clip=o),r&&r.animate(V.effects.clipToBox(a),t.duration,t.easing),s.animate(a,{queue:!1,duration:t.duration,easing:t.easing,complete:e})}),V.effects.define("bounce",function(t,e){var i,s,n=V(this),o=t.mode,a="hide"===o,r="show"===o,l=t.direction||"up",h=t.distance,c=t.times||5,o=2*c+(r||a?1:0),u=t.duration/o,d=t.easing,p="up"===l||"down"===l?"top":"left",f="up"===l||"left"===l,g=0,t=n.queue().length;for(V.effects.createPlaceholder(n),l=n.css(p),h=h||n["top"==p?"outerHeight":"outerWidth"]()/3,r&&((s={opacity:1})[p]=l,n.css("opacity",0).css(p,f?2*-h:2*h).animate(s,u,d)),a&&(h/=Math.pow(2,c-1)),(s={})[p]=l;g<c;g++)(i={})[p]=(f?"-=":"+=")+h,n.animate(i,u,d).animate(s,u,d),h=a?2*h:h/2;a&&((i={opacity:0})[p]=(f?"-=":"+=")+h,n.animate(i,u,d)),n.queue(e),V.effects.unshift(n,t,1+o)}),V.effects.define("clip","hide",function(t,e){var i={},s=V(this),n=t.direction||"vertical",o="both"===n,a=o||"horizontal"===n,o=o||"vertical"===n,n=s.cssClip();i.clip={top:o?(n.bottom-n.top)/2:n.top,right:a?(n.right-n.left)/2:n.right,bottom:o?(n.bottom-n.top)/2:n.bottom,left:a?(n.right-n.left)/2:n.left},V.effects.createPlaceholder(s),"show"===t.mode&&(s.cssClip(i.clip),i.clip=n),s.animate(i,{queue:!1,duration:t.duration,easing:t.easing,complete:e})}),V.effects.define("drop","hide",function(t,e){var i=V(this),s="show"===t.mode,n=t.direction||"left",o="up"===n||"down"===n?"top":"left",a="up"===n||"left"===n?"-=":"+=",r="+="==a?"-=":"+=",l={opacity:0};V.effects.createPlaceholder(i),n=t.distance||i["top"==o?"outerHeight":"outerWidth"](!0)/2,l[o]=a+n,s&&(i.css(l),l[o]=r+n,l.opacity=1),i.animate(l,{queue:!1,duration:t.duration,easing:t.easing,complete:e})}),V.effects.define("explode","hide",function(t,e){var i,s,n,o,a,r,l=t.pieces?Math.round(Math.sqrt(t.pieces)):3,h=l,c=V(this),u="show"===t.mode,d=c.show().css("visibility","hidden").offset(),p=Math.ceil(c.outerWidth()/h),f=Math.ceil(c.outerHeight()/l),g=[];function m(){g.push(this),g.length===l*h&&(c.css({visibility:"visible"}),V(g).remove(),e())}for(i=0;i<l;i++)for(o=d.top+i*f,r=i-(l-1)/2,s=0;s<h;s++)n=d.left+s*p,a=s-(h-1)/2,c.clone().appendTo("body").wrap("<div></div>").css({position:"absolute",visibility:"visible",left:-s*p,top:-i*f}).parent().addClass("ui-effects-explode").css({position:"absolute",overflow:"hidden",width:p,height:f,left:n+(u?a*p:0),top:o+(u?r*f:0),opacity:u?0:1}).animate({left:n+(u?0:a*p),top:o+(u?0:r*f),opacity:u?1:0},t.duration||500,t.easing,m)}),V.effects.define("fade","toggle",function(t,e){var i="show"===t.mode;V(this).css("opacity",i?0:1).animate({opacity:i?1:0},{queue:!1,duration:t.duration,easing:t.easing,complete:e})}),V.effects.define("fold","hide",function(e,t){var i=V(this),s=e.mode,n="show"===s,o="hide"===s,a=e.size||15,r=/([0-9]+)%/.exec(a),l=!!e.horizFirst?["right","bottom"]:["bottom","right"],h=e.duration/2,c=V.effects.createPlaceholder(i),u=i.cssClip(),d={clip:V.extend({},u)},p={clip:V.extend({},u)},f=[u[l[0]],u[l[1]]],s=i.queue().length;r&&(a=parseInt(r[1],10)/100*f[o?0:1]),d.clip[l[0]]=a,p.clip[l[0]]=a,p.clip[l[1]]=0,n&&(i.cssClip(p.clip),c&&c.css(V.effects.clipToBox(p)),p.clip=u),i.queue(function(t){c&&c.animate(V.effects.clipToBox(d),h,e.easing).animate(V.effects.clipToBox(p),h,e.easing),t()}).animate(d,h,e.easing).animate(p,h,e.easing).queue(t),V.effects.unshift(i,s,4)}),V.effects.define("highlight","show",function(t,e){var i=V(this),s={backgroundColor:i.css("backgroundColor")};"hide"===t.mode&&(s.opacity=0),V.effects.saveStyle(i),i.css({backgroundImage:"none",backgroundColor:t.color||"#ffff99"}).animate(s,{queue:!1,duration:t.duration,easing:t.easing,complete:e})}),V.effects.define("size",function(s,e){var n,i=V(this),t=["fontSize"],o=["borderTopWidth","borderBottomWidth","paddingTop","paddingBottom"],a=["borderLeftWidth","borderRightWidth","paddingLeft","paddingRight"],r=s.mode,l="effect"!==r,h=s.scale||"both",c=s.origin||["middle","center"],u=i.css("position"),d=i.position(),p=V.effects.scaledDimensions(i),f=s.from||p,g=s.to||V.effects.scaledDimensions(i,0);V.effects.createPlaceholder(i),"show"===r&&(r=f,f=g,g=r),n={from:{y:f.height/p.height,x:f.width/p.width},to:{y:g.height/p.height,x:g.width/p.width}},"box"!==h&&"both"!==h||(n.from.y!==n.to.y&&(f=V.effects.setTransition(i,o,n.from.y,f),g=V.effects.setTransition(i,o,n.to.y,g)),n.from.x!==n.to.x&&(f=V.effects.setTransition(i,a,n.from.x,f),g=V.effects.setTransition(i,a,n.to.x,g))),"content"!==h&&"both"!==h||n.from.y!==n.to.y&&(f=V.effects.setTransition(i,t,n.from.y,f),g=V.effects.setTransition(i,t,n.to.y,g)),c&&(c=V.effects.getBaseline(c,p),f.top=(p.outerHeight-f.outerHeight)*c.y+d.top,f.left=(p.outerWidth-f.outerWidth)*c.x+d.left,g.top=(p.outerHeight-g.outerHeight)*c.y+d.top,g.left=(p.outerWidth-g.outerWidth)*c.x+d.left),delete f.outerHeight,delete f.outerWidth,i.css(f),"content"!==h&&"both"!==h||(o=o.concat(["marginTop","marginBottom"]).concat(t),a=a.concat(["marginLeft","marginRight"]),i.find("*[width]").each(function(){var t=V(this),e=V.effects.scaledDimensions(t),i={height:e.height*n.from.y,width:e.width*n.from.x,outerHeight:e.outerHeight*n.from.y,outerWidth:e.outerWidth*n.from.x},e={height:e.height*n.to.y,width:e.width*n.to.x,outerHeight:e.height*n.to.y,outerWidth:e.width*n.to.x};n.from.y!==n.to.y&&(i=V.effects.setTransition(t,o,n.from.y,i),e=V.effects.setTransition(t,o,n.to.y,e)),n.from.x!==n.to.x&&(i=V.effects.setTransition(t,a,n.from.x,i),e=V.effects.setTransition(t,a,n.to.x,e)),l&&V.effects.saveStyle(t),t.css(i),t.animate(e,s.duration,s.easing,function(){l&&V.effects.restoreStyle(t)})})),i.animate(g,{queue:!1,duration:s.duration,easing:s.easing,complete:function(){var t=i.offset();0===g.opacity&&i.css("opacity",f.opacity),l||(i.css("position","static"===u?"relative":u).offset(t),V.effects.saveStyle(i)),e()}})}),V.effects.define("scale",function(t,e){var i=V(this),s=t.mode,s=parseInt(t.percent,10)||(0===parseInt(t.percent,10)||"effect"!==s?0:100),s=V.extend(!0,{from:V.effects.scaledDimensions(i),to:V.effects.scaledDimensions(i,s,t.direction||"both"),origin:t.origin||["middle","center"]},t);t.fade&&(s.from.opacity=1,s.to.opacity=0),V.effects.effect.size.call(this,s,e)}),V.effects.define("puff","hide",function(t,e){t=V.extend(!0,{},t,{fade:!0,percent:parseInt(t.percent,10)||150});V.effects.effect.scale.call(this,t,e)}),V.effects.define("pulsate","show",function(t,e){var i=V(this),s=t.mode,n="show"===s,o=2*(t.times||5)+(n||"hide"===s?1:0),a=t.duration/o,r=0,l=1,s=i.queue().length;for(!n&&i.is(":visible")||(i.css("opacity",0).show(),r=1);l<o;l++)i.animate({opacity:r},a,t.easing),r=1-r;i.animate({opacity:r},a,t.easing),i.queue(e),V.effects.unshift(i,s,1+o)}),V.effects.define("shake",function(t,e){var i=1,s=V(this),n=t.direction||"left",o=t.distance||20,a=t.times||3,r=2*a+1,l=Math.round(t.duration/r),h="up"===n||"down"===n?"top":"left",c="up"===n||"left"===n,u={},d={},p={},n=s.queue().length;for(V.effects.createPlaceholder(s),u[h]=(c?"-=":"+=")+o,d[h]=(c?"+=":"-=")+2*o,p[h]=(c?"-=":"+=")+2*o,s.animate(u,l,t.easing);i<a;i++)s.animate(d,l,t.easing).animate(p,l,t.easing);s.animate(d,l,t.easing).animate(u,l/2,t.easing).queue(e),V.effects.unshift(s,n,1+r)}),V.effects.define("slide","show",function(t,e){var i,s,n=V(this),o={up:["bottom","top"],down:["top","bottom"],left:["right","left"],right:["left","right"]},a=t.mode,r=t.direction||"left",l="up"===r||"down"===r?"top":"left",h="up"===r||"left"===r,c=t.distance||n["top"==l?"outerHeight":"outerWidth"](!0),u={};V.effects.createPlaceholder(n),i=n.cssClip(),s=n.position()[l],u[l]=(h?-1:1)*c+s,u.clip=n.cssClip(),u.clip[o[r][1]]=u.clip[o[r][0]],"show"===a&&(n.cssClip(u.clip),n.css(l,u[l]),u.clip=i,u[l]=s),n.animate(u,{queue:!1,duration:t.duration,easing:t.easing,complete:e})}),y=!1!==V.uiBackCompat?V.effects.define("transfer",function(t,e){V(this).transfer(t,e)}):y;V.ui.focusable=function(t,e){var i,s,n,o,a=t.nodeName.toLowerCase();return"area"===a?(s=(i=t.parentNode).name,!(!t.href||!s||"map"!==i.nodeName.toLowerCase())&&(0<(s=V("img[usemap='#"+s+"']")).length&&s.is(":visible"))):(/^(input|select|textarea|button|object)$/.test(a)?(n=!t.disabled)&&(o=V(t).closest("fieldset")[0])&&(n=!o.disabled):n="a"===a&&t.href||e,n&&V(t).is(":visible")&&function(t){var e=t.css("visibility");for(;"inherit"===e;)t=t.parent(),e=t.css("visibility");return"visible"===e}(V(t)))},V.extend(V.expr.pseudos,{focusable:function(t){return V.ui.focusable(t,null!=V.attr(t,"tabindex"))}});var Q,J;V.ui.focusable,V.fn._form=function(){return"string"==typeof this[0].form?this.closest("form"):V(this[0].form)},V.ui.formResetMixin={_formResetHandler:function(){var e=V(this);setTimeout(function(){var t=e.data("ui-form-reset-instances");V.each(t,function(){this.refresh()})})},_bindFormResetHandler:function(){var t;this.form=this.element._form(),this.form.length&&((t=this.form.data("ui-form-reset-instances")||[]).length||this.form.on("reset.ui-form-reset",this._formResetHandler),t.push(this),this.form.data("ui-form-reset-instances",t))},_unbindFormResetHandler:function(){var t;this.form.length&&((t=this.form.data("ui-form-reset-instances")).splice(V.inArray(this,t),1),t.length?this.form.data("ui-form-reset-instances",t):this.form.removeData("ui-form-reset-instances").off("reset.ui-form-reset"))}};V.expr.pseudos||(V.expr.pseudos=V.expr[":"]),V.uniqueSort||(V.uniqueSort=V.unique),V.escapeSelector||(Q=/([\0-\x1f\x7f]|^-?\d)|^-$|[^\x80-\uFFFF\w-]/g,J=function(t,e){return e?"\0"===t?"�":t.slice(0,-1)+"\\"+t.charCodeAt(t.length-1).toString(16)+" ":"\\"+t},V.escapeSelector=function(t){return(t+"").replace(Q,J)}),V.fn.even&&V.fn.odd||V.fn.extend({even:function(){return this.filter(function(t){return t%2==0})},odd:function(){return this.filter(function(t){return t%2==1})}});var Z;V.ui.keyCode={BACKSPACE:8,COMMA:188,DELETE:46,DOWN:40,END:35,ENTER:13,ESCAPE:27,HOME:36,LEFT:37,PAGE_DOWN:34,PAGE_UP:33,PERIOD:190,RIGHT:39,SPACE:32,TAB:9,UP:38},V.fn.labels=function(){var t,e,i;return this.length?this[0].labels&&this[0].labels.length?this.pushStack(this[0].labels):(e=this.eq(0).parents("label"),(t=this.attr("id"))&&(i=(i=this.eq(0).parents().last()).add((i.length?i:this).siblings()),t="label[for='"+V.escapeSelector(t)+"']",e=e.add(i.find(t).addBack(t))),this.pushStack(e)):this.pushStack([])},V.fn.scrollParent=function(t){var e=this.css("position"),i="absolute"===e,s=t?/(auto|scroll|hidden)/:/(auto|scroll)/,t=this.parents().filter(function(){var t=V(this);return(!i||"static"!==t.css("position"))&&s.test(t.css("overflow")+t.css("overflow-y")+t.css("overflow-x"))}).eq(0);return"fixed"!==e&&t.length?t:V(this[0].ownerDocument||document)},V.extend(V.expr.pseudos,{tabbable:function(t){var e=V.attr(t,"tabindex"),i=null!=e;return(!i||0<=e)&&V.ui.focusable(t,i)}}),V.fn.extend({uniqueId:(Z=0,function(){return this.each(function(){this.id||(this.id="ui-id-"+ ++Z)})}),removeUniqueId:function(){return this.each(function(){/^ui-id-\d+$/.test(this.id)&&V(this).removeAttr("id")})}}),V.widget("ui.accordion",{version:"1.13.2",options:{active:0,animate:{},classes:{"ui-accordion-header":"ui-corner-top","ui-accordion-header-collapsed":"ui-corner-all","ui-accordion-content":"ui-corner-bottom"},collapsible:!1,event:"click",header:function(t){return t.find("> li > :first-child").add(t.find("> :not(li)").even())},heightStyle:"auto",icons:{activeHeader:"ui-icon-triangle-1-s",header:"ui-icon-triangle-1-e"},activate:null,beforeActivate:null},hideProps:{borderTopWidth:"hide",borderBottomWidth:"hide",paddingTop:"hide",paddingBottom:"hide",height:"hide"},showProps:{borderTopWidth:"show",borderBottomWidth:"show",paddingTop:"show",paddingBottom:"show",height:"show"},_create:function(){var t=this.options;this.prevShow=this.prevHide=V(),this._addClass("ui-accordion","ui-widget ui-helper-reset"),this.element.attr("role","tablist"),t.collapsible||!1!==t.active&&null!=t.active||(t.active=0),this._processPanels(),t.active<0&&(t.active+=this.headers.length),this._refresh()},_getCreateEventData:function(){return{header:this.active,panel:this.active.length?this.active.next():V()}},_createIcons:function(){var t,e=this.options.icons;e&&(t=V("<span>"),this._addClass(t,"ui-accordion-header-icon","ui-icon "+e.header),t.prependTo(this.headers),t=this.active.children(".ui-accordion-header-icon"),this._removeClass(t,e.header)._addClass(t,null,e.activeHeader)._addClass(this.headers,"ui-accordion-icons"))},_destroyIcons:function(){this._removeClass(this.headers,"ui-accordion-icons"),this.headers.children(".ui-accordion-header-icon").remove()},_destroy:function(){var t;this.element.removeAttr("role"),this.headers.removeAttr("role aria-expanded aria-selected aria-controls tabIndex").removeUniqueId(),this._destroyIcons(),t=this.headers.next().css("display","").removeAttr("role aria-hidden aria-labelledby").removeUniqueId(),"content"!==this.options.heightStyle&&t.css("height","")},_setOption:function(t,e){"active"!==t?("event"===t&&(this.options.event&&this._off(this.headers,this.options.event),this._setupEvents(e)),this._super(t,e),"collapsible"!==t||e||!1!==this.options.active||this._activate(0),"icons"===t&&(this._destroyIcons(),e&&this._createIcons())):this._activate(e)},_setOptionDisabled:function(t){this._super(t),this.element.attr("aria-disabled",t),this._toggleClass(null,"ui-state-disabled",!!t),this._toggleClass(this.headers.add(this.headers.next()),null,"ui-state-disabled",!!t)},_keydown:function(t){if(!t.altKey&&!t.ctrlKey){var e=V.ui.keyCode,i=this.headers.length,s=this.headers.index(t.target),n=!1;switch(t.keyCode){case e.RIGHT:case e.DOWN:n=this.headers[(s+1)%i];break;case e.LEFT:case e.UP:n=this.headers[(s-1+i)%i];break;case e.SPACE:case e.ENTER:this._eventHandler(t);break;case e.HOME:n=this.headers[0];break;case e.END:n=this.headers[i-1]}n&&(V(t.target).attr("tabIndex",-1),V(n).attr("tabIndex",0),V(n).trigger("focus"),t.preventDefault())}},_panelKeyDown:function(t){t.keyCode===V.ui.keyCode.UP&&t.ctrlKey&&V(t.currentTarget).prev().trigger("focus")},refresh:function(){var t=this.options;this._processPanels(),!1===t.active&&!0===t.collapsible||!this.headers.length?(t.active=!1,this.active=V()):!1===t.active?this._activate(0):this.active.length&&!V.contains(this.element[0],this.active[0])?this.headers.length===this.headers.find(".ui-state-disabled").length?(t.active=!1,this.active=V()):this._activate(Math.max(0,t.active-1)):t.active=this.headers.index(this.active),this._destroyIcons(),this._refresh()},_processPanels:function(){var t=this.headers,e=this.panels;"function"==typeof this.options.header?this.headers=this.options.header(this.element):this.headers=this.element.find(this.options.header),this._addClass(this.headers,"ui-accordion-header ui-accordion-header-collapsed","ui-state-default"),this.panels=this.headers.next().filter(":not(.ui-accordion-content-active)").hide(),this._addClass(this.panels,"ui-accordion-content","ui-helper-reset ui-widget-content"),e&&(this._off(t.not(this.headers)),this._off(e.not(this.panels)))},_refresh:function(){var i,t=this.options,e=t.heightStyle,s=this.element.parent();this.active=this._findActive(t.active),this._addClass(this.active,"ui-accordion-header-active","ui-state-active")._removeClass(this.active,"ui-accordion-header-collapsed"),this._addClass(this.active.next(),"ui-accordion-content-active"),this.active.next().show(),this.headers.attr("role","tab").each(function(){var t=V(this),e=t.uniqueId().attr("id"),i=t.next(),s=i.uniqueId().attr("id");t.attr("aria-controls",s),i.attr("aria-labelledby",e)}).next().attr("role","tabpanel"),this.headers.not(this.active).attr({"aria-selected":"false","aria-expanded":"false",tabIndex:-1}).next().attr({"aria-hidden":"true"}).hide(),this.active.length?this.active.attr({"aria-selected":"true","aria-expanded":"true",tabIndex:0}).next().attr({"aria-hidden":"false"}):this.headers.eq(0).attr("tabIndex",0),this._createIcons(),this._setupEvents(t.event),"fill"===e?(i=s.height(),this.element.siblings(":visible").each(function(){var t=V(this),e=t.css("position");"absolute"!==e&&"fixed"!==e&&(i-=t.outerHeight(!0))}),this.headers.each(function(){i-=V(this).outerHeight(!0)}),this.headers.next().each(function(){V(this).height(Math.max(0,i-V(this).innerHeight()+V(this).height()))}).css("overflow","auto")):"auto"===e&&(i=0,this.headers.next().each(function(){var t=V(this).is(":visible");t||V(this).show(),i=Math.max(i,V(this).css("height","").height()),t||V(this).hide()}).height(i))},_activate:function(t){t=this._findActive(t)[0];t!==this.active[0]&&(t=t||this.active[0],this._eventHandler({target:t,currentTarget:t,preventDefault:V.noop}))},_findActive:function(t){return"number"==typeof t?this.headers.eq(t):V()},_setupEvents:function(t){var i={keydown:"_keydown"};t&&V.each(t.split(" "),function(t,e){i[e]="_eventHandler"}),this._off(this.headers.add(this.headers.next())),this._on(this.headers,i),this._on(this.headers.next(),{keydown:"_panelKeyDown"}),this._hoverable(this.headers),this._focusable(this.headers)},_eventHandler:function(t){var e=this.options,i=this.active,s=V(t.currentTarget),n=s[0]===i[0],o=n&&e.collapsible,a=o?V():s.next(),r=i.next(),a={oldHeader:i,oldPanel:r,newHeader:o?V():s,newPanel:a};t.preventDefault(),n&&!e.collapsible||!1===this._trigger("beforeActivate",t,a)||(e.active=!o&&this.headers.index(s),this.active=n?V():s,this._toggle(a),this._removeClass(i,"ui-accordion-header-active","ui-state-active"),e.icons&&(i=i.children(".ui-accordion-header-icon"),this._removeClass(i,null,e.icons.activeHeader)._addClass(i,null,e.icons.header)),n||(this._removeClass(s,"ui-accordion-header-collapsed")._addClass(s,"ui-accordion-header-active","ui-state-active"),e.icons&&(n=s.children(".ui-accordion-header-icon"),this._removeClass(n,null,e.icons.header)._addClass(n,null,e.icons.activeHeader)),this._addClass(s.next(),"ui-accordion-content-active")))},_toggle:function(t){var e=t.newPanel,i=this.prevShow.length?this.prevShow:t.oldPanel;this.prevShow.add(this.prevHide).stop(!0,!0),this.prevShow=e,this.prevHide=i,this.options.animate?this._animate(e,i,t):(i.hide(),e.show(),this._toggleComplete(t)),i.attr({"aria-hidden":"true"}),i.prev().attr({"aria-selected":"false","aria-expanded":"false"}),e.length&&i.length?i.prev().attr({tabIndex:-1,"aria-expanded":"false"}):e.length&&this.headers.filter(function(){return 0===parseInt(V(this).attr("tabIndex"),10)}).attr("tabIndex",-1),e.attr("aria-hidden","false").prev().attr({"aria-selected":"true","aria-expanded":"true",tabIndex:0})},_animate:function(t,i,e){var s,n,o,a=this,r=0,l=t.css("box-sizing"),h=t.length&&(!i.length||t.index()<i.index()),c=this.options.animate||{},u=h&&c.down||c,h=function(){a._toggleComplete(e)};return n=(n="string"==typeof u?u:n)||u.easing||c.easing,o=(o="number"==typeof u?u:o)||u.duration||c.duration,i.length?t.length?(s=t.show().outerHeight(),i.animate(this.hideProps,{duration:o,easing:n,step:function(t,e){e.now=Math.round(t)}}),void t.hide().animate(this.showProps,{duration:o,easing:n,complete:h,step:function(t,e){e.now=Math.round(t),"height"!==e.prop?"content-box"===l&&(r+=e.now):"content"!==a.options.heightStyle&&(e.now=Math.round(s-i.outerHeight()-r),r=0)}})):i.animate(this.hideProps,o,n,h):t.animate(this.showProps,o,n,h)},_toggleComplete:function(t){var e=t.oldPanel,i=e.prev();this._removeClass(e,"ui-accordion-content-active"),this._removeClass(i,"ui-accordion-header-active")._addClass(i,"ui-accordion-header-collapsed"),e.length&&(e.parent()[0].className=e.parent()[0].className),this._trigger("activate",null,t)}}),V.ui.safeActiveElement=function(e){var i;try{i=e.activeElement}catch(t){i=e.body}return i=!(i=i||e.body).nodeName?e.body:i},V.widget("ui.menu",{version:"1.13.2",defaultElement:"<ul>",delay:300,options:{icons:{submenu:"ui-icon-caret-1-e"},items:"> *",menus:"ul",position:{my:"left top",at:"right top"},role:"menu",blur:null,focus:null,select:null},_create:function(){this.activeMenu=this.element,this.mouseHandled=!1,this.lastMousePosition={x:null,y:null},this.element.uniqueId().attr({role:this.options.role,tabIndex:0}),this._addClass("ui-menu","ui-widget ui-widget-content"),this._on({"mousedown .ui-menu-item":function(t){t.preventDefault(),this._activateItem(t)},"click .ui-menu-item":function(t){var e=V(t.target),i=V(V.ui.safeActiveElement(this.document[0]));!this.mouseHandled&&e.not(".ui-state-disabled").length&&(this.select(t),t.isPropagationStopped()||(this.mouseHandled=!0),e.has(".ui-menu").length?this.expand(t):!this.element.is(":focus")&&i.closest(".ui-menu").length&&(this.element.trigger("focus",[!0]),this.active&&1===this.active.parents(".ui-menu").length&&clearTimeout(this.timer)))},"mouseenter .ui-menu-item":"_activateItem","mousemove .ui-menu-item":"_activateItem",mouseleave:"collapseAll","mouseleave .ui-menu":"collapseAll",focus:function(t,e){var i=this.active||this._menuItems().first();e||this.focus(t,i)},blur:function(t){this._delay(function(){V.contains(this.element[0],V.ui.safeActiveElement(this.document[0]))||this.collapseAll(t)})},keydown:"_keydown"}),this.refresh(),this._on(this.document,{click:function(t){this._closeOnDocumentClick(t)&&this.collapseAll(t,!0),this.mouseHandled=!1}})},_activateItem:function(t){var e,i;this.previousFilter||t.clientX===this.lastMousePosition.x&&t.clientY===this.lastMousePosition.y||(this.lastMousePosition={x:t.clientX,y:t.clientY},e=V(t.target).closest(".ui-menu-item"),i=V(t.currentTarget),e[0]===i[0]&&(i.is(".ui-state-active")||(this._removeClass(i.siblings().children(".ui-state-active"),null,"ui-state-active"),this.focus(t,i))))},_destroy:function(){var t=this.element.find(".ui-menu-item").removeAttr("role aria-disabled").children(".ui-menu-item-wrapper").removeUniqueId().removeAttr("tabIndex role aria-haspopup");this.element.removeAttr("aria-activedescendant").find(".ui-menu").addBack().removeAttr("role aria-labelledby aria-expanded aria-hidden aria-disabled tabIndex").removeUniqueId().show(),t.children().each(function(){var t=V(this);t.data("ui-menu-submenu-caret")&&t.remove()})},_keydown:function(t){var e,i,s,n=!0;switch(t.keyCode){case V.ui.keyCode.PAGE_UP:this.previousPage(t);break;case V.ui.keyCode.PAGE_DOWN:this.nextPage(t);break;case V.ui.keyCode.HOME:this._move("first","first",t);break;case V.ui.keyCode.END:this._move("last","last",t);break;case V.ui.keyCode.UP:this.previous(t);break;case V.ui.keyCode.DOWN:this.next(t);break;case V.ui.keyCode.LEFT:this.collapse(t);break;case V.ui.keyCode.RIGHT:this.active&&!this.active.is(".ui-state-disabled")&&this.expand(t);break;case V.ui.keyCode.ENTER:case V.ui.keyCode.SPACE:this._activate(t);break;case V.ui.keyCode.ESCAPE:this.collapse(t);break;default:e=this.previousFilter||"",s=n=!1,i=96<=t.keyCode&&t.keyCode<=105?(t.keyCode-96).toString():String.fromCharCode(t.keyCode),clearTimeout(this.filterTimer),i===e?s=!0:i=e+i,e=this._filterMenuItems(i),(e=s&&-1!==e.index(this.active.next())?this.active.nextAll(".ui-menu-item"):e).length||(i=String.fromCharCode(t.keyCode),e=this._filterMenuItems(i)),e.length?(this.focus(t,e),this.previousFilter=i,this.filterTimer=this._delay(function(){delete this.previousFilter},1e3)):delete this.previousFilter}n&&t.preventDefault()},_activate:function(t){this.active&&!this.active.is(".ui-state-disabled")&&(this.active.children("[aria-haspopup='true']").length?this.expand(t):this.select(t))},refresh:function(){var t,e,s=this,n=this.options.icons.submenu,i=this.element.find(this.options.menus);this._toggleClass("ui-menu-icons",null,!!this.element.find(".ui-icon").length),e=i.filter(":not(.ui-menu)").hide().attr({role:this.options.role,"aria-hidden":"true","aria-expanded":"false"}).each(function(){var t=V(this),e=t.prev(),i=V("<span>").data("ui-menu-submenu-caret",!0);s._addClass(i,"ui-menu-icon","ui-icon "+n),e.attr("aria-haspopup","true").prepend(i),t.attr("aria-labelledby",e.attr("id"))}),this._addClass(e,"ui-menu","ui-widget ui-widget-content ui-front"),(t=i.add(this.element).find(this.options.items)).not(".ui-menu-item").each(function(){var t=V(this);s._isDivider(t)&&s._addClass(t,"ui-menu-divider","ui-widget-content")}),i=(e=t.not(".ui-menu-item, .ui-menu-divider")).children().not(".ui-menu").uniqueId().attr({tabIndex:-1,role:this._itemRole()}),this._addClass(e,"ui-menu-item")._addClass(i,"ui-menu-item-wrapper"),t.filter(".ui-state-disabled").attr("aria-disabled","true"),this.active&&!V.contains(this.element[0],this.active[0])&&this.blur()},_itemRole:function(){return{menu:"menuitem",listbox:"option"}[this.options.role]},_setOption:function(t,e){var i;"icons"===t&&(i=this.element.find(".ui-menu-icon"),this._removeClass(i,null,this.options.icons.submenu)._addClass(i,null,e.submenu)),this._super(t,e)},_setOptionDisabled:function(t){this._super(t),this.element.attr("aria-disabled",String(t)),this._toggleClass(null,"ui-state-disabled",!!t)},focus:function(t,e){var i;this.blur(t,t&&"focus"===t.type),this._scrollIntoView(e),this.active=e.first(),i=this.active.children(".ui-menu-item-wrapper"),this._addClass(i,null,"ui-state-active"),this.options.role&&this.element.attr("aria-activedescendant",i.attr("id")),i=this.active.parent().closest(".ui-menu-item").children(".ui-menu-item-wrapper"),this._addClass(i,null,"ui-state-active"),t&&"keydown"===t.type?this._close():this.timer=this._delay(function(){this._close()},this.delay),(i=e.children(".ui-menu")).length&&t&&/^mouse/.test(t.type)&&this._startOpening(i),this.activeMenu=e.parent(),this._trigger("focus",t,{item:e})},_scrollIntoView:function(t){var e,i,s;this._hasScroll()&&(i=parseFloat(V.css(this.activeMenu[0],"borderTopWidth"))||0,s=parseFloat(V.css(this.activeMenu[0],"paddingTop"))||0,e=t.offset().top-this.activeMenu.offset().top-i-s,i=this.activeMenu.scrollTop(),s=this.activeMenu.height(),t=t.outerHeight(),e<0?this.activeMenu.scrollTop(i+e):s<e+t&&this.activeMenu.scrollTop(i+e-s+t))},blur:function(t,e){e||clearTimeout(this.timer),this.active&&(this._removeClass(this.active.children(".ui-menu-item-wrapper"),null,"ui-state-active"),this._trigger("blur",t,{item:this.active}),this.active=null)},_startOpening:function(t){clearTimeout(this.timer),"true"===t.attr("aria-hidden")&&(this.timer=this._delay(function(){this._close(),this._open(t)},this.delay))},_open:function(t){var e=V.extend({of:this.active},this.options.position);clearTimeout(this.timer),this.element.find(".ui-menu").not(t.parents(".ui-menu")).hide().attr("aria-hidden","true"),t.show().removeAttr("aria-hidden").attr("aria-expanded","true").position(e)},collapseAll:function(e,i){clearTimeout(this.timer),this.timer=this._delay(function(){var t=i?this.element:V(e&&e.target).closest(this.element.find(".ui-menu"));t.length||(t=this.element),this._close(t),this.blur(e),this._removeClass(t.find(".ui-state-active"),null,"ui-state-active"),this.activeMenu=t},i?0:this.delay)},_close:function(t){(t=t||(this.active?this.active.parent():this.element)).find(".ui-menu").hide().attr("aria-hidden","true").attr("aria-expanded","false")},_closeOnDocumentClick:function(t){return!V(t.target).closest(".ui-menu").length},_isDivider:function(t){return!/[^\-\u2014\u2013\s]/.test(t.text())},collapse:function(t){var e=this.active&&this.active.parent().closest(".ui-menu-item",this.element);e&&e.length&&(this._close(),this.focus(t,e))},expand:function(t){var e=this.active&&this._menuItems(this.active.children(".ui-menu")).first();e&&e.length&&(this._open(e.parent()),this._delay(function(){this.focus(t,e)}))},next:function(t){this._move("next","first",t)},previous:function(t){this._move("prev","last",t)},isFirstItem:function(){return this.active&&!this.active.prevAll(".ui-menu-item").length},isLastItem:function(){return this.active&&!this.active.nextAll(".ui-menu-item").length},_menuItems:function(t){return(t||this.element).find(this.options.items).filter(".ui-menu-item")},_move:function(t,e,i){var s;(s=this.active?"first"===t||"last"===t?this.active["first"===t?"prevAll":"nextAll"](".ui-menu-item").last():this.active[t+"All"](".ui-menu-item").first():s)&&s.length&&this.active||(s=this._menuItems(this.activeMenu)[e]()),this.focus(i,s)},nextPage:function(t){var e,i,s;this.active?this.isLastItem()||(this._hasScroll()?(i=this.active.offset().top,s=this.element.innerHeight(),0===V.fn.jquery.indexOf("3.2.")&&(s+=this.element[0].offsetHeight-this.element.outerHeight()),this.active.nextAll(".ui-menu-item").each(function(){return(e=V(this)).offset().top-i-s<0}),this.focus(t,e)):this.focus(t,this._menuItems(this.activeMenu)[this.active?"last":"first"]())):this.next(t)},previousPage:function(t){var e,i,s;this.active?this.isFirstItem()||(this._hasScroll()?(i=this.active.offset().top,s=this.element.innerHeight(),0===V.fn.jquery.indexOf("3.2.")&&(s+=this.element[0].offsetHeight-this.element.outerHeight()),this.active.prevAll(".ui-menu-item").each(function(){return 0<(e=V(this)).offset().top-i+s}),this.focus(t,e)):this.focus(t,this._menuItems(this.activeMenu).first())):this.next(t)},_hasScroll:function(){return this.element.outerHeight()<this.element.prop("scrollHeight")},select:function(t){this.active=this.active||V(t.target).closest(".ui-menu-item");var e={item:this.active};this.active.has(".ui-menu").length||this.collapseAll(t,!0),this._trigger("select",t,e)},_filterMenuItems:function(t){var t=t.replace(/[\-\[\]{}()*+?.,\\\^$|#\s]/g,"\\$&"),e=new RegExp("^"+t,"i");return this.activeMenu.find(this.options.items).filter(".ui-menu-item").filter(function(){return e.test(String.prototype.trim.call(V(this).children(".ui-menu-item-wrapper").text()))})}});V.widget("ui.autocomplete",{version:"1.13.2",defaultElement:"<input>",options:{appendTo:null,autoFocus:!1,delay:300,minLength:1,position:{my:"left top",at:"left bottom",collision:"none"},source:null,change:null,close:null,focus:null,open:null,response:null,search:null,select:null},requestIndex:0,pending:0,liveRegionTimer:null,_create:function(){var i,s,n,t=this.element[0].nodeName.toLowerCase(),e="textarea"===t,t="input"===t;this.isMultiLine=e||!t&&this._isContentEditable(this.element),this.valueMethod=this.element[e||t?"val":"text"],this.isNewMenu=!0,this._addClass("ui-autocomplete-input"),this.element.attr("autocomplete","off"),this._on(this.element,{keydown:function(t){if(this.element.prop("readOnly"))s=n=i=!0;else{s=n=i=!1;var e=V.ui.keyCode;switch(t.keyCode){case e.PAGE_UP:i=!0,this._move("previousPage",t);break;case e.PAGE_DOWN:i=!0,this._move("nextPage",t);break;case e.UP:i=!0,this._keyEvent("previous",t);break;case e.DOWN:i=!0,this._keyEvent("next",t);break;case e.ENTER:this.menu.active&&(i=!0,t.preventDefault(),this.menu.select(t));break;case e.TAB:this.menu.active&&this.menu.select(t);break;case e.ESCAPE:this.menu.element.is(":visible")&&(this.isMultiLine||this._value(this.term),this.close(t),t.preventDefault());break;default:s=!0,this._searchTimeout(t)}}},keypress:function(t){if(i)return i=!1,void(this.isMultiLine&&!this.menu.element.is(":visible")||t.preventDefault());if(!s){var e=V.ui.keyCode;switch(t.keyCode){case e.PAGE_UP:this._move("previousPage",t);break;case e.PAGE_DOWN:this._move("nextPage",t);break;case e.UP:this._keyEvent("previous",t);break;case e.DOWN:this._keyEvent("next",t)}}},input:function(t){if(n)return n=!1,void t.preventDefault();this._searchTimeout(t)},focus:function(){this.selectedItem=null,this.previous=this._value()},blur:function(t){clearTimeout(this.searching),this.close(t),this._change(t)}}),this._initSource(),this.menu=V("<ul>").appendTo(this._appendTo()).menu({role:null}).hide().attr({unselectable:"on"}).menu("instance"),this._addClass(this.menu.element,"ui-autocomplete","ui-front"),this._on(this.menu.element,{mousedown:function(t){t.preventDefault()},menufocus:function(t,e){var i,s;if(this.isNewMenu&&(this.isNewMenu=!1,t.originalEvent&&/^mouse/.test(t.originalEvent.type)))return this.menu.blur(),void this.document.one("mousemove",function(){V(t.target).trigger(t.originalEvent)});s=e.item.data("ui-autocomplete-item"),!1!==this._trigger("focus",t,{item:s})&&t.originalEvent&&/^key/.test(t.originalEvent.type)&&this._value(s.value),(i=e.item.attr("aria-label")||s.value)&&String.prototype.trim.call(i).length&&(clearTimeout(this.liveRegionTimer),this.liveRegionTimer=this._delay(function(){this.liveRegion.html(V("<div>").text(i))},100))},menuselect:function(t,e){var i=e.item.data("ui-autocomplete-item"),s=this.previous;this.element[0]!==V.ui.safeActiveElement(this.document[0])&&(this.element.trigger("focus"),this.previous=s,this._delay(function(){this.previous=s,this.selectedItem=i})),!1!==this._trigger("select",t,{item:i})&&this._value(i.value),this.term=this._value(),this.close(t),this.selectedItem=i}}),this.liveRegion=V("<div>",{role:"status","aria-live":"assertive","aria-relevant":"additions"}).appendTo(this.document[0].body),this._addClass(this.liveRegion,null,"ui-helper-hidden-accessible"),this._on(this.window,{beforeunload:function(){this.element.removeAttr("autocomplete")}})},_destroy:function(){clearTimeout(this.searching),this.element.removeAttr("autocomplete"),this.menu.element.remove(),this.liveRegion.remove()},_setOption:function(t,e){this._super(t,e),"source"===t&&this._initSource(),"appendTo"===t&&this.menu.element.appendTo(this._appendTo()),"disabled"===t&&e&&this.xhr&&this.xhr.abort()},_isEventTargetInWidget:function(t){var e=this.menu.element[0];return t.target===this.element[0]||t.target===e||V.contains(e,t.target)},_closeOnClickOutside:function(t){this._isEventTargetInWidget(t)||this.close()},_appendTo:function(){var t=this.options.appendTo;return t=!(t=!(t=t&&(t.jquery||t.nodeType?V(t):this.document.find(t).eq(0)))||!t[0]?this.element.closest(".ui-front, dialog"):t).length?this.document[0].body:t},_initSource:function(){var i,s,n=this;Array.isArray(this.options.source)?(i=this.options.source,this.source=function(t,e){e(V.ui.autocomplete.filter(i,t.term))}):"string"==typeof this.options.source?(s=this.options.source,this.source=function(t,e){n.xhr&&n.xhr.abort(),n.xhr=V.ajax({url:s,data:t,dataType:"json",success:function(t){e(t)},error:function(){e([])}})}):this.source=this.options.source},_searchTimeout:function(s){clearTimeout(this.searching),this.searching=this._delay(function(){var t=this.term===this._value(),e=this.menu.element.is(":visible"),i=s.altKey||s.ctrlKey||s.metaKey||s.shiftKey;t&&(e||i)||(this.selectedItem=null,this.search(null,s))},this.options.delay)},search:function(t,e){return t=null!=t?t:this._value(),this.term=this._value(),t.length<this.options.minLength?this.close(e):!1!==this._trigger("search",e)?this._search(t):void 0},_search:function(t){this.pending++,this._addClass("ui-autocomplete-loading"),this.cancelSearch=!1,this.source({term:t},this._response())},_response:function(){var e=++this.requestIndex;return function(t){e===this.requestIndex&&this.__response(t),this.pending--,this.pending||this._removeClass("ui-autocomplete-loading")}.bind(this)},__response:function(t){t=t&&this._normalize(t),this._trigger("response",null,{content:t}),!this.options.disabled&&t&&t.length&&!this.cancelSearch?(this._suggest(t),this._trigger("open")):this._close()},close:function(t){this.cancelSearch=!0,this._close(t)},_close:function(t){this._off(this.document,"mousedown"),this.menu.element.is(":visible")&&(this.menu.element.hide(),this.menu.blur(),this.isNewMenu=!0,this._trigger("close",t))},_change:function(t){this.previous!==this._value()&&this._trigger("change",t,{item:this.selectedItem})},_normalize:function(t){return t.length&&t[0].label&&t[0].value?t:V.map(t,function(t){return"string"==typeof t?{label:t,value:t}:V.extend({},t,{label:t.label||t.value,value:t.value||t.label})})},_suggest:function(t){var e=this.menu.element.empty();this._renderMenu(e,t),this.isNewMenu=!0,this.menu.refresh(),e.show(),this._resizeMenu(),e.position(V.extend({of:this.element},this.options.position)),this.options.autoFocus&&this.menu.next(),this._on(this.document,{mousedown:"_closeOnClickOutside"})},_resizeMenu:function(){var t=this.menu.element;t.outerWidth(Math.max(t.width("").outerWidth()+1,this.element.outerWidth()))},_renderMenu:function(i,t){var s=this;V.each(t,function(t,e){s._renderItemData(i,e)})},_renderItemData:function(t,e){return this._renderItem(t,e).data("ui-autocomplete-item",e)},_renderItem:function(t,e){return V("<li>").append(V("<div>").text(e.label)).appendTo(t)},_move:function(t,e){if(this.menu.element.is(":visible"))return this.menu.isFirstItem()&&/^previous/.test(t)||this.menu.isLastItem()&&/^next/.test(t)?(this.isMultiLine||this._value(this.term),void this.menu.blur()):void this.menu[t](e);this.search(null,e)},widget:function(){return this.menu.element},_value:function(){return this.valueMethod.apply(this.element,arguments)},_keyEvent:function(t,e){this.isMultiLine&&!this.menu.element.is(":visible")||(this._move(t,e),e.preventDefault())},_isContentEditable:function(t){if(!t.length)return!1;var e=t.prop("contentEditable");return"inherit"===e?this._isContentEditable(t.parent()):"true"===e}}),V.extend(V.ui.autocomplete,{escapeRegex:function(t){return t.replace(/[\-\[\]{}()*+?.,\\\^$|#\s]/g,"\\$&")},filter:function(t,e){var i=new RegExp(V.ui.autocomplete.escapeRegex(e),"i");return V.grep(t,function(t){return i.test(t.label||t.value||t)})}}),V.widget("ui.autocomplete",V.ui.autocomplete,{options:{messages:{noResults:"No search results.",results:function(t){return t+(1<t?" results are":" result is")+" available, use up and down arrow keys to navigate."}}},__response:function(t){var e;this._superApply(arguments),this.options.disabled||this.cancelSearch||(e=t&&t.length?this.options.messages.results(t.length):this.options.messages.noResults,clearTimeout(this.liveRegionTimer),this.liveRegionTimer=this._delay(function(){this.liveRegion.html(V("<div>").text(e))},100))}});V.ui.autocomplete;var tt=/ui-corner-([a-z]){2,6}/g;V.widget("ui.controlgroup",{version:"1.13.2",defaultElement:"<div>",options:{direction:"horizontal",disabled:null,onlyVisible:!0,items:{button:"input[type=button], input[type=submit], input[type=reset], button, a",controlgroupLabel:".ui-controlgroup-label",checkboxradio:"input[type='checkbox'], input[type='radio']",selectmenu:"select",spinner:".ui-spinner-input"}},_create:function(){this._enhance()},_enhance:function(){this.element.attr("role","toolbar"),this.refresh()},_destroy:function(){this._callChildMethod("destroy"),this.childWidgets.removeData("ui-controlgroup-data"),this.element.removeAttr("role"),this.options.items.controlgroupLabel&&this.element.find(this.options.items.controlgroupLabel).find(".ui-controlgroup-label-contents").contents().unwrap()},_initWidgets:function(){var o=this,a=[];V.each(this.options.items,function(s,t){var e,n={};if(t)return"controlgroupLabel"===s?((e=o.element.find(t)).each(function(){var t=V(this);t.children(".ui-controlgroup-label-contents").length||t.contents().wrapAll("<span class='ui-controlgroup-label-contents'></span>")}),o._addClass(e,null,"ui-widget ui-widget-content ui-state-default"),void(a=a.concat(e.get()))):void(V.fn[s]&&(n=o["_"+s+"Options"]?o["_"+s+"Options"]("middle"):{classes:{}},o.element.find(t).each(function(){var t=V(this),e=t[s]("instance"),i=V.widget.extend({},n);"button"===s&&t.parent(".ui-spinner").length||((e=e||t[s]()[s]("instance"))&&(i.classes=o._resolveClassesValues(i.classes,e)),t[s](i),i=t[s]("widget"),V.data(i[0],"ui-controlgroup-data",e||t[s]("instance")),a.push(i[0]))})))}),this.childWidgets=V(V.uniqueSort(a)),this._addClass(this.childWidgets,"ui-controlgroup-item")},_callChildMethod:function(e){this.childWidgets.each(function(){var t=V(this).data("ui-controlgroup-data");t&&t[e]&&t[e]()})},_updateCornerClass:function(t,e){e=this._buildSimpleOptions(e,"label").classes.label;this._removeClass(t,null,"ui-corner-top ui-corner-bottom ui-corner-left ui-corner-right ui-corner-all"),this._addClass(t,null,e)},_buildSimpleOptions:function(t,e){var i="vertical"===this.options.direction,s={classes:{}};return s.classes[e]={middle:"",first:"ui-corner-"+(i?"top":"left"),last:"ui-corner-"+(i?"bottom":"right"),only:"ui-corner-all"}[t],s},_spinnerOptions:function(t){t=this._buildSimpleOptions(t,"ui-spinner");return t.classes["ui-spinner-up"]="",t.classes["ui-spinner-down"]="",t},_buttonOptions:function(t){return this._buildSimpleOptions(t,"ui-button")},_checkboxradioOptions:function(t){return this._buildSimpleOptions(t,"ui-checkboxradio-label")},_selectmenuOptions:function(t){var e="vertical"===this.options.direction;return{width:e&&"auto",classes:{middle:{"ui-selectmenu-button-open":"","ui-selectmenu-button-closed":""},first:{"ui-selectmenu-button-open":"ui-corner-"+(e?"top":"tl"),"ui-selectmenu-button-closed":"ui-corner-"+(e?"top":"left")},last:{"ui-selectmenu-button-open":e?"":"ui-corner-tr","ui-selectmenu-button-closed":"ui-corner-"+(e?"bottom":"right")},only:{"ui-selectmenu-button-open":"ui-corner-top","ui-selectmenu-button-closed":"ui-corner-all"}}[t]}},_resolveClassesValues:function(i,s){var n={};return V.each(i,function(t){var e=s.options.classes[t]||"",e=String.prototype.trim.call(e.replace(tt,""));n[t]=(e+" "+i[t]).replace(/\s+/g," ")}),n},_setOption:function(t,e){"direction"===t&&this._removeClass("ui-controlgroup-"+this.options.direction),this._super(t,e),"disabled"!==t?this.refresh():this._callChildMethod(e?"disable":"enable")},refresh:function(){var n,o=this;this._addClass("ui-controlgroup ui-controlgroup-"+this.options.direction),"horizontal"===this.options.direction&&this._addClass(null,"ui-helper-clearfix"),this._initWidgets(),n=this.childWidgets,(n=this.options.onlyVisible?n.filter(":visible"):n).length&&(V.each(["first","last"],function(t,e){var i,s=n[e]().data("ui-controlgroup-data");s&&o["_"+s.widgetName+"Options"]?((i=o["_"+s.widgetName+"Options"](1===n.length?"only":e)).classes=o._resolveClassesValues(i.classes,s),s.element[s.widgetName](i)):o._updateCornerClass(n[e](),e)}),this._callChildMethod("refresh"))}});V.widget("ui.checkboxradio",[V.ui.formResetMixin,{version:"1.13.2",options:{disabled:null,label:null,icon:!0,classes:{"ui-checkboxradio-label":"ui-corner-all","ui-checkboxradio-icon":"ui-corner-all"}},_getCreateOptions:function(){var t,e=this._super()||{};return this._readType(),t=this.element.labels(),this.label=V(t[t.length-1]),this.label.length||V.error("No label found for checkboxradio widget"),this.originalLabel="",(t=this.label.contents().not(this.element[0])).length&&(this.originalLabel+=t.clone().wrapAll("<div></div>").parent().html()),this.originalLabel&&(e.label=this.originalLabel),null!=(t=this.element[0].disabled)&&(e.disabled=t),e},_create:function(){var t=this.element[0].checked;this._bindFormResetHandler(),null==this.options.disabled&&(this.options.disabled=this.element[0].disabled),this._setOption("disabled",this.options.disabled),this._addClass("ui-checkboxradio","ui-helper-hidden-accessible"),this._addClass(this.label,"ui-checkboxradio-label","ui-button ui-widget"),"radio"===this.type&&this._addClass(this.label,"ui-checkboxradio-radio-label"),this.options.label&&this.options.label!==this.originalLabel?this._updateLabel():this.originalLabel&&(this.options.label=this.originalLabel),this._enhance(),t&&this._addClass(this.label,"ui-checkboxradio-checked","ui-state-active"),this._on({change:"_toggleClasses",focus:function(){this._addClass(this.label,null,"ui-state-focus ui-visual-focus")},blur:function(){this._removeClass(this.label,null,"ui-state-focus ui-visual-focus")}})},_readType:function(){var t=this.element[0].nodeName.toLowerCase();this.type=this.element[0].type,"input"===t&&/radio|checkbox/.test(this.type)||V.error("Can't create checkboxradio on element.nodeName="+t+" and element.type="+this.type)},_enhance:function(){this._updateIcon(this.element[0].checked)},widget:function(){return this.label},_getRadioGroup:function(){var t=this.element[0].name,e="input[name='"+V.escapeSelector(t)+"']";return t?(this.form.length?V(this.form[0].elements).filter(e):V(e).filter(function(){return 0===V(this)._form().length})).not(this.element):V([])},_toggleClasses:function(){var t=this.element[0].checked;this._toggleClass(this.label,"ui-checkboxradio-checked","ui-state-active",t),this.options.icon&&"checkbox"===this.type&&this._toggleClass(this.icon,null,"ui-icon-check ui-state-checked",t)._toggleClass(this.icon,null,"ui-icon-blank",!t),"radio"===this.type&&this._getRadioGroup().each(function(){var t=V(this).checkboxradio("instance");t&&t._removeClass(t.label,"ui-checkboxradio-checked","ui-state-active")})},_destroy:function(){this._unbindFormResetHandler(),this.icon&&(this.icon.remove(),this.iconSpace.remove())},_setOption:function(t,e){if("label"!==t||e){if(this._super(t,e),"disabled"===t)return this._toggleClass(this.label,null,"ui-state-disabled",e),void(this.element[0].disabled=e);this.refresh()}},_updateIcon:function(t){var e="ui-icon ui-icon-background ";this.options.icon?(this.icon||(this.icon=V("<span>"),this.iconSpace=V("<span> </span>"),this._addClass(this.iconSpace,"ui-checkboxradio-icon-space")),"checkbox"===this.type?(e+=t?"ui-icon-check ui-state-checked":"ui-icon-blank",this._removeClass(this.icon,null,t?"ui-icon-blank":"ui-icon-check")):e+="ui-icon-blank",this._addClass(this.icon,"ui-checkboxradio-icon",e),t||this._removeClass(this.icon,null,"ui-icon-check ui-state-checked"),this.icon.prependTo(this.label).after(this.iconSpace)):void 0!==this.icon&&(this.icon.remove(),this.iconSpace.remove(),delete this.icon)},_updateLabel:function(){var t=this.label.contents().not(this.element[0]);this.icon&&(t=t.not(this.icon[0])),(t=this.iconSpace?t.not(this.iconSpace[0]):t).remove(),this.label.append(this.options.label)},refresh:function(){var t=this.element[0].checked,e=this.element[0].disabled;this._updateIcon(t),this._toggleClass(this.label,"ui-checkboxradio-checked","ui-state-active",t),null!==this.options.label&&this._updateLabel(),e!==this.options.disabled&&this._setOptions({disabled:e})}}]);var et;V.ui.checkboxradio;V.widget("ui.button",{version:"1.13.2",defaultElement:"<button>",options:{classes:{"ui-button":"ui-corner-all"},disabled:null,icon:null,iconPosition:"beginning",label:null,showLabel:!0},_getCreateOptions:function(){var t,e=this._super()||{};return this.isInput=this.element.is("input"),null!=(t=this.element[0].disabled)&&(e.disabled=t),this.originalLabel=this.isInput?this.element.val():this.element.html(),this.originalLabel&&(e.label=this.originalLabel),e},_create:function(){!this.option.showLabel&!this.options.icon&&(this.options.showLabel=!0),null==this.options.disabled&&(this.options.disabled=this.element[0].disabled||!1),this.hasTitle=!!this.element.attr("title"),this.options.label&&this.options.label!==this.originalLabel&&(this.isInput?this.element.val(this.options.label):this.element.html(this.options.label)),this._addClass("ui-button","ui-widget"),this._setOption("disabled",this.options.disabled),this._enhance(),this.element.is("a")&&this._on({keyup:function(t){t.keyCode===V.ui.keyCode.SPACE&&(t.preventDefault(),this.element[0].click?this.element[0].click():this.element.trigger("click"))}})},_enhance:function(){this.element.is("button")||this.element.attr("role","button"),this.options.icon&&(this._updateIcon("icon",this.options.icon),this._updateTooltip())},_updateTooltip:function(){this.title=this.element.attr("title"),this.options.showLabel||this.title||this.element.attr("title",this.options.label)},_updateIcon:function(t,e){var i="iconPosition"!==t,s=i?this.options.iconPosition:e,t="top"===s||"bottom"===s;this.icon?i&&this._removeClass(this.icon,null,this.options.icon):(this.icon=V("<span>"),this._addClass(this.icon,"ui-button-icon","ui-icon"),this.options.showLabel||this._addClass("ui-button-icon-only")),i&&this._addClass(this.icon,null,e),this._attachIcon(s),t?(this._addClass(this.icon,null,"ui-widget-icon-block"),this.iconSpace&&this.iconSpace.remove()):(this.iconSpace||(this.iconSpace=V("<span> </span>"),this._addClass(this.iconSpace,"ui-button-icon-space")),this._removeClass(this.icon,null,"ui-wiget-icon-block"),this._attachIconSpace(s))},_destroy:function(){this.element.removeAttr("role"),this.icon&&this.icon.remove(),this.iconSpace&&this.iconSpace.remove(),this.hasTitle||this.element.removeAttr("title")},_attachIconSpace:function(t){this.icon[/^(?:end|bottom)/.test(t)?"before":"after"](this.iconSpace)},_attachIcon:function(t){this.element[/^(?:end|bottom)/.test(t)?"append":"prepend"](this.icon)},_setOptions:function(t){var e=(void 0===t.showLabel?this.options:t).showLabel,i=(void 0===t.icon?this.options:t).icon;e||i||(t.showLabel=!0),this._super(t)},_setOption:function(t,e){"icon"===t&&(e?this._updateIcon(t,e):this.icon&&(this.icon.remove(),this.iconSpace&&this.iconSpace.remove())),"iconPosition"===t&&this._updateIcon(t,e),"showLabel"===t&&(this._toggleClass("ui-button-icon-only",null,!e),this._updateTooltip()),"label"===t&&(this.isInput?this.element.val(e):(this.element.html(e),this.icon&&(this._attachIcon(this.options.iconPosition),this._attachIconSpace(this.options.iconPosition)))),this._super(t,e),"disabled"===t&&(this._toggleClass(null,"ui-state-disabled",e),(this.element[0].disabled=e)&&this.element.trigger("blur"))},refresh:function(){var t=this.element.is("input, button")?this.element[0].disabled:this.element.hasClass("ui-button-disabled");t!==this.options.disabled&&this._setOptions({disabled:t}),this._updateTooltip()}}),!1!==V.uiBackCompat&&(V.widget("ui.button",V.ui.button,{options:{text:!0,icons:{primary:null,secondary:null}},_create:function(){this.options.showLabel&&!this.options.text&&(this.options.showLabel=this.options.text),!this.options.showLabel&&this.options.text&&(this.options.text=this.options.showLabel),this.options.icon||!this.options.icons.primary&&!this.options.icons.secondary?this.options.icon&&(this.options.icons.primary=this.options.icon):this.options.icons.primary?this.options.icon=this.options.icons.primary:(this.options.icon=this.options.icons.secondary,this.options.iconPosition="end"),this._super()},_setOption:function(t,e){"text"!==t?("showLabel"===t&&(this.options.text=e),"icon"===t&&(this.options.icons.primary=e),"icons"===t&&(e.primary?(this._super("icon",e.primary),this._super("iconPosition","beginning")):e.secondary&&(this._super("icon",e.secondary),this._super("iconPosition","end"))),this._superApply(arguments)):this._super("showLabel",e)}}),V.fn.button=(et=V.fn.button,function(i){var t="string"==typeof i,s=Array.prototype.slice.call(arguments,1),n=this;return t?this.length||"instance"!==i?this.each(function(){var t=V(this).attr("type"),e=V.data(this,"ui-"+("checkbox"!==t&&"radio"!==t?"button":"checkboxradio"));return"instance"===i?(n=e,!1):e?"function"!=typeof e[i]||"_"===i.charAt(0)?V.error("no such method '"+i+"' for button widget instance"):(t=e[i].apply(e,s))!==e&&void 0!==t?(n=t&&t.jquery?n.pushStack(t.get()):t,!1):void 0:V.error("cannot call methods on button prior to initialization; attempted to call method '"+i+"'")}):n=void 0:(s.length&&(i=V.widget.extend.apply(null,[i].concat(s))),this.each(function(){var t=V(this).attr("type"),e="checkbox"!==t&&"radio"!==t?"button":"checkboxradio",t=V.data(this,"ui-"+e);t?(t.option(i||{}),t._init&&t._init()):"button"!=e?V(this).checkboxradio(V.extend({icon:!1},i)):et.call(V(this),i)})),n}),V.fn.buttonset=function(){return V.ui.controlgroup||V.error("Controlgroup widget missing"),"option"===arguments[0]&&"items"===arguments[1]&&arguments[2]?this.controlgroup.apply(this,[arguments[0],"items.button",arguments[2]]):"option"===arguments[0]&&"items"===arguments[1]?this.controlgroup.apply(this,[arguments[0],"items.button"]):("object"==typeof arguments[0]&&arguments[0].items&&(arguments[0].items={button:arguments[0].items}),this.controlgroup.apply(this,arguments))});var it;V.ui.button;function st(){this._curInst=null,this._keyEvent=!1,this._disabledInputs=[],this._datepickerShowing=!1,this._inDialog=!1,this._mainDivId="ui-datepicker-div",this._inlineClass="ui-datepicker-inline",this._appendClass="ui-datepicker-append",this._triggerClass="ui-datepicker-trigger",this._dialogClass="ui-datepicker-dialog",this._disableClass="ui-datepicker-disabled",this._unselectableClass="ui-datepicker-unselectable",this._currentClass="ui-datepicker-current-day",this._dayOverClass="ui-datepicker-days-cell-over",this.regional=[],this.regional[""]={closeText:"Done",prevText:"Prev",nextText:"Next",currentText:"Today",monthNames:["January","February","March","April","May","June","July","August","September","October","November","December"],monthNamesShort:["Jan","Feb","Mar","Apr","May","Jun","Jul","Aug","Sep","Oct","Nov","Dec"],dayNames:["Sunday","Monday","Tuesday","Wednesday","Thursday","Friday","Saturday"],dayNamesShort:["Sun","Mon","Tue","Wed","Thu","Fri","Sat"],dayNamesMin:["Su","Mo","Tu","We","Th","Fr","Sa"],weekHeader:"Wk",dateFormat:"mm/dd/yy",firstDay:0,isRTL:!1,showMonthAfterYear:!1,yearSuffix:"",selectMonthLabel:"Select month",selectYearLabel:"Select year"},this._defaults={showOn:"focus",showAnim:"fadeIn",showOptions:{},defaultDate:null,appendText:"",buttonText:"...",buttonImage:"",buttonImageOnly:!1,hideIfNoPrevNext:!1,navigationAsDateFormat:!1,gotoCurrent:!1,changeMonth:!1,changeYear:!1,yearRange:"c-10:c+10",showOtherMonths:!1,selectOtherMonths:!1,showWeek:!1,calculateWeek:this.iso8601Week,shortYearCutoff:"+10",minDate:null,maxDate:null,duration:"fast",beforeShowDay:null,beforeShow:null,onSelect:null,onChangeMonthYear:null,onClose:null,onUpdateDatepicker:null,numberOfMonths:1,showCurrentAtPos:0,stepMonths:1,stepBigMonths:12,altField:"",altFormat:"",constrainInput:!0,showButtonPanel:!1,autoSize:!1,disabled:!1},V.extend(this._defaults,this.regional[""]),this.regional.en=V.extend(!0,{},this.regional[""]),this.regional["en-US"]=V.extend(!0,{},this.regional.en),this.dpDiv=nt(V("<div id='"+this._mainDivId+"' class='ui-datepicker ui-widget ui-widget-content ui-helper-clearfix ui-corner-all'></div>"))}function nt(t){var e="button, .ui-datepicker-prev, .ui-datepicker-next, .ui-datepicker-calendar td a";return t.on("mouseout",e,function(){V(this).removeClass("ui-state-hover"),-1!==this.className.indexOf("ui-datepicker-prev")&&V(this).removeClass("ui-datepicker-prev-hover"),-1!==this.className.indexOf("ui-datepicker-next")&&V(this).removeClass("ui-datepicker-next-hover")}).on("mouseover",e,ot)}function ot(){V.datepicker._isDisabledDatepicker((it.inline?it.dpDiv.parent():it.input)[0])||(V(this).parents(".ui-datepicker-calendar").find("a").removeClass("ui-state-hover"),V(this).addClass("ui-state-hover"),-1!==this.className.indexOf("ui-datepicker-prev")&&V(this).addClass("ui-datepicker-prev-hover"),-1!==this.className.indexOf("ui-datepicker-next")&&V(this).addClass("ui-datepicker-next-hover"))}function at(t,e){for(var i in V.extend(t,e),e)null==e[i]&&(t[i]=e[i]);return t}V.extend(V.ui,{datepicker:{version:"1.13.2"}}),V.extend(st.prototype,{markerClassName:"hasDatepicker",maxRows:4,_widgetDatepicker:function(){return this.dpDiv},setDefaults:function(t){return at(this._defaults,t||{}),this},_attachDatepicker:function(t,e){var i,s=t.nodeName.toLowerCase(),n="div"===s||"span"===s;t.id||(this.uuid+=1,t.id="dp"+this.uuid),(i=this._newInst(V(t),n)).settings=V.extend({},e||{}),"input"===s?this._connectDatepicker(t,i):n&&this._inlineDatepicker(t,i)},_newInst:function(t,e){return{id:t[0].id.replace(/([^A-Za-z0-9_\-])/g,"\\\\$1"),input:t,selectedDay:0,selectedMonth:0,selectedYear:0,drawMonth:0,drawYear:0,inline:e,dpDiv:e?nt(V("<div class='"+this._inlineClass+" ui-datepicker ui-widget ui-widget-content ui-helper-clearfix ui-corner-all'></div>")):this.dpDiv}},_connectDatepicker:function(t,e){var i=V(t);e.append=V([]),e.trigger=V([]),i.hasClass(this.markerClassName)||(this._attachments(i,e),i.addClass(this.markerClassName).on("keydown",this._doKeyDown).on("keypress",this._doKeyPress).on("keyup",this._doKeyUp),this._autoSize(e),V.data(t,"datepicker",e),e.settings.disabled&&this._disableDatepicker(t))},_attachments:function(t,e){var i,s=this._get(e,"appendText"),n=this._get(e,"isRTL");e.append&&e.append.remove(),s&&(e.append=V("<span>").addClass(this._appendClass).text(s),t[n?"before":"after"](e.append)),t.off("focus",this._showDatepicker),e.trigger&&e.trigger.remove(),"focus"!==(i=this._get(e,"showOn"))&&"both"!==i||t.on("focus",this._showDatepicker),"button"!==i&&"both"!==i||(s=this._get(e,"buttonText"),i=this._get(e,"buttonImage"),this._get(e,"buttonImageOnly")?e.trigger=V("<img>").addClass(this._triggerClass).attr({src:i,alt:s,title:s}):(e.trigger=V("<button type='button'>").addClass(this._triggerClass),i?e.trigger.html(V("<img>").attr({src:i,alt:s,title:s})):e.trigger.text(s)),t[n?"before":"after"](e.trigger),e.trigger.on("click",function(){return V.datepicker._datepickerShowing&&V.datepicker._lastInput===t[0]?V.datepicker._hideDatepicker():(V.datepicker._datepickerShowing&&V.datepicker._lastInput!==t[0]&&V.datepicker._hideDatepicker(),V.datepicker._showDatepicker(t[0])),!1}))},_autoSize:function(t){var e,i,s,n,o,a;this._get(t,"autoSize")&&!t.inline&&(o=new Date(2009,11,20),(a=this._get(t,"dateFormat")).match(/[DM]/)&&(e=function(t){for(n=s=i=0;n<t.length;n++)t[n].length>i&&(i=t[n].length,s=n);return s},o.setMonth(e(this._get(t,a.match(/MM/)?"monthNames":"monthNamesShort"))),o.setDate(e(this._get(t,a.match(/DD/)?"dayNames":"dayNamesShort"))+20-o.getDay())),t.input.attr("size",this._formatDate(t,o).length))},_inlineDatepicker:function(t,e){var i=V(t);i.hasClass(this.markerClassName)||(i.addClass(this.markerClassName).append(e.dpDiv),V.data(t,"datepicker",e),this._setDate(e,this._getDefaultDate(e),!0),this._updateDatepicker(e),this._updateAlternate(e),e.settings.disabled&&this._disableDatepicker(t),e.dpDiv.css("display","block"))},_dialogDatepicker:function(t,e,i,s,n){var o,a=this._dialogInst;return a||(this.uuid+=1,o="dp"+this.uuid,this._dialogInput=V("<input type='text' id='"+o+"' style='position: absolute; top: -100px; width: 0px;'/>"),this._dialogInput.on("keydown",this._doKeyDown),V("body").append(this._dialogInput),(a=this._dialogInst=this._newInst(this._dialogInput,!1)).settings={},V.data(this._dialogInput[0],"datepicker",a)),at(a.settings,s||{}),e=e&&e.constructor===Date?this._formatDate(a,e):e,this._dialogInput.val(e),this._pos=n?n.length?n:[n.pageX,n.pageY]:null,this._pos||(o=document.documentElement.clientWidth,s=document.documentElement.clientHeight,e=document.documentElement.scrollLeft||document.body.scrollLeft,n=document.documentElement.scrollTop||document.body.scrollTop,this._pos=[o/2-100+e,s/2-150+n]),this._dialogInput.css("left",this._pos[0]+20+"px").css("top",this._pos[1]+"px"),a.settings.onSelect=i,this._inDialog=!0,this.dpDiv.addClass(this._dialogClass),this._showDatepicker(this._dialogInput[0]),V.blockUI&&V.blockUI(this.dpDiv),V.data(this._dialogInput[0],"datepicker",a),this},_destroyDatepicker:function(t){var e,i=V(t),s=V.data(t,"datepicker");i.hasClass(this.markerClassName)&&(e=t.nodeName.toLowerCase(),V.removeData(t,"datepicker"),"input"===e?(s.append.remove(),s.trigger.remove(),i.removeClass(this.markerClassName).off("focus",this._showDatepicker).off("keydown",this._doKeyDown).off("keypress",this._doKeyPress).off("keyup",this._doKeyUp)):"div"!==e&&"span"!==e||i.removeClass(this.markerClassName).empty(),it===s&&(it=null,this._curInst=null))},_enableDatepicker:function(e){var t,i=V(e),s=V.data(e,"datepicker");i.hasClass(this.markerClassName)&&("input"===(t=e.nodeName.toLowerCase())?(e.disabled=!1,s.trigger.filter("button").each(function(){this.disabled=!1}).end().filter("img").css({opacity:"1.0",cursor:""})):"div"!==t&&"span"!==t||((i=i.children("."+this._inlineClass)).children().removeClass("ui-state-disabled"),i.find("select.ui-datepicker-month, select.ui-datepicker-year").prop("disabled",!1)),this._disabledInputs=V.map(this._disabledInputs,function(t){return t===e?null:t}))},_disableDatepicker:function(e){var t,i=V(e),s=V.data(e,"datepicker");i.hasClass(this.markerClassName)&&("input"===(t=e.nodeName.toLowerCase())?(e.disabled=!0,s.trigger.filter("button").each(function(){this.disabled=!0}).end().filter("img").css({opacity:"0.5",cursor:"default"})):"div"!==t&&"span"!==t||((i=i.children("."+this._inlineClass)).children().addClass("ui-state-disabled"),i.find("select.ui-datepicker-month, select.ui-datepicker-year").prop("disabled",!0)),this._disabledInputs=V.map(this._disabledInputs,function(t){return t===e?null:t}),this._disabledInputs[this._disabledInputs.length]=e)},_isDisabledDatepicker:function(t){if(!t)return!1;for(var e=0;e<this._disabledInputs.length;e++)if(this._disabledInputs[e]===t)return!0;return!1},_getInst:function(t){try{return V.data(t,"datepicker")}catch(t){throw"Missing instance data for this datepicker"}},_optionDatepicker:function(t,e,i){var s,n,o=this._getInst(t);if(2===arguments.length&&"string"==typeof e)return"defaults"===e?V.extend({},V.datepicker._defaults):o?"all"===e?V.extend({},o.settings):this._get(o,e):null;s=e||{},"string"==typeof e&&((s={})[e]=i),o&&(this._curInst===o&&this._hideDatepicker(),n=this._getDateDatepicker(t,!0),e=this._getMinMaxDate(o,"min"),i=this._getMinMaxDate(o,"max"),at(o.settings,s),null!==e&&void 0!==s.dateFormat&&void 0===s.minDate&&(o.settings.minDate=this._formatDate(o,e)),null!==i&&void 0!==s.dateFormat&&void 0===s.maxDate&&(o.settings.maxDate=this._formatDate(o,i)),"disabled"in s&&(s.disabled?this._disableDatepicker(t):this._enableDatepicker(t)),this._attachments(V(t),o),this._autoSize(o),this._setDate(o,n),this._updateAlternate(o),this._updateDatepicker(o))},_changeDatepicker:function(t,e,i){this._optionDatepicker(t,e,i)},_refreshDatepicker:function(t){t=this._getInst(t);t&&this._updateDatepicker(t)},_setDateDatepicker:function(t,e){t=this._getInst(t);t&&(this._setDate(t,e),this._updateDatepicker(t),this._updateAlternate(t))},_getDateDatepicker:function(t,e){t=this._getInst(t);return t&&!t.inline&&this._setDateFromField(t,e),t?this._getDate(t):null},_doKeyDown:function(t){var e,i,s=V.datepicker._getInst(t.target),n=!0,o=s.dpDiv.is(".ui-datepicker-rtl");if(s._keyEvent=!0,V.datepicker._datepickerShowing)switch(t.keyCode){case 9:V.datepicker._hideDatepicker(),n=!1;break;case 13:return(i=V("td."+V.datepicker._dayOverClass+":not(."+V.datepicker._currentClass+")",s.dpDiv))[0]&&V.datepicker._selectDay(t.target,s.selectedMonth,s.selectedYear,i[0]),(e=V.datepicker._get(s,"onSelect"))?(i=V.datepicker._formatDate(s),e.apply(s.input?s.input[0]:null,[i,s])):V.datepicker._hideDatepicker(),!1;case 27:V.datepicker._hideDatepicker();break;case 33:V.datepicker._adjustDate(t.target,t.ctrlKey?-V.datepicker._get(s,"stepBigMonths"):-V.datepicker._get(s,"stepMonths"),"M");break;case 34:V.datepicker._adjustDate(t.target,t.ctrlKey?+V.datepicker._get(s,"stepBigMonths"):+V.datepicker._get(s,"stepMonths"),"M");break;case 35:(t.ctrlKey||t.metaKey)&&V.datepicker._clearDate(t.target),n=t.ctrlKey||t.metaKey;break;case 36:(t.ctrlKey||t.metaKey)&&V.datepicker._gotoToday(t.target),n=t.ctrlKey||t.metaKey;break;case 37:(t.ctrlKey||t.metaKey)&&V.datepicker._adjustDate(t.target,o?1:-1,"D"),n=t.ctrlKey||t.metaKey,t.originalEvent.altKey&&V.datepicker._adjustDate(t.target,t.ctrlKey?-V.datepicker._get(s,"stepBigMonths"):-V.datepicker._get(s,"stepMonths"),"M");break;case 38:(t.ctrlKey||t.metaKey)&&V.datepicker._adjustDate(t.target,-7,"D"),n=t.ctrlKey||t.metaKey;break;case 39:(t.ctrlKey||t.metaKey)&&V.datepicker._adjustDate(t.target,o?-1:1,"D"),n=t.ctrlKey||t.metaKey,t.originalEvent.altKey&&V.datepicker._adjustDate(t.target,t.ctrlKey?+V.datepicker._get(s,"stepBigMonths"):+V.datepicker._get(s,"stepMonths"),"M");break;case 40:(t.ctrlKey||t.metaKey)&&V.datepicker._adjustDate(t.target,7,"D"),n=t.ctrlKey||t.metaKey;break;default:n=!1}else 36===t.keyCode&&t.ctrlKey?V.datepicker._showDatepicker(this):n=!1;n&&(t.preventDefault(),t.stopPropagation())},_doKeyPress:function(t){var e,i=V.datepicker._getInst(t.target);if(V.datepicker._get(i,"constrainInput"))return e=V.datepicker._possibleChars(V.datepicker._get(i,"dateFormat")),i=String.fromCharCode(null==t.charCode?t.keyCode:t.charCode),t.ctrlKey||t.metaKey||i<" "||!e||-1<e.indexOf(i)},_doKeyUp:function(t){t=V.datepicker._getInst(t.target);if(t.input.val()!==t.lastVal)try{V.datepicker.parseDate(V.datepicker._get(t,"dateFormat"),t.input?t.input.val():null,V.datepicker._getFormatConfig(t))&&(V.datepicker._setDateFromField(t),V.datepicker._updateAlternate(t),V.datepicker._updateDatepicker(t))}catch(t){}return!0},_showDatepicker:function(t){var e,i,s,n;"input"!==(t=t.target||t).nodeName.toLowerCase()&&(t=V("input",t.parentNode)[0]),V.datepicker._isDisabledDatepicker(t)||V.datepicker._lastInput===t||(n=V.datepicker._getInst(t),V.datepicker._curInst&&V.datepicker._curInst!==n&&(V.datepicker._curInst.dpDiv.stop(!0,!0),n&&V.datepicker._datepickerShowing&&V.datepicker._hideDatepicker(V.datepicker._curInst.input[0])),!1!==(i=(s=V.datepicker._get(n,"beforeShow"))?s.apply(t,[t,n]):{})&&(at(n.settings,i),n.lastVal=null,V.datepicker._lastInput=t,V.datepicker._setDateFromField(n),V.datepicker._inDialog&&(t.value=""),V.datepicker._pos||(V.datepicker._pos=V.datepicker._findPos(t),V.datepicker._pos[1]+=t.offsetHeight),e=!1,V(t).parents().each(function(){return!(e|="fixed"===V(this).css("position"))}),s={left:V.datepicker._pos[0],top:V.datepicker._pos[1]},V.datepicker._pos=null,n.dpDiv.empty(),n.dpDiv.css({position:"absolute",display:"block",top:"-1000px"}),V.datepicker._updateDatepicker(n),s=V.datepicker._checkOffset(n,s,e),n.dpDiv.css({position:V.datepicker._inDialog&&V.blockUI?"static":e?"fixed":"absolute",display:"none",left:s.left+"px",top:s.top+"px"}),n.inline||(i=V.datepicker._get(n,"showAnim"),s=V.datepicker._get(n,"duration"),n.dpDiv.css("z-index",function(t){for(var e,i;t.length&&t[0]!==document;){if(("absolute"===(e=t.css("position"))||"relative"===e||"fixed"===e)&&(i=parseInt(t.css("zIndex"),10),!isNaN(i)&&0!==i))return i;t=t.parent()}return 0}(V(t))+1),V.datepicker._datepickerShowing=!0,V.effects&&V.effects.effect[i]?n.dpDiv.show(i,V.datepicker._get(n,"showOptions"),s):n.dpDiv[i||"show"](i?s:null),V.datepicker._shouldFocusInput(n)&&n.input.trigger("focus"),V.datepicker._curInst=n)))},_updateDatepicker:function(t){this.maxRows=4,(it=t).dpDiv.empty().append(this._generateHTML(t)),this._attachHandlers(t);var e,i=this._getNumberOfMonths(t),s=i[1],n=t.dpDiv.find("."+this._dayOverClass+" a"),o=V.datepicker._get(t,"onUpdateDatepicker");0<n.length&&ot.apply(n.get(0)),t.dpDiv.removeClass("ui-datepicker-multi-2 ui-datepicker-multi-3 ui-datepicker-multi-4").width(""),1<s&&t.dpDiv.addClass("ui-datepicker-multi-"+s).css("width",17*s+"em"),t.dpDiv[(1!==i[0]||1!==i[1]?"add":"remove")+"Class"]("ui-datepicker-multi"),t.dpDiv[(this._get(t,"isRTL")?"add":"remove")+"Class"]("ui-datepicker-rtl"),t===V.datepicker._curInst&&V.datepicker._datepickerShowing&&V.datepicker._shouldFocusInput(t)&&t.input.trigger("focus"),t.yearshtml&&(e=t.yearshtml,setTimeout(function(){e===t.yearshtml&&t.yearshtml&&t.dpDiv.find("select.ui-datepicker-year").first().replaceWith(t.yearshtml),e=t.yearshtml=null},0)),o&&o.apply(t.input?t.input[0]:null,[t])},_shouldFocusInput:function(t){return t.input&&t.input.is(":visible")&&!t.input.is(":disabled")&&!t.input.is(":focus")},_checkOffset:function(t,e,i){var s=t.dpDiv.outerWidth(),n=t.dpDiv.outerHeight(),o=t.input?t.input.outerWidth():0,a=t.input?t.input.outerHeight():0,r=document.documentElement.clientWidth+(i?0:V(document).scrollLeft()),l=document.documentElement.clientHeight+(i?0:V(document).scrollTop());return e.left-=this._get(t,"isRTL")?s-o:0,e.left-=i&&e.left===t.input.offset().left?V(document).scrollLeft():0,e.top-=i&&e.top===t.input.offset().top+a?V(document).scrollTop():0,e.left-=Math.min(e.left,e.left+s>r&&s<r?Math.abs(e.left+s-r):0),e.top-=Math.min(e.top,e.top+n>l&&n<l?Math.abs(n+a):0),e},_findPos:function(t){for(var e=this._getInst(t),i=this._get(e,"isRTL");t&&("hidden"===t.type||1!==t.nodeType||V.expr.pseudos.hidden(t));)t=t[i?"previousSibling":"nextSibling"];return[(e=V(t).offset()).left,e.top]},_hideDatepicker:function(t){var e,i,s=this._curInst;!s||t&&s!==V.data(t,"datepicker")||this._datepickerShowing&&(e=this._get(s,"showAnim"),i=this._get(s,"duration"),t=function(){V.datepicker._tidyDialog(s)},V.effects&&(V.effects.effect[e]||V.effects[e])?s.dpDiv.hide(e,V.datepicker._get(s,"showOptions"),i,t):s.dpDiv["slideDown"===e?"slideUp":"fadeIn"===e?"fadeOut":"hide"](e?i:null,t),e||t(),this._datepickerShowing=!1,(t=this._get(s,"onClose"))&&t.apply(s.input?s.input[0]:null,[s.input?s.input.val():"",s]),this._lastInput=null,this._inDialog&&(this._dialogInput.css({position:"absolute",left:"0",top:"-100px"}),V.blockUI&&(V.unblockUI(),V("body").append(this.dpDiv))),this._inDialog=!1)},_tidyDialog:function(t){t.dpDiv.removeClass(this._dialogClass).off(".ui-datepicker-calendar")},_checkExternalClick:function(t){var e;V.datepicker._curInst&&(e=V(t.target),t=V.datepicker._getInst(e[0]),(e[0].id===V.datepicker._mainDivId||0!==e.parents("#"+V.datepicker._mainDivId).length||e.hasClass(V.datepicker.markerClassName)||e.closest("."+V.datepicker._triggerClass).length||!V.datepicker._datepickerShowing||V.datepicker._inDialog&&V.blockUI)&&(!e.hasClass(V.datepicker.markerClassName)||V.datepicker._curInst===t)||V.datepicker._hideDatepicker())},_adjustDate:function(t,e,i){var s=V(t),t=this._getInst(s[0]);this._isDisabledDatepicker(s[0])||(this._adjustInstDate(t,e,i),this._updateDatepicker(t))},_gotoToday:function(t){var e=V(t),i=this._getInst(e[0]);this._get(i,"gotoCurrent")&&i.currentDay?(i.selectedDay=i.currentDay,i.drawMonth=i.selectedMonth=i.currentMonth,i.drawYear=i.selectedYear=i.currentYear):(t=new Date,i.selectedDay=t.getDate(),i.drawMonth=i.selectedMonth=t.getMonth(),i.drawYear=i.selectedYear=t.getFullYear()),this._notifyChange(i),this._adjustDate(e)},_selectMonthYear:function(t,e,i){var s=V(t),t=this._getInst(s[0]);t["selected"+("M"===i?"Month":"Year")]=t["draw"+("M"===i?"Month":"Year")]=parseInt(e.options[e.selectedIndex].value,10),this._notifyChange(t),this._adjustDate(s)},_selectDay:function(t,e,i,s){var n=V(t);V(s).hasClass(this._unselectableClass)||this._isDisabledDatepicker(n[0])||((n=this._getInst(n[0])).selectedDay=n.currentDay=parseInt(V("a",s).attr("data-date")),n.selectedMonth=n.currentMonth=e,n.selectedYear=n.currentYear=i,this._selectDate(t,this._formatDate(n,n.currentDay,n.currentMonth,n.currentYear)))},_clearDate:function(t){t=V(t);this._selectDate(t,"")},_selectDate:function(t,e){var i=V(t),t=this._getInst(i[0]);e=null!=e?e:this._formatDate(t),t.input&&t.input.val(e),this._updateAlternate(t),(i=this._get(t,"onSelect"))?i.apply(t.input?t.input[0]:null,[e,t]):t.input&&t.input.trigger("change"),t.inline?this._updateDatepicker(t):(this._hideDatepicker(),this._lastInput=t.input[0],"object"!=typeof t.input[0]&&t.input.trigger("focus"),this._lastInput=null)},_updateAlternate:function(t){var e,i,s=this._get(t,"altField");s&&(e=this._get(t,"altFormat")||this._get(t,"dateFormat"),i=this._getDate(t),t=this.formatDate(e,i,this._getFormatConfig(t)),V(document).find(s).val(t))},noWeekends:function(t){t=t.getDay();return[0<t&&t<6,""]},iso8601Week:function(t){var e=new Date(t.getTime());return e.setDate(e.getDate()+4-(e.getDay()||7)),t=e.getTime(),e.setMonth(0),e.setDate(1),Math.floor(Math.round((t-e)/864e5)/7)+1},parseDate:function(e,n,t){if(null==e||null==n)throw"Invalid arguments";if(""===(n="object"==typeof n?n.toString():n+""))return null;for(var i,s,o,a=0,r=(t?t.shortYearCutoff:null)||this._defaults.shortYearCutoff,r="string"!=typeof r?r:(new Date).getFullYear()%100+parseInt(r,10),l=(t?t.dayNamesShort:null)||this._defaults.dayNamesShort,h=(t?t.dayNames:null)||this._defaults.dayNames,c=(t?t.monthNamesShort:null)||this._defaults.monthNamesShort,u=(t?t.monthNames:null)||this._defaults.monthNames,d=-1,p=-1,f=-1,g=-1,m=!1,_=function(t){t=w+1<e.length&&e.charAt(w+1)===t;return t&&w++,t},v=function(t){var e=_(t),e="@"===t?14:"!"===t?20:"y"===t&&e?4:"o"===t?3:2,e=new RegExp("^\\d{"+("y"===t?e:1)+","+e+"}"),e=n.substring(a).match(e);if(!e)throw"Missing number at position "+a;return a+=e[0].length,parseInt(e[0],10)},b=function(t,e,i){var s=-1,e=V.map(_(t)?i:e,function(t,e){return[[e,t]]}).sort(function(t,e){return-(t[1].length-e[1].length)});if(V.each(e,function(t,e){var i=e[1];if(n.substr(a,i.length).toLowerCase()===i.toLowerCase())return s=e[0],a+=i.length,!1}),-1!==s)return s+1;throw"Unknown name at position "+a},y=function(){if(n.charAt(a)!==e.charAt(w))throw"Unexpected literal at position "+a;a++},w=0;w<e.length;w++)if(m)"'"!==e.charAt(w)||_("'")?y():m=!1;else switch(e.charAt(w)){case"d":f=v("d");break;case"D":b("D",l,h);break;case"o":g=v("o");break;case"m":p=v("m");break;case"M":p=b("M",c,u);break;case"y":d=v("y");break;case"@":d=(o=new Date(v("@"))).getFullYear(),p=o.getMonth()+1,f=o.getDate();break;case"!":d=(o=new Date((v("!")-this._ticksTo1970)/1e4)).getFullYear(),p=o.getMonth()+1,f=o.getDate();break;case"'":_("'")?y():m=!0;break;default:y()}if(a<n.length&&(s=n.substr(a),!/^\s+/.test(s)))throw"Extra/unparsed characters found in date: "+s;if(-1===d?d=(new Date).getFullYear():d<100&&(d+=(new Date).getFullYear()-(new Date).getFullYear()%100+(d<=r?0:-100)),-1<g)for(p=1,f=g;;){if(f<=(i=this._getDaysInMonth(d,p-1)))break;p++,f-=i}if((o=this._daylightSavingAdjust(new Date(d,p-1,f))).getFullYear()!==d||o.getMonth()+1!==p||o.getDate()!==f)throw"Invalid date";return o},ATOM:"yy-mm-dd",COOKIE:"D, dd M yy",ISO_8601:"yy-mm-dd",RFC_822:"D, d M y",RFC_850:"DD, dd-M-y",RFC_1036:"D, d M y",RFC_1123:"D, d M yy",RFC_2822:"D, d M yy",RSS:"D, d M y",TICKS:"!",TIMESTAMP:"@",W3C:"yy-mm-dd",_ticksTo1970:24*(718685+Math.floor(492.5)-Math.floor(19.7)+Math.floor(4.925))*60*60*1e7,formatDate:function(e,t,i){if(!t)return"";function s(t,e,i){var s=""+e;if(c(t))for(;s.length<i;)s="0"+s;return s}function n(t,e,i,s){return(c(t)?s:i)[e]}var o,a=(i?i.dayNamesShort:null)||this._defaults.dayNamesShort,r=(i?i.dayNames:null)||this._defaults.dayNames,l=(i?i.monthNamesShort:null)||this._defaults.monthNamesShort,h=(i?i.monthNames:null)||this._defaults.monthNames,c=function(t){t=o+1<e.length&&e.charAt(o+1)===t;return t&&o++,t},u="",d=!1;if(t)for(o=0;o<e.length;o++)if(d)"'"!==e.charAt(o)||c("'")?u+=e.charAt(o):d=!1;else switch(e.charAt(o)){case"d":u+=s("d",t.getDate(),2);break;case"D":u+=n("D",t.getDay(),a,r);break;case"o":u+=s("o",Math.round((new Date(t.getFullYear(),t.getMonth(),t.getDate()).getTime()-new Date(t.getFullYear(),0,0).getTime())/864e5),3);break;case"m":u+=s("m",t.getMonth()+1,2);break;case"M":u+=n("M",t.getMonth(),l,h);break;case"y":u+=c("y")?t.getFullYear():(t.getFullYear()%100<10?"0":"")+t.getFullYear()%100;break;case"@":u+=t.getTime();break;case"!":u+=1e4*t.getTime()+this._ticksTo1970;break;case"'":c("'")?u+="'":d=!0;break;default:u+=e.charAt(o)}return u},_possibleChars:function(e){for(var t="",i=!1,s=function(t){t=n+1<e.length&&e.charAt(n+1)===t;return t&&n++,t},n=0;n<e.length;n++)if(i)"'"!==e.charAt(n)||s("'")?t+=e.charAt(n):i=!1;else switch(e.charAt(n)){case"d":case"m":case"y":case"@":t+="0123456789";break;case"D":case"M":return null;case"'":s("'")?t+="'":i=!0;break;default:t+=e.charAt(n)}return t},_get:function(t,e){return(void 0!==t.settings[e]?t.settings:this._defaults)[e]},_setDateFromField:function(t,e){if(t.input.val()!==t.lastVal){var i=this._get(t,"dateFormat"),s=t.lastVal=t.input?t.input.val():null,n=this._getDefaultDate(t),o=n,a=this._getFormatConfig(t);try{o=this.parseDate(i,s,a)||n}catch(t){s=e?"":s}t.selectedDay=o.getDate(),t.drawMonth=t.selectedMonth=o.getMonth(),t.drawYear=t.selectedYear=o.getFullYear(),t.currentDay=s?o.getDate():0,t.currentMonth=s?o.getMonth():0,t.currentYear=s?o.getFullYear():0,this._adjustInstDate(t)}},_getDefaultDate:function(t){return this._restrictMinMax(t,this._determineDate(t,this._get(t,"defaultDate"),new Date))},_determineDate:function(r,t,e){var i,s,t=null==t||""===t?e:"string"==typeof t?function(t){try{return V.datepicker.parseDate(V.datepicker._get(r,"dateFormat"),t,V.datepicker._getFormatConfig(r))}catch(t){}for(var e=(t.toLowerCase().match(/^c/)?V.datepicker._getDate(r):null)||new Date,i=e.getFullYear(),s=e.getMonth(),n=e.getDate(),o=/([+\-]?[0-9]+)\s*(d|D|w|W|m|M|y|Y)?/g,a=o.exec(t);a;){switch(a[2]||"d"){case"d":case"D":n+=parseInt(a[1],10);break;case"w":case"W":n+=7*parseInt(a[1],10);break;case"m":case"M":s+=parseInt(a[1],10),n=Math.min(n,V.datepicker._getDaysInMonth(i,s));break;case"y":case"Y":i+=parseInt(a[1],10),n=Math.min(n,V.datepicker._getDaysInMonth(i,s))}a=o.exec(t)}return new Date(i,s,n)}(t):"number"==typeof t?isNaN(t)?e:(i=t,(s=new Date).setDate(s.getDate()+i),s):new Date(t.getTime());return(t=t&&"Invalid Date"===t.toString()?e:t)&&(t.setHours(0),t.setMinutes(0),t.setSeconds(0),t.setMilliseconds(0)),this._daylightSavingAdjust(t)},_daylightSavingAdjust:function(t){return t?(t.setHours(12<t.getHours()?t.getHours()+2:0),t):null},_setDate:function(t,e,i){var s=!e,n=t.selectedMonth,o=t.selectedYear,e=this._restrictMinMax(t,this._determineDate(t,e,new Date));t.selectedDay=t.currentDay=e.getDate(),t.drawMonth=t.selectedMonth=t.currentMonth=e.getMonth(),t.drawYear=t.selectedYear=t.currentYear=e.getFullYear(),n===t.selectedMonth&&o===t.selectedYear||i||this._notifyChange(t),this._adjustInstDate(t),t.input&&t.input.val(s?"":this._formatDate(t))},_getDate:function(t){return!t.currentYear||t.input&&""===t.input.val()?null:this._daylightSavingAdjust(new Date(t.currentYear,t.currentMonth,t.currentDay))},_attachHandlers:function(t){var e=this._get(t,"stepMonths"),i="#"+t.id.replace(/\\\\/g,"\\");t.dpDiv.find("[data-handler]").map(function(){var t={prev:function(){V.datepicker._adjustDate(i,-e,"M")},next:function(){V.datepicker._adjustDate(i,+e,"M")},hide:function(){V.datepicker._hideDatepicker()},today:function(){V.datepicker._gotoToday(i)},selectDay:function(){return V.datepicker._selectDay(i,+this.getAttribute("data-month"),+this.getAttribute("data-year"),this),!1},selectMonth:function(){return V.datepicker._selectMonthYear(i,this,"M"),!1},selectYear:function(){return V.datepicker._selectMonthYear(i,this,"Y"),!1}};V(this).on(this.getAttribute("data-event"),t[this.getAttribute("data-handler")])})},_generateHTML:function(t){var e,i,s,n,o,a,r,l,h,c,u,d,p,f,g,m,_,v,b,y,w,x,k,C,D,I,T,P,M,S,H,z,A=new Date,O=this._daylightSavingAdjust(new Date(A.getFullYear(),A.getMonth(),A.getDate())),N=this._get(t,"isRTL"),E=this._get(t,"showButtonPanel"),W=this._get(t,"hideIfNoPrevNext"),F=this._get(t,"navigationAsDateFormat"),L=this._getNumberOfMonths(t),R=this._get(t,"showCurrentAtPos"),A=this._get(t,"stepMonths"),Y=1!==L[0]||1!==L[1],B=this._daylightSavingAdjust(t.currentDay?new Date(t.currentYear,t.currentMonth,t.currentDay):new Date(9999,9,9)),j=this._getMinMaxDate(t,"min"),q=this._getMinMaxDate(t,"max"),K=t.drawMonth-R,U=t.drawYear;if(K<0&&(K+=12,U--),q)for(e=this._daylightSavingAdjust(new Date(q.getFullYear(),q.getMonth()-L[0]*L[1]+1,q.getDate())),e=j&&e<j?j:e;this._daylightSavingAdjust(new Date(U,K,1))>e;)--K<0&&(K=11,U--);for(t.drawMonth=K,t.drawYear=U,R=this._get(t,"prevText"),R=F?this.formatDate(R,this._daylightSavingAdjust(new Date(U,K-A,1)),this._getFormatConfig(t)):R,i=this._canAdjustMonth(t,-1,U,K)?V("<a>").attr({class:"ui-datepicker-prev ui-corner-all","data-handler":"prev","data-event":"click",title:R}).append(V("<span>").addClass("ui-icon ui-icon-circle-triangle-"+(N?"e":"w")).text(R))[0].outerHTML:W?"":V("<a>").attr({class:"ui-datepicker-prev ui-corner-all ui-state-disabled",title:R}).append(V("<span>").addClass("ui-icon ui-icon-circle-triangle-"+(N?"e":"w")).text(R))[0].outerHTML,R=this._get(t,"nextText"),R=F?this.formatDate(R,this._daylightSavingAdjust(new Date(U,K+A,1)),this._getFormatConfig(t)):R,s=this._canAdjustMonth(t,1,U,K)?V("<a>").attr({class:"ui-datepicker-next ui-corner-all","data-handler":"next","data-event":"click",title:R}).append(V("<span>").addClass("ui-icon ui-icon-circle-triangle-"+(N?"w":"e")).text(R))[0].outerHTML:W?"":V("<a>").attr({class:"ui-datepicker-next ui-corner-all ui-state-disabled",title:R}).append(V("<span>").attr("class","ui-icon ui-icon-circle-triangle-"+(N?"w":"e")).text(R))[0].outerHTML,A=this._get(t,"currentText"),W=this._get(t,"gotoCurrent")&&t.currentDay?B:O,A=F?this.formatDate(A,W,this._getFormatConfig(t)):A,R="",t.inline||(R=V("<button>").attr({type:"button",class:"ui-datepicker-close ui-state-default ui-priority-primary ui-corner-all","data-handler":"hide","data-event":"click"}).text(this._get(t,"closeText"))[0].outerHTML),F="",E&&(F=V("<div class='ui-datepicker-buttonpane ui-widget-content'>").append(N?R:"").append(this._isInRange(t,W)?V("<button>").attr({type:"button",class:"ui-datepicker-current ui-state-default ui-priority-secondary ui-corner-all","data-handler":"today","data-event":"click"}).text(A):"").append(N?"":R)[0].outerHTML),n=parseInt(this._get(t,"firstDay"),10),n=isNaN(n)?0:n,o=this._get(t,"showWeek"),a=this._get(t,"dayNames"),r=this._get(t,"dayNamesMin"),l=this._get(t,"monthNames"),h=this._get(t,"monthNamesShort"),c=this._get(t,"beforeShowDay"),u=this._get(t,"showOtherMonths"),d=this._get(t,"selectOtherMonths"),p=this._getDefaultDate(t),f="",m=0;m<L[0];m++){for(_="",this.maxRows=4,v=0;v<L[1];v++){if(b=this._daylightSavingAdjust(new Date(U,K,t.selectedDay)),y=" ui-corner-all",w="",Y){if(w+="<div class='ui-datepicker-group",1<L[1])switch(v){case 0:w+=" ui-datepicker-group-first",y=" ui-corner-"+(N?"right":"left");break;case L[1]-1:w+=" ui-datepicker-group-last",y=" ui-corner-"+(N?"left":"right");break;default:w+=" ui-datepicker-group-middle",y=""}w+="'>"}for(w+="<div class='ui-datepicker-header ui-widget-header ui-helper-clearfix"+y+"'>"+(/all|left/.test(y)&&0===m?N?s:i:"")+(/all|right/.test(y)&&0===m?N?i:s:"")+this._generateMonthYearHeader(t,K,U,j,q,0<m||0<v,l,h)+"</div><table class='ui-datepicker-calendar'><thead><tr>",x=o?"<th class='ui-datepicker-week-col'>"+this._get(t,"weekHeader")+"</th>":"",g=0;g<7;g++)x+="<th scope='col'"+(5<=(g+n+6)%7?" class='ui-datepicker-week-end'":"")+"><span title='"+a[k=(g+n)%7]+"'>"+r[k]+"</span></th>";for(w+=x+"</tr></thead><tbody>",D=this._getDaysInMonth(U,K),U===t.selectedYear&&K===t.selectedMonth&&(t.selectedDay=Math.min(t.selectedDay,D)),C=(this._getFirstDayOfMonth(U,K)-n+7)%7,D=Math.ceil((C+D)/7),I=Y&&this.maxRows>D?this.maxRows:D,this.maxRows=I,T=this._daylightSavingAdjust(new Date(U,K,1-C)),P=0;P<I;P++){for(w+="<tr>",M=o?"<td class='ui-datepicker-week-col'>"+this._get(t,"calculateWeek")(T)+"</td>":"",g=0;g<7;g++)S=c?c.apply(t.input?t.input[0]:null,[T]):[!0,""],z=(H=T.getMonth()!==K)&&!d||!S[0]||j&&T<j||q&&q<T,M+="<td class='"+(5<=(g+n+6)%7?" ui-datepicker-week-end":"")+(H?" ui-datepicker-other-month":"")+(T.getTime()===b.getTime()&&K===t.selectedMonth&&t._keyEvent||p.getTime()===T.getTime()&&p.getTime()===b.getTime()?" "+this._dayOverClass:"")+(z?" "+this._unselectableClass+" ui-state-disabled":"")+(H&&!u?"":" "+S[1]+(T.getTime()===B.getTime()?" "+this._currentClass:"")+(T.getTime()===O.getTime()?" ui-datepicker-today":""))+"'"+(H&&!u||!S[2]?"":" title='"+S[2].replace(/'/g,"&#39;")+"'")+(z?"":" data-handler='selectDay' data-event='click' data-month='"+T.getMonth()+"' data-year='"+T.getFullYear()+"'")+">"+(H&&!u?"&#xa0;":z?"<span class='ui-state-default'>"+T.getDate()+"</span>":"<a class='ui-state-default"+(T.getTime()===O.getTime()?" ui-state-highlight":"")+(T.getTime()===B.getTime()?" ui-state-active":"")+(H?" ui-priority-secondary":"")+"' href='#' aria-current='"+(T.getTime()===B.getTime()?"true":"false")+"' data-date='"+T.getDate()+"'>"+T.getDate()+"</a>")+"</td>",T.setDate(T.getDate()+1),T=this._daylightSavingAdjust(T);w+=M+"</tr>"}11<++K&&(K=0,U++),_+=w+="</tbody></table>"+(Y?"</div>"+(0<L[0]&&v===L[1]-1?"<div class='ui-datepicker-row-break'></div>":""):"")}f+=_}return f+=F,t._keyEvent=!1,f},_generateMonthYearHeader:function(t,e,i,s,n,o,a,r){var l,h,c,u,d,p,f=this._get(t,"changeMonth"),g=this._get(t,"changeYear"),m=this._get(t,"showMonthAfterYear"),_=this._get(t,"selectMonthLabel"),v=this._get(t,"selectYearLabel"),b="<div class='ui-datepicker-title'>",y="";if(o||!f)y+="<span class='ui-datepicker-month'>"+a[e]+"</span>";else{for(l=s&&s.getFullYear()===i,h=n&&n.getFullYear()===i,y+="<select class='ui-datepicker-month' aria-label='"+_+"' data-handler='selectMonth' data-event='change'>",c=0;c<12;c++)(!l||c>=s.getMonth())&&(!h||c<=n.getMonth())&&(y+="<option value='"+c+"'"+(c===e?" selected='selected'":"")+">"+r[c]+"</option>");y+="</select>"}if(m||(b+=y+(!o&&f&&g?"":"&#xa0;")),!t.yearshtml)if(t.yearshtml="",o||!g)b+="<span class='ui-datepicker-year'>"+i+"</span>";else{for(a=this._get(t,"yearRange").split(":"),u=(new Date).getFullYear(),d=(_=function(t){t=t.match(/c[+\-].*/)?i+parseInt(t.substring(1),10):t.match(/[+\-].*/)?u+parseInt(t,10):parseInt(t,10);return isNaN(t)?u:t})(a[0]),p=Math.max(d,_(a[1]||"")),d=s?Math.max(d,s.getFullYear()):d,p=n?Math.min(p,n.getFullYear()):p,t.yearshtml+="<select class='ui-datepicker-year' aria-label='"+v+"' data-handler='selectYear' data-event='change'>";d<=p;d++)t.yearshtml+="<option value='"+d+"'"+(d===i?" selected='selected'":"")+">"+d+"</option>";t.yearshtml+="</select>",b+=t.yearshtml,t.yearshtml=null}return b+=this._get(t,"yearSuffix"),m&&(b+=(!o&&f&&g?"":"&#xa0;")+y),b+="</div>"},_adjustInstDate:function(t,e,i){var s=t.selectedYear+("Y"===i?e:0),n=t.selectedMonth+("M"===i?e:0),e=Math.min(t.selectedDay,this._getDaysInMonth(s,n))+("D"===i?e:0),e=this._restrictMinMax(t,this._daylightSavingAdjust(new Date(s,n,e)));t.selectedDay=e.getDate(),t.drawMonth=t.selectedMonth=e.getMonth(),t.drawYear=t.selectedYear=e.getFullYear(),"M"!==i&&"Y"!==i||this._notifyChange(t)},_restrictMinMax:function(t,e){var i=this._getMinMaxDate(t,"min"),t=this._getMinMaxDate(t,"max"),e=i&&e<i?i:e;return t&&t<e?t:e},_notifyChange:function(t){var e=this._get(t,"onChangeMonthYear");e&&e.apply(t.input?t.input[0]:null,[t.selectedYear,t.selectedMonth+1,t])},_getNumberOfMonths:function(t){t=this._get(t,"numberOfMonths");return null==t?[1,1]:"number"==typeof t?[1,t]:t},_getMinMaxDate:function(t,e){return this._determineDate(t,this._get(t,e+"Date"),null)},_getDaysInMonth:function(t,e){return 32-this._daylightSavingAdjust(new Date(t,e,32)).getDate()},_getFirstDayOfMonth:function(t,e){return new Date(t,e,1).getDay()},_canAdjustMonth:function(t,e,i,s){var n=this._getNumberOfMonths(t),n=this._daylightSavingAdjust(new Date(i,s+(e<0?e:n[0]*n[1]),1));return e<0&&n.setDate(this._getDaysInMonth(n.getFullYear(),n.getMonth())),this._isInRange(t,n)},_isInRange:function(t,e){var i=this._getMinMaxDate(t,"min"),s=this._getMinMaxDate(t,"max"),n=null,o=null,a=this._get(t,"yearRange");return a&&(t=a.split(":"),a=(new Date).getFullYear(),n=parseInt(t[0],10),o=parseInt(t[1],10),t[0].match(/[+\-].*/)&&(n+=a),t[1].match(/[+\-].*/)&&(o+=a)),(!i||e.getTime()>=i.getTime())&&(!s||e.getTime()<=s.getTime())&&(!n||e.getFullYear()>=n)&&(!o||e.getFullYear()<=o)},_getFormatConfig:function(t){var e=this._get(t,"shortYearCutoff");return{shortYearCutoff:e="string"!=typeof e?e:(new Date).getFullYear()%100+parseInt(e,10),dayNamesShort:this._get(t,"dayNamesShort"),dayNames:this._get(t,"dayNames"),monthNamesShort:this._get(t,"monthNamesShort"),monthNames:this._get(t,"monthNames")}},_formatDate:function(t,e,i,s){e||(t.currentDay=t.selectedDay,t.currentMonth=t.selectedMonth,t.currentYear=t.selectedYear);e=e?"object"==typeof e?e:this._daylightSavingAdjust(new Date(s,i,e)):this._daylightSavingAdjust(new Date(t.currentYear,t.currentMonth,t.currentDay));return this.formatDate(this._get(t,"dateFormat"),e,this._getFormatConfig(t))}}),V.fn.datepicker=function(t){if(!this.length)return this;V.datepicker.initialized||(V(document).on("mousedown",V.datepicker._checkExternalClick),V.datepicker.initialized=!0),0===V("#"+V.datepicker._mainDivId).length&&V("body").append(V.datepicker.dpDiv);var e=Array.prototype.slice.call(arguments,1);return"string"==typeof t&&("isDisabled"===t||"getDate"===t||"widget"===t)||"option"===t&&2===arguments.length&&"string"==typeof arguments[1]?V.datepicker["_"+t+"Datepicker"].apply(V.datepicker,[this[0]].concat(e)):this.each(function(){"string"==typeof t?V.datepicker["_"+t+"Datepicker"].apply(V.datepicker,[this].concat(e)):V.datepicker._attachDatepicker(this,t)})},V.datepicker=new st,V.datepicker.initialized=!1,V.datepicker.uuid=(new Date).getTime(),V.datepicker.version="1.13.2";V.datepicker,V.ui.ie=!!/msie [\w.]+/.exec(navigator.userAgent.toLowerCase());var rt=!1;V(document).on("mouseup",function(){rt=!1});V.widget("ui.mouse",{version:"1.13.2",options:{cancel:"input, textarea, button, select, option",distance:1,delay:0},_mouseInit:function(){var e=this;this.element.on("mousedown."+this.widgetName,function(t){return e._mouseDown(t)}).on("click."+this.widgetName,function(t){if(!0===V.data(t.target,e.widgetName+".preventClickEvent"))return V.removeData(t.target,e.widgetName+".preventClickEvent"),t.stopImmediatePropagation(),!1}),this.started=!1},_mouseDestroy:function(){this.element.off("."+this.widgetName),this._mouseMoveDelegate&&this.document.off("mousemove."+this.widgetName,this._mouseMoveDelegate).off("mouseup."+this.widgetName,this._mouseUpDelegate)},_mouseDown:function(t){if(!rt){this._mouseMoved=!1,this._mouseStarted&&this._mouseUp(t),this._mouseDownEvent=t;var e=this,i=1===t.which,s=!("string"!=typeof this.options.cancel||!t.target.nodeName)&&V(t.target).closest(this.options.cancel).length;return i&&!s&&this._mouseCapture(t)?(this.mouseDelayMet=!this.options.delay,this.mouseDelayMet||(this._mouseDelayTimer=setTimeout(function(){e.mouseDelayMet=!0},this.options.delay)),this._mouseDistanceMet(t)&&this._mouseDelayMet(t)&&(this._mouseStarted=!1!==this._mouseStart(t),!this._mouseStarted)?(t.preventDefault(),!0):(!0===V.data(t.target,this.widgetName+".preventClickEvent")&&V.removeData(t.target,this.widgetName+".preventClickEvent"),this._mouseMoveDelegate=function(t){return e._mouseMove(t)},this._mouseUpDelegate=function(t){return e._mouseUp(t)},this.document.on("mousemove."+this.widgetName,this._mouseMoveDelegate).on("mouseup."+this.widgetName,this._mouseUpDelegate),t.preventDefault(),rt=!0)):!0}},_mouseMove:function(t){if(this._mouseMoved){if(V.ui.ie&&(!document.documentMode||document.documentMode<9)&&!t.button)return this._mouseUp(t);if(!t.which)if(t.originalEvent.altKey||t.originalEvent.ctrlKey||t.originalEvent.metaKey||t.originalEvent.shiftKey)this.ignoreMissingWhich=!0;else if(!this.ignoreMissingWhich)return this._mouseUp(t)}return(t.which||t.button)&&(this._mouseMoved=!0),this._mouseStarted?(this._mouseDrag(t),t.preventDefault()):(this._mouseDistanceMet(t)&&this._mouseDelayMet(t)&&(this._mouseStarted=!1!==this._mouseStart(this._mouseDownEvent,t),this._mouseStarted?this._mouseDrag(t):this._mouseUp(t)),!this._mouseStarted)},_mouseUp:function(t){this.document.off("mousemove."+this.widgetName,this._mouseMoveDelegate).off("mouseup."+this.widgetName,this._mouseUpDelegate),this._mouseStarted&&(this._mouseStarted=!1,t.target===this._mouseDownEvent.target&&V.data(t.target,this.widgetName+".preventClickEvent",!0),this._mouseStop(t)),this._mouseDelayTimer&&(clearTimeout(this._mouseDelayTimer),delete this._mouseDelayTimer),this.ignoreMissingWhich=!1,rt=!1,t.preventDefault()},_mouseDistanceMet:function(t){return Math.max(Math.abs(this._mouseDownEvent.pageX-t.pageX),Math.abs(this._mouseDownEvent.pageY-t.pageY))>=this.options.distance},_mouseDelayMet:function(){return this.mouseDelayMet},_mouseStart:function(){},_mouseDrag:function(){},_mouseStop:function(){},_mouseCapture:function(){return!0}}),V.ui.plugin={add:function(t,e,i){var s,n=V.ui[t].prototype;for(s in i)n.plugins[s]=n.plugins[s]||[],n.plugins[s].push([e,i[s]])},call:function(t,e,i,s){var n,o=t.plugins[e];if(o&&(s||t.element[0].parentNode&&11!==t.element[0].parentNode.nodeType))for(n=0;n<o.length;n++)t.options[o[n][0]]&&o[n][1].apply(t.element,i)}},V.ui.safeBlur=function(t){t&&"body"!==t.nodeName.toLowerCase()&&V(t).trigger("blur")};V.widget("ui.draggable",V.ui.mouse,{version:"1.13.2",widgetEventPrefix:"drag",options:{addClasses:!0,appendTo:"parent",axis:!1,connectToSortable:!1,containment:!1,cursor:"auto",cursorAt:!1,grid:!1,handle:!1,helper:"original",iframeFix:!1,opacity:!1,refreshPositions:!1,revert:!1,revertDuration:500,scope:"default",scroll:!0,scrollSensitivity:20,scrollSpeed:20,snap:!1,snapMode:"both",snapTolerance:20,stack:!1,zIndex:!1,drag:null,start:null,stop:null},_create:function(){"original"===this.options.helper&&this._setPositionRelative(),this.options.addClasses&&this._addClass("ui-draggable"),this._setHandleClassName(),this._mouseInit()},_setOption:function(t,e){this._super(t,e),"handle"===t&&(this._removeHandleClassName(),this._setHandleClassName())},_destroy:function(){(this.helper||this.element).is(".ui-draggable-dragging")?this.destroyOnClear=!0:(this._removeHandleClassName(),this._mouseDestroy())},_mouseCapture:function(t){var e=this.options;return!(this.helper||e.disabled||0<V(t.target).closest(".ui-resizable-handle").length)&&(this.handle=this._getHandle(t),!!this.handle&&(this._blurActiveElement(t),this._blockFrames(!0===e.iframeFix?"iframe":e.iframeFix),!0))},_blockFrames:function(t){this.iframeBlocks=this.document.find(t).map(function(){var t=V(this);return V("<div>").css("position","absolute").appendTo(t.parent()).outerWidth(t.outerWidth()).outerHeight(t.outerHeight()).offset(t.offset())[0]})},_unblockFrames:function(){this.iframeBlocks&&(this.iframeBlocks.remove(),delete this.iframeBlocks)},_blurActiveElement:function(t){var e=V.ui.safeActiveElement(this.document[0]);V(t.target).closest(e).length||V.ui.safeBlur(e)},_mouseStart:function(t){var e=this.options;return this.helper=this._createHelper(t),this._addClass(this.helper,"ui-draggable-dragging"),this._cacheHelperProportions(),V.ui.ddmanager&&(V.ui.ddmanager.current=this),this._cacheMargins(),this.cssPosition=this.helper.css("position"),this.scrollParent=this.helper.scrollParent(!0),this.offsetParent=this.helper.offsetParent(),this.hasFixedAncestor=0<this.helper.parents().filter(function(){return"fixed"===V(this).css("position")}).length,this.positionAbs=this.element.offset(),this._refreshOffsets(t),this.originalPosition=this.position=this._generatePosition(t,!1),this.originalPageX=t.pageX,this.originalPageY=t.pageY,e.cursorAt&&this._adjustOffsetFromHelper(e.cursorAt),this._setContainment(),!1===this._trigger("start",t)?(this._clear(),!1):(this._cacheHelperProportions(),V.ui.ddmanager&&!e.dropBehaviour&&V.ui.ddmanager.prepareOffsets(this,t),this._mouseDrag(t,!0),V.ui.ddmanager&&V.ui.ddmanager.dragStart(this,t),!0)},_refreshOffsets:function(t){this.offset={top:this.positionAbs.top-this.margins.top,left:this.positionAbs.left-this.margins.left,scroll:!1,parent:this._getParentOffset(),relative:this._getRelativeOffset()},this.offset.click={left:t.pageX-this.offset.left,top:t.pageY-this.offset.top}},_mouseDrag:function(t,e){if(this.hasFixedAncestor&&(this.offset.parent=this._getParentOffset()),this.position=this._generatePosition(t,!0),this.positionAbs=this._convertPositionTo("absolute"),!e){e=this._uiHash();if(!1===this._trigger("drag",t,e))return this._mouseUp(new V.Event("mouseup",t)),!1;this.position=e.position}return this.helper[0].style.left=this.position.left+"px",this.helper[0].style.top=this.position.top+"px",V.ui.ddmanager&&V.ui.ddmanager.drag(this,t),!1},_mouseStop:function(t){var e=this,i=!1;return V.ui.ddmanager&&!this.options.dropBehaviour&&(i=V.ui.ddmanager.drop(this,t)),this.dropped&&(i=this.dropped,this.dropped=!1),"invalid"===this.options.revert&&!i||"valid"===this.options.revert&&i||!0===this.options.revert||"function"==typeof this.options.revert&&this.options.revert.call(this.element,i)?V(this.helper).animate(this.originalPosition,parseInt(this.options.revertDuration,10),function(){!1!==e._trigger("stop",t)&&e._clear()}):!1!==this._trigger("stop",t)&&this._clear(),!1},_mouseUp:function(t){return this._unblockFrames(),V.ui.ddmanager&&V.ui.ddmanager.dragStop(this,t),this.handleElement.is(t.target)&&this.element.trigger("focus"),V.ui.mouse.prototype._mouseUp.call(this,t)},cancel:function(){return this.helper.is(".ui-draggable-dragging")?this._mouseUp(new V.Event("mouseup",{target:this.element[0]})):this._clear(),this},_getHandle:function(t){return!this.options.handle||!!V(t.target).closest(this.element.find(this.options.handle)).length},_setHandleClassName:function(){this.handleElement=this.options.handle?this.element.find(this.options.handle):this.element,this._addClass(this.handleElement,"ui-draggable-handle")},_removeHandleClassName:function(){this._removeClass(this.handleElement,"ui-draggable-handle")},_createHelper:function(t){var e=this.options,i="function"==typeof e.helper,t=i?V(e.helper.apply(this.element[0],[t])):"clone"===e.helper?this.element.clone().removeAttr("id"):this.element;return t.parents("body").length||t.appendTo("parent"===e.appendTo?this.element[0].parentNode:e.appendTo),i&&t[0]===this.element[0]&&this._setPositionRelative(),t[0]===this.element[0]||/(fixed|absolute)/.test(t.css("position"))||t.css("position","absolute"),t},_setPositionRelative:function(){/^(?:r|a|f)/.test(this.element.css("position"))||(this.element[0].style.position="relative")},_adjustOffsetFromHelper:function(t){"string"==typeof t&&(t=t.split(" ")),"left"in(t=Array.isArray(t)?{left:+t[0],top:+t[1]||0}:t)&&(this.offset.click.left=t.left+this.margins.left),"right"in t&&(this.offset.click.left=this.helperProportions.width-t.right+this.margins.left),"top"in t&&(this.offset.click.top=t.top+this.margins.top),"bottom"in t&&(this.offset.click.top=this.helperProportions.height-t.bottom+this.margins.top)},_isRootNode:function(t){return/(html|body)/i.test(t.tagName)||t===this.document[0]},_getParentOffset:function(){var t=this.offsetParent.offset(),e=this.document[0];return"absolute"===this.cssPosition&&this.scrollParent[0]!==e&&V.contains(this.scrollParent[0],this.offsetParent[0])&&(t.left+=this.scrollParent.scrollLeft(),t.top+=this.scrollParent.scrollTop()),{top:(t=this._isRootNode(this.offsetParent[0])?{top:0,left:0}:t).top+(parseInt(this.offsetParent.css("borderTopWidth"),10)||0),left:t.left+(parseInt(this.offsetParent.css("borderLeftWidth"),10)||0)}},_getRelativeOffset:function(){if("relative"!==this.cssPosition)return{top:0,left:0};var t=this.element.position(),e=this._isRootNode(this.scrollParent[0]);return{top:t.top-(parseInt(this.helper.css("top"),10)||0)+(e?0:this.scrollParent.scrollTop()),left:t.left-(parseInt(this.helper.css("left"),10)||0)+(e?0:this.scrollParent.scrollLeft())}},_cacheMargins:function(){this.margins={left:parseInt(this.element.css("marginLeft"),10)||0,top:parseInt(this.element.css("marginTop"),10)||0,right:parseInt(this.element.css("marginRight"),10)||0,bottom:parseInt(this.element.css("marginBottom"),10)||0}},_cacheHelperProportions:function(){this.helperProportions={width:this.helper.outerWidth(),height:this.helper.outerHeight()}},_setContainment:function(){var t,e,i,s=this.options,n=this.document[0];this.relativeContainer=null,s.containment?"window"!==s.containment?"document"!==s.containment?s.containment.constructor!==Array?("parent"===s.containment&&(s.containment=this.helper[0].parentNode),(i=(e=V(s.containment))[0])&&(t=/(scroll|auto)/.test(e.css("overflow")),this.containment=[(parseInt(e.css("borderLeftWidth"),10)||0)+(parseInt(e.css("paddingLeft"),10)||0),(parseInt(e.css("borderTopWidth"),10)||0)+(parseInt(e.css("paddingTop"),10)||0),(t?Math.max(i.scrollWidth,i.offsetWidth):i.offsetWidth)-(parseInt(e.css("borderRightWidth"),10)||0)-(parseInt(e.css("paddingRight"),10)||0)-this.helperProportions.width-this.margins.left-this.margins.right,(t?Math.max(i.scrollHeight,i.offsetHeight):i.offsetHeight)-(parseInt(e.css("borderBottomWidth"),10)||0)-(parseInt(e.css("paddingBottom"),10)||0)-this.helperProportions.height-this.margins.top-this.margins.bottom],this.relativeContainer=e)):this.containment=s.containment:this.containment=[0,0,V(n).width()-this.helperProportions.width-this.margins.left,(V(n).height()||n.body.parentNode.scrollHeight)-this.helperProportions.height-this.margins.top]:this.containment=[V(window).scrollLeft()-this.offset.relative.left-this.offset.parent.left,V(window).scrollTop()-this.offset.relative.top-this.offset.parent.top,V(window).scrollLeft()+V(window).width()-this.helperProportions.width-this.margins.left,V(window).scrollTop()+(V(window).height()||n.body.parentNode.scrollHeight)-this.helperProportions.height-this.margins.top]:this.containment=null},_convertPositionTo:function(t,e){e=e||this.position;var i="absolute"===t?1:-1,t=this._isRootNode(this.scrollParent[0]);return{top:e.top+this.offset.relative.top*i+this.offset.parent.top*i-("fixed"===this.cssPosition?-this.offset.scroll.top:t?0:this.offset.scroll.top)*i,left:e.left+this.offset.relative.left*i+this.offset.parent.left*i-("fixed"===this.cssPosition?-this.offset.scroll.left:t?0:this.offset.scroll.left)*i}},_generatePosition:function(t,e){var i,s=this.options,n=this._isRootNode(this.scrollParent[0]),o=t.pageX,a=t.pageY;return n&&this.offset.scroll||(this.offset.scroll={top:this.scrollParent.scrollTop(),left:this.scrollParent.scrollLeft()}),e&&(this.containment&&(i=this.relativeContainer?(i=this.relativeContainer.offset(),[this.containment[0]+i.left,this.containment[1]+i.top,this.containment[2]+i.left,this.containment[3]+i.top]):this.containment,t.pageX-this.offset.click.left<i[0]&&(o=i[0]+this.offset.click.left),t.pageY-this.offset.click.top<i[1]&&(a=i[1]+this.offset.click.top),t.pageX-this.offset.click.left>i[2]&&(o=i[2]+this.offset.click.left),t.pageY-this.offset.click.top>i[3]&&(a=i[3]+this.offset.click.top)),s.grid&&(t=s.grid[1]?this.originalPageY+Math.round((a-this.originalPageY)/s.grid[1])*s.grid[1]:this.originalPageY,a=!i||t-this.offset.click.top>=i[1]||t-this.offset.click.top>i[3]?t:t-this.offset.click.top>=i[1]?t-s.grid[1]:t+s.grid[1],t=s.grid[0]?this.originalPageX+Math.round((o-this.originalPageX)/s.grid[0])*s.grid[0]:this.originalPageX,o=!i||t-this.offset.click.left>=i[0]||t-this.offset.click.left>i[2]?t:t-this.offset.click.left>=i[0]?t-s.grid[0]:t+s.grid[0]),"y"===s.axis&&(o=this.originalPageX),"x"===s.axis&&(a=this.originalPageY)),{top:a-this.offset.click.top-this.offset.relative.top-this.offset.parent.top+("fixed"===this.cssPosition?-this.offset.scroll.top:n?0:this.offset.scroll.top),left:o-this.offset.click.left-this.offset.relative.left-this.offset.parent.left+("fixed"===this.cssPosition?-this.offset.scroll.left:n?0:this.offset.scroll.left)}},_clear:function(){this._removeClass(this.helper,"ui-draggable-dragging"),this.helper[0]===this.element[0]||this.cancelHelperRemoval||this.helper.remove(),this.helper=null,this.cancelHelperRemoval=!1,this.destroyOnClear&&this.destroy()},_trigger:function(t,e,i){return i=i||this._uiHash(),V.ui.plugin.call(this,t,[e,i,this],!0),/^(drag|start|stop)/.test(t)&&(this.positionAbs=this._convertPositionTo("absolute"),i.offset=this.positionAbs),V.Widget.prototype._trigger.call(this,t,e,i)},plugins:{},_uiHash:function(){return{helper:this.helper,position:this.position,originalPosition:this.originalPosition,offset:this.positionAbs}}}),V.ui.plugin.add("draggable","connectToSortable",{start:function(e,t,i){var s=V.extend({},t,{item:i.element});i.sortables=[],V(i.options.connectToSortable).each(function(){var t=V(this).sortable("instance");t&&!t.options.disabled&&(i.sortables.push(t),t.refreshPositions(),t._trigger("activate",e,s))})},stop:function(e,t,i){var s=V.extend({},t,{item:i.element});i.cancelHelperRemoval=!1,V.each(i.sortables,function(){var t=this;t.isOver?(t.isOver=0,i.cancelHelperRemoval=!0,t.cancelHelperRemoval=!1,t._storedCSS={position:t.placeholder.css("position"),top:t.placeholder.css("top"),left:t.placeholder.css("left")},t._mouseStop(e),t.options.helper=t.options._helper):(t.cancelHelperRemoval=!0,t._trigger("deactivate",e,s))})},drag:function(i,s,n){V.each(n.sortables,function(){var t=!1,e=this;e.positionAbs=n.positionAbs,e.helperProportions=n.helperProportions,e.offset.click=n.offset.click,e._intersectsWith(e.containerCache)&&(t=!0,V.each(n.sortables,function(){return this.positionAbs=n.positionAbs,this.helperProportions=n.helperProportions,this.offset.click=n.offset.click,t=this!==e&&this._intersectsWith(this.containerCache)&&V.contains(e.element[0],this.element[0])?!1:t})),t?(e.isOver||(e.isOver=1,n._parent=s.helper.parent(),e.currentItem=s.helper.appendTo(e.element).data("ui-sortable-item",!0),e.options._helper=e.options.helper,e.options.helper=function(){return s.helper[0]},i.target=e.currentItem[0],e._mouseCapture(i,!0),e._mouseStart(i,!0,!0),e.offset.click.top=n.offset.click.top,e.offset.click.left=n.offset.click.left,e.offset.parent.left-=n.offset.parent.left-e.offset.parent.left,e.offset.parent.top-=n.offset.parent.top-e.offset.parent.top,n._trigger("toSortable",i),n.dropped=e.element,V.each(n.sortables,function(){this.refreshPositions()}),n.currentItem=n.element,e.fromOutside=n),e.currentItem&&(e._mouseDrag(i),s.position=e.position)):e.isOver&&(e.isOver=0,e.cancelHelperRemoval=!0,e.options._revert=e.options.revert,e.options.revert=!1,e._trigger("out",i,e._uiHash(e)),e._mouseStop(i,!0),e.options.revert=e.options._revert,e.options.helper=e.options._helper,e.placeholder&&e.placeholder.remove(),s.helper.appendTo(n._parent),n._refreshOffsets(i),s.position=n._generatePosition(i,!0),n._trigger("fromSortable",i),n.dropped=!1,V.each(n.sortables,function(){this.refreshPositions()}))})}}),V.ui.plugin.add("draggable","cursor",{start:function(t,e,i){var s=V("body"),i=i.options;s.css("cursor")&&(i._cursor=s.css("cursor")),s.css("cursor",i.cursor)},stop:function(t,e,i){i=i.options;i._cursor&&V("body").css("cursor",i._cursor)}}),V.ui.plugin.add("draggable","opacity",{start:function(t,e,i){e=V(e.helper),i=i.options;e.css("opacity")&&(i._opacity=e.css("opacity")),e.css("opacity",i.opacity)},stop:function(t,e,i){i=i.options;i._opacity&&V(e.helper).css("opacity",i._opacity)}}),V.ui.plugin.add("draggable","scroll",{start:function(t,e,i){i.scrollParentNotHidden||(i.scrollParentNotHidden=i.helper.scrollParent(!1)),i.scrollParentNotHidden[0]!==i.document[0]&&"HTML"!==i.scrollParentNotHidden[0].tagName&&(i.overflowOffset=i.scrollParentNotHidden.offset())},drag:function(t,e,i){var s=i.options,n=!1,o=i.scrollParentNotHidden[0],a=i.document[0];o!==a&&"HTML"!==o.tagName?(s.axis&&"x"===s.axis||(i.overflowOffset.top+o.offsetHeight-t.pageY<s.scrollSensitivity?o.scrollTop=n=o.scrollTop+s.scrollSpeed:t.pageY-i.overflowOffset.top<s.scrollSensitivity&&(o.scrollTop=n=o.scrollTop-s.scrollSpeed)),s.axis&&"y"===s.axis||(i.overflowOffset.left+o.offsetWidth-t.pageX<s.scrollSensitivity?o.scrollLeft=n=o.scrollLeft+s.scrollSpeed:t.pageX-i.overflowOffset.left<s.scrollSensitivity&&(o.scrollLeft=n=o.scrollLeft-s.scrollSpeed))):(s.axis&&"x"===s.axis||(t.pageY-V(a).scrollTop()<s.scrollSensitivity?n=V(a).scrollTop(V(a).scrollTop()-s.scrollSpeed):V(window).height()-(t.pageY-V(a).scrollTop())<s.scrollSensitivity&&(n=V(a).scrollTop(V(a).scrollTop()+s.scrollSpeed))),s.axis&&"y"===s.axis||(t.pageX-V(a).scrollLeft()<s.scrollSensitivity?n=V(a).scrollLeft(V(a).scrollLeft()-s.scrollSpeed):V(window).width()-(t.pageX-V(a).scrollLeft())<s.scrollSensitivity&&(n=V(a).scrollLeft(V(a).scrollLeft()+s.scrollSpeed)))),!1!==n&&V.ui.ddmanager&&!s.dropBehaviour&&V.ui.ddmanager.prepareOffsets(i,t)}}),V.ui.plugin.add("draggable","snap",{start:function(t,e,i){var s=i.options;i.snapElements=[],V(s.snap.constructor!==String?s.snap.items||":data(ui-draggable)":s.snap).each(function(){var t=V(this),e=t.offset();this!==i.element[0]&&i.snapElements.push({item:this,width:t.outerWidth(),height:t.outerHeight(),top:e.top,left:e.left})})},drag:function(t,e,i){for(var s,n,o,a,r,l,h,c,u,d=i.options,p=d.snapTolerance,f=e.offset.left,g=f+i.helperProportions.width,m=e.offset.top,_=m+i.helperProportions.height,v=i.snapElements.length-1;0<=v;v--)l=(r=i.snapElements[v].left-i.margins.left)+i.snapElements[v].width,c=(h=i.snapElements[v].top-i.margins.top)+i.snapElements[v].height,g<r-p||l+p<f||_<h-p||c+p<m||!V.contains(i.snapElements[v].item.ownerDocument,i.snapElements[v].item)?(i.snapElements[v].snapping&&i.options.snap.release&&i.options.snap.release.call(i.element,t,V.extend(i._uiHash(),{snapItem:i.snapElements[v].item})),i.snapElements[v].snapping=!1):("inner"!==d.snapMode&&(s=Math.abs(h-_)<=p,n=Math.abs(c-m)<=p,o=Math.abs(r-g)<=p,a=Math.abs(l-f)<=p,s&&(e.position.top=i._convertPositionTo("relative",{top:h-i.helperProportions.height,left:0}).top),n&&(e.position.top=i._convertPositionTo("relative",{top:c,left:0}).top),o&&(e.position.left=i._convertPositionTo("relative",{top:0,left:r-i.helperProportions.width}).left),a&&(e.position.left=i._convertPositionTo("relative",{top:0,left:l}).left)),u=s||n||o||a,"outer"!==d.snapMode&&(s=Math.abs(h-m)<=p,n=Math.abs(c-_)<=p,o=Math.abs(r-f)<=p,a=Math.abs(l-g)<=p,s&&(e.position.top=i._convertPositionTo("relative",{top:h,left:0}).top),n&&(e.position.top=i._convertPositionTo("relative",{top:c-i.helperProportions.height,left:0}).top),o&&(e.position.left=i._convertPositionTo("relative",{top:0,left:r}).left),a&&(e.position.left=i._convertPositionTo("relative",{top:0,left:l-i.helperProportions.width}).left)),!i.snapElements[v].snapping&&(s||n||o||a||u)&&i.options.snap.snap&&i.options.snap.snap.call(i.element,t,V.extend(i._uiHash(),{snapItem:i.snapElements[v].item})),i.snapElements[v].snapping=s||n||o||a||u)}}),V.ui.plugin.add("draggable","stack",{start:function(t,e,i){var s,i=i.options,i=V.makeArray(V(i.stack)).sort(function(t,e){return(parseInt(V(t).css("zIndex"),10)||0)-(parseInt(V(e).css("zIndex"),10)||0)});i.length&&(s=parseInt(V(i[0]).css("zIndex"),10)||0,V(i).each(function(t){V(this).css("zIndex",s+t)}),this.css("zIndex",s+i.length))}}),V.ui.plugin.add("draggable","zIndex",{start:function(t,e,i){e=V(e.helper),i=i.options;e.css("zIndex")&&(i._zIndex=e.css("zIndex")),e.css("zIndex",i.zIndex)},stop:function(t,e,i){i=i.options;i._zIndex&&V(e.helper).css("zIndex",i._zIndex)}});V.ui.draggable;V.widget("ui.resizable",V.ui.mouse,{version:"1.13.2",widgetEventPrefix:"resize",options:{alsoResize:!1,animate:!1,animateDuration:"slow",animateEasing:"swing",aspectRatio:!1,autoHide:!1,classes:{"ui-resizable-se":"ui-icon ui-icon-gripsmall-diagonal-se"},containment:!1,ghost:!1,grid:!1,handles:"e,s,se",helper:!1,maxHeight:null,maxWidth:null,minHeight:10,minWidth:10,zIndex:90,resize:null,start:null,stop:null},_num:function(t){return parseFloat(t)||0},_isNumber:function(t){return!isNaN(parseFloat(t))},_hasScroll:function(t,e){if("hidden"===V(t).css("overflow"))return!1;var i=e&&"left"===e?"scrollLeft":"scrollTop",e=!1;if(0<t[i])return!0;try{t[i]=1,e=0<t[i],t[i]=0}catch(t){}return e},_create:function(){var t,e=this.options,i=this;this._addClass("ui-resizable"),V.extend(this,{_aspectRatio:!!e.aspectRatio,aspectRatio:e.aspectRatio,originalElement:this.element,_proportionallyResizeElements:[],_helper:e.helper||e.ghost||e.animate?e.helper||"ui-resizable-helper":null}),this.element[0].nodeName.match(/^(canvas|textarea|input|select|button|img)$/i)&&(this.element.wrap(V("<div class='ui-wrapper'></div>").css({overflow:"hidden",position:this.element.css("position"),width:this.element.outerWidth(),height:this.element.outerHeight(),top:this.element.css("top"),left:this.element.css("left")})),this.element=this.element.parent().data("ui-resizable",this.element.resizable("instance")),this.elementIsWrapper=!0,t={marginTop:this.originalElement.css("marginTop"),marginRight:this.originalElement.css("marginRight"),marginBottom:this.originalElement.css("marginBottom"),marginLeft:this.originalElement.css("marginLeft")},this.element.css(t),this.originalElement.css("margin",0),this.originalResizeStyle=this.originalElement.css("resize"),this.originalElement.css("resize","none"),this._proportionallyResizeElements.push(this.originalElement.css({position:"static",zoom:1,display:"block"})),this.originalElement.css(t),this._proportionallyResize()),this._setupHandles(),e.autoHide&&V(this.element).on("mouseenter",function(){e.disabled||(i._removeClass("ui-resizable-autohide"),i._handles.show())}).on("mouseleave",function(){e.disabled||i.resizing||(i._addClass("ui-resizable-autohide"),i._handles.hide())}),this._mouseInit()},_destroy:function(){this._mouseDestroy(),this._addedHandles.remove();function t(t){V(t).removeData("resizable").removeData("ui-resizable").off(".resizable")}var e;return this.elementIsWrapper&&(t(this.element),e=this.element,this.originalElement.css({position:e.css("position"),width:e.outerWidth(),height:e.outerHeight(),top:e.css("top"),left:e.css("left")}).insertAfter(e),e.remove()),this.originalElement.css("resize",this.originalResizeStyle),t(this.originalElement),this},_setOption:function(t,e){switch(this._super(t,e),t){case"handles":this._removeHandles(),this._setupHandles();break;case"aspectRatio":this._aspectRatio=!!e}},_setupHandles:function(){var t,e,i,s,n,o=this.options,a=this;if(this.handles=o.handles||(V(".ui-resizable-handle",this.element).length?{n:".ui-resizable-n",e:".ui-resizable-e",s:".ui-resizable-s",w:".ui-resizable-w",se:".ui-resizable-se",sw:".ui-resizable-sw",ne:".ui-resizable-ne",nw:".ui-resizable-nw"}:"e,s,se"),this._handles=V(),this._addedHandles=V(),this.handles.constructor===String)for("all"===this.handles&&(this.handles="n,e,s,w,se,sw,ne,nw"),i=this.handles.split(","),this.handles={},e=0;e<i.length;e++)s="ui-resizable-"+(t=String.prototype.trim.call(i[e])),n=V("<div>"),this._addClass(n,"ui-resizable-handle "+s),n.css({zIndex:o.zIndex}),this.handles[t]=".ui-resizable-"+t,this.element.children(this.handles[t]).length||(this.element.append(n),this._addedHandles=this._addedHandles.add(n));this._renderAxis=function(t){var e,i,s;for(e in t=t||this.element,this.handles)this.handles[e].constructor===String?this.handles[e]=this.element.children(this.handles[e]).first().show():(this.handles[e].jquery||this.handles[e].nodeType)&&(this.handles[e]=V(this.handles[e]),this._on(this.handles[e],{mousedown:a._mouseDown})),this.elementIsWrapper&&this.originalElement[0].nodeName.match(/^(textarea|input|select|button)$/i)&&(i=V(this.handles[e],this.element),s=/sw|ne|nw|se|n|s/.test(e)?i.outerHeight():i.outerWidth(),i=["padding",/ne|nw|n/.test(e)?"Top":/se|sw|s/.test(e)?"Bottom":/^e$/.test(e)?"Right":"Left"].join(""),t.css(i,s),this._proportionallyResize()),this._handles=this._handles.add(this.handles[e])},this._renderAxis(this.element),this._handles=this._handles.add(this.element.find(".ui-resizable-handle")),this._handles.disableSelection(),this._handles.on("mouseover",function(){a.resizing||(this.className&&(n=this.className.match(/ui-resizable-(se|sw|ne|nw|n|e|s|w)/i)),a.axis=n&&n[1]?n[1]:"se")}),o.autoHide&&(this._handles.hide(),this._addClass("ui-resizable-autohide"))},_removeHandles:function(){this._addedHandles.remove()},_mouseCapture:function(t){var e,i,s=!1;for(e in this.handles)(i=V(this.handles[e])[0])!==t.target&&!V.contains(i,t.target)||(s=!0);return!this.options.disabled&&s},_mouseStart:function(t){var e,i,s=this.options,n=this.element;return this.resizing=!0,this._renderProxy(),e=this._num(this.helper.css("left")),i=this._num(this.helper.css("top")),s.containment&&(e+=V(s.containment).scrollLeft()||0,i+=V(s.containment).scrollTop()||0),this.offset=this.helper.offset(),this.position={left:e,top:i},this.size=this._helper?{width:this.helper.width(),height:this.helper.height()}:{width:n.width(),height:n.height()},this.originalSize=this._helper?{width:n.outerWidth(),height:n.outerHeight()}:{width:n.width(),height:n.height()},this.sizeDiff={width:n.outerWidth()-n.width(),height:n.outerHeight()-n.height()},this.originalPosition={left:e,top:i},this.originalMousePosition={left:t.pageX,top:t.pageY},this.aspectRatio="number"==typeof s.aspectRatio?s.aspectRatio:this.originalSize.width/this.originalSize.height||1,s=V(".ui-resizable-"+this.axis).css("cursor"),V("body").css("cursor","auto"===s?this.axis+"-resize":s),this._addClass("ui-resizable-resizing"),this._propagate("start",t),!0},_mouseDrag:function(t){var e=this.originalMousePosition,i=this.axis,s=t.pageX-e.left||0,e=t.pageY-e.top||0,i=this._change[i];return this._updatePrevProperties(),i&&(e=i.apply(this,[t,s,e]),this._updateVirtualBoundaries(t.shiftKey),(this._aspectRatio||t.shiftKey)&&(e=this._updateRatio(e,t)),e=this._respectSize(e,t),this._updateCache(e),this._propagate("resize",t),e=this._applyChanges(),!this._helper&&this._proportionallyResizeElements.length&&this._proportionallyResize(),V.isEmptyObject(e)||(this._updatePrevProperties(),this._trigger("resize",t,this.ui()),this._applyChanges())),!1},_mouseStop:function(t){this.resizing=!1;var e,i,s,n=this.options,o=this;return this._helper&&(s=(e=(i=this._proportionallyResizeElements).length&&/textarea/i.test(i[0].nodeName))&&this._hasScroll(i[0],"left")?0:o.sizeDiff.height,i=e?0:o.sizeDiff.width,e={width:o.helper.width()-i,height:o.helper.height()-s},i=parseFloat(o.element.css("left"))+(o.position.left-o.originalPosition.left)||null,s=parseFloat(o.element.css("top"))+(o.position.top-o.originalPosition.top)||null,n.animate||this.element.css(V.extend(e,{top:s,left:i})),o.helper.height(o.size.height),o.helper.width(o.size.width),this._helper&&!n.animate&&this._proportionallyResize()),V("body").css("cursor","auto"),this._removeClass("ui-resizable-resizing"),this._propagate("stop",t),this._helper&&this.helper.remove(),!1},_updatePrevProperties:function(){this.prevPosition={top:this.position.top,left:this.position.left},this.prevSize={width:this.size.width,height:this.size.height}},_applyChanges:function(){var t={};return this.position.top!==this.prevPosition.top&&(t.top=this.position.top+"px"),this.position.left!==this.prevPosition.left&&(t.left=this.position.left+"px"),this.size.width!==this.prevSize.width&&(t.width=this.size.width+"px"),this.size.height!==this.prevSize.height&&(t.height=this.size.height+"px"),this.helper.css(t),t},_updateVirtualBoundaries:function(t){var e,i,s=this.options,n={minWidth:this._isNumber(s.minWidth)?s.minWidth:0,maxWidth:this._isNumber(s.maxWidth)?s.maxWidth:1/0,minHeight:this._isNumber(s.minHeight)?s.minHeight:0,maxHeight:this._isNumber(s.maxHeight)?s.maxHeight:1/0};(this._aspectRatio||t)&&(e=n.minHeight*this.aspectRatio,i=n.minWidth/this.aspectRatio,s=n.maxHeight*this.aspectRatio,t=n.maxWidth/this.aspectRatio,e>n.minWidth&&(n.minWidth=e),i>n.minHeight&&(n.minHeight=i),s<n.maxWidth&&(n.maxWidth=s),t<n.maxHeight&&(n.maxHeight=t)),this._vBoundaries=n},_updateCache:function(t){this.offset=this.helper.offset(),this._isNumber(t.left)&&(this.position.left=t.left),this._isNumber(t.top)&&(this.position.top=t.top),this._isNumber(t.height)&&(this.size.height=t.height),this._isNumber(t.width)&&(this.size.width=t.width)},_updateRatio:function(t){var e=this.position,i=this.size,s=this.axis;return this._isNumber(t.height)?t.width=t.height*this.aspectRatio:this._isNumber(t.width)&&(t.height=t.width/this.aspectRatio),"sw"===s&&(t.left=e.left+(i.width-t.width),t.top=null),"nw"===s&&(t.top=e.top+(i.height-t.height),t.left=e.left+(i.width-t.width)),t},_respectSize:function(t){var e=this._vBoundaries,i=this.axis,s=this._isNumber(t.width)&&e.maxWidth&&e.maxWidth<t.width,n=this._isNumber(t.height)&&e.maxHeight&&e.maxHeight<t.height,o=this._isNumber(t.width)&&e.minWidth&&e.minWidth>t.width,a=this._isNumber(t.height)&&e.minHeight&&e.minHeight>t.height,r=this.originalPosition.left+this.originalSize.width,l=this.originalPosition.top+this.originalSize.height,h=/sw|nw|w/.test(i),i=/nw|ne|n/.test(i);return o&&(t.width=e.minWidth),a&&(t.height=e.minHeight),s&&(t.width=e.maxWidth),n&&(t.height=e.maxHeight),o&&h&&(t.left=r-e.minWidth),s&&h&&(t.left=r-e.maxWidth),a&&i&&(t.top=l-e.minHeight),n&&i&&(t.top=l-e.maxHeight),t.width||t.height||t.left||!t.top?t.width||t.height||t.top||!t.left||(t.left=null):t.top=null,t},_getPaddingPlusBorderDimensions:function(t){for(var e=0,i=[],s=[t.css("borderTopWidth"),t.css("borderRightWidth"),t.css("borderBottomWidth"),t.css("borderLeftWidth")],n=[t.css("paddingTop"),t.css("paddingRight"),t.css("paddingBottom"),t.css("paddingLeft")];e<4;e++)i[e]=parseFloat(s[e])||0,i[e]+=parseFloat(n[e])||0;return{height:i[0]+i[2],width:i[1]+i[3]}},_proportionallyResize:function(){if(this._proportionallyResizeElements.length)for(var t,e=0,i=this.helper||this.element;e<this._proportionallyResizeElements.length;e++)t=this._proportionallyResizeElements[e],this.outerDimensions||(this.outerDimensions=this._getPaddingPlusBorderDimensions(t)),t.css({height:i.height()-this.outerDimensions.height||0,width:i.width()-this.outerDimensions.width||0})},_renderProxy:function(){var t=this.element,e=this.options;this.elementOffset=t.offset(),this._helper?(this.helper=this.helper||V("<div></div>").css({overflow:"hidden"}),this._addClass(this.helper,this._helper),this.helper.css({width:this.element.outerWidth(),height:this.element.outerHeight(),position:"absolute",left:this.elementOffset.left+"px",top:this.elementOffset.top+"px",zIndex:++e.zIndex}),this.helper.appendTo("body").disableSelection()):this.helper=this.element},_change:{e:function(t,e){return{width:this.originalSize.width+e}},w:function(t,e){var i=this.originalSize;return{left:this.originalPosition.left+e,width:i.width-e}},n:function(t,e,i){var s=this.originalSize;return{top:this.originalPosition.top+i,height:s.height-i}},s:function(t,e,i){return{height:this.originalSize.height+i}},se:function(t,e,i){return V.extend(this._change.s.apply(this,arguments),this._change.e.apply(this,[t,e,i]))},sw:function(t,e,i){return V.extend(this._change.s.apply(this,arguments),this._change.w.apply(this,[t,e,i]))},ne:function(t,e,i){return V.extend(this._change.n.apply(this,arguments),this._change.e.apply(this,[t,e,i]))},nw:function(t,e,i){return V.extend(this._change.n.apply(this,arguments),this._change.w.apply(this,[t,e,i]))}},_propagate:function(t,e){V.ui.plugin.call(this,t,[e,this.ui()]),"resize"!==t&&this._trigger(t,e,this.ui())},plugins:{},ui:function(){return{originalElement:this.originalElement,element:this.element,helper:this.helper,position:this.position,size:this.size,originalSize:this.originalSize,originalPosition:this.originalPosition}}}),V.ui.plugin.add("resizable","animate",{stop:function(e){var i=V(this).resizable("instance"),t=i.options,s=i._proportionallyResizeElements,n=s.length&&/textarea/i.test(s[0].nodeName),o=n&&i._hasScroll(s[0],"left")?0:i.sizeDiff.height,a=n?0:i.sizeDiff.width,n={width:i.size.width-a,height:i.size.height-o},a=parseFloat(i.element.css("left"))+(i.position.left-i.originalPosition.left)||null,o=parseFloat(i.element.css("top"))+(i.position.top-i.originalPosition.top)||null;i.element.animate(V.extend(n,o&&a?{top:o,left:a}:{}),{duration:t.animateDuration,easing:t.animateEasing,step:function(){var t={width:parseFloat(i.element.css("width")),height:parseFloat(i.element.css("height")),top:parseFloat(i.element.css("top")),left:parseFloat(i.element.css("left"))};s&&s.length&&V(s[0]).css({width:t.width,height:t.height}),i._updateCache(t),i._propagate("resize",e)}})}}),V.ui.plugin.add("resizable","containment",{start:function(){var i,s,n=V(this).resizable("instance"),t=n.options,e=n.element,o=t.containment,a=o instanceof V?o.get(0):/parent/.test(o)?e.parent().get(0):o;a&&(n.containerElement=V(a),/document/.test(o)||o===document?(n.containerOffset={left:0,top:0},n.containerPosition={left:0,top:0},n.parentData={element:V(document),left:0,top:0,width:V(document).width(),height:V(document).height()||document.body.parentNode.scrollHeight}):(i=V(a),s=[],V(["Top","Right","Left","Bottom"]).each(function(t,e){s[t]=n._num(i.css("padding"+e))}),n.containerOffset=i.offset(),n.containerPosition=i.position(),n.containerSize={height:i.innerHeight()-s[3],width:i.innerWidth()-s[1]},t=n.containerOffset,e=n.containerSize.height,o=n.containerSize.width,o=n._hasScroll(a,"left")?a.scrollWidth:o,e=n._hasScroll(a)?a.scrollHeight:e,n.parentData={element:a,left:t.left,top:t.top,width:o,height:e}))},resize:function(t){var e=V(this).resizable("instance"),i=e.options,s=e.containerOffset,n=e.position,o=e._aspectRatio||t.shiftKey,a={top:0,left:0},r=e.containerElement,t=!0;r[0]!==document&&/static/.test(r.css("position"))&&(a=s),n.left<(e._helper?s.left:0)&&(e.size.width=e.size.width+(e._helper?e.position.left-s.left:e.position.left-a.left),o&&(e.size.height=e.size.width/e.aspectRatio,t=!1),e.position.left=i.helper?s.left:0),n.top<(e._helper?s.top:0)&&(e.size.height=e.size.height+(e._helper?e.position.top-s.top:e.position.top),o&&(e.size.width=e.size.height*e.aspectRatio,t=!1),e.position.top=e._helper?s.top:0),i=e.containerElement.get(0)===e.element.parent().get(0),n=/relative|absolute/.test(e.containerElement.css("position")),i&&n?(e.offset.left=e.parentData.left+e.position.left,e.offset.top=e.parentData.top+e.position.top):(e.offset.left=e.element.offset().left,e.offset.top=e.element.offset().top),n=Math.abs(e.sizeDiff.width+(e._helper?e.offset.left-a.left:e.offset.left-s.left)),s=Math.abs(e.sizeDiff.height+(e._helper?e.offset.top-a.top:e.offset.top-s.top)),n+e.size.width>=e.parentData.width&&(e.size.width=e.parentData.width-n,o&&(e.size.height=e.size.width/e.aspectRatio,t=!1)),s+e.size.height>=e.parentData.height&&(e.size.height=e.parentData.height-s,o&&(e.size.width=e.size.height*e.aspectRatio,t=!1)),t||(e.position.left=e.prevPosition.left,e.position.top=e.prevPosition.top,e.size.width=e.prevSize.width,e.size.height=e.prevSize.height)},stop:function(){var t=V(this).resizable("instance"),e=t.options,i=t.containerOffset,s=t.containerPosition,n=t.containerElement,o=V(t.helper),a=o.offset(),r=o.outerWidth()-t.sizeDiff.width,o=o.outerHeight()-t.sizeDiff.height;t._helper&&!e.animate&&/relative/.test(n.css("position"))&&V(this).css({left:a.left-s.left-i.left,width:r,height:o}),t._helper&&!e.animate&&/static/.test(n.css("position"))&&V(this).css({left:a.left-s.left-i.left,width:r,height:o})}}),V.ui.plugin.add("resizable","alsoResize",{start:function(){var t=V(this).resizable("instance").options;V(t.alsoResize).each(function(){var t=V(this);t.data("ui-resizable-alsoresize",{width:parseFloat(t.width()),height:parseFloat(t.height()),left:parseFloat(t.css("left")),top:parseFloat(t.css("top"))})})},resize:function(t,i){var e=V(this).resizable("instance"),s=e.options,n=e.originalSize,o=e.originalPosition,a={height:e.size.height-n.height||0,width:e.size.width-n.width||0,top:e.position.top-o.top||0,left:e.position.left-o.left||0};V(s.alsoResize).each(function(){var t=V(this),s=V(this).data("ui-resizable-alsoresize"),n={},e=t.parents(i.originalElement[0]).length?["width","height"]:["width","height","top","left"];V.each(e,function(t,e){var i=(s[e]||0)+(a[e]||0);i&&0<=i&&(n[e]=i||null)}),t.css(n)})},stop:function(){V(this).removeData("ui-resizable-alsoresize")}}),V.ui.plugin.add("resizable","ghost",{start:function(){var t=V(this).resizable("instance"),e=t.size;t.ghost=t.originalElement.clone(),t.ghost.css({opacity:.25,display:"block",position:"relative",height:e.height,width:e.width,margin:0,left:0,top:0}),t._addClass(t.ghost,"ui-resizable-ghost"),!1!==V.uiBackCompat&&"string"==typeof t.options.ghost&&t.ghost.addClass(this.options.ghost),t.ghost.appendTo(t.helper)},resize:function(){var t=V(this).resizable("instance");t.ghost&&t.ghost.css({position:"relative",height:t.size.height,width:t.size.width})},stop:function(){var t=V(this).resizable("instance");t.ghost&&t.helper&&t.helper.get(0).removeChild(t.ghost.get(0))}}),V.ui.plugin.add("resizable","grid",{resize:function(){var t,e=V(this).resizable("instance"),i=e.options,s=e.size,n=e.originalSize,o=e.originalPosition,a=e.axis,r="number"==typeof i.grid?[i.grid,i.grid]:i.grid,l=r[0]||1,h=r[1]||1,c=Math.round((s.width-n.width)/l)*l,u=Math.round((s.height-n.height)/h)*h,d=n.width+c,p=n.height+u,f=i.maxWidth&&i.maxWidth<d,g=i.maxHeight&&i.maxHeight<p,m=i.minWidth&&i.minWidth>d,s=i.minHeight&&i.minHeight>p;i.grid=r,m&&(d+=l),s&&(p+=h),f&&(d-=l),g&&(p-=h),/^(se|s|e)$/.test(a)?(e.size.width=d,e.size.height=p):/^(ne)$/.test(a)?(e.size.width=d,e.size.height=p,e.position.top=o.top-u):/^(sw)$/.test(a)?(e.size.width=d,e.size.height=p,e.position.left=o.left-c):((p-h<=0||d-l<=0)&&(t=e._getPaddingPlusBorderDimensions(this)),0<p-h?(e.size.height=p,e.position.top=o.top-u):(p=h-t.height,e.size.height=p,e.position.top=o.top+n.height-p),0<d-l?(e.size.width=d,e.position.left=o.left-c):(d=l-t.width,e.size.width=d,e.position.left=o.left+n.width-d))}});V.ui.resizable;V.widget("ui.dialog",{version:"1.13.2",options:{appendTo:"body",autoOpen:!0,buttons:[],classes:{"ui-dialog":"ui-corner-all","ui-dialog-titlebar":"ui-corner-all"},closeOnEscape:!0,closeText:"Close",draggable:!0,hide:null,height:"auto",maxHeight:null,maxWidth:null,minHeight:150,minWidth:150,modal:!1,position:{my:"center",at:"center",of:window,collision:"fit",using:function(t){var e=V(this).css(t).offset().top;e<0&&V(this).css("top",t.top-e)}},resizable:!0,show:null,title:null,width:300,beforeClose:null,close:null,drag:null,dragStart:null,dragStop:null,focus:null,open:null,resize:null,resizeStart:null,resizeStop:null},sizeRelatedOptions:{buttons:!0,height:!0,maxHeight:!0,maxWidth:!0,minHeight:!0,minWidth:!0,width:!0},resizableRelatedOptions:{maxHeight:!0,maxWidth:!0,minHeight:!0,minWidth:!0},_create:function(){this.originalCss={display:this.element[0].style.display,width:this.element[0].style.width,minHeight:this.element[0].style.minHeight,maxHeight:this.element[0].style.maxHeight,height:this.element[0].style.height},this.originalPosition={parent:this.element.parent(),index:this.element.parent().children().index(this.element)},this.originalTitle=this.element.attr("title"),null==this.options.title&&null!=this.originalTitle&&(this.options.title=this.originalTitle),this.options.disabled&&(this.options.disabled=!1),this._createWrapper(),this.element.show().removeAttr("title").appendTo(this.uiDialog),this._addClass("ui-dialog-content","ui-widget-content"),this._createTitlebar(),this._createButtonPane(),this.options.draggable&&V.fn.draggable&&this._makeDraggable(),this.options.resizable&&V.fn.resizable&&this._makeResizable(),this._isOpen=!1,this._trackFocus()},_init:function(){this.options.autoOpen&&this.open()},_appendTo:function(){var t=this.options.appendTo;return t&&(t.jquery||t.nodeType)?V(t):this.document.find(t||"body").eq(0)},_destroy:function(){var t,e=this.originalPosition;this._untrackInstance(),this._destroyOverlay(),this.element.removeUniqueId().css(this.originalCss).detach(),this.uiDialog.remove(),this.originalTitle&&this.element.attr("title",this.originalTitle),(t=e.parent.children().eq(e.index)).length&&t[0]!==this.element[0]?t.before(this.element):e.parent.append(this.element)},widget:function(){return this.uiDialog},disable:V.noop,enable:V.noop,close:function(t){var e=this;this._isOpen&&!1!==this._trigger("beforeClose",t)&&(this._isOpen=!1,this._focusedElement=null,this._destroyOverlay(),this._untrackInstance(),this.opener.filter(":focusable").trigger("focus").length||V.ui.safeBlur(V.ui.safeActiveElement(this.document[0])),this._hide(this.uiDialog,this.options.hide,function(){e._trigger("close",t)}))},isOpen:function(){return this._isOpen},moveToTop:function(){this._moveToTop()},_moveToTop:function(t,e){var i=!1,s=this.uiDialog.siblings(".ui-front:visible").map(function(){return+V(this).css("z-index")}).get(),s=Math.max.apply(null,s);return s>=+this.uiDialog.css("z-index")&&(this.uiDialog.css("z-index",s+1),i=!0),i&&!e&&this._trigger("focus",t),i},open:function(){var t=this;this._isOpen?this._moveToTop()&&this._focusTabbable():(this._isOpen=!0,this.opener=V(V.ui.safeActiveElement(this.document[0])),this._size(),this._position(),this._createOverlay(),this._moveToTop(null,!0),this.overlay&&this.overlay.css("z-index",this.uiDialog.css("z-index")-1),this._show(this.uiDialog,this.options.show,function(){t._focusTabbable(),t._trigger("focus")}),this._makeFocusTarget(),this._trigger("open"))},_focusTabbable:function(){var t=this._focusedElement;(t=!(t=!(t=!(t=!(t=t||this.element.find("[autofocus]")).length?this.element.find(":tabbable"):t).length?this.uiDialogButtonPane.find(":tabbable"):t).length?this.uiDialogTitlebarClose.filter(":tabbable"):t).length?this.uiDialog:t).eq(0).trigger("focus")},_restoreTabbableFocus:function(){var t=V.ui.safeActiveElement(this.document[0]);this.uiDialog[0]===t||V.contains(this.uiDialog[0],t)||this._focusTabbable()},_keepFocus:function(t){t.preventDefault(),this._restoreTabbableFocus(),this._delay(this._restoreTabbableFocus)},_createWrapper:function(){this.uiDialog=V("<div>").hide().attr({tabIndex:-1,role:"dialog"}).appendTo(this._appendTo()),this._addClass(this.uiDialog,"ui-dialog","ui-widget ui-widget-content ui-front"),this._on(this.uiDialog,{keydown:function(t){if(this.options.closeOnEscape&&!t.isDefaultPrevented()&&t.keyCode&&t.keyCode===V.ui.keyCode.ESCAPE)return t.preventDefault(),void this.close(t);var e,i,s;t.keyCode!==V.ui.keyCode.TAB||t.isDefaultPrevented()||(e=this.uiDialog.find(":tabbable"),i=e.first(),s=e.last(),t.target!==s[0]&&t.target!==this.uiDialog[0]||t.shiftKey?t.target!==i[0]&&t.target!==this.uiDialog[0]||!t.shiftKey||(this._delay(function(){s.trigger("focus")}),t.preventDefault()):(this._delay(function(){i.trigger("focus")}),t.preventDefault()))},mousedown:function(t){this._moveToTop(t)&&this._focusTabbable()}}),this.element.find("[aria-describedby]").length||this.uiDialog.attr({"aria-describedby":this.element.uniqueId().attr("id")})},_createTitlebar:function(){var t;this.uiDialogTitlebar=V("<div>"),this._addClass(this.uiDialogTitlebar,"ui-dialog-titlebar","ui-widget-header ui-helper-clearfix"),this._on(this.uiDialogTitlebar,{mousedown:function(t){V(t.target).closest(".ui-dialog-titlebar-close")||this.uiDialog.trigger("focus")}}),this.uiDialogTitlebarClose=V("<button type='button'></button>").button({label:V("<a>").text(this.options.closeText).html(),icon:"ui-icon-closethick",showLabel:!1}).appendTo(this.uiDialogTitlebar),this._addClass(this.uiDialogTitlebarClose,"ui-dialog-titlebar-close"),this._on(this.uiDialogTitlebarClose,{click:function(t){t.preventDefault(),this.close(t)}}),t=V("<span>").uniqueId().prependTo(this.uiDialogTitlebar),this._addClass(t,"ui-dialog-title"),this._title(t),this.uiDialogTitlebar.prependTo(this.uiDialog),this.uiDialog.attr({"aria-labelledby":t.attr("id")})},_title:function(t){this.options.title?t.text(this.options.title):t.html("&#160;")},_createButtonPane:function(){this.uiDialogButtonPane=V("<div>"),this._addClass(this.uiDialogButtonPane,"ui-dialog-buttonpane","ui-widget-content ui-helper-clearfix"),this.uiButtonSet=V("<div>").appendTo(this.uiDialogButtonPane),this._addClass(this.uiButtonSet,"ui-dialog-buttonset"),this._createButtons()},_createButtons:function(){var s=this,t=this.options.buttons;this.uiDialogButtonPane.remove(),this.uiButtonSet.empty(),V.isEmptyObject(t)||Array.isArray(t)&&!t.length?this._removeClass(this.uiDialog,"ui-dialog-buttons"):(V.each(t,function(t,e){var i;e=V.extend({type:"button"},e="function"==typeof e?{click:e,text:t}:e),i=e.click,t={icon:e.icon,iconPosition:e.iconPosition,showLabel:e.showLabel,icons:e.icons,text:e.text},delete e.click,delete e.icon,delete e.iconPosition,delete e.showLabel,delete e.icons,"boolean"==typeof e.text&&delete e.text,V("<button></button>",e).button(t).appendTo(s.uiButtonSet).on("click",function(){i.apply(s.element[0],arguments)})}),this._addClass(this.uiDialog,"ui-dialog-buttons"),this.uiDialogButtonPane.appendTo(this.uiDialog))},_makeDraggable:function(){var n=this,o=this.options;function a(t){return{position:t.position,offset:t.offset}}this.uiDialog.draggable({cancel:".ui-dialog-content, .ui-dialog-titlebar-close",handle:".ui-dialog-titlebar",containment:"document",start:function(t,e){n._addClass(V(this),"ui-dialog-dragging"),n._blockFrames(),n._trigger("dragStart",t,a(e))},drag:function(t,e){n._trigger("drag",t,a(e))},stop:function(t,e){var i=e.offset.left-n.document.scrollLeft(),s=e.offset.top-n.document.scrollTop();o.position={my:"left top",at:"left"+(0<=i?"+":"")+i+" top"+(0<=s?"+":"")+s,of:n.window},n._removeClass(V(this),"ui-dialog-dragging"),n._unblockFrames(),n._trigger("dragStop",t,a(e))}})},_makeResizable:function(){var n=this,o=this.options,t=o.resizable,e=this.uiDialog.css("position"),t="string"==typeof t?t:"n,e,s,w,se,sw,ne,nw";function a(t){return{originalPosition:t.originalPosition,originalSize:t.originalSize,position:t.position,size:t.size}}this.uiDialog.resizable({cancel:".ui-dialog-content",containment:"document",alsoResize:this.element,maxWidth:o.maxWidth,maxHeight:o.maxHeight,minWidth:o.minWidth,minHeight:this._minHeight(),handles:t,start:function(t,e){n._addClass(V(this),"ui-dialog-resizing"),n._blockFrames(),n._trigger("resizeStart",t,a(e))},resize:function(t,e){n._trigger("resize",t,a(e))},stop:function(t,e){var i=n.uiDialog.offset(),s=i.left-n.document.scrollLeft(),i=i.top-n.document.scrollTop();o.height=n.uiDialog.height(),o.width=n.uiDialog.width(),o.position={my:"left top",at:"left"+(0<=s?"+":"")+s+" top"+(0<=i?"+":"")+i,of:n.window},n._removeClass(V(this),"ui-dialog-resizing"),n._unblockFrames(),n._trigger("resizeStop",t,a(e))}}).css("position",e)},_trackFocus:function(){this._on(this.widget(),{focusin:function(t){this._makeFocusTarget(),this._focusedElement=V(t.target)}})},_makeFocusTarget:function(){this._untrackInstance(),this._trackingInstances().unshift(this)},_untrackInstance:function(){var t=this._trackingInstances(),e=V.inArray(this,t);-1!==e&&t.splice(e,1)},_trackingInstances:function(){var t=this.document.data("ui-dialog-instances");return t||this.document.data("ui-dialog-instances",t=[]),t},_minHeight:function(){var t=this.options;return"auto"===t.height?t.minHeight:Math.min(t.minHeight,t.height)},_position:function(){var t=this.uiDialog.is(":visible");t||this.uiDialog.show(),this.uiDialog.position(this.options.position),t||this.uiDialog.hide()},_setOptions:function(t){var i=this,s=!1,n={};V.each(t,function(t,e){i._setOption(t,e),t in i.sizeRelatedOptions&&(s=!0),t in i.resizableRelatedOptions&&(n[t]=e)}),s&&(this._size(),this._position()),this.uiDialog.is(":data(ui-resizable)")&&this.uiDialog.resizable("option",n)},_setOption:function(t,e){var i,s=this.uiDialog;"disabled"!==t&&(this._super(t,e),"appendTo"===t&&this.uiDialog.appendTo(this._appendTo()),"buttons"===t&&this._createButtons(),"closeText"===t&&this.uiDialogTitlebarClose.button({label:V("<a>").text(""+this.options.closeText).html()}),"draggable"===t&&((i=s.is(":data(ui-draggable)"))&&!e&&s.draggable("destroy"),!i&&e&&this._makeDraggable()),"position"===t&&this._position(),"resizable"===t&&((i=s.is(":data(ui-resizable)"))&&!e&&s.resizable("destroy"),i&&"string"==typeof e&&s.resizable("option","handles",e),i||!1===e||this._makeResizable()),"title"===t&&this._title(this.uiDialogTitlebar.find(".ui-dialog-title")))},_size:function(){var t,e,i,s=this.options;this.element.show().css({width:"auto",minHeight:0,maxHeight:"none",height:0}),s.minWidth>s.width&&(s.width=s.minWidth),t=this.uiDialog.css({height:"auto",width:s.width}).outerHeight(),e=Math.max(0,s.minHeight-t),i="number"==typeof s.maxHeight?Math.max(0,s.maxHeight-t):"none","auto"===s.height?this.element.css({minHeight:e,maxHeight:i,height:"auto"}):this.element.height(Math.max(0,s.height-t)),this.uiDialog.is(":data(ui-resizable)")&&this.uiDialog.resizable("option","minHeight",this._minHeight())},_blockFrames:function(){this.iframeBlocks=this.document.find("iframe").map(function(){var t=V(this);return V("<div>").css({position:"absolute",width:t.outerWidth(),height:t.outerHeight()}).appendTo(t.parent()).offset(t.offset())[0]})},_unblockFrames:function(){this.iframeBlocks&&(this.iframeBlocks.remove(),delete this.iframeBlocks)},_allowInteraction:function(t){return!!V(t.target).closest(".ui-dialog").length||!!V(t.target).closest(".ui-datepicker").length},_createOverlay:function(){var i,s;this.options.modal&&(i=V.fn.jquery.substring(0,4),s=!0,this._delay(function(){s=!1}),this.document.data("ui-dialog-overlays")||this.document.on("focusin.ui-dialog",function(t){var e;s||((e=this._trackingInstances()[0])._allowInteraction(t)||(t.preventDefault(),e._focusTabbable(),"3.4."!==i&&"3.5."!==i||e._delay(e._restoreTabbableFocus)))}.bind(this)),this.overlay=V("<div>").appendTo(this._appendTo()),this._addClass(this.overlay,null,"ui-widget-overlay ui-front"),this._on(this.overlay,{mousedown:"_keepFocus"}),this.document.data("ui-dialog-overlays",(this.document.data("ui-dialog-overlays")||0)+1))},_destroyOverlay:function(){var t;this.options.modal&&this.overlay&&((t=this.document.data("ui-dialog-overlays")-1)?this.document.data("ui-dialog-overlays",t):(this.document.off("focusin.ui-dialog"),this.document.removeData("ui-dialog-overlays")),this.overlay.remove(),this.overlay=null)}}),!1!==V.uiBackCompat&&V.widget("ui.dialog",V.ui.dialog,{options:{dialogClass:""},_createWrapper:function(){this._super(),this.uiDialog.addClass(this.options.dialogClass)},_setOption:function(t,e){"dialogClass"===t&&this.uiDialog.removeClass(this.options.dialogClass).addClass(e),this._superApply(arguments)}});V.ui.dialog;function lt(t,e,i){return e<=t&&t<e+i}V.widget("ui.droppable",{version:"1.13.2",widgetEventPrefix:"drop",options:{accept:"*",addClasses:!0,greedy:!1,scope:"default",tolerance:"intersect",activate:null,deactivate:null,drop:null,out:null,over:null},_create:function(){var t,e=this.options,i=e.accept;this.isover=!1,this.isout=!0,this.accept="function"==typeof i?i:function(t){return t.is(i)},this.proportions=function(){if(!arguments.length)return t=t||{width:this.element[0].offsetWidth,height:this.element[0].offsetHeight};t=arguments[0]},this._addToManager(e.scope),e.addClasses&&this._addClass("ui-droppable")},_addToManager:function(t){V.ui.ddmanager.droppables[t]=V.ui.ddmanager.droppables[t]||[],V.ui.ddmanager.droppables[t].push(this)},_splice:function(t){for(var e=0;e<t.length;e++)t[e]===this&&t.splice(e,1)},_destroy:function(){var t=V.ui.ddmanager.droppables[this.options.scope];this._splice(t)},_setOption:function(t,e){var i;"accept"===t?this.accept="function"==typeof e?e:function(t){return t.is(e)}:"scope"===t&&(i=V.ui.ddmanager.droppables[this.options.scope],this._splice(i),this._addToManager(e)),this._super(t,e)},_activate:function(t){var e=V.ui.ddmanager.current;this._addActiveClass(),e&&this._trigger("activate",t,this.ui(e))},_deactivate:function(t){var e=V.ui.ddmanager.current;this._removeActiveClass(),e&&this._trigger("deactivate",t,this.ui(e))},_over:function(t){var e=V.ui.ddmanager.current;e&&(e.currentItem||e.element)[0]!==this.element[0]&&this.accept.call(this.element[0],e.currentItem||e.element)&&(this._addHoverClass(),this._trigger("over",t,this.ui(e)))},_out:function(t){var e=V.ui.ddmanager.current;e&&(e.currentItem||e.element)[0]!==this.element[0]&&this.accept.call(this.element[0],e.currentItem||e.element)&&(this._removeHoverClass(),this._trigger("out",t,this.ui(e)))},_drop:function(e,t){var i=t||V.ui.ddmanager.current,s=!1;return!(!i||(i.currentItem||i.element)[0]===this.element[0])&&(this.element.find(":data(ui-droppable)").not(".ui-draggable-dragging").each(function(){var t=V(this).droppable("instance");if(t.options.greedy&&!t.options.disabled&&t.options.scope===i.options.scope&&t.accept.call(t.element[0],i.currentItem||i.element)&&V.ui.intersect(i,V.extend(t,{offset:t.element.offset()}),t.options.tolerance,e))return!(s=!0)}),!s&&(!!this.accept.call(this.element[0],i.currentItem||i.element)&&(this._removeActiveClass(),this._removeHoverClass(),this._trigger("drop",e,this.ui(i)),this.element)))},ui:function(t){return{draggable:t.currentItem||t.element,helper:t.helper,position:t.position,offset:t.positionAbs}},_addHoverClass:function(){this._addClass("ui-droppable-hover")},_removeHoverClass:function(){this._removeClass("ui-droppable-hover")},_addActiveClass:function(){this._addClass("ui-droppable-active")},_removeActiveClass:function(){this._removeClass("ui-droppable-active")}}),V.ui.intersect=function(t,e,i,s){if(!e.offset)return!1;var n=(t.positionAbs||t.position.absolute).left+t.margins.left,o=(t.positionAbs||t.position.absolute).top+t.margins.top,a=n+t.helperProportions.width,r=o+t.helperProportions.height,l=e.offset.left,h=e.offset.top,c=l+e.proportions().width,u=h+e.proportions().height;switch(i){case"fit":return l<=n&&a<=c&&h<=o&&r<=u;case"intersect":return l<n+t.helperProportions.width/2&&a-t.helperProportions.width/2<c&&h<o+t.helperProportions.height/2&&r-t.helperProportions.height/2<u;case"pointer":return lt(s.pageY,h,e.proportions().height)&&lt(s.pageX,l,e.proportions().width);case"touch":return(h<=o&&o<=u||h<=r&&r<=u||o<h&&u<r)&&(l<=n&&n<=c||l<=a&&a<=c||n<l&&c<a);default:return!1}},!(V.ui.ddmanager={current:null,droppables:{default:[]},prepareOffsets:function(t,e){var i,s,n=V.ui.ddmanager.droppables[t.options.scope]||[],o=e?e.type:null,a=(t.currentItem||t.element).find(":data(ui-droppable)").addBack();t:for(i=0;i<n.length;i++)if(!(n[i].options.disabled||t&&!n[i].accept.call(n[i].element[0],t.currentItem||t.element))){for(s=0;s<a.length;s++)if(a[s]===n[i].element[0]){n[i].proportions().height=0;continue t}n[i].visible="none"!==n[i].element.css("display"),n[i].visible&&("mousedown"===o&&n[i]._activate.call(n[i],e),n[i].offset=n[i].element.offset(),n[i].proportions({width:n[i].element[0].offsetWidth,height:n[i].element[0].offsetHeight}))}},drop:function(t,e){var i=!1;return V.each((V.ui.ddmanager.droppables[t.options.scope]||[]).slice(),function(){this.options&&(!this.options.disabled&&this.visible&&V.ui.intersect(t,this,this.options.tolerance,e)&&(i=this._drop.call(this,e)||i),!this.options.disabled&&this.visible&&this.accept.call(this.element[0],t.currentItem||t.element)&&(this.isout=!0,this.isover=!1,this._deactivate.call(this,e)))}),i},dragStart:function(t,e){t.element.parentsUntil("body").on("scroll.droppable",function(){t.options.refreshPositions||V.ui.ddmanager.prepareOffsets(t,e)})},drag:function(n,o){n.options.refreshPositions&&V.ui.ddmanager.prepareOffsets(n,o),V.each(V.ui.ddmanager.droppables[n.options.scope]||[],function(){var t,e,i,s;this.options.disabled||this.greedyChild||!this.visible||(s=!(i=V.ui.intersect(n,this,this.options.tolerance,o))&&this.isover?"isout":i&&!this.isover?"isover":null)&&(this.options.greedy&&(e=this.options.scope,(i=this.element.parents(":data(ui-droppable)").filter(function(){return V(this).droppable("instance").options.scope===e})).length&&((t=V(i[0]).droppable("instance")).greedyChild="isover"===s)),t&&"isover"===s&&(t.isover=!1,t.isout=!0,t._out.call(t,o)),this[s]=!0,this["isout"===s?"isover":"isout"]=!1,this["isover"===s?"_over":"_out"].call(this,o),t&&"isout"===s&&(t.isout=!1,t.isover=!0,t._over.call(t,o)))})},dragStop:function(t,e){t.element.parentsUntil("body").off("scroll.droppable"),t.options.refreshPositions||V.ui.ddmanager.prepareOffsets(t,e)}})!==V.uiBackCompat&&V.widget("ui.droppable",V.ui.droppable,{options:{hoverClass:!1,activeClass:!1},_addActiveClass:function(){this._super(),this.options.activeClass&&this.element.addClass(this.options.activeClass)},_removeActiveClass:function(){this._super(),this.options.activeClass&&this.element.removeClass(this.options.activeClass)},_addHoverClass:function(){this._super(),this.options.hoverClass&&this.element.addClass(this.options.hoverClass)},_removeHoverClass:function(){this._super(),this.options.hoverClass&&this.element.removeClass(this.options.hoverClass)}});V.ui.droppable,V.widget("ui.progressbar",{version:"1.13.2",options:{classes:{"ui-progressbar":"ui-corner-all","ui-progressbar-value":"ui-corner-left","ui-progressbar-complete":"ui-corner-right"},max:100,value:0,change:null,complete:null},min:0,_create:function(){this.oldValue=this.options.value=this._constrainedValue(),this.element.attr({role:"progressbar","aria-valuemin":this.min}),this._addClass("ui-progressbar","ui-widget ui-widget-content"),this.valueDiv=V("<div>").appendTo(this.element),this._addClass(this.valueDiv,"ui-progressbar-value","ui-widget-header"),this._refreshValue()},_destroy:function(){this.element.removeAttr("role aria-valuemin aria-valuemax aria-valuenow"),this.valueDiv.remove()},value:function(t){if(void 0===t)return this.options.value;this.options.value=this._constrainedValue(t),this._refreshValue()},_constrainedValue:function(t){return void 0===t&&(t=this.options.value),this.indeterminate=!1===t,"number"!=typeof t&&(t=0),!this.indeterminate&&Math.min(this.options.max,Math.max(this.min,t))},_setOptions:function(t){var e=t.value;delete t.value,this._super(t),this.options.value=this._constrainedValue(e),this._refreshValue()},_setOption:function(t,e){"max"===t&&(e=Math.max(this.min,e)),this._super(t,e)},_setOptionDisabled:function(t){this._super(t),this.element.attr("aria-disabled",t),this._toggleClass(null,"ui-state-disabled",!!t)},_percentage:function(){return this.indeterminate?100:100*(this.options.value-this.min)/(this.options.max-this.min)},_refreshValue:function(){var t=this.options.value,e=this._percentage();this.valueDiv.toggle(this.indeterminate||t>this.min).width(e.toFixed(0)+"%"),this._toggleClass(this.valueDiv,"ui-progressbar-complete",null,t===this.options.max)._toggleClass("ui-progressbar-indeterminate",null,this.indeterminate),this.indeterminate?(this.element.removeAttr("aria-valuenow"),this.overlayDiv||(this.overlayDiv=V("<div>").appendTo(this.valueDiv),this._addClass(this.overlayDiv,"ui-progressbar-overlay"))):(this.element.attr({"aria-valuemax":this.options.max,"aria-valuenow":t}),this.overlayDiv&&(this.overlayDiv.remove(),this.overlayDiv=null)),this.oldValue!==t&&(this.oldValue=t,this._trigger("change")),t===this.options.max&&this._trigger("complete")}}),V.widget("ui.selectable",V.ui.mouse,{version:"1.13.2",options:{appendTo:"body",autoRefresh:!0,distance:0,filter:"*",tolerance:"touch",selected:null,selecting:null,start:null,stop:null,unselected:null,unselecting:null},_create:function(){var i=this;this._addClass("ui-selectable"),this.dragged=!1,this.refresh=function(){i.elementPos=V(i.element[0]).offset(),i.selectees=V(i.options.filter,i.element[0]),i._addClass(i.selectees,"ui-selectee"),i.selectees.each(function(){var t=V(this),e=t.offset(),e={left:e.left-i.elementPos.left,top:e.top-i.elementPos.top};V.data(this,"selectable-item",{element:this,$element:t,left:e.left,top:e.top,right:e.left+t.outerWidth(),bottom:e.top+t.outerHeight(),startselected:!1,selected:t.hasClass("ui-selected"),selecting:t.hasClass("ui-selecting"),unselecting:t.hasClass("ui-unselecting")})})},this.refresh(),this._mouseInit(),this.helper=V("<div>"),this._addClass(this.helper,"ui-selectable-helper")},_destroy:function(){this.selectees.removeData("selectable-item"),this._mouseDestroy()},_mouseStart:function(i){var s=this,t=this.options;this.opos=[i.pageX,i.pageY],this.elementPos=V(this.element[0]).offset(),this.options.disabled||(this.selectees=V(t.filter,this.element[0]),this._trigger("start",i),V(t.appendTo).append(this.helper),this.helper.css({left:i.pageX,top:i.pageY,width:0,height:0}),t.autoRefresh&&this.refresh(),this.selectees.filter(".ui-selected").each(function(){var t=V.data(this,"selectable-item");t.startselected=!0,i.metaKey||i.ctrlKey||(s._removeClass(t.$element,"ui-selected"),t.selected=!1,s._addClass(t.$element,"ui-unselecting"),t.unselecting=!0,s._trigger("unselecting",i,{unselecting:t.element}))}),V(i.target).parents().addBack().each(function(){var t,e=V.data(this,"selectable-item");if(e)return t=!i.metaKey&&!i.ctrlKey||!e.$element.hasClass("ui-selected"),s._removeClass(e.$element,t?"ui-unselecting":"ui-selected")._addClass(e.$element,t?"ui-selecting":"ui-unselecting"),e.unselecting=!t,e.selecting=t,(e.selected=t)?s._trigger("selecting",i,{selecting:e.element}):s._trigger("unselecting",i,{unselecting:e.element}),!1}))},_mouseDrag:function(s){if(this.dragged=!0,!this.options.disabled){var t,n=this,o=this.options,a=this.opos[0],r=this.opos[1],l=s.pageX,h=s.pageY;return l<a&&(t=l,l=a,a=t),h<r&&(t=h,h=r,r=t),this.helper.css({left:a,top:r,width:l-a,height:h-r}),this.selectees.each(function(){var t=V.data(this,"selectable-item"),e=!1,i={};t&&t.element!==n.element[0]&&(i.left=t.left+n.elementPos.left,i.right=t.right+n.elementPos.left,i.top=t.top+n.elementPos.top,i.bottom=t.bottom+n.elementPos.top,"touch"===o.tolerance?e=!(i.left>l||i.right<a||i.top>h||i.bottom<r):"fit"===o.tolerance&&(e=i.left>a&&i.right<l&&i.top>r&&i.bottom<h),e?(t.selected&&(n._removeClass(t.$element,"ui-selected"),t.selected=!1),t.unselecting&&(n._removeClass(t.$element,"ui-unselecting"),t.unselecting=!1),t.selecting||(n._addClass(t.$element,"ui-selecting"),t.selecting=!0,n._trigger("selecting",s,{selecting:t.element}))):(t.selecting&&((s.metaKey||s.ctrlKey)&&t.startselected?(n._removeClass(t.$element,"ui-selecting"),t.selecting=!1,n._addClass(t.$element,"ui-selected"),t.selected=!0):(n._removeClass(t.$element,"ui-selecting"),t.selecting=!1,t.startselected&&(n._addClass(t.$element,"ui-unselecting"),t.unselecting=!0),n._trigger("unselecting",s,{unselecting:t.element}))),t.selected&&(s.metaKey||s.ctrlKey||t.startselected||(n._removeClass(t.$element,"ui-selected"),t.selected=!1,n._addClass(t.$element,"ui-unselecting"),t.unselecting=!0,n._trigger("unselecting",s,{unselecting:t.element})))))}),!1}},_mouseStop:function(e){var i=this;return this.dragged=!1,V(".ui-unselecting",this.element[0]).each(function(){var t=V.data(this,"selectable-item");i._removeClass(t.$element,"ui-unselecting"),t.unselecting=!1,t.startselected=!1,i._trigger("unselected",e,{unselected:t.element})}),V(".ui-selecting",this.element[0]).each(function(){var t=V.data(this,"selectable-item");i._removeClass(t.$element,"ui-selecting")._addClass(t.$element,"ui-selected"),t.selecting=!1,t.selected=!0,t.startselected=!0,i._trigger("selected",e,{selected:t.element})}),this._trigger("stop",e),this.helper.remove(),!1}}),V.widget("ui.selectmenu",[V.ui.formResetMixin,{version:"1.13.2",defaultElement:"<select>",options:{appendTo:null,classes:{"ui-selectmenu-button-open":"ui-corner-top","ui-selectmenu-button-closed":"ui-corner-all"},disabled:null,icons:{button:"ui-icon-triangle-1-s"},position:{my:"left top",at:"left bottom",collision:"none"},width:!1,change:null,close:null,focus:null,open:null,select:null},_create:function(){var t=this.element.uniqueId().attr("id");this.ids={element:t,button:t+"-button",menu:t+"-menu"},this._drawButton(),this._drawMenu(),this._bindFormResetHandler(),this._rendered=!1,this.menuItems=V()},_drawButton:function(){var t,e=this,i=this._parseOption(this.element.find("option:selected"),this.element[0].selectedIndex);this.labels=this.element.labels().attr("for",this.ids.button),this._on(this.labels,{click:function(t){this.button.trigger("focus"),t.preventDefault()}}),this.element.hide(),this.button=V("<span>",{tabindex:this.options.disabled?-1:0,id:this.ids.button,role:"combobox","aria-expanded":"false","aria-autocomplete":"list","aria-owns":this.ids.menu,"aria-haspopup":"true",title:this.element.attr("title")}).insertAfter(this.element),this._addClass(this.button,"ui-selectmenu-button ui-selectmenu-button-closed","ui-button ui-widget"),t=V("<span>").appendTo(this.button),this._addClass(t,"ui-selectmenu-icon","ui-icon "+this.options.icons.button),this.buttonItem=this._renderButtonItem(i).appendTo(this.button),!1!==this.options.width&&this._resizeButton(),this._on(this.button,this._buttonEvents),this.button.one("focusin",function(){e._rendered||e._refreshMenu()})},_drawMenu:function(){var i=this;this.menu=V("<ul>",{"aria-hidden":"true","aria-labelledby":this.ids.button,id:this.ids.menu}),this.menuWrap=V("<div>").append(this.menu),this._addClass(this.menuWrap,"ui-selectmenu-menu","ui-front"),this.menuWrap.appendTo(this._appendTo()),this.menuInstance=this.menu.menu({classes:{"ui-menu":"ui-corner-bottom"},role:"listbox",select:function(t,e){t.preventDefault(),i._setSelection(),i._select(e.item.data("ui-selectmenu-item"),t)},focus:function(t,e){e=e.item.data("ui-selectmenu-item");null!=i.focusIndex&&e.index!==i.focusIndex&&(i._trigger("focus",t,{item:e}),i.isOpen||i._select(e,t)),i.focusIndex=e.index,i.button.attr("aria-activedescendant",i.menuItems.eq(e.index).attr("id"))}}).menu("instance"),this.menuInstance._off(this.menu,"mouseleave"),this.menuInstance._closeOnDocumentClick=function(){return!1},this.menuInstance._isDivider=function(){return!1}},refresh:function(){this._refreshMenu(),this.buttonItem.replaceWith(this.buttonItem=this._renderButtonItem(this._getSelectedItem().data("ui-selectmenu-item")||{})),null===this.options.width&&this._resizeButton()},_refreshMenu:function(){var t=this.element.find("option");this.menu.empty(),this._parseOptions(t),this._renderMenu(this.menu,this.items),this.menuInstance.refresh(),this.menuItems=this.menu.find("li").not(".ui-selectmenu-optgroup").find(".ui-menu-item-wrapper"),this._rendered=!0,t.length&&(t=this._getSelectedItem(),this.menuInstance.focus(null,t),this._setAria(t.data("ui-selectmenu-item")),this._setOption("disabled",this.element.prop("disabled")))},open:function(t){this.options.disabled||(this._rendered?(this._removeClass(this.menu.find(".ui-state-active"),null,"ui-state-active"),this.menuInstance.focus(null,this._getSelectedItem())):this._refreshMenu(),this.menuItems.length&&(this.isOpen=!0,this._toggleAttr(),this._resizeMenu(),this._position(),this._on(this.document,this._documentClick),this._trigger("open",t)))},_position:function(){this.menuWrap.position(V.extend({of:this.button},this.options.position))},close:function(t){this.isOpen&&(this.isOpen=!1,this._toggleAttr(),this.range=null,this._off(this.document),this._trigger("close",t))},widget:function(){return this.button},menuWidget:function(){return this.menu},_renderButtonItem:function(t){var e=V("<span>");return this._setText(e,t.label),this._addClass(e,"ui-selectmenu-text"),e},_renderMenu:function(s,t){var n=this,o="";V.each(t,function(t,e){var i;e.optgroup!==o&&(i=V("<li>",{text:e.optgroup}),n._addClass(i,"ui-selectmenu-optgroup","ui-menu-divider"+(e.element.parent("optgroup").prop("disabled")?" ui-state-disabled":"")),i.appendTo(s),o=e.optgroup),n._renderItemData(s,e)})},_renderItemData:function(t,e){return this._renderItem(t,e).data("ui-selectmenu-item",e)},_renderItem:function(t,e){var i=V("<li>"),s=V("<div>",{title:e.element.attr("title")});return e.disabled&&this._addClass(i,null,"ui-state-disabled"),this._setText(s,e.label),i.append(s).appendTo(t)},_setText:function(t,e){e?t.text(e):t.html("&#160;")},_move:function(t,e){var i,s=".ui-menu-item";this.isOpen?i=this.menuItems.eq(this.focusIndex).parent("li"):(i=this.menuItems.eq(this.element[0].selectedIndex).parent("li"),s+=":not(.ui-state-disabled)"),(s="first"===t||"last"===t?i["first"===t?"prevAll":"nextAll"](s).eq(-1):i[t+"All"](s).eq(0)).length&&this.menuInstance.focus(e,s)},_getSelectedItem:function(){return this.menuItems.eq(this.element[0].selectedIndex).parent("li")},_toggle:function(t){this[this.isOpen?"close":"open"](t)},_setSelection:function(){var t;this.range&&(window.getSelection?((t=window.getSelection()).removeAllRanges(),t.addRange(this.range)):this.range.select(),this.button.trigger("focus"))},_documentClick:{mousedown:function(t){this.isOpen&&(V(t.target).closest(".ui-selectmenu-menu, #"+V.escapeSelector(this.ids.button)).length||this.close(t))}},_buttonEvents:{mousedown:function(){var t;window.getSelection?(t=window.getSelection()).rangeCount&&(this.range=t.getRangeAt(0)):this.range=document.selection.createRange()},click:function(t){this._setSelection(),this._toggle(t)},keydown:function(t){var e=!0;switch(t.keyCode){case V.ui.keyCode.TAB:case V.ui.keyCode.ESCAPE:this.close(t),e=!1;break;case V.ui.keyCode.ENTER:this.isOpen&&this._selectFocusedItem(t);break;case V.ui.keyCode.UP:t.altKey?this._toggle(t):this._move("prev",t);break;case V.ui.keyCode.DOWN:t.altKey?this._toggle(t):this._move("next",t);break;case V.ui.keyCode.SPACE:this.isOpen?this._selectFocusedItem(t):this._toggle(t);break;case V.ui.keyCode.LEFT:this._move("prev",t);break;case V.ui.keyCode.RIGHT:this._move("next",t);break;case V.ui.keyCode.HOME:case V.ui.keyCode.PAGE_UP:this._move("first",t);break;case V.ui.keyCode.END:case V.ui.keyCode.PAGE_DOWN:this._move("last",t);break;default:this.menu.trigger(t),e=!1}e&&t.preventDefault()}},_selectFocusedItem:function(t){var e=this.menuItems.eq(this.focusIndex).parent("li");e.hasClass("ui-state-disabled")||this._select(e.data("ui-selectmenu-item"),t)},_select:function(t,e){var i=this.element[0].selectedIndex;this.element[0].selectedIndex=t.index,this.buttonItem.replaceWith(this.buttonItem=this._renderButtonItem(t)),this._setAria(t),this._trigger("select",e,{item:t}),t.index!==i&&this._trigger("change",e,{item:t}),this.close(e)},_setAria:function(t){t=this.menuItems.eq(t.index).attr("id");this.button.attr({"aria-labelledby":t,"aria-activedescendant":t}),this.menu.attr("aria-activedescendant",t)},_setOption:function(t,e){var i;"icons"===t&&(i=this.button.find("span.ui-icon"),this._removeClass(i,null,this.options.icons.button)._addClass(i,null,e.button)),this._super(t,e),"appendTo"===t&&this.menuWrap.appendTo(this._appendTo()),"width"===t&&this._resizeButton()},_setOptionDisabled:function(t){this._super(t),this.menuInstance.option("disabled",t),this.button.attr("aria-disabled",t),this._toggleClass(this.button,null,"ui-state-disabled",t),this.element.prop("disabled",t),t?(this.button.attr("tabindex",-1),this.close()):this.button.attr("tabindex",0)},_appendTo:function(){var t=this.options.appendTo;return t=!(t=!(t=t&&(t.jquery||t.nodeType?V(t):this.document.find(t).eq(0)))||!t[0]?this.element.closest(".ui-front, dialog"):t).length?this.document[0].body:t},_toggleAttr:function(){this.button.attr("aria-expanded",this.isOpen),this._removeClass(this.button,"ui-selectmenu-button-"+(this.isOpen?"closed":"open"))._addClass(this.button,"ui-selectmenu-button-"+(this.isOpen?"open":"closed"))._toggleClass(this.menuWrap,"ui-selectmenu-open",null,this.isOpen),this.menu.attr("aria-hidden",!this.isOpen)},_resizeButton:function(){var t=this.options.width;!1!==t?(null===t&&(t=this.element.show().outerWidth(),this.element.hide()),this.button.outerWidth(t)):this.button.css("width","")},_resizeMenu:function(){this.menu.outerWidth(Math.max(this.button.outerWidth(),this.menu.width("").outerWidth()+1))},_getCreateOptions:function(){var t=this._super();return t.disabled=this.element.prop("disabled"),t},_parseOptions:function(t){var i=this,s=[];t.each(function(t,e){e.hidden||s.push(i._parseOption(V(e),t))}),this.items=s},_parseOption:function(t,e){var i=t.parent("optgroup");return{element:t,index:e,value:t.val(),label:t.text(),optgroup:i.attr("label")||"",disabled:i.prop("disabled")||t.prop("disabled")}},_destroy:function(){this._unbindFormResetHandler(),this.menuWrap.remove(),this.button.remove(),this.element.show(),this.element.removeUniqueId(),this.labels.attr("for",this.ids.element)}}]),V.widget("ui.slider",V.ui.mouse,{version:"1.13.2",widgetEventPrefix:"slide",options:{animate:!1,classes:{"ui-slider":"ui-corner-all","ui-slider-handle":"ui-corner-all","ui-slider-range":"ui-corner-all ui-widget-header"},distance:0,max:100,min:0,orientation:"horizontal",range:!1,step:1,value:0,values:null,change:null,slide:null,start:null,stop:null},numPages:5,_create:function(){this._keySliding=!1,this._mouseSliding=!1,this._animateOff=!0,this._handleIndex=null,this._detectOrientation(),this._mouseInit(),this._calculateNewMax(),this._addClass("ui-slider ui-slider-"+this.orientation,"ui-widget ui-widget-content"),this._refresh(),this._animateOff=!1},_refresh:function(){this._createRange(),this._createHandles(),this._setupEvents(),this._refreshValue()},_createHandles:function(){var t,e=this.options,i=this.element.find(".ui-slider-handle"),s=[],n=e.values&&e.values.length||1;for(i.length>n&&(i.slice(n).remove(),i=i.slice(0,n)),t=i.length;t<n;t++)s.push("<span tabindex='0'></span>");this.handles=i.add(V(s.join("")).appendTo(this.element)),this._addClass(this.handles,"ui-slider-handle","ui-state-default"),this.handle=this.handles.eq(0),this.handles.each(function(t){V(this).data("ui-slider-handle-index",t).attr("tabIndex",0)})},_createRange:function(){var t=this.options;t.range?(!0===t.range&&(t.values?t.values.length&&2!==t.values.length?t.values=[t.values[0],t.values[0]]:Array.isArray(t.values)&&(t.values=t.values.slice(0)):t.values=[this._valueMin(),this._valueMin()]),this.range&&this.range.length?(this._removeClass(this.range,"ui-slider-range-min ui-slider-range-max"),this.range.css({left:"",bottom:""})):(this.range=V("<div>").appendTo(this.element),this._addClass(this.range,"ui-slider-range")),"min"!==t.range&&"max"!==t.range||this._addClass(this.range,"ui-slider-range-"+t.range)):(this.range&&this.range.remove(),this.range=null)},_setupEvents:function(){this._off(this.handles),this._on(this.handles,this._handleEvents),this._hoverable(this.handles),this._focusable(this.handles)},_destroy:function(){this.handles.remove(),this.range&&this.range.remove(),this._mouseDestroy()},_mouseCapture:function(t){var i,s,n,o,e,a,r=this,l=this.options;return!l.disabled&&(this.elementSize={width:this.element.outerWidth(),height:this.element.outerHeight()},this.elementOffset=this.element.offset(),a={x:t.pageX,y:t.pageY},i=this._normValueFromMouse(a),s=this._valueMax()-this._valueMin()+1,this.handles.each(function(t){var e=Math.abs(i-r.values(t));(e<s||s===e&&(t===r._lastChangedValue||r.values(t)===l.min))&&(s=e,n=V(this),o=t)}),!1!==this._start(t,o)&&(this._mouseSliding=!0,this._handleIndex=o,this._addClass(n,null,"ui-state-active"),n.trigger("focus"),e=n.offset(),a=!V(t.target).parents().addBack().is(".ui-slider-handle"),this._clickOffset=a?{left:0,top:0}:{left:t.pageX-e.left-n.width()/2,top:t.pageY-e.top-n.height()/2-(parseInt(n.css("borderTopWidth"),10)||0)-(parseInt(n.css("borderBottomWidth"),10)||0)+(parseInt(n.css("marginTop"),10)||0)},this.handles.hasClass("ui-state-hover")||this._slide(t,o,i),this._animateOff=!0))},_mouseStart:function(){return!0},_mouseDrag:function(t){var e={x:t.pageX,y:t.pageY},e=this._normValueFromMouse(e);return this._slide(t,this._handleIndex,e),!1},_mouseStop:function(t){return this._removeClass(this.handles,null,"ui-state-active"),this._mouseSliding=!1,this._stop(t,this._handleIndex),this._change(t,this._handleIndex),this._handleIndex=null,this._clickOffset=null,this._animateOff=!1},_detectOrientation:function(){this.orientation="vertical"===this.options.orientation?"vertical":"horizontal"},_normValueFromMouse:function(t){var e,t="horizontal"===this.orientation?(e=this.elementSize.width,t.x-this.elementOffset.left-(this._clickOffset?this._clickOffset.left:0)):(e=this.elementSize.height,t.y-this.elementOffset.top-(this._clickOffset?this._clickOffset.top:0)),t=t/e;return(t=1<t?1:t)<0&&(t=0),"vertical"===this.orientation&&(t=1-t),e=this._valueMax()-this._valueMin(),e=this._valueMin()+t*e,this._trimAlignValue(e)},_uiHash:function(t,e,i){var s={handle:this.handles[t],handleIndex:t,value:void 0!==e?e:this.value()};return this._hasMultipleValues()&&(s.value=void 0!==e?e:this.values(t),s.values=i||this.values()),s},_hasMultipleValues:function(){return this.options.values&&this.options.values.length},_start:function(t,e){return this._trigger("start",t,this._uiHash(e))},_slide:function(t,e,i){var s,n=this.value(),o=this.values();this._hasMultipleValues()&&(s=this.values(e?0:1),n=this.values(e),2===this.options.values.length&&!0===this.options.range&&(i=0===e?Math.min(s,i):Math.max(s,i)),o[e]=i),i!==n&&!1!==this._trigger("slide",t,this._uiHash(e,i,o))&&(this._hasMultipleValues()?this.values(e,i):this.value(i))},_stop:function(t,e){this._trigger("stop",t,this._uiHash(e))},_change:function(t,e){this._keySliding||this._mouseSliding||(this._lastChangedValue=e,this._trigger("change",t,this._uiHash(e)))},value:function(t){return arguments.length?(this.options.value=this._trimAlignValue(t),this._refreshValue(),void this._change(null,0)):this._value()},values:function(t,e){var i,s,n;if(1<arguments.length)return this.options.values[t]=this._trimAlignValue(e),this._refreshValue(),void this._change(null,t);if(!arguments.length)return this._values();if(!Array.isArray(t))return this._hasMultipleValues()?this._values(t):this.value();for(i=this.options.values,s=t,n=0;n<i.length;n+=1)i[n]=this._trimAlignValue(s[n]),this._change(null,n);this._refreshValue()},_setOption:function(t,e){var i,s=0;switch("range"===t&&!0===this.options.range&&("min"===e?(this.options.value=this._values(0),this.options.values=null):"max"===e&&(this.options.value=this._values(this.options.values.length-1),this.options.values=null)),Array.isArray(this.options.values)&&(s=this.options.values.length),this._super(t,e),t){case"orientation":this._detectOrientation(),this._removeClass("ui-slider-horizontal ui-slider-vertical")._addClass("ui-slider-"+this.orientation),this._refreshValue(),this.options.range&&this._refreshRange(e),this.handles.css("horizontal"===e?"bottom":"left","");break;case"value":this._animateOff=!0,this._refreshValue(),this._change(null,0),this._animateOff=!1;break;case"values":for(this._animateOff=!0,this._refreshValue(),i=s-1;0<=i;i--)this._change(null,i);this._animateOff=!1;break;case"step":case"min":case"max":this._animateOff=!0,this._calculateNewMax(),this._refreshValue(),this._animateOff=!1;break;case"range":this._animateOff=!0,this._refresh(),this._animateOff=!1}},_setOptionDisabled:function(t){this._super(t),this._toggleClass(null,"ui-state-disabled",!!t)},_value:function(){var t=this.options.value;return t=this._trimAlignValue(t)},_values:function(t){var e,i;if(arguments.length)return t=this.options.values[t],t=this._trimAlignValue(t);if(this._hasMultipleValues()){for(e=this.options.values.slice(),i=0;i<e.length;i+=1)e[i]=this._trimAlignValue(e[i]);return e}return[]},_trimAlignValue:function(t){if(t<=this._valueMin())return this._valueMin();if(t>=this._valueMax())return this._valueMax();var e=0<this.options.step?this.options.step:1,i=(t-this._valueMin())%e,t=t-i;return 2*Math.abs(i)>=e&&(t+=0<i?e:-e),parseFloat(t.toFixed(5))},_calculateNewMax:function(){var t=this.options.max,e=this._valueMin(),i=this.options.step;(t=Math.round((t-e)/i)*i+e)>this.options.max&&(t-=i),this.max=parseFloat(t.toFixed(this._precision()))},_precision:function(){var t=this._precisionOf(this.options.step);return t=null!==this.options.min?Math.max(t,this._precisionOf(this.options.min)):t},_precisionOf:function(t){var e=t.toString(),t=e.indexOf(".");return-1===t?0:e.length-t-1},_valueMin:function(){return this.options.min},_valueMax:function(){return this.max},_refreshRange:function(t){"vertical"===t&&this.range.css({width:"",left:""}),"horizontal"===t&&this.range.css({height:"",bottom:""})},_refreshValue:function(){var e,i,t,s,n,o=this.options.range,a=this.options,r=this,l=!this._animateOff&&a.animate,h={};this._hasMultipleValues()?this.handles.each(function(t){i=(r.values(t)-r._valueMin())/(r._valueMax()-r._valueMin())*100,h["horizontal"===r.orientation?"left":"bottom"]=i+"%",V(this).stop(1,1)[l?"animate":"css"](h,a.animate),!0===r.options.range&&("horizontal"===r.orientation?(0===t&&r.range.stop(1,1)[l?"animate":"css"]({left:i+"%"},a.animate),1===t&&r.range[l?"animate":"css"]({width:i-e+"%"},{queue:!1,duration:a.animate})):(0===t&&r.range.stop(1,1)[l?"animate":"css"]({bottom:i+"%"},a.animate),1===t&&r.range[l?"animate":"css"]({height:i-e+"%"},{queue:!1,duration:a.animate}))),e=i}):(t=this.value(),s=this._valueMin(),n=this._valueMax(),i=n!==s?(t-s)/(n-s)*100:0,h["horizontal"===this.orientation?"left":"bottom"]=i+"%",this.handle.stop(1,1)[l?"animate":"css"](h,a.animate),"min"===o&&"horizontal"===this.orientation&&this.range.stop(1,1)[l?"animate":"css"]({width:i+"%"},a.animate),"max"===o&&"horizontal"===this.orientation&&this.range.stop(1,1)[l?"animate":"css"]({width:100-i+"%"},a.animate),"min"===o&&"vertical"===this.orientation&&this.range.stop(1,1)[l?"animate":"css"]({height:i+"%"},a.animate),"max"===o&&"vertical"===this.orientation&&this.range.stop(1,1)[l?"animate":"css"]({height:100-i+"%"},a.animate))},_handleEvents:{keydown:function(t){var e,i,s,n=V(t.target).data("ui-slider-handle-index");switch(t.keyCode){case V.ui.keyCode.HOME:case V.ui.keyCode.END:case V.ui.keyCode.PAGE_UP:case V.ui.keyCode.PAGE_DOWN:case V.ui.keyCode.UP:case V.ui.keyCode.RIGHT:case V.ui.keyCode.DOWN:case V.ui.keyCode.LEFT:if(t.preventDefault(),!this._keySliding&&(this._keySliding=!0,this._addClass(V(t.target),null,"ui-state-active"),!1===this._start(t,n)))return}switch(s=this.options.step,e=i=this._hasMultipleValues()?this.values(n):this.value(),t.keyCode){case V.ui.keyCode.HOME:i=this._valueMin();break;case V.ui.keyCode.END:i=this._valueMax();break;case V.ui.keyCode.PAGE_UP:i=this._trimAlignValue(e+(this._valueMax()-this._valueMin())/this.numPages);break;case V.ui.keyCode.PAGE_DOWN:i=this._trimAlignValue(e-(this._valueMax()-this._valueMin())/this.numPages);break;case V.ui.keyCode.UP:case V.ui.keyCode.RIGHT:if(e===this._valueMax())return;i=this._trimAlignValue(e+s);break;case V.ui.keyCode.DOWN:case V.ui.keyCode.LEFT:if(e===this._valueMin())return;i=this._trimAlignValue(e-s)}this._slide(t,n,i)},keyup:function(t){var e=V(t.target).data("ui-slider-handle-index");this._keySliding&&(this._keySliding=!1,this._stop(t,e),this._change(t,e),this._removeClass(V(t.target),null,"ui-state-active"))}}}),V.widget("ui.sortable",V.ui.mouse,{version:"1.13.2",widgetEventPrefix:"sort",ready:!1,options:{appendTo:"parent",axis:!1,connectWith:!1,containment:!1,cursor:"auto",cursorAt:!1,dropOnEmpty:!0,forcePlaceholderSize:!1,forceHelperSize:!1,grid:!1,handle:!1,helper:"original",items:"> *",opacity:!1,placeholder:!1,revert:!1,scroll:!0,scrollSensitivity:20,scrollSpeed:20,scope:"default",tolerance:"intersect",zIndex:1e3,activate:null,beforeStop:null,change:null,deactivate:null,out:null,over:null,receive:null,remove:null,sort:null,start:null,stop:null,update:null},_isOverAxis:function(t,e,i){return e<=t&&t<e+i},_isFloating:function(t){return/left|right/.test(t.css("float"))||/inline|table-cell/.test(t.css("display"))},_create:function(){this.containerCache={},this._addClass("ui-sortable"),this.refresh(),this.offset=this.element.offset(),this._mouseInit(),this._setHandleClassName(),this.ready=!0},_setOption:function(t,e){this._super(t,e),"handle"===t&&this._setHandleClassName()},_setHandleClassName:function(){var t=this;this._removeClass(this.element.find(".ui-sortable-handle"),"ui-sortable-handle"),V.each(this.items,function(){t._addClass(this.instance.options.handle?this.item.find(this.instance.options.handle):this.item,"ui-sortable-handle")})},_destroy:function(){this._mouseDestroy();for(var t=this.items.length-1;0<=t;t--)this.items[t].item.removeData(this.widgetName+"-item");return this},_mouseCapture:function(t,e){var i=null,s=!1,n=this;return!this.reverting&&(!this.options.disabled&&"static"!==this.options.type&&(this._refreshItems(t),V(t.target).parents().each(function(){if(V.data(this,n.widgetName+"-item")===n)return i=V(this),!1}),!!(i=V.data(t.target,n.widgetName+"-item")===n?V(t.target):i)&&(!(this.options.handle&&!e&&(V(this.options.handle,i).find("*").addBack().each(function(){this===t.target&&(s=!0)}),!s))&&(this.currentItem=i,this._removeCurrentsFromItems(),!0))))},_mouseStart:function(t,e,i){var s,n,o=this.options;if((this.currentContainer=this).refreshPositions(),this.appendTo=V("parent"!==o.appendTo?o.appendTo:this.currentItem.parent()),this.helper=this._createHelper(t),this._cacheHelperProportions(),this._cacheMargins(),this.offset=this.currentItem.offset(),this.offset={top:this.offset.top-this.margins.top,left:this.offset.left-this.margins.left},V.extend(this.offset,{click:{left:t.pageX-this.offset.left,top:t.pageY-this.offset.top},relative:this._getRelativeOffset()}),this.helper.css("position","absolute"),this.cssPosition=this.helper.css("position"),o.cursorAt&&this._adjustOffsetFromHelper(o.cursorAt),this.domPosition={prev:this.currentItem.prev()[0],parent:this.currentItem.parent()[0]},this.helper[0]!==this.currentItem[0]&&this.currentItem.hide(),this._createPlaceholder(),this.scrollParent=this.placeholder.scrollParent(),V.extend(this.offset,{parent:this._getParentOffset()}),o.containment&&this._setContainment(),o.cursor&&"auto"!==o.cursor&&(n=this.document.find("body"),this.storedCursor=n.css("cursor"),n.css("cursor",o.cursor),this.storedStylesheet=V("<style>*{ cursor: "+o.cursor+" !important; }</style>").appendTo(n)),o.zIndex&&(this.helper.css("zIndex")&&(this._storedZIndex=this.helper.css("zIndex")),this.helper.css("zIndex",o.zIndex)),o.opacity&&(this.helper.css("opacity")&&(this._storedOpacity=this.helper.css("opacity")),this.helper.css("opacity",o.opacity)),this.scrollParent[0]!==this.document[0]&&"HTML"!==this.scrollParent[0].tagName&&(this.overflowOffset=this.scrollParent.offset()),this._trigger("start",t,this._uiHash()),this._preserveHelperProportions||this._cacheHelperProportions(),!i)for(s=this.containers.length-1;0<=s;s--)this.containers[s]._trigger("activate",t,this._uiHash(this));return V.ui.ddmanager&&(V.ui.ddmanager.current=this),V.ui.ddmanager&&!o.dropBehaviour&&V.ui.ddmanager.prepareOffsets(this,t),this.dragging=!0,this._addClass(this.helper,"ui-sortable-helper"),this.helper.parent().is(this.appendTo)||(this.helper.detach().appendTo(this.appendTo),this.offset.parent=this._getParentOffset()),this.position=this.originalPosition=this._generatePosition(t),this.originalPageX=t.pageX,this.originalPageY=t.pageY,this.lastPositionAbs=this.positionAbs=this._convertPositionTo("absolute"),this._mouseDrag(t),!0},_scroll:function(t){var e=this.options,i=!1;return this.scrollParent[0]!==this.document[0]&&"HTML"!==this.scrollParent[0].tagName?(this.overflowOffset.top+this.scrollParent[0].offsetHeight-t.pageY<e.scrollSensitivity?this.scrollParent[0].scrollTop=i=this.scrollParent[0].scrollTop+e.scrollSpeed:t.pageY-this.overflowOffset.top<e.scrollSensitivity&&(this.scrollParent[0].scrollTop=i=this.scrollParent[0].scrollTop-e.scrollSpeed),this.overflowOffset.left+this.scrollParent[0].offsetWidth-t.pageX<e.scrollSensitivity?this.scrollParent[0].scrollLeft=i=this.scrollParent[0].scrollLeft+e.scrollSpeed:t.pageX-this.overflowOffset.left<e.scrollSensitivity&&(this.scrollParent[0].scrollLeft=i=this.scrollParent[0].scrollLeft-e.scrollSpeed)):(t.pageY-this.document.scrollTop()<e.scrollSensitivity?i=this.document.scrollTop(this.document.scrollTop()-e.scrollSpeed):this.window.height()-(t.pageY-this.document.scrollTop())<e.scrollSensitivity&&(i=this.document.scrollTop(this.document.scrollTop()+e.scrollSpeed)),t.pageX-this.document.scrollLeft()<e.scrollSensitivity?i=this.document.scrollLeft(this.document.scrollLeft()-e.scrollSpeed):this.window.width()-(t.pageX-this.document.scrollLeft())<e.scrollSensitivity&&(i=this.document.scrollLeft(this.document.scrollLeft()+e.scrollSpeed))),i},_mouseDrag:function(t){var e,i,s,n,o=this.options;for(this.position=this._generatePosition(t),this.positionAbs=this._convertPositionTo("absolute"),this.options.axis&&"y"===this.options.axis||(this.helper[0].style.left=this.position.left+"px"),this.options.axis&&"x"===this.options.axis||(this.helper[0].style.top=this.position.top+"px"),o.scroll&&!1!==this._scroll(t)&&(this._refreshItemPositions(!0),V.ui.ddmanager&&!o.dropBehaviour&&V.ui.ddmanager.prepareOffsets(this,t)),this.dragDirection={vertical:this._getDragVerticalDirection(),horizontal:this._getDragHorizontalDirection()},e=this.items.length-1;0<=e;e--)if(s=(i=this.items[e]).item[0],(n=this._intersectsWithPointer(i))&&i.instance===this.currentContainer&&!(s===this.currentItem[0]||this.placeholder[1===n?"next":"prev"]()[0]===s||V.contains(this.placeholder[0],s)||"semi-dynamic"===this.options.type&&V.contains(this.element[0],s))){if(this.direction=1===n?"down":"up","pointer"!==this.options.tolerance&&!this._intersectsWithSides(i))break;this._rearrange(t,i),this._trigger("change",t,this._uiHash());break}return this._contactContainers(t),V.ui.ddmanager&&V.ui.ddmanager.drag(this,t),this._trigger("sort",t,this._uiHash()),this.lastPositionAbs=this.positionAbs,!1},_mouseStop:function(t,e){var i,s,n,o;if(t)return V.ui.ddmanager&&!this.options.dropBehaviour&&V.ui.ddmanager.drop(this,t),this.options.revert?(s=(i=this).placeholder.offset(),o={},(n=this.options.axis)&&"x"!==n||(o.left=s.left-this.offset.parent.left-this.margins.left+(this.offsetParent[0]===this.document[0].body?0:this.offsetParent[0].scrollLeft)),n&&"y"!==n||(o.top=s.top-this.offset.parent.top-this.margins.top+(this.offsetParent[0]===this.document[0].body?0:this.offsetParent[0].scrollTop)),this.reverting=!0,V(this.helper).animate(o,parseInt(this.options.revert,10)||500,function(){i._clear(t)})):this._clear(t,e),!1},cancel:function(){if(this.dragging){this._mouseUp(new V.Event("mouseup",{target:null})),"original"===this.options.helper?(this.currentItem.css(this._storedCSS),this._removeClass(this.currentItem,"ui-sortable-helper")):this.currentItem.show();for(var t=this.containers.length-1;0<=t;t--)this.containers[t]._trigger("deactivate",null,this._uiHash(this)),this.containers[t].containerCache.over&&(this.containers[t]._trigger("out",null,this._uiHash(this)),this.containers[t].containerCache.over=0)}return this.placeholder&&(this.placeholder[0].parentNode&&this.placeholder[0].parentNode.removeChild(this.placeholder[0]),"original"!==this.options.helper&&this.helper&&this.helper[0].parentNode&&this.helper.remove(),V.extend(this,{helper:null,dragging:!1,reverting:!1,_noFinalSort:null}),this.domPosition.prev?V(this.domPosition.prev).after(this.currentItem):V(this.domPosition.parent).prepend(this.currentItem)),this},serialize:function(e){var t=this._getItemsAsjQuery(e&&e.connected),i=[];return e=e||{},V(t).each(function(){var t=(V(e.item||this).attr(e.attribute||"id")||"").match(e.expression||/(.+)[\-=_](.+)/);t&&i.push((e.key||t[1]+"[]")+"="+(e.key&&e.expression?t[1]:t[2]))}),!i.length&&e.key&&i.push(e.key+"="),i.join("&")},toArray:function(t){var e=this._getItemsAsjQuery(t&&t.connected),i=[];return t=t||{},e.each(function(){i.push(V(t.item||this).attr(t.attribute||"id")||"")}),i},_intersectsWith:function(t){var e=this.positionAbs.left,i=e+this.helperProportions.width,s=this.positionAbs.top,n=s+this.helperProportions.height,o=t.left,a=o+t.width,r=t.top,l=r+t.height,h=this.offset.click.top,c=this.offset.click.left,h="x"===this.options.axis||r<s+h&&s+h<l,c="y"===this.options.axis||o<e+c&&e+c<a;return"pointer"===this.options.tolerance||this.options.forcePointerForContainers||"pointer"!==this.options.tolerance&&this.helperProportions[this.floating?"width":"height"]>t[this.floating?"width":"height"]?h&&c:o<e+this.helperProportions.width/2&&i-this.helperProportions.width/2<a&&r<s+this.helperProportions.height/2&&n-this.helperProportions.height/2<l},_intersectsWithPointer:function(t){var e="x"===this.options.axis||this._isOverAxis(this.positionAbs.top+this.offset.click.top,t.top,t.height),t="y"===this.options.axis||this._isOverAxis(this.positionAbs.left+this.offset.click.left,t.left,t.width);return!(!e||!t)&&(e=this.dragDirection.vertical,t=this.dragDirection.horizontal,this.floating?"right"===t||"down"===e?2:1:e&&("down"===e?2:1))},_intersectsWithSides:function(t){var e=this._isOverAxis(this.positionAbs.top+this.offset.click.top,t.top+t.height/2,t.height),i=this._isOverAxis(this.positionAbs.left+this.offset.click.left,t.left+t.width/2,t.width),s=this.dragDirection.vertical,t=this.dragDirection.horizontal;return this.floating&&t?"right"===t&&i||"left"===t&&!i:s&&("down"===s&&e||"up"===s&&!e)},_getDragVerticalDirection:function(){var t=this.positionAbs.top-this.lastPositionAbs.top;return 0!=t&&(0<t?"down":"up")},_getDragHorizontalDirection:function(){var t=this.positionAbs.left-this.lastPositionAbs.left;return 0!=t&&(0<t?"right":"left")},refresh:function(t){return this._refreshItems(t),this._setHandleClassName(),this.refreshPositions(),this},_connectWith:function(){var t=this.options;return t.connectWith.constructor===String?[t.connectWith]:t.connectWith},_getItemsAsjQuery:function(t){var e,i,s,n,o=[],a=[],r=this._connectWith();if(r&&t)for(e=r.length-1;0<=e;e--)for(i=(s=V(r[e],this.document[0])).length-1;0<=i;i--)(n=V.data(s[i],this.widgetFullName))&&n!==this&&!n.options.disabled&&a.push(["function"==typeof n.options.items?n.options.items.call(n.element):V(n.options.items,n.element).not(".ui-sortable-helper").not(".ui-sortable-placeholder"),n]);function l(){o.push(this)}for(a.push(["function"==typeof this.options.items?this.options.items.call(this.element,null,{options:this.options,item:this.currentItem}):V(this.options.items,this.element).not(".ui-sortable-helper").not(".ui-sortable-placeholder"),this]),e=a.length-1;0<=e;e--)a[e][0].each(l);return V(o)},_removeCurrentsFromItems:function(){var i=this.currentItem.find(":data("+this.widgetName+"-item)");this.items=V.grep(this.items,function(t){for(var e=0;e<i.length;e++)if(i[e]===t.item[0])return!1;return!0})},_refreshItems:function(t){this.items=[],this.containers=[this];var e,i,s,n,o,a,r,l,h=this.items,c=[["function"==typeof this.options.items?this.options.items.call(this.element[0],t,{item:this.currentItem}):V(this.options.items,this.element),this]],u=this._connectWith();if(u&&this.ready)for(e=u.length-1;0<=e;e--)for(i=(s=V(u[e],this.document[0])).length-1;0<=i;i--)(n=V.data(s[i],this.widgetFullName))&&n!==this&&!n.options.disabled&&(c.push(["function"==typeof n.options.items?n.options.items.call(n.element[0],t,{item:this.currentItem}):V(n.options.items,n.element),n]),this.containers.push(n));for(e=c.length-1;0<=e;e--)for(o=c[e][1],l=(a=c[e][i=0]).length;i<l;i++)(r=V(a[i])).data(this.widgetName+"-item",o),h.push({item:r,instance:o,width:0,height:0,left:0,top:0})},_refreshItemPositions:function(t){for(var e,i,s=this.items.length-1;0<=s;s--)e=this.items[s],this.currentContainer&&e.instance!==this.currentContainer&&e.item[0]!==this.currentItem[0]||(i=this.options.toleranceElement?V(this.options.toleranceElement,e.item):e.item,t||(e.width=i.outerWidth(),e.height=i.outerHeight()),i=i.offset(),e.left=i.left,e.top=i.top)},refreshPositions:function(t){var e,i;if(this.floating=!!this.items.length&&("x"===this.options.axis||this._isFloating(this.items[0].item)),this.offsetParent&&this.helper&&(this.offset.parent=this._getParentOffset()),this._refreshItemPositions(t),this.options.custom&&this.options.custom.refreshContainers)this.options.custom.refreshContainers.call(this);else for(e=this.containers.length-1;0<=e;e--)i=this.containers[e].element.offset(),this.containers[e].containerCache.left=i.left,this.containers[e].containerCache.top=i.top,this.containers[e].containerCache.width=this.containers[e].element.outerWidth(),this.containers[e].containerCache.height=this.containers[e].element.outerHeight();return this},_createPlaceholder:function(i){var s,n,o=(i=i||this).options;o.placeholder&&o.placeholder.constructor!==String||(s=o.placeholder,n=i.currentItem[0].nodeName.toLowerCase(),o.placeholder={element:function(){var t=V("<"+n+">",i.document[0]);return i._addClass(t,"ui-sortable-placeholder",s||i.currentItem[0].className)._removeClass(t,"ui-sortable-helper"),"tbody"===n?i._createTrPlaceholder(i.currentItem.find("tr").eq(0),V("<tr>",i.document[0]).appendTo(t)):"tr"===n?i._createTrPlaceholder(i.currentItem,t):"img"===n&&t.attr("src",i.currentItem.attr("src")),s||t.css("visibility","hidden"),t},update:function(t,e){s&&!o.forcePlaceholderSize||(e.height()&&(!o.forcePlaceholderSize||"tbody"!==n&&"tr"!==n)||e.height(i.currentItem.innerHeight()-parseInt(i.currentItem.css("paddingTop")||0,10)-parseInt(i.currentItem.css("paddingBottom")||0,10)),e.width()||e.width(i.currentItem.innerWidth()-parseInt(i.currentItem.css("paddingLeft")||0,10)-parseInt(i.currentItem.css("paddingRight")||0,10)))}}),i.placeholder=V(o.placeholder.element.call(i.element,i.currentItem)),i.currentItem.after(i.placeholder),o.placeholder.update(i,i.placeholder)},_createTrPlaceholder:function(t,e){var i=this;t.children().each(function(){V("<td>&#160;</td>",i.document[0]).attr("colspan",V(this).attr("colspan")||1).appendTo(e)})},_contactContainers:function(t){for(var e,i,s,n,o,a,r,l,h,c=null,u=null,d=this.containers.length-1;0<=d;d--)V.contains(this.currentItem[0],this.containers[d].element[0])||(this._intersectsWith(this.containers[d].containerCache)?c&&V.contains(this.containers[d].element[0],c.element[0])||(c=this.containers[d],u=d):this.containers[d].containerCache.over&&(this.containers[d]._trigger("out",t,this._uiHash(this)),this.containers[d].containerCache.over=0));if(c)if(1===this.containers.length)this.containers[u].containerCache.over||(this.containers[u]._trigger("over",t,this._uiHash(this)),this.containers[u].containerCache.over=1);else{for(i=1e4,s=null,n=(l=c.floating||this._isFloating(this.currentItem))?"left":"top",o=l?"width":"height",h=l?"pageX":"pageY",e=this.items.length-1;0<=e;e--)V.contains(this.containers[u].element[0],this.items[e].item[0])&&this.items[e].item[0]!==this.currentItem[0]&&(a=this.items[e].item.offset()[n],r=!1,t[h]-a>this.items[e][o]/2&&(r=!0),Math.abs(t[h]-a)<i&&(i=Math.abs(t[h]-a),s=this.items[e],this.direction=r?"up":"down"));(s||this.options.dropOnEmpty)&&(this.currentContainer!==this.containers[u]?(s?this._rearrange(t,s,null,!0):this._rearrange(t,null,this.containers[u].element,!0),this._trigger("change",t,this._uiHash()),this.containers[u]._trigger("change",t,this._uiHash(this)),this.currentContainer=this.containers[u],this.options.placeholder.update(this.currentContainer,this.placeholder),this.scrollParent=this.placeholder.scrollParent(),this.scrollParent[0]!==this.document[0]&&"HTML"!==this.scrollParent[0].tagName&&(this.overflowOffset=this.scrollParent.offset()),this.containers[u]._trigger("over",t,this._uiHash(this)),this.containers[u].containerCache.over=1):this.currentContainer.containerCache.over||(this.containers[u]._trigger("over",t,this._uiHash()),this.currentContainer.containerCache.over=1))}},_createHelper:function(t){var e=this.options,t="function"==typeof e.helper?V(e.helper.apply(this.element[0],[t,this.currentItem])):"clone"===e.helper?this.currentItem.clone():this.currentItem;return t.parents("body").length||this.appendTo[0].appendChild(t[0]),t[0]===this.currentItem[0]&&(this._storedCSS={width:this.currentItem[0].style.width,height:this.currentItem[0].style.height,position:this.currentItem.css("position"),top:this.currentItem.css("top"),left:this.currentItem.css("left")}),t[0].style.width&&!e.forceHelperSize||t.width(this.currentItem.width()),t[0].style.height&&!e.forceHelperSize||t.height(this.currentItem.height()),t},_adjustOffsetFromHelper:function(t){"string"==typeof t&&(t=t.split(" ")),"left"in(t=Array.isArray(t)?{left:+t[0],top:+t[1]||0}:t)&&(this.offset.click.left=t.left+this.margins.left),"right"in t&&(this.offset.click.left=this.helperProportions.width-t.right+this.margins.left),"top"in t&&(this.offset.click.top=t.top+this.margins.top),"bottom"in t&&(this.offset.click.top=this.helperProportions.height-t.bottom+this.margins.top)},_getParentOffset:function(){this.offsetParent=this.helper.offsetParent();var t=this.offsetParent.offset();return"absolute"===this.cssPosition&&this.scrollParent[0]!==this.document[0]&&V.contains(this.scrollParent[0],this.offsetParent[0])&&(t.left+=this.scrollParent.scrollLeft(),t.top+=this.scrollParent.scrollTop()),{top:(t=this.offsetParent[0]===this.document[0].body||this.offsetParent[0].tagName&&"html"===this.offsetParent[0].tagName.toLowerCase()&&V.ui.ie?{top:0,left:0}:t).top+(parseInt(this.offsetParent.css("borderTopWidth"),10)||0),left:t.left+(parseInt(this.offsetParent.css("borderLeftWidth"),10)||0)}},_getRelativeOffset:function(){if("relative"!==this.cssPosition)return{top:0,left:0};var t=this.currentItem.position();return{top:t.top-(parseInt(this.helper.css("top"),10)||0)+this.scrollParent.scrollTop(),left:t.left-(parseInt(this.helper.css("left"),10)||0)+this.scrollParent.scrollLeft()}},_cacheMargins:function(){this.margins={left:parseInt(this.currentItem.css("marginLeft"),10)||0,top:parseInt(this.currentItem.css("marginTop"),10)||0}},_cacheHelperProportions:function(){this.helperProportions={width:this.helper.outerWidth(),height:this.helper.outerHeight()}},_setContainment:function(){var t,e,i=this.options;"parent"===i.containment&&(i.containment=this.helper[0].parentNode),"document"!==i.containment&&"window"!==i.containment||(this.containment=[0-this.offset.relative.left-this.offset.parent.left,0-this.offset.relative.top-this.offset.parent.top,"document"===i.containment?this.document.width():this.window.width()-this.helperProportions.width-this.margins.left,("document"===i.containment?this.document.height()||document.body.parentNode.scrollHeight:this.window.height()||this.document[0].body.parentNode.scrollHeight)-this.helperProportions.height-this.margins.top]),/^(document|window|parent)$/.test(i.containment)||(t=V(i.containment)[0],e=V(i.containment).offset(),i="hidden"!==V(t).css("overflow"),this.containment=[e.left+(parseInt(V(t).css("borderLeftWidth"),10)||0)+(parseInt(V(t).css("paddingLeft"),10)||0)-this.margins.left,e.top+(parseInt(V(t).css("borderTopWidth"),10)||0)+(parseInt(V(t).css("paddingTop"),10)||0)-this.margins.top,e.left+(i?Math.max(t.scrollWidth,t.offsetWidth):t.offsetWidth)-(parseInt(V(t).css("borderLeftWidth"),10)||0)-(parseInt(V(t).css("paddingRight"),10)||0)-this.helperProportions.width-this.margins.left,e.top+(i?Math.max(t.scrollHeight,t.offsetHeight):t.offsetHeight)-(parseInt(V(t).css("borderTopWidth"),10)||0)-(parseInt(V(t).css("paddingBottom"),10)||0)-this.helperProportions.height-this.margins.top])},_convertPositionTo:function(t,e){e=e||this.position;var i="absolute"===t?1:-1,s="absolute"!==this.cssPosition||this.scrollParent[0]!==this.document[0]&&V.contains(this.scrollParent[0],this.offsetParent[0])?this.scrollParent:this.offsetParent,t=/(html|body)/i.test(s[0].tagName);return{top:e.top+this.offset.relative.top*i+this.offset.parent.top*i-("fixed"===this.cssPosition?-this.scrollParent.scrollTop():t?0:s.scrollTop())*i,left:e.left+this.offset.relative.left*i+this.offset.parent.left*i-("fixed"===this.cssPosition?-this.scrollParent.scrollLeft():t?0:s.scrollLeft())*i}},_generatePosition:function(t){var e=this.options,i=t.pageX,s=t.pageY,n="absolute"!==this.cssPosition||this.scrollParent[0]!==this.document[0]&&V.contains(this.scrollParent[0],this.offsetParent[0])?this.scrollParent:this.offsetParent,o=/(html|body)/i.test(n[0].tagName);return"relative"!==this.cssPosition||this.scrollParent[0]!==this.document[0]&&this.scrollParent[0]!==this.offsetParent[0]||(this.offset.relative=this._getRelativeOffset()),this.originalPosition&&(this.containment&&(t.pageX-this.offset.click.left<this.containment[0]&&(i=this.containment[0]+this.offset.click.left),t.pageY-this.offset.click.top<this.containment[1]&&(s=this.containment[1]+this.offset.click.top),t.pageX-this.offset.click.left>this.containment[2]&&(i=this.containment[2]+this.offset.click.left),t.pageY-this.offset.click.top>this.containment[3]&&(s=this.containment[3]+this.offset.click.top)),e.grid&&(t=this.originalPageY+Math.round((s-this.originalPageY)/e.grid[1])*e.grid[1],s=!this.containment||t-this.offset.click.top>=this.containment[1]&&t-this.offset.click.top<=this.containment[3]?t:t-this.offset.click.top>=this.containment[1]?t-e.grid[1]:t+e.grid[1],t=this.originalPageX+Math.round((i-this.originalPageX)/e.grid[0])*e.grid[0],i=!this.containment||t-this.offset.click.left>=this.containment[0]&&t-this.offset.click.left<=this.containment[2]?t:t-this.offset.click.left>=this.containment[0]?t-e.grid[0]:t+e.grid[0])),{top:s-this.offset.click.top-this.offset.relative.top-this.offset.parent.top+("fixed"===this.cssPosition?-this.scrollParent.scrollTop():o?0:n.scrollTop()),left:i-this.offset.click.left-this.offset.relative.left-this.offset.parent.left+("fixed"===this.cssPosition?-this.scrollParent.scrollLeft():o?0:n.scrollLeft())}},_rearrange:function(t,e,i,s){i?i[0].appendChild(this.placeholder[0]):e.item[0].parentNode.insertBefore(this.placeholder[0],"down"===this.direction?e.item[0]:e.item[0].nextSibling),this.counter=this.counter?++this.counter:1;var n=this.counter;this._delay(function(){n===this.counter&&this.refreshPositions(!s)})},_clear:function(t,e){this.reverting=!1;var i,s=[];if(!this._noFinalSort&&this.currentItem.parent().length&&this.placeholder.before(this.currentItem),this._noFinalSort=null,this.helper[0]===this.currentItem[0]){for(i in this._storedCSS)"auto"!==this._storedCSS[i]&&"static"!==this._storedCSS[i]||(this._storedCSS[i]="");this.currentItem.css(this._storedCSS),this._removeClass(this.currentItem,"ui-sortable-helper")}else this.currentItem.show();function n(e,i,s){return function(t){s._trigger(e,t,i._uiHash(i))}}for(this.fromOutside&&!e&&s.push(function(t){this._trigger("receive",t,this._uiHash(this.fromOutside))}),!this.fromOutside&&this.domPosition.prev===this.currentItem.prev().not(".ui-sortable-helper")[0]&&this.domPosition.parent===this.currentItem.parent()[0]||e||s.push(function(t){this._trigger("update",t,this._uiHash())}),this!==this.currentContainer&&(e||(s.push(function(t){this._trigger("remove",t,this._uiHash())}),s.push(function(e){return function(t){e._trigger("receive",t,this._uiHash(this))}}.call(this,this.currentContainer)),s.push(function(e){return function(t){e._trigger("update",t,this._uiHash(this))}}.call(this,this.currentContainer)))),i=this.containers.length-1;0<=i;i--)e||s.push(n("deactivate",this,this.containers[i])),this.containers[i].containerCache.over&&(s.push(n("out",this,this.containers[i])),this.containers[i].containerCache.over=0);if(this.storedCursor&&(this.document.find("body").css("cursor",this.storedCursor),this.storedStylesheet.remove()),this._storedOpacity&&this.helper.css("opacity",this._storedOpacity),this._storedZIndex&&this.helper.css("zIndex","auto"===this._storedZIndex?"":this._storedZIndex),this.dragging=!1,e||this._trigger("beforeStop",t,this._uiHash()),this.placeholder[0].parentNode.removeChild(this.placeholder[0]),this.cancelHelperRemoval||(this.helper[0]!==this.currentItem[0]&&this.helper.remove(),this.helper=null),!e){for(i=0;i<s.length;i++)s[i].call(this,t);this._trigger("stop",t,this._uiHash())}return this.fromOutside=!1,!this.cancelHelperRemoval},_trigger:function(){!1===V.Widget.prototype._trigger.apply(this,arguments)&&this.cancel()},_uiHash:function(t){var e=t||this;return{helper:e.helper,placeholder:e.placeholder||V([]),position:e.position,originalPosition:e.originalPosition,offset:e.positionAbs,item:e.currentItem,sender:t?t.element:null}}});function ht(e){return function(){var t=this.element.val();e.apply(this,arguments),this._refresh(),t!==this.element.val()&&this._trigger("change")}}V.widget("ui.spinner",{version:"1.13.2",defaultElement:"<input>",widgetEventPrefix:"spin",options:{classes:{"ui-spinner":"ui-corner-all","ui-spinner-down":"ui-corner-br","ui-spinner-up":"ui-corner-tr"},culture:null,icons:{down:"ui-icon-triangle-1-s",up:"ui-icon-triangle-1-n"},incremental:!0,max:null,min:null,numberFormat:null,page:10,step:1,change:null,spin:null,start:null,stop:null},_create:function(){this._setOption("max",this.options.max),this._setOption("min",this.options.min),this._setOption("step",this.options.step),""!==this.value()&&this._value(this.element.val(),!0),this._draw(),this._on(this._events),this._refresh(),this._on(this.window,{beforeunload:function(){this.element.removeAttr("autocomplete")}})},_getCreateOptions:function(){var s=this._super(),n=this.element;return V.each(["min","max","step"],function(t,e){var i=n.attr(e);null!=i&&i.length&&(s[e]=i)}),s},_events:{keydown:function(t){this._start(t)&&this._keydown(t)&&t.preventDefault()},keyup:"_stop",focus:function(){this.previous=this.element.val()},blur:function(t){this.cancelBlur?delete this.cancelBlur:(this._stop(),this._refresh(),this.previous!==this.element.val()&&this._trigger("change",t))},mousewheel:function(t,e){var i=V.ui.safeActiveElement(this.document[0]);if(this.element[0]===i&&e){if(!this.spinning&&!this._start(t))return!1;this._spin((0<e?1:-1)*this.options.step,t),clearTimeout(this.mousewheelTimer),this.mousewheelTimer=this._delay(function(){this.spinning&&this._stop(t)},100),t.preventDefault()}},"mousedown .ui-spinner-button":function(t){var e;function i(){this.element[0]===V.ui.safeActiveElement(this.document[0])||(this.element.trigger("focus"),this.previous=e,this._delay(function(){this.previous=e}))}e=this.element[0]===V.ui.safeActiveElement(this.document[0])?this.previous:this.element.val(),t.preventDefault(),i.call(this),this.cancelBlur=!0,this._delay(function(){delete this.cancelBlur,i.call(this)}),!1!==this._start(t)&&this._repeat(null,V(t.currentTarget).hasClass("ui-spinner-up")?1:-1,t)},"mouseup .ui-spinner-button":"_stop","mouseenter .ui-spinner-button":function(t){if(V(t.currentTarget).hasClass("ui-state-active"))return!1!==this._start(t)&&void this._repeat(null,V(t.currentTarget).hasClass("ui-spinner-up")?1:-1,t)},"mouseleave .ui-spinner-button":"_stop"},_enhance:function(){this.uiSpinner=this.element.attr("autocomplete","off").wrap("<span>").parent().append("<a></a><a></a>")},_draw:function(){this._enhance(),this._addClass(this.uiSpinner,"ui-spinner","ui-widget ui-widget-content"),this._addClass("ui-spinner-input"),this.element.attr("role","spinbutton"),this.buttons=this.uiSpinner.children("a").attr("tabIndex",-1).attr("aria-hidden",!0).button({classes:{"ui-button":""}}),this._removeClass(this.buttons,"ui-corner-all"),this._addClass(this.buttons.first(),"ui-spinner-button ui-spinner-up"),this._addClass(this.buttons.last(),"ui-spinner-button ui-spinner-down"),this.buttons.first().button({icon:this.options.icons.up,showLabel:!1}),this.buttons.last().button({icon:this.options.icons.down,showLabel:!1}),this.buttons.height()>Math.ceil(.5*this.uiSpinner.height())&&0<this.uiSpinner.height()&&this.uiSpinner.height(this.uiSpinner.height())},_keydown:function(t){var e=this.options,i=V.ui.keyCode;switch(t.keyCode){case i.UP:return this._repeat(null,1,t),!0;case i.DOWN:return this._repeat(null,-1,t),!0;case i.PAGE_UP:return this._repeat(null,e.page,t),!0;case i.PAGE_DOWN:return this._repeat(null,-e.page,t),!0}return!1},_start:function(t){return!(!this.spinning&&!1===this._trigger("start",t))&&(this.counter||(this.counter=1),this.spinning=!0)},_repeat:function(t,e,i){t=t||500,clearTimeout(this.timer),this.timer=this._delay(function(){this._repeat(40,e,i)},t),this._spin(e*this.options.step,i)},_spin:function(t,e){var i=this.value()||0;this.counter||(this.counter=1),i=this._adjustValue(i+t*this._increment(this.counter)),this.spinning&&!1===this._trigger("spin",e,{value:i})||(this._value(i),this.counter++)},_increment:function(t){var e=this.options.incremental;return e?"function"==typeof e?e(t):Math.floor(t*t*t/5e4-t*t/500+17*t/200+1):1},_precision:function(){var t=this._precisionOf(this.options.step);return t=null!==this.options.min?Math.max(t,this._precisionOf(this.options.min)):t},_precisionOf:function(t){var e=t.toString(),t=e.indexOf(".");return-1===t?0:e.length-t-1},_adjustValue:function(t){var e=this.options,i=null!==e.min?e.min:0,s=t-i;return t=i+Math.round(s/e.step)*e.step,t=parseFloat(t.toFixed(this._precision())),null!==e.max&&t>e.max?e.max:null!==e.min&&t<e.min?e.min:t},_stop:function(t){this.spinning&&(clearTimeout(this.timer),clearTimeout(this.mousewheelTimer),this.counter=0,this.spinning=!1,this._trigger("stop",t))},_setOption:function(t,e){var i;if("culture"===t||"numberFormat"===t)return i=this._parse(this.element.val()),this.options[t]=e,void this.element.val(this._format(i));"max"!==t&&"min"!==t&&"step"!==t||"string"==typeof e&&(e=this._parse(e)),"icons"===t&&(i=this.buttons.first().find(".ui-icon"),this._removeClass(i,null,this.options.icons.up),this._addClass(i,null,e.up),i=this.buttons.last().find(".ui-icon"),this._removeClass(i,null,this.options.icons.down),this._addClass(i,null,e.down)),this._super(t,e)},_setOptionDisabled:function(t){this._super(t),this._toggleClass(this.uiSpinner,null,"ui-state-disabled",!!t),this.element.prop("disabled",!!t),this.buttons.button(t?"disable":"enable")},_setOptions:ht(function(t){this._super(t)}),_parse:function(t){return""===(t="string"==typeof t&&""!==t?window.Globalize&&this.options.numberFormat?Globalize.parseFloat(t,10,this.options.culture):+t:t)||isNaN(t)?null:t},_format:function(t){return""===t?"":window.Globalize&&this.options.numberFormat?Globalize.format(t,this.options.numberFormat,this.options.culture):t},_refresh:function(){this.element.attr({"aria-valuemin":this.options.min,"aria-valuemax":this.options.max,"aria-valuenow":this._parse(this.element.val())})},isValid:function(){var t=this.value();return null!==t&&t===this._adjustValue(t)},_value:function(t,e){var i;""!==t&&null!==(i=this._parse(t))&&(e||(i=this._adjustValue(i)),t=this._format(i)),this.element.val(t),this._refresh()},_destroy:function(){this.element.prop("disabled",!1).removeAttr("autocomplete role aria-valuemin aria-valuemax aria-valuenow"),this.uiSpinner.replaceWith(this.element)},stepUp:ht(function(t){this._stepUp(t)}),_stepUp:function(t){this._start()&&(this._spin((t||1)*this.options.step),this._stop())},stepDown:ht(function(t){this._stepDown(t)}),_stepDown:function(t){this._start()&&(this._spin((t||1)*-this.options.step),this._stop())},pageUp:ht(function(t){this._stepUp((t||1)*this.options.page)}),pageDown:ht(function(t){this._stepDown((t||1)*this.options.page)}),value:function(t){if(!arguments.length)return this._parse(this.element.val());ht(this._value).call(this,t)},widget:function(){return this.uiSpinner}}),!1!==V.uiBackCompat&&V.widget("ui.spinner",V.ui.spinner,{_enhance:function(){this.uiSpinner=this.element.attr("autocomplete","off").wrap(this._uiSpinnerHtml()).parent().append(this._buttonHtml())},_uiSpinnerHtml:function(){return"<span>"},_buttonHtml:function(){return"<a></a><a></a>"}});var ct;V.ui.spinner;V.widget("ui.tabs",{version:"1.13.2",delay:300,options:{active:null,classes:{"ui-tabs":"ui-corner-all","ui-tabs-nav":"ui-corner-all","ui-tabs-panel":"ui-corner-bottom","ui-tabs-tab":"ui-corner-top"},collapsible:!1,event:"click",heightStyle:"content",hide:null,show:null,activate:null,beforeActivate:null,beforeLoad:null,load:null},_isLocal:(ct=/#.*$/,function(t){var e=t.href.replace(ct,""),i=location.href.replace(ct,"");try{e=decodeURIComponent(e)}catch(t){}try{i=decodeURIComponent(i)}catch(t){}return 1<t.hash.length&&e===i}),_create:function(){var e=this,t=this.options;this.running=!1,this._addClass("ui-tabs","ui-widget ui-widget-content"),this._toggleClass("ui-tabs-collapsible",null,t.collapsible),this._processTabs(),t.active=this._initialActive(),Array.isArray(t.disabled)&&(t.disabled=V.uniqueSort(t.disabled.concat(V.map(this.tabs.filter(".ui-state-disabled"),function(t){return e.tabs.index(t)}))).sort()),!1!==this.options.active&&this.anchors.length?this.active=this._findActive(t.active):this.active=V(),this._refresh(),this.active.length&&this.load(t.active)},_initialActive:function(){var i=this.options.active,t=this.options.collapsible,s=location.hash.substring(1);return null===i&&(s&&this.tabs.each(function(t,e){if(V(e).attr("aria-controls")===s)return i=t,!1}),null!==(i=null===i?this.tabs.index(this.tabs.filter(".ui-tabs-active")):i)&&-1!==i||(i=!!this.tabs.length&&0)),!1!==i&&-1===(i=this.tabs.index(this.tabs.eq(i)))&&(i=!t&&0),i=!t&&!1===i&&this.anchors.length?0:i},_getCreateEventData:function(){return{tab:this.active,panel:this.active.length?this._getPanelForTab(this.active):V()}},_tabKeydown:function(t){var e=V(V.ui.safeActiveElement(this.document[0])).closest("li"),i=this.tabs.index(e),s=!0;if(!this._handlePageNav(t)){switch(t.keyCode){case V.ui.keyCode.RIGHT:case V.ui.keyCode.DOWN:i++;break;case V.ui.keyCode.UP:case V.ui.keyCode.LEFT:s=!1,i--;break;case V.ui.keyCode.END:i=this.anchors.length-1;break;case V.ui.keyCode.HOME:i=0;break;case V.ui.keyCode.SPACE:return t.preventDefault(),clearTimeout(this.activating),void this._activate(i);case V.ui.keyCode.ENTER:return t.preventDefault(),clearTimeout(this.activating),void this._activate(i!==this.options.active&&i);default:return}t.preventDefault(),clearTimeout(this.activating),i=this._focusNextTab(i,s),t.ctrlKey||t.metaKey||(e.attr("aria-selected","false"),this.tabs.eq(i).attr("aria-selected","true"),this.activating=this._delay(function(){this.option("active",i)},this.delay))}},_panelKeydown:function(t){this._handlePageNav(t)||t.ctrlKey&&t.keyCode===V.ui.keyCode.UP&&(t.preventDefault(),this.active.trigger("focus"))},_handlePageNav:function(t){return t.altKey&&t.keyCode===V.ui.keyCode.PAGE_UP?(this._activate(this._focusNextTab(this.options.active-1,!1)),!0):t.altKey&&t.keyCode===V.ui.keyCode.PAGE_DOWN?(this._activate(this._focusNextTab(this.options.active+1,!0)),!0):void 0},_findNextTab:function(t,e){var i=this.tabs.length-1;for(;-1!==V.inArray(t=(t=i<t?0:t)<0?i:t,this.options.disabled);)t=e?t+1:t-1;return t},_focusNextTab:function(t,e){return t=this._findNextTab(t,e),this.tabs.eq(t).trigger("focus"),t},_setOption:function(t,e){"active"!==t?(this._super(t,e),"collapsible"===t&&(this._toggleClass("ui-tabs-collapsible",null,e),e||!1!==this.options.active||this._activate(0)),"event"===t&&this._setupEvents(e),"heightStyle"===t&&this._setupHeightStyle(e)):this._activate(e)},_sanitizeSelector:function(t){return t?t.replace(/[!"$%&'()*+,.\/:;<=>?@\[\]\^`{|}~]/g,"\\$&"):""},refresh:function(){var t=this.options,e=this.tablist.children(":has(a[href])");t.disabled=V.map(e.filter(".ui-state-disabled"),function(t){return e.index(t)}),this._processTabs(),!1!==t.active&&this.anchors.length?this.active.length&&!V.contains(this.tablist[0],this.active[0])?this.tabs.length===t.disabled.length?(t.active=!1,this.active=V()):this._activate(this._findNextTab(Math.max(0,t.active-1),!1)):t.active=this.tabs.index(this.active):(t.active=!1,this.active=V()),this._refresh()},_refresh:function(){this._setOptionDisabled(this.options.disabled),this._setupEvents(this.options.event),this._setupHeightStyle(this.options.heightStyle),this.tabs.not(this.active).attr({"aria-selected":"false","aria-expanded":"false",tabIndex:-1}),this.panels.not(this._getPanelForTab(this.active)).hide().attr({"aria-hidden":"true"}),this.active.length?(this.active.attr({"aria-selected":"true","aria-expanded":"true",tabIndex:0}),this._addClass(this.active,"ui-tabs-active","ui-state-active"),this._getPanelForTab(this.active).show().attr({"aria-hidden":"false"})):this.tabs.eq(0).attr("tabIndex",0)},_processTabs:function(){var l=this,t=this.tabs,e=this.anchors,i=this.panels;this.tablist=this._getList().attr("role","tablist"),this._addClass(this.tablist,"ui-tabs-nav","ui-helper-reset ui-helper-clearfix ui-widget-header"),this.tablist.on("mousedown"+this.eventNamespace,"> li",function(t){V(this).is(".ui-state-disabled")&&t.preventDefault()}).on("focus"+this.eventNamespace,".ui-tabs-anchor",function(){V(this).closest("li").is(".ui-state-disabled")&&this.blur()}),this.tabs=this.tablist.find("> li:has(a[href])").attr({role:"tab",tabIndex:-1}),this._addClass(this.tabs,"ui-tabs-tab","ui-state-default"),this.anchors=this.tabs.map(function(){return V("a",this)[0]}).attr({tabIndex:-1}),this._addClass(this.anchors,"ui-tabs-anchor"),this.panels=V(),this.anchors.each(function(t,e){var i,s,n,o=V(e).uniqueId().attr("id"),a=V(e).closest("li"),r=a.attr("aria-controls");l._isLocal(e)?(n=(i=e.hash).substring(1),s=l.element.find(l._sanitizeSelector(i))):(n=a.attr("aria-controls")||V({}).uniqueId()[0].id,(s=l.element.find(i="#"+n)).length||(s=l._createPanel(n)).insertAfter(l.panels[t-1]||l.tablist),s.attr("aria-live","polite")),s.length&&(l.panels=l.panels.add(s)),r&&a.data("ui-tabs-aria-controls",r),a.attr({"aria-controls":n,"aria-labelledby":o}),s.attr("aria-labelledby",o)}),this.panels.attr("role","tabpanel"),this._addClass(this.panels,"ui-tabs-panel","ui-widget-content"),t&&(this._off(t.not(this.tabs)),this._off(e.not(this.anchors)),this._off(i.not(this.panels)))},_getList:function(){return this.tablist||this.element.find("ol, ul").eq(0)},_createPanel:function(t){return V("<div>").attr("id",t).data("ui-tabs-destroy",!0)},_setOptionDisabled:function(t){var e,i;for(Array.isArray(t)&&(t.length?t.length===this.anchors.length&&(t=!0):t=!1),i=0;e=this.tabs[i];i++)e=V(e),!0===t||-1!==V.inArray(i,t)?(e.attr("aria-disabled","true"),this._addClass(e,null,"ui-state-disabled")):(e.removeAttr("aria-disabled"),this._removeClass(e,null,"ui-state-disabled"));this.options.disabled=t,this._toggleClass(this.widget(),this.widgetFullName+"-disabled",null,!0===t)},_setupEvents:function(t){var i={};t&&V.each(t.split(" "),function(t,e){i[e]="_eventHandler"}),this._off(this.anchors.add(this.tabs).add(this.panels)),this._on(!0,this.anchors,{click:function(t){t.preventDefault()}}),this._on(this.anchors,i),this._on(this.tabs,{keydown:"_tabKeydown"}),this._on(this.panels,{keydown:"_panelKeydown"}),this._focusable(this.tabs),this._hoverable(this.tabs)},_setupHeightStyle:function(t){var i,e=this.element.parent();"fill"===t?(i=e.height(),i-=this.element.outerHeight()-this.element.height(),this.element.siblings(":visible").each(function(){var t=V(this),e=t.css("position");"absolute"!==e&&"fixed"!==e&&(i-=t.outerHeight(!0))}),this.element.children().not(this.panels).each(function(){i-=V(this).outerHeight(!0)}),this.panels.each(function(){V(this).height(Math.max(0,i-V(this).innerHeight()+V(this).height()))}).css("overflow","auto")):"auto"===t&&(i=0,this.panels.each(function(){i=Math.max(i,V(this).height("").height())}).height(i))},_eventHandler:function(t){var e=this.options,i=this.active,s=V(t.currentTarget).closest("li"),n=s[0]===i[0],o=n&&e.collapsible,a=o?V():this._getPanelForTab(s),r=i.length?this._getPanelForTab(i):V(),i={oldTab:i,oldPanel:r,newTab:o?V():s,newPanel:a};t.preventDefault(),s.hasClass("ui-state-disabled")||s.hasClass("ui-tabs-loading")||this.running||n&&!e.collapsible||!1===this._trigger("beforeActivate",t,i)||(e.active=!o&&this.tabs.index(s),this.active=n?V():s,this.xhr&&this.xhr.abort(),r.length||a.length||V.error("jQuery UI Tabs: Mismatching fragment identifier."),a.length&&this.load(this.tabs.index(s),t),this._toggle(t,i))},_toggle:function(t,e){var i=this,s=e.newPanel,n=e.oldPanel;function o(){i.running=!1,i._trigger("activate",t,e)}function a(){i._addClass(e.newTab.closest("li"),"ui-tabs-active","ui-state-active"),s.length&&i.options.show?i._show(s,i.options.show,o):(s.show(),o())}this.running=!0,n.length&&this.options.hide?this._hide(n,this.options.hide,function(){i._removeClass(e.oldTab.closest("li"),"ui-tabs-active","ui-state-active"),a()}):(this._removeClass(e.oldTab.closest("li"),"ui-tabs-active","ui-state-active"),n.hide(),a()),n.attr("aria-hidden","true"),e.oldTab.attr({"aria-selected":"false","aria-expanded":"false"}),s.length&&n.length?e.oldTab.attr("tabIndex",-1):s.length&&this.tabs.filter(function(){return 0===V(this).attr("tabIndex")}).attr("tabIndex",-1),s.attr("aria-hidden","false"),e.newTab.attr({"aria-selected":"true","aria-expanded":"true",tabIndex:0})},_activate:function(t){var t=this._findActive(t);t[0]!==this.active[0]&&(t=(t=!t.length?this.active:t).find(".ui-tabs-anchor")[0],this._eventHandler({target:t,currentTarget:t,preventDefault:V.noop}))},_findActive:function(t){return!1===t?V():this.tabs.eq(t)},_getIndex:function(t){return t="string"==typeof t?this.anchors.index(this.anchors.filter("[href$='"+V.escapeSelector(t)+"']")):t},_destroy:function(){this.xhr&&this.xhr.abort(),this.tablist.removeAttr("role").off(this.eventNamespace),this.anchors.removeAttr("role tabIndex").removeUniqueId(),this.tabs.add(this.panels).each(function(){V.data(this,"ui-tabs-destroy")?V(this).remove():V(this).removeAttr("role tabIndex aria-live aria-busy aria-selected aria-labelledby aria-hidden aria-expanded")}),this.tabs.each(function(){var t=V(this),e=t.data("ui-tabs-aria-controls");e?t.attr("aria-controls",e).removeData("ui-tabs-aria-controls"):t.removeAttr("aria-controls")}),this.panels.show(),"content"!==this.options.heightStyle&&this.panels.css("height","")},enable:function(i){var t=this.options.disabled;!1!==t&&(t=void 0!==i&&(i=this._getIndex(i),Array.isArray(t)?V.map(t,function(t){return t!==i?t:null}):V.map(this.tabs,function(t,e){return e!==i?e:null})),this._setOptionDisabled(t))},disable:function(t){var e=this.options.disabled;if(!0!==e){if(void 0===t)e=!0;else{if(t=this._getIndex(t),-1!==V.inArray(t,e))return;e=Array.isArray(e)?V.merge([t],e).sort():[t]}this._setOptionDisabled(e)}},load:function(t,s){t=this._getIndex(t);function n(t,e){"abort"===e&&o.panels.stop(!1,!0),o._removeClass(i,"ui-tabs-loading"),a.removeAttr("aria-busy"),t===o.xhr&&delete o.xhr}var o=this,i=this.tabs.eq(t),t=i.find(".ui-tabs-anchor"),a=this._getPanelForTab(i),r={tab:i,panel:a};this._isLocal(t[0])||(this.xhr=V.ajax(this._ajaxSettings(t,s,r)),this.xhr&&"canceled"!==this.xhr.statusText&&(this._addClass(i,"ui-tabs-loading"),a.attr("aria-busy","true"),this.xhr.done(function(t,e,i){setTimeout(function(){a.html(t),o._trigger("load",s,r),n(i,e)},1)}).fail(function(t,e){setTimeout(function(){n(t,e)},1)})))},_ajaxSettings:function(t,i,s){var n=this;return{url:t.attr("href").replace(/#.*$/,""),beforeSend:function(t,e){return n._trigger("beforeLoad",i,V.extend({jqXHR:t,ajaxSettings:e},s))}}},_getPanelForTab:function(t){t=V(t).attr("aria-controls");return this.element.find(this._sanitizeSelector("#"+t))}}),!1!==V.uiBackCompat&&V.widget("ui.tabs",V.ui.tabs,{_processTabs:function(){this._superApply(arguments),this._addClass(this.tabs,"ui-tab")}});V.ui.tabs;V.widget("ui.tooltip",{version:"1.13.2",options:{classes:{"ui-tooltip":"ui-corner-all ui-widget-shadow"},content:function(){var t=V(this).attr("title");return V("<a>").text(t).html()},hide:!0,items:"[title]:not([disabled])",position:{my:"left top+15",at:"left bottom",collision:"flipfit flip"},show:!0,track:!1,close:null,open:null},_addDescribedBy:function(t,e){var i=(t.attr("aria-describedby")||"").split(/\s+/);i.push(e),t.data("ui-tooltip-id",e).attr("aria-describedby",String.prototype.trim.call(i.join(" ")))},_removeDescribedBy:function(t){var e=t.data("ui-tooltip-id"),i=(t.attr("aria-describedby")||"").split(/\s+/),e=V.inArray(e,i);-1!==e&&i.splice(e,1),t.removeData("ui-tooltip-id"),(i=String.prototype.trim.call(i.join(" ")))?t.attr("aria-describedby",i):t.removeAttr("aria-describedby")},_create:function(){this._on({mouseover:"open",focusin:"open"}),this.tooltips={},this.parents={},this.liveRegion=V("<div>").attr({role:"log","aria-live":"assertive","aria-relevant":"additions"}).appendTo(this.document[0].body),this._addClass(this.liveRegion,null,"ui-helper-hidden-accessible"),this.disabledTitles=V([])},_setOption:function(t,e){var i=this;this._super(t,e),"content"===t&&V.each(this.tooltips,function(t,e){i._updateContent(e.element)})},_setOptionDisabled:function(t){this[t?"_disable":"_enable"]()},_disable:function(){var s=this;V.each(this.tooltips,function(t,e){var i=V.Event("blur");i.target=i.currentTarget=e.element[0],s.close(i,!0)}),this.disabledTitles=this.disabledTitles.add(this.element.find(this.options.items).addBack().filter(function(){var t=V(this);if(t.is("[title]"))return t.data("ui-tooltip-title",t.attr("title")).removeAttr("title")}))},_enable:function(){this.disabledTitles.each(function(){var t=V(this);t.data("ui-tooltip-title")&&t.attr("title",t.data("ui-tooltip-title"))}),this.disabledTitles=V([])},open:function(t){var i=this,e=V(t?t.target:this.element).closest(this.options.items);e.length&&!e.data("ui-tooltip-id")&&(e.attr("title")&&e.data("ui-tooltip-title",e.attr("title")),e.data("ui-tooltip-open",!0),t&&"mouseover"===t.type&&e.parents().each(function(){var t,e=V(this);e.data("ui-tooltip-open")&&((t=V.Event("blur")).target=t.currentTarget=this,i.close(t,!0)),e.attr("title")&&(e.uniqueId(),i.parents[this.id]={element:this,title:e.attr("title")},e.attr("title",""))}),this._registerCloseHandlers(t,e),this._updateContent(e,t))},_updateContent:function(e,i){var t=this.options.content,s=this,n=i?i.type:null;if("string"==typeof t||t.nodeType||t.jquery)return this._open(i,e,t);(t=t.call(e[0],function(t){s._delay(function(){e.data("ui-tooltip-open")&&(i&&(i.type=n),this._open(i,e,t))})}))&&this._open(i,e,t)},_open:function(t,e,i){var s,n,o,a=V.extend({},this.options.position);function r(t){a.of=t,n.is(":hidden")||n.position(a)}i&&((s=this._find(e))?s.tooltip.find(".ui-tooltip-content").html(i):(e.is("[title]")&&(t&&"mouseover"===t.type?e.attr("title",""):e.removeAttr("title")),s=this._tooltip(e),n=s.tooltip,this._addDescribedBy(e,n.attr("id")),n.find(".ui-tooltip-content").html(i),this.liveRegion.children().hide(),(i=V("<div>").html(n.find(".ui-tooltip-content").html())).removeAttr("name").find("[name]").removeAttr("name"),i.removeAttr("id").find("[id]").removeAttr("id"),i.appendTo(this.liveRegion),this.options.track&&t&&/^mouse/.test(t.type)?(this._on(this.document,{mousemove:r}),r(t)):n.position(V.extend({of:e},this.options.position)),n.hide(),this._show(n,this.options.show),this.options.track&&this.options.show&&this.options.show.delay&&(o=this.delayedShow=setInterval(function(){n.is(":visible")&&(r(a.of),clearInterval(o))},13)),this._trigger("open",t,{tooltip:n})))},_registerCloseHandlers:function(t,e){var i={keyup:function(t){t.keyCode===V.ui.keyCode.ESCAPE&&((t=V.Event(t)).currentTarget=e[0],this.close(t,!0))}};e[0]!==this.element[0]&&(i.remove=function(){var t=this._find(e);t&&this._removeTooltip(t.tooltip)}),t&&"mouseover"!==t.type||(i.mouseleave="close"),t&&"focusin"!==t.type||(i.focusout="close"),this._on(!0,e,i)},close:function(t){var e,i=this,s=V(t?t.currentTarget:this.element),n=this._find(s);n?(e=n.tooltip,n.closing||(clearInterval(this.delayedShow),s.data("ui-tooltip-title")&&!s.attr("title")&&s.attr("title",s.data("ui-tooltip-title")),this._removeDescribedBy(s),n.hiding=!0,e.stop(!0),this._hide(e,this.options.hide,function(){i._removeTooltip(V(this))}),s.removeData("ui-tooltip-open"),this._off(s,"mouseleave focusout keyup"),s[0]!==this.element[0]&&this._off(s,"remove"),this._off(this.document,"mousemove"),t&&"mouseleave"===t.type&&V.each(this.parents,function(t,e){V(e.element).attr("title",e.title),delete i.parents[t]}),n.closing=!0,this._trigger("close",t,{tooltip:e}),n.hiding||(n.closing=!1))):s.removeData("ui-tooltip-open")},_tooltip:function(t){var e=V("<div>").attr("role","tooltip"),i=V("<div>").appendTo(e),s=e.uniqueId().attr("id");return this._addClass(i,"ui-tooltip-content"),this._addClass(e,"ui-tooltip","ui-widget ui-widget-content"),e.appendTo(this._appendTo(t)),this.tooltips[s]={element:t,tooltip:e}},_find:function(t){t=t.data("ui-tooltip-id");return t?this.tooltips[t]:null},_removeTooltip:function(t){clearInterval(this.delayedShow),t.remove(),delete this.tooltips[t.attr("id")]},_appendTo:function(t){t=t.closest(".ui-front, dialog");return t=!t.length?this.document[0].body:t},_destroy:function(){var s=this;V.each(this.tooltips,function(t,e){var i=V.Event("blur"),e=e.element;i.target=i.currentTarget=e[0],s.close(i,!0),V("#"+t).remove(),e.data("ui-tooltip-title")&&(e.attr("title")||e.attr("title",e.data("ui-tooltip-title")),e.removeData("ui-tooltip-title"))}),this.liveRegion.remove()}}),!1!==V.uiBackCompat&&V.widget("ui.tooltip",V.ui.tooltip,{options:{tooltipClass:null},_tooltip:function(){var t=this._superApply(arguments);return this.options.tooltipClass&&t.tooltip.addClass(this.options.tooltipClass),t}});V.ui.tooltip});
\ No newline at end of file
diff --git a/oxAuth/Server/src/main/webapp/js/passport.js b/oxAuth/Server/src/main/webapp/js/passport.js
new file mode 100644
index 00000000..954c65c3
--- /dev/null
+++ b/oxAuth/Server/src/main/webapp/js/passport.js
@@ -0,0 +1,33 @@
+var passport = (function () {
+
+  function idp_redirect(provider) {
+    var form = document.forms.loginForm;
+    form["loginForm:provider"].value = provider;
+    form["loginForm:loginPassportButton"].click();
+  }
+
+  function dynamic_link(provider, logo_img, name) {
+    name = name ? name : provider;
+    if (logo_img == null) {
+      logo_img = "/oxauth/img/glu_icon.png"
+    } else if (!logo_img.startsWith("http")) {
+      logo_img = "/oxauth/auth/passport/" + logo_img
+    }
+
+    imgMarkup = '<img alt="' + name
+      + '" onclick="passport.idp_redirect(\'' + provider
+      + '\')" src="' + logo_img + '"></img>';
+    leftMarkup = '<div onclick="passport.idp_redirect(\'' + provider
+      + '\')" class="provider-img">' + imgMarkup + '</div>';
+    $('#listProviders').append(
+      '<div class="row provider ' + provider + '">' + leftMarkup + '</div>');
+  }
+
+
+
+  return {
+    idp_redirect: idp_redirect,
+    dynamic_link: dynamic_link
+  }
+
+})();
diff --git a/oxAuth/Server/src/main/webapp/js/platform.js b/oxAuth/Server/src/main/webapp/js/platform.js
new file mode 100644
index 00000000..2cb42718
--- /dev/null
+++ b/oxAuth/Server/src/main/webapp/js/platform.js
@@ -0,0 +1,14 @@
+/*!
+ * Platform.js <https://mths.be/platform>
+ * Copyright 2014-2018 Benjamin Tan <https://bnjmnt4n.now.sh/>
+ * Copyright 2011-2013 John-David Dalton <http://allyoucanleet.com/>
+ * Available under MIT license <https://mths.be/mit>
+ */
+//Compressed with JS packer: http://dean.edwards.name/packer/
+eval(function(p,a,c,k,e,r){e=function(c){return(c<a?'':e(parseInt(c/a)))+((c=c%a)>35?String.fromCharCode(c+29):c.toString(36))};if(!''.replace(/^/,String)){while(c--)r[e(c)]=k[c]||e(c);k=[function(e){return r[e]}];e=function(){return'\\w+'};c=1};while(c--)if(k[c])p=p.replace(new RegExp('\\b'+e(c)+'\\b','g'),k[c]);return p}(';(1a(){\'4O 4P\';W H={\'1a\':2g,\'1B\':2g};W I=(H[1h 2z]&&2z)||1v;W J=I;W K=H[1h 3h]&&3h;W L=H[1h 2h]&&2h&&!2h.4Q&&2h;W M=K&&L&&1h 1R==\'1B\'&&1R;T(M&&(M.1R===M||M.2z===M||M.4R===M)){I=M}W N=4S.4T(2,53)-1;W O=/\\3i/;W Q=1v;W R=3j.4U;W 2A=R.2A;W 1w=R.1w;1a 2B(a){a=1x(a);1f a.3k(0).4V()+a.1S(1)}1a 3l(a,b,c){W d={\'10.0\':\'10\',\'6.4\':\'10 4W 4X\',\'6.3\':\'8.1\',\'6.2\':\'8\',\'6.1\':\'2C 3m 4Y / 7\',\'6.0\':\'2C 3m / 4Z\',\'5.2\':\'2C 50 / 2D 64-2E\',\'5.1\':\'2D\',\'5.2F\':\'3n 51\',\'5.0\':\'3n\',\'4.0\':\'52\',\'4.54\':\'55\'};T(b&&c&&/^2G/i.V(a)&&!/^1s 1T /i.V(a)&&(d=d[/[\\d.]+$/.Y(a)])){a=\'1s \'+d}a=1x(a);T(b&&c){a=a.1d(1i(b,\'i\'),c)}a=1U(a.1d(/ 56$/i,\' 3o\').1d(/\\57/i,\'58\').1d(/\\59\\b/,\'1V 1g\').1d(/5a\\b/i,\' 1g\').1d(/\\b(1g X) [^ \\d]+/i,\'$1\').1d(/\\5b (1g X)\\b/,\'$1\').1d(/\\/(\\d)/,\' $1\').1d(/1H/g,\'.\').1d(/(?: 5c|[ .]*5d[ \\d.]+)$/i,\'\').1d(/\\5e\\.64\\b/5f,\'5g\').1d(/\\b(1s 1T) 1g\\b/,\'$1\').1d(/\\b(1q 1g \\w+) [\\d.]+\\b/,\'$1\').2i(\' 1W \')[0]);1f a}1a 3p(a,b){W c=-1,1n=a?a.1n:0;T(1h 1n==\'1I\'&&1n>-1&&1n<=N){5h(++c<1n){b(a[c],c,a)}}1b{1X(a,b)}}1a 1U(a){a=2H(a);1f/^(?:2j|i(?:1g|P))/.V(a)?a:2B(a)}1a 1X(a,b){2I(W c 3q a){T(2A.2k(a,c)){b(a[c],c,a)}}}1a 1C(a){1f a==1e?2B(a):1w.2k(a).1S(8,-1)}1a 3r(a,b){W c=a!=1e?1h a[b]:\'1I\';1f!/^(?:5i|1I|2J|5j)$/.V(c)&&(c==\'1B\'?!!a[b]:2g)}1a 1D(a){1f 1x(a).1d(/([ -])(?!$)/g,\'$1?\')}1a 1E(c,d){W e=1e;3p(c,1a(a,b){e=d(e,a,b,c)});1f e}1a 2H(a){1f 1x(a).1d(/^ +| +$/g,\'\')}1a 1J(f){W g=I;W h=f&&1h f==\'1B\'&&1C(f)!=\'1x\';T(h){g=f;f=1e}W i=g.5k||{};W j=i.5l||\'\';f||(f=j);W k=h||Q==J;W l=h?!!i.5m:/\\2l\\b/.V(f)&&!/5n|\\n/i.V(1w.1w());W m=\'3j\',3s=h?m:\'5o\',3t=h?m:\'5p\',3u=(h&&g.2K)?\'5q\':1C(g.2K),3v=h?m:\'5r\';W n=/\\5s/.V(3u)&&g.2K;W o=n&&1C(g.5t)==3t;W p=n?\'a\':\'\\5u\';W q=n?\'b\':\'\\5v\';W r=g.5w||{};W s=g.5x||g.5y;W t=O.V(t=(h&&s)?s[\'[[5z]]\']:1C(s))?t:(s=1e);W u;W v=f;W w=[];W x=1e;W y=f==j;W z=y&&s&&1h s.1o==\'1a\'&&s.1o();W A;W B=3w([{\'14\':\'3x\',\'1c\':\'(?:1K|2L|2M)\'},\'1Y\',{\'14\':\'1L\',\'1c\':\'5A\'},\'2N\',\'2O\',\'2P\',\'3y\',\'5B\',\'5C\']);W C=3z([\'2Q 3A\',\'3B\',\'3C 1M\',\'3D\',\'5D\',\'2R\',\'5E\',\'3E\',\'5F\',\'5G\',\'5H\',\'2N\',\'5I\',\'K-5J\',\'3F\',\'3G\',\'2S\',{\'14\':\'3H 1K\',\'1c\':\'(?:1K|2L|2M)\'},\'2T\',\'1Z 1M\',\'3I\',\'3J\',\'3K\',\'3L\',\'5K\',{\'14\':\'2U 3M\',\'1c\':\'3N\'},\'5L\',{\'14\':\'22\',\'1c\':\'(?:2V|22-2W)\'},\'3O\',\'5M\',{\'14\':\'5N 2X\',\'1c\':\'2X\'},\'5O\',\'5P\',\'5Q\',\'5R\',\'1r 29\',{\'14\':\'1r 29\',\'1c\':\'3P\'},\'1r\',{\'14\':\'1r\',\'1c\':\'3Q\'},\'1q\',{\'14\':\'1q 1y\',\'1c\':\'(?:3R|3S)\'},{\'14\':\'1j\',\'1c\':\'(?:1j|3T)\'},{\'14\':\'1j 2I 2m\',\'1c\':\'3U\'},{\'14\':\'1k\',\'1c\':\'3V\'},{\'14\':\'1k\',\'1c\':\'3W\'},\'1t\']);W D=2Y([{\'14\':\'2n\',\'1c\':\'3X\'},\'2n\',{\'14\':\'1l S\',\'1c\':\'2o-5S\'},{\'14\':\'1l 3Y\',\'1c\':\'2o-5T\'},{\'14\':\'1l 3Z\',\'1c\':\'2o-5U\'},{\'14\':\'1l 40\',\'1c\':\'2o-5V\'},{\'14\':\'1l 5W\',\'1c\':\'2a-5X\'},{\'14\':\'1l 41\',\'1c\':\'2a-5Y\'},{\'14\':\'1l 41 1K\',\'1c\':\'2a-5Z\'},{\'14\':\'1l 42\',\'1c\':\'2a-60\'},{\'14\':\'1l 42 1K\',\'1c\':\'2a-61\'},\'2p 2q\',\'43\',\'44\',\'46\',\'2r\',\'2s\',{\'14\':\'2s 47\',\'1c\':\'(?:2V|22-2W)\'},\'48\',\'1Z\',\'49\',\'2t 2Z\',\'2t\',\'4a\',\'4b\',{\'14\':\'2b U\',\'1c\':\'62\'},\'2b\',\'1F 4c\',{\'14\':\'1F 31\',\'1c\':\'1F\'},\'4d\']);W E=4e({\'4f\':{\'44\':1,\'2r\':1,\'46\':1},\'63\':{},\'65\':{\'2s\':1,\'2s 47\':1},\'66\':{\'4b\':1},\'67 & 68\':{\'1Z\':1},\'2n\':{\'49\':1},\'2p\':{\'2p 2q\':1,\'48\':1},\'69\':{\'4a\':1},\'6a\':{},\'6b\':{},\'3H\':{\'1F\':1,\'1F 4c\':1},\'6c\':{\'4d\':1},\'6d\':{\'2b U\':1,\'2b\':1},\'6e\':{\'43\':1},\'2U\':{\'1l S\':1,\'1l 3Y\':1,\'1l 3Z\':1,\'1l 40\':1},\'6f\':{\'2t\':1,\'2t 2Z\':1}});W F=4g([\'1s 1T\',\'1N\',\'6g\',{\'14\':\'1q 1g\',\'1c\':\'6h\'},\'6i\',\'6j\',\'6k\',\'6l\',\'6m\',\'4h\',\'4i 6n\',\'6o\',\'6p 4j\',\'6q\',\'6r\',\'6s\',\'6t\',\'4k 1g\',\'6u\',\'2j \',\'2j\',\'33 1g\',\'6v\',\'4i\',\'1V 1g X\',\'6w\',\'1V\',\'1s 6x;\',\'1s \']);1a 3w(c){1f 1E(c,1a(a,b){1f a||1i(\'\\\\b\'+(b.1c||1D(b))+\'\\\\b\',\'i\').Y(f)&&(b.14||b)})}1a 4e(d){1f 1E(d,1a(a,b,c){1f a||(b[D]||b[/^[a-z]+(?: +[a-z]+\\b)*/i.Y(D)]||1i(\'\\\\b\'+1D(c)+\'(?:\\\\b|\\\\w*\\\\d)\',\'i\').Y(f))&&c})}1a 3z(c){1f 1E(c,1a(a,b){1f a||1i(\'\\\\b\'+(b.1c||1D(b))+\'\\\\b\',\'i\').Y(f)&&(b.14||b)})}1a 4g(d){1f 1E(d,1a(a,b){W c=b.1c||1D(b);T(!a&&(a=1i(\'\\\\b\'+c+\'(?:/[\\\\d.]+|[ \\\\w.]*)\',\'i\').Y(f))){a=3l(a,c,b.14||b)}1f a})}1a 2Y(d){1f 1E(d,1a(a,b){W c=b.1c||1D(b);T(!a&&(a=1i(\'\\\\b\'+c+\' *\\\\d+[.\\\\6y]*\',\'i\').Y(f)||1i(\'\\\\b\'+c+\' *\\\\w+-[\\\\w]*\',\'i\').Y(f)||1i(\'\\\\b\'+c+\'(?:; *(?:[a-z]+[1H-])?[a-z]+\\\\d+|[^ ();-]*)\',\'i\').Y(f))){T((a=1x((b.14&&!1i(c,\'i\').V(b.14))?b.14:a).2i(\'/\'))[1]&&!/[\\d.]+/.V(a[0])){a[0]+=\' \'+a[1]}b=b.14||b;a=1U(a[0].1d(1i(c,\'i\'),b).1d(1i(\'; *(?:\'+b+\'[1H-])?\',\'i\'),\' \').1d(1i(\'(\'+b+\')[-1H.]?(\\\\w)\',\'i\'),\'$1 $2\'))}1f a})}1a 4l(c){1f 1E(c,1a(a,b){1f a||(1i(b+\'(?:-[\\\\d.]+/|(?: 2I [\\\\w-]+)?[ /-])([\\\\d.]+[^ ();/1H-]*)\',\'i\').Y(f)||0)[1]||1e})}1a 4m(){1f 1v.34||\'\'}B&&(B=[B]);T(E&&!D){D=2Y([E])}T((u=/\\6z 2q\\b/.Y(D))){D=u[0]}T(/\\6A\\b/i.V(f)){D=(D?D+\' \':\'\')+\'6B\'}T(C==\'1r 29\'&&/\\6C\\b/.V(f)){w.1m(\'6D 3q 6E/6F 1z\')}T(C==\'1k\'&&/\\6G 2r 1g\\b/.V(f)){u=1J(f.1d(/35 2r 1g/,\'\'));E=u.4n;D=u.4o}1b T(/^6H/.V(D)){C||(C=\'1t\');F=\'2m\'+((u=/ 1g ([\\6I]+)/i.Y(f))?\' \'+u[1].1d(/1H/g,\'.\'):\'\')}1b T(C==\'3F\'&&!/6J/i.V(F)){F=\'4h\'}1b T((E&&E!=\'2p\'&&((/1q/.V(C)&&!/\\6K 1t\\b/i.V(f))||/\\6L\\b/.V(D)))||(/\\37\\b/.V(F)&&/^1q/.V(C)&&/\\6M\\//i.V(f))){C=\'1N 1M\';F=/\\37\\b/.V(F)?F:\'1N\'}1b T(C==\'22\'){T(!/\\6N/i.V(f)){F=\'1N\';w.1p(\'2c 1z\')}T(/2W *= *2g/i.V(f)){w.1p(\'6O\')}}1b T(C==\'3I\'&&(u=/\\6P\\/([\\d.]+)\\b/.Y(f))){w.1m(\'4p 2u 1j \'+u[1])}1b T(C==\'1j\'&&(u=/\\b(1y|33|2q)\\b/i.Y(f))){F||(F=\'1j 1g\');D||(D=u[1])}1b T(!C||(u=!/\\4q\\b/i.V(f)&&/\\b(?:1j|1t)\\b/.Y(C))){T(C&&!D&&/[\\/,]|^[^(]+?\\)/.V(f.1S(f.2v(u+\'/\')+8))){C=1e}T((u=D||E||F)&&(D||E||/\\b(?:1N|4k 1g|33 1g|2j)\\b/.V(F))){C=/[a-z]+(?: 4j)?/i.Y(/\\37\\b/.V(F)?F:u)+\' 1M\'}}1b T(C==\'2R\'&&(u=(/\\2l\\/([\\d.]+)\\b/.Y(f)||0)[1])){w.1m(\'4r \'+u)}T(!z){z=4l([\'(?:2V|3R|3S|1K|2L|2M|3U|3V|2X|1r ?29|3P|3Q|3K|3N|22(?!/[\\\\d.]+$))\',\'6Q\',1D(C),\'(?:1j|3T|2P)\'])}T((u=B==\'2N\'&&2w(z)>3&&\'1L\'||/\\3i\\b/.V(C)&&(/\\6R\\b/.V(f)?\'38\':\'2O\')||/\\b(?:2T|1Z|1t)\\b/i.V(f)&&!/^(?:1Y|3x)$/.V(B)&&\'1L\'||!B&&/\\6S\\b/i.V(f)&&(F==\'1V 1g\'?\'3y\':\'1Y\')||B==\'1L\'&&/\\6T\\b(?! 2Z\\b)/i.V(C)&&\'2P\')){B=[u]}T(C==\'1k\'&&(u=(/; *(?:6U|6V)(\\d+)/i.Y(f)||0)[1])){C+=\' 1y\';F=\'1s 1T \'+(/\\+$/.V(u)?u:u+\'.x\');w.1p(\'2c 1z\')}1b T(/\\6W\\b/i.V(f)){C=\'1k 1y\';F=\'1s 1T 8.x\';w.1p(\'2c 1z\');z||(z=(/\\4s:([\\d.]+)/.Y(f)||0)[1])}1b T(C!=\'1k\'&&B==\'1Y\'&&(u=/\\4s:([\\d.]+)/.Y(f))){T(C){w.1m(\'4p 2u \'+C+(z?\' \'+z:\'\'))}C=\'1k\';z=u[1]}T(y){T(3r(g,\'1R\')){T(n){u=n.6X.6Y;v=u.3a(\'1O.4t\');F=F||u.3a(\'1O.2d\')+\' \'+u.3a(\'1O.1o\')}T(o){4u{z=g.6Z(\'70/71\').1o.3b(\'.\');C=\'72\'}4v(e){T((u=g.2x)&&u.1R.2x==g.2x){C=\'73\';F||(F=u[0].1O||1e)}}T(!C){C=\'74\'}}1b T(1h g.3c==\'1B\'&&!g.3c.75&&(u=g.3c)){T(1h u.1G==\'1B\'){T(1h u.1G.4w==\'2J\'){w.1m(\'3d \'+u.1G.4x);C=\'2R\';z=u.1G.4w}1b T(1h u.1G.4y==\'2J\'){w.1m(\'4r \'+z,\'3d \'+u.1G.4x);C=\'76.4z\';z=u.1G.4y}}T(!C){C=\'3d.4z\';v=u.4t;F=u.2e;z=/[\\d.]+/.Y(u.1o);z=z?z[0]:1e}}}1b T(1C((u=g.77))==3s){C=\'2Q 3A\';F=u.78.2x.79.1O}1b T(1C((u=g.7a))==3v){C=\'3J\';z=(u=u.1o||1e)&&(u.7b+\'.\'+u.7c+\'.\'+u.7d)}1b T(1h r.3e==\'1I\'&&(u=/\\4A\\/(\\d+)/i.Y(f))){z=[z,r.3e];T((u=+u[1]+4)!=z[1]){w.1m(\'1k \'+z[1]+\' 1z\');B&&(B[1]=\'\');z[1]=u}z=C==\'1k\'?1x(z[1].7e(1)):z[0]}1b T(1h r.3e==\'1I\'&&/^(?:1q|1j)\\b/.V(C)){w.1m(\'7f 2u \'+C+\' \'+z);C=\'1k\';z=\'11.0\';B=[\'1Y\'];F=\'1s\'}F=F&&1U(F)}T(z&&(u=/(?:[4B]|7g|4C|[4B]\\d+4C)(?:\\d+\\+?)?$/i.Y(z)||/(?:3f|3g)(?: ?\\d)?/i.Y(f+\';\'+(y&&i.7h))||/\\4q\\b/i.V(f)&&\'a\')){x=/b/i.V(u)?\'3g\':\'3f\';z=z.1d(1i(u+\'\\\\+?$\'),\'\')+(x==\'3g\'?q:p)+(/\\d+\\+?/.Y(u)||\'\')}T(C==\'3E\'||C==\'1j\'&&/\\b(?:1N|1j 1g)\\b/.V(F)){C=\'1j 1y\'}1b T(C==\'2S\'&&z){z=z.1d(/\\.[\\d.]+/,\'.x\')}1b T(/\\7i\\b/i.V(D)){T(D==\'1F 31\'){F=1e}T(D==\'1F 31\'&&/\\7j\\b/.V(f)){w.1p(\'7k 1z\')}}1b T((/^(?:1q|1k|1r)$/.V(C)||C&&!D&&!/1M|4D/.V(C))&&(F==\'1s 3o\'||/4D/i.V(f))){C+=\' 1y\'}1b T(C==\'1k\'&&y){4u{T(g.7l===1e){w.1p(\'2e 7m\')}}4v(e){w.1p(\'7n\')}}1b T((/\\7o\\b/.V(D)||/\\7p\\b/.V(f))&&(u=(1i(D.1d(/ +/g,\' *\')+\'/([.\\\\d]+)\',\'i\').Y(f)||0)[1]||z)){u=[u,/3X/.V(f)];F=(u[1]?(D=1e,E=\'2n\'):\'7q 7r\')+\' \'+u[0];z=1e}1b T(1v!=1X&&D!=\'2b\'&&((y&&s)||(/1r/.V(C)&&/\\b(?:3W|1j)\\b/i.V(f))||(C==\'1j\'&&/\\4E X (?:\\d+\\.){2,}/.V(F))||(C==\'1k\'&&((F&&!/^2G/.V(F)&&z>5.5)||/\\7s 2D\\b/.V(F)&&z>8||z==8&&!/\\4A\\b/.V(f))))&&!O.V((u=1J.2k(1X,f.1d(O,\'\')+\';\')))&&u.2d){u=\'7t 2u \'+u.2d+((u=u.1o)?\' \'+u:\'\');T(O.V(C)){T(/\\4F\\b/.V(u)&&F==\'1V 1g\'){F=1e}u=\'7u\'+u}1b{u=\'7v\'+u;T(t){C=1U(t.1d(/([a-z])([A-Z])/g,\'$1 $2\'))}1b{C=\'1r\'}T(/\\4F\\b/.V(u)){F=1e}T(!y){z=1e}}B=[\'2O\'];w.1m(u)}T((u=(/\\7w\\/([\\d.]+\\+?)/i.Y(f)||0)[1])){u=[2w(u.1d(/\\.(\\d)$/,\'.0$1\')),u];T(C==\'1t\'&&u[1].1S(-1)==\'+\'){C=\'1L 7x\';x=\'3f\';z=u[1].1S(0,-1)}1b T(z==u[1]||z==(u[2]=(/\\4G\\/([\\d.]+\\+?)/i.Y(f)||0)[1])){z=1e}u[1]=(/\\2l\\/([\\d.]+)/i.Y(f)||0)[1];T(u[0]==1u.36&&u[2]==1u.36&&2w(u[1])>=28&&B==\'1L\'){B=[\'38\']}T(!y||(!l&&!u[1])){B&&(B[1]=\'35 1t\');u=(u=u[0],u<7y?1:u<7z?2:u<7A?3:u<4H?4:u<1A?\'4+\':u<1P?5:u<1u?6:u<7B?7:u<7C?8:\'8\')}1b{B&&(B[1]=\'35 1q\');u=u[1]||(u=u[0],u<7D?1:u<4I?2:u<4I.4J?3:u<4H?4:u<1A.7E?5:u<1A.4K?6:u<1A.10?7:u<1A.13?8:u<1A.16?9:u<1A.24?10:u<1A.30?11:u<1P.2F?12:u<1P.7F?\'13+\':u<1P.4K?15:u<1P.11?16:u<1P.19?17:u<4L.4J?18:u<4L.10?19:u<1u.2F?20:u<1u.11?\'21+\':u<1u.13?23:u<1u.18?24:u<1u.24?25:u<1u.36?26:B!=\'38\'?\'27\':\'28\')}B&&(B[1]+=\' \'+(u+=1h u==\'1I\'?\'.x\':/[.+]/.V(u)?\'\':\'+\'));T(C==\'1t\'&&(!z||7G(z)>45)){z=u}}T(C==\'1r\'&&(u=/\\7H|4M$/.Y(F))){C+=\' \';w.1p(\'2c 1z\');T(u==\'4M\'){C+=\'29\';z=1e}1b{C+=\'1y\'}F=F.1d(1i(\' *\'+u+\'$\'),\'\')}1b T(C==\'1t\'&&/\\2l\\b/.Y(B&&B[1])){w.1p(\'2c 1z\');C=\'1q 1y\';z=1e;T(/\\4E X\\b/.V(F)){E=\'4f\';F=\'2m 4.3+\'}1b{F=1e}}T(z&&z.2v((u=/[\\d.]+$/.Y(F)))==0&&f.2v(\'/\'+u+\'-\')>-1){F=2H(F.1d(u,\'\'))}T(B&&!/\\b(?:3C|1Z)\\b/.V(C)&&(/1M|3G|2S/.V(C)||C!=\'1t\'&&/^2m/.V(F)&&/\\4G\\b/.V(B[1])||/^(?:2Q|3B|3D|2T|1r|7I|3L|7J|2U 3M|3O|7K)/.V(C)&&B[1])){(u=B[B.1n-1])&&w.1m(u)}T(w.1n){w=[\'(\'+w.3b(\'; \')+\')\']}T(E&&D&&D.2v(E)<0){w.1m(\'1W \'+E)}T(D){w.1m((/^1W /.V(w[w.1n-1])?\'\':\'1W \')+D)}T(F){u=/ ([\\d.+]+)$/.Y(F);A=u&&F.3k(F.1n-u[0].1n-1)==\'/\';F={\'2f\':32,\'1Q\':(u&&!A)?F.1d(u[0],\'\'):F,\'1o\':u?u[1]:1e,\'1w\':1a(){W a=1v.1o;1f 1v.1Q+((a&&!A)?\' \'+a:\'\')+(1v.2f==64?\' 64-2E\':\'\')}}}T((u=/\\b(?:7L|7M|2G|7N|7O|x)64\\b/i.Y(v))&&!/\\7P\\b/i.V(v)){T(F){F.2f=64;F.1Q=F.1Q.1d(1i(\' *\'+u),\'\')}T(C&&(/\\7Q\\b/i.V(f)||(y&&/\\w(?:7R|32)$/.V(i.7S||i.2e)&&!/\\7T; 7U\\b/i.V(f)))){w.1p(\'32-2E\')}}1b T(F&&/^1g X/.V(F.1Q)&&C==\'1q\'&&2w(z)>=39){F.2f=64}f||(f=1e);W G={};G.34=f;G.7V=B&&B[0];G.4n=E;G.2d=C;G.7W=x;G.4o=D;G.7X=f;G.1o=C&&z;G.1O=F||{\'2f\':1e,\'1Q\':1e,\'1o\':1e,\'1w\':1a(){1f\'1e\'}};G.1J=1J;G.1w=4m;T(G.1o){w.1p(z)}T(G.2d){w.1p(C)}T(F&&C&&!(F==1x(F).2i(\' \')[0]&&(F==C.2i(\' \')[0]||D))){w.1m(D?\'(\'+F+\')\':\'1W \'+F)}T(w.1n){G.34=w.3b(\' \')}1f G}W S=1J();T(1h 2y==\'1a\'&&1h 2y.4N==\'1B\'&&2y.4N){I.2e=S;2y(1a(){1f S})}1b T(K&&L){1X(S,1a(a,b){K[b]=a})}1b{I.2e=S}}.2k(1v));',62,494,'|||||||||||||||||||||||||||||||||||||||||||||||||||||||if||test|var||exec||||||label||||||function|else|pattern|replace|null|return|OS|typeof|RegExp|Firefox|IE|Galaxy|push|length|version|unshift|Chrome|Opera|Windows|Safari|537|this|toString|String|Mobile|mode|534|object|getClassOf|qualify|reduce|Xbox|versions|_|number|parse|Edge|WebKit|Browser|Android|os|535|family|global|slice|Phone|format|Mac|on|forOwn|Trident|Nook|||Silk|||||||Mini|SM|Wii|desktop|name|platform|architecture|true|module|split|webOS|call|bChrome|iOS|BlackBerry|GT|Google|TV|iPhone|Kindle|PlayStation|as|indexOf|parseFloat|system|define|window|hasOwnProperty|capitalize|Server|XP|bit|01|Win|trim|for|string|java|EdgA|EdgiOS|iCab|Presto|NetFront|Adobe|Electron|Maxthon|Midori|Samsung|Cloud9|Accelerated|Iron|getProduct|Vita||360||Tablet|description|like||bAndroid|Blink||getProperty|join|process|Node|documentMode|alpha|beta|exports|bOpera|Object|charAt|cleanupOS|2008|2000|CE|each|in|isHostType|airRuntimeClass|enviroClass|javaClass|phantomClass|getLayout|EdgeHTML|Tasman|getName|AIR|Arora|Avant|Breach|Fennec|Konqueror|Lunascape|Microsoft|PaleMoon|PhantomJS|Raven|Rekonq|Internet|SamsungBrowser|Sleipnir|OPiOS|OPR|CriOS|CrMo|Minefield|FxiOS|IEMobile|MSIE|BB10|S2|S3|S4|S6|S7|Lumia|iPad||iPod|Fire|Nexus|PlayBook|TouchPad|Transformer|One|Xoom|getManufacturer|Apple|getOS|Kubuntu|Linux|Hat|Symbian|getVersion|toStringPlatform|manufacturer|product|identifying|bMinefield|Chromium|brv|arch|try|catch|electron|node|nw|js|bTrident|ab|pre|Mobi|bOS|bIE|bSafari|533|532|05|07|536|zvav|amd|use|strict|nodeType|self|Math|pow|prototype|toUpperCase|Technical|Preview|R2|Vista|2003|SP1|NT||90|ME|ce|bhpw|web|bMacintosh|_PowerPC|bMac|BePC|fc|bx86|gi|x86_64|while|boolean|undefined|navigator|userAgent|likeChrome|internal|ScriptBridgingProxyObject|Environment|JavaPackage|RuntimeObject|bJava|environment|u03b1|u03b2|document|operamini|opera|Class|AppleWebKit|KHTML|Gecko|Camino|Epiphany|Flock|Galeon|GreenBrowser|Iceweasel|Meleon|RockMelt|SeaMonkey|SlimBrowser|SRWare|Sunrise|Swiftfox|Waterfox|WebPositive|I9000|I9100|I9300|I9500|S5|G900|G920|G925|G930|G935|WiiU|Archos||Amazon|Asus|Barnes|Noble|HP|HTC|LG|Motorola|Nintendo|Nokia|Sony|CentOS|CrOS|Debian|Fedora|FreeBSD|Gentoo|Haiku|Mint|OpenBSD|Red|SuSE|Ubuntu|Xubuntu|Cygwin|hpwOS|Tizen|Macintosh|98|w_|bGoogle|bSimulator|Simulator|bOPiOS|running|Turbo|Uncompressed|blike|iP|d_|buntu|bMobile|bVita|bVersion|bMobi|accelerated|bFirefox|Version|bOPR|bMSIE|bPlayStation|XBLWP|ZuneWP|bWPDesktop|lang|System|require|ringo|engine|RingoJS|Narwhal|Rhino|browser|NW|runtime|flash|Capabilities|phantom|major|minor|patch|toFixed|masking|dp|appMinorVersion|bXbox|bIEMobile|mobile|external|preview|embedded|bBlackBerry|bBB10|Device|Software|bWindows|ing|identify|mask|bAppleWebKit|Nightly|400|500|526|538|601|530|03|02|parseInt|bzbov|Phantom|Rock|Web|AMD|IA|WOW|x86_|bi686|bWOW64|86|cpuClass|bWin64|x64|layout|prerelease|ua'.split('|'),0,{}))
+
+//A simple JS library that detects mobile devices.
+//Taken from: https://raw.githubusercontent.com/kaimallea/isMobile/master/dist/isMobile.min.js
+!function(e){var n=/iPhone/i,t=/iPod/i,r=/iPad/i,a=/\bAndroid(?:.+)Mobile\b/i,p=/Android/i,l=/\bAndroid(?:.+)SD4930UR\b/i,b=/\bAndroid(?:.+)(?:KF[A-Z]{2,4})\b/i,f=/Windows Phone/i,u=/\bWindows(?:.+)ARM\b/i,c=/BlackBerry/i,s=/BB10/i,v=/Opera Mini/i,h=/\b(CriOS|Chrome)(?:.+)Mobile/i,w=/\Mobile(?:.+)Firefox\b/i;function m(e,i){return e.test(i)}function i(e){var i=e||("undefined"!=typeof navigator?navigator.userAgent:""),o=i.split("[FBAN");void 0!==o[1]&&(i=o[0]),void 0!==(o=i.split("Twitter"))[1]&&(i=o[0]);var d={apple:{phone:m(n,i)&&!m(f,i),ipod:m(t,i),tablet:!m(n,i)&&m(r,i)&&!m(f,i),device:(m(n,i)||m(t,i)||m(r,i))&&!m(f,i)},amazon:{phone:m(l,i),tablet:!m(l,i)&&m(b,i),device:m(l,i)||m(b,i)},android:{phone:!m(f,i)&&m(l,i)||!m(f,i)&&m(a,i),tablet:!m(f,i)&&!m(l,i)&&!m(a,i)&&(m(b,i)||m(p,i)),device:!m(f,i)&&(m(l,i)||m(b,i)||m(a,i)||m(p,i))},windows:{phone:m(f,i),tablet:m(u,i),device:m(f,i)||m(u,i)},other:{blackberry:m(c,i),blackberry10:m(s,i),opera:m(v,i),firefox:m(w,i),chrome:m(h,i),device:m(c,i)||m(s,i)||m(v,i)||m(w,i)||m(h,i)}};return d.any=d.apple.device||d.android.device||d.windows.device||d.other.device,d.phone=d.apple.phone||d.android.phone||d.windows.phone,d.tablet=d.apple.tablet||d.android.tablet||d.windows.tablet,d}"undefined"!=typeof module&&module.exports&&"undefined"==typeof window?module.exports=i:"undefined"!=typeof module&&module.exports&&"undefined"!=typeof window?module.exports=i():"function"==typeof define&&define.amd?define([],e.isMobile=i()):e.isMobile=i()}(this);
+
+platform.isMobile = isMobile.any
diff --git a/oxAuth/Server/src/main/webapp/js/popper.min.js b/oxAuth/Server/src/main/webapp/js/popper.min.js
new file mode 100644
index 00000000..95e9ef5a
--- /dev/null
+++ b/oxAuth/Server/src/main/webapp/js/popper.min.js
@@ -0,0 +1,5 @@
+/*
+ Copyright (C) Federico Zivolo 2017
+ Distributed under the MIT License (license terms are at http://opensource.org/licenses/MIT).
+ */(function(e,t){'object'==typeof exports&&'undefined'!=typeof module?module.exports=t():'function'==typeof define&&define.amd?define(t):e.Popper=t()})(this,function(){'use strict';function e(e){return e&&'[object Function]'==={}.toString.call(e)}function t(e,t){if(1!==e.nodeType)return[];var o=window.getComputedStyle(e,null);return t?o[t]:o}function o(e){return'HTML'===e.nodeName?e:e.parentNode||e.host}function n(e){if(!e||-1!==['HTML','BODY','#document'].indexOf(e.nodeName))return window.document.body;var i=t(e),r=i.overflow,p=i.overflowX,s=i.overflowY;return /(auto|scroll)/.test(r+s+p)?e:n(o(e))}function r(e){var o=e&&e.offsetParent,i=o&&o.nodeName;return i&&'BODY'!==i&&'HTML'!==i?-1!==['TD','TABLE'].indexOf(o.nodeName)&&'static'===t(o,'position')?r(o):o:window.document.documentElement}function p(e){var t=e.nodeName;return'BODY'!==t&&('HTML'===t||r(e.firstElementChild)===e)}function s(e){return null===e.parentNode?e:s(e.parentNode)}function d(e,t){if(!e||!e.nodeType||!t||!t.nodeType)return window.document.documentElement;var o=e.compareDocumentPosition(t)&Node.DOCUMENT_POSITION_FOLLOWING,i=o?e:t,n=o?t:e,a=document.createRange();a.setStart(i,0),a.setEnd(n,0);var f=a.commonAncestorContainer;if(e!==f&&t!==f||i.contains(n))return p(f)?f:r(f);var l=s(e);return l.host?d(l.host,t):d(e,s(t).host)}function a(e){var t=1<arguments.length&&void 0!==arguments[1]?arguments[1]:'top',o='top'===t?'scrollTop':'scrollLeft',i=e.nodeName;if('BODY'===i||'HTML'===i){var n=window.document.documentElement,r=window.document.scrollingElement||n;return r[o]}return e[o]}function f(e,t){var o=2<arguments.length&&void 0!==arguments[2]&&arguments[2],i=a(t,'top'),n=a(t,'left'),r=o?-1:1;return e.top+=i*r,e.bottom+=i*r,e.left+=n*r,e.right+=n*r,e}function l(e,t){var o='x'===t?'Left':'Top',i='Left'==o?'Right':'Bottom';return+e['border'+o+'Width'].split('px')[0]+ +e['border'+i+'Width'].split('px')[0]}function m(e,t,o,i){return _(t['offset'+e],o['client'+e],o['offset'+e],ie()?o['offset'+e]+i['margin'+('Height'===e?'Top':'Left')]+i['margin'+('Height'===e?'Bottom':'Right')]:0)}function h(){var e=window.document.body,t=window.document.documentElement,o=ie()&&window.getComputedStyle(t);return{height:m('Height',e,t,o),width:m('Width',e,t,o)}}function c(e){return se({},e,{right:e.left+e.width,bottom:e.top+e.height})}function g(e){var o={};if(ie())try{o=e.getBoundingClientRect();var i=a(e,'top'),n=a(e,'left');o.top+=i,o.left+=n,o.bottom+=i,o.right+=n}catch(e){}else o=e.getBoundingClientRect();var r={left:o.left,top:o.top,width:o.right-o.left,height:o.bottom-o.top},p='HTML'===e.nodeName?h():{},s=p.width||e.clientWidth||r.right-r.left,d=p.height||e.clientHeight||r.bottom-r.top,f=e.offsetWidth-s,m=e.offsetHeight-d;if(f||m){var g=t(e);f-=l(g,'x'),m-=l(g,'y'),r.width-=f,r.height-=m}return c(r)}function u(e,o){var i=ie(),r='HTML'===o.nodeName,p=g(e),s=g(o),d=n(e),a=t(o),l=+a.borderTopWidth.split('px')[0],m=+a.borderLeftWidth.split('px')[0],h=c({top:p.top-s.top-l,left:p.left-s.left-m,width:p.width,height:p.height});if(h.marginTop=0,h.marginLeft=0,!i&&r){var u=+a.marginTop.split('px')[0],b=+a.marginLeft.split('px')[0];h.top-=l-u,h.bottom-=l-u,h.left-=m-b,h.right-=m-b,h.marginTop=u,h.marginLeft=b}return(i?o.contains(d):o===d&&'BODY'!==d.nodeName)&&(h=f(h,o)),h}function b(e){var t=window.document.documentElement,o=u(e,t),i=_(t.clientWidth,window.innerWidth||0),n=_(t.clientHeight,window.innerHeight||0),r=a(t),p=a(t,'left'),s={top:r-o.top+o.marginTop,left:p-o.left+o.marginLeft,width:i,height:n};return c(s)}function y(e){var i=e.nodeName;return'BODY'===i||'HTML'===i?!1:'fixed'===t(e,'position')||y(o(e))}function w(e,t,i,r){var p={top:0,left:0},s=d(e,t);if('viewport'===r)p=b(s);else{var a;'scrollParent'===r?(a=n(o(e)),'BODY'===a.nodeName&&(a=window.document.documentElement)):'window'===r?a=window.document.documentElement:a=r;var f=u(a,s);if('HTML'===a.nodeName&&!y(s)){var l=h(),m=l.height,c=l.width;p.top+=f.top-f.marginTop,p.bottom=m+f.top,p.left+=f.left-f.marginLeft,p.right=c+f.left}else p=f}return p.left+=i,p.top+=i,p.right-=i,p.bottom-=i,p}function v(e){var t=e.width,o=e.height;return t*o}function E(e,t,o,i,n){var r=5<arguments.length&&void 0!==arguments[5]?arguments[5]:0;if(-1===e.indexOf('auto'))return e;var p=w(o,i,r,n),s={top:{width:p.width,height:t.top-p.top},right:{width:p.right-t.right,height:p.height},bottom:{width:p.width,height:p.bottom-t.bottom},left:{width:t.left-p.left,height:p.height}},d=Object.keys(s).map(function(e){return se({key:e},s[e],{area:v(s[e])})}).sort(function(e,t){return t.area-e.area}),a=d.filter(function(e){var t=e.width,i=e.height;return t>=o.clientWidth&&i>=o.clientHeight}),f=0<a.length?a[0].key:d[0].key,l=e.split('-')[1];return f+(l?'-'+l:'')}function x(e,t,o){var i=d(t,o);return u(o,i)}function O(e){var t=window.getComputedStyle(e),o=parseFloat(t.marginTop)+parseFloat(t.marginBottom),i=parseFloat(t.marginLeft)+parseFloat(t.marginRight),n={width:e.offsetWidth+i,height:e.offsetHeight+o};return n}function L(e){var t={left:'right',right:'left',bottom:'top',top:'bottom'};return e.replace(/left|right|bottom|top/g,function(e){return t[e]})}function S(e,t,o){o=o.split('-')[0];var i=O(e),n={width:i.width,height:i.height},r=-1!==['right','left'].indexOf(o),p=r?'top':'left',s=r?'left':'top',d=r?'height':'width',a=r?'width':'height';return n[p]=t[p]+t[d]/2-i[d]/2,n[s]=o===s?t[s]-i[a]:t[L(s)],n}function T(e,t){return Array.prototype.find?e.find(t):e.filter(t)[0]}function C(e,t,o){if(Array.prototype.findIndex)return e.findIndex(function(e){return e[t]===o});var i=T(e,function(e){return e[t]===o});return e.indexOf(i)}function N(t,o,i){var n=void 0===i?t:t.slice(0,C(t,'name',i));return n.forEach(function(t){t.function&&console.warn('`modifier.function` is deprecated, use `modifier.fn`!');var i=t.function||t.fn;t.enabled&&e(i)&&(o.offsets.popper=c(o.offsets.popper),o.offsets.reference=c(o.offsets.reference),o=i(o,t))}),o}function k(){if(!this.state.isDestroyed){var e={instance:this,styles:{},attributes:{},flipped:!1,offsets:{}};e.offsets.reference=x(this.state,this.popper,this.reference),e.placement=E(this.options.placement,e.offsets.reference,this.popper,this.reference,this.options.modifiers.flip.boundariesElement,this.options.modifiers.flip.padding),e.originalPlacement=e.placement,e.offsets.popper=S(this.popper,e.offsets.reference,e.placement),e.offsets.popper.position='absolute',e=N(this.modifiers,e),this.state.isCreated?this.options.onUpdate(e):(this.state.isCreated=!0,this.options.onCreate(e))}}function W(e,t){return e.some(function(e){var o=e.name,i=e.enabled;return i&&o===t})}function B(e){for(var t=[!1,'ms','Webkit','Moz','O'],o=e.charAt(0).toUpperCase()+e.slice(1),n=0;n<t.length-1;n++){var i=t[n],r=i?''+i+o:e;if('undefined'!=typeof window.document.body.style[r])return r}return null}function D(){return this.state.isDestroyed=!0,W(this.modifiers,'applyStyle')&&(this.popper.removeAttribute('x-placement'),this.popper.style.left='',this.popper.style.position='',this.popper.style.top='',this.popper.style[B('transform')]=''),this.disableEventListeners(),this.options.removeOnDestroy&&this.popper.parentNode.removeChild(this.popper),this}function H(e,t,o,i){var r='BODY'===e.nodeName,p=r?window:e;p.addEventListener(t,o,{passive:!0}),r||H(n(p.parentNode),t,o,i),i.push(p)}function P(e,t,o,i){o.updateBound=i,window.addEventListener('resize',o.updateBound,{passive:!0});var r=n(e);return H(r,'scroll',o.updateBound,o.scrollParents),o.scrollElement=r,o.eventsEnabled=!0,o}function A(){this.state.eventsEnabled||(this.state=P(this.reference,this.options,this.state,this.scheduleUpdate))}function M(e,t){return window.removeEventListener('resize',t.updateBound),t.scrollParents.forEach(function(e){e.removeEventListener('scroll',t.updateBound)}),t.updateBound=null,t.scrollParents=[],t.scrollElement=null,t.eventsEnabled=!1,t}function I(){this.state.eventsEnabled&&(window.cancelAnimationFrame(this.scheduleUpdate),this.state=M(this.reference,this.state))}function R(e){return''!==e&&!isNaN(parseFloat(e))&&isFinite(e)}function U(e,t){Object.keys(t).forEach(function(o){var i='';-1!==['width','height','top','right','bottom','left'].indexOf(o)&&R(t[o])&&(i='px'),e.style[o]=t[o]+i})}function Y(e,t){Object.keys(t).forEach(function(o){var i=t[o];!1===i?e.removeAttribute(o):e.setAttribute(o,t[o])})}function F(e,t,o){var i=T(e,function(e){var o=e.name;return o===t}),n=!!i&&e.some(function(e){return e.name===o&&e.enabled&&e.order<i.order});if(!n){var r='`'+t+'`';console.warn('`'+o+'`'+' modifier is required by '+r+' modifier in order to work, be sure to include it before '+r+'!')}return n}function j(e){return'end'===e?'start':'start'===e?'end':e}function K(e){var t=1<arguments.length&&void 0!==arguments[1]&&arguments[1],o=ae.indexOf(e),i=ae.slice(o+1).concat(ae.slice(0,o));return t?i.reverse():i}function q(e,t,o,i){var n=e.match(/((?:\-|\+)?\d*\.?\d*)(.*)/),r=+n[1],p=n[2];if(!r)return e;if(0===p.indexOf('%')){var s;switch(p){case'%p':s=o;break;case'%':case'%r':default:s=i;}var d=c(s);return d[t]/100*r}if('vh'===p||'vw'===p){var a;return a='vh'===p?_(document.documentElement.clientHeight,window.innerHeight||0):_(document.documentElement.clientWidth,window.innerWidth||0),a/100*r}return r}function G(e,t,o,i){var n=[0,0],r=-1!==['right','left'].indexOf(i),p=e.split(/(\+|\-)/).map(function(e){return e.trim()}),s=p.indexOf(T(p,function(e){return-1!==e.search(/,|\s/)}));p[s]&&-1===p[s].indexOf(',')&&console.warn('Offsets separated by white space(s) are deprecated, use a comma (,) instead.');var d=/\s*,\s*|\s+/,a=-1===s?[p]:[p.slice(0,s).concat([p[s].split(d)[0]]),[p[s].split(d)[1]].concat(p.slice(s+1))];return a=a.map(function(e,i){var n=(1===i?!r:r)?'height':'width',p=!1;return e.reduce(function(e,t){return''===e[e.length-1]&&-1!==['+','-'].indexOf(t)?(e[e.length-1]=t,p=!0,e):p?(e[e.length-1]+=t,p=!1,e):e.concat(t)},[]).map(function(e){return q(e,n,t,o)})}),a.forEach(function(e,t){e.forEach(function(o,i){R(o)&&(n[t]+=o*('-'===e[i-1]?-1:1))})}),n}for(var z=Math.min,V=Math.floor,_=Math.max,X=['native code','[object MutationObserverConstructor]'],Q=function(e){return X.some(function(t){return-1<(e||'').toString().indexOf(t)})},J='undefined'!=typeof window,Z=['Edge','Trident','Firefox'],$=0,ee=0;ee<Z.length;ee+=1)if(J&&0<=navigator.userAgent.indexOf(Z[ee])){$=1;break}var i,te=J&&Q(window.MutationObserver),oe=te?function(e){var t=!1,o=0,i=document.createElement('span'),n=new MutationObserver(function(){e(),t=!1});return n.observe(i,{attributes:!0}),function(){t||(t=!0,i.setAttribute('x-index',o),++o)}}:function(e){var t=!1;return function(){t||(t=!0,setTimeout(function(){t=!1,e()},$))}},ie=function(){return void 0==i&&(i=-1!==navigator.appVersion.indexOf('MSIE 10')),i},ne=function(e,t){if(!(e instanceof t))throw new TypeError('Cannot call a class as a function')},re=function(){function e(e,t){for(var o,n=0;n<t.length;n++)o=t[n],o.enumerable=o.enumerable||!1,o.configurable=!0,'value'in o&&(o.writable=!0),Object.defineProperty(e,o.key,o)}return function(t,o,i){return o&&e(t.prototype,o),i&&e(t,i),t}}(),pe=function(e,t,o){return t in e?Object.defineProperty(e,t,{value:o,enumerable:!0,configurable:!0,writable:!0}):e[t]=o,e},se=Object.assign||function(e){for(var t,o=1;o<arguments.length;o++)for(var i in t=arguments[o],t)Object.prototype.hasOwnProperty.call(t,i)&&(e[i]=t[i]);return e},de=['auto-start','auto','auto-end','top-start','top','top-end','right-start','right','right-end','bottom-end','bottom','bottom-start','left-end','left','left-start'],ae=de.slice(3),fe={FLIP:'flip',CLOCKWISE:'clockwise',COUNTERCLOCKWISE:'counterclockwise'},le=function(){function t(o,i){var n=this,r=2<arguments.length&&void 0!==arguments[2]?arguments[2]:{};ne(this,t),this.scheduleUpdate=function(){return requestAnimationFrame(n.update)},this.update=oe(this.update.bind(this)),this.options=se({},t.Defaults,r),this.state={isDestroyed:!1,isCreated:!1,scrollParents:[]},this.reference=o.jquery?o[0]:o,this.popper=i.jquery?i[0]:i,this.options.modifiers={},Object.keys(se({},t.Defaults.modifiers,r.modifiers)).forEach(function(e){n.options.modifiers[e]=se({},t.Defaults.modifiers[e]||{},r.modifiers?r.modifiers[e]:{})}),this.modifiers=Object.keys(this.options.modifiers).map(function(e){return se({name:e},n.options.modifiers[e])}).sort(function(e,t){return e.order-t.order}),this.modifiers.forEach(function(t){t.enabled&&e(t.onLoad)&&t.onLoad(n.reference,n.popper,n.options,t,n.state)}),this.update();var p=this.options.eventsEnabled;p&&this.enableEventListeners(),this.state.eventsEnabled=p}return re(t,[{key:'update',value:function(){return k.call(this)}},{key:'destroy',value:function(){return D.call(this)}},{key:'enableEventListeners',value:function(){return A.call(this)}},{key:'disableEventListeners',value:function(){return I.call(this)}}]),t}();return le.Utils=('undefined'==typeof window?global:window).PopperUtils,le.placements=de,le.Defaults={placement:'bottom',eventsEnabled:!0,removeOnDestroy:!1,onCreate:function(){},onUpdate:function(){},modifiers:{shift:{order:100,enabled:!0,fn:function(e){var t=e.placement,o=t.split('-')[0],i=t.split('-')[1];if(i){var n=e.offsets,r=n.reference,p=n.popper,s=-1!==['bottom','top'].indexOf(o),d=s?'left':'top',a=s?'width':'height',f={start:pe({},d,r[d]),end:pe({},d,r[d]+r[a]-p[a])};e.offsets.popper=se({},p,f[i])}return e}},offset:{order:200,enabled:!0,fn:function(e,t){var o,i=t.offset,n=e.placement,r=e.offsets,p=r.popper,s=r.reference,d=n.split('-')[0];return o=R(+i)?[+i,0]:G(i,p,s,d),'left'===d?(p.top+=o[0],p.left-=o[1]):'right'===d?(p.top+=o[0],p.left+=o[1]):'top'===d?(p.left+=o[0],p.top-=o[1]):'bottom'===d&&(p.left+=o[0],p.top+=o[1]),e.popper=p,e},offset:0},preventOverflow:{order:300,enabled:!0,fn:function(e,t){var o=t.boundariesElement||r(e.instance.popper);e.instance.reference===o&&(o=r(o));var i=w(e.instance.popper,e.instance.reference,t.padding,o);t.boundaries=i;var n=t.priority,p=e.offsets.popper,s={primary:function(e){var o=p[e];return p[e]<i[e]&&!t.escapeWithReference&&(o=_(p[e],i[e])),pe({},e,o)},secondary:function(e){var o='right'===e?'left':'top',n=p[o];return p[e]>i[e]&&!t.escapeWithReference&&(n=z(p[o],i[e]-('right'===e?p.width:p.height))),pe({},o,n)}};return n.forEach(function(e){var t=-1===['left','top'].indexOf(e)?'secondary':'primary';p=se({},p,s[t](e))}),e.offsets.popper=p,e},priority:['left','right','top','bottom'],padding:5,boundariesElement:'scrollParent'},keepTogether:{order:400,enabled:!0,fn:function(e){var t=e.offsets,o=t.popper,i=t.reference,n=e.placement.split('-')[0],r=V,p=-1!==['top','bottom'].indexOf(n),s=p?'right':'bottom',d=p?'left':'top',a=p?'width':'height';return o[s]<r(i[d])&&(e.offsets.popper[d]=r(i[d])-o[a]),o[d]>r(i[s])&&(e.offsets.popper[d]=r(i[s])),e}},arrow:{order:500,enabled:!0,fn:function(e,t){if(!F(e.instance.modifiers,'arrow','keepTogether'))return e;var o=t.element;if('string'==typeof o){if(o=e.instance.popper.querySelector(o),!o)return e;}else if(!e.instance.popper.contains(o))return console.warn('WARNING: `arrow.element` must be child of its popper element!'),e;var i=e.placement.split('-')[0],n=e.offsets,r=n.popper,p=n.reference,s=-1!==['left','right'].indexOf(i),d=s?'height':'width',a=s?'top':'left',f=s?'left':'top',l=s?'bottom':'right',m=O(o)[d];p[l]-m<r[a]&&(e.offsets.popper[a]-=r[a]-(p[l]-m)),p[a]+m>r[l]&&(e.offsets.popper[a]+=p[a]+m-r[l]);var h=p[a]+p[d]/2-m/2,g=h-c(e.offsets.popper)[a];return g=_(z(r[d]-m,g),0),e.arrowElement=o,e.offsets.arrow={},e.offsets.arrow[a]=Math.round(g),e.offsets.arrow[f]='',e},element:'[x-arrow]'},flip:{order:600,enabled:!0,fn:function(e,t){if(W(e.instance.modifiers,'inner'))return e;if(e.flipped&&e.placement===e.originalPlacement)return e;var o=w(e.instance.popper,e.instance.reference,t.padding,t.boundariesElement),i=e.placement.split('-')[0],n=L(i),r=e.placement.split('-')[1]||'',p=[];switch(t.behavior){case fe.FLIP:p=[i,n];break;case fe.CLOCKWISE:p=K(i);break;case fe.COUNTERCLOCKWISE:p=K(i,!0);break;default:p=t.behavior;}return p.forEach(function(s,d){if(i!==s||p.length===d+1)return e;i=e.placement.split('-')[0],n=L(i);var a=e.offsets.popper,f=e.offsets.reference,l=V,m='left'===i&&l(a.right)>l(f.left)||'right'===i&&l(a.left)<l(f.right)||'top'===i&&l(a.bottom)>l(f.top)||'bottom'===i&&l(a.top)<l(f.bottom),h=l(a.left)<l(o.left),c=l(a.right)>l(o.right),g=l(a.top)<l(o.top),u=l(a.bottom)>l(o.bottom),b='left'===i&&h||'right'===i&&c||'top'===i&&g||'bottom'===i&&u,y=-1!==['top','bottom'].indexOf(i),w=!!t.flipVariations&&(y&&'start'===r&&h||y&&'end'===r&&c||!y&&'start'===r&&g||!y&&'end'===r&&u);(m||b||w)&&(e.flipped=!0,(m||b)&&(i=p[d+1]),w&&(r=j(r)),e.placement=i+(r?'-'+r:''),e.offsets.popper=se({},e.offsets.popper,S(e.instance.popper,e.offsets.reference,e.placement)),e=N(e.instance.modifiers,e,'flip'))}),e},behavior:'flip',padding:5,boundariesElement:'viewport'},inner:{order:700,enabled:!1,fn:function(e){var t=e.placement,o=t.split('-')[0],i=e.offsets,n=i.popper,r=i.reference,p=-1!==['left','right'].indexOf(o),s=-1===['top','left'].indexOf(o);return n[p?'left':'top']=r[t]-(s?n[p?'width':'height']:0),e.placement=L(t),e.offsets.popper=c(n),e}},hide:{order:800,enabled:!0,fn:function(e){if(!F(e.instance.modifiers,'hide','preventOverflow'))return e;var t=e.offsets.reference,o=T(e.instance.modifiers,function(e){return'preventOverflow'===e.name}).boundaries;if(t.bottom<o.top||t.left>o.right||t.top>o.bottom||t.right<o.left){if(!0===e.hide)return e;e.hide=!0,e.attributes['x-out-of-boundaries']=''}else{if(!1===e.hide)return e;e.hide=!1,e.attributes['x-out-of-boundaries']=!1}return e}},computeStyle:{order:850,enabled:!0,fn:function(e,t){var o=t.x,i=t.y,n=e.offsets.popper,p=T(e.instance.modifiers,function(e){return'applyStyle'===e.name}).gpuAcceleration;void 0!==p&&console.warn('WARNING: `gpuAcceleration` option moved to `computeStyle` modifier and will not be supported in future versions of Popper.js!');var s,d,a=void 0===p?t.gpuAcceleration:p,f=r(e.instance.popper),l=g(f),m={position:n.position},h={left:V(n.left),top:V(n.top),bottom:V(n.bottom),right:V(n.right)},c='bottom'===o?'top':'bottom',u='right'===i?'left':'right',b=B('transform');if(d='bottom'==c?-l.height+h.bottom:h.top,s='right'==u?-l.width+h.right:h.left,a&&b)m[b]='translate3d('+s+'px, '+d+'px, 0)',m[c]=0,m[u]=0,m.willChange='transform';else{var y='bottom'==c?-1:1,w='right'==u?-1:1;m[c]=d*y,m[u]=s*w,m.willChange=c+', '+u}var v={"x-placement":e.placement};return e.attributes=se({},v,e.attributes),e.styles=se({},m,e.styles),e},gpuAcceleration:!0,x:'bottom',y:'right'},applyStyle:{order:900,enabled:!0,fn:function(e){return U(e.instance.popper,e.styles),Y(e.instance.popper,e.attributes),e.offsets.arrow&&U(e.arrowElement,e.offsets.arrow),e},onLoad:function(e,t,o,i,n){var r=x(n,t,e),p=E(o.placement,r,t,e,o.modifiers.flip.boundariesElement,o.modifiers.flip.padding);return t.setAttribute('x-placement',p),U(t,{position:'absolute'}),o},gpuAcceleration:void 0}}},le});
+//# sourceMappingURL=popper.min.js.map
diff --git a/oxAuth/Server/src/main/webapp/js/recorder_3buttons.js b/oxAuth/Server/src/main/webapp/js/recorder_3buttons.js
new file mode 100644
index 00000000..a863cd98
--- /dev/null
+++ b/oxAuth/Server/src/main/webapp/js/recorder_3buttons.js
@@ -0,0 +1,623 @@
+var recorder = (function () {
+  const states = { "wait": 1, "record": 2, "stop": 3, "play": 4 };
+  const values = {
+    "record": 'record',
+    "stop": 'stop',
+    "play": 'play',
+    "connexion": 'connexion',
+    "reset": 'reset'
+  };
+
+  var _state = states.wait;
+  var _analyser = null;
+  var _mediaRecorder = null;
+  var _savedWave = null;
+  var _canvas = document.getElementById('displayWave');
+  var _hide_loadder = false;
+  var _send_request = false;
+
+  const _WIDTH = _canvas !== null ? _canvas.width : 0;
+  const _HEIGHT = _canvas !== null ? _canvas.height : 0;
+  const _canvasCtx = _canvas !== null ? _canvas.getContext("2d") : null;
+
+  var _audioCtx;
+
+  var _startTime = new Date();
+  var _endTime = new Date();
+  var _voice = new Blob();
+
+  this.send_redirect = () => {
+    document.getElementById('loginForm:redirect-to-client').value = 'True';
+    authenticateCommand();
+  }
+
+  this.button_record_click = (button) => {
+    _audioCtx = new (window.AudioContext || window.webkitAudioContext)();
+    hide_button_record();
+    show_button_login();
+    set_login_button_glowing();
+
+    show_button_reset();
+    show_button_stop_play();
+    record();
+    _state = states.record;
+
+  }
+
+  this.button_stop_click = () => {
+    _hide_loadder = true;
+    stop();
+    unset_login_button_glowing();
+    set_state_play_button();
+    hide_load_spinner();
+
+
+  }
+
+  this.hide_load_spinner = () => {
+    _hide_loadder = true;
+    hide_load_spinner();
+  }
+
+  this.button_play_click = () => {
+    play();
+    set_stop_button();
+    _state = states.play;
+  }
+
+  this.button_reset_click = () => {
+
+    reset();
+    hide_load_spinner()
+
+    set_stop_button();
+    set_state_mic_button();
+    hide_button_reset();
+    hide_button_stop_play();
+  }
+
+  this.button_connexion_click = () => {
+    _hide_loadder = false;
+    show_load_spinner();
+    unset_login_button_glowing();
+    hide_button_reset();
+    hide_button_stop_play();
+
+    if (document.getElementById('loginForm:voiceBase64').value !== null) {
+      stop();
+
+      if (document.getElementById('loginForm:voiceBase64').value !== '') {
+        authenticateCommand();
+        _send_request = false;
+      }
+      else {
+        _send_request = true;
+      }
+    }
+    else {
+      this.hide_load_spinner();
+      this.button_reset_click();
+      alert("Audio vide, veuillez activer votre microphone");
+    }
+    return true;
+  }
+
+  this.submit = () => {
+    //launch the spinner
+
+
+    // form = document.getElementById('loginForm');
+    // var url = form.action
+
+    // form.addEventListener("click", function(event){
+    //   event.preventDefault()
+    // });
+
+    // //create new formData based on form values and add voice file
+    // var formData = new FormData(form);
+    // formData.append('loginForm:loginVoice', _voice.data);
+
+    // // to send request with the new FormData
+    // var xhr = new XMLHttpRequest();
+    // xhr.addEventListener('load', function(event
+    //   //redirect after submit data to back
+    //   const redirect = new URL(document.referrer);
+    //   var uri = redirect.origin;
+    //   if (redirect.host.includes("microsoft")) {
+    //     uri = uri + '/login.srf';
+    //  
+    //   window.location = uri;
+    // })
+
+    // xhr.addEventListener('error', function(event) {
+    //   alert('Request failed.');
+    // });
+    // xhr.open('POST', url);
+    // xhr.send(formData);
+    return true;
+  }
+
+  function init() {
+    var source;
+    _analyser = _audioCtx.createAnalyser();
+
+    if (navigator.mediaDevices.getUserMedia) {
+      var constraints = { audio: true }
+      navigator.mediaDevices.getUserMedia(constraints)
+        .then(
+          function (stream) {
+            _mediaRecorder = new MediaRecorder(stream);
+            _mediaRecorder.stream = stream;
+            _mediaRecorder.mimeType = 'audio/wav';
+
+            source = _audioCtx.createMediaStreamSource(stream);
+            source.connect(_analyser)
+
+            _mediaRecorder.start();
+            visualizeRecordWave();
+
+            _mediaRecorder.onstart = function (e) {
+              _state = states.record
+              startTime();
+            }
+
+            _mediaRecorder.onstop = function (e) {
+              endTime();
+              _state = states.stop
+            }
+
+            _mediaRecorder.onpause = function (e) {
+              _state = states.wait;
+              clearVisualizer();
+              clearAudio();
+              clearTimer();
+            }
+
+            _mediaRecorder.ondataavailable = function (blob) {
+
+              var audio = document.getElementById('audio');
+              audio.src = window.URL.createObjectURL(blob.data);
+              //TODO send file to form
+              _voice = blob;
+              convertFileToBase64(blob);
+              visualizeAudio(document.getElementById('audio').src);
+            };
+          })
+        .catch(function (err) {
+
+          switchToPasword();
+        })
+    } else {
+      switchToPasword();
+    }
+  }
+
+  function visualizeRecordWave() {
+
+    _canvas.width = _WIDTH;
+    _canvas.height = _HEIGHT;
+
+    _analyser.fftSize = 8192;
+    var bufferLength = _analyser.frequencyBinCount;
+    var dataArray = new Uint8Array(bufferLength);
+
+
+    _canvasCtx.clearRect(0, 0, _WIDTH, _HEIGHT);
+
+    var draw = function () {
+      if (_state !== states.record) {
+        return;
+      }
+
+      drawVisual = requestAnimationFrame(draw);
+
+      _analyser.getByteTimeDomainData(dataArray);
+
+      _canvasCtx.fillStyle = 'rgb(240, 252, 255)';
+      _canvasCtx.fillRect(0, 0, _WIDTH, _HEIGHT);
+
+      _canvasCtx.lineWidth = 4;
+      _canvasCtx.strokeStyle = '#3CD2F9';
+
+      _canvasCtx.beginPath();
+
+      var sliceWidth = _WIDTH * 8 / bufferLength;
+      var x = 0;
+
+      for (var i = 0; i < bufferLength; i++) {
+        var v = dataArray[i] / 4096.0;
+        var y = v * _HEIGHT;
+
+        if (i === 0) {
+          _canvasCtx.moveTo(x, y * 16);
+        } else {
+          _canvasCtx.lineTo(x, y * 16);
+        }
+        x += sliceWidth;
+      }
+
+      _canvasCtx.lineTo(_WIDTH, _HEIGHT);
+      _canvasCtx.stroke();
+    };
+    draw();
+
+  }
+
+  //TODO timer
+  //TODO Save File
+
+  function get_button_record() {
+    return document.getElementById("loginForm:button_record");
+  }
+
+  function get_button_reset() {
+    return document.getElementById("loginForm:button_reset");
+  }
+
+  function get_button_stop_play() {
+    return document.getElementById("loginForm:button_stop_play");
+  }
+
+  function get_button_stop_icon() {
+    return document.querySelector('.icon-button-stop');
+  }
+
+  function get_button_play_icon() {
+    return document.querySelector('.icon-button-play');
+  }
+
+  function get_button_login() {
+    return document.getElementById("loginForm:loginButton");
+  }
+
+  function show_button_login() {
+    var button_login = get_button_login();
+    button_login.style.display = "inline-block";
+  }
+
+  function show_button_reset() {
+    var button = get_button_reset();
+    button.classList.remove('button-hidden');
+  }
+
+  function show_button_stop_play() {
+    var button = get_button_stop_play();
+    button.classList.remove('button-hidden');
+  }
+
+  function show_load_spinner() {
+    var spinner = document.getElementById('loginForm:spinner');
+    spinner.classList.add("loader");
+  }
+
+  function set_state_play_button(keep_state) {
+    var button = get_button_stop_play();
+    var buttonIcon = get_button_stop_icon();
+    if (button && buttonIcon) {
+      button.setAttribute('onclick', 'recorder.button_play_click()');
+      button.classList.remove('button-stop');
+      button.classList.add('button-play');
+      buttonIcon.classList.remove('icon-button-stop');
+      buttonIcon.classList.add('icon-button-play');
+      if (!keep_state) {
+        _state = states.play;
+      }
+    }
+  }
+
+  function set_login_button_glowing() {
+    button = get_button_login();
+    button.classList.add('glowing');
+  }
+
+  function unset_login_button_glowing() {
+    button = get_button_login();
+    button.classList.remove('glowing');
+  }
+
+  function hide_button_record() {
+    var button_record = get_button_record();
+    button_record.style.display = "none";
+  }
+
+  function hide_button_reset() {
+    var button = get_button_reset();
+    button.classList.add('button-hidden');
+  }
+
+  function hide_load_spinner() {
+    if (_hide_loadder) {
+      var spinner = document.getElementById('loginForm:spinner');
+      spinner.classList.remove("loader");
+    }
+  }
+
+
+  function hide_button_stop_play() {
+    var button = get_button_stop_play();
+    button.classList.add('button-hidden');
+  }
+
+
+
+  function set_stop_button() {
+    var button = get_button_stop_play();
+    var buttonIcon = get_button_play_icon();
+    if (button && buttonIcon) {
+      button.setAttribute('onclick', 'recorder.button_stop_click()');
+      button.classList.remove('button-play');
+      button.classList.add('button-stop');
+      buttonIcon.classList.remove('icon-button-play');
+      buttonIcon.classList.add('icon-button-stop');
+    }
+  }
+
+  function set_state_mic_button() {
+    var button_record = get_button_record();
+    var button_login = get_button_login();
+    button_record.style.display = "inline-block";
+    button_login.style.display = "none";
+  }
+
+  function record() {
+    clearTimer();
+
+    if (_mediaRecorder === undefined || _mediaRecorder === null) {
+      init();
+    }
+
+  }
+
+  function stop() {
+    if (_mediaRecorder && _mediaRecorder.state === "recording") {
+      endTime();
+      _mediaRecorder.stop();
+    }
+    stopAudio();
+    setPlayTimer();
+  }
+
+  function play() {
+    set_state_play_button();
+    var audio = document.getElementById('audio');
+    audio.play();
+  }
+
+
+  function reset() {
+
+    if (_mediaRecorder && _mediaRecorder.state === "recording") {
+      endTime();
+      _mediaRecorder.pause();
+    } else {
+      _state = states.stop;
+      clearVisualizer();
+      clearAudio();
+      clearTimer();
+    }
+    _mediaRecorder = null;
+  }
+
+  function clearVisualizer() {
+    _canvas.width = _WIDTH;
+    _canvas.height = _HEIGHT;
+
+    _canvasCtx.clearRect(0, 0, _canvas.width, _canvas.height);
+    _canvasCtx.beginPath();
+    _canvasCtx.fillStyle = "rgba(0, 0, 0, 0)";
+    _canvasCtx.fillRect(0, 0, _canvas.width, _canvas.height);
+    _canvasCtx.stroke();
+  }
+
+  function stopAudio() {
+    var audio = document.getElementById('audio');
+    audio.pause();
+    audio.currentTime = 0;
+  }
+
+  function clearAudio() {
+    var audio = document.getElementById('audio');
+    var audioBase64 = document.getElementById('loginForm:voiceBase64');
+    stopAudio();
+    audio.src = ''
+    audio.removeAttribute("src");
+    audioBase64.value = '';
+    audioBase64.removeAttribute("value");
+    if (_mediaRecorder) {
+      _mediaRecorder = null;
+    }
+  }
+
+  function clearTimer() {
+    startTime();
+    endTime();
+    var timer = document.getElementById('loginForm:timer');
+    timer.innerHTML = '00:00';
+  }
+
+
+  function setPlayTimer(duration) {
+    var duration = duration | audio.duration | (_endTime - _startTime) / 1000;
+
+    var timer = document.getElementById('loginForm:timer');
+    var mins = Math.floor(audio.currentTime / 60);
+    var secs = Math.floor(audio.currentTime % 60);
+    var mins_max = Math.floor(duration / 60) | 0;
+    var secs_max = Math.floor(duration % 60) | 0;
+    timer.innerHTML = mins.toString().padStart(2, "0") + ':' + secs.toString().padStart(2, "0")
+      + ' / ' + mins_max.toString().padStart(2, "0") + ':' + secs_max.toString().padStart(2, "0");
+
+  }
+
+  function setRecordTimer() {
+    endTime();
+    var duration = (_endTime - _startTime) / 1000 | audio.duration;
+
+    var timer = document.getElementById('loginForm:timer');
+    var mins_max = Math.floor(duration / 60) | 0;
+    var secs_max = Math.floor(duration % 60) | 0;
+
+    timer.innerHTML = mins_max.toString().padStart(2, "0") + ':' + secs_max.toString().padStart(2, "0");
+  }
+
+  //was use to convert in base64 not used now
+  function convertFileToBase64(blob) {
+    file = blobToFile(blob, "speakerVoice")
+
+    if (blob === undefined) {
+      alert("need select file");
+    } else {
+      const reader = new FileReader();
+      reader.onloadend = () => {
+        // use a regex to remove data url part
+        const base64String = reader.result
+          .replace("data:", "")
+          .replace(/^.+,/, "");
+        document.getElementById("loginForm:voiceBase64").value = base64String;
+        if (_send_request) {
+          authenticateCommand();
+          _send_request = false;
+        }
+      };
+      reader.readAsDataURL(blob.data);
+    }
+  }
+
+  function blobToFile(theBlob, fileName) {
+    theBlob.lastModifiedDate = new Date();
+    theBlob.name = fileName;
+    return theBlob;
+  }
+
+  function switchToPasword() {
+    alert("Erreur Permissions Microphone");
+  }
+
+  var update = setInterval(function () {
+    var audio = document.getElementById('audio');
+    // _canvasCtx.clearRect(0, 0, _canvasCtx.canvas.width, _canvasCtx.canvas.height);
+
+    if (_state === states.record) {
+      setRecordTimer();
+    } else if (_state === states.play) {
+      visualizePlayAudio(audio);
+    }
+
+    if (_state === states.play && audio.currentTime === audio.duration) {
+      stop();
+      set_state_play_button(true);
+    }
+  }, 0.5);
+
+  function visualizePlayAudio(audio) {
+    var duration = audio.duration | (_endTime - _startTime) / 1000;
+
+    setPlayTimer(duration);
+
+
+    _canvasCtx.beginPath();
+    if (_savedWave !== undefined) {
+      _canvasCtx.putImageData(_savedWave, 0, 0);
+    }
+
+
+    _canvasCtx.lineWidth = 2;
+    _canvasCtx.strokeStyle = 'rgba(255, 0, 0, 0.4)';
+
+
+    var position = Math.floor(_canvasCtx.canvas.width * audio.currentTime / duration);
+    _canvasCtx.moveTo(position, -_canvasCtx.canvas.height)
+    _canvasCtx.lineTo(position, _canvasCtx.canvas.height)
+    _canvasCtx.stroke();
+  }
+
+  const visualizeAudio = url => {
+    fetch(url)
+      .then(response => response.arrayBuffer())
+      .then(arrayBuffer => _audioCtx.decodeAudioData(arrayBuffer))
+      .then(audioBuffer => drawAudioWave(normalizeData(filterData(audioBuffer))))
+      .then(hide_load_spinner());
+  };
+
+  const normalizeData = filteredData => {
+    const multiplier = Math.pow(Math.max(...filteredData), -1);
+    return filteredData.map(n => n * multiplier);
+  }
+
+  const filterData = audioBuffer => {
+    const rawData = audioBuffer.getChannelData(0); // work with one channel of data
+    const samples = 512; // Number of samples wanted
+    const blockSize = Math.floor(rawData.length / samples); // number of samples by subdivision
+    const filteredData = [];
+    for (let i = 0; i < samples; i++) {
+      let blockStart = blockSize * i; // first sample location in block
+      let sum = 0;
+      for (let j = 0; j < blockSize; j++) {
+        sum = sum + Math.abs(rawData[blockStart + j]) // sum of samples in the block
+      }
+      filteredData.push(sum / blockSize); // sum by block size for average
+    }
+    return filteredData;
+  }
+
+  const drawAudioWave = normalizedData => {
+
+    const dpr = window.devicePixelRatio || 1;
+    const padding = 2;
+
+    _canvas.width = _canvas.offsetWidth * dpr;
+    _canvas.height = (_canvas.offsetHeight + padding * 2) * dpr;
+    _canvasCtx.scale(dpr, dpr);
+    _canvasCtx.translate(0, _canvas.offsetHeight / 2 + padding); // Set Y = 0 to be in the middle of the _canvas
+
+    WIDTH = _canvas.width;
+    HEIGHT = _canvas.height;
+    // draw the line segments
+    const width = WIDTH / normalizedData.length;
+    _canvasCtx.fillStyle = 'rgb(240, 252, 255)';
+    _canvasCtx.fillRect(0, 0, WIDTH, HEIGHT);
+    for (let i = 0; i < normalizedData.length; i++) {
+      const x = width * i;
+      let height = normalizedData[i] * _canvas.offsetHeight - padding;
+      if (height < 0) {
+        height = 0;
+      } else if (height > _canvas.offsetHeight / 2) {
+        height = height > _canvas.offsetHeight / 2;
+      }
+      drawLineSegment(x, height, width, (i + 1) % 2);
+    }
+    _savedWave = _canvasCtx.getImageData(0, 0, WIDTH, HEIGHT);
+  };
+
+  const drawLineSegment = (x, y, width, isEven) => {
+    _canvasCtx.lineWidth = 2;
+    _canvasCtx.strokeStyle = '#3CD2F9';
+    _canvasCtx.beginPath();
+    y = isEven ? y : -y;
+    _canvasCtx.moveTo(x, 0);
+    _canvasCtx.lineTo(x, y);
+    _canvasCtx.arc(x + width / 2, y, width / 2, Math.PI, 0, isEven);
+    _canvasCtx.lineTo(x + width, 0);
+    _canvasCtx.stroke();
+  };
+
+  function startTime() {
+    _startTime = new Date();
+  };
+
+  function endTime() {
+    _endTime = new Date();
+  }
+
+  return {
+    button_record_click: button_record_click,
+    button_reset_click: button_reset_click,
+    button_stop_click: button_stop_click,
+    button_play_click: button_play_click,
+    button_connexion_click: button_connexion_click,
+    submit: submit,
+    hide_load_spinner: hide_load_spinner,
+    send_redirect: send_redirect
+  }
+
+})();
diff --git a/oxAuth/Server/src/main/webapp/js/respond.min.js b/oxAuth/Server/src/main/webapp/js/respond.min.js
new file mode 100644
index 00000000..80a7b69d
--- /dev/null
+++ b/oxAuth/Server/src/main/webapp/js/respond.min.js
@@ -0,0 +1,5 @@
+/*! Respond.js v1.4.2: min/max-width media query polyfill * Copyright 2013 Scott Jehl
+ * Licensed under https://github.com/scottjehl/Respond/blob/master/LICENSE-MIT
+ *  */
+
+!function(a){"use strict";a.matchMedia=a.matchMedia||function(a){var b,c=a.documentElement,d=c.firstElementChild||c.firstChild,e=a.createElement("body"),f=a.createElement("div");return f.id="mq-test-1",f.style.cssText="position:absolute;top:-100em",e.style.background="none",e.appendChild(f),function(a){return f.innerHTML='&shy;<style media="'+a+'"> #mq-test-1 { width: 42px; }</style>',c.insertBefore(e,d),b=42===f.offsetWidth,c.removeChild(e),{matches:b,media:a}}}(a.document)}(this),function(a){"use strict";function b(){u(!0)}var c={};a.respond=c,c.update=function(){};var d=[],e=function(){var b=!1;try{b=new a.XMLHttpRequest}catch(c){b=new a.ActiveXObject("Microsoft.XMLHTTP")}return function(){return b}}(),f=function(a,b){var c=e();c&&(c.open("GET",a,!0),c.onreadystatechange=function(){4!==c.readyState||200!==c.status&&304!==c.status||b(c.responseText)},4!==c.readyState&&c.send(null))};if(c.ajax=f,c.queue=d,c.regex={media:/@media[^\{]+\{([^\{\}]*\{[^\}\{]*\})+/gi,keyframes:/@(?:\-(?:o|moz|webkit)\-)?keyframes[^\{]+\{(?:[^\{\}]*\{[^\}\{]*\})+[^\}]*\}/gi,urls:/(url\()['"]?([^\/\)'"][^:\)'"]+)['"]?(\))/g,findStyles:/@media *([^\{]+)\{([\S\s]+?)$/,only:/(only\s+)?([a-zA-Z]+)\s?/,minw:/\([\s]*min\-width\s*:[\s]*([\s]*[0-9\.]+)(px|em)[\s]*\)/,maxw:/\([\s]*max\-width\s*:[\s]*([\s]*[0-9\.]+)(px|em)[\s]*\)/},c.mediaQueriesSupported=a.matchMedia&&null!==a.matchMedia("only all")&&a.matchMedia("only all").matches,!c.mediaQueriesSupported){var g,h,i,j=a.document,k=j.documentElement,l=[],m=[],n=[],o={},p=30,q=j.getElementsByTagName("head")[0]||k,r=j.getElementsByTagName("base")[0],s=q.getElementsByTagName("link"),t=function(){var a,b=j.createElement("div"),c=j.body,d=k.style.fontSize,e=c&&c.style.fontSize,f=!1;return b.style.cssText="position:absolute;font-size:1em;width:1em",c||(c=f=j.createElement("body"),c.style.background="none"),k.style.fontSize="100%",c.style.fontSize="100%",c.appendChild(b),f&&k.insertBefore(c,k.firstChild),a=b.offsetWidth,f?k.removeChild(c):c.removeChild(b),k.style.fontSize=d,e&&(c.style.fontSize=e),a=i=parseFloat(a)},u=function(b){var c="clientWidth",d=k[c],e="CSS1Compat"===j.compatMode&&d||j.body[c]||d,f={},o=s[s.length-1],r=(new Date).getTime();if(b&&g&&p>r-g)return a.clearTimeout(h),h=a.setTimeout(u,p),void 0;g=r;for(var v in l)if(l.hasOwnProperty(v)){var w=l[v],x=w.minw,y=w.maxw,z=null===x,A=null===y,B="em";x&&(x=parseFloat(x)*(x.indexOf(B)>-1?i||t():1)),y&&(y=parseFloat(y)*(y.indexOf(B)>-1?i||t():1)),w.hasquery&&(z&&A||!(z||e>=x)||!(A||y>=e))||(f[w.media]||(f[w.media]=[]),f[w.media].push(m[w.rules]))}for(var C in n)n.hasOwnProperty(C)&&n[C]&&n[C].parentNode===q&&q.removeChild(n[C]);n.length=0;for(var D in f)if(f.hasOwnProperty(D)){var E=j.createElement("style"),F=f[D].join("\n");E.type="text/css",E.media=D,q.insertBefore(E,o.nextSibling),E.styleSheet?E.styleSheet.cssText=F:E.appendChild(j.createTextNode(F)),n.push(E)}},v=function(a,b,d){var e=a.replace(c.regex.keyframes,"").match(c.regex.media),f=e&&e.length||0;b=b.substring(0,b.lastIndexOf("/"));var g=function(a){return a.replace(c.regex.urls,"$1"+b+"$2$3")},h=!f&&d;b.length&&(b+="/"),h&&(f=1);for(var i=0;f>i;i++){var j,k,n,o;h?(j=d,m.push(g(a))):(j=e[i].match(c.regex.findStyles)&&RegExp.$1,m.push(RegExp.$2&&g(RegExp.$2))),n=j.split(","),o=n.length;for(var p=0;o>p;p++)k=n[p],l.push({media:k.split("(")[0].match(c.regex.only)&&RegExp.$2||"all",rules:m.length-1,hasquery:k.indexOf("(")>-1,minw:k.match(c.regex.minw)&&parseFloat(RegExp.$1)+(RegExp.$2||""),maxw:k.match(c.regex.maxw)&&parseFloat(RegExp.$1)+(RegExp.$2||"")})}u()},w=function(){if(d.length){var b=d.shift();f(b.href,function(c){v(c,b.href,b.media),o[b.href]=!0,a.setTimeout(function(){w()},0)})}},x=function(){for(var b=0;b<s.length;b++){var c=s[b],e=c.href,f=c.media,g=c.rel&&"stylesheet"===c.rel.toLowerCase();e&&g&&!o[e]&&(c.styleSheet&&c.styleSheet.rawCssText?(v(c.styleSheet.rawCssText,e,f),o[e]=!0):(!/^([a-zA-Z:]*\/\/)/.test(e)&&!r||e.replace(RegExp.$1,"").split("/")[0]===a.location.host)&&("//"===e.substring(0,2)&&(e=a.location.protocol+e),d.push({href:e,media:f})))}w()};x(),c.update=x,c.getEmValue=t,a.addEventListener?a.addEventListener("resize",b,!1):a.attachEvent&&a.attachEvent("onresize",b)}}(this);
\ No newline at end of file
diff --git a/oxAuth/Server/src/main/webapp/js/revocation.js b/oxAuth/Server/src/main/webapp/js/revocation.js
new file mode 100644
index 00000000..f68ea1a0
--- /dev/null
+++ b/oxAuth/Server/src/main/webapp/js/revocation.js
@@ -0,0 +1,32 @@
+var revocation = (function () {
+
+    function copy() {
+        var text = document.getElementById('loginForm:text-to-copy');
+        let text_to_copy = '';
+
+        for (var i = 0; i < text.children.length; i++) {
+            var child = text.children[i];
+            console.log(child)
+            text_to_copy += child.innerText + '\n';
+        }
+
+        navigator.clipboard.writeText(text_to_copy);
+    }
+
+    function mouseover() {
+        var text = document.getElementById('loginForm:text-to-copy');
+        text.classList.add("copied");
+    }
+
+    function mouseout() {
+        var text = document.getElementById('loginForm:text-to-copy');
+        text.classList.remove("copied");
+    }
+
+    return {
+        copy: copy,
+        mouseover: mouseover,
+        mouseout: mouseout,
+    }
+
+})();
diff --git a/oxAuth/Server/src/main/webapp/login.xhtml b/oxAuth/Server/src/main/webapp/login.xhtml
new file mode 100644
index 00000000..a20370ec
--- /dev/null
+++ b/oxAuth/Server/src/main/webapp/login.xhtml
@@ -0,0 +1,174 @@
+<!DOCTYPE composition PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN"
+        "http://www.w3.org/TR/xhtml1/DTD/xhtml1-transitional.dtd">
+<ui:composition xmlns="http://www.w3.org/1999/xhtml"
+	xmlns:f="http://xmlns.jcp.org/jsf/core"
+	xmlns:ui="http://xmlns.jcp.org/jsf/facelets"
+	xmlns:h="http://xmlns.jcp.org/jsf/html"
+	template="/WEB-INF/incl/layout/login-template.xhtml">
+	<f:metadata>
+		<f:viewAction action="#{authenticator.prepareAuthenticationForStep}" />
+	</f:metadata>
+	<ui:define name="head">
+		<meta name="description" content="Gluu, Inc." />
+	</ui:define>
+	<ui:define name="pageTitle">
+		<h:outputText value="#{msgs['login.pageTitle']}" />
+	</ui:define>
+	<ui:define name="body">
+		<div class="container">
+			<h:panelGroup rendered="true">
+				<div class="login_bx_1"
+					style="border-radius: 10px; margin-top: 0px; background: white; border: 1px solid #008b8b;">
+					<div class="row">
+						<h:messages class="text-center"
+							style="color:#8b0000;margin:5px;margin-left:20px; font-size:2vw;"
+							infoClass="text-center" errorClass="text-center" />
+					</div>
+					<h:form id="loginForm" style="padding:30px;"  prependId="false">
+						<div class="row">
+							<div class="col-sm-3 col-md-3">
+								<h:outputText value="#{msgs['login.username']}" />
+							</div>
+							<div class="col-sm-9 col-md-9">
+								<h:inputText placeholder="#{msgs['login.username']}"
+									id="username" name="username" required="true" colMd="10"
+									labelColMd="2" autocomplete="off" requiredMessage="Username or Password is missing."
+									value="#{credentials.username}" styleClass="form-control"
+									style="width:100%">
+								</h:inputText>
+							</div>
+						</div>
+						<div class="form-group row"></div>
+						<div class="row">
+							<div class="col-sm-3 col-md-3">
+								<h:outputText value="#{msgs['login.password']}" />
+							</div>
+							<div class="col-sm-9 col-md-9">
+								<h:inputSecret placeholder="#{msgs['login.password']}"
+									colMd="10" id="password" name="password" labelColMd="2"
+									value="#{credentials.password}" autocomplete="off"
+									styleClass="form-control" tyle="width:100%">
+								</h:inputSecret>
+							</div>
+						</div>
+						<div class="form-group row"></div>
+						<div class="row">
+							<div class="col-sm-5 col-md-5">
+								<h:outputLabel styleClass="col-form-label" for="rememberme"
+									value="#{msgs['login.rememberMe']}" />
+							</div>
+							<div class="col-sm-2 col-md-2" style="padding-top: 15px">
+								<input type="checkbox" value="rememberme" id="rememberme"
+									name="rememberme" />
+							</div>
+						</div>
+						<div class="form-group row">
+							<div class="col-sm-offset-2 offset-md-2 col-sm-8 col-md-8">
+								<h:commandButton id="loginButton"
+									style="background-color: #00BE79; color:white;"
+									styleClass="btn col-sm-12" value="#{msgs['login.login']}"
+									onclick="checkRemembeMe()" iconAwesome="fa-sign-in"
+									action="#{authenticator.authenticate}" />
+							</div>
+						</div>
+						<div class="form-group row">
+							<div class="col-sm-offset-3 offset-md-3 col-sm-7 col-md-7">
+								<div class="forgot_link">
+									<a href="/identity/person/passwordReminder.htm"
+										style="color: blue;"> <h:outputText
+											value="#{msgs['login.forgotYourPassword']}" />
+									</a>
+								</div>
+							</div>
+						</div>
+						<h:inputHidden id="platform" />
+					</h:form>
+					<div class="row">
+						<div align="center" class="col-sm-offset-4 col-sm-9">
+							<ui:repeat
+								value="#{identity.getWorkingParameter('download_url').entrySet().toArray()}"
+								var="_entry">
+								<ui:param name="app_name" value="#{_entry.key}" />
+								<ui:param name="app_link" value="#{_entry.value}" />
+								<h:outputLink style="margin-right:5px;" value="#{app_link}"
+									title="#{app_name}">
+									<h:graphicImage value="img/#{app_name}.png" />
+								</h:outputLink>
+							</ui:repeat>
+						</div>
+						<h:panelGroup layout="block"
+							rendered="#{external_registration_uri != Null}">
+							<div class="reg_link">
+								<a href="#{external_registration_uri}"> <h:outputText
+										value="Register Now " />
+								</a>
+							</div>
+						</h:panelGroup>
+					</div>
+				</div>
+			</h:panelGroup>
+		</div>
+		<script type="text/javascript">
+    		$(document).ready(function () {
+    			$('.other').click(function(){
+    				$('#social_new').toggle();
+    			});
+                if (localStorage.chkbx &amp;&amp; localStorage.chkbx != '') {
+                    $('#rememberme').attr('checked', 'checked')
+                    document.getElementById("loginForm:username").value = localStorage.usrname;
+                } else {
+                    $('#rememberme').removeAttr('checked');
+                    document.getElementById("loginForm:username").value = "";
+                }
+
+                $('#rememberme').click(function() {
+                    checkRemembeMe();
+                });
+
+                fillPlatformField();
+
+				var userNameField = document.getElementById("loginForm:username");
+				var passwordField = document.getElementById("loginForm:password");
+
+				passwordField.value = "";
+				var userName = '#{!empty authorizeAction.loginHint ? authorizeAction.loginHint : ""}';
+				if (userName) {
+					userNameField.value = userName;
+					passwordField.focus();
+				} else {
+					userNameField.focus();
+				}
+
+				var displayRegister = #{display_register_action or identity.sessionId.sessionAttributes['display_register_action']};
+				if (displayRegister) {
+					var registerButton = document.getElementById("loginForm:registerId");
+					if (registerButton != null) {
+						registerButton.style.display = 'inline';
+					}
+				}
+    		});
+
+    		function checkRemembeMe() {
+                if ($('#rememberme').is(':checked')) {
+                    localStorage.usrname = document.getElementById("loginForm:username").value;
+                    localStorage.chkbx = $('#rememberme').val();
+                } else {
+                    localStorage.usrname = '';
+                    localStorage.chkbx = '';
+                }
+			}
+
+            function fillPlatformField() {
+                try {
+                    re = /^([^\.]+\.[^\.]+)\..+/;
+                    result = re.exec(platform.version);
+                    if (result != null) {
+                        platform.version=result[1];
+                    }
+    			    document.getElementById("loginForm:platform").value = JSON.stringify(platform);
+                } catch (e) {
+                }
+            }
+        </script>
+	</ui:define>
+</ui:composition>
diff --git a/oxAuth/Server/src/main/webapp/logout.xhtml b/oxAuth/Server/src/main/webapp/logout.xhtml
new file mode 100644
index 00000000..c46ba281
--- /dev/null
+++ b/oxAuth/Server/src/main/webapp/logout.xhtml
@@ -0,0 +1,17 @@
+<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN"
+   "http://www.w3.org/TR/xhtml1/DTD/xhtml1-transitional.dtd">
+<html xmlns="http://www.w3.org/1999/xhtml"
+      xmlns:ui="http://xmlns.jcp.org/jsf/facelets"
+      xmlns:f="http://xmlns.jcp.org/jsf/core"
+      xmlns:h="http://xmlns.jcp.org/jsf/html">
+
+	<f:view transient="true" contentType="text/html" locale="#{language.locale}">
+		<f:metadata>
+			<f:viewAction action="#{identity.logout}" />
+			<f:viewAction action="#{logoutAction.redirect}" />
+	
+			<f:viewParam name="id_token_hint" value="#{logoutAction.idTokenHint}" />
+			<f:viewParam name="post_logout_redirect_uri" value="#{logoutAction.postLogoutRedirectUri}" />
+		</f:metadata>
+	</f:view>
+</html>
\ No newline at end of file
diff --git a/oxAuth/Server/src/main/webapp/opiframe.xhtml b/oxAuth/Server/src/main/webapp/opiframe.xhtml
new file mode 100644
index 00000000..aa00cf76
--- /dev/null
+++ b/oxAuth/Server/src/main/webapp/opiframe.xhtml
@@ -0,0 +1,49 @@
+<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN"
+        "http://www.w3.org/TR/xhtml1/DTD/xhtml1-transitional.dtd">
+<html xmlns="http://www.w3.org/1999/xhtml"
+      xmlns:f="http://xmlns.jcp.org/jsf/core"
+      xmlns:h="http://xmlns.jcp.org/jsf/html">
+
+<f:view transient="true" contentType="text/html">
+<h:head>
+    <meta charset="UTF-8"/>
+    <title>
+        oxAuth - OP iFrame
+    </title>
+    <script type="text/javascript" src="js/crypto-js-4.1.1/crypto-js.js"></script>
+    <script type="text/javascript">
+        //<![CDATA[
+        window.addEventListener("message", receiveMessage, false);
+
+        function receiveMessage(e) {
+            var message = e.data;
+            var clientId = message.split(' ')[0];
+            var sessionState = message.split(' ')[1];
+
+            var salt = sessionState.split('.')[1];
+            var opbs = getOpBrowserState();
+
+            var ss = CryptoJS.SHA256(clientId + ' ' + e.origin + ' ' + opbs + ' ' + salt) + "." + salt;
+
+            var stat = sessionState == ss ? "unchanged" : "changed";
+
+            e.source.postMessage(stat, e.origin);
+        }
+
+        function getOpBrowserState() {
+            var x, y, cookies = document.cookie.split(";");
+            for (var i = 0; i < cookies.length; i++) {
+                x = cookies[i].substr(0, cookies[i].indexOf("="));
+                y = cookies[i].substr(cookies[i].indexOf("=") + 1);
+                x = x.replace(/^\s+|\s+$/g, "");
+                if (x == "opbs") {
+                    return decodeURI(y);
+                }
+            }
+        }
+        //]]>
+    </script>
+</h:head>
+<h:body></h:body>
+</f:view>
+</html>
\ No newline at end of file
diff --git a/oxAuth/Server/src/main/webapp/passwordless/alternative.xhtml b/oxAuth/Server/src/main/webapp/passwordless/alternative.xhtml
new file mode 100644
index 00000000..6c59eed0
--- /dev/null
+++ b/oxAuth/Server/src/main/webapp/passwordless/alternative.xhtml
@@ -0,0 +1,128 @@
+<div	xmlns:ui="http://xmlns.jcp.org/jsf/facelets"
+	xmlns:fn="http://xmlns.jcp.org/jsp/jstl/functions">
+
+	<section class="pa4 shadow-4 bg-blank gray cust-section dn" id="alternatives_section">
+
+		<h2 class="f3 dark-blue2">#{msgs['casa.alternative']}</h2>
+
+		<div class="pt3 mw6-ns">
+			<table class="table table-hover table-sm">
+				<tbody class="table-striped">
+					<ui:repeat value="${identity.getWorkingParameter('methods')}" var="method">
+						<tr class="pointer" onClick="javascript:submitAlternative('#{method}')">
+							<td class="w3 tc">
+								<div id="#{method}" class="f1 bsgreen" />
+							</td>
+							<td class="f7-cust">
+								<div class="pa2 w5">
+									<h3 class="f5 dark-blue2 mb0">#{msgs['casa.'.concat(method).concat('.title')]}</h3>
+									#{msgs['casa.'.concat(method).concat('.text')]}
+								</div>
+							</td>
+						</tr>
+					</ui:repeat>
+				</tbody>
+			</table>
+		</div>
+		<div class="pt2">
+			<input class="f7 bw0 br1 ph3 pv2 bg-orange2 white hover-bg-orange2 hover-white btn cust-misc-button"
+				onclick="hideAlternative()" type="button" value="#{msgs['casa.cancel']}" />
+		</div>
+
+		<form id="casa_form" action="#{request.contextPath}/postlogin.htm">
+			<input type="hidden" name="alternativeMethod" id="alternativeMethod"/>
+		</form>
+
+	</section>
+	<section class="pa4 shadow-4 bg-blank gray cust-section dn" id="cert_hint">
+		<div class="pt3 mw6-ns f7-cust">
+			<h3 class="f5 dark-blue2">#{msgs['casa.cert.precontinue']}</h3>
+			<ul>
+				<li class="pb2">#{msgs['casa.cert.hint_1']}</li>
+				<li class="pb2">#{msgs['casa.cert.hint_2']}</li>
+				<li class="pb2">#{msgs['casa.cert.hint_3']}</li>
+				<li>#{msgs['casa.cert.hint_4']}</li>
+			</ul>
+
+			<div class="pt2 tc">
+				<input class="f7 bw0 br1 ph3 pv2 bg-bsgreen-success white hover-bsgreen-success hover-white mr3 btn cust-primary-button" 
+					onclick="submitForm('cert')" type="button" value="#{msgs['casa.proceed']}" />
+
+				<input class="f7 bw0 br1 ph3 pv2 bg-orange2 white hover-bg-orange2 hover-white btn cust-misc-button"
+					onclick="restore()" type="button" value="#{msgs['casa.cancel']}" />
+			</div>
+		</div>
+	</section>
+	<script>
+		let duration = 500
+		var prev
+
+		function showAlternative(id) {
+			prev = id
+			$("#" + id).slideUp(duration, function() {
+				$("#alternatives_section").slideDown(duration, function() {
+				})
+			})
+		}
+
+		function hideAlternative() {
+			$("#alternatives_section").slideUp(duration, function() {
+				$("#" + prev).slideDown(duration, function() {
+				})
+			})
+		}
+
+		function submitAlternative(alternative) {
+			if (alternative == "cert") {
+				$("#alternatives_section").slideUp(duration, function() {
+					$("#cert_hint").slideDown(duration, function() {
+					})
+				})
+			} else {
+				submitForm(alternative)
+			}
+		}
+
+		function restore()  {
+			$("#cert_hint").slideUp(duration, function() {
+				$("#alternatives_section").slideDown(duration, function() {
+				})
+			})
+		}
+
+		function submitForm(alternative) {
+			let f = document.getElementById("casa_form")
+			f.alternativeMethod.value = alternative
+			f.submit()
+		}
+	</script>
+	<script src="#{request.contextPath}/ext/resources/passwordless/font-awesome-5.12.1.all.min.js" />	
+	<script>
+		let icons = {
+				//See https://github.com/FortAwesome/Font-Awesome/issues/8668
+				"u2f" : '<span class="fa-layers fa-fw" style="bottom:-.6rem"> <i class="fas fa-tablet" data-fa-transform="shrink-1"></i> <i class="fas fa-mobile-alt" data-fa-transform="up-7 shrink-4"></i> <i class="fas fa-stream" data-fa-transform="rotate--90 up-9 shrink-12"></i> </span>',
+				"fido2" : '<span class="fa-layers fa-fw" style="bottom:-.6rem"> <i class="fas fa-tablet" data-fa-transform="shrink-1"></i> <i class="fas fa-mobile-alt" data-fa-transform="up-7 shrink-4"></i> <i class="fas fa-stream" data-fa-transform="rotate--90 up-9 shrink-12"></i> </span>',
+				"super_gluu" : '<i class="far fa-bell" />',
+				"otp" : '<i class="fas fa-qrcode" />',
+				"twilio_sms" : '<i class="fas fa-sms" />',
+				"smpp" : '<i class="fas fa-sms" />',
+				"duo" : '<i class="fas fa-mobile-alt" />',
+				"bioid" : '<i class="fas fa-camera" />',
+				"cert" : '<span class="fa-layers fa-fw mr1 nl3" style="top:-.3rem"> <i class="far fa-circle" data-fa-transform="shrink-4 up-3 right-4"></i> <i class="far fa-circle" data-fa-transform="shrink-5 up-3 right-4"></i> <i class="far fa-circle" data-fa-transform="shrink-6 up-3 right-4"></i> <i class="fas fa-bookmark" data-fa-transform="rotate-30 shrink-9 down-4"></i> <i class="fas fa-bookmark" data-fa-transform="rotate--30 shrink-9 down-4 right-8"></i> </span>',
+				
+				
+			}
+
+		for (let k in icons) {
+			let elem = $("#" + k)
+			if (elem.length == 1) {
+				elem.html(icons[k])
+			}
+		}
+		
+		if (${identity.getWorkingParameter('methods').size() eq 0}) {
+			$("#alter_link").addClass("dn")
+		}
+	</script>
+
+</div>
diff --git a/oxAuth/Server/src/main/webapp/passwordless/bioid-template.xhtml b/oxAuth/Server/src/main/webapp/passwordless/bioid-template.xhtml
new file mode 100644
index 00000000..00b85427
--- /dev/null
+++ b/oxAuth/Server/src/main/webapp/passwordless/bioid-template.xhtml
@@ -0,0 +1,68 @@
+<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN"
+                "http://www.w3.org/TR/xhtml1/DTD/xhtml1-transitional.dtd">
+<html xmlns="http://www.w3.org/1999/xhtml"
+      xmlns:ui="http://xmlns.jcp.org/jsf/facelets"
+      xmlns:f="http://xmlns.jcp.org/jsf/core"
+      xmlns:h="http://xmlns.jcp.org/jsf/html">
+<f:view transient="true" locale="#{language.locale}">
+    <h:head>
+        <meta http-equiv="Content-Type" content="text/html; charset=UTF-8"/>
+        <title>BWS Unified User Interface</title>
+       
+			<meta name="viewport" content="width=device-width, initial-scale=1.0, maximum-scale=1.0" />
+			<link rel="icon" href="#{request.contextPath}/servlet/favicon" type='image/x-icon' />
+
+			<!-- order of stylesheets is important, do not change -->
+			<link rel="stylesheet" href="#{request.contextPath}/stylesheet/bootstrap.min.css" />
+			<link rel="stylesheet" href="#{request.contextPath}/ext/resources/passwordless/style.css" />
+			<link rel="stylesheet" href="#{request.contextPath}/ext/resources/passwordless/tachyons.min.css" />
+
+			<style>
+				.focused-label-big {
+					top: 0;
+					left: 0;
+					right: 0; 
+					display: flex;
+					align-items: center;
+					position: absolute;
+					font-size: .9rem;
+					cursor: text;
+					transition: .2s ease-in-out;
+					box-sizing: border-box;
+					height: .6rem;
+					width: 100%;
+					pointer-events: none;
+					margin-top: .25rem;
+				}
+				.focused-text:valid + .focused-label-big,
+				.focused-text:focus + .focused-label-big {
+					top: -28px;
+					font-size: .7rem;
+					color: #15b565;
+				}
+				.media img {
+					width: 54px;
+					height: 54px;
+					border: 1px solid #dfdfdf;
+					background-color: #e7e7e7;
+					border-radius: 50%;
+				}
+				.mh-3r {
+					max-height: 3rem;
+				}
+			</style>
+
+        <ui:insert name="head"/>
+    </h:head>
+    <h:body>
+        <div class="body">
+        	
+
+			<h:messages id="messages" globalOnly="true" styleClass="message"
+                        errorClass="errormsg" infoClass="infomsg" warnClass="warnmsg"
+                        rendered="#{showGlobalMessages != 'false'}"/>
+            <ui:insert name="body"/>
+        </div>
+    </h:body>
+</f:view>
+</html>
\ No newline at end of file
diff --git a/oxAuth/Server/src/main/webapp/passwordless/bioid.xhtml b/oxAuth/Server/src/main/webapp/passwordless/bioid.xhtml
new file mode 100644
index 00000000..b8814ae4
--- /dev/null
+++ b/oxAuth/Server/src/main/webapp/passwordless/bioid.xhtml
@@ -0,0 +1,1043 @@
+<!DOCTYPE composition PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN"
+		"http://www.w3.org/TR/xhtml1/DTD/xhtml1-transitional.dtd">
+<ui:composition xmlns="http://www.w3.org/1999/xhtml"
+	xmlns:f="http://xmlns.jcp.org/jsf/core"
+	xmlns:ui="http://xmlns.jcp.org/jsf/facelets"
+	xmlns:h="http://xmlns.jcp.org/jsf/html"
+	template="/passwordless/bioid-template.xhtml">
+
+	<f:metadata>
+		<f:viewAction action="#{authenticator.prepareAuthenticationForStep}"
+			if="#{not identity.loggedIn}" />
+	</f:metadata>
+
+	<ui:define name="head">
+		<meta charset="utf-8" />
+
+		<link href="../auth/bioid/css/uui.css" rel="stylesheet" />
+
+	</ui:define>
+	<ui:define name="pageTitle">#{msgs['pwdless.pageTitle']}</ui:define>
+
+	<ui:define name="body">
+
+		<header class="header"> <img class="logo"
+			src="../auth/bioid/images/logo.svg" alt="BioID Logo" />
+		<div id="uuititle" class="title" data-res="titleVerification"></div>
+		</header>
+		<section id="bioid_casa"> <main class="main"> <section
+			id="uuiintroduction" class="hidden">
+		<div class="intro-title mb-3" data-res="introductionTitle">How
+			it works</div>
+		<div class="row">
+			<div class="col col-right-border">
+				<div class="col-fix-size float-right">
+					<div class="intro-subtitle" data-res="introductionStep1">Step
+						1</div>
+					<div class="intro-description" data-res="introductionStep1Desc1">Before
+						you start</div>
+					<div class="intro-description" data-res="introductionStep1Desc2">
+						come closer to the camera</div>
+					<div class="row">
+						<div class="col m-3">
+							<div class="center">
+								<div class="red center" data-res="introductionTooFarAway">Too
+									far away!</div>
+								<img src="../auth/bioid/images/toofaraway.png" />
+							</div>
+						</div>
+						<div class="col m-3">
+							<div class="center">
+								<div class="red center" data-res="introductionTooClose">Too
+									close!</div>
+								<img src="../auth/bioid/images/tooclose.png" />
+							</div>
+						</div>
+					</div>
+					<div class="row">
+						<div class="col m-3">
+							<div class="center">
+								<div class="blue center" data-res="introductionPerfect">Perfect!</div>
+								<img src="../auth/bioid/images/perfect.png" />
+							</div>
+						</div>
+					</div>
+				</div>
+			</div>
+			<div class="col">
+				<div class="col-fix-size float-left">
+					<div class="intro-subtitle" data-res="introductionStep2">Step
+						2</div>
+					<div class="intro-description" data-res="introductionStep2Desc1">For
+						Liveness Detection</div>
+					<div class="intro-description" data-res="introductionStep2Desc2">
+						nod your head slightly</div>
+					<div class="row mt-3">
+						<div class="col">
+							<div class="center m-3">
+								<video src="../auth/bioid/video/nodyourhead.mp4" class="demo-video"
+									autoplay="autoplay" playsinline="playsinline" loop="loop"
+									muted="muted" oncontextmenu="return false;"></video>
+							</div>
+						</div>
+					</div>
+					<div class="row">
+						<div class="col mt-3">
+							<div class="intro-attention blue"
+								data-res="introductionDontMoveDevice">
+								<strong>Please don't move the device!</strong>
+							</div>
+						</div>
+					</div>
+				</div>
+			</div>
+		</div>
+		
+		<div class="row center m-3">
+			<div class="col mb-5">
+				<button onclick="showIntroduction(false)"
+					class="button button-accept" data-res="buttonReadyToStart">I'm
+					ready to start</button>
+			</div>
+		</div>
+		</section> <section id="uuiwebapp" class="hidden">
+		<div class="row">
+			<div class="col center">
+				<div id="uuiinstruction" class="instruction transparent-background"></div>
+			</div>
+		</div>
+		<div class="row ">
+			
+			<div class="col center">
+				<h:form method="post" id="bioIDForm">
+					<h:commandButton id="enrollButton" value="Enroll Action"
+						style="display:none" action="#{authenticator.authenticate}" />
+				</h:form>
+				<a id="alter_link" href="javascript:showAlternative('bioid_casa')"
+				class="green hover-green f7-cust">#{msgs['casa.alternative']}</a>
+				<button id="uuistart" class="button" data-res="buttonStart">START</button>
+				
+				
+			</div>
+		</div>
+		<div class="row">
+			<div class="col center m-3">
+				<div id="uuiliveview" class="liveview">
+					<div id="uuihead" class="head"></div>
+					<canvas id="uuicanvas" class="canvasview"></canvas>
+				</div>
+				<video id="livevideo" class="live" autoplay="autoplay"
+					playsinline="playsinline" oncontextmenu="return false;"></video>
+			</div>
+		</div>
+		<div class="row">
+			<div class="col center">
+				<div id="uuistatus" class="modal">
+					<div id="uuimessage"></div>
+					<div class="modal-footer">
+						<button id="uuiok" class="button button-ok">OK</button>
+					</div>
+				</div>
+			</div>
+		</div>
+		<div id="uuisingleupload" class="uploadstatus-single">
+			<!-- status images for up to 4 recordings -->
+			<div id="uuiimage1" class="image">
+				<div id="uuiwait1" class="spinner spinner-wait"></div>
+				<div id="uuiupload1" class="spinner spinner-upload"
+					data-res="uploadInfo">Uploading...</div>
+				<img id="uuiuploaded1" class="image-uploaded" />
+				<div id="uuiprogress1" class="progress-single">
+					<div id="uuiprogressbar1" class="progressbar"></div>
+				</div>
+			</div>
+			<div id="uuiimage2" class="image">
+				<div id="uuiwait2" class="spinner spinner-wait"></div>
+				<div id="uuiupload2" class="spinner spinner-upload"
+					data-res="uploadInfo">Uploading...</div>
+				<img id="uuiuploaded2" class="image-uploaded" />
+				<div id="uuiprogress2" class="progress-single">
+					<div id="uuiprogressbar2" class="progressbar"></div>
+				</div>
+			</div>
+			<div id="uuiimage3" class="image">
+				<div id="uuiwait3" class="spinner spinner-wait"></div>
+				<div id="uuiupload3" class="spinner spinner-upload"
+					data-res="uploadInfo">Uploading...</div>
+				<img id="uuiuploaded3" class="image-uploaded" />
+				<div id="uuiprogress3" class="progress-single">
+					<div id="uuiprogressbar3" class="progressbar"></div>
+				</div>
+			</div>
+			<div id="uuiimage4" class="image">
+				<div id="uuiwait4" class="spinner spinner-wait"></div>
+				<div id="uuiupload4" class="spinner spinner-upload"
+					data-res="uploadInfo">Uploading...</div>
+				<img id="uuiuploaded4" class="image-uploaded" />
+				<div id="uuiprogress4" class="progress-single">
+					<div id="uuiprogressbar4" class="progressbar"></div>
+				</div>
+			</div>
+		</div>
+		<div id="uuicompactupload" class="uploadstatus-compact">
+			<div id="uuiprogresscompact" class="progress-compact">
+				<div id="uuiprogressbarcompact" class="progressbar"></div>
+			</div>
+		</div>
+		</section> <section id="uuisplash" class="hidden">
+		<div class="row mt-9 d-flex justify-content-center">
+			<div class="col-8">
+				<div id="uuiprompt" class="promt">
+					<p data-res="prompt" class="mt-9"></p>
+					<p id="uuierror" class="alert-danger"></p>
+					
+				</div>
+			</div>
+		</div>
+		
+		</section>
+		
+		
+		 </main> </section>
+		<div class="row mt-9 d-flex justify-content-center h-100">
+			
+			<div class="my-auto">
+			<ui:include src="/passwordless/alternative.xhtml" />
+			</div>
+		</div>
+		<script src="../auth/bioid/js/jquery-3.5.1.min.js"></script>
+		<script src="../auth/bioid/js/getUserMedia.min.js"></script>
+		<script src="../auth/bioid/js/bws.capture.js"></script>
+		<script src="../auth/bioid/js/three.min.js"></script>
+		<script src="../auth/bioid/js/objLoader.min.js"></script>
+		<script type="text/javascript">
+		//<![CDATA[
+
+        var token = '${identity.getWorkingParameter('access_token')}';
+        var returnURL = 'madhu-ubu16.infinity.com';
+        var state = '${identity.getWorkingParameter('state')}';
+        var apiurl = 'https://bws.bioid.com/extension/';
+        var task = '${identity.getWorkingParameter('bioID_auth_method')}';;
+        
+        var trait = "Face,Periocular";
+        var executions = 3;
+        var recordings = 4;
+        var threshold = 50;
+        
+        var challengeResponse = false;
+        
+        var challenges = "[]";
+        var maxHeight = 320;
+		var skipIntro = true;
+			
+		$(function() {
+			initialize();
+
+			$('#uuicancel').attr(
+					'href',
+					returnURL + '?error=user_abort&access_token=' + token
+							+ '&state=' + state);
+			$('#uuiskip').attr(
+					'href',
+					returnURL + '?error=user_skip&access_token=' + token
+							+ '&state=' + state);
+
+			if (task === 'verification') {
+				$('#uuimobileapp').attr(
+						'href',
+						'bioid-verify://?access_token=' + token
+								+ '&return_url=' + returnURL + '&state='
+								+ state);
+			} else if (task === 'enrollment') {
+				$('#uuimobileapp').attr(
+						'href',
+						'bioid-enroll://?access_token=' + token
+								+ '&return_url=' + returnURL + '&state='
+								+ state);
+			}
+
+			$('#uuiinstruction').attr('data-res', 'UserInstruction-CloseUp');
+
+			$('#uuimobileapp').click(function() {
+				$('#uuimobileapp').hide();
+			});
+
+			//if (skipIntro) {
+				showIntroduction(false);
+			/*} else {
+				showIntroduction(true);
+			} */
+		});
+		
+	     // BWS capture jQuery plugin
+        var bwsCapture = null;
+
+        // counter for current execution
+        var currentExecution = 0;
+
+        var currentTag = '';
+        var parentTag = '';
+
+        // enrollment without challenge response
+        var enrollmentTags = ['left', 'right', 'right', 'left', 'up', 'down', 'down', 'up'];
+        var predefinedTags = ['left', 'right', 'up', 'down'];
+
+        // map for the compact upload
+        var progressMap = new Map();
+
+        // localized messages (english defaults, might get overloaded in
+		// initialize())
+        var localizedData = {
+              "titleEnrollment": "Enrollment",
+              "titleVerification": "Verification",
+              "titleIdentification": "Identification",
+              "titleLiveDetection": "Liveness Detection",
+
+              "introductionTitle": "How it works",
+              "introductionStep1": "Step 1",
+              "introductionStep1Desc1": "Before you start",
+              "introductionStep1Desc2": "come closer to the camera",
+              "introductionTooFarAway": "Too far away!",
+              "introductionTooClose": "Too close!",
+              "introductionPerfect": "Perfect!",
+              "introductionStep2": "Step 2",
+              "introductionStep2Desc1": "For Liveness Detection",
+              "introductionStep2Desc2": "nod your head slightly",
+              "introductionDontMoveDevice": "Please don't move the device!",
+              "introductionDontShowAgain": "GOT IT! Don't show the instruction again",
+
+              "buttonCancel": "back",
+              "buttonCancel.title": "Abort and navigate back to caller",
+              "buttonReadyToStart": "I'm ready to start",
+              "buttonContinue": "Skip biometrics",
+              "buttonMobileApp": "Start BioID app",
+
+              "prompt": "It seems like we don't have access to the camera. For performing biometric operations, please try the following:<br/>- Grant access to the camera.<br/>- Use a different browser (e.g. the most recent versions of Opera, Firefox, Chrome or Edge).",
+              "mobileapp": "If you have installed the BioID App on your mobile device, you can use this app for enrollment or verification.",
+
+              "uploadInfo": "Uploading...",
+
+              "capture-error": "We could not capture an image.<br />Sorry, but without access to the camera, facial recognition and liveness detection aren't possible!",
+              "nogetUserMedia": "Your browser does not support the HTML5 Media Capture and Streams API. Please use a different browser or the BioID mobile app.",
+              "permissionDenied": "Permission Denied!",
+              "webgl-error": "WebGL is disabled or unavailable. If possible activate WebGL or use another browser.",
+
+              "UserInstruction-CloseUp": "Come close before you start",
+              "UserInstruction-NodYourHead": "Please nod your head",
+              "UserInstruction-FollowMe": "Follow the blue head",
+              "UserInstruction-NoMovement": "Follow the head's movement",
+              "UserInstruction-PleaseWait": "Please wait",
+
+              "Perform-enrollment": "Training...",
+              "Perform-verification": "Verifying...",
+              "Perform-identification": "Identifying...",
+              "Perform-livenessdetection": "Processing...",
+
+              "NoMotionDetected": "We could not detect any motion.<br/>For Liveness Detection please nod your head slightly.",
+              "NoFaceFound": "We could not find a suitable face.<br/>Come close and look straight before you start.",
+              "MultipleFacesFound": "We found multiple faces or a strongly uneven background distracted us.<br/>Your face should fill the circle completely.",
+              "LiveDetectionFailed": "Liveness Detection failed.<br/>Look straight into the camera, then nod your head slightly.<br/>Please ensure constant lighting.",
+              "ChallengeResponseFailed": "Challenge-Response failed!<br/>Slowly follow the head's movement.",
+              "NotRecognized": "You have not been recognized!<br/>Please ensure constant lighting. For improving recognition, please enroll again."
+        };
+
+        /*
+		 * ----------------- Set button functionality
+		 * ------------------------------------------
+		 */
+
+
+        // jQuery - shortcut for $(document).ready()
+        // Document Object Model (DOM) is ready
+        
+
+        function showIntroduction(show) {
+            if (show) {
+                $('#uuiintroduction').show();
+            }
+            else {
+                $('#uuiintroduction').hide();
+                $('#uuiwepapp').show();
+                initCapture();
+
+                let checked = $('#introskip').prop("checked");
+                if (checked) {
+                    skipIntro = true;
+                    // set cookie (1 year) to skip the introduction for the next
+					// time
+                    // document.cookie =
+					// "BioIDSkipIntro=true;max-age=31536000;path=/";
+                }
+            }
+        }
+
+        function initCapture() {
+            // init BWS capture jQuery plugin (see bws.capture.js)
+            bwsCapture = bws.initcapture(document.getElementById('uuicanvas'), document.getElementById('livevideo'), token, {
+                apiurl: apiurl,
+                task: task,
+                trait: trait,
+                threshold: threshold,
+                challengeResponse: challengeResponse,
+                recordings: recordings,
+                maxheight: maxHeight
+            });
+            let success = initHead();
+            if (!success) {
+                $('#uuierror').html(formatText('webgl-error'));
+                $('#uuiskip').show();
+            }
+            else {
+                // and start everything
+                onStart();
+            }
+        }
+
+        // called from Start button and onStart to initiate a new recording
+        function startRecording() {
+          $('#uuistart').attr('disabled', 'disabled');
+          var tags = challengeResponse && challenges.length > currentExecution && challenges[currentExecution].length > 0 ? challenges[currentExecution] : [];
+          bwsCapture.startRecording(tags);
+        }
+
+        // called from Mirror button to mirror the captured image
+        function mirror() {
+            bwsCapture.mirror();
+        }
+
+
+        /*
+		 * ---------------- Localization of strings
+		 * ----------------------------------------------
+		 */
+
+
+        // localization of displayed strings
+        function localize() {
+            // loops through all HTML elements that must be localized.
+            let resourceElements = $('[data-res]');
+            for (let i = 0; i < resourceElements.length; i++) {
+                let element = resourceElements[i];
+                let resourceKey = $(element).attr('data-res');
+                if (resourceKey) {
+                    // Get all the resources that start with the key.
+                    for (let key in localizedData) {
+                        if (key.indexOf(resourceKey) === 0) {
+                            let value = localizedData[key];
+                            // Dot notation in resource key - assign the
+							// resource value to the elements property
+                            if (key.indexOf('.') > -1) {
+                                let attrKey = key.substring(key.indexOf('.') + 1);
+                                $(element).attr(attrKey, value);
+                            }
+                            // No dot notation in resource key, assign the
+							// resource value to the element's innerHTML.
+                            else if (key === resourceKey) {
+                                $(element).html(value);
+                            }
+                        }
+                    }
+                }
+            }
+        }
+
+        // localization and string formatting (additional arguments replace {0},
+		// {1}, etc. in localizedData[key])
+        function formatText(key) {
+            var formatted = key;
+            if (localizedData[key] !== undefined) {
+                formatted = localizedData[key];
+            }
+            for (let i = 1; i < arguments.length; i++) {
+                formatted = formatted.replace('{' + (i - 1) + '}', arguments[i]);
+            }
+            return formatted;
+        }
+        // jQuery - shortcut for $(document).ready()
+        // Document Object Model (DOM) is ready
+        $(function () {
+            initialize();
+
+            // set navigation for the buttons
+            $('#uuicancel').attr('href', returnURL + '?error=user_abort&access_token=' + token + '&state=' + state);
+            $('#uuiskip').attr('href', returnURL + '?error=user_skip&access_token=' + token + '&state=' + state);
+
+            // set url for the BioID mobile app
+            if (task === 'verification') {
+                $('#uuimobileapp').attr('href', 'bioid-verify://?access_token=' + token + '&return_url=' + returnURL + '&state=' + state);
+            }
+            else if (task === 'enrollment') {
+                $('#uuimobileapp').attr('href', 'bioid-enroll://?access_token=' + token + '&return_url=' + returnURL + '&state=' + state);
+            }
+
+            $('#uuiinstruction').attr('data-res', 'UserInstruction-CloseUp');
+
+            // hide button after first click
+            $('#uuimobileapp').click(function () {
+                $('#uuimobileapp').hide();
+            });
+
+            // Check if cookie is set
+            // let skipCookie = false;
+            // var cookie = document.cookie;
+            // if (cookie != "") {
+            // skipCookie = cookie.includes('true');
+            // }
+
+            if (skipIntro /* || skipCookie */) {
+                showIntroduction(false);
+            }
+            else {
+                showIntroduction(true);
+            }
+        });
+
+        /*
+		 * ----------------- Initialize BWS capture jQuery plugin
+		 * --------------------------------
+		 */
+
+
+        // initialize - load content in specific language and initialize bws
+		// capture
+        function initialize() {
+            // change title if task is enrollment
+            if (task === 'enrollment') {
+                $('#uuititle').attr('data-res', 'titleEnrollment');
+            }
+            // change title if task is identification
+            else if (task === 'identification') {
+                $('#uuititle').attr('data-res', 'titleIdentification');
+            }
+            else if (task === 'livenessdetection') {
+                $('#uuititle').attr('data-res', 'titleLiveDetection');
+            }
+
+            // try to get language info from the browser.
+            let userLangAttribute = navigator.language || navigator.userLanguage || navigator.browserLanguage || 'en';
+            let userLang = userLangAttribute.slice(0, 2);
+            // let userLocation = userLangAttribute.slice(-2) || 'us';
+
+            $.getJSON('./language/' + userLang + '.json').
+            done(function (data) {
+                console.log('Loaded the language-specific resource successfully');
+                localizedData = data;
+            }).fail(function (textStatus, error) {
+                console.log('Loading of language-specific resource failed with: ' + textStatus + ', ' + error);
+            }).always(function () {
+                localize();
+            });
+        }
+
+        /*
+		 * ------------------ Start BWS capture jQuery plugin
+		 * -----------------------------------
+		 */
+
+        // startup code
+        function onStart() {
+            bwsCapture.start(function () {
+                captureStarted();
+                $('#uuicanvas').show();
+            }, function (error) {
+
+                // hide uuiwebapp
+                $('#uuiwebapp').hide();
+
+                // show default information about general issues
+                $('#uuisplash').show();
+
+                // show button for continue without biometrics (skip biometric
+				// task)
+                $('#uuiskip').show();
+                // show button for BioID app (interapp communication)
+                if (task === 'verification' || task === 'enrollment') {
+                    $('#uuimobileapp').show();
+                }
+                if (error !== undefined) {
+                    // different browsers use different errors
+                    if (error.code === 1 || error.name === 'PermissionDeniedError') {
+                        // in the spec we find code == 1 and name ==
+						// PermissionDeniedError for the permission denied error
+                        $('#uuierror').html(formatText('capture-error', formatText('PermissionDenied')));
+                    } else {
+                        // otherwise try to print the error
+                        $('#uuierror').html(formatText('capture-error', error));
+                    }
+                } else {
+                    // no error info typically says that browser doesn't support
+					// getUserMedia
+                    $('#uuierror').html(formatText('nogetUserMedia'));
+                }
+            }, function (error, retry) {
+                // done
+                stopRecording();
+                currentExecution++;
+
+                if (error !== undefined && retry && currentExecution < executions) {
+                    console.log('Current Execution: ' + currentExecution);
+                } else {
+                    // done: redirect to caller ...
+                    let url = returnURL + '?access_token=' + token;
+                    if (error !== undefined) {
+                        url = url + '&error=' + error;
+                    }
+                    url = url + '&state=' + state + '&skipintro=' + skipIntro;
+                    window.location.replace(url);
+                }
+            }, function (status, message, dataURL) {
+                let $msg;
+                if (status === 'UploadProgress') {
+                        // for single upload status
+                        let id = message.id;
+                        let modId = ((id - 1) % 4) + 1;
+                        // for compact upload status
+                        let progresscompact = 0;
+                        progressMap.set(id, message.progress);
+                        progressMap.forEach(function (value) { return progresscompact += value });
+                        progresscompact = Math.ceil(progresscompact / recordings);
+                
+                        if (progresscompact > 100) {
+                            progresscompact = 100;
+                        }
+
+                        // css media query decision
+                        if ($('#uuisingleupload').is(':visible') == true) {
+                            $('#uuiprogress' + modId).show();
+                            $('#uuiprogressbar' + modId).width(message.progress + '%');
+                            // if the window size changed
+                            $('#uuiprogresscompact').hide();
+                        }
+                        else {
+                            $('#uuiprogresscompact').show();
+                            $('#uuiprogressbarcompact').width(progresscompact + '%');
+                        }
+                }
+                else if (status === 'DisplayTag') {
+                    setCurrentTag(message);
+                    $msg = $('#uuiinstruction');
+                    if (challengeResponse || task === 'enrollment') {
+                        $msg.html(formatText('UserInstruction-FollowMe'));
+                    }
+                    else {
+                        $msg.html(formatText('UserInstruction-NodYourHead'));
+                    }
+                    $msg.stop(true).fadeIn();
+                } else {
+                    // report a message on the screen
+                    let msg = formatText(status);
+
+                    // user instructions
+                    if (status.indexOf('UserInstruction') > -1) {
+                        $msg = $('#uuiinstruction');
+                        if (status === 'UserInstruction-Start') {
+                          let counter = recordings;
+                          if (counter > 4) {
+                            counter = 4;
+                          }
+                          for (let i = 1; i <= counter; i++) {
+                            $('#uuiuploaded' + i).hide();
+                            $('#uuiupload' + i).hide();
+                            $('#uuiwait' + i).show();
+                            $('#uuiimage' + i).show();
+                            $('#uuiprogress' + i).hide();
+                            $('#uuiprogressbar' + i).width(0);
+                          }
+                          progressMap.clear();
+                          $('#uuiprogresscompact').hide();
+                          $('#uuiprogressbarcompact').width(0);
+                          resetHeadDisplay();
+                        }
+                        else {
+                            $msg.html(msg);
+                            $msg.stop(true).fadeIn();
+                        }
+                    }
+
+                    // perform tasks
+                    if (status.indexOf('Perform') > -1 || status.indexOf('Retry') > -1) {
+                        // hide compact upload progress
+                        $('#uuiprogresscompact').hide();
+                    }
+
+                    // results of uploading or perform task
+                    if (status.indexOf('Failed') > -1 ||
+                        status.indexOf('NotRecognized') > -1 ||
+                        status.indexOf('NoFaceFound') > -1 ||
+                        status.indexOf('MultiFacesFound') > - 1) {
+
+                        changeLiveView(true);
+
+                        // show message
+                        $('#uuiinstruction').text('');
+                        $('#uuistatus').show();
+                        $msg = $('#uuimessage');
+                        $msg.html(formatText(msg));
+                        $msg.stop(true).fadeIn();
+                    }
+
+                    // display some animations/images depending on the status
+                    let uploaded = bwsCapture.getUploaded();
+                    let recording = uploaded + bwsCapture.getUploading();
+                    // use modulo calculation for images more than 4
+                    let modRecording = ((recording-1) % 4) + 1;
+                    let modUploaded = ((uploaded-1) % 4) + 1;
+
+                    if (status === 'Uploading') {
+                        // begin an upload - current image
+                        $('#uuiwait' + modRecording).hide();
+                        $('#uuiupload' + modRecording).show();
+                        $('#uuiuploaded' + modRecording).hide();
+
+                        // if uuiuploaded is not visible -> mobile view
+                        if (recording >= recordings) {
+                            $('#uuiinstruction').html(formatText('UserInstruction-PleaseWait'));
+                            changeLiveView(true);
+                        }
+                    } else if (status === 'Uploaded') {
+                        // successfull upload (we should have a dataURL)
+                        if (dataURL) {
+                            $('#uuiupload' + modUploaded).hide();
+                            $('#uuiprogress' + modUploaded).hide();
+                            let $image = $('#uuiuploaded' + modUploaded);
+                            $image.attr('src', dataURL);
+                            $image.show();
+                        }
+                    } else if (status === 'NoFaceFound' || status === 'MultipleFacesFound') {
+                        // upload failed
+                        recording++;
+                        modRecording = ((recording-1) % 4) + 1;
+                        $('#uuiupload' + modRecording).hide();
+                        $('#uuiwait' + modRecording).show();
+                    }
+                }
+            });
+        }
+
+        // switch between liveview and displayed messages
+        function changeLiveView(blur) {
+            if (blur) {
+                // hide head and blur canvas
+                hideHead();
+                $('#uuicanvas').css('filter', 'blur(10px)');
+                $('#uuiprogresscompact').hide();
+            }
+            else {
+                $('#uuicanvas').css('filter', 'none');
+                showHead();
+            }
+        }
+
+        // called by onStart to update GUI
+        function captureStarted() {
+            $('#uuiwebapp').show();
+            $('#uuimessage').show();
+            $('#uuiinstruction').show();
+
+            // Currently not neccessary - therefore the button is not shown!
+            // $('#uuimirror').show().click(mirror);
+
+            $('#uuistart').show().click(function () { startRecording(task === 'enrollment'); });
+
+
+            $('#uuiok').show().click(function () {
+                $('#uuistatus').hide();
+                $('#uuistart').prop('disabled', false);
+                $('#uuiinstruction').html(formatText('UserInstruction-CloseUp'));
+                changeLiveView(false);
+            });
+
+            setTimeout(function () { console.log('triggered showHead'); showHead(); }, 50);
+
+        }
+
+        // called from onStart when recording is done
+        function stopRecording() {
+            hideHead();
+
+            bwsCapture.stopRecording();
+
+            for (let i = 1; i <= 4; i++) {
+                $('#uuiimage' + i).hide();
+            }
+        }
+
+        /*
+		 * -------------------- Displaying head
+		 * ---------------------------------------------------
+		 */
+
+        var camera, scene, renderer, id;
+        var startTime;
+        var resetHead = false;
+        const maxVertical = 0.20;
+        const maxHorizontal = 0.25;
+
+        function initHead() {
+            // renderer
+            try {
+                renderer = new THREE.WebGLRenderer({ alpha: true });
+            }
+            catch (e) {
+                return false;
+            }
+
+            let container = document.getElementById('uuihead');
+            document.body.appendChild(container);
+
+            let width = $('#uuihead').width();
+            let height = $('#uuihead').height();
+            let uuihead = $('#uuihead');
+            $('#uuiliveview').append(uuihead);
+
+            // camera
+            camera = new THREE.PerspectiveCamera(20, width / height, 1, 1000);
+            camera.position.set(0, 0, 5.5);
+
+            // scene
+            scene = new THREE.Scene();
+            let ambientLight = new THREE.AmbientLight(0x4953FF, 0.4);
+            scene.add(ambientLight);
+            let pointLight = new THREE.PointLight(0x3067FF, 0.8);
+            camera.add(pointLight);
+            scene.add(camera);
+
+            // texture
+            let manager = new THREE.LoadingManager();
+            manager.onProgress = function (item, loaded, total) {
+                console.log(item, loaded, total);
+            };
+
+            // model
+            let onProgress = function (xhr) {
+                if (xhr.lengthComputable) {
+                    let percentComplete = xhr.loaded / xhr.total * 100;
+                    console.log(Math.round(percentComplete, 2) + '% downloaded');
+                }
+            };
+            let onError = function (xhr) {};
+            let loader = new THREE.OBJLoader(manager);
+            let material = new THREE.MeshLambertMaterial({ transparent: false, opacity: 0.8 });
+
+            loader.load('../auth/bioid/model/head.obj', function (head) {
+                head.traverse(function (child) {
+                    if (child instanceof THREE.Mesh) {
+                     // child.material = material;
+                    }
+                });
+                head.name = 'BioIDHead';
+                head.position.y = 0;
+                scene.add(head);
+            }, onProgress, onError);
+
+            renderer.setClearColor(0x000000, 0); // the default
+            renderer.setPixelRatio(window.devicePixelRatio);
+            renderer.setSize(width, height);
+
+            container.appendChild(renderer.domElement);
+            document.addEventListener('uuiresize', onHeadResize, false);
+
+            return true;
+        }
+
+        function onHeadResize() {
+          
+            let canvasWidth = parseInt($('#uuicanvas').width());
+            let canvasHeight = parseInt($('#uuicanvas').height());
+
+            $('#uuihead').css({ 'margin-top': -canvasHeight, 'margin-left': '0' });
+            $('#uuihead').attr('width', canvasWidth);
+            $('#uuihead').attr('height', canvasHeight + 50);
+			
+            camera.aspect = canvasWidth / canvasHeight;
+            camera.updateProjectionMatrix();
+            renderer.setSize(canvasWidth, canvasHeight);
+            renderer.render(scene, camera);
+        }
+
+        function resetHeadDisplay() {
+            currentTag = '';
+            parentTag = '';
+            resetHead = true;
+            cancelAnimationFrame(id);
+            $('.head').css('opacity', '0.6');
+        }
+
+        function setCurrentTag(tag) {
+            if (currentTag !== '') {
+                parentTag = currentTag;
+            }
+
+            currentTag = tag;
+            startTime = new Date().getTime();
+
+            if (currentTag === 'any' && task !== 'enrollment') {
+                constantAnimation();
+            }
+            else {
+                animateHead();
+                console.log('DisplayTag: ' + tag);
+            }
+        }
+
+        function constantAnimation() {
+            // change css class 'head'
+            $('.head').css('opacity', '0.8');
+
+            // animation time
+            let delta = 0.005;
+            let head = scene.getObjectByName('BioIDHead');
+            showHead();
+
+            let direction = 'down';
+            var animate = function () {
+
+                if (direction === 'up') {
+                    if (head.rotation.x >= -maxVertical) {
+                        head.rotation.x -= delta;
+                    }
+                    else {
+                        direction = 'down';
+                    }
+                }
+
+                if (direction === 'down') {
+                    if (head.rotation.x <= maxVertical) {
+                        head.rotation.x += delta;
+                    }
+                    else {
+                        direction = 'up';
+                    }
+                }
+
+                id = requestAnimationFrame(animate);
+                renderer.render(scene, camera);
+            };
+            animate();
+        }
+
+        function animateHead() {
+            // animation time
+            let speed = 0.000005;
+            let endTime = new Date().getTime();
+            let deltaTime = (endTime - startTime);
+            let delta = deltaTime * speed;
+
+            let head = scene.getObjectByName('BioIDHead');
+            let doAnimation = false;
+
+            if (head) {
+                if (resetHead) {
+                    // reset head rotation to center
+                    head.rotation.x = 0;
+                    head.rotation.y = 0;
+                    resetHead = false;
+                    doAnimation = true;
+                    // change css class 'head'
+                    $('.head').css('opacity', '0.8');
+                    showHead();
+                }
+                else {
+                    if (currentTag === 'any') {
+                        if (task === 'enrollment') {
+                            // get predefined direction for better enrollment
+                            let recording = bwsCapture.getUploaded() + bwsCapture.getUploading() - 1;
+                            currentTag = enrollmentTags[recording];
+                        }
+                        else {
+                            if (head.rotation.x >= -maxVertical && head.rotation.x <= 0) {
+                                head.rotation.x -= delta;
+                                doAnimation = true;
+                            }
+                            else {
+                                head.rotation.x += delta;
+                                doAnimation = true;
+                            }
+                        }
+                    }
+
+                    if (currentTag === 'down') {
+                        head.rotation.y = 0;
+                        if (parentTag === 'up') {
+                            if (head.rotation.x <= 0) {
+                                head.rotation.x += delta;
+                                doAnimation = true;
+                            }
+                        }
+                        else {
+                            if (head.rotation.x >= 0 && head.rotation.x < maxVertical) {
+                                head.rotation.x += delta;
+                                doAnimation = true;
+                            }
+                        }
+                    }
+                    else if (currentTag === 'up') {
+                        head.rotation.y = 0;
+                        if (parentTag === 'down') {
+                            if (head.rotation.x >= 0) {
+                                head.rotation.x -= delta;
+                                doAnimation = true;
+                            }
+                        }
+                        else {
+                            if (head.rotation.x >= -maxVertical && head.rotation.x <= 0) {
+                                head.rotation.x -= delta;
+                                doAnimation = true;
+                            }
+                        }
+                    }
+                    else if (currentTag === 'left') {
+                        head.rotation.x = 0;
+                        if (parentTag === 'right') {
+                            if (head.rotation.y >= 0) {
+                                head.rotation.y -= delta;
+                                doAnimation = true;
+                            }
+                        }
+                        else {
+                            if (head.rotation.y >= -maxHorizontal && head.rotation.y <= 0) {
+                                head.rotation.y -= delta;
+                                doAnimation = true;
+                            }
+                        }
+                    }
+                    else if (currentTag === 'right') {
+                        head.rotation.x = 0;
+                        if (parentTag === 'left') {
+                            if (head.rotation.y <= 0) {
+                                head.rotation.y += delta;
+                                doAnimation = true;
+                            }
+                        }
+                        else {
+                            if (head.rotation.y >= 0 && head.rotation.y <= maxHorizontal) {
+                                head.rotation.y += delta;
+                                doAnimation = true;
+                            }
+                        }
+                    }
+                }
+
+                if (doAnimation) {
+                    id = requestAnimationFrame(animateHead);
+                }
+                renderer.render(scene, camera);
+            }
+        }
+
+        function showHead() {
+
+            $('#uuihead').show();
+            onHeadResize();
+            console.log('showHead')
+        }
+
+        function hideHead() {
+            $('#uuihead').hide();
+            resetHeadDisplay();
+            console.log('hideHead');
+        }
+		//    	]]>
+	</script>
+	</ui:define>
+</ui:composition>
diff --git a/oxAuth/Server/src/main/webapp/passwordless/fido2.xhtml b/oxAuth/Server/src/main/webapp/passwordless/fido2.xhtml
new file mode 100644
index 00000000..db2cbca5
--- /dev/null
+++ b/oxAuth/Server/src/main/webapp/passwordless/fido2.xhtml
@@ -0,0 +1,99 @@
+<ui:composition xmlns="http://www.w3.org/1999/xhtml"
+	xmlns:f="http://xmlns.jcp.org/jsf/core"
+	xmlns:ui="http://xmlns.jcp.org/jsf/facelets"
+	xmlns:h="http://xmlns.jcp.org/jsf/html"
+	template="/passwordless/login-template.xhtml">
+	
+	<f:metadata>
+		<f:viewAction action="#{authenticator.prepareAuthenticationForStep}" if="#{not identity.loggedIn}" />
+	</f:metadata>
+	
+	<ui:define name="pageTitle">#{msgs['pwdless.pageTitle']}</ui:define>
+	
+	<ui:define name="maincontent">
+
+		<script src="../auth/fido2/js/base64js.js" />
+		<script src="../auth/fido2/js/base64url.js" />
+		<script src="../auth/fido2/js/webauthn.js" />
+		<script>
+			var assertion_request = ${identity.getWorkingParameter('fido2_assertion_request')};
+
+			function addMessage(message) {
+				const el = document.getElementById('messages');
+				const p = document.createElement('p');
+				p.appendChild(document.createTextNode(message));
+				el.appendChild(p);
+			}
+
+			function addMessages(messages) {
+				messages.forEach(addMessage);
+			}
+
+			function startAssertion() {
+				console.log('Executing get assertion Fido2 request', assertion_request);
+
+				request = JSON.parse(assertion_request);
+				webauthn.getAssertion(request).then(data => {
+					document.getElementById('tokenResponse').value = JSON.stringify(webauthn.responseToObject(data));
+					document.getElementById('authMethod').value = 'authenticate';
+
+					document.getElementById('fido2_form').submit();
+				}).catch((err) => {
+					console.error('Authentication failed', err);
+
+					if (err.name === 'InvalidStateError') {
+						addMessage('#{msgs['casa.fido2.invalid_state_error']}');
+					} else if (err.name === 'AbortError') {
+						addMessage('#{msgs['casa.fido2.abort_error']}');
+					} else {
+						addMessage('#{msgs['casa.fido2.generic_error']}');
+						
+						if (err.message) {
+							console.log(err.name + ': ' + err.message);
+						} else if (err.messages) {
+							console.log(err.messages);
+						}
+					}
+
+					return false;
+				});
+			}
+			function retry() {
+				$("#messages").children().remove()
+				startAssertion()
+			}
+			window.onload = function() {
+				if (assertion_request != null) {
+					setTimeout(startAssertion(), 1000)
+					$("#retry").show()
+				}
+			}
+
+		</script>
+		
+		<form method="post" id="fido2_form" action="#{request.contextPath}/postlogin.htm" onsubmit="return false;">
+			<input type="hidden" name="authMethod" id="authMethod" />
+			<input type="hidden" name="tokenResponse" id="tokenResponse" />
+		</form>
+
+		<section class="pa4 shadow-4 bg-blank gray cust-section" id="fido2_section">
+			<h2 class="f3 dark-blue2">#{msgs['casa.snd_step']}</h2>
+			<div id="messages" class="list dark-red pv2 ph0 ma0 f7-cust mw5" />
+			
+			<div class="flex flex-column items-center pa3">
+				<p class="f4 tc">#{msgs['casa.securitykey.insert']}</p>
+				<img class="w4" src="#{request.contextPath}/img/securitykey.jpg" />
+				<div class="db w5 tc f7-cust pv3">#{msgs['casa.securitykey.tap']}</div>
+			</div>
+
+			<div class="flex justify-between f7-cust">
+				<!-- do not change the ID of anchor following -->
+				<a id="alter_link" href="javascript:showAlternative('fido2_section')" class="green hover-green">#{msgs['casa.alternative']}</a>
+
+				<a id="retry" href="javascript:retry()" class="green hover-green f7-cust pl3 dn">#{msgs['casa.fido2.retry_key']}</a>
+			</div>
+		</section>
+		<ui:include src="/passwordless/alternative.xhtml" />
+	</ui:define>
+
+</ui:composition>
diff --git a/oxAuth/Server/src/main/webapp/passwordless/login-template.xhtml b/oxAuth/Server/src/main/webapp/passwordless/login-template.xhtml
new file mode 100644
index 00000000..87778155
--- /dev/null
+++ b/oxAuth/Server/src/main/webapp/passwordless/login-template.xhtml
@@ -0,0 +1,82 @@
+<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN"
+        "http://www.w3.org/TR/xhtml1/DTD/xhtml1-transitional.dtd">
+<html xmlns="http://www.w3.org/1999/xhtml"
+	xmlns:ui="http://xmlns.jcp.org/jsf/facelets"
+	xmlns:f="http://xmlns.jcp.org/jsf/core"
+	xmlns:h="http://xmlns.jcp.org/jsf/html">
+
+	<f:view transient="true">
+		<h:head>
+			<title><ui:insert name="pageTitle" /></title>
+			<meta name="viewport" content="width=device-width, initial-scale=1.0, maximum-scale=1.0" />
+			<meta http-equiv="Content-Type" content="text/html; charset=utf-8" />
+			<link rel="icon" href="#{request.contextPath}/servlet/favicon" type='image/x-icon' />
+			<script src="#{oxAuthConfigurationService.getJsLocation()}/jquery-3.6.0.min.js" />
+
+			<!-- order of stylesheets is important, do not change -->
+			<link rel="stylesheet" href="#{request.contextPath}/stylesheet/bootstrap.min.css" />
+			<link rel="stylesheet" href="#{request.contextPath}/ext/resources/passwordless/style.css" />
+			<link rel="stylesheet" href="#{request.contextPath}/ext/resources/passwordless/tachyons.min.css" />
+
+			<style>
+				.focused-label-big {
+					top: 0;
+					left: 0;
+					right: 0;
+					display: flex;
+					align-items: center;
+					position: absolute;
+					font-size: .9rem;
+					cursor: text;
+					transition: .2s ease-in-out;
+					box-sizing: border-box;
+					height: .6rem;
+					width: 100%;
+					pointer-events: none;
+					margin-top: .25rem;
+				}
+				.focused-text:valid + .focused-label-big,
+				.focused-text:focus + .focused-label-big {
+					top: -28px;
+					font-size: .7rem;
+					color: #15b565;
+				}
+				.media img {
+					width: 54px;
+					height: 54px;
+					border: 1px solid #dfdfdf;
+					background-color: #e7e7e7;
+					border-radius: 50%;
+				}
+				.mh-3r {
+					max-height: 3rem;
+				}
+			</style>
+
+		</h:head>
+		<h:body class="bg-near-white cust-body-rule">
+			<div class="pa0 flex justify-center gray f6">
+				<div class="flex flex-column min-vh-100 miw-16r mw-60r w-100 bg-washed-blue2 cust-content-rule">
+					<header class="pv2 shadow-4 bg-blank cust-header">
+						<div class="w1-ns"></div>
+						<div class="w4 mh4-ns tc">
+							<img src="#{request.contextPath}/servlet/logo" class="mh-3r" />
+						</div>
+					</header>
+					<!-- grow horizontally and vertically as much as possible -->
+					<div class="flex flex-column justify-between w-100 h-100">
+						<h:panelGroup layout="block" class="flex flex-column items-center justify-center w-100 h-100 mv4" 
+							rendered="#{not identity.loggedIn}">
+							<ui:insert name="maincontent" />
+						</h:panelGroup>
+						<footer class="pa3 f7 dark-gray shadow-4 bg-blank cust-footer-rule">
+							<div class="cust-footer-msg-rule">
+								Powered by <a href="https://gluu.org" class="link blue">Gluu</a>.
+							</div>
+						</footer>
+					</div>
+				</div>
+			</div>			
+		</h:body>
+	</f:view>
+</html>
diff --git a/oxAuth/Server/src/main/webapp/passwordless/login.xhtml b/oxAuth/Server/src/main/webapp/passwordless/login.xhtml
new file mode 100644
index 00000000..923ed334
--- /dev/null
+++ b/oxAuth/Server/src/main/webapp/passwordless/login.xhtml
@@ -0,0 +1,132 @@
+<ui:composition xmlns="http://www.w3.org/1999/xhtml"
+	xmlns:f="http://xmlns.jcp.org/jsf/core"
+	xmlns:ui="http://xmlns.jcp.org/jsf/facelets"
+	xmlns:h="http://xmlns.jcp.org/jsf/html"
+	template="/passwordless/login-template.xhtml">
+	
+	<f:metadata>
+		<f:viewAction action="#{authenticator.prepareAuthenticationForStep}" if="#{not identity.loggedIn}" />
+	</f:metadata>
+	
+	<ui:define name="pageTitle">#{msgs['pwdless.pageTitle']}</ui:define>
+	
+	<ui:define name="maincontent">
+		<section class="pa4 shadow-4 bg-blank gray mw-20r cust-section">
+			<h2 class="f3 dark-blue2">#{msgs['casa.login.panel_title']}</h2>
+			<h:messages class="list dark-red tc pv2 ph0 ma0 f6" />
+			
+			<div id="panel_list" class="pt4 w5 dn">			
+			    <span class="dark-blue2">#{msgs['pwdless.choose']}</span>
+			    <ul id="list" class="list-group f7-cust pv3 pointer">
+			    </ul>
+			    
+			    <div align="center" class="pb3">
+			        <a href="javascript:hidelist()" class="f7-cust green hover-green">#{msgs['pwdless.other']}</a>
+			    </div>
+			</div>
+			
+			<h:form id="loginForm" class="pt3 w5 dn">
+			    
+				<div class="relative mt4 pb2">
+					<h:inputText id="username" value="#{credentials.username}" styleClass="focused-text w-100 pb1 dark-gray" />
+					<label class="focused-label-big">#{msgs['pwdless.username']}</label>
+				</div>
+				<div class="mt5 flex justify-end">
+					<input id="cancel" class="f7-cust bw0 br1 ph4 pv2 bg-orange2 white hover-bg-orange2 hover-white btn cust-misc-button mr2 dn" 
+					    onclick="showlist()" type="button" value="#{msgs['casa.cancel']}" />
+					    
+					<h:commandButton class="f7-cust bw0 br1 ph4 pv2 bg-bsgreen-success white hover-bsgreen-success hover-white btn cust-primary-button"
+						id="loginButton" value="#{msgs['login.login']}" action="#{authenticator.authenticate}" />						
+				</div>
+				
+			</h:form>
+		</section>
+		<script>
+		//<![CDATA[
+		    let duration = 500
+    		
+		    function showlist() {
+	   		    $("#loginForm").slideUp(duration, function() {
+		   		    $("#panel_list").slideDown(duration, function() {
+		   	   	    })
+	   		    })
+   		    }
+		
+            function hidelist() {            
+			    $("#panel_list").slideUp(duration, function() {
+				    $("#loginForm").slideDown(duration, function() {
+				    })
+			    })
+			
+		    }
+		    
+		    function choose(uid) {		    
+				var form = document.forms.loginForm
+				form["loginForm:username"].value = uid
+				form["loginForm:loginButton"].click()
+		    }
+
+            function storedCredsWorkaround() {
+                //Needed when browser pre-fills usr/pwd due to JSF issue with required attribute (see above)
+                let user = document.getElementById("loginForm:username")
+                if ($(user).val()) {
+                    $(user).focus()
+                    $(user).blur()
+                }
+            }
+            
+			//This is needed since JSF does not allow to set required attribute
+			$(".focused-text").attr("required", "true")
+			
+			let loginHint = '${identity.getWorkingParameter('loginHint')}'			
+			if (loginHint.length > 0) {
+			    //Populate input text
+			    $("#loginForm\\:username").val(loginHint)
+			}
+			
+			let users = '${identity.getWorkingParameter('users')}'			
+			users = (users.length > 0) ? JSON.parse(users) : [ ]
+			
+			if (users.length > 0) {
+			    //Populate list
+			    
+			    let li = ''
+			    for (let user of users) {
+			    
+			       div = '<div class="flex justify-between">'
+			       div = div + '<span class="dark-gray">' + user.uid  + '</span>'
+			       
+			       if (user.displayName.length > 0) {
+			           div = div + '<span>(' + user.displayName  + ')</span>'
+			       }
+			       div = div + '</div>'
+			       
+			       li = li + '<li class="list-group-item hover-bg-light-gray gray hover-dark-gray pt2" onClick="javascript:choose(\''
+			       li = li + user.uid + '\')">'
+			       li = li + div
+			       li = li + '</li>'
+			    }
+			    
+			    $("#list").append(li)
+			    $("#cancel").removeClass("dn")
+			    $("#panel_list").removeClass("dn")
+			    
+			} else {
+			    $("#loginForm").removeClass("dn")
+			    if (loginHint.length == 0) {
+			        storedCredsWorkaround()
+			    }
+			}
+					//    	]]>
+		</script>
+		<!-- Sample markup for list:
+		<li class="list-group-item hover-bg-light-gray gray hover-dark-gray pt2" onClick="javascript:choose('0')">
+			<div class="flex justify-between">
+				<span>Item 1</span>
+				<span>Your Item 1</span>
+			</div>
+		</li>
+		-->
+	</ui:define>
+
+</ui:composition>
diff --git a/oxAuth/Server/src/main/webapp/passwordless/sg.xhtml b/oxAuth/Server/src/main/webapp/passwordless/sg.xhtml
new file mode 100644
index 00000000..fad66b72
--- /dev/null
+++ b/oxAuth/Server/src/main/webapp/passwordless/sg.xhtml
@@ -0,0 +1,107 @@
+<ui:composition xmlns="http://www.w3.org/1999/xhtml"
+	xmlns:f="http://xmlns.jcp.org/jsf/core"
+	xmlns:ui="http://xmlns.jcp.org/jsf/facelets"
+	xmlns:h="http://xmlns.jcp.org/jsf/html"
+	template="/passwordless/login-template.xhtml">
+	
+	<f:metadata>
+		<f:viewAction action="#{authenticator.prepareAuthenticationForStep}" if="#{not identity.loggedIn}" />
+	</f:metadata>
+	
+	<ui:define name="pageTitle">#{msgs['pwdless.pageTitle']}</ui:define>
+	
+	<ui:define name="maincontent">
+		<script src="#{oxAuthConfigurationService.getJsLocation()}/jquery-qrcode-0.17.0.min.js" />
+		<script src="#{oxAuthConfigurationService.getJsLocation()}/jquery-ui.min.js" />
+		<script src="#{oxAuthConfigurationService.getJsLocation()}/gluu-auth.js" />
+		<script>
+			let helper = (function() {
+				var authResult = undefined
+
+				return {
+					//Resume on getting authentication result from server
+					onSignInCallback: function(authResult) {
+						console.log('Get authentication result: ' + authResult)
+						helper.resumeAuthentication(authResult)
+					},
+
+					///Send form to server to resume authentication workflow
+					resumeAuthentication: function(authResult) {
+						$('input#auth_result').val(authResult)
+						$('form#response').submit()
+					},
+				}
+			})()
+
+			//Calls the helper method that handles the authentication flow.
+			function onSignInCallback(authResult) {
+				helper.onSignInCallback(authResult)
+			}
+
+			var request = '${identity.getWorkingParameter('super_gluu_request')}'
+			var label = '${identity.getWorkingParameter('super_gluu_label')}'
+			var qr_options = ${identity.getWorkingParameter('super_gluu_qr_options')}
+
+			$(document).ready(function() {
+				gluu_auth.renderQrCode('#subsequentContainer', request, qr_options, label)
+				gluu_auth.startProgressBar('#subsequentProgressbar', 90, onSignInCallback)
+				gluu_auth.startSessionChecker(onSignInCallback, 90)
+
+				if (request == '') {
+					onSignInCallback('error')
+				}
+			})
+
+			function showQrDialog() {
+				$("#sg_section").slideUp(duration, function() {
+					$("#qr_section").slideDown(duration, function() {
+					})
+				})
+			}
+
+			function hideQRDialog() {
+				$("#qr_section").slideUp(duration, function() {
+					$("#sg_section").slideDown(duration, function() {
+					})
+				})
+			}
+		</script>
+
+		<form method="post" id="response" action="#{request.contextPath}/postlogin.htm">
+			<input type="hidden" id="auth_result" name="auth_result" />
+		</form>
+		<section class="pa4 shadow-4 bg-blank gray cust-section" id="sg_section">
+			<h2 class="f3 dark-blue2 mb0">#{msgs['casa.snd_step']}</h2>
+			<h:messages class="list dark-red tc pv2 ph0 ma0 f5" />
+			
+			<div class="flex flex-column items-center pa3">
+				<img src="#{request.contextPath}/img/sg.png" class="pb2" style="width:10rem" />
+				<div class="db w5 tc f7-cust">#{msgs['casa.super_gluu.push_approve']}</div>
+			</div>
+			<p class="f7 navy">
+				#{msgs['casa.super_gluu.not_received_1']}
+				<a href="javascript:showQrDialog()" class="dark-blue">#{msgs['casa.super_gluu.not_received_2']}</a>
+			</p>
+
+			<!-- do not change the ID of anchor following -->
+			<a id="alter_link" href="javascript:showAlternative('sg_section')" class="green hover-green f7-cust">#{msgs['casa.alternative']}</a>
+		</section>
+		<section class="pa4 shadow-4 bg-blank gray cust-section dn" id="qr_section">
+			<div id="subsequentContainer" />
+			<div id="subsequentProgressbar" class="prog-bar cust-progress-bar" />
+			<div class="pt3 tc">
+				<input class="f7 bw0 br1 ph3 pv2 bg-orange2 white hover-bg-orange2 hover-white btn cust-misc-button"
+					onclick="hideQRDialog()" type="button" value="#{msgs['casa.close']}" />
+			</div>
+		</section>
+		
+		<style>
+			.ui-progressbar-value {
+				height: 1rem;
+			}
+		</style>
+		<ui:include src="/passwordless/alternative.xhtml" />
+
+	</ui:define>
+
+</ui:composition>
diff --git a/oxAuth/Server/src/main/webapp/postlogin.xhtml b/oxAuth/Server/src/main/webapp/postlogin.xhtml
new file mode 100644
index 00000000..3ab31616
--- /dev/null
+++ b/oxAuth/Server/src/main/webapp/postlogin.xhtml
@@ -0,0 +1,13 @@
+<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN"
+   "http://www.w3.org/TR/xhtml1/DTD/xhtml1-transitional.dtd">
+
+<html xmlns="http://www.w3.org/1999/xhtml"
+      xmlns:f="http://xmlns.jcp.org/jsf/core">
+
+<f:view transient="true" contentType="text/html">
+	<f:metadata>
+		<f:viewAction action="#{authenticator.authenticateWithOutcome}" />
+	</f:metadata>
+</f:view>
+
+</html>
\ No newline at end of file
diff --git a/oxAuth/Server/src/main/webapp/selectAccount.xhtml b/oxAuth/Server/src/main/webapp/selectAccount.xhtml
new file mode 100644
index 00000000..c2fc5d97
--- /dev/null
+++ b/oxAuth/Server/src/main/webapp/selectAccount.xhtml
@@ -0,0 +1,99 @@
+<!DOCTYPE composition PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN"
+        "http://www.w3.org/TR/xhtml1/DTD/xhtml1-transitional.dtd">
+<ui:composition xmlns="http://www.w3.org/1999/xhtml"
+                xmlns:f="http://xmlns.jcp.org/jsf/core"
+                xmlns:ui="http://xmlns.jcp.org/jsf/facelets"
+                xmlns:h="http://xmlns.jcp.org/jsf/html"
+                template="/WEB-INF/incl/layout/login-template.xhtml">
+    <f:metadata>
+        <f:viewParam name="scope" value="#{selectAccountAction.scope}"/>
+        <f:viewParam name="response_type" value="#{selectAccountAction.responseType}"/>
+        <f:viewParam name="client_id" value="#{selectAccountAction.clientId}"/>
+        <f:viewParam name="redirect_uri" value="#{selectAccountAction.redirectUri}"/>
+        <f:viewParam name="state" value="#{selectAccountAction.state}"/>
+        <f:viewParam name="response_mode" value="#{selectAccountAction.responseMode}"/>
+        <f:viewParam name="nonce" value="#{selectAccountAction.nonce}"/>
+        <f:viewParam name="display" value="#{selectAccountAction.display}"/>
+        <f:viewParam name="max_age" value="#{selectAccountAction.maxAge}"/>
+        <f:viewParam name="ui_locales" value="#{selectAccountAction.uiLocales}"/>
+        <f:viewParam name="id_token_hint" value="#{selectAccountAction.idTokenHint}"/>
+        <f:viewParam name="login_hint" value="#{selectAccountAction.loginHint}"/>
+        <f:viewParam name="acr_values" value="#{selectAccountAction.acrValues}"/>
+        <f:viewParam name="amr_values" value="#{selectAccountAction.amrValues}"/>
+        <f:viewParam name="request" value="#{selectAccountAction.request}"/>
+        <f:viewParam name="request_uri" value="#{selectAccountAction.requestUri}"/>
+        <f:viewParam name="code_challenge" value="#{selectAccountAction.codeChallenge}"/>
+        <f:viewParam name="code_challenge_method" value="#{selectAccountAction.codeChallengeMethod}"/>
+        <f:viewParam name="claims" value="#{selectAccountAction.claims}"/>
+        <f:viewParam name="auth_req_id" value="#{selectAccountAction.authReqId}"/>
+        <f:viewParam name="binding_message" value="#{selectAccountAction.bindingMessage}"/>
+        <f:viewParam name="session_id" value="#{selectAccountAction.sessionId}"/>
+    </f:metadata>
+    <ui:define name="head">
+        <meta name="description" content="Gluu, Inc."/>
+    </ui:define>
+    <ui:define name="pageTitle">
+        <h:outputText value="#{msgs['selectAccount.pageTitle']}"/>
+    </ui:define>
+    <ui:define name="body">
+        <div class="container">
+            <h:panelGroup rendered="true">
+                <div class="login_bx_1"
+                     style="border-radius: 10px; margin-top: 0; background: white; border: 1px solid #008b8b;">
+                    <h:form id="selectForm">
+                        <div class="row">
+                            <div align="center" class="col-sm-12" style="margin-bottom: 20px;">
+                                <h:outputLabel value="#{msgs['login.selectAccount']}"/>
+                            </div>
+                        </div>
+                        <div class="row">
+                            <div align="center" class="col-sm-12">
+                                <ui:repeat value="#{selectAccountAction.currentSessions}" var="_entry" id="accountButtons">
+                                    <h:commandLink style="background-color: #00BE79; color:white;"
+                                                   styleClass="btn col-sm-12"
+                                                   value="#{selectAccountAction.getName(_entry)}"
+                                                   iconAwesome="fa-sign-in"
+                                                   action="#{selectAccountAction.select()}">
+                                        <f:setPropertyActionListener target="#{selectAccountAction.selectedSessionId}" value="#{_entry.id}" />
+                                    </h:commandLink>&nbsp;
+                                </ui:repeat>
+                            </div>
+                        </div>
+                        <div class="row">
+                            <div align="center" class="col-sm-12">
+                                <h:commandLink id="loginButton"
+                                               style="background-color:lightgray; color:black;"
+                                               styleClass="btn col-sm-12" value="#{msgs['login.loginAsAnother']}"
+                                               iconAwesome="fa-sign-in"
+                                               action="#{selectAccountAction.login()}"/>
+                            </div>
+                        </div>
+
+                        <h:inputHidden id="scope" value="#{selectAccountAction.scope}"/>
+                        <h:inputHidden id="response_type" value="#{selectAccountAction.responseType}"/>
+                        <h:inputHidden id="client_id" value="#{selectAccountAction.clientId}"/>
+                        <h:inputHidden id="redirect_uri" value="#{selectAccountAction.redirectUri}"/>
+                        <h:inputHidden id="state" value="#{selectAccountAction.state}"/>
+                        <h:inputHidden id="response_mode" value="#{selectAccountAction.responseMode}"/>
+                        <h:inputHidden id="nonce" value="#{selectAccountAction.nonce}"/>
+                        <h:inputHidden id="display" value="#{selectAccountAction.display}"/>
+                        <h:inputHidden id="max_age" value="#{selectAccountAction.maxAge}"/>
+                        <h:inputHidden id="ui_locales" value="#{selectAccountAction.uiLocales}"/>
+                        <h:inputHidden id="id_token_hint" value="#{selectAccountAction.idTokenHint}"/>
+                        <h:inputHidden id="login_hint" value="#{selectAccountAction.loginHint}"/>
+                        <h:inputHidden id="acr_values" value="#{selectAccountAction.acrValues}"/>
+                        <h:inputHidden id="amr_values" value="#{selectAccountAction.amrValues}"/>
+                        <h:inputHidden id="request" value="#{selectAccountAction.request}"/>
+                        <h:inputHidden id="request_uri" value="#{selectAccountAction.requestUri}"/>
+                        <h:inputHidden id="code_challenge" value="#{selectAccountAction.codeChallenge}"/>
+                        <h:inputHidden id="code_challenge_method" value="#{selectAccountAction.codeChallengeMethod}"/>
+                        <h:inputHidden id="claims" value="#{selectAccountAction.claims}"/>
+                        <h:inputHidden id="auth_req_id" value="#{selectAccountAction.authReqId}"/>
+                        <h:inputHidden id="binding_message" value="#{selectAccountAction.bindingMessage}"/>
+                        <h:inputHidden id="session_id" value="#{selectAccountAction.sessionId}"/>
+                    </h:form>
+                </div>
+            </h:panelGroup>
+        </div>
+    </ui:define>
+</ui:composition>
diff --git a/oxAuth/Server/src/main/webapp/stylesheet/authorize.css b/oxAuth/Server/src/main/webapp/stylesheet/authorize.css
new file mode 100644
index 00000000..637f1b97
--- /dev/null
+++ b/oxAuth/Server/src/main/webapp/stylesheet/authorize.css
@@ -0,0 +1,226 @@
+.fa-info-circle{cursor:pointer}
+.pop_tog {
+    background: #f0f0f0;
+    width: 100%;
+    display: inline-block;
+    padding: 13px;
+    box-shadow: 0px 0px 6px #999;
+    margin-top: 12px;
+    display:none;
+    float: left;
+
+}
+.not_body li .pop_tog p {
+    color: #777;
+    margin-top: 0;
+    margin-bottom: 10px;
+    width: 100%;
+}
+.notification_popup {
+    max-width: 60%;
+    width: 100%;
+    background: #fff;
+    margin: 0 auto;
+    margin-top: 55px;
+    box-shadow: 0px 0px 8px #ccc;
+}
+.not_header {
+    background: #f5f5f5;
+    padding: 5px 15px;
+}
+.not_header a img {
+    width: 98px;
+}
+.not_body h3 {
+    text-align: center;
+    font-size: 20px;
+    margin-bottom: 14px;
+}
+.not_header .text_right {
+    text-align: right;
+    padding-top: 14px;
+    padding-right: 20px;
+}
+.btn_rw {
+    display: inline-block;
+    text-align: center;
+    width: 100%;
+    padding: 14px;
+}
+.not_body {
+    padding: 15px;
+}
+.not_body ul {
+    list-style-type: none;
+    margin-top: 25px;
+    display: inline-block;
+    width: 100%;
+    padding: 0;
+}
+
+.not_body li {
+    border-top: 1px solid #ccc;
+    display: inline-block;
+    width: 100%;
+    padding: 13px 14px;
+}
+.btn_rw a.button-primary {
+    background: #00aeef;
+    color: #fff;
+    padding: 12px 46px;
+    text-decoration: none;
+}
+.btn_rw a.button-default {
+    background: #d8d8d8;
+    color: #777;
+    padding: 12px 30px;
+}
+.border_rad {
+    text-align: center;
+}
+.not_body li span.user {
+    float: left;
+    margin-right: 17px;
+    font-size: 28px;
+    color: #00aeef;
+}
+
+.not_body li p {
+    float: left;
+    display: inline-block;
+    width: 81%;
+    padding-right: 0px;
+    margin-bottom: 0px;
+    margin-top: 5px;
+}
+
+.not_body li  .fa-info-circle {
+    float: right;
+    text-align: right;
+    font-size: 18px;
+    color: #888;
+    margin-top: 7px;
+}
+.notification_cls{
+    background: #e7e7e7;
+}
+
+.body{font-family: 'Open Sans', sans-serif;}
+.bs-docs-section {
+    padding: 30px 0px;
+}
+.bs-docs-section h2 {
+    text-align: center;
+    margin-bottom: 10px;
+}
+.bs-docs-section p {
+    text-align: center;
+    margin-bottom: 36px;
+}
+.qr_bx {
+    padding: 26px;
+    border: 1px solid #f4f4f4;
+    max-width: 900px;
+    margin: 0 auto;
+}
+.left_img img{width:100%}
+.button {
+    margin-bottom: 28px;
+    margin-top: 28px;
+}
+.button a.android {
+    background: #fff;
+    box-shadow: 0px 3px 6px #ccc;
+    padding: 5px 11px;
+    display: inline-block;
+    border-radius:5px;
+}
+.button a.iphone {
+    background: #000000;
+    box-shadow: 0px 3px 6px #ccc;
+    padding: 5px 11px;
+    display: inline-block;
+    border-radius:5px;
+    margin-left:5px;
+}
+.links a {
+    color: #079857;
+}
+
+.links .seprator {
+    color: #079857;
+    margin: 0 19px;
+}
+
+.links {
+    margin-top: 13px;
+}
+.col-md-6.left_img {
+    padding-right: 29px;
+}
+.paddin_bx {
+    padding: 35px 0px;
+}
+.paddin_bx h3{font-size:28px; color:#3c3c3c; font-weight:600}
+.paddin_bx p{color:#7f8c95; text-align:left; font-size:14px; line-height:24px;}
+.foot_bor p{font-size:14px;}
+.foot_bor p a{color:#0088cc}
+.padding_spc {
+    border-top: 1px solid #f3f3f3;
+    padding-top: 23px;
+    padding-bottom: 20px;
+}
+
+#pbar_outerdiv{
+    width: 100%;
+    height: 20px;
+    border: 1px solid #ecedec;
+    z-index: 1;
+    position: relative;
+    background: #f8f9f8;
+    margin-top: 14px;
+    overflow: hidden;
+}
+#pbar_innerdiv{
+    background-color: #e1e1e1; z-index: 2; height: 100%;
+}
+
+@media (max-width:480px){
+
+    .not_body li {
+        padding: 13px 5px;
+    }
+    .not_header {
+        text-align: center;
+    }
+    .not_body ul {
+        list-style-type: none;
+        margin-top: 4px;
+    }
+    .not_header .text_right {
+        text-align: center;
+    }
+    .not_body li p {
+        width: 74%;
+        margin-top: 5px;
+    }
+
+    .button {
+        text-align: center;
+    }
+    .navbar-header a {
+        text-align: center;
+        width: 100%;
+    }
+    .navbar-brand>img {
+        display: block;
+        margin: 0 auto;
+    }
+    .padding_spc{text-align: center;}
+    .links {
+        margin-top: 13px;
+        text-align: center;
+    }
+    .paddin_bx p{text-align: center;}
+    .button a.android {margin-bottom: 16px;}
+}
diff --git a/oxAuth/Server/src/main/webapp/stylesheet/bootstrap-grid.min.css b/oxAuth/Server/src/main/webapp/stylesheet/bootstrap-grid.min.css
new file mode 100644
index 00000000..46f0a449
--- /dev/null
+++ b/oxAuth/Server/src/main/webapp/stylesheet/bootstrap-grid.min.css
@@ -0,0 +1,6 @@
+/*!
+ * Bootstrap Grid v5.3.2 (https://getbootstrap.com/)
+ * Copyright 2011-2023 The Bootstrap Authors
+ * Licensed under MIT (https://github.com/twbs/bootstrap/blob/main/LICENSE)
+ */.container,.container-fluid,.container-lg,.container-md,.container-sm,.container-xl,.container-xxl{--bs-gutter-x:1.5rem;--bs-gutter-y:0;width:100%;padding-right:calc(var(--bs-gutter-x) * .5);padding-left:calc(var(--bs-gutter-x) * .5);margin-right:auto;margin-left:auto}@media (min-width:576px){.container,.container-sm{max-width:540px}}@media (min-width:768px){.container,.container-md,.container-sm{max-width:720px}}@media (min-width:992px){.container,.container-lg,.container-md,.container-sm{max-width:960px}}@media (min-width:1200px){.container,.container-lg,.container-md,.container-sm,.container-xl{max-width:1140px}}@media (min-width:1400px){.container,.container-lg,.container-md,.container-sm,.container-xl,.container-xxl{max-width:1320px}}:root{--bs-breakpoint-xs:0;--bs-breakpoint-sm:576px;--bs-breakpoint-md:768px;--bs-breakpoint-lg:992px;--bs-breakpoint-xl:1200px;--bs-breakpoint-xxl:1400px}.row{--bs-gutter-x:1.5rem;--bs-gutter-y:0;display:flex;flex-wrap:wrap;margin-top:calc(-1 * var(--bs-gutter-y));margin-right:calc(-.5 * var(--bs-gutter-x));margin-left:calc(-.5 * var(--bs-gutter-x))}.row>*{box-sizing:border-box;flex-shrink:0;width:100%;max-width:100%;padding-right:calc(var(--bs-gutter-x) * .5);padding-left:calc(var(--bs-gutter-x) * .5);margin-top:var(--bs-gutter-y)}.col{flex:1 0 0%}.row-cols-auto>*{flex:0 0 auto;width:auto}.row-cols-1>*{flex:0 0 auto;width:100%}.row-cols-2>*{flex:0 0 auto;width:50%}.row-cols-3>*{flex:0 0 auto;width:33.33333333%}.row-cols-4>*{flex:0 0 auto;width:25%}.row-cols-5>*{flex:0 0 auto;width:20%}.row-cols-6>*{flex:0 0 auto;width:16.66666667%}.col-auto{flex:0 0 auto;width:auto}.col-1{flex:0 0 auto;width:8.33333333%}.col-2{flex:0 0 auto;width:16.66666667%}.col-3{flex:0 0 auto;width:25%}.col-4{flex:0 0 auto;width:33.33333333%}.col-5{flex:0 0 auto;width:41.66666667%}.col-6{flex:0 0 auto;width:50%}.col-7{flex:0 0 auto;width:58.33333333%}.col-8{flex:0 0 auto;width:66.66666667%}.col-9{flex:0 0 auto;width:75%}.col-10{flex:0 0 auto;width:83.33333333%}.col-11{flex:0 0 auto;width:91.66666667%}.col-12{flex:0 0 auto;width:100%}.offset-1{margin-left:8.33333333%}.offset-2{margin-left:16.66666667%}.offset-3{margin-left:25%}.offset-4{margin-left:33.33333333%}.offset-5{margin-left:41.66666667%}.offset-6{margin-left:50%}.offset-7{margin-left:58.33333333%}.offset-8{margin-left:66.66666667%}.offset-9{margin-left:75%}.offset-10{margin-left:83.33333333%}.offset-11{margin-left:91.66666667%}.g-0,.gx-0{--bs-gutter-x:0}.g-0,.gy-0{--bs-gutter-y:0}.g-1,.gx-1{--bs-gutter-x:0.25rem}.g-1,.gy-1{--bs-gutter-y:0.25rem}.g-2,.gx-2{--bs-gutter-x:0.5rem}.g-2,.gy-2{--bs-gutter-y:0.5rem}.g-3,.gx-3{--bs-gutter-x:1rem}.g-3,.gy-3{--bs-gutter-y:1rem}.g-4,.gx-4{--bs-gutter-x:1.5rem}.g-4,.gy-4{--bs-gutter-y:1.5rem}.g-5,.gx-5{--bs-gutter-x:3rem}.g-5,.gy-5{--bs-gutter-y:3rem}@media (min-width:576px){.col-sm{flex:1 0 0%}.row-cols-sm-auto>*{flex:0 0 auto;width:auto}.row-cols-sm-1>*{flex:0 0 auto;width:100%}.row-cols-sm-2>*{flex:0 0 auto;width:50%}.row-cols-sm-3>*{flex:0 0 auto;width:33.33333333%}.row-cols-sm-4>*{flex:0 0 auto;width:25%}.row-cols-sm-5>*{flex:0 0 auto;width:20%}.row-cols-sm-6>*{flex:0 0 auto;width:16.66666667%}.col-sm-auto{flex:0 0 auto;width:auto}.col-sm-1{flex:0 0 auto;width:8.33333333%}.col-sm-2{flex:0 0 auto;width:16.66666667%}.col-sm-3{flex:0 0 auto;width:25%}.col-sm-4{flex:0 0 auto;width:33.33333333%}.col-sm-5{flex:0 0 auto;width:41.66666667%}.col-sm-6{flex:0 0 auto;width:50%}.col-sm-7{flex:0 0 auto;width:58.33333333%}.col-sm-8{flex:0 0 auto;width:66.66666667%}.col-sm-9{flex:0 0 auto;width:75%}.col-sm-10{flex:0 0 auto;width:83.33333333%}.col-sm-11{flex:0 0 auto;width:91.66666667%}.col-sm-12{flex:0 0 auto;width:100%}.offset-sm-0{margin-left:0}.offset-sm-1{margin-left:8.33333333%}.offset-sm-2{margin-left:16.66666667%}.offset-sm-3{margin-left:25%}.offset-sm-4{margin-left:33.33333333%}.offset-sm-5{margin-left:41.66666667%}.offset-sm-6{margin-left:50%}.offset-sm-7{margin-left:58.33333333%}.offset-sm-8{margin-left:66.66666667%}.offset-sm-9{margin-left:75%}.offset-sm-10{margin-left:83.33333333%}.offset-sm-11{margin-left:91.66666667%}.g-sm-0,.gx-sm-0{--bs-gutter-x:0}.g-sm-0,.gy-sm-0{--bs-gutter-y:0}.g-sm-1,.gx-sm-1{--bs-gutter-x:0.25rem}.g-sm-1,.gy-sm-1{--bs-gutter-y:0.25rem}.g-sm-2,.gx-sm-2{--bs-gutter-x:0.5rem}.g-sm-2,.gy-sm-2{--bs-gutter-y:0.5rem}.g-sm-3,.gx-sm-3{--bs-gutter-x:1rem}.g-sm-3,.gy-sm-3{--bs-gutter-y:1rem}.g-sm-4,.gx-sm-4{--bs-gutter-x:1.5rem}.g-sm-4,.gy-sm-4{--bs-gutter-y:1.5rem}.g-sm-5,.gx-sm-5{--bs-gutter-x:3rem}.g-sm-5,.gy-sm-5{--bs-gutter-y:3rem}}@media (min-width:768px){.col-md{flex:1 0 0%}.row-cols-md-auto>*{flex:0 0 auto;width:auto}.row-cols-md-1>*{flex:0 0 auto;width:100%}.row-cols-md-2>*{flex:0 0 auto;width:50%}.row-cols-md-3>*{flex:0 0 auto;width:33.33333333%}.row-cols-md-4>*{flex:0 0 auto;width:25%}.row-cols-md-5>*{flex:0 0 auto;width:20%}.row-cols-md-6>*{flex:0 0 auto;width:16.66666667%}.col-md-auto{flex:0 0 auto;width:auto}.col-md-1{flex:0 0 auto;width:8.33333333%}.col-md-2{flex:0 0 auto;width:16.66666667%}.col-md-3{flex:0 0 auto;width:25%}.col-md-4{flex:0 0 auto;width:33.33333333%}.col-md-5{flex:0 0 auto;width:41.66666667%}.col-md-6{flex:0 0 auto;width:50%}.col-md-7{flex:0 0 auto;width:58.33333333%}.col-md-8{flex:0 0 auto;width:66.66666667%}.col-md-9{flex:0 0 auto;width:75%}.col-md-10{flex:0 0 auto;width:83.33333333%}.col-md-11{flex:0 0 auto;width:91.66666667%}.col-md-12{flex:0 0 auto;width:100%}.offset-md-0{margin-left:0}.offset-md-1{margin-left:8.33333333%}.offset-md-2{margin-left:16.66666667%}.offset-md-3{margin-left:25%}.offset-md-4{margin-left:33.33333333%}.offset-md-5{margin-left:41.66666667%}.offset-md-6{margin-left:50%}.offset-md-7{margin-left:58.33333333%}.offset-md-8{margin-left:66.66666667%}.offset-md-9{margin-left:75%}.offset-md-10{margin-left:83.33333333%}.offset-md-11{margin-left:91.66666667%}.g-md-0,.gx-md-0{--bs-gutter-x:0}.g-md-0,.gy-md-0{--bs-gutter-y:0}.g-md-1,.gx-md-1{--bs-gutter-x:0.25rem}.g-md-1,.gy-md-1{--bs-gutter-y:0.25rem}.g-md-2,.gx-md-2{--bs-gutter-x:0.5rem}.g-md-2,.gy-md-2{--bs-gutter-y:0.5rem}.g-md-3,.gx-md-3{--bs-gutter-x:1rem}.g-md-3,.gy-md-3{--bs-gutter-y:1rem}.g-md-4,.gx-md-4{--bs-gutter-x:1.5rem}.g-md-4,.gy-md-4{--bs-gutter-y:1.5rem}.g-md-5,.gx-md-5{--bs-gutter-x:3rem}.g-md-5,.gy-md-5{--bs-gutter-y:3rem}}@media (min-width:992px){.col-lg{flex:1 0 0%}.row-cols-lg-auto>*{flex:0 0 auto;width:auto}.row-cols-lg-1>*{flex:0 0 auto;width:100%}.row-cols-lg-2>*{flex:0 0 auto;width:50%}.row-cols-lg-3>*{flex:0 0 auto;width:33.33333333%}.row-cols-lg-4>*{flex:0 0 auto;width:25%}.row-cols-lg-5>*{flex:0 0 auto;width:20%}.row-cols-lg-6>*{flex:0 0 auto;width:16.66666667%}.col-lg-auto{flex:0 0 auto;width:auto}.col-lg-1{flex:0 0 auto;width:8.33333333%}.col-lg-2{flex:0 0 auto;width:16.66666667%}.col-lg-3{flex:0 0 auto;width:25%}.col-lg-4{flex:0 0 auto;width:33.33333333%}.col-lg-5{flex:0 0 auto;width:41.66666667%}.col-lg-6{flex:0 0 auto;width:50%}.col-lg-7{flex:0 0 auto;width:58.33333333%}.col-lg-8{flex:0 0 auto;width:66.66666667%}.col-lg-9{flex:0 0 auto;width:75%}.col-lg-10{flex:0 0 auto;width:83.33333333%}.col-lg-11{flex:0 0 auto;width:91.66666667%}.col-lg-12{flex:0 0 auto;width:100%}.offset-lg-0{margin-left:0}.offset-lg-1{margin-left:8.33333333%}.offset-lg-2{margin-left:16.66666667%}.offset-lg-3{margin-left:25%}.offset-lg-4{margin-left:33.33333333%}.offset-lg-5{margin-left:41.66666667%}.offset-lg-6{margin-left:50%}.offset-lg-7{margin-left:58.33333333%}.offset-lg-8{margin-left:66.66666667%}.offset-lg-9{margin-left:75%}.offset-lg-10{margin-left:83.33333333%}.offset-lg-11{margin-left:91.66666667%}.g-lg-0,.gx-lg-0{--bs-gutter-x:0}.g-lg-0,.gy-lg-0{--bs-gutter-y:0}.g-lg-1,.gx-lg-1{--bs-gutter-x:0.25rem}.g-lg-1,.gy-lg-1{--bs-gutter-y:0.25rem}.g-lg-2,.gx-lg-2{--bs-gutter-x:0.5rem}.g-lg-2,.gy-lg-2{--bs-gutter-y:0.5rem}.g-lg-3,.gx-lg-3{--bs-gutter-x:1rem}.g-lg-3,.gy-lg-3{--bs-gutter-y:1rem}.g-lg-4,.gx-lg-4{--bs-gutter-x:1.5rem}.g-lg-4,.gy-lg-4{--bs-gutter-y:1.5rem}.g-lg-5,.gx-lg-5{--bs-gutter-x:3rem}.g-lg-5,.gy-lg-5{--bs-gutter-y:3rem}}@media (min-width:1200px){.col-xl{flex:1 0 0%}.row-cols-xl-auto>*{flex:0 0 auto;width:auto}.row-cols-xl-1>*{flex:0 0 auto;width:100%}.row-cols-xl-2>*{flex:0 0 auto;width:50%}.row-cols-xl-3>*{flex:0 0 auto;width:33.33333333%}.row-cols-xl-4>*{flex:0 0 auto;width:25%}.row-cols-xl-5>*{flex:0 0 auto;width:20%}.row-cols-xl-6>*{flex:0 0 auto;width:16.66666667%}.col-xl-auto{flex:0 0 auto;width:auto}.col-xl-1{flex:0 0 auto;width:8.33333333%}.col-xl-2{flex:0 0 auto;width:16.66666667%}.col-xl-3{flex:0 0 auto;width:25%}.col-xl-4{flex:0 0 auto;width:33.33333333%}.col-xl-5{flex:0 0 auto;width:41.66666667%}.col-xl-6{flex:0 0 auto;width:50%}.col-xl-7{flex:0 0 auto;width:58.33333333%}.col-xl-8{flex:0 0 auto;width:66.66666667%}.col-xl-9{flex:0 0 auto;width:75%}.col-xl-10{flex:0 0 auto;width:83.33333333%}.col-xl-11{flex:0 0 auto;width:91.66666667%}.col-xl-12{flex:0 0 auto;width:100%}.offset-xl-0{margin-left:0}.offset-xl-1{margin-left:8.33333333%}.offset-xl-2{margin-left:16.66666667%}.offset-xl-3{margin-left:25%}.offset-xl-4{margin-left:33.33333333%}.offset-xl-5{margin-left:41.66666667%}.offset-xl-6{margin-left:50%}.offset-xl-7{margin-left:58.33333333%}.offset-xl-8{margin-left:66.66666667%}.offset-xl-9{margin-left:75%}.offset-xl-10{margin-left:83.33333333%}.offset-xl-11{margin-left:91.66666667%}.g-xl-0,.gx-xl-0{--bs-gutter-x:0}.g-xl-0,.gy-xl-0{--bs-gutter-y:0}.g-xl-1,.gx-xl-1{--bs-gutter-x:0.25rem}.g-xl-1,.gy-xl-1{--bs-gutter-y:0.25rem}.g-xl-2,.gx-xl-2{--bs-gutter-x:0.5rem}.g-xl-2,.gy-xl-2{--bs-gutter-y:0.5rem}.g-xl-3,.gx-xl-3{--bs-gutter-x:1rem}.g-xl-3,.gy-xl-3{--bs-gutter-y:1rem}.g-xl-4,.gx-xl-4{--bs-gutter-x:1.5rem}.g-xl-4,.gy-xl-4{--bs-gutter-y:1.5rem}.g-xl-5,.gx-xl-5{--bs-gutter-x:3rem}.g-xl-5,.gy-xl-5{--bs-gutter-y:3rem}}@media (min-width:1400px){.col-xxl{flex:1 0 0%}.row-cols-xxl-auto>*{flex:0 0 auto;width:auto}.row-cols-xxl-1>*{flex:0 0 auto;width:100%}.row-cols-xxl-2>*{flex:0 0 auto;width:50%}.row-cols-xxl-3>*{flex:0 0 auto;width:33.33333333%}.row-cols-xxl-4>*{flex:0 0 auto;width:25%}.row-cols-xxl-5>*{flex:0 0 auto;width:20%}.row-cols-xxl-6>*{flex:0 0 auto;width:16.66666667%}.col-xxl-auto{flex:0 0 auto;width:auto}.col-xxl-1{flex:0 0 auto;width:8.33333333%}.col-xxl-2{flex:0 0 auto;width:16.66666667%}.col-xxl-3{flex:0 0 auto;width:25%}.col-xxl-4{flex:0 0 auto;width:33.33333333%}.col-xxl-5{flex:0 0 auto;width:41.66666667%}.col-xxl-6{flex:0 0 auto;width:50%}.col-xxl-7{flex:0 0 auto;width:58.33333333%}.col-xxl-8{flex:0 0 auto;width:66.66666667%}.col-xxl-9{flex:0 0 auto;width:75%}.col-xxl-10{flex:0 0 auto;width:83.33333333%}.col-xxl-11{flex:0 0 auto;width:91.66666667%}.col-xxl-12{flex:0 0 auto;width:100%}.offset-xxl-0{margin-left:0}.offset-xxl-1{margin-left:8.33333333%}.offset-xxl-2{margin-left:16.66666667%}.offset-xxl-3{margin-left:25%}.offset-xxl-4{margin-left:33.33333333%}.offset-xxl-5{margin-left:41.66666667%}.offset-xxl-6{margin-left:50%}.offset-xxl-7{margin-left:58.33333333%}.offset-xxl-8{margin-left:66.66666667%}.offset-xxl-9{margin-left:75%}.offset-xxl-10{margin-left:83.33333333%}.offset-xxl-11{margin-left:91.66666667%}.g-xxl-0,.gx-xxl-0{--bs-gutter-x:0}.g-xxl-0,.gy-xxl-0{--bs-gutter-y:0}.g-xxl-1,.gx-xxl-1{--bs-gutter-x:0.25rem}.g-xxl-1,.gy-xxl-1{--bs-gutter-y:0.25rem}.g-xxl-2,.gx-xxl-2{--bs-gutter-x:0.5rem}.g-xxl-2,.gy-xxl-2{--bs-gutter-y:0.5rem}.g-xxl-3,.gx-xxl-3{--bs-gutter-x:1rem}.g-xxl-3,.gy-xxl-3{--bs-gutter-y:1rem}.g-xxl-4,.gx-xxl-4{--bs-gutter-x:1.5rem}.g-xxl-4,.gy-xxl-4{--bs-gutter-y:1.5rem}.g-xxl-5,.gx-xxl-5{--bs-gutter-x:3rem}.g-xxl-5,.gy-xxl-5{--bs-gutter-y:3rem}}.d-inline{display:inline!important}.d-inline-block{display:inline-block!important}.d-block{display:block!important}.d-grid{display:grid!important}.d-inline-grid{display:inline-grid!important}.d-table{display:table!important}.d-table-row{display:table-row!important}.d-table-cell{display:table-cell!important}.d-flex{display:flex!important}.d-inline-flex{display:inline-flex!important}.d-none{display:none!important}.flex-fill{flex:1 1 auto!important}.flex-row{flex-direction:row!important}.flex-column{flex-direction:column!important}.flex-row-reverse{flex-direction:row-reverse!important}.flex-column-reverse{flex-direction:column-reverse!important}.flex-grow-0{flex-grow:0!important}.flex-grow-1{flex-grow:1!important}.flex-shrink-0{flex-shrink:0!important}.flex-shrink-1{flex-shrink:1!important}.flex-wrap{flex-wrap:wrap!important}.flex-nowrap{flex-wrap:nowrap!important}.flex-wrap-reverse{flex-wrap:wrap-reverse!important}.justify-content-start{justify-content:flex-start!important}.justify-content-end{justify-content:flex-end!important}.justify-content-center{justify-content:center!important}.justify-content-between{justify-content:space-between!important}.justify-content-around{justify-content:space-around!important}.justify-content-evenly{justify-content:space-evenly!important}.align-items-start{align-items:flex-start!important}.align-items-end{align-items:flex-end!important}.align-items-center{align-items:center!important}.align-items-baseline{align-items:baseline!important}.align-items-stretch{align-items:stretch!important}.align-content-start{align-content:flex-start!important}.align-content-end{align-content:flex-end!important}.align-content-center{align-content:center!important}.align-content-between{align-content:space-between!important}.align-content-around{align-content:space-around!important}.align-content-stretch{align-content:stretch!important}.align-self-auto{align-self:auto!important}.align-self-start{align-self:flex-start!important}.align-self-end{align-self:flex-end!important}.align-self-center{align-self:center!important}.align-self-baseline{align-self:baseline!important}.align-self-stretch{align-self:stretch!important}.order-first{order:-1!important}.order-0{order:0!important}.order-1{order:1!important}.order-2{order:2!important}.order-3{order:3!important}.order-4{order:4!important}.order-5{order:5!important}.order-last{order:6!important}.m-0{margin:0!important}.m-1{margin:.25rem!important}.m-2{margin:.5rem!important}.m-3{margin:1rem!important}.m-4{margin:1.5rem!important}.m-5{margin:3rem!important}.m-auto{margin:auto!important}.mx-0{margin-right:0!important;margin-left:0!important}.mx-1{margin-right:.25rem!important;margin-left:.25rem!important}.mx-2{margin-right:.5rem!important;margin-left:.5rem!important}.mx-3{margin-right:1rem!important;margin-left:1rem!important}.mx-4{margin-right:1.5rem!important;margin-left:1.5rem!important}.mx-5{margin-right:3rem!important;margin-left:3rem!important}.mx-auto{margin-right:auto!important;margin-left:auto!important}.my-0{margin-top:0!important;margin-bottom:0!important}.my-1{margin-top:.25rem!important;margin-bottom:.25rem!important}.my-2{margin-top:.5rem!important;margin-bottom:.5rem!important}.my-3{margin-top:1rem!important;margin-bottom:1rem!important}.my-4{margin-top:1.5rem!important;margin-bottom:1.5rem!important}.my-5{margin-top:3rem!important;margin-bottom:3rem!important}.my-auto{margin-top:auto!important;margin-bottom:auto!important}.mt-0{margin-top:0!important}.mt-1{margin-top:.25rem!important}.mt-2{margin-top:.5rem!important}.mt-3{margin-top:1rem!important}.mt-4{margin-top:1.5rem!important}.mt-5{margin-top:3rem!important}.mt-auto{margin-top:auto!important}.me-0{margin-right:0!important}.me-1{margin-right:.25rem!important}.me-2{margin-right:.5rem!important}.me-3{margin-right:1rem!important}.me-4{margin-right:1.5rem!important}.me-5{margin-right:3rem!important}.me-auto{margin-right:auto!important}.mb-0{margin-bottom:0!important}.mb-1{margin-bottom:.25rem!important}.mb-2{margin-bottom:.5rem!important}.mb-3{margin-bottom:1rem!important}.mb-4{margin-bottom:1.5rem!important}.mb-5{margin-bottom:3rem!important}.mb-auto{margin-bottom:auto!important}.ms-0{margin-left:0!important}.ms-1{margin-left:.25rem!important}.ms-2{margin-left:.5rem!important}.ms-3{margin-left:1rem!important}.ms-4{margin-left:1.5rem!important}.ms-5{margin-left:3rem!important}.ms-auto{margin-left:auto!important}.p-0{padding:0!important}.p-1{padding:.25rem!important}.p-2{padding:.5rem!important}.p-3{padding:1rem!important}.p-4{padding:1.5rem!important}.p-5{padding:3rem!important}.px-0{padding-right:0!important;padding-left:0!important}.px-1{padding-right:.25rem!important;padding-left:.25rem!important}.px-2{padding-right:.5rem!important;padding-left:.5rem!important}.px-3{padding-right:1rem!important;padding-left:1rem!important}.px-4{padding-right:1.5rem!important;padding-left:1.5rem!important}.px-5{padding-right:3rem!important;padding-left:3rem!important}.py-0{padding-top:0!important;padding-bottom:0!important}.py-1{padding-top:.25rem!important;padding-bottom:.25rem!important}.py-2{padding-top:.5rem!important;padding-bottom:.5rem!important}.py-3{padding-top:1rem!important;padding-bottom:1rem!important}.py-4{padding-top:1.5rem!important;padding-bottom:1.5rem!important}.py-5{padding-top:3rem!important;padding-bottom:3rem!important}.pt-0{padding-top:0!important}.pt-1{padding-top:.25rem!important}.pt-2{padding-top:.5rem!important}.pt-3{padding-top:1rem!important}.pt-4{padding-top:1.5rem!important}.pt-5{padding-top:3rem!important}.pe-0{padding-right:0!important}.pe-1{padding-right:.25rem!important}.pe-2{padding-right:.5rem!important}.pe-3{padding-right:1rem!important}.pe-4{padding-right:1.5rem!important}.pe-5{padding-right:3rem!important}.pb-0{padding-bottom:0!important}.pb-1{padding-bottom:.25rem!important}.pb-2{padding-bottom:.5rem!important}.pb-3{padding-bottom:1rem!important}.pb-4{padding-bottom:1.5rem!important}.pb-5{padding-bottom:3rem!important}.ps-0{padding-left:0!important}.ps-1{padding-left:.25rem!important}.ps-2{padding-left:.5rem!important}.ps-3{padding-left:1rem!important}.ps-4{padding-left:1.5rem!important}.ps-5{padding-left:3rem!important}@media (min-width:576px){.d-sm-inline{display:inline!important}.d-sm-inline-block{display:inline-block!important}.d-sm-block{display:block!important}.d-sm-grid{display:grid!important}.d-sm-inline-grid{display:inline-grid!important}.d-sm-table{display:table!important}.d-sm-table-row{display:table-row!important}.d-sm-table-cell{display:table-cell!important}.d-sm-flex{display:flex!important}.d-sm-inline-flex{display:inline-flex!important}.d-sm-none{display:none!important}.flex-sm-fill{flex:1 1 auto!important}.flex-sm-row{flex-direction:row!important}.flex-sm-column{flex-direction:column!important}.flex-sm-row-reverse{flex-direction:row-reverse!important}.flex-sm-column-reverse{flex-direction:column-reverse!important}.flex-sm-grow-0{flex-grow:0!important}.flex-sm-grow-1{flex-grow:1!important}.flex-sm-shrink-0{flex-shrink:0!important}.flex-sm-shrink-1{flex-shrink:1!important}.flex-sm-wrap{flex-wrap:wrap!important}.flex-sm-nowrap{flex-wrap:nowrap!important}.flex-sm-wrap-reverse{flex-wrap:wrap-reverse!important}.justify-content-sm-start{justify-content:flex-start!important}.justify-content-sm-end{justify-content:flex-end!important}.justify-content-sm-center{justify-content:center!important}.justify-content-sm-between{justify-content:space-between!important}.justify-content-sm-around{justify-content:space-around!important}.justify-content-sm-evenly{justify-content:space-evenly!important}.align-items-sm-start{align-items:flex-start!important}.align-items-sm-end{align-items:flex-end!important}.align-items-sm-center{align-items:center!important}.align-items-sm-baseline{align-items:baseline!important}.align-items-sm-stretch{align-items:stretch!important}.align-content-sm-start{align-content:flex-start!important}.align-content-sm-end{align-content:flex-end!important}.align-content-sm-center{align-content:center!important}.align-content-sm-between{align-content:space-between!important}.align-content-sm-around{align-content:space-around!important}.align-content-sm-stretch{align-content:stretch!important}.align-self-sm-auto{align-self:auto!important}.align-self-sm-start{align-self:flex-start!important}.align-self-sm-end{align-self:flex-end!important}.align-self-sm-center{align-self:center!important}.align-self-sm-baseline{align-self:baseline!important}.align-self-sm-stretch{align-self:stretch!important}.order-sm-first{order:-1!important}.order-sm-0{order:0!important}.order-sm-1{order:1!important}.order-sm-2{order:2!important}.order-sm-3{order:3!important}.order-sm-4{order:4!important}.order-sm-5{order:5!important}.order-sm-last{order:6!important}.m-sm-0{margin:0!important}.m-sm-1{margin:.25rem!important}.m-sm-2{margin:.5rem!important}.m-sm-3{margin:1rem!important}.m-sm-4{margin:1.5rem!important}.m-sm-5{margin:3rem!important}.m-sm-auto{margin:auto!important}.mx-sm-0{margin-right:0!important;margin-left:0!important}.mx-sm-1{margin-right:.25rem!important;margin-left:.25rem!important}.mx-sm-2{margin-right:.5rem!important;margin-left:.5rem!important}.mx-sm-3{margin-right:1rem!important;margin-left:1rem!important}.mx-sm-4{margin-right:1.5rem!important;margin-left:1.5rem!important}.mx-sm-5{margin-right:3rem!important;margin-left:3rem!important}.mx-sm-auto{margin-right:auto!important;margin-left:auto!important}.my-sm-0{margin-top:0!important;margin-bottom:0!important}.my-sm-1{margin-top:.25rem!important;margin-bottom:.25rem!important}.my-sm-2{margin-top:.5rem!important;margin-bottom:.5rem!important}.my-sm-3{margin-top:1rem!important;margin-bottom:1rem!important}.my-sm-4{margin-top:1.5rem!important;margin-bottom:1.5rem!important}.my-sm-5{margin-top:3rem!important;margin-bottom:3rem!important}.my-sm-auto{margin-top:auto!important;margin-bottom:auto!important}.mt-sm-0{margin-top:0!important}.mt-sm-1{margin-top:.25rem!important}.mt-sm-2{margin-top:.5rem!important}.mt-sm-3{margin-top:1rem!important}.mt-sm-4{margin-top:1.5rem!important}.mt-sm-5{margin-top:3rem!important}.mt-sm-auto{margin-top:auto!important}.me-sm-0{margin-right:0!important}.me-sm-1{margin-right:.25rem!important}.me-sm-2{margin-right:.5rem!important}.me-sm-3{margin-right:1rem!important}.me-sm-4{margin-right:1.5rem!important}.me-sm-5{margin-right:3rem!important}.me-sm-auto{margin-right:auto!important}.mb-sm-0{margin-bottom:0!important}.mb-sm-1{margin-bottom:.25rem!important}.mb-sm-2{margin-bottom:.5rem!important}.mb-sm-3{margin-bottom:1rem!important}.mb-sm-4{margin-bottom:1.5rem!important}.mb-sm-5{margin-bottom:3rem!important}.mb-sm-auto{margin-bottom:auto!important}.ms-sm-0{margin-left:0!important}.ms-sm-1{margin-left:.25rem!important}.ms-sm-2{margin-left:.5rem!important}.ms-sm-3{margin-left:1rem!important}.ms-sm-4{margin-left:1.5rem!important}.ms-sm-5{margin-left:3rem!important}.ms-sm-auto{margin-left:auto!important}.p-sm-0{padding:0!important}.p-sm-1{padding:.25rem!important}.p-sm-2{padding:.5rem!important}.p-sm-3{padding:1rem!important}.p-sm-4{padding:1.5rem!important}.p-sm-5{padding:3rem!important}.px-sm-0{padding-right:0!important;padding-left:0!important}.px-sm-1{padding-right:.25rem!important;padding-left:.25rem!important}.px-sm-2{padding-right:.5rem!important;padding-left:.5rem!important}.px-sm-3{padding-right:1rem!important;padding-left:1rem!important}.px-sm-4{padding-right:1.5rem!important;padding-left:1.5rem!important}.px-sm-5{padding-right:3rem!important;padding-left:3rem!important}.py-sm-0{padding-top:0!important;padding-bottom:0!important}.py-sm-1{padding-top:.25rem!important;padding-bottom:.25rem!important}.py-sm-2{padding-top:.5rem!important;padding-bottom:.5rem!important}.py-sm-3{padding-top:1rem!important;padding-bottom:1rem!important}.py-sm-4{padding-top:1.5rem!important;padding-bottom:1.5rem!important}.py-sm-5{padding-top:3rem!important;padding-bottom:3rem!important}.pt-sm-0{padding-top:0!important}.pt-sm-1{padding-top:.25rem!important}.pt-sm-2{padding-top:.5rem!important}.pt-sm-3{padding-top:1rem!important}.pt-sm-4{padding-top:1.5rem!important}.pt-sm-5{padding-top:3rem!important}.pe-sm-0{padding-right:0!important}.pe-sm-1{padding-right:.25rem!important}.pe-sm-2{padding-right:.5rem!important}.pe-sm-3{padding-right:1rem!important}.pe-sm-4{padding-right:1.5rem!important}.pe-sm-5{padding-right:3rem!important}.pb-sm-0{padding-bottom:0!important}.pb-sm-1{padding-bottom:.25rem!important}.pb-sm-2{padding-bottom:.5rem!important}.pb-sm-3{padding-bottom:1rem!important}.pb-sm-4{padding-bottom:1.5rem!important}.pb-sm-5{padding-bottom:3rem!important}.ps-sm-0{padding-left:0!important}.ps-sm-1{padding-left:.25rem!important}.ps-sm-2{padding-left:.5rem!important}.ps-sm-3{padding-left:1rem!important}.ps-sm-4{padding-left:1.5rem!important}.ps-sm-5{padding-left:3rem!important}}@media (min-width:768px){.d-md-inline{display:inline!important}.d-md-inline-block{display:inline-block!important}.d-md-block{display:block!important}.d-md-grid{display:grid!important}.d-md-inline-grid{display:inline-grid!important}.d-md-table{display:table!important}.d-md-table-row{display:table-row!important}.d-md-table-cell{display:table-cell!important}.d-md-flex{display:flex!important}.d-md-inline-flex{display:inline-flex!important}.d-md-none{display:none!important}.flex-md-fill{flex:1 1 auto!important}.flex-md-row{flex-direction:row!important}.flex-md-column{flex-direction:column!important}.flex-md-row-reverse{flex-direction:row-reverse!important}.flex-md-column-reverse{flex-direction:column-reverse!important}.flex-md-grow-0{flex-grow:0!important}.flex-md-grow-1{flex-grow:1!important}.flex-md-shrink-0{flex-shrink:0!important}.flex-md-shrink-1{flex-shrink:1!important}.flex-md-wrap{flex-wrap:wrap!important}.flex-md-nowrap{flex-wrap:nowrap!important}.flex-md-wrap-reverse{flex-wrap:wrap-reverse!important}.justify-content-md-start{justify-content:flex-start!important}.justify-content-md-end{justify-content:flex-end!important}.justify-content-md-center{justify-content:center!important}.justify-content-md-between{justify-content:space-between!important}.justify-content-md-around{justify-content:space-around!important}.justify-content-md-evenly{justify-content:space-evenly!important}.align-items-md-start{align-items:flex-start!important}.align-items-md-end{align-items:flex-end!important}.align-items-md-center{align-items:center!important}.align-items-md-baseline{align-items:baseline!important}.align-items-md-stretch{align-items:stretch!important}.align-content-md-start{align-content:flex-start!important}.align-content-md-end{align-content:flex-end!important}.align-content-md-center{align-content:center!important}.align-content-md-between{align-content:space-between!important}.align-content-md-around{align-content:space-around!important}.align-content-md-stretch{align-content:stretch!important}.align-self-md-auto{align-self:auto!important}.align-self-md-start{align-self:flex-start!important}.align-self-md-end{align-self:flex-end!important}.align-self-md-center{align-self:center!important}.align-self-md-baseline{align-self:baseline!important}.align-self-md-stretch{align-self:stretch!important}.order-md-first{order:-1!important}.order-md-0{order:0!important}.order-md-1{order:1!important}.order-md-2{order:2!important}.order-md-3{order:3!important}.order-md-4{order:4!important}.order-md-5{order:5!important}.order-md-last{order:6!important}.m-md-0{margin:0!important}.m-md-1{margin:.25rem!important}.m-md-2{margin:.5rem!important}.m-md-3{margin:1rem!important}.m-md-4{margin:1.5rem!important}.m-md-5{margin:3rem!important}.m-md-auto{margin:auto!important}.mx-md-0{margin-right:0!important;margin-left:0!important}.mx-md-1{margin-right:.25rem!important;margin-left:.25rem!important}.mx-md-2{margin-right:.5rem!important;margin-left:.5rem!important}.mx-md-3{margin-right:1rem!important;margin-left:1rem!important}.mx-md-4{margin-right:1.5rem!important;margin-left:1.5rem!important}.mx-md-5{margin-right:3rem!important;margin-left:3rem!important}.mx-md-auto{margin-right:auto!important;margin-left:auto!important}.my-md-0{margin-top:0!important;margin-bottom:0!important}.my-md-1{margin-top:.25rem!important;margin-bottom:.25rem!important}.my-md-2{margin-top:.5rem!important;margin-bottom:.5rem!important}.my-md-3{margin-top:1rem!important;margin-bottom:1rem!important}.my-md-4{margin-top:1.5rem!important;margin-bottom:1.5rem!important}.my-md-5{margin-top:3rem!important;margin-bottom:3rem!important}.my-md-auto{margin-top:auto!important;margin-bottom:auto!important}.mt-md-0{margin-top:0!important}.mt-md-1{margin-top:.25rem!important}.mt-md-2{margin-top:.5rem!important}.mt-md-3{margin-top:1rem!important}.mt-md-4{margin-top:1.5rem!important}.mt-md-5{margin-top:3rem!important}.mt-md-auto{margin-top:auto!important}.me-md-0{margin-right:0!important}.me-md-1{margin-right:.25rem!important}.me-md-2{margin-right:.5rem!important}.me-md-3{margin-right:1rem!important}.me-md-4{margin-right:1.5rem!important}.me-md-5{margin-right:3rem!important}.me-md-auto{margin-right:auto!important}.mb-md-0{margin-bottom:0!important}.mb-md-1{margin-bottom:.25rem!important}.mb-md-2{margin-bottom:.5rem!important}.mb-md-3{margin-bottom:1rem!important}.mb-md-4{margin-bottom:1.5rem!important}.mb-md-5{margin-bottom:3rem!important}.mb-md-auto{margin-bottom:auto!important}.ms-md-0{margin-left:0!important}.ms-md-1{margin-left:.25rem!important}.ms-md-2{margin-left:.5rem!important}.ms-md-3{margin-left:1rem!important}.ms-md-4{margin-left:1.5rem!important}.ms-md-5{margin-left:3rem!important}.ms-md-auto{margin-left:auto!important}.p-md-0{padding:0!important}.p-md-1{padding:.25rem!important}.p-md-2{padding:.5rem!important}.p-md-3{padding:1rem!important}.p-md-4{padding:1.5rem!important}.p-md-5{padding:3rem!important}.px-md-0{padding-right:0!important;padding-left:0!important}.px-md-1{padding-right:.25rem!important;padding-left:.25rem!important}.px-md-2{padding-right:.5rem!important;padding-left:.5rem!important}.px-md-3{padding-right:1rem!important;padding-left:1rem!important}.px-md-4{padding-right:1.5rem!important;padding-left:1.5rem!important}.px-md-5{padding-right:3rem!important;padding-left:3rem!important}.py-md-0{padding-top:0!important;padding-bottom:0!important}.py-md-1{padding-top:.25rem!important;padding-bottom:.25rem!important}.py-md-2{padding-top:.5rem!important;padding-bottom:.5rem!important}.py-md-3{padding-top:1rem!important;padding-bottom:1rem!important}.py-md-4{padding-top:1.5rem!important;padding-bottom:1.5rem!important}.py-md-5{padding-top:3rem!important;padding-bottom:3rem!important}.pt-md-0{padding-top:0!important}.pt-md-1{padding-top:.25rem!important}.pt-md-2{padding-top:.5rem!important}.pt-md-3{padding-top:1rem!important}.pt-md-4{padding-top:1.5rem!important}.pt-md-5{padding-top:3rem!important}.pe-md-0{padding-right:0!important}.pe-md-1{padding-right:.25rem!important}.pe-md-2{padding-right:.5rem!important}.pe-md-3{padding-right:1rem!important}.pe-md-4{padding-right:1.5rem!important}.pe-md-5{padding-right:3rem!important}.pb-md-0{padding-bottom:0!important}.pb-md-1{padding-bottom:.25rem!important}.pb-md-2{padding-bottom:.5rem!important}.pb-md-3{padding-bottom:1rem!important}.pb-md-4{padding-bottom:1.5rem!important}.pb-md-5{padding-bottom:3rem!important}.ps-md-0{padding-left:0!important}.ps-md-1{padding-left:.25rem!important}.ps-md-2{padding-left:.5rem!important}.ps-md-3{padding-left:1rem!important}.ps-md-4{padding-left:1.5rem!important}.ps-md-5{padding-left:3rem!important}}@media (min-width:992px){.d-lg-inline{display:inline!important}.d-lg-inline-block{display:inline-block!important}.d-lg-block{display:block!important}.d-lg-grid{display:grid!important}.d-lg-inline-grid{display:inline-grid!important}.d-lg-table{display:table!important}.d-lg-table-row{display:table-row!important}.d-lg-table-cell{display:table-cell!important}.d-lg-flex{display:flex!important}.d-lg-inline-flex{display:inline-flex!important}.d-lg-none{display:none!important}.flex-lg-fill{flex:1 1 auto!important}.flex-lg-row{flex-direction:row!important}.flex-lg-column{flex-direction:column!important}.flex-lg-row-reverse{flex-direction:row-reverse!important}.flex-lg-column-reverse{flex-direction:column-reverse!important}.flex-lg-grow-0{flex-grow:0!important}.flex-lg-grow-1{flex-grow:1!important}.flex-lg-shrink-0{flex-shrink:0!important}.flex-lg-shrink-1{flex-shrink:1!important}.flex-lg-wrap{flex-wrap:wrap!important}.flex-lg-nowrap{flex-wrap:nowrap!important}.flex-lg-wrap-reverse{flex-wrap:wrap-reverse!important}.justify-content-lg-start{justify-content:flex-start!important}.justify-content-lg-end{justify-content:flex-end!important}.justify-content-lg-center{justify-content:center!important}.justify-content-lg-between{justify-content:space-between!important}.justify-content-lg-around{justify-content:space-around!important}.justify-content-lg-evenly{justify-content:space-evenly!important}.align-items-lg-start{align-items:flex-start!important}.align-items-lg-end{align-items:flex-end!important}.align-items-lg-center{align-items:center!important}.align-items-lg-baseline{align-items:baseline!important}.align-items-lg-stretch{align-items:stretch!important}.align-content-lg-start{align-content:flex-start!important}.align-content-lg-end{align-content:flex-end!important}.align-content-lg-center{align-content:center!important}.align-content-lg-between{align-content:space-between!important}.align-content-lg-around{align-content:space-around!important}.align-content-lg-stretch{align-content:stretch!important}.align-self-lg-auto{align-self:auto!important}.align-self-lg-start{align-self:flex-start!important}.align-self-lg-end{align-self:flex-end!important}.align-self-lg-center{align-self:center!important}.align-self-lg-baseline{align-self:baseline!important}.align-self-lg-stretch{align-self:stretch!important}.order-lg-first{order:-1!important}.order-lg-0{order:0!important}.order-lg-1{order:1!important}.order-lg-2{order:2!important}.order-lg-3{order:3!important}.order-lg-4{order:4!important}.order-lg-5{order:5!important}.order-lg-last{order:6!important}.m-lg-0{margin:0!important}.m-lg-1{margin:.25rem!important}.m-lg-2{margin:.5rem!important}.m-lg-3{margin:1rem!important}.m-lg-4{margin:1.5rem!important}.m-lg-5{margin:3rem!important}.m-lg-auto{margin:auto!important}.mx-lg-0{margin-right:0!important;margin-left:0!important}.mx-lg-1{margin-right:.25rem!important;margin-left:.25rem!important}.mx-lg-2{margin-right:.5rem!important;margin-left:.5rem!important}.mx-lg-3{margin-right:1rem!important;margin-left:1rem!important}.mx-lg-4{margin-right:1.5rem!important;margin-left:1.5rem!important}.mx-lg-5{margin-right:3rem!important;margin-left:3rem!important}.mx-lg-auto{margin-right:auto!important;margin-left:auto!important}.my-lg-0{margin-top:0!important;margin-bottom:0!important}.my-lg-1{margin-top:.25rem!important;margin-bottom:.25rem!important}.my-lg-2{margin-top:.5rem!important;margin-bottom:.5rem!important}.my-lg-3{margin-top:1rem!important;margin-bottom:1rem!important}.my-lg-4{margin-top:1.5rem!important;margin-bottom:1.5rem!important}.my-lg-5{margin-top:3rem!important;margin-bottom:3rem!important}.my-lg-auto{margin-top:auto!important;margin-bottom:auto!important}.mt-lg-0{margin-top:0!important}.mt-lg-1{margin-top:.25rem!important}.mt-lg-2{margin-top:.5rem!important}.mt-lg-3{margin-top:1rem!important}.mt-lg-4{margin-top:1.5rem!important}.mt-lg-5{margin-top:3rem!important}.mt-lg-auto{margin-top:auto!important}.me-lg-0{margin-right:0!important}.me-lg-1{margin-right:.25rem!important}.me-lg-2{margin-right:.5rem!important}.me-lg-3{margin-right:1rem!important}.me-lg-4{margin-right:1.5rem!important}.me-lg-5{margin-right:3rem!important}.me-lg-auto{margin-right:auto!important}.mb-lg-0{margin-bottom:0!important}.mb-lg-1{margin-bottom:.25rem!important}.mb-lg-2{margin-bottom:.5rem!important}.mb-lg-3{margin-bottom:1rem!important}.mb-lg-4{margin-bottom:1.5rem!important}.mb-lg-5{margin-bottom:3rem!important}.mb-lg-auto{margin-bottom:auto!important}.ms-lg-0{margin-left:0!important}.ms-lg-1{margin-left:.25rem!important}.ms-lg-2{margin-left:.5rem!important}.ms-lg-3{margin-left:1rem!important}.ms-lg-4{margin-left:1.5rem!important}.ms-lg-5{margin-left:3rem!important}.ms-lg-auto{margin-left:auto!important}.p-lg-0{padding:0!important}.p-lg-1{padding:.25rem!important}.p-lg-2{padding:.5rem!important}.p-lg-3{padding:1rem!important}.p-lg-4{padding:1.5rem!important}.p-lg-5{padding:3rem!important}.px-lg-0{padding-right:0!important;padding-left:0!important}.px-lg-1{padding-right:.25rem!important;padding-left:.25rem!important}.px-lg-2{padding-right:.5rem!important;padding-left:.5rem!important}.px-lg-3{padding-right:1rem!important;padding-left:1rem!important}.px-lg-4{padding-right:1.5rem!important;padding-left:1.5rem!important}.px-lg-5{padding-right:3rem!important;padding-left:3rem!important}.py-lg-0{padding-top:0!important;padding-bottom:0!important}.py-lg-1{padding-top:.25rem!important;padding-bottom:.25rem!important}.py-lg-2{padding-top:.5rem!important;padding-bottom:.5rem!important}.py-lg-3{padding-top:1rem!important;padding-bottom:1rem!important}.py-lg-4{padding-top:1.5rem!important;padding-bottom:1.5rem!important}.py-lg-5{padding-top:3rem!important;padding-bottom:3rem!important}.pt-lg-0{padding-top:0!important}.pt-lg-1{padding-top:.25rem!important}.pt-lg-2{padding-top:.5rem!important}.pt-lg-3{padding-top:1rem!important}.pt-lg-4{padding-top:1.5rem!important}.pt-lg-5{padding-top:3rem!important}.pe-lg-0{padding-right:0!important}.pe-lg-1{padding-right:.25rem!important}.pe-lg-2{padding-right:.5rem!important}.pe-lg-3{padding-right:1rem!important}.pe-lg-4{padding-right:1.5rem!important}.pe-lg-5{padding-right:3rem!important}.pb-lg-0{padding-bottom:0!important}.pb-lg-1{padding-bottom:.25rem!important}.pb-lg-2{padding-bottom:.5rem!important}.pb-lg-3{padding-bottom:1rem!important}.pb-lg-4{padding-bottom:1.5rem!important}.pb-lg-5{padding-bottom:3rem!important}.ps-lg-0{padding-left:0!important}.ps-lg-1{padding-left:.25rem!important}.ps-lg-2{padding-left:.5rem!important}.ps-lg-3{padding-left:1rem!important}.ps-lg-4{padding-left:1.5rem!important}.ps-lg-5{padding-left:3rem!important}}@media (min-width:1200px){.d-xl-inline{display:inline!important}.d-xl-inline-block{display:inline-block!important}.d-xl-block{display:block!important}.d-xl-grid{display:grid!important}.d-xl-inline-grid{display:inline-grid!important}.d-xl-table{display:table!important}.d-xl-table-row{display:table-row!important}.d-xl-table-cell{display:table-cell!important}.d-xl-flex{display:flex!important}.d-xl-inline-flex{display:inline-flex!important}.d-xl-none{display:none!important}.flex-xl-fill{flex:1 1 auto!important}.flex-xl-row{flex-direction:row!important}.flex-xl-column{flex-direction:column!important}.flex-xl-row-reverse{flex-direction:row-reverse!important}.flex-xl-column-reverse{flex-direction:column-reverse!important}.flex-xl-grow-0{flex-grow:0!important}.flex-xl-grow-1{flex-grow:1!important}.flex-xl-shrink-0{flex-shrink:0!important}.flex-xl-shrink-1{flex-shrink:1!important}.flex-xl-wrap{flex-wrap:wrap!important}.flex-xl-nowrap{flex-wrap:nowrap!important}.flex-xl-wrap-reverse{flex-wrap:wrap-reverse!important}.justify-content-xl-start{justify-content:flex-start!important}.justify-content-xl-end{justify-content:flex-end!important}.justify-content-xl-center{justify-content:center!important}.justify-content-xl-between{justify-content:space-between!important}.justify-content-xl-around{justify-content:space-around!important}.justify-content-xl-evenly{justify-content:space-evenly!important}.align-items-xl-start{align-items:flex-start!important}.align-items-xl-end{align-items:flex-end!important}.align-items-xl-center{align-items:center!important}.align-items-xl-baseline{align-items:baseline!important}.align-items-xl-stretch{align-items:stretch!important}.align-content-xl-start{align-content:flex-start!important}.align-content-xl-end{align-content:flex-end!important}.align-content-xl-center{align-content:center!important}.align-content-xl-between{align-content:space-between!important}.align-content-xl-around{align-content:space-around!important}.align-content-xl-stretch{align-content:stretch!important}.align-self-xl-auto{align-self:auto!important}.align-self-xl-start{align-self:flex-start!important}.align-self-xl-end{align-self:flex-end!important}.align-self-xl-center{align-self:center!important}.align-self-xl-baseline{align-self:baseline!important}.align-self-xl-stretch{align-self:stretch!important}.order-xl-first{order:-1!important}.order-xl-0{order:0!important}.order-xl-1{order:1!important}.order-xl-2{order:2!important}.order-xl-3{order:3!important}.order-xl-4{order:4!important}.order-xl-5{order:5!important}.order-xl-last{order:6!important}.m-xl-0{margin:0!important}.m-xl-1{margin:.25rem!important}.m-xl-2{margin:.5rem!important}.m-xl-3{margin:1rem!important}.m-xl-4{margin:1.5rem!important}.m-xl-5{margin:3rem!important}.m-xl-auto{margin:auto!important}.mx-xl-0{margin-right:0!important;margin-left:0!important}.mx-xl-1{margin-right:.25rem!important;margin-left:.25rem!important}.mx-xl-2{margin-right:.5rem!important;margin-left:.5rem!important}.mx-xl-3{margin-right:1rem!important;margin-left:1rem!important}.mx-xl-4{margin-right:1.5rem!important;margin-left:1.5rem!important}.mx-xl-5{margin-right:3rem!important;margin-left:3rem!important}.mx-xl-auto{margin-right:auto!important;margin-left:auto!important}.my-xl-0{margin-top:0!important;margin-bottom:0!important}.my-xl-1{margin-top:.25rem!important;margin-bottom:.25rem!important}.my-xl-2{margin-top:.5rem!important;margin-bottom:.5rem!important}.my-xl-3{margin-top:1rem!important;margin-bottom:1rem!important}.my-xl-4{margin-top:1.5rem!important;margin-bottom:1.5rem!important}.my-xl-5{margin-top:3rem!important;margin-bottom:3rem!important}.my-xl-auto{margin-top:auto!important;margin-bottom:auto!important}.mt-xl-0{margin-top:0!important}.mt-xl-1{margin-top:.25rem!important}.mt-xl-2{margin-top:.5rem!important}.mt-xl-3{margin-top:1rem!important}.mt-xl-4{margin-top:1.5rem!important}.mt-xl-5{margin-top:3rem!important}.mt-xl-auto{margin-top:auto!important}.me-xl-0{margin-right:0!important}.me-xl-1{margin-right:.25rem!important}.me-xl-2{margin-right:.5rem!important}.me-xl-3{margin-right:1rem!important}.me-xl-4{margin-right:1.5rem!important}.me-xl-5{margin-right:3rem!important}.me-xl-auto{margin-right:auto!important}.mb-xl-0{margin-bottom:0!important}.mb-xl-1{margin-bottom:.25rem!important}.mb-xl-2{margin-bottom:.5rem!important}.mb-xl-3{margin-bottom:1rem!important}.mb-xl-4{margin-bottom:1.5rem!important}.mb-xl-5{margin-bottom:3rem!important}.mb-xl-auto{margin-bottom:auto!important}.ms-xl-0{margin-left:0!important}.ms-xl-1{margin-left:.25rem!important}.ms-xl-2{margin-left:.5rem!important}.ms-xl-3{margin-left:1rem!important}.ms-xl-4{margin-left:1.5rem!important}.ms-xl-5{margin-left:3rem!important}.ms-xl-auto{margin-left:auto!important}.p-xl-0{padding:0!important}.p-xl-1{padding:.25rem!important}.p-xl-2{padding:.5rem!important}.p-xl-3{padding:1rem!important}.p-xl-4{padding:1.5rem!important}.p-xl-5{padding:3rem!important}.px-xl-0{padding-right:0!important;padding-left:0!important}.px-xl-1{padding-right:.25rem!important;padding-left:.25rem!important}.px-xl-2{padding-right:.5rem!important;padding-left:.5rem!important}.px-xl-3{padding-right:1rem!important;padding-left:1rem!important}.px-xl-4{padding-right:1.5rem!important;padding-left:1.5rem!important}.px-xl-5{padding-right:3rem!important;padding-left:3rem!important}.py-xl-0{padding-top:0!important;padding-bottom:0!important}.py-xl-1{padding-top:.25rem!important;padding-bottom:.25rem!important}.py-xl-2{padding-top:.5rem!important;padding-bottom:.5rem!important}.py-xl-3{padding-top:1rem!important;padding-bottom:1rem!important}.py-xl-4{padding-top:1.5rem!important;padding-bottom:1.5rem!important}.py-xl-5{padding-top:3rem!important;padding-bottom:3rem!important}.pt-xl-0{padding-top:0!important}.pt-xl-1{padding-top:.25rem!important}.pt-xl-2{padding-top:.5rem!important}.pt-xl-3{padding-top:1rem!important}.pt-xl-4{padding-top:1.5rem!important}.pt-xl-5{padding-top:3rem!important}.pe-xl-0{padding-right:0!important}.pe-xl-1{padding-right:.25rem!important}.pe-xl-2{padding-right:.5rem!important}.pe-xl-3{padding-right:1rem!important}.pe-xl-4{padding-right:1.5rem!important}.pe-xl-5{padding-right:3rem!important}.pb-xl-0{padding-bottom:0!important}.pb-xl-1{padding-bottom:.25rem!important}.pb-xl-2{padding-bottom:.5rem!important}.pb-xl-3{padding-bottom:1rem!important}.pb-xl-4{padding-bottom:1.5rem!important}.pb-xl-5{padding-bottom:3rem!important}.ps-xl-0{padding-left:0!important}.ps-xl-1{padding-left:.25rem!important}.ps-xl-2{padding-left:.5rem!important}.ps-xl-3{padding-left:1rem!important}.ps-xl-4{padding-left:1.5rem!important}.ps-xl-5{padding-left:3rem!important}}@media (min-width:1400px){.d-xxl-inline{display:inline!important}.d-xxl-inline-block{display:inline-block!important}.d-xxl-block{display:block!important}.d-xxl-grid{display:grid!important}.d-xxl-inline-grid{display:inline-grid!important}.d-xxl-table{display:table!important}.d-xxl-table-row{display:table-row!important}.d-xxl-table-cell{display:table-cell!important}.d-xxl-flex{display:flex!important}.d-xxl-inline-flex{display:inline-flex!important}.d-xxl-none{display:none!important}.flex-xxl-fill{flex:1 1 auto!important}.flex-xxl-row{flex-direction:row!important}.flex-xxl-column{flex-direction:column!important}.flex-xxl-row-reverse{flex-direction:row-reverse!important}.flex-xxl-column-reverse{flex-direction:column-reverse!important}.flex-xxl-grow-0{flex-grow:0!important}.flex-xxl-grow-1{flex-grow:1!important}.flex-xxl-shrink-0{flex-shrink:0!important}.flex-xxl-shrink-1{flex-shrink:1!important}.flex-xxl-wrap{flex-wrap:wrap!important}.flex-xxl-nowrap{flex-wrap:nowrap!important}.flex-xxl-wrap-reverse{flex-wrap:wrap-reverse!important}.justify-content-xxl-start{justify-content:flex-start!important}.justify-content-xxl-end{justify-content:flex-end!important}.justify-content-xxl-center{justify-content:center!important}.justify-content-xxl-between{justify-content:space-between!important}.justify-content-xxl-around{justify-content:space-around!important}.justify-content-xxl-evenly{justify-content:space-evenly!important}.align-items-xxl-start{align-items:flex-start!important}.align-items-xxl-end{align-items:flex-end!important}.align-items-xxl-center{align-items:center!important}.align-items-xxl-baseline{align-items:baseline!important}.align-items-xxl-stretch{align-items:stretch!important}.align-content-xxl-start{align-content:flex-start!important}.align-content-xxl-end{align-content:flex-end!important}.align-content-xxl-center{align-content:center!important}.align-content-xxl-between{align-content:space-between!important}.align-content-xxl-around{align-content:space-around!important}.align-content-xxl-stretch{align-content:stretch!important}.align-self-xxl-auto{align-self:auto!important}.align-self-xxl-start{align-self:flex-start!important}.align-self-xxl-end{align-self:flex-end!important}.align-self-xxl-center{align-self:center!important}.align-self-xxl-baseline{align-self:baseline!important}.align-self-xxl-stretch{align-self:stretch!important}.order-xxl-first{order:-1!important}.order-xxl-0{order:0!important}.order-xxl-1{order:1!important}.order-xxl-2{order:2!important}.order-xxl-3{order:3!important}.order-xxl-4{order:4!important}.order-xxl-5{order:5!important}.order-xxl-last{order:6!important}.m-xxl-0{margin:0!important}.m-xxl-1{margin:.25rem!important}.m-xxl-2{margin:.5rem!important}.m-xxl-3{margin:1rem!important}.m-xxl-4{margin:1.5rem!important}.m-xxl-5{margin:3rem!important}.m-xxl-auto{margin:auto!important}.mx-xxl-0{margin-right:0!important;margin-left:0!important}.mx-xxl-1{margin-right:.25rem!important;margin-left:.25rem!important}.mx-xxl-2{margin-right:.5rem!important;margin-left:.5rem!important}.mx-xxl-3{margin-right:1rem!important;margin-left:1rem!important}.mx-xxl-4{margin-right:1.5rem!important;margin-left:1.5rem!important}.mx-xxl-5{margin-right:3rem!important;margin-left:3rem!important}.mx-xxl-auto{margin-right:auto!important;margin-left:auto!important}.my-xxl-0{margin-top:0!important;margin-bottom:0!important}.my-xxl-1{margin-top:.25rem!important;margin-bottom:.25rem!important}.my-xxl-2{margin-top:.5rem!important;margin-bottom:.5rem!important}.my-xxl-3{margin-top:1rem!important;margin-bottom:1rem!important}.my-xxl-4{margin-top:1.5rem!important;margin-bottom:1.5rem!important}.my-xxl-5{margin-top:3rem!important;margin-bottom:3rem!important}.my-xxl-auto{margin-top:auto!important;margin-bottom:auto!important}.mt-xxl-0{margin-top:0!important}.mt-xxl-1{margin-top:.25rem!important}.mt-xxl-2{margin-top:.5rem!important}.mt-xxl-3{margin-top:1rem!important}.mt-xxl-4{margin-top:1.5rem!important}.mt-xxl-5{margin-top:3rem!important}.mt-xxl-auto{margin-top:auto!important}.me-xxl-0{margin-right:0!important}.me-xxl-1{margin-right:.25rem!important}.me-xxl-2{margin-right:.5rem!important}.me-xxl-3{margin-right:1rem!important}.me-xxl-4{margin-right:1.5rem!important}.me-xxl-5{margin-right:3rem!important}.me-xxl-auto{margin-right:auto!important}.mb-xxl-0{margin-bottom:0!important}.mb-xxl-1{margin-bottom:.25rem!important}.mb-xxl-2{margin-bottom:.5rem!important}.mb-xxl-3{margin-bottom:1rem!important}.mb-xxl-4{margin-bottom:1.5rem!important}.mb-xxl-5{margin-bottom:3rem!important}.mb-xxl-auto{margin-bottom:auto!important}.ms-xxl-0{margin-left:0!important}.ms-xxl-1{margin-left:.25rem!important}.ms-xxl-2{margin-left:.5rem!important}.ms-xxl-3{margin-left:1rem!important}.ms-xxl-4{margin-left:1.5rem!important}.ms-xxl-5{margin-left:3rem!important}.ms-xxl-auto{margin-left:auto!important}.p-xxl-0{padding:0!important}.p-xxl-1{padding:.25rem!important}.p-xxl-2{padding:.5rem!important}.p-xxl-3{padding:1rem!important}.p-xxl-4{padding:1.5rem!important}.p-xxl-5{padding:3rem!important}.px-xxl-0{padding-right:0!important;padding-left:0!important}.px-xxl-1{padding-right:.25rem!important;padding-left:.25rem!important}.px-xxl-2{padding-right:.5rem!important;padding-left:.5rem!important}.px-xxl-3{padding-right:1rem!important;padding-left:1rem!important}.px-xxl-4{padding-right:1.5rem!important;padding-left:1.5rem!important}.px-xxl-5{padding-right:3rem!important;padding-left:3rem!important}.py-xxl-0{padding-top:0!important;padding-bottom:0!important}.py-xxl-1{padding-top:.25rem!important;padding-bottom:.25rem!important}.py-xxl-2{padding-top:.5rem!important;padding-bottom:.5rem!important}.py-xxl-3{padding-top:1rem!important;padding-bottom:1rem!important}.py-xxl-4{padding-top:1.5rem!important;padding-bottom:1.5rem!important}.py-xxl-5{padding-top:3rem!important;padding-bottom:3rem!important}.pt-xxl-0{padding-top:0!important}.pt-xxl-1{padding-top:.25rem!important}.pt-xxl-2{padding-top:.5rem!important}.pt-xxl-3{padding-top:1rem!important}.pt-xxl-4{padding-top:1.5rem!important}.pt-xxl-5{padding-top:3rem!important}.pe-xxl-0{padding-right:0!important}.pe-xxl-1{padding-right:.25rem!important}.pe-xxl-2{padding-right:.5rem!important}.pe-xxl-3{padding-right:1rem!important}.pe-xxl-4{padding-right:1.5rem!important}.pe-xxl-5{padding-right:3rem!important}.pb-xxl-0{padding-bottom:0!important}.pb-xxl-1{padding-bottom:.25rem!important}.pb-xxl-2{padding-bottom:.5rem!important}.pb-xxl-3{padding-bottom:1rem!important}.pb-xxl-4{padding-bottom:1.5rem!important}.pb-xxl-5{padding-bottom:3rem!important}.ps-xxl-0{padding-left:0!important}.ps-xxl-1{padding-left:.25rem!important}.ps-xxl-2{padding-left:.5rem!important}.ps-xxl-3{padding-left:1rem!important}.ps-xxl-4{padding-left:1.5rem!important}.ps-xxl-5{padding-left:3rem!important}}@media print{.d-print-inline{display:inline!important}.d-print-inline-block{display:inline-block!important}.d-print-block{display:block!important}.d-print-grid{display:grid!important}.d-print-inline-grid{display:inline-grid!important}.d-print-table{display:table!important}.d-print-table-row{display:table-row!important}.d-print-table-cell{display:table-cell!important}.d-print-flex{display:flex!important}.d-print-inline-flex{display:inline-flex!important}.d-print-none{display:none!important}}
+/*# sourceMappingURL=bootstrap-grid.min.css.map */
\ No newline at end of file
diff --git a/oxAuth/Server/src/main/webapp/stylesheet/bootstrap-reboot.min.css b/oxAuth/Server/src/main/webapp/stylesheet/bootstrap-reboot.min.css
new file mode 100644
index 00000000..7645bb4e
--- /dev/null
+++ b/oxAuth/Server/src/main/webapp/stylesheet/bootstrap-reboot.min.css
@@ -0,0 +1,6 @@
+/*!
+ * Bootstrap Reboot v5.3.2 (https://getbootstrap.com/)
+ * Copyright 2011-2023 The Bootstrap Authors
+ * Licensed under MIT (https://github.com/twbs/bootstrap/blob/main/LICENSE)
+ */:root,[data-bs-theme=light]{--bs-blue:#0d6efd;--bs-indigo:#6610f2;--bs-purple:#6f42c1;--bs-pink:#d63384;--bs-red:#dc3545;--bs-orange:#fd7e14;--bs-yellow:#ffc107;--bs-green:#198754;--bs-teal:#20c997;--bs-cyan:#0dcaf0;--bs-black:#000;--bs-white:#fff;--bs-gray:#6c757d;--bs-gray-dark:#343a40;--bs-gray-100:#f8f9fa;--bs-gray-200:#e9ecef;--bs-gray-300:#dee2e6;--bs-gray-400:#ced4da;--bs-gray-500:#adb5bd;--bs-gray-600:#6c757d;--bs-gray-700:#495057;--bs-gray-800:#343a40;--bs-gray-900:#212529;--bs-primary:#0d6efd;--bs-secondary:#6c757d;--bs-success:#198754;--bs-info:#0dcaf0;--bs-warning:#ffc107;--bs-danger:#dc3545;--bs-light:#f8f9fa;--bs-dark:#212529;--bs-primary-rgb:13,110,253;--bs-secondary-rgb:108,117,125;--bs-success-rgb:25,135,84;--bs-info-rgb:13,202,240;--bs-warning-rgb:255,193,7;--bs-danger-rgb:220,53,69;--bs-light-rgb:248,249,250;--bs-dark-rgb:33,37,41;--bs-primary-text-emphasis:#052c65;--bs-secondary-text-emphasis:#2b2f32;--bs-success-text-emphasis:#0a3622;--bs-info-text-emphasis:#055160;--bs-warning-text-emphasis:#664d03;--bs-danger-text-emphasis:#58151c;--bs-light-text-emphasis:#495057;--bs-dark-text-emphasis:#495057;--bs-primary-bg-subtle:#cfe2ff;--bs-secondary-bg-subtle:#e2e3e5;--bs-success-bg-subtle:#d1e7dd;--bs-info-bg-subtle:#cff4fc;--bs-warning-bg-subtle:#fff3cd;--bs-danger-bg-subtle:#f8d7da;--bs-light-bg-subtle:#fcfcfd;--bs-dark-bg-subtle:#ced4da;--bs-primary-border-subtle:#9ec5fe;--bs-secondary-border-subtle:#c4c8cb;--bs-success-border-subtle:#a3cfbb;--bs-info-border-subtle:#9eeaf9;--bs-warning-border-subtle:#ffe69c;--bs-danger-border-subtle:#f1aeb5;--bs-light-border-subtle:#e9ecef;--bs-dark-border-subtle:#adb5bd;--bs-white-rgb:255,255,255;--bs-black-rgb:0,0,0;--bs-font-sans-serif:system-ui,-apple-system,"Segoe UI",Roboto,"Helvetica Neue","Noto Sans","Liberation Sans",Arial,sans-serif,"Apple Color Emoji","Segoe UI Emoji","Segoe UI Symbol","Noto Color Emoji";--bs-font-monospace:SFMono-Regular,Menlo,Monaco,Consolas,"Liberation Mono","Courier New",monospace;--bs-gradient:linear-gradient(180deg, rgba(255, 255, 255, 0.15), rgba(255, 255, 255, 0));--bs-body-font-family:var(--bs-font-sans-serif);--bs-body-font-size:1rem;--bs-body-font-weight:400;--bs-body-line-height:1.5;--bs-body-color:#212529;--bs-body-color-rgb:33,37,41;--bs-body-bg:#fff;--bs-body-bg-rgb:255,255,255;--bs-emphasis-color:#000;--bs-emphasis-color-rgb:0,0,0;--bs-secondary-color:rgba(33, 37, 41, 0.75);--bs-secondary-color-rgb:33,37,41;--bs-secondary-bg:#e9ecef;--bs-secondary-bg-rgb:233,236,239;--bs-tertiary-color:rgba(33, 37, 41, 0.5);--bs-tertiary-color-rgb:33,37,41;--bs-tertiary-bg:#f8f9fa;--bs-tertiary-bg-rgb:248,249,250;--bs-heading-color:inherit;--bs-link-color:#0d6efd;--bs-link-color-rgb:13,110,253;--bs-link-decoration:underline;--bs-link-hover-color:#0a58ca;--bs-link-hover-color-rgb:10,88,202;--bs-code-color:#d63384;--bs-highlight-color:#212529;--bs-highlight-bg:#fff3cd;--bs-border-width:1px;--bs-border-style:solid;--bs-border-color:#dee2e6;--bs-border-color-translucent:rgba(0, 0, 0, 0.175);--bs-border-radius:0.375rem;--bs-border-radius-sm:0.25rem;--bs-border-radius-lg:0.5rem;--bs-border-radius-xl:1rem;--bs-border-radius-xxl:2rem;--bs-border-radius-2xl:var(--bs-border-radius-xxl);--bs-border-radius-pill:50rem;--bs-box-shadow:0 0.5rem 1rem rgba(0, 0, 0, 0.15);--bs-box-shadow-sm:0 0.125rem 0.25rem rgba(0, 0, 0, 0.075);--bs-box-shadow-lg:0 1rem 3rem rgba(0, 0, 0, 0.175);--bs-box-shadow-inset:inset 0 1px 2px rgba(0, 0, 0, 0.075);--bs-focus-ring-width:0.25rem;--bs-focus-ring-opacity:0.25;--bs-focus-ring-color:rgba(13, 110, 253, 0.25);--bs-form-valid-color:#198754;--bs-form-valid-border-color:#198754;--bs-form-invalid-color:#dc3545;--bs-form-invalid-border-color:#dc3545}[data-bs-theme=dark]{color-scheme:dark;--bs-body-color:#dee2e6;--bs-body-color-rgb:222,226,230;--bs-body-bg:#212529;--bs-body-bg-rgb:33,37,41;--bs-emphasis-color:#fff;--bs-emphasis-color-rgb:255,255,255;--bs-secondary-color:rgba(222, 226, 230, 0.75);--bs-secondary-color-rgb:222,226,230;--bs-secondary-bg:#343a40;--bs-secondary-bg-rgb:52,58,64;--bs-tertiary-color:rgba(222, 226, 230, 0.5);--bs-tertiary-color-rgb:222,226,230;--bs-tertiary-bg:#2b3035;--bs-tertiary-bg-rgb:43,48,53;--bs-primary-text-emphasis:#6ea8fe;--bs-secondary-text-emphasis:#a7acb1;--bs-success-text-emphasis:#75b798;--bs-info-text-emphasis:#6edff6;--bs-warning-text-emphasis:#ffda6a;--bs-danger-text-emphasis:#ea868f;--bs-light-text-emphasis:#f8f9fa;--bs-dark-text-emphasis:#dee2e6;--bs-primary-bg-subtle:#031633;--bs-secondary-bg-subtle:#161719;--bs-success-bg-subtle:#051b11;--bs-info-bg-subtle:#032830;--bs-warning-bg-subtle:#332701;--bs-danger-bg-subtle:#2c0b0e;--bs-light-bg-subtle:#343a40;--bs-dark-bg-subtle:#1a1d20;--bs-primary-border-subtle:#084298;--bs-secondary-border-subtle:#41464b;--bs-success-border-subtle:#0f5132;--bs-info-border-subtle:#087990;--bs-warning-border-subtle:#997404;--bs-danger-border-subtle:#842029;--bs-light-border-subtle:#495057;--bs-dark-border-subtle:#343a40;--bs-heading-color:inherit;--bs-link-color:#6ea8fe;--bs-link-hover-color:#8bb9fe;--bs-link-color-rgb:110,168,254;--bs-link-hover-color-rgb:139,185,254;--bs-code-color:#e685b5;--bs-highlight-color:#dee2e6;--bs-highlight-bg:#664d03;--bs-border-color:#495057;--bs-border-color-translucent:rgba(255, 255, 255, 0.15);--bs-form-valid-color:#75b798;--bs-form-valid-border-color:#75b798;--bs-form-invalid-color:#ea868f;--bs-form-invalid-border-color:#ea868f}*,::after,::before{box-sizing:border-box}@media (prefers-reduced-motion:no-preference){:root{scroll-behavior:smooth}}body{margin:0;font-family:var(--bs-body-font-family);font-size:var(--bs-body-font-size);font-weight:var(--bs-body-font-weight);line-height:var(--bs-body-line-height);color:var(--bs-body-color);text-align:var(--bs-body-text-align);background-color:var(--bs-body-bg);-webkit-text-size-adjust:100%;-webkit-tap-highlight-color:transparent}hr{margin:1rem 0;color:inherit;border:0;border-top:var(--bs-border-width) solid;opacity:.25}h1,h2,h3,h4,h5,h6{margin-top:0;margin-bottom:.5rem;font-weight:500;line-height:1.2;color:var(--bs-heading-color)}h1{font-size:calc(1.375rem + 1.5vw)}@media (min-width:1200px){h1{font-size:2.5rem}}h2{font-size:calc(1.325rem + .9vw)}@media (min-width:1200px){h2{font-size:2rem}}h3{font-size:calc(1.3rem + .6vw)}@media (min-width:1200px){h3{font-size:1.75rem}}h4{font-size:calc(1.275rem + .3vw)}@media (min-width:1200px){h4{font-size:1.5rem}}h5{font-size:1.25rem}h6{font-size:1rem}p{margin-top:0;margin-bottom:1rem}abbr[title]{-webkit-text-decoration:underline dotted;text-decoration:underline dotted;cursor:help;-webkit-text-decoration-skip-ink:none;text-decoration-skip-ink:none}address{margin-bottom:1rem;font-style:normal;line-height:inherit}ol,ul{padding-left:2rem}dl,ol,ul{margin-top:0;margin-bottom:1rem}ol ol,ol ul,ul ol,ul ul{margin-bottom:0}dt{font-weight:700}dd{margin-bottom:.5rem;margin-left:0}blockquote{margin:0 0 1rem}b,strong{font-weight:bolder}small{font-size:.875em}mark{padding:.1875em;color:var(--bs-highlight-color);background-color:var(--bs-highlight-bg)}sub,sup{position:relative;font-size:.75em;line-height:0;vertical-align:baseline}sub{bottom:-.25em}sup{top:-.5em}a{color:rgba(var(--bs-link-color-rgb),var(--bs-link-opacity,1));text-decoration:underline}a:hover{--bs-link-color-rgb:var(--bs-link-hover-color-rgb)}a:not([href]):not([class]),a:not([href]):not([class]):hover{color:inherit;text-decoration:none}code,kbd,pre,samp{font-family:var(--bs-font-monospace);font-size:1em}pre{display:block;margin-top:0;margin-bottom:1rem;overflow:auto;font-size:.875em}pre code{font-size:inherit;color:inherit;word-break:normal}code{font-size:.875em;color:var(--bs-code-color);word-wrap:break-word}a>code{color:inherit}kbd{padding:.1875rem .375rem;font-size:.875em;color:var(--bs-body-bg);background-color:var(--bs-body-color);border-radius:.25rem}kbd kbd{padding:0;font-size:1em}figure{margin:0 0 1rem}img,svg{vertical-align:middle}table{caption-side:bottom;border-collapse:collapse}caption{padding-top:.5rem;padding-bottom:.5rem;color:var(--bs-secondary-color);text-align:left}th{text-align:inherit;text-align:-webkit-match-parent}tbody,td,tfoot,th,thead,tr{border-color:inherit;border-style:solid;border-width:0}label{display:inline-block}button{border-radius:0}button:focus:not(:focus-visible){outline:0}button,input,optgroup,select,textarea{margin:0;font-family:inherit;font-size:inherit;line-height:inherit}button,select{text-transform:none}[role=button]{cursor:pointer}select{word-wrap:normal}select:disabled{opacity:1}[list]:not([type=date]):not([type=datetime-local]):not([type=month]):not([type=week]):not([type=time])::-webkit-calendar-picker-indicator{display:none!important}[type=button],[type=reset],[type=submit],button{-webkit-appearance:button}[type=button]:not(:disabled),[type=reset]:not(:disabled),[type=submit]:not(:disabled),button:not(:disabled){cursor:pointer}::-moz-focus-inner{padding:0;border-style:none}textarea{resize:vertical}fieldset{min-width:0;padding:0;margin:0;border:0}legend{float:left;width:100%;padding:0;margin-bottom:.5rem;font-size:calc(1.275rem + .3vw);line-height:inherit}@media (min-width:1200px){legend{font-size:1.5rem}}legend+*{clear:left}::-webkit-datetime-edit-day-field,::-webkit-datetime-edit-fields-wrapper,::-webkit-datetime-edit-hour-field,::-webkit-datetime-edit-minute,::-webkit-datetime-edit-month-field,::-webkit-datetime-edit-text,::-webkit-datetime-edit-year-field{padding:0}::-webkit-inner-spin-button{height:auto}[type=search]{-webkit-appearance:textfield;outline-offset:-2px}::-webkit-search-decoration{-webkit-appearance:none}::-webkit-color-swatch-wrapper{padding:0}::-webkit-file-upload-button{font:inherit;-webkit-appearance:button}::file-selector-button{font:inherit;-webkit-appearance:button}output{display:inline-block}iframe{border:0}summary{display:list-item;cursor:pointer}progress{vertical-align:baseline}[hidden]{display:none!important}
+/*# sourceMappingURL=bootstrap-reboot.min.css.map */
\ No newline at end of file
diff --git a/oxAuth/Server/src/main/webapp/stylesheet/bootstrap-responsive.css b/oxAuth/Server/src/main/webapp/stylesheet/bootstrap-responsive.css
new file mode 100644
index 00000000..66f507b7
--- /dev/null
+++ b/oxAuth/Server/src/main/webapp/stylesheet/bootstrap-responsive.css
@@ -0,0 +1,1109 @@
+/*!
+ * Bootstrap Responsive v2.3.2
+ *
+ * Copyright 2012 Twitter, Inc
+ * Licensed under the Apache License v2.0
+ * http://www.apache.org/licenses/LICENSE-2.0
+ *
+ * Designed and built with all the love in the world @twitter by @mdo and @fat.
+ */
+
+.clearfix {
+  *zoom: 1;
+}
+
+.clearfix:before,
+.clearfix:after {
+  display: table;
+  line-height: 0;
+  content: "";
+}
+
+.clearfix:after {
+  clear: both;
+}
+
+.hide-text {
+  font: 0/0 a;
+  color: transparent;
+  text-shadow: none;
+  background-color: transparent;
+  border: 0;
+}
+
+.input-block-level {
+  display: block;
+  width: 100%;
+  min-height: 30px;
+  -webkit-box-sizing: border-box;
+     -moz-box-sizing: border-box;
+          box-sizing: border-box;
+}
+
+@-ms-viewport {
+  width: device-width;
+}
+
+.hidden {
+  display: none;
+  visibility: hidden;
+}
+
+.visible-phone {
+  display: none !important;
+}
+
+.visible-tablet {
+  display: none !important;
+}
+
+.hidden-desktop {
+  display: none !important;
+}
+
+.visible-desktop {
+  display: inherit !important;
+}
+
+@media (min-width: 768px) and (max-width: 979px) {
+  .hidden-desktop {
+    display: inherit !important;
+  }
+  .visible-desktop {
+    display: none !important ;
+  }
+  .visible-tablet {
+    display: inherit !important;
+  }
+  .hidden-tablet {
+    display: none !important;
+  }
+}
+
+@media (max-width: 767px) {
+  .hidden-desktop {
+    display: inherit !important;
+  }
+  .visible-desktop {
+    display: none !important;
+  }
+  .visible-phone {
+    display: inherit !important;
+  }
+  .hidden-phone {
+    display: none !important;
+  }
+}
+
+.visible-print {
+  display: none !important;
+}
+
+@media print {
+  .visible-print {
+    display: inherit !important;
+  }
+  .hidden-print {
+    display: none !important;
+  }
+}
+
+@media (min-width: 1200px) {
+  .row {
+    margin-left: -30px;
+    *zoom: 1;
+  }
+  .row:before,
+  .row:after {
+    display: table;
+    line-height: 0;
+    content: "";
+  }
+  .row:after {
+    clear: both;
+  }
+  [class*="span"] {
+    float: left;
+    min-height: 1px;
+    margin-left: 30px;
+  }
+  .container,
+  .navbar-static-top .container,
+  .navbar-fixed-top .container,
+  .navbar-fixed-bottom .container {
+    width: 1170px;
+  }
+  .span12 {
+    width: 1170px;
+  }
+  .span11 {
+    width: 1070px;
+  }
+  .span10 {
+    width: 970px;
+  }
+  .span9 {
+    width: 870px;
+  }
+  .span8 {
+    width: 770px;
+  }
+  .span7 {
+    width: 670px;
+  }
+  .span6 {
+    width: 570px;
+  }
+  .span5 {
+    width: 470px;
+  }
+  .span4 {
+    width: 370px;
+  }
+  .span3 {
+    width: 270px;
+  }
+  .span2 {
+    width: 170px;
+  }
+  .span1 {
+    width: 70px;
+  }
+  .offset12 {
+    margin-left: 1230px;
+  }
+  .offset11 {
+    margin-left: 1130px;
+  }
+  .offset10 {
+    margin-left: 1030px;
+  }
+  .offset9 {
+    margin-left: 930px;
+  }
+  .offset8 {
+    margin-left: 830px;
+  }
+  .offset7 {
+    margin-left: 730px;
+  }
+  .offset6 {
+    margin-left: 630px;
+  }
+  .offset5 {
+    margin-left: 530px;
+  }
+  .offset4 {
+    margin-left: 430px;
+  }
+  .offset3 {
+    margin-left: 330px;
+  }
+  .offset2 {
+    margin-left: 230px;
+  }
+  .offset1 {
+    margin-left: 130px;
+  }
+  .row-fluid {
+    width: 100%;
+    *zoom: 1;
+  }
+  .row-fluid:before,
+  .row-fluid:after {
+    display: table;
+    line-height: 0;
+    content: "";
+  }
+  .row-fluid:after {
+    clear: both;
+  }
+  .row-fluid [class*="span"] {
+    display: block;
+    float: left;
+    width: 100%;
+    min-height: 30px;
+    margin-left: 2.564102564102564%;
+    *margin-left: 2.5109110747408616%;
+    -webkit-box-sizing: border-box;
+       -moz-box-sizing: border-box;
+            box-sizing: border-box;
+  }
+  .row-fluid [class*="span"]:first-child {
+    margin-left: 0;
+  }
+  .row-fluid .controls-row [class*="span"] + [class*="span"] {
+    margin-left: 2.564102564102564%;
+  }
+  .row-fluid .span12 {
+    width: 100%;
+    *width: 99.94680851063829%;
+  }
+  .row-fluid .span11 {
+    width: 91.45299145299145%;
+    *width: 91.39979996362975%;
+  }
+  .row-fluid .span10 {
+    width: 82.90598290598291%;
+    *width: 82.8527914166212%;
+  }
+  .row-fluid .span9 {
+    width: 74.35897435897436%;
+    *width: 74.30578286961266%;
+  }
+  .row-fluid .span8 {
+    width: 65.81196581196582%;
+    *width: 65.75877432260411%;
+  }
+  .row-fluid .span7 {
+    width: 57.26495726495726%;
+    *width: 57.21176577559556%;
+  }
+  .row-fluid .span6 {
+    width: 48.717948717948715%;
+    *width: 48.664757228587014%;
+  }
+  .row-fluid .span5 {
+    width: 40.17094017094017%;
+    *width: 40.11774868157847%;
+  }
+  .row-fluid .span4 {
+    width: 31.623931623931625%;
+    *width: 31.570740134569924%;
+  }
+  .row-fluid .span3 {
+    width: 23.076923076923077%;
+    *width: 23.023731587561375%;
+  }
+  .row-fluid .span2 {
+    width: 14.52991452991453%;
+    *width: 14.476723040552828%;
+  }
+  .row-fluid .span1 {
+    width: 5.982905982905983%;
+    *width: 5.929714493544281%;
+  }
+  .row-fluid .offset12 {
+    margin-left: 105.12820512820512%;
+    *margin-left: 105.02182214948171%;
+  }
+  .row-fluid .offset12:first-child {
+    margin-left: 102.56410256410257%;
+    *margin-left: 102.45771958537915%;
+  }
+  .row-fluid .offset11 {
+    margin-left: 96.58119658119658%;
+    *margin-left: 96.47481360247316%;
+  }
+  .row-fluid .offset11:first-child {
+    margin-left: 94.01709401709402%;
+    *margin-left: 93.91071103837061%;
+  }
+  .row-fluid .offset10 {
+    margin-left: 88.03418803418803%;
+    *margin-left: 87.92780505546462%;
+  }
+  .row-fluid .offset10:first-child {
+    margin-left: 85.47008547008548%;
+    *margin-left: 85.36370249136206%;
+  }
+  .row-fluid .offset9 {
+    margin-left: 79.48717948717949%;
+    *margin-left: 79.38079650845607%;
+  }
+  .row-fluid .offset9:first-child {
+    margin-left: 76.92307692307693%;
+    *margin-left: 76.81669394435352%;
+  }
+  .row-fluid .offset8 {
+    margin-left: 70.94017094017094%;
+    *margin-left: 70.83378796144753%;
+  }
+  .row-fluid .offset8:first-child {
+    margin-left: 68.37606837606839%;
+    *margin-left: 68.26968539734497%;
+  }
+  .row-fluid .offset7 {
+    margin-left: 62.393162393162385%;
+    *margin-left: 62.28677941443899%;
+  }
+  .row-fluid .offset7:first-child {
+    margin-left: 59.82905982905982%;
+    *margin-left: 59.72267685033642%;
+  }
+  .row-fluid .offset6 {
+    margin-left: 53.84615384615384%;
+    *margin-left: 53.739770867430444%;
+  }
+  .row-fluid .offset6:first-child {
+    margin-left: 51.28205128205128%;
+    *margin-left: 51.175668303327875%;
+  }
+  .row-fluid .offset5 {
+    margin-left: 45.299145299145295%;
+    *margin-left: 45.1927623204219%;
+  }
+  .row-fluid .offset5:first-child {
+    margin-left: 42.73504273504273%;
+    *margin-left: 42.62865975631933%;
+  }
+  .row-fluid .offset4 {
+    margin-left: 36.75213675213675%;
+    *margin-left: 36.645753773413354%;
+  }
+  .row-fluid .offset4:first-child {
+    margin-left: 34.18803418803419%;
+    *margin-left: 34.081651209310785%;
+  }
+  .row-fluid .offset3 {
+    margin-left: 28.205128205128204%;
+    *margin-left: 28.0987452264048%;
+  }
+  .row-fluid .offset3:first-child {
+    margin-left: 25.641025641025642%;
+    *margin-left: 25.53464266230224%;
+  }
+  .row-fluid .offset2 {
+    margin-left: 19.65811965811966%;
+    *margin-left: 19.551736679396257%;
+  }
+  .row-fluid .offset2:first-child {
+    margin-left: 17.094017094017094%;
+    *margin-left: 16.98763411529369%;
+  }
+  .row-fluid .offset1 {
+    margin-left: 11.11111111111111%;
+    *margin-left: 11.004728132387708%;
+  }
+  .row-fluid .offset1:first-child {
+    margin-left: 8.547008547008547%;
+    *margin-left: 8.440625568285142%;
+  }
+  input,
+  textarea,
+  .uneditable-input {
+    margin-left: 0;
+  }
+  .controls-row [class*="span"] + [class*="span"] {
+    margin-left: 30px;
+  }
+  input.span12,
+  textarea.span12,
+  .uneditable-input.span12 {
+    width: 1156px;
+  }
+  input.span11,
+  textarea.span11,
+  .uneditable-input.span11 {
+    width: 1056px;
+  }
+  input.span10,
+  textarea.span10,
+  .uneditable-input.span10 {
+    width: 956px;
+  }
+  input.span9,
+  textarea.span9,
+  .uneditable-input.span9 {
+    width: 856px;
+  }
+  input.span8,
+  textarea.span8,
+  .uneditable-input.span8 {
+    width: 756px;
+  }
+  input.span7,
+  textarea.span7,
+  .uneditable-input.span7 {
+    width: 656px;
+  }
+  input.span6,
+  textarea.span6,
+  .uneditable-input.span6 {
+    width: 556px;
+  }
+  input.span5,
+  textarea.span5,
+  .uneditable-input.span5 {
+    width: 456px;
+  }
+  input.span4,
+  textarea.span4,
+  .uneditable-input.span4 {
+    width: 356px;
+  }
+  input.span3,
+  textarea.span3,
+  .uneditable-input.span3 {
+    width: 256px;
+  }
+  input.span2,
+  textarea.span2,
+  .uneditable-input.span2 {
+    width: 156px;
+  }
+  input.span1,
+  textarea.span1,
+  .uneditable-input.span1 {
+    width: 56px;
+  }
+  .thumbnails {
+    margin-left: -30px;
+  }
+  .thumbnails > li {
+    margin-left: 30px;
+  }
+  .row-fluid .thumbnails {
+    margin-left: 0;
+  }
+}
+
+@media (min-width: 768px) and (max-width: 979px) {
+  .row {
+    margin-left: -20px;
+    *zoom: 1;
+  }
+  .row:before,
+  .row:after {
+    display: table;
+    line-height: 0;
+    content: "";
+  }
+  .row:after {
+    clear: both;
+  }
+  [class*="span"] {
+    float: left;
+    min-height: 1px;
+    margin-left: 20px;
+  }
+  .container,
+  .navbar-static-top .container,
+  .navbar-fixed-top .container,
+  .navbar-fixed-bottom .container {
+    width: 724px;
+  }
+  .span12 {
+    width: 724px;
+  }
+  .span11 {
+    width: 662px;
+  }
+  .span10 {
+    width: 600px;
+  }
+  .span9 {
+    width: 538px;
+  }
+  .span8 {
+    width: 476px;
+  }
+  .span7 {
+    width: 414px;
+  }
+  .span6 {
+    width: 352px;
+  }
+  .span5 {
+    width: 290px;
+  }
+  .span4 {
+    width: 228px;
+  }
+  .span3 {
+    width: 166px;
+  }
+  .span2 {
+    width: 104px;
+  }
+  .span1 {
+    width: 42px;
+  }
+  .offset12 {
+    margin-left: 764px;
+  }
+  .offset11 {
+    margin-left: 702px;
+  }
+  .offset10 {
+    margin-left: 640px;
+  }
+  .offset9 {
+    margin-left: 578px;
+  }
+  .offset8 {
+    margin-left: 516px;
+  }
+  .offset7 {
+    margin-left: 454px;
+  }
+  .offset6 {
+    margin-left: 392px;
+  }
+  .offset5 {
+    margin-left: 330px;
+  }
+  .offset4 {
+    margin-left: 268px;
+  }
+  .offset3 {
+    margin-left: 206px;
+  }
+  .offset2 {
+    margin-left: 144px;
+  }
+  .offset1 {
+    margin-left: 82px;
+  }
+  .row-fluid {
+    width: 100%;
+    *zoom: 1;
+  }
+  .row-fluid:before,
+  .row-fluid:after {
+    display: table;
+    line-height: 0;
+    content: "";
+  }
+  .row-fluid:after {
+    clear: both;
+  }
+  .row-fluid [class*="span"] {
+    display: block;
+    float: left;
+    width: 100%;
+    min-height: 30px;
+    margin-left: 2.7624309392265194%;
+    *margin-left: 2.709239449864817%;
+    -webkit-box-sizing: border-box;
+       -moz-box-sizing: border-box;
+            box-sizing: border-box;
+  }
+  .row-fluid [class*="span"]:first-child {
+    margin-left: 0;
+  }
+  .row-fluid .controls-row [class*="span"] + [class*="span"] {
+    margin-left: 2.7624309392265194%;
+  }
+  .row-fluid .span12 {
+    width: 100%;
+    *width: 99.94680851063829%;
+  }
+  .row-fluid .span11 {
+    width: 91.43646408839778%;
+    *width: 91.38327259903608%;
+  }
+  .row-fluid .span10 {
+    width: 82.87292817679558%;
+    *width: 82.81973668743387%;
+  }
+  .row-fluid .span9 {
+    width: 74.30939226519337%;
+    *width: 74.25620077583166%;
+  }
+  .row-fluid .span8 {
+    width: 65.74585635359117%;
+    *width: 65.69266486422946%;
+  }
+  .row-fluid .span7 {
+    width: 57.18232044198895%;
+    *width: 57.12912895262725%;
+  }
+  .row-fluid .span6 {
+    width: 48.61878453038674%;
+    *width: 48.56559304102504%;
+  }
+  .row-fluid .span5 {
+    width: 40.05524861878453%;
+    *width: 40.00205712942283%;
+  }
+  .row-fluid .span4 {
+    width: 31.491712707182323%;
+    *width: 31.43852121782062%;
+  }
+  .row-fluid .span3 {
+    width: 22.92817679558011%;
+    *width: 22.87498530621841%;
+  }
+  .row-fluid .span2 {
+    width: 14.3646408839779%;
+    *width: 14.311449394616199%;
+  }
+  .row-fluid .span1 {
+    width: 5.801104972375691%;
+    *width: 5.747913483013988%;
+  }
+  .row-fluid .offset12 {
+    margin-left: 105.52486187845304%;
+    *margin-left: 105.41847889972962%;
+  }
+  .row-fluid .offset12:first-child {
+    margin-left: 102.76243093922652%;
+    *margin-left: 102.6560479605031%;
+  }
+  .row-fluid .offset11 {
+    margin-left: 96.96132596685082%;
+    *margin-left: 96.8549429881274%;
+  }
+  .row-fluid .offset11:first-child {
+    margin-left: 94.1988950276243%;
+    *margin-left: 94.09251204890089%;
+  }
+  .row-fluid .offset10 {
+    margin-left: 88.39779005524862%;
+    *margin-left: 88.2914070765252%;
+  }
+  .row-fluid .offset10:first-child {
+    margin-left: 85.6353591160221%;
+    *margin-left: 85.52897613729868%;
+  }
+  .row-fluid .offset9 {
+    margin-left: 79.8342541436464%;
+    *margin-left: 79.72787116492299%;
+  }
+  .row-fluid .offset9:first-child {
+    margin-left: 77.07182320441989%;
+    *margin-left: 76.96544022569647%;
+  }
+  .row-fluid .offset8 {
+    margin-left: 71.2707182320442%;
+    *margin-left: 71.16433525332079%;
+  }
+  .row-fluid .offset8:first-child {
+    margin-left: 68.50828729281768%;
+    *margin-left: 68.40190431409427%;
+  }
+  .row-fluid .offset7 {
+    margin-left: 62.70718232044199%;
+    *margin-left: 62.600799341718584%;
+  }
+  .row-fluid .offset7:first-child {
+    margin-left: 59.94475138121547%;
+    *margin-left: 59.838368402492065%;
+  }
+  .row-fluid .offset6 {
+    margin-left: 54.14364640883978%;
+    *margin-left: 54.037263430116376%;
+  }
+  .row-fluid .offset6:first-child {
+    margin-left: 51.38121546961326%;
+    *margin-left: 51.27483249088986%;
+  }
+  .row-fluid .offset5 {
+    margin-left: 45.58011049723757%;
+    *margin-left: 45.47372751851417%;
+  }
+  .row-fluid .offset5:first-child {
+    margin-left: 42.81767955801105%;
+    *margin-left: 42.71129657928765%;
+  }
+  .row-fluid .offset4 {
+    margin-left: 37.01657458563536%;
+    *margin-left: 36.91019160691196%;
+  }
+  .row-fluid .offset4:first-child {
+    margin-left: 34.25414364640884%;
+    *margin-left: 34.14776066768544%;
+  }
+  .row-fluid .offset3 {
+    margin-left: 28.45303867403315%;
+    *margin-left: 28.346655695309746%;
+  }
+  .row-fluid .offset3:first-child {
+    margin-left: 25.69060773480663%;
+    *margin-left: 25.584224756083227%;
+  }
+  .row-fluid .offset2 {
+    margin-left: 19.88950276243094%;
+    *margin-left: 19.783119783707537%;
+  }
+  .row-fluid .offset2:first-child {
+    margin-left: 17.12707182320442%;
+    *margin-left: 17.02068884448102%;
+  }
+  .row-fluid .offset1 {
+    margin-left: 11.32596685082873%;
+    *margin-left: 11.219583872105325%;
+  }
+  .row-fluid .offset1:first-child {
+    margin-left: 8.56353591160221%;
+    *margin-left: 8.457152932878806%;
+  }
+  input,
+  textarea,
+  .uneditable-input {
+    margin-left: 0;
+  }
+  .controls-row [class*="span"] + [class*="span"] {
+    margin-left: 20px;
+  }
+  input.span12,
+  textarea.span12,
+  .uneditable-input.span12 {
+    width: 710px;
+  }
+  input.span11,
+  textarea.span11,
+  .uneditable-input.span11 {
+    width: 648px;
+  }
+  input.span10,
+  textarea.span10,
+  .uneditable-input.span10 {
+    width: 586px;
+  }
+  input.span9,
+  textarea.span9,
+  .uneditable-input.span9 {
+    width: 524px;
+  }
+  input.span8,
+  textarea.span8,
+  .uneditable-input.span8 {
+    width: 462px;
+  }
+  input.span7,
+  textarea.span7,
+  .uneditable-input.span7 {
+    width: 400px;
+  }
+  input.span6,
+  textarea.span6,
+  .uneditable-input.span6 {
+    width: 338px;
+  }
+  input.span5,
+  textarea.span5,
+  .uneditable-input.span5 {
+    width: 276px;
+  }
+  input.span4,
+  textarea.span4,
+  .uneditable-input.span4 {
+    width: 214px;
+  }
+  input.span3,
+  textarea.span3,
+  .uneditable-input.span3 {
+    width: 152px;
+  }
+  input.span2,
+  textarea.span2,
+  .uneditable-input.span2 {
+    width: 90px;
+  }
+  input.span1,
+  textarea.span1,
+  .uneditable-input.span1 {
+    width: 28px;
+  }
+}
+
+@media (max-width: 767px) {
+  body {
+    padding-right: 20px;
+    padding-left: 20px;
+  }
+  .navbar-fixed-top,
+  .navbar-fixed-bottom,
+  .navbar-static-top {
+    margin-right: -20px;
+    margin-left: -20px;
+  }
+  .container-fluid {
+    padding: 0;
+  }
+  .dl-horizontal dt {
+    float: none;
+    width: auto;
+    clear: none;
+    text-align: left;
+  }
+  .dl-horizontal dd {
+    margin-left: 0;
+  }
+  .container {
+    width: auto;
+  }
+  .row-fluid {
+    width: 100%;
+  }
+  .row,
+  .thumbnails {
+    margin-left: 0;
+  }
+  .thumbnails > li {
+    float: none;
+    margin-left: 0;
+  }
+  [class*="span"],
+  .uneditable-input[class*="span"],
+  .row-fluid [class*="span"] {
+    display: block;
+    float: none;
+    width: 100%;
+    margin-left: 0;
+    -webkit-box-sizing: border-box;
+       -moz-box-sizing: border-box;
+            box-sizing: border-box;
+  }
+  .span12,
+  .row-fluid .span12 {
+    width: 100%;
+    -webkit-box-sizing: border-box;
+       -moz-box-sizing: border-box;
+            box-sizing: border-box;
+  }
+  .row-fluid [class*="offset"]:first-child {
+    margin-left: 0;
+  }
+  .input-large,
+  .input-xlarge,
+  .input-xxlarge,
+  input[class*="span"],
+  select[class*="span"],
+  textarea[class*="span"],
+  .uneditable-input {
+    display: block;
+    width: 100%;
+    min-height: 30px;
+    -webkit-box-sizing: border-box;
+       -moz-box-sizing: border-box;
+            box-sizing: border-box;
+  }
+  .input-prepend input,
+  .input-append input,
+  .input-prepend input[class*="span"],
+  .input-append input[class*="span"] {
+    display: inline-block;
+    width: auto;
+  }
+  .controls-row [class*="span"] + [class*="span"] {
+    margin-left: 0;
+  }
+  .modal {
+    position: fixed;
+    top: 20px;
+    right: 20px;
+    left: 20px;
+    width: auto;
+    margin: 0;
+  }
+  .modal.fade {
+    top: -100px;
+  }
+  .modal.fade.in {
+    top: 20px;
+  }
+}
+
+@media (max-width: 480px) {
+  .nav-collapse {
+    -webkit-transform: translate3d(0, 0, 0);
+  }
+  .page-header h1 small {
+    display: block;
+    line-height: 20px;
+  }
+  input[type="checkbox"],
+  input[type="radio"] {
+    border: 1px solid #ccc;
+  }
+  .form-horizontal .control-label {
+    float: none;
+    width: auto;
+    padding-top: 0;
+    text-align: left;
+  }
+  .form-horizontal .controls {
+    margin-left: 0;
+  }
+  .form-horizontal .control-list {
+    padding-top: 0;
+  }
+  .form-horizontal .form-actions {
+    padding-right: 10px;
+    padding-left: 10px;
+  }
+  .media .pull-left,
+  .media .pull-right {
+    display: block;
+    float: none;
+    margin-bottom: 10px;
+  }
+  .media-object {
+    margin-right: 0;
+    margin-left: 0;
+  }
+  .modal {
+    top: 10px;
+    right: 10px;
+    left: 10px;
+  }
+  .modal-header .close {
+    padding: 10px;
+    margin: -10px;
+  }
+  .carousel-caption {
+    position: static;
+  }
+}
+
+@media (max-width: 979px) {
+  body {
+    padding-top: 0;
+  }
+  .navbar-fixed-top,
+  .navbar-fixed-bottom {
+    position: static;
+  }
+  .navbar-fixed-top {
+    margin-bottom: 20px;
+  }
+  .navbar-fixed-bottom {
+    margin-top: 20px;
+  }
+  .navbar-fixed-top .navbar-inner,
+  .navbar-fixed-bottom .navbar-inner {
+    padding: 5px;
+  }
+  .navbar .container {
+    width: auto;
+    padding: 0;
+  }
+  .navbar .brand {
+    padding-right: 10px;
+    padding-left: 10px;
+    margin: 0 0 0 -5px;
+  }
+  .nav-collapse {
+    clear: both;
+  }
+  .nav-collapse .nav {
+    float: none;
+    margin: 0 0 10px;
+  }
+  .nav-collapse .nav > li {
+    float: none;
+  }
+  .nav-collapse .nav > li > a {
+    margin-bottom: 2px;
+  }
+  .nav-collapse .nav > .divider-vertical {
+    display: none;
+  }
+  .nav-collapse .nav .nav-header {
+    color: #777777;
+    text-shadow: none;
+  }
+  .nav-collapse .nav > li > a,
+  .nav-collapse .dropdown-menu a {
+    padding: 9px 15px;
+    font-weight: bold;
+    color: #777777;
+    -webkit-border-radius: 3px;
+       -moz-border-radius: 3px;
+            border-radius: 3px;
+  }
+  .nav-collapse .btn {
+    padding: 4px 10px 4px;
+    font-weight: normal;
+    -webkit-border-radius: 4px;
+       -moz-border-radius: 4px;
+            border-radius: 4px;
+  }
+  .nav-collapse .dropdown-menu li + li a {
+    margin-bottom: 2px;
+  }
+  .nav-collapse .nav > li > a:hover,
+  .nav-collapse .nav > li > a:focus,
+  .nav-collapse .dropdown-menu a:hover,
+  .nav-collapse .dropdown-menu a:focus {
+    background-color: #f2f2f2;
+  }
+  .navbar-inverse .nav-collapse .nav > li > a,
+  .navbar-inverse .nav-collapse .dropdown-menu a {
+    color: #999999;
+  }
+  .navbar-inverse .nav-collapse .nav > li > a:hover,
+  .navbar-inverse .nav-collapse .nav > li > a:focus,
+  .navbar-inverse .nav-collapse .dropdown-menu a:hover,
+  .navbar-inverse .nav-collapse .dropdown-menu a:focus {
+    background-color: #111111;
+  }
+  .nav-collapse.in .btn-group {
+    padding: 0;
+    margin-top: 5px;
+  }
+  .nav-collapse .dropdown-menu {
+    position: static;
+    top: auto;
+    left: auto;
+    display: none;
+    float: none;
+    max-width: none;
+    padding: 0;
+    margin: 0 15px;
+    background-color: transparent;
+    border: none;
+    -webkit-border-radius: 0;
+       -moz-border-radius: 0;
+            border-radius: 0;
+    -webkit-box-shadow: none;
+       -moz-box-shadow: none;
+            box-shadow: none;
+  }
+  .nav-collapse .open > .dropdown-menu {
+    display: block;
+  }
+  .nav-collapse .dropdown-menu:before,
+  .nav-collapse .dropdown-menu:after {
+    display: none;
+  }
+  .nav-collapse .dropdown-menu .divider {
+    display: none;
+  }
+  .nav-collapse .nav > li > .dropdown-menu:before,
+  .nav-collapse .nav > li > .dropdown-menu:after {
+    display: none;
+  }
+  .nav-collapse .navbar-form,
+  .nav-collapse .navbar-search {
+    float: none;
+    padding: 10px 15px;
+    margin: 10px 0;
+    border-top: 1px solid #f2f2f2;
+    border-bottom: 1px solid #f2f2f2;
+    -webkit-box-shadow: inset 0 1px 0 rgba(255, 255, 255, 0.1), 0 1px 0 rgba(255, 255, 255, 0.1);
+       -moz-box-shadow: inset 0 1px 0 rgba(255, 255, 255, 0.1), 0 1px 0 rgba(255, 255, 255, 0.1);
+            box-shadow: inset 0 1px 0 rgba(255, 255, 255, 0.1), 0 1px 0 rgba(255, 255, 255, 0.1);
+  }
+  .navbar-inverse .nav-collapse .navbar-form,
+  .navbar-inverse .nav-collapse .navbar-search {
+    border-top-color: #111111;
+    border-bottom-color: #111111;
+  }
+  .navbar .nav-collapse .nav.pull-right {
+    float: none;
+    margin-left: 0;
+  }
+  .nav-collapse,
+  .nav-collapse.collapse {
+    height: 0;
+    overflow: hidden;
+  }
+  .navbar .btn-navbar {
+    display: block;
+  }
+  .navbar-static .navbar-inner {
+    padding-right: 10px;
+    padding-left: 10px;
+  }
+}
+
+@media (min-width: 980px) {
+  .nav-collapse.collapse {
+    height: auto !important;
+    overflow: visible !important;
+  }
+}
\ No newline at end of file
diff --git a/oxAuth/Server/src/main/webapp/stylesheet/bootstrap.css b/oxAuth/Server/src/main/webapp/stylesheet/bootstrap.css
new file mode 100644
index 00000000..30aae55e
--- /dev/null
+++ b/oxAuth/Server/src/main/webapp/stylesheet/bootstrap.css
@@ -0,0 +1,12068 @@
+@charset "UTF-8";
+/*!
+ * Bootstrap  v5.3.2 (https://getbootstrap.com/)
+ * Copyright 2011-2023 The Bootstrap Authors
+ * Licensed under MIT (https://github.com/twbs/bootstrap/blob/main/LICENSE)
+ */
+:root,
+[data-bs-theme=light] {
+  --bs-blue: #0d6efd;
+  --bs-indigo: #6610f2;
+  --bs-purple: #6f42c1;
+  --bs-pink: #d63384;
+  --bs-red: #dc3545;
+  --bs-orange: #fd7e14;
+  --bs-yellow: #ffc107;
+  --bs-green: #198754;
+  --bs-teal: #20c997;
+  --bs-cyan: #0dcaf0;
+  --bs-black: #000;
+  --bs-white: #fff;
+  --bs-gray: #6c757d;
+  --bs-gray-dark: #343a40;
+  --bs-gray-100: #f8f9fa;
+  --bs-gray-200: #e9ecef;
+  --bs-gray-300: #dee2e6;
+  --bs-gray-400: #ced4da;
+  --bs-gray-500: #adb5bd;
+  --bs-gray-600: #6c757d;
+  --bs-gray-700: #495057;
+  --bs-gray-800: #343a40;
+  --bs-gray-900: #212529;
+  --bs-primary: #0d6efd;
+  --bs-secondary: #6c757d;
+  --bs-success: #198754;
+  --bs-info: #0dcaf0;
+  --bs-warning: #ffc107;
+  --bs-danger: #dc3545;
+  --bs-light: #f8f9fa;
+  --bs-dark: #212529;
+  --bs-primary-rgb: 13, 110, 253;
+  --bs-secondary-rgb: 108, 117, 125;
+  --bs-success-rgb: 25, 135, 84;
+  --bs-info-rgb: 13, 202, 240;
+  --bs-warning-rgb: 255, 193, 7;
+  --bs-danger-rgb: 220, 53, 69;
+  --bs-light-rgb: 248, 249, 250;
+  --bs-dark-rgb: 33, 37, 41;
+  --bs-primary-text-emphasis: #052c65;
+  --bs-secondary-text-emphasis: #2b2f32;
+  --bs-success-text-emphasis: #0a3622;
+  --bs-info-text-emphasis: #055160;
+  --bs-warning-text-emphasis: #664d03;
+  --bs-danger-text-emphasis: #58151c;
+  --bs-light-text-emphasis: #495057;
+  --bs-dark-text-emphasis: #495057;
+  --bs-primary-bg-subtle: #cfe2ff;
+  --bs-secondary-bg-subtle: #e2e3e5;
+  --bs-success-bg-subtle: #d1e7dd;
+  --bs-info-bg-subtle: #cff4fc;
+  --bs-warning-bg-subtle: #fff3cd;
+  --bs-danger-bg-subtle: #f8d7da;
+  --bs-light-bg-subtle: #fcfcfd;
+  --bs-dark-bg-subtle: #ced4da;
+  --bs-primary-border-subtle: #9ec5fe;
+  --bs-secondary-border-subtle: #c4c8cb;
+  --bs-success-border-subtle: #a3cfbb;
+  --bs-info-border-subtle: #9eeaf9;
+  --bs-warning-border-subtle: #ffe69c;
+  --bs-danger-border-subtle: #f1aeb5;
+  --bs-light-border-subtle: #e9ecef;
+  --bs-dark-border-subtle: #adb5bd;
+  --bs-white-rgb: 255, 255, 255;
+  --bs-black-rgb: 0, 0, 0;
+  --bs-font-sans-serif: system-ui, -apple-system, "Segoe UI", Roboto, "Helvetica Neue", "Noto Sans", "Liberation Sans", Arial, sans-serif, "Apple Color Emoji", "Segoe UI Emoji", "Segoe UI Symbol", "Noto Color Emoji";
+  --bs-font-monospace: SFMono-Regular, Menlo, Monaco, Consolas, "Liberation Mono", "Courier New", monospace;
+  --bs-gradient: linear-gradient(180deg, rgba(255, 255, 255, 0.15), rgba(255, 255, 255, 0));
+  --bs-body-font-family: var(--bs-font-sans-serif);
+  --bs-body-font-size: 1rem;
+  --bs-body-font-weight: 400;
+  --bs-body-line-height: 1.5;
+  --bs-body-color: #212529;
+  --bs-body-color-rgb: 33, 37, 41;
+  --bs-body-bg: #fff;
+  --bs-body-bg-rgb: 255, 255, 255;
+  --bs-emphasis-color: #000;
+  --bs-emphasis-color-rgb: 0, 0, 0;
+  --bs-secondary-color: rgba(33, 37, 41, 0.75);
+  --bs-secondary-color-rgb: 33, 37, 41;
+  --bs-secondary-bg: #e9ecef;
+  --bs-secondary-bg-rgb: 233, 236, 239;
+  --bs-tertiary-color: rgba(33, 37, 41, 0.5);
+  --bs-tertiary-color-rgb: 33, 37, 41;
+  --bs-tertiary-bg: #f8f9fa;
+  --bs-tertiary-bg-rgb: 248, 249, 250;
+  --bs-heading-color: inherit;
+  --bs-link-color: #0d6efd;
+  --bs-link-color-rgb: 13, 110, 253;
+  --bs-link-decoration: underline;
+  --bs-link-hover-color: #0a58ca;
+  --bs-link-hover-color-rgb: 10, 88, 202;
+  --bs-code-color: #d63384;
+  --bs-highlight-color: #212529;
+  --bs-highlight-bg: #fff3cd;
+  --bs-border-width: 1px;
+  --bs-border-style: solid;
+  --bs-border-color: #dee2e6;
+  --bs-border-color-translucent: rgba(0, 0, 0, 0.175);
+  --bs-border-radius: 0.375rem;
+  --bs-border-radius-sm: 0.25rem;
+  --bs-border-radius-lg: 0.5rem;
+  --bs-border-radius-xl: 1rem;
+  --bs-border-radius-xxl: 2rem;
+  --bs-border-radius-2xl: var(--bs-border-radius-xxl);
+  --bs-border-radius-pill: 50rem;
+  --bs-box-shadow: 0 0.5rem 1rem rgba(0, 0, 0, 0.15);
+  --bs-box-shadow-sm: 0 0.125rem 0.25rem rgba(0, 0, 0, 0.075);
+  --bs-box-shadow-lg: 0 1rem 3rem rgba(0, 0, 0, 0.175);
+  --bs-box-shadow-inset: inset 0 1px 2px rgba(0, 0, 0, 0.075);
+  --bs-focus-ring-width: 0.25rem;
+  --bs-focus-ring-opacity: 0.25;
+  --bs-focus-ring-color: rgba(13, 110, 253, 0.25);
+  --bs-form-valid-color: #198754;
+  --bs-form-valid-border-color: #198754;
+  --bs-form-invalid-color: #dc3545;
+  --bs-form-invalid-border-color: #dc3545;
+}
+
+[data-bs-theme=dark] {
+  color-scheme: dark;
+  --bs-body-color: #dee2e6;
+  --bs-body-color-rgb: 222, 226, 230;
+  --bs-body-bg: #212529;
+  --bs-body-bg-rgb: 33, 37, 41;
+  --bs-emphasis-color: #fff;
+  --bs-emphasis-color-rgb: 255, 255, 255;
+  --bs-secondary-color: rgba(222, 226, 230, 0.75);
+  --bs-secondary-color-rgb: 222, 226, 230;
+  --bs-secondary-bg: #343a40;
+  --bs-secondary-bg-rgb: 52, 58, 64;
+  --bs-tertiary-color: rgba(222, 226, 230, 0.5);
+  --bs-tertiary-color-rgb: 222, 226, 230;
+  --bs-tertiary-bg: #2b3035;
+  --bs-tertiary-bg-rgb: 43, 48, 53;
+  --bs-primary-text-emphasis: #6ea8fe;
+  --bs-secondary-text-emphasis: #a7acb1;
+  --bs-success-text-emphasis: #75b798;
+  --bs-info-text-emphasis: #6edff6;
+  --bs-warning-text-emphasis: #ffda6a;
+  --bs-danger-text-emphasis: #ea868f;
+  --bs-light-text-emphasis: #f8f9fa;
+  --bs-dark-text-emphasis: #dee2e6;
+  --bs-primary-bg-subtle: #031633;
+  --bs-secondary-bg-subtle: #161719;
+  --bs-success-bg-subtle: #051b11;
+  --bs-info-bg-subtle: #032830;
+  --bs-warning-bg-subtle: #332701;
+  --bs-danger-bg-subtle: #2c0b0e;
+  --bs-light-bg-subtle: #343a40;
+  --bs-dark-bg-subtle: #1a1d20;
+  --bs-primary-border-subtle: #084298;
+  --bs-secondary-border-subtle: #41464b;
+  --bs-success-border-subtle: #0f5132;
+  --bs-info-border-subtle: #087990;
+  --bs-warning-border-subtle: #997404;
+  --bs-danger-border-subtle: #842029;
+  --bs-light-border-subtle: #495057;
+  --bs-dark-border-subtle: #343a40;
+  --bs-heading-color: inherit;
+  --bs-link-color: #6ea8fe;
+  --bs-link-hover-color: #8bb9fe;
+  --bs-link-color-rgb: 110, 168, 254;
+  --bs-link-hover-color-rgb: 139, 185, 254;
+  --bs-code-color: #e685b5;
+  --bs-highlight-color: #dee2e6;
+  --bs-highlight-bg: #664d03;
+  --bs-border-color: #495057;
+  --bs-border-color-translucent: rgba(255, 255, 255, 0.15);
+  --bs-form-valid-color: #75b798;
+  --bs-form-valid-border-color: #75b798;
+  --bs-form-invalid-color: #ea868f;
+  --bs-form-invalid-border-color: #ea868f;
+}
+
+*,
+*::before,
+*::after {
+  box-sizing: border-box;
+}
+
+@media (prefers-reduced-motion: no-preference) {
+  :root {
+    scroll-behavior: smooth;
+  }
+}
+
+body {
+  margin: 0;
+  font-family: var(--bs-body-font-family);
+  font-size: var(--bs-body-font-size);
+  font-weight: var(--bs-body-font-weight);
+  line-height: var(--bs-body-line-height);
+  color: var(--bs-body-color);
+  text-align: var(--bs-body-text-align);
+  background-color: var(--bs-body-bg);
+  -webkit-text-size-adjust: 100%;
+  -webkit-tap-highlight-color: rgba(0, 0, 0, 0);
+}
+
+hr {
+  margin: 1rem 0;
+  color: inherit;
+  border: 0;
+  border-top: var(--bs-border-width) solid;
+  opacity: 0.25;
+}
+
+h6, .h6, h5, .h5, h4, .h4, h3, .h3, h2, .h2, h1, .h1 {
+  margin-top: 0;
+  margin-bottom: 0.5rem;
+  font-weight: 500;
+  line-height: 1.2;
+  color: var(--bs-heading-color);
+}
+
+h1, .h1 {
+  font-size: calc(1.375rem + 1.5vw);
+}
+@media (min-width: 1200px) {
+  h1, .h1 {
+    font-size: 2.5rem;
+  }
+}
+
+h2, .h2 {
+  font-size: calc(1.325rem + 0.9vw);
+}
+@media (min-width: 1200px) {
+  h2, .h2 {
+    font-size: 2rem;
+  }
+}
+
+h3, .h3 {
+  font-size: calc(1.3rem + 0.6vw);
+}
+@media (min-width: 1200px) {
+  h3, .h3 {
+    font-size: 1.75rem;
+  }
+}
+
+h4, .h4 {
+  font-size: calc(1.275rem + 0.3vw);
+}
+@media (min-width: 1200px) {
+  h4, .h4 {
+    font-size: 1.5rem;
+  }
+}
+
+h5, .h5 {
+  font-size: 1.25rem;
+}
+
+h6, .h6 {
+  font-size: 1rem;
+}
+
+p {
+  margin-top: 0;
+  margin-bottom: 1rem;
+}
+
+abbr[title] {
+  -webkit-text-decoration: underline dotted;
+  text-decoration: underline dotted;
+  cursor: help;
+  -webkit-text-decoration-skip-ink: none;
+  text-decoration-skip-ink: none;
+}
+
+address {
+  margin-bottom: 1rem;
+  font-style: normal;
+  line-height: inherit;
+}
+
+ol,
+ul {
+  padding-left: 2rem;
+}
+
+ol,
+ul,
+dl {
+  margin-top: 0;
+  margin-bottom: 1rem;
+}
+
+ol ol,
+ul ul,
+ol ul,
+ul ol {
+  margin-bottom: 0;
+}
+
+dt {
+  font-weight: 700;
+}
+
+dd {
+  margin-bottom: 0.5rem;
+  margin-left: 0;
+}
+
+blockquote {
+  margin: 0 0 1rem;
+}
+
+b,
+strong {
+  font-weight: bolder;
+}
+
+small, .small {
+  font-size: 0.875em;
+}
+
+mark, .mark {
+  padding: 0.1875em;
+  color: var(--bs-highlight-color);
+  background-color: var(--bs-highlight-bg);
+}
+
+sub,
+sup {
+  position: relative;
+  font-size: 0.75em;
+  line-height: 0;
+  vertical-align: baseline;
+}
+
+sub {
+  bottom: -0.25em;
+}
+
+sup {
+  top: -0.5em;
+}
+
+a {
+  color: rgba(var(--bs-link-color-rgb), var(--bs-link-opacity, 1));
+  text-decoration: underline;
+}
+a:hover {
+  --bs-link-color-rgb: var(--bs-link-hover-color-rgb);
+}
+
+a:not([href]):not([class]), a:not([href]):not([class]):hover {
+  color: inherit;
+  text-decoration: none;
+}
+
+pre,
+code,
+kbd,
+samp {
+  font-family: var(--bs-font-monospace);
+  font-size: 1em;
+}
+
+pre {
+  display: block;
+  margin-top: 0;
+  margin-bottom: 1rem;
+  overflow: auto;
+  font-size: 0.875em;
+}
+pre code {
+  font-size: inherit;
+  color: inherit;
+  word-break: normal;
+}
+
+code {
+  font-size: 0.875em;
+  color: var(--bs-code-color);
+  word-wrap: break-word;
+}
+a > code {
+  color: inherit;
+}
+
+kbd {
+  padding: 0.1875rem 0.375rem;
+  font-size: 0.875em;
+  color: var(--bs-body-bg);
+  background-color: var(--bs-body-color);
+  border-radius: 0.25rem;
+}
+kbd kbd {
+  padding: 0;
+  font-size: 1em;
+}
+
+figure {
+  margin: 0 0 1rem;
+}
+
+img,
+svg {
+  vertical-align: middle;
+}
+
+table {
+  caption-side: bottom;
+  border-collapse: collapse;
+}
+
+caption {
+  padding-top: 0.5rem;
+  padding-bottom: 0.5rem;
+  color: var(--bs-secondary-color);
+  text-align: left;
+}
+
+th {
+  text-align: inherit;
+  text-align: -webkit-match-parent;
+}
+
+thead,
+tbody,
+tfoot,
+tr,
+td,
+th {
+  border-color: inherit;
+  border-style: solid;
+  border-width: 0;
+}
+
+label {
+  display: inline-block;
+}
+
+button {
+  border-radius: 0;
+}
+
+button:focus:not(:focus-visible) {
+  outline: 0;
+}
+
+input,
+button,
+select,
+optgroup,
+textarea {
+  margin: 0;
+  font-family: inherit;
+  font-size: inherit;
+  line-height: inherit;
+}
+
+button,
+select {
+  text-transform: none;
+}
+
+[role=button] {
+  cursor: pointer;
+}
+
+select {
+  word-wrap: normal;
+}
+select:disabled {
+  opacity: 1;
+}
+
+[list]:not([type=date]):not([type=datetime-local]):not([type=month]):not([type=week]):not([type=time])::-webkit-calendar-picker-indicator {
+  display: none !important;
+}
+
+button,
+[type=button],
+[type=reset],
+[type=submit] {
+  -webkit-appearance: button;
+}
+button:not(:disabled),
+[type=button]:not(:disabled),
+[type=reset]:not(:disabled),
+[type=submit]:not(:disabled) {
+  cursor: pointer;
+}
+
+::-moz-focus-inner {
+  padding: 0;
+  border-style: none;
+}
+
+textarea {
+  resize: vertical;
+}
+
+fieldset {
+  min-width: 0;
+  padding: 0;
+  margin: 0;
+  border: 0;
+}
+
+legend {
+  float: left;
+  width: 100%;
+  padding: 0;
+  margin-bottom: 0.5rem;
+  font-size: calc(1.275rem + 0.3vw);
+  line-height: inherit;
+}
+@media (min-width: 1200px) {
+  legend {
+    font-size: 1.5rem;
+  }
+}
+legend + * {
+  clear: left;
+}
+
+::-webkit-datetime-edit-fields-wrapper,
+::-webkit-datetime-edit-text,
+::-webkit-datetime-edit-minute,
+::-webkit-datetime-edit-hour-field,
+::-webkit-datetime-edit-day-field,
+::-webkit-datetime-edit-month-field,
+::-webkit-datetime-edit-year-field {
+  padding: 0;
+}
+
+::-webkit-inner-spin-button {
+  height: auto;
+}
+
+[type=search] {
+  -webkit-appearance: textfield;
+  outline-offset: -2px;
+}
+
+/* rtl:raw:
+[type="tel"],
+[type="url"],
+[type="email"],
+[type="number"] {
+  direction: ltr;
+}
+*/
+::-webkit-search-decoration {
+  -webkit-appearance: none;
+}
+
+::-webkit-color-swatch-wrapper {
+  padding: 0;
+}
+
+::-webkit-file-upload-button {
+  font: inherit;
+  -webkit-appearance: button;
+}
+
+::file-selector-button {
+  font: inherit;
+  -webkit-appearance: button;
+}
+
+output {
+  display: inline-block;
+}
+
+iframe {
+  border: 0;
+}
+
+summary {
+  display: list-item;
+  cursor: pointer;
+}
+
+progress {
+  vertical-align: baseline;
+}
+
+[hidden] {
+  display: none !important;
+}
+
+.lead {
+  font-size: 1.25rem;
+  font-weight: 300;
+}
+
+.display-1 {
+  font-size: calc(1.625rem + 4.5vw);
+  font-weight: 300;
+  line-height: 1.2;
+}
+@media (min-width: 1200px) {
+  .display-1 {
+    font-size: 5rem;
+  }
+}
+
+.display-2 {
+  font-size: calc(1.575rem + 3.9vw);
+  font-weight: 300;
+  line-height: 1.2;
+}
+@media (min-width: 1200px) {
+  .display-2 {
+    font-size: 4.5rem;
+  }
+}
+
+.display-3 {
+  font-size: calc(1.525rem + 3.3vw);
+  font-weight: 300;
+  line-height: 1.2;
+}
+@media (min-width: 1200px) {
+  .display-3 {
+    font-size: 4rem;
+  }
+}
+
+.display-4 {
+  font-size: calc(1.475rem + 2.7vw);
+  font-weight: 300;
+  line-height: 1.2;
+}
+@media (min-width: 1200px) {
+  .display-4 {
+    font-size: 3.5rem;
+  }
+}
+
+.display-5 {
+  font-size: calc(1.425rem + 2.1vw);
+  font-weight: 300;
+  line-height: 1.2;
+}
+@media (min-width: 1200px) {
+  .display-5 {
+    font-size: 3rem;
+  }
+}
+
+.display-6 {
+  font-size: calc(1.375rem + 1.5vw);
+  font-weight: 300;
+  line-height: 1.2;
+}
+@media (min-width: 1200px) {
+  .display-6 {
+    font-size: 2.5rem;
+  }
+}
+
+.list-unstyled {
+  padding-left: 0;
+  list-style: none;
+}
+
+.list-inline {
+  padding-left: 0;
+  list-style: none;
+}
+
+.list-inline-item {
+  display: inline-block;
+}
+.list-inline-item:not(:last-child) {
+  margin-right: 0.5rem;
+}
+
+.initialism {
+  font-size: 0.875em;
+  text-transform: uppercase;
+}
+
+.blockquote {
+  margin-bottom: 1rem;
+  font-size: 1.25rem;
+}
+.blockquote > :last-child {
+  margin-bottom: 0;
+}
+
+.blockquote-footer {
+  margin-top: -1rem;
+  margin-bottom: 1rem;
+  font-size: 0.875em;
+  color: #6c757d;
+}
+.blockquote-footer::before {
+  content: "— ";
+}
+
+.img-fluid {
+  max-width: 100%;
+  height: auto;
+}
+
+.img-thumbnail {
+  padding: 0.25rem;
+  background-color: var(--bs-body-bg);
+  border: var(--bs-border-width) solid var(--bs-border-color);
+  border-radius: var(--bs-border-radius);
+  max-width: 100%;
+  height: auto;
+}
+
+.figure {
+  display: inline-block;
+}
+
+.figure-img {
+  margin-bottom: 0.5rem;
+  line-height: 1;
+}
+
+.figure-caption {
+  font-size: 0.875em;
+  color: var(--bs-secondary-color);
+}
+
+.container,
+.container-fluid,
+.container-xxl,
+.container-xl,
+.container-lg,
+.container-md,
+.container-sm {
+  --bs-gutter-x: 1.5rem;
+  --bs-gutter-y: 0;
+  width: 100%;
+  padding-right: calc(var(--bs-gutter-x) * 0.5);
+  padding-left: calc(var(--bs-gutter-x) * 0.5);
+  margin-right: auto;
+  margin-left: auto;
+}
+
+@media (min-width: 576px) {
+  .container-sm, .container {
+    max-width: 540px;
+  }
+}
+@media (min-width: 768px) {
+  .container-md, .container-sm, .container {
+    max-width: 720px;
+  }
+}
+@media (min-width: 992px) {
+  .container-lg, .container-md, .container-sm, .container {
+    max-width: 960px;
+  }
+}
+@media (min-width: 1200px) {
+  .container-xl, .container-lg, .container-md, .container-sm, .container {
+    max-width: 1140px;
+  }
+}
+@media (min-width: 1400px) {
+  .container-xxl, .container-xl, .container-lg, .container-md, .container-sm, .container {
+    max-width: 1320px;
+  }
+}
+:root {
+  --bs-breakpoint-xs: 0;
+  --bs-breakpoint-sm: 576px;
+  --bs-breakpoint-md: 768px;
+  --bs-breakpoint-lg: 992px;
+  --bs-breakpoint-xl: 1200px;
+  --bs-breakpoint-xxl: 1400px;
+}
+
+.row {
+  --bs-gutter-x: 1.5rem;
+  --bs-gutter-y: 0;
+  display: flex;
+  flex-wrap: wrap;
+  margin-top: calc(-1 * var(--bs-gutter-y));
+  margin-right: calc(-0.5 * var(--bs-gutter-x));
+  margin-left: calc(-0.5 * var(--bs-gutter-x));
+}
+.row > * {
+  flex-shrink: 0;
+  width: 100%;
+  max-width: 100%;
+  padding-right: calc(var(--bs-gutter-x) * 0.5);
+  padding-left: calc(var(--bs-gutter-x) * 0.5);
+  margin-top: var(--bs-gutter-y);
+}
+
+.col {
+  flex: 1 0 0%;
+}
+
+.row-cols-auto > * {
+  flex: 0 0 auto;
+  width: auto;
+}
+
+.row-cols-1 > * {
+  flex: 0 0 auto;
+  width: 100%;
+}
+
+.row-cols-2 > * {
+  flex: 0 0 auto;
+  width: 50%;
+}
+
+.row-cols-3 > * {
+  flex: 0 0 auto;
+  width: 33.33333333%;
+}
+
+.row-cols-4 > * {
+  flex: 0 0 auto;
+  width: 25%;
+}
+
+.row-cols-5 > * {
+  flex: 0 0 auto;
+  width: 20%;
+}
+
+.row-cols-6 > * {
+  flex: 0 0 auto;
+  width: 16.66666667%;
+}
+
+.col-auto {
+  flex: 0 0 auto;
+  width: auto;
+}
+
+.col-1 {
+  flex: 0 0 auto;
+  width: 8.33333333%;
+}
+
+.col-2 {
+  flex: 0 0 auto;
+  width: 16.66666667%;
+}
+
+.col-3 {
+  flex: 0 0 auto;
+  width: 25%;
+}
+
+.col-4 {
+  flex: 0 0 auto;
+  width: 33.33333333%;
+}
+
+.col-5 {
+  flex: 0 0 auto;
+  width: 41.66666667%;
+}
+
+.col-6 {
+  flex: 0 0 auto;
+  width: 50%;
+}
+
+.col-7 {
+  flex: 0 0 auto;
+  width: 58.33333333%;
+}
+
+.col-8 {
+  flex: 0 0 auto;
+  width: 66.66666667%;
+}
+
+.col-9 {
+  flex: 0 0 auto;
+  width: 75%;
+}
+
+.col-10 {
+  flex: 0 0 auto;
+  width: 83.33333333%;
+}
+
+.col-11 {
+  flex: 0 0 auto;
+  width: 91.66666667%;
+}
+
+.col-12 {
+  flex: 0 0 auto;
+  width: 100%;
+}
+
+.offset-1 {
+  margin-left: 8.33333333%;
+}
+
+.offset-2 {
+  margin-left: 16.66666667%;
+}
+
+.offset-3 {
+  margin-left: 25%;
+}
+
+.offset-4 {
+  margin-left: 33.33333333%;
+}
+
+.offset-5 {
+  margin-left: 41.66666667%;
+}
+
+.offset-6 {
+  margin-left: 50%;
+}
+
+.offset-7 {
+  margin-left: 58.33333333%;
+}
+
+.offset-8 {
+  margin-left: 66.66666667%;
+}
+
+.offset-9 {
+  margin-left: 75%;
+}
+
+.offset-10 {
+  margin-left: 83.33333333%;
+}
+
+.offset-11 {
+  margin-left: 91.66666667%;
+}
+
+.g-0,
+.gx-0 {
+  --bs-gutter-x: 0;
+}
+
+.g-0,
+.gy-0 {
+  --bs-gutter-y: 0;
+}
+
+.g-1,
+.gx-1 {
+  --bs-gutter-x: 0.25rem;
+}
+
+.g-1,
+.gy-1 {
+  --bs-gutter-y: 0.25rem;
+}
+
+.g-2,
+.gx-2 {
+  --bs-gutter-x: 0.5rem;
+}
+
+.g-2,
+.gy-2 {
+  --bs-gutter-y: 0.5rem;
+}
+
+.g-3,
+.gx-3 {
+  --bs-gutter-x: 1rem;
+}
+
+.g-3,
+.gy-3 {
+  --bs-gutter-y: 1rem;
+}
+
+.g-4,
+.gx-4 {
+  --bs-gutter-x: 1.5rem;
+}
+
+.g-4,
+.gy-4 {
+  --bs-gutter-y: 1.5rem;
+}
+
+.g-5,
+.gx-5 {
+  --bs-gutter-x: 3rem;
+}
+
+.g-5,
+.gy-5 {
+  --bs-gutter-y: 3rem;
+}
+
+@media (min-width: 576px) {
+  .col-sm {
+    flex: 1 0 0%;
+  }
+  .row-cols-sm-auto > * {
+    flex: 0 0 auto;
+    width: auto;
+  }
+  .row-cols-sm-1 > * {
+    flex: 0 0 auto;
+    width: 100%;
+  }
+  .row-cols-sm-2 > * {
+    flex: 0 0 auto;
+    width: 50%;
+  }
+  .row-cols-sm-3 > * {
+    flex: 0 0 auto;
+    width: 33.33333333%;
+  }
+  .row-cols-sm-4 > * {
+    flex: 0 0 auto;
+    width: 25%;
+  }
+  .row-cols-sm-5 > * {
+    flex: 0 0 auto;
+    width: 20%;
+  }
+  .row-cols-sm-6 > * {
+    flex: 0 0 auto;
+    width: 16.66666667%;
+  }
+  .col-sm-auto {
+    flex: 0 0 auto;
+    width: auto;
+  }
+  .col-sm-1 {
+    flex: 0 0 auto;
+    width: 8.33333333%;
+  }
+  .col-sm-2 {
+    flex: 0 0 auto;
+    width: 16.66666667%;
+  }
+  .col-sm-3 {
+    flex: 0 0 auto;
+    width: 25%;
+  }
+  .col-sm-4 {
+    flex: 0 0 auto;
+    width: 33.33333333%;
+  }
+  .col-sm-5 {
+    flex: 0 0 auto;
+    width: 41.66666667%;
+  }
+  .col-sm-6 {
+    flex: 0 0 auto;
+    width: 50%;
+  }
+  .col-sm-7 {
+    flex: 0 0 auto;
+    width: 58.33333333%;
+  }
+  .col-sm-8 {
+    flex: 0 0 auto;
+    width: 66.66666667%;
+  }
+  .col-sm-9 {
+    flex: 0 0 auto;
+    width: 75%;
+  }
+  .col-sm-10 {
+    flex: 0 0 auto;
+    width: 83.33333333%;
+  }
+  .col-sm-11 {
+    flex: 0 0 auto;
+    width: 91.66666667%;
+  }
+  .col-sm-12 {
+    flex: 0 0 auto;
+    width: 100%;
+  }
+  .offset-sm-0 {
+    margin-left: 0;
+  }
+  .offset-sm-1 {
+    margin-left: 8.33333333%;
+  }
+  .offset-sm-2 {
+    margin-left: 16.66666667%;
+  }
+  .offset-sm-3 {
+    margin-left: 25%;
+  }
+  .offset-sm-4 {
+    margin-left: 33.33333333%;
+  }
+  .offset-sm-5 {
+    margin-left: 41.66666667%;
+  }
+  .offset-sm-6 {
+    margin-left: 50%;
+  }
+  .offset-sm-7 {
+    margin-left: 58.33333333%;
+  }
+  .offset-sm-8 {
+    margin-left: 66.66666667%;
+  }
+  .offset-sm-9 {
+    margin-left: 75%;
+  }
+  .offset-sm-10 {
+    margin-left: 83.33333333%;
+  }
+  .offset-sm-11 {
+    margin-left: 91.66666667%;
+  }
+  .g-sm-0,
+  .gx-sm-0 {
+    --bs-gutter-x: 0;
+  }
+  .g-sm-0,
+  .gy-sm-0 {
+    --bs-gutter-y: 0;
+  }
+  .g-sm-1,
+  .gx-sm-1 {
+    --bs-gutter-x: 0.25rem;
+  }
+  .g-sm-1,
+  .gy-sm-1 {
+    --bs-gutter-y: 0.25rem;
+  }
+  .g-sm-2,
+  .gx-sm-2 {
+    --bs-gutter-x: 0.5rem;
+  }
+  .g-sm-2,
+  .gy-sm-2 {
+    --bs-gutter-y: 0.5rem;
+  }
+  .g-sm-3,
+  .gx-sm-3 {
+    --bs-gutter-x: 1rem;
+  }
+  .g-sm-3,
+  .gy-sm-3 {
+    --bs-gutter-y: 1rem;
+  }
+  .g-sm-4,
+  .gx-sm-4 {
+    --bs-gutter-x: 1.5rem;
+  }
+  .g-sm-4,
+  .gy-sm-4 {
+    --bs-gutter-y: 1.5rem;
+  }
+  .g-sm-5,
+  .gx-sm-5 {
+    --bs-gutter-x: 3rem;
+  }
+  .g-sm-5,
+  .gy-sm-5 {
+    --bs-gutter-y: 3rem;
+  }
+}
+@media (min-width: 768px) {
+  .col-md {
+    flex: 1 0 0%;
+  }
+  .row-cols-md-auto > * {
+    flex: 0 0 auto;
+    width: auto;
+  }
+  .row-cols-md-1 > * {
+    flex: 0 0 auto;
+    width: 100%;
+  }
+  .row-cols-md-2 > * {
+    flex: 0 0 auto;
+    width: 50%;
+  }
+  .row-cols-md-3 > * {
+    flex: 0 0 auto;
+    width: 33.33333333%;
+  }
+  .row-cols-md-4 > * {
+    flex: 0 0 auto;
+    width: 25%;
+  }
+  .row-cols-md-5 > * {
+    flex: 0 0 auto;
+    width: 20%;
+  }
+  .row-cols-md-6 > * {
+    flex: 0 0 auto;
+    width: 16.66666667%;
+  }
+  .col-md-auto {
+    flex: 0 0 auto;
+    width: auto;
+  }
+  .col-md-1 {
+    flex: 0 0 auto;
+    width: 8.33333333%;
+  }
+  .col-md-2 {
+    flex: 0 0 auto;
+    width: 16.66666667%;
+  }
+  .col-md-3 {
+    flex: 0 0 auto;
+    width: 25%;
+  }
+  .col-md-4 {
+    flex: 0 0 auto;
+    width: 33.33333333%;
+  }
+  .col-md-5 {
+    flex: 0 0 auto;
+    width: 41.66666667%;
+  }
+  .col-md-6 {
+    flex: 0 0 auto;
+    width: 50%;
+  }
+  .col-md-7 {
+    flex: 0 0 auto;
+    width: 58.33333333%;
+  }
+  .col-md-8 {
+    flex: 0 0 auto;
+    width: 66.66666667%;
+  }
+  .col-md-9 {
+    flex: 0 0 auto;
+    width: 75%;
+  }
+  .col-md-10 {
+    flex: 0 0 auto;
+    width: 83.33333333%;
+  }
+  .col-md-11 {
+    flex: 0 0 auto;
+    width: 91.66666667%;
+  }
+  .col-md-12 {
+    flex: 0 0 auto;
+    width: 100%;
+  }
+  .offset-md-0 {
+    margin-left: 0;
+  }
+  .offset-md-1 {
+    margin-left: 8.33333333%;
+  }
+  .offset-md-2 {
+    margin-left: 16.66666667%;
+  }
+  .offset-md-3 {
+    margin-left: 25%;
+  }
+  .offset-md-4 {
+    margin-left: 33.33333333%;
+  }
+  .offset-md-5 {
+    margin-left: 41.66666667%;
+  }
+  .offset-md-6 {
+    margin-left: 50%;
+  }
+  .offset-md-7 {
+    margin-left: 58.33333333%;
+  }
+  .offset-md-8 {
+    margin-left: 66.66666667%;
+  }
+  .offset-md-9 {
+    margin-left: 75%;
+  }
+  .offset-md-10 {
+    margin-left: 83.33333333%;
+  }
+  .offset-md-11 {
+    margin-left: 91.66666667%;
+  }
+  .g-md-0,
+  .gx-md-0 {
+    --bs-gutter-x: 0;
+  }
+  .g-md-0,
+  .gy-md-0 {
+    --bs-gutter-y: 0;
+  }
+  .g-md-1,
+  .gx-md-1 {
+    --bs-gutter-x: 0.25rem;
+  }
+  .g-md-1,
+  .gy-md-1 {
+    --bs-gutter-y: 0.25rem;
+  }
+  .g-md-2,
+  .gx-md-2 {
+    --bs-gutter-x: 0.5rem;
+  }
+  .g-md-2,
+  .gy-md-2 {
+    --bs-gutter-y: 0.5rem;
+  }
+  .g-md-3,
+  .gx-md-3 {
+    --bs-gutter-x: 1rem;
+  }
+  .g-md-3,
+  .gy-md-3 {
+    --bs-gutter-y: 1rem;
+  }
+  .g-md-4,
+  .gx-md-4 {
+    --bs-gutter-x: 1.5rem;
+  }
+  .g-md-4,
+  .gy-md-4 {
+    --bs-gutter-y: 1.5rem;
+  }
+  .g-md-5,
+  .gx-md-5 {
+    --bs-gutter-x: 3rem;
+  }
+  .g-md-5,
+  .gy-md-5 {
+    --bs-gutter-y: 3rem;
+  }
+}
+@media (min-width: 992px) {
+  .col-lg {
+    flex: 1 0 0%;
+  }
+  .row-cols-lg-auto > * {
+    flex: 0 0 auto;
+    width: auto;
+  }
+  .row-cols-lg-1 > * {
+    flex: 0 0 auto;
+    width: 100%;
+  }
+  .row-cols-lg-2 > * {
+    flex: 0 0 auto;
+    width: 50%;
+  }
+  .row-cols-lg-3 > * {
+    flex: 0 0 auto;
+    width: 33.33333333%;
+  }
+  .row-cols-lg-4 > * {
+    flex: 0 0 auto;
+    width: 25%;
+  }
+  .row-cols-lg-5 > * {
+    flex: 0 0 auto;
+    width: 20%;
+  }
+  .row-cols-lg-6 > * {
+    flex: 0 0 auto;
+    width: 16.66666667%;
+  }
+  .col-lg-auto {
+    flex: 0 0 auto;
+    width: auto;
+  }
+  .col-lg-1 {
+    flex: 0 0 auto;
+    width: 8.33333333%;
+  }
+  .col-lg-2 {
+    flex: 0 0 auto;
+    width: 16.66666667%;
+  }
+  .col-lg-3 {
+    flex: 0 0 auto;
+    width: 25%;
+  }
+  .col-lg-4 {
+    flex: 0 0 auto;
+    width: 33.33333333%;
+  }
+  .col-lg-5 {
+    flex: 0 0 auto;
+    width: 41.66666667%;
+  }
+  .col-lg-6 {
+    flex: 0 0 auto;
+    width: 50%;
+  }
+  .col-lg-7 {
+    flex: 0 0 auto;
+    width: 58.33333333%;
+  }
+  .col-lg-8 {
+    flex: 0 0 auto;
+    width: 66.66666667%;
+  }
+  .col-lg-9 {
+    flex: 0 0 auto;
+    width: 75%;
+  }
+  .col-lg-10 {
+    flex: 0 0 auto;
+    width: 83.33333333%;
+  }
+  .col-lg-11 {
+    flex: 0 0 auto;
+    width: 91.66666667%;
+  }
+  .col-lg-12 {
+    flex: 0 0 auto;
+    width: 100%;
+  }
+  .offset-lg-0 {
+    margin-left: 0;
+  }
+  .offset-lg-1 {
+    margin-left: 8.33333333%;
+  }
+  .offset-lg-2 {
+    margin-left: 16.66666667%;
+  }
+  .offset-lg-3 {
+    margin-left: 25%;
+  }
+  .offset-lg-4 {
+    margin-left: 33.33333333%;
+  }
+  .offset-lg-5 {
+    margin-left: 41.66666667%;
+  }
+  .offset-lg-6 {
+    margin-left: 50%;
+  }
+  .offset-lg-7 {
+    margin-left: 58.33333333%;
+  }
+  .offset-lg-8 {
+    margin-left: 66.66666667%;
+  }
+  .offset-lg-9 {
+    margin-left: 75%;
+  }
+  .offset-lg-10 {
+    margin-left: 83.33333333%;
+  }
+  .offset-lg-11 {
+    margin-left: 91.66666667%;
+  }
+  .g-lg-0,
+  .gx-lg-0 {
+    --bs-gutter-x: 0;
+  }
+  .g-lg-0,
+  .gy-lg-0 {
+    --bs-gutter-y: 0;
+  }
+  .g-lg-1,
+  .gx-lg-1 {
+    --bs-gutter-x: 0.25rem;
+  }
+  .g-lg-1,
+  .gy-lg-1 {
+    --bs-gutter-y: 0.25rem;
+  }
+  .g-lg-2,
+  .gx-lg-2 {
+    --bs-gutter-x: 0.5rem;
+  }
+  .g-lg-2,
+  .gy-lg-2 {
+    --bs-gutter-y: 0.5rem;
+  }
+  .g-lg-3,
+  .gx-lg-3 {
+    --bs-gutter-x: 1rem;
+  }
+  .g-lg-3,
+  .gy-lg-3 {
+    --bs-gutter-y: 1rem;
+  }
+  .g-lg-4,
+  .gx-lg-4 {
+    --bs-gutter-x: 1.5rem;
+  }
+  .g-lg-4,
+  .gy-lg-4 {
+    --bs-gutter-y: 1.5rem;
+  }
+  .g-lg-5,
+  .gx-lg-5 {
+    --bs-gutter-x: 3rem;
+  }
+  .g-lg-5,
+  .gy-lg-5 {
+    --bs-gutter-y: 3rem;
+  }
+}
+@media (min-width: 1200px) {
+  .col-xl {
+    flex: 1 0 0%;
+  }
+  .row-cols-xl-auto > * {
+    flex: 0 0 auto;
+    width: auto;
+  }
+  .row-cols-xl-1 > * {
+    flex: 0 0 auto;
+    width: 100%;
+  }
+  .row-cols-xl-2 > * {
+    flex: 0 0 auto;
+    width: 50%;
+  }
+  .row-cols-xl-3 > * {
+    flex: 0 0 auto;
+    width: 33.33333333%;
+  }
+  .row-cols-xl-4 > * {
+    flex: 0 0 auto;
+    width: 25%;
+  }
+  .row-cols-xl-5 > * {
+    flex: 0 0 auto;
+    width: 20%;
+  }
+  .row-cols-xl-6 > * {
+    flex: 0 0 auto;
+    width: 16.66666667%;
+  }
+  .col-xl-auto {
+    flex: 0 0 auto;
+    width: auto;
+  }
+  .col-xl-1 {
+    flex: 0 0 auto;
+    width: 8.33333333%;
+  }
+  .col-xl-2 {
+    flex: 0 0 auto;
+    width: 16.66666667%;
+  }
+  .col-xl-3 {
+    flex: 0 0 auto;
+    width: 25%;
+  }
+  .col-xl-4 {
+    flex: 0 0 auto;
+    width: 33.33333333%;
+  }
+  .col-xl-5 {
+    flex: 0 0 auto;
+    width: 41.66666667%;
+  }
+  .col-xl-6 {
+    flex: 0 0 auto;
+    width: 50%;
+  }
+  .col-xl-7 {
+    flex: 0 0 auto;
+    width: 58.33333333%;
+  }
+  .col-xl-8 {
+    flex: 0 0 auto;
+    width: 66.66666667%;
+  }
+  .col-xl-9 {
+    flex: 0 0 auto;
+    width: 75%;
+  }
+  .col-xl-10 {
+    flex: 0 0 auto;
+    width: 83.33333333%;
+  }
+  .col-xl-11 {
+    flex: 0 0 auto;
+    width: 91.66666667%;
+  }
+  .col-xl-12 {
+    flex: 0 0 auto;
+    width: 100%;
+  }
+  .offset-xl-0 {
+    margin-left: 0;
+  }
+  .offset-xl-1 {
+    margin-left: 8.33333333%;
+  }
+  .offset-xl-2 {
+    margin-left: 16.66666667%;
+  }
+  .offset-xl-3 {
+    margin-left: 25%;
+  }
+  .offset-xl-4 {
+    margin-left: 33.33333333%;
+  }
+  .offset-xl-5 {
+    margin-left: 41.66666667%;
+  }
+  .offset-xl-6 {
+    margin-left: 50%;
+  }
+  .offset-xl-7 {
+    margin-left: 58.33333333%;
+  }
+  .offset-xl-8 {
+    margin-left: 66.66666667%;
+  }
+  .offset-xl-9 {
+    margin-left: 75%;
+  }
+  .offset-xl-10 {
+    margin-left: 83.33333333%;
+  }
+  .offset-xl-11 {
+    margin-left: 91.66666667%;
+  }
+  .g-xl-0,
+  .gx-xl-0 {
+    --bs-gutter-x: 0;
+  }
+  .g-xl-0,
+  .gy-xl-0 {
+    --bs-gutter-y: 0;
+  }
+  .g-xl-1,
+  .gx-xl-1 {
+    --bs-gutter-x: 0.25rem;
+  }
+  .g-xl-1,
+  .gy-xl-1 {
+    --bs-gutter-y: 0.25rem;
+  }
+  .g-xl-2,
+  .gx-xl-2 {
+    --bs-gutter-x: 0.5rem;
+  }
+  .g-xl-2,
+  .gy-xl-2 {
+    --bs-gutter-y: 0.5rem;
+  }
+  .g-xl-3,
+  .gx-xl-3 {
+    --bs-gutter-x: 1rem;
+  }
+  .g-xl-3,
+  .gy-xl-3 {
+    --bs-gutter-y: 1rem;
+  }
+  .g-xl-4,
+  .gx-xl-4 {
+    --bs-gutter-x: 1.5rem;
+  }
+  .g-xl-4,
+  .gy-xl-4 {
+    --bs-gutter-y: 1.5rem;
+  }
+  .g-xl-5,
+  .gx-xl-5 {
+    --bs-gutter-x: 3rem;
+  }
+  .g-xl-5,
+  .gy-xl-5 {
+    --bs-gutter-y: 3rem;
+  }
+}
+@media (min-width: 1400px) {
+  .col-xxl {
+    flex: 1 0 0%;
+  }
+  .row-cols-xxl-auto > * {
+    flex: 0 0 auto;
+    width: auto;
+  }
+  .row-cols-xxl-1 > * {
+    flex: 0 0 auto;
+    width: 100%;
+  }
+  .row-cols-xxl-2 > * {
+    flex: 0 0 auto;
+    width: 50%;
+  }
+  .row-cols-xxl-3 > * {
+    flex: 0 0 auto;
+    width: 33.33333333%;
+  }
+  .row-cols-xxl-4 > * {
+    flex: 0 0 auto;
+    width: 25%;
+  }
+  .row-cols-xxl-5 > * {
+    flex: 0 0 auto;
+    width: 20%;
+  }
+  .row-cols-xxl-6 > * {
+    flex: 0 0 auto;
+    width: 16.66666667%;
+  }
+  .col-xxl-auto {
+    flex: 0 0 auto;
+    width: auto;
+  }
+  .col-xxl-1 {
+    flex: 0 0 auto;
+    width: 8.33333333%;
+  }
+  .col-xxl-2 {
+    flex: 0 0 auto;
+    width: 16.66666667%;
+  }
+  .col-xxl-3 {
+    flex: 0 0 auto;
+    width: 25%;
+  }
+  .col-xxl-4 {
+    flex: 0 0 auto;
+    width: 33.33333333%;
+  }
+  .col-xxl-5 {
+    flex: 0 0 auto;
+    width: 41.66666667%;
+  }
+  .col-xxl-6 {
+    flex: 0 0 auto;
+    width: 50%;
+  }
+  .col-xxl-7 {
+    flex: 0 0 auto;
+    width: 58.33333333%;
+  }
+  .col-xxl-8 {
+    flex: 0 0 auto;
+    width: 66.66666667%;
+  }
+  .col-xxl-9 {
+    flex: 0 0 auto;
+    width: 75%;
+  }
+  .col-xxl-10 {
+    flex: 0 0 auto;
+    width: 83.33333333%;
+  }
+  .col-xxl-11 {
+    flex: 0 0 auto;
+    width: 91.66666667%;
+  }
+  .col-xxl-12 {
+    flex: 0 0 auto;
+    width: 100%;
+  }
+  .offset-xxl-0 {
+    margin-left: 0;
+  }
+  .offset-xxl-1 {
+    margin-left: 8.33333333%;
+  }
+  .offset-xxl-2 {
+    margin-left: 16.66666667%;
+  }
+  .offset-xxl-3 {
+    margin-left: 25%;
+  }
+  .offset-xxl-4 {
+    margin-left: 33.33333333%;
+  }
+  .offset-xxl-5 {
+    margin-left: 41.66666667%;
+  }
+  .offset-xxl-6 {
+    margin-left: 50%;
+  }
+  .offset-xxl-7 {
+    margin-left: 58.33333333%;
+  }
+  .offset-xxl-8 {
+    margin-left: 66.66666667%;
+  }
+  .offset-xxl-9 {
+    margin-left: 75%;
+  }
+  .offset-xxl-10 {
+    margin-left: 83.33333333%;
+  }
+  .offset-xxl-11 {
+    margin-left: 91.66666667%;
+  }
+  .g-xxl-0,
+  .gx-xxl-0 {
+    --bs-gutter-x: 0;
+  }
+  .g-xxl-0,
+  .gy-xxl-0 {
+    --bs-gutter-y: 0;
+  }
+  .g-xxl-1,
+  .gx-xxl-1 {
+    --bs-gutter-x: 0.25rem;
+  }
+  .g-xxl-1,
+  .gy-xxl-1 {
+    --bs-gutter-y: 0.25rem;
+  }
+  .g-xxl-2,
+  .gx-xxl-2 {
+    --bs-gutter-x: 0.5rem;
+  }
+  .g-xxl-2,
+  .gy-xxl-2 {
+    --bs-gutter-y: 0.5rem;
+  }
+  .g-xxl-3,
+  .gx-xxl-3 {
+    --bs-gutter-x: 1rem;
+  }
+  .g-xxl-3,
+  .gy-xxl-3 {
+    --bs-gutter-y: 1rem;
+  }
+  .g-xxl-4,
+  .gx-xxl-4 {
+    --bs-gutter-x: 1.5rem;
+  }
+  .g-xxl-4,
+  .gy-xxl-4 {
+    --bs-gutter-y: 1.5rem;
+  }
+  .g-xxl-5,
+  .gx-xxl-5 {
+    --bs-gutter-x: 3rem;
+  }
+  .g-xxl-5,
+  .gy-xxl-5 {
+    --bs-gutter-y: 3rem;
+  }
+}
+.table {
+  --bs-table-color-type: initial;
+  --bs-table-bg-type: initial;
+  --bs-table-color-state: initial;
+  --bs-table-bg-state: initial;
+  --bs-table-color: var(--bs-emphasis-color);
+  --bs-table-bg: var(--bs-body-bg);
+  --bs-table-border-color: var(--bs-border-color);
+  --bs-table-accent-bg: transparent;
+  --bs-table-striped-color: var(--bs-emphasis-color);
+  --bs-table-striped-bg: rgba(var(--bs-emphasis-color-rgb), 0.05);
+  --bs-table-active-color: var(--bs-emphasis-color);
+  --bs-table-active-bg: rgba(var(--bs-emphasis-color-rgb), 0.1);
+  --bs-table-hover-color: var(--bs-emphasis-color);
+  --bs-table-hover-bg: rgba(var(--bs-emphasis-color-rgb), 0.075);
+  width: 100%;
+  margin-bottom: 1rem;
+  vertical-align: top;
+  border-color: var(--bs-table-border-color);
+}
+.table > :not(caption) > * > * {
+  padding: 0.5rem 0.5rem;
+  color: var(--bs-table-color-state, var(--bs-table-color-type, var(--bs-table-color)));
+  background-color: var(--bs-table-bg);
+  border-bottom-width: var(--bs-border-width);
+  box-shadow: inset 0 0 0 9999px var(--bs-table-bg-state, var(--bs-table-bg-type, var(--bs-table-accent-bg)));
+}
+.table > tbody {
+  vertical-align: inherit;
+}
+.table > thead {
+  vertical-align: bottom;
+}
+
+.table-group-divider {
+  border-top: calc(var(--bs-border-width) * 2) solid currentcolor;
+}
+
+.caption-top {
+  caption-side: top;
+}
+
+.table-sm > :not(caption) > * > * {
+  padding: 0.25rem 0.25rem;
+}
+
+.table-bordered > :not(caption) > * {
+  border-width: var(--bs-border-width) 0;
+}
+.table-bordered > :not(caption) > * > * {
+  border-width: 0 var(--bs-border-width);
+}
+
+.table-borderless > :not(caption) > * > * {
+  border-bottom-width: 0;
+}
+.table-borderless > :not(:first-child) {
+  border-top-width: 0;
+}
+
+.table-striped > tbody > tr:nth-of-type(odd) > * {
+  --bs-table-color-type: var(--bs-table-striped-color);
+  --bs-table-bg-type: var(--bs-table-striped-bg);
+}
+
+.table-striped-columns > :not(caption) > tr > :nth-child(even) {
+  --bs-table-color-type: var(--bs-table-striped-color);
+  --bs-table-bg-type: var(--bs-table-striped-bg);
+}
+
+.table-active {
+  --bs-table-color-state: var(--bs-table-active-color);
+  --bs-table-bg-state: var(--bs-table-active-bg);
+}
+
+.table-hover > tbody > tr:hover > * {
+  --bs-table-color-state: var(--bs-table-hover-color);
+  --bs-table-bg-state: var(--bs-table-hover-bg);
+}
+
+.table-primary {
+  --bs-table-color: #000;
+  --bs-table-bg: #cfe2ff;
+  --bs-table-border-color: #a6b5cc;
+  --bs-table-striped-bg: #c5d7f2;
+  --bs-table-striped-color: #000;
+  --bs-table-active-bg: #bacbe6;
+  --bs-table-active-color: #000;
+  --bs-table-hover-bg: #bfd1ec;
+  --bs-table-hover-color: #000;
+  color: var(--bs-table-color);
+  border-color: var(--bs-table-border-color);
+}
+
+.table-secondary {
+  --bs-table-color: #000;
+  --bs-table-bg: #e2e3e5;
+  --bs-table-border-color: #b5b6b7;
+  --bs-table-striped-bg: #d7d8da;
+  --bs-table-striped-color: #000;
+  --bs-table-active-bg: #cbccce;
+  --bs-table-active-color: #000;
+  --bs-table-hover-bg: #d1d2d4;
+  --bs-table-hover-color: #000;
+  color: var(--bs-table-color);
+  border-color: var(--bs-table-border-color);
+}
+
+.table-success {
+  --bs-table-color: #000;
+  --bs-table-bg: #d1e7dd;
+  --bs-table-border-color: #a7b9b1;
+  --bs-table-striped-bg: #c7dbd2;
+  --bs-table-striped-color: #000;
+  --bs-table-active-bg: #bcd0c7;
+  --bs-table-active-color: #000;
+  --bs-table-hover-bg: #c1d6cc;
+  --bs-table-hover-color: #000;
+  color: var(--bs-table-color);
+  border-color: var(--bs-table-border-color);
+}
+
+.table-info {
+  --bs-table-color: #000;
+  --bs-table-bg: #cff4fc;
+  --bs-table-border-color: #a6c3ca;
+  --bs-table-striped-bg: #c5e8ef;
+  --bs-table-striped-color: #000;
+  --bs-table-active-bg: #badce3;
+  --bs-table-active-color: #000;
+  --bs-table-hover-bg: #bfe2e9;
+  --bs-table-hover-color: #000;
+  color: var(--bs-table-color);
+  border-color: var(--bs-table-border-color);
+}
+
+.table-warning {
+  --bs-table-color: #000;
+  --bs-table-bg: #fff3cd;
+  --bs-table-border-color: #ccc2a4;
+  --bs-table-striped-bg: #f2e7c3;
+  --bs-table-striped-color: #000;
+  --bs-table-active-bg: #e6dbb9;
+  --bs-table-active-color: #000;
+  --bs-table-hover-bg: #ece1be;
+  --bs-table-hover-color: #000;
+  color: var(--bs-table-color);
+  border-color: var(--bs-table-border-color);
+}
+
+.table-danger {
+  --bs-table-color: #000;
+  --bs-table-bg: #f8d7da;
+  --bs-table-border-color: #c6acae;
+  --bs-table-striped-bg: #eccccf;
+  --bs-table-striped-color: #000;
+  --bs-table-active-bg: #dfc2c4;
+  --bs-table-active-color: #000;
+  --bs-table-hover-bg: #e5c7ca;
+  --bs-table-hover-color: #000;
+  color: var(--bs-table-color);
+  border-color: var(--bs-table-border-color);
+}
+
+.table-light {
+  --bs-table-color: #000;
+  --bs-table-bg: #f8f9fa;
+  --bs-table-border-color: #c6c7c8;
+  --bs-table-striped-bg: #ecedee;
+  --bs-table-striped-color: #000;
+  --bs-table-active-bg: #dfe0e1;
+  --bs-table-active-color: #000;
+  --bs-table-hover-bg: #e5e6e7;
+  --bs-table-hover-color: #000;
+  color: var(--bs-table-color);
+  border-color: var(--bs-table-border-color);
+}
+
+.table-dark {
+  --bs-table-color: #fff;
+  --bs-table-bg: #212529;
+  --bs-table-border-color: #4d5154;
+  --bs-table-striped-bg: #2c3034;
+  --bs-table-striped-color: #fff;
+  --bs-table-active-bg: #373b3e;
+  --bs-table-active-color: #fff;
+  --bs-table-hover-bg: #323539;
+  --bs-table-hover-color: #fff;
+  color: var(--bs-table-color);
+  border-color: var(--bs-table-border-color);
+}
+
+.table-responsive {
+  overflow-x: auto;
+  -webkit-overflow-scrolling: touch;
+}
+
+@media (max-width: 575.98px) {
+  .table-responsive-sm {
+    overflow-x: auto;
+    -webkit-overflow-scrolling: touch;
+  }
+}
+@media (max-width: 767.98px) {
+  .table-responsive-md {
+    overflow-x: auto;
+    -webkit-overflow-scrolling: touch;
+  }
+}
+@media (max-width: 991.98px) {
+  .table-responsive-lg {
+    overflow-x: auto;
+    -webkit-overflow-scrolling: touch;
+  }
+}
+@media (max-width: 1199.98px) {
+  .table-responsive-xl {
+    overflow-x: auto;
+    -webkit-overflow-scrolling: touch;
+  }
+}
+@media (max-width: 1399.98px) {
+  .table-responsive-xxl {
+    overflow-x: auto;
+    -webkit-overflow-scrolling: touch;
+  }
+}
+.form-label {
+  margin-bottom: 0.5rem;
+}
+
+.col-form-label {
+  padding-top: calc(0.375rem + var(--bs-border-width));
+  padding-bottom: calc(0.375rem + var(--bs-border-width));
+  margin-bottom: 0;
+  font-size: inherit;
+  line-height: 1.5;
+}
+
+.col-form-label-lg {
+  padding-top: calc(0.5rem + var(--bs-border-width));
+  padding-bottom: calc(0.5rem + var(--bs-border-width));
+  font-size: 1.25rem;
+}
+
+.col-form-label-sm {
+  padding-top: calc(0.25rem + var(--bs-border-width));
+  padding-bottom: calc(0.25rem + var(--bs-border-width));
+  font-size: 0.875rem;
+}
+
+.form-text {
+  margin-top: 0.25rem;
+  font-size: 0.875em;
+  color: var(--bs-secondary-color);
+}
+
+.form-control {
+  display: block;
+  width: 100%;
+  padding: 0.375rem 0.75rem;
+  font-size: 1rem;
+  font-weight: 400;
+  line-height: 1.5;
+  color: var(--bs-body-color);
+  -webkit-appearance: none;
+  -moz-appearance: none;
+  appearance: none;
+  background-color: var(--bs-body-bg);
+  background-clip: padding-box;
+  border: var(--bs-border-width) solid var(--bs-border-color);
+  border-radius: var(--bs-border-radius);
+  transition: border-color 0.15s ease-in-out, box-shadow 0.15s ease-in-out;
+}
+@media (prefers-reduced-motion: reduce) {
+  .form-control {
+    transition: none;
+  }
+}
+.form-control[type=file] {
+  overflow: hidden;
+}
+.form-control[type=file]:not(:disabled):not([readonly]) {
+  cursor: pointer;
+}
+.form-control:focus {
+  color: var(--bs-body-color);
+  background-color: var(--bs-body-bg);
+  border-color: #86b7fe;
+  outline: 0;
+  box-shadow: 0 0 0 0.25rem rgba(13, 110, 253, 0.25);
+}
+.form-control::-webkit-date-and-time-value {
+  min-width: 85px;
+  height: 1.5em;
+  margin: 0;
+}
+.form-control::-webkit-datetime-edit {
+  display: block;
+  padding: 0;
+}
+.form-control::-moz-placeholder {
+  color: var(--bs-secondary-color);
+  opacity: 1;
+}
+.form-control::placeholder {
+  color: var(--bs-secondary-color);
+  opacity: 1;
+}
+.form-control:disabled {
+  background-color: var(--bs-secondary-bg);
+  opacity: 1;
+}
+.form-control::-webkit-file-upload-button {
+  padding: 0.375rem 0.75rem;
+  margin: -0.375rem -0.75rem;
+  -webkit-margin-end: 0.75rem;
+  margin-inline-end: 0.75rem;
+  color: var(--bs-body-color);
+  background-color: var(--bs-tertiary-bg);
+  pointer-events: none;
+  border-color: inherit;
+  border-style: solid;
+  border-width: 0;
+  border-inline-end-width: var(--bs-border-width);
+  border-radius: 0;
+  -webkit-transition: color 0.15s ease-in-out, background-color 0.15s ease-in-out, border-color 0.15s ease-in-out, box-shadow 0.15s ease-in-out;
+  transition: color 0.15s ease-in-out, background-color 0.15s ease-in-out, border-color 0.15s ease-in-out, box-shadow 0.15s ease-in-out;
+}
+.form-control::file-selector-button {
+  padding: 0.375rem 0.75rem;
+  margin: -0.375rem -0.75rem;
+  -webkit-margin-end: 0.75rem;
+  margin-inline-end: 0.75rem;
+  color: var(--bs-body-color);
+  background-color: var(--bs-tertiary-bg);
+  pointer-events: none;
+  border-color: inherit;
+  border-style: solid;
+  border-width: 0;
+  border-inline-end-width: var(--bs-border-width);
+  border-radius: 0;
+  transition: color 0.15s ease-in-out, background-color 0.15s ease-in-out, border-color 0.15s ease-in-out, box-shadow 0.15s ease-in-out;
+}
+@media (prefers-reduced-motion: reduce) {
+  .form-control::-webkit-file-upload-button {
+    -webkit-transition: none;
+    transition: none;
+  }
+  .form-control::file-selector-button {
+    transition: none;
+  }
+}
+.form-control:hover:not(:disabled):not([readonly])::-webkit-file-upload-button {
+  background-color: var(--bs-secondary-bg);
+}
+.form-control:hover:not(:disabled):not([readonly])::file-selector-button {
+  background-color: var(--bs-secondary-bg);
+}
+
+.form-control-plaintext {
+  display: block;
+  width: 100%;
+  padding: 0.375rem 0;
+  margin-bottom: 0;
+  line-height: 1.5;
+  color: var(--bs-body-color);
+  background-color: transparent;
+  border: solid transparent;
+  border-width: var(--bs-border-width) 0;
+}
+.form-control-plaintext:focus {
+  outline: 0;
+}
+.form-control-plaintext.form-control-sm, .form-control-plaintext.form-control-lg {
+  padding-right: 0;
+  padding-left: 0;
+}
+
+.form-control-sm {
+  min-height: calc(1.5em + 0.5rem + calc(var(--bs-border-width) * 2));
+  padding: 0.25rem 0.5rem;
+  font-size: 0.875rem;
+  border-radius: var(--bs-border-radius-sm);
+}
+.form-control-sm::-webkit-file-upload-button {
+  padding: 0.25rem 0.5rem;
+  margin: -0.25rem -0.5rem;
+  -webkit-margin-end: 0.5rem;
+  margin-inline-end: 0.5rem;
+}
+.form-control-sm::file-selector-button {
+  padding: 0.25rem 0.5rem;
+  margin: -0.25rem -0.5rem;
+  -webkit-margin-end: 0.5rem;
+  margin-inline-end: 0.5rem;
+}
+
+.form-control-lg {
+  min-height: calc(1.5em + 1rem + calc(var(--bs-border-width) * 2));
+  padding: 0.5rem 1rem;
+  font-size: 1.25rem;
+  border-radius: var(--bs-border-radius-lg);
+}
+.form-control-lg::-webkit-file-upload-button {
+  padding: 0.5rem 1rem;
+  margin: -0.5rem -1rem;
+  -webkit-margin-end: 1rem;
+  margin-inline-end: 1rem;
+}
+.form-control-lg::file-selector-button {
+  padding: 0.5rem 1rem;
+  margin: -0.5rem -1rem;
+  -webkit-margin-end: 1rem;
+  margin-inline-end: 1rem;
+}
+
+textarea.form-control {
+  min-height: calc(1.5em + 0.75rem + calc(var(--bs-border-width) * 2));
+}
+textarea.form-control-sm {
+  min-height: calc(1.5em + 0.5rem + calc(var(--bs-border-width) * 2));
+}
+textarea.form-control-lg {
+  min-height: calc(1.5em + 1rem + calc(var(--bs-border-width) * 2));
+}
+
+.form-control-color {
+  width: 3rem;
+  height: calc(1.5em + 0.75rem + calc(var(--bs-border-width) * 2));
+  padding: 0.375rem;
+}
+.form-control-color:not(:disabled):not([readonly]) {
+  cursor: pointer;
+}
+.form-control-color::-moz-color-swatch {
+  border: 0 !important;
+  border-radius: var(--bs-border-radius);
+}
+.form-control-color::-webkit-color-swatch {
+  border: 0 !important;
+  border-radius: var(--bs-border-radius);
+}
+.form-control-color.form-control-sm {
+  height: calc(1.5em + 0.5rem + calc(var(--bs-border-width) * 2));
+}
+.form-control-color.form-control-lg {
+  height: calc(1.5em + 1rem + calc(var(--bs-border-width) * 2));
+}
+
+.form-select {
+  --bs-form-select-bg-img: url("data:image/svg+xml,%3csvg xmlns='http://www.w3.org/2000/svg' viewBox='0 0 16 16'%3e%3cpath fill='none' stroke='%23343a40' stroke-linecap='round' stroke-linejoin='round' stroke-width='2' d='m2 5 6 6 6-6'/%3e%3c/svg%3e");
+  display: block;
+  width: 100%;
+  padding: 0.375rem 2.25rem 0.375rem 0.75rem;
+  font-size: 1rem;
+  font-weight: 400;
+  line-height: 1.5;
+  color: var(--bs-body-color);
+  -webkit-appearance: none;
+  -moz-appearance: none;
+  appearance: none;
+  background-color: var(--bs-body-bg);
+  background-image: var(--bs-form-select-bg-img), var(--bs-form-select-bg-icon, none);
+  background-repeat: no-repeat;
+  background-position: right 0.75rem center;
+  background-size: 16px 12px;
+  border: var(--bs-border-width) solid var(--bs-border-color);
+  border-radius: var(--bs-border-radius);
+  transition: border-color 0.15s ease-in-out, box-shadow 0.15s ease-in-out;
+}
+@media (prefers-reduced-motion: reduce) {
+  .form-select {
+    transition: none;
+  }
+}
+.form-select:focus {
+  border-color: #86b7fe;
+  outline: 0;
+  box-shadow: 0 0 0 0.25rem rgba(13, 110, 253, 0.25);
+}
+.form-select[multiple], .form-select[size]:not([size="1"]) {
+  padding-right: 0.75rem;
+  background-image: none;
+}
+.form-select:disabled {
+  background-color: var(--bs-secondary-bg);
+}
+.form-select:-moz-focusring {
+  color: transparent;
+  text-shadow: 0 0 0 var(--bs-body-color);
+}
+
+.form-select-sm {
+  padding-top: 0.25rem;
+  padding-bottom: 0.25rem;
+  padding-left: 0.5rem;
+  font-size: 0.875rem;
+  border-radius: var(--bs-border-radius-sm);
+}
+
+.form-select-lg {
+  padding-top: 0.5rem;
+  padding-bottom: 0.5rem;
+  padding-left: 1rem;
+  font-size: 1.25rem;
+  border-radius: var(--bs-border-radius-lg);
+}
+
+[data-bs-theme=dark] .form-select {
+  --bs-form-select-bg-img: url("data:image/svg+xml,%3csvg xmlns='http://www.w3.org/2000/svg' viewBox='0 0 16 16'%3e%3cpath fill='none' stroke='%23dee2e6' stroke-linecap='round' stroke-linejoin='round' stroke-width='2' d='m2 5 6 6 6-6'/%3e%3c/svg%3e");
+}
+
+.form-check {
+  display: block;
+  min-height: 1.5rem;
+  padding-left: 1.5em;
+  margin-bottom: 0.125rem;
+}
+.form-check .form-check-input {
+  float: left;
+  margin-left: -1.5em;
+}
+
+.form-check-reverse {
+  padding-right: 1.5em;
+  padding-left: 0;
+  text-align: right;
+}
+.form-check-reverse .form-check-input {
+  float: right;
+  margin-right: -1.5em;
+  margin-left: 0;
+}
+
+.form-check-input {
+  --bs-form-check-bg: var(--bs-body-bg);
+  flex-shrink: 0;
+  width: 1em;
+  height: 1em;
+  margin-top: 0.25em;
+  vertical-align: top;
+  -webkit-appearance: none;
+  -moz-appearance: none;
+  appearance: none;
+  background-color: var(--bs-form-check-bg);
+  background-image: var(--bs-form-check-bg-image);
+  background-repeat: no-repeat;
+  background-position: center;
+  background-size: contain;
+  border: var(--bs-border-width) solid var(--bs-border-color);
+  -webkit-print-color-adjust: exact;
+  color-adjust: exact;
+  print-color-adjust: exact;
+}
+.form-check-input[type=checkbox] {
+  border-radius: 0.25em;
+}
+.form-check-input[type=radio] {
+  border-radius: 50%;
+}
+.form-check-input:active {
+  filter: brightness(90%);
+}
+.form-check-input:focus {
+  border-color: #86b7fe;
+  outline: 0;
+  box-shadow: 0 0 0 0.25rem rgba(13, 110, 253, 0.25);
+}
+.form-check-input:checked {
+  background-color: #0d6efd;
+  border-color: #0d6efd;
+}
+.form-check-input:checked[type=checkbox] {
+  --bs-form-check-bg-image: url("data:image/svg+xml,%3csvg xmlns='http://www.w3.org/2000/svg' viewBox='0 0 20 20'%3e%3cpath fill='none' stroke='%23fff' stroke-linecap='round' stroke-linejoin='round' stroke-width='3' d='m6 10 3 3 6-6'/%3e%3c/svg%3e");
+}
+.form-check-input:checked[type=radio] {
+  --bs-form-check-bg-image: url("data:image/svg+xml,%3csvg xmlns='http://www.w3.org/2000/svg' viewBox='-4 -4 8 8'%3e%3ccircle r='2' fill='%23fff'/%3e%3c/svg%3e");
+}
+.form-check-input[type=checkbox]:indeterminate {
+  background-color: #0d6efd;
+  border-color: #0d6efd;
+  --bs-form-check-bg-image: url("data:image/svg+xml,%3csvg xmlns='http://www.w3.org/2000/svg' viewBox='0 0 20 20'%3e%3cpath fill='none' stroke='%23fff' stroke-linecap='round' stroke-linejoin='round' stroke-width='3' d='M6 10h8'/%3e%3c/svg%3e");
+}
+.form-check-input:disabled {
+  pointer-events: none;
+  filter: none;
+  opacity: 0.5;
+}
+.form-check-input[disabled] ~ .form-check-label, .form-check-input:disabled ~ .form-check-label {
+  cursor: default;
+  opacity: 0.5;
+}
+
+.form-switch {
+  padding-left: 2.5em;
+}
+.form-switch .form-check-input {
+  --bs-form-switch-bg: url("data:image/svg+xml,%3csvg xmlns='http://www.w3.org/2000/svg' viewBox='-4 -4 8 8'%3e%3ccircle r='3' fill='rgba%280, 0, 0, 0.25%29'/%3e%3c/svg%3e");
+  width: 2em;
+  margin-left: -2.5em;
+  background-image: var(--bs-form-switch-bg);
+  background-position: left center;
+  border-radius: 2em;
+  transition: background-position 0.15s ease-in-out;
+}
+@media (prefers-reduced-motion: reduce) {
+  .form-switch .form-check-input {
+    transition: none;
+  }
+}
+.form-switch .form-check-input:focus {
+  --bs-form-switch-bg: url("data:image/svg+xml,%3csvg xmlns='http://www.w3.org/2000/svg' viewBox='-4 -4 8 8'%3e%3ccircle r='3' fill='%2386b7fe'/%3e%3c/svg%3e");
+}
+.form-switch .form-check-input:checked {
+  background-position: right center;
+  --bs-form-switch-bg: url("data:image/svg+xml,%3csvg xmlns='http://www.w3.org/2000/svg' viewBox='-4 -4 8 8'%3e%3ccircle r='3' fill='%23fff'/%3e%3c/svg%3e");
+}
+.form-switch.form-check-reverse {
+  padding-right: 2.5em;
+  padding-left: 0;
+}
+.form-switch.form-check-reverse .form-check-input {
+  margin-right: -2.5em;
+  margin-left: 0;
+}
+
+.form-check-inline {
+  display: inline-block;
+  margin-right: 1rem;
+}
+
+.btn-check {
+  position: absolute;
+  clip: rect(0, 0, 0, 0);
+  pointer-events: none;
+}
+.btn-check[disabled] + .btn, .btn-check:disabled + .btn {
+  pointer-events: none;
+  filter: none;
+  opacity: 0.65;
+}
+
+[data-bs-theme=dark] .form-switch .form-check-input:not(:checked):not(:focus) {
+  --bs-form-switch-bg: url("data:image/svg+xml,%3csvg xmlns='http://www.w3.org/2000/svg' viewBox='-4 -4 8 8'%3e%3ccircle r='3' fill='rgba%28255, 255, 255, 0.25%29'/%3e%3c/svg%3e");
+}
+
+.form-range {
+  width: 100%;
+  height: 1.5rem;
+  padding: 0;
+  -webkit-appearance: none;
+  -moz-appearance: none;
+  appearance: none;
+  background-color: transparent;
+}
+.form-range:focus {
+  outline: 0;
+}
+.form-range:focus::-webkit-slider-thumb {
+  box-shadow: 0 0 0 1px #fff, 0 0 0 0.25rem rgba(13, 110, 253, 0.25);
+}
+.form-range:focus::-moz-range-thumb {
+  box-shadow: 0 0 0 1px #fff, 0 0 0 0.25rem rgba(13, 110, 253, 0.25);
+}
+.form-range::-moz-focus-outer {
+  border: 0;
+}
+.form-range::-webkit-slider-thumb {
+  width: 1rem;
+  height: 1rem;
+  margin-top: -0.25rem;
+  -webkit-appearance: none;
+  appearance: none;
+  background-color: #0d6efd;
+  border: 0;
+  border-radius: 1rem;
+  -webkit-transition: background-color 0.15s ease-in-out, border-color 0.15s ease-in-out, box-shadow 0.15s ease-in-out;
+  transition: background-color 0.15s ease-in-out, border-color 0.15s ease-in-out, box-shadow 0.15s ease-in-out;
+}
+@media (prefers-reduced-motion: reduce) {
+  .form-range::-webkit-slider-thumb {
+    -webkit-transition: none;
+    transition: none;
+  }
+}
+.form-range::-webkit-slider-thumb:active {
+  background-color: #b6d4fe;
+}
+.form-range::-webkit-slider-runnable-track {
+  width: 100%;
+  height: 0.5rem;
+  color: transparent;
+  cursor: pointer;
+  background-color: var(--bs-secondary-bg);
+  border-color: transparent;
+  border-radius: 1rem;
+}
+.form-range::-moz-range-thumb {
+  width: 1rem;
+  height: 1rem;
+  -moz-appearance: none;
+  appearance: none;
+  background-color: #0d6efd;
+  border: 0;
+  border-radius: 1rem;
+  -moz-transition: background-color 0.15s ease-in-out, border-color 0.15s ease-in-out, box-shadow 0.15s ease-in-out;
+  transition: background-color 0.15s ease-in-out, border-color 0.15s ease-in-out, box-shadow 0.15s ease-in-out;
+}
+@media (prefers-reduced-motion: reduce) {
+  .form-range::-moz-range-thumb {
+    -moz-transition: none;
+    transition: none;
+  }
+}
+.form-range::-moz-range-thumb:active {
+  background-color: #b6d4fe;
+}
+.form-range::-moz-range-track {
+  width: 100%;
+  height: 0.5rem;
+  color: transparent;
+  cursor: pointer;
+  background-color: var(--bs-secondary-bg);
+  border-color: transparent;
+  border-radius: 1rem;
+}
+.form-range:disabled {
+  pointer-events: none;
+}
+.form-range:disabled::-webkit-slider-thumb {
+  background-color: var(--bs-secondary-color);
+}
+.form-range:disabled::-moz-range-thumb {
+  background-color: var(--bs-secondary-color);
+}
+
+.form-floating {
+  position: relative;
+}
+.form-floating > .form-control,
+.form-floating > .form-control-plaintext,
+.form-floating > .form-select {
+  height: calc(3.5rem + calc(var(--bs-border-width) * 2));
+  min-height: calc(3.5rem + calc(var(--bs-border-width) * 2));
+  line-height: 1.25;
+}
+.form-floating > label {
+  position: absolute;
+  top: 0;
+  left: 0;
+  z-index: 2;
+  height: 100%;
+  padding: 1rem 0.75rem;
+  overflow: hidden;
+  text-align: start;
+  text-overflow: ellipsis;
+  white-space: nowrap;
+  pointer-events: none;
+  border: var(--bs-border-width) solid transparent;
+  transform-origin: 0 0;
+  transition: opacity 0.1s ease-in-out, transform 0.1s ease-in-out;
+}
+@media (prefers-reduced-motion: reduce) {
+  .form-floating > label {
+    transition: none;
+  }
+}
+.form-floating > .form-control,
+.form-floating > .form-control-plaintext {
+  padding: 1rem 0.75rem;
+}
+.form-floating > .form-control::-moz-placeholder, .form-floating > .form-control-plaintext::-moz-placeholder {
+  color: transparent;
+}
+.form-floating > .form-control::placeholder,
+.form-floating > .form-control-plaintext::placeholder {
+  color: transparent;
+}
+.form-floating > .form-control:not(:-moz-placeholder-shown), .form-floating > .form-control-plaintext:not(:-moz-placeholder-shown) {
+  padding-top: 1.625rem;
+  padding-bottom: 0.625rem;
+}
+.form-floating > .form-control:focus, .form-floating > .form-control:not(:placeholder-shown),
+.form-floating > .form-control-plaintext:focus,
+.form-floating > .form-control-plaintext:not(:placeholder-shown) {
+  padding-top: 1.625rem;
+  padding-bottom: 0.625rem;
+}
+.form-floating > .form-control:-webkit-autofill,
+.form-floating > .form-control-plaintext:-webkit-autofill {
+  padding-top: 1.625rem;
+  padding-bottom: 0.625rem;
+}
+.form-floating > .form-select {
+  padding-top: 1.625rem;
+  padding-bottom: 0.625rem;
+}
+.form-floating > .form-control:not(:-moz-placeholder-shown) ~ label {
+  color: rgba(var(--bs-body-color-rgb), 0.65);
+  transform: scale(0.85) translateY(-0.5rem) translateX(0.15rem);
+}
+.form-floating > .form-control:focus ~ label,
+.form-floating > .form-control:not(:placeholder-shown) ~ label,
+.form-floating > .form-control-plaintext ~ label,
+.form-floating > .form-select ~ label {
+  color: rgba(var(--bs-body-color-rgb), 0.65);
+  transform: scale(0.85) translateY(-0.5rem) translateX(0.15rem);
+}
+.form-floating > .form-control:not(:-moz-placeholder-shown) ~ label::after {
+  position: absolute;
+  inset: 1rem 0.375rem;
+  z-index: -1;
+  height: 1.5em;
+  content: "";
+  background-color: var(--bs-body-bg);
+  border-radius: var(--bs-border-radius);
+}
+.form-floating > .form-control:focus ~ label::after,
+.form-floating > .form-control:not(:placeholder-shown) ~ label::after,
+.form-floating > .form-control-plaintext ~ label::after,
+.form-floating > .form-select ~ label::after {
+  position: absolute;
+  inset: 1rem 0.375rem;
+  z-index: -1;
+  height: 1.5em;
+  content: "";
+  background-color: var(--bs-body-bg);
+  border-radius: var(--bs-border-radius);
+}
+.form-floating > .form-control:-webkit-autofill ~ label {
+  color: rgba(var(--bs-body-color-rgb), 0.65);
+  transform: scale(0.85) translateY(-0.5rem) translateX(0.15rem);
+}
+.form-floating > .form-control-plaintext ~ label {
+  border-width: var(--bs-border-width) 0;
+}
+.form-floating > :disabled ~ label,
+.form-floating > .form-control:disabled ~ label {
+  color: #6c757d;
+}
+.form-floating > :disabled ~ label::after,
+.form-floating > .form-control:disabled ~ label::after {
+  background-color: var(--bs-secondary-bg);
+}
+
+.input-group {
+  position: relative;
+  display: flex;
+  flex-wrap: wrap;
+  align-items: stretch;
+  width: 100%;
+}
+.input-group > .form-control,
+.input-group > .form-select,
+.input-group > .form-floating {
+  position: relative;
+  flex: 1 1 auto;
+  width: 1%;
+  min-width: 0;
+}
+.input-group > .form-control:focus,
+.input-group > .form-select:focus,
+.input-group > .form-floating:focus-within {
+  z-index: 5;
+}
+.input-group .btn {
+  position: relative;
+  z-index: 2;
+}
+.input-group .btn:focus {
+  z-index: 5;
+}
+
+.input-group-text {
+  display: flex;
+  align-items: center;
+  padding: 0.375rem 0.75rem;
+  font-size: 1rem;
+  font-weight: 400;
+  line-height: 1.5;
+  color: var(--bs-body-color);
+  text-align: center;
+  white-space: nowrap;
+  background-color: var(--bs-tertiary-bg);
+  border: var(--bs-border-width) solid var(--bs-border-color);
+  border-radius: var(--bs-border-radius);
+}
+
+.input-group-lg > .form-control,
+.input-group-lg > .form-select,
+.input-group-lg > .input-group-text,
+.input-group-lg > .btn {
+  padding: 0.5rem 1rem;
+  font-size: 1.25rem;
+  border-radius: var(--bs-border-radius-lg);
+}
+
+.input-group-sm > .form-control,
+.input-group-sm > .form-select,
+.input-group-sm > .input-group-text,
+.input-group-sm > .btn {
+  padding: 0.25rem 0.5rem;
+  font-size: 0.875rem;
+  border-radius: var(--bs-border-radius-sm);
+}
+
+.input-group-lg > .form-select,
+.input-group-sm > .form-select {
+  padding-right: 3rem;
+}
+
+.input-group:not(.has-validation) > :not(:last-child):not(.dropdown-toggle):not(.dropdown-menu):not(.form-floating),
+.input-group:not(.has-validation) > .dropdown-toggle:nth-last-child(n+3),
+.input-group:not(.has-validation) > .form-floating:not(:last-child) > .form-control,
+.input-group:not(.has-validation) > .form-floating:not(:last-child) > .form-select {
+  border-top-right-radius: 0;
+  border-bottom-right-radius: 0;
+}
+.input-group.has-validation > :nth-last-child(n+3):not(.dropdown-toggle):not(.dropdown-menu):not(.form-floating),
+.input-group.has-validation > .dropdown-toggle:nth-last-child(n+4),
+.input-group.has-validation > .form-floating:nth-last-child(n+3) > .form-control,
+.input-group.has-validation > .form-floating:nth-last-child(n+3) > .form-select {
+  border-top-right-radius: 0;
+  border-bottom-right-radius: 0;
+}
+.input-group > :not(:first-child):not(.dropdown-menu):not(.valid-tooltip):not(.valid-feedback):not(.invalid-tooltip):not(.invalid-feedback) {
+  margin-left: calc(var(--bs-border-width) * -1);
+  border-top-left-radius: 0;
+  border-bottom-left-radius: 0;
+}
+.input-group > .form-floating:not(:first-child) > .form-control,
+.input-group > .form-floating:not(:first-child) > .form-select {
+  border-top-left-radius: 0;
+  border-bottom-left-radius: 0;
+}
+
+.valid-feedback {
+  display: none;
+  width: 100%;
+  margin-top: 0.25rem;
+  font-size: 0.875em;
+  color: var(--bs-form-valid-color);
+}
+
+.valid-tooltip {
+  position: absolute;
+  top: 100%;
+  z-index: 5;
+  display: none;
+  max-width: 100%;
+  padding: 0.25rem 0.5rem;
+  margin-top: 0.1rem;
+  font-size: 0.875rem;
+  color: #fff;
+  background-color: var(--bs-success);
+  border-radius: var(--bs-border-radius);
+}
+
+.was-validated :valid ~ .valid-feedback,
+.was-validated :valid ~ .valid-tooltip,
+.is-valid ~ .valid-feedback,
+.is-valid ~ .valid-tooltip {
+  display: block;
+}
+
+.was-validated .form-control:valid, .form-control.is-valid {
+  border-color: var(--bs-form-valid-border-color);
+  padding-right: calc(1.5em + 0.75rem);
+  background-image: url("data:image/svg+xml,%3csvg xmlns='http://www.w3.org/2000/svg' viewBox='0 0 8 8'%3e%3cpath fill='%23198754' d='M2.3 6.73.6 4.53c-.4-1.04.46-1.4 1.1-.8l1.1 1.4 3.4-3.8c.6-.63 1.6-.27 1.2.7l-4 4.6c-.43.5-.8.4-1.1.1z'/%3e%3c/svg%3e");
+  background-repeat: no-repeat;
+  background-position: right calc(0.375em + 0.1875rem) center;
+  background-size: calc(0.75em + 0.375rem) calc(0.75em + 0.375rem);
+}
+.was-validated .form-control:valid:focus, .form-control.is-valid:focus {
+  border-color: var(--bs-form-valid-border-color);
+  box-shadow: 0 0 0 0.25rem rgba(var(--bs-success-rgb), 0.25);
+}
+
+.was-validated textarea.form-control:valid, textarea.form-control.is-valid {
+  padding-right: calc(1.5em + 0.75rem);
+  background-position: top calc(0.375em + 0.1875rem) right calc(0.375em + 0.1875rem);
+}
+
+.was-validated .form-select:valid, .form-select.is-valid {
+  border-color: var(--bs-form-valid-border-color);
+}
+.was-validated .form-select:valid:not([multiple]):not([size]), .was-validated .form-select:valid:not([multiple])[size="1"], .form-select.is-valid:not([multiple]):not([size]), .form-select.is-valid:not([multiple])[size="1"] {
+  --bs-form-select-bg-icon: url("data:image/svg+xml,%3csvg xmlns='http://www.w3.org/2000/svg' viewBox='0 0 8 8'%3e%3cpath fill='%23198754' d='M2.3 6.73.6 4.53c-.4-1.04.46-1.4 1.1-.8l1.1 1.4 3.4-3.8c.6-.63 1.6-.27 1.2.7l-4 4.6c-.43.5-.8.4-1.1.1z'/%3e%3c/svg%3e");
+  padding-right: 4.125rem;
+  background-position: right 0.75rem center, center right 2.25rem;
+  background-size: 16px 12px, calc(0.75em + 0.375rem) calc(0.75em + 0.375rem);
+}
+.was-validated .form-select:valid:focus, .form-select.is-valid:focus {
+  border-color: var(--bs-form-valid-border-color);
+  box-shadow: 0 0 0 0.25rem rgba(var(--bs-success-rgb), 0.25);
+}
+
+.was-validated .form-control-color:valid, .form-control-color.is-valid {
+  width: calc(3rem + calc(1.5em + 0.75rem));
+}
+
+.was-validated .form-check-input:valid, .form-check-input.is-valid {
+  border-color: var(--bs-form-valid-border-color);
+}
+.was-validated .form-check-input:valid:checked, .form-check-input.is-valid:checked {
+  background-color: var(--bs-form-valid-color);
+}
+.was-validated .form-check-input:valid:focus, .form-check-input.is-valid:focus {
+  box-shadow: 0 0 0 0.25rem rgba(var(--bs-success-rgb), 0.25);
+}
+.was-validated .form-check-input:valid ~ .form-check-label, .form-check-input.is-valid ~ .form-check-label {
+  color: var(--bs-form-valid-color);
+}
+
+.form-check-inline .form-check-input ~ .valid-feedback {
+  margin-left: 0.5em;
+}
+
+.was-validated .input-group > .form-control:not(:focus):valid, .input-group > .form-control:not(:focus).is-valid,
+.was-validated .input-group > .form-select:not(:focus):valid,
+.input-group > .form-select:not(:focus).is-valid,
+.was-validated .input-group > .form-floating:not(:focus-within):valid,
+.input-group > .form-floating:not(:focus-within).is-valid {
+  z-index: 3;
+}
+
+.invalid-feedback {
+  display: none;
+  width: 100%;
+  margin-top: 0.25rem;
+  font-size: 0.875em;
+  color: var(--bs-form-invalid-color);
+}
+
+.invalid-tooltip {
+  position: absolute;
+  top: 100%;
+  z-index: 5;
+  display: none;
+  max-width: 100%;
+  padding: 0.25rem 0.5rem;
+  margin-top: 0.1rem;
+  font-size: 0.875rem;
+  color: #fff;
+  background-color: var(--bs-danger);
+  border-radius: var(--bs-border-radius);
+}
+
+.was-validated :invalid ~ .invalid-feedback,
+.was-validated :invalid ~ .invalid-tooltip,
+.is-invalid ~ .invalid-feedback,
+.is-invalid ~ .invalid-tooltip {
+  display: block;
+}
+
+.was-validated .form-control:invalid, .form-control.is-invalid {
+  border-color: var(--bs-form-invalid-border-color);
+  padding-right: calc(1.5em + 0.75rem);
+  background-image: url("data:image/svg+xml,%3csvg xmlns='http://www.w3.org/2000/svg' viewBox='0 0 12 12' width='12' height='12' fill='none' stroke='%23dc3545'%3e%3ccircle cx='6' cy='6' r='4.5'/%3e%3cpath stroke-linejoin='round' d='M5.8 3.6h.4L6 6.5z'/%3e%3ccircle cx='6' cy='8.2' r='.6' fill='%23dc3545' stroke='none'/%3e%3c/svg%3e");
+  background-repeat: no-repeat;
+  background-position: right calc(0.375em + 0.1875rem) center;
+  background-size: calc(0.75em + 0.375rem) calc(0.75em + 0.375rem);
+}
+.was-validated .form-control:invalid:focus, .form-control.is-invalid:focus {
+  border-color: var(--bs-form-invalid-border-color);
+  box-shadow: 0 0 0 0.25rem rgba(var(--bs-danger-rgb), 0.25);
+}
+
+.was-validated textarea.form-control:invalid, textarea.form-control.is-invalid {
+  padding-right: calc(1.5em + 0.75rem);
+  background-position: top calc(0.375em + 0.1875rem) right calc(0.375em + 0.1875rem);
+}
+
+.was-validated .form-select:invalid, .form-select.is-invalid {
+  border-color: var(--bs-form-invalid-border-color);
+}
+.was-validated .form-select:invalid:not([multiple]):not([size]), .was-validated .form-select:invalid:not([multiple])[size="1"], .form-select.is-invalid:not([multiple]):not([size]), .form-select.is-invalid:not([multiple])[size="1"] {
+  --bs-form-select-bg-icon: url("data:image/svg+xml,%3csvg xmlns='http://www.w3.org/2000/svg' viewBox='0 0 12 12' width='12' height='12' fill='none' stroke='%23dc3545'%3e%3ccircle cx='6' cy='6' r='4.5'/%3e%3cpath stroke-linejoin='round' d='M5.8 3.6h.4L6 6.5z'/%3e%3ccircle cx='6' cy='8.2' r='.6' fill='%23dc3545' stroke='none'/%3e%3c/svg%3e");
+  padding-right: 4.125rem;
+  background-position: right 0.75rem center, center right 2.25rem;
+  background-size: 16px 12px, calc(0.75em + 0.375rem) calc(0.75em + 0.375rem);
+}
+.was-validated .form-select:invalid:focus, .form-select.is-invalid:focus {
+  border-color: var(--bs-form-invalid-border-color);
+  box-shadow: 0 0 0 0.25rem rgba(var(--bs-danger-rgb), 0.25);
+}
+
+.was-validated .form-control-color:invalid, .form-control-color.is-invalid {
+  width: calc(3rem + calc(1.5em + 0.75rem));
+}
+
+.was-validated .form-check-input:invalid, .form-check-input.is-invalid {
+  border-color: var(--bs-form-invalid-border-color);
+}
+.was-validated .form-check-input:invalid:checked, .form-check-input.is-invalid:checked {
+  background-color: var(--bs-form-invalid-color);
+}
+.was-validated .form-check-input:invalid:focus, .form-check-input.is-invalid:focus {
+  box-shadow: 0 0 0 0.25rem rgba(var(--bs-danger-rgb), 0.25);
+}
+.was-validated .form-check-input:invalid ~ .form-check-label, .form-check-input.is-invalid ~ .form-check-label {
+  color: var(--bs-form-invalid-color);
+}
+
+.form-check-inline .form-check-input ~ .invalid-feedback {
+  margin-left: 0.5em;
+}
+
+.was-validated .input-group > .form-control:not(:focus):invalid, .input-group > .form-control:not(:focus).is-invalid,
+.was-validated .input-group > .form-select:not(:focus):invalid,
+.input-group > .form-select:not(:focus).is-invalid,
+.was-validated .input-group > .form-floating:not(:focus-within):invalid,
+.input-group > .form-floating:not(:focus-within).is-invalid {
+  z-index: 4;
+}
+
+.btn {
+  --bs-btn-padding-x: 0.75rem;
+  --bs-btn-padding-y: 0.375rem;
+  --bs-btn-font-family: ;
+  --bs-btn-font-size: 1rem;
+  --bs-btn-font-weight: 400;
+  --bs-btn-line-height: 1.5;
+  --bs-btn-color: var(--bs-body-color);
+  --bs-btn-bg: transparent;
+  --bs-btn-border-width: var(--bs-border-width);
+  --bs-btn-border-color: transparent;
+  --bs-btn-border-radius: var(--bs-border-radius);
+  --bs-btn-hover-border-color: transparent;
+  --bs-btn-box-shadow: inset 0 1px 0 rgba(255, 255, 255, 0.15), 0 1px 1px rgba(0, 0, 0, 0.075);
+  --bs-btn-disabled-opacity: 0.65;
+  --bs-btn-focus-box-shadow: 0 0 0 0.25rem rgba(var(--bs-btn-focus-shadow-rgb), .5);
+  display: inline-block;
+  padding: var(--bs-btn-padding-y) var(--bs-btn-padding-x);
+  font-family: var(--bs-btn-font-family);
+  font-size: var(--bs-btn-font-size);
+  font-weight: var(--bs-btn-font-weight);
+  line-height: var(--bs-btn-line-height);
+  color: var(--bs-btn-color);
+  text-align: center;
+  text-decoration: none;
+  vertical-align: middle;
+  cursor: pointer;
+  -webkit-user-select: none;
+  -moz-user-select: none;
+  user-select: none;
+  border: var(--bs-btn-border-width) solid var(--bs-btn-border-color);
+  border-radius: var(--bs-btn-border-radius);
+  background-color: var(--bs-btn-bg);
+  transition: color 0.15s ease-in-out, background-color 0.15s ease-in-out, border-color 0.15s ease-in-out, box-shadow 0.15s ease-in-out;
+}
+@media (prefers-reduced-motion: reduce) {
+  .btn {
+    transition: none;
+  }
+}
+.btn:hover {
+  color: var(--bs-btn-hover-color);
+  background-color: var(--bs-btn-hover-bg);
+  border-color: var(--bs-btn-hover-border-color);
+}
+.btn-check + .btn:hover {
+  color: var(--bs-btn-color);
+  background-color: var(--bs-btn-bg);
+  border-color: var(--bs-btn-border-color);
+}
+.btn:focus-visible {
+  color: var(--bs-btn-hover-color);
+  background-color: var(--bs-btn-hover-bg);
+  border-color: var(--bs-btn-hover-border-color);
+  outline: 0;
+  box-shadow: var(--bs-btn-focus-box-shadow);
+}
+.btn-check:focus-visible + .btn {
+  border-color: var(--bs-btn-hover-border-color);
+  outline: 0;
+  box-shadow: var(--bs-btn-focus-box-shadow);
+}
+.btn-check:checked + .btn, :not(.btn-check) + .btn:active, .btn:first-child:active, .btn.active, .btn.show {
+  color: var(--bs-btn-active-color);
+  background-color: var(--bs-btn-active-bg);
+  border-color: var(--bs-btn-active-border-color);
+}
+.btn-check:checked + .btn:focus-visible, :not(.btn-check) + .btn:active:focus-visible, .btn:first-child:active:focus-visible, .btn.active:focus-visible, .btn.show:focus-visible {
+  box-shadow: var(--bs-btn-focus-box-shadow);
+}
+.btn:disabled, .btn.disabled, fieldset:disabled .btn {
+  color: var(--bs-btn-disabled-color);
+  pointer-events: none;
+  background-color: var(--bs-btn-disabled-bg);
+  border-color: var(--bs-btn-disabled-border-color);
+  opacity: var(--bs-btn-disabled-opacity);
+}
+
+.btn-primary {
+  --bs-btn-color: #fff;
+  --bs-btn-bg: #0d6efd;
+  --bs-btn-border-color: #0d6efd;
+  --bs-btn-hover-color: #fff;
+  --bs-btn-hover-bg: #0b5ed7;
+  --bs-btn-hover-border-color: #0a58ca;
+  --bs-btn-focus-shadow-rgb: 49, 132, 253;
+  --bs-btn-active-color: #fff;
+  --bs-btn-active-bg: #0a58ca;
+  --bs-btn-active-border-color: #0a53be;
+  --bs-btn-active-shadow: inset 0 3px 5px rgba(0, 0, 0, 0.125);
+  --bs-btn-disabled-color: #fff;
+  --bs-btn-disabled-bg: #0d6efd;
+  --bs-btn-disabled-border-color: #0d6efd;
+}
+
+.btn-secondary {
+  --bs-btn-color: #fff;
+  --bs-btn-bg: #6c757d;
+  --bs-btn-border-color: #6c757d;
+  --bs-btn-hover-color: #fff;
+  --bs-btn-hover-bg: #5c636a;
+  --bs-btn-hover-border-color: #565e64;
+  --bs-btn-focus-shadow-rgb: 130, 138, 145;
+  --bs-btn-active-color: #fff;
+  --bs-btn-active-bg: #565e64;
+  --bs-btn-active-border-color: #51585e;
+  --bs-btn-active-shadow: inset 0 3px 5px rgba(0, 0, 0, 0.125);
+  --bs-btn-disabled-color: #fff;
+  --bs-btn-disabled-bg: #6c757d;
+  --bs-btn-disabled-border-color: #6c757d;
+}
+
+.btn-success {
+  --bs-btn-color: #fff;
+  --bs-btn-bg: #198754;
+  --bs-btn-border-color: #198754;
+  --bs-btn-hover-color: #fff;
+  --bs-btn-hover-bg: #157347;
+  --bs-btn-hover-border-color: #146c43;
+  --bs-btn-focus-shadow-rgb: 60, 153, 110;
+  --bs-btn-active-color: #fff;
+  --bs-btn-active-bg: #146c43;
+  --bs-btn-active-border-color: #13653f;
+  --bs-btn-active-shadow: inset 0 3px 5px rgba(0, 0, 0, 0.125);
+  --bs-btn-disabled-color: #fff;
+  --bs-btn-disabled-bg: #198754;
+  --bs-btn-disabled-border-color: #198754;
+}
+
+.btn-info {
+  --bs-btn-color: #000;
+  --bs-btn-bg: #0dcaf0;
+  --bs-btn-border-color: #0dcaf0;
+  --bs-btn-hover-color: #000;
+  --bs-btn-hover-bg: #31d2f2;
+  --bs-btn-hover-border-color: #25cff2;
+  --bs-btn-focus-shadow-rgb: 11, 172, 204;
+  --bs-btn-active-color: #000;
+  --bs-btn-active-bg: #3dd5f3;
+  --bs-btn-active-border-color: #25cff2;
+  --bs-btn-active-shadow: inset 0 3px 5px rgba(0, 0, 0, 0.125);
+  --bs-btn-disabled-color: #000;
+  --bs-btn-disabled-bg: #0dcaf0;
+  --bs-btn-disabled-border-color: #0dcaf0;
+}
+
+.btn-warning {
+  --bs-btn-color: #000;
+  --bs-btn-bg: #ffc107;
+  --bs-btn-border-color: #ffc107;
+  --bs-btn-hover-color: #000;
+  --bs-btn-hover-bg: #ffca2c;
+  --bs-btn-hover-border-color: #ffc720;
+  --bs-btn-focus-shadow-rgb: 217, 164, 6;
+  --bs-btn-active-color: #000;
+  --bs-btn-active-bg: #ffcd39;
+  --bs-btn-active-border-color: #ffc720;
+  --bs-btn-active-shadow: inset 0 3px 5px rgba(0, 0, 0, 0.125);
+  --bs-btn-disabled-color: #000;
+  --bs-btn-disabled-bg: #ffc107;
+  --bs-btn-disabled-border-color: #ffc107;
+}
+
+.btn-danger {
+  --bs-btn-color: #fff;
+  --bs-btn-bg: #dc3545;
+  --bs-btn-border-color: #dc3545;
+  --bs-btn-hover-color: #fff;
+  --bs-btn-hover-bg: #bb2d3b;
+  --bs-btn-hover-border-color: #b02a37;
+  --bs-btn-focus-shadow-rgb: 225, 83, 97;
+  --bs-btn-active-color: #fff;
+  --bs-btn-active-bg: #b02a37;
+  --bs-btn-active-border-color: #a52834;
+  --bs-btn-active-shadow: inset 0 3px 5px rgba(0, 0, 0, 0.125);
+  --bs-btn-disabled-color: #fff;
+  --bs-btn-disabled-bg: #dc3545;
+  --bs-btn-disabled-border-color: #dc3545;
+}
+
+.btn-light {
+  --bs-btn-color: #000;
+  --bs-btn-bg: #f8f9fa;
+  --bs-btn-border-color: #f8f9fa;
+  --bs-btn-hover-color: #000;
+  --bs-btn-hover-bg: #d3d4d5;
+  --bs-btn-hover-border-color: #c6c7c8;
+  --bs-btn-focus-shadow-rgb: 211, 212, 213;
+  --bs-btn-active-color: #000;
+  --bs-btn-active-bg: #c6c7c8;
+  --bs-btn-active-border-color: #babbbc;
+  --bs-btn-active-shadow: inset 0 3px 5px rgba(0, 0, 0, 0.125);
+  --bs-btn-disabled-color: #000;
+  --bs-btn-disabled-bg: #f8f9fa;
+  --bs-btn-disabled-border-color: #f8f9fa;
+}
+
+.btn-dark {
+  --bs-btn-color: #fff;
+  --bs-btn-bg: #212529;
+  --bs-btn-border-color: #212529;
+  --bs-btn-hover-color: #fff;
+  --bs-btn-hover-bg: #424649;
+  --bs-btn-hover-border-color: #373b3e;
+  --bs-btn-focus-shadow-rgb: 66, 70, 73;
+  --bs-btn-active-color: #fff;
+  --bs-btn-active-bg: #4d5154;
+  --bs-btn-active-border-color: #373b3e;
+  --bs-btn-active-shadow: inset 0 3px 5px rgba(0, 0, 0, 0.125);
+  --bs-btn-disabled-color: #fff;
+  --bs-btn-disabled-bg: #212529;
+  --bs-btn-disabled-border-color: #212529;
+}
+
+.btn-outline-primary {
+  --bs-btn-color: #0d6efd;
+  --bs-btn-border-color: #0d6efd;
+  --bs-btn-hover-color: #fff;
+  --bs-btn-hover-bg: #0d6efd;
+  --bs-btn-hover-border-color: #0d6efd;
+  --bs-btn-focus-shadow-rgb: 13, 110, 253;
+  --bs-btn-active-color: #fff;
+  --bs-btn-active-bg: #0d6efd;
+  --bs-btn-active-border-color: #0d6efd;
+  --bs-btn-active-shadow: inset 0 3px 5px rgba(0, 0, 0, 0.125);
+  --bs-btn-disabled-color: #0d6efd;
+  --bs-btn-disabled-bg: transparent;
+  --bs-btn-disabled-border-color: #0d6efd;
+  --bs-gradient: none;
+}
+
+.btn-outline-secondary {
+  --bs-btn-color: #6c757d;
+  --bs-btn-border-color: #6c757d;
+  --bs-btn-hover-color: #fff;
+  --bs-btn-hover-bg: #6c757d;
+  --bs-btn-hover-border-color: #6c757d;
+  --bs-btn-focus-shadow-rgb: 108, 117, 125;
+  --bs-btn-active-color: #fff;
+  --bs-btn-active-bg: #6c757d;
+  --bs-btn-active-border-color: #6c757d;
+  --bs-btn-active-shadow: inset 0 3px 5px rgba(0, 0, 0, 0.125);
+  --bs-btn-disabled-color: #6c757d;
+  --bs-btn-disabled-bg: transparent;
+  --bs-btn-disabled-border-color: #6c757d;
+  --bs-gradient: none;
+}
+
+.btn-outline-success {
+  --bs-btn-color: #198754;
+  --bs-btn-border-color: #198754;
+  --bs-btn-hover-color: #fff;
+  --bs-btn-hover-bg: #198754;
+  --bs-btn-hover-border-color: #198754;
+  --bs-btn-focus-shadow-rgb: 25, 135, 84;
+  --bs-btn-active-color: #fff;
+  --bs-btn-active-bg: #198754;
+  --bs-btn-active-border-color: #198754;
+  --bs-btn-active-shadow: inset 0 3px 5px rgba(0, 0, 0, 0.125);
+  --bs-btn-disabled-color: #198754;
+  --bs-btn-disabled-bg: transparent;
+  --bs-btn-disabled-border-color: #198754;
+  --bs-gradient: none;
+}
+
+.btn-outline-info {
+  --bs-btn-color: #0dcaf0;
+  --bs-btn-border-color: #0dcaf0;
+  --bs-btn-hover-color: #000;
+  --bs-btn-hover-bg: #0dcaf0;
+  --bs-btn-hover-border-color: #0dcaf0;
+  --bs-btn-focus-shadow-rgb: 13, 202, 240;
+  --bs-btn-active-color: #000;
+  --bs-btn-active-bg: #0dcaf0;
+  --bs-btn-active-border-color: #0dcaf0;
+  --bs-btn-active-shadow: inset 0 3px 5px rgba(0, 0, 0, 0.125);
+  --bs-btn-disabled-color: #0dcaf0;
+  --bs-btn-disabled-bg: transparent;
+  --bs-btn-disabled-border-color: #0dcaf0;
+  --bs-gradient: none;
+}
+
+.btn-outline-warning {
+  --bs-btn-color: #ffc107;
+  --bs-btn-border-color: #ffc107;
+  --bs-btn-hover-color: #000;
+  --bs-btn-hover-bg: #ffc107;
+  --bs-btn-hover-border-color: #ffc107;
+  --bs-btn-focus-shadow-rgb: 255, 193, 7;
+  --bs-btn-active-color: #000;
+  --bs-btn-active-bg: #ffc107;
+  --bs-btn-active-border-color: #ffc107;
+  --bs-btn-active-shadow: inset 0 3px 5px rgba(0, 0, 0, 0.125);
+  --bs-btn-disabled-color: #ffc107;
+  --bs-btn-disabled-bg: transparent;
+  --bs-btn-disabled-border-color: #ffc107;
+  --bs-gradient: none;
+}
+
+.btn-outline-danger {
+  --bs-btn-color: #dc3545;
+  --bs-btn-border-color: #dc3545;
+  --bs-btn-hover-color: #fff;
+  --bs-btn-hover-bg: #dc3545;
+  --bs-btn-hover-border-color: #dc3545;
+  --bs-btn-focus-shadow-rgb: 220, 53, 69;
+  --bs-btn-active-color: #fff;
+  --bs-btn-active-bg: #dc3545;
+  --bs-btn-active-border-color: #dc3545;
+  --bs-btn-active-shadow: inset 0 3px 5px rgba(0, 0, 0, 0.125);
+  --bs-btn-disabled-color: #dc3545;
+  --bs-btn-disabled-bg: transparent;
+  --bs-btn-disabled-border-color: #dc3545;
+  --bs-gradient: none;
+}
+
+.btn-outline-light {
+  --bs-btn-color: #f8f9fa;
+  --bs-btn-border-color: #f8f9fa;
+  --bs-btn-hover-color: #000;
+  --bs-btn-hover-bg: #f8f9fa;
+  --bs-btn-hover-border-color: #f8f9fa;
+  --bs-btn-focus-shadow-rgb: 248, 249, 250;
+  --bs-btn-active-color: #000;
+  --bs-btn-active-bg: #f8f9fa;
+  --bs-btn-active-border-color: #f8f9fa;
+  --bs-btn-active-shadow: inset 0 3px 5px rgba(0, 0, 0, 0.125);
+  --bs-btn-disabled-color: #f8f9fa;
+  --bs-btn-disabled-bg: transparent;
+  --bs-btn-disabled-border-color: #f8f9fa;
+  --bs-gradient: none;
+}
+
+.btn-outline-dark {
+  --bs-btn-color: #212529;
+  --bs-btn-border-color: #212529;
+  --bs-btn-hover-color: #fff;
+  --bs-btn-hover-bg: #212529;
+  --bs-btn-hover-border-color: #212529;
+  --bs-btn-focus-shadow-rgb: 33, 37, 41;
+  --bs-btn-active-color: #fff;
+  --bs-btn-active-bg: #212529;
+  --bs-btn-active-border-color: #212529;
+  --bs-btn-active-shadow: inset 0 3px 5px rgba(0, 0, 0, 0.125);
+  --bs-btn-disabled-color: #212529;
+  --bs-btn-disabled-bg: transparent;
+  --bs-btn-disabled-border-color: #212529;
+  --bs-gradient: none;
+}
+
+.btn-link {
+  --bs-btn-font-weight: 400;
+  --bs-btn-color: var(--bs-link-color);
+  --bs-btn-bg: transparent;
+  --bs-btn-border-color: transparent;
+  --bs-btn-hover-color: var(--bs-link-hover-color);
+  --bs-btn-hover-border-color: transparent;
+  --bs-btn-active-color: var(--bs-link-hover-color);
+  --bs-btn-active-border-color: transparent;
+  --bs-btn-disabled-color: #6c757d;
+  --bs-btn-disabled-border-color: transparent;
+  --bs-btn-box-shadow: 0 0 0 #000;
+  --bs-btn-focus-shadow-rgb: 49, 132, 253;
+  text-decoration: underline;
+}
+.btn-link:focus-visible {
+  color: var(--bs-btn-color);
+}
+.btn-link:hover {
+  color: var(--bs-btn-hover-color);
+}
+
+.btn-lg, .btn-group-lg > .btn {
+  --bs-btn-padding-y: 0.5rem;
+  --bs-btn-padding-x: 1rem;
+  --bs-btn-font-size: 1.25rem;
+  --bs-btn-border-radius: var(--bs-border-radius-lg);
+}
+
+.btn-sm, .btn-group-sm > .btn {
+  --bs-btn-padding-y: 0.25rem;
+  --bs-btn-padding-x: 0.5rem;
+  --bs-btn-font-size: 0.875rem;
+  --bs-btn-border-radius: var(--bs-border-radius-sm);
+}
+
+.fade {
+  transition: opacity 0.15s linear;
+}
+@media (prefers-reduced-motion: reduce) {
+  .fade {
+    transition: none;
+  }
+}
+.fade:not(.show) {
+  opacity: 0;
+}
+
+.collapse:not(.show) {
+  display: none;
+}
+
+.collapsing {
+  height: 0;
+  overflow: hidden;
+  transition: height 0.35s ease;
+}
+@media (prefers-reduced-motion: reduce) {
+  .collapsing {
+    transition: none;
+  }
+}
+.collapsing.collapse-horizontal {
+  width: 0;
+  height: auto;
+  transition: width 0.35s ease;
+}
+@media (prefers-reduced-motion: reduce) {
+  .collapsing.collapse-horizontal {
+    transition: none;
+  }
+}
+
+.dropup,
+.dropend,
+.dropdown,
+.dropstart,
+.dropup-center,
+.dropdown-center {
+  position: relative;
+}
+
+.dropdown-toggle {
+  white-space: nowrap;
+}
+.dropdown-toggle::after {
+  display: inline-block;
+  margin-left: 0.255em;
+  vertical-align: 0.255em;
+  content: "";
+  border-top: 0.3em solid;
+  border-right: 0.3em solid transparent;
+  border-bottom: 0;
+  border-left: 0.3em solid transparent;
+}
+.dropdown-toggle:empty::after {
+  margin-left: 0;
+}
+
+.dropdown-menu {
+  --bs-dropdown-zindex: 1000;
+  --bs-dropdown-min-width: 10rem;
+  --bs-dropdown-padding-x: 0;
+  --bs-dropdown-padding-y: 0.5rem;
+  --bs-dropdown-spacer: 0.125rem;
+  --bs-dropdown-font-size: 1rem;
+  --bs-dropdown-color: var(--bs-body-color);
+  --bs-dropdown-bg: var(--bs-body-bg);
+  --bs-dropdown-border-color: var(--bs-border-color-translucent);
+  --bs-dropdown-border-radius: var(--bs-border-radius);
+  --bs-dropdown-border-width: var(--bs-border-width);
+  --bs-dropdown-inner-border-radius: calc(var(--bs-border-radius) - var(--bs-border-width));
+  --bs-dropdown-divider-bg: var(--bs-border-color-translucent);
+  --bs-dropdown-divider-margin-y: 0.5rem;
+  --bs-dropdown-box-shadow: var(--bs-box-shadow);
+  --bs-dropdown-link-color: var(--bs-body-color);
+  --bs-dropdown-link-hover-color: var(--bs-body-color);
+  --bs-dropdown-link-hover-bg: var(--bs-tertiary-bg);
+  --bs-dropdown-link-active-color: #fff;
+  --bs-dropdown-link-active-bg: #0d6efd;
+  --bs-dropdown-link-disabled-color: var(--bs-tertiary-color);
+  --bs-dropdown-item-padding-x: 1rem;
+  --bs-dropdown-item-padding-y: 0.25rem;
+  --bs-dropdown-header-color: #6c757d;
+  --bs-dropdown-header-padding-x: 1rem;
+  --bs-dropdown-header-padding-y: 0.5rem;
+  position: absolute;
+  z-index: var(--bs-dropdown-zindex);
+  display: none;
+  min-width: var(--bs-dropdown-min-width);
+  padding: var(--bs-dropdown-padding-y) var(--bs-dropdown-padding-x);
+  margin: 0;
+  font-size: var(--bs-dropdown-font-size);
+  color: var(--bs-dropdown-color);
+  text-align: left;
+  list-style: none;
+  background-color: var(--bs-dropdown-bg);
+  background-clip: padding-box;
+  border: var(--bs-dropdown-border-width) solid var(--bs-dropdown-border-color);
+  border-radius: var(--bs-dropdown-border-radius);
+}
+.dropdown-menu[data-bs-popper] {
+  top: 100%;
+  left: 0;
+  margin-top: var(--bs-dropdown-spacer);
+}
+
+.dropdown-menu-start {
+  --bs-position: start;
+}
+.dropdown-menu-start[data-bs-popper] {
+  right: auto;
+  left: 0;
+}
+
+.dropdown-menu-end {
+  --bs-position: end;
+}
+.dropdown-menu-end[data-bs-popper] {
+  right: 0;
+  left: auto;
+}
+
+@media (min-width: 576px) {
+  .dropdown-menu-sm-start {
+    --bs-position: start;
+  }
+  .dropdown-menu-sm-start[data-bs-popper] {
+    right: auto;
+    left: 0;
+  }
+  .dropdown-menu-sm-end {
+    --bs-position: end;
+  }
+  .dropdown-menu-sm-end[data-bs-popper] {
+    right: 0;
+    left: auto;
+  }
+}
+@media (min-width: 768px) {
+  .dropdown-menu-md-start {
+    --bs-position: start;
+  }
+  .dropdown-menu-md-start[data-bs-popper] {
+    right: auto;
+    left: 0;
+  }
+  .dropdown-menu-md-end {
+    --bs-position: end;
+  }
+  .dropdown-menu-md-end[data-bs-popper] {
+    right: 0;
+    left: auto;
+  }
+}
+@media (min-width: 992px) {
+  .dropdown-menu-lg-start {
+    --bs-position: start;
+  }
+  .dropdown-menu-lg-start[data-bs-popper] {
+    right: auto;
+    left: 0;
+  }
+  .dropdown-menu-lg-end {
+    --bs-position: end;
+  }
+  .dropdown-menu-lg-end[data-bs-popper] {
+    right: 0;
+    left: auto;
+  }
+}
+@media (min-width: 1200px) {
+  .dropdown-menu-xl-start {
+    --bs-position: start;
+  }
+  .dropdown-menu-xl-start[data-bs-popper] {
+    right: auto;
+    left: 0;
+  }
+  .dropdown-menu-xl-end {
+    --bs-position: end;
+  }
+  .dropdown-menu-xl-end[data-bs-popper] {
+    right: 0;
+    left: auto;
+  }
+}
+@media (min-width: 1400px) {
+  .dropdown-menu-xxl-start {
+    --bs-position: start;
+  }
+  .dropdown-menu-xxl-start[data-bs-popper] {
+    right: auto;
+    left: 0;
+  }
+  .dropdown-menu-xxl-end {
+    --bs-position: end;
+  }
+  .dropdown-menu-xxl-end[data-bs-popper] {
+    right: 0;
+    left: auto;
+  }
+}
+.dropup .dropdown-menu[data-bs-popper] {
+  top: auto;
+  bottom: 100%;
+  margin-top: 0;
+  margin-bottom: var(--bs-dropdown-spacer);
+}
+.dropup .dropdown-toggle::after {
+  display: inline-block;
+  margin-left: 0.255em;
+  vertical-align: 0.255em;
+  content: "";
+  border-top: 0;
+  border-right: 0.3em solid transparent;
+  border-bottom: 0.3em solid;
+  border-left: 0.3em solid transparent;
+}
+.dropup .dropdown-toggle:empty::after {
+  margin-left: 0;
+}
+
+.dropend .dropdown-menu[data-bs-popper] {
+  top: 0;
+  right: auto;
+  left: 100%;
+  margin-top: 0;
+  margin-left: var(--bs-dropdown-spacer);
+}
+.dropend .dropdown-toggle::after {
+  display: inline-block;
+  margin-left: 0.255em;
+  vertical-align: 0.255em;
+  content: "";
+  border-top: 0.3em solid transparent;
+  border-right: 0;
+  border-bottom: 0.3em solid transparent;
+  border-left: 0.3em solid;
+}
+.dropend .dropdown-toggle:empty::after {
+  margin-left: 0;
+}
+.dropend .dropdown-toggle::after {
+  vertical-align: 0;
+}
+
+.dropstart .dropdown-menu[data-bs-popper] {
+  top: 0;
+  right: 100%;
+  left: auto;
+  margin-top: 0;
+  margin-right: var(--bs-dropdown-spacer);
+}
+.dropstart .dropdown-toggle::after {
+  display: inline-block;
+  margin-left: 0.255em;
+  vertical-align: 0.255em;
+  content: "";
+}
+.dropstart .dropdown-toggle::after {
+  display: none;
+}
+.dropstart .dropdown-toggle::before {
+  display: inline-block;
+  margin-right: 0.255em;
+  vertical-align: 0.255em;
+  content: "";
+  border-top: 0.3em solid transparent;
+  border-right: 0.3em solid;
+  border-bottom: 0.3em solid transparent;
+}
+.dropstart .dropdown-toggle:empty::after {
+  margin-left: 0;
+}
+.dropstart .dropdown-toggle::before {
+  vertical-align: 0;
+}
+
+.dropdown-divider {
+  height: 0;
+  margin: var(--bs-dropdown-divider-margin-y) 0;
+  overflow: hidden;
+  border-top: 1px solid var(--bs-dropdown-divider-bg);
+  opacity: 1;
+}
+
+.dropdown-item {
+  display: block;
+  width: 100%;
+  padding: var(--bs-dropdown-item-padding-y) var(--bs-dropdown-item-padding-x);
+  clear: both;
+  font-weight: 400;
+  color: var(--bs-dropdown-link-color);
+  text-align: inherit;
+  text-decoration: none;
+  white-space: nowrap;
+  background-color: transparent;
+  border: 0;
+  border-radius: var(--bs-dropdown-item-border-radius, 0);
+}
+.dropdown-item:hover, .dropdown-item:focus {
+  color: var(--bs-dropdown-link-hover-color);
+  background-color: var(--bs-dropdown-link-hover-bg);
+}
+.dropdown-item.active, .dropdown-item:active {
+  color: var(--bs-dropdown-link-active-color);
+  text-decoration: none;
+  background-color: var(--bs-dropdown-link-active-bg);
+}
+.dropdown-item.disabled, .dropdown-item:disabled {
+  color: var(--bs-dropdown-link-disabled-color);
+  pointer-events: none;
+  background-color: transparent;
+}
+
+.dropdown-menu.show {
+  display: block;
+}
+
+.dropdown-header {
+  display: block;
+  padding: var(--bs-dropdown-header-padding-y) var(--bs-dropdown-header-padding-x);
+  margin-bottom: 0;
+  font-size: 0.875rem;
+  color: var(--bs-dropdown-header-color);
+  white-space: nowrap;
+}
+
+.dropdown-item-text {
+  display: block;
+  padding: var(--bs-dropdown-item-padding-y) var(--bs-dropdown-item-padding-x);
+  color: var(--bs-dropdown-link-color);
+}
+
+.dropdown-menu-dark {
+  --bs-dropdown-color: #dee2e6;
+  --bs-dropdown-bg: #343a40;
+  --bs-dropdown-border-color: var(--bs-border-color-translucent);
+  --bs-dropdown-box-shadow: ;
+  --bs-dropdown-link-color: #dee2e6;
+  --bs-dropdown-link-hover-color: #fff;
+  --bs-dropdown-divider-bg: var(--bs-border-color-translucent);
+  --bs-dropdown-link-hover-bg: rgba(255, 255, 255, 0.15);
+  --bs-dropdown-link-active-color: #fff;
+  --bs-dropdown-link-active-bg: #0d6efd;
+  --bs-dropdown-link-disabled-color: #adb5bd;
+  --bs-dropdown-header-color: #adb5bd;
+}
+
+.btn-group,
+.btn-group-vertical {
+  position: relative;
+  display: inline-flex;
+  vertical-align: middle;
+}
+.btn-group > .btn,
+.btn-group-vertical > .btn {
+  position: relative;
+  flex: 1 1 auto;
+}
+.btn-group > .btn-check:checked + .btn,
+.btn-group > .btn-check:focus + .btn,
+.btn-group > .btn:hover,
+.btn-group > .btn:focus,
+.btn-group > .btn:active,
+.btn-group > .btn.active,
+.btn-group-vertical > .btn-check:checked + .btn,
+.btn-group-vertical > .btn-check:focus + .btn,
+.btn-group-vertical > .btn:hover,
+.btn-group-vertical > .btn:focus,
+.btn-group-vertical > .btn:active,
+.btn-group-vertical > .btn.active {
+  z-index: 1;
+}
+
+.btn-toolbar {
+  display: flex;
+  flex-wrap: wrap;
+  justify-content: flex-start;
+}
+.btn-toolbar .input-group {
+  width: auto;
+}
+
+.btn-group {
+  border-radius: var(--bs-border-radius);
+}
+.btn-group > :not(.btn-check:first-child) + .btn,
+.btn-group > .btn-group:not(:first-child) {
+  margin-left: calc(var(--bs-border-width) * -1);
+}
+.btn-group > .btn:not(:last-child):not(.dropdown-toggle),
+.btn-group > .btn.dropdown-toggle-split:first-child,
+.btn-group > .btn-group:not(:last-child) > .btn {
+  border-top-right-radius: 0;
+  border-bottom-right-radius: 0;
+}
+.btn-group > .btn:nth-child(n+3),
+.btn-group > :not(.btn-check) + .btn,
+.btn-group > .btn-group:not(:first-child) > .btn {
+  border-top-left-radius: 0;
+  border-bottom-left-radius: 0;
+}
+
+.dropdown-toggle-split {
+  padding-right: 0.5625rem;
+  padding-left: 0.5625rem;
+}
+.dropdown-toggle-split::after, .dropup .dropdown-toggle-split::after, .dropend .dropdown-toggle-split::after {
+  margin-left: 0;
+}
+.dropstart .dropdown-toggle-split::before {
+  margin-right: 0;
+}
+
+.btn-sm + .dropdown-toggle-split, .btn-group-sm > .btn + .dropdown-toggle-split {
+  padding-right: 0.375rem;
+  padding-left: 0.375rem;
+}
+
+.btn-lg + .dropdown-toggle-split, .btn-group-lg > .btn + .dropdown-toggle-split {
+  padding-right: 0.75rem;
+  padding-left: 0.75rem;
+}
+
+.btn-group-vertical {
+  flex-direction: column;
+  align-items: flex-start;
+  justify-content: center;
+}
+.btn-group-vertical > .btn,
+.btn-group-vertical > .btn-group {
+  width: 100%;
+}
+.btn-group-vertical > .btn:not(:first-child),
+.btn-group-vertical > .btn-group:not(:first-child) {
+  margin-top: calc(var(--bs-border-width) * -1);
+}
+.btn-group-vertical > .btn:not(:last-child):not(.dropdown-toggle),
+.btn-group-vertical > .btn-group:not(:last-child) > .btn {
+  border-bottom-right-radius: 0;
+  border-bottom-left-radius: 0;
+}
+.btn-group-vertical > .btn ~ .btn,
+.btn-group-vertical > .btn-group:not(:first-child) > .btn {
+  border-top-left-radius: 0;
+  border-top-right-radius: 0;
+}
+
+.nav {
+  --bs-nav-link-padding-x: 1rem;
+  --bs-nav-link-padding-y: 0.5rem;
+  --bs-nav-link-font-weight: ;
+  --bs-nav-link-color: var(--bs-link-color);
+  --bs-nav-link-hover-color: var(--bs-link-hover-color);
+  --bs-nav-link-disabled-color: var(--bs-secondary-color);
+  display: flex;
+  flex-wrap: wrap;
+  padding-left: 0;
+  margin-bottom: 0;
+  list-style: none;
+}
+
+.nav-link {
+  display: block;
+  padding: var(--bs-nav-link-padding-y) var(--bs-nav-link-padding-x);
+  font-size: var(--bs-nav-link-font-size);
+  font-weight: var(--bs-nav-link-font-weight);
+  color: var(--bs-nav-link-color);
+  text-decoration: none;
+  background: none;
+  border: 0;
+  transition: color 0.15s ease-in-out, background-color 0.15s ease-in-out, border-color 0.15s ease-in-out;
+}
+@media (prefers-reduced-motion: reduce) {
+  .nav-link {
+    transition: none;
+  }
+}
+.nav-link:hover, .nav-link:focus {
+  color: var(--bs-nav-link-hover-color);
+}
+.nav-link:focus-visible {
+  outline: 0;
+  box-shadow: 0 0 0 0.25rem rgba(13, 110, 253, 0.25);
+}
+.nav-link.disabled, .nav-link:disabled {
+  color: var(--bs-nav-link-disabled-color);
+  pointer-events: none;
+  cursor: default;
+}
+
+.nav-tabs {
+  --bs-nav-tabs-border-width: var(--bs-border-width);
+  --bs-nav-tabs-border-color: var(--bs-border-color);
+  --bs-nav-tabs-border-radius: var(--bs-border-radius);
+  --bs-nav-tabs-link-hover-border-color: var(--bs-secondary-bg) var(--bs-secondary-bg) var(--bs-border-color);
+  --bs-nav-tabs-link-active-color: var(--bs-emphasis-color);
+  --bs-nav-tabs-link-active-bg: var(--bs-body-bg);
+  --bs-nav-tabs-link-active-border-color: var(--bs-border-color) var(--bs-border-color) var(--bs-body-bg);
+  border-bottom: var(--bs-nav-tabs-border-width) solid var(--bs-nav-tabs-border-color);
+}
+.nav-tabs .nav-link {
+  margin-bottom: calc(-1 * var(--bs-nav-tabs-border-width));
+  border: var(--bs-nav-tabs-border-width) solid transparent;
+  border-top-left-radius: var(--bs-nav-tabs-border-radius);
+  border-top-right-radius: var(--bs-nav-tabs-border-radius);
+}
+.nav-tabs .nav-link:hover, .nav-tabs .nav-link:focus {
+  isolation: isolate;
+  border-color: var(--bs-nav-tabs-link-hover-border-color);
+}
+.nav-tabs .nav-link.active,
+.nav-tabs .nav-item.show .nav-link {
+  color: var(--bs-nav-tabs-link-active-color);
+  background-color: var(--bs-nav-tabs-link-active-bg);
+  border-color: var(--bs-nav-tabs-link-active-border-color);
+}
+.nav-tabs .dropdown-menu {
+  margin-top: calc(-1 * var(--bs-nav-tabs-border-width));
+  border-top-left-radius: 0;
+  border-top-right-radius: 0;
+}
+
+.nav-pills {
+  --bs-nav-pills-border-radius: var(--bs-border-radius);
+  --bs-nav-pills-link-active-color: #fff;
+  --bs-nav-pills-link-active-bg: #0d6efd;
+}
+.nav-pills .nav-link {
+  border-radius: var(--bs-nav-pills-border-radius);
+}
+.nav-pills .nav-link.active,
+.nav-pills .show > .nav-link {
+  color: var(--bs-nav-pills-link-active-color);
+  background-color: var(--bs-nav-pills-link-active-bg);
+}
+
+.nav-underline {
+  --bs-nav-underline-gap: 1rem;
+  --bs-nav-underline-border-width: 0.125rem;
+  --bs-nav-underline-link-active-color: var(--bs-emphasis-color);
+  gap: var(--bs-nav-underline-gap);
+}
+.nav-underline .nav-link {
+  padding-right: 0;
+  padding-left: 0;
+  border-bottom: var(--bs-nav-underline-border-width) solid transparent;
+}
+.nav-underline .nav-link:hover, .nav-underline .nav-link:focus {
+  border-bottom-color: currentcolor;
+}
+.nav-underline .nav-link.active,
+.nav-underline .show > .nav-link {
+  font-weight: 700;
+  color: var(--bs-nav-underline-link-active-color);
+  border-bottom-color: currentcolor;
+}
+
+.nav-fill > .nav-link,
+.nav-fill .nav-item {
+  flex: 1 1 auto;
+  text-align: center;
+}
+
+.nav-justified > .nav-link,
+.nav-justified .nav-item {
+  flex-basis: 0;
+  flex-grow: 1;
+  text-align: center;
+}
+
+.nav-fill .nav-item .nav-link,
+.nav-justified .nav-item .nav-link {
+  width: 100%;
+}
+
+.tab-content > .tab-pane {
+  display: none;
+}
+.tab-content > .active {
+  display: block;
+}
+
+.navbar {
+  --bs-navbar-padding-x: 0;
+  --bs-navbar-padding-y: 0.5rem;
+  --bs-navbar-color: rgba(var(--bs-emphasis-color-rgb), 0.65);
+  --bs-navbar-hover-color: rgba(var(--bs-emphasis-color-rgb), 0.8);
+  --bs-navbar-disabled-color: rgba(var(--bs-emphasis-color-rgb), 0.3);
+  --bs-navbar-active-color: rgba(var(--bs-emphasis-color-rgb), 1);
+  --bs-navbar-brand-padding-y: 0.3125rem;
+  --bs-navbar-brand-margin-end: 1rem;
+  --bs-navbar-brand-font-size: 1.25rem;
+  --bs-navbar-brand-color: rgba(var(--bs-emphasis-color-rgb), 1);
+  --bs-navbar-brand-hover-color: rgba(var(--bs-emphasis-color-rgb), 1);
+  --bs-navbar-nav-link-padding-x: 0.5rem;
+  --bs-navbar-toggler-padding-y: 0.25rem;
+  --bs-navbar-toggler-padding-x: 0.75rem;
+  --bs-navbar-toggler-font-size: 1.25rem;
+  --bs-navbar-toggler-icon-bg: url("data:image/svg+xml,%3csvg xmlns='http://www.w3.org/2000/svg' viewBox='0 0 30 30'%3e%3cpath stroke='rgba%2833, 37, 41, 0.75%29' stroke-linecap='round' stroke-miterlimit='10' stroke-width='2' d='M4 7h22M4 15h22M4 23h22'/%3e%3c/svg%3e");
+  --bs-navbar-toggler-border-color: rgba(var(--bs-emphasis-color-rgb), 0.15);
+  --bs-navbar-toggler-border-radius: var(--bs-border-radius);
+  --bs-navbar-toggler-focus-width: 0.25rem;
+  --bs-navbar-toggler-transition: box-shadow 0.15s ease-in-out;
+  position: relative;
+  display: flex;
+  flex-wrap: wrap;
+  align-items: center;
+  justify-content: space-between;
+  padding: var(--bs-navbar-padding-y) var(--bs-navbar-padding-x);
+}
+.navbar > .container,
+.navbar > .container-fluid,
+.navbar > .container-sm,
+.navbar > .container-md,
+.navbar > .container-lg,
+.navbar > .container-xl,
+.navbar > .container-xxl {
+  display: flex;
+  flex-wrap: inherit;
+  align-items: center;
+  justify-content: space-between;
+}
+.navbar-brand {
+  padding-top: var(--bs-navbar-brand-padding-y);
+  padding-bottom: var(--bs-navbar-brand-padding-y);
+  margin-right: var(--bs-navbar-brand-margin-end);
+  font-size: var(--bs-navbar-brand-font-size);
+  color: var(--bs-navbar-brand-color);
+  text-decoration: none;
+  white-space: nowrap;
+}
+.navbar-brand:hover, .navbar-brand:focus {
+  color: var(--bs-navbar-brand-hover-color);
+}
+
+.navbar-nav {
+  --bs-nav-link-padding-x: 0;
+  --bs-nav-link-padding-y: 0.5rem;
+  --bs-nav-link-font-weight: ;
+  --bs-nav-link-color: var(--bs-navbar-color);
+  --bs-nav-link-hover-color: var(--bs-navbar-hover-color);
+  --bs-nav-link-disabled-color: var(--bs-navbar-disabled-color);
+  display: flex;
+  flex-direction: column;
+  padding-left: 0;
+  margin-bottom: 0;
+  list-style: none;
+}
+.navbar-nav .nav-link.active, .navbar-nav .nav-link.show {
+  color: var(--bs-navbar-active-color);
+}
+.navbar-nav .dropdown-menu {
+  position: static;
+}
+
+.navbar-text {
+  padding-top: 0.5rem;
+  padding-bottom: 0.5rem;
+  color: var(--bs-navbar-color);
+}
+.navbar-text a,
+.navbar-text a:hover,
+.navbar-text a:focus {
+  color: var(--bs-navbar-active-color);
+}
+
+.navbar-collapse {
+  flex-basis: 100%;
+  flex-grow: 1;
+  align-items: center;
+}
+
+.navbar-toggler {
+  padding: var(--bs-navbar-toggler-padding-y) var(--bs-navbar-toggler-padding-x);
+  font-size: var(--bs-navbar-toggler-font-size);
+  line-height: 1;
+  color: var(--bs-navbar-color);
+  background-color: transparent;
+  border: var(--bs-border-width) solid var(--bs-navbar-toggler-border-color);
+  border-radius: var(--bs-navbar-toggler-border-radius);
+  transition: var(--bs-navbar-toggler-transition);
+}
+@media (prefers-reduced-motion: reduce) {
+  .navbar-toggler {
+    transition: none;
+  }
+}
+.navbar-toggler:hover {
+  text-decoration: none;
+}
+.navbar-toggler:focus {
+  text-decoration: none;
+  outline: 0;
+  box-shadow: 0 0 0 var(--bs-navbar-toggler-focus-width);
+}
+
+.navbar-toggler-icon {
+  display: inline-block;
+  width: 1.5em;
+  height: 1.5em;
+  vertical-align: middle;
+  background-image: var(--bs-navbar-toggler-icon-bg);
+  background-repeat: no-repeat;
+  background-position: center;
+  background-size: 100%;
+}
+
+.navbar-nav-scroll {
+  max-height: var(--bs-scroll-height, 75vh);
+  overflow-y: auto;
+}
+
+@media (min-width: 576px) {
+  .navbar-expand-sm {
+    flex-wrap: nowrap;
+    justify-content: flex-start;
+  }
+  .navbar-expand-sm .navbar-nav {
+    flex-direction: row;
+  }
+  .navbar-expand-sm .navbar-nav .dropdown-menu {
+    position: absolute;
+  }
+  .navbar-expand-sm .navbar-nav .nav-link {
+    padding-right: var(--bs-navbar-nav-link-padding-x);
+    padding-left: var(--bs-navbar-nav-link-padding-x);
+  }
+  .navbar-expand-sm .navbar-nav-scroll {
+    overflow: visible;
+  }
+  .navbar-expand-sm .navbar-collapse {
+    display: flex !important;
+    flex-basis: auto;
+  }
+  .navbar-expand-sm .navbar-toggler {
+    display: none;
+  }
+  .navbar-expand-sm .offcanvas {
+    position: static;
+    z-index: auto;
+    flex-grow: 1;
+    width: auto !important;
+    height: auto !important;
+    visibility: visible !important;
+    background-color: transparent !important;
+    border: 0 !important;
+    transform: none !important;
+    transition: none;
+  }
+  .navbar-expand-sm .offcanvas .offcanvas-header {
+    display: none;
+  }
+  .navbar-expand-sm .offcanvas .offcanvas-body {
+    display: flex;
+    flex-grow: 0;
+    padding: 0;
+    overflow-y: visible;
+  }
+}
+@media (min-width: 768px) {
+  .navbar-expand-md {
+    flex-wrap: nowrap;
+    justify-content: flex-start;
+  }
+  .navbar-expand-md .navbar-nav {
+    flex-direction: row;
+  }
+  .navbar-expand-md .navbar-nav .dropdown-menu {
+    position: absolute;
+  }
+  .navbar-expand-md .navbar-nav .nav-link {
+    padding-right: var(--bs-navbar-nav-link-padding-x);
+    padding-left: var(--bs-navbar-nav-link-padding-x);
+  }
+  .navbar-expand-md .navbar-nav-scroll {
+    overflow: visible;
+  }
+  .navbar-expand-md .navbar-collapse {
+    display: flex !important;
+    flex-basis: auto;
+  }
+  .navbar-expand-md .navbar-toggler {
+    display: none;
+  }
+  .navbar-expand-md .offcanvas {
+    position: static;
+    z-index: auto;
+    flex-grow: 1;
+    width: auto !important;
+    height: auto !important;
+    visibility: visible !important;
+    background-color: transparent !important;
+    border: 0 !important;
+    transform: none !important;
+    transition: none;
+  }
+  .navbar-expand-md .offcanvas .offcanvas-header {
+    display: none;
+  }
+  .navbar-expand-md .offcanvas .offcanvas-body {
+    display: flex;
+    flex-grow: 0;
+    padding: 0;
+    overflow-y: visible;
+  }
+}
+@media (min-width: 992px) {
+  .navbar-expand-lg {
+    flex-wrap: nowrap;
+    justify-content: flex-start;
+  }
+  .navbar-expand-lg .navbar-nav {
+    flex-direction: row;
+  }
+  .navbar-expand-lg .navbar-nav .dropdown-menu {
+    position: absolute;
+  }
+  .navbar-expand-lg .navbar-nav .nav-link {
+    padding-right: var(--bs-navbar-nav-link-padding-x);
+    padding-left: var(--bs-navbar-nav-link-padding-x);
+  }
+  .navbar-expand-lg .navbar-nav-scroll {
+    overflow: visible;
+  }
+  .navbar-expand-lg .navbar-collapse {
+    display: flex !important;
+    flex-basis: auto;
+  }
+  .navbar-expand-lg .navbar-toggler {
+    display: none;
+  }
+  .navbar-expand-lg .offcanvas {
+    position: static;
+    z-index: auto;
+    flex-grow: 1;
+    width: auto !important;
+    height: auto !important;
+    visibility: visible !important;
+    background-color: transparent !important;
+    border: 0 !important;
+    transform: none !important;
+    transition: none;
+  }
+  .navbar-expand-lg .offcanvas .offcanvas-header {
+    display: none;
+  }
+  .navbar-expand-lg .offcanvas .offcanvas-body {
+    display: flex;
+    flex-grow: 0;
+    padding: 0;
+    overflow-y: visible;
+  }
+}
+@media (min-width: 1200px) {
+  .navbar-expand-xl {
+    flex-wrap: nowrap;
+    justify-content: flex-start;
+  }
+  .navbar-expand-xl .navbar-nav {
+    flex-direction: row;
+  }
+  .navbar-expand-xl .navbar-nav .dropdown-menu {
+    position: absolute;
+  }
+  .navbar-expand-xl .navbar-nav .nav-link {
+    padding-right: var(--bs-navbar-nav-link-padding-x);
+    padding-left: var(--bs-navbar-nav-link-padding-x);
+  }
+  .navbar-expand-xl .navbar-nav-scroll {
+    overflow: visible;
+  }
+  .navbar-expand-xl .navbar-collapse {
+    display: flex !important;
+    flex-basis: auto;
+  }
+  .navbar-expand-xl .navbar-toggler {
+    display: none;
+  }
+  .navbar-expand-xl .offcanvas {
+    position: static;
+    z-index: auto;
+    flex-grow: 1;
+    width: auto !important;
+    height: auto !important;
+    visibility: visible !important;
+    background-color: transparent !important;
+    border: 0 !important;
+    transform: none !important;
+    transition: none;
+  }
+  .navbar-expand-xl .offcanvas .offcanvas-header {
+    display: none;
+  }
+  .navbar-expand-xl .offcanvas .offcanvas-body {
+    display: flex;
+    flex-grow: 0;
+    padding: 0;
+    overflow-y: visible;
+  }
+}
+@media (min-width: 1400px) {
+  .navbar-expand-xxl {
+    flex-wrap: nowrap;
+    justify-content: flex-start;
+  }
+  .navbar-expand-xxl .navbar-nav {
+    flex-direction: row;
+  }
+  .navbar-expand-xxl .navbar-nav .dropdown-menu {
+    position: absolute;
+  }
+  .navbar-expand-xxl .navbar-nav .nav-link {
+    padding-right: var(--bs-navbar-nav-link-padding-x);
+    padding-left: var(--bs-navbar-nav-link-padding-x);
+  }
+  .navbar-expand-xxl .navbar-nav-scroll {
+    overflow: visible;
+  }
+  .navbar-expand-xxl .navbar-collapse {
+    display: flex !important;
+    flex-basis: auto;
+  }
+  .navbar-expand-xxl .navbar-toggler {
+    display: none;
+  }
+  .navbar-expand-xxl .offcanvas {
+    position: static;
+    z-index: auto;
+    flex-grow: 1;
+    width: auto !important;
+    height: auto !important;
+    visibility: visible !important;
+    background-color: transparent !important;
+    border: 0 !important;
+    transform: none !important;
+    transition: none;
+  }
+  .navbar-expand-xxl .offcanvas .offcanvas-header {
+    display: none;
+  }
+  .navbar-expand-xxl .offcanvas .offcanvas-body {
+    display: flex;
+    flex-grow: 0;
+    padding: 0;
+    overflow-y: visible;
+  }
+}
+.navbar-expand {
+  flex-wrap: nowrap;
+  justify-content: flex-start;
+}
+.navbar-expand .navbar-nav {
+  flex-direction: row;
+}
+.navbar-expand .navbar-nav .dropdown-menu {
+  position: absolute;
+}
+.navbar-expand .navbar-nav .nav-link {
+  padding-right: var(--bs-navbar-nav-link-padding-x);
+  padding-left: var(--bs-navbar-nav-link-padding-x);
+}
+.navbar-expand .navbar-nav-scroll {
+  overflow: visible;
+}
+.navbar-expand .navbar-collapse {
+  display: flex !important;
+  flex-basis: auto;
+}
+.navbar-expand .navbar-toggler {
+  display: none;
+}
+.navbar-expand .offcanvas {
+  position: static;
+  z-index: auto;
+  flex-grow: 1;
+  width: auto !important;
+  height: auto !important;
+  visibility: visible !important;
+  background-color: transparent !important;
+  border: 0 !important;
+  transform: none !important;
+  transition: none;
+}
+.navbar-expand .offcanvas .offcanvas-header {
+  display: none;
+}
+.navbar-expand .offcanvas .offcanvas-body {
+  display: flex;
+  flex-grow: 0;
+  padding: 0;
+  overflow-y: visible;
+}
+
+.navbar-dark,
+.navbar[data-bs-theme=dark] {
+  --bs-navbar-color: rgba(255, 255, 255, 0.55);
+  --bs-navbar-hover-color: rgba(255, 255, 255, 0.75);
+  --bs-navbar-disabled-color: rgba(255, 255, 255, 0.25);
+  --bs-navbar-active-color: #fff;
+  --bs-navbar-brand-color: #fff;
+  --bs-navbar-brand-hover-color: #fff;
+  --bs-navbar-toggler-border-color: rgba(255, 255, 255, 0.1);
+  --bs-navbar-toggler-icon-bg: url("data:image/svg+xml,%3csvg xmlns='http://www.w3.org/2000/svg' viewBox='0 0 30 30'%3e%3cpath stroke='rgba%28255, 255, 255, 0.55%29' stroke-linecap='round' stroke-miterlimit='10' stroke-width='2' d='M4 7h22M4 15h22M4 23h22'/%3e%3c/svg%3e");
+}
+
+[data-bs-theme=dark] .navbar-toggler-icon {
+  --bs-navbar-toggler-icon-bg: url("data:image/svg+xml,%3csvg xmlns='http://www.w3.org/2000/svg' viewBox='0 0 30 30'%3e%3cpath stroke='rgba%28255, 255, 255, 0.55%29' stroke-linecap='round' stroke-miterlimit='10' stroke-width='2' d='M4 7h22M4 15h22M4 23h22'/%3e%3c/svg%3e");
+}
+
+.card {
+  --bs-card-spacer-y: 1rem;
+  --bs-card-spacer-x: 1rem;
+  --bs-card-title-spacer-y: 0.5rem;
+  --bs-card-title-color: ;
+  --bs-card-subtitle-color: ;
+  --bs-card-border-width: var(--bs-border-width);
+  --bs-card-border-color: var(--bs-border-color-translucent);
+  --bs-card-border-radius: var(--bs-border-radius);
+  --bs-card-box-shadow: ;
+  --bs-card-inner-border-radius: calc(var(--bs-border-radius) - (var(--bs-border-width)));
+  --bs-card-cap-padding-y: 0.5rem;
+  --bs-card-cap-padding-x: 1rem;
+  --bs-card-cap-bg: rgba(var(--bs-body-color-rgb), 0.03);
+  --bs-card-cap-color: ;
+  --bs-card-height: ;
+  --bs-card-color: ;
+  --bs-card-bg: var(--bs-body-bg);
+  --bs-card-img-overlay-padding: 1rem;
+  --bs-card-group-margin: 0.75rem;
+  position: relative;
+  display: flex;
+  flex-direction: column;
+  min-width: 0;
+  height: var(--bs-card-height);
+  color: var(--bs-body-color);
+  word-wrap: break-word;
+  background-color: var(--bs-card-bg);
+  background-clip: border-box;
+  border: var(--bs-card-border-width) solid var(--bs-card-border-color);
+  border-radius: var(--bs-card-border-radius);
+}
+.card > hr {
+  margin-right: 0;
+  margin-left: 0;
+}
+.card > .list-group {
+  border-top: inherit;
+  border-bottom: inherit;
+}
+.card > .list-group:first-child {
+  border-top-width: 0;
+  border-top-left-radius: var(--bs-card-inner-border-radius);
+  border-top-right-radius: var(--bs-card-inner-border-radius);
+}
+.card > .list-group:last-child {
+  border-bottom-width: 0;
+  border-bottom-right-radius: var(--bs-card-inner-border-radius);
+  border-bottom-left-radius: var(--bs-card-inner-border-radius);
+}
+.card > .card-header + .list-group,
+.card > .list-group + .card-footer {
+  border-top: 0;
+}
+
+.card-body {
+  flex: 1 1 auto;
+  padding: var(--bs-card-spacer-y) var(--bs-card-spacer-x);
+  color: var(--bs-card-color);
+}
+
+.card-title {
+  margin-bottom: var(--bs-card-title-spacer-y);
+  color: var(--bs-card-title-color);
+}
+
+.card-subtitle {
+  margin-top: calc(-0.5 * var(--bs-card-title-spacer-y));
+  margin-bottom: 0;
+  color: var(--bs-card-subtitle-color);
+}
+
+.card-text:last-child {
+  margin-bottom: 0;
+}
+
+.card-link + .card-link {
+  margin-left: var(--bs-card-spacer-x);
+}
+
+.card-header {
+  padding: var(--bs-card-cap-padding-y) var(--bs-card-cap-padding-x);
+  margin-bottom: 0;
+  color: var(--bs-card-cap-color);
+  background-color: var(--bs-card-cap-bg);
+  border-bottom: var(--bs-card-border-width) solid var(--bs-card-border-color);
+}
+.card-header:first-child {
+  border-radius: var(--bs-card-inner-border-radius) var(--bs-card-inner-border-radius) 0 0;
+}
+
+.card-footer {
+  padding: var(--bs-card-cap-padding-y) var(--bs-card-cap-padding-x);
+  color: var(--bs-card-cap-color);
+  background-color: var(--bs-card-cap-bg);
+  border-top: var(--bs-card-border-width) solid var(--bs-card-border-color);
+}
+.card-footer:last-child {
+  border-radius: 0 0 var(--bs-card-inner-border-radius) var(--bs-card-inner-border-radius);
+}
+
+.card-header-tabs {
+  margin-right: calc(-0.5 * var(--bs-card-cap-padding-x));
+  margin-bottom: calc(-1 * var(--bs-card-cap-padding-y));
+  margin-left: calc(-0.5 * var(--bs-card-cap-padding-x));
+  border-bottom: 0;
+}
+.card-header-tabs .nav-link.active {
+  background-color: var(--bs-card-bg);
+  border-bottom-color: var(--bs-card-bg);
+}
+
+.card-header-pills {
+  margin-right: calc(-0.5 * var(--bs-card-cap-padding-x));
+  margin-left: calc(-0.5 * var(--bs-card-cap-padding-x));
+}
+
+.card-img-overlay {
+  position: absolute;
+  top: 0;
+  right: 0;
+  bottom: 0;
+  left: 0;
+  padding: var(--bs-card-img-overlay-padding);
+  border-radius: var(--bs-card-inner-border-radius);
+}
+
+.card-img,
+.card-img-top,
+.card-img-bottom {
+  width: 100%;
+}
+
+.card-img,
+.card-img-top {
+  border-top-left-radius: var(--bs-card-inner-border-radius);
+  border-top-right-radius: var(--bs-card-inner-border-radius);
+}
+
+.card-img,
+.card-img-bottom {
+  border-bottom-right-radius: var(--bs-card-inner-border-radius);
+  border-bottom-left-radius: var(--bs-card-inner-border-radius);
+}
+
+.card-group > .card {
+  margin-bottom: var(--bs-card-group-margin);
+}
+@media (min-width: 576px) {
+  .card-group {
+    display: flex;
+    flex-flow: row wrap;
+  }
+  .card-group > .card {
+    flex: 1 0 0%;
+    margin-bottom: 0;
+  }
+  .card-group > .card + .card {
+    margin-left: 0;
+    border-left: 0;
+  }
+  .card-group > .card:not(:last-child) {
+    border-top-right-radius: 0;
+    border-bottom-right-radius: 0;
+  }
+  .card-group > .card:not(:last-child) .card-img-top,
+  .card-group > .card:not(:last-child) .card-header {
+    border-top-right-radius: 0;
+  }
+  .card-group > .card:not(:last-child) .card-img-bottom,
+  .card-group > .card:not(:last-child) .card-footer {
+    border-bottom-right-radius: 0;
+  }
+  .card-group > .card:not(:first-child) {
+    border-top-left-radius: 0;
+    border-bottom-left-radius: 0;
+  }
+  .card-group > .card:not(:first-child) .card-img-top,
+  .card-group > .card:not(:first-child) .card-header {
+    border-top-left-radius: 0;
+  }
+  .card-group > .card:not(:first-child) .card-img-bottom,
+  .card-group > .card:not(:first-child) .card-footer {
+    border-bottom-left-radius: 0;
+  }
+}
+
+.accordion {
+  --bs-accordion-color: var(--bs-body-color);
+  --bs-accordion-bg: var(--bs-body-bg);
+  --bs-accordion-transition: color 0.15s ease-in-out, background-color 0.15s ease-in-out, border-color 0.15s ease-in-out, box-shadow 0.15s ease-in-out, border-radius 0.15s ease;
+  --bs-accordion-border-color: var(--bs-border-color);
+  --bs-accordion-border-width: var(--bs-border-width);
+  --bs-accordion-border-radius: var(--bs-border-radius);
+  --bs-accordion-inner-border-radius: calc(var(--bs-border-radius) - (var(--bs-border-width)));
+  --bs-accordion-btn-padding-x: 1.25rem;
+  --bs-accordion-btn-padding-y: 1rem;
+  --bs-accordion-btn-color: var(--bs-body-color);
+  --bs-accordion-btn-bg: var(--bs-accordion-bg);
+  --bs-accordion-btn-icon: url("data:image/svg+xml,%3csvg xmlns='http://www.w3.org/2000/svg' viewBox='0 0 16 16' fill='%23212529'%3e%3cpath fill-rule='evenodd' d='M1.646 4.646a.5.5 0 0 1 .708 0L8 10.293l5.646-5.647a.5.5 0 0 1 .708.708l-6 6a.5.5 0 0 1-.708 0l-6-6a.5.5 0 0 1 0-.708z'/%3e%3c/svg%3e");
+  --bs-accordion-btn-icon-width: 1.25rem;
+  --bs-accordion-btn-icon-transform: rotate(-180deg);
+  --bs-accordion-btn-icon-transition: transform 0.2s ease-in-out;
+  --bs-accordion-btn-active-icon: url("data:image/svg+xml,%3csvg xmlns='http://www.w3.org/2000/svg' viewBox='0 0 16 16' fill='%23052c65'%3e%3cpath fill-rule='evenodd' d='M1.646 4.646a.5.5 0 0 1 .708 0L8 10.293l5.646-5.647a.5.5 0 0 1 .708.708l-6 6a.5.5 0 0 1-.708 0l-6-6a.5.5 0 0 1 0-.708z'/%3e%3c/svg%3e");
+  --bs-accordion-btn-focus-border-color: #86b7fe;
+  --bs-accordion-btn-focus-box-shadow: 0 0 0 0.25rem rgba(13, 110, 253, 0.25);
+  --bs-accordion-body-padding-x: 1.25rem;
+  --bs-accordion-body-padding-y: 1rem;
+  --bs-accordion-active-color: var(--bs-primary-text-emphasis);
+  --bs-accordion-active-bg: var(--bs-primary-bg-subtle);
+}
+
+.accordion-button {
+  position: relative;
+  display: flex;
+  align-items: center;
+  width: 100%;
+  padding: var(--bs-accordion-btn-padding-y) var(--bs-accordion-btn-padding-x);
+  font-size: 1rem;
+  color: var(--bs-accordion-btn-color);
+  text-align: left;
+  background-color: var(--bs-accordion-btn-bg);
+  border: 0;
+  border-radius: 0;
+  overflow-anchor: none;
+  transition: var(--bs-accordion-transition);
+}
+@media (prefers-reduced-motion: reduce) {
+  .accordion-button {
+    transition: none;
+  }
+}
+.accordion-button:not(.collapsed) {
+  color: var(--bs-accordion-active-color);
+  background-color: var(--bs-accordion-active-bg);
+  box-shadow: inset 0 calc(-1 * var(--bs-accordion-border-width)) 0 var(--bs-accordion-border-color);
+}
+.accordion-button:not(.collapsed)::after {
+  background-image: var(--bs-accordion-btn-active-icon);
+  transform: var(--bs-accordion-btn-icon-transform);
+}
+.accordion-button::after {
+  flex-shrink: 0;
+  width: var(--bs-accordion-btn-icon-width);
+  height: var(--bs-accordion-btn-icon-width);
+  margin-left: auto;
+  content: "";
+  background-image: var(--bs-accordion-btn-icon);
+  background-repeat: no-repeat;
+  background-size: var(--bs-accordion-btn-icon-width);
+  transition: var(--bs-accordion-btn-icon-transition);
+}
+@media (prefers-reduced-motion: reduce) {
+  .accordion-button::after {
+    transition: none;
+  }
+}
+.accordion-button:hover {
+  z-index: 2;
+}
+.accordion-button:focus {
+  z-index: 3;
+  border-color: var(--bs-accordion-btn-focus-border-color);
+  outline: 0;
+  box-shadow: var(--bs-accordion-btn-focus-box-shadow);
+}
+
+.accordion-header {
+  margin-bottom: 0;
+}
+
+.accordion-item {
+  color: var(--bs-accordion-color);
+  background-color: var(--bs-accordion-bg);
+  border: var(--bs-accordion-border-width) solid var(--bs-accordion-border-color);
+}
+.accordion-item:first-of-type {
+  border-top-left-radius: var(--bs-accordion-border-radius);
+  border-top-right-radius: var(--bs-accordion-border-radius);
+}
+.accordion-item:first-of-type .accordion-button {
+  border-top-left-radius: var(--bs-accordion-inner-border-radius);
+  border-top-right-radius: var(--bs-accordion-inner-border-radius);
+}
+.accordion-item:not(:first-of-type) {
+  border-top: 0;
+}
+.accordion-item:last-of-type {
+  border-bottom-right-radius: var(--bs-accordion-border-radius);
+  border-bottom-left-radius: var(--bs-accordion-border-radius);
+}
+.accordion-item:last-of-type .accordion-button.collapsed {
+  border-bottom-right-radius: var(--bs-accordion-inner-border-radius);
+  border-bottom-left-radius: var(--bs-accordion-inner-border-radius);
+}
+.accordion-item:last-of-type .accordion-collapse {
+  border-bottom-right-radius: var(--bs-accordion-border-radius);
+  border-bottom-left-radius: var(--bs-accordion-border-radius);
+}
+
+.accordion-body {
+  padding: var(--bs-accordion-body-padding-y) var(--bs-accordion-body-padding-x);
+}
+
+.accordion-flush .accordion-collapse {
+  border-width: 0;
+}
+.accordion-flush .accordion-item {
+  border-right: 0;
+  border-left: 0;
+  border-radius: 0;
+}
+.accordion-flush .accordion-item:first-child {
+  border-top: 0;
+}
+.accordion-flush .accordion-item:last-child {
+  border-bottom: 0;
+}
+.accordion-flush .accordion-item .accordion-button, .accordion-flush .accordion-item .accordion-button.collapsed {
+  border-radius: 0;
+}
+
+[data-bs-theme=dark] .accordion-button::after {
+  --bs-accordion-btn-icon: url("data:image/svg+xml,%3csvg xmlns='http://www.w3.org/2000/svg' viewBox='0 0 16 16' fill='%236ea8fe'%3e%3cpath fill-rule='evenodd' d='M1.646 4.646a.5.5 0 0 1 .708 0L8 10.293l5.646-5.647a.5.5 0 0 1 .708.708l-6 6a.5.5 0 0 1-.708 0l-6-6a.5.5 0 0 1 0-.708z'/%3e%3c/svg%3e");
+  --bs-accordion-btn-active-icon: url("data:image/svg+xml,%3csvg xmlns='http://www.w3.org/2000/svg' viewBox='0 0 16 16' fill='%236ea8fe'%3e%3cpath fill-rule='evenodd' d='M1.646 4.646a.5.5 0 0 1 .708 0L8 10.293l5.646-5.647a.5.5 0 0 1 .708.708l-6 6a.5.5 0 0 1-.708 0l-6-6a.5.5 0 0 1 0-.708z'/%3e%3c/svg%3e");
+}
+
+.breadcrumb {
+  --bs-breadcrumb-padding-x: 0;
+  --bs-breadcrumb-padding-y: 0;
+  --bs-breadcrumb-margin-bottom: 1rem;
+  --bs-breadcrumb-bg: ;
+  --bs-breadcrumb-border-radius: ;
+  --bs-breadcrumb-divider-color: var(--bs-secondary-color);
+  --bs-breadcrumb-item-padding-x: 0.5rem;
+  --bs-breadcrumb-item-active-color: var(--bs-secondary-color);
+  display: flex;
+  flex-wrap: wrap;
+  padding: var(--bs-breadcrumb-padding-y) var(--bs-breadcrumb-padding-x);
+  margin-bottom: var(--bs-breadcrumb-margin-bottom);
+  font-size: var(--bs-breadcrumb-font-size);
+  list-style: none;
+  background-color: var(--bs-breadcrumb-bg);
+  border-radius: var(--bs-breadcrumb-border-radius);
+}
+
+.breadcrumb-item + .breadcrumb-item {
+  padding-left: var(--bs-breadcrumb-item-padding-x);
+}
+.breadcrumb-item + .breadcrumb-item::before {
+  float: left;
+  padding-right: var(--bs-breadcrumb-item-padding-x);
+  color: var(--bs-breadcrumb-divider-color);
+  content: var(--bs-breadcrumb-divider, "/") /* rtl: var(--bs-breadcrumb-divider, "/") */;
+}
+.breadcrumb-item.active {
+  color: var(--bs-breadcrumb-item-active-color);
+}
+
+.pagination {
+  --bs-pagination-padding-x: 0.75rem;
+  --bs-pagination-padding-y: 0.375rem;
+  --bs-pagination-font-size: 1rem;
+  --bs-pagination-color: var(--bs-link-color);
+  --bs-pagination-bg: var(--bs-body-bg);
+  --bs-pagination-border-width: var(--bs-border-width);
+  --bs-pagination-border-color: var(--bs-border-color);
+  --bs-pagination-border-radius: var(--bs-border-radius);
+  --bs-pagination-hover-color: var(--bs-link-hover-color);
+  --bs-pagination-hover-bg: var(--bs-tertiary-bg);
+  --bs-pagination-hover-border-color: var(--bs-border-color);
+  --bs-pagination-focus-color: var(--bs-link-hover-color);
+  --bs-pagination-focus-bg: var(--bs-secondary-bg);
+  --bs-pagination-focus-box-shadow: 0 0 0 0.25rem rgba(13, 110, 253, 0.25);
+  --bs-pagination-active-color: #fff;
+  --bs-pagination-active-bg: #0d6efd;
+  --bs-pagination-active-border-color: #0d6efd;
+  --bs-pagination-disabled-color: var(--bs-secondary-color);
+  --bs-pagination-disabled-bg: var(--bs-secondary-bg);
+  --bs-pagination-disabled-border-color: var(--bs-border-color);
+  display: flex;
+  padding-left: 0;
+  list-style: none;
+}
+
+.page-link {
+  position: relative;
+  display: block;
+  padding: var(--bs-pagination-padding-y) var(--bs-pagination-padding-x);
+  font-size: var(--bs-pagination-font-size);
+  color: var(--bs-pagination-color);
+  text-decoration: none;
+  background-color: var(--bs-pagination-bg);
+  border: var(--bs-pagination-border-width) solid var(--bs-pagination-border-color);
+  transition: color 0.15s ease-in-out, background-color 0.15s ease-in-out, border-color 0.15s ease-in-out, box-shadow 0.15s ease-in-out;
+}
+@media (prefers-reduced-motion: reduce) {
+  .page-link {
+    transition: none;
+  }
+}
+.page-link:hover {
+  z-index: 2;
+  color: var(--bs-pagination-hover-color);
+  background-color: var(--bs-pagination-hover-bg);
+  border-color: var(--bs-pagination-hover-border-color);
+}
+.page-link:focus {
+  z-index: 3;
+  color: var(--bs-pagination-focus-color);
+  background-color: var(--bs-pagination-focus-bg);
+  outline: 0;
+  box-shadow: var(--bs-pagination-focus-box-shadow);
+}
+.page-link.active, .active > .page-link {
+  z-index: 3;
+  color: var(--bs-pagination-active-color);
+  background-color: var(--bs-pagination-active-bg);
+  border-color: var(--bs-pagination-active-border-color);
+}
+.page-link.disabled, .disabled > .page-link {
+  color: var(--bs-pagination-disabled-color);
+  pointer-events: none;
+  background-color: var(--bs-pagination-disabled-bg);
+  border-color: var(--bs-pagination-disabled-border-color);
+}
+
+.page-item:not(:first-child) .page-link {
+  margin-left: calc(var(--bs-border-width) * -1);
+}
+.page-item:first-child .page-link {
+  border-top-left-radius: var(--bs-pagination-border-radius);
+  border-bottom-left-radius: var(--bs-pagination-border-radius);
+}
+.page-item:last-child .page-link {
+  border-top-right-radius: var(--bs-pagination-border-radius);
+  border-bottom-right-radius: var(--bs-pagination-border-radius);
+}
+
+.pagination-lg {
+  --bs-pagination-padding-x: 1.5rem;
+  --bs-pagination-padding-y: 0.75rem;
+  --bs-pagination-font-size: 1.25rem;
+  --bs-pagination-border-radius: var(--bs-border-radius-lg);
+}
+
+.pagination-sm {
+  --bs-pagination-padding-x: 0.5rem;
+  --bs-pagination-padding-y: 0.25rem;
+  --bs-pagination-font-size: 0.875rem;
+  --bs-pagination-border-radius: var(--bs-border-radius-sm);
+}
+
+.badge {
+  --bs-badge-padding-x: 0.65em;
+  --bs-badge-padding-y: 0.35em;
+  --bs-badge-font-size: 0.75em;
+  --bs-badge-font-weight: 700;
+  --bs-badge-color: #fff;
+  --bs-badge-border-radius: var(--bs-border-radius);
+  display: inline-block;
+  padding: var(--bs-badge-padding-y) var(--bs-badge-padding-x);
+  font-size: var(--bs-badge-font-size);
+  font-weight: var(--bs-badge-font-weight);
+  line-height: 1;
+  color: var(--bs-badge-color);
+  text-align: center;
+  white-space: nowrap;
+  vertical-align: baseline;
+  border-radius: var(--bs-badge-border-radius);
+}
+.badge:empty {
+  display: none;
+}
+
+.btn .badge {
+  position: relative;
+  top: -1px;
+}
+
+.alert {
+  --bs-alert-bg: transparent;
+  --bs-alert-padding-x: 1rem;
+  --bs-alert-padding-y: 1rem;
+  --bs-alert-margin-bottom: 1rem;
+  --bs-alert-color: inherit;
+  --bs-alert-border-color: transparent;
+  --bs-alert-border: var(--bs-border-width) solid var(--bs-alert-border-color);
+  --bs-alert-border-radius: var(--bs-border-radius);
+  --bs-alert-link-color: inherit;
+  position: relative;
+  padding: var(--bs-alert-padding-y) var(--bs-alert-padding-x);
+  margin-bottom: var(--bs-alert-margin-bottom);
+  color: var(--bs-alert-color);
+  background-color: var(--bs-alert-bg);
+  border: var(--bs-alert-border);
+  border-radius: var(--bs-alert-border-radius);
+}
+
+.alert-heading {
+  color: inherit;
+}
+
+.alert-link {
+  font-weight: 700;
+  color: var(--bs-alert-link-color);
+}
+
+.alert-dismissible {
+  padding-right: 3rem;
+}
+.alert-dismissible .btn-close {
+  position: absolute;
+  top: 0;
+  right: 0;
+  z-index: 2;
+  padding: 1.25rem 1rem;
+}
+
+.alert-primary {
+  --bs-alert-color: var(--bs-primary-text-emphasis);
+  --bs-alert-bg: var(--bs-primary-bg-subtle);
+  --bs-alert-border-color: var(--bs-primary-border-subtle);
+  --bs-alert-link-color: var(--bs-primary-text-emphasis);
+}
+
+.alert-secondary {
+  --bs-alert-color: var(--bs-secondary-text-emphasis);
+  --bs-alert-bg: var(--bs-secondary-bg-subtle);
+  --bs-alert-border-color: var(--bs-secondary-border-subtle);
+  --bs-alert-link-color: var(--bs-secondary-text-emphasis);
+}
+
+.alert-success {
+  --bs-alert-color: var(--bs-success-text-emphasis);
+  --bs-alert-bg: var(--bs-success-bg-subtle);
+  --bs-alert-border-color: var(--bs-success-border-subtle);
+  --bs-alert-link-color: var(--bs-success-text-emphasis);
+}
+
+.alert-info {
+  --bs-alert-color: var(--bs-info-text-emphasis);
+  --bs-alert-bg: var(--bs-info-bg-subtle);
+  --bs-alert-border-color: var(--bs-info-border-subtle);
+  --bs-alert-link-color: var(--bs-info-text-emphasis);
+}
+
+.alert-warning {
+  --bs-alert-color: var(--bs-warning-text-emphasis);
+  --bs-alert-bg: var(--bs-warning-bg-subtle);
+  --bs-alert-border-color: var(--bs-warning-border-subtle);
+  --bs-alert-link-color: var(--bs-warning-text-emphasis);
+}
+
+.alert-danger {
+  --bs-alert-color: var(--bs-danger-text-emphasis);
+  --bs-alert-bg: var(--bs-danger-bg-subtle);
+  --bs-alert-border-color: var(--bs-danger-border-subtle);
+  --bs-alert-link-color: var(--bs-danger-text-emphasis);
+}
+
+.alert-light {
+  --bs-alert-color: var(--bs-light-text-emphasis);
+  --bs-alert-bg: var(--bs-light-bg-subtle);
+  --bs-alert-border-color: var(--bs-light-border-subtle);
+  --bs-alert-link-color: var(--bs-light-text-emphasis);
+}
+
+.alert-dark {
+  --bs-alert-color: var(--bs-dark-text-emphasis);
+  --bs-alert-bg: var(--bs-dark-bg-subtle);
+  --bs-alert-border-color: var(--bs-dark-border-subtle);
+  --bs-alert-link-color: var(--bs-dark-text-emphasis);
+}
+
+@keyframes progress-bar-stripes {
+  0% {
+    background-position-x: 1rem;
+  }
+}
+.progress,
+.progress-stacked {
+  --bs-progress-height: 1rem;
+  --bs-progress-font-size: 0.75rem;
+  --bs-progress-bg: var(--bs-secondary-bg);
+  --bs-progress-border-radius: var(--bs-border-radius);
+  --bs-progress-box-shadow: var(--bs-box-shadow-inset);
+  --bs-progress-bar-color: #fff;
+  --bs-progress-bar-bg: #0d6efd;
+  --bs-progress-bar-transition: width 0.6s ease;
+  display: flex;
+  height: var(--bs-progress-height);
+  overflow: hidden;
+  font-size: var(--bs-progress-font-size);
+  background-color: var(--bs-progress-bg);
+  border-radius: var(--bs-progress-border-radius);
+}
+
+.progress-bar {
+  display: flex;
+  flex-direction: column;
+  justify-content: center;
+  overflow: hidden;
+  color: var(--bs-progress-bar-color);
+  text-align: center;
+  white-space: nowrap;
+  background-color: var(--bs-progress-bar-bg);
+  transition: var(--bs-progress-bar-transition);
+}
+@media (prefers-reduced-motion: reduce) {
+  .progress-bar {
+    transition: none;
+  }
+}
+
+.progress-bar-striped {
+  background-image: linear-gradient(45deg, rgba(255, 255, 255, 0.15) 25%, transparent 25%, transparent 50%, rgba(255, 255, 255, 0.15) 50%, rgba(255, 255, 255, 0.15) 75%, transparent 75%, transparent);
+  background-size: var(--bs-progress-height) var(--bs-progress-height);
+}
+
+.progress-stacked > .progress {
+  overflow: visible;
+}
+
+.progress-stacked > .progress > .progress-bar {
+  width: 100%;
+}
+
+.progress-bar-animated {
+  animation: 1s linear infinite progress-bar-stripes;
+}
+@media (prefers-reduced-motion: reduce) {
+  .progress-bar-animated {
+    animation: none;
+  }
+}
+
+.list-group {
+  --bs-list-group-color: var(--bs-body-color);
+  --bs-list-group-bg: var(--bs-body-bg);
+  --bs-list-group-border-color: var(--bs-border-color);
+  --bs-list-group-border-width: var(--bs-border-width);
+  --bs-list-group-border-radius: var(--bs-border-radius);
+  --bs-list-group-item-padding-x: 1rem;
+  --bs-list-group-item-padding-y: 0.5rem;
+  --bs-list-group-action-color: var(--bs-secondary-color);
+  --bs-list-group-action-hover-color: var(--bs-emphasis-color);
+  --bs-list-group-action-hover-bg: var(--bs-tertiary-bg);
+  --bs-list-group-action-active-color: var(--bs-body-color);
+  --bs-list-group-action-active-bg: var(--bs-secondary-bg);
+  --bs-list-group-disabled-color: var(--bs-secondary-color);
+  --bs-list-group-disabled-bg: var(--bs-body-bg);
+  --bs-list-group-active-color: #fff;
+  --bs-list-group-active-bg: #0d6efd;
+  --bs-list-group-active-border-color: #0d6efd;
+  display: flex;
+  flex-direction: column;
+  padding-left: 0;
+  margin-bottom: 0;
+  border-radius: var(--bs-list-group-border-radius);
+}
+
+.list-group-numbered {
+  list-style-type: none;
+  counter-reset: section;
+}
+.list-group-numbered > .list-group-item::before {
+  content: counters(section, ".") ". ";
+  counter-increment: section;
+}
+
+.list-group-item-action {
+  width: 100%;
+  color: var(--bs-list-group-action-color);
+  text-align: inherit;
+}
+.list-group-item-action:hover, .list-group-item-action:focus {
+  z-index: 1;
+  color: var(--bs-list-group-action-hover-color);
+  text-decoration: none;
+  background-color: var(--bs-list-group-action-hover-bg);
+}
+.list-group-item-action:active {
+  color: var(--bs-list-group-action-active-color);
+  background-color: var(--bs-list-group-action-active-bg);
+}
+
+.list-group-item {
+  position: relative;
+  display: block;
+  padding: var(--bs-list-group-item-padding-y) var(--bs-list-group-item-padding-x);
+  color: var(--bs-list-group-color);
+  text-decoration: none;
+  background-color: var(--bs-list-group-bg);
+  border: var(--bs-list-group-border-width) solid var(--bs-list-group-border-color);
+}
+.list-group-item:first-child {
+  border-top-left-radius: inherit;
+  border-top-right-radius: inherit;
+}
+.list-group-item:last-child {
+  border-bottom-right-radius: inherit;
+  border-bottom-left-radius: inherit;
+}
+.list-group-item.disabled, .list-group-item:disabled {
+  color: var(--bs-list-group-disabled-color);
+  pointer-events: none;
+  background-color: var(--bs-list-group-disabled-bg);
+}
+.list-group-item.active {
+  z-index: 2;
+  color: var(--bs-list-group-active-color);
+  background-color: var(--bs-list-group-active-bg);
+  border-color: var(--bs-list-group-active-border-color);
+}
+.list-group-item + .list-group-item {
+  border-top-width: 0;
+}
+.list-group-item + .list-group-item.active {
+  margin-top: calc(-1 * var(--bs-list-group-border-width));
+  border-top-width: var(--bs-list-group-border-width);
+}
+
+.list-group-horizontal {
+  flex-direction: row;
+}
+.list-group-horizontal > .list-group-item:first-child:not(:last-child) {
+  border-bottom-left-radius: var(--bs-list-group-border-radius);
+  border-top-right-radius: 0;
+}
+.list-group-horizontal > .list-group-item:last-child:not(:first-child) {
+  border-top-right-radius: var(--bs-list-group-border-radius);
+  border-bottom-left-radius: 0;
+}
+.list-group-horizontal > .list-group-item.active {
+  margin-top: 0;
+}
+.list-group-horizontal > .list-group-item + .list-group-item {
+  border-top-width: var(--bs-list-group-border-width);
+  border-left-width: 0;
+}
+.list-group-horizontal > .list-group-item + .list-group-item.active {
+  margin-left: calc(-1 * var(--bs-list-group-border-width));
+  border-left-width: var(--bs-list-group-border-width);
+}
+
+@media (min-width: 576px) {
+  .list-group-horizontal-sm {
+    flex-direction: row;
+  }
+  .list-group-horizontal-sm > .list-group-item:first-child:not(:last-child) {
+    border-bottom-left-radius: var(--bs-list-group-border-radius);
+    border-top-right-radius: 0;
+  }
+  .list-group-horizontal-sm > .list-group-item:last-child:not(:first-child) {
+    border-top-right-radius: var(--bs-list-group-border-radius);
+    border-bottom-left-radius: 0;
+  }
+  .list-group-horizontal-sm > .list-group-item.active {
+    margin-top: 0;
+  }
+  .list-group-horizontal-sm > .list-group-item + .list-group-item {
+    border-top-width: var(--bs-list-group-border-width);
+    border-left-width: 0;
+  }
+  .list-group-horizontal-sm > .list-group-item + .list-group-item.active {
+    margin-left: calc(-1 * var(--bs-list-group-border-width));
+    border-left-width: var(--bs-list-group-border-width);
+  }
+}
+@media (min-width: 768px) {
+  .list-group-horizontal-md {
+    flex-direction: row;
+  }
+  .list-group-horizontal-md > .list-group-item:first-child:not(:last-child) {
+    border-bottom-left-radius: var(--bs-list-group-border-radius);
+    border-top-right-radius: 0;
+  }
+  .list-group-horizontal-md > .list-group-item:last-child:not(:first-child) {
+    border-top-right-radius: var(--bs-list-group-border-radius);
+    border-bottom-left-radius: 0;
+  }
+  .list-group-horizontal-md > .list-group-item.active {
+    margin-top: 0;
+  }
+  .list-group-horizontal-md > .list-group-item + .list-group-item {
+    border-top-width: var(--bs-list-group-border-width);
+    border-left-width: 0;
+  }
+  .list-group-horizontal-md > .list-group-item + .list-group-item.active {
+    margin-left: calc(-1 * var(--bs-list-group-border-width));
+    border-left-width: var(--bs-list-group-border-width);
+  }
+}
+@media (min-width: 992px) {
+  .list-group-horizontal-lg {
+    flex-direction: row;
+  }
+  .list-group-horizontal-lg > .list-group-item:first-child:not(:last-child) {
+    border-bottom-left-radius: var(--bs-list-group-border-radius);
+    border-top-right-radius: 0;
+  }
+  .list-group-horizontal-lg > .list-group-item:last-child:not(:first-child) {
+    border-top-right-radius: var(--bs-list-group-border-radius);
+    border-bottom-left-radius: 0;
+  }
+  .list-group-horizontal-lg > .list-group-item.active {
+    margin-top: 0;
+  }
+  .list-group-horizontal-lg > .list-group-item + .list-group-item {
+    border-top-width: var(--bs-list-group-border-width);
+    border-left-width: 0;
+  }
+  .list-group-horizontal-lg > .list-group-item + .list-group-item.active {
+    margin-left: calc(-1 * var(--bs-list-group-border-width));
+    border-left-width: var(--bs-list-group-border-width);
+  }
+}
+@media (min-width: 1200px) {
+  .list-group-horizontal-xl {
+    flex-direction: row;
+  }
+  .list-group-horizontal-xl > .list-group-item:first-child:not(:last-child) {
+    border-bottom-left-radius: var(--bs-list-group-border-radius);
+    border-top-right-radius: 0;
+  }
+  .list-group-horizontal-xl > .list-group-item:last-child:not(:first-child) {
+    border-top-right-radius: var(--bs-list-group-border-radius);
+    border-bottom-left-radius: 0;
+  }
+  .list-group-horizontal-xl > .list-group-item.active {
+    margin-top: 0;
+  }
+  .list-group-horizontal-xl > .list-group-item + .list-group-item {
+    border-top-width: var(--bs-list-group-border-width);
+    border-left-width: 0;
+  }
+  .list-group-horizontal-xl > .list-group-item + .list-group-item.active {
+    margin-left: calc(-1 * var(--bs-list-group-border-width));
+    border-left-width: var(--bs-list-group-border-width);
+  }
+}
+@media (min-width: 1400px) {
+  .list-group-horizontal-xxl {
+    flex-direction: row;
+  }
+  .list-group-horizontal-xxl > .list-group-item:first-child:not(:last-child) {
+    border-bottom-left-radius: var(--bs-list-group-border-radius);
+    border-top-right-radius: 0;
+  }
+  .list-group-horizontal-xxl > .list-group-item:last-child:not(:first-child) {
+    border-top-right-radius: var(--bs-list-group-border-radius);
+    border-bottom-left-radius: 0;
+  }
+  .list-group-horizontal-xxl > .list-group-item.active {
+    margin-top: 0;
+  }
+  .list-group-horizontal-xxl > .list-group-item + .list-group-item {
+    border-top-width: var(--bs-list-group-border-width);
+    border-left-width: 0;
+  }
+  .list-group-horizontal-xxl > .list-group-item + .list-group-item.active {
+    margin-left: calc(-1 * var(--bs-list-group-border-width));
+    border-left-width: var(--bs-list-group-border-width);
+  }
+}
+.list-group-flush {
+  border-radius: 0;
+}
+.list-group-flush > .list-group-item {
+  border-width: 0 0 var(--bs-list-group-border-width);
+}
+.list-group-flush > .list-group-item:last-child {
+  border-bottom-width: 0;
+}
+
+.list-group-item-primary {
+  --bs-list-group-color: var(--bs-primary-text-emphasis);
+  --bs-list-group-bg: var(--bs-primary-bg-subtle);
+  --bs-list-group-border-color: var(--bs-primary-border-subtle);
+  --bs-list-group-action-hover-color: var(--bs-emphasis-color);
+  --bs-list-group-action-hover-bg: var(--bs-primary-border-subtle);
+  --bs-list-group-action-active-color: var(--bs-emphasis-color);
+  --bs-list-group-action-active-bg: var(--bs-primary-border-subtle);
+  --bs-list-group-active-color: var(--bs-primary-bg-subtle);
+  --bs-list-group-active-bg: var(--bs-primary-text-emphasis);
+  --bs-list-group-active-border-color: var(--bs-primary-text-emphasis);
+}
+
+.list-group-item-secondary {
+  --bs-list-group-color: var(--bs-secondary-text-emphasis);
+  --bs-list-group-bg: var(--bs-secondary-bg-subtle);
+  --bs-list-group-border-color: var(--bs-secondary-border-subtle);
+  --bs-list-group-action-hover-color: var(--bs-emphasis-color);
+  --bs-list-group-action-hover-bg: var(--bs-secondary-border-subtle);
+  --bs-list-group-action-active-color: var(--bs-emphasis-color);
+  --bs-list-group-action-active-bg: var(--bs-secondary-border-subtle);
+  --bs-list-group-active-color: var(--bs-secondary-bg-subtle);
+  --bs-list-group-active-bg: var(--bs-secondary-text-emphasis);
+  --bs-list-group-active-border-color: var(--bs-secondary-text-emphasis);
+}
+
+.list-group-item-success {
+  --bs-list-group-color: var(--bs-success-text-emphasis);
+  --bs-list-group-bg: var(--bs-success-bg-subtle);
+  --bs-list-group-border-color: var(--bs-success-border-subtle);
+  --bs-list-group-action-hover-color: var(--bs-emphasis-color);
+  --bs-list-group-action-hover-bg: var(--bs-success-border-subtle);
+  --bs-list-group-action-active-color: var(--bs-emphasis-color);
+  --bs-list-group-action-active-bg: var(--bs-success-border-subtle);
+  --bs-list-group-active-color: var(--bs-success-bg-subtle);
+  --bs-list-group-active-bg: var(--bs-success-text-emphasis);
+  --bs-list-group-active-border-color: var(--bs-success-text-emphasis);
+}
+
+.list-group-item-info {
+  --bs-list-group-color: var(--bs-info-text-emphasis);
+  --bs-list-group-bg: var(--bs-info-bg-subtle);
+  --bs-list-group-border-color: var(--bs-info-border-subtle);
+  --bs-list-group-action-hover-color: var(--bs-emphasis-color);
+  --bs-list-group-action-hover-bg: var(--bs-info-border-subtle);
+  --bs-list-group-action-active-color: var(--bs-emphasis-color);
+  --bs-list-group-action-active-bg: var(--bs-info-border-subtle);
+  --bs-list-group-active-color: var(--bs-info-bg-subtle);
+  --bs-list-group-active-bg: var(--bs-info-text-emphasis);
+  --bs-list-group-active-border-color: var(--bs-info-text-emphasis);
+}
+
+.list-group-item-warning {
+  --bs-list-group-color: var(--bs-warning-text-emphasis);
+  --bs-list-group-bg: var(--bs-warning-bg-subtle);
+  --bs-list-group-border-color: var(--bs-warning-border-subtle);
+  --bs-list-group-action-hover-color: var(--bs-emphasis-color);
+  --bs-list-group-action-hover-bg: var(--bs-warning-border-subtle);
+  --bs-list-group-action-active-color: var(--bs-emphasis-color);
+  --bs-list-group-action-active-bg: var(--bs-warning-border-subtle);
+  --bs-list-group-active-color: var(--bs-warning-bg-subtle);
+  --bs-list-group-active-bg: var(--bs-warning-text-emphasis);
+  --bs-list-group-active-border-color: var(--bs-warning-text-emphasis);
+}
+
+.list-group-item-danger {
+  --bs-list-group-color: var(--bs-danger-text-emphasis);
+  --bs-list-group-bg: var(--bs-danger-bg-subtle);
+  --bs-list-group-border-color: var(--bs-danger-border-subtle);
+  --bs-list-group-action-hover-color: var(--bs-emphasis-color);
+  --bs-list-group-action-hover-bg: var(--bs-danger-border-subtle);
+  --bs-list-group-action-active-color: var(--bs-emphasis-color);
+  --bs-list-group-action-active-bg: var(--bs-danger-border-subtle);
+  --bs-list-group-active-color: var(--bs-danger-bg-subtle);
+  --bs-list-group-active-bg: var(--bs-danger-text-emphasis);
+  --bs-list-group-active-border-color: var(--bs-danger-text-emphasis);
+}
+
+.list-group-item-light {
+  --bs-list-group-color: var(--bs-light-text-emphasis);
+  --bs-list-group-bg: var(--bs-light-bg-subtle);
+  --bs-list-group-border-color: var(--bs-light-border-subtle);
+  --bs-list-group-action-hover-color: var(--bs-emphasis-color);
+  --bs-list-group-action-hover-bg: var(--bs-light-border-subtle);
+  --bs-list-group-action-active-color: var(--bs-emphasis-color);
+  --bs-list-group-action-active-bg: var(--bs-light-border-subtle);
+  --bs-list-group-active-color: var(--bs-light-bg-subtle);
+  --bs-list-group-active-bg: var(--bs-light-text-emphasis);
+  --bs-list-group-active-border-color: var(--bs-light-text-emphasis);
+}
+
+.list-group-item-dark {
+  --bs-list-group-color: var(--bs-dark-text-emphasis);
+  --bs-list-group-bg: var(--bs-dark-bg-subtle);
+  --bs-list-group-border-color: var(--bs-dark-border-subtle);
+  --bs-list-group-action-hover-color: var(--bs-emphasis-color);
+  --bs-list-group-action-hover-bg: var(--bs-dark-border-subtle);
+  --bs-list-group-action-active-color: var(--bs-emphasis-color);
+  --bs-list-group-action-active-bg: var(--bs-dark-border-subtle);
+  --bs-list-group-active-color: var(--bs-dark-bg-subtle);
+  --bs-list-group-active-bg: var(--bs-dark-text-emphasis);
+  --bs-list-group-active-border-color: var(--bs-dark-text-emphasis);
+}
+
+.btn-close {
+  --bs-btn-close-color: #000;
+  --bs-btn-close-bg: url("data:image/svg+xml,%3csvg xmlns='http://www.w3.org/2000/svg' viewBox='0 0 16 16' fill='%23000'%3e%3cpath d='M.293.293a1 1 0 0 1 1.414 0L8 6.586 14.293.293a1 1 0 1 1 1.414 1.414L9.414 8l6.293 6.293a1 1 0 0 1-1.414 1.414L8 9.414l-6.293 6.293a1 1 0 0 1-1.414-1.414L6.586 8 .293 1.707a1 1 0 0 1 0-1.414z'/%3e%3c/svg%3e");
+  --bs-btn-close-opacity: 0.5;
+  --bs-btn-close-hover-opacity: 0.75;
+  --bs-btn-close-focus-shadow: 0 0 0 0.25rem rgba(13, 110, 253, 0.25);
+  --bs-btn-close-focus-opacity: 1;
+  --bs-btn-close-disabled-opacity: 0.25;
+  --bs-btn-close-white-filter: invert(1) grayscale(100%) brightness(200%);
+  box-sizing: content-box;
+  width: 1em;
+  height: 1em;
+  padding: 0.25em 0.25em;
+  color: var(--bs-btn-close-color);
+  background: transparent var(--bs-btn-close-bg) center/1em auto no-repeat;
+  border: 0;
+  border-radius: 0.375rem;
+  opacity: var(--bs-btn-close-opacity);
+}
+.btn-close:hover {
+  color: var(--bs-btn-close-color);
+  text-decoration: none;
+  opacity: var(--bs-btn-close-hover-opacity);
+}
+.btn-close:focus {
+  outline: 0;
+  box-shadow: var(--bs-btn-close-focus-shadow);
+  opacity: var(--bs-btn-close-focus-opacity);
+}
+.btn-close:disabled, .btn-close.disabled {
+  pointer-events: none;
+  -webkit-user-select: none;
+  -moz-user-select: none;
+  user-select: none;
+  opacity: var(--bs-btn-close-disabled-opacity);
+}
+
+.btn-close-white {
+  filter: var(--bs-btn-close-white-filter);
+}
+
+[data-bs-theme=dark] .btn-close {
+  filter: var(--bs-btn-close-white-filter);
+}
+
+.toast {
+  --bs-toast-zindex: 1090;
+  --bs-toast-padding-x: 0.75rem;
+  --bs-toast-padding-y: 0.5rem;
+  --bs-toast-spacing: 1.5rem;
+  --bs-toast-max-width: 350px;
+  --bs-toast-font-size: 0.875rem;
+  --bs-toast-color: ;
+  --bs-toast-bg: rgba(var(--bs-body-bg-rgb), 0.85);
+  --bs-toast-border-width: var(--bs-border-width);
+  --bs-toast-border-color: var(--bs-border-color-translucent);
+  --bs-toast-border-radius: var(--bs-border-radius);
+  --bs-toast-box-shadow: var(--bs-box-shadow);
+  --bs-toast-header-color: var(--bs-secondary-color);
+  --bs-toast-header-bg: rgba(var(--bs-body-bg-rgb), 0.85);
+  --bs-toast-header-border-color: var(--bs-border-color-translucent);
+  width: var(--bs-toast-max-width);
+  max-width: 100%;
+  font-size: var(--bs-toast-font-size);
+  color: var(--bs-toast-color);
+  pointer-events: auto;
+  background-color: var(--bs-toast-bg);
+  background-clip: padding-box;
+  border: var(--bs-toast-border-width) solid var(--bs-toast-border-color);
+  box-shadow: var(--bs-toast-box-shadow);
+  border-radius: var(--bs-toast-border-radius);
+}
+.toast.showing {
+  opacity: 0;
+}
+.toast:not(.show) {
+  display: none;
+}
+
+.toast-container {
+  --bs-toast-zindex: 1090;
+  position: absolute;
+  z-index: var(--bs-toast-zindex);
+  width: -webkit-max-content;
+  width: -moz-max-content;
+  width: max-content;
+  max-width: 100%;
+  pointer-events: none;
+}
+.toast-container > :not(:last-child) {
+  margin-bottom: var(--bs-toast-spacing);
+}
+
+.toast-header {
+  display: flex;
+  align-items: center;
+  padding: var(--bs-toast-padding-y) var(--bs-toast-padding-x);
+  color: var(--bs-toast-header-color);
+  background-color: var(--bs-toast-header-bg);
+  background-clip: padding-box;
+  border-bottom: var(--bs-toast-border-width) solid var(--bs-toast-header-border-color);
+  border-top-left-radius: calc(var(--bs-toast-border-radius) - var(--bs-toast-border-width));
+  border-top-right-radius: calc(var(--bs-toast-border-radius) - var(--bs-toast-border-width));
+}
+.toast-header .btn-close {
+  margin-right: calc(-0.5 * var(--bs-toast-padding-x));
+  margin-left: var(--bs-toast-padding-x);
+}
+
+.toast-body {
+  padding: var(--bs-toast-padding-x);
+  word-wrap: break-word;
+}
+
+.modal {
+  --bs-modal-zindex: 1055;
+  --bs-modal-width: 500px;
+  --bs-modal-padding: 1rem;
+  --bs-modal-margin: 0.5rem;
+  --bs-modal-color: ;
+  --bs-modal-bg: var(--bs-body-bg);
+  --bs-modal-border-color: var(--bs-border-color-translucent);
+  --bs-modal-border-width: var(--bs-border-width);
+  --bs-modal-border-radius: var(--bs-border-radius-lg);
+  --bs-modal-box-shadow: var(--bs-box-shadow-sm);
+  --bs-modal-inner-border-radius: calc(var(--bs-border-radius-lg) - (var(--bs-border-width)));
+  --bs-modal-header-padding-x: 1rem;
+  --bs-modal-header-padding-y: 1rem;
+  --bs-modal-header-padding: 1rem 1rem;
+  --bs-modal-header-border-color: var(--bs-border-color);
+  --bs-modal-header-border-width: var(--bs-border-width);
+  --bs-modal-title-line-height: 1.5;
+  --bs-modal-footer-gap: 0.5rem;
+  --bs-modal-footer-bg: ;
+  --bs-modal-footer-border-color: var(--bs-border-color);
+  --bs-modal-footer-border-width: var(--bs-border-width);
+  position: fixed;
+  top: 0;
+  left: 0;
+  z-index: var(--bs-modal-zindex);
+  display: none;
+  width: 100%;
+  height: 100%;
+  overflow-x: hidden;
+  overflow-y: auto;
+  outline: 0;
+}
+
+.modal-dialog {
+  position: relative;
+  width: auto;
+  margin: var(--bs-modal-margin);
+  pointer-events: none;
+}
+.modal.fade .modal-dialog {
+  transition: transform 0.3s ease-out;
+  transform: translate(0, -50px);
+}
+@media (prefers-reduced-motion: reduce) {
+  .modal.fade .modal-dialog {
+    transition: none;
+  }
+}
+.modal.show .modal-dialog {
+  transform: none;
+}
+.modal.modal-static .modal-dialog {
+  transform: scale(1.02);
+}
+
+.modal-dialog-scrollable {
+  height: calc(100% - var(--bs-modal-margin) * 2);
+}
+.modal-dialog-scrollable .modal-content {
+  max-height: 100%;
+  overflow: hidden;
+}
+.modal-dialog-scrollable .modal-body {
+  overflow-y: auto;
+}
+
+.modal-dialog-centered {
+  display: flex;
+  align-items: center;
+  min-height: calc(100% - var(--bs-modal-margin) * 2);
+}
+
+.modal-content {
+  position: relative;
+  display: flex;
+  flex-direction: column;
+  width: 100%;
+  color: var(--bs-modal-color);
+  pointer-events: auto;
+  background-color: var(--bs-modal-bg);
+  background-clip: padding-box;
+  border: var(--bs-modal-border-width) solid var(--bs-modal-border-color);
+  border-radius: var(--bs-modal-border-radius);
+  outline: 0;
+}
+
+.modal-backdrop {
+  --bs-backdrop-zindex: 1050;
+  --bs-backdrop-bg: #000;
+  --bs-backdrop-opacity: 0.5;
+  position: fixed;
+  top: 0;
+  left: 0;
+  z-index: var(--bs-backdrop-zindex);
+  width: 100vw;
+  height: 100vh;
+  background-color: var(--bs-backdrop-bg);
+}
+.modal-backdrop.fade {
+  opacity: 0;
+}
+.modal-backdrop.show {
+  opacity: var(--bs-backdrop-opacity);
+}
+
+.modal-header {
+  display: flex;
+  flex-shrink: 0;
+  align-items: center;
+  justify-content: space-between;
+  padding: var(--bs-modal-header-padding);
+  border-bottom: var(--bs-modal-header-border-width) solid var(--bs-modal-header-border-color);
+  border-top-left-radius: var(--bs-modal-inner-border-radius);
+  border-top-right-radius: var(--bs-modal-inner-border-radius);
+}
+.modal-header .btn-close {
+  padding: calc(var(--bs-modal-header-padding-y) * 0.5) calc(var(--bs-modal-header-padding-x) * 0.5);
+  margin: calc(-0.5 * var(--bs-modal-header-padding-y)) calc(-0.5 * var(--bs-modal-header-padding-x)) calc(-0.5 * var(--bs-modal-header-padding-y)) auto;
+}
+
+.modal-title {
+  margin-bottom: 0;
+  line-height: var(--bs-modal-title-line-height);
+}
+
+.modal-body {
+  position: relative;
+  flex: 1 1 auto;
+  padding: var(--bs-modal-padding);
+}
+
+.modal-footer {
+  display: flex;
+  flex-shrink: 0;
+  flex-wrap: wrap;
+  align-items: center;
+  justify-content: flex-end;
+  padding: calc(var(--bs-modal-padding) - var(--bs-modal-footer-gap) * 0.5);
+  background-color: var(--bs-modal-footer-bg);
+  border-top: var(--bs-modal-footer-border-width) solid var(--bs-modal-footer-border-color);
+  border-bottom-right-radius: var(--bs-modal-inner-border-radius);
+  border-bottom-left-radius: var(--bs-modal-inner-border-radius);
+}
+.modal-footer > * {
+  margin: calc(var(--bs-modal-footer-gap) * 0.5);
+}
+
+@media (min-width: 576px) {
+  .modal {
+    --bs-modal-margin: 1.75rem;
+    --bs-modal-box-shadow: var(--bs-box-shadow);
+  }
+  .modal-dialog {
+    max-width: var(--bs-modal-width);
+    margin-right: auto;
+    margin-left: auto;
+  }
+  .modal-sm {
+    --bs-modal-width: 300px;
+  }
+}
+@media (min-width: 992px) {
+  .modal-lg,
+  .modal-xl {
+    --bs-modal-width: 800px;
+  }
+}
+@media (min-width: 1200px) {
+  .modal-xl {
+    --bs-modal-width: 1140px;
+  }
+}
+.modal-fullscreen {
+  width: 100vw;
+  max-width: none;
+  height: 100%;
+  margin: 0;
+}
+.modal-fullscreen .modal-content {
+  height: 100%;
+  border: 0;
+  border-radius: 0;
+}
+.modal-fullscreen .modal-header,
+.modal-fullscreen .modal-footer {
+  border-radius: 0;
+}
+.modal-fullscreen .modal-body {
+  overflow-y: auto;
+}
+
+@media (max-width: 575.98px) {
+  .modal-fullscreen-sm-down {
+    width: 100vw;
+    max-width: none;
+    height: 100%;
+    margin: 0;
+  }
+  .modal-fullscreen-sm-down .modal-content {
+    height: 100%;
+    border: 0;
+    border-radius: 0;
+  }
+  .modal-fullscreen-sm-down .modal-header,
+  .modal-fullscreen-sm-down .modal-footer {
+    border-radius: 0;
+  }
+  .modal-fullscreen-sm-down .modal-body {
+    overflow-y: auto;
+  }
+}
+@media (max-width: 767.98px) {
+  .modal-fullscreen-md-down {
+    width: 100vw;
+    max-width: none;
+    height: 100%;
+    margin: 0;
+  }
+  .modal-fullscreen-md-down .modal-content {
+    height: 100%;
+    border: 0;
+    border-radius: 0;
+  }
+  .modal-fullscreen-md-down .modal-header,
+  .modal-fullscreen-md-down .modal-footer {
+    border-radius: 0;
+  }
+  .modal-fullscreen-md-down .modal-body {
+    overflow-y: auto;
+  }
+}
+@media (max-width: 991.98px) {
+  .modal-fullscreen-lg-down {
+    width: 100vw;
+    max-width: none;
+    height: 100%;
+    margin: 0;
+  }
+  .modal-fullscreen-lg-down .modal-content {
+    height: 100%;
+    border: 0;
+    border-radius: 0;
+  }
+  .modal-fullscreen-lg-down .modal-header,
+  .modal-fullscreen-lg-down .modal-footer {
+    border-radius: 0;
+  }
+  .modal-fullscreen-lg-down .modal-body {
+    overflow-y: auto;
+  }
+}
+@media (max-width: 1199.98px) {
+  .modal-fullscreen-xl-down {
+    width: 100vw;
+    max-width: none;
+    height: 100%;
+    margin: 0;
+  }
+  .modal-fullscreen-xl-down .modal-content {
+    height: 100%;
+    border: 0;
+    border-radius: 0;
+  }
+  .modal-fullscreen-xl-down .modal-header,
+  .modal-fullscreen-xl-down .modal-footer {
+    border-radius: 0;
+  }
+  .modal-fullscreen-xl-down .modal-body {
+    overflow-y: auto;
+  }
+}
+@media (max-width: 1399.98px) {
+  .modal-fullscreen-xxl-down {
+    width: 100vw;
+    max-width: none;
+    height: 100%;
+    margin: 0;
+  }
+  .modal-fullscreen-xxl-down .modal-content {
+    height: 100%;
+    border: 0;
+    border-radius: 0;
+  }
+  .modal-fullscreen-xxl-down .modal-header,
+  .modal-fullscreen-xxl-down .modal-footer {
+    border-radius: 0;
+  }
+  .modal-fullscreen-xxl-down .modal-body {
+    overflow-y: auto;
+  }
+}
+.tooltip {
+  --bs-tooltip-zindex: 1080;
+  --bs-tooltip-max-width: 200px;
+  --bs-tooltip-padding-x: 0.5rem;
+  --bs-tooltip-padding-y: 0.25rem;
+  --bs-tooltip-margin: ;
+  --bs-tooltip-font-size: 0.875rem;
+  --bs-tooltip-color: var(--bs-body-bg);
+  --bs-tooltip-bg: var(--bs-emphasis-color);
+  --bs-tooltip-border-radius: var(--bs-border-radius);
+  --bs-tooltip-opacity: 0.9;
+  --bs-tooltip-arrow-width: 0.8rem;
+  --bs-tooltip-arrow-height: 0.4rem;
+  z-index: var(--bs-tooltip-zindex);
+  display: block;
+  margin: var(--bs-tooltip-margin);
+  font-family: var(--bs-font-sans-serif);
+  font-style: normal;
+  font-weight: 400;
+  line-height: 1.5;
+  text-align: left;
+  text-align: start;
+  text-decoration: none;
+  text-shadow: none;
+  text-transform: none;
+  letter-spacing: normal;
+  word-break: normal;
+  white-space: normal;
+  word-spacing: normal;
+  line-break: auto;
+  font-size: var(--bs-tooltip-font-size);
+  word-wrap: break-word;
+  opacity: 0;
+}
+.tooltip.show {
+  opacity: var(--bs-tooltip-opacity);
+}
+.tooltip .tooltip-arrow {
+  display: block;
+  width: var(--bs-tooltip-arrow-width);
+  height: var(--bs-tooltip-arrow-height);
+}
+.tooltip .tooltip-arrow::before {
+  position: absolute;
+  content: "";
+  border-color: transparent;
+  border-style: solid;
+}
+
+.bs-tooltip-top .tooltip-arrow, .bs-tooltip-auto[data-popper-placement^=top] .tooltip-arrow {
+  bottom: calc(-1 * var(--bs-tooltip-arrow-height));
+}
+.bs-tooltip-top .tooltip-arrow::before, .bs-tooltip-auto[data-popper-placement^=top] .tooltip-arrow::before {
+  top: -1px;
+  border-width: var(--bs-tooltip-arrow-height) calc(var(--bs-tooltip-arrow-width) * 0.5) 0;
+  border-top-color: var(--bs-tooltip-bg);
+}
+
+/* rtl:begin:ignore */
+.bs-tooltip-end .tooltip-arrow, .bs-tooltip-auto[data-popper-placement^=right] .tooltip-arrow {
+  left: calc(-1 * var(--bs-tooltip-arrow-height));
+  width: var(--bs-tooltip-arrow-height);
+  height: var(--bs-tooltip-arrow-width);
+}
+.bs-tooltip-end .tooltip-arrow::before, .bs-tooltip-auto[data-popper-placement^=right] .tooltip-arrow::before {
+  right: -1px;
+  border-width: calc(var(--bs-tooltip-arrow-width) * 0.5) var(--bs-tooltip-arrow-height) calc(var(--bs-tooltip-arrow-width) * 0.5) 0;
+  border-right-color: var(--bs-tooltip-bg);
+}
+
+/* rtl:end:ignore */
+.bs-tooltip-bottom .tooltip-arrow, .bs-tooltip-auto[data-popper-placement^=bottom] .tooltip-arrow {
+  top: calc(-1 * var(--bs-tooltip-arrow-height));
+}
+.bs-tooltip-bottom .tooltip-arrow::before, .bs-tooltip-auto[data-popper-placement^=bottom] .tooltip-arrow::before {
+  bottom: -1px;
+  border-width: 0 calc(var(--bs-tooltip-arrow-width) * 0.5) var(--bs-tooltip-arrow-height);
+  border-bottom-color: var(--bs-tooltip-bg);
+}
+
+/* rtl:begin:ignore */
+.bs-tooltip-start .tooltip-arrow, .bs-tooltip-auto[data-popper-placement^=left] .tooltip-arrow {
+  right: calc(-1 * var(--bs-tooltip-arrow-height));
+  width: var(--bs-tooltip-arrow-height);
+  height: var(--bs-tooltip-arrow-width);
+}
+.bs-tooltip-start .tooltip-arrow::before, .bs-tooltip-auto[data-popper-placement^=left] .tooltip-arrow::before {
+  left: -1px;
+  border-width: calc(var(--bs-tooltip-arrow-width) * 0.5) 0 calc(var(--bs-tooltip-arrow-width) * 0.5) var(--bs-tooltip-arrow-height);
+  border-left-color: var(--bs-tooltip-bg);
+}
+
+/* rtl:end:ignore */
+.tooltip-inner {
+  max-width: var(--bs-tooltip-max-width);
+  padding: var(--bs-tooltip-padding-y) var(--bs-tooltip-padding-x);
+  color: var(--bs-tooltip-color);
+  text-align: center;
+  background-color: var(--bs-tooltip-bg);
+  border-radius: var(--bs-tooltip-border-radius);
+}
+
+.popover {
+  --bs-popover-zindex: 1070;
+  --bs-popover-max-width: 276px;
+  --bs-popover-font-size: 0.875rem;
+  --bs-popover-bg: var(--bs-body-bg);
+  --bs-popover-border-width: var(--bs-border-width);
+  --bs-popover-border-color: var(--bs-border-color-translucent);
+  --bs-popover-border-radius: var(--bs-border-radius-lg);
+  --bs-popover-inner-border-radius: calc(var(--bs-border-radius-lg) - var(--bs-border-width));
+  --bs-popover-box-shadow: var(--bs-box-shadow);
+  --bs-popover-header-padding-x: 1rem;
+  --bs-popover-header-padding-y: 0.5rem;
+  --bs-popover-header-font-size: 1rem;
+  --bs-popover-header-color: inherit;
+  --bs-popover-header-bg: var(--bs-secondary-bg);
+  --bs-popover-body-padding-x: 1rem;
+  --bs-popover-body-padding-y: 1rem;
+  --bs-popover-body-color: var(--bs-body-color);
+  --bs-popover-arrow-width: 1rem;
+  --bs-popover-arrow-height: 0.5rem;
+  --bs-popover-arrow-border: var(--bs-popover-border-color);
+  z-index: var(--bs-popover-zindex);
+  display: block;
+  max-width: var(--bs-popover-max-width);
+  font-family: var(--bs-font-sans-serif);
+  font-style: normal;
+  font-weight: 400;
+  line-height: 1.5;
+  text-align: left;
+  text-align: start;
+  text-decoration: none;
+  text-shadow: none;
+  text-transform: none;
+  letter-spacing: normal;
+  word-break: normal;
+  white-space: normal;
+  word-spacing: normal;
+  line-break: auto;
+  font-size: var(--bs-popover-font-size);
+  word-wrap: break-word;
+  background-color: var(--bs-popover-bg);
+  background-clip: padding-box;
+  border: var(--bs-popover-border-width) solid var(--bs-popover-border-color);
+  border-radius: var(--bs-popover-border-radius);
+}
+.popover .popover-arrow {
+  display: block;
+  width: var(--bs-popover-arrow-width);
+  height: var(--bs-popover-arrow-height);
+}
+.popover .popover-arrow::before, .popover .popover-arrow::after {
+  position: absolute;
+  display: block;
+  content: "";
+  border-color: transparent;
+  border-style: solid;
+  border-width: 0;
+}
+
+.bs-popover-top > .popover-arrow, .bs-popover-auto[data-popper-placement^=top] > .popover-arrow {
+  bottom: calc(-1 * (var(--bs-popover-arrow-height)) - var(--bs-popover-border-width));
+}
+.bs-popover-top > .popover-arrow::before, .bs-popover-auto[data-popper-placement^=top] > .popover-arrow::before, .bs-popover-top > .popover-arrow::after, .bs-popover-auto[data-popper-placement^=top] > .popover-arrow::after {
+  border-width: var(--bs-popover-arrow-height) calc(var(--bs-popover-arrow-width) * 0.5) 0;
+}
+.bs-popover-top > .popover-arrow::before, .bs-popover-auto[data-popper-placement^=top] > .popover-arrow::before {
+  bottom: 0;
+  border-top-color: var(--bs-popover-arrow-border);
+}
+.bs-popover-top > .popover-arrow::after, .bs-popover-auto[data-popper-placement^=top] > .popover-arrow::after {
+  bottom: var(--bs-popover-border-width);
+  border-top-color: var(--bs-popover-bg);
+}
+
+/* rtl:begin:ignore */
+.bs-popover-end > .popover-arrow, .bs-popover-auto[data-popper-placement^=right] > .popover-arrow {
+  left: calc(-1 * (var(--bs-popover-arrow-height)) - var(--bs-popover-border-width));
+  width: var(--bs-popover-arrow-height);
+  height: var(--bs-popover-arrow-width);
+}
+.bs-popover-end > .popover-arrow::before, .bs-popover-auto[data-popper-placement^=right] > .popover-arrow::before, .bs-popover-end > .popover-arrow::after, .bs-popover-auto[data-popper-placement^=right] > .popover-arrow::after {
+  border-width: calc(var(--bs-popover-arrow-width) * 0.5) var(--bs-popover-arrow-height) calc(var(--bs-popover-arrow-width) * 0.5) 0;
+}
+.bs-popover-end > .popover-arrow::before, .bs-popover-auto[data-popper-placement^=right] > .popover-arrow::before {
+  left: 0;
+  border-right-color: var(--bs-popover-arrow-border);
+}
+.bs-popover-end > .popover-arrow::after, .bs-popover-auto[data-popper-placement^=right] > .popover-arrow::after {
+  left: var(--bs-popover-border-width);
+  border-right-color: var(--bs-popover-bg);
+}
+
+/* rtl:end:ignore */
+.bs-popover-bottom > .popover-arrow, .bs-popover-auto[data-popper-placement^=bottom] > .popover-arrow {
+  top: calc(-1 * (var(--bs-popover-arrow-height)) - var(--bs-popover-border-width));
+}
+.bs-popover-bottom > .popover-arrow::before, .bs-popover-auto[data-popper-placement^=bottom] > .popover-arrow::before, .bs-popover-bottom > .popover-arrow::after, .bs-popover-auto[data-popper-placement^=bottom] > .popover-arrow::after {
+  border-width: 0 calc(var(--bs-popover-arrow-width) * 0.5) var(--bs-popover-arrow-height);
+}
+.bs-popover-bottom > .popover-arrow::before, .bs-popover-auto[data-popper-placement^=bottom] > .popover-arrow::before {
+  top: 0;
+  border-bottom-color: var(--bs-popover-arrow-border);
+}
+.bs-popover-bottom > .popover-arrow::after, .bs-popover-auto[data-popper-placement^=bottom] > .popover-arrow::after {
+  top: var(--bs-popover-border-width);
+  border-bottom-color: var(--bs-popover-bg);
+}
+.bs-popover-bottom .popover-header::before, .bs-popover-auto[data-popper-placement^=bottom] .popover-header::before {
+  position: absolute;
+  top: 0;
+  left: 50%;
+  display: block;
+  width: var(--bs-popover-arrow-width);
+  margin-left: calc(-0.5 * var(--bs-popover-arrow-width));
+  content: "";
+  border-bottom: var(--bs-popover-border-width) solid var(--bs-popover-header-bg);
+}
+
+/* rtl:begin:ignore */
+.bs-popover-start > .popover-arrow, .bs-popover-auto[data-popper-placement^=left] > .popover-arrow {
+  right: calc(-1 * (var(--bs-popover-arrow-height)) - var(--bs-popover-border-width));
+  width: var(--bs-popover-arrow-height);
+  height: var(--bs-popover-arrow-width);
+}
+.bs-popover-start > .popover-arrow::before, .bs-popover-auto[data-popper-placement^=left] > .popover-arrow::before, .bs-popover-start > .popover-arrow::after, .bs-popover-auto[data-popper-placement^=left] > .popover-arrow::after {
+  border-width: calc(var(--bs-popover-arrow-width) * 0.5) 0 calc(var(--bs-popover-arrow-width) * 0.5) var(--bs-popover-arrow-height);
+}
+.bs-popover-start > .popover-arrow::before, .bs-popover-auto[data-popper-placement^=left] > .popover-arrow::before {
+  right: 0;
+  border-left-color: var(--bs-popover-arrow-border);
+}
+.bs-popover-start > .popover-arrow::after, .bs-popover-auto[data-popper-placement^=left] > .popover-arrow::after {
+  right: var(--bs-popover-border-width);
+  border-left-color: var(--bs-popover-bg);
+}
+
+/* rtl:end:ignore */
+.popover-header {
+  padding: var(--bs-popover-header-padding-y) var(--bs-popover-header-padding-x);
+  margin-bottom: 0;
+  font-size: var(--bs-popover-header-font-size);
+  color: var(--bs-popover-header-color);
+  background-color: var(--bs-popover-header-bg);
+  border-bottom: var(--bs-popover-border-width) solid var(--bs-popover-border-color);
+  border-top-left-radius: var(--bs-popover-inner-border-radius);
+  border-top-right-radius: var(--bs-popover-inner-border-radius);
+}
+.popover-header:empty {
+  display: none;
+}
+
+.popover-body {
+  padding: var(--bs-popover-body-padding-y) var(--bs-popover-body-padding-x);
+  color: var(--bs-popover-body-color);
+}
+
+.carousel {
+  position: relative;
+}
+
+.carousel.pointer-event {
+  touch-action: pan-y;
+}
+
+.carousel-inner {
+  position: relative;
+  width: 100%;
+  overflow: hidden;
+}
+.carousel-inner::after {
+  display: block;
+  clear: both;
+  content: "";
+}
+
+.carousel-item {
+  position: relative;
+  display: none;
+  float: left;
+  width: 100%;
+  margin-right: -100%;
+  -webkit-backface-visibility: hidden;
+  backface-visibility: hidden;
+  transition: transform 0.6s ease-in-out;
+}
+@media (prefers-reduced-motion: reduce) {
+  .carousel-item {
+    transition: none;
+  }
+}
+
+.carousel-item.active,
+.carousel-item-next,
+.carousel-item-prev {
+  display: block;
+}
+
+.carousel-item-next:not(.carousel-item-start),
+.active.carousel-item-end {
+  transform: translateX(100%);
+}
+
+.carousel-item-prev:not(.carousel-item-end),
+.active.carousel-item-start {
+  transform: translateX(-100%);
+}
+
+.carousel-fade .carousel-item {
+  opacity: 0;
+  transition-property: opacity;
+  transform: none;
+}
+.carousel-fade .carousel-item.active,
+.carousel-fade .carousel-item-next.carousel-item-start,
+.carousel-fade .carousel-item-prev.carousel-item-end {
+  z-index: 1;
+  opacity: 1;
+}
+.carousel-fade .active.carousel-item-start,
+.carousel-fade .active.carousel-item-end {
+  z-index: 0;
+  opacity: 0;
+  transition: opacity 0s 0.6s;
+}
+@media (prefers-reduced-motion: reduce) {
+  .carousel-fade .active.carousel-item-start,
+  .carousel-fade .active.carousel-item-end {
+    transition: none;
+  }
+}
+
+.carousel-control-prev,
+.carousel-control-next {
+  position: absolute;
+  top: 0;
+  bottom: 0;
+  z-index: 1;
+  display: flex;
+  align-items: center;
+  justify-content: center;
+  width: 15%;
+  padding: 0;
+  color: #fff;
+  text-align: center;
+  background: none;
+  border: 0;
+  opacity: 0.5;
+  transition: opacity 0.15s ease;
+}
+@media (prefers-reduced-motion: reduce) {
+  .carousel-control-prev,
+  .carousel-control-next {
+    transition: none;
+  }
+}
+.carousel-control-prev:hover, .carousel-control-prev:focus,
+.carousel-control-next:hover,
+.carousel-control-next:focus {
+  color: #fff;
+  text-decoration: none;
+  outline: 0;
+  opacity: 0.9;
+}
+
+.carousel-control-prev {
+  left: 0;
+}
+
+.carousel-control-next {
+  right: 0;
+}
+
+.carousel-control-prev-icon,
+.carousel-control-next-icon {
+  display: inline-block;
+  width: 2rem;
+  height: 2rem;
+  background-repeat: no-repeat;
+  background-position: 50%;
+  background-size: 100% 100%;
+}
+
+/* rtl:options: {
+  "autoRename": true,
+  "stringMap":[ {
+    "name"    : "prev-next",
+    "search"  : "prev",
+    "replace" : "next"
+  } ]
+} */
+.carousel-control-prev-icon {
+  background-image: url("data:image/svg+xml,%3csvg xmlns='http://www.w3.org/2000/svg' viewBox='0 0 16 16' fill='%23fff'%3e%3cpath d='M11.354 1.646a.5.5 0 0 1 0 .708L5.707 8l5.647 5.646a.5.5 0 0 1-.708.708l-6-6a.5.5 0 0 1 0-.708l6-6a.5.5 0 0 1 .708 0z'/%3e%3c/svg%3e");
+}
+
+.carousel-control-next-icon {
+  background-image: url("data:image/svg+xml,%3csvg xmlns='http://www.w3.org/2000/svg' viewBox='0 0 16 16' fill='%23fff'%3e%3cpath d='M4.646 1.646a.5.5 0 0 1 .708 0l6 6a.5.5 0 0 1 0 .708l-6 6a.5.5 0 0 1-.708-.708L10.293 8 4.646 2.354a.5.5 0 0 1 0-.708z'/%3e%3c/svg%3e");
+}
+
+.carousel-indicators {
+  position: absolute;
+  right: 0;
+  bottom: 0;
+  left: 0;
+  z-index: 2;
+  display: flex;
+  justify-content: center;
+  padding: 0;
+  margin-right: 15%;
+  margin-bottom: 1rem;
+  margin-left: 15%;
+}
+.carousel-indicators [data-bs-target] {
+  box-sizing: content-box;
+  flex: 0 1 auto;
+  width: 30px;
+  height: 3px;
+  padding: 0;
+  margin-right: 3px;
+  margin-left: 3px;
+  text-indent: -999px;
+  cursor: pointer;
+  background-color: #fff;
+  background-clip: padding-box;
+  border: 0;
+  border-top: 10px solid transparent;
+  border-bottom: 10px solid transparent;
+  opacity: 0.5;
+  transition: opacity 0.6s ease;
+}
+@media (prefers-reduced-motion: reduce) {
+  .carousel-indicators [data-bs-target] {
+    transition: none;
+  }
+}
+.carousel-indicators .active {
+  opacity: 1;
+}
+
+.carousel-caption {
+  position: absolute;
+  right: 15%;
+  bottom: 1.25rem;
+  left: 15%;
+  padding-top: 1.25rem;
+  padding-bottom: 1.25rem;
+  color: #fff;
+  text-align: center;
+}
+
+.carousel-dark .carousel-control-prev-icon,
+.carousel-dark .carousel-control-next-icon {
+  filter: invert(1) grayscale(100);
+}
+.carousel-dark .carousel-indicators [data-bs-target] {
+  background-color: #000;
+}
+.carousel-dark .carousel-caption {
+  color: #000;
+}
+
+[data-bs-theme=dark] .carousel .carousel-control-prev-icon,
+[data-bs-theme=dark] .carousel .carousel-control-next-icon, [data-bs-theme=dark].carousel .carousel-control-prev-icon,
+[data-bs-theme=dark].carousel .carousel-control-next-icon {
+  filter: invert(1) grayscale(100);
+}
+[data-bs-theme=dark] .carousel .carousel-indicators [data-bs-target], [data-bs-theme=dark].carousel .carousel-indicators [data-bs-target] {
+  background-color: #000;
+}
+[data-bs-theme=dark] .carousel .carousel-caption, [data-bs-theme=dark].carousel .carousel-caption {
+  color: #000;
+}
+
+.spinner-grow,
+.spinner-border {
+  display: inline-block;
+  width: var(--bs-spinner-width);
+  height: var(--bs-spinner-height);
+  vertical-align: var(--bs-spinner-vertical-align);
+  border-radius: 50%;
+  animation: var(--bs-spinner-animation-speed) linear infinite var(--bs-spinner-animation-name);
+}
+
+@keyframes spinner-border {
+  to {
+    transform: rotate(360deg) /* rtl:ignore */;
+  }
+}
+.spinner-border {
+  --bs-spinner-width: 2rem;
+  --bs-spinner-height: 2rem;
+  --bs-spinner-vertical-align: -0.125em;
+  --bs-spinner-border-width: 0.25em;
+  --bs-spinner-animation-speed: 0.75s;
+  --bs-spinner-animation-name: spinner-border;
+  border: var(--bs-spinner-border-width) solid currentcolor;
+  border-right-color: transparent;
+}
+
+.spinner-border-sm {
+  --bs-spinner-width: 1rem;
+  --bs-spinner-height: 1rem;
+  --bs-spinner-border-width: 0.2em;
+}
+
+@keyframes spinner-grow {
+  0% {
+    transform: scale(0);
+  }
+  50% {
+    opacity: 1;
+    transform: none;
+  }
+}
+.spinner-grow {
+  --bs-spinner-width: 2rem;
+  --bs-spinner-height: 2rem;
+  --bs-spinner-vertical-align: -0.125em;
+  --bs-spinner-animation-speed: 0.75s;
+  --bs-spinner-animation-name: spinner-grow;
+  background-color: currentcolor;
+  opacity: 0;
+}
+
+.spinner-grow-sm {
+  --bs-spinner-width: 1rem;
+  --bs-spinner-height: 1rem;
+}
+
+@media (prefers-reduced-motion: reduce) {
+  .spinner-border,
+  .spinner-grow {
+    --bs-spinner-animation-speed: 1.5s;
+  }
+}
+.offcanvas, .offcanvas-xxl, .offcanvas-xl, .offcanvas-lg, .offcanvas-md, .offcanvas-sm {
+  --bs-offcanvas-zindex: 1045;
+  --bs-offcanvas-width: 400px;
+  --bs-offcanvas-height: 30vh;
+  --bs-offcanvas-padding-x: 1rem;
+  --bs-offcanvas-padding-y: 1rem;
+  --bs-offcanvas-color: var(--bs-body-color);
+  --bs-offcanvas-bg: var(--bs-body-bg);
+  --bs-offcanvas-border-width: var(--bs-border-width);
+  --bs-offcanvas-border-color: var(--bs-border-color-translucent);
+  --bs-offcanvas-box-shadow: var(--bs-box-shadow-sm);
+  --bs-offcanvas-transition: transform 0.3s ease-in-out;
+  --bs-offcanvas-title-line-height: 1.5;
+}
+
+@media (max-width: 575.98px) {
+  .offcanvas-sm {
+    position: fixed;
+    bottom: 0;
+    z-index: var(--bs-offcanvas-zindex);
+    display: flex;
+    flex-direction: column;
+    max-width: 100%;
+    color: var(--bs-offcanvas-color);
+    visibility: hidden;
+    background-color: var(--bs-offcanvas-bg);
+    background-clip: padding-box;
+    outline: 0;
+    transition: var(--bs-offcanvas-transition);
+  }
+}
+@media (max-width: 575.98px) and (prefers-reduced-motion: reduce) {
+  .offcanvas-sm {
+    transition: none;
+  }
+}
+@media (max-width: 575.98px) {
+  .offcanvas-sm.offcanvas-start {
+    top: 0;
+    left: 0;
+    width: var(--bs-offcanvas-width);
+    border-right: var(--bs-offcanvas-border-width) solid var(--bs-offcanvas-border-color);
+    transform: translateX(-100%);
+  }
+  .offcanvas-sm.offcanvas-end {
+    top: 0;
+    right: 0;
+    width: var(--bs-offcanvas-width);
+    border-left: var(--bs-offcanvas-border-width) solid var(--bs-offcanvas-border-color);
+    transform: translateX(100%);
+  }
+  .offcanvas-sm.offcanvas-top {
+    top: 0;
+    right: 0;
+    left: 0;
+    height: var(--bs-offcanvas-height);
+    max-height: 100%;
+    border-bottom: var(--bs-offcanvas-border-width) solid var(--bs-offcanvas-border-color);
+    transform: translateY(-100%);
+  }
+  .offcanvas-sm.offcanvas-bottom {
+    right: 0;
+    left: 0;
+    height: var(--bs-offcanvas-height);
+    max-height: 100%;
+    border-top: var(--bs-offcanvas-border-width) solid var(--bs-offcanvas-border-color);
+    transform: translateY(100%);
+  }
+  .offcanvas-sm.showing, .offcanvas-sm.show:not(.hiding) {
+    transform: none;
+  }
+  .offcanvas-sm.showing, .offcanvas-sm.hiding, .offcanvas-sm.show {
+    visibility: visible;
+  }
+}
+@media (min-width: 576px) {
+  .offcanvas-sm {
+    --bs-offcanvas-height: auto;
+    --bs-offcanvas-border-width: 0;
+    background-color: transparent !important;
+  }
+  .offcanvas-sm .offcanvas-header {
+    display: none;
+  }
+  .offcanvas-sm .offcanvas-body {
+    display: flex;
+    flex-grow: 0;
+    padding: 0;
+    overflow-y: visible;
+    background-color: transparent !important;
+  }
+}
+
+@media (max-width: 767.98px) {
+  .offcanvas-md {
+    position: fixed;
+    bottom: 0;
+    z-index: var(--bs-offcanvas-zindex);
+    display: flex;
+    flex-direction: column;
+    max-width: 100%;
+    color: var(--bs-offcanvas-color);
+    visibility: hidden;
+    background-color: var(--bs-offcanvas-bg);
+    background-clip: padding-box;
+    outline: 0;
+    transition: var(--bs-offcanvas-transition);
+  }
+}
+@media (max-width: 767.98px) and (prefers-reduced-motion: reduce) {
+  .offcanvas-md {
+    transition: none;
+  }
+}
+@media (max-width: 767.98px) {
+  .offcanvas-md.offcanvas-start {
+    top: 0;
+    left: 0;
+    width: var(--bs-offcanvas-width);
+    border-right: var(--bs-offcanvas-border-width) solid var(--bs-offcanvas-border-color);
+    transform: translateX(-100%);
+  }
+  .offcanvas-md.offcanvas-end {
+    top: 0;
+    right: 0;
+    width: var(--bs-offcanvas-width);
+    border-left: var(--bs-offcanvas-border-width) solid var(--bs-offcanvas-border-color);
+    transform: translateX(100%);
+  }
+  .offcanvas-md.offcanvas-top {
+    top: 0;
+    right: 0;
+    left: 0;
+    height: var(--bs-offcanvas-height);
+    max-height: 100%;
+    border-bottom: var(--bs-offcanvas-border-width) solid var(--bs-offcanvas-border-color);
+    transform: translateY(-100%);
+  }
+  .offcanvas-md.offcanvas-bottom {
+    right: 0;
+    left: 0;
+    height: var(--bs-offcanvas-height);
+    max-height: 100%;
+    border-top: var(--bs-offcanvas-border-width) solid var(--bs-offcanvas-border-color);
+    transform: translateY(100%);
+  }
+  .offcanvas-md.showing, .offcanvas-md.show:not(.hiding) {
+    transform: none;
+  }
+  .offcanvas-md.showing, .offcanvas-md.hiding, .offcanvas-md.show {
+    visibility: visible;
+  }
+}
+@media (min-width: 768px) {
+  .offcanvas-md {
+    --bs-offcanvas-height: auto;
+    --bs-offcanvas-border-width: 0;
+    background-color: transparent !important;
+  }
+  .offcanvas-md .offcanvas-header {
+    display: none;
+  }
+  .offcanvas-md .offcanvas-body {
+    display: flex;
+    flex-grow: 0;
+    padding: 0;
+    overflow-y: visible;
+    background-color: transparent !important;
+  }
+}
+
+@media (max-width: 991.98px) {
+  .offcanvas-lg {
+    position: fixed;
+    bottom: 0;
+    z-index: var(--bs-offcanvas-zindex);
+    display: flex;
+    flex-direction: column;
+    max-width: 100%;
+    color: var(--bs-offcanvas-color);
+    visibility: hidden;
+    background-color: var(--bs-offcanvas-bg);
+    background-clip: padding-box;
+    outline: 0;
+    transition: var(--bs-offcanvas-transition);
+  }
+}
+@media (max-width: 991.98px) and (prefers-reduced-motion: reduce) {
+  .offcanvas-lg {
+    transition: none;
+  }
+}
+@media (max-width: 991.98px) {
+  .offcanvas-lg.offcanvas-start {
+    top: 0;
+    left: 0;
+    width: var(--bs-offcanvas-width);
+    border-right: var(--bs-offcanvas-border-width) solid var(--bs-offcanvas-border-color);
+    transform: translateX(-100%);
+  }
+  .offcanvas-lg.offcanvas-end {
+    top: 0;
+    right: 0;
+    width: var(--bs-offcanvas-width);
+    border-left: var(--bs-offcanvas-border-width) solid var(--bs-offcanvas-border-color);
+    transform: translateX(100%);
+  }
+  .offcanvas-lg.offcanvas-top {
+    top: 0;
+    right: 0;
+    left: 0;
+    height: var(--bs-offcanvas-height);
+    max-height: 100%;
+    border-bottom: var(--bs-offcanvas-border-width) solid var(--bs-offcanvas-border-color);
+    transform: translateY(-100%);
+  }
+  .offcanvas-lg.offcanvas-bottom {
+    right: 0;
+    left: 0;
+    height: var(--bs-offcanvas-height);
+    max-height: 100%;
+    border-top: var(--bs-offcanvas-border-width) solid var(--bs-offcanvas-border-color);
+    transform: translateY(100%);
+  }
+  .offcanvas-lg.showing, .offcanvas-lg.show:not(.hiding) {
+    transform: none;
+  }
+  .offcanvas-lg.showing, .offcanvas-lg.hiding, .offcanvas-lg.show {
+    visibility: visible;
+  }
+}
+@media (min-width: 992px) {
+  .offcanvas-lg {
+    --bs-offcanvas-height: auto;
+    --bs-offcanvas-border-width: 0;
+    background-color: transparent !important;
+  }
+  .offcanvas-lg .offcanvas-header {
+    display: none;
+  }
+  .offcanvas-lg .offcanvas-body {
+    display: flex;
+    flex-grow: 0;
+    padding: 0;
+    overflow-y: visible;
+    background-color: transparent !important;
+  }
+}
+
+@media (max-width: 1199.98px) {
+  .offcanvas-xl {
+    position: fixed;
+    bottom: 0;
+    z-index: var(--bs-offcanvas-zindex);
+    display: flex;
+    flex-direction: column;
+    max-width: 100%;
+    color: var(--bs-offcanvas-color);
+    visibility: hidden;
+    background-color: var(--bs-offcanvas-bg);
+    background-clip: padding-box;
+    outline: 0;
+    transition: var(--bs-offcanvas-transition);
+  }
+}
+@media (max-width: 1199.98px) and (prefers-reduced-motion: reduce) {
+  .offcanvas-xl {
+    transition: none;
+  }
+}
+@media (max-width: 1199.98px) {
+  .offcanvas-xl.offcanvas-start {
+    top: 0;
+    left: 0;
+    width: var(--bs-offcanvas-width);
+    border-right: var(--bs-offcanvas-border-width) solid var(--bs-offcanvas-border-color);
+    transform: translateX(-100%);
+  }
+  .offcanvas-xl.offcanvas-end {
+    top: 0;
+    right: 0;
+    width: var(--bs-offcanvas-width);
+    border-left: var(--bs-offcanvas-border-width) solid var(--bs-offcanvas-border-color);
+    transform: translateX(100%);
+  }
+  .offcanvas-xl.offcanvas-top {
+    top: 0;
+    right: 0;
+    left: 0;
+    height: var(--bs-offcanvas-height);
+    max-height: 100%;
+    border-bottom: var(--bs-offcanvas-border-width) solid var(--bs-offcanvas-border-color);
+    transform: translateY(-100%);
+  }
+  .offcanvas-xl.offcanvas-bottom {
+    right: 0;
+    left: 0;
+    height: var(--bs-offcanvas-height);
+    max-height: 100%;
+    border-top: var(--bs-offcanvas-border-width) solid var(--bs-offcanvas-border-color);
+    transform: translateY(100%);
+  }
+  .offcanvas-xl.showing, .offcanvas-xl.show:not(.hiding) {
+    transform: none;
+  }
+  .offcanvas-xl.showing, .offcanvas-xl.hiding, .offcanvas-xl.show {
+    visibility: visible;
+  }
+}
+@media (min-width: 1200px) {
+  .offcanvas-xl {
+    --bs-offcanvas-height: auto;
+    --bs-offcanvas-border-width: 0;
+    background-color: transparent !important;
+  }
+  .offcanvas-xl .offcanvas-header {
+    display: none;
+  }
+  .offcanvas-xl .offcanvas-body {
+    display: flex;
+    flex-grow: 0;
+    padding: 0;
+    overflow-y: visible;
+    background-color: transparent !important;
+  }
+}
+
+@media (max-width: 1399.98px) {
+  .offcanvas-xxl {
+    position: fixed;
+    bottom: 0;
+    z-index: var(--bs-offcanvas-zindex);
+    display: flex;
+    flex-direction: column;
+    max-width: 100%;
+    color: var(--bs-offcanvas-color);
+    visibility: hidden;
+    background-color: var(--bs-offcanvas-bg);
+    background-clip: padding-box;
+    outline: 0;
+    transition: var(--bs-offcanvas-transition);
+  }
+}
+@media (max-width: 1399.98px) and (prefers-reduced-motion: reduce) {
+  .offcanvas-xxl {
+    transition: none;
+  }
+}
+@media (max-width: 1399.98px) {
+  .offcanvas-xxl.offcanvas-start {
+    top: 0;
+    left: 0;
+    width: var(--bs-offcanvas-width);
+    border-right: var(--bs-offcanvas-border-width) solid var(--bs-offcanvas-border-color);
+    transform: translateX(-100%);
+  }
+  .offcanvas-xxl.offcanvas-end {
+    top: 0;
+    right: 0;
+    width: var(--bs-offcanvas-width);
+    border-left: var(--bs-offcanvas-border-width) solid var(--bs-offcanvas-border-color);
+    transform: translateX(100%);
+  }
+  .offcanvas-xxl.offcanvas-top {
+    top: 0;
+    right: 0;
+    left: 0;
+    height: var(--bs-offcanvas-height);
+    max-height: 100%;
+    border-bottom: var(--bs-offcanvas-border-width) solid var(--bs-offcanvas-border-color);
+    transform: translateY(-100%);
+  }
+  .offcanvas-xxl.offcanvas-bottom {
+    right: 0;
+    left: 0;
+    height: var(--bs-offcanvas-height);
+    max-height: 100%;
+    border-top: var(--bs-offcanvas-border-width) solid var(--bs-offcanvas-border-color);
+    transform: translateY(100%);
+  }
+  .offcanvas-xxl.showing, .offcanvas-xxl.show:not(.hiding) {
+    transform: none;
+  }
+  .offcanvas-xxl.showing, .offcanvas-xxl.hiding, .offcanvas-xxl.show {
+    visibility: visible;
+  }
+}
+@media (min-width: 1400px) {
+  .offcanvas-xxl {
+    --bs-offcanvas-height: auto;
+    --bs-offcanvas-border-width: 0;
+    background-color: transparent !important;
+  }
+  .offcanvas-xxl .offcanvas-header {
+    display: none;
+  }
+  .offcanvas-xxl .offcanvas-body {
+    display: flex;
+    flex-grow: 0;
+    padding: 0;
+    overflow-y: visible;
+    background-color: transparent !important;
+  }
+}
+
+.offcanvas {
+  position: fixed;
+  bottom: 0;
+  z-index: var(--bs-offcanvas-zindex);
+  display: flex;
+  flex-direction: column;
+  max-width: 100%;
+  color: var(--bs-offcanvas-color);
+  visibility: hidden;
+  background-color: var(--bs-offcanvas-bg);
+  background-clip: padding-box;
+  outline: 0;
+  transition: var(--bs-offcanvas-transition);
+}
+@media (prefers-reduced-motion: reduce) {
+  .offcanvas {
+    transition: none;
+  }
+}
+.offcanvas.offcanvas-start {
+  top: 0;
+  left: 0;
+  width: var(--bs-offcanvas-width);
+  border-right: var(--bs-offcanvas-border-width) solid var(--bs-offcanvas-border-color);
+  transform: translateX(-100%);
+}
+.offcanvas.offcanvas-end {
+  top: 0;
+  right: 0;
+  width: var(--bs-offcanvas-width);
+  border-left: var(--bs-offcanvas-border-width) solid var(--bs-offcanvas-border-color);
+  transform: translateX(100%);
+}
+.offcanvas.offcanvas-top {
+  top: 0;
+  right: 0;
+  left: 0;
+  height: var(--bs-offcanvas-height);
+  max-height: 100%;
+  border-bottom: var(--bs-offcanvas-border-width) solid var(--bs-offcanvas-border-color);
+  transform: translateY(-100%);
+}
+.offcanvas.offcanvas-bottom {
+  right: 0;
+  left: 0;
+  height: var(--bs-offcanvas-height);
+  max-height: 100%;
+  border-top: var(--bs-offcanvas-border-width) solid var(--bs-offcanvas-border-color);
+  transform: translateY(100%);
+}
+.offcanvas.showing, .offcanvas.show:not(.hiding) {
+  transform: none;
+}
+.offcanvas.showing, .offcanvas.hiding, .offcanvas.show {
+  visibility: visible;
+}
+
+.offcanvas-backdrop {
+  position: fixed;
+  top: 0;
+  left: 0;
+  z-index: 1040;
+  width: 100vw;
+  height: 100vh;
+  background-color: #000;
+}
+.offcanvas-backdrop.fade {
+  opacity: 0;
+}
+.offcanvas-backdrop.show {
+  opacity: 0.5;
+}
+
+.offcanvas-header {
+  display: flex;
+  align-items: center;
+  justify-content: space-between;
+  padding: var(--bs-offcanvas-padding-y) var(--bs-offcanvas-padding-x);
+}
+.offcanvas-header .btn-close {
+  padding: calc(var(--bs-offcanvas-padding-y) * 0.5) calc(var(--bs-offcanvas-padding-x) * 0.5);
+  margin-top: calc(-0.5 * var(--bs-offcanvas-padding-y));
+  margin-right: calc(-0.5 * var(--bs-offcanvas-padding-x));
+  margin-bottom: calc(-0.5 * var(--bs-offcanvas-padding-y));
+}
+
+.offcanvas-title {
+  margin-bottom: 0;
+  line-height: var(--bs-offcanvas-title-line-height);
+}
+
+.offcanvas-body {
+  flex-grow: 1;
+  padding: var(--bs-offcanvas-padding-y) var(--bs-offcanvas-padding-x);
+  overflow-y: auto;
+}
+
+.placeholder {
+  display: inline-block;
+  min-height: 1em;
+  vertical-align: middle;
+  cursor: wait;
+  background-color: currentcolor;
+  opacity: 0.5;
+}
+.placeholder.btn::before {
+  display: inline-block;
+  content: "";
+}
+
+.placeholder-xs {
+  min-height: 0.6em;
+}
+
+.placeholder-sm {
+  min-height: 0.8em;
+}
+
+.placeholder-lg {
+  min-height: 1.2em;
+}
+
+.placeholder-glow .placeholder {
+  animation: placeholder-glow 2s ease-in-out infinite;
+}
+
+@keyframes placeholder-glow {
+  50% {
+    opacity: 0.2;
+  }
+}
+.placeholder-wave {
+  -webkit-mask-image: linear-gradient(130deg, #000 55%, rgba(0, 0, 0, 0.8) 75%, #000 95%);
+  mask-image: linear-gradient(130deg, #000 55%, rgba(0, 0, 0, 0.8) 75%, #000 95%);
+  -webkit-mask-size: 200% 100%;
+  mask-size: 200% 100%;
+  animation: placeholder-wave 2s linear infinite;
+}
+
+@keyframes placeholder-wave {
+  100% {
+    -webkit-mask-position: -200% 0%;
+    mask-position: -200% 0%;
+  }
+}
+.clearfix::after {
+  display: block;
+  clear: both;
+  content: "";
+}
+
+.text-bg-primary {
+  color: #fff !important;
+  background-color: RGBA(var(--bs-primary-rgb), var(--bs-bg-opacity, 1)) !important;
+}
+
+.text-bg-secondary {
+  color: #fff !important;
+  background-color: RGBA(var(--bs-secondary-rgb), var(--bs-bg-opacity, 1)) !important;
+}
+
+.text-bg-success {
+  color: #fff !important;
+  background-color: RGBA(var(--bs-success-rgb), var(--bs-bg-opacity, 1)) !important;
+}
+
+.text-bg-info {
+  color: #000 !important;
+  background-color: RGBA(var(--bs-info-rgb), var(--bs-bg-opacity, 1)) !important;
+}
+
+.text-bg-warning {
+  color: #000 !important;
+  background-color: RGBA(var(--bs-warning-rgb), var(--bs-bg-opacity, 1)) !important;
+}
+
+.text-bg-danger {
+  color: #fff !important;
+  background-color: RGBA(var(--bs-danger-rgb), var(--bs-bg-opacity, 1)) !important;
+}
+
+.text-bg-light {
+  color: #000 !important;
+  background-color: RGBA(var(--bs-light-rgb), var(--bs-bg-opacity, 1)) !important;
+}
+
+.text-bg-dark {
+  color: #fff !important;
+  background-color: RGBA(var(--bs-dark-rgb), var(--bs-bg-opacity, 1)) !important;
+}
+
+.link-primary {
+  color: RGBA(var(--bs-primary-rgb), var(--bs-link-opacity, 1)) !important;
+  -webkit-text-decoration-color: RGBA(var(--bs-primary-rgb), var(--bs-link-underline-opacity, 1)) !important;
+  text-decoration-color: RGBA(var(--bs-primary-rgb), var(--bs-link-underline-opacity, 1)) !important;
+}
+.link-primary:hover, .link-primary:focus {
+  color: RGBA(10, 88, 202, var(--bs-link-opacity, 1)) !important;
+  -webkit-text-decoration-color: RGBA(10, 88, 202, var(--bs-link-underline-opacity, 1)) !important;
+  text-decoration-color: RGBA(10, 88, 202, var(--bs-link-underline-opacity, 1)) !important;
+}
+
+.link-secondary {
+  color: RGBA(var(--bs-secondary-rgb), var(--bs-link-opacity, 1)) !important;
+  -webkit-text-decoration-color: RGBA(var(--bs-secondary-rgb), var(--bs-link-underline-opacity, 1)) !important;
+  text-decoration-color: RGBA(var(--bs-secondary-rgb), var(--bs-link-underline-opacity, 1)) !important;
+}
+.link-secondary:hover, .link-secondary:focus {
+  color: RGBA(86, 94, 100, var(--bs-link-opacity, 1)) !important;
+  -webkit-text-decoration-color: RGBA(86, 94, 100, var(--bs-link-underline-opacity, 1)) !important;
+  text-decoration-color: RGBA(86, 94, 100, var(--bs-link-underline-opacity, 1)) !important;
+}
+
+.link-success {
+  color: RGBA(var(--bs-success-rgb), var(--bs-link-opacity, 1)) !important;
+  -webkit-text-decoration-color: RGBA(var(--bs-success-rgb), var(--bs-link-underline-opacity, 1)) !important;
+  text-decoration-color: RGBA(var(--bs-success-rgb), var(--bs-link-underline-opacity, 1)) !important;
+}
+.link-success:hover, .link-success:focus {
+  color: RGBA(20, 108, 67, var(--bs-link-opacity, 1)) !important;
+  -webkit-text-decoration-color: RGBA(20, 108, 67, var(--bs-link-underline-opacity, 1)) !important;
+  text-decoration-color: RGBA(20, 108, 67, var(--bs-link-underline-opacity, 1)) !important;
+}
+
+.link-info {
+  color: RGBA(var(--bs-info-rgb), var(--bs-link-opacity, 1)) !important;
+  -webkit-text-decoration-color: RGBA(var(--bs-info-rgb), var(--bs-link-underline-opacity, 1)) !important;
+  text-decoration-color: RGBA(var(--bs-info-rgb), var(--bs-link-underline-opacity, 1)) !important;
+}
+.link-info:hover, .link-info:focus {
+  color: RGBA(61, 213, 243, var(--bs-link-opacity, 1)) !important;
+  -webkit-text-decoration-color: RGBA(61, 213, 243, var(--bs-link-underline-opacity, 1)) !important;
+  text-decoration-color: RGBA(61, 213, 243, var(--bs-link-underline-opacity, 1)) !important;
+}
+
+.link-warning {
+  color: RGBA(var(--bs-warning-rgb), var(--bs-link-opacity, 1)) !important;
+  -webkit-text-decoration-color: RGBA(var(--bs-warning-rgb), var(--bs-link-underline-opacity, 1)) !important;
+  text-decoration-color: RGBA(var(--bs-warning-rgb), var(--bs-link-underline-opacity, 1)) !important;
+}
+.link-warning:hover, .link-warning:focus {
+  color: RGBA(255, 205, 57, var(--bs-link-opacity, 1)) !important;
+  -webkit-text-decoration-color: RGBA(255, 205, 57, var(--bs-link-underline-opacity, 1)) !important;
+  text-decoration-color: RGBA(255, 205, 57, var(--bs-link-underline-opacity, 1)) !important;
+}
+
+.link-danger {
+  color: RGBA(var(--bs-danger-rgb), var(--bs-link-opacity, 1)) !important;
+  -webkit-text-decoration-color: RGBA(var(--bs-danger-rgb), var(--bs-link-underline-opacity, 1)) !important;
+  text-decoration-color: RGBA(var(--bs-danger-rgb), var(--bs-link-underline-opacity, 1)) !important;
+}
+.link-danger:hover, .link-danger:focus {
+  color: RGBA(176, 42, 55, var(--bs-link-opacity, 1)) !important;
+  -webkit-text-decoration-color: RGBA(176, 42, 55, var(--bs-link-underline-opacity, 1)) !important;
+  text-decoration-color: RGBA(176, 42, 55, var(--bs-link-underline-opacity, 1)) !important;
+}
+
+.link-light {
+  color: RGBA(var(--bs-light-rgb), var(--bs-link-opacity, 1)) !important;
+  -webkit-text-decoration-color: RGBA(var(--bs-light-rgb), var(--bs-link-underline-opacity, 1)) !important;
+  text-decoration-color: RGBA(var(--bs-light-rgb), var(--bs-link-underline-opacity, 1)) !important;
+}
+.link-light:hover, .link-light:focus {
+  color: RGBA(249, 250, 251, var(--bs-link-opacity, 1)) !important;
+  -webkit-text-decoration-color: RGBA(249, 250, 251, var(--bs-link-underline-opacity, 1)) !important;
+  text-decoration-color: RGBA(249, 250, 251, var(--bs-link-underline-opacity, 1)) !important;
+}
+
+.link-dark {
+  color: RGBA(var(--bs-dark-rgb), var(--bs-link-opacity, 1)) !important;
+  -webkit-text-decoration-color: RGBA(var(--bs-dark-rgb), var(--bs-link-underline-opacity, 1)) !important;
+  text-decoration-color: RGBA(var(--bs-dark-rgb), var(--bs-link-underline-opacity, 1)) !important;
+}
+.link-dark:hover, .link-dark:focus {
+  color: RGBA(26, 30, 33, var(--bs-link-opacity, 1)) !important;
+  -webkit-text-decoration-color: RGBA(26, 30, 33, var(--bs-link-underline-opacity, 1)) !important;
+  text-decoration-color: RGBA(26, 30, 33, var(--bs-link-underline-opacity, 1)) !important;
+}
+
+.link-body-emphasis {
+  color: RGBA(var(--bs-emphasis-color-rgb), var(--bs-link-opacity, 1)) !important;
+  -webkit-text-decoration-color: RGBA(var(--bs-emphasis-color-rgb), var(--bs-link-underline-opacity, 1)) !important;
+  text-decoration-color: RGBA(var(--bs-emphasis-color-rgb), var(--bs-link-underline-opacity, 1)) !important;
+}
+.link-body-emphasis:hover, .link-body-emphasis:focus {
+  color: RGBA(var(--bs-emphasis-color-rgb), var(--bs-link-opacity, 0.75)) !important;
+  -webkit-text-decoration-color: RGBA(var(--bs-emphasis-color-rgb), var(--bs-link-underline-opacity, 0.75)) !important;
+  text-decoration-color: RGBA(var(--bs-emphasis-color-rgb), var(--bs-link-underline-opacity, 0.75)) !important;
+}
+
+.focus-ring:focus {
+  outline: 0;
+  box-shadow: var(--bs-focus-ring-x, 0) var(--bs-focus-ring-y, 0) var(--bs-focus-ring-blur, 0) var(--bs-focus-ring-width) var(--bs-focus-ring-color);
+}
+
+.icon-link {
+  display: inline-flex;
+  gap: 0.375rem;
+  align-items: center;
+  -webkit-text-decoration-color: rgba(var(--bs-link-color-rgb), var(--bs-link-opacity, 0.5));
+  text-decoration-color: rgba(var(--bs-link-color-rgb), var(--bs-link-opacity, 0.5));
+  text-underline-offset: 0.25em;
+  -webkit-backface-visibility: hidden;
+  backface-visibility: hidden;
+}
+.icon-link > .bi {
+  flex-shrink: 0;
+  width: 1em;
+  height: 1em;
+  fill: currentcolor;
+  transition: 0.2s ease-in-out transform;
+}
+@media (prefers-reduced-motion: reduce) {
+  .icon-link > .bi {
+    transition: none;
+  }
+}
+
+.icon-link-hover:hover > .bi, .icon-link-hover:focus-visible > .bi {
+  transform: var(--bs-icon-link-transform, translate3d(0.25em, 0, 0));
+}
+
+.ratio {
+  position: relative;
+  width: 100%;
+}
+.ratio::before {
+  display: block;
+  padding-top: var(--bs-aspect-ratio);
+  content: "";
+}
+.ratio > * {
+  position: absolute;
+  top: 0;
+  left: 0;
+  width: 100%;
+  height: 100%;
+}
+
+.ratio-1x1 {
+  --bs-aspect-ratio: 100%;
+}
+
+.ratio-4x3 {
+  --bs-aspect-ratio: 75%;
+}
+
+.ratio-16x9 {
+  --bs-aspect-ratio: 56.25%;
+}
+
+.ratio-21x9 {
+  --bs-aspect-ratio: 42.8571428571%;
+}
+
+.fixed-top {
+  position: fixed;
+  top: 0;
+  right: 0;
+  left: 0;
+  z-index: 1030;
+}
+
+.fixed-bottom {
+  position: fixed;
+  right: 0;
+  bottom: 0;
+  left: 0;
+  z-index: 1030;
+}
+
+.sticky-top {
+  position: -webkit-sticky;
+  position: sticky;
+  top: 0;
+  z-index: 1020;
+}
+
+.sticky-bottom {
+  position: -webkit-sticky;
+  position: sticky;
+  bottom: 0;
+  z-index: 1020;
+}
+
+@media (min-width: 576px) {
+  .sticky-sm-top {
+    position: -webkit-sticky;
+    position: sticky;
+    top: 0;
+    z-index: 1020;
+  }
+  .sticky-sm-bottom {
+    position: -webkit-sticky;
+    position: sticky;
+    bottom: 0;
+    z-index: 1020;
+  }
+}
+@media (min-width: 768px) {
+  .sticky-md-top {
+    position: -webkit-sticky;
+    position: sticky;
+    top: 0;
+    z-index: 1020;
+  }
+  .sticky-md-bottom {
+    position: -webkit-sticky;
+    position: sticky;
+    bottom: 0;
+    z-index: 1020;
+  }
+}
+@media (min-width: 992px) {
+  .sticky-lg-top {
+    position: -webkit-sticky;
+    position: sticky;
+    top: 0;
+    z-index: 1020;
+  }
+  .sticky-lg-bottom {
+    position: -webkit-sticky;
+    position: sticky;
+    bottom: 0;
+    z-index: 1020;
+  }
+}
+@media (min-width: 1200px) {
+  .sticky-xl-top {
+    position: -webkit-sticky;
+    position: sticky;
+    top: 0;
+    z-index: 1020;
+  }
+  .sticky-xl-bottom {
+    position: -webkit-sticky;
+    position: sticky;
+    bottom: 0;
+    z-index: 1020;
+  }
+}
+@media (min-width: 1400px) {
+  .sticky-xxl-top {
+    position: -webkit-sticky;
+    position: sticky;
+    top: 0;
+    z-index: 1020;
+  }
+  .sticky-xxl-bottom {
+    position: -webkit-sticky;
+    position: sticky;
+    bottom: 0;
+    z-index: 1020;
+  }
+}
+.hstack {
+  display: flex;
+  flex-direction: row;
+  align-items: center;
+  align-self: stretch;
+}
+
+.vstack {
+  display: flex;
+  flex: 1 1 auto;
+  flex-direction: column;
+  align-self: stretch;
+}
+
+.visually-hidden,
+.visually-hidden-focusable:not(:focus):not(:focus-within) {
+  width: 1px !important;
+  height: 1px !important;
+  padding: 0 !important;
+  margin: -1px !important;
+  overflow: hidden !important;
+  clip: rect(0, 0, 0, 0) !important;
+  white-space: nowrap !important;
+  border: 0 !important;
+}
+.visually-hidden:not(caption),
+.visually-hidden-focusable:not(:focus):not(:focus-within):not(caption) {
+  position: absolute !important;
+}
+
+.stretched-link::after {
+  position: absolute;
+  top: 0;
+  right: 0;
+  bottom: 0;
+  left: 0;
+  z-index: 1;
+  content: "";
+}
+
+.text-truncate {
+  overflow: hidden;
+  text-overflow: ellipsis;
+  white-space: nowrap;
+}
+
+.vr {
+  display: inline-block;
+  align-self: stretch;
+  width: var(--bs-border-width);
+  min-height: 1em;
+  background-color: currentcolor;
+  opacity: 0.25;
+}
+
+.align-baseline {
+  vertical-align: baseline !important;
+}
+
+.align-top {
+  vertical-align: top !important;
+}
+
+.align-middle {
+  vertical-align: middle !important;
+}
+
+.align-bottom {
+  vertical-align: bottom !important;
+}
+
+.align-text-bottom {
+  vertical-align: text-bottom !important;
+}
+
+.align-text-top {
+  vertical-align: text-top !important;
+}
+
+.float-start {
+  float: left !important;
+}
+
+.float-end {
+  float: right !important;
+}
+
+.float-none {
+  float: none !important;
+}
+
+.object-fit-contain {
+  -o-object-fit: contain !important;
+  object-fit: contain !important;
+}
+
+.object-fit-cover {
+  -o-object-fit: cover !important;
+  object-fit: cover !important;
+}
+
+.object-fit-fill {
+  -o-object-fit: fill !important;
+  object-fit: fill !important;
+}
+
+.object-fit-scale {
+  -o-object-fit: scale-down !important;
+  object-fit: scale-down !important;
+}
+
+.object-fit-none {
+  -o-object-fit: none !important;
+  object-fit: none !important;
+}
+
+.opacity-0 {
+  opacity: 0 !important;
+}
+
+.opacity-25 {
+  opacity: 0.25 !important;
+}
+
+.opacity-50 {
+  opacity: 0.5 !important;
+}
+
+.opacity-75 {
+  opacity: 0.75 !important;
+}
+
+.opacity-100 {
+  opacity: 1 !important;
+}
+
+.overflow-auto {
+  overflow: auto !important;
+}
+
+.overflow-hidden {
+  overflow: hidden !important;
+}
+
+.overflow-visible {
+  overflow: visible !important;
+}
+
+.overflow-scroll {
+  overflow: scroll !important;
+}
+
+.overflow-x-auto {
+  overflow-x: auto !important;
+}
+
+.overflow-x-hidden {
+  overflow-x: hidden !important;
+}
+
+.overflow-x-visible {
+  overflow-x: visible !important;
+}
+
+.overflow-x-scroll {
+  overflow-x: scroll !important;
+}
+
+.overflow-y-auto {
+  overflow-y: auto !important;
+}
+
+.overflow-y-hidden {
+  overflow-y: hidden !important;
+}
+
+.overflow-y-visible {
+  overflow-y: visible !important;
+}
+
+.overflow-y-scroll {
+  overflow-y: scroll !important;
+}
+
+.d-inline {
+  display: inline !important;
+}
+
+.d-inline-block {
+  display: inline-block !important;
+}
+
+.d-block {
+  display: block !important;
+}
+
+.d-grid {
+  display: grid !important;
+}
+
+.d-inline-grid {
+  display: inline-grid !important;
+}
+
+.d-table {
+  display: table !important;
+}
+
+.d-table-row {
+  display: table-row !important;
+}
+
+.d-table-cell {
+  display: table-cell !important;
+}
+
+.d-flex {
+  display: flex !important;
+}
+
+.d-inline-flex {
+  display: inline-flex !important;
+}
+
+.d-none {
+  display: none !important;
+}
+
+.shadow {
+  box-shadow: var(--bs-box-shadow) !important;
+}
+
+.shadow-sm {
+  box-shadow: var(--bs-box-shadow-sm) !important;
+}
+
+.shadow-lg {
+  box-shadow: var(--bs-box-shadow-lg) !important;
+}
+
+.shadow-none {
+  box-shadow: none !important;
+}
+
+.focus-ring-primary {
+  --bs-focus-ring-color: rgba(var(--bs-primary-rgb), var(--bs-focus-ring-opacity));
+}
+
+.focus-ring-secondary {
+  --bs-focus-ring-color: rgba(var(--bs-secondary-rgb), var(--bs-focus-ring-opacity));
+}
+
+.focus-ring-success {
+  --bs-focus-ring-color: rgba(var(--bs-success-rgb), var(--bs-focus-ring-opacity));
+}
+
+.focus-ring-info {
+  --bs-focus-ring-color: rgba(var(--bs-info-rgb), var(--bs-focus-ring-opacity));
+}
+
+.focus-ring-warning {
+  --bs-focus-ring-color: rgba(var(--bs-warning-rgb), var(--bs-focus-ring-opacity));
+}
+
+.focus-ring-danger {
+  --bs-focus-ring-color: rgba(var(--bs-danger-rgb), var(--bs-focus-ring-opacity));
+}
+
+.focus-ring-light {
+  --bs-focus-ring-color: rgba(var(--bs-light-rgb), var(--bs-focus-ring-opacity));
+}
+
+.focus-ring-dark {
+  --bs-focus-ring-color: rgba(var(--bs-dark-rgb), var(--bs-focus-ring-opacity));
+}
+
+.position-static {
+  position: static !important;
+}
+
+.position-relative {
+  position: relative !important;
+}
+
+.position-absolute {
+  position: absolute !important;
+}
+
+.position-fixed {
+  position: fixed !important;
+}
+
+.position-sticky {
+  position: -webkit-sticky !important;
+  position: sticky !important;
+}
+
+.top-0 {
+  top: 0 !important;
+}
+
+.top-50 {
+  top: 50% !important;
+}
+
+.top-100 {
+  top: 100% !important;
+}
+
+.bottom-0 {
+  bottom: 0 !important;
+}
+
+.bottom-50 {
+  bottom: 50% !important;
+}
+
+.bottom-100 {
+  bottom: 100% !important;
+}
+
+.start-0 {
+  left: 0 !important;
+}
+
+.start-50 {
+  left: 50% !important;
+}
+
+.start-100 {
+  left: 100% !important;
+}
+
+.end-0 {
+  right: 0 !important;
+}
+
+.end-50 {
+  right: 50% !important;
+}
+
+.end-100 {
+  right: 100% !important;
+}
+
+.translate-middle {
+  transform: translate(-50%, -50%) !important;
+}
+
+.translate-middle-x {
+  transform: translateX(-50%) !important;
+}
+
+.translate-middle-y {
+  transform: translateY(-50%) !important;
+}
+
+.border {
+  border: var(--bs-border-width) var(--bs-border-style) var(--bs-border-color) !important;
+}
+
+.border-0 {
+  border: 0 !important;
+}
+
+.border-top {
+  border-top: var(--bs-border-width) var(--bs-border-style) var(--bs-border-color) !important;
+}
+
+.border-top-0 {
+  border-top: 0 !important;
+}
+
+.border-end {
+  border-right: var(--bs-border-width) var(--bs-border-style) var(--bs-border-color) !important;
+}
+
+.border-end-0 {
+  border-right: 0 !important;
+}
+
+.border-bottom {
+  border-bottom: var(--bs-border-width) var(--bs-border-style) var(--bs-border-color) !important;
+}
+
+.border-bottom-0 {
+  border-bottom: 0 !important;
+}
+
+.border-start {
+  border-left: var(--bs-border-width) var(--bs-border-style) var(--bs-border-color) !important;
+}
+
+.border-start-0 {
+  border-left: 0 !important;
+}
+
+.border-primary {
+  --bs-border-opacity: 1;
+  border-color: rgba(var(--bs-primary-rgb), var(--bs-border-opacity)) !important;
+}
+
+.border-secondary {
+  --bs-border-opacity: 1;
+  border-color: rgba(var(--bs-secondary-rgb), var(--bs-border-opacity)) !important;
+}
+
+.border-success {
+  --bs-border-opacity: 1;
+  border-color: rgba(var(--bs-success-rgb), var(--bs-border-opacity)) !important;
+}
+
+.border-info {
+  --bs-border-opacity: 1;
+  border-color: rgba(var(--bs-info-rgb), var(--bs-border-opacity)) !important;
+}
+
+.border-warning {
+  --bs-border-opacity: 1;
+  border-color: rgba(var(--bs-warning-rgb), var(--bs-border-opacity)) !important;
+}
+
+.border-danger {
+  --bs-border-opacity: 1;
+  border-color: rgba(var(--bs-danger-rgb), var(--bs-border-opacity)) !important;
+}
+
+.border-light {
+  --bs-border-opacity: 1;
+  border-color: rgba(var(--bs-light-rgb), var(--bs-border-opacity)) !important;
+}
+
+.border-dark {
+  --bs-border-opacity: 1;
+  border-color: rgba(var(--bs-dark-rgb), var(--bs-border-opacity)) !important;
+}
+
+.border-black {
+  --bs-border-opacity: 1;
+  border-color: rgba(var(--bs-black-rgb), var(--bs-border-opacity)) !important;
+}
+
+.border-white {
+  --bs-border-opacity: 1;
+  border-color: rgba(var(--bs-white-rgb), var(--bs-border-opacity)) !important;
+}
+
+.border-primary-subtle {
+  border-color: var(--bs-primary-border-subtle) !important;
+}
+
+.border-secondary-subtle {
+  border-color: var(--bs-secondary-border-subtle) !important;
+}
+
+.border-success-subtle {
+  border-color: var(--bs-success-border-subtle) !important;
+}
+
+.border-info-subtle {
+  border-color: var(--bs-info-border-subtle) !important;
+}
+
+.border-warning-subtle {
+  border-color: var(--bs-warning-border-subtle) !important;
+}
+
+.border-danger-subtle {
+  border-color: var(--bs-danger-border-subtle) !important;
+}
+
+.border-light-subtle {
+  border-color: var(--bs-light-border-subtle) !important;
+}
+
+.border-dark-subtle {
+  border-color: var(--bs-dark-border-subtle) !important;
+}
+
+.border-1 {
+  border-width: 1px !important;
+}
+
+.border-2 {
+  border-width: 2px !important;
+}
+
+.border-3 {
+  border-width: 3px !important;
+}
+
+.border-4 {
+  border-width: 4px !important;
+}
+
+.border-5 {
+  border-width: 5px !important;
+}
+
+.border-opacity-10 {
+  --bs-border-opacity: 0.1;
+}
+
+.border-opacity-25 {
+  --bs-border-opacity: 0.25;
+}
+
+.border-opacity-50 {
+  --bs-border-opacity: 0.5;
+}
+
+.border-opacity-75 {
+  --bs-border-opacity: 0.75;
+}
+
+.border-opacity-100 {
+  --bs-border-opacity: 1;
+}
+
+.w-25 {
+  width: 25% !important;
+}
+
+.w-50 {
+  width: 50% !important;
+}
+
+.w-75 {
+  width: 75% !important;
+}
+
+.w-100 {
+  width: 100% !important;
+}
+
+.w-auto {
+  width: auto !important;
+}
+
+.mw-100 {
+  max-width: 100% !important;
+}
+
+.vw-100 {
+  width: 100vw !important;
+}
+
+.min-vw-100 {
+  min-width: 100vw !important;
+}
+
+.h-25 {
+  height: 25% !important;
+}
+
+.h-50 {
+  height: 50% !important;
+}
+
+.h-75 {
+  height: 75% !important;
+}
+
+.h-100 {
+  height: 100% !important;
+}
+
+.h-auto {
+  height: auto !important;
+}
+
+.mh-100 {
+  max-height: 100% !important;
+}
+
+.vh-100 {
+  height: 100vh !important;
+}
+
+.min-vh-100 {
+  min-height: 100vh !important;
+}
+
+.flex-fill {
+  flex: 1 1 auto !important;
+}
+
+.flex-row {
+  flex-direction: row !important;
+}
+
+.flex-column {
+  flex-direction: column !important;
+}
+
+.flex-row-reverse {
+  flex-direction: row-reverse !important;
+}
+
+.flex-column-reverse {
+  flex-direction: column-reverse !important;
+}
+
+.flex-grow-0 {
+  flex-grow: 0 !important;
+}
+
+.flex-grow-1 {
+  flex-grow: 1 !important;
+}
+
+.flex-shrink-0 {
+  flex-shrink: 0 !important;
+}
+
+.flex-shrink-1 {
+  flex-shrink: 1 !important;
+}
+
+.flex-wrap {
+  flex-wrap: wrap !important;
+}
+
+.flex-nowrap {
+  flex-wrap: nowrap !important;
+}
+
+.flex-wrap-reverse {
+  flex-wrap: wrap-reverse !important;
+}
+
+.justify-content-start {
+  justify-content: flex-start !important;
+}
+
+.justify-content-end {
+  justify-content: flex-end !important;
+}
+
+.justify-content-center {
+  justify-content: center !important;
+}
+
+.justify-content-between {
+  justify-content: space-between !important;
+}
+
+.justify-content-around {
+  justify-content: space-around !important;
+}
+
+.justify-content-evenly {
+  justify-content: space-evenly !important;
+}
+
+.align-items-start {
+  align-items: flex-start !important;
+}
+
+.align-items-end {
+  align-items: flex-end !important;
+}
+
+.align-items-center {
+  align-items: center !important;
+}
+
+.align-items-baseline {
+  align-items: baseline !important;
+}
+
+.align-items-stretch {
+  align-items: stretch !important;
+}
+
+.align-content-start {
+  align-content: flex-start !important;
+}
+
+.align-content-end {
+  align-content: flex-end !important;
+}
+
+.align-content-center {
+  align-content: center !important;
+}
+
+.align-content-between {
+  align-content: space-between !important;
+}
+
+.align-content-around {
+  align-content: space-around !important;
+}
+
+.align-content-stretch {
+  align-content: stretch !important;
+}
+
+.align-self-auto {
+  align-self: auto !important;
+}
+
+.align-self-start {
+  align-self: flex-start !important;
+}
+
+.align-self-end {
+  align-self: flex-end !important;
+}
+
+.align-self-center {
+  align-self: center !important;
+}
+
+.align-self-baseline {
+  align-self: baseline !important;
+}
+
+.align-self-stretch {
+  align-self: stretch !important;
+}
+
+.order-first {
+  order: -1 !important;
+}
+
+.order-0 {
+  order: 0 !important;
+}
+
+.order-1 {
+  order: 1 !important;
+}
+
+.order-2 {
+  order: 2 !important;
+}
+
+.order-3 {
+  order: 3 !important;
+}
+
+.order-4 {
+  order: 4 !important;
+}
+
+.order-5 {
+  order: 5 !important;
+}
+
+.order-last {
+  order: 6 !important;
+}
+
+.m-0 {
+  margin: 0 !important;
+}
+
+.m-1 {
+  margin: 0.25rem !important;
+}
+
+.m-2 {
+  margin: 0.5rem !important;
+}
+
+.m-3 {
+  margin: 1rem !important;
+}
+
+.m-4 {
+  margin: 1.5rem !important;
+}
+
+.m-5 {
+  margin: 3rem !important;
+}
+
+.m-auto {
+  margin: auto !important;
+}
+
+.mx-0 {
+  margin-right: 0 !important;
+  margin-left: 0 !important;
+}
+
+.mx-1 {
+  margin-right: 0.25rem !important;
+  margin-left: 0.25rem !important;
+}
+
+.mx-2 {
+  margin-right: 0.5rem !important;
+  margin-left: 0.5rem !important;
+}
+
+.mx-3 {
+  margin-right: 1rem !important;
+  margin-left: 1rem !important;
+}
+
+.mx-4 {
+  margin-right: 1.5rem !important;
+  margin-left: 1.5rem !important;
+}
+
+.mx-5 {
+  margin-right: 3rem !important;
+  margin-left: 3rem !important;
+}
+
+.mx-auto {
+  margin-right: auto !important;
+  margin-left: auto !important;
+}
+
+.my-0 {
+  margin-top: 0 !important;
+  margin-bottom: 0 !important;
+}
+
+.my-1 {
+  margin-top: 0.25rem !important;
+  margin-bottom: 0.25rem !important;
+}
+
+.my-2 {
+  margin-top: 0.5rem !important;
+  margin-bottom: 0.5rem !important;
+}
+
+.my-3 {
+  margin-top: 1rem !important;
+  margin-bottom: 1rem !important;
+}
+
+.my-4 {
+  margin-top: 1.5rem !important;
+  margin-bottom: 1.5rem !important;
+}
+
+.my-5 {
+  margin-top: 3rem !important;
+  margin-bottom: 3rem !important;
+}
+
+.my-auto {
+  margin-top: auto !important;
+  margin-bottom: auto !important;
+}
+
+.mt-0 {
+  margin-top: 0 !important;
+}
+
+.mt-1 {
+  margin-top: 0.25rem !important;
+}
+
+.mt-2 {
+  margin-top: 0.5rem !important;
+}
+
+.mt-3 {
+  margin-top: 1rem !important;
+}
+
+.mt-4 {
+  margin-top: 1.5rem !important;
+}
+
+.mt-5 {
+  margin-top: 3rem !important;
+}
+
+.mt-auto {
+  margin-top: auto !important;
+}
+
+.me-0 {
+  margin-right: 0 !important;
+}
+
+.me-1 {
+  margin-right: 0.25rem !important;
+}
+
+.me-2 {
+  margin-right: 0.5rem !important;
+}
+
+.me-3 {
+  margin-right: 1rem !important;
+}
+
+.me-4 {
+  margin-right: 1.5rem !important;
+}
+
+.me-5 {
+  margin-right: 3rem !important;
+}
+
+.me-auto {
+  margin-right: auto !important;
+}
+
+.mb-0 {
+  margin-bottom: 0 !important;
+}
+
+.mb-1 {
+  margin-bottom: 0.25rem !important;
+}
+
+.mb-2 {
+  margin-bottom: 0.5rem !important;
+}
+
+.mb-3 {
+  margin-bottom: 1rem !important;
+}
+
+.mb-4 {
+  margin-bottom: 1.5rem !important;
+}
+
+.mb-5 {
+  margin-bottom: 3rem !important;
+}
+
+.mb-auto {
+  margin-bottom: auto !important;
+}
+
+.ms-0 {
+  margin-left: 0 !important;
+}
+
+.ms-1 {
+  margin-left: 0.25rem !important;
+}
+
+.ms-2 {
+  margin-left: 0.5rem !important;
+}
+
+.ms-3 {
+  margin-left: 1rem !important;
+}
+
+.ms-4 {
+  margin-left: 1.5rem !important;
+}
+
+.ms-5 {
+  margin-left: 3rem !important;
+}
+
+.ms-auto {
+  margin-left: auto !important;
+}
+
+.p-0 {
+  padding: 0 !important;
+}
+
+.p-1 {
+  padding: 0.25rem !important;
+}
+
+.p-2 {
+  padding: 0.5rem !important;
+}
+
+.p-3 {
+  padding: 1rem !important;
+}
+
+.p-4 {
+  padding: 1.5rem !important;
+}
+
+.p-5 {
+  padding: 3rem !important;
+}
+
+.px-0 {
+  padding-right: 0 !important;
+  padding-left: 0 !important;
+}
+
+.px-1 {
+  padding-right: 0.25rem !important;
+  padding-left: 0.25rem !important;
+}
+
+.px-2 {
+  padding-right: 0.5rem !important;
+  padding-left: 0.5rem !important;
+}
+
+.px-3 {
+  padding-right: 1rem !important;
+  padding-left: 1rem !important;
+}
+
+.px-4 {
+  padding-right: 1.5rem !important;
+  padding-left: 1.5rem !important;
+}
+
+.px-5 {
+  padding-right: 3rem !important;
+  padding-left: 3rem !important;
+}
+
+.py-0 {
+  padding-top: 0 !important;
+  padding-bottom: 0 !important;
+}
+
+.py-1 {
+  padding-top: 0.25rem !important;
+  padding-bottom: 0.25rem !important;
+}
+
+.py-2 {
+  padding-top: 0.5rem !important;
+  padding-bottom: 0.5rem !important;
+}
+
+.py-3 {
+  padding-top: 1rem !important;
+  padding-bottom: 1rem !important;
+}
+
+.py-4 {
+  padding-top: 1.5rem !important;
+  padding-bottom: 1.5rem !important;
+}
+
+.py-5 {
+  padding-top: 3rem !important;
+  padding-bottom: 3rem !important;
+}
+
+.pt-0 {
+  padding-top: 0 !important;
+}
+
+.pt-1 {
+  padding-top: 0.25rem !important;
+}
+
+.pt-2 {
+  padding-top: 0.5rem !important;
+}
+
+.pt-3 {
+  padding-top: 1rem !important;
+}
+
+.pt-4 {
+  padding-top: 1.5rem !important;
+}
+
+.pt-5 {
+  padding-top: 3rem !important;
+}
+
+.pe-0 {
+  padding-right: 0 !important;
+}
+
+.pe-1 {
+  padding-right: 0.25rem !important;
+}
+
+.pe-2 {
+  padding-right: 0.5rem !important;
+}
+
+.pe-3 {
+  padding-right: 1rem !important;
+}
+
+.pe-4 {
+  padding-right: 1.5rem !important;
+}
+
+.pe-5 {
+  padding-right: 3rem !important;
+}
+
+.pb-0 {
+  padding-bottom: 0 !important;
+}
+
+.pb-1 {
+  padding-bottom: 0.25rem !important;
+}
+
+.pb-2 {
+  padding-bottom: 0.5rem !important;
+}
+
+.pb-3 {
+  padding-bottom: 1rem !important;
+}
+
+.pb-4 {
+  padding-bottom: 1.5rem !important;
+}
+
+.pb-5 {
+  padding-bottom: 3rem !important;
+}
+
+.ps-0 {
+  padding-left: 0 !important;
+}
+
+.ps-1 {
+  padding-left: 0.25rem !important;
+}
+
+.ps-2 {
+  padding-left: 0.5rem !important;
+}
+
+.ps-3 {
+  padding-left: 1rem !important;
+}
+
+.ps-4 {
+  padding-left: 1.5rem !important;
+}
+
+.ps-5 {
+  padding-left: 3rem !important;
+}
+
+.gap-0 {
+  gap: 0 !important;
+}
+
+.gap-1 {
+  gap: 0.25rem !important;
+}
+
+.gap-2 {
+  gap: 0.5rem !important;
+}
+
+.gap-3 {
+  gap: 1rem !important;
+}
+
+.gap-4 {
+  gap: 1.5rem !important;
+}
+
+.gap-5 {
+  gap: 3rem !important;
+}
+
+.row-gap-0 {
+  row-gap: 0 !important;
+}
+
+.row-gap-1 {
+  row-gap: 0.25rem !important;
+}
+
+.row-gap-2 {
+  row-gap: 0.5rem !important;
+}
+
+.row-gap-3 {
+  row-gap: 1rem !important;
+}
+
+.row-gap-4 {
+  row-gap: 1.5rem !important;
+}
+
+.row-gap-5 {
+  row-gap: 3rem !important;
+}
+
+.column-gap-0 {
+  -moz-column-gap: 0 !important;
+  column-gap: 0 !important;
+}
+
+.column-gap-1 {
+  -moz-column-gap: 0.25rem !important;
+  column-gap: 0.25rem !important;
+}
+
+.column-gap-2 {
+  -moz-column-gap: 0.5rem !important;
+  column-gap: 0.5rem !important;
+}
+
+.column-gap-3 {
+  -moz-column-gap: 1rem !important;
+  column-gap: 1rem !important;
+}
+
+.column-gap-4 {
+  -moz-column-gap: 1.5rem !important;
+  column-gap: 1.5rem !important;
+}
+
+.column-gap-5 {
+  -moz-column-gap: 3rem !important;
+  column-gap: 3rem !important;
+}
+
+.font-monospace {
+  font-family: var(--bs-font-monospace) !important;
+}
+
+.fs-1 {
+  font-size: calc(1.375rem + 1.5vw) !important;
+}
+
+.fs-2 {
+  font-size: calc(1.325rem + 0.9vw) !important;
+}
+
+.fs-3 {
+  font-size: calc(1.3rem + 0.6vw) !important;
+}
+
+.fs-4 {
+  font-size: calc(1.275rem + 0.3vw) !important;
+}
+
+.fs-5 {
+  font-size: 1.25rem !important;
+}
+
+.fs-6 {
+  font-size: 1rem !important;
+}
+
+.fst-italic {
+  font-style: italic !important;
+}
+
+.fst-normal {
+  font-style: normal !important;
+}
+
+.fw-lighter {
+  font-weight: lighter !important;
+}
+
+.fw-light {
+  font-weight: 300 !important;
+}
+
+.fw-normal {
+  font-weight: 400 !important;
+}
+
+.fw-medium {
+  font-weight: 500 !important;
+}
+
+.fw-semibold {
+  font-weight: 600 !important;
+}
+
+.fw-bold {
+  font-weight: 700 !important;
+}
+
+.fw-bolder {
+  font-weight: bolder !important;
+}
+
+.lh-1 {
+  line-height: 1 !important;
+}
+
+.lh-sm {
+  line-height: 1.25 !important;
+}
+
+.lh-base {
+  line-height: 1.5 !important;
+}
+
+.lh-lg {
+  line-height: 2 !important;
+}
+
+.text-start {
+  text-align: left !important;
+}
+
+.text-end {
+  text-align: right !important;
+}
+
+.text-center {
+  text-align: center !important;
+}
+
+.text-decoration-none {
+  text-decoration: none !important;
+}
+
+.text-decoration-underline {
+  text-decoration: underline !important;
+}
+
+.text-decoration-line-through {
+  text-decoration: line-through !important;
+}
+
+.text-lowercase {
+  text-transform: lowercase !important;
+}
+
+.text-uppercase {
+  text-transform: uppercase !important;
+}
+
+.text-capitalize {
+  text-transform: capitalize !important;
+}
+
+.text-wrap {
+  white-space: normal !important;
+}
+
+.text-nowrap {
+  white-space: nowrap !important;
+}
+
+/* rtl:begin:remove */
+.text-break {
+  word-wrap: break-word !important;
+  word-break: break-word !important;
+}
+
+/* rtl:end:remove */
+.text-primary {
+  --bs-text-opacity: 1;
+  color: rgba(var(--bs-primary-rgb), var(--bs-text-opacity)) !important;
+}
+
+.text-secondary {
+  --bs-text-opacity: 1;
+  color: rgba(var(--bs-secondary-rgb), var(--bs-text-opacity)) !important;
+}
+
+.text-success {
+  --bs-text-opacity: 1;
+  color: rgba(var(--bs-success-rgb), var(--bs-text-opacity)) !important;
+}
+
+.text-info {
+  --bs-text-opacity: 1;
+  color: rgba(var(--bs-info-rgb), var(--bs-text-opacity)) !important;
+}
+
+.text-warning {
+  --bs-text-opacity: 1;
+  color: rgba(var(--bs-warning-rgb), var(--bs-text-opacity)) !important;
+}
+
+.text-danger {
+  --bs-text-opacity: 1;
+  color: rgba(var(--bs-danger-rgb), var(--bs-text-opacity)) !important;
+}
+
+.text-light {
+  --bs-text-opacity: 1;
+  color: rgba(var(--bs-light-rgb), var(--bs-text-opacity)) !important;
+}
+
+.text-dark {
+  --bs-text-opacity: 1;
+  color: rgba(var(--bs-dark-rgb), var(--bs-text-opacity)) !important;
+}
+
+.text-black {
+  --bs-text-opacity: 1;
+  color: rgba(var(--bs-black-rgb), var(--bs-text-opacity)) !important;
+}
+
+.text-white {
+  --bs-text-opacity: 1;
+  color: rgba(var(--bs-white-rgb), var(--bs-text-opacity)) !important;
+}
+
+.text-body {
+  --bs-text-opacity: 1;
+  color: rgba(var(--bs-body-color-rgb), var(--bs-text-opacity)) !important;
+}
+
+.text-muted {
+  --bs-text-opacity: 1;
+  color: var(--bs-secondary-color) !important;
+}
+
+.text-black-50 {
+  --bs-text-opacity: 1;
+  color: rgba(0, 0, 0, 0.5) !important;
+}
+
+.text-white-50 {
+  --bs-text-opacity: 1;
+  color: rgba(255, 255, 255, 0.5) !important;
+}
+
+.text-body-secondary {
+  --bs-text-opacity: 1;
+  color: var(--bs-secondary-color) !important;
+}
+
+.text-body-tertiary {
+  --bs-text-opacity: 1;
+  color: var(--bs-tertiary-color) !important;
+}
+
+.text-body-emphasis {
+  --bs-text-opacity: 1;
+  color: var(--bs-emphasis-color) !important;
+}
+
+.text-reset {
+  --bs-text-opacity: 1;
+  color: inherit !important;
+}
+
+.text-opacity-25 {
+  --bs-text-opacity: 0.25;
+}
+
+.text-opacity-50 {
+  --bs-text-opacity: 0.5;
+}
+
+.text-opacity-75 {
+  --bs-text-opacity: 0.75;
+}
+
+.text-opacity-100 {
+  --bs-text-opacity: 1;
+}
+
+.text-primary-emphasis {
+  color: var(--bs-primary-text-emphasis) !important;
+}
+
+.text-secondary-emphasis {
+  color: var(--bs-secondary-text-emphasis) !important;
+}
+
+.text-success-emphasis {
+  color: var(--bs-success-text-emphasis) !important;
+}
+
+.text-info-emphasis {
+  color: var(--bs-info-text-emphasis) !important;
+}
+
+.text-warning-emphasis {
+  color: var(--bs-warning-text-emphasis) !important;
+}
+
+.text-danger-emphasis {
+  color: var(--bs-danger-text-emphasis) !important;
+}
+
+.text-light-emphasis {
+  color: var(--bs-light-text-emphasis) !important;
+}
+
+.text-dark-emphasis {
+  color: var(--bs-dark-text-emphasis) !important;
+}
+
+.link-opacity-10 {
+  --bs-link-opacity: 0.1;
+}
+
+.link-opacity-10-hover:hover {
+  --bs-link-opacity: 0.1;
+}
+
+.link-opacity-25 {
+  --bs-link-opacity: 0.25;
+}
+
+.link-opacity-25-hover:hover {
+  --bs-link-opacity: 0.25;
+}
+
+.link-opacity-50 {
+  --bs-link-opacity: 0.5;
+}
+
+.link-opacity-50-hover:hover {
+  --bs-link-opacity: 0.5;
+}
+
+.link-opacity-75 {
+  --bs-link-opacity: 0.75;
+}
+
+.link-opacity-75-hover:hover {
+  --bs-link-opacity: 0.75;
+}
+
+.link-opacity-100 {
+  --bs-link-opacity: 1;
+}
+
+.link-opacity-100-hover:hover {
+  --bs-link-opacity: 1;
+}
+
+.link-offset-1 {
+  text-underline-offset: 0.125em !important;
+}
+
+.link-offset-1-hover:hover {
+  text-underline-offset: 0.125em !important;
+}
+
+.link-offset-2 {
+  text-underline-offset: 0.25em !important;
+}
+
+.link-offset-2-hover:hover {
+  text-underline-offset: 0.25em !important;
+}
+
+.link-offset-3 {
+  text-underline-offset: 0.375em !important;
+}
+
+.link-offset-3-hover:hover {
+  text-underline-offset: 0.375em !important;
+}
+
+.link-underline-primary {
+  --bs-link-underline-opacity: 1;
+  -webkit-text-decoration-color: rgba(var(--bs-primary-rgb), var(--bs-link-underline-opacity)) !important;
+  text-decoration-color: rgba(var(--bs-primary-rgb), var(--bs-link-underline-opacity)) !important;
+}
+
+.link-underline-secondary {
+  --bs-link-underline-opacity: 1;
+  -webkit-text-decoration-color: rgba(var(--bs-secondary-rgb), var(--bs-link-underline-opacity)) !important;
+  text-decoration-color: rgba(var(--bs-secondary-rgb), var(--bs-link-underline-opacity)) !important;
+}
+
+.link-underline-success {
+  --bs-link-underline-opacity: 1;
+  -webkit-text-decoration-color: rgba(var(--bs-success-rgb), var(--bs-link-underline-opacity)) !important;
+  text-decoration-color: rgba(var(--bs-success-rgb), var(--bs-link-underline-opacity)) !important;
+}
+
+.link-underline-info {
+  --bs-link-underline-opacity: 1;
+  -webkit-text-decoration-color: rgba(var(--bs-info-rgb), var(--bs-link-underline-opacity)) !important;
+  text-decoration-color: rgba(var(--bs-info-rgb), var(--bs-link-underline-opacity)) !important;
+}
+
+.link-underline-warning {
+  --bs-link-underline-opacity: 1;
+  -webkit-text-decoration-color: rgba(var(--bs-warning-rgb), var(--bs-link-underline-opacity)) !important;
+  text-decoration-color: rgba(var(--bs-warning-rgb), var(--bs-link-underline-opacity)) !important;
+}
+
+.link-underline-danger {
+  --bs-link-underline-opacity: 1;
+  -webkit-text-decoration-color: rgba(var(--bs-danger-rgb), var(--bs-link-underline-opacity)) !important;
+  text-decoration-color: rgba(var(--bs-danger-rgb), var(--bs-link-underline-opacity)) !important;
+}
+
+.link-underline-light {
+  --bs-link-underline-opacity: 1;
+  -webkit-text-decoration-color: rgba(var(--bs-light-rgb), var(--bs-link-underline-opacity)) !important;
+  text-decoration-color: rgba(var(--bs-light-rgb), var(--bs-link-underline-opacity)) !important;
+}
+
+.link-underline-dark {
+  --bs-link-underline-opacity: 1;
+  -webkit-text-decoration-color: rgba(var(--bs-dark-rgb), var(--bs-link-underline-opacity)) !important;
+  text-decoration-color: rgba(var(--bs-dark-rgb), var(--bs-link-underline-opacity)) !important;
+}
+
+.link-underline {
+  --bs-link-underline-opacity: 1;
+  -webkit-text-decoration-color: rgba(var(--bs-link-color-rgb), var(--bs-link-underline-opacity, 1)) !important;
+  text-decoration-color: rgba(var(--bs-link-color-rgb), var(--bs-link-underline-opacity, 1)) !important;
+}
+
+.link-underline-opacity-0 {
+  --bs-link-underline-opacity: 0;
+}
+
+.link-underline-opacity-0-hover:hover {
+  --bs-link-underline-opacity: 0;
+}
+
+.link-underline-opacity-10 {
+  --bs-link-underline-opacity: 0.1;
+}
+
+.link-underline-opacity-10-hover:hover {
+  --bs-link-underline-opacity: 0.1;
+}
+
+.link-underline-opacity-25 {
+  --bs-link-underline-opacity: 0.25;
+}
+
+.link-underline-opacity-25-hover:hover {
+  --bs-link-underline-opacity: 0.25;
+}
+
+.link-underline-opacity-50 {
+  --bs-link-underline-opacity: 0.5;
+}
+
+.link-underline-opacity-50-hover:hover {
+  --bs-link-underline-opacity: 0.5;
+}
+
+.link-underline-opacity-75 {
+  --bs-link-underline-opacity: 0.75;
+}
+
+.link-underline-opacity-75-hover:hover {
+  --bs-link-underline-opacity: 0.75;
+}
+
+.link-underline-opacity-100 {
+  --bs-link-underline-opacity: 1;
+}
+
+.link-underline-opacity-100-hover:hover {
+  --bs-link-underline-opacity: 1;
+}
+
+.bg-primary {
+  --bs-bg-opacity: 1;
+  background-color: rgba(var(--bs-primary-rgb), var(--bs-bg-opacity)) !important;
+}
+
+.bg-secondary {
+  --bs-bg-opacity: 1;
+  background-color: rgba(var(--bs-secondary-rgb), var(--bs-bg-opacity)) !important;
+}
+
+.bg-success {
+  --bs-bg-opacity: 1;
+  background-color: rgba(var(--bs-success-rgb), var(--bs-bg-opacity)) !important;
+}
+
+.bg-info {
+  --bs-bg-opacity: 1;
+  background-color: rgba(var(--bs-info-rgb), var(--bs-bg-opacity)) !important;
+}
+
+.bg-warning {
+  --bs-bg-opacity: 1;
+  background-color: rgba(var(--bs-warning-rgb), var(--bs-bg-opacity)) !important;
+}
+
+.bg-danger {
+  --bs-bg-opacity: 1;
+  background-color: rgba(var(--bs-danger-rgb), var(--bs-bg-opacity)) !important;
+}
+
+.bg-light {
+  --bs-bg-opacity: 1;
+  background-color: rgba(var(--bs-light-rgb), var(--bs-bg-opacity)) !important;
+}
+
+.bg-dark {
+  --bs-bg-opacity: 1;
+  background-color: rgba(var(--bs-dark-rgb), var(--bs-bg-opacity)) !important;
+}
+
+.bg-black {
+  --bs-bg-opacity: 1;
+  background-color: rgba(var(--bs-black-rgb), var(--bs-bg-opacity)) !important;
+}
+
+.bg-white {
+  --bs-bg-opacity: 1;
+  background-color: rgba(var(--bs-white-rgb), var(--bs-bg-opacity)) !important;
+}
+
+.bg-body {
+  --bs-bg-opacity: 1;
+  background-color: rgba(var(--bs-body-bg-rgb), var(--bs-bg-opacity)) !important;
+}
+
+.bg-transparent {
+  --bs-bg-opacity: 1;
+  background-color: transparent !important;
+}
+
+.bg-body-secondary {
+  --bs-bg-opacity: 1;
+  background-color: rgba(var(--bs-secondary-bg-rgb), var(--bs-bg-opacity)) !important;
+}
+
+.bg-body-tertiary {
+  --bs-bg-opacity: 1;
+  background-color: rgba(var(--bs-tertiary-bg-rgb), var(--bs-bg-opacity)) !important;
+}
+
+.bg-opacity-10 {
+  --bs-bg-opacity: 0.1;
+}
+
+.bg-opacity-25 {
+  --bs-bg-opacity: 0.25;
+}
+
+.bg-opacity-50 {
+  --bs-bg-opacity: 0.5;
+}
+
+.bg-opacity-75 {
+  --bs-bg-opacity: 0.75;
+}
+
+.bg-opacity-100 {
+  --bs-bg-opacity: 1;
+}
+
+.bg-primary-subtle {
+  background-color: var(--bs-primary-bg-subtle) !important;
+}
+
+.bg-secondary-subtle {
+  background-color: var(--bs-secondary-bg-subtle) !important;
+}
+
+.bg-success-subtle {
+  background-color: var(--bs-success-bg-subtle) !important;
+}
+
+.bg-info-subtle {
+  background-color: var(--bs-info-bg-subtle) !important;
+}
+
+.bg-warning-subtle {
+  background-color: var(--bs-warning-bg-subtle) !important;
+}
+
+.bg-danger-subtle {
+  background-color: var(--bs-danger-bg-subtle) !important;
+}
+
+.bg-light-subtle {
+  background-color: var(--bs-light-bg-subtle) !important;
+}
+
+.bg-dark-subtle {
+  background-color: var(--bs-dark-bg-subtle) !important;
+}
+
+.bg-gradient {
+  background-image: var(--bs-gradient) !important;
+}
+
+.user-select-all {
+  -webkit-user-select: all !important;
+  -moz-user-select: all !important;
+  user-select: all !important;
+}
+
+.user-select-auto {
+  -webkit-user-select: auto !important;
+  -moz-user-select: auto !important;
+  user-select: auto !important;
+}
+
+.user-select-none {
+  -webkit-user-select: none !important;
+  -moz-user-select: none !important;
+  user-select: none !important;
+}
+
+.pe-none {
+  pointer-events: none !important;
+}
+
+.pe-auto {
+  pointer-events: auto !important;
+}
+
+.rounded {
+  border-radius: var(--bs-border-radius) !important;
+}
+
+.rounded-0 {
+  border-radius: 0 !important;
+}
+
+.rounded-1 {
+  border-radius: var(--bs-border-radius-sm) !important;
+}
+
+.rounded-2 {
+  border-radius: var(--bs-border-radius) !important;
+}
+
+.rounded-3 {
+  border-radius: var(--bs-border-radius-lg) !important;
+}
+
+.rounded-4 {
+  border-radius: var(--bs-border-radius-xl) !important;
+}
+
+.rounded-5 {
+  border-radius: var(--bs-border-radius-xxl) !important;
+}
+
+.rounded-circle {
+  border-radius: 50% !important;
+}
+
+.rounded-pill {
+  border-radius: var(--bs-border-radius-pill) !important;
+}
+
+.rounded-top {
+  border-top-left-radius: var(--bs-border-radius) !important;
+  border-top-right-radius: var(--bs-border-radius) !important;
+}
+
+.rounded-top-0 {
+  border-top-left-radius: 0 !important;
+  border-top-right-radius: 0 !important;
+}
+
+.rounded-top-1 {
+  border-top-left-radius: var(--bs-border-radius-sm) !important;
+  border-top-right-radius: var(--bs-border-radius-sm) !important;
+}
+
+.rounded-top-2 {
+  border-top-left-radius: var(--bs-border-radius) !important;
+  border-top-right-radius: var(--bs-border-radius) !important;
+}
+
+.rounded-top-3 {
+  border-top-left-radius: var(--bs-border-radius-lg) !important;
+  border-top-right-radius: var(--bs-border-radius-lg) !important;
+}
+
+.rounded-top-4 {
+  border-top-left-radius: var(--bs-border-radius-xl) !important;
+  border-top-right-radius: var(--bs-border-radius-xl) !important;
+}
+
+.rounded-top-5 {
+  border-top-left-radius: var(--bs-border-radius-xxl) !important;
+  border-top-right-radius: var(--bs-border-radius-xxl) !important;
+}
+
+.rounded-top-circle {
+  border-top-left-radius: 50% !important;
+  border-top-right-radius: 50% !important;
+}
+
+.rounded-top-pill {
+  border-top-left-radius: var(--bs-border-radius-pill) !important;
+  border-top-right-radius: var(--bs-border-radius-pill) !important;
+}
+
+.rounded-end {
+  border-top-right-radius: var(--bs-border-radius) !important;
+  border-bottom-right-radius: var(--bs-border-radius) !important;
+}
+
+.rounded-end-0 {
+  border-top-right-radius: 0 !important;
+  border-bottom-right-radius: 0 !important;
+}
+
+.rounded-end-1 {
+  border-top-right-radius: var(--bs-border-radius-sm) !important;
+  border-bottom-right-radius: var(--bs-border-radius-sm) !important;
+}
+
+.rounded-end-2 {
+  border-top-right-radius: var(--bs-border-radius) !important;
+  border-bottom-right-radius: var(--bs-border-radius) !important;
+}
+
+.rounded-end-3 {
+  border-top-right-radius: var(--bs-border-radius-lg) !important;
+  border-bottom-right-radius: var(--bs-border-radius-lg) !important;
+}
+
+.rounded-end-4 {
+  border-top-right-radius: var(--bs-border-radius-xl) !important;
+  border-bottom-right-radius: var(--bs-border-radius-xl) !important;
+}
+
+.rounded-end-5 {
+  border-top-right-radius: var(--bs-border-radius-xxl) !important;
+  border-bottom-right-radius: var(--bs-border-radius-xxl) !important;
+}
+
+.rounded-end-circle {
+  border-top-right-radius: 50% !important;
+  border-bottom-right-radius: 50% !important;
+}
+
+.rounded-end-pill {
+  border-top-right-radius: var(--bs-border-radius-pill) !important;
+  border-bottom-right-radius: var(--bs-border-radius-pill) !important;
+}
+
+.rounded-bottom {
+  border-bottom-right-radius: var(--bs-border-radius) !important;
+  border-bottom-left-radius: var(--bs-border-radius) !important;
+}
+
+.rounded-bottom-0 {
+  border-bottom-right-radius: 0 !important;
+  border-bottom-left-radius: 0 !important;
+}
+
+.rounded-bottom-1 {
+  border-bottom-right-radius: var(--bs-border-radius-sm) !important;
+  border-bottom-left-radius: var(--bs-border-radius-sm) !important;
+}
+
+.rounded-bottom-2 {
+  border-bottom-right-radius: var(--bs-border-radius) !important;
+  border-bottom-left-radius: var(--bs-border-radius) !important;
+}
+
+.rounded-bottom-3 {
+  border-bottom-right-radius: var(--bs-border-radius-lg) !important;
+  border-bottom-left-radius: var(--bs-border-radius-lg) !important;
+}
+
+.rounded-bottom-4 {
+  border-bottom-right-radius: var(--bs-border-radius-xl) !important;
+  border-bottom-left-radius: var(--bs-border-radius-xl) !important;
+}
+
+.rounded-bottom-5 {
+  border-bottom-right-radius: var(--bs-border-radius-xxl) !important;
+  border-bottom-left-radius: var(--bs-border-radius-xxl) !important;
+}
+
+.rounded-bottom-circle {
+  border-bottom-right-radius: 50% !important;
+  border-bottom-left-radius: 50% !important;
+}
+
+.rounded-bottom-pill {
+  border-bottom-right-radius: var(--bs-border-radius-pill) !important;
+  border-bottom-left-radius: var(--bs-border-radius-pill) !important;
+}
+
+.rounded-start {
+  border-bottom-left-radius: var(--bs-border-radius) !important;
+  border-top-left-radius: var(--bs-border-radius) !important;
+}
+
+.rounded-start-0 {
+  border-bottom-left-radius: 0 !important;
+  border-top-left-radius: 0 !important;
+}
+
+.rounded-start-1 {
+  border-bottom-left-radius: var(--bs-border-radius-sm) !important;
+  border-top-left-radius: var(--bs-border-radius-sm) !important;
+}
+
+.rounded-start-2 {
+  border-bottom-left-radius: var(--bs-border-radius) !important;
+  border-top-left-radius: var(--bs-border-radius) !important;
+}
+
+.rounded-start-3 {
+  border-bottom-left-radius: var(--bs-border-radius-lg) !important;
+  border-top-left-radius: var(--bs-border-radius-lg) !important;
+}
+
+.rounded-start-4 {
+  border-bottom-left-radius: var(--bs-border-radius-xl) !important;
+  border-top-left-radius: var(--bs-border-radius-xl) !important;
+}
+
+.rounded-start-5 {
+  border-bottom-left-radius: var(--bs-border-radius-xxl) !important;
+  border-top-left-radius: var(--bs-border-radius-xxl) !important;
+}
+
+.rounded-start-circle {
+  border-bottom-left-radius: 50% !important;
+  border-top-left-radius: 50% !important;
+}
+
+.rounded-start-pill {
+  border-bottom-left-radius: var(--bs-border-radius-pill) !important;
+  border-top-left-radius: var(--bs-border-radius-pill) !important;
+}
+
+.visible {
+  visibility: visible !important;
+}
+
+.invisible {
+  visibility: hidden !important;
+}
+
+.z-n1 {
+  z-index: -1 !important;
+}
+
+.z-0 {
+  z-index: 0 !important;
+}
+
+.z-1 {
+  z-index: 1 !important;
+}
+
+.z-2 {
+  z-index: 2 !important;
+}
+
+.z-3 {
+  z-index: 3 !important;
+}
+
+@media (min-width: 576px) {
+  .float-sm-start {
+    float: left !important;
+  }
+  .float-sm-end {
+    float: right !important;
+  }
+  .float-sm-none {
+    float: none !important;
+  }
+  .object-fit-sm-contain {
+    -o-object-fit: contain !important;
+    object-fit: contain !important;
+  }
+  .object-fit-sm-cover {
+    -o-object-fit: cover !important;
+    object-fit: cover !important;
+  }
+  .object-fit-sm-fill {
+    -o-object-fit: fill !important;
+    object-fit: fill !important;
+  }
+  .object-fit-sm-scale {
+    -o-object-fit: scale-down !important;
+    object-fit: scale-down !important;
+  }
+  .object-fit-sm-none {
+    -o-object-fit: none !important;
+    object-fit: none !important;
+  }
+  .d-sm-inline {
+    display: inline !important;
+  }
+  .d-sm-inline-block {
+    display: inline-block !important;
+  }
+  .d-sm-block {
+    display: block !important;
+  }
+  .d-sm-grid {
+    display: grid !important;
+  }
+  .d-sm-inline-grid {
+    display: inline-grid !important;
+  }
+  .d-sm-table {
+    display: table !important;
+  }
+  .d-sm-table-row {
+    display: table-row !important;
+  }
+  .d-sm-table-cell {
+    display: table-cell !important;
+  }
+  .d-sm-flex {
+    display: flex !important;
+  }
+  .d-sm-inline-flex {
+    display: inline-flex !important;
+  }
+  .d-sm-none {
+    display: none !important;
+  }
+  .flex-sm-fill {
+    flex: 1 1 auto !important;
+  }
+  .flex-sm-row {
+    flex-direction: row !important;
+  }
+  .flex-sm-column {
+    flex-direction: column !important;
+  }
+  .flex-sm-row-reverse {
+    flex-direction: row-reverse !important;
+  }
+  .flex-sm-column-reverse {
+    flex-direction: column-reverse !important;
+  }
+  .flex-sm-grow-0 {
+    flex-grow: 0 !important;
+  }
+  .flex-sm-grow-1 {
+    flex-grow: 1 !important;
+  }
+  .flex-sm-shrink-0 {
+    flex-shrink: 0 !important;
+  }
+  .flex-sm-shrink-1 {
+    flex-shrink: 1 !important;
+  }
+  .flex-sm-wrap {
+    flex-wrap: wrap !important;
+  }
+  .flex-sm-nowrap {
+    flex-wrap: nowrap !important;
+  }
+  .flex-sm-wrap-reverse {
+    flex-wrap: wrap-reverse !important;
+  }
+  .justify-content-sm-start {
+    justify-content: flex-start !important;
+  }
+  .justify-content-sm-end {
+    justify-content: flex-end !important;
+  }
+  .justify-content-sm-center {
+    justify-content: center !important;
+  }
+  .justify-content-sm-between {
+    justify-content: space-between !important;
+  }
+  .justify-content-sm-around {
+    justify-content: space-around !important;
+  }
+  .justify-content-sm-evenly {
+    justify-content: space-evenly !important;
+  }
+  .align-items-sm-start {
+    align-items: flex-start !important;
+  }
+  .align-items-sm-end {
+    align-items: flex-end !important;
+  }
+  .align-items-sm-center {
+    align-items: center !important;
+  }
+  .align-items-sm-baseline {
+    align-items: baseline !important;
+  }
+  .align-items-sm-stretch {
+    align-items: stretch !important;
+  }
+  .align-content-sm-start {
+    align-content: flex-start !important;
+  }
+  .align-content-sm-end {
+    align-content: flex-end !important;
+  }
+  .align-content-sm-center {
+    align-content: center !important;
+  }
+  .align-content-sm-between {
+    align-content: space-between !important;
+  }
+  .align-content-sm-around {
+    align-content: space-around !important;
+  }
+  .align-content-sm-stretch {
+    align-content: stretch !important;
+  }
+  .align-self-sm-auto {
+    align-self: auto !important;
+  }
+  .align-self-sm-start {
+    align-self: flex-start !important;
+  }
+  .align-self-sm-end {
+    align-self: flex-end !important;
+  }
+  .align-self-sm-center {
+    align-self: center !important;
+  }
+  .align-self-sm-baseline {
+    align-self: baseline !important;
+  }
+  .align-self-sm-stretch {
+    align-self: stretch !important;
+  }
+  .order-sm-first {
+    order: -1 !important;
+  }
+  .order-sm-0 {
+    order: 0 !important;
+  }
+  .order-sm-1 {
+    order: 1 !important;
+  }
+  .order-sm-2 {
+    order: 2 !important;
+  }
+  .order-sm-3 {
+    order: 3 !important;
+  }
+  .order-sm-4 {
+    order: 4 !important;
+  }
+  .order-sm-5 {
+    order: 5 !important;
+  }
+  .order-sm-last {
+    order: 6 !important;
+  }
+  .m-sm-0 {
+    margin: 0 !important;
+  }
+  .m-sm-1 {
+    margin: 0.25rem !important;
+  }
+  .m-sm-2 {
+    margin: 0.5rem !important;
+  }
+  .m-sm-3 {
+    margin: 1rem !important;
+  }
+  .m-sm-4 {
+    margin: 1.5rem !important;
+  }
+  .m-sm-5 {
+    margin: 3rem !important;
+  }
+  .m-sm-auto {
+    margin: auto !important;
+  }
+  .mx-sm-0 {
+    margin-right: 0 !important;
+    margin-left: 0 !important;
+  }
+  .mx-sm-1 {
+    margin-right: 0.25rem !important;
+    margin-left: 0.25rem !important;
+  }
+  .mx-sm-2 {
+    margin-right: 0.5rem !important;
+    margin-left: 0.5rem !important;
+  }
+  .mx-sm-3 {
+    margin-right: 1rem !important;
+    margin-left: 1rem !important;
+  }
+  .mx-sm-4 {
+    margin-right: 1.5rem !important;
+    margin-left: 1.5rem !important;
+  }
+  .mx-sm-5 {
+    margin-right: 3rem !important;
+    margin-left: 3rem !important;
+  }
+  .mx-sm-auto {
+    margin-right: auto !important;
+    margin-left: auto !important;
+  }
+  .my-sm-0 {
+    margin-top: 0 !important;
+    margin-bottom: 0 !important;
+  }
+  .my-sm-1 {
+    margin-top: 0.25rem !important;
+    margin-bottom: 0.25rem !important;
+  }
+  .my-sm-2 {
+    margin-top: 0.5rem !important;
+    margin-bottom: 0.5rem !important;
+  }
+  .my-sm-3 {
+    margin-top: 1rem !important;
+    margin-bottom: 1rem !important;
+  }
+  .my-sm-4 {
+    margin-top: 1.5rem !important;
+    margin-bottom: 1.5rem !important;
+  }
+  .my-sm-5 {
+    margin-top: 3rem !important;
+    margin-bottom: 3rem !important;
+  }
+  .my-sm-auto {
+    margin-top: auto !important;
+    margin-bottom: auto !important;
+  }
+  .mt-sm-0 {
+    margin-top: 0 !important;
+  }
+  .mt-sm-1 {
+    margin-top: 0.25rem !important;
+  }
+  .mt-sm-2 {
+    margin-top: 0.5rem !important;
+  }
+  .mt-sm-3 {
+    margin-top: 1rem !important;
+  }
+  .mt-sm-4 {
+    margin-top: 1.5rem !important;
+  }
+  .mt-sm-5 {
+    margin-top: 3rem !important;
+  }
+  .mt-sm-auto {
+    margin-top: auto !important;
+  }
+  .me-sm-0 {
+    margin-right: 0 !important;
+  }
+  .me-sm-1 {
+    margin-right: 0.25rem !important;
+  }
+  .me-sm-2 {
+    margin-right: 0.5rem !important;
+  }
+  .me-sm-3 {
+    margin-right: 1rem !important;
+  }
+  .me-sm-4 {
+    margin-right: 1.5rem !important;
+  }
+  .me-sm-5 {
+    margin-right: 3rem !important;
+  }
+  .me-sm-auto {
+    margin-right: auto !important;
+  }
+  .mb-sm-0 {
+    margin-bottom: 0 !important;
+  }
+  .mb-sm-1 {
+    margin-bottom: 0.25rem !important;
+  }
+  .mb-sm-2 {
+    margin-bottom: 0.5rem !important;
+  }
+  .mb-sm-3 {
+    margin-bottom: 1rem !important;
+  }
+  .mb-sm-4 {
+    margin-bottom: 1.5rem !important;
+  }
+  .mb-sm-5 {
+    margin-bottom: 3rem !important;
+  }
+  .mb-sm-auto {
+    margin-bottom: auto !important;
+  }
+  .ms-sm-0 {
+    margin-left: 0 !important;
+  }
+  .ms-sm-1 {
+    margin-left: 0.25rem !important;
+  }
+  .ms-sm-2 {
+    margin-left: 0.5rem !important;
+  }
+  .ms-sm-3 {
+    margin-left: 1rem !important;
+  }
+  .ms-sm-4 {
+    margin-left: 1.5rem !important;
+  }
+  .ms-sm-5 {
+    margin-left: 3rem !important;
+  }
+  .ms-sm-auto {
+    margin-left: auto !important;
+  }
+  .p-sm-0 {
+    padding: 0 !important;
+  }
+  .p-sm-1 {
+    padding: 0.25rem !important;
+  }
+  .p-sm-2 {
+    padding: 0.5rem !important;
+  }
+  .p-sm-3 {
+    padding: 1rem !important;
+  }
+  .p-sm-4 {
+    padding: 1.5rem !important;
+  }
+  .p-sm-5 {
+    padding: 3rem !important;
+  }
+  .px-sm-0 {
+    padding-right: 0 !important;
+    padding-left: 0 !important;
+  }
+  .px-sm-1 {
+    padding-right: 0.25rem !important;
+    padding-left: 0.25rem !important;
+  }
+  .px-sm-2 {
+    padding-right: 0.5rem !important;
+    padding-left: 0.5rem !important;
+  }
+  .px-sm-3 {
+    padding-right: 1rem !important;
+    padding-left: 1rem !important;
+  }
+  .px-sm-4 {
+    padding-right: 1.5rem !important;
+    padding-left: 1.5rem !important;
+  }
+  .px-sm-5 {
+    padding-right: 3rem !important;
+    padding-left: 3rem !important;
+  }
+  .py-sm-0 {
+    padding-top: 0 !important;
+    padding-bottom: 0 !important;
+  }
+  .py-sm-1 {
+    padding-top: 0.25rem !important;
+    padding-bottom: 0.25rem !important;
+  }
+  .py-sm-2 {
+    padding-top: 0.5rem !important;
+    padding-bottom: 0.5rem !important;
+  }
+  .py-sm-3 {
+    padding-top: 1rem !important;
+    padding-bottom: 1rem !important;
+  }
+  .py-sm-4 {
+    padding-top: 1.5rem !important;
+    padding-bottom: 1.5rem !important;
+  }
+  .py-sm-5 {
+    padding-top: 3rem !important;
+    padding-bottom: 3rem !important;
+  }
+  .pt-sm-0 {
+    padding-top: 0 !important;
+  }
+  .pt-sm-1 {
+    padding-top: 0.25rem !important;
+  }
+  .pt-sm-2 {
+    padding-top: 0.5rem !important;
+  }
+  .pt-sm-3 {
+    padding-top: 1rem !important;
+  }
+  .pt-sm-4 {
+    padding-top: 1.5rem !important;
+  }
+  .pt-sm-5 {
+    padding-top: 3rem !important;
+  }
+  .pe-sm-0 {
+    padding-right: 0 !important;
+  }
+  .pe-sm-1 {
+    padding-right: 0.25rem !important;
+  }
+  .pe-sm-2 {
+    padding-right: 0.5rem !important;
+  }
+  .pe-sm-3 {
+    padding-right: 1rem !important;
+  }
+  .pe-sm-4 {
+    padding-right: 1.5rem !important;
+  }
+  .pe-sm-5 {
+    padding-right: 3rem !important;
+  }
+  .pb-sm-0 {
+    padding-bottom: 0 !important;
+  }
+  .pb-sm-1 {
+    padding-bottom: 0.25rem !important;
+  }
+  .pb-sm-2 {
+    padding-bottom: 0.5rem !important;
+  }
+  .pb-sm-3 {
+    padding-bottom: 1rem !important;
+  }
+  .pb-sm-4 {
+    padding-bottom: 1.5rem !important;
+  }
+  .pb-sm-5 {
+    padding-bottom: 3rem !important;
+  }
+  .ps-sm-0 {
+    padding-left: 0 !important;
+  }
+  .ps-sm-1 {
+    padding-left: 0.25rem !important;
+  }
+  .ps-sm-2 {
+    padding-left: 0.5rem !important;
+  }
+  .ps-sm-3 {
+    padding-left: 1rem !important;
+  }
+  .ps-sm-4 {
+    padding-left: 1.5rem !important;
+  }
+  .ps-sm-5 {
+    padding-left: 3rem !important;
+  }
+  .gap-sm-0 {
+    gap: 0 !important;
+  }
+  .gap-sm-1 {
+    gap: 0.25rem !important;
+  }
+  .gap-sm-2 {
+    gap: 0.5rem !important;
+  }
+  .gap-sm-3 {
+    gap: 1rem !important;
+  }
+  .gap-sm-4 {
+    gap: 1.5rem !important;
+  }
+  .gap-sm-5 {
+    gap: 3rem !important;
+  }
+  .row-gap-sm-0 {
+    row-gap: 0 !important;
+  }
+  .row-gap-sm-1 {
+    row-gap: 0.25rem !important;
+  }
+  .row-gap-sm-2 {
+    row-gap: 0.5rem !important;
+  }
+  .row-gap-sm-3 {
+    row-gap: 1rem !important;
+  }
+  .row-gap-sm-4 {
+    row-gap: 1.5rem !important;
+  }
+  .row-gap-sm-5 {
+    row-gap: 3rem !important;
+  }
+  .column-gap-sm-0 {
+    -moz-column-gap: 0 !important;
+    column-gap: 0 !important;
+  }
+  .column-gap-sm-1 {
+    -moz-column-gap: 0.25rem !important;
+    column-gap: 0.25rem !important;
+  }
+  .column-gap-sm-2 {
+    -moz-column-gap: 0.5rem !important;
+    column-gap: 0.5rem !important;
+  }
+  .column-gap-sm-3 {
+    -moz-column-gap: 1rem !important;
+    column-gap: 1rem !important;
+  }
+  .column-gap-sm-4 {
+    -moz-column-gap: 1.5rem !important;
+    column-gap: 1.5rem !important;
+  }
+  .column-gap-sm-5 {
+    -moz-column-gap: 3rem !important;
+    column-gap: 3rem !important;
+  }
+  .text-sm-start {
+    text-align: left !important;
+  }
+  .text-sm-end {
+    text-align: right !important;
+  }
+  .text-sm-center {
+    text-align: center !important;
+  }
+}
+@media (min-width: 768px) {
+  .float-md-start {
+    float: left !important;
+  }
+  .float-md-end {
+    float: right !important;
+  }
+  .float-md-none {
+    float: none !important;
+  }
+  .object-fit-md-contain {
+    -o-object-fit: contain !important;
+    object-fit: contain !important;
+  }
+  .object-fit-md-cover {
+    -o-object-fit: cover !important;
+    object-fit: cover !important;
+  }
+  .object-fit-md-fill {
+    -o-object-fit: fill !important;
+    object-fit: fill !important;
+  }
+  .object-fit-md-scale {
+    -o-object-fit: scale-down !important;
+    object-fit: scale-down !important;
+  }
+  .object-fit-md-none {
+    -o-object-fit: none !important;
+    object-fit: none !important;
+  }
+  .d-md-inline {
+    display: inline !important;
+  }
+  .d-md-inline-block {
+    display: inline-block !important;
+  }
+  .d-md-block {
+    display: block !important;
+  }
+  .d-md-grid {
+    display: grid !important;
+  }
+  .d-md-inline-grid {
+    display: inline-grid !important;
+  }
+  .d-md-table {
+    display: table !important;
+  }
+  .d-md-table-row {
+    display: table-row !important;
+  }
+  .d-md-table-cell {
+    display: table-cell !important;
+  }
+  .d-md-flex {
+    display: flex !important;
+  }
+  .d-md-inline-flex {
+    display: inline-flex !important;
+  }
+  .d-md-none {
+    display: none !important;
+  }
+  .flex-md-fill {
+    flex: 1 1 auto !important;
+  }
+  .flex-md-row {
+    flex-direction: row !important;
+  }
+  .flex-md-column {
+    flex-direction: column !important;
+  }
+  .flex-md-row-reverse {
+    flex-direction: row-reverse !important;
+  }
+  .flex-md-column-reverse {
+    flex-direction: column-reverse !important;
+  }
+  .flex-md-grow-0 {
+    flex-grow: 0 !important;
+  }
+  .flex-md-grow-1 {
+    flex-grow: 1 !important;
+  }
+  .flex-md-shrink-0 {
+    flex-shrink: 0 !important;
+  }
+  .flex-md-shrink-1 {
+    flex-shrink: 1 !important;
+  }
+  .flex-md-wrap {
+    flex-wrap: wrap !important;
+  }
+  .flex-md-nowrap {
+    flex-wrap: nowrap !important;
+  }
+  .flex-md-wrap-reverse {
+    flex-wrap: wrap-reverse !important;
+  }
+  .justify-content-md-start {
+    justify-content: flex-start !important;
+  }
+  .justify-content-md-end {
+    justify-content: flex-end !important;
+  }
+  .justify-content-md-center {
+    justify-content: center !important;
+  }
+  .justify-content-md-between {
+    justify-content: space-between !important;
+  }
+  .justify-content-md-around {
+    justify-content: space-around !important;
+  }
+  .justify-content-md-evenly {
+    justify-content: space-evenly !important;
+  }
+  .align-items-md-start {
+    align-items: flex-start !important;
+  }
+  .align-items-md-end {
+    align-items: flex-end !important;
+  }
+  .align-items-md-center {
+    align-items: center !important;
+  }
+  .align-items-md-baseline {
+    align-items: baseline !important;
+  }
+  .align-items-md-stretch {
+    align-items: stretch !important;
+  }
+  .align-content-md-start {
+    align-content: flex-start !important;
+  }
+  .align-content-md-end {
+    align-content: flex-end !important;
+  }
+  .align-content-md-center {
+    align-content: center !important;
+  }
+  .align-content-md-between {
+    align-content: space-between !important;
+  }
+  .align-content-md-around {
+    align-content: space-around !important;
+  }
+  .align-content-md-stretch {
+    align-content: stretch !important;
+  }
+  .align-self-md-auto {
+    align-self: auto !important;
+  }
+  .align-self-md-start {
+    align-self: flex-start !important;
+  }
+  .align-self-md-end {
+    align-self: flex-end !important;
+  }
+  .align-self-md-center {
+    align-self: center !important;
+  }
+  .align-self-md-baseline {
+    align-self: baseline !important;
+  }
+  .align-self-md-stretch {
+    align-self: stretch !important;
+  }
+  .order-md-first {
+    order: -1 !important;
+  }
+  .order-md-0 {
+    order: 0 !important;
+  }
+  .order-md-1 {
+    order: 1 !important;
+  }
+  .order-md-2 {
+    order: 2 !important;
+  }
+  .order-md-3 {
+    order: 3 !important;
+  }
+  .order-md-4 {
+    order: 4 !important;
+  }
+  .order-md-5 {
+    order: 5 !important;
+  }
+  .order-md-last {
+    order: 6 !important;
+  }
+  .m-md-0 {
+    margin: 0 !important;
+  }
+  .m-md-1 {
+    margin: 0.25rem !important;
+  }
+  .m-md-2 {
+    margin: 0.5rem !important;
+  }
+  .m-md-3 {
+    margin: 1rem !important;
+  }
+  .m-md-4 {
+    margin: 1.5rem !important;
+  }
+  .m-md-5 {
+    margin: 3rem !important;
+  }
+  .m-md-auto {
+    margin: auto !important;
+  }
+  .mx-md-0 {
+    margin-right: 0 !important;
+    margin-left: 0 !important;
+  }
+  .mx-md-1 {
+    margin-right: 0.25rem !important;
+    margin-left: 0.25rem !important;
+  }
+  .mx-md-2 {
+    margin-right: 0.5rem !important;
+    margin-left: 0.5rem !important;
+  }
+  .mx-md-3 {
+    margin-right: 1rem !important;
+    margin-left: 1rem !important;
+  }
+  .mx-md-4 {
+    margin-right: 1.5rem !important;
+    margin-left: 1.5rem !important;
+  }
+  .mx-md-5 {
+    margin-right: 3rem !important;
+    margin-left: 3rem !important;
+  }
+  .mx-md-auto {
+    margin-right: auto !important;
+    margin-left: auto !important;
+  }
+  .my-md-0 {
+    margin-top: 0 !important;
+    margin-bottom: 0 !important;
+  }
+  .my-md-1 {
+    margin-top: 0.25rem !important;
+    margin-bottom: 0.25rem !important;
+  }
+  .my-md-2 {
+    margin-top: 0.5rem !important;
+    margin-bottom: 0.5rem !important;
+  }
+  .my-md-3 {
+    margin-top: 1rem !important;
+    margin-bottom: 1rem !important;
+  }
+  .my-md-4 {
+    margin-top: 1.5rem !important;
+    margin-bottom: 1.5rem !important;
+  }
+  .my-md-5 {
+    margin-top: 3rem !important;
+    margin-bottom: 3rem !important;
+  }
+  .my-md-auto {
+    margin-top: auto !important;
+    margin-bottom: auto !important;
+  }
+  .mt-md-0 {
+    margin-top: 0 !important;
+  }
+  .mt-md-1 {
+    margin-top: 0.25rem !important;
+  }
+  .mt-md-2 {
+    margin-top: 0.5rem !important;
+  }
+  .mt-md-3 {
+    margin-top: 1rem !important;
+  }
+  .mt-md-4 {
+    margin-top: 1.5rem !important;
+  }
+  .mt-md-5 {
+    margin-top: 3rem !important;
+  }
+  .mt-md-auto {
+    margin-top: auto !important;
+  }
+  .me-md-0 {
+    margin-right: 0 !important;
+  }
+  .me-md-1 {
+    margin-right: 0.25rem !important;
+  }
+  .me-md-2 {
+    margin-right: 0.5rem !important;
+  }
+  .me-md-3 {
+    margin-right: 1rem !important;
+  }
+  .me-md-4 {
+    margin-right: 1.5rem !important;
+  }
+  .me-md-5 {
+    margin-right: 3rem !important;
+  }
+  .me-md-auto {
+    margin-right: auto !important;
+  }
+  .mb-md-0 {
+    margin-bottom: 0 !important;
+  }
+  .mb-md-1 {
+    margin-bottom: 0.25rem !important;
+  }
+  .mb-md-2 {
+    margin-bottom: 0.5rem !important;
+  }
+  .mb-md-3 {
+    margin-bottom: 1rem !important;
+  }
+  .mb-md-4 {
+    margin-bottom: 1.5rem !important;
+  }
+  .mb-md-5 {
+    margin-bottom: 3rem !important;
+  }
+  .mb-md-auto {
+    margin-bottom: auto !important;
+  }
+  .ms-md-0 {
+    margin-left: 0 !important;
+  }
+  .ms-md-1 {
+    margin-left: 0.25rem !important;
+  }
+  .ms-md-2 {
+    margin-left: 0.5rem !important;
+  }
+  .ms-md-3 {
+    margin-left: 1rem !important;
+  }
+  .ms-md-4 {
+    margin-left: 1.5rem !important;
+  }
+  .ms-md-5 {
+    margin-left: 3rem !important;
+  }
+  .ms-md-auto {
+    margin-left: auto !important;
+  }
+  .p-md-0 {
+    padding: 0 !important;
+  }
+  .p-md-1 {
+    padding: 0.25rem !important;
+  }
+  .p-md-2 {
+    padding: 0.5rem !important;
+  }
+  .p-md-3 {
+    padding: 1rem !important;
+  }
+  .p-md-4 {
+    padding: 1.5rem !important;
+  }
+  .p-md-5 {
+    padding: 3rem !important;
+  }
+  .px-md-0 {
+    padding-right: 0 !important;
+    padding-left: 0 !important;
+  }
+  .px-md-1 {
+    padding-right: 0.25rem !important;
+    padding-left: 0.25rem !important;
+  }
+  .px-md-2 {
+    padding-right: 0.5rem !important;
+    padding-left: 0.5rem !important;
+  }
+  .px-md-3 {
+    padding-right: 1rem !important;
+    padding-left: 1rem !important;
+  }
+  .px-md-4 {
+    padding-right: 1.5rem !important;
+    padding-left: 1.5rem !important;
+  }
+  .px-md-5 {
+    padding-right: 3rem !important;
+    padding-left: 3rem !important;
+  }
+  .py-md-0 {
+    padding-top: 0 !important;
+    padding-bottom: 0 !important;
+  }
+  .py-md-1 {
+    padding-top: 0.25rem !important;
+    padding-bottom: 0.25rem !important;
+  }
+  .py-md-2 {
+    padding-top: 0.5rem !important;
+    padding-bottom: 0.5rem !important;
+  }
+  .py-md-3 {
+    padding-top: 1rem !important;
+    padding-bottom: 1rem !important;
+  }
+  .py-md-4 {
+    padding-top: 1.5rem !important;
+    padding-bottom: 1.5rem !important;
+  }
+  .py-md-5 {
+    padding-top: 3rem !important;
+    padding-bottom: 3rem !important;
+  }
+  .pt-md-0 {
+    padding-top: 0 !important;
+  }
+  .pt-md-1 {
+    padding-top: 0.25rem !important;
+  }
+  .pt-md-2 {
+    padding-top: 0.5rem !important;
+  }
+  .pt-md-3 {
+    padding-top: 1rem !important;
+  }
+  .pt-md-4 {
+    padding-top: 1.5rem !important;
+  }
+  .pt-md-5 {
+    padding-top: 3rem !important;
+  }
+  .pe-md-0 {
+    padding-right: 0 !important;
+  }
+  .pe-md-1 {
+    padding-right: 0.25rem !important;
+  }
+  .pe-md-2 {
+    padding-right: 0.5rem !important;
+  }
+  .pe-md-3 {
+    padding-right: 1rem !important;
+  }
+  .pe-md-4 {
+    padding-right: 1.5rem !important;
+  }
+  .pe-md-5 {
+    padding-right: 3rem !important;
+  }
+  .pb-md-0 {
+    padding-bottom: 0 !important;
+  }
+  .pb-md-1 {
+    padding-bottom: 0.25rem !important;
+  }
+  .pb-md-2 {
+    padding-bottom: 0.5rem !important;
+  }
+  .pb-md-3 {
+    padding-bottom: 1rem !important;
+  }
+  .pb-md-4 {
+    padding-bottom: 1.5rem !important;
+  }
+  .pb-md-5 {
+    padding-bottom: 3rem !important;
+  }
+  .ps-md-0 {
+    padding-left: 0 !important;
+  }
+  .ps-md-1 {
+    padding-left: 0.25rem !important;
+  }
+  .ps-md-2 {
+    padding-left: 0.5rem !important;
+  }
+  .ps-md-3 {
+    padding-left: 1rem !important;
+  }
+  .ps-md-4 {
+    padding-left: 1.5rem !important;
+  }
+  .ps-md-5 {
+    padding-left: 3rem !important;
+  }
+  .gap-md-0 {
+    gap: 0 !important;
+  }
+  .gap-md-1 {
+    gap: 0.25rem !important;
+  }
+  .gap-md-2 {
+    gap: 0.5rem !important;
+  }
+  .gap-md-3 {
+    gap: 1rem !important;
+  }
+  .gap-md-4 {
+    gap: 1.5rem !important;
+  }
+  .gap-md-5 {
+    gap: 3rem !important;
+  }
+  .row-gap-md-0 {
+    row-gap: 0 !important;
+  }
+  .row-gap-md-1 {
+    row-gap: 0.25rem !important;
+  }
+  .row-gap-md-2 {
+    row-gap: 0.5rem !important;
+  }
+  .row-gap-md-3 {
+    row-gap: 1rem !important;
+  }
+  .row-gap-md-4 {
+    row-gap: 1.5rem !important;
+  }
+  .row-gap-md-5 {
+    row-gap: 3rem !important;
+  }
+  .column-gap-md-0 {
+    -moz-column-gap: 0 !important;
+    column-gap: 0 !important;
+  }
+  .column-gap-md-1 {
+    -moz-column-gap: 0.25rem !important;
+    column-gap: 0.25rem !important;
+  }
+  .column-gap-md-2 {
+    -moz-column-gap: 0.5rem !important;
+    column-gap: 0.5rem !important;
+  }
+  .column-gap-md-3 {
+    -moz-column-gap: 1rem !important;
+    column-gap: 1rem !important;
+  }
+  .column-gap-md-4 {
+    -moz-column-gap: 1.5rem !important;
+    column-gap: 1.5rem !important;
+  }
+  .column-gap-md-5 {
+    -moz-column-gap: 3rem !important;
+    column-gap: 3rem !important;
+  }
+  .text-md-start {
+    text-align: left !important;
+  }
+  .text-md-end {
+    text-align: right !important;
+  }
+  .text-md-center {
+    text-align: center !important;
+  }
+}
+@media (min-width: 992px) {
+  .float-lg-start {
+    float: left !important;
+  }
+  .float-lg-end {
+    float: right !important;
+  }
+  .float-lg-none {
+    float: none !important;
+  }
+  .object-fit-lg-contain {
+    -o-object-fit: contain !important;
+    object-fit: contain !important;
+  }
+  .object-fit-lg-cover {
+    -o-object-fit: cover !important;
+    object-fit: cover !important;
+  }
+  .object-fit-lg-fill {
+    -o-object-fit: fill !important;
+    object-fit: fill !important;
+  }
+  .object-fit-lg-scale {
+    -o-object-fit: scale-down !important;
+    object-fit: scale-down !important;
+  }
+  .object-fit-lg-none {
+    -o-object-fit: none !important;
+    object-fit: none !important;
+  }
+  .d-lg-inline {
+    display: inline !important;
+  }
+  .d-lg-inline-block {
+    display: inline-block !important;
+  }
+  .d-lg-block {
+    display: block !important;
+  }
+  .d-lg-grid {
+    display: grid !important;
+  }
+  .d-lg-inline-grid {
+    display: inline-grid !important;
+  }
+  .d-lg-table {
+    display: table !important;
+  }
+  .d-lg-table-row {
+    display: table-row !important;
+  }
+  .d-lg-table-cell {
+    display: table-cell !important;
+  }
+  .d-lg-flex {
+    display: flex !important;
+  }
+  .d-lg-inline-flex {
+    display: inline-flex !important;
+  }
+  .d-lg-none {
+    display: none !important;
+  }
+  .flex-lg-fill {
+    flex: 1 1 auto !important;
+  }
+  .flex-lg-row {
+    flex-direction: row !important;
+  }
+  .flex-lg-column {
+    flex-direction: column !important;
+  }
+  .flex-lg-row-reverse {
+    flex-direction: row-reverse !important;
+  }
+  .flex-lg-column-reverse {
+    flex-direction: column-reverse !important;
+  }
+  .flex-lg-grow-0 {
+    flex-grow: 0 !important;
+  }
+  .flex-lg-grow-1 {
+    flex-grow: 1 !important;
+  }
+  .flex-lg-shrink-0 {
+    flex-shrink: 0 !important;
+  }
+  .flex-lg-shrink-1 {
+    flex-shrink: 1 !important;
+  }
+  .flex-lg-wrap {
+    flex-wrap: wrap !important;
+  }
+  .flex-lg-nowrap {
+    flex-wrap: nowrap !important;
+  }
+  .flex-lg-wrap-reverse {
+    flex-wrap: wrap-reverse !important;
+  }
+  .justify-content-lg-start {
+    justify-content: flex-start !important;
+  }
+  .justify-content-lg-end {
+    justify-content: flex-end !important;
+  }
+  .justify-content-lg-center {
+    justify-content: center !important;
+  }
+  .justify-content-lg-between {
+    justify-content: space-between !important;
+  }
+  .justify-content-lg-around {
+    justify-content: space-around !important;
+  }
+  .justify-content-lg-evenly {
+    justify-content: space-evenly !important;
+  }
+  .align-items-lg-start {
+    align-items: flex-start !important;
+  }
+  .align-items-lg-end {
+    align-items: flex-end !important;
+  }
+  .align-items-lg-center {
+    align-items: center !important;
+  }
+  .align-items-lg-baseline {
+    align-items: baseline !important;
+  }
+  .align-items-lg-stretch {
+    align-items: stretch !important;
+  }
+  .align-content-lg-start {
+    align-content: flex-start !important;
+  }
+  .align-content-lg-end {
+    align-content: flex-end !important;
+  }
+  .align-content-lg-center {
+    align-content: center !important;
+  }
+  .align-content-lg-between {
+    align-content: space-between !important;
+  }
+  .align-content-lg-around {
+    align-content: space-around !important;
+  }
+  .align-content-lg-stretch {
+    align-content: stretch !important;
+  }
+  .align-self-lg-auto {
+    align-self: auto !important;
+  }
+  .align-self-lg-start {
+    align-self: flex-start !important;
+  }
+  .align-self-lg-end {
+    align-self: flex-end !important;
+  }
+  .align-self-lg-center {
+    align-self: center !important;
+  }
+  .align-self-lg-baseline {
+    align-self: baseline !important;
+  }
+  .align-self-lg-stretch {
+    align-self: stretch !important;
+  }
+  .order-lg-first {
+    order: -1 !important;
+  }
+  .order-lg-0 {
+    order: 0 !important;
+  }
+  .order-lg-1 {
+    order: 1 !important;
+  }
+  .order-lg-2 {
+    order: 2 !important;
+  }
+  .order-lg-3 {
+    order: 3 !important;
+  }
+  .order-lg-4 {
+    order: 4 !important;
+  }
+  .order-lg-5 {
+    order: 5 !important;
+  }
+  .order-lg-last {
+    order: 6 !important;
+  }
+  .m-lg-0 {
+    margin: 0 !important;
+  }
+  .m-lg-1 {
+    margin: 0.25rem !important;
+  }
+  .m-lg-2 {
+    margin: 0.5rem !important;
+  }
+  .m-lg-3 {
+    margin: 1rem !important;
+  }
+  .m-lg-4 {
+    margin: 1.5rem !important;
+  }
+  .m-lg-5 {
+    margin: 3rem !important;
+  }
+  .m-lg-auto {
+    margin: auto !important;
+  }
+  .mx-lg-0 {
+    margin-right: 0 !important;
+    margin-left: 0 !important;
+  }
+  .mx-lg-1 {
+    margin-right: 0.25rem !important;
+    margin-left: 0.25rem !important;
+  }
+  .mx-lg-2 {
+    margin-right: 0.5rem !important;
+    margin-left: 0.5rem !important;
+  }
+  .mx-lg-3 {
+    margin-right: 1rem !important;
+    margin-left: 1rem !important;
+  }
+  .mx-lg-4 {
+    margin-right: 1.5rem !important;
+    margin-left: 1.5rem !important;
+  }
+  .mx-lg-5 {
+    margin-right: 3rem !important;
+    margin-left: 3rem !important;
+  }
+  .mx-lg-auto {
+    margin-right: auto !important;
+    margin-left: auto !important;
+  }
+  .my-lg-0 {
+    margin-top: 0 !important;
+    margin-bottom: 0 !important;
+  }
+  .my-lg-1 {
+    margin-top: 0.25rem !important;
+    margin-bottom: 0.25rem !important;
+  }
+  .my-lg-2 {
+    margin-top: 0.5rem !important;
+    margin-bottom: 0.5rem !important;
+  }
+  .my-lg-3 {
+    margin-top: 1rem !important;
+    margin-bottom: 1rem !important;
+  }
+  .my-lg-4 {
+    margin-top: 1.5rem !important;
+    margin-bottom: 1.5rem !important;
+  }
+  .my-lg-5 {
+    margin-top: 3rem !important;
+    margin-bottom: 3rem !important;
+  }
+  .my-lg-auto {
+    margin-top: auto !important;
+    margin-bottom: auto !important;
+  }
+  .mt-lg-0 {
+    margin-top: 0 !important;
+  }
+  .mt-lg-1 {
+    margin-top: 0.25rem !important;
+  }
+  .mt-lg-2 {
+    margin-top: 0.5rem !important;
+  }
+  .mt-lg-3 {
+    margin-top: 1rem !important;
+  }
+  .mt-lg-4 {
+    margin-top: 1.5rem !important;
+  }
+  .mt-lg-5 {
+    margin-top: 3rem !important;
+  }
+  .mt-lg-auto {
+    margin-top: auto !important;
+  }
+  .me-lg-0 {
+    margin-right: 0 !important;
+  }
+  .me-lg-1 {
+    margin-right: 0.25rem !important;
+  }
+  .me-lg-2 {
+    margin-right: 0.5rem !important;
+  }
+  .me-lg-3 {
+    margin-right: 1rem !important;
+  }
+  .me-lg-4 {
+    margin-right: 1.5rem !important;
+  }
+  .me-lg-5 {
+    margin-right: 3rem !important;
+  }
+  .me-lg-auto {
+    margin-right: auto !important;
+  }
+  .mb-lg-0 {
+    margin-bottom: 0 !important;
+  }
+  .mb-lg-1 {
+    margin-bottom: 0.25rem !important;
+  }
+  .mb-lg-2 {
+    margin-bottom: 0.5rem !important;
+  }
+  .mb-lg-3 {
+    margin-bottom: 1rem !important;
+  }
+  .mb-lg-4 {
+    margin-bottom: 1.5rem !important;
+  }
+  .mb-lg-5 {
+    margin-bottom: 3rem !important;
+  }
+  .mb-lg-auto {
+    margin-bottom: auto !important;
+  }
+  .ms-lg-0 {
+    margin-left: 0 !important;
+  }
+  .ms-lg-1 {
+    margin-left: 0.25rem !important;
+  }
+  .ms-lg-2 {
+    margin-left: 0.5rem !important;
+  }
+  .ms-lg-3 {
+    margin-left: 1rem !important;
+  }
+  .ms-lg-4 {
+    margin-left: 1.5rem !important;
+  }
+  .ms-lg-5 {
+    margin-left: 3rem !important;
+  }
+  .ms-lg-auto {
+    margin-left: auto !important;
+  }
+  .p-lg-0 {
+    padding: 0 !important;
+  }
+  .p-lg-1 {
+    padding: 0.25rem !important;
+  }
+  .p-lg-2 {
+    padding: 0.5rem !important;
+  }
+  .p-lg-3 {
+    padding: 1rem !important;
+  }
+  .p-lg-4 {
+    padding: 1.5rem !important;
+  }
+  .p-lg-5 {
+    padding: 3rem !important;
+  }
+  .px-lg-0 {
+    padding-right: 0 !important;
+    padding-left: 0 !important;
+  }
+  .px-lg-1 {
+    padding-right: 0.25rem !important;
+    padding-left: 0.25rem !important;
+  }
+  .px-lg-2 {
+    padding-right: 0.5rem !important;
+    padding-left: 0.5rem !important;
+  }
+  .px-lg-3 {
+    padding-right: 1rem !important;
+    padding-left: 1rem !important;
+  }
+  .px-lg-4 {
+    padding-right: 1.5rem !important;
+    padding-left: 1.5rem !important;
+  }
+  .px-lg-5 {
+    padding-right: 3rem !important;
+    padding-left: 3rem !important;
+  }
+  .py-lg-0 {
+    padding-top: 0 !important;
+    padding-bottom: 0 !important;
+  }
+  .py-lg-1 {
+    padding-top: 0.25rem !important;
+    padding-bottom: 0.25rem !important;
+  }
+  .py-lg-2 {
+    padding-top: 0.5rem !important;
+    padding-bottom: 0.5rem !important;
+  }
+  .py-lg-3 {
+    padding-top: 1rem !important;
+    padding-bottom: 1rem !important;
+  }
+  .py-lg-4 {
+    padding-top: 1.5rem !important;
+    padding-bottom: 1.5rem !important;
+  }
+  .py-lg-5 {
+    padding-top: 3rem !important;
+    padding-bottom: 3rem !important;
+  }
+  .pt-lg-0 {
+    padding-top: 0 !important;
+  }
+  .pt-lg-1 {
+    padding-top: 0.25rem !important;
+  }
+  .pt-lg-2 {
+    padding-top: 0.5rem !important;
+  }
+  .pt-lg-3 {
+    padding-top: 1rem !important;
+  }
+  .pt-lg-4 {
+    padding-top: 1.5rem !important;
+  }
+  .pt-lg-5 {
+    padding-top: 3rem !important;
+  }
+  .pe-lg-0 {
+    padding-right: 0 !important;
+  }
+  .pe-lg-1 {
+    padding-right: 0.25rem !important;
+  }
+  .pe-lg-2 {
+    padding-right: 0.5rem !important;
+  }
+  .pe-lg-3 {
+    padding-right: 1rem !important;
+  }
+  .pe-lg-4 {
+    padding-right: 1.5rem !important;
+  }
+  .pe-lg-5 {
+    padding-right: 3rem !important;
+  }
+  .pb-lg-0 {
+    padding-bottom: 0 !important;
+  }
+  .pb-lg-1 {
+    padding-bottom: 0.25rem !important;
+  }
+  .pb-lg-2 {
+    padding-bottom: 0.5rem !important;
+  }
+  .pb-lg-3 {
+    padding-bottom: 1rem !important;
+  }
+  .pb-lg-4 {
+    padding-bottom: 1.5rem !important;
+  }
+  .pb-lg-5 {
+    padding-bottom: 3rem !important;
+  }
+  .ps-lg-0 {
+    padding-left: 0 !important;
+  }
+  .ps-lg-1 {
+    padding-left: 0.25rem !important;
+  }
+  .ps-lg-2 {
+    padding-left: 0.5rem !important;
+  }
+  .ps-lg-3 {
+    padding-left: 1rem !important;
+  }
+  .ps-lg-4 {
+    padding-left: 1.5rem !important;
+  }
+  .ps-lg-5 {
+    padding-left: 3rem !important;
+  }
+  .gap-lg-0 {
+    gap: 0 !important;
+  }
+  .gap-lg-1 {
+    gap: 0.25rem !important;
+  }
+  .gap-lg-2 {
+    gap: 0.5rem !important;
+  }
+  .gap-lg-3 {
+    gap: 1rem !important;
+  }
+  .gap-lg-4 {
+    gap: 1.5rem !important;
+  }
+  .gap-lg-5 {
+    gap: 3rem !important;
+  }
+  .row-gap-lg-0 {
+    row-gap: 0 !important;
+  }
+  .row-gap-lg-1 {
+    row-gap: 0.25rem !important;
+  }
+  .row-gap-lg-2 {
+    row-gap: 0.5rem !important;
+  }
+  .row-gap-lg-3 {
+    row-gap: 1rem !important;
+  }
+  .row-gap-lg-4 {
+    row-gap: 1.5rem !important;
+  }
+  .row-gap-lg-5 {
+    row-gap: 3rem !important;
+  }
+  .column-gap-lg-0 {
+    -moz-column-gap: 0 !important;
+    column-gap: 0 !important;
+  }
+  .column-gap-lg-1 {
+    -moz-column-gap: 0.25rem !important;
+    column-gap: 0.25rem !important;
+  }
+  .column-gap-lg-2 {
+    -moz-column-gap: 0.5rem !important;
+    column-gap: 0.5rem !important;
+  }
+  .column-gap-lg-3 {
+    -moz-column-gap: 1rem !important;
+    column-gap: 1rem !important;
+  }
+  .column-gap-lg-4 {
+    -moz-column-gap: 1.5rem !important;
+    column-gap: 1.5rem !important;
+  }
+  .column-gap-lg-5 {
+    -moz-column-gap: 3rem !important;
+    column-gap: 3rem !important;
+  }
+  .text-lg-start {
+    text-align: left !important;
+  }
+  .text-lg-end {
+    text-align: right !important;
+  }
+  .text-lg-center {
+    text-align: center !important;
+  }
+}
+@media (min-width: 1200px) {
+  .float-xl-start {
+    float: left !important;
+  }
+  .float-xl-end {
+    float: right !important;
+  }
+  .float-xl-none {
+    float: none !important;
+  }
+  .object-fit-xl-contain {
+    -o-object-fit: contain !important;
+    object-fit: contain !important;
+  }
+  .object-fit-xl-cover {
+    -o-object-fit: cover !important;
+    object-fit: cover !important;
+  }
+  .object-fit-xl-fill {
+    -o-object-fit: fill !important;
+    object-fit: fill !important;
+  }
+  .object-fit-xl-scale {
+    -o-object-fit: scale-down !important;
+    object-fit: scale-down !important;
+  }
+  .object-fit-xl-none {
+    -o-object-fit: none !important;
+    object-fit: none !important;
+  }
+  .d-xl-inline {
+    display: inline !important;
+  }
+  .d-xl-inline-block {
+    display: inline-block !important;
+  }
+  .d-xl-block {
+    display: block !important;
+  }
+  .d-xl-grid {
+    display: grid !important;
+  }
+  .d-xl-inline-grid {
+    display: inline-grid !important;
+  }
+  .d-xl-table {
+    display: table !important;
+  }
+  .d-xl-table-row {
+    display: table-row !important;
+  }
+  .d-xl-table-cell {
+    display: table-cell !important;
+  }
+  .d-xl-flex {
+    display: flex !important;
+  }
+  .d-xl-inline-flex {
+    display: inline-flex !important;
+  }
+  .d-xl-none {
+    display: none !important;
+  }
+  .flex-xl-fill {
+    flex: 1 1 auto !important;
+  }
+  .flex-xl-row {
+    flex-direction: row !important;
+  }
+  .flex-xl-column {
+    flex-direction: column !important;
+  }
+  .flex-xl-row-reverse {
+    flex-direction: row-reverse !important;
+  }
+  .flex-xl-column-reverse {
+    flex-direction: column-reverse !important;
+  }
+  .flex-xl-grow-0 {
+    flex-grow: 0 !important;
+  }
+  .flex-xl-grow-1 {
+    flex-grow: 1 !important;
+  }
+  .flex-xl-shrink-0 {
+    flex-shrink: 0 !important;
+  }
+  .flex-xl-shrink-1 {
+    flex-shrink: 1 !important;
+  }
+  .flex-xl-wrap {
+    flex-wrap: wrap !important;
+  }
+  .flex-xl-nowrap {
+    flex-wrap: nowrap !important;
+  }
+  .flex-xl-wrap-reverse {
+    flex-wrap: wrap-reverse !important;
+  }
+  .justify-content-xl-start {
+    justify-content: flex-start !important;
+  }
+  .justify-content-xl-end {
+    justify-content: flex-end !important;
+  }
+  .justify-content-xl-center {
+    justify-content: center !important;
+  }
+  .justify-content-xl-between {
+    justify-content: space-between !important;
+  }
+  .justify-content-xl-around {
+    justify-content: space-around !important;
+  }
+  .justify-content-xl-evenly {
+    justify-content: space-evenly !important;
+  }
+  .align-items-xl-start {
+    align-items: flex-start !important;
+  }
+  .align-items-xl-end {
+    align-items: flex-end !important;
+  }
+  .align-items-xl-center {
+    align-items: center !important;
+  }
+  .align-items-xl-baseline {
+    align-items: baseline !important;
+  }
+  .align-items-xl-stretch {
+    align-items: stretch !important;
+  }
+  .align-content-xl-start {
+    align-content: flex-start !important;
+  }
+  .align-content-xl-end {
+    align-content: flex-end !important;
+  }
+  .align-content-xl-center {
+    align-content: center !important;
+  }
+  .align-content-xl-between {
+    align-content: space-between !important;
+  }
+  .align-content-xl-around {
+    align-content: space-around !important;
+  }
+  .align-content-xl-stretch {
+    align-content: stretch !important;
+  }
+  .align-self-xl-auto {
+    align-self: auto !important;
+  }
+  .align-self-xl-start {
+    align-self: flex-start !important;
+  }
+  .align-self-xl-end {
+    align-self: flex-end !important;
+  }
+  .align-self-xl-center {
+    align-self: center !important;
+  }
+  .align-self-xl-baseline {
+    align-self: baseline !important;
+  }
+  .align-self-xl-stretch {
+    align-self: stretch !important;
+  }
+  .order-xl-first {
+    order: -1 !important;
+  }
+  .order-xl-0 {
+    order: 0 !important;
+  }
+  .order-xl-1 {
+    order: 1 !important;
+  }
+  .order-xl-2 {
+    order: 2 !important;
+  }
+  .order-xl-3 {
+    order: 3 !important;
+  }
+  .order-xl-4 {
+    order: 4 !important;
+  }
+  .order-xl-5 {
+    order: 5 !important;
+  }
+  .order-xl-last {
+    order: 6 !important;
+  }
+  .m-xl-0 {
+    margin: 0 !important;
+  }
+  .m-xl-1 {
+    margin: 0.25rem !important;
+  }
+  .m-xl-2 {
+    margin: 0.5rem !important;
+  }
+  .m-xl-3 {
+    margin: 1rem !important;
+  }
+  .m-xl-4 {
+    margin: 1.5rem !important;
+  }
+  .m-xl-5 {
+    margin: 3rem !important;
+  }
+  .m-xl-auto {
+    margin: auto !important;
+  }
+  .mx-xl-0 {
+    margin-right: 0 !important;
+    margin-left: 0 !important;
+  }
+  .mx-xl-1 {
+    margin-right: 0.25rem !important;
+    margin-left: 0.25rem !important;
+  }
+  .mx-xl-2 {
+    margin-right: 0.5rem !important;
+    margin-left: 0.5rem !important;
+  }
+  .mx-xl-3 {
+    margin-right: 1rem !important;
+    margin-left: 1rem !important;
+  }
+  .mx-xl-4 {
+    margin-right: 1.5rem !important;
+    margin-left: 1.5rem !important;
+  }
+  .mx-xl-5 {
+    margin-right: 3rem !important;
+    margin-left: 3rem !important;
+  }
+  .mx-xl-auto {
+    margin-right: auto !important;
+    margin-left: auto !important;
+  }
+  .my-xl-0 {
+    margin-top: 0 !important;
+    margin-bottom: 0 !important;
+  }
+  .my-xl-1 {
+    margin-top: 0.25rem !important;
+    margin-bottom: 0.25rem !important;
+  }
+  .my-xl-2 {
+    margin-top: 0.5rem !important;
+    margin-bottom: 0.5rem !important;
+  }
+  .my-xl-3 {
+    margin-top: 1rem !important;
+    margin-bottom: 1rem !important;
+  }
+  .my-xl-4 {
+    margin-top: 1.5rem !important;
+    margin-bottom: 1.5rem !important;
+  }
+  .my-xl-5 {
+    margin-top: 3rem !important;
+    margin-bottom: 3rem !important;
+  }
+  .my-xl-auto {
+    margin-top: auto !important;
+    margin-bottom: auto !important;
+  }
+  .mt-xl-0 {
+    margin-top: 0 !important;
+  }
+  .mt-xl-1 {
+    margin-top: 0.25rem !important;
+  }
+  .mt-xl-2 {
+    margin-top: 0.5rem !important;
+  }
+  .mt-xl-3 {
+    margin-top: 1rem !important;
+  }
+  .mt-xl-4 {
+    margin-top: 1.5rem !important;
+  }
+  .mt-xl-5 {
+    margin-top: 3rem !important;
+  }
+  .mt-xl-auto {
+    margin-top: auto !important;
+  }
+  .me-xl-0 {
+    margin-right: 0 !important;
+  }
+  .me-xl-1 {
+    margin-right: 0.25rem !important;
+  }
+  .me-xl-2 {
+    margin-right: 0.5rem !important;
+  }
+  .me-xl-3 {
+    margin-right: 1rem !important;
+  }
+  .me-xl-4 {
+    margin-right: 1.5rem !important;
+  }
+  .me-xl-5 {
+    margin-right: 3rem !important;
+  }
+  .me-xl-auto {
+    margin-right: auto !important;
+  }
+  .mb-xl-0 {
+    margin-bottom: 0 !important;
+  }
+  .mb-xl-1 {
+    margin-bottom: 0.25rem !important;
+  }
+  .mb-xl-2 {
+    margin-bottom: 0.5rem !important;
+  }
+  .mb-xl-3 {
+    margin-bottom: 1rem !important;
+  }
+  .mb-xl-4 {
+    margin-bottom: 1.5rem !important;
+  }
+  .mb-xl-5 {
+    margin-bottom: 3rem !important;
+  }
+  .mb-xl-auto {
+    margin-bottom: auto !important;
+  }
+  .ms-xl-0 {
+    margin-left: 0 !important;
+  }
+  .ms-xl-1 {
+    margin-left: 0.25rem !important;
+  }
+  .ms-xl-2 {
+    margin-left: 0.5rem !important;
+  }
+  .ms-xl-3 {
+    margin-left: 1rem !important;
+  }
+  .ms-xl-4 {
+    margin-left: 1.5rem !important;
+  }
+  .ms-xl-5 {
+    margin-left: 3rem !important;
+  }
+  .ms-xl-auto {
+    margin-left: auto !important;
+  }
+  .p-xl-0 {
+    padding: 0 !important;
+  }
+  .p-xl-1 {
+    padding: 0.25rem !important;
+  }
+  .p-xl-2 {
+    padding: 0.5rem !important;
+  }
+  .p-xl-3 {
+    padding: 1rem !important;
+  }
+  .p-xl-4 {
+    padding: 1.5rem !important;
+  }
+  .p-xl-5 {
+    padding: 3rem !important;
+  }
+  .px-xl-0 {
+    padding-right: 0 !important;
+    padding-left: 0 !important;
+  }
+  .px-xl-1 {
+    padding-right: 0.25rem !important;
+    padding-left: 0.25rem !important;
+  }
+  .px-xl-2 {
+    padding-right: 0.5rem !important;
+    padding-left: 0.5rem !important;
+  }
+  .px-xl-3 {
+    padding-right: 1rem !important;
+    padding-left: 1rem !important;
+  }
+  .px-xl-4 {
+    padding-right: 1.5rem !important;
+    padding-left: 1.5rem !important;
+  }
+  .px-xl-5 {
+    padding-right: 3rem !important;
+    padding-left: 3rem !important;
+  }
+  .py-xl-0 {
+    padding-top: 0 !important;
+    padding-bottom: 0 !important;
+  }
+  .py-xl-1 {
+    padding-top: 0.25rem !important;
+    padding-bottom: 0.25rem !important;
+  }
+  .py-xl-2 {
+    padding-top: 0.5rem !important;
+    padding-bottom: 0.5rem !important;
+  }
+  .py-xl-3 {
+    padding-top: 1rem !important;
+    padding-bottom: 1rem !important;
+  }
+  .py-xl-4 {
+    padding-top: 1.5rem !important;
+    padding-bottom: 1.5rem !important;
+  }
+  .py-xl-5 {
+    padding-top: 3rem !important;
+    padding-bottom: 3rem !important;
+  }
+  .pt-xl-0 {
+    padding-top: 0 !important;
+  }
+  .pt-xl-1 {
+    padding-top: 0.25rem !important;
+  }
+  .pt-xl-2 {
+    padding-top: 0.5rem !important;
+  }
+  .pt-xl-3 {
+    padding-top: 1rem !important;
+  }
+  .pt-xl-4 {
+    padding-top: 1.5rem !important;
+  }
+  .pt-xl-5 {
+    padding-top: 3rem !important;
+  }
+  .pe-xl-0 {
+    padding-right: 0 !important;
+  }
+  .pe-xl-1 {
+    padding-right: 0.25rem !important;
+  }
+  .pe-xl-2 {
+    padding-right: 0.5rem !important;
+  }
+  .pe-xl-3 {
+    padding-right: 1rem !important;
+  }
+  .pe-xl-4 {
+    padding-right: 1.5rem !important;
+  }
+  .pe-xl-5 {
+    padding-right: 3rem !important;
+  }
+  .pb-xl-0 {
+    padding-bottom: 0 !important;
+  }
+  .pb-xl-1 {
+    padding-bottom: 0.25rem !important;
+  }
+  .pb-xl-2 {
+    padding-bottom: 0.5rem !important;
+  }
+  .pb-xl-3 {
+    padding-bottom: 1rem !important;
+  }
+  .pb-xl-4 {
+    padding-bottom: 1.5rem !important;
+  }
+  .pb-xl-5 {
+    padding-bottom: 3rem !important;
+  }
+  .ps-xl-0 {
+    padding-left: 0 !important;
+  }
+  .ps-xl-1 {
+    padding-left: 0.25rem !important;
+  }
+  .ps-xl-2 {
+    padding-left: 0.5rem !important;
+  }
+  .ps-xl-3 {
+    padding-left: 1rem !important;
+  }
+  .ps-xl-4 {
+    padding-left: 1.5rem !important;
+  }
+  .ps-xl-5 {
+    padding-left: 3rem !important;
+  }
+  .gap-xl-0 {
+    gap: 0 !important;
+  }
+  .gap-xl-1 {
+    gap: 0.25rem !important;
+  }
+  .gap-xl-2 {
+    gap: 0.5rem !important;
+  }
+  .gap-xl-3 {
+    gap: 1rem !important;
+  }
+  .gap-xl-4 {
+    gap: 1.5rem !important;
+  }
+  .gap-xl-5 {
+    gap: 3rem !important;
+  }
+  .row-gap-xl-0 {
+    row-gap: 0 !important;
+  }
+  .row-gap-xl-1 {
+    row-gap: 0.25rem !important;
+  }
+  .row-gap-xl-2 {
+    row-gap: 0.5rem !important;
+  }
+  .row-gap-xl-3 {
+    row-gap: 1rem !important;
+  }
+  .row-gap-xl-4 {
+    row-gap: 1.5rem !important;
+  }
+  .row-gap-xl-5 {
+    row-gap: 3rem !important;
+  }
+  .column-gap-xl-0 {
+    -moz-column-gap: 0 !important;
+    column-gap: 0 !important;
+  }
+  .column-gap-xl-1 {
+    -moz-column-gap: 0.25rem !important;
+    column-gap: 0.25rem !important;
+  }
+  .column-gap-xl-2 {
+    -moz-column-gap: 0.5rem !important;
+    column-gap: 0.5rem !important;
+  }
+  .column-gap-xl-3 {
+    -moz-column-gap: 1rem !important;
+    column-gap: 1rem !important;
+  }
+  .column-gap-xl-4 {
+    -moz-column-gap: 1.5rem !important;
+    column-gap: 1.5rem !important;
+  }
+  .column-gap-xl-5 {
+    -moz-column-gap: 3rem !important;
+    column-gap: 3rem !important;
+  }
+  .text-xl-start {
+    text-align: left !important;
+  }
+  .text-xl-end {
+    text-align: right !important;
+  }
+  .text-xl-center {
+    text-align: center !important;
+  }
+}
+@media (min-width: 1400px) {
+  .float-xxl-start {
+    float: left !important;
+  }
+  .float-xxl-end {
+    float: right !important;
+  }
+  .float-xxl-none {
+    float: none !important;
+  }
+  .object-fit-xxl-contain {
+    -o-object-fit: contain !important;
+    object-fit: contain !important;
+  }
+  .object-fit-xxl-cover {
+    -o-object-fit: cover !important;
+    object-fit: cover !important;
+  }
+  .object-fit-xxl-fill {
+    -o-object-fit: fill !important;
+    object-fit: fill !important;
+  }
+  .object-fit-xxl-scale {
+    -o-object-fit: scale-down !important;
+    object-fit: scale-down !important;
+  }
+  .object-fit-xxl-none {
+    -o-object-fit: none !important;
+    object-fit: none !important;
+  }
+  .d-xxl-inline {
+    display: inline !important;
+  }
+  .d-xxl-inline-block {
+    display: inline-block !important;
+  }
+  .d-xxl-block {
+    display: block !important;
+  }
+  .d-xxl-grid {
+    display: grid !important;
+  }
+  .d-xxl-inline-grid {
+    display: inline-grid !important;
+  }
+  .d-xxl-table {
+    display: table !important;
+  }
+  .d-xxl-table-row {
+    display: table-row !important;
+  }
+  .d-xxl-table-cell {
+    display: table-cell !important;
+  }
+  .d-xxl-flex {
+    display: flex !important;
+  }
+  .d-xxl-inline-flex {
+    display: inline-flex !important;
+  }
+  .d-xxl-none {
+    display: none !important;
+  }
+  .flex-xxl-fill {
+    flex: 1 1 auto !important;
+  }
+  .flex-xxl-row {
+    flex-direction: row !important;
+  }
+  .flex-xxl-column {
+    flex-direction: column !important;
+  }
+  .flex-xxl-row-reverse {
+    flex-direction: row-reverse !important;
+  }
+  .flex-xxl-column-reverse {
+    flex-direction: column-reverse !important;
+  }
+  .flex-xxl-grow-0 {
+    flex-grow: 0 !important;
+  }
+  .flex-xxl-grow-1 {
+    flex-grow: 1 !important;
+  }
+  .flex-xxl-shrink-0 {
+    flex-shrink: 0 !important;
+  }
+  .flex-xxl-shrink-1 {
+    flex-shrink: 1 !important;
+  }
+  .flex-xxl-wrap {
+    flex-wrap: wrap !important;
+  }
+  .flex-xxl-nowrap {
+    flex-wrap: nowrap !important;
+  }
+  .flex-xxl-wrap-reverse {
+    flex-wrap: wrap-reverse !important;
+  }
+  .justify-content-xxl-start {
+    justify-content: flex-start !important;
+  }
+  .justify-content-xxl-end {
+    justify-content: flex-end !important;
+  }
+  .justify-content-xxl-center {
+    justify-content: center !important;
+  }
+  .justify-content-xxl-between {
+    justify-content: space-between !important;
+  }
+  .justify-content-xxl-around {
+    justify-content: space-around !important;
+  }
+  .justify-content-xxl-evenly {
+    justify-content: space-evenly !important;
+  }
+  .align-items-xxl-start {
+    align-items: flex-start !important;
+  }
+  .align-items-xxl-end {
+    align-items: flex-end !important;
+  }
+  .align-items-xxl-center {
+    align-items: center !important;
+  }
+  .align-items-xxl-baseline {
+    align-items: baseline !important;
+  }
+  .align-items-xxl-stretch {
+    align-items: stretch !important;
+  }
+  .align-content-xxl-start {
+    align-content: flex-start !important;
+  }
+  .align-content-xxl-end {
+    align-content: flex-end !important;
+  }
+  .align-content-xxl-center {
+    align-content: center !important;
+  }
+  .align-content-xxl-between {
+    align-content: space-between !important;
+  }
+  .align-content-xxl-around {
+    align-content: space-around !important;
+  }
+  .align-content-xxl-stretch {
+    align-content: stretch !important;
+  }
+  .align-self-xxl-auto {
+    align-self: auto !important;
+  }
+  .align-self-xxl-start {
+    align-self: flex-start !important;
+  }
+  .align-self-xxl-end {
+    align-self: flex-end !important;
+  }
+  .align-self-xxl-center {
+    align-self: center !important;
+  }
+  .align-self-xxl-baseline {
+    align-self: baseline !important;
+  }
+  .align-self-xxl-stretch {
+    align-self: stretch !important;
+  }
+  .order-xxl-first {
+    order: -1 !important;
+  }
+  .order-xxl-0 {
+    order: 0 !important;
+  }
+  .order-xxl-1 {
+    order: 1 !important;
+  }
+  .order-xxl-2 {
+    order: 2 !important;
+  }
+  .order-xxl-3 {
+    order: 3 !important;
+  }
+  .order-xxl-4 {
+    order: 4 !important;
+  }
+  .order-xxl-5 {
+    order: 5 !important;
+  }
+  .order-xxl-last {
+    order: 6 !important;
+  }
+  .m-xxl-0 {
+    margin: 0 !important;
+  }
+  .m-xxl-1 {
+    margin: 0.25rem !important;
+  }
+  .m-xxl-2 {
+    margin: 0.5rem !important;
+  }
+  .m-xxl-3 {
+    margin: 1rem !important;
+  }
+  .m-xxl-4 {
+    margin: 1.5rem !important;
+  }
+  .m-xxl-5 {
+    margin: 3rem !important;
+  }
+  .m-xxl-auto {
+    margin: auto !important;
+  }
+  .mx-xxl-0 {
+    margin-right: 0 !important;
+    margin-left: 0 !important;
+  }
+  .mx-xxl-1 {
+    margin-right: 0.25rem !important;
+    margin-left: 0.25rem !important;
+  }
+  .mx-xxl-2 {
+    margin-right: 0.5rem !important;
+    margin-left: 0.5rem !important;
+  }
+  .mx-xxl-3 {
+    margin-right: 1rem !important;
+    margin-left: 1rem !important;
+  }
+  .mx-xxl-4 {
+    margin-right: 1.5rem !important;
+    margin-left: 1.5rem !important;
+  }
+  .mx-xxl-5 {
+    margin-right: 3rem !important;
+    margin-left: 3rem !important;
+  }
+  .mx-xxl-auto {
+    margin-right: auto !important;
+    margin-left: auto !important;
+  }
+  .my-xxl-0 {
+    margin-top: 0 !important;
+    margin-bottom: 0 !important;
+  }
+  .my-xxl-1 {
+    margin-top: 0.25rem !important;
+    margin-bottom: 0.25rem !important;
+  }
+  .my-xxl-2 {
+    margin-top: 0.5rem !important;
+    margin-bottom: 0.5rem !important;
+  }
+  .my-xxl-3 {
+    margin-top: 1rem !important;
+    margin-bottom: 1rem !important;
+  }
+  .my-xxl-4 {
+    margin-top: 1.5rem !important;
+    margin-bottom: 1.5rem !important;
+  }
+  .my-xxl-5 {
+    margin-top: 3rem !important;
+    margin-bottom: 3rem !important;
+  }
+  .my-xxl-auto {
+    margin-top: auto !important;
+    margin-bottom: auto !important;
+  }
+  .mt-xxl-0 {
+    margin-top: 0 !important;
+  }
+  .mt-xxl-1 {
+    margin-top: 0.25rem !important;
+  }
+  .mt-xxl-2 {
+    margin-top: 0.5rem !important;
+  }
+  .mt-xxl-3 {
+    margin-top: 1rem !important;
+  }
+  .mt-xxl-4 {
+    margin-top: 1.5rem !important;
+  }
+  .mt-xxl-5 {
+    margin-top: 3rem !important;
+  }
+  .mt-xxl-auto {
+    margin-top: auto !important;
+  }
+  .me-xxl-0 {
+    margin-right: 0 !important;
+  }
+  .me-xxl-1 {
+    margin-right: 0.25rem !important;
+  }
+  .me-xxl-2 {
+    margin-right: 0.5rem !important;
+  }
+  .me-xxl-3 {
+    margin-right: 1rem !important;
+  }
+  .me-xxl-4 {
+    margin-right: 1.5rem !important;
+  }
+  .me-xxl-5 {
+    margin-right: 3rem !important;
+  }
+  .me-xxl-auto {
+    margin-right: auto !important;
+  }
+  .mb-xxl-0 {
+    margin-bottom: 0 !important;
+  }
+  .mb-xxl-1 {
+    margin-bottom: 0.25rem !important;
+  }
+  .mb-xxl-2 {
+    margin-bottom: 0.5rem !important;
+  }
+  .mb-xxl-3 {
+    margin-bottom: 1rem !important;
+  }
+  .mb-xxl-4 {
+    margin-bottom: 1.5rem !important;
+  }
+  .mb-xxl-5 {
+    margin-bottom: 3rem !important;
+  }
+  .mb-xxl-auto {
+    margin-bottom: auto !important;
+  }
+  .ms-xxl-0 {
+    margin-left: 0 !important;
+  }
+  .ms-xxl-1 {
+    margin-left: 0.25rem !important;
+  }
+  .ms-xxl-2 {
+    margin-left: 0.5rem !important;
+  }
+  .ms-xxl-3 {
+    margin-left: 1rem !important;
+  }
+  .ms-xxl-4 {
+    margin-left: 1.5rem !important;
+  }
+  .ms-xxl-5 {
+    margin-left: 3rem !important;
+  }
+  .ms-xxl-auto {
+    margin-left: auto !important;
+  }
+  .p-xxl-0 {
+    padding: 0 !important;
+  }
+  .p-xxl-1 {
+    padding: 0.25rem !important;
+  }
+  .p-xxl-2 {
+    padding: 0.5rem !important;
+  }
+  .p-xxl-3 {
+    padding: 1rem !important;
+  }
+  .p-xxl-4 {
+    padding: 1.5rem !important;
+  }
+  .p-xxl-5 {
+    padding: 3rem !important;
+  }
+  .px-xxl-0 {
+    padding-right: 0 !important;
+    padding-left: 0 !important;
+  }
+  .px-xxl-1 {
+    padding-right: 0.25rem !important;
+    padding-left: 0.25rem !important;
+  }
+  .px-xxl-2 {
+    padding-right: 0.5rem !important;
+    padding-left: 0.5rem !important;
+  }
+  .px-xxl-3 {
+    padding-right: 1rem !important;
+    padding-left: 1rem !important;
+  }
+  .px-xxl-4 {
+    padding-right: 1.5rem !important;
+    padding-left: 1.5rem !important;
+  }
+  .px-xxl-5 {
+    padding-right: 3rem !important;
+    padding-left: 3rem !important;
+  }
+  .py-xxl-0 {
+    padding-top: 0 !important;
+    padding-bottom: 0 !important;
+  }
+  .py-xxl-1 {
+    padding-top: 0.25rem !important;
+    padding-bottom: 0.25rem !important;
+  }
+  .py-xxl-2 {
+    padding-top: 0.5rem !important;
+    padding-bottom: 0.5rem !important;
+  }
+  .py-xxl-3 {
+    padding-top: 1rem !important;
+    padding-bottom: 1rem !important;
+  }
+  .py-xxl-4 {
+    padding-top: 1.5rem !important;
+    padding-bottom: 1.5rem !important;
+  }
+  .py-xxl-5 {
+    padding-top: 3rem !important;
+    padding-bottom: 3rem !important;
+  }
+  .pt-xxl-0 {
+    padding-top: 0 !important;
+  }
+  .pt-xxl-1 {
+    padding-top: 0.25rem !important;
+  }
+  .pt-xxl-2 {
+    padding-top: 0.5rem !important;
+  }
+  .pt-xxl-3 {
+    padding-top: 1rem !important;
+  }
+  .pt-xxl-4 {
+    padding-top: 1.5rem !important;
+  }
+  .pt-xxl-5 {
+    padding-top: 3rem !important;
+  }
+  .pe-xxl-0 {
+    padding-right: 0 !important;
+  }
+  .pe-xxl-1 {
+    padding-right: 0.25rem !important;
+  }
+  .pe-xxl-2 {
+    padding-right: 0.5rem !important;
+  }
+  .pe-xxl-3 {
+    padding-right: 1rem !important;
+  }
+  .pe-xxl-4 {
+    padding-right: 1.5rem !important;
+  }
+  .pe-xxl-5 {
+    padding-right: 3rem !important;
+  }
+  .pb-xxl-0 {
+    padding-bottom: 0 !important;
+  }
+  .pb-xxl-1 {
+    padding-bottom: 0.25rem !important;
+  }
+  .pb-xxl-2 {
+    padding-bottom: 0.5rem !important;
+  }
+  .pb-xxl-3 {
+    padding-bottom: 1rem !important;
+  }
+  .pb-xxl-4 {
+    padding-bottom: 1.5rem !important;
+  }
+  .pb-xxl-5 {
+    padding-bottom: 3rem !important;
+  }
+  .ps-xxl-0 {
+    padding-left: 0 !important;
+  }
+  .ps-xxl-1 {
+    padding-left: 0.25rem !important;
+  }
+  .ps-xxl-2 {
+    padding-left: 0.5rem !important;
+  }
+  .ps-xxl-3 {
+    padding-left: 1rem !important;
+  }
+  .ps-xxl-4 {
+    padding-left: 1.5rem !important;
+  }
+  .ps-xxl-5 {
+    padding-left: 3rem !important;
+  }
+  .gap-xxl-0 {
+    gap: 0 !important;
+  }
+  .gap-xxl-1 {
+    gap: 0.25rem !important;
+  }
+  .gap-xxl-2 {
+    gap: 0.5rem !important;
+  }
+  .gap-xxl-3 {
+    gap: 1rem !important;
+  }
+  .gap-xxl-4 {
+    gap: 1.5rem !important;
+  }
+  .gap-xxl-5 {
+    gap: 3rem !important;
+  }
+  .row-gap-xxl-0 {
+    row-gap: 0 !important;
+  }
+  .row-gap-xxl-1 {
+    row-gap: 0.25rem !important;
+  }
+  .row-gap-xxl-2 {
+    row-gap: 0.5rem !important;
+  }
+  .row-gap-xxl-3 {
+    row-gap: 1rem !important;
+  }
+  .row-gap-xxl-4 {
+    row-gap: 1.5rem !important;
+  }
+  .row-gap-xxl-5 {
+    row-gap: 3rem !important;
+  }
+  .column-gap-xxl-0 {
+    -moz-column-gap: 0 !important;
+    column-gap: 0 !important;
+  }
+  .column-gap-xxl-1 {
+    -moz-column-gap: 0.25rem !important;
+    column-gap: 0.25rem !important;
+  }
+  .column-gap-xxl-2 {
+    -moz-column-gap: 0.5rem !important;
+    column-gap: 0.5rem !important;
+  }
+  .column-gap-xxl-3 {
+    -moz-column-gap: 1rem !important;
+    column-gap: 1rem !important;
+  }
+  .column-gap-xxl-4 {
+    -moz-column-gap: 1.5rem !important;
+    column-gap: 1.5rem !important;
+  }
+  .column-gap-xxl-5 {
+    -moz-column-gap: 3rem !important;
+    column-gap: 3rem !important;
+  }
+  .text-xxl-start {
+    text-align: left !important;
+  }
+  .text-xxl-end {
+    text-align: right !important;
+  }
+  .text-xxl-center {
+    text-align: center !important;
+  }
+}
+@media (min-width: 1200px) {
+  .fs-1 {
+    font-size: 2.5rem !important;
+  }
+  .fs-2 {
+    font-size: 2rem !important;
+  }
+  .fs-3 {
+    font-size: 1.75rem !important;
+  }
+  .fs-4 {
+    font-size: 1.5rem !important;
+  }
+}
+@media print {
+  .d-print-inline {
+    display: inline !important;
+  }
+  .d-print-inline-block {
+    display: inline-block !important;
+  }
+  .d-print-block {
+    display: block !important;
+  }
+  .d-print-grid {
+    display: grid !important;
+  }
+  .d-print-inline-grid {
+    display: inline-grid !important;
+  }
+  .d-print-table {
+    display: table !important;
+  }
+  .d-print-table-row {
+    display: table-row !important;
+  }
+  .d-print-table-cell {
+    display: table-cell !important;
+  }
+  .d-print-flex {
+    display: flex !important;
+  }
+  .d-print-inline-flex {
+    display: inline-flex !important;
+  }
+  .d-print-none {
+    display: none !important;
+  }
+}
+
+/*# sourceMappingURL=bootstrap.css.map */
\ No newline at end of file
diff --git a/oxAuth/Server/src/main/webapp/stylesheet/bootstrap.min.css b/oxAuth/Server/src/main/webapp/stylesheet/bootstrap.min.css
new file mode 100644
index 00000000..f5910acc
--- /dev/null
+++ b/oxAuth/Server/src/main/webapp/stylesheet/bootstrap.min.css
@@ -0,0 +1,6 @@
+@charset "UTF-8";/*!
+ * Bootstrap  v5.3.2 (https://getbootstrap.com/)
+ * Copyright 2011-2023 The Bootstrap Authors
+ * Licensed under MIT (https://github.com/twbs/bootstrap/blob/main/LICENSE)
+ */:root,[data-bs-theme=light]{--bs-blue:#0d6efd;--bs-indigo:#6610f2;--bs-purple:#6f42c1;--bs-pink:#d63384;--bs-red:#dc3545;--bs-orange:#fd7e14;--bs-yellow:#ffc107;--bs-green:#198754;--bs-teal:#20c997;--bs-cyan:#0dcaf0;--bs-black:#000;--bs-white:#fff;--bs-gray:#6c757d;--bs-gray-dark:#343a40;--bs-gray-100:#f8f9fa;--bs-gray-200:#e9ecef;--bs-gray-300:#dee2e6;--bs-gray-400:#ced4da;--bs-gray-500:#adb5bd;--bs-gray-600:#6c757d;--bs-gray-700:#495057;--bs-gray-800:#343a40;--bs-gray-900:#212529;--bs-primary:#0d6efd;--bs-secondary:#6c757d;--bs-success:#198754;--bs-info:#0dcaf0;--bs-warning:#ffc107;--bs-danger:#dc3545;--bs-light:#f8f9fa;--bs-dark:#212529;--bs-primary-rgb:13,110,253;--bs-secondary-rgb:108,117,125;--bs-success-rgb:25,135,84;--bs-info-rgb:13,202,240;--bs-warning-rgb:255,193,7;--bs-danger-rgb:220,53,69;--bs-light-rgb:248,249,250;--bs-dark-rgb:33,37,41;--bs-primary-text-emphasis:#052c65;--bs-secondary-text-emphasis:#2b2f32;--bs-success-text-emphasis:#0a3622;--bs-info-text-emphasis:#055160;--bs-warning-text-emphasis:#664d03;--bs-danger-text-emphasis:#58151c;--bs-light-text-emphasis:#495057;--bs-dark-text-emphasis:#495057;--bs-primary-bg-subtle:#cfe2ff;--bs-secondary-bg-subtle:#e2e3e5;--bs-success-bg-subtle:#d1e7dd;--bs-info-bg-subtle:#cff4fc;--bs-warning-bg-subtle:#fff3cd;--bs-danger-bg-subtle:#f8d7da;--bs-light-bg-subtle:#fcfcfd;--bs-dark-bg-subtle:#ced4da;--bs-primary-border-subtle:#9ec5fe;--bs-secondary-border-subtle:#c4c8cb;--bs-success-border-subtle:#a3cfbb;--bs-info-border-subtle:#9eeaf9;--bs-warning-border-subtle:#ffe69c;--bs-danger-border-subtle:#f1aeb5;--bs-light-border-subtle:#e9ecef;--bs-dark-border-subtle:#adb5bd;--bs-white-rgb:255,255,255;--bs-black-rgb:0,0,0;--bs-font-sans-serif:system-ui,-apple-system,"Segoe UI",Roboto,"Helvetica Neue","Noto Sans","Liberation Sans",Arial,sans-serif,"Apple Color Emoji","Segoe UI Emoji","Segoe UI Symbol","Noto Color Emoji";--bs-font-monospace:SFMono-Regular,Menlo,Monaco,Consolas,"Liberation Mono","Courier New",monospace;--bs-gradient:linear-gradient(180deg, rgba(255, 255, 255, 0.15), rgba(255, 255, 255, 0));--bs-body-font-family:var(--bs-font-sans-serif);--bs-body-font-size:1rem;--bs-body-font-weight:400;--bs-body-line-height:1.5;--bs-body-color:#212529;--bs-body-color-rgb:33,37,41;--bs-body-bg:#fff;--bs-body-bg-rgb:255,255,255;--bs-emphasis-color:#000;--bs-emphasis-color-rgb:0,0,0;--bs-secondary-color:rgba(33, 37, 41, 0.75);--bs-secondary-color-rgb:33,37,41;--bs-secondary-bg:#e9ecef;--bs-secondary-bg-rgb:233,236,239;--bs-tertiary-color:rgba(33, 37, 41, 0.5);--bs-tertiary-color-rgb:33,37,41;--bs-tertiary-bg:#f8f9fa;--bs-tertiary-bg-rgb:248,249,250;--bs-heading-color:inherit;--bs-link-color:#0d6efd;--bs-link-color-rgb:13,110,253;--bs-link-decoration:underline;--bs-link-hover-color:#0a58ca;--bs-link-hover-color-rgb:10,88,202;--bs-code-color:#d63384;--bs-highlight-color:#212529;--bs-highlight-bg:#fff3cd;--bs-border-width:1px;--bs-border-style:solid;--bs-border-color:#dee2e6;--bs-border-color-translucent:rgba(0, 0, 0, 0.175);--bs-border-radius:0.375rem;--bs-border-radius-sm:0.25rem;--bs-border-radius-lg:0.5rem;--bs-border-radius-xl:1rem;--bs-border-radius-xxl:2rem;--bs-border-radius-2xl:var(--bs-border-radius-xxl);--bs-border-radius-pill:50rem;--bs-box-shadow:0 0.5rem 1rem rgba(0, 0, 0, 0.15);--bs-box-shadow-sm:0 0.125rem 0.25rem rgba(0, 0, 0, 0.075);--bs-box-shadow-lg:0 1rem 3rem rgba(0, 0, 0, 0.175);--bs-box-shadow-inset:inset 0 1px 2px rgba(0, 0, 0, 0.075);--bs-focus-ring-width:0.25rem;--bs-focus-ring-opacity:0.25;--bs-focus-ring-color:rgba(13, 110, 253, 0.25);--bs-form-valid-color:#198754;--bs-form-valid-border-color:#198754;--bs-form-invalid-color:#dc3545;--bs-form-invalid-border-color:#dc3545}[data-bs-theme=dark]{color-scheme:dark;--bs-body-color:#dee2e6;--bs-body-color-rgb:222,226,230;--bs-body-bg:#212529;--bs-body-bg-rgb:33,37,41;--bs-emphasis-color:#fff;--bs-emphasis-color-rgb:255,255,255;--bs-secondary-color:rgba(222, 226, 230, 0.75);--bs-secondary-color-rgb:222,226,230;--bs-secondary-bg:#343a40;--bs-secondary-bg-rgb:52,58,64;--bs-tertiary-color:rgba(222, 226, 230, 0.5);--bs-tertiary-color-rgb:222,226,230;--bs-tertiary-bg:#2b3035;--bs-tertiary-bg-rgb:43,48,53;--bs-primary-text-emphasis:#6ea8fe;--bs-secondary-text-emphasis:#a7acb1;--bs-success-text-emphasis:#75b798;--bs-info-text-emphasis:#6edff6;--bs-warning-text-emphasis:#ffda6a;--bs-danger-text-emphasis:#ea868f;--bs-light-text-emphasis:#f8f9fa;--bs-dark-text-emphasis:#dee2e6;--bs-primary-bg-subtle:#031633;--bs-secondary-bg-subtle:#161719;--bs-success-bg-subtle:#051b11;--bs-info-bg-subtle:#032830;--bs-warning-bg-subtle:#332701;--bs-danger-bg-subtle:#2c0b0e;--bs-light-bg-subtle:#343a40;--bs-dark-bg-subtle:#1a1d20;--bs-primary-border-subtle:#084298;--bs-secondary-border-subtle:#41464b;--bs-success-border-subtle:#0f5132;--bs-info-border-subtle:#087990;--bs-warning-border-subtle:#997404;--bs-danger-border-subtle:#842029;--bs-light-border-subtle:#495057;--bs-dark-border-subtle:#343a40;--bs-heading-color:inherit;--bs-link-color:#6ea8fe;--bs-link-hover-color:#8bb9fe;--bs-link-color-rgb:110,168,254;--bs-link-hover-color-rgb:139,185,254;--bs-code-color:#e685b5;--bs-highlight-color:#dee2e6;--bs-highlight-bg:#664d03;--bs-border-color:#495057;--bs-border-color-translucent:rgba(255, 255, 255, 0.15);--bs-form-valid-color:#75b798;--bs-form-valid-border-color:#75b798;--bs-form-invalid-color:#ea868f;--bs-form-invalid-border-color:#ea868f}*,::after,::before{box-sizing:border-box}@media (prefers-reduced-motion:no-preference){:root{scroll-behavior:smooth}}body{margin:0;font-family:var(--bs-body-font-family);font-size:var(--bs-body-font-size);font-weight:var(--bs-body-font-weight);line-height:var(--bs-body-line-height);color:var(--bs-body-color);text-align:var(--bs-body-text-align);background-color:var(--bs-body-bg);-webkit-text-size-adjust:100%;-webkit-tap-highlight-color:transparent}hr{margin:1rem 0;color:inherit;border:0;border-top:var(--bs-border-width) solid;opacity:.25}.h1,.h2,.h3,.h4,.h5,.h6,h1,h2,h3,h4,h5,h6{margin-top:0;margin-bottom:.5rem;font-weight:500;line-height:1.2;color:var(--bs-heading-color)}.h1,h1{font-size:calc(1.375rem + 1.5vw)}@media (min-width:1200px){.h1,h1{font-size:2.5rem}}.h2,h2{font-size:calc(1.325rem + .9vw)}@media (min-width:1200px){.h2,h2{font-size:2rem}}.h3,h3{font-size:calc(1.3rem + .6vw)}@media (min-width:1200px){.h3,h3{font-size:1.75rem}}.h4,h4{font-size:calc(1.275rem + .3vw)}@media (min-width:1200px){.h4,h4{font-size:1.5rem}}.h5,h5{font-size:1.25rem}.h6,h6{font-size:1rem}p{margin-top:0;margin-bottom:1rem}abbr[title]{-webkit-text-decoration:underline dotted;text-decoration:underline dotted;cursor:help;-webkit-text-decoration-skip-ink:none;text-decoration-skip-ink:none}address{margin-bottom:1rem;font-style:normal;line-height:inherit}ol,ul{padding-left:2rem}dl,ol,ul{margin-top:0;margin-bottom:1rem}ol ol,ol ul,ul ol,ul ul{margin-bottom:0}dt{font-weight:700}dd{margin-bottom:.5rem;margin-left:0}blockquote{margin:0 0 1rem}b,strong{font-weight:bolder}.small,small{font-size:.875em}.mark,mark{padding:.1875em;color:var(--bs-highlight-color);background-color:var(--bs-highlight-bg)}sub,sup{position:relative;font-size:.75em;line-height:0;vertical-align:baseline}sub{bottom:-.25em}sup{top:-.5em}a{color:rgba(var(--bs-link-color-rgb),var(--bs-link-opacity,1));text-decoration:underline}a:hover{--bs-link-color-rgb:var(--bs-link-hover-color-rgb)}a:not([href]):not([class]),a:not([href]):not([class]):hover{color:inherit;text-decoration:none}code,kbd,pre,samp{font-family:var(--bs-font-monospace);font-size:1em}pre{display:block;margin-top:0;margin-bottom:1rem;overflow:auto;font-size:.875em}pre code{font-size:inherit;color:inherit;word-break:normal}code{font-size:.875em;color:var(--bs-code-color);word-wrap:break-word}a>code{color:inherit}kbd{padding:.1875rem .375rem;font-size:.875em;color:var(--bs-body-bg);background-color:var(--bs-body-color);border-radius:.25rem}kbd kbd{padding:0;font-size:1em}figure{margin:0 0 1rem}img,svg{vertical-align:middle}table{caption-side:bottom;border-collapse:collapse}caption{padding-top:.5rem;padding-bottom:.5rem;color:var(--bs-secondary-color);text-align:left}th{text-align:inherit;text-align:-webkit-match-parent}tbody,td,tfoot,th,thead,tr{border-color:inherit;border-style:solid;border-width:0}label{display:inline-block}button{border-radius:0}button:focus:not(:focus-visible){outline:0}button,input,optgroup,select,textarea{margin:0;font-family:inherit;font-size:inherit;line-height:inherit}button,select{text-transform:none}[role=button]{cursor:pointer}select{word-wrap:normal}select:disabled{opacity:1}[list]:not([type=date]):not([type=datetime-local]):not([type=month]):not([type=week]):not([type=time])::-webkit-calendar-picker-indicator{display:none!important}[type=button],[type=reset],[type=submit],button{-webkit-appearance:button}[type=button]:not(:disabled),[type=reset]:not(:disabled),[type=submit]:not(:disabled),button:not(:disabled){cursor:pointer}::-moz-focus-inner{padding:0;border-style:none}textarea{resize:vertical}fieldset{min-width:0;padding:0;margin:0;border:0}legend{float:left;width:100%;padding:0;margin-bottom:.5rem;font-size:calc(1.275rem + .3vw);line-height:inherit}@media (min-width:1200px){legend{font-size:1.5rem}}legend+*{clear:left}::-webkit-datetime-edit-day-field,::-webkit-datetime-edit-fields-wrapper,::-webkit-datetime-edit-hour-field,::-webkit-datetime-edit-minute,::-webkit-datetime-edit-month-field,::-webkit-datetime-edit-text,::-webkit-datetime-edit-year-field{padding:0}::-webkit-inner-spin-button{height:auto}[type=search]{-webkit-appearance:textfield;outline-offset:-2px}::-webkit-search-decoration{-webkit-appearance:none}::-webkit-color-swatch-wrapper{padding:0}::-webkit-file-upload-button{font:inherit;-webkit-appearance:button}::file-selector-button{font:inherit;-webkit-appearance:button}output{display:inline-block}iframe{border:0}summary{display:list-item;cursor:pointer}progress{vertical-align:baseline}[hidden]{display:none!important}.lead{font-size:1.25rem;font-weight:300}.display-1{font-size:calc(1.625rem + 4.5vw);font-weight:300;line-height:1.2}@media (min-width:1200px){.display-1{font-size:5rem}}.display-2{font-size:calc(1.575rem + 3.9vw);font-weight:300;line-height:1.2}@media (min-width:1200px){.display-2{font-size:4.5rem}}.display-3{font-size:calc(1.525rem + 3.3vw);font-weight:300;line-height:1.2}@media (min-width:1200px){.display-3{font-size:4rem}}.display-4{font-size:calc(1.475rem + 2.7vw);font-weight:300;line-height:1.2}@media (min-width:1200px){.display-4{font-size:3.5rem}}.display-5{font-size:calc(1.425rem + 2.1vw);font-weight:300;line-height:1.2}@media (min-width:1200px){.display-5{font-size:3rem}}.display-6{font-size:calc(1.375rem + 1.5vw);font-weight:300;line-height:1.2}@media (min-width:1200px){.display-6{font-size:2.5rem}}.list-unstyled{padding-left:0;list-style:none}.list-inline{padding-left:0;list-style:none}.list-inline-item{display:inline-block}.list-inline-item:not(:last-child){margin-right:.5rem}.initialism{font-size:.875em;text-transform:uppercase}.blockquote{margin-bottom:1rem;font-size:1.25rem}.blockquote>:last-child{margin-bottom:0}.blockquote-footer{margin-top:-1rem;margin-bottom:1rem;font-size:.875em;color:#6c757d}.blockquote-footer::before{content:"— "}.img-fluid{max-width:100%;height:auto}.img-thumbnail{padding:.25rem;background-color:var(--bs-body-bg);border:var(--bs-border-width) solid var(--bs-border-color);border-radius:var(--bs-border-radius);max-width:100%;height:auto}.figure{display:inline-block}.figure-img{margin-bottom:.5rem;line-height:1}.figure-caption{font-size:.875em;color:var(--bs-secondary-color)}.container,.container-fluid,.container-lg,.container-md,.container-sm,.container-xl,.container-xxl{--bs-gutter-x:1.5rem;--bs-gutter-y:0;width:100%;padding-right:calc(var(--bs-gutter-x) * .5);padding-left:calc(var(--bs-gutter-x) * .5);margin-right:auto;margin-left:auto}@media (min-width:576px){.container,.container-sm{max-width:540px}}@media (min-width:768px){.container,.container-md,.container-sm{max-width:720px}}@media (min-width:992px){.container,.container-lg,.container-md,.container-sm{max-width:960px}}@media (min-width:1200px){.container,.container-lg,.container-md,.container-sm,.container-xl{max-width:1140px}}@media (min-width:1400px){.container,.container-lg,.container-md,.container-sm,.container-xl,.container-xxl{max-width:1320px}}:root{--bs-breakpoint-xs:0;--bs-breakpoint-sm:576px;--bs-breakpoint-md:768px;--bs-breakpoint-lg:992px;--bs-breakpoint-xl:1200px;--bs-breakpoint-xxl:1400px}.row{--bs-gutter-x:1.5rem;--bs-gutter-y:0;display:flex;flex-wrap:wrap;margin-top:calc(-1 * var(--bs-gutter-y));margin-right:calc(-.5 * var(--bs-gutter-x));margin-left:calc(-.5 * var(--bs-gutter-x))}.row>*{flex-shrink:0;width:100%;max-width:100%;padding-right:calc(var(--bs-gutter-x) * .5);padding-left:calc(var(--bs-gutter-x) * .5);margin-top:var(--bs-gutter-y)}.col{flex:1 0 0%}.row-cols-auto>*{flex:0 0 auto;width:auto}.row-cols-1>*{flex:0 0 auto;width:100%}.row-cols-2>*{flex:0 0 auto;width:50%}.row-cols-3>*{flex:0 0 auto;width:33.33333333%}.row-cols-4>*{flex:0 0 auto;width:25%}.row-cols-5>*{flex:0 0 auto;width:20%}.row-cols-6>*{flex:0 0 auto;width:16.66666667%}.col-auto{flex:0 0 auto;width:auto}.col-1{flex:0 0 auto;width:8.33333333%}.col-2{flex:0 0 auto;width:16.66666667%}.col-3{flex:0 0 auto;width:25%}.col-4{flex:0 0 auto;width:33.33333333%}.col-5{flex:0 0 auto;width:41.66666667%}.col-6{flex:0 0 auto;width:50%}.col-7{flex:0 0 auto;width:58.33333333%}.col-8{flex:0 0 auto;width:66.66666667%}.col-9{flex:0 0 auto;width:75%}.col-10{flex:0 0 auto;width:83.33333333%}.col-11{flex:0 0 auto;width:91.66666667%}.col-12{flex:0 0 auto;width:100%}.offset-1{margin-left:8.33333333%}.offset-2{margin-left:16.66666667%}.offset-3{margin-left:25%}.offset-4{margin-left:33.33333333%}.offset-5{margin-left:41.66666667%}.offset-6{margin-left:50%}.offset-7{margin-left:58.33333333%}.offset-8{margin-left:66.66666667%}.offset-9{margin-left:75%}.offset-10{margin-left:83.33333333%}.offset-11{margin-left:91.66666667%}.g-0,.gx-0{--bs-gutter-x:0}.g-0,.gy-0{--bs-gutter-y:0}.g-1,.gx-1{--bs-gutter-x:0.25rem}.g-1,.gy-1{--bs-gutter-y:0.25rem}.g-2,.gx-2{--bs-gutter-x:0.5rem}.g-2,.gy-2{--bs-gutter-y:0.5rem}.g-3,.gx-3{--bs-gutter-x:1rem}.g-3,.gy-3{--bs-gutter-y:1rem}.g-4,.gx-4{--bs-gutter-x:1.5rem}.g-4,.gy-4{--bs-gutter-y:1.5rem}.g-5,.gx-5{--bs-gutter-x:3rem}.g-5,.gy-5{--bs-gutter-y:3rem}@media (min-width:576px){.col-sm{flex:1 0 0%}.row-cols-sm-auto>*{flex:0 0 auto;width:auto}.row-cols-sm-1>*{flex:0 0 auto;width:100%}.row-cols-sm-2>*{flex:0 0 auto;width:50%}.row-cols-sm-3>*{flex:0 0 auto;width:33.33333333%}.row-cols-sm-4>*{flex:0 0 auto;width:25%}.row-cols-sm-5>*{flex:0 0 auto;width:20%}.row-cols-sm-6>*{flex:0 0 auto;width:16.66666667%}.col-sm-auto{flex:0 0 auto;width:auto}.col-sm-1{flex:0 0 auto;width:8.33333333%}.col-sm-2{flex:0 0 auto;width:16.66666667%}.col-sm-3{flex:0 0 auto;width:25%}.col-sm-4{flex:0 0 auto;width:33.33333333%}.col-sm-5{flex:0 0 auto;width:41.66666667%}.col-sm-6{flex:0 0 auto;width:50%}.col-sm-7{flex:0 0 auto;width:58.33333333%}.col-sm-8{flex:0 0 auto;width:66.66666667%}.col-sm-9{flex:0 0 auto;width:75%}.col-sm-10{flex:0 0 auto;width:83.33333333%}.col-sm-11{flex:0 0 auto;width:91.66666667%}.col-sm-12{flex:0 0 auto;width:100%}.offset-sm-0{margin-left:0}.offset-sm-1{margin-left:8.33333333%}.offset-sm-2{margin-left:16.66666667%}.offset-sm-3{margin-left:25%}.offset-sm-4{margin-left:33.33333333%}.offset-sm-5{margin-left:41.66666667%}.offset-sm-6{margin-left:50%}.offset-sm-7{margin-left:58.33333333%}.offset-sm-8{margin-left:66.66666667%}.offset-sm-9{margin-left:75%}.offset-sm-10{margin-left:83.33333333%}.offset-sm-11{margin-left:91.66666667%}.g-sm-0,.gx-sm-0{--bs-gutter-x:0}.g-sm-0,.gy-sm-0{--bs-gutter-y:0}.g-sm-1,.gx-sm-1{--bs-gutter-x:0.25rem}.g-sm-1,.gy-sm-1{--bs-gutter-y:0.25rem}.g-sm-2,.gx-sm-2{--bs-gutter-x:0.5rem}.g-sm-2,.gy-sm-2{--bs-gutter-y:0.5rem}.g-sm-3,.gx-sm-3{--bs-gutter-x:1rem}.g-sm-3,.gy-sm-3{--bs-gutter-y:1rem}.g-sm-4,.gx-sm-4{--bs-gutter-x:1.5rem}.g-sm-4,.gy-sm-4{--bs-gutter-y:1.5rem}.g-sm-5,.gx-sm-5{--bs-gutter-x:3rem}.g-sm-5,.gy-sm-5{--bs-gutter-y:3rem}}@media (min-width:768px){.col-md{flex:1 0 0%}.row-cols-md-auto>*{flex:0 0 auto;width:auto}.row-cols-md-1>*{flex:0 0 auto;width:100%}.row-cols-md-2>*{flex:0 0 auto;width:50%}.row-cols-md-3>*{flex:0 0 auto;width:33.33333333%}.row-cols-md-4>*{flex:0 0 auto;width:25%}.row-cols-md-5>*{flex:0 0 auto;width:20%}.row-cols-md-6>*{flex:0 0 auto;width:16.66666667%}.col-md-auto{flex:0 0 auto;width:auto}.col-md-1{flex:0 0 auto;width:8.33333333%}.col-md-2{flex:0 0 auto;width:16.66666667%}.col-md-3{flex:0 0 auto;width:25%}.col-md-4{flex:0 0 auto;width:33.33333333%}.col-md-5{flex:0 0 auto;width:41.66666667%}.col-md-6{flex:0 0 auto;width:50%}.col-md-7{flex:0 0 auto;width:58.33333333%}.col-md-8{flex:0 0 auto;width:66.66666667%}.col-md-9{flex:0 0 auto;width:75%}.col-md-10{flex:0 0 auto;width:83.33333333%}.col-md-11{flex:0 0 auto;width:91.66666667%}.col-md-12{flex:0 0 auto;width:100%}.offset-md-0{margin-left:0}.offset-md-1{margin-left:8.33333333%}.offset-md-2{margin-left:16.66666667%}.offset-md-3{margin-left:25%}.offset-md-4{margin-left:33.33333333%}.offset-md-5{margin-left:41.66666667%}.offset-md-6{margin-left:50%}.offset-md-7{margin-left:58.33333333%}.offset-md-8{margin-left:66.66666667%}.offset-md-9{margin-left:75%}.offset-md-10{margin-left:83.33333333%}.offset-md-11{margin-left:91.66666667%}.g-md-0,.gx-md-0{--bs-gutter-x:0}.g-md-0,.gy-md-0{--bs-gutter-y:0}.g-md-1,.gx-md-1{--bs-gutter-x:0.25rem}.g-md-1,.gy-md-1{--bs-gutter-y:0.25rem}.g-md-2,.gx-md-2{--bs-gutter-x:0.5rem}.g-md-2,.gy-md-2{--bs-gutter-y:0.5rem}.g-md-3,.gx-md-3{--bs-gutter-x:1rem}.g-md-3,.gy-md-3{--bs-gutter-y:1rem}.g-md-4,.gx-md-4{--bs-gutter-x:1.5rem}.g-md-4,.gy-md-4{--bs-gutter-y:1.5rem}.g-md-5,.gx-md-5{--bs-gutter-x:3rem}.g-md-5,.gy-md-5{--bs-gutter-y:3rem}}@media (min-width:992px){.col-lg{flex:1 0 0%}.row-cols-lg-auto>*{flex:0 0 auto;width:auto}.row-cols-lg-1>*{flex:0 0 auto;width:100%}.row-cols-lg-2>*{flex:0 0 auto;width:50%}.row-cols-lg-3>*{flex:0 0 auto;width:33.33333333%}.row-cols-lg-4>*{flex:0 0 auto;width:25%}.row-cols-lg-5>*{flex:0 0 auto;width:20%}.row-cols-lg-6>*{flex:0 0 auto;width:16.66666667%}.col-lg-auto{flex:0 0 auto;width:auto}.col-lg-1{flex:0 0 auto;width:8.33333333%}.col-lg-2{flex:0 0 auto;width:16.66666667%}.col-lg-3{flex:0 0 auto;width:25%}.col-lg-4{flex:0 0 auto;width:33.33333333%}.col-lg-5{flex:0 0 auto;width:41.66666667%}.col-lg-6{flex:0 0 auto;width:50%}.col-lg-7{flex:0 0 auto;width:58.33333333%}.col-lg-8{flex:0 0 auto;width:66.66666667%}.col-lg-9{flex:0 0 auto;width:75%}.col-lg-10{flex:0 0 auto;width:83.33333333%}.col-lg-11{flex:0 0 auto;width:91.66666667%}.col-lg-12{flex:0 0 auto;width:100%}.offset-lg-0{margin-left:0}.offset-lg-1{margin-left:8.33333333%}.offset-lg-2{margin-left:16.66666667%}.offset-lg-3{margin-left:25%}.offset-lg-4{margin-left:33.33333333%}.offset-lg-5{margin-left:41.66666667%}.offset-lg-6{margin-left:50%}.offset-lg-7{margin-left:58.33333333%}.offset-lg-8{margin-left:66.66666667%}.offset-lg-9{margin-left:75%}.offset-lg-10{margin-left:83.33333333%}.offset-lg-11{margin-left:91.66666667%}.g-lg-0,.gx-lg-0{--bs-gutter-x:0}.g-lg-0,.gy-lg-0{--bs-gutter-y:0}.g-lg-1,.gx-lg-1{--bs-gutter-x:0.25rem}.g-lg-1,.gy-lg-1{--bs-gutter-y:0.25rem}.g-lg-2,.gx-lg-2{--bs-gutter-x:0.5rem}.g-lg-2,.gy-lg-2{--bs-gutter-y:0.5rem}.g-lg-3,.gx-lg-3{--bs-gutter-x:1rem}.g-lg-3,.gy-lg-3{--bs-gutter-y:1rem}.g-lg-4,.gx-lg-4{--bs-gutter-x:1.5rem}.g-lg-4,.gy-lg-4{--bs-gutter-y:1.5rem}.g-lg-5,.gx-lg-5{--bs-gutter-x:3rem}.g-lg-5,.gy-lg-5{--bs-gutter-y:3rem}}@media (min-width:1200px){.col-xl{flex:1 0 0%}.row-cols-xl-auto>*{flex:0 0 auto;width:auto}.row-cols-xl-1>*{flex:0 0 auto;width:100%}.row-cols-xl-2>*{flex:0 0 auto;width:50%}.row-cols-xl-3>*{flex:0 0 auto;width:33.33333333%}.row-cols-xl-4>*{flex:0 0 auto;width:25%}.row-cols-xl-5>*{flex:0 0 auto;width:20%}.row-cols-xl-6>*{flex:0 0 auto;width:16.66666667%}.col-xl-auto{flex:0 0 auto;width:auto}.col-xl-1{flex:0 0 auto;width:8.33333333%}.col-xl-2{flex:0 0 auto;width:16.66666667%}.col-xl-3{flex:0 0 auto;width:25%}.col-xl-4{flex:0 0 auto;width:33.33333333%}.col-xl-5{flex:0 0 auto;width:41.66666667%}.col-xl-6{flex:0 0 auto;width:50%}.col-xl-7{flex:0 0 auto;width:58.33333333%}.col-xl-8{flex:0 0 auto;width:66.66666667%}.col-xl-9{flex:0 0 auto;width:75%}.col-xl-10{flex:0 0 auto;width:83.33333333%}.col-xl-11{flex:0 0 auto;width:91.66666667%}.col-xl-12{flex:0 0 auto;width:100%}.offset-xl-0{margin-left:0}.offset-xl-1{margin-left:8.33333333%}.offset-xl-2{margin-left:16.66666667%}.offset-xl-3{margin-left:25%}.offset-xl-4{margin-left:33.33333333%}.offset-xl-5{margin-left:41.66666667%}.offset-xl-6{margin-left:50%}.offset-xl-7{margin-left:58.33333333%}.offset-xl-8{margin-left:66.66666667%}.offset-xl-9{margin-left:75%}.offset-xl-10{margin-left:83.33333333%}.offset-xl-11{margin-left:91.66666667%}.g-xl-0,.gx-xl-0{--bs-gutter-x:0}.g-xl-0,.gy-xl-0{--bs-gutter-y:0}.g-xl-1,.gx-xl-1{--bs-gutter-x:0.25rem}.g-xl-1,.gy-xl-1{--bs-gutter-y:0.25rem}.g-xl-2,.gx-xl-2{--bs-gutter-x:0.5rem}.g-xl-2,.gy-xl-2{--bs-gutter-y:0.5rem}.g-xl-3,.gx-xl-3{--bs-gutter-x:1rem}.g-xl-3,.gy-xl-3{--bs-gutter-y:1rem}.g-xl-4,.gx-xl-4{--bs-gutter-x:1.5rem}.g-xl-4,.gy-xl-4{--bs-gutter-y:1.5rem}.g-xl-5,.gx-xl-5{--bs-gutter-x:3rem}.g-xl-5,.gy-xl-5{--bs-gutter-y:3rem}}@media (min-width:1400px){.col-xxl{flex:1 0 0%}.row-cols-xxl-auto>*{flex:0 0 auto;width:auto}.row-cols-xxl-1>*{flex:0 0 auto;width:100%}.row-cols-xxl-2>*{flex:0 0 auto;width:50%}.row-cols-xxl-3>*{flex:0 0 auto;width:33.33333333%}.row-cols-xxl-4>*{flex:0 0 auto;width:25%}.row-cols-xxl-5>*{flex:0 0 auto;width:20%}.row-cols-xxl-6>*{flex:0 0 auto;width:16.66666667%}.col-xxl-auto{flex:0 0 auto;width:auto}.col-xxl-1{flex:0 0 auto;width:8.33333333%}.col-xxl-2{flex:0 0 auto;width:16.66666667%}.col-xxl-3{flex:0 0 auto;width:25%}.col-xxl-4{flex:0 0 auto;width:33.33333333%}.col-xxl-5{flex:0 0 auto;width:41.66666667%}.col-xxl-6{flex:0 0 auto;width:50%}.col-xxl-7{flex:0 0 auto;width:58.33333333%}.col-xxl-8{flex:0 0 auto;width:66.66666667%}.col-xxl-9{flex:0 0 auto;width:75%}.col-xxl-10{flex:0 0 auto;width:83.33333333%}.col-xxl-11{flex:0 0 auto;width:91.66666667%}.col-xxl-12{flex:0 0 auto;width:100%}.offset-xxl-0{margin-left:0}.offset-xxl-1{margin-left:8.33333333%}.offset-xxl-2{margin-left:16.66666667%}.offset-xxl-3{margin-left:25%}.offset-xxl-4{margin-left:33.33333333%}.offset-xxl-5{margin-left:41.66666667%}.offset-xxl-6{margin-left:50%}.offset-xxl-7{margin-left:58.33333333%}.offset-xxl-8{margin-left:66.66666667%}.offset-xxl-9{margin-left:75%}.offset-xxl-10{margin-left:83.33333333%}.offset-xxl-11{margin-left:91.66666667%}.g-xxl-0,.gx-xxl-0{--bs-gutter-x:0}.g-xxl-0,.gy-xxl-0{--bs-gutter-y:0}.g-xxl-1,.gx-xxl-1{--bs-gutter-x:0.25rem}.g-xxl-1,.gy-xxl-1{--bs-gutter-y:0.25rem}.g-xxl-2,.gx-xxl-2{--bs-gutter-x:0.5rem}.g-xxl-2,.gy-xxl-2{--bs-gutter-y:0.5rem}.g-xxl-3,.gx-xxl-3{--bs-gutter-x:1rem}.g-xxl-3,.gy-xxl-3{--bs-gutter-y:1rem}.g-xxl-4,.gx-xxl-4{--bs-gutter-x:1.5rem}.g-xxl-4,.gy-xxl-4{--bs-gutter-y:1.5rem}.g-xxl-5,.gx-xxl-5{--bs-gutter-x:3rem}.g-xxl-5,.gy-xxl-5{--bs-gutter-y:3rem}}.table{--bs-table-color-type:initial;--bs-table-bg-type:initial;--bs-table-color-state:initial;--bs-table-bg-state:initial;--bs-table-color:var(--bs-emphasis-color);--bs-table-bg:var(--bs-body-bg);--bs-table-border-color:var(--bs-border-color);--bs-table-accent-bg:transparent;--bs-table-striped-color:var(--bs-emphasis-color);--bs-table-striped-bg:rgba(var(--bs-emphasis-color-rgb), 0.05);--bs-table-active-color:var(--bs-emphasis-color);--bs-table-active-bg:rgba(var(--bs-emphasis-color-rgb), 0.1);--bs-table-hover-color:var(--bs-emphasis-color);--bs-table-hover-bg:rgba(var(--bs-emphasis-color-rgb), 0.075);width:100%;margin-bottom:1rem;vertical-align:top;border-color:var(--bs-table-border-color)}.table>:not(caption)>*>*{padding:.5rem .5rem;color:var(--bs-table-color-state,var(--bs-table-color-type,var(--bs-table-color)));background-color:var(--bs-table-bg);border-bottom-width:var(--bs-border-width);box-shadow:inset 0 0 0 9999px var(--bs-table-bg-state,var(--bs-table-bg-type,var(--bs-table-accent-bg)))}.table>tbody{vertical-align:inherit}.table>thead{vertical-align:bottom}.table-group-divider{border-top:calc(var(--bs-border-width) * 2) solid currentcolor}.caption-top{caption-side:top}.table-sm>:not(caption)>*>*{padding:.25rem .25rem}.table-bordered>:not(caption)>*{border-width:var(--bs-border-width) 0}.table-bordered>:not(caption)>*>*{border-width:0 var(--bs-border-width)}.table-borderless>:not(caption)>*>*{border-bottom-width:0}.table-borderless>:not(:first-child){border-top-width:0}.table-striped>tbody>tr:nth-of-type(odd)>*{--bs-table-color-type:var(--bs-table-striped-color);--bs-table-bg-type:var(--bs-table-striped-bg)}.table-striped-columns>:not(caption)>tr>:nth-child(2n){--bs-table-color-type:var(--bs-table-striped-color);--bs-table-bg-type:var(--bs-table-striped-bg)}.table-active{--bs-table-color-state:var(--bs-table-active-color);--bs-table-bg-state:var(--bs-table-active-bg)}.table-hover>tbody>tr:hover>*{--bs-table-color-state:var(--bs-table-hover-color);--bs-table-bg-state:var(--bs-table-hover-bg)}.table-primary{--bs-table-color:#000;--bs-table-bg:#cfe2ff;--bs-table-border-color:#a6b5cc;--bs-table-striped-bg:#c5d7f2;--bs-table-striped-color:#000;--bs-table-active-bg:#bacbe6;--bs-table-active-color:#000;--bs-table-hover-bg:#bfd1ec;--bs-table-hover-color:#000;color:var(--bs-table-color);border-color:var(--bs-table-border-color)}.table-secondary{--bs-table-color:#000;--bs-table-bg:#e2e3e5;--bs-table-border-color:#b5b6b7;--bs-table-striped-bg:#d7d8da;--bs-table-striped-color:#000;--bs-table-active-bg:#cbccce;--bs-table-active-color:#000;--bs-table-hover-bg:#d1d2d4;--bs-table-hover-color:#000;color:var(--bs-table-color);border-color:var(--bs-table-border-color)}.table-success{--bs-table-color:#000;--bs-table-bg:#d1e7dd;--bs-table-border-color:#a7b9b1;--bs-table-striped-bg:#c7dbd2;--bs-table-striped-color:#000;--bs-table-active-bg:#bcd0c7;--bs-table-active-color:#000;--bs-table-hover-bg:#c1d6cc;--bs-table-hover-color:#000;color:var(--bs-table-color);border-color:var(--bs-table-border-color)}.table-info{--bs-table-color:#000;--bs-table-bg:#cff4fc;--bs-table-border-color:#a6c3ca;--bs-table-striped-bg:#c5e8ef;--bs-table-striped-color:#000;--bs-table-active-bg:#badce3;--bs-table-active-color:#000;--bs-table-hover-bg:#bfe2e9;--bs-table-hover-color:#000;color:var(--bs-table-color);border-color:var(--bs-table-border-color)}.table-warning{--bs-table-color:#000;--bs-table-bg:#fff3cd;--bs-table-border-color:#ccc2a4;--bs-table-striped-bg:#f2e7c3;--bs-table-striped-color:#000;--bs-table-active-bg:#e6dbb9;--bs-table-active-color:#000;--bs-table-hover-bg:#ece1be;--bs-table-hover-color:#000;color:var(--bs-table-color);border-color:var(--bs-table-border-color)}.table-danger{--bs-table-color:#000;--bs-table-bg:#f8d7da;--bs-table-border-color:#c6acae;--bs-table-striped-bg:#eccccf;--bs-table-striped-color:#000;--bs-table-active-bg:#dfc2c4;--bs-table-active-color:#000;--bs-table-hover-bg:#e5c7ca;--bs-table-hover-color:#000;color:var(--bs-table-color);border-color:var(--bs-table-border-color)}.table-light{--bs-table-color:#000;--bs-table-bg:#f8f9fa;--bs-table-border-color:#c6c7c8;--bs-table-striped-bg:#ecedee;--bs-table-striped-color:#000;--bs-table-active-bg:#dfe0e1;--bs-table-active-color:#000;--bs-table-hover-bg:#e5e6e7;--bs-table-hover-color:#000;color:var(--bs-table-color);border-color:var(--bs-table-border-color)}.table-dark{--bs-table-color:#fff;--bs-table-bg:#212529;--bs-table-border-color:#4d5154;--bs-table-striped-bg:#2c3034;--bs-table-striped-color:#fff;--bs-table-active-bg:#373b3e;--bs-table-active-color:#fff;--bs-table-hover-bg:#323539;--bs-table-hover-color:#fff;color:var(--bs-table-color);border-color:var(--bs-table-border-color)}.table-responsive{overflow-x:auto;-webkit-overflow-scrolling:touch}@media (max-width:575.98px){.table-responsive-sm{overflow-x:auto;-webkit-overflow-scrolling:touch}}@media (max-width:767.98px){.table-responsive-md{overflow-x:auto;-webkit-overflow-scrolling:touch}}@media (max-width:991.98px){.table-responsive-lg{overflow-x:auto;-webkit-overflow-scrolling:touch}}@media (max-width:1199.98px){.table-responsive-xl{overflow-x:auto;-webkit-overflow-scrolling:touch}}@media (max-width:1399.98px){.table-responsive-xxl{overflow-x:auto;-webkit-overflow-scrolling:touch}}.form-label{margin-bottom:.5rem}.col-form-label{padding-top:calc(.375rem + var(--bs-border-width));padding-bottom:calc(.375rem + var(--bs-border-width));margin-bottom:0;font-size:inherit;line-height:1.5}.col-form-label-lg{padding-top:calc(.5rem + var(--bs-border-width));padding-bottom:calc(.5rem + var(--bs-border-width));font-size:1.25rem}.col-form-label-sm{padding-top:calc(.25rem + var(--bs-border-width));padding-bottom:calc(.25rem + var(--bs-border-width));font-size:.875rem}.form-text{margin-top:.25rem;font-size:.875em;color:var(--bs-secondary-color)}.form-control{display:block;width:100%;padding:.375rem .75rem;font-size:1rem;font-weight:400;line-height:1.5;color:var(--bs-body-color);-webkit-appearance:none;-moz-appearance:none;appearance:none;background-color:var(--bs-body-bg);background-clip:padding-box;border:var(--bs-border-width) solid var(--bs-border-color);border-radius:var(--bs-border-radius);transition:border-color .15s ease-in-out,box-shadow .15s ease-in-out}@media (prefers-reduced-motion:reduce){.form-control{transition:none}}.form-control[type=file]{overflow:hidden}.form-control[type=file]:not(:disabled):not([readonly]){cursor:pointer}.form-control:focus{color:var(--bs-body-color);background-color:var(--bs-body-bg);border-color:#86b7fe;outline:0;box-shadow:0 0 0 .25rem rgba(13,110,253,.25)}.form-control::-webkit-date-and-time-value{min-width:85px;height:1.5em;margin:0}.form-control::-webkit-datetime-edit{display:block;padding:0}.form-control::-moz-placeholder{color:var(--bs-secondary-color);opacity:1}.form-control::placeholder{color:var(--bs-secondary-color);opacity:1}.form-control:disabled{background-color:var(--bs-secondary-bg);opacity:1}.form-control::-webkit-file-upload-button{padding:.375rem .75rem;margin:-.375rem -.75rem;-webkit-margin-end:.75rem;margin-inline-end:.75rem;color:var(--bs-body-color);background-color:var(--bs-tertiary-bg);pointer-events:none;border-color:inherit;border-style:solid;border-width:0;border-inline-end-width:var(--bs-border-width);border-radius:0;-webkit-transition:color .15s ease-in-out,background-color .15s ease-in-out,border-color .15s ease-in-out,box-shadow .15s ease-in-out;transition:color .15s ease-in-out,background-color .15s ease-in-out,border-color .15s ease-in-out,box-shadow .15s ease-in-out}.form-control::file-selector-button{padding:.375rem .75rem;margin:-.375rem -.75rem;-webkit-margin-end:.75rem;margin-inline-end:.75rem;color:var(--bs-body-color);background-color:var(--bs-tertiary-bg);pointer-events:none;border-color:inherit;border-style:solid;border-width:0;border-inline-end-width:var(--bs-border-width);border-radius:0;transition:color .15s ease-in-out,background-color .15s ease-in-out,border-color .15s ease-in-out,box-shadow .15s ease-in-out}@media (prefers-reduced-motion:reduce){.form-control::-webkit-file-upload-button{-webkit-transition:none;transition:none}.form-control::file-selector-button{transition:none}}.form-control:hover:not(:disabled):not([readonly])::-webkit-file-upload-button{background-color:var(--bs-secondary-bg)}.form-control:hover:not(:disabled):not([readonly])::file-selector-button{background-color:var(--bs-secondary-bg)}.form-control-plaintext{display:block;width:100%;padding:.375rem 0;margin-bottom:0;line-height:1.5;color:var(--bs-body-color);background-color:transparent;border:solid transparent;border-width:var(--bs-border-width) 0}.form-control-plaintext:focus{outline:0}.form-control-plaintext.form-control-lg,.form-control-plaintext.form-control-sm{padding-right:0;padding-left:0}.form-control-sm{min-height:calc(1.5em + .5rem + calc(var(--bs-border-width) * 2));padding:.25rem .5rem;font-size:.875rem;border-radius:var(--bs-border-radius-sm)}.form-control-sm::-webkit-file-upload-button{padding:.25rem .5rem;margin:-.25rem -.5rem;-webkit-margin-end:.5rem;margin-inline-end:.5rem}.form-control-sm::file-selector-button{padding:.25rem .5rem;margin:-.25rem -.5rem;-webkit-margin-end:.5rem;margin-inline-end:.5rem}.form-control-lg{min-height:calc(1.5em + 1rem + calc(var(--bs-border-width) * 2));padding:.5rem 1rem;font-size:1.25rem;border-radius:var(--bs-border-radius-lg)}.form-control-lg::-webkit-file-upload-button{padding:.5rem 1rem;margin:-.5rem -1rem;-webkit-margin-end:1rem;margin-inline-end:1rem}.form-control-lg::file-selector-button{padding:.5rem 1rem;margin:-.5rem -1rem;-webkit-margin-end:1rem;margin-inline-end:1rem}textarea.form-control{min-height:calc(1.5em + .75rem + calc(var(--bs-border-width) * 2))}textarea.form-control-sm{min-height:calc(1.5em + .5rem + calc(var(--bs-border-width) * 2))}textarea.form-control-lg{min-height:calc(1.5em + 1rem + calc(var(--bs-border-width) * 2))}.form-control-color{width:3rem;height:calc(1.5em + .75rem + calc(var(--bs-border-width) * 2));padding:.375rem}.form-control-color:not(:disabled):not([readonly]){cursor:pointer}.form-control-color::-moz-color-swatch{border:0!important;border-radius:var(--bs-border-radius)}.form-control-color::-webkit-color-swatch{border:0!important;border-radius:var(--bs-border-radius)}.form-control-color.form-control-sm{height:calc(1.5em + .5rem + calc(var(--bs-border-width) * 2))}.form-control-color.form-control-lg{height:calc(1.5em + 1rem + calc(var(--bs-border-width) * 2))}.form-select{--bs-form-select-bg-img:url("data:image/svg+xml,%3csvg xmlns='http://www.w3.org/2000/svg' viewBox='0 0 16 16'%3e%3cpath fill='none' stroke='%23343a40' stroke-linecap='round' stroke-linejoin='round' stroke-width='2' d='m2 5 6 6 6-6'/%3e%3c/svg%3e");display:block;width:100%;padding:.375rem 2.25rem .375rem .75rem;font-size:1rem;font-weight:400;line-height:1.5;color:var(--bs-body-color);-webkit-appearance:none;-moz-appearance:none;appearance:none;background-color:var(--bs-body-bg);background-image:var(--bs-form-select-bg-img),var(--bs-form-select-bg-icon,none);background-repeat:no-repeat;background-position:right .75rem center;background-size:16px 12px;border:var(--bs-border-width) solid var(--bs-border-color);border-radius:var(--bs-border-radius);transition:border-color .15s ease-in-out,box-shadow .15s ease-in-out}@media (prefers-reduced-motion:reduce){.form-select{transition:none}}.form-select:focus{border-color:#86b7fe;outline:0;box-shadow:0 0 0 .25rem rgba(13,110,253,.25)}.form-select[multiple],.form-select[size]:not([size="1"]){padding-right:.75rem;background-image:none}.form-select:disabled{background-color:var(--bs-secondary-bg)}.form-select:-moz-focusring{color:transparent;text-shadow:0 0 0 var(--bs-body-color)}.form-select-sm{padding-top:.25rem;padding-bottom:.25rem;padding-left:.5rem;font-size:.875rem;border-radius:var(--bs-border-radius-sm)}.form-select-lg{padding-top:.5rem;padding-bottom:.5rem;padding-left:1rem;font-size:1.25rem;border-radius:var(--bs-border-radius-lg)}[data-bs-theme=dark] .form-select{--bs-form-select-bg-img:url("data:image/svg+xml,%3csvg xmlns='http://www.w3.org/2000/svg' viewBox='0 0 16 16'%3e%3cpath fill='none' stroke='%23dee2e6' stroke-linecap='round' stroke-linejoin='round' stroke-width='2' d='m2 5 6 6 6-6'/%3e%3c/svg%3e")}.form-check{display:block;min-height:1.5rem;padding-left:1.5em;margin-bottom:.125rem}.form-check .form-check-input{float:left;margin-left:-1.5em}.form-check-reverse{padding-right:1.5em;padding-left:0;text-align:right}.form-check-reverse .form-check-input{float:right;margin-right:-1.5em;margin-left:0}.form-check-input{--bs-form-check-bg:var(--bs-body-bg);flex-shrink:0;width:1em;height:1em;margin-top:.25em;vertical-align:top;-webkit-appearance:none;-moz-appearance:none;appearance:none;background-color:var(--bs-form-check-bg);background-image:var(--bs-form-check-bg-image);background-repeat:no-repeat;background-position:center;background-size:contain;border:var(--bs-border-width) solid var(--bs-border-color);-webkit-print-color-adjust:exact;color-adjust:exact;print-color-adjust:exact}.form-check-input[type=checkbox]{border-radius:.25em}.form-check-input[type=radio]{border-radius:50%}.form-check-input:active{filter:brightness(90%)}.form-check-input:focus{border-color:#86b7fe;outline:0;box-shadow:0 0 0 .25rem rgba(13,110,253,.25)}.form-check-input:checked{background-color:#0d6efd;border-color:#0d6efd}.form-check-input:checked[type=checkbox]{--bs-form-check-bg-image:url("data:image/svg+xml,%3csvg xmlns='http://www.w3.org/2000/svg' viewBox='0 0 20 20'%3e%3cpath fill='none' stroke='%23fff' stroke-linecap='round' stroke-linejoin='round' stroke-width='3' d='m6 10 3 3 6-6'/%3e%3c/svg%3e")}.form-check-input:checked[type=radio]{--bs-form-check-bg-image:url("data:image/svg+xml,%3csvg xmlns='http://www.w3.org/2000/svg' viewBox='-4 -4 8 8'%3e%3ccircle r='2' fill='%23fff'/%3e%3c/svg%3e")}.form-check-input[type=checkbox]:indeterminate{background-color:#0d6efd;border-color:#0d6efd;--bs-form-check-bg-image:url("data:image/svg+xml,%3csvg xmlns='http://www.w3.org/2000/svg' viewBox='0 0 20 20'%3e%3cpath fill='none' stroke='%23fff' stroke-linecap='round' stroke-linejoin='round' stroke-width='3' d='M6 10h8'/%3e%3c/svg%3e")}.form-check-input:disabled{pointer-events:none;filter:none;opacity:.5}.form-check-input:disabled~.form-check-label,.form-check-input[disabled]~.form-check-label{cursor:default;opacity:.5}.form-switch{padding-left:2.5em}.form-switch .form-check-input{--bs-form-switch-bg:url("data:image/svg+xml,%3csvg xmlns='http://www.w3.org/2000/svg' viewBox='-4 -4 8 8'%3e%3ccircle r='3' fill='rgba%280, 0, 0, 0.25%29'/%3e%3c/svg%3e");width:2em;margin-left:-2.5em;background-image:var(--bs-form-switch-bg);background-position:left center;border-radius:2em;transition:background-position .15s ease-in-out}@media (prefers-reduced-motion:reduce){.form-switch .form-check-input{transition:none}}.form-switch .form-check-input:focus{--bs-form-switch-bg:url("data:image/svg+xml,%3csvg xmlns='http://www.w3.org/2000/svg' viewBox='-4 -4 8 8'%3e%3ccircle r='3' fill='%2386b7fe'/%3e%3c/svg%3e")}.form-switch .form-check-input:checked{background-position:right center;--bs-form-switch-bg:url("data:image/svg+xml,%3csvg xmlns='http://www.w3.org/2000/svg' viewBox='-4 -4 8 8'%3e%3ccircle r='3' fill='%23fff'/%3e%3c/svg%3e")}.form-switch.form-check-reverse{padding-right:2.5em;padding-left:0}.form-switch.form-check-reverse .form-check-input{margin-right:-2.5em;margin-left:0}.form-check-inline{display:inline-block;margin-right:1rem}.btn-check{position:absolute;clip:rect(0,0,0,0);pointer-events:none}.btn-check:disabled+.btn,.btn-check[disabled]+.btn{pointer-events:none;filter:none;opacity:.65}[data-bs-theme=dark] .form-switch .form-check-input:not(:checked):not(:focus){--bs-form-switch-bg:url("data:image/svg+xml,%3csvg xmlns='http://www.w3.org/2000/svg' viewBox='-4 -4 8 8'%3e%3ccircle r='3' fill='rgba%28255, 255, 255, 0.25%29'/%3e%3c/svg%3e")}.form-range{width:100%;height:1.5rem;padding:0;-webkit-appearance:none;-moz-appearance:none;appearance:none;background-color:transparent}.form-range:focus{outline:0}.form-range:focus::-webkit-slider-thumb{box-shadow:0 0 0 1px #fff,0 0 0 .25rem rgba(13,110,253,.25)}.form-range:focus::-moz-range-thumb{box-shadow:0 0 0 1px #fff,0 0 0 .25rem rgba(13,110,253,.25)}.form-range::-moz-focus-outer{border:0}.form-range::-webkit-slider-thumb{width:1rem;height:1rem;margin-top:-.25rem;-webkit-appearance:none;appearance:none;background-color:#0d6efd;border:0;border-radius:1rem;-webkit-transition:background-color .15s ease-in-out,border-color .15s ease-in-out,box-shadow .15s ease-in-out;transition:background-color .15s ease-in-out,border-color .15s ease-in-out,box-shadow .15s ease-in-out}@media (prefers-reduced-motion:reduce){.form-range::-webkit-slider-thumb{-webkit-transition:none;transition:none}}.form-range::-webkit-slider-thumb:active{background-color:#b6d4fe}.form-range::-webkit-slider-runnable-track{width:100%;height:.5rem;color:transparent;cursor:pointer;background-color:var(--bs-secondary-bg);border-color:transparent;border-radius:1rem}.form-range::-moz-range-thumb{width:1rem;height:1rem;-moz-appearance:none;appearance:none;background-color:#0d6efd;border:0;border-radius:1rem;-moz-transition:background-color .15s ease-in-out,border-color .15s ease-in-out,box-shadow .15s ease-in-out;transition:background-color .15s ease-in-out,border-color .15s ease-in-out,box-shadow .15s ease-in-out}@media (prefers-reduced-motion:reduce){.form-range::-moz-range-thumb{-moz-transition:none;transition:none}}.form-range::-moz-range-thumb:active{background-color:#b6d4fe}.form-range::-moz-range-track{width:100%;height:.5rem;color:transparent;cursor:pointer;background-color:var(--bs-secondary-bg);border-color:transparent;border-radius:1rem}.form-range:disabled{pointer-events:none}.form-range:disabled::-webkit-slider-thumb{background-color:var(--bs-secondary-color)}.form-range:disabled::-moz-range-thumb{background-color:var(--bs-secondary-color)}.form-floating{position:relative}.form-floating>.form-control,.form-floating>.form-control-plaintext,.form-floating>.form-select{height:calc(3.5rem + calc(var(--bs-border-width) * 2));min-height:calc(3.5rem + calc(var(--bs-border-width) * 2));line-height:1.25}.form-floating>label{position:absolute;top:0;left:0;z-index:2;height:100%;padding:1rem .75rem;overflow:hidden;text-align:start;text-overflow:ellipsis;white-space:nowrap;pointer-events:none;border:var(--bs-border-width) solid transparent;transform-origin:0 0;transition:opacity .1s ease-in-out,transform .1s ease-in-out}@media (prefers-reduced-motion:reduce){.form-floating>label{transition:none}}.form-floating>.form-control,.form-floating>.form-control-plaintext{padding:1rem .75rem}.form-floating>.form-control-plaintext::-moz-placeholder,.form-floating>.form-control::-moz-placeholder{color:transparent}.form-floating>.form-control-plaintext::placeholder,.form-floating>.form-control::placeholder{color:transparent}.form-floating>.form-control-plaintext:not(:-moz-placeholder-shown),.form-floating>.form-control:not(:-moz-placeholder-shown){padding-top:1.625rem;padding-bottom:.625rem}.form-floating>.form-control-plaintext:focus,.form-floating>.form-control-plaintext:not(:placeholder-shown),.form-floating>.form-control:focus,.form-floating>.form-control:not(:placeholder-shown){padding-top:1.625rem;padding-bottom:.625rem}.form-floating>.form-control-plaintext:-webkit-autofill,.form-floating>.form-control:-webkit-autofill{padding-top:1.625rem;padding-bottom:.625rem}.form-floating>.form-select{padding-top:1.625rem;padding-bottom:.625rem}.form-floating>.form-control:not(:-moz-placeholder-shown)~label{color:rgba(var(--bs-body-color-rgb),.65);transform:scale(.85) translateY(-.5rem) translateX(.15rem)}.form-floating>.form-control-plaintext~label,.form-floating>.form-control:focus~label,.form-floating>.form-control:not(:placeholder-shown)~label,.form-floating>.form-select~label{color:rgba(var(--bs-body-color-rgb),.65);transform:scale(.85) translateY(-.5rem) translateX(.15rem)}.form-floating>.form-control:not(:-moz-placeholder-shown)~label::after{position:absolute;inset:1rem 0.375rem;z-index:-1;height:1.5em;content:"";background-color:var(--bs-body-bg);border-radius:var(--bs-border-radius)}.form-floating>.form-control-plaintext~label::after,.form-floating>.form-control:focus~label::after,.form-floating>.form-control:not(:placeholder-shown)~label::after,.form-floating>.form-select~label::after{position:absolute;inset:1rem 0.375rem;z-index:-1;height:1.5em;content:"";background-color:var(--bs-body-bg);border-radius:var(--bs-border-radius)}.form-floating>.form-control:-webkit-autofill~label{color:rgba(var(--bs-body-color-rgb),.65);transform:scale(.85) translateY(-.5rem) translateX(.15rem)}.form-floating>.form-control-plaintext~label{border-width:var(--bs-border-width) 0}.form-floating>.form-control:disabled~label,.form-floating>:disabled~label{color:#6c757d}.form-floating>.form-control:disabled~label::after,.form-floating>:disabled~label::after{background-color:var(--bs-secondary-bg)}.input-group{position:relative;display:flex;flex-wrap:wrap;align-items:stretch;width:100%}.input-group>.form-control,.input-group>.form-floating,.input-group>.form-select{position:relative;flex:1 1 auto;width:1%;min-width:0}.input-group>.form-control:focus,.input-group>.form-floating:focus-within,.input-group>.form-select:focus{z-index:5}.input-group .btn{position:relative;z-index:2}.input-group .btn:focus{z-index:5}.input-group-text{display:flex;align-items:center;padding:.375rem .75rem;font-size:1rem;font-weight:400;line-height:1.5;color:var(--bs-body-color);text-align:center;white-space:nowrap;background-color:var(--bs-tertiary-bg);border:var(--bs-border-width) solid var(--bs-border-color);border-radius:var(--bs-border-radius)}.input-group-lg>.btn,.input-group-lg>.form-control,.input-group-lg>.form-select,.input-group-lg>.input-group-text{padding:.5rem 1rem;font-size:1.25rem;border-radius:var(--bs-border-radius-lg)}.input-group-sm>.btn,.input-group-sm>.form-control,.input-group-sm>.form-select,.input-group-sm>.input-group-text{padding:.25rem .5rem;font-size:.875rem;border-radius:var(--bs-border-radius-sm)}.input-group-lg>.form-select,.input-group-sm>.form-select{padding-right:3rem}.input-group:not(.has-validation)>.dropdown-toggle:nth-last-child(n+3),.input-group:not(.has-validation)>.form-floating:not(:last-child)>.form-control,.input-group:not(.has-validation)>.form-floating:not(:last-child)>.form-select,.input-group:not(.has-validation)>:not(:last-child):not(.dropdown-toggle):not(.dropdown-menu):not(.form-floating){border-top-right-radius:0;border-bottom-right-radius:0}.input-group.has-validation>.dropdown-toggle:nth-last-child(n+4),.input-group.has-validation>.form-floating:nth-last-child(n+3)>.form-control,.input-group.has-validation>.form-floating:nth-last-child(n+3)>.form-select,.input-group.has-validation>:nth-last-child(n+3):not(.dropdown-toggle):not(.dropdown-menu):not(.form-floating){border-top-right-radius:0;border-bottom-right-radius:0}.input-group>:not(:first-child):not(.dropdown-menu):not(.valid-tooltip):not(.valid-feedback):not(.invalid-tooltip):not(.invalid-feedback){margin-left:calc(var(--bs-border-width) * -1);border-top-left-radius:0;border-bottom-left-radius:0}.input-group>.form-floating:not(:first-child)>.form-control,.input-group>.form-floating:not(:first-child)>.form-select{border-top-left-radius:0;border-bottom-left-radius:0}.valid-feedback{display:none;width:100%;margin-top:.25rem;font-size:.875em;color:var(--bs-form-valid-color)}.valid-tooltip{position:absolute;top:100%;z-index:5;display:none;max-width:100%;padding:.25rem .5rem;margin-top:.1rem;font-size:.875rem;color:#fff;background-color:var(--bs-success);border-radius:var(--bs-border-radius)}.is-valid~.valid-feedback,.is-valid~.valid-tooltip,.was-validated :valid~.valid-feedback,.was-validated :valid~.valid-tooltip{display:block}.form-control.is-valid,.was-validated .form-control:valid{border-color:var(--bs-form-valid-border-color);padding-right:calc(1.5em + .75rem);background-image:url("data:image/svg+xml,%3csvg xmlns='http://www.w3.org/2000/svg' viewBox='0 0 8 8'%3e%3cpath fill='%23198754' d='M2.3 6.73.6 4.53c-.4-1.04.46-1.4 1.1-.8l1.1 1.4 3.4-3.8c.6-.63 1.6-.27 1.2.7l-4 4.6c-.43.5-.8.4-1.1.1z'/%3e%3c/svg%3e");background-repeat:no-repeat;background-position:right calc(.375em + .1875rem) center;background-size:calc(.75em + .375rem) calc(.75em + .375rem)}.form-control.is-valid:focus,.was-validated .form-control:valid:focus{border-color:var(--bs-form-valid-border-color);box-shadow:0 0 0 .25rem rgba(var(--bs-success-rgb),.25)}.was-validated textarea.form-control:valid,textarea.form-control.is-valid{padding-right:calc(1.5em + .75rem);background-position:top calc(.375em + .1875rem) right calc(.375em + .1875rem)}.form-select.is-valid,.was-validated .form-select:valid{border-color:var(--bs-form-valid-border-color)}.form-select.is-valid:not([multiple]):not([size]),.form-select.is-valid:not([multiple])[size="1"],.was-validated .form-select:valid:not([multiple]):not([size]),.was-validated .form-select:valid:not([multiple])[size="1"]{--bs-form-select-bg-icon:url("data:image/svg+xml,%3csvg xmlns='http://www.w3.org/2000/svg' viewBox='0 0 8 8'%3e%3cpath fill='%23198754' d='M2.3 6.73.6 4.53c-.4-1.04.46-1.4 1.1-.8l1.1 1.4 3.4-3.8c.6-.63 1.6-.27 1.2.7l-4 4.6c-.43.5-.8.4-1.1.1z'/%3e%3c/svg%3e");padding-right:4.125rem;background-position:right .75rem center,center right 2.25rem;background-size:16px 12px,calc(.75em + .375rem) calc(.75em + .375rem)}.form-select.is-valid:focus,.was-validated .form-select:valid:focus{border-color:var(--bs-form-valid-border-color);box-shadow:0 0 0 .25rem rgba(var(--bs-success-rgb),.25)}.form-control-color.is-valid,.was-validated .form-control-color:valid{width:calc(3rem + calc(1.5em + .75rem))}.form-check-input.is-valid,.was-validated .form-check-input:valid{border-color:var(--bs-form-valid-border-color)}.form-check-input.is-valid:checked,.was-validated .form-check-input:valid:checked{background-color:var(--bs-form-valid-color)}.form-check-input.is-valid:focus,.was-validated .form-check-input:valid:focus{box-shadow:0 0 0 .25rem rgba(var(--bs-success-rgb),.25)}.form-check-input.is-valid~.form-check-label,.was-validated .form-check-input:valid~.form-check-label{color:var(--bs-form-valid-color)}.form-check-inline .form-check-input~.valid-feedback{margin-left:.5em}.input-group>.form-control:not(:focus).is-valid,.input-group>.form-floating:not(:focus-within).is-valid,.input-group>.form-select:not(:focus).is-valid,.was-validated .input-group>.form-control:not(:focus):valid,.was-validated .input-group>.form-floating:not(:focus-within):valid,.was-validated .input-group>.form-select:not(:focus):valid{z-index:3}.invalid-feedback{display:none;width:100%;margin-top:.25rem;font-size:.875em;color:var(--bs-form-invalid-color)}.invalid-tooltip{position:absolute;top:100%;z-index:5;display:none;max-width:100%;padding:.25rem .5rem;margin-top:.1rem;font-size:.875rem;color:#fff;background-color:var(--bs-danger);border-radius:var(--bs-border-radius)}.is-invalid~.invalid-feedback,.is-invalid~.invalid-tooltip,.was-validated :invalid~.invalid-feedback,.was-validated :invalid~.invalid-tooltip{display:block}.form-control.is-invalid,.was-validated .form-control:invalid{border-color:var(--bs-form-invalid-border-color);padding-right:calc(1.5em + .75rem);background-image:url("data:image/svg+xml,%3csvg xmlns='http://www.w3.org/2000/svg' viewBox='0 0 12 12' width='12' height='12' fill='none' stroke='%23dc3545'%3e%3ccircle cx='6' cy='6' r='4.5'/%3e%3cpath stroke-linejoin='round' d='M5.8 3.6h.4L6 6.5z'/%3e%3ccircle cx='6' cy='8.2' r='.6' fill='%23dc3545' stroke='none'/%3e%3c/svg%3e");background-repeat:no-repeat;background-position:right calc(.375em + .1875rem) center;background-size:calc(.75em + .375rem) calc(.75em + .375rem)}.form-control.is-invalid:focus,.was-validated .form-control:invalid:focus{border-color:var(--bs-form-invalid-border-color);box-shadow:0 0 0 .25rem rgba(var(--bs-danger-rgb),.25)}.was-validated textarea.form-control:invalid,textarea.form-control.is-invalid{padding-right:calc(1.5em + .75rem);background-position:top calc(.375em + .1875rem) right calc(.375em + .1875rem)}.form-select.is-invalid,.was-validated .form-select:invalid{border-color:var(--bs-form-invalid-border-color)}.form-select.is-invalid:not([multiple]):not([size]),.form-select.is-invalid:not([multiple])[size="1"],.was-validated .form-select:invalid:not([multiple]):not([size]),.was-validated .form-select:invalid:not([multiple])[size="1"]{--bs-form-select-bg-icon:url("data:image/svg+xml,%3csvg xmlns='http://www.w3.org/2000/svg' viewBox='0 0 12 12' width='12' height='12' fill='none' stroke='%23dc3545'%3e%3ccircle cx='6' cy='6' r='4.5'/%3e%3cpath stroke-linejoin='round' d='M5.8 3.6h.4L6 6.5z'/%3e%3ccircle cx='6' cy='8.2' r='.6' fill='%23dc3545' stroke='none'/%3e%3c/svg%3e");padding-right:4.125rem;background-position:right .75rem center,center right 2.25rem;background-size:16px 12px,calc(.75em + .375rem) calc(.75em + .375rem)}.form-select.is-invalid:focus,.was-validated .form-select:invalid:focus{border-color:var(--bs-form-invalid-border-color);box-shadow:0 0 0 .25rem rgba(var(--bs-danger-rgb),.25)}.form-control-color.is-invalid,.was-validated .form-control-color:invalid{width:calc(3rem + calc(1.5em + .75rem))}.form-check-input.is-invalid,.was-validated .form-check-input:invalid{border-color:var(--bs-form-invalid-border-color)}.form-check-input.is-invalid:checked,.was-validated .form-check-input:invalid:checked{background-color:var(--bs-form-invalid-color)}.form-check-input.is-invalid:focus,.was-validated .form-check-input:invalid:focus{box-shadow:0 0 0 .25rem rgba(var(--bs-danger-rgb),.25)}.form-check-input.is-invalid~.form-check-label,.was-validated .form-check-input:invalid~.form-check-label{color:var(--bs-form-invalid-color)}.form-check-inline .form-check-input~.invalid-feedback{margin-left:.5em}.input-group>.form-control:not(:focus).is-invalid,.input-group>.form-floating:not(:focus-within).is-invalid,.input-group>.form-select:not(:focus).is-invalid,.was-validated .input-group>.form-control:not(:focus):invalid,.was-validated .input-group>.form-floating:not(:focus-within):invalid,.was-validated .input-group>.form-select:not(:focus):invalid{z-index:4}.btn{--bs-btn-padding-x:0.75rem;--bs-btn-padding-y:0.375rem;--bs-btn-font-family: ;--bs-btn-font-size:1rem;--bs-btn-font-weight:400;--bs-btn-line-height:1.5;--bs-btn-color:var(--bs-body-color);--bs-btn-bg:transparent;--bs-btn-border-width:var(--bs-border-width);--bs-btn-border-color:transparent;--bs-btn-border-radius:var(--bs-border-radius);--bs-btn-hover-border-color:transparent;--bs-btn-box-shadow:inset 0 1px 0 rgba(255, 255, 255, 0.15),0 1px 1px rgba(0, 0, 0, 0.075);--bs-btn-disabled-opacity:0.65;--bs-btn-focus-box-shadow:0 0 0 0.25rem rgba(var(--bs-btn-focus-shadow-rgb), .5);display:inline-block;padding:var(--bs-btn-padding-y) var(--bs-btn-padding-x);font-family:var(--bs-btn-font-family);font-size:var(--bs-btn-font-size);font-weight:var(--bs-btn-font-weight);line-height:var(--bs-btn-line-height);color:var(--bs-btn-color);text-align:center;text-decoration:none;vertical-align:middle;cursor:pointer;-webkit-user-select:none;-moz-user-select:none;user-select:none;border:var(--bs-btn-border-width) solid var(--bs-btn-border-color);border-radius:var(--bs-btn-border-radius);background-color:var(--bs-btn-bg);transition:color .15s ease-in-out,background-color .15s ease-in-out,border-color .15s ease-in-out,box-shadow .15s ease-in-out}@media (prefers-reduced-motion:reduce){.btn{transition:none}}.btn:hover{color:var(--bs-btn-hover-color);background-color:var(--bs-btn-hover-bg);border-color:var(--bs-btn-hover-border-color)}.btn-check+.btn:hover{color:var(--bs-btn-color);background-color:var(--bs-btn-bg);border-color:var(--bs-btn-border-color)}.btn:focus-visible{color:var(--bs-btn-hover-color);background-color:var(--bs-btn-hover-bg);border-color:var(--bs-btn-hover-border-color);outline:0;box-shadow:var(--bs-btn-focus-box-shadow)}.btn-check:focus-visible+.btn{border-color:var(--bs-btn-hover-border-color);outline:0;box-shadow:var(--bs-btn-focus-box-shadow)}.btn-check:checked+.btn,.btn.active,.btn.show,.btn:first-child:active,:not(.btn-check)+.btn:active{color:var(--bs-btn-active-color);background-color:var(--bs-btn-active-bg);border-color:var(--bs-btn-active-border-color)}.btn-check:checked+.btn:focus-visible,.btn.active:focus-visible,.btn.show:focus-visible,.btn:first-child:active:focus-visible,:not(.btn-check)+.btn:active:focus-visible{box-shadow:var(--bs-btn-focus-box-shadow)}.btn.disabled,.btn:disabled,fieldset:disabled .btn{color:var(--bs-btn-disabled-color);pointer-events:none;background-color:var(--bs-btn-disabled-bg);border-color:var(--bs-btn-disabled-border-color);opacity:var(--bs-btn-disabled-opacity)}.btn-primary{--bs-btn-color:#fff;--bs-btn-bg:#0d6efd;--bs-btn-border-color:#0d6efd;--bs-btn-hover-color:#fff;--bs-btn-hover-bg:#0b5ed7;--bs-btn-hover-border-color:#0a58ca;--bs-btn-focus-shadow-rgb:49,132,253;--bs-btn-active-color:#fff;--bs-btn-active-bg:#0a58ca;--bs-btn-active-border-color:#0a53be;--bs-btn-active-shadow:inset 0 3px 5px rgba(0, 0, 0, 0.125);--bs-btn-disabled-color:#fff;--bs-btn-disabled-bg:#0d6efd;--bs-btn-disabled-border-color:#0d6efd}.btn-secondary{--bs-btn-color:#fff;--bs-btn-bg:#6c757d;--bs-btn-border-color:#6c757d;--bs-btn-hover-color:#fff;--bs-btn-hover-bg:#5c636a;--bs-btn-hover-border-color:#565e64;--bs-btn-focus-shadow-rgb:130,138,145;--bs-btn-active-color:#fff;--bs-btn-active-bg:#565e64;--bs-btn-active-border-color:#51585e;--bs-btn-active-shadow:inset 0 3px 5px rgba(0, 0, 0, 0.125);--bs-btn-disabled-color:#fff;--bs-btn-disabled-bg:#6c757d;--bs-btn-disabled-border-color:#6c757d}.btn-success{--bs-btn-color:#fff;--bs-btn-bg:#198754;--bs-btn-border-color:#198754;--bs-btn-hover-color:#fff;--bs-btn-hover-bg:#157347;--bs-btn-hover-border-color:#146c43;--bs-btn-focus-shadow-rgb:60,153,110;--bs-btn-active-color:#fff;--bs-btn-active-bg:#146c43;--bs-btn-active-border-color:#13653f;--bs-btn-active-shadow:inset 0 3px 5px rgba(0, 0, 0, 0.125);--bs-btn-disabled-color:#fff;--bs-btn-disabled-bg:#198754;--bs-btn-disabled-border-color:#198754}.btn-info{--bs-btn-color:#000;--bs-btn-bg:#0dcaf0;--bs-btn-border-color:#0dcaf0;--bs-btn-hover-color:#000;--bs-btn-hover-bg:#31d2f2;--bs-btn-hover-border-color:#25cff2;--bs-btn-focus-shadow-rgb:11,172,204;--bs-btn-active-color:#000;--bs-btn-active-bg:#3dd5f3;--bs-btn-active-border-color:#25cff2;--bs-btn-active-shadow:inset 0 3px 5px rgba(0, 0, 0, 0.125);--bs-btn-disabled-color:#000;--bs-btn-disabled-bg:#0dcaf0;--bs-btn-disabled-border-color:#0dcaf0}.btn-warning{--bs-btn-color:#000;--bs-btn-bg:#ffc107;--bs-btn-border-color:#ffc107;--bs-btn-hover-color:#000;--bs-btn-hover-bg:#ffca2c;--bs-btn-hover-border-color:#ffc720;--bs-btn-focus-shadow-rgb:217,164,6;--bs-btn-active-color:#000;--bs-btn-active-bg:#ffcd39;--bs-btn-active-border-color:#ffc720;--bs-btn-active-shadow:inset 0 3px 5px rgba(0, 0, 0, 0.125);--bs-btn-disabled-color:#000;--bs-btn-disabled-bg:#ffc107;--bs-btn-disabled-border-color:#ffc107}.btn-danger{--bs-btn-color:#fff;--bs-btn-bg:#dc3545;--bs-btn-border-color:#dc3545;--bs-btn-hover-color:#fff;--bs-btn-hover-bg:#bb2d3b;--bs-btn-hover-border-color:#b02a37;--bs-btn-focus-shadow-rgb:225,83,97;--bs-btn-active-color:#fff;--bs-btn-active-bg:#b02a37;--bs-btn-active-border-color:#a52834;--bs-btn-active-shadow:inset 0 3px 5px rgba(0, 0, 0, 0.125);--bs-btn-disabled-color:#fff;--bs-btn-disabled-bg:#dc3545;--bs-btn-disabled-border-color:#dc3545}.btn-light{--bs-btn-color:#000;--bs-btn-bg:#f8f9fa;--bs-btn-border-color:#f8f9fa;--bs-btn-hover-color:#000;--bs-btn-hover-bg:#d3d4d5;--bs-btn-hover-border-color:#c6c7c8;--bs-btn-focus-shadow-rgb:211,212,213;--bs-btn-active-color:#000;--bs-btn-active-bg:#c6c7c8;--bs-btn-active-border-color:#babbbc;--bs-btn-active-shadow:inset 0 3px 5px rgba(0, 0, 0, 0.125);--bs-btn-disabled-color:#000;--bs-btn-disabled-bg:#f8f9fa;--bs-btn-disabled-border-color:#f8f9fa}.btn-dark{--bs-btn-color:#fff;--bs-btn-bg:#212529;--bs-btn-border-color:#212529;--bs-btn-hover-color:#fff;--bs-btn-hover-bg:#424649;--bs-btn-hover-border-color:#373b3e;--bs-btn-focus-shadow-rgb:66,70,73;--bs-btn-active-color:#fff;--bs-btn-active-bg:#4d5154;--bs-btn-active-border-color:#373b3e;--bs-btn-active-shadow:inset 0 3px 5px rgba(0, 0, 0, 0.125);--bs-btn-disabled-color:#fff;--bs-btn-disabled-bg:#212529;--bs-btn-disabled-border-color:#212529}.btn-outline-primary{--bs-btn-color:#0d6efd;--bs-btn-border-color:#0d6efd;--bs-btn-hover-color:#fff;--bs-btn-hover-bg:#0d6efd;--bs-btn-hover-border-color:#0d6efd;--bs-btn-focus-shadow-rgb:13,110,253;--bs-btn-active-color:#fff;--bs-btn-active-bg:#0d6efd;--bs-btn-active-border-color:#0d6efd;--bs-btn-active-shadow:inset 0 3px 5px rgba(0, 0, 0, 0.125);--bs-btn-disabled-color:#0d6efd;--bs-btn-disabled-bg:transparent;--bs-btn-disabled-border-color:#0d6efd;--bs-gradient:none}.btn-outline-secondary{--bs-btn-color:#6c757d;--bs-btn-border-color:#6c757d;--bs-btn-hover-color:#fff;--bs-btn-hover-bg:#6c757d;--bs-btn-hover-border-color:#6c757d;--bs-btn-focus-shadow-rgb:108,117,125;--bs-btn-active-color:#fff;--bs-btn-active-bg:#6c757d;--bs-btn-active-border-color:#6c757d;--bs-btn-active-shadow:inset 0 3px 5px rgba(0, 0, 0, 0.125);--bs-btn-disabled-color:#6c757d;--bs-btn-disabled-bg:transparent;--bs-btn-disabled-border-color:#6c757d;--bs-gradient:none}.btn-outline-success{--bs-btn-color:#198754;--bs-btn-border-color:#198754;--bs-btn-hover-color:#fff;--bs-btn-hover-bg:#198754;--bs-btn-hover-border-color:#198754;--bs-btn-focus-shadow-rgb:25,135,84;--bs-btn-active-color:#fff;--bs-btn-active-bg:#198754;--bs-btn-active-border-color:#198754;--bs-btn-active-shadow:inset 0 3px 5px rgba(0, 0, 0, 0.125);--bs-btn-disabled-color:#198754;--bs-btn-disabled-bg:transparent;--bs-btn-disabled-border-color:#198754;--bs-gradient:none}.btn-outline-info{--bs-btn-color:#0dcaf0;--bs-btn-border-color:#0dcaf0;--bs-btn-hover-color:#000;--bs-btn-hover-bg:#0dcaf0;--bs-btn-hover-border-color:#0dcaf0;--bs-btn-focus-shadow-rgb:13,202,240;--bs-btn-active-color:#000;--bs-btn-active-bg:#0dcaf0;--bs-btn-active-border-color:#0dcaf0;--bs-btn-active-shadow:inset 0 3px 5px rgba(0, 0, 0, 0.125);--bs-btn-disabled-color:#0dcaf0;--bs-btn-disabled-bg:transparent;--bs-btn-disabled-border-color:#0dcaf0;--bs-gradient:none}.btn-outline-warning{--bs-btn-color:#ffc107;--bs-btn-border-color:#ffc107;--bs-btn-hover-color:#000;--bs-btn-hover-bg:#ffc107;--bs-btn-hover-border-color:#ffc107;--bs-btn-focus-shadow-rgb:255,193,7;--bs-btn-active-color:#000;--bs-btn-active-bg:#ffc107;--bs-btn-active-border-color:#ffc107;--bs-btn-active-shadow:inset 0 3px 5px rgba(0, 0, 0, 0.125);--bs-btn-disabled-color:#ffc107;--bs-btn-disabled-bg:transparent;--bs-btn-disabled-border-color:#ffc107;--bs-gradient:none}.btn-outline-danger{--bs-btn-color:#dc3545;--bs-btn-border-color:#dc3545;--bs-btn-hover-color:#fff;--bs-btn-hover-bg:#dc3545;--bs-btn-hover-border-color:#dc3545;--bs-btn-focus-shadow-rgb:220,53,69;--bs-btn-active-color:#fff;--bs-btn-active-bg:#dc3545;--bs-btn-active-border-color:#dc3545;--bs-btn-active-shadow:inset 0 3px 5px rgba(0, 0, 0, 0.125);--bs-btn-disabled-color:#dc3545;--bs-btn-disabled-bg:transparent;--bs-btn-disabled-border-color:#dc3545;--bs-gradient:none}.btn-outline-light{--bs-btn-color:#f8f9fa;--bs-btn-border-color:#f8f9fa;--bs-btn-hover-color:#000;--bs-btn-hover-bg:#f8f9fa;--bs-btn-hover-border-color:#f8f9fa;--bs-btn-focus-shadow-rgb:248,249,250;--bs-btn-active-color:#000;--bs-btn-active-bg:#f8f9fa;--bs-btn-active-border-color:#f8f9fa;--bs-btn-active-shadow:inset 0 3px 5px rgba(0, 0, 0, 0.125);--bs-btn-disabled-color:#f8f9fa;--bs-btn-disabled-bg:transparent;--bs-btn-disabled-border-color:#f8f9fa;--bs-gradient:none}.btn-outline-dark{--bs-btn-color:#212529;--bs-btn-border-color:#212529;--bs-btn-hover-color:#fff;--bs-btn-hover-bg:#212529;--bs-btn-hover-border-color:#212529;--bs-btn-focus-shadow-rgb:33,37,41;--bs-btn-active-color:#fff;--bs-btn-active-bg:#212529;--bs-btn-active-border-color:#212529;--bs-btn-active-shadow:inset 0 3px 5px rgba(0, 0, 0, 0.125);--bs-btn-disabled-color:#212529;--bs-btn-disabled-bg:transparent;--bs-btn-disabled-border-color:#212529;--bs-gradient:none}.btn-link{--bs-btn-font-weight:400;--bs-btn-color:var(--bs-link-color);--bs-btn-bg:transparent;--bs-btn-border-color:transparent;--bs-btn-hover-color:var(--bs-link-hover-color);--bs-btn-hover-border-color:transparent;--bs-btn-active-color:var(--bs-link-hover-color);--bs-btn-active-border-color:transparent;--bs-btn-disabled-color:#6c757d;--bs-btn-disabled-border-color:transparent;--bs-btn-box-shadow:0 0 0 #000;--bs-btn-focus-shadow-rgb:49,132,253;text-decoration:underline}.btn-link:focus-visible{color:var(--bs-btn-color)}.btn-link:hover{color:var(--bs-btn-hover-color)}.btn-group-lg>.btn,.btn-lg{--bs-btn-padding-y:0.5rem;--bs-btn-padding-x:1rem;--bs-btn-font-size:1.25rem;--bs-btn-border-radius:var(--bs-border-radius-lg)}.btn-group-sm>.btn,.btn-sm{--bs-btn-padding-y:0.25rem;--bs-btn-padding-x:0.5rem;--bs-btn-font-size:0.875rem;--bs-btn-border-radius:var(--bs-border-radius-sm)}.fade{transition:opacity .15s linear}@media (prefers-reduced-motion:reduce){.fade{transition:none}}.fade:not(.show){opacity:0}.collapse:not(.show){display:none}.collapsing{height:0;overflow:hidden;transition:height .35s ease}@media (prefers-reduced-motion:reduce){.collapsing{transition:none}}.collapsing.collapse-horizontal{width:0;height:auto;transition:width .35s ease}@media (prefers-reduced-motion:reduce){.collapsing.collapse-horizontal{transition:none}}.dropdown,.dropdown-center,.dropend,.dropstart,.dropup,.dropup-center{position:relative}.dropdown-toggle{white-space:nowrap}.dropdown-toggle::after{display:inline-block;margin-left:.255em;vertical-align:.255em;content:"";border-top:.3em solid;border-right:.3em solid transparent;border-bottom:0;border-left:.3em solid transparent}.dropdown-toggle:empty::after{margin-left:0}.dropdown-menu{--bs-dropdown-zindex:1000;--bs-dropdown-min-width:10rem;--bs-dropdown-padding-x:0;--bs-dropdown-padding-y:0.5rem;--bs-dropdown-spacer:0.125rem;--bs-dropdown-font-size:1rem;--bs-dropdown-color:var(--bs-body-color);--bs-dropdown-bg:var(--bs-body-bg);--bs-dropdown-border-color:var(--bs-border-color-translucent);--bs-dropdown-border-radius:var(--bs-border-radius);--bs-dropdown-border-width:var(--bs-border-width);--bs-dropdown-inner-border-radius:calc(var(--bs-border-radius) - var(--bs-border-width));--bs-dropdown-divider-bg:var(--bs-border-color-translucent);--bs-dropdown-divider-margin-y:0.5rem;--bs-dropdown-box-shadow:var(--bs-box-shadow);--bs-dropdown-link-color:var(--bs-body-color);--bs-dropdown-link-hover-color:var(--bs-body-color);--bs-dropdown-link-hover-bg:var(--bs-tertiary-bg);--bs-dropdown-link-active-color:#fff;--bs-dropdown-link-active-bg:#0d6efd;--bs-dropdown-link-disabled-color:var(--bs-tertiary-color);--bs-dropdown-item-padding-x:1rem;--bs-dropdown-item-padding-y:0.25rem;--bs-dropdown-header-color:#6c757d;--bs-dropdown-header-padding-x:1rem;--bs-dropdown-header-padding-y:0.5rem;position:absolute;z-index:var(--bs-dropdown-zindex);display:none;min-width:var(--bs-dropdown-min-width);padding:var(--bs-dropdown-padding-y) var(--bs-dropdown-padding-x);margin:0;font-size:var(--bs-dropdown-font-size);color:var(--bs-dropdown-color);text-align:left;list-style:none;background-color:var(--bs-dropdown-bg);background-clip:padding-box;border:var(--bs-dropdown-border-width) solid var(--bs-dropdown-border-color);border-radius:var(--bs-dropdown-border-radius)}.dropdown-menu[data-bs-popper]{top:100%;left:0;margin-top:var(--bs-dropdown-spacer)}.dropdown-menu-start{--bs-position:start}.dropdown-menu-start[data-bs-popper]{right:auto;left:0}.dropdown-menu-end{--bs-position:end}.dropdown-menu-end[data-bs-popper]{right:0;left:auto}@media (min-width:576px){.dropdown-menu-sm-start{--bs-position:start}.dropdown-menu-sm-start[data-bs-popper]{right:auto;left:0}.dropdown-menu-sm-end{--bs-position:end}.dropdown-menu-sm-end[data-bs-popper]{right:0;left:auto}}@media (min-width:768px){.dropdown-menu-md-start{--bs-position:start}.dropdown-menu-md-start[data-bs-popper]{right:auto;left:0}.dropdown-menu-md-end{--bs-position:end}.dropdown-menu-md-end[data-bs-popper]{right:0;left:auto}}@media (min-width:992px){.dropdown-menu-lg-start{--bs-position:start}.dropdown-menu-lg-start[data-bs-popper]{right:auto;left:0}.dropdown-menu-lg-end{--bs-position:end}.dropdown-menu-lg-end[data-bs-popper]{right:0;left:auto}}@media (min-width:1200px){.dropdown-menu-xl-start{--bs-position:start}.dropdown-menu-xl-start[data-bs-popper]{right:auto;left:0}.dropdown-menu-xl-end{--bs-position:end}.dropdown-menu-xl-end[data-bs-popper]{right:0;left:auto}}@media (min-width:1400px){.dropdown-menu-xxl-start{--bs-position:start}.dropdown-menu-xxl-start[data-bs-popper]{right:auto;left:0}.dropdown-menu-xxl-end{--bs-position:end}.dropdown-menu-xxl-end[data-bs-popper]{right:0;left:auto}}.dropup .dropdown-menu[data-bs-popper]{top:auto;bottom:100%;margin-top:0;margin-bottom:var(--bs-dropdown-spacer)}.dropup .dropdown-toggle::after{display:inline-block;margin-left:.255em;vertical-align:.255em;content:"";border-top:0;border-right:.3em solid transparent;border-bottom:.3em solid;border-left:.3em solid transparent}.dropup .dropdown-toggle:empty::after{margin-left:0}.dropend .dropdown-menu[data-bs-popper]{top:0;right:auto;left:100%;margin-top:0;margin-left:var(--bs-dropdown-spacer)}.dropend .dropdown-toggle::after{display:inline-block;margin-left:.255em;vertical-align:.255em;content:"";border-top:.3em solid transparent;border-right:0;border-bottom:.3em solid transparent;border-left:.3em solid}.dropend .dropdown-toggle:empty::after{margin-left:0}.dropend .dropdown-toggle::after{vertical-align:0}.dropstart .dropdown-menu[data-bs-popper]{top:0;right:100%;left:auto;margin-top:0;margin-right:var(--bs-dropdown-spacer)}.dropstart .dropdown-toggle::after{display:inline-block;margin-left:.255em;vertical-align:.255em;content:""}.dropstart .dropdown-toggle::after{display:none}.dropstart .dropdown-toggle::before{display:inline-block;margin-right:.255em;vertical-align:.255em;content:"";border-top:.3em solid transparent;border-right:.3em solid;border-bottom:.3em solid transparent}.dropstart .dropdown-toggle:empty::after{margin-left:0}.dropstart .dropdown-toggle::before{vertical-align:0}.dropdown-divider{height:0;margin:var(--bs-dropdown-divider-margin-y) 0;overflow:hidden;border-top:1px solid var(--bs-dropdown-divider-bg);opacity:1}.dropdown-item{display:block;width:100%;padding:var(--bs-dropdown-item-padding-y) var(--bs-dropdown-item-padding-x);clear:both;font-weight:400;color:var(--bs-dropdown-link-color);text-align:inherit;text-decoration:none;white-space:nowrap;background-color:transparent;border:0;border-radius:var(--bs-dropdown-item-border-radius,0)}.dropdown-item:focus,.dropdown-item:hover{color:var(--bs-dropdown-link-hover-color);background-color:var(--bs-dropdown-link-hover-bg)}.dropdown-item.active,.dropdown-item:active{color:var(--bs-dropdown-link-active-color);text-decoration:none;background-color:var(--bs-dropdown-link-active-bg)}.dropdown-item.disabled,.dropdown-item:disabled{color:var(--bs-dropdown-link-disabled-color);pointer-events:none;background-color:transparent}.dropdown-menu.show{display:block}.dropdown-header{display:block;padding:var(--bs-dropdown-header-padding-y) var(--bs-dropdown-header-padding-x);margin-bottom:0;font-size:.875rem;color:var(--bs-dropdown-header-color);white-space:nowrap}.dropdown-item-text{display:block;padding:var(--bs-dropdown-item-padding-y) var(--bs-dropdown-item-padding-x);color:var(--bs-dropdown-link-color)}.dropdown-menu-dark{--bs-dropdown-color:#dee2e6;--bs-dropdown-bg:#343a40;--bs-dropdown-border-color:var(--bs-border-color-translucent);--bs-dropdown-box-shadow: ;--bs-dropdown-link-color:#dee2e6;--bs-dropdown-link-hover-color:#fff;--bs-dropdown-divider-bg:var(--bs-border-color-translucent);--bs-dropdown-link-hover-bg:rgba(255, 255, 255, 0.15);--bs-dropdown-link-active-color:#fff;--bs-dropdown-link-active-bg:#0d6efd;--bs-dropdown-link-disabled-color:#adb5bd;--bs-dropdown-header-color:#adb5bd}.btn-group,.btn-group-vertical{position:relative;display:inline-flex;vertical-align:middle}.btn-group-vertical>.btn,.btn-group>.btn{position:relative;flex:1 1 auto}.btn-group-vertical>.btn-check:checked+.btn,.btn-group-vertical>.btn-check:focus+.btn,.btn-group-vertical>.btn.active,.btn-group-vertical>.btn:active,.btn-group-vertical>.btn:focus,.btn-group-vertical>.btn:hover,.btn-group>.btn-check:checked+.btn,.btn-group>.btn-check:focus+.btn,.btn-group>.btn.active,.btn-group>.btn:active,.btn-group>.btn:focus,.btn-group>.btn:hover{z-index:1}.btn-toolbar{display:flex;flex-wrap:wrap;justify-content:flex-start}.btn-toolbar .input-group{width:auto}.btn-group{border-radius:var(--bs-border-radius)}.btn-group>.btn-group:not(:first-child),.btn-group>:not(.btn-check:first-child)+.btn{margin-left:calc(var(--bs-border-width) * -1)}.btn-group>.btn-group:not(:last-child)>.btn,.btn-group>.btn.dropdown-toggle-split:first-child,.btn-group>.btn:not(:last-child):not(.dropdown-toggle){border-top-right-radius:0;border-bottom-right-radius:0}.btn-group>.btn-group:not(:first-child)>.btn,.btn-group>.btn:nth-child(n+3),.btn-group>:not(.btn-check)+.btn{border-top-left-radius:0;border-bottom-left-radius:0}.dropdown-toggle-split{padding-right:.5625rem;padding-left:.5625rem}.dropdown-toggle-split::after,.dropend .dropdown-toggle-split::after,.dropup .dropdown-toggle-split::after{margin-left:0}.dropstart .dropdown-toggle-split::before{margin-right:0}.btn-group-sm>.btn+.dropdown-toggle-split,.btn-sm+.dropdown-toggle-split{padding-right:.375rem;padding-left:.375rem}.btn-group-lg>.btn+.dropdown-toggle-split,.btn-lg+.dropdown-toggle-split{padding-right:.75rem;padding-left:.75rem}.btn-group-vertical{flex-direction:column;align-items:flex-start;justify-content:center}.btn-group-vertical>.btn,.btn-group-vertical>.btn-group{width:100%}.btn-group-vertical>.btn-group:not(:first-child),.btn-group-vertical>.btn:not(:first-child){margin-top:calc(var(--bs-border-width) * -1)}.btn-group-vertical>.btn-group:not(:last-child)>.btn,.btn-group-vertical>.btn:not(:last-child):not(.dropdown-toggle){border-bottom-right-radius:0;border-bottom-left-radius:0}.btn-group-vertical>.btn-group:not(:first-child)>.btn,.btn-group-vertical>.btn~.btn{border-top-left-radius:0;border-top-right-radius:0}.nav{--bs-nav-link-padding-x:1rem;--bs-nav-link-padding-y:0.5rem;--bs-nav-link-font-weight: ;--bs-nav-link-color:var(--bs-link-color);--bs-nav-link-hover-color:var(--bs-link-hover-color);--bs-nav-link-disabled-color:var(--bs-secondary-color);display:flex;flex-wrap:wrap;padding-left:0;margin-bottom:0;list-style:none}.nav-link{display:block;padding:var(--bs-nav-link-padding-y) var(--bs-nav-link-padding-x);font-size:var(--bs-nav-link-font-size);font-weight:var(--bs-nav-link-font-weight);color:var(--bs-nav-link-color);text-decoration:none;background:0 0;border:0;transition:color .15s ease-in-out,background-color .15s ease-in-out,border-color .15s ease-in-out}@media (prefers-reduced-motion:reduce){.nav-link{transition:none}}.nav-link:focus,.nav-link:hover{color:var(--bs-nav-link-hover-color)}.nav-link:focus-visible{outline:0;box-shadow:0 0 0 .25rem rgba(13,110,253,.25)}.nav-link.disabled,.nav-link:disabled{color:var(--bs-nav-link-disabled-color);pointer-events:none;cursor:default}.nav-tabs{--bs-nav-tabs-border-width:var(--bs-border-width);--bs-nav-tabs-border-color:var(--bs-border-color);--bs-nav-tabs-border-radius:var(--bs-border-radius);--bs-nav-tabs-link-hover-border-color:var(--bs-secondary-bg) var(--bs-secondary-bg) var(--bs-border-color);--bs-nav-tabs-link-active-color:var(--bs-emphasis-color);--bs-nav-tabs-link-active-bg:var(--bs-body-bg);--bs-nav-tabs-link-active-border-color:var(--bs-border-color) var(--bs-border-color) var(--bs-body-bg);border-bottom:var(--bs-nav-tabs-border-width) solid var(--bs-nav-tabs-border-color)}.nav-tabs .nav-link{margin-bottom:calc(-1 * var(--bs-nav-tabs-border-width));border:var(--bs-nav-tabs-border-width) solid transparent;border-top-left-radius:var(--bs-nav-tabs-border-radius);border-top-right-radius:var(--bs-nav-tabs-border-radius)}.nav-tabs .nav-link:focus,.nav-tabs .nav-link:hover{isolation:isolate;border-color:var(--bs-nav-tabs-link-hover-border-color)}.nav-tabs .nav-item.show .nav-link,.nav-tabs .nav-link.active{color:var(--bs-nav-tabs-link-active-color);background-color:var(--bs-nav-tabs-link-active-bg);border-color:var(--bs-nav-tabs-link-active-border-color)}.nav-tabs .dropdown-menu{margin-top:calc(-1 * var(--bs-nav-tabs-border-width));border-top-left-radius:0;border-top-right-radius:0}.nav-pills{--bs-nav-pills-border-radius:var(--bs-border-radius);--bs-nav-pills-link-active-color:#fff;--bs-nav-pills-link-active-bg:#0d6efd}.nav-pills .nav-link{border-radius:var(--bs-nav-pills-border-radius)}.nav-pills .nav-link.active,.nav-pills .show>.nav-link{color:var(--bs-nav-pills-link-active-color);background-color:var(--bs-nav-pills-link-active-bg)}.nav-underline{--bs-nav-underline-gap:1rem;--bs-nav-underline-border-width:0.125rem;--bs-nav-underline-link-active-color:var(--bs-emphasis-color);gap:var(--bs-nav-underline-gap)}.nav-underline .nav-link{padding-right:0;padding-left:0;border-bottom:var(--bs-nav-underline-border-width) solid transparent}.nav-underline .nav-link:focus,.nav-underline .nav-link:hover{border-bottom-color:currentcolor}.nav-underline .nav-link.active,.nav-underline .show>.nav-link{font-weight:700;color:var(--bs-nav-underline-link-active-color);border-bottom-color:currentcolor}.nav-fill .nav-item,.nav-fill>.nav-link{flex:1 1 auto;text-align:center}.nav-justified .nav-item,.nav-justified>.nav-link{flex-basis:0;flex-grow:1;text-align:center}.nav-fill .nav-item .nav-link,.nav-justified .nav-item .nav-link{width:100%}.tab-content>.tab-pane{display:none}.tab-content>.active{display:block}.navbar{--bs-navbar-padding-x:0;--bs-navbar-padding-y:0.5rem;--bs-navbar-color:rgba(var(--bs-emphasis-color-rgb), 0.65);--bs-navbar-hover-color:rgba(var(--bs-emphasis-color-rgb), 0.8);--bs-navbar-disabled-color:rgba(var(--bs-emphasis-color-rgb), 0.3);--bs-navbar-active-color:rgba(var(--bs-emphasis-color-rgb), 1);--bs-navbar-brand-padding-y:0.3125rem;--bs-navbar-brand-margin-end:1rem;--bs-navbar-brand-font-size:1.25rem;--bs-navbar-brand-color:rgba(var(--bs-emphasis-color-rgb), 1);--bs-navbar-brand-hover-color:rgba(var(--bs-emphasis-color-rgb), 1);--bs-navbar-nav-link-padding-x:0.5rem;--bs-navbar-toggler-padding-y:0.25rem;--bs-navbar-toggler-padding-x:0.75rem;--bs-navbar-toggler-font-size:1.25rem;--bs-navbar-toggler-icon-bg:url("data:image/svg+xml,%3csvg xmlns='http://www.w3.org/2000/svg' viewBox='0 0 30 30'%3e%3cpath stroke='rgba%2833, 37, 41, 0.75%29' stroke-linecap='round' stroke-miterlimit='10' stroke-width='2' d='M4 7h22M4 15h22M4 23h22'/%3e%3c/svg%3e");--bs-navbar-toggler-border-color:rgba(var(--bs-emphasis-color-rgb), 0.15);--bs-navbar-toggler-border-radius:var(--bs-border-radius);--bs-navbar-toggler-focus-width:0.25rem;--bs-navbar-toggler-transition:box-shadow 0.15s ease-in-out;position:relative;display:flex;flex-wrap:wrap;align-items:center;justify-content:space-between;padding:var(--bs-navbar-padding-y) var(--bs-navbar-padding-x)}.navbar>.container,.navbar>.container-fluid,.navbar>.container-lg,.navbar>.container-md,.navbar>.container-sm,.navbar>.container-xl,.navbar>.container-xxl{display:flex;flex-wrap:inherit;align-items:center;justify-content:space-between}.navbar-brand{padding-top:var(--bs-navbar-brand-padding-y);padding-bottom:var(--bs-navbar-brand-padding-y);margin-right:var(--bs-navbar-brand-margin-end);font-size:var(--bs-navbar-brand-font-size);color:var(--bs-navbar-brand-color);text-decoration:none;white-space:nowrap}.navbar-brand:focus,.navbar-brand:hover{color:var(--bs-navbar-brand-hover-color)}.navbar-nav{--bs-nav-link-padding-x:0;--bs-nav-link-padding-y:0.5rem;--bs-nav-link-font-weight: ;--bs-nav-link-color:var(--bs-navbar-color);--bs-nav-link-hover-color:var(--bs-navbar-hover-color);--bs-nav-link-disabled-color:var(--bs-navbar-disabled-color);display:flex;flex-direction:column;padding-left:0;margin-bottom:0;list-style:none}.navbar-nav .nav-link.active,.navbar-nav .nav-link.show{color:var(--bs-navbar-active-color)}.navbar-nav .dropdown-menu{position:static}.navbar-text{padding-top:.5rem;padding-bottom:.5rem;color:var(--bs-navbar-color)}.navbar-text a,.navbar-text a:focus,.navbar-text a:hover{color:var(--bs-navbar-active-color)}.navbar-collapse{flex-basis:100%;flex-grow:1;align-items:center}.navbar-toggler{padding:var(--bs-navbar-toggler-padding-y) var(--bs-navbar-toggler-padding-x);font-size:var(--bs-navbar-toggler-font-size);line-height:1;color:var(--bs-navbar-color);background-color:transparent;border:var(--bs-border-width) solid var(--bs-navbar-toggler-border-color);border-radius:var(--bs-navbar-toggler-border-radius);transition:var(--bs-navbar-toggler-transition)}@media (prefers-reduced-motion:reduce){.navbar-toggler{transition:none}}.navbar-toggler:hover{text-decoration:none}.navbar-toggler:focus{text-decoration:none;outline:0;box-shadow:0 0 0 var(--bs-navbar-toggler-focus-width)}.navbar-toggler-icon{display:inline-block;width:1.5em;height:1.5em;vertical-align:middle;background-image:var(--bs-navbar-toggler-icon-bg);background-repeat:no-repeat;background-position:center;background-size:100%}.navbar-nav-scroll{max-height:var(--bs-scroll-height,75vh);overflow-y:auto}@media (min-width:576px){.navbar-expand-sm{flex-wrap:nowrap;justify-content:flex-start}.navbar-expand-sm .navbar-nav{flex-direction:row}.navbar-expand-sm .navbar-nav .dropdown-menu{position:absolute}.navbar-expand-sm .navbar-nav .nav-link{padding-right:var(--bs-navbar-nav-link-padding-x);padding-left:var(--bs-navbar-nav-link-padding-x)}.navbar-expand-sm .navbar-nav-scroll{overflow:visible}.navbar-expand-sm .navbar-collapse{display:flex!important;flex-basis:auto}.navbar-expand-sm .navbar-toggler{display:none}.navbar-expand-sm .offcanvas{position:static;z-index:auto;flex-grow:1;width:auto!important;height:auto!important;visibility:visible!important;background-color:transparent!important;border:0!important;transform:none!important;transition:none}.navbar-expand-sm .offcanvas .offcanvas-header{display:none}.navbar-expand-sm .offcanvas .offcanvas-body{display:flex;flex-grow:0;padding:0;overflow-y:visible}}@media (min-width:768px){.navbar-expand-md{flex-wrap:nowrap;justify-content:flex-start}.navbar-expand-md .navbar-nav{flex-direction:row}.navbar-expand-md .navbar-nav .dropdown-menu{position:absolute}.navbar-expand-md .navbar-nav .nav-link{padding-right:var(--bs-navbar-nav-link-padding-x);padding-left:var(--bs-navbar-nav-link-padding-x)}.navbar-expand-md .navbar-nav-scroll{overflow:visible}.navbar-expand-md .navbar-collapse{display:flex!important;flex-basis:auto}.navbar-expand-md .navbar-toggler{display:none}.navbar-expand-md .offcanvas{position:static;z-index:auto;flex-grow:1;width:auto!important;height:auto!important;visibility:visible!important;background-color:transparent!important;border:0!important;transform:none!important;transition:none}.navbar-expand-md .offcanvas .offcanvas-header{display:none}.navbar-expand-md .offcanvas .offcanvas-body{display:flex;flex-grow:0;padding:0;overflow-y:visible}}@media (min-width:992px){.navbar-expand-lg{flex-wrap:nowrap;justify-content:flex-start}.navbar-expand-lg .navbar-nav{flex-direction:row}.navbar-expand-lg .navbar-nav .dropdown-menu{position:absolute}.navbar-expand-lg .navbar-nav .nav-link{padding-right:var(--bs-navbar-nav-link-padding-x);padding-left:var(--bs-navbar-nav-link-padding-x)}.navbar-expand-lg .navbar-nav-scroll{overflow:visible}.navbar-expand-lg .navbar-collapse{display:flex!important;flex-basis:auto}.navbar-expand-lg .navbar-toggler{display:none}.navbar-expand-lg .offcanvas{position:static;z-index:auto;flex-grow:1;width:auto!important;height:auto!important;visibility:visible!important;background-color:transparent!important;border:0!important;transform:none!important;transition:none}.navbar-expand-lg .offcanvas .offcanvas-header{display:none}.navbar-expand-lg .offcanvas .offcanvas-body{display:flex;flex-grow:0;padding:0;overflow-y:visible}}@media (min-width:1200px){.navbar-expand-xl{flex-wrap:nowrap;justify-content:flex-start}.navbar-expand-xl .navbar-nav{flex-direction:row}.navbar-expand-xl .navbar-nav .dropdown-menu{position:absolute}.navbar-expand-xl .navbar-nav .nav-link{padding-right:var(--bs-navbar-nav-link-padding-x);padding-left:var(--bs-navbar-nav-link-padding-x)}.navbar-expand-xl .navbar-nav-scroll{overflow:visible}.navbar-expand-xl .navbar-collapse{display:flex!important;flex-basis:auto}.navbar-expand-xl .navbar-toggler{display:none}.navbar-expand-xl .offcanvas{position:static;z-index:auto;flex-grow:1;width:auto!important;height:auto!important;visibility:visible!important;background-color:transparent!important;border:0!important;transform:none!important;transition:none}.navbar-expand-xl .offcanvas .offcanvas-header{display:none}.navbar-expand-xl .offcanvas .offcanvas-body{display:flex;flex-grow:0;padding:0;overflow-y:visible}}@media (min-width:1400px){.navbar-expand-xxl{flex-wrap:nowrap;justify-content:flex-start}.navbar-expand-xxl .navbar-nav{flex-direction:row}.navbar-expand-xxl .navbar-nav .dropdown-menu{position:absolute}.navbar-expand-xxl .navbar-nav .nav-link{padding-right:var(--bs-navbar-nav-link-padding-x);padding-left:var(--bs-navbar-nav-link-padding-x)}.navbar-expand-xxl .navbar-nav-scroll{overflow:visible}.navbar-expand-xxl .navbar-collapse{display:flex!important;flex-basis:auto}.navbar-expand-xxl .navbar-toggler{display:none}.navbar-expand-xxl .offcanvas{position:static;z-index:auto;flex-grow:1;width:auto!important;height:auto!important;visibility:visible!important;background-color:transparent!important;border:0!important;transform:none!important;transition:none}.navbar-expand-xxl .offcanvas .offcanvas-header{display:none}.navbar-expand-xxl .offcanvas .offcanvas-body{display:flex;flex-grow:0;padding:0;overflow-y:visible}}.navbar-expand{flex-wrap:nowrap;justify-content:flex-start}.navbar-expand .navbar-nav{flex-direction:row}.navbar-expand .navbar-nav .dropdown-menu{position:absolute}.navbar-expand .navbar-nav .nav-link{padding-right:var(--bs-navbar-nav-link-padding-x);padding-left:var(--bs-navbar-nav-link-padding-x)}.navbar-expand .navbar-nav-scroll{overflow:visible}.navbar-expand .navbar-collapse{display:flex!important;flex-basis:auto}.navbar-expand .navbar-toggler{display:none}.navbar-expand .offcanvas{position:static;z-index:auto;flex-grow:1;width:auto!important;height:auto!important;visibility:visible!important;background-color:transparent!important;border:0!important;transform:none!important;transition:none}.navbar-expand .offcanvas .offcanvas-header{display:none}.navbar-expand .offcanvas .offcanvas-body{display:flex;flex-grow:0;padding:0;overflow-y:visible}.navbar-dark,.navbar[data-bs-theme=dark]{--bs-navbar-color:rgba(255, 255, 255, 0.55);--bs-navbar-hover-color:rgba(255, 255, 255, 0.75);--bs-navbar-disabled-color:rgba(255, 255, 255, 0.25);--bs-navbar-active-color:#fff;--bs-navbar-brand-color:#fff;--bs-navbar-brand-hover-color:#fff;--bs-navbar-toggler-border-color:rgba(255, 255, 255, 0.1);--bs-navbar-toggler-icon-bg:url("data:image/svg+xml,%3csvg xmlns='http://www.w3.org/2000/svg' viewBox='0 0 30 30'%3e%3cpath stroke='rgba%28255, 255, 255, 0.55%29' stroke-linecap='round' stroke-miterlimit='10' stroke-width='2' d='M4 7h22M4 15h22M4 23h22'/%3e%3c/svg%3e")}[data-bs-theme=dark] .navbar-toggler-icon{--bs-navbar-toggler-icon-bg:url("data:image/svg+xml,%3csvg xmlns='http://www.w3.org/2000/svg' viewBox='0 0 30 30'%3e%3cpath stroke='rgba%28255, 255, 255, 0.55%29' stroke-linecap='round' stroke-miterlimit='10' stroke-width='2' d='M4 7h22M4 15h22M4 23h22'/%3e%3c/svg%3e")}.card{--bs-card-spacer-y:1rem;--bs-card-spacer-x:1rem;--bs-card-title-spacer-y:0.5rem;--bs-card-title-color: ;--bs-card-subtitle-color: ;--bs-card-border-width:var(--bs-border-width);--bs-card-border-color:var(--bs-border-color-translucent);--bs-card-border-radius:var(--bs-border-radius);--bs-card-box-shadow: ;--bs-card-inner-border-radius:calc(var(--bs-border-radius) - (var(--bs-border-width)));--bs-card-cap-padding-y:0.5rem;--bs-card-cap-padding-x:1rem;--bs-card-cap-bg:rgba(var(--bs-body-color-rgb), 0.03);--bs-card-cap-color: ;--bs-card-height: ;--bs-card-color: ;--bs-card-bg:var(--bs-body-bg);--bs-card-img-overlay-padding:1rem;--bs-card-group-margin:0.75rem;position:relative;display:flex;flex-direction:column;min-width:0;height:var(--bs-card-height);color:var(--bs-body-color);word-wrap:break-word;background-color:var(--bs-card-bg);background-clip:border-box;border:var(--bs-card-border-width) solid var(--bs-card-border-color);border-radius:var(--bs-card-border-radius)}.card>hr{margin-right:0;margin-left:0}.card>.list-group{border-top:inherit;border-bottom:inherit}.card>.list-group:first-child{border-top-width:0;border-top-left-radius:var(--bs-card-inner-border-radius);border-top-right-radius:var(--bs-card-inner-border-radius)}.card>.list-group:last-child{border-bottom-width:0;border-bottom-right-radius:var(--bs-card-inner-border-radius);border-bottom-left-radius:var(--bs-card-inner-border-radius)}.card>.card-header+.list-group,.card>.list-group+.card-footer{border-top:0}.card-body{flex:1 1 auto;padding:var(--bs-card-spacer-y) var(--bs-card-spacer-x);color:var(--bs-card-color)}.card-title{margin-bottom:var(--bs-card-title-spacer-y);color:var(--bs-card-title-color)}.card-subtitle{margin-top:calc(-.5 * var(--bs-card-title-spacer-y));margin-bottom:0;color:var(--bs-card-subtitle-color)}.card-text:last-child{margin-bottom:0}.card-link+.card-link{margin-left:var(--bs-card-spacer-x)}.card-header{padding:var(--bs-card-cap-padding-y) var(--bs-card-cap-padding-x);margin-bottom:0;color:var(--bs-card-cap-color);background-color:var(--bs-card-cap-bg);border-bottom:var(--bs-card-border-width) solid var(--bs-card-border-color)}.card-header:first-child{border-radius:var(--bs-card-inner-border-radius) var(--bs-card-inner-border-radius) 0 0}.card-footer{padding:var(--bs-card-cap-padding-y) var(--bs-card-cap-padding-x);color:var(--bs-card-cap-color);background-color:var(--bs-card-cap-bg);border-top:var(--bs-card-border-width) solid var(--bs-card-border-color)}.card-footer:last-child{border-radius:0 0 var(--bs-card-inner-border-radius) var(--bs-card-inner-border-radius)}.card-header-tabs{margin-right:calc(-.5 * var(--bs-card-cap-padding-x));margin-bottom:calc(-1 * var(--bs-card-cap-padding-y));margin-left:calc(-.5 * var(--bs-card-cap-padding-x));border-bottom:0}.card-header-tabs .nav-link.active{background-color:var(--bs-card-bg);border-bottom-color:var(--bs-card-bg)}.card-header-pills{margin-right:calc(-.5 * var(--bs-card-cap-padding-x));margin-left:calc(-.5 * var(--bs-card-cap-padding-x))}.card-img-overlay{position:absolute;top:0;right:0;bottom:0;left:0;padding:var(--bs-card-img-overlay-padding);border-radius:var(--bs-card-inner-border-radius)}.card-img,.card-img-bottom,.card-img-top{width:100%}.card-img,.card-img-top{border-top-left-radius:var(--bs-card-inner-border-radius);border-top-right-radius:var(--bs-card-inner-border-radius)}.card-img,.card-img-bottom{border-bottom-right-radius:var(--bs-card-inner-border-radius);border-bottom-left-radius:var(--bs-card-inner-border-radius)}.card-group>.card{margin-bottom:var(--bs-card-group-margin)}@media (min-width:576px){.card-group{display:flex;flex-flow:row wrap}.card-group>.card{flex:1 0 0%;margin-bottom:0}.card-group>.card+.card{margin-left:0;border-left:0}.card-group>.card:not(:last-child){border-top-right-radius:0;border-bottom-right-radius:0}.card-group>.card:not(:last-child) .card-header,.card-group>.card:not(:last-child) .card-img-top{border-top-right-radius:0}.card-group>.card:not(:last-child) .card-footer,.card-group>.card:not(:last-child) .card-img-bottom{border-bottom-right-radius:0}.card-group>.card:not(:first-child){border-top-left-radius:0;border-bottom-left-radius:0}.card-group>.card:not(:first-child) .card-header,.card-group>.card:not(:first-child) .card-img-top{border-top-left-radius:0}.card-group>.card:not(:first-child) .card-footer,.card-group>.card:not(:first-child) .card-img-bottom{border-bottom-left-radius:0}}.accordion{--bs-accordion-color:var(--bs-body-color);--bs-accordion-bg:var(--bs-body-bg);--bs-accordion-transition:color 0.15s ease-in-out,background-color 0.15s ease-in-out,border-color 0.15s ease-in-out,box-shadow 0.15s ease-in-out,border-radius 0.15s ease;--bs-accordion-border-color:var(--bs-border-color);--bs-accordion-border-width:var(--bs-border-width);--bs-accordion-border-radius:var(--bs-border-radius);--bs-accordion-inner-border-radius:calc(var(--bs-border-radius) - (var(--bs-border-width)));--bs-accordion-btn-padding-x:1.25rem;--bs-accordion-btn-padding-y:1rem;--bs-accordion-btn-color:var(--bs-body-color);--bs-accordion-btn-bg:var(--bs-accordion-bg);--bs-accordion-btn-icon:url("data:image/svg+xml,%3csvg xmlns='http://www.w3.org/2000/svg' viewBox='0 0 16 16' fill='%23212529'%3e%3cpath fill-rule='evenodd' d='M1.646 4.646a.5.5 0 0 1 .708 0L8 10.293l5.646-5.647a.5.5 0 0 1 .708.708l-6 6a.5.5 0 0 1-.708 0l-6-6a.5.5 0 0 1 0-.708z'/%3e%3c/svg%3e");--bs-accordion-btn-icon-width:1.25rem;--bs-accordion-btn-icon-transform:rotate(-180deg);--bs-accordion-btn-icon-transition:transform 0.2s ease-in-out;--bs-accordion-btn-active-icon:url("data:image/svg+xml,%3csvg xmlns='http://www.w3.org/2000/svg' viewBox='0 0 16 16' fill='%23052c65'%3e%3cpath fill-rule='evenodd' d='M1.646 4.646a.5.5 0 0 1 .708 0L8 10.293l5.646-5.647a.5.5 0 0 1 .708.708l-6 6a.5.5 0 0 1-.708 0l-6-6a.5.5 0 0 1 0-.708z'/%3e%3c/svg%3e");--bs-accordion-btn-focus-border-color:#86b7fe;--bs-accordion-btn-focus-box-shadow:0 0 0 0.25rem rgba(13, 110, 253, 0.25);--bs-accordion-body-padding-x:1.25rem;--bs-accordion-body-padding-y:1rem;--bs-accordion-active-color:var(--bs-primary-text-emphasis);--bs-accordion-active-bg:var(--bs-primary-bg-subtle)}.accordion-button{position:relative;display:flex;align-items:center;width:100%;padding:var(--bs-accordion-btn-padding-y) var(--bs-accordion-btn-padding-x);font-size:1rem;color:var(--bs-accordion-btn-color);text-align:left;background-color:var(--bs-accordion-btn-bg);border:0;border-radius:0;overflow-anchor:none;transition:var(--bs-accordion-transition)}@media (prefers-reduced-motion:reduce){.accordion-button{transition:none}}.accordion-button:not(.collapsed){color:var(--bs-accordion-active-color);background-color:var(--bs-accordion-active-bg);box-shadow:inset 0 calc(-1 * var(--bs-accordion-border-width)) 0 var(--bs-accordion-border-color)}.accordion-button:not(.collapsed)::after{background-image:var(--bs-accordion-btn-active-icon);transform:var(--bs-accordion-btn-icon-transform)}.accordion-button::after{flex-shrink:0;width:var(--bs-accordion-btn-icon-width);height:var(--bs-accordion-btn-icon-width);margin-left:auto;content:"";background-image:var(--bs-accordion-btn-icon);background-repeat:no-repeat;background-size:var(--bs-accordion-btn-icon-width);transition:var(--bs-accordion-btn-icon-transition)}@media (prefers-reduced-motion:reduce){.accordion-button::after{transition:none}}.accordion-button:hover{z-index:2}.accordion-button:focus{z-index:3;border-color:var(--bs-accordion-btn-focus-border-color);outline:0;box-shadow:var(--bs-accordion-btn-focus-box-shadow)}.accordion-header{margin-bottom:0}.accordion-item{color:var(--bs-accordion-color);background-color:var(--bs-accordion-bg);border:var(--bs-accordion-border-width) solid var(--bs-accordion-border-color)}.accordion-item:first-of-type{border-top-left-radius:var(--bs-accordion-border-radius);border-top-right-radius:var(--bs-accordion-border-radius)}.accordion-item:first-of-type .accordion-button{border-top-left-radius:var(--bs-accordion-inner-border-radius);border-top-right-radius:var(--bs-accordion-inner-border-radius)}.accordion-item:not(:first-of-type){border-top:0}.accordion-item:last-of-type{border-bottom-right-radius:var(--bs-accordion-border-radius);border-bottom-left-radius:var(--bs-accordion-border-radius)}.accordion-item:last-of-type .accordion-button.collapsed{border-bottom-right-radius:var(--bs-accordion-inner-border-radius);border-bottom-left-radius:var(--bs-accordion-inner-border-radius)}.accordion-item:last-of-type .accordion-collapse{border-bottom-right-radius:var(--bs-accordion-border-radius);border-bottom-left-radius:var(--bs-accordion-border-radius)}.accordion-body{padding:var(--bs-accordion-body-padding-y) var(--bs-accordion-body-padding-x)}.accordion-flush .accordion-collapse{border-width:0}.accordion-flush .accordion-item{border-right:0;border-left:0;border-radius:0}.accordion-flush .accordion-item:first-child{border-top:0}.accordion-flush .accordion-item:last-child{border-bottom:0}.accordion-flush .accordion-item .accordion-button,.accordion-flush .accordion-item .accordion-button.collapsed{border-radius:0}[data-bs-theme=dark] .accordion-button::after{--bs-accordion-btn-icon:url("data:image/svg+xml,%3csvg xmlns='http://www.w3.org/2000/svg' viewBox='0 0 16 16' fill='%236ea8fe'%3e%3cpath fill-rule='evenodd' d='M1.646 4.646a.5.5 0 0 1 .708 0L8 10.293l5.646-5.647a.5.5 0 0 1 .708.708l-6 6a.5.5 0 0 1-.708 0l-6-6a.5.5 0 0 1 0-.708z'/%3e%3c/svg%3e");--bs-accordion-btn-active-icon:url("data:image/svg+xml,%3csvg xmlns='http://www.w3.org/2000/svg' viewBox='0 0 16 16' fill='%236ea8fe'%3e%3cpath fill-rule='evenodd' d='M1.646 4.646a.5.5 0 0 1 .708 0L8 10.293l5.646-5.647a.5.5 0 0 1 .708.708l-6 6a.5.5 0 0 1-.708 0l-6-6a.5.5 0 0 1 0-.708z'/%3e%3c/svg%3e")}.breadcrumb{--bs-breadcrumb-padding-x:0;--bs-breadcrumb-padding-y:0;--bs-breadcrumb-margin-bottom:1rem;--bs-breadcrumb-bg: ;--bs-breadcrumb-border-radius: ;--bs-breadcrumb-divider-color:var(--bs-secondary-color);--bs-breadcrumb-item-padding-x:0.5rem;--bs-breadcrumb-item-active-color:var(--bs-secondary-color);display:flex;flex-wrap:wrap;padding:var(--bs-breadcrumb-padding-y) var(--bs-breadcrumb-padding-x);margin-bottom:var(--bs-breadcrumb-margin-bottom);font-size:var(--bs-breadcrumb-font-size);list-style:none;background-color:var(--bs-breadcrumb-bg);border-radius:var(--bs-breadcrumb-border-radius)}.breadcrumb-item+.breadcrumb-item{padding-left:var(--bs-breadcrumb-item-padding-x)}.breadcrumb-item+.breadcrumb-item::before{float:left;padding-right:var(--bs-breadcrumb-item-padding-x);color:var(--bs-breadcrumb-divider-color);content:var(--bs-breadcrumb-divider, "/")}.breadcrumb-item.active{color:var(--bs-breadcrumb-item-active-color)}.pagination{--bs-pagination-padding-x:0.75rem;--bs-pagination-padding-y:0.375rem;--bs-pagination-font-size:1rem;--bs-pagination-color:var(--bs-link-color);--bs-pagination-bg:var(--bs-body-bg);--bs-pagination-border-width:var(--bs-border-width);--bs-pagination-border-color:var(--bs-border-color);--bs-pagination-border-radius:var(--bs-border-radius);--bs-pagination-hover-color:var(--bs-link-hover-color);--bs-pagination-hover-bg:var(--bs-tertiary-bg);--bs-pagination-hover-border-color:var(--bs-border-color);--bs-pagination-focus-color:var(--bs-link-hover-color);--bs-pagination-focus-bg:var(--bs-secondary-bg);--bs-pagination-focus-box-shadow:0 0 0 0.25rem rgba(13, 110, 253, 0.25);--bs-pagination-active-color:#fff;--bs-pagination-active-bg:#0d6efd;--bs-pagination-active-border-color:#0d6efd;--bs-pagination-disabled-color:var(--bs-secondary-color);--bs-pagination-disabled-bg:var(--bs-secondary-bg);--bs-pagination-disabled-border-color:var(--bs-border-color);display:flex;padding-left:0;list-style:none}.page-link{position:relative;display:block;padding:var(--bs-pagination-padding-y) var(--bs-pagination-padding-x);font-size:var(--bs-pagination-font-size);color:var(--bs-pagination-color);text-decoration:none;background-color:var(--bs-pagination-bg);border:var(--bs-pagination-border-width) solid var(--bs-pagination-border-color);transition:color .15s ease-in-out,background-color .15s ease-in-out,border-color .15s ease-in-out,box-shadow .15s ease-in-out}@media (prefers-reduced-motion:reduce){.page-link{transition:none}}.page-link:hover{z-index:2;color:var(--bs-pagination-hover-color);background-color:var(--bs-pagination-hover-bg);border-color:var(--bs-pagination-hover-border-color)}.page-link:focus{z-index:3;color:var(--bs-pagination-focus-color);background-color:var(--bs-pagination-focus-bg);outline:0;box-shadow:var(--bs-pagination-focus-box-shadow)}.active>.page-link,.page-link.active{z-index:3;color:var(--bs-pagination-active-color);background-color:var(--bs-pagination-active-bg);border-color:var(--bs-pagination-active-border-color)}.disabled>.page-link,.page-link.disabled{color:var(--bs-pagination-disabled-color);pointer-events:none;background-color:var(--bs-pagination-disabled-bg);border-color:var(--bs-pagination-disabled-border-color)}.page-item:not(:first-child) .page-link{margin-left:calc(var(--bs-border-width) * -1)}.page-item:first-child .page-link{border-top-left-radius:var(--bs-pagination-border-radius);border-bottom-left-radius:var(--bs-pagination-border-radius)}.page-item:last-child .page-link{border-top-right-radius:var(--bs-pagination-border-radius);border-bottom-right-radius:var(--bs-pagination-border-radius)}.pagination-lg{--bs-pagination-padding-x:1.5rem;--bs-pagination-padding-y:0.75rem;--bs-pagination-font-size:1.25rem;--bs-pagination-border-radius:var(--bs-border-radius-lg)}.pagination-sm{--bs-pagination-padding-x:0.5rem;--bs-pagination-padding-y:0.25rem;--bs-pagination-font-size:0.875rem;--bs-pagination-border-radius:var(--bs-border-radius-sm)}.badge{--bs-badge-padding-x:0.65em;--bs-badge-padding-y:0.35em;--bs-badge-font-size:0.75em;--bs-badge-font-weight:700;--bs-badge-color:#fff;--bs-badge-border-radius:var(--bs-border-radius);display:inline-block;padding:var(--bs-badge-padding-y) var(--bs-badge-padding-x);font-size:var(--bs-badge-font-size);font-weight:var(--bs-badge-font-weight);line-height:1;color:var(--bs-badge-color);text-align:center;white-space:nowrap;vertical-align:baseline;border-radius:var(--bs-badge-border-radius)}.badge:empty{display:none}.btn .badge{position:relative;top:-1px}.alert{--bs-alert-bg:transparent;--bs-alert-padding-x:1rem;--bs-alert-padding-y:1rem;--bs-alert-margin-bottom:1rem;--bs-alert-color:inherit;--bs-alert-border-color:transparent;--bs-alert-border:var(--bs-border-width) solid var(--bs-alert-border-color);--bs-alert-border-radius:var(--bs-border-radius);--bs-alert-link-color:inherit;position:relative;padding:var(--bs-alert-padding-y) var(--bs-alert-padding-x);margin-bottom:var(--bs-alert-margin-bottom);color:var(--bs-alert-color);background-color:var(--bs-alert-bg);border:var(--bs-alert-border);border-radius:var(--bs-alert-border-radius)}.alert-heading{color:inherit}.alert-link{font-weight:700;color:var(--bs-alert-link-color)}.alert-dismissible{padding-right:3rem}.alert-dismissible .btn-close{position:absolute;top:0;right:0;z-index:2;padding:1.25rem 1rem}.alert-primary{--bs-alert-color:var(--bs-primary-text-emphasis);--bs-alert-bg:var(--bs-primary-bg-subtle);--bs-alert-border-color:var(--bs-primary-border-subtle);--bs-alert-link-color:var(--bs-primary-text-emphasis)}.alert-secondary{--bs-alert-color:var(--bs-secondary-text-emphasis);--bs-alert-bg:var(--bs-secondary-bg-subtle);--bs-alert-border-color:var(--bs-secondary-border-subtle);--bs-alert-link-color:var(--bs-secondary-text-emphasis)}.alert-success{--bs-alert-color:var(--bs-success-text-emphasis);--bs-alert-bg:var(--bs-success-bg-subtle);--bs-alert-border-color:var(--bs-success-border-subtle);--bs-alert-link-color:var(--bs-success-text-emphasis)}.alert-info{--bs-alert-color:var(--bs-info-text-emphasis);--bs-alert-bg:var(--bs-info-bg-subtle);--bs-alert-border-color:var(--bs-info-border-subtle);--bs-alert-link-color:var(--bs-info-text-emphasis)}.alert-warning{--bs-alert-color:var(--bs-warning-text-emphasis);--bs-alert-bg:var(--bs-warning-bg-subtle);--bs-alert-border-color:var(--bs-warning-border-subtle);--bs-alert-link-color:var(--bs-warning-text-emphasis)}.alert-danger{--bs-alert-color:var(--bs-danger-text-emphasis);--bs-alert-bg:var(--bs-danger-bg-subtle);--bs-alert-border-color:var(--bs-danger-border-subtle);--bs-alert-link-color:var(--bs-danger-text-emphasis)}.alert-light{--bs-alert-color:var(--bs-light-text-emphasis);--bs-alert-bg:var(--bs-light-bg-subtle);--bs-alert-border-color:var(--bs-light-border-subtle);--bs-alert-link-color:var(--bs-light-text-emphasis)}.alert-dark{--bs-alert-color:var(--bs-dark-text-emphasis);--bs-alert-bg:var(--bs-dark-bg-subtle);--bs-alert-border-color:var(--bs-dark-border-subtle);--bs-alert-link-color:var(--bs-dark-text-emphasis)}@keyframes progress-bar-stripes{0%{background-position-x:1rem}}.progress,.progress-stacked{--bs-progress-height:1rem;--bs-progress-font-size:0.75rem;--bs-progress-bg:var(--bs-secondary-bg);--bs-progress-border-radius:var(--bs-border-radius);--bs-progress-box-shadow:var(--bs-box-shadow-inset);--bs-progress-bar-color:#fff;--bs-progress-bar-bg:#0d6efd;--bs-progress-bar-transition:width 0.6s ease;display:flex;height:var(--bs-progress-height);overflow:hidden;font-size:var(--bs-progress-font-size);background-color:var(--bs-progress-bg);border-radius:var(--bs-progress-border-radius)}.progress-bar{display:flex;flex-direction:column;justify-content:center;overflow:hidden;color:var(--bs-progress-bar-color);text-align:center;white-space:nowrap;background-color:var(--bs-progress-bar-bg);transition:var(--bs-progress-bar-transition)}@media (prefers-reduced-motion:reduce){.progress-bar{transition:none}}.progress-bar-striped{background-image:linear-gradient(45deg,rgba(255,255,255,.15) 25%,transparent 25%,transparent 50%,rgba(255,255,255,.15) 50%,rgba(255,255,255,.15) 75%,transparent 75%,transparent);background-size:var(--bs-progress-height) var(--bs-progress-height)}.progress-stacked>.progress{overflow:visible}.progress-stacked>.progress>.progress-bar{width:100%}.progress-bar-animated{animation:1s linear infinite progress-bar-stripes}@media (prefers-reduced-motion:reduce){.progress-bar-animated{animation:none}}.list-group{--bs-list-group-color:var(--bs-body-color);--bs-list-group-bg:var(--bs-body-bg);--bs-list-group-border-color:var(--bs-border-color);--bs-list-group-border-width:var(--bs-border-width);--bs-list-group-border-radius:var(--bs-border-radius);--bs-list-group-item-padding-x:1rem;--bs-list-group-item-padding-y:0.5rem;--bs-list-group-action-color:var(--bs-secondary-color);--bs-list-group-action-hover-color:var(--bs-emphasis-color);--bs-list-group-action-hover-bg:var(--bs-tertiary-bg);--bs-list-group-action-active-color:var(--bs-body-color);--bs-list-group-action-active-bg:var(--bs-secondary-bg);--bs-list-group-disabled-color:var(--bs-secondary-color);--bs-list-group-disabled-bg:var(--bs-body-bg);--bs-list-group-active-color:#fff;--bs-list-group-active-bg:#0d6efd;--bs-list-group-active-border-color:#0d6efd;display:flex;flex-direction:column;padding-left:0;margin-bottom:0;border-radius:var(--bs-list-group-border-radius)}.list-group-numbered{list-style-type:none;counter-reset:section}.list-group-numbered>.list-group-item::before{content:counters(section, ".") ". ";counter-increment:section}.list-group-item-action{width:100%;color:var(--bs-list-group-action-color);text-align:inherit}.list-group-item-action:focus,.list-group-item-action:hover{z-index:1;color:var(--bs-list-group-action-hover-color);text-decoration:none;background-color:var(--bs-list-group-action-hover-bg)}.list-group-item-action:active{color:var(--bs-list-group-action-active-color);background-color:var(--bs-list-group-action-active-bg)}.list-group-item{position:relative;display:block;padding:var(--bs-list-group-item-padding-y) var(--bs-list-group-item-padding-x);color:var(--bs-list-group-color);text-decoration:none;background-color:var(--bs-list-group-bg);border:var(--bs-list-group-border-width) solid var(--bs-list-group-border-color)}.list-group-item:first-child{border-top-left-radius:inherit;border-top-right-radius:inherit}.list-group-item:last-child{border-bottom-right-radius:inherit;border-bottom-left-radius:inherit}.list-group-item.disabled,.list-group-item:disabled{color:var(--bs-list-group-disabled-color);pointer-events:none;background-color:var(--bs-list-group-disabled-bg)}.list-group-item.active{z-index:2;color:var(--bs-list-group-active-color);background-color:var(--bs-list-group-active-bg);border-color:var(--bs-list-group-active-border-color)}.list-group-item+.list-group-item{border-top-width:0}.list-group-item+.list-group-item.active{margin-top:calc(-1 * var(--bs-list-group-border-width));border-top-width:var(--bs-list-group-border-width)}.list-group-horizontal{flex-direction:row}.list-group-horizontal>.list-group-item:first-child:not(:last-child){border-bottom-left-radius:var(--bs-list-group-border-radius);border-top-right-radius:0}.list-group-horizontal>.list-group-item:last-child:not(:first-child){border-top-right-radius:var(--bs-list-group-border-radius);border-bottom-left-radius:0}.list-group-horizontal>.list-group-item.active{margin-top:0}.list-group-horizontal>.list-group-item+.list-group-item{border-top-width:var(--bs-list-group-border-width);border-left-width:0}.list-group-horizontal>.list-group-item+.list-group-item.active{margin-left:calc(-1 * var(--bs-list-group-border-width));border-left-width:var(--bs-list-group-border-width)}@media (min-width:576px){.list-group-horizontal-sm{flex-direction:row}.list-group-horizontal-sm>.list-group-item:first-child:not(:last-child){border-bottom-left-radius:var(--bs-list-group-border-radius);border-top-right-radius:0}.list-group-horizontal-sm>.list-group-item:last-child:not(:first-child){border-top-right-radius:var(--bs-list-group-border-radius);border-bottom-left-radius:0}.list-group-horizontal-sm>.list-group-item.active{margin-top:0}.list-group-horizontal-sm>.list-group-item+.list-group-item{border-top-width:var(--bs-list-group-border-width);border-left-width:0}.list-group-horizontal-sm>.list-group-item+.list-group-item.active{margin-left:calc(-1 * var(--bs-list-group-border-width));border-left-width:var(--bs-list-group-border-width)}}@media (min-width:768px){.list-group-horizontal-md{flex-direction:row}.list-group-horizontal-md>.list-group-item:first-child:not(:last-child){border-bottom-left-radius:var(--bs-list-group-border-radius);border-top-right-radius:0}.list-group-horizontal-md>.list-group-item:last-child:not(:first-child){border-top-right-radius:var(--bs-list-group-border-radius);border-bottom-left-radius:0}.list-group-horizontal-md>.list-group-item.active{margin-top:0}.list-group-horizontal-md>.list-group-item+.list-group-item{border-top-width:var(--bs-list-group-border-width);border-left-width:0}.list-group-horizontal-md>.list-group-item+.list-group-item.active{margin-left:calc(-1 * var(--bs-list-group-border-width));border-left-width:var(--bs-list-group-border-width)}}@media (min-width:992px){.list-group-horizontal-lg{flex-direction:row}.list-group-horizontal-lg>.list-group-item:first-child:not(:last-child){border-bottom-left-radius:var(--bs-list-group-border-radius);border-top-right-radius:0}.list-group-horizontal-lg>.list-group-item:last-child:not(:first-child){border-top-right-radius:var(--bs-list-group-border-radius);border-bottom-left-radius:0}.list-group-horizontal-lg>.list-group-item.active{margin-top:0}.list-group-horizontal-lg>.list-group-item+.list-group-item{border-top-width:var(--bs-list-group-border-width);border-left-width:0}.list-group-horizontal-lg>.list-group-item+.list-group-item.active{margin-left:calc(-1 * var(--bs-list-group-border-width));border-left-width:var(--bs-list-group-border-width)}}@media (min-width:1200px){.list-group-horizontal-xl{flex-direction:row}.list-group-horizontal-xl>.list-group-item:first-child:not(:last-child){border-bottom-left-radius:var(--bs-list-group-border-radius);border-top-right-radius:0}.list-group-horizontal-xl>.list-group-item:last-child:not(:first-child){border-top-right-radius:var(--bs-list-group-border-radius);border-bottom-left-radius:0}.list-group-horizontal-xl>.list-group-item.active{margin-top:0}.list-group-horizontal-xl>.list-group-item+.list-group-item{border-top-width:var(--bs-list-group-border-width);border-left-width:0}.list-group-horizontal-xl>.list-group-item+.list-group-item.active{margin-left:calc(-1 * var(--bs-list-group-border-width));border-left-width:var(--bs-list-group-border-width)}}@media (min-width:1400px){.list-group-horizontal-xxl{flex-direction:row}.list-group-horizontal-xxl>.list-group-item:first-child:not(:last-child){border-bottom-left-radius:var(--bs-list-group-border-radius);border-top-right-radius:0}.list-group-horizontal-xxl>.list-group-item:last-child:not(:first-child){border-top-right-radius:var(--bs-list-group-border-radius);border-bottom-left-radius:0}.list-group-horizontal-xxl>.list-group-item.active{margin-top:0}.list-group-horizontal-xxl>.list-group-item+.list-group-item{border-top-width:var(--bs-list-group-border-width);border-left-width:0}.list-group-horizontal-xxl>.list-group-item+.list-group-item.active{margin-left:calc(-1 * var(--bs-list-group-border-width));border-left-width:var(--bs-list-group-border-width)}}.list-group-flush{border-radius:0}.list-group-flush>.list-group-item{border-width:0 0 var(--bs-list-group-border-width)}.list-group-flush>.list-group-item:last-child{border-bottom-width:0}.list-group-item-primary{--bs-list-group-color:var(--bs-primary-text-emphasis);--bs-list-group-bg:var(--bs-primary-bg-subtle);--bs-list-group-border-color:var(--bs-primary-border-subtle);--bs-list-group-action-hover-color:var(--bs-emphasis-color);--bs-list-group-action-hover-bg:var(--bs-primary-border-subtle);--bs-list-group-action-active-color:var(--bs-emphasis-color);--bs-list-group-action-active-bg:var(--bs-primary-border-subtle);--bs-list-group-active-color:var(--bs-primary-bg-subtle);--bs-list-group-active-bg:var(--bs-primary-text-emphasis);--bs-list-group-active-border-color:var(--bs-primary-text-emphasis)}.list-group-item-secondary{--bs-list-group-color:var(--bs-secondary-text-emphasis);--bs-list-group-bg:var(--bs-secondary-bg-subtle);--bs-list-group-border-color:var(--bs-secondary-border-subtle);--bs-list-group-action-hover-color:var(--bs-emphasis-color);--bs-list-group-action-hover-bg:var(--bs-secondary-border-subtle);--bs-list-group-action-active-color:var(--bs-emphasis-color);--bs-list-group-action-active-bg:var(--bs-secondary-border-subtle);--bs-list-group-active-color:var(--bs-secondary-bg-subtle);--bs-list-group-active-bg:var(--bs-secondary-text-emphasis);--bs-list-group-active-border-color:var(--bs-secondary-text-emphasis)}.list-group-item-success{--bs-list-group-color:var(--bs-success-text-emphasis);--bs-list-group-bg:var(--bs-success-bg-subtle);--bs-list-group-border-color:var(--bs-success-border-subtle);--bs-list-group-action-hover-color:var(--bs-emphasis-color);--bs-list-group-action-hover-bg:var(--bs-success-border-subtle);--bs-list-group-action-active-color:var(--bs-emphasis-color);--bs-list-group-action-active-bg:var(--bs-success-border-subtle);--bs-list-group-active-color:var(--bs-success-bg-subtle);--bs-list-group-active-bg:var(--bs-success-text-emphasis);--bs-list-group-active-border-color:var(--bs-success-text-emphasis)}.list-group-item-info{--bs-list-group-color:var(--bs-info-text-emphasis);--bs-list-group-bg:var(--bs-info-bg-subtle);--bs-list-group-border-color:var(--bs-info-border-subtle);--bs-list-group-action-hover-color:var(--bs-emphasis-color);--bs-list-group-action-hover-bg:var(--bs-info-border-subtle);--bs-list-group-action-active-color:var(--bs-emphasis-color);--bs-list-group-action-active-bg:var(--bs-info-border-subtle);--bs-list-group-active-color:var(--bs-info-bg-subtle);--bs-list-group-active-bg:var(--bs-info-text-emphasis);--bs-list-group-active-border-color:var(--bs-info-text-emphasis)}.list-group-item-warning{--bs-list-group-color:var(--bs-warning-text-emphasis);--bs-list-group-bg:var(--bs-warning-bg-subtle);--bs-list-group-border-color:var(--bs-warning-border-subtle);--bs-list-group-action-hover-color:var(--bs-emphasis-color);--bs-list-group-action-hover-bg:var(--bs-warning-border-subtle);--bs-list-group-action-active-color:var(--bs-emphasis-color);--bs-list-group-action-active-bg:var(--bs-warning-border-subtle);--bs-list-group-active-color:var(--bs-warning-bg-subtle);--bs-list-group-active-bg:var(--bs-warning-text-emphasis);--bs-list-group-active-border-color:var(--bs-warning-text-emphasis)}.list-group-item-danger{--bs-list-group-color:var(--bs-danger-text-emphasis);--bs-list-group-bg:var(--bs-danger-bg-subtle);--bs-list-group-border-color:var(--bs-danger-border-subtle);--bs-list-group-action-hover-color:var(--bs-emphasis-color);--bs-list-group-action-hover-bg:var(--bs-danger-border-subtle);--bs-list-group-action-active-color:var(--bs-emphasis-color);--bs-list-group-action-active-bg:var(--bs-danger-border-subtle);--bs-list-group-active-color:var(--bs-danger-bg-subtle);--bs-list-group-active-bg:var(--bs-danger-text-emphasis);--bs-list-group-active-border-color:var(--bs-danger-text-emphasis)}.list-group-item-light{--bs-list-group-color:var(--bs-light-text-emphasis);--bs-list-group-bg:var(--bs-light-bg-subtle);--bs-list-group-border-color:var(--bs-light-border-subtle);--bs-list-group-action-hover-color:var(--bs-emphasis-color);--bs-list-group-action-hover-bg:var(--bs-light-border-subtle);--bs-list-group-action-active-color:var(--bs-emphasis-color);--bs-list-group-action-active-bg:var(--bs-light-border-subtle);--bs-list-group-active-color:var(--bs-light-bg-subtle);--bs-list-group-active-bg:var(--bs-light-text-emphasis);--bs-list-group-active-border-color:var(--bs-light-text-emphasis)}.list-group-item-dark{--bs-list-group-color:var(--bs-dark-text-emphasis);--bs-list-group-bg:var(--bs-dark-bg-subtle);--bs-list-group-border-color:var(--bs-dark-border-subtle);--bs-list-group-action-hover-color:var(--bs-emphasis-color);--bs-list-group-action-hover-bg:var(--bs-dark-border-subtle);--bs-list-group-action-active-color:var(--bs-emphasis-color);--bs-list-group-action-active-bg:var(--bs-dark-border-subtle);--bs-list-group-active-color:var(--bs-dark-bg-subtle);--bs-list-group-active-bg:var(--bs-dark-text-emphasis);--bs-list-group-active-border-color:var(--bs-dark-text-emphasis)}.btn-close{--bs-btn-close-color:#000;--bs-btn-close-bg:url("data:image/svg+xml,%3csvg xmlns='http://www.w3.org/2000/svg' viewBox='0 0 16 16' fill='%23000'%3e%3cpath d='M.293.293a1 1 0 0 1 1.414 0L8 6.586 14.293.293a1 1 0 1 1 1.414 1.414L9.414 8l6.293 6.293a1 1 0 0 1-1.414 1.414L8 9.414l-6.293 6.293a1 1 0 0 1-1.414-1.414L6.586 8 .293 1.707a1 1 0 0 1 0-1.414z'/%3e%3c/svg%3e");--bs-btn-close-opacity:0.5;--bs-btn-close-hover-opacity:0.75;--bs-btn-close-focus-shadow:0 0 0 0.25rem rgba(13, 110, 253, 0.25);--bs-btn-close-focus-opacity:1;--bs-btn-close-disabled-opacity:0.25;--bs-btn-close-white-filter:invert(1) grayscale(100%) brightness(200%);box-sizing:content-box;width:1em;height:1em;padding:.25em .25em;color:var(--bs-btn-close-color);background:transparent var(--bs-btn-close-bg) center/1em auto no-repeat;border:0;border-radius:.375rem;opacity:var(--bs-btn-close-opacity)}.btn-close:hover{color:var(--bs-btn-close-color);text-decoration:none;opacity:var(--bs-btn-close-hover-opacity)}.btn-close:focus{outline:0;box-shadow:var(--bs-btn-close-focus-shadow);opacity:var(--bs-btn-close-focus-opacity)}.btn-close.disabled,.btn-close:disabled{pointer-events:none;-webkit-user-select:none;-moz-user-select:none;user-select:none;opacity:var(--bs-btn-close-disabled-opacity)}.btn-close-white{filter:var(--bs-btn-close-white-filter)}[data-bs-theme=dark] .btn-close{filter:var(--bs-btn-close-white-filter)}.toast{--bs-toast-zindex:1090;--bs-toast-padding-x:0.75rem;--bs-toast-padding-y:0.5rem;--bs-toast-spacing:1.5rem;--bs-toast-max-width:350px;--bs-toast-font-size:0.875rem;--bs-toast-color: ;--bs-toast-bg:rgba(var(--bs-body-bg-rgb), 0.85);--bs-toast-border-width:var(--bs-border-width);--bs-toast-border-color:var(--bs-border-color-translucent);--bs-toast-border-radius:var(--bs-border-radius);--bs-toast-box-shadow:var(--bs-box-shadow);--bs-toast-header-color:var(--bs-secondary-color);--bs-toast-header-bg:rgba(var(--bs-body-bg-rgb), 0.85);--bs-toast-header-border-color:var(--bs-border-color-translucent);width:var(--bs-toast-max-width);max-width:100%;font-size:var(--bs-toast-font-size);color:var(--bs-toast-color);pointer-events:auto;background-color:var(--bs-toast-bg);background-clip:padding-box;border:var(--bs-toast-border-width) solid var(--bs-toast-border-color);box-shadow:var(--bs-toast-box-shadow);border-radius:var(--bs-toast-border-radius)}.toast.showing{opacity:0}.toast:not(.show){display:none}.toast-container{--bs-toast-zindex:1090;position:absolute;z-index:var(--bs-toast-zindex);width:-webkit-max-content;width:-moz-max-content;width:max-content;max-width:100%;pointer-events:none}.toast-container>:not(:last-child){margin-bottom:var(--bs-toast-spacing)}.toast-header{display:flex;align-items:center;padding:var(--bs-toast-padding-y) var(--bs-toast-padding-x);color:var(--bs-toast-header-color);background-color:var(--bs-toast-header-bg);background-clip:padding-box;border-bottom:var(--bs-toast-border-width) solid var(--bs-toast-header-border-color);border-top-left-radius:calc(var(--bs-toast-border-radius) - var(--bs-toast-border-width));border-top-right-radius:calc(var(--bs-toast-border-radius) - var(--bs-toast-border-width))}.toast-header .btn-close{margin-right:calc(-.5 * var(--bs-toast-padding-x));margin-left:var(--bs-toast-padding-x)}.toast-body{padding:var(--bs-toast-padding-x);word-wrap:break-word}.modal{--bs-modal-zindex:1055;--bs-modal-width:500px;--bs-modal-padding:1rem;--bs-modal-margin:0.5rem;--bs-modal-color: ;--bs-modal-bg:var(--bs-body-bg);--bs-modal-border-color:var(--bs-border-color-translucent);--bs-modal-border-width:var(--bs-border-width);--bs-modal-border-radius:var(--bs-border-radius-lg);--bs-modal-box-shadow:var(--bs-box-shadow-sm);--bs-modal-inner-border-radius:calc(var(--bs-border-radius-lg) - (var(--bs-border-width)));--bs-modal-header-padding-x:1rem;--bs-modal-header-padding-y:1rem;--bs-modal-header-padding:1rem 1rem;--bs-modal-header-border-color:var(--bs-border-color);--bs-modal-header-border-width:var(--bs-border-width);--bs-modal-title-line-height:1.5;--bs-modal-footer-gap:0.5rem;--bs-modal-footer-bg: ;--bs-modal-footer-border-color:var(--bs-border-color);--bs-modal-footer-border-width:var(--bs-border-width);position:fixed;top:0;left:0;z-index:var(--bs-modal-zindex);display:none;width:100%;height:100%;overflow-x:hidden;overflow-y:auto;outline:0}.modal-dialog{position:relative;width:auto;margin:var(--bs-modal-margin);pointer-events:none}.modal.fade .modal-dialog{transition:transform .3s ease-out;transform:translate(0,-50px)}@media (prefers-reduced-motion:reduce){.modal.fade .modal-dialog{transition:none}}.modal.show .modal-dialog{transform:none}.modal.modal-static .modal-dialog{transform:scale(1.02)}.modal-dialog-scrollable{height:calc(100% - var(--bs-modal-margin) * 2)}.modal-dialog-scrollable .modal-content{max-height:100%;overflow:hidden}.modal-dialog-scrollable .modal-body{overflow-y:auto}.modal-dialog-centered{display:flex;align-items:center;min-height:calc(100% - var(--bs-modal-margin) * 2)}.modal-content{position:relative;display:flex;flex-direction:column;width:100%;color:var(--bs-modal-color);pointer-events:auto;background-color:var(--bs-modal-bg);background-clip:padding-box;border:var(--bs-modal-border-width) solid var(--bs-modal-border-color);border-radius:var(--bs-modal-border-radius);outline:0}.modal-backdrop{--bs-backdrop-zindex:1050;--bs-backdrop-bg:#000;--bs-backdrop-opacity:0.5;position:fixed;top:0;left:0;z-index:var(--bs-backdrop-zindex);width:100vw;height:100vh;background-color:var(--bs-backdrop-bg)}.modal-backdrop.fade{opacity:0}.modal-backdrop.show{opacity:var(--bs-backdrop-opacity)}.modal-header{display:flex;flex-shrink:0;align-items:center;justify-content:space-between;padding:var(--bs-modal-header-padding);border-bottom:var(--bs-modal-header-border-width) solid var(--bs-modal-header-border-color);border-top-left-radius:var(--bs-modal-inner-border-radius);border-top-right-radius:var(--bs-modal-inner-border-radius)}.modal-header .btn-close{padding:calc(var(--bs-modal-header-padding-y) * .5) calc(var(--bs-modal-header-padding-x) * .5);margin:calc(-.5 * var(--bs-modal-header-padding-y)) calc(-.5 * var(--bs-modal-header-padding-x)) calc(-.5 * var(--bs-modal-header-padding-y)) auto}.modal-title{margin-bottom:0;line-height:var(--bs-modal-title-line-height)}.modal-body{position:relative;flex:1 1 auto;padding:var(--bs-modal-padding)}.modal-footer{display:flex;flex-shrink:0;flex-wrap:wrap;align-items:center;justify-content:flex-end;padding:calc(var(--bs-modal-padding) - var(--bs-modal-footer-gap) * .5);background-color:var(--bs-modal-footer-bg);border-top:var(--bs-modal-footer-border-width) solid var(--bs-modal-footer-border-color);border-bottom-right-radius:var(--bs-modal-inner-border-radius);border-bottom-left-radius:var(--bs-modal-inner-border-radius)}.modal-footer>*{margin:calc(var(--bs-modal-footer-gap) * .5)}@media (min-width:576px){.modal{--bs-modal-margin:1.75rem;--bs-modal-box-shadow:var(--bs-box-shadow)}.modal-dialog{max-width:var(--bs-modal-width);margin-right:auto;margin-left:auto}.modal-sm{--bs-modal-width:300px}}@media (min-width:992px){.modal-lg,.modal-xl{--bs-modal-width:800px}}@media (min-width:1200px){.modal-xl{--bs-modal-width:1140px}}.modal-fullscreen{width:100vw;max-width:none;height:100%;margin:0}.modal-fullscreen .modal-content{height:100%;border:0;border-radius:0}.modal-fullscreen .modal-footer,.modal-fullscreen .modal-header{border-radius:0}.modal-fullscreen .modal-body{overflow-y:auto}@media (max-width:575.98px){.modal-fullscreen-sm-down{width:100vw;max-width:none;height:100%;margin:0}.modal-fullscreen-sm-down .modal-content{height:100%;border:0;border-radius:0}.modal-fullscreen-sm-down .modal-footer,.modal-fullscreen-sm-down .modal-header{border-radius:0}.modal-fullscreen-sm-down .modal-body{overflow-y:auto}}@media (max-width:767.98px){.modal-fullscreen-md-down{width:100vw;max-width:none;height:100%;margin:0}.modal-fullscreen-md-down .modal-content{height:100%;border:0;border-radius:0}.modal-fullscreen-md-down .modal-footer,.modal-fullscreen-md-down .modal-header{border-radius:0}.modal-fullscreen-md-down .modal-body{overflow-y:auto}}@media (max-width:991.98px){.modal-fullscreen-lg-down{width:100vw;max-width:none;height:100%;margin:0}.modal-fullscreen-lg-down .modal-content{height:100%;border:0;border-radius:0}.modal-fullscreen-lg-down .modal-footer,.modal-fullscreen-lg-down .modal-header{border-radius:0}.modal-fullscreen-lg-down .modal-body{overflow-y:auto}}@media (max-width:1199.98px){.modal-fullscreen-xl-down{width:100vw;max-width:none;height:100%;margin:0}.modal-fullscreen-xl-down .modal-content{height:100%;border:0;border-radius:0}.modal-fullscreen-xl-down .modal-footer,.modal-fullscreen-xl-down .modal-header{border-radius:0}.modal-fullscreen-xl-down .modal-body{overflow-y:auto}}@media (max-width:1399.98px){.modal-fullscreen-xxl-down{width:100vw;max-width:none;height:100%;margin:0}.modal-fullscreen-xxl-down .modal-content{height:100%;border:0;border-radius:0}.modal-fullscreen-xxl-down .modal-footer,.modal-fullscreen-xxl-down .modal-header{border-radius:0}.modal-fullscreen-xxl-down .modal-body{overflow-y:auto}}.tooltip{--bs-tooltip-zindex:1080;--bs-tooltip-max-width:200px;--bs-tooltip-padding-x:0.5rem;--bs-tooltip-padding-y:0.25rem;--bs-tooltip-margin: ;--bs-tooltip-font-size:0.875rem;--bs-tooltip-color:var(--bs-body-bg);--bs-tooltip-bg:var(--bs-emphasis-color);--bs-tooltip-border-radius:var(--bs-border-radius);--bs-tooltip-opacity:0.9;--bs-tooltip-arrow-width:0.8rem;--bs-tooltip-arrow-height:0.4rem;z-index:var(--bs-tooltip-zindex);display:block;margin:var(--bs-tooltip-margin);font-family:var(--bs-font-sans-serif);font-style:normal;font-weight:400;line-height:1.5;text-align:left;text-align:start;text-decoration:none;text-shadow:none;text-transform:none;letter-spacing:normal;word-break:normal;white-space:normal;word-spacing:normal;line-break:auto;font-size:var(--bs-tooltip-font-size);word-wrap:break-word;opacity:0}.tooltip.show{opacity:var(--bs-tooltip-opacity)}.tooltip .tooltip-arrow{display:block;width:var(--bs-tooltip-arrow-width);height:var(--bs-tooltip-arrow-height)}.tooltip .tooltip-arrow::before{position:absolute;content:"";border-color:transparent;border-style:solid}.bs-tooltip-auto[data-popper-placement^=top] .tooltip-arrow,.bs-tooltip-top .tooltip-arrow{bottom:calc(-1 * var(--bs-tooltip-arrow-height))}.bs-tooltip-auto[data-popper-placement^=top] .tooltip-arrow::before,.bs-tooltip-top .tooltip-arrow::before{top:-1px;border-width:var(--bs-tooltip-arrow-height) calc(var(--bs-tooltip-arrow-width) * .5) 0;border-top-color:var(--bs-tooltip-bg)}.bs-tooltip-auto[data-popper-placement^=right] .tooltip-arrow,.bs-tooltip-end .tooltip-arrow{left:calc(-1 * var(--bs-tooltip-arrow-height));width:var(--bs-tooltip-arrow-height);height:var(--bs-tooltip-arrow-width)}.bs-tooltip-auto[data-popper-placement^=right] .tooltip-arrow::before,.bs-tooltip-end .tooltip-arrow::before{right:-1px;border-width:calc(var(--bs-tooltip-arrow-width) * .5) var(--bs-tooltip-arrow-height) calc(var(--bs-tooltip-arrow-width) * .5) 0;border-right-color:var(--bs-tooltip-bg)}.bs-tooltip-auto[data-popper-placement^=bottom] .tooltip-arrow,.bs-tooltip-bottom .tooltip-arrow{top:calc(-1 * var(--bs-tooltip-arrow-height))}.bs-tooltip-auto[data-popper-placement^=bottom] .tooltip-arrow::before,.bs-tooltip-bottom .tooltip-arrow::before{bottom:-1px;border-width:0 calc(var(--bs-tooltip-arrow-width) * .5) var(--bs-tooltip-arrow-height);border-bottom-color:var(--bs-tooltip-bg)}.bs-tooltip-auto[data-popper-placement^=left] .tooltip-arrow,.bs-tooltip-start .tooltip-arrow{right:calc(-1 * var(--bs-tooltip-arrow-height));width:var(--bs-tooltip-arrow-height);height:var(--bs-tooltip-arrow-width)}.bs-tooltip-auto[data-popper-placement^=left] .tooltip-arrow::before,.bs-tooltip-start .tooltip-arrow::before{left:-1px;border-width:calc(var(--bs-tooltip-arrow-width) * .5) 0 calc(var(--bs-tooltip-arrow-width) * .5) var(--bs-tooltip-arrow-height);border-left-color:var(--bs-tooltip-bg)}.tooltip-inner{max-width:var(--bs-tooltip-max-width);padding:var(--bs-tooltip-padding-y) var(--bs-tooltip-padding-x);color:var(--bs-tooltip-color);text-align:center;background-color:var(--bs-tooltip-bg);border-radius:var(--bs-tooltip-border-radius)}.popover{--bs-popover-zindex:1070;--bs-popover-max-width:276px;--bs-popover-font-size:0.875rem;--bs-popover-bg:var(--bs-body-bg);--bs-popover-border-width:var(--bs-border-width);--bs-popover-border-color:var(--bs-border-color-translucent);--bs-popover-border-radius:var(--bs-border-radius-lg);--bs-popover-inner-border-radius:calc(var(--bs-border-radius-lg) - var(--bs-border-width));--bs-popover-box-shadow:var(--bs-box-shadow);--bs-popover-header-padding-x:1rem;--bs-popover-header-padding-y:0.5rem;--bs-popover-header-font-size:1rem;--bs-popover-header-color:inherit;--bs-popover-header-bg:var(--bs-secondary-bg);--bs-popover-body-padding-x:1rem;--bs-popover-body-padding-y:1rem;--bs-popover-body-color:var(--bs-body-color);--bs-popover-arrow-width:1rem;--bs-popover-arrow-height:0.5rem;--bs-popover-arrow-border:var(--bs-popover-border-color);z-index:var(--bs-popover-zindex);display:block;max-width:var(--bs-popover-max-width);font-family:var(--bs-font-sans-serif);font-style:normal;font-weight:400;line-height:1.5;text-align:left;text-align:start;text-decoration:none;text-shadow:none;text-transform:none;letter-spacing:normal;word-break:normal;white-space:normal;word-spacing:normal;line-break:auto;font-size:var(--bs-popover-font-size);word-wrap:break-word;background-color:var(--bs-popover-bg);background-clip:padding-box;border:var(--bs-popover-border-width) solid var(--bs-popover-border-color);border-radius:var(--bs-popover-border-radius)}.popover .popover-arrow{display:block;width:var(--bs-popover-arrow-width);height:var(--bs-popover-arrow-height)}.popover .popover-arrow::after,.popover .popover-arrow::before{position:absolute;display:block;content:"";border-color:transparent;border-style:solid;border-width:0}.bs-popover-auto[data-popper-placement^=top]>.popover-arrow,.bs-popover-top>.popover-arrow{bottom:calc(-1 * (var(--bs-popover-arrow-height)) - var(--bs-popover-border-width))}.bs-popover-auto[data-popper-placement^=top]>.popover-arrow::after,.bs-popover-auto[data-popper-placement^=top]>.popover-arrow::before,.bs-popover-top>.popover-arrow::after,.bs-popover-top>.popover-arrow::before{border-width:var(--bs-popover-arrow-height) calc(var(--bs-popover-arrow-width) * .5) 0}.bs-popover-auto[data-popper-placement^=top]>.popover-arrow::before,.bs-popover-top>.popover-arrow::before{bottom:0;border-top-color:var(--bs-popover-arrow-border)}.bs-popover-auto[data-popper-placement^=top]>.popover-arrow::after,.bs-popover-top>.popover-arrow::after{bottom:var(--bs-popover-border-width);border-top-color:var(--bs-popover-bg)}.bs-popover-auto[data-popper-placement^=right]>.popover-arrow,.bs-popover-end>.popover-arrow{left:calc(-1 * (var(--bs-popover-arrow-height)) - var(--bs-popover-border-width));width:var(--bs-popover-arrow-height);height:var(--bs-popover-arrow-width)}.bs-popover-auto[data-popper-placement^=right]>.popover-arrow::after,.bs-popover-auto[data-popper-placement^=right]>.popover-arrow::before,.bs-popover-end>.popover-arrow::after,.bs-popover-end>.popover-arrow::before{border-width:calc(var(--bs-popover-arrow-width) * .5) var(--bs-popover-arrow-height) calc(var(--bs-popover-arrow-width) * .5) 0}.bs-popover-auto[data-popper-placement^=right]>.popover-arrow::before,.bs-popover-end>.popover-arrow::before{left:0;border-right-color:var(--bs-popover-arrow-border)}.bs-popover-auto[data-popper-placement^=right]>.popover-arrow::after,.bs-popover-end>.popover-arrow::after{left:var(--bs-popover-border-width);border-right-color:var(--bs-popover-bg)}.bs-popover-auto[data-popper-placement^=bottom]>.popover-arrow,.bs-popover-bottom>.popover-arrow{top:calc(-1 * (var(--bs-popover-arrow-height)) - var(--bs-popover-border-width))}.bs-popover-auto[data-popper-placement^=bottom]>.popover-arrow::after,.bs-popover-auto[data-popper-placement^=bottom]>.popover-arrow::before,.bs-popover-bottom>.popover-arrow::after,.bs-popover-bottom>.popover-arrow::before{border-width:0 calc(var(--bs-popover-arrow-width) * .5) var(--bs-popover-arrow-height)}.bs-popover-auto[data-popper-placement^=bottom]>.popover-arrow::before,.bs-popover-bottom>.popover-arrow::before{top:0;border-bottom-color:var(--bs-popover-arrow-border)}.bs-popover-auto[data-popper-placement^=bottom]>.popover-arrow::after,.bs-popover-bottom>.popover-arrow::after{top:var(--bs-popover-border-width);border-bottom-color:var(--bs-popover-bg)}.bs-popover-auto[data-popper-placement^=bottom] .popover-header::before,.bs-popover-bottom .popover-header::before{position:absolute;top:0;left:50%;display:block;width:var(--bs-popover-arrow-width);margin-left:calc(-.5 * var(--bs-popover-arrow-width));content:"";border-bottom:var(--bs-popover-border-width) solid var(--bs-popover-header-bg)}.bs-popover-auto[data-popper-placement^=left]>.popover-arrow,.bs-popover-start>.popover-arrow{right:calc(-1 * (var(--bs-popover-arrow-height)) - var(--bs-popover-border-width));width:var(--bs-popover-arrow-height);height:var(--bs-popover-arrow-width)}.bs-popover-auto[data-popper-placement^=left]>.popover-arrow::after,.bs-popover-auto[data-popper-placement^=left]>.popover-arrow::before,.bs-popover-start>.popover-arrow::after,.bs-popover-start>.popover-arrow::before{border-width:calc(var(--bs-popover-arrow-width) * .5) 0 calc(var(--bs-popover-arrow-width) * .5) var(--bs-popover-arrow-height)}.bs-popover-auto[data-popper-placement^=left]>.popover-arrow::before,.bs-popover-start>.popover-arrow::before{right:0;border-left-color:var(--bs-popover-arrow-border)}.bs-popover-auto[data-popper-placement^=left]>.popover-arrow::after,.bs-popover-start>.popover-arrow::after{right:var(--bs-popover-border-width);border-left-color:var(--bs-popover-bg)}.popover-header{padding:var(--bs-popover-header-padding-y) var(--bs-popover-header-padding-x);margin-bottom:0;font-size:var(--bs-popover-header-font-size);color:var(--bs-popover-header-color);background-color:var(--bs-popover-header-bg);border-bottom:var(--bs-popover-border-width) solid var(--bs-popover-border-color);border-top-left-radius:var(--bs-popover-inner-border-radius);border-top-right-radius:var(--bs-popover-inner-border-radius)}.popover-header:empty{display:none}.popover-body{padding:var(--bs-popover-body-padding-y) var(--bs-popover-body-padding-x);color:var(--bs-popover-body-color)}.carousel{position:relative}.carousel.pointer-event{touch-action:pan-y}.carousel-inner{position:relative;width:100%;overflow:hidden}.carousel-inner::after{display:block;clear:both;content:""}.carousel-item{position:relative;display:none;float:left;width:100%;margin-right:-100%;-webkit-backface-visibility:hidden;backface-visibility:hidden;transition:transform .6s ease-in-out}@media (prefers-reduced-motion:reduce){.carousel-item{transition:none}}.carousel-item-next,.carousel-item-prev,.carousel-item.active{display:block}.active.carousel-item-end,.carousel-item-next:not(.carousel-item-start){transform:translateX(100%)}.active.carousel-item-start,.carousel-item-prev:not(.carousel-item-end){transform:translateX(-100%)}.carousel-fade .carousel-item{opacity:0;transition-property:opacity;transform:none}.carousel-fade .carousel-item-next.carousel-item-start,.carousel-fade .carousel-item-prev.carousel-item-end,.carousel-fade .carousel-item.active{z-index:1;opacity:1}.carousel-fade .active.carousel-item-end,.carousel-fade .active.carousel-item-start{z-index:0;opacity:0;transition:opacity 0s .6s}@media (prefers-reduced-motion:reduce){.carousel-fade .active.carousel-item-end,.carousel-fade .active.carousel-item-start{transition:none}}.carousel-control-next,.carousel-control-prev{position:absolute;top:0;bottom:0;z-index:1;display:flex;align-items:center;justify-content:center;width:15%;padding:0;color:#fff;text-align:center;background:0 0;border:0;opacity:.5;transition:opacity .15s ease}@media (prefers-reduced-motion:reduce){.carousel-control-next,.carousel-control-prev{transition:none}}.carousel-control-next:focus,.carousel-control-next:hover,.carousel-control-prev:focus,.carousel-control-prev:hover{color:#fff;text-decoration:none;outline:0;opacity:.9}.carousel-control-prev{left:0}.carousel-control-next{right:0}.carousel-control-next-icon,.carousel-control-prev-icon{display:inline-block;width:2rem;height:2rem;background-repeat:no-repeat;background-position:50%;background-size:100% 100%}.carousel-control-prev-icon{background-image:url("data:image/svg+xml,%3csvg xmlns='http://www.w3.org/2000/svg' viewBox='0 0 16 16' fill='%23fff'%3e%3cpath d='M11.354 1.646a.5.5 0 0 1 0 .708L5.707 8l5.647 5.646a.5.5 0 0 1-.708.708l-6-6a.5.5 0 0 1 0-.708l6-6a.5.5 0 0 1 .708 0z'/%3e%3c/svg%3e")}.carousel-control-next-icon{background-image:url("data:image/svg+xml,%3csvg xmlns='http://www.w3.org/2000/svg' viewBox='0 0 16 16' fill='%23fff'%3e%3cpath d='M4.646 1.646a.5.5 0 0 1 .708 0l6 6a.5.5 0 0 1 0 .708l-6 6a.5.5 0 0 1-.708-.708L10.293 8 4.646 2.354a.5.5 0 0 1 0-.708z'/%3e%3c/svg%3e")}.carousel-indicators{position:absolute;right:0;bottom:0;left:0;z-index:2;display:flex;justify-content:center;padding:0;margin-right:15%;margin-bottom:1rem;margin-left:15%}.carousel-indicators [data-bs-target]{box-sizing:content-box;flex:0 1 auto;width:30px;height:3px;padding:0;margin-right:3px;margin-left:3px;text-indent:-999px;cursor:pointer;background-color:#fff;background-clip:padding-box;border:0;border-top:10px solid transparent;border-bottom:10px solid transparent;opacity:.5;transition:opacity .6s ease}@media (prefers-reduced-motion:reduce){.carousel-indicators [data-bs-target]{transition:none}}.carousel-indicators .active{opacity:1}.carousel-caption{position:absolute;right:15%;bottom:1.25rem;left:15%;padding-top:1.25rem;padding-bottom:1.25rem;color:#fff;text-align:center}.carousel-dark .carousel-control-next-icon,.carousel-dark .carousel-control-prev-icon{filter:invert(1) grayscale(100)}.carousel-dark .carousel-indicators [data-bs-target]{background-color:#000}.carousel-dark .carousel-caption{color:#000}[data-bs-theme=dark] .carousel .carousel-control-next-icon,[data-bs-theme=dark] .carousel .carousel-control-prev-icon,[data-bs-theme=dark].carousel .carousel-control-next-icon,[data-bs-theme=dark].carousel .carousel-control-prev-icon{filter:invert(1) grayscale(100)}[data-bs-theme=dark] .carousel .carousel-indicators [data-bs-target],[data-bs-theme=dark].carousel .carousel-indicators [data-bs-target]{background-color:#000}[data-bs-theme=dark] .carousel .carousel-caption,[data-bs-theme=dark].carousel .carousel-caption{color:#000}.spinner-border,.spinner-grow{display:inline-block;width:var(--bs-spinner-width);height:var(--bs-spinner-height);vertical-align:var(--bs-spinner-vertical-align);border-radius:50%;animation:var(--bs-spinner-animation-speed) linear infinite var(--bs-spinner-animation-name)}@keyframes spinner-border{to{transform:rotate(360deg)}}.spinner-border{--bs-spinner-width:2rem;--bs-spinner-height:2rem;--bs-spinner-vertical-align:-0.125em;--bs-spinner-border-width:0.25em;--bs-spinner-animation-speed:0.75s;--bs-spinner-animation-name:spinner-border;border:var(--bs-spinner-border-width) solid currentcolor;border-right-color:transparent}.spinner-border-sm{--bs-spinner-width:1rem;--bs-spinner-height:1rem;--bs-spinner-border-width:0.2em}@keyframes spinner-grow{0%{transform:scale(0)}50%{opacity:1;transform:none}}.spinner-grow{--bs-spinner-width:2rem;--bs-spinner-height:2rem;--bs-spinner-vertical-align:-0.125em;--bs-spinner-animation-speed:0.75s;--bs-spinner-animation-name:spinner-grow;background-color:currentcolor;opacity:0}.spinner-grow-sm{--bs-spinner-width:1rem;--bs-spinner-height:1rem}@media (prefers-reduced-motion:reduce){.spinner-border,.spinner-grow{--bs-spinner-animation-speed:1.5s}}.offcanvas,.offcanvas-lg,.offcanvas-md,.offcanvas-sm,.offcanvas-xl,.offcanvas-xxl{--bs-offcanvas-zindex:1045;--bs-offcanvas-width:400px;--bs-offcanvas-height:30vh;--bs-offcanvas-padding-x:1rem;--bs-offcanvas-padding-y:1rem;--bs-offcanvas-color:var(--bs-body-color);--bs-offcanvas-bg:var(--bs-body-bg);--bs-offcanvas-border-width:var(--bs-border-width);--bs-offcanvas-border-color:var(--bs-border-color-translucent);--bs-offcanvas-box-shadow:var(--bs-box-shadow-sm);--bs-offcanvas-transition:transform 0.3s ease-in-out;--bs-offcanvas-title-line-height:1.5}@media (max-width:575.98px){.offcanvas-sm{position:fixed;bottom:0;z-index:var(--bs-offcanvas-zindex);display:flex;flex-direction:column;max-width:100%;color:var(--bs-offcanvas-color);visibility:hidden;background-color:var(--bs-offcanvas-bg);background-clip:padding-box;outline:0;transition:var(--bs-offcanvas-transition)}}@media (max-width:575.98px) and (prefers-reduced-motion:reduce){.offcanvas-sm{transition:none}}@media (max-width:575.98px){.offcanvas-sm.offcanvas-start{top:0;left:0;width:var(--bs-offcanvas-width);border-right:var(--bs-offcanvas-border-width) solid var(--bs-offcanvas-border-color);transform:translateX(-100%)}.offcanvas-sm.offcanvas-end{top:0;right:0;width:var(--bs-offcanvas-width);border-left:var(--bs-offcanvas-border-width) solid var(--bs-offcanvas-border-color);transform:translateX(100%)}.offcanvas-sm.offcanvas-top{top:0;right:0;left:0;height:var(--bs-offcanvas-height);max-height:100%;border-bottom:var(--bs-offcanvas-border-width) solid var(--bs-offcanvas-border-color);transform:translateY(-100%)}.offcanvas-sm.offcanvas-bottom{right:0;left:0;height:var(--bs-offcanvas-height);max-height:100%;border-top:var(--bs-offcanvas-border-width) solid var(--bs-offcanvas-border-color);transform:translateY(100%)}.offcanvas-sm.show:not(.hiding),.offcanvas-sm.showing{transform:none}.offcanvas-sm.hiding,.offcanvas-sm.show,.offcanvas-sm.showing{visibility:visible}}@media (min-width:576px){.offcanvas-sm{--bs-offcanvas-height:auto;--bs-offcanvas-border-width:0;background-color:transparent!important}.offcanvas-sm .offcanvas-header{display:none}.offcanvas-sm .offcanvas-body{display:flex;flex-grow:0;padding:0;overflow-y:visible;background-color:transparent!important}}@media (max-width:767.98px){.offcanvas-md{position:fixed;bottom:0;z-index:var(--bs-offcanvas-zindex);display:flex;flex-direction:column;max-width:100%;color:var(--bs-offcanvas-color);visibility:hidden;background-color:var(--bs-offcanvas-bg);background-clip:padding-box;outline:0;transition:var(--bs-offcanvas-transition)}}@media (max-width:767.98px) and (prefers-reduced-motion:reduce){.offcanvas-md{transition:none}}@media (max-width:767.98px){.offcanvas-md.offcanvas-start{top:0;left:0;width:var(--bs-offcanvas-width);border-right:var(--bs-offcanvas-border-width) solid var(--bs-offcanvas-border-color);transform:translateX(-100%)}.offcanvas-md.offcanvas-end{top:0;right:0;width:var(--bs-offcanvas-width);border-left:var(--bs-offcanvas-border-width) solid var(--bs-offcanvas-border-color);transform:translateX(100%)}.offcanvas-md.offcanvas-top{top:0;right:0;left:0;height:var(--bs-offcanvas-height);max-height:100%;border-bottom:var(--bs-offcanvas-border-width) solid var(--bs-offcanvas-border-color);transform:translateY(-100%)}.offcanvas-md.offcanvas-bottom{right:0;left:0;height:var(--bs-offcanvas-height);max-height:100%;border-top:var(--bs-offcanvas-border-width) solid var(--bs-offcanvas-border-color);transform:translateY(100%)}.offcanvas-md.show:not(.hiding),.offcanvas-md.showing{transform:none}.offcanvas-md.hiding,.offcanvas-md.show,.offcanvas-md.showing{visibility:visible}}@media (min-width:768px){.offcanvas-md{--bs-offcanvas-height:auto;--bs-offcanvas-border-width:0;background-color:transparent!important}.offcanvas-md .offcanvas-header{display:none}.offcanvas-md .offcanvas-body{display:flex;flex-grow:0;padding:0;overflow-y:visible;background-color:transparent!important}}@media (max-width:991.98px){.offcanvas-lg{position:fixed;bottom:0;z-index:var(--bs-offcanvas-zindex);display:flex;flex-direction:column;max-width:100%;color:var(--bs-offcanvas-color);visibility:hidden;background-color:var(--bs-offcanvas-bg);background-clip:padding-box;outline:0;transition:var(--bs-offcanvas-transition)}}@media (max-width:991.98px) and (prefers-reduced-motion:reduce){.offcanvas-lg{transition:none}}@media (max-width:991.98px){.offcanvas-lg.offcanvas-start{top:0;left:0;width:var(--bs-offcanvas-width);border-right:var(--bs-offcanvas-border-width) solid var(--bs-offcanvas-border-color);transform:translateX(-100%)}.offcanvas-lg.offcanvas-end{top:0;right:0;width:var(--bs-offcanvas-width);border-left:var(--bs-offcanvas-border-width) solid var(--bs-offcanvas-border-color);transform:translateX(100%)}.offcanvas-lg.offcanvas-top{top:0;right:0;left:0;height:var(--bs-offcanvas-height);max-height:100%;border-bottom:var(--bs-offcanvas-border-width) solid var(--bs-offcanvas-border-color);transform:translateY(-100%)}.offcanvas-lg.offcanvas-bottom{right:0;left:0;height:var(--bs-offcanvas-height);max-height:100%;border-top:var(--bs-offcanvas-border-width) solid var(--bs-offcanvas-border-color);transform:translateY(100%)}.offcanvas-lg.show:not(.hiding),.offcanvas-lg.showing{transform:none}.offcanvas-lg.hiding,.offcanvas-lg.show,.offcanvas-lg.showing{visibility:visible}}@media (min-width:992px){.offcanvas-lg{--bs-offcanvas-height:auto;--bs-offcanvas-border-width:0;background-color:transparent!important}.offcanvas-lg .offcanvas-header{display:none}.offcanvas-lg .offcanvas-body{display:flex;flex-grow:0;padding:0;overflow-y:visible;background-color:transparent!important}}@media (max-width:1199.98px){.offcanvas-xl{position:fixed;bottom:0;z-index:var(--bs-offcanvas-zindex);display:flex;flex-direction:column;max-width:100%;color:var(--bs-offcanvas-color);visibility:hidden;background-color:var(--bs-offcanvas-bg);background-clip:padding-box;outline:0;transition:var(--bs-offcanvas-transition)}}@media (max-width:1199.98px) and (prefers-reduced-motion:reduce){.offcanvas-xl{transition:none}}@media (max-width:1199.98px){.offcanvas-xl.offcanvas-start{top:0;left:0;width:var(--bs-offcanvas-width);border-right:var(--bs-offcanvas-border-width) solid var(--bs-offcanvas-border-color);transform:translateX(-100%)}.offcanvas-xl.offcanvas-end{top:0;right:0;width:var(--bs-offcanvas-width);border-left:var(--bs-offcanvas-border-width) solid var(--bs-offcanvas-border-color);transform:translateX(100%)}.offcanvas-xl.offcanvas-top{top:0;right:0;left:0;height:var(--bs-offcanvas-height);max-height:100%;border-bottom:var(--bs-offcanvas-border-width) solid var(--bs-offcanvas-border-color);transform:translateY(-100%)}.offcanvas-xl.offcanvas-bottom{right:0;left:0;height:var(--bs-offcanvas-height);max-height:100%;border-top:var(--bs-offcanvas-border-width) solid var(--bs-offcanvas-border-color);transform:translateY(100%)}.offcanvas-xl.show:not(.hiding),.offcanvas-xl.showing{transform:none}.offcanvas-xl.hiding,.offcanvas-xl.show,.offcanvas-xl.showing{visibility:visible}}@media (min-width:1200px){.offcanvas-xl{--bs-offcanvas-height:auto;--bs-offcanvas-border-width:0;background-color:transparent!important}.offcanvas-xl .offcanvas-header{display:none}.offcanvas-xl .offcanvas-body{display:flex;flex-grow:0;padding:0;overflow-y:visible;background-color:transparent!important}}@media (max-width:1399.98px){.offcanvas-xxl{position:fixed;bottom:0;z-index:var(--bs-offcanvas-zindex);display:flex;flex-direction:column;max-width:100%;color:var(--bs-offcanvas-color);visibility:hidden;background-color:var(--bs-offcanvas-bg);background-clip:padding-box;outline:0;transition:var(--bs-offcanvas-transition)}}@media (max-width:1399.98px) and (prefers-reduced-motion:reduce){.offcanvas-xxl{transition:none}}@media (max-width:1399.98px){.offcanvas-xxl.offcanvas-start{top:0;left:0;width:var(--bs-offcanvas-width);border-right:var(--bs-offcanvas-border-width) solid var(--bs-offcanvas-border-color);transform:translateX(-100%)}.offcanvas-xxl.offcanvas-end{top:0;right:0;width:var(--bs-offcanvas-width);border-left:var(--bs-offcanvas-border-width) solid var(--bs-offcanvas-border-color);transform:translateX(100%)}.offcanvas-xxl.offcanvas-top{top:0;right:0;left:0;height:var(--bs-offcanvas-height);max-height:100%;border-bottom:var(--bs-offcanvas-border-width) solid var(--bs-offcanvas-border-color);transform:translateY(-100%)}.offcanvas-xxl.offcanvas-bottom{right:0;left:0;height:var(--bs-offcanvas-height);max-height:100%;border-top:var(--bs-offcanvas-border-width) solid var(--bs-offcanvas-border-color);transform:translateY(100%)}.offcanvas-xxl.show:not(.hiding),.offcanvas-xxl.showing{transform:none}.offcanvas-xxl.hiding,.offcanvas-xxl.show,.offcanvas-xxl.showing{visibility:visible}}@media (min-width:1400px){.offcanvas-xxl{--bs-offcanvas-height:auto;--bs-offcanvas-border-width:0;background-color:transparent!important}.offcanvas-xxl .offcanvas-header{display:none}.offcanvas-xxl .offcanvas-body{display:flex;flex-grow:0;padding:0;overflow-y:visible;background-color:transparent!important}}.offcanvas{position:fixed;bottom:0;z-index:var(--bs-offcanvas-zindex);display:flex;flex-direction:column;max-width:100%;color:var(--bs-offcanvas-color);visibility:hidden;background-color:var(--bs-offcanvas-bg);background-clip:padding-box;outline:0;transition:var(--bs-offcanvas-transition)}@media (prefers-reduced-motion:reduce){.offcanvas{transition:none}}.offcanvas.offcanvas-start{top:0;left:0;width:var(--bs-offcanvas-width);border-right:var(--bs-offcanvas-border-width) solid var(--bs-offcanvas-border-color);transform:translateX(-100%)}.offcanvas.offcanvas-end{top:0;right:0;width:var(--bs-offcanvas-width);border-left:var(--bs-offcanvas-border-width) solid var(--bs-offcanvas-border-color);transform:translateX(100%)}.offcanvas.offcanvas-top{top:0;right:0;left:0;height:var(--bs-offcanvas-height);max-height:100%;border-bottom:var(--bs-offcanvas-border-width) solid var(--bs-offcanvas-border-color);transform:translateY(-100%)}.offcanvas.offcanvas-bottom{right:0;left:0;height:var(--bs-offcanvas-height);max-height:100%;border-top:var(--bs-offcanvas-border-width) solid var(--bs-offcanvas-border-color);transform:translateY(100%)}.offcanvas.show:not(.hiding),.offcanvas.showing{transform:none}.offcanvas.hiding,.offcanvas.show,.offcanvas.showing{visibility:visible}.offcanvas-backdrop{position:fixed;top:0;left:0;z-index:1040;width:100vw;height:100vh;background-color:#000}.offcanvas-backdrop.fade{opacity:0}.offcanvas-backdrop.show{opacity:.5}.offcanvas-header{display:flex;align-items:center;justify-content:space-between;padding:var(--bs-offcanvas-padding-y) var(--bs-offcanvas-padding-x)}.offcanvas-header .btn-close{padding:calc(var(--bs-offcanvas-padding-y) * .5) calc(var(--bs-offcanvas-padding-x) * .5);margin-top:calc(-.5 * var(--bs-offcanvas-padding-y));margin-right:calc(-.5 * var(--bs-offcanvas-padding-x));margin-bottom:calc(-.5 * var(--bs-offcanvas-padding-y))}.offcanvas-title{margin-bottom:0;line-height:var(--bs-offcanvas-title-line-height)}.offcanvas-body{flex-grow:1;padding:var(--bs-offcanvas-padding-y) var(--bs-offcanvas-padding-x);overflow-y:auto}.placeholder{display:inline-block;min-height:1em;vertical-align:middle;cursor:wait;background-color:currentcolor;opacity:.5}.placeholder.btn::before{display:inline-block;content:""}.placeholder-xs{min-height:.6em}.placeholder-sm{min-height:.8em}.placeholder-lg{min-height:1.2em}.placeholder-glow .placeholder{animation:placeholder-glow 2s ease-in-out infinite}@keyframes placeholder-glow{50%{opacity:.2}}.placeholder-wave{-webkit-mask-image:linear-gradient(130deg,#000 55%,rgba(0,0,0,0.8) 75%,#000 95%);mask-image:linear-gradient(130deg,#000 55%,rgba(0,0,0,0.8) 75%,#000 95%);-webkit-mask-size:200% 100%;mask-size:200% 100%;animation:placeholder-wave 2s linear infinite}@keyframes placeholder-wave{100%{-webkit-mask-position:-200% 0%;mask-position:-200% 0%}}.clearfix::after{display:block;clear:both;content:""}.text-bg-primary{color:#fff!important;background-color:RGBA(var(--bs-primary-rgb),var(--bs-bg-opacity,1))!important}.text-bg-secondary{color:#fff!important;background-color:RGBA(var(--bs-secondary-rgb),var(--bs-bg-opacity,1))!important}.text-bg-success{color:#fff!important;background-color:RGBA(var(--bs-success-rgb),var(--bs-bg-opacity,1))!important}.text-bg-info{color:#000!important;background-color:RGBA(var(--bs-info-rgb),var(--bs-bg-opacity,1))!important}.text-bg-warning{color:#000!important;background-color:RGBA(var(--bs-warning-rgb),var(--bs-bg-opacity,1))!important}.text-bg-danger{color:#fff!important;background-color:RGBA(var(--bs-danger-rgb),var(--bs-bg-opacity,1))!important}.text-bg-light{color:#000!important;background-color:RGBA(var(--bs-light-rgb),var(--bs-bg-opacity,1))!important}.text-bg-dark{color:#fff!important;background-color:RGBA(var(--bs-dark-rgb),var(--bs-bg-opacity,1))!important}.link-primary{color:RGBA(var(--bs-primary-rgb),var(--bs-link-opacity,1))!important;-webkit-text-decoration-color:RGBA(var(--bs-primary-rgb),var(--bs-link-underline-opacity,1))!important;text-decoration-color:RGBA(var(--bs-primary-rgb),var(--bs-link-underline-opacity,1))!important}.link-primary:focus,.link-primary:hover{color:RGBA(10,88,202,var(--bs-link-opacity,1))!important;-webkit-text-decoration-color:RGBA(10,88,202,var(--bs-link-underline-opacity,1))!important;text-decoration-color:RGBA(10,88,202,var(--bs-link-underline-opacity,1))!important}.link-secondary{color:RGBA(var(--bs-secondary-rgb),var(--bs-link-opacity,1))!important;-webkit-text-decoration-color:RGBA(var(--bs-secondary-rgb),var(--bs-link-underline-opacity,1))!important;text-decoration-color:RGBA(var(--bs-secondary-rgb),var(--bs-link-underline-opacity,1))!important}.link-secondary:focus,.link-secondary:hover{color:RGBA(86,94,100,var(--bs-link-opacity,1))!important;-webkit-text-decoration-color:RGBA(86,94,100,var(--bs-link-underline-opacity,1))!important;text-decoration-color:RGBA(86,94,100,var(--bs-link-underline-opacity,1))!important}.link-success{color:RGBA(var(--bs-success-rgb),var(--bs-link-opacity,1))!important;-webkit-text-decoration-color:RGBA(var(--bs-success-rgb),var(--bs-link-underline-opacity,1))!important;text-decoration-color:RGBA(var(--bs-success-rgb),var(--bs-link-underline-opacity,1))!important}.link-success:focus,.link-success:hover{color:RGBA(20,108,67,var(--bs-link-opacity,1))!important;-webkit-text-decoration-color:RGBA(20,108,67,var(--bs-link-underline-opacity,1))!important;text-decoration-color:RGBA(20,108,67,var(--bs-link-underline-opacity,1))!important}.link-info{color:RGBA(var(--bs-info-rgb),var(--bs-link-opacity,1))!important;-webkit-text-decoration-color:RGBA(var(--bs-info-rgb),var(--bs-link-underline-opacity,1))!important;text-decoration-color:RGBA(var(--bs-info-rgb),var(--bs-link-underline-opacity,1))!important}.link-info:focus,.link-info:hover{color:RGBA(61,213,243,var(--bs-link-opacity,1))!important;-webkit-text-decoration-color:RGBA(61,213,243,var(--bs-link-underline-opacity,1))!important;text-decoration-color:RGBA(61,213,243,var(--bs-link-underline-opacity,1))!important}.link-warning{color:RGBA(var(--bs-warning-rgb),var(--bs-link-opacity,1))!important;-webkit-text-decoration-color:RGBA(var(--bs-warning-rgb),var(--bs-link-underline-opacity,1))!important;text-decoration-color:RGBA(var(--bs-warning-rgb),var(--bs-link-underline-opacity,1))!important}.link-warning:focus,.link-warning:hover{color:RGBA(255,205,57,var(--bs-link-opacity,1))!important;-webkit-text-decoration-color:RGBA(255,205,57,var(--bs-link-underline-opacity,1))!important;text-decoration-color:RGBA(255,205,57,var(--bs-link-underline-opacity,1))!important}.link-danger{color:RGBA(var(--bs-danger-rgb),var(--bs-link-opacity,1))!important;-webkit-text-decoration-color:RGBA(var(--bs-danger-rgb),var(--bs-link-underline-opacity,1))!important;text-decoration-color:RGBA(var(--bs-danger-rgb),var(--bs-link-underline-opacity,1))!important}.link-danger:focus,.link-danger:hover{color:RGBA(176,42,55,var(--bs-link-opacity,1))!important;-webkit-text-decoration-color:RGBA(176,42,55,var(--bs-link-underline-opacity,1))!important;text-decoration-color:RGBA(176,42,55,var(--bs-link-underline-opacity,1))!important}.link-light{color:RGBA(var(--bs-light-rgb),var(--bs-link-opacity,1))!important;-webkit-text-decoration-color:RGBA(var(--bs-light-rgb),var(--bs-link-underline-opacity,1))!important;text-decoration-color:RGBA(var(--bs-light-rgb),var(--bs-link-underline-opacity,1))!important}.link-light:focus,.link-light:hover{color:RGBA(249,250,251,var(--bs-link-opacity,1))!important;-webkit-text-decoration-color:RGBA(249,250,251,var(--bs-link-underline-opacity,1))!important;text-decoration-color:RGBA(249,250,251,var(--bs-link-underline-opacity,1))!important}.link-dark{color:RGBA(var(--bs-dark-rgb),var(--bs-link-opacity,1))!important;-webkit-text-decoration-color:RGBA(var(--bs-dark-rgb),var(--bs-link-underline-opacity,1))!important;text-decoration-color:RGBA(var(--bs-dark-rgb),var(--bs-link-underline-opacity,1))!important}.link-dark:focus,.link-dark:hover{color:RGBA(26,30,33,var(--bs-link-opacity,1))!important;-webkit-text-decoration-color:RGBA(26,30,33,var(--bs-link-underline-opacity,1))!important;text-decoration-color:RGBA(26,30,33,var(--bs-link-underline-opacity,1))!important}.link-body-emphasis{color:RGBA(var(--bs-emphasis-color-rgb),var(--bs-link-opacity,1))!important;-webkit-text-decoration-color:RGBA(var(--bs-emphasis-color-rgb),var(--bs-link-underline-opacity,1))!important;text-decoration-color:RGBA(var(--bs-emphasis-color-rgb),var(--bs-link-underline-opacity,1))!important}.link-body-emphasis:focus,.link-body-emphasis:hover{color:RGBA(var(--bs-emphasis-color-rgb),var(--bs-link-opacity,.75))!important;-webkit-text-decoration-color:RGBA(var(--bs-emphasis-color-rgb),var(--bs-link-underline-opacity,0.75))!important;text-decoration-color:RGBA(var(--bs-emphasis-color-rgb),var(--bs-link-underline-opacity,0.75))!important}.focus-ring:focus{outline:0;box-shadow:var(--bs-focus-ring-x,0) var(--bs-focus-ring-y,0) var(--bs-focus-ring-blur,0) var(--bs-focus-ring-width) var(--bs-focus-ring-color)}.icon-link{display:inline-flex;gap:.375rem;align-items:center;-webkit-text-decoration-color:rgba(var(--bs-link-color-rgb),var(--bs-link-opacity,0.5));text-decoration-color:rgba(var(--bs-link-color-rgb),var(--bs-link-opacity,0.5));text-underline-offset:0.25em;-webkit-backface-visibility:hidden;backface-visibility:hidden}.icon-link>.bi{flex-shrink:0;width:1em;height:1em;fill:currentcolor;transition:.2s ease-in-out transform}@media (prefers-reduced-motion:reduce){.icon-link>.bi{transition:none}}.icon-link-hover:focus-visible>.bi,.icon-link-hover:hover>.bi{transform:var(--bs-icon-link-transform,translate3d(.25em,0,0))}.ratio{position:relative;width:100%}.ratio::before{display:block;padding-top:var(--bs-aspect-ratio);content:""}.ratio>*{position:absolute;top:0;left:0;width:100%;height:100%}.ratio-1x1{--bs-aspect-ratio:100%}.ratio-4x3{--bs-aspect-ratio:75%}.ratio-16x9{--bs-aspect-ratio:56.25%}.ratio-21x9{--bs-aspect-ratio:42.8571428571%}.fixed-top{position:fixed;top:0;right:0;left:0;z-index:1030}.fixed-bottom{position:fixed;right:0;bottom:0;left:0;z-index:1030}.sticky-top{position:-webkit-sticky;position:sticky;top:0;z-index:1020}.sticky-bottom{position:-webkit-sticky;position:sticky;bottom:0;z-index:1020}@media (min-width:576px){.sticky-sm-top{position:-webkit-sticky;position:sticky;top:0;z-index:1020}.sticky-sm-bottom{position:-webkit-sticky;position:sticky;bottom:0;z-index:1020}}@media (min-width:768px){.sticky-md-top{position:-webkit-sticky;position:sticky;top:0;z-index:1020}.sticky-md-bottom{position:-webkit-sticky;position:sticky;bottom:0;z-index:1020}}@media (min-width:992px){.sticky-lg-top{position:-webkit-sticky;position:sticky;top:0;z-index:1020}.sticky-lg-bottom{position:-webkit-sticky;position:sticky;bottom:0;z-index:1020}}@media (min-width:1200px){.sticky-xl-top{position:-webkit-sticky;position:sticky;top:0;z-index:1020}.sticky-xl-bottom{position:-webkit-sticky;position:sticky;bottom:0;z-index:1020}}@media (min-width:1400px){.sticky-xxl-top{position:-webkit-sticky;position:sticky;top:0;z-index:1020}.sticky-xxl-bottom{position:-webkit-sticky;position:sticky;bottom:0;z-index:1020}}.hstack{display:flex;flex-direction:row;align-items:center;align-self:stretch}.vstack{display:flex;flex:1 1 auto;flex-direction:column;align-self:stretch}.visually-hidden,.visually-hidden-focusable:not(:focus):not(:focus-within){width:1px!important;height:1px!important;padding:0!important;margin:-1px!important;overflow:hidden!important;clip:rect(0,0,0,0)!important;white-space:nowrap!important;border:0!important}.visually-hidden-focusable:not(:focus):not(:focus-within):not(caption),.visually-hidden:not(caption){position:absolute!important}.stretched-link::after{position:absolute;top:0;right:0;bottom:0;left:0;z-index:1;content:""}.text-truncate{overflow:hidden;text-overflow:ellipsis;white-space:nowrap}.vr{display:inline-block;align-self:stretch;width:var(--bs-border-width);min-height:1em;background-color:currentcolor;opacity:.25}.align-baseline{vertical-align:baseline!important}.align-top{vertical-align:top!important}.align-middle{vertical-align:middle!important}.align-bottom{vertical-align:bottom!important}.align-text-bottom{vertical-align:text-bottom!important}.align-text-top{vertical-align:text-top!important}.float-start{float:left!important}.float-end{float:right!important}.float-none{float:none!important}.object-fit-contain{-o-object-fit:contain!important;object-fit:contain!important}.object-fit-cover{-o-object-fit:cover!important;object-fit:cover!important}.object-fit-fill{-o-object-fit:fill!important;object-fit:fill!important}.object-fit-scale{-o-object-fit:scale-down!important;object-fit:scale-down!important}.object-fit-none{-o-object-fit:none!important;object-fit:none!important}.opacity-0{opacity:0!important}.opacity-25{opacity:.25!important}.opacity-50{opacity:.5!important}.opacity-75{opacity:.75!important}.opacity-100{opacity:1!important}.overflow-auto{overflow:auto!important}.overflow-hidden{overflow:hidden!important}.overflow-visible{overflow:visible!important}.overflow-scroll{overflow:scroll!important}.overflow-x-auto{overflow-x:auto!important}.overflow-x-hidden{overflow-x:hidden!important}.overflow-x-visible{overflow-x:visible!important}.overflow-x-scroll{overflow-x:scroll!important}.overflow-y-auto{overflow-y:auto!important}.overflow-y-hidden{overflow-y:hidden!important}.overflow-y-visible{overflow-y:visible!important}.overflow-y-scroll{overflow-y:scroll!important}.d-inline{display:inline!important}.d-inline-block{display:inline-block!important}.d-block{display:block!important}.d-grid{display:grid!important}.d-inline-grid{display:inline-grid!important}.d-table{display:table!important}.d-table-row{display:table-row!important}.d-table-cell{display:table-cell!important}.d-flex{display:flex!important}.d-inline-flex{display:inline-flex!important}.d-none{display:none!important}.shadow{box-shadow:var(--bs-box-shadow)!important}.shadow-sm{box-shadow:var(--bs-box-shadow-sm)!important}.shadow-lg{box-shadow:var(--bs-box-shadow-lg)!important}.shadow-none{box-shadow:none!important}.focus-ring-primary{--bs-focus-ring-color:rgba(var(--bs-primary-rgb), var(--bs-focus-ring-opacity))}.focus-ring-secondary{--bs-focus-ring-color:rgba(var(--bs-secondary-rgb), var(--bs-focus-ring-opacity))}.focus-ring-success{--bs-focus-ring-color:rgba(var(--bs-success-rgb), var(--bs-focus-ring-opacity))}.focus-ring-info{--bs-focus-ring-color:rgba(var(--bs-info-rgb), var(--bs-focus-ring-opacity))}.focus-ring-warning{--bs-focus-ring-color:rgba(var(--bs-warning-rgb), var(--bs-focus-ring-opacity))}.focus-ring-danger{--bs-focus-ring-color:rgba(var(--bs-danger-rgb), var(--bs-focus-ring-opacity))}.focus-ring-light{--bs-focus-ring-color:rgba(var(--bs-light-rgb), var(--bs-focus-ring-opacity))}.focus-ring-dark{--bs-focus-ring-color:rgba(var(--bs-dark-rgb), var(--bs-focus-ring-opacity))}.position-static{position:static!important}.position-relative{position:relative!important}.position-absolute{position:absolute!important}.position-fixed{position:fixed!important}.position-sticky{position:-webkit-sticky!important;position:sticky!important}.top-0{top:0!important}.top-50{top:50%!important}.top-100{top:100%!important}.bottom-0{bottom:0!important}.bottom-50{bottom:50%!important}.bottom-100{bottom:100%!important}.start-0{left:0!important}.start-50{left:50%!important}.start-100{left:100%!important}.end-0{right:0!important}.end-50{right:50%!important}.end-100{right:100%!important}.translate-middle{transform:translate(-50%,-50%)!important}.translate-middle-x{transform:translateX(-50%)!important}.translate-middle-y{transform:translateY(-50%)!important}.border{border:var(--bs-border-width) var(--bs-border-style) var(--bs-border-color)!important}.border-0{border:0!important}.border-top{border-top:var(--bs-border-width) var(--bs-border-style) var(--bs-border-color)!important}.border-top-0{border-top:0!important}.border-end{border-right:var(--bs-border-width) var(--bs-border-style) var(--bs-border-color)!important}.border-end-0{border-right:0!important}.border-bottom{border-bottom:var(--bs-border-width) var(--bs-border-style) var(--bs-border-color)!important}.border-bottom-0{border-bottom:0!important}.border-start{border-left:var(--bs-border-width) var(--bs-border-style) var(--bs-border-color)!important}.border-start-0{border-left:0!important}.border-primary{--bs-border-opacity:1;border-color:rgba(var(--bs-primary-rgb),var(--bs-border-opacity))!important}.border-secondary{--bs-border-opacity:1;border-color:rgba(var(--bs-secondary-rgb),var(--bs-border-opacity))!important}.border-success{--bs-border-opacity:1;border-color:rgba(var(--bs-success-rgb),var(--bs-border-opacity))!important}.border-info{--bs-border-opacity:1;border-color:rgba(var(--bs-info-rgb),var(--bs-border-opacity))!important}.border-warning{--bs-border-opacity:1;border-color:rgba(var(--bs-warning-rgb),var(--bs-border-opacity))!important}.border-danger{--bs-border-opacity:1;border-color:rgba(var(--bs-danger-rgb),var(--bs-border-opacity))!important}.border-light{--bs-border-opacity:1;border-color:rgba(var(--bs-light-rgb),var(--bs-border-opacity))!important}.border-dark{--bs-border-opacity:1;border-color:rgba(var(--bs-dark-rgb),var(--bs-border-opacity))!important}.border-black{--bs-border-opacity:1;border-color:rgba(var(--bs-black-rgb),var(--bs-border-opacity))!important}.border-white{--bs-border-opacity:1;border-color:rgba(var(--bs-white-rgb),var(--bs-border-opacity))!important}.border-primary-subtle{border-color:var(--bs-primary-border-subtle)!important}.border-secondary-subtle{border-color:var(--bs-secondary-border-subtle)!important}.border-success-subtle{border-color:var(--bs-success-border-subtle)!important}.border-info-subtle{border-color:var(--bs-info-border-subtle)!important}.border-warning-subtle{border-color:var(--bs-warning-border-subtle)!important}.border-danger-subtle{border-color:var(--bs-danger-border-subtle)!important}.border-light-subtle{border-color:var(--bs-light-border-subtle)!important}.border-dark-subtle{border-color:var(--bs-dark-border-subtle)!important}.border-1{border-width:1px!important}.border-2{border-width:2px!important}.border-3{border-width:3px!important}.border-4{border-width:4px!important}.border-5{border-width:5px!important}.border-opacity-10{--bs-border-opacity:0.1}.border-opacity-25{--bs-border-opacity:0.25}.border-opacity-50{--bs-border-opacity:0.5}.border-opacity-75{--bs-border-opacity:0.75}.border-opacity-100{--bs-border-opacity:1}.w-25{width:25%!important}.w-50{width:50%!important}.w-75{width:75%!important}.w-100{width:100%!important}.w-auto{width:auto!important}.mw-100{max-width:100%!important}.vw-100{width:100vw!important}.min-vw-100{min-width:100vw!important}.h-25{height:25%!important}.h-50{height:50%!important}.h-75{height:75%!important}.h-100{height:100%!important}.h-auto{height:auto!important}.mh-100{max-height:100%!important}.vh-100{height:100vh!important}.min-vh-100{min-height:100vh!important}.flex-fill{flex:1 1 auto!important}.flex-row{flex-direction:row!important}.flex-column{flex-direction:column!important}.flex-row-reverse{flex-direction:row-reverse!important}.flex-column-reverse{flex-direction:column-reverse!important}.flex-grow-0{flex-grow:0!important}.flex-grow-1{flex-grow:1!important}.flex-shrink-0{flex-shrink:0!important}.flex-shrink-1{flex-shrink:1!important}.flex-wrap{flex-wrap:wrap!important}.flex-nowrap{flex-wrap:nowrap!important}.flex-wrap-reverse{flex-wrap:wrap-reverse!important}.justify-content-start{justify-content:flex-start!important}.justify-content-end{justify-content:flex-end!important}.justify-content-center{justify-content:center!important}.justify-content-between{justify-content:space-between!important}.justify-content-around{justify-content:space-around!important}.justify-content-evenly{justify-content:space-evenly!important}.align-items-start{align-items:flex-start!important}.align-items-end{align-items:flex-end!important}.align-items-center{align-items:center!important}.align-items-baseline{align-items:baseline!important}.align-items-stretch{align-items:stretch!important}.align-content-start{align-content:flex-start!important}.align-content-end{align-content:flex-end!important}.align-content-center{align-content:center!important}.align-content-between{align-content:space-between!important}.align-content-around{align-content:space-around!important}.align-content-stretch{align-content:stretch!important}.align-self-auto{align-self:auto!important}.align-self-start{align-self:flex-start!important}.align-self-end{align-self:flex-end!important}.align-self-center{align-self:center!important}.align-self-baseline{align-self:baseline!important}.align-self-stretch{align-self:stretch!important}.order-first{order:-1!important}.order-0{order:0!important}.order-1{order:1!important}.order-2{order:2!important}.order-3{order:3!important}.order-4{order:4!important}.order-5{order:5!important}.order-last{order:6!important}.m-0{margin:0!important}.m-1{margin:.25rem!important}.m-2{margin:.5rem!important}.m-3{margin:1rem!important}.m-4{margin:1.5rem!important}.m-5{margin:3rem!important}.m-auto{margin:auto!important}.mx-0{margin-right:0!important;margin-left:0!important}.mx-1{margin-right:.25rem!important;margin-left:.25rem!important}.mx-2{margin-right:.5rem!important;margin-left:.5rem!important}.mx-3{margin-right:1rem!important;margin-left:1rem!important}.mx-4{margin-right:1.5rem!important;margin-left:1.5rem!important}.mx-5{margin-right:3rem!important;margin-left:3rem!important}.mx-auto{margin-right:auto!important;margin-left:auto!important}.my-0{margin-top:0!important;margin-bottom:0!important}.my-1{margin-top:.25rem!important;margin-bottom:.25rem!important}.my-2{margin-top:.5rem!important;margin-bottom:.5rem!important}.my-3{margin-top:1rem!important;margin-bottom:1rem!important}.my-4{margin-top:1.5rem!important;margin-bottom:1.5rem!important}.my-5{margin-top:3rem!important;margin-bottom:3rem!important}.my-auto{margin-top:auto!important;margin-bottom:auto!important}.mt-0{margin-top:0!important}.mt-1{margin-top:.25rem!important}.mt-2{margin-top:.5rem!important}.mt-3{margin-top:1rem!important}.mt-4{margin-top:1.5rem!important}.mt-5{margin-top:3rem!important}.mt-auto{margin-top:auto!important}.me-0{margin-right:0!important}.me-1{margin-right:.25rem!important}.me-2{margin-right:.5rem!important}.me-3{margin-right:1rem!important}.me-4{margin-right:1.5rem!important}.me-5{margin-right:3rem!important}.me-auto{margin-right:auto!important}.mb-0{margin-bottom:0!important}.mb-1{margin-bottom:.25rem!important}.mb-2{margin-bottom:.5rem!important}.mb-3{margin-bottom:1rem!important}.mb-4{margin-bottom:1.5rem!important}.mb-5{margin-bottom:3rem!important}.mb-auto{margin-bottom:auto!important}.ms-0{margin-left:0!important}.ms-1{margin-left:.25rem!important}.ms-2{margin-left:.5rem!important}.ms-3{margin-left:1rem!important}.ms-4{margin-left:1.5rem!important}.ms-5{margin-left:3rem!important}.ms-auto{margin-left:auto!important}.p-0{padding:0!important}.p-1{padding:.25rem!important}.p-2{padding:.5rem!important}.p-3{padding:1rem!important}.p-4{padding:1.5rem!important}.p-5{padding:3rem!important}.px-0{padding-right:0!important;padding-left:0!important}.px-1{padding-right:.25rem!important;padding-left:.25rem!important}.px-2{padding-right:.5rem!important;padding-left:.5rem!important}.px-3{padding-right:1rem!important;padding-left:1rem!important}.px-4{padding-right:1.5rem!important;padding-left:1.5rem!important}.px-5{padding-right:3rem!important;padding-left:3rem!important}.py-0{padding-top:0!important;padding-bottom:0!important}.py-1{padding-top:.25rem!important;padding-bottom:.25rem!important}.py-2{padding-top:.5rem!important;padding-bottom:.5rem!important}.py-3{padding-top:1rem!important;padding-bottom:1rem!important}.py-4{padding-top:1.5rem!important;padding-bottom:1.5rem!important}.py-5{padding-top:3rem!important;padding-bottom:3rem!important}.pt-0{padding-top:0!important}.pt-1{padding-top:.25rem!important}.pt-2{padding-top:.5rem!important}.pt-3{padding-top:1rem!important}.pt-4{padding-top:1.5rem!important}.pt-5{padding-top:3rem!important}.pe-0{padding-right:0!important}.pe-1{padding-right:.25rem!important}.pe-2{padding-right:.5rem!important}.pe-3{padding-right:1rem!important}.pe-4{padding-right:1.5rem!important}.pe-5{padding-right:3rem!important}.pb-0{padding-bottom:0!important}.pb-1{padding-bottom:.25rem!important}.pb-2{padding-bottom:.5rem!important}.pb-3{padding-bottom:1rem!important}.pb-4{padding-bottom:1.5rem!important}.pb-5{padding-bottom:3rem!important}.ps-0{padding-left:0!important}.ps-1{padding-left:.25rem!important}.ps-2{padding-left:.5rem!important}.ps-3{padding-left:1rem!important}.ps-4{padding-left:1.5rem!important}.ps-5{padding-left:3rem!important}.gap-0{gap:0!important}.gap-1{gap:.25rem!important}.gap-2{gap:.5rem!important}.gap-3{gap:1rem!important}.gap-4{gap:1.5rem!important}.gap-5{gap:3rem!important}.row-gap-0{row-gap:0!important}.row-gap-1{row-gap:.25rem!important}.row-gap-2{row-gap:.5rem!important}.row-gap-3{row-gap:1rem!important}.row-gap-4{row-gap:1.5rem!important}.row-gap-5{row-gap:3rem!important}.column-gap-0{-moz-column-gap:0!important;column-gap:0!important}.column-gap-1{-moz-column-gap:0.25rem!important;column-gap:.25rem!important}.column-gap-2{-moz-column-gap:0.5rem!important;column-gap:.5rem!important}.column-gap-3{-moz-column-gap:1rem!important;column-gap:1rem!important}.column-gap-4{-moz-column-gap:1.5rem!important;column-gap:1.5rem!important}.column-gap-5{-moz-column-gap:3rem!important;column-gap:3rem!important}.font-monospace{font-family:var(--bs-font-monospace)!important}.fs-1{font-size:calc(1.375rem + 1.5vw)!important}.fs-2{font-size:calc(1.325rem + .9vw)!important}.fs-3{font-size:calc(1.3rem + .6vw)!important}.fs-4{font-size:calc(1.275rem + .3vw)!important}.fs-5{font-size:1.25rem!important}.fs-6{font-size:1rem!important}.fst-italic{font-style:italic!important}.fst-normal{font-style:normal!important}.fw-lighter{font-weight:lighter!important}.fw-light{font-weight:300!important}.fw-normal{font-weight:400!important}.fw-medium{font-weight:500!important}.fw-semibold{font-weight:600!important}.fw-bold{font-weight:700!important}.fw-bolder{font-weight:bolder!important}.lh-1{line-height:1!important}.lh-sm{line-height:1.25!important}.lh-base{line-height:1.5!important}.lh-lg{line-height:2!important}.text-start{text-align:left!important}.text-end{text-align:right!important}.text-center{text-align:center!important}.text-decoration-none{text-decoration:none!important}.text-decoration-underline{text-decoration:underline!important}.text-decoration-line-through{text-decoration:line-through!important}.text-lowercase{text-transform:lowercase!important}.text-uppercase{text-transform:uppercase!important}.text-capitalize{text-transform:capitalize!important}.text-wrap{white-space:normal!important}.text-nowrap{white-space:nowrap!important}.text-break{word-wrap:break-word!important;word-break:break-word!important}.text-primary{--bs-text-opacity:1;color:rgba(var(--bs-primary-rgb),var(--bs-text-opacity))!important}.text-secondary{--bs-text-opacity:1;color:rgba(var(--bs-secondary-rgb),var(--bs-text-opacity))!important}.text-success{--bs-text-opacity:1;color:rgba(var(--bs-success-rgb),var(--bs-text-opacity))!important}.text-info{--bs-text-opacity:1;color:rgba(var(--bs-info-rgb),var(--bs-text-opacity))!important}.text-warning{--bs-text-opacity:1;color:rgba(var(--bs-warning-rgb),var(--bs-text-opacity))!important}.text-danger{--bs-text-opacity:1;color:rgba(var(--bs-danger-rgb),var(--bs-text-opacity))!important}.text-light{--bs-text-opacity:1;color:rgba(var(--bs-light-rgb),var(--bs-text-opacity))!important}.text-dark{--bs-text-opacity:1;color:rgba(var(--bs-dark-rgb),var(--bs-text-opacity))!important}.text-black{--bs-text-opacity:1;color:rgba(var(--bs-black-rgb),var(--bs-text-opacity))!important}.text-white{--bs-text-opacity:1;color:rgba(var(--bs-white-rgb),var(--bs-text-opacity))!important}.text-body{--bs-text-opacity:1;color:rgba(var(--bs-body-color-rgb),var(--bs-text-opacity))!important}.text-muted{--bs-text-opacity:1;color:var(--bs-secondary-color)!important}.text-black-50{--bs-text-opacity:1;color:rgba(0,0,0,.5)!important}.text-white-50{--bs-text-opacity:1;color:rgba(255,255,255,.5)!important}.text-body-secondary{--bs-text-opacity:1;color:var(--bs-secondary-color)!important}.text-body-tertiary{--bs-text-opacity:1;color:var(--bs-tertiary-color)!important}.text-body-emphasis{--bs-text-opacity:1;color:var(--bs-emphasis-color)!important}.text-reset{--bs-text-opacity:1;color:inherit!important}.text-opacity-25{--bs-text-opacity:0.25}.text-opacity-50{--bs-text-opacity:0.5}.text-opacity-75{--bs-text-opacity:0.75}.text-opacity-100{--bs-text-opacity:1}.text-primary-emphasis{color:var(--bs-primary-text-emphasis)!important}.text-secondary-emphasis{color:var(--bs-secondary-text-emphasis)!important}.text-success-emphasis{color:var(--bs-success-text-emphasis)!important}.text-info-emphasis{color:var(--bs-info-text-emphasis)!important}.text-warning-emphasis{color:var(--bs-warning-text-emphasis)!important}.text-danger-emphasis{color:var(--bs-danger-text-emphasis)!important}.text-light-emphasis{color:var(--bs-light-text-emphasis)!important}.text-dark-emphasis{color:var(--bs-dark-text-emphasis)!important}.link-opacity-10{--bs-link-opacity:0.1}.link-opacity-10-hover:hover{--bs-link-opacity:0.1}.link-opacity-25{--bs-link-opacity:0.25}.link-opacity-25-hover:hover{--bs-link-opacity:0.25}.link-opacity-50{--bs-link-opacity:0.5}.link-opacity-50-hover:hover{--bs-link-opacity:0.5}.link-opacity-75{--bs-link-opacity:0.75}.link-opacity-75-hover:hover{--bs-link-opacity:0.75}.link-opacity-100{--bs-link-opacity:1}.link-opacity-100-hover:hover{--bs-link-opacity:1}.link-offset-1{text-underline-offset:0.125em!important}.link-offset-1-hover:hover{text-underline-offset:0.125em!important}.link-offset-2{text-underline-offset:0.25em!important}.link-offset-2-hover:hover{text-underline-offset:0.25em!important}.link-offset-3{text-underline-offset:0.375em!important}.link-offset-3-hover:hover{text-underline-offset:0.375em!important}.link-underline-primary{--bs-link-underline-opacity:1;-webkit-text-decoration-color:rgba(var(--bs-primary-rgb),var(--bs-link-underline-opacity))!important;text-decoration-color:rgba(var(--bs-primary-rgb),var(--bs-link-underline-opacity))!important}.link-underline-secondary{--bs-link-underline-opacity:1;-webkit-text-decoration-color:rgba(var(--bs-secondary-rgb),var(--bs-link-underline-opacity))!important;text-decoration-color:rgba(var(--bs-secondary-rgb),var(--bs-link-underline-opacity))!important}.link-underline-success{--bs-link-underline-opacity:1;-webkit-text-decoration-color:rgba(var(--bs-success-rgb),var(--bs-link-underline-opacity))!important;text-decoration-color:rgba(var(--bs-success-rgb),var(--bs-link-underline-opacity))!important}.link-underline-info{--bs-link-underline-opacity:1;-webkit-text-decoration-color:rgba(var(--bs-info-rgb),var(--bs-link-underline-opacity))!important;text-decoration-color:rgba(var(--bs-info-rgb),var(--bs-link-underline-opacity))!important}.link-underline-warning{--bs-link-underline-opacity:1;-webkit-text-decoration-color:rgba(var(--bs-warning-rgb),var(--bs-link-underline-opacity))!important;text-decoration-color:rgba(var(--bs-warning-rgb),var(--bs-link-underline-opacity))!important}.link-underline-danger{--bs-link-underline-opacity:1;-webkit-text-decoration-color:rgba(var(--bs-danger-rgb),var(--bs-link-underline-opacity))!important;text-decoration-color:rgba(var(--bs-danger-rgb),var(--bs-link-underline-opacity))!important}.link-underline-light{--bs-link-underline-opacity:1;-webkit-text-decoration-color:rgba(var(--bs-light-rgb),var(--bs-link-underline-opacity))!important;text-decoration-color:rgba(var(--bs-light-rgb),var(--bs-link-underline-opacity))!important}.link-underline-dark{--bs-link-underline-opacity:1;-webkit-text-decoration-color:rgba(var(--bs-dark-rgb),var(--bs-link-underline-opacity))!important;text-decoration-color:rgba(var(--bs-dark-rgb),var(--bs-link-underline-opacity))!important}.link-underline{--bs-link-underline-opacity:1;-webkit-text-decoration-color:rgba(var(--bs-link-color-rgb),var(--bs-link-underline-opacity,1))!important;text-decoration-color:rgba(var(--bs-link-color-rgb),var(--bs-link-underline-opacity,1))!important}.link-underline-opacity-0{--bs-link-underline-opacity:0}.link-underline-opacity-0-hover:hover{--bs-link-underline-opacity:0}.link-underline-opacity-10{--bs-link-underline-opacity:0.1}.link-underline-opacity-10-hover:hover{--bs-link-underline-opacity:0.1}.link-underline-opacity-25{--bs-link-underline-opacity:0.25}.link-underline-opacity-25-hover:hover{--bs-link-underline-opacity:0.25}.link-underline-opacity-50{--bs-link-underline-opacity:0.5}.link-underline-opacity-50-hover:hover{--bs-link-underline-opacity:0.5}.link-underline-opacity-75{--bs-link-underline-opacity:0.75}.link-underline-opacity-75-hover:hover{--bs-link-underline-opacity:0.75}.link-underline-opacity-100{--bs-link-underline-opacity:1}.link-underline-opacity-100-hover:hover{--bs-link-underline-opacity:1}.bg-primary{--bs-bg-opacity:1;background-color:rgba(var(--bs-primary-rgb),var(--bs-bg-opacity))!important}.bg-secondary{--bs-bg-opacity:1;background-color:rgba(var(--bs-secondary-rgb),var(--bs-bg-opacity))!important}.bg-success{--bs-bg-opacity:1;background-color:rgba(var(--bs-success-rgb),var(--bs-bg-opacity))!important}.bg-info{--bs-bg-opacity:1;background-color:rgba(var(--bs-info-rgb),var(--bs-bg-opacity))!important}.bg-warning{--bs-bg-opacity:1;background-color:rgba(var(--bs-warning-rgb),var(--bs-bg-opacity))!important}.bg-danger{--bs-bg-opacity:1;background-color:rgba(var(--bs-danger-rgb),var(--bs-bg-opacity))!important}.bg-light{--bs-bg-opacity:1;background-color:rgba(var(--bs-light-rgb),var(--bs-bg-opacity))!important}.bg-dark{--bs-bg-opacity:1;background-color:rgba(var(--bs-dark-rgb),var(--bs-bg-opacity))!important}.bg-black{--bs-bg-opacity:1;background-color:rgba(var(--bs-black-rgb),var(--bs-bg-opacity))!important}.bg-white{--bs-bg-opacity:1;background-color:rgba(var(--bs-white-rgb),var(--bs-bg-opacity))!important}.bg-body{--bs-bg-opacity:1;background-color:rgba(var(--bs-body-bg-rgb),var(--bs-bg-opacity))!important}.bg-transparent{--bs-bg-opacity:1;background-color:transparent!important}.bg-body-secondary{--bs-bg-opacity:1;background-color:rgba(var(--bs-secondary-bg-rgb),var(--bs-bg-opacity))!important}.bg-body-tertiary{--bs-bg-opacity:1;background-color:rgba(var(--bs-tertiary-bg-rgb),var(--bs-bg-opacity))!important}.bg-opacity-10{--bs-bg-opacity:0.1}.bg-opacity-25{--bs-bg-opacity:0.25}.bg-opacity-50{--bs-bg-opacity:0.5}.bg-opacity-75{--bs-bg-opacity:0.75}.bg-opacity-100{--bs-bg-opacity:1}.bg-primary-subtle{background-color:var(--bs-primary-bg-subtle)!important}.bg-secondary-subtle{background-color:var(--bs-secondary-bg-subtle)!important}.bg-success-subtle{background-color:var(--bs-success-bg-subtle)!important}.bg-info-subtle{background-color:var(--bs-info-bg-subtle)!important}.bg-warning-subtle{background-color:var(--bs-warning-bg-subtle)!important}.bg-danger-subtle{background-color:var(--bs-danger-bg-subtle)!important}.bg-light-subtle{background-color:var(--bs-light-bg-subtle)!important}.bg-dark-subtle{background-color:var(--bs-dark-bg-subtle)!important}.bg-gradient{background-image:var(--bs-gradient)!important}.user-select-all{-webkit-user-select:all!important;-moz-user-select:all!important;user-select:all!important}.user-select-auto{-webkit-user-select:auto!important;-moz-user-select:auto!important;user-select:auto!important}.user-select-none{-webkit-user-select:none!important;-moz-user-select:none!important;user-select:none!important}.pe-none{pointer-events:none!important}.pe-auto{pointer-events:auto!important}.rounded{border-radius:var(--bs-border-radius)!important}.rounded-0{border-radius:0!important}.rounded-1{border-radius:var(--bs-border-radius-sm)!important}.rounded-2{border-radius:var(--bs-border-radius)!important}.rounded-3{border-radius:var(--bs-border-radius-lg)!important}.rounded-4{border-radius:var(--bs-border-radius-xl)!important}.rounded-5{border-radius:var(--bs-border-radius-xxl)!important}.rounded-circle{border-radius:50%!important}.rounded-pill{border-radius:var(--bs-border-radius-pill)!important}.rounded-top{border-top-left-radius:var(--bs-border-radius)!important;border-top-right-radius:var(--bs-border-radius)!important}.rounded-top-0{border-top-left-radius:0!important;border-top-right-radius:0!important}.rounded-top-1{border-top-left-radius:var(--bs-border-radius-sm)!important;border-top-right-radius:var(--bs-border-radius-sm)!important}.rounded-top-2{border-top-left-radius:var(--bs-border-radius)!important;border-top-right-radius:var(--bs-border-radius)!important}.rounded-top-3{border-top-left-radius:var(--bs-border-radius-lg)!important;border-top-right-radius:var(--bs-border-radius-lg)!important}.rounded-top-4{border-top-left-radius:var(--bs-border-radius-xl)!important;border-top-right-radius:var(--bs-border-radius-xl)!important}.rounded-top-5{border-top-left-radius:var(--bs-border-radius-xxl)!important;border-top-right-radius:var(--bs-border-radius-xxl)!important}.rounded-top-circle{border-top-left-radius:50%!important;border-top-right-radius:50%!important}.rounded-top-pill{border-top-left-radius:var(--bs-border-radius-pill)!important;border-top-right-radius:var(--bs-border-radius-pill)!important}.rounded-end{border-top-right-radius:var(--bs-border-radius)!important;border-bottom-right-radius:var(--bs-border-radius)!important}.rounded-end-0{border-top-right-radius:0!important;border-bottom-right-radius:0!important}.rounded-end-1{border-top-right-radius:var(--bs-border-radius-sm)!important;border-bottom-right-radius:var(--bs-border-radius-sm)!important}.rounded-end-2{border-top-right-radius:var(--bs-border-radius)!important;border-bottom-right-radius:var(--bs-border-radius)!important}.rounded-end-3{border-top-right-radius:var(--bs-border-radius-lg)!important;border-bottom-right-radius:var(--bs-border-radius-lg)!important}.rounded-end-4{border-top-right-radius:var(--bs-border-radius-xl)!important;border-bottom-right-radius:var(--bs-border-radius-xl)!important}.rounded-end-5{border-top-right-radius:var(--bs-border-radius-xxl)!important;border-bottom-right-radius:var(--bs-border-radius-xxl)!important}.rounded-end-circle{border-top-right-radius:50%!important;border-bottom-right-radius:50%!important}.rounded-end-pill{border-top-right-radius:var(--bs-border-radius-pill)!important;border-bottom-right-radius:var(--bs-border-radius-pill)!important}.rounded-bottom{border-bottom-right-radius:var(--bs-border-radius)!important;border-bottom-left-radius:var(--bs-border-radius)!important}.rounded-bottom-0{border-bottom-right-radius:0!important;border-bottom-left-radius:0!important}.rounded-bottom-1{border-bottom-right-radius:var(--bs-border-radius-sm)!important;border-bottom-left-radius:var(--bs-border-radius-sm)!important}.rounded-bottom-2{border-bottom-right-radius:var(--bs-border-radius)!important;border-bottom-left-radius:var(--bs-border-radius)!important}.rounded-bottom-3{border-bottom-right-radius:var(--bs-border-radius-lg)!important;border-bottom-left-radius:var(--bs-border-radius-lg)!important}.rounded-bottom-4{border-bottom-right-radius:var(--bs-border-radius-xl)!important;border-bottom-left-radius:var(--bs-border-radius-xl)!important}.rounded-bottom-5{border-bottom-right-radius:var(--bs-border-radius-xxl)!important;border-bottom-left-radius:var(--bs-border-radius-xxl)!important}.rounded-bottom-circle{border-bottom-right-radius:50%!important;border-bottom-left-radius:50%!important}.rounded-bottom-pill{border-bottom-right-radius:var(--bs-border-radius-pill)!important;border-bottom-left-radius:var(--bs-border-radius-pill)!important}.rounded-start{border-bottom-left-radius:var(--bs-border-radius)!important;border-top-left-radius:var(--bs-border-radius)!important}.rounded-start-0{border-bottom-left-radius:0!important;border-top-left-radius:0!important}.rounded-start-1{border-bottom-left-radius:var(--bs-border-radius-sm)!important;border-top-left-radius:var(--bs-border-radius-sm)!important}.rounded-start-2{border-bottom-left-radius:var(--bs-border-radius)!important;border-top-left-radius:var(--bs-border-radius)!important}.rounded-start-3{border-bottom-left-radius:var(--bs-border-radius-lg)!important;border-top-left-radius:var(--bs-border-radius-lg)!important}.rounded-start-4{border-bottom-left-radius:var(--bs-border-radius-xl)!important;border-top-left-radius:var(--bs-border-radius-xl)!important}.rounded-start-5{border-bottom-left-radius:var(--bs-border-radius-xxl)!important;border-top-left-radius:var(--bs-border-radius-xxl)!important}.rounded-start-circle{border-bottom-left-radius:50%!important;border-top-left-radius:50%!important}.rounded-start-pill{border-bottom-left-radius:var(--bs-border-radius-pill)!important;border-top-left-radius:var(--bs-border-radius-pill)!important}.visible{visibility:visible!important}.invisible{visibility:hidden!important}.z-n1{z-index:-1!important}.z-0{z-index:0!important}.z-1{z-index:1!important}.z-2{z-index:2!important}.z-3{z-index:3!important}@media (min-width:576px){.float-sm-start{float:left!important}.float-sm-end{float:right!important}.float-sm-none{float:none!important}.object-fit-sm-contain{-o-object-fit:contain!important;object-fit:contain!important}.object-fit-sm-cover{-o-object-fit:cover!important;object-fit:cover!important}.object-fit-sm-fill{-o-object-fit:fill!important;object-fit:fill!important}.object-fit-sm-scale{-o-object-fit:scale-down!important;object-fit:scale-down!important}.object-fit-sm-none{-o-object-fit:none!important;object-fit:none!important}.d-sm-inline{display:inline!important}.d-sm-inline-block{display:inline-block!important}.d-sm-block{display:block!important}.d-sm-grid{display:grid!important}.d-sm-inline-grid{display:inline-grid!important}.d-sm-table{display:table!important}.d-sm-table-row{display:table-row!important}.d-sm-table-cell{display:table-cell!important}.d-sm-flex{display:flex!important}.d-sm-inline-flex{display:inline-flex!important}.d-sm-none{display:none!important}.flex-sm-fill{flex:1 1 auto!important}.flex-sm-row{flex-direction:row!important}.flex-sm-column{flex-direction:column!important}.flex-sm-row-reverse{flex-direction:row-reverse!important}.flex-sm-column-reverse{flex-direction:column-reverse!important}.flex-sm-grow-0{flex-grow:0!important}.flex-sm-grow-1{flex-grow:1!important}.flex-sm-shrink-0{flex-shrink:0!important}.flex-sm-shrink-1{flex-shrink:1!important}.flex-sm-wrap{flex-wrap:wrap!important}.flex-sm-nowrap{flex-wrap:nowrap!important}.flex-sm-wrap-reverse{flex-wrap:wrap-reverse!important}.justify-content-sm-start{justify-content:flex-start!important}.justify-content-sm-end{justify-content:flex-end!important}.justify-content-sm-center{justify-content:center!important}.justify-content-sm-between{justify-content:space-between!important}.justify-content-sm-around{justify-content:space-around!important}.justify-content-sm-evenly{justify-content:space-evenly!important}.align-items-sm-start{align-items:flex-start!important}.align-items-sm-end{align-items:flex-end!important}.align-items-sm-center{align-items:center!important}.align-items-sm-baseline{align-items:baseline!important}.align-items-sm-stretch{align-items:stretch!important}.align-content-sm-start{align-content:flex-start!important}.align-content-sm-end{align-content:flex-end!important}.align-content-sm-center{align-content:center!important}.align-content-sm-between{align-content:space-between!important}.align-content-sm-around{align-content:space-around!important}.align-content-sm-stretch{align-content:stretch!important}.align-self-sm-auto{align-self:auto!important}.align-self-sm-start{align-self:flex-start!important}.align-self-sm-end{align-self:flex-end!important}.align-self-sm-center{align-self:center!important}.align-self-sm-baseline{align-self:baseline!important}.align-self-sm-stretch{align-self:stretch!important}.order-sm-first{order:-1!important}.order-sm-0{order:0!important}.order-sm-1{order:1!important}.order-sm-2{order:2!important}.order-sm-3{order:3!important}.order-sm-4{order:4!important}.order-sm-5{order:5!important}.order-sm-last{order:6!important}.m-sm-0{margin:0!important}.m-sm-1{margin:.25rem!important}.m-sm-2{margin:.5rem!important}.m-sm-3{margin:1rem!important}.m-sm-4{margin:1.5rem!important}.m-sm-5{margin:3rem!important}.m-sm-auto{margin:auto!important}.mx-sm-0{margin-right:0!important;margin-left:0!important}.mx-sm-1{margin-right:.25rem!important;margin-left:.25rem!important}.mx-sm-2{margin-right:.5rem!important;margin-left:.5rem!important}.mx-sm-3{margin-right:1rem!important;margin-left:1rem!important}.mx-sm-4{margin-right:1.5rem!important;margin-left:1.5rem!important}.mx-sm-5{margin-right:3rem!important;margin-left:3rem!important}.mx-sm-auto{margin-right:auto!important;margin-left:auto!important}.my-sm-0{margin-top:0!important;margin-bottom:0!important}.my-sm-1{margin-top:.25rem!important;margin-bottom:.25rem!important}.my-sm-2{margin-top:.5rem!important;margin-bottom:.5rem!important}.my-sm-3{margin-top:1rem!important;margin-bottom:1rem!important}.my-sm-4{margin-top:1.5rem!important;margin-bottom:1.5rem!important}.my-sm-5{margin-top:3rem!important;margin-bottom:3rem!important}.my-sm-auto{margin-top:auto!important;margin-bottom:auto!important}.mt-sm-0{margin-top:0!important}.mt-sm-1{margin-top:.25rem!important}.mt-sm-2{margin-top:.5rem!important}.mt-sm-3{margin-top:1rem!important}.mt-sm-4{margin-top:1.5rem!important}.mt-sm-5{margin-top:3rem!important}.mt-sm-auto{margin-top:auto!important}.me-sm-0{margin-right:0!important}.me-sm-1{margin-right:.25rem!important}.me-sm-2{margin-right:.5rem!important}.me-sm-3{margin-right:1rem!important}.me-sm-4{margin-right:1.5rem!important}.me-sm-5{margin-right:3rem!important}.me-sm-auto{margin-right:auto!important}.mb-sm-0{margin-bottom:0!important}.mb-sm-1{margin-bottom:.25rem!important}.mb-sm-2{margin-bottom:.5rem!important}.mb-sm-3{margin-bottom:1rem!important}.mb-sm-4{margin-bottom:1.5rem!important}.mb-sm-5{margin-bottom:3rem!important}.mb-sm-auto{margin-bottom:auto!important}.ms-sm-0{margin-left:0!important}.ms-sm-1{margin-left:.25rem!important}.ms-sm-2{margin-left:.5rem!important}.ms-sm-3{margin-left:1rem!important}.ms-sm-4{margin-left:1.5rem!important}.ms-sm-5{margin-left:3rem!important}.ms-sm-auto{margin-left:auto!important}.p-sm-0{padding:0!important}.p-sm-1{padding:.25rem!important}.p-sm-2{padding:.5rem!important}.p-sm-3{padding:1rem!important}.p-sm-4{padding:1.5rem!important}.p-sm-5{padding:3rem!important}.px-sm-0{padding-right:0!important;padding-left:0!important}.px-sm-1{padding-right:.25rem!important;padding-left:.25rem!important}.px-sm-2{padding-right:.5rem!important;padding-left:.5rem!important}.px-sm-3{padding-right:1rem!important;padding-left:1rem!important}.px-sm-4{padding-right:1.5rem!important;padding-left:1.5rem!important}.px-sm-5{padding-right:3rem!important;padding-left:3rem!important}.py-sm-0{padding-top:0!important;padding-bottom:0!important}.py-sm-1{padding-top:.25rem!important;padding-bottom:.25rem!important}.py-sm-2{padding-top:.5rem!important;padding-bottom:.5rem!important}.py-sm-3{padding-top:1rem!important;padding-bottom:1rem!important}.py-sm-4{padding-top:1.5rem!important;padding-bottom:1.5rem!important}.py-sm-5{padding-top:3rem!important;padding-bottom:3rem!important}.pt-sm-0{padding-top:0!important}.pt-sm-1{padding-top:.25rem!important}.pt-sm-2{padding-top:.5rem!important}.pt-sm-3{padding-top:1rem!important}.pt-sm-4{padding-top:1.5rem!important}.pt-sm-5{padding-top:3rem!important}.pe-sm-0{padding-right:0!important}.pe-sm-1{padding-right:.25rem!important}.pe-sm-2{padding-right:.5rem!important}.pe-sm-3{padding-right:1rem!important}.pe-sm-4{padding-right:1.5rem!important}.pe-sm-5{padding-right:3rem!important}.pb-sm-0{padding-bottom:0!important}.pb-sm-1{padding-bottom:.25rem!important}.pb-sm-2{padding-bottom:.5rem!important}.pb-sm-3{padding-bottom:1rem!important}.pb-sm-4{padding-bottom:1.5rem!important}.pb-sm-5{padding-bottom:3rem!important}.ps-sm-0{padding-left:0!important}.ps-sm-1{padding-left:.25rem!important}.ps-sm-2{padding-left:.5rem!important}.ps-sm-3{padding-left:1rem!important}.ps-sm-4{padding-left:1.5rem!important}.ps-sm-5{padding-left:3rem!important}.gap-sm-0{gap:0!important}.gap-sm-1{gap:.25rem!important}.gap-sm-2{gap:.5rem!important}.gap-sm-3{gap:1rem!important}.gap-sm-4{gap:1.5rem!important}.gap-sm-5{gap:3rem!important}.row-gap-sm-0{row-gap:0!important}.row-gap-sm-1{row-gap:.25rem!important}.row-gap-sm-2{row-gap:.5rem!important}.row-gap-sm-3{row-gap:1rem!important}.row-gap-sm-4{row-gap:1.5rem!important}.row-gap-sm-5{row-gap:3rem!important}.column-gap-sm-0{-moz-column-gap:0!important;column-gap:0!important}.column-gap-sm-1{-moz-column-gap:0.25rem!important;column-gap:.25rem!important}.column-gap-sm-2{-moz-column-gap:0.5rem!important;column-gap:.5rem!important}.column-gap-sm-3{-moz-column-gap:1rem!important;column-gap:1rem!important}.column-gap-sm-4{-moz-column-gap:1.5rem!important;column-gap:1.5rem!important}.column-gap-sm-5{-moz-column-gap:3rem!important;column-gap:3rem!important}.text-sm-start{text-align:left!important}.text-sm-end{text-align:right!important}.text-sm-center{text-align:center!important}}@media (min-width:768px){.float-md-start{float:left!important}.float-md-end{float:right!important}.float-md-none{float:none!important}.object-fit-md-contain{-o-object-fit:contain!important;object-fit:contain!important}.object-fit-md-cover{-o-object-fit:cover!important;object-fit:cover!important}.object-fit-md-fill{-o-object-fit:fill!important;object-fit:fill!important}.object-fit-md-scale{-o-object-fit:scale-down!important;object-fit:scale-down!important}.object-fit-md-none{-o-object-fit:none!important;object-fit:none!important}.d-md-inline{display:inline!important}.d-md-inline-block{display:inline-block!important}.d-md-block{display:block!important}.d-md-grid{display:grid!important}.d-md-inline-grid{display:inline-grid!important}.d-md-table{display:table!important}.d-md-table-row{display:table-row!important}.d-md-table-cell{display:table-cell!important}.d-md-flex{display:flex!important}.d-md-inline-flex{display:inline-flex!important}.d-md-none{display:none!important}.flex-md-fill{flex:1 1 auto!important}.flex-md-row{flex-direction:row!important}.flex-md-column{flex-direction:column!important}.flex-md-row-reverse{flex-direction:row-reverse!important}.flex-md-column-reverse{flex-direction:column-reverse!important}.flex-md-grow-0{flex-grow:0!important}.flex-md-grow-1{flex-grow:1!important}.flex-md-shrink-0{flex-shrink:0!important}.flex-md-shrink-1{flex-shrink:1!important}.flex-md-wrap{flex-wrap:wrap!important}.flex-md-nowrap{flex-wrap:nowrap!important}.flex-md-wrap-reverse{flex-wrap:wrap-reverse!important}.justify-content-md-start{justify-content:flex-start!important}.justify-content-md-end{justify-content:flex-end!important}.justify-content-md-center{justify-content:center!important}.justify-content-md-between{justify-content:space-between!important}.justify-content-md-around{justify-content:space-around!important}.justify-content-md-evenly{justify-content:space-evenly!important}.align-items-md-start{align-items:flex-start!important}.align-items-md-end{align-items:flex-end!important}.align-items-md-center{align-items:center!important}.align-items-md-baseline{align-items:baseline!important}.align-items-md-stretch{align-items:stretch!important}.align-content-md-start{align-content:flex-start!important}.align-content-md-end{align-content:flex-end!important}.align-content-md-center{align-content:center!important}.align-content-md-between{align-content:space-between!important}.align-content-md-around{align-content:space-around!important}.align-content-md-stretch{align-content:stretch!important}.align-self-md-auto{align-self:auto!important}.align-self-md-start{align-self:flex-start!important}.align-self-md-end{align-self:flex-end!important}.align-self-md-center{align-self:center!important}.align-self-md-baseline{align-self:baseline!important}.align-self-md-stretch{align-self:stretch!important}.order-md-first{order:-1!important}.order-md-0{order:0!important}.order-md-1{order:1!important}.order-md-2{order:2!important}.order-md-3{order:3!important}.order-md-4{order:4!important}.order-md-5{order:5!important}.order-md-last{order:6!important}.m-md-0{margin:0!important}.m-md-1{margin:.25rem!important}.m-md-2{margin:.5rem!important}.m-md-3{margin:1rem!important}.m-md-4{margin:1.5rem!important}.m-md-5{margin:3rem!important}.m-md-auto{margin:auto!important}.mx-md-0{margin-right:0!important;margin-left:0!important}.mx-md-1{margin-right:.25rem!important;margin-left:.25rem!important}.mx-md-2{margin-right:.5rem!important;margin-left:.5rem!important}.mx-md-3{margin-right:1rem!important;margin-left:1rem!important}.mx-md-4{margin-right:1.5rem!important;margin-left:1.5rem!important}.mx-md-5{margin-right:3rem!important;margin-left:3rem!important}.mx-md-auto{margin-right:auto!important;margin-left:auto!important}.my-md-0{margin-top:0!important;margin-bottom:0!important}.my-md-1{margin-top:.25rem!important;margin-bottom:.25rem!important}.my-md-2{margin-top:.5rem!important;margin-bottom:.5rem!important}.my-md-3{margin-top:1rem!important;margin-bottom:1rem!important}.my-md-4{margin-top:1.5rem!important;margin-bottom:1.5rem!important}.my-md-5{margin-top:3rem!important;margin-bottom:3rem!important}.my-md-auto{margin-top:auto!important;margin-bottom:auto!important}.mt-md-0{margin-top:0!important}.mt-md-1{margin-top:.25rem!important}.mt-md-2{margin-top:.5rem!important}.mt-md-3{margin-top:1rem!important}.mt-md-4{margin-top:1.5rem!important}.mt-md-5{margin-top:3rem!important}.mt-md-auto{margin-top:auto!important}.me-md-0{margin-right:0!important}.me-md-1{margin-right:.25rem!important}.me-md-2{margin-right:.5rem!important}.me-md-3{margin-right:1rem!important}.me-md-4{margin-right:1.5rem!important}.me-md-5{margin-right:3rem!important}.me-md-auto{margin-right:auto!important}.mb-md-0{margin-bottom:0!important}.mb-md-1{margin-bottom:.25rem!important}.mb-md-2{margin-bottom:.5rem!important}.mb-md-3{margin-bottom:1rem!important}.mb-md-4{margin-bottom:1.5rem!important}.mb-md-5{margin-bottom:3rem!important}.mb-md-auto{margin-bottom:auto!important}.ms-md-0{margin-left:0!important}.ms-md-1{margin-left:.25rem!important}.ms-md-2{margin-left:.5rem!important}.ms-md-3{margin-left:1rem!important}.ms-md-4{margin-left:1.5rem!important}.ms-md-5{margin-left:3rem!important}.ms-md-auto{margin-left:auto!important}.p-md-0{padding:0!important}.p-md-1{padding:.25rem!important}.p-md-2{padding:.5rem!important}.p-md-3{padding:1rem!important}.p-md-4{padding:1.5rem!important}.p-md-5{padding:3rem!important}.px-md-0{padding-right:0!important;padding-left:0!important}.px-md-1{padding-right:.25rem!important;padding-left:.25rem!important}.px-md-2{padding-right:.5rem!important;padding-left:.5rem!important}.px-md-3{padding-right:1rem!important;padding-left:1rem!important}.px-md-4{padding-right:1.5rem!important;padding-left:1.5rem!important}.px-md-5{padding-right:3rem!important;padding-left:3rem!important}.py-md-0{padding-top:0!important;padding-bottom:0!important}.py-md-1{padding-top:.25rem!important;padding-bottom:.25rem!important}.py-md-2{padding-top:.5rem!important;padding-bottom:.5rem!important}.py-md-3{padding-top:1rem!important;padding-bottom:1rem!important}.py-md-4{padding-top:1.5rem!important;padding-bottom:1.5rem!important}.py-md-5{padding-top:3rem!important;padding-bottom:3rem!important}.pt-md-0{padding-top:0!important}.pt-md-1{padding-top:.25rem!important}.pt-md-2{padding-top:.5rem!important}.pt-md-3{padding-top:1rem!important}.pt-md-4{padding-top:1.5rem!important}.pt-md-5{padding-top:3rem!important}.pe-md-0{padding-right:0!important}.pe-md-1{padding-right:.25rem!important}.pe-md-2{padding-right:.5rem!important}.pe-md-3{padding-right:1rem!important}.pe-md-4{padding-right:1.5rem!important}.pe-md-5{padding-right:3rem!important}.pb-md-0{padding-bottom:0!important}.pb-md-1{padding-bottom:.25rem!important}.pb-md-2{padding-bottom:.5rem!important}.pb-md-3{padding-bottom:1rem!important}.pb-md-4{padding-bottom:1.5rem!important}.pb-md-5{padding-bottom:3rem!important}.ps-md-0{padding-left:0!important}.ps-md-1{padding-left:.25rem!important}.ps-md-2{padding-left:.5rem!important}.ps-md-3{padding-left:1rem!important}.ps-md-4{padding-left:1.5rem!important}.ps-md-5{padding-left:3rem!important}.gap-md-0{gap:0!important}.gap-md-1{gap:.25rem!important}.gap-md-2{gap:.5rem!important}.gap-md-3{gap:1rem!important}.gap-md-4{gap:1.5rem!important}.gap-md-5{gap:3rem!important}.row-gap-md-0{row-gap:0!important}.row-gap-md-1{row-gap:.25rem!important}.row-gap-md-2{row-gap:.5rem!important}.row-gap-md-3{row-gap:1rem!important}.row-gap-md-4{row-gap:1.5rem!important}.row-gap-md-5{row-gap:3rem!important}.column-gap-md-0{-moz-column-gap:0!important;column-gap:0!important}.column-gap-md-1{-moz-column-gap:0.25rem!important;column-gap:.25rem!important}.column-gap-md-2{-moz-column-gap:0.5rem!important;column-gap:.5rem!important}.column-gap-md-3{-moz-column-gap:1rem!important;column-gap:1rem!important}.column-gap-md-4{-moz-column-gap:1.5rem!important;column-gap:1.5rem!important}.column-gap-md-5{-moz-column-gap:3rem!important;column-gap:3rem!important}.text-md-start{text-align:left!important}.text-md-end{text-align:right!important}.text-md-center{text-align:center!important}}@media (min-width:992px){.float-lg-start{float:left!important}.float-lg-end{float:right!important}.float-lg-none{float:none!important}.object-fit-lg-contain{-o-object-fit:contain!important;object-fit:contain!important}.object-fit-lg-cover{-o-object-fit:cover!important;object-fit:cover!important}.object-fit-lg-fill{-o-object-fit:fill!important;object-fit:fill!important}.object-fit-lg-scale{-o-object-fit:scale-down!important;object-fit:scale-down!important}.object-fit-lg-none{-o-object-fit:none!important;object-fit:none!important}.d-lg-inline{display:inline!important}.d-lg-inline-block{display:inline-block!important}.d-lg-block{display:block!important}.d-lg-grid{display:grid!important}.d-lg-inline-grid{display:inline-grid!important}.d-lg-table{display:table!important}.d-lg-table-row{display:table-row!important}.d-lg-table-cell{display:table-cell!important}.d-lg-flex{display:flex!important}.d-lg-inline-flex{display:inline-flex!important}.d-lg-none{display:none!important}.flex-lg-fill{flex:1 1 auto!important}.flex-lg-row{flex-direction:row!important}.flex-lg-column{flex-direction:column!important}.flex-lg-row-reverse{flex-direction:row-reverse!important}.flex-lg-column-reverse{flex-direction:column-reverse!important}.flex-lg-grow-0{flex-grow:0!important}.flex-lg-grow-1{flex-grow:1!important}.flex-lg-shrink-0{flex-shrink:0!important}.flex-lg-shrink-1{flex-shrink:1!important}.flex-lg-wrap{flex-wrap:wrap!important}.flex-lg-nowrap{flex-wrap:nowrap!important}.flex-lg-wrap-reverse{flex-wrap:wrap-reverse!important}.justify-content-lg-start{justify-content:flex-start!important}.justify-content-lg-end{justify-content:flex-end!important}.justify-content-lg-center{justify-content:center!important}.justify-content-lg-between{justify-content:space-between!important}.justify-content-lg-around{justify-content:space-around!important}.justify-content-lg-evenly{justify-content:space-evenly!important}.align-items-lg-start{align-items:flex-start!important}.align-items-lg-end{align-items:flex-end!important}.align-items-lg-center{align-items:center!important}.align-items-lg-baseline{align-items:baseline!important}.align-items-lg-stretch{align-items:stretch!important}.align-content-lg-start{align-content:flex-start!important}.align-content-lg-end{align-content:flex-end!important}.align-content-lg-center{align-content:center!important}.align-content-lg-between{align-content:space-between!important}.align-content-lg-around{align-content:space-around!important}.align-content-lg-stretch{align-content:stretch!important}.align-self-lg-auto{align-self:auto!important}.align-self-lg-start{align-self:flex-start!important}.align-self-lg-end{align-self:flex-end!important}.align-self-lg-center{align-self:center!important}.align-self-lg-baseline{align-self:baseline!important}.align-self-lg-stretch{align-self:stretch!important}.order-lg-first{order:-1!important}.order-lg-0{order:0!important}.order-lg-1{order:1!important}.order-lg-2{order:2!important}.order-lg-3{order:3!important}.order-lg-4{order:4!important}.order-lg-5{order:5!important}.order-lg-last{order:6!important}.m-lg-0{margin:0!important}.m-lg-1{margin:.25rem!important}.m-lg-2{margin:.5rem!important}.m-lg-3{margin:1rem!important}.m-lg-4{margin:1.5rem!important}.m-lg-5{margin:3rem!important}.m-lg-auto{margin:auto!important}.mx-lg-0{margin-right:0!important;margin-left:0!important}.mx-lg-1{margin-right:.25rem!important;margin-left:.25rem!important}.mx-lg-2{margin-right:.5rem!important;margin-left:.5rem!important}.mx-lg-3{margin-right:1rem!important;margin-left:1rem!important}.mx-lg-4{margin-right:1.5rem!important;margin-left:1.5rem!important}.mx-lg-5{margin-right:3rem!important;margin-left:3rem!important}.mx-lg-auto{margin-right:auto!important;margin-left:auto!important}.my-lg-0{margin-top:0!important;margin-bottom:0!important}.my-lg-1{margin-top:.25rem!important;margin-bottom:.25rem!important}.my-lg-2{margin-top:.5rem!important;margin-bottom:.5rem!important}.my-lg-3{margin-top:1rem!important;margin-bottom:1rem!important}.my-lg-4{margin-top:1.5rem!important;margin-bottom:1.5rem!important}.my-lg-5{margin-top:3rem!important;margin-bottom:3rem!important}.my-lg-auto{margin-top:auto!important;margin-bottom:auto!important}.mt-lg-0{margin-top:0!important}.mt-lg-1{margin-top:.25rem!important}.mt-lg-2{margin-top:.5rem!important}.mt-lg-3{margin-top:1rem!important}.mt-lg-4{margin-top:1.5rem!important}.mt-lg-5{margin-top:3rem!important}.mt-lg-auto{margin-top:auto!important}.me-lg-0{margin-right:0!important}.me-lg-1{margin-right:.25rem!important}.me-lg-2{margin-right:.5rem!important}.me-lg-3{margin-right:1rem!important}.me-lg-4{margin-right:1.5rem!important}.me-lg-5{margin-right:3rem!important}.me-lg-auto{margin-right:auto!important}.mb-lg-0{margin-bottom:0!important}.mb-lg-1{margin-bottom:.25rem!important}.mb-lg-2{margin-bottom:.5rem!important}.mb-lg-3{margin-bottom:1rem!important}.mb-lg-4{margin-bottom:1.5rem!important}.mb-lg-5{margin-bottom:3rem!important}.mb-lg-auto{margin-bottom:auto!important}.ms-lg-0{margin-left:0!important}.ms-lg-1{margin-left:.25rem!important}.ms-lg-2{margin-left:.5rem!important}.ms-lg-3{margin-left:1rem!important}.ms-lg-4{margin-left:1.5rem!important}.ms-lg-5{margin-left:3rem!important}.ms-lg-auto{margin-left:auto!important}.p-lg-0{padding:0!important}.p-lg-1{padding:.25rem!important}.p-lg-2{padding:.5rem!important}.p-lg-3{padding:1rem!important}.p-lg-4{padding:1.5rem!important}.p-lg-5{padding:3rem!important}.px-lg-0{padding-right:0!important;padding-left:0!important}.px-lg-1{padding-right:.25rem!important;padding-left:.25rem!important}.px-lg-2{padding-right:.5rem!important;padding-left:.5rem!important}.px-lg-3{padding-right:1rem!important;padding-left:1rem!important}.px-lg-4{padding-right:1.5rem!important;padding-left:1.5rem!important}.px-lg-5{padding-right:3rem!important;padding-left:3rem!important}.py-lg-0{padding-top:0!important;padding-bottom:0!important}.py-lg-1{padding-top:.25rem!important;padding-bottom:.25rem!important}.py-lg-2{padding-top:.5rem!important;padding-bottom:.5rem!important}.py-lg-3{padding-top:1rem!important;padding-bottom:1rem!important}.py-lg-4{padding-top:1.5rem!important;padding-bottom:1.5rem!important}.py-lg-5{padding-top:3rem!important;padding-bottom:3rem!important}.pt-lg-0{padding-top:0!important}.pt-lg-1{padding-top:.25rem!important}.pt-lg-2{padding-top:.5rem!important}.pt-lg-3{padding-top:1rem!important}.pt-lg-4{padding-top:1.5rem!important}.pt-lg-5{padding-top:3rem!important}.pe-lg-0{padding-right:0!important}.pe-lg-1{padding-right:.25rem!important}.pe-lg-2{padding-right:.5rem!important}.pe-lg-3{padding-right:1rem!important}.pe-lg-4{padding-right:1.5rem!important}.pe-lg-5{padding-right:3rem!important}.pb-lg-0{padding-bottom:0!important}.pb-lg-1{padding-bottom:.25rem!important}.pb-lg-2{padding-bottom:.5rem!important}.pb-lg-3{padding-bottom:1rem!important}.pb-lg-4{padding-bottom:1.5rem!important}.pb-lg-5{padding-bottom:3rem!important}.ps-lg-0{padding-left:0!important}.ps-lg-1{padding-left:.25rem!important}.ps-lg-2{padding-left:.5rem!important}.ps-lg-3{padding-left:1rem!important}.ps-lg-4{padding-left:1.5rem!important}.ps-lg-5{padding-left:3rem!important}.gap-lg-0{gap:0!important}.gap-lg-1{gap:.25rem!important}.gap-lg-2{gap:.5rem!important}.gap-lg-3{gap:1rem!important}.gap-lg-4{gap:1.5rem!important}.gap-lg-5{gap:3rem!important}.row-gap-lg-0{row-gap:0!important}.row-gap-lg-1{row-gap:.25rem!important}.row-gap-lg-2{row-gap:.5rem!important}.row-gap-lg-3{row-gap:1rem!important}.row-gap-lg-4{row-gap:1.5rem!important}.row-gap-lg-5{row-gap:3rem!important}.column-gap-lg-0{-moz-column-gap:0!important;column-gap:0!important}.column-gap-lg-1{-moz-column-gap:0.25rem!important;column-gap:.25rem!important}.column-gap-lg-2{-moz-column-gap:0.5rem!important;column-gap:.5rem!important}.column-gap-lg-3{-moz-column-gap:1rem!important;column-gap:1rem!important}.column-gap-lg-4{-moz-column-gap:1.5rem!important;column-gap:1.5rem!important}.column-gap-lg-5{-moz-column-gap:3rem!important;column-gap:3rem!important}.text-lg-start{text-align:left!important}.text-lg-end{text-align:right!important}.text-lg-center{text-align:center!important}}@media (min-width:1200px){.float-xl-start{float:left!important}.float-xl-end{float:right!important}.float-xl-none{float:none!important}.object-fit-xl-contain{-o-object-fit:contain!important;object-fit:contain!important}.object-fit-xl-cover{-o-object-fit:cover!important;object-fit:cover!important}.object-fit-xl-fill{-o-object-fit:fill!important;object-fit:fill!important}.object-fit-xl-scale{-o-object-fit:scale-down!important;object-fit:scale-down!important}.object-fit-xl-none{-o-object-fit:none!important;object-fit:none!important}.d-xl-inline{display:inline!important}.d-xl-inline-block{display:inline-block!important}.d-xl-block{display:block!important}.d-xl-grid{display:grid!important}.d-xl-inline-grid{display:inline-grid!important}.d-xl-table{display:table!important}.d-xl-table-row{display:table-row!important}.d-xl-table-cell{display:table-cell!important}.d-xl-flex{display:flex!important}.d-xl-inline-flex{display:inline-flex!important}.d-xl-none{display:none!important}.flex-xl-fill{flex:1 1 auto!important}.flex-xl-row{flex-direction:row!important}.flex-xl-column{flex-direction:column!important}.flex-xl-row-reverse{flex-direction:row-reverse!important}.flex-xl-column-reverse{flex-direction:column-reverse!important}.flex-xl-grow-0{flex-grow:0!important}.flex-xl-grow-1{flex-grow:1!important}.flex-xl-shrink-0{flex-shrink:0!important}.flex-xl-shrink-1{flex-shrink:1!important}.flex-xl-wrap{flex-wrap:wrap!important}.flex-xl-nowrap{flex-wrap:nowrap!important}.flex-xl-wrap-reverse{flex-wrap:wrap-reverse!important}.justify-content-xl-start{justify-content:flex-start!important}.justify-content-xl-end{justify-content:flex-end!important}.justify-content-xl-center{justify-content:center!important}.justify-content-xl-between{justify-content:space-between!important}.justify-content-xl-around{justify-content:space-around!important}.justify-content-xl-evenly{justify-content:space-evenly!important}.align-items-xl-start{align-items:flex-start!important}.align-items-xl-end{align-items:flex-end!important}.align-items-xl-center{align-items:center!important}.align-items-xl-baseline{align-items:baseline!important}.align-items-xl-stretch{align-items:stretch!important}.align-content-xl-start{align-content:flex-start!important}.align-content-xl-end{align-content:flex-end!important}.align-content-xl-center{align-content:center!important}.align-content-xl-between{align-content:space-between!important}.align-content-xl-around{align-content:space-around!important}.align-content-xl-stretch{align-content:stretch!important}.align-self-xl-auto{align-self:auto!important}.align-self-xl-start{align-self:flex-start!important}.align-self-xl-end{align-self:flex-end!important}.align-self-xl-center{align-self:center!important}.align-self-xl-baseline{align-self:baseline!important}.align-self-xl-stretch{align-self:stretch!important}.order-xl-first{order:-1!important}.order-xl-0{order:0!important}.order-xl-1{order:1!important}.order-xl-2{order:2!important}.order-xl-3{order:3!important}.order-xl-4{order:4!important}.order-xl-5{order:5!important}.order-xl-last{order:6!important}.m-xl-0{margin:0!important}.m-xl-1{margin:.25rem!important}.m-xl-2{margin:.5rem!important}.m-xl-3{margin:1rem!important}.m-xl-4{margin:1.5rem!important}.m-xl-5{margin:3rem!important}.m-xl-auto{margin:auto!important}.mx-xl-0{margin-right:0!important;margin-left:0!important}.mx-xl-1{margin-right:.25rem!important;margin-left:.25rem!important}.mx-xl-2{margin-right:.5rem!important;margin-left:.5rem!important}.mx-xl-3{margin-right:1rem!important;margin-left:1rem!important}.mx-xl-4{margin-right:1.5rem!important;margin-left:1.5rem!important}.mx-xl-5{margin-right:3rem!important;margin-left:3rem!important}.mx-xl-auto{margin-right:auto!important;margin-left:auto!important}.my-xl-0{margin-top:0!important;margin-bottom:0!important}.my-xl-1{margin-top:.25rem!important;margin-bottom:.25rem!important}.my-xl-2{margin-top:.5rem!important;margin-bottom:.5rem!important}.my-xl-3{margin-top:1rem!important;margin-bottom:1rem!important}.my-xl-4{margin-top:1.5rem!important;margin-bottom:1.5rem!important}.my-xl-5{margin-top:3rem!important;margin-bottom:3rem!important}.my-xl-auto{margin-top:auto!important;margin-bottom:auto!important}.mt-xl-0{margin-top:0!important}.mt-xl-1{margin-top:.25rem!important}.mt-xl-2{margin-top:.5rem!important}.mt-xl-3{margin-top:1rem!important}.mt-xl-4{margin-top:1.5rem!important}.mt-xl-5{margin-top:3rem!important}.mt-xl-auto{margin-top:auto!important}.me-xl-0{margin-right:0!important}.me-xl-1{margin-right:.25rem!important}.me-xl-2{margin-right:.5rem!important}.me-xl-3{margin-right:1rem!important}.me-xl-4{margin-right:1.5rem!important}.me-xl-5{margin-right:3rem!important}.me-xl-auto{margin-right:auto!important}.mb-xl-0{margin-bottom:0!important}.mb-xl-1{margin-bottom:.25rem!important}.mb-xl-2{margin-bottom:.5rem!important}.mb-xl-3{margin-bottom:1rem!important}.mb-xl-4{margin-bottom:1.5rem!important}.mb-xl-5{margin-bottom:3rem!important}.mb-xl-auto{margin-bottom:auto!important}.ms-xl-0{margin-left:0!important}.ms-xl-1{margin-left:.25rem!important}.ms-xl-2{margin-left:.5rem!important}.ms-xl-3{margin-left:1rem!important}.ms-xl-4{margin-left:1.5rem!important}.ms-xl-5{margin-left:3rem!important}.ms-xl-auto{margin-left:auto!important}.p-xl-0{padding:0!important}.p-xl-1{padding:.25rem!important}.p-xl-2{padding:.5rem!important}.p-xl-3{padding:1rem!important}.p-xl-4{padding:1.5rem!important}.p-xl-5{padding:3rem!important}.px-xl-0{padding-right:0!important;padding-left:0!important}.px-xl-1{padding-right:.25rem!important;padding-left:.25rem!important}.px-xl-2{padding-right:.5rem!important;padding-left:.5rem!important}.px-xl-3{padding-right:1rem!important;padding-left:1rem!important}.px-xl-4{padding-right:1.5rem!important;padding-left:1.5rem!important}.px-xl-5{padding-right:3rem!important;padding-left:3rem!important}.py-xl-0{padding-top:0!important;padding-bottom:0!important}.py-xl-1{padding-top:.25rem!important;padding-bottom:.25rem!important}.py-xl-2{padding-top:.5rem!important;padding-bottom:.5rem!important}.py-xl-3{padding-top:1rem!important;padding-bottom:1rem!important}.py-xl-4{padding-top:1.5rem!important;padding-bottom:1.5rem!important}.py-xl-5{padding-top:3rem!important;padding-bottom:3rem!important}.pt-xl-0{padding-top:0!important}.pt-xl-1{padding-top:.25rem!important}.pt-xl-2{padding-top:.5rem!important}.pt-xl-3{padding-top:1rem!important}.pt-xl-4{padding-top:1.5rem!important}.pt-xl-5{padding-top:3rem!important}.pe-xl-0{padding-right:0!important}.pe-xl-1{padding-right:.25rem!important}.pe-xl-2{padding-right:.5rem!important}.pe-xl-3{padding-right:1rem!important}.pe-xl-4{padding-right:1.5rem!important}.pe-xl-5{padding-right:3rem!important}.pb-xl-0{padding-bottom:0!important}.pb-xl-1{padding-bottom:.25rem!important}.pb-xl-2{padding-bottom:.5rem!important}.pb-xl-3{padding-bottom:1rem!important}.pb-xl-4{padding-bottom:1.5rem!important}.pb-xl-5{padding-bottom:3rem!important}.ps-xl-0{padding-left:0!important}.ps-xl-1{padding-left:.25rem!important}.ps-xl-2{padding-left:.5rem!important}.ps-xl-3{padding-left:1rem!important}.ps-xl-4{padding-left:1.5rem!important}.ps-xl-5{padding-left:3rem!important}.gap-xl-0{gap:0!important}.gap-xl-1{gap:.25rem!important}.gap-xl-2{gap:.5rem!important}.gap-xl-3{gap:1rem!important}.gap-xl-4{gap:1.5rem!important}.gap-xl-5{gap:3rem!important}.row-gap-xl-0{row-gap:0!important}.row-gap-xl-1{row-gap:.25rem!important}.row-gap-xl-2{row-gap:.5rem!important}.row-gap-xl-3{row-gap:1rem!important}.row-gap-xl-4{row-gap:1.5rem!important}.row-gap-xl-5{row-gap:3rem!important}.column-gap-xl-0{-moz-column-gap:0!important;column-gap:0!important}.column-gap-xl-1{-moz-column-gap:0.25rem!important;column-gap:.25rem!important}.column-gap-xl-2{-moz-column-gap:0.5rem!important;column-gap:.5rem!important}.column-gap-xl-3{-moz-column-gap:1rem!important;column-gap:1rem!important}.column-gap-xl-4{-moz-column-gap:1.5rem!important;column-gap:1.5rem!important}.column-gap-xl-5{-moz-column-gap:3rem!important;column-gap:3rem!important}.text-xl-start{text-align:left!important}.text-xl-end{text-align:right!important}.text-xl-center{text-align:center!important}}@media (min-width:1400px){.float-xxl-start{float:left!important}.float-xxl-end{float:right!important}.float-xxl-none{float:none!important}.object-fit-xxl-contain{-o-object-fit:contain!important;object-fit:contain!important}.object-fit-xxl-cover{-o-object-fit:cover!important;object-fit:cover!important}.object-fit-xxl-fill{-o-object-fit:fill!important;object-fit:fill!important}.object-fit-xxl-scale{-o-object-fit:scale-down!important;object-fit:scale-down!important}.object-fit-xxl-none{-o-object-fit:none!important;object-fit:none!important}.d-xxl-inline{display:inline!important}.d-xxl-inline-block{display:inline-block!important}.d-xxl-block{display:block!important}.d-xxl-grid{display:grid!important}.d-xxl-inline-grid{display:inline-grid!important}.d-xxl-table{display:table!important}.d-xxl-table-row{display:table-row!important}.d-xxl-table-cell{display:table-cell!important}.d-xxl-flex{display:flex!important}.d-xxl-inline-flex{display:inline-flex!important}.d-xxl-none{display:none!important}.flex-xxl-fill{flex:1 1 auto!important}.flex-xxl-row{flex-direction:row!important}.flex-xxl-column{flex-direction:column!important}.flex-xxl-row-reverse{flex-direction:row-reverse!important}.flex-xxl-column-reverse{flex-direction:column-reverse!important}.flex-xxl-grow-0{flex-grow:0!important}.flex-xxl-grow-1{flex-grow:1!important}.flex-xxl-shrink-0{flex-shrink:0!important}.flex-xxl-shrink-1{flex-shrink:1!important}.flex-xxl-wrap{flex-wrap:wrap!important}.flex-xxl-nowrap{flex-wrap:nowrap!important}.flex-xxl-wrap-reverse{flex-wrap:wrap-reverse!important}.justify-content-xxl-start{justify-content:flex-start!important}.justify-content-xxl-end{justify-content:flex-end!important}.justify-content-xxl-center{justify-content:center!important}.justify-content-xxl-between{justify-content:space-between!important}.justify-content-xxl-around{justify-content:space-around!important}.justify-content-xxl-evenly{justify-content:space-evenly!important}.align-items-xxl-start{align-items:flex-start!important}.align-items-xxl-end{align-items:flex-end!important}.align-items-xxl-center{align-items:center!important}.align-items-xxl-baseline{align-items:baseline!important}.align-items-xxl-stretch{align-items:stretch!important}.align-content-xxl-start{align-content:flex-start!important}.align-content-xxl-end{align-content:flex-end!important}.align-content-xxl-center{align-content:center!important}.align-content-xxl-between{align-content:space-between!important}.align-content-xxl-around{align-content:space-around!important}.align-content-xxl-stretch{align-content:stretch!important}.align-self-xxl-auto{align-self:auto!important}.align-self-xxl-start{align-self:flex-start!important}.align-self-xxl-end{align-self:flex-end!important}.align-self-xxl-center{align-self:center!important}.align-self-xxl-baseline{align-self:baseline!important}.align-self-xxl-stretch{align-self:stretch!important}.order-xxl-first{order:-1!important}.order-xxl-0{order:0!important}.order-xxl-1{order:1!important}.order-xxl-2{order:2!important}.order-xxl-3{order:3!important}.order-xxl-4{order:4!important}.order-xxl-5{order:5!important}.order-xxl-last{order:6!important}.m-xxl-0{margin:0!important}.m-xxl-1{margin:.25rem!important}.m-xxl-2{margin:.5rem!important}.m-xxl-3{margin:1rem!important}.m-xxl-4{margin:1.5rem!important}.m-xxl-5{margin:3rem!important}.m-xxl-auto{margin:auto!important}.mx-xxl-0{margin-right:0!important;margin-left:0!important}.mx-xxl-1{margin-right:.25rem!important;margin-left:.25rem!important}.mx-xxl-2{margin-right:.5rem!important;margin-left:.5rem!important}.mx-xxl-3{margin-right:1rem!important;margin-left:1rem!important}.mx-xxl-4{margin-right:1.5rem!important;margin-left:1.5rem!important}.mx-xxl-5{margin-right:3rem!important;margin-left:3rem!important}.mx-xxl-auto{margin-right:auto!important;margin-left:auto!important}.my-xxl-0{margin-top:0!important;margin-bottom:0!important}.my-xxl-1{margin-top:.25rem!important;margin-bottom:.25rem!important}.my-xxl-2{margin-top:.5rem!important;margin-bottom:.5rem!important}.my-xxl-3{margin-top:1rem!important;margin-bottom:1rem!important}.my-xxl-4{margin-top:1.5rem!important;margin-bottom:1.5rem!important}.my-xxl-5{margin-top:3rem!important;margin-bottom:3rem!important}.my-xxl-auto{margin-top:auto!important;margin-bottom:auto!important}.mt-xxl-0{margin-top:0!important}.mt-xxl-1{margin-top:.25rem!important}.mt-xxl-2{margin-top:.5rem!important}.mt-xxl-3{margin-top:1rem!important}.mt-xxl-4{margin-top:1.5rem!important}.mt-xxl-5{margin-top:3rem!important}.mt-xxl-auto{margin-top:auto!important}.me-xxl-0{margin-right:0!important}.me-xxl-1{margin-right:.25rem!important}.me-xxl-2{margin-right:.5rem!important}.me-xxl-3{margin-right:1rem!important}.me-xxl-4{margin-right:1.5rem!important}.me-xxl-5{margin-right:3rem!important}.me-xxl-auto{margin-right:auto!important}.mb-xxl-0{margin-bottom:0!important}.mb-xxl-1{margin-bottom:.25rem!important}.mb-xxl-2{margin-bottom:.5rem!important}.mb-xxl-3{margin-bottom:1rem!important}.mb-xxl-4{margin-bottom:1.5rem!important}.mb-xxl-5{margin-bottom:3rem!important}.mb-xxl-auto{margin-bottom:auto!important}.ms-xxl-0{margin-left:0!important}.ms-xxl-1{margin-left:.25rem!important}.ms-xxl-2{margin-left:.5rem!important}.ms-xxl-3{margin-left:1rem!important}.ms-xxl-4{margin-left:1.5rem!important}.ms-xxl-5{margin-left:3rem!important}.ms-xxl-auto{margin-left:auto!important}.p-xxl-0{padding:0!important}.p-xxl-1{padding:.25rem!important}.p-xxl-2{padding:.5rem!important}.p-xxl-3{padding:1rem!important}.p-xxl-4{padding:1.5rem!important}.p-xxl-5{padding:3rem!important}.px-xxl-0{padding-right:0!important;padding-left:0!important}.px-xxl-1{padding-right:.25rem!important;padding-left:.25rem!important}.px-xxl-2{padding-right:.5rem!important;padding-left:.5rem!important}.px-xxl-3{padding-right:1rem!important;padding-left:1rem!important}.px-xxl-4{padding-right:1.5rem!important;padding-left:1.5rem!important}.px-xxl-5{padding-right:3rem!important;padding-left:3rem!important}.py-xxl-0{padding-top:0!important;padding-bottom:0!important}.py-xxl-1{padding-top:.25rem!important;padding-bottom:.25rem!important}.py-xxl-2{padding-top:.5rem!important;padding-bottom:.5rem!important}.py-xxl-3{padding-top:1rem!important;padding-bottom:1rem!important}.py-xxl-4{padding-top:1.5rem!important;padding-bottom:1.5rem!important}.py-xxl-5{padding-top:3rem!important;padding-bottom:3rem!important}.pt-xxl-0{padding-top:0!important}.pt-xxl-1{padding-top:.25rem!important}.pt-xxl-2{padding-top:.5rem!important}.pt-xxl-3{padding-top:1rem!important}.pt-xxl-4{padding-top:1.5rem!important}.pt-xxl-5{padding-top:3rem!important}.pe-xxl-0{padding-right:0!important}.pe-xxl-1{padding-right:.25rem!important}.pe-xxl-2{padding-right:.5rem!important}.pe-xxl-3{padding-right:1rem!important}.pe-xxl-4{padding-right:1.5rem!important}.pe-xxl-5{padding-right:3rem!important}.pb-xxl-0{padding-bottom:0!important}.pb-xxl-1{padding-bottom:.25rem!important}.pb-xxl-2{padding-bottom:.5rem!important}.pb-xxl-3{padding-bottom:1rem!important}.pb-xxl-4{padding-bottom:1.5rem!important}.pb-xxl-5{padding-bottom:3rem!important}.ps-xxl-0{padding-left:0!important}.ps-xxl-1{padding-left:.25rem!important}.ps-xxl-2{padding-left:.5rem!important}.ps-xxl-3{padding-left:1rem!important}.ps-xxl-4{padding-left:1.5rem!important}.ps-xxl-5{padding-left:3rem!important}.gap-xxl-0{gap:0!important}.gap-xxl-1{gap:.25rem!important}.gap-xxl-2{gap:.5rem!important}.gap-xxl-3{gap:1rem!important}.gap-xxl-4{gap:1.5rem!important}.gap-xxl-5{gap:3rem!important}.row-gap-xxl-0{row-gap:0!important}.row-gap-xxl-1{row-gap:.25rem!important}.row-gap-xxl-2{row-gap:.5rem!important}.row-gap-xxl-3{row-gap:1rem!important}.row-gap-xxl-4{row-gap:1.5rem!important}.row-gap-xxl-5{row-gap:3rem!important}.column-gap-xxl-0{-moz-column-gap:0!important;column-gap:0!important}.column-gap-xxl-1{-moz-column-gap:0.25rem!important;column-gap:.25rem!important}.column-gap-xxl-2{-moz-column-gap:0.5rem!important;column-gap:.5rem!important}.column-gap-xxl-3{-moz-column-gap:1rem!important;column-gap:1rem!important}.column-gap-xxl-4{-moz-column-gap:1.5rem!important;column-gap:1.5rem!important}.column-gap-xxl-5{-moz-column-gap:3rem!important;column-gap:3rem!important}.text-xxl-start{text-align:left!important}.text-xxl-end{text-align:right!important}.text-xxl-center{text-align:center!important}}@media (min-width:1200px){.fs-1{font-size:2.5rem!important}.fs-2{font-size:2rem!important}.fs-3{font-size:1.75rem!important}.fs-4{font-size:1.5rem!important}}@media print{.d-print-inline{display:inline!important}.d-print-inline-block{display:inline-block!important}.d-print-block{display:block!important}.d-print-grid{display:grid!important}.d-print-inline-grid{display:inline-grid!important}.d-print-table{display:table!important}.d-print-table-row{display:table-row!important}.d-print-table-cell{display:table-cell!important}.d-print-flex{display:flex!important}.d-print-inline-flex{display:inline-flex!important}.d-print-none{display:none!important}}
+/*# sourceMappingURL=bootstrap.min.css.map */
\ No newline at end of file
diff --git a/oxAuth/Server/src/main/webapp/stylesheet/ciba.css b/oxAuth/Server/src/main/webapp/stylesheet/ciba.css
new file mode 100644
index 00000000..5e194c24
--- /dev/null
+++ b/oxAuth/Server/src/main/webapp/stylesheet/ciba.css
@@ -0,0 +1,38 @@
+html, body {
+    font-family: 'Roboto', 'Helvetica', sans-serif;
+}
+a {
+    text-decoration: none;
+}
+li a {
+    text-decoration: underline;
+    color: #0288d1;
+}
+.mdl-grid {
+    max-width: 1024px;
+    margin: auto;
+}
+.mdl-layout__header-row {
+    padding: 0;
+}
+.quickstart-user-details-container {
+    margin-top: 20px;
+    line-height: 25px;
+}
+#quickstart-sign-in-status {
+    font-weight: bold;
+}
+pre {
+    overflow-x: scroll;
+    line-height: 18px;
+}
+code {
+    white-space: pre-wrap;
+    word-break: break-all;
+}
+h3 {
+    background: url('/img/logo_white.png') no-repeat;
+    background-size: 100px;
+    padding-left: 120px;
+    color: white;
+}
\ No newline at end of file
diff --git a/oxAuth/Server/src/main/webapp/stylesheet/font-awesome.css b/oxAuth/Server/src/main/webapp/stylesheet/font-awesome.css
new file mode 100644
index 00000000..ee906a81
--- /dev/null
+++ b/oxAuth/Server/src/main/webapp/stylesheet/font-awesome.css
@@ -0,0 +1,2337 @@
+/*!
+ *  Font Awesome 4.7.0 by @davegandy - http://fontawesome.io - @fontawesome
+ *  License - http://fontawesome.io/license (Font: SIL OFL 1.1, CSS: MIT License)
+ */
+/* FONT PATH
+ * -------------------------- */
+@font-face {
+  font-family: 'FontAwesome';
+  src: url('../fonts/fontawesome-webfont.eot?v=4.7.0');
+  src: url('../fonts/fontawesome-webfont.eot?#iefix&v=4.7.0') format('embedded-opentype'), url('../fonts/fontawesome-webfont.woff2?v=4.7.0') format('woff2'), url('../fonts/fontawesome-webfont.woff?v=4.7.0') format('woff'), url('../fonts/fontawesome-webfont.ttf?v=4.7.0') format('truetype'), url('../fonts/fontawesome-webfont.svg?v=4.7.0#fontawesomeregular') format('svg');
+  font-weight: normal;
+  font-style: normal;
+}
+.fa {
+  display: inline-block;
+  font: normal normal normal 14px/1 FontAwesome;
+  font-size: inherit;
+  text-rendering: auto;
+  -webkit-font-smoothing: antialiased;
+  -moz-osx-font-smoothing: grayscale;
+}
+/* makes the font 33% larger relative to the icon container */
+.fa-lg {
+  font-size: 1.33333333em;
+  line-height: 0.75em;
+  vertical-align: -15%;
+}
+.fa-2x {
+  font-size: 2em;
+}
+.fa-3x {
+  font-size: 3em;
+}
+.fa-4x {
+  font-size: 4em;
+}
+.fa-5x {
+  font-size: 5em;
+}
+.fa-fw {
+  width: 1.28571429em;
+  text-align: center;
+}
+.fa-ul {
+  padding-left: 0;
+  margin-left: 2.14285714em;
+  list-style-type: none;
+}
+.fa-ul > li {
+  position: relative;
+}
+.fa-li {
+  position: absolute;
+  left: -2.14285714em;
+  width: 2.14285714em;
+  top: 0.14285714em;
+  text-align: center;
+}
+.fa-li.fa-lg {
+  left: -1.85714286em;
+}
+.fa-border {
+  padding: .2em .25em .15em;
+  border: solid 0.08em #eeeeee;
+  border-radius: .1em;
+}
+.fa-pull-left {
+  float: left;
+}
+.fa-pull-right {
+  float: right;
+}
+.fa.fa-pull-left {
+  margin-right: .3em;
+}
+.fa.fa-pull-right {
+  margin-left: .3em;
+}
+/* Deprecated as of 4.4.0 */
+.pull-right {
+  float: right;
+}
+.pull-left {
+  float: left;
+}
+.fa.pull-left {
+  margin-right: .3em;
+}
+.fa.pull-right {
+  margin-left: .3em;
+}
+.fa-spin {
+  -webkit-animation: fa-spin 2s infinite linear;
+  animation: fa-spin 2s infinite linear;
+}
+.fa-pulse {
+  -webkit-animation: fa-spin 1s infinite steps(8);
+  animation: fa-spin 1s infinite steps(8);
+}
+@-webkit-keyframes fa-spin {
+  0% {
+    -webkit-transform: rotate(0deg);
+    transform: rotate(0deg);
+  }
+  100% {
+    -webkit-transform: rotate(359deg);
+    transform: rotate(359deg);
+  }
+}
+@keyframes fa-spin {
+  0% {
+    -webkit-transform: rotate(0deg);
+    transform: rotate(0deg);
+  }
+  100% {
+    -webkit-transform: rotate(359deg);
+    transform: rotate(359deg);
+  }
+}
+.fa-rotate-90 {
+  -ms-filter: "progid:DXImageTransform.Microsoft.BasicImage(rotation=1)";
+  -webkit-transform: rotate(90deg);
+  -ms-transform: rotate(90deg);
+  transform: rotate(90deg);
+}
+.fa-rotate-180 {
+  -ms-filter: "progid:DXImageTransform.Microsoft.BasicImage(rotation=2)";
+  -webkit-transform: rotate(180deg);
+  -ms-transform: rotate(180deg);
+  transform: rotate(180deg);
+}
+.fa-rotate-270 {
+  -ms-filter: "progid:DXImageTransform.Microsoft.BasicImage(rotation=3)";
+  -webkit-transform: rotate(270deg);
+  -ms-transform: rotate(270deg);
+  transform: rotate(270deg);
+}
+.fa-flip-horizontal {
+  -ms-filter: "progid:DXImageTransform.Microsoft.BasicImage(rotation=0, mirror=1)";
+  -webkit-transform: scale(-1, 1);
+  -ms-transform: scale(-1, 1);
+  transform: scale(-1, 1);
+}
+.fa-flip-vertical {
+  -ms-filter: "progid:DXImageTransform.Microsoft.BasicImage(rotation=2, mirror=1)";
+  -webkit-transform: scale(1, -1);
+  -ms-transform: scale(1, -1);
+  transform: scale(1, -1);
+}
+:root .fa-rotate-90,
+:root .fa-rotate-180,
+:root .fa-rotate-270,
+:root .fa-flip-horizontal,
+:root .fa-flip-vertical {
+  filter: none;
+}
+.fa-stack {
+  position: relative;
+  display: inline-block;
+  width: 2em;
+  height: 2em;
+  line-height: 2em;
+  vertical-align: middle;
+}
+.fa-stack-1x,
+.fa-stack-2x {
+  position: absolute;
+  left: 0;
+  width: 100%;
+  text-align: center;
+}
+.fa-stack-1x {
+  line-height: inherit;
+}
+.fa-stack-2x {
+  font-size: 2em;
+}
+.fa-inverse {
+  color: #ffffff;
+}
+/* Font Awesome uses the Unicode Private Use Area (PUA) to ensure screen
+   readers do not read off random characters that represent icons */
+.fa-glass:before {
+  content: "\f000";
+}
+.fa-music:before {
+  content: "\f001";
+}
+.fa-search:before {
+  content: "\f002";
+}
+.fa-envelope-o:before {
+  content: "\f003";
+}
+.fa-heart:before {
+  content: "\f004";
+}
+.fa-star:before {
+  content: "\f005";
+}
+.fa-star-o:before {
+  content: "\f006";
+}
+.fa-user:before {
+  content: "\f007";
+}
+.fa-film:before {
+  content: "\f008";
+}
+.fa-th-large:before {
+  content: "\f009";
+}
+.fa-th:before {
+  content: "\f00a";
+}
+.fa-th-list:before {
+  content: "\f00b";
+}
+.fa-check:before {
+  content: "\f00c";
+}
+.fa-remove:before,
+.fa-close:before,
+.fa-times:before {
+  content: "\f00d";
+}
+.fa-search-plus:before {
+  content: "\f00e";
+}
+.fa-search-minus:before {
+  content: "\f010";
+}
+.fa-power-off:before {
+  content: "\f011";
+}
+.fa-signal:before {
+  content: "\f012";
+}
+.fa-gear:before,
+.fa-cog:before {
+  content: "\f013";
+}
+.fa-trash-o:before {
+  content: "\f014";
+}
+.fa-home:before {
+  content: "\f015";
+}
+.fa-file-o:before {
+  content: "\f016";
+}
+.fa-clock-o:before {
+  content: "\f017";
+}
+.fa-road:before {
+  content: "\f018";
+}
+.fa-download:before {
+  content: "\f019";
+}
+.fa-arrow-circle-o-down:before {
+  content: "\f01a";
+}
+.fa-arrow-circle-o-up:before {
+  content: "\f01b";
+}
+.fa-inbox:before {
+  content: "\f01c";
+}
+.fa-play-circle-o:before {
+  content: "\f01d";
+}
+.fa-rotate-right:before,
+.fa-repeat:before {
+  content: "\f01e";
+}
+.fa-refresh:before {
+  content: "\f021";
+}
+.fa-list-alt:before {
+  content: "\f022";
+}
+.fa-lock:before {
+  content: "\f023";
+}
+.fa-flag:before {
+  content: "\f024";
+}
+.fa-headphones:before {
+  content: "\f025";
+}
+.fa-volume-off:before {
+  content: "\f026";
+}
+.fa-volume-down:before {
+  content: "\f027";
+}
+.fa-volume-up:before {
+  content: "\f028";
+}
+.fa-qrcode:before {
+  content: "\f029";
+}
+.fa-barcode:before {
+  content: "\f02a";
+}
+.fa-tag:before {
+  content: "\f02b";
+}
+.fa-tags:before {
+  content: "\f02c";
+}
+.fa-book:before {
+  content: "\f02d";
+}
+.fa-bookmark:before {
+  content: "\f02e";
+}
+.fa-print:before {
+  content: "\f02f";
+}
+.fa-camera:before {
+  content: "\f030";
+}
+.fa-font:before {
+  content: "\f031";
+}
+.fa-bold:before {
+  content: "\f032";
+}
+.fa-italic:before {
+  content: "\f033";
+}
+.fa-text-height:before {
+  content: "\f034";
+}
+.fa-text-width:before {
+  content: "\f035";
+}
+.fa-align-left:before {
+  content: "\f036";
+}
+.fa-align-center:before {
+  content: "\f037";
+}
+.fa-align-right:before {
+  content: "\f038";
+}
+.fa-align-justify:before {
+  content: "\f039";
+}
+.fa-list:before {
+  content: "\f03a";
+}
+.fa-dedent:before,
+.fa-outdent:before {
+  content: "\f03b";
+}
+.fa-indent:before {
+  content: "\f03c";
+}
+.fa-video-camera:before {
+  content: "\f03d";
+}
+.fa-photo:before,
+.fa-image:before,
+.fa-picture-o:before {
+  content: "\f03e";
+}
+.fa-pencil:before {
+  content: "\f040";
+}
+.fa-map-marker:before {
+  content: "\f041";
+}
+.fa-adjust:before {
+  content: "\f042";
+}
+.fa-tint:before {
+  content: "\f043";
+}
+.fa-edit:before,
+.fa-pencil-square-o:before {
+  content: "\f044";
+}
+.fa-share-square-o:before {
+  content: "\f045";
+}
+.fa-check-square-o:before {
+  content: "\f046";
+}
+.fa-arrows:before {
+  content: "\f047";
+}
+.fa-step-backward:before {
+  content: "\f048";
+}
+.fa-fast-backward:before {
+  content: "\f049";
+}
+.fa-backward:before {
+  content: "\f04a";
+}
+.fa-play:before {
+  content: "\f04b";
+}
+.fa-pause:before {
+  content: "\f04c";
+}
+.fa-stop:before {
+  content: "\f04d";
+}
+.fa-forward:before {
+  content: "\f04e";
+}
+.fa-fast-forward:before {
+  content: "\f050";
+}
+.fa-step-forward:before {
+  content: "\f051";
+}
+.fa-eject:before {
+  content: "\f052";
+}
+.fa-chevron-left:before {
+  content: "\f053";
+}
+.fa-chevron-right:before {
+  content: "\f054";
+}
+.fa-plus-circle:before {
+  content: "\f055";
+}
+.fa-minus-circle:before {
+  content: "\f056";
+}
+.fa-times-circle:before {
+  content: "\f057";
+}
+.fa-check-circle:before {
+  content: "\f058";
+}
+.fa-question-circle:before {
+  content: "\f059";
+}
+.fa-info-circle:before {
+  content: "\f05a";
+}
+.fa-crosshairs:before {
+  content: "\f05b";
+}
+.fa-times-circle-o:before {
+  content: "\f05c";
+}
+.fa-check-circle-o:before {
+  content: "\f05d";
+}
+.fa-ban:before {
+  content: "\f05e";
+}
+.fa-arrow-left:before {
+  content: "\f060";
+}
+.fa-arrow-right:before {
+  content: "\f061";
+}
+.fa-arrow-up:before {
+  content: "\f062";
+}
+.fa-arrow-down:before {
+  content: "\f063";
+}
+.fa-mail-forward:before,
+.fa-share:before {
+  content: "\f064";
+}
+.fa-expand:before {
+  content: "\f065";
+}
+.fa-compress:before {
+  content: "\f066";
+}
+.fa-plus:before {
+  content: "\f067";
+}
+.fa-minus:before {
+  content: "\f068";
+}
+.fa-asterisk:before {
+  content: "\f069";
+}
+.fa-exclamation-circle:before {
+  content: "\f06a";
+}
+.fa-gift:before {
+  content: "\f06b";
+}
+.fa-leaf:before {
+  content: "\f06c";
+}
+.fa-fire:before {
+  content: "\f06d";
+}
+.fa-eye:before {
+  content: "\f06e";
+}
+.fa-eye-slash:before {
+  content: "\f070";
+}
+.fa-warning:before,
+.fa-exclamation-triangle:before {
+  content: "\f071";
+}
+.fa-plane:before {
+  content: "\f072";
+}
+.fa-calendar:before {
+  content: "\f073";
+}
+.fa-random:before {
+  content: "\f074";
+}
+.fa-comment:before {
+  content: "\f075";
+}
+.fa-magnet:before {
+  content: "\f076";
+}
+.fa-chevron-up:before {
+  content: "\f077";
+}
+.fa-chevron-down:before {
+  content: "\f078";
+}
+.fa-retweet:before {
+  content: "\f079";
+}
+.fa-shopping-cart:before {
+  content: "\f07a";
+}
+.fa-folder:before {
+  content: "\f07b";
+}
+.fa-folder-open:before {
+  content: "\f07c";
+}
+.fa-arrows-v:before {
+  content: "\f07d";
+}
+.fa-arrows-h:before {
+  content: "\f07e";
+}
+.fa-bar-chart-o:before,
+.fa-bar-chart:before {
+  content: "\f080";
+}
+.fa-twitter-square:before {
+  content: "\f081";
+}
+.fa-facebook-square:before {
+  content: "\f082";
+}
+.fa-camera-retro:before {
+  content: "\f083";
+}
+.fa-key:before {
+  content: "\f084";
+}
+.fa-gears:before,
+.fa-cogs:before {
+  content: "\f085";
+}
+.fa-comments:before {
+  content: "\f086";
+}
+.fa-thumbs-o-up:before {
+  content: "\f087";
+}
+.fa-thumbs-o-down:before {
+  content: "\f088";
+}
+.fa-star-half:before {
+  content: "\f089";
+}
+.fa-heart-o:before {
+  content: "\f08a";
+}
+.fa-sign-out:before {
+  content: "\f08b";
+}
+.fa-linkedin-square:before {
+  content: "\f08c";
+}
+.fa-thumb-tack:before {
+  content: "\f08d";
+}
+.fa-external-link:before {
+  content: "\f08e";
+}
+.fa-sign-in:before {
+  content: "\f090";
+}
+.fa-trophy:before {
+  content: "\f091";
+}
+.fa-github-square:before {
+  content: "\f092";
+}
+.fa-upload:before {
+  content: "\f093";
+}
+.fa-lemon-o:before {
+  content: "\f094";
+}
+.fa-phone:before {
+  content: "\f095";
+}
+.fa-square-o:before {
+  content: "\f096";
+}
+.fa-bookmark-o:before {
+  content: "\f097";
+}
+.fa-phone-square:before {
+  content: "\f098";
+}
+.fa-twitter:before {
+  content: "\f099";
+}
+.fa-facebook-f:before,
+.fa-facebook:before {
+  content: "\f09a";
+}
+.fa-github:before {
+  content: "\f09b";
+}
+.fa-unlock:before {
+  content: "\f09c";
+}
+.fa-credit-card:before {
+  content: "\f09d";
+}
+.fa-feed:before,
+.fa-rss:before {
+  content: "\f09e";
+}
+.fa-hdd-o:before {
+  content: "\f0a0";
+}
+.fa-bullhorn:before {
+  content: "\f0a1";
+}
+.fa-bell:before {
+  content: "\f0f3";
+}
+.fa-certificate:before {
+  content: "\f0a3";
+}
+.fa-hand-o-right:before {
+  content: "\f0a4";
+}
+.fa-hand-o-left:before {
+  content: "\f0a5";
+}
+.fa-hand-o-up:before {
+  content: "\f0a6";
+}
+.fa-hand-o-down:before {
+  content: "\f0a7";
+}
+.fa-arrow-circle-left:before {
+  content: "\f0a8";
+}
+.fa-arrow-circle-right:before {
+  content: "\f0a9";
+}
+.fa-arrow-circle-up:before {
+  content: "\f0aa";
+}
+.fa-arrow-circle-down:before {
+  content: "\f0ab";
+}
+.fa-globe:before {
+  content: "\f0ac";
+}
+.fa-wrench:before {
+  content: "\f0ad";
+}
+.fa-tasks:before {
+  content: "\f0ae";
+}
+.fa-filter:before {
+  content: "\f0b0";
+}
+.fa-briefcase:before {
+  content: "\f0b1";
+}
+.fa-arrows-alt:before {
+  content: "\f0b2";
+}
+.fa-group:before,
+.fa-users:before {
+  content: "\f0c0";
+}
+.fa-chain:before,
+.fa-link:before {
+  content: "\f0c1";
+}
+.fa-cloud:before {
+  content: "\f0c2";
+}
+.fa-flask:before {
+  content: "\f0c3";
+}
+.fa-cut:before,
+.fa-scissors:before {
+  content: "\f0c4";
+}
+.fa-copy:before,
+.fa-files-o:before {
+  content: "\f0c5";
+}
+.fa-paperclip:before {
+  content: "\f0c6";
+}
+.fa-save:before,
+.fa-floppy-o:before {
+  content: "\f0c7";
+}
+.fa-square:before {
+  content: "\f0c8";
+}
+.fa-navicon:before,
+.fa-reorder:before,
+.fa-bars:before {
+  content: "\f0c9";
+}
+.fa-list-ul:before {
+  content: "\f0ca";
+}
+.fa-list-ol:before {
+  content: "\f0cb";
+}
+.fa-strikethrough:before {
+  content: "\f0cc";
+}
+.fa-underline:before {
+  content: "\f0cd";
+}
+.fa-table:before {
+  content: "\f0ce";
+}
+.fa-magic:before {
+  content: "\f0d0";
+}
+.fa-truck:before {
+  content: "\f0d1";
+}
+.fa-pinterest:before {
+  content: "\f0d2";
+}
+.fa-pinterest-square:before {
+  content: "\f0d3";
+}
+.fa-google-plus-square:before {
+  content: "\f0d4";
+}
+.fa-google-plus:before {
+  content: "\f0d5";
+}
+.fa-money:before {
+  content: "\f0d6";
+}
+.fa-caret-down:before {
+  content: "\f0d7";
+}
+.fa-caret-up:before {
+  content: "\f0d8";
+}
+.fa-caret-left:before {
+  content: "\f0d9";
+}
+.fa-caret-right:before {
+  content: "\f0da";
+}
+.fa-columns:before {
+  content: "\f0db";
+}
+.fa-unsorted:before,
+.fa-sort:before {
+  content: "\f0dc";
+}
+.fa-sort-down:before,
+.fa-sort-desc:before {
+  content: "\f0dd";
+}
+.fa-sort-up:before,
+.fa-sort-asc:before {
+  content: "\f0de";
+}
+.fa-envelope:before {
+  content: "\f0e0";
+}
+.fa-linkedin:before {
+  content: "\f0e1";
+}
+.fa-rotate-left:before,
+.fa-undo:before {
+  content: "\f0e2";
+}
+.fa-legal:before,
+.fa-gavel:before {
+  content: "\f0e3";
+}
+.fa-dashboard:before,
+.fa-tachometer:before {
+  content: "\f0e4";
+}
+.fa-comment-o:before {
+  content: "\f0e5";
+}
+.fa-comments-o:before {
+  content: "\f0e6";
+}
+.fa-flash:before,
+.fa-bolt:before {
+  content: "\f0e7";
+}
+.fa-sitemap:before {
+  content: "\f0e8";
+}
+.fa-umbrella:before {
+  content: "\f0e9";
+}
+.fa-paste:before,
+.fa-clipboard:before {
+  content: "\f0ea";
+}
+.fa-lightbulb-o:before {
+  content: "\f0eb";
+}
+.fa-exchange:before {
+  content: "\f0ec";
+}
+.fa-cloud-download:before {
+  content: "\f0ed";
+}
+.fa-cloud-upload:before {
+  content: "\f0ee";
+}
+.fa-user-md:before {
+  content: "\f0f0";
+}
+.fa-stethoscope:before {
+  content: "\f0f1";
+}
+.fa-suitcase:before {
+  content: "\f0f2";
+}
+.fa-bell-o:before {
+  content: "\f0a2";
+}
+.fa-coffee:before {
+  content: "\f0f4";
+}
+.fa-cutlery:before {
+  content: "\f0f5";
+}
+.fa-file-text-o:before {
+  content: "\f0f6";
+}
+.fa-building-o:before {
+  content: "\f0f7";
+}
+.fa-hospital-o:before {
+  content: "\f0f8";
+}
+.fa-ambulance:before {
+  content: "\f0f9";
+}
+.fa-medkit:before {
+  content: "\f0fa";
+}
+.fa-fighter-jet:before {
+  content: "\f0fb";
+}
+.fa-beer:before {
+  content: "\f0fc";
+}
+.fa-h-square:before {
+  content: "\f0fd";
+}
+.fa-plus-square:before {
+  content: "\f0fe";
+}
+.fa-angle-double-left:before {
+  content: "\f100";
+}
+.fa-angle-double-right:before {
+  content: "\f101";
+}
+.fa-angle-double-up:before {
+  content: "\f102";
+}
+.fa-angle-double-down:before {
+  content: "\f103";
+}
+.fa-angle-left:before {
+  content: "\f104";
+}
+.fa-angle-right:before {
+  content: "\f105";
+}
+.fa-angle-up:before {
+  content: "\f106";
+}
+.fa-angle-down:before {
+  content: "\f107";
+}
+.fa-desktop:before {
+  content: "\f108";
+}
+.fa-laptop:before {
+  content: "\f109";
+}
+.fa-tablet:before {
+  content: "\f10a";
+}
+.fa-mobile-phone:before,
+.fa-mobile:before {
+  content: "\f10b";
+}
+.fa-circle-o:before {
+  content: "\f10c";
+}
+.fa-quote-left:before {
+  content: "\f10d";
+}
+.fa-quote-right:before {
+  content: "\f10e";
+}
+.fa-spinner:before {
+  content: "\f110";
+}
+.fa-circle:before {
+  content: "\f111";
+}
+.fa-mail-reply:before,
+.fa-reply:before {
+  content: "\f112";
+}
+.fa-github-alt:before {
+  content: "\f113";
+}
+.fa-folder-o:before {
+  content: "\f114";
+}
+.fa-folder-open-o:before {
+  content: "\f115";
+}
+.fa-smile-o:before {
+  content: "\f118";
+}
+.fa-frown-o:before {
+  content: "\f119";
+}
+.fa-meh-o:before {
+  content: "\f11a";
+}
+.fa-gamepad:before {
+  content: "\f11b";
+}
+.fa-keyboard-o:before {
+  content: "\f11c";
+}
+.fa-flag-o:before {
+  content: "\f11d";
+}
+.fa-flag-checkered:before {
+  content: "\f11e";
+}
+.fa-terminal:before {
+  content: "\f120";
+}
+.fa-code:before {
+  content: "\f121";
+}
+.fa-mail-reply-all:before,
+.fa-reply-all:before {
+  content: "\f122";
+}
+.fa-star-half-empty:before,
+.fa-star-half-full:before,
+.fa-star-half-o:before {
+  content: "\f123";
+}
+.fa-location-arrow:before {
+  content: "\f124";
+}
+.fa-crop:before {
+  content: "\f125";
+}
+.fa-code-fork:before {
+  content: "\f126";
+}
+.fa-unlink:before,
+.fa-chain-broken:before {
+  content: "\f127";
+}
+.fa-question:before {
+  content: "\f128";
+}
+.fa-info:before {
+  content: "\f129";
+}
+.fa-exclamation:before {
+  content: "\f12a";
+}
+.fa-superscript:before {
+  content: "\f12b";
+}
+.fa-subscript:before {
+  content: "\f12c";
+}
+.fa-eraser:before {
+  content: "\f12d";
+}
+.fa-puzzle-piece:before {
+  content: "\f12e";
+}
+.fa-microphone:before {
+  content: "\f130";
+}
+.fa-microphone-slash:before {
+  content: "\f131";
+}
+.fa-shield:before {
+  content: "\f132";
+}
+.fa-calendar-o:before {
+  content: "\f133";
+}
+.fa-fire-extinguisher:before {
+  content: "\f134";
+}
+.fa-rocket:before {
+  content: "\f135";
+}
+.fa-maxcdn:before {
+  content: "\f136";
+}
+.fa-chevron-circle-left:before {
+  content: "\f137";
+}
+.fa-chevron-circle-right:before {
+  content: "\f138";
+}
+.fa-chevron-circle-up:before {
+  content: "\f139";
+}
+.fa-chevron-circle-down:before {
+  content: "\f13a";
+}
+.fa-html5:before {
+  content: "\f13b";
+}
+.fa-css3:before {
+  content: "\f13c";
+}
+.fa-anchor:before {
+  content: "\f13d";
+}
+.fa-unlock-alt:before {
+  content: "\f13e";
+}
+.fa-bullseye:before {
+  content: "\f140";
+}
+.fa-ellipsis-h:before {
+  content: "\f141";
+}
+.fa-ellipsis-v:before {
+  content: "\f142";
+}
+.fa-rss-square:before {
+  content: "\f143";
+}
+.fa-play-circle:before {
+  content: "\f144";
+}
+.fa-ticket:before {
+  content: "\f145";
+}
+.fa-minus-square:before {
+  content: "\f146";
+}
+.fa-minus-square-o:before {
+  content: "\f147";
+}
+.fa-level-up:before {
+  content: "\f148";
+}
+.fa-level-down:before {
+  content: "\f149";
+}
+.fa-check-square:before {
+  content: "\f14a";
+}
+.fa-pencil-square:before {
+  content: "\f14b";
+}
+.fa-external-link-square:before {
+  content: "\f14c";
+}
+.fa-share-square:before {
+  content: "\f14d";
+}
+.fa-compass:before {
+  content: "\f14e";
+}
+.fa-toggle-down:before,
+.fa-caret-square-o-down:before {
+  content: "\f150";
+}
+.fa-toggle-up:before,
+.fa-caret-square-o-up:before {
+  content: "\f151";
+}
+.fa-toggle-right:before,
+.fa-caret-square-o-right:before {
+  content: "\f152";
+}
+.fa-euro:before,
+.fa-eur:before {
+  content: "\f153";
+}
+.fa-gbp:before {
+  content: "\f154";
+}
+.fa-dollar:before,
+.fa-usd:before {
+  content: "\f155";
+}
+.fa-rupee:before,
+.fa-inr:before {
+  content: "\f156";
+}
+.fa-cny:before,
+.fa-rmb:before,
+.fa-yen:before,
+.fa-jpy:before {
+  content: "\f157";
+}
+.fa-ruble:before,
+.fa-rouble:before,
+.fa-rub:before {
+  content: "\f158";
+}
+.fa-won:before,
+.fa-krw:before {
+  content: "\f159";
+}
+.fa-bitcoin:before,
+.fa-btc:before {
+  content: "\f15a";
+}
+.fa-file:before {
+  content: "\f15b";
+}
+.fa-file-text:before {
+  content: "\f15c";
+}
+.fa-sort-alpha-asc:before {
+  content: "\f15d";
+}
+.fa-sort-alpha-desc:before {
+  content: "\f15e";
+}
+.fa-sort-amount-asc:before {
+  content: "\f160";
+}
+.fa-sort-amount-desc:before {
+  content: "\f161";
+}
+.fa-sort-numeric-asc:before {
+  content: "\f162";
+}
+.fa-sort-numeric-desc:before {
+  content: "\f163";
+}
+.fa-thumbs-up:before {
+  content: "\f164";
+}
+.fa-thumbs-down:before {
+  content: "\f165";
+}
+.fa-youtube-square:before {
+  content: "\f166";
+}
+.fa-youtube:before {
+  content: "\f167";
+}
+.fa-xing:before {
+  content: "\f168";
+}
+.fa-xing-square:before {
+  content: "\f169";
+}
+.fa-youtube-play:before {
+  content: "\f16a";
+}
+.fa-dropbox:before {
+  content: "\f16b";
+}
+.fa-stack-overflow:before {
+  content: "\f16c";
+}
+.fa-instagram:before {
+  content: "\f16d";
+}
+.fa-flickr:before {
+  content: "\f16e";
+}
+.fa-adn:before {
+  content: "\f170";
+}
+.fa-bitbucket:before {
+  content: "\f171";
+}
+.fa-bitbucket-square:before {
+  content: "\f172";
+}
+.fa-tumblr:before {
+  content: "\f173";
+}
+.fa-tumblr-square:before {
+  content: "\f174";
+}
+.fa-long-arrow-down:before {
+  content: "\f175";
+}
+.fa-long-arrow-up:before {
+  content: "\f176";
+}
+.fa-long-arrow-left:before {
+  content: "\f177";
+}
+.fa-long-arrow-right:before {
+  content: "\f178";
+}
+.fa-apple:before {
+  content: "\f179";
+}
+.fa-windows:before {
+  content: "\f17a";
+}
+.fa-android:before {
+  content: "\f17b";
+}
+.fa-linux:before {
+  content: "\f17c";
+}
+.fa-dribbble:before {
+  content: "\f17d";
+}
+.fa-skype:before {
+  content: "\f17e";
+}
+.fa-foursquare:before {
+  content: "\f180";
+}
+.fa-trello:before {
+  content: "\f181";
+}
+.fa-female:before {
+  content: "\f182";
+}
+.fa-male:before {
+  content: "\f183";
+}
+.fa-gittip:before,
+.fa-gratipay:before {
+  content: "\f184";
+}
+.fa-sun-o:before {
+  content: "\f185";
+}
+.fa-moon-o:before {
+  content: "\f186";
+}
+.fa-archive:before {
+  content: "\f187";
+}
+.fa-bug:before {
+  content: "\f188";
+}
+.fa-vk:before {
+  content: "\f189";
+}
+.fa-weibo:before {
+  content: "\f18a";
+}
+.fa-renren:before {
+  content: "\f18b";
+}
+.fa-pagelines:before {
+  content: "\f18c";
+}
+.fa-stack-exchange:before {
+  content: "\f18d";
+}
+.fa-arrow-circle-o-right:before {
+  content: "\f18e";
+}
+.fa-arrow-circle-o-left:before {
+  content: "\f190";
+}
+.fa-toggle-left:before,
+.fa-caret-square-o-left:before {
+  content: "\f191";
+}
+.fa-dot-circle-o:before {
+  content: "\f192";
+}
+.fa-wheelchair:before {
+  content: "\f193";
+}
+.fa-vimeo-square:before {
+  content: "\f194";
+}
+.fa-turkish-lira:before,
+.fa-try:before {
+  content: "\f195";
+}
+.fa-plus-square-o:before {
+  content: "\f196";
+}
+.fa-space-shuttle:before {
+  content: "\f197";
+}
+.fa-slack:before {
+  content: "\f198";
+}
+.fa-envelope-square:before {
+  content: "\f199";
+}
+.fa-wordpress:before {
+  content: "\f19a";
+}
+.fa-openid:before {
+  content: "\f19b";
+}
+.fa-institution:before,
+.fa-bank:before,
+.fa-university:before {
+  content: "\f19c";
+}
+.fa-mortar-board:before,
+.fa-graduation-cap:before {
+  content: "\f19d";
+}
+.fa-yahoo:before {
+  content: "\f19e";
+}
+.fa-google:before {
+  content: "\f1a0";
+}
+.fa-reddit:before {
+  content: "\f1a1";
+}
+.fa-reddit-square:before {
+  content: "\f1a2";
+}
+.fa-stumbleupon-circle:before {
+  content: "\f1a3";
+}
+.fa-stumbleupon:before {
+  content: "\f1a4";
+}
+.fa-delicious:before {
+  content: "\f1a5";
+}
+.fa-digg:before {
+  content: "\f1a6";
+}
+.fa-pied-piper-pp:before {
+  content: "\f1a7";
+}
+.fa-pied-piper-alt:before {
+  content: "\f1a8";
+}
+.fa-drupal:before {
+  content: "\f1a9";
+}
+.fa-joomla:before {
+  content: "\f1aa";
+}
+.fa-language:before {
+  content: "\f1ab";
+}
+.fa-fax:before {
+  content: "\f1ac";
+}
+.fa-building:before {
+  content: "\f1ad";
+}
+.fa-child:before {
+  content: "\f1ae";
+}
+.fa-paw:before {
+  content: "\f1b0";
+}
+.fa-spoon:before {
+  content: "\f1b1";
+}
+.fa-cube:before {
+  content: "\f1b2";
+}
+.fa-cubes:before {
+  content: "\f1b3";
+}
+.fa-behance:before {
+  content: "\f1b4";
+}
+.fa-behance-square:before {
+  content: "\f1b5";
+}
+.fa-steam:before {
+  content: "\f1b6";
+}
+.fa-steam-square:before {
+  content: "\f1b7";
+}
+.fa-recycle:before {
+  content: "\f1b8";
+}
+.fa-automobile:before,
+.fa-car:before {
+  content: "\f1b9";
+}
+.fa-cab:before,
+.fa-taxi:before {
+  content: "\f1ba";
+}
+.fa-tree:before {
+  content: "\f1bb";
+}
+.fa-spotify:before {
+  content: "\f1bc";
+}
+.fa-deviantart:before {
+  content: "\f1bd";
+}
+.fa-soundcloud:before {
+  content: "\f1be";
+}
+.fa-database:before {
+  content: "\f1c0";
+}
+.fa-file-pdf-o:before {
+  content: "\f1c1";
+}
+.fa-file-word-o:before {
+  content: "\f1c2";
+}
+.fa-file-excel-o:before {
+  content: "\f1c3";
+}
+.fa-file-powerpoint-o:before {
+  content: "\f1c4";
+}
+.fa-file-photo-o:before,
+.fa-file-picture-o:before,
+.fa-file-image-o:before {
+  content: "\f1c5";
+}
+.fa-file-zip-o:before,
+.fa-file-archive-o:before {
+  content: "\f1c6";
+}
+.fa-file-sound-o:before,
+.fa-file-audio-o:before {
+  content: "\f1c7";
+}
+.fa-file-movie-o:before,
+.fa-file-video-o:before {
+  content: "\f1c8";
+}
+.fa-file-code-o:before {
+  content: "\f1c9";
+}
+.fa-vine:before {
+  content: "\f1ca";
+}
+.fa-codepen:before {
+  content: "\f1cb";
+}
+.fa-jsfiddle:before {
+  content: "\f1cc";
+}
+.fa-life-bouy:before,
+.fa-life-buoy:before,
+.fa-life-saver:before,
+.fa-support:before,
+.fa-life-ring:before {
+  content: "\f1cd";
+}
+.fa-circle-o-notch:before {
+  content: "\f1ce";
+}
+.fa-ra:before,
+.fa-resistance:before,
+.fa-rebel:before {
+  content: "\f1d0";
+}
+.fa-ge:before,
+.fa-empire:before {
+  content: "\f1d1";
+}
+.fa-git-square:before {
+  content: "\f1d2";
+}
+.fa-git:before {
+  content: "\f1d3";
+}
+.fa-y-combinator-square:before,
+.fa-yc-square:before,
+.fa-hacker-news:before {
+  content: "\f1d4";
+}
+.fa-tencent-weibo:before {
+  content: "\f1d5";
+}
+.fa-qq:before {
+  content: "\f1d6";
+}
+.fa-wechat:before,
+.fa-weixin:before {
+  content: "\f1d7";
+}
+.fa-send:before,
+.fa-paper-plane:before {
+  content: "\f1d8";
+}
+.fa-send-o:before,
+.fa-paper-plane-o:before {
+  content: "\f1d9";
+}
+.fa-history:before {
+  content: "\f1da";
+}
+.fa-circle-thin:before {
+  content: "\f1db";
+}
+.fa-header:before {
+  content: "\f1dc";
+}
+.fa-paragraph:before {
+  content: "\f1dd";
+}
+.fa-sliders:before {
+  content: "\f1de";
+}
+.fa-share-alt:before {
+  content: "\f1e0";
+}
+.fa-share-alt-square:before {
+  content: "\f1e1";
+}
+.fa-bomb:before {
+  content: "\f1e2";
+}
+.fa-soccer-ball-o:before,
+.fa-futbol-o:before {
+  content: "\f1e3";
+}
+.fa-tty:before {
+  content: "\f1e4";
+}
+.fa-binoculars:before {
+  content: "\f1e5";
+}
+.fa-plug:before {
+  content: "\f1e6";
+}
+.fa-slideshare:before {
+  content: "\f1e7";
+}
+.fa-twitch:before {
+  content: "\f1e8";
+}
+.fa-yelp:before {
+  content: "\f1e9";
+}
+.fa-newspaper-o:before {
+  content: "\f1ea";
+}
+.fa-wifi:before {
+  content: "\f1eb";
+}
+.fa-calculator:before {
+  content: "\f1ec";
+}
+.fa-paypal:before {
+  content: "\f1ed";
+}
+.fa-google-wallet:before {
+  content: "\f1ee";
+}
+.fa-cc-visa:before {
+  content: "\f1f0";
+}
+.fa-cc-mastercard:before {
+  content: "\f1f1";
+}
+.fa-cc-discover:before {
+  content: "\f1f2";
+}
+.fa-cc-amex:before {
+  content: "\f1f3";
+}
+.fa-cc-paypal:before {
+  content: "\f1f4";
+}
+.fa-cc-stripe:before {
+  content: "\f1f5";
+}
+.fa-bell-slash:before {
+  content: "\f1f6";
+}
+.fa-bell-slash-o:before {
+  content: "\f1f7";
+}
+.fa-trash:before {
+  content: "\f1f8";
+}
+.fa-copyright:before {
+  content: "\f1f9";
+}
+.fa-at:before {
+  content: "\f1fa";
+}
+.fa-eyedropper:before {
+  content: "\f1fb";
+}
+.fa-paint-brush:before {
+  content: "\f1fc";
+}
+.fa-birthday-cake:before {
+  content: "\f1fd";
+}
+.fa-area-chart:before {
+  content: "\f1fe";
+}
+.fa-pie-chart:before {
+  content: "\f200";
+}
+.fa-line-chart:before {
+  content: "\f201";
+}
+.fa-lastfm:before {
+  content: "\f202";
+}
+.fa-lastfm-square:before {
+  content: "\f203";
+}
+.fa-toggle-off:before {
+  content: "\f204";
+}
+.fa-toggle-on:before {
+  content: "\f205";
+}
+.fa-bicycle:before {
+  content: "\f206";
+}
+.fa-bus:before {
+  content: "\f207";
+}
+.fa-ioxhost:before {
+  content: "\f208";
+}
+.fa-angellist:before {
+  content: "\f209";
+}
+.fa-cc:before {
+  content: "\f20a";
+}
+.fa-shekel:before,
+.fa-sheqel:before,
+.fa-ils:before {
+  content: "\f20b";
+}
+.fa-meanpath:before {
+  content: "\f20c";
+}
+.fa-buysellads:before {
+  content: "\f20d";
+}
+.fa-connectdevelop:before {
+  content: "\f20e";
+}
+.fa-dashcube:before {
+  content: "\f210";
+}
+.fa-forumbee:before {
+  content: "\f211";
+}
+.fa-leanpub:before {
+  content: "\f212";
+}
+.fa-sellsy:before {
+  content: "\f213";
+}
+.fa-shirtsinbulk:before {
+  content: "\f214";
+}
+.fa-simplybuilt:before {
+  content: "\f215";
+}
+.fa-skyatlas:before {
+  content: "\f216";
+}
+.fa-cart-plus:before {
+  content: "\f217";
+}
+.fa-cart-arrow-down:before {
+  content: "\f218";
+}
+.fa-diamond:before {
+  content: "\f219";
+}
+.fa-ship:before {
+  content: "\f21a";
+}
+.fa-user-secret:before {
+  content: "\f21b";
+}
+.fa-motorcycle:before {
+  content: "\f21c";
+}
+.fa-street-view:before {
+  content: "\f21d";
+}
+.fa-heartbeat:before {
+  content: "\f21e";
+}
+.fa-venus:before {
+  content: "\f221";
+}
+.fa-mars:before {
+  content: "\f222";
+}
+.fa-mercury:before {
+  content: "\f223";
+}
+.fa-intersex:before,
+.fa-transgender:before {
+  content: "\f224";
+}
+.fa-transgender-alt:before {
+  content: "\f225";
+}
+.fa-venus-double:before {
+  content: "\f226";
+}
+.fa-mars-double:before {
+  content: "\f227";
+}
+.fa-venus-mars:before {
+  content: "\f228";
+}
+.fa-mars-stroke:before {
+  content: "\f229";
+}
+.fa-mars-stroke-v:before {
+  content: "\f22a";
+}
+.fa-mars-stroke-h:before {
+  content: "\f22b";
+}
+.fa-neuter:before {
+  content: "\f22c";
+}
+.fa-genderless:before {
+  content: "\f22d";
+}
+.fa-facebook-official:before {
+  content: "\f230";
+}
+.fa-pinterest-p:before {
+  content: "\f231";
+}
+.fa-whatsapp:before {
+  content: "\f232";
+}
+.fa-server:before {
+  content: "\f233";
+}
+.fa-user-plus:before {
+  content: "\f234";
+}
+.fa-user-times:before {
+  content: "\f235";
+}
+.fa-hotel:before,
+.fa-bed:before {
+  content: "\f236";
+}
+.fa-viacoin:before {
+  content: "\f237";
+}
+.fa-train:before {
+  content: "\f238";
+}
+.fa-subway:before {
+  content: "\f239";
+}
+.fa-medium:before {
+  content: "\f23a";
+}
+.fa-yc:before,
+.fa-y-combinator:before {
+  content: "\f23b";
+}
+.fa-optin-monster:before {
+  content: "\f23c";
+}
+.fa-opencart:before {
+  content: "\f23d";
+}
+.fa-expeditedssl:before {
+  content: "\f23e";
+}
+.fa-battery-4:before,
+.fa-battery:before,
+.fa-battery-full:before {
+  content: "\f240";
+}
+.fa-battery-3:before,
+.fa-battery-three-quarters:before {
+  content: "\f241";
+}
+.fa-battery-2:before,
+.fa-battery-half:before {
+  content: "\f242";
+}
+.fa-battery-1:before,
+.fa-battery-quarter:before {
+  content: "\f243";
+}
+.fa-battery-0:before,
+.fa-battery-empty:before {
+  content: "\f244";
+}
+.fa-mouse-pointer:before {
+  content: "\f245";
+}
+.fa-i-cursor:before {
+  content: "\f246";
+}
+.fa-object-group:before {
+  content: "\f247";
+}
+.fa-object-ungroup:before {
+  content: "\f248";
+}
+.fa-sticky-note:before {
+  content: "\f249";
+}
+.fa-sticky-note-o:before {
+  content: "\f24a";
+}
+.fa-cc-jcb:before {
+  content: "\f24b";
+}
+.fa-cc-diners-club:before {
+  content: "\f24c";
+}
+.fa-clone:before {
+  content: "\f24d";
+}
+.fa-balance-scale:before {
+  content: "\f24e";
+}
+.fa-hourglass-o:before {
+  content: "\f250";
+}
+.fa-hourglass-1:before,
+.fa-hourglass-start:before {
+  content: "\f251";
+}
+.fa-hourglass-2:before,
+.fa-hourglass-half:before {
+  content: "\f252";
+}
+.fa-hourglass-3:before,
+.fa-hourglass-end:before {
+  content: "\f253";
+}
+.fa-hourglass:before {
+  content: "\f254";
+}
+.fa-hand-grab-o:before,
+.fa-hand-rock-o:before {
+  content: "\f255";
+}
+.fa-hand-stop-o:before,
+.fa-hand-paper-o:before {
+  content: "\f256";
+}
+.fa-hand-scissors-o:before {
+  content: "\f257";
+}
+.fa-hand-lizard-o:before {
+  content: "\f258";
+}
+.fa-hand-spock-o:before {
+  content: "\f259";
+}
+.fa-hand-pointer-o:before {
+  content: "\f25a";
+}
+.fa-hand-peace-o:before {
+  content: "\f25b";
+}
+.fa-trademark:before {
+  content: "\f25c";
+}
+.fa-registered:before {
+  content: "\f25d";
+}
+.fa-creative-commons:before {
+  content: "\f25e";
+}
+.fa-gg:before {
+  content: "\f260";
+}
+.fa-gg-circle:before {
+  content: "\f261";
+}
+.fa-tripadvisor:before {
+  content: "\f262";
+}
+.fa-odnoklassniki:before {
+  content: "\f263";
+}
+.fa-odnoklassniki-square:before {
+  content: "\f264";
+}
+.fa-get-pocket:before {
+  content: "\f265";
+}
+.fa-wikipedia-w:before {
+  content: "\f266";
+}
+.fa-safari:before {
+  content: "\f267";
+}
+.fa-chrome:before {
+  content: "\f268";
+}
+.fa-firefox:before {
+  content: "\f269";
+}
+.fa-opera:before {
+  content: "\f26a";
+}
+.fa-internet-explorer:before {
+  content: "\f26b";
+}
+.fa-tv:before,
+.fa-television:before {
+  content: "\f26c";
+}
+.fa-contao:before {
+  content: "\f26d";
+}
+.fa-500px:before {
+  content: "\f26e";
+}
+.fa-amazon:before {
+  content: "\f270";
+}
+.fa-calendar-plus-o:before {
+  content: "\f271";
+}
+.fa-calendar-minus-o:before {
+  content: "\f272";
+}
+.fa-calendar-times-o:before {
+  content: "\f273";
+}
+.fa-calendar-check-o:before {
+  content: "\f274";
+}
+.fa-industry:before {
+  content: "\f275";
+}
+.fa-map-pin:before {
+  content: "\f276";
+}
+.fa-map-signs:before {
+  content: "\f277";
+}
+.fa-map-o:before {
+  content: "\f278";
+}
+.fa-map:before {
+  content: "\f279";
+}
+.fa-commenting:before {
+  content: "\f27a";
+}
+.fa-commenting-o:before {
+  content: "\f27b";
+}
+.fa-houzz:before {
+  content: "\f27c";
+}
+.fa-vimeo:before {
+  content: "\f27d";
+}
+.fa-black-tie:before {
+  content: "\f27e";
+}
+.fa-fonticons:before {
+  content: "\f280";
+}
+.fa-reddit-alien:before {
+  content: "\f281";
+}
+.fa-edge:before {
+  content: "\f282";
+}
+.fa-credit-card-alt:before {
+  content: "\f283";
+}
+.fa-codiepie:before {
+  content: "\f284";
+}
+.fa-modx:before {
+  content: "\f285";
+}
+.fa-fort-awesome:before {
+  content: "\f286";
+}
+.fa-usb:before {
+  content: "\f287";
+}
+.fa-product-hunt:before {
+  content: "\f288";
+}
+.fa-mixcloud:before {
+  content: "\f289";
+}
+.fa-scribd:before {
+  content: "\f28a";
+}
+.fa-pause-circle:before {
+  content: "\f28b";
+}
+.fa-pause-circle-o:before {
+  content: "\f28c";
+}
+.fa-stop-circle:before {
+  content: "\f28d";
+}
+.fa-stop-circle-o:before {
+  content: "\f28e";
+}
+.fa-shopping-bag:before {
+  content: "\f290";
+}
+.fa-shopping-basket:before {
+  content: "\f291";
+}
+.fa-hashtag:before {
+  content: "\f292";
+}
+.fa-bluetooth:before {
+  content: "\f293";
+}
+.fa-bluetooth-b:before {
+  content: "\f294";
+}
+.fa-percent:before {
+  content: "\f295";
+}
+.fa-gitlab:before {
+  content: "\f296";
+}
+.fa-wpbeginner:before {
+  content: "\f297";
+}
+.fa-wpforms:before {
+  content: "\f298";
+}
+.fa-envira:before {
+  content: "\f299";
+}
+.fa-universal-access:before {
+  content: "\f29a";
+}
+.fa-wheelchair-alt:before {
+  content: "\f29b";
+}
+.fa-question-circle-o:before {
+  content: "\f29c";
+}
+.fa-blind:before {
+  content: "\f29d";
+}
+.fa-audio-description:before {
+  content: "\f29e";
+}
+.fa-volume-control-phone:before {
+  content: "\f2a0";
+}
+.fa-braille:before {
+  content: "\f2a1";
+}
+.fa-assistive-listening-systems:before {
+  content: "\f2a2";
+}
+.fa-asl-interpreting:before,
+.fa-american-sign-language-interpreting:before {
+  content: "\f2a3";
+}
+.fa-deafness:before,
+.fa-hard-of-hearing:before,
+.fa-deaf:before {
+  content: "\f2a4";
+}
+.fa-glide:before {
+  content: "\f2a5";
+}
+.fa-glide-g:before {
+  content: "\f2a6";
+}
+.fa-signing:before,
+.fa-sign-language:before {
+  content: "\f2a7";
+}
+.fa-low-vision:before {
+  content: "\f2a8";
+}
+.fa-viadeo:before {
+  content: "\f2a9";
+}
+.fa-viadeo-square:before {
+  content: "\f2aa";
+}
+.fa-snapchat:before {
+  content: "\f2ab";
+}
+.fa-snapchat-ghost:before {
+  content: "\f2ac";
+}
+.fa-snapchat-square:before {
+  content: "\f2ad";
+}
+.fa-pied-piper:before {
+  content: "\f2ae";
+}
+.fa-first-order:before {
+  content: "\f2b0";
+}
+.fa-yoast:before {
+  content: "\f2b1";
+}
+.fa-themeisle:before {
+  content: "\f2b2";
+}
+.fa-google-plus-circle:before,
+.fa-google-plus-official:before {
+  content: "\f2b3";
+}
+.fa-fa:before,
+.fa-font-awesome:before {
+  content: "\f2b4";
+}
+.fa-handshake-o:before {
+  content: "\f2b5";
+}
+.fa-envelope-open:before {
+  content: "\f2b6";
+}
+.fa-envelope-open-o:before {
+  content: "\f2b7";
+}
+.fa-linode:before {
+  content: "\f2b8";
+}
+.fa-address-book:before {
+  content: "\f2b9";
+}
+.fa-address-book-o:before {
+  content: "\f2ba";
+}
+.fa-vcard:before,
+.fa-address-card:before {
+  content: "\f2bb";
+}
+.fa-vcard-o:before,
+.fa-address-card-o:before {
+  content: "\f2bc";
+}
+.fa-user-circle:before {
+  content: "\f2bd";
+}
+.fa-user-circle-o:before {
+  content: "\f2be";
+}
+.fa-user-o:before {
+  content: "\f2c0";
+}
+.fa-id-badge:before {
+  content: "\f2c1";
+}
+.fa-drivers-license:before,
+.fa-id-card:before {
+  content: "\f2c2";
+}
+.fa-drivers-license-o:before,
+.fa-id-card-o:before {
+  content: "\f2c3";
+}
+.fa-quora:before {
+  content: "\f2c4";
+}
+.fa-free-code-camp:before {
+  content: "\f2c5";
+}
+.fa-telegram:before {
+  content: "\f2c6";
+}
+.fa-thermometer-4:before,
+.fa-thermometer:before,
+.fa-thermometer-full:before {
+  content: "\f2c7";
+}
+.fa-thermometer-3:before,
+.fa-thermometer-three-quarters:before {
+  content: "\f2c8";
+}
+.fa-thermometer-2:before,
+.fa-thermometer-half:before {
+  content: "\f2c9";
+}
+.fa-thermometer-1:before,
+.fa-thermometer-quarter:before {
+  content: "\f2ca";
+}
+.fa-thermometer-0:before,
+.fa-thermometer-empty:before {
+  content: "\f2cb";
+}
+.fa-shower:before {
+  content: "\f2cc";
+}
+.fa-bathtub:before,
+.fa-s15:before,
+.fa-bath:before {
+  content: "\f2cd";
+}
+.fa-podcast:before {
+  content: "\f2ce";
+}
+.fa-window-maximize:before {
+  content: "\f2d0";
+}
+.fa-window-minimize:before {
+  content: "\f2d1";
+}
+.fa-window-restore:before {
+  content: "\f2d2";
+}
+.fa-times-rectangle:before,
+.fa-window-close:before {
+  content: "\f2d3";
+}
+.fa-times-rectangle-o:before,
+.fa-window-close-o:before {
+  content: "\f2d4";
+}
+.fa-bandcamp:before {
+  content: "\f2d5";
+}
+.fa-grav:before {
+  content: "\f2d6";
+}
+.fa-etsy:before {
+  content: "\f2d7";
+}
+.fa-imdb:before {
+  content: "\f2d8";
+}
+.fa-ravelry:before {
+  content: "\f2d9";
+}
+.fa-eercast:before {
+  content: "\f2da";
+}
+.fa-microchip:before {
+  content: "\f2db";
+}
+.fa-snowflake-o:before {
+  content: "\f2dc";
+}
+.fa-superpowers:before {
+  content: "\f2dd";
+}
+.fa-wpexplorer:before {
+  content: "\f2de";
+}
+.fa-meetup:before {
+  content: "\f2e0";
+}
+.sr-only {
+  position: absolute;
+  width: 1px;
+  height: 1px;
+  padding: 0;
+  margin: -1px;
+  overflow: hidden;
+  clip: rect(0, 0, 0, 0);
+  border: 0;
+}
+.sr-only-focusable:active,
+.sr-only-focusable:focus {
+  position: static;
+  width: auto;
+  height: auto;
+  margin: 0;
+  overflow: visible;
+  clip: auto;
+}
diff --git a/oxAuth/Server/src/main/webapp/stylesheet/fontawesome.min.css b/oxAuth/Server/src/main/webapp/stylesheet/fontawesome.min.css
new file mode 100644
index 00000000..e7537cfa
--- /dev/null
+++ b/oxAuth/Server/src/main/webapp/stylesheet/fontawesome.min.css
@@ -0,0 +1,5 @@
+/*!
+ * Font Awesome Free 5.8.2 by @fontawesome - https://fontawesome.com
+ * License - https://fontawesome.com/license/free (Icons: CC BY 4.0, Fonts: SIL OFL 1.1, Code: MIT License)
+ */
+.fa,.fab,.fal,.far,.fas{-moz-osx-font-smoothing:grayscale;-webkit-font-smoothing:antialiased;display:inline-block;font-style:normal;font-variant:normal;text-rendering:auto;line-height:1}.fa-lg{font-size:1.33333em;line-height:.75em;vertical-align:-.0667em}.fa-xs{font-size:.75em}.fa-sm{font-size:.875em}.fa-1x{font-size:1em}.fa-2x{font-size:2em}.fa-3x{font-size:3em}.fa-4x{font-size:4em}.fa-5x{font-size:5em}.fa-6x{font-size:6em}.fa-7x{font-size:7em}.fa-8x{font-size:8em}.fa-9x{font-size:9em}.fa-10x{font-size:10em}.fa-fw{text-align:center;width:1.25em}.fa-ul{list-style-type:none;margin-left:2.5em;padding-left:0}.fa-ul>li{position:relative}.fa-li{left:-2em;position:absolute;text-align:center;width:2em;line-height:inherit}.fa-border{border:.08em solid #eee;border-radius:.1em;padding:.2em .25em .15em}.fa-pull-left{float:left}.fa-pull-right{float:right}.fa.fa-pull-left,.fab.fa-pull-left,.fal.fa-pull-left,.far.fa-pull-left,.fas.fa-pull-left{margin-right:.3em}.fa.fa-pull-right,.fab.fa-pull-right,.fal.fa-pull-right,.far.fa-pull-right,.fas.fa-pull-right{margin-left:.3em}.fa-spin{animation:fa-spin 2s infinite linear}.fa-pulse{animation:fa-spin 1s infinite steps(8)}@keyframes fa-spin{0%{transform:rotate(0deg)}to{transform:rotate(1turn)}}.fa-rotate-90{-ms-filter:"progid:DXImageTransform.Microsoft.BasicImage(rotation=1)";transform:rotate(90deg)}.fa-rotate-180{-ms-filter:"progid:DXImageTransform.Microsoft.BasicImage(rotation=2)";transform:rotate(180deg)}.fa-rotate-270{-ms-filter:"progid:DXImageTransform.Microsoft.BasicImage(rotation=3)";transform:rotate(270deg)}.fa-flip-horizontal{-ms-filter:"progid:DXImageTransform.Microsoft.BasicImage(rotation=0, mirror=1)";transform:scaleX(-1)}.fa-flip-vertical{transform:scaleY(-1)}.fa-flip-both,.fa-flip-horizontal.fa-flip-vertical,.fa-flip-vertical{-ms-filter:"progid:DXImageTransform.Microsoft.BasicImage(rotation=2, mirror=1)"}.fa-flip-both,.fa-flip-horizontal.fa-flip-vertical{transform:scale(-1)}:root .fa-flip-both,:root .fa-flip-horizontal,:root .fa-flip-vertical,:root .fa-rotate-90,:root .fa-rotate-180,:root .fa-rotate-270{filter:none}.fa-stack{display:inline-block;height:2em;line-height:2em;position:relative;vertical-align:middle;width:2.5em}.fa-stack-1x,.fa-stack-2x{left:0;position:absolute;text-align:center;width:100%}.fa-stack-1x{line-height:inherit}.fa-stack-2x{font-size:2em}.fa-inverse{color:#fff}.fa-500px:before{content:"\f26e"}.fa-accessible-icon:before{content:"\f368"}.fa-accusoft:before{content:"\f369"}.fa-acquisitions-incorporated:before{content:"\f6af"}.fa-ad:before{content:"\f641"}.fa-address-book:before{content:"\f2b9"}.fa-address-card:before{content:"\f2bb"}.fa-adjust:before{content:"\f042"}.fa-adn:before{content:"\f170"}.fa-adobe:before{content:"\f778"}.fa-adversal:before{content:"\f36a"}.fa-affiliatetheme:before{content:"\f36b"}.fa-air-freshener:before{content:"\f5d0"}.fa-airbnb:before{content:"\f834"}.fa-algolia:before{content:"\f36c"}.fa-align-center:before{content:"\f037"}.fa-align-justify:before{content:"\f039"}.fa-align-left:before{content:"\f036"}.fa-align-right:before{content:"\f038"}.fa-alipay:before{content:"\f642"}.fa-allergies:before{content:"\f461"}.fa-amazon:before{content:"\f270"}.fa-amazon-pay:before{content:"\f42c"}.fa-ambulance:before{content:"\f0f9"}.fa-american-sign-language-interpreting:before{content:"\f2a3"}.fa-amilia:before{content:"\f36d"}.fa-anchor:before{content:"\f13d"}.fa-android:before{content:"\f17b"}.fa-angellist:before{content:"\f209"}.fa-angle-double-down:before{content:"\f103"}.fa-angle-double-left:before{content:"\f100"}.fa-angle-double-right:before{content:"\f101"}.fa-angle-double-up:before{content:"\f102"}.fa-angle-down:before{content:"\f107"}.fa-angle-left:before{content:"\f104"}.fa-angle-right:before{content:"\f105"}.fa-angle-up:before{content:"\f106"}.fa-angry:before{content:"\f556"}.fa-angrycreative:before{content:"\f36e"}.fa-angular:before{content:"\f420"}.fa-ankh:before{content:"\f644"}.fa-app-store:before{content:"\f36f"}.fa-app-store-ios:before{content:"\f370"}.fa-apper:before{content:"\f371"}.fa-apple:before{content:"\f179"}.fa-apple-alt:before{content:"\f5d1"}.fa-apple-pay:before{content:"\f415"}.fa-archive:before{content:"\f187"}.fa-archway:before{content:"\f557"}.fa-arrow-alt-circle-down:before{content:"\f358"}.fa-arrow-alt-circle-left:before{content:"\f359"}.fa-arrow-alt-circle-right:before{content:"\f35a"}.fa-arrow-alt-circle-up:before{content:"\f35b"}.fa-arrow-circle-down:before{content:"\f0ab"}.fa-arrow-circle-left:before{content:"\f0a8"}.fa-arrow-circle-right:before{content:"\f0a9"}.fa-arrow-circle-up:before{content:"\f0aa"}.fa-arrow-down:before{content:"\f063"}.fa-arrow-left:before{content:"\f060"}.fa-arrow-right:before{content:"\f061"}.fa-arrow-up:before{content:"\f062"}.fa-arrows-alt:before{content:"\f0b2"}.fa-arrows-alt-h:before{content:"\f337"}.fa-arrows-alt-v:before{content:"\f338"}.fa-artstation:before{content:"\f77a"}.fa-assistive-listening-systems:before{content:"\f2a2"}.fa-asterisk:before{content:"\f069"}.fa-asymmetrik:before{content:"\f372"}.fa-at:before{content:"\f1fa"}.fa-atlas:before{content:"\f558"}.fa-atlassian:before{content:"\f77b"}.fa-atom:before{content:"\f5d2"}.fa-audible:before{content:"\f373"}.fa-audio-description:before{content:"\f29e"}.fa-autoprefixer:before{content:"\f41c"}.fa-avianex:before{content:"\f374"}.fa-aviato:before{content:"\f421"}.fa-award:before{content:"\f559"}.fa-aws:before{content:"\f375"}.fa-baby:before{content:"\f77c"}.fa-baby-carriage:before{content:"\f77d"}.fa-backspace:before{content:"\f55a"}.fa-backward:before{content:"\f04a"}.fa-bacon:before{content:"\f7e5"}.fa-balance-scale:before{content:"\f24e"}.fa-ban:before{content:"\f05e"}.fa-band-aid:before{content:"\f462"}.fa-bandcamp:before{content:"\f2d5"}.fa-barcode:before{content:"\f02a"}.fa-bars:before{content:"\f0c9"}.fa-baseball-ball:before{content:"\f433"}.fa-basketball-ball:before{content:"\f434"}.fa-bath:before{content:"\f2cd"}.fa-battery-empty:before{content:"\f244"}.fa-battery-full:before{content:"\f240"}.fa-battery-half:before{content:"\f242"}.fa-battery-quarter:before{content:"\f243"}.fa-battery-three-quarters:before{content:"\f241"}.fa-battle-net:before{content:"\f835"}.fa-bed:before{content:"\f236"}.fa-beer:before{content:"\f0fc"}.fa-behance:before{content:"\f1b4"}.fa-behance-square:before{content:"\f1b5"}.fa-bell:before{content:"\f0f3"}.fa-bell-slash:before{content:"\f1f6"}.fa-bezier-curve:before{content:"\f55b"}.fa-bible:before{content:"\f647"}.fa-bicycle:before{content:"\f206"}.fa-bimobject:before{content:"\f378"}.fa-binoculars:before{content:"\f1e5"}.fa-biohazard:before{content:"\f780"}.fa-birthday-cake:before{content:"\f1fd"}.fa-bitbucket:before{content:"\f171"}.fa-bitcoin:before{content:"\f379"}.fa-bity:before{content:"\f37a"}.fa-black-tie:before{content:"\f27e"}.fa-blackberry:before{content:"\f37b"}.fa-blender:before{content:"\f517"}.fa-blender-phone:before{content:"\f6b6"}.fa-blind:before{content:"\f29d"}.fa-blog:before{content:"\f781"}.fa-blogger:before{content:"\f37c"}.fa-blogger-b:before{content:"\f37d"}.fa-bluetooth:before{content:"\f293"}.fa-bluetooth-b:before{content:"\f294"}.fa-bold:before{content:"\f032"}.fa-bolt:before{content:"\f0e7"}.fa-bomb:before{content:"\f1e2"}.fa-bone:before{content:"\f5d7"}.fa-bong:before{content:"\f55c"}.fa-book:before{content:"\f02d"}.fa-book-dead:before{content:"\f6b7"}.fa-book-medical:before{content:"\f7e6"}.fa-book-open:before{content:"\f518"}.fa-book-reader:before{content:"\f5da"}.fa-bookmark:before{content:"\f02e"}.fa-bootstrap:before{content:"\f836"}.fa-bowling-ball:before{content:"\f436"}.fa-box:before{content:"\f466"}.fa-box-open:before{content:"\f49e"}.fa-boxes:before{content:"\f468"}.fa-braille:before{content:"\f2a1"}.fa-brain:before{content:"\f5dc"}.fa-bread-slice:before{content:"\f7ec"}.fa-briefcase:before{content:"\f0b1"}.fa-briefcase-medical:before{content:"\f469"}.fa-broadcast-tower:before{content:"\f519"}.fa-broom:before{content:"\f51a"}.fa-brush:before{content:"\f55d"}.fa-btc:before{content:"\f15a"}.fa-buffer:before{content:"\f837"}.fa-bug:before{content:"\f188"}.fa-building:before{content:"\f1ad"}.fa-bullhorn:before{content:"\f0a1"}.fa-bullseye:before{content:"\f140"}.fa-burn:before{content:"\f46a"}.fa-buromobelexperte:before{content:"\f37f"}.fa-bus:before{content:"\f207"}.fa-bus-alt:before{content:"\f55e"}.fa-business-time:before{content:"\f64a"}.fa-buysellads:before{content:"\f20d"}.fa-calculator:before{content:"\f1ec"}.fa-calendar:before{content:"\f133"}.fa-calendar-alt:before{content:"\f073"}.fa-calendar-check:before{content:"\f274"}.fa-calendar-day:before{content:"\f783"}.fa-calendar-minus:before{content:"\f272"}.fa-calendar-plus:before{content:"\f271"}.fa-calendar-times:before{content:"\f273"}.fa-calendar-week:before{content:"\f784"}.fa-camera:before{content:"\f030"}.fa-camera-retro:before{content:"\f083"}.fa-campground:before{content:"\f6bb"}.fa-canadian-maple-leaf:before{content:"\f785"}.fa-candy-cane:before{content:"\f786"}.fa-cannabis:before{content:"\f55f"}.fa-capsules:before{content:"\f46b"}.fa-car:before{content:"\f1b9"}.fa-car-alt:before{content:"\f5de"}.fa-car-battery:before{content:"\f5df"}.fa-car-crash:before{content:"\f5e1"}.fa-car-side:before{content:"\f5e4"}.fa-caret-down:before{content:"\f0d7"}.fa-caret-left:before{content:"\f0d9"}.fa-caret-right:before{content:"\f0da"}.fa-caret-square-down:before{content:"\f150"}.fa-caret-square-left:before{content:"\f191"}.fa-caret-square-right:before{content:"\f152"}.fa-caret-square-up:before{content:"\f151"}.fa-caret-up:before{content:"\f0d8"}.fa-carrot:before{content:"\f787"}.fa-cart-arrow-down:before{content:"\f218"}.fa-cart-plus:before{content:"\f217"}.fa-cash-register:before{content:"\f788"}.fa-cat:before{content:"\f6be"}.fa-cc-amazon-pay:before{content:"\f42d"}.fa-cc-amex:before{content:"\f1f3"}.fa-cc-apple-pay:before{content:"\f416"}.fa-cc-diners-club:before{content:"\f24c"}.fa-cc-discover:before{content:"\f1f2"}.fa-cc-jcb:before{content:"\f24b"}.fa-cc-mastercard:before{content:"\f1f1"}.fa-cc-paypal:before{content:"\f1f4"}.fa-cc-stripe:before{content:"\f1f5"}.fa-cc-visa:before{content:"\f1f0"}.fa-centercode:before{content:"\f380"}.fa-centos:before{content:"\f789"}.fa-certificate:before{content:"\f0a3"}.fa-chair:before{content:"\f6c0"}.fa-chalkboard:before{content:"\f51b"}.fa-chalkboard-teacher:before{content:"\f51c"}.fa-charging-station:before{content:"\f5e7"}.fa-chart-area:before{content:"\f1fe"}.fa-chart-bar:before{content:"\f080"}.fa-chart-line:before{content:"\f201"}.fa-chart-pie:before{content:"\f200"}.fa-check:before{content:"\f00c"}.fa-check-circle:before{content:"\f058"}.fa-check-double:before{content:"\f560"}.fa-check-square:before{content:"\f14a"}.fa-cheese:before{content:"\f7ef"}.fa-chess:before{content:"\f439"}.fa-chess-bishop:before{content:"\f43a"}.fa-chess-board:before{content:"\f43c"}.fa-chess-king:before{content:"\f43f"}.fa-chess-knight:before{content:"\f441"}.fa-chess-pawn:before{content:"\f443"}.fa-chess-queen:before{content:"\f445"}.fa-chess-rook:before{content:"\f447"}.fa-chevron-circle-down:before{content:"\f13a"}.fa-chevron-circle-left:before{content:"\f137"}.fa-chevron-circle-right:before{content:"\f138"}.fa-chevron-circle-up:before{content:"\f139"}.fa-chevron-down:before{content:"\f078"}.fa-chevron-left:before{content:"\f053"}.fa-chevron-right:before{content:"\f054"}.fa-chevron-up:before{content:"\f077"}.fa-child:before{content:"\f1ae"}.fa-chrome:before{content:"\f268"}.fa-chromecast:before{content:"\f838"}.fa-church:before{content:"\f51d"}.fa-circle:before{content:"\f111"}.fa-circle-notch:before{content:"\f1ce"}.fa-city:before{content:"\f64f"}.fa-clinic-medical:before{content:"\f7f2"}.fa-clipboard:before{content:"\f328"}.fa-clipboard-check:before{content:"\f46c"}.fa-clipboard-list:before{content:"\f46d"}.fa-clock:before{content:"\f017"}.fa-clone:before{content:"\f24d"}.fa-closed-captioning:before{content:"\f20a"}.fa-cloud:before{content:"\f0c2"}.fa-cloud-download-alt:before{content:"\f381"}.fa-cloud-meatball:before{content:"\f73b"}.fa-cloud-moon:before{content:"\f6c3"}.fa-cloud-moon-rain:before{content:"\f73c"}.fa-cloud-rain:before{content:"\f73d"}.fa-cloud-showers-heavy:before{content:"\f740"}.fa-cloud-sun:before{content:"\f6c4"}.fa-cloud-sun-rain:before{content:"\f743"}.fa-cloud-upload-alt:before{content:"\f382"}.fa-cloudscale:before{content:"\f383"}.fa-cloudsmith:before{content:"\f384"}.fa-cloudversify:before{content:"\f385"}.fa-cocktail:before{content:"\f561"}.fa-code:before{content:"\f121"}.fa-code-branch:before{content:"\f126"}.fa-codepen:before{content:"\f1cb"}.fa-codiepie:before{content:"\f284"}.fa-coffee:before{content:"\f0f4"}.fa-cog:before{content:"\f013"}.fa-cogs:before{content:"\f085"}.fa-coins:before{content:"\f51e"}.fa-columns:before{content:"\f0db"}.fa-comment:before{content:"\f075"}.fa-comment-alt:before{content:"\f27a"}.fa-comment-dollar:before{content:"\f651"}.fa-comment-dots:before{content:"\f4ad"}.fa-comment-medical:before{content:"\f7f5"}.fa-comment-slash:before{content:"\f4b3"}.fa-comments:before{content:"\f086"}.fa-comments-dollar:before{content:"\f653"}.fa-compact-disc:before{content:"\f51f"}.fa-compass:before{content:"\f14e"}.fa-compress:before{content:"\f066"}.fa-compress-arrows-alt:before{content:"\f78c"}.fa-concierge-bell:before{content:"\f562"}.fa-confluence:before{content:"\f78d"}.fa-connectdevelop:before{content:"\f20e"}.fa-contao:before{content:"\f26d"}.fa-cookie:before{content:"\f563"}.fa-cookie-bite:before{content:"\f564"}.fa-copy:before{content:"\f0c5"}.fa-copyright:before{content:"\f1f9"}.fa-couch:before{content:"\f4b8"}.fa-cpanel:before{content:"\f388"}.fa-creative-commons:before{content:"\f25e"}.fa-creative-commons-by:before{content:"\f4e7"}.fa-creative-commons-nc:before{content:"\f4e8"}.fa-creative-commons-nc-eu:before{content:"\f4e9"}.fa-creative-commons-nc-jp:before{content:"\f4ea"}.fa-creative-commons-nd:before{content:"\f4eb"}.fa-creative-commons-pd:before{content:"\f4ec"}.fa-creative-commons-pd-alt:before{content:"\f4ed"}.fa-creative-commons-remix:before{content:"\f4ee"}.fa-creative-commons-sa:before{content:"\f4ef"}.fa-creative-commons-sampling:before{content:"\f4f0"}.fa-creative-commons-sampling-plus:before{content:"\f4f1"}.fa-creative-commons-share:before{content:"\f4f2"}.fa-creative-commons-zero:before{content:"\f4f3"}.fa-credit-card:before{content:"\f09d"}.fa-critical-role:before{content:"\f6c9"}.fa-crop:before{content:"\f125"}.fa-crop-alt:before{content:"\f565"}.fa-cross:before{content:"\f654"}.fa-crosshairs:before{content:"\f05b"}.fa-crow:before{content:"\f520"}.fa-crown:before{content:"\f521"}.fa-crutch:before{content:"\f7f7"}.fa-css3:before{content:"\f13c"}.fa-css3-alt:before{content:"\f38b"}.fa-cube:before{content:"\f1b2"}.fa-cubes:before{content:"\f1b3"}.fa-cut:before{content:"\f0c4"}.fa-cuttlefish:before{content:"\f38c"}.fa-d-and-d:before{content:"\f38d"}.fa-d-and-d-beyond:before{content:"\f6ca"}.fa-dashcube:before{content:"\f210"}.fa-database:before{content:"\f1c0"}.fa-deaf:before{content:"\f2a4"}.fa-delicious:before{content:"\f1a5"}.fa-democrat:before{content:"\f747"}.fa-deploydog:before{content:"\f38e"}.fa-deskpro:before{content:"\f38f"}.fa-desktop:before{content:"\f108"}.fa-dev:before{content:"\f6cc"}.fa-deviantart:before{content:"\f1bd"}.fa-dharmachakra:before{content:"\f655"}.fa-dhl:before{content:"\f790"}.fa-diagnoses:before{content:"\f470"}.fa-diaspora:before{content:"\f791"}.fa-dice:before{content:"\f522"}.fa-dice-d20:before{content:"\f6cf"}.fa-dice-d6:before{content:"\f6d1"}.fa-dice-five:before{content:"\f523"}.fa-dice-four:before{content:"\f524"}.fa-dice-one:before{content:"\f525"}.fa-dice-six:before{content:"\f526"}.fa-dice-three:before{content:"\f527"}.fa-dice-two:before{content:"\f528"}.fa-digg:before{content:"\f1a6"}.fa-digital-ocean:before{content:"\f391"}.fa-digital-tachograph:before{content:"\f566"}.fa-directions:before{content:"\f5eb"}.fa-discord:before{content:"\f392"}.fa-discourse:before{content:"\f393"}.fa-divide:before{content:"\f529"}.fa-dizzy:before{content:"\f567"}.fa-dna:before{content:"\f471"}.fa-dochub:before{content:"\f394"}.fa-docker:before{content:"\f395"}.fa-dog:before{content:"\f6d3"}.fa-dollar-sign:before{content:"\f155"}.fa-dolly:before{content:"\f472"}.fa-dolly-flatbed:before{content:"\f474"}.fa-donate:before{content:"\f4b9"}.fa-door-closed:before{content:"\f52a"}.fa-door-open:before{content:"\f52b"}.fa-dot-circle:before{content:"\f192"}.fa-dove:before{content:"\f4ba"}.fa-download:before{content:"\f019"}.fa-draft2digital:before{content:"\f396"}.fa-drafting-compass:before{content:"\f568"}.fa-dragon:before{content:"\f6d5"}.fa-draw-polygon:before{content:"\f5ee"}.fa-dribbble:before{content:"\f17d"}.fa-dribbble-square:before{content:"\f397"}.fa-dropbox:before{content:"\f16b"}.fa-drum:before{content:"\f569"}.fa-drum-steelpan:before{content:"\f56a"}.fa-drumstick-bite:before{content:"\f6d7"}.fa-drupal:before{content:"\f1a9"}.fa-dumbbell:before{content:"\f44b"}.fa-dumpster:before{content:"\f793"}.fa-dumpster-fire:before{content:"\f794"}.fa-dungeon:before{content:"\f6d9"}.fa-dyalog:before{content:"\f399"}.fa-earlybirds:before{content:"\f39a"}.fa-ebay:before{content:"\f4f4"}.fa-edge:before{content:"\f282"}.fa-edit:before{content:"\f044"}.fa-egg:before{content:"\f7fb"}.fa-eject:before{content:"\f052"}.fa-elementor:before{content:"\f430"}.fa-ellipsis-h:before{content:"\f141"}.fa-ellipsis-v:before{content:"\f142"}.fa-ello:before{content:"\f5f1"}.fa-ember:before{content:"\f423"}.fa-empire:before{content:"\f1d1"}.fa-envelope:before{content:"\f0e0"}.fa-envelope-open:before{content:"\f2b6"}.fa-envelope-open-text:before{content:"\f658"}.fa-envelope-square:before{content:"\f199"}.fa-envira:before{content:"\f299"}.fa-equals:before{content:"\f52c"}.fa-eraser:before{content:"\f12d"}.fa-erlang:before{content:"\f39d"}.fa-ethereum:before{content:"\f42e"}.fa-ethernet:before{content:"\f796"}.fa-etsy:before{content:"\f2d7"}.fa-euro-sign:before{content:"\f153"}.fa-evernote:before{content:"\f839"}.fa-exchange-alt:before{content:"\f362"}.fa-exclamation:before{content:"\f12a"}.fa-exclamation-circle:before{content:"\f06a"}.fa-exclamation-triangle:before{content:"\f071"}.fa-expand:before{content:"\f065"}.fa-expand-arrows-alt:before{content:"\f31e"}.fa-expeditedssl:before{content:"\f23e"}.fa-external-link-alt:before{content:"\f35d"}.fa-external-link-square-alt:before{content:"\f360"}.fa-eye:before{content:"\f06e"}.fa-eye-dropper:before{content:"\f1fb"}.fa-eye-slash:before{content:"\f070"}.fa-facebook:before{content:"\f09a"}.fa-facebook-f:before{content:"\f39e"}.fa-facebook-messenger:before{content:"\f39f"}.fa-facebook-square:before{content:"\f082"}.fa-fantasy-flight-games:before{content:"\f6dc"}.fa-fast-backward:before{content:"\f049"}.fa-fast-forward:before{content:"\f050"}.fa-fax:before{content:"\f1ac"}.fa-feather:before{content:"\f52d"}.fa-feather-alt:before{content:"\f56b"}.fa-fedex:before{content:"\f797"}.fa-fedora:before{content:"\f798"}.fa-female:before{content:"\f182"}.fa-fighter-jet:before{content:"\f0fb"}.fa-figma:before{content:"\f799"}.fa-file:before{content:"\f15b"}.fa-file-alt:before{content:"\f15c"}.fa-file-archive:before{content:"\f1c6"}.fa-file-audio:before{content:"\f1c7"}.fa-file-code:before{content:"\f1c9"}.fa-file-contract:before{content:"\f56c"}.fa-file-csv:before{content:"\f6dd"}.fa-file-download:before{content:"\f56d"}.fa-file-excel:before{content:"\f1c3"}.fa-file-export:before{content:"\f56e"}.fa-file-image:before{content:"\f1c5"}.fa-file-import:before{content:"\f56f"}.fa-file-invoice:before{content:"\f570"}.fa-file-invoice-dollar:before{content:"\f571"}.fa-file-medical:before{content:"\f477"}.fa-file-medical-alt:before{content:"\f478"}.fa-file-pdf:before{content:"\f1c1"}.fa-file-powerpoint:before{content:"\f1c4"}.fa-file-prescription:before{content:"\f572"}.fa-file-signature:before{content:"\f573"}.fa-file-upload:before{content:"\f574"}.fa-file-video:before{content:"\f1c8"}.fa-file-word:before{content:"\f1c2"}.fa-fill:before{content:"\f575"}.fa-fill-drip:before{content:"\f576"}.fa-film:before{content:"\f008"}.fa-filter:before{content:"\f0b0"}.fa-fingerprint:before{content:"\f577"}.fa-fire:before{content:"\f06d"}.fa-fire-alt:before{content:"\f7e4"}.fa-fire-extinguisher:before{content:"\f134"}.fa-firefox:before{content:"\f269"}.fa-first-aid:before{content:"\f479"}.fa-first-order:before{content:"\f2b0"}.fa-first-order-alt:before{content:"\f50a"}.fa-firstdraft:before{content:"\f3a1"}.fa-fish:before{content:"\f578"}.fa-fist-raised:before{content:"\f6de"}.fa-flag:before{content:"\f024"}.fa-flag-checkered:before{content:"\f11e"}.fa-flag-usa:before{content:"\f74d"}.fa-flask:before{content:"\f0c3"}.fa-flickr:before{content:"\f16e"}.fa-flipboard:before{content:"\f44d"}.fa-flushed:before{content:"\f579"}.fa-fly:before{content:"\f417"}.fa-folder:before{content:"\f07b"}.fa-folder-minus:before{content:"\f65d"}.fa-folder-open:before{content:"\f07c"}.fa-folder-plus:before{content:"\f65e"}.fa-font:before{content:"\f031"}.fa-font-awesome:before{content:"\f2b4"}.fa-font-awesome-alt:before{content:"\f35c"}.fa-font-awesome-flag:before{content:"\f425"}.fa-font-awesome-logo-full:before{content:"\f4e6"}.fa-fonticons:before{content:"\f280"}.fa-fonticons-fi:before{content:"\f3a2"}.fa-football-ball:before{content:"\f44e"}.fa-fort-awesome:before{content:"\f286"}.fa-fort-awesome-alt:before{content:"\f3a3"}.fa-forumbee:before{content:"\f211"}.fa-forward:before{content:"\f04e"}.fa-foursquare:before{content:"\f180"}.fa-free-code-camp:before{content:"\f2c5"}.fa-freebsd:before{content:"\f3a4"}.fa-frog:before{content:"\f52e"}.fa-frown:before{content:"\f119"}.fa-frown-open:before{content:"\f57a"}.fa-fulcrum:before{content:"\f50b"}.fa-funnel-dollar:before{content:"\f662"}.fa-futbol:before{content:"\f1e3"}.fa-galactic-republic:before{content:"\f50c"}.fa-galactic-senate:before{content:"\f50d"}.fa-gamepad:before{content:"\f11b"}.fa-gas-pump:before{content:"\f52f"}.fa-gavel:before{content:"\f0e3"}.fa-gem:before{content:"\f3a5"}.fa-genderless:before{content:"\f22d"}.fa-get-pocket:before{content:"\f265"}.fa-gg:before{content:"\f260"}.fa-gg-circle:before{content:"\f261"}.fa-ghost:before{content:"\f6e2"}.fa-gift:before{content:"\f06b"}.fa-gifts:before{content:"\f79c"}.fa-git:before{content:"\f1d3"}.fa-git-alt:before{content:"\f841"}.fa-git-square:before{content:"\f1d2"}.fa-github:before{content:"\f09b"}.fa-github-alt:before{content:"\f113"}.fa-github-square:before{content:"\f092"}.fa-gitkraken:before{content:"\f3a6"}.fa-gitlab:before{content:"\f296"}.fa-gitter:before{content:"\f426"}.fa-glass-cheers:before{content:"\f79f"}.fa-glass-martini:before{content:"\f000"}.fa-glass-martini-alt:before{content:"\f57b"}.fa-glass-whiskey:before{content:"\f7a0"}.fa-glasses:before{content:"\f530"}.fa-glide:before{content:"\f2a5"}.fa-glide-g:before{content:"\f2a6"}.fa-globe:before{content:"\f0ac"}.fa-globe-africa:before{content:"\f57c"}.fa-globe-americas:before{content:"\f57d"}.fa-globe-asia:before{content:"\f57e"}.fa-globe-europe:before{content:"\f7a2"}.fa-gofore:before{content:"\f3a7"}.fa-golf-ball:before{content:"\f450"}.fa-goodreads:before{content:"\f3a8"}.fa-goodreads-g:before{content:"\f3a9"}.fa-google:before{content:"\f1a0"}.fa-google-drive:before{content:"\f3aa"}.fa-google-play:before{content:"\f3ab"}.fa-google-plus:before{content:"\f2b3"}.fa-google-plus-g:before{content:"\f0d5"}.fa-google-plus-square:before{content:"\f0d4"}.fa-google-wallet:before{content:"\f1ee"}.fa-gopuram:before{content:"\f664"}.fa-graduation-cap:before{content:"\f19d"}.fa-gratipay:before{content:"\f184"}.fa-grav:before{content:"\f2d6"}.fa-greater-than:before{content:"\f531"}.fa-greater-than-equal:before{content:"\f532"}.fa-grimace:before{content:"\f57f"}.fa-grin:before{content:"\f580"}.fa-grin-alt:before{content:"\f581"}.fa-grin-beam:before{content:"\f582"}.fa-grin-beam-sweat:before{content:"\f583"}.fa-grin-hearts:before{content:"\f584"}.fa-grin-squint:before{content:"\f585"}.fa-grin-squint-tears:before{content:"\f586"}.fa-grin-stars:before{content:"\f587"}.fa-grin-tears:before{content:"\f588"}.fa-grin-tongue:before{content:"\f589"}.fa-grin-tongue-squint:before{content:"\f58a"}.fa-grin-tongue-wink:before{content:"\f58b"}.fa-grin-wink:before{content:"\f58c"}.fa-grip-horizontal:before{content:"\f58d"}.fa-grip-lines:before{content:"\f7a4"}.fa-grip-lines-vertical:before{content:"\f7a5"}.fa-grip-vertical:before{content:"\f58e"}.fa-gripfire:before{content:"\f3ac"}.fa-grunt:before{content:"\f3ad"}.fa-guitar:before{content:"\f7a6"}.fa-gulp:before{content:"\f3ae"}.fa-h-square:before{content:"\f0fd"}.fa-hacker-news:before{content:"\f1d4"}.fa-hacker-news-square:before{content:"\f3af"}.fa-hackerrank:before{content:"\f5f7"}.fa-hamburger:before{content:"\f805"}.fa-hammer:before{content:"\f6e3"}.fa-hamsa:before{content:"\f665"}.fa-hand-holding:before{content:"\f4bd"}.fa-hand-holding-heart:before{content:"\f4be"}.fa-hand-holding-usd:before{content:"\f4c0"}.fa-hand-lizard:before{content:"\f258"}.fa-hand-middle-finger:before{content:"\f806"}.fa-hand-paper:before{content:"\f256"}.fa-hand-peace:before{content:"\f25b"}.fa-hand-point-down:before{content:"\f0a7"}.fa-hand-point-left:before{content:"\f0a5"}.fa-hand-point-right:before{content:"\f0a4"}.fa-hand-point-up:before{content:"\f0a6"}.fa-hand-pointer:before{content:"\f25a"}.fa-hand-rock:before{content:"\f255"}.fa-hand-scissors:before{content:"\f257"}.fa-hand-spock:before{content:"\f259"}.fa-hands:before{content:"\f4c2"}.fa-hands-helping:before{content:"\f4c4"}.fa-handshake:before{content:"\f2b5"}.fa-hanukiah:before{content:"\f6e6"}.fa-hard-hat:before{content:"\f807"}.fa-hashtag:before{content:"\f292"}.fa-hat-wizard:before{content:"\f6e8"}.fa-haykal:before{content:"\f666"}.fa-hdd:before{content:"\f0a0"}.fa-heading:before{content:"\f1dc"}.fa-headphones:before{content:"\f025"}.fa-headphones-alt:before{content:"\f58f"}.fa-headset:before{content:"\f590"}.fa-heart:before{content:"\f004"}.fa-heart-broken:before{content:"\f7a9"}.fa-heartbeat:before{content:"\f21e"}.fa-helicopter:before{content:"\f533"}.fa-highlighter:before{content:"\f591"}.fa-hiking:before{content:"\f6ec"}.fa-hippo:before{content:"\f6ed"}.fa-hips:before{content:"\f452"}.fa-hire-a-helper:before{content:"\f3b0"}.fa-history:before{content:"\f1da"}.fa-hockey-puck:before{content:"\f453"}.fa-holly-berry:before{content:"\f7aa"}.fa-home:before{content:"\f015"}.fa-hooli:before{content:"\f427"}.fa-hornbill:before{content:"\f592"}.fa-horse:before{content:"\f6f0"}.fa-horse-head:before{content:"\f7ab"}.fa-hospital:before{content:"\f0f8"}.fa-hospital-alt:before{content:"\f47d"}.fa-hospital-symbol:before{content:"\f47e"}.fa-hot-tub:before{content:"\f593"}.fa-hotdog:before{content:"\f80f"}.fa-hotel:before{content:"\f594"}.fa-hotjar:before{content:"\f3b1"}.fa-hourglass:before{content:"\f254"}.fa-hourglass-end:before{content:"\f253"}.fa-hourglass-half:before{content:"\f252"}.fa-hourglass-start:before{content:"\f251"}.fa-house-damage:before{content:"\f6f1"}.fa-houzz:before{content:"\f27c"}.fa-hryvnia:before{content:"\f6f2"}.fa-html5:before{content:"\f13b"}.fa-hubspot:before{content:"\f3b2"}.fa-i-cursor:before{content:"\f246"}.fa-ice-cream:before{content:"\f810"}.fa-icicles:before{content:"\f7ad"}.fa-id-badge:before{content:"\f2c1"}.fa-id-card:before{content:"\f2c2"}.fa-id-card-alt:before{content:"\f47f"}.fa-igloo:before{content:"\f7ae"}.fa-image:before{content:"\f03e"}.fa-images:before{content:"\f302"}.fa-imdb:before{content:"\f2d8"}.fa-inbox:before{content:"\f01c"}.fa-indent:before{content:"\f03c"}.fa-industry:before{content:"\f275"}.fa-infinity:before{content:"\f534"}.fa-info:before{content:"\f129"}.fa-info-circle:before{content:"\f05a"}.fa-instagram:before{content:"\f16d"}.fa-intercom:before{content:"\f7af"}.fa-internet-explorer:before{content:"\f26b"}.fa-invision:before{content:"\f7b0"}.fa-ioxhost:before{content:"\f208"}.fa-italic:before{content:"\f033"}.fa-itch-io:before{content:"\f83a"}.fa-itunes:before{content:"\f3b4"}.fa-itunes-note:before{content:"\f3b5"}.fa-java:before{content:"\f4e4"}.fa-jedi:before{content:"\f669"}.fa-jedi-order:before{content:"\f50e"}.fa-jenkins:before{content:"\f3b6"}.fa-jira:before{content:"\f7b1"}.fa-joget:before{content:"\f3b7"}.fa-joint:before{content:"\f595"}.fa-joomla:before{content:"\f1aa"}.fa-journal-whills:before{content:"\f66a"}.fa-js:before{content:"\f3b8"}.fa-js-square:before{content:"\f3b9"}.fa-jsfiddle:before{content:"\f1cc"}.fa-kaaba:before{content:"\f66b"}.fa-kaggle:before{content:"\f5fa"}.fa-key:before{content:"\f084"}.fa-keybase:before{content:"\f4f5"}.fa-keyboard:before{content:"\f11c"}.fa-keycdn:before{content:"\f3ba"}.fa-khanda:before{content:"\f66d"}.fa-kickstarter:before{content:"\f3bb"}.fa-kickstarter-k:before{content:"\f3bc"}.fa-kiss:before{content:"\f596"}.fa-kiss-beam:before{content:"\f597"}.fa-kiss-wink-heart:before{content:"\f598"}.fa-kiwi-bird:before{content:"\f535"}.fa-korvue:before{content:"\f42f"}.fa-landmark:before{content:"\f66f"}.fa-language:before{content:"\f1ab"}.fa-laptop:before{content:"\f109"}.fa-laptop-code:before{content:"\f5fc"}.fa-laptop-medical:before{content:"\f812"}.fa-laravel:before{content:"\f3bd"}.fa-lastfm:before{content:"\f202"}.fa-lastfm-square:before{content:"\f203"}.fa-laugh:before{content:"\f599"}.fa-laugh-beam:before{content:"\f59a"}.fa-laugh-squint:before{content:"\f59b"}.fa-laugh-wink:before{content:"\f59c"}.fa-layer-group:before{content:"\f5fd"}.fa-leaf:before{content:"\f06c"}.fa-leanpub:before{content:"\f212"}.fa-lemon:before{content:"\f094"}.fa-less:before{content:"\f41d"}.fa-less-than:before{content:"\f536"}.fa-less-than-equal:before{content:"\f537"}.fa-level-down-alt:before{content:"\f3be"}.fa-level-up-alt:before{content:"\f3bf"}.fa-life-ring:before{content:"\f1cd"}.fa-lightbulb:before{content:"\f0eb"}.fa-line:before{content:"\f3c0"}.fa-link:before{content:"\f0c1"}.fa-linkedin:before{content:"\f08c"}.fa-linkedin-in:before{content:"\f0e1"}.fa-linode:before{content:"\f2b8"}.fa-linux:before{content:"\f17c"}.fa-lira-sign:before{content:"\f195"}.fa-list:before{content:"\f03a"}.fa-list-alt:before{content:"\f022"}.fa-list-ol:before{content:"\f0cb"}.fa-list-ul:before{content:"\f0ca"}.fa-location-arrow:before{content:"\f124"}.fa-lock:before{content:"\f023"}.fa-lock-open:before{content:"\f3c1"}.fa-long-arrow-alt-down:before{content:"\f309"}.fa-long-arrow-alt-left:before{content:"\f30a"}.fa-long-arrow-alt-right:before{content:"\f30b"}.fa-long-arrow-alt-up:before{content:"\f30c"}.fa-low-vision:before{content:"\f2a8"}.fa-luggage-cart:before{content:"\f59d"}.fa-lyft:before{content:"\f3c3"}.fa-magento:before{content:"\f3c4"}.fa-magic:before{content:"\f0d0"}.fa-magnet:before{content:"\f076"}.fa-mail-bulk:before{content:"\f674"}.fa-mailchimp:before{content:"\f59e"}.fa-male:before{content:"\f183"}.fa-mandalorian:before{content:"\f50f"}.fa-map:before{content:"\f279"}.fa-map-marked:before{content:"\f59f"}.fa-map-marked-alt:before{content:"\f5a0"}.fa-map-marker:before{content:"\f041"}.fa-map-marker-alt:before{content:"\f3c5"}.fa-map-pin:before{content:"\f276"}.fa-map-signs:before{content:"\f277"}.fa-markdown:before{content:"\f60f"}.fa-marker:before{content:"\f5a1"}.fa-mars:before{content:"\f222"}.fa-mars-double:before{content:"\f227"}.fa-mars-stroke:before{content:"\f229"}.fa-mars-stroke-h:before{content:"\f22b"}.fa-mars-stroke-v:before{content:"\f22a"}.fa-mask:before{content:"\f6fa"}.fa-mastodon:before{content:"\f4f6"}.fa-maxcdn:before{content:"\f136"}.fa-medal:before{content:"\f5a2"}.fa-medapps:before{content:"\f3c6"}.fa-medium:before{content:"\f23a"}.fa-medium-m:before{content:"\f3c7"}.fa-medkit:before{content:"\f0fa"}.fa-medrt:before{content:"\f3c8"}.fa-meetup:before{content:"\f2e0"}.fa-megaport:before{content:"\f5a3"}.fa-meh:before{content:"\f11a"}.fa-meh-blank:before{content:"\f5a4"}.fa-meh-rolling-eyes:before{content:"\f5a5"}.fa-memory:before{content:"\f538"}.fa-mendeley:before{content:"\f7b3"}.fa-menorah:before{content:"\f676"}.fa-mercury:before{content:"\f223"}.fa-meteor:before{content:"\f753"}.fa-microchip:before{content:"\f2db"}.fa-microphone:before{content:"\f130"}.fa-microphone-alt:before{content:"\f3c9"}.fa-microphone-alt-slash:before{content:"\f539"}.fa-microphone-slash:before{content:"\f131"}.fa-microscope:before{content:"\f610"}.fa-microsoft:before{content:"\f3ca"}.fa-minus:before{content:"\f068"}.fa-minus-circle:before{content:"\f056"}.fa-minus-square:before{content:"\f146"}.fa-mitten:before{content:"\f7b5"}.fa-mix:before{content:"\f3cb"}.fa-mixcloud:before{content:"\f289"}.fa-mizuni:before{content:"\f3cc"}.fa-mobile:before{content:"\f10b"}.fa-mobile-alt:before{content:"\f3cd"}.fa-modx:before{content:"\f285"}.fa-monero:before{content:"\f3d0"}.fa-money-bill:before{content:"\f0d6"}.fa-money-bill-alt:before{content:"\f3d1"}.fa-money-bill-wave:before{content:"\f53a"}.fa-money-bill-wave-alt:before{content:"\f53b"}.fa-money-check:before{content:"\f53c"}.fa-money-check-alt:before{content:"\f53d"}.fa-monument:before{content:"\f5a6"}.fa-moon:before{content:"\f186"}.fa-mortar-pestle:before{content:"\f5a7"}.fa-mosque:before{content:"\f678"}.fa-motorcycle:before{content:"\f21c"}.fa-mountain:before{content:"\f6fc"}.fa-mouse-pointer:before{content:"\f245"}.fa-mug-hot:before{content:"\f7b6"}.fa-music:before{content:"\f001"}.fa-napster:before{content:"\f3d2"}.fa-neos:before{content:"\f612"}.fa-network-wired:before{content:"\f6ff"}.fa-neuter:before{content:"\f22c"}.fa-newspaper:before{content:"\f1ea"}.fa-nimblr:before{content:"\f5a8"}.fa-nintendo-switch:before{content:"\f418"}.fa-node:before{content:"\f419"}.fa-node-js:before{content:"\f3d3"}.fa-not-equal:before{content:"\f53e"}.fa-notes-medical:before{content:"\f481"}.fa-npm:before{content:"\f3d4"}.fa-ns8:before{content:"\f3d5"}.fa-nutritionix:before{content:"\f3d6"}.fa-object-group:before{content:"\f247"}.fa-object-ungroup:before{content:"\f248"}.fa-odnoklassniki:before{content:"\f263"}.fa-odnoklassniki-square:before{content:"\f264"}.fa-oil-can:before{content:"\f613"}.fa-old-republic:before{content:"\f510"}.fa-om:before{content:"\f679"}.fa-opencart:before{content:"\f23d"}.fa-openid:before{content:"\f19b"}.fa-opera:before{content:"\f26a"}.fa-optin-monster:before{content:"\f23c"}.fa-osi:before{content:"\f41a"}.fa-otter:before{content:"\f700"}.fa-outdent:before{content:"\f03b"}.fa-page4:before{content:"\f3d7"}.fa-pagelines:before{content:"\f18c"}.fa-pager:before{content:"\f815"}.fa-paint-brush:before{content:"\f1fc"}.fa-paint-roller:before{content:"\f5aa"}.fa-palette:before{content:"\f53f"}.fa-palfed:before{content:"\f3d8"}.fa-pallet:before{content:"\f482"}.fa-paper-plane:before{content:"\f1d8"}.fa-paperclip:before{content:"\f0c6"}.fa-parachute-box:before{content:"\f4cd"}.fa-paragraph:before{content:"\f1dd"}.fa-parking:before{content:"\f540"}.fa-passport:before{content:"\f5ab"}.fa-pastafarianism:before{content:"\f67b"}.fa-paste:before{content:"\f0ea"}.fa-patreon:before{content:"\f3d9"}.fa-pause:before{content:"\f04c"}.fa-pause-circle:before{content:"\f28b"}.fa-paw:before{content:"\f1b0"}.fa-paypal:before{content:"\f1ed"}.fa-peace:before{content:"\f67c"}.fa-pen:before{content:"\f304"}.fa-pen-alt:before{content:"\f305"}.fa-pen-fancy:before{content:"\f5ac"}.fa-pen-nib:before{content:"\f5ad"}.fa-pen-square:before{content:"\f14b"}.fa-pencil-alt:before{content:"\f303"}.fa-pencil-ruler:before{content:"\f5ae"}.fa-penny-arcade:before{content:"\f704"}.fa-people-carry:before{content:"\f4ce"}.fa-pepper-hot:before{content:"\f816"}.fa-percent:before{content:"\f295"}.fa-percentage:before{content:"\f541"}.fa-periscope:before{content:"\f3da"}.fa-person-booth:before{content:"\f756"}.fa-phabricator:before{content:"\f3db"}.fa-phoenix-framework:before{content:"\f3dc"}.fa-phoenix-squadron:before{content:"\f511"}.fa-phone:before{content:"\f095"}.fa-phone-slash:before{content:"\f3dd"}.fa-phone-square:before{content:"\f098"}.fa-phone-volume:before{content:"\f2a0"}.fa-php:before{content:"\f457"}.fa-pied-piper:before{content:"\f2ae"}.fa-pied-piper-alt:before{content:"\f1a8"}.fa-pied-piper-hat:before{content:"\f4e5"}.fa-pied-piper-pp:before{content:"\f1a7"}.fa-piggy-bank:before{content:"\f4d3"}.fa-pills:before{content:"\f484"}.fa-pinterest:before{content:"\f0d2"}.fa-pinterest-p:before{content:"\f231"}.fa-pinterest-square:before{content:"\f0d3"}.fa-pizza-slice:before{content:"\f818"}.fa-place-of-worship:before{content:"\f67f"}.fa-plane:before{content:"\f072"}.fa-plane-arrival:before{content:"\f5af"}.fa-plane-departure:before{content:"\f5b0"}.fa-play:before{content:"\f04b"}.fa-play-circle:before{content:"\f144"}.fa-playstation:before{content:"\f3df"}.fa-plug:before{content:"\f1e6"}.fa-plus:before{content:"\f067"}.fa-plus-circle:before{content:"\f055"}.fa-plus-square:before{content:"\f0fe"}.fa-podcast:before{content:"\f2ce"}.fa-poll:before{content:"\f681"}.fa-poll-h:before{content:"\f682"}.fa-poo:before{content:"\f2fe"}.fa-poo-storm:before{content:"\f75a"}.fa-poop:before{content:"\f619"}.fa-portrait:before{content:"\f3e0"}.fa-pound-sign:before{content:"\f154"}.fa-power-off:before{content:"\f011"}.fa-pray:before{content:"\f683"}.fa-praying-hands:before{content:"\f684"}.fa-prescription:before{content:"\f5b1"}.fa-prescription-bottle:before{content:"\f485"}.fa-prescription-bottle-alt:before{content:"\f486"}.fa-print:before{content:"\f02f"}.fa-procedures:before{content:"\f487"}.fa-product-hunt:before{content:"\f288"}.fa-project-diagram:before{content:"\f542"}.fa-pushed:before{content:"\f3e1"}.fa-puzzle-piece:before{content:"\f12e"}.fa-python:before{content:"\f3e2"}.fa-qq:before{content:"\f1d6"}.fa-qrcode:before{content:"\f029"}.fa-question:before{content:"\f128"}.fa-question-circle:before{content:"\f059"}.fa-quidditch:before{content:"\f458"}.fa-quinscape:before{content:"\f459"}.fa-quora:before{content:"\f2c4"}.fa-quote-left:before{content:"\f10d"}.fa-quote-right:before{content:"\f10e"}.fa-quran:before{content:"\f687"}.fa-r-project:before{content:"\f4f7"}.fa-radiation:before{content:"\f7b9"}.fa-radiation-alt:before{content:"\f7ba"}.fa-rainbow:before{content:"\f75b"}.fa-random:before{content:"\f074"}.fa-raspberry-pi:before{content:"\f7bb"}.fa-ravelry:before{content:"\f2d9"}.fa-react:before{content:"\f41b"}.fa-reacteurope:before{content:"\f75d"}.fa-readme:before{content:"\f4d5"}.fa-rebel:before{content:"\f1d0"}.fa-receipt:before{content:"\f543"}.fa-recycle:before{content:"\f1b8"}.fa-red-river:before{content:"\f3e3"}.fa-reddit:before{content:"\f1a1"}.fa-reddit-alien:before{content:"\f281"}.fa-reddit-square:before{content:"\f1a2"}.fa-redhat:before{content:"\f7bc"}.fa-redo:before{content:"\f01e"}.fa-redo-alt:before{content:"\f2f9"}.fa-registered:before{content:"\f25d"}.fa-renren:before{content:"\f18b"}.fa-reply:before{content:"\f3e5"}.fa-reply-all:before{content:"\f122"}.fa-replyd:before{content:"\f3e6"}.fa-republican:before{content:"\f75e"}.fa-researchgate:before{content:"\f4f8"}.fa-resolving:before{content:"\f3e7"}.fa-restroom:before{content:"\f7bd"}.fa-retweet:before{content:"\f079"}.fa-rev:before{content:"\f5b2"}.fa-ribbon:before{content:"\f4d6"}.fa-ring:before{content:"\f70b"}.fa-road:before{content:"\f018"}.fa-robot:before{content:"\f544"}.fa-rocket:before{content:"\f135"}.fa-rocketchat:before{content:"\f3e8"}.fa-rockrms:before{content:"\f3e9"}.fa-route:before{content:"\f4d7"}.fa-rss:before{content:"\f09e"}.fa-rss-square:before{content:"\f143"}.fa-ruble-sign:before{content:"\f158"}.fa-ruler:before{content:"\f545"}.fa-ruler-combined:before{content:"\f546"}.fa-ruler-horizontal:before{content:"\f547"}.fa-ruler-vertical:before{content:"\f548"}.fa-running:before{content:"\f70c"}.fa-rupee-sign:before{content:"\f156"}.fa-sad-cry:before{content:"\f5b3"}.fa-sad-tear:before{content:"\f5b4"}.fa-safari:before{content:"\f267"}.fa-salesforce:before{content:"\f83b"}.fa-sass:before{content:"\f41e"}.fa-satellite:before{content:"\f7bf"}.fa-satellite-dish:before{content:"\f7c0"}.fa-save:before{content:"\f0c7"}.fa-schlix:before{content:"\f3ea"}.fa-school:before{content:"\f549"}.fa-screwdriver:before{content:"\f54a"}.fa-scribd:before{content:"\f28a"}.fa-scroll:before{content:"\f70e"}.fa-sd-card:before{content:"\f7c2"}.fa-search:before{content:"\f002"}.fa-search-dollar:before{content:"\f688"}.fa-search-location:before{content:"\f689"}.fa-search-minus:before{content:"\f010"}.fa-search-plus:before{content:"\f00e"}.fa-searchengin:before{content:"\f3eb"}.fa-seedling:before{content:"\f4d8"}.fa-sellcast:before{content:"\f2da"}.fa-sellsy:before{content:"\f213"}.fa-server:before{content:"\f233"}.fa-servicestack:before{content:"\f3ec"}.fa-shapes:before{content:"\f61f"}.fa-share:before{content:"\f064"}.fa-share-alt:before{content:"\f1e0"}.fa-share-alt-square:before{content:"\f1e1"}.fa-share-square:before{content:"\f14d"}.fa-shekel-sign:before{content:"\f20b"}.fa-shield-alt:before{content:"\f3ed"}.fa-ship:before{content:"\f21a"}.fa-shipping-fast:before{content:"\f48b"}.fa-shirtsinbulk:before{content:"\f214"}.fa-shoe-prints:before{content:"\f54b"}.fa-shopping-bag:before{content:"\f290"}.fa-shopping-basket:before{content:"\f291"}.fa-shopping-cart:before{content:"\f07a"}.fa-shopware:before{content:"\f5b5"}.fa-shower:before{content:"\f2cc"}.fa-shuttle-van:before{content:"\f5b6"}.fa-sign:before{content:"\f4d9"}.fa-sign-in-alt:before{content:"\f2f6"}.fa-sign-language:before{content:"\f2a7"}.fa-sign-out-alt:before{content:"\f2f5"}.fa-signal:before{content:"\f012"}.fa-signature:before{content:"\f5b7"}.fa-sim-card:before{content:"\f7c4"}.fa-simplybuilt:before{content:"\f215"}.fa-sistrix:before{content:"\f3ee"}.fa-sitemap:before{content:"\f0e8"}.fa-sith:before{content:"\f512"}.fa-skating:before{content:"\f7c5"}.fa-sketch:before{content:"\f7c6"}.fa-skiing:before{content:"\f7c9"}.fa-skiing-nordic:before{content:"\f7ca"}.fa-skull:before{content:"\f54c"}.fa-skull-crossbones:before{content:"\f714"}.fa-skyatlas:before{content:"\f216"}.fa-skype:before{content:"\f17e"}.fa-slack:before{content:"\f198"}.fa-slack-hash:before{content:"\f3ef"}.fa-slash:before{content:"\f715"}.fa-sleigh:before{content:"\f7cc"}.fa-sliders-h:before{content:"\f1de"}.fa-slideshare:before{content:"\f1e7"}.fa-smile:before{content:"\f118"}.fa-smile-beam:before{content:"\f5b8"}.fa-smile-wink:before{content:"\f4da"}.fa-smog:before{content:"\f75f"}.fa-smoking:before{content:"\f48d"}.fa-smoking-ban:before{content:"\f54d"}.fa-sms:before{content:"\f7cd"}.fa-snapchat:before{content:"\f2ab"}.fa-snapchat-ghost:before{content:"\f2ac"}.fa-snapchat-square:before{content:"\f2ad"}.fa-snowboarding:before{content:"\f7ce"}.fa-snowflake:before{content:"\f2dc"}.fa-snowman:before{content:"\f7d0"}.fa-snowplow:before{content:"\f7d2"}.fa-socks:before{content:"\f696"}.fa-solar-panel:before{content:"\f5ba"}.fa-sort:before{content:"\f0dc"}.fa-sort-alpha-down:before{content:"\f15d"}.fa-sort-alpha-up:before{content:"\f15e"}.fa-sort-amount-down:before{content:"\f160"}.fa-sort-amount-up:before{content:"\f161"}.fa-sort-down:before{content:"\f0dd"}.fa-sort-numeric-down:before{content:"\f162"}.fa-sort-numeric-up:before{content:"\f163"}.fa-sort-up:before{content:"\f0de"}.fa-soundcloud:before{content:"\f1be"}.fa-sourcetree:before{content:"\f7d3"}.fa-spa:before{content:"\f5bb"}.fa-space-shuttle:before{content:"\f197"}.fa-speakap:before{content:"\f3f3"}.fa-speaker-deck:before{content:"\f83c"}.fa-spider:before{content:"\f717"}.fa-spinner:before{content:"\f110"}.fa-splotch:before{content:"\f5bc"}.fa-spotify:before{content:"\f1bc"}.fa-spray-can:before{content:"\f5bd"}.fa-square:before{content:"\f0c8"}.fa-square-full:before{content:"\f45c"}.fa-square-root-alt:before{content:"\f698"}.fa-squarespace:before{content:"\f5be"}.fa-stack-exchange:before{content:"\f18d"}.fa-stack-overflow:before{content:"\f16c"}.fa-stackpath:before{content:"\f842"}.fa-stamp:before{content:"\f5bf"}.fa-star:before{content:"\f005"}.fa-star-and-crescent:before{content:"\f699"}.fa-star-half:before{content:"\f089"}.fa-star-half-alt:before{content:"\f5c0"}.fa-star-of-david:before{content:"\f69a"}.fa-star-of-life:before{content:"\f621"}.fa-staylinked:before{content:"\f3f5"}.fa-steam:before{content:"\f1b6"}.fa-steam-square:before{content:"\f1b7"}.fa-steam-symbol:before{content:"\f3f6"}.fa-step-backward:before{content:"\f048"}.fa-step-forward:before{content:"\f051"}.fa-stethoscope:before{content:"\f0f1"}.fa-sticker-mule:before{content:"\f3f7"}.fa-sticky-note:before{content:"\f249"}.fa-stop:before{content:"\f04d"}.fa-stop-circle:before{content:"\f28d"}.fa-stopwatch:before{content:"\f2f2"}.fa-store:before{content:"\f54e"}.fa-store-alt:before{content:"\f54f"}.fa-strava:before{content:"\f428"}.fa-stream:before{content:"\f550"}.fa-street-view:before{content:"\f21d"}.fa-strikethrough:before{content:"\f0cc"}.fa-stripe:before{content:"\f429"}.fa-stripe-s:before{content:"\f42a"}.fa-stroopwafel:before{content:"\f551"}.fa-studiovinari:before{content:"\f3f8"}.fa-stumbleupon:before{content:"\f1a4"}.fa-stumbleupon-circle:before{content:"\f1a3"}.fa-subscript:before{content:"\f12c"}.fa-subway:before{content:"\f239"}.fa-suitcase:before{content:"\f0f2"}.fa-suitcase-rolling:before{content:"\f5c1"}.fa-sun:before{content:"\f185"}.fa-superpowers:before{content:"\f2dd"}.fa-superscript:before{content:"\f12b"}.fa-supple:before{content:"\f3f9"}.fa-surprise:before{content:"\f5c2"}.fa-suse:before{content:"\f7d6"}.fa-swatchbook:before{content:"\f5c3"}.fa-swimmer:before{content:"\f5c4"}.fa-swimming-pool:before{content:"\f5c5"}.fa-symfony:before{content:"\f83d"}.fa-synagogue:before{content:"\f69b"}.fa-sync:before{content:"\f021"}.fa-sync-alt:before{content:"\f2f1"}.fa-syringe:before{content:"\f48e"}.fa-table:before{content:"\f0ce"}.fa-table-tennis:before{content:"\f45d"}.fa-tablet:before{content:"\f10a"}.fa-tablet-alt:before{content:"\f3fa"}.fa-tablets:before{content:"\f490"}.fa-tachometer-alt:before{content:"\f3fd"}.fa-tag:before{content:"\f02b"}.fa-tags:before{content:"\f02c"}.fa-tape:before{content:"\f4db"}.fa-tasks:before{content:"\f0ae"}.fa-taxi:before{content:"\f1ba"}.fa-teamspeak:before{content:"\f4f9"}.fa-teeth:before{content:"\f62e"}.fa-teeth-open:before{content:"\f62f"}.fa-telegram:before{content:"\f2c6"}.fa-telegram-plane:before{content:"\f3fe"}.fa-temperature-high:before{content:"\f769"}.fa-temperature-low:before{content:"\f76b"}.fa-tencent-weibo:before{content:"\f1d5"}.fa-tenge:before{content:"\f7d7"}.fa-terminal:before{content:"\f120"}.fa-text-height:before{content:"\f034"}.fa-text-width:before{content:"\f035"}.fa-th:before{content:"\f00a"}.fa-th-large:before{content:"\f009"}.fa-th-list:before{content:"\f00b"}.fa-the-red-yeti:before{content:"\f69d"}.fa-theater-masks:before{content:"\f630"}.fa-themeco:before{content:"\f5c6"}.fa-themeisle:before{content:"\f2b2"}.fa-thermometer:before{content:"\f491"}.fa-thermometer-empty:before{content:"\f2cb"}.fa-thermometer-full:before{content:"\f2c7"}.fa-thermometer-half:before{content:"\f2c9"}.fa-thermometer-quarter:before{content:"\f2ca"}.fa-thermometer-three-quarters:before{content:"\f2c8"}.fa-think-peaks:before{content:"\f731"}.fa-thumbs-down:before{content:"\f165"}.fa-thumbs-up:before{content:"\f164"}.fa-thumbtack:before{content:"\f08d"}.fa-ticket-alt:before{content:"\f3ff"}.fa-times:before{content:"\f00d"}.fa-times-circle:before{content:"\f057"}.fa-tint:before{content:"\f043"}.fa-tint-slash:before{content:"\f5c7"}.fa-tired:before{content:"\f5c8"}.fa-toggle-off:before{content:"\f204"}.fa-toggle-on:before{content:"\f205"}.fa-toilet:before{content:"\f7d8"}.fa-toilet-paper:before{content:"\f71e"}.fa-toolbox:before{content:"\f552"}.fa-tools:before{content:"\f7d9"}.fa-tooth:before{content:"\f5c9"}.fa-torah:before{content:"\f6a0"}.fa-torii-gate:before{content:"\f6a1"}.fa-tractor:before{content:"\f722"}.fa-trade-federation:before{content:"\f513"}.fa-trademark:before{content:"\f25c"}.fa-traffic-light:before{content:"\f637"}.fa-train:before{content:"\f238"}.fa-tram:before{content:"\f7da"}.fa-transgender:before{content:"\f224"}.fa-transgender-alt:before{content:"\f225"}.fa-trash:before{content:"\f1f8"}.fa-trash-alt:before{content:"\f2ed"}.fa-trash-restore:before{content:"\f829"}.fa-trash-restore-alt:before{content:"\f82a"}.fa-tree:before{content:"\f1bb"}.fa-trello:before{content:"\f181"}.fa-tripadvisor:before{content:"\f262"}.fa-trophy:before{content:"\f091"}.fa-truck:before{content:"\f0d1"}.fa-truck-loading:before{content:"\f4de"}.fa-truck-monster:before{content:"\f63b"}.fa-truck-moving:before{content:"\f4df"}.fa-truck-pickup:before{content:"\f63c"}.fa-tshirt:before{content:"\f553"}.fa-tty:before{content:"\f1e4"}.fa-tumblr:before{content:"\f173"}.fa-tumblr-square:before{content:"\f174"}.fa-tv:before{content:"\f26c"}.fa-twitch:before{content:"\f1e8"}.fa-twitter:before{content:"\f099"}.fa-twitter-square:before{content:"\f081"}.fa-typo3:before{content:"\f42b"}.fa-uber:before{content:"\f402"}.fa-ubuntu:before{content:"\f7df"}.fa-uikit:before{content:"\f403"}.fa-umbrella:before{content:"\f0e9"}.fa-umbrella-beach:before{content:"\f5ca"}.fa-underline:before{content:"\f0cd"}.fa-undo:before{content:"\f0e2"}.fa-undo-alt:before{content:"\f2ea"}.fa-uniregistry:before{content:"\f404"}.fa-universal-access:before{content:"\f29a"}.fa-university:before{content:"\f19c"}.fa-unlink:before{content:"\f127"}.fa-unlock:before{content:"\f09c"}.fa-unlock-alt:before{content:"\f13e"}.fa-untappd:before{content:"\f405"}.fa-upload:before{content:"\f093"}.fa-ups:before{content:"\f7e0"}.fa-usb:before{content:"\f287"}.fa-user:before{content:"\f007"}.fa-user-alt:before{content:"\f406"}.fa-user-alt-slash:before{content:"\f4fa"}.fa-user-astronaut:before{content:"\f4fb"}.fa-user-check:before{content:"\f4fc"}.fa-user-circle:before{content:"\f2bd"}.fa-user-clock:before{content:"\f4fd"}.fa-user-cog:before{content:"\f4fe"}.fa-user-edit:before{content:"\f4ff"}.fa-user-friends:before{content:"\f500"}.fa-user-graduate:before{content:"\f501"}.fa-user-injured:before{content:"\f728"}.fa-user-lock:before{content:"\f502"}.fa-user-md:before{content:"\f0f0"}.fa-user-minus:before{content:"\f503"}.fa-user-ninja:before{content:"\f504"}.fa-user-nurse:before{content:"\f82f"}.fa-user-plus:before{content:"\f234"}.fa-user-secret:before{content:"\f21b"}.fa-user-shield:before{content:"\f505"}.fa-user-slash:before{content:"\f506"}.fa-user-tag:before{content:"\f507"}.fa-user-tie:before{content:"\f508"}.fa-user-times:before{content:"\f235"}.fa-users:before{content:"\f0c0"}.fa-users-cog:before{content:"\f509"}.fa-usps:before{content:"\f7e1"}.fa-ussunnah:before{content:"\f407"}.fa-utensil-spoon:before{content:"\f2e5"}.fa-utensils:before{content:"\f2e7"}.fa-vaadin:before{content:"\f408"}.fa-vector-square:before{content:"\f5cb"}.fa-venus:before{content:"\f221"}.fa-venus-double:before{content:"\f226"}.fa-venus-mars:before{content:"\f228"}.fa-viacoin:before{content:"\f237"}.fa-viadeo:before{content:"\f2a9"}.fa-viadeo-square:before{content:"\f2aa"}.fa-vial:before{content:"\f492"}.fa-vials:before{content:"\f493"}.fa-viber:before{content:"\f409"}.fa-video:before{content:"\f03d"}.fa-video-slash:before{content:"\f4e2"}.fa-vihara:before{content:"\f6a7"}.fa-vimeo:before{content:"\f40a"}.fa-vimeo-square:before{content:"\f194"}.fa-vimeo-v:before{content:"\f27d"}.fa-vine:before{content:"\f1ca"}.fa-vk:before{content:"\f189"}.fa-vnv:before{content:"\f40b"}.fa-volleyball-ball:before{content:"\f45f"}.fa-volume-down:before{content:"\f027"}.fa-volume-mute:before{content:"\f6a9"}.fa-volume-off:before{content:"\f026"}.fa-volume-up:before{content:"\f028"}.fa-vote-yea:before{content:"\f772"}.fa-vr-cardboard:before{content:"\f729"}.fa-vuejs:before{content:"\f41f"}.fa-walking:before{content:"\f554"}.fa-wallet:before{content:"\f555"}.fa-warehouse:before{content:"\f494"}.fa-water:before{content:"\f773"}.fa-wave-square:before{content:"\f83e"}.fa-waze:before{content:"\f83f"}.fa-weebly:before{content:"\f5cc"}.fa-weibo:before{content:"\f18a"}.fa-weight:before{content:"\f496"}.fa-weight-hanging:before{content:"\f5cd"}.fa-weixin:before{content:"\f1d7"}.fa-whatsapp:before{content:"\f232"}.fa-whatsapp-square:before{content:"\f40c"}.fa-wheelchair:before{content:"\f193"}.fa-whmcs:before{content:"\f40d"}.fa-wifi:before{content:"\f1eb"}.fa-wikipedia-w:before{content:"\f266"}.fa-wind:before{content:"\f72e"}.fa-window-close:before{content:"\f410"}.fa-window-maximize:before{content:"\f2d0"}.fa-window-minimize:before{content:"\f2d1"}.fa-window-restore:before{content:"\f2d2"}.fa-windows:before{content:"\f17a"}.fa-wine-bottle:before{content:"\f72f"}.fa-wine-glass:before{content:"\f4e3"}.fa-wine-glass-alt:before{content:"\f5ce"}.fa-wix:before{content:"\f5cf"}.fa-wizards-of-the-coast:before{content:"\f730"}.fa-wolf-pack-battalion:before{content:"\f514"}.fa-won-sign:before{content:"\f159"}.fa-wordpress:before{content:"\f19a"}.fa-wordpress-simple:before{content:"\f411"}.fa-wpbeginner:before{content:"\f297"}.fa-wpexplorer:before{content:"\f2de"}.fa-wpforms:before{content:"\f298"}.fa-wpressr:before{content:"\f3e4"}.fa-wrench:before{content:"\f0ad"}.fa-x-ray:before{content:"\f497"}.fa-xbox:before{content:"\f412"}.fa-xing:before{content:"\f168"}.fa-xing-square:before{content:"\f169"}.fa-y-combinator:before{content:"\f23b"}.fa-yahoo:before{content:"\f19e"}.fa-yammer:before{content:"\f840"}.fa-yandex:before{content:"\f413"}.fa-yandex-international:before{content:"\f414"}.fa-yarn:before{content:"\f7e3"}.fa-yelp:before{content:"\f1e9"}.fa-yen-sign:before{content:"\f157"}.fa-yin-yang:before{content:"\f6ad"}.fa-yoast:before{content:"\f2b1"}.fa-youtube:before{content:"\f167"}.fa-youtube-square:before{content:"\f431"}.fa-zhihu:before{content:"\f63f"}.sr-only{border:0;clip:rect(0,0,0,0);height:1px;margin:-1px;overflow:hidden;padding:0;position:absolute;width:1px}.sr-only-focusable:active,.sr-only-focusable:focus{clip:auto;height:auto;margin:0;overflow:visible;position:static;width:auto}
\ No newline at end of file
diff --git a/oxAuth/Server/src/main/webapp/stylesheet/form_window.css b/oxAuth/Server/src/main/webapp/stylesheet/form_window.css
new file mode 100644
index 00000000..c0039005
--- /dev/null
+++ b/oxAuth/Server/src/main/webapp/stylesheet/form_window.css
@@ -0,0 +1,630 @@
+html {
+    display: block;
+    width: 100%;
+    height: 100%;
+    overflow: hidden;
+    font-family: 'Gill Sans', 'Gill Sans MT', Calibri, 'Trebuchet MS', sans-serif;
+
+    background-image: url("/oxauth/ext/resources/img/background_wave.svg");
+
+    background-size: cover;
+    background-repeat: no-repeat;
+    background-position: center;
+}
+
+body {
+    display: block;
+    position: absolute;
+    background-color: transparent;
+    height: 100%;
+    width: 100%;
+    left: 0px;
+    right: 0px;
+    top: 0px;
+    bottom: 0px;
+}
+
+footer,
+.footer {
+    display: none;
+    position: fixed;
+    bottom: 0px;
+    width: 101%;
+    color: rgb(255, 255, 255);
+    height: 0%;
+    background-color: #3CD2F9;
+    opacity: 100%;
+    justify-content: center;
+    margin-left: -1%;
+    margin-right: auto;
+}
+
+.container {
+    display: grid;
+    position: relative;
+    margin: 2% auto auto auto;
+    width: clamp(300px, 80%, 800px);
+    height: 600px;
+    background-color: transparent;
+    grid-template-columns: 1fr;
+    grid-template-rows: auto auto;
+    justify-items: center;
+    align-items: center;
+    row-gap: 0.9em;
+}
+
+.login-box {
+    display: block;
+    position: absolute;
+    background-color: #f3f3f3;
+    border-radius: 14px;
+    border: 1px solid rgba(235, 235, 235, 1);
+    border-top: 1px solid rgba(253, 254, 255, 1);
+    border-left: 1px solid rgba(253, 254, 255, 1);
+    box-shadow: 0px 4px 61px 0px rgba(240, 221, 221, 0.4);
+    width: 100%;
+    height: 100%;
+}
+
+
+.box-1 {
+    justify-items: center;
+    align-items: center;
+    grid-row: 1;
+}
+
+.box-2 {
+    justify-items: center;
+    align-items: center;
+    grid-row: 3;
+}
+
+
+
+.box-revocation {
+    display: block;
+    position: absolute;
+    justify-items: center;
+    align-items: center;
+    width: 100%;
+    background: none;
+    margin: auto;
+    border: none;
+    box-shadow: none;
+}
+
+
+.providers {
+    display: grid;
+    grid-template-columns: 1fr 1fr;
+    grid-template-rows: repeat(1fr);
+    justify-items: center;
+    align-items: end;
+
+    grid-gap: 0.5em;
+    width: 100%;
+}
+
+.return-client-panel {
+    display: grid;
+    margin-bottom: 20px;
+    grid-template-columns: 100fr;
+    grid-template-rows: 100fr;
+    justify-items: center;
+    align-items: end;
+
+    grid-gap: 0.5em;
+    width: 100%;
+}
+
+.provider {
+    margin: 0%;
+    padding: 0%;
+    width: 100%;
+}
+
+.provider-img {
+    margin: auto;
+    width: 90%;
+    height: 40px;
+    overflow: hidden;
+    border-radius: 10px;
+    border: 2px solid lightgray;
+    border-top: 1px solid lightgray;
+    border-left: 1px solid lightgray;
+    background-color: white;
+    cursor: pointer;
+}
+
+.provider-img:hover {
+    border: 1px solid rgb(190, 190, 190);
+}
+
+.provider-img img {
+    display: block;
+    position: relative;
+    cursor: pointer;
+    margin: 1.5% auto;
+    height: 75%;
+}
+
+.provider.Google img {
+    display: block;
+    position: relative;
+    cursor: pointer;
+    margin: -2% auto;
+    height: 150%;
+}
+
+.login-box form {
+    display: block;
+    margin: auto;
+    padding: 0px;
+    box-shadow: none;
+    width: 100%;
+}
+
+.login-box .row {
+    display: block;
+    width: 100%;
+    margin: 2% 0px;
+    box-shadow: none;
+}
+
+.col-center {
+    display: block;
+    width: 90%;
+    margin: 0% auto;
+    border: none;
+}
+
+.text-center {
+    width: 100%;
+    text-align: center;
+    vertical-align: center;
+}
+
+.login-box input {
+    background-color: white;
+    margin-top: clamp(5px, 1%, 10px);
+    font-size: 1.5em;
+    font-family: 'Gill Sans', 'Gill Sans MT', Calibri, 'Trebuchet MS', sans-serif;
+}
+
+.form-control {
+    height: 1em;
+}
+
+.col-center .form-control {
+    display: block;
+    width: 90%;
+    left: 100px;
+    margin: auto;
+    margin-top: 30px;
+    padding: 4%;
+    border: none;
+    border-radius: 7px;
+    box-shadow: none;
+}
+
+input:-webkit-autofill,
+input:-webkit-autofill:hover,
+input:-webkit-autofill:focus,
+textarea:-webkit-autofill,
+textarea:-webkit-autofill:hover,
+textarea:-webkit-autofill:focus,
+select:-webkit-autofill,
+select:-webkit-autofill:hover,
+select:-webkit-autofill:focus {
+    -webkit-box-shadow: 0 0 0px 1000px #fafeff inset !important;
+    box-shadow: 0 0 0px 1000px #fafeff inset !important;
+}
+
+.form-control,
+.form-control:hover,
+.form-control:active {
+    background-color: white;
+    border: none;
+    outline: none;
+    background-clip: white;
+}
+
+.form-control:focus {
+    background-color: white;
+    border: none;
+    outline: 2px solid #eeeeee;
+    background-clip: white;
+}
+
+.login-box .button {
+    display: block;
+    width: 55%;
+    height: 2em;
+    margin: auto;
+    margin-top: 30px;
+    color: #3cd2f9;
+    border: 2px solid #3CD2F9;
+    border-radius: 9px;
+    background-color: transparent;
+    padding: 0px;
+    cursor: pointer;
+}
+
+.login-box .row-button {
+    display: block;
+    width: 90%;
+    margin: 5% auto;
+}
+
+.login-box .button-small {
+    display: inline;
+    width: 20%;
+    height: 5%;
+    margin-left: 28%;
+    font-size: 1em;
+    border: 1px solid #3CD2F9;
+    border-radius: 6px;
+    cursor: pointer;
+}
+
+.login-box .button-small.button-select {
+    background-color: #3CD2F9;
+    color: white;
+}
+
+.login-box .button-small.button-unselect {
+    margin-left: 4%;
+}
+
+.login-box .button:hover {
+    box-shadow: 0px 0px 3px rgba(60, 210, 249, 0.5);
+}
+
+.login-box .whispeak-logo {
+    margin: 1em auto;
+    height: 15%;
+}
+
+.login-box .whispeak-logo img {
+    display: block;
+    max-height: 120px;
+    height: auto;
+    margin: auto;
+    width: 30%;
+}
+
+.login-box .instructions {
+    background: none;
+    font-size: 1.1em;
+}
+
+.login-box .text-to-read {
+    display: block;
+    width: 90%;
+    margin: auto;
+    margin-top: 2%;
+    background: white;
+    border-radius: 5px;
+    padding: 2%;
+    text-align: justify;
+}
+
+.forgot_link,
+.forgot_link a {
+    text-align: center;
+    color: #3cd2f9;
+    opacity: 80%;
+}
+
+.forgot_link:hover,
+.forgot_link a:hover {
+    opacity: 90%;
+    text-decoration: none;
+    text-shadow: 0px 0px 0.5px #3cd2f9;
+}
+
+.messages {
+    display: block;
+    top: 0%;
+    width: 50%;
+    margin: auto;
+    font-size: 1em;
+    text-align: center;
+}
+
+.messages li {
+    display: block;
+    border: 2px solid white;
+    border-radius: 5px;
+    width: 60%;
+    margin: auto;
+}
+
+.error,
+.errormsg {
+    color: white;
+    background: #F38181;
+}
+
+.info,
+.infomsg {
+    color: rgb(95, 68, 18);
+    background: rgb(255, 253, 136);
+}
+
+.ui-steps.custom {
+    position: relative;
+
+    width: 100%;
+    margin-left: 0px;
+    margin-bottom: 30px;
+}
+
+.ui-steps.custom .ui-steps-item .ui-menuitem-link {
+    height: 25px;
+    padding: 0 1em;
+}
+
+.ui-steps.custom .ui-steps-item .ui-steps-number {
+    display: none;
+}
+
+.ui-steps-item {
+    width: 25%;
+    border-radius: 5px;
+    margin: 0 1em;
+}
+
+.ui-steps-item.ui-state-default {
+    background-color: rgb(230, 230, 230);
+}
+
+.ui-steps-item.ui-state-highlight {
+    background-color: #3CD2F9;
+}
+
+.ui-steps-title {
+    color: #3CD2F9;
+}
+
+.ui-state-highlight .ui-steps-title {
+    color: white;
+}
+
+.progressbar {
+    width: 100%;
+    font-size: 0.8em;
+    display: flex;
+    justify-content: center;
+    background-color: rgba(100, 100, 100, 0.02);
+}
+
+.progressbar ul {
+    margin: 0% auto;
+}
+
+.progressbar li {
+    list-style-type: none;
+    width: 15%;
+    margin: 0% 3%;
+    padding: 1% 0%;
+    float: left;
+    font-size: 1em;
+    position: relative;
+    text-align: center;
+    text-transform: uppercase;
+    color: #3CD2F9;
+    background: #f3f3f3;
+    border-radius: 8px;
+    border-left: 1px dotted #3CD2F9;
+    border-right: 1px dotted #3CD2F9;
+    z-index: 10;
+}
+
+.progressbar li:after {
+    width: 40%;
+    height: 1px;
+    content: '';
+    position: absolute;
+    background-color: #3CD2F9;
+    top: 50%;
+    left: 101%;
+}
+
+.progressbar li.step-done:after {
+    height: 2px;
+    background-color: #47e068;
+}
+
+.progressbar li:last-child:after {
+    content: none;
+}
+
+.progressbar li.step-done:before {
+    width: 25px;
+    height: 25px;
+    content: '\2713';
+    font-size: 2em;
+    position: absolute;
+    color: #47e068;
+    background-color: transparent;
+    border-radius: 50%;
+    top: -80%;
+    left: 40%;
+}
+
+.progressbar li.active {
+    color: white;
+    background-color: #3CD2F9;
+    border: 2px solid #f3f3f3;
+    outline: 2px dotted #3CD2F9;
+    outline: 2px dashed #3CD2F9;
+}
+
+.progressbar li.step-done {
+    color: #f3f3f3;
+    border: none;
+    background-color: #7ae4ff;
+    border: none;
+}
+
+.spinner {
+    vertical-align: middle;
+
+    border-radius: 50%;
+
+    font-size: 0em;
+
+    grid-column: 3 / span 1;
+
+
+}
+
+.loader {
+    position: absolute;
+
+    border: 8px solid #e6f8ff;
+    /* Light grey */
+    border-top: 8px solid #3CD2F9;
+    /* Blue */
+    border-radius: 50%;
+    width: 80px;
+    height: 80px;
+    animation: spin 2s linear infinite;
+}
+
+
+
+
+
+/* *********************************************** */
+/* *********************************************** */
+/* ****************  REVOCATION  ***************** */
+/* *********************************************** */
+/* *********************************************** */
+
+.container-revocation {
+    position: relative;
+    margin: auto;
+    height: 200px;
+    width: clamp(300px, 80%, 800px);
+    padding: 0px;
+
+}
+
+.instruction-revoc {
+    display: block;
+    grid-column: 1 / -1;
+    grid-row: 1;
+    text-align: left;
+    width: 100%;
+    font-weight: bold;
+    color: #4C5152;
+    font-size: 0.8em;
+    padding: 10px 0px;
+}
+
+.title-revoc {
+    grid-column: 4 / 9;
+    grid-row: 1;
+    margin: 20px;
+}
+
+.box-revocation {
+    height: 100%;
+    width: 100%;
+    padding: 0px;
+
+
+    position: absolute;
+
+    background: none;
+    margin: auto;
+    margin-top: 0%;
+    border: none;
+    box-shadow: none;
+
+
+    text-align: left;
+}
+
+.info-revoc-box {
+    width: 100%;
+    margin: auto;
+    padding: 5px;
+
+    text-align: left;
+
+    display: grid;
+    grid-template-rows: 30px 200px;
+    grid-template-columns: repeat(10, 1fr);
+
+    align-items: center;
+    justify-items: center;
+    grid-gap: 1px;
+}
+
+.text-to-copy {
+    display: table-cell;
+
+    border: 1px solid #ABDCE9;
+    border-radius: 9px;
+
+    color: #176C83;
+
+    text-align: left;
+    vertical-align: middle;
+    font-weight: bold;
+
+    background: white;
+
+    width: 100%;
+
+    grid-column: 2 / 9;
+    grid-row: 2;
+    padding: 20px 0px 20px 10px;
+
+}
+
+
+.button-copy.ui-button {
+    background: #ABDCE9;
+    border: 1px solid #ABDCE9;
+    border-radius: 9px;
+    content: '';
+
+    height: 50px;
+    width: 50px;
+
+
+    grid-column: 9;
+    grid-row: 2;
+    cursor: pointer;
+
+}
+
+.button-copy.ui-button:hover {
+    border: 1px solid #176C83;
+}
+
+.button-copy .ui-button-text {
+    content: '';
+    background: url("/oxauth/ext/resources/img/IcoCopy.png") no-repeat center center;
+    font-size: 0;
+    height: 50px;
+    width: 50px;
+
+}
+
+
+.text-to-copy.copied {
+    border: 0px;
+    border: 1px solid #c3e7f3;
+
+    background: #FBFCFD;
+    color: #498da0;
+}
+
+.text-to-copy.copied .instruction-revoc {
+    color: #636666;
+}
\ No newline at end of file
diff --git a/oxAuth/Server/src/main/webapp/stylesheet/jquery-ui.min.css b/oxAuth/Server/src/main/webapp/stylesheet/jquery-ui.min.css
new file mode 100644
index 00000000..ab54bc66
--- /dev/null
+++ b/oxAuth/Server/src/main/webapp/stylesheet/jquery-ui.min.css
@@ -0,0 +1,7 @@
+/*! jQuery UI - v1.13.2 - 2022-07-14
+* http://jqueryui.com
+* Includes: core.css, accordion.css, autocomplete.css, menu.css, button.css, controlgroup.css, checkboxradio.css, datepicker.css, dialog.css, draggable.css, resizable.css, progressbar.css, selectable.css, selectmenu.css, slider.css, sortable.css, spinner.css, tabs.css, tooltip.css, theme.css
+* To view and modify this theme, visit http://jqueryui.com/themeroller/?bgShadowXPos=&bgOverlayXPos=&bgErrorXPos=&bgHighlightXPos=&bgContentXPos=&bgHeaderXPos=&bgActiveXPos=&bgHoverXPos=&bgDefaultXPos=&bgShadowYPos=&bgOverlayYPos=&bgErrorYPos=&bgHighlightYPos=&bgContentYPos=&bgHeaderYPos=&bgActiveYPos=&bgHoverYPos=&bgDefaultYPos=&bgShadowRepeat=&bgOverlayRepeat=&bgErrorRepeat=&bgHighlightRepeat=&bgContentRepeat=&bgHeaderRepeat=&bgActiveRepeat=&bgHoverRepeat=&bgDefaultRepeat=&iconsHover=url(%22images%2Fui-icons_555555_256x240.png%22)&iconsHighlight=url(%22images%2Fui-icons_777620_256x240.png%22)&iconsHeader=url(%22images%2Fui-icons_444444_256x240.png%22)&iconsError=url(%22images%2Fui-icons_cc0000_256x240.png%22)&iconsDefault=url(%22images%2Fui-icons_777777_256x240.png%22)&iconsContent=url(%22images%2Fui-icons_444444_256x240.png%22)&iconsActive=url(%22images%2Fui-icons_ffffff_256x240.png%22)&bgImgUrlShadow=&bgImgUrlOverlay=&bgImgUrlHover=&bgImgUrlHighlight=&bgImgUrlHeader=&bgImgUrlError=&bgImgUrlDefault=&bgImgUrlContent=&bgImgUrlActive=&opacityFilterShadow=Alpha(Opacity%3D30)&opacityFilterOverlay=Alpha(Opacity%3D30)&opacityShadowPerc=30&opacityOverlayPerc=30&iconColorHover=%23555555&iconColorHighlight=%23777620&iconColorHeader=%23444444&iconColorError=%23cc0000&iconColorDefault=%23777777&iconColorContent=%23444444&iconColorActive=%23ffffff&bgImgOpacityShadow=0&bgImgOpacityOverlay=0&bgImgOpacityError=95&bgImgOpacityHighlight=55&bgImgOpacityContent=75&bgImgOpacityHeader=75&bgImgOpacityActive=65&bgImgOpacityHover=75&bgImgOpacityDefault=75&bgTextureShadow=flat&bgTextureOverlay=flat&bgTextureError=flat&bgTextureHighlight=flat&bgTextureContent=flat&bgTextureHeader=flat&bgTextureActive=flat&bgTextureHover=flat&bgTextureDefault=flat&cornerRadius=3px&fwDefault=normal&ffDefault=Arial%2CHelvetica%2Csans-serif&fsDefault=1em&cornerRadiusShadow=8px&thicknessShadow=5px&offsetLeftShadow=0px&offsetTopShadow=0px&opacityShadow=.3&bgColorShadow=%23666666&opacityOverlay=.3&bgColorOverlay=%23aaaaaa&fcError=%235f3f3f&borderColorError=%23f1a899&bgColorError=%23fddfdf&fcHighlight=%23777620&borderColorHighlight=%23dad55e&bgColorHighlight=%23fffa90&fcContent=%23333333&borderColorContent=%23dddddd&bgColorContent=%23ffffff&fcHeader=%23333333&borderColorHeader=%23dddddd&bgColorHeader=%23e9e9e9&fcActive=%23ffffff&borderColorActive=%23003eff&bgColorActive=%23007fff&fcHover=%232b2b2b&borderColorHover=%23cccccc&bgColorHover=%23ededed&fcDefault=%23454545&borderColorDefault=%23c5c5c5&bgColorDefault=%23f6f6f6
+* Copyright jQuery Foundation and other contributors; Licensed MIT */
+
+.ui-helper-hidden{display:none}.ui-helper-hidden-accessible{border:0;clip:rect(0 0 0 0);height:1px;margin:-1px;overflow:hidden;padding:0;position:absolute;width:1px}.ui-helper-reset{margin:0;padding:0;border:0;outline:0;line-height:1.3;text-decoration:none;font-size:100%;list-style:none}.ui-helper-clearfix:before,.ui-helper-clearfix:after{content:"";display:table;border-collapse:collapse}.ui-helper-clearfix:after{clear:both}.ui-helper-zfix{width:100%;height:100%;top:0;left:0;position:absolute;opacity:0;-ms-filter:"alpha(opacity=0)"}.ui-front{z-index:100}.ui-state-disabled{cursor:default!important;pointer-events:none}.ui-icon{display:inline-block;vertical-align:middle;margin-top:-.25em;position:relative;text-indent:-99999px;overflow:hidden;background-repeat:no-repeat}.ui-widget-icon-block{left:50%;margin-left:-8px;display:block}.ui-widget-overlay{position:fixed;top:0;left:0;width:100%;height:100%}.ui-accordion .ui-accordion-header{display:block;cursor:pointer;position:relative;margin:2px 0 0 0;padding:.5em .5em .5em .7em;font-size:100%}.ui-accordion .ui-accordion-content{padding:1em 2.2em;border-top:0;overflow:auto}.ui-autocomplete{position:absolute;top:0;left:0;cursor:default}.ui-menu{list-style:none;padding:0;margin:0;display:block;outline:0}.ui-menu .ui-menu{position:absolute}.ui-menu .ui-menu-item{margin:0;cursor:pointer;list-style-image:url("data:image/gif;base64,R0lGODlhAQABAIAAAAAAAP///yH5BAEAAAAALAAAAAABAAEAAAIBRAA7")}.ui-menu .ui-menu-item-wrapper{position:relative;padding:3px 1em 3px .4em}.ui-menu .ui-menu-divider{margin:5px 0;height:0;font-size:0;line-height:0;border-width:1px 0 0 0}.ui-menu .ui-state-focus,.ui-menu .ui-state-active{margin:-1px}.ui-menu-icons{position:relative}.ui-menu-icons .ui-menu-item-wrapper{padding-left:2em}.ui-menu .ui-icon{position:absolute;top:0;bottom:0;left:.2em;margin:auto 0}.ui-menu .ui-menu-icon{left:auto;right:0}.ui-button{padding:.4em 1em;display:inline-block;position:relative;line-height:normal;margin-right:.1em;cursor:pointer;vertical-align:middle;text-align:center;-webkit-user-select:none;-moz-user-select:none;-ms-user-select:none;user-select:none;overflow:visible}.ui-button,.ui-button:link,.ui-button:visited,.ui-button:hover,.ui-button:active{text-decoration:none}.ui-button-icon-only{width:2em;box-sizing:border-box;text-indent:-9999px;white-space:nowrap}input.ui-button.ui-button-icon-only{text-indent:0}.ui-button-icon-only .ui-icon{position:absolute;top:50%;left:50%;margin-top:-8px;margin-left:-8px}.ui-button.ui-icon-notext .ui-icon{padding:0;width:2.1em;height:2.1em;text-indent:-9999px;white-space:nowrap}input.ui-button.ui-icon-notext .ui-icon{width:auto;height:auto;text-indent:0;white-space:normal;padding:.4em 1em}input.ui-button::-moz-focus-inner,button.ui-button::-moz-focus-inner{border:0;padding:0}.ui-controlgroup{vertical-align:middle;display:inline-block}.ui-controlgroup > .ui-controlgroup-item{float:left;margin-left:0;margin-right:0}.ui-controlgroup > .ui-controlgroup-item:focus,.ui-controlgroup > .ui-controlgroup-item.ui-visual-focus{z-index:9999}.ui-controlgroup-vertical > .ui-controlgroup-item{display:block;float:none;width:100%;margin-top:0;margin-bottom:0;text-align:left}.ui-controlgroup-vertical .ui-controlgroup-item{box-sizing:border-box}.ui-controlgroup .ui-controlgroup-label{padding:.4em 1em}.ui-controlgroup .ui-controlgroup-label span{font-size:80%}.ui-controlgroup-horizontal .ui-controlgroup-label + .ui-controlgroup-item{border-left:none}.ui-controlgroup-vertical .ui-controlgroup-label + .ui-controlgroup-item{border-top:none}.ui-controlgroup-horizontal .ui-controlgroup-label.ui-widget-content{border-right:none}.ui-controlgroup-vertical .ui-controlgroup-label.ui-widget-content{border-bottom:none}.ui-controlgroup-vertical .ui-spinner-input{width:75%;width:calc( 100% - 2.4em )}.ui-controlgroup-vertical .ui-spinner .ui-spinner-up{border-top-style:solid}.ui-checkboxradio-label .ui-icon-background{box-shadow:inset 1px 1px 1px #ccc;border-radius:.12em;border:none}.ui-checkboxradio-radio-label .ui-icon-background{width:16px;height:16px;border-radius:1em;overflow:visible;border:none}.ui-checkboxradio-radio-label.ui-checkboxradio-checked .ui-icon,.ui-checkboxradio-radio-label.ui-checkboxradio-checked:hover .ui-icon{background-image:none;width:8px;height:8px;border-width:4px;border-style:solid}.ui-checkboxradio-disabled{pointer-events:none}.ui-datepicker{width:17em;padding:.2em .2em 0;display:none}.ui-datepicker .ui-datepicker-header{position:relative;padding:.2em 0}.ui-datepicker .ui-datepicker-prev,.ui-datepicker .ui-datepicker-next{position:absolute;top:2px;width:1.8em;height:1.8em}.ui-datepicker .ui-datepicker-prev-hover,.ui-datepicker .ui-datepicker-next-hover{top:1px}.ui-datepicker .ui-datepicker-prev{left:2px}.ui-datepicker .ui-datepicker-next{right:2px}.ui-datepicker .ui-datepicker-prev-hover{left:1px}.ui-datepicker .ui-datepicker-next-hover{right:1px}.ui-datepicker .ui-datepicker-prev span,.ui-datepicker .ui-datepicker-next span{display:block;position:absolute;left:50%;margin-left:-8px;top:50%;margin-top:-8px}.ui-datepicker .ui-datepicker-title{margin:0 2.3em;line-height:1.8em;text-align:center}.ui-datepicker .ui-datepicker-title select{font-size:1em;margin:1px 0}.ui-datepicker select.ui-datepicker-month,.ui-datepicker select.ui-datepicker-year{width:45%}.ui-datepicker table{width:100%;font-size:.9em;border-collapse:collapse;margin:0 0 .4em}.ui-datepicker th{padding:.7em .3em;text-align:center;font-weight:bold;border:0}.ui-datepicker td{border:0;padding:1px}.ui-datepicker td span,.ui-datepicker td a{display:block;padding:.2em;text-align:right;text-decoration:none}.ui-datepicker .ui-datepicker-buttonpane{background-image:none;margin:.7em 0 0 0;padding:0 .2em;border-left:0;border-right:0;border-bottom:0}.ui-datepicker .ui-datepicker-buttonpane button{float:right;margin:.5em .2em .4em;cursor:pointer;padding:.2em .6em .3em .6em;width:auto;overflow:visible}.ui-datepicker .ui-datepicker-buttonpane button.ui-datepicker-current{float:left}.ui-datepicker.ui-datepicker-multi{width:auto}.ui-datepicker-multi .ui-datepicker-group{float:left}.ui-datepicker-multi .ui-datepicker-group table{width:95%;margin:0 auto .4em}.ui-datepicker-multi-2 .ui-datepicker-group{width:50%}.ui-datepicker-multi-3 .ui-datepicker-group{width:33.3%}.ui-datepicker-multi-4 .ui-datepicker-group{width:25%}.ui-datepicker-multi .ui-datepicker-group-last .ui-datepicker-header,.ui-datepicker-multi .ui-datepicker-group-middle .ui-datepicker-header{border-left-width:0}.ui-datepicker-multi .ui-datepicker-buttonpane{clear:left}.ui-datepicker-row-break{clear:both;width:100%;font-size:0}.ui-datepicker-rtl{direction:rtl}.ui-datepicker-rtl .ui-datepicker-prev{right:2px;left:auto}.ui-datepicker-rtl .ui-datepicker-next{left:2px;right:auto}.ui-datepicker-rtl .ui-datepicker-prev:hover{right:1px;left:auto}.ui-datepicker-rtl .ui-datepicker-next:hover{left:1px;right:auto}.ui-datepicker-rtl .ui-datepicker-buttonpane{clear:right}.ui-datepicker-rtl .ui-datepicker-buttonpane button{float:left}.ui-datepicker-rtl .ui-datepicker-buttonpane button.ui-datepicker-current,.ui-datepicker-rtl .ui-datepicker-group{float:right}.ui-datepicker-rtl .ui-datepicker-group-last .ui-datepicker-header,.ui-datepicker-rtl .ui-datepicker-group-middle .ui-datepicker-header{border-right-width:0;border-left-width:1px}.ui-datepicker .ui-icon{display:block;text-indent:-99999px;overflow:hidden;background-repeat:no-repeat;left:.5em;top:.3em}.ui-dialog{position:absolute;top:0;left:0;padding:.2em;outline:0}.ui-dialog .ui-dialog-titlebar{padding:.4em 1em;position:relative}.ui-dialog .ui-dialog-title{float:left;margin:.1em 0;white-space:nowrap;width:90%;overflow:hidden;text-overflow:ellipsis}.ui-dialog .ui-dialog-titlebar-close{position:absolute;right:.3em;top:50%;width:20px;margin:-10px 0 0 0;padding:1px;height:20px}.ui-dialog .ui-dialog-content{position:relative;border:0;padding:.5em 1em;background:none;overflow:auto}.ui-dialog .ui-dialog-buttonpane{text-align:left;border-width:1px 0 0 0;background-image:none;margin-top:.5em;padding:.3em 1em .5em .4em}.ui-dialog .ui-dialog-buttonpane .ui-dialog-buttonset{float:right}.ui-dialog .ui-dialog-buttonpane button{margin:.5em .4em .5em 0;cursor:pointer}.ui-dialog .ui-resizable-n{height:2px;top:0}.ui-dialog .ui-resizable-e{width:2px;right:0}.ui-dialog .ui-resizable-s{height:2px;bottom:0}.ui-dialog .ui-resizable-w{width:2px;left:0}.ui-dialog .ui-resizable-se,.ui-dialog .ui-resizable-sw,.ui-dialog .ui-resizable-ne,.ui-dialog .ui-resizable-nw{width:7px;height:7px}.ui-dialog .ui-resizable-se{right:0;bottom:0}.ui-dialog .ui-resizable-sw{left:0;bottom:0}.ui-dialog .ui-resizable-ne{right:0;top:0}.ui-dialog .ui-resizable-nw{left:0;top:0}.ui-draggable .ui-dialog-titlebar{cursor:move}.ui-draggable-handle{-ms-touch-action:none;touch-action:none}.ui-resizable{position:relative}.ui-resizable-handle{position:absolute;font-size:0.1px;display:block;-ms-touch-action:none;touch-action:none}.ui-resizable-disabled .ui-resizable-handle,.ui-resizable-autohide .ui-resizable-handle{display:none}.ui-resizable-n{cursor:n-resize;height:7px;width:100%;top:-5px;left:0}.ui-resizable-s{cursor:s-resize;height:7px;width:100%;bottom:-5px;left:0}.ui-resizable-e{cursor:e-resize;width:7px;right:-5px;top:0;height:100%}.ui-resizable-w{cursor:w-resize;width:7px;left:-5px;top:0;height:100%}.ui-resizable-se{cursor:se-resize;width:12px;height:12px;right:1px;bottom:1px}.ui-resizable-sw{cursor:sw-resize;width:9px;height:9px;left:-5px;bottom:-5px}.ui-resizable-nw{cursor:nw-resize;width:9px;height:9px;left:-5px;top:-5px}.ui-resizable-ne{cursor:ne-resize;width:9px;height:9px;right:-5px;top:-5px}.ui-progressbar{height:2em;text-align:left;overflow:hidden}.ui-progressbar .ui-progressbar-value{margin:-1px;height:100%}.ui-progressbar .ui-progressbar-overlay{background:url("data:image/gif;base64,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");height:100%;-ms-filter:"alpha(opacity=25)";opacity:0.25}.ui-progressbar-indeterminate .ui-progressbar-value{background-image:none}.ui-selectable{-ms-touch-action:none;touch-action:none}.ui-selectable-helper{position:absolute;z-index:100;border:1px dotted black}.ui-selectmenu-menu{padding:0;margin:0;position:absolute;top:0;left:0;display:none}.ui-selectmenu-menu .ui-menu{overflow:auto;overflow-x:hidden;padding-bottom:1px}.ui-selectmenu-menu .ui-menu .ui-selectmenu-optgroup{font-size:1em;font-weight:bold;line-height:1.5;padding:2px 0.4em;margin:0.5em 0 0 0;height:auto;border:0}.ui-selectmenu-open{display:block}.ui-selectmenu-text{display:block;margin-right:20px;overflow:hidden;text-overflow:ellipsis}.ui-selectmenu-button.ui-button{text-align:left;white-space:nowrap;width:14em}.ui-selectmenu-icon.ui-icon{float:right;margin-top:0}.ui-slider{position:relative;text-align:left}.ui-slider .ui-slider-handle{position:absolute;z-index:2;width:1.2em;height:1.2em;cursor:pointer;-ms-touch-action:none;touch-action:none}.ui-slider .ui-slider-range{position:absolute;z-index:1;font-size:.7em;display:block;border:0;background-position:0 0}.ui-slider.ui-state-disabled .ui-slider-handle,.ui-slider.ui-state-disabled .ui-slider-range{filter:inherit}.ui-slider-horizontal{height:.8em}.ui-slider-horizontal .ui-slider-handle{top:-.3em;margin-left:-.6em}.ui-slider-horizontal .ui-slider-range{top:0;height:100%}.ui-slider-horizontal .ui-slider-range-min{left:0}.ui-slider-horizontal .ui-slider-range-max{right:0}.ui-slider-vertical{width:.8em;height:100px}.ui-slider-vertical .ui-slider-handle{left:-.3em;margin-left:0;margin-bottom:-.6em}.ui-slider-vertical .ui-slider-range{left:0;width:100%}.ui-slider-vertical .ui-slider-range-min{bottom:0}.ui-slider-vertical .ui-slider-range-max{top:0}.ui-sortable-handle{-ms-touch-action:none;touch-action:none}.ui-spinner{position:relative;display:inline-block;overflow:hidden;padding:0;vertical-align:middle}.ui-spinner-input{border:none;background:none;color:inherit;padding:.222em 0;margin:.2em 0;vertical-align:middle;margin-left:.4em;margin-right:2em}.ui-spinner-button{width:1.6em;height:50%;font-size:.5em;padding:0;margin:0;text-align:center;position:absolute;cursor:default;display:block;overflow:hidden;right:0}.ui-spinner a.ui-spinner-button{border-top-style:none;border-bottom-style:none;border-right-style:none}.ui-spinner-up{top:0}.ui-spinner-down{bottom:0}.ui-tabs{position:relative;padding:.2em}.ui-tabs .ui-tabs-nav{margin:0;padding:.2em .2em 0}.ui-tabs .ui-tabs-nav li{list-style:none;float:left;position:relative;top:0;margin:1px .2em 0 0;border-bottom-width:0;padding:0;white-space:nowrap}.ui-tabs .ui-tabs-nav .ui-tabs-anchor{float:left;padding:.5em 1em;text-decoration:none}.ui-tabs .ui-tabs-nav li.ui-tabs-active{margin-bottom:-1px;padding-bottom:1px}.ui-tabs .ui-tabs-nav li.ui-tabs-active .ui-tabs-anchor,.ui-tabs .ui-tabs-nav li.ui-state-disabled .ui-tabs-anchor,.ui-tabs .ui-tabs-nav li.ui-tabs-loading .ui-tabs-anchor{cursor:text}.ui-tabs-collapsible .ui-tabs-nav li.ui-tabs-active .ui-tabs-anchor{cursor:pointer}.ui-tabs .ui-tabs-panel{display:block;border-width:0;padding:1em 1.4em;background:none}.ui-tooltip{padding:8px;position:absolute;z-index:9999;max-width:300px}body .ui-tooltip{border-width:2px}.ui-widget{font-family:Arial,Helvetica,sans-serif;font-size:1em}.ui-widget .ui-widget{font-size:1em}.ui-widget input,.ui-widget select,.ui-widget textarea,.ui-widget button{font-family:Arial,Helvetica,sans-serif;font-size:1em}.ui-widget.ui-widget-content{border:1px solid #c5c5c5}.ui-widget-content{border:1px solid #ddd;background:#fff;color:#333}.ui-widget-content a{color:#333}.ui-widget-header{border:1px solid #ddd;background:#e9e9e9;color:#333;font-weight:bold}.ui-widget-header a{color:#333}.ui-state-default,.ui-widget-content .ui-state-default,.ui-widget-header .ui-state-default,.ui-button,html .ui-button.ui-state-disabled:hover,html .ui-button.ui-state-disabled:active{border:1px solid #c5c5c5;background:#f6f6f6;font-weight:normal;color:#454545}.ui-state-default a,.ui-state-default a:link,.ui-state-default a:visited,a.ui-button,a:link.ui-button,a:visited.ui-button,.ui-button{color:#454545;text-decoration:none}.ui-state-hover,.ui-widget-content .ui-state-hover,.ui-widget-header .ui-state-hover,.ui-state-focus,.ui-widget-content .ui-state-focus,.ui-widget-header .ui-state-focus,.ui-button:hover,.ui-button:focus{border:1px solid #ccc;background:#ededed;font-weight:normal;color:#2b2b2b}.ui-state-hover a,.ui-state-hover a:hover,.ui-state-hover a:link,.ui-state-hover a:visited,.ui-state-focus a,.ui-state-focus a:hover,.ui-state-focus a:link,.ui-state-focus a:visited,a.ui-button:hover,a.ui-button:focus{color:#2b2b2b;text-decoration:none}.ui-visual-focus{box-shadow:0 0 3px 1px rgb(94,158,214)}.ui-state-active,.ui-widget-content .ui-state-active,.ui-widget-header .ui-state-active,a.ui-button:active,.ui-button:active,.ui-button.ui-state-active:hover{border:1px solid #003eff;background:#007fff;font-weight:normal;color:#fff}.ui-icon-background,.ui-state-active .ui-icon-background{border:#003eff;background-color:#fff}.ui-state-active a,.ui-state-active a:link,.ui-state-active a:visited{color:#fff;text-decoration:none}.ui-state-highlight,.ui-widget-content .ui-state-highlight,.ui-widget-header .ui-state-highlight{border:1px solid #dad55e;background:#fffa90;color:#777620}.ui-state-checked{border:1px solid #dad55e;background:#fffa90}.ui-state-highlight a,.ui-widget-content .ui-state-highlight a,.ui-widget-header .ui-state-highlight a{color:#777620}.ui-state-error,.ui-widget-content .ui-state-error,.ui-widget-header .ui-state-error{border:1px solid #f1a899;background:#fddfdf;color:#5f3f3f}.ui-state-error a,.ui-widget-content .ui-state-error a,.ui-widget-header .ui-state-error a{color:#5f3f3f}.ui-state-error-text,.ui-widget-content .ui-state-error-text,.ui-widget-header .ui-state-error-text{color:#5f3f3f}.ui-priority-primary,.ui-widget-content .ui-priority-primary,.ui-widget-header .ui-priority-primary{font-weight:bold}.ui-priority-secondary,.ui-widget-content .ui-priority-secondary,.ui-widget-header .ui-priority-secondary{opacity:.7;-ms-filter:"alpha(opacity=70)";font-weight:normal}.ui-state-disabled,.ui-widget-content .ui-state-disabled,.ui-widget-header .ui-state-disabled{opacity:.35;-ms-filter:"alpha(opacity=35)";background-image:none}.ui-state-disabled .ui-icon{-ms-filter:"alpha(opacity=35)"}.ui-icon{width:16px;height:16px}.ui-icon,.ui-widget-content .ui-icon{background-image:url("images/ui-icons_444444_256x240.png")}.ui-widget-header .ui-icon{background-image:url("images/ui-icons_444444_256x240.png")}.ui-state-hover .ui-icon,.ui-state-focus .ui-icon,.ui-button:hover .ui-icon,.ui-button:focus .ui-icon{background-image:url("images/ui-icons_555555_256x240.png")}.ui-state-active .ui-icon,.ui-button:active .ui-icon{background-image:url("images/ui-icons_ffffff_256x240.png")}.ui-state-highlight .ui-icon,.ui-button .ui-state-highlight.ui-icon{background-image:url("images/ui-icons_777620_256x240.png")}.ui-state-error .ui-icon,.ui-state-error-text .ui-icon{background-image:url("images/ui-icons_cc0000_256x240.png")}.ui-button .ui-icon{background-image:url("images/ui-icons_777777_256x240.png")}.ui-icon-blank.ui-icon-blank.ui-icon-blank{background-image:none}.ui-icon-caret-1-n{background-position:0 0}.ui-icon-caret-1-ne{background-position:-16px 0}.ui-icon-caret-1-e{background-position:-32px 0}.ui-icon-caret-1-se{background-position:-48px 0}.ui-icon-caret-1-s{background-position:-65px 0}.ui-icon-caret-1-sw{background-position:-80px 0}.ui-icon-caret-1-w{background-position:-96px 0}.ui-icon-caret-1-nw{background-position:-112px 0}.ui-icon-caret-2-n-s{background-position:-128px 0}.ui-icon-caret-2-e-w{background-position:-144px 0}.ui-icon-triangle-1-n{background-position:0 -16px}.ui-icon-triangle-1-ne{background-position:-16px -16px}.ui-icon-triangle-1-e{background-position:-32px -16px}.ui-icon-triangle-1-se{background-position:-48px -16px}.ui-icon-triangle-1-s{background-position:-65px -16px}.ui-icon-triangle-1-sw{background-position:-80px -16px}.ui-icon-triangle-1-w{background-position:-96px -16px}.ui-icon-triangle-1-nw{background-position:-112px -16px}.ui-icon-triangle-2-n-s{background-position:-128px -16px}.ui-icon-triangle-2-e-w{background-position:-144px -16px}.ui-icon-arrow-1-n{background-position:0 -32px}.ui-icon-arrow-1-ne{background-position:-16px -32px}.ui-icon-arrow-1-e{background-position:-32px -32px}.ui-icon-arrow-1-se{background-position:-48px -32px}.ui-icon-arrow-1-s{background-position:-65px -32px}.ui-icon-arrow-1-sw{background-position:-80px -32px}.ui-icon-arrow-1-w{background-position:-96px -32px}.ui-icon-arrow-1-nw{background-position:-112px -32px}.ui-icon-arrow-2-n-s{background-position:-128px -32px}.ui-icon-arrow-2-ne-sw{background-position:-144px -32px}.ui-icon-arrow-2-e-w{background-position:-160px -32px}.ui-icon-arrow-2-se-nw{background-position:-176px -32px}.ui-icon-arrowstop-1-n{background-position:-192px -32px}.ui-icon-arrowstop-1-e{background-position:-208px -32px}.ui-icon-arrowstop-1-s{background-position:-224px -32px}.ui-icon-arrowstop-1-w{background-position:-240px -32px}.ui-icon-arrowthick-1-n{background-position:1px -48px}.ui-icon-arrowthick-1-ne{background-position:-16px -48px}.ui-icon-arrowthick-1-e{background-position:-32px -48px}.ui-icon-arrowthick-1-se{background-position:-48px -48px}.ui-icon-arrowthick-1-s{background-position:-64px -48px}.ui-icon-arrowthick-1-sw{background-position:-80px -48px}.ui-icon-arrowthick-1-w{background-position:-96px -48px}.ui-icon-arrowthick-1-nw{background-position:-112px -48px}.ui-icon-arrowthick-2-n-s{background-position:-128px -48px}.ui-icon-arrowthick-2-ne-sw{background-position:-144px -48px}.ui-icon-arrowthick-2-e-w{background-position:-160px -48px}.ui-icon-arrowthick-2-se-nw{background-position:-176px -48px}.ui-icon-arrowthickstop-1-n{background-position:-192px -48px}.ui-icon-arrowthickstop-1-e{background-position:-208px -48px}.ui-icon-arrowthickstop-1-s{background-position:-224px -48px}.ui-icon-arrowthickstop-1-w{background-position:-240px -48px}.ui-icon-arrowreturnthick-1-w{background-position:0 -64px}.ui-icon-arrowreturnthick-1-n{background-position:-16px -64px}.ui-icon-arrowreturnthick-1-e{background-position:-32px -64px}.ui-icon-arrowreturnthick-1-s{background-position:-48px -64px}.ui-icon-arrowreturn-1-w{background-position:-64px -64px}.ui-icon-arrowreturn-1-n{background-position:-80px -64px}.ui-icon-arrowreturn-1-e{background-position:-96px -64px}.ui-icon-arrowreturn-1-s{background-position:-112px -64px}.ui-icon-arrowrefresh-1-w{background-position:-128px -64px}.ui-icon-arrowrefresh-1-n{background-position:-144px -64px}.ui-icon-arrowrefresh-1-e{background-position:-160px -64px}.ui-icon-arrowrefresh-1-s{background-position:-176px -64px}.ui-icon-arrow-4{background-position:0 -80px}.ui-icon-arrow-4-diag{background-position:-16px -80px}.ui-icon-extlink{background-position:-32px -80px}.ui-icon-newwin{background-position:-48px -80px}.ui-icon-refresh{background-position:-64px -80px}.ui-icon-shuffle{background-position:-80px -80px}.ui-icon-transfer-e-w{background-position:-96px -80px}.ui-icon-transferthick-e-w{background-position:-112px -80px}.ui-icon-folder-collapsed{background-position:0 -96px}.ui-icon-folder-open{background-position:-16px -96px}.ui-icon-document{background-position:-32px -96px}.ui-icon-document-b{background-position:-48px -96px}.ui-icon-note{background-position:-64px -96px}.ui-icon-mail-closed{background-position:-80px -96px}.ui-icon-mail-open{background-position:-96px -96px}.ui-icon-suitcase{background-position:-112px -96px}.ui-icon-comment{background-position:-128px -96px}.ui-icon-person{background-position:-144px -96px}.ui-icon-print{background-position:-160px -96px}.ui-icon-trash{background-position:-176px -96px}.ui-icon-locked{background-position:-192px -96px}.ui-icon-unlocked{background-position:-208px -96px}.ui-icon-bookmark{background-position:-224px -96px}.ui-icon-tag{background-position:-240px -96px}.ui-icon-home{background-position:0 -112px}.ui-icon-flag{background-position:-16px -112px}.ui-icon-calendar{background-position:-32px -112px}.ui-icon-cart{background-position:-48px -112px}.ui-icon-pencil{background-position:-64px -112px}.ui-icon-clock{background-position:-80px -112px}.ui-icon-disk{background-position:-96px -112px}.ui-icon-calculator{background-position:-112px -112px}.ui-icon-zoomin{background-position:-128px -112px}.ui-icon-zoomout{background-position:-144px -112px}.ui-icon-search{background-position:-160px -112px}.ui-icon-wrench{background-position:-176px -112px}.ui-icon-gear{background-position:-192px -112px}.ui-icon-heart{background-position:-208px -112px}.ui-icon-star{background-position:-224px -112px}.ui-icon-link{background-position:-240px -112px}.ui-icon-cancel{background-position:0 -128px}.ui-icon-plus{background-position:-16px -128px}.ui-icon-plusthick{background-position:-32px -128px}.ui-icon-minus{background-position:-48px -128px}.ui-icon-minusthick{background-position:-64px -128px}.ui-icon-close{background-position:-80px -128px}.ui-icon-closethick{background-position:-96px -128px}.ui-icon-key{background-position:-112px -128px}.ui-icon-lightbulb{background-position:-128px -128px}.ui-icon-scissors{background-position:-144px -128px}.ui-icon-clipboard{background-position:-160px -128px}.ui-icon-copy{background-position:-176px -128px}.ui-icon-contact{background-position:-192px -128px}.ui-icon-image{background-position:-208px -128px}.ui-icon-video{background-position:-224px -128px}.ui-icon-script{background-position:-240px -128px}.ui-icon-alert{background-position:0 -144px}.ui-icon-info{background-position:-16px -144px}.ui-icon-notice{background-position:-32px -144px}.ui-icon-help{background-position:-48px -144px}.ui-icon-check{background-position:-64px -144px}.ui-icon-bullet{background-position:-80px -144px}.ui-icon-radio-on{background-position:-96px -144px}.ui-icon-radio-off{background-position:-112px -144px}.ui-icon-pin-w{background-position:-128px -144px}.ui-icon-pin-s{background-position:-144px -144px}.ui-icon-play{background-position:0 -160px}.ui-icon-pause{background-position:-16px -160px}.ui-icon-seek-next{background-position:-32px -160px}.ui-icon-seek-prev{background-position:-48px -160px}.ui-icon-seek-end{background-position:-64px -160px}.ui-icon-seek-start{background-position:-80px -160px}.ui-icon-seek-first{background-position:-80px -160px}.ui-icon-stop{background-position:-96px -160px}.ui-icon-eject{background-position:-112px -160px}.ui-icon-volume-off{background-position:-128px -160px}.ui-icon-volume-on{background-position:-144px -160px}.ui-icon-power{background-position:0 -176px}.ui-icon-signal-diag{background-position:-16px -176px}.ui-icon-signal{background-position:-32px -176px}.ui-icon-battery-0{background-position:-48px -176px}.ui-icon-battery-1{background-position:-64px -176px}.ui-icon-battery-2{background-position:-80px -176px}.ui-icon-battery-3{background-position:-96px -176px}.ui-icon-circle-plus{background-position:0 -192px}.ui-icon-circle-minus{background-position:-16px -192px}.ui-icon-circle-close{background-position:-32px -192px}.ui-icon-circle-triangle-e{background-position:-48px -192px}.ui-icon-circle-triangle-s{background-position:-64px -192px}.ui-icon-circle-triangle-w{background-position:-80px -192px}.ui-icon-circle-triangle-n{background-position:-96px -192px}.ui-icon-circle-arrow-e{background-position:-112px -192px}.ui-icon-circle-arrow-s{background-position:-128px -192px}.ui-icon-circle-arrow-w{background-position:-144px -192px}.ui-icon-circle-arrow-n{background-position:-160px -192px}.ui-icon-circle-zoomin{background-position:-176px -192px}.ui-icon-circle-zoomout{background-position:-192px -192px}.ui-icon-circle-check{background-position:-208px -192px}.ui-icon-circlesmall-plus{background-position:0 -208px}.ui-icon-circlesmall-minus{background-position:-16px -208px}.ui-icon-circlesmall-close{background-position:-32px -208px}.ui-icon-squaresmall-plus{background-position:-48px -208px}.ui-icon-squaresmall-minus{background-position:-64px -208px}.ui-icon-squaresmall-close{background-position:-80px -208px}.ui-icon-grip-dotted-vertical{background-position:0 -224px}.ui-icon-grip-dotted-horizontal{background-position:-16px -224px}.ui-icon-grip-solid-vertical{background-position:-32px -224px}.ui-icon-grip-solid-horizontal{background-position:-48px -224px}.ui-icon-gripsmall-diagonal-se{background-position:-64px -224px}.ui-icon-grip-diagonal-se{background-position:-80px -224px}.ui-corner-all,.ui-corner-top,.ui-corner-left,.ui-corner-tl{border-top-left-radius:3px}.ui-corner-all,.ui-corner-top,.ui-corner-right,.ui-corner-tr{border-top-right-radius:3px}.ui-corner-all,.ui-corner-bottom,.ui-corner-left,.ui-corner-bl{border-bottom-left-radius:3px}.ui-corner-all,.ui-corner-bottom,.ui-corner-right,.ui-corner-br{border-bottom-right-radius:3px}.ui-widget-overlay{background:#aaa;opacity:.003;-ms-filter:Alpha(Opacity=.3)}.ui-widget-shadow{-webkit-box-shadow:0 0 5px #666;box-shadow:0 0 5px #666}
\ No newline at end of file
diff --git a/oxAuth/Server/src/main/webapp/stylesheet/jquery-ui.structure.min.css b/oxAuth/Server/src/main/webapp/stylesheet/jquery-ui.structure.min.css
new file mode 100644
index 00000000..99cbf934
--- /dev/null
+++ b/oxAuth/Server/src/main/webapp/stylesheet/jquery-ui.structure.min.css
@@ -0,0 +1,5 @@
+/*! jQuery UI - v1.13.2 - 2022-07-14
+* http://jqueryui.com
+* Copyright jQuery Foundation and other contributors; Licensed MIT */
+
+.ui-helper-hidden{display:none}.ui-helper-hidden-accessible{border:0;clip:rect(0 0 0 0);height:1px;margin:-1px;overflow:hidden;padding:0;position:absolute;width:1px}.ui-helper-reset{margin:0;padding:0;border:0;outline:0;line-height:1.3;text-decoration:none;font-size:100%;list-style:none}.ui-helper-clearfix:before,.ui-helper-clearfix:after{content:"";display:table;border-collapse:collapse}.ui-helper-clearfix:after{clear:both}.ui-helper-zfix{width:100%;height:100%;top:0;left:0;position:absolute;opacity:0;-ms-filter:"alpha(opacity=0)"}.ui-front{z-index:100}.ui-state-disabled{cursor:default!important;pointer-events:none}.ui-icon{display:inline-block;vertical-align:middle;margin-top:-.25em;position:relative;text-indent:-99999px;overflow:hidden;background-repeat:no-repeat}.ui-widget-icon-block{left:50%;margin-left:-8px;display:block}.ui-widget-overlay{position:fixed;top:0;left:0;width:100%;height:100%}.ui-accordion .ui-accordion-header{display:block;cursor:pointer;position:relative;margin:2px 0 0 0;padding:.5em .5em .5em .7em;font-size:100%}.ui-accordion .ui-accordion-content{padding:1em 2.2em;border-top:0;overflow:auto}.ui-autocomplete{position:absolute;top:0;left:0;cursor:default}.ui-menu{list-style:none;padding:0;margin:0;display:block;outline:0}.ui-menu .ui-menu{position:absolute}.ui-menu .ui-menu-item{margin:0;cursor:pointer;list-style-image:url("data:image/gif;base64,R0lGODlhAQABAIAAAAAAAP///yH5BAEAAAAALAAAAAABAAEAAAIBRAA7")}.ui-menu .ui-menu-item-wrapper{position:relative;padding:3px 1em 3px .4em}.ui-menu .ui-menu-divider{margin:5px 0;height:0;font-size:0;line-height:0;border-width:1px 0 0 0}.ui-menu .ui-state-focus,.ui-menu .ui-state-active{margin:-1px}.ui-menu-icons{position:relative}.ui-menu-icons .ui-menu-item-wrapper{padding-left:2em}.ui-menu .ui-icon{position:absolute;top:0;bottom:0;left:.2em;margin:auto 0}.ui-menu .ui-menu-icon{left:auto;right:0}.ui-button{padding:.4em 1em;display:inline-block;position:relative;line-height:normal;margin-right:.1em;cursor:pointer;vertical-align:middle;text-align:center;-webkit-user-select:none;-moz-user-select:none;-ms-user-select:none;user-select:none;overflow:visible}.ui-button,.ui-button:link,.ui-button:visited,.ui-button:hover,.ui-button:active{text-decoration:none}.ui-button-icon-only{width:2em;box-sizing:border-box;text-indent:-9999px;white-space:nowrap}input.ui-button.ui-button-icon-only{text-indent:0}.ui-button-icon-only .ui-icon{position:absolute;top:50%;left:50%;margin-top:-8px;margin-left:-8px}.ui-button.ui-icon-notext .ui-icon{padding:0;width:2.1em;height:2.1em;text-indent:-9999px;white-space:nowrap}input.ui-button.ui-icon-notext .ui-icon{width:auto;height:auto;text-indent:0;white-space:normal;padding:.4em 1em}input.ui-button::-moz-focus-inner,button.ui-button::-moz-focus-inner{border:0;padding:0}.ui-controlgroup{vertical-align:middle;display:inline-block}.ui-controlgroup > .ui-controlgroup-item{float:left;margin-left:0;margin-right:0}.ui-controlgroup > .ui-controlgroup-item:focus,.ui-controlgroup > .ui-controlgroup-item.ui-visual-focus{z-index:9999}.ui-controlgroup-vertical > .ui-controlgroup-item{display:block;float:none;width:100%;margin-top:0;margin-bottom:0;text-align:left}.ui-controlgroup-vertical .ui-controlgroup-item{box-sizing:border-box}.ui-controlgroup .ui-controlgroup-label{padding:.4em 1em}.ui-controlgroup .ui-controlgroup-label span{font-size:80%}.ui-controlgroup-horizontal .ui-controlgroup-label + .ui-controlgroup-item{border-left:none}.ui-controlgroup-vertical .ui-controlgroup-label + .ui-controlgroup-item{border-top:none}.ui-controlgroup-horizontal .ui-controlgroup-label.ui-widget-content{border-right:none}.ui-controlgroup-vertical .ui-controlgroup-label.ui-widget-content{border-bottom:none}.ui-controlgroup-vertical .ui-spinner-input{width:75%;width:calc( 100% - 2.4em )}.ui-controlgroup-vertical .ui-spinner .ui-spinner-up{border-top-style:solid}.ui-checkboxradio-label .ui-icon-background{box-shadow:inset 1px 1px 1px #ccc;border-radius:.12em;border:none}.ui-checkboxradio-radio-label .ui-icon-background{width:16px;height:16px;border-radius:1em;overflow:visible;border:none}.ui-checkboxradio-radio-label.ui-checkboxradio-checked .ui-icon,.ui-checkboxradio-radio-label.ui-checkboxradio-checked:hover .ui-icon{background-image:none;width:8px;height:8px;border-width:4px;border-style:solid}.ui-checkboxradio-disabled{pointer-events:none}.ui-datepicker{width:17em;padding:.2em .2em 0;display:none}.ui-datepicker .ui-datepicker-header{position:relative;padding:.2em 0}.ui-datepicker .ui-datepicker-prev,.ui-datepicker .ui-datepicker-next{position:absolute;top:2px;width:1.8em;height:1.8em}.ui-datepicker .ui-datepicker-prev-hover,.ui-datepicker .ui-datepicker-next-hover{top:1px}.ui-datepicker .ui-datepicker-prev{left:2px}.ui-datepicker .ui-datepicker-next{right:2px}.ui-datepicker .ui-datepicker-prev-hover{left:1px}.ui-datepicker .ui-datepicker-next-hover{right:1px}.ui-datepicker .ui-datepicker-prev span,.ui-datepicker .ui-datepicker-next span{display:block;position:absolute;left:50%;margin-left:-8px;top:50%;margin-top:-8px}.ui-datepicker .ui-datepicker-title{margin:0 2.3em;line-height:1.8em;text-align:center}.ui-datepicker .ui-datepicker-title select{font-size:1em;margin:1px 0}.ui-datepicker select.ui-datepicker-month,.ui-datepicker select.ui-datepicker-year{width:45%}.ui-datepicker table{width:100%;font-size:.9em;border-collapse:collapse;margin:0 0 .4em}.ui-datepicker th{padding:.7em .3em;text-align:center;font-weight:bold;border:0}.ui-datepicker td{border:0;padding:1px}.ui-datepicker td span,.ui-datepicker td a{display:block;padding:.2em;text-align:right;text-decoration:none}.ui-datepicker .ui-datepicker-buttonpane{background-image:none;margin:.7em 0 0 0;padding:0 .2em;border-left:0;border-right:0;border-bottom:0}.ui-datepicker .ui-datepicker-buttonpane button{float:right;margin:.5em .2em .4em;cursor:pointer;padding:.2em .6em .3em .6em;width:auto;overflow:visible}.ui-datepicker .ui-datepicker-buttonpane button.ui-datepicker-current{float:left}.ui-datepicker.ui-datepicker-multi{width:auto}.ui-datepicker-multi .ui-datepicker-group{float:left}.ui-datepicker-multi .ui-datepicker-group table{width:95%;margin:0 auto .4em}.ui-datepicker-multi-2 .ui-datepicker-group{width:50%}.ui-datepicker-multi-3 .ui-datepicker-group{width:33.3%}.ui-datepicker-multi-4 .ui-datepicker-group{width:25%}.ui-datepicker-multi .ui-datepicker-group-last .ui-datepicker-header,.ui-datepicker-multi .ui-datepicker-group-middle .ui-datepicker-header{border-left-width:0}.ui-datepicker-multi .ui-datepicker-buttonpane{clear:left}.ui-datepicker-row-break{clear:both;width:100%;font-size:0}.ui-datepicker-rtl{direction:rtl}.ui-datepicker-rtl .ui-datepicker-prev{right:2px;left:auto}.ui-datepicker-rtl .ui-datepicker-next{left:2px;right:auto}.ui-datepicker-rtl .ui-datepicker-prev:hover{right:1px;left:auto}.ui-datepicker-rtl .ui-datepicker-next:hover{left:1px;right:auto}.ui-datepicker-rtl .ui-datepicker-buttonpane{clear:right}.ui-datepicker-rtl .ui-datepicker-buttonpane button{float:left}.ui-datepicker-rtl .ui-datepicker-buttonpane button.ui-datepicker-current,.ui-datepicker-rtl .ui-datepicker-group{float:right}.ui-datepicker-rtl .ui-datepicker-group-last .ui-datepicker-header,.ui-datepicker-rtl .ui-datepicker-group-middle .ui-datepicker-header{border-right-width:0;border-left-width:1px}.ui-datepicker .ui-icon{display:block;text-indent:-99999px;overflow:hidden;background-repeat:no-repeat;left:.5em;top:.3em}.ui-dialog{position:absolute;top:0;left:0;padding:.2em;outline:0}.ui-dialog .ui-dialog-titlebar{padding:.4em 1em;position:relative}.ui-dialog .ui-dialog-title{float:left;margin:.1em 0;white-space:nowrap;width:90%;overflow:hidden;text-overflow:ellipsis}.ui-dialog .ui-dialog-titlebar-close{position:absolute;right:.3em;top:50%;width:20px;margin:-10px 0 0 0;padding:1px;height:20px}.ui-dialog .ui-dialog-content{position:relative;border:0;padding:.5em 1em;background:none;overflow:auto}.ui-dialog .ui-dialog-buttonpane{text-align:left;border-width:1px 0 0 0;background-image:none;margin-top:.5em;padding:.3em 1em .5em .4em}.ui-dialog .ui-dialog-buttonpane .ui-dialog-buttonset{float:right}.ui-dialog .ui-dialog-buttonpane button{margin:.5em .4em .5em 0;cursor:pointer}.ui-dialog .ui-resizable-n{height:2px;top:0}.ui-dialog .ui-resizable-e{width:2px;right:0}.ui-dialog .ui-resizable-s{height:2px;bottom:0}.ui-dialog .ui-resizable-w{width:2px;left:0}.ui-dialog .ui-resizable-se,.ui-dialog .ui-resizable-sw,.ui-dialog .ui-resizable-ne,.ui-dialog .ui-resizable-nw{width:7px;height:7px}.ui-dialog .ui-resizable-se{right:0;bottom:0}.ui-dialog .ui-resizable-sw{left:0;bottom:0}.ui-dialog .ui-resizable-ne{right:0;top:0}.ui-dialog .ui-resizable-nw{left:0;top:0}.ui-draggable .ui-dialog-titlebar{cursor:move}.ui-draggable-handle{-ms-touch-action:none;touch-action:none}.ui-resizable{position:relative}.ui-resizable-handle{position:absolute;font-size:0.1px;display:block;-ms-touch-action:none;touch-action:none}.ui-resizable-disabled .ui-resizable-handle,.ui-resizable-autohide .ui-resizable-handle{display:none}.ui-resizable-n{cursor:n-resize;height:7px;width:100%;top:-5px;left:0}.ui-resizable-s{cursor:s-resize;height:7px;width:100%;bottom:-5px;left:0}.ui-resizable-e{cursor:e-resize;width:7px;right:-5px;top:0;height:100%}.ui-resizable-w{cursor:w-resize;width:7px;left:-5px;top:0;height:100%}.ui-resizable-se{cursor:se-resize;width:12px;height:12px;right:1px;bottom:1px}.ui-resizable-sw{cursor:sw-resize;width:9px;height:9px;left:-5px;bottom:-5px}.ui-resizable-nw{cursor:nw-resize;width:9px;height:9px;left:-5px;top:-5px}.ui-resizable-ne{cursor:ne-resize;width:9px;height:9px;right:-5px;top:-5px}.ui-progressbar{height:2em;text-align:left;overflow:hidden}.ui-progressbar .ui-progressbar-value{margin:-1px;height:100%}.ui-progressbar .ui-progressbar-overlay{background:url("data:image/gif;base64,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");height:100%;-ms-filter:"alpha(opacity=25)";opacity:0.25}.ui-progressbar-indeterminate .ui-progressbar-value{background-image:none}.ui-selectable{-ms-touch-action:none;touch-action:none}.ui-selectable-helper{position:absolute;z-index:100;border:1px dotted black}.ui-selectmenu-menu{padding:0;margin:0;position:absolute;top:0;left:0;display:none}.ui-selectmenu-menu .ui-menu{overflow:auto;overflow-x:hidden;padding-bottom:1px}.ui-selectmenu-menu .ui-menu .ui-selectmenu-optgroup{font-size:1em;font-weight:bold;line-height:1.5;padding:2px 0.4em;margin:0.5em 0 0 0;height:auto;border:0}.ui-selectmenu-open{display:block}.ui-selectmenu-text{display:block;margin-right:20px;overflow:hidden;text-overflow:ellipsis}.ui-selectmenu-button.ui-button{text-align:left;white-space:nowrap;width:14em}.ui-selectmenu-icon.ui-icon{float:right;margin-top:0}.ui-slider{position:relative;text-align:left}.ui-slider .ui-slider-handle{position:absolute;z-index:2;width:1.2em;height:1.2em;cursor:pointer;-ms-touch-action:none;touch-action:none}.ui-slider .ui-slider-range{position:absolute;z-index:1;font-size:.7em;display:block;border:0;background-position:0 0}.ui-slider.ui-state-disabled .ui-slider-handle,.ui-slider.ui-state-disabled .ui-slider-range{filter:inherit}.ui-slider-horizontal{height:.8em}.ui-slider-horizontal .ui-slider-handle{top:-.3em;margin-left:-.6em}.ui-slider-horizontal .ui-slider-range{top:0;height:100%}.ui-slider-horizontal .ui-slider-range-min{left:0}.ui-slider-horizontal .ui-slider-range-max{right:0}.ui-slider-vertical{width:.8em;height:100px}.ui-slider-vertical .ui-slider-handle{left:-.3em;margin-left:0;margin-bottom:-.6em}.ui-slider-vertical .ui-slider-range{left:0;width:100%}.ui-slider-vertical .ui-slider-range-min{bottom:0}.ui-slider-vertical .ui-slider-range-max{top:0}.ui-sortable-handle{-ms-touch-action:none;touch-action:none}.ui-spinner{position:relative;display:inline-block;overflow:hidden;padding:0;vertical-align:middle}.ui-spinner-input{border:none;background:none;color:inherit;padding:.222em 0;margin:.2em 0;vertical-align:middle;margin-left:.4em;margin-right:2em}.ui-spinner-button{width:1.6em;height:50%;font-size:.5em;padding:0;margin:0;text-align:center;position:absolute;cursor:default;display:block;overflow:hidden;right:0}.ui-spinner a.ui-spinner-button{border-top-style:none;border-bottom-style:none;border-right-style:none}.ui-spinner-up{top:0}.ui-spinner-down{bottom:0}.ui-tabs{position:relative;padding:.2em}.ui-tabs .ui-tabs-nav{margin:0;padding:.2em .2em 0}.ui-tabs .ui-tabs-nav li{list-style:none;float:left;position:relative;top:0;margin:1px .2em 0 0;border-bottom-width:0;padding:0;white-space:nowrap}.ui-tabs .ui-tabs-nav .ui-tabs-anchor{float:left;padding:.5em 1em;text-decoration:none}.ui-tabs .ui-tabs-nav li.ui-tabs-active{margin-bottom:-1px;padding-bottom:1px}.ui-tabs .ui-tabs-nav li.ui-tabs-active .ui-tabs-anchor,.ui-tabs .ui-tabs-nav li.ui-state-disabled .ui-tabs-anchor,.ui-tabs .ui-tabs-nav li.ui-tabs-loading .ui-tabs-anchor{cursor:text}.ui-tabs-collapsible .ui-tabs-nav li.ui-tabs-active .ui-tabs-anchor{cursor:pointer}.ui-tabs .ui-tabs-panel{display:block;border-width:0;padding:1em 1.4em;background:none}.ui-tooltip{padding:8px;position:absolute;z-index:9999;max-width:300px}body .ui-tooltip{border-width:2px}
\ No newline at end of file
diff --git a/oxAuth/Server/src/main/webapp/stylesheet/jquery-ui.theme.min.css b/oxAuth/Server/src/main/webapp/stylesheet/jquery-ui.theme.min.css
new file mode 100644
index 00000000..dab1c8c2
--- /dev/null
+++ b/oxAuth/Server/src/main/webapp/stylesheet/jquery-ui.theme.min.css
@@ -0,0 +1,5 @@
+/*! jQuery UI - v1.13.2 - 2022-07-14
+* http://jqueryui.com
+* Copyright jQuery Foundation and other contributors; Licensed MIT */
+
+.ui-widget{font-family:Arial,Helvetica,sans-serif;font-size:1em}.ui-widget .ui-widget{font-size:1em}.ui-widget input,.ui-widget select,.ui-widget textarea,.ui-widget button{font-family:Arial,Helvetica,sans-serif;font-size:1em}.ui-widget.ui-widget-content{border:1px solid #c5c5c5}.ui-widget-content{border:1px solid #ddd;background:#fff;color:#333}.ui-widget-content a{color:#333}.ui-widget-header{border:1px solid #ddd;background:#e9e9e9;color:#333;font-weight:bold}.ui-widget-header a{color:#333}.ui-state-default,.ui-widget-content .ui-state-default,.ui-widget-header .ui-state-default,.ui-button,html .ui-button.ui-state-disabled:hover,html .ui-button.ui-state-disabled:active{border:1px solid #c5c5c5;background:#f6f6f6;font-weight:normal;color:#454545}.ui-state-default a,.ui-state-default a:link,.ui-state-default a:visited,a.ui-button,a:link.ui-button,a:visited.ui-button,.ui-button{color:#454545;text-decoration:none}.ui-state-hover,.ui-widget-content .ui-state-hover,.ui-widget-header .ui-state-hover,.ui-state-focus,.ui-widget-content .ui-state-focus,.ui-widget-header .ui-state-focus,.ui-button:hover,.ui-button:focus{border:1px solid #ccc;background:#ededed;font-weight:normal;color:#2b2b2b}.ui-state-hover a,.ui-state-hover a:hover,.ui-state-hover a:link,.ui-state-hover a:visited,.ui-state-focus a,.ui-state-focus a:hover,.ui-state-focus a:link,.ui-state-focus a:visited,a.ui-button:hover,a.ui-button:focus{color:#2b2b2b;text-decoration:none}.ui-visual-focus{box-shadow:0 0 3px 1px rgb(94,158,214)}.ui-state-active,.ui-widget-content .ui-state-active,.ui-widget-header .ui-state-active,a.ui-button:active,.ui-button:active,.ui-button.ui-state-active:hover{border:1px solid #003eff;background:#007fff;font-weight:normal;color:#fff}.ui-icon-background,.ui-state-active .ui-icon-background{border:#003eff;background-color:#fff}.ui-state-active a,.ui-state-active a:link,.ui-state-active a:visited{color:#fff;text-decoration:none}.ui-state-highlight,.ui-widget-content .ui-state-highlight,.ui-widget-header .ui-state-highlight{border:1px solid #dad55e;background:#fffa90;color:#777620}.ui-state-checked{border:1px solid #dad55e;background:#fffa90}.ui-state-highlight a,.ui-widget-content .ui-state-highlight a,.ui-widget-header .ui-state-highlight a{color:#777620}.ui-state-error,.ui-widget-content .ui-state-error,.ui-widget-header .ui-state-error{border:1px solid #f1a899;background:#fddfdf;color:#5f3f3f}.ui-state-error a,.ui-widget-content .ui-state-error a,.ui-widget-header .ui-state-error a{color:#5f3f3f}.ui-state-error-text,.ui-widget-content .ui-state-error-text,.ui-widget-header .ui-state-error-text{color:#5f3f3f}.ui-priority-primary,.ui-widget-content .ui-priority-primary,.ui-widget-header .ui-priority-primary{font-weight:bold}.ui-priority-secondary,.ui-widget-content .ui-priority-secondary,.ui-widget-header .ui-priority-secondary{opacity:.7;-ms-filter:"alpha(opacity=70)";font-weight:normal}.ui-state-disabled,.ui-widget-content .ui-state-disabled,.ui-widget-header .ui-state-disabled{opacity:.35;-ms-filter:"alpha(opacity=35)";background-image:none}.ui-state-disabled .ui-icon{-ms-filter:"alpha(opacity=35)"}.ui-icon{width:16px;height:16px}.ui-icon,.ui-widget-content .ui-icon{background-image:url("images/ui-icons_444444_256x240.png")}.ui-widget-header .ui-icon{background-image:url("images/ui-icons_444444_256x240.png")}.ui-state-hover .ui-icon,.ui-state-focus .ui-icon,.ui-button:hover .ui-icon,.ui-button:focus .ui-icon{background-image:url("images/ui-icons_555555_256x240.png")}.ui-state-active .ui-icon,.ui-button:active .ui-icon{background-image:url("images/ui-icons_ffffff_256x240.png")}.ui-state-highlight .ui-icon,.ui-button .ui-state-highlight.ui-icon{background-image:url("images/ui-icons_777620_256x240.png")}.ui-state-error .ui-icon,.ui-state-error-text .ui-icon{background-image:url("images/ui-icons_cc0000_256x240.png")}.ui-button .ui-icon{background-image:url("images/ui-icons_777777_256x240.png")}.ui-icon-blank.ui-icon-blank.ui-icon-blank{background-image:none}.ui-icon-caret-1-n{background-position:0 0}.ui-icon-caret-1-ne{background-position:-16px 0}.ui-icon-caret-1-e{background-position:-32px 0}.ui-icon-caret-1-se{background-position:-48px 0}.ui-icon-caret-1-s{background-position:-65px 0}.ui-icon-caret-1-sw{background-position:-80px 0}.ui-icon-caret-1-w{background-position:-96px 0}.ui-icon-caret-1-nw{background-position:-112px 0}.ui-icon-caret-2-n-s{background-position:-128px 0}.ui-icon-caret-2-e-w{background-position:-144px 0}.ui-icon-triangle-1-n{background-position:0 -16px}.ui-icon-triangle-1-ne{background-position:-16px -16px}.ui-icon-triangle-1-e{background-position:-32px -16px}.ui-icon-triangle-1-se{background-position:-48px -16px}.ui-icon-triangle-1-s{background-position:-65px -16px}.ui-icon-triangle-1-sw{background-position:-80px -16px}.ui-icon-triangle-1-w{background-position:-96px -16px}.ui-icon-triangle-1-nw{background-position:-112px -16px}.ui-icon-triangle-2-n-s{background-position:-128px -16px}.ui-icon-triangle-2-e-w{background-position:-144px -16px}.ui-icon-arrow-1-n{background-position:0 -32px}.ui-icon-arrow-1-ne{background-position:-16px -32px}.ui-icon-arrow-1-e{background-position:-32px -32px}.ui-icon-arrow-1-se{background-position:-48px -32px}.ui-icon-arrow-1-s{background-position:-65px -32px}.ui-icon-arrow-1-sw{background-position:-80px -32px}.ui-icon-arrow-1-w{background-position:-96px -32px}.ui-icon-arrow-1-nw{background-position:-112px -32px}.ui-icon-arrow-2-n-s{background-position:-128px -32px}.ui-icon-arrow-2-ne-sw{background-position:-144px -32px}.ui-icon-arrow-2-e-w{background-position:-160px -32px}.ui-icon-arrow-2-se-nw{background-position:-176px -32px}.ui-icon-arrowstop-1-n{background-position:-192px -32px}.ui-icon-arrowstop-1-e{background-position:-208px -32px}.ui-icon-arrowstop-1-s{background-position:-224px -32px}.ui-icon-arrowstop-1-w{background-position:-240px -32px}.ui-icon-arrowthick-1-n{background-position:1px -48px}.ui-icon-arrowthick-1-ne{background-position:-16px -48px}.ui-icon-arrowthick-1-e{background-position:-32px -48px}.ui-icon-arrowthick-1-se{background-position:-48px -48px}.ui-icon-arrowthick-1-s{background-position:-64px -48px}.ui-icon-arrowthick-1-sw{background-position:-80px -48px}.ui-icon-arrowthick-1-w{background-position:-96px -48px}.ui-icon-arrowthick-1-nw{background-position:-112px -48px}.ui-icon-arrowthick-2-n-s{background-position:-128px -48px}.ui-icon-arrowthick-2-ne-sw{background-position:-144px -48px}.ui-icon-arrowthick-2-e-w{background-position:-160px -48px}.ui-icon-arrowthick-2-se-nw{background-position:-176px -48px}.ui-icon-arrowthickstop-1-n{background-position:-192px -48px}.ui-icon-arrowthickstop-1-e{background-position:-208px -48px}.ui-icon-arrowthickstop-1-s{background-position:-224px -48px}.ui-icon-arrowthickstop-1-w{background-position:-240px -48px}.ui-icon-arrowreturnthick-1-w{background-position:0 -64px}.ui-icon-arrowreturnthick-1-n{background-position:-16px -64px}.ui-icon-arrowreturnthick-1-e{background-position:-32px -64px}.ui-icon-arrowreturnthick-1-s{background-position:-48px -64px}.ui-icon-arrowreturn-1-w{background-position:-64px -64px}.ui-icon-arrowreturn-1-n{background-position:-80px -64px}.ui-icon-arrowreturn-1-e{background-position:-96px -64px}.ui-icon-arrowreturn-1-s{background-position:-112px -64px}.ui-icon-arrowrefresh-1-w{background-position:-128px -64px}.ui-icon-arrowrefresh-1-n{background-position:-144px -64px}.ui-icon-arrowrefresh-1-e{background-position:-160px -64px}.ui-icon-arrowrefresh-1-s{background-position:-176px -64px}.ui-icon-arrow-4{background-position:0 -80px}.ui-icon-arrow-4-diag{background-position:-16px -80px}.ui-icon-extlink{background-position:-32px -80px}.ui-icon-newwin{background-position:-48px -80px}.ui-icon-refresh{background-position:-64px -80px}.ui-icon-shuffle{background-position:-80px -80px}.ui-icon-transfer-e-w{background-position:-96px -80px}.ui-icon-transferthick-e-w{background-position:-112px -80px}.ui-icon-folder-collapsed{background-position:0 -96px}.ui-icon-folder-open{background-position:-16px -96px}.ui-icon-document{background-position:-32px -96px}.ui-icon-document-b{background-position:-48px -96px}.ui-icon-note{background-position:-64px -96px}.ui-icon-mail-closed{background-position:-80px -96px}.ui-icon-mail-open{background-position:-96px -96px}.ui-icon-suitcase{background-position:-112px -96px}.ui-icon-comment{background-position:-128px -96px}.ui-icon-person{background-position:-144px -96px}.ui-icon-print{background-position:-160px -96px}.ui-icon-trash{background-position:-176px -96px}.ui-icon-locked{background-position:-192px -96px}.ui-icon-unlocked{background-position:-208px -96px}.ui-icon-bookmark{background-position:-224px -96px}.ui-icon-tag{background-position:-240px -96px}.ui-icon-home{background-position:0 -112px}.ui-icon-flag{background-position:-16px -112px}.ui-icon-calendar{background-position:-32px -112px}.ui-icon-cart{background-position:-48px -112px}.ui-icon-pencil{background-position:-64px -112px}.ui-icon-clock{background-position:-80px -112px}.ui-icon-disk{background-position:-96px -112px}.ui-icon-calculator{background-position:-112px -112px}.ui-icon-zoomin{background-position:-128px -112px}.ui-icon-zoomout{background-position:-144px -112px}.ui-icon-search{background-position:-160px -112px}.ui-icon-wrench{background-position:-176px -112px}.ui-icon-gear{background-position:-192px -112px}.ui-icon-heart{background-position:-208px -112px}.ui-icon-star{background-position:-224px -112px}.ui-icon-link{background-position:-240px -112px}.ui-icon-cancel{background-position:0 -128px}.ui-icon-plus{background-position:-16px -128px}.ui-icon-plusthick{background-position:-32px -128px}.ui-icon-minus{background-position:-48px -128px}.ui-icon-minusthick{background-position:-64px -128px}.ui-icon-close{background-position:-80px -128px}.ui-icon-closethick{background-position:-96px -128px}.ui-icon-key{background-position:-112px -128px}.ui-icon-lightbulb{background-position:-128px -128px}.ui-icon-scissors{background-position:-144px -128px}.ui-icon-clipboard{background-position:-160px -128px}.ui-icon-copy{background-position:-176px -128px}.ui-icon-contact{background-position:-192px -128px}.ui-icon-image{background-position:-208px -128px}.ui-icon-video{background-position:-224px -128px}.ui-icon-script{background-position:-240px -128px}.ui-icon-alert{background-position:0 -144px}.ui-icon-info{background-position:-16px -144px}.ui-icon-notice{background-position:-32px -144px}.ui-icon-help{background-position:-48px -144px}.ui-icon-check{background-position:-64px -144px}.ui-icon-bullet{background-position:-80px -144px}.ui-icon-radio-on{background-position:-96px -144px}.ui-icon-radio-off{background-position:-112px -144px}.ui-icon-pin-w{background-position:-128px -144px}.ui-icon-pin-s{background-position:-144px -144px}.ui-icon-play{background-position:0 -160px}.ui-icon-pause{background-position:-16px -160px}.ui-icon-seek-next{background-position:-32px -160px}.ui-icon-seek-prev{background-position:-48px -160px}.ui-icon-seek-end{background-position:-64px -160px}.ui-icon-seek-start{background-position:-80px -160px}.ui-icon-seek-first{background-position:-80px -160px}.ui-icon-stop{background-position:-96px -160px}.ui-icon-eject{background-position:-112px -160px}.ui-icon-volume-off{background-position:-128px -160px}.ui-icon-volume-on{background-position:-144px -160px}.ui-icon-power{background-position:0 -176px}.ui-icon-signal-diag{background-position:-16px -176px}.ui-icon-signal{background-position:-32px -176px}.ui-icon-battery-0{background-position:-48px -176px}.ui-icon-battery-1{background-position:-64px -176px}.ui-icon-battery-2{background-position:-80px -176px}.ui-icon-battery-3{background-position:-96px -176px}.ui-icon-circle-plus{background-position:0 -192px}.ui-icon-circle-minus{background-position:-16px -192px}.ui-icon-circle-close{background-position:-32px -192px}.ui-icon-circle-triangle-e{background-position:-48px -192px}.ui-icon-circle-triangle-s{background-position:-64px -192px}.ui-icon-circle-triangle-w{background-position:-80px -192px}.ui-icon-circle-triangle-n{background-position:-96px -192px}.ui-icon-circle-arrow-e{background-position:-112px -192px}.ui-icon-circle-arrow-s{background-position:-128px -192px}.ui-icon-circle-arrow-w{background-position:-144px -192px}.ui-icon-circle-arrow-n{background-position:-160px -192px}.ui-icon-circle-zoomin{background-position:-176px -192px}.ui-icon-circle-zoomout{background-position:-192px -192px}.ui-icon-circle-check{background-position:-208px -192px}.ui-icon-circlesmall-plus{background-position:0 -208px}.ui-icon-circlesmall-minus{background-position:-16px -208px}.ui-icon-circlesmall-close{background-position:-32px -208px}.ui-icon-squaresmall-plus{background-position:-48px -208px}.ui-icon-squaresmall-minus{background-position:-64px -208px}.ui-icon-squaresmall-close{background-position:-80px -208px}.ui-icon-grip-dotted-vertical{background-position:0 -224px}.ui-icon-grip-dotted-horizontal{background-position:-16px -224px}.ui-icon-grip-solid-vertical{background-position:-32px -224px}.ui-icon-grip-solid-horizontal{background-position:-48px -224px}.ui-icon-gripsmall-diagonal-se{background-position:-64px -224px}.ui-icon-grip-diagonal-se{background-position:-80px -224px}.ui-corner-all,.ui-corner-top,.ui-corner-left,.ui-corner-tl{border-top-left-radius:3px}.ui-corner-all,.ui-corner-top,.ui-corner-right,.ui-corner-tr{border-top-right-radius:3px}.ui-corner-all,.ui-corner-bottom,.ui-corner-left,.ui-corner-bl{border-bottom-left-radius:3px}.ui-corner-all,.ui-corner-bottom,.ui-corner-right,.ui-corner-br{border-bottom-right-radius:3px}.ui-widget-overlay{background:#aaa;opacity:.003;-ms-filter:Alpha(Opacity=.3)}.ui-widget-shadow{-webkit-box-shadow:0 0 5px #666;box-shadow:0 0 5px #666}
\ No newline at end of file
diff --git a/oxAuth/Server/src/main/webapp/stylesheet/recorder_3buttons.css b/oxAuth/Server/src/main/webapp/stylesheet/recorder_3buttons.css
new file mode 100644
index 00000000..4aa936df
--- /dev/null
+++ b/oxAuth/Server/src/main/webapp/stylesheet/recorder_3buttons.css
@@ -0,0 +1,345 @@
+.ui-button,
+.ui-widget,
+.ui-state-default,
+.ui-corner-all,
+.ui-button-text-only {
+  all: initial;
+  all: revert;
+  all: unset;
+}
+
+.recorder {
+  display: block;
+  width: 100%;
+  margin: 5% auto 5% auto;
+}
+
+
+.visualizer {
+  background-color: rgb(240, 252, 255);
+  background-position: center bottom;
+  height: clamp(30px, 60%, 60px);
+  width: 70%;
+  margin: 2% 15%;
+  height: 70px;
+
+}
+
+.displayWave {
+  height: 100%;
+  width: 100%;
+}
+
+
+.sleep,
+.stop {
+  background-color: transparent;
+}
+
+.record {
+  background: linear-gradient(#bf4e4e, #813939);
+}
+
+.play {
+  background: linear-gradient(#7fbb58, #577941);
+}
+
+.timer {
+  margin: 2% auto;
+  font-size: 0.7em;
+  text-align: center;
+  width: 15%;
+  padding-top: 0.5%;
+  color: #2d6833;
+  z-index: 20;
+  background-color: #f3f3f3;
+
+  box-shadow: inset 1px 1px 3px rgba(91, 158, 177, 0.3);
+}
+
+.asr-text-zone {
+  background-color: white;
+  font-size: 1.1em;
+  border: 1px solid #32a1ce;
+  border-radius: 17px;
+  width: 95%;
+  margin: 5% auto 5% auto;
+  padding: 5%;
+
+}
+
+
+
+
+@keyframes spin {
+  0% {
+    transform: rotate(0deg);
+  }
+
+  100% {
+    transform: rotate(360deg);
+  }
+}
+
+
+
+form {
+  padding: 1%;
+}
+
+.row ul {
+  margin: 0;
+  padding: 0;
+  background: none;
+  text-align: center;
+  border: none;
+  width: 100%;
+}
+
+.methodTab {
+  width: 95%;
+  margin: auto;
+}
+
+.methodTab {
+  margin: auto;
+  background: none;
+  border: 1px solid #93a9b1;
+  border-top: none;
+}
+
+.formFieldSelected {
+  outline: none;
+  border-color: #32a1ce;
+  box-shadow: 0 0 6px #1daee8, 0 0 2px #9ecaed;
+}
+
+.remote-recorder {
+  display: grid;
+  margin: 4% auto;
+  height: 100px;
+
+  grid-template-columns: 30% 15% 10% 15% 30%;
+  grid-template-rows: 100%;
+  justify-items: center;
+  align-items: center;
+
+  z-index: 100;
+}
+
+
+.button-recorder {
+  vertical-align: middle;
+  width: 80px;
+  height: 80px;
+
+  border-radius: 50%;
+  border: 2px solid #3CD2F9;
+
+  font-size: 0em;
+
+  cursor: pointer;
+
+  z-index: 1000;
+
+
+}
+
+.button-next {
+  background-color: #0EADF3;
+}
+
+.button-recorder-small {
+
+  width: 40px;
+  height: 40px;
+  align-self: end;
+
+}
+
+
+.button-left {
+  grid-column: 2 / span 1;
+
+}
+
+.button-middle {
+  grid-column: 3 / span 1;
+
+}
+
+.button-right {
+  grid-column: 4 / span 1;
+}
+
+
+
+
+@keyframes anim-glow-big {
+  0% {
+    box-shadow: 0 0 30px 10px rgba(60, 210, 249, 0.5);
+  }
+
+  10% {
+    box-shadow: 0 0 2px 2px rgba(60, 210, 249, 0.3);
+  }
+
+  20% {
+    box-shadow: 0 0 30px 5px rgba(60, 210, 249, 1);
+  }
+
+  30% {
+    box-shadow: 0 0 10px 20px rgba(60, 210, 249, 1);
+  }
+
+  25% {
+    box-shadow: 0 0 30px 30px rgba(60, 210, 249, 0.4);
+  }
+
+  40% {
+    box-shadow: 0px 0 20px 20px rgba(60, 210, 249, 0.8);
+  }
+
+  50% {
+    box-shadow: 0 0 30px 5px rgba(60, 210, 249, 1);
+  }
+
+  60% {
+    box-shadow: 0 0 10px 10px rgba(60, 210, 249, 0.9);
+  }
+
+  70% {
+    box-shadow: 0 0 20px 10px rgba(60, 210, 249, 1);
+  }
+
+  80% {
+    box-shadow: 0px 0 30px 10px rgba(60, 210, 249, 0.6);
+  }
+
+  90% {
+    box-shadow: 0 0 10px 2px rgba(60, 210, 249, 1);
+  }
+
+  100% {
+    box-shadow: 0 0 20px 5px rgba(60, 210, 249, 0.5);
+  }
+}
+
+@keyframes anim-glow {
+  0% {
+    box-shadow: 0 0 5px 2px rgba(60, 210, 249, 0.5);
+  }
+
+  10% {
+    box-shadow: 0 0 2px 1px rgba(60, 210, 249, 0.3);
+  }
+
+  20% {
+    box-shadow: 0 0 8px 3px rgba(60, 210, 249, 1);
+  }
+
+  30% {
+    box-shadow: 0 0 8px 2px rgba(60, 210, 249, 1);
+  }
+
+  40% {
+    box-shadow: 0px 0 10px 8px rgba(60, 210, 249, 0.8);
+  }
+
+  50% {
+    box-shadow: 0 0 8px 5px rgba(60, 210, 249, 1);
+  }
+
+  60% {
+    box-shadow: 0 0 6px 7px rgba(60, 210, 249, 0.9);
+  }
+
+  70% {
+    box-shadow: 0 0 15px 3px rgba(60, 210, 249, 1);
+  }
+
+  80% {
+    box-shadow: 0px 0 10px 2px rgba(60, 210, 249, 0.6);
+  }
+
+  90% {
+    box-shadow: 0 0 10px 2px rgba(60, 210, 249, 1);
+  }
+
+  100% {
+    box-shadow: 0 0 5px 5px rgba(60, 210, 249, 0.5);
+  }
+}
+
+
+.remote-recorder button .ui-button-text.ui-c {
+  display: inline-block;
+  width: 100%;
+  height: 100%;
+  margin: 0%;
+  background-size: 50%;
+  background-repeat: no-repeat;
+  background-position: center;
+  border-radius: 50%;
+  background-color: transparent;
+
+}
+
+
+.icon-button-mic .ui-button-text.ui-c {
+  background-image: url("/oxauth/ext/resources/img/IcoMic.svg");
+}
+
+.icon-button-next .ui-button-text.ui-c {
+  background-color: #0EADF3;
+  background-image: url("/oxauth/ext/resources/img/IcoArrow.svg");
+}
+
+.icon-button-back {
+  background-image: url("/oxauth/ext/resources/img/IcoArrowRed.svg");
+  transform: scale(-1, 1);
+
+  vertical-align: middle;
+  width: 80px;
+  height: 80px;
+
+  border-radius: 50%;
+  border: 2px solid #f93c3c;
+
+  font-size: 0em;
+
+  cursor: pointer;
+
+  z-index: 1000;
+
+}
+
+.icon-button-stop .ui-button-text.ui-c {
+  background-image: url("/oxauth/ext/resources/img/IcoStop.svg");
+}
+
+.icon-button-reset .ui-button-text.ui-c {
+  background-image: url("/oxauth/ext/resources/img/IcoRetry.svg");
+
+}
+
+.icon-button-play .ui-button-text.ui-c {
+  background-image: url("/oxauth/ext/resources/img/IcoPlay.svg");
+}
+
+.button-recorder:hover {
+  box-shadow: inset 0 0 2px 1px rgba(0, 0, 0, 0.2);
+}
+
+.glowing {
+  animation: anim-glow 3s cubic-bezier(0.1, -0.6, 0.2, 0) 100ms infinite alternate;
+}
+
+.button-reset {
+  border: 2px solid #F38181
+}
+
+
+.button-hidden {
+  display: none;
+}
\ No newline at end of file
diff --git a/oxAuth/Server/src/main/webapp/stylesheet/responsive-media.css b/oxAuth/Server/src/main/webapp/stylesheet/responsive-media.css
new file mode 100644
index 00000000..32bfbafc
--- /dev/null
+++ b/oxAuth/Server/src/main/webapp/stylesheet/responsive-media.css
@@ -0,0 +1,49 @@
+
+@media(min-width: 1024px)and (max-width: 1280px) {
+
+
+}
+
+@media(min-width: 992px)and (max-width: 1023px) {
+
+
+}
+
+@media(min-width: 768px)and (max-width: 991px) {
+
+}
+
+@media(max-width: 767px){
+
+	.bs-docs-section {
+    padding: 50px 0px;
+}
+.padding_spc {
+    border-top: 1px solid #f3f3f3;
+    padding-top: 23px;
+    padding-bottom: 20px;
+    position: static;
+    bottom: 0;
+    max-width: 1170px;
+    width: 100%;
+    margin: 0 0 -11px 0;
+}
+}
+
+@media(max-width: 480px){
+.padding_spc {
+    border-top: 1px solid #f3f3f3;
+    padding-top: 23px;
+    padding-bottom: 20px;
+    position: static;
+    bottom: 0;
+    max-width: 1170px;
+    width: 100%;
+    margin: 0 0 -11px 0;
+}
+}
+
+@media(max-width: 320px){
+
+
+}
\ No newline at end of file
diff --git a/oxAuth/Server/src/main/webapp/stylesheet/site.css b/oxAuth/Server/src/main/webapp/stylesheet/site.css
new file mode 100644
index 00000000..bd54d2d7
--- /dev/null
+++ b/oxAuth/Server/src/main/webapp/stylesheet/site.css
@@ -0,0 +1,46 @@
+.alignCenter {
+    text-align: center;
+}
+
+.alignRight {
+	text-align: right;
+}
+
+.alignLeft {
+	text-align: left;
+}
+
+.alignTop {
+	vertical-align: top;
+}
+
+.alignMiddle {
+    vertical-align: middle;
+}
+
+.alignLeftTop {
+    text-align: left;
+    vertical-align: top;
+}
+
+.alignBottom {
+    vertical-align: bottom;
+}
+
+.alignRightTop {
+    vertical-align: top;
+    text-align: right;
+    float: right;
+}
+
+.bolded {
+  font-weight: bold;
+}
+
+.nowrap {
+  white-space: nowrap;
+}
+
+.width100 {
+	width: 100%;
+}
diff --git a/oxAuth/Server/src/main/webapp/stylesheet/style.css b/oxAuth/Server/src/main/webapp/stylesheet/style.css
new file mode 100644
index 00000000..fe9bf9a6
--- /dev/null
+++ b/oxAuth/Server/src/main/webapp/stylesheet/style.css
@@ -0,0 +1,710 @@
+html, body, div, span, applet, object, iframe, h1, h2, h3, h4, h5, h6, p, blockquote, pre, a, abbr, acronym, address, big, cite, code, del, dfn, em, img, ins, kbd, q, s, samp, small, strike, strong, sub, sup, tt, var, b, u, i, center, dl, dt, dd, ol, ul, li, fieldset, form, label, legend, table, caption, tbody, tfoot, thead, tr, th, td, article, aside, canvas, details, embed, figure, figcaption, footer, header, hgroup, menu, nav, output, ruby, section, summary, time, mark, audio, video {
+	margin: 0;
+	padding: 10,10;
+	border: 0;
+	font-size: 100%;
+	vertical-align: baseline;
+}
+body {
+	line-height: 1;
+}
+ol,
+ul {
+	list-style: none;
+}
+blockquote,
+q {
+	quotes: none;
+}
+blockquote:before,
+blockquote:after,
+q:before,
+q:after {
+	content: '';
+	content: none;
+}
+table {
+	border-collapse: collapse;
+	border-spacing: 0;
+}
+caption,
+th,
+td {
+	font-weight: normal;
+	text-align: left;
+}
+h1,
+h2,
+h3,
+h4,
+h5,
+h6 {
+	clear: both;
+}
+html {
+	overflow-y: scroll;
+	font-size: 100%;
+	-webkit-text-size-adjust: 100%;
+	-ms-text-size-adjust: 100%;
+}
+a:focus {
+	outline: thin dotted;
+}
+article,
+aside,
+details,
+figcaption,
+figure,
+footer,
+header,
+hgroup,
+nav,
+section {
+	display: block;
+}
+audio,
+canvas,
+video {
+	display: inline-block;
+}
+audio:not([controls]) {
+	display: none;
+}
+del {
+	color: #333;
+}
+ins {
+	background: #fff9c0;
+	text-decoration: none;
+}
+hr {
+	background-color: #ccc;
+	border: 0;
+	height: 1px;
+	margin: 24px;
+	margin-bottom: 1.714285714rem;
+}
+sub,
+sup {
+	font-size: 75%;
+	line-height: 0;
+	position: relative;
+	vertical-align: baseline;
+}
+sup {
+	top: -0.5em;
+}
+sub {
+	bottom: -0.25em;
+}
+small {
+	font-size: smaller;
+}
+img {
+	border: 0;
+	-ms-interpolation-mode: bicubic;
+}
+.question-container strong {
+ font-size:1.7em !important;
+}
+
+
+/*my styles*/
+
+body{font-family: Arial, "Helvetica Neue", Helvetica, sans-serif; color:#666; font-size:14px; letter-spacing:0.02em;}
+a:link, a:hover, a:active, a:visited{text-decoration:none;}
+
+.logo{padding-top:6px;}
+#content{background-color:#fff; padding-bottom:50px;}
+#content.sign-in-page{padding-top:80px;}
+#content.register-page{padding-top:30px;}
+
+.signin-form{background-color:#f9f8f8; border:1px solid #e3e0e0; border-radius:5px;}
+.registration-form{}
+.remember-container{border-left:1px solid #d9d9d9; margin-top:38px; padding-left:55px; padding-top:107px; min-height:250px; text-align:center;}
+.remember-container strong{color:#525252; font-size:22px; font-weight:bold;}
+.remember-container p{line-height:1.4em; padding-top:20px;}
+.inner-form-container{border:1px solid #fff; border-radius:5px; padding-top:38px; padding-bottom:39px;}
+.registration-form li, .signin-form li{border:0px solid black; margin-top:16px; height:39px;}
+.registration-form li:first-child, .signin-form li:first-child{margin-top:0;}
+.input-name{display:inline-block; vertical-align:top; padding-top:10px;}
+.marked-required{color:#ff0000; font-size:14px;}
+.input-required{color:#ff0000; font-size:12px; display:inline-block; margin-left:6px; vertical-align:top; padding-top:10px;}
+input[type="text"], input[type="password"]{height:29px; padding: 4px 6px; margin-bottom: 0px; box-shadow:inset 0px 0px 3px #c3bfbf;}
+input[type="text"]:focus, input[type="password"]:focus{box-shadow:inset 0 1px 1px rgba(0, 0, 0, 0.075), 0 0 8px rgba(82, 168, 236, 0.6), inset 0px 0px 3px #c3bfbf;}
+.fname, .lname, .email, .pass, .uname, .oname, .sname{border:1px solid #c3bfbf; box-shadow:inset 0px 0px 3px #c3bfbf;}
+.green{border:1px solid #12a35f; background: #21c87a; /* Old browsers */
+/* IE9 SVG, needs conditional override of 'filter' to 'none' */
+background: url(data:image/svg+xml;base64,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);
+background: -moz-linear-gradient(top,  #21c87a 0%, #1ab26b 100%); /* FF3.6+ */
+background: -webkit-gradient(linear, left top, left bottom, color-stop(0%,#21c87a), color-stop(100%,#1ab26b)); /* Chrome,Safari4+ */
+background: -webkit-linear-gradient(top,  #21c87a 0%,#1ab26b 100%); /* Chrome10+,Safari5.1+ */
+background: -o-linear-gradient(top,  #21c87a 0%,#1ab26b 100%); /* Opera 11.10+ */
+background: -ms-linear-gradient(top,  #21c87a 0%,#1ab26b 100%); /* IE10+ */
+background: linear-gradient(to bottom,  #21c87a 0%,#1ab26b 100%); /* W3C */
+filter: progid:DXImageTransform.Microsoft.gradient( startColorstr='#21c87a', endColorstr='#1ab26b',GradientType=0 ); /* IE6-8 */}
+.contact-button.green{display:inline-block; width:130px; height:35px; border-radius:3px; position:relative; box-shadow: 1px 2px 2px rgba(43, 43, 43, 0.4);}
+.contact-button input[type="submit"]{position:absolute; width:130px; height:35px; z-index:2; text-align:left; background:none; border:none; color:#fff; text-transform:uppercase; font-size:12px; line-height:1em; letter-spacing:.04em; font-weight:bold; padding-left:15px;}
+.contact-button input[type="button"]{position:absolute; width:130px; height:35px; z-index:2; text-align:left; background:none; border:none; color:#fff; text-transform:uppercase; font-size:12px; line-height:1em; letter-spacing:.04em; font-weight:bold; padding-left:15px;}
+.contact-button span{width:20px; height:20px; position:absolute; right:6px; top:7px; border:0px solid black;}
+.sprite-green_click_icon{background: url('img/sprite-s3f8b0bb6dc.png') no-repeat; background-position: 0 -388px;}
+.sprite-pointer{background: url('img/sprite-s3f8b0bb6dc.png') no-repeat; background-position: 0 -883px;}
+
+.login{text-align:right; padding-top:24px;}
+.need-account:link, .need-account:hover, .need-account:active, .need-account:visited{color:#666;}
+.register{margin-left:5px;}
+.register:link, .register:hover, .register:active, .register:visited{color:#115b87;}
+.headline{min-height:55px; background-color:#f0f0f0; border-radius:8px; box-shadow:inset 2px 4px 5px -3px #c3bfbf;}
+.pointer-container{height:15px; position:relative;}
+.pointer{border:0px solid black; position:absolute; left:188px; top:-1px; width:28px; height:15px;}
+.headline p{padding:18px 38px; color:#525252; font-size:22px; font-weight:bold;}
+
+/*footer*/
+#footer{width:100%; margin:0; padding:23px 0 0 7px; border-top:5px solid #e3e3e3; font-size:12px;}
+
+
+@media (min-width: 1200px) {
+	.container{
+		width: 960px;
+	}
+}
+
+@media (min-width: 768px) and (max-width: 979px) {
+	.container{
+		width: 724px;
+		padding-left:15px;
+		padding-right:15px;
+	}
+}
+
+@media (max-width: 767px) {
+	.container, .inner-form-container{
+		width: auto;
+		padding-left:15px;
+		padding-right:15px;
+	}
+	.registration-form li, .signin-form li{margin-top:32px;}
+	.registration-form li.submit-container, .signin-form li.submit-container{margin-top:48px;}
+	.remember-container{padding-left:0px; padding-top:0px; min-height:30px; border:none;}
+}
+
+@media (max-width: 979px) {
+	.container{
+		width: auto;
+	}
+	
+}
+
+
+
+login-panel {
+                            border-style: solid;
+                                            border-width: 1px;
+                                                            padding: 1px;
+                                                                            background-color: #FFFFFF;
+                                                                                            border-color: #C4C0B9;
+                                                                                                        }
+
+            .login-panel-header {
+                            background-color: #D4CFC7;
+                                            background-image: url("#{oxAuthConfigurationService.getImgLocation()}/panel_header_bg.png");
+                                                            background-position: left top;
+                                                                            background-repeat: repeat-x;
+                                                                                            border-style: solid;
+                                                                                                            border-width: 1px;
+                                                                                                                            padding: 2px;
+                                                                                                                                            border-color: #D4CFC7;
+                                                                                                                                                            color: #000000;
+                                                                                                                                                                            font-family: Arial, Verdana, sans-serif;
+                                                                                                                                                                                            font-size: 11px;
+                                                                                                                                                                                                            font-weight: bold;
+                                                                                                                                                                                                                        }
+
+            .login-panel-body {
+                            padding: 10px;
+                                            color: #000000;
+                                                            font-family: Arial, Verdana, sans-serif;
+                                                                            font-size: 11px;
+                                                                                        }
+.fa-info-circle{cursor:pointer}
+.pop_tog {
+    background: #f0f0f0;
+    width: 100%;
+    display: inline-block;
+    padding: 13px;
+    box-shadow: 0px 0px 6px #999;
+    margin-top: 12px;
+	display:none;
+	float: left;
+	
+}
+.not_body li .pop_tog p {
+    color: #777;
+    margin-top: 0;
+    margin-bottom: 10px;
+    width: 100%;
+}
+.notification_popup {
+    max-width: 450px;
+    width: 100%;
+    background: #fff;
+    margin: 0 auto;
+    margin-top: 55px;
+    box-shadow: 0px 0px 8px #ccc;
+}
+.not_header {
+    background: #f5f5f5;
+	padding: 5px 15px;
+}
+.not_header a img {
+    width: 98px;
+}
+.not_body h3 {
+    text-align: center;
+    font-size: 20px;
+    margin-bottom: 14px;
+}
+.not_header .text_right {
+    text-align: right;
+    padding-top: 14px;
+    padding-right: 20px;
+}
+.btn_rw {
+    display: inline-block;
+    text-align: right;
+    width: 100%;
+    padding: 14px;
+}
+.not_body {
+    padding: 15px;
+}
+.not_body ul {
+    list-style-type: none;
+    margin-top: 25px;
+    display: inline-block;
+    width: 100%;
+	padding: 0;
+}
+
+.not_body li {
+    border-top: 1px solid #ccc;
+    display: inline-block;
+    width: 100%;
+    padding: 13px 14px;
+}
+.btn_rw a.button-primary {
+    background: #00aeef;
+    color: #fff;
+    padding: 12px 46px;
+    text-decoration: none;
+}
+.btn_rw a.button-default {
+    background: #d8d8d8;
+    color: #777;
+    padding: 12px 30px;
+}
+.border_rad {
+    border: 4px solid #f2f2f2;
+    border-radius: 50%;
+    width: 80px;
+    height: 80px;
+    margin: 0 auto;
+    padding: 7px;
+    text-align: center;
+}
+.not_body li span.user {
+    float: left;
+    margin-right: 17px;
+    font-size: 28px;
+    color: #00aeef;
+}
+
+.not_body li p {
+    float: left;
+    display: inline-block;
+    width: 81%;
+    padding-right: 0px;
+    margin-bottom: 0px;
+    margin-top: 5px;
+}
+
+.not_body li  .fa-info-circle {
+    float: right;
+    text-align: right;
+    font-size: 18px;
+    color: #888;
+	margin-top: 7px;
+}
+.notification_cls{
+	background: #e7e7e7;
+}
+
+.body{font-family: 'Open Sans', sans-serif;}
+.bs-docs-section {
+	padding: 30px 0px;
+}
+.bs-docs-section h2 {
+	text-align: center;
+	margin-bottom: 10px;
+}
+.bs-docs-section p {
+	text-align: center;
+	margin-bottom: 36px;
+}
+.qr_bx {
+	padding: 26px;
+	border: 1px solid #f4f4f4;
+	max-width: 900px;
+	margin: 0 auto;
+}
+.left_img img{width:100%}
+.button {
+	margin-bottom: 28px;
+	margin-top: 28px;
+}
+.button a.android {
+	background: #fff;
+	box-shadow: 0px 3px 6px #ccc;
+	padding: 5px 11px;
+	display: inline-block;
+	border-radius:5px;
+}
+.button a.iphone {
+	background: #000000;
+	box-shadow: 0px 3px 6px #ccc;
+	padding: 5px 11px;
+	display: inline-block;
+	border-radius:5px;
+	margin-left:5px;
+}
+.links a {
+	color: #079857;
+}
+
+.links .seprator {
+	color: #079857;
+	margin: 0 19px;
+}
+
+.links {
+	margin-top: 13px;
+}
+.col-md-6.left_img {
+	padding-right: 29px;
+}
+.paddin_bx {
+	padding: 35px 0px;
+}
+.paddin_bx h3{font-size:28px; color:#3c3c3c; font-weight:600}
+.paddin_bx p{color:#7f8c95; text-align:left; font-size:14px; line-height:24px;}
+.foot_bor p{font-size:14px;}
+.foot_bor p a{color:#0088cc}
+.padding_spc {
+	border-top: 1px solid #f3f3f3;
+	padding-top: 23px;
+	padding-bottom: 20px;
+}
+	
+#pbar_outerdiv{
+	width: 100%;
+    height: 20px;
+    border: 1px solid #ecedec;
+    z-index: 1;
+    position: relative;
+    background: #f8f9f8;
+    margin-top: 14px;
+	overflow: hidden;
+	}
+#pbar_innerdiv{
+	background-color: #e1e1e1; z-index: 2; height: 100%; 
+	}
+	
+	
+.forgot_link a{color:#777}
+
+.login_bx {
+	    padding: 8px 12px 9px 20px;
+    background: #f9f8f8;
+    border: 1px solid #e2e2e2;
+    max-width: 800px;
+    margin: 0 auto;
+	margin-top:50px;
+}	
+.login_bx .paddin_bx {
+    padding: 0;
+}
+.login_bx .paddin_bx h3{font-size:20px; text-align:center; font-weight:normal}
+.left_form_bx {
+    padding: 59px 0 35px 0;
+}
+.left_form_bx .btn-primary {
+    background: #1ab26b;
+    padding: 8px 35px;
+    border-color: #1ab26b;
+}
+.reg_link a {
+    text-align: center;
+    color: #1ab26b;
+}
+
+.reg_link {
+    text-align: center;
+    border-top: 1px solid #ccc;
+    padding-top: 15px;
+}
+.bar {
+    width: 1px;
+    background: #ccc;
+    height: 329px;
+    position: relative;
+    top: 0;
+    bottom: 0;
+    text-align: center;
+    margin: 0 auto;
+}
+
+.bar .circle {
+    background: #eee;
+    width: 35px;
+    height: 35px;
+    border-radius: 50%;
+    text-align: center;
+    padding: 6px;
+    position: absolute;
+    left: -14px;
+    top: 48%;
+}
+.button_social ul {
+    list-style-type: none;
+    padding: 0;
+    margin: 0;
+}
+
+.button_social li a {
+    display: block;
+    padding: 0px 0px;
+    color: #fff;
+}
+
+.button_social {
+    padding: 0 16px;
+}
+.button_social li{
+	margin-bottom:8px;
+}
+.button_social li a
+ i {
+    padding-right: 12px;
+    border-right: 1px solid rgba(255,255, 255, 0.3);
+    padding: 13px 15px;
+    width: 43px;
+}
+.fb{background:#43609c}
+.twt{background:#00c3f3}
+.goog{background:#e24b30}
+.link{background:#007bb7}
+
+.pin{background:#b9191c}
+.git{background:#3a586a}
+.pay{background:#2e508f}	
+.fsquare{background:#2852cd}
+.other{background:#d5d5d5}	
+
+.wk{background:#13557d}
+.yout{background:#f52d24}
+.wind{background:#0f69b0}	
+.wordp{background:#226a88}
+.insta{background:#497394}	
+
+
+.button_social ul.sm-social li {
+    display: inline-block;
+}
+.button_social p {
+    margin-bottom: 10px;
+    text-align: center;
+}
+.button_social ul.sm-social {
+    display: inline-block;
+    text-align: center;
+    width: 100%;
+}
+
+
+
+@media (max-width:480px){
+
+.not_body li {
+    padding: 13px 5px;
+}
+.not_header {
+    text-align: center;
+}
+.not_body ul {
+    list-style-type: none;
+    margin-top: 4px;
+ }
+.not_header .text_right {
+    text-align: center;
+ }
+.not_body li p {
+    width: 74%;
+    margin-top: 5px;
+}
+
+.button {
+    text-align: center;
+}
+.navbar-header a {
+    text-align: center;
+    width: 100%;
+}
+.navbar-brand>img {
+    display: block;
+    margin: 0 auto;
+}
+.padding_spc{text-align: center;}
+.links {
+    margin-top: 13px;
+    text-align: center;
+}
+.paddin_bx p{text-align: center;}
+.button a.android {margin-bottom: 16px;}
+}	
+
+@media (max-width:320px){
+.button_social li a
+ i {
+    padding-right: 12px;
+    border-right: 1px solid rgba(255,255, 255, 0.3);
+    padding: 13px 15px;
+    width: 39px;
+}
+}
+
+.login_bx_1 {
+    padding: 8px 12px 9px 20px;
+    background: #f9f8f8;
+    border: 1px solid #e2e2e2;
+    max-width: 500px;
+    margin: 0 auto;
+    margin-top: 50px;
+}
+
+.col-md-6_1 {
+    width: 100%;
+}
+
+.col-sm-5_1 {
+    width: 80%;
+}
+
+.bs-docs-section {
+    border-top: 1px solid #ccc;
+    margin-top: 47px;
+    padding-top: 52px;
+}
+.step_bx {
+    max-width: 470px;
+    margin: 0 13% auto;
+    border: 1px solid #ccc;
+    padding: 20px 31px;
+    text-align: center;
+}
+
+.step_bx p {
+    color: #929292;
+}
+
+.step_bx h2 {
+    font-size: 25px;
+    margin-bottom: 6px;
+    color:black;
+}
+
+.step_bx img {
+    margin: 14px 0;
+}
+.navbar-brand {
+    float: left;
+    height: 32px;
+    padding: 2px 15px;
+    font-size: 18px;
+    line-height: 20px;
+}
+input.btn.btn-done {
+    background: #1ab26b;
+    color: #fff;
+    width: 100%;
+    padding: 10px 10px;
+    margin-top: 12px;
+}
+
+.step_bx .form-control {
+    width: 100%;
+    height: 44px;
+    padding: 7px 10px;
+}
+
+.step_bx form {
+    padding: 0 19px;
+}
+
+.device-authz-container {
+    padding: 20px 20px 40px;
+    max-width: 500px;
+    margin: 0 auto;
+    border-radius: 10px;
+    background: white;
+    border: 1px solid #008b8b;
+}
+
+.device-authz-title {
+    font-weight: bold;
+    font-size: 18px;
+    text-align: center;
+    padding: 10px 0;
+}
+
+.device-authz-subtitle {
+    padding: 10px 0;
+}
+
+.device-authz-button {
+    margin: 30px 0 0;
+}
+
+.device-authz-init-btn {
+    margin-top: 40px;
+}
+
+.no-margin {
+    margin: 0 !important;
+}
+
+.device-authz-label {
+    margin-top: 20px;
+    text-align: center;
+}
+
+.device-authz-static-code {
+    margin-top: 10px !important;
+    text-align: center;
+    font-weight: bold;
+    font-size: 30px;
+}
+
+.device-authz-input-container {
+    margin-top: 10px !important;
+    text-align: center;
+    font-weight: bold;
+    font-size: 25px !important;
+}
+
+.device-authz-input-code {
+    text-align: center;
+    font-weight: bold !important;
+    font-size: 25px !important;
+    height: 45px !important;
+    width: 40% !important;
+}
\ No newline at end of file
diff --git a/oxAuth/Server/src/main/webapp/stylesheet/theme.css b/oxAuth/Server/src/main/webapp/stylesheet/theme.css
new file mode 100644
index 00000000..54010f92
--- /dev/null
+++ b/oxAuth/Server/src/main/webapp/stylesheet/theme.css
@@ -0,0 +1,841 @@
+html {
+    overflow-y: scroll;
+}
+
+body {
+    font-size: 12px;
+    margin: 0px;
+}
+
+a img {
+    border: none;
+}
+
+h1 {
+    font-size: 1.6em;
+    margin-top: 0;
+}
+
+input[type=submit], input[type=button] {
+    font-size: 11px;
+    margin: 5px 5px 5px 0;
+    cursor: pointer;
+}
+
+input[type=text], input[type=password], textarea {
+    font-size: 12px;
+    padding-left: 1px;
+}
+
+select {
+    font-size: 13px;
+}
+
+.tableControl, .actionButtons {
+    width: 100%;
+}
+
+.tableControl a {
+    padding-left: 10px;
+}
+
+.tableControl {
+    text-align: right;
+}
+
+.footer {
+    text-align: center;
+    font-size: 11px;
+    margin-bottom: 10px;
+}
+
+.rich-table {
+    width: 100%;
+}
+
+.body {
+    padding: 30px 30px 30px 30px;
+}
+
+.message {
+    padding: 5px;
+    list-style: none;
+    border: 0;
+    background: none;
+    padding: 0;
+    color: #000000;
+    margin: 5px 0 15px 0;
+    font-size: 12px;
+}
+
+.message li {
+    background: none no-repeat scroll left center transparent;
+    height: 24px;
+    padding-left: 32px;
+    padding-top: 10px;
+    background-position: 4px 4px;
+}
+
+.message li.infomsg {
+    background-image: url("../img/msginfo2.png");
+    background-color: #e4ffdc;
+}
+
+.message li.errormsg {
+    background-image: url("../img/msgerror2.png");
+    background-color: #ffdcdc;
+}
+
+.message li.warnmsg {
+    background-image: url("../img/msgwarn2.png");
+    background-color: #ffffdc;
+}
+
+.name {
+    /*vertical-align: top;*/
+    font-weight: bold;
+    /*min-width: 115px;*/
+    text-wrap: avoid;
+
+    /*float: left;
+    padding-top: 5px;
+    margin-top: 3px;
+    clear: left;*/
+}
+
+.nameText {
+    vertical-align: top;
+    font-weight: bold;
+    min-width: 115px;
+    float: left;
+    padding-top: 5px;
+    clear: left;
+}
+
+.striked {
+    text-decoration: line-through;
+}
+
+.value {
+
+}
+
+.hint {
+
+}
+
+.error {
+    float: left;
+    padding: 5px;
+}
+
+.errors {
+    color: #FF0000;
+    vertical-align: middle;
+}
+
+img.errors {
+    padding-right: 5px;
+}
+
+.errors input, .errors textarea, .errors select {
+    border: 1px solid red !important;
+}
+
+.required {
+    color: #FF0000;
+    padding-left: 2px;
+}
+
+.rich-stglpanel-body {
+    overflow: auto;
+}
+
+.noPadding {
+    padding: 0px;
+}
+
+/* the specificity here is necessary to override the defaults */
+/*
+.rich-panel .rich-panel-header,
+.rich-stglpanel .rich-stglpanel-header {
+	padding: 2px 3px;
+}*/
+
+.rich-panel input[type=submit], .rich-panel input[type=button],
+.rich-tabpanel input[type=submit], .rich-tabpanel input[type=button] {
+    margin-bottom: 0;
+}
+
+.tableControl input[type=submit], .tableControl input[type=button], .tableControl select {
+    margin: 5px 0 5px 5px;
+}
+
+/* I don't know why this is necessary, but the select is off by a pixel on the top and is padding too much on the left */
+.tableControl select {
+    margin-left: 2px;
+    position: relative;
+    top: 1px;
+}
+
+.actionButtons {
+    padding-left: 1px;
+}
+
+.actionButtons select {
+    margin: 5px 5px 5px 0;
+    vertical-align: bottom;
+}
+
+.rich-toolbar-item a {
+    text-decoration: none;
+}
+
+.rich-toolbar-item a:hover, .rich-ddmenu-label-select {
+    text-decoration: underline;
+}
+
+.rich-toolbar-item .rich-menu-item a:hover {
+    text-decoration: none;
+}
+
+.rich-datalist {
+    list-style: square;
+    margin: 6px 0 1px 0;
+    padding-left: 18px;
+}
+
+.rich-list-item {
+    padding-bottom: 4px;
+}
+
+div.info {
+    font-size: 1.2em;
+}
+
+ul.bullets {
+    list-style: square;
+}
+
+ul.bullets li {
+    padding-bottom: 2px;
+}
+
+td.action {
+    text-align: center;
+    width: 8em;
+    white-space: nowrap;
+}
+
+td.action a {
+    padding-left: 1px;
+    padding-right: 1px;
+}
+
+table.radio {
+    border: 0;
+}
+
+table.radio td {
+    padding: 0 2px;
+}
+
+table.radio input[type=radio] {
+    vertical-align: bottom;
+}
+
+/* -- SKINS.XCSS OVERRIDES -- */
+
+.body {
+    width: 960px;
+    margin: 0 auto;
+}
+
+#detectPokenButton {
+    position: relative;
+    bottom: 10px;
+    padding: 5px 10px !important;
+}
+
+.addPersona {
+    padding: 3px !important;
+    margin: 5px 0 !important;
+}
+
+.moveContact {
+    margin: 0px 0px 0 0 !important;
+    padding: 0px !important;
+    padding-right: 0px !important;
+    padding-left: 0px !important;
+    padding-bottom: 0px !important;
+    padding-top: 0px !important;
+}
+
+.addPersona,
+#detectPokenButton,
+#groupInventory .addGroup,
+#trustRelationships .addAttribute,
+#personInventory .addPerson,
+#attributeInventory .addAttribute, /*Attribute inventory page's Add attribute button.*/
+input[type="submit"],
+input[type="button"] {
+    margin: 5px 5px 0 0;
+    border: 1px solid #a5b6c7;
+    color: #3b3b3b !important;
+    background-color: #f1f1f6;
+    background-image: url("../img/buttons_bg.jpg");
+    background-repeat: repeat-x;
+    font-weight: normal;
+    font-size: 14px;
+    padding: 5px;
+    text-decoration: none;
+}
+
+input[type="button"],
+input[type="submit"] {
+    padding: 1px;
+}
+
+#groupInventory .value,
+#personInventory .value {
+    padding: 0;
+}
+
+#detectPokenButton:active {
+    bottom: 9px !important;
+}
+
+.addPersona:active,
+#groupInventory .addGroup:active,
+#trustRelationships .addAttribute:active,
+#personInventory .addPerson:active,
+#attributeInventory .addAttribute:active,
+input[type="button"]:active,
+input[type="submit"]:active {
+    position: relative;
+    top: 1px;
+}
+
+.rich-toolbar-item, .rich-toolbar {
+    background-color: green;
+    background-image: url("../img/menu_bg.png") !important;
+    height: 33px;
+}
+
+.dr-toolbar-int {
+    font-weight: normal;
+    font-size: 12px;
+    font-family: Verdana, Arial, sans-serif;
+}
+
+.rich-toolbar a:hover,
+.rich-toolbar a:active,
+.rich-toolbar a:focus {
+    color: white;
+}
+
+/* AUTHORIZE PAGE */
+#authorizeForm {
+    margin: 0 auto;
+    width: 400px;
+}
+
+/* LOG IN PAGE */
+
+#loginForm, #oneid_form {
+    margin: 0 auto;
+}
+
+#loginForm2 {
+    margin: 0 auto;
+    width: 500px;
+}
+
+#loginForm .dr-pnl {
+    background-color: transparent;
+    border: none;
+
+}
+
+#loginForm .dr-pnl-b {
+    background-image: url("../img/loginbox_bg.jpg") !important;
+    border: 1px solid #819ea0 !important;
+}
+
+#loginForm .dr-pnl-h {
+    background-color: transparent;
+    background-image: none;
+    border: none;
+    color: #3b3b3b;
+    font-size: 24px;
+    margin-bottom: 5px;
+}
+
+p.info {
+    font-style: italic;
+    color: #3b3b3b;
+}
+
+#loginForm p.info {
+    margin-bottom: 0;
+}
+
+#logo {
+    margin: 10px
+}
+
+/* FOOTER */
+
+.footer {
+    background-image: url("../img/footer_bg.jpg");
+    font-size: 11px;
+    margin: 0 auto 20px;
+    text-align: center;
+    width: 960px;
+    padding: 10px 0;
+    border-top: 1px solid #dbdbdb;
+}
+
+.footer p {
+    margin-top: 0 !important;
+}
+
+.footer a:link,
+.footer a:visited {
+    color: #275732;
+}
+
+/* HOMEPAGE */
+
+#home {
+    margin: 0 auto;
+    width: 960px;
+}
+
+#home .dr-pnl {
+    background-color: #F3F2F2;
+    background-image: url("../img/seam_bg.jpg");
+    border-color: #C0C0C0;
+}
+
+#home .dr-pnl-b {
+    padding: 0;
+}
+
+#home .left {
+    float: left;
+}
+
+#home .right {
+    float: right;
+    width: 300px;
+    text-align: center
+}
+
+#home .info {
+    height: 285px;
+    padding: 10px;
+}
+
+#home h1 {
+    color: #105259;
+    font-size: 24px;
+}
+
+#home .dr-pnl li {
+    font-style: italic;
+}
+
+/* ADD PERSON PAGE */
+
+#userProfile,
+#addPersonInventory {
+    background-color: #F3F2F2;
+    background-image: url("../img/seam_bg.jpg");
+    border: 1px solid #C0C0C0;
+    margin: 0 auto;
+    padding: 15px;
+    width: 265px;
+}
+
+#addPersonInventory input[type="submit"] {
+    margin: 0 auto;
+}
+
+#addPersonInventory table {
+    margin: 0 auto;
+}
+
+/* PERSONINVENTORY */
+
+#personInventory {
+    width: 960px;
+    margin: 0 auto;
+}
+
+#groupInventory .searchParameters,
+#personInventory .searchParameters {
+    padding: 3px;
+    margin-right: 10px;
+}
+
+#personInventory .dr-dscr-act,
+#personInventory .dr-dscr-inact {
+    border: none;
+}
+
+#personInventory .dr-dscr-inact {
+    color: gray;
+}
+
+#groupInventory .error,
+#personInventory .error {
+    padding: 8px 0 0 0;
+}
+
+/* ATTRIBUTE INVENTORY */
+
+#attributeInventory {
+    width: 960px;
+    margin: 0 auto;
+}
+
+#attributeInventory .rich-datalist {
+    list-style: none;
+    margin: 0 0 0 50px;
+    padding: 0;
+}
+
+#attributeInventory .rich-list-item {
+    display: inline;
+    margin-right: 10px;
+    padding: 5px;
+    background-color: #e9e9f3;
+}
+
+#attributeInventory .rich-list-item a:link,
+#attributeInventory .rich-list-item a:visited {
+    color: #3b3b3b;
+    text-decoration: none;
+    font-style: italic;
+}
+
+#attributeInventory .rich-list-item a:hover,
+#attributeInventory .rich-list-item a:focus {
+    text-decoration: underline;
+}
+
+#ContactsFormId,
+#groupInventory #groupsFormId,
+#personInventory #personsFormId,
+#trustRelationships #trustRelationsshipList,
+#attributeInventory #attributesFormId {
+    background-color: #FFFFFF;
+    border-collapse: collapse;
+    empty-cells: show;
+}
+
+#PersonaList thead,
+#ContactsFormId thead,
+#groupInventory #groupsFormId thead,
+#personInventory #personsFormId thead,
+#trustRelationships #trustRelationsshipList thead,
+#attributeInventory #attributesFormId thead {
+    border-bottom: 1px solid #C0C0C0;
+}
+
+#PersonaList thead th,
+#ContactsFormId thead th,
+#groupInventory #groupsFormId thead th,
+#personInventory #personsFormId thead th,
+#trustRelationships #trustRelationsshipList thead th,
+#attributeInventory #attributesFormId thead th {
+    color: white;
+    font-size: 12px;
+    background-image: url("../img/personinventorytable_bg.jpg");
+    background-repeat: repeat-x;
+    border-right: 1px solid #C0C0C0;
+    height: 23px;
+}
+
+#PersonaList tbody td,
+#ContactsFormId tbody td,
+#groupInventory #groupsFormId tbody td,
+#personInventory #personsFormId tbody td,
+#trustRelationships #trustRelationsshipList tbody td,
+#attributeInventory #attributesFormId tbody td {
+    border-bottom: 1px solid #C0C0C0;
+    border-right: 1px solid #C0C0C0;
+    color: #000000;
+    font-family: Arial, Verdana, sans-serif;
+    font-size: 11px;
+    padding: 4px;
+}
+
+#PersonaList tbody td {
+    border-left: 1px solid #C0C0C0;
+}
+
+#attributeForm {
+    margin: 0 auto;
+    width: 325px;
+    background-image: url("../img/seam2_bg.jpg");
+    padding: 10px;
+    border: 1px solid #C0C0C0;
+}
+
+#userProfile {
+    width: 265px;
+}
+
+#trustRelationshipForm .name,
+#attributeForm .name {
+    color: #3b3b3b;
+}
+
+/* ERROR PAGE */
+
+#errorPage ul {
+    background-color: #FDEDED;
+    border: 1px solid #DBDBDB;
+}
+
+#errorPage h1 {
+    color: #670000;
+}
+
+#errorPage p {
+    font-style: italic;
+}
+
+/* MY PROFILE PAGE */
+
+.authReqs {
+    background-color: #FFF8DC;
+    border: 1px dashed #D3D3D3;
+    padding: 10px;
+}
+
+#Personas {
+
+}
+
+#Personas thead {
+}
+
+#viewProfile .personalist {
+    width: 315px;
+}
+
+#viewProfile .headertext {
+    color: #105259;
+    font-size: 24px;
+}
+
+#viewProfile .personaColumn .addPersona {
+    margin-left: 3px;
+}
+
+#PersonaList {
+    padding: 5px 0;
+    margin-bottom: 5px;
+}
+
+#viewProfile {
+    margin: 0 auto;
+    width: 770px;
+}
+
+#viewProfile .attributeProfileColumn {
+    width: 200px;
+    position: absolute;
+}
+
+.alignTop {
+    vertical-align: top;
+    width: *;
+}
+
+.alignLeft {
+    width: *;
+}
+
+.personasList {
+    width: 150px;
+}
+
+.alignRight {
+    width: 1px;
+}
+
+.wrapperTable thead th {
+    border-bottom: 1px solid gray;
+    text-align: left;
+}
+
+#PersonaList thead th {
+    border: none;
+    padding: 5px;
+}
+
+#updateButtons {
+    text-align: right;
+    margin-top: 10px;
+}
+
+/* DEFAULT SKIN OVERRIDES */
+
+.dr-tbpnl-tb-inact {
+    background-color: transparent !important;
+    background-image: none;
+}
+
+.dr-tbpnl-tb-sel {
+    border-color: white !important;
+}
+
+.dr-tbpnl-tbtopbrdr,
+.dr-tbpnl-tbbrdr {
+    padding: 0 !important;
+}
+
+.rich-inplace-view {
+    background-color: transparent !important;
+    border-bottom: 1px dotted !important;
+    font-style: italic !important;
+}
+
+.rich-inplace-edit,
+.rich-inplace-view {
+    cursor: pointer !important;
+    padding: 2px;
+}
+
+.rich-inplace-field {
+    width: 100% !important;
+}
+
+.rich-inplace-changed {
+    cursor: pointer !important;
+    border: none !important;
+    padding: 2px;
+}
+
+.rich-inplace-input-changed-hover {
+    color: green !important;
+}
+
+.dr-tbpnl-tb-act {
+    background-image: url("../img/tab_bg.jpg") !important;
+}
+
+.dr-tbpnl-cntnt {
+    background-color: white !important;
+}
+
+.formColumn {
+    -moz-border-radius: 5px 5px 5px 5px;
+    -moz-box-shadow: 1px 2px 4px rgba(0, 0, 0, 0.3);
+    -webkit-border-radius: 5px 5px 5px 5px;
+    -webkit-box-shadow: 1px 2px 4px rgba(0, 0, 0, 0.3);
+    border-radius: 5px 5px 5px 5px;
+    box-shadow: 1px 2px 4px rgba(0, 0, 0, 0.3);
+    background-color: threedface;
+    border: 1px solid #C0C0C0;
+    padding: 15px;
+}
+
+.formColumn div.prop .value {
+    margin-top: 3px;
+}
+
+#updateButtons input[type="submit"],
+#updateButtons input[type="button"] {
+    padding: 5px 10px;
+}
+
+#trustRelationshipForm,
+#personForm {
+    width: 770px !important;
+    margin: 0 auto;
+}
+
+#personForm {
+    margin-top: 15px;
+}
+
+#trustRelationshipForm .attributeColumn,
+#personForm .attributeColumn {
+    width: 300px !important;
+}
+
+#updateOrganization {
+    background-image: url("../img/seam2_bg.jpg");
+    border: 1px solid #C0C0C0;
+    margin: 0 auto;
+    padding: 15px;
+    width: 450px;
+}
+
+#updateCacheRefresh {
+    background-image: url("/gluu/img/seam2_bg.jpg");
+    border: 1px solid #C0C0C0;
+    margin: 0 auto;
+    padding: 15px;
+    width: 430px;
+}
+
+#personImport {
+    background-image: url("../img/seam2_bg.jpg");
+    border: 1px solid #C0C0C0;
+    margin: 0 auto;
+    padding: 15px;
+    width: 430px;
+}
+
+#addGroup {
+    background-image: url("../img/seam2_bg.jpg");
+    border: 1px solid #C0C0C0;
+    margin: 0 auto;
+    padding: 15px;
+    width: 315px;
+}
+
+/* Add Group Panel Styling */
+
+#passwordPanelHeader,
+#selectMemberModelPanelHeader {
+    background-image: url("../img/personinventorytable_bg.jpg");
+    height: 20px;
+    padding: 5px 0 0 10px;
+    border: 0;
+}
+
+#selectMemberModelPanelContainer #memberFormId input[type="text"] {
+    margin-right: 5px;
+    padding: 3px;
+}
+
+.rich-mpnl-controls {
+    right: 7px !important;
+    top: 7px !important;
+}
+
+#detectPoken {
+    float: left;
+    margin: 5px 5px 0 0;
+}
+
+#ContactsFormId {
+    text-align: right;
+    margin: 15px 0 0 0;
+}
+
+#ContactsFormId input {
+    margin-right: 0 !important;
+    padding: 3px !important;
+}
+
+#ContactsFormId table {
+    text-align: left;
+}
diff --git a/oxAuth/Server/src/main/webapp/stylesheet/theme.xcss b/oxAuth/Server/src/main/webapp/stylesheet/theme.xcss
new file mode 100644
index 00000000..9579e1c7
--- /dev/null
+++ b/oxAuth/Server/src/main/webapp/stylesheet/theme.xcss
@@ -0,0 +1,83 @@
+<?xml version="1.0" encoding="UTF-8"?>
+<f:template xmlns="http://www.w3.org/1999/xhtml"
+	xmlns:f="http:/jsf.exadel.com/template"
+	xmlns:u="http:/jsf.exadel.com/template/util">
+	<u:selector name="body">
+		<u:style name="font-family" skin="generalFamilyFont"/>
+		<u:style name="color" skin="generalTextColor"/>
+	</u:selector>
+	<u:selector name="h1">
+		<u:style name="font-family" skin="generalFamilyFont"/>
+		<u:style name="color" skin="tabDisabledTextColor"/>
+	</u:selector>
+	<u:selector name="a:active, a:link, a:visited">
+		<u:style name="color" skin="generalLinkColor"/>
+	</u:selector>
+	<u:selector name="a:hover">
+		<u:style name="color" skin="hoverLinkColor"/>
+	</u:selector>
+	<u:selector name="input[type=text], input[type=password], textarea, select">
+		<u:style name="background-color" skin="controlBackgroundColor"/>
+		<u:style name="color" skin="controlTextColor"/>
+		<u:style name="background-position" value="left top"/>
+		<u:style name="background-repeat" value="repeat-x"/>
+		<u:style name="background-image">
+			<f:resource f:key="org.richfaces.renderkit.html.images.SliderFieldGradient"/>
+		</u:style>
+		<u:style name="border" value="1px solid"/>
+		<u:style name="border-color" skin="tableBorderColor" />
+	</u:selector>
+	<u:selector name="select">
+		<u:style name="background-color" value="transparent"/>
+		<u:style name="background-image">
+			<f:resource f:key="org.richfaces.renderkit.html.images.SliderFieldGradient"/>
+		</u:style>
+	</u:selector>
+	<u:selector name="option">
+		<u:style name="background-color" skin="generalBackgroundColor"/>
+	</u:selector>
+	<u:selector name="select[multiple]">
+		<u:style name="background-color" skin="controlBackgroundColor"/>
+	</u:selector>
+	<u:selector name="select[multiple] option">
+		<u:style name="background-color" value="transparent"/>
+	</u:selector>
+	<u:selector name="input[type=submit], input[type=button]">
+		<u:style name="padding" value="1px 4px"/>
+		<u:style name="background-image">
+			<f:resource f:key="org.richfaces.renderkit.html.GradientA"/>
+		</u:style>
+		<u:style name="border" value="1px solid"/>
+		<u:style name="border-color" skin="headerBackgroundColor"/>
+		<u:style name="color" skin="headerTextColor"/>
+		<u:style name="font-weight" value="bold"/>
+	</u:selector>
+	<u:selector name="input[type=submit][disabled], input[type=button][disabled]">
+		<u:style name="opacity" value="0.33"/>
+	</u:selector>
+	<!-- hack for IE to just get rid of border since it doubles the border if you use one -->
+	<u:selector name="* html input[type=submit], * html input[type=button], *+html input[type=submit], *+html input[type=button]">
+		<u:style name="border" value="0"/>
+		<u:style name="font-size" value="11px"/>
+	</u:selector>
+	<u:selector name=".rich-table-subheadercell">
+		<u:style name="background-image">
+			<f:resource f:key="org.richfaces.renderkit.images.TabGradientB"/>
+		</u:style>
+	</u:selector>
+	<u:selector name=".rich-toolbar a:link, .rich-toolbar a:visited, .rich-toolbar a:active, .rich-toolbar a:hover">
+		<u:style name="color" skin="headerTextColor"/>
+	</u:selector>
+	<u:selector name=".rich-toolbar a:hover">
+		<u:style name="color" skin="generalTextColor"/>
+	</u:selector>
+	<u:selector name=".rich-toolbar .rich-menu-item, .rich-toolbar .rich-menu-item a, .rich-toolbar .rich-menu-item a:hover, .rich-toolbar .rich-menu-item a:visited">
+		<u:style name="color" skin="generalTextColor" />
+	</u:selector>
+	<u:selector name=".rich-table-subheadercell a:hover">
+		<u:style name="color" skin="calendarHolidaysTextColor"/>
+	</u:selector>
+	<!-- Define static styles in the CDATA block below (you can also move this block to the top) -->
+	<f:verbatim><![CDATA[
+]]></f:verbatim>
+</f:template>
diff --git a/oxAuth/Server/src/main/webapp/uma2/sample/city.xhtml b/oxAuth/Server/src/main/webapp/uma2/sample/city.xhtml
new file mode 100644
index 00000000..69ce9524
--- /dev/null
+++ b/oxAuth/Server/src/main/webapp/uma2/sample/city.xhtml
@@ -0,0 +1,31 @@
+<!DOCTYPE composition PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN"
+        "http://www.w3.org/TR/xhtml1/DTD/xhtml1-transitional.dtd">
+<ui:composition xmlns="http://www.w3.org/1999/xhtml"
+                xmlns:f="http://xmlns.jcp.org/jsf/core"
+                xmlns:ui="http://xmlns.jcp.org/jsf/facelets"
+                xmlns:h="http://xmlns.jcp.org/jsf/html"
+                template="/WEB-INF/incl/layout/template.xhtml">
+
+    <f:metadata>
+        <f:viewAction action="#{gatherer.prepareForStep}"/>
+    </f:metadata>
+
+    <ui:define name="head">
+        <style type="text/css">
+        </style>
+    </ui:define>
+
+    <ui:define name="pageTitle">City</ui:define>
+
+    <ui:define name="body">
+
+        <h:form id="loginForm">
+            <h:outputLabel for="city" value="City"/><br/>
+            <h:inputText id="city" value="#{gatherer.pageClaims['city']}" autocomplete="off"/>
+
+            <div class="actionButtons">
+                <h:commandButton id="gather" value="Submit" action="#{gatherer.gather}"/>
+            </div>
+        </h:form>
+    </ui:define>
+</ui:composition>
\ No newline at end of file
diff --git a/oxAuth/Server/src/main/webapp/uma2/sample/claims_resolved.xhtml b/oxAuth/Server/src/main/webapp/uma2/sample/claims_resolved.xhtml
new file mode 100644
index 00000000..a3c5b941
--- /dev/null
+++ b/oxAuth/Server/src/main/webapp/uma2/sample/claims_resolved.xhtml
@@ -0,0 +1,28 @@
+<!DOCTYPE composition PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN"
+        "http://www.w3.org/TR/xhtml1/DTD/xhtml1-transitional.dtd">
+<ui:composition xmlns="http://www.w3.org/1999/xhtml"
+                xmlns:f="http://xmlns.jcp.org/jsf/core"
+                xmlns:ui="http://xmlns.jcp.org/jsf/facelets"
+                xmlns:h="http://xmlns.jcp.org/jsf/html"
+                template="/WEB-INF/incl/layout/template.xhtml">
+
+    <f:metadata>
+        <f:viewAction action="#{gatherer.prepareForStep}"/>
+    </f:metadata>
+
+    <ui:define name="head">
+        <style type="text/css">
+        </style>
+    </ui:define>
+
+    <ui:define name="pageTitle" style="font-weight:bold">Claims Resolved</ui:define>
+
+    <ui:define name="body">
+        <h:outputLabel for="claimsResolved" style="font-weight:bold" value="All Claims Resolved from previous RPT authorization"/><br/>
+        <h:form id="loginForm">
+            <div class="actionButtons">
+                <h:commandButton id="gather" value="Proceed" action="#{gatherer.gather}"/>
+            </div>
+        </h:form>
+    </ui:define>
+</ui:composition>
diff --git a/oxAuth/Server/src/main/webapp/uma2/sample/country.xhtml b/oxAuth/Server/src/main/webapp/uma2/sample/country.xhtml
new file mode 100644
index 00000000..56bba8a2
--- /dev/null
+++ b/oxAuth/Server/src/main/webapp/uma2/sample/country.xhtml
@@ -0,0 +1,31 @@
+<!DOCTYPE composition PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN"
+        "http://www.w3.org/TR/xhtml1/DTD/xhtml1-transitional.dtd">
+<ui:composition xmlns="http://www.w3.org/1999/xhtml"
+                xmlns:f="http://xmlns.jcp.org/jsf/core"
+                xmlns:ui="http://xmlns.jcp.org/jsf/facelets"
+                xmlns:h="http://xmlns.jcp.org/jsf/html"
+                template="/WEB-INF/incl/layout/template.xhtml">
+
+    <f:metadata>
+        <f:viewAction action="#{gatherer.prepareForStep}" onPostback="true"/>
+    </f:metadata>
+
+    <ui:define name="head">
+        <style type="text/css">
+        </style>
+    </ui:define>
+
+    <ui:define name="pageTitle">Country</ui:define>
+
+    <ui:define name="body">
+
+        <h:form id="loginForm">
+            <h:outputLabel for="country" value="Country"/><br/>
+            <h:inputText id="country" value="#{gatherer.pageClaims['country']}" autocomplete="off"/>
+
+            <div class="actionButtons">
+                <h:commandButton id="gather" value="Submit" action="#{gatherer.gather}"/>
+            </div>
+        </h:form>
+    </ui:define>
+</ui:composition>
\ No newline at end of file
diff --git a/oxAuth/Server/src/test/java/org/gluu/oxauth/BaseComponentTest.java b/oxAuth/Server/src/test/java/org/gluu/oxauth/BaseComponentTest.java
new file mode 100644
index 00000000..f40c9105
--- /dev/null
+++ b/oxAuth/Server/src/test/java/org/gluu/oxauth/BaseComponentTest.java
@@ -0,0 +1,26 @@
+/*
+ * oxAuth is available under the MIT License (2008). See http://opensource.org/licenses/MIT for full text.
+ *
+ * Copyright (c) 2014, Gluu
+ */
+
+package org.gluu.oxauth;
+
+import org.gluu.oxauth.BaseTest;
+
+/**
+ * @author Yuriy Zabrovarnyy
+ * @author Yuriy Movchan
+ * @version 0.9, 15/10/2012
+ */
+
+public abstract class BaseComponentTest extends BaseTest {
+
+	public static void sleepSeconds(int p_seconds) {
+		try {
+			Thread.sleep(p_seconds * 1000L);
+		} catch (InterruptedException e) {
+			e.printStackTrace();
+		}
+	}
+}
diff --git a/oxAuth/Server/src/test/java/org/gluu/oxauth/BaseTest.java b/oxAuth/Server/src/test/java/org/gluu/oxauth/BaseTest.java
new file mode 100644
index 00000000..617cdf23
--- /dev/null
+++ b/oxAuth/Server/src/test/java/org/gluu/oxauth/BaseTest.java
@@ -0,0 +1,56 @@
+/*
+ * oxAuth is available under the MIT License (2008). See http://opensource.org/licenses/MIT for full text.
+ *
+ * Copyright (c) 2014, Gluu
+ */
+
+package org.gluu.oxauth;
+
+import org.testng.Assert;
+
+import javax.ws.rs.core.Response;
+import java.util.List;
+import java.util.Map.Entry;
+
+/**
+ * @author Javier Rojas
+ * @author Yuriy Movchan Date: 10.10.2011
+ */
+public abstract class BaseTest extends ConfigurableTest {
+
+	public static void showTitle(String title) {
+		title = "TEST: " + title;
+
+		System.out.println("#######################################################");
+		System.out.println(title);
+		System.out.println("#######################################################");
+	}
+
+	public void showResponse(String title, Response response) {
+		showResponse(title, response, null);
+	}
+
+	public static void showResponse(String title, Response response, Object entity) {
+		System.out.println(" ");
+		System.out.println("RESPONSE FOR: " + title);
+		System.out.println(response.getStatus());
+		for (Entry<String, List<Object>> headers : response.getHeaders().entrySet()) {
+			String headerName = headers.getKey();
+			System.out.println(headerName + ": " + headers.getValue());
+		}
+
+		if (entity != null) {
+			System.out.println(entity.toString().replace("\\n", "\n"));
+		}
+		System.out.println(" ");
+		System.out.println("Status message: " + response.getStatus());
+	}
+
+	public static void fails(Throwable e) {
+		Assert.fail(e.getMessage(), e);
+	}
+
+	public static void output(String p_msg) {
+		System.out.println(p_msg);
+	}
+}
\ No newline at end of file
diff --git a/oxAuth/Server/src/test/java/org/gluu/oxauth/ConfigurableTest.java b/oxAuth/Server/src/test/java/org/gluu/oxauth/ConfigurableTest.java
new file mode 100644
index 00000000..47f1afb3
--- /dev/null
+++ b/oxAuth/Server/src/test/java/org/gluu/oxauth/ConfigurableTest.java
@@ -0,0 +1,146 @@
+/*
+ * oxAuth is available under the MIT License (2008). See http://opensource.org/licenses/MIT for full text.
+ *
+ * Copyright (c) 2014, Gluu
+ */
+
+package org.gluu.oxauth;
+
+import java.io.FileInputStream;
+import java.io.FileNotFoundException;
+import java.io.IOException;
+import java.util.HashMap;
+import java.util.Map;
+import java.util.Map.Entry;
+import java.util.Properties;
+
+import org.apache.commons.io.IOUtils;
+import org.eu.ingwar.tools.arquillian.extension.suite.annotations.ArquillianSuiteDeployment;
+import org.gluu.oxauth.util.Deployments;
+import org.gluu.util.StringHelper;
+import org.gluu.util.properties.FileConfiguration;
+import org.jboss.arquillian.container.test.api.Deployment;
+import org.jboss.arquillian.container.test.api.OverProtocol;
+import org.jboss.arquillian.testng.Arquillian;
+import org.jboss.shrinkwrap.api.Archive;
+import org.testng.ITestContext;
+import org.testng.Reporter;
+import org.testng.annotations.BeforeSuite;
+
+/**
+ * Base class for all seam test which require external configuration
+ *
+ * @author Yuriy Movchan
+ * @author Sergey Manoylo
+ * @version December 29, 2021
+ */
+@ArquillianSuiteDeployment
+public abstract class ConfigurableTest extends Arquillian {
+
+	public static FileConfiguration testData;
+
+	@Deployment
+	@OverProtocol("Servlet 3.0")
+	public static Archive<?> createDeployment() {
+		return Deployments.createDeployment();
+	}
+
+	@BeforeSuite
+	public void initTestSuite(ITestContext context) throws FileNotFoundException, IOException {
+        Reporter.log("Invoked init test suite method", true);
+
+        String propertiesFile = context.getCurrentXmlTest().getParameter("propertiesFile");
+		if (StringHelper.isEmpty(propertiesFile)) {
+			propertiesFile = "target/test-classes/testng.properties";
+		}
+
+		// Load test parameters
+		FileInputStream conf = new FileInputStream(propertiesFile);
+        Properties prop;
+        try {
+			prop = new Properties();
+			prop.load(conf);
+		} finally {
+			IOUtils.closeQuietly(conf);
+		}
+
+		Map<String, String> parameters = new HashMap<String, String>();
+		for (Entry<Object, Object> entry : prop.entrySet()) {
+			Object key = entry.getKey();
+			Object value = entry.getValue();
+
+			if (StringHelper.isEmptyString(key) || StringHelper.isEmptyString(value)) {
+				continue;
+			}
+			parameters.put(key.toString(), value.toString());
+		}
+
+		// Override test parameters
+		context.getSuite().getXmlSuite().setParameters(parameters);
+	}
+
+    /**
+     * Data Provider, that returns correct arrays, which should be used, when JEE testing platform Arquillian is used.
+     * 
+     * @author Sergey Manoylo
+     * @version December 29, 2021
+     */
+    public static class ArquillianDataProvider {
+
+        private static final Map<String, Integer> calls = new HashMap<String, Integer>();   // contains map: data provider - number of call (counter value) of the function 'provide'
+
+        /**
+         * Constructor.
+         * 
+         * Private, so only public static functions should be called.
+         * 
+         */
+        private ArquillianDataProvider() {
+        }
+
+        /**
+         * Returns Array of Data, that should be used by testing framework TestNG.
+         * 
+         * This function returns two-dimensional array, when this function
+         * is called 1-st time for some defined provider name.
+         * 
+         * This function returns row of the two-dimensional array, when this function
+         * is called 2-nd - N-st time.
+         * Number of the row of the two-dimensional array, == (number of call - 1).
+         * 
+         * @param providerName Provider Name.
+         * @param providerData Data of the provider (two-dimensional array).
+         * @return current array (two-dimensional array or row).
+         */
+        public synchronized static Object[][] provide(final String providerName, final Object[][] providerData) {
+            if (calls.containsKey(providerName)) {
+                // get instance and increase calls counter
+                Object[][] testCase = new Object[][] { providerData[calls.get(providerName)] };
+                calls.put(providerName, (calls.get(providerName) + 1) % providerData.length);
+                return testCase;
+            }
+            else {
+                calls.put(providerName, 0);
+                return providerData;
+            }
+        }
+
+        /**
+         * Clears counter of calls for all providers.
+         * 
+         */
+        public synchronized static void initCalls() {
+            calls.clear();
+        }
+
+        /**
+         * Clears counter of calls for some provider.
+         * 
+         * @param providerName Provider Name.
+         */
+        public synchronized static void initCalls(final String providerName) {
+            calls.put(providerName, 0);
+        }
+
+    }
+}
diff --git a/oxAuth/Server/src/test/java/org/gluu/oxauth/OxAuthUnitTestsListener.java b/oxAuth/Server/src/test/java/org/gluu/oxauth/OxAuthUnitTestsListener.java
new file mode 100644
index 00000000..dc77079c
--- /dev/null
+++ b/oxAuth/Server/src/test/java/org/gluu/oxauth/OxAuthUnitTestsListener.java
@@ -0,0 +1,78 @@
+/*
+ * oxAuth is available under the MIT License (2008). See http://opensource.org/licenses/MIT for full text.
+ *
+ * Copyright (c) 2022, Gluu
+ */
+package org.gluu.oxauth;
+
+import org.testng.ITestContext;
+import org.testng.ITestListener;
+import org.testng.ITestResult;
+import org.testng.Reporter;
+
+import com.google.common.base.Throwables;
+
+/**
+ * @author Sergey Manoylo
+ * @version January 5, 2022
+ */
+public class OxAuthUnitTestsListener implements ITestListener {
+
+    @Override
+    public void onTestStart(ITestResult result) {
+        Reporter.log("Test STARTED: " + getTestInfo(result), true);		
+    }
+
+    @Override
+    public void onTestSuccess(ITestResult result) {
+        Reporter.log("Test SUCCESS: " + getTestInfo(result), true);
+        Reporter.log("", true);	
+    }
+
+    @Override
+    public void onTestFailure(ITestResult result) {
+        Reporter.log("Test FAILED: " + getTestInfo(result), true);
+        testFailed(result);
+    }
+
+    @Override
+    public void onTestSkipped(ITestResult result) {
+        Reporter.log("Test SKIPPED: " + getTestInfo(result), true);
+        Reporter.log("", true);	
+    }
+
+    @Override
+    public void onTestFailedButWithinSuccessPercentage(ITestResult result) {
+        Reporter.log("Test FAILED with Success Percentage: " + getTestInfo(result), true);
+        testFailed(result);	
+    }
+
+    @Override
+    public void onStart(ITestContext context) {
+    }
+
+    @Override
+    public void onFinish(ITestContext context) {
+    }
+
+    private void testFailed(ITestResult result) {
+        Object[] parameters = result.getParameters();
+        if(parameters != null) {
+            Reporter.log("Test Parameters: ", true);
+            for(Object parameter : parameters) {
+                Reporter.log("parameter = " + parameter, true);
+            }
+        }
+        Throwable throwable = result.getThrowable();
+        if(throwable != null) {
+            Reporter.log("", true);
+            Reporter.log("Exception: ", true);
+            Reporter.log(Throwables.getStackTraceAsString(result.getThrowable()), true);
+            Reporter.log("", true);
+        }
+    }
+
+    private String getTestInfo(ITestResult result) {
+        return result.getInstanceName() + "." + result.getName();
+    }
+}
diff --git a/oxAuth/Server/src/test/java/org/gluu/oxauth/authorize/ws/rs/AuthorizeRestWebServiceValidatorTest.java b/oxAuth/Server/src/test/java/org/gluu/oxauth/authorize/ws/rs/AuthorizeRestWebServiceValidatorTest.java
new file mode 100644
index 00000000..a09902c2
--- /dev/null
+++ b/oxAuth/Server/src/test/java/org/gluu/oxauth/authorize/ws/rs/AuthorizeRestWebServiceValidatorTest.java
@@ -0,0 +1,121 @@
+package org.gluu.oxauth.authorize.ws.rs;
+
+import org.gluu.oxauth.model.configuration.AppConfiguration;
+import org.gluu.oxauth.model.error.ErrorResponseFactory;
+import org.gluu.oxauth.model.registration.Client;
+import org.gluu.oxauth.model.session.SessionId;
+import org.gluu.oxauth.security.Identity;
+import org.gluu.oxauth.service.ClientService;
+import org.gluu.oxauth.service.DeviceAuthorizationService;
+import org.gluu.oxauth.service.RedirectionUriService;
+import org.gluu.oxauth.service.SessionIdService;
+import org.mockito.InjectMocks;
+import org.mockito.Mock;
+import org.mockito.testng.MockitoTestNGListener;
+import org.slf4j.Logger;
+import org.testng.annotations.Listeners;
+import org.testng.annotations.Test;
+
+import javax.ws.rs.WebApplicationException;
+
+import static org.mockito.Mockito.when;
+import static org.testng.Assert.assertFalse;
+import static org.testng.Assert.assertTrue;
+
+/**
+ * @author Yuriy Z
+ */
+@Listeners(MockitoTestNGListener.class)
+public class AuthorizeRestWebServiceValidatorTest {
+
+    @InjectMocks
+    private AuthorizeRestWebServiceValidator authorizeRestWebServiceValidator;
+
+    @Mock
+    private Logger log;
+
+    @Mock
+    private ErrorResponseFactory errorResponseFactory;
+
+    @Mock
+    private ClientService clientService;
+
+    @Mock
+    private RedirectionUriService redirectionUriService;
+
+    @Mock
+    private DeviceAuthorizationService deviceAuthorizationService;
+
+    @Mock
+    private AppConfiguration appConfiguration;
+
+    @Mock
+    private SessionIdService sessionIdService;
+
+    @Mock
+    private Identity identity;
+
+    @Test
+    public void validateRequestParameterSupported_whenRequestIsEmpty_shouldPass() {
+        authorizeRestWebServiceValidator.validateRequestParameterSupported(null, "state");
+        authorizeRestWebServiceValidator.validateRequestParameterSupported("", "state");
+    }
+
+    @Test
+    public void validateRequestParameterSupported_whenRequestSupportIsSwitchedOn_shouldPass() {
+        when(appConfiguration.getRequestParameterSupported()).thenReturn(true);
+
+        authorizeRestWebServiceValidator.validateRequestParameterSupported("{\"redirect_uri\":\"https://rp.example.com\"}", "state");
+        authorizeRestWebServiceValidator.validateRequestParameterSupported(null, "state");
+        authorizeRestWebServiceValidator.validateRequestParameterSupported("", "state");
+    }
+
+    @Test(expectedExceptions = WebApplicationException.class)
+    public void validateRequestParameterSupported_whenRequestSupportIsSwitchedOff_shouldThrowException() {
+        when(appConfiguration.getRequestParameterSupported()).thenReturn(false);
+
+        authorizeRestWebServiceValidator.validateRequestParameterSupported("{\"redirect_uri\":\"https://rp.example.com\"}", "state");
+    }
+
+    @Test
+    public void validateRequestUriParameterSupported_whenRequestUriIsEmpty_shouldPass() {
+        authorizeRestWebServiceValidator.validateRequestUriParameterSupported(null, "state");
+        authorizeRestWebServiceValidator.validateRequestUriParameterSupported("", "state");
+    }
+
+    @Test
+    public void validateRequestUriParameterSupported_whenRequestUriSupportIsSwitchedOn_shouldPass() {
+        when(appConfiguration.getRequestUriParameterSupported()).thenReturn(true);
+
+        authorizeRestWebServiceValidator.validateRequestUriParameterSupported("https://rp.example.com", "state");
+    }
+
+    @Test(expectedExceptions = WebApplicationException.class)
+    public void validateRequestUriParameterSupported_whenRequestSupportIsSwitchedOff_shouldThrowException() {
+        when(appConfiguration.getRequestUriParameterSupported()).thenReturn(false);
+
+        authorizeRestWebServiceValidator.validateRequestUriParameterSupported("https://rp.example.com", "state");
+    }
+
+    @Test
+    public void isAuthnMaxAgeValid_whenMaxAgeIsZero_shouldReturnTrue() {
+        assertTrue(authorizeRestWebServiceValidator.isAuthnMaxAgeValid(0, new SessionId(), new Client()));
+    }
+
+    @Test
+    public void isAuthnMaxAgeValid_whenMaxAgeIsZeroAndDisableAuthnForMaxAgeZeroIsFalse_shouldReturnTrue() {
+        when(appConfiguration.getDisableAuthnForMaxAgeZero()).thenReturn(false);
+        assertTrue(authorizeRestWebServiceValidator.isAuthnMaxAgeValid(0, new SessionId(), new Client()));
+    }
+
+    @Test
+    public void isAuthnMaxAgeValid_whenMaxAgeIsZeroAndDisableAuthnForMaxAgeZeroIsTrue_shouldReturnFalse() {
+        when(appConfiguration.getDisableAuthnForMaxAgeZero()).thenReturn(true);
+        assertFalse(authorizeRestWebServiceValidator.isAuthnMaxAgeValid(0, new SessionId(), new Client()));
+    }
+
+    @Test
+    public void isAuthnMaxAgeValid_whenMaxAgeIsNull_shouldReturnTrue() {
+        assertTrue(authorizeRestWebServiceValidator.isAuthnMaxAgeValid(0, new SessionId(), new Client()));
+    }
+}
diff --git a/oxAuth/Server/src/test/java/org/gluu/oxauth/comp/CleanUpClientTest.java b/oxAuth/Server/src/test/java/org/gluu/oxauth/comp/CleanUpClientTest.java
new file mode 100644
index 00000000..02696b5e
--- /dev/null
+++ b/oxAuth/Server/src/test/java/org/gluu/oxauth/comp/CleanUpClientTest.java
@@ -0,0 +1,70 @@
+/*
+ * oxAuth is available under the MIT License (2008). See http://opensource.org/licenses/MIT for full text.
+ *
+ * Copyright (c) 2014, Gluu
+ */
+
+package org.gluu.oxauth.comp;
+
+import java.util.Arrays;
+import java.util.List;
+
+import javax.inject.Inject;
+
+import org.gluu.oxauth.BaseComponentTest;
+import org.gluu.oxauth.model.registration.Client;
+import org.gluu.oxauth.service.ClientService;
+import org.gluu.persist.exception.EntryPersistenceException;
+import org.gluu.util.StringHelper;
+import org.testng.Assert;
+import org.testng.annotations.Parameters;
+import org.testng.annotations.Test;
+
+/**
+ * @author Yuriy Movchan
+ * @version 0.1, 03/24/2014
+ */
+
+public class CleanUpClientTest extends BaseComponentTest {
+
+	@Inject
+	private ClientService clientService;
+
+	@Test
+	@Parameters(value = "usedClients")
+	public void cleanUpClient(String usedClients) {
+		Assert.assertNotNull(usedClients);
+		List<String> usedClientsList = Arrays.asList(StringHelper.split(usedClients, ",", true, false));
+		output("Used clients: " + usedClientsList);
+
+		int clientsResultSetSize = 50;
+
+		int countResults = 0;
+		int countRemoved = 0;
+		boolean existsMoreClients = true;
+		while (existsMoreClients && countResults < 10000) {
+			List<Client> clients = clientService.getAllClients(new String[] { "inum" }, clientsResultSetSize);
+
+			existsMoreClients = clients.size() == clientsResultSetSize;
+			countResults += clients.size();
+
+			Assert.assertNotNull(clients);
+			output("Found clients: " + clients.size());
+			output("Total clients: " + countResults);
+
+			for (Client client : clients) {
+				String clientId = client.getClientId();
+				if (!usedClientsList.contains(clientId)) {
+					try {
+						clientService.remove(client);
+					} catch (EntryPersistenceException ex) {
+						output("Failed to remove client: " + ex.getMessage());
+					}
+					countRemoved++;
+				}
+			}
+		}
+
+		output("Removed clients: " + countRemoved);
+	}
+}
diff --git a/oxAuth/Server/src/test/java/org/gluu/oxauth/comp/CleanerTimerTest.java b/oxAuth/Server/src/test/java/org/gluu/oxauth/comp/CleanerTimerTest.java
new file mode 100644
index 00000000..63743188
--- /dev/null
+++ b/oxAuth/Server/src/test/java/org/gluu/oxauth/comp/CleanerTimerTest.java
@@ -0,0 +1,444 @@
+package org.gluu.oxauth.comp;
+
+import org.gluu.oxauth.BaseComponentTest;
+import org.gluu.oxauth.model.common.*;
+import org.gluu.oxauth.model.fido.u2f.DeviceRegistration;
+import org.gluu.oxauth.model.fido.u2f.DeviceRegistrationStatus;
+import org.gluu.oxauth.model.fido.u2f.RequestMessageLdap;
+import org.gluu.oxauth.model.ldap.TokenLdap;
+import org.gluu.oxauth.model.registration.Client;
+import org.gluu.oxauth.model.token.HandleTokenFactory;
+import org.gluu.oxauth.model.uma.persistence.UmaPermission;
+import org.gluu.oxauth.model.uma.persistence.UmaResource;
+import org.gluu.oxauth.service.CleanerTimer;
+import org.gluu.oxauth.service.ClientService;
+import org.gluu.oxauth.service.GrantService;
+import org.gluu.oxauth.service.common.InumService;
+import org.gluu.oxauth.service.fido.u2f.DeviceRegistrationService;
+import org.gluu.oxauth.service.fido.u2f.RegistrationService;
+import org.gluu.oxauth.uma.authorization.UmaPCT;
+import org.gluu.oxauth.uma.authorization.UmaRPT;
+import org.gluu.oxauth.uma.service.UmaPctService;
+import org.gluu.oxauth.uma.service.UmaPermissionService;
+import org.gluu.oxauth.uma.service.UmaResourceService;
+import org.gluu.oxauth.uma.service.UmaRptService;
+import org.gluu.persist.exception.EntryPersistenceException;
+import org.gluu.service.CacheService;
+import org.gluu.util.security.StringEncrypter;
+import org.testng.annotations.Test;
+import org.testng.collections.Lists;
+import org.gluu.oxauth.model.config.StaticConfiguration;
+
+import javax.inject.Inject;
+import javax.ws.rs.WebApplicationException;
+import java.util.*;
+
+import static org.junit.Assert.assertNotNull;
+import static org.testng.Assert.*;
+
+/**
+ * @author Yuriy Zabrovarnyy
+ */
+public class CleanerTimerTest extends BaseComponentTest {
+
+    @Inject
+    private StaticConfiguration staticConfiguration;
+    @Inject
+    private ClientService clientService;
+    @Inject
+    private InumService inumService;
+    @Inject
+    private CleanerTimer cleanerTimer;
+    @Inject
+    private CacheService cacheService;
+    @Inject
+    private UmaRptService umaRptService;
+    @Inject
+    private UmaResourceService umaResourceService;
+    @Inject
+    private UmaPermissionService umaPermissionService;
+    @Inject
+    private UmaPctService umaPctService;
+    @Inject
+    private AuthorizationGrantList authorizationGrantList;
+    @Inject
+    private GrantService grantService;
+    @Inject
+    private RegistrationService u2fRegistrationService;
+    @Inject
+    private DeviceRegistrationService deviceRegistrationService;
+
+    @Test(enabled = false) // disabled temporarily. It works perfectly locally but fails on jenkins. Reason is unclear.
+    public void client_whichIsExpiredAndDeletable_MustBeRemoved() throws StringEncrypter.EncryptionException {
+        // 1. create client
+        final Client client = createClient(true);
+
+        final Calendar calendar = new GregorianCalendar(TimeZone.getTimeZone("UTC"));
+        client.setClientIdIssuedAt(calendar.getTime());
+
+        calendar.add(Calendar.MONTH, -1);
+        client.setExpirationDate(calendar.getTime());
+
+        clientService.persist(client);
+
+        // 2. client is in persistence
+        assertNotNull(clientService.getClient(client.getClientId()));
+
+        // 3. clean up
+        cleanerTimer.processImpl();
+        cacheService.clear();
+
+        // 4. no client in persistence
+        assertNull(clientService.getClient(client.getClientId()));
+    }
+
+    @Test
+    public void client_whichIsExpiredAndNotDeletable_MustNotBeRemoved() throws StringEncrypter.EncryptionException {
+        // 1. create client
+        final Client client = createClient(false);
+
+        try {
+            final Calendar calendar = new GregorianCalendar(TimeZone.getTimeZone("UTC"));
+            client.setClientIdIssuedAt(calendar.getTime());
+
+            calendar.add(Calendar.HOUR, -1);
+            client.setExpirationDate(calendar.getTime());
+
+            clientService.persist(client);
+
+            // 2. client is in persistence
+            assertNotNull(clientService.getClient(client.getClientId()));
+
+            // 3. clean up
+            cleanerTimer.processImpl();
+            cacheService.clear();
+
+            // 4. client is in persistence (not removed)
+            assertNotNull(clientService.getClient(client.getClientId()));
+        } finally {
+            client.setDeletable(true); // make it available for cleaner
+            clientService.merge(client);
+
+        }
+    }
+
+    @Test
+    public void client_whichIsNotExpiredAndDeletable_MustNotBeRemoved() throws StringEncrypter.EncryptionException {
+
+        // 1. create client
+        final Client client = createClient(true);
+
+        clientService.persist(client);
+
+        // 2. client is in persistence
+        assertNotNull(clientService.getClient(client.getClientId()));
+
+        // 3. clean up
+        cleanerTimer.processImpl();
+        cacheService.clear();
+
+        // 4. client is in persistence (not removed)
+        assertNotNull(clientService.getClient(client.getClientId()));
+    }
+
+    @Test
+    public void u2fDevice_whichIsExpiredAndDeletable_MustBeRemoved() throws StringEncrypter.EncryptionException {
+        final Client client = createClient();
+        clientService.persist(client);
+
+        // 1. create device
+        String userInum = "";
+        String appId = "https://testapp.com";
+        final DeviceRegistration device = new DeviceRegistration();
+        device.setStatus(DeviceRegistrationStatus.ACTIVE);
+        device.setApplication(appId);
+        device.setId(String.valueOf(System.currentTimeMillis()));
+        device.setDn(deviceRegistrationService.getDnForU2fDevice(userInum, device.getId()));
+
+        deviceRegistrationService.addOneStepDeviceRegistration(device);
+
+        // 2. device exists
+        assertNotNull(deviceRegistrationService.findUserDeviceRegistration(userInum, device.getId()));
+
+        // 3. clean up
+        cleanerTimer.processImpl();
+        cacheService.clear();
+
+        // 4. device exists
+        assertNotNull(deviceRegistrationService.findUserDeviceRegistration(userInum, device.getId()));
+
+        final Calendar calendar = Calendar.getInstance();
+        calendar.add(Calendar.MINUTE, -10);
+        device.setExpirationDate(calendar.getTime());
+
+        deviceRegistrationService.merge(device);
+
+        // 5. clean up
+        cleanerTimer.processImpl();
+        cacheService.clear();
+
+        // 6. no device in persistence
+        try {
+            deviceRegistrationService.findUserDeviceRegistration(userInum, device.getId());
+            throw new AssertionError("No exception, expected EntryPersistenceException on find.");
+        } catch (EntryPersistenceException e) {
+            // ignore
+        }
+    }
+
+    @Test
+    public void u2fRequest_whichIsExpiredAndDeletable_MustBeRemoved() throws StringEncrypter.EncryptionException {
+        final Client client = createClient();
+        clientService.persist(client);
+
+        // 1. create token
+        String userInum = "";
+        String appId = "https://testapp.com";
+        final RequestMessageLdap request = u2fRegistrationService.storeRegisterRequestMessage(u2fRegistrationService.builRegisterRequestMessage(appId, userInum), userInum, userInum);
+
+        // 2. request exists
+        assertNotNull(u2fRegistrationService.getRegisterRequestMessage(request.getId()));
+
+        // 3. clean up
+        cleanerTimer.processImpl();
+        cacheService.clear();
+
+        // 4. request exists
+        assertNotNull(u2fRegistrationService.getRegisterRequestMessage(request.getId()));
+
+        final Calendar calendar = Calendar.getInstance();
+        calendar.add(Calendar.MINUTE, -10);
+        request.setExpirationDate(calendar.getTime());
+
+        u2fRegistrationService.merge(request);
+
+        // 5. clean up
+        cleanerTimer.processImpl();
+        cacheService.clear();
+
+        // 6. no request in persistence
+        try {
+            u2fRegistrationService.getRegisterRequestMessage(request.getId());
+            throw new AssertionError("No exception, expected EntryPersistenceException on find request.");
+        } catch (EntryPersistenceException e) {
+            // ignore
+        }
+    }
+
+    @Test
+    public void token_whichIsExpiredAndDeletable_MustBeRemoved() throws StringEncrypter.EncryptionException {
+        final Client client = createClient();
+        clientService.persist(client);
+
+        // 1. create token
+        final ClientCredentialsGrant grant = authorizationGrantList.createClientCredentialsGrant(new User(), client);
+        final AccessToken accessToken = grant.createAccessToken(null, new ExecutionContext(null, null));
+
+        // 2. token exists
+        assertNotNull(grantService.getGrantByCode(accessToken.getCode()));
+
+        // 3. clean up
+        cleanerTimer.processImpl();
+        cacheService.clear();
+
+        // 4. token exists
+        final TokenLdap grantLdap = grantService.getGrantByCode(accessToken.getCode());
+        assertNotNull(grantLdap);
+
+        final Calendar calendar = Calendar.getInstance();
+        calendar.add(Calendar.MINUTE, -10);
+        grantLdap.setExpirationDate(calendar.getTime());
+
+        grantService.merge(grantLdap);
+
+        // 5. clean up
+        cleanerTimer.processImpl();
+        cacheService.clear();
+
+        // 6. no token in persistence
+        assertNull(grantService.getGrantByCode(accessToken.getCode()));
+    }
+
+    @Test
+    public void umaRpt_whichIsExpiredAndDeletable_MustBeRemoved() throws StringEncrypter.EncryptionException {
+        final Client client = createClient();
+
+        clientService.persist(client);
+
+        // 1. create RPT
+        final ExecutionContext executionContext = new ExecutionContext(null, null);
+        executionContext.setClient(client);
+
+        final UmaRPT rpt = umaRptService.createRPTAndPersist(executionContext, Lists.newArrayList());
+
+        // 2. RPT exists
+        assertNotNull(umaRptService.getRPTByCode(rpt.getNotHashedCode()));
+
+        // 3. clean up
+        cleanerTimer.processImpl();
+        cacheService.clear();
+
+        // 4. RPT exists
+        assertNotNull(umaRptService.getRPTByCode(rpt.getNotHashedCode()));
+
+        final Calendar calendar = new GregorianCalendar(TimeZone.getTimeZone("UTC"));
+        calendar.add(Calendar.MINUTE, -10);
+        rpt.setExpirationDate(calendar.getTime());
+
+        umaRptService.merge(rpt);
+
+        // 5. clean up
+        cleanerTimer.processImpl();
+        cacheService.clear();
+
+        // 6. no RPT in persistence
+        assertNull(umaRptService.getRPTByCode(rpt.getNotHashedCode()));
+    }
+
+    @Test
+    public void umaResource_whichIsExpiredAndDeletable_MustBeRemoved() throws StringEncrypter.EncryptionException {
+        final Client client = createClient();
+
+        clientService.persist(client);
+
+        // 1. create resource
+        UmaResource resource = new UmaResource();
+        resource.setName("Test resource");
+        resource.setScopes(Lists.newArrayList("view"));
+        resource.setId(UUID.randomUUID().toString());
+        resource.setDn(umaResourceService.getDnForResource(resource.getId()));
+
+        final Calendar calendar = Calendar.getInstance();
+        resource.setCreationDate(calendar.getTime());
+
+        umaResourceService.addResource(resource);
+
+        // 2. resource exists
+        assertNotNull(umaResourceService.getResourceById(resource.getId()));
+
+        // 3. clean up
+        cleanerTimer.processImpl();
+        cacheService.clear();
+
+        // 4. resource exists
+        assertNotNull(umaResourceService.getResourceById(resource.getId()));
+
+        calendar.add(Calendar.MINUTE, -10);
+        resource.setExpirationDate(calendar.getTime());
+
+        umaResourceService.updateResource(resource, true);
+
+        // 5. clean up
+        cleanerTimer.processImpl();
+        cacheService.clear();
+
+        // 6. no resource in persistence
+        try {
+            umaResourceService.getResourceById(resource.getId());
+            throw new AssertionError("Test failed, no 404 exception");
+        } catch (WebApplicationException e) {
+            // we expect WebApplicationException 404 here
+            assertEquals(404, e.getResponse().getStatus());
+        }
+    }
+
+    @Test
+    public void umaPermission_whichIsExpiredAndDeletable_MustBeRemoved() throws StringEncrypter.EncryptionException {
+        final Client client = createClient();
+
+        clientService.persist(client);
+
+        final String ticket = UUID.randomUUID().toString();
+
+        // 1. create permission
+        UmaPermission permission = new UmaPermission();
+        permission.setTicket(ticket);
+        permission.setConfigurationCode(UUID.randomUUID().toString());
+        permission.setResourceId(UUID.randomUUID().toString());
+
+        umaPermissionService.addPermission(permission, client.getDn());
+
+        // 2. permission exists
+        assertNotNull(umaPermissionService.getPermissionsByTicket(ticket).get(0));
+
+        // 3. clean up
+        cleanerTimer.processImpl();
+        cacheService.clear();
+
+        // 4. permission exists
+        assertNotNull(umaPermissionService.getPermissionsByTicket(ticket).get(0));
+
+        final Calendar calendar = Calendar.getInstance();
+        calendar.add(Calendar.MINUTE, -10);
+        permission.setExpirationDate(calendar.getTime());
+
+        umaPermissionService.merge(permission);
+
+        // 5. clean up
+        cleanerTimer.processImpl();
+        cacheService.clear();
+
+        // 6. no permission in persistence
+        final List<UmaPermission> permissionsByTicket = umaPermissionService.getPermissionsByTicket(ticket);
+        assertTrue(permissionsByTicket.isEmpty());
+    }
+
+    @Test
+    public void umaPct_whichIsExpiredAndDeletable_MustBeRemoved() throws StringEncrypter.EncryptionException {
+        final Client client = createClient();
+        clientService.persist(client);
+
+        // 1. create pct
+        UmaPCT pct = umaPctService.createPct(client.getClientId());
+        umaPctService.persist(pct);
+
+        // 2. pct exists
+        assertNotNull(umaPctService.getByCode(pct.getCode()));
+
+        // 3. clean up
+        cleanerTimer.processImpl();
+        cacheService.clear();
+
+        // 4. pct exists
+        assertNotNull(umaPctService.getByCode(pct.getCode()));
+
+        final Calendar calendar = Calendar.getInstance();
+        calendar.add(Calendar.MINUTE, -10);
+        pct.setExpirationDate(calendar.getTime());
+
+        umaPctService.merge(pct);
+
+        // 5. clean up
+        cleanerTimer.processImpl();
+        cacheService.clear();
+
+        // 6. no pct in persistence
+        assertNull(umaPctService.getByCode(pct.getCode()));
+    }
+
+    private Client createClient() throws StringEncrypter.EncryptionException {
+        return createClient(true);
+    }
+
+    private Client createClient(boolean deletable) throws StringEncrypter.EncryptionException {
+        String clientsBaseDN = staticConfiguration.getBaseDn().getClients();
+
+        String inum = inumService.generateClientInum();
+        String generatedClientSecret = UUID.randomUUID().toString();
+
+        final Client client = new Client();
+        client.setDn("inum=" + inum + "," + clientsBaseDN);
+        client.setClientName("Cleaner Timer Test");
+        client.setClientId(inum);
+        client.setClientSecret(clientService.encryptSecret(generatedClientSecret));
+        client.setRegistrationAccessToken(HandleTokenFactory.generateHandleToken());
+        client.setDeletable(deletable);
+
+        final Calendar calendar = new GregorianCalendar(TimeZone.getTimeZone("UTC"));
+        client.setClientIdIssuedAt(calendar.getTime());
+
+        calendar.add(Calendar.MINUTE, 10);
+        client.setExpirationDate(calendar.getTime());
+        return client;
+    }
+}
diff --git a/oxAuth/Server/src/test/java/org/gluu/oxauth/comp/ConfigurationTest.java b/oxAuth/Server/src/test/java/org/gluu/oxauth/comp/ConfigurationTest.java
new file mode 100644
index 00000000..68116e1f
--- /dev/null
+++ b/oxAuth/Server/src/test/java/org/gluu/oxauth/comp/ConfigurationTest.java
@@ -0,0 +1,95 @@
+/*
+ * oxAuth is available under the MIT License (2008). See http://opensource.org/licenses/MIT for full text.
+ *
+ * Copyright (c) 2014, Gluu
+ */
+
+package org.gluu.oxauth.comp;
+
+import java.io.File;
+import java.io.FileInputStream;
+
+import javax.inject.Inject;
+import javax.xml.bind.JAXBContext;
+import javax.xml.bind.JAXBException;
+import javax.xml.bind.Unmarshaller;
+
+import org.apache.commons.io.IOUtils;
+import org.gluu.oxauth.ConfigurableTest;
+import org.gluu.oxauth.model.config.Conf;
+import org.gluu.oxauth.model.config.ConfigurationFactory;
+import org.gluu.oxauth.model.config.StaticConfiguration;
+import org.gluu.oxauth.model.config.WebKeysConfiguration;
+import org.gluu.oxauth.model.configuration.AppConfiguration;
+import org.gluu.oxauth.model.error.ErrorMessages;
+import org.gluu.oxauth.util.ServerUtil;
+import org.gluu.persist.PersistenceEntryManager;
+import org.testng.Assert;
+import org.testng.annotations.Test;
+
+/**
+ * @author Yuriy Zabrovarnyy
+ * @version 0.9, 03/01/2013
+ */
+
+public class ConfigurationTest extends ConfigurableTest {
+
+	@Inject
+	private ConfigurationFactory configurationFactory;
+
+	@Inject
+	private PersistenceEntryManager ldapEntryManager;
+
+	/*
+	 * Configuration must be present, otherwise server will not start
+	 * normally... There is fallback configuration from file but server will not
+	 * work as expected in cluster.`
+	 */
+	@Test
+	public void configurationPresence() {
+		Assert.assertTrue((configurationFactory != null) && (configurationFactory.getBaseConfiguration() != null)
+				&& (configurationFactory.getPersistenceConfiguration().getConfiguration() != null)
+				&& (configurationFactory.getAppConfiguration() != null)
+				&& (configurationFactory.getErrorResponseFactory() != null)
+				&& (configurationFactory.getStaticConfiguration() != null)
+				&& (configurationFactory.getWebKeysConfiguration() != null));
+	}
+
+	/*
+	 * Useful test method to get create newest test configuration. It shouldn't
+	 * be used directly for testing.
+	 */
+	// @Test
+	public void createLatestTestConfInLdapFromFiles() throws Exception {
+		final String prefix = "U:\\own\\project\\oxAuth\\Server\\src\\test\\resources\\conf";
+
+		final String errorsFile = prefix + "\\oxauth-errors.json";
+		final String staticFile = prefix + "\\oxauth-static-conf.json";
+		final String webKeysFile = prefix + "\\oxauth-web-keys.json";
+		final String configFile = prefix + "\\oxauth-config.xml";
+
+		final String errorsJson = IOUtils.toString(new FileInputStream(errorsFile));
+		final String staticConfJson = IOUtils.toString(new FileInputStream(staticFile));
+		final String webKeysJson = IOUtils.toString(new FileInputStream(webKeysFile));
+		
+		final StaticConfiguration staticConf = ServerUtil.createJsonMapper().readValue(staticConfJson, StaticConfiguration.class);
+		final ErrorMessages errorConf = ServerUtil.createJsonMapper().readValue(errorsJson, ErrorMessages.class);
+		final WebKeysConfiguration webKeys = ServerUtil.createJsonMapper().readValue(webKeysJson, WebKeysConfiguration.class);
+
+		final AppConfiguration configJson = loadConfFromFile(configFile);
+
+		final Conf c = new Conf();
+		c.setDn("ou=testconfiguration,o=gluu");
+		c.setDynamic(configJson);
+		c.setErrors(errorConf);
+		c.setStatics(staticConf);
+		c.setWebKeys(webKeys);
+		ldapEntryManager.persist(c);
+	}
+
+	private static AppConfiguration loadConfFromFile(String p_filePath) throws JAXBException {
+		final JAXBContext jc = JAXBContext.newInstance(AppConfiguration.class);
+		final Unmarshaller u = jc.createUnmarshaller();
+		return (AppConfiguration) u.unmarshal(new File(p_filePath));
+	}
+}
diff --git a/oxAuth/Server/src/test/java/org/gluu/oxauth/comp/CrossEncryptionTest.java b/oxAuth/Server/src/test/java/org/gluu/oxauth/comp/CrossEncryptionTest.java
new file mode 100644
index 00000000..60c2463f
--- /dev/null
+++ b/oxAuth/Server/src/test/java/org/gluu/oxauth/comp/CrossEncryptionTest.java
@@ -0,0 +1,493 @@
+/*
+ * oxAuth is available under the MIT License (2008). See http://opensource.org/licenses/MIT for full text.
+ *
+ * Copyright (c) 2014, Gluu
+ */
+
+package org.gluu.oxauth.comp;
+
+import static org.testng.Assert.assertEquals;
+import static org.testng.Assert.assertTrue;
+import static org.testng.AssertJUnit.assertNotNull;
+
+import java.io.IOException;
+import java.security.PrivateKey;
+import java.security.Signature;
+import java.security.interfaces.RSAPrivateKey;
+import java.text.ParseException;
+import java.util.ArrayList;
+import java.util.List;
+
+import org.apache.commons.codec.Charsets;
+import org.gluu.oxauth.model.configuration.AppConfiguration;
+import org.gluu.oxauth.model.crypto.AbstractCryptoProvider;
+import org.gluu.oxauth.model.crypto.encryption.BlockEncryptionAlgorithm;
+import org.gluu.oxauth.model.crypto.encryption.KeyEncryptionAlgorithm;
+import org.gluu.oxauth.model.crypto.signature.RSAKeyFactory;
+import org.gluu.oxauth.model.crypto.signature.RSAPublicKey;
+import org.gluu.oxauth.model.crypto.signature.SignatureAlgorithm;
+import org.gluu.oxauth.model.exception.InvalidJweException;
+import org.gluu.oxauth.model.exception.InvalidJwtException;
+import org.gluu.oxauth.model.jwe.Jwe;
+import org.gluu.oxauth.model.jwe.JweDecrypterImpl;
+import org.gluu.oxauth.model.jwe.JweEncrypterImpl;
+import org.gluu.oxauth.model.jwk.Algorithm;
+import org.gluu.oxauth.model.jwk.JSONWebKey;
+import org.gluu.oxauth.model.jwk.JSONWebKeySet;
+import org.gluu.oxauth.model.jwk.Use;
+import org.gluu.oxauth.model.jws.RSASigner;
+import org.gluu.oxauth.model.jwt.Jwt;
+import org.gluu.oxauth.model.jwt.JwtType;
+import org.gluu.oxauth.model.token.JwtSigner;
+import org.gluu.oxauth.model.util.Base64Util;
+import org.gluu.util.security.SecurityProviderUtility;
+import org.jose4j.jwa.AlgorithmConstraints;
+import org.jose4j.jwa.AlgorithmConstraints.ConstraintType;
+import org.jose4j.jwe.ContentEncryptionAlgorithmIdentifiers;
+import org.jose4j.jwe.JsonWebEncryption;
+import org.jose4j.jwe.KeyManagementAlgorithmIdentifiers;
+import org.jose4j.jwk.PublicJsonWebKey;
+import org.json.JSONException;
+import org.json.JSONObject;
+import org.testng.Assert;
+import org.testng.annotations.Test;
+
+import com.fasterxml.jackson.databind.JsonNode;
+import com.fasterxml.jackson.databind.ObjectMapper;
+import com.nimbusds.jose.EncryptionMethod;
+import com.nimbusds.jose.JOSEException;
+import com.nimbusds.jose.JOSEObjectType;
+import com.nimbusds.jose.JWEAlgorithm;
+import com.nimbusds.jose.JWEDecrypter;
+import com.nimbusds.jose.JWEHeader;
+import com.nimbusds.jose.JWEObject;
+import com.nimbusds.jose.JWSAlgorithm;
+import com.nimbusds.jose.JWSHeader;
+import com.nimbusds.jose.Payload;
+import com.nimbusds.jose.crypto.RSADecrypter;
+import com.nimbusds.jose.crypto.RSAEncrypter;
+import com.nimbusds.jose.crypto.RSASSASigner;
+import com.nimbusds.jose.crypto.RSASSAVerifier;
+import com.nimbusds.jose.jwk.JWK;
+import com.nimbusds.jose.jwk.RSAKey;
+import com.nimbusds.jwt.EncryptedJWT;
+import com.nimbusds.jwt.JWTClaimsSet;
+import com.nimbusds.jwt.SignedJWT;
+
+public class CrossEncryptionTest {
+
+    static {
+        SecurityProviderUtility.installBCProvider();
+    }
+
+    //final String encryptedJweProducedByGluu = "eyJ0eXAiOiJKV1QiLCJhbGciOiJSU0EtT0FFUCIsImVuYyI6IkExMjhHQ00iLCJraWQiOiIyIn0.M9YXhzGlMBxJRFjpIZ3ybfNODALPz_08WADIpWSLHOoCBdwqPWQ3fwDf-uaiw7wyTTf9piuKVUOeYHnPE6C_EmS9gj5fmckHBCHcNxZanobT0QXZdy-64wb4GK3ar66lPPFnJMVLLCqZfUjB1gHxmAcwrVJQTUPO0ogk2nZCujp4mOuJ0QnOQmJ0R1rHTjbYmKBDySIavmkXosoJaLZI4N1CltCKj66P_XKYLfgAE0yevuwtNxkkRc2EGMyPpZ8pVjBL5TPQF3b5AyAstUvB4l6o90JZQLzvAdHJyGuCW1zwzGPBtVBVYvb2vBBAuj7EPKDU9UQDuDoklwj5Hwc6wg.qBM-41MJ46_eUv4I.mak_e28_onSOODjdH06wWuA0MfJMTGConWSekPIArQoFKAgcxVRvg-JNqjaBFaG4ck8cp0ViAke_Cbfl4AyN-gAFI2pqEMiXkoEB193SyD6Yev0P1zKTJORWS6tpznYAGYgIPh_rWyWPFSdT1WPB7Qgzarf-JNYrNe5H_P8JRrArWyCEJx4w6_WLcGnM1EQQPkThoYC4utS47W0OHf2SNr-PRUhCeoEIuoMaQUmjYq386BjCWhQEoQCZNftUjUXZBq8MepW92v1spNLCb7NTEJ1p3s45KIVwPt5qnXI6-ouQE4_KFXVNe5-SSfyzrEf1jxTyerNqlU5bIZ0v4aPS6i3bXSSHIfgyvrFCzDPq9x-5B98OI0sVDKxzzp7UWjqEjjmuQbdN4eGZUtSGYcWNFI29vl4Pr8HvqMjnQaaEtGZeX_nJG27xzlwlD1pI_rjO_QMAQpfbNuxLm5-HhB0fZOngjNAnOhipyY_tTMMtiWLmoJUuicwTTSpERC_9ny8tnsiyCOEJEyeZFEzh52jfox_WHLVkIrjCUCYtTwCvuYdtu4Sgl-WPCa2y-4uF7u2DcIKdIRRMdjgE1RNUAp-W2ui8PDrIaSVxkWbuLQJ2oXEyWN8gFHEZPko-n80IjGG8Si3Qh1kum_vO9Ub7AiIm0pk65ph_CQH0BSVSLwN-e4iAd1C6h_J2O-aGEKWKrvvRC31ApCr5RkOdaKTAYVGUKQSMBdqucq47JbBynP7dqE0Kxl3miBo_dyYXCim9Gw.DSoXCEJ7-uT7Xv7eb3g-7A";
+    final String encryptedJweProducedByGluu = "eyJraWQiOiIxIiwidHlwIjoiSldUIiwiZW5jIjoiQTEyOEdDTSIsImFsZyI6IlJTQS1PQUVQIn0.bnWzspu4G40jEAkOjV-yRsXnHhgy7MgHxDKHc_ePWqCji-rNfeViybYV62jSCGRWsRB1sGiLuiE35z8aag4dr1gIbYARfNB7t9kaBcZCfZ-jwaGUYn-XfCDg98U4VVv1P77R8Gu-OcU53vBM_pPCzOm75IelWf_W8wFK4DB6i9P8CDFVlsDSWslMfqsMZLj9lE0KV_10c2ovELzcTu-GPC-rMUglFSHIt8Povi7bFf-kiWxFd1kT0NdrnHmKUVqIRNv5fsAtbY5B7jx5-EQ_IjhdaoK0QwfaqF0Vz4qVOO7y1PSXdDXyvrLwSY8rrTjzaLbXCnLc9oLeiIP-aR3HuA.YB2_esWvrHdJh1jt.P56SeJfBlBDm73YVQsEH_8ZtBgwQpnpX0hKY7v2ufFuqAlP2BeR2Ku-3rgIhFHPOAhqRuZ-YOROwIUVfC9ceG0tI63W_Xf0.FyuoL4LlnBvPEnmCJ5H8pw";
+
+    final String senderJwkJson = "{\"kty\":\"RSA\",\"d\":\"iSx-zxihgOITpEhz6WwGiiCZjxx597wqblhSYgFWa_bL9esLY3FT_Kq9sdvGPiI8QmObRxPZuTi4n3BVKYUWcfjVz3swq7VmESxnJJZE-vMI9NTaZ-CT2b4I-c3qwAsejhWagJf899I3MRtPOnyxMimyOw4_5YYvXjBkXkCMfCsbj5TBR3RbtMrUYzDMXsVT1EJ_7H76DPBFJx5JptsEAA17VMtqwvWhRutnPyQOftDGPxD-1aGgpteKOUCv7Lx-mFX-zV6nnPB8vmgTgaMqCbCFKSZI567p714gzWBkwnNdRHleX8wos8yZAGbdwGqqUz5x3iKKdn3c7U9TTU7DAQ\",\"e\":\"AQAB\",\"use\":\"sig\",\"kid\":\"1\",\"alg\":\"RS256\",\"n\":\"i6tdK2fREwykTUU-qkYkiSHgg9B31-8EjVCbH0iyrewY9s7_WYPT7I3argjcmiDkufnVfGGW0FadtO3br-Qgk_N2e9LqGMtjUoGMZKFS3fJhqjnLYDi_E5l2FYU_ilw4EXPsZJY0CaM7BxjwUBoCjopYrgvtdxA9G6gpGoAH4LopAkgX-gkawVLpB4NpLvA09FLF2OlYZL7aaybvM2Lz_IXEPa-LSOwLum80Et-_A1-YMx_Z767Iwl1pGTpgZ87jrDD1vEdMdiLcWFG3UIYAAIxtg6X23cvQVLMaXKpyV0USDCWRJrZYxEDgZngbDRj3Sd2-LnixPkMWAfo_D9lBVQ\"}";
+
+    final String recipientJwkJson = "{\"kty\":\"RSA\",\"d\":\"jAFM0c4oXxh5YcEujZRVY5LNUzkm0OZf8OUZ31DockQE07BwSAsi4_y6vursS4Z74EurjYlfPx7WoZZokTLyBReVvG8XQZ-AQ5smU9gXQrsiVdU2kOp17oYnOP3OKc0HtvlfTPKdz0DhoA--wAsPFCL2ei4Qly_J3IQTF9ffJJMEyzgabcV1xqrk8NEK5XfEHOdNHzzg-doRe4lCsDcEfIppCIxPHTozhYpwH0_OrssAX1OwX5Jx6-5pXc_BIBrymIkjfwlPYBC32f0iD6VTntJfIngMOdeu0t6krOaWlbfmf6RdoM5sugT-j3mYnd3w4c2eFW23Z9sPCrQvDNlTcQ\",\"e\":\"AQAB\",\"use\":\"enc\",\"kid\":\"2\",\"alg\":\"RS256\",\"n\":\"oaPsFKHgVnK0d04rjN5GgZFqCh9HwYkLMdDQDIgkM3x4sxTpctS5NJQK7iKWNxPTtULdzrY6NLqtrNWmIrJFC6f2h4q5p46Kmc8vdhm_Ph_jpYfsXWTdsHAoee6iJPMoie7rBGoscr3y2DdNlyxAO_jHLUkaaSAqDQrH_f4zVTO0XKisJu8DxKoh2U8myOow_kxx4PUxEdlH6XclpxYT5lIZijOZ8wehFad_BAJ2iZM40JDoqOgspUF1Jyq7FjOoMQabYYwDMyfs2rEALcTU1UsvLeWbl95T3mdAw64Ux3uFCZzHdXF4IDr7xH4NrEVT7SMAlwNoaRfmFbtL-WoISw\"}";
+    public static final String PAYLOAD = "{\"iss\":\"https:devgluu.saminet.local\",\"sub\":\"testing\"}";
+
+    @Test
+    public void encryptWithNimbus_decryptByAll() {
+        final String jwt = encryptWithNimbusJoseJwt();
+
+        assertTrue(testDecryptNimbusJoseJwt(jwt));
+        assertTrue(testDecryptWithJose4J(jwt));
+        assertTrue(testDecryptWithGluuDecrypter(jwt));
+    }
+
+    @Test
+    public void encryptWithGluu_decryptByAll() {
+        final String jwt = encryptWithGluuJweEncrypter();
+        System.out.println("Gluu encrypted: " + jwt);
+
+        assertTrue(testDecryptNimbusJoseJwt(jwt));
+        assertTrue(testDecryptWithJose4J(jwt));
+        assertTrue(testDecryptWithGluuDecrypter(jwt));
+    }
+
+    @Test
+    public void testNimbusJoseJwt_first() {
+
+        //jwe produced by gluu 3.1.2 in development environment
+        assertTrue(testDecryptNimbusJoseJwt(encryptedJweProducedByGluu));
+    }
+
+    @Test
+    public void testNimbusJoseJwt_second() {
+
+        //jwe produced by Gluu JweEncrypter
+        assertTrue(testDecryptNimbusJoseJwt(encryptWithGluuJweEncrypter()));
+    }
+
+    @Test
+    public void testNimbusJoseJwt_third() {
+
+        //jwe produced by Nimbus Jose+JWT
+        assertTrue(testDecryptNimbusJoseJwt(encryptWithNimbusJoseJwt()));
+    }
+
+    @Test
+    public void testNimbusJose4J_first() {
+
+        //jwe produced by gluu 3.1.2 in development environment
+        assertTrue(testDecryptWithJose4J(encryptedJweProducedByGluu));
+    }
+
+    @Test
+    public void testNimbusJose4J_second() {
+
+        //jwe produced by Gluu JweEncrypter
+        assertTrue(testDecryptWithJose4J(encryptWithGluuJweEncrypter()));
+    }
+
+    @Test
+    public void testNimbusJose4J_third() {
+
+        //jwe produced by Nimbus Jose+JWT
+        assertTrue(testDecryptWithJose4J(encryptWithNimbusJoseJwt()));
+    }
+
+    @Test
+    public void testGluuJweDecrypter_first() {
+        String str = encryptWithNimbusJoseJwt();
+        System.out.println(str);
+        System.out.println(encryptedJweProducedByGluu);
+
+        //jwe produced by gluu 3.1.2 in development environment
+        assertTrue(testDecryptWithGluuDecrypter(encryptedJweProducedByGluu));
+    }
+
+    @Test
+    public void testGluuJweDecrypter_second() {
+
+        //jwe produced by Gluu JweEncrypter
+        assertTrue(testDecryptWithGluuDecrypter(encryptWithGluuJweEncrypter()));
+    }
+
+    @Test
+    public void testGluuJweDecrypter_third() {
+
+        //jwe produced by Nimbus Jose+JWT
+        assertTrue(testDecryptWithGluuDecrypter(encryptWithNimbusJoseJwt()));
+    }
+
+    private boolean testDecryptNimbusJoseJwt(String jwe) {
+
+        try {
+            EncryptedJWT encryptedJwt = EncryptedJWT.parse(jwe);
+            //EncryptedJWT encryptedJwt = EncryptedJWT.parse(encryptWithGluu());
+            //EncryptedJWT encryptedJwt = EncryptedJWT.parse(encryptWithNimbus());
+
+            JWK jwk = JWK.parse(recipientJwkJson);
+            RSAPrivateKey rsaPrivateKey = ((RSAKey) jwk).toRSAPrivateKey();
+
+            JWEDecrypter decrypter = new RSADecrypter(rsaPrivateKey);
+            decrypter.getJCAContext().setProvider(SecurityProviderUtility.getBCProvider());
+
+            encryptedJwt.decrypt(decrypter);
+            final String decryptedPayload = new String(Base64Util.base64urldecode(encryptedJwt.getPayload().toString()));
+            System.out.println("Nimbusds decrypt succeed: " + decryptedPayload);
+            if (isJsonEqual(decryptedPayload, PAYLOAD)) {
+                return true;
+            }
+        } catch (Exception e) {
+            System.out.println("Nimbusds decrypt failed: " + e.getMessage());
+            e.printStackTrace();
+        }
+        return false;
+    }
+
+    public static boolean isJsonEqual(String json1, String json2) throws IOException {
+        ObjectMapper mapper = new ObjectMapper();
+        JsonNode tree1 = mapper.readTree(json1);
+        JsonNode tree2 = mapper.readTree(json2);
+        return tree1.equals(tree2);
+    }
+
+    public boolean testDecryptWithJose4J(String jwe) {
+
+        try {
+
+            PublicJsonWebKey jwk = PublicJsonWebKey.Factory.newPublicJwk(recipientJwkJson);
+
+            JsonWebEncryption receiverJwe = new JsonWebEncryption();
+
+            AlgorithmConstraints algConstraints = new AlgorithmConstraints(ConstraintType.WHITELIST, KeyManagementAlgorithmIdentifiers.RSA_OAEP);
+            receiverJwe.setAlgorithmConstraints(algConstraints);
+            AlgorithmConstraints encConstraints = new AlgorithmConstraints(ConstraintType.WHITELIST, ContentEncryptionAlgorithmIdentifiers.AES_128_GCM);
+            receiverJwe.setContentEncryptionAlgorithmConstraints(encConstraints);
+
+            receiverJwe.setKey(jwk.getPrivateKey());
+
+            receiverJwe.setCompactSerialization(jwe);
+            final String decryptedPayload = new String(Base64Util.base64urldecode(receiverJwe.getPlaintextString()));
+            System.out.println("Jose4j decrypt succeed: " + decryptedPayload);
+            if (isJsonEqual(decryptedPayload, PAYLOAD)) {
+                return true;
+            }
+        } catch (Exception e) {
+            System.out.println("Jose4j decrypt failed: " + e.getMessage());
+            e.printStackTrace();
+        }
+        return false;
+    }
+
+    public boolean testDecryptWithGluuDecrypter(String jwe) {
+
+        try {
+            JWK jwk = JWK.parse(recipientJwkJson);
+            RSAPrivateKey rsaPrivateKey = ((RSAKey) jwk).toRSAPrivateKey();
+
+            JweDecrypterImpl decrypter = new JweDecrypterImpl(rsaPrivateKey);
+
+            decrypter.setKeyEncryptionAlgorithm(KeyEncryptionAlgorithm.RSA_OAEP);
+            decrypter.setBlockEncryptionAlgorithm(BlockEncryptionAlgorithm.A128GCM);
+            final String decryptedPayload = decrypter.decrypt(jwe).getClaims().toJsonString().toString();
+            System.out.println("Gluu decrypt succeed: " + decryptedPayload);
+            if (isJsonEqual(decryptedPayload, PAYLOAD)) {
+                return true;
+            }
+        } catch (Exception e) {
+            System.out.println("Gluu decrypt failed: " + e.getMessage());
+            e.printStackTrace();
+        }
+        return false;
+    }
+
+    private String encryptWithGluuJweEncrypter() {
+
+        try {
+            RSAKey recipientPublicJWK = (RSAKey) (JWK.parse(recipientJwkJson));
+
+            BlockEncryptionAlgorithm blockEncryptionAlgorithm = BlockEncryptionAlgorithm.A128GCM;
+            KeyEncryptionAlgorithm keyEncryptionAlgorithm = KeyEncryptionAlgorithm.RSA_OAEP;
+            Jwe jwe = new Jwe();
+            jwe.getHeader().setType(JwtType.JWT);
+            jwe.getHeader().setAlgorithm(keyEncryptionAlgorithm);
+            jwe.getHeader().setEncryptionMethod(blockEncryptionAlgorithm);
+            jwe.getClaims().setIssuer("https:devgluu.saminet.local");
+            jwe.getClaims().setSubjectIdentifier("testing");
+            jwe.getHeader().setKeyId("1");
+
+            JweEncrypterImpl encrypter = new JweEncrypterImpl(keyEncryptionAlgorithm, blockEncryptionAlgorithm, recipientPublicJWK.toPublicKey());
+            jwe = encrypter.encrypt(jwe);
+            //		System.out.println("EncodedHeader: " + jwe.getEncodedHeader());
+            //		System.out.println("EncodedEncryptedKey: " + jwe.getEncodedEncryptedKey());
+            //		System.out.println("EncodedInitializationVector: " + jwe.getEncodedInitializationVector());
+            //		System.out.println("EncodedCiphertext: " + jwe.getEncodedCiphertext());
+            //		System.out.println("EncodedIntegrityValue: " + jwe.getEncodedIntegrityValue());
+            return jwe.toString();
+        } catch (Exception e) {
+            System.out.println("Error encryption with Gluu JweEncrypter: " + e.getMessage());
+            return null;
+        }
+    }
+
+    private String encryptWithNimbusJoseJwt() {
+
+        try {
+            RSAKey senderJWK = (RSAKey) JWK.parse(senderJwkJson);
+
+            RSAKey recipientPublicJWK = (RSAKey) (JWK.parse(recipientJwkJson));
+
+            // Create JWT
+//			SignedJWT signedJWT = new SignedJWT(
+//			    new JWSHeader.Builder(JWSAlgorithm.RS256).keyID(senderJWK.getKeyID()).build(),
+//			    new JWTClaimsSet.Builder()
+//			        .subject("testi")
+//			        .issuer("https:devgluu.saminet.local")
+//			        .build());
+
+            // Sign the JWT
+            //		signedJWT.sign(new RSASSASigner(senderJWK));
+
+            // Create JWE object with signed JWT as payload
+            //		JWEObject jweObject = new JWEObject(
+            //		    new JWEHeader.Builder(JWEAlgorithm.RSA_OAEP, EncryptionMethod.A128GCM)
+            //		        .contentType("JWT") // required to indicate nested JWT
+            //		        .build(),
+            //		    new Payload(signedJWT));
+
+            @SuppressWarnings("deprecation")
+            JWEObject jweObject = new JWEObject(
+                    new JWEHeader.Builder(JWEAlgorithm.RSA_OAEP, EncryptionMethod.A128GCM)
+                            .type(JOSEObjectType.JWT)
+                            .keyID(senderJWK.getKeyID())
+                            .build(),
+                    new Payload(Base64Util.base64urlencode(PAYLOAD.getBytes(Charsets.UTF_8))));
+
+
+            // Encrypt with the recipient's public key
+            RSAEncrypter encrypter = new RSAEncrypter(recipientPublicJWK);
+            jweObject.encrypt(encrypter);
+
+            //		System.out.println("Header: " +  jweObject.getHeader());
+            //		System.out.println("Encrypted Key: " + jweObject.getEncryptedKey());
+            //		System.out.println("Cipher Text: " + jweObject.getCipherText());
+            //		System.out.println("IV: " + jweObject.getIV());
+            //		System.out.println("Auth Tag: " + jweObject.getAuthTag());
+
+
+            // Serialise to JWE compact form
+            return jweObject.serialize();
+        } catch (Exception e) {
+            System.out.println("Error encryption with Nimbus: " + e.getMessage());
+            return null;
+        }
+    }
+
+
+    @Test
+    public void nestedJWT() throws Exception {
+
+        RSAKey senderJWK = (RSAKey) JWK.parse(senderJwkJson);
+
+        RSAKey recipientPublicJWK = (RSAKey) (JWK.parse(recipientJwkJson));
+
+        // Create JWT
+        SignedJWT signedJWT = new SignedJWT(
+                new JWSHeader.Builder(JWSAlgorithm.RS256).keyID(senderJWK.getKeyID()).build(),
+                new JWTClaimsSet.Builder()
+                        .subject("testi")
+                        .issuer("https:devgluu.saminet.local")
+                        .build());
+
+        signedJWT.sign(new RSASSASigner(senderJWK));
+
+        JWEObject jweObject = new JWEObject(
+                new JWEHeader.Builder(JWEAlgorithm.RSA_OAEP, EncryptionMethod.A128GCM)
+                        .contentType("JWT") // required to indicate nested JWT
+                        .build(),
+                new Payload(signedJWT));
+
+        // Encrypt with the recipient's public key
+        RSAEncrypter encrypter = new RSAEncrypter(recipientPublicJWK);
+        jweObject.encrypt(encrypter);
+
+        final String jweString = jweObject.serialize();
+
+        decryptAndValidateSignatureWithGluu(jweString);
+    }
+
+    @Test
+    public void nestedJWTProducedByGluu() throws Exception {
+        AppConfiguration appConfiguration = new AppConfiguration();
+
+        List<JSONWebKey> keyArrayList = new ArrayList<JSONWebKey>();
+        keyArrayList.add(getSenderWebKey());
+
+        JSONWebKeySet keySet = new JSONWebKeySet();
+        keySet.setKeys(keyArrayList);
+
+        final JwtSigner jwtSigner = new JwtSigner(appConfiguration, keySet, SignatureAlgorithm.RS256, "audience", null, new AbstractCryptoProvider() {
+            @Override
+            public JSONObject generateKey(Algorithm algorithm, Long expirationTime, Use use) throws Exception {
+                return null;
+            }
+
+            @Override
+            public JSONObject generateKey(Algorithm algorithm, Long expirationTime, Use use, int keyLength) throws Exception {
+                return null;
+            }
+
+            @Override
+            public boolean containsKey(String keyId) {
+                return false;
+            }
+
+            @Override
+            public String sign(String signingInput, String keyId, String sharedSecret, SignatureAlgorithm signatureAlgorithm) throws Exception {
+                RSAPrivateKey privateKey = ((RSAKey) JWK.parse(senderJwkJson)).toRSAPrivateKey();
+
+                Signature signature = Signature.getInstance(signatureAlgorithm.getAlgorithm(), SecurityProviderUtility.getBCProvider());
+                signature.initSign(privateKey);
+                signature.update(signingInput.getBytes());
+
+                return Base64Util.base64urlencode(signature.sign());
+            }
+
+            @Override
+            public boolean verifySignature(String signingInput, String encodedSignature, String keyId, JSONObject jwks, String sharedSecret, SignatureAlgorithm signatureAlgorithm) throws Exception {
+                return false;
+            }
+
+            @Override
+            public boolean deleteKey(String keyId) throws Exception {
+                return false;
+            }
+
+			@Override
+			public PrivateKey getPrivateKey(String keyId) throws Exception {
+		        throw new UnsupportedOperationException("Method not implemented.");
+			}
+        });
+        Jwt jwt = jwtSigner.newJwt();
+        jwt.getClaims().setSubjectIdentifier("testing");
+        jwt.getClaims().setIssuer("https:devgluu.saminet.local");
+        jwt = jwtSigner.sign();
+
+        RSAKey recipientPublicJWK = (RSAKey) (JWK.parse(recipientJwkJson));
+
+        BlockEncryptionAlgorithm blockEncryptionAlgorithm = BlockEncryptionAlgorithm.A128GCM;
+        KeyEncryptionAlgorithm keyEncryptionAlgorithm = KeyEncryptionAlgorithm.RSA_OAEP;
+        Jwe jwe = new Jwe();
+        jwe.getHeader().setType(JwtType.JWT);
+        jwe.getHeader().setAlgorithm(keyEncryptionAlgorithm);
+        jwe.getHeader().setEncryptionMethod(blockEncryptionAlgorithm);
+        jwe.getHeader().setKeyId("1");
+        jwe.setSignedJWTPayload(jwt);
+
+        JweEncrypterImpl encrypter = new JweEncrypterImpl(keyEncryptionAlgorithm, blockEncryptionAlgorithm, recipientPublicJWK.toPublicKey());
+        String jweString = encrypter.encrypt(jwe).toString();
+
+        decryptAndValidateSignatureWithGluu(jweString);
+        decryptAndValidateSignatureWithNimbus(jweString);
+    }
+
+    private JSONWebKey getSenderWebKey() throws JSONException {
+        return JSONWebKey.fromJSONObject(new JSONObject(senderJwkJson));
+    }
+
+    public RSAPublicKey getSenderPublicKey() {
+        return RSAKeyFactory.valueOf(getSenderWebKey()).getPublicKey();
+    }
+
+    private void decryptAndValidateSignatureWithGluu(String jweString) throws ParseException, JOSEException, InvalidJweException, JSONException, InvalidJwtException {
+        JWK jwk = JWK.parse(recipientJwkJson);
+        RSAPrivateKey rsaPrivateKey = ((RSAKey) jwk).toRSAPrivateKey();
+
+        JweDecrypterImpl decrypter = new JweDecrypterImpl(rsaPrivateKey);
+
+        decrypter.setKeyEncryptionAlgorithm(KeyEncryptionAlgorithm.RSA_OAEP);
+        decrypter.setBlockEncryptionAlgorithm(BlockEncryptionAlgorithm.A128GCM);
+
+        final Jwe jwe = decrypter.decrypt(jweString);
+        assertEquals(JwtType.JWT, jwe.getHeader().getContentType());
+
+        final Jwt jwt = jwe.getSignedJWTPayload();
+
+        Assert.assertTrue(new RSASigner(SignatureAlgorithm.RS256, getSenderPublicKey()).validate(jwt));
+
+        System.out.println("Gluu decrypt and nested jwt signature verification succeed: " + jwt.getClaims().toJsonString());
+    }
+
+    private void decryptAndValidateSignatureWithNimbus(String jweString) throws ParseException, JOSEException {
+        JWK jwk = JWK.parse(recipientJwkJson);
+        RSAPrivateKey rsaPrivateKey = ((RSAKey) jwk).toRSAPrivateKey();
+
+        JWEObject jweObject = JWEObject.parse(jweString);
+
+        jweObject.decrypt(new RSADecrypter(rsaPrivateKey));
+        SignedJWT signedJWT = jweObject.getPayload().toSignedJWT();
+
+        assertNotNull("Payload not a signed JWT", signedJWT);
+
+        RSAKey senderJWK = (RSAKey) JWK.parse(senderJwkJson);
+        assertTrue(signedJWT.verify(new RSASSAVerifier(senderJWK)));
+
+        assertEquals("testing", signedJWT.getJWTClaimsSet().getSubject());
+        System.out.println("Nimbus decrypt and nested jwt signature verification succeed: " + signedJWT.getJWTClaimsSet().toJSONObject());
+    }
+}
\ No newline at end of file
diff --git a/oxAuth/Server/src/test/java/org/gluu/oxauth/comp/CryptoProviderTest.java b/oxAuth/Server/src/test/java/org/gluu/oxauth/comp/CryptoProviderTest.java
new file mode 100644
index 00000000..8502edd2
--- /dev/null
+++ b/oxAuth/Server/src/test/java/org/gluu/oxauth/comp/CryptoProviderTest.java
@@ -0,0 +1,457 @@
+/*
+ * oxAuth is available under the MIT License (2008). See http://opensource.org/licenses/MIT for full text.
+ *
+ * Copyright (c) 2014, Gluu
+ */
+
+package org.gluu.oxauth.comp;
+
+import org.json.JSONObject;
+import org.gluu.oxauth.ConfigurableTest;
+import org.gluu.oxauth.model.config.ConfigurationFactory;
+import org.gluu.oxauth.model.configuration.AppConfiguration;
+import org.gluu.oxauth.model.crypto.AbstractCryptoProvider;
+import org.gluu.oxauth.model.crypto.signature.SignatureAlgorithm;
+import org.gluu.oxauth.model.jwk.Algorithm;
+import org.gluu.oxauth.model.jwk.JWKParameter;
+import org.gluu.oxauth.model.util.Base64Util;
+import org.testng.annotations.DataProvider;
+import org.testng.annotations.Test;
+
+import javax.inject.Inject;
+
+import java.security.interfaces.ECPrivateKey;
+import java.util.GregorianCalendar;
+import java.util.TimeZone;
+
+import static org.gluu.oxeleven.model.GenerateKeyResponseParam.KEY_ID;
+import static org.testng.Assert.*;
+
+/**
+ * @author Javier Rojas Blum
+ * @author Sergey Manoylo
+ * @version December 17, 2021
+ */
+public class CryptoProviderTest extends ConfigurableTest {
+
+    @Inject
+    private ConfigurationFactory configurationFactory;
+
+    @Inject
+    private AbstractCryptoProvider cryptoProvider;
+
+    private final static int NUM_KEY_GENS = 100;
+
+    private final static byte testByte01 = (byte)0x01;
+
+    private final static String SIGNING_INPUT = "Signing Input";
+    private final static String SHARED_SECRET = "secret";
+
+    private final static String DEF_GEN_KEYS_PROVIDER = "GenerateKeysDataProvider";
+
+    private final static Object[][] DEF_EC_ALGS_DATA = new Object[][] {
+        { Algorithm.ES256 },
+        { Algorithm.ES384 },
+        { Algorithm.ES512 },
+    };
+
+    private static Long expirationTime;
+    private static String hs256Signature;
+    private static String hs384Signature;
+    private static String hs512Signature;
+    private static String rs256Key;
+    private static String rs256Signature;
+    private static String rs384Key;
+    private static String rs384Signature;
+    private static String rs512Key;
+    private static String rs512Signature;
+    private static String es256Key;
+    private static String es256Signature;
+    private static String es384Key;
+    private static String es384Signature;
+    private static String es512Key;
+    private static String es512Signature;
+
+    @Test
+    public void configuration() {
+        try {
+            AppConfiguration appConfiguration = configurationFactory.getAppConfiguration();
+            assertNotNull(appConfiguration);
+
+            assertNotNull(cryptoProvider);
+
+            GregorianCalendar calendar = new GregorianCalendar(TimeZone.getTimeZone("UTC"));
+            calendar.add(GregorianCalendar.MINUTE, 5);
+            expirationTime = calendar.getTimeInMillis();
+        } catch (Exception e) {
+            fail(e.getMessage(), e);
+        }
+    }
+
+    @Test(dependsOnMethods = {"configuration"})
+    public void testSignHS256() {
+        try {
+            hs256Signature = cryptoProvider.sign(SIGNING_INPUT, null, SHARED_SECRET, SignatureAlgorithm.HS256);
+            assertNotNull(hs256Signature);
+        } catch (Exception e) {
+            fail(e.getMessage(), e);
+        }
+    }
+
+    @Test(dependsOnMethods = {"testSignHS256"})
+    public void testVerifyHS256() {
+        try {
+            boolean signatureVerified = cryptoProvider.verifySignature(SIGNING_INPUT, hs256Signature, null, null,
+                    SHARED_SECRET, SignatureAlgorithm.HS256);
+            assertTrue(signatureVerified);
+        } catch (Exception e) {
+            fail(e.getMessage(), e);
+        }
+    }
+
+    @Test(dependsOnMethods = {"configuration"})
+    public void testSignHS384() {
+        try {
+            hs384Signature = cryptoProvider.sign(SIGNING_INPUT, null, SHARED_SECRET, SignatureAlgorithm.HS384);
+            assertNotNull(hs384Signature);
+        } catch (Exception e) {
+            fail(e.getMessage(), e);
+        }
+    }
+
+    @Test(dependsOnMethods = {"testSignHS384"})
+    public void testVerifyHS384() {
+        try {
+            boolean signatureVerified = cryptoProvider.verifySignature(SIGNING_INPUT, hs384Signature, null, null,
+                    SHARED_SECRET, SignatureAlgorithm.HS384);
+            assertTrue(signatureVerified);
+        } catch (Exception e) {
+            fail(e.getMessage(), e);
+        }
+    }
+
+    @Test(dependsOnMethods = {"configuration"})
+    public void testSignHS512() {
+        try {
+            hs512Signature = cryptoProvider.sign(SIGNING_INPUT, null, SHARED_SECRET, SignatureAlgorithm.HS512);
+            assertNotNull(hs512Signature);
+        } catch (Exception e) {
+            fail(e.getMessage(), e);
+        }
+    }
+
+    @Test(dependsOnMethods = {"testSignHS512"})
+    public void testVerifyHS512() {
+        try {
+            boolean signatureVerified = cryptoProvider.verifySignature(SIGNING_INPUT, hs512Signature, null, null,
+                    SHARED_SECRET, SignatureAlgorithm.HS512);
+            assertTrue(signatureVerified);
+        } catch (Exception e) {
+            fail(e.getMessage(), e);
+        }
+    }
+
+    @Test(dependsOnMethods = {"configuration"})
+    public void testGenerateKeyRS256() {
+        try {
+            JSONObject response = cryptoProvider.generateKey(Algorithm.RS256, expirationTime);
+            rs256Key = response.optString(KEY_ID);
+        } catch (Exception e) {
+            fail(e.getMessage(), e);
+        }
+    }
+
+    @Test(dependsOnMethods = {"testGenerateKeyRS256"})
+    public void testSignRS256() {
+        try {
+            rs256Signature = cryptoProvider.sign(SIGNING_INPUT, rs256Key, null, SignatureAlgorithm.RS256);
+            assertNotNull(rs256Signature);
+        } catch (Exception e) {
+            fail(e.getMessage(), e);
+        }
+    }
+
+    @Test(dependsOnMethods = {"testSignRS256"})
+    public void testVerifyRS256() {
+        try {
+            boolean signatureVerified = cryptoProvider.verifySignature(SIGNING_INPUT, rs256Signature, rs256Key, null,
+                    null, SignatureAlgorithm.RS256);
+            assertTrue(signatureVerified);
+        } catch (Exception e) {
+            fail(e.getMessage(), e);
+        }
+    }
+
+    @Test(dependsOnMethods = {"testVerifyRS256"})
+    public void testDeleteKeyRS256() {
+        try {
+            cryptoProvider.deleteKey(rs256Key);
+        } catch (Exception e) {
+            fail(e.getMessage(), e);
+        }
+    }
+
+    @Test(dependsOnMethods = {"configuration"})
+    public void testGenerateKeyRS384() {
+        try {
+            JSONObject response = cryptoProvider.generateKey(Algorithm.RS384, expirationTime);
+            rs384Key = response.optString(KEY_ID);
+        } catch (Exception e) {
+            fail(e.getMessage(), e);
+        }
+    }
+
+    @Test(dependsOnMethods = {"testGenerateKeyRS384"})
+    public void testSignRS384() {
+        try {
+            rs384Signature = cryptoProvider.sign(SIGNING_INPUT, rs384Key, null, SignatureAlgorithm.RS384);
+            assertNotNull(rs384Signature);
+        } catch (Exception e) {
+            fail(e.getMessage(), e);
+        }
+    }
+
+    @Test(dependsOnMethods = {"testSignRS384"})
+    public void testVerifyRS384() {
+        try {
+            boolean signatureVerified = cryptoProvider.verifySignature(SIGNING_INPUT, rs384Signature, rs384Key, null,
+                    null, SignatureAlgorithm.RS384);
+            assertTrue(signatureVerified);
+        } catch (Exception e) {
+            fail(e.getMessage(), e);
+        }
+    }
+
+    @Test(dependsOnMethods = {"testVerifyRS384"})
+    public void testDeleteKeyRS384() {
+        try {
+            cryptoProvider.deleteKey(rs384Key);
+        } catch (Exception e) {
+            fail(e.getMessage(), e);
+        }
+    }
+
+    @Test(dependsOnMethods = {"configuration"})
+    public void testGenerateKeyRS512() {
+        try {
+            JSONObject response = cryptoProvider.generateKey(Algorithm.RS512, expirationTime);
+            rs512Key = response.optString(KEY_ID);
+        } catch (Exception e) {
+            fail(e.getMessage(), e);
+        }
+    }
+
+    @Test(dependsOnMethods = {"testGenerateKeyRS512"})
+    public void testSignRS512() {
+        try {
+            rs512Signature = cryptoProvider.sign(SIGNING_INPUT, rs512Key, null, SignatureAlgorithm.RS512);
+            assertNotNull(rs512Signature);
+        } catch (Exception e) {
+            fail(e.getMessage(), e);
+        }
+    }
+
+    @Test(dependsOnMethods = {"testSignRS512"})
+    public void testVerifyRS512() {
+        try {
+            boolean signatureVerified = cryptoProvider.verifySignature(SIGNING_INPUT, rs512Signature, rs512Key, null,
+                    null, SignatureAlgorithm.RS512);
+            assertTrue(signatureVerified);
+        } catch (Exception e) {
+            fail(e.getMessage(), e);
+        }
+    }
+
+    @Test(dependsOnMethods = {"testVerifyRS512"})
+    public void testDeleteKeyRS512() {
+        try {
+            cryptoProvider.deleteKey(rs512Key);
+        } catch (Exception e) {
+            fail(e.getMessage(), e);
+        }
+    }
+
+    @Test(dependsOnMethods = {"configuration"})
+    public void testGenerateKeyES256() {
+        try {
+            JSONObject response = cryptoProvider.generateKey(Algorithm.ES256, expirationTime);
+            es256Key = response.optString(KEY_ID);
+        } catch (Exception e) {
+            fail(e.getMessage(), e);
+        }
+    }
+
+    @Test(dependsOnMethods = {"testGenerateKeyES256"})
+    public void testSignES256() {
+        try {
+            es256Signature = cryptoProvider.sign(SIGNING_INPUT, es256Key, null, SignatureAlgorithm.ES256);
+            assertNotNull(es256Signature);
+        } catch (Exception e) {
+            fail(e.getMessage(), e);
+        }
+    }
+
+    @Test(dependsOnMethods = {"testSignES256"})
+    public void testVerifyES256() {
+        try {
+            boolean signatureVerified = cryptoProvider.verifySignature(SIGNING_INPUT, es256Signature, es256Key, null,
+                    null, SignatureAlgorithm.ES256);
+            assertTrue(signatureVerified);
+        } catch (Exception e) {
+            fail(e.getMessage(), e);
+        }
+    }
+
+    @Test(dependsOnMethods = {"testVerifyES256"})
+    public void testDeleteKeyES256() {
+        try {
+            cryptoProvider.deleteKey(es256Key);
+        } catch (Exception e) {
+            fail(e.getMessage(), e);
+        }
+    }
+
+    @Test(dependsOnMethods = {"configuration"})
+    public void testGenerateKeyES384() {
+        try {
+            JSONObject response = cryptoProvider.generateKey(Algorithm.ES384, expirationTime);
+            es384Key = response.optString(KEY_ID);
+        } catch (Exception e) {
+            fail(e.getMessage(), e);
+        }
+    }
+
+    @Test(dependsOnMethods = {"testGenerateKeyES384"})
+    public void testSignES384() {
+        try {
+            es384Signature = cryptoProvider.sign(SIGNING_INPUT, es384Key, null, SignatureAlgorithm.ES384);
+            assertNotNull(es384Signature);
+        } catch (Exception e) {
+            fail(e.getMessage(), e);
+        }
+    }
+
+    @Test(dependsOnMethods = {"testSignES384"})
+    public void testVerifyES384() {
+        try {
+            boolean signatureVerified = cryptoProvider.verifySignature(SIGNING_INPUT, es384Signature, es384Key, null,
+                    null, SignatureAlgorithm.ES384);
+            assertTrue(signatureVerified);
+        } catch (Exception e) {
+            fail(e.getMessage(), e);
+        }
+    }
+
+    @Test(dependsOnMethods = {"testVerifyES384"})
+    public void testDeleteKeyES384() {
+        try {
+            cryptoProvider.deleteKey(es384Key);
+        } catch (Exception e) {
+            fail(e.getMessage(), e);
+        }
+    }
+
+    @Test(dependsOnMethods = {"configuration"})
+    public void testGenerateKeyES512() {
+        try {
+            JSONObject response = cryptoProvider.generateKey(Algorithm.ES512, expirationTime);
+            es512Key = response.optString(KEY_ID);
+        } catch (Exception e) {
+            fail(e.getMessage(), e);
+        }
+    }
+
+    @Test(dependsOnMethods = {"testGenerateKeyES512"})
+    public void testSignES512() {
+        try {
+            es512Signature = cryptoProvider.sign(SIGNING_INPUT, es512Key, null, SignatureAlgorithm.ES512);
+            assertNotNull(es512Signature);
+        } catch (Exception e) {
+            fail(e.getMessage(), e);
+        }
+    }
+
+    @Test(dependsOnMethods = {"testSignES512"})
+    public void testVerifyES512() {
+        try {
+            boolean signatureVerified = cryptoProvider.verifySignature(SIGNING_INPUT, es512Signature, es512Key, null,
+                    null, SignatureAlgorithm.ES512);
+            assertTrue(signatureVerified);
+        } catch (Exception e) {
+            fail(e.getMessage(), e);
+        }
+    }
+
+    @Test(dependsOnMethods = {"testVerifyES512"})
+    public void testDeleteKeyES512() {
+        try {
+            cryptoProvider.deleteKey(es512Key);
+        } catch (Exception e) {
+            fail(e.getMessage(), e);
+        }
+    }
+    
+    @DataProvider(name = DEF_GEN_KEYS_PROVIDER)
+    public Object[][] testGenerateKeysDataProvider() {
+        return ConfigurableTest.ArquillianDataProvider.provide(
+                "CryptoProviderTest#" + DEF_GEN_KEYS_PROVIDER,
+                DEF_EC_ALGS_DATA
+            );
+    }
+    
+    @Test(dependsOnMethods = {"testDeleteKeyRS256", "testDeleteKeyRS384", "testDeleteKeyRS512",
+            "testDeleteKeyES256", "testDeleteKeyES384", "testDeleteKeyES512" },
+            dataProvider = DEF_GEN_KEYS_PROVIDER)
+    public void testGenerateKeys(Algorithm algorithm) {
+        for(int i = 0; i < NUM_KEY_GENS; i++) {
+            System.out.println("----------------------");
+            System.out.println("Algorithm: " + algorithm);
+            try {
+                JSONObject response = cryptoProvider.generateKey(algorithm, expirationTime);
+                String keyId = response.optString(JWKParameter.KEY_ID);
+                ECPrivateKey ecPrivateKey = (ECPrivateKey)cryptoProvider.getPrivateKey(keyId);
+                cryptoProvider.deleteKey(keyId);
+
+                byte[] s = Base64Util.bigIntegerToUnsignedByteArray(ecPrivateKey.getS());
+
+                System.out.println("s.length = " + s.length);
+                System.out.println("s (hex) = " + Base64Util.bytesToHex(s));
+
+                String keyX = (String)response.get(JWKParameter.X);
+                String keyY = (String)response.get(JWKParameter.Y);
+
+                System.out.println("keyX = " + keyX);
+                System.out.println("keyY = " + keyY);
+
+                byte[] x = Base64Util.base64urldecode(keyX);
+                byte[] y = Base64Util.base64urldecode(keyY);
+
+                System.out.println("x.length = " + x.length);
+                System.out.println("y.length = " + y.length);
+
+                System.out.println("x (hex) = " + Base64Util.bytesToHex(x));
+                System.out.println("y (hex) = " + Base64Util.bytesToHex(y));
+
+                assertTrue(s.length <= algorithm.getKeyLength());
+                assertTrue(x.length <= algorithm.getKeyLength());
+                assertTrue(y.length <= algorithm.getKeyLength());
+
+                if(algorithm == Algorithm.ES512) {
+                    if(s.length * 8 == algorithm.getKeyLength()) {
+                        assertEquals(s[0], testByte01);
+                    }
+                    if(x.length * 8 == algorithm.getKeyLength()) {
+                        assertEquals(x[0], testByte01);
+                    }
+                    if(y.length * 8 == algorithm.getKeyLength()) {
+                        assertEquals(y[0], testByte01);
+                    }
+                }
+
+            } catch (Exception e) {
+                fail(e.getMessage(), e);
+            }
+            System.out.println("----------------------");
+        }
+    }
+}
\ No newline at end of file
diff --git a/oxAuth/Server/src/test/java/org/gluu/oxauth/comp/EncryptionTest.java b/oxAuth/Server/src/test/java/org/gluu/oxauth/comp/EncryptionTest.java
new file mode 100644
index 00000000..2a35baed
--- /dev/null
+++ b/oxAuth/Server/src/test/java/org/gluu/oxauth/comp/EncryptionTest.java
@@ -0,0 +1,353 @@
+/*
+ * oxAuth is available under the MIT License (2008). See http://opensource.org/licenses/MIT for full text.
+ *
+ * Copyright (c) 2014, Gluu
+ */
+
+package org.gluu.oxauth.comp;
+
+import org.gluu.oxauth.BaseTest;
+
+/**
+ * @author Javier Rojas Blum
+ * @version August 17, 2016
+ */
+public class EncryptionTest extends BaseTest {
+
+	/*
+	@Test
+	public void cryptoTest1() throws Exception {
+		showTitle("Test: alg = RSA-OAEP, enc = A256GCM");
+
+		// {"alg":"RSA-OAEP","enc":"A256GCM"}
+		String encodedHeader = "eyJhbGciOiJSU0EtT0FFUCIsImVuYyI6IkEyNTZHQ00ifQ";
+		String plainText = "Live long and prosper.";
+		byte[] cmk = Base64Util.unsignedToBytes(new int[] { 177, 161, 244, 128, 84, 143, 225, 115, 63, 180, 3, 255, 107,
+				154, 212, 246, 138, 7, 110, 91, 112, 46, 34, 105, 47, 130, 203, 46, 122, 234, 64, 252 });
+
+		BigInteger modulus = new BigInteger(1,
+				Base64Util.unsignedToBytes(new int[] { 161, 168, 84, 34, 133, 176, 208, 173, 46, 176, 163, 110, 57, 30,
+						135, 227, 9, 31, 226, 128, 84, 92, 116, 241, 70, 248, 27, 227, 193, 62, 5, 91, 241, 145, 224,
+						205, 141, 176, 184, 133, 239, 43, 81, 103, 9, 161, 153, 157, 179, 104, 123, 51, 189, 34, 152,
+						69, 97, 69, 78, 93, 140, 131, 87, 182, 169, 101, 92, 142, 3, 22, 167, 8, 212, 56, 35, 79, 210,
+						222, 192, 208, 252, 49, 109, 138, 173, 253, 210, 166, 201, 63, 102, 74, 5, 158, 41, 90, 144,
+						108, 160, 79, 10, 89, 222, 231, 172, 31, 227, 197, 0, 19, 72, 81, 138, 78, 136, 221, 121, 118,
+						196, 17, 146, 10, 244, 188, 72, 113, 55, 221, 162, 217, 171, 27, 57, 233, 210, 101, 236, 154,
+						199, 56, 138, 239, 101, 48, 198, 186, 202, 160, 76, 111, 234, 71, 57, 183, 5, 211, 171, 136,
+						126, 64, 40, 75, 58, 89, 244, 254, 107, 84, 103, 7, 236, 69, 163, 18, 180, 251, 58, 153, 46,
+						151, 174, 12, 103, 197, 181, 161, 162, 55, 250, 235, 123, 110, 17, 11, 158, 24, 47, 133, 8, 199,
+						235, 107, 126, 130, 246, 73, 195, 20, 108, 202, 176, 214, 187, 45, 146, 182, 118, 54, 32, 200,
+						61, 201, 71, 243, 1, 255, 131, 84, 37, 111, 211, 168, 228, 45, 192, 118, 27, 197, 235, 232, 36,
+						10, 230, 248, 190, 82, 182, 140, 35, 204, 108, 190, 253, 186, 186, 27 }));
+
+		BigInteger exponent = new BigInteger(1, Base64Util.unsignedToBytes(new int[] { 1, 0, 1 }));
+
+		BigInteger privateExponent = new BigInteger(1,
+				Base64Util.unsignedToBytes(new int[] { 144, 183, 109, 34, 62, 134, 108, 57, 44, 252, 10, 66, 73, 54, 16,
+						181, 233, 92, 54, 219, 101, 42, 35, 178, 63, 51, 43, 92, 119, 136, 251, 41, 53, 23, 191, 164,
+						164, 60, 88, 227, 229, 152, 228, 213, 149, 228, 169, 237, 104, 71, 151, 75, 88, 252, 216, 77,
+						251, 231, 28, 97, 88, 193, 215, 202, 248, 216, 121, 195, 211, 245, 250, 112, 71, 243, 61, 129,
+						95, 39, 244, 122, 225, 217, 169, 211, 165, 48, 253, 220, 59, 122, 219, 42, 86, 223, 32, 236, 39,
+						48, 103, 78, 122, 216, 187, 88, 176, 89, 24, 1, 42, 177, 24, 99, 142, 170, 1, 146, 43, 3, 108,
+						64, 194, 121, 182, 95, 187, 134, 71, 88, 96, 134, 74, 131, 167, 69, 106, 143, 121, 27, 72, 44,
+						245, 95, 39, 194, 179, 175, 203, 122, 16, 112, 183, 17, 200, 202, 31, 17, 138, 156, 184, 210,
+						157, 184, 154, 131, 128, 110, 12, 85, 195, 122, 241, 79, 251, 229, 183, 117, 21, 123, 133, 142,
+						220, 153, 9, 59, 57, 105, 81, 255, 138, 77, 82, 54, 62, 216, 38, 249, 208, 17, 197, 49, 45, 19,
+						232, 157, 251, 131, 137, 175, 72, 126, 43, 229, 69, 179, 117, 82, 157, 213, 83, 35, 57, 210,
+						197, 252, 171, 143, 194, 11, 47, 163, 6, 253, 75, 252, 96, 11, 187, 84, 130, 210, 7, 121, 78,
+						91, 79, 57, 251, 138, 132, 220, 60, 224, 173, 56, 224, 201 }));
+
+		PublicKey publicKey = new RSAPublicKeyImpl(modulus, exponent);
+		RSAPrivateKey rsaPrivateKey = new RSAPrivateKey(modulus, privateExponent);
+
+		// Encrypt
+		JweEncrypterImpl encrypter = new JweEncrypterImpl(KeyEncryptionAlgorithm.RSA_OAEP,
+				BlockEncryptionAlgorithm.A256GCM, publicKey);
+		String encodedEncryptedKey = encrypter.generateEncryptedKey(cmk);
+
+		byte[] initVector = Base64Util
+				.unsignedToBytes(new int[] { 227, 197, 117, 252, 2, 219, 233, 68, 180, 225, 77, 219 });
+		String encodedInitVector = Base64Util.base64urlencode(initVector);
+		assertEquals(encodedInitVector, "48V1_ALb6US04U3b");
+
+		String additionalAuthenticatedData = encodedHeader + "." + encodedEncryptedKey + "." + encodedInitVector;
+
+		Pair<String, String> ciphertextAndIntegrityValue = encrypter.generateCipherTextAndIntegrityValue(cmk,
+				initVector, additionalAuthenticatedData.getBytes(Util.UTF8_STRING_ENCODING),
+				plainText.getBytes(Util.UTF8_STRING_ENCODING));
+		String encodedCipherText = ciphertextAndIntegrityValue.getFirst();
+		String encodedAuthenticationTag = ciphertextAndIntegrityValue.getSecond();
+
+		String encodedJwe = encodedHeader + "." + encodedEncryptedKey + "." + encodedInitVector + "."
+				+ encodedCipherText + "." + encodedAuthenticationTag;
+		System.out.println("JWE: " + encodedJwe);
+
+		// Decrypt
+		JweDecrypterImpl decrypter = new JweDecrypterImpl(rsaPrivateKey);
+		decrypter.setKeyEncryptionAlgorithm(KeyEncryptionAlgorithm.RSA_OAEP);
+		decrypter.setBlockEncryptionAlgorithm(BlockEncryptionAlgorithm.A256GCM);
+		byte[] encryptionKey = decrypter.decryptEncryptionKey(encodedEncryptedKey);
+		assertEquals(encryptionKey, cmk);
+
+		String decodedPlainText = decrypter.decryptCipherText(encodedCipherText, encryptionKey, initVector,
+				Base64Util.base64urldecode(encodedAuthenticationTag),
+				additionalAuthenticatedData.getBytes(Util.UTF8_STRING_ENCODING));
+		assertEquals(decodedPlainText, plainText);
+	}
+
+	@Test
+	public void cryptoTest2() throws Exception {
+		showTitle("Test: alg = RSA1_5, enc = A128CBC+HS256");
+
+		// {"alg":"RSA1_5","enc":"A128CBC+HS256"}
+		String encodedHeader = "eyJhbGciOiJSU0ExXzUiLCJlbmMiOiJBMTI4Q0JDK0hTMjU2In0";
+		String plainText = "No matter where you go, there you are.";
+		byte[] cmk = Base64Util.unsignedToBytes(new int[] { 4, 211, 31, 197, 84, 157, 252, 254, 11, 100, 157, 250, 63,
+				170, 106, 206, 107, 124, 212, 45, 111, 107, 9, 219, 200, 177, 0, 240, 143, 156, 44, 207 });
+
+		BigInteger modulus = new BigInteger(1, Base64Util.unsignedToBytes(new int[] { 177, 119, 33, 13, 164, 30, 108,
+				121, 207, 136, 107, 242, 12, 224, 19, 226, 198, 134, 17, 71, 173, 75, 42, 61, 48, 162, 206, 161, 97,
+				108, 185, 234, 226, 219, 118, 206, 118, 5, 169, 224, 60, 181, 90, 85, 51, 123, 6, 224, 4, 122, 29, 230,
+				151, 12, 244, 127, 121, 25, 4, 85, 220, 144, 215, 110, 130, 17, 68, 228, 129, 138, 7, 130, 231, 40, 212,
+				214, 17, 179, 28, 124, 151, 178, 207, 20, 14, 154, 222, 113, 176, 24, 198, 73, 211, 113, 9, 33, 178, 80,
+				13, 25, 21, 25, 153, 212, 206, 67, 154, 147, 70, 194, 192, 183, 160, 83, 98, 236, 175, 85, 23, 97, 75,
+				199, 177, 73, 145, 50, 253, 206, 32, 179, 254, 236, 190, 82, 73, 67, 129, 253, 252, 220, 108, 136, 138,
+				11, 192, 1, 36, 239, 228, 55, 81, 113, 17, 25, 140, 63, 239, 146, 3, 172, 96, 60, 227, 233, 64, 255,
+				224, 173, 225, 228, 229, 92, 112, 72, 99, 97, 26, 87, 187, 123, 46, 50, 90, 202, 117, 73, 10, 153, 47,
+				224, 178, 163, 77, 48, 46, 154, 33, 148, 34, 228, 33, 172, 216, 89, 46, 225, 127, 68, 146, 234, 30, 147,
+				54, 146, 5, 133, 45, 78, 254, 85, 55, 75, 213, 86, 194, 218, 215, 163, 189, 194, 54, 6, 83, 36, 18, 153,
+				53, 7, 48, 89, 35, 66, 144, 7, 65, 154, 13, 97, 75, 55, 230, 132, 3, 13, 239, 71 }));
+
+		BigInteger exponent = new BigInteger(1, Base64Util.unsignedToBytes(new int[] { 1, 0, 1 }));
+
+		BigInteger privateExponent = new BigInteger(1, Base64Util.unsignedToBytes(new int[] { 84, 80, 150, 58, 165, 235,
+				242, 123, 217, 55, 38, 154, 36, 181, 221, 156, 211, 215, 100, 164, 90, 88, 40, 228, 83, 148, 54, 122, 4,
+				16, 165, 48, 76, 194, 26, 107, 51, 53, 179, 165, 31, 18, 198, 173, 78, 61, 56, 97, 252, 158, 140, 80,
+				63, 25, 223, 156, 36, 203, 214, 252, 120, 67, 180, 167, 3, 82, 243, 25, 97, 214, 83, 133, 69, 16, 104,
+				54, 160, 200, 41, 83, 164, 187, 70, 153, 111, 234, 242, 158, 175, 28, 198, 48, 211, 45, 148, 58, 23, 62,
+				227, 74, 52, 117, 42, 90, 41, 249, 130, 154, 80, 119, 61, 26, 193, 40, 125, 10, 152, 174, 227, 225, 205,
+				32, 62, 66, 6, 163, 100, 99, 219, 19, 253, 25, 105, 80, 201, 29, 252, 157, 237, 69, 1, 80, 171, 167, 20,
+				196, 156, 109, 249, 88, 0, 3, 152, 38, 165, 72, 87, 6, 152, 71, 156, 214, 16, 71, 30, 82, 51, 103, 76,
+				218, 63, 9, 84, 163, 249, 91, 215, 44, 238, 85, 101, 240, 148, 1, 82, 224, 91, 135, 105, 127, 84, 171,
+				181, 152, 210, 183, 126, 24, 46, 196, 90, 173, 38, 245, 219, 186, 222, 27, 240, 212, 194, 15, 66, 135,
+				226, 178, 190, 52, 245, 74, 65, 224, 81, 100, 85, 25, 204, 165, 203, 187, 175, 84, 100, 82, 15, 11, 23,
+				202, 151, 107, 54, 41, 207, 3, 136, 229, 134, 131, 93, 139, 50, 182, 204, 93, 130, 89 }));
+
+		PublicKey publicKey = new RSAPublicKeyImpl(modulus, exponent);
+		RSAPrivateKey rsaPrivateKey = new RSAPrivateKey(modulus, privateExponent);
+
+		// Encrypt
+		JweEncrypterImpl encrypter = new JweEncrypterImpl(KeyEncryptionAlgorithm.RSA1_5,
+				BlockEncryptionAlgorithm.A128CBC_PLUS_HS256, publicKey);
+		String encodedJweEncryptedKey = encrypter.generateEncryptedKey(cmk);
+
+		byte[] initVector = Base64Util
+				.unsignedToBytes(new int[] { 3, 22, 60, 12, 43, 67, 104, 105, 108, 108, 105, 99, 111, 116, 104, 101 });
+		String encodedInitVector = Base64Util.base64urlencode(initVector);
+		assertEquals(encodedInitVector, "AxY8DCtDaGlsbGljb3RoZQ");
+
+		String additionalAuthenticatedData = encodedHeader + "." + encodedJweEncryptedKey + "." + encodedInitVector;
+
+		Pair<String, String> cipherTextAndIntegrityValue = encrypter.generateCipherTextAndIntegrityValue(cmk,
+				initVector, additionalAuthenticatedData.getBytes(Util.UTF8_STRING_ENCODING),
+				plainText.getBytes(Util.UTF8_STRING_ENCODING));
+		String encodedCipherText = cipherTextAndIntegrityValue.getFirst();
+		String encodedAuthenticationTag = cipherTextAndIntegrityValue.getSecond();
+
+		String encodedJwe = encodedHeader + "." + encodedJweEncryptedKey + "." + encodedInitVector + "."
+				+ encodedCipherText + "." + encodedAuthenticationTag;
+		System.out.println("JWE: " + encodedJwe);
+
+		// Decrypt
+		JweDecrypterImpl decrypter = new JweDecrypterImpl(rsaPrivateKey);
+		decrypter.setKeyEncryptionAlgorithm(KeyEncryptionAlgorithm.RSA1_5);
+		decrypter.setBlockEncryptionAlgorithm(BlockEncryptionAlgorithm.A128CBC_PLUS_HS256);
+		byte[] encryptionKey = decrypter.decryptEncryptionKey(encodedJweEncryptedKey);
+		assertEquals(encryptionKey, cmk);
+
+		String decodedPlainText = decrypter.decryptCipherText(encodedCipherText, encryptionKey, initVector,
+				Base64Util.base64urldecode(encodedAuthenticationTag),
+				additionalAuthenticatedData.getBytes(Util.UTF8_STRING_ENCODING));
+		assertEquals(decodedPlainText, plainText);
+	}
+
+	@Test
+	public void cryptoTest3() throws Exception {
+		showTitle("Test: alg = RSA1_5, enc = A256CBC+HS512");
+
+		// {"alg":"RSA1_5","enc":"A256CBC+HS512"}
+		String encodedHeader = "eyJhbGciOiJSU0ExXzUiLCJlbmMiOiJBMjU2Q0JDK0hTNTEyIn0";
+		String plainText = "No matter where you go, there you are.";
+		byte[] cmk = new byte[BlockEncryptionAlgorithm.A256CBC_PLUS_HS512.getCmkLength() / 8];
+		SecureRandom random = new SecureRandom();
+		random.nextBytes(cmk);
+
+		BigInteger modulus = new BigInteger(1, Base64Util.unsignedToBytes(new int[] { 177, 119, 33, 13, 164, 30, 108,
+				121, 207, 136, 107, 242, 12, 224, 19, 226, 198, 134, 17, 71, 173, 75, 42, 61, 48, 162, 206, 161, 97,
+				108, 185, 234, 226, 219, 118, 206, 118, 5, 169, 224, 60, 181, 90, 85, 51, 123, 6, 224, 4, 122, 29, 230,
+				151, 12, 244, 127, 121, 25, 4, 85, 220, 144, 215, 110, 130, 17, 68, 228, 129, 138, 7, 130, 231, 40, 212,
+				214, 17, 179, 28, 124, 151, 178, 207, 20, 14, 154, 222, 113, 176, 24, 198, 73, 211, 113, 9, 33, 178, 80,
+				13, 25, 21, 25, 153, 212, 206, 67, 154, 147, 70, 194, 192, 183, 160, 83, 98, 236, 175, 85, 23, 97, 75,
+				199, 177, 73, 145, 50, 253, 206, 32, 179, 254, 236, 190, 82, 73, 67, 129, 253, 252, 220, 108, 136, 138,
+				11, 192, 1, 36, 239, 228, 55, 81, 113, 17, 25, 140, 63, 239, 146, 3, 172, 96, 60, 227, 233, 64, 255,
+				224, 173, 225, 228, 229, 92, 112, 72, 99, 97, 26, 87, 187, 123, 46, 50, 90, 202, 117, 73, 10, 153, 47,
+				224, 178, 163, 77, 48, 46, 154, 33, 148, 34, 228, 33, 172, 216, 89, 46, 225, 127, 68, 146, 234, 30, 147,
+				54, 146, 5, 133, 45, 78, 254, 85, 55, 75, 213, 86, 194, 218, 215, 163, 189, 194, 54, 6, 83, 36, 18, 153,
+				53, 7, 48, 89, 35, 66, 144, 7, 65, 154, 13, 97, 75, 55, 230, 132, 3, 13, 239, 71 }));
+
+		BigInteger exponent = new BigInteger(1, Base64Util.unsignedToBytes(new int[] { 1, 0, 1 }));
+
+		BigInteger privateExponent = new BigInteger(1, Base64Util.unsignedToBytes(new int[] { 84, 80, 150, 58, 165, 235,
+				242, 123, 217, 55, 38, 154, 36, 181, 221, 156, 211, 215, 100, 164, 90, 88, 40, 228, 83, 148, 54, 122, 4,
+				16, 165, 48, 76, 194, 26, 107, 51, 53, 179, 165, 31, 18, 198, 173, 78, 61, 56, 97, 252, 158, 140, 80,
+				63, 25, 223, 156, 36, 203, 214, 252, 120, 67, 180, 167, 3, 82, 243, 25, 97, 214, 83, 133, 69, 16, 104,
+				54, 160, 200, 41, 83, 164, 187, 70, 153, 111, 234, 242, 158, 175, 28, 198, 48, 211, 45, 148, 58, 23, 62,
+				227, 74, 52, 117, 42, 90, 41, 249, 130, 154, 80, 119, 61, 26, 193, 40, 125, 10, 152, 174, 227, 225, 205,
+				32, 62, 66, 6, 163, 100, 99, 219, 19, 253, 25, 105, 80, 201, 29, 252, 157, 237, 69, 1, 80, 171, 167, 20,
+				196, 156, 109, 249, 88, 0, 3, 152, 38, 165, 72, 87, 6, 152, 71, 156, 214, 16, 71, 30, 82, 51, 103, 76,
+				218, 63, 9, 84, 163, 249, 91, 215, 44, 238, 85, 101, 240, 148, 1, 82, 224, 91, 135, 105, 127, 84, 171,
+				181, 152, 210, 183, 126, 24, 46, 196, 90, 173, 38, 245, 219, 186, 222, 27, 240, 212, 194, 15, 66, 135,
+				226, 178, 190, 52, 245, 74, 65, 224, 81, 100, 85, 25, 204, 165, 203, 187, 175, 84, 100, 82, 15, 11, 23,
+				202, 151, 107, 54, 41, 207, 3, 136, 229, 134, 131, 93, 139, 50, 182, 204, 93, 130, 89 }));
+
+		PublicKey publicKey = new RSAPublicKeyImpl(modulus, exponent);
+		RSAPrivateKey rsaPrivateKey = new RSAPrivateKey(modulus, privateExponent);
+
+		// Encrypt
+		JweEncrypterImpl encrypter = new JweEncrypterImpl(KeyEncryptionAlgorithm.RSA1_5,
+				BlockEncryptionAlgorithm.A256CBC_PLUS_HS512, publicKey);
+		String encodedJweEncryptedKey = encrypter.generateEncryptedKey(cmk);
+
+		byte[] initVector = Base64Util
+				.unsignedToBytes(new int[] { 3, 22, 60, 12, 43, 67, 104, 105, 108, 108, 105, 99, 111, 116, 104, 101 });
+		String encodedInitVector = Base64Util.base64urlencode(initVector);
+		assertEquals(encodedInitVector, "AxY8DCtDaGlsbGljb3RoZQ");
+
+		String additionalAuthenticatedData = encodedHeader + "." + encodedJweEncryptedKey + "." + encodedInitVector;
+
+		Pair<String, String> cipherTextAndIntegrityValue = encrypter.generateCipherTextAndIntegrityValue(cmk,
+				initVector, additionalAuthenticatedData.getBytes(Util.UTF8_STRING_ENCODING),
+				plainText.getBytes(Util.UTF8_STRING_ENCODING));
+		String encodedCipherText = cipherTextAndIntegrityValue.getFirst();
+		String encodedAuthenticationTag = cipherTextAndIntegrityValue.getSecond();
+
+		String encodedJwe = encodedHeader + "." + encodedJweEncryptedKey + "." + encodedInitVector + "."
+				+ encodedCipherText + "." + encodedAuthenticationTag;
+		System.out.println("JWE: " + encodedJwe);
+
+		// Decrypt
+		JweDecrypterImpl decrypter = new JweDecrypterImpl(rsaPrivateKey);
+		decrypter.setKeyEncryptionAlgorithm(KeyEncryptionAlgorithm.RSA1_5);
+		decrypter.setBlockEncryptionAlgorithm(BlockEncryptionAlgorithm.A256CBC_PLUS_HS512);
+		byte[] encryptionKey = decrypter.decryptEncryptionKey(encodedJweEncryptedKey);
+		assertEquals(encryptionKey, cmk);
+
+		String decodedPlainText = decrypter.decryptCipherText(encodedCipherText, encryptionKey, initVector,
+				Base64Util.base64urldecode(encodedAuthenticationTag),
+				additionalAuthenticatedData.getBytes(Util.UTF8_STRING_ENCODING));
+		assertEquals(decodedPlainText, plainText);
+	}
+
+	@Test
+	public void cryptoTest4() throws Exception {
+		showTitle("Test: alg = A128KW, enc = A128GCM");
+
+		// {"alg":"A128KW","enc":"A128GCM"}
+		String encodedHeader = "eyJhbGciOiJBMTI4S1ciLCJlbmMiOiJBMTI4R0NNIn0";
+		String plainText = "The true sign of intelligence is not knowledge but imagination.";
+		byte[] cmk = Base64Util.unsignedToBytes(
+				new int[] { 64, 154, 239, 170, 64, 40, 195, 99, 19, 84, 192, 142, 192, 238, 207, 217 });
+
+		byte[] sharedSymmetricKey = Base64Util.unsignedToBytes(
+				new int[] { 25, 172, 32, 130, 225, 114, 26, 181, 138, 106, 254, 192, 95, 133, 74, 82 });
+
+		// Encrypt
+		JweEncrypterImpl encrypter = new JweEncrypterImpl(KeyEncryptionAlgorithm.A128KW,
+				BlockEncryptionAlgorithm.A128GCM, sharedSymmetricKey);
+		String encodedEncryptedKey = encrypter.generateEncryptedKey(cmk);
+		assertEquals(encodedEncryptedKey, "pP_7AUDIQcgixVGPK9PwJr-htXV3RCxQ");
+
+		byte[] initVector = Base64Util
+				.unsignedToBytes(new int[] { 253, 220, 80, 25, 166, 152, 178, 168, 97, 99, 67, 89 });
+		String encodedInitVector = Base64Util.base64urlencode(initVector);
+		assertEquals(encodedInitVector, "_dxQGaaYsqhhY0NZ");
+
+		String additionalAuthenticatedData = encodedHeader + "." + encodedEncryptedKey + "." + encodedInitVector;
+
+		Pair<String, String> cipherTextAndIntegrityValue = encrypter.generateCipherTextAndIntegrityValue(cmk,
+				initVector, additionalAuthenticatedData.getBytes(Util.UTF8_STRING_ENCODING),
+				plainText.getBytes(Util.UTF8_STRING_ENCODING));
+		String encodedCipherText = cipherTextAndIntegrityValue.getFirst();
+		String encodedAuthenticationTag = cipherTextAndIntegrityValue.getSecond();
+
+		assertEquals(encodedCipherText,
+				"4wxZhLkQ-F2RVzWCX3M-aIpgbUd806VnymMVwQTiVOX-apDxJ1aUhKBoWOjkbVUHVlCGaqYYXMfSvJm72kXj");
+		assertEquals(encodedAuthenticationTag, "miNQayWUUQZnBDzOq6VxQw");
+
+		String encodedJwe = encodedHeader + "." + encodedEncryptedKey + "." + encodedInitVector + "."
+				+ encodedCipherText + "." + encodedAuthenticationTag;
+		System.out.println("JWE: " + encodedJwe);
+
+		// Decrypt
+		JweDecrypterImpl decrypter = new JweDecrypterImpl(sharedSymmetricKey);
+		decrypter.setKeyEncryptionAlgorithm(KeyEncryptionAlgorithm.A128KW);
+		decrypter.setBlockEncryptionAlgorithm(BlockEncryptionAlgorithm.A128GCM);
+		byte[] encryptionKey = decrypter.decryptEncryptionKey(encodedEncryptedKey);
+		assertEquals(encryptionKey, cmk);
+
+		String decodedPlainText = decrypter.decryptCipherText(encodedCipherText, encryptionKey, initVector,
+				Base64Util.base64urldecode(encodedAuthenticationTag),
+				additionalAuthenticatedData.getBytes(Util.UTF8_STRING_ENCODING));
+		assertEquals(decodedPlainText, plainText);
+	}
+
+	@Test
+	public void cryptoTest5() throws Exception {
+		showTitle("Test: alg = A256KW, enc = A256GCM");
+
+		// {"alg":"A256KW","enc":"A256GCM"}
+		String encodedHeader = "eyJhbGciOiJBMjU2S1ciLCJlbmMiOiJBMjU2R0NNIn0";
+		String plainText = "The true sign of intelligence is not knowledge but imagination.";
+		byte[] cmk = new byte[BlockEncryptionAlgorithm.A256GCM.getCmkLength() / 8];
+		SecureRandom random = new SecureRandom();
+		random.nextBytes(cmk);
+
+		byte[] sharedSymmetricKey = Base64Util.unsignedToBytes(
+				new int[] { 25, 172, 32, 130, 225, 114, 26, 181, 138, 106, 254, 192, 95, 133, 74, 82 });
+
+		// Encrypt
+		JweEncrypterImpl encrypter = new JweEncrypterImpl(KeyEncryptionAlgorithm.A256KW,
+				BlockEncryptionAlgorithm.A256GCM, sharedSymmetricKey);
+		String encodedEncryptedKey = encrypter.generateEncryptedKey(cmk);
+
+		byte[] initVector = Base64Util
+				.unsignedToBytes(new int[] { 253, 220, 80, 25, 166, 152, 178, 168, 97, 99, 67, 89 });
+		String encodedInitVector = Base64Util.base64urlencode(initVector);
+		assertEquals(encodedInitVector, "_dxQGaaYsqhhY0NZ");
+
+		String additionalAuthenticatedData = encodedHeader + "." + encodedEncryptedKey + "." + encodedInitVector;
+
+		Pair<String, String> cipherTextAndIntegrityValue = encrypter.generateCipherTextAndIntegrityValue(cmk,
+				initVector, additionalAuthenticatedData.getBytes(Util.UTF8_STRING_ENCODING),
+				plainText.getBytes(Util.UTF8_STRING_ENCODING));
+		String encodedCipherText = cipherTextAndIntegrityValue.getFirst();
+		String encodedAuthenticationTag = cipherTextAndIntegrityValue.getSecond();
+
+		String encodedJwe = encodedHeader + "." + encodedEncryptedKey + "." + encodedInitVector + "."
+				+ encodedCipherText + "." + encodedAuthenticationTag;
+		System.out.println("JWE: " + encodedJwe);
+
+		// Decrypt
+		JweDecrypterImpl decrypter = new JweDecrypterImpl(sharedSymmetricKey);
+		decrypter.setKeyEncryptionAlgorithm(KeyEncryptionAlgorithm.A256KW);
+		decrypter.setBlockEncryptionAlgorithm(BlockEncryptionAlgorithm.A256GCM);
+		byte[] encryptionKey = decrypter.decryptEncryptionKey(encodedEncryptedKey);
+		assertEquals(encryptionKey, cmk);
+
+		String decodedPlainText = decrypter.decryptCipherText(encodedCipherText, encryptionKey, initVector,
+				Base64Util.base64urldecode(encodedAuthenticationTag),
+				additionalAuthenticatedData.getBytes(Util.UTF8_STRING_ENCODING));
+		assertEquals(decodedPlainText, plainText);
+	}
+	*/
+}
\ No newline at end of file
diff --git a/oxAuth/Server/src/test/java/org/gluu/oxauth/comp/GrantServiceTest.java b/oxAuth/Server/src/test/java/org/gluu/oxauth/comp/GrantServiceTest.java
new file mode 100644
index 00000000..31437faf
--- /dev/null
+++ b/oxAuth/Server/src/test/java/org/gluu/oxauth/comp/GrantServiceTest.java
@@ -0,0 +1,69 @@
+/*
+ * oxAuth is available under the MIT License (2008). See http://opensource.org/licenses/MIT for full text.
+ *
+ * Copyright (c) 2014, Gluu
+ */
+
+package org.gluu.oxauth.comp;
+
+import org.gluu.oxauth.BaseComponentTest;
+import org.gluu.oxauth.model.ldap.TokenLdap;
+import org.gluu.oxauth.model.ldap.TokenType;
+import org.gluu.oxauth.service.GrantService;
+import org.gluu.oxauth.util.TokenHashUtil;
+import org.testng.annotations.Parameters;
+import org.testng.annotations.Test;
+
+import javax.inject.Inject;
+import java.util.Date;
+import java.util.UUID;
+
+/**
+ * @author Yuriy Zabrovarnyy
+ * @author Yuriy Movchan
+ * @version September 16, 2015
+ */
+
+public class GrantServiceTest extends BaseComponentTest {
+
+	private static final String TEST_TOKEN_CODE = UUID.randomUUID().toString();
+
+	@Inject
+	private GrantService grantService;
+
+	private static String m_clientId;
+
+	private static TokenLdap m_tokenLdap;
+
+	@Parameters(value = "clientId")
+	@Test
+	public void createTestToken(String clientId) {
+		this.m_clientId = clientId;
+		m_tokenLdap = createTestToken();
+		grantService.persist(m_tokenLdap);
+	}
+
+	@Test(dependsOnMethods = "createTestToken")
+	public void removeTestTokens() {
+		final TokenLdap t = grantService.getGrantByCode(TEST_TOKEN_CODE);
+		if (t != null) {
+			grantService.remove(t);
+		}
+	}
+
+	private TokenLdap createTestToken() {
+		final String grantId = GrantService.generateGrantId();
+		final String dn = grantService.buildDn(TokenHashUtil.hash(TEST_TOKEN_CODE));
+
+		final TokenLdap t = new TokenLdap();
+		t.setDn(dn);
+		t.setGrantId(grantId);
+		t.setClientId(m_clientId);
+		t.setTokenCode(TokenHashUtil.hash(TEST_TOKEN_CODE));
+		t.setTokenType(TokenType.ACCESS_TOKEN.getValue());
+		t.setCreationDate(new Date());
+		t.setExpirationDate(new Date());
+		return t;
+	}
+
+}
diff --git a/oxAuth/Server/src/test/java/org/gluu/oxauth/comp/IdGenServiceTest.java b/oxAuth/Server/src/test/java/org/gluu/oxauth/comp/IdGenServiceTest.java
new file mode 100644
index 00000000..22768d91
--- /dev/null
+++ b/oxAuth/Server/src/test/java/org/gluu/oxauth/comp/IdGenServiceTest.java
@@ -0,0 +1,105 @@
+/*
+ * oxAuth is available under the MIT License (2008). See http://opensource.org/licenses/MIT for full text.
+ *
+ * Copyright (c) 2014, Gluu
+ */
+
+package org.gluu.oxauth.comp;
+
+import java.io.IOException;
+import java.io.InputStream;
+import java.util.UUID;
+
+import javax.inject.Inject;
+
+import org.apache.commons.io.IOUtils;
+import org.apache.commons.lang.StringUtils;
+import org.gluu.model.ProgrammingLanguage;
+import org.gluu.model.custom.script.CustomScriptType;
+import org.gluu.model.custom.script.model.CustomScript;
+import org.gluu.oxauth.BaseComponentTest;
+import org.gluu.oxauth.idgen.ws.rs.IdGenService;
+import org.gluu.oxauth.model.config.ConfigurationFactory;
+import org.gluu.oxauth.service.custom.CustomScriptService;
+import org.gluu.persist.PersistenceEntryManager;
+import org.gluu.util.INumGenerator;
+import org.testng.Assert;
+import org.testng.annotations.Test;
+
+/**
+ * @author Yuriy Zabrovarnyy
+ * @version 0.9, 27/06/2013
+ */
+
+public class IdGenServiceTest extends BaseComponentTest {
+
+	@Inject
+	private ConfigurationFactory configurationFactory;
+
+	@Inject
+	private CustomScriptService customScriptService;
+
+	@Inject
+	private IdGenService idGenService;
+
+	@Inject
+	private PersistenceEntryManager ldapEntryManager;
+
+	private static String idCustomScriptDn;
+
+	private CustomScript buildIdCustomScriptEntry(String idScript) {
+		String customScriptId = UUID.randomUUID().toString();
+		String dn = customScriptService.buildDn(customScriptId);
+
+		CustomScript customScript = new CustomScript();
+		customScript.setDn(dn);
+		customScript.setInum(customScriptId);
+		customScript.setProgrammingLanguage(ProgrammingLanguage.PYTHON);
+		customScript.setScriptType(CustomScriptType.ID_GENERATOR);
+
+		customScript.setScript(idScript);
+
+		customScript.setName("test_id");
+		customScript.setLevel(0);
+		customScript.setEnabled(true);
+		customScript.setRevision(1);
+
+		return customScript;
+	}
+
+	@Test
+	public void loadCustomScript() {
+		final InputStream inputStream = IdGenServiceTest.class.getResourceAsStream("/id/gen/SampleIdGenerator.py");
+		try {
+			final String idScript = IOUtils.toString(inputStream);
+			CustomScript idCustomScript = buildIdCustomScriptEntry(idScript);
+			this.idCustomScriptDn = idCustomScript.getDn();
+
+			ldapEntryManager.persist(idCustomScript);
+		} catch (IOException e) {
+			throw new RuntimeException(e);
+		} finally {
+			IOUtils.closeQuietly(inputStream);
+		}
+	}
+
+	@Test(dependsOnMethods = "loadCustomScript")
+	public void testCustomIdGenerationByPythonScript() {
+		final String uuid = idGenService.generateId("test", "");
+		System.out.println("Generated Id: " + uuid);
+		Assert.assertFalse(StringUtils.isNotBlank(uuid));
+
+		final String invalidUuid = idGenService.generateId("", "");
+		System.out.println("Generated invalid Id: " + invalidUuid);
+		Assert.assertFalse(StringUtils.equalsIgnoreCase(invalidUuid, "invalid"));
+	}
+
+	@Test(dependsOnMethods = "testCustomIdGenerationByPythonScript")
+	public void removeCustomScript() {
+		CustomScript customScript = new CustomScript();
+		customScript.setDn(this.idCustomScriptDn);
+
+		ldapEntryManager.remove(customScript);
+	}
+
+}
diff --git a/oxAuth/Server/src/test/java/org/gluu/oxauth/comp/InumGeneratorTest.java b/oxAuth/Server/src/test/java/org/gluu/oxauth/comp/InumGeneratorTest.java
new file mode 100644
index 00000000..7bc474cf
--- /dev/null
+++ b/oxAuth/Server/src/test/java/org/gluu/oxauth/comp/InumGeneratorTest.java
@@ -0,0 +1,34 @@
+/*
+ * oxAuth is available under the MIT License (2008). See http://opensource.org/licenses/MIT for full text.
+ *
+ * Copyright (c) 2014, Gluu
+ */
+
+package org.gluu.oxauth.comp;
+
+import javax.inject.Inject;
+
+import org.apache.commons.lang.StringUtils;
+import org.gluu.oxauth.BaseComponentTest;
+import org.gluu.oxauth.idgen.ws.rs.InumGenerator;
+import org.gluu.oxauth.model.common.IdType;
+import org.testng.Assert;
+import org.testng.annotations.Test;
+
+/**
+ * @author Yuriy Zabrovarnyy
+ * @version 0.9, 26/06/2013
+ */
+
+public class InumGeneratorTest extends BaseComponentTest {
+
+	@Inject
+	private InumGenerator inumGenerator;
+
+	@Test
+	public void test() {
+		final String inum = inumGenerator.generateId(IdType.CLIENTS, "@!1111");
+		Assert.assertTrue(StringUtils.isNotBlank(inum));
+	}
+
+}
diff --git a/oxAuth/Server/src/test/java/org/gluu/oxauth/comp/JwtCrossCheckTest.java b/oxAuth/Server/src/test/java/org/gluu/oxauth/comp/JwtCrossCheckTest.java
new file mode 100644
index 00000000..68f79ca6
--- /dev/null
+++ b/oxAuth/Server/src/test/java/org/gluu/oxauth/comp/JwtCrossCheckTest.java
@@ -0,0 +1,194 @@
+package org.gluu.oxauth.comp;
+
+import com.nimbusds.jose.JWSHeader;
+import com.nimbusds.jose.JWSSigner;
+import com.nimbusds.jose.JWSVerifier;
+import com.nimbusds.jose.crypto.ECDSAVerifier;
+import com.nimbusds.jose.crypto.RSASSASigner;
+import com.nimbusds.jose.crypto.RSASSAVerifier;
+import com.nimbusds.jose.jwk.ECKey;
+import com.nimbusds.jose.jwk.RSAKey;
+import com.nimbusds.jwt.JWTClaimsSet;
+import com.nimbusds.jwt.SignedJWT;
+import org.gluu.oxauth.BaseTest;
+import org.gluu.oxauth.model.crypto.OxAuthCryptoProvider;
+import org.gluu.oxauth.model.crypto.signature.AlgorithmFamily;
+import org.gluu.oxauth.model.crypto.signature.ECDSAPublicKey;
+import org.gluu.oxauth.model.crypto.signature.RSAPublicKey;
+import org.gluu.oxauth.model.crypto.signature.SignatureAlgorithm;
+import org.gluu.oxauth.model.jwk.Use;
+import org.gluu.oxauth.model.jws.AbstractJwsSigner;
+import org.gluu.oxauth.model.jws.ECDSASigner;
+import org.gluu.oxauth.model.jws.RSASigner;
+import org.gluu.oxauth.model.jwt.Jwt;
+import org.gluu.oxauth.model.jwt.JwtType;
+import org.testng.annotations.Parameters;
+import org.testng.annotations.Test;
+
+import java.security.KeyStoreException;
+import java.security.interfaces.ECPublicKey;
+import java.util.Date;
+import java.util.List;
+
+import static org.testng.Assert.assertTrue;
+import static org.testng.AssertJUnit.assertNotNull;
+
+/**
+ * @author Yuriy Zabrovarnyy
+ */
+public class JwtCrossCheckTest extends BaseTest {
+
+    @Parameters({ "dnName", "keyStoreFile", "keyStoreSecret" })
+    @Test
+    public void rs256CrossCheck(final String dnName,
+                              final String keyStoreFile,
+                              final String keyStoreSecret) throws Exception {
+        crossCheck(new OxAuthCryptoProvider(keyStoreFile, keyStoreSecret, dnName), SignatureAlgorithm.RS256);
+    }
+
+    @Parameters({ "dnName", "keyStoreFile", "keyStoreSecret" })
+    @Test
+    public void rs384CrossCheck(final String dnName,
+                                final String keyStoreFile,
+                                final String keyStoreSecret) throws Exception {
+        crossCheck(new OxAuthCryptoProvider(keyStoreFile, keyStoreSecret, dnName), SignatureAlgorithm.RS384);
+    }
+
+    @Parameters({ "dnName", "keyStoreFile", "keyStoreSecret" })
+    @Test
+    public void rs512CrossCheck(final String dnName,
+                                final String keyStoreFile,
+                                final String keyStoreSecret) throws Exception {
+        crossCheck(new OxAuthCryptoProvider(keyStoreFile, keyStoreSecret, dnName), SignatureAlgorithm.RS512);
+    }
+
+    @Parameters({ "dnName", "keyStoreFile", "keyStoreSecret" })
+    @Test
+    public void es256CrossCheck(final String dnName,
+                                final String keyStoreFile,
+                                final String keyStoreSecret) throws Exception {
+        crossCheck(new OxAuthCryptoProvider(keyStoreFile, keyStoreSecret, dnName), SignatureAlgorithm.ES256);
+    }
+
+    @Parameters({ "dnName", "keyStoreFile", "keyStoreSecret" })
+    @Test
+    public void es384CrossCheck(final String dnName,
+                                final String keyStoreFile,
+                                final String keyStoreSecret) throws Exception {
+        crossCheck(new OxAuthCryptoProvider(keyStoreFile, keyStoreSecret, dnName), SignatureAlgorithm.ES384);
+    }
+
+    @Parameters({ "dnName", "keyStoreFile", "keyStoreSecret" })
+    @Test
+    public void es512CrossCheck(final String dnName,
+                                final String keyStoreFile,
+                                final String keyStoreSecret) throws Exception {
+        crossCheck(new OxAuthCryptoProvider(keyStoreFile, keyStoreSecret, dnName), SignatureAlgorithm.ES512);
+    }
+
+    private void crossCheck(OxAuthCryptoProvider cryptoProvider, SignatureAlgorithm signatureAlgorithm) throws Exception {
+        final String kid = getKeyIdByAlgorithm(signatureAlgorithm, Use.SIGNATURE, cryptoProvider);
+
+        System.out.println(String.format("Cross check for %s ...", signatureAlgorithm.getName()));
+        final String nimbusJwt = createNimbusJwt(cryptoProvider, kid, signatureAlgorithm);
+        validate(nimbusJwt, cryptoProvider, kid, signatureAlgorithm);
+
+        final String oxauthJwt = createOxauthJwt(cryptoProvider, kid, signatureAlgorithm);
+        validate(oxauthJwt, cryptoProvider, kid, signatureAlgorithm);
+        System.out.println(String.format("Finished cross check for %s.", signatureAlgorithm.getName()));
+    }
+
+    private static void validate(String jwtAsString, OxAuthCryptoProvider cryptoProvider, String kid, SignatureAlgorithm signatureAlgorithm) throws Exception {
+
+        SignedJWT signedJWT = SignedJWT.parse(jwtAsString);
+        Jwt jwt = Jwt.parse(jwtAsString);
+        JWSVerifier nimbusVerifier = null;
+        AbstractJwsSigner oxauthVerifier = null;
+        switch (signatureAlgorithm.getFamily()) {
+            case EC:
+                final ECKey ecKey = ECKey.load(cryptoProvider.getKeyStore(), kid, cryptoProvider.getKeyStoreSecret().toCharArray());
+                final ECPublicKey ecPublicKey = ecKey.toECPublicKey();
+                nimbusVerifier = new ECDSAVerifier(ecKey);
+                oxauthVerifier = new ECDSASigner(jwt.getHeader().getSignatureAlgorithm(), new ECDSAPublicKey(jwt.getHeader().getSignatureAlgorithm(), ecPublicKey.getW().getAffineX(), ecPublicKey.getW().getAffineY()));
+                break;
+            case RSA:
+                RSAKey rsaKey = RSAKey.load(cryptoProvider.getKeyStore(), kid, cryptoProvider.getKeyStoreSecret().toCharArray());
+                final java.security.interfaces.RSAPublicKey rsaPublicKey = rsaKey.toRSAPublicKey();
+                nimbusVerifier = new RSASSAVerifier(rsaKey);
+                oxauthVerifier = new RSASigner(signatureAlgorithm, new RSAPublicKey(rsaPublicKey.getModulus(), rsaPublicKey.getPublicExponent()));
+                break;
+        }
+
+        assertNotNull(nimbusVerifier);
+        assertNotNull(oxauthVerifier);
+
+        // Nimbus
+        assertTrue(signedJWT.verify(nimbusVerifier));
+
+        // oxauth cryptoProvider
+        boolean validJwt = cryptoProvider.verifySignature(jwt.getSigningInput(), jwt.getEncodedSignature(), kid,
+                null, null, jwt.getHeader().getSignatureAlgorithm());
+        assertTrue(validJwt);
+
+        // oxauth verifier
+        assertTrue(oxauthVerifier.validate(jwt));
+    }
+
+    private static String createNimbusJwt(OxAuthCryptoProvider cryptoProvider, String kid, SignatureAlgorithm signatureAlgorithm) throws Exception {
+        final AlgorithmFamily family = signatureAlgorithm.getFamily();
+
+        JWSSigner signer = null;
+        switch (family) {
+            case RSA:
+                signer = new RSASSASigner(RSAKey.load(cryptoProvider.getKeyStore(), kid, cryptoProvider.getKeyStoreSecret().toCharArray()));
+                break;
+            case EC:
+                signer = new com.nimbusds.jose.crypto.ECDSASigner(ECKey.load(cryptoProvider.getKeyStore(), kid, cryptoProvider.getKeyStoreSecret().toCharArray()));
+                break;
+        }
+
+        JWTClaimsSet claimsSet = new JWTClaimsSet.Builder()
+                .subject("1202.d50a4eeb-ab5d-474b-aaaf-e4aa47bc54a5")
+                .issuer("1202.d50a4eeb-ab5d-474b-aaaf-e4aa47bc54a5")
+                .expirationTime(new Date(1575559276888000L))
+                .issueTime(new Date(1575559276888000L))
+                .audience("https://gomer-vbox/oxauth/restv1/token")
+                .build();
+
+        SignedJWT signedJWT = new SignedJWT(
+                new JWSHeader.Builder(signatureAlgorithm.getJwsAlgorithm()).keyID(kid).build(),
+                claimsSet);
+
+        signedJWT.sign(signer);
+
+        return signedJWT.serialize();
+    }
+
+    private static String createOxauthJwt(OxAuthCryptoProvider cryptoProvider, String kid, SignatureAlgorithm algorithm) throws Exception {
+        Jwt jwt = new Jwt();
+
+        jwt.getHeader().setKeyId(kid);
+        jwt.getHeader().setType(JwtType.JWT);
+        jwt.getHeader().setAlgorithm(algorithm);
+
+        jwt.getClaims().setSubjectIdentifier("1202.d50a4eeb-ab5d-474b-aaaf-e4aa47bc54a5");
+        jwt.getClaims().setIssuer("1202.d50a4eeb-ab5d-474b-aaaf-e4aa47bc54a5");
+        jwt.getClaims().setExpirationTime(new Date(1575559276888000L));
+        jwt.getClaims().setIssuedAt(new Date(1575559276888000L));
+        jwt.getClaims().setAudience("https://gomer-vbox/oxauth/restv1/token");
+
+        String signature = cryptoProvider.sign(jwt.getSigningInput(), jwt.getHeader().getKeyId(), null, algorithm);
+        jwt.setEncodedSignature(signature);
+        return jwt.toString();
+    }
+
+    private static String getKeyIdByAlgorithm(SignatureAlgorithm algorithm, Use use, OxAuthCryptoProvider cryptoProvider) throws KeyStoreException {
+        final List<String> aliases = cryptoProvider.getKeys();
+        for (String keyId : aliases) {
+            if (keyId.endsWith(use.getParamName()  + "_" + algorithm.getName().toLowerCase())) {
+                return keyId;
+            }
+        }
+        return null;
+    }
+}
diff --git a/oxAuth/Server/src/test/java/org/gluu/oxauth/comp/KeyGenerationTest.java b/oxAuth/Server/src/test/java/org/gluu/oxauth/comp/KeyGenerationTest.java
new file mode 100644
index 00000000..a605cf87
--- /dev/null
+++ b/oxAuth/Server/src/test/java/org/gluu/oxauth/comp/KeyGenerationTest.java
@@ -0,0 +1,33 @@
+/*
+ * oxAuth is available under the MIT License (2008). See http://opensource.org/licenses/MIT for full text.
+ *
+ * Copyright (c) 2014, Gluu
+ */
+
+package org.gluu.oxauth.comp;
+
+import javax.inject.Inject;
+
+import org.gluu.oxauth.BaseTest;
+import org.gluu.oxauth.service.common.EncryptionService;
+import org.testng.annotations.Parameters;
+import org.testng.annotations.Test;
+
+/**
+ * @author Javier Rojas Blum Date: 05.30.2012
+ */
+public class KeyGenerationTest extends BaseTest {
+
+	@Inject
+	private EncryptionService encryptionService;
+
+	@Parameters({ "ldapAdminPassword" })
+	@Test
+	public void encryptLdapPassword(final String ldapAdminPassword) throws Exception {
+		showTitle("TEST: encryptLdapPassword");
+
+		String password = encryptionService.encrypt(ldapAdminPassword);
+		System.out.println("Encrypted LDAP Password: " + password);
+	}
+
+}
\ No newline at end of file
diff --git a/oxAuth/Server/src/test/java/org/gluu/oxauth/comp/LocaleTest.java b/oxAuth/Server/src/test/java/org/gluu/oxauth/comp/LocaleTest.java
new file mode 100644
index 00000000..aeef07d7
--- /dev/null
+++ b/oxAuth/Server/src/test/java/org/gluu/oxauth/comp/LocaleTest.java
@@ -0,0 +1,76 @@
+/*
+ * oxAuth is available under the MIT License (2008). See http://opensource.org/licenses/MIT for full text.
+ *
+ * Copyright (c) 2014, Gluu
+ */
+
+package org.gluu.oxauth.comp;
+
+import static org.testng.Assert.assertEquals;
+import static org.testng.Assert.assertNull;
+
+import java.util.Arrays;
+import java.util.List;
+import java.util.Locale;
+
+import org.gluu.oxauth.BaseTest;
+import org.gluu.util.locale.LocaleUtil;
+import org.testng.annotations.Test;
+
+/**
+ * @author Javier Rojas Blum Date: 11.27.2013
+ */
+public class LocaleTest extends BaseTest {
+
+	private List<Locale> availableLocales = Arrays.asList(new Locale("fr", "CA"), new Locale("fr"),
+			new Locale("en", "CA"), new Locale("en", "US"), new Locale("en", "GB"), new Locale("es", "BO"),
+			new Locale("en"), new Locale("zh", "HK"), new Locale("ja"));
+
+	@Test
+	public void localeMatch1() throws Exception {
+		List<String> requestedLocales = Arrays.asList("es_BO");
+
+		Locale matchingLocale = LocaleUtil.localeMatch(requestedLocales, availableLocales);
+		assertEquals(matchingLocale, new Locale("es", "BO"));
+	}
+
+	@Test
+	public void localeMatch2() throws Exception {
+		List<String> requestedLocales = Arrays.asList("es");
+
+		Locale matchingLocale = LocaleUtil.localeMatch(requestedLocales, availableLocales);
+		assertEquals(matchingLocale, new Locale("es", "BO"));
+	}
+
+	@Test
+	public void localeMatch3() throws Exception {
+		List<String> requestedLocales = Arrays.asList("en");
+
+		Locale matchingLocale = LocaleUtil.localeMatch(requestedLocales, availableLocales);
+		assertEquals(matchingLocale, new Locale("en"));
+	}
+
+	@Test
+	public void localeMatch4() throws Exception {
+		List<String> requestedLocales = Arrays.asList("hr");
+
+		Locale matchingLocale = LocaleUtil.localeMatch(requestedLocales, availableLocales);
+		assertNull(matchingLocale);
+	}
+
+	@Test
+	public void localeMatch5() throws Exception {
+		List<String> requestedLocales = Arrays.asList("zh", "TW");
+
+		Locale matchingLocale = LocaleUtil.localeMatch(requestedLocales, availableLocales);
+		assertEquals(matchingLocale, new Locale("zh", "HK"));
+	}
+
+	@Test
+	public void localeMatch6() throws Exception {
+		List<String> requestedLocales = Arrays.asList("en_AU");
+
+		Locale matchingLocale = LocaleUtil.localeMatch(requestedLocales, availableLocales);
+		assertEquals(matchingLocale, new Locale("en"));
+	}
+}
\ No newline at end of file
diff --git a/oxAuth/Server/src/test/java/org/gluu/oxauth/comp/SessionIdServiceTest.java b/oxAuth/Server/src/test/java/org/gluu/oxauth/comp/SessionIdServiceTest.java
new file mode 100644
index 00000000..0ce234d6
--- /dev/null
+++ b/oxAuth/Server/src/test/java/org/gluu/oxauth/comp/SessionIdServiceTest.java
@@ -0,0 +1,103 @@
+/*
+ * oxAuth is available under the MIT License (2008). See http://opensource.org/licenses/MIT for full text.
+ *
+ * Copyright (c) 2014, Gluu
+ */
+
+package org.gluu.oxauth.comp;
+
+import org.gluu.oxauth.BaseComponentTest;
+import org.gluu.oxauth.model.session.SessionId;
+import org.gluu.oxauth.model.session.SessionIdState;
+import org.gluu.oxauth.service.SessionIdService;
+import org.gluu.oxauth.service.common.UserService;
+import org.testng.Assert;
+import org.testng.annotations.Parameters;
+import org.testng.annotations.Test;
+
+import javax.inject.Inject;
+import java.util.Date;
+import java.util.HashMap;
+import java.util.Map;
+
+import static org.testng.Assert.*;
+
+/**
+ * @author Yuriy Zabrovarnyy
+ * @author Javier Rojas Blum
+ * @author Yuriy Movchan
+ * @version August 9, 2017
+ */
+public class SessionIdServiceTest extends BaseComponentTest {
+
+    @Inject
+    private SessionIdService m_service;
+
+    @Inject
+    private UserService userService;
+
+    private SessionId generateSession(String userInum) {
+        String userDn = userService.getDnForUser(userInum);
+        return m_service.generateUnauthenticatedSessionId(userDn, new Date(), SessionIdState.UNAUTHENTICATED,
+                new HashMap<String, String>(), true);
+    }
+
+    @Parameters({"userInum"})
+    @Test
+    public void statePersistence(String userInum) {
+        String userDn = userService.getDnForUser(userInum);
+        SessionId newId = m_service.generateAuthenticatedSessionId(null, userDn);
+
+        Assert.assertEquals(newId.getState(), SessionIdState.AUTHENTICATED);
+
+        Map<String, String> sessionAttributes = new HashMap<String, String>();
+        sessionAttributes.put("k1", "v1");
+        newId.setSessionAttributes(sessionAttributes);
+
+        m_service.updateSessionId(newId);
+
+        final SessionId fresh = m_service.getSessionId(newId.getId());
+        Assert.assertEquals(fresh.getState(), SessionIdState.AUTHENTICATED);
+        Assert.assertTrue(fresh.getSessionAttributes().containsKey("k1"));
+        Assert.assertTrue(fresh.getSessionAttributes().containsValue("v1"));
+    }
+
+    @Parameters({"userInum"})
+    @Test
+    public void testUpdateLastUsedDate(String userInum) {
+        SessionId m_sessionId = generateSession(userInum);
+        final SessionId fromLdap1 = m_service.getSessionId(m_sessionId.getId());
+        final Date createdDate = m_sessionId.getLastUsedAt();
+        System.out.println("Created date = " + createdDate);
+        Assert.assertEquals(createdDate, fromLdap1.getLastUsedAt());
+
+        sleepSeconds(1);
+        m_service.updateSessionId(m_sessionId);
+
+        final SessionId fromLdap2 = m_service.getSessionId(m_sessionId.getId());
+        System.out.println("Updated date = " + fromLdap2.getLastUsedAt());
+        Assert.assertTrue(createdDate.before(fromLdap2.getLastUsedAt()));
+    }
+
+    @Parameters({"userInum"})
+    @Test
+    public void testUpdateAttributes(String userInum) {
+        SessionId m_sessionId = generateSession(userInum);
+        final String clientId = "testClientId";
+        final SessionId fromLdap1 = m_service.getSessionId(m_sessionId.getId());
+        final Date createdDate = m_sessionId.getLastUsedAt();
+        assertEquals(createdDate, fromLdap1.getLastUsedAt());
+        assertFalse(fromLdap1.isPermissionGrantedForClient(clientId));
+
+        sleepSeconds(1);
+        m_sessionId.setAuthenticationTime(new Date());
+        m_sessionId.addPermission(clientId, true);
+        m_service.updateSessionId(m_sessionId);
+
+        final SessionId fromLdap2 = m_service.getSessionId(m_sessionId.getId());
+        assertTrue(createdDate.before(fromLdap2.getLastUsedAt()));
+        assertNotNull(fromLdap2.getAuthenticationTime());
+        assertTrue(fromLdap2.isPermissionGrantedForClient(clientId));
+    }
+
+}
diff --git a/oxAuth/Server/src/test/java/org/gluu/oxauth/comp/SignatureTest.java b/oxAuth/Server/src/test/java/org/gluu/oxauth/comp/SignatureTest.java
new file mode 100644
index 00000000..2c3a45bb
--- /dev/null
+++ b/oxAuth/Server/src/test/java/org/gluu/oxauth/comp/SignatureTest.java
@@ -0,0 +1,176 @@
+/*
+ * oxAuth is available under the MIT License (2008). See http://opensource.org/licenses/MIT for full text.
+ *
+ * Copyright (c) 2014, Gluu
+ */
+
+package org.gluu.oxauth.comp;
+
+import static org.testng.Assert.assertTrue;
+
+import org.gluu.oxauth.BaseTest;
+import org.gluu.oxauth.model.crypto.Certificate;
+import org.gluu.oxauth.model.crypto.Key;
+import org.gluu.oxauth.model.crypto.KeyFactory;
+import org.gluu.oxauth.model.crypto.signature.ECDSAKeyFactory;
+import org.gluu.oxauth.model.crypto.signature.ECDSAPrivateKey;
+import org.gluu.oxauth.model.crypto.signature.ECDSAPublicKey;
+import org.gluu.oxauth.model.crypto.signature.RSAKeyFactory;
+import org.gluu.oxauth.model.crypto.signature.RSAPrivateKey;
+import org.gluu.oxauth.model.crypto.signature.RSAPublicKey;
+import org.gluu.oxauth.model.crypto.signature.SignatureAlgorithm;
+import org.gluu.oxauth.model.jws.ECDSASigner;
+import org.gluu.oxauth.model.jws.RSASigner;
+import org.testng.annotations.Test;
+
+/**
+ * @author Javier Rojas Blum Date: 12.03.2012
+ */
+public class SignatureTest extends BaseTest {
+
+	@Test
+	public void generateRS256Keys() throws Exception {
+		showTitle("TEST: generateRS256Keys");
+
+		KeyFactory<RSAPrivateKey, RSAPublicKey> keyFactory = new RSAKeyFactory(SignatureAlgorithm.RS256,
+				"CN=Test CA Certificate");
+
+		Key<RSAPrivateKey, RSAPublicKey> key = keyFactory.getKey();
+
+		RSAPrivateKey privateKey = key.getPrivateKey();
+		RSAPublicKey publicKey = key.getPublicKey();
+		Certificate certificate = key.getCertificate();
+
+		System.out.println(key);
+
+		String signingInput = "Hello World!";
+		RSASigner rsaSigner1 = new RSASigner(SignatureAlgorithm.RS256, privateKey);
+		String signature = rsaSigner1.generateSignature(signingInput);
+		RSASigner rsaSigner2 = new RSASigner(SignatureAlgorithm.RS256, publicKey);
+		assertTrue(rsaSigner2.validateSignature(signingInput, signature));
+		RSASigner rsaSigner3 = new RSASigner(SignatureAlgorithm.RS256, certificate);
+		assertTrue(rsaSigner3.validateSignature(signingInput, signature));
+	}
+
+	@Test
+	public void generateRS384Keys() throws Exception {
+		showTitle("TEST: generateRS384Keys");
+
+		KeyFactory<RSAPrivateKey, RSAPublicKey> keyFactory = new RSAKeyFactory(SignatureAlgorithm.RS384,
+				"CN=Test CA Certificate");
+
+		Key<RSAPrivateKey, RSAPublicKey> key = keyFactory.getKey();
+
+		RSAPrivateKey privateKey = key.getPrivateKey();
+		RSAPublicKey publicKey = key.getPublicKey();
+		Certificate certificate = key.getCertificate();
+
+		System.out.println(key);
+
+		String signingInput = "Hello World!";
+		RSASigner rsaSigner1 = new RSASigner(SignatureAlgorithm.RS384, privateKey);
+		String signature = rsaSigner1.generateSignature(signingInput);
+		RSASigner rsaSigner2 = new RSASigner(SignatureAlgorithm.RS384, publicKey);
+		assertTrue(rsaSigner2.validateSignature(signingInput, signature));
+		RSASigner rsaSigner3 = new RSASigner(SignatureAlgorithm.RS384, certificate);
+		assertTrue(rsaSigner3.validateSignature(signingInput, signature));
+	}
+
+	@Test
+	public void generateRS512Keys() throws Exception {
+		showTitle("TEST: generateRS512Keys");
+
+		KeyFactory<RSAPrivateKey, RSAPublicKey> keyFactory = new RSAKeyFactory(SignatureAlgorithm.RS512,
+				"CN=Test CA Certificate");
+
+		Key<RSAPrivateKey, RSAPublicKey> key = keyFactory.getKey();
+
+		RSAPrivateKey privateKey = key.getPrivateKey();
+		RSAPublicKey publicKey = key.getPublicKey();
+		Certificate certificate = key.getCertificate();
+
+		System.out.println(key);
+
+		String signingInput = "Hello World!";
+		RSASigner rsaSigner1 = new RSASigner(SignatureAlgorithm.RS512, privateKey);
+		String signature = rsaSigner1.generateSignature(signingInput);
+		RSASigner rsaSigner2 = new RSASigner(SignatureAlgorithm.RS512, publicKey);
+		assertTrue(rsaSigner2.validateSignature(signingInput, signature));
+		RSASigner rsaSigner3 = new RSASigner(SignatureAlgorithm.RS512, certificate);
+		assertTrue(rsaSigner3.validateSignature(signingInput, signature));
+	}
+
+	@Test
+	public void generateES256Keys() throws Exception {
+		showTitle("TEST: generateES256Keys");
+
+		KeyFactory<ECDSAPrivateKey, ECDSAPublicKey> keyFactory = new ECDSAKeyFactory(SignatureAlgorithm.ES256,
+				"CN=Test CA Certificate");
+
+		Key<ECDSAPrivateKey, ECDSAPublicKey> key = keyFactory.getKey();
+
+		ECDSAPrivateKey privateKey = key.getPrivateKey();
+		ECDSAPublicKey publicKey = key.getPublicKey();
+		Certificate certificate = key.getCertificate();
+
+		System.out.println(key);
+
+		String signingInput = "Hello World!";
+		ECDSASigner ecdsaSigner1 = new ECDSASigner(SignatureAlgorithm.ES256, privateKey);
+		String signature = ecdsaSigner1.generateSignature(signingInput);
+		ECDSASigner ecdsaSigner2 = new ECDSASigner(SignatureAlgorithm.ES256, publicKey);
+		assertTrue(ecdsaSigner2.validateSignature(signingInput, signature));
+		ECDSASigner ecdsaSigner3 = new ECDSASigner(SignatureAlgorithm.ES256, certificate);
+		assertTrue(ecdsaSigner3.validateSignature(signingInput, signature));
+	}
+
+	@Test
+	public void generateES384Keys() throws Exception {
+		showTitle("TEST: generateES384Keys");
+
+		KeyFactory<ECDSAPrivateKey, ECDSAPublicKey> keyFactory = new ECDSAKeyFactory(SignatureAlgorithm.ES384,
+				"CN=Test CA Certificate");
+
+		Key<ECDSAPrivateKey, ECDSAPublicKey> key = keyFactory.getKey();
+
+		ECDSAPrivateKey privateKey = key.getPrivateKey();
+		ECDSAPublicKey publicKey = key.getPublicKey();
+		Certificate certificate = key.getCertificate();
+
+		System.out.println(key);
+
+		String signingInput = "Hello World!";
+		ECDSASigner ecdsaSigner1 = new ECDSASigner(SignatureAlgorithm.ES384, privateKey);
+		String signature = ecdsaSigner1.generateSignature(signingInput);
+		ECDSASigner ecdsaSigner2 = new ECDSASigner(SignatureAlgorithm.ES384, publicKey);
+		assertTrue(ecdsaSigner2.validateSignature(signingInput, signature));
+		ECDSASigner ecdsaSigner3 = new ECDSASigner(SignatureAlgorithm.ES384, certificate);
+		assertTrue(ecdsaSigner3.validateSignature(signingInput, signature));
+	}
+
+	@Test
+	public void generateES512Keys() throws Exception {
+		showTitle("TEST: generateES512Keys");
+
+		KeyFactory<ECDSAPrivateKey, ECDSAPublicKey> keyFactory = new ECDSAKeyFactory(SignatureAlgorithm.ES512,
+				"CN=Test CA Certificate");
+		ECDSAPrivateKey privateKey = keyFactory.getPrivateKey();
+		ECDSAPublicKey publicKey = keyFactory.getPublicKey();
+		Certificate certificate = keyFactory.getCertificate();
+
+		System.out.println("PRIVATE KEY");
+		System.out.println(privateKey);
+		System.out.println("PUBLIC KEY");
+		System.out.println(publicKey);
+		System.out.println("CERTIFICATE");
+		System.out.println(certificate);
+
+		String signingInput = "Hello World!";
+		ECDSASigner ecdsaSigner1 = new ECDSASigner(SignatureAlgorithm.ES512, privateKey);
+		String signature = ecdsaSigner1.generateSignature(signingInput);
+		ECDSASigner ecdsaSigner2 = new ECDSASigner(SignatureAlgorithm.ES512, publicKey);
+		assertTrue(ecdsaSigner2.validateSignature(signingInput, signature));
+		ECDSASigner ecdsaSigner3 = new ECDSASigner(SignatureAlgorithm.ES512, certificate);
+		assertTrue(ecdsaSigner3.validateSignature(signingInput, signature));
+	}
+}
\ No newline at end of file
diff --git a/oxAuth/Server/src/test/java/org/gluu/oxauth/comp/UmaResourceServiceTest.java b/oxAuth/Server/src/test/java/org/gluu/oxauth/comp/UmaResourceServiceTest.java
new file mode 100644
index 00000000..a24b1b9a
--- /dev/null
+++ b/oxAuth/Server/src/test/java/org/gluu/oxauth/comp/UmaResourceServiceTest.java
@@ -0,0 +1,100 @@
+package org.gluu.oxauth.comp;
+
+import org.gluu.oxauth.BaseComponentTest;
+import org.gluu.oxauth.model.config.StaticConfiguration;
+import org.gluu.oxauth.model.registration.Client;
+import org.gluu.oxauth.model.token.HandleTokenFactory;
+import org.gluu.oxauth.model.uma.persistence.UmaResource;
+import org.gluu.oxauth.service.ClientService;
+import org.gluu.oxauth.service.common.InumService;
+import org.gluu.oxauth.uma.service.UmaResourceService;
+import org.gluu.util.security.StringEncrypter;
+import org.testng.annotations.Test;
+import org.testng.collections.Lists;
+
+import javax.inject.Inject;
+import java.util.Calendar;
+import java.util.GregorianCalendar;
+import java.util.TimeZone;
+import java.util.UUID;
+
+import static org.junit.Assert.assertNotNull;
+
+/**
+ * @author Yuriy Zabrovarnyy
+ */
+public class UmaResourceServiceTest extends BaseComponentTest {
+
+    @Inject
+    private StaticConfiguration staticConfiguration;
+    @Inject
+    private ClientService clientService;
+    @Inject
+    private InumService inumService;
+    @Inject
+    private UmaResourceService umaResourceService;
+
+    @Test
+    public void umaResource_independentFromDeletableFlag_shouldBeSearchable() throws StringEncrypter.EncryptionException {
+        final Client client = createClient();
+
+        clientService.persist(client);
+
+        // 1. create resource
+        UmaResource resource = new UmaResource();
+        resource.setName("Test resource");
+        resource.setScopes(Lists.newArrayList("view"));
+        resource.setId(UUID.randomUUID().toString());
+        resource.setDn(umaResourceService.getDnForResource(resource.getId()));
+        resource.setDeletable(false);
+
+        final Calendar calendar = Calendar.getInstance();
+        resource.setCreationDate(calendar.getTime());
+
+        umaResourceService.addResource(resource);
+
+        // 2. resource exists
+        assertNotNull(umaResourceService.getResourceById(resource.getId()));
+
+        // 4. resource exists
+        assertNotNull(umaResourceService.getResourceById(resource.getId()));
+
+        calendar.add(Calendar.MINUTE, -10);
+        resource.setExpirationDate(calendar.getTime());
+        resource.setDeletable(true);
+
+        umaResourceService.updateResource(resource, true);
+
+        // resource exists
+        assertNotNull(umaResourceService.getResourceById(resource.getId()));
+
+        // remove it
+        umaResourceService.remove(resource);
+    }
+
+    private Client createClient() throws StringEncrypter.EncryptionException {
+        return createClient(true);
+    }
+
+    private Client createClient(boolean deletable) throws StringEncrypter.EncryptionException {
+        String clientsBaseDN = staticConfiguration.getBaseDn().getClients();
+
+        String inum = inumService.generateClientInum();
+        String generatedClientSecret = UUID.randomUUID().toString();
+
+        final Client client = new Client();
+        client.setDn("inum=" + inum + "," + clientsBaseDN);
+        client.setClientName("Cleaner Timer Test");
+        client.setClientId(inum);
+        client.setClientSecret(clientService.encryptSecret(generatedClientSecret));
+        client.setRegistrationAccessToken(HandleTokenFactory.generateHandleToken());
+        client.setDeletable(deletable);
+
+        final Calendar calendar = new GregorianCalendar(TimeZone.getTimeZone("UTC"));
+        client.setClientIdIssuedAt(calendar.getTime());
+
+        calendar.add(Calendar.MINUTE, 10);
+        client.setExpirationDate(calendar.getTime());
+        return client;
+    }
+}
diff --git a/oxAuth/Server/src/test/java/org/gluu/oxauth/comp/UtilityMethodsTest.java b/oxAuth/Server/src/test/java/org/gluu/oxauth/comp/UtilityMethodsTest.java
new file mode 100644
index 00000000..6881af54
--- /dev/null
+++ b/oxAuth/Server/src/test/java/org/gluu/oxauth/comp/UtilityMethodsTest.java
@@ -0,0 +1,26 @@
+/*
+ * oxAuth is available under the MIT License (2008). See http://opensource.org/licenses/MIT for full text.
+ *
+ * Copyright (c) 2014, Gluu
+ */
+
+package org.gluu.oxauth.comp;
+
+import org.testng.annotations.Test;
+
+import static org.testng.Assert.assertEquals;
+
+import org.gluu.oxauth.model.common.AuthorizationGrantList;
+
+/**
+ * @author Yuriy Zabrovarnyy
+ * @version 0.9, 09/01/2013
+ */
+
+public class UtilityMethodsTest {
+
+	@Test
+	public void test() {
+	}
+
+}
diff --git a/oxAuth/Server/src/test/java/org/gluu/oxauth/dev/CacheGrantManual.java b/oxAuth/Server/src/test/java/org/gluu/oxauth/dev/CacheGrantManual.java
new file mode 100644
index 00000000..ea9ab739
--- /dev/null
+++ b/oxAuth/Server/src/test/java/org/gluu/oxauth/dev/CacheGrantManual.java
@@ -0,0 +1,168 @@
+/*
+ * oxAuth is available under the MIT License (2008). See http://opensource.org/licenses/MIT for full text.
+ *
+ * Copyright (c) 2014, Gluu
+ */
+
+package org.gluu.oxauth.dev;
+
+import java.io.IOException;
+import java.net.InetSocketAddress;
+import java.util.Date;
+import java.util.HashMap;
+import java.util.Random;
+import java.util.UUID;
+import java.util.concurrent.ExecutorService;
+import java.util.concurrent.Executors;
+import java.util.concurrent.ThreadFactory;
+
+import org.gluu.oxauth.model.common.CacheGrant;
+import org.gluu.oxauth.model.registration.Client;
+import org.gluu.oxauth.model.session.SessionId;
+import org.gluu.oxauth.model.common.User;
+
+import com.google.common.collect.Lists;
+import com.google.common.collect.Sets;
+
+import net.spy.memcached.DefaultConnectionFactory;
+import net.spy.memcached.MemcachedClient;
+import net.spy.memcached.internal.OperationFuture;
+import net.spy.memcached.ops.OperationStatus;
+
+/**
+ * @author yuriyz
+ * @version August 9, 2017
+ */
+public class CacheGrantManual {
+
+    private static final int CLIENT_COUNT = 10;
+    private static final Random RANDOM = new Random();
+
+    private static MemcachedClient createClients() throws IOException {
+        return new MemcachedClient(new DefaultConnectionFactory(100, 32768),
+                Lists.newArrayList(new InetSocketAddress("localhost", 11211)));
+    }
+
+    private static int random() {
+        int min = 0;
+        int max = CLIENT_COUNT;
+        return RANDOM.nextInt(max - min + 1) + min;
+    }
+
+    public static void main(String[] args) throws IOException {
+        final MemcachedClient client = createClients();
+        final ExecutorService executorService = Executors.newFixedThreadPool(1000, daemonThreadFactory());
+
+        int count = 10000;
+        final long start = System.currentTimeMillis();
+
+        for (int i = 0; i < count; i++) {
+            final int key = i;
+            executorService.execute(new Runnable() {
+                @Override
+                public void run() {
+                    // MemcachedClient client = clients.get(random);
+
+                    Object toPut = testGrant();
+                    // Object toPut = UUID.randomUUID().toString();
+
+                    OperationFuture<Boolean> set = null;
+                    for (int j = 0; j < 3; j++) {
+                        set = client.set(Integer.toString(key), 60, toPut);
+                    }
+
+                    OperationStatus status = set.getStatus(); // block
+
+                    System.out.println(
+                            " key: " + key + ", time: " + (new Date().getTime() - start) + "ms, set: " + status);
+
+                    executorService.execute(new Runnable() {
+                        @Override
+                        public void run() {
+
+                            int random = random();
+                            if (random % 3 == 0) {
+                                try {
+                                    Thread.sleep(10000);
+                                } catch (InterruptedException e) {
+                                    e.printStackTrace();
+                                }
+                            }
+
+                            Object get = client.get(Integer.toString(key));
+                            System.out.println("GET key: " + key + " result: " + get);
+                        }
+                    });
+                }
+            });
+        }
+
+        sleep(40);
+        // System.out.println(client.get("myKey"));
+        //
+        // client.set("myKey", 30, testState());
+        //
+        // sleep(12);
+        // System.out.println(client.get("myKey"));
+        //
+        // sleep(12);
+        // System.out.println(client.get("myKey"));
+        client.shutdown();
+
+    }
+
+    private static void sleep(int seconds) {
+        try {
+            Thread.sleep(seconds * 1000);
+        } catch (InterruptedException e) {
+            throw new RuntimeException(e);
+        }
+    }
+
+    public static ThreadFactory daemonThreadFactory() {
+        return new ThreadFactory() {
+            public Thread newThread(Runnable p_r) {
+                Thread thread = new Thread(p_r);
+                thread.setDaemon(true);
+                return thread;
+            }
+        };
+    }
+
+    private static SessionId testState() {
+        HashMap<String, String> map = new HashMap<String, String>();
+        map.put("mapKey", "mapValue");
+
+        SessionId state = new SessionId();
+        state.setUserDn("userDn");
+        state.setId(UUID.randomUUID().toString());
+        state.setLastUsedAt(new Date());
+        state.setSessionAttributes(map);
+        return state;
+    }
+
+    private static Client testClient() {
+        Client client = new Client();
+        client.setClientId(UUID.randomUUID().toString());
+        return client;
+    }
+
+    private static User testUser() {
+        User user = new User();
+        user.setUserId(UUID.randomUUID().toString());
+        return user;
+    }
+
+    private static CacheGrant testGrant() {
+        CacheGrant grant = new CacheGrant();
+        grant.setAcrValues("basic");
+        grant.setAuthenticationTime(new Date());
+        grant.setAuthorizationCodeString(UUID.randomUUID().toString());
+        grant.setClient(testClient());
+        grant.setGrantId(UUID.randomUUID().toString());
+        grant.setNonce(UUID.randomUUID().toString());
+        grant.setScopes(Sets.newHashSet("openid"));
+        grant.setUser(testUser());
+        return grant;
+    }
+}
diff --git a/oxAuth/Server/src/test/java/org/gluu/oxauth/dev/ConfSerialization.java b/oxAuth/Server/src/test/java/org/gluu/oxauth/dev/ConfSerialization.java
new file mode 100644
index 00000000..2099e13d
--- /dev/null
+++ b/oxAuth/Server/src/test/java/org/gluu/oxauth/dev/ConfSerialization.java
@@ -0,0 +1,104 @@
+/*
+ * oxAuth is available under the MIT License (2008). See http://opensource.org/licenses/MIT for full text.
+ *
+ * Copyright (c) 2014, Gluu
+ */
+
+package org.gluu.oxauth.dev;
+
+import org.gluu.oxauth.model.error.ErrorMessages;
+import org.gluu.oxauth.model.jwk.JSONWebKeySet;
+import org.gluu.oxauth.util.ServerUtil;
+import org.testng.Assert;
+import org.testng.annotations.Test;
+import org.gluu.model.error.ErrorMessage;
+import org.gluu.oxauth.model.config.BaseDnConfiguration;
+import org.gluu.oxauth.model.config.StaticConfiguration;
+
+import javax.xml.bind.JAXBContext;
+import javax.xml.bind.JAXBException;
+import javax.xml.bind.Unmarshaller;
+import java.io.File;
+import java.io.IOException;
+import java.net.URL;
+import java.util.List;
+
+/**
+ * @author Yuriy Zabrovarnyy
+ * @author Javier Rojas Blum
+ * @version 0.9 February 12, 2015
+ */
+
+public class ConfSerialization {
+
+	public static final String CONFIG_FOLDER = "U:\\own\\project\\oxAuth\\Server\\src\\main\\webapp\\WEB-INF\\";
+
+	public static <T> T loadXml(String p_fileName, Class p_clazz) {
+		final URL url = ConfSerialization.class.getResource(p_fileName);
+		try {
+			System.out.println("Loading configuration file: " + url);
+
+			JAXBContext jc = JAXBContext.newInstance(p_clazz);
+			Unmarshaller u = jc.createUnmarshaller();
+			return (T) u.unmarshal(url);
+		} catch (JAXBException e) {
+			System.out.println("Failed to get the configuration file: " + url);
+			e.printStackTrace();
+		}
+		return null;
+	}
+
+	public static <T> T loadJson(File p_file, Class p_clazz) {
+		try {
+			return (T) ServerUtil.createJsonMapper().readValue(p_file, p_clazz);
+		} catch (Exception e) {
+			System.out.println("Failed to load json from file: " + p_file.getPath());
+			e.printStackTrace();
+		}
+		return null;
+	}
+
+	@Test
+	public void errorXmlDeserializer() throws IOException {
+		final ErrorMessages objFromXml = loadXml("oxauth-errors.xml", ConfSerialization.class);
+		Assert.assertNotNull(objFromXml);
+
+		final String jsonStr = ServerUtil.createJsonMapper().writeValueAsString(objFromXml);
+		System.out.println(jsonStr);
+	}
+
+	@Test
+	public void errorJsonDeserializer() throws IOException {
+		final ErrorMessages object = loadJson(new File(CONFIG_FOLDER + "oxauth-errors.json"), ErrorMessages.class);
+		Assert.assertTrue(object != null && notEmpty(object.getAuthorize()) && notEmpty(object.getUma())
+				&& notEmpty(object.getUserInfo()) && notEmpty(object.getClientInfo()) && notEmpty(object.getToken())
+				&& notEmpty(object.getEndSession()));
+	}
+
+	@Test
+	public void webKeysJsonDeserializer() throws IOException {
+		final JSONWebKeySet obj = loadJson(new File(CONFIG_FOLDER + "oxauth-web-keys.json"), JSONWebKeySet.class);
+		Assert.assertTrue(obj != null && obj.getKeys() != null && !obj.getKeys().isEmpty());
+	}
+
+	private static boolean notEmpty(List<ErrorMessage> p_list) {
+		return p_list != null && !p_list.isEmpty();
+	}
+
+	@Test
+	public void claims() throws IOException {
+
+		final BaseDnConfiguration baseDn = new BaseDnConfiguration();
+		baseDn.setConfiguration("ou=configuration,o=gluu");
+		baseDn.setPeople("ou=people,o=gluu");
+		baseDn.setClients("ou=clients,o=gluu");
+		baseDn.setScopes("ou=scopes,o=gluu");
+		baseDn.setAttributes("ou=attributes,o=gluu");
+
+		final StaticConfiguration c = new StaticConfiguration();
+		c.setBaseDn(baseDn);
+
+		final String jsonStr = ServerUtil.createJsonMapper().writeValueAsString(c);
+		System.out.println(jsonStr);
+	}
+}
\ No newline at end of file
diff --git a/oxAuth/Server/src/test/java/org/gluu/oxauth/dev/Manual.java b/oxAuth/Server/src/test/java/org/gluu/oxauth/dev/Manual.java
new file mode 100644
index 00000000..3c2e3e56
--- /dev/null
+++ b/oxAuth/Server/src/test/java/org/gluu/oxauth/dev/Manual.java
@@ -0,0 +1,60 @@
+/*
+ * oxAuth is available under the MIT License (2008). See http://opensource.org/licenses/MIT for full text.
+ *
+ * Copyright (c) 2014, Gluu
+ */
+
+package org.gluu.oxauth.dev;
+
+import java.io.File;
+import java.util.Properties;
+
+import org.gluu.oxauth.model.registration.Client;
+import org.gluu.persist.PersistenceEntryManager;
+import org.gluu.persist.ldap.impl.LdapEntryManagerFactory;
+import org.gluu.persist.ldap.operation.impl.LdapConnectionProvider;
+import org.gluu.util.properties.FileConfiguration;
+import org.gluu.util.security.PropertiesDecrypter;
+import org.testng.annotations.AfterClass;
+import org.testng.annotations.BeforeClass;
+import org.testng.annotations.Test;
+
+/**
+ * Test for manual run. Used for development purpose ONLY. Must not be run in
+ * suite. ATTENTION : To make life easier must not have dependency on embedded
+ * server.
+ *
+ * @author Yuriy Zabrovarnyy
+ * @version 0.9, 26/07/2012
+ */
+
+public class Manual {
+
+	public static String LDAP_CONF_FILE_NAME = "oxauth-ldap.properties";
+	public static final String CONF_FOLDER = "conf";
+
+	private static final String LDAP_FILE_PATH = CONF_FOLDER + File.separator + LDAP_CONF_FILE_NAME;
+
+	public static PersistenceEntryManager MANAGER = null;
+
+	@BeforeClass
+	public void init() {
+		final FileConfiguration fileConfiguration = new FileConfiguration(LDAP_FILE_PATH);
+		final Properties props = PropertiesDecrypter.decryptProperties(fileConfiguration.getProperties(), "passoword");
+		final LdapEntryManagerFactory ldapEntryManagerFactory = new LdapEntryManagerFactory(); 
+		final LdapConnectionProvider connectionProvider = new LdapConnectionProvider(props);
+		connectionProvider.create();
+		MANAGER = ldapEntryManagerFactory.createEntryManager(props);
+	}
+
+	@AfterClass
+	public void destroy() {
+		MANAGER.destroy();
+	}
+
+	@Test
+	public void getGroupsFromClient() {
+		final Client client = MANAGER.find(Client.class, "inum=@!0000!0008!7652.0000,ou=clients,o=gluu");
+		System.out.println(client);
+	}
+}
diff --git a/oxAuth/Server/src/test/java/org/gluu/oxauth/dev/TestUUID.java b/oxAuth/Server/src/test/java/org/gluu/oxauth/dev/TestUUID.java
new file mode 100644
index 00000000..a497e1c3
--- /dev/null
+++ b/oxAuth/Server/src/test/java/org/gluu/oxauth/dev/TestUUID.java
@@ -0,0 +1,42 @@
+package org.gluu.oxauth.dev;
+
+import java.util.UUID;
+import java.util.concurrent.ConcurrentHashMap;
+
+public class TestUUID {
+	
+	public static ConcurrentHashMap<String, String> map = new ConcurrentHashMap<String, String>();
+	public static long errors_count = 0;
+	public static long done = 0;
+	
+	public static void main(String[] args) throws InterruptedException {
+		for (int i = 0; i < 100; i++)
+		new Thread(new Runnable() {
+			
+			@Override
+			public void run() {
+				for (int i = 0; i < 10000; i++ ) {
+					String uuid = UUID.randomUUID().toString();
+					if (map.contains(uuid)) {
+						errors_count++;
+					} else {
+						map.put(uuid, uuid);
+					}
+				}
+				System.out.println("Done");
+				done++;
+			}
+		}).start();
+		
+		while (true) {
+			Thread.sleep(5*1000);
+			if (done == 100) {
+				break;
+			}
+		}
+		
+		System.out.println(map.size());
+		System.out.println(errors_count);
+	}
+
+}
diff --git a/oxAuth/Server/src/test/java/org/gluu/oxauth/dev/duo/PythonToLdapString.java b/oxAuth/Server/src/test/java/org/gluu/oxauth/dev/duo/PythonToLdapString.java
new file mode 100644
index 00000000..15e32e67
--- /dev/null
+++ b/oxAuth/Server/src/test/java/org/gluu/oxauth/dev/duo/PythonToLdapString.java
@@ -0,0 +1,102 @@
+/*
+ * oxAuth is available under the MIT License (2008). See http://opensource.org/licenses/MIT for full text.
+ *
+ * Copyright (c) 2014, Gluu
+ */
+
+package org.gluu.oxauth.dev.duo;
+
+import java.io.File;
+import java.io.FileInputStream;
+import java.io.IOException;
+import java.io.StringWriter;
+import java.util.ArrayList;
+import java.util.List;
+
+import org.apache.commons.io.IOUtils;
+import org.oxauth.persistence.model.configuration.CustomProperty;
+import org.oxauth.persistence.model.configuration.oxIDPAuthConf;
+import org.testng.annotations.Test;
+
+import com.fasterxml.jackson.databind.ObjectMapper;
+
+/**
+ * @author Yuriy Zabrovarnyy
+ * @version 0.9, 28/12/2012
+ */
+
+public class PythonToLdapString /* extends BaseComponentTest */ {
+	public static final String SCRIPT_FIELD_NAME = "script.__$__customAuthenticationScript__$__";
+	// @Override
+	// public void beforeClass() {
+	//
+	// }
+	//
+	// @Override
+	// public void afterClass() {
+	//
+	// }
+
+	// VIEW:
+	// u:\own\java\opendj-2.4.4\OpenDJ\bat\ldapsearch.bat -h localhost -p 1636
+	// -Z -X -D "cn=directory manager" -w secret -b "ou=configuration,o=gluu"
+	// "inum=@!1111!0002!4907"
+	// MODIFY:
+	// u:\own\java\opendj-2.4.4\OpenDJ\bat\ldapmodify.bat -h localhost -p 1636
+	// -Z -X -D "cn=directory manager" -w secret -f
+	// U:\own\project\oxAuth\Server\src\test\java\org\xdi\oxauth\dev\duo\script.ldif
+
+	@Test
+	public void test() throws IOException {
+		final File f = new File("U:\\own\\project\\oxAuth\\Server\\integrations\\duo\\ExternalAuthenticator.py");
+		final String pythonScript = IOUtils.toString(new FileInputStream(f));
+		System.out.println("Python script: \n" + pythonScript);
+
+		final List<CustomProperty> fields = new ArrayList<CustomProperty>();
+		fields.add(createAttribute("property.duo_host", "api-fa928e64.duosecurity.com"));
+		fields.add(createAttribute("property.duo_ikey", "DIT2906CETIMKHE1QND8"));
+		fields.add(createAttribute("property.duo_skey", "cjNn9R4QvQV0R2Mynw2CauCUesojuR3cPGDoVygM"));
+		fields.add(createAttribute("property.duo_akey", "6f88ca3dea7ac88a514cdef7c18021678ccaf0e1"));
+		fields.add(createAttribute(SCRIPT_FIELD_NAME, pythonScript));
+
+		final oxIDPAuthConf c = new oxIDPAuthConf();
+		c.setType("customAuthentication");
+		c.setName("duo");
+		c.setEnabled(true);
+		c.setLevel(1);
+		c.setPriority(1);
+		c.setFields(fields);
+
+		final String json = getJSONString(c);
+		System.out.println("JSON: \n" + json);
+
+		final oxIDPAuthConf fromJson = fromJSON(json);
+		for (CustomProperty attr : fromJson.getFields()) {
+			if (attr.getName().equals(SCRIPT_FIELD_NAME)) {
+				System.out.println("Script from json: \n" + attr.getValues().get(0));
+			}
+		}
+	}
+
+	private CustomProperty createAttribute(String p_name, String p_value) {
+		final List<String> v = new ArrayList<String>();
+		v.add(p_value);
+
+		final CustomProperty result = new CustomProperty();
+		result.setName(p_name);
+		result.setValues(v);
+		return result;
+	}
+
+	private String getJSONString(oxIDPAuthConf conf) throws IOException {
+		StringWriter sw = new StringWriter();
+		ObjectMapper mapper = new ObjectMapper();
+		mapper.writeValue(sw, conf);
+		return sw.toString();
+	}
+
+	private oxIDPAuthConf fromJSON(String p_json) throws IOException {
+		ObjectMapper mapper = new ObjectMapper();
+		return mapper.readValue(p_json, oxIDPAuthConf.class);
+	}
+}
diff --git a/oxAuth/Server/src/test/java/org/gluu/oxauth/gluu/ws/rs/GluuConfigurationWSTest.java b/oxAuth/Server/src/test/java/org/gluu/oxauth/gluu/ws/rs/GluuConfigurationWSTest.java
new file mode 100644
index 00000000..4caa823d
--- /dev/null
+++ b/oxAuth/Server/src/test/java/org/gluu/oxauth/gluu/ws/rs/GluuConfigurationWSTest.java
@@ -0,0 +1,58 @@
+package org.gluu.oxauth.gluu.ws.rs;
+
+import static org.testng.Assert.assertEquals;
+import static org.testng.Assert.assertNotNull;
+import static org.testng.Assert.fail;
+
+import java.io.IOException;
+import java.net.URI;
+
+import javax.ws.rs.Consumes;
+import javax.ws.rs.client.WebTarget;
+import javax.ws.rs.core.MediaType;
+import javax.ws.rs.core.Response;
+
+import org.gluu.oxauth.BaseTest;
+import org.gluu.oxauth.model.gluu.GluuConfiguration;
+import org.gluu.oxauth.util.ServerUtil;
+import org.jboss.arquillian.container.test.api.RunAsClient;
+import org.jboss.arquillian.extension.rest.client.ArquillianResteasyResource;
+import org.jboss.arquillian.test.api.ArquillianResource;
+import org.testng.annotations.Optional;
+import org.testng.annotations.Parameters;
+import org.testng.annotations.Test;
+
+/**
+ * Created by eugeniuparvan on 8/12/16.
+ */
+public class GluuConfigurationWSTest extends BaseTest {
+
+	@ArquillianResource
+	private URI url;
+
+	@RunAsClient
+	@Parameters({ "gluuConfigurationPath", "webTarget" })
+	@Consumes(MediaType.APPLICATION_JSON)
+	@Test
+	public void getConfigurationTest(String gluuConfigurationPath,
+			@Optional @ArquillianResteasyResource("") final WebTarget webTarget) throws Exception {
+		Response response = webTarget.path(gluuConfigurationPath).request().get();
+		String entity = response.readEntity(String.class);
+		BaseTest.showResponse("UMA : TConfiguration.configuration", response, entity);
+
+		assertEquals(response.getStatus(), 200, "Unexpected response code.");
+		try {
+			GluuConfiguration appConfiguration = ServerUtil.createJsonMapper().readValue(entity,
+					GluuConfiguration.class);
+			System.err.println(appConfiguration.getIdGenerationEndpoint());
+			assertNotNull(appConfiguration, "Meta data configuration is null");
+			assertNotNull(appConfiguration.getIdGenerationEndpoint());
+			assertNotNull(appConfiguration.getIntrospectionEndpoint());
+			assertNotNull(appConfiguration.getAuthLevelMapping());
+			assertNotNull(appConfiguration.getScopeToClaimsMapping());
+		} catch (IOException e) {
+			e.printStackTrace();
+			fail();
+		}
+	}
+}
\ No newline at end of file
diff --git a/oxAuth/Server/src/test/java/org/gluu/oxauth/json/JsonApplierServerTest.java b/oxAuth/Server/src/test/java/org/gluu/oxauth/json/JsonApplierServerTest.java
new file mode 100644
index 00000000..705eee62
--- /dev/null
+++ b/oxAuth/Server/src/test/java/org/gluu/oxauth/json/JsonApplierServerTest.java
@@ -0,0 +1,41 @@
+package org.gluu.oxauth.json;
+
+import com.google.common.collect.Lists;
+import org.gluu.oxauth.client.RegisterRequest;
+import org.gluu.oxauth.model.json.JsonApplier;
+import org.json.JSONArray;
+import org.json.JSONObject;
+import org.oxauth.persistence.model.ClientAttributes;
+import org.testng.annotations.Test;
+
+import static org.testng.Assert.assertEquals;
+
+/**
+ * @author Yuriy Zabrovarnyy
+ */
+public class JsonApplierServerTest {
+
+    @Test
+    public void transfer_fromRegisterRequestToClientAttribute_withListOfString_shouldTransferValueCorrectly() {
+        RegisterRequest request = new RegisterRequest();
+        request.setAdditionalAudience(Lists.newArrayList("aud1", "aud2"));
+
+        ClientAttributes attributes = new ClientAttributes();
+
+        JsonApplier.getInstance().transfer(request, attributes);
+
+        assertEquals(Lists.newArrayList("aud1", "aud2"), attributes.getAdditionalAudience());
+    }
+
+    @Test
+    public void apply_fromClientAttributesToJSONObject_withListOfString_shouldTransferValueCorrectly() {
+        ClientAttributes attributes = new ClientAttributes();
+        attributes.setAdditionalAudience(Lists.newArrayList("aud1", "aud2"));
+
+        JSONObject jsonObject = new JSONObject();
+
+        JsonApplier.getInstance().apply(attributes, jsonObject);
+
+        assertEquals(new JSONArray(Lists.newArrayList("aud1", "aud2")), jsonObject.getJSONArray("additional_audience"));
+    }
+}
diff --git a/oxAuth/Server/src/test/java/org/gluu/oxauth/model/CIBAGrantTest.java b/oxAuth/Server/src/test/java/org/gluu/oxauth/model/CIBAGrantTest.java
new file mode 100644
index 00000000..73246f55
--- /dev/null
+++ b/oxAuth/Server/src/test/java/org/gluu/oxauth/model/CIBAGrantTest.java
@@ -0,0 +1,120 @@
+package org.gluu.oxauth.model;
+
+import org.gluu.oxauth.model.authorize.ScopeChecker;
+import org.gluu.oxauth.model.common.*;
+import org.gluu.oxauth.model.config.WebKeysConfiguration;
+import org.gluu.oxauth.model.configuration.AppConfiguration;
+import org.gluu.oxauth.model.registration.Client;
+import org.gluu.oxauth.model.token.IdTokenFactory;
+import org.gluu.oxauth.service.*;
+import org.gluu.oxauth.service.external.ExternalIntrospectionService;
+import org.gluu.oxauth.service.stat.StatService;
+import org.gluu.service.CacheService;
+import org.mockito.InjectMocks;
+import org.mockito.Mock;
+import org.mockito.testng.MockitoTestNGListener;
+import org.testng.annotations.Listeners;
+import org.testng.annotations.Test;
+
+import java.util.Arrays;
+import java.util.List;
+
+import static org.mockito.ArgumentMatchers.*;
+import static org.mockito.Mockito.verify;
+import static org.mockito.Mockito.verifyNoMoreInteractions;
+import static org.testng.Assert.*;
+
+@Listeners(MockitoTestNGListener.class)
+public class CIBAGrantTest {
+
+    @InjectMocks
+    private CIBAGrant cibaGrant;
+
+    @Mock
+    private CacheService cacheService;
+
+    @Mock
+    private GrantService grantService;
+
+    @Mock
+    private IdTokenFactory idTokenFactory;
+
+    @Mock
+    private WebKeysConfiguration webKeysConfiguration;
+
+    @Mock
+    private ClientService clientService;
+
+    @Mock
+    private ExternalIntrospectionService externalIntrospectionService;
+
+    @Mock
+    private AttributeService attributeService;
+
+    @Mock
+    private SectorIdentifierService sectorIdentifierService;
+
+    @Mock
+    private MetricService metricService;
+
+    @Mock
+    private StatService statService;
+
+    @Mock
+    protected AppConfiguration appConfiguration;
+
+    @Mock
+    protected ScopeChecker scopeChecker;
+
+    @Test
+    public void getGrantType_shouldBeCIBA() {
+        GrantType grantType = cibaGrant.getGrantType();
+
+        assertNotNull(grantType);
+        assertEquals(grantType, GrantType.CIBA);
+    }
+
+    @Test
+    public void save_CacheValueInserted() {
+        final String authReqId = "any-id-123";
+        cibaGrant.setAuthReqId(authReqId);
+
+        cibaGrant.save();
+
+        verify(cacheService).put(anyInt(), eq(authReqId), any(CacheGrant.class));
+        verifyNoMoreInteractions(cacheService);
+    }
+
+    @Test
+    public void init_allFieldsInitiated() {
+        CibaRequestCacheControl cibaRequest = buildCibaRequestCacheControl();
+
+        cibaGrant.init(cibaRequest);
+
+        assertEquals(cibaGrant.getAuthReqId(), cibaRequest.getAuthReqId());
+        assertEquals(cibaGrant.getAcrValues(), cibaRequest.getAcrValues());
+        assertEquals(cibaGrant.getScopes(), cibaRequest.getScopes());
+        assertTrue(cibaGrant.isCachedWithNoPersistence());
+        assertNull(cibaGrant.getAuthenticationTime());
+        assertEquals(cibaGrant.getUser(), cibaRequest.getUser());
+        assertEquals(cibaGrant.getAuthorizationGrantType(), AuthorizationGrantType.CIBA);
+        assertEquals(cibaGrant.getClient(), cibaRequest.getClient());
+        assertNotNull(cibaGrant.getGrantId());
+    }
+
+    private CibaRequestCacheControl buildCibaRequestCacheControl() {
+        User user = new User();
+        user.setDn("user-dn");
+        user.setUserId("user-id");
+
+        Client client = new Client();
+        client.setClientId("client-id");
+        client.setDn("client-dn");
+
+        List<String> scopes = Arrays.asList("openid", "profile");
+
+        return new CibaRequestCacheControl(user, client, 300,
+                scopes, "client-notification-token", "binding-message", 1L, "acr-values");
+    }
+
+}
diff --git a/oxAuth/Server/src/test/java/org/gluu/oxauth/model/TClientService.java b/oxAuth/Server/src/test/java/org/gluu/oxauth/model/TClientService.java
new file mode 100644
index 00000000..8f88c10b
--- /dev/null
+++ b/oxAuth/Server/src/test/java/org/gluu/oxauth/model/TClientService.java
@@ -0,0 +1,40 @@
+package org.gluu.oxauth.model;
+
+import com.fasterxml.jackson.core.JsonProcessingException;
+import org.gluu.oxauth.BaseTest;
+import org.gluu.oxauth.client.RegisterRequest;
+import org.gluu.oxauth.client.RegisterResponse;
+import org.gluu.oxauth.register.ws.rs.RegisterRestWebService;
+import org.gluu.oxauth.util.ServerUtil;
+import org.gluu.oxauth.ws.rs.ClientTestUtil;
+
+import javax.enterprise.context.ApplicationScoped;
+import javax.ws.rs.core.Response;
+import java.net.URI;
+
+import static org.testng.Assert.assertEquals;
+import static org.testng.Assert.assertNotNull;
+
+/**
+ * @author Yuriy Zabrovarnyy
+ */
+@ApplicationScoped
+public class TClientService {
+
+    private TClientService() {
+    }
+
+    public static RegisterResponse register(RegisterRequest registerRequest, URI uri) throws JsonProcessingException {
+        RegisterRestWebService registerWs = WebServiceFactory.instance().createRegisterWs(uri.toString());
+        Response response = registerWs.requestRegister(ServerUtil.toPrettyJson(registerRequest.getJSONParameters()), null, null);
+        String entity = response.readEntity(String.class);
+
+        BaseTest.showResponse("TClientService", response, entity);
+
+        assertEquals(response.getStatus(), 200, "Unexpected response code. " + entity);
+        assertNotNull(entity, "Unexpected result: " + entity);
+        final RegisterResponse registerResponse = RegisterResponse.valueOf(entity);
+        ClientTestUtil.assert_(registerResponse);
+        return registerResponse;
+    }
+}
diff --git a/oxAuth/Server/src/test/java/org/gluu/oxauth/model/WebServiceFactory.java b/oxAuth/Server/src/test/java/org/gluu/oxauth/model/WebServiceFactory.java
new file mode 100644
index 00000000..9dfa54e7
--- /dev/null
+++ b/oxAuth/Server/src/test/java/org/gluu/oxauth/model/WebServiceFactory.java
@@ -0,0 +1,31 @@
+package org.gluu.oxauth.model;
+
+import org.gluu.oxauth.register.ws.rs.RegisterRestWebService;
+import org.jboss.resteasy.client.jaxrs.ResteasyClientBuilder;
+import org.jboss.resteasy.client.jaxrs.ResteasyWebTarget;
+
+import javax.ws.rs.core.MediaType;
+
+/**
+ * @author Yuriy Zabrovarnyy
+ */
+public class WebServiceFactory {
+
+    public static final String RESTV_1 = "restv1";
+
+    private WebServiceFactory() {
+    }
+
+    public static WebServiceFactory instance() {
+        return new WebServiceFactory();
+    }
+
+    public RegisterRestWebService createRegisterWs(String url) {
+        return createRegisterWs(RegisterRestWebService.class, url, MediaType.APPLICATION_JSON_TYPE);
+    }
+
+    public <T> T createRegisterWs(Class<T> clazz, String url, MediaType consumeMediaType) {
+        final ResteasyWebTarget target = (ResteasyWebTarget) ResteasyClientBuilder.newClient().target(url + RESTV_1);
+        return target.proxyBuilder(clazz).defaultConsumes(consumeMediaType).build();
+    }
+}
diff --git a/oxAuth/Server/src/test/java/org/gluu/oxauth/model/authorize/JwtAuthorizationRequestTest.java b/oxAuth/Server/src/test/java/org/gluu/oxauth/model/authorize/JwtAuthorizationRequestTest.java
new file mode 100644
index 00000000..4d788758
--- /dev/null
+++ b/oxAuth/Server/src/test/java/org/gluu/oxauth/model/authorize/JwtAuthorizationRequestTest.java
@@ -0,0 +1,77 @@
+package org.gluu.oxauth.model.authorize;
+
+import org.gluu.oxauth.model.configuration.AppConfiguration;
+import org.gluu.oxauth.model.error.ErrorResponseFactory;
+import org.gluu.oxauth.model.registration.Client;
+import org.testng.annotations.Test;
+
+import javax.ws.rs.WebApplicationException;
+import java.util.Arrays;
+import java.util.Collections;
+
+/**
+ * @author Yuriy Zabrovarnyy
+ */
+public class JwtAuthorizationRequestTest {
+
+    @Test
+    public void validateRequestUri_whichIsAllowedByClient_shouldBeOk() {
+        String requestUri = "https://myrp.com/request_uri";
+
+        Client client = new Client();
+        client.setRequestUris(new String[]{"https://myrp.com/request_uri"});
+        JwtAuthorizationRequest.validateRequestUri(requestUri, client, new AppConfiguration(), "", new ErrorResponseFactory());
+    }
+
+    @Test
+    public void validateRequestUri_withNoRestrictions_shouldBeOk() {
+        String requestUri = "https://myrp.com/request_uri";
+
+        JwtAuthorizationRequest.validateRequestUri(requestUri, new Client(), new AppConfiguration(), "", new ErrorResponseFactory());
+    }
+
+    @Test(expectedExceptions = WebApplicationException.class)
+    public void validateRequestUri_whichIsNotAllowedByClient_shouldRaiseException() {
+        String requestUri = "https://myrp.com/request_uri";
+
+        Client client = new Client();
+        client.setRequestUris(new String[]{"https://myrp.com"});
+        JwtAuthorizationRequest.validateRequestUri(requestUri, client, new AppConfiguration(), "", new ErrorResponseFactory());
+    }
+
+    @Test(expectedExceptions = WebApplicationException.class)
+    public void validateRequestUri_whichIsBlackListed_shouldRaiseException() {
+        String requestUri = "https://myrp.com/request_uri";
+
+        final AppConfiguration appConfiguration = new AppConfiguration();
+        appConfiguration.setRequestUriBlockList(Arrays.asList("myrp.com", "evil.com"));
+        JwtAuthorizationRequest.validateRequestUri(requestUri, new Client(), appConfiguration, "", new ErrorResponseFactory());
+    }
+
+    @Test(expectedExceptions = WebApplicationException.class)
+    public void validateRequestUri_forLocalhost_shouldRaiseException() {
+        String requestUri = "https://localhost/request_uri";
+
+        final AppConfiguration appConfiguration = new AppConfiguration();
+        appConfiguration.setRequestUriBlockList(Collections.singletonList("localhost"));
+        JwtAuthorizationRequest.validateRequestUri(requestUri, new Client(), appConfiguration, "", new ErrorResponseFactory());
+    }
+
+    @Test(expectedExceptions = WebApplicationException.class)
+    public void validateRequestUri_forLocalhostIp_shouldRaiseException() {
+        String requestUri = "https://127.0.0.1/request_uri";
+
+        final AppConfiguration appConfiguration = new AppConfiguration();
+        appConfiguration.setRequestUriBlockList(Collections.singletonList("127.0.0.1"));
+        JwtAuthorizationRequest.validateRequestUri(requestUri, new Client(), appConfiguration, "", new ErrorResponseFactory());
+    }
+
+    @Test
+    public void validateRequestUri_whichIsNotBlackListed_shouldBeOk() {
+        String requestUri = "https://myrp.com/request_uri";
+
+        final AppConfiguration appConfiguration = new AppConfiguration();
+        appConfiguration.setRequestUriBlockList(Arrays.asList("evil.com", "second.com"));
+        JwtAuthorizationRequest.validateRequestUri(requestUri, new Client(), appConfiguration, "", new ErrorResponseFactory());
+    }
+}
diff --git a/oxAuth/Server/src/test/java/org/gluu/oxauth/model/registration/RegisterParamsValidatorTest.java b/oxAuth/Server/src/test/java/org/gluu/oxauth/model/registration/RegisterParamsValidatorTest.java
new file mode 100644
index 00000000..7c1e643e
--- /dev/null
+++ b/oxAuth/Server/src/test/java/org/gluu/oxauth/model/registration/RegisterParamsValidatorTest.java
@@ -0,0 +1,55 @@
+package org.gluu.oxauth.model.registration;
+
+import com.beust.jcommander.internal.Lists;
+import org.gluu.oxauth.model.common.GrantType;
+import org.gluu.oxauth.model.common.ResponseType;
+import org.gluu.oxauth.model.common.SubjectType;
+import org.gluu.oxauth.model.configuration.AppConfiguration;
+import org.gluu.oxauth.model.error.ErrorResponseFactory;
+import org.gluu.oxauth.model.register.ApplicationType;
+import org.gluu.oxauth.model.register.RegisterErrorResponseType;
+import org.mockito.InjectMocks;
+import org.mockito.Mock;
+import org.mockito.testng.MockitoTestNGListener;
+import org.slf4j.Logger;
+import org.testng.annotations.Listeners;
+import org.testng.annotations.Test;
+
+import javax.ws.rs.WebApplicationException;
+import javax.ws.rs.core.Response;
+
+import static org.mockito.ArgumentMatchers.any;
+import static org.mockito.ArgumentMatchers.eq;
+import static org.mockito.Mockito.*;
+
+@Listeners(MockitoTestNGListener.class)
+public class RegisterParamsValidatorTest {
+
+    @InjectMocks
+    private RegisterParamsValidator registerParamsValidator;
+
+    @Mock
+    private Logger log;
+
+    @Mock
+    private AppConfiguration appConfiguration;
+
+    @Mock
+    private ErrorResponseFactory errorResponseFactory;
+
+    @Test
+    public void validateRedirectUris_whenSectorIdentifierDoesNotHostValidRedirectUri_shouldThrowInvalidClientMetadataError() {
+        try {
+            when(errorResponseFactory.createWebApplicationException(any(), any(), any())).thenCallRealMethod();
+            registerParamsValidator.validateRedirectUris(
+                    Lists.newArrayList(GrantType.AUTHORIZATION_CODE),
+                    Lists.newArrayList(ResponseType.CODE),
+                    ApplicationType.WEB,
+                    SubjectType.PAIRWISE,
+                    Lists.newArrayList("https://someuri.com"),
+                    "https://invaliduri.com");
+        } catch (WebApplicationException e) {
+            verify(errorResponseFactory, times(1)).createWebApplicationException(eq(Response.Status.BAD_REQUEST), eq(RegisterErrorResponseType.INVALID_CLIENT_METADATA), any());
+        }
+    }
+}
\ No newline at end of file
diff --git a/oxAuth/Server/src/test/java/org/gluu/oxauth/model/uma/TConfiguration.java b/oxAuth/Server/src/test/java/org/gluu/oxauth/model/uma/TConfiguration.java
new file mode 100644
index 00000000..c2d84d9f
--- /dev/null
+++ b/oxAuth/Server/src/test/java/org/gluu/oxauth/model/uma/TConfiguration.java
@@ -0,0 +1,71 @@
+/*
+ * oxAuth is available under the MIT License (2008). See http://opensource.org/licenses/MIT for full text.
+ *
+ * Copyright (c) 2014, Gluu
+ */
+
+package org.gluu.oxauth.model.uma;
+
+import static org.testng.Assert.assertEquals;
+import static org.testng.Assert.assertNotNull;
+import static org.testng.Assert.fail;
+
+import java.io.IOException;
+import java.net.URI;
+
+import javax.ws.rs.client.Invocation.Builder;
+import javax.ws.rs.core.Response;
+
+import org.gluu.oxauth.BaseTest;
+import org.gluu.oxauth.model.uma.UmaConstants;
+import org.gluu.oxauth.model.uma.UmaMetadata;
+import org.gluu.oxauth.util.ServerUtil;
+import org.jboss.resteasy.client.jaxrs.ResteasyClientBuilder;
+import org.gluu.oxauth.model.uma.UmaTestUtil;
+
+/**
+ * @author Yuriy Zabrovarnyy
+ * @version 0.9, 15/03/2013
+ */
+
+class TConfiguration {
+
+	private final URI baseUri;
+	private UmaMetadata configuration = null;
+
+	public TConfiguration(URI baseUri) {
+		assertNotNull(baseUri); // must not be null
+		this.baseUri = baseUri;
+	}
+
+	public UmaMetadata getConfiguration(final String umaConfigurationPath) {
+		if (configuration == null) {
+			try {
+				configuration(umaConfigurationPath);
+			} catch (Exception e) {
+				e.printStackTrace();
+				fail();
+			}
+		}
+		UmaTestUtil.assert_(configuration);
+		return configuration;
+	}
+
+	private void configuration(final String umaConfigurationPath) throws Exception {
+		Builder request = ResteasyClientBuilder.newClient().target(baseUri.toString() + umaConfigurationPath).request();
+		request.header("Accept", UmaConstants.JSON_MEDIA_TYPE);
+		Response response = request.get();
+		String entity = response.readEntity(String.class);
+
+		BaseTest.showResponse("UMA : TConfiguration.configuration", response, entity);
+
+		assertEquals(response.getStatus(), 200, "Unexpected response code.");
+		try {
+			configuration = ServerUtil.createJsonMapper().readValue(entity, UmaMetadata.class);
+			UmaTestUtil.assert_(configuration);
+		} catch (IOException e) {
+			e.printStackTrace();
+			fail();
+		}
+	}
+}
diff --git a/oxAuth/Server/src/test/java/org/gluu/oxauth/model/uma/TRegisterPermission.java b/oxAuth/Server/src/test/java/org/gluu/oxauth/model/uma/TRegisterPermission.java
new file mode 100644
index 00000000..378b58ae
--- /dev/null
+++ b/oxAuth/Server/src/test/java/org/gluu/oxauth/model/uma/TRegisterPermission.java
@@ -0,0 +1,76 @@
+/*
+ * oxAuth is available under the MIT License (2008). See http://opensource.org/licenses/MIT for full text.
+ *
+ * Copyright (c) 2014, Gluu
+ */
+
+package org.gluu.oxauth.model.uma;
+
+import static org.testng.Assert.assertEquals;
+import static org.testng.Assert.assertNotNull;
+import static org.testng.Assert.fail;
+
+import java.io.IOException;
+import java.net.URI;
+
+import javax.ws.rs.client.Entity;
+import javax.ws.rs.client.Invocation.Builder;
+import javax.ws.rs.core.Response;
+
+import org.gluu.oxauth.BaseTest;
+import org.gluu.oxauth.model.common.Holder;
+import org.gluu.oxauth.model.uma.PermissionTicket;
+import org.gluu.oxauth.model.uma.UmaConstants;
+import org.gluu.oxauth.model.uma.UmaPermission;
+import org.gluu.oxauth.model.uma.wrapper.Token;
+import org.gluu.oxauth.util.ServerUtil;
+import org.jboss.resteasy.client.jaxrs.ResteasyClientBuilder;
+import org.gluu.oxauth.model.uma.UmaTestUtil;
+
+/**
+ * @author Yuriy Zabrovarnyy
+ * @version 0.9, 15/03/2013
+ */
+
+class TRegisterPermission {
+
+	private final URI baseUri;
+
+	public TRegisterPermission(URI baseUri) {
+		assertNotNull(baseUri); // must not be null
+		this.baseUri = baseUri;
+	}
+
+	public PermissionTicket registerPermission(final Token p_pat, final UmaPermission p_request, String path) {
+		final Holder<PermissionTicket> ticketH = new Holder<PermissionTicket>();
+		Builder request = ResteasyClientBuilder.newClient().target(baseUri.toString() + path).request();
+		request.header("Accept", UmaConstants.JSON_MEDIA_TYPE);
+		request.header("Authorization", "Bearer " + p_pat.getAccessToken());
+
+		String json = null;
+		try {
+			json = ServerUtil.createJsonMapper().writeValueAsString(p_request);
+		} catch (Exception e) {
+			e.printStackTrace();
+			fail();
+		}
+
+		Response response = request.post(Entity.json(json));
+		String entity = response.readEntity(String.class);
+
+		BaseTest.showResponse("UMA : TRegisterPermission.registerPermission() : ", response, entity);
+
+		assertEquals(response.getStatus(), Response.Status.CREATED.getStatusCode(), "Unexpected response code.");
+		try {
+			final PermissionTicket t = ServerUtil.createJsonMapper().readValue(entity, PermissionTicket.class);
+			UmaTestUtil.assert_(t);
+
+			ticketH.setT(t);
+		} catch (IOException e) {
+			e.printStackTrace();
+			fail();
+		}
+
+		return ticketH.getT();
+	}
+}
diff --git a/oxAuth/Server/src/test/java/org/gluu/oxauth/model/uma/TRegisterResource.java b/oxAuth/Server/src/test/java/org/gluu/oxauth/model/uma/TRegisterResource.java
new file mode 100644
index 00000000..4976db00
--- /dev/null
+++ b/oxAuth/Server/src/test/java/org/gluu/oxauth/model/uma/TRegisterResource.java
@@ -0,0 +1,182 @@
+/*
+ * oxAuth is available under the MIT License (2008). See http://opensource.org/licenses/MIT for full text.
+ *
+ * Copyright (c) 2014, Gluu
+ */
+
+package org.gluu.oxauth.model.uma;
+
+import static org.testng.Assert.assertEquals;
+import static org.testng.Assert.assertNotNull;
+import static org.testng.Assert.fail;
+
+import java.net.URI;
+import java.util.ArrayList;
+import java.util.List;
+
+import javax.ws.rs.client.Entity;
+import javax.ws.rs.client.Invocation.Builder;
+import javax.ws.rs.core.Response;
+
+import org.gluu.oxauth.BaseTest;
+import org.gluu.oxauth.model.uma.UmaConstants;
+import org.gluu.oxauth.model.uma.UmaResource;
+import org.gluu.oxauth.model.uma.UmaResourceResponse;
+import org.gluu.oxauth.model.uma.wrapper.Token;
+import org.gluu.oxauth.util.ServerUtil;
+import org.jboss.resteasy.client.jaxrs.ResteasyClientBuilder;
+import org.gluu.oxauth.model.uma.UmaTestUtil;
+
+/**
+ * @author Yuriy Zabrovarnyy
+ * @version 0.9, 15/03/2013
+ */
+
+class TRegisterResource {
+
+	private final URI baseUri;
+	private UmaResourceResponse registerStatus;
+	private UmaResourceResponse modifyStatus;
+
+	public TRegisterResource(URI baseUri) {
+		assertNotNull(baseUri); // must not be null
+		this.baseUri = baseUri;
+	}
+
+	public UmaResourceResponse registerResource(final Token pat, String umaRegisterResourcePath,
+												UmaResource resource) {
+		try {
+			registerStatus = registerResourceInternal(pat, umaRegisterResourcePath, resource);
+		} catch (Exception e) {
+			e.printStackTrace();
+			fail();
+		}
+		UmaTestUtil.assert_(registerStatus);
+		return registerStatus;
+	}
+
+	public UmaResourceResponse modifyResource(final Token p_pat, String umaRegisterResourcePath, final String p_rsId,
+											  UmaResource resource) {
+		try {
+			modifyStatus = modifyResourceInternal(p_pat, umaRegisterResourcePath, p_rsId, resource);
+		} catch (Exception e) {
+			e.printStackTrace();
+			fail();
+		}
+		UmaTestUtil.assert_(modifyStatus);
+		return modifyStatus;
+	}
+
+	private UmaResourceResponse registerResourceInternal(final Token pat, String umaRegisterResourcePath,
+														 final UmaResource resource) throws Exception {
+		String path = umaRegisterResourcePath;
+		System.out.println("Path: " + path);
+
+		System.out.println("PAT: " + pat.getAccessToken());
+		Builder request = ResteasyClientBuilder.newClient().target(baseUri.toString() + path).request();
+		request.header("Accept", UmaConstants.JSON_MEDIA_TYPE);
+		request.header("Authorization", "Bearer " + pat.getAccessToken());
+
+		String json = null;
+		try {
+			// final String json = "{\"resource\":{\"name\":\"Server Photo
+			// Album22\",\"iconUri\":\"http://www.example.com/icons/flower.png\",\"scopes\":[\"http://photoz.example.com/dev/scopes/view\",\"http://photoz.example.com/dev/scopes/all\"]}}";
+			// final String json =
+			// ServerUtil.jsonMapperWithWrapRoot().writeValueAsString(resource);
+			json = ServerUtil.createJsonMapper().writeValueAsString(resource);
+			System.out.println("Json: " + json);
+		} catch (Exception e) {
+			e.printStackTrace();
+			fail();
+		}
+
+		Response response = request.post(Entity.json(json));
+		String entity = response.readEntity(String.class);
+
+		BaseTest.showResponse("UMA : TRegisterResource.registerResourceInternal() : ", response, entity);
+
+		assertEquals(response.getStatus(), Response.Status.CREATED.getStatusCode(), "Unexpected response code.");
+
+		registerStatus = TUma.readJsonValue(entity, UmaResourceResponse.class);
+
+		UmaTestUtil.assert_(registerStatus);
+		return registerStatus;
+	}
+
+	private UmaResourceResponse modifyResourceInternal(final Token p_pat, String umaRegisterResourcePath,
+													   final String p_rsId, final UmaResource resource) throws Exception {
+		String path = umaRegisterResourcePath + "/" + p_rsId + "/";
+
+		Builder request = ResteasyClientBuilder.newClient().target(baseUri.toString() + path).request();
+		request.header("Accept", UmaConstants.JSON_MEDIA_TYPE);
+		request.header("Authorization", "Bearer " + p_pat.getAccessToken());
+
+		String json = null;
+		try {
+			// final String json =
+			// ServerUtil.jsonMapperWithWrapRoot().writeValueAsString(resource);
+			json = ServerUtil.createJsonMapper().writeValueAsString(resource);
+		} catch (Exception e) {
+			e.printStackTrace();
+			fail();
+		}
+
+		Response response = request.put(Entity.json(json));
+		String entity = response.readEntity(String.class);
+
+		BaseTest.showResponse("UMA : TRegisterResource.modifyResourceInternal() : ", response, entity);
+
+		assertEquals(response.getStatus(), Response.Status.OK.getStatusCode(), "Unexpected response code.");
+		modifyStatus = TUma.readJsonValue(entity, UmaResourceResponse.class);
+
+		UmaTestUtil.assert_(modifyStatus);
+		return modifyStatus;
+	}
+
+	public List<String> getResourceList(final Token p_pat, String p_umaRegisterResourcePath) {
+		final List<String> result = new ArrayList<String>();
+
+		try {
+			Builder request = ResteasyClientBuilder.newClient().target(baseUri.toString() + p_umaRegisterResourcePath)
+					.request();
+			request.header("Accept", UmaConstants.JSON_MEDIA_TYPE);
+			request.header("Authorization", "Bearer " + p_pat.getAccessToken());
+			Response response = request.get();
+			String entity = response.readEntity(String.class);
+
+			BaseTest.showResponse("UMA : TRegisterResource.getResourceList() : ", response, entity);
+
+			assertEquals(response.getStatus(), 200, "Unexpected response code.");
+
+			List<String> list = TUma.readJsonValue(entity, List.class);
+			if (list != null) {
+				result.addAll(list);
+			}
+		} catch (Exception e) {
+			e.printStackTrace();
+			fail();
+		}
+		return result;
+	}
+
+	public void deleteResource(final Token p_pat, String p_umaRegisterResourcePath, String p_id) {
+		String path = p_umaRegisterResourcePath + "/" + p_id + "/";
+		try {
+
+			Builder request = ResteasyClientBuilder.newClient().target(baseUri.toString() + path).request();
+			// request.addHeader("Accept",
+			// UmaConstants.RESOURCE_SET_STATUS_MEDIA_TYPE);
+			request.header("Authorization", "Bearer " + p_pat.getAccessToken());
+
+			Response response = request.delete();
+			String entity = response.readEntity(String.class);
+
+			BaseTest.showResponse("UMA : TRegisterResource.deleteResource() : ", response, entity);
+
+			assertEquals(response.getStatus(), Response.Status.NO_CONTENT.getStatusCode(), "Unexpected response code.");
+		} catch (Exception e) {
+			e.printStackTrace();
+			fail();
+		}
+	}
+}
diff --git a/oxAuth/Server/src/test/java/org/gluu/oxauth/model/uma/TTokenRequest.java b/oxAuth/Server/src/test/java/org/gluu/oxauth/model/uma/TTokenRequest.java
new file mode 100644
index 00000000..91eae25b
--- /dev/null
+++ b/oxAuth/Server/src/test/java/org/gluu/oxauth/model/uma/TTokenRequest.java
@@ -0,0 +1,352 @@
+/*
+ * oxAuth is available under the MIT License (2008). See http://opensource.org/licenses/MIT for full text.
+ *
+ * Copyright (c) 2014, Gluu
+ */
+
+package org.gluu.oxauth.model.uma;
+
+import static org.testng.Assert.assertEquals;
+import static org.testng.Assert.assertNotNull;
+import static org.testng.Assert.assertTrue;
+import static org.testng.Assert.fail;
+
+import java.io.IOException;
+import java.net.URI;
+import java.util.ArrayList;
+import java.util.HashMap;
+import java.util.List;
+import java.util.Map;
+import java.util.UUID;
+
+import javax.ws.rs.client.Entity;
+import javax.ws.rs.client.Invocation.Builder;
+import javax.ws.rs.core.Form;
+import javax.ws.rs.core.MediaType;
+import javax.ws.rs.core.MultivaluedHashMap;
+import javax.ws.rs.core.Response;
+
+import org.apache.commons.lang.StringUtils;
+import org.json.JSONException;
+import org.json.JSONObject;
+import org.gluu.oxauth.BaseTest;
+import org.gluu.oxauth.client.AuthorizationRequest;
+import org.gluu.oxauth.client.QueryStringDecoder;
+import org.gluu.oxauth.client.TokenRequest;
+import org.gluu.oxauth.model.common.AuthenticationMethod;
+import org.gluu.oxauth.model.common.GrantType;
+import org.gluu.oxauth.model.common.Holder;
+import org.gluu.oxauth.model.common.Prompt;
+import org.gluu.oxauth.model.common.ResponseType;
+import org.gluu.oxauth.model.uma.RPTResponse;
+import org.gluu.oxauth.model.uma.RptIntrospectionResponse;
+import org.gluu.oxauth.model.uma.UmaConstants;
+import org.gluu.oxauth.model.uma.UmaScopeType;
+import org.gluu.oxauth.model.uma.wrapper.Token;
+import org.gluu.oxauth.util.ServerUtil;
+import org.jboss.resteasy.client.jaxrs.ResteasyClientBuilder;
+import org.testng.Assert;
+import org.gluu.oxauth.model.uma.UmaTestUtil;
+
+/**
+ * @author Yuriy Zabrovarnyy
+ * @version @version June 23, 2015
+ */
+
+public class TTokenRequest {
+
+	private final URI baseUri;
+	private final Token token = new Token();
+
+	public TTokenRequest(URI baseUri) {
+		assertNotNull(baseUri); // must not be null
+		this.baseUri = baseUri;
+	}
+
+	public Token pat(final String authorizePath, final String tokenPath, final String userId, final String userSecret,
+			final String umaClientId, final String umaClientSecret, final String umaRedirectUri) {
+		return internalRequest(authorizePath, tokenPath, userId, userSecret, umaClientId, umaClientSecret,
+				umaRedirectUri, UmaScopeType.PROTECTION);
+	}
+
+	public Token newTokenByRefreshToken(final String tokenPath, final Token p_oldToken, final String umaClientId,
+			final String umaClientSecret) {
+		if (p_oldToken == null || StringUtils.isBlank(p_oldToken.getRefreshToken()) || StringUtils.isBlank(tokenPath)) {
+			throw new IllegalArgumentException("Refresh token or tokenPath is empty.");
+		}
+
+		final Holder<Token> t = new Holder<Token>();
+		try {
+			TokenRequest tokenRequest = new TokenRequest(GrantType.REFRESH_TOKEN);
+			tokenRequest.setAuthUsername(umaClientId);
+			tokenRequest.setAuthPassword(umaClientSecret);
+			tokenRequest.setRefreshToken(p_oldToken.getRefreshToken());
+			tokenRequest.setScope(p_oldToken.getScope());
+
+			Builder request = ResteasyClientBuilder.newClient().target(baseUri.toString() + tokenPath).request();
+			request.header("Authorization", "Basic " + tokenRequest.getEncodedCredentials());
+			Response response = request
+					.post(Entity.form(new MultivaluedHashMap<String, String>(tokenRequest.getParameters())));
+			String entity = response.readEntity(String.class);
+
+			BaseTest.showResponse("TTokenClient.requestToken() :", response, entity);
+
+			assertEquals(response.getStatus(), 200, "Unexpected response code.");
+
+			try {
+				JSONObject jsonObj = new JSONObject(entity);
+				assertTrue(jsonObj.has("access_token"), "Unexpected result: access_token not found");
+				assertTrue(jsonObj.has("token_type"), "Unexpected result: token_type not found");
+				assertTrue(jsonObj.has("refresh_token"), "Unexpected result: refresh_token not found");
+				// assertTrue(jsonObj.has("id_token"), "Unexpected result:
+				// id_token not found");
+
+				String accessToken = jsonObj.getString("access_token");
+				String refreshToken = jsonObj.getString("refresh_token");
+				// String idToken = jsonObj.getString("id_token");
+
+				final Token newToken = new Token();
+				newToken.setAccessToken(accessToken);
+				newToken.setRefreshToken(refreshToken);
+
+				t.setT(newToken);
+			} catch (JSONException e) {
+				e.printStackTrace();
+				fail(e.getMessage() + "\nResponse was: " + entity);
+			} catch (Exception e) {
+				e.printStackTrace();
+				fail(e.getMessage());
+			}
+		} catch (Exception e) {
+			e.printStackTrace();
+			fail();
+		}
+
+		return t.getT();
+	}
+
+	private Token internalRequest(final String authorizePath, final String tokenPath, final String userId,
+			final String userSecret, final String umaClientId, final String umaClientSecret,
+			final String umaRedirectUri, final UmaScopeType p_scopeType) {
+		try {
+			requestAuthorizationCode(authorizePath, userId, userSecret, umaClientId, umaRedirectUri, p_scopeType);
+			requestToken(tokenPath, umaClientId, umaClientSecret, umaRedirectUri);
+
+		} catch (Exception e) {
+			e.printStackTrace();
+			fail(e.getMessage());
+		}
+
+		UmaTestUtil.assert_(token);
+		return token;
+	}
+
+	private void requestAuthorizationCode(final String authorizePath, final String userId, final String userSecret,
+			final String umaClientId, final String umaRedirectUri, final UmaScopeType p_scopeType) throws Exception {
+		requestAuthorizationCode(authorizePath, userId, userSecret, umaClientId, umaRedirectUri,
+				p_scopeType.getValue());
+	}
+
+	private void requestAuthorizationCode(final String authorizePath, final String userId, final String userSecret,
+			final String umaClientId, final String umaRedirectUri, final String p_scopeType) throws Exception {
+		List<ResponseType> responseTypes = new ArrayList<ResponseType>();
+		responseTypes.add(ResponseType.CODE);
+		responseTypes.add(ResponseType.ID_TOKEN);
+
+		List<String> scopes = new ArrayList<String>();
+		scopes.add(p_scopeType);
+
+		String state = UUID.randomUUID().toString();
+		String nonce = UUID.randomUUID().toString();
+
+		AuthorizationRequest authorizationRequest = new AuthorizationRequest(responseTypes, umaClientId, scopes,
+				umaRedirectUri, nonce);
+		authorizationRequest.setState(state);
+		authorizationRequest.setAuthUsername(userId);
+		authorizationRequest.setAuthPassword(userSecret);
+		authorizationRequest.getPrompts().add(Prompt.NONE);
+
+		Builder request = ResteasyClientBuilder.newClient()
+				.target(baseUri.toString() + authorizePath + "?" + authorizationRequest.getQueryString()).request();
+		request.header("Authorization", "Basic " + authorizationRequest.getEncodedCredentials());
+		request.header("Accept", MediaType.TEXT_PLAIN);
+		Response response = request.get();
+		String entity = response.readEntity(String.class);
+
+		BaseTest.showResponse("TTokenClient.requestAuthorizationCode() : ", response, entity);
+
+		assertEquals(response.getStatus(), 302, "Unexpected response code.");
+		assertNotNull(response.getLocation(), "Unexpected result: " + response.getLocation());
+
+		if (response.getLocation() != null) {
+			try {
+				final String location = response.getLocation().toString();
+				final int fragmentIndex = location.indexOf("#");
+
+				Map<String, String> params = new HashMap<String, String>();
+				if (fragmentIndex != -1) {
+					String fragment = location.substring(fragmentIndex + 1);
+					params = QueryStringDecoder.decode(fragment);
+				} else {
+					int queryStringIndex = location.indexOf("?");
+					if (queryStringIndex != -1) {
+						String queryString = location.substring(queryStringIndex + 1);
+						params = QueryStringDecoder.decode(queryString);
+					}
+				}
+
+				assertNotNull(params.get("code"), "The code is null");
+				assertNotNull(params.get("scope"), "The scope is null");
+				assertNotNull(params.get("state"), "The state is null");
+
+				token.setAuthorizationCode(params.get("code"));
+				token.setScope(params.get("scope"));
+			} catch (Exception e) {
+				e.printStackTrace();
+				fail(e.getMessage());
+			}
+		}
+	}
+
+	private void requestToken(final String tokenPath, final String umaClientId, final String umaClientSecret,
+			final String umaRedirectUri) throws Exception {
+		if (token == null || StringUtils.isBlank(token.getAuthorizationCode())) {
+			throw new IllegalArgumentException("Authorization code is not initialized.");
+		}
+
+		TokenRequest tokenRequest = new TokenRequest(GrantType.AUTHORIZATION_CODE);
+		tokenRequest.setCode(token.getAuthorizationCode());
+		tokenRequest.setRedirectUri(umaRedirectUri);
+		tokenRequest.setAuthUsername(umaClientId);
+		tokenRequest.setAuthPassword(umaClientSecret);
+		tokenRequest.setAuthenticationMethod(AuthenticationMethod.CLIENT_SECRET_BASIC);
+		tokenRequest.setScope(token.getScope());
+
+		Builder request = ResteasyClientBuilder.newClient().target(baseUri.toString() + tokenPath).request();
+		request.header("Authorization", "Basic " + tokenRequest.getEncodedCredentials());
+		Response response = request
+				.post(Entity.form(new MultivaluedHashMap<String, String>(tokenRequest.getParameters())));
+		String entity = response.readEntity(String.class);
+
+		BaseTest.showResponse("TTokenClient.requestToken() :", response, entity);
+
+		assertEquals(response.getStatus(), 200, "Unexpected response code.");
+
+		try {
+			JSONObject jsonObj = new JSONObject(entity);
+			assertTrue(jsonObj.has("access_token"), "Unexpected result: access_token not found");
+			assertTrue(jsonObj.has("token_type"), "Unexpected result: token_type not found");
+			assertTrue(jsonObj.has("refresh_token"), "Unexpected result: refresh_token not found");
+			// assertTrue(jsonObj.has("id_token"), "Unexpected result: id_token
+			// not found");
+
+			String accessToken = jsonObj.getString("access_token");
+			String refreshToken = jsonObj.getString("refresh_token");
+			// String idToken = jsonObj.getString("id_token");
+
+			token.setAccessToken(accessToken);
+			token.setRefreshToken(refreshToken);
+			// m_token.setIdToken(idToken);
+		} catch (JSONException e) {
+			e.printStackTrace();
+			fail(e.getMessage() + "\nResponse was: " + entity);
+		} catch (Exception e) {
+			e.printStackTrace();
+			fail(e.getMessage());
+		}
+	}
+
+	// todo UMA2
+	public RPTResponse requestRpt(final String p_rptPath) {
+		final Holder<RPTResponse> h = new Holder<RPTResponse>();
+
+		try {
+			Builder request = ResteasyClientBuilder.newClient().target(baseUri.toString() + p_rptPath).request();
+			request.header("Accept", UmaConstants.JSON_MEDIA_TYPE);
+			//request.header("Authorization", "Bearer " + p_aat.getAccessToken());
+			Response response = request.post(Entity.form(new Form()));
+			String entity = response.readEntity(String.class);
+
+			BaseTest.showResponse("UMA : TTokenRequest.requestRpt() : ", response, entity);
+
+			assertEquals(response.getStatus(), Response.Status.CREATED.getStatusCode(), "Unexpected response code.");
+			try {
+				String tokenResponse = entity;
+				final JSONObject jsonObj = new JSONObject(tokenResponse);
+				if (jsonObj.has("requesterPermissionTokenResponse")) {
+					tokenResponse = jsonObj.get("requesterPermissionTokenResponse").toString();
+				}
+				System.out.println("Token response = " + tokenResponse);
+				RPTResponse result = ServerUtil.createJsonMapper().readValue(tokenResponse, RPTResponse.class);
+				UmaTestUtil.assert_(result);
+
+				h.setT(result);
+			} catch (IOException e) {
+				e.printStackTrace();
+				fail();
+			} catch (JSONException e) {
+				e.printStackTrace();
+				fail();
+			}
+		} catch (Exception e) {
+			e.printStackTrace();
+			fail();
+		}
+
+		return h.getT();
+	}
+
+	public RptIntrospectionResponse requestRptStatus(String p_umaRptStatusPath, final String rpt) {
+		final Holder<RptIntrospectionResponse> h = new Holder<RptIntrospectionResponse>();
+
+		try {
+			Builder request = ResteasyClientBuilder.newClient().target(baseUri.toString() + p_umaRptStatusPath)
+					.request();
+			request.header("Content-Type", MediaType.APPLICATION_FORM_URLENCODED);
+			// todo uma2
+//			request.header("Authorization", "Bearer " + p_aat.getAccessToken());
+			Response response = request.post(Entity.form(new Form("token", rpt)));
+			String entity = response.readEntity(String.class);
+
+			// try {
+			// final String json =
+			// ServerUtil.createJsonMapper().writeValueAsString(rpt);
+			// request.setContent(Util.getBytes(json));
+			// request.setContentType(UmaConstants.JSON_MEDIA_TYPE);
+			// } catch (IOException e) {
+			// e.printStackTrace();
+			// fail();
+			// }
+
+			BaseTest.showResponse("UMA : TTokenRequest.requestRptStatus() : ", response, entity);
+
+			assertEquals(response.getStatus(), Response.Status.OK.getStatusCode(), "Unexpected response code.");
+			try {
+				final RptIntrospectionResponse result = ServerUtil.createJsonMapper().readValue(entity,
+						RptIntrospectionResponse.class);
+				Assert.assertNotNull(result);
+
+				h.setT(result);
+			} catch (IOException e) {
+				e.printStackTrace();
+				fail();
+			}
+		} catch (Exception e) {
+			e.printStackTrace();
+			fail();
+		}
+		return h.getT();
+	}
+
+	// public static void main(String[] args) throws Exception {
+	// final String s =
+	// "{\"requesterPermissionTokenResponse\":{\"token\":\"75a3fc39-c487-4c46-afd7-c0d65916f4aa\\/CCE1.77DA.CB1A.B6BE.F536.731F.AAF1.4012\"}}";
+	// String c = "";
+	// final JSONObject jsonObj = new JSONObject(s);
+	// if (jsonObj.has("requesterPermissionTokenResponse")) {
+	// c = jsonObj.get("requesterPermissionTokenResponse").toString();
+	// }
+	//
+	// System.out.println(c);
+	// }
+}
diff --git a/oxAuth/Server/src/test/java/org/gluu/oxauth/model/uma/TUma.java b/oxAuth/Server/src/test/java/org/gluu/oxauth/model/uma/TUma.java
new file mode 100644
index 00000000..6358b02b
--- /dev/null
+++ b/oxAuth/Server/src/test/java/org/gluu/oxauth/model/uma/TUma.java
@@ -0,0 +1,101 @@
+/*
+ * oxAuth is available under the MIT License (2008). See http://opensource.org/licenses/MIT for full text.
+ *
+ * Copyright (c) 2014, Gluu
+ */
+
+package org.gluu.oxauth.model.uma;
+
+import java.io.IOException;
+import java.net.URI;
+import java.util.List;
+
+import org.gluu.oxauth.model.uma.PermissionTicket;
+import org.gluu.oxauth.model.uma.RPTResponse;
+import org.gluu.oxauth.model.uma.RptIntrospectionResponse;
+import org.gluu.oxauth.model.uma.UmaMetadata;
+import org.gluu.oxauth.model.uma.UmaPermission;
+import org.gluu.oxauth.model.uma.UmaResource;
+import org.gluu.oxauth.model.uma.UmaResourceResponse;
+import org.gluu.oxauth.model.uma.wrapper.Token;
+import org.gluu.oxauth.util.ServerUtil;
+
+/**
+ * @author Yuriy Zabrovarnyy
+ * @version 0.9, 15/03/2013
+ */
+
+public class TUma {
+	private TUma() {
+	}
+
+	public static Token requestPat(URI baseUri, final String authorizePath, final String tokenPath, final String userId,
+			final String userSecret, final String umaClientId, final String umaClientSecret,
+			final String umaRedirectUri) {
+		final TTokenRequest r = new TTokenRequest(baseUri);
+		return r.pat(authorizePath, tokenPath, userId, userSecret, umaClientId, umaClientSecret, umaRedirectUri);
+	}
+
+	public static Token newTokenByRefreshToken(URI baseUri, final String tokenPath, final Token p_oldToken,
+			final String umaClientId, final String umaClientSecret) {
+		final TTokenRequest r = new TTokenRequest(baseUri);
+		return r.newTokenByRefreshToken(tokenPath, p_oldToken, umaClientId, umaClientSecret);
+	}
+
+	public static RPTResponse requestRpt(URI baseUri, String p_rptPath) {
+		final TTokenRequest r = new TTokenRequest(baseUri);
+		return r.requestRpt(p_rptPath);
+	}
+
+	public static UmaMetadata requestConfiguration(URI baseUri, final String configurationPath) {
+		final TConfiguration c = new TConfiguration(baseUri);
+		return c.getConfiguration(configurationPath);
+	}
+
+	public static UmaResourceResponse registerResource(URI baseUri, Token p_pat, String p_umaRegisterResourcePath,
+													   UmaResource resource) {
+		final TRegisterResource s = new TRegisterResource(baseUri);
+		return s.registerResource(p_pat, p_umaRegisterResourcePath, resource);
+	}
+
+	public static UmaResourceResponse modifyResource(URI baseUri, Token p_pat, String p_umaRegisterResourcePath,
+													 final String p_rsid, UmaResource resource) {
+		final TRegisterResource s = new TRegisterResource(baseUri);
+		return s.modifyResource(p_pat, p_umaRegisterResourcePath, p_rsid, resource);
+	}
+
+	public static List<String> getResourceList(URI baseUri, Token p_pat, String p_umaRegisterResourcePath) {
+		final TRegisterResource s = new TRegisterResource(baseUri);
+		return s.getResourceList(p_pat, p_umaRegisterResourcePath);
+	}
+
+	public static void deleteResource(URI baseUri, Token p_pat, String p_umaRegisterResourcePath, String p_id) {
+		final TRegisterResource s = new TRegisterResource(baseUri);
+		s.deleteResource(p_pat, p_umaRegisterResourcePath, p_id);
+	}
+
+	public static PermissionTicket registerPermission(URI baseUri, Token p_pat, UmaPermission p_request, String p_umaPermissionPath) {
+		final TRegisterPermission p = new TRegisterPermission(baseUri);
+		return p.registerPermission(p_pat, p_request, p_umaPermissionPath);
+	}
+
+	public static RptIntrospectionResponse requestRptStatus(URI baseUri, String p_umaRptStatusPath,	String rpt) {
+		final TTokenRequest r = new TTokenRequest(baseUri);
+		return r.requestRptStatus(p_umaRptStatusPath, rpt);
+	}
+
+	public static <T> T readJsonValue(String p_json, Class<T> p_clazz) {
+		try {
+			return ServerUtil.createJsonMapper().readValue(p_json, p_clazz);
+		} catch (Exception e) {
+			e.printStackTrace();
+			try {
+				System.out.println("TUMA: Exception happends, try falback");
+				return ServerUtil.jsonMapperWithUnwrapRoot().readValue(p_json, p_clazz);
+			} catch (IOException e1) {
+				e1.printStackTrace();
+				return null;
+			}
+		}
+	}
+}
diff --git a/oxAuth/Server/src/test/java/org/gluu/oxauth/service/DateFormatterServiceTest.java b/oxAuth/Server/src/test/java/org/gluu/oxauth/service/DateFormatterServiceTest.java
new file mode 100644
index 00000000..67a10263
--- /dev/null
+++ b/oxAuth/Server/src/test/java/org/gluu/oxauth/service/DateFormatterServiceTest.java
@@ -0,0 +1,84 @@
+package org.gluu.oxauth.service;
+
+import org.gluu.oxauth.model.common.CallerType;
+import org.gluu.oxauth.model.configuration.AppConfiguration;
+import org.gluu.oxauth.service.date.DateFormatterService;
+import org.mockito.InjectMocks;
+import org.mockito.Mock;
+import org.mockito.Spy;
+import org.mockito.testng.MockitoTestNGListener;
+import org.testng.annotations.Listeners;
+import org.testng.annotations.Test;
+
+import java.io.Serializable;
+import java.util.Calendar;
+import java.util.Date;
+import java.util.HashMap;
+import java.util.Map;
+
+import static org.mockito.Mockito.when;
+import static org.testng.Assert.assertEquals;
+
+/**
+ * @author Yuriy Z
+ */
+@Listeners(MockitoTestNGListener.class)
+public class DateFormatterServiceTest {
+
+    @InjectMocks
+    @Spy
+    private DateFormatterService dateFormatterService;
+
+    @Mock
+    private AppConfiguration appConfiguration;
+
+    @Test
+    public void formatClaim_whenNotFormatter_shouldFallback() {
+        Date date = new Date(10000);
+
+        final Serializable formattedValue = dateFormatterService.formatClaim(date, CallerType.USERINFO);
+        assertEquals(10L, formattedValue);
+    }
+
+    @Test
+    public void formatClaim_whenExplicitClaimFormatterIsSet_shouldFormatByFormatter() {
+        Calendar calendar = Calendar.getInstance();
+        calendar.set(2023, Calendar.JANUARY, 11);
+
+        Map<String, String> map = new HashMap<>();
+        map.put("birthdate", "yyyy-MM-dd");
+
+        when(appConfiguration.getDateFormatterPatterns()).thenReturn(map);
+
+        final Serializable formattedValue = dateFormatterService.formatClaim(calendar.getTime(), "birthdate");
+        assertEquals(formattedValue, "2023-01-11");
+    }
+
+    @Test
+    public void formatClaim_whenUserInfoFormatterIsSet_shouldFormatByFormatter() {
+        Calendar calendar = Calendar.getInstance();
+        calendar.set(2023, Calendar.JANUARY, 11);
+
+        Map<String, String> map = new HashMap<>();
+        map.put("userinfo", "yyyy-MM-dd");
+
+        when(appConfiguration.getDateFormatterPatterns()).thenReturn(map);
+
+        final Serializable formattedValue = dateFormatterService.formatClaim(calendar.getTime(), CallerType.USERINFO);
+        assertEquals(formattedValue, "2023-01-11");
+    }
+
+    @Test
+    public void formatClaim_whenCommonFormatterIsSet_shouldFormatByFormatter() {
+        Calendar calendar = Calendar.getInstance();
+        calendar.set(2023, Calendar.JANUARY, 11);
+
+        Map<String, String> map = new HashMap<>();
+        map.put("common", "yyyy-MM-dd");
+
+        when(appConfiguration.getDateFormatterPatterns()).thenReturn(map);
+
+        final Serializable formattedValue = dateFormatterService.formatClaim(calendar.getTime(), CallerType.USERINFO);
+        assertEquals(formattedValue, "2023-01-11");
+    }
+}
diff --git a/oxAuth/Server/src/test/java/org/gluu/oxauth/service/RedirectionUriServiceTest.java b/oxAuth/Server/src/test/java/org/gluu/oxauth/service/RedirectionUriServiceTest.java
new file mode 100644
index 00000000..92d2c328
--- /dev/null
+++ b/oxAuth/Server/src/test/java/org/gluu/oxauth/service/RedirectionUriServiceTest.java
@@ -0,0 +1,25 @@
+package org.gluu.oxauth.service;
+
+import org.testng.annotations.Test;
+
+import static org.testng.Assert.assertTrue;
+
+/**
+ * @author Yuriy Z
+ */
+public class RedirectionUriServiceTest {
+
+    @Test
+    public void isUriEqual_forEqualUris_shouldReturnTrue() {
+        String[] redirectUris = new String[]{
+                "https://google.com/path?param=aa&param2=bb",
+                "https://google.com/?param=aa&param2=bb",
+        };
+
+        assertTrue(RedirectionUriService.isUriEqual("https://google.com/path?param=aa&param2=bb", redirectUris));
+        assertTrue(RedirectionUriService.isUriEqual("https://google.com/path?param2=bb&param=aa", redirectUris));
+
+        assertTrue(RedirectionUriService.isUriEqual("https://google.com/?param=aa&param2=bb", redirectUris));
+        assertTrue(RedirectionUriService.isUriEqual("https://google.com/?param2=bb&param=aa", redirectUris));
+    }
+}
diff --git a/oxAuth/Server/src/test/java/org/gluu/oxauth/service/ScopeServiceTest.java b/oxAuth/Server/src/test/java/org/gluu/oxauth/service/ScopeServiceTest.java
new file mode 100644
index 00000000..ef0b6dd3
--- /dev/null
+++ b/oxAuth/Server/src/test/java/org/gluu/oxauth/service/ScopeServiceTest.java
@@ -0,0 +1,274 @@
+package org.gluu.oxauth.service;
+
+import com.google.common.collect.Lists;
+import org.gluu.model.GluuAttribute;
+import org.gluu.model.attribute.AttributeDataType;
+import org.gluu.oxauth.model.common.User;
+import org.gluu.oxauth.model.config.StaticConfiguration;
+import org.gluu.oxauth.model.configuration.AppConfiguration;
+import org.gluu.persist.PersistenceEntryManager;
+import org.gluu.service.CacheService;
+import org.gluu.service.LocalCacheService;
+import org.mockito.InjectMocks;
+import org.mockito.Mock;
+import org.mockito.testng.MockitoTestNGListener;
+import org.oxauth.persistence.model.Scope;
+import org.slf4j.Logger;
+import org.testng.annotations.Listeners;
+import org.testng.annotations.Test;
+
+import java.util.Date;
+import java.util.Map;
+import java.util.UUID;
+
+import static org.mockito.ArgumentMatchers.anyString;
+import static org.mockito.ArgumentMatchers.startsWith;
+import static org.mockito.Mockito.*;
+import static org.testng.Assert.assertEquals;
+import static org.testng.Assert.assertNotNull;
+
+@Listeners(MockitoTestNGListener.class)
+public class ScopeServiceTest {
+
+    @InjectMocks
+    private ScopeService scopeService;
+
+    @Mock
+    private Logger log;
+
+    @Mock
+    private AppConfiguration appConfiguration;
+
+    @Mock
+    private CacheService cacheService;
+
+    @Mock
+    private LocalCacheService localCacheService;
+
+    @Mock
+    private PersistenceEntryManager ldapEntryManager;
+
+    @Mock
+    private StaticConfiguration staticConfiguration;
+
+    @Mock
+    private AttributeService attributeService;
+
+    @Test
+    public void getClaims_ScopeParamNull_NotProcessed() throws Exception {
+        User user = new User();
+
+        Map<String, Object> result = scopeService.getClaims(user, null);
+
+        assertNotNull(result);
+        assertEquals(result.size(), 0);
+
+        verify(log).trace("Scope is null.");
+        verifyNoMoreInteractions(log);
+        verifyNoMoreInteractions(attributeService);
+    }
+
+    @Test
+    public void getClaims_ScopeClaimsNull_NotProcessed() throws Exception {
+        User user = new User();
+        Scope scope = new Scope();
+        scope.setOxAuthClaims(null);
+
+        Map<String, Object> result = scopeService.getClaims(user, scope);
+
+        assertNotNull(result);
+        assertEquals(result.size(), 0);
+
+        verify(log).trace(startsWith("No claims set for scope:"), (Object) isNull());
+        verifyNoMoreInteractions(log);
+        verifyNoMoreInteractions(attributeService);
+    }
+
+    @Test
+    public void getClaims_ScopeClaimsEmpty_NotProcessed() throws Exception {
+        User user = new User();
+        Scope scope = new Scope();
+        scope.setOxAuthClaims(Lists.newArrayList());
+
+        Map<String, Object> result = scopeService.getClaims(user, scope);
+
+        assertNotNull(result);
+        assertEquals(result.size(), 0);
+
+        verify(log, never()).trace(startsWith("No claims set for scope:"));
+        verifyNoMoreInteractions(log);
+        verifyNoMoreInteractions(attributeService);
+    }
+
+    @Test
+    public void getClaims_GluuAttributeClaimNameBlank_EmptyResult() throws Exception {
+        User user = new User();
+        Scope scope = new Scope();
+        scope.setOxAuthClaims(Lists.newArrayList("claim1", "claim2"));
+
+        when(attributeService.getAttributeByDn(anyString())).thenReturn(new GluuAttribute());
+
+        Map<String, Object> result = scopeService.getClaims(user, scope);
+
+        assertNotNull(result);
+        assertEquals(result.size(), 0);
+
+        verify(log, times(2)).error(startsWith("Failed to get claim because claim name is not set for attribute"), (Object) isNull());
+        verifyNoMoreInteractions(log);
+        verifyNoMoreInteractions(attributeService);
+    }
+
+    @Test
+    public void getClaims_GluuAttributeLdapNameBlank_EmptyResult() throws Exception {
+        User user = new User();
+        Scope scope = new Scope();
+        scope.setOxAuthClaims(Lists.newArrayList("claim1", "claim2"));
+
+        GluuAttribute gluuAttribute = new GluuAttribute();
+        gluuAttribute.setOxAuthClaimName("CLAIM_NAME");
+        when(attributeService.getAttributeByDn(anyString())).thenReturn(gluuAttribute);
+
+        Map<String, Object> result = scopeService.getClaims(user, scope);
+
+        assertNotNull(result);
+        assertEquals(result.size(), 0);
+
+        verify(log, times(2)).error(startsWith("Failed to get claim because name is not set for attribute"), (Object) isNull());
+        verifyNoMoreInteractions(log);
+        verifyNoMoreInteractions(attributeService);
+    }
+
+    @Test
+    public void getClaims_AllFieldsSet_ClaimsReturned() throws Exception {
+        final Date createdAndUpdatedAt = new Date();
+        final String userId = UUID.randomUUID().toString();
+
+        User user = buildRegularUser(userId, createdAndUpdatedAt, createdAndUpdatedAt);
+
+        Scope scope = new Scope();
+        scope.setOxAuthClaims(Lists.newArrayList("uid", "updatedAt", "createdAt", "emailVerified", "lastLogon", "metadata"));
+
+        mockRegularGluuAttributesMapping();
+        when(ldapEntryManager.decodeTime(anyString(), anyString())).thenReturn(createdAndUpdatedAt);
+
+        Map<String, Object> result = scopeService.getClaims(user, scope);
+
+        assertNotNull(result);
+        assertEquals(result.size(), 6);
+        assertEquals(result.get("uid"), userId);
+        assertEquals(result.get("updated_at"), createdAndUpdatedAt);
+        assertEquals(result.get("created_at"), createdAndUpdatedAt);
+        assertEquals(result.get("email_verified"), true);
+        assertEquals(result.get("last_logon"), createdAndUpdatedAt);
+        assertEquals(result.get("metadata"), "{}");
+
+
+        verifyNoMoreInteractions(log);
+        verifyNoMoreInteractions(attributeService);
+    }
+
+    @Test
+    public void getClaims_DifferentDateFields_ClaimsReturnedWithRightFormat() throws Exception {
+        final String userId = UUID.randomUUID().toString();
+        final Date createdAt = new Date(System.currentTimeMillis() - 24*60*60*1000);
+        final Date updatedAt = new Date(System.currentTimeMillis() - 12*60*60*1000);
+        final Date lastLogon = new Date();
+
+        User user = buildRegularUser(userId, createdAt, updatedAt);
+
+        Scope scope = new Scope();
+        scope.setOxAuthClaims(Lists.newArrayList("uid", "updatedAt", "createdAt", "emailVerified", "lastLogon", "metadata"));
+
+        mockRegularGluuAttributesMapping();
+        when(ldapEntryManager.decodeTime(anyString(), anyString())).thenReturn(lastLogon);
+
+        Map<String, Object> result = scopeService.getClaims(user, scope);
+
+        assertNotNull(result);
+        assertEquals(result.size(), 6);
+        assertEquals(result.get("uid"), userId);
+        assertEquals(result.get("updated_at"), updatedAt);
+        assertEquals(result.get("created_at"), createdAt);
+        assertEquals(result.get("email_verified"), true);
+        assertEquals(result.get("last_logon"), lastLogon);
+        assertEquals(result.get("metadata"), "{}");
+
+
+        verifyNoMoreInteractions(log);
+        verifyNoMoreInteractions(attributeService);
+    }
+
+    @Test
+    public void getClaims_RequestFieldThatDoesntExist_ShouldBeIgnored() throws Exception {
+        final String userId = UUID.randomUUID().toString();
+        final Date createdAndUpdatedAt = new Date();
+
+        User user = buildRegularUser(userId, createdAndUpdatedAt, createdAndUpdatedAt);
+
+        Scope scope = new Scope();
+        scope.setOxAuthClaims(Lists.newArrayList("uid", "updatedAt", "createdAt", "emailVerified", "lastLogon",
+                "metadata", "tmp"));
+
+        mockRegularGluuAttributesMapping();
+        when(ldapEntryManager.decodeTime(anyString(), anyString())).thenReturn(createdAndUpdatedAt);
+
+        Map<String, Object> result = scopeService.getClaims(user, scope);
+
+        assertNotNull(result);
+        assertEquals(result.size(), 6);
+        assertEquals(result.get("uid"), userId);
+        assertEquals(result.get("updated_at"), createdAndUpdatedAt);
+        assertEquals(result.get("created_at"), createdAndUpdatedAt);
+        assertEquals(result.get("email_verified"), true);
+        assertEquals(result.get("last_logon"), createdAndUpdatedAt);
+        assertEquals(result.get("metadata"), "{}");
+
+
+        verifyNoMoreInteractions(log);
+        verifyNoMoreInteractions(attributeService);
+    }
+
+    private void mockRegularGluuAttributesMapping() {
+        GluuAttribute attributeUid = new GluuAttribute();
+        attributeUid.setName("uid");
+        attributeUid.setOxAuthClaimName("uid");
+        GluuAttribute attributeUpdatedAt = new GluuAttribute();
+        attributeUpdatedAt.setName("updatedAt");
+        attributeUpdatedAt.setOxAuthClaimName("updated_at");
+        GluuAttribute attributeCreatedAt = new GluuAttribute();
+        attributeCreatedAt.setName("createdAt");
+        attributeCreatedAt.setOxAuthClaimName("created_at");
+        GluuAttribute attributeBoolean = new GluuAttribute();
+        attributeBoolean.setDataType(AttributeDataType.BOOLEAN);
+        attributeBoolean.setName("emailVerified");
+        attributeBoolean.setOxAuthClaimName("email_verified");
+        GluuAttribute attributeDate = new GluuAttribute();
+        attributeDate.setDataType(AttributeDataType.DATE);
+        attributeDate.setName("lastLogon");
+        attributeDate.setOxAuthClaimName("last_logon");
+        GluuAttribute attributeJson = new GluuAttribute();
+        attributeJson.setDataType(AttributeDataType.BINARY);
+        attributeJson.setName("metadata");
+        attributeJson.setOxAuthClaimName("metadata");
+        GluuAttribute attributeTmp = new GluuAttribute();
+        attributeTmp.setDataType(AttributeDataType.STRING);
+        attributeTmp.setName("tmp");
+        attributeTmp.setOxAuthClaimName("tmp");
+        when(attributeService.getAttributeByDn(anyString())).thenReturn(attributeUid, attributeUpdatedAt,
+                attributeCreatedAt, attributeBoolean, attributeDate, attributeJson, attributeTmp);
+    }
+
+    private User buildRegularUser(String userId, Date createdAt, Date updatedAt) {
+        final User user = new User();
+        user.setUpdatedAt(updatedAt);
+        user.setCreatedAt(createdAt);
+        user.setUserId(userId);
+        user.setAttribute("emailVerified", "true", false);
+        user.setAttribute("lastLogon", "20211012135114.554Z", false);
+        user.setAttribute("metadata", "{}", false);
+        user.setDn("DN");
+
+        return user;
+    }
+
+}
diff --git a/oxAuth/Server/src/test/java/org/gluu/oxauth/service/TestResteasyInitializer.java b/oxAuth/Server/src/test/java/org/gluu/oxauth/service/TestResteasyInitializer.java
new file mode 100644
index 00000000..5d7ff5c5
--- /dev/null
+++ b/oxAuth/Server/src/test/java/org/gluu/oxauth/service/TestResteasyInitializer.java
@@ -0,0 +1,64 @@
+/*
+ * oxAuth is available under the MIT License (2008). See http://opensource.org/licenses/MIT for full text.
+ *
+ * Copyright (c) 2014, Gluu
+ */
+
+package org.gluu.oxauth.service;
+
+import java.util.HashSet;
+import java.util.Set;
+
+import javax.ws.rs.core.Application;
+import javax.ws.rs.ext.Provider;
+
+import org.gluu.oxauth.authorize.ws.rs.AuthorizeRestWebServiceImpl;
+import org.gluu.oxauth.clientinfo.ws.rs.ClientInfoRestWebServiceImpl;
+import org.gluu.oxauth.gluu.ws.rs.GluuConfigurationWS;
+import org.gluu.oxauth.introspection.ws.rs.IntrospectionWebService;
+import org.gluu.oxauth.jwk.ws.rs.JwkRestWebServiceImpl;
+import org.gluu.oxauth.register.ws.rs.RegisterRestWebServiceImpl;
+import org.gluu.oxauth.session.ws.rs.EndSessionRestWebServiceImpl;
+import org.gluu.oxauth.token.ws.rs.TokenRestWebServiceImpl;
+import org.gluu.oxauth.uma.ws.rs.UmaGatheringWS;
+import org.gluu.oxauth.uma.ws.rs.UmaMetadataWS;
+import org.gluu.oxauth.uma.ws.rs.UmaPermissionRegistrationWS;
+import org.gluu.oxauth.uma.ws.rs.UmaResourceRegistrationWS;
+import org.gluu.oxauth.uma.ws.rs.UmaRptIntrospectionWS;
+import org.gluu.oxauth.uma.ws.rs.UmaScopeWS;
+import org.gluu.oxauth.userinfo.ws.rs.UserInfoRestWebServiceImpl;
+
+/**
+ * Integration with Resteasy
+ *
+ * @author Yuriy Movchan
+ * @author Javier Rojas Blum
+ * @version April 26, 2017
+ */
+@Provider
+public class TestResteasyInitializer extends Application {
+
+    @Override
+    public Set<Class<?>> getClasses() {
+        HashSet<Class<?>> classes = new HashSet<Class<?>>();
+        classes.add(AuthorizeRestWebServiceImpl.class);
+        classes.add(TokenRestWebServiceImpl.class);
+        classes.add(RegisterRestWebServiceImpl.class);
+        classes.add(UserInfoRestWebServiceImpl.class);
+        classes.add(IntrospectionWebService.class);
+        classes.add(ClientInfoRestWebServiceImpl.class);
+        classes.add(JwkRestWebServiceImpl.class);
+        classes.add(EndSessionRestWebServiceImpl.class);
+
+        classes.add(UmaPermissionRegistrationWS.class);
+        classes.add(UmaResourceRegistrationWS.class);
+        classes.add(UmaRptIntrospectionWS.class);
+        classes.add(UmaScopeWS.class);
+        classes.add(UmaMetadataWS.class);
+        classes.add(UmaGatheringWS.class);
+
+        classes.add(GluuConfigurationWS.class);
+        return classes;
+    }
+
+}
\ No newline at end of file
diff --git a/oxAuth/Server/src/test/java/org/gluu/oxauth/service/fido/u2f/RawAuthenticationServiceTest.java b/oxAuth/Server/src/test/java/org/gluu/oxauth/service/fido/u2f/RawAuthenticationServiceTest.java
new file mode 100644
index 00000000..fe830161
--- /dev/null
+++ b/oxAuth/Server/src/test/java/org/gluu/oxauth/service/fido/u2f/RawAuthenticationServiceTest.java
@@ -0,0 +1,32 @@
+package org.gluu.oxauth.service.fido.u2f;
+
+import static org.testng.Assert.assertNotNull;
+
+import javax.inject.Inject;
+
+import org.gluu.oxauth.BaseComponentTest;
+import org.gluu.oxauth.model.fido.u2f.message.RawAuthenticateResponse;
+import org.gluu.oxauth.model.util.Base64Util;
+import org.gluu.oxauth.service.fido.u2f.RawAuthenticationService;
+import org.python.bouncycastle.util.encoders.Hex;
+import org.testng.annotations.Test;
+
+public class RawAuthenticationServiceTest extends BaseComponentTest {
+
+	@Inject
+	private RawAuthenticationService rawAuthenticationService;
+
+	@Test
+	public void testSecureClickRawAuthenticationResponse() {
+		String secureClickResponseHex = "01010000 001a3044 0220652a 4248527f 805a6203 a903e820 20d9d871 3966614b f41b93c9 02c83a9f c56f0220 230283f9 8305f889 d379278b 5fde2e2f d3e68182 08dfff75 3e218b74 a6e56306";
+		byte[] secureClickResponseBytes = Hex.decode(secureClickResponseHex);
+
+		// Base64 URL encode to allow consume by API
+		String u2fResponseBase64 = Base64Util.base64urlencode(secureClickResponseBytes);
+		
+		RawAuthenticateResponse rawAuthenticateResponse = rawAuthenticationService.parseRawAuthenticateResponse(u2fResponseBase64);
+		
+		assertNotNull(rawAuthenticateResponse);
+	}
+
+}
diff --git a/oxAuth/Server/src/test/java/org/gluu/oxauth/service/fido/u2f/RawAuthenticationServiceUnitTest.java b/oxAuth/Server/src/test/java/org/gluu/oxauth/service/fido/u2f/RawAuthenticationServiceUnitTest.java
new file mode 100644
index 00000000..60dc26e0
--- /dev/null
+++ b/oxAuth/Server/src/test/java/org/gluu/oxauth/service/fido/u2f/RawAuthenticationServiceUnitTest.java
@@ -0,0 +1,165 @@
+package org.gluu.oxauth.service.fido.u2f;
+
+import static org.testng.Assert.assertTrue;
+
+import java.math.BigInteger;
+
+import org.apache.commons.codec.DecoderException;
+import org.apache.commons.codec.binary.Hex;
+import org.gluu.oxauth.crypto.signature.SHA256withECDSASignatureVerification;
+import org.gluu.oxauth.crypto.signature.SignatureVerification;
+import org.gluu.oxauth.model.exception.SignatureException;
+import org.gluu.oxauth.model.fido.u2f.exception.BadInputException;
+import org.gluu.oxauth.model.fido.u2f.message.RawAuthenticateResponse;
+import org.gluu.oxauth.model.fido.u2f.message.RawRegisterResponse;
+import org.gluu.oxauth.model.fido.u2f.protocol.AuthenticateResponse;
+import org.gluu.oxauth.model.fido.u2f.protocol.ClientData;
+import org.gluu.oxauth.model.fido.u2f.protocol.RegisterResponse;
+import org.gluu.oxauth.util.ServerUtil;
+import org.gluu.util.security.SecurityProviderUtility;
+import org.testng.annotations.Test;
+
+import com.fasterxml.jackson.core.JsonProcessingException;
+import com.fasterxml.jackson.databind.JsonMappingException;
+import com.google.common.io.ByteArrayDataOutput;
+import com.google.common.io.ByteStreams;
+
+public class RawAuthenticationServiceUnitTest {
+
+	@Test
+	public void checkSignatureVerification() throws DecoderException, SignatureException {
+		SecurityProviderUtility.installBCProvider();
+
+		String signedDataHex = "415141414141677752674968414c4f4f62544e55506677772d643669776c6a6132636f714134473561374f4156534e744b4462513034717341694541684a734542745072494a49766436636e595351454842415549723644395839794e70636c6166544c797749";
+		byte[] signedData = Hex.decodeHex(signedDataHex);
+
+		String signatureDataHex = "3046022100b38e6d33543dfc30f9dea2c258dad9ca2a0381b96bb38055236d2836d0d38aac022100849b0406d3eb20922f77a7276124041c101422be83f57f7236972569f4cbcb02";
+		byte[] signatureData = Hex.decodeHex(signatureDataHex);
+
+		String publicKeyHex = "04e9a52ef1136d1eee973c700bd86e1dd314dc04373d47f1219d1f8c286c9f30311fdbb158eaceac60e3a7a0298c94269878c5ec6853004182e126cdb72254edc2";
+		byte[] publicKey = Hex.decodeHex(publicKeyHex);
+
+		SignatureVerification signatureVerification = new SHA256withECDSASignatureVerification();
+
+		boolean isValid = signatureVerification.checkSignature(signatureVerification.decodePublicKey(publicKey),
+				signedData, signatureData);
+		assertTrue(isValid);
+	}
+
+	@Test
+	public void checkAttestationSignature() throws DecoderException, SignatureException, JsonMappingException, JsonProcessingException {
+		SecurityProviderUtility.installBCProvider();
+
+		String registerResponseString = "{\"registrationData\":\"BQTE0bf7K1WtbQ3yVhwK3IF9yRysjpY8vvf_nmYjGfOGHE648BDGJf6QPcZpz5n9FAT0P_Jb2KpnQ6kkOpFTbXXpQEvRYV5pcRtZWCjnGjzMLzK9dfyzAxjKB6-3YZxxSLKwpJ0Ye6ryx72TqWZmfdz30UiYsXhd_JKyMONw05BL70QwggImMIIBzKADAgECAoGBAPMsD5b5G58AphKuKWl4Yz27sbE_rXFy7nPRqtJ_r4E5DSZbFvfyuos-Db0095ubB0JoyM8ccmSO_eZQ6IekOLPKCR7yC5kes-f7MaxyaphmmD4dEvmuKjF-fRsQP5tQG7zerToto8eIz0XjPaupiZxQXtSHGHHTuPhri2nfoZlrMAoGCCqGSM49BAMCMFwxIDAeBgNVBAMTF0dsdXUgb3hQdXNoMiBVMkYgdjEuMC4wMQ0wCwYDVQQKEwRHbHV1MQ8wDQYDVQQHEwZBdXN0aW4xCzAJBgNVBAgTAlRYMQswCQYDVQQGEwJVUzAeFw0xNjAzMDExODU5NDZaFw0xOTAzMDExODU5NDZaMFwxIDAeBgNVBAMTF0dsdXUgb3hQdXNoMiBVMkYgdjEuMC4wMQ0wCwYDVQQKEwRHbHV1MQ8wDQYDVQQHEwZBdXN0aW4xCzAJBgNVBAgTAlRYMQswCQYDVQQGEwJVUzBZMBMGByqGSM49AgEGCCqGSM49AwEHA0IABICUKnzCE5PJ7tihiKkYu6E5Uy_sZ-RSqs_MnUJt0tB8G8GSg9nKo6P2424iV9lXX9Pil8qw4ofZ-fAXXepbp4MwCgYIKoZIzj0EAwIDSAAwRQIgUWwawAB2udURWQziDXVjSOi_QcuXiRxylqj5thFwFhYCIQCGY-CTZFi7JdkhZ05nDpbSYJBTOo1Etckh7k0qcvnO0TBGAiEArL4uk9i4_r1XJOHx5sf0RsGWfqYz-r0k-i8oDX7NSqcCIQCZt_yIraDAN3exvYofvAHoPi_QAYcVOuXv9TXbfLToiQ\",\"clientData\":\"eyJ0eXAiOiJuYXZpZ2F0b3IuaWQuZmluaXNoRW5yb2xsbWVudCIsImNoYWxsZW5nZSI6IlhCSWZ4THY0U054Wk9MR3FwbUFHVFlHTHkwLTBKR3BDYmJJY3lnMVppQUEiLCJvcmlnaW4iOiJodHRwczpcL1wvdTIwNC5qYW5zLmluZm8ifQ\",\"deviceData\":\"eyJuYW1lIjoiU00tRzk5MUIiLCJvc19uYW1lIjoidGlyYW1pc3UiLCJvc192ZXJzaW9uIjoiMTMiLCJwbGF0Zm9ybSI6ImFuZHJvaWQiLCJwdXNoX3Rva2VuIjoiYzh2am5lallEdXc6QVBBOTFiR0J3VkNnaURFQXE2R3MzRXhBZ2JzNG1qV0NXa0lJSEE4MVZDNGd3MFFBR1gzR0ZyQUZEbE9NQ3hYWkh0dGhZeS1vd1dEVlRzV3p2QTJXdXJEd1BfOFVNbHZZWUlmYzhjc0FidV9ZN1gtQXVsaG5NNnlxMzJMeTl4QmlvZmI2N0h1VVZRVnIiLCJ0eXBlIjoibm9ybWFsIiwidXVpZCI6IjNmZTYwNjljLTAxMTItMzJkMC1hZDYwLTU3NjI0ZmZhNTg0NCJ9\"}";
+
+		RegisterResponse registerResponse = ServerUtil.jsonMapperWithWrapRoot().readValue(registerResponseString, RegisterResponse.class);
+        RawRegisterResponse rawRegisterResponse = (new RawRegistrationService()).parseRawRegisterResponse(registerResponse.getRegistrationData());
+
+		SignatureVerification signatureVerification = new SHA256withECDSASignatureVerification();
+
+		byte[] signedBytes = packBytesToAttestationSign(signatureVerification.hash(registerResponse.getClientData().getOrigin()),
+				signatureVerification.hash(registerResponse.getClientData().getChallenge()), rawRegisterResponse.getKeyHandle(),
+				rawRegisterResponse.getUserPublicKey());
+
+		boolean isValid = signatureVerification.checkSignature(rawRegisterResponse.getAttestationCertificate(),
+				signedBytes, rawRegisterResponse.getSignature());
+		assertTrue(isValid);
+	}
+
+	@Test
+	public void fullTestSignature() throws DecoderException, SignatureException, JsonMappingException, JsonProcessingException {
+		SecurityProviderUtility.installBCProvider();
+
+		String registerResponseString = "{\"registrationData\":\"BQQ6WP62_rMN3B3NpJEHLYeneiFleE6eLhNkCx8j6z2M3_Xq_lgmWOzbL_EfIW2rQgRv49btpoSB6fyuMueTkZb7QCfYxzgdxBC-M4xI_w3eDcG-OydbkimTd0RgF2gBDVv-d-g3syv_erfXEwpSeamWJjB4s4P35pcHBRsZ5hOlJZMwggImMIIBzKADAgECAoGBAPMsD5b5G58AphKuKWl4Yz27sbE_rXFy7nPRqtJ_r4E5DSZbFvfyuos-Db0095ubB0JoyM8ccmSO_eZQ6IekOLPKCR7yC5kes-f7MaxyaphmmD4dEvmuKjF-fRsQP5tQG7zerToto8eIz0XjPaupiZxQXtSHGHHTuPhri2nfoZlrMAoGCCqGSM49BAMCMFwxIDAeBgNVBAMTF0dsdXUgb3hQdXNoMiBVMkYgdjEuMC4wMQ0wCwYDVQQKEwRHbHV1MQ8wDQYDVQQHEwZBdXN0aW4xCzAJBgNVBAgTAlRYMQswCQYDVQQGEwJVUzAeFw0xNjAzMDExODU5NDZaFw0xOTAzMDExODU5NDZaMFwxIDAeBgNVBAMTF0dsdXUgb3hQdXNoMiBVMkYgdjEuMC4wMQ0wCwYDVQQKEwRHbHV1MQ8wDQYDVQQHEwZBdXN0aW4xCzAJBgNVBAgTAlRYMQswCQYDVQQGEwJVUzBZMBMGByqGSM49AgEGCCqGSM49AwEHA0IABICUKnzCE5PJ7tihiKkYu6E5Uy_sZ-RSqs_MnUJt0tB8G8GSg9nKo6P2424iV9lXX9Pil8qw4ofZ-fAXXepbp4MwCgYIKoZIzj0EAwIDSAAwRQIgUWwawAB2udURWQziDXVjSOi_QcuXiRxylqj5thFwFhYCIQCGY-CTZFi7JdkhZ05nDpbSYJBTOo1Etckh7k0qcvnO0TBFAiEA6prZJBVRXpq7vnY126J9zEhEktQvqmIspOGXq74JnQcCIC-o8h-53-WDenYJtYO0obSjCOaLLkM6ejdmiZrTOfC-\",\"clientData\":\"eyJ0eXAiOiJuYXZpZ2F0b3IuaWQuZmluaXNoRW5yb2xsbWVudCIsImNoYWxsZW5nZSI6ImJEcE1nbTVkYmg2cFMzcFdqWkVRZEVQSUpJdXE4ckJwUElUSjRIdG5FWnciLCJvcmlnaW4iOiJodHRwczpcL1wvdTIwNC5qYW5zLmluZm8ifQ\",\"deviceData\":\"eyJuYW1lIjoiU00tRzk5MUIiLCJvc19uYW1lIjoidGlyYW1pc3UiLCJvc192ZXJzaW9uIjoiMTMiLCJwbGF0Zm9ybSI6ImFuZHJvaWQiLCJwdXNoX3Rva2VuIjoiY2dtS21lQk9SbTZBMEJTRFZsOHBxVDpBUEE5MWJHeGRiWnNHTzJqTTUyUnAyM3JMYzNrcUdBY2JNRUI4NmpJdVJoVTJjTEFtS2ZUWExOX01YSVI2bWVNZ09WZVJ5RUVxbGlUejRrdTUxekIwYVMyYnk2MDJZem9tSXJXSnB2SEg5NlgySmxkUFVJbkdqdGIwZmcyQWhyNFNuX3I4SjBwcU55ayIsInR5cGUiOiJub3JtYWwiLCJ1dWlkIjoiZmY4MmZlZTEtMWQ4Yi0zN2RlLWE4ZjItOWFmZjM5NjM2Y2E1In0\"}";
+		String authenticateResponseString = "{\"signatureData\":\"AQAAAAEwRQIgeJwFiuvStieJDG_-wJ8c1zrht7HtuRHBpwelD0r2PJUCIQD9i-iLH9yOR-LlOpEpCl2ieyNYEr5SeMi9vrL_gm7QWQ\",\"clientData\":\"eyJ0eXAiOiJuYXZpZ2F0b3IuaWQuZ2V0QXNzZXJ0aW9uIiwiY2hhbGxlbmdlIjoiLUhsQ1NiSENreklVdnhGdHQxZWkyZS1qYjVzdVBsQ3ByVDdtalh6clFwRSIsIm9yaWdpbiI6Imh0dHBzOlwvXC91MjA0LmphbnMuaW5mb1wvamFucy1hdXRoXC9kZXZpY2VfYXV0aG9yaXphdGlvbi5odG0ifQ\",\"keyHandle\":\"J9jHOB3EEL4zjEj_Dd4Nwb47J1uSKZN3RGAXaAENW_536DezK_96t9cTClJ5qZYmMHizg_fmlwcFGxnmE6Ulkw\"}";
+
+		RegisterResponse registerResponse = ServerUtil.jsonMapperWithWrapRoot().readValue(registerResponseString, RegisterResponse.class);
+        RawRegisterResponse rawRegisterResponse = (new RawRegistrationService()).parseRawRegisterResponse(registerResponse.getRegistrationData());
+
+		SignatureVerification signatureVerification = new SHA256withECDSASignatureVerification();
+
+		// Attestation check
+		String appId = "https://u204.jans.info/jans-auth/device_authorization.htm";
+		byte[] signedBytes = packBytesToAttestationSign(signatureVerification.hash(appId),
+				signatureVerification.hash(registerResponse.getClientData().getChallenge()), rawRegisterResponse.getKeyHandle(),
+				rawRegisterResponse.getUserPublicKey());
+
+		boolean isValid = signatureVerification.checkSignature(rawRegisterResponse.getAttestationCertificate(),
+				signedBytes, rawRegisterResponse.getSignature());
+		assertTrue(isValid);
+
+		// Authentication check
+		AuthenticateResponse authenticateResponse = ServerUtil.jsonMapperWithWrapRoot().readValue(authenticateResponseString, AuthenticateResponse.class);
+        RawAuthenticateResponse rawAuthenticateResponse = (new RawAuthenticationService()).parseRawAuthenticateResponse(authenticateResponse.getSignatureData());
+
+		byte[] signedBytesAuth = packBytesToAuthenticationSign(signatureVerification.hash(authenticateResponse.getClientData().getOrigin()), rawAuthenticateResponse.getUserPresence(),
+				rawAuthenticateResponse.getCounter(), signatureVerification.hash(authenticateResponse.getClientData().getRawClientData()));
+	
+		boolean isValidAuth = signatureVerification.checkSignature(signatureVerification.decodePublicKey(rawRegisterResponse.getUserPublicKey()), signedBytesAuth, rawAuthenticateResponse.getSignature());
+		assertTrue(isValidAuth);
+	}
+	
+	@Test
+	public void checkClientDataSignatureVerification() throws DecoderException, SignatureException {
+		SecurityProviderUtility.installBCProvider();
+
+		String clientDataHex = "65794a30655841694f694a7559585a705a32463062334975615751755a32563051584e7a5a584a306157397549697769593268686247786c626d646c496a6f694f5659354c56685652475a724e6c64305a453147624459314e3235504e6e4e4756465656635538785157567661465254574842315254647559794973496d39796157647062694936496d68306448427a4f6c7776584339686247786f5957356b637a517a4c6d64736458557562334a6e584339705a47567564476c30655677765958563061474e765a47557561485274496e30";
+		byte[] clientData = Hex.decodeHex(clientDataHex);
+
+		String authResponseDataHex = "415141414141677752674968414c4f4f62544e55506677772d643669776c6a6132636f714134473561374f4156534e744b4462513034717341694541684a734542745072494a49766436636e595351454842415549723644395839794e70636c6166544c797749";
+		byte[] authResponseData = Hex.decodeHex(authResponseDataHex);
+
+		String publicKeyHex = "04e9a52ef1136d1eee973c700bd86e1dd314dc04373d47f1219d1f8c286c9f30311fdbb158eaceac60e3a7a0298c94269878c5ec6853004182e126cdb72254edc2";
+		byte[] publicKey = Hex.decodeHex(publicKeyHex);
+
+		ClientData clientDataObj = new ClientData(new String(clientData));
+		RawAuthenticateResponse rawAuthenticateResponse = new RawAuthenticationService()
+				.parseRawAuthenticateResponse(new String(authResponseData));
+
+		SignatureVerification signatureVerification = new SHA256withECDSASignatureVerification();
+
+		String appId = "https://allhands43.gluu.org/identity/authcode.htm";
+		byte[] signedBytes = packBytesToAuthenticationSign(signatureVerification.hash(appId),
+				rawAuthenticateResponse.getUserPresence(), rawAuthenticateResponse.getCounter(),
+				signatureVerification.hash(clientDataObj.getRawClientData()));
+
+		boolean isValid = signatureVerification.checkSignature(signatureVerification.decodePublicKey(publicKey),
+				signedBytes, rawAuthenticateResponse.getSignature());
+		assertTrue(isValid);
+	}
+
+	private byte[] packBytesToAttestationSign(byte[] appIdHash, byte[] challengeHash, byte[] keyHandleHash, byte[] userPublicKey) {
+		ByteArrayDataOutput encoded = ByteStreams.newDataOutput();
+		encoded.write(0x00); // +
+		encoded.write(appIdHash); // +
+		encoded.write(challengeHash);
+		encoded.write(keyHandleHash);
+		encoded.write(userPublicKey);
+
+		//byte[] signatureBase = ByteBuffer.allocate(bufferSize).put(reserved).put(rpIdHash).put(clientDataHash).put(credId).put(publicKey).array();
+
+		return encoded.toByteArray();
+	}
+
+	private byte[] packBytesToAuthenticationSign(byte[] appIdHash, byte userPresence, long counter, byte[] challengeHash) {
+		
+		System.out.println(Hex.encodeHex(appIdHash));
+		System.out.println(Hex.encodeHex(new byte[] { userPresence }));
+		System.out.println(Hex.encodeHex((BigInteger.valueOf(counter)).toByteArray()));
+		System.out.println(Hex.encodeHex(challengeHash));
+
+		ByteArrayDataOutput encoded = ByteStreams.newDataOutput();
+		encoded.write(appIdHash);
+		encoded.write(userPresence);
+		encoded.writeInt((int) counter);
+		encoded.write(challengeHash);
+
+		return encoded.toByteArray();
+	}
+
+	
+	public static void main(String[] args) throws DecoderException, SignatureException {
+		RawAuthenticationServiceUnitTest test = new RawAuthenticationServiceUnitTest();
+		test.checkClientDataSignatureVerification();
+	}
+}
diff --git a/oxAuth/Server/src/test/java/org/gluu/oxauth/service/fido/u2f/RawRegistrationServiceTest.java b/oxAuth/Server/src/test/java/org/gluu/oxauth/service/fido/u2f/RawRegistrationServiceTest.java
new file mode 100644
index 00000000..03bf00db
--- /dev/null
+++ b/oxAuth/Server/src/test/java/org/gluu/oxauth/service/fido/u2f/RawRegistrationServiceTest.java
@@ -0,0 +1,51 @@
+package org.gluu.oxauth.service.fido.u2f;
+
+import static org.testng.Assert.assertEquals;
+import static org.testng.Assert.assertNotNull;
+import static org.testng.Assert.assertTrue;
+
+import javax.inject.Inject;
+
+import org.gluu.oxauth.BaseComponentTest;
+import org.gluu.oxauth.model.fido.u2f.message.RawRegisterResponse;
+import org.gluu.oxauth.model.util.Base64Util;
+import org.python.bouncycastle.util.encoders.Hex;
+import org.testng.annotations.Test;
+
+public class RawRegistrationServiceTest extends BaseComponentTest {
+
+	@Inject
+	private RawRegistrationService rawRegistrationService;
+
+	@Test
+	public void testSecureClickRawRegistrationResponse() {
+		String secureClickResponseHex = "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";
+		byte[] secureClickResponseBytes = Hex.decode(secureClickResponseHex);
+		
+		// Skip first 3 and last 2 bytes
+		// 0x83h - U2F message type
+		// 0x028bh - Length of whole message
+		byte[] u2fClickResponseBytes = new byte[secureClickResponseBytes.length - 3 - 2];
+		System.arraycopy(secureClickResponseBytes, 3, u2fClickResponseBytes, 0, u2fClickResponseBytes.length);
+		
+		// Base64 URL encode to allow consume by API
+		String u2fResponseBase64 = Base64Util.base64urlencode(u2fClickResponseBytes);
+		
+		RawRegisterResponse rawRegisterResponse = rawRegistrationService.parseRawRegisterResponse(u2fResponseBase64);
+		
+		assertNotNull(rawRegisterResponse.getUserPublicKey());
+		assertEquals(rawRegisterResponse.getKeyHandle().length, 80);
+
+		// Check attestation certificate
+		assertNotNull(rawRegisterResponse.getAttestationCertificate());
+		assertEquals(rawRegisterResponse.getAttestationCertificate().getSigAlgName(), "SHA256WITHECDSA");
+
+        String subjectDN = rawRegisterResponse.getAttestationCertificate().getSubjectDN().getName();
+        boolean cmpRes = "O=VASCO Data Security,CN=VASCO DIGIPASS SecureClick Attestation Key".equals(subjectDN) ||
+                            "CN=VASCO DIGIPASS SecureClick Attestation Key,O=VASCO Data Security".equals(subjectDN);
+        assertTrue(cmpRes);
+
+        assertEquals(rawRegisterResponse.getSignature().length, 70);
+	}
+
+}
diff --git a/oxAuth/Server/src/test/java/org/gluu/oxauth/servlet/OpenIdConfigurationTest.java b/oxAuth/Server/src/test/java/org/gluu/oxauth/servlet/OpenIdConfigurationTest.java
new file mode 100644
index 00000000..ba84fa1c
--- /dev/null
+++ b/oxAuth/Server/src/test/java/org/gluu/oxauth/servlet/OpenIdConfigurationTest.java
@@ -0,0 +1,46 @@
+package org.gluu.oxauth.servlet;
+
+import org.gluu.oxauth.model.configuration.AppConfiguration;
+import org.json.JSONObject;
+import org.testng.annotations.Test;
+
+import static org.testng.Assert.assertTrue;
+import static org.testng.AssertJUnit.assertEquals;
+import static org.testng.AssertJUnit.assertFalse;
+
+/**
+ * @author Yuriy Z
+ */
+public class OpenIdConfigurationTest {
+
+    @Test
+    public void filterOutKeys_withBlankValues_shouldRemoveKeys() {
+        JSONObject jsonObject = new JSONObject();
+        jsonObject.put("key1", "");
+        jsonObject.put("key2", "value2");
+        jsonObject.put("key3", "  ");
+
+        OpenIdConfiguration.filterOutKeys(jsonObject, new AppConfiguration());
+
+        assertEquals("value2", jsonObject.get("key2"));
+        assertFalse(jsonObject.has("key1"));
+        assertFalse(jsonObject.has("key3"));
+    }
+
+    @Test
+    public void filterOutKeys_withBlankValuesAndAllowedBlankValuesInConfig_shouldNotRemoveKeys() {
+        final AppConfiguration appConfiguration = new AppConfiguration();
+        appConfiguration.setAllowBlankValuesInDiscoveryResponse(true);
+
+        JSONObject jsonObject = new JSONObject();
+        jsonObject.put("key1", "");
+        jsonObject.put("key2", "value2");
+        jsonObject.put("key3", "  ");
+
+        OpenIdConfiguration.filterOutKeys(jsonObject, appConfiguration);
+
+        assertEquals("value2", jsonObject.get("key2"));
+        assertTrue(jsonObject.has("key1"));
+        assertTrue(jsonObject.has("key3"));
+    }
+}
diff --git a/oxAuth/Server/src/test/java/org/gluu/oxauth/session/ws/rs/EndSessionRestWebServiceImplTest.java b/oxAuth/Server/src/test/java/org/gluu/oxauth/session/ws/rs/EndSessionRestWebServiceImplTest.java
new file mode 100644
index 00000000..e1d23bad
--- /dev/null
+++ b/oxAuth/Server/src/test/java/org/gluu/oxauth/session/ws/rs/EndSessionRestWebServiceImplTest.java
@@ -0,0 +1,196 @@
+package org.gluu.oxauth.session.ws.rs;
+
+import org.gluu.model.security.Identity;
+import org.gluu.oxauth.audit.ApplicationAuditLogger;
+import org.gluu.oxauth.model.common.*;
+import org.gluu.oxauth.model.configuration.AppConfiguration;
+import org.gluu.oxauth.model.crypto.AbstractCryptoProvider;
+import org.gluu.oxauth.model.error.ErrorResponseFactory;
+import org.gluu.oxauth.model.jwt.Jwt;
+import org.gluu.oxauth.model.registration.Client;
+import org.gluu.oxauth.model.session.SessionId;
+import org.gluu.oxauth.service.*;
+import org.gluu.oxauth.service.external.ExternalApplicationSessionService;
+import org.gluu.oxauth.service.external.ExternalEndSessionService;
+import org.gluu.util.Pair;
+import org.mockito.InjectMocks;
+import org.mockito.Mock;
+import org.mockito.testng.MockitoTestNGListener;
+import org.slf4j.Logger;
+import org.testng.annotations.Listeners;
+import org.testng.annotations.Test;
+
+import javax.ws.rs.WebApplicationException;
+
+import static org.mockito.ArgumentMatchers.*;
+import static org.mockito.Mockito.mock;
+import static org.mockito.Mockito.when;
+import static org.testng.Assert.assertNull;
+import static org.testng.AssertJUnit.assertNotNull;
+
+/**
+ * @author Yuriy Z
+ */
+@Listeners(MockitoTestNGListener.class)
+public class EndSessionRestWebServiceImplTest {
+
+    private static final String DUMMY_JWT = "eyJ0eXAiOiJKV1QiLCJhbGciOiJIUzI1NiJ9.eyJpc3MiOiJPbmxpbmUgSldUIEJ1aWxkZXIiLCJpYXQiOjE2NjM2NzcxODUsImV4cCI6MTY5NTIxMzE4NSwiYXVkIjoid3d3LmV4YW1wbGUuY29tIiwic3ViIjoianJvY2tldEBleGFtcGxlLmNvbSIsIkdpdmVuTmFtZSI6IkpvaG5ueSIsIlN1cm5hbWUiOiJSb2NrZXQiLCJFbWFpbCI6Impyb2NrZXRAZXhhbXBsZS5jb20iLCJzaWQiOiIxMjM0IiwiUm9sZSI6IlByb2plY3QgQWRtaW5pc3RyYXRvciJ9.pmJ5kTvxyfOUGOXTzYA1DMjbF96lfCF1dVSn_70nf2Q";
+    private static final AuthorizationGrant GRANT = new AuthorizationGrant() {
+        @Override
+        public GrantType getGrantType() {
+            return GrantType.AUTHORIZATION_CODE;
+        }
+    };
+
+
+    @InjectMocks
+    private EndSessionRestWebServiceImpl endSessionRestWebService;
+
+    @Mock
+    private Logger log;
+
+    @Mock
+    private ErrorResponseFactory errorResponseFactory;
+
+    @Mock
+    private RedirectionUriService redirectionUriService;
+
+    @Mock
+    private AuthorizationGrantList authorizationGrantList;
+
+    @Mock
+    private ExternalApplicationSessionService externalApplicationSessionService;
+
+    @Mock
+    private ExternalEndSessionService externalEndSessionService;
+
+    @Mock
+    private SessionIdService sessionIdService;
+
+    @Mock
+    private CookieService cookieService;
+
+    @Mock
+    private ClientService clientService;
+
+    @Mock
+    private GrantService grantService;
+
+    @Mock
+    private Identity identity;
+
+    @Mock
+    private ApplicationAuditLogger applicationAuditLogger;
+
+    @Mock
+    private AppConfiguration appConfiguration;
+
+    @Mock
+    private LogoutTokenFactory logoutTokenFactory;
+
+    @Mock
+    private AbstractCryptoProvider cryptoProvider;
+
+    @Test
+    public void validatePostLogoutRedirectUri_whenValidClientIdIsPassed_shouldValidateSuccessfully() {
+        Client client = new Client();
+        client.setClientId("my_client");
+        client.setPostLogoutRedirectUris(new String[] {"http://postlogout.com"});
+
+        final SimpleAuthorizationGrant grant = mock(SimpleAuthorizationGrant.class);
+        when(grant.getClient()).thenReturn(client);
+
+        Pair<SessionId, AuthorizationGrant> pair = new Pair<>(null, grant);
+        when(appConfiguration.getAllowPostLogoutRedirectWithoutValidation()).thenReturn(false);
+
+        when(redirectionUriService.validatePostLogoutRedirectUri(anyString(), anyString())).thenReturn("http://postlogout.com");
+
+        assertNotNull(endSessionRestWebService.validatePostLogoutRedirectUri("http://postlogout.com", pair, "state", "my_client"));
+    }
+
+    @Test
+    public void validateIdTokenHint_whenIdTokenHintIsBlank_shouldGetNoError() {
+        assertNull(endSessionRestWebService.validateIdTokenHint("", null, "http://postlogout.com", "", ""));
+    }
+
+    @Test(expectedExceptions = WebApplicationException.class)
+    public void validateIdTokenHint_whenIdTokenHintIsBlankButRequired_shouldGetError() {
+        when(appConfiguration.getForceIdTokenHintPrecense()).thenReturn(true);
+
+        endSessionRestWebService.validateIdTokenHint("", null, "http://postlogout.com", "", "");
+    }
+
+    @Test(expectedExceptions = WebApplicationException.class)
+    public void validateIdTokenHint_whenIdTokenIsNotInDbAndExpiredIsNotAllowed_shouldGetError() {
+        when(appConfiguration.getRejectEndSessionIfIdTokenExpired()).thenReturn(true);
+        when(endSessionRestWebService.getTokenHintGrant("test")).thenReturn(null);
+
+        endSessionRestWebService.validateIdTokenHint("testToken", null, "http://postlogout.com", "", "");
+    }
+
+    @Test(expectedExceptions = WebApplicationException.class)
+    public void validateIdTokenHint_whenIdTokenIsNotValidJwt_shouldGetError() {
+        when(appConfiguration.getEndSessionWithAccessToken()).thenReturn(true);
+        when(endSessionRestWebService.getTokenHintGrant("notValidJwt")).thenReturn(GRANT);
+
+        endSessionRestWebService.validateIdTokenHint("notValidJwt", null, "http://postlogout.com", "", "");
+    }
+
+    @Test
+    public void validateIdTokenHint_whenIdTokenIsValidJwt_shouldGetValidJwt() {
+        when(appConfiguration.getEndSessionWithAccessToken()).thenReturn(true);
+        when(endSessionRestWebService.getTokenHintGrant(DUMMY_JWT)).thenReturn(GRANT);
+
+        final Jwt jwt = endSessionRestWebService.validateIdTokenHint(DUMMY_JWT, null, "http://postlogout.com", "", "");
+        assertNotNull(jwt);
+    }
+
+    @Test(expectedExceptions = WebApplicationException.class)
+    public void validateIdTokenHint_whenIdTokenSignatureIsBad_shouldGetError() throws Exception {
+        when(appConfiguration.getEndSessionWithAccessToken()).thenReturn(false);
+        when(appConfiguration.getAllowEndSessionWithUnmatchedSid()).thenReturn(true);
+        when(endSessionRestWebService.getTokenHintGrant(DUMMY_JWT)).thenReturn(null);
+        when(cryptoProvider.verifySignature(anyString(), anyString(), anyString(), isNull(), isNull(), any())).thenReturn(false);
+
+        assertNull(endSessionRestWebService.validateIdTokenHint(DUMMY_JWT, null, "http://postlogout.com", "", ""));
+    }
+
+    @Test
+    public void validateIdTokenHint_whenIdTokenIsExpiredAndSidCheckIsNotRequired_shouldGetValidJwt() throws Exception {
+        when(appConfiguration.getEndSessionWithAccessToken()).thenReturn(false);
+        when(appConfiguration.getAllowEndSessionWithUnmatchedSid()).thenReturn(true);
+        when(endSessionRestWebService.getTokenHintGrant(DUMMY_JWT)).thenReturn(null);
+        when(cryptoProvider.verifySignature(anyString(), anyString(), isNull(), isNull(), isNull(), any())).thenReturn(true);
+
+        final Jwt jwt = endSessionRestWebService.validateIdTokenHint(DUMMY_JWT, null, "http://postlogout.com", "", "");
+        assertNotNull(jwt);
+    }
+
+    @Test
+    public void validateIdTokenHint_whenIdTokenIsExpiredAndSidCheckIsRequired_shouldGetValidJwt() throws Exception {
+        when(appConfiguration.getEndSessionWithAccessToken()).thenReturn(false);
+        when(appConfiguration.getAllowEndSessionWithUnmatchedSid()).thenReturn(false);
+        when(endSessionRestWebService.getTokenHintGrant(DUMMY_JWT)).thenReturn(null);
+        when(cryptoProvider.verifySignature(anyString(), anyString(), isNull(), isNull(), isNull(), any())).thenReturn(true);
+
+        SessionId sidSession = new SessionId();
+        sidSession.setOutsideSid("1234"); // sid encoded into DUMMY_JWT
+
+        final Jwt jwt = endSessionRestWebService.validateIdTokenHint(DUMMY_JWT, sidSession, "http://postlogout.com", "", "");
+        assertNotNull(jwt);
+    }
+
+    @Test(expectedExceptions = WebApplicationException.class)
+    public void validateIdTokenHint_whenIdTokenIsExpiredAndSidCheckIsRequiredButSessionHasAnotherSid_shouldGetError() throws Exception {
+        when(appConfiguration.getEndSessionWithAccessToken()).thenReturn(false);
+        when(appConfiguration.getAllowEndSessionWithUnmatchedSid()).thenReturn(false);
+        when(endSessionRestWebService.getTokenHintGrant(DUMMY_JWT)).thenReturn(null);
+        when(cryptoProvider.verifySignature(anyString(), anyString(), isNull(), isNull(), isNull(), any())).thenReturn(true);
+
+        SessionId sidSession = new SessionId();
+        sidSession.setOutsideSid("12345"); // sid encoded into DUMMY_JWT
+
+        final Jwt jwt = endSessionRestWebService.validateIdTokenHint(DUMMY_JWT, sidSession, "http://postlogout.com", "", "");
+        assertNotNull(jwt);
+    }
+}
diff --git a/oxAuth/Server/src/test/java/org/gluu/oxauth/uma/ws/rs/AccessProtectedResourceFlowWSTest.java b/oxAuth/Server/src/test/java/org/gluu/oxauth/uma/ws/rs/AccessProtectedResourceFlowWSTest.java
new file mode 100644
index 00000000..4466e1c3
--- /dev/null
+++ b/oxAuth/Server/src/test/java/org/gluu/oxauth/uma/ws/rs/AccessProtectedResourceFlowWSTest.java
@@ -0,0 +1,156 @@
+/*
+ * oxAuth is available under the MIT License (2008). See http://opensource.org/licenses/MIT for full text.
+ *
+ * Copyright (c) 2014, Gluu
+ */
+
+package org.gluu.oxauth.uma.ws.rs;
+
+import java.net.URI;
+import java.util.Arrays;
+
+import org.gluu.oxauth.BaseTest;
+import org.gluu.oxauth.model.uma.PermissionTicket;
+import org.gluu.oxauth.model.uma.RPTResponse;
+import org.gluu.oxauth.model.uma.RptIntrospectionResponse;
+import org.gluu.oxauth.model.uma.TUma;
+import org.gluu.oxauth.model.uma.UmaPermission;
+import org.gluu.oxauth.model.uma.UmaResourceResponse;
+import org.gluu.oxauth.model.uma.wrapper.Token;
+import org.jboss.arquillian.test.api.ArquillianResource;
+import org.testng.Assert;
+import org.testng.annotations.Parameters;
+import org.testng.annotations.Test;
+import org.gluu.oxauth.model.uma.UmaTestUtil;
+
+/**
+ * @author Yuriy Zabrovarnyy
+ * @version 0.9, 18/03/2013
+ */
+
+public class AccessProtectedResourceFlowWSTest extends BaseTest {
+
+	@ArquillianResource
+	private URI url;
+
+	private static Token pat;
+	private static RPTResponse rpt;
+	private static UmaResourceResponse resource;
+	private static PermissionTicket ticket;
+
+	@Test
+	@Parameters({ "authorizePath", "tokenPath", "umaUserId", "umaUserSecret", "umaPatClientId", "umaPatClientSecret",
+			"umaRedirectUri" })
+	public void init_0(String authorizePath, String tokenPath, String umaUserId, String umaUserSecret,
+			String umaPatClientId, String umaPatClientSecret, String umaRedirectUri) {
+		pat = TUma.requestPat(url, authorizePath, tokenPath, umaUserId, umaUserSecret, umaPatClientId,
+				umaPatClientSecret, umaRedirectUri);
+		UmaTestUtil.assert_(pat);
+	}
+
+	@Test(dependsOnMethods = "init_0")
+	@Parameters({ "authorizePath", "tokenPath", "umaUserId", "umaUserSecret", "umaPatClientId", "umaPatClientSecret",
+			"umaRedirectUri" })
+	public void init_1(String authorizePath, String tokenPath, String umaUserId, String umaUserSecret,
+			String umaPatClientId, String umaPatClientSecret, String umaRedirectUri) {
+	}
+
+	@Test(dependsOnMethods = { "init_1" })
+	@Parameters({ "umaRptPath"})
+	public void init(String umaRptPath) {
+		rpt = TUma.requestRpt(url, umaRptPath);
+		UmaTestUtil.assert_(rpt);
+	}
+
+	/*
+	 * **************************************************************** 1.
+	 * Register resource set
+	 */
+	@Test(dependsOnMethods = { "init" })
+	@Parameters({ "umaRegisterResourcePath" })
+	public void _1_registerResource(String umaRegisterResourcePath) throws Exception {
+		resource = TUma.registerResource(url, pat, umaRegisterResourcePath, UmaTestUtil.createResource());
+		UmaTestUtil.assert_(resource);
+	}
+
+	/*
+	 * **************************************************************** 2.
+	 * Requesting party access protected resource at host via requester RPT has
+	 * no permissions to access protected resource here...
+	 */
+	@Test(dependsOnMethods = {"_1_registerResource"})
+	public void _2_requesterAccessProtectedResourceWithNotEnoughPermissionsRpt() throws Exception {
+		showTitle("_2_requesterAccessProtectedResourceWithNotEnoughPermissionsRpt");
+		// do nothing, call must be made from host
+	}
+
+	/*
+	 * **************************************************************** 3. Host
+	 * determines RPT status
+	 */
+	@Test(dependsOnMethods = { "_2_requesterAccessProtectedResourceWithNotEnoughPermissionsRpt" })
+	@Parameters({ "umaRptStatusPath" })
+	public void _3_hostDeterminesRptStatus(String umaRptStatusPath) throws Exception {
+		final RptIntrospectionResponse status = TUma.requestRptStatus(url, umaRptStatusPath, rpt.getRpt());
+		Assert.assertTrue(status.getActive(), "Token response status is not active");
+		Assert.assertTrue(status.getPermissions() == null || status.getPermissions().isEmpty(),
+				"Permissions list is not empty.");
+	}
+
+	/*
+	 * **************************************************************** 4.
+	 * Registers permission for RPT
+	 */
+	@Test(dependsOnMethods = { "_3_hostDeterminesRptStatus" })
+	@Parameters({"umaPermissionPath"})
+	public void _4_registerPermissionForRpt(String umaPermissionPath)
+			throws Exception {
+		final UmaPermission r = new UmaPermission();
+		r.setResourceId(resource.getId());
+		r.setScopes(Arrays.asList("http://photoz.example.com/dev/scopes/view"));
+
+		ticket = TUma.registerPermission(url, pat, r, umaPermissionPath);
+		UmaTestUtil.assert_(ticket);
+	}
+
+	@Test(dependsOnMethods = { "_4_registerPermissionForRpt" })
+	@Parameters({ "umaPermissionAuthorizationPath", })
+	public void _5_authorizePermission(String umaPermissionAuthorizationPath) {
+		// todo
+	}
+
+	/*
+	 * **************************************************************** 6. Host
+	 * determines RPT status
+	 */
+	@Test(dependsOnMethods = { "_5_authorizePermission" })
+	@Parameters({ "umaRptStatusPath" })
+	public void _6_hostDeterminesRptStatus(String umaRptStatusPath) throws Exception {
+		final RptIntrospectionResponse status = TUma.requestRptStatus(url, umaRptStatusPath, rpt.getRpt());
+		UmaTestUtil.assert_(status);
+
+	}
+
+	/**
+	 * *******************************************************************************
+	 * 7 Requesting party access protected resource at host via requester
+	 */
+	@Test(dependsOnMethods = { "_6_hostDeterminesRptStatus" })
+	public void _7_requesterAccessProtectedResourceWithEnoughPermissionsRpt() throws Exception {
+		showTitle("_7_requesterAccessProtectedResourceWithEnoughPermissionsRpt");
+		// Scenario for case when there is valid RPT in request with enough
+		// permissions
+	}
+
+	// use normal test method instead of @AfterClass because it will not work
+	// with ResourceRequestEnvironment seam class which is used
+	// behind TUma wrapper.
+	@Test(dependsOnMethods = { "_7_requesterAccessProtectedResourceWithEnoughPermissionsRpt" })
+	@Parameters({ "umaRegisterResourcePath" })
+	public void cleanUp(String umaRegisterResourcePath) {
+		if (resource != null) {
+			TUma.deleteResource(url, pat, umaRegisterResourcePath, resource.getId());
+		}
+	}
+
+}
diff --git a/oxAuth/Server/src/test/java/org/gluu/oxauth/uma/ws/rs/ObtainPatWSTest.java b/oxAuth/Server/src/test/java/org/gluu/oxauth/uma/ws/rs/ObtainPatWSTest.java
new file mode 100644
index 00000000..e3882508
--- /dev/null
+++ b/oxAuth/Server/src/test/java/org/gluu/oxauth/uma/ws/rs/ObtainPatWSTest.java
@@ -0,0 +1,47 @@
+/*
+ * oxAuth is available under the MIT License (2008). See http://opensource.org/licenses/MIT for full text.
+ *
+ * Copyright (c) 2014, Gluu
+ */
+
+package org.gluu.oxauth.uma.ws.rs;
+
+import java.net.URI;
+
+import org.gluu.oxauth.BaseTest;
+import org.gluu.oxauth.model.uma.TUma;
+import org.gluu.oxauth.model.uma.wrapper.Token;
+import org.jboss.arquillian.test.api.ArquillianResource;
+import org.testng.annotations.Parameters;
+import org.testng.annotations.Test;
+import org.gluu.oxauth.model.uma.UmaTestUtil;
+
+/**
+ * @author Yuriy Zabrovarnyy
+ * @version 0.9, 18/03/2013
+ */
+
+public class ObtainPatWSTest extends BaseTest {
+
+	@ArquillianResource
+	private URI url;
+
+	private static Token pat;
+
+	@Test
+	@Parameters({ "authorizePath", "tokenPath", "umaUserId", "umaUserSecret", "umaPatClientId", "umaPatClientSecret",
+			"umaRedirectUri" })
+	public void requestPat(String authorizePath, String tokenPath, String umaUserId, String umaUserSecret,
+			String umaPatClientId, String umaPatClientSecret, String umaRedirectUri) {
+		pat = TUma.requestPat(url, authorizePath, tokenPath, umaUserId, umaUserSecret, umaPatClientId,
+				umaPatClientSecret, umaRedirectUri);
+		UmaTestUtil.assert_(pat);
+	}
+
+	@Test(dependsOnMethods = "requestPat")
+	@Parameters({ "tokenPath", "umaPatClientId", "umaPatClientSecret" })
+	public void requestNewPatByRefreshTokne(String tokenPath, String umaPatClientId, String umaPatClientSecret) {
+		final Token newPat = TUma.newTokenByRefreshToken(url, tokenPath, pat, umaPatClientId, umaPatClientSecret);
+		UmaTestUtil.assert_(newPat);
+	}
+}
diff --git a/oxAuth/Server/src/test/java/org/gluu/oxauth/uma/ws/rs/ObtainRptWSTest.java b/oxAuth/Server/src/test/java/org/gluu/oxauth/uma/ws/rs/ObtainRptWSTest.java
new file mode 100644
index 00000000..794a8336
--- /dev/null
+++ b/oxAuth/Server/src/test/java/org/gluu/oxauth/uma/ws/rs/ObtainRptWSTest.java
@@ -0,0 +1,41 @@
+/*
+ * oxAuth is available under the MIT License (2008). See http://opensource.org/licenses/MIT for full text.
+ *
+ * Copyright (c) 2014, Gluu
+ */
+
+package org.gluu.oxauth.uma.ws.rs;
+
+import java.net.URI;
+
+import org.gluu.oxauth.BaseTest;
+import org.jboss.arquillian.test.api.ArquillianResource;
+import org.testng.annotations.Parameters;
+import org.testng.annotations.Test;
+
+/**
+ * @author Yuriy Zabrovarnyy
+ * @version 0.9, 18/03/2013
+ */
+
+public class ObtainRptWSTest extends BaseTest {
+
+	@ArquillianResource
+	private URI url;
+
+
+	@Test
+	@Parameters({ "authorizePath", "tokenPath", "umaUserId", "umaUserSecret",
+			"umaRedirectUri" })
+	public void init(String authorizePath, String tokenPath, String umaUserId, String umaUserSecret,
+			String umaRedirectUri) {
+	}
+
+	@Test(dependsOnMethods = "init")
+	@Parameters({ "umaRptPath"})
+	public void obtainRpt(String umaRptPath) {
+		// todo uma2
+//		final RPTResponse r = TUma.requestRpt(url, aat, umaRptPath);
+//		UmaTestUtil.assert_(r);
+	}
+}
diff --git a/oxAuth/Server/src/test/java/org/gluu/oxauth/uma/ws/rs/RegisterPermissionWSTest.java b/oxAuth/Server/src/test/java/org/gluu/oxauth/uma/ws/rs/RegisterPermissionWSTest.java
new file mode 100644
index 00000000..4d0f6ee7
--- /dev/null
+++ b/oxAuth/Server/src/test/java/org/gluu/oxauth/uma/ws/rs/RegisterPermissionWSTest.java
@@ -0,0 +1,128 @@
+/*
+ * oxAuth is available under the MIT License (2008). See http://opensource.org/licenses/MIT for full text.
+ *
+ * Copyright (c) 2014, Gluu
+ */
+
+package org.gluu.oxauth.uma.ws.rs;
+
+import static org.testng.Assert.assertEquals;
+import static org.testng.Assert.fail;
+
+import java.io.IOException;
+import java.net.URI;
+import java.util.Arrays;
+
+import javax.ws.rs.client.Entity;
+import javax.ws.rs.client.Invocation.Builder;
+import javax.ws.rs.core.Response;
+
+import org.gluu.oxauth.BaseTest;
+import org.gluu.oxauth.model.uma.PermissionTicket;
+import org.gluu.oxauth.model.uma.TUma;
+import org.gluu.oxauth.model.uma.UmaConstants;
+import org.gluu.oxauth.model.uma.UmaPermission;
+import org.gluu.oxauth.model.uma.UmaResourceResponse;
+import org.gluu.oxauth.model.uma.wrapper.Token;
+import org.gluu.oxauth.util.ServerUtil;
+import org.jboss.arquillian.test.api.ArquillianResource;
+import org.jboss.resteasy.client.jaxrs.ResteasyClientBuilder;
+import org.testng.Assert;
+import org.testng.annotations.Parameters;
+import org.testng.annotations.Test;
+import org.gluu.oxauth.model.uma.UmaTestUtil;
+
+/**
+ * @author Yuriy Zabrovarnyy
+ * @version 0.9, 15/03/2013
+ */
+
+public class RegisterPermissionWSTest extends BaseTest {
+
+	@ArquillianResource
+	private URI url;
+
+	private static Token pat;
+	private static UmaResourceResponse resource;
+	private static String umaRegisterResourcePath;
+	private static String umaPermissionPath;
+
+	@Test
+	@Parameters({ "authorizePath", "tokenPath", "umaUserId", "umaUserSecret", "umaPatClientId", "umaPatClientSecret",
+			"umaRedirectUri", "umaRegisterResourcePath", "umaPermissionPath" })
+	public void init_(String authorizePath, String tokenPath, String umaUserId, String umaUserSecret,
+			String umaPatClientId, String umaPatClientSecret, String umaRedirectUri, String umaRegisterResourcePath,
+			String p_umaPermissionPath) {
+		this.umaRegisterResourcePath = umaRegisterResourcePath;
+		umaPermissionPath = p_umaPermissionPath;
+
+		pat = TUma.requestPat(url, authorizePath, tokenPath, umaUserId, umaUserSecret, umaPatClientId,
+				umaPatClientSecret, umaRedirectUri);
+		UmaTestUtil.assert_(pat);
+	}
+
+	@Test(dependsOnMethods = { "init_" })
+	public void init() {
+		resource = TUma.registerResource(url, pat, umaRegisterResourcePath, UmaTestUtil.createResource());
+		UmaTestUtil.assert_(resource);
+	}
+
+	@Test(dependsOnMethods = { "init" })
+	public void testRegisterPermission() throws Exception {
+		final UmaPermission r = new UmaPermission();
+		r.setResourceId(resource.getId());
+		r.setScopes(Arrays.asList("http://photoz.example.com/dev/scopes/view"));
+
+		final PermissionTicket ticket = TUma.registerPermission(url, pat, r, umaPermissionPath);
+		UmaTestUtil.assert_(ticket);
+	}
+
+	@Test(dependsOnMethods = { "testRegisterPermission" })
+	public void testRegisterPermissionWithInvalidResource() {
+		final String path = umaPermissionPath;
+		try {
+			Builder request = ResteasyClientBuilder.newClient().target(url.toString() + path).request();
+			request.header("Accept", UmaConstants.JSON_MEDIA_TYPE);
+			request.header("Authorization", "Bearer " + pat.getAccessToken());
+
+			String json = null;
+			try {
+				final UmaPermission r = new UmaPermission();
+				r.setResourceId(resource.getId() + "x");
+
+				json = ServerUtil.createJsonMapper().writeValueAsString(r);
+			} catch (IOException e) {
+				e.printStackTrace();
+				fail();
+			}
+
+			Response response = request.post(Entity.json(json));
+			String entity = response.readEntity(String.class);
+
+			BaseTest.showResponse("UMA : RegisterPermissionWSTest.testRegisterPermissionWithInvalidResource() : ",
+					response, entity);
+
+			assertEquals(response.getStatus(), Response.Status.NOT_FOUND.getStatusCode(),
+					"Unexpected response code.");
+			try {
+				final PermissionTicket t = ServerUtil.createJsonMapper().readValue(entity, PermissionTicket.class);
+				Assert.assertNull(t);
+			} catch (Exception e) {
+				// it's ok if it fails here, we expect ticket as null.
+			}
+		} catch (Exception e) {
+			e.printStackTrace();
+			fail();
+		}
+	}
+
+	// use normal test instead of @AfterClass because it will not work with
+	// ResourceRequestEnvironment seam class which is used
+	// behind TUma wrapper.
+	@Test(dependsOnMethods = {"testRegisterPermissionWithInvalidResource"})
+	public void cleanUp() {
+		if (resource != null) {
+			TUma.deleteResource(url, pat, umaRegisterResourcePath, resource.getId());
+		}
+	}
+}
diff --git a/oxAuth/Server/src/test/java/org/gluu/oxauth/uma/ws/rs/UmaConfigurationWSTest.java b/oxAuth/Server/src/test/java/org/gluu/oxauth/uma/ws/rs/UmaConfigurationWSTest.java
new file mode 100644
index 00000000..f7c69cbe
--- /dev/null
+++ b/oxAuth/Server/src/test/java/org/gluu/oxauth/uma/ws/rs/UmaConfigurationWSTest.java
@@ -0,0 +1,35 @@
+/*
+ * oxAuth is available under the MIT License (2008). See http://opensource.org/licenses/MIT for full text.
+ *
+ * Copyright (c) 2014, Gluu
+ */
+
+package org.gluu.oxauth.uma.ws.rs;
+
+import java.net.URI;
+
+import org.gluu.oxauth.BaseTest;
+import org.gluu.oxauth.model.uma.TUma;
+import org.gluu.oxauth.model.uma.UmaMetadata;
+import org.jboss.arquillian.test.api.ArquillianResource;
+import org.testng.annotations.Parameters;
+import org.testng.annotations.Test;
+import org.gluu.oxauth.model.uma.UmaTestUtil;
+
+/**
+ * @author Yuriy Zabrovarnyy
+ * @version 0.9, 11/03/2013
+ */
+
+public class UmaConfigurationWSTest extends BaseTest {
+
+	@ArquillianResource
+	private URI url;
+
+	@Parameters({ "umaConfigurationPath" })
+	@Test
+	public void configurationPresence(final String umaConfigurationPath) throws Exception {
+		final UmaMetadata c = TUma.requestConfiguration(url, umaConfigurationPath);
+		UmaTestUtil.assert_(c);
+	}
+}
diff --git a/oxAuth/Server/src/test/java/org/gluu/oxauth/uma/ws/rs/UmaRegisterResourceWSTest.java b/oxAuth/Server/src/test/java/org/gluu/oxauth/uma/ws/rs/UmaRegisterResourceWSTest.java
new file mode 100644
index 00000000..5be5cf61
--- /dev/null
+++ b/oxAuth/Server/src/test/java/org/gluu/oxauth/uma/ws/rs/UmaRegisterResourceWSTest.java
@@ -0,0 +1,87 @@
+/*
+ * oxAuth is available under the MIT License (2008). See http://opensource.org/licenses/MIT for full text.
+ *
+ * Copyright (c) 2014, Gluu
+ */
+
+package org.gluu.oxauth.uma.ws.rs;
+
+import static org.testng.Assert.assertTrue;
+
+import java.net.URI;
+import java.util.Arrays;
+import java.util.List;
+
+import org.gluu.oxauth.BaseTest;
+import org.gluu.oxauth.model.uma.TUma;
+import org.gluu.oxauth.model.uma.UmaResource;
+import org.gluu.oxauth.model.uma.UmaResourceResponse;
+import org.gluu.oxauth.model.uma.wrapper.Token;
+import org.jboss.arquillian.test.api.ArquillianResource;
+import org.testng.annotations.Parameters;
+import org.testng.annotations.Test;
+import org.gluu.oxauth.model.uma.UmaTestUtil;
+
+/**
+ * @author Yuriy Zabrovarnyy
+ * @version 0.9, 15/03/2013
+ */
+
+public class UmaRegisterResourceWSTest extends BaseTest {
+
+	@ArquillianResource
+	private URI url;
+
+	private static Token pat;
+	private static UmaResourceResponse resourceStatus;
+	private static String umaRegisterResourcePath;
+
+	@Test
+	@Parameters({ "authorizePath", "tokenPath", "umaUserId", "umaUserSecret", "umaPatClientId", "umaPatClientSecret",
+			"umaRedirectUri", "umaRegisterResourcePath" })
+	public void init(String authorizePath, String tokenPath, String umaUserId, String umaUserSecret,
+			String umaPatClientId, String umaPatClientSecret, String umaRedirectUri, String umaRegisterResourcePath) {
+		pat = TUma.requestPat(url, authorizePath, tokenPath, umaUserId, umaUserSecret, umaPatClientId,
+				umaPatClientSecret, umaRedirectUri);
+		this.umaRegisterResourcePath = umaRegisterResourcePath;
+	}
+
+	@Test(dependsOnMethods = { "init" })
+	public void testRegisterResource() throws Exception {
+		resourceStatus = TUma.registerResource(url, pat, umaRegisterResourcePath,
+				UmaTestUtil.createResource());
+		UmaTestUtil.assert_(resourceStatus);
+	}
+
+	@Test(dependsOnMethods = {"testRegisterResource"})
+	public void testModifyResource() throws Exception {
+		final UmaResource resource = new UmaResource();
+		resource.setName("Server Photo Album 2");
+		resource.setIconUri("http://www.example.com/icons/flower.png");
+		resource.setScopes(
+				Arrays.asList("http://photoz.example.com/dev/scopes/view", "http://photoz.example.com/dev/scopes/all"));
+
+		final UmaResourceResponse status = TUma.modifyResource(url, pat, umaRegisterResourcePath,
+				resourceStatus.getId(), resource);
+		UmaTestUtil.assert_(status);
+	}
+
+	/**
+	 * Test for getting UMA resource descriptions
+	 */
+	@Test(dependsOnMethods = {"testModifyResource"})
+	public void testGetResources() throws Exception {
+		final List<String> list = TUma.getResourceList(url, pat, umaRegisterResourcePath);
+
+		assertTrue(list != null && !list.isEmpty() && list.contains(resourceStatus.getId()),
+				"Resource list is empty");
+	}
+
+	/**
+	 * Test for deleting UMA resource descriptions
+	 */
+	@Test(dependsOnMethods = {"testGetResources"})
+	public void testDeleteResource() throws Exception {
+		TUma.deleteResource(url, pat, umaRegisterResourcePath, resourceStatus.getId());
+	}
+}
diff --git a/oxAuth/Server/src/test/java/org/gluu/oxauth/uma/ws/rs/UmaScopeWSTest.java b/oxAuth/Server/src/test/java/org/gluu/oxauth/uma/ws/rs/UmaScopeWSTest.java
new file mode 100644
index 00000000..e994586b
--- /dev/null
+++ b/oxAuth/Server/src/test/java/org/gluu/oxauth/uma/ws/rs/UmaScopeWSTest.java
@@ -0,0 +1,64 @@
+/*
+ * oxAuth is available under the MIT License (2008). See http://opensource.org/licenses/MIT for full text.
+ *
+ * Copyright (c) 2014, Gluu
+ */
+
+package org.gluu.oxauth.uma.ws.rs;
+
+import static org.testng.Assert.assertEquals;
+
+import java.net.URI;
+
+import javax.ws.rs.client.Invocation.Builder;
+import javax.ws.rs.core.Response;
+
+import org.gluu.oxauth.BaseTest;
+import org.gluu.oxauth.model.uma.TUma;
+import org.gluu.oxauth.model.uma.UmaConstants;
+import org.gluu.oxauth.model.uma.UmaScopeDescription;
+import org.jboss.arquillian.test.api.ArquillianResource;
+import org.jboss.resteasy.client.jaxrs.ResteasyClientBuilder;
+import org.testng.annotations.Parameters;
+import org.testng.annotations.Test;
+import org.gluu.oxauth.model.uma.UmaTestUtil;
+
+/**
+ * @author Yuriy Zabrovarnyy
+ * @version 0.9, 22/04/2013
+ */
+
+public class UmaScopeWSTest extends BaseTest {
+
+	@ArquillianResource
+	private URI url;
+
+	// private MetadataConfiguration m_configuration;
+	//
+	// @Parameters({"umaConfigurationPath"})
+	// @Test
+	// public void init(final String umaConfigurationPath) {
+	// m_configuration = TUma.requestConfiguration(this, umaConfigurationPath);
+	// UmaTestUtil.assert_(m_configuration);
+	// }
+
+	@Parameters({ "umaScopePath" })
+	@Test
+	public void scopePresence(final String umaScopePath) throws Exception {
+		String path = umaScopePath + "/" + "modify";
+		System.out.println("Path: " + path);
+
+		Builder request = ResteasyClientBuilder.newClient().target(url.toString() + path).request();
+		request.header("Accept", UmaConstants.JSON_MEDIA_TYPE);
+		Response response = request.get();
+		String entity = response.readEntity(String.class);
+
+		BaseTest.showResponse("UMA : UmaScopeWSTest.scopePresence() : ", response, entity);
+
+		assertEquals(response.getStatus(), Response.Status.OK.getStatusCode(), "Unexpected response code.");
+
+		final UmaScopeDescription scope = TUma.readJsonValue(entity, UmaScopeDescription.class);
+
+		UmaTestUtil.assert_(scope);
+	}
+}
diff --git a/oxAuth/Server/src/test/java/org/gluu/oxauth/util/Deployments.java b/oxAuth/Server/src/test/java/org/gluu/oxauth/util/Deployments.java
new file mode 100644
index 00000000..2873ec58
--- /dev/null
+++ b/oxAuth/Server/src/test/java/org/gluu/oxauth/util/Deployments.java
@@ -0,0 +1,52 @@
+package org.gluu.oxauth.util;
+
+import org.jboss.shrinkwrap.api.ShrinkWrap;
+import org.jboss.shrinkwrap.api.asset.EmptyAsset;
+import org.jboss.shrinkwrap.api.spec.WebArchive;
+
+import java.io.File;
+
+/**
+ * Creates a deployment from a build Web Archive using ShrinkWrap ZipImporter
+ * 
+ * @author Yuriy Movchan
+ */
+public class Deployments {
+
+	public static WebArchive createDeployment() {
+		final WebArchive war = ShrinkWrap.create(WebArchive.class, "oxauth.war")
+				// adding the configuration class silences the logged exception
+				// when building the configuration on the server-side, but
+				// shouldn't be necessary
+				// .addClass(JettyEmbeddedConfiguration.class)
+				// Resteasy services
+				// .addClass(ResteasyInitializer.class)
+				// .addPackage(GluuConfigurationWS.class.getPackage())
+				// Servlets
+		        .addAsWebInfResource("jetty-env.xml").addAsWebInfResource(EmptyAsset.INSTANCE, "beans.xml")
+				.setWebXML("web.xml");
+	    try {
+            File dir = new File("src/main/webapp");
+            addFiles(war, dir);
+        } catch (Exception e) {
+	        e.printStackTrace();
+        }
+
+	    return war;
+	}
+
+    private static void addFiles(WebArchive war, File dir) {
+        final File[] files = dir.listFiles();
+        if (files == null)
+            return;
+
+        for (File f : files) {
+            if (f.isFile()) {
+                war.addAsWebResource(f, f.getPath().replace("\\", "/").substring("src/main/webapp/".length()));
+            } else {
+                addFiles(war, f);
+            }
+        }
+    }
+
+}
diff --git a/oxAuth/Server/src/test/java/org/gluu/oxauth/util/ServerUtilTest.java b/oxAuth/Server/src/test/java/org/gluu/oxauth/util/ServerUtilTest.java
new file mode 100644
index 00000000..fb8b8b92
--- /dev/null
+++ b/oxAuth/Server/src/test/java/org/gluu/oxauth/util/ServerUtilTest.java
@@ -0,0 +1,34 @@
+package org.gluu.oxauth.util;
+
+import org.testng.annotations.Test;
+
+import java.util.HashMap;
+import java.util.Map;
+
+import static org.junit.Assert.assertEquals;
+
+/**
+ * @author Yuriy Z
+ */
+public class ServerUtilTest {
+
+    @Test
+    public void prepareForLogs_whenCalled_shouldNotHaveClearTextClientPassword() {
+        Map<String, String[]> parameters = new HashMap<>();
+        parameters.put("client_secret", new String[] {"124"});
+
+        final Map<String, String[]> result = ServerUtil.prepareForLogs(parameters);
+
+        assertEquals("*****", result.get("client_secret")[0]);
+    }
+
+    @Test
+    public void prepareForLogs_whenCalled_shouldNotHaveClearTextPassword() {
+        Map<String, String[]> parameters = new HashMap<>();
+        parameters.put("password", new String[] {"124"});
+
+        final Map<String, String[]> result = ServerUtil.prepareForLogs(parameters);
+
+        assertEquals("*****", result.get("password")[0]);
+    }
+}
diff --git a/oxAuth/Server/src/test/java/org/gluu/oxauth/ws/rs/ApplicationTypeRestrictionEmbeddedTest.java b/oxAuth/Server/src/test/java/org/gluu/oxauth/ws/rs/ApplicationTypeRestrictionEmbeddedTest.java
new file mode 100644
index 00000000..f7ccd942
--- /dev/null
+++ b/oxAuth/Server/src/test/java/org/gluu/oxauth/ws/rs/ApplicationTypeRestrictionEmbeddedTest.java
@@ -0,0 +1,440 @@
+/*
+ * oxAuth is available under the MIT License (2008). See http://opensource.org/licenses/MIT for full text.
+ *
+ * Copyright (c) 2014, Gluu
+ */
+
+package org.gluu.oxauth.ws.rs;
+
+import static org.gluu.oxauth.model.register.RegisterRequestParam.APPLICATION_TYPE;
+import static org.gluu.oxauth.model.register.RegisterRequestParam.CLIENT_NAME;
+import static org.gluu.oxauth.model.register.RegisterRequestParam.ID_TOKEN_SIGNED_RESPONSE_ALG;
+import static org.gluu.oxauth.model.register.RegisterRequestParam.REDIRECT_URIS;
+import static org.gluu.oxauth.model.register.RegisterRequestParam.RESPONSE_TYPES;
+import static org.gluu.oxauth.model.register.RegisterRequestParam.SCOPE;
+import static org.gluu.oxauth.model.register.RegisterResponseParam.CLIENT_ID_ISSUED_AT;
+import static org.gluu.oxauth.model.register.RegisterResponseParam.CLIENT_SECRET;
+import static org.gluu.oxauth.model.register.RegisterResponseParam.CLIENT_SECRET_EXPIRES_AT;
+import static org.gluu.oxauth.model.register.RegisterResponseParam.REGISTRATION_CLIENT_URI;
+import static org.testng.Assert.assertEquals;
+import static org.testng.Assert.assertNotNull;
+import static org.testng.Assert.assertTrue;
+import static org.testng.Assert.fail;
+
+import java.net.URI;
+
+import javax.ws.rs.client.Entity;
+import javax.ws.rs.client.Invocation.Builder;
+import javax.ws.rs.core.Response;
+
+import org.json.JSONException;
+import org.json.JSONObject;
+import org.gluu.oxauth.BaseTest;
+import org.gluu.oxauth.client.RegisterRequest;
+import org.gluu.oxauth.model.common.ResponseType;
+import org.gluu.oxauth.model.register.ApplicationType;
+import org.gluu.oxauth.model.register.RegisterResponseParam;
+import org.gluu.oxauth.model.util.StringUtils;
+import org.gluu.oxauth.util.ServerUtil;
+import org.jboss.arquillian.test.api.ArquillianResource;
+import org.jboss.resteasy.client.jaxrs.ResteasyClientBuilder;
+import org.testng.annotations.Parameters;
+import org.testng.annotations.Test;
+
+/**
+ * @author Javier Rojas Blum
+ * @version November 29, 2017
+ */
+public class ApplicationTypeRestrictionEmbeddedTest extends BaseTest {
+
+    @ArquillianResource
+    private URI url;
+
+    private static String registrationAccessToken1;
+    private static String registrationClientUri1;
+
+    private static String registrationAccessToken2;
+    private static String registrationClientUri2;
+
+    private static String registrationAccessToken3;
+    private static String registrationClientUri3;
+
+    /**
+     * Register a client without specify an Application Type.
+     */
+    @Parameters({"registerPath", "redirectUris"})
+    @Test
+    public void omittedApplicationTypeStep1(final String registerPath, final String redirectUris) throws Exception {
+        Builder request = ResteasyClientBuilder.newClient().target(url.toString() + registerPath).request();
+
+        String registerRequestContent = null;
+        try {
+
+            RegisterRequest registerRequest = new RegisterRequest(null, "oxAuth test app",
+                    StringUtils.spaceSeparatedToList(redirectUris));
+
+            registerRequestContent = ServerUtil.toPrettyJson(registerRequest.getJSONParameters());
+        } catch (JSONException e) {
+            e.printStackTrace();
+            fail(e.getMessage());
+        }
+
+        Response response = request.post(Entity.json(registerRequestContent));
+        String entity = response.readEntity(String.class);
+
+        showResponse("omittedApplicationTypeStep1", response, entity);
+
+        assertEquals(response.getStatus(), 200, "Unexpected response code. " + entity);
+        assertNotNull(entity, "Unexpected result: " + entity);
+        try {
+            JSONObject jsonObj = new JSONObject(entity);
+            assertTrue(jsonObj.has(RegisterResponseParam.CLIENT_ID.toString()));
+            assertTrue(jsonObj.has(CLIENT_SECRET.toString()));
+            assertTrue(jsonObj.has(RegisterResponseParam.REGISTRATION_ACCESS_TOKEN.toString()));
+            assertTrue(jsonObj.has(REGISTRATION_CLIENT_URI.toString()));
+            assertTrue(jsonObj.has(CLIENT_ID_ISSUED_AT.toString()));
+            assertTrue(jsonObj.has(CLIENT_SECRET_EXPIRES_AT.toString()));
+
+            registrationAccessToken1 = jsonObj.getString(RegisterResponseParam.REGISTRATION_ACCESS_TOKEN.toString());
+            registrationClientUri1 = jsonObj.getString(RegisterResponseParam.REGISTRATION_CLIENT_URI.toString());
+        } catch (JSONException e) {
+            e.printStackTrace();
+            fail(e.getMessage() + "\nResponse was: " + entity);
+        }
+    }
+
+    /**
+     * Read client to check whether it is using the default Application Type
+     * <code>web</code>.
+     */
+    @Parameters({"registerPath"})
+    @Test(dependsOnMethods = "omittedApplicationTypeStep1")
+    public void omittedApplicationTypeStep2(final String registerPath) throws Exception {
+
+        Builder request = ResteasyClientBuilder.newClient().target(url.toString() + registerPath + "?"
+                + registrationClientUri1.substring(registrationClientUri1.indexOf("?") + 1)).request();
+        request.header("Authorization", "Bearer " + registrationAccessToken1);
+
+        Response response = request.get();
+        String entity = response.readEntity(String.class);
+
+        showResponse("omittedApplicationTypeStep2", response, entity);
+
+        assertEquals(response.getStatus(), 200, "Unexpected response code. " + entity);
+        assertNotNull(entity, "Unexpected result: " + entity);
+        try {
+            JSONObject jsonObj = new JSONObject(entity);
+            assertTrue(jsonObj.has(RegisterResponseParam.CLIENT_ID.toString()));
+            assertTrue(jsonObj.has(CLIENT_SECRET.toString()));
+            assertTrue(jsonObj.has(CLIENT_ID_ISSUED_AT.toString()));
+            assertTrue(jsonObj.has(CLIENT_SECRET_EXPIRES_AT.toString()));
+
+            // Registered Metadata
+            assertTrue(jsonObj.has(APPLICATION_TYPE.toString()));
+            assertEquals(jsonObj.getString(APPLICATION_TYPE.toString()), ApplicationType.WEB.toString());
+            assertTrue(jsonObj.has(RESPONSE_TYPES.toString()));
+            assertNotNull(jsonObj.optJSONArray(RESPONSE_TYPES.toString()));
+            assertEquals(jsonObj.getJSONArray(RESPONSE_TYPES.toString()).getString(0), ResponseType.CODE.toString());
+            assertTrue(jsonObj.has(REDIRECT_URIS.toString()));
+            assertTrue(jsonObj.has(APPLICATION_TYPE.toString()));
+            assertTrue(jsonObj.has(CLIENT_NAME.toString()));
+            assertTrue(jsonObj.has(ID_TOKEN_SIGNED_RESPONSE_ALG.toString()));
+            assertTrue(jsonObj.has(SCOPE.toString()));
+        } catch (JSONException e) {
+            e.printStackTrace();
+            fail(e.getMessage() + "\nResponse was: " + entity);
+        }
+    }
+
+    /**
+     * Register a client with Application Type <code>web</code>.
+     */
+    @Parameters({"registerPath", "redirectUris"})
+    @Test
+    public void applicationTypeWebStep1(final String registerPath, final String redirectUris) throws Exception {
+        Builder request = ResteasyClientBuilder.newClient().target(url.toString() + registerPath).request();
+
+        String registerRequestContent = null;
+        try {
+            RegisterRequest registerRequest = new RegisterRequest(ApplicationType.WEB, "oxAuth test app",
+                    StringUtils.spaceSeparatedToList(redirectUris));
+
+            registerRequestContent = ServerUtil.toPrettyJson(registerRequest.getJSONParameters());
+        } catch (JSONException e) {
+            e.printStackTrace();
+            fail(e.getMessage());
+        }
+
+        Response response = request.post(Entity.json(registerRequestContent));
+        String entity = response.readEntity(String.class);
+
+        showResponse("applicationTypeWebStep1", response, entity);
+
+        assertEquals(response.getStatus(), 200, "Unexpected response code. " + entity);
+        assertNotNull(entity, "Unexpected result: " + entity);
+        try {
+            JSONObject jsonObj = new JSONObject(entity);
+            assertTrue(jsonObj.has(RegisterResponseParam.CLIENT_ID.toString()));
+            assertTrue(jsonObj.has(CLIENT_SECRET.toString()));
+            assertTrue(jsonObj.has(RegisterResponseParam.REGISTRATION_ACCESS_TOKEN.toString()));
+            assertTrue(jsonObj.has(REGISTRATION_CLIENT_URI.toString()));
+            assertTrue(jsonObj.has(CLIENT_ID_ISSUED_AT.toString()));
+            assertTrue(jsonObj.has(CLIENT_SECRET_EXPIRES_AT.toString()));
+
+            registrationAccessToken2 = jsonObj.getString(RegisterResponseParam.REGISTRATION_ACCESS_TOKEN.toString());
+            registrationClientUri2 = jsonObj.getString(RegisterResponseParam.REGISTRATION_CLIENT_URI.toString());
+        } catch (JSONException e) {
+            e.printStackTrace();
+            fail(e.getMessage() + "\nResponse was: " + entity);
+        }
+    }
+
+    /**
+     * Read client to check whether it is using the Application Type
+     * <code>web</code>.
+     */
+    @Parameters({"registerPath"})
+    @Test(dependsOnMethods = "applicationTypeWebStep1")
+    public void applicationTypeWebStep2(final String registerPath) throws Exception {
+
+        Builder request = ResteasyClientBuilder.newClient().target(url.toString() + registerPath + "?"
+                + registrationClientUri2.substring(registrationClientUri2.indexOf("?") + 1)).request();
+        request.header("Authorization", "Bearer " + registrationAccessToken2);
+
+        Response response = request.get();
+        String entity = response.readEntity(String.class);
+
+        showResponse("applicationTypeWebStep2", response, entity);
+
+        assertEquals(response.getStatus(), 200, "Unexpected response code. " + entity);
+        assertNotNull(entity, "Unexpected result: " + entity);
+        try {
+            JSONObject jsonObj = new JSONObject(entity);
+            assertTrue(jsonObj.has(RegisterResponseParam.CLIENT_ID.toString()));
+            assertTrue(jsonObj.has(CLIENT_SECRET.toString()));
+            assertTrue(jsonObj.has(CLIENT_ID_ISSUED_AT.toString()));
+            assertTrue(jsonObj.has(CLIENT_SECRET_EXPIRES_AT.toString()));
+
+            // Registered Metadata
+            assertTrue(jsonObj.has(APPLICATION_TYPE.toString()));
+            assertEquals(jsonObj.getString(APPLICATION_TYPE.toString()), ApplicationType.WEB.toString());
+            assertTrue(jsonObj.has(RESPONSE_TYPES.toString()));
+            assertNotNull(jsonObj.optJSONArray(RESPONSE_TYPES.toString()));
+            assertEquals(jsonObj.getJSONArray(RESPONSE_TYPES.toString()).getString(0), ResponseType.CODE.toString());
+            assertTrue(jsonObj.has(REDIRECT_URIS.toString()));
+            assertTrue(jsonObj.has(APPLICATION_TYPE.toString()));
+            assertTrue(jsonObj.has(CLIENT_NAME.toString()));
+            assertTrue(jsonObj.has(ID_TOKEN_SIGNED_RESPONSE_ALG.toString()));
+            assertTrue(jsonObj.has(SCOPE.toString()));
+        } catch (JSONException e) {
+            e.printStackTrace();
+            fail(e.getMessage() + "\nResponse was: " + entity);
+        }
+    }
+
+    /**
+     * Fail: Register a client with Application Type <code>web</code> and
+     * Redirect URI with the schema HTTP.
+     */
+    @Parameters({"registerPath"})
+    @Test
+    public void applicationTypeWebFail1(final String registerPath) throws Exception {
+        Builder request = ResteasyClientBuilder.newClient().target(url.toString() + registerPath).request();
+
+        String registerRequestContent = null;
+        try {
+            final String redirectUris = "http://client.example.com/cb";
+
+            RegisterRequest registerRequest = new RegisterRequest(ApplicationType.WEB, "oxAuth test app",
+                    StringUtils.spaceSeparatedToList(redirectUris));
+
+            registerRequestContent = ServerUtil.toPrettyJson(registerRequest.getJSONParameters());
+        } catch (JSONException e) {
+            e.printStackTrace();
+            fail(e.getMessage());
+        }
+
+        Response response = request.post(Entity.json(registerRequestContent));
+        String entity = response.readEntity(String.class);
+
+        showResponse("applicationTypeWebFail1", response, entity);
+
+        assertEquals(response.getStatus(), 400, "Unexpected response code. " + entity);
+        assertNotNull(entity, "Unexpected result: " + entity);
+        try {
+            JSONObject jsonObj = new JSONObject(entity);
+            assertTrue(jsonObj.has("error"), "The error type is null");
+            assertTrue(jsonObj.has("error_description"), "The error description is null");
+        } catch (JSONException e) {
+            e.printStackTrace();
+            fail(e.getMessage() + "\nResponse was: " + entity);
+        }
+    }
+
+    /**
+     * Register a client with Application Type <code>native</code>.
+     */
+    @Parameters({"registerPath"})
+    @Test
+    public void applicationTypeNativeStep1(final String registerPath) throws Exception {
+        Builder request = ResteasyClientBuilder.newClient().target(url.toString() + registerPath).request();
+
+        String registerRequestContent = null;
+        try {
+            final String redirectUris = "http://localhost/cb";
+
+            RegisterRequest registerRequest = new RegisterRequest(ApplicationType.NATIVE, "oxAuth test app",
+                    StringUtils.spaceSeparatedToList(redirectUris));
+
+            registerRequestContent = ServerUtil.toPrettyJson(registerRequest.getJSONParameters());
+        } catch (JSONException e) {
+            e.printStackTrace();
+            fail(e.getMessage());
+        }
+
+        Response response = request.post(Entity.json(registerRequestContent));
+        String entity = response.readEntity(String.class);
+
+        showResponse("applicationTypeNativeStep1", response, entity);
+
+        assertEquals(response.getStatus(), 200, "Unexpected response code. " + entity);
+        assertNotNull(entity, "Unexpected result: " + entity);
+        try {
+            JSONObject jsonObj = new JSONObject(entity);
+            assertTrue(jsonObj.has(RegisterResponseParam.CLIENT_ID.toString()));
+            assertTrue(jsonObj.has(CLIENT_SECRET.toString()));
+            assertTrue(jsonObj.has(RegisterResponseParam.REGISTRATION_ACCESS_TOKEN.toString()));
+            assertTrue(jsonObj.has(REGISTRATION_CLIENT_URI.toString()));
+            assertTrue(jsonObj.has(CLIENT_ID_ISSUED_AT.toString()));
+            assertTrue(jsonObj.has(CLIENT_SECRET_EXPIRES_AT.toString()));
+
+            registrationAccessToken3 = jsonObj.getString(RegisterResponseParam.REGISTRATION_ACCESS_TOKEN.toString());
+            registrationClientUri3 = jsonObj.getString(RegisterResponseParam.REGISTRATION_CLIENT_URI.toString());
+        } catch (JSONException e) {
+            e.printStackTrace();
+            fail(e.getMessage() + "\nResponse was: " + entity);
+        }
+    }
+
+    /**
+     * Read client to check whether it is using the Application Type
+     * <code>native</code>.
+     */
+    @Parameters({"registerPath"})
+    @Test(dependsOnMethods = "applicationTypeNativeStep1")
+    public void applicationTypeNativeStep2(final String registerPath) throws Exception {
+
+        Builder request = ResteasyClientBuilder.newClient().target(url.toString() + registerPath + "?"
+                + registrationClientUri3.substring(registrationClientUri3.indexOf("?") + 1)).request();
+        request.header("Authorization", "Bearer " + registrationAccessToken3);
+
+        Response response = request.get();
+        String entity = response.readEntity(String.class);
+
+        showResponse("applicationTypeNativeStep2", response);
+
+        assertEquals(response.getStatus(), 200, "Unexpected response code. " + entity);
+        assertNotNull(entity, "Unexpected result: " + entity);
+        try {
+            JSONObject jsonObj = new JSONObject(entity);
+            assertTrue(jsonObj.has(RegisterResponseParam.CLIENT_ID.toString()));
+            assertTrue(jsonObj.has(CLIENT_SECRET.toString()));
+            assertTrue(jsonObj.has(CLIENT_ID_ISSUED_AT.toString()));
+            assertTrue(jsonObj.has(CLIENT_SECRET_EXPIRES_AT.toString()));
+
+            // Registered Metadata
+            assertTrue(jsonObj.has(APPLICATION_TYPE.toString()));
+            assertEquals(jsonObj.getString(APPLICATION_TYPE.toString()), ApplicationType.NATIVE.toString());
+            assertTrue(jsonObj.has(RESPONSE_TYPES.toString()));
+            assertNotNull(jsonObj.optJSONArray(RESPONSE_TYPES.toString()));
+            assertEquals(jsonObj.getJSONArray(RESPONSE_TYPES.toString()).getString(0), ResponseType.CODE.toString());
+            assertTrue(jsonObj.has(REDIRECT_URIS.toString()));
+            assertTrue(jsonObj.has(APPLICATION_TYPE.toString()));
+            assertTrue(jsonObj.has(CLIENT_NAME.toString()));
+            assertTrue(jsonObj.has(ID_TOKEN_SIGNED_RESPONSE_ALG.toString()));
+            assertTrue(jsonObj.has(SCOPE.toString()));
+        } catch (JSONException e) {
+            e.printStackTrace();
+            fail(e.getMessage() + "\nResponse was: " + entity);
+        }
+    }
+
+    /**
+     * Fail: Register a client with Application Type <code>native</code> and
+     * Redirect URI with the schema HTTPS.
+     */
+    @Parameters({"registerPath"})
+    @Test(enabled = false) // allowed to register redirect_uris with custom
+    // schema to conform "OAuth 2.0 for Native Apps"
+    // spec
+    public void applicationTypeNativeFail1(final String registerPath) throws Exception {
+        Builder request = ResteasyClientBuilder.newClient().target(url.toString() + registerPath).request();
+
+        String registerRequestContent = null;
+        try {
+            final String redirectUris = "https://client.example.com/cb";
+
+            RegisterRequest registerRequest = new RegisterRequest(ApplicationType.NATIVE, "oxAuth test app",
+                    StringUtils.spaceSeparatedToList(redirectUris));
+            registerRequestContent = ServerUtil.toPrettyJson(registerRequest.getJSONParameters());
+        } catch (JSONException e) {
+            e.printStackTrace();
+            fail(e.getMessage());
+        }
+
+        Response response = request.post(Entity.json(registerRequestContent));
+        String entity = response.readEntity(String.class);
+
+        showResponse("applicationTypeNativeFail1", response, entity);
+
+        assertEquals(response.getStatus(), 400, "Unexpected response code. " + entity);
+        assertNotNull(entity, "Unexpected result: " + entity);
+        try {
+            JSONObject jsonObj = new JSONObject(entity);
+            assertTrue(jsonObj.has("error"), "The error type is null");
+            assertTrue(jsonObj.has("error_description"), "The error description is null");
+        } catch (JSONException e) {
+            e.printStackTrace();
+            fail(e.getMessage() + "\nResponse was: " + entity);
+        }
+    }
+
+    /**
+     * Fail: Register a client with Application Type <code>native</code> and
+     * Redirect URI with the host different than localhost.
+     */
+    @Parameters({"registerPath", "redirectUris"})
+    @Test(enabled = false) // allowed to register redirect_uris with custom
+    // schema to conform "OAuth 2.0 for Native Apps"
+    // spec
+    public void applicationTypeNativeFail2(final String registerPath, final String redirectUris) throws Exception {
+        Builder request = ResteasyClientBuilder.newClient().target(url.toString() + registerPath).request();
+
+        String registerRequestContent = null;
+        try {
+            RegisterRequest registerRequest = new RegisterRequest(ApplicationType.NATIVE, "oxAuth test app",
+                    StringUtils.spaceSeparatedToList(redirectUris));
+
+            registerRequestContent = ServerUtil.toPrettyJson(registerRequest.getJSONParameters());
+        } catch (JSONException e) {
+            e.printStackTrace();
+            fail(e.getMessage());
+        }
+
+        Response response = request.post(Entity.json(registerRequestContent));
+        String entity = response.readEntity(String.class);
+
+        showResponse("applicationTypeNativeFail2", response, entity);
+
+        assertEquals(response.getStatus(), 400, "Unexpected response code. " + entity);
+        assertNotNull(entity, "Unexpected result: " + entity);
+        try {
+            JSONObject jsonObj = new JSONObject(entity);
+            assertTrue(jsonObj.has("error"), "The error type is null");
+            assertTrue(jsonObj.has("error_description"), "The error description is null");
+        } catch (JSONException e) {
+            e.printStackTrace();
+            fail(e.getMessage() + "\nResponse was: " + entity);
+        }
+    }
+}
\ No newline at end of file
diff --git a/oxAuth/Server/src/test/java/org/gluu/oxauth/ws/rs/AuthorizationCodeFlowEmbeddedTest.java b/oxAuth/Server/src/test/java/org/gluu/oxauth/ws/rs/AuthorizationCodeFlowEmbeddedTest.java
new file mode 100644
index 00000000..7ed22dc4
--- /dev/null
+++ b/oxAuth/Server/src/test/java/org/gluu/oxauth/ws/rs/AuthorizationCodeFlowEmbeddedTest.java
@@ -0,0 +1,693 @@
+/*
+ * oxAuth is available under the MIT License (2008). See http://opensource.org/licenses/MIT for full text.
+ *
+ * Copyright (c) 2014, Gluu
+ */
+
+package org.gluu.oxauth.ws.rs;
+
+import org.gluu.oxauth.BaseTest;
+import org.gluu.oxauth.client.*;
+import org.gluu.oxauth.model.authorize.AuthorizeResponseParam;
+import org.gluu.oxauth.model.common.GrantType;
+import org.gluu.oxauth.model.common.Prompt;
+import org.gluu.oxauth.model.common.ResponseType;
+import org.gluu.oxauth.model.configuration.AppConfiguration;
+import org.gluu.oxauth.model.jwt.Jwt;
+import org.gluu.oxauth.model.jwt.JwtClaimName;
+import org.gluu.oxauth.model.register.ApplicationType;
+import org.gluu.oxauth.model.util.StringUtils;
+import org.gluu.oxauth.util.ServerUtil;
+import org.jboss.arquillian.test.api.ArquillianResource;
+import org.jboss.resteasy.client.jaxrs.ResteasyClientBuilder;
+import org.json.JSONException;
+import org.json.JSONObject;
+import org.testng.annotations.Parameters;
+import org.testng.annotations.Test;
+
+import javax.inject.Inject;
+import javax.ws.rs.client.Entity;
+import javax.ws.rs.client.Invocation.Builder;
+import javax.ws.rs.core.MediaType;
+import javax.ws.rs.core.MultivaluedHashMap;
+import javax.ws.rs.core.Response;
+import java.net.URI;
+import java.net.URISyntaxException;
+import java.util.Arrays;
+import java.util.List;
+import java.util.Map;
+import java.util.UUID;
+
+import static org.testng.Assert.*;
+
+/**
+ * Test cases for the authorization code flow (embedded)
+ *
+ * @author Javier Rojas Blum
+ * @version May 14, 2019
+ */
+public class AuthorizationCodeFlowEmbeddedTest extends BaseTest {
+
+    @ArquillianResource
+    private URI url;
+
+    @Inject
+    private AppConfiguration appConfiguration;
+
+    private static String clientId;
+    private static String clientSecret;
+    private static String authorizationCode1;
+    private static String authorizationCode2;
+    private static String authorizationCode3;
+    private static String authorizationCode4;
+    private static String accessToken1;
+    private static String refreshToken1;
+    private static String refreshToken2;
+    private static String refreshToken3;
+
+    @Parameters({"registerPath", "redirectUris"})
+    @Test
+    public void dynamicClientRegistration(final String registerPath, final String redirectUris) throws Exception {
+        Builder request = ResteasyClientBuilder.newClient().target(url.toString() + registerPath).request();
+
+        String registerRequestContent = null;
+        try {
+            org.gluu.oxauth.client.RegisterRequest registerRequest = new RegisterRequest(ApplicationType.WEB, "oxAuth test app",
+                    StringUtils.spaceSeparatedToList(redirectUris));
+            registerRequest.addCustomAttribute("oxAuthTrustedClient", "true");
+
+            registerRequestContent = ServerUtil.toPrettyJson(registerRequest.getJSONParameters());
+        } catch (JSONException e) {
+            e.printStackTrace();
+            fail(e.getMessage());
+        }
+
+        Response response = request.post(Entity.json(registerRequestContent));
+        String entity = response.readEntity(String.class);
+
+        showResponse("dynamicClientRegistration", response, entity);
+
+        assertEquals(response.getStatus(), 200, "Unexpected response code. " + entity);
+        assertNotNull(entity, "Unexpected result: " + entity);
+        try {
+            final org.gluu.oxauth.client.RegisterResponse registerResponse = org.gluu.oxauth.client.RegisterResponse.valueOf(entity);
+            ClientTestUtil.assert_(registerResponse);
+
+            clientId = registerResponse.getClientId();
+            clientSecret = registerResponse.getClientSecret();
+        } catch (Exception e) {
+            e.printStackTrace();
+            fail(e.getMessage() + "\nResponse was: " + entity);
+        }
+    }
+
+    /**
+     * Test for the complete Authorization Code Flow: 1. Request authorization
+     * and receive the authorization code. 2. Request access token using the
+     * authorization code. 3. Validate access token. 4. Request new access token
+     * using the refresh token.
+     */
+    @Parameters({"authorizePath", "userId", "userSecret", "redirectUri"})
+    @Test(dependsOnMethods = "dynamicClientRegistration", priority = 10)
+    public void completeFlowStep1(final String authorizePath, final String userId, final String userSecret,
+                                  final String redirectUri) throws Exception {
+
+        final String state = UUID.randomUUID().toString();
+        List<ResponseType> responseTypes = Arrays.asList(ResponseType.CODE);
+        List<String> scopes = Arrays.asList("openid", "profile", "address", "email");
+
+        org.gluu.oxauth.client.AuthorizationRequest authorizationRequest = new org.gluu.oxauth.client.AuthorizationRequest(responseTypes, clientId, scopes,
+                redirectUri, null);
+        authorizationRequest.setState(state);
+        authorizationRequest.getPrompts().add(Prompt.NONE);
+        authorizationRequest.setAuthUsername(userId);
+        authorizationRequest.setAuthPassword(userSecret);
+
+        Builder request = ResteasyClientBuilder.newClient()
+                .target(url.toString() + authorizePath + "?" + authorizationRequest.getQueryString()).request();
+
+        request.header("Authorization", "Basic " + authorizationRequest.getEncodedCredentials());
+        request.header("Accept", MediaType.TEXT_PLAIN);
+
+        Response response = request.get();
+        String entity = response.readEntity(String.class);
+        showResponse("completeFlowStep1", response, entity);
+
+        assertEquals(response.getStatus(), 302, "Unexpected response code.");
+        assertNotNull(response.getLocation(), "Unexpected result: " + response.getLocation());
+
+        if (response.getLocation() != null) {
+            try {
+                URI uri = new URI(response.getLocation().toString());
+                assertNotNull(uri.getQuery(), "The query string is null");
+
+                Map<String, String> params = org.gluu.oxauth.client.QueryStringDecoder.decode(uri.getQuery());
+
+                assertNotNull(params.get(AuthorizeResponseParam.CODE), "The code is null");
+                assertNotNull(params.get(AuthorizeResponseParam.SCOPE), "The scope is null");
+                assertNotNull(params.get(AuthorizeResponseParam.STATE), "The state is null");
+                assertEquals(params.get(AuthorizeResponseParam.STATE), state);
+
+                authorizationCode1 = params.get(AuthorizeResponseParam.CODE);
+            } catch (URISyntaxException e) {
+                e.printStackTrace();
+                fail("Response URI is not well formed");
+            } catch (Exception e) {
+                e.printStackTrace();
+                fail(e.getMessage());
+            }
+        }
+    }
+
+    @Parameters({"tokenPath", "validateTokenPath", "redirectUri"})
+    @Test(dependsOnMethods = {"dynamicClientRegistration", "completeFlowStep1"}, priority = 10)
+    public void completeFlowStep2(final String tokenPath, final String validateTokenPath, final String redirectUri)
+            throws Exception {
+        Builder request = ResteasyClientBuilder.newClient().target(url.toString() + tokenPath).request();
+
+        org.gluu.oxauth.client.TokenRequest tokenRequest = new org.gluu.oxauth.client.TokenRequest(GrantType.AUTHORIZATION_CODE);
+        tokenRequest.setCode(authorizationCode1);
+        tokenRequest.setRedirectUri(redirectUri);
+        tokenRequest.setAuthUsername(clientId);
+        tokenRequest.setAuthPassword(clientSecret);
+
+        request.header("Authorization", "Basic " + tokenRequest.getEncodedCredentials());
+
+        Response response = request
+                .post(Entity.form(new MultivaluedHashMap<String, String>(tokenRequest.getParameters())));
+        String entity = response.readEntity(String.class);
+
+        showResponse("completeFlowStep2", response, entity);
+
+        assertEquals(response.getStatus(), 200, "Unexpected response code.");
+        assertTrue(
+                response.getHeaderString("Cache-Control") != null
+                        && response.getHeaderString("Cache-Control").equals("no-store"),
+                "Unexpected result: " + response.getHeaderString("Cache-Control"));
+        assertTrue(response.getHeaderString("Pragma") != null && response.getHeaderString("Pragma").equals("no-cache"),
+                "Unexpected result: " + response.getHeaderString("Pragma"));
+        assertNotNull(entity, "Unexpected result: " + entity);
+        try {
+            JSONObject jsonObj = new JSONObject(entity);
+            assertTrue(jsonObj.has("access_token"), "Unexpected result: access_token not found");
+            assertTrue(jsonObj.has("token_type"), "Unexpected result: token_type not found");
+            assertTrue(jsonObj.has("refresh_token"), "Unexpected result: refresh_token not found");
+            assertTrue(jsonObj.has("id_token"), "Unexpected result: id_token not found");
+
+            String accessToken = jsonObj.getString("access_token");
+            refreshToken2 = jsonObj.getString("refresh_token");
+        } catch (JSONException e) {
+            e.printStackTrace();
+            fail(e.getMessage() + "\nResponse was: " + entity);
+        } catch (Exception e) {
+            e.printStackTrace();
+            fail(e.getMessage());
+        }
+    }
+
+    @Parameters({"tokenPath"})
+    @Test(dependsOnMethods = {"dynamicClientRegistration", "completeFlowStep2"}, priority = 10)
+    public void completeFlowStep3(final String tokenPath) throws Exception {
+        Builder request = ResteasyClientBuilder.newClient().target(url.toString() + tokenPath).request();
+
+        org.gluu.oxauth.client.TokenRequest tokenRequest = new org.gluu.oxauth.client.TokenRequest(GrantType.REFRESH_TOKEN);
+        tokenRequest.setRefreshToken(refreshToken2);
+        tokenRequest.setScope("email read_stream manage_pages");
+        tokenRequest.setAuthUsername(clientId);
+        tokenRequest.setAuthPassword(clientSecret);
+
+        request.header("Authorization", "Basic " + tokenRequest.getEncodedCredentials());
+
+        Response response = request
+                .post(Entity.form(new MultivaluedHashMap<String, String>(tokenRequest.getParameters())));
+        String entity = response.readEntity(String.class);
+
+        showResponse("completeFlowStep3", response, entity);
+
+        assertEquals(response.getStatus(), 200, "Unexpected response code.");
+        assertTrue(
+                response.getHeaderString("Cache-Control") != null
+                        && response.getHeaderString("Cache-Control").equals("no-store"),
+                "Unexpected result: " + response.getHeaderString("Cache-Control"));
+        assertTrue(response.getHeaderString("Pragma") != null && response.getHeaderString("Pragma").equals("no-cache"),
+                "Unexpected result: " + response.getHeaderString("Pragma"));
+        assertNotNull(entity, "Unexpected result: " + entity);
+        try {
+            JSONObject jsonObj = new JSONObject(entity);
+            assertTrue(jsonObj.has("access_token"), "Unexpected result: access_token not found");
+            assertTrue(jsonObj.has("token_type"), "Unexpected result: token_type not found");
+            assertTrue(jsonObj.has("scope"), "Unexpected result: scope not found");
+        } catch (JSONException e) {
+            e.printStackTrace();
+            fail(e.getMessage() + "\nResponse was: " + entity);
+        } catch (Exception e) {
+            e.printStackTrace();
+            fail(e.getMessage());
+        }
+    }
+
+    @Parameters({"authorizePath", "userId", "userSecret", "redirectUri"})
+    @Test(dependsOnMethods = "dynamicClientRegistration", priority = 20)
+    public void completeFlowWithOptionalNonceStep1(final String authorizePath, final String userId,
+                                                   final String userSecret, final String redirectUri) throws Exception {
+
+        final String state = UUID.randomUUID().toString();
+        List<ResponseType> responseTypes = Arrays.asList(ResponseType.CODE);
+        List<String> scopes = Arrays.asList("openid", "profile", "address", "email");
+        String nonce = UUID.randomUUID().toString();
+
+        org.gluu.oxauth.client.AuthorizationRequest authorizationRequest = new org.gluu.oxauth.client.AuthorizationRequest(responseTypes, clientId, scopes,
+                redirectUri, nonce);
+        authorizationRequest.setState(state);
+        authorizationRequest.getPrompts().add(Prompt.NONE);
+        authorizationRequest.setAuthUsername(userId);
+        authorizationRequest.setAuthPassword(userSecret);
+
+        Builder request = ResteasyClientBuilder.newClient()
+                .target(url.toString() + authorizePath + "?" + authorizationRequest.getQueryString()).request();
+        request.header("Authorization", "Basic " + authorizationRequest.getEncodedCredentials());
+        request.header("Accept", MediaType.TEXT_PLAIN);
+
+        Response response = request.get();
+        String entity = response.readEntity(String.class);
+
+        showResponse("completeFlowWithOptionalNonceStep1", response, entity);
+
+        assertEquals(response.getStatus(), 302, "Unexpected response code.");
+        assertNotNull(response.getLocation(), "Unexpected result: " + response.getLocation());
+
+        if (response.getLocation() != null) {
+            try {
+                URI uri = new URI(response.getLocation().toString());
+                assertNotNull(uri.getQuery(), "The query string is null");
+
+                Map<String, String> params = org.gluu.oxauth.client.QueryStringDecoder.decode(uri.getQuery());
+
+                assertNotNull(params.get(AuthorizeResponseParam.CODE), "The code is null");
+                assertNotNull(params.get(AuthorizeResponseParam.SCOPE), "The scope is null");
+                assertNotNull(params.get(AuthorizeResponseParam.STATE), "The state is null");
+                assertEquals(params.get(AuthorizeResponseParam.STATE), state);
+
+                authorizationCode4 = params.get(AuthorizeResponseParam.CODE);
+            } catch (URISyntaxException e) {
+                e.printStackTrace();
+                fail("Response URI is not well formed");
+            } catch (Exception e) {
+                e.printStackTrace();
+                fail(e.getMessage());
+            }
+        }
+    }
+
+    @Parameters({"tokenPath", "validateTokenPath", "redirectUri"})
+    @Test(dependsOnMethods = {"dynamicClientRegistration", "completeFlowWithOptionalNonceStep1"}, priority = 20)
+    public void completeFlowWithOptionalNonceStep2(final String tokenPath, final String validateTokenPath,
+                                                   final String redirectUri) throws Exception {
+        Builder request = ResteasyClientBuilder.newClient().target(url.toString() + tokenPath).request();
+
+        org.gluu.oxauth.client.TokenRequest tokenRequest = new org.gluu.oxauth.client.TokenRequest(GrantType.AUTHORIZATION_CODE);
+        tokenRequest.setCode(authorizationCode4);
+        tokenRequest.setRedirectUri(redirectUri);
+        tokenRequest.setAuthUsername(clientId);
+        tokenRequest.setAuthPassword(clientSecret);
+
+        request.header("Authorization", "Basic " + tokenRequest.getEncodedCredentials());
+
+        Response response = request
+                .post(Entity.form(new MultivaluedHashMap<String, String>(tokenRequest.getParameters())));
+        String entity = response.readEntity(String.class);
+
+        showResponse("completeFlowWithOptionalNonceStep2", response, entity);
+
+        assertEquals(response.getStatus(), 200, "Unexpected response code.");
+        assertTrue(
+                response.getHeaderString("Cache-Control") != null
+                        && response.getHeaderString("Cache-Control").equals("no-store"),
+                "Unexpected result: " + response.getHeaderString("Cache-Control"));
+        assertTrue(response.getHeaderString("Pragma") != null && response.getHeaderString("Pragma").equals("no-cache"),
+                "Unexpected result: " + response.getHeaderString("Pragma"));
+        assertNotNull(entity, "Unexpected result: " + entity);
+        try {
+            JSONObject jsonObj = new JSONObject(entity);
+            assertTrue(jsonObj.has("access_token"), "Unexpected result: access_token not found");
+            assertTrue(jsonObj.has("token_type"), "Unexpected result: token_type not found");
+            assertTrue(jsonObj.has("refresh_token"), "Unexpected result: refresh_token not found");
+            assertTrue(jsonObj.has("id_token"), "Unexpected result: id_token not found");
+
+            String accessToken = jsonObj.getString("access_token");
+            refreshToken3 = jsonObj.getString("refresh_token");
+            String idToken = jsonObj.getString("id_token");
+            Jwt jwt = Jwt.parse(idToken);
+            assertNotNull(jwt.getClaims().getClaimAsString(JwtClaimName.NONCE));
+        } catch (JSONException e) {
+            e.printStackTrace();
+            fail(e.getMessage() + "\nResponse was: " + entity);
+        } catch (Exception e) {
+            e.printStackTrace();
+            fail(e.getMessage());
+        }
+    }
+
+    @Parameters({"tokenPath"})
+    @Test(dependsOnMethods = {"dynamicClientRegistration", "completeFlowWithOptionalNonceStep2"}, priority = 20)
+    public void completeFlowWithOptionalNonceStep3(final String tokenPath) throws Exception {
+        Builder request = ResteasyClientBuilder.newClient().target(url.toString() + tokenPath).request();
+
+        org.gluu.oxauth.client.TokenRequest tokenRequest = new org.gluu.oxauth.client.TokenRequest(GrantType.REFRESH_TOKEN);
+        tokenRequest.setRefreshToken(refreshToken3);
+        tokenRequest.setScope("email read_stream manage_pages");
+        tokenRequest.setAuthUsername(clientId);
+        tokenRequest.setAuthPassword(clientSecret);
+
+        request.header("Authorization", "Basic " + tokenRequest.getEncodedCredentials());
+
+        Response response = request
+                .post(Entity.form(new MultivaluedHashMap<String, String>(tokenRequest.getParameters())));
+        String entity = response.readEntity(String.class);
+
+        showResponse("completeFlowWithOptionalNonceStep3", response, entity);
+
+        assertEquals(response.getStatus(), 200, "Unexpected response code.");
+        assertTrue(
+                response.getHeaderString("Cache-Control") != null
+                        && response.getHeaderString("Cache-Control").equals("no-store"),
+                "Unexpected result: " + response.getHeaderString("Cache-Control"));
+        assertTrue(response.getHeaderString("Pragma") != null && response.getHeaderString("Pragma").equals("no-cache"),
+                "Unexpected result: " + response.getHeaderString("Pragma"));
+        assertNotNull(entity, "Unexpected result: " + entity);
+        try {
+            JSONObject jsonObj = new JSONObject(entity);
+            assertTrue(jsonObj.has("access_token"), "Unexpected result: access_token not found");
+            assertTrue(jsonObj.has("token_type"), "Unexpected result: token_type not found");
+            assertTrue(jsonObj.has("scope"), "Unexpected result: scope not found");
+        } catch (JSONException e) {
+            e.printStackTrace();
+            fail(e.getMessage() + "\nResponse was: " + entity);
+        } catch (Exception e) {
+            e.printStackTrace();
+            fail(e.getMessage());
+        }
+    }
+
+    /**
+     * When an authorization code is used more than once, all the tokens issued
+     * for that authorization code must be revoked: 1. Request authorization and
+     * receive the authorization code. 2. Request access token using the
+     * authorization code. 3. Request access token using the same authorization
+     * code one more time. This call must fail. 4. Request new access token
+     * using the refresh token. This call must fail too. 5. Request user info
+     * must fail.
+     */
+    @Parameters({"authorizePath", "userId", "userSecret", "redirectUri"})
+    @Test(dependsOnMethods = "dynamicClientRegistration", priority = 30)
+    public void revokeTokensStep1(final String authorizePath, final String userId, final String userSecret,
+                                  final String redirectUri) throws Exception {
+
+        final String state = UUID.randomUUID().toString();
+        List<ResponseType> responseTypes = Arrays.asList(ResponseType.CODE);
+        List<String> scopes = Arrays.asList("openid", "profile", "address", "email");
+
+        org.gluu.oxauth.client.AuthorizationRequest authorizationRequest = new org.gluu.oxauth.client.AuthorizationRequest(responseTypes, clientId, scopes,
+                redirectUri, null);
+        authorizationRequest.getPrompts().add(Prompt.NONE);
+        authorizationRequest.setAuthUsername(userId);
+        authorizationRequest.setAuthPassword(userSecret);
+        authorizationRequest.setState(state);
+
+        Builder request = ResteasyClientBuilder.newClient()
+                .target(url.toString() + authorizePath + "?" + authorizationRequest.getQueryString()).request();
+
+        request.header("Authorization", "Basic " + authorizationRequest.getEncodedCredentials());
+        request.header("Accept", MediaType.TEXT_PLAIN);
+
+        Response response = request.get();
+        String entity = response.readEntity(String.class);
+
+        showResponse("revokeTokensStep1", response, entity);
+
+        assertEquals(response.getStatus(), 302, "Unexpected response code.");
+        assertNotNull(response.getLocation(), "Unexpected result: " + response.getLocation());
+
+        if (response.getLocation() != null) {
+            try {
+                URI uri = new URI(response.getLocation().toString());
+                assertNotNull(uri.getQuery(), "The query string is null");
+
+                Map<String, String> params = org.gluu.oxauth.client.QueryStringDecoder.decode(uri.getQuery());
+
+                assertNotNull(params.get(AuthorizeResponseParam.CODE), "The code is null");
+                assertNotNull(params.get(AuthorizeResponseParam.SCOPE), "The scope is null");
+                assertNotNull(params.get(AuthorizeResponseParam.STATE), "The state is null");
+                assertEquals(params.get(AuthorizeResponseParam.STATE), state);
+
+                authorizationCode2 = params.get(AuthorizeResponseParam.CODE);
+            } catch (URISyntaxException e) {
+                e.printStackTrace();
+                fail("Response URI is not well formed");
+            } catch (Exception e) {
+                e.printStackTrace();
+                fail(e.getMessage());
+            }
+        }
+    }
+
+    @Parameters({"tokenPath", "redirectUri"})
+    @Test(dependsOnMethods = {"dynamicClientRegistration", "revokeTokensStep1"}, priority = 30)
+    public void revokeTokensStep2n3(final String tokenPath, final String redirectUri) throws Exception {
+        Builder request = ResteasyClientBuilder.newClient().target(url.toString() + tokenPath).request();
+        org.gluu.oxauth.client.TokenRequest tokenRequest = new org.gluu.oxauth.client.TokenRequest(GrantType.AUTHORIZATION_CODE);
+        tokenRequest.setCode(authorizationCode2);
+        tokenRequest.setRedirectUri(redirectUri);
+        tokenRequest.setAuthUsername(clientId);
+        tokenRequest.setAuthPassword(clientSecret);
+
+        request.header("Authorization", "Basic " + tokenRequest.getEncodedCredentials());
+
+        Response response = request
+                .post(Entity.form(new MultivaluedHashMap<String, String>(tokenRequest.getParameters())));
+        String entity = response.readEntity(String.class);
+
+        showResponse("revokeTokensStep2n3", response, entity);
+
+        assertEquals(response.getStatus(), 200, "Unexpected response code.");
+        assertTrue(
+                response.getHeaderString("Cache-Control") != null
+                        && response.getHeaderString("Cache-Control").equals("no-store"),
+                "Unexpected result: " + response.getHeaderString("Cache-Control"));
+        assertTrue(response.getHeaderString("Pragma") != null && response.getHeaderString("Pragma").equals("no-cache"),
+                "Unexpected result: " + response.getHeaderString("Pragma"));
+        assertNotNull(entity, "Unexpected result: " + entity);
+        try {
+            JSONObject jsonObj = new JSONObject(entity);
+            assertTrue(jsonObj.has("access_token"), "Unexpected result: access_token not found");
+            assertTrue(jsonObj.has("token_type"), "Unexpected result: token_type not found");
+            assertTrue(jsonObj.has("refresh_token"), "Unexpected result: refresh_token not found");
+            assertTrue(jsonObj.has("id_token"), "Unexpected result: id_token not found");
+
+            accessToken1 = jsonObj.getString("access_token");
+            refreshToken1 = jsonObj.getString("refresh_token");
+
+            Builder request2 = ResteasyClientBuilder.newClient().target(url.toString() + tokenPath).request();
+            org.gluu.oxauth.client.TokenRequest tokenRequest2 = new org.gluu.oxauth.client.TokenRequest(GrantType.AUTHORIZATION_CODE);
+            tokenRequest2.setCode(authorizationCode2);
+            tokenRequest2.setRedirectUri(redirectUri);
+            tokenRequest2.setAuthUsername(clientId);
+            tokenRequest2.setAuthPassword(clientSecret);
+
+            request2.header("Authorization", "Basic " + tokenRequest2.getEncodedCredentials());
+
+            Response response2 = request2
+                    .post(Entity.form(new MultivaluedHashMap<String, String>(tokenRequest2.getParameters())));
+            String entity2 = response2.readEntity(String.class);
+
+            showResponse("revokeTokens step 3", response2, entity2);
+
+            assertEquals(response2.getStatus(), 400, "Unexpected response code.");
+            assertNotNull(entity2, "Unexpected result: " + entity2);
+            try {
+                JSONObject jsonObj2 = new JSONObject(entity2);
+                assertTrue(jsonObj2.has("error"), "The error type is null");
+                assertTrue(jsonObj2.has("error_description"), "The error description is null");
+            } catch (JSONException e) {
+                e.printStackTrace();
+                fail(e.getMessage() + "\nResponse was: " + entity2);
+            }
+        } catch (
+
+                JSONException e) {
+            e.printStackTrace();
+            fail(e.getMessage() + "\nResponse was: " + entity);
+        } catch (Exception e) {
+            e.printStackTrace();
+            fail(e.getMessage());
+        }
+    }
+
+    @Parameters({"tokenPath"})
+    @Test(dependsOnMethods = {"dynamicClientRegistration", "revokeTokensStep2n3"}, priority = 30)
+    public void revokeTokensStep4(final String tokenPath) throws Exception {
+        Builder request = ResteasyClientBuilder.newClient().target(url.toString() + tokenPath).request();
+
+        org.gluu.oxauth.client.TokenRequest tokenRequest = new org.gluu.oxauth.client.TokenRequest(GrantType.REFRESH_TOKEN);
+        tokenRequest.setRefreshToken(refreshToken1);
+        tokenRequest.setScope("email read_stream manage_pages");
+        tokenRequest.setAuthUsername(clientId);
+        tokenRequest.setAuthPassword(clientSecret);
+
+        request.header("Authorization", "Basic " + tokenRequest.getEncodedCredentials());
+
+        Response response = request
+                .post(Entity.form(new MultivaluedHashMap<String, String>(tokenRequest.getParameters())));
+        String entity = response.readEntity(String.class);
+
+        showResponse("revokeTokensStep4", response, entity);
+
+        assertEquals(response.getStatus(), 400, "Unexpected response code.");
+        assertNotNull(entity, "Unexpected result: " + entity);
+        try {
+            JSONObject jsonObj = new JSONObject(entity);
+            assertTrue(jsonObj.has("error"), "The error type is null");
+            assertTrue(jsonObj.has("error_description"), "The error description is null");
+        } catch (JSONException e) {
+            e.printStackTrace();
+            fail(e.getMessage() + "\nResponse was: " + entity);
+        }
+    }
+
+    @Parameters({"userInfoPath"})
+    @Test(dependsOnMethods = "revokeTokensStep4", priority = 30)
+    public void revokeTokensStep5(final String userInfoPath) throws Exception {
+        Builder request = ResteasyClientBuilder.newClient().target(url.toString() + userInfoPath).request();
+
+        request.header("Authorization", "Bearer " + accessToken1);
+
+        org.gluu.oxauth.client.UserInfoRequest userInfoRequest = new org.gluu.oxauth.client.UserInfoRequest(null);
+
+        Response response = request
+                .post(Entity.form(new MultivaluedHashMap<String, String>(userInfoRequest.getParameters())));
+        String entity = response.readEntity(String.class);
+
+        showResponse("revokeTokensStep5", response, entity);
+
+        assertEquals(response.getStatus(), 401, "Unexpected response code.");
+        assertNotNull(entity, "Unexpected result: " + entity);
+        try {
+            JSONObject jsonObj = new JSONObject(entity);
+            assertTrue(jsonObj.has("error"), "The error type is null");
+            assertTrue(jsonObj.has("error_description"), "The error description is null");
+        } catch (JSONException e) {
+            e.printStackTrace();
+            fail(e.getMessage() + "\nResponse was: " + entity);
+        }
+    }
+
+    /**
+     * Test to verify the token expiration 1. Request authorization and receive
+     * the authorization code. ...Wait until the authorization code expires...
+     * 2. Request access token using the expired authorization code. This call
+     * must fail.
+     *
+     * @throws Exception
+     */
+    @Parameters({"authorizePath", "userId", "userSecret", "redirectUri"})
+    @Test(dependsOnMethods = "dynamicClientRegistration", priority = 40)
+    public void tokenExpirationStep1(final String authorizePath, final String userId, final String userSecret,
+                                     final String redirectUri) throws Exception {
+
+    	// Store current configuration
+    	int currentAuthorizationCodeLifetime = appConfiguration.getAuthorizationCodeLifetime();
+    	int currentCleanServiceInterval = appConfiguration.getCleanServiceInterval();
+    	
+    	// We need to expire in test test code token faster than usual to avoid sleeping test for long time
+    	appConfiguration.setAuthorizationCodeLifetime(8);
+    	appConfiguration.setCleanServiceInterval(6);
+    	try {
+	        final String state = UUID.randomUUID().toString();
+	
+	        List<ResponseType> responseTypes = Arrays.asList(ResponseType.CODE);
+	        List<String> scopes = Arrays.asList("openid", "profile", "address", "email");
+	
+	        org.gluu.oxauth.client.AuthorizationRequest authorizationRequest = new org.gluu.oxauth.client.AuthorizationRequest(responseTypes, clientId, scopes,
+	                redirectUri, null);
+	        authorizationRequest.getPrompts().add(Prompt.NONE);
+	        authorizationRequest.setAuthUsername(userId);
+	        authorizationRequest.setAuthPassword(userSecret);
+	        authorizationRequest.setState(state);
+	
+	        Builder request = ResteasyClientBuilder.newClient()
+	                .target(url.toString() + authorizePath + "?" + authorizationRequest.getQueryString()).request();
+	
+	        request.header("Authorization", "Basic " + authorizationRequest.getEncodedCredentials());
+	        request.header("Accept", MediaType.TEXT_PLAIN);
+	
+	        Response response = request.get();
+	        String entity = response.readEntity(String.class);
+	
+	        showResponse("tokenExpirationStep1", response, entity);
+	
+	        assertEquals(response.getStatus(), 302, "Unexpected response code.");
+	        assertNotNull(response.getLocation(), "Unexpected result: " + response.getLocation());
+	
+	        if (response.getLocation() != null) {
+	            try {
+	                URI uri = new URI(response.getLocation().toString());
+	                assertNotNull(uri.getQuery(), "The query string is null");
+	
+	                Map<String, String> params = org.gluu.oxauth.client.QueryStringDecoder.decode(uri.getQuery());
+	
+	                assertNotNull(params.get(AuthorizeResponseParam.CODE), "The code is null");
+	                assertNotNull(params.get(AuthorizeResponseParam.SCOPE), "The scope is null");
+	                assertNotNull(params.get(AuthorizeResponseParam.STATE), "The state is null");
+	                assertEquals(params.get(AuthorizeResponseParam.STATE), state);
+	
+	                authorizationCode3 = params.get(AuthorizeResponseParam.CODE);
+	            } catch (URISyntaxException e) {
+	                e.printStackTrace();
+	                fail("Response URI is not well formed");
+	            } catch (Exception e) {
+	                e.printStackTrace();
+	                fail(e.getMessage());
+	            }
+	        }
+    	} finally {
+        	// Restore configuration
+    		appConfiguration.setAuthorizationCodeLifetime(currentAuthorizationCodeLifetime);
+    		appConfiguration.setCleanServiceInterval(currentCleanServiceInterval);
+    	}
+    }
+
+    @Parameters({"tokenPath", "redirectUri"})
+    @Test(dependsOnMethods = {"dynamicClientRegistration", "tokenExpirationStep1"}, priority = 40)
+    public void tokenExpirationStep2(final String tokenPath, final String redirectUri) throws Exception {
+        // ...Wait until the authorization code expires...
+        System.out.println("Sleeping for 20 seconds .....");
+        Thread.sleep(20000);
+
+        Builder request = ResteasyClientBuilder.newClient().target(url.toString() + tokenPath).request();
+
+        org.gluu.oxauth.client.TokenRequest tokenRequest = new org.gluu.oxauth.client.TokenRequest(GrantType.AUTHORIZATION_CODE);
+        tokenRequest.setCode(authorizationCode3);
+        tokenRequest.setRedirectUri(redirectUri);
+        tokenRequest.setAuthUsername(clientId);
+        tokenRequest.setAuthPassword(clientSecret);
+
+        request.header("Authorization", "Basic " + tokenRequest.getEncodedCredentials());
+
+        Response response = request
+                .post(Entity.form(new MultivaluedHashMap<String, String>(tokenRequest.getParameters())));
+        String entity = response.readEntity(String.class);
+
+        showResponse("tokenExpirationStep2", response, entity);
+
+        assertEquals(response.getStatus(), 400, "Unexpected response code.");
+        assertNotNull(entity, "Unexpected result: " + entity);
+        try {
+            JSONObject jsonObj = new JSONObject(entity);
+            assertTrue(jsonObj.has("error"), "The error type is null");
+            assertTrue(jsonObj.has("error_description"), "The error description is null");
+        } catch (JSONException e) {
+            e.printStackTrace();
+            fail(e.getMessage() + "\nResponse was: " + entity);
+        }
+    }
+}
\ No newline at end of file
diff --git a/oxAuth/Server/src/test/java/org/gluu/oxauth/ws/rs/AuthorizeRestWebServiceEmbeddedTest.java b/oxAuth/Server/src/test/java/org/gluu/oxauth/ws/rs/AuthorizeRestWebServiceEmbeddedTest.java
new file mode 100644
index 00000000..c129a65e
--- /dev/null
+++ b/oxAuth/Server/src/test/java/org/gluu/oxauth/ws/rs/AuthorizeRestWebServiceEmbeddedTest.java
@@ -0,0 +1,1211 @@
+/*
+ * oxAuth is available under the MIT License (2008). See http://opensource.org/licenses/MIT for full text.
+ *
+ * Copyright (c) 2014, Gluu
+ */
+
+package org.gluu.oxauth.ws.rs;
+
+import org.gluu.oxauth.BaseTest;
+import org.gluu.oxauth.client.*;
+import org.gluu.oxauth.model.authorize.AuthorizeResponseParam;
+import org.gluu.oxauth.model.common.Prompt;
+import org.gluu.oxauth.model.common.ResponseType;
+import org.gluu.oxauth.model.register.ApplicationType;
+import org.gluu.oxauth.model.register.RegisterResponseParam;
+import org.gluu.oxauth.model.util.StringUtils;
+import org.gluu.oxauth.util.ServerUtil;
+import org.jboss.arquillian.test.api.ArquillianResource;
+import org.jboss.resteasy.client.jaxrs.ResteasyClientBuilder;
+import org.json.JSONException;
+import org.json.JSONObject;
+import org.testng.annotations.Parameters;
+import org.testng.annotations.Test;
+
+import javax.ws.rs.client.Entity;
+import javax.ws.rs.client.Invocation.Builder;
+import javax.ws.rs.core.MediaType;
+import javax.ws.rs.core.Response;
+import java.net.URI;
+import java.net.URISyntaxException;
+import java.util.*;
+
+import static org.gluu.oxauth.client.AuthorizationRequest.NO_REDIRECT_HEADER;
+import static org.testng.Assert.*;
+
+/**
+ * Functional tests for Authorize Web Services (embedded)
+ *
+ * @author Javier Rojas Blum
+ * @version October 7, 2019
+ */
+public class AuthorizeRestWebServiceEmbeddedTest extends BaseTest {
+
+    @ArquillianResource
+    private URI url;
+
+    private static String clientId1;
+    private static String clientId2;
+    private static String accessToken2;
+
+    @Parameters({"registerPath", "redirectUris"})
+    @Test
+    public void dynamicClientRegistration(final String registerPath, final String redirectUris) throws Exception {
+        Builder request = ResteasyClientBuilder.newClient().target(url.toString() + registerPath).request();
+        String registerRequestContent = null;
+        try {
+            List<ResponseType> responseTypes = Arrays.asList(ResponseType.CODE, ResponseType.TOKEN,
+                    ResponseType.ID_TOKEN);
+
+            RegisterRequest registerRequest = new RegisterRequest(ApplicationType.WEB, "oxAuth test app",
+                    StringUtils.spaceSeparatedToList(redirectUris));
+            registerRequest.setResponseTypes(responseTypes);
+            registerRequest.addCustomAttribute("oxAuthTrustedClient", "true");
+
+            registerRequestContent = ServerUtil.toPrettyJson(registerRequest.getJSONParameters());
+        } catch (JSONException e) {
+            e.printStackTrace();
+            fail(e.getMessage());
+        }
+
+        Response response = request.post(Entity.json(registerRequestContent));
+        String entity = response.readEntity(String.class);
+
+        showResponse("dynamicClientRegistration", response, entity);
+
+        assertEquals(response.getStatus(), 200, "Unexpected response code. " + entity);
+        assertNotNull(entity, "Unexpected result: " + entity);
+        try {
+            final RegisterResponse registerResponse = RegisterResponse.valueOf(entity);
+            ClientTestUtil.assert_(registerResponse);
+
+            clientId1 = registerResponse.getClientId();
+        } catch (Exception e) {
+            e.printStackTrace();
+            fail(e.getMessage() + "\nResponse was: " + entity);
+        }
+    }
+
+    @Parameters({"authorizePath", "userId", "userSecret", "redirectUri"})
+    @Test(dependsOnMethods = "dynamicClientRegistration")
+    public void requestAuthorizationCode(final String authorizePath, final String userId, final String userSecret,
+                                         final String redirectUri) throws Exception {
+        final String state = UUID.randomUUID().toString();
+
+        List<ResponseType> responseTypes = Arrays.asList(ResponseType.CODE);
+        List<String> scopes = Arrays.asList("openid", "profile", "address", "email");
+
+        AuthorizationRequest authorizationRequest = new AuthorizationRequest(responseTypes, clientId1, scopes,
+                redirectUri, null);
+        authorizationRequest.setState(state);
+        authorizationRequest.getPrompts().add(Prompt.NONE);
+        authorizationRequest.setAuthUsername(userId);
+        authorizationRequest.setAuthPassword(userSecret);
+
+        Builder request = ResteasyClientBuilder.newClient()
+                .target(url.toString() + authorizePath + "?" + authorizationRequest.getQueryString()).request();
+        request.header("Authorization", "Basic " + authorizationRequest.getEncodedCredentials());
+        request.header("Accept", MediaType.TEXT_PLAIN);
+
+        Response response = request.get();
+        String entity = response.readEntity(String.class);
+
+        showResponse("requestAuthorizationCode", response, entity);
+
+        assertEquals(response.getStatus(), 302, "Unexpected response code.");
+        assertNotNull(response.getLocation(), "Unexpected result: " + response.getLocation());
+
+        try {
+            URI uri = new URI(response.getLocation().toString());
+            assertNotNull(uri.getQuery(), "Query string is null");
+
+            Map<String, String> params = QueryStringDecoder.decode(uri.getQuery());
+
+            assertNotNull(params.get(AuthorizeResponseParam.CODE), "The code is null");
+            assertNotNull(params.get(AuthorizeResponseParam.SCOPE), "The scope is null");
+            assertNotNull(params.get(AuthorizeResponseParam.STATE), "The state is null");
+            assertEquals(params.get(AuthorizeResponseParam.STATE), state);
+        } catch (URISyntaxException e) {
+            e.printStackTrace();
+            fail("Response URI is not well formed");
+        }
+    }
+
+    @Parameters({"authorizePath", "userId", "userSecret", "redirectUri"})
+    @Test(dependsOnMethods = "dynamicClientRegistration")
+    public void requestAuthorizationCodeNoRedirection(final String authorizePath, final String userId,
+                                                      final String userSecret, final String redirectUri) throws Exception {
+        final String state = UUID.randomUUID().toString();
+
+        List<ResponseType> responseTypes = Arrays.asList(ResponseType.CODE);
+        List<String> scopes = Arrays.asList("openid", "profile", "address", "email");
+
+        AuthorizationRequest authorizationRequest = new AuthorizationRequest(responseTypes, clientId1, scopes,
+                redirectUri, null);
+        authorizationRequest.setState(state);
+        authorizationRequest.getPrompts().add(Prompt.NONE);
+        authorizationRequest.setAuthUsername(userId);
+        authorizationRequest.setAuthPassword(userSecret);
+
+        Builder request = ResteasyClientBuilder.newClient()
+                .target(url.toString() + authorizePath + "?" + authorizationRequest.getQueryString()).request();
+        request.header("Authorization", "Basic " + authorizationRequest.getEncodedCredentials());
+        request.header("Accept", MediaType.TEXT_PLAIN);
+        request.header(NO_REDIRECT_HEADER, "");
+
+        Response response = request.get();
+        String entity = response.readEntity(String.class);
+
+        showResponse("requestAuthorizationCodeNoRedirection", response, entity);
+
+        assertEquals(response.getStatus(), 200, "Unexpected response code.");
+        assertNotNull(entity, "Unexpected result: " + entity);
+        try {
+            JSONObject jsonObj = new JSONObject(entity);
+            assertTrue(jsonObj.has("redirect"), "Unexpected result: redirect not found");
+
+            URI uri = new URI(jsonObj.getString("redirect"));
+            assertNotNull(uri.getQuery(), "Query string is null");
+
+            Map<String, String> params = QueryStringDecoder.decode(uri.getQuery());
+
+            assertNotNull(params.get(AuthorizeResponseParam.CODE), "The code is null");
+            assertNotNull(params.get(AuthorizeResponseParam.SCOPE), "The scope is null");
+            assertNotNull(params.get(AuthorizeResponseParam.STATE), "The state is null");
+            assertEquals(params.get(AuthorizeResponseParam.STATE), state);
+        } catch (JSONException e) {
+            e.printStackTrace();
+            fail(e.getMessage() + "\nResponse was: " + entity);
+        } catch (Exception e) {
+            e.printStackTrace();
+            fail(e.getMessage());
+        }
+    }
+
+    @Parameters({"authorizePath", "userId", "userSecret"})
+    @Test
+    public void requestAuthorizationCodeFail1(final String authorizePath, final String userId, final String userSecret)
+            throws Exception {
+        // Testing with missing parameters
+        AuthorizationRequest authorizationRequest = new AuthorizationRequest(null, null, null, null, null);
+        authorizationRequest.setAuthUsername(userId);
+        authorizationRequest.setAuthPassword(userSecret);
+
+        Builder request = ResteasyClientBuilder.newClient()
+                .target(url.toString() + authorizePath + "?" + authorizationRequest.getQueryString()).request();
+        request.header("Authorization", "Basic " + authorizationRequest.getEncodedCredentials());
+        request.header("Accept", MediaType.TEXT_PLAIN);
+
+        Response response = request.get();
+        String entity = response.readEntity(String.class);
+
+        showResponse("requestAuthorizationCodeFail1", response, entity);
+
+        assertEquals(response.getStatus(), 400, "Unexpected response code.");
+        assertNotNull(entity, "Unexpected result: " + entity);
+        try {
+            JSONObject jsonObj = new JSONObject(entity);
+            assertTrue(jsonObj.has("error"), "The error type is null");
+            assertTrue(jsonObj.has("error_description"), "The error description is null");
+        } catch (JSONException e) {
+            e.printStackTrace();
+            fail(e.getMessage() + "\nResponse was: " + entity);
+        }
+    }
+
+    @Parameters({"authorizePath", "userId", "userSecret"})
+    @Test(dependsOnMethods = "dynamicClientRegistration")
+    public void requestAuthorizationCodeFail2(final String authorizePath, final String userId, final String userSecret)
+            throws Exception {
+        final String state = UUID.randomUUID().toString();
+
+        List<ResponseType> responseTypes = Arrays.asList(ResponseType.CODE);
+        List<String> scopes = Arrays.asList("openid", "profile", "address", "email");
+
+        AuthorizationRequest authorizationRequest = new AuthorizationRequest(responseTypes, clientId1, scopes,
+                "https://INVALID_REDIRECT_URI", null);
+        authorizationRequest.setState(state);
+        authorizationRequest.getPrompts().add(Prompt.NONE);
+        authorizationRequest.setAuthUsername(userId);
+        authorizationRequest.setAuthPassword(userSecret);
+
+        Builder request = ResteasyClientBuilder.newClient()
+                .target(url.toString() + authorizePath + "?" + authorizationRequest.getQueryString()).request();
+        request.header("Authorization", "Basic " + authorizationRequest.getEncodedCredentials());
+        request.header("Accept", MediaType.TEXT_PLAIN);
+
+        Response response = request.get();
+        String entity = response.readEntity(String.class);
+
+        showResponse("requestAuthorizationCodeFail2", response, entity);
+
+        assertEquals(response.getStatus(), 400, "Unexpected response code.");
+        assertNotNull(entity, "Unexpected result: " + entity);
+        try {
+            JSONObject jsonObj = new JSONObject(entity);
+            assertTrue(jsonObj.has("error"), "The error type is null");
+            assertTrue(jsonObj.has("error_description"), "The error description is null");
+            assertEquals(jsonObj.get(AuthorizeResponseParam.STATE), state);
+        } catch (JSONException e) {
+            e.printStackTrace();
+            fail(e.getMessage() + "\nResponse was: " + entity);
+        }
+    }
+
+    @Parameters({"authorizePath", "userId", "userSecret", "redirectUri"})
+    @Test
+    public void requestAuthorizationCodeFail3(final String authorizePath, final String userId, final String userSecret,
+                                              final String redirectUri) throws Exception {
+        final String state = UUID.randomUUID().toString();
+
+        String clientId = "@!1111!0008!INVALID_VALUE";
+
+        List<ResponseType> responseTypes = Arrays.asList(ResponseType.CODE);
+        List<String> scopes = Arrays.asList("openid", "profile", "address", "email");
+
+        AuthorizationRequest authorizationRequest = new AuthorizationRequest(responseTypes, clientId, scopes,
+                redirectUri, null);
+        authorizationRequest.setState(state);
+        authorizationRequest.getPrompts().add(Prompt.NONE);
+        authorizationRequest.setAuthUsername(userId);
+        authorizationRequest.setAuthPassword(userSecret);
+
+        Builder request = ResteasyClientBuilder.newClient()
+                .target(url.toString() + authorizePath + "?" + authorizationRequest.getQueryString()).request();
+        request.header("Authorization", "Basic " + authorizationRequest.getEncodedCredentials());
+        request.header("Accept", MediaType.TEXT_PLAIN);
+
+        Response response = request.get();
+        String entity = response.readEntity(String.class);
+
+        showResponse("requestAuthorizationCodeFail3", response, entity);
+
+        assertEquals(response.getStatus(), 401, "Unexpected response code.");
+        assertNotNull(entity, "Unexpected result: " + entity);
+        try {
+            JSONObject jsonObj = new JSONObject(entity);
+            assertTrue(jsonObj.has("error"), "The error type is null");
+            assertEquals(jsonObj.getString("error"), "unauthorized_client");
+            assertTrue(jsonObj.has("error_description"), "The error description is null");
+            assertEquals(jsonObj.get(AuthorizeResponseParam.STATE), state);
+        } catch (JSONException e) {
+            e.printStackTrace();
+            fail(e.getMessage() + "\nResponse was: " + entity);
+        }
+    }
+
+    @Parameters({"authorizePath", "userId", "userSecret", "redirectUri"})
+    @Test(dependsOnMethods = "dynamicClientRegistration")
+    public void requestAuthorizationToken(final String authorizePath, final String userId, final String userSecret,
+                                          final String redirectUri) throws Exception {
+        final String state = UUID.randomUUID().toString();
+
+        List<ResponseType> responseTypes = Arrays.asList(ResponseType.TOKEN, ResponseType.ID_TOKEN);
+        List<String> scopes = Arrays.asList("openid", "profile", "address", "email");
+        String nonce = UUID.randomUUID().toString();
+
+        AuthorizationRequest authorizationRequest = new AuthorizationRequest(responseTypes, clientId1, scopes,
+                redirectUri, nonce);
+        authorizationRequest.setState(state);
+        authorizationRequest.getPrompts().add(Prompt.NONE);
+        authorizationRequest.setAuthUsername(userId);
+        authorizationRequest.setAuthPassword(userSecret);
+
+        Builder request = ResteasyClientBuilder.newClient()
+                .target(url.toString() + authorizePath + "?" + authorizationRequest.getQueryString()).request();
+        request.header("Authorization", "Basic " + authorizationRequest.getEncodedCredentials());
+        request.header("Accept", MediaType.TEXT_PLAIN);
+
+        Response response = request.get();
+        String entity = response.readEntity(String.class);
+
+        showResponse("requestAuthorizationToken", response, entity);
+
+        assertEquals(response.getStatus(), 302, "Unexpected response code.");
+        assertNotNull(response.getLocation(), "Unexpected result: " + response.getLocation());
+
+        if (response.getLocation() != null) {
+            try {
+                URI uri = new URI(response.getLocation().toString());
+                assertNotNull(uri.getFragment(), "Fragment is null");
+
+                Map<String, String> params = QueryStringDecoder.decode(uri.getFragment());
+
+                assertNotNull(params.get("access_token"), "The access token is null");
+                assertNotNull(params.get("state"), "The state is null");
+                assertNotNull(params.get("token_type"), "The token type is null");
+                assertNotNull(params.get("expires_in"), "The expires in value is null");
+                assertNotNull(params.get("scope"), "The scope must be null");
+                assertNull(params.get("refresh_token"), "The refresh_token must be null");
+                assertEquals(params.get(AuthorizeResponseParam.STATE), state);
+            } catch (URISyntaxException e) {
+                e.printStackTrace();
+                fail("Response URI is not well formed");
+            }
+        }
+    }
+
+    @Parameters({"authorizePath", "userId", "userSecret", "redirectUri"})
+    @Test
+    public void requestAuthorizationTokenFail1(final String authorizePath, final String userId, final String userSecret,
+                                               final String redirectUri) throws Exception {
+        final String state = UUID.randomUUID().toString();
+
+        // Testing with missing parameters
+        List<ResponseType> responseTypes = Arrays.asList(ResponseType.TOKEN, ResponseType.ID_TOKEN);
+        List<String> scopes = Arrays.asList("openid", "profile", "address", "email");
+        String nonce = UUID.randomUUID().toString();
+
+        AuthorizationRequest authorizationRequest = new AuthorizationRequest(responseTypes, null, scopes, redirectUri,
+                nonce);
+        authorizationRequest.setState(state);
+        authorizationRequest.setAuthUsername(userId);
+        authorizationRequest.setAuthPassword(userSecret);
+
+        Builder request = ResteasyClientBuilder.newClient()
+                .target(url.toString() + authorizePath + "?" + authorizationRequest.getQueryString()).request();
+        request.header("Authorization", "Basic " + authorizationRequest.getEncodedCredentials());
+        request.header("Accept", MediaType.TEXT_PLAIN);
+
+        Response response = request.get();
+        String entity = response.readEntity(String.class);
+
+        showResponse("requestAuthorizationTokenFail1", response, entity);
+
+        assertEquals(response.getStatus(), 400, "Unexpected response code.");
+        assertNotNull(entity, "Unexpected result: " + entity);
+        try {
+            JSONObject jsonObj = new JSONObject(entity);
+            assertTrue(jsonObj.has("error"), "The error type is null");
+            assertEquals(jsonObj.getString("error"), "unauthorized_client");
+            assertTrue(jsonObj.has("error_description"), "The error description is null");
+            assertEquals(jsonObj.get(AuthorizeResponseParam.STATE), state);
+        } catch (JSONException e) {
+            e.printStackTrace();
+            fail(e.getMessage() + "\nResponse was: " + entity);
+        }
+    }
+
+    @Parameters({"authorizePath", "userId", "userSecret", "redirectUri"})
+    @Test(dependsOnMethods = "dynamicClientRegistration")
+    public void requestAuthorizationTokenFail2(final String authorizePath, final String userId, final String userSecret,
+                                               final String redirectUri) throws Exception {
+        final String state = UUID.randomUUID().toString();
+
+        List<ResponseType> responseTypes = Arrays.asList(ResponseType.TOKEN);
+        List<String> scopes = Arrays.asList("openid", "profile", "address", "email");
+        String nonce = null;
+
+        AuthorizationRequest authorizationRequest = new AuthorizationRequest(responseTypes, clientId1, scopes,
+                redirectUri, nonce);
+        authorizationRequest.setState(state);
+        authorizationRequest.getPrompts().add(Prompt.NONE);
+        authorizationRequest.setAuthUsername(userId);
+        authorizationRequest.setAuthPassword(userSecret);
+
+        Builder request = ResteasyClientBuilder.newClient()
+                .target(url.toString() + authorizePath + "?" + authorizationRequest.getQueryString()).request();
+        request.header("Authorization", "Basic " + authorizationRequest.getEncodedCredentials());
+        request.header("Accept", MediaType.TEXT_PLAIN);
+
+        Response response = request.get();
+        String entity = response.readEntity(String.class);
+
+        showResponse("requestAuthorizationTokenFail2", response, entity);
+
+        assertEquals(response.getStatus(), 302, "Unexpected response code.");
+        assertNotNull(response.getLocation(), "Unexpected result: " + response.getLocation());
+
+        if (response.getLocation() != null) {
+            try {
+                URI uri = new URI(response.getLocation().toString());
+                assertNotNull(uri.getFragment(), "Fragment is null");
+
+                Map<String, String> params = QueryStringDecoder.decode(uri.getFragment());
+
+                assertNotNull(params.get("error"), "The error value is null");
+                assertNotNull(params.get("error_description"), "The errorDescription value is null");
+                assertNotNull(params.get(AuthorizeResponseParam.STATE), "The state is null");
+                assertEquals(params.get(AuthorizeResponseParam.STATE), state);
+            } catch (URISyntaxException e) {
+                e.printStackTrace();
+                fail("Response URI is not well formed");
+            }
+        }
+    }
+
+    @Parameters({"authorizePath", "userId", "userSecret", "redirectUri"})
+    @Test(dependsOnMethods = "dynamicClientRegistration")
+    public void requestAuthorizationTokenIdToken(final String authorizePath, final String userId,
+                                                 final String userSecret, final String redirectUri) throws Exception {
+        final String state = UUID.randomUUID().toString();
+
+        List<ResponseType> responseTypes = Arrays.asList(ResponseType.TOKEN, ResponseType.ID_TOKEN);
+        List<String> scopes = Arrays.asList("openid", "profile", "address", "email");
+        String nonce = UUID.randomUUID().toString();
+
+        AuthorizationRequest authorizationRequest = new AuthorizationRequest(responseTypes, clientId1, scopes,
+                redirectUri, nonce);
+        authorizationRequest.setState(state);
+        authorizationRequest.getPrompts().add(Prompt.NONE);
+        authorizationRequest.setAuthUsername(userId);
+        authorizationRequest.setAuthPassword(userSecret);
+
+        Builder request = ResteasyClientBuilder.newClient()
+                .target(url.toString() + authorizePath + "?" + authorizationRequest.getQueryString()).request();
+        request.header("Authorization", "Basic " + authorizationRequest.getEncodedCredentials());
+        request.header("Accept", MediaType.TEXT_PLAIN);
+
+        Response response = request.get();
+        String entity = response.readEntity(String.class);
+
+        showResponse("requestAuthorizationTokenIdToken", response, entity);
+
+        assertEquals(response.getStatus(), 302, "Unexpected response code.");
+        assertNotNull(response.getLocation(), "Unexpected result: " + response.getLocation());
+
+        if (response.getLocation() != null) {
+            try {
+                URI uri = new URI(response.getLocation().toString());
+                assertNotNull(uri.getFragment(), "Fragment is null");
+
+                Map<String, String> params = QueryStringDecoder.decode(uri.getFragment());
+
+                assertNotNull(params.get(AuthorizeResponseParam.ACCESS_TOKEN), "The access token is null");
+                assertNotNull(params.get(AuthorizeResponseParam.TOKEN_TYPE), "The token type is null");
+                assertNotNull(params.get(AuthorizeResponseParam.ID_TOKEN), "The id token is null");
+                assertNotNull(params.get(AuthorizeResponseParam.STATE), "The state is null");
+                assertEquals(params.get(AuthorizeResponseParam.STATE), state);
+            } catch (URISyntaxException e) {
+                e.printStackTrace();
+                fail("Response URI is not well formed");
+            }
+        }
+    }
+
+    @Parameters({"authorizePath", "userId", "userSecret", "redirectUri"})
+    @Test(dependsOnMethods = "dynamicClientRegistration")
+    public void requestAuthorizationCodeIdToken(final String authorizePath, final String userId,
+                                                final String userSecret, final String redirectUri) throws Exception {
+        final String state = UUID.randomUUID().toString();
+        final String nonce = UUID.randomUUID().toString();
+
+        List<ResponseType> responseTypes = new ArrayList<ResponseType>();
+        responseTypes.add(ResponseType.CODE);
+        responseTypes.add(ResponseType.ID_TOKEN);
+        List<String> scopes = Arrays.asList("openid", "profile", "address", "email");
+
+        AuthorizationRequest authorizationRequest = new AuthorizationRequest(responseTypes, clientId1, scopes,
+                redirectUri, nonce);
+        authorizationRequest.setState(state);
+        authorizationRequest.getPrompts().add(Prompt.NONE);
+        authorizationRequest.setAuthUsername(userId);
+        authorizationRequest.setAuthPassword(userSecret);
+
+        Builder request = ResteasyClientBuilder.newClient()
+                .target(url.toString() + authorizePath + "?" + authorizationRequest.getQueryString()).request();
+        request.header("Authorization", "Basic " + authorizationRequest.getEncodedCredentials());
+        request.header("Accept", MediaType.TEXT_PLAIN);
+
+        Response response = request.get();
+        String entity = response.readEntity(String.class);
+
+        showResponse("requestAuthorizationCodeIdToken", response, entity);
+
+        assertEquals(response.getStatus(), 302, "Unexpected response code.");
+        assertNotNull(response.getLocation(), "Unexpected result: " + response.getLocation());
+
+        try {
+            URI uri = new URI(response.getLocation().toString());
+            assertNotNull(uri.getFragment(), "Query string is null");
+
+            Map<String, String> params = QueryStringDecoder.decode(uri.getFragment());
+
+            assertNotNull(params.get(AuthorizeResponseParam.CODE), "The code is null");
+            assertNotNull(params.get(AuthorizeResponseParam.ID_TOKEN), "The id token is null");
+            assertNotNull(params.get(AuthorizeResponseParam.STATE), "The state is null");
+            assertEquals(params.get(AuthorizeResponseParam.STATE), state);
+        } catch (URISyntaxException e) {
+            e.printStackTrace();
+            fail("Response URI is not well formed");
+        }
+    }
+
+    @Parameters({"authorizePath", "userId", "userSecret", "redirectUri"})
+    @Test(dependsOnMethods = "dynamicClientRegistration")
+    public void requestAuthorizationTokenCode(final String authorizePath, final String userId, final String userSecret,
+                                              final String redirectUri) throws Exception {
+        final String state = UUID.randomUUID().toString();
+
+        List<ResponseType> responseTypes = Arrays.asList(ResponseType.TOKEN, ResponseType.CODE);
+        List<String> scopes = Arrays.asList("openid", "profile", "address", "email");
+        String nonce = UUID.randomUUID().toString();
+
+        AuthorizationRequest authorizationRequest = new AuthorizationRequest(responseTypes, clientId1, scopes,
+                redirectUri, nonce);
+        authorizationRequest.setState(state);
+        authorizationRequest.getPrompts().add(Prompt.NONE);
+        authorizationRequest.setAuthUsername(userId);
+        authorizationRequest.setAuthPassword(userSecret);
+
+        Builder request = ResteasyClientBuilder.newClient()
+                .target(url.toString() + authorizePath + "?" + authorizationRequest.getQueryString()).request();
+        request.header("Authorization", "Basic " + authorizationRequest.getEncodedCredentials());
+        request.header("Accept", MediaType.TEXT_PLAIN);
+
+        Response response = request.get();
+        String entity = response.readEntity(String.class);
+
+        showResponse("requestAuthorizationTokenCode", response, entity);
+
+        assertEquals(response.getStatus(), 302, "Unexpected response code.");
+        assertNotNull(response.getLocation(), "Unexpected result: " + response.getLocation());
+
+        if (response.getLocation() != null) {
+            try {
+                URI uri = new URI(response.getLocation().toString());
+                assertNotNull(uri.getFragment(), "Fragment is null");
+
+                Map<String, String> params = QueryStringDecoder.decode(uri.getFragment());
+
+                assertNotNull(params.get(AuthorizeResponseParam.CODE), "The code is null");
+                assertNotNull(params.get(AuthorizeResponseParam.ACCESS_TOKEN), "The access token is null");
+                assertNotNull(params.get(AuthorizeResponseParam.TOKEN_TYPE), "The token type is null");
+                assertNotNull(params.get(AuthorizeResponseParam.STATE), "The state is null");
+                assertEquals(params.get(AuthorizeResponseParam.STATE), state);
+            } catch (URISyntaxException e) {
+                e.printStackTrace();
+                fail("Response URI is not well formed");
+            }
+        }
+    }
+
+    @Parameters({"authorizePath", "userId", "userSecret", "redirectUri"})
+    @Test(dependsOnMethods = "dynamicClientRegistration")
+    public void requestAuthorizationTokenCodeIdToken(final String authorizePath, final String userId,
+                                                     final String userSecret, final String redirectUri) throws Exception {
+        final String state = UUID.randomUUID().toString();
+
+        List<ResponseType> responseTypes = Arrays.asList(ResponseType.TOKEN, ResponseType.CODE, ResponseType.ID_TOKEN);
+        List<String> scopes = Arrays.asList("openid", "profile", "address", "email");
+        String nonce = UUID.randomUUID().toString();
+
+        AuthorizationRequest authorizationRequest = new AuthorizationRequest(responseTypes, clientId1, scopes,
+                redirectUri, nonce);
+        authorizationRequest.setState(state);
+        authorizationRequest.getPrompts().add(Prompt.NONE);
+        authorizationRequest.setAuthUsername(userId);
+        authorizationRequest.setAuthPassword(userSecret);
+
+        Builder request = ResteasyClientBuilder.newClient()
+                .target(url.toString() + authorizePath + "?" + authorizationRequest.getQueryString()).request();
+        request.header("Authorization", "Basic " + authorizationRequest.getEncodedCredentials());
+        request.header("Accept", MediaType.TEXT_PLAIN);
+
+        Response response = request.get();
+        String entity = response.readEntity(String.class);
+
+        showResponse("requestAuthorizationTokenCodeIdToken", response, entity);
+
+        assertEquals(response.getStatus(), 302, "Unexpected response code.");
+        assertNotNull(response.getLocation(), "Unexpected result: " + response.getLocation());
+
+        if (response.getLocation() != null) {
+            try {
+                URI uri = new URI(response.getLocation().toString());
+                assertNotNull(uri.getFragment(), "Fragment is null");
+
+                Map<String, String> params = QueryStringDecoder.decode(uri.getFragment());
+
+                assertNotNull(params.get(AuthorizeResponseParam.CODE), "The code is null");
+                assertNotNull(params.get(AuthorizeResponseParam.ACCESS_TOKEN), "The access token is null");
+                assertNotNull(params.get(AuthorizeResponseParam.TOKEN_TYPE), "The token type is null");
+                assertNotNull(params.get(AuthorizeResponseParam.ID_TOKEN), "The id token is null");
+                assertNotNull(params.get(AuthorizeResponseParam.STATE), "The state is null");
+                assertEquals(params.get(AuthorizeResponseParam.STATE), state);
+            } catch (URISyntaxException e) {
+                e.printStackTrace();
+                fail("Response URI is not well formed");
+            }
+        }
+    }
+
+    @Parameters({"authorizePath", "userId", "userSecret", "redirectUri"})
+    @Test(dependsOnMethods = "dynamicClientRegistration")
+    public void requestAuthorizationIdToken(final String authorizePath, final String userId, final String userSecret,
+                                            final String redirectUri) throws Exception {
+        final String state = UUID.randomUUID().toString();
+
+        List<ResponseType> responseTypes = Arrays.asList(ResponseType.ID_TOKEN);
+        List<String> scopes = Arrays.asList("openid", "profile", "address", "email");
+        String nonce = UUID.randomUUID().toString();
+
+        AuthorizationRequest authorizationRequest = new AuthorizationRequest(responseTypes, clientId1, scopes,
+                redirectUri, nonce);
+        authorizationRequest.setState(state);
+        authorizationRequest.getPrompts().add(Prompt.NONE);
+        authorizationRequest.setAuthUsername(userId);
+        authorizationRequest.setAuthPassword(userSecret);
+
+        Builder request = ResteasyClientBuilder.newClient()
+                .target(url.toString() + authorizePath + "?" + authorizationRequest.getQueryString()).request();
+        request.header("Authorization", "Basic " + authorizationRequest.getEncodedCredentials());
+        request.header("Accept", MediaType.TEXT_PLAIN);
+
+        Response response = request.get();
+        String entity = response.readEntity(String.class);
+
+        showResponse("requestAuthorizationIdToken", response, entity);
+
+        assertEquals(response.getStatus(), 302, "Unexpected response code.");
+        assertNotNull(response.getLocation(), "Unexpected result: " + response.getLocation());
+
+        if (response.getLocation() != null) {
+            try {
+                URI uri = new URI(response.getLocation().toString());
+                assertNotNull(uri.getFragment(), "Fragment is null");
+
+                Map<String, String> params = QueryStringDecoder.decode(uri.getFragment());
+
+                assertNotNull(params.get(AuthorizeResponseParam.ID_TOKEN), "The id token is null");
+                assertNotNull(params.get(AuthorizeResponseParam.STATE), "The state is null");
+                assertEquals(params.get(AuthorizeResponseParam.STATE), state);
+            } catch (URISyntaxException e) {
+                e.printStackTrace();
+                fail("Response URI is not well formed");
+            }
+        }
+    }
+
+    @Parameters({"authorizePath", "userId", "userSecret", "redirectUri"})
+    @Test(dependsOnMethods = "dynamicClientRegistration")
+    public void requestAuthorizationPromptNone(final String authorizePath, final String userId, final String userSecret,
+                                               final String redirectUri) throws Exception {
+        final String state = UUID.randomUUID().toString();
+
+        List<ResponseType> responseTypes = Arrays.asList(ResponseType.CODE);
+        List<String> scopes = Arrays.asList("openid", "profile", "address", "email");
+
+        AuthorizationRequest authorizationRequest = new AuthorizationRequest(responseTypes, clientId1, scopes,
+                redirectUri, null);
+        authorizationRequest.setState(state);
+        authorizationRequest.getPrompts().add(Prompt.NONE);
+        authorizationRequest.setAuthUsername(userId);
+        authorizationRequest.setAuthPassword(userSecret);
+
+        Builder request = ResteasyClientBuilder.newClient()
+                .target(url.toString() + authorizePath + "?" + authorizationRequest.getQueryString()).request();
+        request.header("Authorization", "Basic " + authorizationRequest.getEncodedCredentials());
+
+        Response response = request.get();
+        String entity = response.readEntity(String.class);
+
+        showResponse("requestAuthorizationPromptNone", response, entity);
+
+        assertEquals(response.getStatus(), 302, "Unexpected response code.");
+        assertNotNull(response.getLocation(), "Unexpected result: " + response.getLocation());
+
+        if (response.getLocation() != null) {
+            try {
+                URI uri = new URI(response.getLocation().toString());
+                assertNotNull(uri.getQuery(), "The query string is null");
+
+                Map<String, String> params = QueryStringDecoder.decode(uri.getQuery());
+
+                assertNotNull(params.get(AuthorizeResponseParam.CODE), "The code is null");
+                assertNotNull(params.get(AuthorizeResponseParam.SCOPE), "The scope is null");
+                assertNotNull(params.get(AuthorizeResponseParam.STATE), "The state is null");
+                assertEquals(params.get(AuthorizeResponseParam.STATE), state);
+            } catch (URISyntaxException e) {
+                e.printStackTrace();
+                fail("Response URI is not well formed");
+            } catch (Exception e) {
+                e.printStackTrace();
+                fail(e.getMessage());
+            }
+        }
+    }
+
+    @Parameters({"authorizePath", "redirectUri"})
+    @Test(dependsOnMethods = "dynamicClientRegistration")
+    public void requestAuthorizationPromptNoneFail(final String authorizePath, final String redirectUri)
+            throws Exception {
+        final String state = UUID.randomUUID().toString();
+
+        List<ResponseType> responseTypes = Arrays.asList(ResponseType.CODE);
+        List<String> scopes = Arrays.asList("openid", "profile", "address", "email");
+
+        AuthorizationRequest authorizationRequest = new AuthorizationRequest(responseTypes, clientId1, scopes,
+                redirectUri, null);
+        authorizationRequest.setState(state);
+        authorizationRequest.getPrompts().add(Prompt.NONE);
+
+        Builder request = ResteasyClientBuilder.newClient()
+                .target(url.toString() + authorizePath + "?" + authorizationRequest.getQueryString()).request();
+
+        Response response = request.get();
+        String entity = response.readEntity(String.class);
+
+        showResponse("requestAuthorizationPromptNoneFail", response, entity);
+
+        assertEquals(response.getStatus(), 302, "Unexpected response code.");
+        assertNotNull(response.getLocation(), "Unexpected result: " + response.getLocation());
+
+        if (response.getLocation() != null) {
+            try {
+                URI uri = new URI(response.getLocation().toString());
+                assertNotNull(uri.getQuery(), "Query is null");
+
+                Map<String, String> params = QueryStringDecoder.decode(uri.getQuery());
+
+                assertNotNull(params.get("error"), "The error value is null");
+                assertNotNull(params.get("error_description"), "The errorDescription value is null");
+                assertNotNull(params.get(AuthorizeResponseParam.STATE), "The state is null");
+                assertEquals(params.get(AuthorizeResponseParam.STATE), state);
+            } catch (URISyntaxException e) {
+                e.printStackTrace();
+                fail("Response URI is not well formed");
+            }
+        }
+    }
+
+    @Parameters({"authorizePath", "userId", "userSecret", "redirectUri"})
+    @Test(dependsOnMethods = "dynamicClientRegistration")
+    public void requestAuthorizationPromptLogin(final String authorizePath, final String userId,
+                                                final String userSecret, final String redirectUri) throws Exception {
+        final String state = UUID.randomUUID().toString();
+
+        List<ResponseType> responseTypes = Arrays.asList(ResponseType.CODE);
+        List<String> scopes = Arrays.asList("openid", "profile", "address", "email");
+
+        AuthorizationRequest authorizationRequest = new AuthorizationRequest(responseTypes, clientId1, scopes,
+                redirectUri, null);
+        authorizationRequest.setState(state);
+        authorizationRequest.getPrompts().add(Prompt.LOGIN);
+        authorizationRequest.setAuthUsername(userId);
+        authorizationRequest.setAuthPassword(userSecret);
+
+        Builder request = ResteasyClientBuilder.newClient()
+                .target(url.toString() + authorizePath + "?" + authorizationRequest.getQueryString()).request();
+        request.header("Authorization", "Basic " + authorizationRequest.getEncodedCredentials());
+
+        Response response = request.get();
+        String entity = response.readEntity(String.class);
+
+        showResponse("requestAuthorizationPromptLogin", response, entity);
+
+        assertEquals(response.getStatus(), 302, "Unexpected response code.");
+        assertNotNull(response.getLocation(), "Unexpected result: " + response.getLocation());
+
+        if (response.getLocation() != null) {
+            try {
+                URI uri = new URI(response.getLocation().toString());
+                assertNotNull(uri.getQuery(), "The query string is null");
+                assertEquals(uri.getPath(), url.getPath() + "authorize.htm");
+            } catch (URISyntaxException e) {
+                e.printStackTrace();
+                fail("Response URI is not well formed");
+            } catch (Exception e) {
+                e.printStackTrace();
+                fail(e.getMessage());
+            }
+        }
+    }
+
+    @Parameters({"authorizePath", "userId", "userSecret", "redirectUri"})
+    @Test(dependsOnMethods = "dynamicClientRegistration")
+    public void requestAuthorizationPromptConsent(final String authorizePath, final String userId,
+                                                  final String userSecret, final String redirectUri) throws Exception {
+        final String state = UUID.randomUUID().toString();
+
+        List<ResponseType> responseTypes = Arrays.asList(ResponseType.CODE);
+        List<String> scopes = Arrays.asList("openid", "profile", "address", "email");
+
+        AuthorizationRequest authorizationRequest = new AuthorizationRequest(responseTypes, clientId1, scopes,
+                redirectUri, null);
+        authorizationRequest.setState(state);
+        authorizationRequest.getPrompts().add(Prompt.CONSENT);
+        authorizationRequest.setAuthUsername(userId);
+        authorizationRequest.setAuthPassword(userSecret);
+
+        Builder request = ResteasyClientBuilder.newClient()
+                .target(url.toString() + authorizePath + "?" + authorizationRequest.getQueryString()).request();
+        request.header("Authorization", "Basic " + authorizationRequest.getEncodedCredentials());
+
+        Response response = request.get();
+        String entity = response.readEntity(String.class);
+
+        showResponse("requestAuthorizationPromptConsent", response, entity);
+
+        assertEquals(response.getStatus(), 302, "Unexpected response code.");
+        assertNotNull(response.getLocation(), "Unexpected result: " + response.getLocation());
+
+        if (response.getLocation() != null) {
+            try {
+                URI uri = new URI(response.getLocation().toString());
+                assertNotNull(uri.getQuery(), "The query string is null");
+                assertEquals(uri.getPath(), url.getPath() + "authorize.htm");
+            } catch (URISyntaxException e) {
+                e.printStackTrace();
+                fail("Response URI is not well formed");
+            } catch (Exception e) {
+                e.printStackTrace();
+                fail(e.getMessage());
+            }
+        }
+    }
+
+    @Parameters({"authorizePath", "userId", "userSecret", "redirectUri"})
+    @Test(dependsOnMethods = "dynamicClientRegistration")
+    public void requestAuthorizationPromptLoginConsent(final String authorizePath, final String userId,
+                                                       final String userSecret, final String redirectUri) throws Exception {
+        final String state = UUID.randomUUID().toString();
+
+        List<ResponseType> responseTypes = Arrays.asList(ResponseType.CODE);
+        List<String> scopes = Arrays.asList("openid", "profile", "address", "email");
+
+        AuthorizationRequest authorizationRequest = new AuthorizationRequest(responseTypes, clientId1, scopes,
+                redirectUri, null);
+        authorizationRequest.setState(state);
+        authorizationRequest.getPrompts().add(Prompt.LOGIN);
+        authorizationRequest.getPrompts().add(Prompt.CONSENT);
+        authorizationRequest.setAuthUsername(userId);
+        authorizationRequest.setAuthPassword(userSecret);
+
+        Builder request = ResteasyClientBuilder.newClient()
+                .target(url.toString() + authorizePath + "?" + authorizationRequest.getQueryString()).request();
+        request.header("Authorization", "Basic " + authorizationRequest.getEncodedCredentials());
+
+        Response response = request.get();
+        String entity = response.readEntity(String.class);
+
+        showResponse("requestAuthorizationPromptLoginConsent", response, entity);
+
+        assertEquals(response.getStatus(), 302, "Unexpected response code.");
+        assertNotNull(response.getLocation(), "Unexpected result: " + response.getLocation());
+
+        if (response.getLocation() != null) {
+            try {
+                URI uri = new URI(response.getLocation().toString());
+                assertNotNull(uri.getQuery(), "The query string is null");
+                assertEquals(uri.getPath(), url.getPath() + "authorize.htm");
+            } catch (URISyntaxException e) {
+                e.printStackTrace();
+                fail("Response URI is not well formed");
+            } catch (Exception e) {
+                e.printStackTrace();
+                fail(e.getMessage());
+            }
+        }
+    }
+
+    @Parameters({"authorizePath", "userId", "userSecret", "redirectUri"})
+    @Test(dependsOnMethods = "dynamicClientRegistration")
+    public void requestAuthorizationPromptNoneLoginConsentFail(final String authorizePath, final String userId,
+                                                               final String userSecret, final String redirectUri) throws Exception {
+        final String state = UUID.randomUUID().toString();
+
+        List<ResponseType> responseTypes = Arrays.asList(ResponseType.CODE);
+        List<String> scopes = Arrays.asList("openid", "profile", "address", "email");
+
+        AuthorizationRequest authorizationRequest = new AuthorizationRequest(responseTypes, clientId1, scopes,
+                redirectUri, null);
+        authorizationRequest.setState(state);
+        authorizationRequest.getPrompts().add(Prompt.NONE);
+        authorizationRequest.getPrompts().add(Prompt.LOGIN);
+        authorizationRequest.getPrompts().add(Prompt.CONSENT);
+        authorizationRequest.setAuthUsername(userId);
+        authorizationRequest.setAuthPassword(userSecret);
+
+        Builder request = ResteasyClientBuilder.newClient()
+                .target(url.toString() + authorizePath + "?" + authorizationRequest.getQueryString()).request();
+        request.header("Authorization", "Basic " + authorizationRequest.getEncodedCredentials());
+
+        Response response = request.get();
+        String entity = response.readEntity(String.class);
+
+        showResponse("requestAuthorizationPromptNoneLoginConsentFail", response, entity);
+
+        assertEquals(response.getStatus(), 302, "Unexpected response code.");
+        assertNotNull(response.getLocation(), "Unexpected result: " + response.getLocation());
+
+        if (response.getLocation() != null) {
+            try {
+                URI uri = new URI(response.getLocation().toString());
+                assertNotNull(uri.getQuery(), "Query is null");
+
+                Map<String, String> params = QueryStringDecoder.decode(uri.getQuery());
+
+                assertNotNull(params.get("error"), "The error value is null");
+                assertNotNull(params.get("error_description"), "The errorDescription value is null");
+                assertNotNull(params.get(AuthorizeResponseParam.STATE), "The state is null");
+                assertEquals(params.get(AuthorizeResponseParam.STATE), state);
+            } catch (URISyntaxException e) {
+                e.printStackTrace();
+                fail("Response URI is not well formed");
+            }
+        }
+    }
+
+    @Parameters({"registerPath", "redirectUri"})
+    @Test
+    public void requestAuthorizationCodeWithoutRedirectUriStep1(final String registerPath, final String redirectUri)
+            throws Exception {
+        Builder request = ResteasyClientBuilder.newClient().target(url.toString() + registerPath).request();
+
+        String registerRequestContent = null;
+        try {
+            request.header("Content-Type", MediaType.APPLICATION_FORM_URLENCODED);
+
+            RegisterRequest registerRequest = new RegisterRequest(ApplicationType.WEB, "oxAuth test app",
+                    Arrays.asList(redirectUri));
+            registerRequest.addCustomAttribute("oxAuthTrustedClient", "true");
+
+            registerRequestContent = ServerUtil.toPrettyJson(registerRequest.getJSONParameters());
+        } catch (JSONException e) {
+            e.printStackTrace();
+            fail(e.getMessage());
+        }
+
+        Response response = request.post(Entity.json(registerRequestContent));
+        String entity = response.readEntity(String.class);
+
+        showResponse("requestAuthorizationCodeWithoutRedirectUriStep1", response, entity);
+
+        ResponseAsserter responseAsserter = new ResponseAsserter(response.getStatus(), entity);
+        responseAsserter.assertRegisterResponse();
+        clientId2 = responseAsserter.getJson().getJson().getString(RegisterResponseParam.CLIENT_ID.toString());
+    }
+
+    @Parameters({"authorizePath", "userId", "userSecret"})
+    @Test(dependsOnMethods = "requestAuthorizationCodeWithoutRedirectUriStep1")
+    public void requestAuthorizationCodeWithoutRedirectUriStep2(final String authorizePath, final String userId,
+                                                                final String userSecret) throws Exception {
+        final String state = UUID.randomUUID().toString();
+
+        List<ResponseType> responseTypes = Arrays.asList(ResponseType.CODE);
+        List<String> scopes = Arrays.asList("openid", "profile", "address", "email");
+
+        AuthorizationRequest authorizationRequest = new AuthorizationRequest(responseTypes, clientId2, scopes, null,
+                null);
+        authorizationRequest.setState(state);
+        authorizationRequest.getPrompts().add(Prompt.NONE);
+        authorizationRequest.setAuthUsername(userId);
+        authorizationRequest.setAuthPassword(userSecret);
+
+        Builder request = ResteasyClientBuilder.newClient()
+                .target(url.toString() + authorizePath + "?" + authorizationRequest.getQueryString()).request();
+        request.header("Authorization", "Basic " + authorizationRequest.getEncodedCredentials());
+        request.header("Accept", MediaType.TEXT_PLAIN);
+
+        Response response = request.get();
+
+        String entity = response.readEntity(String.class);
+
+        showResponse("requestAuthorizationCodeWithoutRedirectUriStep2", response, entity);
+
+        assertEquals(response.getStatus(), 302, "Unexpected response code.");
+        assertNotNull(response.getLocation(), "Unexpected result: " + response.getLocation());
+
+        try {
+            URI uri = new URI(response.getLocation().toString());
+            assertNotNull(uri.getQuery(), "Query string is null");
+
+            Map<String, String> params = QueryStringDecoder.decode(uri.getQuery());
+
+            assertNotNull(params.get(AuthorizeResponseParam.CODE), "The code is null");
+            assertNotNull(params.get(AuthorizeResponseParam.SCOPE), "The scope is null");
+            assertNotNull(params.get(AuthorizeResponseParam.STATE), "The state is null");
+            assertEquals(params.get(AuthorizeResponseParam.STATE), state);
+        } catch (URISyntaxException e) {
+            e.printStackTrace();
+            fail("Response URI is not well formed");
+        }
+    }
+
+    @Parameters({"authorizePath", "userId", "userSecret"})
+    @Test(dependsOnMethods = "dynamicClientRegistration")
+    public void requestAuthorizationCodeWithoutRedirectUriFail(final String authorizePath, final String userId,
+                                                               final String userSecret) throws Exception {
+        final String state = UUID.randomUUID().toString();
+
+        List<ResponseType> responseTypes = Arrays.asList(ResponseType.CODE);
+        List<String> scopes = Arrays.asList("openid", "profile", "address", "email");
+
+        AuthorizationRequest authorizationRequest = new AuthorizationRequest(responseTypes, clientId1, scopes, null,
+                null);
+        authorizationRequest.setState(state);
+        authorizationRequest.getPrompts().add(Prompt.NONE);
+        authorizationRequest.setAuthUsername(userId);
+        authorizationRequest.setAuthPassword(userSecret);
+
+        Builder request = ResteasyClientBuilder.newClient()
+                .target(url.toString() + authorizePath + "?" + authorizationRequest.getQueryString()).request();
+        request.header("Authorization", "Basic " + authorizationRequest.getEncodedCredentials());
+        request.header("Accept", MediaType.TEXT_PLAIN);
+
+        Response response = request.get();
+        String entity = response.readEntity(String.class);
+
+        showResponse("requestAuthorizationCodeWithoutRedirectUriFailStep", response, entity);
+
+        assertEquals(response.getStatus(), 400, "Unexpected response code.");
+        assertNotNull(entity, "Unexpected result: " + entity);
+        try {
+            JSONObject jsonObj = new JSONObject(entity);
+            assertTrue(jsonObj.has("error"), "The error type is null");
+            assertTrue(jsonObj.has("error_description"), "The error description is null");
+            assertEquals(jsonObj.get(AuthorizeResponseParam.STATE), state);
+        } catch (JSONException e) {
+            e.printStackTrace();
+            fail(e.getMessage() + "\nResponse was: " + entity);
+        }
+    }
+
+    @Parameters({"authorizePath", "userId", "userSecret", "redirectUri"})
+    @Test(dependsOnMethods = "dynamicClientRegistration")
+    public void requestAuthorizationAccessTokenStep1(final String authorizePath, final String userId,
+                                                     final String userSecret, final String redirectUri) throws Exception {
+        final String state = UUID.randomUUID().toString();
+
+        List<ResponseType> responseTypes = Arrays.asList(ResponseType.TOKEN, ResponseType.ID_TOKEN);
+        List<String> scopes = Arrays.asList("openid", "profile", "address", "email");
+        String nonce = UUID.randomUUID().toString();
+
+        AuthorizationRequest authorizationRequest = new AuthorizationRequest(responseTypes, clientId1, scopes,
+                redirectUri, nonce);
+        authorizationRequest.setState(state);
+        authorizationRequest.getPrompts().add(Prompt.NONE);
+        authorizationRequest.setAuthUsername(userId);
+        authorizationRequest.setAuthPassword(userSecret);
+
+        Builder request = ResteasyClientBuilder.newClient()
+                .target(url.toString() + authorizePath + "?" + authorizationRequest.getQueryString()).request();
+        request.header("Authorization", "Basic " + authorizationRequest.getEncodedCredentials());
+        request.header("Accept", MediaType.TEXT_PLAIN);
+
+        Response response = request.get();
+        String entity = response.readEntity(String.class);
+
+        showResponse("requestAuthorizationAccessTokenStep1", response, entity);
+
+        assertEquals(response.getStatus(), 302, "Unexpected response code.");
+        assertNotNull(response.getLocation(), "Unexpected result: " + response.getLocation());
+
+        if (response.getLocation() != null) {
+            try {
+                URI uri = new URI(response.getLocation().toString());
+                assertNotNull(uri.getFragment(), "Fragment is null");
+
+                Map<String, String> params = QueryStringDecoder.decode(uri.getFragment());
+
+                assertNotNull(params.get(AuthorizeResponseParam.ACCESS_TOKEN), "The access token is null");
+                assertNotNull(params.get(AuthorizeResponseParam.STATE), "The state is null");
+                assertNotNull(params.get(AuthorizeResponseParam.TOKEN_TYPE), "The token type is null");
+                assertNotNull(params.get(AuthorizeResponseParam.EXPIRES_IN), "The expires in value is null");
+                assertNotNull(params.get(AuthorizeResponseParam.SCOPE), "The scope must be null");
+                assertNull(params.get("refresh_token"), "The refresh_token must be null");
+                assertEquals(params.get(AuthorizeResponseParam.STATE), state);
+
+                accessToken2 = params.get("access_token");
+            } catch (URISyntaxException e) {
+                e.printStackTrace();
+                fail("Response URI is not well formed");
+            }
+        }
+    }
+
+    @Parameters({"authorizePath", "redirectUri"})
+    @Test(dependsOnMethods = "requestAuthorizationAccessTokenStep1", enabled = false)
+    public void requestAuthorizationAccessTokenStep2(final String authorizePath, final String redirectUri)
+            throws Exception {
+        final String state = UUID.randomUUID().toString();
+
+        List<ResponseType> responseTypes = Arrays.asList(ResponseType.CODE);
+        List<String> scopes = Arrays.asList("openid", "profile", "address", "email");
+
+        AuthorizationRequest authorizationRequest = new AuthorizationRequest(responseTypes, clientId1, scopes,
+                redirectUri, null);
+        authorizationRequest.setState(state);
+        authorizationRequest.getPrompts().add(Prompt.NONE);
+        authorizationRequest.setAccessToken(accessToken2);
+
+        Builder request = ResteasyClientBuilder.newClient()
+                .target(url.toString() + authorizePath + "?" + authorizationRequest.getQueryString()).request();
+        request.header("Accept", MediaType.TEXT_PLAIN);
+
+        Response response = request.get();
+        String entity = response.readEntity(String.class);
+
+        showResponse("requestAuthorizationAccessTokenStep2", response, entity);
+
+        assertEquals(response.getStatus(), 302, "Unexpected response code.");
+        assertNotNull(response.getLocation(), "Unexpected result: " + response.getLocation());
+
+        if (response.getLocation() != null) {
+            try {
+                URI uri = new URI(response.getLocation().toString());
+                assertNotNull(uri.getQuery(), "The query string is null");
+
+                Map<String, String> params = QueryStringDecoder.decode(uri.getQuery());
+
+                assertNotNull(params.get(AuthorizeResponseParam.CODE), "The code is null");
+                assertNotNull(params.get(AuthorizeResponseParam.SCOPE), "The scope is null");
+                assertNotNull(params.get(AuthorizeResponseParam.STATE), "The state is null");
+                assertEquals(params.get(AuthorizeResponseParam.STATE), state);
+            } catch (URISyntaxException e) {
+                e.printStackTrace();
+                fail("Response URI is not well formed");
+            } catch (Exception e) {
+                e.printStackTrace();
+                fail(e.getMessage());
+            }
+        }
+    }
+
+    @Parameters({"authorizePath", "redirectUri"})
+    @Test(dependsOnMethods = "requestAuthorizationAccessTokenStep1", enabled = false)
+    public void requestAuthorizationAccessTokenFail(final String authorizePath, final String redirectUri)
+            throws Exception {
+        final String state = UUID.randomUUID().toString();
+
+        List<ResponseType> responseTypes = Arrays.asList(ResponseType.CODE);
+        List<String> scopes = Arrays.asList("openid", "profile", "address", "email");
+
+        AuthorizationRequest authorizationRequest = new AuthorizationRequest(responseTypes, clientId1, scopes,
+                redirectUri, null);
+        authorizationRequest.setState(state);
+        authorizationRequest.getPrompts().add(Prompt.NONE);
+        authorizationRequest.setAccessToken("INVALID_ACCESS_TOKEN");
+
+        Builder request = ResteasyClientBuilder.newClient()
+                .target(url.toString() + authorizePath + "?" + authorizationRequest.getQueryString()).request();
+        request.header("Accept", MediaType.TEXT_PLAIN);
+
+        Response response = request.get();
+        String entity = response.readEntity(String.class);
+
+        showResponse("requestAuthorizationAccessTokenFail", response, entity);
+
+        assertEquals(response.getStatus(), 302, "Unexpected response code.");
+        assertNotNull(response.getLocation(), "Unexpected result: " + response.getLocation());
+
+        if (response.getLocation() != null) {
+            try {
+                URI uri = new URI(response.getLocation().toString());
+                assertNotNull(uri.getQuery(), "The query string is null");
+
+                Map<String, String> params = QueryStringDecoder.decode(uri.getQuery());
+
+                assertNotNull(params.get("error"), "The error value is null");
+                assertNotNull(params.get("error_description"), "The errorDescription value is null");
+                assertNotNull(params.get(AuthorizeResponseParam.STATE), "The state is null");
+                assertEquals(params.get(AuthorizeResponseParam.STATE), state);
+            } catch (URISyntaxException e) {
+                e.printStackTrace();
+                fail("Response URI is not well formed");
+            }
+        }
+    }
+
+}
diff --git a/oxAuth/Server/src/test/java/org/gluu/oxauth/ws/rs/AuthorizeWithResponseModeEmbeddedTest.java b/oxAuth/Server/src/test/java/org/gluu/oxauth/ws/rs/AuthorizeWithResponseModeEmbeddedTest.java
new file mode 100644
index 00000000..c48195ad
--- /dev/null
+++ b/oxAuth/Server/src/test/java/org/gluu/oxauth/ws/rs/AuthorizeWithResponseModeEmbeddedTest.java
@@ -0,0 +1,297 @@
+/*
+ * oxAuth is available under the MIT License (2008). See http://opensource.org/licenses/MIT for full text.
+ *
+ * Copyright (c) 2014, Gluu
+ */
+
+package org.gluu.oxauth.ws.rs;
+
+import static org.testng.Assert.assertEquals;
+import static org.testng.Assert.assertNotNull;
+import static org.testng.Assert.assertNull;
+import static org.testng.Assert.fail;
+
+import java.net.URI;
+import java.net.URISyntaxException;
+import java.util.ArrayList;
+import java.util.Arrays;
+import java.util.List;
+import java.util.Map;
+import java.util.UUID;
+
+import javax.ws.rs.client.Entity;
+import javax.ws.rs.client.Invocation.Builder;
+import javax.ws.rs.core.MediaType;
+import javax.ws.rs.core.Response;
+
+import org.json.JSONException;
+import org.gluu.oxauth.BaseTest;
+import org.gluu.oxauth.client.AuthorizationRequest;
+import org.gluu.oxauth.client.QueryStringDecoder;
+import org.gluu.oxauth.client.RegisterRequest;
+import org.gluu.oxauth.client.RegisterResponse;
+import org.gluu.oxauth.model.authorize.AuthorizeResponseParam;
+import org.gluu.oxauth.model.common.Prompt;
+import org.gluu.oxauth.model.common.ResponseMode;
+import org.gluu.oxauth.model.common.ResponseType;
+import org.gluu.oxauth.model.register.ApplicationType;
+import org.gluu.oxauth.model.util.StringUtils;
+import org.gluu.oxauth.ws.rs.ClientTestUtil;
+import org.gluu.oxauth.util.ServerUtil;
+import org.jboss.arquillian.test.api.ArquillianResource;
+import org.jboss.resteasy.client.jaxrs.ResteasyClientBuilder;
+import org.testng.annotations.Parameters;
+import org.testng.annotations.Test;
+
+/**
+ * @author Javier Rojas Blum
+ * @version December 12, 2016
+ */
+public class AuthorizeWithResponseModeEmbeddedTest extends BaseTest {
+
+	@ArquillianResource
+	private URI url;
+
+	private static String clientId;
+
+	@Parameters({ "registerPath", "redirectUris" })
+	@Test
+	public void dynamicClientRegistration(final String registerPath, final String redirectUris) throws Exception {
+		Builder request = ResteasyClientBuilder.newClient().target(url.toString() + registerPath).request();
+
+		String registerRequestContent = null;
+		try {
+			List<ResponseType> responseTypes = Arrays.asList(ResponseType.CODE, ResponseType.TOKEN,
+					ResponseType.ID_TOKEN);
+
+			RegisterRequest registerRequest = new RegisterRequest(ApplicationType.WEB, "oxAuth test app",
+					StringUtils.spaceSeparatedToList(redirectUris));
+			registerRequest.setResponseTypes(responseTypes);
+			registerRequest.addCustomAttribute("oxAuthTrustedClient", "true");
+
+			registerRequestContent = ServerUtil.toPrettyJson(registerRequest.getJSONParameters());
+		} catch (JSONException e) {
+			e.printStackTrace();
+			fail(e.getMessage());
+		}
+
+		Response response = request.post(Entity.json(registerRequestContent));
+		String entity = response.readEntity(String.class);
+
+		showResponse("dynamicClientRegistration", response, entity);
+
+		assertEquals(response.getStatus(), 200, "Unexpected response code. " + entity);
+		assertNotNull(entity, "Unexpected result: " + entity);
+		try {
+			final RegisterResponse registerResponse = RegisterResponse.valueOf(entity);
+			ClientTestUtil.assert_(registerResponse);
+
+			clientId = registerResponse.getClientId();
+		} catch (Exception e) {
+			e.printStackTrace();
+			fail(e.getMessage() + "\nResponse was: " + entity);
+		}
+	}
+
+	@Parameters({ "authorizePath", "userId", "userSecret", "redirectUri" })
+	@Test(dependsOnMethods = "dynamicClientRegistration")
+	public void requestAuthorizationCodeWithResponseModeQuery(final String authorizePath, final String userId,
+			final String userSecret, final String redirectUri) throws Exception {
+		final String state = UUID.randomUUID().toString();
+
+		List<ResponseType> responseTypes = Arrays.asList(ResponseType.CODE);
+		List<String> scopes = Arrays.asList("openid", "profile", "address", "email");
+
+		AuthorizationRequest authorizationRequest = new AuthorizationRequest(responseTypes, clientId, scopes,
+				redirectUri, null);
+		authorizationRequest.setState(state);
+		authorizationRequest.getPrompts().add(Prompt.NONE);
+		authorizationRequest.setAuthUsername(userId);
+		authorizationRequest.setAuthPassword(userSecret);
+		authorizationRequest.setResponseMode(ResponseMode.QUERY);
+
+		Builder request = ResteasyClientBuilder.newClient()
+				.target(url.toString() + authorizePath + "?" + authorizationRequest.getQueryString()).request();
+		request.header("Authorization", "Basic " + authorizationRequest.getEncodedCredentials());
+		request.header("Accept", MediaType.TEXT_PLAIN);
+
+		Response response = request.get();
+		String entity = response.readEntity(String.class);
+
+		showResponse("requestAuthorizationCodeWithResponseModeQuery", response, entity);
+
+		assertEquals(response.getStatus(), 302, "Unexpected response code.");
+		assertNotNull(response.getLocation(), "Unexpected result: " + response.getLocation());
+
+		try {
+			URI uri = new URI(response.getLocation().toString());
+			assertNotNull(uri.getQuery(), "Query string is null");
+
+			Map<String, String> params = QueryStringDecoder.decode(uri.getQuery());
+
+			assertNotNull(params.get(AuthorizeResponseParam.CODE), "The code is null");
+			assertNotNull(params.get(AuthorizeResponseParam.SCOPE), "The scope is null");
+			assertNotNull(params.get(AuthorizeResponseParam.STATE), "The state is null");
+			assertEquals(params.get(AuthorizeResponseParam.STATE), state);
+		} catch (URISyntaxException e) {
+			e.printStackTrace();
+			fail("Response URI is not well formed");
+		}
+	}
+
+	@Parameters({ "authorizePath", "userId", "userSecret", "redirectUri" })
+	@Test(dependsOnMethods = "dynamicClientRegistration")
+	public void requestAuthorizationCodeWithResponseModeFragment(final String authorizePath, final String userId,
+			final String userSecret, final String redirectUri) throws Exception {
+
+		final String state = UUID.randomUUID().toString();
+
+		List<ResponseType> responseTypes = new ArrayList<ResponseType>();
+		responseTypes.add(ResponseType.CODE);
+		List<String> scopes = Arrays.asList("openid", "profile", "address", "email");
+
+		AuthorizationRequest authorizationRequest = new AuthorizationRequest(responseTypes, clientId, scopes,
+				redirectUri, null);
+		authorizationRequest.setState(state);
+		authorizationRequest.getPrompts().add(Prompt.NONE);
+		authorizationRequest.setAuthUsername(userId);
+		authorizationRequest.setAuthPassword(userSecret);
+		authorizationRequest.setResponseMode(ResponseMode.FRAGMENT);
+
+		Builder request = ResteasyClientBuilder.newClient()
+				.target(url.toString() + authorizePath + "?" + authorizationRequest.getQueryString()).request();
+		request.header("Authorization", "Basic " + authorizationRequest.getEncodedCredentials());
+		request.header("Accept", MediaType.TEXT_PLAIN);
+
+		Response response = request.get();
+		String entity = response.readEntity(String.class);
+
+		showResponse("requestAuthorizationCodeWithResponseModeFragment", response, entity);
+
+		assertEquals(response.getStatus(), 302, "Unexpected response code.");
+		assertNotNull(response.getLocation(), "Unexpected result: " + response.getLocation());
+
+		try {
+			URI uri = new URI(response.getLocation().toString());
+			assertNotNull(uri.getFragment(), "Fragment is null");
+
+			Map<String, String> params = QueryStringDecoder.decode(uri.getFragment());
+
+			assertNotNull(params.get(AuthorizeResponseParam.CODE), "The code is null");
+			assertNotNull(params.get(AuthorizeResponseParam.SCOPE), "The scope is null");
+			assertNotNull(params.get(AuthorizeResponseParam.STATE), "The state is null");
+
+			assertEquals(params.get(AuthorizeResponseParam.STATE), state);
+		} catch (URISyntaxException e) {
+			e.printStackTrace();
+			fail("Response URI is not well formed");
+		}
+	}
+
+	@Parameters({ "authorizePath", "userId", "userSecret", "redirectUri" })
+	@Test(dependsOnMethods = "dynamicClientRegistration")
+	public void requestAuthorizationTokenWithResponseModeQuery(final String authorizePath, final String userId,
+			final String userSecret, final String redirectUri) throws Exception {
+
+		final String state = UUID.randomUUID().toString();
+
+		List<ResponseType> responseTypes = Arrays.asList(ResponseType.TOKEN, ResponseType.ID_TOKEN);
+		List<String> scopes = Arrays.asList("openid", "profile", "address", "email");
+		String nonce = UUID.randomUUID().toString();
+
+		AuthorizationRequest authorizationRequest = new AuthorizationRequest(responseTypes, clientId, scopes,
+				redirectUri, nonce);
+		authorizationRequest.setState(state);
+		authorizationRequest.getPrompts().add(Prompt.NONE);
+		authorizationRequest.setAuthUsername(userId);
+		authorizationRequest.setAuthPassword(userSecret);
+		authorizationRequest.setResponseMode(ResponseMode.QUERY);
+
+		Builder request = ResteasyClientBuilder.newClient()
+				.target(url.toString() + authorizePath + "?" + authorizationRequest.getQueryString()).request();
+		request.header("Authorization", "Basic " + authorizationRequest.getEncodedCredentials());
+		request.header("Accept", MediaType.TEXT_PLAIN);
+
+		Response response = request.get();
+		String entity = response.readEntity(String.class);
+
+		showResponse("requestAuthorizationTokenWithResponseModeQuery", response, entity);
+
+		assertEquals(response.getStatus(), 302, "Unexpected response code.");
+		assertNotNull(response.getLocation(), "Unexpected result: " + response.getLocation());
+
+		if (response.getLocation() != null) {
+			try {
+				URI uri = new URI(response.getLocation().toString());
+				assertNotNull(uri.getQuery(), "Query is null");
+
+				Map<String, String> params = QueryStringDecoder.decode(uri.getQuery());
+
+				assertNotNull(params.get(AuthorizeResponseParam.ACCESS_TOKEN), "The access token is null");
+				assertNotNull(params.get(AuthorizeResponseParam.STATE), "The state is null");
+				assertNotNull(params.get(AuthorizeResponseParam.TOKEN_TYPE), "The token type is null");
+				assertNotNull(params.get(AuthorizeResponseParam.EXPIRES_IN), "The expires in value is null");
+				assertNotNull(params.get(AuthorizeResponseParam.SCOPE), "The scope must be null");
+				assertNull(params.get("refresh_token"), "The refresh_token must be null");
+				assertEquals(params.get(AuthorizeResponseParam.STATE), state);
+			} catch (URISyntaxException e) {
+				e.printStackTrace();
+				fail("Response URI is not well formed");
+			}
+		}
+	}
+
+	@Parameters({ "authorizePath", "userId", "userSecret", "redirectUri" })
+	@Test(dependsOnMethods = "dynamicClientRegistration")
+	public void requestAuthorizationTokenWithResponseModeFragment(final String authorizePath, final String userId,
+			final String userSecret, final String redirectUri) throws Exception {
+
+		final String state = UUID.randomUUID().toString();
+
+		List<ResponseType> responseTypes = Arrays.asList(ResponseType.TOKEN, ResponseType.ID_TOKEN);
+		List<String> scopes = Arrays.asList("openid", "profile", "address", "email");
+		String nonce = UUID.randomUUID().toString();
+
+		AuthorizationRequest authorizationRequest = new AuthorizationRequest(responseTypes, clientId, scopes,
+				redirectUri, nonce);
+		authorizationRequest.setState(state);
+		authorizationRequest.getPrompts().add(Prompt.NONE);
+		authorizationRequest.setAuthUsername(userId);
+		authorizationRequest.setAuthPassword(userSecret);
+		authorizationRequest.setResponseMode(ResponseMode.FRAGMENT);
+
+		Builder request = ResteasyClientBuilder.newClient()
+				.target(url.toString() + authorizePath + "?" + authorizationRequest.getQueryString()).request();
+		request.header("Authorization", "Basic " + authorizationRequest.getEncodedCredentials());
+		request.header("Accept", MediaType.TEXT_PLAIN);
+
+		Response response = request.get();
+		String entity = response.readEntity(String.class);
+
+		showResponse("requestAuthorizationTokenWithResponseModeFragment", response, entity);
+
+		assertEquals(response.getStatus(), 302, "Unexpected response code.");
+		assertNotNull(response.getLocation(), "Unexpected result: " + response.getLocation());
+
+		if (response.getLocation() != null) {
+			try {
+				URI uri = new URI(response.getLocation().toString());
+				assertNotNull(uri.getFragment(), "Fragment is null");
+
+				Map<String, String> params = QueryStringDecoder.decode(uri.getFragment());
+
+				assertNotNull(params.get(AuthorizeResponseParam.ACCESS_TOKEN), "The access token is null");
+				assertNotNull(params.get(AuthorizeResponseParam.STATE), "The state is null");
+				assertNotNull(params.get(AuthorizeResponseParam.TOKEN_TYPE), "The token type is null");
+				assertNotNull(params.get(AuthorizeResponseParam.EXPIRES_IN), "The expires in value is null");
+				assertNotNull(params.get(AuthorizeResponseParam.SCOPE), "The scope must be null");
+				assertNull(params.get("refresh_token"), "The refresh_token must be null");
+				assertEquals(params.get(AuthorizeResponseParam.STATE), state);
+			} catch (URISyntaxException e) {
+				e.printStackTrace();
+				fail("Response URI is not well formed");
+			}
+		}
+	}
+
+}
\ No newline at end of file
diff --git a/oxAuth/Server/src/test/java/org/gluu/oxauth/ws/rs/ClientAuthenticationFilterEmbeddedTest.java b/oxAuth/Server/src/test/java/org/gluu/oxauth/ws/rs/ClientAuthenticationFilterEmbeddedTest.java
new file mode 100644
index 00000000..e55e0492
--- /dev/null
+++ b/oxAuth/Server/src/test/java/org/gluu/oxauth/ws/rs/ClientAuthenticationFilterEmbeddedTest.java
@@ -0,0 +1,228 @@
+/*
+ * oxAuth is available under the MIT License (2008). See http://opensource.org/licenses/MIT for full text.
+ *
+ * Copyright (c) 2014, Gluu
+ */
+
+package org.gluu.oxauth.ws.rs;
+
+import org.json.JSONException;
+import org.json.JSONObject;
+import org.gluu.oxauth.BaseTest;
+import org.gluu.oxauth.client.*;
+import org.gluu.oxauth.model.authorize.AuthorizeResponseParam;
+import org.gluu.oxauth.model.common.AuthenticationMethod;
+import org.gluu.oxauth.model.common.GrantType;
+import org.gluu.oxauth.model.common.Prompt;
+import org.gluu.oxauth.model.common.ResponseType;
+import org.gluu.oxauth.model.register.ApplicationType;
+import org.gluu.oxauth.model.register.RegisterResponseParam;
+import org.gluu.oxauth.model.util.StringUtils;
+import org.gluu.oxauth.util.ServerUtil;
+import org.jboss.arquillian.test.api.ArquillianResource;
+import org.jboss.resteasy.client.jaxrs.ResteasyClientBuilder;
+import org.testng.annotations.Parameters;
+import org.testng.annotations.Test;
+
+import javax.ws.rs.client.Entity;
+import javax.ws.rs.client.Invocation.Builder;
+import javax.ws.rs.core.MediaType;
+import javax.ws.rs.core.MultivaluedHashMap;
+import javax.ws.rs.core.Response;
+import java.net.URI;
+import java.net.URISyntaxException;
+import java.util.Arrays;
+import java.util.List;
+import java.util.Map;
+import java.util.UUID;
+
+import static org.testng.Assert.*;
+
+/**
+ * Functional tests for the Client Authentication Filter (embedded)
+ *
+ * @author Javier Rojas Blum
+ * @version September 3, 2018
+ */
+public class ClientAuthenticationFilterEmbeddedTest extends BaseTest {
+
+	@ArquillianResource
+	private URI url;
+
+	private static String clientId;
+	private static String authorizationCode1;
+	private static String customAttrValue1;
+
+	@Parameters({"registerPath", "redirectUris"})
+	@Test
+	public void requestClientRegistrationWithCustomAttributes(final String registerPath, final String redirectUris)
+			throws Exception {
+		Builder request = ResteasyClientBuilder.newClient().target(url.toString() + registerPath).request();
+
+		String registerRequestContent = null;
+		try {
+			List<ResponseType> responseTypes = Arrays.asList(ResponseType.CODE, ResponseType.TOKEN,
+					ResponseType.ID_TOKEN);
+
+			customAttrValue1 = UUID.randomUUID().toString();
+			RegisterRequest registerRequest = new RegisterRequest(ApplicationType.WEB, "oxAuth test app",
+					StringUtils.spaceSeparatedToList(redirectUris));
+			registerRequest.setResponseTypes(responseTypes);
+			registerRequest.addCustomAttribute("oxAuthTrustedClient", "true");
+			registerRequest.addCustomAttribute("myCustomAttr1", customAttrValue1);
+
+			List<GrantType> grantTypes = Arrays.asList(
+					GrantType.RESOURCE_OWNER_PASSWORD_CREDENTIALS
+			);
+			registerRequest.setGrantTypes(grantTypes);
+
+			registerRequestContent = ServerUtil.toPrettyJson(registerRequest.getJSONParameters());
+		} catch (JSONException e) {
+			e.printStackTrace();
+			fail(e.getMessage());
+		}
+
+		Response response = request.post(Entity.json(registerRequestContent));
+		String entity = response.readEntity(String.class);
+
+		showResponse("requestClientRegistrationWithCustomAttributes", response, entity);
+
+		ResponseAsserter responseAsserter = ResponseAsserter.of(response.getStatus(), entity);
+		responseAsserter.assertRegisterResponse();
+		clientId = responseAsserter.getJson().getJson().getString(RegisterResponseParam.CLIENT_ID.toString());
+	}
+
+	@Parameters({"authorizePath", "userId", "userSecret", "redirectUri"})
+	@Test(dependsOnMethods = "requestClientRegistrationWithCustomAttributes")
+	public void requestAccessTokenCustomClientAuth1Step1(final String authorizePath, final String userId,
+														 final String userSecret, final String redirectUri) throws Exception {
+		final String state = UUID.randomUUID().toString();
+		final String nonce = UUID.randomUUID().toString();
+
+		List<ResponseType> responseTypes = Arrays.asList(ResponseType.CODE, ResponseType.ID_TOKEN);
+		List<String> scopes = Arrays.asList("openid", "profile", "address", "email");
+
+		AuthorizationRequest authorizationRequest = new AuthorizationRequest(responseTypes, clientId, scopes,
+				redirectUri, nonce);
+		authorizationRequest.setState(state);
+		authorizationRequest.setAuthUsername(userId);
+		authorizationRequest.setAuthPassword(userSecret);
+		authorizationRequest.getPrompts().add(Prompt.NONE);
+
+		Builder request = ResteasyClientBuilder.newClient()
+				.target(url.toString() + authorizePath + "?" + authorizationRequest.getQueryString()).request();
+		request.header("Authorization", "Basic " + authorizationRequest.getEncodedCredentials());
+		request.header("Accept", MediaType.TEXT_PLAIN);
+
+		Response response = request.get();
+		String entity = response.readEntity(String.class);
+
+		showResponse("requestAccessTokenCustomClientAuth1Step1", response, entity);
+
+		assertEquals(response.getStatus(), 302, "Unexpected response code.");
+		assertNotNull(response.getLocation(), "Unexpected result: " + response.getLocation());
+
+		try {
+			URI uri = new URI(response.getLocation().toString());
+			assertNotNull(uri.getFragment(), "Query string is null");
+
+			Map<String, String> params = QueryStringDecoder.decode(uri.getFragment());
+
+			assertNotNull(params.get(AuthorizeResponseParam.CODE), "The code is null");
+			assertNotNull(params.get(AuthorizeResponseParam.ID_TOKEN), "The id token is null");
+			assertNotNull(params.get(AuthorizeResponseParam.STATE), "The state is null");
+			assertEquals(params.get(AuthorizeResponseParam.STATE), state);
+
+			authorizationCode1 = params.get(AuthorizeResponseParam.CODE);
+		} catch (URISyntaxException e) {
+			e.printStackTrace();
+			fail("Response URI is not well formed");
+		} catch (Exception e) {
+			e.printStackTrace();
+			fail(e.getMessage());
+		}
+	}
+
+	@Parameters({"tokenPath", "redirectUri"})
+	@Test(dependsOnMethods = {"requestAccessTokenCustomClientAuth1Step1"})
+	public void requestAccessTokenCustomClientAuth1Step2(final String tokenPath, final String redirectUri)
+			throws Exception {
+		Builder request = ResteasyClientBuilder.newClient().target(url.toString() + tokenPath).request();
+
+		TokenRequest tokenRequest = new TokenRequest(GrantType.AUTHORIZATION_CODE);
+		tokenRequest.setCode(authorizationCode1);
+		tokenRequest.setRedirectUri(redirectUri);
+		tokenRequest.setAuthenticationMethod(AuthenticationMethod.CLIENT_SECRET_POST);
+		tokenRequest.addCustomParameter("myCustomAttr1", customAttrValue1);
+
+		request.header("Content-Type", MediaType.APPLICATION_FORM_URLENCODED);
+
+		Response response = request
+				.post(Entity.form(new MultivaluedHashMap<String, String>(tokenRequest.getParameters())));
+		String entity = response.readEntity(String.class);
+
+		showResponse("requestAccessTokenCustomClientAuth1Step2", response, entity);
+
+		assertEquals(response.getStatus(), 200, "Unexpected response code.");
+		assertTrue(
+				response.getHeaderString("Cache-Control") != null
+						&& response.getHeaderString("Cache-Control").equals("no-store"),
+				"Unexpected result: " + response.getHeaderString("Cache-Control"));
+		assertTrue(response.getHeaderString("Pragma") != null && response.getHeaderString("Pragma").equals("no-cache"),
+				"Unexpected result: " + response.getHeaderString("Pragma"));
+		assertNotNull(entity, "Unexpected result: " + entity);
+		try {
+			JSONObject jsonObj = new JSONObject(entity);
+			assertTrue(jsonObj.has("access_token"), "Unexpected result: access_token not found");
+			assertTrue(jsonObj.has("token_type"), "Unexpected result: token_type not found");
+			assertTrue(jsonObj.has("refresh_token"), "Unexpected result: refresh_token not found");
+			assertTrue(jsonObj.has("id_token"), "Unexpected result: id_token not found");
+		} catch (JSONException e) {
+			e.printStackTrace();
+			fail(e.getMessage() + "\nResponse was: " + entity);
+		} catch (Exception e) {
+			e.printStackTrace();
+			fail(e.getMessage());
+		}
+	}
+
+	@Parameters({"tokenPath", "userId", "userSecret"})
+	@Test(dependsOnMethods = "requestClientRegistrationWithCustomAttributes")
+	public void requestAccessTokenCustomClientAuth2(final String tokenPath, final String userId,
+													final String userSecret) throws Exception {
+		Builder request = ResteasyClientBuilder.newClient().target(url.toString() + tokenPath).request();
+
+		TokenRequest tokenRequest = new TokenRequest(GrantType.RESOURCE_OWNER_PASSWORD_CREDENTIALS);
+		tokenRequest.setUsername(userId);
+		tokenRequest.setPassword(userSecret);
+		tokenRequest.setScope("profile email");
+		tokenRequest.setAuthenticationMethod(AuthenticationMethod.CLIENT_SECRET_POST);
+		tokenRequest.addCustomParameter("myCustomAttr1", customAttrValue1);
+
+		Response response = request
+				.post(Entity.form(new MultivaluedHashMap<String, String>(tokenRequest.getParameters())));
+		String entity = response.readEntity(String.class);
+
+		showResponse("requestAccessTokenCustomClientAuth2", response, entity);
+
+		assertEquals(response.getStatus(), 200, "Unexpected response code.");
+		assertTrue(
+				response.getHeaderString("Cache-Control") != null
+						&& response.getHeaderString("Cache-Control").equals("no-store"),
+				"Unexpected result: " + response.getHeaderString("Cache-Control"));
+		assertTrue(response.getHeaderString("Pragma") != null && response.getHeaderString("Pragma").equals("no-cache"),
+				"Unexpected result: " + response.getHeaderString("Pragma"));
+		assertTrue(!entity.equals(null), "Unexpected result: " + entity);
+		try {
+			JSONObject jsonObj = new JSONObject(entity);
+			assertTrue(jsonObj.has("access_token"), "Unexpected result: access_token not found");
+			assertTrue(jsonObj.has("token_type"), "Unexpected result: token_type not found");
+			assertTrue(jsonObj.has("refresh_token"), "Unexpected result: refresh_token not found");
+			assertTrue(jsonObj.has("scope"), "Unexpected result: scope not found");
+		} catch (JSONException e) {
+			e.printStackTrace();
+			fail(e.getMessage() + "\nResponse was: " + entity);
+		}
+	}
+
+}
\ No newline at end of file
diff --git a/oxAuth/Server/src/test/java/org/gluu/oxauth/ws/rs/ClientInfoRestWebServiceEmbeddedTest.java b/oxAuth/Server/src/test/java/org/gluu/oxauth/ws/rs/ClientInfoRestWebServiceEmbeddedTest.java
new file mode 100644
index 00000000..a3e0d384
--- /dev/null
+++ b/oxAuth/Server/src/test/java/org/gluu/oxauth/ws/rs/ClientInfoRestWebServiceEmbeddedTest.java
@@ -0,0 +1,382 @@
+/*
+ * oxAuth is available under the MIT License (2008). See http://opensource.org/licenses/MIT for full text.
+ *
+ * Copyright (c) 2014, Gluu
+ */
+
+package org.gluu.oxauth.ws.rs;
+
+import org.json.JSONException;
+import org.json.JSONObject;
+import org.gluu.oxauth.BaseTest;
+import org.gluu.oxauth.client.*;
+import org.gluu.oxauth.model.authorize.AuthorizeResponseParam;
+import org.gluu.oxauth.model.common.AuthorizationMethod;
+import org.gluu.oxauth.model.common.GrantType;
+import org.gluu.oxauth.model.common.Prompt;
+import org.gluu.oxauth.model.common.ResponseType;
+import org.gluu.oxauth.model.register.ApplicationType;
+import org.gluu.oxauth.model.util.StringUtils;
+import org.gluu.oxauth.ws.rs.ClientTestUtil;
+import org.gluu.oxauth.util.ServerUtil;
+import org.jboss.arquillian.test.api.ArquillianResource;
+import org.jboss.resteasy.client.jaxrs.ResteasyClientBuilder;
+import org.testng.annotations.Parameters;
+import org.testng.annotations.Test;
+
+import javax.ws.rs.client.Entity;
+import javax.ws.rs.client.Invocation.Builder;
+import javax.ws.rs.core.MediaType;
+import javax.ws.rs.core.MultivaluedHashMap;
+import javax.ws.rs.core.Response;
+import java.net.URI;
+import java.net.URISyntaxException;
+import java.util.Arrays;
+import java.util.List;
+import java.util.Map;
+import java.util.UUID;
+
+import static org.testng.Assert.*;
+
+/**
+ * Functional tests for Client Info Web Services (embedded)
+ *
+ * @author Javier Rojas Blum
+ * @version March 9, 2019
+ */
+public class ClientInfoRestWebServiceEmbeddedTest extends BaseTest {
+
+    @ArquillianResource
+    private URI url;
+
+    private static String clientId;
+    private static String clientSecret;
+    private static String accessToken1;
+    private static String accessToken2;
+    private static String accessToken3;
+
+    @Parameters({"registerPath", "redirectUris"})
+    @Test
+    public void dynamicClientRegistration(final String registerPath, final String redirectUris) throws Exception {
+        Builder request = ResteasyClientBuilder.newClient().target(url.toString() + registerPath).request();
+
+        String registerRequestContent = null;
+        try {
+            List<ResponseType> responseTypes = Arrays.asList(ResponseType.TOKEN);
+
+            RegisterRequest registerRequest = new RegisterRequest(ApplicationType.WEB, "oxAuth test app",
+                    StringUtils.spaceSeparatedToList(redirectUris));
+            registerRequest.setResponseTypes(responseTypes);
+            registerRequest.addCustomAttribute("oxAuthTrustedClient", "true");
+
+            List<GrantType> grantTypes = Arrays.asList(
+                    GrantType.RESOURCE_OWNER_PASSWORD_CREDENTIALS
+            );
+            registerRequest.setGrantTypes(grantTypes);
+
+            registerRequestContent = ServerUtil.toPrettyJson(registerRequest.getJSONParameters());
+        } catch (JSONException e) {
+            e.printStackTrace();
+            fail(e.getMessage());
+        }
+
+        Response response = request.post(Entity.json(registerRequestContent));
+        String entity = response.readEntity(String.class);
+
+        showResponse("dynamicClientRegistration", response, entity);
+
+        assertEquals(response.getStatus(), 200, "Unexpected response code. " + entity);
+        assertNotNull(entity, "Unexpected result: " + entity);
+        try {
+            final RegisterResponse registerResponse = RegisterResponse.valueOf(entity);
+            ClientTestUtil.assert_(registerResponse);
+
+            clientId = registerResponse.getClientId();
+            clientSecret = registerResponse.getClientSecret();
+        } catch (Exception e) {
+            e.printStackTrace();
+            fail(e.getMessage() + "\nResponse was: " + entity);
+        }
+    }
+
+    @Parameters({"authorizePath", "userId", "userSecret", "redirectUri"})
+    @Test(dependsOnMethods = "dynamicClientRegistration")
+    public void requestClientInfoStep1ImplicitFlow(final String authorizePath, final String userId,
+                                                   final String userSecret, final String redirectUri) throws Exception {
+        final String state = UUID.randomUUID().toString();
+
+        List<ResponseType> responseTypes = Arrays.asList(ResponseType.TOKEN);
+        List<String> scopes = Arrays.asList("clientinfo");
+        String nonce = UUID.randomUUID().toString();
+
+        AuthorizationRequest authorizationRequest = new AuthorizationRequest(responseTypes, clientId, scopes,
+                redirectUri, nonce);
+        authorizationRequest.setState(state);
+        authorizationRequest.getPrompts().add(Prompt.NONE);
+        authorizationRequest.setAuthUsername(userId);
+        authorizationRequest.setAuthPassword(userSecret);
+
+        Builder request = ResteasyClientBuilder.newClient()
+                .target(url.toString() + authorizePath + "?" + authorizationRequest.getQueryString()).request();
+        request.header("Authorization", "Basic " + authorizationRequest.getEncodedCredentials());
+        request.header("Accept", MediaType.TEXT_PLAIN);
+
+        Response response = request.get();
+        String entity = response.readEntity(String.class);
+
+        showResponse("requestClientInfo step 1 Implicit Flow", response, entity);
+
+        assertEquals(response.getStatus(), 302, "Unexpected response code.");
+        assertNotNull(response.getLocation(), "Unexpected result: " + response.getLocation());
+
+        if (response.getLocation() != null) {
+            try {
+                URI uri = new URI(response.getLocation().toString());
+                assertNotNull(uri.getFragment(), "Fragment is null");
+
+                Map<String, String> params = QueryStringDecoder.decode(uri.getFragment());
+
+                assertNotNull(params.get(AuthorizeResponseParam.ACCESS_TOKEN), "The access token is null");
+                assertNotNull(params.get(AuthorizeResponseParam.STATE), "The state is null");
+                assertNotNull(params.get(AuthorizeResponseParam.TOKEN_TYPE), "The token type is null");
+                assertNotNull(params.get(AuthorizeResponseParam.EXPIRES_IN), "The expires in value is null");
+                assertNotNull(params.get(AuthorizeResponseParam.SCOPE), "The scope must be null");
+                assertNull(params.get("refresh_token"), "The refresh_token must be null");
+                assertEquals(params.get(AuthorizeResponseParam.STATE), state);
+
+                accessToken1 = params.get(AuthorizeResponseParam.ACCESS_TOKEN);
+            } catch (URISyntaxException e) {
+                e.printStackTrace();
+                fail("Response URI is not well formed");
+            } catch (Exception e) {
+                e.printStackTrace();
+                fail("Unexpected error");
+            }
+        }
+    }
+
+    @Parameters({"clientInfoPath"})
+    @Test(dependsOnMethods = "requestClientInfoStep1ImplicitFlow")
+    public void requestClientInfoStep2PostImplicitFlow(final String clientInfoPath) throws Exception {
+        Builder request = ResteasyClientBuilder.newClient().target(url.toString() + clientInfoPath).request();
+
+        request.header("Authorization", "Bearer " + accessToken1);
+        request.header("Content-Type", MediaType.APPLICATION_FORM_URLENCODED);
+
+        ClientInfoRequest clientInfoRequest = new ClientInfoRequest(null);
+
+        Response response = request
+                .post(Entity.form(new MultivaluedHashMap<String, String>(clientInfoRequest.getParameters())));
+        String entity = response.readEntity(String.class);
+
+        showResponse("requestClientInfo step 2 POST Implicit Flow", response, entity);
+
+        assertEquals(response.getStatus(), 200, "Unexpected response code.");
+        assertTrue(
+                response.getHeaderString("Cache-Control") != null
+                        && response.getHeaderString("Cache-Control").equals("no-store, private"),
+                "Unexpected result: " + response.getHeaderString("Cache-Control"));
+        assertTrue(response.getHeaderString("Pragma") != null && response.getHeaderString("Pragma").equals("no-cache"),
+                "Unexpected result: " + response.getHeaderString("Pragma"));
+        assertNotNull(entity, "Unexpected result: " + entity);
+        try {
+            JSONObject jsonObj = new JSONObject(entity);
+            assertTrue(jsonObj.has("displayName"), "Unexpected result: displayName not found");
+            assertTrue(jsonObj.has("inum"), "Unexpected result: inum not found");
+            assertTrue(jsonObj.has("oxAuthAppType"), "Unexpected result: oxAuthAppType not found");
+            assertTrue(jsonObj.has("oxAuthIdTokenSignedResponseAlg"),
+                    "Unexpected result: oxAuthIdTokenSignedResponseAlg not found");
+            assertTrue(jsonObj.has("oxAuthRedirectURI"), "Unexpected result: oxAuthRedirectURI not found");
+            assertTrue(jsonObj.has("oxAuthScope"), "Unexpected result: oxAuthScope not found");
+        } catch (JSONException e) {
+            e.printStackTrace();
+            fail(e.getMessage() + "\nResponse was: " + entity);
+        } catch (Exception e) {
+            e.printStackTrace();
+            fail(e.getMessage());
+        }
+    }
+
+    @Parameters({"clientInfoPath"})
+    @Test(dependsOnMethods = "requestClientInfoStep1ImplicitFlow")
+    public void requestClientInfoStep2GetImplicitFlow(final String clientInfoPath) throws Exception {
+
+        ClientInfoRequest clientInfoRequest = new ClientInfoRequest(null);
+        Builder request = ResteasyClientBuilder.newClient()
+                .target(url.toString() + clientInfoPath + "?" + clientInfoRequest.getQueryString()).request();
+
+        request.header("Authorization", "Bearer " + accessToken1);
+        request.header("Content-Type", MediaType.APPLICATION_FORM_URLENCODED);
+
+        Response response = request.get();
+        String entity = response.readEntity(String.class);
+
+        showResponse("requestClientInfo step 2 GET Implicit Flow", response, entity);
+
+        assertEquals(response.getStatus(), 200, "Unexpected response code.");
+        assertTrue(
+                response.getHeaderString("Cache-Control") != null
+                        && response.getHeaderString("Cache-Control").equals("no-store, private"),
+                "Unexpected result: " + response.getHeaderString("Cache-Control"));
+        assertTrue(response.getHeaderString("Pragma") != null && response.getHeaderString("Pragma").equals("no-cache"),
+                "Unexpected result: " + response.getHeaderString("Pragma"));
+        assertNotNull(entity, "Unexpected result: " + entity);
+        try {
+            JSONObject jsonObj = new JSONObject(entity);
+            assertTrue(jsonObj.has("displayName"), "Unexpected result: displayName not found");
+            assertTrue(jsonObj.has("inum"), "Unexpected result: inum not found");
+            assertTrue(jsonObj.has("oxAuthAppType"), "Unexpected result: oxAuthAppType not found");
+            assertTrue(jsonObj.has("oxAuthIdTokenSignedResponseAlg"),
+                    "Unexpected result: oxAuthIdTokenSignedResponseAlg not found");
+            assertTrue(jsonObj.has("oxAuthRedirectURI"), "Unexpected result: oxAuthRedirectURI not found");
+            assertTrue(jsonObj.has("oxAuthScope"), "Unexpected result: oxAuthScope not found");
+        } catch (JSONException e) {
+            e.printStackTrace();
+            fail(e.getMessage() + "\nResponse was: " + entity);
+        } catch (Exception e) {
+            e.printStackTrace();
+            fail(e.getMessage());
+        }
+    }
+
+    @Parameters({"tokenPath", "userId", "userSecret"})
+    @Test(dependsOnMethods = "dynamicClientRegistration")
+    public void requestClientInfoStep1PasswordFlow(final String tokenPath, final String userId, final String userSecret)
+            throws Exception {
+        Builder request = ResteasyClientBuilder.newClient().target(url.toString() + tokenPath).request();
+
+        TokenRequest tokenRequest = new TokenRequest(GrantType.RESOURCE_OWNER_PASSWORD_CREDENTIALS);
+        tokenRequest.setUsername(userId);
+        tokenRequest.setPassword(userSecret);
+        tokenRequest.setScope("clientinfo");
+        tokenRequest.setAuthUsername(clientId);
+        tokenRequest.setAuthPassword(clientSecret);
+
+        request.header("Authorization", "Basic " + tokenRequest.getEncodedCredentials());
+
+        Response response = request
+                .post(Entity.form(new MultivaluedHashMap<String, String>(tokenRequest.getParameters())));
+        String entity = response.readEntity(String.class);
+
+        showResponse("requestClientInfoStep1PasswordFlow", response, entity);
+
+        assertEquals(response.getStatus(), 200, "Unexpected response code.");
+        assertTrue(
+                response.getHeaderString("Cache-Control") != null
+                        && response.getHeaderString("Cache-Control").equals("no-store"),
+                "Unexpected result: " + response.getHeaderString("Cache-Control"));
+        assertTrue(response.getHeaderString("Pragma") != null && response.getHeaderString("Pragma").equals("no-cache"),
+                "Unexpected result: " + response.getHeaderString("Pragma"));
+        assertTrue(!entity.equals(null), "Unexpected result: " + entity);
+        try {
+            JSONObject jsonObj = new JSONObject(entity);
+            assertTrue(jsonObj.has("access_token"), "Unexpected result: access_token not found");
+            assertTrue(jsonObj.has("token_type"), "Unexpected result: token_type not found");
+            assertTrue(jsonObj.has("scope"), "Unexpected result: scope not found");
+
+            accessToken3 = jsonObj.getString("access_token");
+        } catch (JSONException e) {
+            e.printStackTrace();
+            fail(e.getMessage() + "\nResponse was: " + entity);
+        }
+    }
+
+    @Parameters({"clientInfoPath"})
+    @Test(dependsOnMethods = "requestClientInfoStep1PasswordFlow")
+    public void requestClientInfoStep2PasswordFlow(final String clientInfoPath) throws Exception {
+        Builder request = ResteasyClientBuilder.newClient().target(url.toString() + clientInfoPath).request();
+
+        request.header("Authorization", "Bearer " + accessToken3);
+        request.header("Content-Type", MediaType.APPLICATION_FORM_URLENCODED);
+
+        ClientInfoRequest clientInfoRequest = new ClientInfoRequest(null);
+
+        Response response = request
+                .post(Entity.form(new MultivaluedHashMap<String, String>(clientInfoRequest.getParameters())));
+        String entity = response.readEntity(String.class);
+
+        showResponse("requestUserInfoStep2PasswordFlow", response, entity);
+
+        assertEquals(response.getStatus(), 200, "Unexpected response code.");
+        assertTrue(
+                response.getHeaderString("Cache-Control") != null
+                        && response.getHeaderString("Cache-Control").equals("no-store, private"),
+                "Unexpected result: " + response.getHeaderString("Cache-Control"));
+        assertTrue(response.getHeaderString("Pragma") != null && response.getHeaderString("Pragma").equals("no-cache"),
+                "Unexpected result: " + response.getHeaderString("Pragma"));
+        assertNotNull(entity, "Unexpected result: " + entity);
+        try {
+            JSONObject jsonObj = new JSONObject(entity);
+            assertTrue(jsonObj.has("displayName"), "Unexpected result: displayName not found");
+            assertTrue(jsonObj.has("inum"), "Unexpected result: inum not found");
+            assertTrue(jsonObj.has("oxAuthAppType"), "Unexpected result: oxAuthAppType not found");
+            assertTrue(jsonObj.has("oxAuthIdTokenSignedResponseAlg"),
+                    "Unexpected result: oxAuthIdTokenSignedResponseAlg not found");
+            assertTrue(jsonObj.has("oxAuthRedirectURI"), "Unexpected result: oxAuthRedirectURI not found");
+            assertTrue(jsonObj.has("oxAuthScope"), "Unexpected result: oxAuthScope not found");
+        } catch (JSONException e) {
+            e.printStackTrace();
+            fail(e.getMessage() + "\nResponse was: " + entity);
+        } catch (Exception e) {
+            e.printStackTrace();
+            fail(e.getMessage());
+        }
+    }
+
+    @Parameters({"clientInfoPath"})
+    @Test
+    public void requestClientInfoInvalidRequest(final String clientInfoPath) throws Exception {
+        Builder request = ResteasyClientBuilder.newClient().target(url.toString() + clientInfoPath).request();
+
+        request.header("Content-Type", MediaType.APPLICATION_FORM_URLENCODED);
+
+        ClientInfoRequest clientInfoRequest = new ClientInfoRequest(null);
+
+        Response response = request
+                .post(Entity.form(new MultivaluedHashMap<String, String>(clientInfoRequest.getParameters())));
+
+        String entity = response.readEntity(String.class);
+
+        showResponse("requestClientInfoInvalidRequest", response, entity);
+
+        assertEquals(response.getStatus(), 400, "Unexpected response code.");
+        assertNotNull(entity, "Unexpected result: " + entity);
+        try {
+            JSONObject jsonObj = new JSONObject(entity);
+            assertTrue(jsonObj.has("error"), "The error type is null");
+            assertTrue(jsonObj.has("error_description"), "The error description is null");
+        } catch (JSONException e) {
+            e.printStackTrace();
+            fail(e.getMessage() + "\nResponse was: " + entity);
+        }
+    }
+
+    @Parameters({"clientInfoPath"})
+    @Test
+    public void requestClientInfoInvalidToken(final String clientInfoPath) throws Exception {
+        Builder request = ResteasyClientBuilder.newClient().target(url.toString() + clientInfoPath).request();
+
+        request.header("Content-Type", MediaType.APPLICATION_FORM_URLENCODED);
+
+        ClientInfoRequest clientInfoRequest = new ClientInfoRequest("INVALID-TOKEN");
+        clientInfoRequest.setAuthorizationMethod(AuthorizationMethod.FORM_ENCODED_BODY_PARAMETER);
+
+        Response response = request
+                .post(Entity.form(new MultivaluedHashMap<String, String>(clientInfoRequest.getParameters())));
+        String entity = response.readEntity(String.class);
+
+        showResponse("requestClientInfoInvalidToken", response, entity);
+
+        assertEquals(response.getStatus(), 400, "Unexpected response code.");
+        assertNotNull(entity, "Unexpected result: " + entity);
+        try {
+            JSONObject jsonObj = new JSONObject(entity);
+            assertTrue(jsonObj.has("error"), "The error type is null");
+            assertTrue(jsonObj.has("error_description"), "The error description is null");
+        } catch (JSONException e) {
+            e.printStackTrace();
+            fail(e.getMessage() + "\nResponse was: " + entity);
+        }
+    }
+
+}
\ No newline at end of file
diff --git a/oxAuth/Server/src/test/java/org/gluu/oxauth/ws/rs/EndSessionBackchannelRestServerTest.java b/oxAuth/Server/src/test/java/org/gluu/oxauth/ws/rs/EndSessionBackchannelRestServerTest.java
new file mode 100644
index 00000000..b47e1fd0
--- /dev/null
+++ b/oxAuth/Server/src/test/java/org/gluu/oxauth/ws/rs/EndSessionBackchannelRestServerTest.java
@@ -0,0 +1,135 @@
+package org.gluu.oxauth.ws.rs;
+
+import com.google.common.collect.Lists;
+import org.gluu.oxauth.BaseTest;
+import org.gluu.oxauth.client.*;
+import org.gluu.oxauth.model.TClientService;
+import org.gluu.oxauth.model.authorize.AuthorizeResponseParam;
+import org.gluu.oxauth.model.common.Prompt;
+import org.gluu.oxauth.model.common.ResponseType;
+import org.gluu.oxauth.model.register.ApplicationType;
+import org.gluu.oxauth.model.util.StringUtils;
+import org.jboss.arquillian.container.test.api.RunAsClient;
+import org.jboss.arquillian.test.api.ArquillianResource;
+import org.jboss.resteasy.client.jaxrs.ResteasyClientBuilder;
+import org.testng.annotations.Parameters;
+import org.testng.annotations.Test;
+
+import javax.ws.rs.client.Invocation;
+import javax.ws.rs.core.MediaType;
+import javax.ws.rs.core.Response;
+import java.net.URI;
+import java.net.URISyntaxException;
+import java.util.Arrays;
+import java.util.List;
+import java.util.Map;
+import java.util.UUID;
+
+import static org.testng.Assert.*;
+
+/**
+ * @author Yuriy Zabrovarnyy
+ */
+@RunAsClient
+public class EndSessionBackchannelRestServerTest extends BaseTest {
+
+    @ArquillianResource
+    private URI url;
+
+    private static RegisterResponse registerResponse;
+    private static String idToken;
+    private static String sid;
+
+    @Parameters({"redirectUris", "postLogoutRedirectUri"})
+    @Test
+    public void requestEndSessionStep1(final String redirectUris, final String postLogoutRedirectUri) throws Exception {
+
+        RegisterRequest registerRequest = new RegisterRequest(ApplicationType.WEB, "oxAuth test app", StringUtils.spaceSeparatedToList(redirectUris));
+        registerRequest.setResponseTypes(Arrays.asList(ResponseType.TOKEN, ResponseType.ID_TOKEN));
+        registerRequest.setPostLogoutRedirectUris(Arrays.asList(postLogoutRedirectUri));
+        registerRequest.setBackchannelLogoutUris(Lists.newArrayList(postLogoutRedirectUri));
+        registerRequest.addCustomAttribute("oxAuthTrustedClient", "true");
+
+        registerResponse = TClientService.register(registerRequest, url);
+    }
+
+    @Parameters({"authorizePath", "userId", "userSecret", "redirectUri"})
+    @Test(dependsOnMethods = "requestEndSessionStep1")
+    public void requestEndSessionStep2(final String authorizePath, final String userId, final String userSecret,
+                                       final String redirectUri) throws Exception {
+
+        final String state = UUID.randomUUID().toString();
+
+        List<ResponseType> responseTypes = Arrays.asList(ResponseType.TOKEN, ResponseType.ID_TOKEN);
+        List<String> scopes = Arrays.asList("openid", "profile", "address", "email");
+        String nonce = UUID.randomUUID().toString();
+
+        AuthorizationRequest authorizationRequest = new AuthorizationRequest(responseTypes, registerResponse.getClientId(), scopes,
+                redirectUri, nonce);
+        authorizationRequest.setState(state);
+        authorizationRequest.getPrompts().add(Prompt.NONE);
+        authorizationRequest.setAuthUsername(userId);
+        authorizationRequest.setAuthPassword(userSecret);
+
+        Invocation.Builder request = ResteasyClientBuilder.newClient()
+                .target(url.toString() + authorizePath + "?" + authorizationRequest.getQueryString()).request();
+        request.header("Authorization", "Basic " + authorizationRequest.getEncodedCredentials());
+        request.header("Accept", MediaType.TEXT_PLAIN);
+
+        Response response = request.get();
+        String entity = response.readEntity(String.class);
+
+        showResponse("requestEndSessionStep2", response, entity);
+
+        assertEquals(response.getStatus(), 302, "Unexpected response code.");
+        assertNotNull(response.getLocation(), "Unexpected result: " + response.getLocation());
+
+        if (response.getLocation() != null) {
+            try {
+                URI uri = new URI(response.getLocation().toString());
+                assertNotNull(uri.getFragment(), "Fragment is null");
+
+                Map<String, String> params = QueryStringDecoder.decode(uri.getFragment());
+
+                assertNotNull(params.get(AuthorizeResponseParam.ACCESS_TOKEN), "The access token is null");
+                assertNotNull(params.get(AuthorizeResponseParam.STATE), "The state is null");
+                assertNotNull(params.get(AuthorizeResponseParam.TOKEN_TYPE), "The token type is null");
+                assertNotNull(params.get(AuthorizeResponseParam.EXPIRES_IN), "The expires in value is null");
+                assertNotNull(params.get(AuthorizeResponseParam.SCOPE), "The scope must be null");
+                assertNull(params.get("refresh_token"), "The refresh_token must be null");
+                assertEquals(params.get(AuthorizeResponseParam.STATE), state);
+
+                idToken = params.get(AuthorizeResponseParam.ID_TOKEN);
+                sid = params.get(AuthorizeResponseParam.SID);
+            } catch (URISyntaxException e) {
+                e.printStackTrace();
+                fail("Response URI is not well formed");
+            } catch (Exception e) {
+                e.printStackTrace();
+                fail(e.getMessage());
+            }
+        }
+    }
+
+    @Parameters({"endSessionPath", "postLogoutRedirectUri"})
+    @Test(dependsOnMethods = "requestEndSessionStep2")
+    public void requestEndSessionStep3(final String endSessionPath, final String postLogoutRedirectUri)
+            throws Exception {
+        String state = UUID.randomUUID().toString();
+
+        EndSessionRequest endSessionRequest = new EndSessionRequest(idToken, postLogoutRedirectUri, state);
+        endSessionRequest.setSid(sid);
+
+        Invocation.Builder request = ResteasyClientBuilder.newClient()
+                .target(url.toString() + endSessionPath + "?" + endSessionRequest.getQueryString()).request();
+        request.header("Content-Type", MediaType.APPLICATION_FORM_URLENCODED);
+
+        Response response = request.get();
+        String entity = response.readEntity(String.class);
+
+        showResponse("requestEndSessionStep3", response, entity);
+
+        assertEquals(response.getStatus(), 302, "Unexpected response code.");
+        assertEquals(response.getLocation(), new URI(postLogoutRedirectUri));
+    }
+}
diff --git a/oxAuth/Server/src/test/java/org/gluu/oxauth/ws/rs/EndSessionRestWebServiceEmbeddedTest.java b/oxAuth/Server/src/test/java/org/gluu/oxauth/ws/rs/EndSessionRestWebServiceEmbeddedTest.java
new file mode 100644
index 00000000..fadd9a1e
--- /dev/null
+++ b/oxAuth/Server/src/test/java/org/gluu/oxauth/ws/rs/EndSessionRestWebServiceEmbeddedTest.java
@@ -0,0 +1,256 @@
+/*
+ * oxAuth is available under the MIT License (2008). See http://opensource.org/licenses/MIT for full text.
+ *
+ * Copyright (c) 2014, Gluu
+ */
+
+package org.gluu.oxauth.ws.rs;
+
+import com.google.common.collect.Lists;
+import org.gluu.oxauth.BaseTest;
+import org.gluu.oxauth.client.*;
+import org.gluu.oxauth.model.authorize.AuthorizeResponseParam;
+import org.gluu.oxauth.model.common.Prompt;
+import org.gluu.oxauth.model.common.ResponseType;
+import org.gluu.oxauth.model.register.ApplicationType;
+import org.gluu.oxauth.model.util.StringUtils;
+import org.gluu.oxauth.util.ServerUtil;
+import org.jboss.arquillian.test.api.ArquillianResource;
+import org.jboss.resteasy.client.jaxrs.ResteasyClientBuilder;
+import org.json.JSONException;
+import org.json.JSONObject;
+import org.testng.annotations.Parameters;
+import org.testng.annotations.Test;
+
+import javax.ws.rs.client.Entity;
+import javax.ws.rs.client.Invocation.Builder;
+import javax.ws.rs.core.MediaType;
+import javax.ws.rs.core.Response;
+import java.net.URI;
+import java.net.URISyntaxException;
+import java.util.Arrays;
+import java.util.List;
+import java.util.Map;
+import java.util.UUID;
+
+import static org.gluu.oxauth.model.register.RegisterResponseParam.CLIENT_ID;
+import static org.testng.Assert.*;
+
+/**
+ * Test cases for the end session web service (embedded)
+ *
+ * @author Javier Rojas Blum
+ * @version August 9, 2017
+ */
+public class EndSessionRestWebServiceEmbeddedTest extends BaseTest {
+
+    @ArquillianResource
+    private URI url;
+
+    private static String clientId;
+    private static String idToken;
+    private static String sid;
+
+    @Parameters({"registerPath", "redirectUris", "postLogoutRedirectUri"})
+    @Test
+    public void requestEndSessionStep1(final String registerPath, final String redirectUris,
+                                       final String postLogoutRedirectUri) throws Exception {
+        Builder request = ResteasyClientBuilder.newClient().target(url.toString() + registerPath).request();
+
+        String registerRequestContent = null;
+        try {
+            RegisterRequest registerRequest = new RegisterRequest(ApplicationType.WEB, "oxAuth test app",
+                    StringUtils.spaceSeparatedToList(redirectUris));
+            registerRequest.setResponseTypes(Arrays.asList(ResponseType.TOKEN, ResponseType.ID_TOKEN));
+            registerRequest.setPostLogoutRedirectUris(Arrays.asList(postLogoutRedirectUri));
+            registerRequest.setFrontChannelLogoutUris(Lists.newArrayList(postLogoutRedirectUri));
+            registerRequest.addCustomAttribute("oxAuthTrustedClient", "true");
+
+            registerRequestContent = ServerUtil.toPrettyJson(registerRequest.getJSONParameters());
+        } catch (JSONException e) {
+            e.printStackTrace();
+            fail(e.getMessage());
+        }
+
+        Response response = request.post(Entity.json(registerRequestContent));
+        String entity = response.readEntity(String.class);
+
+        showResponse("requestEndSessionStep1", response, entity);
+
+        assertEquals(response.getStatus(), 200, "Unexpected response code. " + entity);
+        assertNotNull(entity, "Unexpected result: " + entity);
+        try {
+            final RegisterResponse registerResponse = RegisterResponse.valueOf(entity);
+            ClientTestUtil.assert_(registerResponse);
+
+            JSONObject jsonObj = new JSONObject(entity);
+            assertTrue(jsonObj.has(CLIENT_ID.toString()));
+
+            clientId = jsonObj.getString(CLIENT_ID.toString());
+        } catch (JSONException e) {
+            e.printStackTrace();
+            fail(e.getMessage() + "\nResponse was: " + entity);
+        }
+    }
+
+    @Parameters({"authorizePath", "userId", "userSecret", "redirectUri"})
+    @Test(dependsOnMethods = "requestEndSessionStep1")
+    public void requestEndSessionStep2(final String authorizePath, final String userId, final String userSecret,
+                                       final String redirectUri) throws Exception {
+
+        final String state = UUID.randomUUID().toString();
+
+        List<ResponseType> responseTypes = Arrays.asList(ResponseType.TOKEN, ResponseType.ID_TOKEN);
+        List<String> scopes = Arrays.asList("openid", "profile", "address", "email");
+        String nonce = UUID.randomUUID().toString();
+
+        AuthorizationRequest authorizationRequest = new AuthorizationRequest(responseTypes, clientId, scopes,
+                redirectUri, nonce);
+        authorizationRequest.setState(state);
+        authorizationRequest.getPrompts().add(Prompt.NONE);
+        authorizationRequest.setAuthUsername(userId);
+        authorizationRequest.setAuthPassword(userSecret);
+
+        Builder request = ResteasyClientBuilder.newClient()
+                .target(url.toString() + authorizePath + "?" + authorizationRequest.getQueryString()).request();
+        request.header("Authorization", "Basic " + authorizationRequest.getEncodedCredentials());
+        request.header("Accept", MediaType.TEXT_PLAIN);
+
+        Response response = request.get();
+        String entity = response.readEntity(String.class);
+
+        showResponse("requestEndSessionStep2", response, entity);
+
+        assertEquals(response.getStatus(), 302, "Unexpected response code.");
+        assertNotNull(response.getLocation(), "Unexpected result: " + response.getLocation());
+
+        if (response.getLocation() != null) {
+            try {
+                URI uri = new URI(response.getLocation().toString());
+                assertNotNull(uri.getFragment(), "Fragment is null");
+
+                Map<String, String> params = QueryStringDecoder.decode(uri.getFragment());
+
+                assertNotNull(params.get(AuthorizeResponseParam.ACCESS_TOKEN), "The access token is null");
+                assertNotNull(params.get(AuthorizeResponseParam.STATE), "The state is null");
+                assertNotNull(params.get(AuthorizeResponseParam.TOKEN_TYPE), "The token type is null");
+                assertNotNull(params.get(AuthorizeResponseParam.EXPIRES_IN), "The expires in value is null");
+                assertNotNull(params.get(AuthorizeResponseParam.SCOPE), "The scope must be null");
+                assertNull(params.get("refresh_token"), "The refresh_token must be null");
+                assertEquals(params.get(AuthorizeResponseParam.STATE), state);
+
+                idToken = params.get(AuthorizeResponseParam.ID_TOKEN);
+                sid = params.get(AuthorizeResponseParam.SID);
+            } catch (URISyntaxException e) {
+                e.printStackTrace();
+                fail("Response URI is not well formed");
+            } catch (Exception e) {
+                e.printStackTrace();
+                fail(e.getMessage());
+            }
+        }
+    }
+
+    @Parameters({"endSessionPath", "postLogoutRedirectUri"})
+    @Test(dependsOnMethods = "requestEndSessionStep2")
+    public void requestEndSessionStep3(final String endSessionPath, final String postLogoutRedirectUri)
+            throws Exception {
+        String state = UUID.randomUUID().toString();
+
+        EndSessionRequest endSessionRequest = new EndSessionRequest(idToken, postLogoutRedirectUri, state);
+        endSessionRequest.setSid(sid);
+
+        Builder request = ResteasyClientBuilder.newClient()
+                .target(url.toString() + endSessionPath + "?" + endSessionRequest.getQueryString()).request();
+        request.header("Content-Type", MediaType.APPLICATION_FORM_URLENCODED);
+
+        Response response = request.get();
+        String entity = response.readEntity(String.class);
+
+        showResponse("requestEndSessionStep3", response, entity);
+
+        assertEquals(response.getStatus(), 200, "Unexpected response code.");
+        assertNotNull(entity, "Unexpected html.");
+        assertTrue(entity.contains(postLogoutRedirectUri));
+        assertTrue(entity.contains(postLogoutRedirectUri));
+
+    }
+
+    // private void validateNonHttpBasedLogout(EnhancedMockHttpServletResponse
+    // response) {
+    // if (response.getLocation() != null) {
+    // try {
+    // URI uri = new URI(response.getLocation().toString());
+    // assertNotNull(uri.getQuery(), "The query string is null");
+    //
+    // Map<String, String> params = QueryStringDecoder.decode(uri.getQuery());
+    //
+    // assertNotNull(params.get(EndSessionResponseParam.STATE), "The state is
+    // null");
+    // assertEquals(params.get(EndSessionResponseParam.STATE), endSessionId);
+    // } catch (URISyntaxException e) {
+    // e.printStackTrace();
+    // fail("Response URI is not well formed");
+    // } catch (Exception e) {
+    // e.printStackTrace();
+    // fail(e.getMessage());
+    // }
+    // }
+    // }
+
+    @Parameters({"endSessionPath"})
+    @Test(enabled = true) // switched off test : WebApplicationException seems to not translated correctly into response by container and results in 500 error. See org.gluu.oxauth.session.ws.rs.EndSessionRestWebServiceImpl.endSession()
+    public void requestEndSessionFail1(final String endSessionPath) throws Exception {
+        EndSessionRequest endSessionRequest = new EndSessionRequest(null, null, null);
+
+        Builder request = ResteasyClientBuilder.newClient()
+                .target(url.toString() + endSessionPath + "?" + endSessionRequest.getQueryString()).request();
+        request.header("Content-Type", MediaType.APPLICATION_FORM_URLENCODED);
+
+        Response response = request.get();
+        String entity = response.readEntity(String.class);
+
+        showResponse("requestEndSessionFail1", response, entity);
+
+        assertEquals(response.getStatus(), 400, "Unexpected response code.");
+        assertNotNull(entity, "Unexpected result: " + entity);
+        try {
+            JSONObject jsonObj = new JSONObject(entity);
+            assertTrue(jsonObj.has("error"), "The error type is null");
+            assertTrue(jsonObj.has("error_description"), "The error description is null");
+        } catch (JSONException e) {
+            e.printStackTrace();
+            fail(e.getMessage() + "\nResponse was: " + entity);
+        }
+    }
+
+    @Parameters({"endSessionPath", "postLogoutRedirectUri"})
+    @Test
+    public void requestEndSessionFail2(final String endSessionPath, final String postLogoutRedirectUri) {
+        String endSessionId = UUID.randomUUID().toString();
+        EndSessionRequest endSessionRequest = new EndSessionRequest("INVALID_ACCESS_TOKEN", postLogoutRedirectUri,
+                endSessionId);
+
+        Builder request = ResteasyClientBuilder.newClient()
+                .target(url.toString() + endSessionPath + "?" + endSessionRequest.getQueryString()).request();
+        request.header("Content-Type", MediaType.APPLICATION_FORM_URLENCODED);
+
+        Response response = request.get();
+        String entity = response.readEntity(String.class);
+
+        showResponse("requestEndSessionFail2", response, entity);
+
+        // we can get bad request or redirect to RP according to https://github.com/GluuFederation/oxAuth/issues/575
+        assertTrue(response.getStatus() == 400 || response.getStatus() == 307, "Unexpected response code.");
+        assertNotNull(entity, "Unexpected result: " + entity);
+        try {
+            JSONObject jsonObj = new JSONObject(entity);
+            assertTrue(jsonObj.has("error"), "The error type is null");
+            assertTrue(jsonObj.has("error_description"), "The error description is null");
+        } catch (JSONException e) {
+            e.printStackTrace();
+            fail(e.getMessage() + "\nResponse was: " + entity);
+        }
+    }
+
+}
\ No newline at end of file
diff --git a/oxAuth/Server/src/test/java/org/gluu/oxauth/ws/rs/IntrospectionWebServiceEmbeddedTest.java b/oxAuth/Server/src/test/java/org/gluu/oxauth/ws/rs/IntrospectionWebServiceEmbeddedTest.java
new file mode 100644
index 00000000..bb374041
--- /dev/null
+++ b/oxAuth/Server/src/test/java/org/gluu/oxauth/ws/rs/IntrospectionWebServiceEmbeddedTest.java
@@ -0,0 +1,87 @@
+/*
+ * oxAuth is available under the MIT License (2008). See http://opensource.org/licenses/MIT for full text.
+ *
+ * Copyright (c) 2014, Gluu
+ */
+
+package org.gluu.oxauth.ws.rs;
+
+import static org.testng.Assert.assertEquals;
+import static org.testng.Assert.assertTrue;
+import static org.testng.Assert.fail;
+
+import java.net.URI;
+
+import javax.ws.rs.client.Entity;
+import javax.ws.rs.client.Invocation.Builder;
+import javax.ws.rs.core.Form;
+import javax.ws.rs.core.Response;
+
+import org.gluu.oxauth.BaseTest;
+import org.gluu.oxauth.model.common.IntrospectionResponse;
+import org.gluu.oxauth.model.uma.TUma;
+import org.gluu.oxauth.model.uma.wrapper.Token;
+import org.gluu.oxauth.util.ServerUtil;
+import org.jboss.arquillian.test.api.ArquillianResource;
+import org.jboss.resteasy.client.jaxrs.ResteasyClientBuilder;
+import org.testng.annotations.Parameters;
+import org.testng.annotations.Test;
+import org.gluu.oxauth.model.uma.UmaTestUtil;
+
+/**
+ * @author Yuriy Zabrovarnyy
+ * @version 0.9, 17/09/2013
+ */
+
+public class IntrospectionWebServiceEmbeddedTest extends BaseTest {
+
+	@ArquillianResource
+	private URI url;
+
+	private static Token authorization;
+	private static Token tokenToIntrospect;
+
+	@Test
+	@Parameters({ "authorizePath", "tokenPath", "umaUserId", "umaUserSecret", "umaPatClientId", "umaPatClientSecret",
+			"umaRedirectUri" })
+	public void requestAuthorization(String authorizePath, String tokenPath, String umaUserId, String umaUserSecret,
+			String umaPatClientId, String umaPatClientSecret, String umaRedirectUri) {
+		authorization = TUma.requestPat(url, authorizePath, tokenPath, umaUserId, umaUserSecret, umaPatClientId,
+				umaPatClientSecret, umaRedirectUri);
+		UmaTestUtil.assert_(authorization);
+	}
+
+	@Test(dependsOnMethods = "requestAuthorization")
+	@Parameters({ "authorizePath", "tokenPath", "umaUserId", "umaUserSecret", "umaPatClientId", "umaPatClientSecret",
+			"umaRedirectUri" })
+	public void requestTokenToIntrospect(String authorizePath, String tokenPath, String umaUserId, String umaUserSecret,
+			String umaPatClientId, String umaPatClientSecret, String umaRedirectUri) {
+		tokenToIntrospect = TUma.requestPat(url, authorizePath, tokenPath, umaUserId, umaUserSecret, umaPatClientId,
+				umaPatClientSecret, umaRedirectUri);
+		UmaTestUtil.assert_(tokenToIntrospect);
+	}
+
+	@Test(dependsOnMethods = "requestTokenToIntrospect")
+	@Parameters({ "introspectionPath" })
+	public void introspection(final String introspectionPath) throws Exception {
+		Builder request = ResteasyClientBuilder.newClient().target(url.toString() + introspectionPath).request();
+
+		request.header("Accept", "application/json");
+		request.header("Authorization", "Bearer " + authorization.getAccessToken());
+		Response response = request.post(Entity.form(new Form("token", tokenToIntrospect.getAccessToken())));
+
+		String entity = response.readEntity(String.class);
+		showResponse("introspection", response, entity);
+
+		assertEquals(response.getStatus(), 200);
+		try {
+			final IntrospectionResponse t = ServerUtil.createJsonMapper().readValue(entity,
+					IntrospectionResponse.class);
+			assertTrue(t != null && t.isActive());
+		} catch (Exception e) {
+			e.printStackTrace();
+			fail();
+		}
+	}
+
+}
diff --git a/oxAuth/Server/src/test/java/org/gluu/oxauth/ws/rs/JwkRestWebServiceEmbeddedTest.java b/oxAuth/Server/src/test/java/org/gluu/oxauth/ws/rs/JwkRestWebServiceEmbeddedTest.java
new file mode 100644
index 00000000..1affd1de
--- /dev/null
+++ b/oxAuth/Server/src/test/java/org/gluu/oxauth/ws/rs/JwkRestWebServiceEmbeddedTest.java
@@ -0,0 +1,117 @@
+/*
+ * oxAuth is available under the MIT License (2008). See http://opensource.org/licenses/MIT for full text.
+ *
+ * Copyright (c) 2014, Gluu
+ */
+
+package org.gluu.oxauth.ws.rs;
+
+import static org.gluu.oxauth.model.jwk.JWKParameter.JSON_WEB_KEY_SET;
+import static org.testng.Assert.assertEquals;
+import static org.testng.Assert.assertNotNull;
+import static org.testng.Assert.assertTrue;
+import static org.testng.Assert.fail;
+
+import java.net.URI;
+import java.util.Arrays;
+
+import javax.ws.rs.client.Invocation.Builder;
+import javax.ws.rs.core.MediaType;
+import javax.ws.rs.core.Response;
+
+import org.json.JSONArray;
+import org.json.JSONException;
+import org.json.JSONObject;
+import org.gluu.oxauth.BaseTest;
+import org.gluu.oxauth.model.jwt.JwtClaims;
+import org.gluu.oxauth.model.util.Base64Util;
+import org.jboss.arquillian.test.api.ArquillianResource;
+import org.jboss.resteasy.client.jaxrs.ResteasyClientBuilder;
+import org.python.core.util.StringUtil;
+import org.testng.annotations.Parameters;
+import org.testng.annotations.Test;
+
+/**
+ * Functional tests for JWK Web Services (embedded)
+ *
+ * @author Javier Rojas Blum
+ * @version January 3, 2018
+ */
+public class JwkRestWebServiceEmbeddedTest extends BaseTest {
+
+    @ArquillianResource
+    private URI url;
+
+    @Parameters({"jwksPath"})
+    @Test
+    public void requestJwks(final String jwksPath) throws Exception {
+
+        Builder request = ResteasyClientBuilder.newClient().target(url.toString() + jwksPath).request();
+        request.header("Accept", MediaType.APPLICATION_JSON);
+
+        Response response = request.get();
+        String entity = response.readEntity(String.class);
+
+        showResponse("requestJwks", response, entity);
+
+        assertEquals(response.getStatus(), 200, "Unexpected response code.");
+
+        try {
+            JSONObject jsonObj = new JSONObject(entity);
+            assertTrue(jsonObj.has(JSON_WEB_KEY_SET), "Unexpected result: keys not found");
+            JSONArray keys = jsonObj.getJSONArray(JSON_WEB_KEY_SET);
+            assertNotNull(keys, "Unexpected result: keys is null");
+            assertTrue(keys.length() > 0, "Unexpected result: keys is empty");
+        } catch (JSONException e) {
+            e.printStackTrace();
+            fail(e.getMessage());
+        }
+    }
+
+    @Test
+    public void setClaimTestJsonObj() {
+        try {
+            String stringJson = StringUtil.fromBytes(Base64Util.base64urldecode("eyJzYWx0IjoibWFjbmgiLCJwcm92aWRlciI6ImlkcDEifQ=="));
+            JSONObject jobj = new JSONObject(stringJson);
+
+            JwtClaims claims = new JwtClaims();
+            claims.setClaim("test_claim", jobj);
+            assertEquals(jobj, claims.toJsonObject().get("test_claim"));
+        } catch (Exception ex) {
+            fail(ex.getMessage());
+        }
+    }
+
+    @Test
+    public void setClaimTestInt() {
+        try {
+            JwtClaims claims = new JwtClaims();
+            claims.setClaim("test_claim", 123);
+            assertEquals("{\"test_claim\":123}", claims.toJsonObject().toString());
+        } catch (Exception ex) {
+            fail(ex.getMessage());
+        }
+    }
+
+    @Test
+    public void setClaimTestIntList() {
+        try {
+            JwtClaims claims = new JwtClaims();
+            claims.setClaim("test_claim", Arrays.asList(123, 456, 789));
+            assertEquals("{\"test_claim\":[123,456,789]}", claims.toJsonObject().toString());
+        } catch (Exception ex) {
+            fail(ex.getMessage());
+        }
+    }
+
+    @Test
+    public void setClaimTestStringList() {
+        try {
+            JwtClaims claims = new JwtClaims();
+            claims.setClaim("test_claim", Arrays.asList("qwe", "asd", "zxc"));
+            assertEquals("{\"test_claim\":[\"qwe\",\"asd\",\"zxc\"]}", claims.toJsonObject().toString());
+        } catch (Exception ex) {
+            fail(ex.getMessage());
+        }
+    }
+}
diff --git a/oxAuth/Server/src/test/java/org/gluu/oxauth/ws/rs/OpenIDRequestObjectEmbeddedTest.java b/oxAuth/Server/src/test/java/org/gluu/oxauth/ws/rs/OpenIDRequestObjectEmbeddedTest.java
new file mode 100644
index 00000000..4a65bbf6
--- /dev/null
+++ b/oxAuth/Server/src/test/java/org/gluu/oxauth/ws/rs/OpenIDRequestObjectEmbeddedTest.java
@@ -0,0 +1,1147 @@
+/*
+ * oxAuth is available under the MIT License (2008). See http://opensource.org/licenses/MIT for full text.
+ *
+ * Copyright (c) 2014, Gluu
+ */
+
+package org.gluu.oxauth.ws.rs;
+
+import org.gluu.oxauth.BaseTest;
+import org.gluu.oxauth.client.*;
+import org.gluu.oxauth.client.model.authorize.Claim;
+import org.gluu.oxauth.client.model.authorize.ClaimValue;
+import org.gluu.oxauth.client.model.authorize.JwtAuthorizationRequest;
+import org.gluu.oxauth.model.authorize.AuthorizeResponseParam;
+import org.gluu.oxauth.model.common.AuthorizationMethod;
+import org.gluu.oxauth.model.common.Prompt;
+import org.gluu.oxauth.model.common.ResponseType;
+import org.gluu.oxauth.model.crypto.OxAuthCryptoProvider;
+import org.gluu.oxauth.model.crypto.signature.SignatureAlgorithm;
+import org.gluu.oxauth.model.jwt.JwtClaimName;
+import org.gluu.oxauth.model.register.ApplicationType;
+import org.gluu.oxauth.model.register.RegisterResponseParam;
+import org.gluu.oxauth.model.util.Base64Util;
+import org.gluu.oxauth.model.util.JwtUtil;
+import org.gluu.oxauth.model.util.StringUtils;
+import org.gluu.oxauth.util.ServerUtil;
+import org.gluu.util.StringHelper;
+import org.jboss.arquillian.test.api.ArquillianResource;
+import org.jboss.resteasy.client.jaxrs.ResteasyClientBuilder;
+import org.json.JSONException;
+import org.json.JSONObject;
+import org.testng.annotations.Optional;
+import org.testng.annotations.Parameters;
+import org.testng.annotations.Test;
+
+import javax.ws.rs.client.Entity;
+import javax.ws.rs.client.Invocation.Builder;
+import javax.ws.rs.core.MediaType;
+import javax.ws.rs.core.MultivaluedHashMap;
+import javax.ws.rs.core.Response;
+import java.io.BufferedWriter;
+import java.io.File;
+import java.io.FileWriter;
+import java.net.URI;
+import java.net.URISyntaxException;
+import java.util.Arrays;
+import java.util.List;
+import java.util.Map;
+import java.util.UUID;
+
+import static org.gluu.oxauth.model.register.RegisterResponseParam.*;
+import static org.testng.Assert.*;
+
+/**
+ * Functional tests for OpenID Request Object (embedded)
+ *
+ * @author Javier Rojas Blum
+ * @version December 12, 2016
+ */
+public class OpenIDRequestObjectEmbeddedTest extends BaseTest {
+
+    public static final String ACR_VALUE = "basic";
+    @ArquillianResource
+	private URI url;
+
+	private static String clientId;
+	private static String clientSecret;
+	private static String accessToken1;
+	private static String accessToken2;
+	private static String clientId1;
+	private static String clientSecret1;
+	private static String clientId2;
+	private static String clientSecret2;
+	private static String clientId3;
+
+	@Parameters({ "registerPath", "redirectUris" })
+	@Test
+	public void dynamicClientRegistration(final String registerPath, final String redirectUris) throws Exception {
+		Builder request = ResteasyClientBuilder.newClient().target(url.toString() + registerPath).request();
+
+		String registerRequestContent = null;
+		try {
+			List<ResponseType> responseTypes = Arrays.asList(ResponseType.CODE, ResponseType.TOKEN,
+					ResponseType.ID_TOKEN);
+
+			RegisterRequest registerRequest = new RegisterRequest(ApplicationType.WEB, "oxAuth test app",
+					StringUtils.spaceSeparatedToList(redirectUris));
+			registerRequest.setResponseTypes(responseTypes);
+			registerRequest.addCustomAttribute("oxAuthTrustedClient", "true");
+
+			registerRequestContent = ServerUtil.toPrettyJson(registerRequest.getJSONParameters());
+		} catch (JSONException e) {
+			e.printStackTrace();
+			fail(e.getMessage());
+		}
+
+		Response response = request.post(Entity.json(registerRequestContent));
+		String entity = response.readEntity(String.class);
+
+		showResponse("dynamicClientRegistration", response, entity);
+
+		assertEquals(response.getStatus(), 200, "Unexpected response code. " + entity);
+		assertNotNull(entity, "Unexpected result: " + entity);
+		try {
+			final RegisterResponse registerResponse = RegisterResponse.valueOf(entity);
+			ClientTestUtil.assert_(registerResponse);
+
+			clientId = registerResponse.getClientId();
+			clientSecret = registerResponse.getClientSecret();
+		} catch (Exception e) {
+			e.printStackTrace();
+			fail(e.getMessage() + "\nResponse was: " + entity);
+		}
+	}
+
+	@Parameters({ "registerPath", "redirectUris" })
+	@Test
+	public void requestParameterMethod1Step1(final String registerPath, final String redirectUris) throws Exception {
+		Builder request = ResteasyClientBuilder.newClient().target(url.toString() + registerPath).request();
+
+		String registerRequestContent = null;
+		try {
+			List<ResponseType> responseTypes = Arrays.asList(ResponseType.TOKEN, ResponseType.ID_TOKEN);
+
+			RegisterRequest registerRequest = new RegisterRequest(ApplicationType.WEB, "oxAuth test app",
+					StringUtils.spaceSeparatedToList(redirectUris));
+			registerRequest.setResponseTypes(responseTypes);
+			registerRequest.setRequestObjectSigningAlg(SignatureAlgorithm.HS256);
+			registerRequest.addCustomAttribute("oxAuthTrustedClient", "true");
+
+			registerRequestContent = ServerUtil.toPrettyJson(registerRequest.getJSONParameters());
+		} catch (JSONException e) {
+			e.printStackTrace();
+			fail(e.getMessage());
+		}
+
+		Response response = request.post(Entity.json(registerRequestContent));
+		String entity = response.readEntity(String.class);
+
+		showResponse("requestParameterMethod1Step1", response, entity);
+
+		assertEquals(response.getStatus(), 200, "Unexpected response code. " + entity);
+		assertNotNull(entity, "Unexpected result: " + entity);
+		try {
+			JSONObject jsonObj = new JSONObject(entity);
+			assertTrue(jsonObj.has(RegisterResponseParam.CLIENT_ID.toString()));
+			assertTrue(jsonObj.has(CLIENT_SECRET.toString()));
+			assertTrue(jsonObj.has(REGISTRATION_ACCESS_TOKEN.toString()));
+			assertTrue(jsonObj.has(REGISTRATION_CLIENT_URI.toString()));
+			assertTrue(jsonObj.has(CLIENT_ID_ISSUED_AT.toString()));
+			assertTrue(jsonObj.has(CLIENT_SECRET_EXPIRES_AT.toString()));
+
+			clientId1 = jsonObj.getString(RegisterResponseParam.CLIENT_ID.toString());
+			clientSecret1 = jsonObj.getString(CLIENT_SECRET.toString());
+		} catch (JSONException e) {
+			e.printStackTrace();
+			fail(e.getMessage() + "\nResponse was: " + entity);
+		}
+	}
+
+	@Parameters({ "authorizePath", "userId", "userSecret", "redirectUri" })
+	@Test(dependsOnMethods = "requestParameterMethod1Step1")
+	public void requestParameterMethod1Step2(final String authorizePath, final String userId, final String userSecret,
+			final String redirectUri) throws Exception {
+		final String state = UUID.randomUUID().toString();
+
+		Builder request = null;
+		try {
+			List<ResponseType> responseTypes = Arrays.asList(ResponseType.TOKEN, ResponseType.ID_TOKEN);
+			List<String> scopes = Arrays.asList("openid", "profile", "address", "email");
+			String nonce = UUID.randomUUID().toString();
+
+			AuthorizationRequest authorizationRequest = new AuthorizationRequest(responseTypes, clientId1, scopes,
+					redirectUri, nonce);
+			authorizationRequest.setState(state);
+			authorizationRequest.getPrompts().add(Prompt.NONE);
+			authorizationRequest.setAuthUsername(userId);
+			authorizationRequest.setAuthPassword(userSecret);
+
+			OxAuthCryptoProvider cryptoProvider = new OxAuthCryptoProvider();
+
+			JwtAuthorizationRequest jwtAuthorizationRequest = new JwtAuthorizationRequest(authorizationRequest,
+					SignatureAlgorithm.HS256, clientSecret1, cryptoProvider);
+			jwtAuthorizationRequest.addUserInfoClaim(new Claim(JwtClaimName.NAME, ClaimValue.createNull()));
+			jwtAuthorizationRequest
+					.addUserInfoClaim(new Claim(JwtClaimName.NICKNAME, ClaimValue.createEssential(false)));
+			jwtAuthorizationRequest.addUserInfoClaim(new Claim(JwtClaimName.EMAIL, ClaimValue.createNull()));
+			jwtAuthorizationRequest.addUserInfoClaim(new Claim(JwtClaimName.EMAIL_VERIFIED, ClaimValue.createNull()));
+			jwtAuthorizationRequest
+					.addUserInfoClaim(new Claim(JwtClaimName.PICTURE, ClaimValue.createEssential(false)));
+			jwtAuthorizationRequest
+					.addIdTokenClaim(new Claim(JwtClaimName.AUTHENTICATION_TIME, ClaimValue.createNull()));
+			jwtAuthorizationRequest.addIdTokenClaim(new Claim(JwtClaimName.AUTHENTICATION_CONTEXT_CLASS_REFERENCE,
+					ClaimValue.createValueList(new String[] {ACR_VALUE})));
+			String authJwt = jwtAuthorizationRequest.getEncodedJwt();
+			authorizationRequest.setRequest(authJwt);
+			System.out.println("Request JWT: " + authJwt);
+
+			request = ResteasyClientBuilder.newClient()
+					.target(url.toString() + authorizePath + "?" + authorizationRequest.getQueryString()).request();
+			request.header("Authorization", "Basic " + authorizationRequest.getEncodedCredentials());
+			request.header("Accept", MediaType.TEXT_PLAIN);
+		} catch (Exception e) {
+			fail(e.getMessage(), e);
+		}
+
+		Response response = request.get();
+		String entity = response.readEntity(String.class);
+
+		showResponse("requestParameterMethod1Step2", response, entity);
+
+		assertEquals(response.getStatus(), 302, "Unexpected response code.");
+		assertNotNull(response.getLocation(), "Unexpected result: " + response.getLocation());
+
+		try {
+			URI uri = new URI(response.getLocation().toString());
+			assertNotNull(uri.getFragment(), "Query string is null");
+
+			Map<String, String> params = QueryStringDecoder.decode(uri.getFragment());
+
+			assertNotNull(params.get(AuthorizeResponseParam.ACCESS_TOKEN), "The accessToken is null");
+			assertNotNull(params.get(AuthorizeResponseParam.ID_TOKEN), "The idToken is null");
+			assertNotNull(params.get(AuthorizeResponseParam.SCOPE), "The scope is null");
+			assertNotNull(params.get(AuthorizeResponseParam.STATE), "The state is null");
+			assertEquals(params.get(AuthorizeResponseParam.STATE), state);
+
+			accessToken1 = params.get(AuthorizeResponseParam.ACCESS_TOKEN);
+		} catch (URISyntaxException e) {
+			e.printStackTrace();
+			fail("Response URI is not well formed");
+		}
+	}
+
+	@Parameters({ "userInfoPath" })
+	@Test(dependsOnMethods = { "requestParameterMethod1Step2" })
+	public void requestParameterMethodUserInfo(final String userInfoPath) throws Exception {
+		Builder request = ResteasyClientBuilder.newClient().target(url.toString() + userInfoPath).request();
+
+		request.header("Content-Type", MediaType.APPLICATION_FORM_URLENCODED);
+
+		UserInfoRequest userInfoRequest = new UserInfoRequest(accessToken1);
+		userInfoRequest.setAuthorizationMethod(AuthorizationMethod.FORM_ENCODED_BODY_PARAMETER);
+
+		Response response = request
+				.post(Entity.form(new MultivaluedHashMap<String, String>(userInfoRequest.getParameters())));
+		String entity = response.readEntity(String.class);
+
+		showResponse("requestParameterMethodUserInfo", response, entity);
+
+		assertEquals(response.getStatus(), 200, "Unexpected response code.");
+		assertTrue(
+				response.getHeaderString("Cache-Control") != null
+						&& response.getHeaderString("Cache-Control").equals("no-store, private"),
+				"Unexpected result: " + response.getHeaderString("Cache-Control"));
+		assertTrue(response.getHeaderString("Pragma") != null && response.getHeaderString("Pragma").equals("no-cache"),
+				"Unexpected result: " + response.getHeaderString("Pragma"));
+		assertNotNull(entity, "Unexpected result: " + entity);
+		try {
+			JSONObject jsonObj = new JSONObject(entity);
+			assertTrue(jsonObj.has(JwtClaimName.SUBJECT_IDENTIFIER));
+			assertTrue(jsonObj.has(JwtClaimName.NAME));
+			assertTrue(jsonObj.has(JwtClaimName.GIVEN_NAME));
+			assertTrue(jsonObj.has(JwtClaimName.FAMILY_NAME));
+			assertTrue(jsonObj.has(JwtClaimName.EMAIL));
+		} catch (JSONException e) {
+			e.printStackTrace();
+			fail(e.getMessage() + "\nResponse was: " + entity);
+		} catch (Exception e) {
+			e.printStackTrace();
+			fail(e.getMessage());
+		}
+	}
+
+	@Parameters({ "registerPath", "redirectUris" })
+	@Test
+	public void requestParameterMethod2Step1(final String registerPath, final String redirectUris) throws Exception {
+		Builder request = ResteasyClientBuilder.newClient().target(url.toString() + registerPath).request();
+
+		String registerRequestContent = null;
+		try {
+			List<ResponseType> responseTypes = Arrays.asList(ResponseType.TOKEN);
+
+			RegisterRequest registerRequest = new RegisterRequest(ApplicationType.WEB, "oxAuth test app",
+					StringUtils.spaceSeparatedToList(redirectUris));
+			registerRequest.setResponseTypes(responseTypes);
+			registerRequest.setRequestObjectSigningAlg(SignatureAlgorithm.HS256);
+			registerRequest.addCustomAttribute("oxAuthTrustedClient", "true");
+
+			registerRequestContent = ServerUtil.toPrettyJson(registerRequest.getJSONParameters());
+		} catch (JSONException e) {
+			e.printStackTrace();
+			fail(e.getMessage());
+		}
+
+		Response response = request.post(Entity.json(registerRequestContent));
+		String entity = response.readEntity(String.class);
+
+		showResponse("requestParameterMethod2Step1", response, entity);
+
+		assertEquals(response.getStatus(), 200, "Unexpected response code. " + entity);
+		assertNotNull(entity, "Unexpected result: " + entity);
+		try {
+			JSONObject jsonObj = new JSONObject(entity);
+			assertTrue(jsonObj.has(RegisterResponseParam.CLIENT_ID.toString()));
+			assertTrue(jsonObj.has(CLIENT_SECRET.toString()));
+			assertTrue(jsonObj.has(REGISTRATION_ACCESS_TOKEN.toString()));
+			assertTrue(jsonObj.has(REGISTRATION_CLIENT_URI.toString()));
+			assertTrue(jsonObj.has(CLIENT_ID_ISSUED_AT.toString()));
+			assertTrue(jsonObj.has(CLIENT_SECRET_EXPIRES_AT.toString()));
+
+			clientId2 = jsonObj.getString(RegisterResponseParam.CLIENT_ID.toString());
+			clientSecret2 = jsonObj.getString(CLIENT_SECRET.toString());
+		} catch (JSONException e) {
+			e.printStackTrace();
+			fail(e.getMessage() + "\nResponse was: " + entity);
+		}
+	}
+
+	@Parameters({ "authorizePath", "userId", "userSecret", "redirectUri" })
+	@Test(dependsOnMethods = "requestParameterMethod2Step1")
+	public void requestParameterMethod2Step2(final String authorizePath, final String userId, final String userSecret,
+			final String redirectUri) throws Exception {
+		final String state = UUID.randomUUID().toString();
+
+		Builder request = null;
+		try {
+			List<ResponseType> responseTypes = Arrays.asList(ResponseType.TOKEN);
+			List<String> scopes = Arrays.asList("openid", "profile");
+			String nonce = UUID.randomUUID().toString();
+
+			AuthorizationRequest authorizationRequest = new AuthorizationRequest(responseTypes, clientId2, scopes,
+					redirectUri, nonce);
+			authorizationRequest.setState(state);
+			authorizationRequest.getPrompts().add(Prompt.NONE);
+			authorizationRequest.setAuthUsername(userId);
+			authorizationRequest.setAuthPassword(userSecret);
+
+			OxAuthCryptoProvider cryptoProvider = new OxAuthCryptoProvider();
+
+			JwtAuthorizationRequest jwtAuthorizationRequest = new JwtAuthorizationRequest(authorizationRequest,
+					SignatureAlgorithm.HS256, clientSecret2, cryptoProvider);
+			jwtAuthorizationRequest.getIdTokenMember().setMaxAge(86400);
+			jwtAuthorizationRequest.addUserInfoClaim(new Claim("name", ClaimValue.createEssential(true)));
+			String authJwt = jwtAuthorizationRequest.getEncodedJwt();
+			authorizationRequest.setRequest(authJwt);
+			System.out.println("Request JWT: " + authJwt);
+
+			request = ResteasyClientBuilder.newClient()
+					.target(url.toString() + authorizePath + "?" + authorizationRequest.getQueryString()).request();
+			request.header("Authorization", "Basic " + authorizationRequest.getEncodedCredentials());
+			request.header("Accept", MediaType.TEXT_PLAIN);
+		} catch (Exception e) {
+			fail(e.getMessage(), e);
+		}
+
+		Response response = request.get();
+		String entity = response.readEntity(String.class);
+
+		showResponse("requestParameterMethod2Step2", response, entity);
+
+		assertEquals(response.getStatus(), 302, "Unexpected response code.");
+		assertNotNull(response.getLocation(), "Unexpected result: " + response.getLocation());
+
+		try {
+			URI uri = new URI(response.getLocation().toString());
+			assertNotNull(uri.getFragment(), "Query string is null");
+
+			Map<String, String> params = QueryStringDecoder.decode(uri.getFragment());
+
+			assertNotNull(params.get(AuthorizeResponseParam.ACCESS_TOKEN), "The accessToken is null");
+			assertNotNull(params.get(AuthorizeResponseParam.SCOPE), "The scope is null");
+			assertNotNull(params.get(AuthorizeResponseParam.STATE), "The state is null");
+			assertEquals(params.get(AuthorizeResponseParam.STATE), state);
+
+			accessToken2 = params.get(AuthorizeResponseParam.ACCESS_TOKEN);
+		} catch (URISyntaxException e) {
+			e.printStackTrace();
+			fail("Response URI is not well formed");
+		}
+	}
+
+	@Parameters({ "userInfoPath" })
+	@Test(dependsOnMethods = { "requestParameterMethod2Step2" })
+	public void requestParameterMethod2Step3(final String userInfoPath) throws Exception {
+		Builder request = ResteasyClientBuilder.newClient().target(url.toString() + userInfoPath).request();
+		request.header("Content-Type", MediaType.APPLICATION_FORM_URLENCODED);
+
+		UserInfoRequest userInfoRequest = new UserInfoRequest(accessToken2);
+		userInfoRequest.setAuthorizationMethod(AuthorizationMethod.FORM_ENCODED_BODY_PARAMETER);
+
+		Response response = request
+				.post(Entity.form(new MultivaluedHashMap<String, String>(userInfoRequest.getParameters())));
+		String entity = response.readEntity(String.class);
+
+		showResponse("requestParameterMethod2Step3", response, entity);
+
+		assertEquals(response.getStatus(), 200, "Unexpected response code.");
+		assertTrue(
+				response.getHeaderString("Cache-Control") != null
+						&& response.getHeaderString("Cache-Control").equals("no-store, private"),
+				"Unexpected result: " + response.getHeaderString("Cache-Control"));
+		assertTrue(response.getHeaderString("Pragma") != null && response.getHeaderString("Pragma").equals("no-cache"),
+				"Unexpected result: " + response.getHeaderString("Pragma"));
+		assertNotNull(entity, "Unexpected result: " + entity);
+		try {
+			JSONObject jsonObj = new JSONObject(entity);
+			assertTrue(jsonObj.has(JwtClaimName.SUBJECT_IDENTIFIER));
+			assertTrue(jsonObj.has(JwtClaimName.NAME));
+		} catch (JSONException e) {
+			e.printStackTrace();
+			fail(e.getMessage() + "\nResponse was: " + entity);
+		} catch (Exception e) {
+			e.printStackTrace();
+			fail(e.getMessage());
+		}
+	}
+
+	@Parameters({ "authorizePath", "userId", "userSecret", "redirectUri" })
+	@Test(dependsOnMethods = "dynamicClientRegistration")
+	public void requestParameterMethodFail1(final String authorizePath, final String userId, final String userSecret,
+			final String redirectUri) throws Exception {
+		final String state = UUID.randomUUID().toString();
+
+		List<ResponseType> responseTypes = Arrays.asList(ResponseType.TOKEN, ResponseType.ID_TOKEN);
+		List<String> scopes = Arrays.asList("openid", "profile", "address", "email");
+		String nonce = UUID.randomUUID().toString();
+
+		AuthorizationRequest authorizationRequest = new AuthorizationRequest(responseTypes, clientId, scopes,
+				redirectUri, nonce);
+		authorizationRequest.setState(state);
+		authorizationRequest.setRequest("INVALID_REQUEST_OBJECT");
+		authorizationRequest.setAuthUsername(userId);
+		authorizationRequest.setAuthPassword(userSecret);
+
+		Builder request = ResteasyClientBuilder.newClient()
+				.target(url.toString() + authorizePath + "?" + authorizationRequest.getQueryString()).request();
+		request.header("Authorization", "Basic " + authorizationRequest.getEncodedCredentials());
+		request.header("Accept", MediaType.TEXT_PLAIN);
+
+		Response response = request.get();
+		String entity = response.readEntity(String.class);
+
+		showResponse("requestParameterMethodFail1 (Invalid OpenID Request Object)", response, entity);
+
+		assertEquals(response.getStatus(), 302, "Unexpected response code.");
+		assertNotNull(response.getLocation(), "Unexpected result: " + response.getLocation());
+
+		if (response.getLocation() != null) {
+			try {
+				URI uri = new URI(response.getLocation().toString());
+				assertNotNull(uri.getFragment(), "Fragment is null");
+
+				Map<String, String> params = QueryStringDecoder.decode(uri.getFragment());
+
+				assertNotNull(params.get("error"), "The error value is null");
+				assertNotNull(params.get("error_description"), "The errorDescription value is null");
+				assertNotNull(params.get(AuthorizeResponseParam.STATE), "The state is null");
+				assertEquals(params.get(AuthorizeResponseParam.STATE), state);
+			} catch (URISyntaxException e) {
+				e.printStackTrace();
+				fail("Response URI is not well formed");
+			}
+		}
+	}
+
+	@Parameters({ "authorizePath", "userId", "userSecret", "redirectUri" })
+	@Test(dependsOnMethods = "dynamicClientRegistration")
+	public void requestParameterMethodFail2(final String authorizePath, final String userId, final String userSecret,
+			final String redirectUri) throws Exception {
+
+		final String state = UUID.randomUUID().toString();
+
+		Builder request = null;
+		try {
+
+			List<ResponseType> responseTypes = Arrays.asList(ResponseType.TOKEN, ResponseType.ID_TOKEN);
+			List<String> scopes = Arrays.asList("openid", "profile", "address", "email");
+			String nonce = UUID.randomUUID().toString();
+
+			AuthorizationRequest authorizationRequest = new AuthorizationRequest(responseTypes, clientId, scopes,
+					redirectUri, nonce);
+			authorizationRequest.setState(state);
+			authorizationRequest.setAuthUsername(userId);
+			authorizationRequest.setAuthPassword(userSecret);
+
+			OxAuthCryptoProvider cryptoProvider = new OxAuthCryptoProvider();
+
+			JwtAuthorizationRequest jwtAuthorizationRequest = new JwtAuthorizationRequest(authorizationRequest,
+					SignatureAlgorithm.HS256, clientSecret, cryptoProvider);
+			jwtAuthorizationRequest.addUserInfoClaim(new Claim(JwtClaimName.NAME, ClaimValue.createNull()));
+			jwtAuthorizationRequest
+					.addUserInfoClaim(new Claim(JwtClaimName.NICKNAME, ClaimValue.createEssential(false)));
+			jwtAuthorizationRequest.addUserInfoClaim(new Claim(JwtClaimName.EMAIL, ClaimValue.createNull()));
+			jwtAuthorizationRequest.addUserInfoClaim(new Claim(JwtClaimName.EMAIL_VERIFIED, ClaimValue.createNull()));
+			jwtAuthorizationRequest
+					.addUserInfoClaim(new Claim(JwtClaimName.PICTURE, ClaimValue.createEssential(false)));
+			jwtAuthorizationRequest
+					.addIdTokenClaim(new Claim(JwtClaimName.AUTHENTICATION_TIME, ClaimValue.createNull()));
+			jwtAuthorizationRequest.addIdTokenClaim(new Claim(JwtClaimName.AUTHENTICATION_CONTEXT_CLASS_REFERENCE,
+					ClaimValue.createValueList(new String[] { ACR_VALUE })));
+			jwtAuthorizationRequest.getIdTokenMember().setMaxAge(86400);
+			String authJwt = jwtAuthorizationRequest.getEncodedJwt();
+			authorizationRequest.setRequest(authJwt + "INVALID_SIGNATURE");
+			System.out.println("Request JWT: " + authJwt);
+
+			request = ResteasyClientBuilder.newClient()
+					.target(url.toString() + authorizePath + "?" + authorizationRequest.getQueryString()).request();
+			request.header("Authorization", "Basic " + authorizationRequest.getEncodedCredentials());
+			request.header("Accept", MediaType.TEXT_PLAIN);
+		} catch (Exception e) {
+			fail(e.getMessage(), e);
+		}
+
+		Response response = request.get();
+		String entity = response.readEntity(String.class);
+
+		showResponse("requestParameterMethodFail2 (Invalid OpenID Request Object, due to invalid signature)", response,
+				entity);
+
+		assertEquals(response.getStatus(), 302, "Unexpected response code.");
+		assertNotNull(response.getLocation(), "Unexpected result: " + response.getLocation());
+
+		if (response.getLocation() != null) {
+			try {
+				URI uri = new URI(response.getLocation().toString());
+				assertNotNull(uri.getFragment(), "Fragment is null");
+
+				Map<String, String> params = QueryStringDecoder.decode(uri.getFragment());
+
+				assertNotNull(params.get("error"), "The error value is null");
+				assertNotNull(params.get("error_description"), "The errorDescription value is null");
+				assertNotNull(params.get(AuthorizeResponseParam.STATE), "The state is null");
+				assertEquals(params.get(AuthorizeResponseParam.STATE), state);
+			} catch (URISyntaxException e) {
+				e.printStackTrace();
+				fail("Response URI is not well formed");
+			}
+		}
+	}
+
+	@Parameters({ "authorizePath", "userId", "userSecret", "redirectUri" })
+	@Test(dependsOnMethods = "dynamicClientRegistration")
+	public void requestParameterMethodFail3(final String authorizePath, final String userId, final String userSecret,
+			final String redirectUri) throws Exception {
+
+		final String state = UUID.randomUUID().toString();
+
+		Builder request = null;
+		try {
+			List<ResponseType> responseTypes = Arrays.asList(ResponseType.TOKEN, ResponseType.ID_TOKEN);
+			List<String> scopes = Arrays.asList("openid", "profile", "address", "email");
+			String nonce = UUID.randomUUID().toString();
+
+			AuthorizationRequest authorizationRequest = new AuthorizationRequest(responseTypes, clientId, scopes,
+					redirectUri, nonce);
+			authorizationRequest.setState(state);
+			authorizationRequest.setAuthUsername(userId);
+			authorizationRequest.setAuthPassword(userSecret);
+
+			OxAuthCryptoProvider cryptoProvider = new OxAuthCryptoProvider();
+
+			JwtAuthorizationRequest jwtAuthorizationRequest = new JwtAuthorizationRequest(authorizationRequest,
+					SignatureAlgorithm.HS256, clientSecret, cryptoProvider);
+			jwtAuthorizationRequest.addUserInfoClaim(new Claim(JwtClaimName.NAME, ClaimValue.createNull()));
+			jwtAuthorizationRequest
+					.addUserInfoClaim(new Claim(JwtClaimName.NICKNAME, ClaimValue.createEssential(false)));
+			jwtAuthorizationRequest.addUserInfoClaim(new Claim(JwtClaimName.EMAIL, ClaimValue.createNull()));
+			jwtAuthorizationRequest.addUserInfoClaim(new Claim(JwtClaimName.EMAIL_VERIFIED, ClaimValue.createNull()));
+			jwtAuthorizationRequest
+					.addUserInfoClaim(new Claim(JwtClaimName.PICTURE, ClaimValue.createEssential(false)));
+			jwtAuthorizationRequest
+					.addIdTokenClaim(new Claim(JwtClaimName.AUTHENTICATION_TIME, ClaimValue.createNull()));
+			jwtAuthorizationRequest.addIdTokenClaim(new Claim(JwtClaimName.AUTHENTICATION_CONTEXT_CLASS_REFERENCE,
+					ClaimValue.createValueList(new String[] { ACR_VALUE })));
+			jwtAuthorizationRequest.getIdTokenMember().setMaxAge(86400);
+			jwtAuthorizationRequest.setClientId("INVALID_CLIENT_ID");
+			String authJwt = jwtAuthorizationRequest.getEncodedJwt();
+			authorizationRequest.setRequest(authJwt);
+			System.out.println("Request JWT: " + authJwt);
+
+			request = ResteasyClientBuilder.newClient()
+					.target(url.toString() + authorizePath + "?" + authorizationRequest.getQueryString()).request();
+
+			request.header("Authorization", "Basic " + authorizationRequest.getEncodedCredentials());
+			request.header("Accept", MediaType.TEXT_PLAIN);
+		} catch (Exception e) {
+			fail(e.getMessage(), e);
+		}
+
+		Response response = request.get();
+		String entity = response.readEntity(String.class);
+
+		showResponse("requestParameterMethodFail3 (Invalid OpenID Request Object)", response, entity);
+
+		assertEquals(response.getStatus(), 302, "Unexpected response code.");
+		assertNotNull(response.getLocation(), "Unexpected result: " + response.getLocation());
+
+		if (response.getLocation() != null) {
+			try {
+				URI uri = new URI(response.getLocation().toString());
+				assertNotNull(uri.getFragment(), "Fragment is null");
+
+				Map<String, String> params = QueryStringDecoder.decode(uri.getFragment());
+
+				assertNotNull(params.get("error"), "The error value is null");
+				assertNotNull(params.get("error_description"), "The errorDescription value is null");
+				assertNotNull(params.get(AuthorizeResponseParam.STATE), "The state is null");
+				assertEquals(params.get(AuthorizeResponseParam.STATE), state);
+			} catch (URISyntaxException e) {
+				e.printStackTrace();
+				fail("Response URI is not well formed");
+			}
+		}
+	}
+
+	@Parameters({ "authorizePath", "userId", "userSecret", "redirectUri" })
+	@Test(dependsOnMethods = "dynamicClientRegistration")
+	public void requestParameterMethodFail4(final String authorizePath, final String userId, final String userSecret,
+			final String redirectUri) throws Exception {
+
+		final String state = UUID.randomUUID().toString();
+
+		Builder request = null;
+		try {
+			List<ResponseType> responseTypes = Arrays.asList(ResponseType.TOKEN);
+			List<String> scopes = Arrays.asList("openid");
+			String nonce = UUID.randomUUID().toString();
+
+			AuthorizationRequest authorizationRequest = new AuthorizationRequest(responseTypes, clientId, scopes,
+					redirectUri, nonce);
+			authorizationRequest.setState(state);
+			authorizationRequest.getPrompts().add(Prompt.NONE);
+			authorizationRequest.setAuthUsername(userId);
+			authorizationRequest.setAuthPassword(userSecret);
+
+			OxAuthCryptoProvider cryptoProvider = new OxAuthCryptoProvider();
+
+			JwtAuthorizationRequest jwtAuthorizationRequest = new JwtAuthorizationRequest(authorizationRequest,
+					SignatureAlgorithm.HS256, clientSecret, cryptoProvider);
+			jwtAuthorizationRequest.addIdTokenClaim(
+					new Claim(JwtClaimName.SUBJECT_IDENTIFIER, ClaimValue.createSingleValue("INVALID_USER_ID")));
+			String authJwt = jwtAuthorizationRequest.getEncodedJwt();
+			authorizationRequest.setRequest(authJwt);
+			System.out.println("Request JWT: " + authJwt);
+
+			request = ResteasyClientBuilder.newClient()
+					.target(url.toString() + authorizePath + "?" + authorizationRequest.getQueryString()).request();
+			request.header("Authorization", "Basic " + authorizationRequest.getEncodedCredentials());
+			request.header("Accept", MediaType.TEXT_PLAIN);
+		} catch (Exception e) {
+			fail(e.getMessage(), e);
+		}
+
+		Response response = request.get();
+		String entity = response.readEntity(String.class);
+
+		showResponse("requestParameterMethodFail4", response, entity);
+
+		assertEquals(response.getStatus(), 302, "Unexpected response code.");
+		assertNotNull(response.getLocation(), "Unexpected result: " + response.getLocation());
+
+		if (response.getLocation() != null) {
+			try {
+				URI uri = new URI(response.getLocation().toString());
+				assertNotNull(uri.getFragment(), "Fragment is null");
+
+				Map<String, String> params = QueryStringDecoder.decode(uri.getFragment());
+
+				assertNotNull(params.get("error"), "The error value is null");
+				assertNotNull(params.get("error_description"), "The errorDescription value is null");
+				assertNotNull(params.get(AuthorizeResponseParam.STATE), "The state is null");
+				assertEquals(params.get(AuthorizeResponseParam.STATE), state);
+			} catch (URISyntaxException e) {
+				e.printStackTrace();
+				fail("Response URI is not well formed");
+			}
+		}
+	}
+
+	@Parameters({ "authorizePath", "userId", "userSecret", "redirectUri" })
+	@Test(dependsOnMethods = "dynamicClientRegistration")
+	public void requestParameterMethodWithMaxAgeRestriction(final String authorizePath, final String userId,
+			final String userSecret, final String redirectUri) throws Exception {
+
+		final String state = UUID.randomUUID().toString();
+
+		Builder request = null;
+		try {
+			List<ResponseType> responseTypes = Arrays.asList(ResponseType.TOKEN, ResponseType.ID_TOKEN);
+			List<String> scopes = Arrays.asList("openid", "profile", "address", "email");
+			String nonce = UUID.randomUUID().toString();
+
+			AuthorizationRequest authorizationRequest = new AuthorizationRequest(responseTypes, clientId, scopes,
+					redirectUri, nonce);
+			authorizationRequest.setState(state);
+			authorizationRequest.getPrompts().add(Prompt.NONE);
+			authorizationRequest.setAuthUsername(userId);
+			authorizationRequest.setAuthPassword(userSecret);
+
+			OxAuthCryptoProvider cryptoProvider = new OxAuthCryptoProvider();
+
+			JwtAuthorizationRequest jwtAuthorizationRequest = new JwtAuthorizationRequest(authorizationRequest,
+					SignatureAlgorithm.HS256, clientSecret, cryptoProvider);
+			jwtAuthorizationRequest.addUserInfoClaim(new Claim(JwtClaimName.NAME, ClaimValue.createNull()));
+			jwtAuthorizationRequest
+					.addUserInfoClaim(new Claim(JwtClaimName.NICKNAME, ClaimValue.createEssential(false)));
+			jwtAuthorizationRequest.addUserInfoClaim(new Claim(JwtClaimName.EMAIL, ClaimValue.createNull()));
+			jwtAuthorizationRequest.addUserInfoClaim(new Claim(JwtClaimName.EMAIL_VERIFIED, ClaimValue.createNull()));
+			jwtAuthorizationRequest
+					.addUserInfoClaim(new Claim(JwtClaimName.PICTURE, ClaimValue.createEssential(false)));
+			jwtAuthorizationRequest
+					.addIdTokenClaim(new Claim(JwtClaimName.AUTHENTICATION_TIME, ClaimValue.createNull()));
+			jwtAuthorizationRequest.addIdTokenClaim(new Claim(JwtClaimName.AUTHENTICATION_CONTEXT_CLASS_REFERENCE,
+					ClaimValue.createValueList(new String[] { ACR_VALUE })));
+			jwtAuthorizationRequest.getIdTokenMember().setMaxAge(86400);
+			String authJwt = jwtAuthorizationRequest.getEncodedJwt();
+			authorizationRequest.setRequest(authJwt);
+			System.out.println("Request JWT: " + authJwt);
+
+			request = ResteasyClientBuilder.newClient()
+					.target(url.toString() + authorizePath + "?" + authorizationRequest.getQueryString()).request();
+			request.header("Authorization", "Basic " + authorizationRequest.getEncodedCredentials());
+			request.header("Accept", MediaType.TEXT_PLAIN);
+		} catch (Exception e) {
+			fail(e.getMessage(), e);
+		}
+
+		Response response = request.get();
+		String entity = response.readEntity(String.class);
+
+		showResponse("requestParameterMethodWithMaxAgeRestriction", response, entity);
+
+		assertEquals(response.getStatus(), 302, "Unexpected response code.");
+		assertNotNull(response.getLocation(), "Unexpected result: " + response.getLocation());
+
+		try {
+			URI uri = new URI(response.getLocation().toString());
+			assertNotNull(uri.getFragment(), "Query string is null");
+
+			Map<String, String> params = QueryStringDecoder.decode(uri.getFragment());
+
+			assertNotNull(params.get(AuthorizeResponseParam.ACCESS_TOKEN), "The accessToken is null");
+			assertNotNull(params.get(AuthorizeResponseParam.ID_TOKEN), "The idToken is null");
+			assertNotNull(params.get(AuthorizeResponseParam.SCOPE), "The scope is null");
+			assertNotNull(params.get(AuthorizeResponseParam.STATE), "The state is null");
+			assertEquals(params.get(AuthorizeResponseParam.STATE), state);
+		} catch (URISyntaxException e) {
+			e.printStackTrace();
+			fail("Response URI is not well formed");
+		} catch (Exception e) {
+			e.printStackTrace();
+			fail("Response URI is not well formed");
+		}
+	}
+
+	@Parameters({ "authorizePath", "userId", "userSecret", "redirectUri", "requestFileBasePath", "requestFileBaseUrl" })
+	@Test(dependsOnMethods = "dynamicClientRegistration")
+	// This tests requires a place to publish a request object via HTTPS
+	public void requestFileMethod(final String authorizePath, final String userId, final String userSecret,
+			final String redirectUri, @Optional final String requestFileBasePath,
+			@Optional final String requestFileBaseUrl) throws Exception {
+		if (StringHelper.isEmpty(requestFileBasePath) || StringHelper.isEmpty(requestFileBaseUrl)) {
+			return;
+		}
+
+		final String state = UUID.randomUUID().toString();
+
+		List<ResponseType> responseTypes = Arrays.asList(ResponseType.TOKEN, ResponseType.ID_TOKEN);
+		List<String> scopes = Arrays.asList("openid", "profile", "address", "email");
+		String nonce = UUID.randomUUID().toString();
+
+		AuthorizationRequest authorizationRequest = new AuthorizationRequest(responseTypes, clientId, scopes,
+				redirectUri, nonce);
+		authorizationRequest.setState(state);
+		authorizationRequest.getPrompts().add(Prompt.NONE);
+		authorizationRequest.setAuthUsername(userId);
+		authorizationRequest.setAuthPassword(userSecret);
+
+		try {
+			OxAuthCryptoProvider cryptoProvider = new OxAuthCryptoProvider();
+
+			JwtAuthorizationRequest jwtAuthorizationRequest = new JwtAuthorizationRequest(authorizationRequest,
+					SignatureAlgorithm.HS256, clientSecret, cryptoProvider);
+			jwtAuthorizationRequest.addUserInfoClaim(new Claim(JwtClaimName.NAME, ClaimValue.createNull()));
+			jwtAuthorizationRequest
+					.addUserInfoClaim(new Claim(JwtClaimName.NICKNAME, ClaimValue.createEssential(false)));
+			jwtAuthorizationRequest.addUserInfoClaim(new Claim(JwtClaimName.EMAIL, ClaimValue.createNull()));
+			jwtAuthorizationRequest.addUserInfoClaim(new Claim(JwtClaimName.EMAIL_VERIFIED, ClaimValue.createNull()));
+			jwtAuthorizationRequest
+					.addUserInfoClaim(new Claim(JwtClaimName.PICTURE, ClaimValue.createEssential(false)));
+			jwtAuthorizationRequest
+					.addIdTokenClaim(new Claim(JwtClaimName.AUTHENTICATION_TIME, ClaimValue.createNull()));
+			jwtAuthorizationRequest.addIdTokenClaim(new Claim(JwtClaimName.AUTHENTICATION_CONTEXT_CLASS_REFERENCE,
+					ClaimValue.createValueList(new String[] { ACR_VALUE })));
+			jwtAuthorizationRequest.getIdTokenMember().setMaxAge(86400);
+			String authJwt = jwtAuthorizationRequest.getEncodedJwt();
+			String hash = Base64Util.base64urlencode(JwtUtil.getMessageDigestSHA256(authJwt));
+			String fileName = UUID.randomUUID().toString() + ".txt";
+			String filePath = requestFileBasePath + File.separator + fileName;
+			String fileUrl = requestFileBaseUrl + "/" + fileName + "#" + hash;
+			FileWriter fw = new FileWriter(filePath);
+			BufferedWriter bw = new BufferedWriter(fw);
+			bw.write(authJwt);
+			bw.close();
+			fw.close();
+			authorizationRequest.setRequestUri(fileUrl);
+			System.out.println("Request JWT: " + authJwt);
+			System.out.println("Request File Path: " + filePath);
+			System.out.println("Request File URL: " + fileUrl);
+		} catch (Exception e) {
+			fail(e.getMessage(), e);
+		}
+
+		Builder request = ResteasyClientBuilder.newClient()
+				.target(url.toString() + authorizePath + "?" + authorizationRequest.getQueryString()).request();
+		request.header("Authorization", "Basic " + authorizationRequest.getEncodedCredentials());
+		request.header("Accept", MediaType.TEXT_PLAIN);
+
+		Response response = request.get();
+		String entity = response.readEntity(String.class);
+
+		showResponse("requestFileMethod", response, entity);
+
+		assertEquals(response.getStatus(), 302, "Unexpected response code.");
+		assertNotNull(response.getLocation(), "Unexpected result: " + response.getLocation());
+
+		try {
+			URI uri = new URI(response.getLocation().toString());
+			assertNotNull(uri.getFragment(), "Query string is null");
+
+			Map<String, String> params = QueryStringDecoder.decode(uri.getFragment());
+
+			assertNotNull(params.get("access_token"), "The accessToken is null");
+			assertNotNull(params.get("id_token"), "The idToken is null");
+			assertNotNull(params.get(AuthorizeResponseParam.SCOPE), "The scope is null");
+			assertNotNull(params.get(AuthorizeResponseParam.STATE), "The state is null");
+			assertEquals(params.get(AuthorizeResponseParam.STATE), state);
+		} catch (URISyntaxException e) {
+			e.printStackTrace();
+			fail("Response URI is not well formed");
+		} catch (Exception e) {
+			e.printStackTrace();
+			fail("Response URI is not well formed");
+		}
+	}
+
+	@Parameters({ "authorizePath", "userId", "userSecret", "redirectUri" })
+	@Test(dependsOnMethods = "dynamicClientRegistration")
+	public void requestFileMethodFail1(final String authorizePath, final String userId, final String userSecret,
+			final String redirectUri) throws Exception {
+
+		final String state = UUID.randomUUID().toString();
+
+		List<ResponseType> responseTypes = Arrays.asList(ResponseType.TOKEN, ResponseType.ID_TOKEN);
+		List<String> scopes = Arrays.asList("openid", "profile", "address", "email");
+		String nonce = UUID.randomUUID().toString();
+
+		AuthorizationRequest authorizationRequest = new AuthorizationRequest(responseTypes, clientId, scopes,
+				redirectUri, nonce);
+		authorizationRequest.setState(state);
+		authorizationRequest.getPrompts().add(Prompt.NONE);
+		authorizationRequest.setAuthUsername(userId);
+		authorizationRequest.setAuthPassword(userSecret);
+
+		authorizationRequest.setRequest("FAKE_REQUEST");
+		authorizationRequest.setRequestUri("FAKE_REQUEST_URI");
+
+		Builder request = ResteasyClientBuilder.newClient()
+				.target(url.toString() + authorizePath + "?" + authorizationRequest.getQueryString()).request();
+		request.header("Authorization", "Basic " + authorizationRequest.getEncodedCredentials());
+		request.header("Accept", MediaType.TEXT_PLAIN);
+
+		Response response = request.get();
+		String entity = response.readEntity(String.class);
+
+		showResponse("requestFileMethodFail1", response, entity);
+
+		assertEquals(response.getStatus(), 302, "Unexpected response code.");
+		assertNotNull(response.getLocation(), "Unexpected result: " + response.getLocation());
+
+		if (response.getLocation() != null) {
+			try {
+				URI uri = new URI(response.getLocation().toString());
+				assertNotNull(uri.getFragment(), "Fragment is null");
+
+				Map<String, String> params = QueryStringDecoder.decode(uri.getFragment());
+
+				assertNotNull(params.get("error"), "The error value is null");
+				assertNotNull(params.get("error_description"), "The errorDescription value is null");
+				assertNotNull(params.get(AuthorizeResponseParam.STATE), "The state is null");
+				assertEquals(params.get(AuthorizeResponseParam.STATE), state);
+			} catch (URISyntaxException e) {
+				e.printStackTrace();
+				fail("Response URI is not well formed");
+			}
+		}
+	}
+
+	@Parameters({ "authorizePath", "userId", "userSecret", "redirectUri", "requestFileBaseUrl" })
+	@Test(dependsOnMethods = "dynamicClientRegistration")
+	public void requestFileMethodFail2(final String authorizePath, final String userId, final String userSecret,
+			final String redirectUri, @Optional final String requestFileBaseUrl) throws Exception {
+		if (StringHelper.isEmpty(requestFileBaseUrl)) {
+			return;
+		}
+
+		final String state = UUID.randomUUID().toString();
+
+		List<ResponseType> responseTypes = Arrays.asList(ResponseType.TOKEN, ResponseType.ID_TOKEN);
+		List<String> scopes = Arrays.asList("openid", "profile", "address", "email");
+		String nonce = UUID.randomUUID().toString();
+
+		AuthorizationRequest authorizationRequest = new AuthorizationRequest(responseTypes, clientId, scopes,
+				redirectUri, nonce);
+		authorizationRequest.setState(state);
+		authorizationRequest.getPrompts().add(Prompt.NONE);
+		authorizationRequest.setAuthUsername(userId);
+		authorizationRequest.setAuthPassword(userSecret);
+
+		authorizationRequest.setRequestUri(requestFileBaseUrl + "/FAKE_REQUEST_URI");
+
+		Builder request = ResteasyClientBuilder.newClient()
+				.target(url.toString() + authorizePath + "?" + authorizationRequest.getQueryString()).request();
+		request.header("Authorization", "Basic " + authorizationRequest.getEncodedCredentials());
+		request.header("Accept", MediaType.TEXT_PLAIN);
+
+		Response response = request.get();
+		String entity = response.readEntity(String.class);
+
+		showResponse("requestFileMethodFail2", response, entity);
+
+		assertEquals(response.getStatus(), 302, "Unexpected response code.");
+		assertNotNull(response.getLocation(), "Unexpected result: " + response.getLocation());
+
+		if (response.getLocation() != null) {
+			try {
+				URI uri = new URI(response.getLocation().toString());
+				assertNotNull(uri.getFragment(), "Fragment is null");
+
+				Map<String, String> params = QueryStringDecoder.decode(uri.getFragment());
+
+				assertNotNull(params.get("error"), "The error value is null");
+				assertNotNull(params.get("error_description"), "The errorDescription value is null");
+				assertNotNull(params.get(AuthorizeResponseParam.STATE), "The state is null");
+				assertEquals(params.get(AuthorizeResponseParam.STATE), state);
+			} catch (URISyntaxException e) {
+				e.printStackTrace();
+				fail("Response URI is not well formed");
+			}
+		}
+	}
+
+	@Parameters({ "authorizePath", "userId", "userSecret", "redirectUri", "requestFileBasePath", "requestFileBaseUrl" })
+	@Test(dependsOnMethods = "dynamicClientRegistration")
+	// This test requires a place to publish a request object via HTTPS
+	public void requestFileMethodFail3(final String authorizePath, final String userId, final String userSecret,
+			final String redirectUri, @Optional final String requestFileBasePath,
+			@Optional final String requestFileBaseUrl) throws Exception {
+		if (StringHelper.isEmpty(requestFileBasePath) || StringHelper.isEmpty(requestFileBaseUrl)) {
+			return;
+		}
+
+		final String state = UUID.randomUUID().toString();
+
+		List<ResponseType> responseTypes = Arrays.asList(ResponseType.TOKEN, ResponseType.ID_TOKEN);
+		List<String> scopes = Arrays.asList("openid", "profile", "address", "email");
+		String nonce = UUID.randomUUID().toString();
+
+		AuthorizationRequest authorizationRequest = new AuthorizationRequest(responseTypes, clientId, scopes,
+				redirectUri, nonce);
+		authorizationRequest.setState(state);
+		authorizationRequest.getPrompts().add(Prompt.NONE);
+		authorizationRequest.setAuthUsername(userId);
+		authorizationRequest.setAuthPassword(userSecret);
+
+		try {
+			OxAuthCryptoProvider cryptoProvider = new OxAuthCryptoProvider();
+
+			JwtAuthorizationRequest jwtAuthorizationRequest = new JwtAuthorizationRequest(authorizationRequest,
+					SignatureAlgorithm.HS256, clientSecret, cryptoProvider);
+			jwtAuthorizationRequest.addUserInfoClaim(new Claim(JwtClaimName.NAME, ClaimValue.createNull()));
+			jwtAuthorizationRequest
+					.addUserInfoClaim(new Claim(JwtClaimName.NICKNAME, ClaimValue.createEssential(false)));
+			jwtAuthorizationRequest.addUserInfoClaim(new Claim(JwtClaimName.EMAIL, ClaimValue.createNull()));
+			jwtAuthorizationRequest.addUserInfoClaim(new Claim(JwtClaimName.EMAIL_VERIFIED, ClaimValue.createNull()));
+			jwtAuthorizationRequest
+					.addUserInfoClaim(new Claim(JwtClaimName.PICTURE, ClaimValue.createEssential(false)));
+			jwtAuthorizationRequest
+					.addIdTokenClaim(new Claim(JwtClaimName.AUTHENTICATION_TIME, ClaimValue.createNull()));
+			jwtAuthorizationRequest.addIdTokenClaim(new Claim(JwtClaimName.AUTHENTICATION_CONTEXT_CLASS_REFERENCE,
+					ClaimValue.createValueList(new String[] { ACR_VALUE })));
+			jwtAuthorizationRequest.getIdTokenMember().setMaxAge(86400);
+			String authJwt = jwtAuthorizationRequest.getEncodedJwt();
+			String hash = "INVALID_HASH";
+			String fileName = UUID.randomUUID().toString() + ".txt";
+			String filePath = requestFileBasePath + File.separator + fileName;
+			String fileUrl = requestFileBaseUrl + "/" + fileName + "#" + hash;
+			FileWriter fw = new FileWriter(filePath);
+			BufferedWriter bw = new BufferedWriter(fw);
+			bw.write(authJwt);
+			bw.close();
+			fw.close();
+			authorizationRequest.setRequestUri(fileUrl);
+			System.out.println("Request JWT: " + authJwt);
+			System.out.println("Request File Path: " + filePath);
+			System.out.println("Request File URL: " + fileUrl);
+		} catch (Exception e) {
+			e.printStackTrace();
+			fail(e.getMessage(), e);
+		}
+
+		Builder request = ResteasyClientBuilder.newClient()
+				.target(url.toString() + authorizePath + "?" + authorizationRequest.getQueryString()).request();
+		request.header("Authorization", "Basic " + authorizationRequest.getEncodedCredentials());
+		request.header("Accept", MediaType.TEXT_PLAIN);
+
+		Response response = request.get();
+		String entity = response.readEntity(String.class);
+
+		showResponse("requestFileMethodFail3", response, entity);
+
+		assertEquals(response.getStatus(), 302, "Unexpected response code.");
+		assertNotNull(response.getLocation(), "Unexpected result: " + response.getLocation());
+
+		if (response.getLocation() != null) {
+			try {
+				URI uri = new URI(response.getLocation().toString());
+				assertNotNull(uri.getFragment(), "Fragment is null");
+
+				Map<String, String> params = QueryStringDecoder.decode(uri.getFragment());
+
+				assertNotNull(params.get("error"), "The error value is null");
+				assertNotNull(params.get("error_description"), "The errorDescription value is null");
+				assertNotNull(params.get(AuthorizeResponseParam.STATE), "The state is null");
+				assertNotNull(params.get(AuthorizeResponseParam.STATE), state);
+			} catch (URISyntaxException e) {
+				e.printStackTrace();
+				fail("Response URI is not well formed");
+			}
+		}
+	}
+
+	@Parameters({ "registerPath", "redirectUris" })
+	@Test
+	public void requestParameterMethodAlgNoneStep1(final String registerPath, final String redirectUris)
+			throws Exception {
+
+		Builder request = ResteasyClientBuilder.newClient().target(url.toString() + registerPath).request();
+
+		String registerRequestContent = null;
+		try {
+			List<ResponseType> responseTypes = Arrays.asList(ResponseType.TOKEN);
+
+			RegisterRequest registerRequest = new RegisterRequest(ApplicationType.WEB, "oxAuth test app",
+					StringUtils.spaceSeparatedToList(redirectUris));
+			registerRequest.setResponseTypes(responseTypes);
+			registerRequest.setRequestObjectSigningAlg(SignatureAlgorithm.NONE);
+			registerRequest.addCustomAttribute("oxAuthTrustedClient", "true");
+
+			registerRequestContent = ServerUtil.toPrettyJson(registerRequest.getJSONParameters());
+		} catch (JSONException e) {
+			e.printStackTrace();
+			fail(e.getMessage());
+		}
+
+		Response response = request.post(Entity.json(registerRequestContent));
+		String entity = response.readEntity(String.class);
+
+		showResponse("requestParameterMethodAlgNoneStep1", response, entity);
+
+		ResponseAsserter responseAsserter = ResponseAsserter.of(response.getStatus(), entity);
+		responseAsserter.assertRegisterResponse();
+		clientId3 = responseAsserter.getJson().getJson().getString(RegisterResponseParam.CLIENT_ID.toString());
+	}
+
+	@Parameters({ "authorizePath", "userId", "userSecret", "redirectUri" })
+	@Test(dependsOnMethods = "requestParameterMethodAlgNoneStep1")
+	public void requestParameterMethodAlgNoneStep2(final String authorizePath, final String userId,
+			final String userSecret, final String redirectUri) throws Exception {
+
+		final String state = UUID.randomUUID().toString();
+
+		Builder request = null;
+		try {
+			List<ResponseType> responseTypes = Arrays.asList(ResponseType.TOKEN);
+			List<String> scopes = Arrays.asList("openid");
+			String nonce = UUID.randomUUID().toString();
+
+			AuthorizationRequest authorizationRequest = new AuthorizationRequest(responseTypes, clientId3, scopes,
+					redirectUri, nonce);
+			authorizationRequest.setState(state);
+			authorizationRequest.getPrompts().add(Prompt.NONE);
+			authorizationRequest.setAuthUsername(userId);
+			authorizationRequest.setAuthPassword(userSecret);
+
+			OxAuthCryptoProvider cryptoProvider = new OxAuthCryptoProvider();
+
+			JwtAuthorizationRequest jwtAuthorizationRequest = new JwtAuthorizationRequest(authorizationRequest,
+					SignatureAlgorithm.NONE, cryptoProvider);
+			jwtAuthorizationRequest.addUserInfoClaim(new Claim(JwtClaimName.NAME, ClaimValue.createNull()));
+			jwtAuthorizationRequest
+					.addUserInfoClaim(new Claim(JwtClaimName.NICKNAME, ClaimValue.createEssential(false)));
+			jwtAuthorizationRequest.addUserInfoClaim(new Claim(JwtClaimName.EMAIL, ClaimValue.createNull()));
+			jwtAuthorizationRequest.addUserInfoClaim(new Claim(JwtClaimName.EMAIL_VERIFIED, ClaimValue.createNull()));
+			jwtAuthorizationRequest
+					.addUserInfoClaim(new Claim(JwtClaimName.PICTURE, ClaimValue.createEssential(false)));
+			jwtAuthorizationRequest
+					.addIdTokenClaim(new Claim(JwtClaimName.AUTHENTICATION_TIME, ClaimValue.createNull()));
+			jwtAuthorizationRequest.addIdTokenClaim(new Claim(JwtClaimName.AUTHENTICATION_CONTEXT_CLASS_REFERENCE,
+					ClaimValue.createValueList(new String[] { ACR_VALUE })));
+			String authJwt = jwtAuthorizationRequest.getEncodedJwt();
+			authorizationRequest.setRequest(authJwt);
+			System.out.println("Request JWT: " + authJwt);
+
+			request = ResteasyClientBuilder.newClient()
+					.target(url.toString() + authorizePath + "?" + authorizationRequest.getQueryString()).request();
+			request.header("Authorization", "Basic " + authorizationRequest.getEncodedCredentials());
+			request.header("Accept", MediaType.TEXT_PLAIN);
+		} catch (Exception e) {
+			fail(e.getMessage(), e);
+		}
+
+		Response response = request.get();
+		String entity = response.readEntity(String.class);
+
+		showResponse("requestParameterMethodAlgNoneStep2", response, entity);
+
+		assertEquals(response.getStatus(), 302, "Unexpected response code.");
+		assertNotNull(response.getLocation(), "Unexpected result: " + response.getLocation());
+
+		try {
+			URI uri = new URI(response.getLocation().toString());
+			assertNotNull(uri.getFragment(), "Query string is null");
+
+			Map<String, String> params = QueryStringDecoder.decode(uri.getFragment());
+
+			assertNotNull(params.get(AuthorizeResponseParam.ACCESS_TOKEN), "The accessToken is null");
+			assertNotNull(params.get(AuthorizeResponseParam.SCOPE), "The scope is null");
+			assertNotNull(params.get(AuthorizeResponseParam.STATE), "The state is null");
+			assertEquals(params.get(AuthorizeResponseParam.STATE), state);
+		} catch (URISyntaxException e) {
+			e.printStackTrace();
+			fail("Response URI is not well formed");
+		}
+	}
+
+}
\ No newline at end of file
diff --git a/oxAuth/Server/src/test/java/org/gluu/oxauth/ws/rs/OpenIDRequestObjectWithESAlgEmbeddedTest.java b/oxAuth/Server/src/test/java/org/gluu/oxauth/ws/rs/OpenIDRequestObjectWithESAlgEmbeddedTest.java
new file mode 100644
index 00000000..bcc577ea
--- /dev/null
+++ b/oxAuth/Server/src/test/java/org/gluu/oxauth/ws/rs/OpenIDRequestObjectWithESAlgEmbeddedTest.java
@@ -0,0 +1,688 @@
+/*
+ * oxAuth is available under the MIT License (2008). See http://opensource.org/licenses/MIT for full text.
+ *
+ * Copyright (c) 2014, Gluu
+ */
+
+package org.gluu.oxauth.ws.rs;
+
+import org.json.JSONException;
+import org.gluu.oxauth.BaseTest;
+import org.gluu.oxauth.client.AuthorizationRequest;
+import org.gluu.oxauth.client.QueryStringDecoder;
+import org.gluu.oxauth.client.RegisterRequest;
+import org.gluu.oxauth.client.ResponseAsserter;
+import org.gluu.oxauth.client.model.authorize.Claim;
+import org.gluu.oxauth.client.model.authorize.ClaimValue;
+import org.gluu.oxauth.client.model.authorize.JwtAuthorizationRequest;
+import org.gluu.oxauth.model.common.Prompt;
+import org.gluu.oxauth.model.common.ResponseType;
+import org.gluu.oxauth.model.crypto.OxAuthCryptoProvider;
+import org.gluu.oxauth.model.crypto.signature.SignatureAlgorithm;
+import org.gluu.oxauth.model.jwt.JwtClaimName;
+import org.gluu.oxauth.model.register.ApplicationType;
+import org.gluu.oxauth.model.register.RegisterResponseParam;
+import org.gluu.oxauth.model.util.StringUtils;
+import org.gluu.oxauth.util.ServerUtil;
+import org.jboss.arquillian.test.api.ArquillianResource;
+import org.jboss.resteasy.client.jaxrs.ResteasyClientBuilder;
+import org.testng.annotations.Parameters;
+import org.testng.annotations.Test;
+
+import javax.ws.rs.client.Entity;
+import javax.ws.rs.client.Invocation.Builder;
+import javax.ws.rs.core.MediaType;
+import javax.ws.rs.core.Response;
+import java.net.URI;
+import java.net.URISyntaxException;
+import java.util.Arrays;
+import java.util.List;
+import java.util.Map;
+import java.util.UUID;
+
+import static org.testng.Assert.*;
+
+/**
+ * Functional tests for OpenID Request Object (embedded)
+ *
+ * @author Javier Rojas Blum
+ * @version June 15, 2016
+ */
+public class OpenIDRequestObjectWithESAlgEmbeddedTest extends BaseTest {
+
+    public static final String ACR_VALUE = "basic";
+    
+    @ArquillianResource
+	private URI url;
+
+	private static String clientId1;
+	private static String clientId2;
+	private static String clientId3;
+	private static String clientId4;
+	private static String clientId5;
+	private static String clientId6;
+
+	@Parameters({ "registerPath", "redirectUris", "clientJwksUri" })
+	@Test
+	public void requestParameterMethodES256Step1(final String registerPath, final String redirectUris,
+	        final String jwksUri) throws Exception {
+		Builder request = ResteasyClientBuilder.newClient().target(url.toString() + registerPath).request();
+
+		String registerRequestContent = null;
+		try {
+			List<ResponseType> responseTypes = Arrays.asList(ResponseType.TOKEN);
+
+			RegisterRequest registerRequest = new RegisterRequest(ApplicationType.WEB, "oxAuth test app",
+					StringUtils.spaceSeparatedToList(redirectUris));
+			registerRequest.setJwksUri(jwksUri);
+			registerRequest.setResponseTypes(responseTypes);
+			registerRequest.setRequestObjectSigningAlg(SignatureAlgorithm.ES256);
+			registerRequest.addCustomAttribute("oxAuthTrustedClient", "true");
+
+			registerRequestContent = ServerUtil.toPrettyJson(registerRequest.getJSONParameters());
+		} catch (JSONException e) {
+			fail(e.getMessage(), e);
+		}
+
+		Response response = request.post(Entity.json(registerRequestContent));
+		String entity = response.readEntity(String.class);
+
+		showResponse("requestParameterMethodES256Step1", response, entity);
+
+		ResponseAsserter responseAsserter = ResponseAsserter.of(response.getStatus(), entity);
+		responseAsserter.assertRegisterResponse();
+		clientId1 = responseAsserter.getJson().getJson().getString(RegisterResponseParam.CLIENT_ID.toString());
+	}
+
+	@Parameters({ "authorizePath", "userId", "userSecret", "redirectUri", "ES256_keyId", "dnName", "keyStoreFile",
+			"keyStoreSecret" })
+	@Test(dependsOnMethods = "requestParameterMethodES256Step1")
+	public void requestParameterMethodES256Step2(final String authorizePath, final String userId,
+			final String userSecret, final String redirectUri, final String keyId, final String dnName,
+			final String keyStoreFile, final String keyStoreSecret) throws Exception {
+		Builder request = null;
+		try {
+			OxAuthCryptoProvider cryptoProvider = new OxAuthCryptoProvider(keyStoreFile, keyStoreSecret, dnName);
+
+			List<ResponseType> responseTypes = Arrays.asList(ResponseType.TOKEN);
+			List<String> scopes = Arrays.asList("openid");
+			String nonce = UUID.randomUUID().toString();
+			String state = UUID.randomUUID().toString();
+
+			AuthorizationRequest authorizationRequest = new AuthorizationRequest(responseTypes, clientId1, scopes,
+					redirectUri, nonce);
+			authorizationRequest.setState(state);
+			authorizationRequest.getPrompts().add(Prompt.NONE);
+			authorizationRequest.setAuthUsername(userId);
+			authorizationRequest.setAuthPassword(userSecret);
+
+			JwtAuthorizationRequest jwtAuthorizationRequest = new JwtAuthorizationRequest(authorizationRequest,
+					SignatureAlgorithm.ES256, cryptoProvider);
+			jwtAuthorizationRequest.setKeyId(keyId);
+			jwtAuthorizationRequest.addUserInfoClaim(new Claim(JwtClaimName.NAME, ClaimValue.createNull()));
+			jwtAuthorizationRequest
+					.addUserInfoClaim(new Claim(JwtClaimName.NICKNAME, ClaimValue.createEssential(false)));
+			jwtAuthorizationRequest.addUserInfoClaim(new Claim(JwtClaimName.EMAIL, ClaimValue.createNull()));
+			jwtAuthorizationRequest.addUserInfoClaim(new Claim(JwtClaimName.EMAIL_VERIFIED, ClaimValue.createNull()));
+			jwtAuthorizationRequest
+					.addUserInfoClaim(new Claim(JwtClaimName.PICTURE, ClaimValue.createEssential(false)));
+			jwtAuthorizationRequest
+					.addIdTokenClaim(new Claim(JwtClaimName.AUTHENTICATION_TIME, ClaimValue.createNull()));
+			jwtAuthorizationRequest.addIdTokenClaim(new Claim(JwtClaimName.AUTHENTICATION_CONTEXT_CLASS_REFERENCE,
+					ClaimValue.createValueList(new String[] {ACR_VALUE})));
+			String authJwt = jwtAuthorizationRequest.getEncodedJwt();
+			authorizationRequest.setRequest(authJwt);
+			System.out.println("Request JWT: " + authJwt);
+
+			request = ResteasyClientBuilder.newClient()
+					.target(url.toString() + authorizePath + "?" + authorizationRequest.getQueryString()).request();
+			request.header("Authorization", "Basic " + authorizationRequest.getEncodedCredentials());
+			request.header("Accept", MediaType.TEXT_PLAIN);
+		} catch (Exception ex) {
+			fail(ex.getMessage(), ex);
+		}
+
+		Response response = request.get();
+		String entity = response.readEntity(String.class);
+
+		showResponse("requestParameterMethodES256Step2", response, entity);
+
+		assertEquals(response.getStatus(), 302, "Unexpected response code.");
+		assertNotNull(response.getLocation(), "Unexpected result: " + response.getLocation());
+
+		try {
+			URI uri = new URI(response.getLocation().toString());
+			assertNotNull(uri.getFragment(), "Query string is null");
+
+			Map<String, String> params = QueryStringDecoder.decode(uri.getFragment());
+
+			assertNotNull(params.get("access_token"), "The accessToken is null");
+			assertNotNull(params.get("scope"), "The scope is null");
+			assertNotNull(params.get("state"), "The state is null");
+		} catch (URISyntaxException e) {
+			e.printStackTrace();
+			fail(e.getMessage(), e);
+		}
+	}
+
+	@Parameters({ "registerPath", "redirectUris", "clientJwksUri" })
+	@Test
+	public void requestParameterMethodES384Step1(final String registerPath, final String redirectUris,
+			final String jwksUri) throws Exception {
+
+		Builder request = ResteasyClientBuilder.newClient().target(url.toString() + registerPath).request();
+
+		String registerRequestContent = null;
+		try {
+			List<ResponseType> responseTypes = Arrays.asList(ResponseType.TOKEN);
+
+			RegisterRequest registerRequest = new RegisterRequest(ApplicationType.WEB, "oxAuth test app",
+					StringUtils.spaceSeparatedToList(redirectUris));
+			registerRequest.setJwksUri(jwksUri);
+			registerRequest.setResponseTypes(responseTypes);
+			registerRequest.setRequestObjectSigningAlg(SignatureAlgorithm.ES384);
+			registerRequest.addCustomAttribute("oxAuthTrustedClient", "true");
+
+			registerRequestContent = ServerUtil.toPrettyJson(registerRequest.getJSONParameters());
+		} catch (JSONException e) {
+			e.printStackTrace();
+			fail(e.getMessage());
+		}
+
+		Response response = request.post(Entity.json(registerRequestContent));
+		String entity = response.readEntity(String.class);
+
+		showResponse("requestParameterMethodES384Step1", response, entity);
+
+		ResponseAsserter responseAsserter = ResponseAsserter.of(response.getStatus(), entity);
+		responseAsserter.assertRegisterResponse();
+		clientId2 = responseAsserter.getJson().getJson().getString(RegisterResponseParam.CLIENT_ID.toString());
+	}
+
+	@Parameters({ "authorizePath", "userId", "userSecret", "redirectUri", "ES384_keyId", "dnName", "keyStoreFile",
+			"keyStoreSecret" })
+	@Test(dependsOnMethods = "requestParameterMethodES384Step1")
+	public void requestParameterMethodES384Step2(final String authorizePath, final String userId,
+			final String userSecret, final String redirectUri, final String keyId, final String dnName,
+			final String keyStoreFile, final String keyStoreSecret) throws Exception {
+
+		Builder request = null;
+		try {
+			OxAuthCryptoProvider cryptoProvider = new OxAuthCryptoProvider(keyStoreFile, keyStoreSecret, dnName);
+
+			List<ResponseType> responseTypes = Arrays.asList(ResponseType.TOKEN);
+			List<String> scopes = Arrays.asList("openid");
+			String nonce = UUID.randomUUID().toString();
+			String state = UUID.randomUUID().toString();
+
+			AuthorizationRequest authorizationRequest = new AuthorizationRequest(responseTypes, clientId2, scopes,
+					redirectUri, nonce);
+			authorizationRequest.setState(state);
+			authorizationRequest.getPrompts().add(Prompt.NONE);
+			authorizationRequest.setAuthUsername(userId);
+			authorizationRequest.setAuthPassword(userSecret);
+
+			JwtAuthorizationRequest jwtAuthorizationRequest = new JwtAuthorizationRequest(authorizationRequest,
+					SignatureAlgorithm.ES384, cryptoProvider);
+			jwtAuthorizationRequest.setKeyId(keyId);
+			jwtAuthorizationRequest.addUserInfoClaim(new Claim(JwtClaimName.NAME, ClaimValue.createNull()));
+			jwtAuthorizationRequest
+					.addUserInfoClaim(new Claim(JwtClaimName.NICKNAME, ClaimValue.createEssential(false)));
+			jwtAuthorizationRequest.addUserInfoClaim(new Claim(JwtClaimName.EMAIL, ClaimValue.createNull()));
+			jwtAuthorizationRequest.addUserInfoClaim(new Claim(JwtClaimName.EMAIL_VERIFIED, ClaimValue.createNull()));
+			jwtAuthorizationRequest
+					.addUserInfoClaim(new Claim(JwtClaimName.PICTURE, ClaimValue.createEssential(false)));
+			jwtAuthorizationRequest
+					.addIdTokenClaim(new Claim(JwtClaimName.AUTHENTICATION_TIME, ClaimValue.createNull()));
+			jwtAuthorizationRequest.addIdTokenClaim(new Claim(JwtClaimName.AUTHENTICATION_CONTEXT_CLASS_REFERENCE,
+					ClaimValue.createValueList(new String[] { ACR_VALUE })));
+			String authJwt = jwtAuthorizationRequest.getEncodedJwt();
+			authorizationRequest.setRequest(authJwt);
+			System.out.println("Request JWT: " + authJwt);
+
+			request = ResteasyClientBuilder.newClient()
+					.target(url.toString() + authorizePath + "?" + authorizationRequest.getQueryString()).request();
+			request.header("Authorization", "Basic " + authorizationRequest.getEncodedCredentials());
+			request.header("Accept", MediaType.TEXT_PLAIN);
+		} catch (Exception ex) {
+			fail(ex.getMessage(), ex);
+		}
+
+		Response response = request.get();
+		String entity = response.readEntity(String.class);
+
+		showResponse("requestParameterMethodES384Step2", response, entity);
+
+		assertEquals(response.getStatus(), 302, "Unexpected response code.");
+		assertNotNull(response.getLocation(), "Unexpected result: " + response.getLocation());
+
+		try {
+			URI uri = new URI(response.getLocation().toString());
+			assertNotNull(uri.getFragment(), "Query string is null");
+
+			Map<String, String> params = QueryStringDecoder.decode(uri.getFragment());
+
+			assertNotNull(params.get("access_token"), "The accessToken is null");
+			assertNotNull(params.get("scope"), "The scope is null");
+			assertNotNull(params.get("state"), "The state is null");
+		} catch (URISyntaxException e) {
+			fail(e.getMessage(), e);
+		}
+	}
+
+	@Parameters({ "registerPath", "redirectUris", "clientJwksUri" })
+	@Test
+	public void requestParameterMethodES512Step1(final String registerPath, final String redirectUris,
+			final String jwksUri) throws Exception {
+
+		Builder request = ResteasyClientBuilder.newClient().target(url.toString() + registerPath).request();
+
+		String registerRequestContent = null;
+		try {
+			List<ResponseType> responseTypes = Arrays.asList(ResponseType.TOKEN);
+
+			RegisterRequest registerRequest = new RegisterRequest(ApplicationType.WEB, "oxAuth test app",
+					StringUtils.spaceSeparatedToList(redirectUris));
+			registerRequest.setJwksUri(jwksUri);
+			registerRequest.setResponseTypes(responseTypes);
+			registerRequest.setRequestObjectSigningAlg(SignatureAlgorithm.ES512);
+			registerRequest.addCustomAttribute("oxAuthTrustedClient", "true");
+
+			registerRequestContent = ServerUtil.toPrettyJson(registerRequest.getJSONParameters());
+		} catch (JSONException e) {
+			fail(e.getMessage(), e);
+		}
+
+		Response response = request.post(Entity.json(registerRequestContent));
+		String entity = response.readEntity(String.class);
+
+		showResponse("requestParameterMethodES512Step1", response, entity);
+
+		ResponseAsserter responseAsserter = ResponseAsserter.of(response.getStatus(), entity);
+		responseAsserter.assertRegisterResponse();
+		clientId3 = responseAsserter.getJson().getJson().getString(RegisterResponseParam.CLIENT_ID.toString());
+	}
+
+	@Parameters({ "authorizePath", "userId", "userSecret", "redirectUri", "ES512_keyId", "dnName", "keyStoreFile",
+			"keyStoreSecret" })
+	@Test(dependsOnMethods = "requestParameterMethodES512Step1")
+	public void requestParameterMethodES512Step2(final String authorizePath, final String userId,
+			final String userSecret, final String redirectUri, final String keyId, final String dnName,
+			final String keyStoreFile, final String keyStoreSecret) throws Exception {
+		Builder request = null;
+		try {
+
+			OxAuthCryptoProvider cryptoProvider = new OxAuthCryptoProvider(keyStoreFile, keyStoreSecret, dnName);
+
+			List<ResponseType> responseTypes = Arrays.asList(ResponseType.TOKEN);
+			List<String> scopes = Arrays.asList("openid");
+			String nonce = UUID.randomUUID().toString();
+			String state = UUID.randomUUID().toString();
+
+			AuthorizationRequest authorizationRequest = new AuthorizationRequest(responseTypes, clientId3, scopes,
+					redirectUri, nonce);
+			authorizationRequest.setState(state);
+			authorizationRequest.getPrompts().add(Prompt.NONE);
+			authorizationRequest.setAuthUsername(userId);
+			authorizationRequest.setAuthPassword(userSecret);
+
+			JwtAuthorizationRequest jwtAuthorizationRequest = new JwtAuthorizationRequest(authorizationRequest,
+					SignatureAlgorithm.ES512, cryptoProvider);
+			jwtAuthorizationRequest.setKeyId(keyId);
+			jwtAuthorizationRequest.addUserInfoClaim(new Claim(JwtClaimName.NAME, ClaimValue.createNull()));
+			jwtAuthorizationRequest
+					.addUserInfoClaim(new Claim(JwtClaimName.NICKNAME, ClaimValue.createEssential(false)));
+			jwtAuthorizationRequest.addUserInfoClaim(new Claim(JwtClaimName.EMAIL, ClaimValue.createNull()));
+			jwtAuthorizationRequest.addUserInfoClaim(new Claim(JwtClaimName.EMAIL_VERIFIED, ClaimValue.createNull()));
+			jwtAuthorizationRequest
+					.addUserInfoClaim(new Claim(JwtClaimName.PICTURE, ClaimValue.createEssential(false)));
+			jwtAuthorizationRequest
+					.addIdTokenClaim(new Claim(JwtClaimName.AUTHENTICATION_TIME, ClaimValue.createNull()));
+			jwtAuthorizationRequest.addIdTokenClaim(new Claim(JwtClaimName.AUTHENTICATION_CONTEXT_CLASS_REFERENCE,
+					ClaimValue.createValueList(new String[] { ACR_VALUE })));
+			String authJwt = jwtAuthorizationRequest.getEncodedJwt();
+			authorizationRequest.setRequest(authJwt);
+			System.out.println("Request JWT: " + authJwt);
+
+			request = ResteasyClientBuilder.newClient()
+					.target(url.toString() + authorizePath + "?" + authorizationRequest.getQueryString()).request();
+			request.header("Authorization", "Basic " + authorizationRequest.getEncodedCredentials());
+			request.header("Accept", MediaType.TEXT_PLAIN);
+		} catch (Exception ex) {
+			fail(ex.getMessage(), ex);
+		}
+
+		Response response = request.get();
+		String entity = response.readEntity(String.class);
+
+		showResponse("requestParameterMethodES512Step2", response, entity);
+
+		assertEquals(response.getStatus(), 302, "Unexpected response code.");
+		assertNotNull(response.getLocation(), "Unexpected result: " + response.getLocation());
+
+		try {
+			URI uri = new URI(response.getLocation().toString());
+			assertNotNull(uri.getFragment(), "Query string is null");
+
+			Map<String, String> params = QueryStringDecoder.decode(uri.getFragment());
+
+			assertNotNull(params.get("access_token"), "The accessToken is null");
+			assertNotNull(params.get("scope"), "The scope is null");
+			assertNotNull(params.get("state"), "The state is null");
+		} catch (URISyntaxException e) {
+			fail(e.getMessage(), e);
+		}
+	}
+
+	@Parameters({ "registerPath", "redirectUris", "clientJwksUri" })
+	@Test
+	public void requestParameterMethodES256X509CertStep1(final String registerPath, final String redirectUris,
+			final String jwksUri) throws Exception {
+		Builder request = ResteasyClientBuilder.newClient().target(url.toString() + registerPath).request();
+
+		String registerRequestContent = null;
+		try {
+
+			List<ResponseType> responseTypes = Arrays.asList(ResponseType.TOKEN);
+
+			RegisterRequest registerRequest = new RegisterRequest(ApplicationType.WEB, "oxAuth test app",
+					StringUtils.spaceSeparatedToList(redirectUris));
+			registerRequest.setJwksUri(jwksUri);
+			registerRequest.setResponseTypes(responseTypes);
+			registerRequest.setRequestObjectSigningAlg(SignatureAlgorithm.ES256);
+			registerRequest.addCustomAttribute("oxAuthTrustedClient", "true");
+
+			registerRequestContent = ServerUtil.toPrettyJson(registerRequest.getJSONParameters());
+		} catch (JSONException e) {
+			fail(e.getMessage(), e);
+		}
+
+		Response response = request.post(Entity.json(registerRequestContent));
+		String entity = response.readEntity(String.class);
+
+		showResponse("requestParameterMethodES256X509CertStep1", response, entity);
+
+		ResponseAsserter responseAsserter = ResponseAsserter.of(response.getStatus(), entity);
+		responseAsserter.assertRegisterResponse();
+		clientId4 = responseAsserter.getJson().getJson().getString(RegisterResponseParam.CLIENT_ID.toString());
+	}
+
+	@Parameters({ "authorizePath", "userId", "userSecret", "redirectUri", "ES256_keyId", "dnName", "keyStoreFile",
+			"keyStoreSecret" })
+	@Test(dependsOnMethods = "requestParameterMethodES256X509CertStep1")
+	public void requestParameterMethodES256X509CertStep2(final String authorizePath, final String userId,
+			final String userSecret, final String redirectUri, final String keyId, final String dnName,
+			final String keyStoreFile, final String keyStoreSecret) throws Exception {
+		Builder request = null;
+		try {
+			OxAuthCryptoProvider cryptoProvider = new OxAuthCryptoProvider(keyStoreFile, keyStoreSecret, dnName);
+
+			List<ResponseType> responseTypes = Arrays.asList(ResponseType.TOKEN);
+			List<String> scopes = Arrays.asList("openid");
+			String nonce = UUID.randomUUID().toString();
+			String state = UUID.randomUUID().toString();
+
+			AuthorizationRequest authorizationRequest = new AuthorizationRequest(responseTypes, clientId4, scopes,
+					redirectUri, nonce);
+			authorizationRequest.setState(state);
+			authorizationRequest.getPrompts().add(Prompt.NONE);
+			authorizationRequest.setAuthUsername(userId);
+			authorizationRequest.setAuthPassword(userSecret);
+
+			JwtAuthorizationRequest jwtAuthorizationRequest = new JwtAuthorizationRequest(authorizationRequest,
+					SignatureAlgorithm.ES256, cryptoProvider);
+			jwtAuthorizationRequest.setKeyId(keyId);
+			jwtAuthorizationRequest.addUserInfoClaim(new Claim(JwtClaimName.NAME, ClaimValue.createNull()));
+			jwtAuthorizationRequest
+					.addUserInfoClaim(new Claim(JwtClaimName.NICKNAME, ClaimValue.createEssential(false)));
+			jwtAuthorizationRequest.addUserInfoClaim(new Claim(JwtClaimName.EMAIL, ClaimValue.createNull()));
+			jwtAuthorizationRequest.addUserInfoClaim(new Claim(JwtClaimName.EMAIL_VERIFIED, ClaimValue.createNull()));
+			jwtAuthorizationRequest
+					.addUserInfoClaim(new Claim(JwtClaimName.PICTURE, ClaimValue.createEssential(false)));
+			jwtAuthorizationRequest
+					.addIdTokenClaim(new Claim(JwtClaimName.AUTHENTICATION_TIME, ClaimValue.createNull()));
+			jwtAuthorizationRequest.addIdTokenClaim(new Claim(JwtClaimName.AUTHENTICATION_CONTEXT_CLASS_REFERENCE,
+					ClaimValue.createValueList(new String[] { ACR_VALUE })));
+			String authJwt = jwtAuthorizationRequest.getEncodedJwt();
+			authorizationRequest.setRequest(authJwt);
+			System.out.println("Request JWT: " + authJwt);
+
+			request = ResteasyClientBuilder.newClient()
+					.target(url.toString() + authorizePath + "?" + authorizationRequest.getQueryString()).request();
+			request.header("Authorization", "Basic " + authorizationRequest.getEncodedCredentials());
+			request.header("Accept", MediaType.TEXT_PLAIN);
+		} catch (Exception ex) {
+			fail(ex.getMessage(), ex);
+		}
+
+		Response response = request.get();
+		String entity = response.readEntity(String.class);
+
+		showResponse("requestParameterMethodES256X509CertStep2", response, entity);
+
+		assertEquals(response.getStatus(), 302, "Unexpected response code.");
+		assertNotNull(response.getLocation(), "Unexpected result: " + response.getLocation());
+
+		try {
+			URI uri = new URI(response.getLocation().toString());
+			assertNotNull(uri.getFragment(), "Query string is null");
+
+			Map<String, String> params = QueryStringDecoder.decode(uri.getFragment());
+
+			assertNotNull(params.get("access_token"), "The accessToken is null");
+			assertNotNull(params.get("scope"), "The scope is null");
+			assertNotNull(params.get("state"), "The state is null");
+		} catch (URISyntaxException e) {
+			fail(e.getMessage(), e);
+		}
+	}
+
+	@Parameters({ "registerPath", "redirectUris", "clientJwksUri" })
+	@Test
+	public void requestParameterMethodES384X509CertStep1(final String registerPath, final String redirectUris,
+			final String jwksUri) throws Exception {
+
+		Builder request = ResteasyClientBuilder.newClient().target(url.toString() + registerPath).request();
+
+		String registerRequestContent = null;
+		try {
+
+			List<ResponseType> responseTypes = Arrays.asList(ResponseType.TOKEN);
+
+			RegisterRequest registerRequest = new RegisterRequest(ApplicationType.WEB, "oxAuth test app",
+					StringUtils.spaceSeparatedToList(redirectUris));
+			registerRequest.setJwksUri(jwksUri);
+			registerRequest.setResponseTypes(responseTypes);
+			registerRequest.setRequestObjectSigningAlg(SignatureAlgorithm.ES384);
+			registerRequest.addCustomAttribute("oxAuthTrustedClient", "true");
+
+			registerRequestContent = ServerUtil.toPrettyJson(registerRequest.getJSONParameters());
+		} catch (JSONException e) {
+			fail(e.getMessage(), e);
+		}
+
+		Response response = request.post(Entity.json(registerRequestContent));
+		String entity = response.readEntity(String.class);
+
+		showResponse("requestParameterMethodES384X509CertStep1", response, entity);
+
+		ResponseAsserter responseAsserter = ResponseAsserter.of(response.getStatus(), entity);
+		responseAsserter.assertRegisterResponse();
+		clientId5 = responseAsserter.getJson().getJson().getString(RegisterResponseParam.CLIENT_ID.toString());
+	}
+
+	@Parameters({ "authorizePath", "userId", "userSecret", "redirectUri", "ES384_keyId", "dnName", "keyStoreFile",
+			"keyStoreSecret" })
+	@Test(dependsOnMethods = "requestParameterMethodES384X509CertStep1")
+	public void requestParameterMethodES384X509CertStep2(final String authorizePath, final String userId,
+			final String userSecret, final String redirectUri, final String keyId, final String dnName,
+			final String keyStoreFile, final String keyStoreSecret) throws Exception {
+		Builder request = null;
+		try {
+			OxAuthCryptoProvider cryptoProvider = new OxAuthCryptoProvider(keyStoreFile, keyStoreSecret, dnName);
+
+			List<ResponseType> responseTypes = Arrays.asList(ResponseType.TOKEN);
+			List<String> scopes = Arrays.asList("openid");
+			String nonce = UUID.randomUUID().toString();
+			String state = UUID.randomUUID().toString();
+
+			AuthorizationRequest authorizationRequest = new AuthorizationRequest(responseTypes, clientId5, scopes,
+					redirectUri, nonce);
+			authorizationRequest.setState(state);
+			authorizationRequest.getPrompts().add(Prompt.NONE);
+			authorizationRequest.setAuthUsername(userId);
+			authorizationRequest.setAuthPassword(userSecret);
+
+			JwtAuthorizationRequest jwtAuthorizationRequest = new JwtAuthorizationRequest(authorizationRequest,
+					SignatureAlgorithm.ES384, cryptoProvider);
+			jwtAuthorizationRequest.setKeyId(keyId);
+			jwtAuthorizationRequest.addUserInfoClaim(new Claim(JwtClaimName.NAME, ClaimValue.createNull()));
+			jwtAuthorizationRequest
+					.addUserInfoClaim(new Claim(JwtClaimName.NICKNAME, ClaimValue.createEssential(false)));
+			jwtAuthorizationRequest.addUserInfoClaim(new Claim(JwtClaimName.EMAIL, ClaimValue.createNull()));
+			jwtAuthorizationRequest.addUserInfoClaim(new Claim(JwtClaimName.EMAIL_VERIFIED, ClaimValue.createNull()));
+			jwtAuthorizationRequest
+					.addUserInfoClaim(new Claim(JwtClaimName.PICTURE, ClaimValue.createEssential(false)));
+			jwtAuthorizationRequest
+					.addIdTokenClaim(new Claim(JwtClaimName.AUTHENTICATION_TIME, ClaimValue.createNull()));
+			jwtAuthorizationRequest.addIdTokenClaim(new Claim(JwtClaimName.AUTHENTICATION_CONTEXT_CLASS_REFERENCE,
+					ClaimValue.createValueList(new String[] { ACR_VALUE })));
+			String authJwt = jwtAuthorizationRequest.getEncodedJwt();
+			authorizationRequest.setRequest(authJwt);
+			System.out.println("Request JWT: " + authJwt);
+
+			request = ResteasyClientBuilder.newClient()
+					.target(url.toString() + authorizePath + "?" + authorizationRequest.getQueryString()).request();
+			request.header("Authorization", "Basic " + authorizationRequest.getEncodedCredentials());
+			request.header("Accept", MediaType.TEXT_PLAIN);
+		} catch (Exception ex) {
+			fail(ex.getMessage(), ex);
+		}
+
+		Response response = request.get();
+		String entity = response.readEntity(String.class);
+
+		showResponse("requestParameterMethodES384X509CertStep2", response, entity);
+
+		assertEquals(response.getStatus(), 302, "Unexpected response code.");
+		assertNotNull(response.getLocation(), "Unexpected result: " + response.getLocation());
+
+		try {
+			URI uri = new URI(response.getLocation().toString());
+			assertNotNull(uri.getFragment(), "Query string is null");
+
+			Map<String, String> params = QueryStringDecoder.decode(uri.getFragment());
+
+			assertNotNull(params.get("access_token"), "The accessToken is null");
+			assertNotNull(params.get("scope"), "The scope is null");
+			assertNotNull(params.get("state"), "The state is null");
+		} catch (URISyntaxException e) {
+			fail(e.getMessage(), e);
+		}
+	}
+
+	@Parameters({ "registerPath", "redirectUris", "clientJwksUri" })
+	@Test
+	public void requestParameterMethodES512X509CertStep1(final String registerPath, final String redirectUris,
+			final String jwkUri) throws Exception {
+
+		Builder request = ResteasyClientBuilder.newClient().target(url.toString() + registerPath).request();
+
+		String registerRequestContent = null;
+		try {
+
+			List<ResponseType> responseTypes = Arrays.asList(ResponseType.TOKEN);
+
+			RegisterRequest registerRequest = new RegisterRequest(ApplicationType.WEB, "oxAuth test app",
+					StringUtils.spaceSeparatedToList(redirectUris));
+			registerRequest.setJwksUri(jwkUri);
+			registerRequest.setResponseTypes(responseTypes);
+			registerRequest.setRequestObjectSigningAlg(SignatureAlgorithm.ES512);
+			registerRequest.addCustomAttribute("oxAuthTrustedClient", "true");
+
+			registerRequestContent = ServerUtil.toPrettyJson(registerRequest.getJSONParameters());
+		} catch (JSONException e) {
+			fail(e.getMessage(), e);
+		}
+
+		Response response = request.post(Entity.json(registerRequestContent));
+		String entity = response.readEntity(String.class);
+
+		showResponse("requestParameterMethodES512X509CertStep1", response, entity);
+
+		ResponseAsserter responseAsserter = ResponseAsserter.of(response.getStatus(), entity);
+		responseAsserter.assertRegisterResponse();
+		clientId6 = responseAsserter.getJson().getJson().getString(RegisterResponseParam.CLIENT_ID.toString());
+	}
+
+	@Parameters({ "authorizePath", "userId", "userSecret", "redirectUri", "ES512_keyId", "dnName", "keyStoreFile",
+			"keyStoreSecret" })
+	@Test(dependsOnMethods = "requestParameterMethodES512X509CertStep1")
+	public void requestParameterMethodES512X509CertStep2(final String authorizePath, final String userId,
+			final String userSecret, final String redirectUri, final String keyId, final String dnName,
+			final String keyStoreFile, final String keyStoreSecret) throws Exception {
+		Builder request = null;
+		try {
+			OxAuthCryptoProvider cryptoProvider = new OxAuthCryptoProvider(keyStoreFile, keyStoreSecret, dnName);
+
+			List<ResponseType> responseTypes = Arrays.asList(ResponseType.TOKEN);
+			List<String> scopes = Arrays.asList("openid");
+			String nonce = UUID.randomUUID().toString();
+			String state = UUID.randomUUID().toString();
+
+			AuthorizationRequest authorizationRequest = new AuthorizationRequest(responseTypes, clientId6, scopes,
+					redirectUri, nonce);
+			authorizationRequest.setState(state);
+			authorizationRequest.getPrompts().add(Prompt.NONE);
+			authorizationRequest.setAuthUsername(userId);
+			authorizationRequest.setAuthPassword(userSecret);
+
+			JwtAuthorizationRequest jwtAuthorizationRequest = new JwtAuthorizationRequest(authorizationRequest,
+					SignatureAlgorithm.ES512, cryptoProvider);
+			jwtAuthorizationRequest.setKeyId(keyId);
+			jwtAuthorizationRequest.addUserInfoClaim(new Claim(JwtClaimName.NAME, ClaimValue.createNull()));
+			jwtAuthorizationRequest
+					.addUserInfoClaim(new Claim(JwtClaimName.NICKNAME, ClaimValue.createEssential(false)));
+			jwtAuthorizationRequest.addUserInfoClaim(new Claim(JwtClaimName.EMAIL, ClaimValue.createNull()));
+			jwtAuthorizationRequest.addUserInfoClaim(new Claim(JwtClaimName.EMAIL_VERIFIED, ClaimValue.createNull()));
+			jwtAuthorizationRequest
+					.addUserInfoClaim(new Claim(JwtClaimName.PICTURE, ClaimValue.createEssential(false)));
+			jwtAuthorizationRequest
+					.addIdTokenClaim(new Claim(JwtClaimName.AUTHENTICATION_TIME, ClaimValue.createNull()));
+			jwtAuthorizationRequest.addIdTokenClaim(new Claim(JwtClaimName.AUTHENTICATION_CONTEXT_CLASS_REFERENCE,
+					ClaimValue.createValueList(new String[] { ACR_VALUE })));
+			String authJwt = jwtAuthorizationRequest.getEncodedJwt();
+			authorizationRequest.setRequest(authJwt);
+			System.out.println("Request JWT: " + authJwt);
+
+			request = ResteasyClientBuilder.newClient()
+					.target(url.toString() + authorizePath + "?" + authorizationRequest.getQueryString()).request();
+			request.header("Authorization", "Basic " + authorizationRequest.getEncodedCredentials());
+			request.header("Accept", MediaType.TEXT_PLAIN);
+		} catch (Exception ex) {
+			fail(ex.getMessage(), ex);
+		}
+
+		Response response = request.get();
+		String entity = response.readEntity(String.class);
+
+		showResponse("requestParameterMethodES512X509CertStep2", response, entity);
+
+		assertEquals(response.getStatus(), 302, "Unexpected response code.");
+		assertNotNull(response.getLocation(), "Unexpected result: " + response.getLocation());
+
+		try {
+			URI uri = new URI(response.getLocation().toString());
+			assertNotNull(uri.getFragment(), "Query string is null");
+
+			Map<String, String> params = QueryStringDecoder.decode(uri.getFragment());
+
+			assertNotNull(params.get("access_token"), "The accessToken is null");
+			assertNotNull(params.get("scope"), "The scope is null");
+			assertNotNull(params.get("state"), "The state is null");
+		} catch (URISyntaxException e) {
+			fail(e.getMessage(), e);
+		}
+	}
+
+}
\ No newline at end of file
diff --git a/oxAuth/Server/src/test/java/org/gluu/oxauth/ws/rs/OpenIDRequestObjectWithHSAlgEmbeddedTest.java b/oxAuth/Server/src/test/java/org/gluu/oxauth/ws/rs/OpenIDRequestObjectWithHSAlgEmbeddedTest.java
new file mode 100644
index 00000000..30b08119
--- /dev/null
+++ b/oxAuth/Server/src/test/java/org/gluu/oxauth/ws/rs/OpenIDRequestObjectWithHSAlgEmbeddedTest.java
@@ -0,0 +1,388 @@
+/*
+ * oxAuth is available under the MIT License (2008). See http://opensource.org/licenses/MIT for full text.
+ *
+ * Copyright (c) 2014, Gluu
+ */
+
+package org.gluu.oxauth.ws.rs;
+
+import org.gluu.oxauth.BaseTest;
+import org.gluu.oxauth.client.AuthorizationRequest;
+import org.gluu.oxauth.client.QueryStringDecoder;
+import org.gluu.oxauth.client.RegisterRequest;
+import org.gluu.oxauth.client.model.authorize.Claim;
+import org.gluu.oxauth.client.model.authorize.ClaimValue;
+import org.gluu.oxauth.client.model.authorize.JwtAuthorizationRequest;
+import org.gluu.oxauth.model.common.Prompt;
+import org.gluu.oxauth.model.common.ResponseType;
+import org.gluu.oxauth.model.crypto.OxAuthCryptoProvider;
+import org.gluu.oxauth.model.crypto.signature.SignatureAlgorithm;
+import org.gluu.oxauth.model.jwt.JwtClaimName;
+import org.gluu.oxauth.model.register.ApplicationType;
+import org.gluu.oxauth.model.register.RegisterResponseParam;
+import org.gluu.oxauth.model.util.StringUtils;
+import org.gluu.oxauth.util.ServerUtil;
+import org.jboss.arquillian.test.api.ArquillianResource;
+import org.jboss.resteasy.client.jaxrs.ResteasyClientBuilder;
+import org.json.JSONException;
+import org.json.JSONObject;
+import org.testng.annotations.Parameters;
+import org.testng.annotations.Test;
+
+import javax.ws.rs.client.Entity;
+import javax.ws.rs.client.Invocation.Builder;
+import javax.ws.rs.core.MediaType;
+import javax.ws.rs.core.Response;
+import java.net.URI;
+import java.net.URISyntaxException;
+import java.util.Arrays;
+import java.util.List;
+import java.util.Map;
+import java.util.UUID;
+
+import static org.gluu.oxauth.model.register.RegisterResponseParam.*;
+import static org.testng.Assert.*;
+
+/**
+ * Functional tests for OpenID Request Object (embedded)
+ *
+ * @author Javier Rojas Blum
+ * @version June 15, 2016
+ */
+public class OpenIDRequestObjectWithHSAlgEmbeddedTest extends BaseTest {
+
+	@ArquillianResource
+	private URI url;
+
+	private static String clientId1;
+	private static String clientSecret1;
+	private static String clientId2;
+	private static String clientSecret2;
+	private static String clientId3;
+	private static String clientSecret3;
+
+	@Parameters({ "registerPath", "redirectUris" })
+	@Test
+	public void requestParameterMethodHS256Step1(final String registerPath, final String redirectUris)
+			throws Exception {
+		Builder request = ResteasyClientBuilder.newClient().target(url.toString() + registerPath).request();
+
+		String registerRequestContent = null;
+		try {
+			List<ResponseType> responseTypes = Arrays.asList(ResponseType.TOKEN);
+
+			RegisterRequest registerRequest = new RegisterRequest(ApplicationType.WEB, "oxAuth test app",
+					StringUtils.spaceSeparatedToList(redirectUris));
+			registerRequest.setResponseTypes(responseTypes);
+			registerRequest.setRequestObjectSigningAlg(SignatureAlgorithm.HS256);
+			registerRequest.addCustomAttribute("oxAuthTrustedClient", "true");
+
+			registerRequestContent = ServerUtil.toPrettyJson(registerRequest.getJSONParameters());
+		} catch (JSONException e) {
+			fail(e.getMessage(), e);
+		}
+
+		Response response = request.post(Entity.json(registerRequestContent));
+		String entity = response.readEntity(String.class);
+
+		showResponse("requestParameterMethodHS256Step1", response, entity);
+
+		assertEquals(response.getStatus(), 200, "Unexpected response code. " + entity);
+		assertNotNull(entity, "Unexpected result: " + entity);
+		try {
+			JSONObject jsonObj = new JSONObject(entity);
+			assertTrue(jsonObj.has(RegisterResponseParam.CLIENT_ID.toString()));
+			assertTrue(jsonObj.has(CLIENT_SECRET.toString()));
+			assertTrue(jsonObj.has(REGISTRATION_ACCESS_TOKEN.toString()));
+			assertTrue(jsonObj.has(REGISTRATION_CLIENT_URI.toString()));
+			assertTrue(jsonObj.has(CLIENT_ID_ISSUED_AT.toString()));
+			assertTrue(jsonObj.has(CLIENT_SECRET_EXPIRES_AT.toString()));
+
+			clientId1 = jsonObj.getString(RegisterResponseParam.CLIENT_ID.toString());
+			clientSecret1 = jsonObj.getString(CLIENT_SECRET.toString());
+		} catch (JSONException e) {
+			fail(e.getMessage(), e);
+		}
+	}
+
+	@Parameters({ "authorizePath", "userId", "userSecret", "redirectUri" })
+	@Test(dependsOnMethods = "requestParameterMethodHS256Step1")
+	public void requestParameterMethodHS256Step2(final String authorizePath, final String userId,
+			final String userSecret, final String redirectUri) throws Exception {
+		Builder request = null;
+		try {
+			List<ResponseType> responseTypes = Arrays.asList(ResponseType.TOKEN);
+			List<String> scopes = Arrays.asList("openid");
+			String state = "STATE0";
+			String nonce = UUID.randomUUID().toString();
+
+			AuthorizationRequest authorizationRequest = new AuthorizationRequest(responseTypes, clientId1, scopes,
+					redirectUri, nonce);
+			authorizationRequest.setState(state);
+			authorizationRequest.getPrompts().add(Prompt.NONE);
+			authorizationRequest.setAuthUsername(userId);
+			authorizationRequest.setAuthPassword(userSecret);
+
+			OxAuthCryptoProvider cryptoProvider = new OxAuthCryptoProvider();
+
+			JwtAuthorizationRequest jwtAuthorizationRequest = new JwtAuthorizationRequest(authorizationRequest,
+					SignatureAlgorithm.HS256, clientSecret1, cryptoProvider);
+			jwtAuthorizationRequest
+					.addIdTokenClaim(new Claim(JwtClaimName.SUBJECT_IDENTIFIER, ClaimValue.createSingleValue(userId)));
+			String authJwt = jwtAuthorizationRequest.getEncodedJwt();
+			authorizationRequest.setRequest(authJwt);
+			System.out.println("Request JWT: " + authJwt);
+
+			request = ResteasyClientBuilder.newClient()
+					.target(url.toString() + authorizePath + "?" + authorizationRequest.getQueryString()).request();
+			request.header("Authorization", "Basic " + authorizationRequest.getEncodedCredentials());
+			request.header("Accept", MediaType.TEXT_PLAIN);
+		} catch (Exception e) {
+			fail(e.getMessage(), e);
+		}
+
+		Response response = request.get();
+		String entity = response.readEntity(String.class);
+
+		showResponse("requestParameterMethodHS256Step2", response, entity);
+
+		assertEquals(response.getStatus(), 302, "Unexpected response code.");
+		assertNotNull(response.getLocation(), "Unexpected result: " + response.getLocation());
+
+		try {
+			URI uri = new URI(response.getLocation().toString());
+			assertNotNull(uri.getFragment(), "Query string is null");
+
+			Map<String, String> params = QueryStringDecoder.decode(uri.getFragment());
+
+			assertNotNull(params.get("access_token"), "The accessToken is null");
+			assertNotNull(params.get("scope"), "The scope is null");
+			assertNotNull(params.get("state"), "The state is null");
+		} catch (URISyntaxException e) {
+			fail(e.getMessage(), e);
+		}
+	}
+
+	@Parameters({ "registerPath", "redirectUris" })
+	@Test
+	public void requestParameterMethodHS384Step1(final String registerPath, final String redirectUris)
+			throws Exception {
+		Builder request = ResteasyClientBuilder.newClient().target(url.toString() + registerPath).request();
+
+		String registerRequestContent = null;
+		try {
+			List<ResponseType> responseTypes = Arrays.asList(ResponseType.TOKEN);
+
+			RegisterRequest registerRequest = new RegisterRequest(ApplicationType.WEB, "oxAuth test app",
+					StringUtils.spaceSeparatedToList(redirectUris));
+			registerRequest.setResponseTypes(responseTypes);
+			registerRequest.setRequestObjectSigningAlg(SignatureAlgorithm.HS384);
+			registerRequest.addCustomAttribute("oxAuthTrustedClient", "true");
+
+			registerRequestContent = ServerUtil.toPrettyJson(registerRequest.getJSONParameters());
+		} catch (JSONException e) {
+			fail(e.getMessage(), e);
+		}
+
+		Response response = request.post(Entity.json(registerRequestContent));
+		String entity = response.readEntity(String.class);
+
+		showResponse("requestParameterMethodHS384Step1", response, entity);
+
+		assertEquals(response.getStatus(), 200, "Unexpected response code. " + entity);
+		assertNotNull(entity, "Unexpected result: " + entity);
+		try {
+			JSONObject jsonObj = new JSONObject(entity);
+			assertTrue(jsonObj.has(RegisterResponseParam.CLIENT_ID.toString()));
+			assertTrue(jsonObj.has(CLIENT_SECRET.toString()));
+			assertTrue(jsonObj.has(REGISTRATION_ACCESS_TOKEN.toString()));
+			assertTrue(jsonObj.has(REGISTRATION_CLIENT_URI.toString()));
+			assertTrue(jsonObj.has(CLIENT_ID_ISSUED_AT.toString()));
+			assertTrue(jsonObj.has(CLIENT_SECRET_EXPIRES_AT.toString()));
+
+			clientId2 = jsonObj.getString(RegisterResponseParam.CLIENT_ID.toString());
+			clientSecret2 = jsonObj.getString(CLIENT_SECRET.toString());
+		} catch (JSONException e) {
+			fail(e.getMessage(), e);
+		}
+	}
+
+	@Parameters({ "authorizePath", "userId", "userSecret", "redirectUri" })
+	@Test(dependsOnMethods = "requestParameterMethodHS384Step1")
+	public void requestParameterMethodHS384Step2(final String authorizePath, final String userId,
+			final String userSecret, final String redirectUri) throws Exception {
+		Builder request = null;
+		try {
+			List<ResponseType> responseTypes = Arrays.asList(ResponseType.TOKEN);
+			List<String> scopes = Arrays.asList("openid");
+			String nonce = UUID.randomUUID().toString();
+			String state = UUID.randomUUID().toString();
+
+			AuthorizationRequest authorizationRequest = new AuthorizationRequest(responseTypes, clientId2, scopes,
+					redirectUri, nonce);
+			authorizationRequest.setState(state);
+			authorizationRequest.getPrompts().add(Prompt.NONE);
+			authorizationRequest.setAuthUsername(userId);
+			authorizationRequest.setAuthPassword(userSecret);
+
+			OxAuthCryptoProvider cryptoProvider = new OxAuthCryptoProvider();
+
+			JwtAuthorizationRequest jwtAuthorizationRequest = new JwtAuthorizationRequest(authorizationRequest,
+					SignatureAlgorithm.HS384, clientSecret2, cryptoProvider);
+			jwtAuthorizationRequest.addUserInfoClaim(new Claim(JwtClaimName.NAME, ClaimValue.createNull()));
+			jwtAuthorizationRequest
+					.addUserInfoClaim(new Claim(JwtClaimName.NICKNAME, ClaimValue.createEssential(false)));
+			jwtAuthorizationRequest.addUserInfoClaim(new Claim(JwtClaimName.EMAIL, ClaimValue.createNull()));
+			jwtAuthorizationRequest.addUserInfoClaim(new Claim(JwtClaimName.EMAIL_VERIFIED, ClaimValue.createNull()));
+			jwtAuthorizationRequest
+					.addUserInfoClaim(new Claim(JwtClaimName.PICTURE, ClaimValue.createEssential(false)));
+			jwtAuthorizationRequest
+					.addIdTokenClaim(new Claim(JwtClaimName.AUTHENTICATION_TIME, ClaimValue.createNull()));
+			jwtAuthorizationRequest.addIdTokenClaim(new Claim(JwtClaimName.AUTHENTICATION_CONTEXT_CLASS_REFERENCE,
+					ClaimValue.createValueList(new String[] { "basic" })));
+			String authJwt = jwtAuthorizationRequest.getEncodedJwt();
+			authorizationRequest.setRequest(authJwt);
+			System.out.println("Request JWT: " + authJwt);
+
+			request = ResteasyClientBuilder.newClient()
+					.target(url.toString() + authorizePath + "?" + authorizationRequest.getQueryString()).request();
+			request.header("Authorization", "Basic " + authorizationRequest.getEncodedCredentials());
+			request.header("Accept", MediaType.TEXT_PLAIN);
+		} catch (Exception e) {
+			fail(e.getMessage(), e);
+		}
+
+		Response response = request.get();
+		String entity = response.readEntity(String.class);
+
+		showResponse("requestParameterMethodHS384Step2", response, entity);
+
+		assertEquals(response.getStatus(), 302, "Unexpected response code.");
+		assertNotNull(response.getLocation(), "Unexpected result: " + response.getLocation());
+
+		try {
+			URI uri = new URI(response.getLocation().toString());
+			assertNotNull(uri.getFragment(), "Query string is null");
+
+			Map<String, String> params = QueryStringDecoder.decode(uri.getFragment());
+
+			assertNotNull(params.get("access_token"), "The accessToken is null");
+			assertNotNull(params.get("scope"), "The scope is null");
+			assertNotNull(params.get("state"), "The state is null");
+		} catch (URISyntaxException e) {
+			fail(e.getMessage(), e);
+		}
+	}
+
+	@Parameters({ "registerPath", "redirectUris" })
+	@Test
+	public void requestParameterMethodHS512Step1(final String registerPath, final String redirectUris)
+			throws Exception {
+		Builder request = ResteasyClientBuilder.newClient().target(url.toString() + registerPath).request();
+
+		String registerRequestContent = null;
+		try {
+			List<ResponseType> responseTypes = Arrays.asList(ResponseType.TOKEN);
+
+			RegisterRequest registerRequest = new RegisterRequest(ApplicationType.WEB, "oxAuth test app",
+					StringUtils.spaceSeparatedToList(redirectUris));
+			registerRequest.setResponseTypes(responseTypes);
+			registerRequest.setRequestObjectSigningAlg(SignatureAlgorithm.HS512);
+			registerRequest.addCustomAttribute("oxAuthTrustedClient", "true");
+
+			registerRequestContent = ServerUtil.toPrettyJson(registerRequest.getJSONParameters());
+		} catch (JSONException e) {
+			fail(e.getMessage(), e);
+		}
+
+		Response response = request.post(Entity.json(registerRequestContent));
+		String entity = response.readEntity(String.class);
+
+		showResponse("requestParameterMethodHS512Step1", response, entity);
+
+		assertEquals(response.getStatus(), 200, "Unexpected response code. " + entity);
+		assertNotNull(entity, "Unexpected result: " + entity);
+		try {
+			JSONObject jsonObj = new JSONObject(entity);
+			assertTrue(jsonObj.has(RegisterResponseParam.CLIENT_ID.toString()));
+			assertTrue(jsonObj.has(CLIENT_SECRET.toString()));
+			assertTrue(jsonObj.has(REGISTRATION_ACCESS_TOKEN.toString()));
+			assertTrue(jsonObj.has(REGISTRATION_CLIENT_URI.toString()));
+			assertTrue(jsonObj.has(CLIENT_ID_ISSUED_AT.toString()));
+			assertTrue(jsonObj.has(CLIENT_SECRET_EXPIRES_AT.toString()));
+
+			clientId3 = jsonObj.getString(RegisterResponseParam.CLIENT_ID.toString());
+			clientSecret3 = jsonObj.getString(CLIENT_SECRET.toString());
+		} catch (JSONException e) {
+			fail(e.getMessage(), e);
+		}
+	}
+
+	@Parameters({ "authorizePath", "userId", "userSecret", "redirectUri" })
+	@Test(dependsOnMethods = "requestParameterMethodHS512Step1")
+	public void requestParameterMethodHS512Step2(final String authorizePath, final String userId,
+			final String userSecret, final String redirectUri) throws Exception {
+		Builder request = null;
+		try {
+			List<ResponseType> responseTypes = Arrays.asList(ResponseType.TOKEN);
+			List<String> scopes = Arrays.asList("openid");
+			String nonce = UUID.randomUUID().toString();
+			String state = UUID.randomUUID().toString();
+
+			AuthorizationRequest authorizationRequest = new AuthorizationRequest(responseTypes, clientId3, scopes,
+					redirectUri, nonce);
+			authorizationRequest.setState(state);
+			authorizationRequest.getPrompts().add(Prompt.NONE);
+			authorizationRequest.setAuthUsername(userId);
+			authorizationRequest.setAuthPassword(userSecret);
+
+			OxAuthCryptoProvider cryptoProvider = new OxAuthCryptoProvider();
+
+			JwtAuthorizationRequest jwtAuthorizationRequest = new JwtAuthorizationRequest(authorizationRequest,
+					SignatureAlgorithm.HS512, clientSecret3, cryptoProvider);
+			jwtAuthorizationRequest.addUserInfoClaim(new Claim(JwtClaimName.NAME, ClaimValue.createNull()));
+			jwtAuthorizationRequest
+					.addUserInfoClaim(new Claim(JwtClaimName.NICKNAME, ClaimValue.createEssential(false)));
+			jwtAuthorizationRequest.addUserInfoClaim(new Claim(JwtClaimName.EMAIL, ClaimValue.createNull()));
+			jwtAuthorizationRequest.addUserInfoClaim(new Claim(JwtClaimName.EMAIL_VERIFIED, ClaimValue.createNull()));
+			jwtAuthorizationRequest
+					.addUserInfoClaim(new Claim(JwtClaimName.PICTURE, ClaimValue.createEssential(false)));
+			jwtAuthorizationRequest
+					.addIdTokenClaim(new Claim(JwtClaimName.AUTHENTICATION_TIME, ClaimValue.createNull()));
+			jwtAuthorizationRequest.addIdTokenClaim(new Claim(JwtClaimName.AUTHENTICATION_CONTEXT_CLASS_REFERENCE,
+					ClaimValue.createValueList(new String[] { "basic" })));
+			String authJwt = jwtAuthorizationRequest.getEncodedJwt();
+			authorizationRequest.setRequest(authJwt);
+			System.out.println("Request JWT: " + authJwt);
+
+			request = ResteasyClientBuilder.newClient()
+					.target(url.toString() + authorizePath + "?" + authorizationRequest.getQueryString()).request();
+			request.header("Authorization", "Basic " + authorizationRequest.getEncodedCredentials());
+			request.header("Accept", MediaType.TEXT_PLAIN);
+		} catch (Exception e) {
+			fail(e.getMessage(), e);
+		}
+
+		Response response = request.get();
+		String entity = response.readEntity(String.class);
+
+		showResponse("requestParameterMethodHS512Step2", response, entity);
+
+		assertEquals(response.getStatus(), 302, "Unexpected response code.");
+		assertNotNull(response.getLocation(), "Unexpected result: " + response.getLocation());
+
+		try {
+			URI uri = new URI(response.getLocation().toString());
+			assertNotNull(uri.getFragment(), "Query string is null");
+
+			Map<String, String> params = QueryStringDecoder.decode(uri.getFragment());
+
+			assertNotNull(params.get("access_token"), "The accessToken is null");
+			assertNotNull(params.get("scope"), "The scope is null");
+			assertNotNull(params.get("state"), "The state is null");
+		} catch (URISyntaxException e) {
+			fail(e.getMessage(), e);
+		}
+	}
+
+}
\ No newline at end of file
diff --git a/oxAuth/Server/src/test/java/org/gluu/oxauth/ws/rs/OpenIDRequestObjectWithRSAlgEmbeddedTest.java b/oxAuth/Server/src/test/java/org/gluu/oxauth/ws/rs/OpenIDRequestObjectWithRSAlgEmbeddedTest.java
new file mode 100644
index 00000000..67b53de3
--- /dev/null
+++ b/oxAuth/Server/src/test/java/org/gluu/oxauth/ws/rs/OpenIDRequestObjectWithRSAlgEmbeddedTest.java
@@ -0,0 +1,689 @@
+/*
+ * oxAuth is available under the MIT License (2008). See http://opensource.org/licenses/MIT for full text.
+ *
+ * Copyright (c) 2014, Gluu
+ */
+
+package org.gluu.oxauth.ws.rs;
+
+import org.gluu.oxauth.BaseTest;
+import org.gluu.oxauth.client.AuthorizationRequest;
+import org.gluu.oxauth.client.QueryStringDecoder;
+import org.gluu.oxauth.client.RegisterRequest;
+import org.gluu.oxauth.client.ResponseAsserter;
+import org.gluu.oxauth.client.model.authorize.Claim;
+import org.gluu.oxauth.client.model.authorize.ClaimValue;
+import org.gluu.oxauth.client.model.authorize.JwtAuthorizationRequest;
+import org.gluu.oxauth.model.common.Prompt;
+import org.gluu.oxauth.model.common.ResponseType;
+import org.gluu.oxauth.model.crypto.OxAuthCryptoProvider;
+import org.gluu.oxauth.model.crypto.signature.SignatureAlgorithm;
+import org.gluu.oxauth.model.jwt.JwtClaimName;
+import org.gluu.oxauth.model.register.ApplicationType;
+import org.gluu.oxauth.model.register.RegisterResponseParam;
+import org.gluu.oxauth.model.util.StringUtils;
+import org.gluu.oxauth.util.ServerUtil;
+import org.jboss.arquillian.test.api.ArquillianResource;
+import org.jboss.resteasy.client.jaxrs.ResteasyClientBuilder;
+import org.json.JSONException;
+import org.testng.annotations.Parameters;
+import org.testng.annotations.Test;
+
+import javax.ws.rs.client.Entity;
+import javax.ws.rs.client.Invocation.Builder;
+import javax.ws.rs.core.MediaType;
+import javax.ws.rs.core.Response;
+import java.net.URI;
+import java.net.URISyntaxException;
+import java.util.Arrays;
+import java.util.List;
+import java.util.Map;
+import java.util.UUID;
+
+import static org.testng.Assert.*;
+
+/**
+ * Functional tests for OpenID Request Object (embedded)
+ *
+ * @author Javier Rojas Blum
+ * @version June 15, 2016
+ */
+public class OpenIDRequestObjectWithRSAlgEmbeddedTest extends BaseTest {
+
+    public static final String ACR_VALUE = "basic";
+    @ArquillianResource
+	private URI url;
+
+	private static String clientId1;
+	private static String clientId2;
+	private static String clientId3;
+	private static String clientId4;
+	private static String clientId5;
+	private static String clientId6;
+
+	@Parameters({ "registerPath", "redirectUris", "clientJwksUri" })
+	@Test
+	public void requestParameterMethodRS256Step1(final String registerPath, final String redirectUris,
+			final String jwksUri) throws Exception {
+		Builder request = ResteasyClientBuilder.newClient().target(url.toString() + registerPath).request();
+
+		String registerRequestContent = null;
+		try {
+			List<ResponseType> responseTypes = Arrays.asList(ResponseType.TOKEN);
+
+			RegisterRequest registerRequest = new RegisterRequest(ApplicationType.WEB, "oxAuth test app",
+					StringUtils.spaceSeparatedToList(redirectUris));
+			registerRequest.setJwksUri(jwksUri);
+			registerRequest.setResponseTypes(responseTypes);
+			registerRequest.setRequestObjectSigningAlg(SignatureAlgorithm.RS256);
+			registerRequest.addCustomAttribute("oxAuthTrustedClient", "true");
+
+			registerRequestContent = ServerUtil.toPrettyJson(registerRequest.getJSONParameters());
+		} catch (JSONException e) {
+			e.printStackTrace();
+			fail(e.getMessage());
+		}
+
+		Response response = request.post(Entity.json(registerRequestContent));
+		String entity = response.readEntity(String.class);
+
+		showResponse("requestParameterMethodRS256Step1", response, entity);
+
+		ResponseAsserter responseAsserter = ResponseAsserter.of(response.getStatus(), entity);
+		responseAsserter.assertRegisterResponse();
+		clientId1 = responseAsserter.getJson().getJson().getString(RegisterResponseParam.CLIENT_ID.toString());
+	}
+
+	@Parameters({ "authorizePath", "userId", "userSecret", "redirectUri", "RS256_keyId", "dnName", "keyStoreFile",
+			"keyStoreSecret" })
+	@Test(dependsOnMethods = "requestParameterMethodRS256Step1")
+	public void requestParameterMethodRS256Step2(final String authorizePath, final String userId,
+			final String userSecret, final String redirectUri, final String keyId, final String dnName,
+			final String keyStoreFile, final String keyStoreSecret) throws Exception {
+		Builder request = null;
+		try {
+			OxAuthCryptoProvider cryptoProvider = new OxAuthCryptoProvider(keyStoreFile, keyStoreSecret, dnName);
+
+			List<ResponseType> responseTypes = Arrays.asList(ResponseType.TOKEN);
+			List<String> scopes = Arrays.asList("openid");
+			String nonce = UUID.randomUUID().toString();
+			String state = UUID.randomUUID().toString();
+
+			AuthorizationRequest authorizationRequest = new AuthorizationRequest(responseTypes, clientId1, scopes,
+					redirectUri, nonce);
+			authorizationRequest.setState(state);
+			authorizationRequest.getPrompts().add(Prompt.NONE);
+			authorizationRequest.setAuthUsername(userId);
+			authorizationRequest.setAuthPassword(userSecret);
+
+			JwtAuthorizationRequest jwtAuthorizationRequest = new JwtAuthorizationRequest(authorizationRequest,
+					SignatureAlgorithm.RS256, cryptoProvider);
+			jwtAuthorizationRequest.setKeyId(keyId);
+			jwtAuthorizationRequest.addUserInfoClaim(new Claim(JwtClaimName.NAME, ClaimValue.createNull()));
+			jwtAuthorizationRequest
+					.addUserInfoClaim(new Claim(JwtClaimName.NICKNAME, ClaimValue.createEssential(false)));
+			jwtAuthorizationRequest.addUserInfoClaim(new Claim(JwtClaimName.EMAIL, ClaimValue.createNull()));
+			jwtAuthorizationRequest.addUserInfoClaim(new Claim(JwtClaimName.EMAIL_VERIFIED, ClaimValue.createNull()));
+			jwtAuthorizationRequest
+					.addUserInfoClaim(new Claim(JwtClaimName.PICTURE, ClaimValue.createEssential(false)));
+			jwtAuthorizationRequest
+					.addIdTokenClaim(new Claim(JwtClaimName.AUTHENTICATION_TIME, ClaimValue.createNull()));
+			jwtAuthorizationRequest.addIdTokenClaim(new Claim(JwtClaimName.AUTHENTICATION_CONTEXT_CLASS_REFERENCE,
+					ClaimValue.createValueList(new String[] {ACR_VALUE})));
+			String authJwt = jwtAuthorizationRequest.getEncodedJwt();
+			authorizationRequest.setRequest(authJwt);
+			System.out.println("Request JWT: " + authJwt);
+
+			request = ResteasyClientBuilder.newClient()
+					.target(url.toString() + authorizePath + "?" + authorizationRequest.getQueryString()).request();
+			request.header("Authorization", "Basic " + authorizationRequest.getEncodedCredentials());
+			request.header("Accept", MediaType.TEXT_PLAIN);
+		} catch (Exception e) {
+			fail(e.getMessage(), e);
+		}
+
+		Response response = request.get();
+
+		String entity = response.readEntity(String.class);
+		showResponse("requestParameterMethodRS256Step2", response, entity);
+
+		assertEquals(response.getStatus(), 302, "Unexpected response code.");
+		assertNotNull(response.getLocation(), "Unexpected result: " + response.getLocation());
+
+		try {
+			URI uri = new URI(response.getLocation().toString());
+			assertNotNull(uri.getFragment(), "Query string is null");
+
+			Map<String, String> params = QueryStringDecoder.decode(uri.getFragment());
+
+			assertNotNull(params.get("access_token"), "The accessToken is null");
+			assertNotNull(params.get("scope"), "The scope is null");
+			assertNotNull(params.get("state"), "The state is null");
+		} catch (URISyntaxException e) {
+			e.printStackTrace();
+			fail("Response URI is not well formed");
+		}
+	}
+
+	@Parameters({ "registerPath", "redirectUris", "clientJwksUri" })
+	@Test
+	public void requestParameterMethodRS384Step1(final String registerPath, final String redirectUris,
+			final String jwksUri) throws Exception {
+		Builder request = ResteasyClientBuilder.newClient().target(url.toString() + registerPath).request();
+
+		String registerRequestContent = null;
+		try {
+			List<ResponseType> responseTypes = Arrays.asList(ResponseType.TOKEN);
+
+			RegisterRequest registerRequest = new RegisterRequest(ApplicationType.WEB, "oxAuth test app",
+					StringUtils.spaceSeparatedToList(redirectUris));
+			registerRequest.setJwksUri(jwksUri);
+			registerRequest.setResponseTypes(responseTypes);
+			registerRequest.setRequestObjectSigningAlg(SignatureAlgorithm.RS384);
+			registerRequest.addCustomAttribute("oxAuthTrustedClient", "true");
+
+			registerRequestContent = ServerUtil.toPrettyJson(registerRequest.getJSONParameters());
+		} catch (JSONException e) {
+			e.printStackTrace();
+			fail(e.getMessage());
+		}
+
+		Response response = request.post(Entity.json(registerRequestContent));
+		String entity = response.readEntity(String.class);
+
+		showResponse("requestParameterMethodRS384Step1", response, entity);
+
+		ResponseAsserter responseAsserter = ResponseAsserter.of(response.getStatus(), entity);
+		responseAsserter.assertRegisterResponse();
+		clientId2 = responseAsserter.getJson().getJson().getString(RegisterResponseParam.CLIENT_ID.toString());
+	}
+
+	@Parameters({ "authorizePath", "userId", "userSecret", "redirectUri", "RS384_keyId", "dnName", "keyStoreFile",
+			"keyStoreSecret" })
+	@Test(dependsOnMethods = "requestParameterMethodRS384Step1")
+	public void requestParameterMethodRS384Step2(final String authorizePath, final String userId,
+			final String userSecret, final String redirectUri, final String keyId, final String dnName,
+			final String keyStoreFile, final String keyStoreSecret) throws Exception {
+		Builder request = null;
+		try {
+			OxAuthCryptoProvider cryptoProvider = new OxAuthCryptoProvider(keyStoreFile, keyStoreSecret, dnName);
+
+			List<ResponseType> responseTypes = Arrays.asList(ResponseType.TOKEN);
+			List<String> scopes = Arrays.asList("openid");
+			String nonce = UUID.randomUUID().toString();
+			String state = UUID.randomUUID().toString();
+
+			AuthorizationRequest authorizationRequest = new AuthorizationRequest(responseTypes, clientId2, scopes,
+					redirectUri, nonce);
+			authorizationRequest.setState(state);
+			authorizationRequest.getPrompts().add(Prompt.NONE);
+			authorizationRequest.setAuthUsername(userId);
+			authorizationRequest.setAuthPassword(userSecret);
+
+			JwtAuthorizationRequest jwtAuthorizationRequest = new JwtAuthorizationRequest(authorizationRequest,
+					SignatureAlgorithm.RS384, cryptoProvider);
+			jwtAuthorizationRequest.setKeyId(keyId);
+			jwtAuthorizationRequest.addUserInfoClaim(new Claim(JwtClaimName.NAME, ClaimValue.createNull()));
+			jwtAuthorizationRequest
+					.addUserInfoClaim(new Claim(JwtClaimName.NICKNAME, ClaimValue.createEssential(false)));
+			jwtAuthorizationRequest.addUserInfoClaim(new Claim(JwtClaimName.EMAIL, ClaimValue.createNull()));
+			jwtAuthorizationRequest.addUserInfoClaim(new Claim(JwtClaimName.EMAIL_VERIFIED, ClaimValue.createNull()));
+			jwtAuthorizationRequest
+					.addUserInfoClaim(new Claim(JwtClaimName.PICTURE, ClaimValue.createEssential(false)));
+			jwtAuthorizationRequest
+					.addIdTokenClaim(new Claim(JwtClaimName.AUTHENTICATION_TIME, ClaimValue.createNull()));
+			jwtAuthorizationRequest.addIdTokenClaim(new Claim(JwtClaimName.AUTHENTICATION_CONTEXT_CLASS_REFERENCE,
+					ClaimValue.createValueList(new String[] { ACR_VALUE })));
+			String authJwt = jwtAuthorizationRequest.getEncodedJwt();
+			authorizationRequest.setRequest(authJwt);
+			System.out.println("Request JWT: " + authJwt);
+
+			request = ResteasyClientBuilder.newClient()
+					.target(url.toString() + authorizePath + "?" + authorizationRequest.getQueryString()).request();
+			request.header("Authorization", "Basic " + authorizationRequest.getEncodedCredentials());
+			request.header("Accept", MediaType.TEXT_PLAIN);
+		} catch (Exception e) {
+			fail(e.getMessage(), e);
+		}
+
+		Response response = request.get();
+		String entity = response.readEntity(String.class);
+
+		showResponse("requestParameterMethodRS384Step2", response, entity);
+
+		assertEquals(response.getStatus(), 302, "Unexpected response code.");
+		assertNotNull(response.getLocation(), "Unexpected result: " + response.getLocation());
+
+		try {
+			URI uri = new URI(response.getLocation().toString());
+			assertNotNull(uri.getFragment(), "Query string is null");
+
+			Map<String, String> params = QueryStringDecoder.decode(uri.getFragment());
+
+			assertNotNull(params.get("access_token"), "The accessToken is null");
+			assertNotNull(params.get("scope"), "The scope is null");
+			assertNotNull(params.get("state"), "The state is null");
+		} catch (URISyntaxException e) {
+			e.printStackTrace();
+			fail("Response URI is not well formed");
+		}
+	}
+
+	@Parameters({ "registerPath", "redirectUris", "clientJwksUri" })
+	@Test
+	public void requestParameterMethodRS512Step1(final String registerPath, final String redirectUris,
+			final String jwksUri) throws Exception {
+		Builder request = ResteasyClientBuilder.newClient().target(url.toString() + registerPath).request();
+
+		String registerRequestContent = null;
+		try {
+			List<ResponseType> responseTypes = Arrays.asList(ResponseType.TOKEN);
+
+			RegisterRequest registerRequest = new RegisterRequest(ApplicationType.WEB, "oxAuth test app",
+					StringUtils.spaceSeparatedToList(redirectUris));
+			registerRequest.setJwksUri(jwksUri);
+			registerRequest.setResponseTypes(responseTypes);
+			registerRequest.setRequestObjectSigningAlg(SignatureAlgorithm.RS512);
+			registerRequest.addCustomAttribute("oxAuthTrustedClient", "true");
+
+			registerRequestContent = ServerUtil.toPrettyJson(registerRequest.getJSONParameters());
+		} catch (JSONException e) {
+			e.printStackTrace();
+			fail(e.getMessage());
+		}
+
+		Response response = request.post(Entity.json(registerRequestContent));
+		String entity = response.readEntity(String.class);
+
+		showResponse("requestParameterMethodRS512Step1", response, entity);
+
+		ResponseAsserter responseAsserter = ResponseAsserter.of(response.getStatus(), entity);
+		responseAsserter.assertRegisterResponse();
+		clientId3 = responseAsserter.getJson().getJson().getString(RegisterResponseParam.CLIENT_ID.toString());
+	}
+
+	@Parameters({ "authorizePath", "userId", "userSecret", "redirectUri", "RS512_keyId", "dnName", "keyStoreFile",
+			"keyStoreSecret" })
+	@Test(dependsOnMethods = "requestParameterMethodRS512Step1")
+	public void requestParameterMethodRS512Step2(final String authorizePath, final String userId,
+			final String userSecret, final String redirectUri, final String keyId, final String dnName,
+			final String keyStoreFile, final String keyStoreSecret) throws Exception {
+		Builder request = null;
+		try {
+			OxAuthCryptoProvider cryptoProvider = new OxAuthCryptoProvider(keyStoreFile, keyStoreSecret, dnName);
+
+			List<ResponseType> responseTypes = Arrays.asList(ResponseType.TOKEN);
+			List<String> scopes = Arrays.asList("openid");
+			String nonce = UUID.randomUUID().toString();
+			String state = UUID.randomUUID().toString();
+
+			AuthorizationRequest authorizationRequest = new AuthorizationRequest(responseTypes, clientId3, scopes,
+					redirectUri, nonce);
+			authorizationRequest.setState(state);
+			authorizationRequest.getPrompts().add(Prompt.NONE);
+			authorizationRequest.setAuthUsername(userId);
+			authorizationRequest.setAuthPassword(userSecret);
+
+			JwtAuthorizationRequest jwtAuthorizationRequest = new JwtAuthorizationRequest(authorizationRequest,
+					SignatureAlgorithm.RS512, cryptoProvider);
+			jwtAuthorizationRequest.setKeyId(keyId);
+			jwtAuthorizationRequest.addUserInfoClaim(new Claim(JwtClaimName.NAME, ClaimValue.createNull()));
+			jwtAuthorizationRequest
+					.addUserInfoClaim(new Claim(JwtClaimName.NICKNAME, ClaimValue.createEssential(false)));
+			jwtAuthorizationRequest.addUserInfoClaim(new Claim(JwtClaimName.EMAIL, ClaimValue.createNull()));
+			jwtAuthorizationRequest.addUserInfoClaim(new Claim(JwtClaimName.EMAIL_VERIFIED, ClaimValue.createNull()));
+			jwtAuthorizationRequest
+					.addUserInfoClaim(new Claim(JwtClaimName.PICTURE, ClaimValue.createEssential(false)));
+			jwtAuthorizationRequest
+					.addIdTokenClaim(new Claim(JwtClaimName.AUTHENTICATION_TIME, ClaimValue.createNull()));
+			jwtAuthorizationRequest.addIdTokenClaim(new Claim(JwtClaimName.AUTHENTICATION_CONTEXT_CLASS_REFERENCE,
+					ClaimValue.createValueList(new String[] { ACR_VALUE })));
+			String authJwt = jwtAuthorizationRequest.getEncodedJwt();
+			authorizationRequest.setRequest(authJwt);
+			System.out.println("Request JWT: " + authJwt);
+
+			request = ResteasyClientBuilder.newClient()
+					.target(url.toString() + authorizePath + "?" + authorizationRequest.getQueryString()).request();
+			request.header("Authorization", "Basic " + authorizationRequest.getEncodedCredentials());
+			request.header("Accept", MediaType.TEXT_PLAIN);
+		} catch (Exception e) {
+			fail(e.getMessage(), e);
+		}
+
+		Response response = request.get();
+		String entity = response.readEntity(String.class);
+
+		showResponse("requestParameterMethodRS512Step2", response, entity);
+
+		assertEquals(response.getStatus(), 302, "Unexpected response code.");
+		assertNotNull(response.getLocation(), "Unexpected result: " + response.getLocation());
+
+		try {
+			URI uri = new URI(response.getLocation().toString());
+			assertNotNull(uri.getFragment(), "Query string is null");
+
+			Map<String, String> params = QueryStringDecoder.decode(uri.getFragment());
+
+			assertNotNull(params.get("access_token"), "The accessToken is null");
+			assertNotNull(params.get("scope"), "The scope is null");
+			assertNotNull(params.get("state"), "The state is null");
+		} catch (URISyntaxException e) {
+			e.printStackTrace();
+			fail("Response URI is not well formed");
+		}
+	}
+
+	@Parameters({ "registerPath", "redirectUris", "clientJwksUri" })
+	@Test
+	public void requestParameterMethodRS256X509CertStep1(final String registerPath, final String redirectUris,
+			final String jwksUri) throws Exception {
+		Builder request = ResteasyClientBuilder.newClient().target(url.toString() + registerPath).request();
+
+		String registerRequestContent = null;
+		try {
+			List<ResponseType> responseTypes = Arrays.asList(ResponseType.TOKEN);
+
+			RegisterRequest registerRequest = new RegisterRequest(ApplicationType.WEB, "oxAuth test app",
+					StringUtils.spaceSeparatedToList(redirectUris));
+			registerRequest.setJwksUri(jwksUri);
+			registerRequest.setResponseTypes(responseTypes);
+			registerRequest.setRequestObjectSigningAlg(SignatureAlgorithm.RS256);
+			registerRequest.addCustomAttribute("oxAuthTrustedClient", "true");
+
+			registerRequestContent = ServerUtil.toPrettyJson(registerRequest.getJSONParameters());
+		} catch (JSONException e) {
+			e.printStackTrace();
+			fail(e.getMessage());
+		}
+
+		Response response = request.post(Entity.json(registerRequestContent));
+		String entity = response.readEntity(String.class);
+
+		showResponse("requestParameterMethodRS256X509CertStep1", response, entity);
+
+		ResponseAsserter responseAsserter = ResponseAsserter.of(response.getStatus(), entity);
+		responseAsserter.assertRegisterResponse();
+		clientId4 = responseAsserter.getJson().getJson().getString(RegisterResponseParam.CLIENT_ID.toString());
+	}
+
+	@Parameters({ "authorizePath", "userId", "userSecret", "redirectUri", "RS256_keyId", "dnName", "keyStoreFile",
+			"keyStoreSecret" })
+	@Test(dependsOnMethods = "requestParameterMethodRS256X509CertStep1")
+	public void requestParameterMethodRS256X509CertStep2(final String authorizePath, final String userId,
+			final String userSecret, final String redirectUri, final String keyId, final String dnName,
+			final String keyStoreFile, final String keyStoreSecret) throws Exception {
+		Builder request = null;
+		try {
+			OxAuthCryptoProvider cryptoProvider = new OxAuthCryptoProvider(keyStoreFile, keyStoreSecret, dnName);
+
+			List<ResponseType> responseTypes = Arrays.asList(ResponseType.TOKEN);
+			List<String> scopes = Arrays.asList("openid");
+			String nonce = UUID.randomUUID().toString();
+			String state = UUID.randomUUID().toString();
+
+			AuthorizationRequest authorizationRequest = new AuthorizationRequest(responseTypes, clientId4, scopes,
+					redirectUri, nonce);
+			authorizationRequest.setState(state);
+			authorizationRequest.getPrompts().add(Prompt.NONE);
+			authorizationRequest.setAuthUsername(userId);
+			authorizationRequest.setAuthPassword(userSecret);
+
+			JwtAuthorizationRequest jwtAuthorizationRequest = new JwtAuthorizationRequest(authorizationRequest,
+					SignatureAlgorithm.RS256, cryptoProvider);
+			jwtAuthorizationRequest.setKeyId(keyId);
+			jwtAuthorizationRequest.addUserInfoClaim(new Claim(JwtClaimName.NAME, ClaimValue.createNull()));
+			jwtAuthorizationRequest
+					.addUserInfoClaim(new Claim(JwtClaimName.NICKNAME, ClaimValue.createEssential(false)));
+			jwtAuthorizationRequest.addUserInfoClaim(new Claim(JwtClaimName.EMAIL, ClaimValue.createNull()));
+			jwtAuthorizationRequest.addUserInfoClaim(new Claim(JwtClaimName.EMAIL_VERIFIED, ClaimValue.createNull()));
+			jwtAuthorizationRequest
+					.addUserInfoClaim(new Claim(JwtClaimName.PICTURE, ClaimValue.createEssential(false)));
+			jwtAuthorizationRequest
+					.addIdTokenClaim(new Claim(JwtClaimName.AUTHENTICATION_TIME, ClaimValue.createNull()));
+			jwtAuthorizationRequest.addIdTokenClaim(new Claim(JwtClaimName.AUTHENTICATION_CONTEXT_CLASS_REFERENCE,
+					ClaimValue.createValueList(new String[] { ACR_VALUE })));
+			String authJwt = jwtAuthorizationRequest.getEncodedJwt();
+			authorizationRequest.setRequest(authJwt);
+			System.out.println("Request JWT: " + authJwt);
+
+			request = ResteasyClientBuilder.newClient()
+					.target(url.toString() + authorizePath + "?" + authorizationRequest.getQueryString()).request();
+
+			request.header("Authorization", "Basic " + authorizationRequest.getEncodedCredentials());
+			request.header("Accept", MediaType.TEXT_PLAIN);
+		} catch (Exception e) {
+			fail(e.getMessage(), e);
+		}
+
+		Response response = request.get();
+		String entity = response.readEntity(String.class);
+
+		showResponse("requestParameterMethodRS256X509CertStep2", response, entity);
+
+		assertEquals(response.getStatus(), 302, "Unexpected response code.");
+		assertNotNull(response.getLocation(), "Unexpected result: " + response.getLocation());
+
+		try {
+			URI uri = new URI(response.getLocation().toString());
+			assertNotNull(uri.getFragment(), "Query string is null");
+
+			Map<String, String> params = QueryStringDecoder.decode(uri.getFragment());
+
+			assertNotNull(params.get("access_token"), "The accessToken is null");
+			assertNotNull(params.get("scope"), "The scope is null");
+			assertNotNull(params.get("state"), "The state is null");
+		} catch (URISyntaxException e) {
+			e.printStackTrace();
+			fail("Response URI is not well formed");
+		}
+	}
+
+	@Parameters({ "registerPath", "redirectUris", "clientJwksUri" })
+	@Test
+	public void requestParameterMethodRS384X509CertStep1(final String registerPath, final String redirectUris,
+			final String jwksUri) throws Exception {
+		Builder request = ResteasyClientBuilder.newClient().target(url.toString() + registerPath).request();
+
+		String registerRequestContent = null;
+		try {
+			List<ResponseType> responseTypes = Arrays.asList(ResponseType.TOKEN);
+
+			RegisterRequest registerRequest = new RegisterRequest(ApplicationType.WEB, "oxAuth test app",
+					StringUtils.spaceSeparatedToList(redirectUris));
+			registerRequest.setJwksUri(jwksUri);
+			registerRequest.setResponseTypes(responseTypes);
+			registerRequest.setRequestObjectSigningAlg(SignatureAlgorithm.RS384);
+			registerRequest.addCustomAttribute("oxAuthTrustedClient", "true");
+
+			registerRequestContent = ServerUtil.toPrettyJson(registerRequest.getJSONParameters());
+		} catch (JSONException e) {
+			e.printStackTrace();
+			fail(e.getMessage());
+		}
+
+		Response response = request.post(Entity.json(registerRequestContent));
+		String entity = response.readEntity(String.class);
+
+		showResponse("requestParameterMethodRS384X509CertStep1", response, entity);
+
+		ResponseAsserter responseAsserter = ResponseAsserter.of(response.getStatus(), entity);
+		responseAsserter.assertRegisterResponse();
+		clientId5 = responseAsserter.getJson().getJson().getString(RegisterResponseParam.CLIENT_ID.toString());
+	}
+
+	@Parameters({ "authorizePath", "userId", "userSecret", "redirectUri", "RS384_keyId", "dnName", "keyStoreFile",
+			"keyStoreSecret" })
+	@Test(dependsOnMethods = "requestParameterMethodRS384X509CertStep1")
+	public void requestParameterMethodRS384X509CertStep2(final String authorizePath, final String userId,
+			final String userSecret, final String redirectUri, final String keyId, final String dnName,
+			final String keyStoreFile, final String keyStoreSecret) throws Exception {
+		Builder request = null;
+		try {
+			OxAuthCryptoProvider cryptoProvider = new OxAuthCryptoProvider(keyStoreFile, keyStoreSecret, dnName);
+
+			List<ResponseType> responseTypes = Arrays.asList(ResponseType.TOKEN);
+			List<String> scopes = Arrays.asList("openid");
+			String nonce = UUID.randomUUID().toString();
+			String state = UUID.randomUUID().toString();
+
+			AuthorizationRequest authorizationRequest = new AuthorizationRequest(responseTypes, clientId5, scopes,
+					redirectUri, nonce);
+			authorizationRequest.setState(state);
+			authorizationRequest.getPrompts().add(Prompt.NONE);
+			authorizationRequest.setAuthUsername(userId);
+			authorizationRequest.setAuthPassword(userSecret);
+
+			JwtAuthorizationRequest jwtAuthorizationRequest = new JwtAuthorizationRequest(authorizationRequest,
+					SignatureAlgorithm.RS384, cryptoProvider);
+			jwtAuthorizationRequest.setKeyId(keyId);
+			jwtAuthorizationRequest.addUserInfoClaim(new Claim(JwtClaimName.NAME, ClaimValue.createNull()));
+			jwtAuthorizationRequest
+					.addUserInfoClaim(new Claim(JwtClaimName.NICKNAME, ClaimValue.createEssential(false)));
+			jwtAuthorizationRequest.addUserInfoClaim(new Claim(JwtClaimName.EMAIL, ClaimValue.createNull()));
+			jwtAuthorizationRequest.addUserInfoClaim(new Claim(JwtClaimName.EMAIL_VERIFIED, ClaimValue.createNull()));
+			jwtAuthorizationRequest
+					.addUserInfoClaim(new Claim(JwtClaimName.PICTURE, ClaimValue.createEssential(false)));
+			jwtAuthorizationRequest
+					.addIdTokenClaim(new Claim(JwtClaimName.AUTHENTICATION_TIME, ClaimValue.createNull()));
+			jwtAuthorizationRequest.addIdTokenClaim(new Claim(JwtClaimName.AUTHENTICATION_CONTEXT_CLASS_REFERENCE,
+					ClaimValue.createValueList(new String[] { ACR_VALUE })));
+			String authJwt = jwtAuthorizationRequest.getEncodedJwt();
+			authorizationRequest.setRequest(authJwt);
+			System.out.println("Request JWT: " + authJwt);
+
+			request = ResteasyClientBuilder.newClient()
+					.target(url.toString() + authorizePath + "?" + authorizationRequest.getQueryString()).request();
+			request.header("Authorization", "Basic " + authorizationRequest.getEncodedCredentials());
+			request.header("Accept", MediaType.TEXT_PLAIN);
+		} catch (Exception e) {
+			fail(e.getMessage(), e);
+		}
+
+		Response response = request.get();
+		String entity = response.readEntity(String.class);
+
+		showResponse("requestParameterMethodRS384X509CertStep2", response, entity);
+
+		assertEquals(response.getStatus(), 302, "Unexpected response code.");
+		assertNotNull(response.getLocation(), "Unexpected result: " + response.getLocation());
+
+		try {
+			URI uri = new URI(response.getLocation().toString());
+			assertNotNull(uri.getFragment(), "Query string is null");
+
+			Map<String, String> params = QueryStringDecoder.decode(uri.getFragment());
+
+			assertNotNull(params.get("access_token"), "The accessToken is null");
+			assertNotNull(params.get("scope"), "The scope is null");
+			assertNotNull(params.get("state"), "The state is null");
+		} catch (URISyntaxException e) {
+			e.printStackTrace();
+			fail("Response URI is not well formed");
+		}
+	}
+
+	@Parameters({ "registerPath", "redirectUris", "clientJwksUri" })
+	@Test
+	public void requestParameterMethodRS512X509CertStep1(final String registerPath, final String redirectUris,
+			final String jwksUri) throws Exception {
+		Builder request = ResteasyClientBuilder.newClient().target(url.toString() + registerPath).request();
+
+		String registerRequestContent = null;
+		try {
+			List<ResponseType> responseTypes = Arrays.asList(ResponseType.TOKEN);
+
+			RegisterRequest registerRequest = new RegisterRequest(ApplicationType.WEB, "oxAuth test app",
+					StringUtils.spaceSeparatedToList(redirectUris));
+			registerRequest.setJwksUri(jwksUri);
+			registerRequest.setResponseTypes(responseTypes);
+			registerRequest.setRequestObjectSigningAlg(SignatureAlgorithm.RS512);
+			registerRequest.addCustomAttribute("oxAuthTrustedClient", "true");
+
+			registerRequestContent = ServerUtil.toPrettyJson(registerRequest.getJSONParameters());
+		} catch (JSONException e) {
+			e.printStackTrace();
+			fail(e.getMessage());
+		}
+
+		Response response = request.post(Entity.json(registerRequestContent));
+		String entity = response.readEntity(String.class);
+
+		showResponse("requestParameterMethodRS512X509CertStep1", response, entity);
+
+		ResponseAsserter responseAsserter = ResponseAsserter.of(response.getStatus(), entity);
+		responseAsserter.assertRegisterResponse();
+		clientId6 = responseAsserter.getJson().getJson().getString(RegisterResponseParam.CLIENT_ID.toString());
+	}
+
+	@Parameters({ "authorizePath", "userId", "userSecret", "redirectUri", "RS512_keyId", "dnName", "keyStoreFile",
+			"keyStoreSecret" })
+	@Test(dependsOnMethods = "requestParameterMethodRS512X509CertStep1")
+	public void requestParameterMethodRS512X509CertStep2(final String authorizePath, final String userId,
+			final String userSecret, final String redirectUri, final String keyId, final String dnName,
+			final String keyStoreFile, final String keyStoreSecret) throws Exception {
+		Builder request = null;
+		try {
+			OxAuthCryptoProvider cryptoProvider = new OxAuthCryptoProvider(keyStoreFile, keyStoreSecret, dnName);
+
+			List<ResponseType> responseTypes = Arrays.asList(ResponseType.TOKEN);
+			List<String> scopes = Arrays.asList("openid");
+			String nonce = UUID.randomUUID().toString();
+			String state = UUID.randomUUID().toString();
+
+			AuthorizationRequest authorizationRequest = new AuthorizationRequest(responseTypes, clientId6, scopes,
+					redirectUri, nonce);
+			authorizationRequest.setState(state);
+			authorizationRequest.getPrompts().add(Prompt.NONE);
+			authorizationRequest.setAuthUsername(userId);
+			authorizationRequest.setAuthPassword(userSecret);
+
+			JwtAuthorizationRequest jwtAuthorizationRequest = new JwtAuthorizationRequest(authorizationRequest,
+					SignatureAlgorithm.RS512, cryptoProvider);
+			jwtAuthorizationRequest.setKeyId(keyId);
+			jwtAuthorizationRequest.addUserInfoClaim(new Claim(JwtClaimName.NAME, ClaimValue.createNull()));
+			jwtAuthorizationRequest
+					.addUserInfoClaim(new Claim(JwtClaimName.NICKNAME, ClaimValue.createEssential(false)));
+			jwtAuthorizationRequest.addUserInfoClaim(new Claim(JwtClaimName.EMAIL, ClaimValue.createNull()));
+			jwtAuthorizationRequest.addUserInfoClaim(new Claim(JwtClaimName.EMAIL_VERIFIED, ClaimValue.createNull()));
+			jwtAuthorizationRequest
+					.addUserInfoClaim(new Claim(JwtClaimName.PICTURE, ClaimValue.createEssential(false)));
+			jwtAuthorizationRequest
+					.addIdTokenClaim(new Claim(JwtClaimName.AUTHENTICATION_TIME, ClaimValue.createNull()));
+			jwtAuthorizationRequest.addIdTokenClaim(new Claim(JwtClaimName.AUTHENTICATION_CONTEXT_CLASS_REFERENCE,
+					ClaimValue.createValueList(new String[] { ACR_VALUE })));
+			String authJwt = jwtAuthorizationRequest.getEncodedJwt();
+			authorizationRequest.setRequest(authJwt);
+			System.out.println("Request JWT: " + authJwt);
+
+			request = ResteasyClientBuilder.newClient()
+					.target(url.toString() + authorizePath + "?" + authorizationRequest.getQueryString()).request();
+			request.header("Authorization", "Basic " + authorizationRequest.getEncodedCredentials());
+			request.header("Accept", MediaType.TEXT_PLAIN);
+		} catch (Exception e) {
+			fail(e.getMessage(), e);
+		}
+
+		Response response = request.get();
+		String entity = response.readEntity(String.class);
+
+		showResponse("requestParameterMethodRS512X509CertStep2", response, entity);
+
+		assertEquals(response.getStatus(), 302, "Unexpected response code.");
+		assertNotNull(response.getLocation(), "Unexpected result: " + response.getLocation());
+
+		try {
+			URI uri = new URI(response.getLocation().toString());
+			assertNotNull(uri.getFragment(), "Query string is null");
+
+			Map<String, String> params = QueryStringDecoder.decode(uri.getFragment());
+
+			assertNotNull(params.get("access_token"), "The accessToken is null");
+			assertNotNull(params.get("scope"), "The scope is null");
+			assertNotNull(params.get("state"), "The state is null");
+		} catch (URISyntaxException e) {
+			e.printStackTrace();
+			fail("Response URI is not well formed");
+		}
+	}
+
+}
diff --git a/oxAuth/Server/src/test/java/org/gluu/oxauth/ws/rs/RegistrationRestWebServiceEmbeddedTest.java b/oxAuth/Server/src/test/java/org/gluu/oxauth/ws/rs/RegistrationRestWebServiceEmbeddedTest.java
new file mode 100644
index 00000000..c5058255
--- /dev/null
+++ b/oxAuth/Server/src/test/java/org/gluu/oxauth/ws/rs/RegistrationRestWebServiceEmbeddedTest.java
@@ -0,0 +1,288 @@
+/*
+ * oxAuth is available under the MIT License (2008). See http://opensource.org/licenses/MIT for full text.
+ *
+ * Copyright (c) 2014, Gluu
+ */
+
+package org.gluu.oxauth.ws.rs;
+
+import com.google.common.collect.Lists;
+import org.gluu.oxauth.BaseTest;
+import org.gluu.oxauth.client.RegisterRequest;
+import org.gluu.oxauth.client.RegisterResponse;
+import org.gluu.oxauth.model.common.AuthenticationMethod;
+import org.gluu.oxauth.model.common.ResponseType;
+import org.gluu.oxauth.model.common.SubjectType;
+import org.gluu.oxauth.model.crypto.signature.SignatureAlgorithm;
+import org.gluu.oxauth.model.register.ApplicationType;
+import org.gluu.oxauth.model.register.RegisterResponseParam;
+import org.gluu.oxauth.model.uma.TestUtil;
+import org.gluu.oxauth.model.util.StringUtils;
+import org.gluu.oxauth.util.ServerUtil;
+import org.jboss.arquillian.test.api.ArquillianResource;
+import org.jboss.resteasy.client.jaxrs.ResteasyClientBuilder;
+import org.json.JSONArray;
+import org.json.JSONException;
+import org.json.JSONObject;
+import org.testng.annotations.Parameters;
+import org.testng.annotations.Test;
+
+import javax.ws.rs.client.Entity;
+import javax.ws.rs.client.Invocation.Builder;
+import javax.ws.rs.core.Response;
+import java.net.URI;
+import java.util.ArrayList;
+import java.util.Arrays;
+import java.util.List;
+
+import static org.gluu.oxauth.model.register.RegisterRequestParam.*;
+import static org.gluu.oxauth.model.register.RegisterResponseParam.*;
+import static org.testng.Assert.*;
+
+/**
+ * Functional tests for Client Registration Web Services (embedded)
+ *
+ * @author Javier Rojas Blum
+ * @version November 29, 2017
+ */
+public class RegistrationRestWebServiceEmbeddedTest extends BaseTest {
+
+    @ArquillianResource
+    private URI url;
+
+    private static String registrationAccessToken1;
+    private static String registrationClientUri1;
+
+    @Parameters({"registerPath", "redirectUris"})
+    @Test
+    public void requestClientAssociate1(final String registerPath, final String redirectUris) throws Exception {
+        Builder request = ResteasyClientBuilder.newClient().target(url.toString() + registerPath).request();
+
+        String registerRequestContent = null;
+        try {
+            RegisterRequest registerRequest = new RegisterRequest(ApplicationType.WEB, "oxAuth test app",
+                    StringUtils.spaceSeparatedToList(redirectUris));
+
+            registerRequest.setClaimsRedirectUris(StringUtils.spaceSeparatedToList(redirectUris));
+
+            registerRequestContent = ServerUtil.toPrettyJson(registerRequest.getJSONParameters());
+        } catch (JSONException e) {
+            e.printStackTrace();
+            fail(e.getMessage());
+        }
+
+        Response response = request.post(Entity.json(registerRequestContent));
+        String entity = response.readEntity(String.class);
+
+        showResponse("requestClientAssociate1", response, entity);
+
+        assertEquals(response.getStatus(), 200, "Unexpected response code. " + entity);
+        assertNotNull(entity, "Unexpected result: " + entity);
+        try {
+            final RegisterResponse registerResponse = RegisterResponse.valueOf(entity);
+            ClientTestUtil.assert_(registerResponse);
+
+            registrationAccessToken1 = registerResponse.getRegistrationAccessToken();
+            registrationClientUri1 = registerResponse.getRegistrationClientUri();
+        } catch (Exception e) {
+            e.printStackTrace();
+            fail(e.getMessage() + "\nResponse was: " + entity);
+        }
+    }
+
+    @Parameters({"registerPath", "redirectUris", "sectorIdentifierUri", "contactEmail1", "contactEmail2"})
+    @Test
+    public void requestClientAssociate2(final String registerPath, final String redirectUris,
+                                        final String sectorIdentifierUri, final String contactEmail1, final String contactEmail2) throws Exception {
+        Builder request = ResteasyClientBuilder.newClient().target(url.toString() + registerPath).request();
+
+        String registerRequestContent = null;
+        try {
+            List<String> contacts = Arrays.asList(contactEmail1, contactEmail2);
+
+            RegisterRequest registerRequest = new RegisterRequest(ApplicationType.WEB, "oxAuth test app",
+                    StringUtils.spaceSeparatedToList(redirectUris));
+            registerRequest.setContacts(contacts);
+            registerRequest.setScope(Arrays.asList("openid", "clientinfo", "profile", "email", "invalid_scope"));
+            registerRequest.setLogoUri("http://www.gluu.org/wp-content/themes/gluursn/images/logo.png");
+            registerRequest.setClientUri("http://www.gluu.org/company/team");
+            registerRequest.setTokenEndpointAuthMethod(AuthenticationMethod.CLIENT_SECRET_JWT);
+            registerRequest.setPolicyUri("http://www.gluu.org/policy");
+            registerRequest.setJwksUri("http://www.gluu.org/jwks");
+            registerRequest.setSectorIdentifierUri(sectorIdentifierUri);
+            registerRequest.setSubjectType(SubjectType.PAIRWISE);
+            registerRequest.setRequestObjectSigningAlg(SignatureAlgorithm.RS256);
+
+            registerRequestContent = ServerUtil.toPrettyJson(registerRequest.getJSONParameters());
+        } catch (JSONException e) {
+            e.printStackTrace();
+            fail(e.getMessage());
+        }
+
+        Response response = request.post(Entity.json(registerRequestContent));
+        String entity = response.readEntity(String.class);
+
+        showResponse("requestClientAssociate2", response, entity);
+
+        assertEquals(response.getStatus(), 200, "Unexpected response code. " + entity);
+        assertNotNull(entity, "Unexpected result: " + entity);
+        try {
+            final RegisterResponse registerResponse = RegisterResponse.valueOf(entity);
+            ClientTestUtil.assert_(registerResponse);
+
+            JSONObject jsonObj = new JSONObject(entity);
+
+            // Registered Metadata
+            assertTrue(jsonObj.has(CLIENT_URI.toString()));
+            assertTrue(jsonObj.has(SCOPE.toString()));
+
+            JSONArray scopesJsonArray = new JSONArray(StringUtils.spaceSeparatedToList(jsonObj.getString((SCOPE.toString()))));
+            List<String> scopes = new ArrayList<String>();
+            for (int i = 0; i < scopesJsonArray.length(); i++) {
+                scopes.add(scopesJsonArray.get(i).toString());
+            }
+            assertTrue(scopes.contains("openid"));
+            assertTrue(scopes.contains("email"));
+            assertTrue(scopes.contains("profile"));
+            assertTrue(scopes.contains("clientinfo"));
+        } catch (JSONException e) {
+            e.printStackTrace();
+            fail(e.getMessage() + "\nResponse was: " + entity);
+        }
+    }
+
+    @Parameters({"registerPath"})
+    @Test(dependsOnMethods = "requestClientAssociate1")
+    public void requestClientRead(final String registerPath) throws Exception {
+        Builder request = ResteasyClientBuilder.newClient().target(url.toString() + registerPath + "?"
+                + registrationClientUri1.substring(registrationClientUri1.indexOf("?") + 1)).request();
+        request.header("Authorization", "Bearer " + registrationAccessToken1);
+
+        Response response = request.get();
+        String entity = response.readEntity(String.class);
+
+        showResponse("requestClientRead", response, entity);
+        readResponseAssert(response, entity);
+    }
+
+    public static void readResponseAssert(Response response, String entity) {
+        assertEquals(response.getStatus(), 200, "Unexpected response code. " + entity);
+        assertNotNull(entity, "Unexpected result: " + entity);
+        try {
+            JSONObject jsonObj = new JSONObject(entity);
+            assertTrue(jsonObj.has(RegisterResponseParam.CLIENT_ID.toString()));
+            assertTrue(jsonObj.has(CLIENT_SECRET.toString()));
+            assertTrue(jsonObj.has(CLIENT_ID_ISSUED_AT.toString()));
+            assertTrue(jsonObj.has(CLIENT_SECRET_EXPIRES_AT.toString()));
+
+            // Registered Metadata
+            assertTrue(jsonObj.has(REDIRECT_URIS.toString()));
+            assertTrue(jsonObj.has(CLAIMS_REDIRECT_URIS.toString()));
+            assertTrue(jsonObj.has(APPLICATION_TYPE.toString()));
+            assertTrue(jsonObj.has(CLIENT_NAME.toString()));
+            assertTrue(jsonObj.has(ID_TOKEN_SIGNED_RESPONSE_ALG.toString()));
+            assertTrue(jsonObj.has(SCOPE.toString()));
+        } catch (JSONException e) {
+            e.printStackTrace();
+            fail(e.getMessage() + "\nResponse was: " + entity);
+        }
+    }
+
+    @Parameters({"registerPath", "redirectUris", "contactEmail1", "contactEmail2"})
+    @Test(dependsOnMethods = "requestClientAssociate1")
+    public void requestClientUpdate(final String registerPath, final String redirectUris, final String contactEmail1,
+                                    final String contactEmail2) throws Exception {
+        final String contactEmailNewValue = contactEmail2;
+        final String logoUriNewValue = "http://www.gluu.org/test/yuriy/logo.png";
+        final String clientUriNewValue = "http://www.gluu.org/company/yuriy";
+
+        Builder request = ResteasyClientBuilder.newClient().target(url.toString() + registerPath + "?"
+                + registrationClientUri1.substring(registrationClientUri1.indexOf("?") + 1)).request();
+
+        String registerRequestContent = null;
+        try {
+            final RegisterRequest registerRequest = new RegisterRequest(ApplicationType.WEB, "oxAuth test app",
+                    StringUtils.spaceSeparatedToList(redirectUris));
+
+            registerRequest.setContacts(Arrays.asList(contactEmail1, contactEmailNewValue));
+            registerRequest.setLogoUri(logoUriNewValue);
+            registerRequest.setClientUri(clientUriNewValue);
+
+            request.header("Authorization", "Bearer " + registrationAccessToken1);
+            registerRequestContent = ServerUtil.toPrettyJson(registerRequest.getJSONParameters());
+        } catch (Exception e) {
+            e.printStackTrace();
+            fail();
+        }
+
+        Response response = request.put(Entity.json(registerRequestContent));
+        String entity = response.readEntity(String.class);
+
+        showResponse("requestClientRead", response, entity);
+
+        readResponseAssert(response, entity);
+
+        try {
+            // check whether values are really updated
+            RegisterRequest r = RegisterRequest.fromJson(entity, true);
+            assertTrue(r.getContacts() != null && r.getContacts().contains(contactEmailNewValue));
+            assertTrue(r.getClientUri().equals(clientUriNewValue));
+            assertTrue(r.getLogoUri().equals(logoUriNewValue));
+        } catch (JSONException e) {
+            e.printStackTrace();
+            fail(e.getMessage() + "\nResponse was: " + entity);
+        }
+    }
+
+    @Parameters({"registerPath"})
+    @Test
+    public void failRegistration_whenRedirectUriIsNotSetForResponseTypeCode(final String registerPath) throws Exception {
+        Builder request = ResteasyClientBuilder.newClient().target(url.toString() + registerPath).request();
+
+        String registerRequestContent = null;
+        try {
+            RegisterRequest registerRequest = new RegisterRequest(null, null, null);
+            registerRequest.setResponseTypes(Lists.newArrayList(ResponseType.CODE));
+
+            registerRequestContent = ServerUtil.toPrettyJson(registerRequest.getJSONParameters());
+        } catch (JSONException e) {
+            e.printStackTrace();
+            fail(e.getMessage());
+        }
+
+        Response response = request.post(Entity.json(registerRequestContent));
+        String entity = response.readEntity(String.class);
+
+        showResponse("requestClientRegistrationFail 1", response, entity);
+
+        assertEquals(response.getStatus(), 400, "Unexpected response code. " + entity);
+        TestUtil.assertErrorResponse(entity);
+    }
+
+    @Parameters({"registerPath"})
+    @Test
+    public void requestClientRegistrationFail3(final String registerPath) throws Exception {
+        Builder request = ResteasyClientBuilder.newClient().target(url.toString() + registerPath).request();
+
+        String registerRequestContent = null;
+        try {
+
+            RegisterRequest registerRequest = new RegisterRequest(ApplicationType.WEB, "oxAuth test app",
+                    Arrays.asList("https://client.example.com/cb#fail_fragment"));
+
+            registerRequestContent = ServerUtil.toPrettyJson(registerRequest.getJSONParameters());
+        } catch (JSONException e) {
+            e.printStackTrace();
+            fail(e.getMessage());
+        }
+
+        Response response = request.post(Entity.json(registerRequestContent));
+        String entity = response.readEntity(String.class);
+
+        showResponse("requestClientRegistrationFail3", response, entity);
+
+        assertEquals(response.getStatus(), 400, "Unexpected response code. " + entity);
+        TestUtil.assertErrorResponse(entity);
+    }
+
+}
\ No newline at end of file
diff --git a/oxAuth/Server/src/test/java/org/gluu/oxauth/ws/rs/RequestObjectSigningAlgRestrictionEmbeddedTest.java b/oxAuth/Server/src/test/java/org/gluu/oxauth/ws/rs/RequestObjectSigningAlgRestrictionEmbeddedTest.java
new file mode 100644
index 00000000..cc2f6a42
--- /dev/null
+++ b/oxAuth/Server/src/test/java/org/gluu/oxauth/ws/rs/RequestObjectSigningAlgRestrictionEmbeddedTest.java
@@ -0,0 +1,2014 @@
+/*
+ * oxAuth is available under the MIT License (2008). See http://opensource.org/licenses/MIT for full text.
+ *
+ * Copyright (c) 2014, Gluu
+ */
+
+package org.gluu.oxauth.ws.rs;
+
+import org.gluu.oxauth.BaseTest;
+import org.gluu.oxauth.client.AuthorizationRequest;
+import org.gluu.oxauth.client.QueryStringDecoder;
+import org.gluu.oxauth.client.RegisterRequest;
+import org.gluu.oxauth.client.model.authorize.Claim;
+import org.gluu.oxauth.client.model.authorize.ClaimValue;
+import org.gluu.oxauth.client.model.authorize.JwtAuthorizationRequest;
+import org.gluu.oxauth.model.common.Prompt;
+import org.gluu.oxauth.model.common.ResponseType;
+import org.gluu.oxauth.model.crypto.OxAuthCryptoProvider;
+import org.gluu.oxauth.model.crypto.signature.SignatureAlgorithm;
+import org.gluu.oxauth.model.jwt.JwtClaimName;
+import org.gluu.oxauth.model.register.ApplicationType;
+import org.gluu.oxauth.model.register.RegisterResponseParam;
+import org.gluu.oxauth.model.util.StringUtils;
+import org.gluu.oxauth.util.ServerUtil;
+import org.jboss.arquillian.test.api.ArquillianResource;
+import org.jboss.resteasy.client.jaxrs.ResteasyClientBuilder;
+import org.json.JSONException;
+import org.json.JSONObject;
+import org.testng.annotations.Parameters;
+import org.testng.annotations.Test;
+
+import javax.ws.rs.client.Entity;
+import javax.ws.rs.client.Invocation.Builder;
+import javax.ws.rs.core.MediaType;
+import javax.ws.rs.core.Response;
+import java.net.URI;
+import java.net.URISyntaxException;
+import java.util.Arrays;
+import java.util.List;
+import java.util.Map;
+import java.util.UUID;
+
+import static org.gluu.oxauth.model.register.RegisterRequestParam.*;
+import static org.gluu.oxauth.model.register.RegisterResponseParam.*;
+import static org.testng.Assert.*;
+
+/**
+ * @author Javier Rojas Blum
+ * @version November 29, 2017
+ */
+public class RequestObjectSigningAlgRestrictionEmbeddedTest extends BaseTest {
+
+    public static final String ACR_VALUE = "basic";
+    @ArquillianResource
+    private URI url;
+
+    private static String clientId1;
+    private static String clientSecret1;
+    private static String registrationAccessToken1;
+    private static String registrationClientUri1;
+
+    private static String clientId2;
+    private static String clientSecret2;
+    private static String registrationAccessToken2;
+    private static String registrationClientUri2;
+
+    private static String clientId3;
+    private static String clientSecret3;
+    private static String registrationAccessToken3;
+
+    private static String clientId4;
+    private static String clientSecret4;
+    private static String registrationAccessToken4;
+
+    private static String clientId5;
+    private static String clientSecret5;
+    private static String registrationAccessToken5;
+
+    private static String clientId6;
+    private static String clientSecret6;
+    private static String registrationAccessToken6;
+
+    private static String clientId7;
+    private static String clientSecret7;
+    private static String registrationAccessToken7;
+
+    private static String clientId8;
+    private static String clientSecret8;
+    private static String registrationAccessToken8;
+
+    private static String clientId9;
+    private static String clientSecret9;
+    private static String registrationAccessToken9;
+
+    private static String clientId10;
+    private static String clientSecret10;
+    private static String registrationAccessToken10;
+
+    private static String clientId11;
+    private static String clientSecret11;
+    private static String registrationAccessToken11;
+
+    /**
+     * Register a client without specify a Request Object Signing Alg.
+     */
+    @Parameters({"registerPath", "redirectUris", "clientJwksUri"})
+    @Test
+    public void omittedRequestObjectSigningAlgStep1(final String registerPath, final String redirectUris,
+                                                    final String jwksUri) throws Exception {
+        Builder request = ResteasyClientBuilder.newClient().target(url.toString() + registerPath).request();
+
+        String registerRequestContent = null;
+        try {
+            RegisterRequest registerRequest = new RegisterRequest(ApplicationType.WEB, "oxAuth test app",
+                    StringUtils.spaceSeparatedToList(redirectUris));
+            registerRequest.setJwksUri(jwksUri);
+            registerRequest.setResponseTypes(Arrays.asList(ResponseType.TOKEN, ResponseType.ID_TOKEN));
+            registerRequest.addCustomAttribute("oxAuthTrustedClient", "true");
+
+            registerRequestContent = ServerUtil.toPrettyJson(registerRequest.getJSONParameters());
+        } catch (JSONException e) {
+            e.printStackTrace();
+            fail(e.getMessage());
+        }
+
+        Response response = request.post(Entity.json(registerRequestContent));
+        String entity = response.readEntity(String.class);
+
+        showResponse("omittedRequestObjectSigningAlgStep1", response, entity);
+
+        assertEquals(response.getStatus(), 200, "Unexpected response code. " + entity);
+        assertNotNull(entity, "Unexpected result: " + entity);
+        try {
+            JSONObject jsonObj = new JSONObject(entity);
+            assertTrue(jsonObj.has(RegisterResponseParam.CLIENT_ID.toString()));
+            assertTrue(jsonObj.has(CLIENT_SECRET.toString()));
+            assertTrue(jsonObj.has(RegisterResponseParam.REGISTRATION_ACCESS_TOKEN.toString()));
+            assertTrue(jsonObj.has(REGISTRATION_CLIENT_URI.toString()));
+            assertTrue(jsonObj.has(CLIENT_ID_ISSUED_AT.toString()));
+            assertTrue(jsonObj.has(CLIENT_SECRET_EXPIRES_AT.toString()));
+
+            clientId1 = jsonObj.getString(RegisterResponseParam.CLIENT_ID.toString());
+            clientSecret1 = jsonObj.getString(RegisterResponseParam.CLIENT_SECRET.toString());
+            registrationAccessToken1 = jsonObj.getString(RegisterResponseParam.REGISTRATION_ACCESS_TOKEN.toString());
+            registrationClientUri1 = jsonObj.getString(RegisterResponseParam.REGISTRATION_CLIENT_URI.toString());
+        } catch (JSONException e) {
+            e.printStackTrace();
+            fail(e.getMessage() + "\nResponse was: " + entity);
+        }
+    }
+
+    /**
+     * Read client to check whether it is using the default Request Object
+     * Signing Alg <code>null</code>.
+     */
+    @Parameters({"registerPath"})
+    @Test(dependsOnMethods = "omittedRequestObjectSigningAlgStep1")
+    public void omittedRequestObjectSigningAlgStep2(final String registerPath) throws Exception {
+        RegisterRequest registerRequest = new RegisterRequest(null);
+
+        Builder request = ResteasyClientBuilder.newClient().target(url.toString() + registerPath + "?"
+                + registrationClientUri1.substring(registrationClientUri1.indexOf("?") + 1)).request();
+        request.header("Authorization", "Bearer " + registrationAccessToken1);
+
+        Response response = request.get();
+        String entity = response.readEntity(String.class);
+
+        showResponse("omittedRequestObjectSigningAlgStep2", response, entity);
+
+        assertEquals(response.getStatus(), 200, "Unexpected response code. " + entity);
+        assertNotNull(entity, "Unexpected result: " + entity);
+        try {
+            JSONObject jsonObj = new JSONObject(entity);
+            assertTrue(jsonObj.has(RegisterResponseParam.CLIENT_ID.toString()));
+            assertTrue(jsonObj.has(CLIENT_SECRET.toString()));
+            assertTrue(jsonObj.has(CLIENT_ID_ISSUED_AT.toString()));
+            assertTrue(jsonObj.has(CLIENT_SECRET_EXPIRES_AT.toString()));
+
+            // Registered Metadata
+            assertFalse(jsonObj.has(REQUEST_OBJECT_SIGNING_ALG.toString()));
+            assertTrue(jsonObj.has(APPLICATION_TYPE.toString()));
+            assertTrue(jsonObj.has(RESPONSE_TYPES.toString()));
+            assertTrue(jsonObj.has(REDIRECT_URIS.toString()));
+            assertTrue(jsonObj.has(APPLICATION_TYPE.toString()));
+            assertTrue(jsonObj.has(CLIENT_NAME.toString()));
+            assertTrue(jsonObj.has(ID_TOKEN_SIGNED_RESPONSE_ALG.toString()));
+            assertTrue(jsonObj.has(SCOPE.toString()));
+        } catch (JSONException e) {
+            e.printStackTrace();
+            fail(e.getMessage() + "\nResponse was: " + entity);
+        }
+    }
+
+    /**
+     * Request authorization with Request Object Signing Alg <code>NONE</code>.
+     */
+    @Parameters({"authorizePath", "userId", "userSecret", "redirectUri"})
+    @Test(dependsOnMethods = "omittedRequestObjectSigningAlgStep2")
+    public void omittedRequestObjectSigningAlgStep3NONE(final String authorizePath, final String userId,
+                                                        final String userSecret, final String redirectUri) throws Exception {
+        Builder request = null;
+        try {
+            List<ResponseType> responseTypes = Arrays.asList(ResponseType.TOKEN, ResponseType.ID_TOKEN);
+            List<String> scopes = Arrays.asList("openid", "profile", "address", "email");
+            String nonce = UUID.randomUUID().toString();
+            String state = UUID.randomUUID().toString();
+
+            AuthorizationRequest authorizationRequest = new AuthorizationRequest(responseTypes, clientId1, scopes,
+                    redirectUri, nonce);
+            authorizationRequest.setState(state);
+            authorizationRequest.getPrompts().add(Prompt.NONE);
+            authorizationRequest.setAuthUsername(userId);
+            authorizationRequest.setAuthPassword(userSecret);
+
+            OxAuthCryptoProvider cryptoProvider = new OxAuthCryptoProvider();
+
+            JwtAuthorizationRequest jwtAuthorizationRequest = new JwtAuthorizationRequest(authorizationRequest,
+                    SignatureAlgorithm.NONE, cryptoProvider);
+            jwtAuthorizationRequest.addUserInfoClaim(new Claim(JwtClaimName.NAME, ClaimValue.createNull()));
+            jwtAuthorizationRequest
+                    .addUserInfoClaim(new Claim(JwtClaimName.NICKNAME, ClaimValue.createEssential(false)));
+            jwtAuthorizationRequest.addUserInfoClaim(new Claim(JwtClaimName.EMAIL, ClaimValue.createNull()));
+            jwtAuthorizationRequest.addUserInfoClaim(new Claim(JwtClaimName.EMAIL_VERIFIED, ClaimValue.createNull()));
+            jwtAuthorizationRequest
+                    .addUserInfoClaim(new Claim(JwtClaimName.PICTURE, ClaimValue.createEssential(false)));
+            jwtAuthorizationRequest
+                    .addIdTokenClaim(new Claim(JwtClaimName.AUTHENTICATION_TIME, ClaimValue.createNull()));
+            jwtAuthorizationRequest.addIdTokenClaim(new Claim(JwtClaimName.AUTHENTICATION_CONTEXT_CLASS_REFERENCE,
+                    ClaimValue.createValueList(new String[]{ACR_VALUE})));
+            String authJwt = jwtAuthorizationRequest.getEncodedJwt();
+            authorizationRequest.setRequest(authJwt);
+            System.out.println("Request JWT: " + authJwt);
+
+            request = ResteasyClientBuilder.newClient()
+                    .target(url.toString() + authorizePath + "?" + authorizationRequest.getQueryString()).request();
+            request.header("Authorization", "Basic " + authorizationRequest.getEncodedCredentials());
+            request.header("Accept", MediaType.TEXT_PLAIN);
+        } catch (Exception e) {
+            fail(e.getMessage(), e);
+        }
+
+        Response response = request.get();
+        String entity = response.readEntity(String.class);
+
+        showResponse("omittedRequestObjectSigningAlgStep3NONE", response, entity);
+
+        assertEquals(response.getStatus(), 302, "Unexpected response code.");
+        assertNotNull(response.getLocation(), "Unexpected result: " + response.getLocation());
+
+        try {
+            URI uri = new URI(response.getLocation().toString());
+            assertNotNull(uri.getFragment(), "Query string is null");
+
+            Map<String, String> params = QueryStringDecoder.decode(uri.getFragment());
+
+            assertNotNull(params.get("access_token"), "The accessToken is null");
+            assertNotNull(params.get("id_token"), "The idToken is null");
+            assertNotNull(params.get("scope"), "The scope is null");
+            assertNotNull(params.get("state"), "The state is null");
+        } catch (URISyntaxException e) {
+            e.printStackTrace();
+            fail("Response URI is not well formed");
+        }
+    }
+
+    /**
+     * Request authorization with Request Object Signing Alg <code>HS256</code>.
+     */
+    @Parameters({"authorizePath", "userId", "userSecret", "redirectUri"})
+    @Test(dependsOnMethods = "omittedRequestObjectSigningAlgStep2")
+    public void omittedRequestObjectSigningAlgStep3HS256(final String authorizePath, final String userId,
+                                                         final String userSecret, final String redirectUri) throws Exception {
+        Builder request = null;
+        try {
+            List<ResponseType> responseTypes = Arrays.asList(ResponseType.TOKEN, ResponseType.ID_TOKEN);
+            List<String> scopes = Arrays.asList("openid", "profile", "address", "email");
+            String nonce = UUID.randomUUID().toString();
+            String state = UUID.randomUUID().toString();
+
+            AuthorizationRequest authorizationRequest = new AuthorizationRequest(responseTypes, clientId1, scopes,
+                    redirectUri, nonce);
+            authorizationRequest.setState(state);
+            authorizationRequest.getPrompts().add(Prompt.NONE);
+            authorizationRequest.setAuthUsername(userId);
+            authorizationRequest.setAuthPassword(userSecret);
+
+            OxAuthCryptoProvider cryptoProvider = new OxAuthCryptoProvider();
+
+            JwtAuthorizationRequest jwtAuthorizationRequest = new JwtAuthorizationRequest(authorizationRequest,
+                    SignatureAlgorithm.HS256, clientSecret1, cryptoProvider);
+            jwtAuthorizationRequest.addUserInfoClaim(new Claim(JwtClaimName.NAME, ClaimValue.createNull()));
+            jwtAuthorizationRequest
+                    .addUserInfoClaim(new Claim(JwtClaimName.NICKNAME, ClaimValue.createEssential(false)));
+            jwtAuthorizationRequest.addUserInfoClaim(new Claim(JwtClaimName.EMAIL, ClaimValue.createNull()));
+            jwtAuthorizationRequest.addUserInfoClaim(new Claim(JwtClaimName.EMAIL_VERIFIED, ClaimValue.createNull()));
+            jwtAuthorizationRequest
+                    .addUserInfoClaim(new Claim(JwtClaimName.PICTURE, ClaimValue.createEssential(false)));
+            jwtAuthorizationRequest
+                    .addIdTokenClaim(new Claim(JwtClaimName.AUTHENTICATION_TIME, ClaimValue.createNull()));
+            jwtAuthorizationRequest.addIdTokenClaim(new Claim(JwtClaimName.AUTHENTICATION_CONTEXT_CLASS_REFERENCE,
+                    ClaimValue.createValueList(new String[]{ACR_VALUE})));
+            String authJwt = jwtAuthorizationRequest.getEncodedJwt();
+            authorizationRequest.setRequest(authJwt);
+            System.out.println("Request JWT: " + authJwt);
+
+            request = ResteasyClientBuilder.newClient()
+                    .target(url.toString() + authorizePath + "?" + authorizationRequest.getQueryString()).request();
+            request.header("Authorization", "Basic " + authorizationRequest.getEncodedCredentials());
+            request.header("Accept", MediaType.TEXT_PLAIN);
+        } catch (Exception e) {
+            fail(e.getMessage(), e);
+        }
+
+        Response response = request.get();
+        String entity = response.readEntity(String.class);
+
+        showResponse("omittedRequestObjectSigningAlgStep3HS256", response, entity);
+
+        assertEquals(response.getStatus(), 302, "Unexpected response code.");
+        assertNotNull(response.getLocation(), "Unexpected result: " + response.getLocation());
+
+        try {
+            URI uri = new URI(response.getLocation().toString());
+            assertNotNull(uri.getFragment(), "Query string is null");
+
+            Map<String, String> params = QueryStringDecoder.decode(uri.getFragment());
+
+            assertNotNull(params.get("access_token"), "The accessToken is null");
+            assertNotNull(params.get("id_token"), "The idToken is null");
+            assertNotNull(params.get("scope"), "The scope is null");
+            assertNotNull(params.get("state"), "The state is null");
+        } catch (URISyntaxException e) {
+            e.printStackTrace();
+            fail("Response URI is not well formed");
+        }
+    }
+
+    /**
+     * Request authorization with Request Object Signing Alg <code>HS384</code>.
+     */
+    @Parameters({"authorizePath", "userId", "userSecret", "redirectUri"})
+    @Test(dependsOnMethods = "omittedRequestObjectSigningAlgStep2")
+    public void omittedRequestObjectSigningAlgStep3HS384(final String authorizePath, final String userId,
+                                                         final String userSecret, final String redirectUri) throws Exception {
+        Builder request = null;
+        try {
+            List<ResponseType> responseTypes = Arrays.asList(ResponseType.TOKEN, ResponseType.ID_TOKEN);
+            List<String> scopes = Arrays.asList("openid", "profile", "address", "email");
+            String nonce = UUID.randomUUID().toString();
+            String state = UUID.randomUUID().toString();
+
+            AuthorizationRequest authorizationRequest = new AuthorizationRequest(responseTypes, clientId1, scopes,
+                    redirectUri, nonce);
+            authorizationRequest.setState(state);
+            authorizationRequest.getPrompts().add(Prompt.NONE);
+            authorizationRequest.setAuthUsername(userId);
+            authorizationRequest.setAuthPassword(userSecret);
+
+            OxAuthCryptoProvider cryptoProvider = new OxAuthCryptoProvider();
+
+            JwtAuthorizationRequest jwtAuthorizationRequest = new JwtAuthorizationRequest(authorizationRequest,
+                    SignatureAlgorithm.HS384, clientSecret1, cryptoProvider);
+            jwtAuthorizationRequest.addUserInfoClaim(new Claim(JwtClaimName.NAME, ClaimValue.createNull()));
+            jwtAuthorizationRequest
+                    .addUserInfoClaim(new Claim(JwtClaimName.NICKNAME, ClaimValue.createEssential(false)));
+            jwtAuthorizationRequest.addUserInfoClaim(new Claim(JwtClaimName.EMAIL, ClaimValue.createNull()));
+            jwtAuthorizationRequest.addUserInfoClaim(new Claim(JwtClaimName.EMAIL_VERIFIED, ClaimValue.createNull()));
+            jwtAuthorizationRequest
+                    .addUserInfoClaim(new Claim(JwtClaimName.PICTURE, ClaimValue.createEssential(false)));
+            jwtAuthorizationRequest
+                    .addIdTokenClaim(new Claim(JwtClaimName.AUTHENTICATION_TIME, ClaimValue.createNull()));
+            jwtAuthorizationRequest.addIdTokenClaim(new Claim(JwtClaimName.AUTHENTICATION_CONTEXT_CLASS_REFERENCE,
+                    ClaimValue.createValueList(new String[]{ACR_VALUE})));
+            String authJwt = jwtAuthorizationRequest.getEncodedJwt();
+            authorizationRequest.setRequest(authJwt);
+            System.out.println("Request JWT: " + authJwt);
+
+            request = ResteasyClientBuilder.newClient()
+                    .target(url.toString() + authorizePath + "?" + authorizationRequest.getQueryString()).request();
+            request.header("Authorization", "Basic " + authorizationRequest.getEncodedCredentials());
+            request.header("Accept", MediaType.TEXT_PLAIN);
+        } catch (Exception e) {
+            fail(e.getMessage(), e);
+        }
+
+        Response response = request.get();
+        String entity = response.readEntity(String.class);
+
+        showResponse("omittedRequestObjectSigningAlgStep3HS384", response, entity);
+
+        assertEquals(response.getStatus(), 302, "Unexpected response code.");
+        assertNotNull(response.getLocation(), "Unexpected result: " + response.getLocation());
+
+        try {
+            URI uri = new URI(response.getLocation().toString());
+            assertNotNull(uri.getFragment(), "Query string is null");
+
+            Map<String, String> params = QueryStringDecoder.decode(uri.getFragment());
+
+            assertNotNull(params.get("access_token"), "The accessToken is null");
+            assertNotNull(params.get("id_token"), "The idToken is null");
+            assertNotNull(params.get("scope"), "The scope is null");
+            assertNotNull(params.get("state"), "The state is null");
+        } catch (URISyntaxException e) {
+            e.printStackTrace();
+            fail("Response URI is not well formed");
+        }
+    }
+
+    /**
+     * Request authorization with Request Object Signing Alg <code>HS512</code>.
+     */
+    @Parameters({"authorizePath", "userId", "userSecret", "redirectUri"})
+    @Test(dependsOnMethods = "omittedRequestObjectSigningAlgStep2")
+    public void omittedRequestObjectSigningAlgStep3HS512(final String authorizePath, final String userId,
+                                                         final String userSecret, final String redirectUri) throws Exception {
+        Builder request = null;
+        try {
+            List<ResponseType> responseTypes = Arrays.asList(ResponseType.TOKEN, ResponseType.ID_TOKEN);
+            List<String> scopes = Arrays.asList("openid", "profile", "address", "email");
+            String nonce = UUID.randomUUID().toString();
+            String state = UUID.randomUUID().toString();
+
+            AuthorizationRequest authorizationRequest = new AuthorizationRequest(responseTypes, clientId1, scopes,
+                    redirectUri, nonce);
+            authorizationRequest.setState(state);
+            authorizationRequest.getPrompts().add(Prompt.NONE);
+            authorizationRequest.setAuthUsername(userId);
+            authorizationRequest.setAuthPassword(userSecret);
+
+            OxAuthCryptoProvider cryptoProvider = new OxAuthCryptoProvider();
+
+            JwtAuthorizationRequest jwtAuthorizationRequest = new JwtAuthorizationRequest(authorizationRequest,
+                    SignatureAlgorithm.HS512, clientSecret1, cryptoProvider);
+            jwtAuthorizationRequest.addUserInfoClaim(new Claim(JwtClaimName.NAME, ClaimValue.createNull()));
+            jwtAuthorizationRequest
+                    .addUserInfoClaim(new Claim(JwtClaimName.NICKNAME, ClaimValue.createEssential(false)));
+            jwtAuthorizationRequest.addUserInfoClaim(new Claim(JwtClaimName.EMAIL, ClaimValue.createNull()));
+            jwtAuthorizationRequest.addUserInfoClaim(new Claim(JwtClaimName.EMAIL_VERIFIED, ClaimValue.createNull()));
+            jwtAuthorizationRequest
+                    .addUserInfoClaim(new Claim(JwtClaimName.PICTURE, ClaimValue.createEssential(false)));
+            jwtAuthorizationRequest
+                    .addIdTokenClaim(new Claim(JwtClaimName.AUTHENTICATION_TIME, ClaimValue.createNull()));
+            jwtAuthorizationRequest.addIdTokenClaim(new Claim(JwtClaimName.AUTHENTICATION_CONTEXT_CLASS_REFERENCE,
+                    ClaimValue.createValueList(new String[]{ACR_VALUE})));
+            String authJwt = jwtAuthorizationRequest.getEncodedJwt();
+            authorizationRequest.setRequest(authJwt);
+            System.out.println("Request JWT: " + authJwt);
+
+            request = ResteasyClientBuilder.newClient()
+                    .target(url.toString() + authorizePath + "?" + authorizationRequest.getQueryString()).request();
+            request.header("Authorization", "Basic " + authorizationRequest.getEncodedCredentials());
+            request.header("Accept", MediaType.TEXT_PLAIN);
+        } catch (Exception e) {
+            fail(e.getMessage(), e);
+        }
+
+        Response response = request.get();
+        String entity = response.readEntity(String.class);
+
+        showResponse("omittedRequestObjectSigningAlgStep3HS512", response, entity);
+
+        assertEquals(response.getStatus(), 302, "Unexpected response code.");
+        assertNotNull(response.getLocation(), "Unexpected result: " + response.getLocation());
+
+        try {
+            URI uri = new URI(response.getLocation().toString());
+            assertNotNull(uri.getFragment(), "Query string is null");
+
+            Map<String, String> params = QueryStringDecoder.decode(uri.getFragment());
+
+            assertNotNull(params.get("access_token"), "The accessToken is null");
+            assertNotNull(params.get("id_token"), "The idToken is null");
+            assertNotNull(params.get("scope"), "The scope is null");
+            assertNotNull(params.get("state"), "The state is null");
+        } catch (URISyntaxException e) {
+            e.printStackTrace();
+            fail("Response URI is not well formed");
+        }
+    }
+
+    /**
+     * Request authorization with Request Object Signing Alg <code>RS256</code>.
+     */
+    @Parameters({"authorizePath", "userId", "userSecret", "redirectUri", "RS256_keyId", "dnName", "keyStoreFile",
+            "keyStoreSecret"})
+    @Test(dependsOnMethods = "omittedRequestObjectSigningAlgStep2")
+    public void omittedRequestObjectSigningAlgStep3RS256(final String authorizePath, final String userId,
+                                                         final String userSecret, final String redirectUri, final String keyId, final String dnName,
+                                                         final String keyStoreFile, final String keyStoreSecret) throws Exception {
+        Builder request = null;
+        try {
+            OxAuthCryptoProvider cryptoProvider = new OxAuthCryptoProvider(keyStoreFile, keyStoreSecret, dnName);
+
+            List<ResponseType> responseTypes = Arrays.asList(ResponseType.TOKEN);
+            List<String> scopes = Arrays.asList("openid");
+            String nonce = UUID.randomUUID().toString();
+            String state = UUID.randomUUID().toString();
+
+            AuthorizationRequest authorizationRequest = new AuthorizationRequest(responseTypes, clientId1, scopes,
+                    redirectUri, nonce);
+            authorizationRequest.setState(state);
+            authorizationRequest.getPrompts().add(Prompt.NONE);
+            authorizationRequest.setAuthUsername(userId);
+            authorizationRequest.setAuthPassword(userSecret);
+
+            JwtAuthorizationRequest jwtAuthorizationRequest = new JwtAuthorizationRequest(authorizationRequest,
+                    SignatureAlgorithm.RS256, cryptoProvider);
+            jwtAuthorizationRequest.setKeyId(keyId);
+            jwtAuthorizationRequest.addUserInfoClaim(new Claim(JwtClaimName.NAME, ClaimValue.createNull()));
+            jwtAuthorizationRequest
+                    .addUserInfoClaim(new Claim(JwtClaimName.NICKNAME, ClaimValue.createEssential(false)));
+            jwtAuthorizationRequest.addUserInfoClaim(new Claim(JwtClaimName.EMAIL, ClaimValue.createNull()));
+            jwtAuthorizationRequest.addUserInfoClaim(new Claim(JwtClaimName.EMAIL_VERIFIED, ClaimValue.createNull()));
+            jwtAuthorizationRequest
+                    .addUserInfoClaim(new Claim(JwtClaimName.PICTURE, ClaimValue.createEssential(false)));
+            jwtAuthorizationRequest
+                    .addIdTokenClaim(new Claim(JwtClaimName.AUTHENTICATION_TIME, ClaimValue.createNull()));
+            jwtAuthorizationRequest.addIdTokenClaim(new Claim(JwtClaimName.AUTHENTICATION_CONTEXT_CLASS_REFERENCE,
+                    ClaimValue.createValueList(new String[]{ACR_VALUE})));
+            String authJwt = jwtAuthorizationRequest.getEncodedJwt();
+            authorizationRequest.setRequest(authJwt);
+            System.out.println("Request JWT: " + authJwt);
+
+            request = ResteasyClientBuilder.newClient()
+                    .target(url.toString() + authorizePath + "?" + authorizationRequest.getQueryString()).request();
+            request.header("Authorization", "Basic " + authorizationRequest.getEncodedCredentials());
+            request.header("Accept", MediaType.TEXT_PLAIN);
+        } catch (Exception e) {
+            fail(e.getMessage(), e);
+        }
+
+        Response response = request.get();
+        String entity = response.readEntity(String.class);
+
+        showResponse("omittedRequestObjectSigningAlgStep3RS256", response, entity);
+
+        assertEquals(response.getStatus(), 302, "Unexpected response code.");
+        assertNotNull(response.getLocation(), "Unexpected result: " + response.getLocation());
+
+        try {
+            URI uri = new URI(response.getLocation().toString());
+            assertNotNull(uri.getFragment(), "Query string is null");
+
+            Map<String, String> params = QueryStringDecoder.decode(uri.getFragment());
+
+            assertNotNull(params.get("access_token"), "The accessToken is null");
+            assertNotNull(params.get("scope"), "The scope is null");
+            assertNotNull(params.get("state"), "The state is null");
+        } catch (URISyntaxException e) {
+            e.printStackTrace();
+            fail("Response URI is not well formed");
+        }
+    }
+
+    /**
+     * Request authorization with Request Object Signing Alg <code>RS384</code>.
+     */
+    @Parameters({"authorizePath", "userId", "userSecret", "redirectUri", "RS384_keyId", "dnName", "keyStoreFile",
+            "keyStoreSecret"})
+    @Test(dependsOnMethods = "omittedRequestObjectSigningAlgStep2")
+    public void omittedRequestObjectSigningAlgStep3RS384(final String authorizePath, final String userId,
+                                                         final String userSecret, final String redirectUri, final String keyId, final String dnName,
+                                                         final String keyStoreFile, final String keyStoreSecret) throws Exception {
+        Builder request = null;
+        try {
+            OxAuthCryptoProvider cryptoProvider = new OxAuthCryptoProvider(keyStoreFile, keyStoreSecret, dnName);
+
+            List<ResponseType> responseTypes = Arrays.asList(ResponseType.TOKEN);
+            List<String> scopes = Arrays.asList("openid");
+            String nonce = UUID.randomUUID().toString();
+            String state = UUID.randomUUID().toString();
+
+            AuthorizationRequest authorizationRequest = new AuthorizationRequest(responseTypes, clientId1, scopes,
+                    redirectUri, nonce);
+            authorizationRequest.setState(state);
+            authorizationRequest.getPrompts().add(Prompt.NONE);
+            authorizationRequest.setAuthUsername(userId);
+            authorizationRequest.setAuthPassword(userSecret);
+
+            JwtAuthorizationRequest jwtAuthorizationRequest = new JwtAuthorizationRequest(authorizationRequest,
+                    SignatureAlgorithm.RS384, cryptoProvider);
+            jwtAuthorizationRequest.setKeyId(keyId);
+            jwtAuthorizationRequest.addUserInfoClaim(new Claim(JwtClaimName.NAME, ClaimValue.createNull()));
+            jwtAuthorizationRequest
+                    .addUserInfoClaim(new Claim(JwtClaimName.NICKNAME, ClaimValue.createEssential(false)));
+            jwtAuthorizationRequest.addUserInfoClaim(new Claim(JwtClaimName.EMAIL, ClaimValue.createNull()));
+            jwtAuthorizationRequest.addUserInfoClaim(new Claim(JwtClaimName.EMAIL_VERIFIED, ClaimValue.createNull()));
+            jwtAuthorizationRequest
+                    .addUserInfoClaim(new Claim(JwtClaimName.PICTURE, ClaimValue.createEssential(false)));
+            jwtAuthorizationRequest
+                    .addIdTokenClaim(new Claim(JwtClaimName.AUTHENTICATION_TIME, ClaimValue.createNull()));
+            jwtAuthorizationRequest.addIdTokenClaim(new Claim(JwtClaimName.AUTHENTICATION_CONTEXT_CLASS_REFERENCE,
+                    ClaimValue.createValueList(new String[]{ACR_VALUE})));
+            String authJwt = jwtAuthorizationRequest.getEncodedJwt();
+            authorizationRequest.setRequest(authJwt);
+            System.out.println("Request JWT: " + authJwt);
+
+            request = ResteasyClientBuilder.newClient()
+                    .target(url.toString() + authorizePath + "?" + authorizationRequest.getQueryString()).request();
+            request.header("Authorization", "Basic " + authorizationRequest.getEncodedCredentials());
+            request.header("Accept", MediaType.TEXT_PLAIN);
+        } catch (Exception e) {
+            fail(e.getMessage(), e);
+        }
+
+        Response response = request.get();
+        String entity = response.readEntity(String.class);
+
+        showResponse("omittedRequestObjectSigningAlgStep3RS384", response, entity);
+
+        assertEquals(response.getStatus(), 302, "Unexpected response code.");
+        assertNotNull(response.getLocation(), "Unexpected result: " + response.getLocation());
+
+        try {
+            URI uri = new URI(response.getLocation().toString());
+            assertNotNull(uri.getFragment(), "Query string is null");
+
+            Map<String, String> params = QueryStringDecoder.decode(uri.getFragment());
+
+            assertNotNull(params.get("access_token"), "The accessToken is null");
+            assertNotNull(params.get("scope"), "The scope is null");
+            assertNotNull(params.get("state"), "The state is null");
+        } catch (URISyntaxException e) {
+            e.printStackTrace();
+            fail("Response URI is not well formed");
+        }
+    }
+
+    /**
+     * Request authorization with Request Object Signing Alg <code>RS512</code>.
+     */
+    @Parameters({"authorizePath", "userId", "userSecret", "redirectUri", "RS512_keyId", "dnName", "keyStoreFile",
+            "keyStoreSecret"})
+    @Test(dependsOnMethods = "omittedRequestObjectSigningAlgStep2")
+    public void omittedRequestObjectSigningAlgStep3RS512(final String authorizePath, final String userId,
+                                                         final String userSecret, final String redirectUri, final String keyId, final String dnName,
+                                                         final String keyStoreFile, final String keyStoreSecret) throws Exception {
+        Builder request = null;
+        try {
+            OxAuthCryptoProvider cryptoProvider = new OxAuthCryptoProvider(keyStoreFile, keyStoreSecret, dnName);
+
+            List<ResponseType> responseTypes = Arrays.asList(ResponseType.TOKEN);
+            List<String> scopes = Arrays.asList("openid");
+            String nonce = UUID.randomUUID().toString();
+            String state = UUID.randomUUID().toString();
+
+            AuthorizationRequest authorizationRequest = new AuthorizationRequest(responseTypes, clientId1, scopes,
+                    redirectUri, nonce);
+            authorizationRequest.setState(state);
+            authorizationRequest.getPrompts().add(Prompt.NONE);
+            authorizationRequest.setAuthUsername(userId);
+            authorizationRequest.setAuthPassword(userSecret);
+
+            JwtAuthorizationRequest jwtAuthorizationRequest = new JwtAuthorizationRequest(authorizationRequest,
+                    SignatureAlgorithm.RS512, cryptoProvider);
+            jwtAuthorizationRequest.setKeyId(keyId);
+            jwtAuthorizationRequest.addUserInfoClaim(new Claim(JwtClaimName.NAME, ClaimValue.createNull()));
+            jwtAuthorizationRequest
+                    .addUserInfoClaim(new Claim(JwtClaimName.NICKNAME, ClaimValue.createEssential(false)));
+            jwtAuthorizationRequest.addUserInfoClaim(new Claim(JwtClaimName.EMAIL, ClaimValue.createNull()));
+            jwtAuthorizationRequest.addUserInfoClaim(new Claim(JwtClaimName.EMAIL_VERIFIED, ClaimValue.createNull()));
+            jwtAuthorizationRequest
+                    .addUserInfoClaim(new Claim(JwtClaimName.PICTURE, ClaimValue.createEssential(false)));
+            jwtAuthorizationRequest
+                    .addIdTokenClaim(new Claim(JwtClaimName.AUTHENTICATION_TIME, ClaimValue.createNull()));
+            jwtAuthorizationRequest.addIdTokenClaim(new Claim(JwtClaimName.AUTHENTICATION_CONTEXT_CLASS_REFERENCE,
+                    ClaimValue.createValueList(new String[]{ACR_VALUE})));
+            String authJwt = jwtAuthorizationRequest.getEncodedJwt();
+            authorizationRequest.setRequest(authJwt);
+            System.out.println("Request JWT: " + authJwt);
+
+            request = ResteasyClientBuilder.newClient()
+                    .target(url.toString() + authorizePath + "?" + authorizationRequest.getQueryString()).request();
+            request.header("Authorization", "Basic " + authorizationRequest.getEncodedCredentials());
+            request.header("Accept", MediaType.TEXT_PLAIN);
+        } catch (Exception e) {
+            fail(e.getMessage(), e);
+        }
+
+        Response response = request.get();
+        String entity = response.readEntity(String.class);
+
+        showResponse("omittedRequestObjectSigningAlgStep3RS512", response, entity);
+
+        assertEquals(response.getStatus(), 302, "Unexpected response code.");
+        assertNotNull(response.getLocation(), "Unexpected result: " + response.getLocation());
+
+        try {
+            URI uri = new URI(response.getLocation().toString());
+            assertNotNull(uri.getFragment(), "Query string is null");
+
+            Map<String, String> params = QueryStringDecoder.decode(uri.getFragment());
+
+            assertNotNull(params.get("access_token"), "The accessToken is null");
+            assertNotNull(params.get("scope"), "The scope is null");
+            assertNotNull(params.get("state"), "The state is null");
+        } catch (URISyntaxException e) {
+            e.printStackTrace();
+            fail("Response URI is not well formed");
+        }
+    }
+
+    /**
+     * Request authorization with Request Object Signing Alg <code>ES256</code>.
+     */
+    @Parameters({"authorizePath", "userId", "userSecret", "redirectUri", "ES256_keyId", "dnName", "keyStoreFile",
+            "keyStoreSecret"})
+    @Test(dependsOnMethods = "omittedRequestObjectSigningAlgStep2")
+    public void omittedRequestObjectSigningAlgStep3ES256(final String authorizePath, final String userId,
+                                                         final String userSecret, final String redirectUri, final String keyId, final String dnName,
+                                                         final String keyStoreFile, final String keyStoreSecret) throws Exception {
+        Builder request = null;
+        try {
+            OxAuthCryptoProvider cryptoProvider = new OxAuthCryptoProvider(keyStoreFile, keyStoreSecret, dnName);
+
+            List<ResponseType> responseTypes = Arrays.asList(ResponseType.TOKEN);
+            List<String> scopes = Arrays.asList("openid");
+            String nonce = UUID.randomUUID().toString();
+            String state = UUID.randomUUID().toString();
+
+            AuthorizationRequest authorizationRequest = new AuthorizationRequest(responseTypes, clientId1, scopes,
+                    redirectUri, nonce);
+            authorizationRequest.setState(state);
+            authorizationRequest.getPrompts().add(Prompt.NONE);
+            authorizationRequest.setAuthUsername(userId);
+            authorizationRequest.setAuthPassword(userSecret);
+
+            JwtAuthorizationRequest jwtAuthorizationRequest = new JwtAuthorizationRequest(authorizationRequest,
+                    SignatureAlgorithm.ES256, cryptoProvider);
+            jwtAuthorizationRequest.setKeyId(keyId);
+            jwtAuthorizationRequest.addUserInfoClaim(new Claim(JwtClaimName.NAME, ClaimValue.createNull()));
+            jwtAuthorizationRequest
+                    .addUserInfoClaim(new Claim(JwtClaimName.NICKNAME, ClaimValue.createEssential(false)));
+            jwtAuthorizationRequest.addUserInfoClaim(new Claim(JwtClaimName.EMAIL, ClaimValue.createNull()));
+            jwtAuthorizationRequest.addUserInfoClaim(new Claim(JwtClaimName.EMAIL_VERIFIED, ClaimValue.createNull()));
+            jwtAuthorizationRequest
+                    .addUserInfoClaim(new Claim(JwtClaimName.PICTURE, ClaimValue.createEssential(false)));
+            jwtAuthorizationRequest
+                    .addIdTokenClaim(new Claim(JwtClaimName.AUTHENTICATION_TIME, ClaimValue.createNull()));
+            jwtAuthorizationRequest.addIdTokenClaim(new Claim(JwtClaimName.AUTHENTICATION_CONTEXT_CLASS_REFERENCE,
+                    ClaimValue.createValueList(new String[]{ACR_VALUE})));
+            String authJwt = jwtAuthorizationRequest.getEncodedJwt();
+            authorizationRequest.setRequest(authJwt);
+            System.out.println("Request JWT: " + authJwt);
+
+            request = ResteasyClientBuilder.newClient()
+                    .target(url.toString() + authorizePath + "?" + authorizationRequest.getQueryString()).request();
+            request.header("Authorization", "Basic " + authorizationRequest.getEncodedCredentials());
+            request.header("Accept", MediaType.TEXT_PLAIN);
+        } catch (Exception e) {
+            fail(e.getMessage(), e);
+        }
+
+        Response response = request.get();
+        String entity = response.readEntity(String.class);
+
+        showResponse("omittedRequestObjectSigningAlgStep3ES256", response, entity);
+
+        assertEquals(response.getStatus(), 302, "Unexpected response code.");
+        assertNotNull(response.getLocation(), "Unexpected result: " + response.getLocation());
+
+        try {
+            URI uri = new URI(response.getLocation().toString());
+            assertNotNull(uri.getFragment(), "Query string is null");
+
+            Map<String, String> params = QueryStringDecoder.decode(uri.getFragment());
+
+            assertNotNull(params.get("access_token"), "The accessToken is null");
+            assertNotNull(params.get("scope"), "The scope is null");
+            assertNotNull(params.get("state"), "The state is null");
+        } catch (URISyntaxException e) {
+            e.printStackTrace();
+            fail("Response URI is not well formed");
+        }
+    }
+
+    /**
+     * Request authorization with Request Object Signing Alg <code>ES384</code>.
+     */
+    @Parameters({"authorizePath", "userId", "userSecret", "redirectUri", "ES384_keyId", "dnName", "keyStoreFile",
+            "keyStoreSecret"})
+    @Test(dependsOnMethods = "omittedRequestObjectSigningAlgStep2")
+    public void omittedRequestObjectSigningAlgStep3ES384(final String authorizePath, final String userId,
+                                                         final String userSecret, final String redirectUri, final String keyId, final String dnName,
+                                                         final String keyStoreFile, final String keyStoreSecret) throws Exception {
+        Builder request = null;
+        try {
+            OxAuthCryptoProvider cryptoProvider = new OxAuthCryptoProvider(keyStoreFile, keyStoreSecret, dnName);
+
+            List<ResponseType> responseTypes = Arrays.asList(ResponseType.TOKEN);
+            List<String> scopes = Arrays.asList("openid");
+            String nonce = UUID.randomUUID().toString();
+            String state = UUID.randomUUID().toString();
+
+            AuthorizationRequest authorizationRequest = new AuthorizationRequest(responseTypes, clientId1, scopes,
+                    redirectUri, nonce);
+            authorizationRequest.setState(state);
+            authorizationRequest.getPrompts().add(Prompt.NONE);
+            authorizationRequest.setAuthUsername(userId);
+            authorizationRequest.setAuthPassword(userSecret);
+
+            JwtAuthorizationRequest jwtAuthorizationRequest = new JwtAuthorizationRequest(authorizationRequest,
+                    SignatureAlgorithm.ES384, cryptoProvider);
+            jwtAuthorizationRequest.setKeyId(keyId);
+            jwtAuthorizationRequest.addUserInfoClaim(new Claim(JwtClaimName.NAME, ClaimValue.createNull()));
+            jwtAuthorizationRequest
+                    .addUserInfoClaim(new Claim(JwtClaimName.NICKNAME, ClaimValue.createEssential(false)));
+            jwtAuthorizationRequest.addUserInfoClaim(new Claim(JwtClaimName.EMAIL, ClaimValue.createNull()));
+            jwtAuthorizationRequest.addUserInfoClaim(new Claim(JwtClaimName.EMAIL_VERIFIED, ClaimValue.createNull()));
+            jwtAuthorizationRequest
+                    .addUserInfoClaim(new Claim(JwtClaimName.PICTURE, ClaimValue.createEssential(false)));
+            jwtAuthorizationRequest
+                    .addIdTokenClaim(new Claim(JwtClaimName.AUTHENTICATION_TIME, ClaimValue.createNull()));
+            jwtAuthorizationRequest.addIdTokenClaim(new Claim(JwtClaimName.AUTHENTICATION_CONTEXT_CLASS_REFERENCE,
+                    ClaimValue.createValueList(new String[]{ACR_VALUE})));
+            String authJwt = jwtAuthorizationRequest.getEncodedJwt();
+            authorizationRequest.setRequest(authJwt);
+            System.out.println("Request JWT: " + authJwt);
+
+            request = ResteasyClientBuilder.newClient()
+                    .target(url.toString() + authorizePath + "?" + authorizationRequest.getQueryString()).request();
+            request.header("Authorization", "Basic " + authorizationRequest.getEncodedCredentials());
+            request.header("Accept", MediaType.TEXT_PLAIN);
+        } catch (Exception e) {
+            fail(e.getMessage(), e);
+        }
+
+        Response response = request.get();
+        String entity = response.readEntity(String.class);
+
+        showResponse("omittedRequestObjectSigningAlgStep3ES384", response, entity);
+
+        assertEquals(response.getStatus(), 302, "Unexpected response code.");
+        assertNotNull(response.getLocation(), "Unexpected result: " + response.getLocation());
+
+        try {
+            URI uri = new URI(response.getLocation().toString());
+            assertNotNull(uri.getFragment(), "Query string is null");
+
+            Map<String, String> params = QueryStringDecoder.decode(uri.getFragment());
+
+            assertNotNull(params.get("access_token"), "The accessToken is null");
+            assertNotNull(params.get("scope"), "The scope is null");
+            assertNotNull(params.get("state"), "The state is null");
+        } catch (URISyntaxException e) {
+            e.printStackTrace();
+            fail("Response URI is not well formed");
+        }
+    }
+
+    /**
+     * Request authorization with Request Object Signing Alg <code>ES512</code>.
+     */
+    @Parameters({"authorizePath", "userId", "userSecret", "redirectUri", "ES512_keyId", "dnName", "keyStoreFile",
+            "keyStoreSecret"})
+    @Test(dependsOnMethods = "omittedRequestObjectSigningAlgStep2")
+    public void omittedRequestObjectSigningAlgStep3ES512(final String authorizePath, final String userId,
+                                                         final String userSecret, final String redirectUri, final String keyId, final String dnName,
+                                                         final String keyStoreFile, final String keyStoreSecret) throws Exception {
+        Builder request = null;
+        try {
+            OxAuthCryptoProvider cryptoProvider = new OxAuthCryptoProvider(keyStoreFile, keyStoreSecret, dnName);
+
+            List<ResponseType> responseTypes = Arrays.asList(ResponseType.TOKEN);
+            List<String> scopes = Arrays.asList("openid");
+            String nonce = UUID.randomUUID().toString();
+            String state = UUID.randomUUID().toString();
+
+            AuthorizationRequest authorizationRequest = new AuthorizationRequest(responseTypes, clientId1, scopes,
+                    redirectUri, nonce);
+            authorizationRequest.setState(state);
+            authorizationRequest.getPrompts().add(Prompt.NONE);
+            authorizationRequest.setAuthUsername(userId);
+            authorizationRequest.setAuthPassword(userSecret);
+
+            JwtAuthorizationRequest jwtAuthorizationRequest = new JwtAuthorizationRequest(authorizationRequest,
+                    SignatureAlgorithm.ES512, cryptoProvider);
+            jwtAuthorizationRequest.setKeyId(keyId);
+            jwtAuthorizationRequest.addUserInfoClaim(new Claim(JwtClaimName.NAME, ClaimValue.createNull()));
+            jwtAuthorizationRequest
+                    .addUserInfoClaim(new Claim(JwtClaimName.NICKNAME, ClaimValue.createEssential(false)));
+            jwtAuthorizationRequest.addUserInfoClaim(new Claim(JwtClaimName.EMAIL, ClaimValue.createNull()));
+            jwtAuthorizationRequest.addUserInfoClaim(new Claim(JwtClaimName.EMAIL_VERIFIED, ClaimValue.createNull()));
+            jwtAuthorizationRequest
+                    .addUserInfoClaim(new Claim(JwtClaimName.PICTURE, ClaimValue.createEssential(false)));
+            jwtAuthorizationRequest
+                    .addIdTokenClaim(new Claim(JwtClaimName.AUTHENTICATION_TIME, ClaimValue.createNull()));
+            jwtAuthorizationRequest.addIdTokenClaim(new Claim(JwtClaimName.AUTHENTICATION_CONTEXT_CLASS_REFERENCE,
+                    ClaimValue.createValueList(new String[]{ACR_VALUE})));
+            String authJwt = jwtAuthorizationRequest.getEncodedJwt();
+            authorizationRequest.setRequest(authJwt);
+            System.out.println("Request JWT: " + authJwt);
+
+            request = ResteasyClientBuilder.newClient()
+                    .target(url.toString() + authorizePath + "?" + authorizationRequest.getQueryString()).request();
+            request.header("Authorization", "Basic " + authorizationRequest.getEncodedCredentials());
+            request.header("Accept", MediaType.TEXT_PLAIN);
+        } catch (Exception e) {
+            fail(e.getMessage(), e);
+        }
+
+        Response response = request.get();
+        String entity = response.readEntity(String.class);
+
+        showResponse("omittedRequestObjectSigningAlgStep3ES512", response, entity);
+
+        assertEquals(response.getStatus(), 302, "Unexpected response code.");
+        assertNotNull(response.getLocation(), "Unexpected result: " + response.getLocation());
+
+        try {
+            URI uri = new URI(response.getLocation().toString());
+            assertNotNull(uri.getFragment(), "Query string is null");
+
+            Map<String, String> params = QueryStringDecoder.decode(uri.getFragment());
+
+            assertNotNull(params.get("access_token"), "The accessToken is null");
+            assertNotNull(params.get("scope"), "The scope is null");
+            assertNotNull(params.get("state"), "The state is null");
+        } catch (URISyntaxException e) {
+            e.printStackTrace();
+            fail("Response URI is not well formed");
+        }
+    }
+
+    /**
+     * Register a client with Request Object Signing Alg <code>NONE</code>.
+     */
+    @Parameters({"registerPath", "redirectUris", "clientJwksUri"})
+    @Test
+    public void requestObjectSigningAlgNoneStep1(final String registerPath, final String redirectUris,
+                                                 final String jwksUri) throws Exception {
+        Builder request = ResteasyClientBuilder.newClient().target(url.toString() + registerPath).request();
+
+        String registerRequestContent = null;
+        try {
+            RegisterRequest registerRequest = new RegisterRequest(ApplicationType.WEB, "oxAuth test app",
+                    StringUtils.spaceSeparatedToList(redirectUris));
+            registerRequest.setRequestObjectSigningAlg(SignatureAlgorithm.NONE);
+            registerRequest.setResponseTypes(Arrays.asList(ResponseType.TOKEN, ResponseType.ID_TOKEN));
+            registerRequest.addCustomAttribute("oxAuthTrustedClient", "true");
+
+            registerRequestContent = ServerUtil.toPrettyJson(registerRequest.getJSONParameters());
+        } catch (JSONException e) {
+            e.printStackTrace();
+            fail(e.getMessage());
+        }
+
+        Response response = request.post(Entity.json(registerRequestContent));
+        String entity = response.readEntity(String.class);
+
+        showResponse("requestObjectSigningAlgNoneStep1", response, entity);
+
+        assertEquals(response.getStatus(), 200, "Unexpected response code. " + entity);
+        assertNotNull(entity, "Unexpected result: " + entity);
+        try {
+            JSONObject jsonObj = new JSONObject(entity);
+            assertTrue(jsonObj.has(RegisterResponseParam.CLIENT_ID.toString()));
+            assertTrue(jsonObj.has(CLIENT_SECRET.toString()));
+            assertTrue(jsonObj.has(RegisterResponseParam.REGISTRATION_ACCESS_TOKEN.toString()));
+            assertTrue(jsonObj.has(REGISTRATION_CLIENT_URI.toString()));
+            assertTrue(jsonObj.has(CLIENT_ID_ISSUED_AT.toString()));
+            assertTrue(jsonObj.has(CLIENT_SECRET_EXPIRES_AT.toString()));
+
+            clientId2 = jsonObj.getString(RegisterResponseParam.CLIENT_ID.toString());
+            clientSecret2 = jsonObj.getString(RegisterResponseParam.CLIENT_SECRET.toString());
+            registrationAccessToken2 = jsonObj.getString(RegisterResponseParam.REGISTRATION_ACCESS_TOKEN.toString());
+            registrationClientUri2 = jsonObj.getString(RegisterResponseParam.REGISTRATION_CLIENT_URI.toString());
+        } catch (JSONException e) {
+            e.printStackTrace();
+            fail(e.getMessage() + "\nResponse was: " + entity);
+        }
+    }
+
+    /**
+     * Read client to check whether it is using the Request Object Signing Alg
+     * <code>NONE</code>.
+     */
+    @Parameters({"registerPath"})
+    @Test(dependsOnMethods = "requestObjectSigningAlgNoneStep1")
+    public void requestObjectSigningAlgNoneStep2(final String registerPath) throws Exception {
+        Builder request = ResteasyClientBuilder.newClient().target(url.toString() + registerPath + "?"
+                + registrationClientUri2.substring(registrationClientUri2.indexOf("?") + 1)).request();
+
+        request.header("Authorization", "Bearer " + registrationAccessToken2);
+
+        Response response = request.get();
+        String entity = response.readEntity(String.class);
+
+        showResponse("requestObjectSigningAlgNoneStep2", response, entity);
+
+        assertEquals(response.getStatus(), 200, "Unexpected response code. " + entity);
+        assertNotNull(entity, "Unexpected result: " + entity);
+        try {
+            JSONObject jsonObj = new JSONObject(entity);
+            assertTrue(jsonObj.has(RegisterResponseParam.CLIENT_ID.toString()));
+            assertTrue(jsonObj.has(CLIENT_SECRET.toString()));
+            assertTrue(jsonObj.has(CLIENT_ID_ISSUED_AT.toString()));
+            assertTrue(jsonObj.has(CLIENT_SECRET_EXPIRES_AT.toString()));
+
+            // Registered Metadata
+            assertTrue(jsonObj.has(REQUEST_OBJECT_SIGNING_ALG.toString()));
+            assertEquals(SignatureAlgorithm.fromString(jsonObj.getString(REQUEST_OBJECT_SIGNING_ALG.toString())),
+                    SignatureAlgorithm.NONE);
+            assertTrue(jsonObj.has(APPLICATION_TYPE.toString()));
+            assertTrue(jsonObj.has(RESPONSE_TYPES.toString()));
+            assertTrue(jsonObj.has(REDIRECT_URIS.toString()));
+            assertTrue(jsonObj.has(APPLICATION_TYPE.toString()));
+            assertTrue(jsonObj.has(CLIENT_NAME.toString()));
+            assertTrue(jsonObj.has(ID_TOKEN_SIGNED_RESPONSE_ALG.toString()));
+            assertTrue(jsonObj.has(SCOPE.toString()));
+        } catch (JSONException e) {
+            e.printStackTrace();
+            fail(e.getMessage() + "\nResponse was: " + entity);
+        }
+    }
+
+    /**
+     * Request authorization with Request Object Signing Alg <code>NONE</code>.
+     */
+    @Parameters({"authorizePath", "userId", "userSecret", "redirectUri"})
+    @Test(dependsOnMethods = "requestObjectSigningAlgNoneStep2")
+    public void requestObjectSigningAlgNoneStep3(final String authorizePath, final String userId,
+                                                 final String userSecret, final String redirectUri) throws Exception {
+        Builder request = null;
+        try {
+            List<ResponseType> responseTypes = Arrays.asList(ResponseType.TOKEN, ResponseType.ID_TOKEN);
+            List<String> scopes = Arrays.asList("openid", "profile", "address", "email");
+            String nonce = UUID.randomUUID().toString();
+            String state = UUID.randomUUID().toString();
+
+            AuthorizationRequest authorizationRequest = new AuthorizationRequest(responseTypes, clientId2, scopes,
+                    redirectUri, nonce);
+            authorizationRequest.setState(state);
+            authorizationRequest.getPrompts().add(Prompt.NONE);
+            authorizationRequest.setAuthUsername(userId);
+            authorizationRequest.setAuthPassword(userSecret);
+
+            OxAuthCryptoProvider cryptoProvider = new OxAuthCryptoProvider();
+
+            JwtAuthorizationRequest jwtAuthorizationRequest = new JwtAuthorizationRequest(authorizationRequest,
+                    SignatureAlgorithm.NONE, cryptoProvider);
+            jwtAuthorizationRequest.addUserInfoClaim(new Claim(JwtClaimName.NAME, ClaimValue.createNull()));
+            jwtAuthorizationRequest
+                    .addUserInfoClaim(new Claim(JwtClaimName.NICKNAME, ClaimValue.createEssential(false)));
+            jwtAuthorizationRequest.addUserInfoClaim(new Claim(JwtClaimName.EMAIL, ClaimValue.createNull()));
+            jwtAuthorizationRequest.addUserInfoClaim(new Claim(JwtClaimName.EMAIL_VERIFIED, ClaimValue.createNull()));
+            jwtAuthorizationRequest
+                    .addUserInfoClaim(new Claim(JwtClaimName.PICTURE, ClaimValue.createEssential(false)));
+            jwtAuthorizationRequest
+                    .addIdTokenClaim(new Claim(JwtClaimName.AUTHENTICATION_TIME, ClaimValue.createNull()));
+            jwtAuthorizationRequest.addIdTokenClaim(new Claim(JwtClaimName.AUTHENTICATION_CONTEXT_CLASS_REFERENCE,
+                    ClaimValue.createValueList(new String[]{ACR_VALUE})));
+            String authJwt = jwtAuthorizationRequest.getEncodedJwt();
+            authorizationRequest.setRequest(authJwt);
+            System.out.println("Request JWT: " + authJwt);
+
+            request = ResteasyClientBuilder.newClient()
+                    .target(url.toString() + authorizePath + "?" + authorizationRequest.getQueryString()).request();
+            request.header("Authorization", "Basic " + authorizationRequest.getEncodedCredentials());
+            request.header("Accept", MediaType.TEXT_PLAIN);
+        } catch (Exception e) {
+            fail(e.getMessage(), e);
+        }
+
+        Response response = request.get();
+        String entity = response.readEntity(String.class);
+
+        showResponse("requestObjectSigningAlgNoneStep3", response, entity);
+
+        assertEquals(response.getStatus(), 302, "Unexpected response code.");
+        assertNotNull(response.getLocation(), "Unexpected result: " + response.getLocation());
+
+        try {
+            URI uri = new URI(response.getLocation().toString());
+            assertNotNull(uri.getFragment(), "Query string is null");
+
+            Map<String, String> params = QueryStringDecoder.decode(uri.getFragment());
+
+            assertNotNull(params.get("access_token"), "The accessToken is null");
+            assertNotNull(params.get("id_token"), "The idToken is null");
+            assertNotNull(params.get("scope"), "The scope is null");
+            assertNotNull(params.get("state"), "The state is null");
+        } catch (URISyntaxException e) {
+            e.printStackTrace();
+            fail("Response URI is not well formed");
+        }
+    }
+
+    /**
+     * Fail 1: Request authorization with Request Object Signing Alg
+     * <code>HS256</code>.
+     */
+
+    /**
+     * Fail 2: Request authorization with Request Object Signing Alg
+     * <code>HS384</code>.
+     */
+
+    /**
+     * Fail 3: Request authorization with Request Object Signing Alg
+     * <code>HS512</code>.
+     */
+
+    /**
+     * Fail 4: Request authorization with Request Object Signing Alg
+     * <code>RS256</code>.
+     */
+
+    /**
+     * Fail 5: Request authorization with Request Object Signing Alg
+     * <code>RS384</code>.
+     */
+
+    /**
+     * Fail 6: Request authorization with Request Object Signing Alg
+     * <code>RS512</code>.
+     */
+
+    /**
+     * Fail 7: Request authorization with Request Object Signing Alg
+     * <code>ES256</code>.
+     */
+
+    /**
+     * Fail 8: Request authorization with Request Object Signing Alg
+     * <code>ES384</code>.
+     */
+
+    /**
+     * Fail 9: Request authorization with Request Object Signing Alg
+     * <code>ES512</code>.
+     */
+
+    /**
+     * Register a client with Request Object Signing Alg <code>HS256</code>.
+     */
+    @Parameters({"registerPath", "redirectUris"})
+    @Test
+    public void requestObjectSigningAlgHS256Step1(final String registerPath, final String redirectUris)
+            throws Exception {
+        Builder request = ResteasyClientBuilder.newClient().target(url.toString() + registerPath).request();
+
+        String registerRequestContent = null;
+        try {
+            RegisterRequest registerRequest = new RegisterRequest(ApplicationType.WEB, "oxAuth test app",
+                    StringUtils.spaceSeparatedToList(redirectUris));
+            registerRequest.setRequestObjectSigningAlg(SignatureAlgorithm.HS256);
+            registerRequest.setResponseTypes(Arrays.asList(ResponseType.TOKEN, ResponseType.ID_TOKEN));
+            registerRequest.addCustomAttribute("oxAuthTrustedClient", "true");
+
+            registerRequestContent = ServerUtil.toPrettyJson(registerRequest.getJSONParameters());
+        } catch (JSONException e) {
+            e.printStackTrace();
+            fail(e.getMessage());
+        }
+
+        Response response = request.post(Entity.json(registerRequestContent));
+        String entity = response.readEntity(String.class);
+
+        showResponse("requestObjectSigningAlgHS256Step1", response, entity);
+
+        assertEquals(response.getStatus(), 200, "Unexpected response code. " + entity);
+        assertNotNull(entity, "Unexpected result: " + entity);
+        try {
+            JSONObject jsonObj = new JSONObject(entity);
+            assertTrue(jsonObj.has(RegisterResponseParam.CLIENT_ID.toString()));
+            assertTrue(jsonObj.has(CLIENT_SECRET.toString()));
+            assertTrue(jsonObj.has(RegisterResponseParam.REGISTRATION_ACCESS_TOKEN.toString()));
+            assertTrue(jsonObj.has(REGISTRATION_CLIENT_URI.toString()));
+            assertTrue(jsonObj.has(CLIENT_ID_ISSUED_AT.toString()));
+            assertTrue(jsonObj.has(CLIENT_SECRET_EXPIRES_AT.toString()));
+
+            clientId3 = jsonObj.getString(RegisterResponseParam.CLIENT_ID.toString());
+            clientSecret3 = jsonObj.getString(RegisterResponseParam.CLIENT_SECRET.toString());
+            registrationAccessToken3 = jsonObj.getString(RegisterResponseParam.REGISTRATION_ACCESS_TOKEN.toString());
+        } catch (JSONException e) {
+            e.printStackTrace();
+            fail(e.getMessage() + "\nResponse was: " + entity);
+        }
+    }
+
+    /**
+     * Read client to check whether it is using the Request Object Signing Alg
+     * <code>HS256</code>.
+     */
+
+    /**
+     * Request authorization with Request Object Signing Alg <code>HS256</code>.
+     */
+
+    /**
+     * Fail 1: Request authorization with Request Object Signing Alg
+     * <code>NONE</code>.
+     */
+
+    /**
+     * Fail 2: Request authorization with Request Object Signing Alg
+     * <code>HS384</code>.
+     */
+
+    /**
+     * Fail 3: Request authorization with Request Object Signing Alg
+     * <code>HS512</code>.
+     */
+
+    /**
+     * Fail 4: Request authorization with Request Object Signing Alg
+     * <code>RS256</code>.
+     */
+
+    /**
+     * Fail 5: Request authorization with Request Object Signing Alg
+     * <code>RS384</code>.
+     */
+
+    /**
+     * Fail 6: Request authorization with Request Object Signing Alg
+     * <code>RS512</code>.
+     */
+
+    /**
+     * Fail 7: Request authorization with Request Object Signing Alg
+     * <code>ES256</code>.
+     */
+
+    /**
+     * Fail 8: Request authorization with Request Object Signing Alg
+     * <code>ES384</code>.
+     */
+
+    /**
+     * Fail 9: Request authorization with Request Object Signing Alg
+     * <code>ES512</code>.
+     */
+
+    /**
+     * Register a client with Request Object Signing Alg <code>HS384</code>.
+     */
+    @Parameters({"registerPath", "redirectUris"})
+    @Test
+    public void requestObjectSigningAlgHS384Step1(final String registerPath, final String redirectUris)
+            throws Exception {
+        Builder request = ResteasyClientBuilder.newClient().target(url.toString() + registerPath).request();
+
+        String registerRequestContent = null;
+        try {
+            RegisterRequest registerRequest = new RegisterRequest(ApplicationType.WEB, "oxAuth test app",
+                    StringUtils.spaceSeparatedToList(redirectUris));
+            registerRequest.setRequestObjectSigningAlg(SignatureAlgorithm.HS384);
+            registerRequest.setResponseTypes(Arrays.asList(ResponseType.TOKEN, ResponseType.ID_TOKEN));
+            registerRequest.addCustomAttribute("oxAuthTrustedClient", "true");
+
+            registerRequestContent = ServerUtil.toPrettyJson(registerRequest.getJSONParameters());
+        } catch (JSONException e) {
+            e.printStackTrace();
+            fail(e.getMessage());
+        }
+
+        Response response = request.post(Entity.json(registerRequestContent));
+        String entity = response.readEntity(String.class);
+
+        showResponse("requestObjectSigningAlgHS384Step1", response, entity);
+
+        assertEquals(response.getStatus(), 200, "Unexpected response code. " + entity);
+        assertNotNull(entity, "Unexpected result: " + entity);
+        try {
+            JSONObject jsonObj = new JSONObject(entity);
+            assertTrue(jsonObj.has(RegisterResponseParam.CLIENT_ID.toString()));
+            assertTrue(jsonObj.has(CLIENT_SECRET.toString()));
+            assertTrue(jsonObj.has(RegisterResponseParam.REGISTRATION_ACCESS_TOKEN.toString()));
+            assertTrue(jsonObj.has(REGISTRATION_CLIENT_URI.toString()));
+            assertTrue(jsonObj.has(CLIENT_ID_ISSUED_AT.toString()));
+            assertTrue(jsonObj.has(CLIENT_SECRET_EXPIRES_AT.toString()));
+
+            clientId4 = jsonObj.getString(RegisterResponseParam.CLIENT_ID.toString());
+            clientSecret4 = jsonObj.getString(RegisterResponseParam.CLIENT_SECRET.toString());
+            registrationAccessToken4 = jsonObj.getString(RegisterResponseParam.REGISTRATION_ACCESS_TOKEN.toString());
+        } catch (JSONException e) {
+            e.printStackTrace();
+            fail(e.getMessage() + "\nResponse was: " + entity);
+        }
+    }
+
+    /**
+     * Read client to check whether it is using the Request Object Signing Alg
+     * <code>HS384</code>.
+     */
+
+    /**
+     * Request authorization with Request Object Signing Alg <code>HS384</code>.
+     */
+
+    /**
+     * Fail 1: Request authorization with Request Object Signing Alg
+     * <code>NONE</code>.
+     */
+
+    /**
+     * Fail 2: Request authorization with Request Object Signing Alg
+     * <code>HS256</code>.
+     */
+
+    /**
+     * Fail 3: Request authorization with Request Object Signing Alg
+     * <code>HS512</code>.
+     */
+
+    /**
+     * Fail 4: Request authorization with Request Object Signing Alg
+     * <code>RS256</code>.
+     */
+
+    /**
+     * Fail 5: Request authorization with Request Object Signing Alg
+     * <code>RS384</code>.
+     */
+
+    /**
+     * Fail 6: Request authorization with Request Object Signing Alg
+     * <code>RS512</code>.
+     */
+
+    /**
+     * Fail 7: Request authorization with Request Object Signing Alg
+     * <code>ES256</code>.
+     */
+
+    /**
+     * Fail 8: Request authorization with Request Object Signing Alg
+     * <code>ES384</code>.
+     */
+
+    /**
+     * Fail 9: Request authorization with Request Object Signing Alg
+     * <code>ES512</code>.
+     */
+
+    /**
+     * Register a client with Request Object Signing Alg <code>HS512</code>.
+     */
+    @Parameters({"registerPath", "redirectUris"})
+    @Test
+    public void requestObjectSigningAlgHS512Step1(final String registerPath, final String redirectUris)
+            throws Exception {
+        Builder request = ResteasyClientBuilder.newClient().target(url.toString() + registerPath).request();
+
+        String registerRequestContent = null;
+        try {
+            RegisterRequest registerRequest = new RegisterRequest(ApplicationType.WEB, "oxAuth test app",
+                    StringUtils.spaceSeparatedToList(redirectUris));
+            registerRequest.setRequestObjectSigningAlg(SignatureAlgorithm.HS512);
+            registerRequest.setResponseTypes(Arrays.asList(ResponseType.TOKEN, ResponseType.ID_TOKEN));
+            registerRequest.addCustomAttribute("oxAuthTrustedClient", "true");
+
+            registerRequestContent = ServerUtil.toPrettyJson(registerRequest.getJSONParameters());
+        } catch (JSONException e) {
+            e.printStackTrace();
+            fail(e.getMessage());
+        }
+
+        Response response = request.post(Entity.json(registerRequestContent));
+        String entity = response.readEntity(String.class);
+
+        showResponse("requestObjectSigningAlgHS512Step1", response, entity);
+
+        assertEquals(response.getStatus(), 200, "Unexpected response code. " + entity);
+        assertNotNull(entity, "Unexpected result: " + entity);
+        try {
+            JSONObject jsonObj = new JSONObject(entity);
+            assertTrue(jsonObj.has(RegisterResponseParam.CLIENT_ID.toString()));
+            assertTrue(jsonObj.has(CLIENT_SECRET.toString()));
+            assertTrue(jsonObj.has(RegisterResponseParam.REGISTRATION_ACCESS_TOKEN.toString()));
+            assertTrue(jsonObj.has(REGISTRATION_CLIENT_URI.toString()));
+            assertTrue(jsonObj.has(CLIENT_ID_ISSUED_AT.toString()));
+            assertTrue(jsonObj.has(CLIENT_SECRET_EXPIRES_AT.toString()));
+
+            clientId5 = jsonObj.getString(RegisterResponseParam.CLIENT_ID.toString());
+            clientSecret5 = jsonObj.getString(RegisterResponseParam.CLIENT_SECRET.toString());
+            registrationAccessToken5 = jsonObj.getString(RegisterResponseParam.REGISTRATION_ACCESS_TOKEN.toString());
+        } catch (JSONException e) {
+            e.printStackTrace();
+            fail(e.getMessage() + "\nResponse was: " + entity);
+        }
+    }
+
+    /**
+     * Read client to check whether it is using the Request Object Signing Alg
+     * <code>HS512</code>.
+     */
+
+    /**
+     * Request authorization with Request Object Signing Alg <code>HS512</code>.
+     */
+
+    /**
+     * Fail 1: Request authorization with Request Object Signing Alg
+     * <code>NONE</code>.
+     */
+
+    /**
+     * Fail 2: Request authorization with Request Object Signing Alg
+     * <code>HS256</code>.
+     */
+
+    /**
+     * Fail 3: Request authorization with Request Object Signing Alg
+     * <code>HS384</code>.
+     */
+
+    /**
+     * Fail 4: Request authorization with Request Object Signing Alg
+     * <code>RS256</code>.
+     */
+
+    /**
+     * Fail 5: Request authorization with Request Object Signing Alg
+     * <code>RS384</code>.
+     */
+
+    /**
+     * Fail 6: Request authorization with Request Object Signing Alg
+     * <code>RS512</code>.
+     */
+
+    /**
+     * Fail 7: Request authorization with Request Object Signing Alg
+     * <code>ES256</code>.
+     */
+
+    /**
+     * Fail 8: Request authorization with Request Object Signing Alg
+     * <code>ES384</code>.
+     */
+
+    /**
+     * Fail 9: Request authorization with Request Object Signing Alg
+     * <code>ES512</code>.
+     */
+
+    /**
+     * Register a client with Request Object Signing Alg <code>RS256</code>.
+     */
+    @Parameters({"registerPath", "redirectUris", "clientJwksUri"})
+    @Test
+    public void requestObjectSigningAlgRS256Step1(final String registerPath, final String redirectUris,
+                                                  final String jwksUri) throws Exception {
+        Builder request = ResteasyClientBuilder.newClient().target(url.toString() + registerPath).request();
+
+        String registerRequestContent = null;
+        try {
+            RegisterRequest registerRequest = new RegisterRequest(ApplicationType.WEB, "oxAuth test app",
+                    StringUtils.spaceSeparatedToList(redirectUris));
+            registerRequest.setJwksUri(jwksUri);
+            registerRequest.setRequestObjectSigningAlg(SignatureAlgorithm.RS256);
+            registerRequest.setResponseTypes(Arrays.asList(ResponseType.TOKEN, ResponseType.ID_TOKEN));
+            registerRequest.addCustomAttribute("oxAuthTrustedClient", "true");
+
+            registerRequestContent = ServerUtil.toPrettyJson(registerRequest.getJSONParameters());
+        } catch (JSONException e) {
+            e.printStackTrace();
+            fail(e.getMessage());
+        }
+
+        Response response = request.post(Entity.json(registerRequestContent));
+        String entity = response.readEntity(String.class);
+
+        showResponse("requestObjectSigningAlgRS256Step1", response, entity);
+
+        assertEquals(response.getStatus(), 200, "Unexpected response code. " + entity);
+        assertNotNull(entity, "Unexpected result: " + entity);
+        try {
+            JSONObject jsonObj = new JSONObject(entity);
+            assertTrue(jsonObj.has(RegisterResponseParam.CLIENT_ID.toString()));
+            assertTrue(jsonObj.has(CLIENT_SECRET.toString()));
+            assertTrue(jsonObj.has(RegisterResponseParam.REGISTRATION_ACCESS_TOKEN.toString()));
+            assertTrue(jsonObj.has(REGISTRATION_CLIENT_URI.toString()));
+            assertTrue(jsonObj.has(CLIENT_ID_ISSUED_AT.toString()));
+            assertTrue(jsonObj.has(CLIENT_SECRET_EXPIRES_AT.toString()));
+
+            clientId6 = jsonObj.getString(RegisterResponseParam.CLIENT_ID.toString());
+            clientSecret6 = jsonObj.getString(RegisterResponseParam.CLIENT_SECRET.toString());
+            registrationAccessToken6 = jsonObj.getString(RegisterResponseParam.REGISTRATION_ACCESS_TOKEN.toString());
+        } catch (JSONException e) {
+            e.printStackTrace();
+            fail(e.getMessage() + "\nResponse was: " + entity);
+        }
+    }
+
+    /**
+     * Read client to check whether it is using the Request Object Signing Alg
+     * <code>RS256</code>.
+     */
+
+    /**
+     * Request authorization with Request Object Signing Alg <code>RS256</code>.
+     */
+
+    /**
+     * Fail 1: Request authorization with Request Object Signing Alg
+     * <code>NONE</code>.
+     */
+
+    /**
+     * Fail 2: Request authorization with Request Object Signing Alg
+     * <code>HS256</code>.
+     */
+
+    /**
+     * Fail 3: Request authorization with Request Object Signing Alg
+     * <code>HS384</code>.
+     */
+
+    /**
+     * Fail 4: Request authorization with Request Object Signing Alg
+     * <code>HS512</code>.
+     */
+
+    /**
+     * Fail 5: Request authorization with Request Object Signing Alg
+     * <code>RS384</code>.
+     */
+
+    /**
+     * Fail 6: Request authorization with Request Object Signing Alg
+     * <code>RS512</code>.
+     */
+
+    /**
+     * Fail 7: Request authorization with Request Object Signing Alg
+     * <code>ES256</code>.
+     */
+
+    /**
+     * Fail 8: Request authorization with Request Object Signing Alg
+     * <code>ES384</code>.
+     */
+
+    /**
+     * Fail 9: Request authorization with Request Object Signing Alg
+     * <code>ES512</code>.
+     */
+
+    /**
+     * Register a client with Request Object Signing Alg <code>RS384</code>.
+     */
+    @Parameters({"registerPath", "redirectUris", "clientJwksUri"})
+    @Test
+    public void requestObjectSigningAlgRS384Step1(final String registerPath, final String redirectUris,
+                                                  final String jwksUri) throws Exception {
+        Builder request = ResteasyClientBuilder.newClient().target(url.toString() + registerPath).request();
+
+        String registerRequestContent = null;
+        try {
+            RegisterRequest registerRequest = new RegisterRequest(ApplicationType.WEB, "oxAuth test app",
+                    StringUtils.spaceSeparatedToList(redirectUris));
+            registerRequest.setJwksUri(jwksUri);
+            registerRequest.setRequestObjectSigningAlg(SignatureAlgorithm.RS384);
+            registerRequest.setResponseTypes(Arrays.asList(ResponseType.TOKEN, ResponseType.ID_TOKEN));
+            registerRequest.addCustomAttribute("oxAuthTrustedClient", "true");
+
+            registerRequestContent = ServerUtil.toPrettyJson(registerRequest.getJSONParameters());
+        } catch (JSONException e) {
+            e.printStackTrace();
+            fail(e.getMessage());
+        }
+
+        Response response = request.post(Entity.json(registerRequestContent));
+        String entity = response.readEntity(String.class);
+
+        showResponse("requestObjectSigningAlgRS384Step1", response, entity);
+
+        assertEquals(response.getStatus(), 200, "Unexpected response code. " + entity);
+        assertNotNull(entity, "Unexpected result: " + entity);
+        try {
+            JSONObject jsonObj = new JSONObject(entity);
+            assertTrue(jsonObj.has(RegisterResponseParam.CLIENT_ID.toString()));
+            assertTrue(jsonObj.has(CLIENT_SECRET.toString()));
+            assertTrue(jsonObj.has(RegisterResponseParam.REGISTRATION_ACCESS_TOKEN.toString()));
+            assertTrue(jsonObj.has(REGISTRATION_CLIENT_URI.toString()));
+            assertTrue(jsonObj.has(CLIENT_ID_ISSUED_AT.toString()));
+            assertTrue(jsonObj.has(CLIENT_SECRET_EXPIRES_AT.toString()));
+
+            clientId7 = jsonObj.getString(RegisterResponseParam.CLIENT_ID.toString());
+            clientSecret7 = jsonObj.getString(RegisterResponseParam.CLIENT_SECRET.toString());
+            registrationAccessToken7 = jsonObj.getString(RegisterResponseParam.REGISTRATION_ACCESS_TOKEN.toString());
+        } catch (JSONException e) {
+            e.printStackTrace();
+            fail(e.getMessage() + "\nResponse was: " + entity);
+        }
+    }
+
+    /**
+     * Read client to check whether it is using the Request Object Signing Alg
+     * <code>RS384</code>.
+     */
+
+    /**
+     * Request authorization with Request Object Signing Alg <code>RS384</code>.
+     */
+
+    /**
+     * Fail 1: Request authorization with Request Object Signing Alg
+     * <code>NONE</code>.
+     */
+
+    /**
+     * Fail 2: Request authorization with Request Object Signing Alg
+     * <code>HS256</code>.
+     */
+
+    /**
+     * Fail 3: Request authorization with Request Object Signing Alg
+     * <code>HS384</code>.
+     */
+
+    /**
+     * Fail 4: Request authorization with Request Object Signing Alg
+     * <code>HS512</code>.
+     */
+
+    /**
+     * Fail 5: Request authorization with Request Object Signing Alg
+     * <code>RS256</code>.
+     */
+
+    /**
+     * Fail 6: Request authorization with Request Object Signing Alg
+     * <code>RS512</code>.
+     */
+
+    /**
+     * Fail 7: Request authorization with Request Object Signing Alg
+     * <code>ES256</code>.
+     */
+
+    /**
+     * Fail 8: Request authorization with Request Object Signing Alg
+     * <code>ES384</code>.
+     */
+
+    /**
+     * Fail 9: Request authorization with Request Object Signing Alg
+     * <code>ES512</code>.
+     */
+
+    /**
+     * Register a client with Request Object Signing Alg <code>RS512</code>.
+     */
+    @Parameters({"registerPath", "redirectUris", "clientJwksUri"})
+    @Test
+    public void requestObjectSigningAlgRS512Step1(final String registerPath, final String redirectUris,
+                                                  final String jwksUri) throws Exception {
+
+        Builder request = ResteasyClientBuilder.newClient().target(url.toString() + registerPath).request();
+
+        String registerRequestContent = null;
+        try {
+            RegisterRequest registerRequest = new RegisterRequest(ApplicationType.WEB, "oxAuth test app",
+                    StringUtils.spaceSeparatedToList(redirectUris));
+            registerRequest.setJwksUri(jwksUri);
+            registerRequest.setRequestObjectSigningAlg(SignatureAlgorithm.RS512);
+            registerRequest.setResponseTypes(Arrays.asList(ResponseType.TOKEN, ResponseType.ID_TOKEN));
+            registerRequest.addCustomAttribute("oxAuthTrustedClient", "true");
+
+            registerRequestContent = ServerUtil.toPrettyJson(registerRequest.getJSONParameters());
+        } catch (JSONException e) {
+            e.printStackTrace();
+            fail(e.getMessage());
+        }
+
+        Response response = request.post(Entity.json(registerRequestContent));
+        String entity = response.readEntity(String.class);
+
+        showResponse("requestObjectSigningAlgRS512Step1", response, entity);
+
+        assertEquals(response.getStatus(), 200, "Unexpected response code. " + entity);
+        assertNotNull(entity, "Unexpected result: " + entity);
+        try {
+            JSONObject jsonObj = new JSONObject(entity);
+            assertTrue(jsonObj.has(RegisterResponseParam.CLIENT_ID.toString()));
+            assertTrue(jsonObj.has(CLIENT_SECRET.toString()));
+            assertTrue(jsonObj.has(RegisterResponseParam.REGISTRATION_ACCESS_TOKEN.toString()));
+            assertTrue(jsonObj.has(REGISTRATION_CLIENT_URI.toString()));
+            assertTrue(jsonObj.has(CLIENT_ID_ISSUED_AT.toString()));
+            assertTrue(jsonObj.has(CLIENT_SECRET_EXPIRES_AT.toString()));
+
+            clientId8 = jsonObj.getString(RegisterResponseParam.CLIENT_ID.toString());
+            clientSecret8 = jsonObj.getString(RegisterResponseParam.CLIENT_SECRET.toString());
+            registrationAccessToken8 = jsonObj.getString(RegisterResponseParam.REGISTRATION_ACCESS_TOKEN.toString());
+        } catch (JSONException e) {
+            e.printStackTrace();
+            fail(e.getMessage() + "\nResponse was: " + entity);
+        }
+    }
+
+    /**
+     * Read client to check whether it is using the Request Object Signing Alg
+     * <code>RS512</code>.
+     */
+
+    /**
+     * Request authorization with Request Object Signing Alg <code>RS512</code>.
+     */
+
+    /**
+     * Fail 1: Request authorization with Request Object Signing Alg
+     * <code>NONE</code>.
+     */
+
+    /**
+     * Fail 2: Request authorization with Request Object Signing Alg
+     * <code>HS256</code>.
+     */
+
+    /**
+     * Fail 3: Request authorization with Request Object Signing Alg
+     * <code>HS384</code>.
+     */
+
+    /**
+     * Fail 4: Request authorization with Request Object Signing Alg
+     * <code>HS512</code>.
+     */
+
+    /**
+     * Fail 5: Request authorization with Request Object Signing Alg
+     * <code>RS256</code>.
+     */
+
+    /**
+     * Fail 6: Request authorization with Request Object Signing Alg
+     * <code>RS384</code>.
+     */
+
+    /**
+     * Fail 7: Request authorization with Request Object Signing Alg
+     * <code>ES256</code>.
+     */
+
+    /**
+     * Fail 8: Request authorization with Request Object Signing Alg
+     * <code>ES384</code>.
+     */
+
+    /**
+     * Fail 9: Request authorization with Request Object Signing Alg
+     * <code>ES512</code>.
+     */
+
+    /**
+     * Register a client with Request Object Signing Alg <code>ES256</code>.
+     */
+    @Parameters({"registerPath", "redirectUris", "clientJwksUri"})
+    @Test
+    public void requestObjectSigningAlgES256Step1(final String registerPath, final String redirectUris,
+                                                  final String jwksUri) throws Exception {
+        Builder request = ResteasyClientBuilder.newClient().target(url.toString() + registerPath).request();
+
+        String registerRequestContent = null;
+        try {
+            RegisterRequest registerRequest = new RegisterRequest(ApplicationType.WEB, "oxAuth test app",
+                    StringUtils.spaceSeparatedToList(redirectUris));
+            registerRequest.setJwksUri(jwksUri);
+            registerRequest.setRequestObjectSigningAlg(SignatureAlgorithm.ES256);
+            registerRequest.setResponseTypes(Arrays.asList(ResponseType.TOKEN, ResponseType.ID_TOKEN));
+            registerRequest.addCustomAttribute("oxAuthTrustedClient", "true");
+
+            registerRequestContent = ServerUtil.toPrettyJson(registerRequest.getJSONParameters());
+        } catch (JSONException e) {
+            e.printStackTrace();
+            fail(e.getMessage());
+        }
+
+        Response response = request.post(Entity.json(registerRequestContent));
+        String entity = response.readEntity(String.class);
+
+        showResponse("requestObjectSigningAlgES256Step1", response, entity);
+
+        assertEquals(response.getStatus(), 200, "Unexpected response code. " + entity);
+        assertNotNull(entity, "Unexpected result: " + entity);
+        try {
+            JSONObject jsonObj = new JSONObject(entity);
+            assertTrue(jsonObj.has(RegisterResponseParam.CLIENT_ID.toString()));
+            assertTrue(jsonObj.has(CLIENT_SECRET.toString()));
+            assertTrue(jsonObj.has(RegisterResponseParam.REGISTRATION_ACCESS_TOKEN.toString()));
+            assertTrue(jsonObj.has(REGISTRATION_CLIENT_URI.toString()));
+            assertTrue(jsonObj.has(CLIENT_ID_ISSUED_AT.toString()));
+            assertTrue(jsonObj.has(CLIENT_SECRET_EXPIRES_AT.toString()));
+
+            clientId9 = jsonObj.getString(RegisterResponseParam.CLIENT_ID.toString());
+            clientSecret9 = jsonObj.getString(RegisterResponseParam.CLIENT_SECRET.toString());
+            registrationAccessToken9 = jsonObj.getString(RegisterResponseParam.REGISTRATION_ACCESS_TOKEN.toString());
+        } catch (JSONException e) {
+            e.printStackTrace();
+            fail(e.getMessage() + "\nResponse was: " + entity);
+        }
+    }
+
+    /**
+     * Read client to check whether it is using the Request Object Signing Alg
+     * <code>ES256</code>.
+     */
+
+    /**
+     * Request authorization with Request Object Signing Alg <code>ES256</code>.
+     */
+
+    /**
+     * Fail 1: Request authorization with Request Object Signing Alg
+     * <code>NONE</code>.
+     */
+
+    /**
+     * Fail 2: Request authorization with Request Object Signing Alg
+     * <code>HS256</code>.
+     */
+
+    /**
+     * Fail 3: Request authorization with Request Object Signing Alg
+     * <code>HS384</code>.
+     */
+
+    /**
+     * Fail 4: Request authorization with Request Object Signing Alg
+     * <code>HS512</code>.
+     */
+
+    /**
+     * Fail 5: Request authorization with Request Object Signing Alg
+     * <code>RS256</code>.
+     */
+
+    /**
+     * Fail 6: Request authorization with Request Object Signing Alg
+     * <code>RS384</code>.
+     */
+
+    /**
+     * Fail 7: Request authorization with Request Object Signing Alg
+     * <code>RS512</code>.
+     */
+
+    /**
+     * Fail 8: Request authorization with Request Object Signing Alg
+     * <code>ES384</code>.
+     */
+
+    /**
+     * Fail 9: Request authorization with Request Object Signing Alg
+     * <code>ES512</code>.
+     */
+
+    /**
+     * Register a client with Request Object Signing Alg <code>ES384</code>.
+     */
+    @Parameters({"registerPath", "redirectUris", "clientJwksUri"})
+    @Test
+    public void requestObjectSigningAlgES384Step1(final String registerPath, final String redirectUris,
+                                                  final String jwksUri) throws Exception {
+        Builder request = ResteasyClientBuilder.newClient().target(url.toString() + registerPath).request();
+
+        String registerRequestContent = null;
+        try {
+            RegisterRequest registerRequest = new RegisterRequest(ApplicationType.WEB, "oxAuth test app",
+                    StringUtils.spaceSeparatedToList(redirectUris));
+            registerRequest.setJwksUri(jwksUri);
+            registerRequest.setRequestObjectSigningAlg(SignatureAlgorithm.ES384);
+            registerRequest.setResponseTypes(Arrays.asList(ResponseType.TOKEN, ResponseType.ID_TOKEN));
+            registerRequest.addCustomAttribute("oxAuthTrustedClient", "true");
+
+            registerRequestContent = ServerUtil.toPrettyJson(registerRequest.getJSONParameters());
+        } catch (JSONException e) {
+            e.printStackTrace();
+            fail(e.getMessage());
+        }
+
+        Response response = request.post(Entity.json(registerRequestContent));
+        String entity = response.readEntity(String.class);
+
+        showResponse("requestObjectSigningAlgES256Step1", response, entity);
+
+        assertEquals(response.getStatus(), 200, "Unexpected response code. " + entity);
+        assertNotNull(entity, "Unexpected result: " + entity);
+        try {
+            JSONObject jsonObj = new JSONObject(entity);
+            assertTrue(jsonObj.has(RegisterResponseParam.CLIENT_ID.toString()));
+            assertTrue(jsonObj.has(CLIENT_SECRET.toString()));
+            assertTrue(jsonObj.has(RegisterResponseParam.REGISTRATION_ACCESS_TOKEN.toString()));
+            assertTrue(jsonObj.has(REGISTRATION_CLIENT_URI.toString()));
+            assertTrue(jsonObj.has(CLIENT_ID_ISSUED_AT.toString()));
+            assertTrue(jsonObj.has(CLIENT_SECRET_EXPIRES_AT.toString()));
+
+            clientId10 = jsonObj.getString(RegisterResponseParam.CLIENT_ID.toString());
+            clientSecret10 = jsonObj.getString(RegisterResponseParam.CLIENT_SECRET.toString());
+            registrationAccessToken10 = jsonObj.getString(RegisterResponseParam.REGISTRATION_ACCESS_TOKEN.toString());
+        } catch (JSONException e) {
+            e.printStackTrace();
+            fail(e.getMessage() + "\nResponse was: " + entity);
+        }
+    }
+
+    /**
+     * Read client to check whether it is using the Request Object Signing Alg
+     * <code>ES384</code>.
+     */
+
+    /**
+     * Request authorization with Request Object Signing Alg <code>ES384</code>.
+     */
+
+    /**
+     * Fail 1: Request authorization with Request Object Signing Alg
+     * <code>NONE</code>.
+     */
+
+    /**
+     * Fail 2: Request authorization with Request Object Signing Alg
+     * <code>HS256</code>.
+     */
+
+    /**
+     * Fail 3: Request authorization with Request Object Signing Alg
+     * <code>HS384</code>.
+     */
+
+    /**
+     * Fail 4: Request authorization with Request Object Signing Alg
+     * <code>HS512</code>.
+     */
+
+    /**
+     * Fail 5: Request authorization with Request Object Signing Alg
+     * <code>RS256</code>.
+     */
+
+    /**
+     * Fail 6: Request authorization with Request Object Signing Alg
+     * <code>RS384</code>.
+     */
+
+    /**
+     * Fail 7: Request authorization with Request Object Signing Alg
+     * <code>RS512</code>.
+     */
+
+    /**
+     * Fail 8: Request authorization with Request Object Signing Alg
+     * <code>ES256</code>.
+     */
+
+    /**
+     * Fail 9: Request authorization with Request Object Signing Alg
+     * <code>ES512</code>.
+     */
+
+    /**
+     * Register a client with Request Object Signing Alg <code>ES512</code>.
+     */
+
+    /**
+     * Read client to check whether it is using the Request Object Signing Alg
+     * <code>ES512</code>.
+     */
+
+    /**
+     * Request authorization with Request Object Signing Alg <code>ES512</code>.
+     */
+
+    /**
+     * Fail 1: Request authorization with Request Object Signing Alg
+     * <code>NONE</code>.
+     */
+
+    /**
+     * Fail 2: Request authorization with Request Object Signing Alg
+     * <code>HS256</code>.
+     */
+
+    /**
+     * Fail 3: Request authorization with Request Object Signing Alg
+     * <code>HS384</code>.
+     */
+
+    /**
+     * Fail 4: Request authorization with Request Object Signing Alg
+     * <code>HS512</code>.
+     */
+
+    /**
+     * Fail 5: Request authorization with Request Object Signing Alg
+     * <code>RS256</code>.
+     */
+
+    /**
+     * Fail 6: Request authorization with Request Object Signing Alg
+     * <code>RS384</code>.
+     */
+
+    /**
+     * Fail 7: Request authorization with Request Object Signing Alg
+     * <code>RS512</code>.
+     */
+
+    /**
+     * Fail 8: Request authorization with Request Object Signing Alg
+     * <code>ES256</code>.
+     */
+
+    /**
+     * Fail 9: Request authorization with Request Object Signing Alg
+     * <code>ES384</code>.
+     */
+}
\ No newline at end of file
diff --git a/oxAuth/Server/src/test/java/org/gluu/oxauth/ws/rs/ResponseTypesRestrictionEmbeddedTest.java b/oxAuth/Server/src/test/java/org/gluu/oxauth/ws/rs/ResponseTypesRestrictionEmbeddedTest.java
new file mode 100644
index 00000000..492adab1
--- /dev/null
+++ b/oxAuth/Server/src/test/java/org/gluu/oxauth/ws/rs/ResponseTypesRestrictionEmbeddedTest.java
@@ -0,0 +1,785 @@
+/*
+ * oxAuth is available under the MIT License (2008). See http://opensource.org/licenses/MIT for full text.
+ *
+ * Copyright (c) 2014, Gluu
+ */
+
+package org.gluu.oxauth.ws.rs;
+
+import static org.gluu.oxauth.model.register.RegisterRequestParam.APPLICATION_TYPE;
+import static org.gluu.oxauth.model.register.RegisterRequestParam.CLIENT_NAME;
+import static org.gluu.oxauth.model.register.RegisterRequestParam.ID_TOKEN_SIGNED_RESPONSE_ALG;
+import static org.gluu.oxauth.model.register.RegisterRequestParam.REDIRECT_URIS;
+import static org.gluu.oxauth.model.register.RegisterRequestParam.RESPONSE_TYPES;
+import static org.gluu.oxauth.model.register.RegisterRequestParam.SCOPE;
+import static org.gluu.oxauth.model.register.RegisterResponseParam.CLIENT_ID_ISSUED_AT;
+import static org.gluu.oxauth.model.register.RegisterResponseParam.CLIENT_SECRET;
+import static org.gluu.oxauth.model.register.RegisterResponseParam.CLIENT_SECRET_EXPIRES_AT;
+import static org.gluu.oxauth.model.register.RegisterResponseParam.REGISTRATION_CLIENT_URI;
+import org.gluu.oxauth.util.ServerUtil;
+import static org.testng.Assert.assertEquals;
+import static org.testng.Assert.assertFalse;
+import static org.testng.Assert.assertNotNull;
+import static org.testng.Assert.assertTrue;
+import static org.testng.Assert.fail;
+
+import java.net.URI;
+import java.net.URISyntaxException;
+import java.util.Arrays;
+import java.util.HashSet;
+import java.util.List;
+import java.util.Map;
+import java.util.Set;
+import java.util.UUID;
+
+import javax.ws.rs.client.Entity;
+import javax.ws.rs.client.Invocation.Builder;
+import javax.ws.rs.core.MediaType;
+import javax.ws.rs.core.MultivaluedHashMap;
+import javax.ws.rs.core.Response;
+
+import org.json.JSONException;
+import org.json.JSONObject;
+import org.gluu.oxauth.BaseTest;
+import org.gluu.oxauth.client.AuthorizationRequest;
+import org.gluu.oxauth.client.QueryStringDecoder;
+import org.gluu.oxauth.client.RegisterRequest;
+import org.gluu.oxauth.client.TokenRequest;
+import org.gluu.oxauth.model.authorize.AuthorizeResponseParam;
+import org.gluu.oxauth.model.common.GrantType;
+import org.gluu.oxauth.model.common.Prompt;
+import org.gluu.oxauth.model.common.ResponseType;
+import org.gluu.oxauth.model.register.ApplicationType;
+import org.gluu.oxauth.model.register.RegisterResponseParam;
+import org.gluu.oxauth.model.util.StringUtils;
+import org.jboss.arquillian.test.api.ArquillianResource;
+import org.jboss.resteasy.client.jaxrs.ResteasyClientBuilder;
+import org.testng.ITestContext;
+import org.testng.annotations.DataProvider;
+import org.testng.annotations.Parameters;
+import org.testng.annotations.Test;
+
+/**
+ * @author Javier Rojas Blum
+ * @version November 29, 2017
+ */
+public class ResponseTypesRestrictionEmbeddedTest extends BaseTest {
+
+    @ArquillianResource
+    private URI url;
+
+    private static String clientId1;
+    private static String clientSecret1;
+    private static String registrationAccessToken1;
+    private static String registrationClientUri1;
+    private static String authorizationCode1;
+
+    private static String clientId2;
+    private static String clientSecret2;
+    private static String registrationAccessToken2;
+    private static String registrationClientUri2;
+    private static String authorizationCode2;
+
+    private static String clientId3;
+    private static String registrationAccessToken3;
+    private static String registrationClientUri3;
+
+    /**
+     * Registering without provide the response_types param, should register the
+     * Client using only the <code>code</code> response type.
+     */
+    @Parameters({"registerPath", "redirectUris"})
+    @Test
+    public void omittedResponseTypesStep1(final String registerPath, final String redirectUris) throws Exception {
+        Builder request = ResteasyClientBuilder.newClient().target(url.toString() + registerPath).request();
+
+        String registerRequestContent = null;
+        try {
+            RegisterRequest registerRequest = new RegisterRequest(ApplicationType.WEB, "oxAuth test app",
+                    StringUtils.spaceSeparatedToList(redirectUris));
+            registerRequest.addCustomAttribute("oxAuthTrustedClient", "true");
+
+            registerRequestContent = ServerUtil.toPrettyJson(registerRequest.getJSONParameters());
+        } catch (JSONException e) {
+            e.printStackTrace();
+            fail(e.getMessage());
+        }
+
+        Response response = request.post(Entity.json(registerRequestContent));
+        String entity = response.readEntity(String.class);
+
+        showResponse("omittedResponseTypesStep1", response, entity);
+
+        assertEquals(response.getStatus(), 200, "Unexpected response code. " + entity);
+        assertNotNull(entity, "Unexpected result: " + entity);
+        try {
+            JSONObject jsonObj = new JSONObject(entity);
+            assertTrue(jsonObj.has(RegisterResponseParam.CLIENT_ID.toString()));
+            assertTrue(jsonObj.has(CLIENT_SECRET.toString()));
+            assertTrue(jsonObj.has(RegisterResponseParam.REGISTRATION_ACCESS_TOKEN.toString()));
+            assertTrue(jsonObj.has(REGISTRATION_CLIENT_URI.toString()));
+            assertTrue(jsonObj.has(CLIENT_ID_ISSUED_AT.toString()));
+            assertTrue(jsonObj.has(CLIENT_SECRET_EXPIRES_AT.toString()));
+
+            clientId1 = jsonObj.getString(RegisterResponseParam.CLIENT_ID.toString());
+            clientSecret1 = jsonObj.getString(CLIENT_SECRET.toString());
+            registrationAccessToken1 = jsonObj.getString(RegisterResponseParam.REGISTRATION_ACCESS_TOKEN.toString());
+            registrationClientUri1 = jsonObj.getString(RegisterResponseParam.REGISTRATION_CLIENT_URI.toString());
+        } catch (JSONException e) {
+            e.printStackTrace();
+            fail(e.getMessage() + "\nResponse was: " + entity);
+        }
+    }
+
+    /**
+     * Client read request to verify the Client using the default
+     * <code>code</code> response type.
+     */
+    @Parameters({"registerPath"})
+    @Test(dependsOnMethods = "omittedResponseTypesStep1")
+    public void omittedResponseTypesStep2(final String registerPath) throws Exception {
+        Builder request = ResteasyClientBuilder.newClient().target(url.toString() + registerPath + "?"
+                + registrationClientUri1.substring(registrationClientUri1.indexOf("?") + 1)).request();
+        request.header("Authorization", "Bearer " + registrationAccessToken1);
+
+        Response response = request.get();
+        String entity = response.readEntity(String.class);
+
+        showResponse("omittedResponseTypesStep2", response, entity);
+
+        assertEquals(response.getStatus(), 200, "Unexpected response code. " + entity);
+        assertNotNull(entity, "Unexpected result: " + entity);
+        try {
+            JSONObject jsonObj = new JSONObject(entity);
+            assertTrue(jsonObj.has(RegisterResponseParam.CLIENT_ID.toString()));
+            assertTrue(jsonObj.has(CLIENT_SECRET.toString()));
+            assertTrue(jsonObj.has(CLIENT_ID_ISSUED_AT.toString()));
+            assertTrue(jsonObj.has(CLIENT_SECRET_EXPIRES_AT.toString()));
+
+            // Registered Metadata
+            assertTrue(jsonObj.has(RESPONSE_TYPES.toString()));
+            assertNotNull(jsonObj.optJSONArray(RESPONSE_TYPES.toString()));
+            assertEquals(jsonObj.getJSONArray(RESPONSE_TYPES.toString()).getString(0), ResponseType.CODE.toString());
+            assertTrue(jsonObj.has(REDIRECT_URIS.toString()));
+            assertTrue(jsonObj.has(APPLICATION_TYPE.toString()));
+            assertTrue(jsonObj.has(CLIENT_NAME.toString()));
+            assertTrue(jsonObj.has(ID_TOKEN_SIGNED_RESPONSE_ALG.toString()));
+            assertTrue(jsonObj.has(SCOPE.toString()));
+        } catch (JSONException e) {
+            e.printStackTrace();
+            fail(e.getMessage() + "\nResponse was: " + entity);
+        }
+    }
+
+    /**
+     * Request Authorization with Response Type <code>code</code> should
+     * succeed.
+     */
+    @Parameters({"authorizePath", "userId", "userSecret", "redirectUri"})
+    @Test(dependsOnMethods = "omittedResponseTypesStep2")
+    public void omittedResponseTypesStep3a(final String authorizePath, final String userId, final String userSecret,
+                                           final String redirectUri) throws Exception {
+        List<ResponseType> responseTypes = Arrays.asList(ResponseType.CODE);
+        List<String> scopes = Arrays.asList("openid", "profile", "address", "email");
+        String state = UUID.randomUUID().toString();
+
+        AuthorizationRequest authorizationRequest = new AuthorizationRequest(responseTypes, clientId1, scopes,
+                redirectUri, null);
+        authorizationRequest.setState(state);
+        authorizationRequest.getPrompts().add(Prompt.NONE);
+        authorizationRequest.setAuthUsername(userId);
+        authorizationRequest.setAuthPassword(userSecret);
+
+        Builder request = ResteasyClientBuilder.newClient()
+                .target(url.toString() + authorizePath + "?" + authorizationRequest.getQueryString()).request();
+        request.header("Authorization", "Basic " + authorizationRequest.getEncodedCredentials());
+        request.header("Accept", MediaType.TEXT_PLAIN);
+
+        Response response = request.get();
+        String entity = response.readEntity(String.class);
+
+        showResponse("omittedResponseTypesStep3a", response, entity);
+
+        assertEquals(response.getStatus(), 302, "Unexpected response code.");
+        assertNotNull(response.getLocation(), "Unexpected result: " + response.getLocation());
+
+        if (response.getLocation() != null) {
+            try {
+                URI uri = new URI(response.getLocation().toString());
+                assertNotNull(uri.getQuery(), "The query string is null");
+
+                Map<String, String> params = QueryStringDecoder.decode(uri.getQuery());
+
+                assertNotNull(params.get(AuthorizeResponseParam.CODE), "The code is null");
+                assertNotNull(params.get(AuthorizeResponseParam.SCOPE), "The scope is null");
+                assertNotNull(params.get(AuthorizeResponseParam.STATE), "The state is null");
+                assertFalse(params.containsKey(AuthorizeResponseParam.ID_TOKEN));
+                assertFalse(params.containsKey(AuthorizeResponseParam.ACCESS_TOKEN));
+
+                authorizationCode1 = params.get(AuthorizeResponseParam.CODE);
+            } catch (URISyntaxException e) {
+                e.printStackTrace();
+                fail("Response URI is not well formed");
+            } catch (Exception e) {
+                e.printStackTrace();
+                fail(e.getMessage());
+            }
+        }
+    }
+
+    @Parameters({"tokenPath", "redirectUri"})
+    @Test(dependsOnMethods = {"omittedResponseTypesStep3a"})
+    public void omittedResponseTypesStep3b(final String tokenPath, final String redirectUri) throws Exception {
+        Builder request = ResteasyClientBuilder.newClient().target(url.toString() + tokenPath).request();
+
+        TokenRequest tokenRequest = new TokenRequest(GrantType.AUTHORIZATION_CODE);
+        tokenRequest.setCode(authorizationCode1);
+        tokenRequest.setRedirectUri(redirectUri);
+        tokenRequest.setAuthUsername(clientId1);
+        tokenRequest.setAuthPassword(clientSecret1);
+
+        request.header("Authorization", "Basic " + tokenRequest.getEncodedCredentials());
+        request.header("Content-Type", MediaType.APPLICATION_FORM_URLENCODED);
+
+        Response response = request
+                .post(Entity.form(new MultivaluedHashMap<String, String>(tokenRequest.getParameters())));
+        String entity = response.readEntity(String.class);
+
+        showResponse("omittedResponseTypesStep3b", response, entity);
+
+        assertEquals(response.getStatus(), 200, "Unexpected response code.");
+        assertTrue(
+                response.getHeaderString("Cache-Control") != null
+                        && response.getHeaderString("Cache-Control").equals("no-store"),
+                "Unexpected result: " + response.getHeaderString("Cache-Control"));
+        assertTrue(response.getHeaderString("Pragma") != null && response.getHeaderString("Pragma").equals("no-cache"),
+                "Unexpected result: " + response.getHeaderString("Pragma"));
+        assertNotNull(entity, "Unexpected result: " + entity);
+        try {
+            JSONObject jsonObj = new JSONObject(entity);
+            assertTrue(jsonObj.has("access_token"), "Unexpected result: access_token not found");
+            assertTrue(jsonObj.has("token_type"), "Unexpected result: token_type not found");
+            assertTrue(jsonObj.has("refresh_token"), "Unexpected result: refresh_token not found");
+            assertTrue(jsonObj.has("id_token"));
+        } catch (JSONException e) {
+            e.printStackTrace();
+            fail(e.getMessage() + "\nResponse was: " + entity);
+        } catch (Exception e) {
+            e.printStackTrace();
+            fail(e.getMessage());
+        }
+    }
+
+    @DataProvider(name = "omittedResponseTypesStep4DataProvider")
+    public Object[][] omittedResponseTypesStep4DataProvider(ITestContext context) {
+        String authorizePath = context.getCurrentXmlTest().getParameter("authorizePath");
+        String userId = context.getCurrentXmlTest().getParameter("userId");
+        String userSecret = context.getCurrentXmlTest().getParameter("userSecret");
+        String redirectUri = context.getCurrentXmlTest().getParameter("redirectUri");
+
+        return new Object[][]{
+                {authorizePath, userId, userSecret, redirectUri,
+                        Arrays.asList(ResponseType.CODE, ResponseType.ID_TOKEN)},
+                {authorizePath, userId, userSecret, redirectUri, Arrays.asList(ResponseType.TOKEN)},
+                {authorizePath, userId, userSecret, redirectUri,
+                        Arrays.asList(ResponseType.TOKEN, ResponseType.ID_TOKEN)},
+                {authorizePath, userId, userSecret, redirectUri,
+                        Arrays.asList(ResponseType.CODE, ResponseType.TOKEN)},
+                {authorizePath, userId, userSecret, redirectUri,
+                        Arrays.asList(ResponseType.CODE, ResponseType.TOKEN, ResponseType.ID_TOKEN)},
+                {authorizePath, userId, userSecret, redirectUri, Arrays.asList(ResponseType.ID_TOKEN)},};
+    }
+
+    /**
+     * Authorization request with the other Response types combination should
+     * fail.
+     */
+    @Test(dependsOnMethods = "omittedResponseTypesStep3b", dataProvider = "omittedResponseTypesStep4DataProvider")
+    public void omittedResponseTypesStep4(final String authorizePath, final String userId, final String userSecret,
+                                          final String redirectUri, final List<ResponseType> responseTypes) throws Exception {
+        List<String> scopes = Arrays.asList("openid", "profile", "address", "email");
+        String nonce = UUID.randomUUID().toString();
+
+        AuthorizationRequest authorizationRequest = new AuthorizationRequest(responseTypes, clientId1, scopes,
+                redirectUri, nonce);
+        authorizationRequest.setState("af0ifjsldkj");
+        authorizationRequest.getPrompts().add(Prompt.NONE);
+        authorizationRequest.setAuthUsername(userId);
+        authorizationRequest.setAuthPassword(userSecret);
+
+        Builder request = ResteasyClientBuilder.newClient()
+                .target(url.toString() + authorizePath + "?" + authorizationRequest.getQueryString()).request();
+        request.header("Authorization", "Basic " + authorizationRequest.getEncodedCredentials());
+        request.header("Accept", MediaType.TEXT_PLAIN);
+
+        Response response = request.get();
+        String entity = response.readEntity(String.class);
+
+        showResponse("omittedResponseTypesStep4", response, entity);
+
+        if (response.getStatus() == 400) {
+            assertNotNull(entity, "Unexpected result: " + entity);
+            try {
+                JSONObject jsonObj = new JSONObject(entity);
+                assertTrue(jsonObj.has("error"), "The error type is null");
+                assertTrue(jsonObj.has("error_description"), "The error description is null");
+            } catch (JSONException e) {
+                e.printStackTrace();
+                fail(e.getMessage() + "\nResponse was: " + entity);
+            }
+        } else {
+            fail("Unexpected response code: " + response.getStatus());
+        }
+    }
+
+    /**
+     * Registering with the response_types param <code>code, id_token</code>.
+     */
+    @Parameters({"registerPath", "redirectUris"})
+    @Test
+    public void responseTypesCodeIdTokenStep1(final String registerPath, final String redirectUris) throws Exception {
+        Builder request = ResteasyClientBuilder.newClient().target(url.toString() + registerPath).request();
+
+        String registerRequestContent = null;
+        try {
+            List<ResponseType> responseTypes = Arrays.asList(ResponseType.CODE, ResponseType.ID_TOKEN);
+
+            RegisterRequest registerRequest = new RegisterRequest(ApplicationType.WEB, "oxAuth test app",
+                    StringUtils.spaceSeparatedToList(redirectUris));
+            registerRequest.setResponseTypes(responseTypes);
+            registerRequest.addCustomAttribute("oxAuthTrustedClient", "true");
+
+            registerRequestContent = ServerUtil.toPrettyJson(registerRequest.getJSONParameters());
+        } catch (JSONException e) {
+            e.printStackTrace();
+            fail(e.getMessage());
+        }
+
+        Response response = request.post(Entity.json(registerRequestContent));
+        String entity = response.readEntity(String.class);
+
+        showResponse("responseTypesCodeIdTokenStep1", response, entity);
+
+        assertEquals(response.getStatus(), 200, "Unexpected response code. " + entity);
+        assertNotNull(entity, "Unexpected result: " + entity);
+        try {
+            JSONObject jsonObj = new JSONObject(entity);
+            assertTrue(jsonObj.has(RegisterResponseParam.CLIENT_ID.toString()));
+            assertTrue(jsonObj.has(CLIENT_SECRET.toString()));
+            assertTrue(jsonObj.has(RegisterResponseParam.REGISTRATION_ACCESS_TOKEN.toString()));
+            assertTrue(jsonObj.has(REGISTRATION_CLIENT_URI.toString()));
+            assertTrue(jsonObj.has(CLIENT_ID_ISSUED_AT.toString()));
+            assertTrue(jsonObj.has(CLIENT_SECRET_EXPIRES_AT.toString()));
+
+            clientId2 = jsonObj.getString(RegisterResponseParam.CLIENT_ID.toString());
+            clientSecret2 = jsonObj.getString(CLIENT_SECRET.toString());
+            registrationAccessToken2 = jsonObj.getString(RegisterResponseParam.REGISTRATION_ACCESS_TOKEN.toString());
+            registrationClientUri2 = jsonObj.getString(RegisterResponseParam.REGISTRATION_CLIENT_URI.toString());
+        } catch (JSONException e) {
+            e.printStackTrace();
+            fail(e.getMessage() + "\nResponse was: " + entity);
+        }
+    }
+
+    /**
+     * Client read request to verify the Client using the
+     * <code>code and id_token</code> response types.
+     */
+    @Parameters({"registerPath"})
+    @Test(dependsOnMethods = "responseTypesCodeIdTokenStep1")
+    public void responseTypesCodeIdTokenStep2(final String registerPath) throws Exception {
+        Builder request = ResteasyClientBuilder.newClient().target(url.toString() + registerPath + "?"
+                + registrationClientUri2.substring(registrationClientUri2.indexOf("?") + 1)).request();
+        request.header("Authorization", "Bearer " + registrationAccessToken2);
+
+        Response response = request.get();
+        String entity = response.readEntity(String.class);
+
+        showResponse("responseTypesCodeIdTokenStep2", response, entity);
+
+        assertEquals(response.getStatus(), 200, "Unexpected response code. " + entity);
+        assertNotNull(entity, "Unexpected result: " + entity);
+        try {
+            JSONObject jsonObj = new JSONObject(entity);
+            assertTrue(jsonObj.has(RegisterResponseParam.CLIENT_ID.toString()));
+            assertTrue(jsonObj.has(CLIENT_SECRET.toString()));
+            assertTrue(jsonObj.has(CLIENT_ID_ISSUED_AT.toString()));
+            assertTrue(jsonObj.has(CLIENT_SECRET_EXPIRES_AT.toString()));
+
+            // Registered Metadata
+            assertTrue(jsonObj.has(RESPONSE_TYPES.toString()));
+            assertNotNull(jsonObj.optJSONArray(RESPONSE_TYPES.toString()));
+            Set<String> responseTypes = new HashSet<String>();
+            for (int i = 0; i < jsonObj.getJSONArray(RESPONSE_TYPES.toString()).length(); i++) {
+                responseTypes.add(jsonObj.getJSONArray(RESPONSE_TYPES.toString()).getString(i));
+            }
+            assertTrue(responseTypes
+                    .containsAll(Arrays.asList(ResponseType.CODE.toString(), ResponseType.ID_TOKEN.toString())));
+            assertTrue(jsonObj.has(REDIRECT_URIS.toString()));
+            assertTrue(jsonObj.has(APPLICATION_TYPE.toString()));
+            assertTrue(jsonObj.has(CLIENT_NAME.toString()));
+            assertTrue(jsonObj.has(ID_TOKEN_SIGNED_RESPONSE_ALG.toString()));
+            assertTrue(jsonObj.has(SCOPE.toString()));
+        } catch (JSONException e) {
+            e.printStackTrace();
+            fail(e.getMessage() + "\nResponse was: " + entity);
+        }
+    }
+
+    /**
+     * Request Authorization with Response Type <code>code</code> should
+     * succeed.
+     */
+    @Parameters({"authorizePath", "userId", "userSecret", "redirectUri"})
+    @Test(dependsOnMethods = "responseTypesCodeIdTokenStep2")
+    public void responseTypesCodeIdTokenStep3a(final String authorizePath, final String userId, final String userSecret,
+                                               final String redirectUri) throws Exception {
+        List<ResponseType> responseTypes = Arrays.asList(ResponseType.CODE, ResponseType.ID_TOKEN);
+        List<String> scopes = Arrays.asList("openid", "profile", "address", "email");
+        String state = UUID.randomUUID().toString();
+        String nonce = UUID.randomUUID().toString();
+
+        AuthorizationRequest authorizationRequest = new AuthorizationRequest(responseTypes, clientId2, scopes,
+                redirectUri, nonce);
+        authorizationRequest.setState(state);
+        authorizationRequest.getPrompts().add(Prompt.NONE);
+        authorizationRequest.setAuthUsername(userId);
+        authorizationRequest.setAuthPassword(userSecret);
+
+        Builder request = ResteasyClientBuilder.newClient()
+                .target(url.toString() + authorizePath + "?" + authorizationRequest.getQueryString()).request();
+        request.header("Authorization", "Basic " + authorizationRequest.getEncodedCredentials());
+        request.header("Accept", MediaType.TEXT_PLAIN);
+
+        Response response = request.get();
+        String entity = response.readEntity(String.class);
+
+        showResponse("responseTypesCodeIdTokenStep3a", response, entity);
+
+        assertEquals(response.getStatus(), 302, "Unexpected response code.");
+        assertNotNull(response.getLocation(), "Unexpected result: " + response.getLocation());
+
+        if (response.getLocation() != null) {
+            try {
+                URI uri = new URI(response.getLocation().toString());
+                assertNotNull(uri.getFragment(), "The fragment is null");
+
+                Map<String, String> params = QueryStringDecoder.decode(uri.getFragment());
+
+                assertTrue(params.containsKey(AuthorizeResponseParam.CODE));
+                assertTrue(params.containsKey(AuthorizeResponseParam.SCOPE));
+                assertTrue(params.containsKey(AuthorizeResponseParam.STATE));
+                assertTrue(params.containsKey(AuthorizeResponseParam.ID_TOKEN));
+                assertFalse(params.containsKey(AuthorizeResponseParam.ACCESS_TOKEN));
+
+                authorizationCode2 = params.get(AuthorizeResponseParam.CODE);
+            } catch (URISyntaxException e) {
+                e.printStackTrace();
+                fail("Response URI is not well formed");
+            } catch (Exception e) {
+                e.printStackTrace();
+                fail(e.getMessage());
+            }
+        }
+    }
+
+    @Parameters({"tokenPath", "redirectUri"})
+    @Test(dependsOnMethods = {"responseTypesCodeIdTokenStep3a"})
+    public void responseTypesCodeIdTokenStep3b(final String tokenPath, final String redirectUri) throws Exception {
+        Builder request = ResteasyClientBuilder.newClient().target(url.toString() + tokenPath).request();
+
+        TokenRequest tokenRequest = new TokenRequest(GrantType.AUTHORIZATION_CODE);
+        tokenRequest.setCode(authorizationCode2);
+        tokenRequest.setRedirectUri(redirectUri);
+        tokenRequest.setAuthUsername(clientId2);
+        tokenRequest.setAuthPassword(clientSecret2);
+
+        request.header("Authorization", "Basic " + tokenRequest.getEncodedCredentials());
+        request.header("Content-Type", MediaType.APPLICATION_FORM_URLENCODED);
+
+        Response response = request
+                .post(Entity.form(new MultivaluedHashMap<String, String>(tokenRequest.getParameters())));
+        String entity = response.readEntity(String.class);
+
+        showResponse("responseTypesCodeIdTokenStep3b", response, entity);
+
+        assertEquals(response.getStatus(), 200, "Unexpected response code.");
+        assertTrue(
+                response.getHeaderString("Cache-Control") != null
+                        && response.getHeaderString("Cache-Control").equals("no-store"),
+                "Unexpected result: " + response.getHeaderString("Cache-Control"));
+        assertTrue(response.getHeaderString("Pragma") != null && response.getHeaderString("Pragma").equals("no-cache"),
+                "Unexpected result: " + response.getHeaderString("Pragma"));
+        assertNotNull(entity, "Unexpected result: " + entity);
+        try {
+            JSONObject jsonObj = new JSONObject(entity);
+            assertTrue(jsonObj.has("access_token"), "Unexpected result: access_token not found");
+            assertTrue(jsonObj.has("token_type"), "Unexpected result: token_type not found");
+            assertTrue(jsonObj.has("refresh_token"), "Unexpected result: refresh_token not found");
+            assertTrue(jsonObj.has("id_token"));
+        } catch (JSONException e) {
+            e.printStackTrace();
+            fail(e.getMessage() + "\nResponse was: " + entity);
+        } catch (Exception e) {
+            e.printStackTrace();
+            fail(e.getMessage());
+        }
+    }
+
+    @DataProvider(name = "responseTypesCodeIdTokenStep4DataProvider")
+    public Object[][] responseTypesCodeIdTokenStep4DataProvider(ITestContext context) {
+        String authorizePath = context.getCurrentXmlTest().getParameter("authorizePath");
+        String userId = context.getCurrentXmlTest().getParameter("userId");
+        String userSecret = context.getCurrentXmlTest().getParameter("userSecret");
+        String redirectUri = context.getCurrentXmlTest().getParameter("redirectUri");
+
+        return new Object[][]{{authorizePath, userId, userSecret, redirectUri, Arrays.asList(ResponseType.TOKEN)},
+                {authorizePath, userId, userSecret, redirectUri,
+                        Arrays.asList(ResponseType.TOKEN, ResponseType.ID_TOKEN)},
+                {authorizePath, userId, userSecret, redirectUri,
+                        Arrays.asList(ResponseType.CODE, ResponseType.TOKEN)},
+                {authorizePath, userId, userSecret, redirectUri,
+                        Arrays.asList(ResponseType.CODE, ResponseType.TOKEN, ResponseType.ID_TOKEN)},
+                {authorizePath, userId, userSecret, redirectUri, Arrays.asList(ResponseType.ID_TOKEN)},};
+    }
+
+    /**
+     * Authorization request with the other Response types combination should
+     * fail.
+     */
+    @Test(dependsOnMethods = "omittedResponseTypesStep3b", dataProvider = "responseTypesCodeIdTokenStep4DataProvider")
+    public void responseTypesCodeIdTokenStep4(final String authorizePath, final String userId, final String userSecret,
+                                              final String redirectUri, final List<ResponseType> responseTypes) throws Exception {
+        List<String> scopes = Arrays.asList("openid", "profile", "address", "email");
+        String nonce = UUID.randomUUID().toString();
+
+        AuthorizationRequest authorizationRequest = new AuthorizationRequest(responseTypes, clientId1, scopes,
+                redirectUri, nonce);
+        authorizationRequest.setState("af0ifjsldkj");
+        authorizationRequest.getPrompts().add(Prompt.NONE);
+        authorizationRequest.setAuthUsername(userId);
+        authorizationRequest.setAuthPassword(userSecret);
+
+        Builder request = ResteasyClientBuilder.newClient()
+                .target(url.toString() + authorizePath + "?" + authorizationRequest.getQueryString()).request();
+        request.header("Authorization", "Basic " + authorizationRequest.getEncodedCredentials());
+        request.header("Accept", MediaType.TEXT_PLAIN);
+
+        Response response = request.get();
+        String entity = response.readEntity(String.class);
+
+        showResponse("responseTypesCodeIdTokenStep4", response, entity);
+
+        if (response.getStatus() == 400) {
+            assertNotNull(entity, "Unexpected result: " + entity);
+            try {
+                JSONObject jsonObj = new JSONObject(entity);
+                assertTrue(jsonObj.has("error"), "The error type is null");
+                assertTrue(jsonObj.has("error_description"), "The error description is null");
+            } catch (JSONException e) {
+                e.printStackTrace();
+                fail(e.getMessage() + "\nResponse was: " + entity);
+            }
+        } else {
+            fail("Unexpected response code: " + response.getStatus());
+        }
+    }
+
+    /**
+     * Registering with the response_types param <code>token, id_token</code>.
+     */
+    @Parameters({"registerPath", "redirectUris"})
+    @Test
+    public void responseTypesTokenIdTokenStep1(final String registerPath, final String redirectUris) throws Exception {
+        Builder request = ResteasyClientBuilder.newClient().target(url.toString() + registerPath).request();
+
+        String registerRequestContent = null;
+        try {
+            List<ResponseType> responseTypes = Arrays.asList(ResponseType.TOKEN, ResponseType.ID_TOKEN);
+
+            RegisterRequest registerRequest = new RegisterRequest(ApplicationType.WEB, "oxAuth test app",
+                    StringUtils.spaceSeparatedToList(redirectUris));
+            registerRequest.setResponseTypes(responseTypes);
+            registerRequest.addCustomAttribute("oxAuthTrustedClient", "true");
+
+            registerRequestContent = ServerUtil.toPrettyJson(registerRequest.getJSONParameters());
+        } catch (JSONException e) {
+            e.printStackTrace();
+            fail(e.getMessage());
+        }
+
+        Response response = request.post(Entity.json(registerRequestContent));
+        String entity = response.readEntity(String.class);
+
+        showResponse("responseTypesTokenIdTokenStep1", response, entity);
+
+        assertEquals(response.getStatus(), 200, "Unexpected response code. " + entity);
+        assertNotNull(entity, "Unexpected result: " + entity);
+        try {
+            JSONObject jsonObj = new JSONObject(entity);
+            assertTrue(jsonObj.has(RegisterResponseParam.CLIENT_ID.toString()));
+            assertTrue(jsonObj.has(CLIENT_SECRET.toString()));
+            assertTrue(jsonObj.has(RegisterResponseParam.REGISTRATION_ACCESS_TOKEN.toString()));
+            assertTrue(jsonObj.has(REGISTRATION_CLIENT_URI.toString()));
+            assertTrue(jsonObj.has(CLIENT_ID_ISSUED_AT.toString()));
+            assertTrue(jsonObj.has(CLIENT_SECRET_EXPIRES_AT.toString()));
+
+            clientId3 = jsonObj.getString(RegisterResponseParam.CLIENT_ID.toString());
+            registrationAccessToken3 = jsonObj.getString(RegisterResponseParam.REGISTRATION_ACCESS_TOKEN.toString());
+            registrationClientUri3 = jsonObj.getString(RegisterResponseParam.REGISTRATION_CLIENT_URI.toString());
+        } catch (JSONException e) {
+            e.printStackTrace();
+            fail(e.getMessage() + "\nResponse was: " + entity);
+        }
+    }
+
+    /**
+     * Client read request to verify the Client using the
+     * <code>token and id_token</code> response types.
+     */
+    @Parameters({"registerPath"})
+    @Test(dependsOnMethods = "responseTypesTokenIdTokenStep1")
+    public void responseTypesTokenIdTokenStep2(final String registerPath) throws Exception {
+        Builder request = ResteasyClientBuilder.newClient().target(url.toString() + registerPath + "?"
+                + registrationClientUri3.substring(registrationClientUri3.indexOf("?") + 1)).request();
+        request.header("Authorization", "Bearer " + registrationAccessToken3);
+
+        Response response = request.get();
+        String entity = response.readEntity(String.class);
+
+        showResponse("responseTypesTokenIdTokenStep2", response, entity);
+
+        assertEquals(response.getStatus(), 200, "Unexpected response code. " + entity);
+        assertNotNull(entity, "Unexpected result: " + entity);
+        try {
+            JSONObject jsonObj = new JSONObject(entity);
+            assertTrue(jsonObj.has(RegisterResponseParam.CLIENT_ID.toString()));
+            assertTrue(jsonObj.has(CLIENT_SECRET.toString()));
+            assertTrue(jsonObj.has(CLIENT_ID_ISSUED_AT.toString()));
+            assertTrue(jsonObj.has(CLIENT_SECRET_EXPIRES_AT.toString()));
+
+            // Registered Metadata
+            assertTrue(jsonObj.has(RESPONSE_TYPES.toString()));
+            assertNotNull(jsonObj.optJSONArray(RESPONSE_TYPES.toString()));
+            Set<String> responseTypes = new HashSet<String>();
+            for (int i = 0; i < jsonObj.getJSONArray(RESPONSE_TYPES.toString()).length(); i++) {
+                responseTypes.add(jsonObj.getJSONArray(RESPONSE_TYPES.toString()).getString(i));
+            }
+            assertTrue(responseTypes
+                    .containsAll(Arrays.asList(ResponseType.TOKEN.toString(), ResponseType.ID_TOKEN.toString())));
+            assertTrue(jsonObj.has(REDIRECT_URIS.toString()));
+            assertTrue(jsonObj.has(APPLICATION_TYPE.toString()));
+            assertTrue(jsonObj.has(CLIENT_NAME.toString()));
+            assertTrue(jsonObj.has(ID_TOKEN_SIGNED_RESPONSE_ALG.toString()));
+            assertTrue(jsonObj.has(SCOPE.toString()));
+        } catch (JSONException e) {
+            e.printStackTrace();
+            fail(e.getMessage() + "\nResponse was: " + entity);
+        }
+    }
+
+    @Parameters({"authorizePath", "userId", "userSecret", "redirectUri"})
+    @Test(dependsOnMethods = "responseTypesTokenIdTokenStep2")
+    public void responseTypesTokenIdTokenStep3(final String authorizePath, final String userId, final String userSecret,
+                                               final String redirectUri) throws Exception {
+        List<ResponseType> responseTypes = Arrays.asList(ResponseType.TOKEN, ResponseType.ID_TOKEN);
+        List<String> scopes = Arrays.asList("openid", "profile", "address", "email");
+        String nonce = UUID.randomUUID().toString();
+
+        AuthorizationRequest authorizationRequest = new AuthorizationRequest(responseTypes, clientId3, scopes,
+                redirectUri, nonce);
+        authorizationRequest.setState("af0ifjsldkj");
+        authorizationRequest.getPrompts().add(Prompt.NONE);
+        authorizationRequest.setAuthUsername(userId);
+        authorizationRequest.setAuthPassword(userSecret);
+
+        Builder request = ResteasyClientBuilder.newClient()
+                .target(url.toString() + authorizePath + "?" + authorizationRequest.getQueryString()).request();
+        request.header("Authorization", "Basic " + authorizationRequest.getEncodedCredentials());
+        request.header("Accept", MediaType.TEXT_PLAIN);
+
+        Response response = request.get();
+        String entity = response.readEntity(String.class);
+
+        showResponse("responseTypesTokenIdTokenStep3", response, entity);
+
+        assertEquals(response.getStatus(), 302, "Unexpected response code.");
+        assertNotNull(response.getLocation(), "Unexpected result: " + response.getLocation());
+
+        if (response.getLocation() != null) {
+            try {
+                URI uri = new URI(response.getLocation().toString());
+                assertNotNull(uri.getFragment(), "Fragment is null");
+
+                Map<String, String> params = QueryStringDecoder.decode(uri.getFragment());
+
+                assertNotNull(params.get("access_token"), "The access token is null");
+                assertNotNull(params.get("token_type"), "The token type is null");
+                assertNotNull(params.get("id_token"), "The id token is null");
+                assertNotNull(params.get("state"), "The state is null");
+            } catch (URISyntaxException e) {
+                e.printStackTrace();
+                fail("Response URI is not well formed");
+            }
+        }
+    }
+
+    @DataProvider(name = "responseTypesTokenIdTokenStep4DataProvider")
+    public Object[][] responseTypesTokenIdTokenStep4DataProvider(ITestContext context) {
+        String authorizePath = context.getCurrentXmlTest().getParameter("authorizePath");
+        String userId = context.getCurrentXmlTest().getParameter("userId");
+        String userSecret = context.getCurrentXmlTest().getParameter("userSecret");
+        String redirectUri = context.getCurrentXmlTest().getParameter("redirectUri");
+
+        return new Object[][]{{authorizePath, userId, userSecret, redirectUri, Arrays.asList(ResponseType.CODE)},
+                {authorizePath, userId, userSecret, redirectUri,
+                        Arrays.asList(ResponseType.CODE, ResponseType.ID_TOKEN)},
+                {authorizePath, userId, userSecret, redirectUri,
+                        Arrays.asList(ResponseType.CODE, ResponseType.TOKEN)},
+                {authorizePath, userId, userSecret, redirectUri,
+                        Arrays.asList(ResponseType.CODE, ResponseType.TOKEN, ResponseType.ID_TOKEN)},};
+    }
+
+    /**
+     * Authorization request with the other Response types combination should
+     * fail.
+     */
+    @Test(dependsOnMethods = "responseTypesTokenIdTokenStep3", dataProvider = "responseTypesTokenIdTokenStep4DataProvider")
+    public void responseTypesTokenIdTokenStep4(final String authorizePath, final String userId, final String userSecret,
+                                               final String redirectUri, final List<ResponseType> responseTypes) throws Exception {
+        List<String> scopes = Arrays.asList("openid", "profile", "address", "email");
+        String nonce = UUID.randomUUID().toString();
+
+        AuthorizationRequest authorizationRequest = new AuthorizationRequest(responseTypes, clientId3, scopes,
+                redirectUri, nonce);
+        authorizationRequest.setState("af0ifjsldkj");
+        authorizationRequest.getPrompts().add(Prompt.NONE);
+        authorizationRequest.setAuthUsername(userId);
+        authorizationRequest.setAuthPassword(userSecret);
+
+        Builder request = ResteasyClientBuilder.newClient()
+                .target(url.toString() + authorizePath + "?" + authorizationRequest.getQueryString()).request();
+        request.header("Authorization", "Basic " + authorizationRequest.getEncodedCredentials());
+        request.header("Accept", MediaType.TEXT_PLAIN);
+
+        Response response = request.get();
+        String entity = response.readEntity(String.class);
+
+        showResponse("responseTypesTokenIdTokenStep4", response, entity);
+
+        if (response.getStatus() == 400) {
+            assertNotNull(entity, "Unexpected result: " + entity);
+            try {
+                JSONObject jsonObj = new JSONObject(entity);
+                assertTrue(jsonObj.has("error"), "The error type is null");
+                assertTrue(jsonObj.has("error_description"), "The error description is null");
+            } catch (JSONException e) {
+                e.printStackTrace();
+                fail(e.getMessage() + "\nResponse was: " + entity);
+            }
+        } else {
+            fail("Unexpected response code: " + response.getStatus());
+        }
+    }
+
+}
diff --git a/oxAuth/Server/src/test/java/org/gluu/oxauth/ws/rs/SectorIdentifierUrlVerificationEmbeddedTest.java b/oxAuth/Server/src/test/java/org/gluu/oxauth/ws/rs/SectorIdentifierUrlVerificationEmbeddedTest.java
new file mode 100644
index 00000000..1a1c4c39
--- /dev/null
+++ b/oxAuth/Server/src/test/java/org/gluu/oxauth/ws/rs/SectorIdentifierUrlVerificationEmbeddedTest.java
@@ -0,0 +1,259 @@
+/*
+ * oxAuth is available under the MIT License (2008). See http://opensource.org/licenses/MIT for full text.
+ *
+ * Copyright (c) 2014, Gluu
+ */
+
+package org.gluu.oxauth.ws.rs;
+
+import static org.gluu.oxauth.model.register.RegisterResponseParam.CLIENT_ID_ISSUED_AT;
+import static org.gluu.oxauth.model.register.RegisterResponseParam.CLIENT_SECRET;
+import static org.gluu.oxauth.model.register.RegisterResponseParam.CLIENT_SECRET_EXPIRES_AT;
+import static org.gluu.oxauth.model.register.RegisterResponseParam.REGISTRATION_ACCESS_TOKEN;
+import static org.gluu.oxauth.model.register.RegisterResponseParam.REGISTRATION_CLIENT_URI;
+import org.gluu.oxauth.util.ServerUtil;
+import static org.testng.Assert.assertEquals;
+import static org.testng.Assert.assertNotNull;
+import static org.testng.Assert.assertTrue;
+import static org.testng.Assert.fail;
+
+import java.net.URI;
+import java.net.URISyntaxException;
+import java.util.Arrays;
+import java.util.List;
+import java.util.Map;
+import java.util.UUID;
+
+import javax.ws.rs.client.Entity;
+import javax.ws.rs.client.Invocation.Builder;
+import javax.ws.rs.core.MediaType;
+import javax.ws.rs.core.Response;
+
+import org.json.JSONException;
+import org.json.JSONObject;
+import org.gluu.oxauth.BaseTest;
+import org.gluu.oxauth.client.AuthorizationRequest;
+import org.gluu.oxauth.client.QueryStringDecoder;
+import org.gluu.oxauth.client.RegisterRequest;
+import org.gluu.oxauth.model.authorize.AuthorizeResponseParam;
+import org.gluu.oxauth.model.common.Prompt;
+import org.gluu.oxauth.model.common.ResponseType;
+import org.gluu.oxauth.model.common.SubjectType;
+import org.gluu.oxauth.model.exception.InvalidJwtException;
+import org.gluu.oxauth.model.jwt.Jwt;
+import org.gluu.oxauth.model.jwt.JwtClaimName;
+import org.gluu.oxauth.model.jwt.JwtHeaderName;
+import org.gluu.oxauth.model.register.ApplicationType;
+import org.gluu.oxauth.model.register.RegisterResponseParam;
+import org.gluu.oxauth.model.util.StringUtils;
+import org.jboss.arquillian.test.api.ArquillianResource;
+import org.jboss.resteasy.client.jaxrs.ResteasyClientBuilder;
+import org.testng.annotations.Parameters;
+import org.testng.annotations.Test;
+
+/**
+ * Functional tests for Sector Identifier URL Verification (embedded)
+ *
+ * @author Javier Rojas Blum
+ * @version August 21, 2015
+ */
+public class SectorIdentifierUrlVerificationEmbeddedTest extends BaseTest {
+
+	@ArquillianResource
+	private URI url;
+
+	private static String clientId1;
+	private static String clientSecret1;
+
+	@Parameters({ "registerPath", "redirectUris", "sectorIdentifierUri" })
+	@Test // This test requires a place to publish a sector identifier JSON
+			// array of redirect URIs via HTTPS
+	public void requestAuthorizationCodeWithSectorIdentifierStep1(final String registerPath, final String redirectUris,
+			final String sectorIdentifierUri) throws Exception {
+
+		Builder request = ResteasyClientBuilder.newClient().target(url.toString() + registerPath).request();
+
+		String registerRequestContent = null;
+		try {
+			List<ResponseType> responseTypes = Arrays.asList(ResponseType.CODE, ResponseType.ID_TOKEN);
+
+			RegisterRequest registerRequest = new RegisterRequest(ApplicationType.WEB, "oxAuth test app",
+					StringUtils.spaceSeparatedToList(redirectUris));
+			registerRequest.addCustomAttribute("oxAuthTrustedClient", "true");
+			registerRequest.setResponseTypes(responseTypes);
+			registerRequest.setSectorIdentifierUri(sectorIdentifierUri);
+			registerRequest.setSubjectType(SubjectType.PAIRWISE);
+
+			registerRequestContent = ServerUtil.toPrettyJson(registerRequest.getJSONParameters());
+		} catch (JSONException e) {
+			e.printStackTrace();
+			fail(e.getMessage());
+		}
+
+		Response response = request.post(Entity.json(registerRequestContent));
+		String entity = response.readEntity(String.class);
+
+		showResponse("requestAuthorizationCodeWithSectorIdentifierStep1", response, entity);
+
+		assertEquals(response.getStatus(), 200, "Unexpected response code. " + entity);
+		assertNotNull(entity, "Unexpected result: " + entity);
+		try {
+			JSONObject jsonObj = new JSONObject(entity);
+			assertTrue(jsonObj.has(RegisterResponseParam.CLIENT_ID.toString()));
+			assertTrue(jsonObj.has(CLIENT_SECRET.toString()));
+			assertTrue(jsonObj.has(REGISTRATION_ACCESS_TOKEN.toString()));
+			assertTrue(jsonObj.has(REGISTRATION_CLIENT_URI.toString()));
+			assertTrue(jsonObj.has(CLIENT_ID_ISSUED_AT.toString()));
+			assertTrue(jsonObj.has(CLIENT_SECRET_EXPIRES_AT.toString()));
+
+			clientId1 = jsonObj.getString(RegisterResponseParam.CLIENT_ID.toString());
+			clientSecret1 = jsonObj.getString(CLIENT_SECRET.toString());
+		} catch (JSONException e) {
+			e.printStackTrace();
+			fail(e.getMessage() + "\nResponse was: " + entity);
+		}
+	}
+
+	// This test requires a place to publish a sector identifier JSON array of
+	// redirect URIs via HTTPS
+	@Parameters({ "authorizePath", "userId", "userSecret", "redirectUri" })
+	@Test(dependsOnMethods = "requestAuthorizationCodeWithSectorIdentifierStep1")
+	public void requestAuthorizationCodeWithSectorIdentifierStep2(final String authorizePath, final String userId,
+			final String userSecret, final String redirectUri) throws Exception {
+
+		List<ResponseType> responseTypes = Arrays.asList(ResponseType.CODE, ResponseType.ID_TOKEN);
+		List<String> scopes = Arrays.asList("openid", "profile", "address", "email");
+		String state = UUID.randomUUID().toString();
+		String nonce = UUID.randomUUID().toString();
+
+		AuthorizationRequest authorizationRequest = new AuthorizationRequest(responseTypes, clientId1, scopes,
+				redirectUri, nonce);
+		authorizationRequest.setState(state);
+		authorizationRequest.getPrompts().add(Prompt.NONE);
+		authorizationRequest.setAuthUsername(userId);
+		authorizationRequest.setAuthPassword(userSecret);
+
+		Builder request = ResteasyClientBuilder.newClient()
+				.target(url.toString() + authorizePath + "?" + authorizationRequest.getQueryString()).request();
+		request.header("Authorization", "Basic " + authorizationRequest.getEncodedCredentials());
+		request.header("Accept", MediaType.TEXT_PLAIN);
+
+		Response response = request.get();
+		String entity = response.readEntity(String.class);
+
+		showResponse("requestAuthorizationCodeWithSectorIdentifierStep2", response, entity);
+
+		assertEquals(response.getStatus(), 302, "Unexpected response code.");
+		assertNotNull(response.getLocation(), "Unexpected result: " + response.getLocation());
+
+		try {
+			URI uri = new URI(response.getLocation().toString());
+			assertNotNull(uri.getFragment());
+
+			Map<String, String> params = QueryStringDecoder.decode(uri.getFragment());
+
+			assertNotNull(params.get(AuthorizeResponseParam.CODE), "The code is null");
+			assertNotNull(params.get(AuthorizeResponseParam.ID_TOKEN), "The ID Token is null");
+			assertNotNull(params.get(AuthorizeResponseParam.SCOPE), "The scope is null");
+			assertNotNull(params.get(AuthorizeResponseParam.STATE), "The state is null");
+
+			String idToken = params.get(AuthorizeResponseParam.ID_TOKEN);
+
+			Jwt jwt = Jwt.parse(idToken);
+			assertNotNull(jwt.getHeader().getClaimAsString(JwtHeaderName.TYPE));
+			assertNotNull(jwt.getHeader().getClaimAsString(JwtHeaderName.ALGORITHM));
+			assertNotNull(jwt.getClaims().getClaimAsString(JwtClaimName.SUBJECT_IDENTIFIER));
+			assertNotNull(jwt.getClaims().getClaimAsString(JwtClaimName.ISSUER));
+			assertNotNull(jwt.getClaims().getClaimAsString(JwtClaimName.AUDIENCE));
+			assertNotNull(jwt.getClaims().getClaimAsString(JwtClaimName.EXPIRATION_TIME));
+			assertNotNull(jwt.getClaims().getClaimAsString(JwtClaimName.ISSUED_AT));
+			assertNotNull(jwt.getClaims().getClaimAsString(JwtClaimName.SUBJECT_IDENTIFIER));
+			assertNotNull(jwt.getClaims().getClaimAsString(JwtClaimName.CODE_HASH));
+			assertNotNull(jwt.getClaims().getClaimAsString(JwtClaimName.AUTHENTICATION_TIME));
+		} catch (URISyntaxException e) {
+			e.printStackTrace();
+			fail("Response URI is not well formed");
+		} catch (InvalidJwtException e) {
+			e.printStackTrace();
+			fail("Invalid JWT");
+		}
+	}
+
+	@Parameters({ "registerPath", "redirectUris" })
+	@Test
+	public void sectorIdentifierUrlVerificationFail1(final String registerPath, final String redirectUris)
+			throws Exception {
+
+		Builder request = ResteasyClientBuilder.newClient().target(url.toString() + registerPath).request();
+
+		String registerRequestContent = null;
+		try {
+			RegisterRequest registerRequest = new RegisterRequest(ApplicationType.WEB, "oxAuth test app",
+					StringUtils.spaceSeparatedToList(redirectUris));
+			registerRequest.addCustomAttribute("oxAuthTrustedClient", "true");
+			registerRequest.setSectorIdentifierUri("https://INVALID_SECTOR_IDENTIFIER_URL");
+
+			registerRequestContent = ServerUtil.toPrettyJson(registerRequest.getJSONParameters());
+		} catch (JSONException e) {
+			e.printStackTrace();
+			fail(e.getMessage());
+		}
+
+		Response response = request.post(Entity.json(registerRequestContent));
+		String entity = response.readEntity(String.class);
+
+		showResponse("sectorIdentifierUrlVerificationFail1", response, entity);
+
+		assertEquals(response.getStatus(), 400, "Unexpected response code. " + entity);
+		assertNotNull(entity, "Unexpected result: " + entity);
+		try {
+			JSONObject jsonObj = new JSONObject(entity);
+			assertTrue(jsonObj.has("error"), "The error type is null");
+			assertTrue(jsonObj.has("error_description"), "The error description is null");
+		} catch (JSONException e) {
+			e.printStackTrace();
+			fail(e.getMessage() + "\nResponse was: " + entity);
+		}
+	}
+
+	@Parameters({ "registerPath", "sectorIdentifierUri" })
+	@Test // This test requires a place to publish a sector identifier JSON
+			// array of redirect URIs via HTTPS
+	public void sectorIdentifierUrlVerificationFail2(final String registerPath, final String sectorIdentifierUri)
+			throws Exception {
+
+		Builder request = ResteasyClientBuilder.newClient().target(url.toString() + registerPath).request();
+
+		String registerRequestContent = null;
+		try {
+			String redirectUris = "https://INVALID_REDIRECT_URI https://client.example.com/cb https://client.example.com/cb1 https://client.example.com/cb2";
+
+			RegisterRequest registerRequest = new RegisterRequest(ApplicationType.WEB, "oxAuth test app",
+					StringUtils.spaceSeparatedToList(redirectUris));
+			registerRequest.addCustomAttribute("oxAuthTrustedClient", "true");
+			registerRequest.setSectorIdentifierUri(sectorIdentifierUri);
+
+			registerRequestContent = ServerUtil.toPrettyJson(registerRequest.getJSONParameters());
+		} catch (JSONException e) {
+			e.printStackTrace();
+			fail(e.getMessage());
+		}
+
+		Response response = request.post(Entity.json(registerRequestContent));
+		String entity = response.readEntity(String.class);
+
+		showResponse("sectorIdentifierUrlVerificationFail2", response, entity);
+
+		assertEquals(response.getStatus(), 400, "Unexpected response code. " + entity);
+		assertNotNull(entity, "Unexpected result: " + entity);
+		try {
+			JSONObject jsonObj = new JSONObject(entity);
+			assertTrue(jsonObj.has("error"), "The error type is null");
+			assertTrue(jsonObj.has("error_description"), "The error description is null");
+		} catch (JSONException e) {
+			e.printStackTrace();
+			fail(e.getMessage() + "\nResponse was: " + entity);
+		}
+	}
+
+}
diff --git a/oxAuth/Server/src/test/java/org/gluu/oxauth/ws/rs/TokenEndpointAuthMethodRestrictionEmbeddedTest.java b/oxAuth/Server/src/test/java/org/gluu/oxauth/ws/rs/TokenEndpointAuthMethodRestrictionEmbeddedTest.java
new file mode 100644
index 00000000..65b1d228
--- /dev/null
+++ b/oxAuth/Server/src/test/java/org/gluu/oxauth/ws/rs/TokenEndpointAuthMethodRestrictionEmbeddedTest.java
@@ -0,0 +1,1425 @@
+/*
+ * oxAuth is available under the MIT License (2008). See http://opensource.org/licenses/MIT for full text.
+ *
+ * Copyright (c) 2014, Gluu
+ */
+
+package org.gluu.oxauth.ws.rs;
+
+import org.gluu.oxauth.BaseTest;
+import org.gluu.oxauth.client.AuthorizationRequest;
+import org.gluu.oxauth.client.QueryStringDecoder;
+import org.gluu.oxauth.client.RegisterRequest;
+import org.gluu.oxauth.client.TokenRequest;
+import org.gluu.oxauth.model.authorize.AuthorizeResponseParam;
+import org.gluu.oxauth.model.common.AuthenticationMethod;
+import org.gluu.oxauth.model.common.GrantType;
+import org.gluu.oxauth.model.common.Prompt;
+import org.gluu.oxauth.model.common.ResponseType;
+import org.gluu.oxauth.model.crypto.OxAuthCryptoProvider;
+import org.gluu.oxauth.model.crypto.signature.SignatureAlgorithm;
+import org.gluu.oxauth.model.register.ApplicationType;
+import org.gluu.oxauth.model.register.RegisterResponseParam;
+import org.gluu.oxauth.model.util.StringUtils;
+import org.gluu.oxauth.util.ServerUtil;
+import org.jboss.arquillian.test.api.ArquillianResource;
+import org.jboss.resteasy.client.jaxrs.ResteasyClientBuilder;
+import org.json.JSONException;
+import org.json.JSONObject;
+import org.testng.annotations.Parameters;
+import org.testng.annotations.Test;
+
+import javax.ws.rs.client.Entity;
+import javax.ws.rs.client.Invocation.Builder;
+import javax.ws.rs.core.MediaType;
+import javax.ws.rs.core.MultivaluedHashMap;
+import javax.ws.rs.core.Response;
+import java.net.URI;
+import java.net.URISyntaxException;
+import java.util.ArrayList;
+import java.util.List;
+import java.util.Map;
+import java.util.UUID;
+
+import static org.gluu.oxauth.model.register.RegisterRequestParam.*;
+import static org.gluu.oxauth.model.register.RegisterResponseParam.*;
+import static org.testng.Assert.*;
+
+/**
+ * @author Javier Rojas Blum
+ * @version November 29, 2017
+ */
+public class TokenEndpointAuthMethodRestrictionEmbeddedTest extends BaseTest {
+
+    @ArquillianResource
+    private URI url;
+
+    private static String clientId1;
+    private static String registrationAccessToken1;
+    private static String registrationClientUri1;
+
+    private static String clientId2;
+    private static String clientSecret2;
+    private static String registrationAccessToken2;
+    private static String authorizationCode2;
+    private static String registrationClientUri2;
+
+    private static String clientId3;
+    private static String clientSecret3;
+    private static String registrationAccessToken3;
+    private static String authorizationCode3;
+    private static String registrationClientUri3;
+
+    private static String clientId4;
+    private static String clientSecret4;
+    private static String registrationAccessToken4;
+    private static String authorizationCode4;
+    private static String registrationClientUri4;
+
+    private static String clientId5;
+    private static String clientSecret5;
+    private static String registrationAccessToken5;
+    private static String authorizationCode5;
+    private static String registrationClientUri5;
+
+    /**
+     * Register a client without specify a Token Endpoint Auth Method.
+     */
+    @Parameters({"registerPath", "redirectUris"})
+    @Test(groups = "AuthMethodOmitted", priority = 1)
+    public void omittedTokenEndpointAuthMethodStep1(final String registerPath, final String redirectUris)
+            throws Exception {
+        Builder request = ResteasyClientBuilder.newClient().target(url.toString() + registerPath).request();
+
+        String registerRequestContent = null;
+        try {
+            RegisterRequest registerRequest = new RegisterRequest(ApplicationType.WEB, "oxAuth test app",
+                    StringUtils.spaceSeparatedToList(redirectUris));
+
+            registerRequestContent = ServerUtil.toPrettyJson(registerRequest.getJSONParameters());
+        } catch (JSONException e) {
+            e.printStackTrace();
+            fail(e.getMessage());
+        }
+
+        Response response = request.post(Entity.json(registerRequestContent));
+        String entity = response.readEntity(String.class);
+
+        showResponse("omittedTokenEndpointAuthMethodStep1", response, entity);
+
+        assertEquals(response.getStatus(), 200, "Unexpected response code. " + entity);
+        assertNotNull(entity, "Unexpected result: " + entity);
+        try {
+            JSONObject jsonObj = new JSONObject(entity);
+            assertTrue(jsonObj.has(RegisterResponseParam.CLIENT_ID.toString()));
+            assertTrue(jsonObj.has(CLIENT_SECRET.toString()));
+            assertTrue(jsonObj.has(RegisterResponseParam.REGISTRATION_ACCESS_TOKEN.toString()));
+            assertTrue(jsonObj.has(REGISTRATION_CLIENT_URI.toString()));
+            assertTrue(jsonObj.has(CLIENT_ID_ISSUED_AT.toString()));
+            assertTrue(jsonObj.has(CLIENT_SECRET_EXPIRES_AT.toString()));
+
+            clientId1 = jsonObj.getString(RegisterResponseParam.CLIENT_ID.toString());
+            registrationAccessToken1 = jsonObj.getString(RegisterResponseParam.REGISTRATION_ACCESS_TOKEN.toString());
+            registrationClientUri1 = jsonObj.getString(RegisterResponseParam.REGISTRATION_CLIENT_URI.toString());
+        } catch (JSONException e) {
+            e.printStackTrace();
+            fail(e.getMessage() + "\nResponse was: " + entity);
+        }
+    }
+
+    /**
+     * Read client to check whether it is using the default Token Endpoint Auth
+     * Method <code>client_secret_basic</code>.
+     */
+    @Parameters({"registerPath"})
+    @Test(groups = "AuthMethodOmitted", dependsOnMethods = "omittedTokenEndpointAuthMethodStep1", priority = 1)
+    public void omittedTokenEndpointAuthMethodStep2(final String registerPath) throws Exception {
+        Builder request = ResteasyClientBuilder.newClient().target(url.toString() + registerPath + "?"
+                + registrationClientUri1.substring(registrationClientUri1.indexOf("?") + 1)).request();
+        request.header("Authorization", "Bearer " + registrationAccessToken1);
+
+        Response response = request.get();
+        String entity = response.readEntity(String.class);
+
+        showResponse("omittedTokenEndpointAuthMethodStep2", response, entity);
+
+        assertEquals(response.getStatus(), 200, "Unexpected response code. " + entity);
+        assertNotNull(entity, "Unexpected result: " + entity);
+        try {
+            JSONObject jsonObj = new JSONObject(entity);
+            assertTrue(jsonObj.has(RegisterResponseParam.CLIENT_ID.toString()));
+            assertTrue(jsonObj.has(CLIENT_SECRET.toString()));
+            assertTrue(jsonObj.has(CLIENT_ID_ISSUED_AT.toString()));
+            assertTrue(jsonObj.has(CLIENT_SECRET_EXPIRES_AT.toString()));
+
+            // Registered Metadata
+            assertTrue(jsonObj.has(TOKEN_ENDPOINT_AUTH_METHOD.toString()));
+            assertEquals(jsonObj.getString(TOKEN_ENDPOINT_AUTH_METHOD.toString()),
+                    AuthenticationMethod.CLIENT_SECRET_BASIC.toString());
+            assertTrue(jsonObj.has(APPLICATION_TYPE.toString()));
+            assertTrue(jsonObj.has(RESPONSE_TYPES.toString()));
+            assertTrue(jsonObj.has(REDIRECT_URIS.toString()));
+            assertTrue(jsonObj.has(APPLICATION_TYPE.toString()));
+            assertTrue(jsonObj.has(CLIENT_NAME.toString()));
+            assertTrue(jsonObj.has(ID_TOKEN_SIGNED_RESPONSE_ALG.toString()));
+            assertTrue(jsonObj.has(SCOPE.toString()));
+        } catch (JSONException e) {
+            e.printStackTrace();
+            fail(e.getMessage() + "\nResponse was: " + entity);
+        }
+    }
+
+    /**
+     * Register a client with Token Endpoint Auth Method
+     * <code>client_secret_basic</code>.
+     */
+    @Parameters({"registerPath", "redirectUris"})
+    @Test(groups = "AuthMethodClientSecretBasic", priority = 2)
+    public void tokenEndpointAuthMethodClientSecretBasicStep1(final String registerPath, final String redirectUris)
+            throws Exception {
+        Builder request = ResteasyClientBuilder.newClient().target(url.toString() + registerPath).request();
+
+        RegisterRequest registerRequest = new RegisterRequest(ApplicationType.WEB, "oxAuth test app",
+                StringUtils.spaceSeparatedToList(redirectUris));
+        registerRequest.setTokenEndpointAuthMethod(AuthenticationMethod.CLIENT_SECRET_BASIC);
+        registerRequest.addCustomAttribute("oxAuthTrustedClient", "true");
+
+        String registerRequestContent = ServerUtil.toPrettyJson(registerRequest.getJSONParameters());
+
+        Response response = request.post(Entity.json(registerRequestContent));
+        String entity = response.readEntity(String.class);
+
+        showResponse("tokenEndpointAuthMethodClientSecretBasicStep1", response, entity);
+
+        assertEquals(response.getStatus(), 200, "Unexpected response code. " + entity);
+        assertNotNull(entity, "Unexpected result: " + entity);
+        try {
+            JSONObject jsonObj = new JSONObject(entity);
+            assertTrue(jsonObj.has(RegisterResponseParam.CLIENT_ID.toString()));
+            assertTrue(jsonObj.has(CLIENT_SECRET.toString()));
+            assertTrue(jsonObj.has(RegisterResponseParam.REGISTRATION_ACCESS_TOKEN.toString()));
+            assertTrue(jsonObj.has(REGISTRATION_CLIENT_URI.toString()));
+            assertTrue(jsonObj.has(CLIENT_ID_ISSUED_AT.toString()));
+            assertTrue(jsonObj.has(CLIENT_SECRET_EXPIRES_AT.toString()));
+
+            clientId2 = jsonObj.getString(RegisterResponseParam.CLIENT_ID.toString());
+            clientSecret2 = jsonObj.getString(RegisterResponseParam.CLIENT_SECRET.toString());
+            registrationAccessToken2 = jsonObj.getString(RegisterResponseParam.REGISTRATION_ACCESS_TOKEN.toString());
+            registrationClientUri2 = jsonObj.getString(RegisterResponseParam.REGISTRATION_CLIENT_URI.toString());
+        } catch (JSONException e) {
+            e.printStackTrace();
+            fail(e.getMessage() + "\nResponse was: " + entity);
+        }
+    }
+
+    /**
+     * Read client to check whether it is using the Token Endpoint Auth Method
+     * <code>client_secret_basic</code>.
+     */
+    @Parameters({"registerPath"})
+    @Test(groups = "AuthMethodClientSecretBasic", dependsOnMethods = "tokenEndpointAuthMethodClientSecretBasicStep1", priority = 2)
+    public void tokenEndpointAuthMethodClientSecretBasicStep2(final String registerPath) throws Exception {
+        Builder request = ResteasyClientBuilder.newClient().target(url.toString() + registerPath + "?"
+                + registrationClientUri2.substring(registrationClientUri2.indexOf("?") + 1)).request();
+        request.header("Authorization", "Bearer " + registrationAccessToken2);
+
+        Response response = request.get();
+        String entity = response.readEntity(String.class);
+
+        showResponse("tokenEndpointAuthMethodClientSecretBasicStep2", response, entity);
+
+        assertEquals(response.getStatus(), 200, "Unexpected response code. " + entity);
+        assertNotNull(entity, "Unexpected result: " + entity);
+        try {
+            JSONObject jsonObj = new JSONObject(entity);
+            assertTrue(jsonObj.has(RegisterResponseParam.CLIENT_ID.toString()));
+            assertTrue(jsonObj.has(CLIENT_SECRET.toString()));
+            assertTrue(jsonObj.has(CLIENT_ID_ISSUED_AT.toString()));
+            assertTrue(jsonObj.has(CLIENT_SECRET_EXPIRES_AT.toString()));
+
+            // Registered Metadata
+            assertTrue(jsonObj.has(TOKEN_ENDPOINT_AUTH_METHOD.toString()));
+            assertEquals(jsonObj.getString(TOKEN_ENDPOINT_AUTH_METHOD.toString()),
+                    AuthenticationMethod.CLIENT_SECRET_BASIC.toString());
+            assertTrue(jsonObj.has(APPLICATION_TYPE.toString()));
+            assertTrue(jsonObj.has(RESPONSE_TYPES.toString()));
+            assertTrue(jsonObj.has(REDIRECT_URIS.toString()));
+            assertTrue(jsonObj.has(APPLICATION_TYPE.toString()));
+            assertTrue(jsonObj.has(CLIENT_NAME.toString()));
+            assertTrue(jsonObj.has(ID_TOKEN_SIGNED_RESPONSE_ALG.toString()));
+            assertTrue(jsonObj.has(SCOPE.toString()));
+        } catch (JSONException e) {
+            e.printStackTrace();
+            fail(e.getMessage() + "\nResponse was: " + entity);
+        }
+    }
+
+    /**
+     * Request authorization code.
+     */
+    @Parameters({"authorizePath", "userId", "userSecret", "redirectUri"})
+    @Test(groups = "AuthMethodClientSecretBasic", dependsOnMethods = "tokenEndpointAuthMethodClientSecretBasicStep2", priority = 2)
+    public void tokenEndpointAuthMethodClientSecretBasicStep3(final String authorizePath, final String userId,
+                                                              final String userSecret, final String redirectUri) throws Exception {
+        List<ResponseType> responseTypes = new ArrayList<ResponseType>();
+        responseTypes.add(ResponseType.CODE);
+        List<String> scopes = new ArrayList<String>();
+        scopes.add("openid");
+        scopes.add("profile");
+        scopes.add("address");
+        scopes.add("email");
+        String state = UUID.randomUUID().toString();
+
+        AuthorizationRequest authorizationRequest = new AuthorizationRequest(responseTypes, clientId2, scopes,
+                redirectUri, null);
+        authorizationRequest.setState(state);
+        authorizationRequest.getPrompts().add(Prompt.NONE);
+        authorizationRequest.setAuthUsername(userId);
+        authorizationRequest.setAuthPassword(userSecret);
+
+        Builder request = ResteasyClientBuilder.newClient()
+                .target(url.toString() + authorizePath + "?" + authorizationRequest.getQueryString()).request();
+        request.header("Authorization", "Basic " + authorizationRequest.getEncodedCredentials());
+        request.header("Accept", MediaType.TEXT_PLAIN);
+
+        Response response = request.get();
+        String entity = response.readEntity(String.class);
+
+        showResponse("tokenEndpointAuthMethodClientSecretBasicStep3", response, entity);
+
+        assertEquals(response.getStatus(), 302, "Unexpected response code.");
+        assertNotNull(response.getLocation(), "Unexpected result: " + response.getLocation());
+
+        if (response.getLocation() != null) {
+            try {
+                URI uri = new URI(response.getLocation().toString());
+                assertNotNull(uri.getQuery(), "The query string is null");
+
+                Map<String, String> params = QueryStringDecoder.decode(uri.getQuery());
+
+                assertNotNull(params.get(AuthorizeResponseParam.CODE), "The code is null");
+                assertNotNull(params.get(AuthorizeResponseParam.SCOPE), "The scope is null");
+                assertNotNull(params.get(AuthorizeResponseParam.STATE), "The state is null");
+
+                authorizationCode2 = params.get(AuthorizeResponseParam.CODE);
+            } catch (URISyntaxException e) {
+                e.printStackTrace();
+                fail("Response URI is not well formed");
+            } catch (Exception e) {
+                e.printStackTrace();
+                fail(e.getMessage());
+            }
+        }
+    }
+
+    /**
+     * Call to Token Endpoint with Auth Method <code>client_secret_basic</code>.
+     */
+    @SuppressWarnings("java:S2925")
+    @Parameters({"tokenPath", "redirectUri"})
+    @Test(groups = "AuthMethodClientSecretBasic", dependsOnMethods = {"tokenEndpointAuthMethodClientSecretBasicStep3"}, priority = 2)
+    public void tokenEndpointAuthMethodClientSecretBasicStep4(final String tokenPath, final String redirectUri) throws InterruptedException {
+        Builder request = ResteasyClientBuilder.newClient().target(url.toString() + tokenPath).request();
+
+        TokenRequest tokenRequest = new TokenRequest(GrantType.AUTHORIZATION_CODE);
+        tokenRequest.setAuthenticationMethod(AuthenticationMethod.CLIENT_SECRET_BASIC);
+        tokenRequest.setCode(authorizationCode2);
+        tokenRequest.setRedirectUri(redirectUri);
+        tokenRequest.setAuthUsername(clientId2);
+        tokenRequest.setAuthPassword(clientSecret2);
+
+        request.header("Authorization", "Basic " + tokenRequest.getEncodedCredentials());
+        request.header("Content-Type", MediaType.APPLICATION_FORM_URLENCODED);
+
+        Response response = request
+                .post(Entity.form(new MultivaluedHashMap<String, String>(tokenRequest.getParameters())));
+        String entity = response.readEntity(String.class);
+
+        showResponse("tokenEndpointAuthMethodClientSecretBasicStep4", response, entity);
+
+        assertEquals(response.getStatus(), 200, "Unexpected response code.");
+        assertTrue(
+                response.getHeaderString("Cache-Control") != null
+                        && response.getHeaderString("Cache-Control").equals("no-store"),
+                "Unexpected result: " + response.getHeaderString("Cache-Control"));
+        assertTrue(response.getHeaderString("Pragma") != null && response.getHeaderString("Pragma").equals("no-cache"),
+                "Unexpected result: " + response.getHeaderString("Pragma"));
+        assertNotNull(entity, "Unexpected result: " + entity);
+        try {
+            JSONObject jsonObj = new JSONObject(entity);
+            assertTrue(jsonObj.has("access_token"), "Unexpected result: access_token not found");
+            assertTrue(jsonObj.has("token_type"), "Unexpected result: token_type not found");
+            assertTrue(jsonObj.has("refresh_token"), "Unexpected result: refresh_token not found");
+            assertTrue(jsonObj.has("id_token"), "Unexpected result: id_token not found");
+        } catch (JSONException e) {
+            e.printStackTrace();
+            fail(e.getMessage() + "\nResponse was: " + entity);
+        } catch (Exception e) {
+            e.printStackTrace();
+            fail(e.getMessage());
+        }
+    }
+
+    /**
+     * Fail 1: Call to Token Endpoint with Auth Method
+     * <code>client_secret_post</code> should fail.
+     */
+    @Parameters({"tokenPath", "userId", "userSecret"})
+    @Test(dependsOnMethods = "tokenEndpointAuthMethodClientSecretBasicStep2", priority = 2)
+    public void tokenEndpointAuthMethodClientSecretBasicFail1(final String tokenPath, final String userId,
+                                                              final String userSecret) throws Exception {
+        Builder request = ResteasyClientBuilder.newClient().target(url.toString() + tokenPath).request();
+
+        TokenRequest tokenRequest = new TokenRequest(GrantType.RESOURCE_OWNER_PASSWORD_CREDENTIALS);
+        tokenRequest.setAuthenticationMethod(AuthenticationMethod.CLIENT_SECRET_POST);
+        tokenRequest.setUsername(userId);
+        tokenRequest.setPassword(userSecret);
+        tokenRequest.setScope("email read_stream manage_pages");
+        tokenRequest.setAuthUsername(clientId2);
+        tokenRequest.setAuthPassword(clientSecret2);
+
+        request.header("Content-Type", MediaType.APPLICATION_FORM_URLENCODED);
+
+        Response response = request
+                .post(Entity.form(new MultivaluedHashMap<String, String>(tokenRequest.getParameters())));
+        String entity = response.readEntity(String.class);
+
+        showResponse("tokenEndpointAuthMethodClientSecretBasicFail1", response, entity);
+
+        assertEquals(response.getStatus(), 401, "Unexpected response code.");
+        assertNotNull(entity, "Unexpected result: " + entity);
+        try {
+            JSONObject jsonObj = new JSONObject(entity);
+            assertTrue(jsonObj.has("error"), "The error type is null");
+            assertTrue(jsonObj.has("error_description"), "The error description is null");
+        } catch (JSONException e) {
+            e.printStackTrace();
+            fail(e.getMessage() + "\nResponse was: " + entity);
+        }
+    }
+
+    /**
+     * Fail 2: Call to Token Endpoint with Auth Method
+     * <code>client_secret_jwt</code> should fail.
+     */
+    @Parameters({"tokenPath", "audience", "userId", "userSecret"})
+    @Test(groups = "AuthMethodClientSecretBasic", dependsOnMethods = "tokenEndpointAuthMethodClientSecretBasicStep2", priority = 2)
+    public void tokenEndpointAuthMethodClientSecretBasicFail2(final String tokenPath, final String audience,
+                                                              final String userId, final String userSecret) throws Exception {
+        Builder request = ResteasyClientBuilder.newClient().target(url.toString() + tokenPath).request();
+
+        TokenRequest tokenRequest = new TokenRequest(GrantType.RESOURCE_OWNER_PASSWORD_CREDENTIALS);
+        tokenRequest.setAuthenticationMethod(AuthenticationMethod.CLIENT_SECRET_JWT);
+        tokenRequest.setAudience(audience);
+        tokenRequest.setUsername(userId);
+        tokenRequest.setPassword(userSecret);
+        tokenRequest.setScope("email read_stream manage_pages");
+        tokenRequest.setAuthUsername(clientId2);
+        tokenRequest.setAuthPassword(clientSecret2);
+
+        request.header("Content-Type", MediaType.APPLICATION_FORM_URLENCODED);
+
+        Response response = request
+                .post(Entity.form(new MultivaluedHashMap<String, String>(tokenRequest.getParameters())));
+        String entity = response.readEntity(String.class);
+
+        showResponse("tokenEndpointAuthMethodClientSecretBasicFail2", response, entity);
+
+        assertEquals(response.getStatus(), 401, "Unexpected response code.");
+        assertNotNull(entity, "Unexpected result: " + entity);
+        try {
+            JSONObject jsonObj = new JSONObject(entity);
+            assertTrue(jsonObj.has("error"), "The error type is null");
+            assertTrue(jsonObj.has("error_description"), "The error description is null");
+        } catch (JSONException e) {
+            e.printStackTrace();
+            fail(e.getMessage() + "\nResponse was: " + entity);
+        }
+    }
+
+    /**
+     * Fail 3: Call to Token Endpoint with Auth Method
+     * <code>private_key_jwt</code> should fail.
+     */
+    @Parameters({"tokenPath", "userId", "userSecret", "audience", "RS256_keyId", "keyStoreFile", "keyStoreSecret"})
+    @Test(groups = "AuthMethodClientSecretBasic", dependsOnMethods = "tokenEndpointAuthMethodClientSecretBasicStep2", priority = 2)
+    public void tokenEndpointAuthMethodClientSecretBasicFail3(final String tokenPath, final String userId,
+                                                              final String userSecret, final String audience, final String keyId, final String keyStoreFile,
+                                                              final String keyStoreSecret) throws Exception {
+        Builder request = ResteasyClientBuilder.newClient().target(url.toString() + tokenPath).request();
+
+        OxAuthCryptoProvider cryptoProvider = new OxAuthCryptoProvider(keyStoreFile, keyStoreSecret, null);
+
+        TokenRequest tokenRequest = new TokenRequest(GrantType.RESOURCE_OWNER_PASSWORD_CREDENTIALS);
+        tokenRequest.setAuthenticationMethod(AuthenticationMethod.PRIVATE_KEY_JWT);
+        tokenRequest.setAlgorithm(SignatureAlgorithm.RS256);
+        tokenRequest.setKeyId(keyId);
+        tokenRequest.setCryptoProvider(cryptoProvider);
+        tokenRequest.setAudience(audience);
+        tokenRequest.setUsername(userId);
+        tokenRequest.setPassword(userSecret);
+        tokenRequest.setScope("email read_stream manage_pages");
+        tokenRequest.setAuthUsername(clientId2);
+        tokenRequest.setAuthPassword(clientSecret2);
+
+        request.header("Content-Type", MediaType.APPLICATION_FORM_URLENCODED);
+
+        Response response = request
+                .post(Entity.form(new MultivaluedHashMap<String, String>(tokenRequest.getParameters())));
+        String entity = response.readEntity(String.class);
+
+        showResponse("tokenEndpointAuthMethodClientSecretBasicFail3", response, entity);
+
+        assertEquals(response.getStatus(), 401, "Unexpected response code.");
+        assertNotNull(entity, "Unexpected result: " + entity);
+        try {
+            JSONObject jsonObj = new JSONObject(entity);
+            assertTrue(jsonObj.has("error"), "The error type is null");
+            assertTrue(jsonObj.has("error_description"), "The error description is null");
+        } catch (JSONException e) {
+            e.printStackTrace();
+            fail(e.getMessage() + "\nResponse was: " + entity);
+        }
+    }
+
+    /**
+     * Register a client with Token Endpoint Auth Method
+     * <code>client_secret_post</code>.
+     */
+    @Parameters({"registerPath", "redirectUris"})
+    @Test(groups = "AuthMethodClientSecretPost", priority = 5)
+    public void tokenEndpointAuthMethodClientSecretPostStep1(final String registerPath, final String redirectUris)
+            throws Exception {
+        Builder request = ResteasyClientBuilder.newClient().target(url.toString() + registerPath).request();
+
+        RegisterRequest registerRequest = new RegisterRequest(ApplicationType.WEB, "oxAuth test app",
+                StringUtils.spaceSeparatedToList(redirectUris));
+        registerRequest.setTokenEndpointAuthMethod(AuthenticationMethod.CLIENT_SECRET_POST);
+        registerRequest.addCustomAttribute("oxAuthTrustedClient", "true");
+
+        String registerRequestContent = ServerUtil.toPrettyJson(registerRequest.getJSONParameters());
+
+        Response response = request.post(Entity.json(registerRequestContent));
+        String entity = response.readEntity(String.class);
+
+        showResponse("tokenEndpointAuthMethodClientSecretPostStep1", response, entity);
+
+        assertEquals(response.getStatus(), 200, "Unexpected response code. " + entity);
+        assertNotNull(entity, "Unexpected result: " + entity);
+        try {
+            JSONObject jsonObj = new JSONObject(entity);
+            assertTrue(jsonObj.has(RegisterResponseParam.CLIENT_ID.toString()));
+            assertTrue(jsonObj.has(CLIENT_SECRET.toString()));
+            assertTrue(jsonObj.has(RegisterResponseParam.REGISTRATION_ACCESS_TOKEN.toString()));
+            assertTrue(jsonObj.has(REGISTRATION_CLIENT_URI.toString()));
+            assertTrue(jsonObj.has(CLIENT_ID_ISSUED_AT.toString()));
+            assertTrue(jsonObj.has(CLIENT_SECRET_EXPIRES_AT.toString()));
+
+            clientId3 = jsonObj.getString(RegisterResponseParam.CLIENT_ID.toString());
+            clientSecret3 = jsonObj.getString(RegisterResponseParam.CLIENT_SECRET.toString());
+            registrationAccessToken3 = jsonObj.getString(RegisterResponseParam.REGISTRATION_ACCESS_TOKEN.toString());
+            registrationClientUri3 = jsonObj.getString(RegisterResponseParam.REGISTRATION_CLIENT_URI.toString());
+        } catch (JSONException e) {
+            e.printStackTrace();
+            fail(e.getMessage() + "\nResponse was: " + entity);
+        }
+    }
+
+    /**
+     * Read client to check whether it is using the Token Endpoint Auth Method
+     * <code>client_secret_post</code>.
+     */
+    @Parameters({"registerPath"})
+    @Test(groups = "AuthMethodClientSecretPost", dependsOnMethods = "tokenEndpointAuthMethodClientSecretPostStep1", priority = 5)
+    public void tokenEndpointAuthMethodClientSecretPostStep2(final String registerPath) throws Exception {
+
+        Builder request = ResteasyClientBuilder.newClient().target(url.toString() + registerPath + "?"
+                + registrationClientUri3.substring(registrationClientUri3.indexOf("?") + 1)).request();
+        request.header("Authorization", "Bearer " + registrationAccessToken3);
+
+        Response response = request.get();
+        String entity = response.readEntity(String.class);
+
+        showResponse("tokenEndpointAuthMethodClientSecretPostStep2", response, entity);
+
+        assertEquals(response.getStatus(), 200, "Unexpected response code. " + entity);
+        assertNotNull(entity, "Unexpected result: " + entity);
+        try {
+            JSONObject jsonObj = new JSONObject(entity);
+            assertTrue(jsonObj.has(RegisterResponseParam.CLIENT_ID.toString()));
+            assertTrue(jsonObj.has(CLIENT_SECRET.toString()));
+            assertTrue(jsonObj.has(CLIENT_ID_ISSUED_AT.toString()));
+            assertTrue(jsonObj.has(CLIENT_SECRET_EXPIRES_AT.toString()));
+
+            // Registered Metadata
+            assertTrue(jsonObj.has(TOKEN_ENDPOINT_AUTH_METHOD.toString()));
+            assertEquals(jsonObj.getString(TOKEN_ENDPOINT_AUTH_METHOD.toString()),
+                    AuthenticationMethod.CLIENT_SECRET_POST.toString());
+            assertTrue(jsonObj.has(APPLICATION_TYPE.toString()));
+            assertTrue(jsonObj.has(RESPONSE_TYPES.toString()));
+            assertTrue(jsonObj.has(REDIRECT_URIS.toString()));
+            assertTrue(jsonObj.has(APPLICATION_TYPE.toString()));
+            assertTrue(jsonObj.has(CLIENT_NAME.toString()));
+            assertTrue(jsonObj.has(ID_TOKEN_SIGNED_RESPONSE_ALG.toString()));
+            assertTrue(jsonObj.has(SCOPE.toString()));
+        } catch (JSONException e) {
+            e.printStackTrace();
+            fail(e.getMessage() + "\nResponse was: " + entity);
+        }
+    }
+
+    /**
+     * Request authorization code.
+     */
+    @Parameters({"authorizePath", "userId", "userSecret", "redirectUri"})
+    @Test(groups = "AuthMethodClientSecretPost", dependsOnMethods = "tokenEndpointAuthMethodClientSecretPostStep2", priority = 5)
+    public void tokenEndpointAuthMethodClientSecretPostStep3(final String authorizePath, final String userId,
+                                                             final String userSecret, final String redirectUri) throws Exception {
+        List<ResponseType> responseTypes = new ArrayList<ResponseType>();
+        responseTypes.add(ResponseType.CODE);
+        List<String> scopes = new ArrayList<String>();
+        scopes.add("openid");
+        scopes.add("profile");
+        scopes.add("address");
+        scopes.add("email");
+        String state = UUID.randomUUID().toString();
+
+        AuthorizationRequest authorizationRequest = new AuthorizationRequest(responseTypes, clientId3, scopes,
+                redirectUri, null);
+        authorizationRequest.setState(state);
+        authorizationRequest.getPrompts().add(Prompt.NONE);
+        authorizationRequest.setAuthUsername(userId);
+        authorizationRequest.setAuthPassword(userSecret);
+
+        Builder request = ResteasyClientBuilder.newClient()
+                .target(url.toString() + authorizePath + "?" + authorizationRequest.getQueryString()).request();
+        request.header("Authorization", "Basic " + authorizationRequest.getEncodedCredentials());
+        request.header("Accept", MediaType.TEXT_PLAIN);
+
+        Response response = request.get();
+        String entity = response.readEntity(String.class);
+
+        showResponse("tokenEndpointAuthMethodClientSecretPostStep3", response, entity);
+
+        assertEquals(response.getStatus(), 302, "Unexpected response code.");
+        assertNotNull(response.getLocation(), "Unexpected result: " + response.getLocation());
+
+        if (response.getLocation() != null) {
+            try {
+                URI uri = new URI(response.getLocation().toString());
+                assertNotNull(uri.getQuery(), "The query string is null");
+
+                Map<String, String> params = QueryStringDecoder.decode(uri.getQuery());
+
+                assertNotNull(params.get(AuthorizeResponseParam.CODE), "The code is null");
+                assertNotNull(params.get(AuthorizeResponseParam.SCOPE), "The scope is null");
+                assertNotNull(params.get(AuthorizeResponseParam.STATE), "The state is null");
+
+                authorizationCode3 = params.get(AuthorizeResponseParam.CODE);
+            } catch (URISyntaxException e) {
+                e.printStackTrace();
+                fail("Response URI is not well formed");
+            } catch (Exception e) {
+                e.printStackTrace();
+                fail(e.getMessage());
+            }
+        }
+    }
+
+    /**
+     * Call to Token Endpoint with Auth Method <code>client_secret_post</code>.
+     */
+    @Parameters({"tokenPath", "redirectUri"})
+    @Test(groups = "AuthMethodClientSecretPost", dependsOnMethods = {"tokenEndpointAuthMethodClientSecretPostStep3"}, priority = 5)
+    public void tokenEndpointAuthMethodClientSecretPostStep4(final String tokenPath, final String redirectUri)
+            throws Exception {
+        Builder request = ResteasyClientBuilder.newClient().target(url.toString() + tokenPath).request();
+
+        TokenRequest tokenRequest = new TokenRequest(GrantType.AUTHORIZATION_CODE);
+        tokenRequest.setAuthenticationMethod(AuthenticationMethod.CLIENT_SECRET_POST);
+        tokenRequest.setCode(authorizationCode3);
+        tokenRequest.setRedirectUri(redirectUri);
+        tokenRequest.setAuthUsername(clientId3);
+        tokenRequest.setAuthPassword(clientSecret3);
+
+        request.header("Content-Type", MediaType.APPLICATION_FORM_URLENCODED);
+
+        Response response = request
+                .post(Entity.form(new MultivaluedHashMap<String, String>(tokenRequest.getParameters())));
+        String entity = response.readEntity(String.class);
+
+        showResponse("tokenEndpointAuthMethodClientSecretBasicStep4", response, entity);
+
+        assertEquals(response.getStatus(), 200, "Unexpected response code.");
+        assertTrue(
+                response.getHeaderString("Cache-Control") != null
+                        && response.getHeaderString("Cache-Control").equals("no-store"),
+                "Unexpected result: " + response.getHeaderString("Cache-Control"));
+        assertTrue(response.getHeaderString("Pragma") != null && response.getHeaderString("Pragma").equals("no-cache"),
+                "Unexpected result: " + response.getHeaderString("Pragma"));
+        assertNotNull(entity, "Unexpected result: " + entity);
+        try {
+            JSONObject jsonObj = new JSONObject(entity);
+            assertTrue(jsonObj.has("access_token"), "Unexpected result: access_token not found");
+            assertTrue(jsonObj.has("token_type"), "Unexpected result: token_type not found");
+            assertTrue(jsonObj.has("refresh_token"), "Unexpected result: refresh_token not found");
+            assertTrue(jsonObj.has("id_token"), "Unexpected result: id_token not found");
+        } catch (JSONException e) {
+            e.printStackTrace();
+            fail(e.getMessage() + "\nResponse was: " + entity);
+        } catch (Exception e) {
+            e.printStackTrace();
+            fail(e.getMessage());
+        }
+    }
+
+    /**
+     * Fail 1: Call to Token Endpoint with Auth Method
+     * <code>client_secret_basic</code> should fail.
+     */
+    @Parameters({"tokenPath", "userId", "userSecret"})
+    @Test(groups = "AuthMethodClientSecretPost", dependsOnMethods = "tokenEndpointAuthMethodClientSecretPostStep2", priority = 5)
+    public void tokenEndpointAuthMethodClientSecretPostFail1(final String tokenPath, final String userId,
+                                                             final String userSecret) throws Exception {
+        Builder request = ResteasyClientBuilder.newClient().target(url.toString() + tokenPath).request();
+
+        TokenRequest tokenRequest = new TokenRequest(GrantType.RESOURCE_OWNER_PASSWORD_CREDENTIALS);
+        tokenRequest.setAuthenticationMethod(AuthenticationMethod.CLIENT_SECRET_BASIC);
+        tokenRequest.setUsername(userId);
+        tokenRequest.setPassword(userSecret);
+        tokenRequest.setScope("email read_stream manage_pages");
+        tokenRequest.setAuthUsername(clientId3);
+        tokenRequest.setAuthPassword(clientSecret3);
+
+        request.header("Authorization", "Basic " + tokenRequest.getEncodedCredentials());
+        request.header("Content-Type", MediaType.APPLICATION_FORM_URLENCODED);
+
+        Response response = request
+                .post(Entity.form(new MultivaluedHashMap<String, String>(tokenRequest.getParameters())));
+        String entity = response.readEntity(String.class);
+
+        showResponse("tokenEndpointAuthMethodClientSecretPostFail1", response, entity);
+
+        assertEquals(response.getStatus(), 401, "Unexpected response code.");
+        assertNotNull(entity, "Unexpected result: " + entity);
+        try {
+            JSONObject jsonObj = new JSONObject(entity);
+            assertTrue(jsonObj.has("error"), "The error type is null");
+            assertTrue(jsonObj.has("error_description"), "The error description is null");
+        } catch (JSONException e) {
+            e.printStackTrace();
+            fail(e.getMessage() + "\nResponse was: " + entity);
+        }
+    }
+
+    /**
+     * Fail 2: Call to Token Endpoint with Auth Method
+     * <code>client_secret_jwt</code> should fail.
+     */
+    @Parameters({"tokenPath", "audience", "userId", "userSecret"})
+    @Test(groups = "AuthMethodClientSecretPost", dependsOnMethods = "tokenEndpointAuthMethodClientSecretPostStep2", priority = 5)
+    public void tokenEndpointAuthMethodClientSecretPostFail2(final String tokenPath, final String audience,
+                                                             final String userId, final String userSecret) throws Exception {
+        Builder request = ResteasyClientBuilder.newClient().target(url.toString() + tokenPath).request();
+
+        TokenRequest tokenRequest = new TokenRequest(GrantType.RESOURCE_OWNER_PASSWORD_CREDENTIALS);
+        tokenRequest.setAuthenticationMethod(AuthenticationMethod.CLIENT_SECRET_JWT);
+        tokenRequest.setAudience(audience);
+        tokenRequest.setUsername(userId);
+        tokenRequest.setPassword(userSecret);
+        tokenRequest.setScope("email read_stream manage_pages");
+        tokenRequest.setAuthUsername(clientId3);
+        tokenRequest.setAuthPassword(clientSecret3);
+
+        request.header("Content-Type", MediaType.APPLICATION_FORM_URLENCODED);
+
+        Response response = request
+                .post(Entity.form(new MultivaluedHashMap<String, String>(tokenRequest.getParameters())));
+        String entity = response.readEntity(String.class);
+
+        showResponse("tokenEndpointAuthMethodClientSecretPostFail2", response, entity);
+
+        assertEquals(response.getStatus(), 401, "Unexpected response code.");
+        assertNotNull(entity, "Unexpected result: " + entity);
+        try {
+            JSONObject jsonObj = new JSONObject(entity);
+            assertTrue(jsonObj.has("error"), "The error type is null");
+            assertTrue(jsonObj.has("error_description"), "The error description is null");
+        } catch (JSONException e) {
+            e.printStackTrace();
+            fail(e.getMessage() + "\nResponse was: " + entity);
+        }
+    }
+
+    /**
+     * Fail 3: Call to Token Endpoint with Auth Method
+     * <code>private_key_jwt</code> should fail.
+     */
+    @Parameters({"tokenPath", "userId", "userSecret", "audience", "RS256_keyId", "keyStoreFile", "keyStoreSecret"})
+    @Test(groups = "AuthMethodClientSecretPost", dependsOnMethods = "tokenEndpointAuthMethodClientSecretPostStep2", priority = 5)
+    public void tokenEndpointAuthMethodClientSecretPostFail3(final String tokenPath, final String userId,
+                                                             final String userSecret, final String audience, final String keyId, final String keyStoreFile,
+                                                             final String keyStoreSecret) throws Exception {
+        Builder request = ResteasyClientBuilder.newClient().target(url.toString() + tokenPath).request();
+
+        OxAuthCryptoProvider cryptoProvider = new OxAuthCryptoProvider(keyStoreFile, keyStoreSecret, null);
+
+        TokenRequest tokenRequest = new TokenRequest(GrantType.RESOURCE_OWNER_PASSWORD_CREDENTIALS);
+        tokenRequest.setAuthenticationMethod(AuthenticationMethod.PRIVATE_KEY_JWT);
+        tokenRequest.setAlgorithm(SignatureAlgorithm.RS256);
+        tokenRequest.setKeyId(keyId);
+        tokenRequest.setCryptoProvider(cryptoProvider);
+        tokenRequest.setAudience(audience);
+        tokenRequest.setUsername(userId);
+        tokenRequest.setPassword(userSecret);
+        tokenRequest.setScope("email read_stream manage_pages");
+        tokenRequest.setAuthUsername(clientId3);
+        tokenRequest.setAuthPassword(clientSecret3);
+
+        request.header("Content-Type", MediaType.APPLICATION_FORM_URLENCODED);
+
+        Response response = request
+                .post(Entity.form(new MultivaluedHashMap<String, String>(tokenRequest.getParameters())));
+        String entity = response.readEntity(String.class);
+
+        showResponse("tokenEndpointAuthMethodClientSecretPostFail3", response, entity);
+
+        assertEquals(response.getStatus(), 401, "Unexpected response code.");
+        assertNotNull(entity, "Unexpected result: " + entity);
+        try {
+            JSONObject jsonObj = new JSONObject(entity);
+            assertTrue(jsonObj.has("error"), "The error type is null");
+            assertTrue(jsonObj.has("error_description"), "The error description is null");
+        } catch (JSONException e) {
+            e.printStackTrace();
+            fail(e.getMessage() + "\nResponse was: " + entity);
+        }
+    }
+
+    /**
+     * Register a client with Token Endpoint Auth Method
+     * <code>client_secret_jwt</code>.
+     */
+    @Parameters({"registerPath", "redirectUris"})
+    @Test(groups = "AuthMethodClientSecretJwt", priority = 3)
+    public void tokenEndpointAuthMethodClientSecretJwtStep1(final String registerPath, final String redirectUris)
+            throws Exception {
+
+        Builder request = ResteasyClientBuilder.newClient().target(url.toString() + registerPath).request();
+
+        RegisterRequest registerRequest = new RegisterRequest(ApplicationType.WEB, "oxAuth test app",
+                StringUtils.spaceSeparatedToList(redirectUris));
+        registerRequest.setTokenEndpointAuthMethod(AuthenticationMethod.CLIENT_SECRET_JWT);
+        registerRequest.addCustomAttribute("oxAuthTrustedClient", "true");
+
+        String registerRequestContent = ServerUtil.toPrettyJson(registerRequest.getJSONParameters());
+
+        Response response = request.post(Entity.json(registerRequestContent));
+        String entity = response.readEntity(String.class);
+
+        showResponse("tokenEndpointAuthMethodClientSecretJwtStep1", response, entity);
+
+        assertEquals(response.getStatus(), 200, "Unexpected response code. " + entity);
+        assertNotNull(entity, "Unexpected result: " + entity);
+        try {
+            JSONObject jsonObj = new JSONObject(entity);
+            assertTrue(jsonObj.has(RegisterResponseParam.CLIENT_ID.toString()));
+            assertTrue(jsonObj.has(CLIENT_SECRET.toString()));
+            assertTrue(jsonObj.has(RegisterResponseParam.REGISTRATION_ACCESS_TOKEN.toString()));
+            assertTrue(jsonObj.has(REGISTRATION_CLIENT_URI.toString()));
+            assertTrue(jsonObj.has(CLIENT_ID_ISSUED_AT.toString()));
+            assertTrue(jsonObj.has(CLIENT_SECRET_EXPIRES_AT.toString()));
+
+            clientId4 = jsonObj.getString(RegisterResponseParam.CLIENT_ID.toString());
+            clientSecret4 = jsonObj.getString(RegisterResponseParam.CLIENT_SECRET.toString());
+            registrationAccessToken4 = jsonObj.getString(RegisterResponseParam.REGISTRATION_ACCESS_TOKEN.toString());
+            registrationClientUri4 = jsonObj.getString(RegisterResponseParam.REGISTRATION_CLIENT_URI.toString());
+        } catch (JSONException e) {
+            e.printStackTrace();
+            fail(e.getMessage() + "\nResponse was: " + entity);
+        }
+    }
+
+    /**
+     * Read client to check whether it is using the Token Endpoint Auth Method
+     * <code>client_secret_jwt</code>.
+     */
+    @Parameters({"registerPath"})
+    @Test(groups = "AuthMethodClientSecretJwt", dependsOnMethods = "tokenEndpointAuthMethodClientSecretJwtStep1", priority = 3)
+    public void tokenEndpointAuthMethodClientSecretJwtStep2(final String registerPath) throws Exception {
+        Builder request = ResteasyClientBuilder.newClient().target(url.toString() + registerPath + "?"
+                + registrationClientUri4.substring(registrationClientUri4.indexOf("?") + 1)).request();
+        request.header("Authorization", "Bearer " + registrationAccessToken4);
+
+        Response response = request.get();
+        String entity = response.readEntity(String.class);
+
+        showResponse("tokenEndpointAuthMethodClientSecretJwtStep2", response, entity);
+
+        assertEquals(response.getStatus(), 200, "Unexpected response code. " + entity);
+        assertNotNull(entity, "Unexpected result: " + entity);
+        try {
+            JSONObject jsonObj = new JSONObject(entity);
+            assertTrue(jsonObj.has(RegisterResponseParam.CLIENT_ID.toString()));
+            assertTrue(jsonObj.has(CLIENT_SECRET.toString()));
+            assertTrue(jsonObj.has(CLIENT_ID_ISSUED_AT.toString()));
+            assertTrue(jsonObj.has(CLIENT_SECRET_EXPIRES_AT.toString()));
+
+            // Registered Metadata
+            assertTrue(jsonObj.has(TOKEN_ENDPOINT_AUTH_METHOD.toString()));
+            assertEquals(jsonObj.getString(TOKEN_ENDPOINT_AUTH_METHOD.toString()),
+                    AuthenticationMethod.CLIENT_SECRET_JWT.toString());
+            assertTrue(jsonObj.has(APPLICATION_TYPE.toString()));
+            assertTrue(jsonObj.has(RESPONSE_TYPES.toString()));
+            assertTrue(jsonObj.has(REDIRECT_URIS.toString()));
+            assertTrue(jsonObj.has(APPLICATION_TYPE.toString()));
+            assertTrue(jsonObj.has(CLIENT_NAME.toString()));
+            assertTrue(jsonObj.has(ID_TOKEN_SIGNED_RESPONSE_ALG.toString()));
+            assertTrue(jsonObj.has(SCOPE.toString()));
+        } catch (JSONException e) {
+            e.printStackTrace();
+            fail(e.getMessage() + "\nResponse was: " + entity);
+        }
+    }
+
+    /**
+     * Request authorization code.
+     */
+    @Parameters({"authorizePath", "userId", "userSecret", "redirectUri"})
+    @Test(groups = "AuthMethodClientSecretJwt", dependsOnMethods = "tokenEndpointAuthMethodClientSecretJwtStep2", priority = 3)
+    public void tokenEndpointAuthMethodClientSecretJwtStep3(final String authorizePath, final String userId,
+                                                            final String userSecret, final String redirectUri) throws Exception {
+        List<ResponseType> responseTypes = new ArrayList<ResponseType>();
+        responseTypes.add(ResponseType.CODE);
+        List<String> scopes = new ArrayList<String>();
+        scopes.add("openid");
+        scopes.add("profile");
+        scopes.add("address");
+        scopes.add("email");
+        String state = UUID.randomUUID().toString();
+
+        AuthorizationRequest authorizationRequest = new AuthorizationRequest(responseTypes, clientId4, scopes,
+                redirectUri, null);
+        authorizationRequest.setState(state);
+        authorizationRequest.getPrompts().add(Prompt.NONE);
+        authorizationRequest.setAuthUsername(userId);
+        authorizationRequest.setAuthPassword(userSecret);
+
+        Builder request = ResteasyClientBuilder.newClient()
+                .target(url.toString() + authorizePath + "?" + authorizationRequest.getQueryString()).request();
+        request.header("Authorization", "Basic " + authorizationRequest.getEncodedCredentials());
+        request.header("Accept", MediaType.TEXT_PLAIN);
+
+        Response response = request.get();
+
+        String entity = response.readEntity(String.class);
+
+        showResponse("tokenEndpointAuthMethodClientSecretJwtStep3", response, entity);
+
+        assertEquals(response.getStatus(), 302, "Unexpected response code.");
+        assertNotNull(response.getLocation(), "Unexpected result: " + response.getLocation());
+
+        if (response.getLocation() != null) {
+            try {
+                URI uri = new URI(response.getLocation().toString());
+                assertNotNull(uri.getQuery(), "The query string is null");
+
+                Map<String, String> params = QueryStringDecoder.decode(uri.getQuery());
+
+                assertNotNull(params.get(AuthorizeResponseParam.CODE), "The code is null");
+                assertNotNull(params.get(AuthorizeResponseParam.SCOPE), "The scope is null");
+                assertNotNull(params.get(AuthorizeResponseParam.STATE), "The state is null");
+
+                authorizationCode4 = params.get(AuthorizeResponseParam.CODE);
+            } catch (URISyntaxException e) {
+                e.printStackTrace();
+                fail("Response URI is not well formed");
+            } catch (Exception e) {
+                e.printStackTrace();
+                fail(e.getMessage());
+            }
+        }
+    }
+
+    /**
+     * Call to Token Endpoint with Auth Method <code>client_secret_Jwt</code>.
+     */
+    @Parameters({"tokenPath", "redirectUri", "audience", "RS256_keyId", "dnName", "keyStoreFile", "keyStoreSecret"})
+    @Test(groups = "AuthMethodClientSecretJwt", dependsOnMethods = {"tokenEndpointAuthMethodClientSecretJwtStep3"}, priority = 3)
+    public void tokenEndpointAuthMethodClientSecretJwtStep4(final String tokenPath, final String redirectUri,
+                                                            final String audience, final String keyId, final String dnName, final String keyStoreFile,
+                                                            final String keyStoreSecret) throws Exception {
+        Builder request = ResteasyClientBuilder.newClient().target(url.toString() + tokenPath).request();
+
+        OxAuthCryptoProvider cryptoProvider = new OxAuthCryptoProvider(keyStoreFile, keyStoreSecret, dnName);
+
+        TokenRequest tokenRequest = new TokenRequest(GrantType.AUTHORIZATION_CODE);
+        tokenRequest.setAuthenticationMethod(AuthenticationMethod.CLIENT_SECRET_JWT);
+        tokenRequest.setCryptoProvider(cryptoProvider);
+        tokenRequest.setKeyId(keyId);
+        tokenRequest.setAudience(audience);
+        tokenRequest.setCode(authorizationCode4);
+        tokenRequest.setRedirectUri(redirectUri);
+        tokenRequest.setAuthUsername(clientId4);
+        tokenRequest.setAuthPassword(clientSecret4);
+
+        Response response = request
+                .post(Entity.form(new MultivaluedHashMap<String, String>(tokenRequest.getParameters())));
+        String entity = response.readEntity(String.class);
+
+        showResponse("tokenEndpointAuthMethodClientSecretJwtStep4", response, entity);
+
+        assertEquals(response.getStatus(), 200, "Unexpected response code.");
+        assertTrue(
+                response.getHeaderString("Cache-Control") != null
+                        && response.getHeaderString("Cache-Control").equals("no-store"),
+                "Unexpected result: " + response.getHeaderString("Cache-Control"));
+        assertTrue(response.getHeaderString("Pragma") != null && response.getHeaderString("Pragma").equals("no-cache"),
+                "Unexpected result: " + response.getHeaderString("Pragma"));
+        assertNotNull(entity, "Unexpected result: " + entity);
+        try {
+            JSONObject jsonObj = new JSONObject(entity);
+            assertTrue(jsonObj.has("access_token"), "Unexpected result: access_token not found");
+            assertTrue(jsonObj.has("token_type"), "Unexpected result: token_type not found");
+            assertTrue(jsonObj.has("refresh_token"), "Unexpected result: refresh_token not found");
+            assertTrue(jsonObj.has("id_token"), "Unexpected result: id_token not found");
+        } catch (Exception e) {
+            fail(e.getMessage(), e);
+        }
+    }
+
+    /**
+     * Fail 1: Call to Token Endpoint with Auth Method
+     * <code>client_secret_basic</code> should fail.
+     */
+    @Parameters({"tokenPath", "userId", "userSecret"})
+    @Test(groups = "AuthMethodClientSecretJwt", dependsOnMethods = "tokenEndpointAuthMethodClientSecretJwtStep2", priority = 3)
+    public void tokenEndpointAuthMethodClientSecretJwtFail1(final String tokenPath, final String userId,
+                                                            final String userSecret) throws Exception {
+        Builder request = ResteasyClientBuilder.newClient().target(url.toString() + tokenPath).request();
+
+        TokenRequest tokenRequest = new TokenRequest(GrantType.RESOURCE_OWNER_PASSWORD_CREDENTIALS);
+        tokenRequest.setAuthenticationMethod(AuthenticationMethod.CLIENT_SECRET_BASIC);
+        tokenRequest.setUsername(userId);
+        tokenRequest.setPassword(userSecret);
+        tokenRequest.setScope("email read_stream manage_pages");
+        tokenRequest.setAuthUsername(clientId4);
+        tokenRequest.setAuthPassword(clientSecret4);
+
+        request.header("Authorization", "Basic " + tokenRequest.getEncodedCredentials());
+        request.header("Content-Type", MediaType.APPLICATION_FORM_URLENCODED);
+
+        Response response = request
+                .post(Entity.form(new MultivaluedHashMap<String, String>(tokenRequest.getParameters())));
+        String entity = response.readEntity(String.class);
+
+        showResponse("tokenEndpointAuthMethodClientSecretJwtFail1", response, entity);
+
+        assertEquals(response.getStatus(), 401, "Unexpected response code.");
+        assertNotNull(entity, "Unexpected result: " + entity);
+        try {
+            JSONObject jsonObj = new JSONObject(entity);
+            assertTrue(jsonObj.has("error"), "The error type is null");
+            assertTrue(jsonObj.has("error_description"), "The error description is null");
+        } catch (JSONException e) {
+            e.printStackTrace();
+            fail(e.getMessage() + "\nResponse was: " + entity);
+        }
+    }
+
+    /**
+     * Fail 2: Call to Token Endpoint with Auth Method
+     * <code>client_secret_post</code> should fail.
+     */
+    @Parameters({"tokenPath", "userId", "userSecret"})
+    @Test(groups = "AuthMethodClientSecretJwt", dependsOnMethods = "tokenEndpointAuthMethodClientSecretJwtStep2", priority = 3)
+    public void tokenEndpointAuthMethodClientSecretJwtFail2(final String tokenPath, final String userId,
+                                                            final String userSecret) throws Exception {
+        Builder request = ResteasyClientBuilder.newClient().target(url.toString() + tokenPath).request();
+
+        TokenRequest tokenRequest = new TokenRequest(GrantType.RESOURCE_OWNER_PASSWORD_CREDENTIALS);
+        tokenRequest.setAuthenticationMethod(AuthenticationMethod.CLIENT_SECRET_POST);
+        tokenRequest.setUsername(userId);
+        tokenRequest.setPassword(userSecret);
+        tokenRequest.setScope("email read_stream manage_pages");
+        tokenRequest.setAuthUsername(clientId4);
+        tokenRequest.setAuthPassword(clientSecret4);
+
+        request.header("Content-Type", MediaType.APPLICATION_FORM_URLENCODED);
+
+        Response response = request
+                .post(Entity.form(new MultivaluedHashMap<String, String>(tokenRequest.getParameters())));
+        String entity = response.readEntity(String.class);
+
+        showResponse("tokenEndpointAuthMethodClientSecretJwtFail2", response, entity);
+
+        assertEquals(response.getStatus(), 401, "Unexpected response code.");
+        assertNotNull(entity, "Unexpected result: " + entity);
+        try {
+            JSONObject jsonObj = new JSONObject(entity);
+            assertTrue(jsonObj.has("error"), "The error type is null");
+            assertTrue(jsonObj.has("error_description"), "The error description is null");
+        } catch (JSONException e) {
+            e.printStackTrace();
+            fail(e.getMessage() + "\nResponse was: " + entity);
+        }
+    }
+
+    /**
+     * Fail 3: Call to Token Endpoint with Auth Method
+     * <code>private_key_jwt</code> should fail.
+     */
+    @Parameters({"tokenPath", "userId", "userSecret", "audience", "RS256_keyId", "keyStoreFile", "keyStoreSecret"})
+    @Test(groups = "AuthMethodClientSecretJwt", dependsOnMethods = "tokenEndpointAuthMethodClientSecretJwtStep2", priority = 3)
+    public void tokenEndpointAuthMethodClientSecretJwtFail3(final String tokenPath, final String userId,
+                                                            final String userSecret, final String audience, final String keyId, final String keyStoreFile,
+                                                            final String keyStoreSecret) throws Exception {
+        Builder request = ResteasyClientBuilder.newClient().target(url.toString() + tokenPath).request();
+
+        OxAuthCryptoProvider cryptoProvider = new OxAuthCryptoProvider(keyStoreFile, keyStoreSecret, null);
+
+        TokenRequest tokenRequest = new TokenRequest(GrantType.RESOURCE_OWNER_PASSWORD_CREDENTIALS);
+        tokenRequest.setAuthenticationMethod(AuthenticationMethod.PRIVATE_KEY_JWT);
+        tokenRequest.setAlgorithm(SignatureAlgorithm.RS256);
+        tokenRequest.setKeyId(keyId);
+        tokenRequest.setCryptoProvider(cryptoProvider);
+        tokenRequest.setAudience(audience);
+        tokenRequest.setUsername(userId);
+        tokenRequest.setPassword(userSecret);
+        tokenRequest.setScope("email read_stream manage_pages");
+        tokenRequest.setAuthUsername(clientId4);
+        tokenRequest.setAuthPassword(clientSecret4);
+
+        request.header("Content-Type", MediaType.APPLICATION_FORM_URLENCODED);
+
+        Response response = request
+                .post(Entity.form(new MultivaluedHashMap<String, String>(tokenRequest.getParameters())));
+        String entity = response.readEntity(String.class);
+
+        showResponse("tokenEndpointAuthMethodClientSecretJwtFail3", response, entity);
+
+        assertEquals(response.getStatus(), 401, "Unexpected response code.");
+        assertNotNull(entity, "Unexpected result: " + entity);
+        try {
+            JSONObject jsonObj = new JSONObject(entity);
+            assertTrue(jsonObj.has("error"), "The error type is null");
+            assertTrue(jsonObj.has("error_description"), "The error description is null");
+        } catch (JSONException e) {
+            e.printStackTrace();
+            fail(e.getMessage() + "\nResponse was: " + entity);
+        }
+    }
+
+    /**
+     * Register a client with Token Endpoint Auth Method
+     * <code>private_key_jwt</code>.
+     */
+    @Parameters({"registerPath", "redirectUris", "clientJwksUri"})
+    @Test(groups = "AuthMethodPrivateKeyJwt", priority = 6)
+    public void tokenEndpointAuthMethodPrivateKeyJwtStep1(final String registerPath, final String redirectUris,
+                                                          final String jwksUri) throws Exception {
+        Builder request = ResteasyClientBuilder.newClient().target(url.toString() + registerPath).request();
+
+        RegisterRequest registerRequest = new RegisterRequest(ApplicationType.WEB, "oxAuth test app",
+                StringUtils.spaceSeparatedToList(redirectUris));
+        registerRequest.setTokenEndpointAuthMethod(AuthenticationMethod.PRIVATE_KEY_JWT);
+        registerRequest.setJwksUri(jwksUri);
+        registerRequest.addCustomAttribute("oxAuthTrustedClient", "true");
+
+        String registerRequestContent = ServerUtil.toPrettyJson(registerRequest.getJSONParameters());
+
+        Response response = request.post(Entity.json(registerRequestContent));
+        String entity = response.readEntity(String.class);
+
+        showResponse("tokenEndpointAuthMethodPrivateKeyJwtStep1", response, entity);
+
+        assertEquals(response.getStatus(), 200, "Unexpected response code. " + entity);
+        assertNotNull(entity, "Unexpected result: " + entity);
+        try {
+            JSONObject jsonObj = new JSONObject(entity);
+            assertTrue(jsonObj.has(RegisterResponseParam.CLIENT_ID.toString()));
+            assertTrue(jsonObj.has(CLIENT_SECRET.toString()));
+            assertTrue(jsonObj.has(RegisterResponseParam.REGISTRATION_ACCESS_TOKEN.toString()));
+            assertTrue(jsonObj.has(REGISTRATION_CLIENT_URI.toString()));
+            assertTrue(jsonObj.has(CLIENT_ID_ISSUED_AT.toString()));
+            assertTrue(jsonObj.has(CLIENT_SECRET_EXPIRES_AT.toString()));
+
+            clientId5 = jsonObj.getString(RegisterResponseParam.CLIENT_ID.toString());
+            clientSecret5 = jsonObj.getString(RegisterResponseParam.CLIENT_SECRET.toString());
+            registrationAccessToken5 = jsonObj.getString(RegisterResponseParam.REGISTRATION_ACCESS_TOKEN.toString());
+            registrationClientUri5 = jsonObj.getString(RegisterResponseParam.REGISTRATION_CLIENT_URI.toString());
+        } catch (JSONException e) {
+            e.printStackTrace();
+            fail(e.getMessage() + "\nResponse was: " + entity);
+        }
+    }
+
+    /**
+     * Read client to check whether it is using the Token Endpoint Auth Method
+     * <code>private_key_jwt</code>.
+     */
+    @Parameters({"registerPath"})
+    @Test(groups = "AuthMethodPrivateKeyJwt", dependsOnMethods = "tokenEndpointAuthMethodPrivateKeyJwtStep1", priority = 6)
+    public void tokenEndpointAuthMethodPrivateKeyJwtStep2(final String registerPath) throws Exception {
+        Builder request = ResteasyClientBuilder.newClient().target(url.toString() + registerPath + "?"
+                + registrationClientUri5.substring(registrationClientUri5.indexOf("?") + 1)).request();
+        request.header("Authorization", "Bearer " + registrationAccessToken5);
+
+        Response response = request.get();
+        String entity = response.readEntity(String.class);
+
+        showResponse("tokenEndpointAuthMethodPrivateKeyJwtStep2", response, entity);
+
+        assertEquals(response.getStatus(), 200, "Unexpected response code. " + entity);
+        assertNotNull(entity, "Unexpected result: " + entity);
+        try {
+            JSONObject jsonObj = new JSONObject(entity);
+            assertTrue(jsonObj.has(RegisterResponseParam.CLIENT_ID.toString()));
+            assertTrue(jsonObj.has(CLIENT_SECRET.toString()));
+            assertTrue(jsonObj.has(CLIENT_ID_ISSUED_AT.toString()));
+            assertTrue(jsonObj.has(CLIENT_SECRET_EXPIRES_AT.toString()));
+
+            // Registered Metadata
+            assertTrue(jsonObj.has(TOKEN_ENDPOINT_AUTH_METHOD.toString()));
+            assertEquals(jsonObj.getString(TOKEN_ENDPOINT_AUTH_METHOD.toString()),
+                    AuthenticationMethod.PRIVATE_KEY_JWT.toString());
+            assertTrue(jsonObj.has(APPLICATION_TYPE.toString()));
+            assertTrue(jsonObj.has(RESPONSE_TYPES.toString()));
+            assertTrue(jsonObj.has(REDIRECT_URIS.toString()));
+            assertTrue(jsonObj.has(APPLICATION_TYPE.toString()));
+            assertTrue(jsonObj.has(CLIENT_NAME.toString()));
+            assertTrue(jsonObj.has(ID_TOKEN_SIGNED_RESPONSE_ALG.toString()));
+            assertTrue(jsonObj.has(SCOPE.toString()));
+        } catch (JSONException e) {
+            e.printStackTrace();
+            fail(e.getMessage() + "\nResponse was: " + entity);
+        }
+    }
+
+    /**
+     * Request authorization code.
+     */
+    @Parameters({"authorizePath", "userId", "userSecret", "redirectUri"})
+    @Test(groups = "AuthMethodPrivateKeyJwt", dependsOnMethods = "tokenEndpointAuthMethodPrivateKeyJwtStep2", priority = 6)
+    public void tokenEndpointAuthMethodPrivateKeyJwtStep3(final String authorizePath, final String userId,
+                                                          final String userSecret, final String redirectUri) throws Exception {
+        List<ResponseType> responseTypes = new ArrayList<ResponseType>();
+        responseTypes.add(ResponseType.CODE);
+        List<String> scopes = new ArrayList<String>();
+        scopes.add("openid");
+        scopes.add("profile");
+        scopes.add("address");
+        scopes.add("email");
+        String state = UUID.randomUUID().toString();
+
+        AuthorizationRequest authorizationRequest = new AuthorizationRequest(responseTypes, clientId5, scopes,
+                redirectUri, null);
+        authorizationRequest.setState(state);
+        authorizationRequest.getPrompts().add(Prompt.NONE);
+        authorizationRequest.setAuthUsername(userId);
+        authorizationRequest.setAuthPassword(userSecret);
+
+        Builder request = ResteasyClientBuilder.newClient()
+                .target(url.toString() + authorizePath + "?" + authorizationRequest.getQueryString()).request();
+        request.header("Authorization", "Basic " + authorizationRequest.getEncodedCredentials());
+        request.header("Accept", MediaType.TEXT_PLAIN);
+
+        Response response = request.get();
+        String entity = response.readEntity(String.class);
+
+        showResponse("tokenEndpointAuthMethodPrivateKeyJwtStep3", response, entity);
+
+        assertEquals(response.getStatus(), 302, "Unexpected response code.");
+        assertNotNull(response.getLocation(), "Unexpected result: " + response.getLocation());
+
+        if (response.getLocation() != null) {
+            try {
+                URI uri = new URI(response.getLocation().toString());
+                assertNotNull(uri.getQuery(), "The query string is null");
+
+                Map<String, String> params = QueryStringDecoder.decode(uri.getQuery());
+
+                assertNotNull(params.get(AuthorizeResponseParam.CODE), "The code is null");
+                assertNotNull(params.get(AuthorizeResponseParam.SCOPE), "The scope is null");
+                assertNotNull(params.get(AuthorizeResponseParam.STATE), "The state is null");
+
+                authorizationCode5 = params.get(AuthorizeResponseParam.CODE);
+            } catch (URISyntaxException e) {
+                e.printStackTrace();
+                fail("Response URI is not well formed");
+            } catch (Exception e) {
+                e.printStackTrace();
+                fail(e.getMessage());
+            }
+        }
+    }
+
+    /**
+     * Call to Token Endpoint with Auth Method <code>private_key_jwt</code>.
+     */
+    @Parameters({"tokenPath", "redirectUri", "audience", "RS256_keyId", "keyStoreFile", "keyStoreSecret"})
+    @Test(groups = "AuthMethodPrivateKeyJwt", dependsOnMethods = {"tokenEndpointAuthMethodPrivateKeyJwtStep3"}, priority = 6)
+    public void tokenEndpointAuthMethodPrivateKeyJwtStep4(final String tokenPath, final String redirectUri,
+                                                          final String audience, final String keyId, final String keyStoreFile, final String keyStoreSecret)
+            throws Exception {
+        Builder request = ResteasyClientBuilder.newClient().target(url.toString() + tokenPath).request();
+
+        OxAuthCryptoProvider cryptoProvider = new OxAuthCryptoProvider(keyStoreFile, keyStoreSecret, null);
+
+        TokenRequest tokenRequest = new TokenRequest(GrantType.AUTHORIZATION_CODE);
+        tokenRequest.setAuthenticationMethod(AuthenticationMethod.PRIVATE_KEY_JWT);
+        tokenRequest.setAlgorithm(SignatureAlgorithm.RS256);
+        tokenRequest.setKeyId(keyId);
+        tokenRequest.setCryptoProvider(cryptoProvider);
+        tokenRequest.setAudience(audience);
+        tokenRequest.setCode(authorizationCode5);
+        tokenRequest.setRedirectUri(redirectUri);
+        tokenRequest.setAuthUsername(clientId5);
+
+        request.header("Content-Type", MediaType.APPLICATION_FORM_URLENCODED);
+
+        Response response = request
+                .post(Entity.form(new MultivaluedHashMap<String, String>(tokenRequest.getParameters())));
+        String entity = response.readEntity(String.class);
+
+        showResponse("tokenEndpointAuthMethodPrivateKeyJwtStep4", response, entity);
+
+        assertEquals(response.getStatus(), 200, "Unexpected response code.");
+        assertTrue(
+                response.getHeaderString("Cache-Control") != null
+                        && response.getHeaderString("Cache-Control").equals("no-store"),
+                "Unexpected result: " + response.getHeaderString("Cache-Control"));
+        assertTrue(response.getHeaderString("Pragma") != null && response.getHeaderString("Pragma").equals("no-cache"),
+                "Unexpected result: " + response.getHeaderString("Pragma"));
+        assertNotNull(entity, "Unexpected result: " + entity);
+        try {
+            JSONObject jsonObj = new JSONObject(entity);
+            assertTrue(jsonObj.has("access_token"), "Unexpected result: access_token not found");
+            assertTrue(jsonObj.has("token_type"), "Unexpected result: token_type not found");
+            assertTrue(jsonObj.has("refresh_token"), "Unexpected result: refresh_token not found");
+            assertTrue(jsonObj.has("id_token"), "Unexpected result: id_token not found");
+        } catch (JSONException e) {
+            e.printStackTrace();
+            fail(e.getMessage() + "\nResponse was: " + entity);
+        } catch (Exception e) {
+            e.printStackTrace();
+            fail(e.getMessage());
+        }
+    }
+
+    /**
+     * Fail 1: Call to Token Endpoint with Auth Method
+     * <code>client_secret_basic</code> should fail.
+     */
+    @Parameters({"tokenPath", "userId", "userSecret"})
+    @Test(groups = "AuthMethodPrivateKeyJwt", dependsOnMethods = "tokenEndpointAuthMethodPrivateKeyJwtStep2", priority = 6)
+    public void tokenEndpointAuthMethodPrivateKeyJwtFail1(final String tokenPath, final String userId,
+                                                          final String userSecret) throws Exception {
+        Builder request = ResteasyClientBuilder.newClient().target(url.toString() + tokenPath).request();
+
+        TokenRequest tokenRequest = new TokenRequest(GrantType.RESOURCE_OWNER_PASSWORD_CREDENTIALS);
+        tokenRequest.setAuthenticationMethod(AuthenticationMethod.CLIENT_SECRET_BASIC);
+        tokenRequest.setUsername(userId);
+        tokenRequest.setPassword(userSecret);
+        tokenRequest.setScope("email read_stream manage_pages");
+        tokenRequest.setAuthUsername(clientId5);
+        tokenRequest.setAuthPassword(clientSecret5);
+
+        request.header("Authorization", "Basic " + tokenRequest.getEncodedCredentials());
+        request.header("Content-Type", MediaType.APPLICATION_FORM_URLENCODED);
+
+        Response response = request
+                .post(Entity.form(new MultivaluedHashMap<String, String>(tokenRequest.getParameters())));
+        String entity = response.readEntity(String.class);
+
+        showResponse("tokenEndpointAuthMethodPrivateKeyJwtFail1", response, entity);
+
+        assertEquals(response.getStatus(), 401, "Unexpected response code.");
+        assertNotNull(entity, "Unexpected result: " + entity);
+        try {
+            JSONObject jsonObj = new JSONObject(entity);
+            assertTrue(jsonObj.has("error"), "The error type is null");
+            assertTrue(jsonObj.has("error_description"), "The error description is null");
+        } catch (JSONException e) {
+            e.printStackTrace();
+            fail(e.getMessage() + "\nResponse was: " + entity);
+        }
+    }
+
+    /**
+     * Fail 2: Call to Token Endpoint with Auth Method
+     * <code>client_secret_post</code> should fail.
+     */
+    @Parameters({"tokenPath", "userId", "userSecret"})
+    @Test(groups = "AuthMethodPrivateKeyJwt", dependsOnMethods = "tokenEndpointAuthMethodPrivateKeyJwtStep2", priority = 6)
+    public void tokenEndpointAuthMethodPrivateKeyJwtFail2(final String tokenPath, final String userId,
+                                                          final String userSecret) throws Exception {
+        Builder request = ResteasyClientBuilder.newClient().target(url.toString() + tokenPath).request();
+
+        TokenRequest tokenRequest = new TokenRequest(GrantType.RESOURCE_OWNER_PASSWORD_CREDENTIALS);
+        tokenRequest.setAuthenticationMethod(AuthenticationMethod.CLIENT_SECRET_POST);
+        tokenRequest.setUsername(userId);
+        tokenRequest.setPassword(userSecret);
+        tokenRequest.setScope("email read_stream manage_pages");
+        tokenRequest.setAuthUsername(clientId5);
+        tokenRequest.setAuthPassword(clientSecret5);
+
+        request.header("Content-Type", MediaType.APPLICATION_FORM_URLENCODED);
+
+        Response response = request
+                .post(Entity.form(new MultivaluedHashMap<String, String>(tokenRequest.getParameters())));
+
+        String entity = response.readEntity(String.class);
+
+        showResponse("tokenEndpointAuthMethodPrivateKeyJwtFail2", response, entity);
+
+        assertEquals(response.getStatus(), 401, "Unexpected response code.");
+        assertNotNull(entity, "Unexpected result: " + entity);
+        try {
+            JSONObject jsonObj = new JSONObject(entity);
+            assertTrue(jsonObj.has("error"), "The error type is null");
+            assertTrue(jsonObj.has("error_description"), "The error description is null");
+        } catch (JSONException e) {
+            e.printStackTrace();
+            fail(e.getMessage() + "\nResponse was: " + entity);
+        }
+    }
+
+    /**
+     * Fail 3: Call to Token Endpoint with Auth Method
+     * <code>client_secret_jwt</code> should fail.
+     */
+    @Parameters({"tokenPath", "audience", "userId", "userSecret"})
+    @Test(groups = "AuthMethodPrivateKeyJwt", dependsOnMethods = "tokenEndpointAuthMethodPrivateKeyJwtStep2", priority = 6)
+    public void tokenEndpointAuthMethodPrivateKeyJwtFail3(final String tokenPath, final String audience,
+                                                          final String userId, final String userSecret) throws Exception {
+        Builder request = ResteasyClientBuilder.newClient().target(url.toString() + tokenPath).request();
+
+        TokenRequest tokenRequest = new TokenRequest(GrantType.RESOURCE_OWNER_PASSWORD_CREDENTIALS);
+        tokenRequest.setAuthenticationMethod(AuthenticationMethod.CLIENT_SECRET_JWT);
+        tokenRequest.setAudience(audience);
+        tokenRequest.setUsername(userId);
+        tokenRequest.setPassword(userSecret);
+        tokenRequest.setScope("email read_stream manage_pages");
+        tokenRequest.setAuthUsername(clientId5);
+        tokenRequest.setAuthPassword(clientSecret5);
+
+        Response response = request
+                .post(Entity.form(new MultivaluedHashMap<String, String>(tokenRequest.getParameters())));
+        String entity = response.readEntity(String.class);
+
+        showResponse("tokenEndpointAuthMethodPrivateKeyJwtFail3", response, entity);
+
+        assertEquals(response.getStatus(), 401, "Unexpected response code.");
+        assertNotNull(entity, "Unexpected result: " + entity);
+        try {
+            JSONObject jsonObj = new JSONObject(entity);
+            assertTrue(jsonObj.has("error"), "The error type is null");
+            assertTrue(jsonObj.has("error_description"), "The error description is null");
+        } catch (JSONException e) {
+            e.printStackTrace();
+            fail(e.getMessage() + "\nResponse was: " + entity);
+        }
+    }
+
+}
diff --git a/oxAuth/Server/src/test/java/org/gluu/oxauth/ws/rs/TokenRestWebServiceEmbeddedTest.java b/oxAuth/Server/src/test/java/org/gluu/oxauth/ws/rs/TokenRestWebServiceEmbeddedTest.java
new file mode 100644
index 00000000..28f949ad
--- /dev/null
+++ b/oxAuth/Server/src/test/java/org/gluu/oxauth/ws/rs/TokenRestWebServiceEmbeddedTest.java
@@ -0,0 +1,276 @@
+/*
+ * oxAuth is available under the MIT License (2008). See http://opensource.org/licenses/MIT for full text.
+ *
+ * Copyright (c) 2014, Gluu
+ */
+
+package org.gluu.oxauth.ws.rs;
+
+import org.gluu.oxauth.BaseTest;
+import org.gluu.oxauth.client.RegisterRequest;
+import org.gluu.oxauth.client.RegisterResponse;
+import org.gluu.oxauth.client.TokenRequest;
+import org.gluu.oxauth.model.common.AuthenticationMethod;
+import org.gluu.oxauth.model.common.GrantType;
+import org.gluu.oxauth.model.common.ResponseType;
+import org.gluu.oxauth.model.register.ApplicationType;
+import org.gluu.oxauth.model.util.StringUtils;
+import org.gluu.oxauth.util.ServerUtil;
+import org.jboss.arquillian.test.api.ArquillianResource;
+import org.jboss.resteasy.client.jaxrs.ResteasyClientBuilder;
+import org.json.JSONException;
+import org.json.JSONObject;
+import org.testng.annotations.Parameters;
+import org.testng.annotations.Test;
+
+import javax.ws.rs.client.Entity;
+import javax.ws.rs.client.Invocation.Builder;
+import javax.ws.rs.core.MediaType;
+import javax.ws.rs.core.MultivaluedHashMap;
+import javax.ws.rs.core.Response;
+import java.net.URI;
+import java.util.Arrays;
+import java.util.List;
+
+import static org.testng.Assert.*;
+
+/**
+ * Functional tests for Token Web Services (embedded)
+ *
+ * @author Javier Rojas Blum
+ * @version August 1, 2018
+ */
+public class TokenRestWebServiceEmbeddedTest extends BaseTest {
+
+    @ArquillianResource
+    private URI url;
+
+    private static String clientId;
+    private static String clientSecret;
+
+    @Parameters({"registerPath", "redirectUris"})
+    @Test
+    public void dynamicClientRegistration(final String registerPath, final String redirectUris) throws Exception {
+        Builder request = ResteasyClientBuilder.newClient().target(url.toString() + registerPath).request();
+
+        String registerRequestContent = null;
+        try {
+            List<ResponseType> responseTypes = Arrays.asList(ResponseType.CODE, ResponseType.TOKEN,
+                    ResponseType.ID_TOKEN);
+
+            RegisterRequest registerRequest = new RegisterRequest(ApplicationType.WEB, "oxAuth test app",
+                    StringUtils.spaceSeparatedToList(redirectUris));
+            registerRequest.setResponseTypes(responseTypes);
+            registerRequest.addCustomAttribute("oxAuthTrustedClient", "true");
+
+            List<GrantType> grantTypes = Arrays.asList(
+                    GrantType.RESOURCE_OWNER_PASSWORD_CREDENTIALS,
+                    GrantType.CLIENT_CREDENTIALS
+            );
+            registerRequest.setGrantTypes(grantTypes);
+
+            registerRequestContent = ServerUtil.toPrettyJson(registerRequest.getJSONParameters());
+        } catch (JSONException e) {
+            e.printStackTrace();
+            fail(e.getMessage());
+        }
+
+        Response response = request.post(Entity.json(registerRequestContent));
+        String entity = response.readEntity(String.class);
+
+        showResponse("dynamicClientRegistration", response, entity);
+
+        assertEquals(response.getStatus(), 200, "Unexpected response code. " + entity);
+        assertNotNull(entity, "Unexpected result: " + entity);
+        try {
+            final RegisterResponse registerResponse = RegisterResponse.valueOf(entity);
+            ClientTestUtil.assert_(registerResponse);
+
+            clientId = registerResponse.getClientId();
+            clientSecret = registerResponse.getClientSecret();
+        } catch (Exception e) {
+            e.printStackTrace();
+            fail(e.getMessage() + "\nResponse was: " + entity);
+        }
+    }
+
+    @Parameters({"tokenPath", "redirectUri"})
+    @Test(dependsOnMethods = "dynamicClientRegistration")
+    public void requestAccessToken(final String tokenPath, final String redirectUri) throws Exception {
+        Builder request = ResteasyClientBuilder.newClient().target(url.toString() + tokenPath).request();
+
+        TokenRequest tokenRequest = new TokenRequest(GrantType.AUTHORIZATION_CODE);
+        tokenRequest.setCode("6f6f3f01-a034-4336-bf31-2e74868e5838");
+        tokenRequest.setRedirectUri(redirectUri);
+        tokenRequest.setAuthUsername(clientId);
+        tokenRequest.setAuthPassword(clientSecret);
+
+        request.header("Authorization", "Basic " + tokenRequest.getEncodedCredentials());
+        request.header("Content-Type", MediaType.APPLICATION_FORM_URLENCODED);
+
+        Response response = request
+                .post(Entity.form(new MultivaluedHashMap<String, String>(tokenRequest.getParameters())));
+        String entity = response.readEntity(String.class);
+
+        showResponse("requestAccessToken", response, entity);
+
+        assertEquals(response.getStatus(), 400, "Unexpected response code.");
+        assertNotNull(entity, "Unexpected result: " + entity);
+        try {
+            JSONObject jsonObj = new JSONObject(entity);
+            assertTrue(jsonObj.has("error"), "The error type is null");
+            assertTrue(jsonObj.has("error_description"), "The error description is null");
+        } catch (JSONException e) {
+            e.printStackTrace();
+            fail(e.getMessage() + "\nResponse was: " + entity);
+        }
+    }
+
+    @Parameters({"tokenPath", "userId", "userSecret"})
+    @Test(dependsOnMethods = "dynamicClientRegistration")
+    public void requestAccessTokenPassword(final String tokenPath, final String userId, final String userSecret)
+            throws Exception {
+        // Testing with valid parameters
+        Builder request = ResteasyClientBuilder.newClient().target(url.toString() + tokenPath).request();
+
+        TokenRequest tokenRequest = new TokenRequest(GrantType.RESOURCE_OWNER_PASSWORD_CREDENTIALS);
+        tokenRequest.setUsername(userId);
+        tokenRequest.setPassword(userSecret);
+        tokenRequest.setScope("email read_stream manage_pages");
+        tokenRequest.setAuthUsername(clientId);
+        tokenRequest.setAuthPassword(clientSecret);
+
+        request.header("Authorization", "Basic " + tokenRequest.getEncodedCredentials());
+        request.header("Content-Type", MediaType.APPLICATION_FORM_URLENCODED);
+
+        Response response = request
+                .post(Entity.form(new MultivaluedHashMap<String, String>(tokenRequest.getParameters())));
+        String entity = response.readEntity(String.class);
+
+        showResponse("requestAccessTokenPassword", response, entity);
+
+        assertEquals(response.getStatus(), 200, "Unexpected response code.");
+        assertTrue(
+                response.getHeaderString("Cache-Control") != null
+                        && response.getHeaderString("Cache-Control").equals("no-store"),
+                "Unexpected result: " + response.getHeaderString("Cache-Control"));
+        assertTrue(response.getHeaderString("Pragma") != null && response.getHeaderString("Pragma").equals("no-cache"),
+                "Unexpected result: " + response.getHeaderString("Pragma"));
+        assertNotNull(entity, "Unexpected result: " + entity);
+        try {
+            JSONObject jsonObj = new JSONObject(entity);
+            assertTrue(jsonObj.has("access_token"), "Unexpected result: access_token not found");
+            assertTrue(jsonObj.has("token_type"), "Unexpected result: token_type not found");
+            assertTrue(jsonObj.has("refresh_token"), "Unexpected result: refresh_token not found");
+            assertTrue(jsonObj.has("scope"), "Unexpected result: scope not found");
+        } catch (JSONException e) {
+            e.printStackTrace();
+            fail(e.getMessage() + "\nResponse was: " + entity);
+        }
+    }
+
+    @Parameters({"tokenPath", "userId", "userSecret", "audience"})
+    @Test
+    public void requestAccessTokenWithClientSecretJwtFail(final String tokenPath, final String userId,
+                                                          final String userSecret, final String audience) throws Exception {
+        Builder request = ResteasyClientBuilder.newClient().target(url.toString() + tokenPath).request();
+        request.header("Content-Type", MediaType.APPLICATION_FORM_URLENCODED);
+
+        TokenRequest tokenRequest = new TokenRequest(GrantType.RESOURCE_OWNER_PASSWORD_CREDENTIALS);
+        tokenRequest.setUsername(userId);
+        tokenRequest.setPassword(userSecret);
+        tokenRequest.setScope("email read_stream manage_pages");
+
+        tokenRequest.setAuthPassword("INVALID_SECRET");
+        tokenRequest.setAuthenticationMethod(AuthenticationMethod.CLIENT_SECRET_JWT);
+        tokenRequest.setAudience(audience);
+
+        Response response = request
+                .post(Entity.form(new MultivaluedHashMap<String, String>(tokenRequest.getParameters())));
+        String entity = response.readEntity(String.class);
+
+        showResponse("requestAccessTokenWithClientSecretJwt Fail", response, entity);
+
+        assertEquals(response.getStatus(), 401, "Unexpected response code.");
+        assertNotNull(entity, "Unexpected result: " + entity);
+        try {
+            JSONObject jsonObj = new JSONObject(entity);
+            assertTrue(jsonObj.has("error"), "The error type is null");
+            assertTrue(jsonObj.has("error_description"), "The error description is null");
+        } catch (JSONException e) {
+            e.printStackTrace();
+            fail(e.getMessage() + "\nResponse was: " + entity);
+        }
+    }
+
+    @Parameters({"tokenPath"})
+    @Test(dependsOnMethods = "dynamicClientRegistration")
+    public void requestAccessTokenClientCredentials(final String tokenPath) throws Exception {
+        // Testing with valid parameters
+        Builder request = ResteasyClientBuilder.newClient().target(url.toString() + tokenPath).request();
+
+        TokenRequest tokenRequest = new TokenRequest(GrantType.CLIENT_CREDENTIALS);
+        tokenRequest.setScope("email read_stream manage_pages");
+        tokenRequest.setAuthUsername(clientId);
+        tokenRequest.setAuthPassword(clientSecret);
+
+        request.header("Authorization", "Basic " + tokenRequest.getEncodedCredentials());
+        request.header("Content-Type", MediaType.APPLICATION_FORM_URLENCODED);
+
+        Response response = request
+                .post(Entity.form(new MultivaluedHashMap<String, String>(tokenRequest.getParameters())));
+        String entity = response.readEntity(String.class);
+
+        showResponse("requestAccessTokenClientCredentials", response, entity);
+
+        assertEquals(response.getStatus(), 200, "Unexpected response code.");
+        assertTrue(
+                response.getHeaderString("Cache-Control") != null
+                        && response.getHeaderString("Cache-Control").equals("no-store"),
+                "Unexpected result: " + response.getHeaderString("Cache-Control"));
+        assertTrue(response.getHeaderString("Pragma") != null && response.getHeaderString("Pragma").equals("no-cache"),
+                "Unexpected result: " + response.getHeaderString("Pragma"));
+        assertNotNull(entity, "Unexpected result: " + entity);
+        try {
+            JSONObject jsonObj = new JSONObject(entity);
+            assertTrue(jsonObj.has("access_token"), "Unexpected result: access_token not found");
+            assertTrue(jsonObj.has("token_type"), "Unexpected result: token_type not found");
+            assertTrue(jsonObj.has("scope"), "Unexpected result: scope not found");
+        } catch (JSONException e) {
+            e.printStackTrace();
+            fail(e.getMessage() + "\nResponse was: " + entity);
+        }
+    }
+
+    @Parameters({"tokenPath"})
+    @Test(dependsOnMethods = "dynamicClientRegistration")
+    public void refreshingAccessTokenFail(final String tokenPath) throws Exception {
+        Builder request = ResteasyClientBuilder.newClient().target(url.toString() + tokenPath).request();
+
+        TokenRequest tokenRequest = new TokenRequest(GrantType.REFRESH_TOKEN);
+        tokenRequest.setRefreshToken("tGzv3JOkF0XG5Qx2TlKWIA");
+        tokenRequest.setScope("email read_stream manage_pages");
+        tokenRequest.setAuthUsername(clientId);
+        tokenRequest.setAuthPassword(clientSecret);
+
+        request.header("Authorization", "Basic " + tokenRequest.getEncodedCredentials());
+        request.header("Content-Type", MediaType.APPLICATION_FORM_URLENCODED);
+
+        Response response = request
+                .post(Entity.form(new MultivaluedHashMap<String, String>(tokenRequest.getParameters())));
+        String entity = response.readEntity(String.class);
+
+        showResponse("refreshingAccessTokenFail", response, entity);
+
+        assertEquals(response.getStatus(), 400, "Unexpected response code.");
+        assertNotNull(entity, "Unexpected result: " + entity);
+        try {
+            JSONObject jsonObj = new JSONObject(entity);
+            assertTrue(jsonObj.has("error"), "The error type is null");
+            assertTrue(jsonObj.has("error_description"), "The error description is null");
+        } catch (JSONException e) {
+            e.printStackTrace();
+            fail(e.getMessage() + "\nResponse was: " + entity);
+        }
+    }
+}
\ No newline at end of file
diff --git a/oxAuth/Server/src/test/java/org/gluu/oxauth/ws/rs/TokenRestWebServiceWithESAlgEmbeddedTest.java b/oxAuth/Server/src/test/java/org/gluu/oxauth/ws/rs/TokenRestWebServiceWithESAlgEmbeddedTest.java
new file mode 100644
index 00000000..9df8eeb5
--- /dev/null
+++ b/oxAuth/Server/src/test/java/org/gluu/oxauth/ws/rs/TokenRestWebServiceWithESAlgEmbeddedTest.java
@@ -0,0 +1,621 @@
+/*
+ * oxAuth is available under the MIT License (2008). See http://opensource.org/licenses/MIT for full text.
+ *
+ * Copyright (c) 2014, Gluu
+ */
+
+package org.gluu.oxauth.ws.rs;
+
+import org.json.JSONException;
+import org.json.JSONObject;
+import org.gluu.oxauth.BaseTest;
+import org.gluu.oxauth.client.RegisterRequest;
+import org.gluu.oxauth.client.TokenRequest;
+import org.gluu.oxauth.model.common.AuthenticationMethod;
+import org.gluu.oxauth.model.common.GrantType;
+import org.gluu.oxauth.model.crypto.OxAuthCryptoProvider;
+import org.gluu.oxauth.model.crypto.signature.SignatureAlgorithm;
+import org.gluu.oxauth.model.register.ApplicationType;
+import org.gluu.oxauth.model.register.RegisterResponseParam;
+import org.gluu.oxauth.model.util.StringUtils;
+import org.gluu.oxauth.util.ServerUtil;
+import org.jboss.arquillian.test.api.ArquillianResource;
+import org.jboss.resteasy.client.jaxrs.ResteasyClientBuilder;
+import org.testng.annotations.Parameters;
+import org.testng.annotations.Test;
+
+import javax.ws.rs.client.Entity;
+import javax.ws.rs.client.Invocation.Builder;
+import javax.ws.rs.core.MediaType;
+import javax.ws.rs.core.MultivaluedHashMap;
+import javax.ws.rs.core.Response;
+import java.net.URI;
+import java.util.Arrays;
+import java.util.List;
+
+import static org.gluu.oxauth.model.register.RegisterResponseParam.*;
+import static org.testng.Assert.*;
+
+/**
+ * Functional tests for Token Web Services (embedded)
+ *
+ * @author Javier Rojas Blum
+ * @version March 9, 2019
+ */
+public class TokenRestWebServiceWithESAlgEmbeddedTest extends BaseTest {
+
+    @ArquillianResource
+    private URI url;
+
+    private static String clientId1;
+    private static String clientSecret1;
+
+    private static String clientId2;
+    private static String clientSecret2;
+
+    private static String clientId3;
+    private static String clientSecret3;
+
+    private static String clientId4;
+    private static String clientSecret4;
+
+    private static String clientId5;
+    private static String clientSecret5;
+
+    private static String clientId6;
+    private static String clientSecret6;
+
+    @Parameters({"registerPath", "redirectUris", "clientJwksUri"})
+    @Test
+    public void requestAccessTokenWithClientSecretJwtES256Step1(final String registerPath, final String redirectUris,
+                                                                final String jwksUri) throws Exception {
+        Builder request = ResteasyClientBuilder.newClient().target(url.toString() + registerPath).request();
+
+        RegisterRequest registerRequest = new RegisterRequest(ApplicationType.WEB, "oxAuth test app",
+                StringUtils.spaceSeparatedToList(redirectUris));
+        registerRequest.setJwksUri(jwksUri);
+        registerRequest.setTokenEndpointAuthMethod(AuthenticationMethod.PRIVATE_KEY_JWT);
+        registerRequest.addCustomAttribute("oxAuthTrustedClient", "true");
+
+        List<GrantType> grantTypes = Arrays.asList(
+                GrantType.RESOURCE_OWNER_PASSWORD_CREDENTIALS
+        );
+        registerRequest.setGrantTypes(grantTypes);
+
+        String registerRequestContent = ServerUtil.toPrettyJson(registerRequest.getJSONParameters());
+        Response response = request.post(Entity.json(registerRequestContent));
+        String entity = response.readEntity(String.class);
+
+        showResponse("requestAccessTokenWithClientSecretJwtES256Step1", response, entity);
+
+        assertEquals(response.getStatus(), 200, "Unexpected response code. " + entity);
+        assertNotNull(entity, "Unexpected result: " + entity);
+        try {
+            JSONObject jsonObj = new JSONObject(entity);
+            assertTrue(jsonObj.has(RegisterResponseParam.CLIENT_ID.toString()));
+            assertTrue(jsonObj.has(CLIENT_SECRET.toString()));
+            assertTrue(jsonObj.has(REGISTRATION_ACCESS_TOKEN.toString()));
+            assertTrue(jsonObj.has(REGISTRATION_CLIENT_URI.toString()));
+            assertTrue(jsonObj.has(CLIENT_ID_ISSUED_AT.toString()));
+            assertTrue(jsonObj.has(CLIENT_SECRET_EXPIRES_AT.toString()));
+
+            clientId1 = jsonObj.getString(RegisterResponseParam.CLIENT_ID.toString());
+            clientSecret1 = jsonObj.getString(CLIENT_SECRET.toString());
+        } catch (JSONException e) {
+            e.printStackTrace();
+            fail(e.getMessage() + "\nResponse was: " + entity);
+        }
+    }
+
+    @Parameters({"tokenPath", "userId", "userSecret", "audience", "ES256_keyId", "keyStoreFile", "keyStoreSecret"})
+    @Test(dependsOnMethods = "requestAccessTokenWithClientSecretJwtES256Step1")
+    public void requestAccessTokenWithClientSecretJwtES256Step2(final String tokenPath, final String userId,
+                                                                final String userSecret, final String audience, final String keyId, final String keyStoreFile,
+                                                                final String keyStoreSecret) throws Exception {
+        Builder request = ResteasyClientBuilder.newClient().target(url.toString() + tokenPath).request();
+
+        request.header("Content-Type", MediaType.APPLICATION_FORM_URLENCODED);
+
+        OxAuthCryptoProvider cryptoProvider = new OxAuthCryptoProvider(keyStoreFile, keyStoreSecret, null);
+
+        TokenRequest tokenRequest = new TokenRequest(GrantType.RESOURCE_OWNER_PASSWORD_CREDENTIALS);
+        tokenRequest.setUsername(userId);
+        tokenRequest.setPassword(userSecret);
+        tokenRequest.setScope("email read_stream manage_pages");
+
+        tokenRequest.setAuthUsername(clientId1);
+        tokenRequest.setAuthPassword(clientSecret1);
+        tokenRequest.setAuthenticationMethod(AuthenticationMethod.CLIENT_SECRET_JWT);
+        tokenRequest.setAlgorithm(SignatureAlgorithm.ES256);
+        tokenRequest.setKeyId(keyId);
+        tokenRequest.setCryptoProvider(cryptoProvider);
+        tokenRequest.setAudience(audience);
+
+        Response response = request
+                .post(Entity.form(new MultivaluedHashMap<String, String>(tokenRequest.getParameters())));
+        String entity = response.readEntity(String.class);
+
+        showResponse("requestAccessTokenWithClientSecretJwtES256Step2", response, entity);
+
+        assertEquals(response.getStatus(), 200, "Unexpected response code.");
+        assertTrue(
+                response.getHeaderString("Cache-Control") != null
+                        && response.getHeaderString("Cache-Control").equals("no-store"),
+                "Unexpected result: " + response.getHeaderString("Cache-Control"));
+        assertTrue(response.getHeaderString("Pragma") != null && response.getHeaderString("Pragma").equals("no-cache"),
+                "Unexpected result: " + response.getHeaderString("Pragma"));
+        assertNotNull(entity, "Unexpected result: " + entity);
+        try {
+            JSONObject jsonObj = new JSONObject(entity);
+            assertTrue(jsonObj.has("access_token"), "Unexpected result: access_token not found");
+            assertTrue(jsonObj.has("token_type"), "Unexpected result: token_type not found");
+            assertTrue(jsonObj.has("scope"), "Unexpected result: scope not found");
+        } catch (JSONException e) {
+            e.printStackTrace();
+            fail(e.getMessage() + "\nResponse was: " + entity);
+        }
+    }
+
+    @Parameters({"registerPath", "redirectUris", "clientJwksUri"})
+    @Test
+    public void requestAccessTokenWithClientSecretJwtES384Step1(final String registerPath, final String redirectUris,
+                                                                final String jwksUri) throws Exception {
+        Builder request = ResteasyClientBuilder.newClient().target(url.toString() + registerPath).request();
+
+        RegisterRequest registerRequest = new RegisterRequest(ApplicationType.WEB, "oxAuth test app",
+                StringUtils.spaceSeparatedToList(redirectUris));
+        registerRequest.setJwksUri(jwksUri);
+        registerRequest.setTokenEndpointAuthMethod(AuthenticationMethod.PRIVATE_KEY_JWT);
+        registerRequest.addCustomAttribute("oxAuthTrustedClient", "true");
+
+        List<GrantType> grantTypes = Arrays.asList(
+                GrantType.RESOURCE_OWNER_PASSWORD_CREDENTIALS
+        );
+        registerRequest.setGrantTypes(grantTypes);
+
+        String registerRequestContent = ServerUtil.toPrettyJson(registerRequest.getJSONParameters());
+
+        Response response = request.post(Entity.json(registerRequestContent));
+        String entity = response.readEntity(String.class);
+
+        showResponse("requestAccessTokenWithClientSecretJwtES384Step1", response, entity);
+
+        assertEquals(response.getStatus(), 200, "Unexpected response code. " + entity);
+        assertNotNull(entity, "Unexpected result: " + entity);
+        try {
+            JSONObject jsonObj = new JSONObject(entity);
+            assertTrue(jsonObj.has(RegisterResponseParam.CLIENT_ID.toString()));
+            assertTrue(jsonObj.has(CLIENT_SECRET.toString()));
+            assertTrue(jsonObj.has(REGISTRATION_ACCESS_TOKEN.toString()));
+            assertTrue(jsonObj.has(REGISTRATION_CLIENT_URI.toString()));
+            assertTrue(jsonObj.has(CLIENT_ID_ISSUED_AT.toString()));
+            assertTrue(jsonObj.has(CLIENT_SECRET_EXPIRES_AT.toString()));
+
+            clientId2 = jsonObj.getString(RegisterResponseParam.CLIENT_ID.toString());
+            clientSecret2 = jsonObj.getString(CLIENT_SECRET.toString());
+        } catch (JSONException e) {
+            e.printStackTrace();
+            fail(e.getMessage() + "\nResponse was: " + entity);
+        }
+    }
+
+    @Parameters({"tokenPath", "userId", "userSecret", "audience", "ES384_keyId", "keyStoreFile", "keyStoreSecret"})
+    @Test(dependsOnMethods = "requestAccessTokenWithClientSecretJwtES384Step1")
+    public void requestAccessTokenWithClientSecretJwtES384Step2(final String tokenPath, final String userId,
+                                                                final String userSecret, final String audience, final String keyId, final String keyStoreFile,
+                                                                final String keyStoreSecret) throws Exception {
+        Builder request = ResteasyClientBuilder.newClient().target(url.toString() + tokenPath).request();
+
+        request.header("Content-Type", MediaType.APPLICATION_FORM_URLENCODED);
+
+        OxAuthCryptoProvider cryptoProvider = new OxAuthCryptoProvider(keyStoreFile, keyStoreSecret, null);
+
+        TokenRequest tokenRequest = new TokenRequest(GrantType.RESOURCE_OWNER_PASSWORD_CREDENTIALS);
+        tokenRequest.setUsername(userId);
+        tokenRequest.setPassword(userSecret);
+        tokenRequest.setScope("email read_stream manage_pages");
+
+        tokenRequest.setAuthUsername(clientId2);
+        tokenRequest.setAuthPassword(clientSecret2);
+        tokenRequest.setAuthenticationMethod(AuthenticationMethod.CLIENT_SECRET_JWT);
+        tokenRequest.setAlgorithm(SignatureAlgorithm.ES384);
+        tokenRequest.setKeyId(keyId);
+        tokenRequest.setCryptoProvider(cryptoProvider);
+        tokenRequest.setAudience(audience);
+
+        Response response = request
+                .post(Entity.form(new MultivaluedHashMap<String, String>(tokenRequest.getParameters())));
+        String entity = response.readEntity(String.class);
+
+        showResponse("requestAccessTokenWithClientSecretJwtES384Step2", response, entity);
+
+        assertEquals(response.getStatus(), 200, "Unexpected response code.");
+        assertTrue(
+                response.getHeaderString("Cache-Control") != null
+                        && response.getHeaderString("Cache-Control").equals("no-store"),
+                "Unexpected result: " + response.getHeaderString("Cache-Control"));
+        assertTrue(response.getHeaderString("Pragma") != null && response.getHeaderString("Pragma").equals("no-cache"),
+                "Unexpected result: " + response.getHeaderString("Pragma"));
+        assertNotNull(entity, "Unexpected result: " + entity);
+        try {
+            JSONObject jsonObj = new JSONObject(entity);
+            assertTrue(jsonObj.has("access_token"), "Unexpected result: access_token not found");
+            assertTrue(jsonObj.has("token_type"), "Unexpected result: token_type not found");
+            assertTrue(jsonObj.has("scope"), "Unexpected result: scope not found");
+        } catch (JSONException e) {
+            e.printStackTrace();
+            fail(e.getMessage() + "\nResponse was: " + entity);
+        }
+    }
+
+    @Parameters({"registerPath", "redirectUris", "clientJwksUri"})
+    @Test
+    public void requestAccessTokenWithClientSecretJwtES512Step1(final String registerPath, final String redirectUris,
+                                                                final String jwksUri) throws Exception {
+
+        Builder request = ResteasyClientBuilder.newClient().target(url.toString() + registerPath).request();
+
+        RegisterRequest registerRequest = new RegisterRequest(ApplicationType.WEB, "oxAuth test app",
+                StringUtils.spaceSeparatedToList(redirectUris));
+        registerRequest.setJwksUri(jwksUri);
+        registerRequest.setTokenEndpointAuthMethod(AuthenticationMethod.PRIVATE_KEY_JWT);
+        registerRequest.addCustomAttribute("oxAuthTrustedClient", "true");
+
+        List<GrantType> grantTypes = Arrays.asList(
+                GrantType.RESOURCE_OWNER_PASSWORD_CREDENTIALS
+        );
+        registerRequest.setGrantTypes(grantTypes);
+
+        String registerRequestContent = ServerUtil.toPrettyJson(registerRequest.getJSONParameters());
+
+        Response response = request.post(Entity.json(registerRequestContent));
+        String entity = response.readEntity(String.class);
+
+        showResponse("requestAccessTokenWithClientSecretJwtES384Step1", response, entity);
+
+        assertEquals(response.getStatus(), 200, "Unexpected response code. " + entity);
+        assertNotNull(entity, "Unexpected result: " + entity);
+        try {
+            JSONObject jsonObj = new JSONObject(entity);
+            assertTrue(jsonObj.has(RegisterResponseParam.CLIENT_ID.toString()));
+            assertTrue(jsonObj.has(CLIENT_SECRET.toString()));
+            assertTrue(jsonObj.has(REGISTRATION_ACCESS_TOKEN.toString()));
+            assertTrue(jsonObj.has(REGISTRATION_CLIENT_URI.toString()));
+            assertTrue(jsonObj.has(CLIENT_ID_ISSUED_AT.toString()));
+            assertTrue(jsonObj.has(CLIENT_SECRET_EXPIRES_AT.toString()));
+
+            clientId3 = jsonObj.getString(RegisterResponseParam.CLIENT_ID.toString());
+            clientSecret3 = jsonObj.getString(CLIENT_SECRET.toString());
+        } catch (JSONException e) {
+            e.printStackTrace();
+            fail(e.getMessage() + "\nResponse was: " + entity);
+        }
+    }
+
+    @Parameters({"tokenPath", "userId", "userSecret", "audience", "ES512_keyId", "keyStoreFile", "keyStoreSecret"})
+    @Test(dependsOnMethods = "requestAccessTokenWithClientSecretJwtES512Step1")
+    public void requestAccessTokenWithClientSecretJwtES512Step2(final String tokenPath, final String userId,
+                                                                final String userSecret, final String audience, final String keyId, final String keyStoreFile,
+                                                                final String keyStoreSecret) throws Exception {
+        Builder request = ResteasyClientBuilder.newClient().target(url.toString() + tokenPath).request();
+
+        request.header("Content-Type", MediaType.APPLICATION_FORM_URLENCODED);
+
+        OxAuthCryptoProvider cryptoProvider = new OxAuthCryptoProvider(keyStoreFile, keyStoreSecret, null);
+
+        TokenRequest tokenRequest = new TokenRequest(GrantType.RESOURCE_OWNER_PASSWORD_CREDENTIALS);
+        tokenRequest.setUsername(userId);
+        tokenRequest.setPassword(userSecret);
+        tokenRequest.setScope("email read_stream manage_pages");
+
+        tokenRequest.setAuthUsername(clientId3);
+        tokenRequest.setAuthPassword(clientSecret3);
+        tokenRequest.setAuthenticationMethod(AuthenticationMethod.CLIENT_SECRET_JWT);
+        tokenRequest.setAlgorithm(SignatureAlgorithm.ES512);
+        tokenRequest.setKeyId(keyId);
+        tokenRequest.setCryptoProvider(cryptoProvider);
+        tokenRequest.setAudience(audience);
+
+        Response response = request
+                .post(Entity.form(new MultivaluedHashMap<String, String>(tokenRequest.getParameters())));
+        String entity = response.readEntity(String.class);
+
+        showResponse("requestAccessTokenWithClientSecretJwtES512Step2", response, entity);
+
+        assertEquals(response.getStatus(), 200, "Unexpected response code.");
+        assertTrue(
+                response.getHeaderString("Cache-Control") != null
+                        && response.getHeaderString("Cache-Control").equals("no-store"),
+                "Unexpected result: " + response.getHeaderString("Cache-Control"));
+        assertTrue(response.getHeaderString("Pragma") != null && response.getHeaderString("Pragma").equals("no-cache"),
+                "Unexpected result: " + response.getHeaderString("Pragma"));
+        assertNotNull(entity, "Unexpected result: " + entity);
+        try {
+            JSONObject jsonObj = new JSONObject(entity);
+            assertTrue(jsonObj.has("access_token"), "Unexpected result: access_token not found");
+            assertTrue(jsonObj.has("token_type"), "Unexpected result: token_type not found");
+            assertTrue(jsonObj.has("scope"), "Unexpected result: scope not found");
+        } catch (JSONException e) {
+            e.printStackTrace();
+            fail(e.getMessage() + "\nResponse was: " + entity);
+        }
+    }
+
+    @Parameters({"registerPath", "redirectUris", "clientJwksUri"})
+    @Test
+    public void requestAccessTokenWithClientSecretJwtES256X509CertStep1(final String registerPath,
+                                                                        final String redirectUris, final String jwksUri) throws Exception {
+
+        Builder request = ResteasyClientBuilder.newClient().target(url.toString() + registerPath).request();
+
+        RegisterRequest registerRequest = new RegisterRequest(ApplicationType.WEB, "oxAuth test app",
+                StringUtils.spaceSeparatedToList(redirectUris));
+        registerRequest.setJwksUri(jwksUri);
+        registerRequest.setTokenEndpointAuthMethod(AuthenticationMethod.PRIVATE_KEY_JWT);
+        registerRequest.addCustomAttribute("oxAuthTrustedClient", "true");
+
+        List<GrantType> grantTypes = Arrays.asList(
+                GrantType.RESOURCE_OWNER_PASSWORD_CREDENTIALS
+        );
+        registerRequest.setGrantTypes(grantTypes);
+
+        String registerRequestContent = ServerUtil.toPrettyJson(registerRequest.getJSONParameters());
+
+        Response response = request.post(Entity.json(registerRequestContent));
+
+        String entity = response.readEntity(String.class);
+
+        showResponse("requestAccessTokenWithClientSecretJwtES256X509CertStep1", response, entity);
+
+        assertEquals(response.getStatus(), 200, "Unexpected response code. " + entity);
+        assertNotNull(entity, "Unexpected result: " + entity);
+        try {
+            JSONObject jsonObj = new JSONObject(entity);
+            assertTrue(jsonObj.has(RegisterResponseParam.CLIENT_ID.toString()));
+            assertTrue(jsonObj.has(CLIENT_SECRET.toString()));
+            assertTrue(jsonObj.has(REGISTRATION_ACCESS_TOKEN.toString()));
+            assertTrue(jsonObj.has(REGISTRATION_CLIENT_URI.toString()));
+            assertTrue(jsonObj.has(CLIENT_ID_ISSUED_AT.toString()));
+            assertTrue(jsonObj.has(CLIENT_SECRET_EXPIRES_AT.toString()));
+
+            clientId4 = jsonObj.getString(RegisterResponseParam.CLIENT_ID.toString());
+            clientSecret4 = jsonObj.getString(CLIENT_SECRET.toString());
+        } catch (JSONException e) {
+            e.printStackTrace();
+            fail(e.getMessage() + "\nResponse was: " + entity);
+        }
+    }
+
+    @Parameters({"tokenPath", "userId", "userSecret", "audience", "ES256_keyId", "keyStoreFile", "keyStoreSecret"})
+    @Test(dependsOnMethods = "requestAccessTokenWithClientSecretJwtES256X509CertStep1")
+    public void requestAccessTokenWithClientSecretJwtES256X509CertStep2(final String tokenPath, final String userId,
+                                                                        final String userSecret, final String audience, final String keyId, final String keyStoreFile,
+                                                                        final String keyStoreSecret) throws Exception {
+        Builder request = ResteasyClientBuilder.newClient().target(url.toString() + tokenPath).request();
+
+        request.header("Content-Type", MediaType.APPLICATION_FORM_URLENCODED);
+
+        OxAuthCryptoProvider cryptoProvider = new OxAuthCryptoProvider(keyStoreFile, keyStoreSecret, null);
+
+        TokenRequest tokenRequest = new TokenRequest(GrantType.RESOURCE_OWNER_PASSWORD_CREDENTIALS);
+        tokenRequest.setUsername(userId);
+        tokenRequest.setPassword(userSecret);
+        tokenRequest.setScope("email read_stream manage_pages");
+
+        tokenRequest.setAuthUsername(clientId4);
+        tokenRequest.setAuthPassword(clientSecret4);
+        tokenRequest.setAuthenticationMethod(AuthenticationMethod.CLIENT_SECRET_JWT);
+        tokenRequest.setAlgorithm(SignatureAlgorithm.ES256);
+        tokenRequest.setKeyId(keyId);
+        tokenRequest.setCryptoProvider(cryptoProvider);
+        tokenRequest.setAudience(audience);
+
+        Response response = request
+                .post(Entity.form(new MultivaluedHashMap<String, String>(tokenRequest.getParameters())));
+        String entity = response.readEntity(String.class);
+
+        showResponse("requestAccessTokenWithClientSecretJwtES256X509CertStep2", response, entity);
+
+        assertEquals(response.getStatus(), 200, "Unexpected response code.");
+        assertTrue(
+                response.getHeaderString("Cache-Control") != null
+                        && response.getHeaderString("Cache-Control").equals("no-store"),
+                "Unexpected result: " + response.getHeaderString("Cache-Control"));
+        assertTrue(response.getHeaderString("Pragma") != null && response.getHeaderString("Pragma").equals("no-cache"),
+                "Unexpected result: " + response.getHeaderString("Pragma"));
+        assertNotNull(entity, "Unexpected result: " + entity);
+        try {
+            JSONObject jsonObj = new JSONObject(entity);
+            assertTrue(jsonObj.has("access_token"), "Unexpected result: access_token not found");
+            assertTrue(jsonObj.has("token_type"), "Unexpected result: token_type not found");
+            assertTrue(jsonObj.has("scope"), "Unexpected result: scope not found");
+        } catch (JSONException e) {
+            e.printStackTrace();
+            fail(e.getMessage() + "\nResponse was: " + entity);
+        }
+    }
+
+    @Parameters({"registerPath", "redirectUris", "clientJwksUri"})
+    @Test
+    public void requestAccessTokenWithClientSecretJwtES384X509CertStep1(final String registerPath,
+                                                                        final String redirectUris, final String jwksUri) throws Exception {
+        Builder request = ResteasyClientBuilder.newClient().target(url.toString() + registerPath).request();
+
+        RegisterRequest registerRequest = new RegisterRequest(ApplicationType.WEB, "oxAuth test app",
+                StringUtils.spaceSeparatedToList(redirectUris));
+        registerRequest.setJwksUri(jwksUri);
+        registerRequest.setTokenEndpointAuthMethod(AuthenticationMethod.PRIVATE_KEY_JWT);
+        registerRequest.addCustomAttribute("oxAuthTrustedClient", "true");
+
+        List<GrantType> grantTypes = Arrays.asList(
+                GrantType.RESOURCE_OWNER_PASSWORD_CREDENTIALS
+        );
+        registerRequest.setGrantTypes(grantTypes);
+
+        String registerRequestContent = ServerUtil.toPrettyJson(registerRequest.getJSONParameters());
+
+        Response response = request.post(Entity.json(registerRequestContent));
+        String entity = response.readEntity(String.class);
+
+        showResponse("requestAccessTokenWithClientSecretJwtES384X509CertStep1", response, entity);
+
+        assertEquals(response.getStatus(), 200, "Unexpected response code. " + entity);
+        assertNotNull(entity, "Unexpected result: " + entity);
+        try {
+            JSONObject jsonObj = new JSONObject(entity);
+            assertTrue(jsonObj.has(RegisterResponseParam.CLIENT_ID.toString()));
+            assertTrue(jsonObj.has(CLIENT_SECRET.toString()));
+            assertTrue(jsonObj.has(REGISTRATION_ACCESS_TOKEN.toString()));
+            assertTrue(jsonObj.has(REGISTRATION_CLIENT_URI.toString()));
+            assertTrue(jsonObj.has(CLIENT_ID_ISSUED_AT.toString()));
+            assertTrue(jsonObj.has(CLIENT_SECRET_EXPIRES_AT.toString()));
+
+            clientId5 = jsonObj.getString(RegisterResponseParam.CLIENT_ID.toString());
+            clientSecret5 = jsonObj.getString(CLIENT_SECRET.toString());
+        } catch (JSONException e) {
+            e.printStackTrace();
+            fail(e.getMessage() + "\nResponse was: " + entity);
+        }
+    }
+
+    @Parameters({"tokenPath", "userId", "userSecret", "audience", "ES384_keyId", "keyStoreFile", "keyStoreSecret"})
+    @Test(dependsOnMethods = "requestAccessTokenWithClientSecretJwtES384X509CertStep1")
+    public void requestAccessTokenWithClientSecretJwtES384X509CertStep2(final String tokenPath, final String userId,
+                                                                        final String userSecret, final String audience, final String keyId, final String keyStoreFile,
+                                                                        final String keyStoreSecret) throws Exception {
+        Builder request = ResteasyClientBuilder.newClient().target(url.toString() + tokenPath).request();
+
+        OxAuthCryptoProvider cryptoProvider = new OxAuthCryptoProvider(keyStoreFile, keyStoreSecret, null);
+
+        TokenRequest tokenRequest = new TokenRequest(GrantType.RESOURCE_OWNER_PASSWORD_CREDENTIALS);
+        tokenRequest.setUsername(userId);
+        tokenRequest.setPassword(userSecret);
+        tokenRequest.setScope("email read_stream manage_pages");
+
+        tokenRequest.setAuthUsername(clientId5);
+        tokenRequest.setAuthPassword(clientSecret5);
+        tokenRequest.setAuthenticationMethod(AuthenticationMethod.CLIENT_SECRET_JWT);
+        tokenRequest.setAlgorithm(SignatureAlgorithm.ES384);
+        tokenRequest.setKeyId(keyId);
+        tokenRequest.setCryptoProvider(cryptoProvider);
+        tokenRequest.setAudience(audience);
+
+        Response response = request
+                .post(Entity.form(new MultivaluedHashMap<String, String>(tokenRequest.getParameters())));
+
+        String entity = response.readEntity(String.class);
+
+        showResponse("requestAccessTokenWithClientSecretJwtES384X509CertStep2", response, entity);
+
+        assertEquals(response.getStatus(), 200, "Unexpected response code.");
+        assertTrue(
+                response.getHeaderString("Cache-Control") != null
+                        && response.getHeaderString("Cache-Control").equals("no-store"),
+                "Unexpected result: " + response.getHeaderString("Cache-Control"));
+        assertTrue(response.getHeaderString("Pragma") != null && response.getHeaderString("Pragma").equals("no-cache"),
+                "Unexpected result: " + response.getHeaderString("Pragma"));
+        assertNotNull(entity, "Unexpected result: " + entity);
+        try {
+            JSONObject jsonObj = new JSONObject(entity);
+            assertTrue(jsonObj.has("access_token"), "Unexpected result: access_token not found");
+            assertTrue(jsonObj.has("token_type"), "Unexpected result: token_type not found");
+            assertTrue(jsonObj.has("scope"), "Unexpected result: scope not found");
+        } catch (JSONException e) {
+            e.printStackTrace();
+            fail(e.getMessage() + "\nResponse was: " + entity);
+        }
+    }
+
+    @Parameters({"registerPath", "redirectUris", "clientJwksUri"})
+    @Test
+    public void requestAccessTokenWithClientSecretJwtES512X509CertStep1(final String registerPath,
+                                                                        final String redirectUris, final String jwksUri) throws Exception {
+        Builder request = ResteasyClientBuilder.newClient().target(url.toString() + registerPath).request();
+
+        RegisterRequest registerRequest = new RegisterRequest(ApplicationType.WEB, "oxAuth test app",
+                StringUtils.spaceSeparatedToList(redirectUris));
+        registerRequest.setJwksUri(jwksUri);
+        registerRequest.setTokenEndpointAuthMethod(AuthenticationMethod.PRIVATE_KEY_JWT);
+        registerRequest.addCustomAttribute("oxAuthTrustedClient", "true");
+
+        List<GrantType> grantTypes = Arrays.asList(
+                GrantType.RESOURCE_OWNER_PASSWORD_CREDENTIALS
+        );
+        registerRequest.setGrantTypes(grantTypes);
+
+        String registerRequestContent = ServerUtil.toPrettyJson(registerRequest.getJSONParameters());
+
+        Response response = request.post(Entity.json(registerRequestContent));
+        String entity = response.readEntity(String.class);
+
+        showResponse("requestAccessTokenWithClientSecretJwtES512X509CertStep1", response, entity);
+
+        assertEquals(response.getStatus(), 200, "Unexpected response code. " + entity);
+        assertNotNull(entity, "Unexpected result: " + entity);
+        try {
+            JSONObject jsonObj = new JSONObject(entity);
+            assertTrue(jsonObj.has(RegisterResponseParam.CLIENT_ID.toString()));
+            assertTrue(jsonObj.has(CLIENT_SECRET.toString()));
+            assertTrue(jsonObj.has(REGISTRATION_ACCESS_TOKEN.toString()));
+            assertTrue(jsonObj.has(REGISTRATION_CLIENT_URI.toString()));
+            assertTrue(jsonObj.has(CLIENT_ID_ISSUED_AT.toString()));
+            assertTrue(jsonObj.has(CLIENT_SECRET_EXPIRES_AT.toString()));
+
+            clientId6 = jsonObj.getString(RegisterResponseParam.CLIENT_ID.toString());
+            clientSecret6 = jsonObj.getString(CLIENT_SECRET.toString());
+        } catch (JSONException e) {
+            e.printStackTrace();
+            fail(e.getMessage() + "\nResponse was: " + entity);
+        }
+    }
+
+    @Parameters({"tokenPath", "userId", "userSecret", "audience", "ES512_keyId", "keyStoreFile", "keyStoreSecret"})
+    @Test(dependsOnMethods = "requestAccessTokenWithClientSecretJwtES512X509CertStep1")
+    public void requestAccessTokenWithClientSecretJwtES512X509CertStep2(final String tokenPath, final String userId,
+                                                                        final String userSecret, final String audience, final String keyId, final String keyStoreFile,
+                                                                        final String keyStoreSecret) throws Exception {
+        Builder request = ResteasyClientBuilder.newClient().target(url.toString() + tokenPath).request();
+
+        request.header("Content-Type", MediaType.APPLICATION_FORM_URLENCODED);
+
+        OxAuthCryptoProvider cryptoProvider = new OxAuthCryptoProvider(keyStoreFile, keyStoreSecret, null);
+
+        TokenRequest tokenRequest = new TokenRequest(GrantType.RESOURCE_OWNER_PASSWORD_CREDENTIALS);
+        tokenRequest.setUsername(userId);
+        tokenRequest.setPassword(userSecret);
+        tokenRequest.setScope("email read_stream manage_pages");
+
+        tokenRequest.setAuthUsername(clientId6);
+        tokenRequest.setAuthPassword(clientSecret6);
+        tokenRequest.setAuthenticationMethod(AuthenticationMethod.CLIENT_SECRET_JWT);
+        tokenRequest.setAlgorithm(SignatureAlgorithm.ES512);
+        tokenRequest.setKeyId(keyId);
+        tokenRequest.setCryptoProvider(cryptoProvider);
+        tokenRequest.setAudience(audience);
+
+        Response response = request
+                .post(Entity.form(new MultivaluedHashMap<String, String>(tokenRequest.getParameters())));
+        String entity = response.readEntity(String.class);
+
+        showResponse("requestAccessTokenWithClientSecretJwtES512X509CertStep2", response, entity);
+
+        assertEquals(response.getStatus(), 200, "Unexpected response code.");
+        assertTrue(
+                response.getHeaderString("Cache-Control") != null
+                        && response.getHeaderString("Cache-Control").equals("no-store"),
+                "Unexpected result: " + response.getHeaderString("Cache-Control"));
+        assertTrue(response.getHeaderString("Pragma") != null && response.getHeaderString("Pragma").equals("no-cache"),
+                "Unexpected result: " + response.getHeaderString("Pragma"));
+        assertNotNull(entity, "Unexpected result: " + entity);
+        try {
+            JSONObject jsonObj = new JSONObject(entity);
+            assertTrue(jsonObj.has("access_token"), "Unexpected result: access_token not found");
+            assertTrue(jsonObj.has("token_type"), "Unexpected result: token_type not found");
+            assertTrue(jsonObj.has("scope"), "Unexpected result: scope not found");
+        } catch (JSONException e) {
+            e.printStackTrace();
+            fail(e.getMessage() + "\nResponse was: " + entity);
+        }
+    }
+
+}
diff --git a/oxAuth/Server/src/test/java/org/gluu/oxauth/ws/rs/TokenRestWebServiceWithHSAlgEmbeddedTest.java b/oxAuth/Server/src/test/java/org/gluu/oxauth/ws/rs/TokenRestWebServiceWithHSAlgEmbeddedTest.java
new file mode 100644
index 00000000..6c6e8e48
--- /dev/null
+++ b/oxAuth/Server/src/test/java/org/gluu/oxauth/ws/rs/TokenRestWebServiceWithHSAlgEmbeddedTest.java
@@ -0,0 +1,325 @@
+/*
+ * oxAuth is available under the MIT License (2008). See http://opensource.org/licenses/MIT for full text.
+ *
+ * Copyright (c) 2014, Gluu
+ */
+
+package org.gluu.oxauth.ws.rs;
+
+import org.json.JSONException;
+import org.json.JSONObject;
+import org.gluu.oxauth.BaseTest;
+import org.gluu.oxauth.client.RegisterRequest;
+import org.gluu.oxauth.client.TokenRequest;
+import org.gluu.oxauth.model.common.AuthenticationMethod;
+import org.gluu.oxauth.model.common.GrantType;
+import org.gluu.oxauth.model.crypto.OxAuthCryptoProvider;
+import org.gluu.oxauth.model.crypto.signature.SignatureAlgorithm;
+import org.gluu.oxauth.model.register.ApplicationType;
+import org.gluu.oxauth.model.register.RegisterResponseParam;
+import org.gluu.oxauth.model.util.StringUtils;
+import org.gluu.oxauth.util.ServerUtil;
+import org.jboss.arquillian.test.api.ArquillianResource;
+import org.jboss.resteasy.client.jaxrs.ResteasyClientBuilder;
+import org.testng.annotations.Parameters;
+import org.testng.annotations.Test;
+
+import javax.ws.rs.client.Entity;
+import javax.ws.rs.client.Invocation.Builder;
+import javax.ws.rs.core.MediaType;
+import javax.ws.rs.core.MultivaluedHashMap;
+import javax.ws.rs.core.Response;
+import java.net.URI;
+import java.util.Arrays;
+import java.util.List;
+
+import static org.gluu.oxauth.model.register.RegisterResponseParam.*;
+import static org.testng.Assert.*;
+
+/**
+ * Functional tests for Token Web Services (embedded)
+ *
+ * @author Javier Rojas Blum
+ * @version March 9, 2019
+ */
+public class TokenRestWebServiceWithHSAlgEmbeddedTest extends BaseTest {
+
+    @ArquillianResource
+    private URI url;
+
+    private static String clientId1;
+    private static String clientSecret1;
+
+    private static String clientId2;
+    private static String clientSecret2;
+
+    private static String clientId3;
+    private static String clientSecret3;
+
+    @Parameters({"registerPath", "redirectUris", "clientJwksUri"})
+    @Test
+    public void requestAccessTokenWithClientSecretJwtHS256Step1(final String registerPath, final String redirectUris,
+                                                                final String jwksUri) throws Exception {
+        Builder request = ResteasyClientBuilder.newClient().target(url.toString() + registerPath).request();
+
+        RegisterRequest registerRequest = new RegisterRequest(ApplicationType.WEB, "oxAuth test app",
+                StringUtils.spaceSeparatedToList(redirectUris));
+        registerRequest.setJwksUri(jwksUri);
+        registerRequest.setTokenEndpointAuthMethod(AuthenticationMethod.CLIENT_SECRET_JWT);
+        registerRequest.addCustomAttribute("oxAuthTrustedClient", "true");
+
+        List<GrantType> grantTypes = Arrays.asList(
+                GrantType.RESOURCE_OWNER_PASSWORD_CREDENTIALS
+        );
+        registerRequest.setGrantTypes(grantTypes);
+
+        String registerRequestContent = ServerUtil.toPrettyJson(registerRequest.getJSONParameters());
+
+        Response response = request.post(Entity.json(registerRequestContent));
+        String entity = response.readEntity(String.class);
+
+        showResponse("requestAccessTokenWithClientSecretJwtHS256Step1", response, entity);
+
+        assertEquals(response.getStatus(), 200, "Unexpected response code. " + entity);
+        assertNotNull(entity, "Unexpected result: " + entity);
+        try {
+            JSONObject jsonObj = new JSONObject(entity);
+            assertTrue(jsonObj.has(RegisterResponseParam.CLIENT_ID.toString()));
+            assertTrue(jsonObj.has(CLIENT_SECRET.toString()));
+            assertTrue(jsonObj.has(REGISTRATION_ACCESS_TOKEN.toString()));
+            assertTrue(jsonObj.has(REGISTRATION_CLIENT_URI.toString()));
+            assertTrue(jsonObj.has(CLIENT_ID_ISSUED_AT.toString()));
+            assertTrue(jsonObj.has(CLIENT_SECRET_EXPIRES_AT.toString()));
+
+            clientId1 = jsonObj.getString(RegisterResponseParam.CLIENT_ID.toString());
+            clientSecret1 = jsonObj.getString(CLIENT_SECRET.toString());
+        } catch (JSONException e) {
+            e.printStackTrace();
+            fail(e.getMessage() + "\nResponse was: " + entity);
+        }
+    }
+
+    @Parameters({"tokenPath", "userId", "userSecret", "audience"})
+    @Test(dependsOnMethods = "requestAccessTokenWithClientSecretJwtHS256Step1")
+    public void requestAccessTokenWithClientSecretJwtHS256Step2(final String tokenPath, final String userId,
+                                                                final String userSecret, final String audience) throws Exception {
+        Builder request = ResteasyClientBuilder.newClient().target(url.toString() + tokenPath).request();
+
+        request.header("Content-Type", MediaType.APPLICATION_FORM_URLENCODED);
+
+        OxAuthCryptoProvider cryptoProvider = new OxAuthCryptoProvider();
+
+        TokenRequest tokenRequest = new TokenRequest(GrantType.RESOURCE_OWNER_PASSWORD_CREDENTIALS);
+        tokenRequest.setUsername(userId);
+        tokenRequest.setPassword(userSecret);
+        tokenRequest.setScope("email read_stream manage_pages");
+
+        tokenRequest.setAuthUsername(clientId1);
+        tokenRequest.setAuthPassword(clientSecret1);
+        tokenRequest.setAuthenticationMethod(AuthenticationMethod.CLIENT_SECRET_JWT);
+        tokenRequest.setCryptoProvider(cryptoProvider);
+        tokenRequest.setAudience(audience);
+
+        Response response = request
+                .post(Entity.form(new MultivaluedHashMap<String, String>(tokenRequest.getParameters())));
+        String entity = response.readEntity(String.class);
+
+        showResponse("requestAccessTokenWithClientSecretJwtHS256Step2", response, entity);
+
+        assertEquals(response.getStatus(), 200, "Unexpected response code.");
+        assertTrue(
+                response.getHeaderString("Cache-Control") != null
+                        && response.getHeaderString("Cache-Control").equals("no-store"),
+                "Unexpected result: " + response.getHeaderString("Cache-Control"));
+        assertTrue(response.getHeaderString("Pragma") != null && response.getHeaderString("Pragma").equals("no-cache"),
+                "Unexpected result: " + response.getHeaderString("Pragma"));
+        assertNotNull(entity, "Unexpected result: " + entity);
+        try {
+            JSONObject jsonObj = new JSONObject(entity);
+            assertTrue(jsonObj.has("access_token"), "Unexpected result: access_token not found");
+            assertTrue(jsonObj.has("token_type"), "Unexpected result: token_type not found");
+            assertTrue(jsonObj.has("scope"), "Unexpected result: scope not found");
+        } catch (Exception e) {
+            fail(e.getMessage(), e);
+        }
+    }
+
+    @Parameters({"registerPath", "redirectUris", "clientJwksUri"})
+    @Test
+    public void requestAccessTokenWithClientSecretJwtHS384Step1(final String registerPath, final String redirectUris,
+                                                                final String jwksUri) throws Exception {
+        Builder request = ResteasyClientBuilder.newClient().target(url.toString() + registerPath).request();
+
+        RegisterRequest registerRequest = new RegisterRequest(ApplicationType.WEB, "oxAuth test app",
+                StringUtils.spaceSeparatedToList(redirectUris));
+        registerRequest.setJwksUri(jwksUri);
+        registerRequest.setTokenEndpointAuthMethod(AuthenticationMethod.CLIENT_SECRET_JWT);
+        registerRequest.addCustomAttribute("oxAuthTrustedClient", "true");
+
+        List<GrantType> grantTypes = Arrays.asList(
+                GrantType.RESOURCE_OWNER_PASSWORD_CREDENTIALS
+        );
+        registerRequest.setGrantTypes(grantTypes);
+
+        String registerRequestContent = ServerUtil.toPrettyJson(registerRequest.getJSONParameters());
+        Response response = request.post(Entity.json(registerRequestContent));
+        String entity = response.readEntity(String.class);
+
+        showResponse("requestAccessTokenWithClientSecretJwtHS384Step1", response, entity);
+
+        assertEquals(response.getStatus(), 200, "Unexpected response code. " + entity);
+        assertNotNull(entity, "Unexpected result: " + entity);
+        try {
+            JSONObject jsonObj = new JSONObject(entity);
+            assertTrue(jsonObj.has(RegisterResponseParam.CLIENT_ID.toString()));
+            assertTrue(jsonObj.has(CLIENT_SECRET.toString()));
+            assertTrue(jsonObj.has(REGISTRATION_ACCESS_TOKEN.toString()));
+            assertTrue(jsonObj.has(REGISTRATION_CLIENT_URI.toString()));
+            assertTrue(jsonObj.has(CLIENT_ID_ISSUED_AT.toString()));
+            assertTrue(jsonObj.has(CLIENT_SECRET_EXPIRES_AT.toString()));
+
+            clientId2 = jsonObj.getString(RegisterResponseParam.CLIENT_ID.toString());
+            clientSecret2 = jsonObj.getString(CLIENT_SECRET.toString());
+        } catch (JSONException e) {
+            e.printStackTrace();
+            fail(e.getMessage() + "\nResponse was: " + entity);
+        }
+    }
+
+    @Parameters({"tokenPath", "userId", "userSecret", "audience"})
+    @Test(dependsOnMethods = "requestAccessTokenWithClientSecretJwtHS384Step1")
+    public void requestAccessTokenWithClientSecretJwtHS384Step2(final String tokenPath, final String userId,
+                                                                final String userSecret, final String audience) throws Exception {
+        Builder request = ResteasyClientBuilder.newClient().target(url.toString() + tokenPath).request();
+
+        request.header("Content-Type", MediaType.APPLICATION_FORM_URLENCODED);
+
+        OxAuthCryptoProvider cryptoProvider = new OxAuthCryptoProvider();
+
+        TokenRequest tokenRequest = new TokenRequest(GrantType.RESOURCE_OWNER_PASSWORD_CREDENTIALS);
+        tokenRequest.setUsername(userId);
+        tokenRequest.setPassword(userSecret);
+        tokenRequest.setScope("email read_stream manage_pages");
+
+        tokenRequest.setAuthUsername(clientId2);
+        tokenRequest.setAuthPassword(clientSecret2);
+        tokenRequest.setAuthenticationMethod(AuthenticationMethod.CLIENT_SECRET_JWT);
+        tokenRequest.setCryptoProvider(cryptoProvider);
+        tokenRequest.setAlgorithm(SignatureAlgorithm.HS384);
+        tokenRequest.setAudience(audience);
+
+        Response response = request
+                .post(Entity.form(new MultivaluedHashMap<String, String>(tokenRequest.getParameters())));
+        String entity = response.readEntity(String.class);
+
+        showResponse("requestAccessTokenWithClientSecretJwtHS384Step2", response, entity);
+
+        assertEquals(response.getStatus(), 200, "Unexpected response code.");
+        assertTrue(
+                response.getHeaderString("Cache-Control") != null
+                        && response.getHeaderString("Cache-Control").equals("no-store"),
+                "Unexpected result: " + response.getHeaderString("Cache-Control"));
+        assertTrue(response.getHeaderString("Pragma") != null && response.getHeaderString("Pragma").equals("no-cache"),
+                "Unexpected result: " + response.getHeaderString("Pragma"));
+        assertNotNull(entity, "Unexpected result: " + entity);
+        try {
+            JSONObject jsonObj = new JSONObject(entity);
+            assertTrue(jsonObj.has("access_token"), "Unexpected result: access_token not found");
+            assertTrue(jsonObj.has("token_type"), "Unexpected result: token_type not found");
+            assertTrue(jsonObj.has("scope"), "Unexpected result: scope not found");
+        } catch (Exception e) {
+            fail(e.getMessage(), e);
+        }
+    }
+
+    @Parameters({"registerPath", "redirectUris", "clientJwksUri"})
+    @Test
+    public void requestAccessTokenWithClientSecretJwtHS512Step1(final String registerPath, final String redirectUris,
+                                                                final String jwksUri) throws Exception {
+        Builder request = ResteasyClientBuilder.newClient().target(url.toString() + registerPath).request();
+
+        RegisterRequest registerRequest = new RegisterRequest(ApplicationType.WEB, "oxAuth test app",
+                StringUtils.spaceSeparatedToList(redirectUris));
+        registerRequest.setJwksUri(jwksUri);
+        registerRequest.setTokenEndpointAuthMethod(AuthenticationMethod.CLIENT_SECRET_JWT);
+        registerRequest.addCustomAttribute("oxAuthTrustedClient", "true");
+
+        List<GrantType> grantTypes = Arrays.asList(
+                GrantType.RESOURCE_OWNER_PASSWORD_CREDENTIALS
+        );
+        registerRequest.setGrantTypes(grantTypes);
+
+        String registerRequestContent = ServerUtil.toPrettyJson(registerRequest.getJSONParameters());
+
+        Response response = request.post(Entity.json(registerRequestContent));
+        String entity = response.readEntity(String.class);
+
+        showResponse("requestAccessTokenWithClientSecretJwtHS512Step1", response, entity);
+
+        assertEquals(response.getStatus(), 200, "Unexpected response code. " + entity);
+        assertNotNull(entity, "Unexpected result: " + entity);
+        try {
+            JSONObject jsonObj = new JSONObject(entity);
+            assertTrue(jsonObj.has(RegisterResponseParam.CLIENT_ID.toString()));
+            assertTrue(jsonObj.has(CLIENT_SECRET.toString()));
+            assertTrue(jsonObj.has(REGISTRATION_ACCESS_TOKEN.toString()));
+            assertTrue(jsonObj.has(REGISTRATION_CLIENT_URI.toString()));
+            assertTrue(jsonObj.has(CLIENT_ID_ISSUED_AT.toString()));
+            assertTrue(jsonObj.has(CLIENT_SECRET_EXPIRES_AT.toString()));
+
+            clientId3 = jsonObj.getString(RegisterResponseParam.CLIENT_ID.toString());
+            clientSecret3 = jsonObj.getString(CLIENT_SECRET.toString());
+        } catch (JSONException e) {
+            e.printStackTrace();
+            fail(e.getMessage() + "\nResponse was: " + entity);
+        }
+    }
+
+    @Parameters({"tokenPath", "userId", "userSecret", "audience"})
+    @Test(dependsOnMethods = "requestAccessTokenWithClientSecretJwtHS512Step1")
+    public void requestAccessTokenWithClientSecretJwtHS512Step2(final String tokenPath, final String userId,
+                                                                final String userSecret, final String audience) throws Exception {
+        Builder request = ResteasyClientBuilder.newClient().target(url.toString() + tokenPath).request();
+
+        request.header("Content-Type", MediaType.APPLICATION_FORM_URLENCODED);
+
+        OxAuthCryptoProvider cryptoProvider = new OxAuthCryptoProvider();
+
+        TokenRequest tokenRequest = new TokenRequest(GrantType.RESOURCE_OWNER_PASSWORD_CREDENTIALS);
+        tokenRequest.setUsername(userId);
+        tokenRequest.setPassword(userSecret);
+        tokenRequest.setScope("email read_stream manage_pages");
+
+        tokenRequest.setAuthUsername(clientId3);
+        tokenRequest.setAuthPassword(clientSecret3);
+        tokenRequest.setAuthenticationMethod(AuthenticationMethod.CLIENT_SECRET_JWT);
+        tokenRequest.setCryptoProvider(cryptoProvider);
+        tokenRequest.setAlgorithm(SignatureAlgorithm.HS512);
+        tokenRequest.setAudience(audience);
+
+        Response response = request
+                .post(Entity.form(new MultivaluedHashMap<String, String>(tokenRequest.getParameters())));
+
+        String entity = response.readEntity(String.class);
+
+        showResponse("requestAccessTokenWithClientSecretJwtHS512Step2", response, entity);
+
+        assertEquals(response.getStatus(), 200, "Unexpected response code.");
+        assertTrue(
+                response.getHeaderString("Cache-Control") != null
+                        && response.getHeaderString("Cache-Control").equals("no-store"),
+                "Unexpected result: " + response.getHeaderString("Cache-Control"));
+        assertTrue(response.getHeaderString("Pragma") != null && response.getHeaderString("Pragma").equals("no-cache"),
+                "Unexpected result: " + response.getHeaderString("Pragma"));
+        assertNotNull(entity, "Unexpected result: " + entity);
+        try {
+            JSONObject jsonObj = new JSONObject(entity);
+            assertTrue(jsonObj.has("access_token"), "Unexpected result: access_token not found");
+            assertTrue(jsonObj.has("token_type"), "Unexpected result: token_type not found");
+            assertTrue(jsonObj.has("scope"), "Unexpected result: scope not found");
+        } catch (Exception e) {
+            fail(e.getMessage(), e);
+        }
+    }
+
+}
diff --git a/oxAuth/Server/src/test/java/org/gluu/oxauth/ws/rs/TokenRestWebServiceWithRSAlgEmbeddedTest.java b/oxAuth/Server/src/test/java/org/gluu/oxauth/ws/rs/TokenRestWebServiceWithRSAlgEmbeddedTest.java
new file mode 100644
index 00000000..f269af65
--- /dev/null
+++ b/oxAuth/Server/src/test/java/org/gluu/oxauth/ws/rs/TokenRestWebServiceWithRSAlgEmbeddedTest.java
@@ -0,0 +1,623 @@
+/*
+ * oxAuth is available under the MIT License (2008). See http://opensource.org/licenses/MIT for full text.
+ *
+ * Copyright (c) 2014, Gluu
+ */
+
+package org.gluu.oxauth.ws.rs;
+
+import org.json.JSONException;
+import org.json.JSONObject;
+import org.gluu.oxauth.BaseTest;
+import org.gluu.oxauth.client.RegisterRequest;
+import org.gluu.oxauth.client.TokenRequest;
+import org.gluu.oxauth.model.common.AuthenticationMethod;
+import org.gluu.oxauth.model.common.GrantType;
+import org.gluu.oxauth.model.crypto.OxAuthCryptoProvider;
+import org.gluu.oxauth.model.crypto.signature.SignatureAlgorithm;
+import org.gluu.oxauth.model.register.ApplicationType;
+import org.gluu.oxauth.model.register.RegisterResponseParam;
+import org.gluu.oxauth.model.util.StringUtils;
+import org.gluu.oxauth.util.ServerUtil;
+import org.jboss.arquillian.test.api.ArquillianResource;
+import org.jboss.resteasy.client.jaxrs.ResteasyClientBuilder;
+import org.testng.annotations.Parameters;
+import org.testng.annotations.Test;
+
+import javax.ws.rs.client.Entity;
+import javax.ws.rs.client.Invocation.Builder;
+import javax.ws.rs.core.MediaType;
+import javax.ws.rs.core.MultivaluedHashMap;
+import javax.ws.rs.core.Response;
+import java.net.URI;
+import java.util.Arrays;
+import java.util.List;
+
+import static org.gluu.oxauth.model.register.RegisterResponseParam.*;
+import static org.testng.Assert.*;
+
+/**
+ * Functional tests for Token Web Services (embedded)
+ *
+ * @author Javier Rojas Blum
+ * @version March 9, 2019
+ */
+public class TokenRestWebServiceWithRSAlgEmbeddedTest extends BaseTest {
+
+    @ArquillianResource
+    private URI url;
+
+    private static String clientId1;
+    private static String clientSecret1;
+
+    private static String clientId2;
+    private static String clientSecret2;
+
+    private static String clientId3;
+    private static String clientSecret3;
+
+    private static String clientId4;
+    private static String clientSecret4;
+
+    private static String clientId5;
+    private static String clientSecret5;
+
+    private static String clientId6;
+    private static String clientSecret6;
+
+    @Parameters({"registerPath", "redirectUris", "clientJwksUri"})
+    @Test
+    public void requestAccessTokenWithClientSecretJwtRS256Step1(final String registerPath, final String redirectUris,
+                                                                final String jwksUri) throws Exception {
+        Builder request = ResteasyClientBuilder.newClient().target(url.toString() + registerPath).request();
+
+        RegisterRequest registerRequest = new RegisterRequest(ApplicationType.WEB, "oxAuth test app",
+                StringUtils.spaceSeparatedToList(redirectUris));
+        registerRequest.setJwksUri(jwksUri);
+        registerRequest.setTokenEndpointAuthMethod(AuthenticationMethod.PRIVATE_KEY_JWT);
+        registerRequest.addCustomAttribute("oxAuthTrustedClient", "true");
+
+        List<GrantType> grantTypes = Arrays.asList(
+                GrantType.RESOURCE_OWNER_PASSWORD_CREDENTIALS
+        );
+        registerRequest.setGrantTypes(grantTypes);
+
+        String registerRequestContent = ServerUtil.toPrettyJson(registerRequest.getJSONParameters());
+
+        Response response = request.post(Entity.json(registerRequestContent));
+        String entity = response.readEntity(String.class);
+
+        showResponse("requestAccessTokenWithClientSecretJwtRS256Step1", response, entity);
+
+        assertEquals(response.getStatus(), 200, "Unexpected response code. " + entity);
+        assertNotNull(entity, "Unexpected result: " + entity);
+        try {
+            JSONObject jsonObj = new JSONObject(entity);
+            assertTrue(jsonObj.has(RegisterResponseParam.CLIENT_ID.toString()));
+            assertTrue(jsonObj.has(CLIENT_SECRET.toString()));
+            assertTrue(jsonObj.has(REGISTRATION_ACCESS_TOKEN.toString()));
+            assertTrue(jsonObj.has(REGISTRATION_CLIENT_URI.toString()));
+            assertTrue(jsonObj.has(CLIENT_ID_ISSUED_AT.toString()));
+            assertTrue(jsonObj.has(CLIENT_SECRET_EXPIRES_AT.toString()));
+
+            clientId1 = jsonObj.getString(RegisterResponseParam.CLIENT_ID.toString());
+            clientSecret1 = jsonObj.getString(CLIENT_SECRET.toString());
+        } catch (JSONException e) {
+            e.printStackTrace();
+            fail(e.getMessage() + "\nResponse was: " + entity);
+        }
+    }
+
+    @Parameters({"tokenPath", "userId", "userSecret", "audience", "RS256_keyId", "keyStoreFile", "keyStoreSecret"})
+    @Test(dependsOnMethods = "requestAccessTokenWithClientSecretJwtRS256Step1")
+    public void requestAccessTokenWithClientSecretJwtRS256Step2(final String tokenPath, final String userId,
+                                                                final String userSecret, final String audience, final String keyId, final String keyStoreFile,
+                                                                final String keyStoreSecret) throws Exception {
+        Builder request = ResteasyClientBuilder.newClient().target(url.toString() + tokenPath).request();
+
+        request.header("Content-Type", MediaType.APPLICATION_FORM_URLENCODED);
+
+        OxAuthCryptoProvider cryptoProvider = new OxAuthCryptoProvider(keyStoreFile, keyStoreSecret, null);
+
+        TokenRequest tokenRequest = new TokenRequest(GrantType.RESOURCE_OWNER_PASSWORD_CREDENTIALS);
+        tokenRequest.setUsername(userId);
+        tokenRequest.setPassword(userSecret);
+        tokenRequest.setScope("email read_stream manage_pages");
+
+        tokenRequest.setAuthUsername(clientId1);
+        tokenRequest.setAuthPassword(clientSecret1);
+        tokenRequest.setAuthenticationMethod(AuthenticationMethod.CLIENT_SECRET_JWT);
+        tokenRequest.setAlgorithm(SignatureAlgorithm.RS256);
+        tokenRequest.setKeyId(keyId);
+        tokenRequest.setCryptoProvider(cryptoProvider);
+        tokenRequest.setAudience(audience);
+
+        Response response = request
+                .post(Entity.form(new MultivaluedHashMap<String, String>(tokenRequest.getParameters())));
+        String entity = response.readEntity(String.class);
+
+        showResponse("requestAccessTokenWithClientSecretJwtRS256Step2", response, entity);
+
+        assertEquals(response.getStatus(), 200, "Unexpected response code.");
+        assertTrue(
+                response.getHeaderString("Cache-Control") != null
+                        && response.getHeaderString("Cache-Control").equals("no-store"),
+                "Unexpected result: " + response.getHeaderString("Cache-Control"));
+        assertTrue(response.getHeaderString("Pragma") != null && response.getHeaderString("Pragma").equals("no-cache"),
+                "Unexpected result: " + response.getHeaderString("Pragma"));
+        assertNotNull(entity, "Unexpected result: " + entity);
+        try {
+            JSONObject jsonObj = new JSONObject(entity);
+            assertTrue(jsonObj.has("access_token"), "Unexpected result: access_token not found");
+            assertTrue(jsonObj.has("token_type"), "Unexpected result: token_type not found");
+            assertTrue(jsonObj.has("scope"), "Unexpected result: scope not found");
+        } catch (JSONException e) {
+            e.printStackTrace();
+            fail(e.getMessage() + "\nResponse was: " + entity);
+        }
+    }
+
+    @Parameters({"registerPath", "redirectUris", "clientJwksUri"})
+    @Test
+    public void requestAccessTokenWithClientSecretJwtRS384Step1(final String registerPath, final String redirectUris,
+                                                                final String jwksUri) throws Exception {
+        Builder request = ResteasyClientBuilder.newClient().target(url.toString() + registerPath).request();
+
+        RegisterRequest registerRequest = new RegisterRequest(ApplicationType.WEB, "oxAuth test app",
+                StringUtils.spaceSeparatedToList(redirectUris));
+        registerRequest.setJwksUri(jwksUri);
+        registerRequest.setTokenEndpointAuthMethod(AuthenticationMethod.PRIVATE_KEY_JWT);
+        registerRequest.addCustomAttribute("oxAuthTrustedClient", "true");
+
+        List<GrantType> grantTypes = Arrays.asList(
+                GrantType.RESOURCE_OWNER_PASSWORD_CREDENTIALS
+        );
+        registerRequest.setGrantTypes(grantTypes);
+
+        String registerRequestContent = ServerUtil.toPrettyJson(registerRequest.getJSONParameters());
+
+        Response response = request.post(Entity.json(registerRequestContent));
+        String entity = response.readEntity(String.class);
+
+        showResponse("requestAccessTokenWithClientSecretJwtRS384Step1", response, entity);
+
+        assertEquals(response.getStatus(), 200, "Unexpected response code. " + entity);
+        assertNotNull(entity, "Unexpected result: " + entity);
+        try {
+            JSONObject jsonObj = new JSONObject(entity);
+            assertTrue(jsonObj.has(RegisterResponseParam.CLIENT_ID.toString()));
+            assertTrue(jsonObj.has(CLIENT_SECRET.toString()));
+            assertTrue(jsonObj.has(REGISTRATION_ACCESS_TOKEN.toString()));
+            assertTrue(jsonObj.has(REGISTRATION_CLIENT_URI.toString()));
+            assertTrue(jsonObj.has(CLIENT_ID_ISSUED_AT.toString()));
+            assertTrue(jsonObj.has(CLIENT_SECRET_EXPIRES_AT.toString()));
+
+            clientId2 = jsonObj.getString(RegisterResponseParam.CLIENT_ID.toString());
+            clientSecret2 = jsonObj.getString(CLIENT_SECRET.toString());
+        } catch (JSONException e) {
+            e.printStackTrace();
+            fail(e.getMessage() + "\nResponse was: " + entity);
+        }
+    }
+
+    @Parameters({"tokenPath", "userId", "userSecret", "audience", "RS384_keyId", "keyStoreFile", "keyStoreSecret"})
+    @Test(dependsOnMethods = "requestAccessTokenWithClientSecretJwtRS384Step1")
+    public void requestAccessTokenWithClientSecretJwtRS384Step2(final String tokenPath, final String userId,
+                                                                final String userSecret, final String audience, final String keyId, final String keyStoreFile,
+                                                                final String keyStoreSecret) throws Exception {
+        Builder request = ResteasyClientBuilder.newClient().target(url.toString() + tokenPath).request();
+
+        request.header("Content-Type", MediaType.APPLICATION_FORM_URLENCODED);
+
+        OxAuthCryptoProvider cryptoProvider = new OxAuthCryptoProvider(keyStoreFile, keyStoreSecret, null);
+
+        TokenRequest tokenRequest = new TokenRequest(GrantType.RESOURCE_OWNER_PASSWORD_CREDENTIALS);
+        tokenRequest.setUsername(userId);
+        tokenRequest.setPassword(userSecret);
+        tokenRequest.setScope("email read_stream manage_pages");
+
+        tokenRequest.setAuthUsername(clientId2);
+        tokenRequest.setAuthPassword(clientSecret2);
+        tokenRequest.setAuthenticationMethod(AuthenticationMethod.CLIENT_SECRET_JWT);
+        tokenRequest.setAlgorithm(SignatureAlgorithm.RS384);
+        tokenRequest.setKeyId(keyId);
+        tokenRequest.setCryptoProvider(cryptoProvider);
+        tokenRequest.setAudience(audience);
+
+        Response response = request
+                .post(Entity.form(new MultivaluedHashMap<String, String>(tokenRequest.getParameters())));
+        String entity = response.readEntity(String.class);
+
+        showResponse("requestAccessTokenWithClientSecretJwtRS384Step2", response, entity);
+
+        assertEquals(response.getStatus(), 200, "Unexpected response code.");
+        assertTrue(
+                response.getHeaderString("Cache-Control") != null
+                        && response.getHeaderString("Cache-Control").equals("no-store"),
+                "Unexpected result: " + response.getHeaderString("Cache-Control"));
+        assertTrue(response.getHeaderString("Pragma") != null && response.getHeaderString("Pragma").equals("no-cache"),
+                "Unexpected result: " + response.getHeaderString("Pragma"));
+        assertNotNull(entity, "Unexpected result: " + entity);
+        try {
+            JSONObject jsonObj = new JSONObject(entity);
+            assertTrue(jsonObj.has("access_token"), "Unexpected result: access_token not found");
+            assertTrue(jsonObj.has("token_type"), "Unexpected result: token_type not found");
+            assertTrue(jsonObj.has("scope"), "Unexpected result: scope not found");
+        } catch (JSONException e) {
+            e.printStackTrace();
+            fail(e.getMessage() + "\nResponse was: " + entity);
+        }
+    }
+
+    @Parameters({"registerPath", "redirectUris", "clientJwksUri"})
+    @Test
+    public void requestAccessTokenWithClientSecretJwtRS512Step1(final String registerPath, final String redirectUris,
+                                                                final String jwksUri) throws Exception {
+
+        Builder request = ResteasyClientBuilder.newClient().target(url.toString() + registerPath).request();
+
+        RegisterRequest registerRequest = new RegisterRequest(ApplicationType.WEB, "oxAuth test app",
+                StringUtils.spaceSeparatedToList(redirectUris));
+        registerRequest.setJwksUri(jwksUri);
+        registerRequest.setTokenEndpointAuthMethod(AuthenticationMethod.PRIVATE_KEY_JWT);
+        registerRequest.addCustomAttribute("oxAuthTrustedClient", "true");
+
+        List<GrantType> grantTypes = Arrays.asList(
+                GrantType.RESOURCE_OWNER_PASSWORD_CREDENTIALS
+        );
+        registerRequest.setGrantTypes(grantTypes);
+
+        String registerRequestContent = ServerUtil.toPrettyJson(registerRequest.getJSONParameters());
+
+        Response response = request.post(Entity.json(registerRequestContent));
+        String entity = response.readEntity(String.class);
+
+        showResponse("requestAccessTokenWithClientSecretJwtRS512Step1", response, entity);
+
+        assertEquals(response.getStatus(), 200, "Unexpected response code. " + entity);
+        assertNotNull(entity, "Unexpected result: " + entity);
+        try {
+            JSONObject jsonObj = new JSONObject(entity);
+            assertTrue(jsonObj.has(RegisterResponseParam.CLIENT_ID.toString()));
+            assertTrue(jsonObj.has(CLIENT_SECRET.toString()));
+            assertTrue(jsonObj.has(REGISTRATION_ACCESS_TOKEN.toString()));
+            assertTrue(jsonObj.has(REGISTRATION_CLIENT_URI.toString()));
+            assertTrue(jsonObj.has(CLIENT_ID_ISSUED_AT.toString()));
+            assertTrue(jsonObj.has(CLIENT_SECRET_EXPIRES_AT.toString()));
+
+            clientId3 = jsonObj.getString(RegisterResponseParam.CLIENT_ID.toString());
+            clientSecret3 = jsonObj.getString(CLIENT_SECRET.toString());
+        } catch (JSONException e) {
+            e.printStackTrace();
+            fail(e.getMessage() + "\nResponse was: " + entity);
+        }
+    }
+
+    @Parameters({"tokenPath", "userId", "userSecret", "audience", "RS512_keyId", "keyStoreFile", "keyStoreSecret"})
+    @Test(dependsOnMethods = "requestAccessTokenWithClientSecretJwtRS512Step1")
+    public void requestAccessTokenWithClientSecretJwtRS512Step2(final String tokenPath, final String userId,
+                                                                final String userSecret, final String audience, final String keyId, final String keyStoreFile,
+                                                                final String keyStoreSecret) throws Exception {
+        Builder request = ResteasyClientBuilder.newClient().target(url.toString() + tokenPath).request();
+
+        request.header("Content-Type", MediaType.APPLICATION_FORM_URLENCODED);
+
+        OxAuthCryptoProvider cryptoProvider = new OxAuthCryptoProvider(keyStoreFile, keyStoreSecret, null);
+
+        TokenRequest tokenRequest = new TokenRequest(GrantType.RESOURCE_OWNER_PASSWORD_CREDENTIALS);
+        tokenRequest.setUsername(userId);
+        tokenRequest.setPassword(userSecret);
+        tokenRequest.setScope("email read_stream manage_pages");
+
+        tokenRequest.setAuthUsername(clientId3);
+        tokenRequest.setAuthPassword(clientSecret3);
+        tokenRequest.setAuthenticationMethod(AuthenticationMethod.CLIENT_SECRET_JWT);
+        tokenRequest.setAlgorithm(SignatureAlgorithm.RS512);
+        tokenRequest.setKeyId(keyId);
+        tokenRequest.setCryptoProvider(cryptoProvider);
+        tokenRequest.setAudience(audience);
+
+        Response response = request
+                .post(Entity.form(new MultivaluedHashMap<String, String>(tokenRequest.getParameters())));
+        String entity = response.readEntity(String.class);
+
+        showResponse("requestAccessTokenWithClientSecretJwtRS512Step2", response, entity);
+
+        assertEquals(response.getStatus(), 200, "Unexpected response code.");
+        assertTrue(
+                response.getHeaderString("Cache-Control") != null
+                        && response.getHeaderString("Cache-Control").equals("no-store"),
+                "Unexpected result: " + response.getHeaderString("Cache-Control"));
+        assertTrue(response.getHeaderString("Pragma") != null && response.getHeaderString("Pragma").equals("no-cache"),
+                "Unexpected result: " + response.getHeaderString("Pragma"));
+        assertNotNull(entity, "Unexpected result: " + entity);
+        try {
+            JSONObject jsonObj = new JSONObject(entity);
+            assertTrue(jsonObj.has("access_token"), "Unexpected result: access_token not found");
+            assertTrue(jsonObj.has("token_type"), "Unexpected result: token_type not found");
+            assertTrue(jsonObj.has("scope"), "Unexpected result: scope not found");
+        } catch (JSONException e) {
+            e.printStackTrace();
+            fail(e.getMessage() + "\nResponse was: " + entity);
+        }
+    }
+
+    @Parameters({"registerPath", "redirectUris", "clientJwksUri"})
+    @Test
+    public void requestAccessTokenWithClientSecretJwtRS256X509CertStep1(final String registerPath,
+                                                                        final String redirectUris, final String jwksUri) throws Exception {
+
+        Builder request = ResteasyClientBuilder.newClient().target(url.toString() + registerPath).request();
+
+        RegisterRequest registerRequest = new RegisterRequest(ApplicationType.WEB, "oxAuth test app",
+                StringUtils.spaceSeparatedToList(redirectUris));
+        registerRequest.setJwksUri(jwksUri);
+        registerRequest.setTokenEndpointAuthMethod(AuthenticationMethod.PRIVATE_KEY_JWT);
+        registerRequest.addCustomAttribute("oxAuthTrustedClient", "true");
+
+        List<GrantType> grantTypes = Arrays.asList(
+                GrantType.RESOURCE_OWNER_PASSWORD_CREDENTIALS
+        );
+        registerRequest.setGrantTypes(grantTypes);
+
+        String registerRequestContent = ServerUtil.toPrettyJson(registerRequest.getJSONParameters());
+
+        Response response = request.post(Entity.json(registerRequestContent));
+        String entity = response.readEntity(String.class);
+
+        showResponse("requestAccessTokenWithClientSecretJwtRS256X509CertStep1", response, entity);
+
+        assertEquals(response.getStatus(), 200, "Unexpected response code. " + entity);
+        assertNotNull(entity, "Unexpected result: " + entity);
+        try {
+            JSONObject jsonObj = new JSONObject(entity);
+            assertTrue(jsonObj.has(RegisterResponseParam.CLIENT_ID.toString()));
+            assertTrue(jsonObj.has(CLIENT_SECRET.toString()));
+            assertTrue(jsonObj.has(REGISTRATION_ACCESS_TOKEN.toString()));
+            assertTrue(jsonObj.has(REGISTRATION_CLIENT_URI.toString()));
+            assertTrue(jsonObj.has(CLIENT_ID_ISSUED_AT.toString()));
+            assertTrue(jsonObj.has(CLIENT_SECRET_EXPIRES_AT.toString()));
+
+            clientId4 = jsonObj.getString(RegisterResponseParam.CLIENT_ID.toString());
+            clientSecret4 = jsonObj.getString(CLIENT_SECRET.toString());
+        } catch (JSONException e) {
+            e.printStackTrace();
+            fail(e.getMessage() + "\nResponse was: " + entity);
+        }
+    }
+
+    @Parameters({"tokenPath", "userId", "userSecret", "audience", "RS256_keyId", "keyStoreFile", "keyStoreSecret"})
+    @Test(dependsOnMethods = "requestAccessTokenWithClientSecretJwtRS256X509CertStep1")
+    public void requestAccessTokenWithClientSecretJwtRS256X509CertStep2(final String tokenPath, final String userId,
+                                                                        final String userSecret, final String audience, final String keyId, final String keyStoreFile,
+                                                                        final String keyStoreSecret) throws Exception {
+        Builder request = ResteasyClientBuilder.newClient().target(url.toString() + tokenPath).request();
+
+        request.header("Content-Type", MediaType.APPLICATION_FORM_URLENCODED);
+
+        OxAuthCryptoProvider cryptoProvider = new OxAuthCryptoProvider(keyStoreFile, keyStoreSecret, null);
+
+        TokenRequest tokenRequest = new TokenRequest(GrantType.RESOURCE_OWNER_PASSWORD_CREDENTIALS);
+        tokenRequest.setUsername(userId);
+        tokenRequest.setPassword(userSecret);
+        tokenRequest.setScope("email read_stream manage_pages");
+
+        tokenRequest.setAuthUsername(clientId4);
+        tokenRequest.setAuthPassword(clientSecret4);
+        tokenRequest.setAuthenticationMethod(AuthenticationMethod.CLIENT_SECRET_JWT);
+        tokenRequest.setAlgorithm(SignatureAlgorithm.RS256);
+        tokenRequest.setKeyId(keyId);
+        tokenRequest.setCryptoProvider(cryptoProvider);
+        tokenRequest.setAudience(audience);
+
+        Response response = request
+                .post(Entity.form(new MultivaluedHashMap<String, String>(tokenRequest.getParameters())));
+        String entity = response.readEntity(String.class);
+
+        showResponse("requestAccessTokenWithClientSecretJwtRS256X509CertStep2", response, entity);
+
+        assertEquals(response.getStatus(), 200, "Unexpected response code.");
+        assertTrue(
+                response.getHeaderString("Cache-Control") != null
+                        && response.getHeaderString("Cache-Control").equals("no-store"),
+                "Unexpected result: " + response.getHeaderString("Cache-Control"));
+        assertTrue(response.getHeaderString("Pragma") != null && response.getHeaderString("Pragma").equals("no-cache"),
+                "Unexpected result: " + response.getHeaderString("Pragma"));
+        assertNotNull(entity, "Unexpected result: " + entity);
+        try {
+            JSONObject jsonObj = new JSONObject(entity);
+            assertTrue(jsonObj.has("access_token"), "Unexpected result: access_token not found");
+            assertTrue(jsonObj.has("token_type"), "Unexpected result: token_type not found");
+            assertTrue(jsonObj.has("scope"), "Unexpected result: scope not found");
+        } catch (JSONException e) {
+            e.printStackTrace();
+            fail(e.getMessage() + "\nResponse was: " + entity);
+        }
+    }
+
+    @Parameters({"registerPath", "redirectUris", "clientJwksUri"})
+    @Test
+    public void requestAccessTokenWithClientSecretJwtRS384X509CertStep1(final String registerPath,
+                                                                        final String redirectUris, final String jwksUri) throws Exception {
+
+        Builder request = ResteasyClientBuilder.newClient().target(url.toString() + registerPath).request();
+
+        RegisterRequest registerRequest = new RegisterRequest(ApplicationType.WEB, "oxAuth test app",
+                StringUtils.spaceSeparatedToList(redirectUris));
+        registerRequest.setJwksUri(jwksUri);
+        registerRequest.setTokenEndpointAuthMethod(AuthenticationMethod.PRIVATE_KEY_JWT);
+        registerRequest.addCustomAttribute("oxAuthTrustedClient", "true");
+
+        List<GrantType> grantTypes = Arrays.asList(
+                GrantType.RESOURCE_OWNER_PASSWORD_CREDENTIALS
+        );
+        registerRequest.setGrantTypes(grantTypes);
+
+        String registerRequestContent = ServerUtil.toPrettyJson(registerRequest.getJSONParameters());
+
+        Response response = request.post(Entity.json(registerRequestContent));
+        String entity = response.readEntity(String.class);
+
+        showResponse("requestAccessTokenWithClientSecretJwtRS384X509CertStep1", response, entity);
+
+        assertEquals(response.getStatus(), 200, "Unexpected response code. " + entity);
+        assertNotNull(entity, "Unexpected result: " + entity);
+        try {
+            JSONObject jsonObj = new JSONObject(entity);
+            assertTrue(jsonObj.has(RegisterResponseParam.CLIENT_ID.toString()));
+            assertTrue(jsonObj.has(CLIENT_SECRET.toString()));
+            assertTrue(jsonObj.has(REGISTRATION_ACCESS_TOKEN.toString()));
+            assertTrue(jsonObj.has(REGISTRATION_CLIENT_URI.toString()));
+            assertTrue(jsonObj.has(CLIENT_ID_ISSUED_AT.toString()));
+            assertTrue(jsonObj.has(CLIENT_SECRET_EXPIRES_AT.toString()));
+
+            clientId5 = jsonObj.getString(RegisterResponseParam.CLIENT_ID.toString());
+            clientSecret5 = jsonObj.getString(CLIENT_SECRET.toString());
+        } catch (JSONException e) {
+            e.printStackTrace();
+            fail(e.getMessage() + "\nResponse was: " + entity);
+        }
+    }
+
+    @Parameters({"tokenPath", "userId", "userSecret", "audience", "RS384_keyId", "keyStoreFile", "keyStoreSecret"})
+    @Test(dependsOnMethods = "requestAccessTokenWithClientSecretJwtRS384X509CertStep1")
+    public void requestAccessTokenWithClientSecretJwtRS384X509CertStep2(final String tokenPath, final String userId,
+                                                                        final String userSecret, final String audience, final String keyId, final String keyStoreFile,
+                                                                        final String keyStoreSecret) throws Exception {
+        Builder request = ResteasyClientBuilder.newClient().target(url.toString() + tokenPath).request();
+
+        request.header("Content-Type", MediaType.APPLICATION_FORM_URLENCODED);
+
+        OxAuthCryptoProvider cryptoProvider = new OxAuthCryptoProvider(keyStoreFile, keyStoreSecret, null);
+
+        TokenRequest tokenRequest = new TokenRequest(GrantType.RESOURCE_OWNER_PASSWORD_CREDENTIALS);
+        tokenRequest.setUsername(userId);
+        tokenRequest.setPassword(userSecret);
+        tokenRequest.setScope("email read_stream manage_pages");
+
+        tokenRequest.setAuthUsername(clientId5);
+        tokenRequest.setAuthPassword(clientSecret5);
+        tokenRequest.setAuthenticationMethod(AuthenticationMethod.CLIENT_SECRET_JWT);
+        tokenRequest.setAlgorithm(SignatureAlgorithm.RS384);
+        tokenRequest.setKeyId(keyId);
+        tokenRequest.setCryptoProvider(cryptoProvider);
+        tokenRequest.setAudience(audience);
+
+        Response response = request
+                .post(Entity.form(new MultivaluedHashMap<String, String>(tokenRequest.getParameters())));
+        String entity = response.readEntity(String.class);
+
+        showResponse("requestAccessTokenWithClientSecretJwtRS384X509CertStep2", response, entity);
+
+        assertEquals(response.getStatus(), 200, "Unexpected response code.");
+        assertTrue(
+                response.getHeaderString("Cache-Control") != null
+                        && response.getHeaderString("Cache-Control").equals("no-store"),
+                "Unexpected result: " + response.getHeaderString("Cache-Control"));
+        assertTrue(response.getHeaderString("Pragma") != null && response.getHeaderString("Pragma").equals("no-cache"),
+                "Unexpected result: " + response.getHeaderString("Pragma"));
+        assertNotNull(entity, "Unexpected result: " + entity);
+        try {
+            JSONObject jsonObj = new JSONObject(entity);
+            assertTrue(jsonObj.has("access_token"), "Unexpected result: access_token not found");
+            assertTrue(jsonObj.has("token_type"), "Unexpected result: token_type not found");
+            assertTrue(jsonObj.has("scope"), "Unexpected result: scope not found");
+        } catch (JSONException e) {
+            e.printStackTrace();
+            fail(e.getMessage() + "\nResponse was: " + entity);
+        }
+    }
+
+    @Parameters({"registerPath", "redirectUris", "clientJwksUri"})
+    @Test
+    public void requestAccessTokenWithClientSecretJwtRS512X509CertStep1(final String registerPath,
+                                                                        final String redirectUris, final String jwksUri) throws Exception {
+
+        Builder request = ResteasyClientBuilder.newClient().target(url.toString() + registerPath).request();
+
+        RegisterRequest registerRequest = new RegisterRequest(ApplicationType.WEB, "oxAuth test app",
+                StringUtils.spaceSeparatedToList(redirectUris));
+        registerRequest.setJwksUri(jwksUri);
+        registerRequest.setTokenEndpointAuthMethod(AuthenticationMethod.PRIVATE_KEY_JWT);
+        registerRequest.addCustomAttribute("oxAuthTrustedClient", "true");
+
+        List<GrantType> grantTypes = Arrays.asList(
+                GrantType.RESOURCE_OWNER_PASSWORD_CREDENTIALS
+        );
+        registerRequest.setGrantTypes(grantTypes);
+
+        String registerRequestContent = ServerUtil.toPrettyJson(registerRequest.getJSONParameters());
+        Response response = request.post(Entity.json(registerRequestContent));
+        String entity = response.readEntity(String.class);
+
+        showResponse("requestAccessTokenWithClientSecretJwtRS512X509CertStep1", response, entity);
+
+        assertEquals(response.getStatus(), 200, "Unexpected response code. " + entity);
+        assertNotNull(entity, "Unexpected result: " + entity);
+        try {
+            JSONObject jsonObj = new JSONObject(entity);
+            assertTrue(jsonObj.has(RegisterResponseParam.CLIENT_ID.toString()));
+            assertTrue(jsonObj.has(CLIENT_SECRET.toString()));
+            assertTrue(jsonObj.has(REGISTRATION_ACCESS_TOKEN.toString()));
+            assertTrue(jsonObj.has(REGISTRATION_CLIENT_URI.toString()));
+            assertTrue(jsonObj.has(CLIENT_ID_ISSUED_AT.toString()));
+            assertTrue(jsonObj.has(CLIENT_SECRET_EXPIRES_AT.toString()));
+
+            clientId6 = jsonObj.getString(RegisterResponseParam.CLIENT_ID.toString());
+            clientSecret6 = jsonObj.getString(CLIENT_SECRET.toString());
+        } catch (JSONException e) {
+            e.printStackTrace();
+            fail(e.getMessage() + "\nResponse was: " + entity);
+        }
+    }
+
+    @Parameters({"tokenPath", "userId", "userSecret", "audience", "RS512_keyId", "keyStoreFile", "keyStoreSecret"})
+    @Test(dependsOnMethods = "requestAccessTokenWithClientSecretJwtRS512X509CertStep1")
+    public void requestAccessTokenWithClientSecretJwtRS512X509CertStep2(final String tokenPath, final String userId,
+                                                                        final String userSecret, final String audience, final String keyId, final String keyStoreFile,
+                                                                        final String keyStoreSecret) throws Exception {
+        Builder request = ResteasyClientBuilder.newClient().target(url.toString() + tokenPath).request();
+
+        request.header("Content-Type", MediaType.APPLICATION_FORM_URLENCODED);
+
+        OxAuthCryptoProvider cryptoProvider = new OxAuthCryptoProvider(keyStoreFile, keyStoreSecret, null);
+
+        TokenRequest tokenRequest = new TokenRequest(GrantType.RESOURCE_OWNER_PASSWORD_CREDENTIALS);
+        tokenRequest.setUsername(userId);
+        tokenRequest.setPassword(userSecret);
+        tokenRequest.setScope("email read_stream manage_pages");
+
+        tokenRequest.setAuthUsername(clientId6);
+        tokenRequest.setAuthPassword(clientSecret6);
+        tokenRequest.setAuthenticationMethod(AuthenticationMethod.CLIENT_SECRET_JWT);
+        tokenRequest.setAlgorithm(SignatureAlgorithm.RS512);
+        tokenRequest.setKeyId(keyId);
+        tokenRequest.setCryptoProvider(cryptoProvider);
+        tokenRequest.setAudience(audience);
+
+        Response response = request
+                .post(Entity.form(new MultivaluedHashMap<String, String>(tokenRequest.getParameters())));
+        String entity = response.readEntity(String.class);
+
+        showResponse("requestAccessTokenWithClientSecretJwtRS512X509CertStep2", response, entity);
+
+        assertEquals(response.getStatus(), 200, "Unexpected response code.");
+        assertTrue(
+                response.getHeaderString("Cache-Control") != null
+                        && response.getHeaderString("Cache-Control").equals("no-store"),
+                "Unexpected result: " + response.getHeaderString("Cache-Control"));
+        assertTrue(response.getHeaderString("Pragma") != null && response.getHeaderString("Pragma").equals("no-cache"),
+                "Unexpected result: " + response.getHeaderString("Pragma"));
+        assertNotNull(entity, "Unexpected result: " + entity);
+        try {
+            JSONObject jsonObj = new JSONObject(entity);
+            assertTrue(jsonObj.has("access_token"), "Unexpected result: access_token not found");
+            assertTrue(jsonObj.has("token_type"), "Unexpected result: token_type not found");
+            assertTrue(jsonObj.has("scope"), "Unexpected result: scope not found");
+        } catch (JSONException e) {
+            e.printStackTrace();
+            fail(e.getMessage() + "\nResponse was: " + entity);
+        }
+    }
+
+}
diff --git a/oxAuth/Server/src/test/java/org/gluu/oxauth/ws/rs/UserAuthenticationFilterEmbeddedTest.java b/oxAuth/Server/src/test/java/org/gluu/oxauth/ws/rs/UserAuthenticationFilterEmbeddedTest.java
new file mode 100644
index 00000000..4c1ce193
--- /dev/null
+++ b/oxAuth/Server/src/test/java/org/gluu/oxauth/ws/rs/UserAuthenticationFilterEmbeddedTest.java
@@ -0,0 +1,553 @@
+/*
+ * oxAuth is available under the MIT License (2008). See http://opensource.org/licenses/MIT for full text.
+ *
+ * Copyright (c) 2014, Gluu
+ */
+
+package org.gluu.oxauth.ws.rs;
+
+import org.json.JSONException;
+import org.json.JSONObject;
+import org.gluu.oxauth.BaseTest;
+import org.gluu.oxauth.client.*;
+import org.gluu.oxauth.model.authorize.AuthorizeResponseParam;
+import org.gluu.oxauth.model.common.AuthenticationMethod;
+import org.gluu.oxauth.model.common.GrantType;
+import org.gluu.oxauth.model.common.Prompt;
+import org.gluu.oxauth.model.common.ResponseType;
+import org.gluu.oxauth.model.crypto.OxAuthCryptoProvider;
+import org.gluu.oxauth.model.register.ApplicationType;
+import org.gluu.oxauth.model.register.RegisterResponseParam;
+import org.gluu.oxauth.model.util.StringUtils;
+import org.gluu.oxauth.ws.rs.ClientTestUtil;
+import org.gluu.oxauth.util.ServerUtil;
+import org.jboss.arquillian.test.api.ArquillianResource;
+import org.jboss.resteasy.client.jaxrs.ResteasyClientBuilder;
+import org.testng.annotations.Parameters;
+import org.testng.annotations.Test;
+
+import javax.ws.rs.client.Entity;
+import javax.ws.rs.client.Invocation.Builder;
+import javax.ws.rs.core.MediaType;
+import javax.ws.rs.core.MultivaluedHashMap;
+import javax.ws.rs.core.Response;
+import java.net.URI;
+import java.net.URISyntaxException;
+import java.util.*;
+
+import static org.gluu.oxauth.model.register.RegisterResponseParam.*;
+import static org.testng.Assert.*;
+
+/**
+ * Functional tests for the Use Authentication Filter (embedded)
+ *
+ * @author Javier Rojas Blum
+ * @version April 26, 2017
+ */
+public class UserAuthenticationFilterEmbeddedTest extends BaseTest {
+
+    @ArquillianResource
+    private URI url;
+
+    private static String clientId;
+    private static String clientSecret;
+
+    private static String clientId1;
+    private static String clientSecret1;
+
+    private static String clientId2;
+    private static String clientSecret2;
+
+    private static String clientId3;
+    private static String clientSecret3;
+
+    private static String clientId4;
+    private static String clientSecret4;
+
+    private static String authorizationCode1;
+
+    @Parameters({"registerPath", "redirectUris"})
+    @Test
+    public void dynamicClientRegistration(final String registerPath, final String redirectUris) throws Exception {
+        Builder request = ResteasyClientBuilder.newClient().target(url.toString() + registerPath).request();
+
+        List<ResponseType> responseTypes = Arrays.asList(ResponseType.CODE, ResponseType.TOKEN, ResponseType.ID_TOKEN);
+
+        RegisterRequest registerRequest = new RegisterRequest(ApplicationType.WEB, "oxAuth test app",
+                StringUtils.spaceSeparatedToList(redirectUris));
+        registerRequest.setResponseTypes(responseTypes);
+        registerRequest.addCustomAttribute("oxAuthTrustedClient", "true");
+
+        List<GrantType> grantTypes = Arrays.asList(
+                GrantType.RESOURCE_OWNER_PASSWORD_CREDENTIALS
+        );
+        registerRequest.setGrantTypes(grantTypes);
+
+        String registerRequestContent = ServerUtil.toPrettyJson(registerRequest.getJSONParameters());
+
+        Response response = request.post(Entity.json(registerRequestContent));
+        String entity = response.readEntity(String.class);
+
+        showResponse("dynamicClientRegistration", response, entity);
+
+        assertEquals(response.getStatus(), 200, "Unexpected response code. " + entity);
+        assertNotNull(entity, "Unexpected result: " + entity);
+        try {
+            final RegisterResponse registerResponse = RegisterResponse.valueOf(entity);
+            ClientTestUtil.assert_(registerResponse);
+
+            clientId = registerResponse.getClientId();
+            clientSecret = registerResponse.getClientSecret();
+        } catch (Exception e) {
+            e.printStackTrace();
+            fail(e.getMessage() + "\nResponse was: " + entity);
+        }
+    }
+
+    @Parameters({"registerPath", "redirectUris", "clientJwksUri"})
+    @Test
+    public void requestAccessTokenCustomAuth1Step1(final String registerPath, final String redirectUris,
+                                                   final String jwksUri) throws Exception {
+        Builder request = ResteasyClientBuilder.newClient().target(url.toString() + registerPath).request();
+
+        RegisterRequest registerRequest = new RegisterRequest(ApplicationType.WEB, "oxAuth test app",
+                StringUtils.spaceSeparatedToList(redirectUris));
+        registerRequest.setJwksUri(jwksUri);
+        registerRequest.setTokenEndpointAuthMethod(AuthenticationMethod.CLIENT_SECRET_POST);
+        registerRequest.addCustomAttribute("oxAuthTrustedClient", "true");
+
+        List<GrantType> grantTypes = Arrays.asList(
+                GrantType.RESOURCE_OWNER_PASSWORD_CREDENTIALS
+        );
+        registerRequest.setGrantTypes(grantTypes);
+
+        String registerRequestContent = ServerUtil.toPrettyJson(registerRequest.getJSONParameters());
+
+        Response response = request.post(Entity.json(registerRequestContent));
+        String entity = response.readEntity(String.class);
+
+        showResponse("requestAccessTokenCustomAuth1Step1", response, entity);
+
+        assertEquals(response.getStatus(), 200, "Unexpected response code. " + entity);
+        assertNotNull(entity, "Unexpected result: " + entity);
+        try {
+            JSONObject jsonObj = new JSONObject(entity);
+            assertTrue(jsonObj.has(RegisterResponseParam.CLIENT_ID.toString()));
+            assertTrue(jsonObj.has(CLIENT_SECRET.toString()));
+            assertTrue(jsonObj.has(REGISTRATION_ACCESS_TOKEN.toString()));
+            assertTrue(jsonObj.has(REGISTRATION_CLIENT_URI.toString()));
+            assertTrue(jsonObj.has(CLIENT_ID_ISSUED_AT.toString()));
+            assertTrue(jsonObj.has(CLIENT_SECRET_EXPIRES_AT.toString()));
+
+            clientId1 = jsonObj.getString(RegisterResponseParam.CLIENT_ID.toString());
+            clientSecret1 = jsonObj.getString(CLIENT_SECRET.toString());
+        } catch (JSONException e) {
+            e.printStackTrace();
+            fail(e.getMessage() + "\nResponse was: " + entity);
+        }
+    }
+
+    @Parameters({"tokenPath", "userInum", "userEmail"})
+    @Test(dependsOnMethods = "requestAccessTokenCustomAuth1Step1")
+    public void requestAccessTokenCustomAuth1Step2(final String tokenPath, final String userInum,
+                                                   final String userEmail) throws Exception {
+        Builder request = ResteasyClientBuilder.newClient().target(url.toString() + tokenPath).request();
+
+        request.header("Content-Type", MediaType.APPLICATION_FORM_URLENCODED);
+
+        TokenRequest tokenRequest = new TokenRequest(GrantType.RESOURCE_OWNER_PASSWORD_CREDENTIALS);
+        tokenRequest.setScope("email read_stream manage_pages");
+
+        tokenRequest.setAuthUsername(clientId1);
+        tokenRequest.setAuthPassword(clientSecret1);
+        tokenRequest.setAuthenticationMethod(AuthenticationMethod.CLIENT_SECRET_POST);
+        tokenRequest.addCustomParameter("mail", userEmail);
+        tokenRequest.addCustomParameter("inum", userInum);
+
+        Response response = request
+                .post(Entity.form(new MultivaluedHashMap<String, String>(tokenRequest.getParameters())));
+        String entity = response.readEntity(String.class);
+
+        showResponse("requestAccessTokenCustomAuth1Step2", response, entity);
+
+        assertEquals(response.getStatus(), 200, "Unexpected response code.");
+        assertTrue(
+                response.getHeaderString("Cache-Control") != null
+                        && response.getHeaderString("Cache-Control").equals("no-store"),
+                "Unexpected result: " + response.getHeaderString("Cache-Control"));
+        assertTrue(response.getHeaderString("Pragma") != null && response.getHeaderString("Pragma").equals("no-cache"),
+                "Unexpected result: " + response.getHeaderString("Pragma"));
+        assertTrue(!entity.equals(null), "Unexpected result: " + entity);
+        try {
+            JSONObject jsonObj = new JSONObject(entity);
+            assertTrue(jsonObj.has("access_token"), "Unexpected result: access_token not found");
+            assertTrue(jsonObj.has("token_type"), "Unexpected result: token_type not found");
+            assertTrue(jsonObj.has("scope"), "Unexpected result: scope not found");
+        } catch (JSONException e) {
+            e.printStackTrace();
+            fail(e.getMessage() + "\nResponse was: " + entity);
+        }
+    }
+
+    @Parameters({"registerPath", "redirectUris", "clientJwksUri"})
+    @Test
+    public void requestAccessTokenCustomAuth2Step1(final String registerPath, final String redirectUris,
+                                                   final String jwksUri) throws Exception {
+
+        Builder request = ResteasyClientBuilder.newClient().target(url.toString() + registerPath).request();
+
+        RegisterRequest registerRequest = new RegisterRequest(ApplicationType.WEB, "oxAuth test app",
+                StringUtils.spaceSeparatedToList(redirectUris));
+        registerRequest.setJwksUri(jwksUri);
+        registerRequest.setTokenEndpointAuthMethod(AuthenticationMethod.CLIENT_SECRET_POST);
+        registerRequest.addCustomAttribute("oxAuthTrustedClient", "true");
+
+        List<GrantType> grantTypes = Arrays.asList(
+                GrantType.RESOURCE_OWNER_PASSWORD_CREDENTIALS
+        );
+        registerRequest.setGrantTypes(grantTypes);
+
+        String registerRequestContent = ServerUtil.toPrettyJson(registerRequest.getJSONParameters());
+
+        Response response = request.post(Entity.json(registerRequestContent));
+        String entity = response.readEntity(String.class);
+
+        showResponse("requestAccessTokenCustomAuth2Step1", response, entity);
+
+        assertEquals(response.getStatus(), 200, "Unexpected response code. " + entity);
+        assertNotNull(entity, "Unexpected result: " + entity);
+        try {
+            JSONObject jsonObj = new JSONObject(entity);
+            assertTrue(jsonObj.has(RegisterResponseParam.CLIENT_ID.toString()));
+            assertTrue(jsonObj.has(CLIENT_SECRET.toString()));
+            assertTrue(jsonObj.has(REGISTRATION_ACCESS_TOKEN.toString()));
+            assertTrue(jsonObj.has(REGISTRATION_CLIENT_URI.toString()));
+            assertTrue(jsonObj.has(CLIENT_ID_ISSUED_AT.toString()));
+            assertTrue(jsonObj.has(CLIENT_SECRET_EXPIRES_AT.toString()));
+
+            clientId2 = jsonObj.getString(RegisterResponseParam.CLIENT_ID.toString());
+            clientSecret2 = jsonObj.getString(CLIENT_SECRET.toString());
+        } catch (JSONException e) {
+            e.printStackTrace();
+            fail(e.getMessage() + "\nResponse was: " + entity);
+        }
+    }
+
+    @Parameters({"tokenPath", "userId", "userSecret"})
+    @Test(dependsOnMethods = "requestAccessTokenCustomAuth2Step1")
+    public void requestAccessTokenCustomAuth2Step2(final String tokenPath, final String userId, final String userSecret)
+            throws Exception {
+        Builder request = ResteasyClientBuilder.newClient().target(url.toString() + tokenPath).request();
+
+        request.header("Content-Type", MediaType.APPLICATION_FORM_URLENCODED);
+
+        TokenRequest tokenRequest = new TokenRequest(GrantType.RESOURCE_OWNER_PASSWORD_CREDENTIALS);
+        tokenRequest.setScope("email read_stream manage_pages");
+
+        tokenRequest.setAuthUsername(clientId2);
+        tokenRequest.setAuthPassword(clientSecret2);
+        tokenRequest.setAuthenticationMethod(AuthenticationMethod.CLIENT_SECRET_POST);
+        tokenRequest.addCustomParameter("uid", userId);
+        tokenRequest.addCustomParameter("pwd", userSecret);
+
+        Response response = request
+                .post(Entity.form(new MultivaluedHashMap<String, String>(tokenRequest.getParameters())));
+        String entity = response.readEntity(String.class);
+
+        showResponse("requestAccessTokenCustomAuth2Step2", response, entity);
+
+        assertEquals(response.getStatus(), 200, "Unexpected response code.");
+        assertTrue(
+                response.getHeaderString("Cache-Control") != null
+                        && response.getHeaderString("Cache-Control").equals("no-store"),
+                "Unexpected result: " + response.getHeaderString("Cache-Control"));
+        assertTrue(response.getHeaderString("Pragma") != null && response.getHeaderString("Pragma").equals("no-cache"),
+                "Unexpected result: " + response.getHeaderString("Pragma"));
+        assertTrue(!entity.equals(null), "Unexpected result: " + entity);
+        try {
+            JSONObject jsonObj = new JSONObject(entity);
+            assertTrue(jsonObj.has("access_token"), "Unexpected result: access_token not found");
+            assertTrue(jsonObj.has("token_type"), "Unexpected result: token_type not found");
+            assertTrue(jsonObj.has("scope"), "Unexpected result: scope not found");
+        } catch (JSONException e) {
+            e.printStackTrace();
+            fail(e.getMessage() + "\nResponse was: " + entity);
+        }
+    }
+
+    @Parameters({"registerPath", "redirectUris", "clientJwksUri"})
+    @Test
+    public void requestAccessTokenCustomAuth3Step1(final String registerPath, final String redirectUris,
+                                                   final String jwksUri) throws Exception {
+        Builder request = ResteasyClientBuilder.newClient().target(url.toString() + registerPath).request();
+
+        RegisterRequest registerRequest = new RegisterRequest(ApplicationType.WEB, "oxAuth test app",
+                StringUtils.spaceSeparatedToList(redirectUris));
+        registerRequest.setJwksUri(jwksUri);
+        registerRequest.setTokenEndpointAuthMethod(AuthenticationMethod.CLIENT_SECRET_BASIC);
+        registerRequest.addCustomAttribute("oxAuthTrustedClient", "true");
+
+        List<GrantType> grantTypes = Arrays.asList(
+                GrantType.RESOURCE_OWNER_PASSWORD_CREDENTIALS
+        );
+        registerRequest.setGrantTypes(grantTypes);
+
+        String registerRequestContent = ServerUtil.toPrettyJson(registerRequest.getJSONParameters());
+
+        Response response = request.post(Entity.json(registerRequestContent));
+        String entity = response.readEntity(String.class);
+
+        showResponse("requestAccessTokenCustomAuth3Step1", response, entity);
+
+        assertEquals(response.getStatus(), 200, "Unexpected response code. " + entity);
+        assertNotNull(entity, "Unexpected result: " + entity);
+        try {
+            JSONObject jsonObj = new JSONObject(entity);
+            assertTrue(jsonObj.has(RegisterResponseParam.CLIENT_ID.toString()));
+            assertTrue(jsonObj.has(CLIENT_SECRET.toString()));
+            assertTrue(jsonObj.has(REGISTRATION_ACCESS_TOKEN.toString()));
+            assertTrue(jsonObj.has(REGISTRATION_CLIENT_URI.toString()));
+            assertTrue(jsonObj.has(CLIENT_ID_ISSUED_AT.toString()));
+            assertTrue(jsonObj.has(CLIENT_SECRET_EXPIRES_AT.toString()));
+
+            clientId3 = jsonObj.getString(RegisterResponseParam.CLIENT_ID.toString());
+            clientSecret3 = jsonObj.getString(CLIENT_SECRET.toString());
+        } catch (JSONException e) {
+            e.printStackTrace();
+            fail(e.getMessage() + "\nResponse was: " + entity);
+        }
+    }
+
+    @Parameters({"tokenPath", "userInum", "userEmail"})
+    @Test(dependsOnMethods = "requestAccessTokenCustomAuth3Step1")
+    public void requestAccessTokenCustomAuth3Step2(final String tokenPath, final String userInum,
+                                                   final String userEmail) throws Exception {
+        Builder request = ResteasyClientBuilder.newClient().target(url.toString() + tokenPath).request();
+
+        TokenRequest tokenRequest = new TokenRequest(GrantType.RESOURCE_OWNER_PASSWORD_CREDENTIALS);
+        tokenRequest.setScope("email read_stream manage_pages");
+
+        tokenRequest.setAuthUsername(clientId3);
+        tokenRequest.setAuthPassword(clientSecret3);
+        tokenRequest.setAuthenticationMethod(AuthenticationMethod.CLIENT_SECRET_BASIC);
+        tokenRequest.addCustomParameter("mail", userEmail);
+        tokenRequest.addCustomParameter("inum", userInum);
+
+        request.header("Authorization", "Basic " + tokenRequest.getEncodedCredentials());
+        request.header("Content-Type", MediaType.APPLICATION_FORM_URLENCODED);
+        Response response = request
+                .post(Entity.form(new MultivaluedHashMap<String, String>(tokenRequest.getParameters())));
+        String entity = response.readEntity(String.class);
+
+        showResponse("requestAccessTokenCustomAuth3Step2", response, entity);
+
+        assertEquals(response.getStatus(), 200, "Unexpected response code.");
+        assertTrue(
+                response.getHeaderString("Cache-Control") != null
+                        && response.getHeaderString("Cache-Control").equals("no-store"),
+                "Unexpected result: " + response.getHeaderString("Cache-Control"));
+        assertTrue(response.getHeaderString("Pragma") != null && response.getHeaderString("Pragma").equals("no-cache"),
+                "Unexpected result: " + response.getHeaderString("Pragma"));
+        assertTrue(!entity.equals(null), "Unexpected result: " + entity);
+        try {
+            JSONObject jsonObj = new JSONObject(entity);
+            assertTrue(jsonObj.has("access_token"), "Unexpected result: access_token not found");
+            assertTrue(jsonObj.has("token_type"), "Unexpected result: token_type not found");
+            assertTrue(jsonObj.has("scope"), "Unexpected result: scope not found");
+        } catch (JSONException e) {
+            e.printStackTrace();
+            fail(e.getMessage() + "\nResponse was: " + entity);
+        }
+    }
+
+    @Parameters({"registerPath", "redirectUris", "clientJwksUri"})
+    @Test
+    public void requestAccessTokenCustomAuth4Step1(final String registerPath, final String redirectUris,
+                                                   final String jwksUri) throws Exception {
+        Builder request = ResteasyClientBuilder.newClient().target(url.toString() + registerPath).request();
+
+        RegisterRequest registerRequest = new RegisterRequest(ApplicationType.WEB, "oxAuth test app",
+                StringUtils.spaceSeparatedToList(redirectUris));
+        registerRequest.setJwksUri(jwksUri);
+        registerRequest.setTokenEndpointAuthMethod(AuthenticationMethod.CLIENT_SECRET_JWT);
+        registerRequest.addCustomAttribute("oxAuthTrustedClient", "true");
+
+        List<GrantType> grantTypes = Arrays.asList(
+                GrantType.RESOURCE_OWNER_PASSWORD_CREDENTIALS
+        );
+        registerRequest.setGrantTypes(grantTypes);
+
+        String registerRequestContent = ServerUtil.toPrettyJson(registerRequest.getJSONParameters());
+
+        Response response = request.post(Entity.json(registerRequestContent));
+        String entity = response.readEntity(String.class);
+
+        showResponse("requestAccessTokenCustomAuth4Step1", response, entity);
+
+        assertEquals(response.getStatus(), 200, "Unexpected response code. " + entity);
+        assertNotNull(entity, "Unexpected result: " + entity);
+        try {
+            JSONObject jsonObj = new JSONObject(entity);
+            assertTrue(jsonObj.has(RegisterResponseParam.CLIENT_ID.toString()));
+            assertTrue(jsonObj.has(CLIENT_SECRET.toString()));
+            assertTrue(jsonObj.has(REGISTRATION_ACCESS_TOKEN.toString()));
+            assertTrue(jsonObj.has(REGISTRATION_CLIENT_URI.toString()));
+            assertTrue(jsonObj.has(CLIENT_ID_ISSUED_AT.toString()));
+            assertTrue(jsonObj.has(CLIENT_SECRET_EXPIRES_AT.toString()));
+
+            clientId4 = jsonObj.getString(RegisterResponseParam.CLIENT_ID.toString());
+            clientSecret4 = jsonObj.getString(CLIENT_SECRET.toString());
+        } catch (JSONException e) {
+            e.printStackTrace();
+            fail(e.getMessage() + "\nResponse was: " + entity);
+        }
+    }
+
+    @Parameters({"tokenPath", "userId", "userSecret", "audience", "RS256_keyId", "dnName", "keyStoreFile",
+            "keyStoreSecret"})
+    @Test(dependsOnMethods = "requestAccessTokenCustomAuth4Step1")
+    public void requestAccessTokenCustomAuth4Step2(final String tokenPath, final String userId, final String userSecret,
+                                                   final String audience, final String keyId, final String dnName, final String keyStoreFile,
+                                                   final String keyStoreSecret) throws Exception {
+        Builder request = ResteasyClientBuilder.newClient().target(url.toString() + tokenPath).request();
+
+        request.header("Content-Type", MediaType.APPLICATION_FORM_URLENCODED);
+
+        OxAuthCryptoProvider cryptoProvider = new OxAuthCryptoProvider(keyStoreFile, keyStoreSecret, dnName);
+
+        TokenRequest tokenRequest = new TokenRequest(GrantType.RESOURCE_OWNER_PASSWORD_CREDENTIALS);
+        tokenRequest.setScope("email read_stream manage_pages");
+
+        tokenRequest.setAuthUsername(clientId4);
+        tokenRequest.setAuthPassword(clientSecret4);
+        tokenRequest.setAuthenticationMethod(AuthenticationMethod.CLIENT_SECRET_JWT);
+        tokenRequest.setCryptoProvider(cryptoProvider);
+        tokenRequest.setKeyId(keyId);
+        tokenRequest.setAudience(audience);
+        tokenRequest.addCustomParameter("uid", userId);
+        tokenRequest.addCustomParameter("pwd", userSecret);
+
+        Response response = request
+                .post(Entity.form(new MultivaluedHashMap<String, String>(tokenRequest.getParameters())));
+        String entity = response.readEntity(String.class);
+
+        showResponse("requestAccessTokenCustomAuth4Step2", response, entity);
+
+        assertEquals(response.getStatus(), 200, "Unexpected response code.");
+        assertTrue(
+                response.getHeaderString("Cache-Control") != null
+                        && response.getHeaderString("Cache-Control").equals("no-store"),
+                "Unexpected result: " + response.getHeaderString("Cache-Control"));
+        assertTrue(response.getHeaderString("Pragma") != null && response.getHeaderString("Pragma").equals("no-cache"),
+                "Unexpected result: " + response.getHeaderString("Pragma"));
+        assertTrue(!entity.equals(null), "Unexpected result: " + entity);
+        try {
+            JSONObject jsonObj = new JSONObject(entity);
+            assertTrue(jsonObj.has("access_token"), "Unexpected result: access_token not found");
+            assertTrue(jsonObj.has("token_type"), "Unexpected result: token_type not found");
+            assertTrue(jsonObj.has("scope"), "Unexpected result: scope not found");
+        } catch (Exception e) {
+            fail(e.getMessage(), e);
+        }
+    }
+
+    @Parameters({"authorizePath", "userId", "userSecret", "redirectUri"})
+    @Test(dependsOnMethods = "dynamicClientRegistration")
+    public void requestAccessTokenCustomAuthStep1(final String authorizePath, final String userId,
+                                                  final String userSecret, final String redirectUri) throws Exception {
+        final String state = UUID.randomUUID().toString();
+
+        Builder request = ResteasyClientBuilder.newClient().target(url.toString() + authorizePath).request();
+
+        request.header("Content-Type", MediaType.APPLICATION_FORM_URLENCODED);
+
+        List<ResponseType> responseTypes = new ArrayList<ResponseType>();
+        responseTypes.add(ResponseType.CODE);
+        List<String> scopes = Arrays.asList("openid", "profile", "address", "email");
+
+        AuthorizationRequest authorizationRequest = new AuthorizationRequest(responseTypes, clientId, scopes,
+                redirectUri, null);
+        authorizationRequest.setState(state);
+        authorizationRequest.getPrompts().add(Prompt.NONE);
+        authorizationRequest.addCustomParameter("uid", userId);
+        authorizationRequest.addCustomParameter("pwd", userSecret);
+
+        Response response = request
+                .post(Entity.form(new MultivaluedHashMap<String, String>(authorizationRequest.getParameters())));
+        String entity = response.readEntity(String.class);
+
+        showResponse("requestAccessTokenCustomAuthStep1", response, entity);
+
+        assertEquals(response.getStatus(), 302, "Unexpected response code.");
+        assertNotNull(response.getLocation(), "Unexpected result: " + response.getLocation());
+
+        if (response.getLocation() != null) {
+            try {
+                URI uri = new URI(response.getLocation().toString());
+                assertNotNull(uri.getQuery(), "The query string is null");
+
+                Map<String, String> params = QueryStringDecoder.decode(uri.getQuery());
+
+                assertNotNull(params.get(AuthorizeResponseParam.CODE), "The code is null");
+                assertNotNull(params.get(AuthorizeResponseParam.SCOPE), "The scope is null");
+                assertNotNull(params.get(AuthorizeResponseParam.STATE), "The state is null");
+                assertEquals(params.get(AuthorizeResponseParam.STATE), state);
+
+                authorizationCode1 = params.get(AuthorizeResponseParam.CODE);
+            } catch (URISyntaxException e) {
+                e.printStackTrace();
+                fail("Response URI is not well formed");
+            } catch (Exception e) {
+                e.printStackTrace();
+                fail(e.getMessage());
+            }
+        }
+    }
+
+    @Parameters({"tokenPath", "validateTokenPath", "redirectUri"})
+    @Test(dependsOnMethods = {"requestAccessTokenCustomAuthStep1", "dynamicClientRegistration"})
+    public void requestAccessTokenCustomAuthStep2(final String tokenPath, final String validateTokenPath,
+                                                  final String redirectUri) throws Exception {
+        Builder request = ResteasyClientBuilder.newClient().target(url.toString() + tokenPath).request();
+
+        TokenRequest tokenRequest = new TokenRequest(GrantType.AUTHORIZATION_CODE);
+        tokenRequest.setCode(authorizationCode1);
+        tokenRequest.setRedirectUri(redirectUri);
+        tokenRequest.setAuthUsername(clientId);
+        tokenRequest.setAuthPassword(clientSecret);
+
+        request.header("Authorization", "Basic " + tokenRequest.getEncodedCredentials());
+        request.header("Content-Type", MediaType.APPLICATION_FORM_URLENCODED);
+
+        Response response = request
+                .post(Entity.form(new MultivaluedHashMap<String, String>(tokenRequest.getParameters())));
+        String entity = response.readEntity(String.class);
+
+        showResponse("requestAccessTokenCustomAuthStep2", response, entity);
+
+        assertEquals(response.getStatus(), 200, "Unexpected response code.");
+        assertTrue(
+                response.getHeaderString("Cache-Control") != null
+                        && response.getHeaderString("Cache-Control").equals("no-store"),
+                "Unexpected result: " + response.getHeaderString("Cache-Control"));
+        assertTrue(response.getHeaderString("Pragma") != null && response.getHeaderString("Pragma").equals("no-cache"),
+                "Unexpected result: " + response.getHeaderString("Pragma"));
+        assertNotNull(entity, "Unexpected result: " + entity);
+        try {
+            JSONObject jsonObj = new JSONObject(entity);
+            assertTrue(jsonObj.has("access_token"), "Unexpected result: access_token not found");
+            assertTrue(jsonObj.has("token_type"), "Unexpected result: token_type not found");
+            assertTrue(jsonObj.has("refresh_token"), "Unexpected result: refresh_token not found");
+            assertTrue(jsonObj.has("id_token"), "Unexpected result: id_token not found");
+
+            String accessToken = jsonObj.getString("access_token");
+            String refreshToken = jsonObj.getString("refresh_token");
+        } catch (JSONException e) {
+            e.printStackTrace();
+            fail(e.getMessage() + "\nResponse was: " + entity);
+        } catch (Exception e) {
+            e.printStackTrace();
+            fail(e.getMessage());
+        }
+    }
+}
diff --git a/oxAuth/Server/src/test/java/org/gluu/oxauth/ws/rs/UserInfoRestWebServiceEmbeddedTest.java b/oxAuth/Server/src/test/java/org/gluu/oxauth/ws/rs/UserInfoRestWebServiceEmbeddedTest.java
new file mode 100644
index 00000000..0f010f3a
--- /dev/null
+++ b/oxAuth/Server/src/test/java/org/gluu/oxauth/ws/rs/UserInfoRestWebServiceEmbeddedTest.java
@@ -0,0 +1,962 @@
+/*
+ * oxAuth is available under the MIT License (2008). See http://opensource.org/licenses/MIT for full text.
+ *
+ * Copyright (c) 2014, Gluu
+ */
+
+package org.gluu.oxauth.ws.rs;
+
+import org.apache.commons.codec.binary.Base64;
+import org.json.JSONException;
+import org.json.JSONObject;
+import org.gluu.oxauth.BaseTest;
+import org.gluu.oxauth.client.*;
+import org.gluu.oxauth.client.model.authorize.Claim;
+import org.gluu.oxauth.client.model.authorize.ClaimValue;
+import org.gluu.oxauth.client.model.authorize.JwtAuthorizationRequest;
+import org.gluu.oxauth.model.authorize.AuthorizeResponseParam;
+import org.gluu.oxauth.model.common.*;
+import org.gluu.oxauth.model.crypto.OxAuthCryptoProvider;
+import org.gluu.oxauth.model.crypto.signature.SignatureAlgorithm;
+import org.gluu.oxauth.model.exception.InvalidJwtException;
+import org.gluu.oxauth.model.jwt.Jwt;
+import org.gluu.oxauth.model.jwt.JwtClaimName;
+import org.gluu.oxauth.model.register.ApplicationType;
+import org.gluu.oxauth.model.register.RegisterResponseParam;
+import org.gluu.oxauth.model.util.StringUtils;
+import org.gluu.oxauth.ws.rs.ClientTestUtil;
+import org.gluu.oxauth.util.ServerUtil;
+import org.jboss.arquillian.test.api.ArquillianResource;
+import org.jboss.resteasy.client.jaxrs.ResteasyClientBuilder;
+import org.testng.annotations.Parameters;
+import org.testng.annotations.Test;
+
+import javax.ws.rs.client.Entity;
+import javax.ws.rs.client.Invocation.Builder;
+import javax.ws.rs.core.MediaType;
+import javax.ws.rs.core.MultivaluedHashMap;
+import javax.ws.rs.core.Response;
+import java.net.URI;
+import java.net.URISyntaxException;
+import java.util.*;
+
+import static org.gluu.oxauth.model.register.RegisterResponseParam.*;
+import static org.testng.Assert.*;
+
+/**
+ * Functional tests for User Info Web Services (embedded)
+ *
+ * @author Javier Rojas Blum
+ * @version May 14, 2019
+ */
+public class UserInfoRestWebServiceEmbeddedTest extends BaseTest {
+
+    @ArquillianResource
+    private URI url;
+
+    private static String clientId;
+    private static String clientSecret;
+
+    private static String accessToken1;
+    private static String accessToken2;
+    private static String accessToken3;
+    private static String accessToken4;
+    private static String accessToken5;
+    private static String accessToken6;
+    private static String accessToken7;
+    private static String clientId1;
+    private static String clientId2;
+    private static String clientId3;
+    private static String clientSecret1;
+    private static String clientSecret2;
+    private static String clientSecret3;
+
+    @Parameters({"registerPath", "redirectUris", "sectorIdentifierUri"})
+    @Test
+    public void dynamicClientRegistration(final String registerPath, final String redirectUris,
+                                          final String sectorIdentifierUri) throws Exception {
+        Builder request = ResteasyClientBuilder.newClient().target(url.toString() + registerPath).request();
+
+        List<ResponseType> responseTypes = Arrays.asList(ResponseType.CODE, ResponseType.TOKEN, ResponseType.ID_TOKEN);
+
+        RegisterRequest registerRequest = new RegisterRequest(ApplicationType.WEB, "oxAuth test app",
+                StringUtils.spaceSeparatedToList(redirectUris));
+        registerRequest.setResponseTypes(responseTypes);
+        registerRequest.setSectorIdentifierUri(sectorIdentifierUri);
+        registerRequest.setSubjectType(SubjectType.PAIRWISE);
+        registerRequest.addCustomAttribute("oxAuthTrustedClient", "true");
+        registerRequest.setClaims(Arrays.asList(
+                "iname",
+                "o"));
+
+        List<GrantType> grantTypes = Arrays.asList(
+                GrantType.RESOURCE_OWNER_PASSWORD_CREDENTIALS
+        );
+        registerRequest.setGrantTypes(grantTypes);
+
+        String registerRequestContent = ServerUtil.toPrettyJson(registerRequest.getJSONParameters());
+
+        Response response = request.post(Entity.json(registerRequestContent));
+        String entity = response.readEntity(String.class);
+
+        showResponse("dynamicClientRegistration", response, entity);
+
+        assertEquals(response.getStatus(), 200, "Unexpected response code. " + entity);
+        assertNotNull(entity, "Unexpected result: " + entity);
+        try {
+            final RegisterResponse registerResponse = RegisterResponse.valueOf(entity);
+            ClientTestUtil.assert_(registerResponse);
+
+            clientId = registerResponse.getClientId();
+            clientSecret = registerResponse.getClientSecret();
+        } catch (Exception e) {
+            fail(e.getMessage(), e);
+        }
+    }
+
+    @Parameters({"authorizePath", "userId", "userSecret", "redirectUri"})
+    @Test(dependsOnMethods = "dynamicClientRegistration")
+    public void requestUserInfoStep1ImplicitFlow(final String authorizePath, final String userId,
+                                                 final String userSecret, final String redirectUri) throws Exception {
+        final String userEncodedCredentials = Base64.encodeBase64String((userId + ":" + userSecret).getBytes());
+        final String state = UUID.randomUUID().toString();
+
+        List<ResponseType> responseTypes = Arrays.asList(ResponseType.TOKEN);
+        List<String> scopes = Arrays.asList("openid", "profile", "address", "email");
+        String nonce = UUID.randomUUID().toString();
+
+        AuthorizationRequest authorizationRequest = new AuthorizationRequest(responseTypes, clientId, scopes,
+                redirectUri, nonce);
+        authorizationRequest.setState(state);
+        authorizationRequest.getPrompts().add(Prompt.NONE);
+
+        Builder request = ResteasyClientBuilder.newClient()
+                .target(url.toString() + authorizePath + "?" + authorizationRequest.getQueryString()).request();
+        request.header("Authorization", "Basic " + userEncodedCredentials);
+        request.header("Accept", MediaType.TEXT_PLAIN);
+
+        Response response = request.get();
+        String entity = response.readEntity(String.class);
+
+        showResponse("requestUserInfo step 1 Implicit Flow", response, entity);
+
+        assertEquals(response.getStatus(), 302, "Unexpected response code.");
+        assertNotNull(response.getLocation(), "Unexpected result: " + response.getLocation());
+
+        if (response.getLocation() != null) {
+            try {
+                URI uri = new URI(response.getLocation().toString());
+                assertNotNull(uri.getFragment(), "Fragment is null");
+
+                Map<String, String> params = QueryStringDecoder.decode(uri.getFragment());
+
+                assertNotNull(params.get(AuthorizeResponseParam.ACCESS_TOKEN), "The access token is null");
+                assertNotNull(params.get(AuthorizeResponseParam.TOKEN_TYPE), "The token type is null");
+                assertNotNull(params.get(AuthorizeResponseParam.EXPIRES_IN), "The expires in value is null");
+                assertNotNull(params.get(AuthorizeResponseParam.SCOPE), "The scope must be null");
+                assertNull(params.get("refresh_token"), "The refresh_token must be null");
+                assertNotNull(params.get(AuthorizeResponseParam.STATE), "The state is null");
+                assertEquals(params.get(AuthorizeResponseParam.STATE), state);
+
+                accessToken1 = params.get(AuthorizeResponseParam.ACCESS_TOKEN);
+            } catch (URISyntaxException e) {
+                e.printStackTrace();
+                fail("Response URI is not well formed");
+            } catch (Exception e) {
+                e.printStackTrace();
+                fail("Unexpected error");
+            }
+        }
+    }
+
+    @Parameters({"userInfoPath"})
+    @Test(dependsOnMethods = "requestUserInfoStep1ImplicitFlow")
+    public void requestUserInfoStep2PostImplicitFlow(final String userInfoPath) throws Exception {
+        Builder request = ResteasyClientBuilder.newClient().target(url.toString() + userInfoPath).request();
+
+        request.header("Authorization", "Bearer " + accessToken1);
+        request.header("Content-Type", MediaType.APPLICATION_FORM_URLENCODED);
+
+        UserInfoRequest userInfoRequest = new UserInfoRequest(null);
+
+        Response response = request
+                .post(Entity.form(new MultivaluedHashMap<String, String>(userInfoRequest.getParameters())));
+        String entity = response.readEntity(String.class);
+
+        showResponse("requestUserInfo step 2 POST Implicit Flow", response, entity);
+
+        assertEquals(response.getStatus(), 200, "Unexpected response code.");
+        assertTrue(
+                response.getHeaderString("Cache-Control") != null
+                        && response.getHeaderString("Cache-Control").equals("no-store, private"),
+                "Unexpected result: " + response.getHeaderString("Cache-Control"));
+        assertTrue(response.getHeaderString("Pragma") != null && response.getHeaderString("Pragma").equals("no-cache"),
+                "Unexpected result: " + response.getHeaderString("Pragma"));
+        assertNotNull(entity, "Unexpected result: " + entity);
+        try {
+            JSONObject jsonObj = new JSONObject(entity);
+            assertTrue(jsonObj.has(JwtClaimName.SUBJECT_IDENTIFIER));
+            assertTrue(jsonObj.has(JwtClaimName.NAME));
+            assertTrue(jsonObj.has(JwtClaimName.GIVEN_NAME));
+            assertTrue(jsonObj.has(JwtClaimName.FAMILY_NAME));
+            assertTrue(jsonObj.has(JwtClaimName.EMAIL));
+        } catch (JSONException e) {
+            e.printStackTrace();
+            fail(e.getMessage() + "\nResponse was: " + entity);
+        } catch (Exception e) {
+            e.printStackTrace();
+            fail(e.getMessage());
+        }
+    }
+
+    @Parameters({"userInfoPath"})
+    @Test(dependsOnMethods = "requestUserInfoStep1ImplicitFlow")
+    public void requestUserInfoStep2GetImplicitFlow(final String userInfoPath) throws Exception {
+        UserInfoRequest userInfoRequest = new UserInfoRequest(null);
+
+        Builder request = ResteasyClientBuilder.newClient()
+                .target(url.toString() + userInfoPath + "?" + userInfoRequest.getQueryString()).request();
+        request.header("Authorization", "Bearer " + accessToken1);
+
+        Response response = request.get();
+        String entity = response.readEntity(String.class);
+
+        showResponse("requestUserInfo step 2 GET Implicit Flow", response, entity);
+
+        assertEquals(response.getStatus(), 200, "Unexpected response code.");
+        assertTrue(
+                response.getHeaderString("Cache-Control") != null
+                        && response.getHeaderString("Cache-Control").equals("no-store, private"),
+                "Unexpected result: " + response.getHeaderString("Cache-Control"));
+        assertTrue(response.getHeaderString("Pragma") != null && response.getHeaderString("Pragma").equals("no-cache"),
+                "Unexpected result: " + response.getHeaderString("Pragma"));
+        assertNotNull(entity, "Unexpected result: " + entity);
+        try {
+            JSONObject jsonObj = new JSONObject(entity);
+            assertTrue(jsonObj.has(JwtClaimName.SUBJECT_IDENTIFIER));
+            assertTrue(jsonObj.has(JwtClaimName.NAME));
+            assertTrue(jsonObj.has(JwtClaimName.GIVEN_NAME));
+            assertTrue(jsonObj.has(JwtClaimName.FAMILY_NAME));
+            assertTrue(jsonObj.has(JwtClaimName.EMAIL));
+        } catch (JSONException e) {
+            e.printStackTrace();
+            fail(e.getMessage() + "\nResponse was: " + entity);
+        } catch (Exception e) {
+            e.printStackTrace();
+            fail(e.getMessage());
+        }
+    }
+
+    @Parameters({"tokenPath", "userId", "userSecret"})
+    @Test(dependsOnMethods = "dynamicClientRegistration")
+    public void requestUserInfoStep1PasswordFlow(final String tokenPath, final String userId, final String userSecret)
+            throws Exception {
+        // Testing with valid parameters
+        Builder request = ResteasyClientBuilder.newClient().target(url.toString() + tokenPath).request();
+
+        TokenRequest tokenRequest = new TokenRequest(GrantType.RESOURCE_OWNER_PASSWORD_CREDENTIALS);
+        tokenRequest.setUsername(userId);
+        tokenRequest.setPassword(userSecret);
+        tokenRequest.setScope("openid profile address email");
+        tokenRequest.setAuthUsername(clientId);
+        tokenRequest.setAuthPassword(clientSecret);
+
+        request.header("Authorization", "Basic " + tokenRequest.getEncodedCredentials());
+        request.header("Content-Type", MediaType.APPLICATION_FORM_URLENCODED);
+
+        Response response = request
+                .post(Entity.form(new MultivaluedHashMap<String, String>(tokenRequest.getParameters())));
+        String entity = response.readEntity(String.class);
+
+        showResponse("requestUserInfoStep1PasswordFlow", response, entity);
+
+        assertEquals(response.getStatus(), 200, "Unexpected response code.");
+        assertTrue(
+                response.getHeaderString("Cache-Control") != null
+                        && response.getHeaderString("Cache-Control").equals("no-store"),
+                "Unexpected result: " + response.getHeaderString("Cache-Control"));
+        assertTrue(response.getHeaderString("Pragma") != null && response.getHeaderString("Pragma").equals("no-cache"),
+                "Unexpected result: " + response.getHeaderString("Pragma"));
+        assertTrue(!entity.equals(null), "Unexpected result: " + entity);
+        try {
+            JSONObject jsonObj = new JSONObject(entity);
+            assertTrue(jsonObj.has("access_token"), "Unexpected result: access_token not found");
+            assertTrue(jsonObj.has("token_type"), "Unexpected result: token_type not found");
+            assertTrue(jsonObj.has("refresh_token"), "Unexpected result: refresh_token not found");
+            assertTrue(jsonObj.has("scope"), "Unexpected result: scope not found");
+
+            accessToken4 = jsonObj.getString("access_token");
+        } catch (JSONException e) {
+            e.printStackTrace();
+            fail(e.getMessage() + "\nResponse was: " + entity);
+        }
+    }
+
+    @Parameters({"userInfoPath"})
+    @Test(dependsOnMethods = "requestUserInfoStep1PasswordFlow")
+    public void requestUserInfoStep2PasswordFlow(final String userInfoPath) throws Exception {
+        Builder request = ResteasyClientBuilder.newClient().target(url.toString() + userInfoPath).request();
+        request.header("Authorization", "Bearer " + accessToken4);
+        request.header("Content-Type", MediaType.APPLICATION_FORM_URLENCODED);
+
+        UserInfoRequest userInfoRequest = new UserInfoRequest(null);
+
+        Response response = request
+                .post(Entity.form(new MultivaluedHashMap<String, String>(userInfoRequest.getParameters())));
+        String entity = response.readEntity(String.class);
+
+        showResponse("requestUserInfoStep2PasswordFlow", response, entity);
+
+        assertEquals(response.getStatus(), 200, "Unexpected response code.");
+        assertTrue(
+                response.getHeaderString("Cache-Control") != null
+                        && response.getHeaderString("Cache-Control").equals("no-store, private"),
+                "Unexpected result: " + response.getHeaderString("Cache-Control"));
+        assertTrue(response.getHeaderString("Pragma") != null && response.getHeaderString("Pragma").equals("no-cache"),
+                "Unexpected result: " + response.getHeaderString("Pragma"));
+        assertNotNull(entity, "Unexpected result: " + entity);
+        try {
+            JSONObject jsonObj = new JSONObject(entity);
+            assertTrue(jsonObj.has(JwtClaimName.SUBJECT_IDENTIFIER));
+            assertTrue(jsonObj.has(JwtClaimName.NAME));
+            assertTrue(jsonObj.has(JwtClaimName.GIVEN_NAME));
+            assertTrue(jsonObj.has(JwtClaimName.FAMILY_NAME));
+            assertTrue(jsonObj.has(JwtClaimName.EMAIL));
+        } catch (JSONException e) {
+            e.printStackTrace();
+            fail(e.getMessage() + "\nResponse was: " + entity);
+        } catch (Exception e) {
+            e.printStackTrace();
+            fail(e.getMessage());
+        }
+    }
+
+    @Parameters({"userInfoPath"})
+    @Test
+    public void requestUserInfoInvalidRequest(final String userInfoPath) throws Exception {
+        UserInfoRequest userInfoRequest = new UserInfoRequest(null);
+
+        Builder request = ResteasyClientBuilder.newClient().target(url.toString() + userInfoPath).request();
+        Response response = request
+                .post(Entity.form(new MultivaluedHashMap<String, String>(userInfoRequest.getParameters())));
+        String entity = response.readEntity(String.class);
+
+        showResponse("requestUserInfoInvalidRequest", response, entity);
+
+        assertEquals(response.getStatus(), 400, "Unexpected response code.");
+        assertNotNull(entity, "Unexpected result: " + entity);
+        try {
+            JSONObject jsonObj = new JSONObject(entity);
+            assertTrue(jsonObj.has("error"), "The error type is null");
+            assertTrue(jsonObj.has("error_description"), "The error description is null");
+        } catch (JSONException e) {
+            e.printStackTrace();
+            fail(e.getMessage() + "\nResponse was: " + entity);
+        }
+    }
+
+    @Parameters({"userInfoPath"})
+    @Test
+    public void requestUserInfoInvalidToken(final String userInfoPath) throws Exception {
+        UserInfoRequest userInfoRequest = new UserInfoRequest("INVALID_ACCESS_TOKEN");
+        userInfoRequest.setAuthorizationMethod(AuthorizationMethod.FORM_ENCODED_BODY_PARAMETER);
+
+        Builder request = ResteasyClientBuilder.newClient().target(url.toString() + userInfoPath).request();
+        Response response = request
+                .post(Entity.form(new MultivaluedHashMap<String, String>(userInfoRequest.getParameters())));
+        String entity = response.readEntity(String.class);
+
+        showResponse("requestUserInfoInvalidToken", response, entity);
+
+        assertEquals(response.getStatus(), 401, "Unexpected response code.");
+        assertNotNull(entity, "Unexpected result: " + entity);
+        try {
+            JSONObject jsonObj = new JSONObject(entity);
+            assertTrue(jsonObj.has("error"), "The error type is null");
+            assertTrue(jsonObj.has("error_description"), "The error description is null");
+        } catch (JSONException e) {
+            e.printStackTrace();
+            fail(e.getMessage() + "\nResponse was: " + entity);
+        }
+    }
+
+    @Parameters({"userInfoPath"})
+    @Test
+    public void requestUserInfoInvalidSchema(final String userInfoPath) throws Exception {
+        Builder request = ResteasyClientBuilder.newClient().target(url.toString() + userInfoPath).request();
+        request.header("Content-Type", MediaType.APPLICATION_FORM_URLENCODED);
+
+        UserInfoRequest userInfoRequest = new UserInfoRequest("INVALID_ACCESS_TOKEN");
+
+        Map<String, String> userInfoParameters = userInfoRequest.getParameters();
+        userInfoParameters.put("schema", "INVALID_SCHEMA");
+
+        Response response = request
+                .post(Entity.form(new MultivaluedHashMap<String, String>(userInfoRequest.getParameters())));
+        String entity = response.readEntity(String.class);
+
+        showResponse("requestUserInfoInvalidSchema", response, entity);
+
+        assertEquals(response.getStatus(), 400, "Unexpected response code.");
+        assertNotNull(entity, "Unexpected result: " + entity);
+        try {
+            JSONObject jsonObj = new JSONObject(entity);
+            assertTrue(jsonObj.has("error"), "The error type is null");
+            assertTrue(jsonObj.has("error_description"), "The error description is null");
+        } catch (JSONException e) {
+            e.printStackTrace();
+            fail(e.getMessage() + "\nResponse was: " + entity);
+        }
+    }
+
+    @Parameters({"authorizePath", "userId", "userSecret", "redirectUri"})
+    @Test(dependsOnMethods = "dynamicClientRegistration")
+    public void requestUserInfoAdditionalClaims(final String authorizePath, final String userId,
+                                                final String userSecret, final String redirectUri) throws Exception {
+        final String state = UUID.randomUUID().toString();
+
+        List<ResponseType> responseTypes = new ArrayList<ResponseType>();
+        responseTypes.add(ResponseType.TOKEN);
+        List<String> scopes = Arrays.asList("openid", "profile", "address", "email");
+        String nonce = UUID.randomUUID().toString();
+
+        AuthorizationRequest authorizationRequest = new AuthorizationRequest(responseTypes, clientId, scopes,
+                redirectUri, nonce);
+        authorizationRequest.setState(state);
+        authorizationRequest.getPrompts().add(Prompt.NONE);
+        authorizationRequest.setAuthUsername(userId);
+        authorizationRequest.setAuthPassword(userSecret);
+
+        OxAuthCryptoProvider cryptoProvider = new OxAuthCryptoProvider();
+
+        JwtAuthorizationRequest jwtAuthorizationRequest = new JwtAuthorizationRequest(authorizationRequest,
+                SignatureAlgorithm.HS256, clientSecret, cryptoProvider);
+        jwtAuthorizationRequest.addUserInfoClaim(new Claim("invalid", ClaimValue.createEssential(false)));
+        jwtAuthorizationRequest.addUserInfoClaim(new Claim("iname", ClaimValue.createNull()));
+        jwtAuthorizationRequest.addUserInfoClaim(new Claim("o", ClaimValue.createEssential(true)));
+
+        String authJwt = jwtAuthorizationRequest.getEncodedJwt();
+        authorizationRequest.setRequest(authJwt);
+        System.out.println("Request JWT: " + authJwt);
+
+        Builder request = ResteasyClientBuilder.newClient()
+                .target(url.toString() + authorizePath + "?" + authorizationRequest.getQueryString()).request();
+        request.header("Authorization", "Basic " + authorizationRequest.getEncodedCredentials());
+        request.header("Accept", MediaType.TEXT_PLAIN);
+
+        Response response = request.get();
+        String entity = response.readEntity(String.class);
+
+        showResponse("requestUserInfoAdditionalClaims step 1", response, entity);
+
+        assertEquals(response.getStatus(), 302, "Unexpected response code.");
+        assertNotNull(response.getLocation(), "Unexpected result: " + response.getLocation());
+
+        if (response.getLocation() != null) {
+            try {
+                URI uri = new URI(response.getLocation().toString());
+                assertNotNull(uri.getFragment(), "Fragment is null");
+
+                Map<String, String> params = QueryStringDecoder.decode(uri.getFragment());
+
+                assertNotNull(params.get(AuthorizeResponseParam.ACCESS_TOKEN), "The access token is null");
+                assertNotNull(params.get(AuthorizeResponseParam.TOKEN_TYPE), "The token type is null");
+                assertNotNull(params.get(AuthorizeResponseParam.EXPIRES_IN), "The expires in value is null");
+                assertNotNull(params.get(AuthorizeResponseParam.SCOPE), "The scope must be null");
+                assertNull(params.get("refresh_token"), "The refresh_token must be null");
+                assertNotNull(params.get(AuthorizeResponseParam.STATE), "The state is null");
+                assertEquals(params.get(AuthorizeResponseParam.STATE), state);
+
+                accessToken3 = params.get(AuthorizeResponseParam.ACCESS_TOKEN);
+            } catch (URISyntaxException e) {
+                e.printStackTrace();
+                fail("Response URI is not well formed");
+            } catch (Exception e) {
+                e.printStackTrace();
+                fail(e.getMessage());
+            }
+        }
+    }
+
+    @Parameters({"userInfoPath"})
+    @Test(dependsOnMethods = "requestUserInfoAdditionalClaims")
+    public void requestUserInfoAdditionalClaimsStep2(final String userInfoPath) throws Exception {
+        Builder request = ResteasyClientBuilder.newClient().target(url.toString() + userInfoPath).request();
+
+        request.header("Content-Type", MediaType.APPLICATION_FORM_URLENCODED);
+
+        UserInfoRequest userInfoRequest = new UserInfoRequest(accessToken3);
+        userInfoRequest.setAuthorizationMethod(AuthorizationMethod.FORM_ENCODED_BODY_PARAMETER);
+
+        Response response = request
+                .post(Entity.form(new MultivaluedHashMap<String, String>(userInfoRequest.getParameters())));
+        String entity = response.readEntity(String.class);
+
+        showResponse("requestUserInfoAdditionalClaims step 2", response, entity);
+
+        assertEquals(response.getStatus(), 200, "Unexpected response code.");
+        assertTrue(
+                response.getHeaderString("Cache-Control") != null
+                        && response.getHeaderString("Cache-Control").equals("no-store, private"),
+                "Unexpected result: " + response.getHeaderString("Cache-Control"));
+        assertTrue(response.getHeaderString("Pragma") != null && response.getHeaderString("Pragma").equals("no-cache"),
+                "Unexpected result: " + response.getHeaderString("Pragma"));
+        assertNotNull(entity, "Unexpected result: " + entity);
+        try {
+            JSONObject jsonObj = new JSONObject(entity);
+            assertTrue(jsonObj.has(JwtClaimName.SUBJECT_IDENTIFIER));
+            assertTrue(jsonObj.has(JwtClaimName.NAME));
+            assertTrue(jsonObj.has(JwtClaimName.GIVEN_NAME));
+            assertTrue(jsonObj.has(JwtClaimName.FAMILY_NAME));
+            assertTrue(jsonObj.has(JwtClaimName.EMAIL));
+
+            // Custom attributes
+            assertTrue(jsonObj.has("iname"));
+            assertTrue(jsonObj.has("o"));
+        } catch (JSONException e) {
+            e.printStackTrace();
+            fail(e.getMessage() + "\nResponse was: " + entity);
+        } catch (Exception e) {
+            e.printStackTrace();
+            fail(e.getMessage());
+        }
+    }
+
+    @Parameters({"registerPath", "redirectUris"})
+    @Test
+    public void requestUserInfoHS256Step1(final String registerPath, final String redirectUris) throws Exception {
+
+        Builder request = ResteasyClientBuilder.newClient().target(url.toString() + registerPath).request();
+
+        List<ResponseType> responseTypes = Arrays.asList(ResponseType.TOKEN);
+
+        RegisterRequest registerRequest = new RegisterRequest(ApplicationType.WEB, "oxAuth test app",
+                StringUtils.spaceSeparatedToList(redirectUris));
+        registerRequest.setResponseTypes(responseTypes);
+        registerRequest.setUserInfoSignedResponseAlg(SignatureAlgorithm.HS256);
+        registerRequest.addCustomAttribute("oxAuthTrustedClient", "true");
+
+        List<GrantType> grantTypes = Arrays.asList(
+                GrantType.RESOURCE_OWNER_PASSWORD_CREDENTIALS
+        );
+        registerRequest.setGrantTypes(grantTypes);
+
+        String registerRequestContent = ServerUtil.toPrettyJson(registerRequest.getJSONParameters());
+
+        Response response = request.post(Entity.json(registerRequestContent));
+        String entity = response.readEntity(String.class);
+
+        showResponse("requestUserInfoHS256Step1", response, entity);
+
+        assertEquals(response.getStatus(), 200, "Unexpected response code. " + entity);
+        assertNotNull(entity, "Unexpected result: " + entity);
+        try {
+            JSONObject jsonObj = new JSONObject(entity);
+            assertTrue(jsonObj.has(RegisterResponseParam.CLIENT_ID.toString()));
+            assertTrue(jsonObj.has(CLIENT_SECRET.toString()));
+            assertTrue(jsonObj.has(REGISTRATION_ACCESS_TOKEN.toString()));
+            assertTrue(jsonObj.has(REGISTRATION_CLIENT_URI.toString()));
+            assertTrue(jsonObj.has(CLIENT_ID_ISSUED_AT.toString()));
+            assertTrue(jsonObj.has(CLIENT_SECRET_EXPIRES_AT.toString()));
+
+            clientId1 = jsonObj.getString(RegisterResponseParam.CLIENT_ID.toString());
+            clientSecret1 = jsonObj.getString(CLIENT_SECRET.toString());
+        } catch (JSONException e) {
+            e.printStackTrace();
+            fail(e.getMessage() + "\nResponse was: " + entity);
+        }
+    }
+
+    @Parameters({"authorizePath", "userId", "userSecret", "redirectUri"})
+    @Test(dependsOnMethods = "requestUserInfoHS256Step1")
+    public void requestUserInfoHS256Step2(final String authorizePath, final String userId, final String userSecret,
+                                          final String redirectUri) throws Exception {
+        final String state = UUID.randomUUID().toString();
+
+        List<ResponseType> responseTypes = Arrays.asList(ResponseType.TOKEN);
+        List<String> scopes = Arrays.asList("openid", "profile", "email");
+        String nonce = UUID.randomUUID().toString();
+
+        AuthorizationRequest authorizationRequest = new AuthorizationRequest(responseTypes, clientId1, scopes,
+                redirectUri, nonce);
+        authorizationRequest.setState(state);
+        authorizationRequest.getPrompts().add(Prompt.NONE);
+        authorizationRequest.setAuthUsername(userId);
+        authorizationRequest.setAuthPassword(userSecret);
+
+        OxAuthCryptoProvider cryptoProvider = new OxAuthCryptoProvider();
+
+        JwtAuthorizationRequest jwtAuthorizationRequest = new JwtAuthorizationRequest(authorizationRequest,
+                SignatureAlgorithm.HS256, clientSecret1, cryptoProvider);
+        jwtAuthorizationRequest.addUserInfoClaim(new Claim(JwtClaimName.NAME, ClaimValue.createNull()));
+        jwtAuthorizationRequest.addUserInfoClaim(new Claim(JwtClaimName.NICKNAME, ClaimValue.createEssential(false)));
+        jwtAuthorizationRequest.addUserInfoClaim(new Claim(JwtClaimName.EMAIL, ClaimValue.createNull()));
+        jwtAuthorizationRequest.addUserInfoClaim(new Claim(JwtClaimName.EMAIL_VERIFIED, ClaimValue.createNull()));
+        jwtAuthorizationRequest.addUserInfoClaim(new Claim(JwtClaimName.PICTURE, ClaimValue.createEssential(false)));
+        String authJwt = jwtAuthorizationRequest.getEncodedJwt();
+        authorizationRequest.setRequest(authJwt);
+        System.out.println("Request JWT: " + authJwt);
+
+        Builder request = ResteasyClientBuilder.newClient()
+                .target(url.toString() + authorizePath + "?" + authorizationRequest.getQueryString()).request();
+        request.header("Authorization", "Basic " + authorizationRequest.getEncodedCredentials());
+        request.header("Accept", MediaType.TEXT_PLAIN);
+
+        Response response = request.get();
+        String entity = response.readEntity(String.class);
+
+        showResponse("requestUserInfoHS256Step2", response, entity);
+
+        assertEquals(response.getStatus(), 302, "Unexpected response code.");
+        assertNotNull(response.getLocation(), "Unexpected result: " + response.getLocation());
+
+        try {
+            URI uri = new URI(response.getLocation().toString());
+            assertNotNull(uri.getFragment(), "Query string is null");
+
+            Map<String, String> params = QueryStringDecoder.decode(uri.getFragment());
+
+            assertNotNull(params.get(AuthorizeResponseParam.ACCESS_TOKEN), "The accessToken is null");
+            assertNotNull(params.get(AuthorizeResponseParam.SCOPE), "The scope is null");
+            assertNotNull(params.get(AuthorizeResponseParam.STATE), "The state is null");
+            assertEquals(params.get(AuthorizeResponseParam.STATE), state);
+
+            accessToken5 = params.get(AuthorizeResponseParam.ACCESS_TOKEN);
+        } catch (URISyntaxException e) {
+            e.printStackTrace();
+            fail("Response URI is not well formed");
+        }
+    }
+
+    @Parameters({"userInfoPath"})
+    @Test(dependsOnMethods = "requestUserInfoHS256Step2")
+    public void requestUserInfoHS256Step3(final String userInfoPath) throws Exception {
+        Builder request = ResteasyClientBuilder.newClient().target(url.toString() + userInfoPath).request();
+        request.header("Authorization", "Bearer " + accessToken5);
+        request.header("Content-Type", MediaType.APPLICATION_FORM_URLENCODED);
+
+        UserInfoRequest userInfoRequest = new UserInfoRequest(null);
+
+        Response response = request
+                .post(Entity.form(new MultivaluedHashMap<String, String>(userInfoRequest.getParameters())));
+        String entity = response.readEntity(String.class);
+
+        showResponse("requestUserInfoHS256Step3", response, entity);
+
+        assertEquals(response.getStatus(), 200, "Unexpected response code.");
+        assertTrue(
+                response.getHeaderString("Cache-Control") != null
+                        && response.getHeaderString("Cache-Control").equals("no-store, private"),
+                "Unexpected result: " + response.getHeaderString("Cache-Control"));
+        assertTrue(response.getHeaderString("Pragma") != null && response.getHeaderString("Pragma").equals("no-cache"),
+                "Unexpected result: " + response.getHeaderString("Pragma"));
+        assertNotNull(entity, "Unexpected result: " + entity);
+
+        try {
+            Jwt jwt = Jwt.parse(entity);
+
+            assertNotNull(jwt.getClaims().getClaimAsString(JwtClaimName.SUBJECT_IDENTIFIER));
+            assertNotNull(jwt.getClaims().getClaimAsString(JwtClaimName.NAME));
+            assertNotNull(jwt.getClaims().getClaimAsString(JwtClaimName.EMAIL));
+            assertNotNull(jwt.getClaims().getClaimAsString(JwtClaimName.PICTURE));
+        } catch (InvalidJwtException e) {
+            e.printStackTrace();
+            fail(e.getMessage() + "\nResponse was: " + entity);
+        } catch (Exception e) {
+            e.printStackTrace();
+            fail(e.getMessage());
+        }
+    }
+
+    @Parameters({"registerPath", "redirectUris"})
+    @Test
+    public void requestUserInfoHS384Step1(final String registerPath, final String redirectUris) throws Exception {
+        List<ResponseType> responseTypes = Arrays.asList(ResponseType.TOKEN);
+
+        RegisterRequest registerRequest = new RegisterRequest(ApplicationType.WEB, "oxAuth test app",
+                StringUtils.spaceSeparatedToList(redirectUris));
+        registerRequest.setResponseTypes(responseTypes);
+        registerRequest.setUserInfoSignedResponseAlg(SignatureAlgorithm.HS384);
+        registerRequest.addCustomAttribute("oxAuthTrustedClient", "true");
+
+        List<GrantType> grantTypes = Arrays.asList(
+                GrantType.RESOURCE_OWNER_PASSWORD_CREDENTIALS
+        );
+        registerRequest.setGrantTypes(grantTypes);
+
+        String registerRequestContent = ServerUtil.toPrettyJson(registerRequest.getJSONParameters());
+
+        Builder request = ResteasyClientBuilder.newClient().target(url.toString() + registerPath).request();
+
+        Response response = request.post(Entity.json(registerRequestContent));
+        String entity = response.readEntity(String.class);
+
+        showResponse("requestUserInfoHS384Step1", response, entity);
+
+        assertEquals(response.getStatus(), 200, "Unexpected response code. " + entity);
+        assertNotNull(entity, "Unexpected result: " + entity);
+        try {
+            JSONObject jsonObj = new JSONObject(entity);
+            assertTrue(jsonObj.has(RegisterResponseParam.CLIENT_ID.toString()));
+            assertTrue(jsonObj.has(CLIENT_SECRET.toString()));
+            assertTrue(jsonObj.has(REGISTRATION_ACCESS_TOKEN.toString()));
+            assertTrue(jsonObj.has(REGISTRATION_CLIENT_URI.toString()));
+            assertTrue(jsonObj.has(CLIENT_ID_ISSUED_AT.toString()));
+            assertTrue(jsonObj.has(CLIENT_SECRET_EXPIRES_AT.toString()));
+
+            clientId2 = jsonObj.getString(RegisterResponseParam.CLIENT_ID.toString());
+            clientSecret2 = jsonObj.getString(CLIENT_SECRET.toString());
+        } catch (JSONException e) {
+            e.printStackTrace();
+            fail(e.getMessage() + "\nResponse was: " + entity);
+        }
+    }
+
+    @Parameters({"authorizePath", "userId", "userSecret", "redirectUri"})
+    @Test(dependsOnMethods = "requestUserInfoHS384Step1")
+    public void requestUserInfoHS384Step2(final String authorizePath, final String userId, final String userSecret,
+                                          final String redirectUri) throws Exception {
+        final String state = UUID.randomUUID().toString();
+
+        List<ResponseType> responseTypes = Arrays.asList(ResponseType.TOKEN);
+        List<String> scopes = Arrays.asList("openid", "profile", "email");
+        String nonce = UUID.randomUUID().toString();
+
+        AuthorizationRequest authorizationRequest = new AuthorizationRequest(responseTypes, clientId2, scopes,
+                redirectUri, nonce);
+        authorizationRequest.setState(state);
+        authorizationRequest.getPrompts().add(Prompt.NONE);
+        authorizationRequest.setAuthUsername(userId);
+        authorizationRequest.setAuthPassword(userSecret);
+
+        OxAuthCryptoProvider cryptoProvider = new OxAuthCryptoProvider();
+
+        JwtAuthorizationRequest jwtAuthorizationRequest = new JwtAuthorizationRequest(authorizationRequest,
+                SignatureAlgorithm.HS384, clientSecret2, cryptoProvider);
+        jwtAuthorizationRequest.addUserInfoClaim(new Claim(JwtClaimName.NAME, ClaimValue.createNull()));
+        jwtAuthorizationRequest.addUserInfoClaim(new Claim(JwtClaimName.NICKNAME, ClaimValue.createEssential(false)));
+        jwtAuthorizationRequest.addUserInfoClaim(new Claim(JwtClaimName.EMAIL, ClaimValue.createNull()));
+        jwtAuthorizationRequest.addUserInfoClaim(new Claim(JwtClaimName.EMAIL_VERIFIED, ClaimValue.createNull()));
+        jwtAuthorizationRequest.addUserInfoClaim(new Claim(JwtClaimName.PICTURE, ClaimValue.createEssential(false)));
+        String authJwt = jwtAuthorizationRequest.getEncodedJwt();
+        authorizationRequest.setRequest(authJwt);
+        System.out.println("Request JWT: " + authJwt);
+
+        Builder request = ResteasyClientBuilder.newClient()
+                .target(url.toString() + authorizePath + "?" + authorizationRequest.getQueryString()).request();
+        request.header("Authorization", "Basic " + authorizationRequest.getEncodedCredentials());
+        request.header("Accept", MediaType.TEXT_PLAIN);
+
+        Response response = request.get();
+
+        String entity = response.readEntity(String.class);
+
+        showResponse("requestUserInfoHS384Step2", response, entity);
+
+        assertEquals(response.getStatus(), 302, "Unexpected response code.");
+        assertNotNull(response.getLocation(), "Unexpected result: " + response.getLocation());
+
+        try {
+            URI uri = new URI(response.getLocation().toString());
+            assertNotNull(uri.getFragment(), "Query string is null");
+
+            Map<String, String> params = QueryStringDecoder.decode(uri.getFragment());
+
+            assertNotNull(params.get(AuthorizeResponseParam.ACCESS_TOKEN), "The accessToken is null");
+            assertNotNull(params.get(AuthorizeResponseParam.SCOPE), "The scope is null");
+            assertNotNull(params.get(AuthorizeResponseParam.STATE), "The state is null");
+            assertEquals(params.get(AuthorizeResponseParam.STATE), state);
+
+            accessToken6 = params.get(AuthorizeResponseParam.ACCESS_TOKEN);
+        } catch (URISyntaxException e) {
+            e.printStackTrace();
+            fail("Response URI is not well formed");
+        }
+    }
+
+    @Parameters({"userInfoPath"})
+    @Test(dependsOnMethods = "requestUserInfoHS384Step2")
+    public void requestUserInfoHS384Step3(final String userInfoPath) throws Exception {
+        Builder request = ResteasyClientBuilder.newClient().target(url.toString() + userInfoPath).request();
+        request.header("Authorization", "Bearer " + accessToken6);
+
+        UserInfoRequest userInfoRequest = new UserInfoRequest(null);
+
+        Response response = request
+                .post(Entity.form(new MultivaluedHashMap<String, String>(userInfoRequest.getParameters())));
+        String entity = response.readEntity(String.class);
+
+        showResponse("requestUserInfoHS384Step3", response, entity);
+
+        assertEquals(response.getStatus(), 200, "Unexpected response code.");
+        assertTrue(
+                response.getHeaderString("Cache-Control") != null
+                        && response.getHeaderString("Cache-Control").equals("no-store, private"),
+                "Unexpected result: " + response.getHeaderString("Cache-Control"));
+        assertTrue(response.getHeaderString("Pragma") != null && response.getHeaderString("Pragma").equals("no-cache"),
+                "Unexpected result: " + response.getHeaderString("Pragma"));
+        assertNotNull(entity, "Unexpected result: " + entity);
+
+        try {
+            Jwt jwt = Jwt.parse(entity);
+
+            assertNotNull(jwt.getClaims().getClaimAsString(JwtClaimName.SUBJECT_IDENTIFIER));
+            assertNotNull(jwt.getClaims().getClaimAsString(JwtClaimName.NAME));
+            assertNotNull(jwt.getClaims().getClaimAsString(JwtClaimName.EMAIL));
+            assertNotNull(jwt.getClaims().getClaimAsString(JwtClaimName.PICTURE));
+        } catch (InvalidJwtException e) {
+            e.printStackTrace();
+            fail(e.getMessage() + "\nResponse was: " + entity);
+        } catch (Exception e) {
+            e.printStackTrace();
+            fail(e.getMessage());
+        }
+    }
+
+    @Parameters({"registerPath", "redirectUris"})
+    @Test
+    public void requestUserInfoHS512Step1(final String registerPath, final String redirectUris) throws Exception {
+        Builder request = ResteasyClientBuilder.newClient().target(url.toString() + registerPath).request();
+
+        List<ResponseType> responseTypes = Arrays.asList(ResponseType.TOKEN);
+
+        RegisterRequest registerRequest = new RegisterRequest(ApplicationType.WEB, "oxAuth test app",
+                StringUtils.spaceSeparatedToList(redirectUris));
+        registerRequest.setResponseTypes(responseTypes);
+        registerRequest.setUserInfoSignedResponseAlg(SignatureAlgorithm.HS512);
+        registerRequest.addCustomAttribute("oxAuthTrustedClient", "true");
+
+        List<GrantType> grantTypes = Arrays.asList(
+                GrantType.RESOURCE_OWNER_PASSWORD_CREDENTIALS
+        );
+        registerRequest.setGrantTypes(grantTypes);
+
+        String registerRequestContent = ServerUtil.toPrettyJson(registerRequest.getJSONParameters());
+
+        Response response = request.post(Entity.json(registerRequestContent));
+        String entity = response.readEntity(String.class);
+
+        showResponse("requestUserInfoHS512Step1", response, entity);
+
+        assertEquals(response.getStatus(), 200, "Unexpected response code. " + entity);
+        assertNotNull(entity, "Unexpected result: " + entity);
+        try {
+            JSONObject jsonObj = new JSONObject(entity);
+            assertTrue(jsonObj.has(RegisterResponseParam.CLIENT_ID.toString()));
+            assertTrue(jsonObj.has(CLIENT_SECRET.toString()));
+            assertTrue(jsonObj.has(REGISTRATION_ACCESS_TOKEN.toString()));
+            assertTrue(jsonObj.has(REGISTRATION_CLIENT_URI.toString()));
+            assertTrue(jsonObj.has(CLIENT_ID_ISSUED_AT.toString()));
+            assertTrue(jsonObj.has(CLIENT_SECRET_EXPIRES_AT.toString()));
+
+            clientId3 = jsonObj.getString(RegisterResponseParam.CLIENT_ID.toString());
+            clientSecret3 = jsonObj.getString(CLIENT_SECRET.toString());
+        } catch (JSONException e) {
+            e.printStackTrace();
+            fail(e.getMessage() + "\nResponse was: " + entity);
+        }
+    }
+
+    @Parameters({"authorizePath", "userId", "userSecret", "redirectUri"})
+    @Test(dependsOnMethods = "requestUserInfoHS512Step1")
+    public void requestUserInfoHS512Step2(final String authorizePath, final String userId, final String userSecret,
+                                          final String redirectUri) throws Exception {
+        final String state = UUID.randomUUID().toString();
+
+        List<ResponseType> responseTypes = Arrays.asList(ResponseType.TOKEN);
+        List<String> scopes = Arrays.asList("openid", "profile", "email");
+        String nonce = UUID.randomUUID().toString();
+
+        AuthorizationRequest authorizationRequest = new AuthorizationRequest(responseTypes, clientId3, scopes,
+                redirectUri, nonce);
+        authorizationRequest.setState(state);
+        authorizationRequest.getPrompts().add(Prompt.NONE);
+        authorizationRequest.setAuthUsername(userId);
+        authorizationRequest.setAuthPassword(userSecret);
+
+        OxAuthCryptoProvider cryptoProvider = new OxAuthCryptoProvider();
+
+        JwtAuthorizationRequest jwtAuthorizationRequest = new JwtAuthorizationRequest(authorizationRequest,
+                SignatureAlgorithm.HS512, clientSecret3, cryptoProvider);
+        jwtAuthorizationRequest.addUserInfoClaim(new Claim(JwtClaimName.NAME, ClaimValue.createNull()));
+        jwtAuthorizationRequest.addUserInfoClaim(new Claim(JwtClaimName.NICKNAME, ClaimValue.createEssential(false)));
+        jwtAuthorizationRequest.addUserInfoClaim(new Claim(JwtClaimName.EMAIL, ClaimValue.createNull()));
+        jwtAuthorizationRequest.addUserInfoClaim(new Claim(JwtClaimName.EMAIL_VERIFIED, ClaimValue.createNull()));
+        jwtAuthorizationRequest.addUserInfoClaim(new Claim(JwtClaimName.PICTURE, ClaimValue.createEssential(false)));
+        String authJwt = jwtAuthorizationRequest.getEncodedJwt();
+        authorizationRequest.setRequest(authJwt);
+        System.out.println("Request JWT: " + authJwt);
+
+        Builder request = ResteasyClientBuilder.newClient()
+                .target(url.toString() + authorizePath + "?" + authorizationRequest.getQueryString()).request();
+        request.header("Authorization", "Basic " + authorizationRequest.getEncodedCredentials());
+        request.header("Accept", MediaType.TEXT_PLAIN);
+
+        Response response = request.get();
+        String entity = response.readEntity(String.class);
+
+        showResponse("requestUserInfoHS512Step2", response, entity);
+
+        assertEquals(response.getStatus(), 302, "Unexpected response code.");
+        assertNotNull(response.getLocation(), "Unexpected result: " + response.getLocation());
+
+        try {
+            URI uri = new URI(response.getLocation().toString());
+            assertNotNull(uri.getFragment(), "Query string is null");
+
+            Map<String, String> params = QueryStringDecoder.decode(uri.getFragment());
+
+            assertNotNull(params.get(AuthorizeResponseParam.ACCESS_TOKEN), "The accessToken is null");
+            assertNotNull(params.get(AuthorizeResponseParam.SCOPE), "The scope is null");
+            assertNotNull(params.get(AuthorizeResponseParam.STATE), "The state is null");
+            assertEquals(params.get(AuthorizeResponseParam.STATE), state);
+
+            accessToken7 = params.get(AuthorizeResponseParam.ACCESS_TOKEN);
+        } catch (URISyntaxException e) {
+            e.printStackTrace();
+            fail("Response URI is not well formed");
+        }
+    }
+
+    @Parameters({"userInfoPath"})
+    @Test(dependsOnMethods = "requestUserInfoHS512Step2")
+    public void requestUserInfoHS512Step3(final String userInfoPath) throws Exception {
+        Builder request = ResteasyClientBuilder.newClient().target(url.toString() + userInfoPath).request();
+
+        request.header("Authorization", "Bearer " + accessToken7);
+        request.header("Content-Type", MediaType.APPLICATION_FORM_URLENCODED);
+
+        UserInfoRequest userInfoRequest = new UserInfoRequest(null);
+
+        Response response = request
+                .post(Entity.form(new MultivaluedHashMap<String, String>(userInfoRequest.getParameters())));
+        String entity = response.readEntity(String.class);
+
+        showResponse("requestUserInfoHS512Step3", response, entity);
+
+        assertEquals(response.getStatus(), 200, "Unexpected response code.");
+        assertTrue(
+                response.getHeaderString("Cache-Control") != null
+                        && response.getHeaderString("Cache-Control").equals("no-store, private"),
+                "Unexpected result: " + response.getHeaderString("Cache-Control"));
+        assertTrue(response.getHeaderString("Pragma") != null && response.getHeaderString("Pragma").equals("no-cache"),
+                "Unexpected result: " + response.getHeaderString("Pragma"));
+        assertNotNull(entity, "Unexpected result: " + entity);
+
+        try {
+            Jwt jwt = Jwt.parse(entity);
+
+            assertNotNull(jwt.getClaims().getClaimAsString(JwtClaimName.SUBJECT_IDENTIFIER));
+            assertNotNull(jwt.getClaims().getClaimAsString(JwtClaimName.NAME));
+            assertNotNull(jwt.getClaims().getClaimAsString(JwtClaimName.EMAIL));
+            assertNotNull(jwt.getClaims().getClaimAsString(JwtClaimName.PICTURE));
+        } catch (InvalidJwtException e) {
+            e.printStackTrace();
+            fail(e.getMessage() + "\nResponse was: " + entity);
+        } catch (Exception e) {
+            e.printStackTrace();
+            fail(e.getMessage());
+        }
+    }
+
+}
\ No newline at end of file
diff --git a/oxAuth/Server/src/test/resources/77-customAttributes.ldif b/oxAuth/Server/src/test/resources/77-customAttributes.ldif
new file mode 100644
index 00000000..94d722b9
--- /dev/null
+++ b/oxAuth/Server/src/test/resources/77-customAttributes.ldif
@@ -0,0 +1,17 @@
+dn: cn=schema
+objectClass: top
+objectClass: ldapSubentry
+objectClass: subschema
+cn: schema
+attributeTypes: ( myCustomAttr1-oid NAME 'myCustomAttr1'
+  SUBSTR caseIgnoreSubstringsMatch EQUALITY caseIgnoreMatch
+  SYNTAX 1.3.6.1.4.1.1466.115.121.1.15
+  X-ORIGIN 'Gluu - dynamic registration custom attribute' )
+attributeTypes: ( myCustomAttr2-oid NAME 'myCustomAttr2'
+  SUBSTR caseIgnoreSubstringsMatch EQUALITY caseIgnoreMatch
+  SYNTAX 1.3.6.1.4.1.1466.115.121.1.15
+  X-ORIGIN 'Gluu - dynamic registration custom attribute' )
+objectClasses: ( oxAuthClientCustomAttributes-oid NAME 'oxAuthClientCustomAttributes'
+  SUP top AUXILIARY MAY (
+  myCustomAttr1 $ myCustomAttr2)
+  X-ORIGIN 'Gluu - Custom objectclass' )
\ No newline at end of file
diff --git a/oxAuth/Server/src/test/resources/arquillian.xml b/oxAuth/Server/src/test/resources/arquillian.xml
new file mode 100644
index 00000000..4d5834df
--- /dev/null
+++ b/oxAuth/Server/src/test/resources/arquillian.xml
@@ -0,0 +1,20 @@
+<?xml version="1.0" encoding="UTF-8" standalone="yes"?>
+<arquillian xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" xmlns="http://jboss.org/schema/arquillian"
+	xsi:schemaLocation="http://jboss.org/schema/arquillian http://jboss.org/schema/arquillian/arquillian_1_0.xsd">
+
+	<engine>
+		<property name="deploymentExportPath">target/deployments</property>
+	</engine>
+
+	<container qualifier="jetty" default="true">
+		<configuration>
+            <property name="bindHttpPort">9080</property>
+            <property name="javaVmArguments">-Xms256m -Xmx512m -XX:MaxPermSize=256m</property>
+
+			<!-- property name="javaVmArguments">${additionalJvmArgs}</property -->
+			<!-- <property name="javaVmArguments">-Xdebug -Xrunjdwp:transport=dt_socket,address=8585,server=y,suspend=y</property> -->
+		</configuration>
+	</container>
+
+	<!-- <container qualifier="glassfish-embedded" default="true"> </container> -->
+</arquillian>
diff --git a/oxAuth/Server/src/test/resources/client/jwks.json b/oxAuth/Server/src/test/resources/client/jwks.json
new file mode 100644
index 00000000..9247236a
--- /dev/null
+++ b/oxAuth/Server/src/test/resources/client/jwks.json
@@ -0,0 +1,188 @@
+{"keys": [
+    {
+        "kid": "84f4477f-3a3f-4fb5-b801-3b43525bb8ba",
+        "kty": "RSA",
+        "use": "sig",
+        "alg": "RS256",
+        "exp": 1580939067183,
+        "n": "uNlsHUi6T1c3Wbq4Y0JGktGh8X3ijA-KmoikGghbhhsY0cA05DZb7US7hY6bZlRiv2vMLUnl8NsCLyAJx7X73fH89A6Ptp128uOuNVRT4dlhZV3ExhYlwimhEakid2Xg_abbF98gBowH7-bSI-NZOgzlGop1gJPZ2SkOA02_0EAnUpyC58ZGrk9OpkjBeZ3-9L5jdevvNeyIRz9cXh_MtJSQnap6DU_XJlhXnBbWws7zroT96jmiZRTWHPxfkgYRg2FbtKAWJPabj7mOZ0JqwAIybe2rJb31Cv6Qk-rxUoNSr6dKJiwP8K09L30l6tC9E88JqbO0R3d_Z2oOtBi8vQ",
+        "e": "AQAB",
+        "x5c": ["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"]
+    },
+    {
+        "kid": "329c172c-74a4-4024-8f5f-c5fc9881ac8b",
+        "kty": "RSA",
+        "use": "sig",
+        "alg": "RS384",
+        "exp": 1580939067183,
+        "n": "lacf0UHLnsjE_XVkmpxPReyrEVMTlxqv_r2nUgTrk905of4OMLAeiwy_iNtDOTgJtZ-i2vXZaH0bxWc5QMVcIihKy0476U0-NTDnvGm3UAiQKTBwj3vg0rY562mjhzfWQw7q6FmSnNYj_ktxgtk4YxWd8e0CTK-6Vrr4rggSl4vVQ0szeT8MOZ5HRE0LIUOInsJmekPoaZh2zSRJ9fHx04gRsOuC7RWb-IawdlBRuD4fcCXMI8WJhMu1s3NDGDQQpBWnBujgCmRRQMvKKppnq1L0CyspAbihrZrptHnwHI7bxK0m_Ss0L9wSZWpSAYPxNcXnDY_Rpf-FMayE8cO25Q",
+        "e": "AQAB",
+        "x5c": ["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"]
+    },
+    {
+        "kid": "f0880d35-8d17-44e6-8ffb-2b8d1bb7b10e",
+        "kty": "RSA",
+        "use": "sig",
+        "alg": "RS512",
+        "exp": 1580939067183,
+        "n": "wuG4hqKfZu9Lvi7EChSCJLDXd4psfrf8K48RfVF9mMWA391lNsC3Vloo8Vwcu35p5E4CsrAKplvJfn8S5sFT81fVDVSmDFZwTUUzPosZiBfrVFZEWIj4eV3EDjmS72DX4z1lmBHjC1V8i210y7zP7ABi797GQrwPI60hu-kth3SoEkkFsWNmvsbOZsRFi-DWVyR8N_y--GvbU8Qql8MMS_PQgbr8t_W5e4Pfa4chLR_y91xePxorJmHUiXPid3NJ8KleUNfk_wtXmZxVGwInpjGI31ro0TJ5A_khjXbbOhX_eoNCT2j_b8_97EmeK6jbSu3KGgHGVG6iM4HDBdMZSw",
+        "e": "AQAB",
+        "x5c": ["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"]
+    },
+    {
+        "kid": "e0bf2833-1b48-4d24-9a60-910c24f5536b",
+        "kty": "EC",
+        "use": "sig",
+        "alg": "ES256",
+        "exp": 1580939067183,
+        "crv": "P-256",
+        "x": "3CHOz1UUhDukO_QUIlEJZyWRuyjmgIzgbYSEXhJCmqA",
+        "y": "MWv_2r5Oc0P7AHeWVm5FqVB__vBwAV8EZnUD_ChWijg",
+        "x5c": ["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"]
+    },
+    {
+        "kid": "65352d2e-cfe8-418b-a9bd-78f3589dfbff",
+        "kty": "EC",
+        "use": "sig",
+        "alg": "ES384",
+        "exp": 1580939067183,
+        "crv": "P-384",
+        "x": "pKuMufffHzWVqKzzhEB6W_6F-2TYt04-Ph7VkwbJpnuf7YedX7weJ8LxTHtBW4Z3",
+        "y": "ooOPaqIPFXYbkKaaKSsOCT6ZqVPgyz9zOrXGQAXaQtwURusFAxYtAxFEFAFRVQxQ",
+        "x5c": ["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"]
+    },
+    {
+        "kid": "0c1b2d6f-385d-46e5-9d12-c168769bc174",
+        "kty": "EC",
+        "use": "sig",
+        "alg": "ES512",
+        "exp": 1580939067183,
+        "crv": "P-521",
+        "x": "AYz7J-lTFUQFfmi7sG6OjaD4on0jU22x0neIUuX7QQu1qWCvZj69tEchI0rwbUytjyJx8TJSoc8m1H1ZICs23_0J",
+        "y": "AYj9Akd7UScvNqJmk1YImyTxa47dFyOnmhjRxDr7-KLfhFxObP008yo5rHewjNy-bToWTDYFCXUOP5aIQRdsazn7",
+        "x5c": ["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"]
+    },
+    {
+        "kid": "d655a0cf-be1f-401b-8506-6dc957b9dad0",
+        "kty": "RSA",
+        "use": "sig",
+        "alg": "PS256",
+        "exp": 1580939067183,
+        "n": "ld_Nh4kfZ3iDpbcwGUAzzSPMomTwB2kOl2KbDP4eoX1NzK27OqkAo-Ri73EE6DUVMPn0agXi0lkVbMG0sCqg58iIzF375aE9OBk_8xYLwhrQJbNco2GeMaeIGrDxvCYp81Q-jINDzluPPWUdUs8HGc1iiRZ2N9_8eYBGe3z8QI4jXgSYzNK6zBrlXPzyDISgcxQq5HmuNfeJkcTWsy1AAPS9LnfeaCGFCzmdsZJ1hPGUQslJ1UrXFiJ5gqqm3Bn1rabvYSyUpFz2f6y52gVlC9HMBZDWc7TpSiXlw36fYR9KUewqLP-MJJXUxxXrWx_WyLl_7c3j1B6j9hWEm8nW7Q",
+        "e": "AQAB",
+        "x5c": ["MIIDazCCAh+gAwIBAgIgVRBp9TV8t5++U2Y28IwP0PlbgNadEUfs2fDHrnKwwDIwQQYJKoZIhvcNAQEKMDSgDzANBglghkgBZQMEAgEFAKEcMBoGCSqGSIb3DQEBCDANBglghkgBZQMEAgEFAKIDAgEgMCExHzAdBgNVBAMMFm94QXV0aCBDQSBDZXJ0aWZpY2F0ZXMwHhcNMTkwMjA1MjE0NDE5WhcNMjAwMjA1MjE0NDI3WjAhMR8wHQYDVQQDDBZveEF1dGggQ0EgQ2VydGlmaWNhdGVzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAld/Nh4kfZ3iDpbcwGUAzzSPMomTwB2kOl2KbDP4eoX1NzK27OqkAo+Ri73EE6DUVMPn0agXi0lkVbMG0sCqg58iIzF375aE9OBk/8xYLwhrQJbNco2GeMaeIGrDxvCYp81Q+jINDzluPPWUdUs8HGc1iiRZ2N9/8eYBGe3z8QI4jXgSYzNK6zBrlXPzyDISgcxQq5HmuNfeJkcTWsy1AAPS9LnfeaCGFCzmdsZJ1hPGUQslJ1UrXFiJ5gqqm3Bn1rabvYSyUpFz2f6y52gVlC9HMBZDWc7TpSiXlw36fYR9KUewqLP+MJJXUxxXrWx/WyLl/7c3j1B6j9hWEm8nW7QIDAQABoycwJTAjBgNVHSUEHDAaBggrBgEFBQcDAQYIKwYBBQUHAwIGBFUdJQAwQQYJKoZIhvcNAQEKMDSgDzANBglghkgBZQMEAgEFAKEcMBoGCSqGSIb3DQEBCDANBglghkgBZQMEAgEFAKIDAgEgA4IBAQBcX1Dekarpqt62AeEwa3dHlTN61h4PyyRa+ev7AtSFq5Rjs1MCmWWZ7VpMVkHXH29tsaqPAM/HH6677TRo+QH/KTm1nNd3LzJyTBGeevufbBGlhKH/m3cIrLend2pLSvnWxKmzJDuY/2K9i2+f9snzm7r0JDIO+VgWj7JeVCldw4DGoxBrRci6+v8oriC7dqQpkME4dnBmVDi0rCGsnacIcq1jkRYczzOiaw2JxRqCTOvBfUbLQ8lsr2RIUzjRw7iNIp1Fr3c08BX6mhKK/thjKT1NS+O0wLH5c7zMIj5I5U2wBOHvfsz8+TNfS3itxCLx/dF+An1nKCKJBmzUBVwA"]
+    },
+    {
+        "kid": "44c6ab01-dbd9-4f14-b0a7-f66c58394817",
+        "kty": "RSA",
+        "use": "sig",
+        "alg": "PS384",
+        "exp": 1580939067183,
+        "n": "mB4Nj98TbsTzfhddJxsbSCNIYOyu3JH6KvAZbiIZbS6uQyynABrxbmK4L3aWZyDQzZIJzsoPjm_lpFw4AqFrWOj7JfQIAsNeZySDHcQnc5GsoEaCTdHlBSrt6OzxYoHFYeMuc2Fi7spuWVX41siW2IaGcC6LI5fhqjq1WeYYnsKT9i9C7J-bxJeQ0-qlqxbTTwi1gt92GT42IyuQi8lQML3sq9TSdPo8JghpdzbVAqDdOFhz_U4dyx4y-lLR7nJnSSSSAcfiO7NKNOX3Xs7LG_ckQSDM3qOhClsDbjHAqFaXoFaw8xXI5Qe_YxCtcXVsAHwfylTgT9ajCVNqZjLkTw",
+        "e": "AQAB",
+        "x5c": ["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"]
+    },
+    {
+        "kid": "6aa55d13-e8e8-4a60-a301-50ceb5304e0e",
+        "kty": "RSA",
+        "use": "sig",
+        "alg": "PS512",
+        "exp": 1580939067183,
+        "n": "2l51iVtb8tTDuRsnjN4H4xAUm9o4wYjijD8utdYjp5KBGNLOcPEEi1T6MOv2uuRxfw_QN8tG06UdXG44o-pTe0X1taBeP1QbJjHtZZnPwaVzDSv_uWQhSEnwyiWHnyrXF8rw45WEfvNvNK5wa164Jg7v79nwETzPj1IkJx1RcM8c-Hu-L62_lGua6I0PJ8dzCmqAKnKyW-E1PYCDMOJwxWVOSZWnXu79TfDGw36YKHNF2A8dc6PkoCljvLlrNr7QXgHbRs4K8-gizpBdTKykijw9dm9XrjNSqh5X3sxfnwqUmZN9coMcV_vZrcPO2m9SUymlpzZy_UynkpiheQru8Q",
+        "e": "AQAB",
+        "x5c": ["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"]
+    },
+    {
+        "kid": "561fad34-a6f7-4d1e-8c23-ce8cc73d9166",
+        "kty": "RSA",
+        "use": "enc",
+        "alg": "RS256",
+        "exp": 1580939067183,
+        "n": "5IWoqE60Nn1Hd7cFTL4zM9ZsMSmN1i2A2HEJBqLRccWy0XEqMWKFLrl7liJb9tiHnuBSuhuePDgXF0sDi_ppQP5G9Hq4LdYLiWoz_PX8dA2Peu8_AttUjyAzEdbRg-7AvfA_3QXL04kCzeUMRk2e98jobCPE7MD37--aKfZSRov11EZABwk7ud32v8hDnMt73CZPYwdYi84hcQTx6H8x0ifH_UlFPBAouUX2uG7aX9J33BPRflYiedhLHennGNZ4FG7odRRRx6DShAoEetDa-FlPdVLR4xBZdzvvcZFPVGKRFeaACH4Q4KoVBRCdquQnS4P73q4AMumsUVZZSA5i5Q",
+        "e": "AQAB",
+        "x5c": ["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"]
+    },
+    {
+        "kid": "4c426243-385e-4783-b456-bd9dcd33c0fc",
+        "kty": "RSA",
+        "use": "enc",
+        "alg": "RS384",
+        "exp": 1580939067183,
+        "n": "xr9TXLmA1GbeXq0kzYbhC_Etii5AZehw74M69wPWShiJX0ham2SLWosApBWOWtOYpX_ZjtPWyWTsWEKt0P-_hI91Dx2vQWAMalikKj2zUQ_c4MFUEQaIaT7sVCQ-RdEN5ECWFkA176NiXXe5d8XYRb55tO00T5JeIS7ICDPX9TLrfTy3-auEadXQ6XKsYfUJOIKrTj2v68iHGqEz9ycswd2efkn11WttI19NDaeEZAHQNtoAooJmJNkjtUGymG9nTkM6qRQ_ejmV0S_e_WhouxwlgwCY2Va5diAsfMq5mw82OzzN6TTRFR7aW4s-tIkBSSPZc-uhIfXTbeG7TYclMw",
+        "e": "AQAB",
+        "x5c": ["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"]
+    },
+    {
+        "kid": "70c2ccc3-e2c7-4502-81d1-301ae07594c9",
+        "kty": "RSA",
+        "use": "enc",
+        "alg": "RS512",
+        "exp": 1580939067183,
+        "n": "sEkUOo2dq8T6mOl1eXsYa_U_Y3ZdQVsg0JcJaqygy5X8bdbbJpWit8h4kDvO5EopiExEGXXkD81u2BuFFME8j4ggPjxZL7AVLRgkyg1DbWa1orqNQTL87d8KEYPaLJy1Wi6xwCiHU6n1wJhJ9iyH2iCObw6jOlOullm45ZRmoyrUZYXwnbVFSLquEMXZmL8OfkPDek7dhtwGS5p3e8-_c99I2KtrdO2t9lRsxIAc7OdyNhFCHbUG7tigjDOAaVZA0rozXX1_TzodAyXf2ZC9M-5L1Xrivi9fPGKkOaamYkxUSyh7dh0YuHSnPUEDc7SjO--GvLVeogrLIjGj9WRzAQ",
+        "e": "AQAB",
+        "x5c": ["MIIDAzCCAeugAwIBAgIgcG28oqu8sZLFuOSDfC6K+8g2IHm8+5IeUyY4FnuzQs4wDQYJKoZIhvcNAQENBQAwITEfMB0GA1UEAwwWb3hBdXRoIENBIENlcnRpZmljYXRlczAeFw0xOTAyMDUyMTQ0MjFaFw0yMDAyMDUyMTQ0MjdaMCExHzAdBgNVBAMMFm94QXV0aCBDQSBDZXJ0aWZpY2F0ZXMwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCwSRQ6jZ2rxPqY6XV5exhr9T9jdl1BWyDQlwlqrKDLlfxt1tsmlaK3yHiQO87kSimITEQZdeQPzW7YG4UUwTyPiCA+PFkvsBUtGCTKDUNtZrWiuo1BMvzt3woRg9osnLVaLrHAKIdTqfXAmEn2LIfaII5vDqM6U66WWbjllGajKtRlhfCdtUVIuq4QxdmYvw5+Q8N6Tt2G3AZLmnd7z79z30jYq2t07a32VGzEgBzs53I2EUIdtQbu2KCMM4BpVkDSujNdfX9POh0DJd/ZkL0z7kvVeuK+L188YqQ5pqZiTFRLKHt2HRi4dKc9QQNztKM774a8tV6iCssiMaP1ZHMBAgMBAAGjJzAlMCMGA1UdJQQcMBoGCCsGAQUFBwMBBggrBgEFBQcDAgYEVR0lADANBgkqhkiG9w0BAQ0FAAOCAQEAgS6BRfmqCWuUhff0TlBrEunKqdP0lXVO5Q4ALfGO+vlh+gQ59zTXGDVv158oH42MIcLBCZebBLwweGsgx8w/FdMjqUWFK0CrQIf9SH4ozFvX8qBoN5uwqmQjryvQ1JrhZzpob4kcyORURQ0F6K6BL1HPr89GDWYMPOLAjJlrS9nbj+GnoDKR2Cdrmr49euHud/Ir3GqnubL4tQcsRG+haAowCGJ3PEjjFKrhuWxMIDgTJX2MRno6g4lOplTe7929GUeGTecEiCdkqZsEl5LGkpTNwJMhVhEvYZyJMiGhfVJptk6DEop144niPulM+Y9SpgsPmeBNv5PSiUaJbYvZ8A=="]
+    },
+    {
+        "kid": "51c28e9f-d691-4548-9413-e8b632b7223e",
+        "kty": "EC",
+        "use": "enc",
+        "alg": "ES256",
+        "exp": 1580939067183,
+        "crv": "P-256",
+        "x": "ZTyBsAuqRc-4iYaluouJuHU7GIVp7LGiX7n57RCWpYY",
+        "y": "3YBh_OAFRt3dSGZ_S4anj4H6xD1tGt46nTEz19Hvan8",
+        "x5c": ["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"]
+    },
+    {
+        "kid": "dff1d469-aafd-4f28-a092-ac4ada484211",
+        "kty": "EC",
+        "use": "enc",
+        "alg": "ES384",
+        "exp": 1580939067183,
+        "crv": "P-384",
+        "x": "e0FD0pX18vK48IM92fKWHSKEIlCPFBxs20FdxyQ2QufLsKPjocGofsTOj2bReT0T",
+        "y": "EEpXAaybekE4owSUh9c_yeqJEXXdTVR--F_2A9oKvq2drvPIkH0J0wxyVk40WN8W",
+        "x5c": ["MIIBtDCCATqgAwIBAgIgSGYxo9qpS+fs+PCqJRPGfilmnDZ83nUwtqYZ8L5fi7UwCgYIKoZIzj0EAwMwITEfMB0GA1UEAwwWb3hBdXRoIENBIENlcnRpZmljYXRlczAeFw0xOTAyMDUyMTQ0MjFaFw0yMDAyMDUyMTQ0MjdaMCExHzAdBgNVBAMMFm94QXV0aCBDQSBDZXJ0aWZpY2F0ZXMwdjAQBgcqhkjOPQIBBgUrgQQAIgNiAAR7QUPSlfXy8rjwgz3Z8pYdIoQiUI8UHGzbQV3HJDZC58uwo+Ohwah+xM6PZtF5PRMQSlcBrJt6QTijBJSH1z/J6okRdd1NVH74X/YD2gq+rZ2u88iQfQnTDHJWTjRY3xajJzAlMCMGA1UdJQQcMBoGCCsGAQUFBwMBBggrBgEFBQcDAgYEVR0lADAKBggqhkjOPQQDAwNoADBlAjBrqsjYO5sH06jSdbtcATyB72KmGvCTTiOaMIGpfzPiReqk4qbpX3nLnn9h26XnpIcCMQCijSmYpdQr6qqe2p2WH/xK/Cq1PWp30pHzXXP97KRcNn8hVHGDqU8fc8/F9BvfYjM="]
+    },
+    {
+        "kid": "15267f5f-45a0-49c7-932a-f7e14b170b3c",
+        "kty": "EC",
+        "use": "enc",
+        "alg": "ES512",
+        "exp": 1580939067183,
+        "crv": "P-521",
+        "x": "ibPx0F46GvfcVfDuc-9cpkF0GOoh7df_mxMtLDxz1-_ES5VrIQai1HhRhBYgJeJ6AUWRrJWUgyozvnBe08ygWDw",
+        "y": "AWqzMs5GWyuQ11AJIj0G1-PcFyZCneriZqZvQyKEDUFK6tb4Z_5Nox4UfWWrISwV2sM_y45Anvsf8ifQVka511s",
+        "x5c": ["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"]
+    },
+    {
+        "kid": "ae9984bb-1738-4cc8-8eeb-1ba46cf20bc5",
+        "kty": "RSA",
+        "use": "enc",
+        "alg": "PS256",
+        "exp": 1580939067183,
+        "n": "qvk7G--NVoHEFlHpXtG4rKAAqJhHj7zVg3ur9FwhdpmDYaOKGhFISlOuB8KIfjMxQegA2ykpIuZikABzyiY6Ep4GLLIt0MSI2Z4ZmToX9ifvcEVOj6RXQmXwXf78wyFVMkH899XL1E_v9llaxp6Jf-PnWl8csMBceYKukCa18LJ8QwET3zOPuLNunJaEfmYkkRNdHtAWiodQhXCaFkoqoaHiVyVTs-eN9TlWPGVg_BtJkqecY45Dbj16_anyUcWIflU81w9S5510PgPrdG9c8lMEsEhGxdhhydpAWv8_35UjzpEeNb2B6MCN1z54XJ6iRobhORatmz5gQPU3iIL7ZQ",
+        "e": "AQAB",
+        "x5c": ["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"]
+    },
+    {
+        "kid": "c25a5430-10a5-4597-b61a-49a0cae281f3",
+        "kty": "RSA",
+        "use": "enc",
+        "alg": "PS384",
+        "exp": 1580939067183,
+        "n": "xW52SV_ZC9uEQGk-8Z18CR7V5oEWXJxt4uy6NWT4lLeNrDOLqhFx_gA6uQO5xoGwUUdUFiqErug4m0SrxiOYb8YYRcZVvX1bt454lAnaPVSWVvZaJVwzNh81uRfNI6DXhymQpzQghelOnaCRRhFWeDnm_WEBnh4qiAdZil_cFQk9Jgk20CIM1qYjU5GbPMfkTA0iHzgvSoQJj9KmzDYBOMYiozDbrPrRqwsQcz88gWxdTswmUlh7ptv3xK7B39GyQfdw2qNAEoFqDaRqAz0pLm5wsD6NEB9xkhSl_1Kb2EjUHgMgjWLqxb-1oTccg5YJoXSK0kiYLVikHWI0vIGXnw",
+        "e": "AQAB",
+        "x5c": ["MIIDbDCCAiCgAwIBAgIhAMgjBxHRBnP6PVhtPbZ9XGuBb3zYWLlsNp+NYmCK3ZBtMEEGCSqGSIb3DQEBCjA0oA8wDQYJYIZIAWUDBAICBQChHDAaBgkqhkiG9w0BAQgwDQYJYIZIAWUDBAICBQCiAwIBMDAhMR8wHQYDVQQDDBZveEF1dGggQ0EgQ2VydGlmaWNhdGVzMB4XDTE5MDIwNTIxNDQyMloXDTIwMDIwNTIxNDQyN1owITEfMB0GA1UEAwwWb3hBdXRoIENBIENlcnRpZmljYXRlczCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoCggEBAMVudklf2QvbhEBpPvGdfAke1eaBFlycbeLsujVk+JS3jawzi6oRcf4AOrkDucaBsFFHVBYqhK7oOJtEq8YjmG/GGEXGVb19W7eOeJQJ2j1Ullb2WiVcMzYfNbkXzSOg14cpkKc0IIXpTp2gkUYRVng55v1hAZ4eKogHWYpf3BUJPSYJNtAiDNamI1ORmzzH5EwNIh84L0qECY/Spsw2ATjGIqMw26z60asLEHM/PIFsXU7MJlJYe6bb98Suwd/RskH3cNqjQBKBag2kagM9KS5ucLA+jRAfcZIUpf9Sm9hI1B4DII1i6sW/taE3HIOWCaF0itJImC1YpB1iNLyBl58CAwEAAaMnMCUwIwYDVR0lBBwwGgYIKwYBBQUHAwEGCCsGAQUFBwMCBgRVHSUAMEEGCSqGSIb3DQEBCjA0oA8wDQYJYIZIAWUDBAICBQChHDAaBgkqhkiG9w0BAQgwDQYJYIZIAWUDBAICBQCiAwIBMAOCAQEAmZ3QCiVV0H4/1O1E/lbbAoUjK6X/2+d3HCDddRkSvrwn4EOZw/ngem31e0gPwepuiSx9wsRK0PAxjasuEAnWH/jc8miYu8MohayoJJJtybxsrnY7rR4sisoQNENIuvL7xXFPcLjsyFlc4aNCkbjzMg7rQyvGQahv20Zv8jNbSlp5QEc9MAOwhMQaOxb+1feQJdrROLV/4A9ajxq3sqxi0lPPYc+iCml5zSBusiIVNM4Zob4pCs81IKn16yoSBrM3t2+6rvPFWat3GUaiDw5Nnk7OqClwRrT3FdhuWCgrDH+uqHC8yZLcwKKW8CGZt4iIWbibGUzM2DjFsfGol67ifQ=="]
+    },
+    {
+        "kid": "ef0d9d93-2c6a-48c7-97f3-b8245f3c2677",
+        "kty": "RSA",
+        "use": "enc",
+        "alg": "PS512",
+        "exp": 1580939067183,
+        "n": "oRMLEOvIB8Se8997UiKUwEVpbvuAI9NsSAVoFQHf0WKcVIW3nBPjJpLL93JF639JZRJhuHvRBS6XdX8x6wbjZN2_GYlQn0V-LzMZsRXeOSeYSCHFduUSUb54DAJgy2BTZAYWhYILN_9DVMENtuWuGyL2dd3PnYKYlRuBc6WmAEc-nRklLqMurRneOWuLw3hu3sGr2sY-cvIN4CwHFIZwB5b7nGyQQ-gL5vFVBL_v3sOxIiPfToRWl_3WsoNbjiv52oT4gAps1koRqmGb_lrH2d9xZUSzdrIvsLzWKLWgj5AUQbbD6X2cqYZdz_lSWrqPJQ81mRIzoovwvJ3zh750qQ",
+        "e": "AQAB",
+        "x5c": ["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"]
+    }
+]}
\ No newline at end of file
diff --git a/oxAuth/Server/src/test/resources/client/sector_identifier.js b/oxAuth/Server/src/test/resources/client/sector_identifier.js
new file mode 100644
index 00000000..5f3c5570
--- /dev/null
+++ b/oxAuth/Server/src/test/resources/client/sector_identifier.js
@@ -0,0 +1,7 @@
+[ "https://${test.server.name}/oxauth-rp/home.htm",
+    "https://client.example.org/callback",
+    "https://client.example.org/callback2",
+    "https://client.other_company.example.net/callback",
+    "https://client.example.com/cb",
+    "https://client.example.com/cb1",
+    "https://client.example.com/cb2" ]
\ No newline at end of file
diff --git a/oxAuth/Server/src/test/resources/id/gen/SampleIdGenerator.py b/oxAuth/Server/src/test/resources/id/gen/SampleIdGenerator.py
new file mode 100644
index 00000000..9730902d
--- /dev/null
+++ b/oxAuth/Server/src/test/resources/id/gen/SampleIdGenerator.py
@@ -0,0 +1,41 @@
+from org.gluu.model.custom.script.type.id import IdGeneratorType
+from org.gluu.util import StringHelper, ArrayHelper
+from java.util import Arrays, ArrayList
+from java.util import UUID
+
+import java
+
+class IdGenerator(IdGeneratorType):
+    def __init__(self, currentTimeMillis):
+        self.currentTimeMillis = currentTimeMillis
+
+    def init(self, configurationAttributes):
+        print "Id generator. Initialization"
+        print "Id generator. Initialized successfully"
+
+        return True   
+
+    def destroy(self, configurationAttributes):
+        print "Id generator. Destroy"
+        print "Id generator. Destroyed successfully"
+        return True   
+
+    def getApiVersion(self):
+        return 1
+
+    # Id generator init method
+    #   appId is application Id
+    #   idType is Id Type
+    #   idPrefix is Id Prefix
+    #   user is org.gluu.oxtrust.model.GluuCustomPerson
+    #   configurationAttributes is java.util.Map<String, SimpleCustomProperty>
+    def generateId(self, appId, idType, idPrefix, configurationAttributes):
+        print "Id generator. Generate Id"
+        print "Id generator. Generate Id. AppId: '", appId, "', IdType: '", idType, "', IdPrefix: '", idPrefix, "'"
+
+        if StringHelper.equalsIgnoreCase(idType, "test"):
+            id = UUID.randomUUID().toString()
+            print "Id generator. New test id: " + id
+            return id
+
+        return "invalid"
diff --git a/oxAuth/Server/src/test/resources/jetty-env.xml b/oxAuth/Server/src/test/resources/jetty-env.xml
new file mode 100644
index 00000000..5a0fe810
--- /dev/null
+++ b/oxAuth/Server/src/test/resources/jetty-env.xml
@@ -0,0 +1,21 @@
+<?xml version="1.0" encoding="UTF-8"?>
+<!DOCTYPE Configure PUBLIC "-//Jetty//Configure//EN" "https://www.eclipse.org/jetty/configure_10_0.dtd">
+
+<Configure id="webAppCtx" class="org.eclipse.jetty.webapp.WebAppContext">
+	<New id="BeanManager" class="org.eclipse.jetty.plus.jndi.Resource">
+		<Arg>
+			<Ref refid="webAppCtx" />
+		</Arg>
+
+		<Arg>BeanManager</Arg>
+
+		<Arg>
+			<New class="javax.naming.Reference">
+				<Arg>javax.enterprise.inject.spi.BeanManager</Arg>
+				<Arg>org.jboss.weld.resources.ManagerObjectFactory</Arg>
+				<Arg />
+			</New>
+		</Arg>
+	</New>
+
+</Configure>
diff --git a/oxAuth/Server/src/test/resources/testng-benchmark.xml b/oxAuth/Server/src/test/resources/testng-benchmark.xml
new file mode 100644
index 00000000..3b12e60c
--- /dev/null
+++ b/oxAuth/Server/src/test/resources/testng-benchmark.xml
@@ -0,0 +1,4 @@
+<!DOCTYPE suite SYSTEM "http://testng.org/testng-1.0.dtd" >
+
+<suite name="oxAuthServerBenchamrk" parallel="false">
+</suite>
\ No newline at end of file
diff --git a/oxAuth/Server/src/test/resources/testng-multi-authz.xml b/oxAuth/Server/src/test/resources/testng-multi-authz.xml
new file mode 100644
index 00000000..98b027bb
--- /dev/null
+++ b/oxAuth/Server/src/test/resources/testng-multi-authz.xml
@@ -0,0 +1,4 @@
+<!DOCTYPE suite SYSTEM "http://testng.org/testng-1.0.dtd" >
+
+<suite name="oxAuthServerMultiAuthz" parallel="false">
+</suite>
\ No newline at end of file
diff --git a/oxAuth/Server/src/test/resources/testng.properties b/oxAuth/Server/src/test/resources/testng.properties
new file mode 100644
index 00000000..4b4b6e0b
--- /dev/null
+++ b/oxAuth/Server/src/test/resources/testng.properties
@@ -0,0 +1,70 @@
+serverUri=https://${test.server.name}
+authorizePath=restv1/authorize
+tokenPath=restv1/token
+validateTokenPath=restv1/validate
+jwksPath=restv1/jwks
+userInfoPath=restv1/userinfo
+clientInfoPath=restv1/clientinfo
+endSessionPath=restv1/end_session
+registerPath=restv1/register
+idGenerationPath=restv1/id
+introspectionPath=restv1/introspection
+userId=${auth.user.uid}
+userSecret=${auth.user.password}
+userInum=${auth.user.inum}
+userEmail=${auth.user.email}
+userId2=${auth.user2.uid}
+userSecret2=${auth.user2.password}
+userInum2=${auth.user2.inum}
+userEmail2=${auth.user2.email}
+clientId=${auth.client.id}
+clientSecret=${auth.client.secret}
+redirectUri=https://client.example.com/cb
+redirectUris=https://client.example.com/cb https://client.example.com/cb1 https://client.example.com/cb2
+postLogoutRedirectUri=https://client.example.com/pl
+ldapAdminPassword=${ldap.admin.password}
+audience=${test.server.url}/restv1/token
+#requestFileBasePath=/var/www/html/oxAuth
+requestFileBaseUrl=http://localhost/oxAuth
+sectorIdentifierUri=https://${test.server.name}/oxauth/sectoridentifier/${sector.identifier.id}
+#sectorIdentifierUri=https://ce.gluu.info:8443/sectoridentifier/a55ede29-8f5a-461d-b06e-76caee8d40b5
+
+## Gluu
+gluuConfigurationPath = /restv1/.well-known/gluu-configuration
+
+## UMA
+umaConfigurationPath=restv1/uma2-configuration
+umaRegisterResourcePath=restv1/host/rsrc/resource_set
+umaScopePath=restv1/uma/scopes
+umaPermissionPath=restv1/host/rsrc_pr
+umaPermissionAuthorizationPath=restv1/requester/perm
+umaRptPath=restv1/requester/rpt
+umaRptStatusPath=restv1/rpt/status
+umaUserId=${uma.user.uid}
+umaUserSecret=${uma.user.password}
+umaPatClientId=${uma.pat.client.id}
+umaPatClientSecret=${uma.pat.client.secret}
+umaRedirectUri=https://client.example.com/cb
+umaClaimsRedirectUri=https://client.example.com/cb
+
+contactEmail1=${contact.email.1}
+contactEmail2=${contact.email.2}
+
+usedClients=${test.keep.clients}
+
+## Client Resources
+dnName=CN=oxAuth CA Certificates
+keyStoreFile=${clientKeyStoreFile}
+keyStoreSecret=${clientKeyStoreSecret}
+clientJwksUri=https://${test.server.name}/oxauth-client/test/resources/jwks.json
+RS256_keyId=6fb1859a-54d9-47c6-a293-92ce2cee63e0
+RS384_keyId=a68c61dd-f8f6-4faf-855b-fbbb8bee028a
+RS512_keyId=79d12e66-0baa-4b59-8a8b-bd3164260bf5
+ES256_keyId=a8b62c9d-65ea-4384-a491-e52924c4a0e3
+ES384_keyId=0b1a019f-fcfb-4d3d-981b-16b45355dfdf
+ES512_keyId=07c917ef-943f-4a9a-961c-d3cba28c81d5
+PS256_keyId=29cef404-59db-4ab9-8f5c-6da8d578d107
+PS384_keyId=6bd7cc0c-e176-4da9-b646-fe7782393dc0
+PS512_keyId=a614d6ae-e80f-469a-a304-51b9bbefc95f
+RSA_OAEP_keyId=d91db51d-0e7f-4225-99e5-164444c12d1a
+RSA1_5_keyId=a442f0ec-7237-40b3-b7f3-a6039f70d9bd
diff --git a/oxAuth/Server/src/test/resources/testng.xml b/oxAuth/Server/src/test/resources/testng.xml
new file mode 100644
index 00000000..10851edd
--- /dev/null
+++ b/oxAuth/Server/src/test/resources/testng.xml
@@ -0,0 +1,374 @@
+<!DOCTYPE suite SYSTEM "http://testng.org/testng-1.0.dtd" >
+
+<suite name="oxAuthServer" parallel="false">
+
+	<listeners>
+		<listener class-name="org.gluu.oxauth.OxAuthUnitTestsListener" />
+	</listeners>
+
+    <test name="Unit Tests" enabled="true">
+        <classes>
+            <class name="org.gluu.oxauth.service.ScopeServiceTest" />
+            <class name="org.gluu.oxauth.servlet.OpenIdConfigurationTest" />
+            <class name="org.gluu.oxauth.service.RedirectionUriServiceTest" />
+            <class name="org.gluu.oxauth.model.CIBAGrantTest" />
+            <class name="org.gluu.oxauth.authorize.ws.rs.AuthorizeRestWebServiceValidatorTest" />
+            <class name="org.gluu.oxauth.session.ws.rs.EndSessionRestWebServiceImplTest" />
+            <class name="org.gluu.oxauth.util.ServerUtilTest" />
+        </classes>
+    </test>
+
+    <test name="JsonApplierServerTest" enabled="true">
+        <classes>
+            <class name="org.gluu.oxauth.json.JsonApplierServerTest" />
+        </classes>
+    </test>
+
+	<!-- Application Type Restriction (embedded) -->
+	<test name="Application Type Restriction (embedded)" enabled="true">
+		<classes>
+			<class name="org.gluu.oxauth.ws.rs.ApplicationTypeRestrictionEmbeddedTest" />
+		</classes>
+	</test>
+
+	<!-- Authorization Code Flow test -->
+	<test name="Authorization Code Flow test (embedded)" enabled="true">
+		<classes>
+			<class name="org.gluu.oxauth.ws.rs.AuthorizationCodeFlowEmbeddedTest" />
+		</classes>
+	</test>
+
+	<!-- Authorize test -->
+	<test name="Authorize test (embedded)" enabled="true">
+		<classes>
+			<class name="org.gluu.oxauth.ws.rs.AuthorizeRestWebServiceEmbeddedTest" />
+		</classes>
+	</test>
+
+	<!-- Authorize with Response Mode test -->
+	<test name="Authorize with Response Mode test (embedded)" enabled="true">
+		<classes>
+			<class name="org.gluu.oxauth.ws.rs.AuthorizeWithResponseModeEmbeddedTest" />
+		</classes>
+	</test>
+
+	<!-- Client Authentication Filter test (embedded) -->
+	<test name="Client Authentication Filter test (embedded)" enabled="true">
+		<classes>
+			<class name="org.gluu.oxauth.ws.rs.ClientAuthenticationFilterEmbeddedTest" />
+		</classes>
+	</test>
+
+	<!-- Client Info test -->
+	<test name="Client Info test (embedded)" enabled="true">
+		<classes>
+			<class name="org.gluu.oxauth.ws.rs.ClientInfoRestWebServiceEmbeddedTest" />
+		</classes>
+	</test>
+
+	<!-- End Session test -->
+	<test name="End Session test (embedded)" enabled="true">
+		<classes>
+			<class name="org.gluu.oxauth.ws.rs.EndSessionRestWebServiceEmbeddedTest" />
+		</classes>
+	</test>
+    <test name="End Session Backchannel test (embedded)" enabled="true">
+        <classes>
+            <class name="org.gluu.oxauth.ws.rs.EndSessionBackchannelRestServerTest" />
+        </classes>
+    </test>
+
+	<!-- JWK test -->
+	<test name="JWK test (embedded)" enabled="true">
+		<classes>
+			<class name="org.gluu.oxauth.ws.rs.JwkRestWebServiceEmbeddedTest" />
+		</classes>
+	</test>
+
+	<!-- Key Generation test -->
+	<test name="Key Generation test (embedded)" enabled="true">
+		<classes>
+			<class name="org.gluu.oxauth.comp.KeyGenerationTest" />
+		</classes>
+	</test>
+
+	<!-- OpenID Request Object test -->
+	<test name="OpenID Request Object test (embedded)" enabled="true">
+		<classes>
+			<class name="org.gluu.oxauth.ws.rs.OpenIDRequestObjectEmbeddedTest" />
+			<class name="org.gluu.oxauth.ws.rs.OpenIDRequestObjectWithHSAlgEmbeddedTest" />
+			<class name="org.gluu.oxauth.ws.rs.OpenIDRequestObjectWithRSAlgEmbeddedTest" />
+			<class name="org.gluu.oxauth.ws.rs.OpenIDRequestObjectWithESAlgEmbeddedTest" />
+		</classes>
+	</test>
+
+	<!-- Register test -->
+	<test name="Register test (embedded)" enabled="true">
+		<classes>
+			<class name="org.gluu.oxauth.ws.rs.RegistrationRestWebServiceEmbeddedTest" />
+		</classes>
+	</test>
+
+	<!-- Request Object Signing Alg Restriction test -->
+	<test name="Request Object Signing Alg Restriction test (embedded)" enabled="true">
+		<classes>
+			<class name="org.gluu.oxauth.ws.rs.RequestObjectSigningAlgRestrictionEmbeddedTest" />
+		</classes>
+	</test>
+
+	<!-- Response Types Restriction -->
+	<test name="Response Types Restriction (embedded)" enabled="true">
+		<classes>
+			<class name="org.gluu.oxauth.ws.rs.ResponseTypesRestrictionEmbeddedTest" />
+		</classes>
+	</test>
+
+	<!-- Sector Identifier URL Verification test -->
+	<test name="Sector Identifier URL Verification (embedded)" enabled="true">
+		<classes>
+			<class name="org.gluu.oxauth.ws.rs.SectorIdentifierUrlVerificationEmbeddedTest" />
+		</classes>
+	</test>
+
+	<!-- Token Endpoint Auth Method Restriction test -->
+	<test name="Token Endpoint Auth Method Restriction (embedded)" enabled="true">
+		<classes>
+			<class name="org.gluu.oxauth.ws.rs.TokenEndpointAuthMethodRestrictionEmbeddedTest" />
+		</classes>
+	</test>
+
+	<!-- Token test -->
+	<test name="Token test (embedded)" enabled="true">
+		<classes>
+			<class name="org.gluu.oxauth.ws.rs.TokenRestWebServiceEmbeddedTest" />
+			<class name="org.gluu.oxauth.ws.rs.TokenRestWebServiceWithHSAlgEmbeddedTest" />
+			<class name="org.gluu.oxauth.ws.rs.TokenRestWebServiceWithRSAlgEmbeddedTest" />
+			<class name="org.gluu.oxauth.ws.rs.TokenRestWebServiceWithESAlgEmbeddedTest" />
+		</classes>
+	</test>
+
+	<!-- User Authentication Filter test (embedded) -->
+	<test name="User Authentication Filter test (embedded)" enabled="true">
+		<classes>
+			<class name="org.gluu.oxauth.ws.rs.UserAuthenticationFilterEmbeddedTest" />
+		</classes>
+	</test>
+
+	<!-- User Info test -->
+	<test name="User Info test (embedded)" enabled="true">
+		<classes>
+			<class name="org.gluu.oxauth.ws.rs.UserInfoRestWebServiceEmbeddedTest" />
+		</classes>
+	</test>
+
+	<!-- Signature test -->
+	<test name="Signature test (embedded)" enabled="true">
+		<classes>
+			<class name="org.gluu.oxauth.comp.SignatureTest" />
+		</classes>
+	</test>
+
+	<!-- Encryption test -->
+	<test name="Encryption test (embedded)" enabled="true">
+		<classes>
+			<class name="org.gluu.oxauth.comp.EncryptionTest" />
+		</classes>
+	</test>
+
+	<test name="Utility methods test" enabled="true">
+		<classes>
+			<class name="org.gluu.oxauth.comp.UtilityMethodsTest" />
+		</classes>
+	</test>
+
+	<test name="Grant service test" enabled="true">
+		<classes>
+			<class name="org.gluu.oxauth.comp.GrantServiceTest" />
+		</classes>
+	</test>
+
+	<test name="Configuration test" enabled="true">
+		<classes>
+			<class name="org.gluu.oxauth.comp.ConfigurationTest" />
+		</classes>
+	</test>
+
+	<test name="Cross Encryption test" enabled="true">
+		<classes>
+			<class name="org.gluu.oxauth.comp.CrossEncryptionTest" />
+		</classes>
+	</test>
+
+	<test name="Session ID service test" enabled="true">
+		<classes>
+			<class name="org.gluu.oxauth.comp.SessionIdServiceTest" />
+		</classes>
+	</test>
+
+	<test name="Crypto Provider test" enabled="true">
+		<classes>
+			<class name="org.gluu.oxauth.comp.CryptoProviderTest" />
+		</classes>
+	</test>
+
+	<test name="Gluu Configuration test" enabled="true">
+		<classes>
+			<class name="org.gluu.oxauth.gluu.ws.rs.GluuConfigurationWSTest" />
+		</classes>
+	</test>
+
+	<test name="UMA. Configuration test" enabled="true">
+		<classes>
+			<class name="org.gluu.oxauth.uma.ws.rs.UmaConfigurationWSTest" />
+		</classes>
+	</test>
+	<test name="UMA. Obtain PAT test" enabled="true">
+		<classes>
+			<class name="org.gluu.oxauth.uma.ws.rs.ObtainPatWSTest" />
+		</classes>
+	</test>
+	<test name="UMA. Obtain RPT test" enabled="true">
+		<classes>
+			<class name="org.gluu.oxauth.uma.ws.rs.ObtainRptWSTest" />
+		</classes>
+	</test>
+	<test name="UMA. Register resource set test" enabled="true">
+		<classes>
+			<class name="org.gluu.oxauth.uma.ws.rs.UmaRegisterResourceWSTest" />
+		</classes>
+	</test>
+	<test name="UMA. Register permission test" enabled="true">
+		<classes>
+			<class name="org.gluu.oxauth.uma.ws.rs.RegisterPermissionWSTest" />
+		</classes>
+	</test>
+	<test name="UMA. Workflow test" enabled="false">
+		<classes>
+			<class name="org.gluu.oxauth.uma.ws.rs.AccessProtectedResourceFlowWSTest" />
+		</classes>
+	</test>
+	<test name="UMA. Scope test" enabled="true">
+		<classes>
+			<class name="org.gluu.oxauth.uma.ws.rs.UmaScopeWSTest" />
+		</classes>
+	</test>
+	<test name="Inum Generation test" enabled="true">
+		<classes>
+			<class name="org.gluu.oxauth.comp.InumGeneratorTest" />
+		</classes>
+	</test>
+	<test name="Introspection endpoint test" enabled="true">
+		<classes>
+			<class name="org.gluu.oxauth.ws.rs.IntrospectionWebServiceEmbeddedTest" />
+		</classes>
+	</test>
+
+	<test name="Locale test (embedded)" enabled="true">
+		<classes>
+			<class name="org.gluu.oxauth.comp.LocaleTest" />
+		</classes>
+	</test>
+
+	<test name="Fido U2F test (embedded)" enabled="true">
+		<classes>
+			<class name="org.gluu.oxauth.service.fido.u2f.RawAuthenticationServiceTest" />
+			<class name="org.gluu.oxauth.service.fido.u2f.RawRegistrationServiceTest" />
+		</classes>
+	</test>
+
+    <test name="Cleaner timer test" enabled="false">
+        <classes>
+            <class name="org.gluu.oxauth.comp.CleanerTimerTest" />
+        </classes>
+    </test>
+
+	<test name="Remove unused clients test" enabled="true">
+		<classes>
+			<class name="org.gluu.oxauth.comp.CleanUpClientTest" />
+		</classes>
+	</test>
+
+    <!-- Enable it when client jks is regenerated -->
+    <test name="JWT cross-check test" enabled="false">
+        <classes>
+            <class name="org.gluu.oxauth.comp.JwtCrossCheckTest" />
+        </classes>
+    </test>
+
+	<parameter name="serverUri" value="https://${test.server.name}" />
+	<parameter name="authorizePath" value="restv1/authorize" />
+	<parameter name="introspectionPath" value="restv1/introspection" />
+	<parameter name="tokenPath" value="restv1/token" />
+	<parameter name="validateTokenPath" value="restv1/validate" />
+	<parameter name="jwksPath" value="restv1/jwks" />
+	<parameter name="userInfoPath" value="restv1/userinfo" />
+	<parameter name="clientInfoPath" value="restv1/clientinfo" />
+	<parameter name="endSessionPath" value="restv1/end_session" />
+	<parameter name="endSessionPagePath" value="restv1/end_session_page" />
+	<parameter name="registerPath" value="restv1/register" />
+	<parameter name="idGenerationPath" value="restv1/id" />
+	<parameter name="userId" value="${auth.user.uid}" />
+	<parameter name="userSecret" value="${auth.user.password}" />
+	<parameter name="userInum" value="${auth.user.inum}" />
+	<parameter name="userEmail" value="${auth.user.email}" />
+	<parameter name="clientId" value="${auth.client.id}" />
+	<parameter name="clientSecret" value="${auth.client.secret}" />
+	<parameter name="redirectUri" value="https://client.example.com/cb" />
+	<parameter name="redirectUris" value="https://client.example.com/cb https://client.example.com/cb1 https://client.example.com/cb2" />
+	<parameter name="postLogoutRedirectUri" value="https://client.example.com/pl" />
+	<parameter name="ldapAdminPassword" value="${ldap.admin.password}" />
+	<parameter name="audience" value="${test.server.url}/restv1/token" />
+	<parameter name="sectorIdentifierUri" value="https://${test.server.name}/oxauth/sectoridentifier/${sector.identifier.id}" />
+	<!-- By enabling this block, you require a place to publish files via HTTP or HTTPS -->
+	<!--<parameter name="requestFileBasePath" value="/var/www/html/oxAuth"/> -->
+	<!--<parameter name="requestFileBaseUrl" value="http://localhost/oxAuth"/> -->
+
+	<!-- Gluu -->
+	<parameter name="umaConfigurationPath" value="restv1/.well-known/gluu-configuration" />
+
+	<!-- UMA -->
+	<parameter name="umaConfigurationPath" value="restv1/uma2-configuration" />
+	<parameter name="umaRegisterResourcePath" value="restv1/host/rsrc/resource_set" />
+	<parameter name="umaScopePath" value="restv1/uma/scopes" />
+	<parameter name="umaPermissionPath" value="restv1/host/rsrc_pr" />
+	<parameter name="umaPermissionAuthorizationPath" value="restv1/requester/perm" />
+	<parameter name="umaRptPath" value="restv1/requester/rpt" />
+	<parameter name="umaGatPath" value="restv1/requester/gat" />
+	<parameter name="umaRptStatusPath" value="restv1/rpt/status" />
+	<parameter name="umaUserId" value="${uma.user.uid}" />
+	<parameter name="umaUserSecret" value="${uma.user.password}" />
+	<parameter name="umaPatClientId" value="${uma.pat.client.id}" />
+	<parameter name="umaPatClientSecret" value="${uma.pat.client.secret}" />
+	<parameter name="umaRedirectUri" value="https://client.example.com/cb" />
+	<parameter name="umaClaimsRedirectUri" value="https://client.example.com/cb" />
+
+	<parameter name="contactEmail1" value="${contact.email.1}" />
+	<parameter name="contactEmail2" value="${contact.email.2}" />
+
+	<parameter name="usedClients" value="${test.keep.clients}" />
+
+	<!-- Client Resources -->
+	<parameter name="clientJwksUri" value="https://${test.server.name}/oxauth-client/test/resources/jwks.json" />
+	<!-- RS256 -->
+	<parameter name="RS256_modulus"
+		value="AJpGcIVu7fmQJLHXeAClhXaJD7SvuABjYiPcT9IbKFWGWj51GgD-CxtyrQGXT0ctGEEsXOzMZM40q-V7GR-5qkJ_OalVTTc_EeKAHao45bZPsPHLxvusNfrfpyhc6JjF2TQhoOqxbgMgQ9L6W9q9fSjgzx-tPlD0d3X0GZOEQ_NYGstZWRRBwHgsxA2IRYtwSH-v76yPpxF9poLIWdnBKtKfSr6UY7p1BrLmMm0DdMhjQLn6j4S_eB-p2WyBwObvsLqO6FdClpZFtGr82Km2uinpHvZ6KJ_MUEW1sijPPI3rIGbaUbLtQJwX5GVynAP5qU2qRVkcsrKt-GeNoz6QNLM" />
+	<parameter name="RS256_privateExponent"
+		value="RkIKAFpyehMRAwTTm8fFriPhSTI1I8ge66HroA3KIpjbBFKkEwue11M0QuM7sXhx8UxYzWaQCfCm0A1tdatCRKJYCivUzHImnPYnjFv5ETvdo2BgMEFPG_86ywD01I5Vyo3-EKPZLAdHnA90QXvGQhWPfieRl6CdvtP5ydqUb39aPazZKzPx4v6hj-7wrrwrQmYq-7li_urR2zhz5HvE_eE66i1xhGTI8VdV9VE2y06Zbzn54qL7kf0nsjvg4X9ERdXv4kkhRwSSc3CExJ-iNbo0n3nQ3KovhpA1FEzd9cwI_2EfLRIvVjJRMTnPHCLmz_8-Htn2Kpi3vV9MWHab8Q" />
+	<!-- RS384 -->
+	<parameter name="RS384_modulus"
+		value="AJ125IzZ0TRSSoVas3jwMWuckyMujoGUUeDd8rLjTSCLlgUb3RiT9MbKfWdeCByme5MZ21lvMu6OmMFn8iDb5erLSBJ8bZFq6ruGIVzU8NI833IahlIO9m6JIR4L_go8Szu-1MYPGUjOKDsxc-Fp3fR-Kb0HFAEEs44t9vL9yMKjNeQeAp7Fo2AukDNEZqvEObP7XWLdJFA-TuAXE1f7o49lMr0y4Tqy2XeDKwfklO0bAnbSryZubRg2E7gjiwaiSYVIFphotLlpCd3N4MU46JjHA2dv1GtIe8749HinwhK1stes3PbZb9Gwm2LyK89iRJ35bCmDLnkwP0rTwTZ2Ul8" />
+	<parameter name="RS384_privateExponent"
+		value="NYqTtADsTaodhLKOi_TAGSMoNLJD6nOQU7GkMIdxVjugSyRqTU0h0eZQNbGXeIZzRlVobESPQOZjsn-xqNKcnvV4EDEW4HdGUXUOKw6MxC_GmnnCamyEBpnCFQFm4_wUaMA-gQnpQwQ2UcpC6Maindu4PXoGp0H9-75NVdpNRUDHO5xY2Ybp2kVv__sUWCKRLK7JaKRA3iGlXFpLPSy9DvmBjy27z1t_z58_vrPrVset7muMwMTwgfDv-EP3NBH4eTg7_Cy952MuhxaUUsHW85LZuv5t_rcoUF8kfDWcclP3a954lAzCbVjdngpvaShNbiTKAf9-bMQKG66v63W54Q" />
+	<!-- RS512 -->
+	<parameter name="RS512_modulus"
+		value="AKuc75KyKNwteumhyN5Kxa4ipQZrE_ouULtMZmCYI3Y32oCv3wWkgmrprBo-yCK292wfn77dNdZ9h5OoY-6sDVG-OKi9uwXpFcopyqIdsYOrw-4FKHxpr_7b--cH6HRmGlSFKVJpwfvIjD9Mu8S9bhNgnXfbKoYLcANU7Vjtacr3MvX-U406eRXLI9lZNr6ViQxSJw3A7yYMo2XYMYhO-FHGOYeV815q7fJFUMoCUMNSWlCx-pUCVGg0PuCKlOhUGIoLqvuFqUnBNd0hoAJCtmqya4_e3DLNzOgr2HOEbX7kQEjpi0XdyQ0fbFTAYO9TpXT2gldnmOElZ4UE2lX8J6M" />
+	<parameter name="RS512_privateExponent"
+		value="doYyFGAFxmOG43tAbv63XthAn5kut_hq-6D9iDMrMsfKmlxdLNl81XhDy_CWaxtw8PU6cCj5uQUDsSB4vGuJ224EVc6ML73WtcR9VdAqPOVRsb9QQfUAf4XRibO1gUbPYpaBfpDaUBonesR1XqDyOGHe_9uXl_KoTzTFpEh8a5eCk9mwz85bb08PxQUut5DFdzPPyTi8_k3m7hry97I0TMbHUTiTqjgFpq2ZqSn4KQz77uft1oMwJLvlNHP6Fs25aVYrgAWw1DfTcCDwPAKxXlCD4ZPfGN2LmxZWCYxj1HLVKmQkrjX-FSgvpHs7YUqzJ19whmrTEtODnhWvZhTucQ" />
+	<!-- ES256 -->
+	<parameter name="ES256_d" value="AIiNVUvr6-ChpOv2F7HNXyS2pYuoLF3ZqF2kTP0XquzB" />
+	<!-- ES384 -->
+	<parameter name="ES384_d" value="S5iDyZaSar7cqcCKYFC1VGVKAXmwdOSHRMrwbrEd_WvmIYi3u8PwHFYAmA0PEwLF" />
+	<!-- ES512 -->
+	<parameter name="ES512_d" value="AbedxoxLdftbJpXMYWlcuJkEF6iRotCxYYbH18NyEuOka_vS5dLV6m6Bhx_y_y9NgTQzP5SGzfpkSpgF6JVG7eFL" />
+
+</suite>
diff --git a/oxAuth/Server/src/test/resources/web.xml b/oxAuth/Server/src/test/resources/web.xml
new file mode 100644
index 00000000..c539d7aa
--- /dev/null
+++ b/oxAuth/Server/src/test/resources/web.xml
@@ -0,0 +1,100 @@
+<?xml version="1.0" encoding="UTF-8"?>
+
+<web-app version="3.1" xmlns="http://xmlns.jcp.org/xml/ns/javaee" xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance"
+	xsi:schemaLocation="http://xmlns.jcp.org/xml/ns/javaee http://xmlns.jcp.org/xml/ns/javaee/web-app_3_1.xsd">
+
+	<display-name>oxAuth Test Server</display-name>
+
+	<!-- Weld -->
+	<listener>
+		<listener-class>org.jboss.weld.environment.servlet.Listener</listener-class>
+	</listener>
+    
+	<!-- Authentication filter -->
+	<filter>
+		<filter-name>Authentication Filter</filter-name>
+		<filter-class>org.gluu.oxauth.auth.AuthenticationFilter</filter-class>
+	</filter>
+
+	<filter-mapping>
+		<filter-name>Authentication Filter</filter-name>
+		<url-pattern>/restv1/authorize</url-pattern>
+		<url-pattern>/restv1/token</url-pattern>
+		<url-pattern>/restv1/userinfo</url-pattern>
+	</filter-mapping>
+
+	<!-- JSF -->
+	<context-param>
+		<param-name>javax.faces.PROJECT_STAGE</param-name>
+		<param-value>Development</param-value>
+	</context-param>
+	<context-param>
+		<param-name>javax.faces.DEFAULT_SUFFIX</param-name>
+		<param-value>.xhtml</param-value>
+	</context-param>
+
+	<listener>
+		<listener-class>com.sun.faces.config.ConfigureListener</listener-class>
+	</listener>
+
+	<context-param>
+		<param-name>com.sun.faces.expressionFactory</param-name>
+		<param-value>com.sun.el.ExpressionFactoryImpl</param-value>
+	</context-param>
+
+	<servlet>
+		<servlet-name>Faces Servlet</servlet-name>
+		<servlet-class>javax.faces.webapp.FacesServlet</servlet-class>
+		<load-on-startup>1</load-on-startup>
+	</servlet>
+
+	<servlet-mapping>
+		<servlet-name>Faces Servlet</servlet-name>
+		<url-pattern>*.htm</url-pattern>
+	</servlet-mapping>
+
+	<session-config>
+		<session-timeout>30</session-timeout>
+		<tracking-mode>COOKIE</tracking-mode>
+	</session-config>
+
+	<security-constraint>
+		<display-name>Restrict raw XHTML Documents</display-name>
+		<web-resource-collection>
+			<web-resource-name>XHTML</web-resource-name>
+			<url-pattern>*.xhtml</url-pattern>
+		</web-resource-collection>
+		<auth-constraint />
+	</security-constraint>
+
+	<!-- Resteasy -->
+	<context-param>
+		<param-name>resteasy.injector.factory</param-name>
+		<param-value>org.jboss.resteasy.cdi.CdiInjectorFactory</param-value>
+	</context-param>
+
+	<context-param>
+		<param-name>resteasy.servlet.mapping.prefix</param-name>
+		<param-value>/restv1</param-value>
+	</context-param>
+
+	<servlet>
+		<servlet-name>Resteasy</servlet-name>
+		<servlet-class>org.jboss.resteasy.plugins.server.servlet.HttpServlet30Dispatcher</servlet-class>
+		<init-param>
+			<param-name>javax.ws.rs.Application</param-name>
+			<param-value>org.gluu.oxauth.service.TestResteasyInitializer</param-value>
+		</init-param>
+	</servlet>
+
+	<servlet-mapping>
+		<servlet-name>Resteasy</servlet-name>
+		<url-pattern>/restv1/*</url-pattern>
+	</servlet-mapping>
+
+	<resource-env-ref>
+		<description>Object factory for the CDI Bean Manager</description>
+		<resource-env-ref-name>BeanManager</resource-env-ref-name>
+		<resource-env-ref-type>javax.enterprise.inject.spi.BeanManager</resource-env-ref-type>
+	</resource-env-ref>
+</web-app>
diff --git a/oxAuth/Server/uma/UmaClientAuthzRptPolicy.py b/oxAuth/Server/uma/UmaClientAuthzRptPolicy.py
new file mode 100644
index 00000000..0091c60c
--- /dev/null
+++ b/oxAuth/Server/uma/UmaClientAuthzRptPolicy.py
@@ -0,0 +1,83 @@
+# oxAuth is available under the MIT License (2017). See http://opensource.org/licenses/MIT for full text.
+# Copyright (c) 2017, Gluu
+#
+# Author: Jose Gonzalez
+# Adapted from previous 3.0.1 script of Yuriy Movchan
+#
+# oxConfigurationProperty required:
+#   allowed_clients - comma separated list of dns of allowed clients
+#   (i.e. the SCIM RP client)
+
+from org.gluu.model.custom.script.type.uma import UmaRptPolicyType
+from org.gluu.service.cdi.util import CdiUtil
+from org.gluu.model.uma import ClaimDefinitionBuilder
+from org.gluu.util import StringHelper, ArrayHelper
+from java.util import Arrays, ArrayList, HashSet
+from java.lang import String
+
+class UmaRptPolicy(UmaRptPolicyType):
+
+    def __init__(self, currentTimeMillis):
+        self.currentTimeMillis = currentTimeMillis
+
+    def init(self, customScript, configurationAttributes):
+        print "RPT Policy. Initializing ..."
+        self.clientsSet = self.prepareClientsSet(configurationAttributes)
+        print "RPT Policy. Initialized successfully"
+        return True
+
+    def destroy(self, configurationAttributes):
+        print "RPT Policy. Destroyed successfully"
+        return True
+
+    def getApiVersion(self):
+        return 11
+
+    def getRequiredClaims(self, context):
+        json = """[
+        ]"""
+        return ClaimDefinitionBuilder.build(json)
+
+    def authorize(self, context): # context is reference of org.gluu.oxauth.uma.authorization.UmaAuthorizationContext
+        print "RPT Policy. Authorizing ..."
+
+        client_id=context.getClient().getClientId()
+        print "UmaRptPolicy. client_id = %s" % client_id
+
+        if (StringHelper.isEmpty(client_id)):
+            return False
+     
+        if (self.clientsSet.contains(client_id)):
+            print "UmaRptPolicy. Authorizing client"
+            return True
+        else:
+            print "UmaRptPolicy. Client isn't authorized"
+            return False
+
+    def getClaimsGatheringScriptName(self, context):
+        return ""
+
+    def prepareClientsSet(self, configurationAttributes):
+        clientsSet = HashSet()
+        if (not configurationAttributes.containsKey("allowed_clients")):
+            return clientsSet
+
+        allowedClientsList = configurationAttributes.get("allowed_clients").getValue2()
+        if (StringHelper.isEmpty(allowedClientsList)):
+            print "UmaRptPolicy. The property allowed_clients is empty"
+            return clientsSet    
+
+        allowedClientsListArray = StringHelper.split(allowedClientsList, ",")
+        if (ArrayHelper.isEmpty(allowedClientsListArray)):
+            print "UmaRptPolicy. No clients specified in allowed_clients property"
+            return clientsSet
+        
+        # Convert to HashSet to quick search
+        i = 0
+        count = len(allowedClientsListArray)
+        while (i < count):
+            client = allowedClientsListArray[i]
+            clientsSet.add(client)
+            i = i + 1
+
+        return clientsSet
diff --git a/oxAuth/Server/uma/sample/UmaClaimsGathering.py b/oxAuth/Server/uma/sample/UmaClaimsGathering.py
new file mode 100644
index 00000000..3a92708d
--- /dev/null
+++ b/oxAuth/Server/uma/sample/UmaClaimsGathering.py
@@ -0,0 +1,123 @@
+# oxAuth is available under the MIT License (2008). See http://opensource.org/licenses/MIT for full text.
+# Copyright (c) 2017, Gluu
+#
+# Author: Yuriy Zabrovarnyy
+#
+
+from org.gluu.model.custom.script.type.uma import UmaClaimsGatheringType
+from org.gluu.service.cdi.util import CdiUtil
+from org.gluu.oxauth.uma.service import UmaPctService
+
+class UmaClaimsGathering(UmaClaimsGatheringType):
+
+    def __init__(self, currentTimeMillis):
+        self.currentTimeMillis = currentTimeMillis
+
+    def init(self, customScript, configurationAttributes):
+        print "Claims-Gathering. Initializing ..."
+        print "Claims-Gathering. Initialized successfully"
+
+        return True
+
+    def destroy(self, configurationAttributes):
+        print "Claims-Gathering. Destroying ..."
+        print "Claims-Gathering. Destroyed successfully"
+        return True
+
+    def getApiVersion(self):
+        return 11
+
+
+    # Main gather method. Must return True (if gathering performed successfully) or False (if fail).
+    # Method must set claim into context (via context.putClaim('name', value)) in order to persist it (otherwise it will be lost).
+    # All user entered values can be access via Map<String, String> context.getPageClaims()
+    def gather(self, step, context): # context is reference of org.gluu.oxauth.uma.authorization.UmaGatherContext
+        print "Claims-Gathering. Gathering ..."
+
+        if context.getClaim("country") == 'US' and context.getClaim("city") == 'NY':
+            return True
+
+        if step == 1:
+            if (context.getPageClaims().containsKey("country")):
+                country = context.getPageClaims().get("country")
+                print "Country: " + country
+
+                context.putClaim("country", country)
+                return True
+
+            print "Claims-Gathering. 'country' is not provided on step 1."
+            return False
+
+        elif step == 2:
+            if (context.getPageClaims().containsKey("city")):
+                city = context.getPageClaims().get("city")
+                print "City: " + city
+
+                context.putClaim("city", city)
+                print "Claims-Gathering. 'city' is not provided on step 2."
+                return True
+
+        return False
+
+    def getNextStep(self, step, context):
+        return -1
+
+    def prepareForStep(self, step, context):
+        if step == 10 and not context.isAuthenticated():
+            # user is not authenticated, so we are redirecting user to authorization endpoint
+            # client_id is specified via configuration attribute.
+            # Make sure that given client has redirect_uri to Claims-Gathering Endpoint with parameter authentication=true
+            # Sample https://sample.com/restv1/uma/gather_claims?authentication=true
+            # If redirect to external url is performated, make sure that viewAction has onPostback="true" (otherwise redirect will not work)
+            # After user is authenticated then within the script it's possible to get user attributes as
+            # context.getUser("uid", "sn")
+            # If user is authenticated to current AS (to the same server, not external one) then it's possible to
+            # access Connect session attributes directly (no need to obtain id_token after redirect with 'code').
+            # To fetch attributes please use getConnectSessionAttributes() method.
+
+            print "User is not authenticated. Redirect for authentication ..."
+            clientId = context.getConfigurationAttributes().get("client_id").getValue2()
+            redirectUri = context.getClaimsGatheringEndpoint() + "?authentication=true" # without authentication=true parameter it will not work
+            authorizationUrl = context.getAuthorizationEndpoint() + "?client_id=" + clientId + "&redirect_uri=" + redirectUri + "&scope=openid&response_type=code"
+            context.redirectToExternalUrl(authorizationUrl) # redirect to external url
+            return False
+        if step == 10 and context.isAuthenticated(): # example how to get session attribute if user is authenticated to same AS
+            arc = context.getConnectSessionAttributes().get("acr")
+
+        return True
+
+    def getStepsCount(self, context):
+        return 2
+
+    def getPageForStep(self, step, context):
+        print "Trying to get claims from PCT ..."
+        pctCode = context.getRequestParameters().get("pct")
+        if pctCode is not None:
+            try:
+                pct = CdiUtil.bean(UmaPctService).getByCode(pctCode[0])
+
+                country = pct.getClaims().getClaimAsString("country")
+                print "Country from pct: " + country
+                context.putClaim("country", country)
+
+                city = pct.getClaims().getClaimAsString("city")
+                print "City from pct: " + city
+                context.putClaim("city", city)
+
+                stepsCount = 2
+                print "stepsCount: " + str(stepsCount)
+                for x in range(1, stepsCount):
+                    context.addSessionAttribute("uma_step_passed_" + str(x), str(True))
+                context.setStep(stepsCount)
+
+                return "/uma2/sample/claims_resolved.xhtml"
+            except:
+                print "Exception occured. Unable to resolve pct from client."
+
+
+        print "Claims not found in pct ..."
+        if step == 1:
+            return "/uma2/sample/country.xhtml"
+        elif step == 2:
+            return "/uma2/sample/city.xhtml"
+        return ""
\ No newline at end of file
diff --git a/oxAuth/Server/uma/sample/UmaRptPolicy.py b/oxAuth/Server/uma/sample/UmaRptPolicy.py
new file mode 100644
index 00000000..88a4afc6
--- /dev/null
+++ b/oxAuth/Server/uma/sample/UmaRptPolicy.py
@@ -0,0 +1,77 @@
+# oxAuth is available under the MIT License (2008). See http://opensource.org/licenses/MIT for full text.
+# Copyright (c) 2017, Gluu
+#
+# Author: Yuriy Zabrovarnyy
+#
+# Call sequence
+# 1. First is call constructor of the Script __init__
+# 2. Next init() method
+# 3. Next getRequiredClaims() - method returns required claims, so UMA engine checks whether
+#    in request RP provided all claims that are required. Pay attention that there can be
+#    multiple scripts bound to the scopes, means that UMA engine will build set of required claims
+#    from all scripts. If not all claims are provided need_info error is sent to RP.
+#    During need_info construction getClaimsGatheringScriptName() method is called
+# 4. authorize() method is called if all required claims are provided.
+# 5. destroy()
+
+from org.gluu.model.custom.script.type.uma import UmaRptPolicyType
+from org.gluu.model.uma import ClaimDefinitionBuilder
+from java.lang import String
+
+class UmaRptPolicy(UmaRptPolicyType):
+    def __init__(self, currentTimeMillis):
+        self.currentTimeMillis = currentTimeMillis
+
+    def init(self, customScript, configurationAttributes):
+        print "RPT Policy. Initializing ..."
+        print "RPT Policy. Initialized successfully"
+
+        return True
+
+    def destroy(self, configurationAttributes):
+        print "RPT Policy. Destroying ..."
+        print "RPT Policy. Destroyed successfully"
+        return True
+
+    def getApiVersion(self):
+        return 11
+
+    # Returns required claims definitions.
+    # This method must provide definition of all claims that is used in 'authorize' method.
+    # Return empty array `[]` if no claims should be gathered.
+    # Note : name in both places must match.
+    # %1$s - placeholder for issuer. It uses standard Java Formatter, docs : https://docs.oracle.com/javase/7/docs/api/java/util/Formatter.html
+    def getRequiredClaims(self, context): # context is reference of org.gluu.oxauth.uma.authorization.UmaAuthorizationContext
+        json = """[
+        {
+            "issuer" : [ "%1$s" ],
+            "name" : "country",
+            "claim_token_format" : [ "http://openid.net/specs/openid-connect-core-1_0.html#IDToken" ],
+            "claim_type" : "string",
+            "friendly_name" : "country"
+        },
+        {
+            "issuer" : [ "%1$s" ],
+            "name" : "city",
+            "claim_token_format" : [ "http://openid.net/specs/openid-connect-core-1_0.html#IDToken" ],
+            "claim_type" : "string",
+            "friendly_name" : "city"
+        }
+        ]"""
+        context.addRedirectUserParam("customUserParam1", "value1") # pass some custom parameters to need_info uri. It can be removed if you don't need custom parameters.
+        return ClaimDefinitionBuilder.build(String.format(json, context.getIssuer()))
+
+    # Main authorization method. Must return True or False.
+    def authorize(self, context): # context is reference of org.gluu.oxauth.uma.authorization.UmaAuthorizationContext
+        print "RPT Policy. Authorizing ..."
+
+        if context.getClaim("country") == 'US' and context.getClaim("city") == 'NY':
+            print "Authorized successfully!"
+            return True
+
+        return False
+
+    # Returns name of the Claims-Gathering script which will be invoked if need_info error is returned. Return blank/empty string if claims gathering flow is not involved.
+    def getClaimsGatheringScriptName(self, context): # context is reference of org.gluu.oxauth.uma.authorization.UmaAuthorizationContext
+        context.addRedirectUserParam("customUserParam2", "value2") # pass some custom parameters to need_info uri. It can be removed if you don't need custom parameters.
+        return "sampleClaimsGathering"
\ No newline at end of file
diff --git a/oxAuth/Tests/selenium/ReadMe.txt b/oxAuth/Tests/selenium/ReadMe.txt
new file mode 100644
index 00000000..1a00b68b
--- /dev/null
+++ b/oxAuth/Tests/selenium/ReadMe.txt
@@ -0,0 +1,23 @@
+Here is process how to run it:
+1)	We need 2-3 Firefox instances:
+-	Run Firefox: "C:\Program Files (x86)\Mozilla Firefox\firefox.exe" -P test -no-remote
+-	Add Firefox profile “test”
+-	Install into Firefox next addons: https://addons.mozilla.org/en-US/firefox/addon/selenium-ide/
+-	
+-	Run Firefox: "C:\Program Files (x86)\Mozilla Firefox\firefox.exe" -P test2 -no-remote
+-	Add Firefox profile “test2”
+-	Install into Firefox next addons: https://addons.mozilla.org/en-US/firefox/addon/selenium-ide/
+-	…
+2)	Configure SeleniumIDE in each Firefox:
+-	Open SeleniumIDE in each browser.
+-	Open SeleniumIDE main menu: “Options”->”Options…”
+-	Select in field “Selenium Core Extensions” plugin “while.js”. It’s attached to this e-mail.
+-	Repeat these steps in all Firefox instances.
+3)	Load selenium suite in each instance
+4)	Run test in all instances
+5)	On success you should get in Selenium log:
+…
+[info] script is: storedVars['x']=999+1
+[info] Executing: |endWhile | | |
+[info] Executing: |while | storedVars['x'] < 1000 | |
+[info] Test case passed
diff --git a/oxAuth/Tests/selenium/selenium_login. t1_user.html b/oxAuth/Tests/selenium/selenium_login. t1_user.html
new file mode 100644
index 00000000..e43f9c94
--- /dev/null
+++ b/oxAuth/Tests/selenium/selenium_login. t1_user.html	
@@ -0,0 +1,86 @@
+<?xml version="1.0" encoding="UTF-8"?>
+<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Strict//EN" "http://www.w3.org/TR/xhtml1/DTD/xhtml1-strict.dtd">
+<html xmlns="http://www.w3.org/1999/xhtml" xml:lang="en" lang="en">
+<head profile="http://selenium-ide.openqa.org/profiles/test-case">
+<meta http-equiv="Content-Type" content="text/html; charset=UTF-8" />
+<link rel="selenium.base" href="https://localhost:8443/" />
+<title>selenium_login_user_t1</title>
+</head>
+<body>
+<table cellpadding="1" cellspacing="1" border="1">
+<thead>
+<tr><td rowspan="1" colspan="3">selenium_login: t1_user</td></tr>
+</thead><tbody>
+<tr>
+	<td>store</td>
+	<td>0</td>
+	<td>count</td>
+</tr>
+<tr>
+	<td>while</td>
+	<td>storedVars['count'] &lt; 1000</td>
+	<td></td>
+</tr>
+<tr>
+	<td>echo</td>
+	<td>${x}</td>
+	<td></td>
+</tr>
+<tr>
+	<td>open</td>
+	<td>https://c67.gluu.info/identity</td>
+	<td></td>
+</tr>
+<tr>
+	<td>waitForTitle</td>
+	<td>oxAuth - Login</td>
+	<td></td>
+</tr>
+<tr>
+	<td>type</td>
+	<td>id=loginForm:username</td>
+	<td>t1_user</td>
+</tr>
+<tr>
+	<td>type</td>
+	<td>id=loginForm:password</td>
+	<td>test</td>
+</tr>
+<tr>
+	<td>clickAndWait</td>
+	<td>id=loginForm:loginButton</td>
+	<td></td>
+</tr>
+<tr>
+	<td>waitForElementPresent</td>
+	<td>css=div.rf-ntf-sum</td>
+	<td></td>
+</tr>
+<tr>
+	<td>assertText</td>
+	<td>css=li[class=&quot;infomsg&quot;]</td>
+	<td>Welcome, t1_user!</td>
+</tr>
+<tr>
+	<td>open</td>
+	<td>https://c67.gluu.info/identity/logout</td>
+	<td></td>
+</tr>
+<tr>
+	<td>waitForLocation</td>
+	<td>https://c67.gluu.info/identity/authentication/finishlogout</td>
+	<td></td>
+</tr>
+<tr>
+	<td>storeEval</td>
+	<td>storedVars['count']=${count}+1</td>
+	<td></td>
+</tr>
+<tr>
+	<td>endWhile</td>
+	<td></td>
+	<td></td>
+</tr>
+</tbody></table>
+</body>
+</html>
diff --git a/oxAuth/Tests/selenium/selenium_login. t2_user.html b/oxAuth/Tests/selenium/selenium_login. t2_user.html
new file mode 100644
index 00000000..55ca50c2
--- /dev/null
+++ b/oxAuth/Tests/selenium/selenium_login. t2_user.html	
@@ -0,0 +1,86 @@
+<?xml version="1.0" encoding="UTF-8"?>
+<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Strict//EN" "http://www.w3.org/TR/xhtml1/DTD/xhtml1-strict.dtd">
+<html xmlns="http://www.w3.org/1999/xhtml" xml:lang="en" lang="en">
+<head profile="http://selenium-ide.openqa.org/profiles/test-case">
+<meta http-equiv="Content-Type" content="text/html; charset=UTF-8" />
+<link rel="selenium.base" href="https://localhost:8443/" />
+<title>selenium_login_user_t2</title>
+</head>
+<body>
+<table cellpadding="1" cellspacing="1" border="1">
+<thead>
+<tr><td rowspan="1" colspan="3">selenium_login: t2_user</td></tr>
+</thead><tbody>
+<tr>
+	<td>store</td>
+	<td>0</td>
+	<td>count</td>
+</tr>
+<tr>
+	<td>while</td>
+	<td>storedVars['count'] &lt; 1000</td>
+	<td></td>
+</tr>
+<tr>
+	<td>echo</td>
+	<td>${x}</td>
+	<td></td>
+</tr>
+<tr>
+	<td>open</td>
+	<td>https://c67.gluu.info/identity</td>
+	<td></td>
+</tr>
+<tr>
+	<td>waitForTitle</td>
+	<td>oxAuth - Login</td>
+	<td></td>
+</tr>
+<tr>
+	<td>type</td>
+	<td>id=loginForm:username</td>
+	<td>t2_user</td>
+</tr>
+<tr>
+	<td>type</td>
+	<td>id=loginForm:password</td>
+	<td>test</td>
+</tr>
+<tr>
+	<td>clickAndWait</td>
+	<td>id=loginForm:loginButton</td>
+	<td></td>
+</tr>
+<tr>
+	<td>waitForElementPresent</td>
+	<td>css=div.rf-ntf-sum</td>
+	<td></td>
+</tr>
+<tr>
+	<td>assertText</td>
+	<td>css=li[class=&quot;infomsg&quot;]</td>
+	<td>Welcome, t2_user!</td>
+</tr>
+<tr>
+	<td>open</td>
+	<td>https://c67.gluu.info/identity/logout</td>
+	<td></td>
+</tr>
+<tr>
+	<td>waitForLocation</td>
+	<td>https://c67.gluu.info/identity/authentication/finishlogout</td>
+	<td></td>
+</tr>
+<tr>
+	<td>storeEval</td>
+	<td>storedVars['count']=${count}+1</td>
+	<td></td>
+</tr>
+<tr>
+	<td>endWhile</td>
+	<td></td>
+	<td></td>
+</tr>
+</tbody></table>
+</body>
+</html>
diff --git a/oxAuth/Tests/selenium/selenium_login. t3_user.html b/oxAuth/Tests/selenium/selenium_login. t3_user.html
new file mode 100644
index 00000000..2fc54d79
--- /dev/null
+++ b/oxAuth/Tests/selenium/selenium_login. t3_user.html	
@@ -0,0 +1,86 @@
+<?xml version="1.0" encoding="UTF-8"?>
+<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Strict//EN" "http://www.w3.org/TR/xhtml1/DTD/xhtml1-strict.dtd">
+<html xmlns="http://www.w3.org/1999/xhtml" xml:lang="en" lang="en">
+<head profile="http://selenium-ide.openqa.org/profiles/test-case">
+<meta http-equiv="Content-Type" content="text/html; charset=UTF-8" />
+<link rel="selenium.base" href="https://localhost:8443/" />
+<title>selenium_login_user_t3</title>
+</head>
+<body>
+<table cellpadding="1" cellspacing="1" border="1">
+<thead>
+<tr><td rowspan="1" colspan="3">selenium_login: t3_user</td></tr>
+</thead><tbody>
+<tr>
+	<td>store</td>
+	<td>0</td>
+	<td>count</td>
+</tr>
+<tr>
+	<td>while</td>
+	<td>storedVars['count'] &lt; 1000</td>
+	<td></td>
+</tr>
+<tr>
+	<td>echo</td>
+	<td>${x}</td>
+	<td></td>
+</tr>
+<tr>
+	<td>open</td>
+	<td>https://c67.gluu.info/identity</td>
+	<td></td>
+</tr>
+<tr>
+	<td>waitForTitle</td>
+	<td>oxAuth - Login</td>
+	<td></td>
+</tr>
+<tr>
+	<td>type</td>
+	<td>id=loginForm:username</td>
+	<td>t3_user</td>
+</tr>
+<tr>
+	<td>type</td>
+	<td>id=loginForm:password</td>
+	<td>test</td>
+</tr>
+<tr>
+	<td>clickAndWait</td>
+	<td>id=loginForm:loginButton</td>
+	<td></td>
+</tr>
+<tr>
+	<td>waitForElementPresent</td>
+	<td>css=div.rf-ntf-sum</td>
+	<td></td>
+</tr>
+<tr>
+	<td>assertText</td>
+	<td>css=li[class=&quot;infomsg&quot;]</td>
+	<td>Welcome, t3_user!</td>
+</tr>
+<tr>
+	<td>open</td>
+	<td>https://c67.gluu.info/identity/logout</td>
+	<td></td>
+</tr>
+<tr>
+	<td>waitForLocation</td>
+	<td>https://c67.gluu.info/identity/authentication/finishlogout</td>
+	<td></td>
+</tr>
+<tr>
+	<td>storeEval</td>
+	<td>storedVars['count']=${count}+1</td>
+	<td></td>
+</tr>
+<tr>
+	<td>endWhile</td>
+	<td></td>
+	<td></td>
+</tr>
+</tbody></table>
+</body>
+</html>
diff --git a/oxAuth/Tests/selenium/while.js b/oxAuth/Tests/selenium/while.js
new file mode 100644
index 00000000..ef1ac51e
--- /dev/null
+++ b/oxAuth/Tests/selenium/while.js
@@ -0,0 +1,126 @@
+var gotoLabels= {};
+var whileLabels = {};
+
+// overload the original Selenium reset function
+Selenium.prototype.reset = function() {
+    // reset the labels
+    this.initialiseLabels();
+    // proceed with original reset code
+    this.defaultTimeout = Selenium.DEFAULT_TIMEOUT;
+    this.browserbot.selectWindow("null");
+    this.browserbot.resetPopups();
+}
+
+
+/*
+* --- Initialize Conditional Elements --- *
+* Run through the script collecting line numbers of all conditional elements
+* There are three a results arrays: goto labels, while pairs and forEach pairs
+*
+*/
+Selenium.prototype.initialiseLabels = function()
+{
+    gotoLabels = {};
+    whileLabels = { ends: {}, whiles: {} };
+    var command_rows = [];
+    var numCommands = testCase.commands.length;
+    for (var i = 0; i < numCommands; ++i) {
+        var x = testCase.commands[i];
+        command_rows.push(x);
+    }
+    var cycles = [];
+    var forEachCmds = [];
+    for( var i = 0; i < command_rows.length; i++ ) {
+        if (command_rows[i].type == 'command')
+        switch( command_rows[i].command.toLowerCase() ) {
+            case "label":
+                gotoLabels[ command_rows[i].target ] = i;
+                break;
+            case "while":
+            case "endwhile":
+                cycles.push( [command_rows[i].command.toLowerCase(), i] )
+                break;
+            case "foreach":
+            case "endforeach":
+                forEachCmds.push( [command_rows[i].command.toLowerCase(), i] )
+                break;
+        }
+    }
+    var i = 0;
+    while( cycles.length ) {
+        if( i >= cycles.length ) {
+            throw new Error( "non-matching while/endWhile found" );
+        }
+        switch( cycles[i][0] ) {
+            case "while":
+                if( ( i+1 < cycles.length ) && ( "endwhile" == cycles[i+1][0] ) ) {
+                    // pair found
+                    whileLabels.ends[ cycles[i+1][1] ] = cycles[i][1];
+                    whileLabels.whiles[ cycles[i][1] ] = cycles[i+1][1];
+                    cycles.splice( i, 2 );
+                    i = 0;
+                } else ++i;
+                break;
+            case "endwhile":
+                ++i;
+                break;
+        }
+    }
+
+}
+
+Selenium.prototype.continueFromRow = function( row_num )
+{
+    if(row_num == undefined || row_num == null || row_num < 0) {
+        throw new Error( "Invalid row_num specified." );
+    }
+    testCase.debugContext.debugIndex = row_num;
+}
+
+// do nothing. simple label
+Selenium.prototype.doLabel = function(){};
+
+Selenium.prototype.doGotoLabel = function( label )
+{
+    if( undefined == gotoLabels[label] ) {
+        throw new Error( "Specified label '" + label + "' is not found." );
+    }
+    this.continueFromRow( gotoLabels[ label ] );
+};
+
+Selenium.prototype.doGoto = Selenium.prototype.doGotoLabel;
+
+Selenium.prototype.doGotoIf = function( condition, label )
+{
+    if( eval(condition) ) this.doGotoLabel( label );
+}
+
+Selenium.prototype.doWhile = function( condition )
+{
+    if( !eval(condition) ) {
+        var last_row = testCase.debugContext.debugIndex;
+        var end_while_row = whileLabels.whiles[ last_row ];
+        if( undefined == end_while_row ) throw new Error( "Corresponding 'endWhile' is not found." );
+        this.continueFromRow( end_while_row );
+    }
+}
+
+Selenium.prototype.doEndWhile = function()
+{
+    var last_row = testCase.debugContext.debugIndex;
+    var while_row = whileLabels.ends[ last_row ] - 1;
+    if( undefined == while_row ) throw new Error( "Corresponding 'While' is not found." );
+    this.continueFromRow( while_row );
+}
+
+Selenium.prototype.doPush= function(value, varName)
+{
+    if(!storedVars[varName]) {
+        storedVars[varName] = new Array();
+    }
+    if(typeof storedVars[varName] !== 'object') {
+        throw new Error("Cannot push value onto non-array " + varName);
+    } else {
+        storedVars[varName].push(value);
+    }
+}
\ No newline at end of file
diff --git a/oxAuth/common/pom.xml b/oxAuth/common/pom.xml
new file mode 100644
index 00000000..64186f4d
--- /dev/null
+++ b/oxAuth/common/pom.xml
@@ -0,0 +1,247 @@
+<?xml version="1.0" encoding="UTF-8"?>
+<project xmlns="http://maven.apache.org/POM/4.0.0"
+	xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance"
+	xsi:schemaLocation="http://maven.apache.org/POM/4.0.0 http://maven.apache.org/xsd/maven-4.0.0.xsd">
+	<modelVersion>4.0.0</modelVersion>
+	<artifactId>oxauth-common</artifactId>
+	<name>oxAuth Common</name>
+	<packaging>jar</packaging>
+
+	<parent>
+		<groupId>org.gluu</groupId>
+		<artifactId>oxauth</artifactId>
+		<version>4.5.6-SNAPSHOT</version>
+	</parent>
+
+	<prerequisites>
+		<maven>${maven.min-version}</maven>
+	</prerequisites>
+
+	<build>
+		<finalName>oxauth-common</finalName>
+
+		<resources>
+			<resource>
+				<directory>src/main/resources</directory>
+				<includes>
+					<include>**/*.xml</include>
+					<include>**/*.properties</include>
+					<include>**/*.js</include>
+				</includes>
+			</resource>
+		</resources>
+
+		<testResources>
+			<testResource>
+				<directory>src/test/resources</directory>
+				<includes>
+					<include>**/*.json</include>
+					<include>**/*.xml</include>
+				</includes>
+			</testResource>
+		</testResources>
+
+		<plugins>
+			<plugin>
+				<groupId>org.apache.maven.plugins</groupId>
+				<artifactId>maven-surefire-plugin</artifactId>
+				<configuration>
+					<skipTests>false</skipTests>
+				</configuration>
+			</plugin>
+			<plugin>
+				<groupId>org.apache.maven.plugins</groupId>
+				<artifactId>maven-compiler-plugin</artifactId>
+				<version>2.3.2</version>
+				<configuration>
+					<source>1.8</source>
+					<target>1.8</target>
+					<encoding>UTF-8</encoding>
+				</configuration>
+			</plugin>
+		</plugins>
+	</build>
+
+	<dependencies>
+		<!-- Gluu -->
+		<dependency>
+			<groupId>org.gluu</groupId>
+			<artifactId>gluu-orm-annotation</artifactId>
+		</dependency>
+		<dependency>
+			<groupId>org.gluu</groupId>
+			<artifactId>gluu-orm-ldap</artifactId>
+		</dependency>
+		<dependency>
+			<groupId>org.gluu</groupId>
+			<artifactId>gluu-orm-couchbase</artifactId>
+		</dependency>
+		<dependency>
+			<groupId>org.gluu</groupId>
+			<artifactId>gluu-orm-sql</artifactId>
+		</dependency>
+		<dependency>
+			<groupId>org.gluu</groupId>
+			<artifactId>gluu-orm-spanner</artifactId>
+		</dependency>
+		<dependency>
+			<groupId>${project.groupId}</groupId>
+			<artifactId>gluu-orm-hybrid</artifactId>
+		</dependency>
+		<dependency>
+			<groupId>org.gluu</groupId>
+			<artifactId>oxcore-util</artifactId>
+		</dependency>
+		<dependency>
+			<groupId>org.gluu</groupId>
+			<artifactId>oxcore-model</artifactId>
+		</dependency>
+		<dependency>
+			<groupId>org.gluu</groupId>
+			<artifactId>oxcore-service</artifactId>
+		</dependency>
+		<dependency>
+			<groupId>org.gluu</groupId>
+			<artifactId>oxauth-model</artifactId>
+		</dependency>
+        <dependency>
+            <groupId>org.gluu</groupId>
+            <artifactId>oxauth-persistence-model</artifactId>
+        </dependency>
+
+		<!-- CDI -->
+        <dependency>
+            <groupId>org.jboss.weld</groupId>
+            <artifactId>weld-core-impl</artifactId>
+            <scope>provided</scope>
+        </dependency>
+		<dependency>
+			<groupId>javax.enterprise</groupId>
+			<artifactId>cdi-api</artifactId>
+			<scope>provided</scope>
+		</dependency>
+		<dependency>
+			<groupId>javax.inject</groupId>
+			<artifactId>javax.inject</artifactId>
+		</dependency>
+		<dependency>
+			<groupId>javax.validation</groupId>
+			<artifactId>validation-api</artifactId>
+		</dependency>
+		<dependency>
+			<groupId>org.jboss.spec.javax.ejb</groupId>
+			<artifactId>jboss-ejb-api_3.2_spec</artifactId>
+			<scope>provided</scope>
+		</dependency>
+
+        <dependency>
+            <groupId>javax.servlet</groupId>
+            <artifactId>javax.servlet-api</artifactId>
+            <scope>provided</scope>
+        </dependency>
+
+		<!-- Commons libs -->
+		<dependency>
+			<groupId>commons-codec</groupId>
+			<artifactId>commons-codec</artifactId>
+		</dependency>
+		<dependency>
+			<groupId>commons-collections</groupId>
+			<artifactId>commons-collections</artifactId>
+		</dependency>
+		<dependency>
+			<groupId>commons-lang</groupId>
+			<artifactId>commons-lang</artifactId>
+		</dependency>
+		<dependency>
+			<groupId>commons-io</groupId>
+			<artifactId>commons-io</artifactId>
+		</dependency>
+
+		<!-- RestEasy -->
+		<dependency>
+			<groupId>org.jboss.resteasy</groupId>
+			<artifactId>resteasy-cdi</artifactId>
+		</dependency>
+		<dependency>
+			<groupId>org.jboss.resteasy</groupId>
+			<artifactId>resteasy-client</artifactId>
+		</dependency>
+		<dependency>
+			<groupId>org.jboss.resteasy</groupId>
+			<artifactId>resteasy-jaxb-provider</artifactId>
+		</dependency>
+		<dependency>
+			<groupId>org.jboss.resteasy</groupId>
+			<artifactId>resteasy-jackson2-provider</artifactId>
+		</dependency>
+
+		<dependency>
+			<groupId>com.fasterxml.jackson.dataformat</groupId>
+			<artifactId>jackson-dataformat-cbor</artifactId>
+		</dependency>
+		<dependency>
+			<groupId>com.fasterxml.jackson.core</groupId>
+			<artifactId>jackson-databind</artifactId>
+		</dependency>
+
+		<!-- Security -->
+		<dependency>
+			<groupId>com.nimbusds</groupId>
+			<artifactId>nimbus-jose-jwt</artifactId>
+		</dependency>
+
+		<!-- Bouncycastle -->
+		<dependency>
+			<groupId>org.bouncycastle</groupId>
+			<artifactId>bcprov-jdk18on</artifactId>
+			<scope>provided</scope>
+		</dependency>
+		<dependency>
+			<groupId>org.bouncycastle</groupId>
+			<artifactId>bcpkix-jdk18on</artifactId>
+			<scope>provided</scope>
+		</dependency>
+
+		<!-- Logging -->
+		<dependency>
+			<groupId>org.apache.logging.log4j</groupId>
+			<artifactId>log4j-api</artifactId>
+		</dependency>
+		<dependency>
+			<groupId>org.apache.logging.log4j</groupId>
+			<artifactId>log4j-1.2-api</artifactId>
+		</dependency>
+
+		<!-- Google -->
+		<dependency>
+			<groupId>com.google.guava</groupId>
+			<artifactId>guava</artifactId>
+		</dependency>
+		<dependency>
+			<groupId>com.google.http-client</groupId>
+			<artifactId>google-http-client-jackson2</artifactId>
+		</dependency>
+
+		<dependency>
+			<groupId>com.github.microsoft</groupId>
+			<artifactId>TSS.Java</artifactId>
+		</dependency>
+        <dependency>
+            <groupId>org.jetbrains</groupId>
+            <artifactId>annotations</artifactId>
+        </dependency>
+
+		<!-- Documentation -->
+		<dependency>
+			<groupId>com.wordnik</groupId>
+			<artifactId>swagger-annotations</artifactId>
+		</dependency>
+
+		<!-- Test -->
+		<dependency>
+			<groupId>org.testng</groupId>
+			<artifactId>testng</artifactId>
+		</dependency>
+	</dependencies>
+</project>
diff --git a/oxAuth/common/src/main/java/org/gluu/oxauth/cert/fingerprint/FingerprintHelper.java b/oxAuth/common/src/main/java/org/gluu/oxauth/cert/fingerprint/FingerprintHelper.java
new file mode 100644
index 00000000..0a9d75bf
--- /dev/null
+++ b/oxAuth/common/src/main/java/org/gluu/oxauth/cert/fingerprint/FingerprintHelper.java
@@ -0,0 +1,83 @@
+/*
+ * oxAuth is available under the MIT License (2008). See http://opensource.org/licenses/MIT for full text.
+ *
+ * Copyright (c) 2014, Gluu
+ */
+
+package org.gluu.oxauth.cert.fingerprint;
+
+import java.io.ByteArrayOutputStream;
+import java.io.DataOutput;
+import java.io.DataOutputStream;
+import java.io.IOException;
+import java.security.MessageDigest;
+import java.security.NoSuchAlgorithmException;
+import java.security.PublicKey;
+import java.security.interfaces.ECPublicKey;
+import java.security.interfaces.RSAPublicKey;
+
+import org.apache.commons.codec.binary.Hex;
+import org.slf4j.Logger;
+import org.slf4j.LoggerFactory;
+
+/**
+ * Utility which help to calculate SSH RSA public key fingerprint
+ * 
+ * @author Yuriy Movchan
+ * @version March 03, 2016
+ */
+public class FingerprintHelper {
+
+    @SuppressWarnings("unused")
+    private static final Logger log = LoggerFactory.getLogger(FingerprintHelper.class);
+
+    /*
+     * Return SSH RSA public key fingerprint
+     */
+    @SuppressWarnings("java:S4790")
+    public static String getPublicKeySshFingerprint(PublicKey publicKey) throws NoSuchAlgorithmException, IOException {
+    if (publicKey instanceof RSAPublicKey || publicKey instanceof ECPublicKey) {
+            MessageDigest digest = MessageDigest.getInstance("MD5");
+            byte[] derEncoded = null;                
+            if(publicKey instanceof RSAPublicKey) {
+                derEncoded = getDerEncoding((RSAPublicKey)publicKey);
+            }
+            else if (publicKey instanceof ECPublicKey) {
+                derEncoded = getDerEncoding((ECPublicKey)publicKey);
+            }
+            byte[] fingerprint = digest.digest(derEncoded);
+            return Hex.encodeHexString(fingerprint);
+        }
+        throw new NoSuchAlgorithmException("Unsopported PublicKey type");
+    }
+
+    private static byte[] getDerEncoding(RSAPublicKey key) throws IOException {
+        ByteArrayOutputStream buffer = new ByteArrayOutputStream();
+        DataOutputStream dataOutput = new DataOutputStream(buffer);
+        writeDataWithLength("ssh-rsa".getBytes(), dataOutput);
+        writeDataWithLength(key.getPublicExponent().toByteArray(), dataOutput);
+        writeDataWithLength(key.getModulus().toByteArray(), dataOutput);
+        return buffer.toByteArray();
+    }
+
+    /* 
+     * here is a pseudo SSH encoding (start string is 'ssh-ecdsa'), as format of SSH for EC something like that:
+     *    ecdsa-sha2-nistp256 AAAAE2VjZHNhLXNoYTItbmlzdHAyNTYAAAAIbmlzdHAyNTYAAABBBCzhFSVzzMlfUih30HB8k7Dpmn95NWQMQRcYpHWhIcMsXQL7TFD8izlr0bRA9XTmBDyKhgA80XMr33r4jeiP+MI=
+     * or for EDDSA (ed25519) 
+     *    ssh-ed25519 AAAAC3NzaC1lZDI1NTE5AAAAIFPZ6PEne43qIHzRihLo4wbo9+E7IFgPp7HLYLFoDiXz
+     * but current encoding is enough for generating a unique fingerprint.
+     */
+    private static byte[] getDerEncoding(ECPublicKey key) throws IOException {
+        ByteArrayOutputStream buffer = new ByteArrayOutputStream();
+        DataOutputStream dataOutput = new DataOutputStream(buffer);
+        writeDataWithLength("ssh-ecdsa".getBytes(), dataOutput);
+        writeDataWithLength(key.getEncoded(), dataOutput);
+        return buffer.toByteArray();
+    }
+
+    private static void writeDataWithLength(byte[] data, DataOutput byteBuffer) throws IOException {
+        byteBuffer.writeInt(data.length);
+        byteBuffer.write(data);
+    }
+
+}
diff --git a/oxAuth/common/src/main/java/org/gluu/oxauth/cert/validation/CRLCertificateVerifier.java b/oxAuth/common/src/main/java/org/gluu/oxauth/cert/validation/CRLCertificateVerifier.java
new file mode 100644
index 00000000..b9417093
--- /dev/null
+++ b/oxAuth/common/src/main/java/org/gluu/oxauth/cert/validation/CRLCertificateVerifier.java
@@ -0,0 +1,302 @@
+/*
+ * oxAuth is available under the MIT License (2008). See http://opensource.org/licenses/MIT for full text.
+ *
+ * Copyright (c) 2014, Gluu
+ */
+
+package org.gluu.oxauth.cert.validation;
+
+import java.io.ByteArrayInputStream;
+import java.io.IOException;
+import java.io.InputStream;
+import java.math.BigInteger;
+import java.net.HttpURLConnection;
+import java.net.MalformedURLException;
+import java.net.URL;
+import java.security.NoSuchProviderException;
+import java.security.Principal;
+import java.security.cert.CRLException;
+import java.security.cert.CertificateException;
+import java.security.cert.CertificateFactory;
+import java.security.cert.X509CRL;
+import java.security.cert.X509CRLEntry;
+import java.security.cert.X509Certificate;
+import java.util.Date;
+import java.util.List;
+import java.util.concurrent.ExecutionException;
+import java.util.concurrent.TimeUnit;
+
+import org.apache.commons.io.IOUtils;
+import org.apache.commons.io.input.BoundedInputStream;
+import org.bouncycastle.asn1.ASN1InputStream;
+import org.bouncycastle.asn1.ASN1Integer;
+import org.bouncycastle.asn1.ASN1OctetString;
+import org.bouncycastle.asn1.ASN1Primitive;
+import org.bouncycastle.asn1.DERTaggedObject;
+import org.bouncycastle.asn1.DERIA5String;
+import org.bouncycastle.asn1.x509.CRLDistPoint;
+import org.bouncycastle.asn1.x509.DistributionPoint;
+import org.bouncycastle.asn1.x509.DistributionPointName;
+import org.bouncycastle.asn1.x509.Extension;
+import org.bouncycastle.asn1.x509.GeneralName;
+import org.bouncycastle.asn1.x509.GeneralNames;
+import org.bouncycastle.asn1.x509.X509Extensions;
+import org.bouncycastle.x509.NoSuchParserException;
+import org.bouncycastle.x509.util.StreamParsingException;
+import org.gluu.oxauth.cert.validation.model.ValidationStatus;
+import org.gluu.oxauth.cert.validation.model.ValidationStatus.CertificateValidity;
+import org.gluu.oxauth.cert.validation.model.ValidationStatus.ValidatorSourceType;
+import org.gluu.oxauth.model.util.CertUtils;
+import org.gluu.util.security.SecurityProviderUtility;
+import org.slf4j.Logger;
+import org.slf4j.LoggerFactory;
+
+import com.google.common.base.Preconditions;
+import com.google.common.cache.CacheBuilder;
+import com.google.common.cache.CacheLoader;
+import com.google.common.cache.LoadingCache;
+
+/**
+ * Certificate verifier based on CRL
+ * 
+ * @author Yuriy Movchan
+ * @version March 10, 2016
+ */
+public class CRLCertificateVerifier implements CertificateVerifier {
+
+	private static final Logger log = LoggerFactory.getLogger(CRLCertificateVerifier.class);
+
+	private int maxCrlSize;
+
+	private LoadingCache<String, X509CRL> crlCache;
+
+	public CRLCertificateVerifier(final int maxCrlSize) {
+		SecurityProviderUtility.installBCProvider(true);
+
+		this.maxCrlSize = maxCrlSize;
+		
+		CacheLoader<String, X509CRL> checkedLoader = new CacheLoader<String, X509CRL>() {
+			public X509CRL load(String crlURL) throws CertificateException, CRLException, NoSuchProviderException, NoSuchParserException, StreamParsingException, MalformedURLException, IOException, ExecutionException {
+				X509CRL result = requestCRL(crlURL);
+				Preconditions.checkNotNull(result);
+
+				return result;
+			}
+		};
+
+		this.crlCache = CacheBuilder.newBuilder().maximumSize(10).expireAfterWrite(60, TimeUnit.MINUTES).build(checkedLoader);
+	}
+
+	@Override
+	public ValidationStatus validate(X509Certificate certificate, List<X509Certificate> issuers, Date validationDate) {
+
+        X509Certificate issuer = CertUtils.getIssuer(certificate, issuers);	    
+		ValidationStatus status = new ValidationStatus(certificate, issuer, validationDate, ValidatorSourceType.CRL, CertificateValidity.UNKNOWN);
+
+		try {
+			Principal subjectX500Principal = certificate.getSubjectX500Principal();
+
+			String crlURL = getCrlUri(certificate);
+			if (crlURL == null) {
+				log.error("CRL's URL for '" + subjectX500Principal + "' is empty");
+				return status;
+			}
+
+			log.debug("CRL's URL for '" + subjectX500Principal + "' is '" + crlURL + "'");
+
+			X509CRL x509crl = getCrl(crlURL);
+			if (!validateCRL(x509crl, certificate, issuer, validationDate)) {
+				log.error("The CRL is not valid!");
+				status.setValidity(CertificateValidity.INVALID);
+				return status;
+			}
+
+			X509CRLEntry crlEntry = x509crl.getRevokedCertificate(certificate.getSerialNumber());
+			if (crlEntry == null) {
+				log.debug("CRL status is valid for '" + subjectX500Principal + "'");
+				status.setValidity(CertificateValidity.VALID);
+			} else if (crlEntry.getRevocationDate().after(validationDate)) {
+				log.warn("CRL revocation time after the validation date, the certificate '" + subjectX500Principal + "' was valid at " + validationDate);
+				status.setRevocationObjectIssuingTime(x509crl.getThisUpdate());
+				status.setValidity(CertificateValidity.VALID);
+			} else {
+				log.info("CRL for certificate '" + subjectX500Principal + "' is revoked since " + crlEntry.getRevocationDate());
+				status.setRevocationObjectIssuingTime(x509crl.getThisUpdate());
+				status.setRevocationDate(crlEntry.getRevocationDate());
+				status.setValidity(CertificateValidity.REVOKED);
+			}
+		} catch (Exception ex) {
+			log.error("CRL exception: ", ex);
+		}
+
+		return status;
+	}
+
+	private boolean validateCRL(X509CRL x509crl, X509Certificate certificate, X509Certificate issuerCertificate, Date validationDate) {
+		Principal subjectX500Principal = certificate.getSubjectX500Principal();
+
+		if (x509crl == null) {
+			log.error("No CRL found for certificate '" + subjectX500Principal + "'");
+			return false;
+		}
+
+		if (log.isTraceEnabled()) {
+			try {
+				log.trace("CRL number: " + getCrlNumber(x509crl));
+			} catch (IOException ex) {
+				log.error("Failed to get CRL number", ex);
+			}
+		}
+
+		if (!x509crl.getIssuerX500Principal().equals(issuerCertificate.getSubjectX500Principal())) {
+			log.error("The CRL must be signed by the issuer '" + subjectX500Principal + "' but instead is signed by '"
+					+ x509crl.getIssuerX500Principal() + "'");
+			return false;
+		}
+
+		try {
+			x509crl.verify(issuerCertificate.getPublicKey());
+		} catch (Exception ex) {
+			log.error("The signature verification for CRL cannot be performed", ex);
+			return false;
+		}
+
+		log.debug("CRL validationDate: " + validationDate);
+		log.debug("CRL nextUpdate: " + x509crl.getThisUpdate());
+		log.debug("CRL thisUpdate: " + x509crl.getNextUpdate());
+
+		if (x509crl.getNextUpdate() != null && validationDate.after(x509crl.getNextUpdate())) {
+			log.error("CRL is too old");
+			return false;
+		}
+
+		if (issuerCertificate.getKeyUsage() == null) {
+			log.error("There is no KeyUsage extension for certificate '" + subjectX500Principal + "'");
+			return false;
+		}
+
+		if (!issuerCertificate.getKeyUsage()[6]) {
+			log.error("cRLSign bit is not set for CRL certificate'" + subjectX500Principal + "'");
+			return false;
+		}
+
+		return true;
+
+	}
+
+	private X509CRL getCrl(String url) throws CertificateException, CRLException, NoSuchProviderException, NoSuchParserException, StreamParsingException,
+			MalformedURLException, IOException, ExecutionException {
+		if (!(url.startsWith("http://") || url.startsWith("https://"))) {
+			log.error("It's possible to download CRL via HTTP and HTTPS only");
+			return null;
+		}
+		
+		String cacheKey = url.toLowerCase();
+		X509CRL crl = crlCache.get(cacheKey);
+
+		return crl;
+	}
+
+	public X509CRL requestCRL(String url) throws IOException, MalformedURLException, CertificateException, CRLException {
+		HttpURLConnection con = (HttpURLConnection) new URL(url).openConnection();
+		try {
+			con.setUseCaches(false);
+
+			InputStream in = new BoundedInputStream(con.getInputStream(), maxCrlSize);
+			try {
+				CertificateFactory certificateFactory = CertificateFactory.getInstance("X.509");
+				X509CRL crl = (X509CRL) certificateFactory.generateCRL(in);
+				log.debug("CRL size: " + crl.getEncoded().length + " bytes");
+
+				return crl;
+			} finally {
+				IOUtils.closeQuietly(in);
+			}
+		} catch (IOException ex) {
+			log.error("Failed to download CRL from '" + url + "'", ex);
+		} finally {
+			if (con != null) {
+				con.disconnect();
+			}
+		}
+		
+		return null;
+	}
+
+	@SuppressWarnings({ "deprecation", "resource" })
+	private BigInteger getCrlNumber(X509CRL crl) throws IOException {
+		byte[] crlNumberExtensionValue = crl.getExtensionValue(X509Extensions.CRLNumber.getId());
+		if (crlNumberExtensionValue == null) {
+			return null;
+		}
+
+		ASN1OctetString octetString = (ASN1OctetString) (new ASN1InputStream(new ByteArrayInputStream(crlNumberExtensionValue)).readObject());
+		byte[] octets = octetString.getOctets();
+		ASN1Integer integer = (ASN1Integer) new ASN1InputStream(octets).readObject();
+		BigInteger crlNumber = integer.getPositiveValue();
+
+		return crlNumber;
+	}
+
+	public String getCrlUri(X509Certificate certificate) throws IOException {
+		ASN1Primitive obj;
+		try {
+			obj = getExtensionValue(certificate, Extension.cRLDistributionPoints.getId());
+		} catch (IOException ex) {
+			log.error("Failed to get CRL URL", ex);
+			return null;
+		}
+
+		if (obj == null) {
+			return null;
+		}
+
+		CRLDistPoint distPoint = CRLDistPoint.getInstance(obj);
+
+		DistributionPoint[] distributionPoints = distPoint.getDistributionPoints();
+		for (DistributionPoint distributionPoint : distributionPoints) {
+			DistributionPointName distributionPointName = distributionPoint.getDistributionPoint();
+			if (DistributionPointName.FULL_NAME != distributionPointName.getType()) {
+				continue;
+			}
+
+			GeneralNames generalNames = (GeneralNames) distributionPointName.getName();
+			GeneralName[] names = generalNames.getNames();
+			for (GeneralName name : names) {
+				if (name.getTagNo() != GeneralName.uniformResourceIdentifier) {
+					continue;
+				}
+
+				DERIA5String derStr = (DERIA5String) DERIA5String.getInstance((DERTaggedObject) name.toASN1Primitive(), false);
+				return derStr.getString();
+			}
+		}
+
+		return null;
+	}
+
+	/**
+	 * @param certificate
+	 *            the certificate from which we need the ExtensionValue
+	 * @param oid
+	 *            the Object Identifier value for the extension.
+	 * @return the extension value as an ASN1Primitive object
+	 * @throws IOException
+	 */
+	private static ASN1Primitive getExtensionValue(X509Certificate certificate, String oid) throws IOException {
+		byte[] bytes = certificate.getExtensionValue(oid);
+		if (bytes == null) {
+			return null;
+		}
+		ASN1InputStream aIn = new ASN1InputStream(new ByteArrayInputStream(bytes));
+		ASN1OctetString octs = (ASN1OctetString) aIn.readObject();
+		aIn = new ASN1InputStream(new ByteArrayInputStream(octs.getOctets()));
+		return aIn.readObject();
+	}
+
+	@Override
+	public void destroy() {
+		crlCache.cleanUp();
+	}
+
+}
diff --git a/oxAuth/common/src/main/java/org/gluu/oxauth/cert/validation/CertificateVerifier.java b/oxAuth/common/src/main/java/org/gluu/oxauth/cert/validation/CertificateVerifier.java
new file mode 100644
index 00000000..6a289a67
--- /dev/null
+++ b/oxAuth/common/src/main/java/org/gluu/oxauth/cert/validation/CertificateVerifier.java
@@ -0,0 +1,21 @@
+package org.gluu.oxauth.cert.validation;
+
+import java.security.cert.X509Certificate;
+import java.util.Date;
+import java.util.List;
+
+import org.gluu.oxauth.cert.validation.model.ValidationStatus;
+
+/**
+ * Base interface for all certificate verifiers
+ * 
+ * @author Yuriy Movchan
+ * @version March 11, 2016
+ */
+public interface CertificateVerifier {
+
+	public abstract ValidationStatus validate(X509Certificate certificate, List<X509Certificate> issuers, Date validationDate);
+
+	public abstract void destroy();
+
+}
\ No newline at end of file
diff --git a/oxAuth/common/src/main/java/org/gluu/oxauth/cert/validation/GenericCertificateVerifier.java b/oxAuth/common/src/main/java/org/gluu/oxauth/cert/validation/GenericCertificateVerifier.java
new file mode 100644
index 00000000..7f0b094e
--- /dev/null
+++ b/oxAuth/common/src/main/java/org/gluu/oxauth/cert/validation/GenericCertificateVerifier.java
@@ -0,0 +1,67 @@
+/*
+ * oxAuth is available under the MIT License (2008). See http://opensource.org/licenses/MIT for full text.
+ *
+ * Copyright (c) 2014, Gluu
+ */
+
+package org.gluu.oxauth.cert.validation;
+
+import java.security.Principal;
+import java.security.cert.CertificateExpiredException;
+import java.security.cert.CertificateNotYetValidException;
+import java.security.cert.X509Certificate;
+import java.util.Date;
+import java.util.List;
+
+import org.gluu.oxauth.cert.validation.model.ValidationStatus;
+import org.gluu.oxauth.cert.validation.model.ValidationStatus.CertificateValidity;
+import org.gluu.oxauth.cert.validation.model.ValidationStatus.ValidatorSourceType;
+import org.gluu.oxauth.model.util.CertUtils;
+import org.gluu.util.security.SecurityProviderUtility;
+import org.slf4j.Logger;
+import org.slf4j.LoggerFactory;
+
+/**
+ * Certificate verifier based on CRL
+ * 
+ * @author Yuriy Movchan
+ * @version March 11, 2016
+ */
+public class GenericCertificateVerifier implements CertificateVerifier {
+
+	private static final Logger log = LoggerFactory.getLogger(GenericCertificateVerifier.class);
+
+	public GenericCertificateVerifier() {
+		SecurityProviderUtility.installBCProvider(true);
+	}
+
+	@Override
+	public ValidationStatus validate(X509Certificate certificate, List<X509Certificate> issuers, Date validationDate) {
+
+        X509Certificate issuer = CertUtils.getIssuer(certificate, issuers);
+		ValidationStatus status = new ValidationStatus(certificate, issuer, validationDate, ValidatorSourceType.APP, CertificateValidity.UNKNOWN);
+
+		try {
+			Principal subjectX500Principal = certificate.getSubjectX500Principal();
+
+			try {
+				log.debug("Validity status is valid for '" + subjectX500Principal + "'");
+				certificate.checkValidity(validationDate);
+				status.setValidity(CertificateValidity.VALID);
+			} catch (CertificateExpiredException ex) {
+				log.debug("Validity status is expied for '" + subjectX500Principal + "'");
+			} catch (CertificateNotYetValidException ex) {
+				log.warn("Validity status is not yet valid for '" + subjectX500Principal + "'");
+			}
+		} catch (Exception ex) {
+			log.error("CRL exception: ", ex);
+		}
+
+		return status;
+	}
+
+	@Override
+	public void destroy() {
+	}
+
+}
diff --git a/oxAuth/common/src/main/java/org/gluu/oxauth/cert/validation/OCSPCertificateVerifier.java b/oxAuth/common/src/main/java/org/gluu/oxauth/cert/validation/OCSPCertificateVerifier.java
new file mode 100644
index 00000000..9b0f649e
--- /dev/null
+++ b/oxAuth/common/src/main/java/org/gluu/oxauth/cert/validation/OCSPCertificateVerifier.java
@@ -0,0 +1,246 @@
+/*
+ * oxAuth is available under the MIT License (2008). See http://opensource.org/licenses/MIT for full text.
+ *
+ * Copyright (c) 2014, Gluu
+ */
+
+package org.gluu.oxauth.cert.validation;
+
+import java.io.ByteArrayInputStream;
+import java.io.IOException;
+import java.io.OutputStream;
+import java.net.HttpURLConnection;
+import java.net.MalformedURLException;
+import java.net.URL;
+import java.security.Principal;
+import java.security.cert.CertificateEncodingException;
+import java.security.cert.X509Certificate;
+import java.util.Date;
+import java.util.List;
+
+import org.apache.commons.io.IOUtils;
+import org.bouncycastle.asn1.ASN1InputStream;
+import org.bouncycastle.asn1.ASN1OctetString;
+import org.bouncycastle.asn1.ASN1Primitive;
+import org.bouncycastle.asn1.DERTaggedObject;
+import org.bouncycastle.asn1.DERIA5String;
+import org.bouncycastle.asn1.x509.AccessDescription;
+import org.bouncycastle.asn1.x509.AuthorityInformationAccess;
+import org.bouncycastle.asn1.x509.Extension;
+import org.bouncycastle.asn1.x509.GeneralName;
+import org.bouncycastle.asn1.x509.X509ObjectIdentifiers;
+import org.bouncycastle.cert.jcajce.JcaX509CertificateHolder;
+import org.bouncycastle.cert.ocsp.BasicOCSPResp;
+import org.bouncycastle.cert.ocsp.CertificateID;
+import org.bouncycastle.cert.ocsp.CertificateStatus;
+import org.bouncycastle.cert.ocsp.OCSPException;
+import org.bouncycastle.cert.ocsp.OCSPReq;
+import org.bouncycastle.cert.ocsp.OCSPReqBuilder;
+import org.bouncycastle.cert.ocsp.OCSPResp;
+import org.bouncycastle.cert.ocsp.OCSPRespBuilder;
+import org.bouncycastle.cert.ocsp.RevokedStatus;
+import org.bouncycastle.cert.ocsp.SingleResp;
+import org.bouncycastle.operator.DigestCalculator;
+import org.bouncycastle.operator.OperatorCreationException;
+import org.bouncycastle.operator.jcajce.JcaDigestCalculatorProviderBuilder;
+import org.gluu.oxauth.cert.validation.model.ValidationStatus;
+import org.gluu.oxauth.cert.validation.model.ValidationStatus.CertificateValidity;
+import org.gluu.oxauth.cert.validation.model.ValidationStatus.ValidatorSourceType;
+import org.gluu.oxauth.model.util.CertUtils;
+import org.gluu.util.security.SecurityProviderUtility;
+import org.slf4j.Logger;
+import org.slf4j.LoggerFactory;
+
+/**
+ * Certificate verifier based on OCSP
+ * 
+ * @author Yuriy Movchan
+ * @version March 10, 2016
+ */
+public class OCSPCertificateVerifier implements CertificateVerifier {
+
+	private static final Logger log = LoggerFactory.getLogger(OCSPCertificateVerifier.class);
+
+	public OCSPCertificateVerifier() {
+		SecurityProviderUtility.installBCProvider(true);
+	}
+
+	@Override
+	public ValidationStatus validate(X509Certificate certificate, List<X509Certificate> issuers, Date validationDate) {
+
+	    X509Certificate issuer = CertUtils.getIssuer(certificate, issuers);
+		ValidationStatus status = new ValidationStatus(certificate, issuer, validationDate, ValidatorSourceType.OCSP, CertificateValidity.UNKNOWN);
+
+		try {
+			Principal subjectX500Principal = certificate.getSubjectX500Principal();
+
+			String ocspUrl = getOCSPUrl(certificate);
+			if (ocspUrl == null) {
+				log.error("OCSP URL for '" + subjectX500Principal + "' is empty");
+				return status;
+			}
+
+			log.debug("OCSP URL for '" + subjectX500Principal + "' is '" + ocspUrl + "'");
+
+			DigestCalculator digestCalculator = new JcaDigestCalculatorProviderBuilder().build().get(CertificateID.HASH_SHA1);
+            CertificateID certificateId = new CertificateID(digestCalculator, new JcaX509CertificateHolder(issuer), certificate.getSerialNumber());			
+
+			// Generate OCSP request
+			OCSPReq ocspReq = generateOCSPRequest(certificateId);
+
+			// Get OCSP response from server
+			OCSPResp ocspResp = requestOCSPResponse(ocspUrl, ocspReq);
+			if (ocspResp.getStatus() != OCSPRespBuilder.SUCCESSFUL) {
+				log.error("OCSP response is invalid!");
+				status.setValidity(CertificateValidity.INVALID);
+				return status;
+			}
+
+			boolean foundResponse = false;
+			BasicOCSPResp basicOCSPResp = (BasicOCSPResp) ocspResp.getResponseObject();
+			SingleResp[] singleResps = basicOCSPResp.getResponses();
+			for (SingleResp singleResp : singleResps) {
+				CertificateID responseCertificateId = singleResp.getCertID();
+				if (!certificateId.equals(responseCertificateId)) {
+					continue;
+				}
+
+				foundResponse = true;
+
+				log.debug("OCSP validationDate: " + validationDate);
+				log.debug("OCSP thisUpdate: " + singleResp.getThisUpdate());
+				log.debug("OCSP nextUpdate: " + singleResp.getNextUpdate());
+
+				status.setRevocationObjectIssuingTime(basicOCSPResp.getProducedAt());
+
+				Object certStatus = singleResp.getCertStatus();
+				if (certStatus == CertificateStatus.GOOD) {
+					log.debug("OCSP status is valid for '" + certificate.getSubjectX500Principal() + "'");
+					status.setValidity(CertificateValidity.VALID);
+				} else {
+					if (singleResp.getCertStatus() instanceof RevokedStatus) {
+						log.warn("OCSP status is revoked for: " + subjectX500Principal);
+						if (validationDate.before(((RevokedStatus) singleResp.getCertStatus()).getRevocationTime())) {
+							log.warn("OCSP revocation time after the validation date, the certificate '" + subjectX500Principal + "' was valid at " + validationDate);
+							status.setValidity(CertificateValidity.VALID);
+						} else {
+							Date revocationDate = ((RevokedStatus) singleResp.getCertStatus()).getRevocationTime();
+							log.info("OCSP for certificate '" + subjectX500Principal + "' is revoked since " + revocationDate);
+							status.setRevocationDate(revocationDate);
+							status.setRevocationObjectIssuingTime(singleResp.getThisUpdate());
+							status.setValidity(CertificateValidity.REVOKED);
+						}
+					}
+				}
+			}
+
+			if (!foundResponse) {
+				log.error("There is no matching OCSP response entries");
+			}
+		} catch (Exception ex) {
+			log.error("OCSP exception: ", ex);
+		}
+
+		return status;
+	}
+
+	private OCSPReq generateOCSPRequest(CertificateID certificateId) throws OCSPException, OperatorCreationException, CertificateEncodingException {
+		OCSPReqBuilder ocspReqGenerator = new OCSPReqBuilder();
+
+		ocspReqGenerator.addRequest(certificateId);
+
+		OCSPReq ocspReq = ocspReqGenerator.build();
+		return ocspReq;
+	}
+
+	@SuppressWarnings({ "deprecation", "resource" })
+	private String getOCSPUrl(X509Certificate certificate) throws IOException {
+		ASN1Primitive obj;
+		try {
+			obj = getExtensionValue(certificate, Extension.authorityInfoAccess.getId());
+		} catch (IOException ex) {
+			log.error("Failed to get OCSP URL", ex);
+			return null;
+		}
+
+		if (obj == null) {
+			return null;
+		}
+
+		AuthorityInformationAccess authorityInformationAccess = AuthorityInformationAccess.getInstance(obj);
+
+		AccessDescription[] accessDescriptions = authorityInformationAccess.getAccessDescriptions();
+		for (AccessDescription accessDescription : accessDescriptions) {
+			boolean correctAccessMethod = accessDescription.getAccessMethod().equals((Object)X509ObjectIdentifiers.ocspAccessMethod);
+			if (!correctAccessMethod) {
+				continue;
+			}
+
+			GeneralName name = accessDescription.getAccessLocation();
+			if (name.getTagNo() != GeneralName.uniformResourceIdentifier) {
+				continue;
+			}
+
+			DERIA5String derStr = (DERIA5String) DERIA5String.getInstance((DERTaggedObject) name.toASN1Primitive(), false);
+			return derStr.getString();
+		}
+
+		return null;
+
+	}
+
+	public OCSPResp requestOCSPResponse(String url, OCSPReq ocspReq) throws IOException, MalformedURLException {
+		byte[] ocspReqData = ocspReq.getEncoded();
+
+		HttpURLConnection con = (HttpURLConnection) new URL(url).openConnection();
+		try {
+			con.setRequestProperty("Content-Type", "application/ocsp-request");
+			con.setRequestProperty("Accept", "application/ocsp-response");
+
+			con.setDoInput(true);
+			con.setDoOutput(true);
+			con.setUseCaches(false);
+
+			OutputStream out = con.getOutputStream();
+			try {
+				IOUtils.write(ocspReqData, out);
+				out.flush();
+			} finally {
+				IOUtils.closeQuietly(out);
+			}
+
+			byte[] responseBytes = IOUtils.toByteArray(con.getInputStream());
+			OCSPResp ocspResp = new OCSPResp(responseBytes);
+
+			return ocspResp;
+		} finally {
+			if (con != null) {
+				con.disconnect();
+			}
+		}
+	}
+
+	/**
+	 * @param certificate
+	 *            the certificate from which we need the ExtensionValue
+	 * @param oid
+	 *            the Object Identifier value for the extension.
+	 * @return the extension value as an ASN1Primitive object
+	 * @throws IOException
+	 */
+	private static ASN1Primitive getExtensionValue(X509Certificate certificate, String oid) throws IOException {
+		byte[] bytes = certificate.getExtensionValue(oid);
+		if (bytes == null) {
+			return null;
+		}
+		ASN1InputStream aIn = new ASN1InputStream(new ByteArrayInputStream(bytes));
+		ASN1OctetString octs = (ASN1OctetString) aIn.readObject();
+		aIn = new ASN1InputStream(new ByteArrayInputStream(octs.getOctets()));
+		return aIn.readObject();
+	}
+
+	@Override
+	public void destroy() {
+	}
+
+}
diff --git a/oxAuth/common/src/main/java/org/gluu/oxauth/cert/validation/PathCertificateVerifier.java b/oxAuth/common/src/main/java/org/gluu/oxauth/cert/validation/PathCertificateVerifier.java
new file mode 100644
index 00000000..a0ae59ab
--- /dev/null
+++ b/oxAuth/common/src/main/java/org/gluu/oxauth/cert/validation/PathCertificateVerifier.java
@@ -0,0 +1,196 @@
+/*
+ * oxAuth is available under the MIT License (2008). See http://opensource.org/licenses/MIT for full text.
+ *
+ * Copyright (c) 2014, Gluu
+ */
+
+package org.gluu.oxauth.cert.validation;
+
+import java.security.GeneralSecurityException;
+import java.security.InvalidKeyException;
+import java.security.NoSuchAlgorithmException;
+import java.security.NoSuchProviderException;
+import java.security.Principal;
+import java.security.PublicKey;
+import java.security.SignatureException;
+import java.security.cert.CertPath;
+import java.security.cert.CertPathBuilder;
+import java.security.cert.CertPathBuilderException;
+import java.security.cert.CertPathValidator;
+import java.security.cert.CertStore;
+import java.security.cert.Certificate;
+import java.security.cert.CertificateException;
+import java.security.cert.CollectionCertStoreParameters;
+import java.security.cert.PKIXBuilderParameters;
+import java.security.cert.PKIXCertPathBuilderResult;
+import java.security.cert.PKIXCertPathValidatorResult;
+import java.security.cert.TrustAnchor;
+import java.security.cert.X509CertSelector;
+import java.security.cert.X509Certificate;
+import java.util.ArrayList;
+import java.util.Date;
+import java.util.HashSet;
+import java.util.List;
+import java.util.Set;
+
+import org.gluu.oxauth.cert.validation.model.ValidationStatus;
+import org.gluu.oxauth.cert.validation.model.ValidationStatus.CertificateValidity;
+import org.gluu.oxauth.cert.validation.model.ValidationStatus.ValidatorSourceType;
+import org.gluu.oxauth.model.util.CertUtils;
+import org.gluu.util.security.SecurityProviderUtility;
+import org.slf4j.Logger;
+import org.slf4j.LoggerFactory;
+
+/**
+ * Chain certificate verifier
+ * 
+ * @author Yuriy Movchan
+ * @version March 11, 2016
+ */
+public class PathCertificateVerifier implements CertificateVerifier {
+
+	private static final Logger log = LoggerFactory.getLogger(PathCertificateVerifier.class);
+
+	private boolean verifySelfSignedCertificate;
+
+	public PathCertificateVerifier(boolean verifySelfSignedCert) {
+		SecurityProviderUtility.installBCProvider(true);
+
+		this.verifySelfSignedCertificate = verifySelfSignedCert;
+	}
+
+	@Override
+	public ValidationStatus validate(X509Certificate certificate, List<X509Certificate> issuers, Date validationDate) {
+
+        X509Certificate issuer = CertUtils.getIssuer(certificate, issuers);
+		ValidationStatus status = new ValidationStatus(certificate, issuer, validationDate, ValidatorSourceType.CHAIN, CertificateValidity.UNKNOWN);
+
+		try {
+			ArrayList<X509Certificate> chains = new ArrayList<X509Certificate>();
+			chains.add(certificate);
+			chains.addAll(issuers);
+
+			Principal subjectX500Principal = certificate.getSubjectX500Principal();
+
+			PKIXCertPathBuilderResult certPathResult = verifyCertificate(certificate, chains);
+			if (certPathResult == null) {
+				log.warn("Chain status is not valid for '" + subjectX500Principal + "'");
+				status.setValidity(CertificateValidity.INVALID);
+				return status;
+			}
+
+			log.debug("Chain status is valid for '" + subjectX500Principal + "'");
+			status.setValidity(CertificateValidity.VALID);
+		} catch (Exception ex) {
+			log.error("OCSP exception: ", ex);
+		}
+
+		return status;
+	}
+
+	public PKIXCertPathBuilderResult verifyCertificate(X509Certificate certificate, List<X509Certificate> additionalCerts) {
+		try {
+			// Check for self-signed certificate
+			if (!verifySelfSignedCertificate && isSelfSigned(certificate)) {
+				log.error("The certificate is self-signed!");
+
+				return null;
+			}
+
+			// Prepare a set of trusted root CA certificates and a set of
+			// intermediate certificates
+			Set<X509Certificate> trustedRootCerts = new HashSet<X509Certificate>();
+			Set<X509Certificate> intermediateCerts = new HashSet<X509Certificate>();
+			for (X509Certificate additionalCert : additionalCerts) {
+				if (isSelfSigned(additionalCert)) {
+					trustedRootCerts.add(additionalCert);
+				} else {
+					intermediateCerts.add(additionalCert);
+				}
+			}
+
+			// Attempt to build the certification chain and verify it
+			PKIXCertPathBuilderResult certPathBuilderResult = verifyCertificate(certificate, trustedRootCerts, intermediateCerts);
+
+			// Check that first certificate is an EE certificate
+			CertPath certPath = certPathBuilderResult.getCertPath();
+			List<? extends Certificate> certList = certPath.getCertificates();
+			X509Certificate cert = (X509Certificate) certList.get(0);
+			if (cert.getBasicConstraints() != -1) {
+				log.error("Target certificate is not an EE certificate!");
+
+				return null;
+			}
+
+			// The chain is verified. Return it as a result
+			return certPathBuilderResult;
+		} catch (CertPathBuilderException ex) {
+			log.error("Failed to build certificate path", ex);
+		} catch (GeneralSecurityException ex) {
+			log.error("Failed to build certificate path", ex);
+		}
+
+		return null;
+	}
+
+	public static boolean isSelfSigned(X509Certificate certificate) throws CertificateException, NoSuchAlgorithmException, NoSuchProviderException {
+		try {
+			// Try to verify certificate signature with its own public key
+			PublicKey key = certificate.getPublicKey();
+			certificate.verify(key);
+
+			return true;
+		} catch (SignatureException ex) {
+			// Not self-signed
+			return false;
+		} catch (InvalidKeyException ex) {
+			// Not self-signed
+			return false;
+		}
+	}
+
+	/**
+	 * Attempts to build a certification chain for given certificate to verify
+	 * it. Relies on a set of root CA certificates (trust anchors) and a set of
+	 * intermediate certificates (to be used as part of the chain).
+	 */
+	private PKIXCertPathBuilderResult verifyCertificate(X509Certificate certificate, Set<X509Certificate> trustedRootCerts, Set<X509Certificate> intermediateCerts)
+			throws GeneralSecurityException {
+
+		// Create the selector that specifies the starting certificate
+		X509CertSelector selector = new X509CertSelector();
+		selector.setBasicConstraints(-2);
+		selector.setCertificate(certificate);
+
+		// Create the trust anchors (set of root CA certificates)
+		Set<TrustAnchor> trustAnchors = new HashSet<TrustAnchor>();
+		for (X509Certificate trustedRootCert : trustedRootCerts) {
+			trustAnchors.add(new TrustAnchor(trustedRootCert, null));
+		}
+
+		// Configure the PKIX certificate builder algorithm parameters
+		PKIXBuilderParameters pkixParams = new PKIXBuilderParameters(trustAnchors, selector);
+
+		// Turn off default revocation-checking mechanism
+		pkixParams.setRevocationEnabled(false);
+
+		// Specify a list of intermediate certificates
+		CertStore intermediateCertStore = CertStore.getInstance("Collection", new CollectionCertStoreParameters(intermediateCerts));
+		pkixParams.addCertStore(intermediateCertStore);
+
+		// Build and verify the certification chain
+		CertPathBuilder builder = CertPathBuilder.getInstance("PKIX", SecurityProviderUtility.getBCProvider());
+		PKIXCertPathBuilderResult certPathBuilderResult = (PKIXCertPathBuilderResult) builder.build(pkixParams);
+
+		// Additional check to Verify cert path
+		CertPathValidator certPathValidator = CertPathValidator.getInstance("PKIX", SecurityProviderUtility.getBCProvider());
+		PKIXCertPathValidatorResult certPathValidationResult = (PKIXCertPathValidatorResult) certPathValidator.validate(certPathBuilderResult.getCertPath(), pkixParams);
+
+		return certPathBuilderResult;
+	}
+
+	@Override
+	public void destroy() {
+	}
+
+}
diff --git a/oxAuth/common/src/main/java/org/gluu/oxauth/cert/validation/model/ValidationStatus.java b/oxAuth/common/src/main/java/org/gluu/oxauth/cert/validation/model/ValidationStatus.java
new file mode 100644
index 00000000..6df10cc8
--- /dev/null
+++ b/oxAuth/common/src/main/java/org/gluu/oxauth/cert/validation/model/ValidationStatus.java
@@ -0,0 +1,113 @@
+/*
+ * oxAuth is available under the MIT License (2008). See http://opensource.org/licenses/MIT for full text.
+ *
+ * Copyright (c) 2014, Gluu
+ */
+
+package org.gluu.oxauth.cert.validation.model;
+
+import java.security.cert.X509Certificate;
+import java.util.Date;
+
+/**
+ * Certificate validation status
+ * 
+ * @author Yuriy Movchan
+ * @version March 10, 2016
+ */
+public class ValidationStatus {
+
+	private X509Certificate certificate;
+	private X509Certificate issuer;
+
+	private CertificateValidity validity;
+	private ValidatorSourceType sourceType;
+
+	private Date revocationObjectIssuingTime;
+	private Date revocationDate;
+	private Date validationDate;
+
+	public ValidationStatus(X509Certificate certificate, X509Certificate issuer, Date validationDate, ValidatorSourceType sourceType,
+			CertificateValidity validity) {
+		this.certificate = certificate;
+		this.issuer = issuer;
+		this.validationDate = validationDate;
+		this.sourceType = sourceType;
+		this.validity = validity;
+	}
+
+	public X509Certificate getCertificate() {
+		return certificate;
+	}
+
+	public void setCertificate(X509Certificate certificate) {
+		this.certificate = certificate;
+	}
+
+	public X509Certificate getIssuer() {
+		return issuer;
+	}
+
+	public void setIssuer(X509Certificate issuer) {
+		this.issuer = issuer;
+	}
+
+	public CertificateValidity getValidity() {
+		return validity;
+	}
+
+	public void setValidity(CertificateValidity validity) {
+		this.validity = validity;
+	}
+
+	public ValidatorSourceType getSourceType() {
+		return sourceType;
+	}
+
+	public void setSourceType(ValidatorSourceType sourceType) {
+		this.sourceType = sourceType;
+	}
+
+	public Date getRevocationObjectIssuingTime() {
+		return revocationObjectIssuingTime;
+	}
+
+	public void setRevocationObjectIssuingTime(Date revocationObjectIssuingTime) {
+		this.revocationObjectIssuingTime = revocationObjectIssuingTime;
+	}
+
+	public Date getRevocationDate() {
+		return revocationDate;
+	}
+
+	public void setRevocationDate(Date revocationDate) {
+		this.revocationDate = revocationDate;
+	}
+
+	public Date getValidationDate() {
+		return validationDate;
+	}
+
+	public void setValidationDate(Date validationDate) {
+		this.validationDate = validationDate;
+	}
+
+	@Override
+	public String toString() {
+		StringBuilder builder = new StringBuilder();
+		builder.append("CertificateValidationStatus [certificate=").append(certificate.getSerialNumber()).append(", issuer=").append(issuer.getSerialNumber()).append(", validity=")
+				.append(validity).append(", sourceType=").append(sourceType).append(", revocationObjectIssuingTime=")
+				.append(revocationObjectIssuingTime).append(", revocationDate=").append(revocationDate).append(", validationDate=").append(validationDate)
+				.append("]");
+		return builder.toString();
+	}
+
+	public enum ValidatorSourceType {
+		OCSP, CRL, APP, CHAIN, SELF_SIGNED
+	}
+
+	public enum CertificateValidity {
+		VALID, INVALID, REVOKED, UNKNOWN
+	}
+
+}
diff --git a/oxAuth/common/src/main/java/org/gluu/oxauth/claims/Audience.java b/oxAuth/common/src/main/java/org/gluu/oxauth/claims/Audience.java
new file mode 100644
index 00000000..27b67a33
--- /dev/null
+++ b/oxAuth/common/src/main/java/org/gluu/oxauth/claims/Audience.java
@@ -0,0 +1,22 @@
+package org.gluu.oxauth.claims;
+
+import org.gluu.oxauth.model.jwt.JwtClaims;
+import org.gluu.oxauth.model.registration.Client;
+
+/**
+ * @author Yuriy Zabrovarnyy
+ */
+public class Audience {
+
+    private Audience() {
+    }
+
+    public static void setAudience(JwtClaims claims, Client client) {
+        if (claims == null || client == null) {
+            return;
+        }
+
+        claims.addAudience(client.getClientId());
+        client.getAttributes().getAdditionalAudience().forEach(claims::addAudience);
+    }
+}
diff --git a/oxAuth/common/src/main/java/org/gluu/oxauth/model/common/SimpleUser.java b/oxAuth/common/src/main/java/org/gluu/oxauth/model/common/SimpleUser.java
new file mode 100644
index 00000000..48c7368b
--- /dev/null
+++ b/oxAuth/common/src/main/java/org/gluu/oxauth/model/common/SimpleUser.java
@@ -0,0 +1,50 @@
+/*
+ * oxAuth is available under the MIT License (2008). See http://opensource.org/licenses/MIT for full text.
+ *
+ * Copyright (c) 2014, Gluu
+ */
+
+package org.gluu.oxauth.model.common;
+
+import java.util.List;
+
+import org.json.JSONArray;
+import org.gluu.oxauth.model.exception.InvalidClaimException;
+import org.gluu.persist.model.base.CustomAttribute;
+import org.gluu.persist.model.base.CustomObjectAttribute;
+import org.gluu.util.StringHelper;
+
+/**
+ * @author Javier Rojas Blum
+ * @version May 3, 2019
+ */
+public class SimpleUser extends org.gluu.persist.model.base.SimpleUser {
+
+    private static final long serialVersionUID = -2634191420188575733L;
+
+    public Object getAttribute(String attributeName, boolean optional, boolean multivalued) throws InvalidClaimException {
+        Object attribute = null;
+
+        List<String> values = getAttributeValues(attributeName);
+        if (values != null) {
+            if (multivalued) {
+                JSONArray array = new JSONArray();
+                for (String v : values) {
+                    array.put(v);
+                }
+                attribute = array;
+            } else {
+                attribute = values.get(0);
+            }
+        }
+
+        if (attribute != null) {
+            return attribute;
+        } else if (optional) {
+            return attribute;
+        } else {
+            throw new InvalidClaimException("The claim " + attributeName + " was not found.");
+        }
+    }
+
+}
\ No newline at end of file
diff --git a/oxAuth/common/src/main/java/org/gluu/oxauth/model/common/User.java b/oxAuth/common/src/main/java/org/gluu/oxauth/model/common/User.java
new file mode 100644
index 00000000..718d13ba
--- /dev/null
+++ b/oxAuth/common/src/main/java/org/gluu/oxauth/model/common/User.java
@@ -0,0 +1,84 @@
+/*
+ * oxAuth is available under the MIT License (2008). See http://opensource.org/licenses/MIT for full text.
+ *
+ * Copyright (c) 2014, Gluu
+ */
+
+package org.gluu.oxauth.model.common;
+
+import java.util.Arrays;
+import java.util.Iterator;
+import java.util.List;
+
+import org.gluu.persist.annotation.DataEntry;
+import org.gluu.persist.annotation.ObjectClass;
+import org.gluu.persist.model.base.CustomObjectAttribute;
+import org.gluu.util.StringHelper;
+
+/**
+ * @author Yuriy Movchan Date: 06/11/2013
+ */
+@DataEntry
+@ObjectClass(value = "gluuPerson")
+public class User extends SimpleUser {
+
+    private static final long serialVersionUID = 6634191420188575733L;
+
+    @Deprecated
+	public void setAttribute(String attributeName, String attributeValue) {
+		setAttribute(attributeName, attributeValue, null);
+	}
+
+	public void setAttribute(String attributeName, String attributeValue, Boolean multiValued) {
+		CustomObjectAttribute attribute = new CustomObjectAttribute(attributeName, attributeValue);
+		if (multiValued != null) {
+			attribute.setMultiValued(multiValued);
+		}
+
+		removeAttribute(attributeName);
+		getCustomAttributes().add(attribute);
+	}
+
+    @Deprecated
+	public void setAttribute(String attributeName, String[] attributeValues) {
+    	setAttribute(attributeName, attributeValues, null);
+	}
+
+	public void setAttribute(String attributeName, String[] attributeValues, Boolean multiValued) {
+		CustomObjectAttribute attribute = new CustomObjectAttribute(attributeName, Arrays.asList(attributeValues));
+		if (multiValued != null) {
+			attribute.setMultiValued(multiValued);
+		}
+
+		removeAttribute(attributeName);
+		getCustomAttributes().add(attribute);
+	}
+
+    @Deprecated
+	public void setAttribute(String attributeName, List<String> attributeValues) {
+		setAttribute(attributeName, attributeValues, null);
+	}
+
+	public void setAttribute(String attributeName, List<String> attributeValues, Boolean multiValued) {
+		CustomObjectAttribute attribute = new CustomObjectAttribute(attributeName, attributeValues);
+		if (multiValued != null) {
+			attribute.setMultiValued(multiValued);
+		}
+
+		removeAttribute(attributeName);
+		getCustomAttributes().add(attribute);
+	}
+	
+	public void removeAttribute(String attributeName) {
+		for (Iterator<CustomObjectAttribute> it = getCustomAttributes().iterator(); it.hasNext();) {
+			if (StringHelper.equalsIgnoreCase(attributeName, it.next().getName())) {
+				it.remove();
+				break;
+			}
+		}
+	}
+
+    public String getStatus() {
+        return getAttribute("gluuStatus");
+    }
+}
\ No newline at end of file
diff --git a/oxAuth/common/src/main/java/org/gluu/oxauth/model/config/BaseDnConfiguration.java b/oxAuth/common/src/main/java/org/gluu/oxauth/model/config/BaseDnConfiguration.java
new file mode 100644
index 00000000..b231a10f
--- /dev/null
+++ b/oxAuth/common/src/main/java/org/gluu/oxauth/model/config/BaseDnConfiguration.java
@@ -0,0 +1,217 @@
+/*
+ * oxAuth is available under the MIT License (2008). See http://opensource.org/licenses/MIT for full text.
+ *
+ * Copyright (c) 2014, Gluu
+ */
+
+package org.gluu.oxauth.model.config;
+
+import com.fasterxml.jackson.annotation.JsonIgnoreProperties;
+
+import javax.xml.bind.annotation.XmlAccessType;
+import javax.xml.bind.annotation.XmlAccessorType;
+import javax.xml.bind.annotation.XmlElement;
+import javax.xml.bind.annotation.XmlRootElement;
+
+/**
+ * @author Yuriy Zabrovarnyy
+ * @author Javier Rojas Blum
+ * @version January 15, 2016
+ */
+
+@XmlRootElement(name = "base-dn")
+@XmlAccessorType(XmlAccessType.FIELD)
+@JsonIgnoreProperties(ignoreUnknown = true)
+public class BaseDnConfiguration {
+    @XmlElement(name = "configuration")
+    private String configuration;
+    @XmlElement(name = "people")
+    private String people;
+    @XmlElement(name = "groups")
+    private String groups;
+    @XmlElement(name = "clients")
+    private String clients;
+    @XmlElement(name = "sessions")
+    private String sessions;
+	@XmlElement(name = "tokens")
+	private String tokens;
+    @XmlElement(name = "authorizations")
+    private String authorizations;
+    @XmlElement(name = "scopes")
+    private String scopes;
+    @XmlElement(name = "attributes")
+    private String attributes;
+    @XmlElement(name = "scripts")
+    private String scripts;
+    @XmlElement(name = "umaBase")
+    private String umaBase;
+    @XmlElement(name = "umaPolicy")
+    private String umaPolicy;
+    @XmlElement(name = "u2fBase")
+    private String u2fBase;
+    @XmlElement(name = "metric")
+    private String metric;
+    @XmlElement(name = "sectorIdentifiers")
+    private String sectorIdentifiers;
+    @XmlElement(name = "ciba")
+    private String ciba;
+    @XmlElement(name = "stat")
+    private String stat;
+	@XmlElement(name = "fido2Attestation")
+	private String fido2Attestation;
+	@XmlElement(name = "fido2Assertion")
+	private String fido2Assertion;
+
+    public String getAuthorizations() {
+        return authorizations;
+    }
+
+    public void setAuthorizations(String authorizations) {
+        this.authorizations = authorizations;
+    }
+
+    public String getUmaBase() {
+        return umaBase;
+    }
+
+    public void setUmaBase(String p_umaBase) {
+        umaBase = p_umaBase;
+    }
+
+    public String getUmaPolicy() {
+        return umaPolicy;
+    }
+
+    public void setUmaPolicy(String p_umaPolicy) {
+        umaPolicy = p_umaPolicy;
+    }
+
+    public String getConfiguration() {
+        return configuration;
+    }
+
+    public void setConfiguration(String p_configuration) {
+    	configuration = p_configuration;
+    }
+
+    public String getAttributes() {
+        return attributes;
+    }
+
+    public void setAttributes(String p_attributes) {
+        attributes = p_attributes;
+    }
+
+    public String getScripts() {
+        return scripts;
+    }
+
+    public void setScripts(String scripts) {
+        this.scripts = scripts;
+    }
+
+    public String getClients() {
+        return clients;
+    }
+
+    public void setClients(String p_clients) {
+        clients = p_clients;
+    }
+
+    public String getSessions() {
+        return sessions;
+    }
+
+    public void setSessions(String sessions) {
+        this.sessions = sessions;
+    }
+
+    public String getTokens() {
+		return tokens;
+	}
+
+	public void setTokens(String tokens) {
+		this.tokens = tokens;
+	}
+
+	public String getPeople() {
+        return people;
+    }
+
+    public void setPeople(String p_people) {
+        people = p_people;
+    }
+
+    public String getGroups() {
+        return groups;
+    }
+
+    public void setGroups(String groups) {
+        this.groups = groups;
+    }
+
+    public String getScopes() {
+        return scopes;
+    }
+
+    public void setScopes(String p_scopes) {
+        scopes = p_scopes;
+    }
+
+    public String getU2fBase() {
+        return u2fBase;
+    }
+
+    public void setU2fBase(String u2fBase) {
+        this.u2fBase = u2fBase;
+    }
+
+    public String getMetric() {
+        return metric;
+    }
+
+    public void setMetric(String metric) {
+        this.metric = metric;
+    }
+
+    public String getSectorIdentifiers() {
+        return sectorIdentifiers;
+    }
+
+    public void setSectorIdentifiers(String sectorIdentifiers) {
+        this.sectorIdentifiers = sectorIdentifiers;
+    }
+
+    public String getCiba() {
+        return ciba;
+    }
+
+    public void setCiba(String ciba) {
+        this.ciba = ciba;
+    }
+
+    public String getStat() {
+        return stat;
+    }
+
+    public void setStat(String stat) {
+        this.stat = stat;
+    }
+
+	public String getFido2Attestation() {
+		return fido2Attestation;
+	}
+
+	public void setFido2Attestation(String fido2Attestation) {
+		this.fido2Attestation = fido2Attestation;
+	}
+
+	public String getFido2Assertion() {
+		return fido2Assertion;
+	}
+
+	public void setFido2Assertion(String fido2Assertion) {
+		this.fido2Assertion = fido2Assertion;
+	}
+
+}
diff --git a/oxAuth/common/src/main/java/org/gluu/oxauth/model/config/StaticConfiguration.java b/oxAuth/common/src/main/java/org/gluu/oxauth/model/config/StaticConfiguration.java
new file mode 100644
index 00000000..eb650d3e
--- /dev/null
+++ b/oxAuth/common/src/main/java/org/gluu/oxauth/model/config/StaticConfiguration.java
@@ -0,0 +1,37 @@
+/*
+ * oxAuth is available under the MIT License (2008). See http://opensource.org/licenses/MIT for full text.
+ *
+ * Copyright (c) 2014, Gluu
+ */
+
+package org.gluu.oxauth.model.config;
+
+import javax.xml.bind.annotation.XmlAccessType;
+import javax.xml.bind.annotation.XmlAccessorType;
+import javax.xml.bind.annotation.XmlElement;
+import javax.xml.bind.annotation.XmlRootElement;
+
+import com.fasterxml.jackson.annotation.JsonIgnoreProperties;
+import org.gluu.oxauth.model.configuration.Configuration;
+
+/**
+ * @author Yuriy Zabrovarnyy
+ * @author Javier Rojas Blum
+ * @version 0.9 February 12, 2015
+ */
+@XmlRootElement(name = "static")
+@XmlAccessorType(XmlAccessType.FIELD)
+@JsonIgnoreProperties(ignoreUnknown = true)
+public class StaticConfiguration implements Configuration {
+
+    @XmlElement(name = "base-dn")
+    private BaseDnConfiguration baseDn;
+
+    public BaseDnConfiguration getBaseDn() {
+        return baseDn;
+    }
+
+    public void setBaseDn(BaseDnConfiguration p_baseDn) {
+        baseDn = p_baseDn;
+    }
+}
diff --git a/oxAuth/common/src/main/java/org/gluu/oxauth/model/event/CryptoProviderEvent.java b/oxAuth/common/src/main/java/org/gluu/oxauth/model/event/CryptoProviderEvent.java
new file mode 100644
index 00000000..54bd9439
--- /dev/null
+++ b/oxAuth/common/src/main/java/org/gluu/oxauth/model/event/CryptoProviderEvent.java
@@ -0,0 +1,29 @@
+package org.gluu.oxauth.model.event;
+
+
+import javax.enterprise.util.AnnotationLiteral;
+import javax.inject.Qualifier;
+import java.lang.annotation.Documented;
+import java.lang.annotation.Retention;
+import java.lang.annotation.Target;
+
+import static java.lang.annotation.ElementType.*;
+import static java.lang.annotation.RetentionPolicy.RUNTIME;
+
+/**
+ * @author Yuriy Zabrovarnyy
+ */
+@Qualifier
+@Retention(RUNTIME)
+@Target({ METHOD, FIELD, PARAMETER, TYPE })
+@Documented
+public @interface CryptoProviderEvent {
+
+    final class Literal extends AnnotationLiteral<CryptoProviderEvent> implements CryptoProviderEvent {
+
+        public static final CryptoProviderEvent.Literal INSTANCE = new CryptoProviderEvent.Literal();
+
+        private static final long serialVersionUID = 1L;
+
+    }
+}
diff --git a/oxAuth/common/src/main/java/org/gluu/oxauth/model/registration/Client.java b/oxAuth/common/src/main/java/org/gluu/oxauth/model/registration/Client.java
new file mode 100644
index 00000000..3ceba443
--- /dev/null
+++ b/oxAuth/common/src/main/java/org/gluu/oxauth/model/registration/Client.java
@@ -0,0 +1,1233 @@
+/*
+ * oxAuth is available under the MIT License (2008). See http://opensource.org/licenses/MIT for full text.
+ *
+ * Copyright (c) 2014, Gluu
+ */
+
+package org.gluu.oxauth.model.registration;
+
+import org.apache.commons.lang.StringUtils;
+import org.gluu.oxauth.model.common.AuthenticationMethod;
+import org.gluu.oxauth.model.common.BackchannelTokenDeliveryMode;
+import org.gluu.oxauth.model.common.GrantType;
+import org.gluu.oxauth.model.common.ResponseType;
+import org.gluu.oxauth.model.crypto.signature.AsymmetricSignatureAlgorithm;
+import org.gluu.persist.model.base.CustomAttribute;
+import org.gluu.persist.model.base.DeletableEntity;
+import org.gluu.persist.annotation.*;
+import org.oxauth.persistence.model.ClientAttributes;
+
+import java.io.Serializable;
+import java.util.ArrayList;
+import java.util.Date;
+import java.util.List;
+
+/**
+ * @author Javier Rojas Blum
+ * @version August 20, 2019
+ */
+@DataEntry
+@ObjectClass(value = "oxAuthClient")
+public class Client extends DeletableEntity implements Serializable {
+
+    private static final long serialVersionUID = -6832496019942067971L;
+
+    @AttributeName(name = "inum")
+    private String clientId;
+
+    @AttributeName(name = "oxAuthClientSecret")
+    private String clientSecret;
+
+    @AttributeName(name = "oxAuthLogoutURI")
+    private String[] frontChannelLogoutUri;
+
+    @AttributeName(name = "oxAuthLogoutSessionRequired")
+    private Boolean frontChannelLogoutSessionRequired;
+
+    @AttributeName(name = "oxAuthRegistrationAccessToken")
+    private String registrationAccessToken;
+
+    @AttributeName(name = "oxAuthClientIdIssuedAt")
+    private Date clientIdIssuedAt;
+
+    @AttributeName(name = "oxAuthClientSecretExpiresAt")
+    private Date clientSecretExpiresAt;
+
+    @AttributeName(name = "oxAuthRedirectURI")
+    private String[] redirectUris;
+
+    @AttributeName(name = "oxClaimRedirectURI")
+    private String[] claimRedirectUris;
+
+    @AttributeName(name = "oxAuthResponseType")
+    private ResponseType[] responseTypes;
+
+    @AttributeName(name = "oxAuthGrantType")
+    private GrantType[] grantTypes;
+
+    @AttributeName(name = "oxAuthAppType")
+    private String applicationType;
+
+    @AttributeName(name = "oxAuthContact")
+    private String[] contacts;
+
+    @AttributeName(name = "displayName")
+    private String clientName;
+
+    @AttributeName(name = "tknBndCnf")
+    private String idTokenTokenBindingCnf;
+
+    @AttributeName(name = "oxAuthLogoURI")
+    private String logoUri;
+
+    @AttributeName(name = "oxAuthClientURI")
+    private String clientUri;
+
+    @AttributeName(name = "oxAuthPolicyURI")
+    private String policyUri;
+
+    @AttributeName(name = "oxAuthTosURI")
+    private String tosUri;
+
+    @AttributeName(name = "oxAuthJwksURI")
+    private String jwksUri;
+
+    @AttributeName(name = "oxAuthJwks")
+    private String jwks;
+
+    @AttributeName(name = "oxAuthSectorIdentifierURI")
+    private String sectorIdentifierUri;
+
+    @AttributeName(name = "oxAuthSubjectType")
+    private String subjectType;
+
+    @AttributeName(name = "oxAuthIdTokenSignedResponseAlg")
+    private String idTokenSignedResponseAlg;
+
+    @AttributeName(name = "oxAuthIdTokenEncryptedResponseAlg")
+    private String idTokenEncryptedResponseAlg;
+
+    @AttributeName(name = "oxAuthIdTokenEncryptedResponseEnc")
+    private String idTokenEncryptedResponseEnc;
+
+    @AttributeName(name = "oxAuthSignedResponseAlg")
+    private String userInfoSignedResponseAlg;
+
+    @AttributeName(name = "oxAuthUserInfoEncryptedResponseAlg")
+    private String userInfoEncryptedResponseAlg;
+
+    @AttributeName(name = "oxAuthUserInfoEncryptedResponseEnc")
+    private String userInfoEncryptedResponseEnc;
+
+    @AttributeName(name = "oxAuthRequestObjectSigningAlg")
+    private String requestObjectSigningAlg;
+
+    @AttributeName(name = "oxAuthRequestObjectEncryptionAlg")
+    private String requestObjectEncryptionAlg;
+
+    @AttributeName(name = "oxAuthRequestObjectEncryptionEnc")
+    private String requestObjectEncryptionEnc;
+
+    @AttributeName(name = "oxAuthTokenEndpointAuthMethod")
+    private String tokenEndpointAuthMethod;
+
+    @AttributeName(name = "oxAuthTokenEndpointAuthSigningAlg")
+    private String tokenEndpointAuthSigningAlg;
+
+    @AttributeName(name = "oxAuthDefaultMaxAge")
+    private Integer defaultMaxAge;
+
+    @AttributeName(name = "oxAuthRequireAuthTime")
+    private boolean requireAuthTime;
+
+    @AttributeName(name = "oxAuthDefaultAcrValues")
+    private String[] defaultAcrValues;
+
+    @AttributeName(name = "oxAuthInitiateLoginURI")
+    private String initiateLoginUri;
+
+    @AttributeName(name = "oxAuthPostLogoutRedirectURI")
+    private String[] postLogoutRedirectUris;
+
+    @AttributeName(name = "oxAuthRequestURI")
+    private String[] requestUris;
+
+    @AttributeName(name = "oxAuthScope")
+    private String[] scopes;
+
+    @AttributeName(name = "oxAuthClaim")
+    private String[] claims;
+
+    @AttributeName(name = "oxAuthTrustedClient")
+    private boolean trustedClient;
+
+    @AttributeName(name = "oxLastAccessTime")
+    private Date lastAccessTime;
+
+    @AttributeName(name = "oxLastLogonTime")
+    private Date lastLogonTime;
+
+    @AttributeName(name = "oxPersistClientAuthorizations")
+    private boolean persistClientAuthorizations;
+
+    @AttributeName(name = "oxIncludeClaimsInIdToken")
+    private boolean includeClaimsInIdToken;
+
+    @AttributeName(name = "oxRefreshTokenLifetime")
+    private Integer refreshTokenLifetime;
+
+    @AttributeName(name = "oxAccessTokenLifetime")
+    private Integer accessTokenLifetime;
+
+    @AttributesList(name = "name", value = "values", sortByName = true)
+    private List<CustomAttribute> customAttributes = new ArrayList<CustomAttribute>();
+
+    @CustomObjectClass
+    private String[] customObjectClasses;
+
+    @AttributeName(name = "oxRptAsJwt")
+    private boolean rptAsJwt = false;
+
+    @AttributeName(name = "oxAccessTokenAsJwt")
+    private boolean accessTokenAsJwt = false;
+
+    @AttributeName(name = "oxAccessTokenSigningAlg")
+    private String accessTokenSigningAlg;
+
+    @AttributeName(name = "oxDisabled")
+    private boolean disabled;
+
+    @AttributeName(name = "oxAuthAuthorizedOrigins")
+    private String[] authorizedOrigins;
+
+    @AttributeName(name = "oxSoftwareId")
+    private String softwareId;
+
+    @AttributeName(name = "oxSoftwareVersion")
+    private String softwareVersion;
+
+    @AttributeName(name = "oxSoftwareStatement")
+    private String softwareStatement;
+
+    @AttributeName(name = "oxAttributes")
+    @JsonObject
+    private ClientAttributes attributes;
+
+    @AttributeName(name = "oxAuthBackchannelTokenDeliveryMode")
+    private BackchannelTokenDeliveryMode backchannelTokenDeliveryMode;
+
+    @AttributeName(name = "oxAuthBackchannelClientNotificationEndpoint")
+    private String backchannelClientNotificationEndpoint;
+
+    @AttributeName(name = "oxAuthBackchannelAuthenticationRequestSigningAlg")
+    private AsymmetricSignatureAlgorithm backchannelAuthenticationRequestSigningAlg;
+
+    @AttributeName(name = "oxAuthBackchannelUserCodeParameter")
+    private Boolean backchannelUserCodeParameter;
+
+    @AttributeName(name = "o")
+    private String organization;
+
+    @Expiration
+    private Integer ttl;
+
+    public String getOrganization() {
+        return organization;
+    }
+
+    public void setOrganization(String organization) {
+        this.organization = organization;
+    }
+
+    public ClientAttributes getAttributes() {
+        if (attributes == null) {
+            attributes = new ClientAttributes();
+        }
+        return attributes;
+    }
+
+    public void setAttributes(ClientAttributes attributes) {
+        this.attributes = attributes;
+    }
+
+    public Integer getTtl() {
+        return ttl;
+    }
+
+    public void setTtl(Integer ttl) {
+        this.ttl = ttl;
+    }
+
+    public boolean isRptAsJwt() {
+        return rptAsJwt;
+    }
+
+    public void setRptAsJwt(boolean rptAsJwt) {
+        this.rptAsJwt = rptAsJwt;
+    }
+
+    public boolean isAccessTokenAsJwt() {
+        return accessTokenAsJwt;
+    }
+
+    public void setAccessTokenAsJwt(boolean accessTokenAsJwt) {
+        this.accessTokenAsJwt = accessTokenAsJwt;
+    }
+
+    public String getAccessTokenSigningAlg() {
+        return accessTokenSigningAlg;
+    }
+
+    public void setAccessTokenSigningAlg(String accessTokenSigningAlg) {
+        this.accessTokenSigningAlg = accessTokenSigningAlg;
+    }
+
+    public AuthenticationMethod getAuthenticationMethod() {
+        return AuthenticationMethod.fromString(tokenEndpointAuthMethod);
+    }
+
+    /**
+     * Gets logout session required.
+     *
+     * @return logout session required
+     */
+    public Boolean getFrontChannelLogoutSessionRequired() {
+        if (frontChannelLogoutSessionRequired == null) frontChannelLogoutSessionRequired = false;
+        return frontChannelLogoutSessionRequired;
+    }
+
+    /**
+     * Sets frontchannel logout session required.
+     *
+     * @param frontChannelLogoutSessionRequired frontchannel logout session required
+     */
+    public void setFrontChannelLogoutSessionRequired(Boolean frontChannelLogoutSessionRequired) {
+        this.frontChannelLogoutSessionRequired = frontChannelLogoutSessionRequired;
+    }
+
+    /**
+     * Gets logout uri
+     *
+     * @return logout uri
+     */
+    public String[] getFrontChannelLogoutUri() {
+        if (frontChannelLogoutUri == null) frontChannelLogoutUri = new String[0];
+        return frontChannelLogoutUri;
+    }
+
+    /**
+     * Sets logout uri.
+     *
+     * @param frontChannelLogoutUri logout uri
+     */
+    public void setFrontChannelLogoutUri(String[] frontChannelLogoutUri) {
+        this.frontChannelLogoutUri = frontChannelLogoutUri;
+    }
+
+    /**
+     * Returns the Unique Client identifier.
+     *
+     * @return The Unique Client identifier.
+     */
+    public String getClientId() {
+        return clientId;
+    }
+
+    /**
+     * Sets the Unique Client identifier.
+     *
+     * @param clientId The client identifier.
+     */
+    public void setClientId(String clientId) {
+        this.clientId = clientId;
+    }
+
+    /**
+     * Returns the client secret.
+     *
+     * @return The client secret.
+     */
+    public String getClientSecret() {
+        return clientSecret;
+    }
+
+    /**
+     * Sets the client secret.
+     *
+     * @param clientSecret The client secret.
+     */
+    public void setClientSecret(String clientSecret) {
+    	this.clientSecret = clientSecret;
+    }
+
+    /**
+     * Returns the Access Token that is used by the Client to perform subsequent operations upon the resulting
+     * Client registration.
+     *
+     * @return The registration access token.
+     */
+    public String getRegistrationAccessToken() {
+        return registrationAccessToken;
+    }
+
+    /**
+     * Sets the Access Token that is used by the Client to perform subsequent operations upon the resulting Client
+     * registration.
+     *
+     * @param registrationAccessToken The registration access token.
+     */
+    public void setRegistrationAccessToken(String registrationAccessToken) {
+        this.registrationAccessToken = registrationAccessToken;
+    }
+
+    /**
+     * Returns the time when the Client Identifier was issued.
+     *
+     * @return The Client ID issued at value.
+     */
+    public Date getClientIdIssuedAt() {
+        return clientIdIssuedAt;
+    }
+
+    /**
+     * Sets the time then the Client Identifier was issued.
+     *
+     * @param clientIdIssuedAt The Client ID issued at value.
+     */
+    public void setClientIdIssuedAt(Date clientIdIssuedAt) {
+        this.clientIdIssuedAt = clientIdIssuedAt;
+    }
+
+    /**
+     * Returns the time at which the client secret will expire.
+     *
+     * @return The Client Secret expiration date.
+     */
+    public Date getClientSecretExpiresAt() {
+        return clientSecretExpiresAt != null ? new Date(clientSecretExpiresAt.getTime()) : null;
+    }
+
+    /**
+     * Sets the time at which the client secret will expire.
+     *
+     * @param clientSecretExpiresAt The Client Secret expiration date.
+     */
+    public void setClientSecretExpiresAt(Date clientSecretExpiresAt) {
+        this.clientSecretExpiresAt = clientSecretExpiresAt != null ? new Date(clientSecretExpiresAt.getTime()) : null;
+    }
+
+    /**
+     * Returns an Array of redirect URIs values used in the Authorization Code and Implicit grant types.
+     * One of the these registered redirect URI values must match the Scheme, Host, and Path segments of
+     * the Redirect URI parameter value used in each Authorization Request.
+     *
+     * @return The redirect URIs.
+     */
+    public String[] getRedirectUris() {
+        return redirectUris;
+    }
+
+    /**
+     * Sets an Array of redirect URIs values used in the Authorization Code and Implicit grant types.
+     * One of the these registered redirect URI values must match the Scheme, Host, and Path segments of
+     * the Redirect URI parameter value used in each Authorization Request.
+     *
+     * @param redirectUris The redirect URIs.
+     */
+    public void setRedirectUris(String[] redirectUris) {
+        this.redirectUris = redirectUris;
+    }
+
+    /**
+     * Returns UMA2 Array of The Claims Redirect URIs to which the client wishes the authorization server to direct
+     * the requesting party's user agent after completing its interaction.
+     * The URI MUST be absolute, MAY contain an application/x-www-form-urlencoded-formatted query parameter component
+     * that MUST be retained when adding additional parameters, and MUST NOT contain a fragment component.
+     * The client SHOULD pre-register its claims_redirect_uri with the authorization server, and the authorization server
+     * SHOULD require all clients to pre-register their claims redirection endpoints. Claims redirection URIs
+     * are different from the redirection URIs defined in [RFC6749] in that they are intended for the exclusive use
+     * of requesting parties and not resource owners. Therefore, authorization servers MUST NOT redirect requesting parties
+     * to pre-registered redirection URIs defined in [RFC6749] unless such URIs are also pre-registered specifically as
+     * claims redirection URIs. If the URI is pre-registered, this URI MUST exactly match one of the pre-registered claims
+     * redirection URIs, with the matching performed as described in Section 6.2.1 of [RFC3986] (Simple String Comparison).
+     *
+     * @return claims redirect uris
+     */
+    public String[] getClaimRedirectUris() {
+        return claimRedirectUris;
+    }
+
+    /**
+     * Sets Claim redirect URIs
+     *
+     * @param claimRedirectUris claims redirect uris
+     */
+    public void setClaimRedirectUris(String[] claimRedirectUris) {
+        this.claimRedirectUris = claimRedirectUris;
+    }
+
+    /**
+     * Returns a JSON array containing a list of the OAuth 2.0 response type values that the Client is declaring
+     * that it will restrict itself to using.
+     *
+     * @return The response types.
+     */
+    public ResponseType[] getResponseTypes() {
+        return responseTypes;
+    }
+
+    /**
+     * Sets a JSON array containing a list of the OAuth 2.0 response type values that the Client is declaring that
+     * it will restrict itself to using.
+     *
+     * @param responseTypes The response types.
+     */
+    public void setResponseTypes(ResponseType[] responseTypes) {
+        this.responseTypes = responseTypes;
+    }
+
+    /**
+     * Returns a JSON array containing a list of the OAuth 2.0 grant types that the Client is declaring that it will
+     * restrict itself to using.
+     *
+     * @return The grant types.
+     */
+    public GrantType[] getGrantTypes() {
+        if (grantTypes == null) grantTypes = new GrantType[0];
+        return grantTypes;
+    }
+
+    /**
+     * Sets a JSON array containing a list of the OAuth 2.0 grant types that the Client is declaring that it will
+     * restrict itself to using.
+     *
+     * @param grantTypes The grant types.
+     */
+    public void setGrantTypes(GrantType[] grantTypes) {
+        this.grantTypes = grantTypes;
+    }
+
+    /**
+     * Returns the Kind of the application. The default if not specified is web. The defined values are native or web.
+     * Web Clients using the OAuth implicit grant type must only register URLs using the https scheme as redirect_uris;
+     * they may not use localhost as the hostname.
+     * Native Clients must only register redirect_uris using custom URI schemes or URLs using the http: scheme with
+     * localhost as the hostname.
+     *
+     * @return The type of the client application.
+     */
+    public String getApplicationType() {
+        return applicationType;
+    }
+
+    /**
+     * Sets the Kind of the application. The default if not specified is web. The defined values are native or web.
+     * Web Clients using the OAuth implicit grant type must only register URLs using the https scheme as redirect_uris;
+     * they may not use localhost as the hostname.
+     * Native Clients must only register redirect_uris using custom URI schemes or URLs using the http: scheme with
+     * localhost as the hostname.
+     *
+     * @param applicationType The type of the client application.
+     */
+    public void setApplicationType(String applicationType) {
+        this.applicationType = applicationType;
+    }
+
+    /**
+     * Returns an Array of e-mail addresses of people responsible for this Client.
+     * This may be used by some providers to enable a Web user interface to modify the Client information.
+     *
+     * @return A list of contact email addresses.
+     */
+    public String[] getContacts() {
+        return contacts;
+    }
+
+    /**
+     * Sets an Array of e-mail addresses of people responsible for this Client.
+     * This may be used by some providers to enable a Web user interface to modify the Client information.
+     *
+     * @param contacts A list of contact email addresses.
+     */
+    public void setContacts(String[] contacts) {
+        this.contacts = contacts;
+    }
+
+    /**
+     * Returns the name of the Client to be presented to the user.
+     *
+     * @return The name of the Client to be presented to the user.
+     */
+    public String getClientName() {
+        return clientName;
+    }
+
+    /**
+     * Sets the name of the Client to be presented to the user.
+     *
+     * @param clientName The name of the Client to be presented to the user.
+     */
+    public void setClientName(String clientName) {
+        this.clientName = clientName;
+    }
+
+    public String getIdTokenTokenBindingCnf() {
+        return idTokenTokenBindingCnf;
+    }
+
+    public void setIdTokenTokenBindingCnf(String idTokenTokenBindingCnf) {
+        this.idTokenTokenBindingCnf = idTokenTokenBindingCnf;
+    }
+
+    public boolean isTokenBindingSupported() {
+        return StringUtils.isNotBlank(idTokenTokenBindingCnf);
+    }
+
+    /**
+     * Returns an URL that references a logo for the Client application.
+     *
+     * @return The URL of a logo image for the Client where it can be retrieved.
+     */
+    public String getLogoUri() {
+        return logoUri;
+    }
+
+    /**
+     * Sets an URL that references a logo for the Client application.
+     *
+     * @param logoUri The URL of a logo image for the Client where it can be retrieved.
+     */
+    public void setLogoUri(String logoUri) {
+        this.logoUri = logoUri;
+    }
+
+    /**
+     * Returns an URL of the home page of the Client.
+     *
+     * @return The URL of the home page of the Client.
+     */
+    public String getClientUri() {
+        return clientUri;
+    }
+
+    /**
+     * Sets an URL of the home page of the Client.
+     *
+     * @param clientUri The URL of the home page of the Client.
+     */
+    public void setClientUri(String clientUri) {
+        this.clientUri = clientUri;
+    }
+
+    /**
+     * Returns an that the Relying Party Client provides to the End-User to read about the how the profile data will
+     * be used.
+     *
+     * @return An URL location about the how the profile data will be used.
+     */
+    public String getPolicyUri() {
+        return policyUri;
+    }
+
+    /**
+     * Sets an that the Relying Party Client provides to the End-User to read about the how the profile data will
+     * be used.
+     *
+     * @param policyUri An URL location about the how the profile data will be used.
+     */
+    public void setPolicyUri(String policyUri) {
+        this.policyUri = policyUri;
+    }
+
+    /**
+     * Returns an URL that the Relying Party Client provides to the End-User to read about the Relying Party's terms
+     * of service.
+     *
+     * @return The terms of service URL.
+     */
+    public String getTosUri() {
+        return tosUri;
+    }
+
+    /**
+     * Sets an URL that the Relying Party Client provides to the End-User to read about the Relying Party's terms of
+     * service.
+     *
+     * @param tosUri The terms of service URL.
+     */
+    public void setTosUri(String tosUri) {
+        this.tosUri = tosUri;
+    }
+
+    /**
+     * Return the URL for the Client's JSON Web Key (JWK) document containing key(s) that are used for signing requests
+     * to the OP. The JWK Set may also contain the Client's encryption key(s) that are used by the OP to encrypt the
+     * responses to the Client.
+     *
+     * @return The URL for the Client's JWK Set.
+     */
+    public String getJwksUri() {
+        return jwksUri;
+    }
+
+    /**
+     * Sets the URL for the Client's JSON Web Key (JWK) document containing key(s) that are used for signing requests
+     * to the OP. The JWK Set may also contain the Client's encryption key(s) that are used by the OP to encrypt the
+     * responses to the Client.
+     *
+     * @param jwksUri The URL for the Client's JWK Set.
+     */
+    public void setJwksUri(String jwksUri) {
+        this.jwksUri = jwksUri;
+    }
+
+    /**
+     * Client's JSON Web Key Set (JWK) document, passed by value. The semantics of the jwks parameter are the same as
+     * the jwks_uri parameter, other than that the JWK Set is passed by value, rather than by reference.
+     * This parameter is intended only to be used by Clients that, for some reason, are unable to use the jwks_uri
+     * parameter, for instance, by native applications that might not have a location to host the contents of the JWK
+     * Set. If a Client can use jwks_uri, it must not use jwks.
+     * One significant downside of jwks is that it does not enable key rotation (which jwks_uri does, as described in
+     * Section 10 of OpenID Connect Core 1.0). The jwks_uri and jwks parameters must not be used together.
+     *
+     * @return The Client's JSON Web Key Set (JWK) document.
+     */
+    public String getJwks() {
+        return jwks;
+    }
+
+    /**
+     * Client's JSON Web Key Set (JWK) document, passed by value. The semantics of the jwks parameter are the same as
+     * the jwks_uri parameter, other than that the JWK Set is passed by value, rather than by reference.
+     * This parameter is intended only to be used by Clients that, for some reason, are unable to use the jwks_uri
+     * parameter, for instance, by native applications that might not have a location to host the contents of the JWK
+     * Set. If a Client can use jwks_uri, it must not use jwks.
+     * One significant downside of jwks is that it does not enable key rotation (which jwks_uri does, as described in
+     * Section 10 of OpenID Connect Core 1.0). The jwks_uri and jwks parameters must not be used together.
+     *
+     * @param jwks The Client's JSON Web Key Set (JWK) document.
+     */
+    public void setJwks(String jwks) {
+        this.jwks = jwks;
+    }
+
+    /**
+     * Return an URL using the HTTPS scheme to be used in calculating Pseudonymous Identifiers by the OP.
+     * The URL references a file with a single JSON array of Redirect URI values.
+     *
+     * @return A HTTPS scheme URL to be used in calculating Pseudonymous Identifiers by the OP.
+     */
+    public String getSectorIdentifierUri() {
+        return sectorIdentifierUri;
+    }
+
+    /**
+     * Sets an URL using the HTTPS scheme to be used in calculating Pseudonymous Identifiers by the OP.
+     * The URL references a file with a single JSON array of Redirect URI values.
+     *
+     * @param sectorIdentifierUri A HTTPS scheme URL to be used in calculating Pseudonymous Identifiers by the OP.
+     */
+    public void setSectorIdentifierUri(String sectorIdentifierUri) {
+        this.sectorIdentifierUri = sectorIdentifierUri;
+    }
+
+    /**
+     * Returns the Subject type requested for the Client ID. Valid types include pairwise and public.
+     *
+     * @return The subject type.
+     */
+    public String getSubjectType() {
+        return subjectType;
+    }
+
+    /**
+     * Sets the Subject type quested for the Client ID. Valid types include pairwise and public.
+     *
+     * @param subjectType The subject type.
+     */
+    public void setSubjectType(String subjectType) {
+        this.subjectType = subjectType;
+    }
+
+    /**
+     * Returns the JWS alg algorithm (JWA)0 required for the issued ID Token.
+     *
+     * @return The JWS signing algorithm required for the ID Token issued.
+     */
+    public String getIdTokenSignedResponseAlg() {
+        return idTokenSignedResponseAlg;
+    }
+
+    /**
+     * Sets the JWS alg algorithm (JWA)0 required for the issued ID Token.
+     *
+     * @param idTokenSignedResponseAlg The JWS signing algorithm required for the ID Token issued.
+     */
+    public void setIdTokenSignedResponseAlg(String idTokenSignedResponseAlg) {
+        this.idTokenSignedResponseAlg = idTokenSignedResponseAlg;
+    }
+
+    /**
+     * Returns the JWE alg algorithm (JWA) required for encrypting the ID Token.
+     *
+     * @return The JWE alg algorithm required for the ID Token issued.
+     */
+    public String getIdTokenEncryptedResponseAlg() {
+        return idTokenEncryptedResponseAlg;
+    }
+
+    /**
+     * Sets the JWE alg algorithm (JWA) required for encrypting the ID Token.
+     *
+     * @param idTokenEncryptedResponseAlg The JWE alg algorithm required for the ID Token issued.
+     */
+    public void setIdTokenEncryptedResponseAlg(String idTokenEncryptedResponseAlg) {
+        this.idTokenEncryptedResponseAlg = idTokenEncryptedResponseAlg;
+    }
+
+    /**
+     * Returns the JWE enc algorithm (JWA) required for symmetric encryption of the ID Token.
+     *
+     * @return The JWE enc algorithm required for the ID token issued.
+     */
+    public String getIdTokenEncryptedResponseEnc() {
+        return idTokenEncryptedResponseEnc;
+    }
+
+    /**
+     * Sets the JWE enc algorithm (JWA) required for symmetric encryption of the ID Token.
+     *
+     * @param idTokenEncryptedResponseEnc The JWE enc algorithm required for the ID token issued.
+     */
+    public void setIdTokenEncryptedResponseEnc(String idTokenEncryptedResponseEnc) {
+        this.idTokenEncryptedResponseEnc = idTokenEncryptedResponseEnc;
+    }
+
+    /**
+     * Returns the JWS alg algorithm (JWA) required for UserInfo Responses.
+     *
+     * @return The JWS encryption algorithm required for UserInfo responses.
+     */
+    public String getUserInfoSignedResponseAlg() {
+        return userInfoSignedResponseAlg;
+    }
+
+    /**
+     * Sets the JWS alg algorithm (JWA) required for UserInfo Responses.
+     *
+     * @param userInfoSignedResponseAlg The JWS encryption algorithm required for UserInfo responses.
+     */
+    public void setUserInfoSignedResponseAlg(String userInfoSignedResponseAlg) {
+        this.userInfoSignedResponseAlg = userInfoSignedResponseAlg;
+    }
+
+    /**
+     * Returns the JWE alg algorithm (JWA) required for encrypting UserInfo Responses.
+     *
+     * @return The JWE alg algorithm required for UserInfo responses.
+     */
+    public String getUserInfoEncryptedResponseAlg() {
+        return userInfoEncryptedResponseAlg;
+    }
+
+    /**
+     * Sets the JWE alg algorithm (JWA) required for encrypting UserInfo Responses.
+     *
+     * @param userInfoEncryptedResponseAlg The JWE alg algorithm required for UserInfo responses.
+     */
+    public void setUserInfoEncryptedResponseAlg(String userInfoEncryptedResponseAlg) {
+        this.userInfoEncryptedResponseAlg = userInfoEncryptedResponseAlg;
+    }
+
+    /**
+     * Returns the JWE enc algorithm (JWA) required for symmetric encryption of UserInfo Responses.
+     *
+     * @return The JWE enc algorithm required for UserInfo responses.
+     */
+    public String getUserInfoEncryptedResponseEnc() {
+        return userInfoEncryptedResponseEnc;
+    }
+
+    /**
+     * Sets the JWE enc algorithm (JWA) required for symmetric encryption of UserInfo Responses.
+     *
+     * @param userInfoEncryptedResponseEnc The JWE enc algorithm required for UserInfo responses.
+     */
+    public void setUserInfoEncryptedResponseEnc(String userInfoEncryptedResponseEnc) {
+        this.userInfoEncryptedResponseEnc = userInfoEncryptedResponseEnc;
+    }
+
+    /**
+     * Returns the JWS alg algorithm (JWA) that must be required by the Authorization Server.
+     *
+     * @return The JWS signature algorithm that must be required by the Authorization Server.
+     */
+    public String getRequestObjectSigningAlg() {
+        return requestObjectSigningAlg;
+    }
+
+    /**
+     * Sets the JWS alg algorithm (JWA) that must be required by the Authorization Server.
+     *
+     * @param requestObjectSigningAlg The JWS signature algorithm that must be required by the Authorization Server.
+     */
+    public void setRequestObjectSigningAlg(String requestObjectSigningAlg) {
+        this.requestObjectSigningAlg = requestObjectSigningAlg;
+    }
+
+    /**
+     * Returns the JWE alg algorithm (JWA) the RP is declaring that it may use for encrypting Request Objects
+     * sent to the OP.
+     *
+     * @return The JWE alg algorithm (JWA).
+     */
+    public String getRequestObjectEncryptionAlg() {
+        return requestObjectEncryptionAlg;
+    }
+
+    /**
+     * Sets the JWE alg algorithm (JWA) the RP is declaring that it may use for encrypting Request Objects
+     * sent to the OP.
+     *
+     * @param requestObjectEncryptionAlg The JWE alg algorithm (JWA).
+     */
+    public void setRequestObjectEncryptionAlg(String requestObjectEncryptionAlg) {
+        this.requestObjectEncryptionAlg = requestObjectEncryptionAlg;
+    }
+
+    /**
+     * Returns the JWE enc algorithm (JWA) the RP is declaring that it may use for encrypting Request Objects
+     * sent to the OP.
+     *
+     * @return The JWE enc algorithm (JWA).
+     */
+    public String getRequestObjectEncryptionEnc() {
+        return requestObjectEncryptionEnc;
+    }
+
+    /**
+     * Sets the JWE enc algorithm (JWA) the RP is declaring that it may use for encrypting Request Objects
+     * sent to the OP.
+     *
+     * @param requestObjectEncryptionEnc The JWE enc algorithm (JWA).
+     */
+    public void setRequestObjectEncryptionEnc(String requestObjectEncryptionEnc) {
+        this.requestObjectEncryptionEnc = requestObjectEncryptionEnc;
+    }
+
+    /**
+     * Returns the Requested authentication method for the Token Endpoint.
+     *
+     * @return The authentication type for the Token Endpoint.
+     */
+    public String getTokenEndpointAuthMethod() {
+        return tokenEndpointAuthMethod;
+    }
+
+    /**
+     * Sets the Requested authentication method for the Token Endpoint.
+     *
+     * @param tokenEndpointAuthMethod The authentication type for the Token Endpoint.
+     */
+    public void setTokenEndpointAuthMethod(String tokenEndpointAuthMethod) {
+        this.tokenEndpointAuthMethod = tokenEndpointAuthMethod;
+    }
+
+    /**
+     * Returns the Requested Client Authentication method for the Token Endpoint.
+     *
+     * @return The Requested Client Authentication method for the Token Endpoint.
+     */
+    public String getTokenEndpointAuthSigningAlg() {
+        return tokenEndpointAuthSigningAlg;
+    }
+
+    /**
+     * Sets the Requested Client Authentication method for the Token Endpoint.
+     *
+     * @param tokenEndpointAuthSigningAlg The Requested Client Authentication method for the Token Endpoint.
+     */
+    public void setTokenEndpointAuthSigningAlg(String tokenEndpointAuthSigningAlg) {
+        this.tokenEndpointAuthSigningAlg = tokenEndpointAuthSigningAlg;
+    }
+
+    /**
+     * Returns the Default Maximum Authentication Age.
+     * Specifies that the End-User must be actively authenticated if the End-User was authenticated longer ago than
+     * the specified number of seconds.
+     *
+     * @return The default maximum authentication age.
+     */
+    public Integer getDefaultMaxAge() {
+        return defaultMaxAge;
+    }
+
+    /**
+     * Sets the Default Maximum Authentication Age.
+     * Specified that the End-User must be actively authenticated if the End-User was authenticated longer ago than
+     * the specified number of seconds.
+     *
+     * @param defaultMaxAge The default maximum authentication age.
+     */
+    public void setDefaultMaxAge(Integer defaultMaxAge) {
+        this.defaultMaxAge = defaultMaxAge;
+    }
+
+    /**
+     * Returns a boolean value specifying whether the auth_time Claim in the ID Token is required.
+     * It is required when the value is true. The auth_time Claim request in the Request Object overrides this setting.
+     *
+     * @return The required authentication time.
+     */
+    public boolean getRequireAuthTime() {
+        return requireAuthTime;
+    }
+
+    /**
+     * Sets a boolean value specifying whether the auth_time Claim in the ID Token is required.
+     * It is required when the value is true. The auth_time Claim request in the Request Object overrides this setting.
+     *
+     * @param requireAuthTime The required authentication time.
+     */
+    public void setRequireAuthTime(boolean requireAuthTime) {
+        this.requireAuthTime = requireAuthTime;
+    }
+
+    /**
+     * Returns the Default requested Authentication Context Class Reference values.
+     * Array of strings that specifies the default acr values that the Authorization Server must use for processing
+     * requests from the Client.
+     *
+     * @return The default acr values.
+     */
+    public String[] getDefaultAcrValues() {
+        return defaultAcrValues;
+    }
+
+    /**
+     * Sets the Default requested Authentication Context Class Reference values.
+     * Array of strings that specifies the default acr values that the Authorization Server must use for processing
+     * request from the Client.
+     *
+     * @param defaultAcrValues The default acr values.
+     */
+    public void setDefaultAcrValues(String[] defaultAcrValues) {
+        this.defaultAcrValues = defaultAcrValues;
+    }
+
+    /**
+     * Returns an URI using the https scheme that the Authorization Server can call to initiate a login at the Client.
+     *
+     * @return The initiate login URI.
+     */
+    public String getInitiateLoginUri() {
+        return initiateLoginUri;
+    }
+
+    /**
+     * Sets an URI using the https scheme that the Authorization Server can call to initiate a login at the Client.
+     *
+     * @param initiateLoginUri The initiate login URI.
+     */
+    public void setInitiateLoginUri(String initiateLoginUri) {
+        this.initiateLoginUri = initiateLoginUri;
+    }
+
+    /**
+     * Returns an Array of URIs supplied by the RP to request that the user be redirected to this location after a
+     * logout has been performed.
+     *
+     * @return The Array of post logout redirect URIs.
+     */
+    public String[] getPostLogoutRedirectUris() {
+        return postLogoutRedirectUris;
+    }
+
+    /**
+     * Sets an Array of URIs supplied by the RP to request that the user be redirected to this location after a logout
+     * has been performed.
+     *
+     * @param postLogoutRedirectUris The post logout redirect URI.
+     */
+    public void setPostLogoutRedirectUris(String[] postLogoutRedirectUris) {
+        this.postLogoutRedirectUris = postLogoutRedirectUris;
+    }
+
+    /**
+     * Returns an Array of Request URI values that are pre-registered by the Client for use at the Authorization Server.
+     *
+     * @return The request URIs.
+     */
+    public String[] getRequestUris() {
+        return requestUris;
+    }
+
+    /**
+     * Sets an Array of Request URI values that are pre-registered by the Client for use at the Authorization Server.
+     *
+     * @param requestUris The request URIs.
+     */
+    public void setRequestUris(String[] requestUris) {
+        this.requestUris = requestUris;
+    }
+
+    public String[] getScopes() {
+        return scopes;
+    }
+
+    public void setScopes(String[] scopes) {
+        this.scopes = scopes;
+    }
+
+    public String[] getClaims() {
+        return claims;
+    }
+
+    public void setClaims(String[] claims) {
+        this.claims = claims;
+    }
+
+    public boolean getTrustedClient() {
+        return trustedClient;
+    }
+
+    public void setTrustedClient(boolean trustedClient) {
+        this.trustedClient = trustedClient;
+    }
+
+    public Date getLastAccessTime() {
+        return lastAccessTime;
+    }
+
+    public void setLastAccessTime(Date lastAccessTime) {
+        this.lastAccessTime = lastAccessTime;
+    }
+
+    public Date getLastLogonTime() {
+        return lastLogonTime;
+    }
+
+    public void setLastLogonTime(Date lastLogonTime) {
+        this.lastLogonTime = lastLogonTime;
+    }
+
+    public boolean getPersistClientAuthorizations() {
+        return persistClientAuthorizations;
+    }
+
+    public void setPersistClientAuthorizations(boolean persistClientAuthorizations) {
+        this.persistClientAuthorizations = persistClientAuthorizations;
+    }
+
+    public boolean isIncludeClaimsInIdToken() {
+        return includeClaimsInIdToken;
+    }
+
+    public void setIncludeClaimsInIdToken(boolean includeClaimsInIdToken) {
+        this.includeClaimsInIdToken = includeClaimsInIdToken;
+    }
+
+    public Integer getRefreshTokenLifetime() {
+        return refreshTokenLifetime;
+    }
+
+    public void setRefreshTokenLifetime(Integer refreshTokenLifetime) {
+        this.refreshTokenLifetime = refreshTokenLifetime;
+    }
+
+    public Integer getAccessTokenLifetime() {
+        return accessTokenLifetime;
+    }
+
+    public void setAccessTokenLifetime(Integer accessTokenLifetime) {
+        this.accessTokenLifetime = accessTokenLifetime;
+    }
+
+    public List<CustomAttribute> getCustomAttributes() {
+        return customAttributes;
+    }
+
+    public void setCustomAttributes(List<CustomAttribute> customAttributes) {
+        this.customAttributes = customAttributes;
+    }
+
+    public String[] getCustomObjectClasses() {
+        return customObjectClasses;
+    }
+
+    public void setCustomObjectClasses(String[] p_customObjectClasses) {
+        customObjectClasses = p_customObjectClasses;
+    }
+
+    public boolean isDisabled() {
+        return disabled;
+    }
+
+    public void setDisabled(boolean disabled) {
+        this.disabled = disabled;
+    }
+
+    public String[] getAuthorizedOrigins() {
+        return authorizedOrigins;
+    }
+
+    public void setAuthorizedOrigins(String[] authorizedOrigins) {
+        this.authorizedOrigins = authorizedOrigins;
+    }
+
+    public String getSoftwareId() {
+        return softwareId;
+    }
+
+    public void setSoftwareId(String softwareId) {
+        this.softwareId = softwareId;
+    }
+
+    public String getSoftwareVersion() {
+        return softwareVersion;
+    }
+
+    public void setSoftwareVersion(String softwareVersion) {
+        this.softwareVersion = softwareVersion;
+    }
+
+    public String getSoftwareStatement() {
+        return softwareStatement;
+    }
+
+    public void setSoftwareStatement(String softwareStatement) {
+        this.softwareStatement = softwareStatement;
+    }
+
+    public BackchannelTokenDeliveryMode getBackchannelTokenDeliveryMode() {
+        return backchannelTokenDeliveryMode;
+    }
+
+    public void setBackchannelTokenDeliveryMode(BackchannelTokenDeliveryMode backchannelTokenDeliveryMode) {
+        this.backchannelTokenDeliveryMode = backchannelTokenDeliveryMode;
+    }
+
+    public String getBackchannelClientNotificationEndpoint() {
+        return backchannelClientNotificationEndpoint;
+    }
+
+    public void setBackchannelClientNotificationEndpoint(String backchannelClientNotificationEndpoint) {
+        this.backchannelClientNotificationEndpoint = backchannelClientNotificationEndpoint;
+    }
+
+    public AsymmetricSignatureAlgorithm getBackchannelAuthenticationRequestSigningAlg() {
+        return backchannelAuthenticationRequestSigningAlg;
+    }
+
+    public void setBackchannelAuthenticationRequestSigningAlg(AsymmetricSignatureAlgorithm backchannelAuthenticationRequestSigningAlg) {
+        this.backchannelAuthenticationRequestSigningAlg = backchannelAuthenticationRequestSigningAlg;
+    }
+
+    public Boolean getBackchannelUserCodeParameter() {
+        return backchannelUserCodeParameter;
+    }
+
+    public void setBackchannelUserCodeParameter(Boolean backchannelUserCodeParameter) {
+        this.backchannelUserCodeParameter = backchannelUserCodeParameter;
+    }
+}
\ No newline at end of file
diff --git a/oxAuth/common/src/main/java/org/gluu/oxauth/model/session/SessionId.java b/oxAuth/common/src/main/java/org/gluu/oxauth/model/session/SessionId.java
new file mode 100644
index 00000000..cd251147
--- /dev/null
+++ b/oxAuth/common/src/main/java/org/gluu/oxauth/model/session/SessionId.java
@@ -0,0 +1,342 @@
+/*
+ * oxAuth is available under the MIT License (2008). See http://opensource.org/licenses/MIT for full text.
+ *
+ * Copyright (c) 2014, Gluu
+ */
+
+package org.gluu.oxauth.model.session;
+
+import com.google.common.collect.Maps;
+import com.google.common.collect.Sets;
+import org.apache.commons.lang.StringUtils;
+import org.gluu.oxauth.model.common.User;
+import org.gluu.persist.annotation.*;
+import org.gluu.persist.model.base.Deletable;
+
+import javax.annotation.Nonnull;
+import javax.inject.Named;
+import javax.persistence.Transient;
+import java.io.Serializable;
+import java.util.Date;
+import java.util.Map;
+import java.util.Set;
+import java.util.UUID;
+
+import static org.apache.commons.lang.BooleanUtils.isTrue;
+import static org.gluu.oxauth.model.util.StringUtils.implode;
+import static org.gluu.oxauth.model.util.StringUtils.spaceSeparatedToList;
+
+/**
+ * @author Yuriy Zabrovarnyy
+ * @author Javier Rojas Blum
+ * @version December 8, 2018
+ */
+@Named("sessionUser")
+@DataEntry
+@ObjectClass(value = "oxAuthSessionId")
+public class SessionId implements Deletable, Serializable {
+
+    public static final String OLD_SESSION_ID_ATTR_KEY = "old_session_id";
+    public static final String OP_BROWSER_STATE = "opbs";
+
+    private static final long serialVersionUID = -237476411915686378L;
+
+    @DN
+    private String dn;
+
+    @AttributeName(name = "oxId")
+    private String id;
+
+    @AttributeName(name = "sid")
+    private String outsideSid;
+
+    @AttributeName(name = "oxLastAccessTime")
+    private Date lastUsedAt;
+
+    @AttributeName(name = "oxAuthUserDN")
+    private String userDn;
+
+    @AttributeName(name = "authnTime")
+    private Date authenticationTime;
+
+    @AttributeName(name = "oxState")
+    private SessionIdState state;
+
+    @AttributeName(name = "oxSessionState")
+    private String sessionState;
+
+    @AttributeName(name = "oxAuthPermissionGranted")
+    private Boolean permissionGranted;
+
+    @AttributeName(name = "oxAsJwt")
+    private Boolean isJwt = false;
+
+    @AttributeName(name = "oxJwt")
+    private String jwt;
+
+    @JsonObject
+    @AttributeName(name = "oxAuthPermissionGrantedMap")
+    private SessionIdAccessMap permissionGrantedMap;
+
+    @JsonObject
+    @AttributeName(name = "oxAuthSessionAttribute")
+    private Map<String, String> sessionAttributes;
+
+    @AttributeName(name = "exp")
+    private Date expirationDate;
+
+    @AttributeName(name = "del")
+    private Boolean deletable = true;
+
+    @AttributeName(name = "creationDate")
+    private Date creationDate = new Date();
+
+    @Transient
+    private transient boolean persisted;
+
+    @Transient
+    private User user;
+
+    @Expiration
+    private int ttl;
+
+    public SessionId() {
+    }
+
+    public int getTtl() {
+        return ttl;
+    }
+
+    public void setTtl(int ttl) {
+        this.ttl = ttl;
+    }
+
+    public String getDn() {
+        return dn;
+    }
+
+    public void setDn(String p_dn) {
+        dn = p_dn;
+    }
+
+    public String getJwt() {
+        return jwt;
+    }
+
+    public void setJwt(String jwt) {
+        this.jwt = jwt;
+    }
+
+    public Boolean getIsJwt() {
+        return isJwt;
+    }
+
+    public void setIsJwt(Boolean isJwt) {
+        this.isJwt = isJwt;
+    }
+
+    public SessionIdState getState() {
+        return state;
+    }
+
+    public void setState(SessionIdState state) {
+        this.state = state;
+    }
+
+    public String getSessionState() {
+        return sessionState;
+    }
+
+    public void setSessionState(String sessionState) {
+        this.sessionState = sessionState;
+    }
+
+    public String getOPBrowserState() {
+        return sessionAttributes.get(OP_BROWSER_STATE);
+    }
+
+    public String getId() {
+        return id;
+    }
+
+    public void setId(String p_id) {
+        id = p_id;
+    }
+
+    public Date getLastUsedAt() {
+        return lastUsedAt;
+    }
+
+    public void setLastUsedAt(Date p_lastUsedAt) {
+        lastUsedAt = p_lastUsedAt;
+    }
+
+    public String getUserDn() {
+        return userDn;
+    }
+
+    public void setUserDn(String p_userDn) {
+        userDn = p_userDn != null ? p_userDn : "";
+    }
+
+    public User getUser() {
+        return user;
+    }
+
+    public void setUser(User user) {
+        this.user = user;
+    }
+
+    public Date getAuthenticationTime() {
+        return authenticationTime;
+    }
+
+    public void setAuthenticationTime(Date authenticationTime) {
+        this.authenticationTime = authenticationTime;
+    }
+
+    public Boolean getPermissionGranted() {
+        return permissionGranted;
+    }
+
+    public void setPermissionGranted(Boolean permissionGranted) {
+        this.permissionGranted = permissionGranted;
+    }
+
+    public SessionIdAccessMap getPermissionGrantedMap() {
+        if (permissionGrantedMap == null) {
+            permissionGrantedMap = new SessionIdAccessMap();
+        }
+        return permissionGrantedMap;
+    }
+
+    public void setPermissionGrantedMap(SessionIdAccessMap permissionGrantedMap) {
+        this.permissionGrantedMap = permissionGrantedMap;
+    }
+
+    public Boolean isPermissionGrantedForClient(String clientId) {
+        return permissionGrantedMap != null && permissionGrantedMap.get(clientId);
+    }
+
+    public void addPermission(String clientId, Boolean granted) {
+        addPermission(clientId, granted, null);
+    }
+
+    public void addPermission(String clientId, Boolean granted, Set<String> scopes) {
+        if (permissionGrantedMap == null) {
+            permissionGrantedMap = new SessionIdAccessMap();
+        }
+        maintainClientScopes(isTrue(granted), clientId, scopes);
+        permissionGrantedMap.put(clientId, granted);
+    }
+
+    private void maintainClientScopes(boolean granted, String clientId, Set<String> scopes) {
+        final String key = clientId + "_authz_scopes";
+        if (!granted) {
+            getSessionAttributes().remove(key);
+            return;
+        }
+
+        if (scopes != null && !scopes.isEmpty()) {
+            final String existingScopes = getSessionAttributes().get(key);
+
+            final Set<String> resultScopes = Sets.newHashSet(scopes);
+            resultScopes.addAll(spaceSeparatedToList(existingScopes));
+
+            getSessionAttributes().put(key, implode(resultScopes, " "));
+        }
+    }
+
+    @Nonnull
+    public Map<String, String> getSessionAttributes() {
+        if (sessionAttributes == null) {
+            sessionAttributes = Maps.newHashMap();
+        }
+        return sessionAttributes;
+    }
+
+    public void setSessionAttributes(Map<String, String> sessionAttributes) {
+        this.sessionAttributes = sessionAttributes;
+    }
+
+    public boolean isPersisted() {
+        return persisted;
+    }
+
+    public void setPersisted(boolean persisted) {
+        this.persisted = persisted;
+    }
+
+    public Date getExpirationDate() {
+        return expirationDate;
+    }
+
+    public void setExpirationDate(Date expirationDate) {
+        this.expirationDate = expirationDate;
+    }
+
+    public Boolean isDeletable() {
+        return deletable != null ? deletable : true;
+    }
+
+    public void setDeletable(Boolean deletable) {
+        this.deletable = deletable;
+    }
+
+    public Date getCreationDate() {
+        return creationDate;
+    }
+
+    public void setCreationDate(Date creationDate) {
+        this.creationDate = creationDate;
+    }
+
+    public void setOutsideSid(String outsideSid) {
+        this.outsideSid = outsideSid;
+    }
+
+    public String getOutsideSid() {
+        if (StringUtils.isBlank(outsideSid)) {
+            outsideSid = UUID.randomUUID().toString();
+        }
+        return outsideSid;
+    }
+
+    @Override
+    public boolean equals(Object o) {
+        if (this == o) return true;
+        if (o == null || getClass() != o.getClass()) return false;
+
+        SessionId id1 = (SessionId) o;
+
+        return !(id != null ? !id.equals(id1.id) : id1.id != null);
+    }
+
+    @Override
+    public int hashCode() {
+        return id != null ? id.hashCode() : 0;
+    }
+
+    @Override
+    public String toString() {
+        final StringBuilder sb = new StringBuilder();
+        sb.append("SessionId {");
+        sb.append("dn='").append(dn).append('\'');
+        sb.append(", id='").append(id).append('\'');
+        sb.append(", outsideSid='").append(outsideSid).append('\'');
+        sb.append(", lastUsedAt=").append(lastUsedAt);
+        sb.append(", userDn='").append(userDn).append('\'');
+        sb.append(", authenticationTime=").append(authenticationTime);
+        sb.append(", state=").append(state);
+        sb.append(", expirationDate=").append(expirationDate);
+        sb.append(", sessionState='").append(sessionState).append('\'');
+        sb.append(", permissionGranted=").append(permissionGranted);
+        sb.append(", isJwt=").append(isJwt);
+        sb.append(", jwt=").append(jwt);
+        sb.append(", permissionGrantedMap=").append(permissionGrantedMap);
+        sb.append(", sessionAttributes=").append(sessionAttributes);
+        sb.append(", persisted=").append(persisted);
+        sb.append("}");
+        return sb.toString();
+    }
+}
diff --git a/oxAuth/common/src/main/java/org/gluu/oxauth/model/session/SessionIdAccessMap.java b/oxAuth/common/src/main/java/org/gluu/oxauth/model/session/SessionIdAccessMap.java
new file mode 100644
index 00000000..612e0b50
--- /dev/null
+++ b/oxAuth/common/src/main/java/org/gluu/oxauth/model/session/SessionIdAccessMap.java
@@ -0,0 +1,89 @@
+/*
+ * oxAuth is available under the MIT License (2008). See http://opensource.org/licenses/MIT for full text.
+ *
+ * Copyright (c) 2014, Gluu
+ */
+
+package org.gluu.oxauth.model.session;
+
+import com.google.common.collect.Sets;
+
+import javax.xml.bind.annotation.XmlElement;
+import javax.xml.bind.annotation.XmlRootElement;
+import javax.xml.bind.annotation.XmlTransient;
+import java.io.Serializable;
+import java.util.HashMap;
+import java.util.Map;
+import java.util.Set;
+
+/**
+ * @author Yuriy Zabrovarnyy
+ * @version 0.9, 04/06/2014
+ */
+
+@XmlRootElement
+public class SessionIdAccessMap implements Serializable {
+
+    @XmlElement(name = "map")
+    private Map<String, Boolean> permissionGranted;
+
+    public SessionIdAccessMap() {
+    }
+
+    public SessionIdAccessMap(Map<String, Boolean> permissionGranted) {
+        this.permissionGranted = permissionGranted;
+    }
+
+    public Map<String, Boolean> getPermissionGranted() {
+        ensureInitialized();
+        return permissionGranted;
+    }
+
+    public void setPermissionGranted(Map<String, Boolean> permissionGranted) {
+        this.permissionGranted = permissionGranted;
+    }
+
+    @XmlTransient
+    public Set<String> clientIds() {
+        return Sets.newHashSet(getPermissionGranted().keySet());
+    }
+
+    public Set<String> getClientIds(boolean granted) {
+        Set<String> clientIds = Sets.newHashSet();
+        for (Map.Entry<String, Boolean> entry : getPermissionGranted().entrySet()) {
+            if (entry.getValue().equals(granted) ) {
+                clientIds.add(entry.getKey());
+            }
+        }
+        return clientIds;
+    }
+
+    public Boolean get(String clientId) {
+        final Boolean result = getPermissionGranted().get(clientId);
+        return result != null ? result : false;
+    }
+
+    private void ensureInitialized() {
+        if (permissionGranted == null) {
+            permissionGranted = new HashMap<String, Boolean>();
+        }
+    }
+
+    public void put(String clientId, Boolean granted) {
+        getPermissionGranted().put(clientId, granted);
+    }
+
+    public void putIfAbsent(String clientId) {
+        ensureInitialized();
+        if (permissionGranted.get(clientId) == null) {
+            permissionGranted.put(clientId, false);
+        }
+    }
+
+    @Override
+    public String toString() {
+        return "SessionIdAccessMap{" +
+                "permissionGranted=" + permissionGranted +
+                '}';
+    }
+}
diff --git a/oxAuth/common/src/main/java/org/gluu/oxauth/model/session/SessionIdState.java b/oxAuth/common/src/main/java/org/gluu/oxauth/model/session/SessionIdState.java
new file mode 100644
index 00000000..8c69185c
--- /dev/null
+++ b/oxAuth/common/src/main/java/org/gluu/oxauth/model/session/SessionIdState.java
@@ -0,0 +1,49 @@
+package org.gluu.oxauth.model.session;
+
+import java.util.HashMap;
+import java.util.Map;
+
+import org.gluu.persist.annotation.AttributeEnum;
+
+/**
+ * @author Yuriy Zabrovarnyy
+ * @author Yuriy Movchan
+ * @version 0.9, 09/02/2015
+ */
+
+public enum SessionIdState  implements AttributeEnum {
+
+    UNAUTHENTICATED("unauthenticated"), AUTHENTICATED("authenticated");
+
+    private final String value;
+
+    private static Map<String, SessionIdState> mapByValues = new HashMap<String, SessionIdState>();
+
+	static {
+		for (SessionIdState enumType : values()) {
+			mapByValues.put(enumType.getValue(), enumType);
+		}
+	}
+
+    private SessionIdState(String value) {
+        this.value = value;
+    }
+
+    public String getValue() {
+        return value;
+    }
+
+	public static SessionIdState getByValue(String value) {
+		return mapByValues.get(value);
+	}
+
+	public Enum<? extends AttributeEnum> resolveByValue(String value) {
+		return getByValue(value);
+	}
+
+	@Override
+	public String toString() {
+		return value;
+	}
+
+}
diff --git a/oxAuth/common/src/main/java/org/gluu/oxauth/model/stat/Stat.java b/oxAuth/common/src/main/java/org/gluu/oxauth/model/stat/Stat.java
new file mode 100644
index 00000000..06efb1fa
--- /dev/null
+++ b/oxAuth/common/src/main/java/org/gluu/oxauth/model/stat/Stat.java
@@ -0,0 +1,56 @@
+package org.gluu.oxauth.model.stat;
+
+import com.fasterxml.jackson.annotation.JsonIgnoreProperties;
+import com.fasterxml.jackson.annotation.JsonProperty;
+
+import java.io.Serializable;
+import java.util.HashMap;
+import java.util.Map;
+
+/**
+ * @author Yuriy Zabrovarnyy
+ */
+@JsonIgnoreProperties(ignoreUnknown = true)
+public class Stat implements Serializable {
+
+    @JsonProperty("tokenCountPerGrantType")
+    private Map<String, Map<String, Long>> tokenCountPerGrantType;
+    @JsonProperty("lastUpdatedAt")
+    private long lastUpdatedAt;
+    @JsonProperty("month")
+    private String month;
+
+    public Map<String, Map<String, Long>>  getTokenCountPerGrantType() {
+        if (tokenCountPerGrantType == null) tokenCountPerGrantType = new HashMap<>();
+        return tokenCountPerGrantType;
+    }
+
+    public void setTokenCountPerGrantType(Map<String, Map<String, Long>> tokenCountPerGrantType) {
+        this.tokenCountPerGrantType = tokenCountPerGrantType;
+    }
+
+    public long getLastUpdatedAt() {
+        return lastUpdatedAt;
+    }
+
+    public void setLastUpdatedAt(long lastUpdatedAt) {
+        this.lastUpdatedAt = lastUpdatedAt;
+    }
+
+    public String getMonth() {
+        return month;
+    }
+
+    public void setMonth(String month) {
+        this.month = month;
+    }
+
+    @Override
+    public String toString() {
+        return "Stat{" +
+                "tokenCountPerGrantType=" + tokenCountPerGrantType +
+                ", lastUpdatedAt=" + lastUpdatedAt +
+                ", month='" + month + '\'' +
+                '}';
+    }
+}
diff --git a/oxAuth/common/src/main/java/org/gluu/oxauth/model/stat/StatEntry.java b/oxAuth/common/src/main/java/org/gluu/oxauth/model/stat/StatEntry.java
new file mode 100644
index 00000000..572a71cd
--- /dev/null
+++ b/oxAuth/common/src/main/java/org/gluu/oxauth/model/stat/StatEntry.java
@@ -0,0 +1,60 @@
+package org.gluu.oxauth.model.stat;
+
+import org.gluu.persist.annotation.*;
+
+import java.io.Serializable;
+
+/**
+ * @author Yuriy Zabrovarnyy
+ */
+@DataEntry
+@ObjectClass(value = "jansStatEntry")
+public class StatEntry implements Serializable {
+
+    @DN
+    private String dn;
+
+    @AttributeName(name = "jansId")
+    private String id;
+
+    @AttributeName(name = "dat")
+    private String userHllData;
+
+    @AttributeName(name = "attr")
+    @JsonObject
+    private Stat stat;
+
+    public String getDn() {
+        return dn;
+    }
+
+    public void setDn(String dn) {
+        this.dn = dn;
+    }
+
+    public String getId() {
+        return id;
+    }
+
+    public void setId(String id) {
+        this.id = id;
+    }
+
+    public String getUserHllData() {
+        return userHllData;
+    }
+
+    public void setUserHllData(String userHllData) {
+        this.userHllData = userHllData;
+    }
+
+    public Stat getStat() {
+        if (stat == null)
+            stat = new Stat();
+        return stat;
+    }
+
+    public void setStat(Stat stat) {
+        this.stat = stat;
+    }
+}
diff --git a/oxAuth/common/src/main/java/org/gluu/oxauth/service/common/ApplicationFactory.java b/oxAuth/common/src/main/java/org/gluu/oxauth/service/common/ApplicationFactory.java
new file mode 100644
index 00000000..24b20147
--- /dev/null
+++ b/oxAuth/common/src/main/java/org/gluu/oxauth/service/common/ApplicationFactory.java
@@ -0,0 +1,122 @@
+/*
+ * oxAuth is available under the MIT License (2008). See http://opensource.org/licenses/MIT for full text.
+ *
+ * Copyright (c) 2014, Gluu
+ */
+
+package org.gluu.oxauth.service.common;
+
+import javax.enterprise.context.ApplicationScoped;
+import javax.enterprise.context.RequestScoped;
+import javax.enterprise.inject.Produces;
+import javax.inject.Inject;
+
+import org.apache.commons.lang.StringUtils;
+import org.gluu.model.SmtpConfiguration;
+import org.gluu.oxauth.model.config.StaticConfiguration;
+import org.gluu.persist.PersistenceEntryManagerFactory;
+import org.gluu.persist.model.PersistenceConfiguration;
+import org.gluu.persist.service.PersistanceFactoryService;
+import org.gluu.service.cache.CacheConfiguration;
+import org.gluu.service.cache.InMemoryConfiguration;
+import org.gluu.service.document.store.conf.DocumentStoreConfiguration;
+import org.gluu.service.document.store.conf.LocalDocumentStoreConfiguration;
+import org.oxauth.persistence.model.configuration.GluuConfiguration;
+import org.slf4j.Logger;
+
+/**
+ * Holds factory methods to create services
+ *
+ * @author Yuriy Movchan Date: 05/22/2015
+ */
+@ApplicationScoped
+public class ApplicationFactory {
+
+    @Inject
+    private Logger log;
+
+    @Inject
+    private ConfigurationService configurationService;
+
+	@Inject
+	private PersistanceFactoryService persistanceFactoryService;
+
+	@Inject
+	private PersistenceConfiguration persistenceConfiguration;
+
+    @Inject
+    private StaticConfiguration staticConfiguration;
+
+    public static final String PERSISTENCE_AUTH_CONFIG_NAME = "persistenceAuthConfig";
+
+    public static final String PERSISTENCE_ENTRY_MANAGER_NAME = "persistenceEntryManager";
+    public static final String PERSISTENCE_METRIC_ENTRY_MANAGER_NAME = "persistenceMetricEntryManager";
+
+    public static final String PERSISTENCE_AUTH_ENTRY_MANAGER_NAME = "persistenceAuthEntryManager";
+
+    public static final String PERSISTENCE_METRIC_CONFIG_GROUP_NAME = "metric";
+
+	@Produces @ApplicationScoped
+	public CacheConfiguration getCacheConfiguration() {
+		CacheConfiguration cacheConfiguration = configurationService.getConfiguration().getCacheConfiguration();
+		if (cacheConfiguration == null || cacheConfiguration.getCacheProviderType() == null) {
+			log.error("Failed to read cache configuration from DB. Please check configuration oxCacheConfiguration attribute " +
+					"that must contain cache configuration JSON represented by CacheConfiguration.class. Appliance DN: " + configurationService.getConfiguration().getDn());
+			log.info("Creating fallback IN-MEMORY cache configuration ... ");
+
+			cacheConfiguration = new CacheConfiguration();
+			cacheConfiguration.setInMemoryConfiguration(new InMemoryConfiguration());
+
+			log.info("IN-MEMORY cache configuration is created.");
+		}
+		if (cacheConfiguration.getNativePersistenceConfiguration() != null) {
+			if (!StringUtils.isEmpty(staticConfiguration.getBaseDn().getSessions())) {
+				cacheConfiguration.getNativePersistenceConfiguration().setBaseDn(StringUtils.remove(staticConfiguration.getBaseDn().getSessions(), "ou=sessions,").trim());
+			}
+		}
+		log.info("Cache configuration: " + cacheConfiguration);
+		return cacheConfiguration;
+	}
+
+    @Produces @ApplicationScoped
+   	public DocumentStoreConfiguration getDocumentStoreConfiguration() {
+    	DocumentStoreConfiguration documentStoreConfiguration = configurationService.getConfiguration().getDocumentStoreConfiguration();
+   		if ((documentStoreConfiguration == null) || (documentStoreConfiguration.getDocumentStoreType() == null)) {
+   			log.error("Failed to read document store configuration from DB. Please check configuration oxDocumentStoreConfiguration attribute " +
+   					"that must contain document store configuration JSON represented by DocumentStoreConfiguration.class. Appliance DN: " + configurationService.getConfiguration().getDn());
+   			log.info("Creating fallback LOCAL document store configuration ... ");
+
+   			documentStoreConfiguration = new DocumentStoreConfiguration();
+   			documentStoreConfiguration.setLocalConfiguration(new LocalDocumentStoreConfiguration());
+
+   			log.info("LOCAL document store configuration is created.");
+		}
+
+   		log.info("Document store configuration: " + documentStoreConfiguration);
+   		return documentStoreConfiguration;
+   	}
+
+	@Produces @RequestScoped
+	public SmtpConfiguration getSmtpConfiguration() {
+		GluuConfiguration configuration = configurationService.getConfiguration();
+		SmtpConfiguration smtpConfiguration = configuration.getSmtpConfiguration();
+		
+		if (smtpConfiguration == null) {
+			return new SmtpConfiguration();
+		}
+
+		configurationService.decryptSmtpPassword(smtpConfiguration);
+		configurationService.decryptKeyStorePassword(smtpConfiguration);
+
+		return smtpConfiguration;
+	}
+
+    public PersistenceEntryManagerFactory getPersistenceEntryManagerFactory() {
+        return persistanceFactoryService.getPersistenceEntryManagerFactory(persistenceConfiguration);
+    }
+
+    public PersistenceEntryManagerFactory getPersistenceEntryManagerFactory(Class<? extends PersistenceEntryManagerFactory> persistenceEntryManagerFactoryClass) {
+        return persistanceFactoryService.getPersistenceEntryManagerFactory(persistenceEntryManagerFactoryClass);
+    }
+
+}
\ No newline at end of file
diff --git a/oxAuth/common/src/main/java/org/gluu/oxauth/service/common/ConfigurationService.java b/oxAuth/common/src/main/java/org/gluu/oxauth/service/common/ConfigurationService.java
new file mode 100644
index 00000000..8963bf35
--- /dev/null
+++ b/oxAuth/common/src/main/java/org/gluu/oxauth/service/common/ConfigurationService.java
@@ -0,0 +1,124 @@
+/*
+ * oxAuth is available under the MIT License (2008). See http://opensource.org/licenses/MIT for full text.
+ *
+ * Copyright (c) 2014, Gluu
+ */
+
+package org.gluu.oxauth.service.common;
+
+import javax.enterprise.context.ApplicationScoped;
+import javax.inject.Inject;
+
+import org.gluu.model.SmtpConfiguration;
+import org.gluu.oxauth.model.config.StaticConfiguration;
+import org.gluu.persist.PersistenceEntryManager;
+import org.gluu.util.StringHelper;
+import org.gluu.util.security.StringEncrypter.EncryptionException;
+import org.oxauth.persistence.model.configuration.GluuConfiguration;
+import org.slf4j.Logger;
+
+/**
+ * GluuConfiguration service
+ *
+ * @author Reda Zerrad Date: 08.10.2012
+ * @author Yuriy Movchan Date: 05/13/2020
+ */
+@ApplicationScoped
+public class ConfigurationService {
+
+	@Inject
+	private Logger log;
+
+	@Inject
+	private PersistenceEntryManager persistenceEntryManager;
+
+	@Inject
+	private StaticConfiguration staticConfiguration;
+    
+    @Inject
+    private EncryptionService encryptionService;
+
+    /**
+	 * Add new configuration
+	 * @param configuration Configuration
+	 */
+	public void addConfiguration(GluuConfiguration configuration) {
+		persistenceEntryManager.persist(configuration);
+	}
+
+	/**
+	 * Update configuration entry
+	 * @param configuration GluuConfiguration
+	 */
+	public void updateConfiguration(GluuConfiguration configuration) {
+		persistenceEntryManager.merge(configuration);
+	}
+
+	/**
+	 * Get configuration by inum
+	 * @param inum Configuration Inum
+	 * @return Configuration
+	 * @throws Exception 
+	 */
+	public GluuConfiguration getConfigurationByInum(String inum) {
+		return persistenceEntryManager.find(GluuConfiguration.class, getDnForConfiguration(inum));
+	}
+
+	/**
+	 * Get configuration
+	 * @return Configuration
+	 * @throws Exception 
+	 */
+	public GluuConfiguration getConfiguration() {
+		String configurationDn = staticConfiguration.getBaseDn().getConfiguration();
+		if (StringHelper.isEmpty(configurationDn)) {
+			return null;
+		}
+
+		return persistenceEntryManager.find(GluuConfiguration.class, configurationDn);
+	}
+
+	/**
+	 * Build DN string for configuration
+	 * @param inum Inum
+	 * @return DN string for specified configuration or DN for configurations branch if inum is null
+	 * @throws Exception 
+	 */
+	public String getDnForConfiguration(String inum) {
+		String baseDn = staticConfiguration.getBaseDn().getConfiguration();
+		if (StringHelper.isEmpty(inum)) {
+			return baseDn;
+		}
+
+		return String.format("inum=%s,%s", inum, baseDn);
+	}
+
+	public void decryptSmtpPassword(SmtpConfiguration smtpConfiguration) {
+		if (smtpConfiguration == null) {
+			return;
+		}
+
+		String password = smtpConfiguration.getPassword();
+		if (StringHelper.isNotEmpty(password)) {
+			try {
+				smtpConfiguration.setPasswordDecrypted(encryptionService.decrypt(password));
+			} catch (EncryptionException ex) {
+				log.error("Failed to decrypt SMTP user password", ex);
+			}
+		}
+	}
+
+	public void decryptKeyStorePassword(SmtpConfiguration smtpConfiguration) {
+		if (smtpConfiguration == null) {
+			return;
+		}
+		String keyStorePassword = smtpConfiguration.getKeyStorePassword();
+		if (StringHelper.isNotEmpty(keyStorePassword)) {
+			try {
+				smtpConfiguration.setKeyStorePasswordDecrypted(encryptionService.decrypt(keyStorePassword));
+			} catch (EncryptionException ex) {
+				log.error("Failed to decrypt KeyStore password", ex);
+			}
+		}
+	}	
+}
diff --git a/oxAuth/common/src/main/java/org/gluu/oxauth/service/common/EncryptionService.java b/oxAuth/common/src/main/java/org/gluu/oxauth/service/common/EncryptionService.java
new file mode 100644
index 00000000..62f4a26f
--- /dev/null
+++ b/oxAuth/common/src/main/java/org/gluu/oxauth/service/common/EncryptionService.java
@@ -0,0 +1,82 @@
+/*
+ * oxAuth is available under the MIT License (2008). See http://opensource.org/licenses/MIT for full text.
+ *
+ * Copyright (c) 2014, Gluu
+ */
+
+package org.gluu.oxauth.service.common;
+
+import java.util.Properties;
+
+import javax.enterprise.context.ApplicationScoped;
+import javax.inject.Inject;
+import javax.inject.Named;
+
+import org.gluu.util.StringHelper;
+import org.gluu.util.security.PropertiesDecrypter;
+import org.gluu.util.security.StringEncrypter;
+import org.gluu.util.security.StringEncrypter.EncryptionException;
+import org.slf4j.Logger;
+
+/**
+ * Allows to decrypt passwords
+ *
+ * @author Yuriy Movchan Date: 09/23/2014
+ */
+@ApplicationScoped
+public class EncryptionService {
+
+    @Inject
+    private Logger log;
+
+    @Inject
+    private StringEncrypter stringEncrypter;
+
+    public String decrypt(String encryptedString) throws EncryptionException {
+		if (StringHelper.isEmpty(encryptedString)) {
+			return null;
+		}
+
+		return stringEncrypter.decrypt(encryptedString);
+    }
+
+	public String decrypt(String encryptedValue, boolean returnSource) {
+		if (encryptedValue == null) {
+			return encryptedValue;
+		}
+
+		String resultValue;
+		if (returnSource) {
+			resultValue = encryptedValue;
+		} else {
+			resultValue = null;
+		}
+
+		try {
+			resultValue = stringEncrypter.decrypt(encryptedValue);
+		} catch (Exception ex) {
+			if (!returnSource) {
+				log.error(String.format("Failed to decrypt value: '%s'", encryptedValue, ex));
+			}
+		}
+
+		return resultValue;
+	}
+
+	public String encrypt(String unencryptedString) throws EncryptionException {
+		if (StringHelper.isEmpty(unencryptedString)) {
+			return null;
+		}
+
+		return stringEncrypter.encrypt(unencryptedString);
+	}
+
+	public Properties decryptProperties(Properties connectionProperties) {
+		return PropertiesDecrypter.decryptProperties(stringEncrypter, connectionProperties);
+	}
+
+    public Properties decryptAllProperties(Properties connectionProperties) {
+        return PropertiesDecrypter.decryptAllProperties(stringEncrypter, connectionProperties);
+    }
+
+}
\ No newline at end of file
diff --git a/oxAuth/common/src/main/java/org/gluu/oxauth/service/common/InumService.java b/oxAuth/common/src/main/java/org/gluu/oxauth/service/common/InumService.java
new file mode 100644
index 00000000..37f202a7
--- /dev/null
+++ b/oxAuth/common/src/main/java/org/gluu/oxauth/service/common/InumService.java
@@ -0,0 +1,49 @@
+/*
+ * oxAuth is available under the MIT License (2008). See http://opensource.org/licenses/MIT for full text.
+ *
+ * Copyright (c) 2014, Gluu
+ */
+
+package org.gluu.oxauth.service.common;
+
+import java.util.UUID;
+
+import javax.enterprise.context.ApplicationScoped;
+import javax.inject.Inject;
+
+import org.gluu.oxauth.model.util.Pair;
+import org.slf4j.Logger;
+
+/**
+ * Provides operations with clients.
+ *
+ * @author Javier Rojas Date: 01.12.2012
+ */
+@ApplicationScoped
+public class InumService {
+
+    @Inject
+    private Logger log;
+
+    public String generateClientInum() {
+        return UUID.randomUUID().toString();
+    }
+
+    public String generatePeopleInum() {
+        return UUID.randomUUID().toString();
+    }
+
+    public String generateInum() {
+        return generateClientInum();
+    }
+
+    public Pair<String, String> generateNewDN(String baseDn) {
+        final String inum = generateInum();
+        final StringBuilder dnSb = new StringBuilder("inum=");
+        dnSb.append(inum).append(",").append(baseDn);
+        final String dn = dnSb.toString();
+        log.trace("Generated dn: {}", dn);
+        return new Pair<>(inum, dn);
+    }
+
+}
\ No newline at end of file
diff --git a/oxAuth/common/src/main/java/org/gluu/oxauth/service/common/UserService.java b/oxAuth/common/src/main/java/org/gluu/oxauth/service/common/UserService.java
new file mode 100644
index 00000000..9311db66
--- /dev/null
+++ b/oxAuth/common/src/main/java/org/gluu/oxauth/service/common/UserService.java
@@ -0,0 +1,547 @@
+/*
+ * oxAuth is available under the MIT License (2008). See http://opensource.org/licenses/MIT for full text.
+ *
+ * Copyright (c) 2014, Gluu
+ */
+
+package org.gluu.oxauth.service.common;
+
+import java.util.ArrayList;
+import java.util.Arrays;
+import java.util.Date;
+import java.util.HashSet;
+import java.util.List;
+import java.util.Set;
+
+import javax.annotation.Nullable;
+import javax.inject.Inject;
+
+import org.gluu.model.GluuStatus;
+import org.gluu.oxauth.model.common.User;
+import org.gluu.oxauth.model.util.Util;
+import org.gluu.persist.PersistenceEntryManager;
+import org.gluu.persist.model.base.CustomObjectAttribute;
+import org.gluu.search.filter.Filter;
+import org.gluu.service.DataSourceTypeService;
+import org.gluu.util.ArrayHelper;
+import org.gluu.util.StringHelper;
+import org.slf4j.Logger;
+
+/**
+ * Provides operations with users.
+ *
+ * @author Javier Rojas Blum
+ * @author Yuriy Movchan
+ * @version @version August 20, 2019
+ */
+public abstract class UserService {
+
+	public static final String[] USER_OBJECT_CLASSES = new String[] { "gluuPerson" };
+
+    @Inject
+    private Logger log;
+
+    @Inject
+    protected PersistenceEntryManager persistenceEntryManager;
+    
+    @Inject
+    protected DataSourceTypeService dataSourceTypeService;
+
+    @Inject
+    private InumService inumService;
+
+    /**
+     * returns User by Dn
+     *
+     * @return User
+     */
+    @Nullable
+    public User getUserByDn(String dn, String... returnAttributes) {
+        if (Util.isNullOrEmpty(dn)) {
+            return null;
+        }
+        return persistenceEntryManager.find(dn, User.class, returnAttributes);
+    }
+
+	public User getUserByInum(String inum, String... returnAttributes) {
+		if (StringHelper.isEmpty(inum)) {
+			return null;
+		}
+		
+		String userDn = getDnForUser(inum);
+		User user = getUserByDn(userDn, returnAttributes);
+		if (user == null) {
+			return null;
+		}
+
+		return user;
+	}
+
+	public User getUser(String userId, String... returnAttributes) {
+		log.debug("Getting user information from LDAP: userId = {}", userId);
+
+		if (StringHelper.isEmpty(userId)) {
+			return null;
+		}
+
+		String peopleBaseDn = getPeopleBaseDn();
+		Filter userUidFilter;
+		if (dataSourceTypeService.isSpanner(peopleBaseDn)) {
+			userUidFilter = Filter.createEqualityFilter("uid", StringHelper.toLowerCase(userId));
+		} else {
+			userUidFilter = Filter.createEqualityFilter(Filter.createLowercaseFilter("uid"), StringHelper.toLowerCase(userId));
+		}
+
+		List<User> entries = persistenceEntryManager.findEntries(peopleBaseDn, User.class, userUidFilter, returnAttributes);
+		log.debug("Found {} entries for user id = {}", entries.size(), userId);
+
+		if (entries.size() > 0) {
+			return entries.get(0);
+		} else {
+			return null;
+		}
+	}
+
+	public String getUserInum(User user) {
+		if (user == null) {
+			return null;
+		}
+		
+		String inum = user.getAttribute("inum");
+
+		return inum;
+	}
+
+	public String getUserInum(String userId) {
+		User user = getUser(userId, "inum");
+
+		return getUserInum(user);
+	}
+
+    public User updateUser(User user) {
+        user.setUpdatedAt(new Date());
+		persistenceEntryManager.merge(user);
+
+		return getUserByDn(user.getDn());
+	}
+
+    public User addDefaultUser(String uid) {
+        String peopleBaseDN = getPeopleBaseDn();
+
+        String inum = inumService.generatePeopleInum();
+
+    	User user = new User();
+        user.setDn("inum=" + inum + "," + peopleBaseDN);
+    	user.setCustomAttributes(Arrays.asList(
+    			new CustomObjectAttribute("inum", inum),
+    			new CustomObjectAttribute("gluuStatus", GluuStatus.ACTIVE.getValue()),
+				new CustomObjectAttribute("displayName", "User " + uid + " added via oxAuth custom plugin")));
+    	user.setUserId(uid);
+
+    	List<String> personCustomObjectClassList = getPersonCustomObjectClassList();
+    	if ((personCustomObjectClassList != null) && !personCustomObjectClassList.isEmpty()) {
+    		user.setCustomObjectClasses(personCustomObjectClassList.toArray(new String[personCustomObjectClassList.size()]));
+    	}
+
+    	user.setCreatedAt(new Date());
+		persistenceEntryManager.persist(user);
+		
+		return getUser(uid);
+	}
+
+    public User addUser(User user, boolean active) {
+        try {
+            String peopleBaseDN = getPeopleBaseDn();
+
+            String inum = inumService.generatePeopleInum();
+
+            user.setDn("inum=" + inum + "," + peopleBaseDN);
+            user.setAttribute("inum", inum, false);
+
+            GluuStatus status = active ? GluuStatus.ACTIVE : GluuStatus.REGISTER;
+            user.setAttribute("gluuStatus", status.getValue(), false);
+
+            List<String> personCustomObjectClassList = getPersonCustomObjectClassList();
+            if ((personCustomObjectClassList != null) && !personCustomObjectClassList.isEmpty()) {
+                Set<String> allObjectClasses = new HashSet<>();
+                allObjectClasses.addAll(personCustomObjectClassList);
+
+                String currentObjectClasses[] = user.getCustomObjectClasses();
+                if (ArrayHelper.isNotEmpty(currentObjectClasses)) {
+                    allObjectClasses.addAll(Arrays.asList(currentObjectClasses));
+                }
+
+                user.setCustomObjectClasses(allObjectClasses.toArray(new String[allObjectClasses.size()]));
+            }
+
+            user.setCreatedAt(new Date());
+            persistenceEntryManager.persist(user);
+
+            return getUserByDn(user.getDn());
+        } catch (Exception e) {
+            if (log.isErrorEnabled())
+                log.error("Failed to add user entry. " + e.getMessage(), e);
+            throw e;
+        }
+
+	}
+
+    public User getUserByAttribute(String attributeName, Object attributeValue) {
+        return getUserByAttribute(attributeName, attributeValue, null);
+    }
+
+    public User getUserByAttribute(String attributeName, Object attributeValue, Boolean multiValued) {
+        List<User> entries = getUsersByAttribute(attributeName, attributeValue, multiValued, 1);
+        if (entries.size() > 0) {
+            return entries.get(0);
+        } else {
+            return null;
+        }
+    }
+
+	public User getUniqueUserByAttributes(List<String> attributeNames, String attributeValue) {
+		log.debug("Getting user information from LDAP: attributeNames = '{}', attributeValue = '{}'", attributeNames, attributeValue);
+
+		User user = null;
+
+		if (attributeNames != null) {
+			for (String attributeName : attributeNames) {
+				User searchUser = new User();
+				searchUser.setDn(getPeopleBaseDn());
+
+				List<CustomObjectAttribute> customAttributes =  new ArrayList<>();
+				customAttributes.add(new CustomObjectAttribute(attributeName, attributeValue));
+
+				searchUser.setCustomAttributes(customAttributes);
+
+				try {
+					List<User> entries = persistenceEntryManager.findEntries(searchUser);
+					log.debug("Found '{}' entries", entries.size());
+
+					if (entries.size() == 0) {
+						continue;
+					} else if (entries.size() == 1) {
+						user = entries.get(0);
+						break;
+					} else if (entries.size() > 0) {
+						break;
+					}
+				} catch (Exception e) {
+					log.debug(e.getMessage());
+				}
+			}
+		}
+
+		return user;
+	}
+
+	public List<User> getUsersByAttribute(String attributeName, Object attributeValue, Boolean multiValued, int limit) {
+		log.debug("Getting user information from LDAP: attributeName = '{}', attributeValue = '{}'", attributeName, attributeValue);
+
+		if (StringHelper.isEmpty(attributeName) || (attributeValue == null)) {
+			return null;
+		}
+
+		Filter filter = Filter.createEqualityFilter(attributeName, attributeValue);
+		if (multiValued != null) {
+			filter.multiValued(multiValued);
+		}
+
+		List<User> entries = persistenceEntryManager.findEntries(getPeopleBaseDn(), User.class, filter, limit);
+		log.debug("Found '{}' entries", entries.size());
+
+		return entries;
+	}
+
+    public User getUserByAttributes(Object attributeValue, String[] attributeNames, String... returnAttributes) {
+		return getUserByAttributes(attributeValue, attributeNames, null, returnAttributes);
+	}
+
+	public User getUserByAttributes(Object attributeValue, String[] attributeNames, Boolean multiValued, String... returnAttributes) {
+		if (ArrayHelper.isEmpty(attributeNames)) {
+			return null;
+		}
+
+		log.debug("Getting user information from DB: {} = {}", ArrayHelper.toString(attributeNames), attributeValue);
+		
+		String peopleBaseDn = getPeopleBaseDn();
+
+		List<Filter> filters = new ArrayList<Filter>(); 
+		for (String attributeName : attributeNames) {
+			Filter filter;
+			if (dataSourceTypeService.isSpanner(peopleBaseDn)) {
+				filter = Filter.createEqualityFilter(attributeName, attributeValue);
+			} else {
+				filter = Filter.createEqualityFilter(Filter.createLowercaseFilter(attributeName), attributeValue);
+			}
+	        if (multiValued != null) {
+	        	filter.multiValued(multiValued);
+	        }
+			filters.add(filter);
+		}
+
+		Filter searchFiler;
+		if (filters.size() == 1) {
+			searchFiler = filters.get(0);
+		} else {
+			searchFiler = Filter.createORFilter(filters);
+		}
+
+		List<User> entries = persistenceEntryManager.findEntries(getPeopleBaseDn(), User.class, searchFiler, returnAttributes);
+		log.debug("Found {} entries for user {} = {}", entries.size(), ArrayHelper.toString(attributeNames), attributeValue);
+
+		if (entries.size() > 0) {
+			return entries.get(0);
+		} else {
+			return null;
+		}
+	}
+
+    public List<User> getUsersBySample(User user, int limit) {
+        log.debug("Getting user by sample");
+
+        List<User> entries = persistenceEntryManager.findEntries(user, limit);
+        log.debug("Found '{}' entries", entries.size());
+
+        return entries;
+    }
+
+    public User addUserAttributeByUserInum(String userInum, String attributeName, Object attributeValue) {
+    	log.debug("Add user attribute by user inum  to LDAP: attributeName = '{}', attributeValue = '{}'", attributeName, attributeValue);
+
+        User user = getUserByInum(userInum);
+        if (user == null) {
+        	return null;
+        }
+  
+        boolean result = addUserAttribute(user, attributeName, attributeValue);
+        if (!result) {
+        	// We uses this result in Person Authentication Scripts
+        	addUserAttribute(user, attributeName, attributeValue);
+        }
+
+        return updateUser(user);
+    	
+    }
+
+    public User addUserAttribute(String userId, String attributeName, Object attributeValue) {
+    	return addUserAttribute(userId, attributeName, attributeValue, null);
+    }
+    
+    public User addUserAttribute(String userId, String attributeName, Object attributeValue, Boolean multiValued) {
+        log.debug("Add user attribute to LDAP: attributeName = '{}', attributeValue = '{}'", attributeName, attributeValue);
+
+        User user = getUser(userId);
+        if (user == null) {
+        	// We uses this result in Person Authentication Scripts
+        	return null;
+        }
+        
+        boolean result = addUserAttribute(user, attributeName, attributeValue, multiValued);
+        if (!result) {
+        	// We uses this result in Person Authentication Scripts
+        	return null;
+        }
+
+        return updateUser(user);
+    }
+
+    public boolean addUserAttribute(User user, String attributeName, Object attributeValue) {
+    	return addUserAttribute(user, attributeName, attributeValue, null);
+    }
+
+    public boolean addUserAttribute(User user, String attributeName, Object attributeValue, Boolean multiValued) {
+    	CustomObjectAttribute customAttribute = getCustomAttribute(user, attributeName);
+        if (customAttribute == null) {
+        	customAttribute = new CustomObjectAttribute(attributeName, attributeValue);
+            user.getCustomAttributes().add(customAttribute);
+        } else {
+        	List<Object> currentAttributeValues = customAttribute.getValues();
+
+        	List<Object> newAttributeValues = new ArrayList<Object>();
+        	newAttributeValues.addAll(currentAttributeValues);
+
+        	if (newAttributeValues.contains(attributeValue)) {
+        		return false;
+        	} else {
+        		newAttributeValues.add(attributeValue);
+        	}
+        	
+        	customAttribute.setValues(newAttributeValues);
+        }
+
+        if (multiValued != null) {
+        	customAttribute.setMultiValued(multiValued);
+        }
+        
+        return true;
+	}
+
+    public User removeUserAttribute(String userId, String attributeName, String attributeValue) {
+        log.debug("Remove user attribute from LDAP: attributeName = '{}', attributeValue = '{}'", attributeName, attributeValue);
+
+        User user = getUser(userId);
+        if (user == null) {
+        	return null;
+        }
+        
+        CustomObjectAttribute customAttribute = getCustomAttribute(user, attributeName);
+        if (customAttribute != null) {
+        	List<Object> currentAttributeValues = customAttribute.getValues();
+        	if (currentAttributeValues.contains(attributeValue)) {
+
+        		List<Object> newAttributeValues = new ArrayList<Object>();
+            	newAttributeValues.addAll(currentAttributeValues);
+        		if (currentAttributeValues.contains(attributeValue)) {
+            		newAttributeValues.remove(attributeValue);
+            	} else {
+            		return null;
+            	}
+
+        		customAttribute.setValues(newAttributeValues);
+        	}
+        }
+
+		return updateUser(user);
+    }
+
+    public User replaceUserAttribute(String userId, String attributeName, String oldAttributeValue, String newAttributeValue) {
+    	return replaceUserAttribute(userId, attributeName, oldAttributeValue, newAttributeValue, null);
+    }
+
+    public User replaceUserAttribute(String userId, String attributeName, String oldAttributeValue, String newAttributeValue, Boolean multiValued) {
+        log.debug("Replace user attribute in LDAP: attributeName = '{}', oldAttributeValue = '{}', newAttributeValue = '{}'", attributeName, oldAttributeValue, newAttributeValue);
+
+        User user = getUser(userId);
+        if (user == null) {
+        	return null;
+        }
+        
+        CustomObjectAttribute customAttribute = getCustomAttribute(user, attributeName);
+        if (customAttribute != null) {
+        	List<Object> currentAttributeValues = customAttribute.getValues();
+    		List<Object> newAttributeValues = new ArrayList<Object>();
+        	newAttributeValues.addAll(currentAttributeValues);
+
+    		if (currentAttributeValues.contains(oldAttributeValue)) {
+        		newAttributeValues.remove(oldAttributeValue);
+        	}
+
+        	if (!newAttributeValues.contains(newAttributeValue)) {
+        		newAttributeValues.add(newAttributeValue);
+        	}
+
+        	customAttribute.setValues(newAttributeValues);
+        }
+        
+        if (multiValued != null) {
+        	customAttribute.setMultiValued(multiValued);
+        }
+
+		return updateUser(user);
+    }
+
+	public CustomObjectAttribute getCustomAttribute(User user, String attributeName) {
+		for (CustomObjectAttribute customAttribute : user.getCustomAttributes()) {
+			if (StringHelper.equalsIgnoreCase(attributeName, customAttribute.getName())) {
+				return customAttribute;
+			}
+		}
+
+		return null;
+	}
+
+	public void setCustomAttribute(User user, String attributeName, String attributeValue) {
+		CustomObjectAttribute customAttribute = getCustomAttribute(user, attributeName);
+		
+		if (customAttribute == null) {
+			customAttribute = new CustomObjectAttribute(attributeName);
+			user.getCustomAttributes().add(customAttribute);
+		}
+		
+		customAttribute.setValue(attributeValue);
+	}
+//
+//    // this method must be called only if app mode = MEMORY, in ldap case it's anyway persisted in ldap.
+//    public boolean saveLongLivedToken(String userId, PersistentJwt longLivedToken) {
+//        log.debug("Saving long-lived access token: userId = {}", userId);
+//        boolean succeed = false;
+//
+//        User user = getUser(userId);
+//        if (user != null) {
+//            int nTokens = 0;
+//            if (user.getOxAuthPersistentJwt() != null) {
+//                nTokens = user.getOxAuthPersistentJwt().length;
+//            }
+//            nTokens++;
+//            String[] persistentJwts = new String[nTokens];
+//            if (user.getOxAuthPersistentJwt() != null) {
+//                for (int i = 0; i < user.getOxAuthPersistentJwt().length; i++) {
+//                    persistentJwts[i] = user.getOxAuthPersistentJwt()[i];
+//                }
+//            }
+//            persistentJwts[nTokens - 1] = longLivedToken.toString();
+//
+//            user.setOxAuthPersistentJwt(persistentJwts);
+//            ldapEntryManager.merge(user);
+//            succeed = true;
+//        }
+//
+//        return succeed;
+//    }
+
+    public List<User> getUsersWithPersistentJwts() {
+        String baseDN = getPeopleBaseDn();
+        Filter filter = Filter.createPresenceFilter("oxAuthPersistentJWT");
+
+        return persistenceEntryManager.findEntries(baseDN, User.class, filter);
+    }
+
+    public String getDnForUser(String inum) {
+		String peopleDn = getPeopleBaseDn();
+		if (StringHelper.isEmpty(inum)) {
+			return peopleDn;
+		}
+
+		return String.format("inum=%s,%s", inum, peopleDn);
+	}
+
+	public String getUserInumByDn(String dn) {
+		if (StringHelper.isEmpty(dn)) {
+			return null;
+		}
+
+		String peopleDn = getPeopleBaseDn();
+		if (!dn.toLowerCase().endsWith(peopleDn.toLowerCase())) {
+			return null;
+		}
+		String firstDnPart = dn.substring(0, dn.length() - peopleDn.length());
+		
+		String[] dnParts = firstDnPart.split(",");
+		if (dnParts.length == 0) {
+			return null;
+		}
+		
+		String userInumPart = dnParts[dnParts.length - 1];
+		String[] userInumParts = userInumPart.split("=");
+		if ((userInumParts.length == 2) && StringHelper.equalsIgnoreCase(userInumParts[0], "inum")) {
+			return userInumParts[1];
+		}
+
+		return null;
+	}
+
+	public String encodeGeneralizedTime(Date date) {
+		String baseDn = getDnForUser(null);
+		return persistenceEntryManager.encodeTime(baseDn, date);
+	}
+
+	public Date decodeGeneralizedTime(String date) {
+		String baseDn = getDnForUser(null);
+		return persistenceEntryManager.decodeTime(baseDn, date);
+	}
+
+	protected abstract List<String> getPersonCustomObjectClassList();
+
+	protected abstract String getPeopleBaseDn();
+}
diff --git a/oxAuth/common/src/main/java/org/gluu/oxauth/service/common/api/IdGenerator.java b/oxAuth/common/src/main/java/org/gluu/oxauth/service/common/api/IdGenerator.java
new file mode 100644
index 00000000..e63e9e5c
--- /dev/null
+++ b/oxAuth/common/src/main/java/org/gluu/oxauth/service/common/api/IdGenerator.java
@@ -0,0 +1,31 @@
+/*
+ * oxAuth is available under the MIT License (2008). See http://opensource.org/licenses/MIT for full text.
+ *
+ * Copyright (c) 2014, Gluu
+ */
+
+package org.gluu.oxauth.service.common.api;
+
+import org.gluu.oxauth.model.common.IdType;
+
+/**
+ * Id generator interface. Base interface for id generation. It must be implemented by
+ * python class in case of custom id generation.
+ *
+ * @author Yuriy Zabrovarnyy
+ * @version 0.9, 24/06/2013
+ */
+
+public interface IdGenerator {
+
+    /**
+     * Generates id.
+     *
+     * @param p_idType   id type : use to specify entity type, i.e. person, client
+     * @param p_idPrefix id prefix : If you want to prefix all ids, use this, otherwise pass ""
+     * @return generated id as string
+     */
+    public String generateId(String p_idType, String p_idPrefix);
+
+    public String generateId(IdType p_idType, String p_idPrefix);
+}
diff --git a/oxAuth/common/src/main/java/org/gluu/oxauth/service/common/fido2/RegistrationPersistenceService.java b/oxAuth/common/src/main/java/org/gluu/oxauth/service/common/fido2/RegistrationPersistenceService.java
new file mode 100644
index 00000000..396a9358
--- /dev/null
+++ b/oxAuth/common/src/main/java/org/gluu/oxauth/service/common/fido2/RegistrationPersistenceService.java
@@ -0,0 +1,206 @@
+package org.gluu.oxauth.service.common.fido2;
+
+import java.util.Collections;
+import java.util.Date;
+import java.util.GregorianCalendar;
+import java.util.List;
+import java.util.TimeZone;
+import java.util.UUID;
+
+import javax.inject.Inject;
+
+import org.gluu.oxauth.model.common.User;
+import org.gluu.oxauth.model.config.StaticConfiguration;
+import org.gluu.oxauth.service.common.UserService;
+import org.gluu.persist.PersistenceEntryManager;
+import org.gluu.persist.model.base.SimpleBranch;
+import org.gluu.persist.model.fido2.Fido2RegistrationData;
+import org.gluu.persist.model.fido2.Fido2RegistrationEntry;
+import org.gluu.persist.model.fido2.Fido2RegistrationStatus;
+import org.gluu.search.filter.Filter;
+import org.gluu.util.StringHelper;
+import org.slf4j.Logger;
+
+/**
+ * Abstract class for registrations that are persisted under Person Entry
+ * @author madhumitas
+ *
+ */
+
+public abstract class RegistrationPersistenceService {
+
+	@Inject
+	protected Logger log;
+
+	@Inject
+	protected PersistenceEntryManager persistenceEntryManager;
+
+	@Inject
+	protected UserService userService;
+
+	@Inject
+	protected StaticConfiguration staticConfiguration;
+	
+    public void save(Fido2RegistrationEntry registrationEntry) {
+        prepareBranch(registrationEntry.getUserInum());
+
+        persistenceEntryManager.persist(registrationEntry);
+    }
+
+    public void update(Fido2RegistrationEntry registrationEntry) {
+        prepareBranch(registrationEntry.getUserInum());
+
+        Date now = new GregorianCalendar(TimeZone.getTimeZone("UTC")).getTime();
+
+        Fido2RegistrationData registrationData = registrationEntry.getRegistrationData();
+        registrationData.setUpdatedDate(now);
+        registrationData.setUpdatedBy(registrationData.getUsername());
+
+        registrationEntry.setRegistrationStatus(registrationData.getStatus());
+
+        persistenceEntryManager.merge(registrationEntry);
+    }
+
+    public void addBranch(final String baseDn) {
+        SimpleBranch branch = new SimpleBranch();
+        branch.setOrganizationalUnitName("fido2_register");
+        branch.setDn(baseDn);
+
+        persistenceEntryManager.persist(branch);
+    }
+
+    public boolean containsBranch(final String baseDn) {
+        return persistenceEntryManager.contains(baseDn, SimpleBranch.class);
+    }
+
+    public String prepareBranch(final String userInum) {
+        String baseDn = getBaseDnForFido2RegistrationEntries(userInum);
+        if (!persistenceEntryManager.hasBranchesSupport(baseDn)) {
+        	return baseDn;
+        }
+
+        // Create Fido2 base branch for registration entries if needed
+        if (!containsBranch(baseDn)) {
+            addBranch(baseDn);
+        }
+        
+        return baseDn;
+    }
+
+    public Fido2RegistrationEntry findRegisteredUserDevice(String userInum, String deviceId, String... returnAttributes) {
+        String baseDn = getBaseDnForFido2RegistrationEntries(userInum);
+        if (persistenceEntryManager.hasBranchesSupport(baseDn)) {
+        	if (!containsBranch(baseDn)) {
+                return null;
+        	}
+        }
+
+    	String deviceDn = getDnForRegistrationEntry(userInum, deviceId);
+
+        return persistenceEntryManager.find(deviceDn, Fido2RegistrationEntry.class, returnAttributes);
+    }
+
+    public List<Fido2RegistrationEntry> findByRpRegisteredUserDevices(String userName, String rpId, String ... returnAttributes) {
+		String userInum = userService.getUserInum(userName);
+		if (userInum == null) {
+			return Collections.emptyList();
+		}
+
+		String baseDn = getBaseDnForFido2RegistrationEntries(userInum);
+        if (persistenceEntryManager.hasBranchesSupport(baseDn)) {
+        	if (!containsBranch(baseDn)) {
+                return Collections.emptyList();
+        	}
+        }
+
+        Filter userInumFilter = Filter.createEqualityFilter("personInum", userInum);
+        Filter registeredFilter = Filter.createEqualityFilter("jansStatus", Fido2RegistrationStatus.registered.getValue());
+        Filter filter = null;
+        if (StringHelper.isNotEmpty(rpId)) {
+        	Filter appIdFilter = Filter.createEqualityFilter("oxApplication", rpId);
+        	filter = Filter.createANDFilter(userInumFilter, registeredFilter, appIdFilter);
+        }
+        else
+        {
+        	filter = Filter.createANDFilter(userInumFilter, registeredFilter);
+        }
+        List<Fido2RegistrationEntry> fido2RegistrationnEntries = persistenceEntryManager.findEntries(baseDn, Fido2RegistrationEntry.class, filter, returnAttributes);
+
+        return fido2RegistrationnEntries;
+    }
+    
+    
+    public boolean attachDeviceRegistrationToUser(String userInum, String deviceDn) {
+		return attachDeviceRegistrationToUser(userInum, deviceDn, null);
+    }
+
+    public boolean attachDeviceRegistrationToUser(String userInum, String deviceDn, String deviceName) {
+		Fido2RegistrationEntry registrationEntry = persistenceEntryManager.find(Fido2RegistrationEntry.class, deviceDn);
+		if (registrationEntry == null) {
+			return false;
+		}
+
+		User user = userService.getUserByInum(userInum, "uid");
+		if (user == null) {
+			return false;
+		}
+
+		persistenceEntryManager.remove(deviceDn, Fido2RegistrationEntry.class);
+
+        final String id = UUID.randomUUID().toString();
+
+        String userAttestationDn = getDnForRegistrationEntry(userInum, id);
+        registrationEntry.setId(id);
+        registrationEntry.setDn(userAttestationDn);
+        registrationEntry.setUserInum(userInum);
+        registrationEntry.setDisplayName(deviceName);
+
+		Fido2RegistrationData registrationData = registrationEntry.getRegistrationData();
+		registrationData.setUsername(user.getUserId());
+		registrationEntry.clearExpiration();
+
+		save(registrationEntry);
+
+		return true;
+    }
+
+    public Fido2RegistrationEntry findOneStepUserDeviceRegistration(String deviceDn) {
+		Fido2RegistrationEntry registrationEntry = persistenceEntryManager.find(Fido2RegistrationEntry.class, deviceDn);
+		
+		return registrationEntry;
+    }
+
+    public String getDnForRegistrationEntry(String userInum, String jsId) {
+        // Build DN string for Fido2 registration entry
+        String baseDn = getBaseDnForFido2RegistrationEntries(userInum);
+        if (StringHelper.isEmpty(jsId)) {
+            return baseDn;
+        }
+        return String.format("oxId=%s,%s", jsId, baseDn);
+    }
+
+    public String getBaseDnForFido2RegistrationEntries(String userInum) {
+        final String userBaseDn = getDnForUser(userInum); // "ou=fido2_register,inum=1234,ou=people,o=jans"
+        if (StringHelper.isEmpty(userInum)) {
+            return userBaseDn;
+        }
+
+        return String.format("ou=fido2_register,%s", userBaseDn);
+    }
+
+    public String getDnForUser(String userInum) {
+        String peopleDn = getBasedPeopleDn();
+        if (StringHelper.isEmpty(userInum)) {
+            return peopleDn;
+        }
+
+        return String.format("inum=%s,%s", userInum, peopleDn);
+    }
+
+    public String getBasedPeopleDn() {
+    	return staticConfiguration.getBaseDn().getPeople();
+    }
+    
+	public abstract String getUserInum(String userName);
+
+}
diff --git a/oxAuth/common/src/main/java/org/gluu/oxauth/util/RedirectUri.java b/oxAuth/common/src/main/java/org/gluu/oxauth/util/RedirectUri.java
new file mode 100644
index 00000000..400d6a20
--- /dev/null
+++ b/oxAuth/common/src/main/java/org/gluu/oxauth/util/RedirectUri.java
@@ -0,0 +1,167 @@
+/*
+ * oxAuth is available under the MIT License (2008). See http://opensource.org/licenses/MIT for full text.
+ *
+ * Copyright (c) 2014, Gluu
+ */
+
+package org.gluu.oxauth.util;
+
+import org.apache.commons.lang.StringEscapeUtils;
+import org.apache.commons.lang.StringUtils;
+import org.gluu.oxauth.model.common.ResponseMode;
+import org.gluu.oxauth.model.common.ResponseType;
+import org.gluu.oxauth.model.util.Util;
+
+import java.io.UnsupportedEncodingException;
+import java.net.URLDecoder;
+import java.net.URLEncoder;
+import java.util.HashMap;
+import java.util.List;
+import java.util.Map;
+import java.util.StringTokenizer;
+
+/**
+ * @author Javier Rojas Blum
+ * @version October 7, 2019
+ */
+public class RedirectUri {
+
+    private String baseRedirectUri;
+    private List<ResponseType> responseTypes;
+    private ResponseMode responseMode;
+    private Map<String, String> responseParameters;
+
+    public RedirectUri(String baseRedirectUri) {
+        this.baseRedirectUri = baseRedirectUri;
+        this.responseMode = ResponseMode.QUERY;
+
+        responseParameters = new HashMap<String, String>();
+    }
+
+    public RedirectUri(String baseRedirectUri, List<ResponseType> responseTypes, ResponseMode responseMode) {
+        this(baseRedirectUri);
+        this.responseTypes = responseTypes;
+        this.responseMode = responseMode;
+    }
+
+    public String getBaseRedirectUri() {
+        return baseRedirectUri;
+    }
+
+    public void setBaseRedirectUri(String baseRedirectUri) {
+        this.baseRedirectUri = baseRedirectUri;
+    }
+
+    public ResponseMode getResponseMode() {
+        return responseMode;
+    }
+
+    public void setResponseMode(ResponseMode responseMode) {
+        this.responseMode = responseMode;
+    }
+
+    public void addResponseParameter(String key, String value) {
+        if (StringUtils.isNotBlank(key)) {
+            responseParameters.put(key, value);
+        }
+    }
+
+    public void parseQueryString(String queryString) {
+        if (queryString != null) {
+            StringTokenizer st = new StringTokenizer(queryString, "&", false);
+            while (st.hasMoreElements()) {
+                String nameValueToken = st.nextElement().toString();
+
+                StringTokenizer stParamValue = new StringTokenizer(nameValueToken, "=", false);
+
+                if (stParamValue.countTokens() == 1) {
+                    String paramName = stParamValue.nextElement().toString();
+                    responseParameters.put(paramName, null);
+                } else if (stParamValue.countTokens() == 2) {
+                    try {
+                        String paramName = stParamValue.nextElement().toString();
+                        String paramValue = URLDecoder.decode(stParamValue.nextElement().toString(), Util.UTF8_STRING_ENCODING);
+                        responseParameters.put(paramName, paramValue);
+                    } catch (UnsupportedEncodingException e) {
+                        e.printStackTrace();
+                    }
+                }
+            }
+        }
+    }
+
+    public String getQueryString() {
+        StringBuilder sb = new StringBuilder();
+        for (Map.Entry<String, String> entry : responseParameters.entrySet()) {
+            try {
+                if (StringUtils.isNotBlank(entry.getKey()) && StringUtils.isNotBlank(entry.getValue())) {
+                    if (sb.length() > 0) {
+                        sb.append('&');
+                    }
+                    sb.append(URLEncoder.encode(entry.getKey(), Util.UTF8_STRING_ENCODING));
+                    sb.append('=').append(URLEncoder.encode(entry.getValue(), Util.UTF8_STRING_ENCODING));
+                }
+            } catch (UnsupportedEncodingException e) {
+                e.printStackTrace();
+            }
+        }
+
+        return sb.toString();
+    }
+
+    private void appendQuerySymbol(StringBuilder sb) {
+        if (!sb.toString().contains("?")) {
+            sb.append("?");
+        } else {
+            sb.append("&");
+        }
+    }
+
+    private void appendFragmentSymbol(StringBuilder sb) {
+        if (!sb.toString().contains("#")) {
+            sb.append("#");
+        } else {
+            sb.append("&");
+        }
+    }
+
+    @Override
+    public String toString() {
+        StringBuilder sb = new StringBuilder(baseRedirectUri);
+
+        if (responseParameters.size() > 0) {
+            if (responseMode != ResponseMode.FORM_POST) {
+                if (responseMode != null) {
+                    if (responseMode == ResponseMode.QUERY) {
+                        appendQuerySymbol(sb);
+                    } else if (responseMode == ResponseMode.FRAGMENT) {
+                        appendFragmentSymbol(sb);
+                    }
+                } else if (responseTypes != null && (responseTypes.contains(ResponseType.TOKEN) || responseTypes.contains(ResponseType.ID_TOKEN))) {
+                    appendFragmentSymbol(sb);
+                } else {
+                    appendQuerySymbol(sb);
+                }
+                sb.append(getQueryString());
+            }
+
+            if (responseMode == ResponseMode.FORM_POST) {
+                sb = new StringBuilder();
+                sb.append("<html>");
+                sb.append("<head><title>oxAuth - Submit This Form</title></head>");
+                sb.append("<body onload=\"javascript:document.forms[0].submit()\">");
+
+                sb.append("<form method=\"post\" action=\"").append(baseRedirectUri).append("\">");
+                for (Map.Entry<String, String> entry : responseParameters.entrySet()) {
+                    String entryKey = StringEscapeUtils.escapeHtml(entry.getKey());
+                    String entryValue = StringEscapeUtils.escapeHtml(entry.getValue());
+                    sb.append("<input type=\"hidden\" name=\"").append(entryKey).append("\" value=\"").append(entryValue).append("\"/>");
+                }
+                sb.append("</form>");
+                sb.append("</body>");
+                sb.append("</html>");
+            }
+        }
+        return sb.toString();
+    }
+}
\ No newline at end of file
diff --git a/oxAuth/common/src/main/resources/META-INF/beans.xml b/oxAuth/common/src/main/resources/META-INF/beans.xml
new file mode 100644
index 00000000..9ac1fbf4
--- /dev/null
+++ b/oxAuth/common/src/main/resources/META-INF/beans.xml
@@ -0,0 +1,8 @@
+<!-- Marker file indicating CDI should be enabled -->
+<beans xmlns="http://xmlns.jcp.org/xml/ns/javaee"
+	xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance"
+	xsi:schemaLocation="
+      http://xmlns.jcp.org/xml/ns/javaee 
+      http://xmlns.jcp.org/xml/ns/javaee/beans_1_1.xsd"
+	bean-discovery-mode="annotated">
+</beans>
diff --git a/oxAuth/common/src/test/java/org/gluu/oxauth/claims/AudienceTest.java b/oxAuth/common/src/test/java/org/gluu/oxauth/claims/AudienceTest.java
new file mode 100644
index 00000000..3a885269
--- /dev/null
+++ b/oxAuth/common/src/test/java/org/gluu/oxauth/claims/AudienceTest.java
@@ -0,0 +1,44 @@
+package org.gluu.oxauth.claims;
+
+import com.google.common.collect.Lists;
+import org.gluu.oxauth.model.jwt.JwtClaims;
+import org.gluu.oxauth.model.registration.Client;
+import org.testng.annotations.Test;
+
+import static org.testng.Assert.assertEquals;
+
+/**
+ * @author Yuriy Zabrovarnyy
+ */
+public class AudienceTest {
+
+    @Test
+    public void addAudience_callItTwiceWithSameValue_shouldResultInSingleAudValue() {
+        JwtClaims claims = new JwtClaims();
+        claims.addAudience("aud1");
+        claims.addAudience("aud1");
+
+        assertEquals(claims.getClaimAsString("aud"), "aud1");
+    }
+
+    @Test
+    public void addAudience_callItTwiceWithDifferentValues_shouldResultInSingleAudValue() {
+        JwtClaims claims = new JwtClaims();
+        claims.addAudience("aud1");
+        claims.addAudience("aud2");
+
+        assertEquals(claims.getClaim("aud"), Lists.newArrayList("aud1", "aud2"));
+    }
+
+    @Test
+    public void setAudience_withAdditionalClaims_shouldResultInAdditionalClaimsPresentinAud() {
+        JwtClaims claims = new JwtClaims();
+
+        Client client = new Client();
+        client.setClientId("clientId");
+        client.getAttributes().setAdditionalAudience(Lists.newArrayList("aud1", "aud2"));
+
+        Audience.setAudience(claims, client);
+        assertEquals(claims.getClaim("aud"), Lists.newArrayList("clientId", "aud1", "aud2"));
+    }
+}
diff --git a/oxAuth/common/src/test/java/org/gluu/oxauth/util/RedirectUriTest.java b/oxAuth/common/src/test/java/org/gluu/oxauth/util/RedirectUriTest.java
new file mode 100644
index 00000000..146bf0f4
--- /dev/null
+++ b/oxAuth/common/src/test/java/org/gluu/oxauth/util/RedirectUriTest.java
@@ -0,0 +1,25 @@
+package org.gluu.oxauth.util;
+
+import org.gluu.oxauth.model.common.ResponseMode;
+import org.gluu.oxauth.model.common.ResponseType;
+import org.testng.annotations.Test;
+
+import java.util.Collections;
+
+import static org.testng.AssertJUnit.assertFalse;
+
+/**
+ * @author Yuriy Z
+ */
+public class RedirectUriTest {
+
+    @Test
+    public void html_forFormPostWithRxssAttack_shouldEscapeInjectedScript() {
+        RedirectUri redirectUri = new RedirectUri("https://yuriyz-kind-honeybee.gluu.info/identity/authcode.htm", Collections.singletonList(ResponseType.CODE), ResponseMode.FORM_POST);
+        redirectUri.parseQueryString("https://yuriyz-kind-honeybee.gluu.info/oxauth/restv1/authorize?client_id=1001.9a0d0cdb-8fe5-4239-a459-e7cf9cb9fe34&redirect_uri=https%3A%2F%2Fyuriyz-kind-honeybee.gluu.info%2Fidentity%2Fauthcode.htm&response_mode=form_post&state=http://aaa&foo\"><script>alert(location.href)</script>");
+        final String html = redirectUri.toString();
+
+        assertFalse(html.contains("<script>"));
+        assertFalse(html.contains("</script>"));
+    }
+}
diff --git a/oxAuth/common/src/test/resources/testng.xml b/oxAuth/common/src/test/resources/testng.xml
new file mode 100644
index 00000000..d1468856
--- /dev/null
+++ b/oxAuth/common/src/test/resources/testng.xml
@@ -0,0 +1,14 @@
+<!DOCTYPE suite SYSTEM "http://testng.org/testng-1.0.dtd" >
+
+<suite name="oxAuthCommon" parallel="false">
+    <test name="Audience Test" enabled="true">
+        <classes>
+            <class name="org.gluu.oxauth.claims.AudienceTest"/>
+        </classes>
+    </test>
+    <test name="RedirectUri Tests" enabled="true">
+        <classes>
+            <class name="org.gluu.oxauth.util.RedirectUriTest"/>
+        </classes>
+    </test>
+</suite>
\ No newline at end of file
diff --git a/oxAuth/docs/Authorization Code Flow.png b/oxAuth/docs/Authorization Code Flow.png
new file mode 100644
index 0000000000000000000000000000000000000000..3787a1937ad137109ee5c67111226402dfdeb7ee
GIT binary patch
literal 29087
zcmc$`cRba7A3uIbQ7S4KnI+j;A~I5;h%z#>%7~0Y_Dbuj&=9g^CS>odBqG^+B?(z&
zZ@=f^x~}`W$M^C3{{H&8AGf-4obx&7^M1cx&-Hpgyr?L<ZOfi51Oj2(xwB`K34{$V
z2?SDI3R3)wuDSRu{vfeYmOVvy`-N!;|FP+cyzCjmD)E021#!Okm(4fMYT6J8l)H%k
zCm{rd(BmJ;ZO<u4lXp<kksjOJtd&JhAg~e6osm*?XdmfvzpQ$zaPBvI0PBXTic*@}
zGE!tT-yhtl)~GuuZSXDP><(SQfDDf7+FgR$7CM{xW-Wsr7YS+Q$ppQnjSZaN;2WxX
zK5A+ok7)w;W69^NPOOz=rO6^al3&JhZ3gJrc@C8h&(lo?+I$(Xk&ra*4w(#`9AbYI
ziHjn%GIG8l{z;Zb{C=Ac-%heo;ybA(zImLa#do%+8}a=gKclW7eim!Lvi>s)LlXSM
z+OPcMXD8!CPSk(8oNL{G!F{3OOX!J&H*Z{AT~$<6==e0KnV8NWwbu%laAg|tI-?Y=
zS)xG*H}+ybE>mP3axyDA+ORoMvuLURpycY(<R5?hK}jdzGVzIX^XARtg^Od+=X?i)
z&bYbU_e>>7RMX4eNO5Z_Kb+U-$E*I)iy{5iaP!T+j|{QlVvg1m-#_WO&2zLEo#=`i
zk9{yWz3}m)%)L{+BTF^zfkKv@bDxjaR2&=~wk_63X?SnnpEKNjxO=l`sA6)9vx7tJ
zUTz`g&n%1;QhAL_^OFVd-dWq&DD*fDCuQ^S@MKwbRSMr!pBc)_%Nq!HUwMCz^3|(X
zbO&`46B6=W=F`|HTo-2w>_&s);^MNiXJh08#KgrJBEL>9E3Qgz-Lj?f^XJQXw(;Ki
z6@6oFCXGYy#(r#g)v%bAks-D`)v!7#xjLC1zC3~#mR$O^fw`XLaaXpLUW{^EV<QbM
zt=h$l)H`<6omOmSIq_0_hL?OkwFRGYxZ8qhx|KMdfSiiu`}Lg1G11Xv<mBNZHa~nX
zNX(C~u8jAUKVh`E5vM1{<M;EUH=`<Fiv755lA5-LhC|T<FK>n}-*;n!8%ntH6=jRV
zU1v1q<>gIHO>f@(-Ii`Lq-FOeCZ>OJyr{@=(%9TQv29qh>)v)5HfQoTZ{F}N@1kX5
za#>!urIp9)=kKqks+y>gdP?#4@85^pjTfed@WE2w{r2q}ZfS9Gapv`wN~s&?&Ye4R
z=5Ba+&s&{*GO3EHs)U4us)`DYLKl%H%5oKD<(<sT%=GjxpFU;l%6}anuawYq?AS3+
zwh+-<KbzF`{Di;M)bwPS`U=`bzxdr(F7N)r&(FxjB$)Y#tPj&+CYAeX>FHIKmFMM+
zf|TMWkBFDNc=5ubBWoiW*;(=c3F<E)B1ebxo<Dy+F)=|V_43$tHC)Y;Cl}n@3fo4$
zQ|)TF{Mjw6qO+^3Xm!QeR9;<Oox5&?^SNrHX+tdDqTIuA{J@9#M52|IhSeY`yR47-
z_3P=4J|ZF_Qc_a4Z{N0N53-|g7_(@PsMqE3<Kg0}Fqa7((=RJ4D_UJ1_g<i9PP`g<
zn*NAk#ZW_Bb>Xd*B}Y9yy&a+Txh!dplRqBr;tX<?k5?5E6s&M>Y;ImyT<poam5`Zv
zZ2$h~ygV%@-lIp;U%fJ@^5_5b>C=SI^z?L>wP>;Hs90uZrd&+gn>TVaWs#AQFJIDg
zyH*DsyLt1bf`Y=~!-xI+{FJZUx|LZ}RK)d2-k&c}%rQ-=ZDyqHs$IoPW|g#w3G0Ru
zBcZ4-{YEonescYtxi;F`+TIcj`+Hm_tM5=rILwS_#_x~hQoD4C+fOb%eAC2(hizsV
zZe!^tHEKM5Rt3{)&d&L&s_Efpm6a&BY&mlDXbkh|Q>SpBja{8jj6StfHy0Mpu8~}Q
z_xd&0{{7#JZ*MT}NR5yG)YVl`debD{xoVr!X!|jHdwXvgcGeFW8*KCLJdC{7Sgsf@
z(N%_xx#)N2@-w`f<?p^1J{L}Z;tUsC7>rsfuWt%i2sQtywa5G8r%$H8zm-k?sJ?Dx
zb@1T9fO_?0UH<AQ3row`BfYJHd#ZD8_K}j3l1ZJFmp^gqr|Q+KQEU`N^VL>M%ga%b
zk;b229=`H{!nE)G`}cuIO}2PG_4CWbb{Tq}#GmLDKR7tJvb@O1VJFJo@QyF^YnoBj
z=amB^<*e@K6%@MOIoe#i_L_}CS6BCh-AHSZyF0cL=bO5PTsj&Wmzg#bMq$hIXV2CS
zPy0(ei;l#*a_z{n@b>mb$uh!khKGkwj}CR{7!Nlmp#p{+HBr2BC9=(m_TH%-3=HvV
z2~U_$G#flP%ppA3Tl(P6ojbdB?o4#QckAt)bJ=uT7d4EGIG7VpZ&%(yNy|rn)c7;%
zCX3VH-qI<XfiDG<UrrD!BY&6Qrfqwo>#k{OX?+joR-0Q`c++GiMcrt2>->4I7lYrv
zojMjd`&9PP6l;WTa)54Db~ct@)vs5)_wL<$_Uu_b`^M#^r7e_{?z8zlZO_X>ec}~O
z422G+b6%V2(MeJ};kGmv62io-mgDgIikzIBot>SFi%VPrJ_OGF`>~LOOCL}L9AJ65
zeCGM~!J(nRu&_d``qK}#7fjX5t4WlYFI`}nm6MVxLG|H0|MIE7f2?x+=PZ<@p@r$;
zqeqVDy3O~i>pGUnJxFyk{YYFo$thoM9cqxU8*b(o)hK8B@v-Oj26DX17rwsiUEZSZ
zD@z?#MdH_LBe3*B@*{QJ1NQRqnPcTo$PdkU4>fxJ{Am`WY-)Q#ruzrh<im##mA`qA
zZ17=~{L)Bzyt~nJa-gQlb!D(Fs(zcR5=~38Ubvs%B~8uwuXm_cew9*1a*cIlTfM)#
zdBO*OvWnWi=6WO`ARuhjZEj{Jr>N*Z{$S5`hV-j)&F$?xU9&GVD_`3<28v5X<&sTQ
zVZRG#q?}ajNijGrBXghYk^0-q*t3ThP1#1T$L~oB$u}UmPsQr?wU}f${A|6HjQ5^n
zh85I~r1z&s1GQ?8sZd65(aX427xhHKEM8~7w6wHJ?D^D2{%Sj`(oKE~uR50#4I6W}
z8#k8c72avPT4eote7Y*&U`>dKO~uo_^^)QY3=9J`;RBR8+6%U~ZcSr<+~3X|6c)xp
zM<;C7$d!IOaf+E?=g#N&7gpAT3RXuJ%Y1`_8Ch5g&6;>fHIHks@hW&d_VPM^;Q|#E
zm8A9eKe!&D)<ns8o0*yIl>S{xCCMaWZK$Hs@como<nok?WAe<*4DJw%n8OX+1Oo#D
ztgGarmAs|V>&Fcf$<t8RoM%Q3pHF@9OmHB1mt$a9MBB-k^csm>WP9iJR;J=4LnYnu
zf!yA8;QY(OS7kIbS{be087!Exu~rJw4G$C=l-}Qa`o5u|q1T>cax3K>m7LEFYa^s`
zb93)26;6+CKAy+-6cu4RC8aZ3`}vL-)YG|Ny+cDo6JlEF%pc8Xh0JQ7NGx0{_8`Hh
zxtWS;bto?U{E1>6yF*bD&FiJ;s)U+v`MsH^LGN4_?eMXqIZlggs?XcZ!ot#Q6)<Qk
zs;=IWpBr<k{N$5SF{c9ExQ1H`@k8~M>@rb(V-G%ye@<xNeBCmvt))e?MOs@s7~4(a
zJfD$$Ty922hRfn;Hj4KB{MNaLjYFf(lP#CkX*)7>GPIJEjt1J%r+0NY38&YSjJ&;*
z%0_yd@7Sjyk5oeKUIy8z1cCQ120&=79RG&Vm@BKRN3Y&yqww$6%CqH8+D;&RCCsJL
zIVmaBA3ixi!u<S7>9ak5#1r9Piv0g8-Xq)|kqi}cJc2ro`<fwu-@2XH^*SjD^%?&@
z0ra7%t}eS_1A%ay$3#{%u(`Q8F5FG@=+Q}U;qJM%8aID`|C#Kf<?6Dsd&Zjxgd1Yp
zGc`I#+R}%A{zUcMo0K}!sB&Q&)A5vu2oK{imsS0TS{`3Ei0<$E!>vh0<V&NceYfMl
zaB@+1hN%ilY4pd|4AX|XDA^vz0p`2|z_S}R_4xcQsteF_6LDRbijsY@Y15`Xv3hv(
z0s@xkpMaNwLaX97hY7YUMCiv9f19cI(FlNB?1k{cTf=HmTx!&J0bKaCv(AT0EZ4`#
z+g`-`l)W;0J5en`;oP}TU%t3a)yY;{K7IN$#qiVf7cXd%)a0Fs?|JKDVTIM=!8~1u
z-h1usT0{2w84Ju)RI#*cFGjpgVU>l+6+gaz@5Gj?abK}{puI9*<6d~PPexI3dlwCX
zP<*)cw~b*ozzeX4RpI<cf6lVJoE-C>Lf5ImIwd8g3zEx%+uUVW!<9A@u9E08-99;^
z3s}~kYXbn9?cL$*>^$C?n;so~S1ntorSr;H<6ZQW1)P7pI)K+V>8w(V*j8*pLfCZT
zq<faEqAC&AQy7kWKc+iq_bti!WnDovaWVL?R*bc#UPWh&iHT|M*(2%p?uCY$nty00
z|8l6W?=Bh|8hU!Jaox+8nRe{hK~JA!H>$<W!NFmK=0-w70^sAx_QK!ahvBI4z?V=N
zM@>1<p_4UrDzWw>t*L#Z**$I}spUVagH5Iu`5UsoYjQi!j#UHX6*y-r#yNkzO}>Yb
zvA^Kw&!6aKuNvYm0I7S?AO2?LzS!}#<j&&E=n0!2pWnR`Gchr7Ob5vHfAL}oE6ep~
zeB4%h;b5P|ddfg!vO}#T3rEK;&+0wv%D1;tRc%D&wHxnVejvG2a_CX!g#V6zwAlkO
z*97-)a>kWCrmG1SPA(__7q~2^mt`KvRJO(Q>*(n6k6^2@?t;Y+4|m~4)ca}i64@c!
z)8)7iA3gv%jP(?)_C1ko9-bB|G<uVfVOt-44wcr?(NXzPa&od(l3GF&+B~DU)0E_e
z)=zUUrk$1nBi^~Mu6+Ldxtzs0vDCKHhEJ7b?XpE*#a-UrGGyz%G8rxj$b;T!Vr0Z{
zKRDJZH!rWbu`wq<UtXSZq`N@7+W{ZD`|_}!{aB~t{6zn+U%x6VD@*Q>SB=k%cFeYC
zUJnZkvwpqM?L3~OS0usC-X~l%?+pw-ZHqTRU7@wrq$N?ap}v0K>fNdl?St=roia6z
zPfwr3hUQift2N7{5}&$=kMEN&=j7z%u3ft}N?~=BUr#QeWoFh<QSl884So6Y8cjvv
z{Ey(Vv9Z`!Z(`P;x;tr&j2Q@CIGNDo<lsPm;O81Yi#jtUh}w*=#tp^#<bySXyKnO`
zy`h^Zz2H%@y*B*jK#t;OT-?90)MHUGG13W5_1J4zw5v}FT^HY|z9DCE(8r=O`4Tdu
zG;mp6Jped=b){!DSj5Ko;>B9Ml?l29;xb3^%0!V}U7kgk_VV@~HKmF>tDwMq%uH2N
zvyC&{Wn#KTuV{Iu13)f<ckP2&VO_`izANbMK7af{v32X^e7mF<&;Qy28d_RBF(4af
zWM#=WZ91@j|K&m#P3pTuj$(y|_=%DuIy&0CBa5GnEg~mJqgy^kdE>^7fz@Z#@TIFO
zz*^qX;anFfouHPqlgt1-1-oSzS#Q<BqVwm@JrkPiV_kIszr`znz2NmFC5v?O?KDN1
zqm)Zz5+}&lSIX&klAWEM65!Dw0Vqow$hZFysiCbsJU;G@1&1n(f5cvjjXeOMU0Psv
z{kor=(WOg%T#wMi&~oZ`wMW~}j<orPgzzmVsq)||I)GaqeZ$TIEjqTx+l4yHYioMz
zJI6_^{%tBV<2?s=UoG+6XjQbF#q|illSpo`M5UFOju@T=Cjfx^{Mr24wbnGF$Euss
zbLstwg3D}^>$`pVVDI-R>AnOWmDM_=7FBm#M1)`WokRCK$I;Qz{{H?g_x2q*qMW40
zdcy8}yL42Y7o)HM8{0|hyXcWBaf-);gtSCg0K-E<LpMqtcbU6^uT!TyiI?b=d`erR
zpO>54baiFfsh}_|4UA+G730Bn=0{JS1Z3$IIAyMJb$c6|bid2rm9a9u7Un&<Z4M@f
zU2SPO)|8+gLj!u2N!+k4N!r3rQ`e-Z<pApyf?fc&1O#we^Z`E7TmGDOdMqvchiq3@
z*S4M`)n|naE1upVr`p3ZGtpm#M|!e}&9q)M0!HWH06zxE)N}b=W)kj-Hh93|$G2}+
zR0-+1DYTZHDIZwZcY)WUaAw4-S5h=((vNAyvF*XV)YW<Y<f0gtpX2UwtHk~h=>Yy1
zqs%?(Fg2*;?(VKcqjUMPW%oOX1}{QF%#UZDY(Gy^#;g7|CntwV((SU7DF^$x^XETn
zTNQ9DyJA74q@+{_3(FtGjtB00Q+KVsqXWh6)TvYW%eM3rH@=<(35mJ9ReobfSCJdV
z+KvS9bhLW+TSh^l8t)Fu!#hAOlrNW`jqy*!CeEHa_fRci+qP|?;Oyh>tBX)0C_Eto
zy|eDG#D&DG#1R*$c9!`LG6N_-SId1|=XxK=dhan3qV$u?M7zUQX>4qSZb0N)Mur*7
zVdBoH)}c?I9<pf9sHmtI2y-3_Gzojw9d!KWx6zJlaG{Wpke$1B$v$DR7}}CBH1zAj
z4)huIpX|%>bw*Q8uAq7k9z0-TGt1N}4X76q4gFGDdRo!c++3B5rg^-banva2*)wQ6
z*c>lkzRVBYT5BMX5>GcX^z+Ymz1fgNf|78kRmxpv_N(Z=+B+KaxB9wTb8bd09XBCX
zA?I(BGXAxn2YZPk11=NQ=%lV?sZ$CgJ-vf0)wi${_HPyAhR>9|D=5g+vQQu6ni|>o
zmIUJ3?Bf{L-K63n(2agJCG>s!X5Qv7-d&)Tl$DZFyI{Po+}LZT$Oi~GIytrHq#F3x
zXGA@-)cm>-rb<VY?h3XiEX~gmzvwxPO-us(`~odQ!o!P98xBZOZ&g1fr1eSU;KAg#
zZw1)duc9v~FFa$H^=j4-(%G(cNYmJHO|2RG9C*}sg@c>>oYT+AM9uVl`}TpoO-xR1
zlsZ(Y)Lthi5PMxBIIXZalcwRp{rfV~(gnZXQ(h3CexYw5J-nT+TqsF^SccMFZ_JhF
zZWjBo&2FEF$b7>ENk2XRfPj{k7Dfvd9UXpgJ;zVaIea-U2#pR*$bFHEQSR;<*;5r;
zCH43~6(6Jcp7~&_LdRbv<S|XbF%P)Z*AxfGtEEhgd-f!LzoN<#6?f4-r#O@A5#$fh
zZE&U?(!WFPyBQAYd$c*F7~M3FdcT1%vhi^|sko}GZHDO;1A|_?xs6g4m6cnzY<UwO
zf4Jbqb^oC~Rrjl;E(8lHI6V!~cMR-jbzeGs?AR>`2+;OC*&G}lM_W^)3JVKkV#<_b
z)vOQmJb9L+oy{WdWV^C7FGG2m(vvNTLfqlkS5R1QMq$Mm<;|Xl%v%rf8XamE=HQUl
zVmfi+gfqa?lprBR?>zs>*{gn%9lL31!;as)0#H!2GMx-YEgHhjdsOFYTfKFyG3%qm
zCbRM<tl_@CzEHs^-UEeTNoZ+n_x1H94P57@YnY%<GrB$e<A-rNNjA4OZTY4<%n_2i
zDo8_9ZHJV3N>o87>Kbw$J$_vJ{=MC5RnW2P&B=NP%kL3Y#;As&Xodt&ww&DDOP4Nb
ziq5@OiW1!8J*9se`!HUWXSk?3Nc5JOvT{AZcuW95AIjJ2Z`RdUsyzLtf_^x}<<jo~
zZoyAYKEK>caq9Br%SJ{qwhWh&)E4LG@%C*8Yr*p6$pd2Zf|AJ77qO`d!R}Fo#9Zc5
z_?tEo5$A!Y8}+*Z91bW1O#uT6pc=Gim?~c}GkeoplM7|ArpEnu8C`!se0;oC(oF5E
z)1JA0Ap@TSCr8q2-s%>#oBJ3C+{rR*d8<Q&fc9e{Q_jin-o3+9nh6G>ezfR1^B+Gx
zS1sHl7~IF)f2FdLw8fL{!^e-YF){b<-aR8NtyAQt(_WUrVy?-QU;2}jFm>K1o$FrA
zMj;J{Qn!xn_8)9HOhOe0P~VM~4IBC+EaLv8YxivXHG)p*3zg@8DjPf=%X@0rR@B5~
z0QFumSSac3Tg8-=$V~pnSM4=)^iwuW4TRlibtc*VUQn4>YV2=XTmQ6m8T$TxKXcEG
z$Tw|F;|J)X`d)rHf2g|7TsL;H-I|MV^1`aUCvV!<aIMz-tSq5W#g-us`n9%T_bB)p
zVI(X){iu?;uv@@|kmJ9hM5}Hj!XuARP#YErm*c&B_|GXKDrh}Xplc<6yh@*3Pd6v~
zB|9Y{C!t0+iU#18GtA*iSKh6Xl9EO$kHts4X#@}FPahM~iKc*TF^~JngPTnlM!r^2
z&eEz-)`lv`a1aWZ!fS54E8d{<aN~~J<sJi>@Qp5lgzdjrQAW*++?Kbqh`oIFEY+ZN
zll+~~Eo3)@UuqEuIRRI$UiE$c92z<tfeT<#CFHCZISFIC-ojfL)1=_lyC?3tAb5d)
z&5mHZyY^m+3xMO#P*4(W34QnI+?2a1D6w^nsg<nyMPq{u>|5=A_1|-TJW%0zfCwA)
z100r!1_p)UZAAk=$+bRJx0$%%gc*39Nw(S*8<0}ja^NM!PeGSMH`oxakMFw4*=e_R
zlUvL(Ei5c-K}2u!=?k;CFa1WB`T}|3!yh{W4(es4#hiL|&D8YSN;h!OLAT$J^FQZV
z^%M$Qb`EwHc6WDcB{lo=L%oKAxMTP3=`Q=8z(Q>R(4e3_yLTT0L3zOHhAL5FyP4p@
zk1MTRmRJ~Mx3aR5qNWwNoMYaW=IKc)uPr1jT;)DIy^vqz#{Hly^u|y<$At?u+l7e~
z2L&6QeZG=6nMuOM0oN64KqO`W`rHMH@$o}JX6o^(af+codx|8*sR<)A>V~(+IHgn9
z%Gi*t=+OAc$Oupn<CCZV#H<vjpf{a4b4FkPE7(E5{>{I6TQk+Af6DQCEZqgpvnd9p
zz#h6zLosn-PI7V~60Uiw?f(Hv8JKV2@_>_3PE%!~9KSu}^y=p4=TCb5S|jz!y^wEx
zeOF`l8&9V7PkGN&{?h^=Ubo*M7hmXO_Ry$1&w@X`_I9%HZE9}b&Tu3e9Lz}*<z7$E
zO3Spmy1KrHXn(A!W>6i#HSU-Ho}DcMbH9H5`q{H*p>}gUl8dn(>&#6`N|GVBwXr$+
zIVLMhEnXEO_QOaGRaKf@yV%#D?e`C!o}MHdHl1bU^{c#pf78$tVAlKh?}PjA=j3EG
zO113D1D7Iab-Bp%3G!>d3bpi2w257uih|mVu^fkk1H9v`v`#@t)GEcMw`XvO;JqnL
zJGjGb>38`#-vhg8Xuu5Qx$Elcgu18IxM)yS%`z8o13lUP2ia`LiZJ@}h57S=`fGxH
zAH69lD5%Ny^7D^2#;ZUwen7?QzY9Rt%&r_5)!E6($=R7v(T$qSfQZ+#tpdirx<f+p
zWIG=w);6fFr>LkX<p053S17D7W+y3OgwDpWZds#$9H1=(0P6lW#_wFs&)pZZ-LJ#@
zxpiwdnN)I1)n5I7%C1Im1%`(c)DkvIT})^KRZ#mTtx{joKN=IEqL}dkMBjV?fOZDz
zyr_tXE7~`_9<)W`-*#`g_pT&D>JA!>i!w9uO0q(5C7winH%h0Di*bmxm67@Q_+a5R
znzF3S%s`1`o_+hSptRTba4Lp8bwA$!^XEdn{K2Hlxf8#7OR;7_s_LcXGPOnr227mK
zK^TpxyB2M-g9%h2Mj0?^Wobb2pn!mc<HYy=s(>EnadE~CS3XrdW6!qidebrtxH<hZ
zAz5PSS1H7xqn%%$$+9qjxxo17f8oB=$LcS4g=22)!%+TOqdZJt7$GdTxe@QFG1fBf
zz{*UA6`jCkE{gY1o}%Muqhn)<eXib5x(yxo$dMzEHyc`89r`Q%ik3&MaGx{VAFw!a
z@$meFW;Q=RkA~5W{RE+a<)7R+hCtL5Sn=r*&8A8}UUdIcr%x9xj^$%H0!dR-rvM`Z
z0>6b`0J#(<WXAHykI#WN5Qbn<C`HLEFOR!FdH8T1`gDKz<8vTsk`TcnA|miJ9T1<~
z-1)iReW?9dx(N+&lAz4EcS5|p*TKD}P7_jO6G!fiS*3M$UM^j|ZhB;R%4r$81{!Si
zeANBlA%M~@xvI%6!a_oOVmp;+*Wh&NR1%fMoIV69a7laHVi+E(moAlk_@Kf485o_H
zhX<Wt+W@@=_e0a;9S<8IX}o>=HuUvAfX1kmt)!ZyZMq9xAK&<i_u%5lVN|pX!}Nf!
z*w}kn*Q3OzyCGGIO`fgFp0US59Dqn0+C)OaFv@g}+h(8&@&ivfp7yhQj0+X-*kla|
zlXq*_^UfWH5w@q&bbXau2w&gQ(9uz`O1OOc@DR5yLI{!vw!=f+WX_O{L^GT%WUc!U
z&_T<~JShg<&_j>kIKKE{*M&o^B>{9}zPi5~NrM;&d2|>2NNz|@p>MieZ0}lS5oFMp
z-Oy(4^q-xOXG`&NF_WgPr2pIo<8v7We`Nuf&f$^D%F5Ex_mY#xVFpUheciC>#N5RD
z<psSU^w&{^k4NiC@>weG?@e^sJu_RhTJY`+=^bXDW&Zn?AD-Ze?5hslMd!@$yHvPl
z-`A?_=iu1!o|I_Rx3ZcF@a-ky0D_0Ofe)L9<p&j_*T3%gQ&&XJ>i^v(#bjv(8K46a
z@;~g>jF7DzvPFrR9r}v<M|3xnx6}<!qruHw0cF0`5UXIjpO_QKqe)m2UmQsX<9`XF
zhlMPlSJ-KAmyXDGvNL{s2~B7i5>+~cCYPkv;df$-=f(fg5VJ;ZVVl6wi7BmKm>Eq_
zj%RWBdK)M%OvL7XT{%$?vh$ALIJk1)YLi?WHd>g&w}+bP#+q%$vtwQ9#?{KeRHt?Q
z<Zgj{f-TC|b)ZATdLPdaBVKdCR-1QG%-&v*AE68ZgTBy(U<RIKo1+c|7f%SnmuMAx
zk?ZI1u(&v=NxvWd1?KtPXBGP7V-{a;za@Su<nc*K%<y)m?BQu?Y6cDoVFTBTPl36M
z++3RbUC#<~-`3U!iSO2}ThRL8vINvWVG`N7V@L16K=$<(0g;KvK0e#GZiNZ>^y)YC
z%)fkT$k%y_al{@U?S4*94jpmV8Zm~RDj^|(*YRYd@8=r5#sNKRXVk=52oTsyYKa<q
z<0_OA+fI*m<qHc63ZkwQ%y#?Q0|fp{po)3JB4QmaW>sRl2!f0P071LHUOD$OATv@4
z6Tg2y8#vVJW+y|Q5p$Q|;q%bveSPlndJ$3jTvM<1*K|Ufux@N>#OdhhP&Y+IQc(g5
z3%jpX0T!<b4gq|cM;s>%8{|6DO)gklrx9DOa<@*rs<E*#Tx|3)X{YS}YPwb;z%9+q
zYV$^?Pu~ft5{AhPI}I#fjprfPBM=kfle8WxM=R#drT3G~`qLX%d)9Wksino)(NQPY
zTAHQ|CV&ZSntK10l@(l{nT5r+&6}T9a@*M0EG|vfJbv^DQpR?s<N9`s>ylR#DVJX*
zBr+&r(310WaxNFSb<Lz76^)qQd8C!ZnM$nIFJ~X6t>nE^zr$DO!_nil^X*3I^j!9G
z$e@8|4{ZZ`1H)ILzMGhs2t<VC)cUdvydA3tN^x*-@J6ZH|7zM37pndFwSSD58&?<o
zPnLNVG8OuY|B=k+kChx(YFzgLcTn9LtbK)e3wW6nHM;ZxEAWO4hu`1uab#v^2LuE#
zGMoLoUp%^di?pF(v{sUY-N?&cADF>6?Ch`}@HK~qWg&SYYJ;7|DT0T$MkL?~2!4G-
z1EB1301`M4Im1#iG~vk^8h(d=OeXbfa*~&iZ>ekC&7|r#v?VX)%Q`ySHpqfiaQHNu
zWg=Zt^Xb#MvuCNvdcT!D=H}+c9)Q5rJem38v8m(!JDauvz~FsN_^54f>g+TZ`Y|&-
zeJP>IlkIgAgckZJdt?Q^go&Rpcn?uekefoNs}Oqm^1?Ls(7~dmv>~esFwE#9SflsJ
zRpV8g<tYd$yHzNQyFP|pg<g8p<jac{OMrJPD`6LV^d8uPPxUPE7kqT}J^$v!TAEPN
zANq>kB6E}si{k0amt2p&%});We}FwC*RcEiz|M+;fEzjbC8Q#*rT4et8X~!LbFBex
zq~!#wQ%f&@pP+~R9W3sgwWOS9Z#8pK&wcq8s895V7Cm>JAgzl!I#5mdyON<Q`eyxQ
z&AKkG3w9MoD=UlR{pYqrcOLoBc8)wl_td5n#f_w`KD=osXBTJPS7!k;0X$*aV_U1s
zAz9!$6cZ3VZ1;R=X$i|v$t^G_Xdyvw`6oCr)V2x;H6MMLhet-1fV?0poT9!9!A%U6
zSyNLJ%lByY;p4}NAOx5Rsz#6NY!_ByB8}BLb+)m#e*TtB66z#w9&!ig<>V%2X0~tN
z?gqC$Jw06k_4Bgf;_Nu8loLdB$OT0D-P!4~G<P%o!6R>P1$lYO&6|JE%&;6a_R3g<
z#42pw`fIN5iL9(_OJk#<iHW=lh1a{^9~l9DQ5Nx`Jgb|LT%E6Bg`@NO^=l|Wa*{^A
ze41%zl3UzoyX+DBvczW!$KRx{%@l&&hIXvjlMg_g@`^qom9;JWV+&>Q`Q#R4YTQwg
zak*ntQZR}DG<!b~)>*sV8;_7=#kk2|zXmS{{?li*Obf0~waM))bj^>9+$SW|e8cB<
z+i6fFSV&PKn;;garq-2~mR1gF_vj`x?J0c0VsIcd)Ic{YJhYBvJmc<GyNI~MKWo^4
zHb!G^^C{d9OKzz7w($-#*dyx;mu!-*AxnP;!X4&f*Y|zdwaa6J&7Y@-TVS+X%@w;u
zP*RuKEfYK2;M}U=+lt7J;Ljf~@h0mP6}rq%P$B-+W)iNGbK_NV^1)ja$G_{7kBI&{
zss8N|--w6pZXq$TcOcO~zi2gQQrCie;KoD%K%~x469=m)44`G-<{PO;RkG@SmkX;N
zc7ep|zEuf9WN@B{m=|v{uRSXK_2@QSA=v%0g7L!XAJ_?2ojHe(9<{-~y6m%&$suKO
zerq}9T1k977U1i9^~Ljm0CjjIaTmg|PVozRMQ)*5q)gV(IZQg6igsOoCVjy&ZMY>l
zStHdGVnTQgK_3`tunycmR}=^YB>wcRoJ!VSzFK*r5cHARz>EZUb!>2!wcc=po?Z_O
z0p$lC8>sAx6*o{(SM02q=#udTgU35$);C+XDe>Lo?YHy0BN#u)ucXXSK>+~NY2D^%
zwxhv|2xV+Z|AITVTN0LtzrEt6`1Q9oAW(|@<!9?D$6D^cjg#BJ7`YbYYr28KMs;Gy
z@h_<Ke+WRf@~X{mpa&^n2rafDK3+cnjRVh5su`i8(N9H`eoTm$QESt&9cv*%vUCek
z@%Xo-<yxBZ-(M(2{a+U~Kzw|$07wU(mn`jMTuSAi?f_XVZNxwp^O}2mfA?Q+XdU1k
zkA@Tp5_QYS2f>4cruMKQutZ^t_Qqagtt7jl`WX0nP>txWu@jd`txAZPV?EUHgeI-F
zShRvS?(@TXt7d)AKqi6V@_z6E5h<&v5ED{gLWrD#ibbr|zW`->5pslWPTO-1dCSh6
zXJKJr;oT2gMGqZH;bkqM-?N7&^TnxGPgnkU^yuei3o=3u;}=yD{WA$o#zsaP$;q{Q
z5)m&1rCmmSN#%sGbp+mj=m~qdgV)W>#(GN*>b{%nw5j1ZaKP>g4B=U`%yvYxVA0zt
zTnag1uV{7z%Q-<kx&9ML@!=cNw1<QMD>hQn&Mhuh5jznuS@SH^UZe<>QyhR0)%9F2
z$sOe8e(2)^830C)awT*X2;C^IcBAbaF`t8u@$TFAzPy}MQc}-HN?uOROQ_?&bq~IO
zVk`s4e;_iV1W(I-=+L3Pdwb!ISl?jSvj-Z`G#uAY`5K~g5Lu8<L<K$|9cfJU^7->L
zz(5ZV4*<!iyvmxI0ON!7g+{7MvD3y{FaHVI<hh#z`E$(yJ@j0s{n`?%g{TP;34i0Y
zH+XEA%1barLnEVyk@(fl+FCY_zjXJZA3yv90|Wj1j@gf0<~I6|Xds$gzFl=!mrhh&
zg)_Gwva0_QKja@aH8uT}`;!lb>8S9RfO7HTA^l>45)Jg0<>h6ouDqu9_B}gy?qiny
zE6W(BZ()(-5`ylBUav$mJUk3{>Fwp*eUHAK7=PE$TN1M{Kh<!7pZTKbJp`Duva<H<
zj>yYv@9EK_DdUj$hkl_cC-{b|!RaXfdAQ5@`T4!i6jZ!W#u(k$G`Jm4pDsmYmRMQi
zSw3g6k6b72I&ySW+oG_^^FwH8OG6jj+q130r-okxO%l_<BTUT97Iw~X^;CI6Lsvz7
z+$Mv2pd0W3L6_0#F&(~gmyH4hA6-T9?Ab$|*Qb9r!8Y&i?pD6cLE#A}0|`*j1@sg?
z3p+%IfY1;yr65Y*7fl(xW%|}Y+7&5km}pg1Rogh<i;4v1_D9xT``#BF6Qcl?I5qV*
z`Ztsvm3UQ8wylgppZ)J>OGbcKvr#~g@a2_N)6h6>^W(e}by^z4K~Kb~fYrQsDl@vz
zQ$kMNxt0k;gD&@CV5jgr_3DsZ>KD0BaPMt;-)|gJPKa?jWFgyHN9;2`w@=c}>7nxi
zdxajm?$1U6(=G(A0DM3r?nk@H_8vZ5cg@G#*?AG}#@2zBpcUFmV4h$7@E)LQB2!EB
z9?TC=cp@rb%79wlWR^*Dsr<u-ilM(DUaa#cZsq8NmSI3(1$ISV^6_6DYWs$;VPV)o
z0^98QbzneULt`$#XZcG;<oV(1j6<*&&?{;xDjeqf17cWT2gYic#DA}MKL%y>X?u&g
z_{+6bemIlR8G86Skp4uYC!qVxj9o+gMw!WN@HPH3jkgZh`hoK9BOO=Da{LC{;loNa
zW!o5qkO`|`)NW6F^9E_CBruu0JW+9RS7gcREu4rMzy>{9T3R9J8T0uVTdHL&tcj8*
zEaE&}{i_SZ$&1s&oE(KK3&Zt|q{HL^akMYRBYL^%v9@~dZr=4h;Lr4*sdQj-u-|){
z-MbY6kCZt*YK!04EFXr<935RtZLPl0^@dHP*;n8q3g2}{vre^Wu_0~y{{6eS^UTXl
zX;dp!U|VRhB4&-RL0Ob&fCoxZqvYJ(ku}<|Y3s`)Msf}gb4dRf?jeN!uP7Y1;`1Lj
z4;(n~Rx1-vqGZiS|5t#|9XZ0%ov@LgfZGEfBl8ASI3a)}0`y4yS8s1Ga@5aurl+Oh
zCbP4%o79ByZ%k{Z5+G0W-+oQ#DZ*W8?*h0U!JkLAK+NG+gsC(`fgt~RY((gC4Gj&*
z{6?qYK2jN;;G0i&n@-rg>p(_UR#5YX+llPk(1*>7m`noo<>gt@Y0{RnLQ9c|MN&M-
z#nkkUzdzEhb<NGOEyLA{dk;;)DH!R<PJaFRY`0EOr|FE^%D;3Zs_R*2Av>YUU-P*=
zeW%0CC-gN}!_^>K89+9_YQcU1?E#;kBn2)hcUHXKT5crO{H3XX@Z%F!$!oQ21-kB#
z1AzW`eeFrs{V0y78^bq>pZzygNq~a*vrV`8=J*IV)cb^yCV*waEN~yf1PqmdoYxx&
zIlR~@FucMcq@t(3-nKR^;T+jAyxD{VLW^+ar%$hTdUR8NIkKi8@&6#&9zWAt%=3JG
z8+Kg~GwAEoBn&dGxgp{Q7zu-qR%3GaJ+?GI!b39HKj(6P8LJgvF)S2@n+=_<*m#e5
zD>2p?dTdyd1?24jaD<X*Y-niSnsU2jJNXLjY2hotNndq|;9O4b&Fj~{rl%nkO+mgs
z8A`~x5E4&HC@$Dy(4UY3Aos&W7pRPc02E0?A~`MS!$6R0%GeV@I)7?ffCNHu*slZ&
zLf0R0v=NIiVb(JWWMS--L0bWCJahn0fj-vkmxt^2ixeAWeg@Hy?CoyPxp@^ItX0L7
z8{PSYCIOwise5#~IX8Mw*<U*QBuRs)dqwWVFS8gze?+atECufLctUcand{X8T~>Pf
zRzKh6)2B~g;_-ttz(rHf3X#+}8z2CldcHdc=tr|zrq0v&Hm|W4ZJyJk9qKX4;=hVF
zz||DD`Qa7g3ZcRp^>%8?*4}>B`T2OLkP%(R0ipot6OoiO3d^Qo{Z(Nno4WS>jWz^$
zyV04zd7J>8e*E|WxPiY<1GRK1D+LJXOiWGDkV(ZTcOl5v&C>bnrM1lLWqJ9k*&cUy
z(68234c=LDB9Ljl`UF7cjVjLrb2*}b#-zC}C7C+8xvj)11d~Z|2?+S_0_2E{in_#e
z>EgwwL-MA5Anwp?AZp2R|2<`Zvgxm!=xe=sO-;(d_(`ue<fC~A+I&W#&!0nA{Fm+&
z#at75f|KGsl8}MVpYP*X`TfKl5zS~e3Me4ZVE;|B5;~3uZ(Ecmk0FF8Oqks9^hDc<
zt`roFeeuk%OQA~gdUGP;N35*jOG_@=W>()To=tc=NAYOo+gX4ZAdC~u_y?#YY$TW#
zct=?=%t`7Mp+YeR*SnQeNIlqhG2e@^xfyL^d&s(hK2u3psEwHALnPQ|&#|Al4Su`O
zGl3Mmvl8FFotd4blfJng7x3Sitdsv^Z0v2_wa<k#(y3Wl%{@J<%}Ls@clPex3z+h!
z4<sw3aJU{~gNF2fO+_ftAn)`q(7=7&H2t4ohw(?6eu*bCiP|(}kPNpn9Qh8TJCcj&
zKNS?{NEA*zxGbXPW1RK0UI2+Tyf8M9-OZc1Zp(Q?hl%-w5zC+`TeCF<tNs_8Ow-_x
zA2ag<;dHxq!*ymlexq1<HwP!D`@&G%#7$_V2v?cOpU_IC?g*~WI5wWa%`kG3j+|vs
z4v>DO<<V|l^nD4;_W;1dlq^@iVry#)rN}#rkB<)_?pQVouzVyYlj7rdkoBShL(@mH
zwO&Z(;F=5t=Ldn#FkvfQ#6cY$b5Fhc!^=xGp{d-5**EL3LaO5b3RP|KOfjww0(Sb|
z->+GzCHHq!Dw{_26RHF3gyfcCUS15N90e6{Kqr}-bKvB>&br6n$2k6}CmWweN^x78
z2!QpzeczD3FNm@c431hyPWbJf`uZycKQU63ccb?`)QbHF4rs;iI}PAtV`um0f(eVo
zf-%K{*}(pEqt`YTu{i{O+K>wMvw#8v<NL5_eYD={LW`T5+r)XzsBp5tl~WZhE$YN@
z<xd35yjjGxsPER-*8_VPq4P_{nLfG&!(o-FMp4m|ZE)IYs2>G;D`!fOF+YXp<HwKN
zu1fqLQ(DFa`|;jlp59;7dib1w)bd5&KXVx;60?EP0COQNqCjZHN3KpjoKN1_UhmV)
z`(5$+r<7ykuenKzp8?5qbsJ(Mizj`;rO_VL<y-C|4hCEZK*3uZBdEe(sF+1n{~6qp
z6L#Y6n#P<>eStnZ+!bQVKkUkk+Z0i~(jGwS$?t&JS#B&z^z(Xc<8*&}vGwehDaTek
zS5#d_b~f%m)?mdn+xT(7_Ia`-rfT!OF*=19b((*>fE-vgOGD+DjEH4x%3gN%({Ejd
z0iZtonLhJ>Q*q7gwqK>7#j)Y0>sM8RvWz){o|kOzq>@=?=$ia}ij6Ypyg#5{V4%p&
zZyx}OKQ#y<!h$T})tojMUj1KXXv+T1{$Hdi`>%+-m#&<W6^vWhnJz9%C<tIq7=A!I
z5U6PsR7ho6MwStSa10EX8$r(A?R&+J(v%<SMGH*;VDN(!(#H-hXhJ!{{KoePJA|5I
z4OA>GEdiI_TuKlX3o^yqh1`j>8&Ii`RX1O@=g{G`n~Ben9FibZNNoGN_wE%yu43Ml
zhPDee6vIvaZ9GR9D{wnQDGX1DDdetiRRWV=U!qO5R<~eV7f8^Fo8RtYz$!dkFOCZR
z|CVSd@O)c<vfO(3%q3ils3r*pTgwJ&wSDFq&W~#tf}Uz25@EU*4bK_lPp0+|p@z#d
zmYM#kSXni9==ut&J>wsBm|c$J4Srr@La=)vk~ZijZsI42>`7~DYyQJ48>MboTOaW{
zg%6S&pW6N359;L8x$R%X`&ExkRWPG%3bE8G@6~~X8>Jynd=cnnjY0N%%DR<yx7GXD
z_qgY!aXUAya|Wn3D+i96u?Hp2BKJFMTCm|z>+P{E>jL=+8_09`(1<e6n;Qh85QWG|
zB=w*26sV>u1yQo_5WknQu2msLr3!fjqXn>~i2d(RmCA|#l*XFaass)8t1r@=rhf(t
zTLHU*3@6tVRa_XUB91O>XG|esocg>i5mAn3h3{&o9entluJ~4mOS+@0<MkfX@_)1D
zD;_vXcv-evbLtG*8eSNv2Ll{<&<X^&cueV@WP8j~KEmUU%ek9=(rR76`3Sz~?t3f8
ztRIh3Pt+(e+)&(0e&Q?PHhJDobwdO4oOS7{m#udMNshDk2!z@y;#Tf4?6e@GAMq$9
zTQAvwK)_1)=_Oz+TXx4!tfiUm2n~`H(?S``-m!|>FS}Iqnh8SF)D1qR4)&FEKgxCS
z8!57Xi8%lNt5S(KVz)5qLh$9<4}nQvZ#i&t4ya0A$qiwf?!bdoQ(;!Fn@$YYELGW4
z9nOppc0!UGp_+JNvY(Cegs-39bngS!nUD#{RkiZO$mGX@G8;o@DaPQ&lXzM%+Lhs=
zl?2M4tOUZZB&YBj(plLZFl(V5BR@_|lp?su`w)zqI2H`Q<hO+D0zAAQm|$&WA+8?j
z+2e5hrr?_@1cML?A#aI34kbBAfrji=VWAt;?Hcjf&TtG2VY+C6%6+c1fM*k=zyh*6
z%u^=R72m?zpbD^2pp@<)+k5mV3>_#jfeJ6OE<kht5on?dD-aX8CP=XMj9)tJFQ6l*
zO(-Dw>$fo_yMwHxtxc1f3}d2F)Iq_))dzxxL={&%9N+2{DH=h#Bh|DGMa~M6{K3LG
ze22&*MSb8xn7NQrdm&~ulUoA({Z}A>U|#C^&KL%YiAzu@J>HghQWR*Jn~$Js={k>Q
zUP@3y)VXlFSsQ}?A8ZuHyEaPA{Vrz(NW@-7t@PZ8LJgD(nDQO7O0g0oh`xUNtz8h|
zec}yCfo@N0>tJuM!Ex<kK_#ba>X=kr)5V|e#57wGT0KBA5)<7;J4pvQSY-*zfhE?m
z5Hm{<E)d*$ESM{%N@)a74;`RrX`%|12688b;Z65rf`Vs@2)-GanGlqQpSUkwy>^Yu
z521XhyfzFvcGX|Lupm=`=;ioI1!T>som=gY=(jp7n?;xL+x7Kr=oqHTw@<y&ry(KK
zP8Q`eW4Ae1IphqKi#gBmDPb!O%81EksZ)>NaXx;`|I&(wE<z)i<lv8`o$?eK`+e*r
zBZ&(W$&|?^c}@s`*hv3A-roA)Bk@Z{JFAgsVrL~KRaXju{Js!+x;iM(rR$-q?LfF;
zzSNpPmvLBfCXF2KEiuvh<jE6VqKAW3nc&BddGC3^p}Y6*Bb}c5_U#yyJ>zUp)A4n)
zxnI)jR4>d`EJ28qd&VMFd4hw2U_D~Y80HKbdk?a^(*QpH>Az-X3T=m;A4yOR{woVG
z^t{ZNvev+0ETOix79y1tHPqC-p*jG17eYmiV)o3xhnlR@9L~T;mSzhk>-;<@=#5$e
z$az<<|5c2^V^9G>k(dC?O2aZnkFp={7Qf!ickh$|JvlGUqlE=01j%r1ZY%Qx2$!mJ
z(SXKe9)1cPM_B*?W6+riUFMIT#*_^kF&qjQlV~qVstNkb)^U|s>7HC#u@&ta>&k~T
z(B9rY<x~(778<Ifre>UDgsmVgT?VlFokrvl1g3utRr3e_7#Of>&p5ZX_8aVFz371q
z5G+UJe*jS%Pc|0_KcEZB-&j}Y%CUbj7poK3fb2iuJWv~-Ug72LVWf6oh6CuqicO0-
zgb+Qfr1kM?WjP?8f92N-F^`0SBurzNEu@`Rro~7$;Bf5TX@KRzg`d3gnsL$5@ZL2<
zWY_Bwr|1^>fp2FA9IUQy5-&%B00Je#<+)Q+Q<x%jK`>p}39ZD{wV>A@eF+9zWZNB8
zb@j)Q8ka7`sPe?nU`8Lh&fJ6Ek1(Mlxdb%R3^Ax-ofjOe4Wa=*hnkLV7W$Dqw~UcS
zihc>;F#n@(sAl)KGFW4(T8ZYtR)+fSZp)WZy}EKS7*qJygm)~5FwbYKvGvi5ciyIQ
z&{K<wRw2^???7sKlaPRwh9CED^U@81!^%hX6a!~5%9@uhaXh*Ll8nJ#gJWNa9dK#h
zKW*$66N$(8*y3#tv)f}WP+FSI==ik+AsrAiPed6*$Ra2`-3F=Yzz#0OA6C)-3_-_~
zGEq`eA}qvBaSCHAV5q%IcOg#QzjrStE)KI&H6w+{Ey3h-@Ap&Z`HLWEsHp5>Wwnae
zfBtt`O+Gbh`aOb-$MLmyuT=L(L5z2-kAG-T-vvy>&cSV}s5qOcg_a<Wu@bE1xwKNz
zx_|T5QTI)eRskCHWP=m>1GdJ*EwzS3^bqr9CKAHz2BN*C(Qnn7V({h57kIiDBV}VN
zZfeSmjr};{zph@!zWVu3G;i@KH6`U2##?+3C@f4TyCY%--IA;5l9E!Y^Q@)3QX(70
z6Y&`hP%pe&@Z&32zQLOP4c`vTT(hRGtgPQ>OW)X-Wk#Use++zOuu<SKc;ZT^qE%H#
zUEB7eeUz@!ZjE!ioO7e(#@l<Q&CNAC)(WNGp-hjCT`y8N=_Op|U@&9d0H6S<wsv<5
zJi2oIdcxF$SD4{I7Q5<TjCL=hkU5@}TKYGN0i5sVI9k-Gf0ByE8)ml+>|#|Y&nTV8
z$QS}GGEt^hR<jcmTh?+DCW89K9>gOf6#1XlQ>|I#*BrRg?>+nS{uf0oH})jdm%Jpa
z=-02WRleZ%*VPKrx`7##+z=uKF+Ndouco@%`|)Gn?qk83el}~Zc2kw>dt$C=4hat=
zXZ48IG<H0~ZH2bdhmIX<nhMZ>|Fb%lKMoERs~9S3H=;45Jcw-Mu{{b%aS?~hn3$F@
zbEox*S5k5n8vP5s*w|ROLC6=j>9%8*ue;Fo#NNGVSlovX-$V>fW^xMxaes!z^GZ(#
z@_z=`15Ci8dVy3f4%29DeXShtrM&6?W`2dfU?gQfs5JsaUXLFKBkwd>BUxlrMO$hQ
z16{_4iRfZvBe!U*K)%VtvZOEDNs4iDj{n4~mSIrU9lLh*jdcG0K8?GfuBwU@dZm5o
zw3Dm6{A1W-EUs*E_H^r}wd*(Y2fHJY(bs&VrW_rZXf1;jQ)QK+p_!3<RAPxfIePOc
zWZ>l4C_SFAdz|zysXr{RA8n5qlqM8gP7gJh{26ZJSu+<$&f_c(=mMKfFu<a{uG~3o
zUrU9{yN_+2OI1I3?dk!q4FvrT;aH_d>yjif?)vqseqp{d+nQzh(xk6RlNcJivKAU^
z)j3Z5-IrRml<hfj%^pL{Oa#J6i}+F&hg0gaqnA7^Stn&m{pu)xxgV?5(P{keRGhq?
zuBv{^Ric~gq0fEyzg5a9t~EG(XxIBnbp!a_U1i9JuR-g*e8fLa9(+p7hvQ>_@w%Q5
z2iZtk_g%$Hn8h#MS?S#Mi>Xbw_M`ZmNE!le9u9Ys-z)a5dBC6_qW3PXtl6hBoQE<a
z=rV3T3D+vF)FrUWdUW0DTU_Wb(@)*;|J?`%$W1@PPaxP$_m`=^^8VkJFct?MG<FA4
z0j3r7mcG%cZe;q}M=@xsr@NJwkr*;{!=RD@CIwsT{UJ+UidUr)`*jkK5DsROw~+)!
z<av|dU5UB7u5WJjMs^XBVjD8rpq+|wi-3m@V0mC-O<o&^%=|g*2<3+us^KR`RvZ>f
zO2Hxfyn>jWKuFd-+lb(OiZ;1mrX2(Ibw%#(@SfIAQ{l4^!Lb<JotQ*y%d*fudGaKB
zE-D|iD1CkXQ>We|V2jzBe<Znc*(jijqi3W4UT=Bp=fgf4sT_~(ZQkaF$tL7b(3!>y
zX2Yg!7;roQ23DrBhcFpojfaqK*Z?xoe}&%v^7{PbpJ%+tyEBF*o6aj7B_$j`Qm3RL
zN+&B??yP-OJWgMRV<c0-4%;4HL&d?r<indbHrKCRLkDNYAvC(k=@7-gKTkFRTmO&2
zM*&neQN{mmuYYTfThmk0T!90iV&UweGfFN4q4t}$((60XLSg_ybi`Xad$t0)#b=hd
zwR25$y33S5^@pVZr+xo!nCnnK|0wdBs#}BCnO`@_S_cB??v%-VxjS+4LPX23`+Sw2
z8%{m4mP6}};SGiC06zu-vaj-5aBL*8?i$z+9W^x@#VIW<w7mw1|Keg|-<dI#iEWGc
z)kdjnYv-O=nVD@__b!8<4b31M^-rI%KG(b}ZyLv0z%{*a{=A@b$iMg5m)qqn&xq<t
zQEz9JFxSAvqClQ+AtjK@V0BR7W-{Z9ls|T`i*}|(M!tuba;WUnP`J%qVlYevu&@ry
zx)6((nk-X`dDkwRxnBktHRW|=uyFtNRf^j)<84I5SBR>}Y2g$W-$>o4J_^r^T3UGs
z{CIhJL8aD=QNE>Noj$-z;i>fJ?T)3raWJ`q(jV`$DmbyAz!e8N)O$N<;x=N!6c(Gz
zQIhBv#FIMQS;d_iVIQ}nk&yuD(n+V{+?;sTJ>55ototz&^?2&-=gOJCVq1K~bs-O(
zYa1=U*3@9slOS=Q#6O#x+}O8o*0=*`HMo7H@f)qT(fjqt$qerG0xNFmc{4j*^?0zX
z`O!WEfnq-8bzv}|tFzPVee=4V*UD1y=)VLj?!&^u!eU}BO>Ztmav`QBzJLFIBnKrV
zbRPv1hr2O^a6a$|hnUzB&P(`tV=*z251ANrb@X^`Dnkft80zYF8s=~4L*{cUs|2#H
zI$^Tcv%cdX9-L``vp8Iqr(3EwrN#CO^B*F#_65+@J@(e1F8MvZv~kC^H0QI>Zf!-Q
zHpjv}n_kVfUsY0Sn(r$=I1=&IU@Dp|CEb&4|3{Cfxl9jB-+nx>?NKPl7M<WGpXT^`
zwze0-u0C&dQj}(%DF5*`>3NVQd4m>j>36R^D}OZU&~Rj)73UIo?ch^&cf$r7N%zk2
z*)WmG#|CG9v`qeP`Rv?1+p<_5N;mFk(^Go?Q&GG8(Tn}8gBHR!!+Nd>^3ZHi|3R-2
z`m)Jw>!v%C4b)_>5)ya?1skmeq>2K}o!JP#at|IX+@kZrn<cEgL54hCo}9d6CHRFA
zA3YNj6AOza!}m7JZ({D(t__}y(#T&NniV9Iy1~Jc*<L$yG9rCLhDp(KzUPiMkL8X!
zXGJd#GZIT#kD6mw{a;US+NxDt4i-CPoA>C^mPc#My*S`hD|SXi1RD-@xV@%q%qdfJ
zG&W*JoPn8H0g4yuCH4EY2YbLIgO#*TAMtB~$4YAbCSGU9ULJR~?^{vhvpT#!o!oTf
z>FuqC^g&xm<r~w|T9y$SBG)?7ec4Df)Dq$!f;nJNTgyoar2O4%PB(X`P=56Wf(E)r
zO@yIiE2^Wd%}7)gC=7dVjl7+p!$lmYBs*n7ey!#PqY5QygpaHH!**mS@E+hJcKQ%l
z7bYUpx01*h_HLjLT?>c(^1WdP?VkqX9Enf-Mv{x=g_4;BLN+^FMB%$ZK7lJ|{^rod
z7nLrO{Q|3HOQ3^H)4!4K@IJ~X&sqY~wfdiEN_iAnr~Tk84xsCtkMeY%*>YEsX-Ef;
z>l$^Z|1)3pl@<}H!4bkJgQdQi6rnM-C4g{??8XVwYc;mC!iWA$OZ^32hz$&Ipvb@|
z+2iZ7{F9X9TZ%_1BE;{Uq-}n;+QTy6bDr%+;q=f*g!olzP|~pSH-3ar<_Pi9P)Sax
zfp{L59qh!z?eIjM?|IzUf4J>DzsGDdGePvkN$2~!y#6l|Sideos;F%vX+PSzp6vSS
z`#;|i$-C?^!rJ3P^#Ap-t)mp8lS<To{_*DSB@@xpm+iG-y_?{h;wRxB{vcj8a9TE$
zvXg5!5`5)r!7cLj$C3T@cGe$-@1&Z=!t`73L;qH{4yrc3Q&QW}F}%M9ZfVTc3Cat<
z=QdY>7$P%pI{Z3)w~7aGjTX0q_`_hFL6k}yX#(Q;5TV~Oz)w6RF3{gU3ziqrNI{pd
zd6Axx(RfWzt1xBDJ!0mAWl-Gu`&mD^V@^|pP&a@!&T->}HUV8?$hbuRhV_9vU+Q)+
zi-29i`eRzQ(AQ?0y@VV%x@o*B`h5Lk#CiuVZ6@B7cV7_tL7qfeM`syEA7**#&wat_
z#-SO=ySl;?Lnzc81fair$Lx5I)ggM~F>|{x-y{ItWpT#BTPEG`(@yTPX;<As7ZEYB
z%hbfP%ADq$4}NFwK9RrCT925U%*>pIK7&zw*mL*-J)GKzm%n!qgMr)=#GJa7)i@5Y
z0F{mT04);YNR>HsAMo1v*RP+dz{ZKDgWLnKgq9vGWMSR^2fjadGfa+;PhFmR^?=2i
z<{{=2!Plgy?}CG1y6fyijKqJ09yx%cOa%A997FO_^YY~-gls-(GmAT^CaEDW13p$`
z_5d=CS*ECjgd6y%CmXDp>w-bZv`A5-rLSUcscOd(&KQ({8-cUZ9GyID&kQx-+>-LL
zvZlsHjnRu+l;Nzv#prflb#0-H#)v4IK#a1&%R?nfk496~l6A%LyNIG8;L?%3{CxWk
zR#xHw5Nc67ZK0sD<!mh?A23IKDg%iNa{1}tK_;EYk~-{5FFzUL#E>9CQ)N558N6o9
z2c(g;vn@4^JD>m(;|lgv$aAm7qNU?i<+yR`TzY!L#66=Qu)39K)RVN1AwVPIid+<k
zJMqXTHMM3?xC1d7p{2MlJ#LE@N;F7pN#d|DbnM5G$MKiKLWwGNElUV07>$Rafn(z^
zc+Nj-heZi<1JepG&*NBt{X;zKk)K<b{s3A)LdKC3V$lKLAwUY4zyLdHEkyO_NT9jB
z1ETT7fhR=PXv${0oev_}XE~&~y8<K{U6iO{l?#>4Xh1C6MoH;=RHGm>AwOTcPyt^4
z>3CHni7;Y-?4y_0)~Yv+2ndIMIhQNKZ9@1Zk2<2;i^C0^fqpTq-i8xXE_}lwSggoE
zPuFmj%;b+EDLpgR<&4OU`hg7?gyP3RU(|PDr;YX$>Frs0fovPJFFgSs9<6j^?=FkU
zi3#GQf>1C@euma4zy!ueaK1?2;D`Ohj6W6C6ECk9--H5nlc~0E$Hn#INTS7s1-N8n
zQpEh!)vH&rCVtd}uhyQX`V@$~*V~I+2<c-M0Cs=V-sZPD2^YEWvB0w*88P>h<Dhtt
zll=y-+$Nqkg)=FT2MCyKjcsK?+Z8-^>{3)6rUOq=lO<#?*AGu4X#?2r$%f-7g@lCc
zZrwV^iZf&i;W?(I)&KRmkfr?+Q=7;93IgX4^dvEDkNuo!(IM2qr7(fmIyCQ&`)`n&
zz$!ZucpgsZTc)>f-u&!YU73Y|Lp<M$I5DQU6{(HS0E4+mkjQpm6qh)LkA=?3$tf&6
zi;sMMKysD)!h;*YPao=Jp$G2qmWiq}$9YN+GnKCZG$BZe6Cs#KtA#B6RTAx5Q4lV2
zb#gsTNja2Yp2eNTsi&?kj5q^SdG5gsr;cPCW1*?*(`N23X=Z7e6*6v+-5K)YD6z#X
z?v14_zCJ7v0l-BBW;>-*k<JzsUBIfVce#Vrn-Bs`#|i3ce|CLMEz%DVU}&X(BkqY+
z`6Z5)2+D}F3O!?O>6}n1tj%sWJ=9d-r<R7+gs><EE@!8wal9K3&R-C{Fn<!{3Ddl3
zAzExPtYQv_goRsv3cKR0kL4o*9VoSt(vO3Jg51Cw<jVGqeh2!W7$1kuoaOADbz%ux
z3g)Oth8i#iUu|c0yNmRhT>S)(xyne`JDelwgcPYy_y5z|l?PIt_TP&uDkKTX+O%+6
zNM+w@iZqR-ETLqwW-_*G32}4NCem0+vP4QmmQZd|W_m-eM5ZiRDn*eyS}=8a&vR8%
z^Um+zpTENGE?>|0`JB)BoO2%C(+(V%59_7<A?4p)&I}L4odixRZbi#pofg!;(#Ss$
zE_PKqgo%9^cOjIuz@~11u3L6Nvw~LCEvYmoXAv?El$D|6SAl;Jtk4$9YRGtD7bL7B
zLJml}TY_;Ad|t4JrhF{FeAx%$D+nxu4B{Un6h=-As=G#zhqQQ_nwo`~*<N@6c1$nA
ze@IA7w6?ZJlwSbM)4<^fJ=r)X8p%;B;W-*8+j0?_O&XLCt9Lg;tdd53WveH-!4L9v
ztOq0qkhDo}rB}JehU3o?Af$oR0MP&+;S9=BX+OVBJ|9dc*b)rX(ao0od=PcrVAY8r
zM~E)4^FslHK(T@qZ$LN^two({NmvTT3qv|hRI@d`LQzqJJ7coxA(4*-Wd}|O!YqP%
z$8|^G&_poEr-p{j<0m~!+d5lX=E%xI3i`8VY9HNVrEDyA{QyHhTX)S=R%NBhF`3?l
zlVG?pidivK+I^9~Tn|3k8PQqYqTZt}t7XBN_v+t%xosNrR-L1kSg2Z`2|)@I+h<Zs
zdYmX3N`fWKcMrDlfXIH3BUh!J56g&5%i6|6Jd4sDC^xmlZ}ZDUJ$eg&k0-J)Rd~!$
zIJ_lnkeobb$PUa90Lb-2ZF_<ioyjo>6Cg4*%E#(cw`hxyqX0Ug8&N0O@9cZ*c^K-^
zizofdgk5J}1?2*8Z7AK?oL<ET@KQ(17N<}mm?19xsw(^;*Y7!Ui*I!+Fcc@pHw_;=
zsb$3)z_b=@#!c*SXvdIn_PqaY48L6HX3!=Sak=Os@a?F@&}b8ygNW8rLgtzfiT&V#
zq7fC`avpoV_&$+AypJ-?(aA|+iWp)HpLkv)Q6o{yUpNJ~LYRCYgWeB{0wU&WP$**~
zBWC&$1b%@qLPQXG_g6fw!T`VtPbw~v7Wb@DK<WWAYBm9HUu7Im0XyF7eF1hij)Fwu
zUFZ2<J^g2p={pniMtTtAy@-}N@akm^vNPV=qZu3+7=7qa_ppFBd{>xEGS{6g;^vl>
z*<5~T1ag#l!-FwjgE&EN9$wb77e4RMXD3WCl+Y=2;BrU1_3Cu|pVh|2#f9nE!U22V
zQ<AEzq0#KDzAb{plDOSXwm%QodcHNZa&w`<uR@>wD)`>$F6{exlf%f0%<`sC&NvTJ
zIqIctNE?|1$Bj*w<a46k)q|xpy8%5ZGq4j({-_=$oG6MjF&yym_Lh%oMsOzrALJm9
z5*45{so^g(ixu#~9Kr?68o-PjO^iYOHi_H7PW-?WzA|+LL_(fz9x;8L0--fMiUYCQ
zAFZus8Q>ZN!3jY$wEe1OfvxF=4IuUFyk-&ZW11y!U<Rb^NDG8>iWSlb&;nir7Bdv9
z>d<$2trsv2B5Eclc#YsG1Ly(mrL7zA0;LC;LGselc3Zc)jJMz4y{(UrGPdgePVGvm
z$VwBV@9bi2<OLm)QZ}Clg^to<C5c;bA_jCE=FnLxa4&Wu{FL?v>}k$=z}Z$WY;?gx
z?MWFKYDb?SvJRCsak;80i6+fb0m+6uroQ^Q*rWHIv!>y(eZ(^<yT<DQCOF`Wz;{6o
zwdY<Di`7xG1tUI0s$3>ocm(qXBFCUFok!gz1b~i%=J1ZI20ohE5|^;&w$i!0IgK?!
z#)k1i4_r0utAhMx{T0UQV`Z^gU&BPx^V5vzUASn~A07__?f=oyfoh+)DMv{d7pzfh
zd&Mt1LPA0S+a*1*+4?}u2-#gXbnL*AIm%rCN^qQwLQWU=d?7MB7wYLbk~kX<X!}b4
zn$Rjke4-UA5a|r<44@zYK&;G447CBKKxy24dI=Aia+*acy?yr%vth(_HNI~sK)wOQ
z)#DZ}gbD1fznpgFpj!lmVHA023zcz)c!+Vs1E|A1-UD?72K&}_<(Nklha+dy$=dn~
znggV-U5B|oN{NJMqbCI|vSi7f`{tD_*5kwD#2Q&8EG8yJ?ykFvYqYe2>Gax!?b+Gc
zAjc%rA&z}y5U><b#Wuh-C;QQjAi8YwUhGoGIt=tN*`%(8Dh}ukTijC=)^pmIDk>go
z7}HlOML^mB$#6QNzJ%9d*zV=^a@9TkY-^hQ5Dg9w%<_^Hb}CsE2mXS>2e(c8Gwi6i
z?<Ou3!@i*ZrePI;cJl>PRcI4Yk$50wBlCCW?YiB(9!~&09!Ec2l{<1*ts9pWxL;F7
z1j!Z`6USia<0T6Co{xd)t)rs@qq>Dv`=A3SHf8A7K?|XGA{q%eU2Icb-Q7`17bADb
z!~{_^?4)c6>uw<X7cY-dKJG~_aP_6vgHUf{$o+t1V`3RX_Fw?r8&(N^jwixp;=bM)
zQDf)i)P?2nSWlGHmH;K^wNy*DbPvr`we45c;rfPkZ*6ygg@pyui&x)RIw|FIo6tB%
z`PeJfQ`sijR;Lr%eav^if5{!Y-TkhGLb-AM<19Eg70aBOW-*z>{kQh`t{ekoNzI7L
zv{aEJVI`Qci_y>T@%1f=>2*Pz8?;;dPFKAAYwBuoIm0u+X8cJ*jFM7Qr~&AQX@a<b
zD}noU(+ab)qOy3S5KfM`CT<=Tm5p%zDDk%O8<I7ez_hluu<>q1+l`(5Ti=}UHu8OD
zWLC8=efb1EHo~OvH0G6#IgTe*X*<k{7jab*m{)6j@N8Yrv%4`q@6X-|aP5t?Io~o+
z?$ce^>P2)zzRNIX5C{T0(Upsx@8U&O6%`fyJub9h-?AdHq{dQCcV5#XflnYmQsNbd
zirr6Zcj66wAZG*+V&ig2gxxr(&HUV4=Mui2%UWJH)vB+nQ)Ny>&vK^on5G(wnl^d8
zAWM8Usy49c8=L=JUS*v5E|j6BCW1?ZVmU=Yh|Cq-fI8Mw$>VW2lDK+%&6D}4q}U(5
zuASE^QMNh$U4!D>kEPP2Jod!=JJ+GV(@p>AEa59ovzpRZs(gM7o_XqJcy*FDgPNjo
z2uYQ{txV!maYalI4YCl!BcF?^fTZiJ+x%loliyN@<}u|qqCPq~22*%sk@>$fLthgs
z;<YuO5DU03fqR5+Vpx3UuKrQgyD9~ysFnY_qDTIunOd+#WZG}eL!Hj*WR47ZI*^h=
ze>o<0!$U(=qX9CPxV#S=5{>PMjot#|2Jm(Xb0SH2ox)yMB#&d*&jHtRW{=?)(!^A8
z-&+VB;z|k}%JQ%u0VN}TI@5#nsH<h=_nkg-<`S3^nhkEEw+ogpXU9&xOlQ8bQ=giK
zhCiw!Zr|i1_Y6M_VgP{R`t<10qef71n`;ga3|xa79D-3OantnIbI=hYkD->$#=wXf
zHi3)_PjBz4@Ns`o@K{jza&h^tK$tAM%}O&vZi*Xi)dhm4(dsq&U>3z5g?tB0$kAd!
zvI&<m#8j}k!|{JV0=lJTlfFCQ1GLQtH3X9{!pX4nqJltd#d2rMt`+~L=BC<L&Nn}$
zu54&{1EE-(bVA?eIuyhmIZ`aA8C1yQEI@llK&45fC?9jroqL9nZ;*wJZWRP3`xV4E
z6FhDr<1;rg%?eEiVoDZQO#nN<$)Of0IeYe>$m)#Adeqe9iv;j|Q4-7oybguNl0}Q;
z^+O;uh1>@d*Dn<n(VyFfc3!kb^y2Bwi&-ha9`mK7-1iE9TjG62Kf-OcyyHF0l!=@A
zcq1PO(i>}Q<KMTmwOwo>e83s@d+QxKn0`7Po^8)DEx>HXw<zsKe0sVe6bl`12^LDS
zbHcd0j?Lz!>Iex5q2~Le`eK%Zki_!TOFLM$XDuJG<z!{i(IJD;{EW8pi=BU$>!SBR
zTz&|21^Q=tlqK@6@zvUj<{h{L^8ipyeS3l|0y7T@$lL<8+J)ONeF=Bs^;*0vcJz@B
z2p`ZmY1iQthv%R(Agw_3g6bk&U59L_DNd8%x-{L^y_tJbuN4;lf=EWp?)-m8?6*c!
zzKrIcQ+>tHJTzdrLs8Y%sSG<L5ME3$vr%@YFav>(C_w;Y$kJ2<YJg`5k)7fPy1KeB
zL1r<_kkh#jZ7~R+Na)0|n4q+{aQ=MUe67N6mo~OOq$ekxLRB?1MgUA5kg+@eq`F&u
zA|5qg<RDDOh*-+C&f{=EwIwgJZ|>-Dw6yevWedOJOQYe+$IZ5<p24GF-F$^b3y^`E
zvoP^0f}jd)SrC|`5M$(Jvxyukk`sBa<P}y7Qb{6_{*4=oBrGFwcM!U{3ARtfR)nQK
z>n~3co%X%I{|K@Rxmau9`mP3Bfgu^b{>B`17JgiX`wqlXonispAkh1uo?3%eWSGyT
zP}HOsa`h68wwuLsfA&ih8@|j^1{w=PPY5Q7^?eanBb5y-@tw&rU$=mc1~hiJz0-#O
z@LU}yvvQZX#avD`S@_f8_PK?amo)h+9w8D>S7NUv3_0}_;15KFS=X+mWMTJ>G5(zv
z$*{=3crgXqq@}&f(&WSU{uDo%><&u2$LV#|$g7^79um(9Dh(eYQG}t4zJlWHdy4J;
z(A0wu%VmNAWgTU@#{kKDW5%Er!lv0Xhx@SZf^C9mKlv%Ogj&M)Cs#;G+?N=lUPnhQ
zVBD$x?b2((PFaf4Sj=jqtL_(4&_)O=1PA5b9ddy|GsJIJIpbY8tGl_oKkw^H(+OBS
z#hECEbNJl&dklX9Z?5jCd`W)>Iz4-Z8bMM*jD=?s6(8dk%&Vrn2sl2{W@Rj9M+YuC
zkW<P;iCdviEtn^QYs0X3!V4|`AI|?p{xQMX=*@bx_6r@9_!lA_*Yn%%E`08nc8w!v
zZ|O#=QTUht`Rzmj&u+7n@9$?9wsbFTyS-kq1icNGzOi;c*Kj5C7V%L?JB6IRcCBrz
z;FB^z^1&D$a4r3UR5FB4bU}jpX8n@cz7TO*PLz86lQ?JTU=$8RDOWE6QYhvvb*fNV
zSmyqcuw4MeNW;KWkO*=Zd|r5VKqeYUr^9#{9UU!N?<eGt^u1*&sn27l02JYf0JeLV
z+FuKi8&<cCO>2DG8;D{sFHl2r5BPFyyZC}u^h7g`wDAuKxvC^gOG4Fh@eTgv8aOFt
z;e`t?KsAA9YHVnrYg7+?U2r1olX$O|4q%8fXD0!pGm3-vD2b~=X|xnS0OgG;BG|s7
zt2h1lV=St|@#8oGfyq;UV}}3xojVU(Tib2~M$;3~(1BHl1*LT)8{QL4Aar!;aBgE#
zKUGa+53EpCz2@5+1=FsWJdRw6m*@_88jCGyW|X>5mwxtr2(_^Dv7rK}=nDOz-WOrH
ztgrz3uYl%6*$MLiq5NyEv|perElKT2pM;96)hiIWQ|P0%t5#uF@PkojNAkUIs@;Gu
zD|k3ACI)xjK!w7G<?;J%bKJbea%p@@N{1(E?w5_Vtodu+HLpuAJ%#g@LAQi63<A<W
z7b<;_=*7jwSt`V(38o8#dUb@svSkRhxVv}HR>1Pv^XG@XXp~PNna>ZJoBhFfgDKQu
zwmP!V^(_B^h@m&-j6mweO9u9Ebv>Mw%j-LNZDau5Q#I8#e`s*9v+QR(9B|WTm8`at
zgqDGE$G8T`)S%~_ByZy%U>@r}oOG&<e(LHIWU-|kS$mzX8fgY$nmBd_lG&gPQ2FMX
z6$V-K-LS`5(UOw&ifR7=fkQ$%p$Y?i2F2YKM?>4#wVx{M`G{A=-TZ!4H1D4SGHuK}
zg!JczIICcU_~_(Rb<F=AtRg5y;iw|d`&ozpKx#cnt-~JmiHODlPT0Cod0`m5g5318
zXO;g+Oc%mE`ai_<^r#|;3E<VMuis>PD7hKY&C*Z^&YPzyXj6i=3C`71?B|#r6xfDg
zOo3Yo1AD5F9?MR<JvBQ)lKK-Oa%V)Z<2i|-Nfqmt9a8Xvl@>-T1K4UTERMg)`hbKJ
z(uQG8A|=hV&&6%1y^OGSp@S91(?U~{%XFIZs0`!GOyM3s!z=YW;R!?c2ylsR^T?5l
zkbiI7Sj3G~>PYPG_r#eu!civKb+xsad!q=$3WXw!gL>>y5nCPY%-tbiY@VrFpQw1P
z3F_SY_mxe1%MVFWl|g^MHbfNbpC7s>|0c*WUgJXe0;g13#*yqQ9UZf~-f8RW;xsFC
zp8%l(r-6Tm-sZ366)^r_Aw-}$H3zmWS6n(W@4e%3u2ik@4|OG)Le@zHEXs+Wa$ry{
zY1o~YI<<N6z$m>9YD6&fo5zRJ4Z<WOBme-VBqaP_K2X(ptO<c5Mnm;Rj*fYSh3Tt2
z;<78uBaTmiL+s0FL^r+S$B_6fh`EB4_}uY91&1z>yG+uY3xUg>IwJ?*2%2~tA@l3q
zwO#597OcBryd<nN?APYSNV`jnw5i_rq5Sba-L}q`ho`vq<eA;$5BOF6FhnP5d-681
ztq=H@MDKR=Ym9k#JMT)tk6L-ZHj3SxbeW#DfNGs2Zxo?#WJFxRFaVrbr)YWvL0cqQ
zp|2c5it=N0OjaP>ChG%XU<(mO2+kaU%4qUqsmjrERn#kFbrIxTSEm!gamLIFoj(Gn
z&ZV5T_1Q7~Uzp_Oznz9k)DIVWaYEhuCa#GQQg4qOJ{-?%$M)2A@JG<^L>NiZZ^B9q
z%yuVWTLRev|JqRJwXK`3uq;ed9p!NuBav1x2vt3qqQM1+zeQEIaXE_>2DTlOk@Mc;
z+A~}~6qt_kw?(LJEoASvT{P-Ji8!8A)iX|8s-{*EF8-^UZA#l7P1#t2LeiUCTh~D1
zH6HB6yw&rpAnZ<HBKu|2Xrt$9F+>w2$+xG2JLECc-k2$!8E$#^^Web1bWu^@%QdO&
zk>l@HNM*n3Yw<A<vz;Sbl6S6D;B~RrJx;?=w6T-|h|dC%)mxOpGSVeyqGq<;6!`wg
z1u2S**OYIFnuU^(W^QL?wbp8EMHcKp`<L;rJb)uMrq7tsjHH1nE0J1s5gHVjdeA&e
zg1`kvP(~w<%Kynq#D8Fj7I~n^m_e58v9KBqD^3k9fPOb#L%TAVs4qB;BApq0MJ0Ad
z(8FZpZNAU~26jh&Yav`rz1tWcR#6_^e!w4+J|q!|m%)pn&fqTsW&va5E&Lx#2<+`_
z>8?9gTl3WBxod0vl-k0?gRgpckkL(5klBP^<!>-GT{YzxTC0sW3eNcW!BTRVfHA)D
zZ8#AP_^>+w=!KI?F2(1j7>MNi4QprLgy}Zwk`sl{>d<LdJ?W~EBV6>@0-PVhqY%C&
zmb?Dn8)wFx8IhI1p-NsjsDxqs#~t<F_TWD^PjNK8(<XXxybPLsoljy6eDf7;{w?Uj
d@Azvc`4W#*_*q-1Qt>UtY=imw!gbD3{{>$V2gv{c

literal 0
HcmV?d00001

diff --git a/oxAuth/docs/Authorize Endpoint.png b/oxAuth/docs/Authorize Endpoint.png
new file mode 100644
index 0000000000000000000000000000000000000000..2daa009dbf0d3530eb6f723fc95edc1266ed1e5f
GIT binary patch
literal 802792
zcmeFacU0A9*DXq75~C(6C}5!|iU_EPjSd<?iU?9HNK+6S3erKEvBXVR0kKdl6j200
zr5B?VDFG1>kfs!o?gr`Y%tcZ2-gExDXN+&$`|k05udvzW_j{i8tToqMbFH}TR#W_a
z_LA8wEG)k(E6HoJu*{8QVOhfa>o4?7@XvqapP#J$P}cqx52s%bGw}PY(@Hv4EG+9*
z(EtBnA0}suCl^~Q?6=l3KVofn$kK$x&dzS#aWhjZ<3p!S)|p!#z11nbgoR}pi?aMS
zZTrCX8ppu5R%3Ew&8j8JDne!2?tB;j&@8pvsg|M?QT9fKpEt@R_R|v&eGmPisAtt&
z0cF?nIQD98alaha_*%2&@l$_q6-m{s&>KlEuGUtgM<fgVZzP>at}{<as;P}>JCkPE
zl`||^z}tO&-wwVjN<ZQ9zI%i&+gS6%cfaGuit*KvKmO~f%NzLj{Obu8&G1lKrEia|
zd4Age{v4$nSB1X)oqiJ3(){^f&nz=hdGN0%SVC2m+5h#-SwF%5OBa)`VmJ9ss|91y
z`VOoyOqb^4^OpE{UA*II$(z9YUq*XE#yvNizLl4kzqRGmU7NPI$JOMI-;i;%Ex0ba
zf{*V+c{Det-sx>O7x+h&8@kF|Tc^K-m36Idyk}oWRfGiV)O|b_n7YZCm!FxIXGes%
z+~nH#=)h(*@eda^trF649qS1(eiN$9%4$)zXCL=`{xYe~#1%SvBQJT!PCxh8j!+L7
zODl}gOR@~KexuCq7jB*Q<;_lus#6IHnel&EItWL~ettef^w5h73`Sz#J5&GZeK;t0
zdvcRbvm~`er_}#FlULRINnD&!Wt@pdj6vF_a3LW%Ik{Sw;f}_E%mwP6H#eJxi?R+s
z7#SJq(w8@@czkG$ZhX`Qw%82aCr5TUb>|AOvR=7zg*8aZPR)vM>h>xUrZ$LcS^8*S
zmHkjlgopICfB?=FJ3JZN&i@i7SmvER`0>`KH(@(1r5(B(#d``imR$c;e0OT^TV0C}
z7ddyx%U_($&L<)w@{ilphaRk(vai!;7s<IeIrWz9laiJ_S@GEUL8!`!n_}j{Yu<G1
zl&TNk{^-E7`p+-tska2q7~NbIu<6vhO|-BK#<9}-8aGR(K942q&eT$zT_kCJtUFP`
zgG1DHY=ptME@p0^8X_yBCevGLt<d1OX!8l}<Q453&-Aq~-u~Bb%67l?z1cob#;^0&
zsgK&~zM+JB;^(t(5}XFR?Qw0s4S%1XnPZW|9l*u8?(x^Nv+&a733&d)!GX^ou7rf}
zva;H=mb&#6$;l1%cZE2ORUQrTipdz0)Mw`D@m*QX+??U)ymKdh@~;j%<eE3+?4Rv?
zt;}@a?%liVO|SL!FJqsXcXa;LmAnxYo;td#onQX-`%a$zmJ$J>y-|ythx@#A&64=L
zdwNy~2nb|*E?y8|aOQaITgT3%W}|mckHgen%o4~n3DA$vv9h$ZtnaHbSNC@9eQ2m)
zYinyc^6{2=cA`atQQO-`3WbjCu{rf&0S50{ZuZwYnrlDMKJHT<ENZ;tx5XP)u2K)?
z%D=YOBPuFNd~BfM-kyhhEe4wc6o>md`V+JJ3>-V2+4of*ZTLs5&Qm0PfG>S)sO`Q%
z+L=u!E7liEGzWgFN-z(!%oB9f6TtqP!B83pj>-+|JUv#-7jIUx#5mj2P2=8<tb!XG
z8$3kP8RyQO`&5_VN?$E8J~rIt!@u*IynN<ha|rLz5NF#fy%{jI#HMSyn&}x`fi6QW
z#rG6_Y6^9dEKQ_Gzm$j`e-lbO9%Yaw$>t_s8m%w&F8<U~nKNG)E~7&VO?m$Pl8QQ2
zV>ZKCA}*}|+}!Munwn}qHrQ<3`05IinZujIY3RgSSy^c@!pu>GS1@{gdz;0lJD0+(
zAN@RsBeTIrj%UFtRYsNvr=p9C%i*I(6|3S;89zV!Lov?&t5>g9_ni^R7_qc$Zp`*t
zn&Tx_yNH$b$&r8Dmv8?oGgR5vXt2BK%B@>V@eRe1S`mruaryO8PYP88?c_7D1jd;R
zR=S1#$=1gk8yn@z9_+biR+C(uWYzqsCdJOW<K46UrZR(#zM@A90~w4@rIA`+TFXo$
zdj6Wn%fsvZMMGXb5XU&TPWQ>tB5(T6Ot%HbEpNiE+_<qghsW{c(-UPvuuR?{Nt<^~
z&&In0GBU|M?SFi5TX!thKJmj}OKl}Hj+ca6)Yz1>x1~>+;%(`CrGbraCVp#rmoe5G
z^Qk(?%5nrQM;;5Xg0H^Xs>sW2fdI~Wz&ibU-1zFZH}@Ghm`LMlSy_u8?u%Kp@kjwr
zkxs0U0vU%y@MhD!bU6~~UFpNL%vs4}c3V!pTZo(9>FxUE9&Z*FjE}GW!NX{GT>F~N
z#0KvH_{_)o`s~6u1^v}l>ebdIyRw9ST&Ekq=9k|V&Bsw2;%V-~G2w9?Vcyrcm%XmJ
z@#DuG_(<Odx;hVzwe@#B*140RUm7H{h&9exm2;{p-fQv3BQP}HvCo$hJL0R{3k(y?
z^h+P?G4;{0YYNC1F{ySPAC+=m2Z!33+!mdPi|$KYVD7tWm(i!!cPz3OA8og}7NjpH
z+%`V$7#Lva;&A21uKrk99iK^wpjNni&&Pin>ODlfT}RstQ>0^*eOECHHWp<@Mg$*-
zYLkYCw`hBmu*1x(b6vA_+uOCYqdqcy`@2U^m4xr=cCM>6cj>v6INX`C!l<gbVYI)_
zhkQ~;LS1@QkQ$C&{XkXS7{^R*>(@M1u08*VS#&%r&(>0xd6vViBW2sZ=;ft(K1cq!
z*<ou?9<6Wu;=(LA33|!Pd2*>G4xIYd8q!!%*4PfIzW$7Hna;HST3QHO2iF@nZdeR=
zB;=U84p+S@D5(B0_@qcy3Z5ag%BiZZM5-%Qt9@|FP<9)148(k%_{C3n`=z<NczEGo
za?hQR&pi9XjH@|X;i_)%&Hg4&HN}p-zCAG7<r=c){@!T4Bqfb4eB_Ws@pK~gr$4b4
zp>zqiq;<ue+XvFl^oqBH`rcLX7gFHil{sT=-B~U1HcCgUy`Zf;#%G;=@<PG;M@&rE
z1sgi&SXx;%<j9R#RNIv6E6jeNqoY$CXOb`8S7ChbkBhT&bL7THdIpMpT(qP9=t(~Y
z*Gk)m_rHa^IDrp6T-zMt%7ZiFUL-qw(#N#cxxdDu!Ap!o@c!QWyO*m;Gc(19KHc;6
z@#2+}MIcG4I@i)U(xUDvr1@UD{qf8CQZ4nG4;y>2zw$-FG7VMc88sbeBqSs(-s&99
zdVOcR$3ku4Jr5QN1l!lojmgC+zGs}{Eo%BUDlIQVz^=w--^fsThFYy*n2P^hct-`5
z=AVE58R5q+llDL}cWSX&W(rN>wzHNe8?wEaBRxd|Iio|p!re~&oiz=Yx6gHBFy#4I
zafiYsP8VyOdj7ehw9*JKRp1GccCcK@<`y*89-Sxwmy-x@y8;h0xPa?&t}Z8QQzfpg
z)#X^a<s{?I_DdX<qTRKQU0#8Kf%?(?u)1t@mu_G3Q{Ax}i=;OmDGXdp8{s-WTzAFS
zcL8kH1I|)bq8b0|{pXCC9K$vPb>pLT`=1`u(2mxVAp5#5VReMQhfaNdfQZk-nDpcd
zQw90bD4mTk37z(kwwR3cSA)B5ZmMia-e>4+<GEC9orD<-I2BNY*;{Uy12<$`7$^}7
zmqnpH?r9=$+=O4v7#}rP>3=Meh>&DFHZrJ@V%xDu!t!vGUeX3^@&eeJN7&8)4nZgL
zn&i!$sXc`?(fu*5qYsr1b>BWe*Zs;0#q6QpwuXB?vhM0~qnq}|7;xLwIvhQG_;9A5
zpjLfs4$n@B{udYL_@=}JBl70j)WJ^nXSg`yqoj(T9xrJe!8LDAn$s4oXZ6o!(Npi9
zHV)js=j~4JKut}}=}WO<tZm1;fkt2T`g3#EDHZBGJF#bEAV<#opIc%PPV-VW0!=iU
zIyd?6%clE;3yHOEdGjha*9~Ehvod!8{@1hY;l8fNg{CoS9B%S=Uv=frW*2Jjw)4^d
z3KN%38%aCh$gXQIHf-E@&%7>OAvi`eOhwPSSRt4B`NK<(cF#mP-Bf#v!zLzK!ZE3A
z^Q1p-<+3Ue%?*+<Expegpl_>_I?|n=J7`)S?RAOg%&~wr83LwO9}5~2UB}0mdBQRB
zSkx68t*TtjV)n-x1=_wlE{a<aZ;N_z)ynWpOPEpDvgE_LSH(v@zce2D(n4qbSWU7G
zFoz%?-;zzo<~IjgsWA;NFc3-^SbWa5qj`RU3I^wE(;RbfniF2$9LM_9!)vN|&-{JK
z!jcGepYi_jF+=UB{i1{R{z7~1s)xwZHHqUO@)_w`487Gg-_^q7ZVFT^YEhr*=d$<F
zfjv>rI7JM&9_c1{S3WtaSeNd651u-=dCBGz3vpUJLPpz<=H~41;o%Me##mRL0^IE@
zHS+es9^qP?B0@D>PM`nImAJ%hyT2L$Thy}g)&1Rf{%~SuaYm-Eq-}kbpYH*~&mLel
zc(lL1>F>|ZEoJLzSLZCICOg>J*l>R4JnxHhI6JM=a(xAIO4Q|oxa>Z?ULLL<!UF*A
zo#!vCm>FMGjbqOV_ijWcl$$h%V@-we4_o%^ytW2sThurkxL$f9CjmlZFvJJmpPz^_
zVs%a%lODEy{O49f`f#Uk@o!Tu<Mgtr9Bp;Z>@LqUA8#Dpf%~<)UXtND-pIVlzq1~P
zO2qf1$%mV!(QXtCQ=HPRnhVK8uFSb;cWKQU;5Z(afe(%1Qc_ZIU~YUD3tpUnfgr%B
zU)#AN-e1q7ZG5b2ydIafrf=lxdRV}s^#`}ci957LMr1QsS6ppMe*vT#+-Lz9*?_ZC
z*^=6|$*dX(Ge>S!j!5d~Kce=>-u<b>d?P%QIKq<FkOLx+$1~d<J9bC|hh7N^O3Rl>
zsIk@UmJwOKn$c1c(Pdq$Yo5jq;G^bkp44>hSb22Ky7IKft2^so%n@0$w=gJDH^EFA
zeml4OV_~psy_>+*1{eUxV$Qt-R(f~-xVT8x$sUN&F~Vx&#*Gbhv=A@(c^&b}dN`um
zTU8ZdKg{?=9;ub>pcAExj{TjvOt|lzUxxl4>l^X0D8w+-S|`!-!2U~fx!v2N_a{~)
z%RNM%M|<iR2w&37??bUDsL-J~$d0gKE)&S<di7?@eRLS$%6EE4s0A(A8L+O#I2i6Y
zJB!mWHOGPf_}}M#CgfWYXR=dXp39-}im1!Tz<tfIyt!6K3$C;Bx{g>_O51;auYZkq
z&QdJ?rem*{@x}YQ7y_`fsTgiawrS&t2(o==*1YLN>FNUsW<gwCtv#F0eEHPKTz-j*
zZJ)kP8BdHH&Zp6;nqm<brbkeEz{MbdONH50MbbS5b1APds?T)GWnSboSft2pQ)*WJ
z2q&N#=OdT-?wM&r**?RyW?y9TfQmJ5*7{Rc<S<gx`EY8fp7%#g=4`vw*w@{Hca@<~
znxAxWP86b{S8rQ+z=`;{)1?}U3IOW;;$12AhclyhUhK*kce%oR{^tx2{}0{yA|e}V
z%hVoS9Q}Mr&a<E(Zn&tQ{1bf{IeAuAB>0|yV-j<v+8+lMx&mZf&4HVEXKc|UwRrL3
z;s<*kHYRSeeL{izE;1{@QJ}tu`%M!73itQ8_c#cpzC3|&dhbkctD{~&e6_c+k4*gj
z#qoA6VF4Vb1|Kwgac*oYI{E;mJOQE`6BFyslc6B%z1ncqscR{`3T~&aA@zmS`{@0#
zl=&PmT0FH5@3+P`%bl7_zdd)MENO@5qAOg6_8%@<yxumm!*UF{*^-RW4)YaPl;q9K
z%siKD7IFb-4^Sx8)Uvm$s3E)Vwx{4=(U8rpavneJ<S7UGt;os_-*t;)u`4ori(&=N
zj=n%-C7h-mS3e_y!@J4U!|ix681C%C*>glv=dV5Rw4zCZ*Ja>PcjBR!e<|3$t@eG<
zR7DX+p}q#bT^EU2XlA)rMM_Z#9F(0T@(_vK2JPCe72e`}9}9zY+Xq>z40`_heJO|I
z=nMEcU%s%aju_|0D~cSZH9~tH$e;h^_p4H~IMc_wOx2~5Tq2Mx<~Cr}_NSe(i8bV$
zT9kw3Q*=|_9b^&wfVUoviJ#RXrAm;u64j8(%wEbGdy4bzXj<rjM89~ci+1*&j8{cP
zb%zRJe7-r6ezS4GOZPm`cB`(gW-#_AnAPwUNg(ogq>c4&KK=f=JzR=!10^%XzyUSE
zJvH7BSy_=Hyz7{omg4K{`($5pSbnWj@a!(hp&*20MFRr^%Rm(kOY_+Uy{%<Pit9(M
zUiY=Rf+A4Ju5xwJ8jRWkH>RVxcEouo-TjHj33+CE^VBVEZT)&n0931d9`1d#WDe&#
zPrzYp%nSb1d2%D`j}!%SgYpo1<~i)U>(&;2pE+HAI$VG>UXzJ1_OD;uby#0-XFj%&
zhv1fPLzP*|TBJXZb9%O%tk}(0URS4b4yMf?R|x;_;n@Zc)o!IV+U{J}n;^o*IX1#$
z`D(caz-8Kj6!E$l(@Q=+MJMepr1W`}>h;T9lt_qTsr<?pZ#lW2QXu|o!dI01Dh`-D
zI&EQ%MGy?qwRh2B-`#&06bN&;Zd_J^Hp|1)t{EUog(u`pYosU~QCi+^<iTl@=C0tz
zp7AxjkSgg^eh`w@mEz*HWV5^H99I{ylNIxml9IC4J?QlKdR6a-rvui}9o}4vVd|r`
zZItRWf$&Aah9thUVi(d@;%RPbVmD1gX6V$V+M<cYZDiV|+~vq=Eqk~^Ow2B#Ei|7{
zo4atdk~if;>N36Bv39f9I?Y2e$-p^C3te%|6qzD%9gY1*;El6n#r%tE?SL299UL64
z_&;lQWqao`3iIMzY(74y5A@6B{G~W6Ps6^$`Ge!sI<olvHVwFrAT`Ww*x|KAA;+8B
z!?}~fame_{QF(bMkSNSIJ4F;Im|PDC3JQ{5XEtaJn3`1>8zX^K#Wx2D1K|iG_70A9
zdixJo!!5BDU2`AoX;#F$uJV6Gc*+84vdCX}-@3jf1ZFr5?3eS!v(GDs>qFQT^iORn
zBLK1SXrU*g)IGw3Q$%g>0FsGVFk8n!O6Ikhk2|a#k-_-@FppJvfDKS^Q4bydb~jwp
zchd;S?g1)dRgPGVwN~}%m%nGpX57BL?B=H9Y{U^U81NY#PjMVS#{;GsJ(6)A`eO7C
zw&DPxGo8@tr^mHo3x#)q#t`1X1D=jzg`;#Ak{aDB76_6moAwE%17nJJrS=#B7vg}6
z<&*PnI@h9eG>F}<+CtG%`bfd`#MTE7RW_VRD#uAWtZY-AXhFUY#M6*j(G5^nSGsJ4
z$Xqf8|1s|qHwUef+puca&4q&Z6y=|us@g&j7+200?>vuKDw*hEq-+Xcba1>a(xb|d
zfH(w#&%<iaIoY&oit{_`ta~JR^1$r2oZWTz0ANER%w0=T4wwOm)|V@zJ5M;)vMG=I
zBm26@XdLBQoSK?woQyHCzkXY+8TA`Qo!i^aH`*htWl6?tvT3gnT_R={$W@0|#+u|`
zs|kK$l;zGBmQffar3iSob8SN>(HQVxM#Xm(SXnh9HNy}eIPW_2d=!i+!y@oWoft#T
zSle>+g1+!bTJ_^Y+mWR%aFlLVcO5D*FzotpiPsx`u%?ifhn#1w#fQ2Xb&+ttpp`aD
zxDW{jRFR@DMifU%S9)WjT99OxP<;5#dpo?`J^L@#$xT`KW0C1IDL~AxJy7J;hK+^d
zD_YBALb@db^emOT#qlZFfuxs#0I0FA3VkT8rGzsYcafZkb6AhGc&+VUFBD>DEm*a1
zIQ5MtEhfm7s|_&d>^=MR{i{1{9B~SY0Z#e)NAeBF;!3SLRr#(kc8a7ueWex;0@n>|
z)Kzu{YsyTi8(k-1fc#4jnMUl1vIj;%88|=o10OEg4LV57x5j}u@a%*?*E}9+`ve8x
zh|w;}nY(&>DYq-vv)a|z)YQ>E_#)-QUKnh2YIj~x;o1?2!lELdvC-iiWOL6-k|-4)
z?JdtC-`i-6=Xzz+Hn#NfmpOmvpEtEa?fG$Urby(gqOez_Y|7pMyD9tH0#Cn~WdQ`3
z6)0iFXH?Z0H9nj%u6tMw#?Sy_$pb4dg(IA_F7f?2`_F&Ryobz|NO|FX(VhvlXN1j?
zTf&iBDUj!3BB5g!-cE#0YiT4aD-#6Mj;`9Y2Hcg;FTXF5hwWbNk+f-Dc;kjiPyeEr
zl+NTuAWtUi8$>bDxdo>r;w?8e@G39Q9o3CY&&3-jNH=xa!IchXa5aQ;O|Duw`bc*x
zT{+hP=+!V&ZeZIQgVe<R&Af;u#E^10v<t`$DyJe-%B`_5bRF##|9IWFzEG;mlSk%^
zJV*zk7x?(PySu4CK@28k<Ec13Wb;(n*!l67IfL)d&#N!b7_-T19<ArhSly#<#tV2W
z4v!D~lL_B@4``S<(BPv;pbWkhP9mT_hu2k_Qh246Y#JFZqxet}&15x-G$6?Tn#;X}
zmTxAH{W8=Rcwj8C2&wj6Y5jMRxW=CT@S;&7q1tjM0ck1yt}i9(KKbiX))0zeWhE*D
zJlf`9fZt=t6tz*?nLT^9QD=1$QFhs|ML+2TL~)D!wF#j^n*Nb6y{wjq5FR4C7>rwH
z$%3-O?N5$@C@p=YD<-6Ue?DO8iBg8InxvqY@>EsrVBK{1Rr`%wa+8DJvlC^XDxWkP
z#FQnN*B!pmE;l}?u6k?BT1o3qyAK!c602G0BRg~~$}mF~=CVgX_4<6^G#@~$OnA&2
zfmLuZ#E2044r&!?9WU)4mBGM_OC#-&s!_JY&1qnj($fC%BOgsX24(9LZYK6opu-zw
zfvjyaxfd#OS;#wq=$C4beiyBua`?tZZloi74@+Brdd(N&FEiLA;<~sW4s5QE98xUW
z(MGitB9E4uB`zmY3CW4dCeycTwwTvaMWL!`ZZQ8TKy*>iUVcR>pI^+$PYr!Xq&V!c
z0ZBV>DV0u$1t12pKr|;4RXFYt*D(jnF<RcEffhR`_ZHNTz!@n{vFjQri*aF(N$pm_
z$raWB-VpD8wZgbI)d8Hl?%^>XmoN7wIL(xgDETZT@I@zzkB?)`{`rXJZdB#K)e~b*
zgc4sfrA<^`LD^%MpsVBv)5n#He~R*%6v~UhozJzB1eid)QqxhKLQ-d))hb6E941_W
zO4(fnkE>GS3i3qiKG+wNUf$LVemZHv5&4yNyVkV7-agL@Y^MmSHd>8LucbsX#vd<P
zh2$^@+1Iw%7(*C>Jsi$GyRKRV%TQfxnK52%0f)`$FoML?8!;L0I&$PlHYz?G=J4)w
zrLJ6?i7dyRb;XWM!||bV?%FDN|LYr%s^QeyUpjXJn|{|Y!)3U1_~tq?eQ7`r1^2gb
zZldP3seC_|!AoaV#2Wji*oU8>B1nIYoj?)Z;Y_rZ)I#l<;M<X>t&P)V77`aib&G+)
zB3FZzT7by~x5UgZool^uG<Y$cA7o6nG2H>r;EuB{%v#XyH(gxLIw&wvc|L1-5Drkm
zc7OZZM^*g?Cg^c2O%_U)e0+Ct%B6zJQyqHjaTN_$6nWgRJ5)0={_x_W1~TMh@F-u}
z%0<>CHD0}s4EtntqNq!MN*#aEqkS>8W*dpeVxmNmRiEWSQ7-mmW!!$$jPMV?#L?jm
z`Z(7OfB>+$_)}FJZ3aH#^$fnG2ilQwRf9;~e5gvoL=`Ou)b~=X@D5Z?*8uA;A|h<l
z@i!|8MkIo4pfa*!s>|NJd#|+d+LUUr_wa3=)&gYZjRt{P+koK0%35XHTwM$QJ(^}4
zBaMo*?eGZuK0Q|C{2pMRWeuEr%dX2hpNRs30IHu)X)FOrc)a@S#@=po)+H{JwCm*3
z(c$kYT7UzhV33mb?8%QdwChpMnXHNnO&{T;?!X74JoD+EPi?~p2v$ir<kSI#QZ{&G
zkN;yGi@`hcerB#}q+j~R4IAp|G~%<eFE8J21kgy}@zp>7c(u2;Q!1usk;TqD&pUFv
z!W68n1P=ledGiLGQE!wvvTy<j%#oithMF@m_h<S$xsL|f?2Ua(wE4}ET9*XhmclQc
zHBtxSPcCL<#Y=_WzC)Evp|)uIT#3U8Jw>=|VuFm}GKd7-pYG&9X$sXq`R)SzWhJkh
z3ch}Ji{0e;u5?b;QT=$`<m=B?^FIOJ1MDl|HV*mFTj5yOFZJbC-N>p=&|{2>y>G`5
zcWeR1YFBhgO??j6{t?4T+~;?HM(ph+tnLm~%rot2aYJ+cvmG0qXHLHE><o`_t*N(6
z{qz5ps6mGW9idYHA?X<Al={CUnfM>2-}oPOF<-?bXRm_1NrvxenkxtBw+CdAaNLt8
zb_0=!5y{5W$#na^sbv4`Xf0?HW3bqww(S**#LV<SZSpm3ZUr}iL*WrD<Cslel5)6<
zq0?s6r1<^LZ+$>PbAf=GC#sd%@SjFF)co<bNWUAX?n<A5aKQ;ou{!qIv`Qy$&Sc`o
zaxmj6O3q*xPXERuEsm?%*IND%xc|2$n^v14SlmZ~7HK#QT@SiWNhw&`IdQnCBt236
zLj^5w1i`r6r*5><jwv_ZBX`B$f6vGAsbj!WQ9dmz8ct<4<m5a`s9gdcUfIs?7$Puz
zH5fGi&ehZRcsy)MV$}YGvWP|Erw@Wx+}PqBcb;zO)s+?ZfYw{Qr{xxxIi_?r&t;Ei
zxw99iIra}g8B)S+5&-^^yCKKN2Ps~t)O2XsdLv(TN&$4X!x>20B2O@)z2xUI21Dn`
zku1T8KsNJ?QQPEu(--6?F}+|R8$g6ob)ELAM#H@+UnIkm%3Op2tre$Nc(vBoE23p$
zmV}ILLhZ4Ho1Y&%g%`PcV#>dJ!^ZDD6ANm{W^iTv@h2;<cCL0@D=aK*;Lzkx0PGF-
zw36y}>9j!Vcmhf%ptbcWCe&!8Cji83qU=(<_5Qu@-k@y~KIOtrAFN7su(C!*ptn$a
z1s}GalWYz}yzj1Q&(uw9eTVeyQ+bS`6SNO4-kNs-aX68|yMdhh?&X`mzWg^{S!n~L
zq1HL8*-7+331^G<^y2J3u>m-fuV(qg@}8Zc4(f7~d95^5R5v?UhlRrcV-Nm)jw%)<
z-)=Uua!Mbj<blX~Uyl=)P5cXz*pN5e)2HjUcE!}oR$EaS4=g8@>Poo7N^uI;654)M
zSg2;VaB6GMvYAZ643^skHC9D3Gv&8!<}(6MN;TC`DN_H@W2@T}-$_Z^?(l0OhCCp(
zwUKv+OR3z51hZWbBqc`Dq;Dq7pRG2jZ`*ofhzibI*>SmaXrN8{ZYAzc`+^Od&8icv
z6_q?@^rla()7fre<TWeba8H`K`1&aQlr7+_IKeozcwglpxJ#vx8qvvXWMNUc5HwlZ
zJG)^cL}4@HZ!b9{HZ9+~?W8fK!OJW7)8LKt>n`4@_pLVk*M4-H1B4TFssQjzz8AU+
zN6Huug;4Xi-5#iIpE{&|Zm5BNIlJ!u4*8QPmx8AZ>RdE^N&J6IZ^r`Ean<cEIKKcp
zT*5tV3%BK`U4sdT4fYoA$LhPkN(I0AsoScnBhBtjeIE;pALq2C-Po;Jv*W97aJ9(S
z<-8M`?DbWIxZB|CmmvE~SE8%HLjG^Bf)FKL1xb~XS4`iA->*{+;I=9O{~Ff5S%4rd
z-qU~I&G+@2iyt3)X{}fxF#VM*EKL`uu4MPB_W#3W{h@3#Rg1+Z-cFrfg1ie?TelcY
zyV38Sm&ac4A!)7=eG?6r^}oH43G@r}nrs}p2h{al0ORj0@7o2Jz+J-f9?lpY`)YX#
z)4R5D<{9Oltr@OUH+tJC7kRXs^`*(*=W>Dj_JI^)O^s-t9+VhH&{2VsxbodWc=7ch
zNba^<koNxEoQ2c%=d+eyzeh`MjOkOty?pK5(&6btmlxv+u%=`;slR*w+!9%4PGhcb
z3HQB%r{;CCsD}oBXK5<a*K9RD)}L_?MH-9SBO9}*^asI)irsXf^DLYHjn2vIfBt6#
zsPtm!Ea9mZzyWIQo_4Nz{L@hCc<iy_yZAo^CsYOC{Z3GtPAV#-x#8bp%2y9@nM0As
z;jkW1dW*NlgLQC!KYu-g)p1j9<nk7R2v7p7y0%6KE}lOcf=OnV>$nsQGvM3ug?(MV
zcO+TM_Tl9v6_lMH+a54Di==F$&Q1Cy7M9)7U&Db7Y5Wi-=~1JhQUG**S3kw}yX}84
zZLd$;Q05-Nf~nhivN0bTjtWtxWSuj$;Vi3d{uP*5S>;As)Q!J<DsJ(PEl;-XSVGA{
zfvT&(v`1Y%KElg3@$Toc#$dUNu~gPM6~a`%M}bOZ8~fBpiys`wSUK_YS?3+dO^m=j
zk+wBVN=1ce0ecYPR9gEM=XW3Z-chl{iy;;hIGFIndFxQn5ga4o8fd8R0!P90vJ6Mf
zlO0%w_ppN3SF-ctCeDSz)F))K--3Op!ZeY~(hgh@$j0mRdD|Cc<{LI_c*89aiDa7z
z&Q$3BH2j#k=_@*TJ4LM!jYfIj(<3dAXQU#HpU5%sw&1sGrkA#5T1nl`sV3PHdVSMz
zP1Rs&3DN*;NV5ewZUilss7an5MfMv8OQ+s<(9j=Yfvsik<Y~R^4jm840I2%6N-b~^
z%FjYfQ{ti~GEWd*4Me{kJ~C7lGX2#TzplwMO8%kv@#L1;Le>S&rLyhWT$wMgKY>yE
z(q6gI1=6}~Fg@DmrU@yQJkDu%SdF@x52f4!Ax>;y(p1OR9C*4K<-S{i<;d=ifsTL_
zQo!}V(_^e8n*xursdn1=KOfsZeP;Vn6XylRsOn85kvQ-Igu>G|JRUH8V5hI2rQLPP
zfWJQTKSgwYcHAdTYF^QU)V^O**<S2kcJ?;Muj1>^&&+Z^SE};p_4!|aj+(tkBlGPE
z<}uwz&zgQMyc^-Z_hD1qTJbq2=B(zspA&gtn{dSjw+)O#R|V%^UVg#Jbs$OI;ObU`
zUw>kz#|Q^Fc0hs>W7nLOF%V04zwFc>lThR9QiSeOnm%Nc&z*fb>p%0tEz75!($w4D
ztoj;XC!g8+?!vUAo_dMWt;^HSX6l*a3%&;H$!Gq1G5=kesTG*~=f5^Hxeot5O;cv^
zUq3Us5SRad>VeljjGIO>XgEu>Fea{+k1sAR?k*_duxQl6bcsTbB%=LQK~$paLswK?
zG<NSsZS40Yn;77hXIBlkQP&VEhLbe_O1d=5o0^+*Cd&e-vq5Y8r0&cFK`Qi@^4AEt
zHEb!EHY$-?pjx4bG&fIA4810YYl;<lxlxw7|5_HX_GbI&s}(-lpK1*`sXX017fDY0
zhH~@*tkSW2cRZpaX99kmb?5sQHD~@wnGh&Hsy#xS?FGuD&Y;TyFl^;;S)`W0jWfza
zsK)xH=D%^F7P7jLk75l(*^?L)5-~17w+HR<60eB*RvE0_h3=#dnX$HvF<}!Q@M{6d
zozP6zHrb8kkH?TYFTMAXc@~MlKyj(BS{zUg!QJ)teJIR6m78Gg92LJIfw@0k;&rii
z>T;~}fFL9rlurYiXM8{}b~0UnHr-KdUpb5-#abu~cmK)lnnpDchk&rrlkc8R)G4V*
zMAe`PaW0e<K%5WabdSo}qg#No(Lq7sfuw}lbLMEJ+d)X9<ml5;l@QUcp{=dmntb=}
zU455kl=znn4i3g5*}o3Cf%KQx+lyliGme3~SG~C@vU+sk!i6h`PvMI@iip#BUd#Fw
zVVpgm36WzU7Zl1eR7#MkZ9`v<`i*1zoy_}ueqXwU+L}11SZ|W><M1x9N>nx&8)=r?
zXDdvH&hPv;{KB;osRcW&h^7x3Jbe0>p!#hIb;L{Y2G5Os;m>B5fKr7tOut(T7oBG&
zcnV5PgN5wuVI#C29}8|QATgq`x5O%wQGL4_cC84tN1<l@K_O#bB67Q!q~<Y6cqwa(
zO7OLTT8NOcX7W1CcO7Zqy@#Si?mH|<A`~sg$SnOUCODj?<=+_-l^iL#(L|qs6a@BZ
zPy0!rG16u@uF?vF*?~gR#V?5os6?@Wo!RMv^h78nY&Ov}R8S5?!IlZBY9=a4L6)Q5
zQl0lh3;Tj_GWaucaE9{CE~)Isol)~cLxkMu@q!RJIaH7@>j^_P3yJ$)qX~}G@6vaR
zCjZMko<L2`5XJ!msk$dU!R@-FqN7Fx@Xo$g=IMh+8k?K<8SQ&)jx<%6dTsoy&<XP(
z)QmP@b<B*05V5aC3n6(3@9$#WNC3}Z*h7ri0DXx!rNC`tNZ_-e5V=x{)WQ;(a(HGk
z?J>C51}J9i$VX7$C62QvwlWK~zs1OLiSpiof}!xo^P{fB08)QuB<WJ`A9&Vk)};%9
z1oa9~6_qMQ)To6z<UJf3CR$G9u$-EAoI4+ZG*pB%YeGH2%+k(<9y=SH;J)Z#XhU3c
zNHBJOo-6~WXUDc}+qlkrx>KC)JUsCCJeSKGV&hV&R_H6BJ|Vjzt>fx7Ydk@&Qm0D2
zqTG-M7qk(_I})HTIBaAN)zdxD!eP<6afg*t(Qd)Y%=%J>8(CFOmpOnfUjluWH+>np
z^hjS-4CB=7KY&7|>WvNjwP)HM(ak`lq5u}Ao>~b=S^*tIey{U89SseQRMgH%R+dHD
zmi;NVr*P2Z;iE_e;m}0}lmyX3tp}xp=)cMvgfsRZIw}Auw;JfZr^CY!C=EsLStbg5
zE9yPEl(udAn`cyw_O(LpTdMGW*+z)^R)!{{7;;_Q!YI(HP@*Z>4tn5NsM1170;m-&
z2Of4pre^>($Z9;SLWa9C<Ve~~de#QCRW<QAxxe`bHi?}GD8)_+vyKRxVM{D<4zsC$
zPB;FfpvCB)GkF-Ke}?+AZ*^jl$YwCfVTJkmRUI<8A%l_DeHrfM29A$P+h7E$#7r0B
zgi{~UJxCFnTAT1ujGgO}R?0#>&Q?yeeBw~+!v?#IVSUoH>J2M6v1XEN0M$gigPKP*
z%hPajEpqt-<TE)x)Sv>JNu^9Q`-y@UXKNEl{&bgZc^Om}6ODdYW}zNOM>K&b;BeMQ
zr*yi*R;~?OQMykO6!gDUG$rF`DqzQ`150`J5Pd(A^7zbmP%LMZ${>?o0J;5IJ99$?
zsBxA4c)-d^eKnx^pR!327jbak2H}+H+?wUK(eI1aFEg3l@TvG-zH=A6?bQYZ#~tHi
zqga33D-#mwt_`<`!szm$$mWLrR;a&6SQFMV(P~2BiT}q3(8T026?vT((m9O$GbisU
zYW04};Hy&f#w(0{6wua}_uG9AF?9G+?;kbbr05T${G<T)qVkirN5)GM4^a)9HrFnt
zt`<4IPrYv4(B33h!=C0MAJV&YW{i*3xR`UU(_2KPZt!+C3Bw%h>{)0*xp%ZEIOX^I
zJDfz_Y^lr)&uiH`YO_arWeEBg5wjj;PB@qf?r&+W_$#;y0b(y!_2MUE2mw;k%pu++
zE!3)BxJ7OfLfUk=2?S5H4AO3Zxmb!Q?2e<Bjk@vzYGsB23YbFr`~jkwQUj;EGFGs_
z@Sm))`n;$+tB+8(IEc_3m@qG72!`YhNar$9l?FdHoK_T9052XU3(-lw9&EoTn<Djv
z^=N+NfpMPNq!GPtS__~WB)J*2B4c<3<~!4vtY_s0w^W&WII=`Sq55F(F`d>7=SqOT
z+M&`UAPe4z>gchk0@<UJ;x2UVtgNC&nT+cjO!9bKKh{*HJ3CT9xPtC%(ic69P8K3d
zpHNLe0OUiB=S#MnydGr;H$t*Mj<pB;0;N!OYrsNzK}V7efiZB>Vo`K-415&JxDhqj
zg=P-w`nIdgC(#jUKl74c7g^K{OAIN<)hudH!r`Z`(XcPQVGx35L2R&Og`&5r1f)hq
zIr!~BeKXv*a+|Yr8QfCng*$NST&UMP%JiOaFF{dx6WdF_u-vz&{umhKCO$r3jRtgE
zd7#J1HlUwcI5hU}zg~(~T?@C(aw8w+8ADc33>73>IokIYQ@AIsA4u8mPiP$4(9s=!
z%gmile_UK&k)h53IAE2tpUHos^@iGfuUbJs=EQ|SMqL$z4OCQTKT?GP?r;I3Ok|36
z3mZxSVQ4(Fx1ds{ySqDDQ!gw~qXyC)s3d8<wZVE4RSKfr8{bM|aRR+AgZYNpzUs0%
zt+gaq1Sms~ETXzJ3SZ0y-f{6H0~{b~dJeRCt3%!<6CGzuP#f$taPHHugp#u$P+}vM
zI8lMICQ7_%2>nktHAB!rLJ*6=xQ|t&MqAQA`E5qaBx5eOq&#U_&|K_3p>az8wV@9*
zAH2_=yFM_+wN1k|6^AZm!EZF6Pf=B;97VKah>?V*s85@``r#vEbtm262ow;)RoY!a
zlsc^yVAP`PR#3~Q2<xQMPCWkE?)6{GGc0repa4y+Gd4`OyC#5Ls+QGJI!_Ku9<hM3
z#U=8GvLM3A+1}hs(KPMNVBipCK}DzST_~JAW1jSUs(ERScbL2GoOPdr2*&H{5B-6*
zyY`sAyr*yq=p<GhX+J8rQ^FPY=I>C%ZCA}oS~CU%Y-SE(1o<PWCO@tEYr1C2tw)0$
zR^hDej2b3!VN-yiS}Q4G_-`N3!*Y<GNU+?_*xUq-Z}7r~e7BRIpr2lln%hIuF<D{a
z)6h6Dp*%v17{Y<?5porp<rLY-Pce|h6nLVs&+pg!*WUI+tn9BE*ECMp8tojc33V=x
zmeFWlCGPzJTM9Yy+tRAvf!^KdY|=yb7)eVZFN4;J8u_V7T(evqsy`xIOX0iUwY~nR
zp~%fnGaAl$o2T`@b-CraU;6Yg@QQ1~hg{k$WCrzUud2!kQh@0^k^l4sx8*}}PHHbe
z3z<?9Bt?%myz~c17u=SI(;9ZcH{X(+4C)CJ0x5LD(5h1-zR51;K`YW4pcDIDM>=^j
zYF<jwPZ0ZMF4rPz8tF);z%D@;h)`yWS=Vu3eLa`KCTffW=tEIw=TCn@^SPL0vsyzE
z2u=A_W94t*)UK}Y4R{-4$Q$C+txTp4=NBAEy@}Frq|~`PTC<8=!g03m)~i&3Q-2|~
zoUM}e=8;J*xO{@S)d&(eh#KzyafaZoFP@s;o{s#FHw)EB-!sjhO?05Zjx+q@0dxs&
z5>_AEZS@gUsD43B4jalTsKr849oh*ukaUJ5i-G8HQ(o3bU2)7{_nD%@kRzgD0qa1e
z4n3Q)J+U}bmc6k8>i~Lcq6Gl~sp~T`f7pO8{nw{1i#1148fJyCP6I-|#xqRk6?|0q
zu<RPO>C0Yfo(VZwY?TeQ{M|B7mq24yJa6(upf~?U=RV)|0MNJ?&f~hI%?WvV;_<12
z4oyBg@{%d;LZRwkO2vH~<4)Ug63vsAU;tWHv_FW+LO)BD-n^UjHU<W@wN8PSj^m^K
zTCFIq`?sZ|1GnA7woeJVt9o3MC)CbemNitZn^1ulqZ8jUqZxilQo;bvGw<1p7cT~&
z()BNGa=t|U)i|WiOEhJ$VRk7;u=N;*5mJicx?WP<PGkmG8z^$3fq|4-xk+f(6Uc!-
zwLo*1zp0_E2;eEHcLxgX(zPld(Pr;f`^I;lp1)Mu{xqBBKj^3=WeGaTHQ$cFKX@Qr
z7U=C<wTBFE0x?1pSkh|J%+i(~2M^>YDIgG`*WZLu3NVcg4z`98A1*AI=(TM{GiE0G
zo{Z4IG$ETlbm$Oed^ARYN<r1ORi{ikpF!!?Xb%ZKiHc=fBL}+1^V1;yy_%fbwVtn@
zvBFzvR?*&2h;BoF+L5n0k|r<zrK8HuCnO2&q<%*^=Dpuy`u3zx|7fxVf~;2fJ&uJ7
zGhxy7=-*dg6@|9-O=?mdPX~Z4xTpo+<k@W8`_?7j1MRnv|K5l2l7s<#eCXQJ=L?mj
zM!f+vcvqU-?jmfASr4IsB<i67DFm>mIF!bB?UheRGl!-DZSAM!AraCz`j@!?@}<H;
z^m8HkhRQh`m(;h%6muG2eiI_j)@MF)W8#INLlCCsA=E+p=mP+LZ86tacYksMGM{Uj
zoUWHxHKGrG3UF8Fdvpx=%quFYX8c(Ke%e#9(auFIOCZjrEaJWyKv_&zF8Tn=oguRo
z>~S223Q-<QN@@Va@<r4#@bqNmhGgrOtF{wm=yse^vIBaYo=<m1KF0z!3-1Uy4i{Q8
zlrMj#{xxb4(;2_VJGvU6MWfXKPI0fwt0-igOz0dp(4-f{nRUIv)ONMJY%~msWG)lx
zmV1vMucu5f+Oemnr+<%b(;JwvJ-YhpF-pOfbgr0@K+V^rHYNqMTW{8kThQowhm14|
zIDV-P5_r59dXunP5L`+958CY(vGTjrWejAA+(qw%<I{bx9Ie)RS6SQOt&X>=Bp#<h
z?(?+2!a?N}PFmlC2nGY~3pvznP4Z({vm(q;@ATh4i#qnT4`hp_$CeKhLGrlk*RQ3W
z=iAIazyDiV$p%>x69_w-21CHbqQ%Y#PYIglTNcUm%OhWvm$yc1i2=OuhL@3sD9#nv
z#)rh$AIik(CG~64sy{zAHF3}XA^+uEsWm+I@BbvYB=5vJKMiddXnPG_9oq*ZQ}&hv
zhJ(*qDinGN77||Ca$#}68Xe8$GVNYL+Y^wCx_3EuIkLyuG40YJ>X}_><r;}xTP5h$
zty_IOS=%4b29zJJ>Za_n+P=X{dA<vL28oJuFb_fa@Wh_?c@=zz04oxxDFMEDJ8?JR
zr40}fZ=u;g8~O*E<;HJtQA0VU3)*Uo7;1#EahP$9+O^Y<9rYo#^-y2Otx{_9qRK4)
zTO>ehB#<&beB7^(1kG>O-Ifd5^Dgx7r&CM$ID5PuqJeJ%ngO$6-$Ez5oI8LKRU-S5
z=OU7C=&#Zx2!{~M--|Y8BY+3?p$Wl((6w*$iPP^3LoQ1qf297xiNQE@lq6iy86My;
z4uGN+ewPPBF;bjA;um9}GRF#LuoQ}+_W%%-WsqQ5*7T!ix&7g_zE`IbYB+A(FdSiz
z0h2@>%5Ix67UPV{C?L$<iXJJu&Ok18kOKguwvI)ZMnH0R_O~yCX^@4=**Lzsd;*JH
zT@|q_fbA2?9r66euv%=RL6^==+-JDzjUbeU7jkf18y=$~FNhi6AwMm($k$`wYbPNT
zj6QpOq-b3G(?&Xx_xFE0ou4<Kh7?^90KxYRD&nGWO`+&}IzeV^QcLP}H1jL9f;Byv
zP((AKjDa%gmLCGOs@V4c=z1VJbae+4VF`93B}RAWPH<bKZQRvLEp0S_V*=MI-DsCU
z#{n@L7o{`M>7UC)8%;eJ&bkg6wAR}lxRc`?iJp#JCiS!89OzwacSQ0M@skYt%a(vl
zsC+1c)@9As`fab>{m@r~Auvj<G}{OIKCRASMKs@PhB$n@!Tz=?fGmjZoa_5PXR2zE
zWJLVzcOkiaD-u|(KQ0kJh%J$fM3)RV$-!^*A3b_BLN$B@UL-!h`5&kR&_^%V?(ovF
z1>DRoZ=4KnH0bxNEB9F>$_KcU9#f@K1&9%%s^!I?bEX-MF%y|EecvGn&OK<7584j$
zM?J}uWN{eTnsIN{_wh-Z^OkN|1Ndb4QI@*=K&gl{xpb!6q9-*%bu}><B}3fi6_1y5
zh#2VAJ5hwkpa#`e^pj?8F4yyYD^;gMZYq4dlWRw`(mp*41r_I)zl&v3Q?p|orWZ_5
z6*UMEXh%7Eu|ELHpADPsv5DamK8fr3chSn!2)-$oiI`%9lsL>lI3L=It6XR`mL$BQ
z8F9oL0tUEwHd06eOShYpJAR}r1+j2tFZHy_4ObSad`ZEwQX~q#AcqVwS+1)35zbu}
z)E2&_VY{?QVN_2|NSboJrCKztDF>Yp$eGc1Fp)K;57%_<Aaw;;LjJcjQG}$fp}`nA
z;xt@U=Z#$IY34fscACJmgx&=h7uLJD-=BOT^}mH0pudx}J2a|9U(L}Oy|BjUgeV5+
z^4opHA_I-X_W+ZXM=!~ZET{Qm)Iu5A*3;cxPoq+RsmKYtwGnx`Kuvsk<R$bI5j_P`
zGwOvv35iJs7o2H^%#x52%{8F5B(^qm$g<NwFY0KZM6=#wSqpHv){mv^kpKdMUFDmo
ztbcaKzP%=5bQ~uh?YtNfMG{zQ63-i?W&td_t>ZXc6{Q0->WaZYY;s|RLgpaJ@aM{n
ze5P?(BxISKZbw6+Mw(s6j)tjjE5Hm6(g87px|{@N9h3zUAPw`x93G^2qUaNu=unub
z>`=2DX<OD{mQ+T6iZBRSXJTMy{aOnmlbS;s&(QD&0CP&Q$v3XxGlDN-)^xduQ41+7
z(;a9u3x-Z?Iq9(oz3%*dXXnXRmzPhB_L=~{M6!_5gcglP=EWj^xxVGp0SedvISY}H
zFsK`mpX<O4Fxgzx^t!4A<L;JI+k6fYO;~1X{1<P$yxoXdpA~D*tf$RWu}@h;#0ec|
z;zJvU$9!BzR#49vn23qo+Z#y<^*#_&Oi3D4lquCc)F9DWlcJc(S)$`{$v2}EDEzvV
zomq0soeOXYt4T_WE}RT(<@}DHIrZkls~zG(dk6t8DvzOGCZ_cCCln^?k&Rck$>v>!
zZ=&AM+P?!zw9#Kw=-j7D``qXGU8vc07)?Kv2_eTf%^QTzBR~^ZHB8jXJee=MN#jl9
zby!)6OhW5$z<!!%kxgwZ*oNrqAN#kGtM%V!;D*>QP$Gu_y_AGT)R-q|N?kq~I7*r?
zLT0*C6@=7Aq+*vJsoPWr;$Bq8Hz<fZCVl7x4Jcs(EM{W^(dUPx137nt>v+Fwesu=6
z$V4sm5fUoZ>+6>TWM5WguR#rv2y6aT$<Vh;ld4G_8e#+IT6f!$U1C|HIa~|K9kD4<
zQzs4agBH->qciOg9LzO`G;AXk6==H12=ZSa1_MEIf8yywYxEM=cgUt-$OZK_(Yy^x
zNcu)w?gJH0%nl;vB^bTwjU(R31S(x&eMU3`&NpP_a7Z5~D-)B(){iyFjjcc)!Om)^
zsx?Z@WtjI;A?vz@Hlj)3TOG%61=uRJA8oRV{L6`QBob8*^Z^Z=Vbc=8xENmAaY`2{
z3#7KRdlU3sG1_W2^q&HM6=$|@`BSuNu56<+sqN^#+bHHFUdJ@bYViI{DBW|Au4qPw
zz~a$xvyb#|;Hq&yl%0Wp$jz;6s%;U6JM?}3DY|yM4z(|mSgREzLihzJlVR~3R2ZN{
z-W|0jF@%226K4|<tcyX=d;*hAE{EER&`@L|n*tv~b48E>3rs8y+*+8PIY9PrT;l6p
z;6`^K<7@y1RdZ295m3ac4%Lst`UnmAdizFFG(c=^DDO}K8BLX!2~Lr!92nXoBC5Ov
zwM3ASi!g@d0DUb<_5c%Wo6^zp%cK#7h&>H=F7Xhtzm|fY-)3AEtr)RoU%Kk#9>8CG
zbitT0FKXAM?W9>sM%2EC%z~;h48{r{X-gkj*W+;S?8N8MXf1Cd4Vget*CZ7Z@dv82
z(11NX+e#CQSIaN?nU0$~H7pf$-CNQjgUh6e92?vmP}QZbyND=koql)VM8KGUe|-i!
zK&NY%h)weHk41oIMBc@px>X9!pSU<}BSoY!pUH6mYRF^Ns5)qY&g6ZzJ57Xep@cxX
zoAOtn5_5CQsWY$DP4qAfin=x7BNxEXz2Mn14_)Hs08{Un+KksWfK_w@l&5)6@Hf{?
z*}DEbjJ2l$gH-7)C@7#m0rhol*m{5m$J~QBAoOT0rgenXV1{O~L03u!@s!k*2BMn6
zU=|jA30Pe(S_J<Z%(7)+nYnt3bANyPo89kbeqW2Am$9&<pZNv{CZGBLkT^*Ewlnq&
zzQnNdRA@!AjVajShjCSt_X$|6Jq3%O|Ik9iV5mutCeG5BJHyJ3P<!-A*Q1!?g&qVk
z)Rwg>JEq^N?d}QRbvMs!Qg3?jD3PdQwf69&=&I+X!XV1IGVe?Q?~8%jLuo=MpztA|
zzIV8esm=<_rxggY)<m1|DWAT{Phw#i5ZXA!&WbP72VXfcooC+l;}0l6u<iCz>R2#!
z74O^Rr<4TZ%V2VA)g+qyLV?dyR>;X^ut^OWxwq2zret8VV%UmG`?PrTcK39CIy36S
z%S!?|Ghb{f3yQeU(KX#x^uBG!^hY1$Rw~inr7^9+R^p%Xqg=0TgTv3Dezr%2H~g#a
zHguZxn|n-3T`LWAY~S#vJz8Hyiz;9LZtpL%t8C%4;PLF$DLXtnqqYzc6t^+D<@>+C
zna1*lv$7%rAh2IWwW-l=z3)DI+SHx++ogB)Qb`YqP-n@}n|Fz)p~vp{uT_iNsnk(V
zAdDdr9$AZYgozHrBOx+H(-$R_2O_e8ECZ1^2X%@?G^i;`H(?#Ml7fuQbp;b4oU(`I
z&E?68mlsk*MO1^k>j;)o5dcY&H{6~APB@>GR7zacqtlBO@bIshthjG=aBh~Wb0a?w
zJ_kzW{U}+`SgU}3fQ)~6rS^%Gi>epkN<keo)Y#S4<abUwv4P|Y^bVzB6fun+rWvUX
z01Xe@ud&=eoWo_MN@XexyjXxChDPA#wQYAgu6;5s`cYD39uGHE)2iWAo!aMR`s7?N
zu#9M*dg^+Xbsowz9P8%%VGj!*pApjFiIK;U>X1T+hRo*BY!i5`hwX3su1{%up6^pj
zF3~Ot3O(U2G`Rsy&rn{cA;JVKs6-C8U)?kWT?NTa2)}!i#0c#`F7V$Akh52*2hG^6
zK>>wi%@~G^=)0Zz=&22yh9?cqjLW|YR73MYag`G@9Eoe2r@znh>uxX8r-_<Vpidja
zB*tiVh0saYY4fQFqP}j}OtL*VB-<ov;h-i2Qd~bZtC1vBi43?#UH`}3m9+mfcZqt8
z3{VCjD2+OQSX3@9k>F@Bhz)Ag)3eOw7j+u=OvO1JW&MDVuM49oiG{iGZDCU4z{Jor
zWP;&&?oBj!q8MD_Cxl;AkzC~LetrJuNerc64z<PPP@YHCdlVNn%dtqp(dk32i63v8
z!pI!u>~vgi_}5G>`19b^vNd1EW9{lRGy=P-o{LCw>|V3z=Q(|53r$Ni|B~5jBqF-s
zXjArI?!Tl|>{Q)!BGWxh!B`~rj*G&YZN>X{Z)e>Wy29p0|2)Hxy19?rS>_1aI~P`3
z^#wcUrM--^>2#2d3V$$1Pr)DMoUe}!Y)h87gZsUQC8$U+4~g1ZmYMm}+_`h1-QoW6
z#~<H!ba<g`bmQj-^74M(v9Y4>63l%tgn}J}AulF1oJZ<<4@Jv3TMG*d%(s*UOg=|{
z&&|y}lP7Mar~Libb+7F$)86SXbP+=W4=3Jy@Wx*|$z6!`yGI!N(xo0K9}|Je@bdDn
z*&C|F3T@LY%zW5}jH1_XIV&ssLLXkazaBmmp35bExicOt@j>*f1H8!n_S<h?F6(C}
zUj6<<n{-<r2L5&N;vv8Ti6uS{@3VdPg~c<kt^|nw9r_j_)PjVCcW>UZB^xabOjPxd
zbe*L;4_yFk{2b){ho+{Bfc>w`;7(owC?eP|KwG?m+^i#Kg(JWFT#fYb!<+Z;3rAYA
z@8SFIF|=&my1Dqem+<B$RlooC+xt(S7?^Q!2Uzh;9?D&^>^P|}Fe>DIL&J(Hvt!4o
zigyTYu4nR8*K#@wY{gXd>4)Ef<O93>|9wBKEF%~fL4EtlKb9e$)gwi!$Z(aLqwU66
ztqz*>XLMjtE~s(mkDp^@Hg6{7RTk=K9+{c)GDlwd<8@yj_gR!uZnmQJOar@MkrF?(
zT_)vtiaFG4S{V;ia|fpFo|9<T#lyyi))laP)Q@6)bH&6eYnUZD^sFkKr?6$qmK~rj
z*!z9l-CrO@lGlSe3^}ECgap>j#6Kc}+}?RH^IFC!^g*3ZNs$6zj>;*(JZ7zc>(?1T
z(J#x&*aZazjU3UDb$a0QA)1_VCfDQpm3LaE8!)W}VAV(uu-#l%=Q6x@=jeo?nUn+H
zAqk#S*@VJc(Hk21&F&1QAYkW>$=z!)cvrL?gHiuRBD%0Y!=WcUYJ7CK-%3;$yV!wz
zisn@0&(^-R>G(NNEwNi+-(Ly~3Vs73eUAEz#$EYYv7^9-m;yBm2jpHr>i$rb=^ewr
zg9aeXUc(WvVwC5PI5qA=t5&Tt%Du|ZhbBhRWV^2D9xgY=rxJ_L@3+}II<`suK50K`
zr!6ds?PlX6biy?wiJ?D)j6q37g{=w`J1-z3xeZf1Qvf4UipG6??(Y5rDu}H3=g+rd
zAoOf_r2HPIe_zbcf4nQxE`OvOai4de20!23>gVU<Cief67U2{wS*QJV$Dte*#JrY2
zL8+6h!synWJ4AYU0!jT{U9IO+iH$ai0>_F1@n7vLtC>tDGDj9Yef{Oin!!yk_`W{@
zLi6LE+!UJpGRv_MhY?h4hSbhan4FRba>AeeRl>S9;rFNRK0YKOv%srj|9SD^N7u1I
z0nGflLngs^`sC@;OfVjh3|Uw9VY6OTR!S6gAH4GY$!A~G`tWwTL(h)36AvaFpEU|I
zv*BJiME7a&)3V-GSB6n$^}3Faaw3~7H{OEv&2s{O{<*J@BNo9b+AzZ#^HL7@pwz=E
zcoYW`4BzvYFSo}J^#gUpLTHzoyIlRq^2uGA_}{!4Iy#dF^GfvMrAw*s%h%W4{Q`%+
z=cG%t=A=0cm4@x)thBR&E=j@2$SAmAtumXYmR8T<b$on6;*gMBfaJkF5#bH9cRA45
z{xByBcOG{XRA8cI(`<y|%y>lp_mJ2m$%=XW>*Q`##>vGWHlEDcLq}f>spWhWLO7X4
za^r!fS@+<AGa+l*jcf>~aA9_K_T$How}RC}W@-<4>WY0ICsv3rkMZZ9f3}C7{^5ro
zmSo(@k4#Jy2eO)r!s?D28%z$KI5B&{f(3ri5~3%M9i*!_V&TWUYI%9>^;{B`KSf7J
z^Q}X=g=(@psLxhW%!Rod2;OQI4$@2{fh=1!HQ6w@;&)fqalN1b1^C;q5AEBb`nznP
zI%4?v1Uyq#QK=WgpZ$d4=ih()xT;>!hvyJXL^7xWw*~+p3=D7y8P?xLMe0#pJcuPZ
zKD@^8`!u+STrGp~Yfz#3#OH@9gJUwOdxC=3@>Q#LL|D<)B0|4J$hP=cu=v7XfAR72
z{~Q?^`RklHFJUz6Q36C`7(0@HH!TzQH!v`85QUV>D`&Cn20Owfb7mnL&Wf!t@myY_
z`ThH|z#(qpn>H<!aqL@|!Qb=?$G>94pT6);z_s~ia!v#5C(eXk3A*YkXDvV|B8MF0
zIa;4J2NgUvM1`xTM9>|E)Sf}pw&Qsvt$!tEA3`dd4RRCC_R1Del<PM+xiTzK{6pq>
z=SeIq+fH0kl22TGe|#EvBDCfvpVU2kcqP<G=c)VkqzfNk-Z;{q^AJ5U{@|W5W5&s<
z_}`%xEuFZLWOPISBrYN0HUJ`P5mZj%+s;SFDt#Z<X9qrg7>R16g6%Mb(OEXpcj57p
zwmD~+xw^U%0?aWE4-GvCg`fS{NKyrj`-QM+CJ66DtLC|P@7=TL`M3*`Y^A5n-d_Jl
zzoEj0hu<w!OfCUjxY=V{Fo<)PcTSo`!!Ir)OvTXf@E=)z`~7z?j7F(vdS{Cmq&|m?
zo0Ws(FJuxg3JO%eSXo)U#3*+wX{=3?tFp2(0NOnKrw`;}|3Mf*nZS$Z2~KMsHx@8}
zTg(D;7WJh5{Lf>gIc~u(Ev;v(d+gY;zdB$))?o<9alXqEC(LG*qA?r<4>U=9oxmT3
zA#y&ThhDsT^()K4lP5hvAJoH1z%m~mbA%sjhlwioV0tR~lFhDTPS>wrXJIiiHYQe<
z%S%9+4YS>5`K$cQvR+Iq2krvL`!_!fgnBBh6SopIYA*~|dY+f3a&jEqkn?$YL+)`g
z7^}yZ%DG5O%g88HN2v1x>h5#J6nfSsJ}oURE?5cXIL@yE2tNx(r^RXAe;A=3jL`Em
z!IV5weZzdlpE!~EMC;w?h=oJKu*3tbC`+<+c6P><{aMN`sQD9or6Mp_Ry?BeQAb!1
z9(SW2KY8*J!Y75)Loa`+d|;zv)7P#e?KH4E69cSh3T<SpGtL|nsu_;~P&uDJe}2_B
zf{h;6&v4;}NbC}WG@0NHpCe{XINYXnrlzJ`QntS-xG!X_LW`vj+)q&9%YVm|$4?(!
z&6{*{xSn~C^RO{N%6$g*IqB8Z(eb;SoE)qA_4V6qw{F{kK=m_p5v+BvK=okh+_$&_
zdgwH@whGB6tX#F~<FT-01W>oO@bGYG0Nvlp0<T<q6rKzn<;fy=kHI?RKbgH4dK4jC
z0mm<NAJPE&&lRyE2|Lg%u*KxxVQBx2N8yv#Cjy-~FXBDR+3VLA!Gugq15qQ%t4A8G
zrXknMw}&MWs~!JQ0K4IR_ACp;gzS(UJVzw>5;PZk8VgP0K_nD>wXw#RPHrxZ+C8q?
z`2IbMuCDGQXLpXZ?m(#?75VvdfRie3hA<f231Ag+(>ZU68vlZ^p7(RW-7&iNA|o#j
z-?fw#MKUhb#wC}A{D<Q`eqikcwA3(|-qjI6rk8bfa`_F?sO{;AZQgv*%ggJo3+gae
zveMJjb%IeYU!6jm1WfsNPR>lYJ^4TWIG3&k<B<N?-tNi9ufoCtlM+Rv>>8it%4|Gx
zE^Fw72zNfL-2!Ng%PHt4lgNnF7D`M^WK?8l|APNA$ZKP$`{ai(p-9t0MpAMK#8$5>
zE7oXEhNwyN`|%NCG0siEsg0XAE5KoX@xv)_J^>&?_?2ZVf^58+AK=XL=&E<`UckmQ
zGN4R&f%BC4;lqc?>z6{o>;jg|t)i}u7rFIY`sUDi$VYtHe;GwZG;WWEKf~MmFO@Jh
z3rr$j*uSf4@8}bDeA5!(?Nz$Dj_{?cweMf%*@)|U;{zY?qPSQi6GFP@pqs2WZ26B!
zJq*F;n@4Yb{roNfbhQYAni?vFe(M)Zrdh}Y>N1&`Ey%iH!HT6K!cmVNZREOyWlm7K
zdI2KKh^lmWK!mE+<#^kh2&8f^v$J<(wkkYS2_5CSH?~;u*3*!Xfg3>4C2YLBB2tI+
zK*`gb;#LuYEHb*N_;`AG{g5hWRu38B+uX$eSXE&J$A%L&sB<*u&BD$c4Gan*l*@8f
zB`mMoXN-e`qyCJNlG3%I2b?n^eYWEzx+rJ;3C(1970-eNlp?lGT%7=1GI^&=!X9{*
zy<dG;VwJFfw9@dPTL^Hc>{>`m=U^_1eEY|bzW^J^P$UgC#G$@~xxtM7_DbIm{q{Op
z|8e}^M89chZ(kFwC@+5yqh5!UFf&zl8*SMm4(rBOtktOwS{CE;evW3Dzi82~%2yZm
zdLXw9^4sRj1<S1d3~43^$DNrVgic#qFC-1ihqktdKBa)tJ|L<8L?H682eIfbSHAzi
zfxOx7Bcr42MYrPD%E6aAOTKvdk}Q)o;aKsH5N*7fFjn46P{Q2?iNeC7e04pP?OZ;&
z|Gw_a_>|Z)y(d^P6Pp8$aXSXeWW~b<K45W%lu&k&-G-oc38#!v=CSu#q<%_#Vz8gz
zO5Gp$He#r1Tq5K<?#(O7R{)>n8AM<l!a4l(qPm*v`7nD{nffxUUkI%vDmS|`fy}ZI
z64`q<uV23vW*|Q@GH8|6^B@7Gz11YPN)&;MF-L>{*29NG8D(?!(x#Y@jufo6yc0^B
zNHO>ojpP0u{#SBxa;{wYzqoo2aID++fBdFIR7NBvBr+RlP?CzWQe+m{l~6{*rm~ey
zDMg~PM<JQXD2j~itdfygw(xshp6B`h{-0mR_c%V^=gH%K-`D%P&hvbY^St;d%Ng0W
zSBX*#Rol?mn3|%Xs#=a%IS~Og=yLYc=g(p{NA#Et^6i=Xsvn<e$Uy;;X^*e&H<z22
zSJeY2l<*+lV%U~<@7@h)2@{GI10&pV$Bf@F0mfLE$zWb)=7Hd6&$bN>56i;?eRvx`
zzr32kWQ`nt=P^UWm`0h5j10nNSgx65)AjXvY1sDaV&Iz&lvW^!&IYz11i0woTzVlM
z`Pidt0JOmWhQF@%x7U?#jJ<<Z0NruND6*(P#4s+#rVYJ4w$56oadhJU+ZoMeWi%mt
z=EE1SUJV2w_O%B}^6~etdVLCZ>STp1@NS?NF7M0S&daM_{`ITo)Ev2?$L1UUyT-;w
z-X{mH3u_2#KKY4nK4)fV=#KGm{xdk;V8WAP3s<aK!_*WS5>mQ)K>QVWH@s3GdkE&b
zA0iORUjY`;B5bl|;DjuO;7rfa>7G5i9CAQP-;eD~+GF&;=|~d2H5(4cu%cH0Ksw~x
z$lxG7W+X8azsrfkZwTHqGd1-9sPdaZk)FBY=N_@$yMt0>r>BO`p%UCGCMNcN3eXk4
z8A+mUW}k%lf8G~o!Mq!^g~*;k)I#9lb{Z=yD}x<9RXRP|shuw_3GRjy<PzLUk9`=o
z9Ef{q05E(SDkL+U6jZ3@zcw$TgwL!wk2;z>b*+Hh!roX63BuH<P_9?x+eyL^qpatK
z{xkH*gb!!@KZv#xRa5uCfKU(Axe|oJ#^-XrEY{brvt{Ju?1$AM{37^<+83W|Yni8}
zrg*g+V?79l0w>Bej=mDSa9UEEB7IUi(gd%e>LfFzB^`dpU1}qEtr7uF?(M$ogBr^<
zD8!(25FppApy_$y(fylITw?n<Ebn;E2JJJSD}BF%H&|n0VnUHUdX$>59DtBKyLX>{
z4SUsE@JSwoQ_xcTh9(spk?TQ+a0+P$<rCpJmqnE|`Cu(5=L#JE8^CBxHWvh_>%9JV
zzZ&xK^Bcj~%!@0Vl0~)lW2?e|CtnKdik!2vb84T0oSdnlA<sd<b3%v)L*Me)5medR
zP&67{y~@bIz<?$XT7+`U6q5pNv8~k^%ye_1OP;DNsYO0uH`?I%lPZb|^o~+fHELYY
zK<qXM{a$6sfP3kCA&4W+eY7otre+9Sy<1$Inu292!A9?`x_<)G-3%{Yq(w;wf@_tp
zuWxMU-`PJv@r;jqQC4y1pyFw{X)>5pio{*JBqkwo3`bi2)Bl7`UJBe~cOX0apxMQT
zSKiOGxv`;v6+vXZjjSvML}vIeLMc(X-?_5_Z{&WjD?Ymd66lw_n^#+=JUmvSCS?L3
zFn)CF78RTfckw-*ff|#lMw%4dCLB&*U0uz)6E_KgkBHB3fhyVE)y2~TG`E$9hez9v
zk2f}uc*5i}%(VztAc;|>2va<5T%4SD@9#3G%*GPYqek{lO0rNzkrM0t6O>}lTQDcM
z$<5->1#F@Tn=^+a@1&)r4cYrA?+)Tqtke9L7{CU@pE(vTt^icAh&0p`az@$<oY=j*
zBBNiuLW&rhm{>_6z#R>a$AH6a4;i2i-KhFRdNo>mDYC)5@}}|!T4(0wdcad=TA_$k
z&~{J!2y~QwbM(C48-nMlP{$kxt4g>)Nl8gV1Qke^!M_iZBn|**S&XNa|BHdrMqmUY
zr@-tS0eKnx@F6{Aqqr&Ejgj`qBnK8|wGp^oxMVo}+EG#>+#k2;L@5?8BDzJ&me114
zDr@Sbf<iF_<}uh;y0O{m)~=Pmd|4RP476;03{u;IUwaJVa;EJ~v|UgzQ)U|qA6m*K
zsLQG63ljTC)hcryVz3~*y&<8YR1^?irI=^*N_yS@Q%^mRwBdy}lbt#G;7w@6*S@rl
z0+m9wh?IPA1(X@_Yp3=qE-$jiX}J?8$UHne5e)@)ruB$a-Z;OFh3K*I014?no#f`^
z;P4c>a_&Q<NBm*4G-t2^y1oUQQ@<49GXfvYt>(gnb!ELmXQ?U^Q`bRjyte=T#5#8&
zZ{Y@`0w45yB)*hoqrjMR8*Qk5B=_NxpTcVFDe_175|}kndJQT=Ft~o?f59CIs>jh$
zWJCD4BvqFmTI$B{ABt)*^c2+B4a<zx?47w^z1ZPQFdO!Y{cl8^?I2*~2rXPfWWII8
z9I*1npFe+6DB((;2$F-+Czd}t_I4>MUKHkFdT$Jm!8Ru{VvudA3xkM$sdlQ~J7m89
zSY4O1JN4f1q&6XD;81-1_Zb|66P4miKmcb-ulk>NB50uO#PbKpPz~yu=smLC!09WN
z0#B9U39gY?i9c#bzW4Op#`&bU<Dd}y*((Ms1@-35o0*fM-LV7kM=)t|VcNikcvKue
z;l4`2rSz<<GF)P~-FUL;O#Hv!ojVKcNxt)}x*nfmWxD?5%ZbVQ>gpk?fAF5!OuW6l
ze_gYTZD&Ds3J;~+@#BLB*?4)&u&>P0286?vOwLW-;9lqTtes@MjLyz{hi9YLe(w!e
z;&<Y_c!RQ?do(%#0B$^I9X)+r^Ui(ywDOzkC!_|>0Mg)zdH>COyUv;9zIjvJ+IqGW
z5hbz^EGqfqk_gLK`o$V9W_S$OkglAF3L!XaK>6|YU`>cnao}U{^4FC)1g&F36K;xn
zTA_k}^P7FL>E!=>QLxbOpu*`P5#Kk;d-+mOHxG`<fjxnk!l-rk@wYpVeSg=%Mq_AZ
zMuRL5eep!+028y&)Q^wrTPz%{t<%f12Zuq?MS1JGw!#Xub7~$#Eo1P7v*0fI$W;M9
z=;w5OW8+x3&@t;ux;pH49V)fbPJ)s*we8S<tC8PHCL(fOm>F-uEe`nw1@c39mFRW7
zXd#N^(sEJ8z@YP#>(W0YyO}8jjh;9~bB2?zE<+{6_}ZsFeKpajczrlYs=}Y>h_Nwi
z4^L0uH?WmEe)7Vbc2nD>?t-l!G5>10{(R|vCPCvRMoA)R8eO>(fFJC&N2kI?zj6E<
zT!Lh^#dOXb=JjApgXaY#SVCAh26kY#^Nck(u9GHDcLu-32J~Z##ssCbK1-k1=U`5J
zUgIs5Ynn~JMeWFI(~m4IOT_>`laE<yPZ)v1>RCGK68|arC5rKl<lfE$)w?ZlY2O-@
zIuv(^Qb3s#4+9HJD=JKY7<kFOG_YVjcqVq@-wMGVnr!sY;=k<b2e{|EP_G!n+!}^q
zrET9iHf}UTxycJ6zw7Ge<;4gyGiSKGytU(^=6-G0UdFw#*Y4iEJBAxVdBnt+kxbDz
zOa%!ccz9exn2kWu@+62_D3Y%~7=OVpB&0Z0b$2JKHoA4|yaEFm2}Z*h>*B`74RAX*
z+#H->K8T6-=-XI9;_tH#20@=N1x3Y=6SKPo?lWHeBT#t?a|(=5MeNko71}qvw0?>9
zWejdQcstXH{^{HvSBQQ+OT1gRZart0v~-o9pWn=4jebUECQI1^{7aooQ{VG{YVV`)
z*v7*nTM97jm7D7jP`*c8yaXOBIZkMiD1G}bsVoO1-mZm<^?!E?39W{*%5H;z*gZ59
z_1&iJwfQntX^&%qwbTu$_-84<ePE2f*l_sR#?71G<3KEz`MtXaMG}t7%Wp-0zw(0a
zvJx|~dImmJ({Ut)SBDz0U6?pIMSHLmrcR=jPrwkb!Kp+iQ|(RR31;;K4YUR&`ml@Y
z#8g<4BPqBa^3ZC4%N3O5vsv_ui;Ircf>+~rRKqbx+FW8nGtkyZO-oD5jE1qf(6*xG
zR~YAnzki2Wa+z5y?<#trxc&cYn10hCpsaVz%^Qp7S9D>n-t$nKWg$lJBIuG@I2rG9
zO0ghvf4O;JQv!QEP$)=7g@3;zKtv`u-UI*l8)A3vL%;I&9-PpvGBPsfOcL1NY=RU4
zx>~CG6uTdMFZiZ59|M!}h(;d5_i-n(yZy}AR_xAg2am0#5T;5%HR{Wm?1>DhzT8|g
z&U6$Ai~R6Wk$fB$iFFxrkbb62P)-dB=d39_vOCb~lM%MweUn9YkentTuTx7!As2e6
zBUj1s-M$+`I^#Ko*MDg}w<6vf#HbCFpr9akWR0Ikyto6AD7S%dC`F>U4c(!-+yH=c
z&DzeTyCFeA6yVIq_f9UaXY>=Gm>wt`%?LPTF32u_&G*3J*4;;$aRsKV^UklH@If06
zHD~b3*#4lyRhY4_#{XGUr>T)|4BXt@Z}RfUv=MHrjKsOo<EVcB%_xfVt^Y#x%AmQ+
ziM6%0lD0n-A}Z(@87p9ElS3soeeL4OT6S>dtgwIU(O2qzLC8UR+p%WjZVDD0JVMyF
z>aQ9?Dd0Z!^_Fz}KKO?1ChHJr@%AMMD$Rxy_sfJQY}A$xy6G6*dKuI6eWCv8;@tBe
z6?T);&Rkqv1VVnEklBQ5HQe*^@_e>z*@CV;<;T@(xYMiU;sCOLaaEP_3p)Tdl*=zn
zP|5YY1ua#U2%`7%{<1`bEkH^SpRcDzo{3;b2fMIKn^m$Zgv8ZLk*(|_Xwh)EhEG7i
z-}oy!-dr@w5>fi}99T}?ng2qJxDV(HBk~4wQkqX<1DqMbpdiS3>F3+8UXIcmg<=rf
zDzwFJMoH=T$xmiGDWV|gx=+)%!OUN8N60(5ur|aZ+!kp?8Fk}nE^x|uB2l>+dGU0D
z2BpJIt1?B?6sOD`j2tzEPq75Got+uiawHI*!3*<81@;caz9oV_VUF2Fl3*fX1!K%^
z14HB&G-*GsIfE{`Wh$qmqXQe`esv!qxp;Yd;YM8r))#!cj}^icJUD+&WMwAKDJ62d
zc9NelvppMEd1i!g^DexiJ9fa*VKCI5yPh%zJst6i0uZ4s?d51>fol5;YOQNl(7Ub2
zd*mU~en(8Bqo+qREuW~UsG*6;9RwFLl|m3qS@mex!yi9Pqa<yPmLdiy=JcFD4oeyl
zu=U<vTa8_geQ_rxWe4$AU~UE28@(3}KQ$l;qfb>}{N~CI_QdB42bDrR@Eg0KVAHKx
zQwnO5iG}4hq@brjdIYwiN!kx2j^M-nGBR9f31zl{$wv*hPf!T&n2rW#paJMW8&|Db
zh1n=EmSs;FiS`1m3s>4v;HkF<sD>D!24@qlj$BOyJ@QNO8A6r60MmNh*P?<Tw~A9b
zxEpNdCd~1rs0ogMREyj?jvin#$AKeNCgR~kKX6yyQEt%D(a9<)(Sss)hc<FyHiL<s
z-5Z+vcVJ5LcbHA2a`L1a-dq?&2Ez3LxS`D^!Cr;GL0fGY6TKmIzMdL~f{JfVp+L`&
z#kr+Wkn|*7|4I_o1(gckA~k4(cfc7?B_DR{7$%oU{^tb%KP_qZa}9Q{cTf-$Nd8!?
z+DkaZV2|Bet|bia8PV!JGL1xgAlx1VJd(<xcb*+Z;tJYz#r5^;u|x_dPs)S!{gPpF
z!Wk{anX#_%NQyRSiziApQtNRz<w<nKRYl;is4%us-8rHh0)n5!`~4P;YY^sXC?IT&
zK|8&1ncoMt)6mN59%`4Tkh+M8DWX~@8ru|~*@ZPHD}<B_ineSKK5u$XPEHJ-(JwPe
z)DYH#Y(i>iJT>#CP4ocvM27{LCks?as_e4wX5MLOyPn9n&{KB9fPv3^)nHIC(^*%?
z0+K59+X(zU;K3>G*nYSxX-(HcizMQW57wDiP>>E#7~7sbFoD4AUyJQUZrpHMk?P^-
z(W608QFkFIK1E9=N_$$o-=Gv5yEbT&)?f;tjq*rKa{^`yYNv8qT3VLc-45v!v|9Z8
z=akI?=$6y@B~Eg3D*^Mofxoxm)4;)}zkcn3N5S16q=Qeyk;{JeH$Pq)ZP&tJA0+1u
zIk0>#5nXQ_)TNxf{8K=5wCiwz`v@KQvxJoZbNlEDzuc))r&@&B2Jw2IhO&vEI3^86
z-Jo{Hrl-9DF91txp+n-Pto__y1MM+JsT{@aVdiPVE)_XV?_9?vO$Xg5-*sUVm@uzb
zuOx``xLXHLDd{vNihOb#S05m*#Q;|IxIxLRZgD&{)Aeozr=&Fnizo{bjUe23B{q^2
zmh1d-rIRPimQx5mJ4{$p_<c6?>tn#elo<4gk)@*W@bRrAdl6q3mC0R%4zwFG!(Z~j
zItu?_@95Y=zQ&(F$1YtGR8dhO+Xt-2Q_yF|L&@~()|I2CK}qS0jZRhw{8xHL2BE{r
zW$M?`4nyzhG36Xw;>JS;9b$iJfx**C5u%YPoOW;-oI@a^ri5WmH~2A1N73RFoN>@F
zp#>Gc$Htgwg$}zdaw5Y~I+iFgKioS}zY>0jl5X?;IGLilf28rmcU0k$E_1JaAioDf
z-s!8<i*}jfAe1W-{0a(=s23m!NJ=s7pAaqpp>J0~=_y*6+N`Iimkvz>7Z`Kkd{Y*$
zntesOC1C|D-sg$Dt1f6t*+eLS{G}1%4anWsg!U~TH~{?bv?K2Mg2oeGTv$$UKG&+M
ztJgtdD~Az3{ZcJ2%7J6fGBfF!gUATGabY^L1p|10$B$<gZk7fPOk3eu{_+f4yqNpQ
z&AN=i`a^9H<yX7EAso6*C-~MAjW<zoWVV5J6(ww>uzH+Nvi|Y=poEl>(A0r68y!&m
z3I76gePomeB%_;$hq%1O2`^UNmxX`NPjf4)9gn5#j)(9m4%Wr{H_Jd}r*Tq2Q8nme
zgEo`omw{;V6g>r1(WVU|z5v|&io{(ocXRiiJz+3R?4Y5gwRl|L*=f)SnA)bUrx!H=
zr>U9b6gsI)7m$N@UGM*LL|ja)_MtXzHj6`O6=@}R*0C;tf8bRN;rmwLq@8#+E3tfh
zcxZ?Z6;X>MQfUZSr{@`g1qB5^Mn}{3MgvNlLsn5oLdxnmMN!9^$A9^9T7Ft{GY~Nw
z3ZT1y<64+vH8HSl4!106;7c8F{rg4(4QXra0{s1z_m^Wg$AOKxR8Ry0xDN5~_0O=N
zARglASDqio|M-n|Vq5S5E#CXy(%h_ot)u;ViBB;E%Nd9APzf8jYEKP3BueNL2uE3*
z6=06YIJX5ZB^;}8Fegz1OQ*5IYzv29#KkEftlY1R*pYN;320Rd`g3HX4OnMBP1H~I
z8HlLyV15;l@cpK&j^`!?_Wk$~miifo$J8n;pX+7dRSOG|xkdC!4YZ<>;#9kgb(bs_
z%^WgKNPK*J`Mf@^Wf?&1(|wx;2S6R>6U0xB)`KM;fD=r2)4~1Z1!v~uG(F70R)*c@
z{+dn(<XYLreE>k;od<_iqh(U|7J*7I2Ub)E*PA6X^3}j#Z_68-XZ<GFBKSOvI8a1T
zZIsMTNHBk%W`|_1HBpq{s;Hn4bPu!ssauAX7QG>xZ^yD-ih5sHr``&^11pDlQ+(M6
z4;;9><=}ppQ#2wBK!i*Teib29GRIGd)pOTO5F!*2Ht*wp>#%{vtc;A{?5mxrk~!G4
z=0FRP0YLQH7{4I;%}Ep>eoci6J~u1Remu5(_TJsQa(Ot&N}$W@aOTb04(pLAXx$qD
zDG}Zh!v<V-@7)^?0Q_=%!QnWPT^wj6CAf{wayOx4CuDJP{%S3`?OS)T6Q(9VOV`P1
z8dTzbf3&pGN-b9IJsr(q15s`mM6D=R13k6s-<^`NWVJWpRx)-%w<BwB_*Cv66xyE~
z7pfS^enI<}-~8EFIbX}7oYP3|s#9D~k&)E_&Qq)Zq5fzLAQh1-06u>DB>JsS4%yQj
z&MNNDeR<e8Rln!qu&{NhMxj#m^Hb&M!)4SFmiOea+fE!sGkZ>dyi>BmhujvWYyNDK
zaenjR8H8^K85mB~Twg3cT<q2ni?=N-r6%=x?`D)!;g;7U!Hf!xJj%9e)f9*Qz!xpx
z65kRHI2_RB3is4H;6`xyLe)p^W0)8rDm=WstFkw5-01V`>C>mU7l?tlUYiEY9wD)}
zfBVMF!V;Thg#;47DRmpZ!|$-b>pm0!C4dhq!^UULnjRY~#=kA&m=IqNgAC*-vo|bB
z`ydj?LjM_q(e<7cZm+t9<5^r&!wBV21Ujs8#&6@}S2_#t;g|Y<UB8zDt#6ofat|Wn
z^SqM_8IwoAwxa|V-*Seu=mKG@m*Ry~HA<rFd=H}c9=x1_my6t%T+ty<4SJ`kbqa}#
zl&XYnGS7oCn+mApW1Z_?>ud+B##DWOB=)N6v9KGTkXkV&eFb39*$RJDm(emV&`_^o
zvzoOc*yUh|3N?m~#P+*&uYkOYagJ~cn6{2$C(S?;EUV0T_$f+iJ)$vcGS!>sj*Ez`
zqNUvi7i#_A=c<p%2(cd2pOMv%LqcwY6psayb9N~@v+CWuBiTw5$W*M;Xc><aO+yW4
zG5pGP!I30!KtbbktrZQZkG>>n@3QPH)K}xeUY7%po3)rmDF&PL1x>N2%=BxUbIE<u
z{q4CDSjLnrD_dJ}j4ud(F}mXRojauXfB~c%{;#ub2c)Eo{?3dWYnt#w6NVxah!41I
zNh|?)TSAV`z2S%ev8eTozg93da980uP{Q+I$sRQg2>r&9Zf<M)4!68kgUs&TOk{Ei
z$Twyfgv{Hplo;H`3Ao&N;0h`(l$ZkNCKp#sE}$h|5qHO_d>?%CmRFGlV44=~g)cRP
zQ-(E#*@)c;$-M^^U}W}5C8ZJ&3SU6*%a3jb!ABkvQJZM57V{`Q-ZeF8Tjc#EqZ0ZX
zQy%q9>*#6%>#>Sxsg#l#XW<SqtI#Hn7tAOpeX*JoxLI1ek2Dl6)1KHK-?3*tf0bH>
z=r6nG(=!usQz$kcEv^8yY4Z-(#D%+e(6ZeHlY?W`nGn8~Y2Jv42+|LlS~CwG>>m*i
z34(QDQGWTj=8nFvOeALU(9rd$luE6*wX{;yo~?q*$`>Ytela*xcq>KzaXid<Yy|U$
z3uky;G1>ykSk{!Xs%iwA1%~2rB34zVTOroKcj#5LILCkr$j8s`sJ*=;7GoUNm}h`V
zvBOxb?w+2IJ5FJTP6TkiL)9T?dEtT=j^BF#2(WMVXvf2`#jRa?i86)@EPoxDa~MGI
z3NOR>s)1I7O?tema>xT+u$!ZZD=jZCX=-ApW#p2>d6ip!p>T7;ndoN+3+F1Z$rMUJ
zK)?)K9oD^-Y_L152U3)W0w*!l1hoUr>bp>m?SaA11O6#e(&F&Dqn}MFOmJ%}bW}D}
zCt6Wwusg5`yg|X^{v`%LYl7n8(YXsk;VJ6pSSysApojyoc*OZga32s(I!*^Ju+W?^
zhp?Mm1BAM_y2!3iRkx5#gF(QD?ZPK64i*7EqJ+G$?xrS2QQV{{Sa?<GB|9&6$r{X&
z`1E@tTB}RoBj!<LL0i^tw6DU0ypdSekx|ECl&SRFi1!&lwPKYIwHo|w7~n{QnvcXH
zyvow0T=XbVc!Y)NQ8ONwm6i39B4<?VZ#$6mU$}QTMk;{72xjpcjRuZ^nT3jiLbo~B
zP5><{Ok1`Piyd)T#kvc^9giNxFJ~?HgSLVTO{Ek}n@-kcHn8AJTk#=Jo;=Zcdo3Z^
znxHveMt;l-U_`-2DMo)#S9kX<#KmqHvOso_R&3r@FAt9o^n!J$jU*A7xA&mhHUV!E
zYj|MmR;rrl!xf-EG3aqqOY=kYj<0~k#cD&kF5#)b`m$kmt31#$L_S{(3q4NUlAh0=
zJ&WayPZr<3yBI{pt{!~vN_qu}SE$Bq3J}!51m1W)%q?xtv#uIk`&L5xB96fFx(Zb#
zX;tOr!dZHUjVOKdvMo&K2o`#*e2*d{jZn`Ks6)MC1v9ir+z<M$rG*1J62%?G0qO__
zpeC(rhwbiQCm}WL5b1~AP*7T08hLcZ_}m;0v=QnWpc=g=KM9T|4GF+O%xzHIJn^I@
zFo}V2BFr_OYwN+M6-eCaSO9rDuu|k^M*D@iz1XBwh)Yq@4lKa6?{UP?PQwEGg3fCw
zGZN6Z>+VV5Vi`TyN{HpbavqTi%uLyuU2yQ}e&a7efZq)UZ#+k0&mIpTIZ}0$mX?xi
zM}qe<nLzp=P^4xaGPuHlK|cu5MsRQ<q;kRc_y$c3&>{V>Nn_BP5^DvN56HPq#MYwz
z`C23-@A>IbWS0%7x-0N4O&4(W?L9yei_hPIJ$bKuiJ?MS6#(?ii=RS3Bt0I6rlu<a
zF@c(tyq&fdkiHpjM($M<^dC|o0hA+ZbOWGcp<=<~W=`P*mZ7t4t1)23Uvw9}ab3Xh
zXWp*S(LfTCz=yB5LNp@xf~zpRjh1$}jVG&m@&c&NAJDG{2h->7T|ymM&;B<13o|VA
zRn50z;7R$o{$yuo8_y%2>{+~O+Us)kisRoIF$|MqPz*Vppw3T>TT@&X7_ZqQbtn%8
z>@N^}m_?*&kGQgK-prt_t<9{Rq_q~0_&GEet`6ZR3{<2ohvSKc=Q0!%Op=*0)?{R4
zY`NJ>Yzf%ce@w4Tjy|b(-TsgGxnPnZ%sfzqutTf{gnT25fP-R<JeA@v>YRwKTx-x(
z7#c%E{t7QA0NrBWk<nl*c8E~zSxQhsq9UirW&Q@*Z#SWUAdbq2fP(5zNImJOMo2Wo
zJ-3I+Z*3{rJ9~Sb_BEm)#5xxPONj$qQ4}cHegY{jsHu2cR|J6}e~|haX$KYjPV+4y
zTelvuMM-KB`S76<gpEyY1_*xpZi3|S8ip6lZ1_q?exy+zLhZ-KMy=PcGBZO+#beZl
zibw(UOwc_B*@wH0Za2;+Xdrx+zQO)%Y?a~VJvxW!mZq~rxNLV_T68hTen-t3+n510
zRA_S_u*Rmgx%v4QZH%aq>p&K=eyhQzRYKEUVB-xKs?|w511Dakx{{J#`4kpf<$e>Q
zk+^dd^13+`{@BN095s-dSG$ub*aIj)2Ik@bmq0kNx&Q^ljgPm&DN&mW-7iEbzRuBY
zX||91Uf@9TVC^&S2SvyQe)HtA)o(IGZ8>SI92}A6MR0DQw?b(GgER^!X2wnK4PR}4
zvo##Uj9!m^%gbq;@9yu%?PSj{7ce4JhW7OIuyz)K*s*9I#Ym=L*l6V1zz$yi)D8Q6
zrVV6hAyQYr&t~M72}3F{4J^VNznp&x<mJF(CrZ^Yqc#B37FTfT;n>MVYua34#fa4h
z{)<PhxhLg3)?d3#2+`<$n`)Hg)~YPbuYtqDqdWr>K^R*W&c3>EuW|M(e)z+jh2vTP
z&(MV}#4ev=^1{WX9Son>FtXwO5wWj;bV6|LzMsM=zYn5cz72exxw9*=vzwZm3pwdS
zh>9$aO4G~bWkba?_4frM7|C!5baGrU`+S<%D<8rqBqgPL0Aa{0@EvmbhpDTwvhL+J
z4Q-EQT+W*0p)&Hnf#6z)q_8*pUO+&^!YTBVE8=Z&WPgJK^tR$X#?K{WEC7<kgC+ON
zCSJn_gyFZ;;~#w`gApOOlGC171S`ddz&W?e>G46}2QMo)kK&Qz<MWD8B>4TQiwF9C
zUKNjer4A7)Yf95?*JVpfQ3rebOO~5CIE1bb)XCR6q5fF+;r9TPK-Mi=9vihG!VscE
z;q81E7&fDM6bZU{z@nEw=`JiWyPFyt^TJZ7^k?1d(v8uM$0Jf&^>&ZoYJsw6It+(n
zgi#*Ys{}kqW;QlyXwUcW5}*6v)~dq}l*q?_d)YV{x!JtnD)-BxU2r;`Za<|DR=I2=
z1h?8|)did9i(F!_nm#h30d?CPoE*n&u7Gu8TOc6+je)B;CQ-G>9Ks4esdfWp)AARC
zu1uc%+wT$W1)|d&K9<Z;$*)Cio22d2ClEk>D((cH53RhvYu8V7WW|D%2okV!`%>iQ
z*0L}?KK`+OcDW)|$VG{YdQdgQ*H`gvjRdv>IH=Ha6N_s`XdN&vL}}mKD*ce?>$nd!
z6gxT&h|{c<^vK1g;7yudx$<NnL(cpV9Py2Zhi&BHYYzJ6ich!v_JR>{+w42s0;bDx
z08VXaYS?|R_TJQ*N@79Yi0HkJ<b2NxxkK3E(bQEKP{c@h0a+6<fzj>?m@gX)Gg(}}
z&c}8w7&q?aB8Mx&I3ElaG9JsT2<bb7?0q3&VPR!El0hP?pZ>@+E~78|Q&wKCMBISL
z1z{sI2PXX=KYk4A<FL83>xocoN&kF8@WvN%LwfWR!;`(pcno(_!1Ood7>UpPP_&5I
zssUNy-u&SEc=)N*K`_L@Mil4t1eP+p0K3oq>Y$e_hfU%UZsV{qDt{)!+ZR#c>+c^5
z$hH08qUHhwh;2L0=j$k`s#a?~K?N1Qr6}H248CsEi($PLwyG~{(k3?A)b77;i(dot
zjSiflrnDC=gh%FLP}*d!`15M+$ext`{!3uJl#D-p@(a7BA2&EMveN?KwNS+l*AWMS
z&@gqG(2RQ+6(uT?xiV;&v4s02yVhmlO<{3&{WbPmwT3;*-Rpn@o_vYWnVZ_4?@&(x
z&-z^cCh^|#?xCn7;Y#cf1n=)=W^n1!oMD=4P&ursVVy=>)OHnCSHAmg?k|}&9LNa%
zLvW51EVWc(gEW3#US1)Xb?_EwbYJXeKt|S1#*=j&MF_r^c6`!%eJMCO@OgzHd~Rk2
zar5)@7Y~de&6x$plYnXYXi9mHRaq3sgWyBidtDN6Bl(Kj3t(s?0}|xmqbjpUu5UbR
z4FYJ7=?A73_S;HaSGfgusGmG|3V)py0O8QGwgb`nyNlwvxXUIc&n8PL$ZX-0wG*6T
z7d~xl`SmJ<`vSnF$Q;D<z5#Z1?$=grT0acIn2hh$5z=Q*c)q0uMplb;SkG{m3`i@V
z*0ja%P~U-F`COnAZnlR|hc8`)jd+})GG9>r(DlKv<Ztj%OKjN>E5elH3THj}M6hOO
z=fCCJooKuWq<j`J#X|wfo81KtY?xWFCH(e*IF4*wu@7B}_eW%Y91l*+=BDKzaCv77
zkDXjJenfcgcRses+0OeTAa^5b;91KGNIK~%s-6OmMo&}z(1rvw=NRnkLk3};{>%u7
zO@g2A{4@r45AZWi)>Pm$M?QJ^Z=oU}<7NC6oPXud&x5zj-;SXLt3?Ku2$Ls$vdgei
z_gR{;rVD#Q;*u-jm{i&lxh<x;>mbgS+0D+)RnC!*yD<-VY?gB>N>c3H^Z;fOSBT76
z&EL7}%9xXrQ`6XvYA>s2A+Z!2M*Q2&!8)!J5#h>+f^n#Cl|j)<RZAUgV2?TNC<J!-
zHK~ailodkwQZQ4bZNBfl8Q56ApJ3#J5d9v-X8^T`g1Z!`_f&64;GQN@w7g55I3SFP
z=?#@saIiS4sHOG<EP*X(8Na8Si(!5z_i4fGWgBI2{64~znFY7VUJSmzW)~rJX1lTp
z>G;Sr(GbrgB!T0fpZ9t)Bo1uXt1qjp6s|W(xUT5Zk?hKTiH;n@xgU2oiXGJp^!0rQ
z(qIo7$kvwOtI4%PM@7i^dC3(C7VRvWrLa?0)!OS~CYP2?0lIM@m4ABef^waVxNBEc
z-UeS9@MRYo6-i~D?lgU+Wf*b(bM4Hs6&j!;^-VNdGYc_Rmh<!DmS%MPvDs*GabpjA
zf|M(718}+v59)_(1d@$jUJnm%`ub9B1*rP<8AU~IUc-=IS^FY4qfuj9>U}{q-ZpZ=
z1?m^5C@?`--@M75;qT7?`S0m<OVoh`3sZt1Xu=X0XA#;qZ-Xi7kut|AT^KbXi*{o9
zd~j{otRS=bVT<|M0~rfq6!`P+=yYSiX=5D+)kGSmQ>0K8Y(e&`dVLa%!WZlq=DxD;
z69}hooTgKK_FFbn&?J$vfETq2=7MGA*1E5H%j4d-E08XF=8!7^2~sjrkmC<M$K<o;
z{e_fbY$78_p5~8`(9Tb_CM=$vICAaU9)hWQ(1lP8JIt@Y7)o~M(tXffNdLl>=d_(&
zT!^s2%*ZKudWv&V3@!hU-<${Oia}uKETZ9!FD@&SFO4kFR)=sYs&nq##n$5slV{@9
zw+ad>fZaN>F#8$(w0K9AuM2#AS7XJ)s&vh20Q(+~?3LLDHRsWr^Usd2ZRylq57RHk
zr<^QB<)hN{6QmmYlUc?wE^eiS#4DAGEn>zimG19MxxN^M%wG&Qa#l96BLS1kL94%j
zIAk%L<2-9?vj6}Yd~f{LoJ<Z{fbn;)1I{rCIRu8E0ezB*Zp%H|eN`5iM0wQNS(<`Q
zGU60%Q04+dw|-OrDch`uarqR>y)}hUkM8ibi07ES6*ZK%3R@3&`6+Ta@wbBcNd7Z>
z?C4QgyjhrudW+JlX;!+GsN<Mp7V3lg+#lq5p99zOuZ#nou!S^<L%etoM13P!6{H`b
zd$0=sIe1K-bKi%8K?>ai97$09Fgz>3=jL#$C)i}md*Kfr2p+tWLH<2~?k?mO<11~T
zJYlU5P2v2Fx5q_rIG|`LYP5;R0lc7<V0w)mdXp6R4s#oKBkHfDrS-Q$H93Q6OuIpH
z!-da?fx$<KFbpq8?N4kZV%p{0vL!euC?>FB5@(nipK^aoCtdzw)#n(9_dwb~9L-Z=
z_;r|r!-+b!;mq^gJ{%Peu4ng`*$AZbv5A2*87Y|bhI33Va`;l<bdyy`U9SBGyz{7r
zXdwanl`rA48MB%cJQ1-Fk@i;5LX`n0kcwr&fY>Z8E^vN((O$l6^^QGt8tR#;yd?*l
zp$p+r!opaY-B8^h_(+(Wo;j?+HSy>B@SD*Z9pQr^Ax`qNeikC@>cio>eh&l14PqWg
z@kmCuU*q2SJXPOA_CGHGR7f<=^j=b(EIOv3KnKLeHn~~c)Ti-iQPhW#@6Ui?&$cx;
zH~aho*tpbLSkNc~K-J@j^yg(I!)icX4A(j{2S>tnJ$>JM_t3l@>r=l$P|(cC=oWb8
z%T~Cq#uEYs^UaZV-P#%alFXhgXbLYZo)vOq*uabWSS3(b*bnL!d1xXu0bRnYI&Zd?
zg6j0x24oC1wRMBTP`KFGjB+fRRMnma&3&K1x2#IPH@Bz{r$m6CHe3(8QqSq=5Z3c_
zLmDtKtdOxj5{{hxB^cqq)oEwTYxB_ZY<ReW*yx21N!<d|5}OUi6vIni`W!lRs6Gqh
zl-~;GQ-v)VVEUE$LQ&<(L7GI_>QhgGHaBo5VK-<`EUlyfu`)Grg9QW^nc@P0GA`?6
z>+KsS<$E0v0<2K|X6{nm%W=r@T52Kfhn?{PHK*OA;U_PKLrtv+soeh;lxBtLCyFix
zn>KCgK~`xxaN+4u&udd1XG1|s3LbFqoO2b@PK_E`xg|0IBZJ_e*xB>C<_LIhm?W}&
z+%O(WZ`Y@VjcjmnqIdUXYE9_WRsA484HO`2K`Jmaa)_@4kLUQ2j3Lfk8pjst0R`^(
z@t>qFvvy8c>-zQU@|Kp#J{SbauPXbX=>o)JREWOzP;=oz`tN7MOfoJvLdswO!+L;2
zd11OAxc$Qhk&k}Z86RD@HBBAN2@DJzy4eFN$oH4jj!pGBIPk|p_-qtm4}l4Yv>C$+
z&ViSHqHn39!^L}Vu*=d4w|aSb*_CR3*F=PG$a`ELzOJSvO4pc`ye0jMUY>Eq`Npi6
zX6@4R%tL-#4iD0&?oqQjLUZJ-tJ~OjSBb5w*VFM0IvirG3Eh0*%9ZV*isE)PQimL^
zT@SyAk2eCa&+ogh>4D>6Q@(?VZmhS8UD|1C4M^xCn7t!ab+ska^XAc;Mp#jWQ>X3^
zq`e+y0V@lN=~Z@OqA(n+cX7&Kg*Jv`3l@M9;0kMuIYw!<4raU_)&$b!Kzb=P_|&D4
z)Kq?22}oC{Jpf66u_L9R;1HancTj$Jqu&5ikon=L4aARifx%Z$R(=nPV+@T1zB`Ps
zLFrJhu$|~vt3Cj!NaXsK?(ZJbE{lI7KM&N`)^;DFJx<ymB|o-;M)Cup_8s0rVs`*L
zE#o}n4wX3548|ogT~d7>HpXIXG2J#8(U8317AA9C{E?8s%-lK?wN*l5J%}HzK|5pC
zI3>ER9!$Si)Ya9M;CJfIgAij`@zCQGJ@HePmBlwKniv}svKsET7*rFNK-*z&tN?<Z
zA~`VI*-SGA!g24)-x#w#ezvBhB(_0G=Qj@)eDW8L<Qwkw@L{5FON8*dSw%p+m`b_^
z8J{%wVH%)B1M1j62XK#u@2hp4#Y){23Ejts-N=O>Uf$lc$R9>lR-ZXSL1Tk2-1+AL
zC<J?&Cgel!Z~Mf=ZXpn<{8FG-$5uAWx%%y`Cw99L9#Il~b)FZym6Vmgzpgr~__e(~
zs%ho=?!>&-)>b4`+2hAor5*0B4C<kN<$>wRkM<M8G;&NgLRr-GRbBE}cE1%L0%N7O
zA+AO#Wl;!=d*hs@X85c8J%HfduV<q!A%=8+%^7ojh%9x3qk9-kBm<n!cexL937mRT
zisl#lL#krk3o$_QGk<3#Mi*c(jz~EdOyyXjy8!-9^4(WluC9X{&U7wkR~SPH&QJ1Z
zprw29{JE|8JXQN}LQ;}HSm4TG7tLS~krS6KEdF#Dh$x>uyGh{DW4N+LhcT{8U)8`l
zJ0&aYdO{U=fIFdCYIXBju>~&k8=yode}2Kc?=-8W04Hmj=#2Aze4Xz60DR}Zg2QwI
zxlD8``3o88v_1EUi}$R&qO{G~@+F;f(W})02DqqW?dUK@gua_q-7zPFTC&?YnoX5!
zY#Y)^QkY_Xryc)S+`N&_;DvR~--#wLT<&7q(FePslFN}$rlZRn%;n`L!>?El>%<O7
zeB-JbI?UIuUzb|_8`xH=DTMqCez5Z1ZO!=gPofD;1*7}N_)d@^cG+34jknj))olIR
z*jV26?oRy9U4NZ2VGSD_A2%9??V>|-RS^vU{Fkp^J#%xV5RO;ExDh4evI!(0BSd4#
zDx8oFIJ4?s6qM^48;|2aiy0PE2;p5{ANpshtIIHQzM;1E7UT;Rx4NG{!6R+}_BS4e
zV&6p^d#hL90+-l)9WlTQ!pnDP7*V;zQ}_-i#>`bUJRY`L@v8?<p8U+R5clH6chu^p
zR@etohusPrO6TD%dyfM^YG$a9)l2w2T7x=reP+PVSq;~(UAtD9QO5U3%5M9kqD+{5
zs$Glk_h&SJ{J0wXLQswKh_W&R4u8+5CEZ-x_y%J->RS}p43kryJ-dUh=;HSF{L)PP
zKcyhib>{Je#OwK~=0)b|AYrn&9~hM+ABD^EFwMvBh0p=0Y&47`t?*dSrMrX%BYHXT
z93{|-GcZ4$$Oh0}PC!HND0Hb>^jLAm^VM$cI53aat<G-tFJHb4d+Dg9+tAPula|Ja
zNs^fUN{1;RM=`hr1i6UKV^Bly(Q{AK$U{#1vafvegPPEdA{SFD*7jXzTAN>0S=qBU
zHPbSXkojo)gGRa;E98ZL<b{xg$Q31q?HeJnuF#}s^X_fV>c`px-_|t-Ukmxv*7oR(
z*)YmXyq6<jPoLr`082#A=f9DY*K=S>EfhR(UU$qz-}BBdT%c%l=@Olbi_3Ypl2C<G
znwRr)bGC^`UFRlNqv#};O2xc*;f(^<2#71nWW7OVlqJ)*{c@)^(b2BLY5tQce96$T
zc(v;KwYxWXUv+1WUbqG=D$4IY5Y0P0@)yjQ=>PSLjA$k-x;;$|{U{mbkv~m^PsIkn
zyzyXPdho8zACuwN%@7!052Gy1qK!Y#$+HDnMYFiL`Hq|^Y5N0%=u0H~(cxTlPglPU
zSDdjcg?q&)oRtrWwD&bimk&;P^t4OV@mJ3Q4xRtVLK&IQ%BPw!(`+1-mu)Ge)z~8w
zJrMh@8{}7a!C{|O<9;KIC2eOSv-vwm50tc#wmb1H^`3XW%IEm^-#jUEtG)ACrDF}u
zpPuy*d#OA#VKv+cIH=Rs)^@J@-ES0YQU1gy`5s&gn<Ve@fj;^nFi!lorl&~w<;#~N
z9!h43WA<A>=x%Y~AY<dB|NM-PZLFc@I3Vo1$X#r#tR7HhZKo|TF9<H>^eK=$rmEK-
z0eu0<W=z3SEg7yR-~02YG4ew4FbYN-{#Ubn=H}*5OM=YTbn=qP7nt6GZtSl1(O<v(
z!2t?i(g;aNOe85f%6))%Y~K7dh{QX`V6rmB4f*Kot8U+K4k3aVldJU#K+EUbj~^W|
z(cF%1$u7>rpc#n;yW<yryIsJE&WEVch@3(p{%Msc$qbbR3~YJwYIL}x;9O5W^1c4l
z1KC<>`EFSwHAHvfWYuXyqZsO=P~5=STP0=32R`=wFDXH4ngkZI7Jp-4QYG?GV+X85
zzLmR5IMOvVHF2dDo$tb9#2R3a3a}h4E?7=DKIIUr2x=h53R)ZR_X&{rEw<sBHb1fJ
zqp~k~?lBiOVY!B%L#CB<!$ij!Al)%oK#A89+vxt;tX*gnftXT)_a=3C&q);(;=>?E
z9Yalqu9N9-7hMX|<Z<v#9j}lUQlwk-G<+DTudBO#@7`LtJN*F*GQ`k{PNv9;2VxJN
zd@dG#eT!nl*RQDeSG&0_u~7NL{X?n@ut>Gg)`1hcAj{Y~Sz?2#KDs)otLALbG%+zD
zKDkRtk0<`^+XL8MU44B5Hx3>@aRLK0xKXB(o;BiEnjf$H^Mw7|^AaoFK*o})KMpBB
za-$PpzU+eg9sM$jzQQG#Pejy5)HvRVo|w4BNd%K-ZTS(}-|7X9*X`}?)3dG18jQ(&
zEL`bD#i|)IkM2E(>0NpS*?VH=efy{8H)Ow%ESXRD^pua6*~g9HebMc6!d7jSe+tfW
z$O(*vUv$%26&vl@^Wm4vs<1UXH*`Fye7$4Vl0Bv;;7Dw=ou7;<9c>-F{8=hR$2<(2
z3UAG3y58I=QacPofR0e$xnNu-yW8%kN+TFeVzp$Ij9rp&_-(4AtDBKsRJ3$+{YI64
z(%$So4UP0cxBzU>y3@E}Vd0tJ;NW1Cp8(Fmd*a>r@60Las-<66EGfDQp#W31_T^59
z=zZebwJUJFY-I&9mJZ9d+Qm{SNa@P0X^DyS00FS&Fz(#B(~_gxA))i&)vH%kgY=Ay
zw!RR5DUPzYn{@!G-%Qn&pAk-~C|(MLtTG%#)4^w`nxkSjIXF1z6gXz(d%X<v6Y<$#
z(UKW|`?&gSq4Vr*7zL3{WY3&gkBaq9V&afdsHdkV`av!ZgMo}V&{<Yn8!U0+*xB8M
z{ZUQ$b&A8wh0`bO&2em1CH)g>4ax?~dEdi1jWmm+d6Xh}AcL8WjRvh>6#39JPm${D
zK#a!x&%qKIfkYDhP=W3&l!nK_r1PnMz;R+nhu7Ac7iWZPMfYWDSTAf47sG2|gH~hO
zQk{rVpb$BTQ3>zCxM>#5wAA6}!biacVRG8LRv@|x<oDWF7f)%Vo!1{aKz=u(g=at#
z?<I3{Bj~j#Gv1MA@4quPNQ@bBS#Kd@lHp+x4@yu6ROvf>0jGijMD$B+@)2F<imjYJ
z#OZ?)uuvsXK&b01k~gY}+i+JP&3M8pfHsGO(i^z*hade>?hv|&=^;L#NP5(vw$k+9
zy?;Mz(8}RuQWCkjV+Nf1@(eC-@9)Uc{K8HkXiH$A0nbZV#hBFUL!LbO+~{mw1&kqD
zZ;#fJs@GfwkW`BCLMW`7bVZm*h;jB*F_&T^tQ*BoovL9;%i7~Ca%e^TD3VV-=3J7b
z@hvAEZULxHnJlhc;reCajI|3lknqGcb6GFI02;VeXf5J^>ioH-^QC<fDtm&+bTpXh
zch-ORRsF=;@uXL3--mO$GHsx%JaA7+0v6%n$uko=xX^)W+qP%olRFqoIuC)?3yz4`
zeun2Fc4Xfl^}3t7YT=q@XD1HE@aAOYTeiPpCiR;IDv{{v8)=swK70ski4f}XmCI8!
zpq4P<cE7G*=6}+S>z=ZA<i4$UI5X)GyCX~!Bz3NXM%gHBzZ;GX+^po{>w-j7Tv6ej
zg-Mf4OiZV{Yi^|>9mOCAy}?}(6hly=nDLrlYVqKot;y7@#hE+^KLKV^+R#g|(k6{`
z6l_MFNL=&qyxu;cXM?efcTr*X069?HF<+ZlrlN#{%*d`HQv`5-0TqR)_k<WLScH$i
z#fpK!Up<W<m!;hK1}R8Fxm_B`K#S4~E(s;lJ(bllMP|woqVI67oBz6FHygraEY7C)
zQWTDxsBGRoYWUv*zG<ncy~D>=HPqmPGH|iczG-XF$r!~eHZeKbE3Rs$-9p32`Vm1E
zoEXLLCl3RARd5;djg;mK<dk!R2NDw#$sjO>k|GS%tE;as8@Y%|-83g9C1v>@?D-`$
zu@EnNqYUC%WZ$qBAH6z1S)JKi(6ZK`k!0xTB)*hx&>%Q{snDo+v*Ol5mxJdTF$EGC
za_3%(95Y9?+=?FPgATM&J{Q>4kCXms96l;mnqK%hpJDygn-cCe8Dae~ESL5)>l<qr
z7&MZ!P7WTZeAw%~3-k<WLxf&)N0z4;Ntg6gfMeu2aNyyNn-BttM+8OYj;8NmDUO^v
z6{vY6^kTfEjmMoX$dAmdtQybno{6t*YU;DBfT@JMEz&Ck6H8@88wP^Hrt6M#t~|U;
zN-A>N#J{jl{?rD#95X4IA3uNcLQ~HYIT&;LK|sJd*M&)KEh&VJ7XX=@kkW5K_08<9
z2K7naK1lSaN$B+-JCf$+=Ax4ADoZ;$xS%w{cd^Mm_HrVuWvfnKD>-3bL=0-CgL%^P
zVf_}n+82NK`qy1KrB*WP*%RtqDK}Bj29p+XA02t7wzH>@eVkCCqum<xwbS~Lw{)#_
z9adkh`OUeRRo=iLTC*EhQ3bRkKaIYdnXzwfY55pGn)#)^{`+eTOEINacUf9IG=E+s
z^|1VW$8C-J`g$q$O~b>(%AY^!wUF;bR<J3}fR+NT)CA=E;ZHQz|10H!PoximXZFR`
zNGGP%@R8|J^f8eBJ6!04Ykz4;J6$dd(?3v7F86f$<zNt`U5HjlGUyU2LsUW5*G`rB
z+R#9{F#w3EC?LB^6~}gd1{fs+W*fQ0j6E7w7N8@ItgVHUqhn?pc7G`d{owF$&)c`D
zhj9KtW(!xHnfnQ-y8>qs9n&k^V>|ny1m8w0`|T52A^m$V%73<kJY9~2qnn3~!B2f@
zwyvRpTy~@T#p1?|eP~na#)Px`8N!=ui$9@H92|t=k!K0gSc4OwK`C&Ftm-{*gFbrm
z3U@r`*x5AruS69zd6<afl0Vx;OKZbL*FCV)>FJTNk%;Fsvb7m{93R~_h%K+f>;*DG
z0UY_oVdT~f;j?81VYgyGHr2TXm6evJx1qSp7Y-BR4U(TYA>2v19TmlykKqTrUVPdm
zX?O12IhH_`DBGLAuH^e1c8b#4(=>j<rmnki13IbYNcS3`5^`g2R6fCldR!GHCAYt+
zDk=smM~Bd92NIAKbvIcM$%(j(A#gCm&xfz7+Qkq(tkXzAU*C=gk&!lwyPPu*iir5%
zoNR?vL~DG5po5-z9I`T*p+fA5@QF*d%%R>Y<Je#PjnSjCuksSCPeW7ScbhK~9j$o*
z-bSKNnGQnG^qtNunGf^wS_Or(Vzy{(O6AlkZ3S`fOr|Fv&<a<n>LJ7c8>{MGO|wpI
zk<f$$p%-&~IU99^lEB~Cgb07Ib7PWu;^t3P#CBbU{qay@zu}GUQDt|_3Y(Z8H$`g~
zSx?$KgF6)!8PB<lEFCqf16&}e#;nVMCS*VTyET=S>WTEn{)ys2+-GdkFYD=Xy28zZ
zyq>YdMw>+1eBp+IWkqVf6Mz*VqO=vAFG{+>PXS0F#~2Ue;<kv=@PAnhE0J|tVCAIX
z1BRHlcB-hy@GFEW6C}sZPx<t^WGp3W>*OtHpT2KQ199xfYtN)-O53EpHRR=K;G7J4
z`xn)?+Ue66;Sbpo$-j6J-0R+IyY;vciWsO>55hJswnB)sut{0f&Yld9f3xvO24=8@
zB@ug&U26%Ac;S9j%u!R&7Kr(a=H7E#2qlKFhhrqUho2uk{C4G1+}lNJXVYWtPVh79
zV<1CzsW>ue->3IK4yGMDc5DSC@rc$O@faRWa>RqUqpbNKCMSy$cPSX7sJmLYf$Rtr
zWxlDc(!m8F#^Plz963Vz>D9`a@9RV9mpV+1ZjH|thYG8N9ww))pr~rr_yt8ol&>}=
zmvScj!t`(|T*A2|Y^y`x+u#2oK_L=td~mBq<Qa6|RmNf3anr5tFWl)-Q$Rl=6XT^e
zwzfSQ4$2sgf)^5>`ltIn89wB#y#z;taSleay<7c*+8y7|wiN_(-`7!s8O(3?f4SA<
z7@mS0t%G?Z78fsE=z)<Z%FJW>&g<8&SvX3=eBsE1pi6_|=PQafNIb<-RPg*tM$Ru_
zxcq31M7K*K-a5aGc6hgo=7!jo4zv}-#02|j15#AaPa@dyQ>TW9XJ_wwp|3Z2^gMoX
zS65eYtMe&^PF#n1)37kJw!Z!tR5jgmPuN}H{iwKd(adaoF@WFM@-$yJ!vSPqTZSiD
zuU>tR;=A7@7K`T@$`&2HhsG=0R&+#&9~wa^7dQ3dQptK-_?34|?vKj!_xFE~O{SX%
zm5cbusZa3fqU7!#8L4gs-Yta>;{QYCbV9rq>4O+GHipcetzvDx`{L0z;<|6Fw<`My
zGtuqF>`a<KpMQ2U@2SJK>4S*Qy5b{vCFCxX-VwO^=b&1d4wEkV{rj~C4}jH;`jrPq
z-Ojy+YLa8ux{7b{`{~jNa5^GA`^uJ%>VlS%)Vvfv?r01;`XZMGVzZ?Dx|x}|NfBFH
zTl*!&w;j6<RGhMRRo2CjFTeWK{@HM|t-rEEC%C}hc54iL{`m0-R5;8sxJx{lfc>4H
z+Jy>%?<%O3EADO99?9h_30I|BWb>52kJg7>SyzE9JHE4w80d9Y$`(w>F9WF$)8x7o
zG}oAEdSDKZZ$pDdL@j;Ss!YFaocWVDI_lh{|DHZ6wgFbAeJ!(umM0f!37mqpRm9{{
z@AhB6m@pw143yT7ASIRaT@tCt=YsnDG7c6P&->zWWaMgn{cpCDy3Q<Af(Lv_J$vX-
zf$gM_BFYlt|HqzOK_P5AajrtzWBY9%LU;AVEm?Q)KK=du3i<+QH^z#Eyj6i=7S^w_
z))KZC#EZHP@}=pmv)Dd&U@?DjH2Nh(I~X<}W_|wjsnUfyh1YlFMeLDcB$EnM`OP0o
zuvf^W$f)&+l}CXv5P6L&{-7$vya_5`F^ZpR7u`jRFnMchYu_#tHDtBEC>{2kQ&JG3
z&;y9s3AnOjcJ|%Zui<CJbU4UhmM>p|G&vd9tRZuL1l(0>(PH!|dx_XY&8jxUCsVe9
zPG^8le-z}id#tRJ!!NK12Rrnk>_FN(0uljdHpO{YNa?q4kM%#1cHTvps#tVQsxXe4
z<L%qGqT_PdmbkqqF7?k?_pzu$PTB2&I~Wl*NnbAl%t~r1Vh*ySyx=1M3&b~tm0w{s
zBO|*LXP77QMBXLszg*qVa8^kJFE~o~Sd~I3I>*3uDCti_VFD{?Gz^9n0)~9{E$!Xi
z3|?q^q32Yb1xMqruK}s?J<tQIH17bk7;nUBo?W{bv1ADOJ$xGfR4^V)^1skq1meaT
z0~5)3D4=1=;x3)NxJ2hwKI|j8ZbjOpuc`zC&VZjOe!|J<usLJC{@60<!*sNg7)CFl
zmvkMs3>m5Q%HbX$3h`G%%q0~yO`wJharMKXM<xtY(s5e@?rYclX?O(s_&sAg0V3~^
z0UU57^!!Ey=w&@GXtmB9@D<a@xEnXDQ`qqnb7hb-GvsDr^=22apK^Ns;sq^eDqNO9
zaaZT3Wv5$72HwNiUXtsEz$`w^e|F~S9taI&gs|_td|%{Q%y5+6V1#XW9B(%$Je)t<
z&5Y-l9WJU(C^hWE*6c#L9A#>Xc~fZepr-T>4#vV{0!Y3Bp7=XR|H8ddhh<PD=!mVu
z_-k_WT)PW>O=!cHFM`)qFN@XkXxhkY%Z+~DOc8l&X-=ch>UmpZHCbv`Yaoz~a64?+
zsYe&n@9i`8k=n^=o<-L~uBELF?KCtLCYbF}Z7Z*7fSFmn-}D<AhBJA-{{8DrnpFXT
zJpm4zd*8zhjg3&rX&j0F@|EIBAffk=yZKhF{fYbtQ7FprhhI!mQk7K31egGFR}{;A
zV$dO`scR~1TSY_|AfI}MhqI;idQJ=Bi(o!Nn9~|;t=q_}*qiu2;I%t|dq`r6fR$qK
z*;C{Nb_%FGaL3vFQ=Pa7JJH5Xn_}@&h6-`+QPDk_Ud`S;eCf)SYLVg}Aje2!UuiLJ
zu@wd0^Um74cQ3d=AC@X}3ky<s55<*(hak59gqBt^)D5axBf5@bOHEG6f2gWDhDrwJ
z!(t1E?%^aT0I1V!77bpgZXr|TFnoe?`dX#~w0=+*-G`oI+l;6F)jJQ(?LFwpmU+?<
zH{^!8*(`M*JC@d8C$a;#+3-*l<&J2u?}~WoadrsXHOfT^g@UDQ6uvpQy%xnem<4;V
zZWRcox?Z2^;L2vf)T!`|Jgt}{c_ZX&bMu3ny(;Ffv$Dt(dc+ng3LqaD*-R+Z={F*+
zaMP2f;|*cBu2__Ck*K%w8*8eok3%{@2fB#u17n!TGb#D7EtudoKHFh8+?Ixxrk#(%
z(0XBso(J`wc{1|>>gxlQK-|{Hhfa|2tY@*Yr*UR78Q(^cfx9rKXATddR{)I5yVll+
zO><!Dk6`Ko$Q{XPa`7Qbzo7^Au)Ig%hI8ZI3b?2u25zg$L(sd0@COqoZOlvKegb-+
zTl^XMj+#F`Cuf&U5qKO}T0TulfKWr1*`K)%J|?=-^K@d!Jvp99-Vw+3^|uh>1*HoW
zYr#5l69N(f|D;_^Obi9ynkaW2%%qD~;tPVXCVq#y^G47hI-E$LY2=c?)#B)OE@loN
zK?=0wruDo11*iG{Ci&o#Hb)P~^y}dTi?B&<a`h9?+92{INa0^PF@u$rwF_{`cD0K7
z2H@&4PzXVxp?8LcEQ#j@EoVa7(Im7&Qq~FT0C10Am4H1R`mOQnS3>{AO%<6`th>>M
z{9{>Sz{bV~1RC{O^N{@*X|FpM+cP+=gkb_kM-ma<%5d$o)U?^fi`$TO@Xuz7lm57f
z^w@}<hUwO~E<e<gj{%wvFR=v+o{vO3Sr<N!kXdEh1(#;Vw~<K|7|KHKk|nbza1W|K
zCZL8N<as0B+uLh|S8vHh%wWCZ0*aCpjR=RWj*gC}H8supT1sg`aM!kNYv#%XdTo8S
z;S;(FJIDW}f;OVoHViGIp{8Pxq$y6y)Ibwn%P{<}q=^V64S&Qzo1T>z$Qb|)OPqE^
zxHhgc!;s96t+eYnWx*M>1fDWNHQ@<LoN^^x-HiY50dkE9p_2NtL_x?&5T*^LyyUQ^
zBa&?`*e&QgEr}dDZHZ%s5=!pMmDG}{z)Z*asU6sIUtpLY>MV-Zj9}$wq9ZRF?;`M<
zKpMRs5m*LqmQWpG>xNIPSK|qWNeg16kRM0|B|XSmw5VF%Lr+{|VeyMa_X}JwP{i*M
z!U+{jvSWlG$_rG1Cg?~Xl96dsLvfE>*56TZ5Ebm{o+T2|(Bgx!?A0TWpvGNpO5KrN
z1j5<wwkgyPjE6X9yi{FNL$2l_-P1Q<CDivFvSZtUa0rIS1HFReD&j2Tar{S8@1Dc+
zZM@<#;?jrJ?SCdG<&n+Ce)lT-x)ixBaY2$eiY3622^5#v+=4sXZElx=Vk^C}gsZ*H
z2G8K}AYQ_$&vGu3xc6po>9u5NJg_PMg`A18F<ErB>KqgmU4yoG{_W>h!;`=O|NL5v
zI%;lhRXXIm1vMHWa8M}P&rJwLzxYsvxc85|l4-^O0~f#6NwT?M()LDZ^j-KHo&zD*
z5Su{sRykB70-kY`D>rVf3x0E6MP&^t4j*Ll%r)`hDM)KWQ+S^+oNXt5&nVfKzfoy;
zVOpw%0mjpyKlxR2=r|0i2;{WT7tH3)vvPCSOy%LBwCr!+tpjVd7UAn+rwce1QWnBG
ztMvEpDtDxQLwG%4Z(G-A9F-0&N{d6Ehbac<1|4xXeS1N_)gqLlD$+_QG{NP@et&ZJ
z!GBEX=GCiLvot}uC;X<Ng$3yh_SY|m`mrojgOkP|pF>xu<=aM(t8w9odnrRo$tY|l
zR}8UXNoPhwO|~)a4Z7v&Nn<hES;S2=UyyLh&Rz^Fsihr$uLOcOW&1^iI*<un7V$D#
zW_}p#Ez3ipfE|DQr>*PUwzFIA-#)aQxaqdW+3Lb3f(GH*_kv$@&UWAV7h1SMz#t>+
zV!gNS2TzSVrdTWp)p^D~PLxpc2!`QVHBnOULtOlofb|fpb(|3F)%*UK0lI;qNk&hA
zwQo_2he)#P;$IG|?9T<x!t3xD4DE}yX!|{Z{e~Lj?jLrH{DBF{hFT*fIXN8;T2FyA
zmbD|HCwN|2*SVRc92Gi+C_#umGVlmZS*l{pY5=&+*eT?Y;caK+(pFx9Y1JO>T@*tA
zoEZ?FKkCxPoW;%CPKLn?)aSDE%K3-=?T)&0?5^C1uOF-yA4m(GP-Iw+H?gO|$zmSw
zdW=9R$u&53><*2&(s$$@*cCHk;s~h0U9i@+wzqND8pNA%*hn@ct8+5p=!q-|ynl~C
zZnH3VeP0KXKnX^k;k_J1Ap?-=4j7o>=Z({H6tyuJ#-yO}-@QM6c)(JeNv{KT)e8no
zOqHO9d`a*&8MA`cmEV8<JbnJ$3#^)d3X9Mwpo;f^3p%pRgeJyi1g`-&fKSk*!vSk{
zP4-QE9Jz)-<gc7}GHRTi=kt9Ke~z9zw;3kV^vulLSy_7#D+#b9Lv|p~TjCsUhO%}1
ziV3`;oJrf!fK|TQD}|1rQdC_!ly4|vNZ>;aMF0m<J@^UIY&V7q39YYTbMJM)r2&Hy
zhN&$8t4KcS;loXcab!Vok%eE13HCbN65$6rVD99_BqvlM#0MgVo@toyH{ffKOEbvV
zkP;)J?achV@(>afBML)#0LvEN_h>;f1ZXD1Q_%+$NSY3}Z}+k@R@T;LM|2I<8P1H=
zM?WbF!ZI}5HoIOnGxJ2q;DK8lANNy(1Gp-+lxHhgXwJi~oM1nWp}mJfydlIA1scuh
zpE<rLy3-eU`1w5_f9N^0p!H<C%7fEAIwL=RX#8YgLw$Gx_E&HyR1oJ@u3Q-dR~DH}
z2Tj2rPir%kfPNK)wU^a3HOtT?i6F`dZDob5+FmJ0Vh>OlO>4Tk%JjK}qg&$nc$I%d
z#0GSJc_692TIfR1f{cpTPXqA>@#z-I#?rE~Zj^h*p}HDzC<KU5PF$??^z@`A0EjX|
z8DW{XiGu?}tb?uEKm}+GZY*0(M^}t0FBm_A3KlZB+K??|-Y<1^@VT#~p#kH@0E6~U
z3b|{COzVOViL|hi3K5Sn^rj8n{Cg~$nIO#ywS}rv6W9tWkko>NFFts1GXe}I5nPzR
zgV{rvn$Wz+!`Zyk7d9_q7dCqD^%Rqx0l9$5j-thvh|zHN@W8x+VcSE8(&2mtRLY8t
z7T-l+3);>x&*Wp`PHx;e0~qd&{R(JhXm0Kc+e-Ry2sp=pfmpU2&)J!oE~F08-IJi$
zFgL9jliUpvqyYuDA=#3S^zj}V7+)ADm{jnpc@d58L|M6!kvzlu5Z)I-O#HSPL1=%E
zLrC`bluRH@uh?H?veAtp^y!qNrcqv5k2ASVR5ZEn@Ovf9nJB-4St}Eds`s^{KLt7B
zp4B|)g&4eddM>tqLFZpd#0QM7^1~B~I0~u@&E*UJ^H*{XKYDu=PbM$zcqnmk9T+e#
zyei(qhq<wifOl@WbDVoGvnp3cMMnq16s5{CZ;VEU9=@3^=wE7Zg{QqZH&s{<Q|BP<
zBS+c{x9+9LQ@ts<mDDNG?Lb?$Iz8MM+X;}SYH#!ea_1$CZyfFAr;+g2QUynLCO0Q?
zZ0bJ$?(|G@!3^=K-QT6!Xz&np+B0+#;?CJJjM^tY3mB_NoyY(4I9tt0N91VyHi7yX
zkv0?sWRwv_e%@cYLPWarXvC}uybDn#Pv1Cfj-CEkS2UIhQuoW3FI@#!%%1+kO)^o(
z^vm786m%Jdfg#lO!M8{Q$d~)cOyhk|521;0NRb(H*f7zBmGF%}B*w&F;tFCA{I#G|
zQBTpy)&?fQ*a0`EZN&8(H_CAo>}h@p-+_TwONdc0F$zrZdE;E{P!qgI>l-&x$Hag`
zjPVZ}v8?k{Q|Nh7U6pD~W{AM3jZD)>&#f(A3FLxs3mY5%&U(znCt4Ora$Bc%%w>Sk
zNINhvFoRnptZ{i5=@`1Q;E%h6{||d-{+Hw0h5g$+ZgXZLQ3{!&43$lip+cz)p+RJ<
z45bm<MiEL1Q9Gnb5oJo5LW43Tgpvjtgpf47-?PEC-@oAfeBP%Yo@b-`zOL)M&T|dN
zI@Ymz3-d~xJ5W~kuQ{!?b#$g<6=;YZX1#>^=)4_cE7sg2a2beP7}4Qr4?|)mK%+k?
z5`Tsp*L~R_4+1(5X>}8;o!3Zk-olyQU~6l(?HQzG^CroG$ioShzT}OgBLW?%hKp4>
z)qg)OQiPs57L(^9f2~2_11CoiktCW&uA0O-4vh{}kmwA)mLw=mlm*Uf%nT?t(BBs5
zREWWS&+GxL?0z~zd(_rcMn1PV?&r5ba90&IGbqGBd16M`U2<uo^h6<UFnF-_Xal#=
z<Hj9+?m~@M&gf-QQs^N|Is8T+#tF0oVP2jk*SzVrr{%r$uB3OsR*JDLqAh?pN8+Yd
zOQ-BE&WHA5T{0>n32)`u9jF?RA~zFd$DV`MvlUcmi~U(%n&#QT+|u$L_Q)^ku|$M;
z><9fI+14<*i(|OC$IVmc9G@VC8|q1p6*j51qRg`UG=)7hpFOQ!4!4uc`Zm_zXh0zy
z*P=Tm)rLSuAj+_QyoWGWmh$;Fc<h2<Qf`AGM*AjJd)WYwi)L3zl8LgKL53T~Sa^e3
zY4`7I0MkIr9ULL&0qKPpb{{F^JL0xUCwduL=jqeJf7qa_eA^$4z8+Pewj2klvhjT<
z?C9V!vjwMs>uux8IOQhWP7YOvaVxaT5%!Wu7GK-^2O-hl=wX?*8UpG)T%`nAl;xC&
z+xGsW!IT`**VA(ax)aE*X=EC)v&`hl{h(7xB(&H=!?X@nmxr|XG8;NZOG$7@h!7&5
z=e4q-o*p*`>nn805k!8j+6%s`(3GIoT{TB;QFnt2E9Qv$6FQL0o6ephfEWUHi;qv>
zEW*hRS17^)%px~y-jpFv?$LyydocsEO12P&7jMQkp?oj5$(}^G`>EbiQag!d#CU?B
zf-l3noKT+&j6Bn+Sm@?c*9eEeEx3~u1>QjfqC$KRICB)Z*{f??I>KwV*xGma@U!y@
zrhgtdp~py`lb|oJaK2rod&`>&&Ft4s)E=v>jM|%_m>;C^=t>~BGl2dM{%_if6+;$n
z2EY|GEACBk&7?dAFYgC|JHLG>l7%*N#*XNF$M3|64%;+ttoB&6b?enT&a$sLU$vk6
z`+SN@>bdfd2AXB-idy)lLdjak`!;Xnvq?Niy6`6mJ$35cdtr|I1>E!B(6~AN|8U0X
z6=>G(0Nm4q&m$uuM#vqQ2e+bF>^r|a`mF|Tie=jiPb=gThA)cQ5W1+T<`hGr3kRUr
z6y#_ujhO~B4;8dI$nstokRX~uuc?EOV}+Ly*5PEQGi9Nmmdsg5<iPQ7!!AuNlFX=i
z8+iJ3g0ara)k9J#b`p2D5_=5rz)$+3<RN4(wDnAprp6$<a^DWIypI{h8IK=(4!?H^
znWbpuMQ3=B*k|XXqrI<soIX8R7zo;n28<rvMWAoAhtC=Y9e*d9Ho_b-{LZFhDjeLu
zeSCU^rHTPk^LEtDj>Jn#<TKTRBO*NTBBoz*6OFEI9^OEq_cqdjX#|^;(eXVvjP%YM
z$sF_H`r>*Rb}@4_XLESH93<`7?n|93G=l`<=0UYxXnX>W8tw`BM{Fp*yXVBs!%Ceq
z8IC7}TVUr3gtVQrQcz&vc5ZbU6=fQTWFoD0L7y5nXkeDc3LH#GX)6Li5~aV^W&tK3
zS97@T#;C>#*%{iJ2KV2xvlks5gxNxif)b+$quolbai~`^%@RA+ktF1ZqA#4b4IY|Q
zseD#B@fO*a-pBh!vY1zznV|kD!e556qp?yfZ$0G{n^9y@#3=VB?l>M4G=z7(i=y25
za)Zw;nm)>-p_#^>^_Q<+6~Y)@$}?Gb+wJ;0wr~HTu6+XJvrg8XX+UHGC|(SkyG@UZ
zB<el4gfI(@z~hXrbBlf%#xEVF+o`I_eL}K%J4vOWt$>N#;6_!`*SYg-fuvgq4{G9#
zVgD+9R_(EW%Hejc;Wre2lP{6|fTDADVWAsE`)oQ_nRhcC)UDl@W;0i4g`-PpnR#g3
z5j~=FEV5_|;6V&!RK@NR8boN#1=0Z-%!s_AcsPe$DyvEV!ydMkkV}kE{^1|VU3yP^
zF`c*`F()w^EgRQ_)ovN*T%BZ$vULmWIk}c;<<wO#RI!pC1jqyA<y&*K&9Vk=3mlLE
zsZpq~2=JO9`<{J&&+T>w1_r9h+Siul6c?v7eN`dr*V)3#%1!JnQhp)RM2`BrxxsRp
z82|zADaBVcH8jka7e6R0I9Pl;XsU1&IOD<JWuh3P0hHAa<r})bHBDVa)IeDYUE*!L
zm<zJKZr$s*D$<+O4Z`Ja2w|AWb};gaCmtLL)`xVpDR+lK+I4k8{QN?4_!U`Z=GC!C
zJ6J?sLL)pRnK<`QiKUR(&e*xif=tq#6eViF7hzXuRkNA+_x<@eU0@aCMN5}T6Ocwe
zY`43C)O5>`Y?9uCbBIHqZxbwXBEX3DbPN$@+~N&Vb9t}`T_12?MTh&b0%2_t+*C}z
zm?hgurv6(TGvPR%gD(#6+Gvf<8V3glGK1wL(B4M}TpLYh{Rai1+aMtWJGF-Saj(mL
zpY;0&2fZyQXeD8maUBaudn<Z9oqP1S_wuyCTv1$?YqA-#@!%nLO3#qig8p`4dtF9J
z!eQa0kaY;VZyRCZlef^>9xkPzCz#fj<EsT%mh7XYM9kuZ?8ltCnHC)mo}|X+_nkAC
zWY8@Ky+^-_DW3V`TT9Qn^FU5v4y%yKYartk0;?bd!r0LbCO>PP67^C*Y#>~%n<u-i
zM{99dlj}rXOo<$nQM0q)s7PZ54Vs$sYSi*TTb(-(j5}Y~eKko+`>%pLMKk3U61~o?
zn>W?$xV;V&adZ)atJs<VvAdz^+)_C38LpEeL6YG1Bg-?`IoCN%&823q5F?@<wW;vw
zHp*SJZ+4qJ41Hda`cgm>FexoC-6qRkLCI5`E#&?5NIZOx9lL%1e()__x4Q`mLOK^O
zsRfdNe1qPHBdL&j8UNSk)albxNP2N97S12@UV8{`4QVDktUn+)AFI|K&`GH0!@m(+
z0(RP!F%eB}uxZh_{_E@4jX=0JQc}VnU&#9GO>#&d7|Cu6+!b@?#F&u9-{BEX6FpMc
zhwY?x*fOaTJ0k$Tamj-H?;7Y;0S0h5L<mFmon+TZWA3MH!6K;zckuM|L`65Hzq{^+
z&eA|s_pshzC#~Lp_;3?`B1b!RX&C+?s@Mm^JWsJ-@~n01MwrAqKL`!);S#5CyFl+e
zBpQ}0hm2ERUfz{9T!hZ-T6npnG2H@4MZ!@hlfL!z>BZUic5*I+EVaaK!~jy|p_?8q
z(9!8YI{K-m+JW~Mqkc$E{v*W@w8y7X^kn6iaY5Utj+%-!v5rU-iZ@2B|2ALu^wda4
zbYrqXU4FnRpe<@SAc2o_a^R1iHGCh~fQFV<D;|QyDmZSgF&Al9qr6PgHK=W~Zw~Sl
zszvU$j~vL!aVURN>wm+hR59KKFfsgdQ>BK`PQSbH_W3)zO2vTU(7(`B@6hwF5GX`@
z?CE{SI)Vp-*Pc(jfU&Y8Cfs6wc2C_dJRm*Se*1i_y*+P+x)P4|qkkpj(5N0onU|Dc
zu{8;he-wQ&dl1A-)~~62+ve3ELJ1=-ffwnVKZq?<nK<zsbvVCMk7-)I6Uh+Z!k+Wz
z&0|GUyGYZe*_qnYvRY|o+)#jT6CmHl7U9>YS&KyPF;(c0{fhh8(Y&qUpRcZg!HYd?
z67aPo=^o7hViwV}!!ad@mZoTDe+9yvr<mY&0g>+1O^YeCgd3gzGvC>qxNy#b7w55X
zaE*N~uc3{LV)7?OcStlfWwEA4g|<sBtoQ>>w$zt^VcAPmrX2-V3j|{gFDWS4MYQaF
zMM(CD4#Dse5V+0pB@}u|$yx`<hd6KE95cJjf_lX5BM!w>1VUyHOF<P2F6QzQ`T?&j
zXy$D|(U}rWO4EVLW5-e~O>j8j^QrGZ$@6PllnCt>4m4Yv6*n2lqc#C6vtlk@Jan~+
zf~C<YFKW`JqP*t<s(uHbrIOsLWlNi;1(c@R0PfGbw+XM0@sIk>TNhQ~)X{<WK7t;9
z(di;rb)^9sKAf>Ns>_=Ks+}Y4J}rAwG;gp$9Sk{dAiFaz#Qi35(&-w#itZoYzYic!
zb?ZO94QJ1$O-ub1q)X>wV)DPe(?3DTFbauXVJ=Auo-^Q>Vu0eN_7s3~mQ-IDD|Mxx
zfxf=j?Ux4JGG)_xpD2k4XPo`K<@eMr9Q~yyZr<A>m@wv$%1wO}7-mx6W0S8fZPV)X
zf(742rvMqpt!K|-=Jk&p#-{?mn&~&UFS&=?FNOdgKd)7AQ_ad9lp2nVkk_6EeU4IE
z@>zAw;NY}b0rGan#-6wJb4SI>XliL)kfalo=|9)(uPNXlxOx32*-0eG`!r$X+&}t>
z>QPZq(0OmX#PEyi(ywCK{rwT)H$xHxZ*9mEuw@yvAUW=5KUpWsP{$WOjsEbskky_I
zp7C?AO{krSuKCDLSd<dY_-%hF`Xq(oM?^^l2j3##{djZ?!U70u0mu5PIr<LIWcP-|
zUjkNBY0)f6fzAt36)hZD@@t<cB#v62DapwR^xZZ?^cvx)5qj=S6$D64(91~+rAD71
zPSGHINl@-3a=wTG=>pe&dF$q(TYrUFK+KWiHI06dF_Y%Ki&9G-PU#K=Bf6%(mu7Vg
zc<;M-@kq@hiC6bK!$PEVWl;it=i@t-NOme+7zYZeTijmNuGPuz7btMz@n&@sMH`cM
z%xa&83hvW5?`<|`T;&?pLFNK|d{JHd5-(0&u;B1^t!a!<CLp->I&!J{Y4trrlu+Si
zS{6iB(>W?;eFjQ}sLY5avLd(MYuak+{Vj#0s>?3H^Q~C2<ba`pL7sU>Mx@<9pMYKn
zPbfFWP50)+j5cWBaLFnaR*xLXjUd;Iv}kZsebR8zF*^W(II6X#%|Ifw18$|8A>(i}
zG+2HImYyQ>`53zX&X~5VH;%cPUOqm%sA`BF2EzO`dn5)#CZchO6yvXB$1=BUn!L9o
z{5|G*_(vnkHTUC<n<ClE1gi<Zl@IcE@W_#&n^mm^yRFSp-gI|LW)CWL=g;>#dySW3
zGg;2!J4v%ms4tEWVvF&%L0uw=yZx*pp>d%}?yXJH^TNIplk9IPSSA(HsD2wKYn(|h
zLeBR~=gwu<F><#KgB9_p=Fk#AS=Ex9(BtYysrcHygkzf<ZDO5Z84!GVDjEedhn)-w
z*+a5;UUW?vjf@#91RhOH`mbib=JpI<g+2!Lglu?xrF)4ziP}U!NT={1q|+hh&i#6>
z_1s|mlI>{iwz}p&-@Hb+9tYi2Pk*P!fh26$PEdP^1n@6s%{ci+E`VwepVkAv(2%i{
z*54))l9$MhFE;1B1<;z#r#Ix>X(JKc1tTfKpAL2f4oYbgxQRMPSXfw7t!WJf>CWDl
zY(iD|22DU(8(UjJe-sUxNI}1us^lfeC1e-j*O8RKxM*%0)DT}Dk}}ZATTfYt3|4em
zNxD6-Z_}=wqOA){E!vjg8n%=Ook~*Pzl7%;ZiYZ1(B8}vEtPZn<QTw6K-M{vJ8-@5
z#aFu2F-gF#I&#rNc_H%Gp^(_w+n*2JBN@pY5ExqW8}vPg8=aGo^DMi$L6pylHoA>I
z%);AjH@|-Uy7jk0gCqM}(R@kuaCwPfjL)7_47>44%f7g?R;^mS**~~<3X!tbk-MQQ
zfs_4WqT-~PU~^Y{$daR^@IvuZB4K!mPImldjU3*qASkS5)>CUC_v5q|CW1|>KYXkJ
z7=orgCE#udZ?u;%n6sbI9|ruLS+Z2+;SvJ_smWWv9=IAC*oZ$2{L66{xPX`$25TLq
zjm}?As!-~t!TSK*OE&LY0?}d@l9B0PKiyQWCLwsJXwoaA^}#b-O_2T`-5!v8?K`%C
zp1uwmk6K(QO^0qFx=(To3I-9GqM;`SSf72rd?4@-&Z~(8SbT#*OxODI`wY#n-Pun~
zDIAGX!!dbB8k;C-iY_;w<mbtSL}s*dwOM_M5;_>*-0a=;J7u87l$#+@^QnCZ)eK~E
zB%+k{=hUgmulz}QCrz3pC^3>7SSBG$N(LU2LU8y`#0b?_@A>j!kA_LWwGz8A2@X8R
zEPgUEh8vq@Ir224zx|Vfml#Pk70u-Hl|1ZDVj0B^`j3r`jF=nKjzp!E-XRqNresl*
zR&W}|xfJKGF1ipIu$XCk#BCFVkq)GU%h#fiE$CV~Ux-B?(pL<rT(XSX5H|f_&o%PH
zs2*{w%!S_Ek*16D29F<qY4)C6;w#n4P%JPWI8Sx#73(cqd{$ME-$H2;5dtaA>4-7(
zCyV@_(oZhmA^dn3A9da&&tO!E?A^i3#gzXUlP>d2&F)jc(*f!DA|1&^#=!Du28FhI
z%?&g=y4F`@|J+@*%F0RxV?aEeUllMoS8EhfvI1#kgomHR07{%rz80@9cM-Eb<i)H3
zesh6aQlQjnQVG$gU{uMTZkzmUQ85UnfZtb(VQn14dB5JDx*Pm_MtKC1x%X6awA&-8
z<42RLlkUN#*p<>GG@)tJrs#&;c!^%HU#ODXNc!|0e}3H)ji=D=`mDaPT=6%>j^$M5
z1Q0++@gf<Gbb2U6athPoZGQgrta43iZ>>Nb!ms0+ZN7~sT-tn%G=m-WR#u}&O}q-E
zyzrMp^fq3fy#Q#Eg7m=E?F?5`ABI^n5Pkti@eZ{MbPpFU6jBZ}%t)zReOyslX{)fW
z26{l-Ub`s%3irBp?b^)@*pzO!W`vN#7x>1lTYqlOLZA_cE@#~jSV(}vn@JHs7UmbK
z9>g~>D6k)aszo`|V2!N;wrI8iO@%BWiUCKS9Ye62M8hZ(S)9U{pKk;<&E)XqB`ohd
zj)<wxKB&KNGK>YpPu%1A{1R0*=FcR(q`PDaDu>T4kdPXM8Vw!i7b?x$JdIeRuid~_
z=UuA*1$n6#=qU3M^uOwfLngBW1;A!3%$m{2@Q;V~bMjnb8=CctO@m-I6MTmsux{8h
z&V8kfRSo*`Xr%S$3uR~;zbWEUysu69lJ26WAPVl!`U5JGJ_jE--|#{6sowMREP<VY
zVVX)7d^jI2D(!FtDY~|li2SYwY;dB^r(l&^O_0D0qIN$2$lXy4pP(ixkqAtW1S5dz
zWEY<_KzT8NU~79qN*H5TX20wD4d$qz;|N&z6S|v@RX;jo)s=*C#43<|dR#CeyFM>~
z*Z}6Oojd2sYZ8-IBvA(QuhWM^fIsNTJ3RhBBu%EZ8OTYlLG>B^wc?-Q5WFa^c+jbj
zhWa6uj$bI)3o5SH#-0*@TokVt6x!h{ttqB_pMW}aHnG<8n6-U+k6UwJRY!^e;6Uj;
zCvP2lLd_}Z<E8WGZ-QD^taYs|#kkPn9W=Y>DFmKr(F@4cC_{>=KqN@wCaGfXp@!jJ
zBKrIoq|$<-fAYuq^m%P>(ayYga`|2IU`QNOpwUVOfC*rvZsYTqv2^<|Q@nRVbjR91
zcVZ&EeDu$cl!j1D9t>&WoW@hi0fB_S!!D~1AN~i0L%-1UC092J_H|x`ex6$cBa@Bd
zcnP5NFS7Ecl7d`GMa_fb6MGPT>dl>tXwE2zddn>=3_d!GesrC$_fM(|!+$6h+6e46
z(eW=4g<7_mumY#|BPQFF-W<~s4DM}#9^9K!Z}BTe>2KZ;dag~^A<Hn>0w;G3)IQ1y
zp2FM9`>EpC+R%n>p*v986`a~Pgr+a_HiTAfVgd|K>@NN{?{OCMJ&X>7zOR1#ikVxW
z5aE+K6v3gPhgXS)F-Bky2+OGxUk2&z;!|5yaUrG2LSleB;DbqH)#gHn^Rz!M@E<m2
z*3(IYTwGiPBu8yh;^x`5tj)Y?vI-05aPsQ6#HU?qOW(e2f>j`I-)o?-58ZQ~53}Y<
zD1yq5s5$N4zyBTqtZGph{pr-pW5aZhA|XvzuRu>h8R}~10u;vRw*-*~ln`ADVigtz
z`NqYmkq|T|OfVid^+;&v@}i86Oxo#EOR3dK%pGFe>>}0^Meb$GB<v$_7f2NYs36|i
zN=Ya%cbR<Kao6dTrrla10jUv#gy5plwcsksA2jJ)@BoIVon?tt7KZ#5Jd{yuUyhY%
z(AdO0l|O(YtB|~$fr2n=t>W$a;K2im(+c-2<y{)IV}#4NmQaw}vqB98+%tdvq`Jyz
zAlsc^=ZIIFNObtO;MlmkF&B^;<&KybFp7cHt%)Mcc^#`S+%Oiq2itK_PP65i?oS>*
z6w}hNv27)Gu;&hsSmH(syx{&jZ5y;I{3dL2i<X;nv^fd$%zn-4gZ{tN+v=P(0_D3a
z0%Sc)duFb5!>aiWxW?k%di{Dy;nrIeGNW2#NL@hu1xK<$)W2^K44sEbuo4x6E4mhX
zw0aOgET`g>Wq!_|at5{k7psTQQciap$*dDZafEj!?O9Ro^5fICl8HHES3Pcyg&n<L
z^k+bg-VSxNK;<x?KvVSuCT!oMSPWZB@d?AdfO{ckd`1j7wOU%u@j&nP?ImQ}x2QVv
zX6GK9TD5{3$sx1&8$%$cdIQ`Ewoh`GWJKV5^U88x*J3FT9y{g^T1$M_RHEiwC4xF{
zqi48BZ00mpH2KqPg^mr%0}U3r^}uN%9N*>GWFg}w5fC3lz3piKo!+;c98VB|M5pc2
z{Pvd{Gr)bLo1bZ02^T7x&J1cg5;018C%LM?x^7ALk-&XJg6;N84$?G~<xfu<SN}Gq
zjqB#O@M~XnmzwqxL|MGAuA$mzWbuHr@yU5FJHiwnd6|t_;7kP7ORF8|-g0nNzX9q(
zTo4)CoCzeyv~do*=>YXw)N+qVFM5s*{U@Tv<)1l%<V5spl*vPrhbY+A2BzJ+al_Rs
z;0;(>&Q*+umv4#*$uzG0A-XO!Z8ATt4SAsG(E@!5Ka^GSm?=^R*9t>-KQ=BtULEFz
zvBp=y)obnmpZxH|7cLMP?T2RsYPKU}e9O`^^{_Qrp%~;bWAPi#Iehqs85v4XE+fIS
z4|sO~aRtm9Iz5j*uRh0m;R0_Vo+P5#H}}TRnw4y`exhKvmy`MnJ(L*?Vc^_Y!$W?>
zIBU3?nnYxK^1=|B!DE^NQh`UWJaWkggHTW*KYyeJRMmsWkN*+y{*~u2o(f)<j<_rf
zatnZ4Rl6xXt%tA(#Uucc9@wv;RxY@TVnVZMcA(F%td^ItjHL!9Z%ZeW`N#OEkk+{e
z|J?R#$JA|uQ%&16Z+dZkZSC`G<??3>x4LAPzIE2s*tx^iZSf@F>4WzFD8A{CqZ~a$
z*Vp_X`%cZfC=aIaJaJQOP(s4&xjRmI`Mw;ev~8y6@+L=RdQaQFU8Z%@vdWWLFLt%j
z@9(>OS^l?$$q6-%{@3FxClAXws+>~h{QaLJs<taUPvQOT-|p-YldN=^8$U=jS%ehY
zHJ{yIkw6(%D)}^#xE@`urFdrD8oC-(a}P{)8=vizr?@ncpy^Wb_0r4lJp7!#zesSr
z{m1y+?d?W9A5q>?B8f@y(ATLhcd0EWzZs!z^K`CO-py9h;g2huq!%F*k(O2S{ZcG#
zE2~%@=c;$o1zPGq=YIZqP^<qD(FO-pkm(r79x}(M8(-bH>dn@ov&B)#BVMe%^!hO_
z^LU^gdB;zxA}TJ`MN7+4CzhT9bzDVa@crfL$m24#9y$BQzqub48FzI28@oZ*N@5lf
zKmFL2P%|&K^5Zr7wU&#~O>9i_{gc1X;P5C|l+IgIReO8Mme<}$5IZGD8q8}U5kH$-
z>Q4GRtpie)ru|1Q(^z*U@32CA>AB^%Z5}9RbSvA@QO)<H$Ar+N(smNb(=`)qR5zJf
zp0Hm5)#5;|^m=`VpC8WHKAh6Z;KSrB`-0<Ct4`Y~AUnC_3tf3<cnX89OC^$J$;C7B
zp4Of|)izpalH2ehOH!(Yg&aN`v@;Ct7Ak$Ji8+00;TeUdP3rDTKjwCaiNntL*~}b;
zpkxUVoR0S!TVj|BMnx=5(dxJ9&~^oh<lG!4MEJ9XgP?g-BpJp<X-|nJLOC*W`JX4y
z?_kVS<id8L+BWG1hNsCYv^}XgweLUaa#E>%Npwc{7U{BA@{g|Wrr$)etktJC4yAeG
zWkKaVY@4cT>9xI(Yx_`$&+F*&W2%m7UN_zM&0>y0Br~VV{ehhE{P!EpI_4rW?@=)E
z&-D3?tJ<5<RhxvqGmBIl_dd`)^sBSj7a-Y3Wwm*eaQb}}u1iZKdbTBNSetZS{9?Pe
zI};{3{rt+wJ5AWP@=@Sohmz=oSCl*aHr#4suvuLq$-Z6Ep5L#op8I8gtVYQb>aVY0
z)KuiksT+sygTHglF}r(lv0&OSfAgcV@UY&md%_eZ@sbQvI;#Cxh8bNjxculSv+2&?
zFZfH9y|DB@PLr~J;&lnfqU4Nv^@mo6=M$h^zU@7K{5ZIwFxG>7@q7y{*8il<dK%Wr
zTXv|TVlsJMSgx8xa^vt71Z36E`E4z|UjDI@uFhJ{m30-gZNo(!0=6m>8q`*2)gCW(
zDs>Rzh6E1BnXfiE^7{9Mo3wWHd#UbHx&|Vxc1A{6%E-EHATcO;JWJ_;uJaeK*w1(S
zXnR77$}RJ+bvzw^(BYl#)3wCm)P0RZDw|0p(f68loOJGmP2pgl#hznQRm^q`3t9)m
zbVbF-E%C>ga3ZUXhMxbibytUG{d{&w;hP#sb1H}3{R(N8>id8l3g7xmBpRzeUN3+1
z;P8B<YsFE1j$abf7tVfd1QWvDY_P%RmZfo(>$(p!(i`faOv2$%dVS03VuP;uh0%nH
zVIO;*oB!gOr<F0}7ki7AP3xW_*s8X|zxGJG5tjpe*I)nk%#Y3G9a9T&@JoV{^Lbwe
zS$m_VrT-Fcjz-C7TH!X9zL`uh<atO^NS{UV&Q2XvvR#FuuJ&X0X6%m~_ZJpEOB71_
z`&Ygy`11bb{vp~F6#O7+o&m1#j$xnZT|IMRtAdafj50eszcwQ}!{iuz!y($=pPO~m
zonyWW`MvPIj-PINM;U@MyZdJ}iMcCX`{SNtv6-}DzIts%+KVk&PM3cCoM6zoZQWx8
zC^)_AlQo0W?N))kN+#S>v?zr=xdON~;T7L5cCdHUc&<LN<XUN5FQRv0DZu;GNHa1+
z+J<Ti!E)&KLB2l27ahhH8oaC#stf$fXsQt{=p%aG#4)F<|9v+0=v9wTRlV)#a)0O<
zzo^?%`d+7anF-bw)v2u|R_$~fHn!Dig7|_vU3G`$&l+(>HmmyMmP__oR7_TY{UuCV
ze(Nu+!1`n57`)&%9%?_|Bbz&1`!U~NRgvbRLuYWzsx<Hs3t;<X>a||7l-nP)Q;OAl
zJ13t9m(Go={FuxwFmQm~&Qm|(%~|QRC|!@ayHftfLD3?T!;t5`w952!af_!qtlJhH
z<ZMly3yyD@`BN?QRQ&=LUsS99pleCTo3<xefF&IlnO{#GN66qbNTG3@qrGQt_KuFJ
z^K~ajPj!}I)~d!PUo4+^`*c95Y1<TroXJ1o@bN{^<n^2fX#MAW*JJ-3OI9z<44RBX
zdzrW2rOHh0`}zG+Wwh2@AgwhtlaV~P2df#KRgt>IQ&xm{OKX2-ct%9dm-?svn8oa3
zy}Gw}OaNes`bg%*EDG)J+pRnoZ+X3`Z79Fg=L69O2=3Ap5UnIHU9~Iem1h~n4wPg+
zs+8&5Qr}zg?z+(G8}Vu4alEgAS#Qu)#++PI`AD3en4uU_e;g*B-O*u!JR3qWpUf?n
z(LdD-N|aq{s$Ok;GAF??XOCR|?m-^U^Y?OD<p*2hD_<j*9qy|X`{~x%H$|ag5lKan
z@g^yV&1fH=@a7pl`A`tHoyiJjqliJ{dq0ufNVRy^aSPRrMTr@e8I$TBa@m>9dESQN
zH|xB>S!dg?FqX<N`h&G$F!-;IxDxbuG`ILv7Ft9i$e_DDfo8>vH0K3h)JTW#i#s({
z%l9>V3_pElVrza?t&fjY&DS&P24-D&*fmveJIoZT#hW|(gagqw;VIFXC9HtKC7;tW
zcwr;O0$r?sw4FUnd`a|slwFFiF2PU*otiu@E(kd43XWb;c@XF58o9(t6=&31FTiQG
zn%zt?ahIjP(>UVkVfp*w{nrg0%#q<|*%`F1&(+!J@y-f`yM`($rNL}*zryai^7Zj7
z#mRh~#+=8L4Hs`pH%O>T)77jVNfMQU30{)2wDM)fW0JI)55!ZAxYuvXVrwzapdeAs
zKm6`k$vNBSKbl=XhOp0|{ga|{Cm+IN^5c5k1j9JSCilK6Tt?@0aTWQ)uWrUS9#LMs
zVARshFDzC8CZ4tgl?h%2EaAhO5B80`S{OPE;J`iN`lnm%=9`$DFn{9zfv=0XE21Rg
z*6w9@Pxp~5D?>$fabIbtua8zyhe~viZ`eV~w;J44w=yZi#RsWfyJRclB~uyOu$UdU
zB^7KlY*^hB&!hY#Hg_2<yEYYhJ}&P!ab(x;l<VzOnVFT!<a!gS&YYZur>H(joe28L
zF%A@4$YZ?-H*QPU=%vWveixLSY&gbGTVpL~QZsY2e-UNT3&69L$rw<rSl(KK80K6T
z_#Eymkpu*N;6&{lANkrQdH4}<*vb>}KmcU@;l41le1S#{R!!&kzP|@Oww}Zp=vY<J
zTw--?pZ^3CpuWBi#pf4A@Ap&?i!ISJ>$~acT-CzhlWrBQ)PGDd+4|x1gA>=x6FnC@
zeM?Vpywh1L_mr1T=$HEKbyxbw1vb;-jgK@-9X_hp`i(<Oj}bM&Nn_aM(YGIINgpR1
zW3BW0NCE=)#q0LB&po*6MO5Bz&nhpD83Bt|)w?#60Z+4v?R`wPu3~)7kvem@DPzf{
z*Y&3cB<#WXxX=4cPfXZk)t{F(Cl#36m;!}C%C5dPGg4LF?Je<SS%Uka<#IU9>7#8z
zIBR;W{BEE1x##coSIqCKqq01#d|snvKSV@w3cw;^5}sgEMXr}rs)z(X5}BLUJobq@
zM0{#@&7y91jlf%rFgk&GpxGRSe{QLgtfY|tx>sB+ikM|={9<#m*xVg(k;6SKQ+$QK
zjJ_~ZqpH97#HZj{-R$3$`k(%Fc|VfxAmMVvSGJ8r5m}aaQrA-qxul@<CZd9uVs#WN
zQ{Xvk#L#^53QPFR301e+Ddh$oTc?nZom55B{>SFJW7XlFw2R~CZ7KlB6*&I65B5lw
z-9yzaH|K|Ivko(0m|fbc)Nq~y?yiD7&g)r_A|@4cNRP`N8Mk(!h}&Yv(KLeE&hl&Z
z2P>7@EaEdEzECp`((5u<8ydk;cDYiWn-iNOy>8tr#KdL5zV2nbHbY0dp^^ji5k}tH
zr6S_X%!~ew8*R`Z{U@nV1XU8{OiPY%uhHf+&cmoWMl)yZgd7h4Q<d7qYD*A6AoKRZ
z$Qjy=zRjt-kfv6tuQiQ5eORTk_=5X8sxA2*6F&wEBVu-i&_(P?S#8X}ZT=C<bx)iv
zSdKjJ&h6{A_%f|AIPA9Zvp=wyP)&_fF1@muh0uv!zei%R!$n%4t5#v|d5UoK1>qMa
z%uiMuG~!E+yHXI=F1?r7VsAxa!1gf*^40d_(B)xmXW+X+ReRBmhURSU!>JvI=aXJ3
zssFgyF=mzSua#H8b`IRt*OOPj_RB)RlhL%HJf-a3+fzLFVqrDq)GHDn#BFX&4O91E
z3}3!4P_MPunegG1Y2242McdB_J%sZOcGl`|Z{DAyEUQfdz+S5wOmtK^uEhAv=<RiO
zR8qV<DJf|*M&v=9XxI~RkgLK&;!{88pC68eZvleMs>&Z9Hjro2>vP;LXOGm0Zd<T5
zBB@RHZ7m7SAo$hmrtg&-=sx0Q{&uSz?FL6Q{1ai0+WtvjW{h$vobR91Rd>?decZ0Z
zDu(`%QzG&p!aV<-uzC`P?oZ_)tb^4t_Ua_9zSh%5)!uWd(u$xyYBjsLB;AY`_kx6@
zj08_k8#K!cZS+wHBV^`ZpR6ra_Y#9YGf8yb^8RC2>M0NA`GWh2#MO~pSScSOhI}v=
z$b8K>Sm5oS-O5O2eF-D3^zPb3;~TwTi|6Xi@k}0ZEqq?v&^?VivRyF|tQ6W96Ag7c
zu{aBJ=llQEw~iIt4c{vX7}tlCg28OZWQ`He8*wGq(@LkgBr^katn7HH;~8HVsh%VO
zMA;24THLFC2tbDZ7A#1>;X=^7)Coo5rg23P*G3ZqhzHKh5ZOeAiNjgn$k;DQVo>Sh
z?}iNqs_tne0e7$FxG4(HDyvP@uQRdaqKJBq&TpcTUYV%t?8(<f_^N;2qnrD5zV6wl
zzuZ{;$MwvjVJTgDvvu_-<|WCH|0Nz<A7{KTL=s>%`SYEw6+bhGcBnR`K&)1*R{QPl
z`GTh_c_GOJGVT>Pzm$+OCywHs49pZH!M(ZRnPNAF(;`+Ec)xNgf6acGbvkQS!>g*l
z1=rr|i8EBOt8Nu|;KWOD-_DAM_g)W^OqB^oWrRN0jjnyXTJ&Y7lH)%!Kb~puh4r7;
z*k?!>T}2%9fc*K9X$i(JY2Wy?l(pH7T!1%5;(@*#^6@!CvSt7AN`YH+q*KXigP;Gj
z|G%E7E&BNPm7G7jqxTYObS-;(yD#?#?bjEN)R)a>O@Vq|3RcywrYOE9Y-VZ5fA8h&
zdG>@k_(BM*H&1hXmulXj`CpD@RRtaOYI5V5*e7x2*Gr|!h@_9up{q_aOYq}Lg@)jw
z{*m;;9Lb9x0O%}D0Y}vZcehO*eo5Sg{A*6{F~E&HEY65$6sL}&J!yXF_2#fIm5o7e
z!?zUqZFysVg-39+7dKM=%GMU;4NKlxx^H{1B+4sK*ix^^%M%t-MzA4cSOFxGHKJET
zh*keZl3?$3m*4*FNYzZ2FLIBTuKBb}l~6Pa)iA5sEhW;$M=Vby0z~<d_k|iUMRAUE
z*|DrsAcC30cQu@%hVP1gCSGt=p<(<?uv_<NkqroYOLn|;Um{@_?>V9`v4An={ru+a
zZLRVtXs4c0`xa7iRP(<(XJJXZr9b|}QXgS&T{1dG6etFRi?0+<Sfk5{fMj)0$?3x^
zWAO3w&LW4QI;snl5aTeU!RR*Jnbmcas?6~y;?dlq3G51d%{&rCv?q>W?<Y<4GKstf
z(a@S?V7SB}+}qnb&rLC+&OZWp>CYPR-!Gi;<=}otSu)HAA{dUQK2m@)nn9Un43GvD
z^4Q*8o9boa1(oFd9c?;H{`znd8FIo_*3T9gBcF(Z(7`x5uMyj+zf;%RNUExMk=Z12
zK7=?@MI!!W{?TzDLpd;YOycU$QG+GQuX)F|>~|rgafN(LF*b&0$=f4$;=Z=ras4?T
zY8vCahDE6I8k06@jLXj_{$KKxT&~>eTKLB9-9FgWvLeC)uc%K2+Gxxvd$wqO9-)Ue
zYJOsOip`#|8lFy?2#Xn1W6oBJynCot>pw3|GR}-gOU0awA+h>O@$uGb#vP>?TORku
zi;QH;S~5@8WX{kg!EH=vlgruj+R(&ah>aV>E&!bL16r#{URoop^f1aZXYZbpN)Lko
z^xMz5K@&gSXf_5jI*H@kYup+murGty@2_mrPGbR>Yv_!^i8r`cKC;)k1V3S;MoA`K
z1)!rDNRbj{A_@~<?y1*Ud)eX~ZC<WAlb56zIU7q8IxufnnQVRH({Rb>P3y1_%1s3k
z*FL^HHSDWE^YAgL45{^>T>ff|05@zCqzujJvr0eI-L>BXvQlw>j+~R(>_(gW19zDN
z+8!Go?EJ9YuiqZI|5$_@-4#gxIS402R42lcbznIU4!fV=jZY%hxxygKC!`vE34JTx
zYpEY4&^Zkl`NB4BGL-Ftv?fpW1$t!S_&GsrIJm=UgiFT=Wb)2p|Fc%(t9;TN^T&v2
zivrs9eoxj-{_lR4pDO~VH}(a2v1O^rvy`s0MnUG}m-Yw}2>GqH1tS;%ExgIjXrf0V
zwsETf$wa^nIqVF1IWsG7ey<uW32si%l*9;$<4~0HVQ8c-T7TV}nAjX3OM2^C5<A<J
zQTK!eQRPTn;9alTb;tYv+Db7~cpsyQM<LM5V@;ANbBwV_IwU|AzW-%0)t&G}YSEW$
z=Sem<CkWE=fJ5-LBy+rfMT+I-!jAHd2xa}7be$<MF27CBj8%)mFGR6NCRKg9eT0+(
zbA3gu+xobQ6`Qo0FPkXd2VvDg);Z71zsj7RiDP60Di#(N>HW^mYs?nwzgI(wTB$YI
zi<byGR>LQI0GDtyDc3OLC|UC96qaI1)fGZTtJ&?n*Q4fckEwFI0`r%uppNp8?MVjY
zlAL$Zvm_Svvn9LcF>xW?H_9})g?#iinEv0B7UKoxu8iYc-C<(!xk8VonF*AkY{59X
zm$50mL~>*%6EHf&4*>JGAHC84eeV*<%%K0cIg<Ir|9S|CME=Ns?Yu-X_`g<*D98N2
z&KB%s_J8kK;_5l{Kl`45^M5x}_iFyPG7UTQe|x5WA^vxo8aBlLvvwxn*@OZ=+s6=m
z#B644bRtx#OIH3O5lo_HMG0}t+<&vVfM-`J2MPxS96LlrbcXRi)1m%Goto_YEo^CC
zOy;^|d}$Q1j3a-Z14b7rKT3R0vC41eI5>J?%$g&a>#m*krIR!dI>|=&NSLnnsj3Bj
zrXTT<5!4;)z*dQ5qQY;s-YVK`|KxG-_muL<0#!RwneD!$Qo8oDbVbq9+M}|<6;TcI
z7x0IHXIF9M&0~MF=})(!0_B7l^#NHRU|qDRM3Cr|t=w_aCk=d;VM>q18>V=u<m^^>
z&_;ZEVwc~qex3Y0mx`TIJ{3%55|XW1Wm!a@j#Q$R@`a-%1PgyG07l8VlOcw$>){LW
z$7Ncd$PEV;oN!ntaA4WQep_B06rs{ReDsh4QI0i^wX^m-#kce#%co)$`@%_-fp+!Z
zDh~p_{sI-x*oypP75BB&JYiD>A@M5EPVxFYqtplkDqfd5`-nS>jQeTzhK%Fly4Mq+
z9wmt|K$nnN_3Oi_q9)p<wtL+@CI9BjZq#m}=DPyS!X6yhOO}nH1HkVk@aBT5ssi;i
z@eQV;T>BX0WzP47=S?+n(B2}~vS(V}c!&5t>tjcOi=~M`U!*kBM@xZoEaHF|%&B%t
zZ(S!6hq4FbMV2eQb%eNyHTx!{_Y?n7|FgLpsX?+>9Jsi$iEx!|NC|sHDlNG>RxIAA
zax@wY7h5L`sT@Wq$KtFcAu5Y&kzV@^7$uLm+Xj5^=e7cpm8l{-AHPWN?0m~7mzu?a
zW+gl^5$_~G;kWST#&l75GL#P@a6EowlD&<mIc=5|FfdQZia;F2JAZ+LT&{UAK5I66
z`U^nT6{E^xOZ8&}U2?PlBvSV(BX-Xd0XcL7BR^XfGoSO2xh9C9F?a8n)cXXSp0a$v
zQou#@N2srluigwi>O&{5B@ZFW@*+s15@49R6fjmIiQT{TKZ`RKU^O+8vqrV2owjEr
z6bO-pl0Tiu@uNtZOTGP7?o06-#^;tz@jL~F-b>xtQJ^ku3yLX3z2KscY2_5inf?2J
zc6kaR&?M3=UqZ3yTNM!B(s+#rWd-5l%X72+r|IUBN)>Qx13W5bH5!9lTmK>MP`^cE
zrIA0lx&SPARsFc9PWo4CckFdmZB4nT!`W58ldiQR(><TKi6NXD>p%(s=vSu#uAXOy
ztswYZMRD6R_xP4KiG=%C6YbL`mCd$x{Q5|1{XD(beyr0OqEhLt)S%fk!+$%L&-V)0
zlgD^zew{LqI6b5aml9X2Qyz7HM*>#>>i6?uB^n{)AZd=shX=CW%NF9x`P1jcc35`p
zH!J5_K8h+pF(`)Avk~!CU%-CME)-yCZYNlSbGXZ$clMpyaq>kKpyJJfp3*k57N}*l
zwPTi3xky}}2Rha7vENTu<w|lVI1-22t|mvxEWRS(C((D6(yH$U4f4r2&Ds)B{)A0b
zw(qZwyuM(0sjziWVP<<Gx~(A4MiHM=q03wEQn|>&>55nhJ<tE_5UcHMCPUvefV#79
zR?}B2l@Aqm1=qg9!S$2{Ocu#Pkk0X=oG(W54)?Dvw&bPzlUVr=ZF{!vJH03U7WFFJ
z6oA_*hqL6@UeQnt%mLFsfT`{LCbH4v6UW1|G4lYEC<Yi2sjSF^SJ{hiT4wv7Z<;~|
zu9%Yb<L>w<@e0ySAaG=?$k;#e<K<Y=Ly@Hkz<<(@>>bpD*6p+vg%m1}LqyG3)J(wf
zSA~rh-+W`&@2_m;Lzswd%Q%-6ej6WadprB%q{LhkQDG9tt*T_bOR_jFlduX`$TLOi
zB%7!h8S5$F1Yuus9mi*;)miMC^g81&t|L*n$z6K0Sf(}Ar7rPHK5`N=9R(5UuQpx3
zz`r<+9Zpy+h(fSd&M&bMAJVJ*&Aw<1eojF_6q|dLtp|20Iq?rQ^dl<PraPmGY1D~v
z=pa60)#|rB9V~n1_~wPyRk>ceD^P;ZoP2xTwUWcsIj;K(#!tx!ai6X)r~Lk&5-Bh|
z5j_q9T84yiE+HcxlP92vsKlRKXr75loTdZ+Fo1^3p<)i(y3f^hTeaJ7K2lE`>BbXe
zyUJvW+Mc5R4t+>aQlQOL#$`P4Qys%(<ooee$?<~db1e1^(u9!5RSlPHGGI%8jjN2M
zruu=R-6%1}u$8pqr*V#&;u$~H6dG(1|55)FtgWL~kt=9CVs~<TC#cT|+%T28?vsYp
zk^f62L%y)==JvWxQgrr`+Qux(Y(vqZynouq<S0~LbLMty^8%wllUD%Z9vQ#hq`ynm
z=bSxZq8yn9jYrh>LgUTFm8}}<!r~9X=GX)sh!>-m-EbAWGVL$8_yPeKvNg)$GL#Xa
zg%(hG<2ps;13*24#n~0x@xh5FIH*?}ZvP?B;g}kC@qMlx|M@K!m0kvzq=VCNyMk?6
zwDEO(b!L1Xcbx>La6*u$DB&*=grv8AY_ek56sjOXA_vZ=kT(mi@wgYO5!E=N=Crk@
zz@<h`SZIc@`hwOOs_@7Y#90)Plc=9l=1X4S7%lGOT;6XXS9Y_nrCI6(PFbO=`=D8c
z+S>}8oWLASD1Zq@o(PC&3VDLP7`yUe_SEuK;DDkk>1Tbnm$oODvt$Uka5sY6#G0R?
zREU49S&&D8K;nA#_s7nh0=x4G>=%;%O~=YZ0eZlbe1H!O{;WH{&l%W0QQYQlKNF>Y
zI{|fn|NnMc{|Vw|*#O1lG3#$^QPLQn9dP4fz-|qr=7WN}>dU@gd0^R|KfKJxE*x~f
z)1AFN2M5X?*zLCR(9G$bwFa(yyuw<0NZZ|QTh3qA>CglDnJZ=7<Xitat-I#opm_EC
zvVC)Qe2V(2`bUO=ruB(}*B^uA+g(d5t(q|hnWW!;T%Z0`Pc``Um;ZnM%5e234G2+R
zZRR1?)pnxRLGQh|KFc}&V>C185WHC%g|+c|7Yt`JyH}l|XW72*JW$Uc&`=J=1-ycb
z08Rhm?%kr{UqorbY3r98(?cz69EDTq&Yd9(x&apU`)dE|Yh=g&x`kCJp7x|{!e~7V
zy(W;bDF-X$qcuFs!A;T;S<$3-k~!~10cmX;-rPC4KkF-!l5|1Jvrd~_E?XpQ4Lrc>
zX&JRSJ>qwh-3%$B>OP%Q-=VNB%MhP-7}Q{I4m1%s^jCy0j48`bK=S)?MiD^ob!h1`
zqA2y+!mTJikWv>~^1)A<jk{;GIZj3lB-*`O^j1O%Q^L!A-<jc9FfnTnF$lAOU``)8
zbZDBhbIm~i#$C9~u<@>YJ%(L#8OMsDh>Y(qV!L-0f+uH2Mv=Ic0OS#1w$s*U)F{hc
z9$H<7-C6geSJt`#P&0oB9lpPa4m`iXAIafQ5jJlomd17+|7ye3C_$4F6`rh;$(P`n
zcbxoHuc|V>*5M*udXVJ@p}R$gP*3<joA>hcnABrdsZfIxaEtH4mR4IaReTbmOINIt
z2i1@}kazkfBqWTYt}KS%h0=~w|D$Z^90XlU{HQ#h3{F3n&NI|j+=+M4X<J%F;b9N0
zO6-x~;N2w4cL0)QWCBUuKI3dh+t`LV_y0ij)}7dSANcVC)fm8MK~@tqMNvP(v`;ie
z6>X_Xrk1o*H!SJCGycvKX!H;5yA%}$kzhkp?hDYrXZLQlT7qHR7w@Mob&&%1rSTxJ
z!SxTg?dIl|v#nMC8PD+7Lh0PR8k!vW#2C+Sf*OiO{wD9rSDQ1}TEmMpXd8@N`yIm6
zo?LJ%Ix9meA-B5`agHNFiMe+Lb%|brw+7F4aGT(K+5thT1Bty+NVudz$#sx=RzYCH
zTHQD}qroH%Xy;h8D9a7deXMa7nEoh`Z99B*4)m4T-_v-FuVehxh`taOyKnxQ2ec!$
zHzOgWN8}4?15?n$A1cs)l@F)9Jj*`f34g#ZI+uCGxu(qjo~Q+c3tk^>TbiiT4qK6S
zq8~HD#HW8y*my?;+#MII35lS?`}#PJg$h<}+~ZMqC>%<YZm*eEwbcECx1mWdaa<e;
zIy-l^hNzx!yQ6wvItRQX9Jp_V7KZWPqaza#1kTCKs@Y6!Tj>S;a_-#7M53!sEbFZA
zyW02aLQHLtKXmx;IVSXktBd<qA?*zF^P&AmaI~vnAMc@RBu8R++25scmubwAX*{=s
zdn1F$C?(xzqT&dNXGoDhyg3pgcZCeWrr+WSE4*`OaYE&X4h`w1^V)#RzoVeJS6Gv2
zcc5<xRWF0oMey6d2<5NJugWyBOeb(D|FBqWWqtxybZtO$?#n=D^H7Yq9GK)xgPIw!
zfWh}Iw0#X8JUH<u)V8d(nI9qmN;*+-*M25)F>hNn>2ZJxTgtcU)_<KO`~I&-u%MB&
zkEW((;#GF~DC?X%uTNat@b=boWX_`0DD0M3s3Ipd+aw;2i-89-Wd_<iWv;zc60^3^
zmZ;d|S#E9kVugu6-=925<o20I#P+aD%Ab2opd2x?h!8PBa6om_D&Y2dX82DoDr1yJ
zUlD;Ls5J&zu%6=Kh&4n%Xb!;8R;c%bVKK%>F0BJTxXK3K&J9Zue3RVLaFr8>qa?$L
zPa9c8BJm)Sz#pIYyYz*aws-e#Vl#PKJH%@_$a}>%>>~(MadUS+iH)!Pwx;3E16CwG
z_}cK_#qn6qzK1F)>z8h(rRnWwLfh#?nlkh%Cn>Xet>5h%Kb;nY1ob}uG;#rQz>vhO
zmi~w8QYgO5wfIcKVGn2-MkMv+DrCIR?D^6RC#JxBw<`|6km^QXB6(9sA+q!t7-Ezl
zUW&0`3daqR|7Qi=1vG@Q_`bT)iUj0$`n3qyPTyGe?f!SOmj0Y47*D%$jd`KWa&|@U
zT7$7zcQ6v&@saz;K@*?`;0OT$J-`?eK(g#-tY~;{NtD*QMgzL6mS)29kGIm!k^beC
zpP!#-M};OeNo39{fJ~ld!p31*79{s=_`F7bqf2<YOe{2}*1Q@xChnyrqC>m!fJ2Hf
z#lmPu|2pXUN&^k*KJVH)oZix!cj`5RjH$E7dqA*`ds!gz@6($&HDOM0V(Weawzg?-
zJx@14-rG;-f@~3y@m-onuIgrB&XrHVB{Bl+@UCvv-);b$^K-i86<HAVb2ky-o}_+Q
zxv>$w(zE^d>ma1;rI|~vNSyncyrngRsk>ekcf1Dm8dW9>cBT`}nUN-A#6Jjw@s3<_
zADi3YY60k8PCWdL9NdIE=P3bWZVE1DaN;_oj~|crJ9h)hafr$wZ=d?fpwXhd81gF&
z+90HZdkBdSc(&7F8L$WM;o8Lj46%R3{Z&;}p{iytOiQI>7PK*0!Em(8J*b5*V~0H=
zmlW$QS~<bDPR7PgQjNzCSc7x)`x@D?VHNMI9c_p~J9HK3DpLRk3A|}$C5G`cIPG0b
zXlQf&B3y5eB^&4BhGQQ)Gn1y9l$3$}U6@otWL<<)z!i#~u2yupg6~O<0tw*qD)*Q6
zYPiyYePbI#g@1(CZP8;fB1h=#y(}n7rCw-+?V~MxGU!Hc4%cTwp9GjNJrPrRgufAs
ze3EpQ$&qQ7!Ow(-iNVMDMn*kxReQiq?)leN75LI06-%eac|orsJ;I3IZ6oK`N$!N5
zsh>^KP-`HI>6qz`FEbifz+Am?>ka$rPcuWSjZVa0fiN0cP12$W8b}!M8Em%PwY0vk
zNFwQLVl!rP!(%o6pYr~ONVM@UBq5C(s_}0Q9R1&~uonMY7qKD!w;Ae=#s4<L|29M2
zMiBq=|J!Eh+?jzBf1{$VFGAd;<m54vbq0gZ?iN8AIhWUmxnfydYjyucj$Dl>G>WWQ
z6e8_Doc76~*Wtm}8GA&Gi*5mJN7G0NbD$xneVrjbuF)8e@!y>~%N^f1ukV&u)`>sC
zNz;ywOQ%t7@C7tw5&$8+-U{-x#I<#UOB8>QA>JJ?ntkPpxJ3BM`OLm?ClMQF+!0!o
zV2IwV|4`b0uG86Pv5huF{(;7pQ;!uEEYfe+wyi0hF1?P|CFeg{{pS*uFZH7Zby}ja
zxiQJ%4+9R)SsS{rE<PD>?Kf|F;Qrxp2E*$Rmjl&}86v+QEZgVT_k92DdjdRXUkb6B
zE8Ms1(J8;JrNZbJL7|#;IgC}y-)<=MzW%Y$?sXCAzbPo6etvfL#a~}E^|vp29s05H
zj`S}4whrgC(*M0e_usDYJ^1RcTYb<70da*JJwiQxebX;+g@5?8v%{ue_jKg9hkhP5
z_1{Yj`TY`wdeOgbcGhn<>trMU@3ja23wPg8Q+?jJ-v1_>Tzi>+zm#7$b>X)caW1XH
zf?qdP@!L(!$XoXBLjAsb^*dagW8hwg+4b%J`v*!i8t>`G+uvW&)9;sleL(HE4?I_@
zeA4*tI!HGHS=?-~&&9@v$o|xr;hLYN{5%4Ipx$Ia55CHK3mztd?E<1n{3_4KdiezX
zx{gW1bzH-r(hVn~O)+TRTCh;J`pp!L<i2o$yY=WnkT`ktWD+us=_RWh7eb|~aRV5C
zfXO(^gvLGf)i3oe9~_mU-(|)#QX1!$XTTosceu8C{#jtCjUM%z?YECYWt{SedaSt<
zaK?%aM_qn6hOH)RF#~rx(uX8yz^vkkInm6?Gj<^ds6QpyBV`+2r}=3#jAx#m0Mjwq
z?pR^O@K6E6Jw>5#M^~<FzJE!kKFr!<u_g>hZn${+#y4xMnAz|$ieE&m4Hb<+CbiVh
zbWK**AEMj48Y0;P(VH`Zex{5`GdJ&EcOV@utv*(02@)prXTw`w_iHg@_@{!**<oJd
zdal<qqvvcgY`E`#UsUv(mGjdB0ankIet-Jw1*<o_V2x*d>Km+&v(F0Z?&bLw2dnzu
zmq>O=H|+iaMI|qTc)PFczQ3>x%X?9Gk;m6^J!b_{vk@5->NN=2N7fyEs{^E?Khh(e
zrIyxw@p&iMqF+_KMX6Eb8c6nR4$^A!XT$jk9=Lh!{A$N*AO1NdK0M$$qV~QNchCwQ
zA@FGukf6Hd<QD;CKuz|7oPwgob{5rt>@*aMdlbk7vWn_{#*a7UaXudoX7Bd#|Ij2`
zkKs$R1WyD#wZ{VV7O)yqU;L`#04iqhZ!OtiBxo|?MS4sq49+bVWoByoeaOK*z*sG}
z(w~$)@{{qgLbR%7a-`RW_As$~JJ6x-t~vyvmwlHmiFcw1?MUmT_nYK%ByR#Y4$}H-
zY9WYC%GcH#^zuNTV4^EjhhM}QiDYsm1tpR`3vmJ0YELA;NXOktytJm>p>eVc^}OAJ
z3}6?v8>!-%4<Z`2xr~er+d*OU<mP>MvmDb9TR|C4*#y;jfypp`=&$&f63GjMos}3O
z(V6EIlL-a-BXCP3U5<Tt#3g&LBySTpBJ#Rv)BNo7k9;QSF8Ov9ipDe`darL3guBop
zP-qfaM88Xyd21mih-^@7o?<Vu<~uN?#KO~Wzy1!(;N^0!=>~HZ0atO^M-<O~WVlpk
zAf@k<jg8VXgJdAX?|XGi_@n2@0aOMqFD>5+bv7rfrX<Vr8_ydET=C5*W_?zFz`9v~
zhH`x?!EF)H&gv1_*`4N{p8hh{-gXi&8WR~$`BK0a4bM*oHIW?n6Ooj~fTjr4mtLlm
z;(Jjaco{bi7QqMBeyKl5<^)f9JtpL%?u<=Pa0G^H?nE2K-Hy(mc2xWImbebO$xD9+
zbK8TRogf~MRXWnYjq5N^)UIem-2)|f8q5cQcJTLXj&@6^8IEGG1_(Ha#UXF+62oJK
zH`|6FbUdnMhrYhy{wM>yr&3v1DQV?%KtcH~j0`gX%DVeURslJ%O_3Q4)}97$Bgeny
zgTLoeQ8A%Ab;0dB5{cH|Kt%#wXSWTB2Y2a&LeHx+MMaD#Kz3!fn0cq!V@WrX{|R@x
zQu|SUU2{=9WSwWI%n_S&_R+CJ!TGy!1mBz~mnA^a<YEff&-_E;|0YeMcU#0PG&aop
zP;d&?#f*i2e-9#67fbmb^$Jn<JnF)}3Aa7>QorML@!jU2Oi>HLQ>sKkMo_av2f&ZO
z_z0k~N5GCN86zWjCah@>%1C?QAuM>u139h`NVhnWh?=lq3F17v5EH#SxnJ$&J7vD|
zGX_LCBJOA5Wvb^+@9-$kPhw-KY`=K_;zB|HG~GV)gk8JQ;|06n6?L7@wCxP30poIh
zdj+1Cn`qY)7iJ&1Q@^?E6ZiGBctOf@+G%WhdBxUJD4@)Rrd<`jk>L-_BiybO8v$4D
z^Mm!yV}Sp=12TmLt-`#2|A_nTzxMz!%zcwTL(R{!PNV<sDBU0Gz>9aPn4tYRIXUtp
zMtEFEouG*DXqfe%63OG2SOEcQ(VE;BVQ3FQwclTG0<w{H#*!_X<sV<y{a!%OjLe{;
z<4%dl$@TS%I46hMz9R=haflHR=4J<mAnJ(YnONCNFa)elba7pC(IziR=+4hRF-aAB
zw3GP;MeEWO0jPvz#%D?eBZYnezYEYEy5mvM)_{S8cn4nprJp!~qJW!_wh;P(dCx5$
zEcCA)a0Yz2mv1MD>yA7cnRJ_m(d@VHb#-Z?z?JCiH}u>5a+UZ6$^8|pUg|&jt1iGi
z7Y2m-12m_HFjwQV94{n&#!(_)?0`GJN1It+QDbNs)I1>QIqykO{l#hs+>{RaQiD{{
zy<-X*Jc_>ArzNbKq*dm&n2`P}>o(YUHdvjp7wjc7z+3|l5Y$m{+IrWaXUJ+ad(uR*
zA^0pa?!_0=f*kUtr9bE8GR6NKVshPYbFcx~pM<xhYb83fqsHDDJ?i&P0aQ1a`lX<s
zDbI-TBj@Pqh&{+}44{fOW@JB!@)9;<%8AJnnFpLB_<LZ7h7+7`wUN66C#<`uRpGMQ
z&%qM({Xj7GP2*2O?17aP9xZy&R$D5@oCfl^22De0w%Ly<w?kThCcubJdMzX>dzBHi
zjiAY0q#>_h_IysOtx8KgFP0USP9Kq8EXK5-2Y+p^gBv$@XMKCZD~fU^SrHmxtv04n
zBc+tOdv~98m#1h*NwQmiD-4UgOBZWT;WWHm3s;>v-krIgj$-{m>09VGdA^?K5(bdr
zBc{v|lIO1#`?*lj5EHf@;S_~s{X3|+MB=eg+&TJ{az%8f%C_0p--^PB_X%ZmFq;_M
zAI*VyD%eCTAp?m93~#k2A8Ezf!vwZz#>Pi<U7JZ%Zc*S>6om;<(~+)zuQeCsKNlgx
z%p4YJAG3k(z%TK-Ih6MLH4HiqSP6M9DlYHvq7Lt!{o~^R*~JcNc9lx0vM%Q3m1Efh
zYXY@<RM!kY7y+8*jE}FFBltX5x0Igvr%e-;#iChK*gR2Npn-V7gzwaHv_u&MQ?UZ&
zQPrtkNs_dp=v>yqObp7YeL061)akze6<(|;OL~5zO|mzpOf5I9#p8ojg9eF;AYCu+
zl#66y*1Yg6&Ip+=CpM&bGVtY(wwq8j+2v1NT|qQ^i53(=Mj<HjG((@D&OwcW9o1fk
z(zE%F9rf9UD{FjDw8V?_Ra9<XtOuj7f>!BHns^yPn6k2D!wgR8aM8<OcjkC|5gUtz
z-jEQV61BgS_GE*7&yRj2B0Z6Ug}#Q!dy?rYq7rAWgy<Qh%09#a`*=HdM&0Y{b+b(q
z$^9XCvwftxcPO$2^4l-6u#ZAx;}PsgY|HAFa%_arCClnFAeE@$OXDVq@LzZGH~lC>
zrsj#pXj3!}Mw#C~aB65%N$73SI4E|t(7s|jdsb6^)+9zgdGX@d9UNMTR$$>85o;<F
z{ia*-*+)!15xXwR5SD-)VL>3Xy#)X2<_BSRgqamy86VM`(SwOKg4wA;9Po}>W?J?}
z+zMgKBf7{1P*0tNv2v>r)7%>W(e`dHOZ}_+Yo9ecC)es^U1D<M;8|`&<Sar|C@O;v
zA5oJQ?Uj#U1-I8}b>m<-<Q{9(t?q~(MU~pBGOuc0fH2%<Py~AUk*TOW*0&UyipXn2
z#vwfNr|^{L?LOz2M*^=iI?`|EJ|jUdh=W#F2db+;kMg`uRasSBU9@&(n@gruWgWAC
zTq{kT;5-)*QJGNR2r0EiVdD;WXG+ms{L5unU4gi%UCT@*9eP}g2@%DkkcbSN;fCC!
z&}M}qkYLglZ=%<TPOcszhH5F-%++NjfPpXpah0!2hd4k<+b@t2+8t>^>{tIdp88sK
zk7LZ^bSFP@7bp8O&2d8<1mjpR9OEeYTW)~3WEBX1;T}wicZy3ZW=37YCy63f4$RGD
z@krAIuePoTKbbZ!(3BSiMYZ&_>;KH(gjzL?UF89(t#7=w%ovwW2cn23%Rej>d5=~Q
zq3s=t*nJ36+<5VFmC&{J6M7G1D~(p^C(&mvrF3nXdTm#6lT>fap%j)zeyKsh#dYfG
z2_oV8^MTB%q=8$izh&Ixs}_CmdMPZe9Te)5*pps<?SU_fDe~>7T6mdk#`C&}X^~6n
zF4`Jdu>mqL2s&HSPB^%TRUaYfBiBtX5!(vp!<V}cIp7I&S$2HkM-ihglbKl9<5At4
zcoDO9k<il^#SBh!VsRxQo+Ya4eq*OdG{%YMfgG61?vO=?yl_B%E(col^E0Ih#BY6r
z>oEwc{sRp<gwQ8=7n!MJ;bmoI?>NTp)Y8PbmC-8Hf_Ck|AJ|d0e<!lIuWgJ)?M^i0
z@9=7(2Umer*N*EYsK7r`x5Qn@C=xcQZpX*5V2V5UNwVFGb?b6%*FjI<sxSGF<tBnp
z!N8z5-}7dOWLXy7*Gt{SjwPV-DQ1<1(R0`j$&N(cGXZwCUJTI4&ZAm0yr<^VMY+G!
zrM5DWJYc^E6qILj51UCgJbaDGhB2W#4cWq|3}}*q=g{&@(;qIyuea#y-^*<EsZ?e_
zaO;-cx{Yn!)N0zf0lTHToNqO9;PgQ^BhGi8HLd!^zPWp^w@g^qWuMgQ=2B9cExaY&
zrxka**;Jw5+c=jEu}X?-ePUd*(o`K%)wWpXt7UE}eRX6YD%fmW!@YFp?Ze9USXe_j
zkjOKn=e5h1#T4GWqk}qkHc*$247y4XD3fd}WgtV<PdAP1=$upK=27dOh4+epwTLYl
zI#Q8;t2pB8n@to?;<@W`31@7coLg4}`8#*^_W5Eo$2%;zi@}^OQ#v)*l$(;C#?}>c
zv{6l!Tu}`E`Sa(k)Ks0DN5rqs-4x?e>x_TsBwdrw#G3&sD!z)JI(Htbhr%}$iQU=R
z%OtLU|J{<e%tT6ggAs!UHN#ci=1eq^Fr?@5rlRf}H*RdZrkq`&vZ=5ecCQoTsu&=$
za`o!lDEQ*ZG!f#;JvwESqGCHLaJTRqpO`B?$>Do@q8jAH@A8sbB9Q4wv%|TI7jskg
zPMc<MgXcTF;KmomZga$-U$nDc#5@d7FE8wL59>?{nIj3e+CK1x+O=EZ8NwcTi=|9P
zY<B;6uq>0Ra4H5HR=`*o>~r|=-(-V1EPPH3eqcHHPumnX@xk3{EwDa20TCo(CIz-t
z@sm*|Wo@)ThusYx8dlKA1rVyh^XDfUre<dLIXQh_mv?OS+lh%GeMid$M%|ebs-I7z
zWiuu|a>d=5)Hgd)DW1N~SgiA-Gp0!N%u^ir;`#GzCcX$|<Qz{KnV)xFqlHOsGKKLj
zXhEfRfGy(PyI7U!v36Uxx>+x8<;(o5zo4PyAaOlq?yhK#z%GCWF>vJmtL9T~kSUx)
z(v8&&e_lBceGCRg+`M%w@Ojj<X{S`U>5-#H-@?i_kua=K_|mv3p`<^z>7s9v+d;?f
z>-)|Su}&WFgWI$_xJq;S^jj}q_7-C)ZFG-L<XfNK8O#$I7@$zkw9QU^`m~cAm?10X
zH|pjOVKd4E+I;)^VLr2u2aFlhRWj1_PHQ^{hXO^p<N@j6Sxnay@}CkL!?{ADSMHEp
zXwyU8j!O)bp!f7dc<`wt9oN6XRY5G2fiM2^Rzia2Ug9J-KBqWxkc^DgqreuBnPu-H
zt!otTe7)yV=0c)%(8G+;WKDICwrSm31Lnp#8h~Y(wsM0+m6?mX;%jTJ-M1l0x=90h
zyS@RTrw-LVe1Ui_^P!H(WXj6OB+NH7M6G>SPsY<QF-0$Q_KX?3Rfu6JTPHOM<+-P&
z8^PE>PE4tTUJF;Yl(o1~gFYm?+fmPcnx5VySLgA2bkZ4a*1~eS_{g+$W8_;#k{yhC
zgTYd{uWtfz<xuEENN*kV28YUA_Ehi=!G|uV%5M6K*~e)8wnd#uZ`lIz@vkA;vt~`@
z&}?{j_Ydn#$O#_&vN-yIx{J_LW(u}UhfY|B?u-mrzHFH*@$2rcCLfB5-r;ze1K}B3
z%h-aO&z^PX{Yz{tU8R}yg*1(;KsZRa#TaSE0PRLqMGUpl_~<5&Mz%<o<NWyh)@U>X
z2S_Avj$Dzf41|J1Ox%Q2xpUX9JDA#$&2@gjE!<G?#bWX04NYK%48L@b1C@05URX#B
z;|`Dt&MBdpOoQM|5)n9)$I^doVQG1icckL<^Wx>TAP`2Nl}#_Og%qR-oo*v^u5_3A
zJB-2j8@>Cwe_?wS&OV&3@4iU8&aAENdupb|3cxEQmb;pv=Ff=G;aS?J#kx(C8i*J-
z(-@dx)$G8v-fyr;VpyPfEnh!eb*WVw##rucK`=(QdwWYUXma>rRr@dIacPCvD<dN#
zLJ<O3CQ9~I*&ty^cZ-j5jCT|kOkcm7M2se2Oy~o{bsU(S#9)4biL9|tZ<cOHc1glG
zUlwWG-twcncXwNbGA}bBY|iH$9%j59^#y&6x~*}lH4ybpUfrF`bVP`0?Q*Y%$OKxg
zh7oFXapl3DTNv9((6)^@<Ja@AfhdA3e$xXJL#oIH#JI}O-*Z}qY;|xjBT6?#A7VM9
znhiAar|EaEJ6jz|C2zsoyko@3HG->m65&#0=Jj-Pa_XyUGi}mtG4L9>rzVWxSRjm~
z|A?+#yV74iZ7=OF!<02P<=#KoLT8BZKi00H(`0TEYqjea&^A}cFWSCr#i$PL+6fa<
z=6%h%`l{XQ^z`WGO+qEh)~xwIRK0mX&*}I6|FUGsR?%W7g|b9pLP`lqqz#df5?QOU
zM4J{WktjPQMP&^|BW+s9I%Gshn_Vj{D*YaJ^M1d-pWpm9Gt%qzeBSpt*SW6ioWte=
zqQyOaIST_8+4p6xH+;ewA5HNAqJp-5$ybYO7ti1nF_L=nbfR~BBIocujV-dJ+)X>$
z*`*)0h30_x+mx32EdQ8Z5g%LA-1&Z9UM4+L!*f{twE53JN7oJrjBVb0Ks`JV{5E9T
zw1JWZXJ_?b-jCk6i4(0h|K~D&W&I&WWc8fDz(DiPnnbx0+AF(qW*^-Yi@y{XO>8M3
zHDrIq2*b`pjjejD&V?}xQ5vkXecW>T7v9}FsL8Eg$rc<IX^*`25aW~?&R^-gwhyXq
zK7aoH{K^daSc>6ZpXTRVw%z1%Q{~VVoK=!qpPSSy1JDi@{d>m^El*K<cchf-UCJjB
zAyV_j+ho`Cmaiai^_4@z-1Zw<dTJYm8;?;@=|~NJMCo>N@)_#G|2&;ft&F}}>~!E6
zAHA9YEX7;=vG$OWN<pf}RQC9cNdzcvV4>-~MY>a_^dqzNE(Jl{Pq~7nDd?q!&8-8K
zbwt&Gmn@_RWShXTLQZ1*+1MAB$w49*oBd4MS-+7*&wHzx$j__2n2z}_Kz%;o?|pf>
zYL1$k8W?I<doA&5xu=&^F2uRWTSa}@<!c$2PmS45Uq({)*!W2YYjHa*UolFrkFjyG
zmzSod<~X+6OF4><tfi^xbLrA0B{3H8=?gQiUrY&=&rqP_xw!<=tQ}JG7Kn6gi*Iiz
zF1p=x*NGjg@Svl<zg1C=GLHH`A38iVbQeh^C?Pad79-?^e?PP>$fF7|Ac#@rf3VI_
z{-{Vdyi-S2>wf`LFCt5f3(H^F3>#F9R>QRU$hIF22&mCw=^wj(lqz3c?+kuydj<CL
zii#uTZ#un@7Gt<Smwfmz{GYjO0cEk8<x+fEr}FPlW<0)FmjEFYdFfIQHmkzr^yftM
z9`T7M7QYsQmcRn}ljP;){}Uzmfsf`pJ&T8np8?abt1q8YEr(;@2~V*^Y$&XTyE4rX
z|6L%s;ZL06ZDxkY{(3*eN`1V(45+C4_}>irjkarhEqV6%{Xi}qB*gTpo1<jS<U@}h
zUA%e&e_eSYRJX1$I2Wn!V0esJ<%-q0J1B-0oi4VvwgWC28(Pk!-W{r?W#P1xdHEC+
zXClQx2#D2zh*?P^irpKwT!11M{QF_|vx*R_{Ft21>{A7+^!eYjuDN(F&&o0|zE@zn
z*4J3SI>xzD0tSlN@8h?8u@pyG9F!ZhB1^U9ch(b7PcC!rDl6-eIbgs5wrh5lU>}sV
zv$K;P&ER2Wu(cuyY#XeidbKX_Y0P7V)&y>#Sn$hi(5l+n8SDbsRZg|r9bdY0Ne5-+
z_<r~c{nFFZ-3!HPTu|=TKjnCuR$54UET=fH6fxPg6Q3fc?Qol4WI-CEJ-f3lQsNC4
zRt$y<n)fe&jK75QFB5cq(r7#78l~Cblc!E)Ym(@AZ2sCtFP=S<BZSx&jWLtY1}7@>
zpx40uu*0v*kZtG0!rJ_c))xOFa#{JYjI5tEYZki*+DlmcIdtSmqYOZ#$8r0C(SNa_
zkZ7tO%r4P0SFS9tXcTzu<x53!au#rBRH9EjbNR_^%PJ<z$eO*<-uzy|?!~NvH*W?o
zdfzUEEvD?wRac%U&W3ttR<RN)XX2@sMDpw!NWt<a<z;0<OCCk&4Q7<6OetPyk+lC8
zldn?{X0k<SdPUX`vG$aJmtBY;5I|8ISPhp|TvldT>?UXSYJvHm?JWhH9>_woH&*ks
zMYJb?+$K(ny|i|`&|vm*juaSAeLoBHEZtE!rC(iPc_QO@y<x4Db#!dhLuh!SJ~(So
zGekM++5LwP2}*mE{@{c%iQbQ}eoG8+E|GK+Un>3=)1fqerxFQ8mE|L%Q~UtB0(R3l
z98itxKV#y2@i_uwQ^Ydw`1p8<i(+0=gUurtlfai_#*7hLm(Miv_)54^p%iU<Ut;y$
zN5AFBas9>bP<|yc2ryHjG$n0AU_flm=hum&ge|wAs3<Md6=Su=)ve!`jDO7LQckr0
zN4D71@OPZb_uEU7+f4$q+~dgFbQ)jJ1pH|GG{G^f)PyGOQz{ZOf1>S?$JVe#wI}1`
zM&<AVZ@H8Q{V(2LgpPuXJ*wp8{`d*6Df=r=&(}~nE;c_Pb^v+t{&!vn>mwD#GRqlr
z0yWrAA`U-u^TjIU99H*<y`ydSQ$7ZhHp4xyC~YdZ+75a&zDfr_yQ+NJ&ic!luIvzR
zOxf{Mn*PlTN=uh4DWS;kC;@ex0UVZWU@P$U-_36RAC1HXcK8aHVq|KnSPJrKdt_00
zj`Z#}5S6kTxRlZlcelNP_}eKL;#NC4DlXnFYSvx@tc_f1tE*+NuxvPz-sb=OIU`S=
zW64jdiIX~R=DS{TvYlx;7-Re7;X|(6FgERsc5UH~X65F7EIhqU?s5r>e63P0U%VL1
zx4Lh01W2}uFvz8nD@CI;ns@7#UADCIq<3Xy_MC|GnXXg=%2C(C>)ks6gb?u*+kSU!
z4Vqr)aV5>lZ6idul{H(dI$}gAZ7fQ9o;s8Ty&N4K5k3{IM*uxh%y#eH+l?7xf!^NU
z2AyxnnU!<nRc@wqJ_jw_lf^z#t7nKOq@u@pW|8gQ@l%%v2B_cUQ?8_=*ls|dJ{`5R
zw7$K)ee>y*SFc`)bxlMQ0rC$Vkclgl(x1+q6XiTCNS|cQFJuWQ9_{fJfE<dExz21?
zi%k(*@30NYl>+uN-o3MpHvwN)!~O(R!+Dn-Pxls&U;W6pZ|eu>dD;ZC(5}zX9(=p<
z@NNE41SCG<e~)_n7sMs<y+1mi*y_p(FtI~Z><!}VC{LW2c<+~nZOU|Z&-5Ii?G1@4
z>V>DzpWkILF>5n?*}5S8*9b$)e*a-4ta5RxM_#xv>ap=v&z2p*?0^&jj(_fNLJ4a?
z0BR=zYxC7KBDtOKFH)rsWU&>Yyn{sKrSap(&piC({{0L@@hU>r+zr53-G>h!u3(il
z0HFjlwY|AvJj>*QS>>DX20h^^JtN~4I_f)3oW@>UcFFf4$Wj{{Kxc>r+i04is<E5Q
zvKyAHOAQ}BJm#-fl2IzpU+h1EJXt~5ISV{%%wt@6cUFzs<(^|x6^k;Kok<q?gMjPx
zTZc_GSq<pX*y|6qUDo)M&=zOTp7jk5?k-9Hm$~RJ<v3HE1VgJiBvtUK;2DRpznx8K
z^Oh|W-xqB}ITh;NrLdQ5c+bvp2W?>g10nf?s?kveJh|o9c8!cbfdQ{xyCzra)!L%S
zXR};E)QM1V>m28Km8~zd&J6~vX;xk!cUArT>7SUGc<Xzqe*85iO^qiDcU!u2Y4R67
zfA(LSi`#Ql$L0`Ea`{`kjnUg#x1Ltq#lft_3IwwsaSRe4+p;HuS1>Kz9VDy|@P@Td
zZf$~u@=%B3-%I3fFCp!2F3*z}C{O%jm5qoqo+e~=jL0t$15hy`45Zf~01m?d@};7p
zqQu8dvclfp4**xfka)3-*u<o}s8!h*Xi&K2-_=p0$BcRKLs!=9vokTyA>F&3wtK@k
zNhCNL0P|N{#3!L7qdg1*`AVwTB(V|_N&0a>z^CV8@lW+F13Lc`;J%K1P2FDIUgR-~
z#cHbN@)P?KASuOz5qRU<x9)5)X}{<}>bA;3k0bO#7(e%(IeAh&!>r8A^bvllC?Qrc
zz@3#*p|z*wWX)#Eb!<lwdW%)<lIa!}y~XO3zyDUd@fa<8g`J&`ShkwZc*tF>aG`uV
zYv3Yil&EVf`QE_$b`oYYv||x)+jFyYV{<@Xh^}@LBNe%<oE!sFQ`7%k7c+;g#9Xm_
zEh8hNaU%<gefI6^0oHt9R@Sk1??dhm99?c;2f(HM>eVGgtp<7kqVoWP@982COJ4R5
zm~76zpFl$&YTr_N2K>*QS$XWOp0fJDp605@(602k^K7V*c(X9Zj{7P7xDEHjmLV5t
z^fcK37>hc4c4(+k9|0Whmy#~o8<YclJ9GJRPtZK%$l*0B%wV_(B!WNUm!XSALJHe#
z@ehcVe#MSG&*tjc<LiF>5G?%OOGoOnOe9d_djDeB_&0)oWXXFD&u3=q@0K?7ZdR_K
zsMwi`)>+O7f}2LeCI5RcSX-pnx=p&!EZRWdT-#Op{c9bcMd8(a8=C>_5*OQcY*=~^
z9iU$4{s=un#C2>sW5nWS?0NC(e8mv>!ZU>DnxgT_>K4=pn#{viO6BhoHL!1Ta`J!j
zvHC#JrM9+qfHRZ_Oxb@?Z@4Asisj(40|)kyu%M2c(2;F6*6ZIAeFf>jV0DRDr!_=f
zT^bUh{J55gh2i@IQ3)-;1ldHVVlEmO-lDCh4L^~XI1!>%BB3EH1A?Z{N%0fF*GWLp
z90Fnp%2nKVFiHm9`o&+qEE#$zZ3I}IZhZ0m5FDa6UcYg}4+iV_gtg`sZZc-Yx4L({
z{|z;v<R@6k<v(<s8{UgOEUr`f*z#!ZzqeTI709O6zsefZW1V8#PlpN<L1z4XBO?*p
z@^t7~5tNQw$ai?wLmez(7VY1&anzPjGWyx`=kg-ew0&F@0s~m5m`<@y>(;G;4GRbk
zW^?UQ|L&;M05MT80t*Gm$@gq+s?-yJc-*+F1};ORe8lC4&@oAQ#||K=)du3@Sxy3k
zi8WL?ZeFz_BFmb+5Ye5i6qLYILv`4h{2E7)B9}XBJM*Hq|N61^Sa}<4DW4(J@eQ4X
z!EU-8fWYe!8Gsn9@`ZG1OON6+D;zs^jL)MamXGoRotwDlnD{!-qB--!eV+%%Sye`k
z-Oc5WbJgoDC%0nLrVxOEx{8J}aPr`ccfJeA9MTWlLU-&pT5xPq9`9cyo*4xpFWhMU
ze1%dvRS(CWVyq}sGsYmY7*>w!CN&^s<)|7qCTK;UI~O$mi6g-5;5@?6kWiznqaOeA
zU|}qOhr@$5n(^jbRFn@`L9Cq<yo8O58^da)AySpb+xguZ1D}u0CR-z|*@s1rQmbeG
zSSvo|eXcK6;>a8~)3Oobqs8ap<{E12RrP*X{=?;MC&982<4`w1t^6uQMa4L4*YcGc
zH|_^<?iF!#AKTZ=|Am9)uxRG$9~!&!W7o_qEX1nOtcKD`OYs*g|GL2{`Sgs8c2JNd
zlc0;3j?sypWy=+-rC5>bPrWXfy7`9P%jTPWtEjk~{xCpyUS80A@A%yzj&n*Mo^5;a
z%gUy$RD*zKrSxtV<NfDSD!U;#&O5n&79<j~^BAk0#BZ_Fbsxa5i;p)mDTfRh5;@xZ
z(w`7qdm<wv%@eBuAfh+PAxu`y=gJig_M2OO`i@kw0J0b@ga^@%b(FDjaaJpK8>(`W
zf=S1R=N1yB^~Jo`m<`GYP2bh_)g826fW4Ujy1OJq$!66y7B0&4*pMy_IJ(7#xs5Oj
zxxkf`Yu3cx%CZNR?}w8SvQS$Ah_`GI;foE6H+-%S`}L;)^(yM>#%<7+(Ozo*)+15Z
z4sBDl8nSKo3WBzHsPX;8_AX3cd#mBT$t;%flYajA@xHit7gU)<!th!@Ms1Y9x~W;+
z4*#1Vauxm5JW-fbO+62ML2=lOi(N9EyorX|Maofy)xv|<vqkztjgylTZHN-~)IP=d
z<MJ>#_J{Zj`5B%9j(3=dC}ZWy#_mLp1w`5vqG#P|FIAnphex~rJ%(3Q(aw0v$D>T-
z@WTsW)XWo4oI16SQWPq8RtmavCsZajk11;G*s&w#bqH{ay{b<!J*0RvDM-e#*qs|R
zKoHPYg@!8qMbb*~Y*~_W`TY6L<h}pkZOg5wRDj7KcE?JlySu0OXdR@&>O|f^pg6<W
zn4tN41eS_@cJJ}y9Qx<87B5}epZ7ZUP?8|}_=ASCXLo4(&S_p=V&&qTCd)gBEi17O
zNW9_H7AEV**BG0c<}UYY@kex9#s6qPjg&t{Ao3`wIsGIZ?js<e?0Kx&u<9KSUq}4=
zs=lxs_3HL&JCVpy=Yr;+UjWIIix(oRAU$0&d;b8nYRL=EYcqYGVv9O2iyg;{*AHaf
zuJ)8EV#PW+%z!vt_HGj)_3E}tTgC?TLSVTEV~Q`zm&<6J)^D`gmUPOIL%p=R3RQ1+
zd#$13u&D1O?QH+~Mc(^O2bJ)QJsENTmUENEt~V${*vOGn+6aRv<CSoVh<=Bap1`{-
zS+d08S<+vBwQ)xD6-d%KQv%bAy-+5vuUv$G+Y27gvl8Q6%fou8<-s*Y4<GgD{(XJ)
zB!SNX`N{}`60w?_^*A#?8)8+m<zI#~ot~fT@#gK@y<@0Gr?d$YKzwlg6}zvSp&9dh
zKWfo)7;f{f@^RiXQz0=JS}qg2gsDG-qQ}0aK#tYIzcS*HBb3lUI_firJl?7sD|uCy
zy!rv;5j#A44%Q6@nJ0g}%;s$7tNO7Z7VNkO{%2-IsRz+N2ZAcw^X(Ch<t3;dvw+@l
zi~LoiqC^VvJ2j>4H=lYDXEA#~^skDyQ~f{GRKL&f1!#E>`oi@>Ty6U^lT}8HSOtc%
zTTh`9;rT1hq@L^?L|5l~Bq@nECr4g{V+7HK=bGY7;Nom9RSv%Y0X=)L*mnGW1AXne
zjP3H{Xa*Guj+NM(+*!M~l^?^k&N3Y+`*7inwY@d9wAx7^fU}WNA57L#R-daAv5Vtf
zR&zS~(kD-I@!q4pl#yUWF(+Y}W(RDS-ZyV<i|Kdq*YB2{Ov&vcV4noEM*524?{Z13
zWmz_MSQ)1I?9qO;cCBCp$UQzhY(D=U;@Avp>$>7iM7tcy8T=v(CDU1kE;d>N_sl=e
zGW54-V}-6-v|YFO>v`j5Yz80^;(JgMV<@zC@>Z9K{kMkK4~YaWYc-q5J(D}Dv~$M}
z<4etp6;$N9!kY{gguduAJyzix8&6G`LGJk*am0BkH3Q-Nd^(lmCyU(LzFchMv6b5#
zNxa8SE|@Rgg<*1s>FiNj3Id<;rf%icc-FlN&gtk;C8^ay!7QcLvC|Pto14DhbV;nn
z%a&PCphT%Ks<yRv*REX!0{}GhCj;KM+J>h3=~>KPB|2*R@{Tl~HwPH?qh>RyLGqxf
zeb+J0DyQ{M%Bd^z(`H;9?Q7A}+$<v_BkAA&g!H3*ZNWz~2;?mA)h+%~HY%zg@z_%N
zZXjZqU5az*tgW_(LkkKPv!xgiw7@Cd*^FH_`(ZC_(mV&U;@9EuTx!WdI@@6%Bpo|<
zE~SKa_-E^u=rd<_p&-uLaC>`o)SK_HB*V}YFhkvi!m{@q*k|~N5uHhzY;)|#pb~GS
zOe&3_3#$&#va?f0WOSy^cynjxO_SH|7%wvK-WC6$Bbq7l7%WB1#y_r5)rjASJRNg7
zY_3elggc1N!&ukIi@A62-bkwx)Q|c=<K~tYSp|ih@DtJ?;(c7zVoK%htc5&w;~1fz
zMYScOHldEDSoMcIFi$*o`t<(T*pWhMM61xZw^t!5N$JbvsW?Vuk`h6A_dS~5-Y+U^
zd$SHROig=%(x-#8aYw4ZUGV~a4{zS|U_2v2E4pX1T&5#{syCq~bc*hxLEN3r)W8E6
zi||2A{-~;}Q&_aZqxJVRF$>&QO-@!j+_BO7zg_^NaQm>EzSa;4|L?V?IX@^dw6MOX
zrTvqh_4orP#TyNX_d&u6^j)KC`~8LvqcTivVkQ#q$jllqTdWkt<zf3O1ub(L@MoNQ
z0T1DqoIIHw-Gb%8I<L={0Rj|YZb;pF?fUfu<TsYMiRGS#h#D&#9He^m=)ri&er&(g
zEPu|Q8y}(9+T443MdVAA_38XPR^l0`4u7AS(U}Se?|=e7sebJdSvwtenr9_*(|`Bw
zpr*zK#`L>L(!tBoNg(s3=bEZA0QFgaQEG%<*l5jUK!3}V2M!FexZ~&7kyYSgc{OCu
z4Dv!XQ(~e}OZit{z7*qmG+vq%vYBr>T6W~QbDgNw3JMA$2~rF~naEc}LmLRcKaeDl
zgPo$=`nyF%%iT=~V8b@*?f5YgCPnBbbLY-2c=hUxU<{C<MOcS!I9A*I9)=0QZV&OA
zRMi8>%TT(mTypWpc=OS#$7tkX5X(+EZ*oj|V|`uSEI#I$^XK{YQ_^#CI>9peBNGw3
zM!Z~6fah4~Yt&i23$I_l?(6R_)xCT71@vtcynb!R4zycPp(Y!4@7Z(r(W4&V5vn;q
ziVAk!q6vvD$-=>+?OfvbaPmSwi0y!oE#k2dG?TxW9-lDhq8<{L`%T3kHiA1sI9Y?U
zhv}k1Z^4c(MM@q=7(?*4jk5lX5F5-8pPo~uOc^(6(r$JdixtQlH}>QgF+prF+30Zc
z9UPLG&!6|E*4srQHZd`IdS~Z0K5yp3hu!%}@g%4%{RrPy1qpxrx=}VQ;tXfHt^SDp
z(%4`#{kN?sDwNfi3d4Druhk+#>z2nQtR{|j8D;F^q6v#2-10TX8W8}cjQjVyf)6xb
zj-NO&8~P%vfvUNSw6uE2kAN<cj>>(3B+`<Ol1%=y{HdNI=$Rc8>rNVWZbR-W|LY26
z$VzgV4}Z(8Cn-mSvdo-;^5Ya;{8_6lEx)z^IRermSj#-hK8>}nVZYvb^8BS=ZE`!I
z=@69Pf`VXmEO8o>aueRdOLjq^kf&T*_P#YT<%m%KHmD3AE)5el`dSL6=l7pKTd&u}
zy&?aV5xM4Fx_2M_!^`^JUL?ILNU8RPH2iE#_*rWUr!~5Z&k%bDhpybOJ~zc%`;a?v
z+O%a*II>?KAD=k)!(aZ4wLEEg8b&SqpJeCK-IfEHA!7HHoY8H|m;BJr2~O`)l4Y2v
zV84?;BeYGMCm9HM3s)>9x*b+Oa_G=78Y1Ef>cm3Y-@PKj!c-s*?uDJdcFpBX@&~$g
zhX3R2;vxrh?l@w^dAq_&GK);_-WK+SXh)iN9BXaG)Xw!MAn6nt1ZD5^<nO=Ds2dM|
zt{yXnsN|f6aWQXO6TMziTefUT5X+?;Hcr*mwS}dU{kp@=t$b8%wQFAlOqx2+6y(P8
zYz#=TCT<jCU4(e~@X1H)W&RKu%7xv#bdi}babo$7Q`n45KIHB<T8JAdxuM_EYxaRr
z&jFF~=7jYa&nwJuQk&8SYonaL^JIPK_d%22=bmfIU<Wn9^+FDfeK`Qk+mW#4oQBk{
z`SMX-o*cKRe9Bmxf5ZsZ2PZ4Z9{wbgy<2VrB79~C2iS++-Z);I5R&KxytCWg+%ld&
z*D8vSn_iI@hw@PxAJ-QCXJX=27f3Jm!i7?1b6hyk^7zCby<p#FnVTOxI-7m+DsprD
zzoku~1nx+Lm1<KIMFfGM_e1JbRyJ_ARUB*61@E4aIIwDnMaPSCQPIG>UAlGay=eWz
z`}cS4+0z-4^J(I`MaNv+em76%rocAzLKYQ8Hf7C%g$r}QSR}mRmnS46r&Bm&78Xuj
zK9y!3eeM<_U;x!lI|(;rRHB@tZB9;(M1nLM+;5^ZwQ8UG;?JMELbBVr>M<($md{y^
zbN;s{@}GIS=FU{oL8H?s9?+GSIxQ7+BwY{b?57tF5U99nM)XQVB4m}lGZ%}EV7JmI
zQBwq_r%xY`g=IGt6(f)QDCCqUO;Qj^8nX+V)XV<zqL#?y9ki41rLQI=>>{Wmoy#gI
zjr@JZ)Y#bP?Ac+wcCyMIgF>NvgVSY1O>41m;ckK_kEZI^&vk-Lrz-CxN%3kOgiM=>
zY*2RGAJ<B;U?3$zRKQZ;192k$_CbTjUN#sgBjXJ|?g~)%PnzhE*Qa_~Hwn9{X}%dj
z-Z&Ez<BxbHWG!s@?TB7Mk7#7>hD>BWDjLloipaj^)iqVBzRgW_qH}D9`@W`zhDcsz
zRek*)Mu^@{q=9J<BW8j|jo9?+niO3U;c*p^aoO^w%t!G>n3lKJojO%`faM%r{~*>A
zf=LK6efs#(CI<h~USeQiKxyR-TXGhT&_AiM?)y@Nt{G0d8-RxR@Y=(@7*d_d3>vhb
z+gJ)JmI$-`FjQU~-KM)X<YZ;NXQ4wjPbF&uH7Pc%X@73nGPFy3mQDrz$85#+?6Bg$
zMVS8gpZIsW7cWkMnHQ@M3$8nc6lnZh>0kwG%=%0@)_(b=rg|Rxcy)8JLCVhhp7dTD
zRZ%@Yu-QgqgEpY{*hiHR{5yi@5I8gG;^oU@g+_`M2X+7qNYsras+OM`{`ZJI_&J{K
zq(G$OKskpSdo?NP@P&QcDB~?Rynx5#G3#9pn36*%Q^y}RQaOqdJaph~w>yyQf*~qp
zMoc=})C+{mK(O@?0kU#(f(sWlKJ_R2)BX7jyj(2wjs=B<rSR$+*Y5CI=A8NlaWS;M
zs|7YXL&#h2H;?OSAn3EWqBOUDm0Vy)mdpE`J2#wCvlCc>3hzQeOKwh%9hhfk(glzQ
z7h9=cKT*WQib(%mVK`J#yLRo`EUUi0)y<8rpyIRGP6T*4b7m+D2zQZK`ZP6ojYdOY
zt(sa*Dwj8k*DSPw*SOb_M-&%N8Z)K`p)GV>>osg)y@fX~M;H$q&fZi(kSngJuzkNl
z#2!-fuA6gI<nk{s>(BQs*$MJ8|4_fu?O=WKdLe{NSTm&F^Y`zjO*(Eh(G%kAs7x@&
zj=g5GW5*PstWohP1KX)QwgbY67u}{!n<n5KBmvQ6*PS~a30{ASnwpALVaIJlWq}BY
z+oC3-4^DyPr1p192bb31Wgux`8Q>twDk|;)$zf>f45FcDL5;0QLg%?lfViAASl9h%
zWm$iihFiC8-FuV6nUNhZpt}T+bQi69w8b3?l5g+s^aq${P$wP;3-g1lq@#6t^L(rY
z{-;h2<e8X%+j$of2OC7#<Vv4=zdVMA@F9anybD*IIB}xAy?wxlo8qBxMm5Zqx}|js
z4+|6APW9B$=&C%vu{So(NjpzMyh>FdSKhSi^yxvgy)22JWFL;Zm+L-s#E98%>WF@k
zbP&1R-1719KnTzdFr5K`f%-f{p)_fvHna!x>$A_>*xdjViL!X$19Y~_5co2L;CSiM
zKEBrgAvg#6l<)Gj5Wd)eyxmacT#F$&`1eAaT0Q5iUAGRkt!XeVhl&#6IKArlWDwSh
zh4+46n1XF38s$U)$)pW;>A{NLsE2BRp<TIWFfAp6h#Q+}kH90nih>d^TUfj+F1}mI
z$$<kup|OwRemLZbeTFbN21KCE%?-|w-*es$>enxbgE@p)ExAf+6!RgM&ldLUc4dRS
zmM5+6>;0xRi{Pj+X%E97R$`}v(GqoBov2E`-hc35Zpu46r`!jHrRQ~oqOQIXfAtxM
zkO7mGCr(eKNfDFnG!nvatNAh=VQe}L8Z_wM!-s|j2JOXH_?g-&+~*CvtnBTWo*Rl<
zf5Wwfw|B)JnN2C>pu2D?E+k1hoh(;Z<@V&>7?)2bS~(wZcXCn(nO8x<3K%MtRL?b^
z`}5UeECq-Ujr(t&)^={s|GiUST2AHz)BpJP>UzORYKPF{$ECpxV6~n&^~`S~Cv-=R
zE=jMX8C#gU+Z?P(6-8+pTil%pbTfNK?+*w_=My2mTCDNpYnXSigj@?jPPvQB9dBc7
zEKMJ90Aaa98!1ZsTfxJ~)@fh9iQ`i;<OS6V&Vg=?wz-3QchrxMaE0y1RX6h5W3KsL
zJPFAEck#neza06i1*ZycGmH93QkI%ZW*1|`<X?ZlrI6Jwo>0X~p<z1Hrkz3mwyFRc
z2yLUGQP}Vqj2e^Pt{PIJe@SU+yRy1r+~om)2&oD^q7`+N_$Iv5eae-3W>z<L{B(*w
zf4+kRZK<~9pT_rGW=8xS$|oX?35JgR;NkD*_Z~gXj-{k3ajErKv4T3h(rfyrCA6{+
zN!?tyBLi5a9?W;_(XHEFg9js2R90|g?M8<hjiVqv_PAHW(TgD$E{co*GZrA&<Zj<r
zH9>|{QGB)E)U^5c-94$_C^6D8om+lX4-2O*QP57#>&%y>l4f-4BoWkch)q~uu%M!4
zfUdieu-VUx-@Ii@_*a!ea)4kqwLN}K;MIkQyw2;eYmEa!;ECw4bLY-v+fC36<|9h5
z7SB3YWa|dbTnT?+*G$WZd;^wrlqO$1jLENC3os;s53KBu0TP85lzcy%&H>w$?Yk&n
zxRe&(Hi3f1(?BN8@e=DcmiLdDwmf>Af`Wo*HV*un22we5<_vX07AK_|wIzi_CR`4X
ztipdQ`~#FrcVV?^THb}_@>AHNdY+uRttUK+(Y$#xc}-90{%0AQXn_d7U8y;CY)|S=
zxe=e;uqN21x{H2f5xYgNkq8lw-?p)_QD5em`C1|7M(-aiNI3inhvF*WBWnj1nRnEe
zc@JSI@CG3-`*6gh4gGL`BaU~JB<G&OE*d*v<VM*=@x}uN4$LmUgadE!nWj|NkNfkV
zy`kQ6xmk_IJ0}rU*ka8qboUQSd%APpH7iF=m|z)SA<PArNHl|B9ZWB)=Iuj|BdROB
z{(x&ICeP8q;lBG|UGCYP#YF`Lx1PET)=SM^hUVr+qv0%31-i7N<G3V_3N?Zb>YVWs
zcWKix3LcsYEyj%-cfd^#j#%Nej+=6=E=+!z?e2FuIkO5VT2qrK3i2FY?UZC90Y%rv
zT)b!#Uw0!hv73hpP_oQvE?o(Lx|nh79Tfyv-H2Pk;pMK@eWp&mZLSx=gb1}8EvQ%-
zgg7$i;S2M4*TtB+{gb|a{5Yb%mZZI0Sod6}=~fn{DGD@G>v$eOExh_daQNVX6JLG#
zR1jn)_t|0N-M4R-UA(|)THlDnZza&q<xai$x|9uFG0*uYP30(=r=1Sk@osM3yLYMi
zZt{P^c*(K|yK~&fR-6JZAGeicb&cDai(I~Cr<;dqc23UWU*p$2Kez8q{mp1G{(n;|
z5&qzXeWEaCio1`YvRaKNw{^ZC9NtW>z?D_-<aSEsZ9vbxJ0Y1BFF`ocEf>GMNxqIF
za?$XnHdGj20qZNpcdo9#aryG)Dx!t-qoKow%^<7C9rfkC95{Y_$(hMviO60?EvC-f
zwkg8Q+NYv2r9MrXy|16@3)uX>He;+ccyNV_Thw}vLn=+{(wG~MVdY}-aKI=onN;c8
zdAcyW6AFC|9_V@evJ?`{gFiOBwj|k%z50!)lkLL69)06cNcs1jpCMrq%ApyeD||<{
z^t#s2P+*3j7FynGfc6lpRH$JCz{f6!Lx&E<{62J(OD-tGYb|VInH}Havp=TH<IcU>
zqlzDhIgPengnI=hGDu&#4p|jfBPz?QZ*p5^aZ<<D)P9A|F#vLB)esRiCiFs>h)a5r
zpC6>NwT5y;f5wa%qbo~F%vU6*wCJKx`6rFIfT%!*;#Jyx6*cPU<rfx?DJGW3JU%;;
z!=O2^5HVuk;*EUa?4+jZ@wH%iMd0U0Id3v^wL#%L+-_jTp@*%^&DDQsZNQ{p{vCSl
zMnMYcd|g5cczjn&FuoAGW5PFBINZ$b7ttyEWhwNUx_c|dP04S3SkhzIs&ck{h<wDf
zorG|DgXY9nPz=Xxd{U^V9BLHQd}r9+!CuW~@pm{;iq@WJ`i&Juv^N>w*knC;ku_T<
zXQ*ERtr<M1BTL`Y^$*dI3p5-@3Snlz*llT!*3!Lt9T~MrVnC$#=NT#fT6%K`fXAis
zW9i<D9=}1DnW)<K6?!jV3W4^+aF68Wd-94>i@a-oHQW?uq1%{3Y*prZTk*H}Cq;0@
zA-D8n7hO4Rvw;~WHrhLW#9A&DarNp0vR|2Ju%56Y3TJw4Dy<~`#2SUhqw*?D>lHHD
z-tV{9L!yU%ba1btidso{H6X<A-B5csJ1@@|XffvV3{^#-Rh)<7&&D>z-mv`R|0Nk(
zWieI=k|Fh;tG~lfXT6Y%AMJPh`GpmFWgoN+-nXyY_p`s4$?_m;2boF0zqNyADXV+S
z1;j2UnNNjPwi>&ET6GW@QEju;7>WO7&tFx=Gn(;KlpnNkdw`sVX!JLe6==^oY<=5j
zNIC~!c(o?1J$TE<)=cz(k+1-A^4d#d4x0ZCnWHaLMa<23_;7TQ`d)|6yb}_i7>IJ<
z;6d|^O>ycR<;`SbL1^&2DHyZJC4EjEHc>BhC3JRJv}h5nWapkfNy^mSNr~)?nNRak
zIjQ(6EG0M6WDB3%pVPL2nnB8QtHO^|6t)a%*_BRCOX6S7TfKTXmts-LubD_D`uw;c
zktxS@i@r;})fiH*^%H`K8gulKl=yfOOQ4qC$Fi~&P(v<vT8WR*3p+zWj{Ui9;hfa-
z>bD{7<&zD3N7EYql>QnqEvINzP4$;y*nqvUAR*oib8X^JiFx0(9`8I-YG&(K-acqN
zcW&=R?ZsN3)F<)Kes`Zd=|vG{Gp)@RY%~kYqJh1Av=WnJx=^gdJsn_aWfk+g|E$@w
zg*in2_zbtD*H`xdJ~^b8EgKW7&3W;Si(7l<X0QH}Mi+hY0pL-bIfrhk`JD!DbogQ8
zt=qR1lcVMf6??<$3FAF~d<uOyDlzX1{iSkOmgD{b5{$Xl%+tyKDj0R{?Slysy=YK4
zaQgIETXPEwS$TPX3hMVjlw8=PQHR4Z7Bf8d%&35kMXAf0O)sB2w;R6Q!pZ8H57#ad
z3fb=Dwx0#P&`Gkt&b;(tp*i)bXk1zN$=Q6!wk`P-+CkOg4ikb#9c-V@!{6K7EFw&P
z{5JS4jE;xYDuoGNM6e%qu$^-*{j;bb;ay6|mC;%U6dfCD%1gH3D~P)_j-o|jQ7Q#)
zHcLc|PtCTz*OWSKd)11BmOXCE)2MjE-6rkm+<A|(qw^KfYOt-XStaO_Te(LHO>^p(
zrES9yAgALwoL-UeHRZy4&ja;ZH+A0aF^o7UBz^0pqD$pUH=iLdD-%W8*0Xc3L48(n
z%H8Q@p7~GXRk^LUZi^OPx=cGF|NAN<R|Kh#gA&mqBI^0U`+SY@JASNT$IYc@KmYjE
z)O0sLzYj`BSaRzR0M_Ph+h%hpW&8JED!X=JKcJqH_U0j&ua<vuwJxYEqyV#P4YBM*
zH=E1P##F!=iiJ1KJ8RQbTu(8Q$&MC`?7C&#_4L=T|0-yWVx8<@v}0#H49A)Re0_aa
zIyhK4Jl^{+#Cq0r^_tVa>X7Ids!r-P>O#N%{Y6_n#iClZr@Om*)>oR8MqXP!^a?D~
zk<V_29g4a7w6Ob{I4r|b|5Y#<bdR~k%=~fReBqz%4XrZpkR=FP)Raf%39BFV6K;uM
zRk^ObKY!fugn;e{{BY)-_~3rjAwpx+-d;6??%pNm+``00pLFVJr$Pe0ICntqArmLk
z{?x7pCv_zB1V%Qygzt5t==<0L46Md_gx6UfXjD?i&DFQI?#oY&z9HlpNaZ2Gx;N+W
zLG#(gWO1fsj1hiKu(1yG21Ny$?;jwA&JqmUxfE=IvWq)3#lFo311)S`h#hVpY{3vZ
z5uC<7;AvE|{3dWjo05)aGrOV`3$^)(qk_}E*V{=FDLQK3A#v;`EXm(4N)a*NLKtgB
z?}AeyU%dLmqy8}TB?JMI!jWGqsX&&w(<)C}AE&Lq{kuihhw796baoDHntch=O<U^P
z$ow7aU4<~S0ph|1LlWRC3qW=joyI&`iHp~**)wMr^L+}^y!3GHsBP<sA;lY;UVakI
z0>Wbl1(?l?YFD=P&Df<$-Ni^{>bq_mG+-K*d;F9KOJ!{!=@X^>adV^1nbB4Y-B*G?
zK^U@A?%WZNT{4~GQFK+(up{j7VNJg!>G0x#JfX8xeX8-x58x0(s#*T9w*($WTmhQU
z{}B8U44-%gSYeCFV8ScP+7}Hts0Vk_sO6E-QzLef0uSxf%VvPsrkXptx^;AUQ9UgV
zhKiHY(z>qv6`Ex*C;u*eollt|CP_Xt6&J~}4|-=IhUKPS<^fTE@3+%)ENeM!jzRUa
z{c4(!kcaZZ>N|Jp)X61WBM|EYL%_wfeOi%*6Vnfn%ePJC&EDEv?4z`F@#6HiZwI2K
zWMNC#jk4TURMpjWIxsau#7n{Bff5y7C8ee5p-U*|h;RpOAaaAK>&Zi+xMNq+P0h*G
z$`EEW7FGTDF?zF%2N{06Xp1#z6Acbh_8iQw_Tiw1e_A}pdb6{$KJAOnxQHdR<%~f3
z>k8@RUuI!tq;k-%^GrM!oq0+#sPCXXO0x%crrXAc(rx=isA5OWa_GZ>i~zY@;6g!`
z$$QRj4JJT`Hz}<(!vaWG+vq{PUo#u%%prXTdwZiEntgTMZ@tOgW^YyCoE;JuA8&_K
zm{U3G#zQV^_E(;RAvC+a(@yy7lJtj&hJtx=k}-H!{|48d(33PhbcBa@!-nt556H+J
z_z?0T8;WT41}io0KU+TVjpL?Gz1FS!YFDpE2oa11(M00SyTZzQ=H8TRDNnrLteQ7i
zP=V>1Zi9=!o5KJ~1Fnv|!qsgn+H-^Z4zpMaZp4e_t=&-1CDi<>8h(?TUdph93<%`|
z^ul3{T1l_1)Zu+0AxEaXazumEtaPNX&OVGMpa(OqMhVB=^a{s(kZ5$Cj%Txy=uj)A
zyF`A<P&->xNkmq~<!PcXmBu5>zPtkGtGVbj<+{7)7`AHAY)@sINfB%O_VArM)4KQQ
zQQc6ziiY-6Q^&I?z^*B<+cg-DxQrFqEuGTb8?O}{IsFnpvEUGtM|6pMC?do}x2{#K
z9<PXG#QW)t0;ihEE<76*RmFf6Va)}(bwe>zpRz%coc4#FZs#FtYF!0yCxH6!n$$l(
zi$?7bPH3{N1{c`;koLVVckQqHPlj+7A}A-_dFg))ZNfNp?_L+-d}^#wC6n(HmMyZ7
z(cHNmB&a}Vcxxo$QAa!<UyGyyEZg)s>WjSC$z6~ZU@H^wUoU`Hn$jpWwUxNgnVr)I
z3VJt=O=d5|)k-+{Bepy?vE?!vz?z393n_%%Ep|E#_OKffb}b=6t!AtBnzd`s5dRok
zHI*mFVu=~Bx+PEw<f06oGGk>s36^|%#e0X@vuESGP&iS<I_=FBZzhkQgntmiGMMCV
zfRG|M?alAKwfo+OG!-#HKv&JQmzOSHe2Q<4n{Tju`CtruqVXRVQp^sh9^n1(p$X81
z2p?-QJmlXT8DD&N#S89`Fog?fk=5!rxYGsEb4+Wn7>v06-ObUg8`F5PshH+Wi)q-O
zkB!K`xJHQiyw|-grmNSiK`ZN4?R6FQl<`Y8vTAZ3Q~F%@9%VHVPfN+Oe-OzpKJ{SS
z&uphT8=)MM3q@Ob^lNNxYB$!C39?<NT~dHp!`mhtc;Hen{!T~l45`C&Y36BD&FmWp
z%npC)0p;Y+nMT-_tzxf<QJfB;%-(7072d+!G5)qkLk1UNyHH$G$DcM}#7}e{$9!o(
zNXU~#lSJ?T8-d8y+(vfqLk1ddWy?wA<Bz)PPDiIu)#GZ2^kZ){cg6yoi9Ijcwm(H|
zrjVO2D$2+VNz~Z1snX!VITTd#_mS6~CD0!??|HbdCsdgK#8OZmuhGRP63+0SR%Y6i
zU0&V?<v(EqvE1&#`E%!_IexwAQyje|P11$1)0@Y;{9L2_tkWMgX=oM$OHw~xi><%c
znbTy~h>1ST`Zs)&4?&<nRPNY`hFHACdRz=ary%xctm(^ZiE9#DNDLn6di}N$BNr^)
z9Lif)RX)7y^!lCl?+t?%%!ylPbYI7>zowtuoDXV24_}VXQ&Kx<a{tf3x%WpK9=kkV
zYgz4<(4iKgLwoEV{`q9l;AxkNtR3GtuCentom-l6JMkY|$A~-ilXu>!toNAM$QF~{
zg}+Jj?(l2z9>|Cd)Rg8QPn|gNAVSY8^`0jLXG~oakUCD+Ct?+RLrmQmF-<Hw1iN?E
zRyy7CQ@Khx9El^7F$d_j!ap_B%`|6PPi|9G&Xc^nk_oNX(#f@P$^87%%fEe!dT_3r
zVXyMO_3qz)?)T@pxwF?#Ev}3Me$E|Wak?@N8&LcyEWP!A*!Xm@UBpTKux{PD-i2@9
zo_el?YwIJ1fJ2^$aCTn3s~X*ZvjIJ>v;^*G%lbhfxi=FM&g`$pWR{(@k6j~|t4Y+Z
z$Gv31tIeR;+DDHb%}hNjsrvr?dn2(jbe%~j-;5RGl)88Ft@gsIr{9vJOSF%B{1L7?
z-(4*DFh3Qd+0f9ipwfXa-;6V9^Y40Io$-LC5WU|+N*7*OxbL~U&9Y^4B9IfEzdT18
zd*(=GBqxjjp<9uCiYH8pFm0Oc+1j!#VFOKZ^IjwM9Ih>J*NsS{#qHV4f`X$FCr*q?
zdJ8Cub9@6ko0m9vZI>$pof|)X{(Rqb&YaLG8<{GxeD>@;KX^^WI_G(F7EN<aOrn2#
zR=wB%QVGf43|b%g<9DOGZYy^?e>>d6$NWlylVuvLi@BHS{Q2j8r-FGOyAsP!J#^hf
zV_x(;a`WVUJ4xS8_>n#2*18sFO2yA3Su|h?D$&`dPfLyIzAd#M<~{a6J~aJhMeFLB
z7T1}l6E8th9Y~@k3oF<N#}U1Z3b2u$!0>{FRoC<X`R7CJcAfdPJ$v+ssp!F>;<rP<
zerbTZJ^lO^-(HVSqi0tDu*zPQg*P=CZy!FaP*hYD5pn!@o|}888R5u;dryW4S9o<x
z|9<@rw$y(wTx55f2W0*-`u$&j5`88&PQ9C%X>a=yB|iE!?C$(C^{StaOw`mYp*}X+
zpz$eUBPz4}PR2L3Pp*IR^OlPP#c#f|TYbf;tR$XW^eKYH!vu^3jnIPbctJyp=D`;<
zv%w<<ivv@TLSEmzQM8;k*=FEF&BO^4Vs(KDn)T0#-p}5l!i8_z_2i@CZ-qWT)^>Qm
zli`$U9!<j&i#WXv&|Fc!7$ji$B^js1+{D2+Q{L2)>Cfjtn1mN3!97PW<4={nJE8)P
zpVx9aZowHJ6R+*E(51zur>2CbIXqBEu7@C<eP`QPXRACo!n}}>kdJ?+J-m1CJ&K*p
z<)TvD1X1os;K$`E<$V$)k_KQ;xON3HM*}kvnyJ9@f}b=rH)^GUuJa2x5{DZ-!}S~f
zxP7B(*nclU#z;5vNX}py5AJE{NK*Ij@970HY36rq?l+3@m0zA@-^?tnHavYL?{ylf
z$8|?5`7GKr#yH$~{iEF(4OT0{E&Fy?LuONkO&9*=M~||J#8>$a;lUovW;AEyfRC>)
z<3G2}_vlZdgT!*devs-u!~{%Vejv-x(S5i)VoJjK?nMV<&10lN{8iPZvk$)Y%`IIC
zr(k#C1A9t@>XWq*L6o*7`_;2v0xTK&h1xRbr{$oK&V;5nX<iYoyWQ4)`ucU)kRcMv
zQz4waf^MJBu0^ZQ)elC&nE@Vsnchl^pKy^Ml=_K4aTKPKg{szh*Q5VNa0WP|=^1()
zrXW9f>}TpNOfs`JZXBDyo#;iOJ>O%)`t>RcT^6)8hoZI;@rJ!Dg{czXJfZ#;y>b?P
zi<aU>72)q<bS%w=codYVY1uwzuLm)5iv~7ztN5(7sT4%%fW&rvR!65{Ysu5R+ihXe
zix)4lF_te#c5yh?B1B{QC0SoLSGBgGFRLjhK0ZBdFXBE?5%H)W<#j|>?eJ;SPQ}9m
z>vs^7Lq5Cp@i6shsM=*|@u7NqL5iE!ZwwAGxf*LL-rbpd`8nxo1>R?d@+G_}W#(gm
z<?=C8>PZgjNoXAFs^QsO(il89ksLm@`gRjZ{uUHfg0GLyQ;7S74fKWx!=UgWU2eRd
z7e`!e3$L@PYfG}bIW3Dp+W$lkr`qG#t6v^KO;bWkNdS}SsN0C(&&^LAQAZ70bid#E
zaW)rLcda<FE^%0fF7NH+uX~5gUT0?dq|7%lDSHz#N>mF>y*O~>$R6ZuArRxsmS0;B
z7z%v}SIS5a%SM}^aT6v)f5RpbXt@CE?ks8*R@f~LETy(J55Iz+JTv+Ar4_20lIY_b
zWXb5h$l=x+pn8@0r**pGRS<*`Ky&lv%?objIioIVCthHfC>`4AA8XqMoE|pQ>RXVE
zPJ}%U!(A|H?M9|3<{5;p>ohWDqu<L#VvGTCy%ft}Cy7m}dtW$rLn=Z>YyKe+Zbrtg
z=gvDAo8d5f)+}L%IQc=nA=UrMu4iIhto=NVp+nmd@MaN_V<!<bYt(jZ-+u4nYb!%)
zIPFDOd+VIvt}{qTXE0=kHuM^#Gvo?=B!=pjjAvYpKYpupu#!>$E;Kg&4Q2|r5X>kd
z7{1h*zG$pv?NIXeaL+$_Xey=k^GQ7qD<M>Q9<TY1H;mb`LwqW0Qo~0qV#c~)a7r=c
za@HVC`!3YTs!1gJOiHRi;q}9A9@MZ2n|K1gmiaGEKA^pG3WHjDQO)?mJlR3TH~jiJ
zO7fnodsN5mTAtlJOMl#<q9Yqzw?Owa)lkNxN0;(Hgfjq#OJJe90f02$6A^b*Gj#^s
zduMV|ugI#~n;B71{%r7wUeI09o-;PRzR?xfb@Erzn!no%YUpxYTpxPH8GN<bX&t?r
zs1l6MIzHe8g_rU7-bzYF?nhp~e$9}dTUm}lfHE;9h<dlff=>^AR9El9U2jy#3w#fZ
zz?E|Op<90?r4>Lx;R<#0WW$<{u4nVezeDo=#Solz&yAMW))Oa9I-GJD5@|`&dNtQp
z(ZtVp5Azz9eGipTxU*cR{l%GNo{+5MJ%uA(w7z@y&Yfctn$e)zFnN(z-|q5e40vR4
zcX)v?C}7vO)C4BqR6B8D`cKE{oJ&I!e*D5{;cS__5q~}m!>slAF=>K%&?i<})3bRy
zq`}DoVZ3~G^ID%4iFye>ZuNm_I$GQS1}J&E*da<N0HR~GN8P7rF|PwI%w0R&q4M2X
z@Vv4+rSwIk+hDRU{Vp(>yXPRCkrt8a0P<e2D$~CSx@Pp~VAocFzyke6xSLNl<r!4D
z0(kW~otBg8uI$IDLtHifM!zF4%4oeFRx#yC`A?sw^L1i6ExWh3YMcM9+B+8yMMQ)k
zofm^!XyeKyN}v&|)@$Q&z6;wPz~~)Ep-<cG#9?4^QaiMO9AW7tCdJM8ImUSG(5`Mi
z3te4Yt^#p{gXi75cgpRp2+g8)<_4{9Z}nfWH)9Ud8s_@UA(P9<$(iSAsoT>Dly%>F
z!2)l=r`81LO|p5px#LXhOoKUNJ#Hz77$stbDErA@Q&pPVE4h9|56%_ZZ$N>MUA{6}
zslg?+{r&%#ALA-BoOxX!in8Ulwu2z%vD+D+j-axjoy=>&*Rh#h_P$2e5VI%dxB9*O
z9%MLZCN@Zcum$s%*aA+)B+wgb)a=rdiMXo8{1*H~r)+Y)zfO+2bZOotHCzQ2UW&S%
zYJx2Hik#l{@DabLmnNa!bB+cCbP3(E56>|vvpssUV2tR8+eOVSJO1*J%v{lDc=Cxa
zcj2HXxL7kpf6m{uJN@~sAhe+5av|BtTzRS6<)t$#&AflOjvFyzPi+Fz+{T1|`w1tf
z+$8cX7OR<EBiJw^EHa|qgbCEb7Y)A<8>uG1G!~^fs)ukf4Gn*<Z$@K`6u`=k+IX+~
zkvy6b4qk)f;oIWwyLZQcMlST63`D4VMJS99VoVKX1vd;_SmX3NZKLQ=fsnNfx_&U2
z3}60H?Yn5K@1mljA|td87gggIINY&C{%q-^ps<@8cj3>|4*RYtbY8Gfu(?>cP1dhf
zegWI3zPON9M%>t;1-3Bi)GEqb0oSxyD<^$N0?3&Yxx}zMFI-fpcD0SonuBE?|L=MS
zMJOkHA)1PYyESXp97vN7w8A|+o<mKy+rn>3K2OHr!!Is#?Cri#{epW_T@MDCY8FnU
z1CAS^oODCUvXk#nJ(K9X757B0%}Q9#p~KS>Yj0B=Tw$YizjZVefcd1C-#%Xxb4BE<
zR5rdraXKJ<a{9{16FPe{X0qTuC~wC=1%+ArE{q0|?ml*`Z-Sm@bL_PQuTH`iN6FQD
zs-9lj!-YzdG&Q5zha1;k?~_vh>C>mMuH)_b#(1daeFM}5+;~NAQB7@aAa>3ni>5D<
zh5tWWmq<64lg(N<4m%)LmY{9oR3f|cE7Ezgfy^a}`Ej&+KN3j%6sPUmZxuWlI|T<`
zeT8ZrmyM3Yb>WX=aDiF=v~~Wt)7p{C6&;ibAENEJQsD!tnB~<TM}pD;-}w_qE5(k)
z7u{2=AoxZ|cyMw4L)D#Ad!N@7Rhd8!st*v_H@{DBX9vbz;^e(%j@{a|T>)x#6fFIq
zy+>#F9bdL<-NYG^d{-Swc$e9JvL<=h;Z;NJkNLE}#R~X+&$Vu-|NZpobgG@=@89<k
zaxK2Pz;Vh+DH280PxxvNjR_Bz2M&l<-1NWy4wdui^AqcMCnm=V_|%O4DJOL-(=v9!
zuG%*ppU7qeEiYMLTpRe6N@jWVU+bM$(OQcNwF2i15T}3QaEmO0z6{wHwn_AL+s%BF
z?J+1!!RO_7(%Q_dTRty2I+p^LoAk?jbJp+4WUGN*b8_F&xFDRtaD~|mYg-t`3@Gjh
zloftu?7Qao-IanPx@Jh{61QDc7l-eTjGZub>WO$4^=^Yg_JA&AZo><%c@ZC;uZvPu
zwuM@M<@)u(WFCupp*A_6p5b;L9uu53Vp7DDT;PDQ^Q?n^|MSne5-UMKj81b)2HP-F
ze2U$=HEUMj+;$0B<>X}Cb*Y=qAXWumI5_#Rm4L&xi{dTkTvqw6H`OOFHb!+Ixw4OZ
z?epu7rpH!o`})s5<L#sGZ;R`a`C^0hLz(|qWEhwwIPuDH*vwg<QMUHkfv^MTFJ@So
zj5_+}J7+h0;=oR&NBjaQB>D<`OoY$U-Ch-G)X89`%;WX&2OIk2P&B(-dvGGzs-I6g
z%@WOZ-Bx?NAcJdvP1(G=2|GmGpBa54wIYs$cQ1D6N?)vc)kxL_n@GiVF<+=VH)E%%
zt?lV7lgX-qBs$f@^4s)8x#4yRRE~vX<c%wYtTX&IS)NUGW2lTDB@2E-$P9K*PW)l|
z*>yhFL16?-kh=a=%Tm~vkRbx6ky(-A<)%)Y7%n|}9ib8jO_0M_AM2xVU3o8BS|BGd
z;j~}S;BmoZdNwC}<cYm!Ut%(XZj;L$S%R@HrhQddk9Q6wM2dgOiL-ygwhg^9YT?C^
zi+-LwxPnFtqV3Q+&WLsREf*ghtBF!CpFq5p$!WO60HCmf4^4`^HAX`tWJ&-2v?d2A
zT~|rCaU%;nXOupJXHO&DkfckSrQRY%c|Z9$>c<u8MZ0<iLhL8mirNidDQiso@CPL@
zF!7?bavT%Dn3sM0c~jWO0kS3r!%wQrEjT=4<*^k@0UqiNcT}pYs?s6v@Bs#a#<BTy
zV^nbDYg$8Bpu2}Do$r!SE8OHDQR#@zKD#Ex%tN0rV_mq!KXZZp_?NU_#I8_sYgrKV
z?yTf**ZEZqj51Pp{}$6IM{6k^(8d%O-Fpqz%|g(4dfs$!=+1O_Smr_9`zO6`_o4JC
zAU5@~)1cf@O|2Evb?)5@D5&XT$TgVj(F^=;?9?PMERt@P!o^7ShAG&J4D(yHv<TwV
ziM>Tx6EpmGnE&RPb<cKOPG;ho{D9Y#tNy*4c`7G=eW#eNi}>X>Z`}M3L=wDYW3pd`
zjiIY=x^1^#zx-wErn*#XEF@A$Z#-Of+p=SEN$1S8OaF~$-8;>&O^C00t#!m;Hspc^
z5?sueIK^%x#PUARmjU}~rl_jMXrIqo(d;rVRNXg21oT7d0q(kkfmp^NYA36`pjwPW
ztWOI?kX#=y#<Xs;wTh~0=u0#<ONSfyl+?T3p>aU9=OIPLY~(5YnX2}HYBYAeYG&r@
zS;ZlS`r{XX8kvcmW_~hsyR@`)>=W})>B#t~(eHMOe;eGGX<f4X&W@RrGZE^CUssNr
zfE8)v($ilT&Y0ob<%f5saXVNL=_fH=GM<zJ*8s5=J4`yw<D(IG+Tj|O`1d;OBfp8V
z((q&=9SW4ydkVhD#7}=+Z)trlGEzd3p=>pkF5I&CFGC)ZSMRTbhf&{~Frnjx!c=r@
zS|-hNI}Opgdt2qGcKE-y!8c>%G!n%gtVer9N0|SyW7cYqjrs`J5F--{#NpuM%-v+r
z{qem+x8_w%PBl8Pa6p&gPhNAyWyb-K54|r_)?dB$IrByEqMR-e1=gQ`-Y}Y~FZ+ii
zTtyPjfP(RuU}eA(xXN_Aeh;9}0pt0w4OCgVb4KR<95Bb!bT%`X6Z|VJGIOU_xgYdj
zu@q<5<CdUqj8qZb-2juB7;*uDSiojCZlfc17w6l&rDKRb(dS;#gHco;mYUfjy}tzJ
z&wxht&fGGmc;Z^?kvl@#8&+EQ<hB9`?Or~!oWsKs7ceU;YX|}zM>xi>zW~R~0|?sE
zv->PJT9l49NE4U+&^Fbkox`lZr8SwQLW0wYyAl~`#jH`#U+J57i2K}{5lMUYbS7*_
z`UL$VZ9Q1qQ?CPf;+)||p~h;>w^klMJ~U<0`0;155>@Z>e?~6V9yDW+`ofDw16!%q
z-c$BThb;O>c7F#3#X6`xie8UHU~aaPQPZ-+2M$cPJ#qBtg02T*hJLyYDPv`wZBcx*
z-P-m`{~OnQtJmGNx;O<IFn+LNsF;*xrCU^@tg7n2r1XGa<kq$n@WNbIxukEf`7Bfs
z#@!961EGg0$gsQNbl#3T5IKyAS43E_a(YvfNyZ&{;=;I@v}LEH^Hu}K9R1vW<e#Zs
zpW*b3sROah?r7>A``oZEY{^_7C5f1Equ#&CQEZ(JyJURkYP`1Vhwidl+R5D4Tz(LF
zenGebZIZpXLps={@;_iO9QLK5OHnVsD@$i)ubv5MG3!giHDQO?QVIXxjzvFb@=tcm
z-oSN*Pq>T0&?|2JGgXASVKlFqe4~sOeLUP9VJvu6@$usx4wd4A0e)%cEq}HwlJncW
zyM+HDk@js5u^isdblh6QaCIx~`raEyeHy3mM^Z{@2me6j|KEjRdqk|^E+!N+LgBC~
z#tc)bAY2?5qHE;OZkP4k7`FSp>v_;d!6cuqvD<Y{8@TqP+g`Sb@j=DJyS9#(LzAFQ
zPIidddxAG%5$+E3F?_d^5h8JpH6;ph(iZetf<2|_@lYw`7itI2=s0TooEh7f88i%7
z%aoz;F8eM_Ka^W)wk|2}mu8SJ`hXY~i_dK2tAz^|3@I5QYa24=b8VzH{dohDf0JSY
z@b&pT`Do!|)vH&p<lcAqJb{*v5Bj~IEKU@4+=*YetE$tm$J)4>i6#-cy^67$e}XW6
zWov15EMrCUU?dvjV8wp@;t#3^P}iJWpYi3}L1Bld%RFHxp1+A^v-S1cO}xzHMcJ74
z{$Fb;Y*n^mFFBvwI$Bgd*B(S^(0q5=*lxk`)b+(hvU$Hdng63<a~i97^y#_CaKeBZ
znsqr%n$!hh6=_%p)xgAp*eu=nnq~3Ib*ybvggY3vm6v|Z=zp<l#XZBrixcnFTXs|o
zRX>sy;m~z#l!bn%6T_C+1GLxGxO<L<|G96&yLaj!5hKaP1Lp8T;Qsoh9$tQpx>L{u
zFdZ|J@TH2AL(c(rnGT|<6&go;dCP_G)JBd>=efjf;CL;(U%-^i$n_cD9!jccoXMkR
zi!*Q18aK`xkULq!FLzNGxu66EBQmM0^aW#Iq)0nxahIQcnWsy+XlA0NZm9j~{KXcf
z-woBnz>c#w9IC%g3Jz;3D5TRDnqRq)c?1D8PYZA>k(LUD7`aPoWDJ!4+nu7~niknd
zG4ti6s+Q^67xrCyd5NxR{sz>E&XS;IH^s~V_^$iSxUk~B$kvnq%)u_9#_7vb-FHE_
zD&QjF9^9o|1Gdtqa>_Vfy{W0`!OuH(lpy&{qvnogmIM`m%EuS9Ca8rb(Er6xELz{B
z*fah^P0Kc#;FBxcky!SGhlksEM2j)J4NXlQMqV`L$@YuMZT|7Ow;R;$!{ms~OPzO3
z@mcj?s;-3Ten;Yc%>7Wx!EZ;${qJp#Tn+r)3xh5@m0%n1xA-t4d&ItPF~wTqzfNC#
zDX2oVC&5G88s)kDV#r+nR;n$Pt|ugBq585unfn+sJZi#u<8bwr*p-klJ4l+DX|skY
z>UabVUx&r~>`OxrlW}^WA#{=m#h<5pR=qcrl$hs;ZELV(2zD5T8K_l9FGCsMLz^^u
z{Cyh-p+?KD42j-4^V8?gfnC%vX#Y+4V-9x@iRf~J3OE*(jf;sfEXNBn@ArEkhyLJ$
zTg%!}UN;p%W+t_&(F&u*i;o&@HgU_Q0i9Znw&{-EnO`SSY%~N*vab}P{2chHJ%@q*
z!zkzr>gwt&?W`iJYX5%mLREhf>De*v;)Z>LrX3G>Cp;@BPj;t+K`x@Rui4?Q(2yh#
zb^?Yl7*Ls^dc=W+P9}8t(|>;8OQ;wQz`R0L``)X`ah5AiU#z?f3u~6)h3i{!trqpS
zXj7QJ@|q7?*j)_jm+Q@KW$PRsSd6)?!rjjTuE%Yt`E||JRmQEI$A7&5uH|*BUKJDs
zTw0^{=_ZW&Ou}1vzeP&L(Kl@3<HA&gfo(7x|Lf3?rVKz?KhERVpTy(#BZE8Ofd6A_
z<vY>qPF{!v1FH0#{@No_#~E=9P|<rTBRXK)vdOG*I}g!50!kTCvviJ(RpVIymarf(
zk1JmJ!sf(b|4V=w2WEvXeu2pn&p`pZ$N*l3uOBgi7@(&-Goz#0rtn#~Qbt_gcUAij
zRn?g)?Nod-76eDk{+Y9)j~0*$u73Re_-%}#7rvv5U4ln(^V>XrjF@rSiT_FTT@dah
z5}XUgB_%$<&5Rc><jLj>oA-rj(*Mll@+eJ*ubh=F3-8~h!Y}^%b*{q}D=Hk>&eD#j
zC!uURrA=QcF*i%kK=0tKnL6x|pY7?HYV^-O$al_BKP+FuB^kHk9BlVlcz)w2R(*y0
zZ(B|-0I<((BdhHhY0;xh)oZN(qERg|1OTxDmn1O<Ni3_$V)}H6fY1)NI(tJF3J#h>
zAX%_okecFp;Z58Z9~>#oY_xGe2AGE3>z~s{E4!xK>Ix|dgj`Jh2C7uUcpI%}-Jm)Z
z$rYjBVsO<f;TXzncU?eG9x@gb)5*&zWr=t*9Bzuql*0dqdFU+hM_S62URUGGb<D;e
zX`z20FY?Nj5aN$;o4l{yUdH|yWRCSkG+4;Zpw_daunE|=Pqh$5KzrazdS!%1EKv_n
zaCo34zlA}|^D4IBcrw3!&J~?-7+V+%^0apdjqus5?I%){tyb=e7ma`uCT!*?sh3Xu
zU#Yxc8YrSD&1*ywk<F?xdh|0yA7q0PdL$&?Aj4IN1nP4pWRKJp^HwaP|3Xo&Spp8V
zdofV|?{e-&Mrm~)>0hVEt!ytFXM1b&F5|ienpwk>9nI-Qy$JtHv~9Ow@v<#UNX*{}
zr7}e}&a<&bigu<x)<;Hf6t#eg0|DXSE7IFkZ75;O@kLzMtN4ZNXb+H)SGSZ|`v)x_
z%I1%l#fEowoa+aZxF*r+=631Ag>JAH$6UwG>-h3s_P`=6O`*}3U@|iCSvw5!t;vKC
z3N-qOeaJF>KVMS_<^DNh?)!LNbKJVeR1;xc3>MpWlrR`Ji@EgykyA*6e78MFss^>@
zVMw(#ODHRu!lC+?SEsW&Vk88nvi&w!P-PeuvT(^$79p+?1DqrTqF~B~P{WHQV)D1!
z28bKZ?A(FNuWCBsJ<48qdK<<<Mr0>D^4{mIZMV@)zd&#3xBAf=vl_4A>8-|qDJ-2h
z!NRWGAP@-4hD}q$@0QzdQrFYXkf3apk!%@fJ~KY@K)1~5AwdoPdk^7lN)CAo3zijR
zxhu1%6eV9Y=*4}<XpX5`WzI&k7-M<xWd~5~?(5gJ&;p~MHa}<&G(WVXJC0T{IGi(m
zUnint%ig?(u~=mClCNk7m6!wxMFL0Lnf#+Q=5$8HT+#bqj4|6fGDu57A$}uMgGGvl
zU|0Q>n71TzjP+*OIO&DvQb&O+3sl=U$z5VNHFb&@Qz{wf_1pbN#oMLD>!0AlqKUZ|
zwwvA5_ZBbOb!>!prU{)X3R3t+NvdLOl0(v8PLKwwvF)WhxXShJE!@4KQm??1d);5{
zEk)&1Zl49MQj8pWYsb%cBh^I6s=zKP{-<=A_NrMws$21R1`w{q51;sigCT~l%r8av
zKhm*!oT04lZ`Cp8;UBMmLsH_G2f59<MvqShw8mz95Mq*?-Qg2Nq;IbiyAj2GQd4zV
z@6aByFuDD={ez|jA&@#PrNdEtHcStp>zF5hES3n6IIqAuR{Bipd$-z_rfm?n^H%?C
zzw+?dWkJ-E9Y(rOx4yY?pw+;owxVYql4d2c7y|xGf?&Z`VR1vEK}_(00u%jt`0*BP
zPfJr4NpX0wG85zc08yiKDtLM`AAgRjj1$dz_K!}Xff;rBc<r9BrE;m-kL<JNLT1<F
z;o(xc5vJ>{rtXlsNfE41G}&eSdoZf@ppf(V|A$H#-@ZeK2QydLGq;E4sa}x_E^eWn
zez^IV(v!4lie~;G`B7P?SJ7oF%8i6Q7^loERYwkDNViDA>|>Kj{%F5yl`lz8R{w0|
zQCIwj4v*V(W*Q!tZr;Va!6_cJ`>7~RPmqxkVX+lGnV1XmY$CjBKlGsILA<hq1!DIO
zB&(3q=_!oaUyB@T*6t(nap{lW;`D&U_R1GRRfs_@Dv=cJ9Z+iQa$$}{!jB6^RdYYe
z+-3Rq{~vpA8CG@Pwf%3q1C_CHL}@!gP*Fhvn@}0C2onPX3x%<UFiBAq15_|UMKQo2
zB$QE6K~$8`5irmplzKi3$GNZPdS3sJ<NxB`$8pVEBe?f(e`Bq4o$Fj{xz<#71<tc>
zL+?ewN`?1y3O1mho0O#@NDm0Su>$hQa<AvrTz%>%(Q@zWvK1=bkaPmO;s4(5`o^+8
zpi61cfX=DGtBJ)q)aFUIP6UbfD8N9%kd*CfS{VRgg=6dvjg6R6)paCo4=$_BIzM~3
z#}?%|bLN1o|0tg<-KQ`$lXBjn>+WG-&;^<4vHJH!h1R(7E!d5uvf!Q)iG|;#C{zmE
zqL(+!ogRmOM>HjM!sLVil$sAusW$J5%x*!Ny2o7BPR-M@+wcuWn;NaBe^ymh@%zUb
z1!bN+Yko%&1L;CV^)SUPa&;H5?tvb`t_{ty0zMQLHsi@AEu|z$I*)`udC;KBG2A`B
zb*WCkC6lWm51&0tl&*mQ0UDoJByDKG(3&1er*$k(iRQwN^4t8J%$c+M%!z4^!|2el
zqxA1-lSOkAbC0EY#j~b`nQxDbSIfvx=0W?-y`^ZQGv(;$21OLR#RWHL;PXfSpXYFA
z@Iher_+8E3sebP@-ekiszZhLLNx?vSEg439GcNPX{DB=Dx<CmbL)d1oGnq!D_>%bf
z>i&&5*}|{TYN3^MtcI9Y>VBplKJO1QJ!Hy+`A4Iyefd+4VZWK-gQR5t)2BVC?N=;j
z+{8R^&wh(6igvf^M%PzzKIN`6t8d>scBhgTS-{pZI`?v_dz$pmV1JXIjO!TDe)_iU
zE)EX^t=V1L)az7Qck0k##V>b$xve&10RnspEm`ZaABTH~=hOQ9E=O9#vs@Ov1$uqk
zWULZi6QHl0IlIlXv#OI0Az2Z1DUy(e3W-QK<I|Jph111|1w~=lp8kY)$RQV_^z?H7
z>_r`q5r0JMxvjvkm9Nq$9?IL079M`j+MmLeCQPy(we2_}0gG!Jw%*9L0PyFhM}f-+
z=v;4nJlyavm<@p)il%94DCbU-Ix=pt{@ju`Q8~Yu)c@2u{OW>QO`Gs#J0FSmAEkWn
z4~y>Q@qc~Kdb$-nIs!sld49R``$yZ|+od!E@klQc5sK5GR_3ir|0hHy(wY_YIHfLV
z(1IdXlP>3}VGwU){j7{DOAKAWxbg<Q7<%^$SlVaU70z6neT$V)9d*!mKBKz)a)ws;
ziQjztnb{0}f<Ki(D(k4PRm?@l!;<Zwy5Yc(rJg{r+t5;6CXxF}^{v$O;4uJQGQ{NG
z=9+Ksx=F3O)D+>S(Bo}Im2#JizUAVL-~ZNP*?uQQ?z0&H{?50>brxTypNRqkt8nYp
zD-{WCsIy1gsMM~VQG@v+#qYUjz7oPrq5ow71vwNdPw&#Oi6~F13&`PnAikw&sUB+<
zI>Hq;JYva-`1{0MQc6Nr`xZGH3_U$J#$xEC$Ep->aHt8Z$CA2yPnfG8;Wq{X-<|Gt
zml$46=2etYutyS+(FE)WR5hh}Dg<judNhx8hmevg356R!@XM$OXhfSJAWchzt0$w#
zyEH-m-*gxGJG&b$-`W7pwi2yU6(e)CNM5`l_z)@!>f+ut%v&d^rFFW0g=LoD5n^d7
ziN}8`3uwA_o3MN;HzNJ?^i~Ecd%Dzc4pgbdz*#p?>?;cZ^J_;AUiha%D!4K(bk~~<
zT$NB>6w|QaiLAV7Hr`EVwM~bebLzn3O85#yQn*1$*b;{D*N)z?JFtI$>xcR%EJ$2m
zoKeSRs$aY+88WpsMSyRm?mpPxxbUxrN8K*pbDh(3*@x`dScB!EHs&fWnW)>KUfjqK
zkFKIYx|(|7-fg>f?aKH7I?3Cw{Kw?0XFU4hS9em%ll0_|@pqJ=?W97R))(EK6vnaf
z+hsrz5Ue$g?Z9mw^$YyhFwK3u_Q0>-T%`Mr@P>R7=?F%PDXCz0_w>AjaZ^iJtJT)$
zSIuP&;wt(?3x>o-wCR5t+)k!lQiR(R?EbxV&HLO7_x&x*JhaULkHxReFPL2IXSROh
zp5|k%cSu@G?>!<GncamSsi(jr&{ei2QAKEi)%5A(fDaED4k=9pi6~J4-j)O?CCZ$^
zt>Le^f4z5h=wFwJOLJAT_mQY2#sLut+H?k9kGuh$rG(p89c?>r+rSRg_-Nmpe7nB{
zCsymzA3r`GX(WCXWuE0hn3K7%RZ_A2NcpwpDBKxp^T<bscQh8grlXZ*rf;J@!TE@?
zB^kJV<akDW*y@)eX8tQ9qKAwh#F6CkW0_Yb$y0)c*BExo%Xj%^c04crgWSzZ&r^WM
zA4?{0g|qW7S!2tuSsCw`ce`*J9_-DMUSJHgmpv~mAa~Gng<(etRo}jC2$Dw4CWZZk
z3!`Z(!^HI8AyW268K|_PVJKr}_NC7KT@?uAFl~Q%Cd7j@i&F~Y0sT$pFSO3K$brDK
zOj@tjmpBU7Vodi%5*HV3w&+F^*R?`QlJnY6W7TEIpJw&9G;4w18OQHvTb?@d+Ob*x
zp+m<Z%z$P)d0`b)<3Ibm!VcRk$~T3GDUdM@K=5mke9?OX@wT5qI427ZNb_bBt=s6)
z^FH>NVSMR^G!6#JK$WzixzoODPaPI6bZ5QX&rEG{jP)V5k-mFayVqa8adUUNuglEJ
znt8%x4Tp;mMt#XIhDWi4Tjp6ymrIh@;wluyPb^zBZ@vQ6uE<f!r%?}SYTL`9{7Zf_
zYJ5|*BBqhPl|K5Da>p9eLL|kX!tGmBdxu7Scy>NGwIqwo`@WEq#&^81j-st>Q$b^0
zf$BkZwLQI1OsE?98bc7#7+z<pW+s(5(&iECr%`xNdYzJgu++;pp9gHD*JpP%qc5L7
zPbt568YMoG>fbT<x#YV$kcEtkLjEnXLr#w7nhCJ+v~z5ZL9yRe1$U5lz;Xw{2^|K5
zEwZRRF{c1(YxiWZSHz;n>S$h$lQP2mX(%TtI}j%sg&aU4M%ziHc{b3yj9xG;qSeB^
zc8N{Z&wqRr+Kd`}^@tBB?{*WD=ET-i_t@mxU|;wOgVClHk(kr48UB@(F7Q_tOMfVJ
z1ncXx^9@5}K46YBoV&@2GupO#+p3Zywc`Q?S%q6_J=ImvH30%>E*cS1fAM1Xx(MTP
zO4p5tvqLXSeTQL0>dC9jsBS{{cGbw6JU9)CZWFcd!*bwYWGo!b7Fuuo^bpl50yw2t
zr=PFY@*<IOl;Ct-)%U?}H8lxXQJ;;ytVGikk<|Pr+-g4dTdvGrp!kGV4Mx?|KxHUy
zw<PA8?(`r*du?>}-A6f;!un*6y*lj7rNO;f$8N-Tnrj>P@%H}(?4qWu<bybg{1&;z
z)2q9ILw5N1v<(Uhx`0qxIyXz`03~92kl&ui?CO;Zrsa7aOWXiqiKA1G!li)l>5A=+
zgT3|i>9nKqv^d*H>q`GlV7m5Fltcr20(x>kp}V_xF$wW(^EY%;-evBn#=gf$>=|?2
zVew2l|KO2nU}!GBL?OHa{f1s6?Vr%PN1Zom7ecyjv>BN~B?|K^FQ&TsQ@4s4kr0`i
zFQyuN+XKzrB|S0?(uj%9U`buhW9Ot>QUsj^m~_{OP=o$F6mU;l?AGnq4KJxuo&8{~
zn&<2Fc1%wDtV^c)778TywwrO{aAG+&i~O5$VEMK?;6|yAX|9lNRP=-JB>T3{8GK@d
zR3mwob5?K@E0@WBYWP?RjCB>;Z}%Wyh}6zD-m~XJxA3kv?_@z+<+TYLM*0GHV!7r$
zS10#;Z1o*t<2TIATD!Kajna^TKesqmm4Hj09{Oc3EGdDCPS^c&f(U>1)gQ@INws}`
z$NpD=4=rINW&Ve)Ul*brI_w=mM>imGm9ujK$AgL!sao^s8JUX!wk56>>6TYYqa)gY
z1&J)eo><;bO_fq5M+B7E?SR0*&YJBC2$2Xthp?A)O4_Hr=aI}Q#diW*?^+LHO2JZE
z@i(K-k7WasQDhNc6Of?P^tdx&6fw(OdZR-1ydkdLmobSbk4SDTjs0k{rF(z+6KSR?
zzLr0=|L%#obps!Ze;DvCi%IabvTe_q8v_IFZZft5fdfdXA-<~Z%%hjj%%yM@G~Pp7
z+tbma^jcS{y0r27Seo$@UZ782BgJ9Bx1a>dQ*U!MrFl1u-K>yn!TpR)`&5(^{y{`A
z#g)N!qhY+HkNPAJwSzP#!yiQ^+@IU8ryU2Ix*@?Wil#cjuYiBp@@eZ*(KQ_<f{Z)g
zwPQ!EmBHVkaJ0Gw4f@?+%KjH2CM%jMq|K1t9wy+;g<4R^h%BiT3#!{FW#FC7_q|IU
z8Z~Gz56yRal)y@skR?xKf9oiu)|W%gFclNEg?$#$4k77N98fav-8&ttP1AJ!4gE&E
z__Bj8?Mw`N4VR06Two?fTZW^U9%Q>EL4*QLD?Tv1A>NH92*<Gbg62uhG*s*#yyO?@
zf)Ukv6q^0LG+0;Ux%O#X(I<bR<rl(E*%vwx*w18^FulQbp6Q0$(^4b$?~*$|y<cT>
z2u_*R#AWc!h{aa+(9^Si`<pRN(aUZ_e8aY313H8@<Dba}cbYxel6f~;^~SnWsj5S!
z>~9jw%@O)Q!64%fDBrc7nrA~}CSo~+v-959MZv(kK2IO^u2do7$antSSY_z?-GNMe
zi}Q3({u5~t8T;8`{kLuPsIDrT6Pi%*`At3L33t_In6{xa<3A<AG$4qeM~>na$>Iwb
z7Ut{B35%{i!;@P$Tb~Lq9=OS0#*kt`F*6Z#ZjQuhe+V)T&)IS>?<n}uw+g?Z?brWr
z?x*G3S#OH-9r((^fswY`M;m0yJ_=?iHzMY_%l1CRE#{n&-twG6W247Ay^nJM9Y!ql
z)gfUhtL}Cu-kk|iZ5C=bx$PE@-zgaOm?*=k^gv*s(!Owm-LnbbHfJ~1pU5BQhZjLN
zcMU?|MiiY$7D+3jfRjX<R1Y>?eVW5hsOjket6~e%k}T4c4*OlDp57|QY%5q|9$!gx
z+V19cw|LJd-VchO=)Kps-x3aH$Zv<w^mH&zJvekvW7Vtb8-Bxehs7<NKR+R?)s*rZ
zov|8nBLS9DmOxuK=0SN8ZXL&}0&d(e|L^*f05s8FGaqA3@Q4;gBQ2F;?Yu#gsEk-Y
z3;8OY!F;}UX(yAj(tiu4<&8}hfZd7Sumyp`NtlXSMW1e16AleiZmT{)W)Zfg-5rOd
zJ5}{yHqHiJZw5;b0D$e(f@_Ch1xQR&#Jkbv#yTZPR1;IvQQ$5bFJtyvFt3FM1D$Xd
zmiJsGWBuaB`nHrZ-9dOIye*#P7FGVz&hq;8>o0D1#Lmi4MJmw=Tw(Zg6N!H7(Uy`%
zzPo`FGIdXNi=nBEF=XgP{aaNBA}(CGh5yx>*#Tk^j_i#fU__FVzS#YV42fvB<w25@
zn^MZLS4ZgxY_imH;#&ngA)Gd%wJ1`J`c&$!Yze<1Be~SnXAdJ}L(i}H_EF8a@$4%o
zLo7W`aU)`Ict}(R$)F_>_oC)!rH#PFB7!2%mo)eU1vKJ-=r$e~A1@kxR^~Qg9CN`<
z&W#~#)z#M@U+H+-GHeS`D9D=Xm~NcXc*3`&^~WIUdC6llxq3$Bj^+tzGDS54rE<<6
zr6nctn8S7|lQHEz#_qgDex;6rubRlIoC4AEXzYc>QDm(qO#Q}i6-|B25FhRTeB6|K
zRs@>p5=HK6lRY-tC?jB&2pJC~)%3^yvNwN{s}V)Fr88wsiGZXqdo8tzQ1Kq+dVEoQ
z>}b#kpRJqeel?q5_5jTdd&Fj1Dfw6)7(M5l;8oZ+=!RafeMzN!SY<oaC#up<kZbC_
zvy4kDld3q)#?KENJm`~Vez^X18<zl432ejU=6f}7+SGjg(fa?g=Ea4-P7ES~Q)|;G
zIk%XC`>!cpmTOk8)~)E@vH1>1DD$ardHiD{qrEqL$K25IPIlU(ad5;abs!N?V39Xe
z{q<MF_f8H<+$LJKdpiy6-hGs#zEk4F+2dkfx4)ph+uHgFu$yjmzXleQh&q?P&e&>z
zmuC2d)6F4J_)?8%xwV4U3kqRJMHJ4F4o$4dY~B1s9gyfBj{@C0^xWi+eEMj3i-1Oy
zEP3$t_clN7{c(7_G?LM}erDDcX`uj4H}UhuiP_?O;;TDOKQ*NeK~$}hVw!hwv)p%Y
zLEjQMh^Zo6OL<a5iB2tR4B<2>GN!#$KAV3qQu!lx?o52L$nira(iy8~=^IZ1VOkH?
zC1(2%>ty!3%t&I{^D^!ERJthau-S6kTRfvtddTV1<LlO>G^59DeAJGA$cM@2MgYWG
zuRq}<4cdIoR2E`O%x9S?TT+a5)XW-XQqT8Yr_6}oIo@xQgH&Za+TsDcU%8AXVB3jh
zBu__ihh}A^=fwfXIV;I;wRPvCYqnBdI6dzGtmwNNyO%NL3j`s?tZC|`VPI8?R3-;1
zjnedK{D#m*a@`SDf%hgMIzmKGD+J5T{f0+Rt;ZLd%@O<s1r}&tR~2CGiOz};{$5p2
zRFhPdj)Lt`R#^qWPhb9o7KXMb(b!P6lDAy?T#${7i`eFRUh%8PusoU7G4iH~RYt(s
z<m`6gb2;)RP@|mII_;({?=r-3M%c?|6stxs1J)MF#jLRC#ueM+tEwNNWyXKsySTvG
z!&F;~4p3WhLO$C%k31f0t*i1HIALoXE{GO1Qb+US_4-#elBy}Z0XUfSYN8-r6L31@
z-Ou{0hR2II?TZ~9o0Ah12mnu~mQ|a0_FRZw+;YUT97OsDePYK?>2Wvw)PN4*#y2l%
z+?soj3Vrvc<<sN0T+oi}O3yuC``;V6iTtdm+ursVc1FJhWiVs6yuA3hiT;~1%}-9_
z5zdMDwm4ab2#e<1y(3UDgr%!qpX*oOa7|rPU<>^gc4rWaw^u6b=Z4-$2LHuDxJ23b
zeKD)+6zs5mbyPuNp~VAV?AO%5H(qT43)+8v#!(VFUA~jsWd4?hmaAUUR(g+a;n%NU
zp^VS}z2By_ft_~CpIQLt5UO{s8kMHZJyrL%A{n4%rqJF+A?e;{6d0eP3Nt;T&T9;v
z=fpNO?N3+3-ez21d*0;rs(mvq0}&*bY`X1VR-m7+^vuBo#>K!oq7<0rIj~JWSJ=|{
zG(ncMt_{`gk&q_Lx2c-Sk7g@JeHX;d?Po8N4NzV^&A(4J`QEA{649vw)YU4P1*qny
zqI?w8Nw24R5wJm~PcITB?jnfviB-0W3W&qA?F$SH`)uRMkcK9#(uu!y9sJNO7OcO`
zKhMRfsQr$+W(mjHu3Tp@JEG@`H=Y;Vr;C=4`t`|HWtSr(z1LMX$eq{D!?aEFWy&h&
z&sap*8f$lVge^tTHq~>W`EdF@9W5e%7V&}XBm7VT_e5`3-@mTI$)2#>=c<H~9{3ec
z<Cif}_wkm{NjaA$|7%fiYpRYIp@NWvI+wHVhEE_dq!9t=m-t6R^>w?a8ScjkHj!Cc
zybtnfMzM(HnHf{(>#LhP^z&@RKYiE3NYAsg8&iZ&PU>1&lb6)?%X2KeeI4_ugn|?d
zH8|4m?yMCnE|?|wZU5YU)6^52M@c?8*?;=gp6gN-Q|>(YvU^3tLV(!z1XB}}BLnP^
zoZQXKv<{1IV#^#bB1a{CvOxIQX_@6C>)m<c1uCCmHgMl==v5@4?$C4-J(i?2+ft^Y
zvS<1+zw!0Y&s5nnF5Evk1)ft=W2)R2^E%Opd+5QS9)a=mBAYrLH*h<@!tM4H5voR4
zH#rs>YFssu=*r&ZO~IKh*3Z?7!8FO%I;Qro=wC_E+P%S1z4p)eAMMflZN|ZnImovs
zX+8L>hElqELi9PK2h*C`d+X80kjkj$)FQ_1?C?9u^?;n69h&dx#UXdUaG{?qOztd4
z^TF)L-u4LTpcj>J4_Q#~2yaFezo)v#iQ(Fc)mxr{^HR=~GQWD%?3&W7<v>fH!r&v5
zN3A#$yi16gJ2}9lfK#r1IzxsGNso3Sb~Lk@={<;f>BP=GoLyWDXqXiK=L|qiXq-Q=
z$v0zKznHh27}%%1OXl1u*1c0a%%SV3;8iGJ0u3hnjnb_)%{XtpO*JM3*J<XMrZx&>
zHbm-(tiG2N7at9u^>1*@m&#K*`HR|P2-c>M5T^QlzPF+Mtd#U#_UWq*+PoWfXs*jz
zkfUd92C9ifBMoqjJ<pGHDR+Z2da!9Z!%I+W*s|3s1qI=HC3N8EN7bC|@)uW?NJD6M
zoY`s1r*Re*K5gc;6QvzD*7lF>+xPW)VAJ|cW#d1CN3CDLrA+US74Hl%(|pze#LD&`
ztFK8&W|0|fWrV0DUjZ$4)GV=YT7AZ^U=QNX{dQR!O^l`IK<`QX!kW##SDNpqp4s<8
z6eGT56lFx!9=gk89#u<$_o51kPJkKQ&%Dw6=B35OQ!~5Vym|A7ZobSNEPC3}(X_E=
ziQ?9a7dJA>lFA2ji^j~Kf5N7wzUx{BfA9T%Fd!h{-iR(;yJ~6lYd`K2VM^E%p#3Y`
ztVIhKO4s!`2525mO?_r_arD3lROdh9y{RiH12P|VfWg`lS=Sysq-wso&LqHt!bAIY
z$k9Z4$f@YJ@XudGoNxH%;s?YzX6xr;#@bLdFV2*aqvON7N%>^5uU4qRKx)JW_J=0Z
z4!jf`9Bi)KvQdjpMpiyd7nCX4UL;Pum&&oxp0W`tOl@u##5hv3@GO>!F>mQy0Zr?F
z=Tq33NP;)oTOZ7zS(0|i`0!3}5Z*_+YQDU>4gO(jDVXDwS*#6y^@z8MJV0%8hGq$O
zKd&>OAL8#{V_><)HMs`}p6rs4|2vTx?C2jE^qmZe{Fru!?6YPT?F}8TGeHdIb$<r9
zkuu`rZA{01nf1#)Qq|!2DIS-}=y~G#l3uj`xpuebDm*<b8X%8sw!UlU&MAw6ZQ_GN
zJ-{TX3kE1?V{_cQVUpR?gt`6lwvrae-vVhcr4%Mq>-Q~#whg@BWWJka1A1%p>_M%P
z%DedQK$|zXl9iv9Q_W!MQB2BSy5)u(Lg!$$eW0FR;L0r~LJi7P@d(bdu0w@RU)jLh
zjvP(68kXU;K?1No%s3ZO!jvrzRu4%bC7Z5Aa5X39z+%X6;{NeX6tHIW&TXiDeZ2K?
z0xQ*Eheeha!^w-2M^#%J3u=9X#fa;(=*>0e0$3RzgX0vvGaRU1$-A%L1dZpr(Q2YA
zox#pU>Y*x8;=9CQj&w_Y?Xe3WnmnrsRRD$|$9ip?Ve6|Q9MYRNql(yxT-uYi$)Yh)
z;P>hw0|$;FUg#Os{(*b%!lBRkap>e3jsFv6?w~E(5%MB&vymK)a4DbSIZ)eWM3csi
ze{}{#ewNl>*us2e(2ayzm}b%fs7o~NWz)uc-qNMBJTH>G$&p3?6rIY97K%ui*>tF~
zHx1oUriAM1b7U_bg{UXKvZW`~w(t$weUU!h0wa5LZQFLtw*#c6jco^RqhD8u?O=MJ
zYnK_+uW+gQu1tNh@5Y^xW<Xh>YOR7M3ooEmJky%)6?J(=)lwK(v$F>ZkU=q?-KYq4
z#BG|MTr||Do|Kt|$F`j%mv+h~Ix=pAfc-Xu&eM|$iyu^q^4Swvg6-*H>K;1eQDn@>
z^=#->&gS@{;QQH?v`0=JcM6>PFqWZ+rZ0o(qdIE%@g`qO3a6XdfMz{K0Oc4=Ej`&r
z(O27NZEMoj$g}ZJngK_m>#Kb7m+qRnH;I-tVwb?1or+uFpadIkNlTFV*P-&fXG}VG
zXBr-+t9a{X2#H7a9u17^hS&F<VX<E%e{>zuUHw<<%xMITR7p$@T_w{O*>8{gR)!r2
z{sBJoFsoPB6{~7IM4H=+z+ueNwyWDU&dtpo<DeTvzJ-#JkdL|4kpJ}}dZ1d!ep1wv
z1GJprrhV7tlYU2Y+m@-xI+wGtBx0DfSIytvR9UnT;ah^Vi_6Mt@@was=MpAUTr~<$
z0h2nZY7@1JzKTm{R4c9h#}0l1ae9>V-eKVU=E?>=nh@6kvn|T>48Pwzd9?%M#nfV4
zDG-xX9zc8ihXB}ptbr(i><?1<3<^B^Wn&iN<avu0nL3`!ZUR1J4)h(0?sWB9(P(Q6
zx!);UMxgdBy%49l7JgU8Ng2MWnoruN91hCpc~yDwn4U+)mAu#4Ek-CaGcbb&JTqck
zqBEk%-R`qqWYuQEnSZO$+x2BjEnim>o`ZYma2cAfs7B}<F=q7W&DTmS#wO81#FL-q
za#_<$`GS7Q&%1*Q?qgSlB+(A*p^$)Ftrt!pehUFIe#7Ie<7m54b!K6TM4;eEK`&&1
zNm0tXuUh*YIm3U#fknUjlgW?T3;Qvl<zxTkHiT=!u5inyUYtKs>2~1x^XE;1##!4V
zUvM~fKxB^?F?!_<jQl_yf>cf-%?d3AZMH+tG+Aw!Gmw(dHKg=3UeoV|F1!$aJPz8S
zXX&@<Dt$u9F~iSGZ%9Zm^D-+N1R)*3s<$!xpXs}G&oM2xxOK;l9>heXm3(gbt5NX!
zkc6$o=fj83T0C<^@E&~4EmW~YD)tp9hv$KNBeH4fWwLTLKPAl~jUZJ&z{dAOFlFFU
zzSpsBua&<p`v}n#N7g$j3WsV({AQlr=zq-rDYKy8jF9&oIX7FgM{e;t$%dwmAdPez
z%-n8cJ+*Bs=INVK(X;m%f}x;oX9>vkkL9=TxN|@<EQ%~><exJC7E$yq$U*`-Lu~9(
zsuXF{AgXYxNGy$efk{P`Gh@qkq*2=edx2g@?zC&yZZ2*@C`*R$GI4qvZz<C;q@jwC
zn4DFJsJZ00({t3P>@ObmoBCsvZC&fssnc_zj=p|ppv)cI?VnWMOCLkx^mWWz6G8%s
z86UW(O=>BD?F{X0{tcwZIoG>&_f@Ft;Qys<S#uSG4tR6@)cg1M(M}juFSG2sV4;vg
zsoHhu&_NXJq#61~tseq(Bs~7LqrF#n7*$cfWQ~Y-V&t5Z*L>VezlO0u-H<3onYAE<
zJ+<_oT4ZEZzXM%7luLLw$z^Mw-C-Tn&MKjIxTTHd#LH0M<`p+d^c=MtiIOm)%pLbm
zhU8a@<M}#bJ&=)%VMc|6Lw7yBj_C5oA;pA^9$O+kiTq4Y_QaeU;T4l+$lypB>%~?f
z_-xITh?eB%#J<DaB(VQ7gg)GC5s5)3hC!H32-il<5wY;0YM}Lr_+qpY-0pd|w=|Hc
z>QbnPC?BQUT{O(yMs5~D5JB=*7z5tYub>-qdIs0K@GGr|^1A!zz@3Jw)UP}ZPwfo7
zm-JGaVWM}9@7LprGzuUA)PaOl{VAHaoL8=d+tg>Bgu+C-mBY=VX@f=;AF9`&>MR->
zx>nzY)KRo+xJ6PBST&IyI3X>dzj{+nm04_nYD73PK88~4fsn}M`{jKywtWKq%-0a#
z)F9$tMBZf)GjSTW>|*jXQS^5C`P)f#2b9}jTDHUKwxMLidU0sGv6)BFp8#YPP22AG
zYd~UfDq>Y!(rto4xwCt_kFh-L=+nJ3XkNyEDoz<~ZN8%)-!tzTl&v=1<h-cQol<vz
zu~fjmn@j9t)t|-=#cd^jxZP!Yjw~*cq`uQ!G)~vGM>N1Q7&{t=pQ7&PJ(`)uO`6nE
z$W(FmI^Z|sYAA!1-L^s;nNFCk)d~a9W>Y5p8zcjZoiP6XzOc}a9UaiX+hIF-pLz7w
zlQxHLHPbDWCusKFO|Q7^4^TKy-sgGInC+CzIbAVtV@m6^JM2oMfl-8j4`FGgD+N$O
z=w%ryh2?lnpp~vm<*$%zC$rbeI497XN9$4ovvQi9NS^`5A2jCTyWvh`-Vhg`(T_Qp
zq>xyV^^h%@ZdC#cskyr7#*G^?hbNLa>ytdB(7`gpfXQeuI>xLZ?KF47Cd*kT%_I6}
zTE~nkSxfuOuW46A$BGtBbie3~Z$n>09Fk0HfYwLm#t{9>@t}6-#P{E3&P=(X!56jz
z-|lD1f#NlI@UQ2Wbx;nTo+br~@h}r%Uq84Oy<EHBvLw3E=e6_NhxBTEv{%E<b-gq@
zOs&7QMca0}ez!U|c*9Nqg`R4QjhY|Pbl<h#<XA*po074%^#(o7&}w6-)I_zes#)R|
zx7GVA{&?1Q$gdAB<WCt9{4Vg1^=Uz0^|KGXbeR8c?W<KSN0h%V|CZ)jy({<C#!okk
z%VKM8rbnVLj=$ZgTTscf&EMajOl;8JW^c)Nh2mD!QUnVRxw*SKS@eimJn3eh_xPM+
zUVW0o`>z>8Y0J*7tw!jAMU<81bX{=Ze#HKOS<cp#?<c#ORZq%35VS7GL&j<?pS7GC
zhR{AOeV;~rzA!7r@Rw^uQ6BCSjO-_k_?DNx63JGd$5^qR<D;&y74r{o{1|<vRE9X)
zU;p|*zi*-A&}^5l>Sa}NZ6`aftitlVtz6@{u8<gHK8-)J4=f?WH1o!JyWM)~Uzwfb
zQaGae`?Fa8=O5`vkoJ9jRuC66pi|jy{g0XfPD7b8c`enr{VZQXW3vZoX?$GZ`ognU
zBA=&`+csNT@or>|-pQa(H@;3%CwY-seKmJ?#nYt^MpP7;SJ+%xHfvHvs{MdKGAskC
zg2o!n2dy3Kavc~n(_lWwXTX9(Yo@)u+iGO$w<X%ABRBWepu^#lvPdKg4x2wR%i`+8
zt0Sx4Pfi*1c8_aiZYtX2nBu~U#F5og7gznEvO)9YJB`k?tVs%5`)YmY;Y7#fWH?eQ
z3+L1%FCLjTqQWt3DNR#-o;btTrW9TO6w~>`#&?I-Rwpc_CGv&%Y#$yh6~I08;QRKm
z<;H=ohac$X?mQDy{iXCyv%bE`#j!ONvH3%sp-Ft4^vO?tEv@-BYz=SWKmHu~3;%Bw
z%1VLMtoe;U>`1WIJF_h8<lzI4qoOOb(`i$d%Ksu&DgqZA*7ECpFpDJ)E)0m>M`+=o
z!oY|LJl4?YJ+vE3<#g<~hKmm@YoJi*Zy_oR*swesTW7g4Xl1gN=?>KU_OI5zJ7l?1
zq4>O<ud?xr$_HkFo&US)8NHt}T}@4shMpU`>TRlda9iANmG!4w`VD61Ew~RVOVj(*
zV(5zt4|PeZW)*drtL~E&<otY5(s$zNK$4noZ+tpGaeu#~>DA=<Zay5=dBpjdD=X4I
zN!NO_;Ugeam#04CX?nj}4zwLG@>|m60Yr~4bKWf&k4Xx%^oQxnzf^@FbRf(_Qt2OE
zR^C&8R&gRY(PkNFy7H+3g+%x0ROsxL5c~N~vw?`yAG|LN#`>ziTOa!YHuG}o&9YYq
zpNv5NVfpsmGK=hIHPxSL`aIrGsl`3&7`0En)A32NhmEmV97L_5?z{exm$Co7tG{FS
z0{9k_o>n9~Y~FPKW@$3RU*}%TZJ}atH8r~|rElzwGn3y8-H`7$-R#4XRW&2)Diq3v
zyN15H*Jab+4-Zye7rA604E};A*%5j}U#_+oFrSsWSYVpO>DB*u^?0glmT%cvoYg>F
z-I*_~x(>UP9`$zp(aL=1CcRBEe{ZDHVR_8A`8Mm`YzLX%Up_0A-<87zs&|nOQ9kft
zOS3-i#B1|!ZU#r?@>kp~Ch4ga>SP<cteGFH|LMlS*&E)6YWC_?`Lu+rTAQJ-*4Y_+
zO&w@`hz6~;dxn>~kF0#tsyN+Za=wf6uB8*<b8?=}T)vANKXCW3f>UQ69Lc1g_tp0&
z4%$MCM9>Xj`sieLpj2EFji9~hbLLE3GmdJjZuDiI6SV4qo)dE)<H?VSeVh0|JEr%y
z@5xu^RD53??icD>Q|**Cyi61+E5BDQ!!a6^zusD$=QBBBlKuzF-<!nFBK&^Ai9~g?
zUpL3SN96aLy^&DNTz+$Kb;)^Gt8%Mp;e3l{v)0a<ly&3pN8=%AZV^dYJe@v`?OY7K
zHhBH4ZA&v}t$nFn_F`4q{IouY7%aWu@cQ{A<wtNu_m*TNc3Cw+{);WXl39Wh)vsiK
zX8HHzaL}aZAKf<VGRARMLGk(XXRdMK<Hocaekn<3M?Hn2ChFPjjegf`@2yH3ekEyO
zqv;`>wKx!g_jkU#2diSaxS>MfJV74t=_-@#w{qEsb}D3jUlw(FjU&(X&^T;TfG>|%
z*;o`2-!Z1_<|n@c7b{ZcRD0W$Y@TUB8B@mE>`l3;1Jib1|9DM@K2V)o4gY%z<9Y{t
zSg4m}w`X_`Kbuf+{``pp{($LtR!4d5%Qe%Bt`(lMUV4!&N`%6*BM*drcJJ5fSL<?j
zkwRMzK(3kjEG;F)t6NQZB8|lV(k(o5apm*r>#r9lbk6;F{nPH;JtIe)w)2R2iXT{4
z{^pO|h(r}H7RYMuok)V4#g$(IVpHF*T_OjE+X<2WEiJ<#U{>U-k5O66ybzkWUQAq-
zpPwK9{$#L<oL-rXR2Wf5p%~&I&W!u6%bpKCQ12|sBB1I>+NyOFHOMO0#2wRH&!W#p
zWqx1Rq{Y`+<Dr{BZ|&y0C_DcwM+g1F*E3J6a=X>+f04}(?|&WL;9d%M>C%`BC3H{r
zz?F|Pic8W6wka?Sy5v$E-@X`QmPo9WdwkCbPtttxe63?VxAgHVuP%%2Hm-}45h=oc
zC!Mlcq#1m;kx@}(N*}#VSM|7*`?>#N4i&7-l_BONeEP^zGNr>Do1{UX)UF`c-F&67
zXb+FUK%t4vLUwA`W%Zw<^fnEzS%lKA_8DZ0$TfI!oO%i0B+eVlq~CI6<!9Z$j%;0d
z;5F)oc{lhd)0=by%1>WcF_E&MHp_38OfzRX`#6qfvcbo<v^>;2>{|V;!_Z|mC`Ly9
z(rZR*0MJe<jWReH$4E|y&p&0Zc15M8Z%nx=jO5;Q4525#5tJa^e<uVEPzx*Lx9?A?
zoOo#1V3flF>9P=$D!km+(LO)LpyO2z(Kx*N(BDSPyR)r4$E)v<=!xh#0lYd*n>9O5
z{3hP+$pm-Hr)4WC@GHg-1!yh7Oxa#}>0FVJ`0R{zTLNxR0#A(^X)CTlkAiLhXb&EQ
z^vY6~nu_eSYuzg-qT2(_rH%tTtK%|yKAmHVxwy5b8XxHeZ7Y)X;}GJd{JHM;zmDhL
zs@EztJaEkzY2|+dh+?|wR-Hz9gN_cRCARs*1$c{xjFmZ4T2XNNd;*{C^Gu3vq^IF=
zZr(#8TX}-Y&wq?e{azC{@#cv9aNeHtZFQo5l#y}ugk4?rhxqrMqoSn5W8ME2S5LWQ
znD_-GqN@WF^*F)D`7Z|*jhUTe<}(gew-j?1lsJQo6jd{WX0Olple2TiCVBws$~F~6
z7bjQdX^hnRn$(0^%dU8ub*Tpi>p*X|%l`IYt!>%MwR`05ox4^LzV5^2XR4|>G|1m0
zUSdMU_sQ^yd&a4(?@3wcoPte{pLx<bm|TfdLD)(Etl!5f6c=t<-&p5Vbotrr;>-oX
z#&OewZ^l%WX8Dz>T*IX%WiR27?uKj5uZ(W3P~<O{`wPS{Hj0BN?*?}lo?gY|z5$eu
zcUDs3bXF#`J%L(!0K}G0I!JY`e96Kpv6^)8o3_{*DtYCyI4{lN<JuH|_}aHdZ_dT6
zW!H^404ra8+VKjoKzq_<=EB)p9xvLFR_I@z_9<TWBG|{>{gW%ZuiI$&qDLX+e?Oi)
z^xF(MT=Y7T!^IZS#i%NM@|TLsePb&JNSv0AdME9@eW8*P6I~ZEBtk2UK`+-H-aZV=
zvYV^zr&Z`**?eM<ZhyHRfc@WUuSeh6UF3QM%-*0C7*O?KZA@DPjo-&=w7UNU5?ds$
z#4qj?Y>svLlB5wqZbMp;wo_I%rk>^)n9+J@+UBLJ5>4$3vtrHzFm_YOmw?33``g>|
z?>teX90$GE-g~@I5rS5S<S(@4PQZ=qPxl)<QV%G(?tN&0C>j`2aAW__<xGZ(F>nTW
zQEe~}_%Z};u63iXtEW6jY~r{OeR+RK|8-0Ow<Fk&aQXH{EUXNpb$Y(&WW2!TCy1|8
zJ=o8sPP^T|d~+>3c;kD)X=a|j3pqS=`QbEuh2n@eQIa|g>y;#*uUx&6eWLTcul{w+
zE4k{99qiOj*XpmqN=o$AJHCI!rVY~)O<1;fVmk)Z?6OdqG_vaNb)RoHy7*h!_V%+i
z*F3z=Jo;h0-SkmOa}z^N{mwY<ni#H7OqsnKKizbxdDVgWRtkmYL4v+SVt}A@@ko__
zpBzbVg%R9Yr$?q5YHKKllY^@qGe@C_ne}{PxZ$;r*g@TQL94v4@qPL)PCs@3@Sh#a
zht|INw?~U7RXx`^f1?ej-`<=W%c19PmOeidwdvE%vSUDghY?LItZ5P2efFl3Cub&g
z@lUePajVzTq>uR%P>XEq_Tg79^ho(&?xs*E93!N6t=7q)Hvc&Kb;k#;r+x8Y0aY0c
zrpP(^hl=(Z<N2iDbBIFLUxFA3BLjK;;ggW$Eb^7Po;v4D3IJRQY{|5v74`W|eg2~J
z3ubbd0!oYiA{ifezO*SHmtPyc{q%T?r~H@43;R<&nLK-9|HLjn=~rH?9FNeg@9CxV
z-&LltX5!hTixUs-_0Eg^sRbA!$Kp&U%O0wTSiA?F8tXDR_RJ_{?H%e?k>;Vvv96YE
zbFgh2cEPoCOybMWH<uefJi~*`B!ltmvTN^8gv`eLzgTg%h4QsD*(bS;8z?8kbM0#S
zQbVE0TxC%2Gm*}<bSq!M`?_!U+u0I3Yn|A#^sZ}+^RxsTErp_JVU+*d^cF99qoj%&
zxuKkkfRZS3%ew^+&EELIYSjB7WKWg}$e^iN^5QCPp%Hw%_chE;@x|b(Gskjnw@lM$
zY9ER(iJtRtL1-g|TXNK!jW5IuKi@p~bX|qvM_S|Oe7@Uia>2}H(P}u{S=}qXV=r<+
zI^zrKwbcDp&S}%k_I$~N;^u}w%o)AUH^cW252seChCnn2fVmr$-pQ^lq88VDdu|=L
zDpX8nR;Pm&u}^W?=3ftk6(>s^T==03OHN|QaW$7uHD_rE++BZ87$Yd1pJvH67Za-Y
zETNC&F`iUesa4~N;r5H}wl`SNvA$yN#*2J|7OfVB_sSe{`qj#m-hPK$C=^j+W2-(a
z??E)HswzpQ*l+ijYuk@}X0vJ{q?m5l^5}ejdp6p!YnL>I%Lf8wcXBQ2SAeYvw@-fV
zJ;de18S_w2b-7_0oZaWz2Q7xC$GX;>f;loW5@f<kNqZFQ<-n>cB8K+0FrI-GmL>^!
zg1%xEuQDFSM<;fEF5ql8T3hus6d>pLT1*O~y>U&-WPL@}juvyu!5!YVZQP0sN;B+=
z!3lmTGZ;qx%J)tU{o8FSORvQC4u~k_d|b`()Jb;erFptVTI-;cz^LS`XZOQ34y`sf
z_;RnuLmqD(eyvB&>9?5#1{#+gS@gl*zI&c%HKKg3k&(gQe~xhiq$SpA)Md)DigmPu
z&YkS~-NKv^3dK$t^ZxM5Dpx3cTO|&>aCZIMzy&!(H<|$v5|!xUP*WUw%}u=Y#vrVr
ztjb8xnn#a41_Nd@OV_<T{ODKj@qIkJ`drg|l91lw1K?D6l&fEob$Y1EI!!e<Z-Xb;
zP;}|>B<o!gz_g#WdTM1_P37blV7%h%*;Remsi}Q3@wwd?^tEBq{V*jZaW;=9>Gu{a
zqof2b_M%b2%Ov-sTNatC={zuK>bOKYNw`*IWhXnF0h})~-(FKjU)6xDPfxK7gTo@9
zm{gdB*DSKQ9}d3q;^uHHIUynk-I=Jev6q~WzzOPoZvOp9kU;X%N<vM8AC4Jd<Mepq
zP`|7U7N(mlOyICJi=*#fdBUh<AMGjXGqVi1ppKJkaRedRm1|s7V2{o#2Iu5m^h6RA
z4?yVZT2(k_RVRG-FsGMmp2cJ0JM0<peIea=4Y<9R?PCUa#^3A$Q4WDDQh|F-yEfH%
zjQC!ezm=X;^buBu6xf&tc6Fj3hL}wo;?lp8duBeN?%qSBz7~?{h~DY<R=H&El8daE
zU)HB-z>H*vE}EwyHR5r;KGz_Ev`%O(y*vL&?d@#DGH8>u-IdbkdM~>7wpLP-Eo#nK
zHcof4K`Ab%)8rA~?9FQkLv{*oU2mgMBnRhq%y<eiJ^kWsR#d{)nZGYh!2}$Bk$vE;
zX&tWQ3IdtLaoskxBeXKpPoB@<sZ9)WyR;6{3800y-o2^p<<QMv4`$~XOoLdKh}(%P
zlpygM%e4!9nt)!wI}374iER7sPn*lGCw<sErlki&lL0B0sPe)YWRIlv78KuB`^@v3
zOHNC86}4`{uN&91p+3%yqc%?-S+%;$+80iy!%<05dt>V9fva{AcFB|Iv1bWsxLk2y
z{go7oy=Tb{0Bw5Pf{Ag}5I+=htqfG}J1}rUmvygyPwMH&n%cr%2wqy5)Ldcst&{GG
zxim!3S5>8apdH=FO!Sl#j{1{^y$@OU_rq~LRCCxkuak#2Xy+R#6o#E7ilIJe^4nQo
zsV5;`+M{#ss%pM{=C>~?eRFpXeBcfwP*0Itw~kAAj9^epeQVcoewXT9SgJ|V)Jhy^
zXiuO(40D^z!<l8^U}maNxY<0Rq*UB>$YIdf3l5+|r?1>$6LDc2Q0*4rhnW#AMn0wo
z?>w=C@q-i>mafMR_*B%a-}x)%BA5D-MFz!jZILUNxR)2i#qe*>fe&<hK<@ahymr6h
zuj6}i*axjAN1ij2u{<lg`UF04A3ibi-QkU6*>dmiAdK<-xn#b<EwZyd65dUvXv4M>
zj&-{DZh}GeFbJOK<zVhB3(rt6s4@MGr~5(@fD-WbS_Q(^e&9MJUH5PuMI?NYOc^mf
zYpP7B@7SoD%L;?fx9Wv%fIR%`sBY!wyFNN+mMs-tmWAB|B-FQ#;#m^1YpTmKAU7-~
zG}KqYX@s(t5{ra5t6{>T+IOC9`ozkT6PqO@0Qs9K=B}lg3;NH!<<`4X;g#5`r4mMk
zEyt6iXVI*Es!4=M;#b1Drs2K=hi`Nia2a;r4>n3H@r}waDT49rGbL1CNTZ?~OajwV
z&&n8H_M)wzDjE{@vv$VZ#uK<6=eWuC`mlaaxlwu5<k-2>fSGq^ue>t*xV-!@&Njoj
z%bN7563mBG6OWU7PQABiCuxDii9=udrn3+WyI{og{go7Mo`NnixL`idi<>L<9zsCk
z8(#Z-N=k&ywI-<y7Q{Z2oPO@>t*v&8)h06XwY}yp_DX477bTW&8C7G$tT%s*ewX0Y
zH>LyW29y3>i>?j|^S&&0KYAq4vApPFn)w8X8iz8vMg|N!UA^Pe`Z@}?r7566Il4+p
z5yWlcw^lxn0f<IWOX}`^4@v}p5&B|aUB#6CLn<AGaW(7TgnNT9<nRk*SZgHy;e0A?
zJ+&vm_2Ns#yH-7ORZBtG+SaxFZZ}&_kY}BG4dXCvI)fjxRk^S}yXZy{x8(dy|6b>X
zK7n)C1JA0D#n2wy_Ve-smPv3;FTE>Jq3y!U43m$T;@o-C4e}Fb)BOUtM@v&+zT3(Q
znA1WaS0FL~7``|srsCuHf?xtmr`NwX^4}<@bS#M+pNeiSpGQfIBp0e=CYmS%9H!~b
zH%o91)Wg&LB6r_76{=Gz0v1=3Xj(*r!l5!!UO>BOB}cE4aL9?cWh~EOOW&P+N%r1}
zVp7r!zD}@#Tv0wyr`(z6e-1k`yI|!@%1nP;vX?tPE!qPDfOMQ7w{FTb!8u`NB?MuM
z!c3Ewf5F-f`{6<92Ix-ucG?V{J$Vi~`(yY_(+}$!Dl%>a%-O6*bCUz<2e=b%6PY<L
zDyBGMuUbGyA}Nmvq;KP49=eH&P8OmVbC7@?NOp)7YKDlk_cf{>t`|j)ul%?+)(bzQ
zv4_FOI^rND?vZnxA36DmBj?Dc#mJo-2!bS+riFCft@o9=x3_S(Czu~x*MN<fL-Jf|
zW=!d!o6%u_{k{2D)^kC*0p;V&=fJZ@6rQ{O&v)U8gp8@R5<`}gP)n+U_z<qA_JBHm
zD1E-<Jnvz$6RKf1%VoZ&HzrULCkdt+huU$z-Mdx&HO>hLm3VM@Oh+QVZ%=j3(h9>s
zJPdQfEN$4Xhv2x3HP2?{3KNWbibyY|ny2_{aE$>RYQ)1PJAYrD?+~fCUAHn89fy$&
z2l)<1wo^DjE%my5%T@9b*roPLa}Ir2LN!?g4mc!;$U*ZoCBH_r2Y0C~PUP-DPbESI
zwAcS|>G9aYbHGk2(>s5PsaR&@@+5B<G@iiZ(D@A&M~XNWF@n>4zC*sP{Gz1D*fv4E
zt+;o>)Uif!@_}Sn79@ws8Bc=HYcIAPSG&3J8Yu*EX@m~KThU~ElAK2w1Gj&q>*ijw
zt_?aZp@ow0tPrD-1~K)I1Vwvm>tzzP*l|I}7qmz_)li|x@@|oxqJppNB!*RAY*8%=
z-oUjjuE?(0>{Iv(+hn?xNuC6!gHP2}I35RoUp-}>pZ&*eG5AB4B4e%n1@4xGSQkex
z#=du=5xcV((}$=t8N_{m=(&SLpN}Vx+y&>AIKJ=Ac7$=eFn4h{m?2q5exv^lvz9zS
zjKjt20=P~!w94?5$G%SbBA0ZOosp3cra+tNi;oE&a;C)43ltxRF@~_Gg$I4cKKWWe
zsOGErB*l$t)U_RAqCM_X;u?oU={Vg&lZK7=@8y9Bm6?>_T`2io;)cSfojqVSpPTma
z&oQlbL1eHEt)N)ffx;~&)mO|6MnRH@ysL+*h%kydCc>FnOd@~eSjcfw;*xvu0r5yG
z?2t0(?IAgSmW1jOG55vCyH#lluhG<`sb&3%;dw<60Xyjy*t3Mho_J|ffi-z=g;Z`k
z*`R+IskwHXspW!#+`bHfiP0^(aM%0$f{_(J@|Xq0{sWd>eX}EEGZ!=W)bZWn={s@c
z=Y@RE4-kTm)6OK1J2a-4%~6_L7|C%=pkj{ifIv;+m(ZZbxU5$~#<8$hlCn@X9phU_
zhI7|4;GDDhyo|8`_yuq^9{BBea34TPD1GsoS|_<BMO}ey#l)WDjEsckgwD~@z%Odw
zArB&RU3R&<vquS}T-p-(?q+v2q3Ohy0NwDE>#!7$cQ#cR>Ipd|Y<^e`1Z13Kdu>$}
z8P{qv63n_yZ)Nb=FvuyPqufr8KqIS1EpJ7gB!-`)`(|564AiV0shHZkTePb~f7L}(
zcDd{3`&!f*7R!)>%dSaDE~f>zm1K4K+>I~EAu{YDyg%Gl`T%^~W@K+lkgDSg#9?7C
z%_p$?0fPLZnOc5U7j$3yZVJb~gTf+>L6~hN*l|DKvM8DuN)C%6^F4B<m9c<$r%Z={
z(EZ%DQzp=Kd*)Ps2{5f9M-j(S$^~9e@;^jMIRf%KM5&d+t?3Hl8uhaFy=J`L)>HAh
zMnY4eyL`S&%!Yps-Oq+8GG^yF3<#X?ynDuws)FgUwMn2b`Vw>mHJHgka(u-hQX-RQ
zQoy`FX^`i~LMo0N+r&~!wm|UQ&<$rG7?=j6f<-p#-jO6-zI%_|?j&-0tEvhYPgRXH
za5{;>dvuYU9qNo(6W|d+&_f&r+PD+X`1)|;6j}AAn>%=wNbe)*m^t0X$=Gv|LNWKN
zglE%duXiwaExVq*3w)v*FX-BVwq2X?t!sVu%z_dY8x%E0QgAC>LCK-#&NWr&Gi5lt
zW+Iq4W?1Rut=fFbl-V|>egiu8n`;=hbt4+hPDJ0eyFF3T@wsw2%(>DpoxnmTWT{Tc
zh!qdcwnRC;y>zgeWG*GA=4(5EBbqEoB_4j6>p}?GfBly{`gj_1U5<PqH9!jmFFWiZ
z=M>++e}IFTC28k;dmiOh=^Z~yEgy{8Ab4!=bRjO}Sk*qxu1##3gw-LUWyn2q@qt-i
z*ySl<oW7iAvDItB90;oS5udw#$PlZ7>{&Ht*dkN<Rmcf?f0el0yWtb}^L-{99R-+H
zXih%Br^(E|C)4K~O1C&M!Gm`mDr<QmLMWiOX~Dti^y}JWiJs`k5*HFyhg}0dX{psw
z92p=N>jBs{WHZr@9qcoY>Xv+EU2)FUkJk#lui>AZlC@5T{5WDNi_Ak)ALzXcB9fU@
zz~;-<x8O1;YKB1OUB$fn2!qZju(Eb-IRZ1cf;%qt;9K54$JEnP#IojdoHHG0K5~s;
zFwDP(U(damHe!51=Ve!KFW@{X45J^1m<8s)dncyVX9MhmkfDJYbrip@k$yWgc9;PM
zi!4g$ynKQjY+in$BqW3b2vN~nX-|#nK)&si^(yQ0_LaZ<v^gMMJPD@tpYJi7?_m?P
z;!YE%qKHKGl9AQLd#;kll54F{k{CxEmFcFZ)(eaY`fLAKj%NWkxYiO00VO$~$Ia?1
z{9c3fJuf~OrW3a0Nw{)sP1UE`6;U{*4GJ?~CJ049q4#&m6LYUMWFLy|og-N(ct$Ay
z{?!n_KW;Ik-ZU`BI^4G%m=#mNZ5Q9&&Z3TCd?4POG2g>~<XZ6h#ds!T7zT?;m=lHL
zdHF;XRh=d5r|(Z+>r$^dm8y*J4YcK|I2$2p-BZhCQO#fnA0crf?<`BWcLyQ}c_KM0
z@NVa4chv}5F<PLEmPS3dFJcifsBNWwJ}D9`JdTPAPtXX*^^m$%vXvAE2~0-N;a<Mj
z_9X74KNn3*!G+_J1q?#211?ro71Y|_rCjDWnCW3+crDU{^tL0HV0se}X+Ax$p4*4p
z0#%paC?0DbjQ&C#dF`1}=+~VX?t8sk_2)lod8aVi=5&B^*(20yyd{g<7@dxfOeO0z
zGpd)WD*fAXh;R1bqeFw5%cr?rsx^^9vxR9)*x$P5>&P0Ppubxyq8x;I%<b#?ZM=Cm
zV2~5Ud9BS*WK3OX9y;1)#q9=8xNNl&wC1$|3y3dde^b^VQ^*c<=`JqtCrOd4ass*Q
z{j)XY17T`F6dO@wbT_RM(5*b(=IB&qx24Ys#@axHPbh#0i$k7&42P<9LOhvsy91VC
z{m|TW%dO>fg@kCSUvxn-WwP!WDmOWTl7i^KnU6ffdW&`Wdvxt~UU(8l%r9Jkz)+2p
zWij90>hfQ?&|?$&cU0u{0S=J>!;r5uJ43rfRaMj|Cp%D~=z>w6sMnQ8xN!W>5VP$x
zqITzt8DMDqdv!)kLA$FF)yT3=>~GE&PiofpM(eJ_R=bl!R8JA2lZ9)fN|YUMFJE2Z
zxJx`k?U97yur5UtGmdMO1JE_&N$f>$<-~zc#EQ)-@O&-gvZREy)B%qQ=RqvP6iNH#
zfM9kDIcrTHoEyR%h=Rj}w@_ql70tu$;ia@dUgs29B!CT4Ys6w|I>n~*ikgpLZkH_Q
zR7*?WUI!WKF5jc}ZVXVAJ42&7$^J-8q@E&VIMso!BGLKhIgEIY6{7mt*=ex0U<><9
z5R8ZmcGgmkl1&)K=NL=ct2P^7a(a%W(7p3TK$ROBFx!*TpA-8jR}>5{Q?^Cn>_jrQ
zX9}&cJB%#9-71HKl__7z<svGuaU@gh?rdw46bY<fSMp@K$Q)$%WNRLUn1zZ#72etD
ziPdyta)OaATp_0yPLfk{*;o5GYTV1`e<_Y~Ejt*jTk(S6M|2MIGhR_@5@HDI2E7LL
zs`zf?!QXTWYpYh*@cBoizPfPJb|_qvBDp^CD6l1u^v{aevm%4ALQeMwKa0z*F1>P!
zY(-?HP=JWq6Cmd-CNx5qClvw`c>Or1aPY+t4+*fS`+x3@l|;6be8iC_FgvtvBVr5z
zf#n?h$ITikl#qfxx=LPMyrw7LSuKU*lqc^;h3cUA)qIm%yC?Z*`+Y=ow^MSC*w+KS
z@P=hMN4B=~^qD+D4^VTsc16YtEsX<;pZ7;sX^La!&#%2=h+szfn^vy-f38d;oY-z|
zm!#8u91sWCwrk%$Q7yoxjqtjj?-dzJ=x)_9Ln9@JqfD!gN&fHh^Nk6N?4ST7cxu;H
zZt_BNH8s(CNX8@v|DcfqP^%^VIUQGDZ)qk&nY7f&hb;LF`JE_~vm91#e0aJYEVrX1
zCm|dToBy+GL&e^4KoTXr*-I#kTCPOoEjUd(E);J!cidhgEa7Xh1o21++i?`kR8Hg5
z#V#OV4gT?bl?T<W%pbG2>riJ&(8S2cL-yae?>Qn<f$Gya7yb6Yj3`HIPpvu%le=6k
z75Ikr;tVBlWd!G@FEc0`w`Jo*9p$&7TNA!GQP)w<SAPml%j5fQmf$1li`sa9BOr}%
zXSLBfYhXU1$*s}?4upGcl8ShlkiC`J@KOnp7=6%9AYG_fgN*$=sud{gFIE7BOpiV{
zKHq`eGf|;x!kX%nzQW6htp%H@$A>5smePkS4xw2GcpNVYgeVa4NyIXA6nN%cw%aPa
ze3iIQA>W9i1!m<ydhepwweJQ;!5>)sc-W)P63;<Ro0}=3G$f1^ALImZN`&?^8}9t)
zs7CQZx=XhHI9-E6x5>L6^baUD)tkAG{+9B+g-Xg?*k%FVeYYeG;OeDQgmA39uOj&|
z_~RELz9qZB_C}Y(ERP>P8~-Z=dCq|)=R9UPXR3wzisV(&!Cw4Nzt)dsSG+0{v~nxT
zUerTyIvvQ@kKMCLU^XY-n2`K9S$gE<m)o_ed*LkFI@uht`tos1v$*kam;@!TOttQ7
z^k`X^qJ`!Tr=j$&{sjV(-1$M58}M^ZdHcqV1qG1f=ndXAkFHZkq3P3VWMw~iKo!9n
zVps@whep2=@hE|5XGzTa1%Z1rUM)0lpg3Y+fUkDq+$C_1t|uiHQs*OrGhbidI8wcB
z`Sr7T+Z2xX1(2M-@x^SwbecN8n0W3P&hlzO_~}~Z$CfQy%qGc++uM0!xZ{(<B*6ZH
zyn@tw-}#wPVW_VKuXKTOo{EAT$;O#D7SQFOP+~|Ce40FiN?GPyC58)Dww;i&YHIbd
zkZXld)9lN0c;QL=3XWaw*vHeIQ%7W^t125vs~LG)^g3a2A&QWtgt7ghclP6C3`){1
zYV93ibc|CK%N8#-1fRc?K*?+ZypiHUK4Ie%#93m5er^WofiGvX1jR|>G(J9F=(4eN
zzYZhk{Y1OF9wyI@FjH(}UX*>3H$7>l(RO7p?X0e4dOSV<0rM?LoFVtu>%~LRtvm?_
z@Af4MGm)3KQyen=y((s2K~`dlZ5s!3B~lJPf)&vaZ3#A?WZ#@7Np)BNR5b#zB;T3p
zC(`R;P*p9#g%S0n>SMX{PA;?mwWe3vk}be1cVaVEk^c7|bS4JPT=w_wD#QdQaYaI0
z9HV?h(q-2_M9qA@k7M?M%T4_CT=+XVJt))?Aqae&X(41Qe(FDuFh0z=Cm-V0`-G|A
z(&tb&xzNy_@^^&r*10$0_NSj(0LI(sljuLlCF?-Uw^|MttV(Ctn(^|33tRsTfogC#
zptoxNqYJ}U=G~KKSUi)7HL{sw2y$f|bxB)1-Yr&W$};xrrC7bxAiaSS&gGTLS_lM$
z#oR?ADqhl;k#!Z8doiQ3Yt#zp%aY>$C=*G^;4dA=lRX4OWGub%Qt;A;Q(WnmCO$y*
zMa=(QLo?IioC5DIX-G@D$&^=byN>9Iej%PP)7Mta{FM+fut(MRZ1kIhIVFCne!sAf
zIIPFJ<y=ka&U4<S&-E;^h95fIaxUVHc8W?}RaGDk<@%HKlnmo}!{01vjq;%be=EE8
z31(i$0bk3}zBS|o)s<o~F4^%zMTqvu4~i+7kYk;A{E7MvFLc%6Dp-9YH7qe@?JG(d
zQ@=0x(-iibS5)slYq(1P@iKfcC`?@A|Gf4N6b;LNzVar>O8n<b?=jo-pRfOYn}1j1
zf7j;cQvC0^`MDDRd#8S`#Q#@@qO#k@GL;~!P48M&wr!(1w8`92CZ~=cd$KO@(Qlp^
zO><gYm}@xe`gP~<(wxhxGxBX4j5<Bz!qtMm`dqXqynOA6(y@|;8Oqdkc1a&FXv@`e
zhK5Rc%M3?vcK!QZ<~A>b$@lKIJ$z&KzzJ#Z@?6r^pRCcft9V<_@VPI5<Ud~~2fhEx
zP%g3nTm9$j*QI9vWnDuiN<#iWUT&AP{@WxEkxcu4z8;<UZv*_l5A$Pv{&!`5ti#^_
zU!9q#EsmrG<+U)GG)rt8(9-(dD+#cLbo<s-=vq7Ql9H0sohBMmo6>1ej~{<SaqE@l
zKNrIOp+HLb^{`c+L>);YRzujZNBY3CHj+JbcX$1M($)OmTi4Pvy*ij|zP!2&0%q;j
z2zD8e)&Iwzpyu`d=gJ!Pkhlsh$+)OmcqPA3<n!+j_tE3U#uY}fKe0tGvg|)z<%@q_
z=Uqlf^QG%qQsu$yN_8f)9}t51$E)J!b^X&_QZ$*TB$XXUxOlL5In6Q?1T@0|))oyo
zI5;H4{s`K6<nKRiOs9Rzk>@!jsRi`>N}AA)Y(|UfL!|5y$nYr<mrL9u!Hkfp^!DjU
zpdxBP(tm$UJonFY+#2!Iv<w=+55`f*Ze$ckU|>rvM2qj$B872E?Aji|fS0GI=gkoo
zQ>QA)f8_4g??VzJ`$+ab+o)K%m9<HaBthXgF5@nnFd$M(Ah}yYp(wS2tBMvRRYD#l
z5aoBydr57L6X~r)#K=Ayw{PEG8_G+1l{yG7;;*~~!q$<1&`(ZD>6};b&jTBNoMPU<
z&0W;zQr9RckU`hZwx%J*?&G_MX>Udkn1~kfVpn-Ax2^Wjcmm|z-A{#wd!ifY@>zfA
zvKJjh!r{ma_~@Z%k!JwIC3a@CxUX<|vXoBLk7%UHuWW{xOeC+?N>{#(y!Ps|2MfQj
zqn$*eE0Kn(Dr89TOT)`IV1A)+CdUyC<Un<KigY837)qhgHDLt{+8NhoO9?X88h*Ng
z8iu~b%1JJe4hf{f+Jny598O6~+XF2%@*``J_evChQUX?IQ#W}VUiW%)$Of$!sVK>r
z?tya<jgP%Jv1DlMw~3ats5dea%Kz=b<quY>%I~*4@egH5E}1S6G@Y6GY3)+V$O%Xf
zq}EoEbsAitleUw}2@%NIA4ZKy%IWy4A2|S4^2IUyi&AZF06EOtgbNc(QhJBaxrPEM
z=U$IJsgkhdgQ7$xM4^(;H{lwuyxMSj_9rO_V))gNK+34z4j*#r<2h2mBICB7O)PhV
z@U!Im2>IK*_HJZpe^sR&MK|Ki$?`dC%6f;3s(jkl+F$58^u>xX1lDRKJr^&wg-t2h
zkoGa3md}rTAGGK=Aml+MDZ9(F|L0up;apa_?pky(ymzgqbqRyI=+E7@KTK3vS>{@^
z_W7r85Sl)PNDX?%KdX8VGeS2#gTRrnU6*42u@;Ivb-ZqQO{d30tY+3a`cof7TrYW_
zz(ST^vSsJIyu3um7P?AEEyCgtCBtjK8ELA=a_KJ*+Oae|3V8;>?R80Ya$EPMN-~8R
z4!zH=rFZi1=n(|rkA}^x_!b@>e(Ax_a4dQ}z+myB=2@0YrwWLeyS(~aaE)F}$=T&<
zU&(bHsN5K0Db#uNYzBJ%mVK_u<wMy&AFh}vP^3ux;J<%)j$~grp=NL4{o+Wf9{%zT
z9j)3kp%XA8Csr>*vk^fq(H^F4RdV*vIC15Fz0>Q{L8QXS^DpT6m3a9VD)c75cceD5
zAQb~_`u+u}$ih@8)5T`*{&^a=7bjVYjr(@}T#CJ(kWBi~)lmF7*(8!JhCL&zgr05u
zTcLJBS6vQHNl7_v;r$al9T0Dp;pOOPaoJeVlAEO@vHGw3{MtSSHpZ4muNY48?-eE~
zxeh>F|5)ViF8P6oA`=Iu8Th19xW9+}dD3I>KM%Fni?cVkTg$gUx7Q@`(ArlW?;ohj
zb$u)K$1V_xT8EhNy*hHD45JWfFQ1cDcu~YHC=hzOM*IfXzf)!SwK|V}T8rq>>{{uY
zxyyb&>FOYoW+F*DvFRNB0Ytd0_7&pc7#+eSrLD;*aU%S&@b?oA8|ZB)``DG<G@HK^
zk^D-L`p2z#|Ch~m*}gSm;*(!$0bzk8B}8C*DQ#llfY3>|*I>)~Lz_s?O)3HOL;*nq
zmYrMywKN-~UXrOhH)`d-PdkREjk$9><HTaGTIgC*OQZTtpB-2lEyq=|?^4FOx*+|%
zPVfi#DAB(cOX>&-XJKdA40+v~x}LVBgEL#!QS8bjyOM+E#S@Ln*jjy3E^nCm?kn;-
z6C0;^WhJHJ%jY-s=Cqf7E5h=1lLV)^`AuOFM^@*K?9{LJ5-BMuD=Xu}yi>7np0L37
z{U6p?$GEINGb4h@Ad;?cG_rhD@&YmO{7U#L8MW?|<Dqe4^=7<rf3#=9#mTRWZcoaG
zmb>J3b|P~g7ya&VXU@x{s(_!q{D7~36t{$rDNDoYnC$LelXYSPskpA6um8A!GDJf7
zrwxaC_v*EiQ+4rGHb-iWufP9Trd!_3{`pRWX5Eh@ZP&7akY_kIdlj0h)QSB{+lf6I
zhu5hFo=3_l37uBuH-9YOkAJS{2hcHW8uQ}B_t3sq!c-dnusc70Mb{VaZRpu)<xkW0
z^9NlD#EcrZi2ivle*U248a&6|9XtNr-k(2+He}x){n`4bdHDI~zqXerIMCAmzds_c
zDHqV>@$Ww`;LpF{W^<IQT{0#3=hgoCgT3Q<rXwl^7ytX2R(c3<uo(9LeDpK<=;5LN
z?_b!(U+Cgy85Q>YSks?x&%X`(0Q21HUAVF|oKBbLzwZ2D?|=SAo+?kQYj}OR#UTWf
zD`#0)*!?)-KYu~blr?Di=f^Bddi4a^&@VFU|9<~TweNq4yCb=wV-TMkD~nRLEH;W0
zS?-Y|M;`pN^|f!QYbo1vfOL0zIq1zh4(KV4O%g~JlZOumKYaHC0DO!_w6R-MZi2LE
z`0TE?>aFJ4pH^SqYK2MiX~xkeIX6};EULz14HY4f2!1f)4SV}L7o=-3G@*;gw*>An
zNGWsfCrO>W?xwA+EqrcZdulYLTfh%b&5zv11hbAV+l6SS!c61?jq*3j(@BZkGL#hP
z5bloprq1sgS{z|lf4u(ue87Riyg_40&dshZF@SOYbos~u>eK&GJ|>82P)dHKHGyb~
zASuJY7FkW7rA&XJ-BJ#Kb*m-d9|u<tB5!abapM)o%r><d=2fZv`@?*L*pf3oiGu3i
zSED=d(5D<=hb1{8h23`V9voV;`6(9fFPd!05}VQMkF?FkO^M_oazwd@d_oF%awT;{
zR)6K5cd+NmQj^Q9TunxVGF<Otaq7^R;$2tCV&`g%{AN06$=gr<^0}w_9{e|`?{t_2
zt8}d?U0(A`EOq>L*pxLN*HX5JimvVSS!=8=EqS&q_ERQZoIuh=PB%wN1&y?fm!!k+
z&CdUayf<;{G5_NKo5jp9GmL#?9SUVhDWSv+QW07ekts^b(x#+s#+V6Nri7wGq0N$P
zkusJNDk6kJQCcjaLaOiMgc+aj^}Vj&AMkr$*Joxv)cwBi*Zq2(^E}V<Jm&yc&++a%
zi=^G?nY`j1L)n$@KY@QbDtA{fE+!>XinxC*IhyM#asE%7ZP$txPP8SoGjKO*RS*<s
zW@LP1hhoi!zLkhFcgdtYa&x1{@@-9BBt6=q_seMa;mR%l(qMZB_Fn`paistvlN8tH
zyU0MSksFU)%@T;%FoqrUwbnHeQwqeE4ht<xoO+tx^k87PyqA>`AKg#OW$X0ivXr0{
zuc4z#CM^>}S4agNoA?|;0!7j0ceyrEq}I&v3X#fVw<So^ME@<?9y?O$)?}mq`;0RK
z9gGXrWXY&!9BxO>Ci@iD{@m}azAX{0YnRZ10%UP5NgR??!rDJ<;(59t<y_0@oUe|t
z{qJKO&TBKymE=Y93$^AB%*j~p_KYSb!6<kg{8m(^zpKh<a+ab55PHZ8*%_kUPbaTE
zxJByl@mf3Lu>d;^<CBttCI4(;Vd1s}oGe)+eew~9wz@P+q(!w#5NpxDUgWW&^6K(l
z$@AedSIj%l;{f#-%<nT3a${Ul(v+uk82O1PgP@>@kTZ=6w`4*ospNm*$PG!-UCab>
z1JTcj&V4;9dY^zq^i`s0m6OLyL<x&aE~OT3H8ALDp#T4D0fR|%Xh&;&biBgpf0lwk
zGDSQ+FJ0R4WHeP}RMzgtrk#&&epfEX0wJI>#XOr{6iP|AoGbb^OQE8VAEOU;UnM}J
z@OS)#3GDTAl3taLHK&T@Rc@^M|1dkoXArI0QMR1@F7lc00BH_^jWDVj!<x8KIg^Eq
zC-nEnzkNs+s(@QU>k3gZw4~8F^oabJQ%SqmU!{Y{*W174Tl<K|_^`;DX%2<xIl}8m
zvu6^;ho+MMF`<#E<<Fk%z7~N!@luZH&sTP$lILT02~iT&(9dYhz7(o?r`{z}%Vz5G
z+aL9Oy;nZ`czOAjz(y0(R(;Bge5&?wE9-+=5|4DJnItXu^)e^}7F~x8g?z~bdBHRv
zUe&cl%S)`W*YoL?jCb?jy(=F(txN<ltiYWsH6L!i<zI8#;j14W7Qu7V>#VW;U#j`n
ztd;e+SWY{!UUJH%9K2(V^sb-uuG(?z+U`rz)DsdD&GfW6r&86XA;s_=|L3wh+G23r
zZc|IcD6IZ{`-<`%q4}(fj;v~T*+#?z^HhuH6!GK&sOela%P3E*93}sem*sTuX!BLy
zXOKSJ@q|A(W20O!CsfV`&r7Gz3T;o;8&p(tI7>v+FXvLVc!m#JOR;W~+Z=5ePVg<e
zS%VRi{h28h9`F6>0^oASJxw?@`<3WiZ4rj4MBZV)(dup_l_V)sCQi;K<mwJIGpHye
z-WFX;=o`tqOOJu!|9pC_K7fx4Cen*3t@g&OZ2I}Vrgg#-|2(F^Wo__(72}OJ)99u)
zUla;r_Eg5K;7%nqtwC>#v*Bw#MjkC!l{d48S3TgS1mU7G+U<_Kavf5Fc>^up5}B4<
z9CTocQ=+ppf{_AaT{Qo%LCM3reR?7T`%l4oZbvI~_@R%8;#sZ6C^WT`r(h34lPl+=
zY+x|&xlK{0fE<#G?Av6r)Q_E{(d}bgDtGkZLN8^vOJ?>mhTOQ~E+)MciA}b7(ibmi
zHgOK_rM|(2{V(Mo*)|-9Y^zU~N%L2Evh6KTCTasz8Bgjj!;p2zXefH7(XA@b+`?ja
z+9R1@on1@r(vIx=|E|rrj)b}6a^q*4GW5*0Q<pAJ>(NH(UVD6L`?N8&=KTJX`qbOX
z1%Q32YwvIW5hTlfT$uo5+Gs|nwO$~1<1(!59*_O>eKY%8@iIHbo)(l1eotA)4IQVB
zg!!Pzb4uo?hjPbiOmv^U=9ZTFj2+Vu9dpsMa4~CWtE2ug|K5?BH<d9n8tNt3)ad-F
z<N2_NhfrXTcBhD^Zbg|W+ob&n-+vuB-SoYGoK!=mW4wRRph3gCwf<!70{a`ut28|s
zD?o@oB<K9|(ts1;!Pj@_5r1OJ3;d)1m;Uc_O}3@Vk;w@XiV$8stDmB}J1=uy{i5U*
zW+!9cB0Ac8*zaRZ)$(om;OlWy<7eNmCXsFA*!D=sLe*_1&RfjA05zhO>)-ExR`ko3
z6^;1CP%F$hVdBJzo@L{oczulJ<%&CMxT!vSUG5%NPhHH`FmfE>a%*G!$ZjSLUU#<;
ztsKt#<S`Y-jc&PT5wGu;xO!8r#Fb{Q8hyjkqJ3W&MyA#UsD1hiSAJ;ug_c#Ln@VVY
zIDl-*`RpKMzlG0EQ3laR!EnOQ=GFD#7`L0@5RL!$YiU{8{7yy*M*_0^*jbARaebls
z^5!Xh`b`mi#IzYb`MjK^ETtjKy=UR$_r*qBw7kxSqg%f|(fR*#d6wPNh`2bSK-zhP
zueo-A{iw37G(foIAD!5^Vz24KPtSg!N6UgPQ;WY*Jn)2?bYuec4V4Xo!8P-dc2L<z
zu!f&}!o`$L#b-{YY24^=+knQ}#waHqf_CA<R>mt%RaGvCh=?HapH@bDU`Gw45C46P
zH;HXkMp8fxcl2cx!jmg(h%fi_)!HgL7Z`$5_sU^odjsbT%f{~x6leJHb9(1Q*_Xos
z8V`Mtvq^7|O}VH_95rrycCswOd6#ucV{^<3JZyF?=A)P6cGv&ssdT4&r;{`=vpIP<
zRSj>wMk;_pliM2LI7(+^ytOdOyV2w)HH7+Dy*+mSvkm`{RdZ(=;g7&N!!kU`ZVxG8
zT^l-ew2E1B+Y3^)N$|nx<}Iv{(x`BTtqt$?>9c$^m-I1s=);T~QL8sbWkZ+Jykx$H
z<*6R@q7upF?pM_aJ-65pQ)tMd#s9CBa}_HWi>z@18-h+r^d?1NwLL$TJu{Zs?tf=5
zaB?D$mmY*`T8?F*SP%%>EtjQ$Q7Uai|HrE?I3t_fkl$Gg6FD!P;vFG&RU(->?j~>9
z?5gQz>;esItb9S~Q!Cy`brnQo=o^|qTr$`E_`c-daNK>UiMu&l3i{i(7fb}e-s3Tp
zJrLzn89z`(C3{|4W5lpuf3fknI#FfJNlca$JZMCF-msRA1yd$|WOQ1tE9YVczD&rL
z?03RX^X?+^3pw2_J!8ss?q!>&9nch&6Fnm?=FxXjkB$;u+Be@i{g$9&gxS?kZ?I2a
zd0bavMX<_rtKx78;XL(?3*blMk)fdHDd+EuN5E1dZ5m{+JQ@yvBh_kp;c9eoc}*qb
zw$=aR@;Azp@8ze?Gw(KZxfHiy>-YMmgC1)3j%`#C%^@6lc+gg%OJevUe0T5NzGdWr
zf+TJQ{=jk*)4D>bJE->k^sbfUrk4x-b%4eJ+3!SxFR*V@9_rBZ!d*%UAo$|=KQF=C
zLxq2ji;D}AXnkLb0C{9tI^hQpnjzg<F@DmgW;AdN;B(_kltiWN0$z{TbgtVFP%R`o
zT~0bMDR)ZM7^ogQU8ZlVOMjK3ll7mKFT~YLUjT{igycSqer(@M(Km};EPUGN3Z?&x
z@>#$$Ea)IdQEFT@4j>-_nM)+<l#xg!a1HFYmRwGXPLTG>Q8aQy`uALdtrA$SwP+YM
zMI1VM)*Le}(Ase*_^PyeMEx7iw$&N@#Ou?8JI?PR?dh-2)A^EsMd~q1$y7~|<sKOY
z<GN|`o`yr9V_7DV{|2A{?}4dbhmDu2M-J$D%0N9%-=i~CkhGi_0XO%)e21?lXutQ_
zDJroQ`fRZ<H=iJIOO4iG)K&cbU$*QoJ@#+JCJ=+rn6xkKld4TIxi`Fnbnsf6ZE8lR
zY-xNUd4|+_$uf~W+a@&!3JU9l=6L@Zch-6H6X=v-N3aV*q2Ld*Pf463;j?t^NFju4
zqUd0_wCNn(s(>vuv!$fx!xa<)lh~p=vQ<9RCS9G>JMu0uSkN=SXDezbg`KZnSS*-Q
z$Oj-`uz-iu0MTK8(N1^c2jTsPi)qfs4rv<7wvdO)1$RCy7L_UOnS(&z+HB^OuKPEO
za1*k5`rcrvy_Bva!nulAyhULB@zxaHU(cGBP2Q4}5^3<mVp{W*QjineqO?Zwcf>^m
zlM*RN04a2+TL#ffjkFk(MU(a>|9yTCw9#>feC?Q5S9;Adq$sOILT9P4q?JV5nNc+U
z)_sZySB`{4OA-q`bR+@Ewpwz|nxOE?i~lZ&kS<+#y$Lq%Ia)QuK+4j*b##3>?hCQz
zI?(}BENQw|^Y%v7L4%}_AV`vp!m!Y`Wr{yGA>}o8Sy2KJ(dqX4H`OEG66o>h<9^lb
zLcz`&(r20k)?GP*cT3C3D6bU>E&1dYeJV^)LBlLb1ApLxXw#Ni-1N6DC5FdIJ(R|V
zPEDxyk}C(v9;e1>-kie=Or$}^+ST&M@@ebGi#*u%li1ZB+`htZ4^nC={dj%jSbAqp
zMN#QAXaYNKLdy58P!fVuGf9EkOSdf8X;D|#y=g>>D2>>6ah}89c9!E9(TOAQ{uB78
zBu{J~5c{kZZGQ{*PLg=0BU3fyk&UX}P`x`wq`q<{PMF9AUbo>EKYYHQ2GMECV7HD;
zU<&^5;544rzOX{NHi?IW!p@}mYYain_b=wi?^S}UKm7gzZ>}}HomA&<3JW_=zXK@`
zHL<qtCM|DfES|au3?zb8dXV_ijU-rJs?<rtuj>V6w>*#J(%ygGKhO8EWK?*!9mB#}
zt|UC6l-!=b4jtyGBX)dT=<ZKQ$Tq^LyG_KreNf0AjrnlFmVb@Q)Vj3n(?8(9+m88f
z4c`CN|KGJXiWEvXobTqiy}guC9F4iIj)ePlaeaDMwNtN5|69>{Lb=Q5%D~wG4yoA8
zBq?Z5MS0<Rvn&E{DMhI{+q-F4E<>qYvOc<y3z8;~&kmDH3Ip6uQQ}Oh+LM%`SWD%X
zV1p=W7V-X581vx`YZ_75x=136aO%J|p4V*NTW5JwG~gK4LtR^{0{E3alCzUv4b+#c
zuItMj?Ex>L2@j>W<c)<)=Y-GyP>jeHs{6<gt+TYh^D)Q8@1Jgl%aIEyDDFG8$jlFN
z>`=)0_enMWF!02`-?ONGQNod9;k~B3PvXk2T>rQ)H5ab?_0vSjijQYT@l?^V_^Dfm
zJ=o!Y@4t(V0TavbE37Lf=|FGl94Q}eck$T!^pgC|Eu9bRcYou-h7kp~?-&oy{_g^(
z23`2D#{<oMQ%T9MOR!yR)|1vbndwfF-1r`xZ7e$U*U`;yqHi(miY5cf;-jg`SS^?q
zkawtOdxf^vLuMY90%2(=*@HGJ*#R_$9wIJcbikW#@5a_W)k)86Xl{NzTuHyW&xCcE
zYpgfjHyg6g;>aYE_}lxe6O#*E?DoW2&pbKNX^_K{g4>DucXnt7{cvvcMpyrU*Qx2F
zI&4=ef2dS*{NCd7y3{#0YtxIL-CV61J$(Po+Ll$Y+OU$UheDnIg6hc(f0#}m`8KUv
z|E**ZZ#t1)>j4$ZK~NivHV<|>N1c`#6*aa#bFirE`dZLmlomX{^_3lGrG!oaBXR>V
ziw9#JB1gIF!+9L>nyH|WcIc2}-hR^3m(HFYPeV6zj5U4AhOXG#vIWMinKa;|aZ=c5
zr+de^mfD>WReOxO${(M*iK6}paon4R24|cQh%d#<h*V4SNxz1pZF}j)QE;@7hT=xs
zM(iv0sT!i?ls|z+&?dxtPa@v~Qk4#o|7I1&tqIw<IH7e#?EA}Gm0(X_)Yosx$jD%>
zO5)?kkGDjX-oL*Czo$w<J+qlkv)1d^-(Av6A@C38Oy3}r?TH4V)U`afCxFJ<!=FfV
z-R~AO${#gy<gJnRvXK-_zt$`Kcx)6@jBJX`0~(%a6LIG)biUG(LsxTaZt`PK7y}kp
zHX)nux_*dd(pCoiK6>zAX9s1Y3oI9IVg|lAbl@xng*mes3NbpMDUF^6y<2_x<v>Po
zA_dsHzQ?Ftjw{j_sXJ2!lQM^dX>RoV{#KgZASpU#R@ZV%vEO<8>r)g|ruv?Y&pZ~Y
zI$Kuehb=)t-!R#31|U&=&RV@o|NQeauV}>RWI8*mu1*1YtGPeA*ctn!-_+D}JKgUj
zIn^HJ$4LRjkw{l$6fZA1>YR1U-rA@Uo9y-etjRam)E?eeX*TU-{LC*}zU}$o(Ck=>
z#|#<tXi8geyUuZYCU2Qap6MDG2YNe}HFk#c>V$A(;}kRm(}?u00V_O9Gr!+wmHZ2F
zWO5smvuDq0G5ezPP#Y^s*(|-ik4I{>ta+a|yZ)2R8~h#hWDi9F7PM7T%T2EN_~y?Y
zw$Ez&eUFjT|7zEJy=M~jrqng>1s&`iY<=j~Poxay8n<uXo|th9MTv1_(Nso{zFqD8
z+vlw`neI-+GSw;n%7FJTdG*wP-F=@`K1a7zQW$&$YcL_luw@tP*1|eh(pr5w2_gH=
zahp}l^Z|y~fQtptk8OAf2FlE+H%Is|WcCSjidZcmhcB<UJ>g*pTV<Z=_UN#GqmRz~
zmh(F9#V>!q_Yf?vK{ELLC-SHLdcm&mDqFie9a#)CMP%F?{(9q!tyB8b@ZlE(L3?PY
zrJZ8ms!gXWnC(~GQvzUN*+uG*lvcr1I3YHZmn$vamsOM6Sa|E;PP#tq#1!07880tW
zA>`{dpB$$7Ig1lKL?3gScSf4XogTQBSFc{pZ0a$}O<I*P_cxeMr8_j8jz9cLA#lcd
zFza49vS2XPnTO*FlWqOqOeA}`nIkZ^L8*ly9H()5Kv~PT@sB<eQ!KSDPKbyn?Y8`o
z)LW1Z8Bw=;TJ#(m;9X~vKYH?HADi)(IyX62jnN{MX@`;4QOnt?KAyzWi1kndrc6A&
zeQL$Ap2J&0$<zJ=KRFN)S|{T3Cw3lZ`UaiAqw4A;E;o>YRMaw={a*Hlq)d`VJB9nJ
z@vD~@<jC;EVRZ}va-x<DX5e?W|KhA_e4ZOqu42hYRpO>!yn3Zsckj6Ccy`MTJouBX
z?^9)UKY#N2YS^End4=AQ)7UG9kDeU6X9>qs3+9zB6{NSWun9}GvXC<r>>U3!^1TWa
zW^S&oS0S7iZBkc=^@qN-z$(l6u#aY>c-!83NwCj%)Q7VHY~%zX@PQH8l1#<RFJNN}
z&RwT&-JIl>`54UX^lvUFu+y``#R=pIuffF(8NFp_f<nk`D*Ma<;{BRPzI9SmTv+pl
zrIFUL!QOxi?j?EQdWGkzjJdncuG$Ylq1w0anOn~uJ=)EJ4YE!5U3QrSk&;(8jd@py
zuy)X+OT{>%`D70-NM;}D;#jNK!qo?E3T|;JE%&ui6@Q@R;B~$0&b6w6v1Pm#S~CCG
zRo(WKj|Fne!;kOsFix;(`gcjoXt~_F(tr8q;}&*l-+m`2+6mj4na=b^X)O2_x^2@>
z<G<2zV2_!G(8~1Ey?eIShvuo*K^)9xc##S7HG2;KLcY0=)AWDQuY&2SKRnEK<Kb5<
zr#oW7u_d<s=A`?kQY=(^#+}*NJ5X}rObtWYbQ-ur#ca<l&1nh-`-nMq)08_WC}m#u
zE-b$@MWM?sx1n^%oVvT~SO|+)gZB3KSVZYzyy~yNT3#1l?y}*N6<Ej$coG1q^^omR
z_pr1y2IugjE0V8H9Xh<YTl3)rtb2`=X9iLPmxz7}vHEl%xx$WHcN_?a4kDT+T=TM$
z*q=r-63kV4>UvMd6>HXkUdGWBBH7-uWxa1jt*oe6wCp3ER51Mw-fWwvc~RQ(6nQvm
zuM``=g?lgvRp_<U>*TzPcrf4QGkU^)A<crwnkpHR&$vmf+Qa!Sn8%!v?=fo^LRM))
z#*8cvW}6VdGR3G%<d_wf(BPplF)=o?XV)S`o+jQKD_as)PKxyvB;lZ8!={rUFf}j;
zI^>X(fRj+2vEL@aDtQ;3SQagdVgIg2-;qG9J`NulqJ%M|65oKWa@gI0mwCh+hJy_F
zPS)zj1{}$xtQI6UE@9#)2hoDzH3Pl8ykfdPpp1SuGB7>MzY~rfJH`|AuQ2RdK>Rik
z(sx;Qx6_G>@K1_k{nOevlV3y^qEUi8DIUDn=DY7UDW#q~Sw&9uBDb0(`(!t%l}eCC
z-t4@qS55GJ@!Ujx{?sILi#O2W9%jbR#0eA9mL{!Sxspa*U(ofpX;rDh={dPkV-hjP
zlDG?r1zI|BFlCV=WuL|yvtvOFojY|>GBgV9zmDoq<MI!WwkfmtKX7Linv#-YJ)nR*
z=0d7(9qf6D4xQqROr>Ae^j34VsnRwL*O(vtn)RN+Roe&9-bw$r1nx(=#V3v{n5Pj>
zUm7^HN8f&HzI#BVB@TZds^Ceyi{(#`vm+9Tq-WABIO+2OO((m60vC;N>4)2O|Mv=Y
zZonn2#dmKFoE{cS6lAi4gWz%|Cr2!~CC60R5U=qT`VoP*ijHH8TMeu=`Q#8rB1*VW
zP*4!$czNru%X}fEGmn07bn{X_JDrlhciI8?go`Y22qr3l#z9j;gga&{=KXl*q}P&y
zIFo)idK4EIM~wDNXn*p=iG_4TdW*U5%#R~taz@dx@anEr>SY*K9&|T5x#V&p&Um!n
z+rzN~CdOmSZn7`-GiI09^_c7d4YW3)ZaY9k_X}evS2zEv5cvIsi4!YOW8@Q@*;iLx
z+q(hHjZ4evTR4OALO;x%zAqq>1+hXscksjMvx@$|F}d?L-Q|a@Cl!=;(^-}zT?N1F
z_SxyR>w1hb6{J>zt+|kwH;qlSS*f$y92>@*YmctcJ+kb{Oj+xoQ)y|M&Nl{wU54a(
z(%O9%QCm(BD3KwyKH=-s!>3$~8gue#@u@)-hRFfU0<qm1KvxJslz5L>&s{$2Q^B+a
zTi8wY5}tGc_&{)W&lH^Tfi-OEg&0<Sn;8A?7Zo0w$o$?G1BWT8+G)_a#iH<!Sfh5m
z^){V6dGeQEeu>h_JWmb&P@Czn523?`D+JA&FyRl5a}tH*S)(`8<f;)Lp8#M>5}M;0
z<;Y5gNX4&G(Hcf4zpneyvhU`J3`5qSIb<@}1;$5?^k=~Da&K>gkRCmIda~6<>F5l2
zo%&heDNf`>o?5Gf1VIG`>f+!1{(67=9YCRkD+@tnnR<&OT6Ua)asDlxf32UwtfkAA
z`8y3LfO2KS_9<NI=9Z86X%ke5RaV-mQ>BBa7l9{CcBqc22zh(xa|=W1ca-c$Al(ST
z>yU-wv}g47&-z%?=|HB4w0FF;*%%YDa~!Lqr1JIGUklp9%#Em{3B3s^++!d2Lc59o
zLCS*4t1*9J9!qu0N=kNNIS07vD?GPD$NXpdyBCvF{J6pmx~rA;$ndPPwAaDNx^_8~
z`3Q#53`-j9jfHi{BAjt@nWV435Um2zn?nm0D;NwVlfMTFv0L(n4I7L$4g57L7%Z14
zp$|&(ojrQ=P%;GJTq9rfWc&L!dgD{@a%9eR<1j%8i5SU<^9()mUF>xoYO&iLLWg|L
zizg%X*7gGJ4bMI0U9+n&4Ua2jw87q_hE?aJ9ryM1^?3Ezgl4zSx)urt!`Z~nbUxI#
z!8=M%u4R`|rKMG31Y@~b#TsntE6(6;^?ofIENSH@&N4wzlcnpH(9n*A8nJEI8ku#N
z&ai%y+OF-5npZpblzaKqq}1}9ZF{lD-D|*(TE4HBTF|u_M{G%(Y)!AHHnUUR&L5rD
zL7~H3bb2S2KKQ+T!|T@<7!|y}8@pp`M*r18LBmeQx9k}OmCm2MDvJi(Fb#R_Q~Zb?
zMlXL68%gi9s#FTXEy|YHJ&SGe4Yb@_2slo%N9lE)>W%A1oM$}Bi?+olKYXSdIIk4T
zLXE_M;NxstfwDb^bK<;r(SS=jnXmI^J*m$QYWZUvTuqNBksps6rQo%k+5Vv_xnS~V
zTd?3gslcu>;NT|9q!j6w(>h|W4Y2KL-WIiJoW?#}+Xc`NQoaJVSLa^676)S;ZYSIS
zRqXrHn1LUHwx&#Pt1x#+#{pBXBP|a0hK@=r!wY3+iU*_V{TT1(<NAjh(f}i$HGdM>
zrRA1dm(5*MmGIri+Y2<GOQa_qY1(fYX!48D3+<b+`wOq_SvSV?i@@@?yxfORpDsR!
zOUjoqEInrJw;2^V()E`R^9+AKJY#X$8$rgfpMQaOb`hyo(r!m<{iso+DxgtSZPU|o
zUMd70XDoFhE9Ue1`A(&HFxqWUOr)5uVT}Cv2IO)hNPE%kSc>&OZl(@H*PZJ4@lF*E
zt|BZZM7$CN@sP+@%*MZrsH5)TTvGQw3bC5%&3k%|a#J$AL5cb)9w}Z>Enzv}YuI`m
z!~%e+VaV4C=jH?8-aAuLYD>yFV+wZNhs_PdD=s?6dUY7%*z&FayOpH23jgnXjst3e
zztj5l%$N4IbLZ}$l4RkAR|=<91^>9%qL2t+7JSJ5Xv}AAb)gvuO1%!vfU2RpLf~FO
zs8HkGY9Qxh(KKF@O+0M0Ni`d%MGK&CZV2aHQP1~yd*(ITfG|?*^;_;osmCW<yFfNE
zuG;<_=GOu`NZGKr|LdJXx|H6cZ3=KS<l(5#1GNy?m_v#TFTrEq+T9?j_;pW!N6K&B
zD)cdgCX!gaeLEI*eIZ|yW`%hQBQ?^muD<@5{RsXj@W}*yeO3CI{MELn>?O~VbFGVx
zyPh3-&r#vv_n!oy2`}lEq@t;LJ!rtRs3g3-Vhx$YAsALeF+N&|@s;x0D<nO@6b@hW
zT-k}pDuPu?D`R-~gd{(-$JfzM4vs3tH)JluW|bV#Q?QzR`OJE*Gn>fi{SB#YM#W6O
z^m{=n5;Kl7@`Ak)4IRhAoQ-PE3>Tt771He&qsL~5L&IOjamFr2>Kvo#>khdbM7<fl
zSc^%kPYP2eLD<*%t16VN{?vlK!+u1l+yB}AX5x%#;<>t;?KbKR19m$|j23f924%Z_
zso?ygw$|eBz7vCw3n(K@Zvw}ZM|JGbVHc2{p<Sl@;jc-h8I5(@gbzyhTftYBr@mzB
zp%d5@A=<X&XNYu-Z*}}Ea6-_UHTj%_;Ny@M%PwQrPHU*!rhM7LGM#RDOA0kzd-O=6
zeW@jc9FQ;dI>ZIObF%Ol#G{_Il@=2xP0CvS6i?py#~<SaYVyDWlIgLq9|>s!`3<<X
z8BEvhFt(pU>j!gpX=}9XGyY*PQSaUJ@r^WJ42k7ERuVkOCbD1mEr9y3zy4w`DH*;c
zV{@1$oJu*J6-r)kBD0H%ih?GsQ>@KjpNGz43tit5DR{EC#kp7@R}@slp=Apl^LTKk
z6>Ai5!tK$TD1Qr^9pgTmo#uVjB^|q;fZ@~Mj+5xDVme{snocG=e_4f?Y7c3w1w5Za
z&l#j@cC#D07bSewC%*djkxNMi{_Ld$lbAmnJ77`{o@Tp+F}!As|2wM?O-`y9j$CU2
z6KY+$b&Dt2Jyl|PK-0WS`G;v`lt8-nEzb*|F=X4mFZ#Itj}bre4jhEdQ1YbwDi>&>
zY96<dY4eHH)ft44*Nwy3#$nYALk1~WnK2g8gDI^?mfV{|(ktXuY~p>I)Og~)x<)n7
zpgqH*iOCujB>G3wa?U+V&L~A2yT)}6oc+3?q5B;a#MhAxEXs1>jt7Tw9MSfz$ZR-H
z=xQb~JaFC<njKxmz}mhp8qfE=LV}=53$lybv=1<{%HG8>C&B_adxhV~>4obRt_93@
zxeU@a6oU0#V<Wu77(qH%kR!F%zWia@C!A#b@7eQA*)g8a@BeIQN`DneNTi-Pp;x~h
z_96jGe!{=;gpveVqy66<$A5+@jrwAo4PZ8b#;F&Abe2`ek-wVd+awsB$9INar|Is@
zq*6i~32&~)8g|6TPEj`66r|N(S66J^HOPv?fP$WSzE<se=>};H1)wF&I<}uCnh9+>
zt6FXEr(iXUqvp}{Zn>c;zj0*ggI^lxQ>8F>C#x2RWebUgWOxi_z8E@SLyL=1xZH@G
zOc5K;9d)g;0vMX(d$m}0NM8#ysvQpNdw3k?Z}$p0fKMbyu-Ps%m!^unr+a_L!)+C+
zVm<-VZAcKr=rz5z?^jn-bCs=R>r)I-eLcl-T0a@#L)U7%&>n11LVClWe){Reiu(P)
z#;~yg{t^TH>|T`aH;c1tLL}{0b~zpru)p_Eg@b!InBkt&UNhFIfUJd%gFIU*n|~lW
zN*|w5YSG5*<36KWfA<|OxbYR+DRZ>to+;gGpBBvm3mnZ}XE`-mZy!6k0^zsGf(7t;
zvcti@it2WMVE^XU9{KFtr<nHqx9!?(;am@$lQz&$)#~7m&p-cs@Y`QBG&D>F*TRS|
zF*K!@K3mv&e(v_dJ)?jcr$>VpHNk6!(}qqx>00{d_Q=Q<TpIX@34gob6^%mZvKPl9
z-X10RaGXFG3N+&JIuTEpjGKW2i(%0R;Uh=nmGWO0(gM69MXkNUd%k@2>N*^7n3}EL
zw(`&Jzj0}%nfiy%=}hsv1kE9E?B~5MdwO`VpF)FQ^9w=&7Pzx)fs2@{l6z~v+1|FT
z0PuazuP$umj|pkhuH6UM1_k0$uy5AQq;Xo{bTN+-;}ehfH~g*gnkU3!TwtKWkwteb
zp)oU)k(Oq|H^Nd+4Y5%;N8;t<{cPN|>W@E!+0w7Bs8CT;JK&uo)4w@Emx3DKz4LhU
zVt(Qyspz;fEPTpn*OEWlXZae#eQh*7=lgxfUcL4cJl#_7&JUzr?Axy&+<+JGc{~hC
zW)pU$0`n^KkOrq)A3V}o)!YD#aFw2N4=XC1sxvU6V%0H;ca+r>K4lLVGe}rAUi$`=
zLq%h5nvyimEb>2l=8UGt<LMvn=$kfe@}Z5^-Gan#aW6`jQx5#v!p8=Vxtq4!3>x4n
zNI%$*A;J-QekW*Pydw4Z@muOAo6UCq(&|a^sad4Ilatj*JfY{kifK||#zIzg;Ed3i
ze=%I(A0wCE52P?)h#{eVs7wtkKQ58J1Q@!E_nc4AYv?w`_?PkH3o-%%`qkl8(|zAm
zZ#Ai`!y0z;TAst6L4uSxGD{d_o+U&{!Zs8n*=|#YwouIQ3qkC!{ZbGAvpaBfD(ur0
zYBQ7#k-=Lqz)0Xh;zNw6Le;n5d^2oq3y4rL0ljV-Fs&C9rm<=D&5`_d;6CWxc%pNx
z^uc5`8W$tGiI%j0jzgDYP|^$ViK?@XCW&!+{CI(3{tR2c-E0oUdof=aD7Ni?@vL|p
zK1zRoa9+1hcqYmY!^Ks=I$hkV9s?@cNkUF$Gx8FnM5lZv6&cfh3J?rJBwdHEI6vws
zG>A{>I_=<*^!O^d_~mhrijX#41}``VgJ6jRV3l0JFcR|?ro&CebKLd4E^isNqArQf
z+m8L7((f4ivoB(=GK#+>iZ%^Gcn>k8YcfYIhD=DX%}9q=Ntl-5y&_C=!Ig2{N4RWM
z5**JA7gJJr9d&IXqnNh4=j(R83_@hfv0B#3Gk8L)dmn5c#$XD)5`Q~?pqYmc35Dxi
zK+qZzOK-0Us7;Q_&<h3cFknUI@xKo#g%NjP<4rKa)my{n0}cit^~Qha-J*B@=bn$R
z{Nr!<*?}KNf8@ju0ugeZ*w-^Df80LNgNvJCLa|tf@h;4Ewc;Gi;5|!stD(dEf8$FP
zXZKciq79|2chBL6q8Wcq;GlHFA99kzePh=s**httFdmLu`dU~yV4%g_gWrdnv`Pqh
zSXQ=&1zSMXMo298Rt12xpu<=PEz$eBloGvWF5?Njn>pg9gWI)h7h|AR=G=q7JblC0
z&o8Hq<hYH6+7^ZT^)w<gaJCsbrkdmK<?Hd-F=YL7yytNQOsbe?IUO}iK5};ZyTQkK
z|1X|DzryU1j0rj4pVsgt_tEk>y@$H;?qP$iWvqmK+6i3}fi{w%A|mx{eCyfWVe6q*
zUwyTZfG4xx;K7%RRg`rQ226+LIdv^C41{>;&Ye3!?(9G+uB_%i<r%kn+Vo=Xe8zav
zx?wMgotLjzQAJaRx~Y#=aWL0C!B5>*CoT&-xBAV@{_h_$c8bK#*eAjcyJzNeBz(o9
zXqNyqFW$R1_McV>4<0;VPDUhpa5J!ZHe@6C-jopkdd#GDyo?EiNcq6+0~+%$4&<n*
zn(Yae)}*+Ri}N&;7Zl<B<-EBqUAj?8B2M7$HK>*jn!N*G|4VQM=J=A4t%T*nh_3Tn
z)uwYk80iS(>{$m@%oCmdZ(vKsJI3SLFNP1_tKLL*NRY|z?ia!aZ6Qpw*X1TQ#g)HG
zxEP|mwlME14J3+HtgBgu2pzBevUb><aguf_Vd3O<EyHE{yq=z(zArwKd%L9Sj*pD(
z#Fw3-x!gnY$Rg^wV^;uvQoIB0dc?jzZ*g_Umq(^tZm~B8G7(#oPzc7F7o%g{C6RUn
zMo5FT+Kfm3cK~cM2oO*cRfWNz_9cci;cikZ6-XLWUeDaX&s@5Ba|YRys|+mZZ)<z+
z%c318i6R{Cy`<xSF<_^F*HSvB>!(X*{QAusNzUkRA3A%qAKf1$O^9*Y3*?*zZEuc@
zbJLJnBjltal@ME6%TqaV7=%;b^>V4Z`!y1C>n8p3tnN+1C0NYDJQ<W&H??ASRPj$1
zA+%jc#AM*#tgi7sUr}11=!!up04pW#zsfnq#}@}NlsksKZtY2VN8m$fwn@N&FeM>(
z*%;G~o=;H!cI2UX*>+h|Shx-Y%AC8kM4zTduUwg4>a!ZldoeFht*~>VzP^3}AnQax
zb9(YK7RO9tNv%Ax&RR?FkAs_BfE;{v(;U5#Bdt(Cm~nJ98Ap$V;C$6P#L<t*Fpekz
zg)AhGvif4{)0h4wzfV`T?J;r(39Ig|G+H_ATB=V7HjRzBqT&rL+iyUUkRdV&8#?>;
z=J>vyor}{_P2zkQYRuy2<aYaKCgWUp+`m6J<rWN9f-{&!bgKG2V7-wK&iwG~56=E2
z&Y;jaY3um}>Fs(*#d5cR&)6>NwwDlx3@h$h%Kqx}=9_lyW<ZsP_0MSzTcmu<u0Ud&
z79yt|k^`w}z1aijV-98p7Auk2nx!REsL>%=10;rBy4E4D%N=sj$AG-sEna>xcm2Pp
z#!}n+`P_;6`ieD-Y%#~)dFPoWS*c5&inR4X2cMc{;2Oc|uz5FYO0)JA8`sc-MA$IE
z+!obm8w22frC>sS0K6h`pV;=YDyBfUFc$5n5rOR7xpRbV*Q2CP=2_~#&DD7phm3iI
zbs}9M$rSzFK5wh~N;S356iyHNiL)kMXEFEJaRgT96X>Hq`%p!aktB}{hD7-d2~`|B
zh@jcq;vuP4@WoAH@B-rLc{7sUK7TNtN~O%8OPf^s+1lE!&C`Yp1{7nO7QK9Se_E7o
zJUvquvM0JkhmxO!5x)M~W;i&QKT5G!qcGv$9MvElkH;G+-Euld9DY>lT)xcPqGHxx
z!2Lhv(K=pJ@k83Zghqax#<2B7wzfcPQg?mOr+^G6v;NZw-p%Q5PW(t0*NWZlR73t_
zl>t7;Y@!-1jy{KOo}Lz{GhWfGT?Orugr10?V}pW%%5z77;y62VSYnMkwov~m<qfZx
ziqUaxRQ*evlgn~k()sF)rSIswnJ9^1E+A=!i<^fC-~cxmsoESrNG4Aer$yW|nSj;E
ze6iXKsGMxFH~FD<g}m5V^NTTC5skV;7K^Sfhj!G=eM7jsFXU391KdUnt(Q%hnKZYc
zOaH0c7rbjLlp8L0#B7{ZpHZ$}UN;%qR)5#7U~i<w6YHe6ki+&mP&CU#6?s~b7uWHn
zr}UvV-NRieU$QG8qcRW`PY@*ZlFfJ4-pvTGl}sk|_mC5F&M1=2g6vV0PN7|*%}9u+
zI9pimw~5EX-RV0<Vb{l4Eieq&cyI7ioI<3=^1e6$QR>uqn>;8tlT6#{4$7~{^H)-%
zlDvM>q)E=?<VYf#GHt>GuCZ&b7n|I^5ms*owE>d2M*<+SiA=?Snv#hULCX&K{EIJ2
zw+|;f%GDi{_OGX3vBrw@X}$Tq`pMDtYbm_D<&ysV`SbGi@Ta?Ub#)=P?{+PI(oFd+
zT|W14aJIzVofAv(tJrqg^y7d2`RCP9+8P@9)#WvZ7rdBn*EBRO=}OmRoct7U%?LZN
z(sCc4+a5XOp|^J4(oAFC+bND4jBgVD7%VpZC7DwppN%%kd+iF45ig*<k^VbG@S-;9
z64@O#L=rE&`lCkAQg_9~h=nAK%q?-J9Aqb>rVV}a8^gMH_~PjJfA@Z(C~=Y_+3m#8
z*Vh-Gv*l?ueO@hy*~%Xr7SdOSJD~%?g<s6c$@wwEF|XGtntX~$KJN@58P72ZRU(Rr
zBR9YB&e46Ko91q|8x8WYtvPK5+pAh1ioL3(wFllRp4Xh*3%8a$GUFUAPES$spG5Vq
z;WU4LViOb6?=o{on06f0Ml=_NtDYRybbDwp|H8(f^Fwz%qBK(}`^3R?68+u1N^>^;
zv=USnI<JU^*x{ZY>%)n}PAC3h_aU6?^B`n=aso*h*Ayq>i<I9Bwp83a5KUIaAvA5U
zq$u{yK6ztTGA&C?=&ZfY8y*6VD|Daf7jvA}*G+xD<O<^|p`gD{Ss#fZ*b-xZ@y(BJ
z06mhjzqLn?HydJlI%qH_Q%(wLpcgM+5;WxtIw7|vE-#=$Q8*F4_hEJQU@BlFWmx?h
z7*LD)zT5e9NR}%EtFLJH8osVOoH1$1{ji|2rkPEUD;Lh6S1!&gnh96s-02xR1vGXq
zDNcJ2A(E(mMiY@4yZbQBMVk5=N9kJUhc3<_E31n9&G_ajPf?lacs<oDVdWATgJ5`Q
z85T<hu8UkN#N+kzUmHof^8y!zByrL=-qjsq*>i-;R=9z~-Zgfm`eUc9wSd`8LXGN#
zrEv4|I_92v<0Z6(D(rm7Cb(QYs9Lc*$6ylhY_k%}HBHp&?stIzN0z^INb#dzwmCL#
z@Eqn@Scs!i5(Fv3`MlDxup4Uq>&caCpG12oioBGeQd4b;lSir}loG9h`jJ{a={i0f
zn*3)33~O%sZoU8=EZN|5=;$&Xdy_JK%bfI*G3BI$YVZH^g`p{46KeI6cVsh2SZHES
z&~;ct4+vI?6mxTPg>jn`(CAqZZ#GHTSlG%Et$Lo}2vJyhFR!Ibr$YtdK>K$dIDMRe
zUJO_1kw2Bh<p1{DZy~X8Xz}n?$(cQHth~~o`nzhTk{d#WpIk>#hyjLmb;L<FO^b-3
z5gVNkSSZoWLK}#PXFB}cCP+d#O~P`6Lw30(AAz}$OfXlRPM!ktPnu%S&kmW$%tr|&
z#iPV?0@NCN>MpC^TG;9g3mWj$(Qva6A<2ytF~pH=bzM&^5>e>*TkD!#&3~dvp1Uk`
z5O%Wm$(@@ed6U&_j_=_0{OHP0ZGx&X%tt6$3xMk1_hq^B?Zfes$qY?ZuHgN?1^HdB
z^P_dJh(^-NB&~(SjSe8O5Y<)0zHS~K=EVFhw?^g?(bkluQK%8xeDlo}K#?cH$I^R;
zSXpp^$?xT&T8(WUWZ4rRE@Tq%zUt`FGxM7}OPD<isBx2A!lTN{g<+n(NxfjGZv;Uf
z&#$Q}17Zm5wao6Pj@he)A#~<2liIvKIjh}|!^TmRaFrLTYzRIRQPiTy{?9AbKScC_
zVZ5x<O4;7@z$$WZ=3QR48UTfq*VBviNXmA)f0y*|f}|8Njrx8txLVFXSy@>>M)x;X
zyasY9=|N6GEu{xJa%0#ozo%*Nox{koU;5D&Jy`jANoE(`C9d*yDsJtHqe=0^`Sx_4
zB81-7@<v@3WnJC7E{)ijZdr?q)12_>+gy_fY+Q4xu~?Wg3d_)?{J4;9>vX)I@0d7B
zCU9kr;+X=T9;a-uTPgAX%e$_``NJ~N%UW$3Z`7%M`(Ft*heajwsUY)d7%`p%Q3Y(I
zw%fqzI|3_s3x*Lu&v9;^Jf0c6yD<mH;XtTzIHJiZBydJVjtwa8@7z_@d|+<9!qI#L
zRraT#2l_8)i=xMVJ+FDJ*Ig({yGC7N`JM-Eo<W4AnTwj#?)MisN4q3lnLY7rIsJ-$
z9g!tHl*VLHw{p2G=*<f0v~RV1W@%0JibIlv&VqI<ZR`PhQo)~gIi>Au36(1)rhAA~
zW^Fo2&XsoSmpc9U<ANH+JpbIe*)jN(J<|KD%JDg-vs*cXtcK;PQ`2|wZALj8rqm{p
zT<_|r1|~te<`%(VdgnbN4Jvt2C-kp-E?l_a-RQEYV#C;`VRB5njBSUbFyq!ldF}sn
zJ9M6=PF8-NRn!26XS<~HF7&*rv1c6{pEc2sOV`W)>#zT^DrNbcYupQQ9)+pc0Il_K
z1Vxq2e!70NYC2QWqjV6?AC|A1a}N9UymQp))8kSy`sJ-)>ii84N#~c*qTz%ShHnow
zZxM_I=xK(EuXOuMj^NY_X2&k@)t7IyY1{T_Ap&p(gE<1>78ad2g5*y#dCtnwIy&2^
zSp4=HPubyAF7WqqnH~h?#Bw+`joiGZ>Nf*X22_9oyF7YURpq?B{NclS;Au-c|6qlZ
z=K+2@Kb(m^f6F%PGN68cJ9QCLi~K7V24Eq~vD%odJ9lRF>eVYG>h8X4A?`}?D3%hY
z?>ytaK}Sa?5#6%BFJhy$Wk-$?#dg0VIRcDt_11Nx(6)d7<FL~~Sd4f=GSb86vLIa6
zEw%^|@h=8V+0fm9q_6dW%}{(5c$TU8LcN3}0yV#A2^1WmvAShNEwikB{#@j15{KwG
zM7)@t;XfwZ_ODz3;x4~~`|xye5_8;3KgE>B9#!6~klGi_>XmYIk%AM7WjmxkxtC!}
z!S`yRi#&oRme?F$`ZI9Gj2OWJ$yLtwQP-0CIhw8w4mL+-C-DBs-PCI(FWIB`@;$6w
z0;l%q<YBG4jqy2r=Iq%gk$)Bug;$V8SRK(142d0EU*J@jovm`?-WgbqO7cG`kC#x=
zu<aF9hzk(H3e0<YFC#imm*o$9?S0$2R+Lh_*h1$!JUGcX5#ny#xbe#arO%!%ap^k9
za*CvS9;ZR`45Vw=KUKHS;3`Cwv^LY9mO`1!V1_7xpPP6%aK`5UnA?p$fBgAp#Cei9
z$ISZI9P@qSW`B~%l5>1>a-QLqp^+po6Y0Zm8p5s|vG#_duJ`lFS>8TAig)l_Yl4F}
z#n``SGSDWx%B%x8i^Sv<<E)llzF@;VTP?r09^y<P#UR)Vu+a|B4nOZ8R1G?sbugXz
zfb+Gp-8gzjp#2k&QcMn!I2uM}YvWUlQQF0*E{ScskC*}jGc(OQ*|p~OHM;^FkxUjL
z39<EVQPGp_t`{Gcm+wUnJo8n$R<dM!!0H2TGzp`JK2s#nIqnA;owkpZ?e4DYQxTgW
zjj}(7df&Uk9iAh_$bWTv(z?7tNs4OLjT$|gE}fG}Y2F~&q5_{Nl3?hWnZQ(&kwXpP
zy~Jt=r_B#}?;~?wYNdU<&G+A1;FP6i0@0mfgJ>VnCOS3tO<YBB-Fq#-+uGIMN1OK&
z4#8+m`#mpX`O7`bQ(bset*m@VUMNGCATLK0S4m1{mn(743{dF0kvKps;Z-cLB<*^R
z@iC{@e`XCVfQ(ptix}$2yzCB)P;suw9iq-2I)J#?nGNjFFvvV^2Syc9<4jeIz2v2c
z`&97_kSjNcP>%e1_N&s=*gx{-ii8vMm{ql%`#bOK3ztbZo}ZR1dFCBipY(aFHde3h
zW$^=^a36-#7MIkqZ_{3FXK4ng9xHE+KZhz&Hl%NeX2Y0c*YW=%2`n9DXbRB)#`?M-
z$=VELpU?eBe5Tl{K&oE&Uq_pyXGpI&tkl`6{#?%cSE#8uY~{&JAI0Gg!4d=t9p5}7
zX*BsADnw?ZHQj_mJMWI<D&mym5@5;1a<=f0!t}k}k@JZv9vF6NsSQ++Iig%>Fx!x*
zPE|h3mn%<Pb9zv}<+fJ|spQjV;_BtUMaFh=e~`<G$QkP5L%sE2J?*kp3*-hpJUq4+
zO^%W%`$bt!L;muYk1jd7OhSdoV)$^~A-R`&wdp!E2|Uz&_E(D9iwF1a-J1dheMqDf
z_hr*goTP8g7HrFw*a2Ph0E=c&I{W=Pp8fXC>(^U7oua6#Ps-3T6hjAsJEd&M#EK}<
zo>4V&bFtJJC{5~=c>7Nr9~K86J^&_AsUl7>#a=LfXQTt{1%nVNrJ$nwV%aFG1PriR
z&lE~~Qu-F)FcQ$H9Gx=gD!>Tp#5v{j0%jhLmpKvzPn1v~N^nLYQapjm0{Sirg~C_K
zPebWJ6!x9-Y$Z@RiJFS6<<&q2$xF~gXOYL7y9a+=DM}%kcG{e+7lXY`fDQdUcO9|^
zf}SNu4+JzfIYgR8WdZR?h8kZvv6&V`$I+BF-z~+dNbpJaNF^X3pw#Xmp>Q0@``hf(
z$!h6G_5k-II>((rP>LILZ5m9i%x*xjWU3{s2AC13KJIkQFBON{rE!R1(B6Qv%1)&2
zM9tN)_L&t_!dm}n^%P(FJ`E=&w5@4zh5?v@P$B90^Q9oA1*9Lk6kT{`4SXqpURuYY
z&V)}1t6A>Cw@P#-@}q<~r%s^X>}xnP)onKo26n=zK3ny&{BpP%h*@)m^t!r83_?fN
z_RoC9jQ??HVsa%0>hfY;NhWWJveyXLoO?R(kFo8$pXBrlEsG=0@NnUf1otf<P_N|w
zXP1or3So6qm}$!nrHE)6$#BiJ<bW3Kol+w4j6)4soCF}k%vbbd33Hu;wv>pd;mnc2
zPc%wPO6<Dq{bTKp{5{5l;Klm2ZPUgSxz8p{jOb#qK0@z3*}C%;-EHHgl2I4kjE=*~
zEn*`j3(=1>)qZh^S;4V1unrKRTzhi7!VDa0Q7~oS#3U1w2=fSH%uL>UJ^?@=rhTZ*
z@wr)3%>LYZeiP3n0mPyc#n`hWcIVsldwON(O6#xFMK#rR(wSxC{|3c$-=P#XWR@kY
z;s%QyZwC(;FyQ;%dNvFf8c|19BaxHs&^5OIpXjU^rsj0_yUKXrp4I%Ob3Y;ikU0Jv
zXy*p1@F!dUegp&;*+-*rCjc>#PxNTua9u7Ay^T!m<tvbsqAPLTD@M*)nO6@oWKehn
zZL1Q2{R1(zM~#M0T!4tq#Go5AF8krmsF+ysY9c!biDh?IV8GVb_dtc{pgn2e>=TDE
zYF)~|{~|InQUt;&`%A$ND;~T9K<4vKNsje@^Y*Qr!tAC!zwuHH8gX!(d{dmrh!u?u
zhph^Vie?k2Qz5wgfsF*PN4IU;hT(pjU(5W)og_Du-?diy4F@kwx?0b!Del$CfDV%j
znYE`?n%lqiHgmP|x>%-HPu}>jq;TzU<iK%6E7q?VtrcFFI_+eT-iF;hJ0LzSsaFbF
zO*S-}oKe!XM>t`*bx|D%kBLM=lGen?1F~Pbqs^teMzA*lm4j{OPs_WZw<S3>xWcf#
zhg)i(J90(+o7<pp$S&OxaX{e1b#@k2jE4FHIInCdcAq|7E+>is8B*eBIIVcH*hnH&
z?e$c!6egYQoAeC7<q$be6kT+-8+F6@%$!)5Q-pYt?Z0l-%KB7j2>>Fe1phwEv+4EB
zL-SU{+1s5H5fW+4%X*0hD*W(1Jf$i*$jo%;MQ1S92wNTGDC|G&5>Y=f)&0=xuUync
zgM*{ksC8|!t7J~uM=i{FaNE7{MQB&oeSTGvc)Qw8axEmPEzC>eC1f_MWuAuttNyB;
za5-SPC>_1BDiJpJNln&Iu0&WE{Deu1RvyN`Ty_shL?-HtA5rTm>U1cB(?Jj%OD=)P
z+WxEmOWFfT=+O0@a=p$%Jz**ma~QOnG-8I)L&_xy?VNyBZ)po}*LmpVX+wh|hdZt(
zpD+|%f|8oUV(<vfKfdqRiy4ST0U<j@9Y*A-f0uEITb8vkQl;{=vgqWo_V`Id5v{dI
zTMfDmv^4Iat*xDMb0^%Rq|p|o)KZWz*F~FbF$TvRDE>$k3DIK%(sOQPg$~^e^3Vqj
z&c)shE`ABdh18v*uZvqwS>ACFWWGa@-jn6m4$+$AF=hS3OCTJbAR}G<_5L>9M8*lz
zqkTtvS+&)+11FKSrUYC<d=^LIt96tb`{0Jbpo#P)J`8y~pd!2cZ}pSE@390(BDzu6
z3!wCMkM&hg-=sOGZVz63>)?aQdC<kHt<xZ*zT78W#FV<W9%A`@yLQ?QX;LKAW#5(#
zYs{4|y(Es_oa~2?eb(+T(n3BtE25Yttr+|ou&wrFa6}K?J4LUsdx*+g`<zRAS(bPi
zg$V0oNm81x*$u%Wr++g%K;d!lcRZ3gAn}w#cOkC(;rjdGL=VH@geW-=c=U2gg#=^v
zI<OB8J(q^A<fm1LeDtfq@|>3zInYM8=}8ewk*b>FU6c$-`#a2TyH7MCT2+5`OIf+_
z@*;fWsz3j{t@O14YGTc!Y-(pq-)_ArT{H#W2EWFUSgKuL^QLgksl{J*2GQb%RoL|T
zq1~O}PzM&?eLhef4tEoBrG8Bqz&W?t=PTNE*{L&f<krsF{eBh7OXx_F5Ruy|n*$aD
zRP-msNHbSe#dXBRug~5ZDmApax^sM{k`N7}<#<1`2upsy3EPS?;B}Y8ufG0zTjY}L
zb$?8a(havOPO+L9tN8L%EzyrlSlj1D|55lBfWd3G)&~V$;YB~$x^BK*mk7gr?Ant}
zhLxdcNYS#*W)EG*cS^kpY0Ee?YMEOJD9%@YW9JOPfaI$n*c;F7^X_%>`Eqm<#e<I?
z{=(SkO^3W<n1-ELwC*(|u{Y8GlY$&lC56Hvx4a*^eCWJi`xn!b6axT$H~Gon*P_CM
zu-=!ROJ01QM!1rpoC97>usuY$`smN}NL8~KF$FjO@*pKot?-XEWF!Y^YajbE@8%xk
z?kV2n{98v=S%YjGn%CVf{b~+w;w_|VP8;pN$bd_0_T@v5-hcd<E?H_Re&F82g+BGq
z?rAspCXpX<h<?=P0UU`#Cu2Qw4Am*Cu9vY&B6o`&(A=y=b;_4{oqP7&hkI0Xy}Z9z
zEd<V$HO>v17CAcXzJ$tw4=?1~6|mRBBOML@P8f2}YvwEfJ@BnQ-&K9=EE4PohyE+|
zwXzVAFst4#O60q1nyYtmAj!-RE8!j7Qs4G^b@(x*(!M1RrFNkb|4q(x?y@cU1Y^p}
zhXVDrkACsR7g~<FJ=W&spar^m${>V*+vRFYh5Mt{>AN`Ou`Nkf{7TM=g#H6yU4|nK
zM=LJ*!xrg(?37N4nbXMD<P25nG1?=}qI?52;nai#ABTQ$XzmZsDQevIS=C3ssajpA
zK0O3>Z&TbG<Y{(w-Oi-E9FU3LgdW_#o&z2nzI}JIC<m+`EW#OU5zHv%o!yMtT-;?=
z%9YpFm~XRr^J3d`8VenqPc1}Dg9v$Szb0xKO&2|QNc$QG->Dk3ESyjjIC$8wE0044
zk4gRQ_uY2uzyIc&gR_o_to-!mIhIK$=)sdxv$<3J%(p$g-P(8R^eSIneXaTU@#Axf
z9Tg0EOj<F3AC*rZPZiR0QuQk}+GH})*z=dNvIhM8l6wE2g?>ilsC7*<lp=l!sr6ke
zVZB5?Mb*t67h`8vPfsnufjtkbJzR~BVIoVTHG1H!81I)@B};ay)G`}}knKosdh5J4
zPmTN{h($U3P}_LX7R{YI_e_Z2Dth!ALxM)PZ+QDwl`T~_`Ee_N6BYhSf)GPce(VDB
zX5YMdGdCP48#@KwpY7Wp3pZp=+O2`UD`qC0AR}<ZxxV?<$(IKQRy8)49{8-&4?l01
zweV^8h)X7yha7Xu-q&xd!~Q}$zb9Lr7O%RW9ui?4wK-<ewKLPNoz}?NeRzto`IYK{
zDiQtZ3Av_C-1COB(e=NMoBx%=kDJR&PaNOB{GR*0=)4t6PlrG7FN*Hk>4zV7V4QW1
z+h;8$14*`BQWu8#xNe$RTarA=?q7;jp|D!%9C`nFx65gpe4XfC$xtdrU`-2+JXcLL
zGFnqOaoJ!rHMN85SFc|`A`#AXL9K2Dy`1B58zSgavOatwNEs&S04lHompiC?7ik>b
zjbYz~HM|vv?lAHG{rgk8)*ZTz`PkRwwFsOdq1(PUgCCWa+FQ<Yd$DL);oCP`Z0U!g
zZFwMeIBqXY#VoVZUhnPWeh8#ZXoU?EKApjw7WNN4CAkeFq+|#xx(RpWt~tloH_duB
z@$1?R#u-cK7vG^{M{2afV*J@mfoYX<tUU2Li0&h#<g4PBA-GBeU^h^}43Av0F>1^`
zuiN8oY-~0+#I}ns*4cB=Kl7Vgia&jnIgZfg$Sx{Qv*rw_SE9&y%n;Lq3%3JVMJXZj
zxN1eyuvo@lOlD_=cxW&E5!%&aE{Ws=`l>~Z{fzJgJ+H6x%(o4r<5xo4ieI^rx1=L!
zyR(N>wKL6By7Y#jw?KDb6oOg)30IafDBnS%Hr<T;eKF^=vbMF-B?q$bolThqxdAGk
z)h)M%k6CdPQ~ByjISO!v!KGzo{V6Kjw5gN*ol^%Zr4X9S>m1a{@?o;4%(&>c;4!pV
z%EpCn!%V6Q620zq);;N2wFgVqt@$fL-2&u3i!=iK-C$X1{#Q7^8m}HvfD6y5*~&k)
zeo4R#UIUO{w#+^iO)TO#)8ZkPSIQ9S<0->Fl$DfztjA3ngGaJm4{R0{w)McH6IORX
zhJDFIVThhyab>_wO!}=cu@N=9=D|%Kx?|HVI^fNN-xnM`$R1t9q=p3hIsR|vCyq~`
z*@CEBNn7+Y6oyFv22HfiB)GmvIDUMj{ShnhStEVsa+fW57j^F3gp|=Ie=1mE|7gob
zif6snXGlM%fp>Ar%$uBN^Uc%{diII*Wr%IM4W4|({d-#9jyKTi-~Z2zs&o7O@v*zW
zEgLYIv<?%AK**+uhy>9+ffpo+33Tl3Lv!#3Tj_+Msi~=bJ4}fz!!)wz!+-e;03yIp
z%m1A>%C9l6Zi%i2u0vQ>-s#`npD2o^kcI0$pdAWiD^_&bh3v`9b_qkpRZB0id2jyO
z4x^LOxo;284s%G_6B8@6`ugk1A;}T@m1(cANcT^i?06}Gk?Gk^8Bo-cn1_r%YJ9EL
zEf|QLsf)#1MU8E*Mi0Sn;)>lNroQ%sJeuwe-8T^#`cjYXZ3%^U!AZqY$q^Du2C9NS
zXr`zM-87#PmgW>E7A@&qu;Qg8h!D1?E2+SZ!2(#2Z*bQf+cdylL3(|U>h*F-K*Ov(
zqYj-INYe9cu*Hg$61Yd$SeJUoeYb8|5jWlW=8(>)QE~yXLq~eKnQ;-)4EwojqZWU7
zEVa7k-O5z%zKUuIM2C&a6;IE91(opN{(hHINy<b;BgQzKoi{HtZ)Q^Kc!%$-%lGCj
zLWW=YSW3R82R0In2RvToHKes)nKG~Vl3O%H)GWX66fXVnvE{<tuH?9cHx*RZ@3e&7
zM50D?t=&YcJ11e{c*$mNZii@Y_X?8684n4Fy<AH__sGavZX^*7XU&EUGZrpP5P2#2
z&#D~ld*(FGkb-k5{eWxT3(kw@ejme?UWG93Ybb>=`|Eu3Smgwelfj9GF?!^rMJ3K%
zUP4osUlf{*65-dIdawjL2xqD7vKCB1zwvm{upkbgL^S~tWhX}f`c-m2QYRRDazHk~
z<I4V1V=fcN9hRh6V%AKVCM|l4meP0;fZ){GLi>c%g_9GbFGid2PnzV2%n+vd$@772
z{tO;)YH{JA^G^p!N60<_q;*3~&CGfh{W+do=nS+PYl4C{Dxow4G|b6tI9>fs+qNUV
zeFuB|__v0(RH}UwKL;bun3+6RgAp0bwpF+M<!~ll>*65GbUmVjo7Y1pB>O}KYpnk}
zwA{#t0AHe3XbJn!n!$f>-<|}@xKaH_A$^MPJS_QDigD=~XIG$3!u(QA+Gc}*zhjdu
z|H)~+Lbv(FN|fXA1oM_X?TxK8#z0Op8s)tAezZ!{ZXb7z;fXizt9h}83hGk3uhF~Y
z!(+K<ES?$_+D&a}-NDf3!bzP`O8g;V?_S5Do_5_i0(oxHVpnb>7N7G(VO86Iox`%>
zh>-+`!|;!2IxRN~*5K=nt$PVyD@9k#R6ppI7!r%=m+CJh4^pnAY>1Td3h}<%{HAJQ
zQ)P&EscN)v&T?|=;%A>cS~NbPK6dwRCzJ-H8)j{8z}TB}B0%*CVc$j;*>eA{DATN@
z*!xiBNJmFUjCMSI<TA4tNBh-<w=~XfIC1>=0yt2z&N@F8{DojY84tW)G;<-ZXpK3U
zx9;`$Wxqk(c^HIoNNA|CAv%idh>m*RMSnN0i5E1AcBo!7a<JVqEP<+b(Id>ia9{^{
zBB>H=zkq_?d_jYr$A_LG;8#2*#V{27z51<zS|KZ0Xfy=D_TSDjI3iKX#F!-MR5ds{
zquY$8lc@O%Ue4R(|HwErdy~`rf(Eox+OvMrR#rZ5mHje`AkdFojnBK9tVd;Kn@jbE
z)Z_&;nNf?DXfl>565=0>GeOh7N1J9pc>-te(Dl}#hxgP@YJ8=(sOH_JcC@k#c+BCv
zeB=$%&Rry<6{E+~qU&eid06(mi${97RN(tE%QryNiB-rsbG_TN5qZaNKRY|`uJ+i-
z1-<EUKrAxpnCuVVN|?ob0uT?HYD}re##b=)*mU8-$}iL&zM$1KhTgAk@ihlgu07K0
zwlWnm;P4EcaXZKVE76+mS$)d{R}Rws8;*1gohU|JvM2r&LoX%v5^Am*+AK*#(xe5_
zxCRy{BJ%W`K7bFZW>29&-D~rBSPDX@$FM#TP!P0N><C)WiQRx;E{>;ri=kR~x_BjB
zc%au*!RVEpRjYqR5`~yNb-!)K;sV$7^mLIa$QMH;-t&saIjJfsO@LEW-m&mER;v;N
zcvG?~$SKzK9y<qQ=k77<y{t9Q3(!Gql>oWi_9;aMeVS!AK)@1Yhd704atOcgIoce;
zuHE<3$~H4sVA8Q2aMlU<8mW&_a)Me?q>tIr-+%wQZI59(PBjdnzwlyfS6g2bJm+R5
z!C&g?>Rp=e%qwr$(lxz2RoUKPSYm<k;J^KYX$ms)a7ZO4Wvj|-U#itav_jx_gHTS{
zkW|wRQKmpIo;+ZBT=<l6o|r&6ZzprZyUu$zB`4~qg5aMjz)E)(?LTuF11tr!pEnVm
z3c<~GD!-q5$dOb_W_gITF)|+8JNw7MQciw8%i+8DnTJl8&Z(hKW}NSv7wZ>GZsyGt
z(u$I|J9zM5L-7)g@K>0Ec!-{MJqM`yHaUF%OG2Q1`+t3r7wi*Rk?o=yre}*Wy2%36
zE|SaQWhTOWNzDZn{{{5b;`AGFo>x5HDrFu3?SY2vPW27ohy^z)&42S(mx`x`(*)sS
z*`&#oNbtoGi7)9paZMb#E26;=DOi%U2anjU=Mp#qp}&+aP3tq5ud=>}8E#jUfnS&E
z7rLkJ$6OEW-(MdSHr(>{<;sTeFkoYNt$RimEmmedxs^Pgey)<CCAr(VW5*aAe&pDI
zIT!;=6hKmZCM-A@DbHkDx6VUmUQe3jY<V9LCd^b=MXc6j%jYgghXw!O`Ku7I<8IA~
zL!|Vccgdi<Y5Vu@4|y83qn<WEMi+h0IQo#0OzTA-bi;OIUH8KsXWHi;NOYO^>X!Y6
z3TkezL0=Cxd`kghEn+Dl$=g01oPxDpNGm!0B4XLk6L?*Pn{3a-Lneu09F1~jmEYvu
z?QYz%Ta}7~j)N%=iACMOxz^M8J?4f%@3*0`Jcu)=pxv1MjVs~+vtnW?F3otB-mSOu
zvY`hz)r{G;&+_r5wHoP;>Gu)_+!%?;w6nA8H8Ncb24golDk+JPt_+gLGL)R3CZWc*
zeG7cXipY&L*Zk|UdWc^Duhk<Q=Om*jOhLAPd)YSWb>iU3CMzmatrl1Qk<2RkHomsv
z+N7aF-&9@Cg*OoO7)$n}9ti5M{inBW-MYY%mQZJ10#M|p^zqBwu}5oA{GR53o7b)l
zw_VkOew}p(Z=Z?knZ)h*{Gzpi5D|ke)x4M$cr9e(LKl}L*E{q<+4XXgf>r+jzYq+f
zeEQhp3`Dw2`OBu#WJv72Y>@e>(G=N5`M$_@$uZ%Q5*To~OE+rjuTv<t>!7_4Z!O2<
z9?6NL71?We!CmSJWcIWS>TGn}f^nu0Yx$fmz$r-E5oa#6v#W3y@+E;3*X9QHmg>!n
zywqQ@At*j>pcGU##Aw{0kHAZtAG|JaRW~v=4)dsAJ{AV{YcDdI8=D_)Sz0*;{zEg-
z-p(%R#JF7E=DM4y_1)EUfMF`6gG#?V2fA|-jpB<JhrELU*ZXWz^Ih)X?vkF)N5t6f
zyLboRB*)zC$v*F14d_t3<nr&agh+17mW}Wqy6jnTWK7M|ecnFP#8hfVwG<Vx1#jZ}
z*Zok6<rX3((SPV*Px=*(!HH$IN+l1#;Z_Au6qUI@npmNBSy|%TV|Q#|>9^3q1hI*V
zN_pN`-MgqkP~QzO%qK@x8{PbFQZs|1%J1(_3f0q8?AmoNTg=+?9qDFD&<$eR!uAfm
z-@j<gsA8B}LO67wtJ>y2bFNxjCa-V#KWERx6KF|Nll`@DnaTZIw{8s{ANi)D)*VfX
z2;m3UPtFKQP~K^&u-V<sLyX+}PleEG)#vIk=JQAYT6`5T#SYF{w_3oBocgbq$&zQ#
zlSaysq~hxLl`C^TPvA{U$v+8H0R*}or-wb=e|ziw?|(>RFSYaqh&uA~rQn|~1((jh
z2}phP(4$^+2l1$AYb<;Ae%~{v{P+ek4)fcLFAlx-EOOKGBWr(8Q;b3mix@L_G|?J-
zdv={Sw1IZwBF}&NfsuyT9KRB0W@`G13cEY=s$a3FQt{T}|BvFsq)28&^dL1O1B2-h
z+9o2_!I3W8c7XeI__++uc{UFD$Q|ERv&mYl+nAsPbjtbWo6-Qvzn$-*IExP3ym|8@
z_13LhI}G})d~ayAfQF<A6DCNz9P}FDpG#OP0zWcmu$AAX+`ML5mKXPQFL9L{nhU4A
zx)<a!W_tW{^wm!V?~a-d-gxt0cftG0mBpnlKPC$3L!06rx2`tdrMQ-ww&9hiH}#et
z8OZC|dg;J}>nq?s7Fy2gt{BX$g~V%r{ouX}i6erQgC=T}^w5j>*z4CVn2l9BAjD0=
zfmeef_VgY^BvUCB?s5AXi+9JyK8F9-UzGT4_MFYG$`hT>X4TVVZvqPUNE1dqn9*t6
zW4+Jh1H616TE+&yCBVr?L%V21x{~;RaqX2|=Xn2&_dQh6V|gK*a3X<0cTZAg7P}_2
zKAHOlSU23P-N9(sqVC7+?d@yPjg36my-MohiB=E39#lH<D}*gMPra5c%hjAj!Z!F0
zvZ?~Iyoaitd3*u*CU;bKNWIv|5UmH-ad(C%R@5AP6@6*myWmQHZ0Y5paiLp4Lo*NC
zzFm6@?L)S}`VRlXdWDVU$5T_oBX=z4Y*O}g`nR5qd8jyYrp86nx@qE!GDMgIFTYqZ
zvX=Pz_Jw&G-D-g!3$7Y1uBiV%?7ewdj_Vu#`<mw=^N=!>MKX^ewX8xRqJ%<ZOoqy=
zlDR=eWJp38QW+v)p)yo5B?_6MqC_YuB<;`jl4Y&^JN7^OpS_Rc`yR)#Xn5b}dG7nZ
zhVweF^BR@3y;B>q5OeIBpN3}p_EMB@(rPJhCAdaNwc5@0fjUq4<Tq&F*_pRm@Dnrr
z4-ebYRurF1fh{LV`6<rlJ*w;7Ec2kdL^V<0Jw>?3q(0qqu`ysyE+=g_5lEGO+*{VG
zWLHZ}ZbZScql}PDdppYpQ`o2FN?>Fu!khM`;anuYZpA0Pk+Suv;siice+c<cvp>;q
z3dwjA-8!cy(&ZVI@EEwJ^CPVj;#6@Y2_b9OtXTvFwc3*Dd-&Liz+e%drD8ZUVHKp-
znZ-;W(zvHeGClJXZOmI|OnE)(A&WDPCdE@<s*80=xM9-olNv!H;YN$on#T`o3KLFe
z!N8{D@6H0f!=cSciTY+$SMl2l3>9iSX0I=@n6oTTx7em@h2|b%O`qHZwUr~J99?Mu
zu-CQ6HH}#Yh5#9GNPCMC%OpamqlO7;P>X>T`s7mhN$<OE>m>YmssIyTQAbZEbUrz7
zK2ZSPp?5AS;S+V2ezgHRJdGzUdDoX(|0$U|(Zp-7zrSsiM=(5f2Hj0xy!VS2Rp+$0
z6~IV^OzNF*x@MjT&`@L!o=>H1(z7cm2z6*%7Xvmwn%+B=ig^xy?UO6lh&R}}d$*-`
z!tFOykAm?rM@XD!PW=o^;M9kZi~V$TB$uDL`W3-%vUbY+BdE%?P7jaH940~OxcV2J
zzVrxtF!K(9Ag(ScWCwZs&Ye4}y<>F5)Fm0;nZC32wShB_y|vyoqkg?F7KV8Vp@t&&
zHHY~S>ZL4Maw~fccyK6QbizBiPJib<b6)3$DYSp(CkjQD5lAUPao=3x6lpoB`*xTl
zdui%+1c7q{^a=G{%R0_}ky1$9I(M8jUrk}~+h0Cku&h0gK6?e$`0*J{BIXyC*&B^9
zHa6bg$?p*PEZ%d-B<3(f?isJU021|0ld4ug3(m!ugS}}kP<2x1<~zi{^cKFQ92$m6
zCa35TC0HCG#Oc42zDcLe3Pj?(zJmS>utpelW1||>$-`)xo0NTh5VL6>WQ(tG9K0GY
zoi~p==rd{LCm0a9d`f;vFlUZEe^d%2!S)|d5_HeO5(!QMm~l)NBz>=_8{(`TkM1P`
zMF{XtNW+E=Q|aFX^2h~dpP*KDrJi00XT61vgU}vkB#o<8dBK7Orxekh*F3A@&bA>F
z^6KBEiwP~9cL;NO<h5+sGHex-rvHZCa^QSe$i%-dOY`++i-%ePD@IWp^QxtC@X(=&
zk^V9=Ldr64bzQA`5Wjd94KLHR0~=ZW-KoOD%1wv%<@bKPKD4I#W=d&DC<;bPEfSZ3
zsDC03ez~G6gp|9aw_bnaUUsdaQ%tdb5@Z+&>j6SeS^F*O8$g+VG$O~@=dEp5NMb?k
z;Pqewn=@6~NgZAqizEP9fvEox$BNoVDRH%QxTZCe!YnE8yl0kj!F0ulM+_>3&v=X@
z+hXyOai)Ins%~UD%YyK)XGHCSZXTXRpT|k5sphiYjNLd0o;=)_Krfu2NBFU#f<e;b
z2dpB+a;`{n)&>n4Z0b(4MhNZI8kWwlEQFT|`e!@PM^YSVTISrYzztJk2nJGnLk8EM
zg0n;>v`wD+aGZuF*okmO=bahUve)c=#ENh5R=$NXsb-+;{zvnr-3CCs`C`a%4o=hT
z@-yO2S=HzT&yeFBx#BI^ng7xDC9UZ^=~e6Fp+kqX+O+u-e=k5d{<udg0aYO`0}qdX
zYGER6Ch{mrqr1MIuRtztm*oBId1Vg9In;t7BT6FRdEEUdiY=qzU!{J$$gYN+ej-=!
z_gzO%?3%>vvOxHLb3WOVc5L(XoM#djfJ~nZFf18VueC1I(pE6@ag+H?==CAc8l^8@
zC`SSp0^m-j8s5Wl#$pI5L}M=7Gf_hN5S{dxRcLkwQs$!cbQRh57`2lhPsrx#Nnr@h
zLfb>up^J)3OZkR0K6$P=BC($d4}`w+^BP99G|IrYQv>-RC9_P}@?o!T)WJDG(p|j0
z1Rc+@Vv=pgnO3p$+5EFn3nP9Hj#?r3Ob1O(Lm_g4J$*tP=;aD^q4^jEfy&SVIr&&I
zSF_oo@rH%AD+GZCot-e=0k03VXR|#4(9%L$#`Eq!mN$Ts){$WAhI7wj%lw~i&b?^!
ze!bbj^ZO&Px-%XfXNyj}xZ?EWWiP7WgN=RhPKQYMrt1t9;GYU1bgMp(onH+lQk{5e
zrk4m!!4nupLCW_4MRuVsPf$Y%b}_9{<AhnhG)y>uj6e;;HFE^Vo}NBqdx^WJXU{N%
zkwmuSRfryh6zyV&cr&A3>5vi{mK@aU*ryY9TM^ll9#47)!d9NF0>Mi<t~qfnU~8(l
zm<$_s2ZM8(m`pq21B#!PTRu%iXxDDBPqE96EWv^p)7&x4=X`O`IkiZO?oy8HO`T)6
z*M!ZWKcp{X*jX0jj2f@eA$mYG*PC{(5*aP4?rCAFivif4bcqN%msn?4)EVRof^>M`
zuGJze`t{buceFe3H=3!!Aiq(o3awQlA}4J%Cv}hOo;`bZeBp9m4T2m|;pt|}&#ydP
zrO`wa@A<Ncl&|MgfwGSPaJKw}S4Mz!yH(y)Y!;NR?zs#&Gy=uAo+`rz3xYuXL_(a@
zOawtE=#z7rgH>8^ECdI&t{CcTCK`R9g0ei|Cw9r*f1<~9{)mR#nP;ezB3rgjyO^O#
zp{&f@lu-lo*J0lS^Oh4e9RMY3_6fMFN0sgGU&B8IypY6<O7bk7DAEWBoJS!*p3<q=
zP!`1M>}beJ7Wltg<1(B!(=(sLHch3?*FkfimXQeSLg|^CQao<#`WeteA*}}!0?(x_
zOIpk^I<1<F9=U)DfYeWc@ioc9J-wGRY+N*}aC5@ST=MS3^ABi|br?NqygX$RHj?U;
zzbsBHrlJcyPjG!tmswKv^KPJ`(uPNkFP&a91n#Z~z#&GKLbHiOqtSjhE$WXnHoi+S
zaDKAAB#DO!w_eVkZ@HTQ5aZhU(Nf}#_&l~&7-4CVZLJQGBjyx$u@uIN^0j&Bq-duJ
zB&L+Bc4$1+tuP1;XA_fij=HxAesiFMZ26)72@{xj%5etE?RufZ@$i6&v;o+po+p5N
zgII6G8>e~==)HuuCd3aZSI}1{Qw}Nk4iUBrkw76*e3p%U-Mze0(N~$8LSbwi38;4e
zJ~}!R;JfyD{Oa{<Y2R!ilo^qbPT~LKC|PuV_ul3E=gfL>@$oGdBQ15Zb{1NnbI8!7
z0y)jbrm?zuSE2*?Fffs^fa<9LSDt^_*K?%Rh~a$;hCD^ThVRFRcK=R6QD_Ce8f1*3
zmytV&=XQ|Vs?iuBEiayy1sGchP}PYfQ!)@xQZoP!X-$^5XNw3}7na^r3Zh{RjmKaC
zkGi~f6n?sn!_|;5^Dt@j+?D5u-jqCHrQ`-E(99OufQ6~VzDNBBh+!z6l(&$;MD!ZG
z<5BkUmQKYvE93Wi7P7@qSIc_&QuYyNUVy<Hrt0TjU<w6`bNQA(l=$A5B<}&w$?W8G
zBQe?Xuz5t7np4_qbDFPuFk>hY{VkWFcC_N0odoZ*T3}?r&YdA7_3RZR!mCo}RWa`$
zMqC+h{@F#ZTD^~WGSSGG`ItmIyzX%cwsCNN8Ym59xyPPbR6MwbBz(4nLgpc(FXh^c
z1`MCAMPqqHL<9wFQ?B(B)5$_`Pvcg_aK$_F{FcwlFU#Stp9lz=FSfE$-K$3m(a8E-
zghOsAZ5ub2buGNs&L@ZJy%vR~?FoX9lC+D`<;apmZ}LEp>#IRYk3^A~n62ev5iA_F
zcYacl>tOfaTu#$xtIC`&G9PrvMQIHvxZY{WUZyIZ7CwyWD5xJ&WGn%UP%Jl{T;uSw
ztrmj?D%3F)1b^Scg=S<O655lD^~n|fA!ofwtCe(z>gHc<s1to>tci%6p~368z3Gsx
z2XG0x?9X^Z2Z8@6?IL1w_u0IP>rLKSO%_6u^3{5y^s|D=Hs`vnqb$yx5Crs@OUb-o
z7mNh4V6*eL(N*5u6y=8hCqTujmMGTC>kG}c>qL(uGjnUleYwcj655KG5DCQzOMP=+
z=?9HEnZs^x%%H&J2(0cM0)6y5rXDX+6PY-fdeH&<hF1PT6%>?tgNmW9dwvyD`H;b!
z(n3fLEk1GFZ`rPdQoaRj$7=<pOWCiJvMb}~hZn5qmzwx`)#2y^hYr2^`i;wr^36Xz
z;_Cx(G}mGZjLBFa5unCubQjAnTpLfHJc1WFeKcx43cFbC_IYqnPrbDxjEqcKTvLmq
z6U8x{u~@0UKViUlxo3H8UI0mPIO%imT$rkz+P9DI;wZvol1JG>(Lp!oVHZbsS61)k
zx&bSEu=e%?x_3{WD#=rpS^R?@ucu`5*Vbi;o`RzEniC|w)SrM?q-8KaUy52pj?yi#
zGIB>EkW3`4BD4Zr&ajcq#WTJe0-vZ01(21I)%1T+3l#c;K1vgwMbSkx#PIoVdn8e<
z6~(OJK#DlsyHa)gvk93DC8lS61HRIhn&l2;31}3bM>eK&LeyvijLIg8oH50Nx^E?@
z*U3jS>SZFq5%)M6v#x1GFl9=mNSePqeY#p43!v!<o^X{TAp1*RN3gcSsesYi8awCd
zgHha_mcChnsJXCPie{_Cmd#@1+;GQ5Lf`%Iy59`Y8W2xY5=3!_NZQ!-`A$eI0;!m}
z;l5dK-h>fq@Ai`Z=m+$&>C4tRaQ=mK5{o>}sLEsSy&>QclA+OE8XbjYuM^cqacu_e
zLsH2a8BcWKE<1nsrYf;3B*>Riz0nx@lonyIl~As0z-%%<M$`RawDigmgnsT&2W!=0
z#I4!nNd82{rf0}nxT~>j&+r!6xG>4@zJEHtsw4ez3C`H2KcVL;E6V2m%zeGp^^QTY
zZrQY5moW$2FrNulmY*7T2(MnQ#YFK>dJ77QipIe;(vZ5}T?PtRpUS7=IzhB#eBXV4
zQ9$g4+@$xdc--i<H`LulIA10>kJ>Qy{p<9Y7$Ovnr_OcGVASPK&dueyNd;zPd@fDf
z(vh|`LNR^;sk?M0YaGEOh>cq-n1{ZJ-Q%c{2#nhW*2XYFBZ5ymn>UD$;_=#&tE9Df
z&qYf0N=CY_ES@jvq*J&+@sJyYXHS(_(ux(|*R87z%Vi7=xxJ&Dp)*Nme7IUI*Tq(<
zPs>+a;d)xiMZ$5Su(n;J6fZ6N20p^B%!pMy{&rXg2omk~0SeS?h0(_ihr;>sp8s+`
zHO)<r^YioTzGbZ76*^pe1{S!DjF(B1Gq>6+rjPn6M=g^NYrRVPRp{2-b68Kx2@@lx
ztv3niw;%B;qr24kQkV!Wl)rI47J#2rK~0GL?{T`NM~kF&82o~Gi@}4}Nc91(R><J>
zHASbNB=sne91ZlHAN#z-D@b+-2F-?Py{~3ggK_1RI1Jfc(o*{2I!p2D?$g$B1gkGI
zd`ssp0=YPXr;%v}8ghL4BLZo>qszRlf!GjhOOD(fumy<x+#SyD&2w+==;UF%BAsur
zgAjlaVCu&TP9;H_(|f@)VIUzRiQ<^Vku(sfKG`)x5NW7+vx#crqqthZHK{8sv7V*>
z;zd@D9Q7ZslUIQA@!UOgr9@tk_=ir5p2&w(M_Aw5x^)FOY_0=u(z|e0B*BS8fKvI=
z+u<=8W552;d%Gx;mIRcd@~_dccW-k-&{RfThZE^kTUxx3s;ekfOwd2g^CMmAUBSF{
z)8CNjFZaoU1Z8Oci45das}X0xH0V>bP9b2uL#F8Pq#f7#_75A^c60^*DKgR1)5$|%
z=gvz}TExwd1D9pgz?F_5)`^cIClCZ)!ox}fR-T~dBfV0OVphdO90kk$N}Og+7*lOY
z)kcGUv#8NBGlk`8z8FN2R;gV_Bd}`w;0W9h2$Sg{$*RSoMpz=u3gRZy!&6q*X3NE(
z#Jf&_n-nNX_SOQZbO;BiI8Fc-21Ox0in_O4!dGxI)rS*i(%&g?6SSaB^SEj=dc}#*
z^I~tiUj9A4cmNW8NCJ>g)zqE#fr3oz9Z!rXHNIdz?zD(*ol=vnqmBU&9dppbRDIyG
zJFDf;O&=Bipc^>X;?cs2?eLZ{upRTBp0~gw_KlKwj%#~Bd6&!6thVG2c!QyU6;ewC
zd)Smmee*ss6iR~2t1YS4X!7rmsV^C!j?UB4Q$tCfQA9o3--YfUVoQGwW{AuIH16|W
zg%2&tr~c6542>A?&ko_=Cp(tTZN|Aa3CE(j{zc>BUxefL84_C0#u7`2(L7AhU<>pD
ztTppkktCxcO-BY!N71Q>r-_M1F#MBAwz6__{lj!Cd{$RRRJ=LMkUkgM@?<D~!IQCC
z=*HS4N5qtUKMyZyS_&l8vBax(&y;)VN>WnNS?6z`?Mu;5S*%>K`{$U(B}Oyl^_0i*
ze%=|R33wpzmuqQhX%Ah1utB$gJ|+siL)QDjpp48+38+Nw4X}Om#EJg)Q}8arrazPJ
z^7xpp;+lWQ&ZVPd5tJ|eK_UmraA`|-cXwZ9_bR#B1hof8Edfp<jg%og#m7(r`z3kA
ziHayk^iU+F7=LjpppP(B)}F_NpSVe(C8Tbv{>?stolpwxq^y%Eb`C&Die+isq{;Tz
z(U`nYN=<Nv#!6T9g=P7wNlWR_fboUsv>9dMYmL?|MvF`uaUqQoQuavrSmBz^KM!_a
z>`n^!G}}y1;pPRTQ$JhAVx=A&-Za<+;*scqo-b1BbiQE%l~f3f#z15I1YFVotUT}=
zn_#0b|8cd(>n%goOep}PdY~%QAjRf1C~ZO1AoV^Bz64Gp=9^G61r=BEtT5<$TDtcR
zK5#%o2CZOBMEim)7@c4|{~JaXiJik&3nO8qT0_O-*8hy$sJRKwfk+H{xVtkF4w@Ck
zye(m2a}PO>9XmD^$VZYk-vb0>%4tUh1=mx>7H@VGDk~hZwnnt5NZw5Vn)Cb^*L#xn
z?=1(&SIL`7FZ+H*X^$0ZU3i|TA>1LAKl$VVdsWzfbiJ6N_9-%OWKb4XRso!P3DZ1Z
zIRUZBqw78UPV2*Yl}=Rp?UCzG0H&Pmly4Xuh;|;}`0hC|RGV`UnChL2RPZp^Lo4P-
z$}?{{fQf3bg!ZMRm>J!Ltq@KUu5-2%XKbT1(-T^4`bt!1PJ5W@Lphk%yT~Mj;zFMh
zak-Gm=Jk)J?GK8WG%|{F2P5j!O5JtdZ-%;xG25F;U?`gMMq?nSg8$izWZT0(x_39l
z=iMi6$9d@%?POO<*1NF~^XM8tt;dV*+@?lj*y^Vde^Ult9~RQ4nu^4Wh7lM$EXW-c
zMQnCU%5m}qTf1AuFv-@tw4X(%Q9U%I4Ivo`EGeDF0~XbcRr@WXs+i4<n@KHi1tc30
z+1|85INNMoQ?QahrTrmQX(}z*nD;Pz8b%=Q=2&|09VJOEb}ax%v!)Z@5JE}2r1Bya
zSyosk!0JXVTkd|{34~S_m9*3AIMg&VDj{Y77Ux2`Z65XelM;PhW~y{Gk{MUx{^>)4
z{vkV25PJ=fHj_suXLz==qzvd<M-?a=*U>$f+ZJg(N9&<Hg?b{o&9PIWOTB0Z`*FS*
zO8HyXRAme(JZ5{J68RQ(CliiE8M4#3aHS4uN1ztc42S7qyyb~4yk7_MXJ6Trtq{KC
zRvZ^v@U30)gh5uf%XkM;ogu4A9;g2}q6)?Rf7R=Yo&$SFIY?*wCz6oYA|e!ZvGDHj
z%EJAqxtVUYW@kXJMPW(jSaa^M+CwB<CGF#EG#D-VGm0$B@ZZj9_~*~dz&wV7fA4zt
z5#3Hn1-Qg&izHN82_N#u4)O(eCnq#Vxw+a>-e;i&dr}IGBCqEwJ441S2rGHvEPk>3
zAe%;bh95Hm6w~W<`X>gj7zUS$`uW-S&S)p}QARoyJ9Ox9?W{90MI-kPdaCrJJ8OX}
zf)mmcp|3CYO0oHP#IFI-iVk-mJ5m+wOw(NaLojt6NsHy7TFd93XbP@|sr@nPg$hIn
zfSr=z)@Vt`jvWO=BsgtjBvf39@N;u>pWl`bQCu7JTSQsKpV&$o!K3nM9U$Hmit;U_
zdZ@zszT5C81+rF8IN7cubJ45<LtOgIYaw?;pdX#^&k);vu>)2VhJe$}N&#6Jjb->@
z5Z>ltS5k2m8p?dEC~qr`ElMY|K9v$7qOBtVNrw9ZA)=sHT}LP483$W}?aV!$<uCH;
zu!xW-*pk1w?tw8YIVC#yk-d-(90K6|<F3bv#0!s8Vwj2ohA3Psu3maZ{!;$xuu#pp
z&=mUO-4H4M)M(hg-wAxkXkoaU0NMA>h1erd*pE}f%+r6^w95BrGz`Q)ln~97G*vd|
zQaMihPPj9(t5(+w`vh6{C656D&Qh9m)~VG$wpZSx!)7uLsV0PwfW$}9n_`YFT4K#X
z*>^%{SaQ&)Ee`kPo(F-?$Y6y_d)WP0*8%?oOY-m0)<g%L;6ln`9e@QS6-ZI~Upt_Z
zLQy5Hbh0DE+htgygS<blhid;+vE|>5W>c3=h3hakrMX3Ke(A*NO<`wfwYLCZTBNiU
z{8F|5{L(U^Fp(B->d$%adf~$ws?Dko*}@&%q*MaMq~&6EfUp>U8Wz{m-wX?%tH1vP
z&=io#xFHu2Ie@kKY;~&&3fDC=xdn+sO!W$`wZnsm6sYp8`K6-Y>c4XF>({V%rAZ1U
zy2OW!k{u{zc@&x!$qCulnu+4uF(ik@dx>7MOiDGUS*-kN>iy?w&VI6>_bEz__!|?V
zfx2(miCGp92c>lnAcU5fnRaDxwFMaLccQ0UgW~OPl_L3fO^{r5aGjCxI{QXRwM-c6
zATg~TVy><&0P7`08{kYWD!vcci%jv6N^z?P&E(e==hpoL1IoW^?g4ex0>-5x)H{lX
zu_M5qaLLHGBtH<jQTR`d7)oQ;3A&>6xe&FKU!6m}|12Hwp7~vPiQ!=G&mL~yw(S72
zgRcR=O=%RUbe<isJdONRE>W;*0Z@7GV_ZZ3pEvB#^gnMok>f~-BpFPfhRaQP@a|<=
zC=Tgm>^qivvLjZ{OHFqobvrX$UWAN)dO-3)c1MCxP3}_vUAuowHve`V+?7g!u*p4|
zcAanc7>x?b0aCk_u@tMHavX*ZH!?~F<P{SlG?<6;k!GOBAKmwB(1KRCQX-7coBex{
z6-Kyv5v;&K&bJ$GVsf88Q5a++#pWru&PE>VnS%!pN*@RX8zBr5ihGrCA;-viI#OmY
zfA8`Ces9;Z<HSdZ**_ph)h0->SxL4px;S7Ra{xZ5aC=ue57c<>1qk&HEFl%11Awsi
z-bVAdUW2Ur?cKZAM&!J>3ZLJ?P5Husv41a`Q<|+;mJE<0a}7?Fu$w+Hy!r@>C<-=s
zthImh{zWGd*u(7`ak|ZEr$}?A0+>u-EmH+`iyqq4&1I}9kNLvdfA6-1>JnoC%gAU!
ziU8wg7K>gD7Gw<3$tOzc!mcqkGO{0im@E8)gCDu{{bUlE5H5l8*)EtHGowavibd9h
z4&E^AYTaC1rF>e#w)mH-N>j!^^(!nzcSy+-Y1g)G3K6r?Sh#+pWl8wh{b@#WeqUTz
zXhv-J63k8-&4D(~J!ylTG9yD2xKR2_$iO^2J<q>)frBKVt3Yv(czf-TXU%24|7~;C
z9H_L%Cm2WaPV}q&d(80QDXO2{OXmO^18tTmh@Ah45!g;N-(?9N@$PvR?)$foqJlUa
z+x&nM&$gXAKgX8p4jd@bcv2UGig`WGM0s=9ru-g1{xA@Bd9=2QY?W8)1JclscS`pJ
z1PBFDbP8E2Qxvw)6+1$8Q%0x;1_lDE+&=iOf}+DRnp#9YoW&f;qZm7FT2PlM(cz%<
z!0Zg(oru4$*D4r)BIq1KnkXCfy?jJ&T`}JEp9SvlL3vrR&x+osA19XM(Mg%udp<{S
zytMGkv6Tdgc{p&|t|oU@-p%IYzuE38KO9KbAz@CeP6d6)C7Ji059)v5BN^``j+dxJ
zv$umED}TN9l>htFU$~8@_=b@54t2Esz(XR;(I3r21f&ko%_4V7nYRAn4>-M+j1EM1
z(2N5lL_A6EIhO)pViF|$1$fc<d!+JqYu5gqbs}GCWJU@gU@Z`NL98<yR@%PDSyfTA
zu12Ov9ia^;b?6zTwb0)`xV!~I`F4thtzm|-Bm@2yaRTKl{MGLuSNT`v|C`Hxdr-fB
z!!`Av{qXzO6|uJewjjU0Y2EwZQNyoqocO2t^Vipue;M!f&qDv}JK;nAeM`T-IqtW0
z`SnHlOW1Gu#_!+w|NU)zUiJ3rO1sogrJwUHhOgIZ)Tr5&kWIA@PMe-_wsuOJ9W!><
z8h_fe*0mlDwoF>sd}s46K~~k)ckXFpXSUICvAvD$rV&96t;RQMR_Vfx%bJmu&xK6y
zrfoAUqO>%^Daj|}=z{r&vp+1;XrEpBI=i4CM)StKrt<U>4V1y?KMzu);jdKT#}_w`
z_?Pd)GWPhT?ECZA{`V&TdnSx~|KC3O-`V+}Dfs`iDeyR{`_pF6q0goj^|oQbbDK_D
zWa<RyHNRj07;j^+ZaR}mm3LC!>9|LLQ+Zum^>fmLtLiC=OgqsP44zAnmQ0&q4gl!Z
zXZc9{GnJ!fk6FJQ#OBa$kCo{Hh*d%En>U$(E8is+{m3PeH<@7Y(`Ib`gW~Gz@nkwt
z2|qqgp}5`P*9TglF7rhfBDJ=OG7{oP0!Eg5E}df+E)4uwf)vLl+GzWD-Yb8DS+#y%
zhrTzWPm8R8Vt0K6cMaOV|3#$Bsi>$v=vsMwrk2_SJui0(Qdg-rEu0ubxTt*f>iW+W
zn3*-AetSCroq^Qxj1`&l<vv{a=6`Ld?GEUBwQ2N+_00w@TWGa1@3iT}i7f!iJ>ENI
z4~U>9cduaH&o|t+T;->C&00-Fo&$FI$_Y~HkV%uCc3fEol|CbEN~!I(9Xk?8bM*?I
zq9Wr7_g&-Ig@WrLAtC){q?cDP{r@Pxxxk&wE__u?YLl^lqgsE>_eYN&_2RAKg`4*P
z?spJ;;O-Dh(MvN}gp9$*Gw2=4`qA_7Wt)@w&x@NKSpGzpPosIO`=XpXH<wd*vF9IK
zUEZ&&(J+IC*rWhNAafrQgxftl(ME)qSAD*s9(3qXds)HR<X^9%`OIasv6y@<`T5rR
zA2oiKiLbRwm_PO@*`fCM6VDGkD<(bc{pi})mt9xsz$RUPHYdn)(4zOW8f4JN>PAvB
z>lpCMpcXA!nAn!z`o852%AevENJ~SIRe3d#NjIN~@SQKeFX7G7a=x9~TN<7mm6AD$
z1?x@+-_7M*8+eUJ!|#KBUe+Ba_n(p#1vlvm3kDchQHfYp_I)S0c8!=fyJiI@epBl)
zeOTd}2k*!3J@@9=`HTR^+lc`?I$JKeoK9k*eEE0%wG`)|9NRFjVAn?y_i5146W^zu
zbDR~Nef|1%|H3EiQB{UmBnHs*v-R7rUGb&dZ)EMKQ-3Ixcmo3@iaO9v;rGqk-`{^o
zHmOIiFKJ26?;Llf!{$u<XCLU5f4JJ;(3ow=^>%$EC$NFJVf6lC%&JwvA2oMa-OZZi
zQ)eP{<@)rk82ul9I}pl;g9!4rZ3`Hi0fIepg$yQLu&7JNj&ll5B|Nj7GDUsy;>G{R
zUq)f!uWz3d^lk^xRMCJAlZjjRf*gEoxd#?a8lQdf4D4)xhSaQC%Djtw`$_BaJz+!j
z$PI`AwiT*Iz|#j4lU!c)+&gEH%bTNT{J*`0U)&?6?ESCp<nrqnMZlxHO8LBJ_N>6=
z?I|3^wbxx4*Vw`Uf!dzg&>Z@_KKJ$O*CEA4bd9>-E4Lo!ei@$Z=#r=Jhmg4T%%-8N
z@9T4bNquULP+yU=zu&SC&kqkOhECV}(E(;3#2%_w>*tbZ)h>VPfpekl-we>{=}05o
zVrc+2LT{>P`;RNB7n)9(@a0I7nVH#i7wD4-(3~0^QWgPt8;A8jGoR<$3m?xr6X$0!
zd6!NM#e|V7WDZ|4jM1B4FqiHk1<>xjF3pIWTJ+YUy0Z6NANm?{9!6x=Fey*`dd(^~
zRj2f+ZqfAj$Cq<d+(JS_JuY7^D@`{pYZ~<Zc{M#Z-Z!4QX$BzgCOWVBLDzrM!CLbF
z;G^ZafWAw|>qS3rHJ~{JF`v1|&b5b*wzcpHLS`9q&^D>*_GhQGZ95I{GJ^g-ALm2#
zfke>A4WH(d(JduX&YSd_(&y)K4KPFobLHS9Fzz05+H)QpPygfD12njr4On6qKIwd)
zL1kZ(_TDLn#a*9RZ`D#>hQ9Z?43AFJKzVk3G`E<<E&|7IhUf97wlMt|qkww7PJ?2W
z07ha1;F5o{XVO)0kPNUxcbu9bT#;Z7c6W@{S&qr>?_GboB}G>Fnhm_{>iyW43;R=z
z?kGw#Ix!F%#k*;nD1jO-WOGT)Q{@iy=i^bF8~VSvx7>b}Ka>CE0*e3T(f`91{s)y{
zGXLMe0=FKCry{mUQw!cg&?;f)KMBG$t)EW#jyBMDr*{`V-p;{|X(LGbIJ4InbMwZq
zAABgNLn9e*Qn&6;>!d%f5vpUormqwd32{i~q@_<6GXo{p%`JyWA|)l|>T<|EgWtog
z8A~kJ&d~)8xFE=ge-s|$B06;L>_tq*PxJQplNalrmHYI~H|&1KH2w$Swa;*gVcN&7
znY(Sx&CT17_L@ELkDu2Nn^qox^coKD!4ned^xHIy`p_IT!#=2Np6MRMv|l|T<v_+W
zDZ}9B?<vySm4CodxB)X<`fi*Tny|q1BAP@&kiR_}{*0~^(|vx17qb`audtaigOUpn
z<(+=$>%G0-d(C}pHqW&DvS*jCQLni~=g!=G(8-fMIypWJqP(Dd-Pu|GZufbI{t|4z
zUsbkp$gC5FN^Sr@^!&=t^g;jB(r<lIiKX`>zkmGe9X?F`8KCS-yYZ@zxn;RloMMpw
z&$qr-BVobVqv7EL+ohlW=Usz;hUl&V3wc*qihGLYg+`SV^c7AQg6yPUo!1>R0(?(M
zCqu86agDSt-7C_S&*|5gl7cz{t?qFD5{U04TS4lpKAG3#;8osgy8d~l{8$_U7R@y^
zHIqrDW)nU~&VA73Hc_l>DypkPXv+?UQkG0yVduk>Sva^Rc}a_tx<A4L{junJ^@T}S
zUqyw=gEzrZKg22Y@^?`jHH3uJBimx~a!oecC-<b3)KtScbLO-k108AB1%@lg(;1XX
z>1-Oj8qs%>3`#PHG_@KE*O|wluIGC#aB4>)F%9J;``bF%(^qP+ecN}uSsto&<jS^x
z5oXuW88cqa`QqJ~fbPID<fk&v#FWn4=I3WfPfsSp-@VgI-z}}kNBU1E#ms**rL2E+
z(dpyzZ5wz*B1*^jW&Nn3L`k0w%HubkKNjz{&26t-yxAU-FGC8qp-h!eK&VT4ub2Ow
z>Rb+AmFFcf7xXpARW0SIa&b&x=>ON&N{WSt<o@T)n|A?`Y*S0imZwjjj-V9x@WOJ(
zx5&(o-K&=!;5dyoWz%uvnlMbj#>yd4bC$I&_j{;3*wC3p<lWur^M{*XzL&iBfl0UO
zZRwFM(t(%hJ>cE70IE0npI`NjS?)Wwl45gL)FD;it0#WjICjwO89OF5>HBoi*g}>J
zlD@2~sg;$}hC`JV`_3`{$QnHz9g6m<f(%H=OhuTLWPOHE)`B3OU3(-j!H06ZOW(ve
z?T~+iBahhdu?fqmpWC1lC5XtXtn^wnYX;FSYJYEJU&9F#CIpw&VfT#8rzt*;N0kW=
z-h+G0Z1=t+)0z>l>FrXmb*}-m#oHg&v9Y}x&s?e8;R@G=-HA?bzK3EtKyBIc)nf~u
zg@%TX*w;eE9xaI)?Dg9YWQX0E5}kAJaMH$#sl>i<b^1Q3@8{<i!4?{iP{9cQUPdr!
zVr#s{eo5v+LGn|`v18s;ef5sP`X!b(d=*Gc{25Eph}LU2_3s}xMt~w{n-J6o<dqva
zhx_@D&F0$L2Aw_o`LE*Mi?@c#hEtW1h~1fP6%ro4iSWGFS4;S5)9CTBXKv_F7z^9m
zS5`c?%SS=2lS{tml&eTreEiHG_i`4nQS8~T3E1Su@Lq1;<pIQ|U2o4;<<)xDp4=a&
zzrKn+gTUcXj1yfg=*o9GjMjaB;o~#}984!oYK3ZWQ;fvIA)pv-WOz8|*%OmhVhU~S
zizQp{2?HkWUmx5NU#Z?eNs1=~PzLVz_~FlJJ}c7Z%n?aac(>C1^Fl|a9kBJ(QYchZ
zAjEj@p8t18GO_fW6>w`aIB-5B?g>B^I}g6b6t1F!ss(3%)Ii#n)W1HK6_Bp=U`mG*
zcJd7W^EvO*PGzq<^JDYCeGa0-K)t3JdRea?Qg|NtA-0n8tggS&<-E4q%C`|@+TT@Z
z9JehzBaj!AYjskuTelYqrWRNJu(F*W^+_G|Sg!ldla%}S<LMi1IcY9=DPzbkCca-r
zay^aAS4G8i{P<>MO#=@0teCZ%e6tslp$*Z~yKPmH(KM!6%-7W8L1a%80=V=+PifO^
z$-wkkW)>E+j!jy4sY*U1_Be~^0zYjNFq*6ZyMGvW*MOxbm2Sp=H$<Y|Rckl9ld~87
zlsG^e|8L${vYV$Ku+Vb?nzTNX`rttVg1gfg)aF$&b%FC6%Lw#*R`bMlUTkPN-wpnD
z0^RgIABZiVf<%E0+ONtBy0-MEXK9^HbDlQj@U1#YjM+1_{$PX+o<==;mm`KW_`-#6
z+mfm;JSnChV{;1}a`{VS`aMscJPG16`PD?oAvgVdcY-+G03n3=O%7L5xb}i2;{#nL
zp*Xtu;?2{dDdAEWtRB~D=@S)E$jMklNi4b?ky`%Z^Sn@g#(HbuDZ|FsG?6pi#G=nw
zS=;r(35YjLl+Xtx&~`iuTZ3k|Q376^>IeBI;4DNqTE9%St<H86#fAsWK~yCk@Pfxb
z)4o5uU%lKHUJzf%&y0F{h{fGJmtJO7nkcSuM>@xGZanJxW#6*(dOn~{zJa94mh;bP
zdTwPV?h!!(Ki`=0y+Ko}g@3+!1j{J{5Y7wU&J6n=d`P<6&(*uI<?oTHP0U+csJ48e
z_wB<KfiksCDs6tu7@}rklY{Gwd0^!@GJHzRpksgMhAJ2TurxK;KvJ{E1kO4}M|1D_
zbPD!^8`I<uoJoOuxwmhLx8DQKM#O=;zorSLYZIMnh6Y!m<=S8^X1#sPv7GhRQgPT4
zSm?=;$Mf=WT{Dk)HS69M#$j_X*6SJ5@xv>uR=hqK!7n!ht9$iGcE`?cQwKLW4BYe2
z2X+$Vk)adca0y?omDrh9aWKO9Wzu<fJ7Dj!4EJSR@~9hUzzS99>-OpD{CapYTNS6}
zA!gLD>7+(yo;VCQGdDK`ubuOyPweYHa3ek=Bom+m8|afMAtzq(W`>zu6da8%qTV&6
zr8x>B&16&jxT134=UOKTctS$lXep0L)}@U|9)u32%O}aD=#)x+%t%*=41*57Uod;N
z8(OAAh!_y%YDYZMl;$y?4P^<>oQE1NUOZ2+YQv!r*H-mgdem|EpH^{+%{2E8Q4dvC
z)^0Jp_7c-SPbAC^cdybZB6wfK)yXz5daq%twQj9dea)hs@9Q<m-aUNJ>eUsTT;|@I
z==d(c@m=7JZnc-b8)VsqMu#3a^o0mkKxA()Zrr%D=uJ*69%W#b0)1F>Zv~hVKJ-is
zhAXz#6s-dlmB#hjwQC2lw>G>tmB-L-*Fh<t(@l#JVr|=M)!KQ$7%`{v*9?>UwxK{d
zn+Lwj%e$o&YG9U2C$I{UaML{2AXD^7b`5~2TvSvv{)BY}L}ucabne`F{DcXYU}D@Y
z!|Q*>{Jwx_vAwjRO5@W&>NY&1ph?iT<SJnBJg_!XeqLM{(-j_`S)d+y`g8>av=k1b
zf~LV^X|aq)c5@3cv+>nZ-ouYS{B$OS9T7<?-voTI*1J<4S}K0+S)QSoUIWWXsb(np
zxFciXwgleVLVA%6h7P5}q8@E{)oa$gOsT;@)K6<OY0S5fXVzf-#*M+)_F=<@QBRrP
z<L#r<wWK+3Lpvx&JRBFAoI1OdezHh*`S_~N+qZA))5mxz<j2MJ`p?A~d8C>VRCHdh
z4I$~ttj6YTwMH&ly!b^%M%zba-%Gke<gD3y7Ajl^2G7N|+ruj<#B^4zTGclXnWUCN
z(|*<$p{V?Oqx2fvmKhir(%07<JK*Q^-O=9uPh^aHHAC)RMP<uOL^zrw<F1lNoHSJi
zXKhkml$&wS_DATVFMpZt+IHIC)?~b)pPO+oM8ADx0YSP;-&q|ve7NbdXv}kKdeI|S
zmE`r6@!}7@dwYAIIDNWt9*6%qOIhWao{Fg{?Qyz5&r_1=jBYK>F_(UR7%iQB_F+wf
zoY{~fptbhL2b<1`(=eAO`17T8s!`aHSL@8p+(UXnsaXTRezxAS4+@&(wLUm;<{K76
z`1XeOm_1-7sAfjARhI+~u=#V@LVi1UHcKp-fn$Hp48L=($`3cLudAyICSQH#%$d_3
zQ!Lnms`am>nfC8}Ghw;;*cq}Qx9sN4(@Zsy9?>HkLc_6ktvhrW7Kz(9VpiaST*@6%
z%;ab~h_08kZ>wd?Nil>FH~aX6Q&mB&e?H}q=|>ociMWgQBeICgoc`X;e%!d<kP%}v
z%kR2v+n^qu&)9~B2N@e2d<v=gYAGJXng%$nB$fL0ThEcXE3YFwoJ&hf&7bw<K|{)m
zqw&b#Jf?@#ck8Q)%J<URkAiZAPMta>Pd>Y_%^;`G`+hD!NaWOi-{>4R|IKmThmRUn
zkFrMcXpUKKGUUv{w`pS|pFVja`}eLY!N%4|8s)+Y$Hzr8ency8hg(PpIuY&Kw5g!j
zcktkP0&LrU%Fhn+HKJwqWc~X%tq-)(*mnDIds_4UV>liWkQ=TUd<b5#9kLmJ@j#CF
zoIgJxGO|Z>k@Lq_Ue}v$iI0yreuN&c*@|%b=FjfkyxFy|aFJipNCPvocj+-cDCxKr
zQEL)Ks5(QGHp1*=+M`E79D<;W$XcTpG33`CyZoO$2Jf;v)eTj3N2qYy0}Kt!9?>aR
zk&2*79^LvG#0|zieY<tr9LX^~TKEtGxqS>>m2D?%cN=zZW>TORglvUALsp*W=7zrb
zxyPgNvhF2Z?l;wu$}2L?JhM*ummhza%|vUvCVDYJx=5tkmk}3Hj&yH-xoz7qohUNo
z<mOhqcGfM0c~7q+ph)^fGT6;eE$m_6Hv<g}{2gd}TefngXA$%^H&W3#Kb~*U-AnQD
zRarxoJd)KH1hc<Rc&-1Oa5}>~X`}xhInU1S1np|Xl9TK#QG+qAF~Pt<(-hm-ZT^#f
z$<Izqtwg8pwib_3Wicut%{6{+5pkSE<Zh;$o5x+A?Nw*|`prE9EY>EIGpnfhb%CsV
z=l=bwiUS7@Sd)dcV1|plj4S=;B1Dn@YFwOq5#ftMf&5ORrV~-3nMU(l3wIy4VS8RB
z?e(GlSy4e(--(4U1|N*4391$LqtQH?YOcL3a7w_C)TyUFs8Js2erS_!DyAySz7%M}
zUDSSrW=_cDi+@*Dn&q}ylQ<+B=-}`u;*ZU+l7AY75Hst4p9dWvf-5i%4Of!7o`{I3
zpx{DPsg^hPL5w5=TNbC*PGw8~T|0MLlc)q;L}RuxD)_yZT-)46hGrMrzkL|tl%PH7
zZ?h*4?%usj#B1)h-7RExhv-%G7$(j_K!n$r+lV;Cl~Pg*pf^nU^i1dY`TL7D_czkG
zehyjHvF|=KO-`d5XraCRC18(*%o=`jab;5`SeV*Y7}-|q+;oTUO&b0%CGw|fbH=(_
z1n4+cRg9*igDZ=D^2BPOnu^M5+Be$t>C;4UhtqA8+PQ7pk>^oUL-?xoBNRO1;0Eu>
zMoW$M_B#rWxS~gc$R06Bil!PmI5>D`5=7jg0a>Gc`-%!A#C!;Af&j>LiqhF7#0VO%
zqE4M!OOK1~sLgI6)ye7V(EVRkft2QRN;*IHK}g}28!u62?!((DrfVFf*>}PfQ@L=X
zrY&1~@}@GutKX{c1JR-}Hy%hTYzVrRPk->G+qdfyey@*;TB0&!ghB3A<Ivv^)uC^c
zI@|u)Sb-Y7wh@gw_(d{-;gQF!&aEK^Z)~{<|9FXJ>Vjv7-o~j@$h?e&H7KEhnsvU!
z@EMhc4ckTOIe%?Li&Grk%yCbK3>iYcebhg&f{N*-i>u1i2m|ZqNxylQX0nPwV`!q_
z!b~DBUc5LVO<bx&qb5x@a02&Zk=cR$tJYO@!^XDO)*kUPsU9KAvd<sdNQAJ6Ahmt_
z_RV_RHp0=@S6826kmTx?vfj_kU3p@Ze}vo|HhlPBI5GgEN(y~w&-q!24VyJ@KI08y
zwr-?@?KCthD`aJux}{jLVntkwo+_p$HOCk=R-hGz$a*_wxf(}hn;SL0Hf%QbQk%ol
zKCR2vMC++jS3`|8VD5%m*y#NgNkKNz8rt#WHV!u&-I8vAD9J8`IVz|Ng_nEq<2;=G
z#1KKw^maOZO11c5W{iDFs;A+J`=K><H!+0vvUTq6HEP$XlV6l)$wFm)xwyWqv$Heo
zlB%?mP)Hpzb?_fSZ7=_O8E1YYT9ajjm$1`jjh2ED<CDkee88TKM>KCs!Y~7~ZH1pc
zMOa^|=$F8O!gVyJQv4T<OL0riS$W6C#@f{gCC-&i)R6e$Dw#{j*>v1=`w(TI(|9nj
z*3{XvJ3R8(dxmG7lL?i46Z0*elNMj0zs+I9=+lvrS2;xz5hAo(g+aD|+SzGSjs3vm
z|NQl9+kX9;0fV@0+H_TpJbkf%UM(>bhIC_`y0r^GMRvF!x;{f>ZDyDUHE{d)x{hE}
zo-W+~b@UilQotRqNC#_9PEJ<;AzgN4!tcL|^QoY~3&nFNM&mK2x$ko8(3k#e-_S#K
z>(=eox37h*ovp1FW?=*U>JcLW;fT5|Y@L=Z>qiE(I;QM<ORVEn;_3Z|4_8CFkFyxd
zDXLVpwrf;Wl<g=Fw-7h%^gc|3o4b1jg`Ag@&1#4tQ8_XngZ3H!%`x5mBxco=EArJX
zha^CL`m_~Dlp(zqS=}X+x3rX)7`&<;cVrggeDLt$Od4a*=~}a6N7KN8%YBcI;trl?
zWURsb7M!mc)L@O#zfN!an}ND5iJcnf@eKC^)PM2*Wu3VHc+9tl#t^09jG+%}A0Pjp
z4d@n9$c?H~3n#`>*Xy$AuH1*;Ahu;ZVSN3@jWyGb9Y5~F`U=9-txumWCriu7+ep||
z7^~)+*PVEYu&^33XB|$KHr(P6*{c;`(XW^3R3?yQ0^BvsqlI<ik;>)@^fz?B7Ugw%
zM6d2u(u!1k1FyzjG%$ITAdL4J{l(tR>c|&O)9#?0nDhFzdsIgDd~QXn<nFzD`7Cwp
zvuBfi_l3gw>24F>x?8vU_)tTC06xKILBs87-)8BCseLRi9!kjh{N+pY1KsPJe*bqs
zb?})4wL5oKSKPtx;8x9A#4x&9!U@HgF=M)+w0oN4!^<!ec0q;<QC*v@iM`4%&zcmK
zkj%6E@*dMWYCU)E?z{mHAV$0()_!<$My;DSZ+i4TBvd7=I{b=#2mUSrXS#!K7_zaA
z=MFT`_)jRGijl8@LQ}F@_i2?OkQ}_L+N4PnsA)m7)pb`i!laJ2aFfe2GoT|ezwq_g
z<e7xt^7>@@&8Zb5oh}W-8it&$T(#=uM~_;pDl0wna3)vFUU`Am-HFJ^6zfI$s6^S9
zeRsaOyYDFNaewT%(VYmRHqyJ=b|VbphPU5w<E4MyHRYx?$7U;Mlz>j*I->nw(!ut2
z$M)?T@V?1?diHGS_dVqWd1pptX9x?X=Nx97zEv9G=H*3fuc6Slu;}|Bb#P{8X8zYt
za}~|a)d-C(?YcMcTg;(N;LIu%jL6hSg@RW2g9QU|r%2()vK18ygi@N%PmjK3Y$dm>
z`4DPGGT~Knw8P7q;Ot>P?d)}LoQ5?3siH@863r)n(T&|pRdTt;eu&fs(L$b4GDd+8
zXa#9p3JmbyO8b*Fv=cWUpQew|{HQ~p7#de&*KSd9b{cQwSAOTiDj^i9aCCIEzcCVZ
z^#kdguap)EoP@5gCL@_UG5h;?(%RvwS760uJ$jEL44Ojcv1j+eK_~OThQvC{#NvvY
zAr<xMe0}lut@b0@G9D6n?6=Wi*@A*TQgkyqPkhkAW1W0($Xiyj^Nt%T=)7H;EnnyW
zDqS5}58ukE@P=LxSZVh7v+=dFuXx~{LTJ8txCB`EVOm<7jvbAZ_wd_pKR9OEw6>eP
zyi5^!z(J_>>C<O@pd(Ta(+1&U2D*G3UuTO;fQ(x9o?&u^C{o59(rMoj^RNl$+=ix>
zdsD|YX9?Rae=2gEFLe-B)^wbHQ8DNq+quB$)(+m6RJ&XE?tkKcyV<66V8FSDar|}B
z(3x%$*R{Id5ajZA@~_#u{r#r_xUTniq-4NS*UyvLHshX2W*6jZnBQ{+&&d>aQJo=w
zDR+9*^huT5pK;9MA7+0ub|M&P9uo}OGGeEz7&y*Ji%r_AkS^|sPu4s)KL=mm3^AOl
z!EL{O&Y9g`A?HJ0L2Eipi5`d*@}xFa=~}-_Z{NSK*Qrxj#albJZCgiyz|*f0e8Oa4
z=+ki}5k|(w*O!`Kr)in+y{crRc=``?V_iv0YfjWm@ZROnFr$VvL#?CU<FQ0v-}S)J
zF0Ws|_I)sw{;%tfh*ufE8a8TFQp8@XE=k3`_wq5svD`{5$O+vr6812m!wb{ZsqrXd
z<C+#u<|mMp9O(SjERuwF6ARMB)@0J8N#Llp@t@T;n<mQ>+Nrn7W&bOAXj)#_#{CD)
zPd?D2QhDxd62OwYa%WguE6_h!w{c^o%`V^DbNk=?Hhi25tR}il)7uogH~eE7;N|+j
zVhS^7m%djckc{ixzI|1)$aP1KbR02qq$y3$ksP4WsS~}tyzG(cK!2(#9bvTp4p^E2
zDfE&Iw-3qw)8P7V>9XHMw7VM^g(^;<b{tOIv%Vv|MI)^S-Yt5E-pSu$OT5($Q3RZ&
zI?Z1U$iBB|n1SItY{H2%XA(HI-M~>sZX6qm9Q-Bp93!Qmi9-yX@eWLVKPl^3B65W_
zMKRb^+FWUB4?Xc5bLzKf;Q>wVIU3Y!f`i+MWWwvs4hP0Ry~Lo2wOf9qUL#4C+Zui1
zdA9K0zzHk-@aa>WYlTYPXjtyouOC*+;$EAVB3XEeXv*+B?)EdPE;V~uaF{rQRS+X2
zv1~`r?du5o?gvw5NM`5_?mg_n0_HdJ&0wOMWhF(O71q#7vAb6(!5l7dGC1JxyT^N!
za*6n3+eR3sHQA0$^Ca}`-TSn@qYUDB!mvOo0n}=>w?CkHH5^dGGk3=~J_MG(`Nm6M
z%fW*y%D%&UX5bgM6{cTY*>}miCr9?r_Vi}%)MuS&r!Qmfy%?>syVsmCQ4gGn$&d@7
z?r6f8ztMMBA&!3*3G@v?o%b-*PQ$Yn%Vc~stp0KSr*UJ|=MSruQCLp!DOB$&SF3g<
zF|o$0SFgsObI=qylvd;Vcr;CH$ppJ@4U|Xgq*1=(5`-_Rwrj(loWul3hBvNb?BRY)
zn|MR~YOhw?uaYoo);NM!gRQBzXpvc%`%Y3h49%q{PlPVInx1Xr8lj5%&6>GUh`2(g
zjwG0Jc;MY-3TBTDBKWQiKBZ{xXScC-^EH^D(1A@=j%@fROfn1YIBuYqTikbVXb?ZR
z0B*4eejhDR1xx6M(8p|MgsM~Yvvogy0#$Y`i(}gJb4SG9J%9{wFc%Hmfu^^!6^0HS
znwTlG1V>Ld9Llcvrs}n6Q?FKa=jb0a_Pav?_u=EmndC#C!Rj@9cEmk!Hmy;+_EoSu
z1H|V7DGqy1EKWxFO}uL)o$lV`14kCC%kpdDHIJX53pAN6z1V%^xEVk4Yt!U0-vU}8
z{j7B5#y)`GnPhrFlNxL_2VC)jx#=0TWs3?tj}3$_p}mseKU>e4<4y@!1r4_`!|gzD
zFO#KuK?BX?KP@k|)WxjxS=@CdG|17ztqiuEKWT5+Qlc$+IY%-?cYjz|r$-)*P5n-@
zO8_xFi}={o1}!@dZNGIYHU|&7`e6~-75rl>$3ImXcV`($;Va?6>pw<~YtnPuJL<a`
z5$D!*{^CW8PQX8In<hBb^&MU7wYKql%3*4n=ptUuxCKGB>cD07Q378-eWlTef9`&o
zrbINU7@^ucto8K&@_plRuyOsq&7%j^fF|p0YPf74?t2>QbJc6t*7m3`#tBAjQ+V}W
z#+k}7fUy@T2#HeLyAN)|R@;8s@he?4-bt7o#0n93S5$od{P{ViM^KQvj?0!Ub1Pw|
z3q2-k5K<MN>CgTUQ&w7!y;Hqbt-nT$s7<bBN^zNTYXwfN*~;}dQAZ0vE+#StSsW3l
zNVg}F>9;7SK3wK?=nI*JjIIEh3cI2uFeypK;rsn+g$aF>xR}Yj?W1&^KGz4|A}Jvl
zVi=q|F?uFnAV?9RVTpVmK6*q@H}U08aNZAej>kTJ+>$EZun{8+$Qh)KU%2eJVbeL$
zG?hNNu)LxE5c5>t{?)^-ZQE8PfoeLBF%_WkidaI!jl@CES(9a-avPH<=HuFCg<abv
zrE+r9UJM*`<88zQ-?>wt;?JMdPm?Js<<J3KIIssO!YcVWL;%a$Xlc=SUZY#@-s^Ym
zYR<#0%I8qt{HsTNdb+wKg#=L31sKam^3Ja0+M9lURR9*&96YE=j8~_1X2w@O3msRB
zD_i{RnDyA;{TGE`Yktw%=7zW_$N;^xC!DOTkUM`4BsAmeVk5DjiTCd}AxHa=pMME*
z?bYmY&&#%&TZE6VfDmuL{{4-cSa&q>@C*1E6CH5z*n6sRQ+KRX&=Y*&RN#VUK<`vq
z>v6z=2J{C8?h4O+_s*NZB=*v!KTqnfG^N1b9D;=QBdiF~SkC^!&jdY}$q<R=3{?UR
z=z?I3Q%y2cNK${k&O}w%8!yGDR8)wkgIZN-;>7UcVP=hf56+%(!VE7Xd0!LCcBcs{
z-Mf;|#gQHvt|UHf+oryPg6>+1YZ)XgR8p=j4#ZbniH%hV@B;0A-_fI!VrRAc^y*ei
z*c}#;NP}%&(BnQaA_>wa)vk?D;M237IdcPb)gZ7PTX)k*E&AAXn1f}@9?-sZYXu?H
zI_6&<b4DOm0I%>#=bOkFh%pfYpW(+ZvmH+9Mj;Lef1)9Ia{}SeHvf7G=xQ6#30G5$
zru>w+KE;E6XHC72uwX8%EUrtmo&cX{>(Ny*;X(5VE_WJoLelnf%+CuKU76tI?D_LH
z+^Dgh54KPMP29ReV5x+566(gTuEZFsnhI;O264bAKkdPrc{_sYbo|u6!!2!XZH=ZS
z30JSq?&j}1s>_byp}XKH2}j%T?<Dq`4ZpXn^lNWLEZ&PfwAQ<B%rsefpTCSojT<>~
zWaHx0Pci+JCa_d5E-7ufvxPw8X?`iwg?{C(B^)@$<65i;KYqL`Cs##HZL-;mm$Si9
zmVNu&U9`YcDi#QYbLv#j_9g+<6(2r+yn@YT9J5<cUB8^*tAz{1LCQ<(6I-Xv5nDva
zmK;pb8fTh%_wM!W;n^==R>7Pdj9%p9<+UCo3{<@yxcs2a=)-aom)F%uYhc#6;Q|2U
ze7aIH1#oLMIgklhnt7y6FVo6ch9TVR#}T7%$q)|6Ty@b?`%=Ud)D|K{XtT!l5ZW8`
zp(xlEiA$p|)AbaKVGHCtCIVQp@|-S>2bEJtP|*Ww+jiIJDR21~EUAwpM_1`Ft|z9>
z?pWg4ZEfDXiRNQlcpO;t5ba=%j>0-f(<%zxO<|Q_!e9W~3OdrzE$_BU{-Sa6^yxVG
zEeHyEb&dW!xM2LulcDF%=}^|*^}ejF_(J7Nee2EX=1A#~JY2qecTB;unI~=0E)f^G
zMSo%=c2_=5&AkX2O+~F*wGPJPz{Q5g1@7~Qmo=Q0q!V`^WT6ITQt(7DaR8g3nm#$f
z@iU^!Eq_SLz2xLe=nbA=qmhqxD=T@gC+a9k_9#zMFWozP>Fc{yh}~{QEFhJ8@%*`h
z8V!>=)cG3tZV!6J7UHi#tsBvMpy=WI2hn*1sQagZe`@AEIoD8$%^)gijYb|$q#^mq
zdhlHV0mffg)*V6AsS6f#)w0@N*&}RyMSV%A^Hx%+D17(S((Gn3)D^mq?$9+fe&WO+
zL_$#bPGB3nc=c)nN9$@rf(>{(0jnX;#v!0D76$9*=IPn+@rJssJSarQ5;LL2bC$J7
zgQPBEeE78Ko|aFM4EDwsft^`XHKuW)cX)XCW`F;h2rcZ~z1uUIN=(j^bEoM4pl;aR
zKEpr|eSG1v@85KI{DLG_u2Q9f!lkTq>G<*Evv!4lMUhKlZC|@L=`nh;abXYa2eGVP
zr;Z_x4BPI7Ys~~Y_WjNUui3Mwl}MU~ZGHDJqFqAz#gmhdjOntY9TFpvp9%}Dkv_TP
zW*mh(1$P-5$?)Ng2u(G*5zRLA#Q3%%gsG;0HBuk@vT^_ZsS$7YD)(5&*M8>iIhpmF
zH+Kg-$RM_ogI~LLZEHKbO=x@U<2d`*J${uD)$yb*^}#Vg@Oc!m4<9xIT$bb&_<aAt
zxD`ze6dy9;Y7Hdo#xh6@PoBMz@gK35FIU7g&e^3m%SiJIOn`-eDCAdv(JX{78w}u-
zQn1Ga;DdRI-ncVL06{#D6DLm&hOU`fUx)X5d04}2+@7AZ>Sj6UxNfSll3?Ah#SRb_
zu=3|zwyoDtb9C9Sa{mzsK{%BNtp~vcc6T>LYrs?i(1=Yu`;Q3n@d=P%N?swgt5>hS
zxl;WzpmwhY%mlaf?N0b~>wY%=wg3?D<p2wG(7qus)X)*Of{|LohFj;BQHyqq?y*bz
zflJrP7dBu0Ov<5Jg0C=<2A|~PU;zaL3Vjoz+3N*NZZhl9Rq^G?ImeIAf!Ag1#!iNG
z-2PIehgy<V`>pQX3G53ZBO_Hys0Uofz#685m?m<_Vyv>GR~8?8a`WbhLiE9HjydP$
z<!S0Q?c4W^Y6&Rl4Mq=U+a;VpyX4$$=jX8%65q7z>v7!crX_Uemv9df7mqkZr0v<g
zfB*gk;1F4l`l4Spf9~8)Uw0r?u7(hz%@nN1a%zkQQ^>)-;GYUMX?E^B@;iabjo{$m
zQ@TYTUi_8#u~zl!*NV?I7VeE^iH_6f6W1N#Q4c$kE;*u63<=B20mY!Qnl@PckF9zV
zc_i)x|M%NFcFt*rEIOs1@*HzN{T7jKqc`8hv>0n~%Dym)XG>n$&YNW;2|wDD@mX8)
zVtA0#Rt?{--SK2;hfGe(Ho4j-WJ3;lj}MJ(X_U?)C&~nl!e}w*Hht|LwqEYUg8L?b
z6i<4dt+``Xz}`C#9yI-ka!>!H?;t4!*c78_<IgUfy1MA-b$jy-$B!=vOfcE9apTaa
zy<0PGF;Haw%$e;MJc>N>P3Dz=T}+Hd`t}P}7-f^!>pf1Lfd9K|)>}gN%@0JzgX+f@
z0k)<vr{x<bRx8hjq;~nczjp23x^?T_lHnspY$LgtIDg)}&J^pe=Q~$(mBk!HVRkt}
zFUCoSA<ebzf>Za4pDFYGcD6h2I2sSqsW8GaVwz!ezAExH&u9=#Tz)2CK3i~0F#`zU
z13a?Jo};R&TC>$$lQW>=jdGf0XA{6Ie|LuX*a4?^4r_J+^IJfMW9mX-Z#ibdxFq8A
z>CT1S0WKzcI}&YXH;-XlfJ}*Uz+x|l1NoA{*TGI)g2Sp+WffcXWQ`IB2?Kg=dibg-
z4j#v`t_4hDxpsch>$ZF0pa*8pcO3iB#xlmm*{`UW`o$MmdRgr0<=>AH!T<RTtNewm
zBa4EDuMWo3BWvkFPMMav-V7(yqo%3LY@Ov!T%N{ljNr>h#rW9U#f!(HF0-5f<R$-Y
zm1%0<*&KcuiC@!ZgAQov9lpF%()4VC?2dlfI!xH`PEVg6ctyS6!hPSEEL_DSpE$jM
zqUjB+q(eX%q52MWkdK52*lKIXq(=a3Y{?}r$P&4l;lppJmJNXka)Y+SQOnWinOM|R
zRaJXeIx^s|BdFRZe*EZQpDx4BJzyM765@}iJ)vdSoEPna1}^;4^GC!&%+e5<IYCt1
zipV2GH#WN&MP>UKwym`EMhzm&UGL>JGP*<{3sCW?)23Ba;E%3wTKzUfe~<zTnXgCG
z#*Niv_L6D|4F!OI4LfkE?bq)(j3u{W(#5ocCW?g)4%bhwxB@M-zM5Ly);6iIEk;2!
zX#3!cAV37d9z{HkeA2P5mN8gZ0UDz&Uc7j~Hn{Ds5gXtDNX2cro=)#H@C8uf-Lup&
z3f~Bul-wMn(|5zk-UxA4lRN*Ym{WREEn)g`Yv9ucNtnxzn}!Y_UW>4I<CZO^fu(~)
z*^UdWgh-9X<5{=-5AJs}js_4nI+z1`V;sK3(u%-tHTK4%h}7q#c`eYkwqKjUuE+rH
z{!mmDk7;PLT>Dgc+~W?YSjTX}K+FIoc8&SVjZ93o7czk3GPZRKLft9RSq|r>+ugUv
zCvANz{jF78CM!;mm}_WgxP1X&*gmTaP`?eu(gvB-7&Zq69xI48*Ex3m+KRWR6glSY
zX0~8n_JL)dVDXgj)CM`ZVal8GR%-#qfW5tVm&<@_0arTAUmmvyZ1N}6xq9_#2=NL^
z)s=hp>?tiK>5jI$fEhnN9p%z@Mlth}*5Vna(ldg_=8(YS2Z<_>Kvx%-OBBrt-weq=
zy`8xbDLca(?X{#Teyo&hs^$E)U`1a1)vK|jYyjHS9WP{Eur#4wQVm3n4sD&sI(q}2
z9Zy-@spgl9U4RJkzn8AW!)EdrVF$Mp8F<K4m8BB0LNB*pmvg071uLBKvu(jGyH1I|
zDqb0pGrK2eRfu#~`}s9yfYNHfgw_Drud{tWUF>o^{rI=Z=TYWeR{Tzak%iPGNkoDn
zqmYhO6CQ{6krN5y($ZfLZAkbncsN(E5x<<3rZ;GiT7r+dlmUEjZkLdV`ljlcTdZ-s
z*!S|auPwS%UwkneenwkTVrr267UwoXgisJ-8Ly7B7_HUB{CjlRV>WUG(2rfxaK9v7
zfn~9Mu$%X07B|(8&ws}L<<cvV8Td^DDAmJYyOY7a{CW!UvbxN2^%6%_vUDwPneqo)
zYwuolc#2c!%;~s%;Hh7s^T9Ho+qaaSPG&%k$t2P3dM+?XL#j$+vL~SvcYu)@CB+|0
z-;Oc}{f&3$*Bo%MNpbpx<!ebuvmX@`!^w)xuGhRrWuUpPDc_ML+kmd-xJdB~Az#cQ
zNNnt5;KA`6hX$6895Leg^XH>erdCh{4s!ND8{23;d8=WJOR3;hShL~L{Xpsm0@&}!
zv=ZRl;5s+;0_&F4cLUGH$k(f0tNz=LCULf|uJ1&kVp(yjiO6;@*n3$dw#K;Mg_YT~
zxU;r)H>e&?2}rV!^li55o_&pa^>*03C+LpQ%-%i|<l;ur-+Oz_X+Vrxh3sKOKtEH5
z)!&iH{5aC!`%WQfF?ubM84*=>jTraVKAbT~8h8HC)SOCI8mCr?$j#I!ZhGqFm2}Ha
z|MTc&fg(lmFuACpU`)rU9XrLH6|x5gFgs1}@PUWVpIgIMiHhyMtq&N@!X-<ZG~Kej
zDvkrU-A2ZSExNqOemv|yp*}J+Jc<fErAuqJoBRZ$NW2+Q7R$*h<d-gSp~+~8U078%
zx#9k~2H?<4XAjJK5<(&c1KO1+*&34g!i5X<IpI?gU*11#_;$%V(0oqJ|2BS3Mt1f_
zf<scP2G5>7^RGL!-|_;D@S{ib-=_5(xv?#x(G~Gtm!!N@!;2t`uAt6Cyj9(aa;!P&
z(2c7Tc4#(NCv>JYB!fkZYxQ+#CUq`;^k{q&r_n>4oCbotjm<f58_?FUVEJ$=?Npq&
z`*^Z8S7Iv91Zt(-5JSe$4Lx#>BU^jr%9V*<Qu&@7H3}PpxTyU{k9JnW59>m17$1@?
zrJ&GG$EKUdX{6%d_jB&Pcw;lWY)SWY`TU^*GzsHRbQk@xXwf1A%lv-zx2(v?N?*^(
zP`*MI3B+?~#I7||`4!iOJ&|F7-p)(kK5TPtwtn|Zr@J-kw4y4?c{6T*;|Z%Vh%6{C
zCnqH3EH#o0*kc_+Ppo4>DZ*%{yAX-2-@3IS+5XPC1-oKmVy3@bWbUg;<w$s^isqem
z&st0pZXd&GCG@|(^fp+=B_2Cb-st{y%_$fdA92Am`<yMKF@0FHb)x6Aigx<?ipjvc
zQoo-^>1SK`=i8oRw`IP0Q)|kUbf*%g-&W){bJAm0bvH2Yk4U+o8$r6(Oo7)dbV1a=
zneK|nv$5Z(xC<NCdfvRFTb9Y~8@IKzv=r<xA)y-exywX%aW=aWLlF;l<vvtfwK7G7
zx6TmD0%cycp-!j5!4vi4&w1ZGa0f>3+s9{EyANxxf3%8rYEDerI8Q>GbF)X#NWq<H
zJ|fl^QpDyh7edd*TFh}InWbnnIr6204m^<ht(bkgx&D*C7t<eL<%%5Luw@=zUU9gN
zg^U{j*c#fd);lN4q@OXVnvV%F>NjYx22#*evU=Z-Z9(|s*_D2S61Is*o^RId8Ck^>
z2~=CjK##;I_$b!I%Tz*5qP}xhsIE4}J*|hpq-dVqC%UxAQm!1vk5-(8l>oA%27NI&
z*d5ZT&ipBa!5VXpk#>xam{x^;igryVU(W@=q5X0Ipxo}f2)G5qnt0tv#7GL?GkJ-l
z<Bj4^W36Ipk&4|M*PLR(QnG?7ymMtB#0$<PP4tIo{#C77H2~s2kJLKdvw6#wnUwgn
z5)SP&+p~isjgb5B$b0whslenyJdmVX%DMukVn6=4y__P5)HxA5=^}Fu9qg{7Mce%5
zty_kcB+CN_s*<h6;x;1~SD)|F3?3E5u?#Q}!ge5F-zs0XZFxLbcPxHiPB<*a2$}p%
z<A<8iUE8$_R!u<82H({XB<l(UVTHcxM@n&7yPwB^^d+u*#Lh36v~M&8{G^28!9o*$
zqX##gJW$X80Tv_-H2F$gx^U5=t9*X1#`6QYi$4baahf6_7I*A&Z_vf(!ULIyFSok5
zqA@drHWy-`T4E+DwQi@g1o#!@i9Z96ZxQl1lGbB%IbTP8-(Lku!Y)>32xfjMf{>nf
zYt4p~v}MJN_F>Z0LRn-ZqO(~m)`1!=UAmNfxf*02<5e>^Ap>vKN$PP2<L5m&8)4A7
zU+`=Ijh+1$YcU-#a8?Yt{62O|#@`;exM?hUoJ!l|p=<x)9fjQN)~y@fx{^T&fhtJC
z;wTq~b5QKx*3V<}XjuB~2(XHAX+`q8e(l;yG@h)%9A4oT92^%fZd_Vx?0$pBETEr;
zN}u^p#vid4(a&q^x9B8;J~2(JV8rMut$jzV-qdxLcIVD2ty&#T8EJnoA8%>r*r|OZ
zt(CPa?4#w?xVW?MR$o5OrV!v;Yl9_}kV1RY3$b++0;1%xZpM#7CwDVC7iM*?2LSHQ
zef~aTd99vPVK{7dccrPr;>Cv4stig<MDAPn5}-}9X{Ru)QTb&jfv{igu6-yRM=OKU
zgDw)vSG*P6&jhC4rAuv+zOx}3?R_yfC1f?S^lk}|?>=xcD#n>Mz*#kG)@&cg9~GQB
zVp(Z^gYR9PnAES39OWu^*{ji<C2$nhu3uk;?dwj+kSSB(22z@I@XHP#AJLY=Tln41
z$2C&PB!+ismJ0YKyP7vqZD`hW?*o8>7w_Nu5Q)0wK`7TYP0;H^YVYSW>HlKy&%<&~
z-#>ml-eYF$gNQ6y+GKA*B#r$pL<=G{qfKS2glsi4n30gXLW?3T%95feiD9%-N{c-z
zMM;u~w%_B*GBcmw|KH>Ievi42V+Jkv{d!%m>pGX`^Ld^pS$^CtAE|VxWPS9)<KMzQ
z?d3L}`JXRhMgpJxEo_YtB$mYj#g+BnLriP!m6EbO#md>B{m5>lpFh(3X{_5DYax}n
zc5Rx@J5FeOr5Vv5>sU<Zl-<5=)j8?u-^0C3r-QE01X18P6_mvTOCJ`)bl%vJCWq;z
zeM~?+=pq4O_i>K~qYon{ip%ty%`%wiCb%idM23g|j7AIr2Y_)2u~7qD&6};O3!_at
z<B8JvZ=7qTNrqKs(;&O$LC0yM`C(ra18MZrP6|=~G%yfhdW3>cWqy$NRzrkMI|)J^
z$6gC!%;G=_H`~darw$K1XXI@iwq@`4BTP=ntX*4!#7{4^y&@wudQ^+}wXyLs0t1we
zp6@6)aWOw%0PzaC<}=b`tV{V^zu@l(b)pt8G+Bh^`eK;nnms8aHn+B1E}L{%stlO&
zLM_HK=RM)bil_aC8g>6$tGv)ZwBgxiWOf8hKBsetZef5G?|(3jMrAUQK<sz2$g2qA
z*j0Za))fpdNmNEPc6Eih?aZRkgJ!*l`uO|%8<hgMsYD$%GXdZ~%M3%OM)J3DTphiM
z3{7I@%$v896oyLo5t56yL`UX_q={mH-2%q_gs-9SwTG3)h>NO5I{PvQO&@%`{i=nT
z)u9G6J<~eKh$g^qo$Q$+LV9I&yy3=NbcjkBZoU*u+?QCqM_>IHC9k>hj*FdsF<rl2
zQ-GQP{3|EkmsWwhNjuG*+WgjdpWMpcDj2nl4ojic(uie0)hR5@NVP6#5(AQ+GbVE7
zrAwC#vd74Z`2pjEMpQsirf1&1e|r790W`Be5Aq<bS)q?b?Dd|)QBMLZ&mF&GM@Vd=
zWvAOS>u|NudEQNQiB!z6<!z*%N=mzV+p=Fp&D;|{SbmQRhMA%vY35p#jFWeD=@**6
ziE9g*ys;aIqTGY+)SzUvUulzz8Byw7G4Jr$ArBHml2O<lgL$9XW9e>Fgj=A*a}vb3
z0F6IojlgOJUQaA9NiY<#vTpK3vt`Td4A$RyTf3YAKW*Ca!oouG8(-_6e{aGZ{KQ#-
z)^DACV8&A1ebp|3*Tl`c6BBp}r#_alI9TQBvuA%tF8>RlH4z1}bja$St5sAYb>vLx
zC>>k2ZHk6u`~=U=-5HA~%c!5kcg;ux1^t(c;fS+#G9<aq>*A^`x)7T@Tw4(BXML>Z
zAtbK#CFSriZFa3u$4Ju45}kRQH&3E%w&x_x^jkj`ebEAh?(gLDRXKcOE-}S#*3TM)
zqIamSxl>SZ0|3C~NDcp|Smy@IcVqm(fdhrq8}Lk&#g8L+buv!gq&NDI+`AX5N>w{g
znvJk34`=&Sc2fxiPx^_1z7jUOrXUG;s@Ldjz^sGWxf^-TOXwVZ#)Z1-C?(|^od;+<
zAYut!F5P#m<c4qJLc87pr_yHCUYli;5~h|x1z6`Pv+h-1hu)PYzapC7CyFiDg|JLM
z$%eNMkNY39-qg|-6+)9s)IN~?bQPm7ewxv`7PlrXZWc+`<LM#{RGqARviuffwM_Dv
z81ffKtU!Hjp}v_}uh=&(0Is6MV8iy#+c2#iu$H0KP#;vcNy0nbP%Mnge*Ab4@tg0e
z5m5!RDZNsvSSfQNDF4)atk9vCS0Fv^^*s2-7`;#vt*Jv1uw^w(TPQTR@2J|1I5tQB
z5GyiA&D`Nld`ve2SsJwMSQ*K5Kez07=0{dvkR~YaUkg-Kw(Upobd1E!SoK)-l-8Cl
z@H0lspC0)2R7@aIp}nd!NX*wwK4^FI@Gqp+vMYmeK6CE#$lcx@%CMH^m~#DzE%P6d
zV!YXS3_tuK^$y{Hq!EAeVV@uXOOEX$nYi)Gxt2#cdsnP*l!ULkW{;Iss!+<IM#J~#
z9@{wje~VfVBoVcD!mf6ZY54Hr&!VEm=H9&t-U#t`r?8cUNPAzMC?bF{J}(NcC}F$?
z%z>lHaJtE1fKplQI;D5G^<@ubGR+qbhhSS~_K@Zw6MX`pB80N1`lLXyY^5fAC3=g5
zmPwOZ-SzJfFUCb*P-D^0#oMU+&l$NWS!Tl20Nq_Oai?$V3W~hv>fXbZ4cqtg+o=A`
z<d+0R4N-^#aB3Pn%+YVDtBG_q1^(F~Q@cAlI`+83A_!*^E|pI0LnZZ2GMJU%rzcHv
zLsef?Rf)-KO?yR6A2$0bqj#RBi|wPY`>!lQ+SL7s|EVPEh8RWvXKwC7siw(6F<Pwe
z_*H#53LOR?&wK!Sx&XDtv|A65z);4xJEssUD@xSz{8D6nmSStYgx9`jIj&tnW@aa$
z;q&maF1Xn#nqs4005o(zl=U(V){oLcnI#aWlGZC6rV@gL4)bk?>zn0tR2^+@`cQVn
zm3AErU&UXz@cW)Uosm(uM^JE|9wE?La+6Y}s#PUR-Ar#EYgO^d5ETGC!*=NtCmcR_
zaM97|Ka_5O1)g<p-5x6w2uOKw^zwizx9U(6>EmUh@Ux;3bXt@L?7cBPF>7gur9K!m
z2JQ{(GiBw&i{oG#EuSQc2_LTl{rz|6%y)}DckVjxIHQr#$v{W;!7l&P10i{Hq>%vP
zcN|>9LuVA2t2(a{sIBe40@@LSbT$nhlrwh`BYe}))e{oRKro^uH%O^jT%J4wtpMr}
zGsT?gj|e6X)|5Et&8ly>>1Z4``t6JvJFov;xTWU8bw7Fe(o2+H^^<#ItsF&>p^Sp=
z)*rT=TO_;iJlNfVQ!A-$U|&Dm;<R$Xf(1WcU+hoh6gE&^z7rk<j&;Wl*_m_HqD-QC
zCak*mE5ii409E0EZ=eKR2gSK+TkkQU$Zmflm1KU>lIML9RKdH=FkNaY?PqXJPOhym
zi_rNGfYvCRH8-sIEf=9Ls?=3lUbrKbFf>|ccA=uFtCED#%l+xfFapNzo59D8#58(_
za7~K8X?dR^2-oi2GdoYxb;|ihP^j(Nwfn*KuELDy&3Y!vUB~4fW~0tQOmu4v8URuK
zicGqPoZNR4CQKkEjJRC~`Y(?vK|_WrlP=g(=B-S5Gw?kSh&dxa&m$-sYL>2g5|L(`
zd+sgQ@)2p*0?gWuojcp5&#}ez#b@S(YvvKi!_z8u9BG#wH2i=h8ty^50TxiR=WMij
zXlGRK<68wX{!4|i`R&oTXu_|NPOVna2AF82YE+IT@M1*^G{g6lR28SEpD<BDCX5di
zkwWZUJ;-M9Hc?lXnCoY5>FhnlKIT-4oNot|MbZt0E>8k*s=pFU4%5==t?u7NFz&%2
z``<`|g1j)wdp6*!{N#(^n2<~CR`dZEe|Fc<shu8%A-v^arnR~drQnKtxLA*VC8RV;
zd!jR<>G|nrovgmc!t&y}AI+yP%sZmHO&+lH!}jqSe9(K19AlC&-+d##Q0jmDVIl-3
zZRj`W@<0%c6G)yf-Cg705KuAGpOf6<J!GF>w8a|&t6z7RtC}sAT|EBJHvkc6T2wu~
zO$sSW^ir5=aefSfYXyanRn1I08vKeJrj#}oA@^4-(AgKQ7<F*RjABfwe)LUS<y%qH
ziBbM)hU9N=I;_B#FioQNhpeK+w02Jv;pxe6sY3)@O(@Ak=w)j6GG<B?&Vlh_{->R1
z&jp`u9~VI$)8?-R_Ud&#y1mGbIw0iVgIW9&ag`9KmBo@@q5%gG?1@A`-ZO3!M#Z3I
z!sGMyy(p-*c<u&3G5Ukf=_LcT#-QnyhV5vIUih;3isi_6;lNmCIucMYNDeth^KEoD
z={@LNu)7#rXxl#H_mUf@^io?30@l@)&&#MP74zBhw|Z7|Z1;p)*clL`NM!F{HXxVm
za%OL<%;gL<FB{+;VbNH*$msDFu`OgWN;(szj5*Nx+XcI%Z<7`xJsK^YMsM0-+E-3S
zv*%EinxY6fb2@(_tw0#+MZoRyQjRLwSAhWmYDczOM$RAT)XEh)e9#dE>oZj}%nA@F
zLnVRe`wBf&K)t)w4eMJEPt+y-7TQNaAtrxgHRZT!lm4#B4ON%KPIG|#MrDt9{SS=$
zAJs&qiQ9*VP%i*0@0p-3cT!PF=_y$H&OefV5~}m44T5$Yp*6ZHx;7vI?}xa|;J%rd
zQ<aw;b>HDff=+{Sn32qlH+c&oy@<cDU;%P-^b7GT#U@>SGH@e6OI`~lIGv{06?U4F
zIiTv-6HDXOz|xfOGm-6(iBWbAenU}iIy1T#ovv+n6|Ce&Gm@B#NlDS$6vF3GJFfUa
z^!hz}?i}G$VwU^^unfd%(?1o<nrt3trga_V(*n3mnSKTF&L4}Hm@>RlSoRr>0N$_(
z%Y&_8^&z~5+^4Kc+B(@KjwYi{tqf+nwITNS3Y!9muxk$<EQ@N$`jxD4cgP5tCT?He
zOW6*+sdv*{CPa3nxW=!1jzsb!(<SmQJk0)1b<v`4)%RKcEGlk6u@bW_d$NjA&+ZZo
zb_2)gT}`Dg3R77kRM7}`9pwOF;o-fD?x<<0kEpgainxD%XrlR<yqqy;1Eq%-nZyNW
z<^8qA5ENO6e;=4kNx`VADHOkb`*u}b^41SMxv8Gjr$Q#2D5Lu7a#`~5qg(xQL(3{E
zgejHrpk57AzwpF|IA!-}Bbz0$aW7e3=a-@x>ww0S>KiTUD79ReA+?N)F0uRBe{Mv+
z-Tu6TfAt$QD0r>HjXG0KQs|^9J$eVvZ&@y)i?)}32=?PRATz~c-*_)<9_AQoZ_!&1
zJ%OU>cVMGOYII?+Htr1yBgzAHyKr$+{`Kqs1Jler_vWPe=rM0Q$X42-_h6iq$VFt-
z7d_M2@Ukyl$*7MMY#!zDUffhW)WgeR4;vE%fBUibYnfn2>(ur#WEE#AQI&KE3=$f?
z@UXN{qW-}L##U8T?GZksxWTWM>BFK_EmZ$3vQ{vx<9RbjnfV6<OoMVZANdY-^RzVo
zKoXNbX52wBAW}E!9<91K=V$sEI|JLqqFYItp3}k&$fB#vYmgGs@V1hJnv>@bYuN2O
z@g^vKsl7xKKw!Ys?E~N*g|}scJ$?1+%!{*PrSwn3T>nfR-^K0C%<8!N3t{o@G<6?S
z%FxFm+qoGs)$+FkeY#TEIX7^8S3J$P-V2@9bG<9keIF}lkc_5~Q4b#0FB=Gu#srB%
z!Z84C(#*+M)S{^hJ7^L)fELOLy0D1iq%C>kNb*7x(-8ff<LC1V3uh56->A}7Q`5iR
zL&8wKtHgkBroP6)EA`&wckFPN)2D*^+{@fND4Vj{XKuY=ca9Mk4$YY5U$^zfJf~Vs
zo4)<~8;l;isElGaaJZpk$1YfPiTRv!vQHCjq%@Rth7UQ4zzcBYmxG0AW>rH+kM1V$
zN{Gw95|C<-*!D{G4$48rJvGCvP@782T0-$f-x4q_^uKtqcng&EF7(m{eST@IJQ;I4
z%2>s({2uTy7ZRR#m_Va572MKQSsyO}ColIa4=bU0fQ(RmS9tRfkK!)mz0`)8LGR|4
zytjwFKLIv$tek=xzw?~~<^;G78eCfAXuETZUi>$APi+I7A0wodhwetd#*q5bx8obo
z%<E8RLVBN3(pxXpPS8&T%|BCHm)K(1S6+VUfTz)Wqb1-pE}H7<YSG?*=&Jq8uF`S<
z>zsx;laaxo`<iIS$HxAMq{wC97^+ikY<6Pa+sTO9JiBYfoJ7q4UrmG=2f_j<eH9u)
zR?R!ZTKk<44uGgx1`ScOVLRMCZ|^f_!7^sBD^m1&Le0lN>?6<w61r}1L{!Tp8#RhT
zampyXtAE`O*VhLKLGI+CF=VzV*D~KJ&5Ym)?Jim@8OsL>fiCcojQTzs6iB(m%;Bjj
zii%I53-5g-`LIImP*Sfja9~#!3A{no_2x5Yw}hf&`}TEXO>Z0$jleP&DJ@<;VBkR7
z6gnLE;SwnZCDQYZe%4Y!7JN-qoL|D(_to9H>A+tX5#Di^2M>M=^6ob#dBh08b92uA
zKou}WxACP$*IB+-2pQ)@hX}wH=~v-T!p+aHu_VDG++3#YW71COL;0Z@crR#fIvtpA
za&znLkPX^-9VgMGQ2zAk0Xu1QN$Ye3q1344xNN^MV+4^D`&}h%JHT^E(@l07`q1F2
z)<-sbR}9S}EbtBr8X5J<%ontFtYhKGj06;XJ9g}NLezFIyT?6>2hh%`9lYx-O?+-1
z0W2-MdHxOU(BrN9FHi0s^I}!8?snw^-wgRf+jnqztZ!)4v3yxmljuQK@tzI_e)0xk
zYAd3Lguk7=Fuc6)9@%lGf0Woq#cHX1zhch!{*R}=v7K_Sqq?0+ZS#QNOYhQs{83fr
z`Ezln>r!5+acuEW_Q4ZIWcsM=2Twl=^5j4{&F<jtOrd7<71M{r5Tv0qJ=4($u>A~O
z2J4QXUCFl4H9Ln483N`lC7O<g7PGnpB1#$4>7GjZ*3N$YBK3Z0pW5E3Uk{@rjC9KA
z`iK#3ojP^G<sK@lsfl3+_szj|%_l;b`(9o;;%Qn)p~n!T9A<@;ZTyK4hf#;FjBbbH
z3LF`*;P|YrK2<$k{Ku~j=<$wrDi`XrC)b3zWj72l8g4VBpy9_n!rc)=hhDRG+Rd5=
zte2f{pi;2IRp`>6H5<}>+Jj6`Oce`3WTx@nt;e)z0D|2~+3n{Xk#p&&`KjMr@((2&
zKj3*ZuWd0}_1%H6ix)5U-OpI~2$a-^ADZ;C!=nhv8_!ZY(0A@yoW>%6VXs<L=lP(8
zJAeOO<^D!G5QrIdiZ=Ied1r_rNesd(?wjUnyf+480z(`!t_3Bt3G-!PTVMFs>AJm{
z!Ra+6F*Zq9Wp)JqGgla0F%4^63SlCWDC@X9_aGj@Nn8&D=d#s9uIsqHS^4zZ&Q!HX
z!hB=!A;u@w=GXi-k$x+==%&T&>rv(xUq>}=ef{Tm$^*NhwvB>gB}Qu5T-gGR^YQ8L
z3MN=R0i{PZ;_9w$(qU-ZDB3X~%o*3QG5mK-Y~aHsRQa6Xz`Z~^c!!JVRqalsLtm<C
z=!GVHNT#wY{Nk`#&cs4<=;9VJ&Vp&|3^orOQjuAS5OPi4OqJum{>dVzx9FpT14eK;
zbYKVtC;W!0RkF~fH8w`t&nNDwfA#1=-|xQp<~f<O;iLC}o3n~cC1Q-WXP;3YZzdiO
z4L!g9g^^VgeXMlrY9cB4>*qdOMQ3zm7ERDH8tmPDY<+pyT$6uOAoYeEaL1ktMwv$Y
zqQ8g$lMd9n>OZ!Nm7U$8a_!O_`WPIi2vIY~-;XI}CIGuW0xP9Y+LoNIA0H>V8lc=;
zD1=)tUfB2Smemnwd*FGaJ52k1QXGk1JhIaJV6%v<*QPq$v1}?T_1g4E^k|%?djT9e
z7tLfCdP@14@CSGAo}iRY$gwjIjtYFGrMP%ja>8I&!B6_s1VYVM3XX=9#jEHjkM}vs
z{Xz_oY4RqgbA?-&1JBG>1JBFzX|r0BXY+VR&4UW)hI?ts4<|e|@25S11=f}>eLZPd
zpQMaAfL`;QLw2|;{Jvv{wTbrC&cDy6U7>iT#}Z_oCXK2jrci!BE_#yOP1&u9sq*Jx
zX2@_&jaFTB!5A>ub|HhV*S9pep}4%cWcQU-_u|AJ7PE?9DHu3Y=hikm4EwHhW0##6
z<;fls)3ZMk)-t?p2<*i2wsF@ymFnUv#Utx=4a_GLT<ot9TsW_QP?(b_hUA9b)w2gG
zHQ~evbt>lJAdn{Yw?{!8MUzd#u6<R?%F82g%YBzC!?lJ1Pn|>v;6Pat%1QBIFaY{6
zY`_qQxr|75qw<ldouf)=IfE0dqG^FK)`c=hEqv8H=5f->3a-VEHeBO41~(cWKD@MX
zOokhk`t>-<lRVs6o8G_xg615=T_48-N7L0t7&DOelkhewZs#IlYr!_dAadC$S!K2_
zCU)o~JEzcHQHd#d!zTeq=l=2@lmC%X>2G0vD#H(181d1vJ$fADEvCA<7BKBu)$GrA
z=TXBXi!zGKcORLc47PD}Jc)5L@a+0sTKCtYp}!M%?tAKrUEE11YkS;j>Xx1qY2>j{
z?r2tkC&b`|`j@iP9YLXYzgtF~GD~Ld{IKpX*BN_7v}E_H>dBL%_|g7D?h1r{*etI(
z@6x=FJi6juylK_XKMz5Wp|Qy4u%Dlw2*Mc7es_t?h;VU>bWl*<;@-LQp2#)(i~Sa=
zH$MztbWJ;M>BL*b#g?e^=D%yn`S?&NpL8C*!ZeTyMhSRuL#{Nj8mR63*Yh*|#OMKe
zqzb}$khn&kXnC0pt|JZ$v$&<vr3SvL$9U*r&ksXtRutZ9C~oZNo}g}kyc+FSn8|lt
zDaVQG(76vk5jkq);T|!g(kBYX&V#xW9=KsCU|H2~-F3&dTv-9khF3L7x_M+>yFI?<
z50tkS>wG;dqBINzxLr#31*l(E#b10=*T-y+&+D~M%Le>!u-lhOaf4@9K~IKyI}m>O
zQe>;RADpp>jwozL+fzTdG3R>}b;Y?Ud=RyMRX61ukfHeEL)oE`JYWuOu25tPLy?g}
zl2!<;RR9F*;``AYX4Qmxe2}b>lGdsS`Kc!ytgMdXTpUotFgHcL{b~rNBEqhC&a_>2
z&66juAI7wjXxZ>{f}ioMzP5!S-7q&g3y%<O8oX_`SwmbaCKT8I`JF=F2^zoe+9ghV
z&gp{t_dh01D55SZlP5-;q<QU6qn9}|%*RerqNYO$i7X#II@kT1@Ch*Q)puj3qZZ92
zMd>|o;HcpVE}3<e7vkgnAfV6&`5&v7<T=J%j$mI@Li78`KA2aJ;8>g~^`?hr5(FGt
z*6BZp;$Nw#PDM&VG*NKVZ_2W3{g?0<?eqL-2PrdLPF_BGXJ@%eHn4l;H7#TUw`rqk
zlW=yPZTgYP7gF~t#I(u5h)T{QG86M-3tSdqC?JSZx5yFR`b0+Bg&xgEtg}*Q^uo{`
zXg?btx|OzUKPZYivu@mYme`1^eDHl#u(r!APVXh)hoI2?N|QZ{{jWcMtXuHo?R-_^
z2rn_|*J=Qcfyf4LY(ZR@j{vTB@803WNNQ9nKz7VC^~k0a4;pj6%VjQne80%qi+vhg
z%CZjSoI0{1B(<<`{BqrmIV)^z!eOsZplXw@xbhtldZ<_f>>jpq{JZ58D*}c@qWZ8~
zGQ~dwdZtXPoCA_Xn>3mVguyRJq#*Y(MHXA;5igm*)EaN?#tH1w{4snH)(pJ(Cohem
zFW)oWIRn0>uXxtnvCzJrF;5&Sxqs2=c-zFxhl$46X~S9}T+Vw|*Z<1=;cm+hdXEF+
zo|h7V)Uk+fi?O6u2W}B5nF&&u5$8nWw@jmH;dPq&3v78wNhrd!um=x2wuTICada{&
z*{GF8XN1sVN2doRlkP-pcokW2kI=t#Ddo4;%ZU{~;t%83J-rq=dhDY(8w2>qr-?O&
zVMQea{KM(KEP2(7LSpst74gd6cfJg6)Z6ziq_t@_p^?@!d#NT9NvsuGQ~R%dj$lY$
z!`4ew4?R!q&BVz1=eg5`Ocr~Ij#+`Y%0wD`Nj;ffV6nw@kKeLiwchziU%e51o&>)M
zWKw{n$y;?R1AFI*NyQXG`r>XZwtuiGE#HY2f<At}E8&R8S>jWSwl+~Q^tQOQWigSg
zbj8}#d3WbgyJf^Em$B_R&ua=$%k;d3(;DqJYS|)sFPRb<=0kr}JYH$f7GQ@&1G00R
z^N4BoP71pl^N2pc3VR1mUWBO@r+aTqZe5E{1pSCpx92Q#(`k7>>tUL|5s_UU;KOlY
zsPU_LB0Lzpb^s|Pb3tbi%q2lMhGEQ4BLB-da$&)-Y4?-e&WXcDoAmiamHOw~Uqb5>
zbmYi0+$XL+nxQi}L2Id;6;npRagKqiEEaklCQpHaDBgIi8DOz$)hbQ$ATebg?LaO&
z6mfdgj7EAoM<M$lhB%_z(qQGMx^Spj-7+&X|E-UN-z|}65Ubbz<(}2Ee8+}WzI?gL
zIrwH}(gA;v_S0Ca;mq=tYHn><Cyube_ERjVc$(wb<5xt8M$NE)ERAqIURI$W4*(BA
z2^svneADppeaSEzWL+I@W<Pds-3GWm59s}X?3U9HanIHp7i=vIavD;A98@3`B4(^@
zf`nU-y2$DwZm+^(50We~G&l7kzfAs;=i+!`(dhsp(Y@U^2o$MyNCBF1pZ6=(FB#0<
z-BU@^I^8=`cO#f1f$1_R3~$*>D~*Vk#nf<X+uh1N9}nJKezV`@59NVT!DBQv^S{rM
zWHbg&dD^I&(YwgrP=EUcV;2I<1vI5JC3O<IfXW9KVh{zb)S1e=59npIt#t2%;C^Zk
za1JPVWPA1uB|$pDrkX@$ikRb@VQTAz7YR%r6WpU_aWefb4YyfpgJL7D%12N$T#~d2
zG;RI!qtKv-N8Jv5y{n$h<{!TAl&V&YTdieHnD6ECZO~_i)v5s0XV|RrSAJ`0X<RE{
zR(JuetS!IswlTGjLum6r2S@KSG1VQXerI^8W!u4qMqS6J2ite()VDF5qkU_wm6gxS
z_qW=~=#>k!hR1V;N?9fazx8h<r5T>#SQpgSsB5QA>iz64?C+7D8TWYLKoNM-I(U)*
z5&&QPBD6cnjXs59#sZ^qnJnQ9S3DdAubNq$b!cF@h^L)hD$XT;tUURquFk;u3Jy=j
z@k#>~Ia(WDE@9q$>h~?rZUrvJ)#$&CXu>KOYi@KtO~^1Wjk!!lfW`9*Q-HQObW)nF
zLD(IqE`|uLSO54YU$g)QC@PEzaZLySOgc;fIC@5~h~-C$u#hSNXId064%iyt{ACfk
zBx~0tg3*ghIhfJ>cn&hgy(qS0IMX9gp^!E$T(|CQXlSSjB)>L37B67xa)C$)!g>MC
zE=AZ1IjlzG2$JDNe6Y1x%|z_A-TH4cyATxSLHa4)*kJHS<M!C|=S>a_oynWMFxhEU
zM^028vy5O*8dNHB1B!`)BI>MNfij&pZY*L}k)i~%lSf%_Tv?iE={Qh#>)pQl<+VIL
zI8l0Ph<@as=101^ZO*+G<%Ac|1S?ETOq8@G^2B0QG>@BCAB5pJgF<=L!!Xd&6+Z9B
zp+Q^~CyKaQAAZ2q+s56^M!u^Bvm;w@p3c=MXhvl0OpMc@{(0uCS@NX-bOEvQ#!C9W
zxB2T^C^Y$Y!mZJS`?316BOP<L&^JKymY6#2bJPNAJvhm-X}%NcToV`}&q;<zN-J@U
zsS~Hj6=%-Dd=`pCitt<h=Stk5Xz`M>e8(6S%;iooXdTm0NrcVB@5L~B>w)V=7OkG3
zRkA&zRBR#t4HSwwc2&?dC$p9xzv{5!3szG^p$wNgVDI`D1zY1xsqhi1+_2Wm<E?G&
zs!l1kIOek|##^^u3v9eosx^ii4nQ^^di*%~;Bd(#dOD$ro7=}TYb15xn;Tvq3%h%!
zj1p=0S1q7oTK#eWVlhS<sbYS5MvXk)%BR`5r{Z4sTS4oNU7tw#)tp1#mFLR8laVpY
zB8K%^S4jm!&nd<DPoJF`6q`!T({(O&nCNq-w^obmsmqtQ?b|-JQ~Ihe(~3Q0RTqZN
zNH8069}OFCw}9?PH<#;2IIUaf{o8NTld{cV4d&LYlRkE?$UY4@5D|T;qOJ_}$1?Z*
zy+<w?oAD}k?0(XZIRJjME-XVyi9aok8rbKi5?dNvc6=&XOfISEnp98DaGb)mC`lEK
zEiBxg^(LgBA=M-))^we4^U#<O4A@(?roLx&fD?L$-iWu!0hT7MkBVK(#x>!vR%CM?
zLQRT#R$$+k690hCA1P0aiza;t@Cwv&v<;pXJcN~AdU4$`>d20v5u@#oBl<b9-eyU^
z6f&k8tw*QMoqZIW5u12=dChf|yG*~!!(J#P>+_p?rp%@Yq(FA3$=Zh(f9|>K*8Cc6
zI(3Kv=%OW2Y&8lRZQU?634XT-rOz`)PfI?M@x?<xbsaGA_D#R=<%>2|_nWl-1daNJ
zv8^T23l}bkv(C!dZ5}1Xx%V0tMzwh~LG%d{Mcb$w4@<73&~$q-;L7l%AE%BT``W)Q
z+>h)K4U*UUZ|Rm%Pavc+V!ii55z-;e34h*~`VODk^aI1@O^c?dP$t1{uAflmWduyn
z(Rrx21l4SP<SWcvZ$`V%@oYZQ2Z-_1{M6b@UF6hERLurv;4D8V_MR^qWDu5jl2!dF
zu3^ScKm8;fQou2Z+;X{J_?!bnGm;dBvVpW?#{3fW{Dyh^PQoCIm$exVEsqu1%bqz)
zuxg#^*;8OA7%OWpF51V{M~<IcF?|S8-a)DXapgx;k5<xrnZjX6+?t);PNeRxQdGXN
z>)Sl}E_@}Xwt>^WG-Yd|qCH`x@`OsIf|*)`&Zrm1rm{ti5N!K2k7=oQF<&`eh1L<{
zI<_vQdk&7-_SEwi<ZNMVkN%~^zxGIBY@?JguF3<q|Mu&z=UHr%TlEdKRz5jb03K;I
z6Ot6eWo1kZKhmMsw+TJ74;3hN=^7DnZp8+z6@PtynK^T*RO{EyN_+9L5+inysCL}w
zrRProt@*xirIL9in#Ea9rr=X?p*P=7Dp53l{uI1R!&s^OP+?K>jw2>_>a@m)YdH3S
z5JBWfkIHk@5bv52LRz8u-r$p6mGcIs?*(=!^&-fW;iDJ=rPR{buh&r*u91<5nyMcB
zO<6!SW3QlaT8R~;I10?rr)LKfoKJ5$xPhuwF&|HI{`HJ&SAGtOAkV*N+hZg6HldeN
zVln5$D{Y6#FK=gl?k+E$q4t?GXB@DF<ASvu4@y+?gP?Ne{o0=Wy%<FO<`M>*>b?76
zYS1Jgw`)-u`9$G9j#enReSVszpLp@&;q}=Rr^hPZIVu>U0zRW6yVul_jua7aXkLJ(
zWVFZ?#V?Q|iFaI|kY%si^m_X7VJBq!w+L{p--yi#+;$c=q_5%Ov44hXthDu1IPACL
zQVuH8i8tzi(_aXCeh~yL=jFSKl9Cnb^X<ouf7;TqBCE1zOP2_{#eba|O#mPd0x}Lf
z{UGP9-w6Fc;E$6O9eD2EJuZPGJ{Pf-ZB!)5;ATemc*RmqfDFd=;8M1MDWIxVGU`@{
z_6hS`Qd@QGR2a_~kTLOej9bSF1A$Au*gN6z*i=xxTvEWmGZk~_6|=V<L{_=c64G<-
zzMA4IS2F5q-P2NqFtB!_qT&ps=7w=+8U|jY$|#=zI`WmA`x*&hfU(r2hVljSa;?;y
zrFYxO$Q(9oT30!tc&m@~M6LPA73cmM?KH3`Bn{)d_HzBAkG(^F>1olZvj=dXmR=Wc
z`k8cny<+I!L-pdq(9>t-slU6TE?_F2md0XPNA_-#duz(L;Bi*Fa(jHk1K)jPr*W3w
zh}jdh{7S}1of&j`iz$fn>Tc9X;i?vX`0&A=`$|pV4C`pk=~2PMSqdyWj%^uF<P{Vu
z4^UxiUPJGUvWsh?Y0#2O{D6XZl2ssi6eoOjYIJZ6*~G_}=W@JiK_}0{VV=v+!!c>C
zef+R*2w5~za~scc8u0#+kwe$1M=p~m(#zVAFkdT`csh@*?BjYygwzX;^R85q283?D
za~(5c<Z3>5t{8z}6DPRL7YmINauG53%=acf&pP<XgvSsgP}s6vE>K0_0qI_*5^hPu
zt>!Oyf|26XJ_l-0PX+L+Bs>m1b2LK;=|St$i;JgDF}SHortQnH9kFb);w-0&;EOB1
z(RZ@8w*L<II|fa!HxZMGI-XY*n}P{09B?ujEr-UAypLMbrvhj+@cDp_mm1GlT>hA-
zMdO!r#Z@0ON5try``_Vn=gt9`*mz9<7JL2rbw##9>-&_QJ7>mSA4G6j8a_Tq-jbq&
zy=gS!$e6Tt!^J`9Nlk%gd>+<dg9@Pp_d1E#Aa3N7ozwqulqDR#MfCgHTT5%TPyqM9
z*wDLy=jBE&`N^x8VO^_=1`;g{K1Vc{nU$6GePn8lt!j_?^LFo8{yb0Ks2bTZp`Di#
zanRf(lhp39y0>`NbgrIaMMszSvPBCBPJMnT2Ee*m7_Tt}DXKl`vnbhSVx{A%3-pL2
zP7q{-#-c;#spmB3S|_xHF!xeMb94@nS&xHSO#lLlVp6Z-{`&Xt7jwGiUYp3XT|~ef
z?B>PF<1g2GU1uLt2%|XpB0-%4{q!kc+!uRV7=o^w?PPHwTC~Ss_(XF!1)I5S)V)rG
z!6wJ1?R-0Wi~*C23jwCRYVj)POeYjz4je(1Hd8J%Z_W4%h&2fPtcj~qD_30KUVD8L
zaE<1&2?gvOLjiB4ic(Q=#AzL(v}GTMewj$AvAA)oRSHNdvcO#We)sLS4jeK`O8M_Q
zciOWHh$%D^Kt3l<@3YP^FKjoP!`924>}_sML_jY2rfuF4rY5=Nbcv>(^#s9Ql2hrf
z*ilh4n<=pQS*Kf<E+#y~kPlNXacr84Tbo11Q8%>Z>2_SHcki7$c8JX@Qc0tM^Y_*<
z)uI1>gr|`#pR!vEmeTHn<FB+1P^wxR+%WJ3Hu%V?pGJ6;W!b#?GS*c_CfJ5DYUC1r
z)Gx>aSP2RbDAD$$9o;ZfyXI1PCji7{qc9j|rslK%q@+ZtQ-pr((|qO+^qM>G7@1&Z
zTH0)4G+{LY%0;>Z%z7RWND}+Vtdx$Cx*6TPIm_yUARBVZl+%2lQ+CNb?NO4X&Gpeh
zyFST3igqE&?H-f~{5xrfoyaVG&bSEHuWQ!=L{Fj|j_8G6SKE|B42LHiPa}PpH%-;d
zkDa88nx66)NnUGGlxSp`VYMF~yX5R5;fQ!nOr>Rbls$9=_=8Um*?RIh9JtW&W6v|_
zD^zxv^PdH##(~x7xKsc-Oq!5L>qXZ!z`6oKPe?#f&Iue$Xoo2=(n@O8kF{(?17JXM
zu3@$yiW)BEpVP`3=xgQ5mt+STpZ)1atyOo&=DwpaCJL(-O)Eo~uy6slu<pw7Y1)LO
zA_Eq|>#CfWYj&E=<gsg!S1m_RXtZiVfv7bj$=veF2~|ZQmD)yIQ#fAARkk$**Yd?a
zkc~OtbszK`1YfAa&}E$Bm?~GASn%<um&8uvV&^%n?)Nj(j;Y!{QacGD$Qoy#hI6Rr
zN129*4jWN0u7=y_9_t1g<O|9;v<(vwc$PpexO`KNc(3L&RK)`HTslv3C@|~UBTtFB
z4<h6shn23l-b8Q5fT`{&1Yp*2YZ)IUs9~_O1#Cc#1e#MlQhXBf_~D~RdyhIm<1`cv
z(f$+IU4%6vspXNQTRQ}HgrA&Tnp6sG^yc;Jv2K?)KqZl!22Xy!rRH*^AiHScB@IIx
z8Z~2gPvP`qe}I+WA^LsSzqpgu@PS_W7Z?f^=+&?etU;Y4vl7KZ0A|POa-R@NzqksY
zE)l6k#4-ZcM7AnjaVZKOx;Zh8PK;HE>2mq7Lvh^)`;>tcfY!|^OsQ>cS$Qum{GME0
zJ7@W6(HxDo*WfJnem?UNyjsn5;4BFHkBb0!^C;$r1UmJ)qKFSt&59YoR48wM4%}OE
zWqWqy4r2{H>{UK^!}`v)G~p^L`#2tL&$i(H&jA%edyMo8V--f=Vxyv;GNM;FS}&Or
zSYv6IC~{Zb8x=??!6xmm%yXdTY`AU&eo?gNXfw%mb_Ye%Brv#fN$0jU*B4dZkFPSG
zzONSSaQux55k8V02Y=X#FNt@pTIBljZtjT+!2Zo7+a^c#+7T6*ibR~e639ylNV_FU
zA%_Z4si`4GR^;!<Rx>YlYyeF(V&nTUVqI`>@YMyRzpemWG^e{=)`0r061-`lh}|29
zd&@Syx6!{W0Gjvj-OK9)^neUrlbEHq>H<C9VIc&y4d^G}TP10e;kMI&)n_FY<#M}m
z4kE_*=2b~j6x;PpVww=^1DwvQ{UA;@Js6b|EgjmwTAN(EOO!w!ve-QQMw+cJ$BxZ2
zUmS$6R#)R~_<@iuLD&N<k?~etGBt5UhTEtxm`@q6s1bKMzL||op+Fc%Sez89&VocH
zOlB$QNy=#Eo}aUWRKhGtIr0$oVk@~rmieRrLnXXRw0UA25KSaEk%i0&mvS5Azo+ZL
z(MDl^u;GqWR(X_x3q=v(h<tF4XLSU+tR;S!&+FO#_dYW#rIRS#G>1v`y?psH9wh=_
zr8;=<RmHxd*qG2nDI*c;F@8h!QZ4BC@8cNcwTzHjFr4t;YE!3PnKAGlH=<}~SFyfH
zm1E&7JPAoh0rKX&Q9<%)g@ua%q{sJ3p|pHkTpzQ|6ccDc>tlYy8iM+*raDwWY|_RK
z9Xj}r9P4+#Ly?TmgSujE5mmOm#-5`Pj@!)biyby%+h*j;gLnu-X!R1}kd_x}#t4yQ
z(xW*Bnl_oT+S=Oo`1Re>3}Iv5)Yli#C-?gk5eLXdf$Q$roVoCLGsRc3<L=qo+egvo
zNay`UQ18I?S+s)R678tE<m^$x_r0}XMe8v%COL;p%d(FwV`zmam=kEus@@CyR<u6e
zUF@oPCNMfNxi+=GfJY(N?Bbev6Sm+XQUPFZf7PQ)DQ8BJCV)E0x2sCG(0U(s_}Gj`
z*2L8HAQ=t>4dVHPdN^R3<2i%JOGC6d60>5G-{^-P{eS@`WEsLluYwa(pE|mtSl6Qa
z*)0YLY8YfY3;Y?Nzp$@i;P_k5)qM+4@|;9X$W;_^*3X&fX=PL1JU3-3q3W$gdx(8;
z>5(L^{>e3pH(G8Y>@x>WzKzWnEnj>*qG2C^`9g_LCO^2GszN%hg22uIlyLmLL7)t@
zvYC!&&J#pK2NU{YMS6J1h=k|5qgU&;o<;MtB43cX&>F$s`N&54Qc?N35JFwOBM|pe
zQwYq(pp8<kjpBwywtCwh@`#qO)aokxcsSrX06%`Uc3nVl`C<fF4?z=2wGTZGs%Eq^
zCH)j091k1SiDX|Py9u0!UUPnm`(w|Zz0LI+Z_D;F0!9-@GUI+xT3Xtssabh>>ZW_z
zwcDgS>GN20z>1N#IGYqInh*{sNd)31`f{`0b5H)v!TZSMLPxJOkPDc0oBJQgs^UT~
zW=HYNjA?HWT48xUI|{005ntF_TbFb|q#WQuQUMPtHx3wc`K^@3Hs`U0KGhjrhyP_q
z5=)J^xc1ZpQhvpL4gxT*b-I7=p783!bvJHB5<Owk7D*mkzW~L&RnY6Y0QuT0eON6G
z|1m$Ss-zGu>%M<TNELVC!eaJ=Dc+eeE6c%|i~%q~h>t`B+=(VzpEV(e10UYdAnZ1e
zzzFN3XwS{=Za)G_)}XFPS^Lrau)FiGA-+FACMcviVj>g#^5*guZiQ`q2<3oJbW*fQ
zR49RqF-gQyCg0G!qcvZ~^_TV?1P#aTA$lEkZ{QY!9HziLx|4DS9@&IG)HJU>Cf*Vn
z!H@bLa75XD{rp$9qANLpcc}!wBjP(y((SC1(Hj@PTsV+<4wAmQb3L)l5Q19nEnBS~
z5GmvzoBo|ovtWBv&mS_Xy?(ZqrGMpLtUy<!S?{v}s<Nnf!hslpQwe-ewnJR0>~N#M
z%C>ft8~aBN-KwmMeK*{utz?4edVvI2;@R~n)<<dcs5w<RzlT}7PGp8eKE>Af(6vM*
z=6JF@e01=~x?o(<WqJm&o__T04va23gvRXf)>W|ob883m`;&e~Vgmt6M{r%0v@hE|
z$x%NxrjdwpAxmzYKZVBV_sUA=+i$F+0zQhg<0BS8Q394jFVpwJLs}^S4*R&!;c3Xs
ziaFgox{sMOabno>1`wz!h@N~ZUC#5nGc13@Yg7^*7I_buZq#&+aA=C)6PaXoT0rDm
zN0)*!@<`@k%fktwd_xnl(f6&bEAk`R0GA;aZJPE@#AJ$WJ)=~(3-Z<HL@JU)lk)IO
z<{zIOvTPF>yx;bwY_}vmK@`ojG|F8)XZF`$miK@7Y@}rdclO-3ZxQkK-lHq=;z)Ep
z$QHl!lLvc@rf`@C4vqK2hBsxBbH(f7VSgIUcLFAFJVTpOhj;6uIoUl->fXN12YS?K
z3X+N2g^8#F=Sgy_i=bx!!X{g2`+hmpQyW0kOAh_8gp8d`Sg<1k<%D)n14FZ59HGh1
z_8QADCt}wLXV1cA!sp>h!?@*)%*@P(&)S*k^ZUS3u1rJWx(%>~TH7C6`o8}a!el)n
z3h_nJB7@s8VKn5qZ*N;_ikO+;uD7gg7+W_zH+P)r9;r?iVM%XPX&`H`EP~IBi;Z<F
zZ(&@=*lUeohzJ-hlM33)T-_sDIn0_^kBitHY*@3-VJlhuZF1U?!#Bi=$vn{zj*>xg
zWKS6Gth6+hM~?bYT$(+RSjPR0gn{zv)_;s^LAH}myzZseb<@v1K98m5S=_tEug&|l
z8^Ki}9SAg<l9@;mK%<>;=+!UdV-7#9VDfajL!8k>t!_h1Woii{=a9~6r3z$91T7Dp
zcsxzr`JPPPe(mc~P89u|AkwG;L6wTo(Gf?GF=;%Vp2V+UZMD1b9>fJ1_k}_(dcm<@
zfpwH5(Ht?{r843GuaP}A4Y6sqdH7|!$S4Xu4j^IbCWx>}5WBmAsS;d3D5aIkSsB6%
z4H=7x5HMo5n?RHcGrqfh^xqy`U5lUT$i|(`gVIQ4kl_Lh7G}jh^-~l*CW#n0lUZEg
z*aZD^WETKQn_`UUoEvnko$2rmxfhUU-0d5)?81B;-Iln0@#ODBozd(&I}^7Yt)H%X
z$c|d^^4T++Z%j&4zcKm6>&Jf}BmKErQ#1{V5;Vs0sMB`^uLVIByo+K62%DG+db<vP
zVXahqJqqL`NBYzR6-%iTiG`VijJGQ-H63U|>p;Jn*wtV$07v`jM{{!tB9wcJo2p&{
z$@$0j#N&iCJk6(!;ILMZd@%)+HV9+9ey8i!ODh17C=5ry$ew<=>~0~MA%DtgxKa{E
zD}jJ-mLjJ<CNg-F-B&yB_g4Gz2-3$#FFG9!aM@3^bry4j`#GOMSmMY9rCvnAAB{cP
z71SAQXM`KJSu&BXzJba)mo8p>j<zPN=MiI=rL{WSUqAV!--veJrsOzcYXnSkjmBcb
zNJZh?ggl~rbXOUVRl{3cH#AkPWp48-v>hx({zMXm@n&5_lSgvA?QsHexNvZcr67bk
zqiVzSHDzIJg!v^$k#3vIffWUqJ~#fjoSdv4Jwrx1a>bINY}ZdO>tX0koHuMJ#Cs}9
z2%S7hUPrS1)=x16G7uxhB}NouuBXA4-{|F&mgn$nyv3k;L$*i~?I1HYFvV@J!qmqv
z|IBZoH^*ptwMp`D1!Cq|U7v5l^Z@AKN<v1v5Na3@)W1-d^A=M<j+~gj(LwM_IPiIg
z5<O0p<1}9+{4kp+=li}xO~rr^(g}%F2m$dHhZBeLR8tU4X5kOQh9%1OpHGS91cR|!
z#}Ew*Gtj9^7hl;+&+l;L>Y<e)R|W$sI1+pc(Q{JaAr-?x+i3D9uk9Sxsn5v66qfB*
z7z2cE)%18vjXj?I#Zm<s<BTdNQp8U$@0qfwN--OSSXm{Bkmic^Xz2069%yqaR()fl
z^kUDLl)-JMuP>^>+cdb*qNG=1ra>^z8Q(Nl#ngHN#X$?8K?tQ$j<Ii-wJihNBT_`;
z%gY6&iD3^I?b6QdmH=|`8teV5M6yP@f5&EY@{$ruJAvSM`SA$0iBOkj`?+NHgNHlr
zG%gkSv5>m*?0fg?7e!`txh{Khr|-XC0Pf;5#gGhFfWruN=?1be^;hR8p*{nk%HX^U
z3cj{hs8ayhR(oY3loZ@nl(LNEoaRQJ`RCVgEeacbS_e>ma-KEt9qlq3L{MN=7X=2u
zflj*FmCIY+WsuGiY}MyfBF<XR)U#`T>X0^=JnTwC(Y^Jh9b^W75Rwu^QlwCNkm}h+
z?FuFW`Q~$29K8UR7%=}G!k6$(XUHoY(0+-iPpEB$LJ0LcHq~<R>kZCdv;Zkvon2h+
zkmoVv>XgFvh9Rcy3Pjk=LM`MZC}t40lChb@uDD^OBj@3J%;)d3y#aQ06iq0aE2g#{
zP(({QQv?NqC@W6{xjo8G>M!V)Nu*gGa{I{t#N&UZE|r}cwi)zZV^RAsb5zAZ>&ff=
z1z7Mxy}P#=dpZ&Yepr?{X@caCo5!h@$aX~fl62Fr_w*j=gLteD9y|zavsrR<JYRkH
z?4J*96kjl!BbQ^XNgOB1L(LV%g0Cc2#j!k#Jr`$_C9rPc+Hf7=_(3&Q)$|64j48Cb
zm@71iSfyuVrJ_A1Du#IqX+T_W1y0$y|1t<OFj)M}hJf-8-a388In^?a`_s!~72Wt|
z!PMjvODo+tQ{qmOr`}^MbP8N(X=lk1M!|kik%ZM4X3*fB+7*5;-CSr{h|5L~Pbh8w
zNDO86c<TZfh$=h3Z;a&?3$kWStC>8iVW31OfQ?XvXe6*)=2S=uK>9-`g9w7l7f?Bc
zgo0kH1?7%T*)cWRLvBxaB6jujYfe|xQ?yRF-j_M4dZal9cY=zy*6r=Fz%LAhv<DOM
zWYVt@jIGk?*0pPRpm@sO`{;3PrM}O-nGNdPjd=02*|}LnCKD2>A75T3^oqa|H<y^@
zp*R<#DSbRD!JcO8^-j0`Le)dTCDb#1I*MpLbraagB)ZQ;my2CVbZO)D;Jp2Da<%Zp
zS$v>%(2fZiph)-Ua$uPYZrD`ih(I2V!k=CRtd5rn-CqS>!h)tIP}eY<BqR@b@#d0y
z=iD}JN+$}%n`<VZ@31GUDj(5l(~tiQT<#-);0zCwFj_kg+{;KS2lVDGw5lX_f;lnN
zs7DTLR=rf!WeKO8MyV>jdMhA;!SyAUmV!Vr-@?4`ph)bdNW_7w>{sFbgAwk;uo4uQ
zWO@}e=inLZk*f=E9R}}!qS=xq=~xUT9KPT!{v*Dz(D~=`EFyCkO$1UmVTc3?1G}{T
zxi<-ty%#;mrju|@`FvS)Rx`pR?yZGPS(EC(rFjG?wbZ+^3^$i_<Oz<1W)=(bmYThO
z4~Q|}5?V(CmJ00Xo&$Tp2WlQ!Ts(C~R$D{@3>1blvLLmwJ=uNJfqyR7V}gKZM7|;j
zh(I)KtuU1?t<1C#8PN6X!yY-dEtcqnSGx&0swV`3l@?c}mn~|02kLCP-8b#ZD@Mj^
z2O_NIfrn#aexw#K^&Q5c3Se*{5N$k6!rYT8K&e6(#l;Dw`jkztuWmX6cz6Gb`xQ}l
zV_z>b$Lk-F#XAvc1DW+J6>v7LSHCcpV=?Z<_hJ|mCwk=P%iBct%-%GP`K|o^Wo=6)
zY)R@g4{o^<y3?N_qB8!~*Sk+ezHAw~uTrG1bZ{uEtW<-jnK@&Ib@~S)my_TUVkzb6
zPb*41-fRW^lZCv-<7iLM?mqa#$Q30AI{+nodZniVrJ2xD8i~t%sSx>#zmQySDIbTe
zTgZc~=Q-+2g~%RLpo;#(-$;XB&Kr$2LB*9i&p}KjK!&=yJese2ygZFI0EEX!@de6P
zk>s{re0fheK(5XKv^)vwCA6Y*pOGTvjlwt(_f@;Jx{n`Dq*Z`ZC@U>J4qT_BB~yi%
zffl5~^%hjL^G^Aq{pN!PT!$e+1*)FPI~3sInr}AKIp7Q~wqGe2X%qsweoKdmYqf-Z
z5fTzfZ0G&-6UeyPTR6Xai<c}p>?u1ulypTRm?r^|YAnXe+#CfS2(o*CLU+oFf|K@h
zC}{e543Z%VVXShizOU*KBG{d~b_oMrCdhw^a3fJE=+re~1q(REFJ5=E{_!8DXkQ-8
zG!*z^sV^bR5r(F+9`nx^!=OET`SKK}R9{LFM-1yn)I8L<iYw8(57uQW@`DBe9TWTC
z5}E-*h0_>c9@h9&REZ{>kTxwrx;~d%_Uu_Wp5i$X*6>N=d5nTX^4u3i8X`CyQ2g0=
z+2ND==#`)SXBhCpp4K$8Zoh@<L;88s_<bD=LHlT_CM~wwi)VY!ge@$nC##pGrB<KL
z_RH0rj?_{T@SegxD~laZf;5602J%E?v8G&{^}xU&4+m0&{A4#5&^luQ)xvcN8T=0m
zI>e3r2MjeJlCvgY_O{%C*i6*<?5z+i92^GqWYeVibgMqS{8Hh_c#g&3ZA|U6N9qR4
zFaiMY;peAo2)yGdH|7lavw@UN6@mE+NW^J)52OLp{Ql!twZVKOxE;Rzwvym7XG&^j
zral1ZA$pQ?#6=}QVp38jE!TXazx5vU&%IZHzZU3oY|phE!}GM}EB%0|q~D`>IF`56
z*qj6;vyJM_s=crh6d8)%wyLq9prD(J1zO<U6)}LwXj7@=Mj8=c^yvv^gN2H;8cn3Q
zE)rxR-yJY;pz!+eqIZV$PH*?mOR;BW0Mj?6;}~}Qn^2ny;S+IQ>N`OZ^B~7g-^u6A
zF+}h!-b!>cm;9eI8~)|YMxg;q+TNUmfaaFDxO$IM|1@X^APSBOumu5=G)xEt1UDgQ
zTtts^r1UirHA%?b(u2aqqd9_coQYK2Px0Q}yJB*W8l|iL^miua|DEil3i=lYn|2Pc
z#kOraHW};hMmqkFA830yhkdf+*ZYQWUdXC6#D>Hgv~5W3bT}@U3?<2CKp7EKlzZ}P
z9xuiCQO!Ye&>g7T)Z6U6OkC%GZn6<nT5@O$*{i*#ET(tB5gj)ptiJ6DktOtdc6`5X
zo`}LFaiFL)Q4|$<ZMH$idNrV*pghL~)3#Q?12Qrh)Ba9}%kVX;jrp(FYM^I<HLTnv
zuFCrW;7=I`owP<@`gm*IJgPXZ-!v7b$ZRp2Rfy_vIR;W5wkyFID%zr(e&XBd-A3M8
z&Yz!Ndb4m2do8w9Yx%5(gH#epiuZIsw6&Ckj7vrFNPw;-f-)Js!UURh4?C(R0si<#
zgl{s6{g1T$Dc(zO-vxTjTyB2%AaxT)A7y7?KjCTgW(ipf)1hL-;qhD^#w?g&EW}tB
zo3=N7!)!$D$&<w)mx3+!J~Gj18Yac|j95Fp4L_>1EsFRA?^5`t3~O`xtZSI^&K@^^
zTDvv|!LEEM>6c)w#(lm}P1?wb3#GZmrwa}H{?pouw-K+hiD>O(IX_;tghg}LqzEr&
zu^#2xZEUv}Zgy`0k%`8lws2_jKg2uyoX3E))YMsk+nT8qwuz_5F}t-y>~L=_dZHN&
zoV0!cqmW{6A>Ht5a}Vif{yt^=n9ShWg0!Ll#KDUI?o@Z(hO3``uw0IMF*wQR<bbK7
z>uLIp8#lb#p6mbLd!&7&S(1pBtmx+8%slRZ*rB}l)nt*+(<nEsFZCxDG*D4*TNar(
zjlZc-aS`dUR89>;n~1*u+THPRCGZKkpFXVoX?68!QtG~?z_Kq0+7E^+UGNh}Y0kiw
z0P)*jUV8f$p*0a61l5*Q6v(+UKwW46KRw{`dx+lK>TLwEgs3i)jQ8^$z4||^lIBP`
zh9vC--LN2Yeni!#ZY3VSUb$#WEtK;N1(IMc4~a@-+{58Sb#Wc{2LAi;CjTH9{5I!J
zkr|!G-U-CBUz@E^7pk0sgw@Mn)%rewONpBBc+>UI7c~6e7xZN3Q~V$CrMwU+MuF>y
zLch=NlZu%yIQrxNAX^{beV031!Je5dwx>8iGJ5m>afZbOj_E@02*LAXCdMZ$PuXe)
z=C+j9mHkGDHO)JO5RN#<D(}a7z-V6~i)*{sze{DryYOr~hr?}(@=}cRPpd?HOQS8A
z5Tqeisg?YM$9X|C;|1zLGokDA?zV_aBU+71NEmPBD&FOvoVfV+rl)1}x55$$tz<0I
zA!h+uiDHp@TBB$z5@#bU8^%#+yd6kjQxj;AkRh}f6*(%xV#o}B^p7~2e_!n^usXJ0
z9;vn;5sFnK{#GC^Rs3mtO2A8V{5e7=;8N~0U?}z$3<Cy2DBRnSIwJjlI17GU#zH7h
z?%>0)0>iBy5LuXFN4K>$zi*4f#hqQP1Noi9sTZs|b)`S8ilO#Hs4d!_aY38?d+~pt
z@q5%>0$%`TiH;pb?FyAbCZy4Vqy2REihU>y6QMkbm=Kgtn?8MSg~)<{ghj0=6@uc^
z_jvpruZt@lEaE$HcXURzk81|C6Pye<&I#P=;iyUc$P;&T!zNU}Z+n|N8*oZ9K_uP~
zt@m-j5H`1#4B@9d<U0I&gFk6K7aw0h#cVt_7ZdQPEKzJwJT<*w3kY9rB06!iuZKP$
zo1g~n6!F9h+88M3T!!lV2)&_2UTU_~IdGzQ`<s7SD)8smmtK2>j0e96X#_v%wgyBh
znmM$Db;mtCWN!TR*WoCAej)jLvMv#>0@6Ik0~f&y%nKIFPW{UXFw|&{p=~s9E9;Xv
zbl1iV@essIuiHlIouM}i`ZDEWF5t%}^PN6ls3Kuvv1kI>-yOUW#S%$MJ{DPk0q}FS
zC&U|SO9;9VrXK@|5X@f^oM-4ZB8hNN-4h5(<Kp7fr~9>i*xx=iS*C3R44y)hhLwcs
zZ{EFIv}sd=@%vavKU{4+0LV#T548nH^^_NrWqQ1<1cei6$av<q(5Tza!le)400DYF
zFe}?Tc<vc-Ju-9uaSF5twLP-1Nb=zH>({5lnG~`d!HFTTZ$cPA`?C{VtI!+401llz
z`O@4|eRvbIT%o37X+)(nNr<Qx7X?lT<fqmhCKrz)rWGeuXgqgAfV3!V*{D!uv%J-*
z$#qS>w~PMZGRKt*4R%iZ)>C<~>gtJVi7&brMf6&}e)@}3qiW9-9*jRw`}?E;2X1#=
zHF9<HQ>TdYh5c01^Sxj1x_U=_t=<nCzR4bL>`hDFca3XQ7UX=VU2&DMS$&HtK3Wu2
zY_@d2?jk4iI(tU6xMLZ;D=IK0M^)&BHI-YOkDVK|>B%q25PCIkhRB^6NEM7|ErK5Q
z%nGt!vt~Yxw$RjX{@FoBX7e4$4W@M+;9yZt8%D=h(G(JfBgwVZ%<hOEJK6?*#((V3
z(<-Z~wrpC#<4_+ee1eS3(c)eZ&bRvqZ?24@e-Pb}lwi**tDIzHCU&C&^_fdZqdCds
z5%DHO9owexkgi_p`I)6|4rWhyJbsts-lBmb<3p)J>*0#vEu&FnIyX(AnyF<my+2U;
z9dOCkR<Ud<k<&oDXrktqG6<aM=!1VRK+I+23ighUSyUK=;0e!PxDd&>INFN7c=>WJ
z+C@ZGw~MUW%dGP~vhG?(dj|)7)}gv)|Ms`XwX05@a|U&;Fb?@>GGC|muarT(Fb#ib
zy{m7#QSraq#a;W39V`aBp_Kf%S+?yP6CElWH-G(+Pk-4r_4D$4{krGwuR+?Uuc<2k
zO>VV)<>=wRk4M`VJXZYoCjYI;fBQt{zq9k7DUkWkJj(oM3jV)u3JUKQea6b(&ZY<O
zs!5Y4J5~X#M#jcAh1iOY|AKif^wU?Oo6JP{VL&i#ujDZ)pNpGr|8Ec-YUdsvd+c3B
z<kaRDJ*r&_OcxitJFIS_Z{glte_Uty=ij+{pvUJh?5zhf+w#tq4bxU{d$9U~4P3>{
zEhEvb1B(2#y7@PSroo^wlN~g^ew@PR*u-N{9FSm;bLMb~6#TD(?tj^Ylb2j;$k^XJ
zs@Z-aLANHk&KZsLyY!&XA1pI_+Lw!+E<)2wuaZtC(B{>6dsC^x#;V6L+o~PuBV;Ho
z3-g(uN%ne&28F|1zI^zAjtA7*-bt@JeG9~tDzjzG`Wx*2A<Ob{eK1sk4LnDDy$I{J
zzB?CE9oz3qzO!$~=OF9o@69E0SD<F6OBGSrq(f~Sp`5JlY*7kTj2|AqPg%T-0=pp-
z9<G~yA=riKDetGQ8uOA&r0w;#``7zl6lLO!_P3}|P~+X*8?IlsAbftvG@mgNb#yjO
z<rA(*rcb~Aa}2fZw_J;sA0lhE1E#QFxpEFu9J6VjXTGI6-mPS}if6eHp4a(=G%2FP
zwilgWNIW89W5<!?X8YR(`vY%QG#0mR7h-7Cz9(0rJ863zZH+p)=ww04piirGRAu$O
zI3>W+=+kH#4g=7=`#1n}&TV^ZW3h^aIQ|@5P1`PML~;4%^xADF6H<^O)E%kWTH(Dd
zVa=m}wcG0g3EOXN(XAU{`9WW_>t;sn#>;DfAIwl?GP^3Nel%IV)f%+>YnFdue%~5?
z-HQgu^@7MelqKB;=^S=Elc<c&eC@m(a;(8Jk{Lgm%#xPvl(R?&6m~4KV61#1sd4vv
zrLk#)vVelSccclCyf6E|BH!4s+PQ_fbf_MT<6zb{230M-^3in7<@&<Wzf^)Cs-udV
zdt{OpH=Rjiwk*rOpO@x&(dRTl=Cbwk+s9C4OI9~CW2EBXvNe+UrMGySg7q6VC`*`^
z_@>ITbrN!_<*(eCaqn`^=1@5O4JFRkI;xb>6y+urDR&+}4ps@-sxFcwHo5aNzr}^G
z8u`5d!2f|8B4E(V9u&81SiLQGrko8r|9j-jZTS%um1M}|A~&f?3V@i{_~GM-&lman
zPt(Px7oFTTMWCIebcQtRGJyFrT}Em3I2f_&b8crYmUuS3yKrTmG{2z02BO?7Wvg5D
z`;gYAir@F@lL7|;Z7EB1o1S*J1E=W+5Hne~f>b&OK+Akt%<@a)frBcY=aC?aoJ=vw
zM2&RGz}WcCmXz!CNeS8de7eHsoT|^)<k6CK=yTe#`5t8$NA$y`icyPBE^l7|e?M^i
zf^B67W;^`iARW2%{PX4iD^T=D?UX&`{ln2Y&6e;nCk9%s&z<?GlZnswU$dVtM|W+1
zolWarB~}Da&vq{xrjRj)(|i5#Ir^U6uhp&y@}bp5a)k@~^wL&|E614vpq~yo&Y$!m
z?0&5Q(&OMQU(7+%)GzO;Kw38IO!Aw|(G`p{JFJmCvGi=w)HmtF;!6?#Tzrtjh_$)Z
zn^61TgSI+UJhje0Cx2harjp$c*Wa1Pb9wo$<@2py{cf?9W%p12c>SX*{ch|KMlCP=
z{TwW0azn|Ucvtf3SE%dOOesYQF`s`$7dS}E;)^V*-ZTR9xRm?bMbMU7^5$Gf^T_uP
zT?|v+hL5oUyYZjo>VVm^cx&<X!+!g0mY(#z!26G`LTqJ2XZ6|Vi;(yyo%*gzUvJoD
zYub>}Rdunnb-NR#UViZ&@9u=OtQV~nXux6%l8jB67;5*0ZD}^x_T?U~UU~o@x$r?1
z*Q#6gkTZAqN^|vEe{{bAfq~sWG$RJz^6FygK5>G`z}FPUSi0wzf3=&IUyk%TugM?E
zd@h}W@H@=8RLHde_t$;-fqB^0@M2~((WAb+?)LQVHo$joEJBj``?q%t?Lc`FX?Wob
z<*AVSMY*NdI{0%MJTVn*$BC?@loZ`V=FXD+I#qx5GQ7z;Y9I?z%m9segEt$Fc8a>S
zDF?+i^q;WSf{92{z^(f90bkZKHYO$JGavrsQC9_B9Y~a@(@gul?U-}ML@lv0`eYnh
z97eF6-H^iBh6%nr{tJP=?&TMkIDlq$m2W=exThp=E?R?tjj*7?9UNK$Ob}9CFZyYT
zmxtBwU!LB?*Yz>(mp3G%JEb-76~pqrZ1U;`+R?r8`TNJeKJ1BO>EkjtKr<@Af+A31
zUmfD_pKhe4E`uZNKC!Hc28n@yz8f6(+XcHR<3Qr;F^iX6zaWLTr+&c|_Vohex{0dI
zN3p;`tGFR`g1XzAGOAUS*-+Ka)$F4<4(&q<Tg53Deeub!r<TT7dQYJv#{u{-TND9i
z&}J>Q``ybhpUcm<)!mxlQgiuzIaPtDk2Ky*(>>UE^u?p!J#K^9xbcY=nqR?@^*JiK
zwYzniUSId0vSovX+cQ7K460$BGn5V~N+4?w@{ll;77}{i<vykj#>zpUt%?#lCv!>#
zqC<(wWRSnCE3M5n_v3-7+~}vNK|8ABbt~G|8QjPz<BL7oH;k%u3$Q@%5oazA?b@~L
z^6fPCu?uEW-SuyyF_*U>C%bD~MwxWe-iVYd`SrEVX2=Wg-@l*qO*GJY&h+k6eBqb|
z?!54IliRr#@BoUYfBLw$VT4-NsPN+JVMjH<ICX=bUlGBTxXt)_s<gWG-<#qC(A4y5
z;}rw6O2TV`T0R4j#I$NRzrEu^DXSgTqaWTJx)KDHlw7JytEfz{$2g=ZI+%rfDciPC
zofhogTxF?Ueg4iH9)M0rQ<;j(Ev+JJ5YL*5HqKD&wCyuK$4zgyq&a;4tBlM#os%_H
zUvA>_QcZ06<EzR2^rio@hyU+q5C36`|6xV{VMYIM#EM$>i$>(N*{xGsJm=*7@r`8Z
zw9`uZ9ZVg&#+#b1tkzoU7}ag*o$R^G;${6-_N$&N=Qa46>P-9NS`M8hes?b{>e*9K
zan29-Y@D{cH`KS3r*D|wbMNyyr{!m=S{_!^xfR#=1UZcPnA!icd-(dtPg?)hBYgeF
zS^0mnonODPWbeNT*00|<HS7Nn7+=1#XxLX*_2o;S{yg~)s_viP@hJE=J^b~1R~`PA
z-+ld}_{)E{@vr6JAOAg#|Fa_hk8G;bE6nIQ_4Rf2HwrqJQ$To7aY{==DZMhcr8H88
zAByT?j#TKwsO<1t+MSWB`3UB`>Iod5m6e$|)c^A431x2gFKvubd~xjeL3srBSr><W
zdE-G{{&f!CpJr?@eK0bX&?LtMRf|%z8;y#?BO?u@=oiSIPxdSraZ}6(6unBNZ_$9r
z^)+fnN>Wx;H9~@X$~bD5$r$?ffKBzUg7EKUbVFf2ZOYnae^RdT_Yu|`{;59X^R--D
zD=2cZqw$5z!zd(S+q1j|$PPX@($~jl*o$nFTtsbt7Y$`vRfY|lPLHPvg`_=0`Xcae
zdtLos^t6Ain%<AWTV82%)mckokn1S>MBS}NuTQC(lF&vfRd(02aB^}IjRR^&sH?}F
zTJ{ABka_<vjoH<0LbWOCh+_A7dK%I3Ft&=yn*K$ij20BYAm7ry_Vw!ps9;4WZ7T22
zo_g?iAU*P50-|-6{ZXCV+f4n@jp$xfii=W{Dl#X;Cyk{sw^Zf@gpqf=K)+5uHaD{i
zU$Sr+nI&Z{4G+eDzFqN0CovljN#MODqU3_fGmDB6CqLZ0v7z_ZAM$YhmkoTi1=@Ms
z8Dk?ON{+rgnQdony%P0gY7(V-4tLM~e4v6_tx-N1)&=J>GZ7$XC3ToSe}49q)0X#Z
z>bJ)%zOPjind7N7SJ^nRvf1L@Qj6`DUlvWLLG7UH-xn(*BWnXXxtVUMzD(8N`Q>wy
zOSf(Z6sEFNvoLY`|Bt=*e&l-p|Noz9opw}cmnft`yJ(1t7D7anqS91p7|~Eh8luu5
zig?nXr9n%IlonE28VZRdGC!BQQ|G+S`={?8@b$wvolfz5KA!jc?RLFgZ`a%PcILXz
z?%mnU0*l#iY>m{04>xDg*Z$On!fjp1l{rC6nHXd`QT5m1w2wP_Zh8cBred&L=jXxK
z8{YdXWt@nNOv}iaiHmGDPFz6;531sbh}y&vhK>oPZR|@jypU0I1eGYnsyU9i%nu4*
z4HaeOC<GXsNukLshsRrrR0s7&KxX;$zWW&Wi4{`Y=FJN^g@!X`?El+9DuMx<DCFqu
zJKMvhTyET8y(~n-NXR-dmdY;JQ6oo+A%3pQe&G>-iY5mBQ$Dj5W-hp7NAO%ZZ%;PV
zBP2bG4m65Cv6SMHq1d=6n|13h3NsUC4*QQDJqL#tp}S?eMT1RFY!ncddoC~snWwBq
zAh@}3?~E-Yo5G)v%X{bU-5AWgc~e45hFCh9%W5u0X#4Eewlm)S3&N_wYnZ(z=c*wQ
z_g%f}8dA$>FvEN{o6Ff<EUac&KWWK;qp+1*i!CH#XDNo*h-<P0;kfealM;wPRb}O5
zi%UzMP7)%EBv(%0X$0<H5d1!4kf|d($1oFSnnh@tT_8b+IixG%JkjZwHIoT*Sy~YA
z<5sId!Z<hJ1j`1*Ai3D*AY8vt1tPbcYGY&L0(rosq-D!*UH%;D!siDoAN&6KueXg9
z<mDrAK~yY+K#~g5{<*B=*ht}|h}g+60Npi8L$ON3YVAeTHk1Cs7%lAzn`tdAVmb9y
ztb7`9$Zaw5QwWX4#4!EhudGafA|7M#1fQJKkZ2#TuH=6R`K(KewrvNVFNOvgiophY
z!K52H!j+QmFNE0rLN?q=U|-I1r-SDPV|V<x)u3y~5Xk!dyn6X^Di-eO7cW$H7H?G8
zrZC7Qe>ocks*pPK8%A$K*g_?AT`7ygROyvGg;a0prlX>wFH~IEKlmN#Q4J5|2r1@J
zKRqB6mcxVjW!<nhFLNP>)zGV|zR4CYKw?lGramreKfWG$@81u2aX57S8~00(9({R*
zk~j!w)o)7?y^85)9=hpbe<t7;Gi_XT-?q-=a}tko33o4`*iF8JoLtLS^=J>jpf(%P
zcR!|rR%poXk63tx=?VABcRSEzI)n{l)-a5x6^*{xt5^)HLnkU52zjoMH4D=yw2S>q
zrU}jw_a>Q%=l^_+x&1q(UHLa;N+cS4U8|xA1e|UCe6H+yoZA=Z;J~as;T+E}xT$G>
z^H{Owgz<%SV$BQACH~o3LxwOcI21<GqkplL+Fn{oF?{A5b$233Gv+1RFIv>kfN|<0
zSJr<!eed2q*C%35?t2qc#66h_P7B1kIfm6U&Ryp{h*gpr((8;HA%oSKIX;ttLI$L=
zancwF|MWg7b>S04uq|URv5S;%Gmt;RXURm938~<_+dxba%;zOSsC}mA@)(KV0~u*M
zogaI|$Ow|LgVSelHKRlXVE9?VqKuF0F|DNZq)TY1TxjGxi<qjQ15b()aM+kxk23o1
z_V>q^x;9-#N`w?kpT)=nmLQROvu1r$VHy`Rt#LEQW7d6ziJG{aY%!B8KH=By6|YP-
zuA4DqmpFH7vmzC3UqV}{4IVr=Bfrm>F~X<#$(#DR_2)dLP?>1bl$o!2A3E7UT$N^R
zyQ%Wc{i-#Cr-|8B%ki11sRq~`4t{wcARv6U%|?A9@TG#<Kgqzz<Uh#bqwv-EQTcv%
z*FsNEPnpIpmoa{RqTzXHOwl3X0#<%U!B)tm)9&39PCe&&o?I;(c91dBI{0vIRcgP`
z#XumH4U@B`PM@9$bAKW*u;csJD7@FQd1x+c1sN+bH8BZb7m=`pCfFCip<i88OV3aE
zy)hJ=$e>9$%T*aNRU10glvHER%04<60~i1_ctTjls`|OoN#|lrB6%Jr4i1q{-_Vqu
z6T2_?dEGIOK*eW1XU-w!qkgcEN6Le4n&s!?Bg`uvL@ru~)R}n-LqkIoX4qkyBl&B>
zn;Px1#@YfGbMyVpS}O|UZ^a6m4ey$Y=>qaLM?lP9I5T<nAavZDzn;EMa1x6gjIoPK
za%M1Kh1*JTxj1d=y?ak!c*}%LCJ-P)6l$YJSt6D*K`6|`+n$xD2*2vAEPirS?J$?b
z$j$AVaOpxtKA9Hf;G{+5yQjG5mK~LI^k=}|qVGNf9OWD;FmD*RFEucK_NG~;?T8>K
zFBR+4Up#-lm>!XsV-s11U`FZ`^Q11H!*=Xk!>9L@vDc~3Ja{U+w|T=$H_%@e?kAQ;
zwIi4kOR}^`BL4}6d(fdnQf8IKT!5OIn$XDVMj&j@5+5VONPaGJFg0ayi8A|*e^ph9
zwO1IDu&s8MuI`qxRiFEudrg;O{$stxe*%Z0pMPq=^|*g<hbq>cw}jd60(U0Cb+`7D
zcvfdav8MO!TZ}&s!D7IVX?(U~#@!%*IW7dMWktdk4vKWvhcf1QqsiT!dtXB+Z-e2B
z+A0q&oNx~_2(a;}bv{>OwSu$}goTx|aJCZroz}kruZoq&3u?t_x#4pfD{?W~gAdb#
zV*D^;Xp%Plxh#6ywk8oLPDFv$^^0}*%*9yF&Yi6d0`Nk@q^Q=dBJ$)(u{8>(@}RYg
zw7xLdGi>#Td%B^*o|)(VVN7?1ii#aJ=kc>0>EmD?Viz{-eO?~>r1s|50rtgak_CxO
z5%~AexpHGPR)4ebXbL)dbbtYL@qY3AF7{JXGay+H+mek78&h`6!)gsoCQaIIX;C&}
z#flXIaVU%Jd0pr`#4WWf#Qsm1TE&e;G7nN%@mRQ8eWry#*SmRhcMO|YqBTCr72|?4
z_(dspSSieLyLUgj^7%TtIbFuAi#;*M_HgcIdjsFyyJvG(I(6xy{^en^4IWuC<JM1@
zFhLAal-7#f0-{gSu`*cL6$)j1&FjZRK@4a<Ud?{`bQVcfGYe4vl*{!Dh~-vM&Dt@q
zZ(y=hqB(FC!^Va$&nGF$e~U{S{&W0gO}vHAwSUf-63Oi8%yFF?nHe-~)?z@5D8mN4
z`R&`vSXlYVDk>_LYcHN4mt0twD!1SjO>ddT(tu~A2chh)i0ui)^kd#gxbjX99s9}x
zgN)NR63K013h4*i&N_BxHkp}*4_%FF!54&ma#kiz@xHC24AVv&V-;|?2Oabj7ci$+
zGt-DMv#jX5E{j#b_3X%zZs&BEwH_j~oA-H6^_aTa8>276f7DZ|OjmTxozvy6FPOv-
z1JK0qPKx{+SbW&aU4Sr#spr(@QbZLnH85O8N-7ciJX+P}J~%oiyK)mVlNJn^Zww2K
zp4?-jUa0%e;5d}{mp1+SsNh$Hk+j3+MrL0gE-ImUJ|v67b|Gru??)<$*!;hw&9Pi2
zkhh2My%y98KsajD<r}q^8%NN|5as|rt{doD5R!U*dHCa@SlN*fslr7N{&HOk*T3F)
z^4<_)T-?YhE@wW5Y;eU`D}w#<R|i#8q+>!FUSWAKx17l|;np1#^%_J6yk8v4e%O_d
zFX!%CFvvD37R+}jamC7&5)=LGKU#p5*8Nmef^}}sx$ZvJgQeKBisoED$voPNgwr_f
zh{jaMjSe6iO!!A+F?JhQAXaF*@LK%`UuDD?&znphpG*dOiI#GGQjq-TP#Bo(%>V)q
zKdfr?yyK@g7$#cbP^h|A%z#?9|5f}Y_0Lnvo%-M8mnIBR3)xG^WX;$&?!<eC4r4+^
zZ5nI&RJw@znsUGdzn_#d{9GxIC?$k(46BM}zDo$|DbB*LkT9u~@%+ULQKePHpK?>_
z+gF_(dPRl%UDFm~&yjR96;Mxx%C*?tdB`MwN2S1?;xwh4HCi#C@@vlugmLSeFQ<Mv
zF<8JLn`7*^kaanPz4xR0^_$E`@fgDq-^}AY1FTORV<+Q`TKeo^{EwH)vkb)j6b1f=
zV1({VsIF3~U>UF>iT}J&j7~8l2FO%-^{a<irA*69<A*hce-7@k59M`c23StX4DdP0
z@1I{>u(J5gOW$g|mj3=aHqy6l*0MiOkAD~UVXnvpQNYgVa5C87R;TM67$-F}Fwo5U
z_4V>goC?ZmG+T)oFXRu-RIo}Jtk|`D>|P3ukd^@Ox(M*s7`^^Xzvx5L`ig=EU%=6>
zKVxz0S^U#^&^>@$S#Gs(Z`!wSL2TDyj;7(SwY0R>5>riL`Wb*%v`+Wj_(9g45p4NT
z3N0yrQ`Nv>mXk^<E>>i4;oGIWgag7y62>g8AYq~@n;bC~yz{04LCZwuOv04EFeHbs
zs|i{A2W6%Jq{8|ez&fC~wxT`5>((Q%56oM0xx!)LLRFZEdxO7YH~9mhh+^m^>dHbK
z1I4(kubWMAh9_2<mY&yCu|-KKe-*m9#-b|tLHGT;{QS-({ORXP41ND|QLR~VFH(NP
zurmaPH(;au`GVcSU#)PNcKTXeZ1efUV^TY-eu%{r%q#YVgsdnJ&YMD|etIds$)%&F
zMjFeDVqKU@ustKU;9Td<oi`Ta$oOj6^65sJ;}8g`X1W9f?%6ZX8k_CA%i^WOzPB17
zTzGL#I00Hw`ZD8~6Da(}73UabmM2Yz?=dGCfVc-SH>hCYK@t{2^E5ICewlG_Bm+EH
z)`-=LM~)sX&s~!t{J^+``wt(sihDhIiNW;gW`MM~i=WoGR=mDCZu0u8q%IKdyx3}d
zWWeN1>D~;_|5(?WZK8822QDRK=W4V_AX~f&pL4nK-OF2F|2cTMOaFUqABt<cN4mD(
zo~oD6rZiLymK#bqG5gu-kaR(=LkHGF+cK}6m5~48!wHaJG*?&D-h4tmTt4@HUk;X4
zN8L2^jmch0>zzwQ;>h?Ia@OLIfQHOV1$(U(xK2z7?w#C2GigPq{;z-8c3{{=3~0&E
zDJyOf%L*8k0?kpQa+a}v>VaJ5zVD$Dt8TxVwumu{iDbNPfW_JIqJGqLE*}9#eo9gl
zCZTWzOK}+k$(tsXv(KH<X1G`uDax^&e5)&E7jl?O5@RsfkT51am11;wlI`_NSFg{`
za$E7O?P~d9soD5bGNZ#a4^S3ZRbXat!2p-ni8X)37ZRh_f0jTsJj%c^P!wW6W=C?o
z!5kLa3HJoD;gl;K<_rs-mQqJ)+R;Kd^-S{2U{;Kq3D7uesan2*`Qs%^uC<9VWjZwB
zp-yU?DxcJVavPIbvof!Hc=S2OpxyFX7KLVp*8S-B-gVWb%F0TmiPH5mo3YzPnCAMu
zTC}O$PznoTIDLAMavLm#Y10ofKe{FIo!EgbmZeY(&81MDB0L)yz7^%hIfLUZTD15*
z5Qg_wxJ)RmdJD1e36F*tstPfD&C5&G_;Caj`?tJc>48lYzjleC0avPB?H}a-gt_p_
zx?)AZ7VZjsz-n-nd-v`w$h|ChmnDz$2ULvn19Wc)v#q~15;~;tkK#m9(cyo4D4weY
zNjYiCFi0Str3v=n3$=pzuJekxk3pcYkd^-I5ht|eSU|a&3M<U8j0dTykAVtP>zc(f
z{crZZimFpS^r}J!TLxhK&uqrpk{YM?%$XUw8G4f@$y;VKU9+q^GjYTjg{v7?3oV~)
zRT=hPg!16194HjIY>g@0*~}}>OT~mf+3N*pK~Pj&uP(DjV#gY*VC!a#pP>4AVe*(s
zMiCo1(QOE(AO?EmKFkLbpaIIL3H8z5JZ1^qx{TMeCNQ?U5JRpePN#n5zD}$t{^q&~
zb4g)lmxwsZaOzaC0Frt=7ByTHWv*AqDaO&9y8rF}rl9x`gN}x;w-fG$?)j$*kVw+R
z^0zcxQ5(45fR224lwgV#tqzB~6g}7MQ?v*_Bwlvhy?hM84^BT{lQ?u~R(kA?+<kVf
z)(n!lK+!e)w9s@Zf&F$ax!|>g)lTZ>HP=Hgb!S!jwPy9>fWBnZWDBhIBlXIaQ{k)<
z#;*P_#i!6Rjq;crCcH6Y_Uvg7BdB;rSp7)nuqr|1N?~uyg*)Umnr(r$jyhKT*N+^E
z35&=A2qJ|qrTo#t$H#Y|1#z5a<4*~Md)r!Ii*ClpwuvVrBh`t)c{YD?=!QrCy@OMs
z?*&I0M<sbYARvH6zAJOrtXc(Qe7j|=6F!6Q0oVnTEKUu^BT2*Iu1Xo|s;=3z5QZL>
zSg{DXn}GEZucsEDvEo_{7`-4h`xMNXAmn$Ji&4;k06X`sm$l2%hoqDPKZU3C{;1cW
zjiuJM7%G7r2N);jffTk{9;*U5+&P`eGJ<ox)*Cq1_N_Q!Y#{H^?j?q>*57h3KMh|Z
zWu?6sqm5gECkq-njUrR<#y(E#{AudDs2VsxYhg)cG6)>EmkGpaQKS9)<CpXp`rqK4
zg)N4EA@>6}g<!AVWP=0!1|P73o7q_iA=9yQ<kV@?0(bA8*<$p-B;bPZ2~TmsR7O9<
zk{_fKe4^mpyZP2uTD^q<Z5CY>4Jj3y#rrC*xP0Qwsf9FHKH~zTW}Jv-O^kM1?Cv^Z
z27g!G_(9%1o!aw+AQdS)+{_&>C`U7TO)amLMUas{T1|zs%$h+m5uo{j?Ax)dy`}r5
z=@Q<$a04hV9%vv8>IJIUvuBT6g{zB;SV))h;_lrYOa7kLL&q~t<G&Fj2B)HiIxPf`
zIgxOji(BmdwdD1+%TCL+f`3qnC?t#+FkreM7P*yEA32qRB9>silH!6(%pAnHo2!A|
z<rt*B+GoSAq@9Jdm=@#3)wDPfvvc-3u5|i}{wRuUm*T>!ho4dXZVhK`w_rh8t_O!h
zxPmUI#gaz&`KCR5I56H}(>`t7#-!Kl%Fm=ATzo1BDI&UGY=zYWXvUA1d$L6h4mfyP
zq|(w8Cr${bgp?~x!8)AjDf~JK(>y%iSc=$Fkn#(Ty4tNYp!mC=PzML2F`6ToAv~s1
zs)`@|dWGrg8D!sG3uzZvh^VM}B}h==jAC}ZS^nX}Lb%hZ%qM58ucuu0FQfoR-<KPn
zdgglO&$2RlBPMY!c$WMfS2q2pdt<Z$!-~biQf+jF-hFtF7yzGF$eGz^LM)A(@jHhj
zHgj>gV)=ku4+}R(bOw-!Eu3aulPH3sn7fUuLwbE$;6vE`ltdUQ;pjoNCiX+-oPYl0
z3F1tQ6D<P-`z|t=Fb8U7(N{%9_?ft1xFlSN@gaE`{sQhE1MM@ooaq~^m+=%d9#?!V
z`&;c7E>v`-YtacC0{E9`;3<a38J8llu<fy_a{hv^*y#}UF%M4GP+hDQESNNQP#X!}
z9ijdAQ?vnxo-;Uv3Eym}Mm$x!Fz%kS>>E--u?v^@FFX*XP^C%l^2Gc!Wd3((-^o4Q
zPe6?XH$Cmq0dF>Rpfezt0+d-Lorr+W!4*E~I25{+QD(7ZL=agYK77!=Abx@De<_$S
zC6Qm`SBIR+JUO%Hdl$hX(0~)xyQBhfBFRGQllB?b*3__0qTiQ?*(+!_eJ?G2Ohw?Y
zQ(9Uoykf9rkV27lt{_WUhZ~%osa?8_`p!SY5w;44+8D}!{2Zdt?CHT;cPx5pZ!m(U
z-U}VWD0I5aEvhc@p`g!>q@{^*)I{Owne$Cp9W{If&hB*oKg6}69j8NVt)h{(e4Pig
zsu+HL4t-U`CUxMU8dNKHPMAPKJf0GR!@|n2RjXN0gK-|vYE{JHpgntx3cf|CQpE}P
zD=~Avt^akF`?}Lep&PabN?&k#eR_#SQv)pHm1la#oe(a@g3sg11~z!w5x1XW+n-67
z5K=>p^zzp!F$u!`7gizq<pORAn`k0xT6%h*vM@;#{%nE)Mt2<>tHGqQ)lk_BAUN2%
zXQG=?S-HXB2_N3hV}c<PO%H0-!(Q{)JXLmzn06A9(vdhVhUJyjFd*Pn40*j00Xuct
zusbO!bB1;=A3+h6i2{G8WFaA0n5a<ttAjK%l;6-#GNGcof608=vRFpyaeeAzK(Rhs
zd<#70gyjOqZrICl81phodn3=L)ez?bQ)<g;q%TuAZgEWDK@NR&TDvyAL-KL}6PsvR
zd}cud;Qm6bC4?q%@NirBfRhDpAb;cQot=jmMpQuGt5J6F)}Dgi*YfjNFlHnszA1Mf
z{CtR?DiBC)*-?Jg;zC_kOk!eU57#11dj|)g{)?iDe=L7{C{O#}+1$XTzot)1biL&`
zA5Z)UWY`C%Pfi3Pv3uYYNTAERc=|7&NupVp)L1(vDoh6U(e`+#-6$;~VI=7L$zM^(
zscjh;c!qX)-OQ>=IyK>9>&`(JH3Nv!(R352?EL3B5C+aK%IE<Xm@cgn$AC_1CUn)g
zYFcn&>mI%`koXTDo_-V^2l1WFe26Gc^EZBlhUYjAX%%ItzP2icHX<1~j7ClxDX!=O
z;Zv};V3D*AMuHA2+tytr6%1Ll^w(hmMSqBO3SF&MQCS!f`zZ{{;sBN%!R6DJrc+t&
z%qdeI(e8B4OKw4@fkKITd%-r#sayFaTS`vBL|M77<JP>OQ;EOCqIKgyGBj4G7Wwws
zD3J{xow`i6R>Sk0qqbieqn|H=b``z-i)ZN6S5Y6Fg7BGx6nwDjfFVO>3DSPy!i6E8
zQa?Yx?QOd|PV4grI3CkJr)gRCe)Jz8B}ogT4sO78J#}1$&V1WcVwA)tbX#KEuq@#g
zjHi+rBw9k4xNGPTgk2cahkxom>PxYnPOKO+ctYo{W7n>zA|Ou0mXDPWh?nZP0tcYc
z=(^F>HUH{L$~EDxxOS0LY=H198bP%n-lgag<NRRe<Kx4@KLAb5i<bUvA)`-dtNMO_
zkpG&M*K5~>7}*<a+p$9c2~lK2eg}qxoaVvBfR?d(KEN2#AdZHC2s&(Mby~q)7jb&8
z=yFrml+)4^_VFko=vo92SWr|O(_Nk|3`enc#Y@i7I0H17$zaoQvNR!~5Hd~}$wDGY
zMH1xy3U5k%SY$dXqBg*StN`9akhlVf^ytYq#h+TV1|45r5pG!DPwm^kKN4Pa3Bg==
z5{l06^XC>&^wTjm6NwU_9K(TF%5lKOebCvH>FLwDk6bk#e`{k*d4%yYe}Seq>!S5V
zhY#{cw9GICtP5$@7xpWLcB*K<@a`rpeoFt2v^1b3mjrg6ww|Dc!1=;|Qe;{k^w?s7
zD-{T&`;><6dJob1X;8aB0ICR+Rs9gQ0Qn04@FxEKO{0#{ZArt`J>xa)Zb24_J_oD6
zZMZIKnwrL(-jqehV5Wt4F<nQS&lSb^3S@H_lnofoi>3FoIJ0^U+e}zsXZ7KazF%V4
z_+RB*$&G)7Ga~I6RjCL5M{DtSG7|q(_4tqA<KO@B|BK%KeHMTJ>i?4jG4~Q=%=xun
zOhm6g)=G0td4ZYm+NQcSx4iVH-zmPKk;6Yv{_Jyv5>fzHaILSm_t{D}YwII9Ih^cQ
zw^uX@T+h-T(VgWI_3PO)G=9b1bUIW+A!q5RPN`>DB<;%Y4ZIC6)KkkiF7}V)(r6Q2
zC!YbX4iyw7kt9URwPSU3=Hh&NJPr>3z|;%lB<=Q#`$yL%-~<LQ(~pie1M~KO8M$_m
zZvo7rvH`&JMUwkf@Vsrx+<!tJKdq+j;2)LcF+IqkV|1nuICquw7>`cr0JuO|t$+W*
zq~OTWI6kuk!$1fueqh%Z=rp<E#s2<>{nkGOq^BHBV;8J_?q6vmX?Kh_y;QKrqjBkh
z${%!f`@*sMW&v~#dkq?NMyu$r|M@P*ivB5TjWmR*WH~^LQr>j?E6E0<S31)(v$HQv
ztDf)s_Z;WnfAdEDKf<zO7F=bq$9aJcJ5jZYn%&r1P`pG6rL1~xiFBIrACNEp;^4`D
zWT)ff*b1-|&Oc=|$&AkGm6I9TPI=ov5XjtOm}MO=nkE;Q<%IwE@x!&sT4G<gDL68%
z<NtJ<B$74%)T13=0?5-N|C+%DY_e}eRqK7J4U3eh@dXhq9NWZ4By?}sLw@}FbpTSI
z=|@Hy6X_$WmPsmh)I>(xB&>S3{_AG7KgD0eo89=2^3`Y=?s|g{FRlbYfCJ4U%*T;S
zKuk|rg}xS5hfD>1hNZaJ3S9xqJHkv{$9h)Zef8AT-OX)NcK#6ke??<-QU?7~SsI?e
zeW&1g-0`@&w_Do*h)&66!{T+pN|f~B?@Fu|LMyTK2k)NGJ?krXfV`Jn>wyA@!kUa1
zo1D>nm518>|NF@A_53HosR+}p&e`xabby_Fma^@03e8u|EDWGVv))NYMrJ6^ssf6M
zhBMrb*oC~n*3i(G5xCRPNOBdDw{@#4hGypOJMv8>GU|VC=7%%?>M4)aR5R?R4Cz!`
za=TrCGM;H-0}-Z;tK$j;l%R4Qn#DzY1jZ%z9a?mTQ=bI(4xZLmR7U|~(+mZh)T6%c
zjtkH5>B^_3f~7PN>ttBEe1_2Q`rIO|-w*W05o9cmj#A1>gmAIw0l?y^3$=ormr5k9
za$dXuSn1QG6Sk4C+yH8etmRzEV@Lk6syk*{Sykmoe^D!V8vWC3Hb(pEEMEoJb_H=p
z+$OS4S(~U&!vzS22@DPn4md$8N6w^a!?n#OMF-L4m^Mqar`KeJ-2Hu2OD2nDQ9{)~
zzgnO|Gz$nD0uLUX(yJ3!o<^R)-INQ$t)813L%UI=Z*X(k6&;RX?%jW4o@ytdjp3;8
zY_S6m*GF`RKeG7D`4o`h{R`eBh|Fd0A`)yg{hOr}bO9$QlEKYsFl7b#jT1a-L!O!j
zhqr7v+I3SXpiY6P3Q3Dk5iXr%Yh(P17Lt-NkZX@c$`)Jdnm6xSv7Gf~u#+$vGg;vh
z9s+5nRV1d%Dvr0bf7S5aAWNFx#k8wI|0C3VXU?pQE9f?Q?Y)Gb?5Cqj*3TD-*!m5g
zfAn7aXO%U|eZ!`>fz+%9Ce&u^T6CQma{JGdJ2rLZ%xttZV!1i?%~41;p=5hBGLv}T
zT&VShT0xX}!W)XIwStu%)rToN`4DDhedV)#JNCvuz3B+i2f)|s2(zZD26Nb={Mw~(
zfGF;zqk%0c&VU+?vFj_8?|^k;LRuYjOK?3@00AeK6I+#6>l+{Z{m6Ql3UU@wUzn!j
zHT|Hn_uQtG{a5(z%W8y3N}Mm4HRLX|TUZ41Zhb)yiP0Po8b@<kjd0eZe(1!`dAx6N
z4^|~lWL&;?Z;CK^u0nVA;nSx`8vIefIDu!>&6PuVz9o~BJ(~W$aH?h`ifo$ffuK8Z
z=9jJQ#y;ZJo|1BQ+Pr^p$g}WOqYJst5^am$i}=)OKC&uTxW^-Rn0jjLtiMOjZfxz_
zzyDO41Bcilhjho}Z4!}9c-0ZsW&s*SOYBYDRLPB6Wt5}*tW2!rV}!c0PoLXG<w6=m
zl4;bak+6_sbq7njj%gJLUoQKIf2G22Z<^rQR?EcYuq>FtXJVo2**=nX;cp_N>rx=D
z2}%(rhkpm&w-e57s&x^L^i<jDBaY2EIitI<ixU0#(=1zog<3-K+r+fd+jgg^nuVZ&
zFiAl#{1U}FO|)DO&Q*}WMbASR&%J&7R_k-atMd9MXPQ)?B2e@gb#&jp;{bU}=dl&G
z%UJ$u;Z|JiN&T1^>oU;uyO;uwzi=T)SzIDgp=rUNprfq{jra^_#5SF^^r*Fmxnf{B
z71P&8+&$-ax0;I02!e;Eziu(<m5ii#5nMw78>xu2Yk@cv;G!X9&f!b{iJfr)3O1o}
zDyKLNG`_?$tkn58`4ot~N1_n5V9MMWCD!>$H<&8_rAzzvA#vSYHaEt6fM14;sz>pi
zp=Q5>vuE?0U}r%WimE;%^nnXYhl!ur{4QL)2Jce3^GXv*;B4ZMP-#OSdO%_rawHr)
zuJ<z#ydanEG}V$B{Eo))8C<Or*RX9~eg0?xdi?=2Z$l1Jw^>eE%Y3SQDCWr*oLJan
zpwh3O)!G$spDE?AbSG$U&Z(Iu`S_Hyh-k(t+~p5Q_?Sa<6Z?II9Ixt4echs;b9grN
zV~%n4Ih0p-vMWG)F<o5|5`>F0rMnr8pq<$wkYPQ4AN2}%V>Sz;I<F(hdAk1ldAr_X
zPo41O%@Wl;Z2ExFf|Pnc8letF^uX`a;6g-!8ymXuQ)g;9%g36Y-#-Ip1Ubjzk2puo
z-}xqR5fT|=+R|b<H8f|}3bZ()@ymS{ZiG^!&GpV5DIuuG1<@;>s7Lk7HxME7uI;CI
zWMuv`RB<-vHSO$FKIz<6H3q+1E1s_Chcw~%h6<Vf#m{tAYttjoZX!G&8gdC+1YZ*v
z9K0m9A3a$6OOmvht0$wYs;cB;+Wx-P<2PPdaJMbh&kP}W&_Nsp^QJF0nv%sH+|uR8
z^#@W^v6w-uweasY>PgX#J|8N+35SC~kKujyrJ80<=hxy(wI`cYL=H0$q$ed^fl@{+
z+iDo>H%U5!#?VA;m8lqpb}{kii=_@3ujB3g1Y2{?9VB*0dt-c3&G)JAZFpLuWa}#<
z@#rP?qLjJ@K<hlDek65vJ;RdOXavwHRTSxtETfD|qO8S|d*wD$6m?O+o|+l28hb1w
zaXe+&hrcuQ$TQ|~V+v24JXuJ!HzKmB8N0_&s|>s_wvpsU&kUR&?0z<mQ>TE$i^Hnh
zccHIq_<&I!h-O64y2FxV!l{`m|6=^PbN;S$EFU2=ey~Zg7ZL0ouSGO?;3;<s8_mbO
zQu^p1XwjFAi1-)ryuCRb(*yUK(z~PC{A`v_9v3<cv4${6nL`mpyH*${Lb}tfh=g`u
z0xu!lQJqes^&r}GYGn4doddx}^k-n=`Glh(#~eYE@}Y}-)s5ECWj-Ogo#<EsP@;vg
zP)lEkm!uC_PxJ%zredMsY8*q!eY^8X2}U5d9347n(?hg#!Xe;7vjrVUBskR~T1M53
zgdm8P{Th~b>pWmofrXm;W;K#jc=6;+c<PTxv9x5B4Mfu7r5&g132FUW{e4@afRRa!
z?HqAJ_$pSzksa;RC5uJ0a+k6t__@U!^p!$7T~3$1fR=vN$<R%X@<!!MaUfcO`?SbQ
zY7{t#*PO-3jDI-`ID{?h;~btam|Z``g?&?qI@HU1H2T2OGy_Vyly(Qb{rsMyWsH@U
zqA&YmTVHjcp(LYqU2pOgAHeYe+>h@~W;Z&fp{%U@nfd==t)k4Mj3!{cG4A8HZ!^bt
zlB}|IVyy{<jzGBYZD2EBZ>nDIkERD)Xa8IjhX1NNO6s3qElcR~wBF<GnV;bg<h<0Z
zeEa&l_e*Q-uNl_aVQ`Apkc&6}GElMdZ5gWgQqgYs(se@+nRHgS>bvb;z(Kiy#X1$=
z+KtP;Wc6~1PEdAP>Bx2!)nl{2k9AJ_a-`aQu4%E@o%jRx@Oka|3m4*W<y`hAsXNC<
z<LuGRn;VhBcM*Y(^SMPB1bIsbBN|@3c(KIu`E;|+x%xp<%4uQsez~^@AAU2Je$NQg
z^B|y%R69yM;lAgg1pgS&kM&T-CMI&^NwcHPWD`G<?6)A0P=YKwGDJ)37UbkxG`+Xd
zy}i9#Mn*^bkY(q?&^~(dL@u8u#Wo<xTljhP^j-W3Z^Mbx1C$Li4cha4|Nc^Y&&3((
zUNyAGST}E)g3n@Rx5Jp4)yQLbS7t|h$ePJugmeSyS>~--m@Cqu*BkS@CnqQ0^L;hQ
zI>D3N)($cbk5M00lkQpz|Du^69gyqudL1e>J!-^NaNCmc^uXJ9@7|_Ehkd%$BCMGQ
zy5ROnn?GpjY4)J}SclxY{nbcmbo9G&d-G<^nk6_F%9Dnz7S}^eg+Ze!)ltB`r3Tp4
zqQhgWcl1Cg)f)HE-q7oz<(xToWZ<(GFPhJH;Jc-b*;F%<`IbF_fyxgPZ9FHi^U*6<
zykTR5RsGBW@_&Cxwa}YyHa<S-=7R@qfZ7KK&zIrC+?Fv@lJmWKSbe>*id36Qwtcs5
z8k@EwnA3F1OV+L4=H)e?E3DLG%sP!$rZ^EtS+}PAD*73C=#VcxmY9)!lw7(ZG?k-x
ziI*`Wl0!tE8z1EDEe&MbxRREZ9H}nPT2HTu2syW6#b*<B!s3J>FaFP0=JueVPC(?o
zdFWDPDR_TfoIY(@GQe3+o2Z50ZNKX-J=3%FscvUxnkADSlX+fc%d2aCt=ZW_XHL;#
zhZQS!(M9Yux{gfQzC(wt=sn)kZ)T%svyLtGqgT%`Fqp7*?NFFJUy_#6z=3UH2K#3o
z<TaT7Vsn-Cx|=mHrcS_s)klYn8PgTiJ96W9Wyn-MO@I7IS0CNyt$qpF%3Ep(r5?;!
zFoxHT4&+oXOP+VoPA{*f^s>B2+<t4W*L-gUS73UO#vA{yiJy3Qf4-vT7_S>)Rvd0<
zItty61YMb2DG{Rt+F1K5c+m^0Uvg&CcEnVF;r68cwPVYsm{IgY3MJNOvkF;-<lx1H
zJkF%W;9<k=z{+mrsi+=ZU~SzE>5~L648^WpZ)au6qcsqxhfYV!K7IPIOwA7W6tORR
zYKd7dC8hARd-w0R0@Sd+X5qrXmv7pWw{DS0jp)amUzQ`sbb=?=CSV$NL3ek<NCOG~
zxHS6}O44g$t*uq^N%-66xan?aw~fzMU5ZZ##7SfPsGJ_&zTKF-I%~eU_^eH>HB40g
zoJfAOqssMHrf)P>xz<!_iUW88%h<EXJ{CJV%4{evtHOTx{)=tfx7!JAUkE3*TeoiC
zcXsO9)em|2TWol4aNqY55l>Dha?loO$F`jsUY`D^OUrV!#Czp$PBAc0J3E)#jL(%n
zifQ>#efdbt+Bi5k;A7_N%^%%DMBkrN8K69$rsU$Mk!^^)4957=6|MmVeZ~uSd+W|h
z@~?Y`7c8gfILJ;$Z)`>4Xs>*xDjv+{iSYQxwAgSS>56niVl!a$2)D{rs7GT)4iRtJ
zME<`=;6-ZUVaG|6n(?X!T^%=a<iV>^a%OhaEuuozzlIu#RrQ@Ed$?yDx$yzYlJN+?
z&N8*8y+BW2Ka9dA0kkl3k)53kx6TdVq&Q+lH|p2FFu&#W%-)F-!Td&DB&1+t*0bo%
zn9)`;e&WQ&aA*fdIw`@5y(=haNf`*2(FiY-h<aUurE$djPoK7v?;A--@^2Zta#+Aj
zKo2$t5U}&CVO})h#dq>sT<rMn9VY7PK0*Q~4v%G9?h-F<K3sj?%3h4qh{pjkGIbKM
z%Kjv1*n(E3cj!2eUBvUehHwoz>g^pE(Km5Z{+2&CgnvhM>8xqjL<o{4o?!oF&Gmt>
zK&i$OK8h_+n^NV;O6nHo=JE){J)!s|o_L$p)mGSQaHm*2)L1fp?%eLcv57)9<<4Fv
zUwW_a2pkempvsM>Pdk7yH~LN%u^ke=HGrpaNx_zHyvmy?DSc<oAj9cRo7P%#j5_-H
zb&qiZYOSo}X{2yIR?&U0p<5PFX~<*SD^*lfd<*=LNQl5qn&7+zY*Df@>Z7D218BSV
zw4P{0uDR-6UsX70<ml0##$@wSN=g4d30&&GTC~^<+>CuiiBXE6!8d!LWH8HBDyyp%
z>Kn-!M;thK(3^aiM-a@*g>;|^Y#Y^Z@V;X&<V*1LNubCZ3B0pd+>ip*`^iVkiSYCH
zm+^(Q<R>O!yt}t6J02Oioo7a9HJ|68cOsTwi(>%dl6dlJ-XU<wtD_3;L$aEAonp+l
zyYaB0Ls!wV;|NCF*hp~SPNk&OyLThWV5Z<|P=v-0hkF=I$iJ$9pZJZmH0j!Qd-y2T
zFKqEOwM}yK;br?}6Oh{SDyM|hrO8J-*xQG}3D{kOFUy1YY?_p{;roXcq^7L|a-x7s
zzv08>fnWoFZB+?3Onv-V7M-@z!`iFjh>V5>x{1QW8-(w-rlx+k_|5OLW;@G>aP#Nu
z<IS|Rmh?aSpML;ev^-{L>O=8#lUg|Waw}7ay?5{5?>m_RFc;Y`kJ6{(99;0XZ{Hqo
zm(4*_Vzwsh6ZA#+coN)>rc%D~N=;hbY`dSG%***DAFVFhXC0$tZUA*#x}P$p)YY)L
zW|2&VVUg(K?33RwJnaisNbxe6Y#o@-BUBeaCaMOPt$E;G#D-oY6*_j@#>|pbe5y)H
z>Mj3I!~kk;*}i>JQUy=>CdKBKAxhzSaC4$ZyfA<0(4oBi)^q2+(*9cU_2mv!nmoQW
zW8niMK6NHrLAte&+<W+N60ORjO(HrU*}Hc$FTzfzt&-FRYO<s#XNcL!33}?HNiK3?
zGObRP9)&!$yyuS|wMYM<9zV0buJ$oZo9s7;g5<Ie#vhLxsSd{8U6wZS0^W+z?0l6_
zf_-i0u3Z<9P9Hsf+(@#}-u@=Si8~@w${NqF+|~5=sTBV*v-0{HnKswdN7{^_>PDL&
zehme+K0V~`%RM-9PPw$Lxj&PmH$Hpz>=FMV8_JrVb=OI`JN^CjwHH6?wd}?D7Ko7z
z{b%ZB?znVm1iG=tOb`LzqDFUDGLhvwV=Xr&nLBa^O4@L!dGVb=h$_@v9~dhlS#WaW
zc4$-Z=!y4qjx=PA#vmEN;5M|IEkzKQTCfC$*ctAPBxDziSSJzI^z^(QoBp2@hYYY4
zbw+<>gMg#?1EqRqlZ)q0Yjh($J@&@M%Y!~VOiR1PK?w}W=ZfW3QvAhN^Ty6@D7ABP
zvewm=K}58bnok~W^d#UOakAYt;HMFvn#&9&=^R)l0l)h6>(`u@k^*>W&lGvVdG9Iu
zVvUoAWqcD%)z}2#;&Lk|r!)5Kce>;QO!A)R=30N*bor%Wz&1bz^9xrk*6?;wdheo`
z^971#DMI8oyj_zvEI(Y9n;^@W)*j^+q@P=`EvNV?e5v;QKe_xA=Nc@o>);SM@?><h
z<>I|vWzFVZUf=#I5Uh@Fe9+<}RCxKLM!@0Im1+(rcQ2Lg0r<SX<7SLp^%lOH`cZN4
zJc-yZ@&h=gCtlnzw!a|n@e^CF#Gewwa{$RHW;TQD9wP{rj3-FLtZH&<Bkr=SCSuv5
zp8@jGG8+|gdWB2XR8{{1Q!4!|FZa4~<;vf0&7W@kJbKjd$r4GoG3#1Wac^P2vhNTA
zwo>?r(xa`!9sK<z&7x#m*i<UnbM&Y`lPJ-Bdn>8WMyqJAwM#eb-kKTHr?-KS`m0^L
zyG+9vac;Gj%gM=|g$<#Nv;h3Ip|WIt@P~<dQiU#Ed{Ie#8ddM`PF*%}E;UI%tAlp5
z?x)P0Ir~ce;pJ^uX<EE=@nVb57J8=TY*22(w^l07j8SOi<n8_W6xe5I&X#?QX#GlB
zIa!=P=^dqikv_*1x#$%y7<XB|i}!mz(%vX=IxUek9>s8j++C*sH!B;cToJyNO&>mH
zlU0-E&EH?Iue*&2pQcBh+mE804s+(riC+hEv}4~sp+rynS}JFJ2L!On*}0Qbadt=G
zu}J0WPn5z9mDW$l;iR6Wn;uc!rE}*A+_mJ(>t|}D@w*G1z_)?LQ}u%OF)p`k_6OFF
zMGfxClg*4_a%kDjR94J@bu67*h*)5p^nYrDEb!2sfl`jJNRhjCwe_5RH5!;UE9eVv
zh|%%WBgd{Uw!Zu@A}nk(3p3}@=lZKvtJ@R+aa`i_tWZ9GdDS}^cIMig-q_ywSF5&d
zC!u`tMl@Ce_2shx!6z8eSl?04v;|$V&O#jTO_92jP@$GN8xR3gC0~kkFes$r!NtCP
z`x;iLgs0`BO0YoK?!5y%0`QL>%+U!?n-4d}o<q4(&Uoqfk5hlgh?RDG)y4b!{be?_
zzNW05P+{i*@8-c43oJSkd$~s4bX-h3iTCyez4*u^w_ki{TI$PIxVyV!YO25?gNpJR
z$uf8I`J>t!=U~9O6>*67;bBX+Gt=9P#Y;zAe|(nZ$eQk@sFh<8jL~clXEk%Qr!c#L
z#V^sGII%U^KB5{Ohu;F~0uk-MBmv)OGAZfkbe9~X!v0<0@uuEAs8>J^E{l-w3Lu~B
z-|qil3%X?LyUNSU;~*I&o=gudJE;#6Qtjy5GGn)Q+TG?o-Foe!#S#YwYngHL`Ex~X
zfxHu}rC0uVJ^Q<F-t=UTc>7WmGsjMy@~4=`@3v8%n~_obyu3Wqy-HN)NW&D-|9O+z
zc44s)QN{N%>t=gxgRI!<8$Z*|PKh?y2-)?8S<^eF${A;pncB<ADdk~0LC0JE@07c`
zv-XC;tQzj0M=w6Q;Up@#ba)f2{O7id%489VY~-3xJH21!=FW3;Z22~`?L^Avyd+SG
z9T>P%NFUjtb^z~d)x}qpewLKn5G@Do-PvP$H4^Jd`@3yYQtyh;x1^#%!HJSVbK$-A
zvP>yXoHeTh>%R7GMx8o)16A!t+#P!Yza^eT$Nq`8*`IaXzG-AyQAh$V3^|4VVvWtg
z964iqxgI@s)z?+eOctHzmgjnN(~pR%c^8Ou7wRUdcrWTx)~y>(|0a%6^jPc5a%6DD
zVU8V<IktiUV~gQmfZ01pdP=CS7I5^LUFf+Ag2EcfP3D&l#x3HeP`&^2B@LnoO1OH}
zF9Gr(ey&-gd8`E$=R5A?$$s>V)HOii;~X6w<8SRk#0opmo<5@f&j;!0$t0Xoc(qTL
zS5j*q9I~kG3a<Hwkz}m>U$+R24zy3W;azIPK{nSUB?T2z=gm7-v<dS=H!L5NUMIPa
zK^QkTY?PewM~LFhgeSjBu9ac=Qj`-#TdIM53ot|^jig?xC0)cJ(U5)l{JFSKD(Q#3
z)wfcb`iS#Q7>*g(nNQX*4c@%lB76IHaC++L+r7P4GfaMmm#Rs<cJSaqLFKP<a=Hl<
z`8Gd)2Q|Q3G)xJrKejA>bA2~(;4N@SJhZ_?N@1}q@>T4qQ;%aUhfE6{+g%*Rl0;c0
zsoVbvWNGzv72|SF`*4D`)6tIgkBp35Hv9aD^#*;yrC(7|-C{OWuZCgia3tK7sJlv`
zf$|7{8>o+YbUw`aU@OyzmdvEB&DsoRmua_AtCcej8W<RqklfgpLV?^K5Xsfb<8hD*
zReFruw37hKwGO8_W~ZRc!`RtvRQ#<TV`PJliqlL>S*Z>w<0EEVwZ8(<oAXCx>Gvn<
ze(w{WmP(xjd4H!EblPOdkRh^XEYCIT=~mJR?ZX!AMsgEf6#$^O@GbCxANTPadg1)}
zv-bDpb7sVnzdj5!5k2-WWFohgajMk&5w93cGE9c(GMhgfLX3rRDEgYw(3=RKr^(x@
z!Bi;X^_MCNB#R`sQG)CsPm0BT$<!Ttf`ZH@1$QvsXtYn+z{FWjq`*I4_Py2ATHtCy
zKyM^rnR#2V8>s32B~kyCuzRtwght?I#vKII=(K;3tQtL@F^f4*-jrXOjDG7@PYGy(
zJ;{cR8z+PrbzGXn9a9=R)@EHXmBtM?%(<~n&_N}1sczrA8D>%I9kqJZs#SuEXe0q(
zB&_?|CH=vJvgKDfjjW&asiY&h@2l?=J+pnVr6J=y+Dgcx`b-X*)KY~LF}G;v|E>z<
zpAQ;6x(kouHeK(aLz8FDYzHNOTZpMmUAgZl?B_38qL#-ceh0m5Hh&WDJSdx!^R}?C
zm1OYHp?Xjug3mnCN%rwel>r0VFqkQV(6_@MCIeGY$Zd{}R-<vz4lsG}(4kuZdkW-R
z+$H-<fKc6h9F^2ia_pQruJ-(mj7>gMoD;V7_>;K!w^>&LU<c4pdqqWy&pQJ70d{x8
zNSHTn-#(tZMmgL!jOvmy>MiYmFZrz>9OljQM6IEus;ZjdP7wbLmVxRCJX9@CJ(P?E
zHJQH9SN^G>G>n>h^80DNUtYa>#Yboyq9$joGMsw&8M3|SwPJXSH$IP6mcGrhB`a6%
zrl|()7}e!oqMsCyP*w5m%-`p2guwPSR5o#csldctXQ(CC_IeM>Y^sFyNlm4|6LIq>
z;x{8LWP<b^DEAI2qlBhSpI*Hr@B#XyA?6Wx309Glh`B*$KF3|mGtbLSa1vfXA#p1K
zT}b@GAaTJTG2T0->D{?;^uN5Hw~x<ee4J_JG`e=h!k)aK{}U^yp`h1B5=??ey8hG<
z9t0uLa>kly_un!op@hsdE>>|`XXwE3ix;aB-1ou-08YfP>Eh>Sd&6clA-MBrPu^2{
z2DJ?b+Xtiv>cyvOJZVuBL#!t{c=+&fh9@`RF+cUYkx!Hy<=}Q+58f&g3F@%h6x#DZ
zo{O(@zEaoCEH5kD_w}@)o>>MZ%AGd~xbL?Wa)z~UAk6YWjQfs~(kBXlSI|>IVF%Bn
z7eAK*t|ypL<V{`{%y;QZ`EbYN*RO4?=e+{3Be|Gzr?WUoHUY|E<P}~e%eD><Zp61W
zcY-U-r0A&@MWuD3%diZ0615l0mryQn_$~XEsda35WUPA^B%n7TL7g~`+RLd5Jb{+S
zXbaeD^^*;1``_w$PUYw0yKw++B=Ow8Uw$BC<IkFhVO200mzI*eJFO(+DOK&qoa9wK
ze)*BReHS)D{~F^CP+d0BNm!!YL;x)jw1Bt2zn71X!Q~GIoI$fU913H$HZr^*kr1(V
z2-R^zp=-7ReSn~`B@#%mWWew-VtyVRxb!5sa%Y!eEs30IYivo6B6Y3hW3pZY$gYHR
zeD~#x4<RzO`02A}+d@NoTF;$(e^_%R^+Q*r9pG*M`BFbcS};D=^4c7oxj8{D%$j)P
zVdPy&9!a5da9?{ee^gpSc|RDnp6n&Z%$Bz9<v~ws8#iuzrxY%H;R12D6TgrTAvg#T
ze2S({4RPfSBjXyoDD-!82Lx0KFDN8he&$_<$e8ijGUnZr%>2;?zJ%k;xZa>uwN=iQ
zzkc1MJkC8pxx|YR-JW~t=^7Q*-cj@ZTQ;gs4>P)Fes|dL;oG^5aVZCfEtOACPuJ7_
zyXHG!xr;|^I;^s?QuKC|epXcM-~)J4%X9OcIrf)cGL|!UX?fls+VD2Vg2PpI(KT;Q
zaO>nSQT*K>m#gIV|Iq>zzhcV!S^HAZm)XHKvc~0W1)~M?Me{lDNN{lHO_)Cj3KQ_z
zDP-U2(*xO3DVBlbW!{OJC@+Z)ITx)tji62;3bKi}{#$xI!81&w+VdIpKSjg9EJf7!
z$zV@C!7juyk)FO9oEe@rhz0~R)=I^!c0jo1tMgC*-{Z#{zs)qPgRRv#*G+U=TrRKs
zdT8WD!ukBZ;;ijp=Ob7{zZ<iUBD_gMIaoJt-fRQ}$g_sPbVAm_3`3-aUscc!QR8AU
zM>N_u;Kv#cm$ughJyWOu;1W|ADqr1Is|FK-oLDStcCsvsk;}g;is8$Bx%dYb$I=rM
zeH^6_<V_)C-RBfEygJ8KkWX;f4MZ#Dyh@joAb?7kKz%n5CE(=5w1&4^@R6XI_nZyN
zUctm!vjGF<oNs?uoCNhTw0-X)-tc11#AyXh-jOapRK=$2Tj}4~uGorb_ZSI_Q!y8v
zbJtbOOkYX%er@tU=SaN|kxroX1T--6t~*iic-ILr$PNvks90E^zu@*#z}2F4Dc&F=
zy~&u#cpuQPlv%#~tDJwigQg+X5hau1(LN$DZ30gVmRFAj*^AFpPba@e;dPATrL@l3
z*-JM})vV!UCTe@sbt8-@I2GH8npWMq_)d4B0lGDfPiOa=P1S8gvMepkn6Y*1)-aYw
zUrBEHm=VY$Bb{WJyonxpVE_K@3=h5qc&VrF{QULyzXvK@E1s2=@U8l}OmF(?qyRn!
zRC%DY__#;KII|-W7qI#cmq4*jRr)l{5IS~(x#<gR;Sv%O0v)G`&Hz|dscp-aw@93Z
z!x~y2o8Z0kENpFi68qFMH>9Mb#J9SF@_rj4fFQ?dB3{_6{ubV{p@A5lcdxeo6R}G~
zNpYo2%MrH7Ln6pJF}8D-PDM_2r2RX@Esz|&X&R(0OD7}E1Gkj?_|Y+6AW%W}bLH%Z
zx0CI(OJ5MEzrRes)Y7l{{Oalmmx^Nll}W!QWqvVI5wVW|De*jXs0$>sdEfU{e=4Wo
zU?0BGfz$-PL8dWdS<+dm7pT47i%c0p^q4k%`c$1_22Si1gqX-Ddmw+(G>H@kd2^~@
zXiH~Q{+78U*-T|!{!dd{s=f;h0$9t^SiHT!abCKcIYCjQ{gre!lt^f7!pt-;DOi(D
zEpQ_>H9C2LI{9a`b4wU8U9>OrmM--}c)_?$m%&4ZY~_m5DDY%|<_)Mft_3~FNzpy-
zGE-ykb#eA->zfRdw)N6AmOA-N8TCKMn7E*xkNWL7Q!m~-+H~E{S>K=foS&M^1yRXk
z=It$}Eo%GX2n|x&g{z?N(G1Dr8e{4_S|wob-riPw!oeW+7sq%;M)qY3fO;N6ta+&c
zD)w5#IoF*usO_2Q*nHu_FfM%m<#CS1-QB@r#~8h7z)RBo^nOzFs6}H`J1B*3`I>vV
z1EUWE=`oj(Qlz7gx}hPy%{vpPJ|Fx_WxGet9|yke6cD$bJ?jWjvg7*oaja<-l?Mct
z-uYRo9XFJ`ZG@P{kCSA_ybpwTQ+`rY+z^uQ+zDD-N1!|=df#I=l=RAd^=j%+dD%|w
z{+q+o@GR*R^O{6+OK86D(ncEFx=kB>ZTG6RQvysQ1%@+oMt3Ta&@~KaD$^|9VwkGx
zlyx`v?cUuE;BV~k9#gCK%u6b@g=U*ug7iht{+j^y)J!7I(@wtfL_X%zz{u3v9!<m}
zd%(1*JhRqP@jPk_0=A*5)eTTCdU2r@Au%Z4!kLCDl}-CnR4H3vQRQ8a@V>>pJA3KU
zUE1Dz0|QON-G~Y;(I8n^SuLQwK~3irS4FAYM_IWEuuDFlPs^8&I8e2xl1Y#MzH!4*
z(4Mre)$`B+-n?}yd|LisP0gF4UhD=bz|G$Or5o?WEQdh1P+?FbvojXu<ja!MQduYN
zq39I_{?ew>+sciSyoK0_&sG%o;wQ&c*{}an&VgMQ>b_16;!c!bvpkUobd8E<%%!Dp
z1I<gbh=tkn;g$L(01p3Z+gARYz5088h~f~3){JU@uNh$8g<h;E*nm9EJUl$&HpFQ`
z@SI)wX6)y}LccX&^vNzRF2Nrs>uvlWmLclUUgc=(b=CbJ9<KY?yI;SP)^`UL-kqIu
zw|`;2k2JKWirMRon0V9Iw(q6!Qx`*Tu%$`O4vhk|#DV+P;O(GJ*RNc?T6TLXSE&9B
z(HafT)-z`Yp{nSA^^CM*45np0VX?)Bu94N$B27#_##WXi__;;T?!H?OVxG%K5D>An
zIjwH{{Qg#P>gz?fT749q9y-##2gd-)?P;uUg*m6LOZ8RhKPyg3*JET>cJ^HgQzJB_
z5!JR=*0!MIcZ11{w6EuiNF;U;&9DTXMTxoLTv<EHJ0*tMCmR_VZ9FkWufFI1eA?2p
zh{Kn?yx4|tqDw*tT{WVS$_ogmFZY>@i0*n7?3CSZcN|RJn9mn!k%BYq)TuUX^*9(D
zO!u-GB&H@4kUlUPTJF>6>xsN7{4CM&bVc^^C_8%xA>v1Q`D5BCf^PvP^e^oOl_EYt
zFv&azhi2j@FIjSvOHCvFHav*vct`j>e)9Bb+>)n#TX!GbQC?m?ijF_+CwTAfq{=RE
z69Q0#Xm1REwt=2Hz*-UgNNj8@wZ&iT*HG-z<rc~W0dsz4>(D`j%l`cIWIK%k1Hw+8
zY)=20S55nnvADJt=NHRj&*rC*>qcJ?!NE2vgIh0NbRk}B;|<`y+6G1egxMHUh4(O#
zzJA<yw|zTyH0Kl8KCZrI))Cg#^x!}Ce;c5zeBx25xQR?xJf{f=56PycM^B$_WuGlm
z1iP5DU)?_oa#RJecmLJ3#aF+z@7mRBUNv|&{m7^eoPB**3jNcJ2;amUW)(x$5ud~i
zXVKChqK-H-a2r(G06I%P@D>xG`w+oyrFs$fn`fZ4G1ngHsdIdOJ)5fTf7KQ1exPT3
zD?!#6x#?d{Cn&)H7Zxr+MiFjt0nia&-G5D70f_P}fI#+l2>UoZlo{oO8&d<66Rup@
z{}Pdn-pVn<h7BY4_fl7vnkd91ZQ9+;vnbq|<83mdSXY``e@0H$OrDm2S7@khgob%7
zS`I;r_-&x&w1GV+fyK<>Z=o-gw$5+BOiH{lpvY~Y?EbIvv2~b8Z$qyrKmX*9VO{l1
zW&Uk12eqJC)WS1?K|BT5om@emI!f$8=T9+gNry+}@VR4$LGBG6dURj)Kb2ILE?5G}
zHuSHqT1WfCZd_JPEEdg>-6k$JSZjVkrEIu66yIktaiImR?dV3$@`aG&wd)tP`Bb4S
zaMb3wd?DR??Go#!zc61vtH8C2)kKB_Bd=X2jZ{y-icdk5VdycJLVfPr4G`i1=oy|Y
zz?rtwAzNdR@vPW<(S9!LE_|hhCiFyDnDGZifW-l7MeBttsQ+Z$(dL*feo0<QeX*2<
zzbGpfBrWeCCwBraNv(WC_io)zkZwDUu7IhucMsUNFM_^$>XRq&kK)FxD^lfCkGXed
zqP|Pjk7zOOymtW+IjAbpyh}?jU0%e#gHNgDFh<tM9wkz|6uYogGTn{rRosLpbm2{p
zM$%Gb;<jh1&0(tIQ@Qy+7+rAJ;iSweUc<-nIOh7-^|Te3Dfv|0C4!m%C!G8f9K4nf
zmhv-{c0d}Kea_{qWKJl~=!kOeM8R5bZ{I)^WIT_L)f=yJBZfj()1;pIF=U5s*q*uj
zjIM8T7xr_871(-2V7P1^n^AhdzyVo}kU4*`-rapn-$L7G`Bi$Rt8-BS{{D*cWu)Z5
z*R@eJXK;IKj$B%ok(DqgsN(xH@9C;z$>*(m*OaOk5>iy?PTYv@Kv8{^NRJrshqb`B
z=6F%h_MYTbtRe0_WHeQQh_uz;zYT3|wX5HV+n--t=r3xM56`g-RYabLbp`Sn^{Zm!
zUPz#*D;MTd7q)se{mH9W-G$Z<lFdFJ^QF!FkuYi(quKS>FU>y}AOAi5=u0B{BZTSJ
zjE=5L5>(5ZBptfVcP<MG32MD@v(~CZCkyAArcHZuY>x1aWD)bX<M5(A(xv^8HCcUL
zzsI6RgXGQ#9jA~_X|tOS-Z8e$q2r2JmRXPn<WpF+di5>l1{PjTb|l_Dd?>`x`!9@x
z4q{w%7hOuN;CiZV5&xmY+q}(usL0guT>{Ye^NA3ScpUhGyY4?MEG#@ujKZE`Z;=~p
z5xzM)8<b%)`KT~(7Xuhh4=KhoDh47=5ogFWW;gu1A|#-k)A;e@FV~KBp@AoOL#0g+
zT|m71&NIlY(t`4bQpo$$&&I@{vw4Fg=DIf;Z%?9fVD&YEc>MKI;)*Q6ag7>chBWQr
z-%#H)(QN-wGZse9&KcH%dg%U|0h1;Od<dNBv|;*$jjmNc)L?f?OWsY4cu`T1*@{5~
zQMBk%k!_5a{KNdI#+8QlAb<>vXAZ+F)J`aYWLmZI)AowyVeFtG!Ch@Fd49#YzhHxi
zANgZmBP>}(^Hmn_<@xCT8UNTEI~Oe!e{?4b<)$e0rUs9V1dGmxO%x2qBR&XiuQf0N
z=)4Bf8EF32tkGNg0kGQpb?-9zuEcfgV@E>{b<XY7)E2BV%yXMFr;F&jV5we2<L*W&
z>AER+PZne?0=f9k^Pp~hXF;Mn(R`!ldHGQ{s2@MUjWVGAA^+n?FEDi4z+x<Z??9fG
zQt&mB)YX*DL~5cy$l91fy{Ro^cXrU4>>X<_tgK>>DjOuYRt%(_XgqHhZL}K*0`zhb
z4e<JogO4`880%Kqo-8=<yKDH)?4~}XO0Xde`N}svpjQodYr?mHnSId*bb~?~4>KuJ
zu|a^KbJ7owXh-v)sYEoRu?W0LTJYn61&ypHE4Ee~EP)M?NVr<vv^TWp^gVbwTt%fR
zpJ9S~^>EMG3PxbpE?Ai11{1ybz>y=Zq1QF6F18L(en-+%9P2hx%&e<FhZs}^Hpr0B
zxl>_~PJ<zabi-~i)`cKduZB}6v2h<X`_vpSB3n@9QX_NFslQNhE3Jc3c0Xnj!Ux_A
zRa@zp`QWUB+8ecarDna$I&f}=o$)iHSlS6k*c)OOtdmzq#O00Of<xh8PUL;}*BIfY
z+lb363&Az}xlBhv;ZVG3uE-rJ5w9c;QgB+ZR)p>+PPxm=#DV4wV&JbYyqdO>zc;XE
z)7;oAiyteYy&$s5##dOy$WT%;#~^$7(4lZH;GHggh7B{j7TQ_@h?u~uEL+~SJ9_Fz
zZ6%PujR9Q|pD@iyq0kLF6f+odBfiyxLMYs+Q}5gDUL$lWd=NKcn&M`=bas&@=yuTS
z_sFw4e(NbnV_xi?9y2?G%<MD+<2SUWJ`(+Ur4@+QL%iw&=||4(Hr9<BlzRi(e{Vp*
z79N@?-KZo|;681`D{P>%RbH=ru=~oD(ddHb&6_8IK+e$(NW&x~nM|NBj6bzo{Uvh)
zf3P&Sz2gwupoL6*DAd5*oro^k_wM~g@tR(d#CxX^?DlQe?Abe5%GbJeYk>p_>QT|r
zLFxy5OX!my(cUOW=TLA6%(RU|FciiOLfk53K#yQFz=Rz~nHRrthQJ#S0G=9TMXQ6p
zn3^3Q6!N<dFMo2Hs52)-e>!*meEK=>jwJ<U2bh@48O5Emu&_|oS;q)XWjE1Q5wheY
z)K*GrYSG&)6{eAMsJ=AHoP501pA_0<!dv#@jL-{6ti1loInHs)l)sv_>(P4U%5U1O
zz6NerHi)m7cq%qFxjIPy@}}C+q7!SSIHwaX5Sqx5(3DJzzOKW>8CC!u<HL-4QF(KN
zD|vJMd(8^Jw6kEi(?4QZsST)JS(5itz#49sYupM*b-7wzpUr1CZfF3ElhzqpvC(ui
z?X1U)xhnIrZP($`&eO>{VzPS-<8yp2rqbocLIL>&GRE-2QOyP0@0oEc85bRN_A8if
z;Tu%yFQy2S#?`xU@xYj_PsT5#qy|u%cG^57H70fMmD(h^sp%ko&iF+~L`=QdT_br<
z7S08m->Y_PxrC-`cp`9aEzL9SuZ)lNej)Tp%t)H=9hLO3Y&!ne@pn1ybMoR0l`1l3
zBLWU8R_M_qB;Pd@h`rLvOSkuf5FM+mO?<1SyI#=@e!PM*X(LTmkL#wGXFN`M@nR0H
z&;3_j6P_0#Pbcr{ruHL_=rSPV+mV`X46J6g^%PLZfW(?{$sPZxXDs@Cd=b2C!utuk
zY`Tre>U)F*r{J)tmPhO1*aFa!-n$8lqnj^sR2mjk5#-;g^u<!kt~Bvv0;(4gK3sP-
zrl|Xtt?=-uZy8*1fs`K&YL3sI^Q+c>JmBf$%rK)VfVw?Yi)HTqPw4)V%%&S&KWQ#1
z(oR?eWX4QOar;>mT%;+~xp#WJe^3#SL<3*uB@W@eGqRUM%NS+^u^6MUEA#9{ZYl-=
zG;kNbAG-L_cww6Lb0i_ut~HYcavz@@o6uNu5;;2g7ZOgl&_(u6_iGRR6qS56f^Vau
zyQ}!7If_*K{mtu9Ey`D}3960^3+wHUWc!H_cMYopB?Z;JpcbDB2een%J|=D`)%`N6
z_;q6cu6OU>@Be1q<#A8dVqS87%F;V@?>@J{2~gY8?HYYe!`%zO6FDzmiV?y+o9b)V
zt8wbSoLQ<bgvdh?>PPh0$DjMb2^ZE{gMK(+RcHKT2~)n&YiN@l*Vuh)tSv^KhSAq6
z$R`ih7ZDylEO|+`vUC4bLDR!8iOe2f4U=Z}X<Sc<GNqB`4vzoG>r|T&Wqp;T%V0v4
zDc%fhZO3JN)1lf~!sca=>VdR{r-?H;mHg=0Qd@?t2_a?!ufLq?(v|tkC%auMOWuWt
z(zl6lZ8Ooddq<Cr|F%&~(wLBcbls!g?iF(<;Xf(?{<9q~I8sjwVXG1=Uv3fk%a*%B
zkvrv{u^kuj-H2eut2J5f_njh9puOmeTyV4zG9`|8YC&TP&xcp62<Iq1N6EmDqRoeH
zz`E@hFRlwIL(_FHElsWzs^pOvNVxknGt(<B&MBmf{l{IAyhyH9xvW6x|HdrGmOFf#
zx2S(uAWw?znOAe)%!J#GSikAsH`hI`nU%2P6K!p;CoeENfveEHJi*h<ZTcFZ-i%zE
zWB3LORJ)38d1$t}1GM(;-{0(QW_A&UPt)Q#?G+UIRgWtF@nhT8trNr6xM9|+h}78|
zt}@zm1rsV3*Ei`1Q<QJD$gtuw*C3R0A`3;N3>?Iq;Z4Dl*9cEkmkU*SINz%Eof)E$
z#|)WIcYo2vScQIoR>55!Y8)#cw8td;rsr0zU7JjU;r@W#qI=9}WHJdcx@7J&yo6-i
zx9^oli~{7G)m_6!#fE`zv0XZK@*+%s$T|8MFp3-#B5D#h-&gC@9Of-bV1Zj6{ze*r
z?uaT9QcBQMM$7w~Z8nlvD9T#^4RQwFX-e+D2|#?zgq~>d{S0xn+*nsL3ZUXkh7RMd
zBeWV+HtO|o5ZY}}S^M_wJ?W?2zI96mT=L*t%xZnczwdIT<}X^bgCTab=?XcM!;IcC
zu$K(8<O^~v`?Yy?s2Tlco6IHcWfPsnJ5W$)&iTz*RQja;jip#8@g>{RD~Ih&BZm(j
zd;=w9P{Addfk7S)HIaObc~HK_(yw$c?l`g9;7P6bl#OX~_Y#7Bf0@kzxQLcQ^4+_Q
zH<*=V(r(iJx>{i&`m{^8zV~kdm|y$t^<201t0|Bz8|5tJVJAak>S^OP64BDMl^~A$
z_bs9;KbDaex!uhrK*08QF)r>+#o$*oi*O9!X$s#hQzD)BFgts8)+CN!w*x<`gR3u#
znHdv*Gh<r54QeZ%(tFDA{_&xQ4|f$xPRW^;op~5L==7@ToB^hT>h+59^0tTu$fGT<
zXsI<cPbscI0AbIp*L+HsZTbSFKV`;@hqHc^Mxq4(o}7O)TyWQPFB0}Ns5W5nOhyGY
z=ju6G^BOJRZPZ63eTy)^7mz8TI%+o1Izi&>e7XhmMkjV=-;vUh86bEuNZrzU^%ALt
zfK61_2kC5y{1#c(yh)R{yagp2c6%rJJqf%d2q!>3eKHvddv06O)YaorsB0@gt5jXL
z%cOlX530`M?7YoIx4!X1=&NkuZBE*$81}<%)ym^w&UsYR7T8*Nr7NJ)HVF8Bgz>{Z
z$P{dQk5Zk;!@M}sW`e-7(0`IM@*_8%+c0{ZFl=$&6d@*F;Am_$QvSM@b{+bmlAejs
z8!_V3M^jT4JzNUCf>jh1JnBKB2TjR0k4MyW;OW_WC|y(Yh#X8CzU55B-^vCO{rLJ)
z0dCR$r_IR=7o4NzOQ#tc>WZG2^V+rF=YIY^9p5ZZf@Rz%lb_!hX6qm{JL?Aa>C+e<
zm5*f-9#2I{_`r!GgjF^jhOfx==DREOKNG(Pc>=yzio}M!M@I}9GLa?;>Y~Zd&e--8
z;0-|n@oERin=Y8H_GCUIPio|2B5#IxI6;xhSJ!?9ws(rD1<MKznSAx4(&?00`gO1G
z-@Aw4cc(WBGvAt{`>W3lqAd+TE1>TwE-76K8;vHVS1g9Xti$TlSiWR(rqdhYh2~U*
zN%OOBne1R_(yW=h>uFyxV-eAEhAR>yexOfNX$4Hmr*GprBz~=&@lVNVJW3?@xIr6|
z;KP9oQ-`gj?}@}0C139`D_5)-=xd6w;^<0Sps3S)v4b9^f={Ey%>va!<Bu7s(p}oB
z&GLgg8=C4wA{e-z_oO%w|HR%_o2!|@9gw*J(xRb>a9H74$G#Oa0ssnw_(}8U&Fl5>
zW73|546=OAy*z|1N2cMeO4sZb6VK@(I$bH{48KK5TLQV`L$~I}9GCxuFzAkG6^<>b
zrqvXvZt?)VIe|(Hr24GkjZ6g2?^W<;y3gl5RGpf8*m0N?a8j6&YA*vhA-emJu}omL
zE-yiV)~1nZ;pK$gdt)t*4EulV{b@kX`TPElzbuUz>qN<tWg-%?O(SG4l(m#B31!b#
zNg{-a7D6OTwycFVYg!me%8<Q~t)dXAP>tyKI4>jSedGVV_rLYIZoJK#x~|vtdOe@#
z^E{99IF8eC%*xnjTe|~<OHs-*Q&Vh#yh%h8>2z5I)Puxp{o&kLS7wNhrS$UBI7&}P
zfzzhx#4agB2)t!UW&l0dWCHM}&6`*A5#Z@lSg-n5*K!la9vi<^7~@i}n;L8xGae9`
ztJWcPYnU`b^klR9pYgp#$OD^+y0VBN*FK9U9)SdF)xvryFtK*CW=^@+n>mG(EOT}(
zOGw&_1=qWeA1~W9a-8&y3&57?j5-2|A&vng>61wiqA&h3jl*fcz=0&j>=~HRmmt8^
zYtg5=!eMI9cQWF4qF(4-A)hwSEP-<awzN7wQx0-CWjddh!>%Fn4D!h}fDgDVlB1+*
z!3w%xz}Uj*v!}+i4|++Oa*5uZXc_snRNXV>NT~L%sQ4niT%&Z-Jyqj+(0cuM@nu4$
z;-LJwcI`x5H8yVDI>w@1P%41n<f&7w!d=RV4nW6VxBO-`och-)H6l^}eRFAfs-zMl
zp)LT<9NZCvVn#2*{w`I8@9X}G-scsk5lYyBZ<W`utin@YPu_SjDe2&iML>Yku_*1Z
zg5du1&p#jW*6?}U#P-3?N?<QoxF78BcK15E-P{+=hsi*&y#Pwkp_)@N-k`;bfY5T$
z)rmPDmgs)$&e{G8MA49Iu-U59`4Tvtq&_sV-b)-_Yh%KLu}~d0If{|~v_FcB4`pg?
z7Yyu46y538{-;izB4k;FWjb?2k$N3$0$FbSm?349kI*Cshfa8F{ZiL#0LSE<e38xD
z{;6wLA9-@!TD59PrzC@NdG|*zCuiq?H~nH6>=9Rdy%&0i>dU{B&A9Jx6_^B-WSSFe
zE%4Q0Qs<?+5%6i<XOx718Ce56l5PraA$|+9t&7P6d>lZ54(_RjgWMnhNz*6YZKBdP
zM5o=)JQ|p5ckR3m_4pNoA+s3R5Hr!^;4#MOTv-%?-Aw%!H9;gS3aMK!07hc+BB#Ud
zs;h{K(#$}mhx~ME=nH%nwtVir|5aecgj2J<AOo8xLVnTz;2=DbXbE%r`ZXy;uDJYF
z^4i{-`^uX2t9ty*BRq53FPgHXFiQ<rnXzwOAjeycX;j7%^fmp!WRpU%@mN~7`a1m0
zKQ5D8OmtqE$KP)r+2=1#+;`ZIc;l)6Hi=T^YU@sPZurrLD=I#B=kX?%t@u(l_<7R#
znqF1+Ec@6PW@1tdYqWj*jSzjH_rGWnv&NH2VWfI@+5?P3lDz;Ztmf4jbU=|paZ+XT
z;2QN_vT#$uwe&FSTAZAcXvb`Bl2gl;rhhg_x{9UiS<!wB2H2}<x6P^Yk~5b29h&Z@
zj*+7`(o*(y05uUS_4~QJX|&fA{r!|Y`ggAj+c)|0<tzkk&jah<oZ#~V`@s4R_-~g5
zPy2DU)f6HTum-)_>Sh7H`8$`ky^$$R9O)1CIeQ+A74Ez!9Yt6B_;GXKQEBXN@4Yo0
z&O>Kf(BRY(D}>n3@pkx*mmRwBze_yc*1OrULx(N;jXL}db$4o1wAThT_xE|5I<O2b
zviG-~lZgxWO0Erf1Wm>P_IPx?qasol+&C#ojVxgGu3gP=xlnK3+-~M>TBsS((`wOK
zO^l(tm<99pFIsbw0s=c<yn9zuM2{?3v-7Q|y|`9OkLF<D+nup*c0MUC7w#jQuFAVt
z11^L1WU)v_&khGz7`G{#Jbugay0x49KIEge{t>1387`-Npv~JyH8g5^SuRU`z)hT%
zltKGMX1<s^yAKDb8`H7^)E32&iI<Afw=Blb8aJ`2ehZX?oyM&9^`#dWsiHHGl?VOt
z#&YMsUHg30{CA$Xki}YcA>tde@uN%HuPA+1Ba=RfZLU;|MsESU!NgXRV&yFD8@K^(
z+GOIV&OE9NR#G(z#Do8IpLMG`ZV(&am>XjmbMWzI>#gt`#JH(f3Flzo{Zid73}(Xo
zqJ<6-FPWx;^)`!?-{)mE;!bV;oJkd26>(eG#<H|sz1p^)9Zm$phPZ0CZYS*5-zF5J
z$<P2P>-1XV=oUae?>$MRX|UWv(ZA~~IeyI7+NEG@!PBQowQ8$%L>S_Bur&XCXWC7H
zZ+@Myu^x7Drx%;O4VkE;-}?vQgmr%uYmJa2U{~GA!2TX_k5sAi^76&JCQ~<$Ju!X#
z*><r*j|K&4jo5AM!@A0Cm-n|y#McNHmX$!k!me}o?J)EbVT8aG^k%`GeFJNd4E;od
z73Scc{4Ok{V^_LRMJ72pbsDBO+n7Gu{Tlsr_YJey7hUve!A$t_-v0h;{QQO{X#GU1
z>ldD}WE*ra180=n%*2>v6`YvKSkIR&pDg((Q20LSVWfvQ6EV)Y8dl~pwfa)GS%{DC
zrxyk}e}C@XX~^4pCt90bq<q?9&{?k__rgxQf~~gqaoo9-oIE%Yrm?JC>uonH$|R*_
z1c-W#pMDay_1DEzkK$7$9C(s2@laA2z{9V8^YZfYE(rgl*dUba`|Hu8iHVd7rL_F4
zwn=;7`P!tg)SdX8E`HJ(^Qf22)|+Q>Od}ssFJ$3Pt*9E&uzgDWC7r-{Rjo|C*-zUd
zsfjpPMC;swc_d7|VMR-ibDBk$@;ImUT<%0ue)#FUT}Tc^w$uL3ar55|4N=6b;~99n
z$Q1zIU0wDz)9)8Pp!eVLH>NvD^ZfDSgxb+z=jgyqjV%kOet<Y*BfRbRhi+*c6)F);
zt3;U+W9b4NFk((Xrx~d^z}v&o`+FNP3dVS}&XU)W-(?v`YT_S7leoI4O_Gew8e(pK
zk*wDrpn5V8Zz*tutRbhR#Z?O~LLXCOMovFUVdhlSkd{3G<?3w%#t{$z20;uBZE>3#
z=V?JfCsE2|vB)^(FH|@bT)#AX#FM_B=O5Zw2AEjsICL=kY4wzg>v~_^I5&Ulj1CrU
z0z1B+*2tmp(5;PIHR*OMW6jUqPB*f@k}$lfZ~pkSf(_xjC+%stYjp0yp6=(vkG}3%
zau{>rx1-lyFUm}d2hr&;@tg*gR6yooSTb5Y=Dodcf@DVbdN((x7c6C6uZ>BY&a}^g
zi2f%;H_g{{3_~yUaBdg_OM41ofP>?Aa=qeRZm>9wdi4^=2d@{7WZqIZa~O$gyUmDT
zZ)`?#dI__hinE=VW~;5xN!|R(Eif?f;Hdr|V9nIjKHQnlNFq-+jibq4yG0+{@Q|Bv
z8&*n>>Qk4e&z}8OvaG{v4uOpU0XkW%|G={iqPv1%4bv#+_BCY7%)ZWzJ5oMsdekc_
zNYmt{3aYM}kYlViEs7EbDNjfvikyojb@=i+`QgqT#&jHyLsaXeHR2f|#N>b&Szx=n
zH*VC(yCeySf2~v|#WIaHpsd}}+ZUykK+H3V&YPr8{_RDs;O*j;Y_$g3-H@!zrqi|_
zqEWi8QI`RUaQnpTLG!`ns198*iU2)ooh%&J!0X$o(g3Oa&?`L1W8InOmj6mf^Qkiu
z^0l9+9D5Ml^oKb4T9cl2a9^MG^y#P^V}O%VS_FYBYFPDqZ2utBQU7e?YMYz`cij~R
z($`n(GbEC}59Kfi+w<*kAl4<<|6;M#@$s5MYXM1TaE=r76_M%#;$#I=kcnTxv#8?K
zWqU->&wagc@7~Aw^eZlVoIA|~noF=XU0pCb#(A2V2amq~`WaMRJ`8+8z!+=4Oq0-)
zm{^@u;4-I{6J}zWv2OKf6KvMle(2!ADS(8g2J5<a?%a<uBZ|>Dcs;7oS&?R;NM@b<
zhqZz9+7`B=?Ycd~Ql595PAg(xX8MahHoL3JD7!h2&S|nx8YUyJ^cC?)Ov{_JOgN2o
zMhqR={-eX*BP+V?$YLdrrK##ox6NO2(DjX<r;`brO)294twTR_q>JbTiw+-13M2Yc
zDXj5^!f-Y7a(w{xfa~GZ8i`_c_;r2gbr`ekJkiT<#2Snrr=^{TwwLsVRBkV$C6wqD
zeX)o>Rr(l$?kd;<fjRH?kqd5X-Ms76AyLUp@M?l1gkBZ}zZ|L=+0PjZUd?O{b5Bl2
zJqLPTN0U1XqDEE*EP)$5EXy=gO_}sr7W@iQ#m1DW`a28wkASqLpc%jYp?M(ds9k(d
z_LLsWVe-K*6G%g!TOJtu0ro_I<8${ukg508kBHFgh(ICG@%AeW+<YE#qr-;z<gNaJ
z+^SQjm`h37`I<*&P_%=y<hMWmIBil)|63dZB<cf8`;pE06`*(gtz*aICfT_LZ^aAy
zs6!T5qMvcwlBye!J7m%_7+dyy!J<W56ET19aC5OpICB!VPT#ciYvLsR)|3#jNO?-P
zz2<ssoegU@?pj@PS@CJ`?@NnJ_=4lF`{HYu(0c2cy+*WTqi41&7;x$0Oh?CT3dBUd
zV^S1LI|Ox<sllIDd)KJdtO{;NQJ!?RY;H}9=`aqu(z<mx+ON3Li<HoC1{=bvkLH=N
zt{4!Y{!pjGu0TXE?>OHb+j>PxS8q<^yQgo~;s{CEkQAnN)&1>O2lk-aJUz?$!WWfp
zTkshpXYOp)M@V$)Ogp|))^5V%@bPqs^lvUE|K8qu%!}+c*tpey`0!!-xpUm5n#7?o
zAgwJt2!XaOuMG@@Eh%&_b*4RKKUq;>ecywlVPm51vhtf1#UDR5jM#<M(mPJlFxB4o
zHBJhnZ5!a|tmW8n(B?n%Sr2Cc$u{LaPk2Jl7X;gK+IW)|8b9PTv$l~act1qZh$u?0
zXh-j*AN5?5XVYm?*(I>#C2fvMMs*jcu@qWPL-*mB)<6xNkmK&IbsA=cWnpy}sGh*#
zQMWF4>)w4Z1(|6aE5veABzxHl?9zNu<4!4A>fC#?XBQ~ihHh!0-2A1A0@kIQZb-hP
zq4uXDUNSM^r~!he`e#0x;upg2;u$J*ysQjD@UypX{oyk-Trv@CFY%4kGvW1aq#mWI
zo&PA-CXw^N3#hwEH+@@}&aJ&d(e????~bGy7G+yw$GTE%7jzucdtu(MpwEdg7mlt)
z&%0$&s`JfTw=UusW>QXZn)13MP@(?AvB!3R`el#eY*&XQ(%!W^bD|YJ#2cZb+oqII
z!RV?v#-vr;Fs54%k;p1<=;Pt<omY&3H{Pmb`U)>@O2>ue0U}0}o|`=x9a`<t?HsN;
zLf;CwrY&R!6|fZt9HUphG_YjZhXC=GXgy}yl%bE4*TTk1eW4FeQb*&T_^ZV|#@o>)
z-o~T~Z@RICL@2%DdB3V}^3||DwqxLg38G*%^#?LP9AIp1y8F|X*dd0kTCLuxR=?e*
z@N+-tP?B<%-!^XFz7`M36pl~L-hEM?0pnUMY0e$riqS@Q&1v+IDa2d1ZCh<)#K2bw
zIiE~;AGDuPDr8`?$ZCqTC!~2`^V^*M)R-c1Bo%Ae@8i6;h<)1K4A~0%%WqdE3ZqFR
z4_3G4?)_crF^cB$VMB{PRgc!{LbuzhokNxTNuE8N-RduI0ew>h8xR4zDdf4;=vG-K
z%scD;{B3neT)u=-z2E|(!j!2~t3z5<F3>b&0Pzed7Xs>4bKxAV%9zdyWQSgaSlaqo
z+$XEWcEj6lPU(yoUw!BH?Pk71Q$xU=FF`0oLs&&2f6ykN1RibrJBuZ79dtxt*dw^i
z;?T`nO!me@Xr23$np%IGGx-La;0mur9<aFM$>pDyFs!%dlh+V*bo4(VKoN#HV1wD?
z<kWU!XzTt2ntu3lZR@lP7ZeEQLZI->FBv7a9~_2T7v~cc3zxT0DCLe^$aSX^qq(aO
z=gK<HffV{3zTje^`Gs4Hm-pEi-+2GNeN%icpNNWTx3D~G2x3@{uxAAY8_0v5Jm5B$
z{SjwzkiM(gAF(jSO%QAOJnl<%)(Xh?$PGgx6pyfuZ|}p#NK<s3uFt3*w((OTxARZt
zy&aho9xdk4HFrG;F|8%3?lbp8BX;>h!Fa~AB%nY<`HN`~n#~XY{u$A$G!xI=ZmFX`
znq$bDJy`?qRT%hM$<VTHFn^V%qB@(S!+Uq1Lz<zN;TyV-cw9G{Bc^QkrC%)yw>%m-
z`5Q{*eWV}R{aOTp;2l+@nco{yf%VfE&{j#!IAJE_oCV^#gv_8bNPra-#4E+D;*Rqs
zj2pL))X4eq>Q#nwGJd5CsYGi{-O$7^?1pJa`rFjtewhxRU~a07;_dR%BU<p|)>HSr
zB1;&>pa7tqA^uC<-KWr>vHuO(bT;VKrU*wzJ4Un)0trh{>&&SD7`r!bcMrr_Oq2hW
z#nGvVq2gV|l!9(**^7E~xF}PnI66+qF_JP@<MWF*&70J(UzL3+a>y%Dj2PDSx=hN{
zp=d`)PDjh$Zf~{w;8Cg*v9qVEz6?@aw5Ay_7t1E7;8I(~exE7I38Oz4h6`O-v;7Qs
zO0tbmE%jRzbPZrMi;WU+JyLm^lk+Fy4PUiIAY5yZp+RVPu78M=Ox)C@eR0h8sxN0!
zHakdXH-|PP-n-i@ZVC+nRhmM#!0XGNVH|_6q}K+*H~i78xO9M!)@l2ub=`iTR7{^z
zHvnXqpIf)phIGad+gg>Co+qSzD$lAM{q@(APuZCj7BCvUrZM+#xiEW(;cL+ik(pWR
z?(DJrinG=)FP5D@VFch&t69Y|XSZu=o`B0V##$kaxz(k%GRR-shXQ^}2Me{}zAKso
zp6i5<+E-QRM@7Z@enpQXNLxbZ7)<N?Wk@RdBn{nd@Vz|q*BfzyiC4ylHXoaFFD`>!
z-^HkK(;#=Stfk$r-#DpbZQ3ie>V4C&7UqK&=~!p~@%Z0#*u<pCWw<bq!hbES*SB2Z
z)Plxkt4$~40%zF`>==$sI8&D+vux3CY3+%eU_b-0zBOrkff(|<m#D=kFW^FNGP;LG
zvi_5Z%t!hWI3!B?CaeY*coX$TjvOguEXdx@nv<&bgFe}L`rnPz#UMf0%2X0g6<?O6
z3<#uQlqHNwe9fRQ)Uq{^7N!iiNF?5u(l8ac1m_&@s`f2oOH1fL{zYmy*}<Vz&vP%B
zPA#pQMvWU+x$^i~JQqlBvIZ8U@BaDVm{P`GPvT2O;sb%pRS1zLq=Dl+ksgqW368)D
z&*tWlI|Kw5b2thj1+1fyj6-#8PQ?^=xB;BI4e)62BkVk*9=&qq%EsW$c%jjRcnWN(
zk<7$_9Q`&OA&B_pRBMHbMEX#ykwH_Zw)V#lfgVfl>x&P`yy;w;CerdWp&WTfKg4&B
zBc@^C)w18kq$zj;ZcVr_oHub#1CnM+S$)3(IgYw_KT|dKuP<T|uk)0GNFYtR4_D8$
zd`-$MI&W!uQJrcKWIAb?){b#|r&i=PQg{XW{;U4b!=gdQQj6tlKi~I|8Nsu4lIOq8
zI&<T<Jh!AbP#t*Nm<z=ug%ANorntJ-YS_0r;n9?^q4^KkVt`|QW&!5wF9VIz;~a99
zMMQR%+}dLo3z(=E@WhR~TS!gjKs3>PH95?iXR;6M$^OJpDhm-4$n_OwP<>jJmdu_r
z$2QB|kC@TQ$7RKskU6Q#%V*UjfAv~kp!;%nFP4k|4>%@FXzT`UEfqV(%_YnG7A*0M
z9<kd4j}P6bxU?QVM`q@KcX2$hl0<zi9H=akF~t+}83JilFj{mf{jukvla*A);dhy$
zT)jn$NjVvul7A6&O%7YqT;u~UphG96^xm)`s6&UDcf&O4(vHje^gAFp!!DkZEhy1$
z(*&90(X$j+vr2x`)in*Spgky#2?13TOUA`G>p~!0MWAnnp~T(x;#1e}<J;#bet73j
zk&7c+N|jIE-`3Za10@oop7dG3nU0J;T$k;%b$*v&Q*cZ4mG=N2)+*^{Y^+URTFi|=
zPNv{A$?+o^8t3QRHp|c?m8|%Fi*q6<fF3Y%w{d@HW;s!oR2d|aXKoaZ2sT<t+gMQ+
zy1Ej`Yk|@OVf<!bFyfZQEs99#X{Baq(Nlx5={GT#TT)0C{-W1>=uu_o#&UVG%>~X-
zp0atw9fG8AHQfA`1coPRcW^<4II`1rqL*J+n35u~0E;FRoLyX~BNzh1iZ8&Z3Z5~2
z`Wm*|Ue?H2rgbV$$yq~Q2LWpl3N~%r=t+_rWE2rC6SpHzoswHsqh;*o*|f51z6rB!
zXmxZ<ok4>Jg*1pl91E4CxZ@R8xz1gP9cuIdu)MiCAniVc7dhocbYVZ;7xJMf&M5km
zqBivTXGpuW!NLo9&%7^j;zYcvme9SFCf3p4j^0WK1;ma<n>DVch;Idr)g%KwzYQCb
zNfS(M$7<cxmSYnXL3t`n4~S}gKINaVzji!SM1-tzy@l6!EH@wp>7<>AjQsUcnDcqJ
zNw)6Y*PV=v)GOR3K1evOkIEX6P-G5?L-ePlMox3^4hp#VG60+K`k<@(wnS}dSCHLu
zzMJi|=*Y+m9CNjT&lvZ@ye@R^!o9>n?$H!lyGnHTXSHk9S{)m^H1zKXy&5%YFeu3M
z5tNU>9?(Yy%4%>a*Y2^?R_nCSS}=>!%<&C!zU0Suc8@*oyn3L{^C{omfj0ewJ-{XM
zI0@cSSAOf=yBPx|1A=E@<^<|Ag+zj{oU=6f4sbEZ(Yu_K1}TM15X}ajFT0+8_ihr0
zca%q&GYQC+cg?{JFxwW~4+6H9(yz^C)?Hm1P5~~QWBve-{i7Y1TTmKCEiIWR)?oz7
zfDZO6(7*sk1sCjq51mkwfC}SR%AkuN%dP!}v!M&Y9AET$a_7$b_*#zQp)I;;TDBp3
z>tFfO1L(>8#T7(J>%m9&0%w*b%$PfOy^sz4F#~!2deqMS(w>d7SA$wK?&(-}p{{bG
zOM#hCz*CeqTc?wo`#XtHp2Kk)jRV>udL^y^B`AGX1Edio+ASI=W;2Ai;$2U|tlQK6
z8hUPrek(T)Z28voqGX}7M7nVv59wL8myyv^toNlIOu%ZbmdKH%={K)Ph9l@rzdKdl
zy>@L4KRX<EJwb>k(`cA|{n!H5p(d^uk=XL!RnULEv^$nHV(o*RZh)QY@q~bKQDny4
z`#2E6uG?#~WCl}-zib=k375$!mY@Z%$i@NR6B8?KaI8xZ9E8;9(aaq!mUz&hb>9md
zopEOVo*mI0CemkG;NntE5uX*I<?O7XKO2&teKk|+MH2kH_*^&i>)2}87hh&k*9#wl
z<Gf9HhlXVWYINOx%*1rBd-sjh)zP-;oEdh}Q*6!6Yf6I&c-v>i444BmVO7G%uWe(K
zZl9|cL6G)K>!Ivr3%+9*W?9^;t)C3*?EOdQuC`bmLw#828q>k<zOd}sWWH%PP;{>5
zoDLd4*xr;qYfr!P)ri&JM~0E$izo|S!Ai$!*rtdl8c*eYe8piA;{?vq-({?J*uDFr
z^pl^4SZyu5Z^T_yy*33v3NY)VbQ+Po69(vBsu;!B&hsXv8IJSKIP)&iuM~bd`Q3h|
z(h{vqAxL&cy25#)T=~-SKHW3r9fX6NrfDQ|;@k-V?^kq;nDf=D*0UaS`dTVxCjG5=
z5(7OvjA3*j!e31<KZHksh(aB{MRl0XUIp2oc+;mKKpDg~_yOve43lqMB(cLGc_2O6
z&QKt6^&6DAA=s-~QGQrBa03)>2V|#W=uk-RA#F&MpIxSQZOkbqdO^6J3fsU`3=Q(v
z<UM;<g<OU<OEu0I6DunXV&*3D9=2czse+tQ;)X+X;DhtxvwQUHDSprr<i+|*`czVa
zfAxSd^@nY9fscjNwnXDxtC<v?glKiXzZjWtpl~J*=4<2QGzyo>JIBT~5Pz7%hi9zZ
z;HM2u;4-cR;`zxV&*BiVKSr3@4;sy&)rL^Rx?ucSXf&n`G)dW`A`M_Um{f6bc8<;)
za+85pRU^P<#XSXrk}8=4Ul*wY+NddW=Bxu8d?u<g4wsx)Ol#qgN@O5&6=fz`sZF`{
zn*9DV@WEw_Hxi?$s_a3)0*X<13xK<L=~B_ovQ`8SkyD?7weTzxw|e50A-yE{M(1z1
zGbvkloML^)p>xUS*BMc*Jo7I;y4983PcjsA&NVj1Z*;=3cA9gI_atZL%TII4H+Zz1
z6KaSdcTPmRDXR*!;Wh)5v|(IUJ<e(6e$%VU1-jE$7ba_w&|6#yD9#kw)9-6_l0w6_
zl*Io{&Z%cS=yBZ-x*bjaA*mJ>u8;$(D`NS@5!N6rU1QVI+XGl%W;S;(k}mst<%w-1
zHL4f2v&Q0iZ$IrQ$!!^tnI4#=V=#>Ycv?FR#Y2Q_OZP!39gUt(N{awK4c;v)r$^e7
zR0WD$|0PR$($|r0wGbFy7dLf3PL>TC-oOdDfy5ij*I8jBXjN|j8M?Wa)SQ!)bN<&{
z(t(*6&ZNHhG-{Tkqr<a{UgD6hN)t*MPg}Gsyg!oZfp4?!kaNYC#L@Z~Fmhx;d^SUI
z^?I2G1{@w@=++jChmJAlBI<AY(FN;3YiKC;gG;kyR@8vpo!hpFS)cQ+UXw2<G1rey
zI^PF%)TI1J`GHfQ(wM$oRd1@>>kda&&$OVZ>;mnE7Ro83m(SrLdy@n?z}GQvTu)&}
zz$&)sWJH8GP_Rqrs7B@u8&{tvR{H8_#JjsTlL8kX3qbO^Vt)TOpK!fw3TgtYMbD`@
zE6%EP2b6K~?Q!1aNMcFDX9_*%nrWLSAl(EBiFoJg`(?#}4lsGq#>V8$E=1@_t7HoQ
zJUb<K8J_ips2SC3sHr)fS<Zo=*#og{`RC7!*iP|y(*B5%rb0OJlBN`xhZ0?@zj#CC
zWF5V=2pPCgR}!g2;mz!BqB4ti4-Cw@qfPJT2AhXytF&ac&9g4fogVz8(37s8t4V8!
ze)K@ja`=A$u75&u8{klmr(1x*D7Uwn7NwsvxR(wPuDlW=f<7fAEG>~dEAr&YElbOZ
zyk@>ufrTg9Uu83U;Uu6wiJ3ztreQ?<Yu%TdxfVQb27;)e=1Q}2ZBS6q0dK4A+$1lw
z06u5wJP^~{pX_|jcvH&MfNOt}J6JzBbsEhc44WYD{UIS^4}|Hkg$GhheRbUe9_`Fy
zhI@Xr2j4N(!pbQOTX8u-aOU%IppY@`GwHbX(XF>!taaV(+@3FwAAQg~uxp83mrZTj
zKY1uH+PBxH%RHkx1VY^`j{R1+The7Ifrj7#_ey7xi_1VVrhie|h41q$JQ#F?dT&`m
zRcjo=krq88&k&AQ!aQ3>rd=RVnRp=n59~Oolfm|3Yoy<jfm!R=rt7d2uy_eEv^nca
z4cHu;Su@MMVG$8hZPQb!#inY1s_I>BGO_w+{6-(xaohFe-a=odQK}KwH4EWw7vetU
zbs46zfm3tS^_xo)^#3Wo`soD7woTrW;kVDZI+|(MuWy+j^_a#RgGbeyHg3F+Z<y4)
z(-}6k*iY-o2=_eY=rHm&kxCP>m8oufGm)#)01fP8GwwZcUWZweiNHXAk~E~gxca%5
zn)%1l{UIGGax<5si`l+(?r@X$`vOv?W}KK&&(_xV24I4RS{T(42X-}#rdHCbH%|yE
ziE->N<IWDgILe@`5uB_Yi{dg%Cfx3sR6o%5zn&FcXFzSW&wT*Ug7xLVYmLpAYnn}!
z4_p?^#SFV9iBe!E-F73c%_Yu?0?)ges*M^F9jEz$u6Z^|kj}@#LW?64wB%>QqiutC
z?8i_x3%yPUpgYZTU)b<o{x<coi&;zIp|qs*vwUZ@g{Ax(6Z#TG?~aBh=Zi@D&wiv4
zENzCB#U8-80i_fUzL};%lM5I-u5WB~7>V=|di>rj?+s`NwH%LuEDYIwxL%{q{X!=m
zN2alKrsIrG+fhndo!va&f^_#LT2Ql1c$u}N>N;@8JvEvt*G#O31FtjkY#_56O@xR*
zvKdA%bt99%n~-2>77B%xQq*udE&nN_4;Z<U5QyTOiim_Lv4{Jf*oKKnK1r@EmwX9(
z%Ha2OcTRE5Gvf}JANU{7{I1E6206X83h6L&Y^fVge_sLk5=oA)UXOGazmnO1OJ})!
z)EKAPbx9Ia>|Y9xer#mFm+o50aIys5QGa;<z9j3apY^V}|Cgjt;PNvbpZ_^^;Oq&#
z2)p=;<a4HTK%NN^?Q~_JoyggA?4ac$Pslm9h}aTfe+1a5E@-IpiZ@`X8ds`bAg!ns
z+;;wq8yBy)|C<W`aW6af{geR`IsnnCHE1(z)Z$>_&y<!9@h4^+Pb_<W5Au>(_b1|2
z&yj5Npj4`K7+faw_EzA;*KTfkv;juG++P)i2N=+*&-}-G3Q4y&;Rl#sNJcSqhh@xZ
z3VMso_k?4K1=5huyEHnOXiA?pVAbu+6|qkSKh7HIy18u{q$gBxV-t5+dJa9%?mw<b
zCev;KI8f>vWT6AwGIP_WXz_L=p;so`+gnbrIZ;mf`@(A(AG~7%3bl8j5Wb7a1Ou8C
z-<<{{F~DC9ykiYJQ5Dle;(iY`GL%YF*9Y4nosv^RI79hiqEeGQSDSi1-GL57%cYn6
zsVY-kCqkP#OJY?Av4Gc$<CX_&%7#>*|M2wj3w2KjJDb*&H+iccCX6vJ#9jsdwuvoR
zmYBKjGd8>lwWip0v~^CGAncv#YRKV}l>sAaSH#idT}ji;&#h(hx8Af&;3l)0TXyZ*
zC9Vz!*G;^~5X8T*Waav{YGY^-YT4^q!$TB6V*gu6c<jR1?ZU^$<49z&3hZ#-#Jfn;
z&(b;05;Z226iWv<E-m~6G!DPm8oRL=LU=!LgH0~dB%7KNR22*abKa0E#RAu{9Mntl
zZVn8brM_&z|2&ESunAyiQv%(th*qYv5K}#A?bQu3kSC?I>h9i>u}cFfi=MrBap-;4
zolKz*_a8jCh5}c1>wI<BSvcZunp(J=(iSGiK2>jBulw*0Bd*;%VAepg_C%R`LD(SM
z{^#-QkLW<}dn53uCj-!C&jZy;h8}4e9P8*fMZ7o>=}kyP0sd>+YYox+IrYNFf}H(t
zH-A1crw;?h#T@i3ZJVXZ#NH}$YsTgDCBL?R9y&{MSeM)p9EW}m+~hTwl@QV&FMY$-
zzR9qA=|5__;3~<@vJQAn^ZD5Od0`?143FUb3Ev}q>|$rG;*4(vkq34&>CDDC9UA@m
z>&A$&cGh5xk@$~Ug;|+tf5NO(QbEe3tA<z~Yluc28DmwybhFtwz=phg378cyZy^#1
zk5v5;*EZ4RgYwF!nZAG%&_I0Y#+C(brI;BwAvUk*EN7HcEV+A&#6w+84w~6K`h{b%
z@})Wb;-A0ZdVgwcZ6Rerd#;9O^1<Ch$x2CsbVaTS_xHq|Vt`WpdUPAaECwln&XW>Y
zQk{_^izH{3Uu;u+lqmfslPfEpV9vpG7DY2+dD-R;`%~<d)hS4AJG%4vo9@6Qh+Ob&
zfDpATx7D1gb(oS?8+dG5cxS^1xLx}|Ar=?EsH4cpA)`h4jYOS^fN&p~4awnP&Kh80
z(XhN6Q&VB7Sf+dq?!EL6W^`;IDqX$%rt^He7{B3~G>+>6(b1(FzmE2Dx<@WHcRxYA
zxIp_tO<_uFRgf_hOr8P`bAWd4-aVO<i{#st7FZL+U%+KvjbwZalXwP172Por!vkDX
zL`GWERjb2T`MyH8#lTmpEi63|ZLMLiLr=FS@eH^g&#p}p-j}r5I@qA|;-7qz?O+&)
zV~XJzbQbvjwr@8AUp4i6;S(o>XbXp!xPHDQSfI_LtDlqlv{p+}19|<64vucJ;5tmz
zp-G!f=E7MvJ7JZ|q2$x2pe5Zc!RPsq5KgBo2BANSjl%v**14E3&~a)2?xjXiBF?j-
z;sxcHOm|I&QVb~Wy}W$vv*8;crTB``*FMLZ*#!mlAU}A8J1tr?sN&1#z^><4udas5
zQ9wM!^WsEDAMYW3h`Kb+Sl?G{c&Zhji)k2Q)uZ{!?rm09Rc3R_xvqFZG!Try)b0$#
zZW-GWu)bYtO|Up27KOXG%=f<qFEgg*1fL<x|0jbPiWl0@tsT^33);4B-I8O5NnQtc
zUuEw(VHT#|iKDY)QZ!#?$FY-sqg^PBn?uoBN$ycak?B{UJnfh54k-tNmq9q*pFX@^
z%gMKONppVZeMRa}r`i6nlCp)V3pQuE?-c?|Q!O(NXMkGYRoCL=I}=uqw(d@cobxWl
z`pQ<U&dB_HGSD8eI6B^oV;AM!Khc(cUR?zgX)skjg^_OV%U7@LVKwF532lISv8u8d
z)@Dww#l8V*DQjBAEJGuU>yGu2v3re?_5G@E9rh=wl}~ae^@woxpYEKWAjay9f%L`&
zq^jQoRH&jRr63LaJq_;MQzlstK>X=hQE&+Nt+03W=^v%q=rPyJ0?6T{Nskfe_O9sM
z<<u5Cx|$n4v+)~_JFo=ajf_#)=hT<Qaf~sfWBU%CMipP}%a>2{h3>CXRtQ)o$07Hq
z%2YRV(ZK<&)YO)4It@+(=Wt12pcwBf@AFSytAm=M;W))Sa}<|X+HNglGnSHudwr?%
z8xt``TRY93$F32NW@V~Ys8BAc+zR3kp+6H}5R8j0kM*#gMQLl==X@1U>ey!_h&pfY
zpE#_4Tj!saQTdfJ2kA|o#Eg7M!=Ke~`RLOp!OBJ4UrBP>iUk8u)=4W-C*Bf)&c7$n
z)`)(0aW8_I36|MhfaHLx)(SJbwk|a7>++(uYHnD};~9WvA+I;CT-iUtKzzuomaw5j
zB!@it7lhgY8b@Beel3)8?)F9Uuip>#Gh7SCyl+=FQtetD45Ck;z6>lA#pBe`3JXf)
z_?j|z?!+8-0gpt?<@eCkFd4`t=?#nknO38=dj=IQ>y@`XaY3y>P4mdBmoKM~{o|il
zTO86tj18^H>?BmxZf<P!B)e_5ZVdpjuiEUL&8#875P6`_)xvrZJ$1{-AGV~%J@;Y#
zi0hpg&_lDNjI^Gxa<;!TgxE#sQL3=)wiJ8<j=WISn%F6L5jymzpW>b6Ti~v7hi<Ax
zjLzniNQ7Ev&z{}O_A0As_2$hR@zj8CPz~;&{>?RdJlm{AP=<)wy6LWj)lTo`AL}XU
zHe4m=U9n`sP7i_mM8j(hJE_B>|4g0gIv--SFiyx_IQ>?mt(i=#?cg63#6lT?V%F!u
zgUni6NTKyO0tEmantNxJ<bR~6tpL!fC>+^?xF?9SM(G!~=(+G`Zn#Dv;NX<`^C#)M
zpzOF=(SH7}(Y0<vSP<6=L_->){~`I3ekSSB08T^t)E4xJNQ0_=wZPgiAk9xg0aOu1
z5%;nZS5N>rijE0th4dVQ5?RSyQ3IS(E<NA9za>3opj8FwrP6Ye*4<38TbuW&rzo>X
z%B3|zpASvLpCDToxhD*X6lu*n#tz9mmUc;@;6ay2FKR2!u79SI@Qf_#=7`kyq63R*
zaMwX2`V>hQh;vNHG5HVA)PpM}UXmj6;|cwRVF(OPfl8&h%Z2X+immxP9ruxxwDC7f
z@))G(O?9SD<*G!tm_grfQ(T)a-MVcquT6({=lo#m3$yDMTjMI~dgiB(NZoccGWiac
z**gm=E@}h&iv<KOrV`Espd@G+oJwEdD`U?v!0SwZkiGMi`yuAZz@-AkApMq399i4i
zqet5d#zDcq-#*E=pqU$Vd8q9!QN>}F2Yp-5W13%1$vAL|0TFl|cH@!w_3pm$^R`Yy
zXu|8d>vi1#_a10o*DKfe%Y>hzD_UINwc7a693Su0&A0M`ci511ay+esz)<zd^5!i^
zuKg(PmlBU}9rVla9J!0Wn&`e#PsNPz@QBN6UQ2;tzmmB@`nOyC({ffy(Y&F2gUXi`
z0r&Txg$(SOpJc%p7f(EvQ*-07QUM<8)NnSLOda}>`g?*vC^v%-T_jVdYnN8i+m&Sd
zBPu_kyNZDI7r1}aNz<pdAs>-`P1P%Q>y~n+LHh{xm<LpqI%cac$k#4ka8~|NuX*Ff
zp+!AhuBN7D{bZZOkk4N@q+Ad0b1L1|$~D^|vOLr(w7$y2JR{D%8~gjvV+KOx9PlUU
z1_xu5QmZWRB;k34JBpLVDYrZHCN7g0c>&U0as2}B!g#r#08qCG1%uQzY}lr})rm76
zRNev-QFXdTtrwjV<s$5@q0=6dyZLw>g%R^}&6@gw?x3^3ThQy5)+U&$@uZbufq|OB
z94UC*TX2ZEyWFtrSVsracQK@RDM-rVP{D^VUK41JF;GNY^Z!@GO;{QhH};6NM~6`z
zoA-G!<WXrO_^z&-|9=1|#P84p{WPyU?tB=4N-RmYW<Ih&0bHBC6_}%2kD5+0)VEdd
zlFW%#>nx(b4x@A})%!eb!xQ=TT0e?X4#d+skydRIJ80jn9<-KyP%sbw1{a#=ayhq5
zc8m(%F>vV6TJ%I36cP{xv%J+~Qv4Dx@qHkHFgxxS!%@~pV_J-n_0XY5t#XChomT1=
z=$#rJZ5h1d5}e1P<$2_?kyL;&5tFd6BfeX2y#LAi*jROz8>rKU%yd9^zpA!q-ULpt
zeyP6f-G7U<CYK&QY)X((FQmgp^xPK^GZm80grjufQfrNss(F1I&BHJ5;pvNgqhBeZ
zM_PB*e>|bpKupog0#(T)$C%RxmUO*|;|xYzn?mX_@4S2QppHGr^JhiF+4OxFQxRTY
zJy3JnaU;VsU_;qh$=8p9pk#M`dB^lqgh^3!QxT((JP@X#i%;Ns^e}rl?42hS6NZ0d
zu&9dRi7&7ItyVgb-}M!8l|u+QDhmSg5(i?W{&q(WcyC|d`h`RtjGRIP<c|J6oL0x6
zhKFCA2GEUq$I$U=c6N69+nHK6=2pyIhHV0b*`$ayUv)vRhiM&tLFCdr11V?UWjunt
ze;+x1d=qLvli*JU`sx<r7QhAQI*#W_^$LK{(1|RbBjNasMx1U&PFdACX7}d5Z!N8E
z;RO25_A7e-a&&FXU=nFoS`96+390wXnddBw%Gdg?w30=-P9t7Xh~xAPf5s=#e5c@a
zG(sCj(E)&XdF*7NY%CGE&_8IM{Jk7Y_`Bhu7h}-&NKHbttg2u#pAGs#b8_@6W2&r>
zSU&{12PR7sWDCs1mXn-b5tWGu`#)a1lgX6hmh(<<lT%M1%FY74GH-m8d{JOH%gZ{~
zK2pq?{d*6j8P&Q?8*_i$Mi2_sAg#9^I%T#Uvncz~D5HV*OUtFzo)CS^`?TulONi%`
zi(=-4oO_%z=2s&C_y`mOxKfRCqFTrET$5%)D}TUAmu~htnzungySlcenNj&V;7w7q
zpANN-DDzm4TmD!M+$U}Y;ImaRI6TO7F%zri;t3-A;W8_ED^3H*_bnE@&d(Qme?JP6
zcG(r6nlj|!`mJ^N@d^Xbys;#eH9yj=hbMwx-2P!K8$jX9z%*49j`_u4Z#%%oE$c`N
z5CEW^gShXq_(rFWJ#b$bUX)*g)K?*B3UH@)o;pI@WT%C*3(!z7GJTjv5ES|;WG6hF
zwHF;YHyR4>5pmxdzM5wH76fzvkDm~{4WKsjGrSB^DoKOP&8fptX1+8n$h+p{?>^M5
zqgzA3M-x#8fjXOs-4UV|C`_Og&+_v07TJ?i>5`9GXJMb@o!S%(oswk=blWC2!8;zp
zgBG2=I%j`lYWdNr8Db|&^Q_8Ltvv#wb3*)ke@alp|8@87Db>xXQzuYkJa)qaVJAtu
zJ@h9(D>F@=^|So^4q238A$;c78v*ZM&RkkQ3%0i(aqSJDs|@l4QD-U!sRG5-O|+Kw
z8{9el5Wb5m=~<7m=#18#I}wq`LiVJb7DIEAUv7d$zB}2?dQrrpOzV4@-@os)^N7a(
zgb7Pnkl^TWgVhwF(}@LJmQ(TD@TH80MEx9{n2jl;#r-YR?l50|rf^nMtRn21iB7@k
z+1#;X8zC}nXHQxU^CxJgm~ZR%<y(2t1N0F~P+0V%1W5~1$ED?u>K#JKr%zn@Q&Biv
zV-H+<OfC;j87_#{?+^KTnTRIf?lU1N(=P(FGbM!3*?vb|FW-}N=m@d_Afhc@h0ZS6
z5F7<Xfi<v>kW%Q{(4yTBgcN|CS;u(vIsi?|UYgo`<bE*9q~-;jzLNQ=$hDG4^7(-Q
z?fHekiSE6&QyWNwk2VGz7Lu9^WUy5fp7mMx;x=Te=E15Ttw&$#2)URFjOQJWia<u^
z8dfp(95>Yzg3vo=#E6#SKpC#Ae&`|m#HfxGimpz4lM?}HU=`2ayy^Hy_j|W*U*b3r
z&v?TbgWf;8F~;pb!yuDRK}@vB|4l{RK3RW#chDw_y|eA=P1yF03&6Az@US2wnJA$D
z2?WKD?AI!hlf#trBq|vW$1c55Y6sHBv7x<{3sA2h(d#5QWv^)>Q<-jch^d$dO>^Y>
z?GS)k&}x)e;k}26nLJok)9~+Cp8;BACe+_M42R0p6P~I}revd&msGx*9OYrrbw1>c
zh~G=3K4Tr4^>D5(EsJmEMwWQ-59x+3eOM-ipdrV$pWz4?9!S+pD4QIlMolc^p;(k<
z=j60j1!3<Y%YhEHq{CoxK%3LD6#Tj~#3rW>Um^MnfBw<{bBleK^NVDdnAo_KzrQ^)
zYa6n7QOo0#J%0Um^<~@s=Yr=_)J8@{sTZO&1A9GmqY)gmZGD!V6OofN9u7Vq!q=NN
z33%;>ELDjK6enXA2gA#4$*9dl;fkLABWMO^y~T2pUClEN_V#zSVaBoP1#}W&9UjoZ
zQYZroIx+~cM|Sc65t9yI)Z<Rpe-M3$Ru>RLlax11X2PdX9w4cQcIg#TPphw*@G`%>
z*5hHi4#KLhcqrjl5jemhr{jP^22GH%+>-GHI@cI<^D{V=Qr10c<KV}+ze#74V>)n$
z%nAr>A$Iy7;V1~<&`^d>9B7Os-v)|cA42Qp*-V)_;(_l~&AQq~;-cr250uOp@n2+;
zEtTUD-3V{*pNZYIA?BGt7Bd3aT7`A20Qnu=)zyFSho&mk77&Ac9!=2d`=0<Io4``m
z35OYpL_CneWLy(&Xp3Z`oc9Lp9;-Ojt}gpbo7r@*8$vevpY3|97I$Ajg*Nl>HqQbh
zkjrEp5gUCTk{b{`*UNI&KaYaUn}XN8=NK8Ag|iWZ5*s9xy=V%BG0@xqdcGh}BHH8l
z8<LPtI0?qg5AKOxpzZ%o{Loo{m|hU4vyTxFGw0&w*AIlJ2S2<1Yi7u)F6>rq@(Ehi
z8mcUE`}T1;u9PSsP)EE`bLiGOD;uu}n%qEYS(7;Mf`4zjb45Jno86F(+>z-XWn-|U
zhL!dgIRpo6*5cW-0lCJmBy2f=Q5$)bcE-s%u%{clMaKJ}9{P*EEfsEn$9dskAr6Go
zubZ;o`_90jZ8oRe*(H3FZ?8>V@l|TJqP(z%(vMC7=f%I;7x;Co+awMsMWL|gV!0FS
z(j)ofnP;OC&yi`{L-PTZ;$8^$;+a3fKqjMU#EPl1=2QZw5Z;sv1UiUIFJ6pe+j!AW
zs7oKj^xu3$)l+;1i)SsFF9K29r-zo)h#nx$xwHsmnjvhFnrT>BN@JNNP=i9TQ{=n5
zyes!uh>o~1`npc?9#Zz-o&5YVX}OHFRviuEgg_P%f1_A9gLHM3D{n6^Vb}<&+n_<>
z@@lmP{@z}aowH;Iinw=!S`8qJu4TMJieaY3s^)EU>J(v_q9V#XB#w)Vk$MXvnt(NO
z%$ZC}7f)ccbBZTck<fZ9^BnQ7wp>rOB$OWv3U9b@%`%@HE^5aoLEE=CmKhVIKPfiA
zLYOE`%-aTuPZR=}*IFROu+B8p(XaA@N{!GG({;+l>O`qQiPR|&;N~V28`#DDOsWBT
zQ00oj*g7=qPZ`T&n^Oz46>6D@F(Zl4SH0-fi5wo9kWA^SqOjNGOS=`~D5w*2WolO(
zjD**!bjDyy#@Wuk&XDUPbN&&7<Dwih<pLb1l_a&Iunnn~PHrK|t4wWT8%!$}V*=3Z
zM8xVs5evLF&_wq~<s`?F4K{dB^YXlDOH@;YtxU8)Y;Ja)@FH$yiX@awb8QIC%)Iv`
zu1i0bw$BDgR8_A$4y{1qb7b6!Lpj0hJ<-GI)MdEl+O>m2U&u_O9dkK1M2n>e6Oq>9
zO36!g^q2CflOb`^>Q^p6lIx5ms^JW<OCWll@j$W}loV(;PSsz3_~=m?(=HrB$*K@4
zZrRdKJ+%IRV_9a(gbvYjAO0ad1fA;-8(&LHt0&<5b{#gsEP-Z)2oX~Jk5F2f-ctBE
zZl{CbWkmKdL&Le&12J`*8+(&B_?4nl=ucMrmH2UAM)-<$OO>+Vrc@6!$i{`?Qd`nl
zY)<(ZT|{Ol1p0^r2U;thAeiWvrZ_lMqdz4n8i|USq6i<2yK4BPmX4*y|6IM<@ZqNM
zOFk?>R-t$@NDBr<6=<hyneRIRGk%i2Kk2YE=|+7Y5<MH<k{Eb+=9>a_?lwgMuP8Dp
ziX0#*Mgkot;N49!s%2IriZe_-RIGXhha6N6qppqPUjjSAEl8q@s-kfGP?uV|uzL<1
zfddzZn*|BUjeGaTxb-wSU{bC%ocr|c_1vE!bRadR<?QDvG^!O(umuarK~|~NViFra
z=rta|7B{vkicnY&4X>sM;}Z09zmZ6904w+&_FX!6-nh{6Gcfzc;NWAbmTKx&)}hFL
zSiV+5a<#JMpeB+}U8!%;BXNWTif=Egd8c@e+yFI&F?3m2W<mNhWQ8d*b47Y+eSenE
zDJd#0z9bBtIOxe_)M|hcP^gB|s+&B2enhy2q(7H-0VN@({l$6f!sQGzu)l=jGNj%v
z9O$IK*z!~S7l;r0=~=4wB2yp#o5-gg2LzJ}K<6~a4lG}ik1BNDT@Of1YLY`N6z(Ni
zw34%8gt#S({BYt+o`gjYE@&lB1364}FvF&_>$dJV!G5ufpwcz(>Cf2DOKE8%RfJ)6
z3%ma|pPXUlEvG+o%`J|^GUO9wj=F^fD(^1NIafTA$(p1GC3xL$?PU*+6q7g_C9TM*
z71a<=LYL}G4Os@FEo3;v|4Kio2&!M)u_H_fS0H`EC;Ych8+wb5A1=>rdmMuE3hZJy
zO`gpTM#@bgtG7tVrcbGQ);b4eBLLi)(5YD@_`mAAgr*}XGhL~_@pF@4)l_toY4sSA
z!58@VWf9XIiJ1)dO$5BafWtx+;t%*>uCj{f;(OLSP+v|jmT(ifV<AO3RE0nSe{d92
zQE`@IjS}(V7)Pl2B!Cj;Qm8gtKT<HK53j5fev+80zdFOL(sG_3O^qk*GRq<khP7+J
zzu%fFI5}sLX(kR(2L9r^dl1ZAxa=k#SkA+54eKOXp&>BidXjrj`~m-c@BROCF4{rO
zZ0!U!?amhQhnsayrEsUoJNs`LjhlLua4ri?Km?hFts*GsPoy9huD59>`s?>^A5HkW
z8g732?>giSRIelJC|bQ3m@H(v){m@N<EbYgth|4nF6B~I1_jSumD`EBrq>UaM&C9U
ze@?r?18Y6;p$!QS#dxU7cHmYQ1gi|@GD)OaK8U8-|LaY>ckga4h8b2zM)lWj+IP7z
zHZ-A^<#|{+Qp!uh><z529?7-J*g!`opvHfK<iB5t>)$4wL|AHT7{I5rMCArkmA+fO
zJHf2^O+~owR)rh%s}uJ(5)A-;%}2V(l2^TB#fJFU_1D58EBbz!TWjpt36n3iGg>?P
zUd^5ue{^sAcyjeSTdzG`lNxe!=G57v)_OOs+u)|zY4w8Wyu_H$ZX;TCtfSMwG&io@
z-Xq&?4p0vnw9EeN(N!8tJ~uC4alTlq%JY`bPsZCtw0$4^dX>lG#A?MKYboDeH-54n
zGv+dgNkA^*z0UgW+wW(3!6h1cZpYyoU+?+)*i1A*-rgL2rRap4!wR{wxUr(d4m?ov
z+nXpi1`XeB+yfT$PGcCpuQ3xpd*!)v<M67U@$z=Os{<uWO6<;g=h|I2%3fF7ri!w0
z%@EDXH`rTeXAhU@(vov$xA@a&n|k(VCE=W{ffhl>k8`|D!S&uHnWS`<YmO?)kfA?*
z`WjdKTEmVW-46hf5-Z$71byh?buUd*B4>~}YUl1=I?u|+rftERy3LxDWV(!$H_2$A
zV_kU#o`1aEySlC~J0uCNc~IQWKFgL+2KGb*x9wS1Wk~KLw<qfxj4=AG`I5YSITPV@
zOJ-qVYa7hJDj)y+@yj$b`k3L6y=icB9|C^PL=c$rcWe8u<A|Qoy|%LGHao=uVNDc$
zx|~OU)o7s&E+Ipqr=G1%r(f4nt@5g7w!Lm#{P*H7Ww|oiG9|YA<HfD0tLmrqF0oy6
zRe9>y``v|V5Y;0W7sQtYxFt7pvqkWw2OUQ)T1lw6Nx$;F`t^bregT=Kg*I7zN-Qjd
zL?BEDYTCvI)jXRq**1~;W>0p+Z1ER4pF1rt^b@l^?FARAG!Cz(JUv=Jv})zso$Ll7
zV1@CAJENVRd1<vNpz&N^YvMu+Ti3hRBz#+Ir&qa9ae|ut$gyMVh#GARYSyYHa9&~h
z`7efGjOY0YC9=D>Rh7#3e6WueTO!Z70sJR#h<`bs31a-I)7<0TU$UeOs<)gp7dUQS
z{D*spk|zPgw{@R{<dGWAA3SUN*}95nyxEVd!yf~(-}sUZK!Zm<R;}t@1#zX2s9IE%
z=l1PpTccl}l;_TcPgmC)WNK=P`sFvC>}HQe8B^9K`E^QYL{Ye8O|2?Q#zT{^%1c$=
zWX?LgtD&o_s}mH2`6XZAVXwbEqF2Wey+7Pp{5;U6>v-OGah6ZpEM{~1W5w5L47|ff
zGiC%k4Z@64rc_5arnWk&{=-dOsAy_x7NUPkrmfmyt+q4%kJt9}?Mt&qJ2%*61TeS$
z&Xvl-Api`%IN9|;^4mBf{^Ns1dz!iY-KFr(=#i!@H;?S5Pp-`TO;L{j=T7w3(9lS9
z&)ubk*&Rj>>)x!|%Lc30`~4_w+>>P2F3yii&H@p<zM!M><}OKa7E_h{=(+Wljl=M<
zjJL%D>-GL!HbLvjYRca1AD6_!&h-9#Z~;t236g#8b+{k?o4R}Cc{N}BbfwYjV<$qW
zBQ3^_YfQId9mZiTFC{4_T_Ma&FE8A%LeS)-l{K0-(z0F9-x#;vhs#7q<MjIYnaiN8
zS-E{H-1!PqPc~FMmmM5^uiE#gF|!#@cY|#GPAkf;ZtLkfJ9BA4yl4S(iUH;Zb5riz
zyEh2zQ`;@msSDhWBVl2_1<Olf8ynQv+fnQZ84qm2<BTi3+%&e_j`}VuwSB}o$MBdo
zsi~<SpAAry=r%uW&Ag|q<py}!xXFrlN}uRviWe~tXm)IYFkivQTYyq}3=1~uLPn!C
zSlh{DOHj~YmKc8|_pi}R1ErV+$9_^$Qsd8am5d2}_{uVji{mD7!u)tm9usP-qM0ZH
z=;`!kF7TsH<(~&PbG4GlWDt`RkoPFIq|f*|O1}v@KU~_C2F!e0OrNk7^bB<-wl0zH
z#?{4@7hUb;aV9FNOOvKe-O6UL*i2{5nw3vO`go7Vo?~c_9g+)xglBa=f~3*u;xBDY
ztgWrBtgTG}peD>>O}+8@A=b65S4Z2ZGx4U;=tIMN@X>EOJ#BY0oFrxNGbhKFTTf)%
zu25?FjIG&kE7La}Alh13TZ>teF97ZI-oGfGf0+ERV>jj|d^kQo2}=P7<bd!a*3j*;
zi~IP%@g_1_ZpuxVGf+rUm$Xsv7dh4;_3Bj;2_1cXeS2ENPPfe3#_Xu0TrlwYA+!wH
z5*V07&S1}NNr`3I&yW8wCXUJ}ifoGSY`*+62w*qcTK&eug(0qM%hSPZvwR5_^U18r
zZ6Ayk<w4^gBC0a!2#F;aYE#JY*Oth6cw>#m^xof>rTmxY$H6~*Ir*D@vwt{v<S!J<
z20sJ=`HPJ^ez?i<7oK;13_kKV2Yy_Q@)s=)f4nyNo6sNcfc(Xf;s19j|94kd2>-WM
zxC#HagZ?kBNL2j4Xe&42|IVQQf1J!Wp2ferSgXs5FXhK(<Ubv`;-AqnOLttFJON75
zR+X8--b+-pesp`2H!Od@|Lpr)Lmfag#*H+mAnev<d3mW(&c=aRC_w$`wn!2sua=sX
zDZq^>$HzwL>|XLJ)Z2R|UBDX67q`qdt#|_Sv6W61wS&*6x3QgkeSM>wRagD)#(>I{
zBQKI#zA4#ZO7Z&ck2BhYhxXw^3qknXq}kZHPa~I_Mt!dO#NI!ABEOL|e|hoF9CtJb
zbF+55s+ef8-n;al^z+SaY@JLOIjDX``MB}>C*64Pz|h*}Yog}qKcF%_SvYg<n;l{8
zzZP8m2LD!>-u8?;?L7Rh=GV%7Z>#UsQ!~2>F^69Hel2)!Y^tm)J>xch_~9c4RenT{
z*RhDub0Lzp;a&23<(+Rif2!*bpYXlHac_0hF)aMZ*BZFlrphmIrTwRWez?}}1$<Fz
zLc;e;vZ&0)JmXG8gn$3&soy`kApggY*#7+^h8|z`{hIcFPZ!-oPyO&E7Jh%H`KRuE
z|JEKYzumv+8uea$;{qr}V;m=rb~XKq!(6HH{g)%&y!rl3%f3IAoKx}NFQet8AMWv)
zGvB{ZPJ_xdv9aXikC*YiO7V_ZUip1mKB;^oCF|&<?^o2l@`^kwP909SnrQJA8Y%jI
z@1L%C^YVx9+4|e}R7%&K{NWb@EAQmfZnx~de}c{TPe{A}=!fq-ta6#W>k+&3`=#!w
ze2B^-`x)t0E-|)6<u7*5|F({Dz9-=qM&#%3cm<CuAeUxf+rF{?F14IimAB`Dfyb8}
zuNWDyr92K)HD|`Ro#65Pi)47EO&UFS-n_@pdVO1aW#-?nPOZ<1;U9`^zulQ1zGy9Z
z?-?=QKDFETPYuer`@=o^UPqMH?-hH9{;|!s%ZR(z?sX+R^X4zq5Bm=tLXg}<6Ir&{
zt5$yPQ>$zZg03$48cO;(q9NWu|E6sk$`c_c5H39L(F;2*<t1HP=nW1yOeZ1rKe1cw
z#ynJ5?aa;1L+J3xAM~swGSNNZ)vxLEfUmon;?vw9NZ>%h143YHFtW*>Hcu4nXPJd@
zuUP3Bj30!FySuxUl~wEW&7Bg}yG*{|dF-(2Yi#UNc@yS7M#PeZ=-;1l5Zih$T@*(=
z95=G+m8OJQKR6SYf$7dHt#~tkMK6Ix!@~4=lnpURy)MWKuW{`_q+*T@R{bC4<RO|t
zG=f(Y#Z65KK#MYJjh~XyOx_F{s4<Rs_H@0a+C0{_N@OkAe%`QYO)0MF<LLk~MDJGJ
zybFE4?bV*foAmpADnx3O4F9tUMYTlWK`t)E2InWxjil&Y&qN@mzj^aV23|({xo=e1
z`~SU*6!4$k%~x(DFp}92AhQvw_jUi?eDJgy0xqEWcW1nHB6wUg+A*=^-C(-cZ@X)u
zB{jbk%!1g+yU6Q8!nb9qy0(W@_2<r(z1W$3`r$l3V3vZSrNG`kd>KJk8jLjVf`wVh
zGjl~phi<6`OrwRMumZ-EBVl~>+-<12x#|d;^!b$y#ddT(8&z<P?DTIy@T@!XK+PMA
z=01+=@%C)C|Jj#^cG}Z`?e+OO=xSr`od5}-?EY}0m&MihoCuoX6J)ofos8mOxZ_p?
zbhitZ74Lkq4w8Bw15~E8U5fkIsgBEjj^9p?X1j-I?tLS_45-=n(6H_G=VLgvXpd&Y
zhL<<2D9>&^toQpH1G|m?rQdkkmqS<Gg{s}GPv88=OZJ#4IHAD*w5P7>7A;i%jVOCB
z5u{Ic#3s}S$C+eW8g8X?fIbRipL{m(@A>LT?X6WJyW>058Rob~8mD^QJ#_%U=fynV
zYJ|OE$>+|hH~hHc;;|a4{~}Lq0l`DP?e4|)!A_SO_o^O-DTxp8WKS9AJxVRF<-aJM
zH?oh!l7y1@H+?36Yy~@~wv$1`GO%V4Kqjx!uu3@L<hizcJi5wnrePzrr~rMJRz+!Y
z-w>4OBYM6(u<l-!8#`pnGoE91`SVUId{)=%vp6;lm5>&nfB)H&ub20rM&;f*{_5U@
z`RifTU50}b;8sI>LBC9J$HF}o<!$kDZ2-aolDqem++MV7E$~9x07N{PHqz!aL{R&U
zfR(dxdcVHl>sDJ@c?9)4N_Tmv?ZTU;U8Y?8GXo}E5xG#IKtk{}H_$4darRfwWycv~
z4;7`6gegCRb9(Mi;DiL(I-A)pFMA#Zf2FpTYNdVeLU_i%<$HOL9??U0`t{)Laj%h4
zWV)tLbYgD!Ai7d(UMp9|bAj1uE55j7(j&OZ6p@_I&D=88vDsKBNf_8OFV9Dn3Bcrt
zB@AY90F){$SW(f-9rv$@#YHJ?vl*9reL-Vo?zL$_6B`QpPt0mv@FHzbi{$1@=iEt8
zpFt}?^<I^U&*TVq0cYWBZaDLJNqcv<oK1rzL^;sV1i#;Vyh$IA#Q@8ugubGAv;zxQ
zw<vGPLkf~k0I!5~-_AhK_$+LL*5OUlOCZObi3p<O$Vv-$6?n9zXL8c@`Sa%%Ha1#^
zcQ2V;G!O2h(~IphE}#GMA)<DWYWch~tz14H)7m4g+w(bph6-(cbSmAhDNTQ0Sl|5c
z4LcMmtyrE-gC;H-R}{`5dg&=4pmkkzNp)Enx|PdjQVKxn{^;ng$T@e$#lAWHFpHDb
z|Kfm(aZNlQ*&yx(s9c)4;8Gn`_riqB<_wwk@2%QZIH{WI;z*+%gpUVZ^+-g-$j1|x
zygcYs_B?3D*_xgo-~RJDVgtR?Hfhi=))S3QIkpyj&4Bi_{gypU-hiiMJ1%>tF@5(G
zr-yUT$O-0ePamNRl#!emf=f8PuG(5(?}vM39`W(YlP@37lp+(~V_bqWVRIykP{>Bp
zamv$UlC{KfM9_P39+6r%qUp9kdQrSeJ5=6?(0I~)CoFZ^rU|T#P6%n_40(r{0y^V5
zB#o!I*r%&%Wd+*UrTlyS6_r3^KYg6frj+Nj?dwC({ar_g(=-b%ga4&^eT}oHDGN;`
za=_|qlLnCL8x|JEDjN9jg?Rt^4UF7)t4{aKUs2X9FDhT#xBRyez22PU8{fFO%jJ5H
zF8H+Nl<jhR?8DZb@wFWA^!EOL<^g*@W74>e>0u@iPashMEd#q>KB`=)5o2p04GoBM
ze%{`kEv9%8(N6Bg70avas_wUj-J*vPD?Yz&J?ag2Hq-fP$HtwiwwxsG4e1v_)6mfo
zi&*IcoZhec-J;;i)&D3Oeez<qPe5+1PH~-qjl0@b@0akBvpX0|-jrhI`!xk-zF$Wb
zBCfbpKHEiC4byEKaFseb1h$6fKfjsZ&8~XCKIfjTX&OSKSY2I03)C#<%YI)!HK_7a
zJAFuOFftJqN<i+>@N@bo9Ckg^QHt(LBS4CyBF4KMTg)@>W~<5rHlF{!#r6Tnp9TNk
zoC|Y6W@qy={SspNoBdEsQi^HYb+uJ>L;mwyHClLdwp;q<RE|4d7#3s3Y?Tk32-Pc#
z-ptV5dzQY9Idc5?wFT;Ot^Jnk|3A~22SMa?gAvG>m}t`hih{6$4s57AJ2&`%{-hy`
zF)*OM+~(l#1J8IyoT|ENdH(FTg!O^}{JIXmShdo@LQ#K|+TP)M1_sjbZJmbAzq2&B
zE}5$CU0LO7zF=TY@3ya&mR2$a^X=N{%7u^DIjcnJRs?G;pTCh;PK(MN6l*nl^yYFn
zQ140~q$g~B)<ns$!%jkiWlHgkibtv^yZ1w7GM^F3gx^k#lG<j>{poqhP>FQe^SR_@
zOzv(!RcQZ7KA`3K%0eY0lpQ&kWK`7}H=;adB`CeZjvX7eoU!bV(!OdOF2TXGVoE{6
z{-gT0&s6FAi}jzsn40>A>|Ge;X+OAGv&N%-wTQ~j%R92iVO&O(+rr?eb^Ejb9;KmX
zYB37qw#X?-tGxA0tIrzX`DcCeqR-EqE1Z9RUj3IEIp^-#AOD=6|9ST(I3xG!7sN%*
zwWthU$7vA<Xt!8+qkj|~$!VSID90Wd#OBvW*f`<^RvFXz8(tSqo0@$Me2Qm%9$gjz
zX$Uc|*9`fMNrh>l7<w3zacuhQclmkcVcp98XTF$&Z9m<Q?SWQRG6FO!g2$6+#C^Co
zVS6prLX50ac|Cjo#OJ4VG7JDe2t;4s9O;TZ7A7PAb2$UQUyk&;a?ZjcY&@*0^0M6*
zck6POuP0*k{%=dEpDzNDWCV1ZW8gM59#&0xDdTvZnf!S`PhUTEauc~|&$+8BtA}=U
zGh_A8M!i5eCwJk%VT@Z+#KwqrXk&Q`UXgQ0eY=${le$0g*xa>!Xw^tVJv+<wrS9Fo
zMxfNK-`~_X$m%uYMbCeFRM2(XPs**)q{T;2ICPCD8>%I5sARm~@~ss$1dhtdoU^3<
z+iO)-4&Fg6m~*x?7e)oIY2WXF2FG}c6U3XJHY@#J!r1HG!{Cd%Y8Cdo|NZ(*3oS?D
zrQCH}b;Uf_?fj>S&d0vqo>3paf8-|SBx$R@L%W1(iwo1bsXi=q&G)a6f1u`td#NMB
zRR6Fu==(oxHJG?V+Xj;9YBOc;Lfj2@Xlqp%t8UZYIeL}ngoNB4*U9@Q*H`p*W$l@e
z)b}f*rPuU%w`Qt$<$taOOK+IoWFvKT7+iiB{Y^Kzd2cR~d1)7dQ$fc=SJL&8&(~i`
z^{>2=V}t44T4t3CJ3|X8*x#c<hC7l@J0)q_n3yEai+ywGz(4IDEzVvqPINGYXtr;$
zI-}rlB9=3ziD|KOPzjyB<LE&u5JiawX%(+8rlZZ?JY5xWJ&y-||F~qwi1>yOtA_MQ
zKfj^^&PungTV}pt{c1_;-P?Pj+ap87zuTUfOo+h5UVNoDmtm&70qs!jHmSkzWg2yx
zKCCOejK@6e^|jmR$3L7G+i^FP0PoV61LI);y)qPb#{rK_h`KmsTx@ggE2cJ~edRtI
zy8&Lv7Nc|=13HEu07&~{C|kqZ`)pBa`)ro;)deBP(*Y1PBysH8Y2vxxsl{UD3b;v$
zR7u<amb^XHQT5D}IS(tB#pGs^Z;}VJbNYf&!a8Z5a~n^W4U95%#2Fu=u&GHRNB)*)
zU$?(9ZRocRs@!`PdU!X}8eyE8VC@t_{f+)1m~H2aXWr$GXEFosd(Ls%z3k)tVgDA$
z8FQk)FNM=qP_#z)$8w6!*zG>OEAIZ?$x*th*ZTV8PycNGbuqFX8{&#G%L5KfiddZu
zCX8<`qfFZ%WS9mwyM`RA8N&>fY0+;xoxZ12c<669tFMNizIVv#-jh!q&Bn#m^Yish
zE&m+faoGmdn`apPuqIENB)M5Ua!Ko*E%YC6Z*FdPo^p_FF>I$k$3IXp`c1vYH@(b*
z+<9*q$He?{l5j-u<o`ymj_ePJAhNaRGd0!KX@Z+wKTkz0`DTP`Jn!2bM!>1Rl6Ns$
zw45Tq4^mh%h5+{Xirqv&k-<6(A<jA78#m)%;Q6!S2q{u74k}4t1(<-0`Fj`w2=23Q
z-DW)#rDBTBkG}d-`V!LeESMr2yuDErtNuY<9kT7Z3fL_|3lf`%5V-No=Wb3SU=zIP
z!K^|uxhcCGKfb)(7U4@V@|7j2Ws;Jl26ZYsKNi#d?%@glyxQVIe4d1rO*b9$<>&9s
zfEL6w!3&KHXNyyzAxC8++~vH<g9dTKvo;Q_>m!7e@n`16KX#SUt5f`YOW`R92SMl_
zGMx&6LZe>!kpoY{ibi?SNXRf&;kNF(UdvC~Eq>-zUoD-L++j_<776#rPjYvE2rq+L
zBXk*i{M9f@yn}LJ`Ib(T`k;Dkwzk=#u~Ob*oSOTg&-vp?R0vHWmQ3~_3>1>>Cc+Tf
zPjteDw=sdz7n)uot~kw-wOxjd@4G?0Z^bal6s0^Cvzotmb{9<Cp7-?zn;MMPAPdmN
zp9L^)!Ev6|A3zGt)zxLu!kTL%oF>AT5O0!zd9;OwBpc5uxtSElW!4d2i{tYX$C*xe
z9Z~x$emUeeIoy7@W+}#yZZc-<S=M#i&y%m-;~h(>cyx4Bb<c!(F}f#KcHPS<i$_s|
zn3x!KbtlrRWJ$`^)#Y1SDv#K*!bD@#?ElB!n}_ARcJITtA-33tDB6a$6qSggSz%W+
zYSf@fgHWW2BGqQ2fud29NP|)uC`A)Wnkh<}XhbwfDjI(0x{>`ozR&yq_50&}kK^f&
zXGq<BhU;4ET<1F1dEI`n8S^&FAlAL$=?O=QLJWCUmsZ1Fl^nHKwRSyxucK=e<a&ry
z6?MiZVkZi@Tk(XI?d9a8p(FbhN;$wBU4Wm91fi_<k(3Jl_z1R%kt+9AN-+k0QiQ9z
zO(y<8bT#gE!kYCZdgXA|o3n7fH|TPL5Ymk(9$W~Nu#aJCzl<s!Lzj*qqUti51A>Cs
zb&Z^Kh!(J37fDgE|KV(*m_b)=xAEphEr-Oo%@8_$h4O}>k;LZGi7vbsN9sI8_htC5
znSq}R#3@Oe$#;g6C=s$mJCLk}5n5v5mZ9vj9y{JYB!3S}HLEs?4%T^0<u;}oT3%O1
z5Gf%I%?D1Fyso+B%U4XhZ22CXN4BJHynmWwB2N?tF0NL&oLburs*nRbfHC!64#-wQ
zHb?f(-J@TjYHuU1gJ>h<%6rWjM^P(cByQI-Fpu52>*1;h53ywn7NCmufugvW(<*`~
z$?>wDC;9d&>GniN<ud2veH_wkh5_0k%pi;YNPun){|=d(gmU_}Yd$S6Emf-D{26K$
zKX@a_6;_?OgJQ~p$6ViqFd5i{l7XtqO7i4cQ#G;}q>jz2`^GYmB-%CF6$kO%!1SIF
zw&`+!Ce_MyCVA3_@4br~u8A7gPHZINr?pyHNR>5_b~ip_$I&knV<`(DTe8Eo2H$hl
z-wl^oE~L_R8tQN`@P;sQ%NP6yL7vh&4$RKiW}r;gioR+99r1pw%@3I7Ol$L%3eG}q
z_|lJ_)!|cC>4zyOJen&dNKZYmdLKr6%y8C|SJTmkbsb+xjXD<(DCTl*MmFkPvjUGP
zB@WELhku8+#!}KaeLx1}bqlT?`qmMGS48qN5Sd$IuNqw2eun-u=FS8mMhl6E5<O(F
z?8Jw(Sb;r@Q6{DpuL##vUx(veyoOdVvqI8^U&)^ie=M=XN{R+`U6O-KSD>+}Y<Ovh
zZ{A~v3g$dSiInXAnk&I0;SRaq>aMy`E!V{_Hg|M(J|<-#QW93cjzSb+^MU1<u?QQo
zl?rAk97VFnlkYYgbXWQmO&0sHxyz5fT)6`3Oueildr7}V^bBd!DDgc5W^K=dpt1;T
za9C}3AM(H&sq!l>ouPDyIJp_O;+c5D6@vzapTjLYdmP975VIDdX9dBj1{f5G1r16^
zz@Xn6%rJCV{GytoDNdc)2nFD|b{Om>x58)D50C~Ec1o^a-^F88wUyEkfcBcXh!cai
zLNQN|8N~A#9@$7NAaVRZksXm)=ynj5XO38f$<SkOrD0%i4x0+z+ItY7Q8Xt1D0`Aj
z8g-qpt}xP`&B_{$m_u#N_D01uk&B>}X5NU{VZ)!<2D-f+>GwZkSRxv;1iULwD2suK
zp}j6_a^wLE(GgVd)AoU-z;e=~QGI|&+eR!B$opHzDyZN$1|MW`7(0y)NG=&VieWh*
zWUgIX2DJ%ib8{2PN@`2`%gK%Ocj@_Sz<!DdXlCyej<57yFp@8Z>9OnuDNJO}XkeX0
zZhZSd)og_6kOj`+IpJmP9rX?HunlHYuLSE$Uq#FNn7w&;#;#&>9gRY@dQ6*3F&o=i
zN^FJwla*xMCJ(AR-~>rsoo<PtV+^n26X{y*So2FU3FHlhp=|8a%ZQ|qIv&dbG9kGh
zPglzQo_kNKs#;8YVDCtCH>4fzZx7g|0PZ@VN#G_-PH3k<yC}xL4Q5l^J>Ua0bA-d2
z5nLlQ1IOGadMAnqr{}}&P&sf5sEy_HKu9k~ARyyb9r`bqv86~+NVykU+2u-xS|I*F
z(@RmN=0EckYxU4Wt1s@97lsk90$eaN4?n@Hv@=WR-j$G$c!q?DGpgn6$B{sMLFt%S
z`rk|fiL+XQ)_z;d#P~7hCcjmNkOro_5YUp1K>c-J$%Dz=Tc|G$Vufdbm>FWKpqX9C
ze?JZ0`4VcfW1okSz5RQ?VHl(h%-^oHLs-Vw5vlsICLUu4{((hm0th0(?Y6!H-sBsT
zoxX!a(V!~F?^x8M;v*ip518JKH5(b3;ux^<LnOD7RCqiH*jhh$8-pICIt<E+gXe<=
z_7H6<xzU_~_W)=4`VPTC1kdmRmo&KrDJ4LEx&XzslbjqaR|tcbqhY?*?j!YiD9`sh
zT<Rf!4YQr3fwZ;SH|G0Ef7%IKDFM{!X4p#fIv>j~HoEhm5&7Q8`r7bfFqU4V)a4(`
zMU}hM@OBbOPp<$(S;)M-db$<lyOqIEZGx6nau<Y}U3a)92=Ws0>%skbdQ#8I5PRc5
zOO!A6e_-ShB%FtDYm*y}_ey+vva0RW?Dd`m&bYb9fd#P1wum0MmHruAGEZ^r$o)Gg
zr>wV_<m^28`tO;K5$8BD9o=mhj~HqP!FnMspv%+K8KAC}YhrkZLGOj7hqG4B1s=R3
z!mLgTgnkq!9)~J%Cz0=dW9*5+`n4V4eSvt3b3AQ@qmV2#0OZ)}VBNBj2+0^doE$Qd
z1&P1rQL#pYCP1%}_2J#sAUa}VXntiFLC_rZGrwIE;o|mT?0X-K{vGP;M|W;1$-<2r
zAZy@F_J5DaeEWel#(ggaYWwt>-OI*olo0>+9dZh+l{;3rSZHdF;mMofZH0dxlOjER
zx&?*`1J~-V2S^F3J&D;c6{SSfu|9~1a$qvW^lznW=h%F;ZZY9H`B{T-X-Omc02v$)
z>KySb9ut})*obso1h<T~q}!DSy<32Dy%4PWbUT=k(X=7si^&Nlna1c_>R-af%GeV^
zeE_g%VddQop|^+Yh-Jsr%Gw&6aAmN%qRy(ABhu=`rpPPY3`9cmXkG_owd%^J0EO-1
zg?B6qerf?Cm+ykHy_w&ZFE3v^6*&kQ=ZF&<b~H})04Zjv3&}Nexubfhj4_6ORltq|
z<6j=-H{NNKX`>I2Z51HX2~&=MHk5p8psQ|)buuA$kE0DI3FBa)Xy>SWE0{K~kY25(
z!ukuXDJB32(LfRhnnDo8kXBVX9o^h~r9VBnffG#M{l#SIw!ZvPb-tWI?4V^ciYhwN
zm{Vz5YDXgG%i>m97{c%(pbcoHSYyZXj7n=9jkIu`!5vSOz5?9b#F?*&II=y|N>CZ-
z%;@<|UE9-jFW|}x-<J8*BJ%VEv<%AXg!El46#kU+nFv$Dd+};;)aKwSx|^CdN1i(P
zy&e{>LcxcM>`HBJxMu%yVGNX1sopyZf`TSk!0a-U4}vd`RM@R5gdVX2zO5}2C<J52
zawj^zVsn84VB}>Cmzj*S(V8?zzeWQG2~a(RLk~rKF^)(R{}jxC>;q~IicIq9_JBNV
zDm6x}cq8j<58eNhxox)I`?YQ0Ot=DXz07eABXa{W6+q%Lq10V`Qdw!-yM@{bNI{a^
z+{VD-IEPdXhVl1R9D-vbkG|r^)L8Ys%wg->nN8g8Nd18$z~qf@4Pn(|+$(hXCBS-(
zfmKCxH#Vi1WX)p(99Y}l)wRX}%TBER6*Xe%!{N1K`2GX{S!M}J3!DcaE3pDG9(``J
z>$UaIJL=P)BmH3_U}kH2*?MKxM%pe&H{vS*LU5hF)8>l*NsoZ~CZ)dd)&k=LB1rGx
zn#&X{mAVES(3cZCc!(LEJtxU9G#{3TA2C(Zz}aE;&oFL2*sSGxw}<u>TG0!r+|ZX7
zba=<1T|=Wcs+qf2m&RDeI&a&|9S!e_aEm5bZOT$e!MQE+_P4;bKf}X$iGV^GLj%c;
z4}j7Cx?s!A@b}+LMy+hj*@d(hLqv~RLY)7bp>5sX(UI(wyV(f+NxQe#&QXkP1-YV9
zVuFS}lEVeGp2%FU4LR#Ppy83^`+ByCbwZI*k=1z|%o|dVm;|D7a#+_|ofucS{oERf
z%PL^;1gcZfcgMq(0hj&Tpnk{sh|X}rJ#f7iheLdg^A57J=9mfyS!|NK4?8u&v071a
zTLvg7c&AKY68xj2Pcfj@x*GrYC{-3y7tGTW?VL66fzQ+E2CuL_Us4&wW2rPa(fw#|
zC)8fXtdL~go*Fb0*jFi>_k@{6;o6iOHu~QnNHMH)`I3DTY!>J^kbY<?f?sOf9j>av
zY*UVgJD0p1zHNTJhq+ok9Ql9JhN%_bPz$u8N*{gEO+(Vec!;ACRd!7t?(vDOUv94z
zxJ2X{HhYO34ssz#i|Yw^Ah+i%l|D!V{*e;#Dxsfl*0~~&2Mj4v5rIEOZa9O@v}R1k
zvbqVD#KeRF<IxaCs7&+MB>m@thZHws1{US~mGXDNacI79Qc)iPIK7~Mpk*FTAn>C#
z3DnK8K(_btD-c%H+)!@(=7V5i`FZgB?F>%x+@|5WC;(s(SOf&Co%rn><RT*@BP9mb
zYZJgFh)Eb@S<!AlPReL@>H>1cL=B%#@VX*A*dSqdbcXk+Dmqm(?GPJ0oQWiEOF)R5
z8?fi|&AM+$JpOHCn4CJz^1{;-*5p09vOQlxU<%Yr+;PrR*$>0V(oyAYn~V_bcZKe`
zvp-Ek0y8`u#Jp4U)((H580O;O7pMwB1EaW7syD*$K8jD~q!aG*_<b<3fvp0}rD(&S
zF6R1OS;%0F9!)mP7KSTnR5|!Y$2rTyQ?=dIBsv1y$MN7+*KbSD+U#>Wf6;KQ6}%q~
z$ojS3mm1f+ToD7X9~anj1+BF?ar}{+kChsxTa>Ie$_H>M>4)}!jcz5ypck`NJAH><
zn)}`9;Y0yrP^SY}2HT#9@^^W6eIW~IcLonaV@h{=*3Le+;`sj3M(lFUru@!9>sz`8
zRIpO@*U^a45v@+77rC!3Ld+X^**HmizKqKSX5ENmBrIgW>MG?b^q)Y5o>RNMlekXJ
zFH4dAkJlNZLrszR;~XG>UA`0z@AR%!b{`*z3TT6}AujOmyB0+zWvFlNGzC^lbVX2X
z5H>+n%|Dn66MdfIcONcFf>v50VQ=xOn-2bxP#em1!Uq*&<AszHpFj!iV{v03@jDa^
zg!A#%`|(m@oO;nJY?YlD*(F>DdRXpnNAslYwFj}jH9Khn3$_Sh<pd$iuWb3IE4%*t
z`#Lzun%dM*hmlF$L(rr7ezUK5tLF_APQpW|2Mad?n(<3*kQsh``cioK{n|kgS#5FQ
zhrQ8+6aF}-$R~(~vS7O-`0+$pDZ8%WrS!G$P-U(_E;lw9g6*sTl~F`{mkBgWzPM#1
z1^O_m9EqSIrdte0=Mc4Ru|n#ojiG%BFLGPzgA?d_8@E!4sag9KwNRbQ1WJ&_q{>M6
z#Nlom`^^B!NQy){7AsKr86K^-B#F|Uo+#9H3CE<3qRQ6a7qrX+9UwY9uo--_I0ziA
zqtzs-RbHgz-v4BkUyM=fI%A6zgz!7C{p#qhudlbm%={V$3WiR#`uu0U4u%4rOGD6e
z!00>Ood2s8(vU>k0%<k?RZS%!P0f@5)VuMKM-7DY(cdBllC6$iD3a##5RDchN_u@K
z!i|lMX~WKy9qr5NzIC4)Kp%W-{2gJcuaR5*Gr-xsrp|LK9;GkAw~^Zt$MlmCPiT<x
z5<KeLC2?JC5e}7JcoXSz{0<O}QCQ4Ejb?@+vkS;nG~Oz@r`g29%4!Gk5+n5D=+Rtp
z`}z(Y5HT}|E@;MW7(}($*NrrM_wvx)CjSwdNu}g!jMLKCIy$I@i40>77Z1PNm6A6L
z4Tu&^SMH?~nNakR)FIHCs9w^VA@m64;Xhu2MXRnn4l;?im`GknOy3g3LN?gxVoL*-
z9eGGuB6G!GdsvL4Wx)<<m>;SDvNYAaWdy~UE8Ym@Ba%sQ5wA`A>VQ?_MUvl8=C{BY
zaSHRgq<XSeF}s0X+_JK=R20&XVl*a9`(Ih7@D9O7$Tj!=QrdVL==q>r*@NSWrQMJL
zLC`2=cS0ZKjUtF@u1gW!@YY7QOej1~+Lj1>zho4DX$R`*)@$chcw=wGC*>kQ6P3U$
zZqYQw*)_&qX5Y71;F(WL^S-Mb84R~@CU<4l1X3^UnRO&YS$24qJLKe$t%xt7eoCPA
zT!_bpA90P(r+n$@iDtJPaZB6Juu^|EHt-e9e$2sd5g8DZae`(pm(u0oyi=GjgMz)C
z(Q|nOAX6UpZDL<tf_LMs)5(E$4_Fo#!cm4O6`;e##4)1(^b+vsI%?8>RG;x5^g<8N
zlp;J71*y=4*2<*&Rv^&ItGAKHC`48;-yv3L{qjMCU{7;j3FI6gyv3-`savUc&+&kL
z3pxqLX35Zj6;ah(XXpUm4Wg(>(n5tiNDLYlR)Lv!b{>ALzg(oM5C9-zcdhdJY#y2z
zrEUZ_w;7lyUZvCpvWxek;_%N#)wt2|?NjkL|12caASB<p3Gos3u<B@UZ<oX2%Vx-H
z8`0%wJ5#AjeiF}sp`7uUVJ`z}{4fSK+q<cq2;wWFxdE9U^jDwcF^w^R>b0#f1HJ%)
zU6h-f8e=cf-y#13ivJKdDo_B<&Vy5Zchkl%pj<9MNa*}NA)dRnt8N%j$cMHS{UZ5B
zz@(dpXfih5z2CFSGW1QE|BF!|dXqTAepIvbQ6hg(NXbA}Qy>edY+SMix_zzp2#Zsu
z2y~#DgVZ;?xya8<dK@A{F6E#%bO~TW+^!!zy-wLG(rGtwRD>ksB7_75nLRpqmnkjM
z#%tuFGz@~%#z8?9yFgmu{E`Jw`J0ArA)=>^)NBE2k_m-%(6e!ZP}|9WL!nUe*w&9Y
zDT8Ei8hN7=V|kx&^F`PrVVdfPKrG~7gQuaEj*GkvB-2lO1MO`8rsFj_ShGvE9CtK4
z*5t(7974qfvGV|DI?-2O;jyb4$K3+XBoP4qf?r0kYTa)23cz{l3z4c1u3#m{>u9dj
z%K=wN6*99M4EV3inutLC3{nfivr1{lR1s3oLv2z_6cptxuZ;Y!?{5<4<aO#G5Y6=y
zLp|LU-{W`qsmP!G^_Q!OfCYCFR*tB%i+}jgdE(~lHwtsNQY4@<r-KfCRKN&-G(tRl
z>Ml|mBWBJUBup{(EC=;ah+gB*AtX<oO;1mnx2XL#jI~aZz{k*CagyQ?ukkU;U#-$(
zMLu^HFke6;!W$?YFCinb#v^}eW?9##cg#q!MO{Wuw;u?u7-6Ul`-tLAG0b7EBNkBf
zx`DOw0c4zA`Nm@EA>D13#)0$Rpcddm1Sf==QbS<b_G|??uilC<QjyX|pfOpPN`0mU
zjZ0a>KfMRbhPNmCZM2UW&Uajp_NKQ^$Qr(=eAMeAo`<L;LbmYJ^+U}_XOnRO==i}9
zOdjvMR)0Nl<5-guo;14N0|tMItQ&Kfnb=XhCttuidd`0U!P(o~Z91Cf_^vvz&a7f;
zdl(KoUIw?f^Q2ayh8!{dbcPWtE33aX5M55~35W)lU?J&}JP_w(&8KN#v?>IN#Gti7
zY@5p!A~x}{ywqR#J@4pJa=Grmn?JVh7G~b5*rR+)O?jf7p*Pw=_@8=r#J3^Zte}hA
z1h2N_43r6MEhmSJXnAf#!9pr6YUC=;ItFgYi~9N0B_%Yn2{s}h8)*ognnLIpE+T~|
zqRwM@jG5znG-~L#cae64*#sW#dsO#rs2)*wF)3L+J<%$b`nZf48B*htqBpy<^D_TW
zfo(aJP2kQ|I&p@p0-p5$bK{Tkrz$mtKErp9o14tUKlv~#4yZ}~)fM_4ems)>CW}U@
z;)Rz_VYqFMvSR+L<*uJ?dyhqUK1#l*%!42BFw`Yc{Hgl-xL;vv7}Z55G4f6rw`a7A
zBi}M*AArXZ|5^5dNLpeC*uxa5ED}oK_)pr9;YtU<QX5sglfY#S->>EBhsi4N;zQ_8
zY?6P3(o~mU{}2rVxuhROc@*<%i)8P5|A%X(E;_R^0LZ)urP9SK)V#pNxbS~esxSpV
z$Zl=-d-KX55!zV=G^N?u`r}~*{yxdzYbIq6G-B{R@){50VqPon3)Gy25G7yvDTkWz
z>qjY75nJzqW&%@*#6Pag{)ec|60{(y{<jc`mwLw%ZXYx1NV!w3H9C+8;UH<9@Rj;;
zlG3>P4;U#K34+nIu}>dhn2zC0juoVc5I%;P34DjXGM7&R|G=lvC7=rnEdyy#Bpvsk
zT{xxS-tU~kJQ6q!e)}EU7McI>Tk5dp0$!WupY1#{laaZpNH!jWAOrz^s-k{fm1(l%
zv7U%!Wc5PQB0P@NqhPHGaa#0%vYAoCyeOMJlM71kCLSN9R&*#uppmLQjC7iY)nl>y
zyVUBX>%V>$JtfMam&%ES!-o~TVxMq*g;;PMAoAzs{7df^>D?Q5uT#y5aq$3@<xE(3
z+vs~j5EYtyN3{vgicV;`z~8~vg0x@9@%RZ-l7x*e_}@SKj`R!^gF<N#U{2f=j|nYp
z?Z8jj+WBr{u<~-6v5@&YHYa{vcRZk17Wfl?rYM%Fvs=IzwZUnR{a~Qi43IJ!Wf!Lk
z6F#PX{6!q(-pXqAh6R_JFkDav0TwPlkYm_%qldvsd~zp9*;VVaUZ0w?nz=w;icap4
zRAcy&dy!Hgl+q(vqI6E30%8R!^@SAfgj+z`;dp^F|KWGHku45RcH;>}vDZnHAh@g4
zWCKvzjVMt|8j&Gr6hY)NQ<r4g5IYHXW&}ZiL2V<8afDft7FU{bGctADC%(0q<9K-{
z#f?>1itpmf<Ipcn*#QYOY}!Bst8`)uN)gLUcWX_ZM3S5cqo$W(4oLjC+sw(ky_ktb
zASO{+QE`EO70dW#ZR7Fo<VztTI9iV?J@gqY#F={5f=t!Puy+T2)xFgH<{bbe=0Y?t
zr>kWLxb&u;Q;F+iPOHM^6TOkR68f4{wy6t1+~Q4SlN_^?1|ULbm+!-&m-&|HR_miu
zlc2sTOzWV6Ao}4^0`nt&?O|=oE7ZRc?&|DRz&@h}4yOuBf$a+jSgB!8sk6NiTYUwL
zgrAsxCttWHSJunlNKZknnG$Kc)<W@*cWOw~b2@=BoU9K{DFQta%Kz<+=%_9y)Hp+n
zxjOr1Pp*E^Qnb>B#5*sW`@6uR&kh^WYQq9X{$@0B?P&C=#1+q{2zmDBGguTq`L-4K
z0S2gx%Z#;+^bB`N_sik0^z9+voX5mrTO7u1k)q;K<VSax?+aCPSSXYEG#Ct<I|#aj
zd#(e`lw{9dpY>-mMwaHpO*OR^gBu)r2Rnr8!0^!|3gCR%kH=6OGkF;)P^AS>)~9w0
zH#g8kE7+n7w9~{n8GEjirW{U<=7aBFz-A6>o_bBu@DJfsW431t!X_W-@C#pTs^Nx~
z@!)cF=bxb=o`r`Xa+%d5S&@o2P(Rc@)I)Q_ew-@9Rleff4iA_&qqpYQWA%czMVd;>
za%%X4!wlhDI;9{Cwtj8@EL8JED|T(iC>Y>ni;bQ4p4DW&meiG#(b`7X{aZszE4Asd
z$auO43W0TWCf(KP62?nSRrH`q2SI_{{uV)UG*XL6UzcslycnB{lbJvKIZ49^Nm1mI
z7{aF(Q{RTmwQt*ufGMf5oPh7-=EUr?8zPFCqk^*oMPa$&y8!jw<f=6dKws`rD;kpC
z;J$gg0Q1?A;CyISh<RZoaAv|(3>XAPG~iXzDFxnG8?yL!`r7$x&s&m^q8}Sf9)c==
z2SjO_nc9Iv2ioxb%1tF1!X0P}U637pGp|1+f0P%YFEm0H3!VI0G=P)l#4*9o)lHMH
zkWU1=?W8m$Y<8eL6mTA{{Ww6m7xka$OjD4cRi@h+q9Lfa3&BaRKq>15=5BQtPBL!=
z$9A43r-)yC@DKBP1Al3HEiv)8mWp?0DD0wX!HyuAVw<gr#>j{r^d65v&k0{<^GFwl
z$1_c5Uq^S1CJl*n$jd|%{4v^h^8p`D&RF<8t*1?1`b$AI0C5snkRpm-s)HSp6xvlp
zg%D^)cbz_5l^5xWE`uBkr2#Y3umIYv>AoAm^N{3$H1IRDn17(pdNORK*5eme0juO)
zhGQDVs7sOP>f7WVdGnA43Cs~E&r{YQa$(MD7E|*@7~RHrXB#+`3zTjSBO^R1D^t!h
z&T}2f0>4Ih$%hoIsGWiz++jYkQ3HMGg5*QzGM6<&J(!wGZ}Bn0^WX{uX<#to>8KgX
z6FcPE$Iv?0ejNm!mO~J1rR_oEDBunALl;g>T}g99K-NWIsOc>1jiBT+jE|wOUPQfQ
z9F5alK8yK>_}2c|KLxf|`~?bvZBaxpg%qGrQ!A~ZxmZB*6e!tuz{r}){qT(|8AWIa
z^3ez<jlN*6KK?`Sy*R3OP<K%il75E1!cUuQ{GmeKN++tXr&)OV9a{Pz>NB9N*p<B+
zy#sLJTu_twfohRQrGK630YoV3nNU_GQkQrMs;~a4n*RFkHB!C^>a&p?2*Lg_Y0F1L
z@q%z7pbS=gcICI5I1P`efHral0911mS<Ms>nmTCy)TEpGkl=#eJI%Y0b_A-8^EC7b
z>!nD0Bb>~IL*dq=D!N<i1ZIiupYS}NNwe&QX))I5T~od!(GJ$MX44*G&4AkAr!2v2
zy@ERBjAddJQ{^`%t;~l44SOqiGk$R6^P!3+Z#GcJ^O%1c>i$BgY{Z=1(E$~t#xdx0
z&g!W)_YE>_I59BmOTKxeI0O0#^<{o?!M<N%onsv~8!3yZ_0tByf)^fS5z6sDfQFoi
zD(pu9EyNj{m)~7x<R8GNXb=j6B9$Jq!JYjJNRok9yHAoS`Dbwc`taSc*szqg0v*tc
zA@UZhny4bYML+x(sdz|W`<LRBOc~l(WV?(d&Vjb!1w1)<bizo0qJdVmN-;AAna-XZ
zK`7Xrf}bHVrKRL|1rWnV>;JVn`|&hm<9=qfAK%!TFo|-0d`JBkng8QEfnk%O{{Q;N
zIGj}5{!<I^gVXx|$d&#7?P?~Xa;5z4AFrG!p2#xL7Kl|po4zU9Muh8xh=o=9rhSj|
z&ZmX%8o01z4_ms0SK9LpwfmFIf46+1sTj<8dXr|1r@!d6!F#t_xZEn^m9NztHRu^?
zNDd!3p5k}2I$JHW*hS!H`}F5J*))kpetgIKe=V+Old0#&kMRAkr6jNQGr;`#k*oVB
zQOb|+ESf~rKfd7+{l6CNe=mmlZ2tRX{<~&=Jb~~3_21p}<8k~q&U}9m|F<J>Su*uG
zV3lf2bLpBp5?WDisiLoG4_Dwo$)8ztYe^s+pLYjKGGQ2_;Mmybc-ad4Y81}_aB{G|
zNPkiX)2R4#9L2|8ON0!yFXi)^LH2~hzkH1%T2{dz!`FYx__@M&Yp?#1l*(cuXH4xQ
zp+;H7rWc@V?y9S+`jZX8_n}k#%GP&3>y)xsD4OFTVoL1+**L3aGz#5q_7xBV#-f|X
z`+Xb}zo9Pq6Y$#~fEv0Cg^jVE(7YP$d@1=1*nb}Y^Dyf>A%~w1{5dt4+W56+(+iYg
zsg8Tiei%bx>^0{{GW6)EJr<v!7Ank3Z5qY&%RiiQ@b`WW0;U>%!zVxl7R+;wKk?`7
z>io=lWf>iN!xDe}!@$oR8hj%5O5DL;e{yv4Pd1;5OF&D;A+)h!(f3hOuwyJge{c71
zEs=3_WQ?V~iPq1S7K0;6A%T#mU=ryWNr6FaaGGNb#qidfe6&|o;DwN|YHI35GLm_9
z@MbKi^8~c5-{j-*R6rjP26!AS$;~LcW*eU{7mekT301AJmWi>J*rU6C{i!??{n%r6
z_+w?)aH1FAE}0RFW)N&-QG@376X0m2<+D93El|!?(x<A5HEp7?V)O>n>-U8RNpdjC
z{s!WXg{0xkyaauRip`|L;@Z-SR#7QtH+A(|(2bUW$ie+{4mu`x)inYC%OHIH!NTG`
z$K9FBsq6wNB%nyu0~wq)ig_aer)3PK{jG&wq2hLC@I;Q_k${A!8rAYBMkCcw?A=D;
z9S5N$uiC7w{DNf%661c@bwR(hAplR*!=GPBs0!Um)}rTNoP<7S!<Ks&8t1nk|6v^i
zmO}sJ;END5O-ArpboM&Y5Pt%${u4?pI<#i?$-}gx3Z~4Afg++FN>rLRioLwZqoV?A
zNfezX{QK7j4jh*L|5_Ka<ve)TrlCvG+q`w}ed6bj4MQ_qcB0ZBw7Fd&T95xo$7BJA
zn+=rmcx}zXDsu|bajM*TSI8JRp`CnFjPg4ib;dfp>?HdSXad_~uXkehh*Z9?^7z&c
zVyKGTkJ(~pn(EWahwlveCy$_umsQxa_t$dt6Cr9;ZyyahVsUqZ3{i1$8JX%wH&36%
zygN`jIN`U=GJ*|v2dPmI@g-Ol`>((fL*<I}$O*qK=or|OwFZhble4p?@SQP>PvDSJ
zeDP~-bLl2ON7e2TM9y;{BDyRBR7FdmMiDjH<`n5vTLP9UiX4*g;7Y*<L=aEOn#kZ$
z#1X;aEu)=c+0fG9IGcZ@p|gDlazPXhAS1pg`D`<>Hp$F<1bw`alX{HcP%Lh@?uG-2
z%BOzq%Gt%tr=Jjt5lm7GkgjMzHTNd?cJjAb1}mg`OzdbThgChDa@CoHPb*y7FA>8s
zpjvekz2NbdiEr)_`13WOFxYsfn;sC@7j|%CfVS!n+bujy@n#m-zX;mF1CK747A0v3
zbyyRzz^dpb!98{2{V2m$-GuMP)YK<*`G%NzbU_c-0aPWl+>&Qb;suw3#|p(XzBmcI
z(7o4x7{d_!eRf#f@fuaJb+w!S^=F-#TSfUfsE>;+V?D=Qz=d@-)M3zyTKosVKg{x<
zk}5C^@nAK`3~;>5u>n%jZBPF$`UGN#5Kx6_a_<;=e{dWPd;d^PbMp^7IIPz<oVv&o
zf*Z-kIuq$&gf$TyS_yQX1MoB#z%6Kx!D6I@*hsW_rShRMy!l}%#-5KhIn_1d(|MI<
z7F4J5#3zLPiml72Tru^cQJQqjtmua7-9hB&fHbK@StvKqWVCfLugc7V#5h#ovt8#R
z+wAt0=)4>OUM~Rz%HHja;F!s@0W&9Vqj<c@GsTF2?_h^*X2mSh5k~YvnQ_|35*zm&
zh-Y$U$H30r)G@eIl#t?RB<|&ug7oKTb5L)b8ooiFs_EI&cn2g+bRGWbJaPZNd}-$8
zUs6Td0AXy4=^y=<U`R8_1ss3>82A94hmMTC3uwcVO;I*xW^SW3vp7>0eGgh_pP-5f
z+_0RXT#ArEvPk(z+sVDTwVzUjhx{kxxP6eDR$=g!wV_te`~rf87%5a|1xzV8wH%9<
zM3VG$UVg#;wV<Cxw9<QM!4RB<EFuXP1QH_5cDnUzEBGkT#^-y5AG}N)F}Pv@n{V%S
zxrc#7kHbpmRhhw%{Xj<R#B?F@#ibqs>t2t^S9@TA5b(sx4{_Nz<=y34rO2<f@{F0&
z<vAgCB)S?hpybp;h}}=n@b<^^3Bqp*MnK8h4vxAC<9B;rib7UFZtN~NKR_vXwnx!j
zzM6mUC`U^A1=}&oU_k7UN~mybYBENp$*2W`G1|CO^@ta{_pGA{Eu!ELzQ`L{n+|fU
zlg3m@+sGC_&D3s@l<L3Ykvy}lAsC23nq}w;x!|s5HxM05zCsD$AL;o<cOzKgBQ^AP
zVbXy{MbULNeyGh5^fmkUYDjfvzO6H#@WdoQ1qvk{!+-&O5-+-Z$}|WV4D#z*>Iy`D
zQeeWAE^q@o!^eE@zxTwCkKuB{OY8yzyDkah-Alv+CLoW_(wb7>UjwBUX|vA^Ld$*$
ziRbP=UJSiuhzXLt=X!WbK$@!j3PviHLHLR#URE%lgqlQQg<^=$-{QjN+9%iyHQ>0|
z)=cx@?S{^!3X+s4WW&Xo*tbR!km@L-5hA}CQd=6JY#A4M@`rWOCA4FsQ}fYJ357V$
z-!|?BPP)<j*<@o}-N_6^E!JS{M=EUHwD@j7Z?*-`H|mrCV{L3kt-)F(O;zMtJaFm$
zLOQzfp9F@UHmz3MZJQOZT@Cw%!BTIi5FwFQhs7O%q4~wNq&cIW4BP6d9<jY%Yp(1>
z!q?K!xWsb+^JGvzU4ra35S^eRN`5RG|Ft+niER^nYVNmXckESCF7hLIDUoGf4P@O9
zzoK(dim^wNhjI+T#9lQmqxrue5l5sVtwUG1%-`+^-qV>sF=p!@gPp;NHHaLwr`3Xy
z`T@<7xio(pzytUGa>CQlzy+aASoHPUzfp+b3ML8}p+J1*)IooUCv~>5d+1a`W2@mT
z4Stf+6QFNF^nd(C0n*w>jem|uUv`&24`wXNp|uRaexN%SJb@KtLZ+`giik;{Py)ol
z{eoAGWosHGd)%XY-bd{ENj90GH;4J!bjaC_f01@TJ7&do)mcn~Uf{`S-~3Wxa*g~A
zFfhn($Iaj<f_H)D?%kp-Um!CG{*!4WgIHTo`iPS3RZ|2DLgNUj!94Z2#{qm?2p&UV
zEsfkFZm&_K1_F6E>^YR7<E1r4{X7zd7`jNGT^o+oTZZJoae;T|_woc{2>T7pkVP$)
z*(@)3vf+E73<W{(Jis1hl3eg0<3d#DpcL_&hZ*%Bk#d*Xq;7lDk7Ly+Q3Z2<AFRMt
zDs7_=+v!iTA%HJ|B#28UK9E=n+qLW*nq096FlU@VFMq=5OW^wXjM>RKInoq&_cj3x
z&4G-9^m%(5^sOR;V6zv<{e65GAI{3u+3fTmg=J(JG~50>NCnEUt5A;kjS<X6dhc38
zhl+<^&n`X8xAzYQM=elLFt!tWEu|i}PXSTw7`<L+vlKxzXx;~AuLIB4^i9xY$)<jM
zk4>69ruQOwN^H?OB!w0q-iuxySy!FW)WTC4K!lB_lO5Gq3Wlgc5UsZepkqxG36ziy
z6yqFJFl1uXdK5MnYW^gV!m3F8^!Lx_&KMPEE>s%%#5(;%)ZdMR&0WP*g5VG!x&gOx
zTC{vOR+muDL@HXXi1MQv+P{Z+ggwzLFOyz{JD{%uZ#8=MPiPN1lZx#Q1jheB&@%FQ
zAZkJyVm+axu9M@_O-DXK1lbX0eTzQ{GrHkO#kvyvpnOhFPlnkQHr;dKvhO}ASRKO5
zhUF)`WsViSs8A0;Z7~aqkx$mm!ZqlzT)_pg#Z7trEdnEtq0q<qkHp7SS~tH-#K>JG
zw4u4>!p!Cwt}tm11#?sOAv`}Tc=nwcJQfeP#0jhBt`bNUEzpyqeR(Pex|b0=He)?5
zr{@~LE{8arZJ=3mDCLh|R7*YwXmQ<nE;9MKf<HbNGe0qCIi$+ahzqS@TeO{2A(@}u
z4ZTYe9){jUkxKFF8{XXm63j-pck3GlKHoiZI~NdVwdGG_BgjJ_M6ak~&n^1%)mUt}
zNso>_=pTNs+mSlULNKt%0~wxRk`&@1w*JJ-ssm`6K)hq9N8%lLKb#0QP+-0uLg<S6
zv3}ELGCXu@u|Lvl4Xit`)YbeAF|!D_5@qbwf=?d-UdmUVTc)Y!hnf)KM{qAU!`}ju
zk9vR&5j667(7jO=MiUNWcD*~QB9V1O8*FZq!G|JUDb<n)bNY#)KNt9JM+!j&0v~We
zYY~E|`k>-}?OBQpkl+g>A=2-8xQXG4ENILOo87gCuCXR6QmxzJz4jJgk}R^8Aux;b
zuN7CyL_53pl5+*CABv}sHW@E=fB$62rLE9dU5hm*!*X>Kcn^PoqO8<rGoN+#2+r(I
z7a*V&2j1mRg89xBEC9i@^FJOHW9=&D3pjIO$;RkDXOwVj_p&kc(lCpY*yr5brNvOX
zj>R7eiQ!&URJ!pb;53QHDVt}CsV&X2*f3S@)6d&aO8UM&L~RrHHK+g1=zG+8ve^}7
zzS8CC9yF2$4Uk~c5Ed(DnPq$&lL@)e_{-jt02`KIZG0k`k{4W^sin?!X1P@zdRLp;
zRI_cHyDE^ZEFnw-B2)xTl5~%3Juo*SrKpJ@XoxHHamvL3!ClyR6?j9M#>Q7fs-#5#
zXiV5NLabqds7P9$hsU8Ps;F}Nay$AKNw&!|^2{KHodS{T)+KnRmJ)IF2{kEuEscvm
ztIL9TR0Ko)Jc@`e_Gsm<>&rsxwF~9YL~}Q6#A5*s6Y!`+o1NRJ6ebSpnF}?a0rz;B
z>tz{gF?o|8OJ7gs7k!ob0VRQzPU$8fiZbAvJ;>gvt;3isx&2IGDSIuc$B;`yfEV;O
zleH=mrNiEnXySKL=rl7K!l-R2EKzjyQdm<$pgReJIyfOU50!~MMx_=zU7&{o-Tk^G
z+<21>Y%-JuR|(n@pdu#_MSsFHXou<v43R%AF>Q-#;hmX)yV9r|j+z*WqT_@V{Z&Ql
zV@hX+RCL1u=mcq-&g30N8xx)!eq_m050M$i*Bl5W+p*|&`cp>Y6hHEMd(@9cw4jOi
zw>o9K-dLKh+pUi?H*@3^8Ky-wcwGYBy)r4m2IwlIWC_3^bL?{sMsOG+A6%6aQgL>&
zF<SANa<`fQjgxT6X9h#9u7m;r^V%OW?dV6&>4^4OUy5<^Kuly`dv2!`4GAe|0GlsJ
zkE77`RH56fy!^)`nBL=qfs$Bj>VKHHjaUXbVGSt-PG{_vCME@PWnu6ZJOi>R!AiKK
z9%x}{0*FWqvPPjIKGv5dRh!OdasiFR+D*fU7+%-st~-qAy&kLTp>`o1B?S7%`dNVd
zl--V`bf+aE&_GkiIJ*j>?UkX>Pwf2$;cgIaFAjHECb|0i236lqr9-NB7?NL*6PAZE
zU7rfgatCVXf6KX-bn<S**JRS;LjqO`glUM9O}QBwORB>;YAMABB_t|8#B6&6J(IpJ
zxD6ROz|h0_<Mbp=Do80>&2AL4EDfa8tD}^FcD@6EnQSZy*D?X_AD3eGLWvB}_%8IS
zxeh2;Gx#cVsv={<Vhpg!=*%}TCso*YMzL4Jc!){EGgC~TBFNPKLV2)9&jf22SgVpP
zcL&0|{R<sk_F7W&16YK--NM*yfg`H+p$rY3HcvV=H5msX;Sujb(eV8O%EAb~;#nMP
z-2=F!b^UC}OosY-7v;pV<Noi5RMp0IV+y_ooFfezC+x21dOl@s2wuJ*jCEZ0=2nO{
zwBNYyYalQr39=_03Xl%u$6fwFGMgm;LTg~i5o@21(OP+VnB`mqWyk|Te;E}F$T_m$
zAC0){#*m?DT@cWKlB3eVIynfX+o4&pCgL!xDhIR@22Y3$DS4pj-rzi$U9fw#KqV0h
zQzr7`1$wmtwV?)lvv_SW20DVtAqFs_6!c^W_~jIJ_ca?ZC`CYr)+Hh03!<<1tdr6n
zbDP*AL2+WHjK&bq;ZN>65d)So0TZ)qDtVvo0dfw2Lt0!*=@Q6>`DLoV$8Nj`!YI9H
zC@YMdX>yHi^%M{Gnw+Yr0hyHbs-+1GMJ$V(uHsuU=nGh!`MjqN@W%$31zg1wT2H`g
zvG9#i{^)ko8(Wfzw=mgV1C?VAjKXF|jOUiD4sS=)+J&i}bcl0=J`ci!IfP;l#>8;p
z4xJ4qxYG}JYSfs8I7U$7F}2|{ILK3iRHDxJo(w9oJHxCsQ4N7r>_9zNwbV98qhlD1
zJ?Yd3jJhB{CHv9<8rDRHPE1chl&S{=wTJbXB?SCy1zHe&F0a_45UghYQwwms9oQ}*
zoz5JUX!TqL7!Z;K?L9#Ud$PSzBsNYOPjz-qGgZ5gxvf;hLOR!u820Vi98AF+CX0uM
zU-2u-$O3Mk0V#*_v)?D)tj2k}kiO)V=HX?vL-u7!!`D!~jPFPZavjLsgV{6(gou6c
z`NQM9+<Td_HlSbyNi|^rB7j;;@B?Yj29Qy@kR8|B5dDM<6}7I<jp}xaeCqYP<;YwB
z5f{3yfSA&%A7M516A|woI?wOgE}PEaXsLEH)=^^_evI)yhq85d7uAAf+yxLC@_q}^
zMP0-jL5md1L$_az9th1nC=ceXy$|u)7F<}9-wM()G7%Go>*&-%u60<x5+aCp#{dgI
zpDwO|kQ>Xa9My>y^e`}uS`_5IjSkPGQEJ6><Sxrk?IjYRF9s<0JRhM|PJsy3)5PnI
z$jZAW#>X6<YwYO2WYV{1Ua2q{FF_26MA_;7_csJnisLKkU_Wvnh7CwspA!^?11D0X
zKx#a+1F9KG6B1IS9r;i~Q5eHeT+(@n9CVis-~iU87LI=0Onz*X<40bkxCP;}^GgfA
z^?rryry5R*#7xUN_hNu$vC?w{u1adkycB~o7?9q*(tccY;-`!XYp~Sg4^AY%Mf{8e
zG0*On@7j`rLV&(f?Z4NddJhcY;KK=(yMH@8Nete4Y0NgqKwLH$wg4XFh7uGSX@$2`
z`vbM6BuXOn&hCguy}=Q;W&I(V*q{kV8X!-A{VKF&Zg-}a%nJuK_QnqA`Zo5L1?bM5
z&}fNZj*O5fEx`e#($ynzJL>_lbHLEm!$&xO=pK3B2bqKe(vZNngxX$saj3RsN<cn~
z0N9?#8M6r|Pl91V8Zc*Np@S0lftgjsOq4JLx>O+O_)cJUYT%~Hm;l8T8={ek@1>zs
z68VBi{)8W}LWWlKr#ygH?gD7yb|kD19u`3u<hq(l<5aYkV-ZA&y(V8*N{j@^h!P`1
zE9E{bvu8meAze_cmw-Pve7PHs-Ucr61jrFjyDgyib-}|C!KLxEs61^#2_}rmPL|+f
zq#38y$t_KFvd*l*d!-PZfDA?p5-WTketAIk&{!=t@kNB$E}}|^Z012uQX^KFWkm}r
zdiik|y#=%;bXY5>mirY%nY}F~GBo7eV7is~PO83P;ZsRe0@^2=_CNiT5-yF|5sgxh
z1`&CvYVKH1Cc9Pu1@EA1Cqj~ha>#v8U>k4+6vMtpzl)XQ`$4F7E%Ao=-oL__ksV-=
zmfl?`_lRM5HbPI0f?i6_CnZ>yMNw{}>JKGmD18X#g`N<}gb#^D-6d}{aZV*lW(!dF
z=mT@)s0=J`F>0fsj0qqH#jA-cuL|Jd3N=Kq9jmapLl9``Wm16^hS}_OnJ>AKZp$EN
z3kCXTclwADPmm5B^tWx+&gW51q{z7UxGvUAptiD{1iPslY&ujB;dJ$)fTLk$+aa7i
zMA?n7ILWmAEigLif?>c<4K3qGLmS;K$#mia5Ee=5Yry$GPtteDGY5?kL`UtCYCI3a
z?j$BA{}WPYvKSBG7KB`1D)^J&55&WRA+<kFf;MtM{E9`YQ10{zE0#sggzUQt)%FwK
z5JP{&w_GJ(Gy<fNPZjo#70ZsNDQz2k`qw;FWWIDPY@KWx{cr%r??8#D;!gw3Bk(t&
zUp@J^1Yp$_0hSk(kqNG&cWBU&MHYiJu}E))P|UOZKHeJ`N&<sJ+&VR~ZPH6t>-dJF
zawqDK2yI1wYJ(A*LN=8nw_K<X292fKr;6@E?4))CDC5^-YXt;8VXUtUVd+ZmW_n2B
zO!CM9HN*EFHYu{7<-KHY)Y`R0$1*oP#Qr;E@<?Qox|Rni0%6u%7+{m72jhar34CHp
zvNtzoW8+w%ZBvEG-~L=J#o$cvI2~kb<ZrwBE}pDQXyaXgXsGf_K-TD5R+rr+PK?~x
zZFBk+sKJEtrvquf3ggt7Pc2^%o}qz^y-2UtLXL_~XcJ=>?*VuYaqayl6h&MI_IEkR
zTME&!=v6W^GC=)E^O0OWbdL;pCmz0}0v6RvSD==f;)Oqq|42!q=twisis_hr>!JX=
zdMFa$nNAR;E*FU5FRtJ60fHzrk_|T<LP6V-o-%woFC%cT3pjr>3<H@~pg|P#`1es+
zAY>Qa8y~@%YDyFwI<c(X=rVW0CQ2`klWhLUnf*-36`-}FGz{LmZtJbLbmx>IZaCzf
z%rja7Qn$j-tyc@!il*dgo54yfn1{I30c`X2eHm}ieAw-r1G1{aUwQq=gKk?~9pMKK
zNe7zbyM)04E4(X|dPbcM`QR<sR}A&G<oB&ySt8c)s<*5e!4}bS8ktyuIUnLtTo2E^
z2-t=Wu=AIdmCa@;Z4aOKr^~z85DvZ4Ccqea<pj4#oNH(DL9-8TVR0BZJu}EP-gk~p
zf0!+uNgNGIMNN=}+cyqks;HbeL0AmLm!=J<rJ~!Um4EkYn5$MyGa_y}?f=S<^lAi)
zA?g=or>;li8*Om|)UC{~g7nVFEHGul8<EhVgm<R~o$lvslEKnDWZna;yb@J3^><T0
zpH8+=q!4PUsToOa5_Dcj5I?)o1c3p)2JQOYfEYCWPP7y`Lcp-lBBA31mhNpZdvvPx
zy7xJ>wBV<2O+Ntm7!)HY3iH@e^o2?Z?jYaTC#a}Jf2J|ehf#}BjeQp8Pk<NgCfdE&
z6<Gyiv%gLph45Jdf^r8$lX&-u@p|+@LXKDJs1jVklI2yTzF<dsOkxCU-=o7Ata|wQ
z5sw5enAv9zy9UeucOcZ&FbmGp;wtM3z#oS!Q?{u%{S&&|T}ar*2kV47A4!lVrO~lQ
z^~^kBjIOp!RZc{rUn`9`l)PA~tyL0lda<7R*e#beZls^j28wb2OeX`iqi^s8!SoU$
zT?ghmN|9`JIxgcD(@W1Scj{>znQ8Kkf(~^I-(=YG4`M(SnO@PK`mqT9V}4g^sF8}-
zNCgGOS~5GJshc44&M^lIm*Fkx++>(Yja$nGD5J?A2mOwP*&tC8Kghm|38)4vwOqdN
z`)lW0*}EU~M({lfuV4ftQ?A~_oNyQF@(O@N`fb8C#N<*>fri;>M`dEC3v{6?cuZeG
zD3p>Kem7ZDJsA;->QiYHXCruO=qE>zR)q71_`oK!e%~2$d^42P_cZ<#qLfFG7%2U(
zpi>8_$OL|mfdXd)bVWFrTr2o_5;`N|gRpHqD*4&P7*(r753-M~Dic%kF`#pG+#=vW
zLCqf#laXGNiLbf{wo#~pth~BRUkqR-O$2MvD(KXELRB<iO@|Ycg&8&Ns1XHW2H|Q@
zhbc!scrI8~ji8A_LMqnNBo)Cc9u`U@0ifX>|9$%GI7u0%A~J+@9B>SGm99FDI&vb;
zfhMgbfF>4c|E*JvyJO<)TGT{#RH6s*l+i{eI`GUO<u}}92v1q!zUDeM5Zv#l`i0*0
zkO0Ny?;Zuf(lzmRBUP!?i|xj;k5Rb5HF3Tk*Vd_<|5a!27>K#bW98tRjh#mWqDFbZ
zytexp-$gHh6cz5DvtkdR2%yx>+Kr#eD;=t6iN{XUk-2eTo9r4yy>-$n5OB>_8*Qf3
zm<d}2aREnF5inVMD=QkwmI6Ao`bw97v@`fvm<)YvA{rD#2L_2PuuXk1;~g*)>c4!J
zD_Z#JJNut;110XjM9dY;N5z0^bAbh2h|UN9L{zBQ0bwXRZl@l)nVeaQXkgUwdw+>o
zO#~u-5bDENJaB5c5I>;3dv_da1n^x?KspB_9v|}RAXlPlAP+dgC8QpLyJ#u)$z{xj
zR~~Z(4kf~uW?j)fDnWS`PF&9f0B5jXoJ+=`hA$`9%&Ul$5+mxQ5+>{A=rk#QLa-%C
zN;$S_miDLAgG<n8BS*Oo%mfJ7NWmzgx^2R|x3cYEdCSD#`D&M9c!Dxw=9kJS1#71F
zN|~DoXO8%<`&RvOwmE0npEEemZ*DlhPKwhy_?aosg6-Ed4@l(8ejOZ-xUUvjlMvB&
zTxP|9b7P%E@3)gCT|IeKW<A|`!RzHQ=gn)5L$fi`u@G|x(@`@&L`;wmNrxNSRlJ}q
zmx0yi&!3m+w%!?XWod`dQ8iv}%_u*=c^H}DZ$*K=ZP%_{YqQ_JeQR3c&$}O|pfmoI
zl>DQ)xjEW=s4fN=n?^o;YiF^tRu3O*z(VdD9dY>Q+_^TqLBQ_Q?Jh;WSG|i*a~D-!
z#%`2Hpx*$Whgc)sfjwSqyy~$^>_Kh9%~@;Kv^@Io@ncbXdW$Xw^%j(&VW-udvr$Ck
zG`@DbySHT7P2-YvTa<SD_U%{QiLcfmfN`|sf<>Hz!#tc_TrBThThMVnAYh>z_O!~x
zzHP8||Mk@}gCl`$0lqZysOXwHZJN9x4qIC$<EmHvMuGj<v13{H@3&#uJ_6k^u&QFJ
z<@o4`xI^c8PmJ(*6%=f}92U0kzA<KRF{S8uIXv7PcgLt^H3rRbPU=|CRk-nISFYQ<
znH_XvZj4qt_Sx&MuK3+|xfn3DlE7rlDb$(DtVXiuV3e>I<32lg?kqrLEovJd9~ac*
zy}--MdkqYrr<d0PzYEKyI53B=n|&B3!`bz{-i974`wrh_Qy8OQ(_vw;Df4hsn5{&>
zmsIf}Pd+OgV|NzI+nWw$z!c&+4iTmM+muoE+d%+;;o}Tzn$}6wxj4*=Hi*x#(Y0H6
zxgA+q{p}?IeS?EVUJKX!8B+GbpbNEt5?AljYtvwWa2}?4QyFRz;(sG@6qJ^-A|s!=
zd2_9yk&#BGP5rWt8?%&^l`|fb{iI;``}byO79O;11Hv+skd&0H89<7T(pztmm-A{M
zG5my^M&lYrABu2g$(#GS@HEUu@S7LQIxd!2w5H(-%s{$14|M+SacAHd3XdB`_eHUX
zS#W3y><qM%E0bHiVV<Dq*1Lv>$1_|e_P%`wE6#-T#DMyMlpwv`pI^_!JmnLaZ$HqM
zmU8yhMx3sN4osQG--$HH_n@dq{<_nuRjcqDe?yY92nN?292|UFapx5rI^yviLBlNd
zLY#;9^0t*<=~NwgI3i60(eV#h7{<<S*RKfm=1}EiSN1|oB#vQnPjHYvAO;hSu7;`M
z<SA4|+i?lE9I6YkrZ!^L=bRXt%Qylr2%a@-y52hRtX|D6C^!cZZYl#S>N*DFB$^j<
zVhD4kwDhtwtn8=GoM90Z6tv&m(iIpO_z&h~<rEaS`T1vcc6Q!?1FrWX{^<UQ{{H^o
z=FNj)&vbA2nZQE%;q&L4c6r|#D8=*`IIrIqz{_erntNI&PHx$<#ik{1IauyuyjvWH
zl6mM6*5Ky%a)A*M=llAONV|_OgUh%Ad}lVhwY-qCw@(+Ji;85rh=>S=r)J@SWM7d&
z2zc}6ji<Nwsk}TH48QrIDckuq=i4&92qn3gP+I7c0-fz5qOv1jzqTUT?Sz4!rY0M8
z4&5i*4#f}3yTD=+vsGTmlAX>?IP@>puNzSYuLvHgDSX;2)p_RN)>d@arJPe){TB+Z
zXV?CkNxkbGMd1?HdWMGaj?yCh{iE%4n_s@vQ;fh33=a=4>zc-Zi`rAZb2-sjyBMa(
zrGHcegoSwz4?8bevc$8vyrLov)7hVUTevXm)!P61wdwSkGanTf&pdwo_z?$(zcA4W
zgWo?(zP3bz_P7e|fqyags#Pe-55O3l0n+oV;re3m1@o6K^+DP@z^?^=_g`Pt9LD_$
z%(XYN4})s{Jrpjpd!Cq?n_vI(5&_E;HTDfyOew*)5FqMdQ`7RfbLaA*4~gE}87$^D
zG}!bj@r3_|8pIR_AGM|x7RsSC-SN&n`{U#6y^m&;oGAqTa5g#lkZ+g%J;#KYfii4z
z-hqRq#l<_=Y+t5M!CS0#&cmAO5aqq_#6q~lO;t^;(s8BZZnUG%;Vi>~!oukY;Aeb%
zW*ZtBs>3Xf79lY2Z?k5VXvmb5l)xBv7L2A&!Gq{weLW|b%70>Gc`<H!9v|-AMy;7v
z=Wq#!eZdZ*w#|m;rQkVh-~xk@9Z5BCLCYABb@{{t>$a&{T3Xr(nk?8HXAwRS=l9|W
zO(5krpb8FF!F`g&*47pi(Q{|am~jJkMsUA)-QGTZ&z?O9yU}z+Q%k-qh@G>~pKGTb
zc67Ys{5vQzHa{*ISMjoeFBq#+mlCrS=3q-Q$(JdXKl}Lc<Iu{K2#z;7C%<vPbLOvX
z`wmlc^J!LAR^k#8*U*<ca^y$>TxD<7N+Tn&eTxIkIcPh97SY@0T&eQ%a&_2(g6RM4
z)~#C@Pn@BG9GdN5HJyc}<L%}tTMZ4Dxw^WlBY|8F4ZQ}^h1LzwI|jB{7V&FN2i^Ao
z4~=qR$vseIThUTVJ^Afu|4U@8bZHJ64Q?CN#*ut~=jY4fd61Eq3QOYAqern>W+JSd
z22px@Ymn#82Y6_yIBH@6dL>KoQBTbjCd{p@){OMH!-;y?vH4@cv2k(HK#=}Zb(St&
zir&E#0Hh))HRmr{^v}1UUY`j--|MxFkj#s_k4wY$`za8Oir8&L-Yf`60RPXR{3QQY
z|K0!>`KF~Ag+)ajC0~T|&YsVA@L^vY_r*{_LBYj8Anwz_C`RbeY=*d$R2#_s%TmYI
zV-W<r8^PaygG;B(gxis?vp7^;Qxj15F4EMY6%4d~Wr!B054R)M;i{%%@U(vzOx&B^
z-l&_|UN97!{CZoa)z_ecvmtOg$>O!S0c#kG))_3qMjTCQSRt}+j*RQ@#SZ-49#gPX
zdbjueK9@@->CTeRkbeC(cW$us>X0&#Ey0zAg*>`06TpyW`Uu4^!mQiB0;>=+@mh`>
zT)ur-H+O}!C(!GGh&?-Z{)QAK*a~6aYbca!oMjHJ)rkIwXSdVduLzP)ukV<rxFha7
zUdT*$cX!x(O@rf5G4iHP=K@YnFBE%ixD}<S39P3Lu-*C4lFv0|%9P(`&t6z;f;4tJ
z0<Z3VblJ^&ELrGzE^xrRHtrZkc~7S1;`Z%3gUwr8TT>B~=vQILbk5IjSEjr(Q2QEc
ziX|-6R=^>k|6r+%j*Y=!O4sh$Nd)HV0TBe^XV0D~byc@d?R5mc3R?8~URKss)L4I1
zytr+(%lY_mZ=Yg#g8z+$7Y)Z)fx29rSA($f53riR$#Db?#9N^+JxxBCH?}yTaj(_x
z>igb{GW)Q)Uf#7e2{xB;8};<?U`(Gr-4v(=leH|4PEI<NW1!~D@I%gHU!8)@HMO+t
z`dj4<bDS3-eg-UBfS9U$IQZff+ugly-bLCBOqGgfThP%A(Km3$lo<9=92=@$#;NFX
z;)FSZK2XmT2B^^$=tZ4YSzTklkEMlB3;u|=Gq4~zP-b@D7-(7<sj~VJl!6;9p3Ilq
zv7-&|LHy*`O$1V)P4KeYxN&3O=g)FxX52_N_T$?>d8DPK>4}Pnlzlm|OAQ%dE7k))
zKR?6%%a$&HR2To#!U%N&#e6*rjf{*63kz=yMvAYQ^ZV~;(ar&XI1O1s+^%)HT9nKM
zgj{Z6Va@X=KDE!n7_kT9^rNC8-dzq)yw2yFL;-}s2`(Ww5BUM;?RLa2EpjG<@(;ty
zo9!Mg0hlK5nySqI2~JtKe6*RHfX{^B9rnU}JD>-d1{UwUyu8r$8*c4R{)3|Cp+gte
z?7H$AjYQ|s;f;*f&>>)~egSNLS*@+DOOC%Y(xFT>F@BQa;p;m$A~G`Q@E-le98S3|
z0}9oD-v&v7G?Vmr;3SY)G|u&_jFOGI$^GJd<h8F~KHls%WO;zCQj~t>$_gZ>$c~p!
zpQ>kNXRpL@W77M~%ueBrJgTfzTeP0g_^es8kk%i70iVys6?LdM{_^D|1fsFnTj_+9
z2M-=h@%8m}9v_t;+=P!Z%stKyp051G#!Df_`EI`hbtB^Lkltru@ehFBgXZQH^4^Oc
zAYRyEQ58OZynTI$Iq)i=_O#j*lN85Fyy9yV>K^W#IddjB?Zp&Sl$2O81wNmH<1E4g
z-@5HWIFJ_nH7g?v1tZ_qb#(TS&doT-`$(;I&ax4*?#68Bw+;PK6&oLa4r$11Yyd`w
zqi`>19kk$u`N5(ar53_3>+7!pPH)(-p#aeO$Uvv6#vIzDpV5M^YceO*<y@4vA&cH~
ztlg~=u@t$hReYz=YyI5g8GLUmD<O!OF>l^H4ZSH0peD*9=pX$K$cZEU=Fj7jDTLQ_
zVC9?E)>9Nb5x-iaN7#6kEc9PT1{`kE-)kqZK%@D$-+n6q_aG;I^n;#ulAeb32%i>a
z*m0}_JHYa^zWmA*DA}H3yO@}oUe#M6e&i~^D#O3EI%31djoUzMQ~Y8aX!!^W*3%Hp
zy+(Xtc;F-HP~=pYW$#~_y?5Wf)xj+}E~gO_$kNe8_!z1^`DfOTeFy4i&6}rd9btC&
zB>+@L?X2H_*O5@Li;9Vf`BPkc2`0-AR;0|r@Vm3KbHSrW)9kaCVFy1#j}_fa_pR$g
zR-q)qjXuT$53!ZFVRrDKfER5PG!znY$1woG+vFrt8M5^3*|UB9{R<`(`o4VJ1BpAi
zI#=92#7qP~QN6~4$J{zhpjEn<bN1aoHtp}z&pd$&M{%f>G8oE_Bgc+aZTbST<N;g^
zE?&Io0k}pslUdIF(J=$hU^F>}fmO1o$O>rBe|G19(&M?25LHyYaK&0hArk#f`{?qm
zFD~`lzJLAt;?0pe?-2O?Pm$JmUwyy8%9T@qC>OR3e*V0{ZPXd@;V;Ktm7%^jf4S0@
zGPOnSrfW#Q;eylnkdk$EbrIENwYCi*Nze%@uW{gQ{n3I^LxfB?e4A)oO}u{nG|oDm
zg0!*&&z;wN6*u?Oe0O&ZPmsPdz<z9BG>ea_R!Tt(lqhq2S8VYHauldoiR-}^&JYf7
zx7Cf7n`P&Aw7XW-aR``+mrBI@i*LypN8QDH^5<?wHcJ%LG(yt!_xCr&enwigc;B~(
zjqMch;A;>_IQjSfF>@3$+3T-fD(iqz%~kPcOJPn7DxF6td(hZuC@d;0%!Xeq1dqtV
zc$s%n3ho7$EYE#}ktG;<L(Qu=E^7%q6qaDshd!2d?qe(!wYlh+JJkbAZ`#i8&O2sB
ztc(L<3lX>PoK2Cm#+soL7}P`QG(aN%@JgU6ukBAy?V}Wb_i*IfeW*Yj$!4$WzKq+U
zMYczX(8#FO$SF}deD8(9o;{E1>K0d4R>A{fp~s!@)4*v5Vs~yf@9zM5`ji$WllM~#
zkhF6UIeuYFe&9*j67SZEfOPW%2l#_ue9TL%Y%Kkv=*E#C;9p`v@DSD0UQ0_BE-o%c
z0j_+(iWTc!D&Do##7=yvoX0s^6ZE_vPKHX%b$dK^C19$q6Wmf~!WFX+E=r7;rpx=_
z8IpZ(<^Nd03r<Qn%i|;^e0BJoZ_)tZ59)1D0TY0fR(R$bHfSL(IgsPV)B>PdPjp<p
zhOuY~CFFI52Awz3$0=Z;H%Gh|3$1_0dgDOXHAk1os7%DlXdw5Us;caMIEY!YtRL_C
zF`|=vj#bqPl(HMN{uW>m28VggDR=>U+%c;}_FEe{gtxATh~<g%22O)1<NqiQKGbxX
zwDWuhPm}GPqN=KSYt$m<_hSL30_g&!GSp#e9U*SFU30$#r1i0jkC@y)swyai0;X)L
z&Y#KG_W|Y|8SdMQY`g!frv18<D%|Vk7ZSDsSavu#7uU8A=cZOmD$ZnKxrUV4x=~0-
zh=-TAL!b^Q#Iuc!frF@6Wo7g6*R~qOXG4z?4Rg8HH0VfndaKuzbl5|Auf41rXPAq_
z&I5jq*Y0d(XV@G%^rpMp2PJy@`^_DXQ88d20a*X}AAt4mSmgnZC09hO=AOTBA>*<}
z?dQQkoZ&cif$WJdb6_p<%uIpB1Tc&5Jxh#{$ZdNh0K+_2{X!RwIY7EQN-|%pD=)Xk
z&f+u9$?|juJuMx+r~m$5#9@P!epJ=^M-!@crri)5JIj~2Y|C-&j?3`oRCX&vYds}<
zyeH8M11m~qmfuqFUd$xM&Pt6uC@GnR(u$)WiS|-NMADb9=qdRZmb!_x*Fr;6Xb)IJ
zW@B9qFxCC_6@AJp@+W|hlb2UC)6%MOZRy1A_rZCQaiD4a*x1-@!Tm~gxNZQD73b!0
z&A529-x|PcV2iG0bKc3dUP0`~I|5;W#~1B$;X)BI!KR+Vgv(KvE@}Mz_HBZSy}d9S
z8yk<`$>F{!Kt#i!ahQ~b>xibb?%l&im_FM1&JdWue|t3rGoo0JenXHQh5!f!hX|tp
zv_L-sCGJ*U_%N!a=&id}2RtY)Uej>$Rh;Tl$O;S`w^wsy8~VZ-*((bQS~6121TFB^
zbnyKPFpYEl0|FKxTETBjkyUpgu7@QQz_#*R`@pux1JOG#ac74KwYfy~=WbeyS<kKb
zt=q17a3+K2YFO6Oaqu2EXhjyFI>GLiH;Z^rPY=Li`OzF;N(6ZI>k7YvlxfA55O*6D
zM=NL*=P{6P=)uZzf9dOc`s$m#8bGIVD`NN~5K4A-c5pyqh4MB!w%pS*PcR`N0eC0d
z6COBmpYET{9Hfx2JE;JFcnU*CMrH}@6j9G#?<i-DL!y1~__4yM+N`;A72x@G+o-s#
zY;Dzj?YOu&rNfNt7uF|kebsvo5M(c=5f~mITK6L7FA=ubd8?}jIR(ubufV`XIP!S-
z>(_@>RYDC;u&qh@GU~nDglo(3e~?ce)z?du^;5!&6xHef{J9XqLk3Y8k8yg%28T|S
z42QDWobI~VKpSh8%$_|vZ5ccJ8GvBJiPh?H!1`1ULy<OxfpX>%3LIY$@HY&HfL4eX
z^IWTw$TPAoSQpMX7oafl%<l&_g+q<@Q7ztI>l4S9%t+lC#H{f?$v=K5VA-@X2x`iI
zO6Lk9YSZzJam5hu@CP?FHNEI*mISufh{0RZ2T^ui{aV$81HbvD#CzWarB<(A?Jo|5
z*5=c}J`v|~X^)$J){$$kmhXX4r6)}BEL;}!qw~=Bb<ldjO@W8Xu&X<ZO5EFg1cgGV
zw>G<!I<^G|Gy&=oDIp;twLaP~wdH;HXH1Vw+TFY7u3ujTusZ$ELs5LjOOjJk=HdA6
zXD8pn-!^*Hp>1)_&7H*(;r%DKg>uV#o1zvJC<b_#hyD}@pXnZV%++hSU*H78osx6>
zK;a69s&pJjIymd&<MXx<RYQr2d?I?V>}9B@htUe$RI1T{T-?`Lu@o9ag@%Or3r;@6
z`Eyr;dOIan29%^a_nX-T_=Dd<N=p#T84Z4sq_4Fo0R`(a_&NO@8*3S7=jG*vb04Rw
zU6D?x&4ILJE81UAQT#1hyIZg!ZK>GdLhN_BMj+5-Ij3?q?|nGk=GC29mo8mmfMbh~
zizBBhfqZi~nms_UN2;rGtYO1ipkjHE=;7uZPNIoILUiL?fLU;Ofp~<ZlhVf=sFP+a
zT)5EgwlC_6H|YHRbM4yRxHQy%THR9C_n;=&3;wHBK@_5;zp#Yi0k5aHL&NfLOWyA=
z1#|4KU8hz26y<_Bl(73>B(kHfydCk^`j9qMeH>|_q55$xjvjZ^#dvvHa5@QED1ink
z8{?t0@Izi)31G?CfV@~(Tx_-H2^Y9M@VZ`39(P)TKt7N7w}FUymU(CoW1>4QETrl0
z|3Nd{Fco;Id-NyG&~~Q%-SSmB*+<??#pQ&2T(WA_brnAl@+<lHb{5t<*_P}~o4<bb
zYQP}rr%HAaaaf6*T~B(r4RsdPRroaCNkEM08yNTteCqAox8JZ_%<9X_1sl|YIO`i4
ze7IkL##FxI<K=b9(c7l!UWS3gz3l93sK-71{B))Ka^kXf!8>m{-1al-GVb18ET70Z
zH0xsRmO<PD!viGlN&x{@EN{W5^3S}xk~1soks+=F<OvkNd-v`E7)1Q#X^f2fdi>X&
zmx1lubhuIPqtnL^ALK5*M}!pK;tr)u+6NRHNVf+f)+|_Xas+SI3yXcf)bBxyY?~Qd
zE&p!6dl<DARND;3YXHF`j*f*$I~2WfSm_EB6Au9?P}{NoANKwPD(8KT|A%jE>}`&W
zW!RY#nMp`(O4x=pn3G)+Dea<UNMYMj%9d%P43#8AC<>Vx2xV#@M1x3%WGKS_b=`!{
z`Td`@p7pHtTkBct+-se49O`?2zn|~ta}Dq7eZ8+JCt4b{;=9gz)A|#UHxh#_AzS$p
zpoZ|;1)FwoaF{V~o<DG>WT{zku3f1ZXk?%x-4QQcT5e%?^~#lcP}!EBJUNIX(5Ok1
zm9k^-3+M!D@-u(Tom+S7=)XyL+x6|M%F3VR-6X#70ol?DT0&YlVDW3s`)52G;xMq-
zdBkg!K5DDCZe2n)$NZd{ROi(QmFp<vL8!|d?EQjCMmDq&U<PZkQA)vGaSg2q!)o$X
zK*8$z%On_8coFJ6q@!P}Fe5Y5*uX#myezj!s`dvh2wA5V^#NpAh0{2nk<pAu*LtU<
z?s%6oW&XD@uA@sa(QSoq0f-OGxmpt3q@-G?7Y}6x#W54z)*uLJk~6uQAS<Iv518($
zLv6+R(Uq3H<^dWVK6-Q|9=XLtz|LvSBO#Er#nSwB{J4%n(l}-j{e*}@Lo)Q;T>WrV
z)Hx!nM)*f|n++Z%pnC#t_$*n3%O+!CHni7WmNn*!9sUZqJ<dM+Ev4%C`{s=aPwuId
zUIyoQS(0b0Vnw|3tiigLzUOb8JiByWc~qLJmG9_Imyh`c_T=~ldA$1YVyhZC`*Ls!
zZ-zXnG;iLyWhu{w&iqf(Md-Fuv)Sn8T}%z1+0;>-zi=VZCCR3Uw-qq9zi#Y|%o{fv
z^I}bwES+w4w=*f=sFSVi3V6-dlW#AIAr=E?lmwCzhrA|1Dp~d2m?L!9f5GI3ADMrn
z(41K;gY|m!e%>5}Z`0HK{Ic=IuV0sy*o20K+21l6S>iNj#*BYL=I!+{8r;&#iAV;x
zz;N0=(>>~i6aJYrb!rG0KdX1$4T)5%jpQ{JcZ&sgknm%9_dgj|bRO$$IPIjHBLK(T
zULh+E5skJO?A{aDyPm?m{8dM3-7F~M!7kjnGevcuR<nCuFpVo&f*I^+t@$*;c5-`h
zKWJrf>FT3L`}nuj_orr;i}O%;o%#G}>Ot%4#Tyy_iKQOS(W10aSMl=QyXHnA0=w6H
z`}VE9(?YUMHr~<4Yt?wiIAYD#*?@ucDUUg*VbSi{qfRuJ$$W*xCFk`&SFD6bIR4<9
zqowG8cAIi+#K9;cDw$t#Wa%;r!?J>$JB0!og^JPsC&+gG)A`;eJJxtzTmAEynG**$
z!=_UD-1JmjCZ|H{Wa*;}v8sUkisCTF8+`w~J~(5&R%K$d%JYfQv<L_4o@T%Os-RBr
z3rPJ%m(!GNMlOAP?bqm-y`$f+I=ORdlJzlWIXqgNN<G@!*2X4pnyaZr#dg|lRDkVz
z_U(JcVp;h)!XmSCcUc+%VPt20iC-Tc-o9N8Pgt);jT(FAcWE;*ZKr-R&c1I-mrk8J
znGNxY57n?p3_cGoT5x+vH7~Y~m=_{G)if+^9@tax$*`!XUJ|_k1MTLtmM>c#t>shr
zEO}kql7|;+Qx=?-SFW0Ndu^#*$Gyqp;wV6z^8DO}>lbw{``o2XZ9>3SZELs8aq83T
z{j!mXLBum<7=n&F7w+D@8^UM}kSHJ0mb2;U7E69<tm5$-Qo0R{jg1N0mhzZHbQ>0&
z?l$|>>C+u|`T=^RKkn2hhh!_`EQf=TkutH#z@%%}WXM|rrN$C?rV)WhDLi?vU7Nt(
z+3#|IXJAa1AN<Y2q7PH2ySTb0LTB#j`DtlcdHJtEqS+;6N~jI?q8bz6*f~qEZZH~R
zN$(qD-zrSPO@4I;hy}}^6zj6*j;>nEmJf;Kfb$n@UUi7yl`t1xOlM%-{dzhIf!=iH
z-93vrjavN1e$$yuKmv7j^=o^6Z%&29c5yt5PJX{2?8Utla4QuA)?dDSdC@J90Bh*b
zp%0!t^8-KA`l#b~DmWyh21zz0URC1yM8YNWNE?t&+SO(-gmY)X>3y(*BqNt7`tbHI
zyG*&&s1Y3Zsx0*Oz!-O0<8=4La>&pT)6&kJ`|U|y#K6vv3XFC|#J$RIzGTUgkxMbS
z)2=oLx96<b>Uxevarq%np%D)(zOC<^fc?7qTloJXg^CDf7v{j#Qz8I>k`JFeS;K+t
zYT4tE|Ngbfx5$w?IFI%5@LRj~Rfo=F3M^C>PAI%hB7ZH|sIF{NkePtUZHkwlJ}xP~
z6J3`|(@^$b)UuC@McQ<n%Z<NIpFW*`in_($uo{v|Ezc~|yIB#D|ETOzL_5Px6$5p8
zKeBOf2<)6)u8x;o4VSbobcE%H4jl@eB%uLiCz~iOmG#>okgWqFk@6`*)!8wB5SlXb
zWyj_|my2<~lTNxF^agADoai<_`smRMWMW3sXi8L1yS{f^+mV0lvTpuvE$Qz=UJF6g
zukG3?K$hIgUjACIUOmb7Pf%3g<!CbTK(PyyK%+CHi#_w94>lz&Nd)Y6Cce0P#<MN&
z1=k`KGAh?-wb#tb%G$-jS~NXyplymOY2wcc0)xow>coZ@cq+!2O#2Dwl$c4NVg{wu
z7&dGe!$!`YKVLl~BLmXOo;%rMKZQeqIg%m?XKTdh(T0#C7&)OQzzaa|4b4Jv??ggW
z3p#xI^ug(FoNHZ@Rb^=v8VAIL3tUtotdmR5VX5`aMvoqS7<Lg{Y0Cv&>NjkdjOW~a
z=unThYZ&GzxRztDneRWO0E)}=4PI6;NxeOA6{WOrlik&&a7RY1sug<w^QdUtFPx#n
zwwIex=O0^f^~RYOo4c3|Ke*_YjFzHRxB)Kx0xYpVsmV(rpW+QJucwaAY5*BZun!(T
z{x?KzLNtKiD_8_4-TX_lkJ>eCqra@1wQXV)M}1IkUS2gt$59(Emh}JXz`y)Y_=6v;
zuhA52YHH>)+io){^r&J>HXq7XA{E!t(~UsOz3#p^TDN)k5xE@kLi-``E1*jLmcVa)
zvL;2+2D_s=)%>0t!~u9LwKP4neUfE%iedANyD5`2%W@Ozf{yQtj<kO0Je@&%6O@qf
z!hR`pH*el76(aJ<<x*JZy;8Oo9!=<gSKwHGVwngmODlq%T>H(rVQ8AqaIAu9P50Tm
z+>f|fQ_C_b&v-+3lyhpfj){q}ckOCsoV0Z4uwkV$@24f6J*$9+B66{l4vaF~_&bk~
z0BwuvgM@&XixECyb?SUUlB$h(YWU>o)BOc&`%XONUNX(IzXdif`@FgBfrAG*$opKT
z-9BOqi)C{3qi!IoQfCVp{AwtNqW8VSBh83~40&DGF;auKHXPAaRh$`?dxzb8EfMFH
z)~shO*r<N%`T*%evlGPQ+H4Oa#O!|~$aB$K*P9nr=3ul1=N%jWtHp5Hq9<nP1`T{s
zQ`#re|ML}IT$(*anKTCvHVGTu@={_fHtK3-?m)N~BLmy6nqPhuH$WR_koO_WlYdhl
zG|nrRsCv!(CFf!(tk3Md)mz8$&PGA4Nuh?X*Dx|<&${mk(rdbI|Jv5w=U>2oHP-k1
zH0_z|g$ozbTkS1-f8*rM@Zhn(?aCbzyX0N>#!Z@}Z<}gH%8*1qn}B#yWFxK)IDZw`
zz?zt~eA_TLc58>iL`t9ic0A>MQl)6*EOf5DV_R=}I%jc3i<T{IZ?78NG%-)2e~Nq8
zXYW{xYp#W>R_W?y^*$i9`F=J(VTR64qfbu~BPg`XHgOB+prQ4ko3?hxoh1Y&=ct_l
z&COyV5}7t)Na^I|;I1Yee#92|^Lx{8@WNFZpAucz<VXi?S(?2W-fQRv>*>u@tIug|
zccV+!Sy#Hk<XPEaI?AQPOaJ=ouLnGwMod)HZ$ND>o3<0J!xq=PJ$$jwjUHooWiLHH
zzw^|Hr%?X(Mb6GSfke5JmX*J<^&dE4R`Q)Yt=K85QE`@<A;G~NEL$G^0w-%XYWT}9
z<K<L<YCa@0vA-JByiW7(YXxT~?g$uriAS;+_-TINag2%BIPVwtPOc_wGYg5$h_vk5
zMH9fu00DUONU1JFTjjvaN_2q-Gk-_^=e;C(1ul0_Ei%iCJ+gh!fB^%>J*t@Y;$h3E
zNzlO-0!XdEz5BY8s@S_O`>cNB<jJr;{re{o{T<s<6_Hj^S-<()>iMl+T^pNdc#3&@
zguB`~F?%QdwTOuAuT`rGZr_D>WUbq)mkKc7qW;H&IeeoAs(zx%KDpTgTchq<Z1C3s
zb<1EGbu^l?jqcol1d`SSn$P=g>q;CCv+t7YSosIZfef*qLHpdbZT^s9ZLb_Y5Ib4l
zMw$Ace<*Hl{K>PaDJi46K_W3MD0}>PwxF*CCn%!~qo|TlK6&Ymrmb7I7T_@fwdS(~
zg}wdE20QiB8=KAv@3Mwsp&y~_quKs2r>-zbDFIH^c~ZYy)89#Im%Qq)zuNWeX_DZR
zJYy_*mT(;t7A;aI#`i4%Gn+y0UhEFDr~!TT*R48mn3WyT2i)f6+qcb1C~1L)Ptl(B
zTA#o;KrK&P$Sb`aRjjhN_v5MOD$^^SuN5w5@(-!MgUjS!eoNNeb#q>BZg1C)SL=hh
zj0~LEx?i6gnVHF0OQUXEE`zi+6#UUXjXr@EBiEZjCFx-4I6nkjutm=qUfw(PJ^hK#
zHMF#}j7vd(cN67jop83<k-z5`CjT-eX;cCyH}%$-XvnZc3{9eNaD=;?I%iMpc4R4y
zJ=l<dXK<&=)SF(?YPPS|Pd|lMsG&kK&fDLAg02&p(DjoGom8A|AE`-PJaN#WQ^Auo
zIY1-jn70Z66wB1Dt03YO7}H3-RVyEfz%1PBDd0Q&hTrJ0>L8`^EekGK*phi@C4*P`
zXxNc)bEYHoJcnZ_|2c4G$-8;#1O7B1-j<Yya#Pb1ip&2%eIqE#jM`Pl*J6#gODa`H
zEUE_o$w;YRTQxB`*@o0s1Aj5$!=uLEGm<ZVvQqm-{CxHD<v*%<OrbgpnMsOm4h{!W
z-jJq6(PstaWuH348OxC+cZs7RU+tby%@$Bk@OE3fPV#O#-;ms}AaGj|lnJn)Zn>o7
z7t+(40+C*HJ1v}A_FRDf-;{#0V(0G-&HH2CLCcfPs6J>QLEjr_qEAzIE$Wh9SdCq1
zu9xv<OS^R*17YYFeo13O#u!(Kr<%-k_BuB7sZgZwpIU`f8Iq_LTsysF;hr?!W*eSX
zV+Vc3n?K|eoS;|Vp2EMyJRM6(|6Cj#x*_)Df9uw*(RukUx|qV|2d1B%@+_9@uH%!T
zgJzsnM8{dC6u1E7)sg<51=H`JTqyHmlZmk{Qk%eRBhvNFq8`zEYqy&x0H?eQh>Z&8
zb}l6I7#SmD=FwFeZM(djG7{qCHg_R`4$j~YS7_BT&OQT{Hr!ub0O~zyAIi#R00L?}
zzp<w-z>v!^zqN9IL~FiT7cLAd_@Mfan|h$$l4jJh4R~*1g;%d$6`)Z?fAMSKU}+7i
zZajSWtlQ%!L_N^y-Me>M9s7QX*3^REJb`vf(Ntp@oSsK%I}atU^`d(4kekw&j;gv)
zBok#~VU^D@<4$SrZ?u&;ghvzH*lIwf>I&*WrO|5RhYqbS{dW7@FTs!l@REcbflq<6
z;3*PKROc5Z$%`Vc9i8YPKrAzaZa5}Vg(Jf}vE*H(`;}X_RE2p4Wp>8gxxS!oLh2-L
z{keYqL~w!<`Y?V4*aT`3EPi9E-k%Q)fCeoRz@!M>g@B=5C!c6#etJ+(OA0?QG`8=1
zd5A;&n8AjU5A?Q8Y1h4b128Ei-K$Zfc3mp^_3k~?z`!fCNqFz(-KTkxS9p`Cd9!(D
zolNBrUXS-!BBYB~?o`VK9vv`nU@+(<GzWv3Gdlp$I5U%p>RxryM(b1f1Nvxoxp>a(
zJb3UlQ+0gw=n5=@{ULpH>qkDk0OZ%P<__9m3r3CHJ6$350+=xhsC(v&{vnB%=j9>)
zeD~Z^xKmha@oGnktG5JQz?l1<p9Jp)Eyk8qW8}f{=Py}Y8{)GQ^9vi0mVgBMlD*Uz
z(Y3+V$QpA2n4NJ+D#z{9>yS?k1MY6ry0stiX7SzFCPWR(A&ipe8SQp})27m@)wTjQ
z=ZoP~B|8|MrZ{NGpLi*CxyhyPUyls5BiW&(w_39=T=>861e4wYuaa>p{&5rXmKsa7
z($B9xTNm<D3Gi0n5RX>UN?&*anvGD&fD3I?diC$$jL@%f;%SO_!^uM+?9``#&<k_u
zW}O{dLIFjle!9PZz0dssb1Ve(M#^R_b-@elHTbScc=;$wwj72Dy;rYXSwry4K7Ecl
z94G#EbXLE0$jVCf0S3FVh&+)@3+ESPU<S7-c+t~VYHE4B6HQ3hH)5f9_<;hcC`|U5
zc4Wkh=H<cYovom1J*v(wR{i=RD}85miY&f)55PwgxzB{aaXSXDU+{6vmcYPz@Fl4`
zjC}PLMisON#)pq-(W+H0_R$^w5nUvI;cNtb#_V0~Yem#Wb$Sh)L(2RevX9vQo^|I=
zFwA)CK#tJed-skmJ>61QSN9>$tGE%jsH@xg)HQf$YY1MD&@HB{y?<<u8ND{OIr6Qp
zjx&7Sj}_YV_<kfj9j;pV{_ncm+}{*!DtlgAfsaUlmosEZ8^iKB7#G}ft$*Hnm;`Nq
zT{XbDe%$vfM357nw)EWiqm^8M$)Ve1-VeVxeCW^>!=GZm)#+M0hoJ1|HL06ZPA&V`
z3Sp4*WXtnU`4#(^lRVCFa@y%g_%U&!U(Ei|kXfV}0Up`qnb+1J0$gii21&eAqPD5-
zt8OrQbUn&qvPuP-#}^<ObdHVnFh4)^`uis?Q$t&|Z21esEx~~drYz6LgZ6fPG>s_}
z0;Y4U3pCI0wabr1o+6C8a_gMMR-Rfy7S*NuwM^@S8$jNL5xL9dIXf=ca82V}kKZiT
zYbn46Y7?SN*x%J<`0b|q9wl&VJ!!(~wsYdrLzjgt(~B%d-D&F9!nB<spicI#e_fSU
z4))M$j8saLk5R<^`}f_ks*qLpx#$tNSI~7EFn>r$AWwFduwHf#VA%A6w|!C~Ad>;)
zT;~zgPw$PHb949{ZbN<Gf}a_lk^1)I0;-;qq*9lC8NS(qZWADT+~J>0@VM9eonrr>
zU7^p*l;AwSQ&-7g-@KdrA8~$gkFEYOO_a6oV5ek)gO{MZa2!X)wTLi{wzpu|b3N|9
z1x;-+@D#*igOkfJrNhULna@?@aGs|yfArZ3dt2L8eCZ!Rs=6swW)zH=9i|&;bw*}F
z4mCD@Gj0G`7a>u*4jl{+R!_g%vv=?FoGa&t=WB}JJ6NIEMf)AgB?Z8`2{k{GDg>zZ
zqLi-2PEG4O55Wg1lFM|((KQdG2#b~HO`_rINNXep{uG7<9S4*ByNnP12}*WtxMG{K
zEzCLQ0$cE+uehw;z5CY~ryPIA|K!h}*Y4o<V%(7|`{Sab2=zmp3cSG|oJ_c0>jzI{
z$gRK(43V5THyb(=Y1zdXgQg=soTPW@7x82}cI=okzi_xTl@z2j6?gOO`8<~A0u5__
zJ~&$~x{mp#$t;Ahn@{}tuv;?GM`yF~i>J@diPs|<Sw%j!f2n7!8+DFv*KzVESO|ek
zJ=wocuU_Z4#9@cqy<u!e1ZEPr&oREYfSlOi&p&&DI<COUMFfsh15oPeoNM@(GWQeu
zUcg{a3cb`Y&JjpqyswW9Ff^QEim8F@Zz#FLr{dP5IaXcE=Vj6@P`$)sa}{Uq?LA_9
z)<|Vl<FVQvzp)WMrlzKUGSFF!G`j(UYClk=mE6F2j4U=|xO5Zj`mF}m$^KLjJ{=<`
zah3pH@DlxqS-_um0Zkk}d>9wnM>scmu~_mFuymjspVXxw!1SlYB$dx9WCILvD{cV`
z(}!)F%c6)gMcT)N!Di66s*~-ToSfA69vj0M1Y2by^I5XbM;#D$`ts$=Pte9flggTl
z7e|mS!m(0^sAw$rNHhg_+ADd!U1zc`F5b);kA^W?`(YRB9?sj}oQGBV6PGQ|z*iHp
z|Gjl<OTf1ofBdnWyo$$e#{HNKS`C2@67K^%o%D;~gykpLkHLh!){(%6;rB-Nvm`x{
z>I8rHkibZKJV=S9x{mXjuKG8f4S>+K6*qhw)cVfe<@O0?asu&;Gi@yr8ZmfG6ZUjg
zXK-AZ;cL;%eQ#*!11@!9!IQ?w1u@j|XZb-MWElCFK!kJ+8ib4u09YemIEStQIehKw
zrvd+(0TNy=Sy}{>vkkPF9#E4M@`db*8MF`(014N5Hcg|$3ljh>3~Nuto?iER&1Nry
z&nZ08uPrTqM@RR=*Vcn{8tt=YA_KvEJolUL)A0Yrl{YFd6&yjaH$p&cK>(b$i=d6n
z+%`<Z)<Q_oL{IH|_G|>8$d-!!SBh5*WS@O)*YYVf^PezI=%wrqV`E>NbM#7a_x5S)
zGlR_gSlbb(?&IwR6Y=NvISj)3bDcWx9kO8_^urg|QfQin{tPPqs^a9AnDi^S&Hr5A
z@^_{4(sXRTukrd>eY==;Oj*P9%wJfjT1qB9@!XWu@CPX`zFOAzJ1J=W0qbAmKHUV;
z5&a_jBV~hYuxwP8EL!vjNmzNj<$oI272WNgxmF&n$NR%3{WNFJoPCL-HG`HfuSSQo
zHxynnw_pf70flKh^y)(6KM@y~i^IM%GQj(BAB2vov+)d(05yk4^XO@RGgDJJ?JC=8
zm?KFmj~nx!U)rPQSMGEC_<;jIf6yhsivIT(6_utPI2qQlkYuJ@34LHzQDI&&?P?G4
z8`UM`sady~x0Kre8;#=U-GsM50Mw)ed;@}6;GyjQSA^)Xn(d4k?Ih(sru>?p*sxOE
zpjz9b&C~m*Pd4kLRYt2$;*s1!`(=Wzdpwo$Em9X_6Y4hWc9txt)OISt@xS1z-WVi*
z=uW>{#gJE4`MmCEy<S<WxUQ4J$?nD}Xg6fYbl=;JRMy8x2+cA1iN2C3C>|y5)ciWs
zG}yS+dVNH0VNqf5yr?1~1^p%S3=PXicG~a<Ik?8M&!6;osT+D^%e*L>7dl#75e;gY
zYyN-!c3xZK<b;ITU7BcU+z5lEEl&H@Bq~o)D7k3czAiASD85n_`(D>};(;mH8;a4x
z=Eg!%+#=Qi++PE$s3#kAff|W%8RA(+#m}Gn6Z955sfuE<ec~6;%_y(={czjjG8ntT
zJ*Z;qN(Kd;60hpGcbL_3=~DweBbiL3M_N#GG1t<$<z`=VN3Px8{sZ^T3Oz8%l~T#l
zL+yeOZKf*~1g)N81i3Ke-d77gQKR{F$dERQUBtmp?pG;C%Bz?&(<OFV<g*USE&aH(
z?k~UmhO0ALifdSkr0*0MTi%Z^OUe4ljyT%VMjD@4A$4`WU^pivI;alaqAdrxbt3}m
zl1mOlr<Pu3>GYFs^>MBvK3i#i$^5J$3#*Ww<k9aO-thJ1M?i(YcD+1j+zJ3H`(A1q
z8o@n&Pf8m@ua35DKtJNDX5o#mPjo^mLky>P=h6Rqk+@Gw8w7GYewVxtu&W-K^OfzZ
z-z|fRhu@@7<ukwb120;=XAcl!&Y44r4)PAV`Rv@@duu(w=<C+~4GnW5S#N8x2xON@
zgg7q!3aN%Tf2vp{24Oc$lGtq<lneF!zaGy``~qGDJ53@3O6;vXskio)#bOuM;8)~n
zf}OG<s%k!&tw*~AAj+J+6TdY283NZWLbs_`rtW{;`N7INuW#1PwEi!@T(|DT`?6}5
zm^LOcjc&U46|Y~v7VeV@ZH;FsMTf+q!|X@EwuTx}IqvMDtACZ#CcobGE7Id}LDkp3
z&0u#g9G>>9VTOjU3n;NQyDZ!CMm+3-5C}CI;8(x!rd;|OFIdo*k=<Q$VN_eA!Leww
zG=={7xt>|sO`6k_Vo6lszyEquiJ1N6WnLiAM$`sed)bc0D(l}$5X#ak8Z~dex@DhP
z`LjP#^8ub4^<?RP-g2mVrSbcNg706^(b3*Ds#ibuZ+$WRzm=4ljvLpIh&n@F;l|YK
z*HtJ-G%Mlt{Rwv}I>Y1jV-?m#I~ON%K0UqPA+!H7dqrQN-N$N~L~>D5d>2-P^3GSh
zK$^ii7I|)h+Z*y7p|fdlzLuF;Tfq-m!;`T;sI%zROp@eZ6vTsnVErFW{qKcuQn~PX
zs=nrof0r`$oG)LY4OyINei{=h)Hx&17+bkw@7}%M?0RRIMh=-mxgz-OoU77)_}Pq%
z{y8rH^$6R(Jwjn|@mlt=&wzIA48)GAG<EQ?Os4V-Vjo@r%A*-Vw0$0udIFv9L#0J3
zilBlc-CU{@Jz*OyO<VtcgDd~^c<xt-HrOdJGP3)f<4!$tp|^i|xhuw$%)db&3t`Aj
z<pPbyFi<7c&i&_~MiuaQM<r8dd_fysgty(5f2#@c_W$q=zizl(;NsZ%OV`hxXqreM
zzl}-2WvvVf3ToDeeW>M557>-Zv;O|;ub&iWDTel<l}y_XuaZKq#V)8XCp<q7QJjS|
z1rKWlz)B0j5ee{e$xjsu%!!m=A>2;6wDmt9@%MzW5z4*y7ZKxcIE@5K(^Ibe?d=^t
zW8kui6PhM9y{P3X-&u-3tFXD-WQ|;DRXw+&W<W2h5=Z4nNGzl$vFb;2_1ECrTcMyx
zo(z(vP=I&}cC%oCyOkKc1!O+WbX<fNhJHz?ys8nKkP3YODO2GEm69y$r>0#e7=l1a
zdnrCjVE}q2*_LBfo(Yff+9<baq4IHlQb@D=q)!yP4!b^`pgip6how$%W6rda`53f1
zk;MBx+g}ilSd)S(yx8q)s#^d(gTu_xHfH62`~>%CIp~W{fQq6Wjn+IzaMwVZUNI*M
zO5WOb#J`~)6e@x*>{!2Eg?Fz{*X&$f=G&XD1}vky((sgX-f%i0)TPVJ>uXj1&Zu=&
zm(BaJZ_?M7@{>Xnf<COzcDZz5AD9+v>e~|Y)3hE$QdQE}o*-@b2&f~NDPP>l8UamJ
z!;79iwc)(p8Rhq1mrnj#b!d!cMuXb5Ypc)`)rd|(rOz92k_4$IF`5c<WovOdGOc;4
zjb^L}EYB@B3J2@y(aE|hE$~MpD1W}5x$<i?+5wIsJsy)1NX#}Yn8?|FpHV>}sEk)(
zIGC=0kvc>8yWThe72d$+!4oJK2vg~Id9*4YkJewkfuS;-z8U5xWcucaNX+d;Cyd53
zIFiW#8b;G7+avuwT2^O$7>VQqsyvGvs5y!KGUXYneynO&LjRrUrd#1Z_D&iVpP#^|
z%`VGbcq|iYHiZDAQ&7!_qejS;$InB=X?$Y@2rPczS`|s+SM)0Hb?dDNi@M-CO-m@g
z2ro%{7T^AQk<swsG8<dNZNUO5AV>ep7Zpr+@8^ER=Nkd_Q`;pA+gMsGdfu>N<j*QC
z6RN5Fthvc_ZE&tv@Pvoc%^R)qx~A3O&EkVo=rS+*S!-pkS7xlK<Fn{Gu8N_FyBmaS
z`s7Zk{m&)SPFq!fs<XVq8U1O+ZDX5W{6$xHWZBXT>w_Pkm&PygTsL?3T%-8G2=o{f
zRs2#9N@s0R5N2S+YAj`!E^8>?B~c~p6Ie%a;}Fy=nIIwYw95-*>@I(qdajiB3E!bq
z6Ki`6)v`p<-#k!wWor{2-jCGRj#&_)IfR65MH%kM5G12y9{AT0@yg#%-ylOj4^PId
zu9dL$sYvI49R~09I*xfqxkx{b$p9_zW^(j^`OB5RCjYgol~Q}JKOJUW+b||a<{fNU
zB9qAPGUkB^<ccS~{y6_v8G7~G4-iDRf^JD_zml2UmDlhp`dw7pvx1SEN<xW2X53yn
zy+1NeOT;1hL9diINc<R~@Du_TKu7?q2B<m;B{LbyUHLJ$QV#Q&5KYj$gRwZ_q{xPb
zs?D1xBY@S)YH5kl-;CXenF<OcqqmVWJ(+)hSVKKklyqi(on|iAGI*mL-?8y>uVnQm
z0NtKPrnBhsD_F#h=gbv{9dYWdWqIL^b$GX|bbC&M=f_M>+wQ8B_oBGfNN&a;HV82y
zXGFg`J;ksYfsE&&e=6hG!~Z4fNE+w){wC^ZIsr>WJnt@YH?m}vpMI<5z5Ek^?@eIN
z!IlGs%&!-n;=#N``N4f6|1FwkqB)yC9TGO>M6Dx7KVD=zef^|d*m(l!CsR{Msx1&$
zdj0&~pxER1s{sWY&8!hV96x2swsQ*<hh1gvQbn?7g)xR>K<q;HVIq@N8q@ETI-_^x
z<rLwQm78s2KQtI<p=-jPb96a$>{wq>)P79CjY`(Ql}{88RySqoomia#=yip#e`7rv
z1D;5p+lK5vZHDMOfBA$jQeLvorIZvO3L#01A5kF_`2G1hR2-MRzqvDs47$(14HPL;
zcoTsOZj9_@o#35+Kk4&kJqWh8pQhHTyp&?&I^|v-BZHGg1y96@V&AcSm5Yx;;ANhr
z>^^Wp2yki%6Bs(Y13hU0X-d0KQ}u7x8R4hA&Q(H}7BUV^eevVnmrmnhlaUN+LA}6_
zt)b6zW=+3}%(;9WB9D_Wq1v%IM5_PtW*DA4lOa5npIb|ndtwi?awE~~c1Fp3bL?jn
z=!UZ~MA@Mi5m3E7HD)Y1LdB=-%^}a$GEf*jRZVT}F+&FNlJn3{@&h>0U-@NDwOo6b
zn{q;d)>Z#O&s!jW>w|WtG}vyt+e2I1j{>zZ8$(8ZL~+%6VL$DPnIh;N(rTpqO+?9A
zwQ19iJLQD}hO3G=pUiS;Ir^&@H(wF0+=(Vnmc7|;m54flG?rh7x17I>^jxMeT_+Qz
zd1ey-)@fyzYT?>GzP@=6SGSeYcM`aCTWTPqhg`mNX-(bkC)%<5nqp&Y@*h2#)w4_G
z`Y3L7pG=mtM>*^J)^uvQt|G?R3$<H_n!~oHiPHK2M9xBJWyEn#54%=JG1b)ET$Nyd
zEjdFX*29K~=yS|oqTF7Pra+z?Yc;NJa!=mNtJ2a9Z?Io2uwxg$nNP26%9$GBjS)ff
zW~x?q8Ew+GVkvLan|jM|qT|<8lwfI1Nc^Q*_;aXJDhT{dlL6Rbpn5kk(@DpL3K?0Z
z{a6Gx@+ulF7ESrt^-4J*%AyFtFyCr5Y9*jF7;{?>onU7)mW^@Gc_8cSNY#x%6!&-U
zphzFeno5xtNT&tnvV>_pi9j4WC#5NR-BhR3{bX#=Dpt9RoSQEnt({6+p<)&`dJRiq
z1PX?VTJx!Qx5Jd9rnXkTfl|Np>B+3>EF=i6_XfH7z%lC@RsEI$+G>7af=N;&A)J;m
z@c-&KO&6I`YQb$NysRMt)*hmq>yDRD&NSzj)&~Vy8a=5NKIgyg#ThdETBzJD^p`C?
zg|gaI?GDurdkjK!IE2F2coUOd(|$6DtsHcyP?!&qi3hu;OosI(65Dm^*3EPB{4n(Z
ziX%7ID=r>JcH}V*kz-{DycI%Ohf&`K^}kKxR+yA44T=4JtPLBo8HnIIqVHt-ja$l}
zf!z{`$VCTfys2pbqrM$Nz&(Hnf9vaz)suJJ3_%FrofY|=uk-F_Q>@P~EHp;Iy?5&-
zUageVMZUh(f|+8!&OTxbCsnJh-UuP+v$NjG_7}$jq0_N!kbC$T0`<mX7ml<+U<{&l
zmz8UFxiA;S2xL-(%IT4A#9sJ1vRrxX&=InE!mq;_ZHxa-TTm~20oJhV(Rqv@5^di;
ze|&l6^4||?&$Rn)NWc7jKcxx${xb>%BDmkZiu^-6TQNmHenP)**)M<XwekC#`SLga
z^p^MY<Hz*Bra-5B-vwWOaKu*Gmp^{~cQgOLtW3AgH>-JFor?U;()UmHMp2~p`~V|0
z*xP&d{Zr))KiMPvE*tAY&W~%Z@VYZ<WYdVPz_KECCE-&qq?#w8E86UxC$fh6?)sp`
zac<9AK{r{$@lIqQ=6ZjmLVx%;?A>U-yA=ej;e*k~hW~NG9h@%Y*s%rMcTUC((_*$%
zv_VTml3GTQJ?7BKOgRYrr=RVvG*!wgW<_?{H?)>aE^$T=E*X~}m1u1b*A5-L4l=Z2
zHoN`Re&PzEF7rp3(5*f{n@r1B39~;EF@jCuqIipJF+?AASRA9?$t1z=pIw_xO;^>U
z^J%h(Qi-;yrk2+G<7tdtYa%g}#6dD5Y&PY&{QQkCjth)z0|Zxs(&BK;r^q{sl~_6*
zz>GL;XRb_EltB~DSNmlqbU#^aIwz-cIF<5yy`Bx5@MLq6PW4SiB1~D4_PJu5h~nZh
z#y>hLBUK0tnt>7dZx}nU3&Gy;QHz8UohQPms?C}uF`Q5pld4@>&ea>sFf#c%DAcD%
zE$U2!{*1LyC3qT_As&z3u$fGcGN=!y^w>psc^M$xe?WEpb>*7Mb+C^w9$nk(St4Q&
z>N2-W#@E=^iJ-{u%t*W>hCenX^6^8Ed;g6(5h^O+y?!E~NZGtC^$UNiPp`I&Cvwa$
zWoBh3dQimB87xJwa?{)Cm0zO#UwfU77U9)VdtW1}`K+Vaqh)NbTo_dAsI%%zK=M|d
zn_riMGI|MO^9e*!lO7!fgJb4}y3(oMng7Ez$5%i1tda}BD3DS%Osh?sHz!@y$x+8w
z`ch5n{EndYu{#>Vxdiz>1RE0;Mao2<9n5X{mkF-Qu<fJNy6_lzC_Wx|HTs9IP$+J7
z8x`?SClL`e8>`z<;vXWAOCRyl{imZoI-ug^g+Bj2UqXR)4OQL*=+*&C*oDpvCP*SH
zY0XHAmZNL`cu50Stm2%*^sGH5Y?V;`5-f$HM2Tu4h4|rc>V<XfI%v?KzZ<q~BeQ3b
zBJC0Tnei1#3@}sUUM~F*9LuF6y0W%2xiROYmUaomt{awUPdVl-X&Qm&&T})Ty2(Fq
z)6HaeJcq8<MF#NvkY&kbcExcdM!9j`jM?8uWO`wqgeAa}6N;9Q)L1?-8;gqXOLrpP
zT(24pMm*O;;k6e+?xQ>!$`!tS`dN()t6|{Sn@B{$z9aK+sWNwk2UucWwpG>>1>9Z|
zApP6NZtRtv`uecH+LF+Ng&_E=3&&IgD)?K*EFi_(B=<y~zpu;*9r^;bWM9bQhQ!1+
zM9L~EsJ-o?zU@I9!QS&Z<TBqsUU!T}Hr2Ys{%R|%ke~xpe?+0_kjZZ{lcj{vDj6Hm
zL}J<l1nozc&~unw1`v{mRH(1Fx6Csg&o&*vY#q@d5uvY(mqtE2zL?smn91vec4%B!
zZe-&z(xxS4hVFfAE2BH*op?Q)=q8Ktl8tFdxF}<UsiN|p%W}9Yx_5_-O6x)>jskFR
zg3vq+jK9e1`qoUpN?JHZj(!hDwq_woV-4e>i@q{9LAbl~Q#QFV*OY=t7yYj@CB8hr
z*BxV?{Tx@f0dv3f9(CxoKn7v2*UF$&=`7eA=rRhq)BQJ&ctEyB%p_+(QFw?oT|`}i
z^w84ICG{AaVde400xNau#*r!p+GKv0edqgc8?<oVUBvP)#R2X+qlF*(dMyZ|5J@E!
zIautzhALk&3dc<)eH>Lt65ou49+R=~p6f(}Ee;3Vta{m-np`&S;ooZ37+&BUjEjtL
zYTvc%{%LmfVdtSq?1$0NM^R{JD)7vBJd3QBOh3gQn@08_V6u(BNwk*BGmo|z^?g6^
zC;RFhEwXCK_<{;%a*b6^iDJQr6bwAc!0N{k5AUL@{KV(@WSQw1$eiKvu;n8^ip;bO
zO1ku(F|lhXUG3>wId<>M_4|1RXgRDzA9mo@5qE$vHg;M&oe;YO_V3;<w=<gZ5@lB1
z^N-XU{0UXP%a&CyW+KY=$k|nH@Rnj!gvoERkIZ_X&h_aUOjKGhP$avPU_IY#dho6Y
z*_VBM;b|3lTL1m^b-AdWkH`=+-Ec@*JIm`;t``0XpS*%1`=)6+cupDp>=LvDx0=UP
z#Bmc3Y_w!RYzcC=o9Dg&k!cPYZ&U_)9b+eUt8$$PT};d_GKY?tdv`3h-}>s&Bl4$T
zWmJ-8_wHluj%^g}zV304gMp@Q7v1OO>(!}KC%_d;GBBj-EB3=u*F*xTAN0X32Owcu
zM$Q*;aLFYsqqK^dbAjo151zI}=VPP{(vj@UGOEh`geUP_)%ynp$07V|$aXuvcosIs
zS@gPlrN_jwfr7)sXYc<&BG^X2f{d`Q^Wnc<#$l)O0^0j_xaY1}zhT4C^gf&+E0MW=
zvNn1Q3e5Y<F0}o0INbyKhd1i!{U>+*?<@RjBuR`YUrz=tJUOjU22(FEis;J{cF&9-
zbEXuQQ-o`I<@iVCmwUZ7F<qs48cTD@l{lYTg5!QWuwgav&jW2Nd}Im>3Mz5w9>{Ht
zj{JSps9e@_jNN~{l3zPojJUp{X5E0NXr;~0I{a`#noOq%TCX*Rw#L{aG%NHKx$~Kf
zj;UCX^bJvyo7mL~Td#_UThCa@8)8!jgTg%VF?*6SHQW)pjmzmd&dt9r)t8%owlY8~
zG+d)&I>xfMrL)#OW@w~DAA+88DO%<`{qV_d%bkrk8Wlm0(BrTir{9%xRKNc~Ry;ev
z$5eYC&)64g$(Ga+n~JtO#dn!Fy=n^K^=vy|s+k^8L`CIh%g)*<ea2XP%bk@Mobds7
z+6DIfs7N@Y+i!f@7Cd+>#CfwjRXmcxvtWMg&Vt275O+_ff5bnIunRnvwO~}yBZq;G
z(Stu!*`wi>8_j<;+TN^pbAB-WBLqiZEM{mQ(>?Z*4BFpfXZ6?Kmyw{+{rh9_r)=i^
znQpWn8BIAxe4YG;)(dm<|I=g5zS+2to3V^kDw4<Ln#WNY+&ovAsDHoc*|*HSG~HO#
zA>G>>q_w-OJlb4Vkskk%qGc0cjkq4xF}=LB(0Js?OB2!rmtZqkFgGG5&W_9#u0rn2
zAZi4uBfftDe=;9NkP|F*yiD4YES1T)-h33;Z+UAJ5+^iaZ=_9l$Hao)F@}K$bUxZu
z*-U5OGSt*`0e}UMT)h53vY*=VbTPy99lThO6rn2e{jqNy-v^;m)CA1xiBFYS+@Rkc
zUQSACs=pFmeznoOy+-7TT%U_qua22`z%c`BdLlpI_n5dt0KA{j?(Xz-n@N0?lvQw)
zp*0BsI>*wO?N)(#%qiMR^fE|H)Pkftok;Q*LH%>s|3M`B(MBD4q&xBu|9PmoVCTF9
z*a0aEa9y-_pM-gWh%88qI85Jdf=ug+JiUEcru-j#!Pdx0RTt9+`&|tdGRWGxnID-c
z)p6ACzaL*bk3mhoaEJEvnX*c7tEih}2RXXtkX7WNBr-OGqrO(T$G*<~`g+myjR9Kb
zCWJQ|o{E|IR8gqE<>_5SdD@8kj<eoV%(xsMP_tdrmY^`*66}6V21(k;|Dyq?oRu(+
zF|RW{B&&j=a@qCmI?oCliG!c`OqeHF_u$vph85iTfW=89VhKC|b-OL**g7t_$`LWS
zDl1-)pPvBG7x0EyHjha&T{3S=A_F$lp771GB*q>=b|17D6PVs(68TY_s^G_yb9f2s
zgPvLaT4nLFyVmcMRZFmQ4p7IZQ|HBY+}y)zdgM`wXO(da8nuz`+tXny3WQqBAuG6Z
zh6GoFgbl7Zg71^*l~>M6l{lpp=$p$&Mzkc+-<#qQ12!a1FG*%v`OnsWe9LT{A7@by
zX3qHMeRS?EFcX-1at=w@6YuZnF;_IGk0Hr^%p9&YlBG?~!84c0gy9cM!GUslmHxjD
z`#S-w^<RH)q7#Bgf&K(|-}6pjE4nJS9zb@yx!^tnHL4sWla-qLhIW*nr$bvuLj&%9
zBYo!JkT$g}7_t+njtM!IGD^Xju?EI&ZUrAR4uDe!Qbv%89dr~KjIz_`xT3i0N#_kU
zEs_hFe6(qE)m(HNRTZssfKh778pbD9Bbc7H64of}bs&}~NyZbD5h3TH`oD&_ZNdOE
z&O|OVNqo<I{`f+0S1^S|qYBX^YbCoEj#c;AcMRk)0#@xB_#GZ**}U!ylSrJ%MNQ@i
z9f3)>SjL}-J$ZGMs(o8di$B415)z}i%v<o)BVF)qGJy_=5HLySb2XbM)a`Mq5!?hn
zvem%^%4W+vfkGuj>jm*N|2|{lTAnFO>|wgBin~=rn<<kK7uGJ3FISN%OooOsBiWZL
z_LLE6+RaAm*a@UdecO-%y@rOhw0Z-d{HyP|OwyAh+y}mH{gy4w#Tx_$I)2u+B=eW~
zG)x}o5}U~b@aD?;>#O~^rN2D*cshV&8is(n$q??^YgkkFM1kv+OcsziFWD6p6!(qj
zO3-Tm{LEx2DZR+imswSng`0?>9jE?yWrcl@gMGqho_roRSKK~=?}2yO2Zh0Gh+bq^
z^*UuAA$c|=f=*F2m#Od|trh*Z%&l^a!#(hH^;u0Dnhmc5K;++-HImIK6UnyLjcF;_
zk@~W-hfo@h<wKu(mdhsbZ~M6{x#j4pXTudcKIaHiU6MH!&0!6UeXea4KUiQ5xK?W*
z$;|9|?;U)smQog4@Z!E6MWOBa%NVsK<$d~Dvg?Ia$>4SkG&5b**PeSjh4*m=Sm^vt
zPKD0hKZjM6CF}c>Z6vWdBL+|Wq114Kp+&(bP7ElQdG*R{5jMj9!Bqkpg_O@iCzEC5
zEj;tVQnDDrzzuh;Aj$-?>~z|EaDTMbE~3Nl@TKJZ$|R8!T+tdfpRLOfQh#T*lo1_$
z5gn=o8;X8gFxu;7HVy&=>dET!M{oTg05chevd+XrD1T1|XHWIW04~dADUI0_ow1t7
z<2(t+q<%F((r-CzR1r6pSLlB()wf}doKtlRL*MSHvJtZ8*#dlQo;C0%2PZ)`PVnL+
zf&FkU4NdPxf+)d#PhMWT4R{JQDr4jvBzo6~-{}>H?aU(b-=GJ6fb`cb&2HVKSmO9r
zPg0({m}%*v9`$|}w$FAl_OUNg_>;%M3==VmSObNk-(BWwXdnqS*^}*!&im?mohr>*
zc)3gO)`}Qo8EFSEvAv8wNrbm#gXORtBA`Yt<J^3hiqZ=?`Ic;(g>rpbwcE5^`tmnZ
z6F+ZINRNtQJAGfNYeBPUMB_NI=d1*Y<Zi!vK@KGl!~i-T+Yib%u&uH*rgi~ZGqZ4X
zd6Krt3^v@hd6?Iftwk9J)daTTog^|fsj1AKnR1`aXWl@DnrLnL9@K71>tJ#5uz)lS
zs8wxlxnO)Zb~WBERu)U<O>%Uj$E3;l$=tu1jP+izVg<|=V^o|@1ejLY&xcR5pY3O|
zZ~U0E-Cib+2z($%t%Q1565+fxRKk*6-yXvW;u`Ka$Z3{?0!G@J!K}_iWri4B4IQ21
zK4+?gK#J@d#4ce%5KuxUawFc}lxTa474i1INcr@}jT^l`kVS`pH1%S_lvY}uAD8Rw
z+s=c)j}J~g<?cL~{dXx&!h2V?i;IUOprEY#`&Kb;itNsOX*HQ}gqrslL&KSNcE*^9
zfHXjqGx>`t70G7SN~?l_oqY>75fS@&kkK2w)noyrC%@pRQuO)fz!<YCkF`q+pV;r6
z=icxJ>H}Wpyrp4SGq(Sjst`-WuFyK^Sq;aGCu;Hd?3nXg?bb85RV^%72*MrpYV`Pf
z7yDMNQ$z%CTFnZ`CD+fXn#h>%2?V@bHc89OT!&JO2}sQFgwH#}P`LZ&*dt{OJ0n~9
z?l{q#V>6+!)5~cSyR+nC`*jI$-S8t!a9qRbn`l4$>q>jIC4xvdiQt-d28?mF8UF^5
z%Z~{=8j`FXvsFI*jBI7Bu(rkcN7GRS$)mf*zqq*AMbC!DloIF~#tHBA%_e-S+e8d4
z|1`6P$sVoVMy?@5nH@9L_I^oMO^!+>K%g$WftA+!Y%^lFerDIZM5s9ihQ(bcPF6z%
z<j}3P%6kmW;e<*_{${Vr-O-<LA!4iJ*6(Z7&kQu)<zxCptHfaq^){aCTlu3?NyySK
z#*F>8&|cg2(N-zFMKkqSxJisEsMVy>2|4Uw@!N0eW#roa=9g-veVBxOTf^hXR!&fH
zz40kk>Jq@3d3g9WPz2?a-1s#1>lf~NBu6UvNLcv1ukYO8>Vj*()lOvCQ|U~ZE11lD
z3$2fOLiVQjLCW3v1qDh&Od-J!cyl;AoJw9Ytr25fDtDjqk=LXI{_w~*`GNLm4{5}I
zE`P3l{I2P~G*1G6U?f|5(SL);)t!dVw=xE;p89~EcVZmXUYsf&yC=Tw*E<bwEd`SB
zVwQbtnDXG6^kD>1e@uGdOwsgCMyE=v;5O_>X~9lHrgFm)_!a)rTh;wc#j63(8HD|M
z$xdvb{0K~Ht%8qVuW#^dH%o6Y@W++t%Y9|R4k6+o19WCasAFlLi4>`s9J%;apC{hl
zR2BLX?=_QQ<!f8?(h$^2>LOBGxU@qgZJ98r0yLZTsNRoX)N*rVl?TC*j2{15vI&43
zkL^1aF^fDwqSu*v6dg`b_6#AYw|$!qlT{!rbmC^ah~P4Jx6t8cWdg3mY<qVL;&}A_
za>{qjio-nGu+aYA-V~Wn0Pbj293U!G?z{u<I6uN5I+@r<iar1eou4v|N)zEPt-#8C
zrp)M9-q8DTpIN%y?kKuh2WZE5;?DYaeSJW-7Y8@s4SC)hrzYl~4<Q|Qg85S$-UtU9
z58QOI{?}zN`G9GvWs#_w?l=02(F)(XjA>@ZjGcluNpUKYk;rxQ3O{fDUFYNF`p0FW
znQaExUgWj!kBcen9UAfDJ2NL~=<Rvwq11b*<cu!Y6%f`Xh&BvWtK(q+g5!ypW)gE3
zZ~Rtbx;2(0{#Og#A0JT4GeW(XX^CaaSz0>Ah3vmMiFv`mEr`}o_pdlt`1N5F0w7%U
zirDePem5gJvVk0ZX)(`@{$tk09rPT;<;S63&?V^Jg3mZsvw@Yc^R4OJLA9;_{&0bt
z!mW}x;z&IGKOyK4-7RE%Y+?Rl{C}6zOKyJLKBUq!C{dxNmv8;Jnn#Wtk>ur)jO$qk
zxNv}92cpPdObZ;!RYfjAQ|TMry0g91xbD8FL=}|9ChM&~9$hn{`dq?|u^FUkKJ1-M
zPaRe_Xq|EZc5JCj&<8p?E+1&9oBxkXP^H7R*T=OD-TLE#WF9<zf7`UQph3s4qy-(%
z_ipbmIQ~pZN(;%#!#;4oDH~^g-E&Ix%6xZG&mUh&`*nkRi(1Wr)ga+S`*(_BIef!;
zp8?GI3$elZPaWKc@ZBByPk<|bFD=JSM^t8Sw}t~R7)4zEVU=S4ZqT~b?b|t@opzv0
zkU%DW+4Z?#_hI{*HE(VVFe&+?{)vVBx5RP)w*KBP_J&WVyt?V1N)$VsA+WoB%=i9y
zrk^2N<c#;&yEGD9!TGvT^Nvp|>v3e`OC<3T3WFFd+`XO@b^m3c%#nA*FaGGJOdPfB
z>-G{B(kd;Jdq3`TSFDjR9a0L>-y0wHAdWr;NnzFJU+Hz7m~sHKjfK)5#oy0NBeibB
z-m%-0U+Ko|8}fpxbJ%<YZq|rMV^R7Cg~c(&Hxb5ZpMRA<==BPae3_~wYAJ;h^+`=l
z23cN8i`22>&8=gDwgb3|5=x*^NM-06ZBE*F_U!|C$@0*|sjUd&4>iLwG39b)u2dpu
zqE3*ykFM^gXyucdY!bjp>IhK3^+Q@C_e+WU_?6Qf!+CF};WK5>v@-+G6XkeIZdFmb
z^YdDI29qOCK5s=J=_6<}0K$oIXiB5DeqBJXXRG_SGG9+Fm4xx!{-lNeV}g#<1<F0|
z^=ty{$zaN}O$TNJRtXPgRStq=A2l^KB^<4zU%9KZmf8OQ3nipN|Lt@AyHCr}6Kvo5
zkB%yP2P`u*+pzo9{sA6_g~f3d7oB3Fw0E~?zADsvfn~Ux%8kaIT3yIWpK>STReP0k
zm8<4`H{CAMihb|#cwym()rYp+uT!}7-4n~b+0WvpEz!3s{J89Nn{t~?Pw%ExF3yNf
z-y*6n%ieA)ozXvjyk=@tjUE*NYre6pzWm_-F7khUO|C!RH0(PU;LB_H-<wkWZ}%$x
zcNqV#AI3^^`M(4BzXPcF-vLzo?*J<PXA1sj3jV(^1s9Kk-Ap30-<_Ow5frShUS(2-
zZ|Uc)49Q>36d4?#BSW&!Tsk>>ydI#7@RAyAKhJ5<%X-0j8M>}AvX{zjI|=T+2A4zp
zY9lpX8LU*RfqDzDEzQ>>fNtI=(*M{-00L=;fQP>uS-Hy347JW*eqTn4y<H5cuH<Zu
zhN^#VJG8d-ASD~L_%0Y{IJM<!oxlIuu1<{vh&9-;anmLvDoJklr^M`g%MiLHQa+>t
z(dEH6=oG%GsxrN}7((@F)}iBnJ4RUL1m6L<l!lBt15_$+hGkgwWf^AA%?`8o{Q>Jv
zHwqPOaZyaPgIToE_w2>1sKb~0&*ld11S|1J<>d@q8!PXypXTfS7E^ynX2RzwZzjCf
zs{8-(6$itw)lewgeT>LE!Mdmu)Z9V3UDip8_pmp;%j~z?13m2j7#kD*eKihuycGdr
z((QF4zS=~DYP(Axi;9ZCoFvW3Fq>Zm?c7e)wHQ?T_9CWmNhMB8?<gSa<j^Us8417K
zaQ128yEOo^DIRQ_vQea7zOQ@MTgRK*%`?$CZ|m`TJfz9?pP+<D>D30gK}v-x;N9!k
zW#QrB-n3CPUu>?(>PGo%jpf37{SesN^3jQEcQE|R>wvPtHm6mv`Qp)v2U8uMI7U=?
zraca3>x+bM2ra`OXe`mUM|=w*bJ6b+cFm@m!Ee$$)d1$~fM>^U=C19N>Mbo!i#sT0
z)L@fIhn=HY>j8hxkS;8XJ7ICUutK(+?oN{@3@P)=Kd_!>tRC9%r6rt*Hfe)PM^A%4
zO9fq>i%2zxNj!0k(b5n_Md2hEOB)PmAv9Uv$LRc?0)rb5`uDg*;Z<h6y=Y7P-LNUG
z9mZE8-U`Kx-y<wyn`U%Hkj<9@mYtdztvDZpcHW+!rkD3%WkY{Tts=i<BV-nCQVCh`
z67N?xt6}g7>_SVBWU0{uS|tLzTZ8WkGXY)tf`!ZC!L9{QN)|+!HmgSa6b98~4`hek
z0k!xSMDzGOv!MTc`A#09#&>i?H1r=9uHc=g!t3)3Iwie_HPG!aXx!G`9Vs48KKqT<
z9^+xOs?CgH4Ab$JTEg^21)H4iRb&8`OL<0`WTe0-WOF@w3F?lmqgWNq=@+(xKxNQX
z)-sZ3C>7ez-gGStF7%+yc%Agk30VMvxarcXBOQ&*?;O9p6BPQ1P;^30of@nWe<$n?
zAls>XIn90m3Sy2OwB7)-)=YYvN;1!UdZU(elU}0%bV@+AO$B5cU|n}?ZAJFq(q+YR
zH}@>RY?VvN*^lan!z&L+jK0!;2BliMAG6P!RX_Vy+jhHsQ77f0jSm_VQE45@j}QB`
z?I&0oJ&;UNH&%B}7{1(|O)uns>4!j6&>4=!Am_{4$A31j_CT$e|A!WOa@oBX%bLr}
zXPmpTFOO&bGxY=Xx?r#<!Q^Cqm27K+CSYTGp+w()+T-}XM=Q0zeYrxRI`p^x`?|yO
zfi>-~{Do<;y$k1}iMCb<NK!<FRGD=nq?&;ra|4bES%p@MCM9oj-b)j(K#Nj>9}hlS
zeaz2_>~#_I%*Naf6*G5s;n8mdz;>Tw9(PK|-X<#hNClIF!hhu#^M!N*qOv&=c5_z<
zpxqHa7(5VKQy$E@bwVRbxqNwke1A~ZvfF9Pnn{5k3Prp@6PC1nPPVz@4@Y8`Nz9~B
zmhr9>U-JG|o97M4y0qWf27`oln#V}UwMelfO9gb#@akUA#&Xl5vn~BEe*IUWjHx?z
z;FHi3badKqa%ygCq_B?%C#GlfYO1tUBb?yymVfzv;+GyOuY8j*H6vn1guX|sLdl|r
z0`8XjMtTwM13C*+2$qk-n(+!RZ_OS()`5?979^ADAR|*VrR$WE_bjT_r+QwfcGj((
z)qgzOKlT<Nk`oGREc^T+$C!RL8Nzuxni5JfcCabH<)KvL8VU<(SCA5mnpk(NX7T&o
ztJ|~^%FfCL1H-*;{&rQ0Fp2Q6H_t!F3$gIOf(o`8m5$U@f&Zn#d#F$K^bok;(pf}1
z5=(T2&RA*MEPg7-OUQbIkds^%a>n>LRWV<4h_BWdUJZ+^u^^k;g|)A$FUnsZ1r4%O
zjveN{7d*FO*xAJ|elqYYIaj-F!mq2<1A_LB-rAVbMz;rsm8+N?Z=W3+#|b|nRR}8T
zy33280;v-@G-g!e1ZAhAvZsUom%xJ&Xe;^J`0I9>zWB+W6<2FzucUA#q^9|wTC)8&
z=?md3FbyrvBdzw<eD&nRJaM#H*QD4LsNaMMvrb2!&%e}h%glGYWxsLyAN!_l_~rvm
zHkkh&Dp0rBqPvR<gRJysuWp?S`0FFx^I{}gudAtuUwxs$pl<hJ3QC`$n<G*Y<EKw=
zBW$f|omV~^N58vhtgdQPBYf6ZClXZqOE44us!*riwNax+1!IX91vSiy5l11Ivu&aD
zn9?4#X#ui7CF@G|>VNDq=pD`L{#e3OSAVWtF@vic-i>gjO-IT{W!X8OHe2q;0>HcI
z6nXmXou&E>6c<DILsx0xH~}^1=v?U#l`6I{H>JU`+TNAVk_q1CFMCkeWWM8bi7l3o
zX-PXsF#xuTid2%A_-Te>#*tAwKjv>3mz&b{(3Mo79trIvy;rBoyHWHTF};1dbX3c2
zN~P}TTxmr@3LsG^d}+qj6zMaG1=mX5?>RdOaX&Y=k3@y*=w0f{ex7*t$&3%qp#8}d
zkL&2wGP&A+;r0mah_hiL0YI0;(Nbv>fqFfE(~u=F?Bv$l=lY&$A~jKYDcbYDzry+X
z+NPFpVFD=}MzI-+r$~|BPv^cjEm-+adnwK~bAe=^EWJ$9KI-O32y&f{sp?~E_RIcb
zb?eQE?V2`i>I^BXsk_FE-$&e&0PCeA=Ihh|3Q|W);k@R;Z26FpR`IZ*r#DfBZQ=HL
zab1`cW#QQ8$2;k0%CkBKa`eT~7EgiiCH6=9ua^$4uF&)%8WRzLU{>pPG~9qhYEY&p
zcJHb+h$2V`ukCg@)FAKAP)ny4m(wDXW1Ut#J|J#PdNYd$C#4abaS5s_Ru!L?Q2~+=
zIsVeSR79<$o1hrA%cm!vgl&&_9avO$bfx~fZ!gVZ>Z`{4m}jdk73Jb-Y+hmc7vmGk
zPv|L341`A~%usgzHp`P0uP*07CeVIhZZe;_i=CxXqoP9On|k~3zvJL``$~UID&@K?
zN`N-fn~Y{(7FIA1vW3#I;Flr_Zl6txP~Q43Eot0`#&<bYVlf)}mTY)I4ScTfPc<~?
z<=D#zE<>8z9bcW6P=WoJ2nR>(r|~Uje#jk&|Eqv;?9bwLyc$b~ycDQt0M=h4u?K--
zb6UKF>YdQgv+RN#ccEHI0EizL6{quUHKr!L^Ea2GAJm(xsS<lofgi|B>5m>x^%V{s
z8|b~h=KktZXPecn<I6%WaAjp95F6-B%^mgZchJM36z>SadCNGhDbsiMTJ$Pk!d|H;
zm0anQCZ#`7OC`o@$pq9j;tl4}(ZmKd5;8c)U`u9U4YllB{nLpu=Di-miHsO1AxQHx
zWkzoCFgSDfY?+?2C{2o8L_wEQaZJ8K^;5ey7i%CE2&b?P8ii2&wyZk1)AQ3J=|-2v
z9uDBNK-vRENZ>`_3$bW58VqQMf?;cEi6?ZbT_RE)m@9b)5(6KKe{Wx}MbCDKPB$X@
zyL-j6$+s0V-}|EJKEy1CDEHYZ2n5MgNQK>!v!thD##0w6q)9MUj+Szyb1C4igYtI3
z%j~zS3#5mQHxKE7`<JGWN6+r}IQ4R9Ak7{^atnNlp`R%I_`3QIvsf~rZw!EOYQv^n
zw7pu^u|rN~9<YmD;)NMYw$!2JVD~?zQ3y^i%PS;Sb8~Y;Lz%D_Ob^TLCBkjjTl_lf
zaT`%mQHSX)y+4K1oH+mLuD8ZtXYxtlQ<Q+$!oosK_n}Ven}jCggl_6$odK^wUZvci
zgzFARE4FCS^HjFKve-#%ey4bZEA?S#3h0UK<MtY~xM=Rc1W9^w|L+=#nC{$wx3Dav
zOs=zx2=e{k&KHjoT!@sw(Nd`}6B^`vh?gL5Cv3dQfsIu}fh0*%Bg7F(Xg2Li^GPe#
z(gD+G_o5{X)zr7ccP(D(vAqcTv`hRD7+uBD+7Sj8A_P$a<JY#3_Abr3<4-~fGzvah
zeB}4Rs8Q(ZAAkTQ3=erzZ1+|ek#}e2M#gqxFEwG>o&WLsi@QqapWF`hV!NH&2fEr%
z!|iSloP)>HwVI1B78yFkZ8jkEIO<ecuCEYLC2t!yr2I?gE~gH=SWsy7J*iz3J$b!7
zM^ofa?Ao7)P27ZSw@9s?B5R-?)Hdgel4QF=@z~B!4<2teuU+`=$WyOU#I_tQ{rh^+
zqqygBPhCFM)1PtH%l+~0)xorU-Hw*(D~WhBkq!}_V&Q3IA<FLeQRK|K;243v<i+wk
zG$9<#BtNupP3f{XfiNR5s4eZq((Nfg!AUocNq$BA=RLv?t!s{DQ=@rymhjqe*)I1p
z$%G`ZyGs&qJ6h67Sjva5>oG}D{Y!%+XDx}?Vg9FOQM=hUkJ$^{dRN)Qe_8eWc7CR&
z%rc4~QJb2olRTXv0@9TF$WfD%V}Xxg$kI$i398+Wrd+O#m!EKU->yfuiAUyJN7G=L
zpU`2Syd}vq-I)35are&)^>fNTN!x?cU9uL|a6`6#T)N9XK7Nd=8HuFnJ?wE*&aw}-
zg)~w3UGh<;uL$$YZ%C=|?V)k(4602REve%BjKXO!5QOwwT=B;5nu?0BrQXKj*rT{5
zizk_fNl_*~@%Z*Y4wEmfFXFtp#Ot1hTtoRg{#1jS3Ws~BiP*p{m1aS2C0`V4xBo1L
z;3g_Mfd^-an27m=3G*^e!@h5c$GaMvxls2>=muegq^6G3dvj}+e%tW4`ZeB+i85+B
z!h*uNJ6u+sxaklu-1FBP2gC4G^KiWI4p!>9>!hqNmX75aTw>1XOIs_ZEb!gZ@`c{s
zJw6R;|LumeWAaBJ7Z=a86d&)hT(vYwzSxwD+OiGfTEnS!PHZ}HW}$dNh?=Hn*X(+<
z4{t6?KerdbxhcV_Ic1!_kN+-yBV_%8f&z>8cROyG7I2#R2m)-_9Np2-{N8a#We7Tr
zf7d;8$k<TG;|*XbjEVO|2k`dOCSwQePD#^+vwSoYM&e|#rn**6n3}imAy4?xye2HU
zh^3z2Za${_NY^K1d>nR_+vPMFdb0)v9_*j&Ys^lQE&6s$0Y-Z*zLB{Y;geH2Wy%&(
zCgrNAIG0}4Nru_Bp<<==eb3Jyi{A(VxggC$Z`xK4dBtO6{ZWhi{}ajjY+rkclq-H6
zUT2`)u%f@!Zt5IEzB#b%XzA_*hl#k+2Wu#l#Ow$0sM-Y{T1YA@I;uje_V&gX>9ip?
z5YeJsB1wO`se1_nHPq@m>3h|N*Fn#O3=R7SVLo`<E-?eEDYAFUd8)5-w~=6ihK7QY
zNOObe64f2t@>VxA{nM<YiCub1M>el#Ok6T;`A0JaY22j$?#;V-?rnFy2j5F13l#L@
zYGgX`gLFfluV2$aM`n=BZ$sdV{F%ei=WpI<?-QhnprPAXww|;Yyxl=trIu*RuuoRc
z6sslDLL&S0s^K?^mSV=`+q)y20_j|re!bh}K3yZdh0vTlT5-02C~hbUvpus==+xQU
ze#$on?2(**&^z!(WCqqRSO?F<?hp*%{S~o96drjVUPXP#R09qAX-LOyFD5iqAM=yL
zxcE<>^>dQ9=)asdjN|JsGAXuOESmw9<ve~Wt^cy*DJdzrLXVj^eNjiJ(r-KGA1jOL
z!x&+lRxDlCAt>Re_iltPR{6Px%Nk+v=f<Qv1G8+8E>J0R`}pBAG><{2l0JOSE9*LS
zgtgOe4l7LiO`WnN+HLM3laL9|EJA+nw?8<?{+Wf(1arR|J132gk9gZ@R&myfD>-eu
zztid5d+ei;x#cIiXS$wwF+ZnI&o_@Nxd1yqc#KUQ>Hl=#q0${9-#jvaXZ@AVqz&&L
zM>)H>^$!ca7dt<>xD*5TF=?P8V8ZO#;Y<%{T;NDV$ULkd`ZvR7KCg2&y93E)r)bnK
zL2a5HisoWX3qIjA=fY$o!VXxsZXM%9576{bgl(?Vu%V9sAlIUev<VE;2E=PU$ZhS!
zs$BwJp*9mn$O^q@Bl#^xP%{M(F`yrCoN069<b}FA(Bu8F4s!rOi>~dypw@O??M9y9
z1?C9iy=Hfh3;=>sW0c^{;?kotF9m~X{vLpkx&7Nk>(^Zk=;(X9u)6n7u-PZ5dJO0F
z&ix217!c~^r5F=9U_8C6$IO=~?pGiG@w8C!1M;V!m>9wQ1I%aVC+S<}ION1z>VJH_
zf!U|pBY7r4xk&G|3y5DwzW?^Zm48TB=ju>fWdE?l!-G1HYa?CdBkv%3Ho}t88+{oc
z7!tpzGz_O=bI#xE*rl5{&HDH69}tR8BC{Ij%-X5u>~otIpesYt_=I*h3tKDqe-dM3
zPpkd#XV0HU61GN=$0x;O*yBs?{N$Ce5#^<VOB<5I8@3*}(IGQ+ef!n46ER`U?GjP}
zS)Um(0CKE-`#<jX-_9BT6cNVy?VEjL|E1ZZjVKhX@8@{O9G&#|@ja%-Tv>5XF~<zu
z(Oa?e?LufOj3Ga;&4}d=`o}QpBa%3HyX$?jM89Vw^ZStAo8?xw-H@=cLH4iW=x>UX
zhelPmeP|n1)ldd5OpP#7IIW?_uSGWFsmu)w4350JcHGHo!=-(l#|DmgTgk-xx~#o?
z`-L)vyOvEhLoV}&mGIXpZ=PjmW`Us{OWmpObZ(y4G1(d}fByMThnlr&+2<y#nH7}D
z+zx)B<r~B~ZS?GrNf_w<a@Tl4RQ&H%_x2^flSqEJC2a@&9I{LT%u&3<B3?b=$Od`!
z=FOP5ZK|Ep12&uI04`?*M0IRL+sQ{}_KGRb6*<E1pAn04RZShU4)10X*oI@jqD8lu
z$?O+9{M5X}gE#Y#DF@tZi#LbPe6r72#2XWm+S<jyX4`N8$C70}F~WPR#%JHT6M?>2
z$>SDYVwLtV)#CR6X6KBlzCWNZ1J88_4N`kUMy%SV&5i?l)!mnvBSwJ}?q7sCn@fN>
z>+}6`;DL~e&u0mSFs@yWW(-*J_5efG=iCC)>hrYfog2Jb(<^jwNv_d`hAVjKeJ`nz
zQSaM=U1V0koLhgHFAwbnWEFej#0b;C>h=VACIsGoi*beT3F=*+-_^BYi|?3CUr_}3
zMd}W{x$1+M@YS@7X@~XCt9f077#PY)Z4r&ED3095WprwwZa?dUpF=*q@cg_VaI*8%
zb&C5#(2+3X0sP`XS0biFM=-kKH3Q=|*z6p<D43@HIsBs*_??z{_%3}ANWXpn$l9pj
zpQg=f$|?6KaMo~U=WMWn<#&vkX3(oez9S%1UDu^iRW_TKs%FwZ_6alA96WeXCLre5
zucq+2rJcKFN^$n_ad4BPXXqH*kpop9O`O!if{W{iF|>5Q%AcD;0inYo<fmX%Ms3vG
z&G>?Sxc#{Kh5pW0fc?UVQ#+1&p$P8p{&Gh9ZqJ#K0)#w#(OvShf}$e(TjV{r2>1i`
z7%QB3v{$o<d$mk<c}0neF(!3$Z@bh3#CAofe=yhac7ASdF!`&@QMgHum$l^*Ob;W#
zOqhz8|M;;cazq%StL|2>$S9wX-~@DFDzD?+6XW4(jz03?dnO?J)w}J{VG*DJyBRs~
z^|22U&;!E;bU;JRNLTL{gY)&(2bk!(<a?Jc;_YN|;>{Uuu;F9FwnJ`Fnev-s8?dpv
z<v<Em0`UeMJm|P$Nv%fxoSd8h6)uO9+J`Z<+-T8(kdP4Cz8r2bF7G-t)D5S2<U<5k
znDAjmcVkP{UexBLhVXK`v}@Ncr4(?fH0cx1-s-cJyLR8c=FA$%ka_2DZlCbYNsjFD
zOd@oY`}Y{e8Gk>3{K+d}X46lL&42Get<8)PtE#P9X^q_0$If2><pWpc1@9yJd=F~V
z;dGsYi<c~!dZK;1g7+ZduE?H_G!+ZSV1c7)oc{gHNOU^#f_8%p+<Wt<vB<^0Vo)2`
zDqtEXGehLS;idK?;vYfS6u~WaYNA%HLp)nB_T<T@^yvqLQZVB==Z~Td;8-CZVLy`?
zl5+kZ*4{j>=Y0MD&)^t_G4_40>`N3`vWqu`Qk11oqOwI<LK%#0ioCN_%2u?JRzw<G
zDNEWFWhqk0S|Z|mznYoP8O{0q_j9{_KF4wD^?tpd%e6eN$Mv{oQ$M4$Gt%segUX6S
zpdi*<9^G7KqVde+m+z~-e2KKW(-xhUs-shnjyz2?)062fVm5HG2l|_jG(J7s7{@aU
zaoZE~3c*<@w49?-dlHiT3xw)o?DDr`c)5_PdQ$vF2y_PKF9RT~PVQoroiFg#y-dUX
z447tZLSs_I{O^`B&^)qB2H1W8`GM{xMntygF}-tkTl_-cA>2NS5WN+l>X+-*sdE!4
z-mCL!?bJ6h@xV&;&Hc}tnV-l;%BcUfl{NufMxjYE(_i;8re{GqEx4(Kk8Y|uj1+46
zzN+@?2`Z{uWB*YxQBm2|KWEw|Z0VKz{brqMUyIVw{Ajkk?E|J_XOSZHx!*`-b(03Q
zlv(J9h)wkEhgHCtSY}?}xXvPhc9ohm|6+8a;zyM*#qEm5ms<VZ{!o2pHm7$_n&!lL
zw+5}$?Vzy)qxZ{UsKUXF@zAZ}h|E4qcbDNQZgvqx4P70^g%Lt}Zu&|dKxbEXMT16-
zGC0P~V!vBDp59sAV7n1s_Y_UUZ5&9Al&8fZ3}%d2cD2W<JG_=k=Vuqzy*+`{g>5<-
zL<V3j`H?c_lv&K3eA(oP#8y+kdt)A~=$qtL%q`F_ZmKp}b;=+<s<a2Y7}nuaERoWR
zi+I-FH1aDgZEb_O(>H8=C}i~l3e~0C=oh}N+T{OYlGW>=GJ5I4MuApI`xRXGNzvP>
z&gcAsKj1#-tbcbM$FJhH>SgZ5Sz`PQDo_uhX>xDYY|lZ9Gl}h7EBSxYDZXXH-wg+U
zK2}BLc9TVuq!m7X4Jn`UH0rZ%YsMeB-tldfylOD|&@wtU0Dlr7S}IHK;2#4f?dz(m
zgYVGURH-?}_Wz*Wzn=NLvy}6d<9VRvvZ}aqZMRXOcOw-$$w6o<Jp%_QcGNj-y?C)d
zU%yQ`;kus9-!Jsne|8QW-^MW3`P=0%9}+f8TR<hh4vb(-^3d=#n7Gk-UsFa2P9{#u
zzzp@tZJ_eFFG}e@xwapg8j$<&VLGx$<4rG8N)9rMjWI|@f*B>(Y5SvUY}V!%d<=1N
zU|1=dX-n^5o+8zre%`tBb^ks^;376mdchg`a$s%A5jn3HPCocS<x<_tRUhWei*?Kh
zpmx)>UcDXT=SUlDwRx7nhKO=k^xzub>6ZgN#sx9$Od}c*cK7PFjvl|UQ<Jw<zo}jN
z*&hsRHt6w8?x<=J+7^|xgIT2Hsi;^#B1W%{M$Z_Y+)ZDlPe7I^TBS2u&zC_y7rxSH
zIzIOQaJRoc_7{T?ccc374mN+>{c+?~Lw6(JpZq5q(gdqHpLvY7S$Dg})>6sqh*{VA
zbagw#0kuR2{6HVvlEQG^y7T1z-l|zOR!l{8(AXfF!xJ;<t(r8a>*c+ZUbzJgePTpA
zEyA&LFeFnmdFd60sHNF}&*@g-?*b{uDOUAmj2S-bUI4|(K#HrXiBUC{XfrFs2&MRF
zoK?6MmMrz)&et-)UHQz5sCp)inm_vgpknAk&u-gq$!k`wyhj1V-7l-1#=>o@p5L}k
z2SlC0Bt50se_`1_KVyYI&*raz`qx($<G-t)vyBsEO+=%c%aAK1Fw}~)*c&aeRwLKG
z@&@nNp&F}R<0bQ^x+v=AjU{Fw<~%}>t%mj)=6MR&E!uugPf5wXR8?`(yZyF(doNo3
zlc*cIpIXorSBVh5#2|#)M#o0iI!UT&5Za`5>mJU|&K#UxtPDSV5ynZ=OUpS4JjVgO
zA>z6oc;{8CR!!cv$31}$5{oLik@^**B4h0+j2My;+Ne2?4rg>|8nCC!Fv`VkbsX)(
z=U${wgp@Cp2uD@%&ph$M$eQ2n=bl{`L|Lb))4JQH9Bk1a;9%nV5Hwim6|@XbMhPA`
z#xpys<l%(~lF+^iNx#sUvwRp0FGAmQ;Eezr;b~lfSL_-i6c~f>!jqM3PN1kItos65
zXwT>`-!lfj+lif96qYQ{yJU*_(-5l}%uqQyv+g3E-HQp3N+Y6vkr7YIN9w)|aB}>`
zJw$`vK0eQ0zU+gCZh@R4V_c?#MK5Al-m#9&Y%0r&D&xL=j$5+gTy*q7q8m!C1>|Dv
zIuWalU4z}9K7S5oP3jj%5Epup`eY}V6ABR~rNRd(BQo!;t$n}X15%5mnIjEx`~r|H
zy6utjGK!4|Bm!txjw3pN7+gg1A&DK6va)6=@j3nkT*Q&ci1}{H^9-ixD{Omh@$&pm
z2`(#>9;M(v{uu54;B-ic#I6UJ+RhwsLwt}CG76FlC5W~?ypy9%({1gk(D@O7sup`O
z!#ACGTaixtXD<x8cP0#!X!1Op^t`-0CV1wyOTa1_3#h)P0}|#ut0zJRN$%bEQtsBt
zpsdI`{XSz9gV}QM_Ns{~DF!51d(%FpFl0G}VwEoyb8AA^oH*w=u!jX-oHq952=_wz
zjN^WW=F|Az_nEmHM3!z1949}QxQwUH;Bty(VKZ*N)H<rOfg>>3njno*i5sn-R_}&i
z$;p{bJj-0iJE9TDo#}mdQ}=pT164Nfm(hqa8^VB!`pE3DC&;wDG%U8$#oSrZ;Kv{D
z!G$3?b+P=PN7m1gAv;xc8S7Rt%WKJAyrN%Xn9}~~_4-IUsU~$cGLo<h(dJ31?XDc4
zE!-BWk#6Tww1?_92<%9FMg2*mc;~P81DN?e9SlE>;NNA_<;$1bGWB>Mj@jSV9D`pF
zCSt|jclS=d{>D`A_(^iAOK(>X+z}fa3kKnjH3-B}s{a~SunH%jUGeJq^HaF@AV4;&
z4xL)JZXKG?{axGV%(Dz*>_ItDW)bHirDMggNTwL7yCPkP-XAGbtfhrTvl1<`r6sGJ
zZ<qEx!L;0Vw%3~*IlXy2W=p5xix(HRUO^5P%W1dRcFVVE$Bt*Xc!>!K6Gx65*>;eX
z3wNX(Fd^TA&sIC1_2PP=#-2N%0eVaaFu(1<+PG^m>)v<7E5I^4r=_%OGi0Fm9q*xO
zFYi4ehjA&nUcPpT9yw_sS0~=_AqaxQ=MT&Hk7-1(=|D~CKr|7d`Gtl4tgq)ryD>6^
zAPt`!x$?<aY)Bxnsm7VL`SFd)Uq3R(5@f=h@YU(pr;i>2d>K%-v_Ks6eTEt1g*7g|
z_S4mFq2ktd#HLCkHd~_@>w`};OUxNZUIog%DZk1MTXdPCiuR@p|K)-GX~uqOW;<nw
zTWgG_7KU`Z>8%?#CJ<|A7866f;8AbQRuCnqJ1nhrf?UkAj?u|kot7gIvh31^N&2Lt
zWeBwd5HxVuS1Rj%Y5D+*l^$g~i~PLE^^g5(Vm2@!BK@ftoxx#d3g%3TamGxFxDXTL
z<xNVe1LQGFs-+q?54OB>bd)(Su(8{*V$wshiXyQlyn}DU)RA223ppEm*R5C2mW;pG
zyqL(JJB?ggwC03lZ7uqk3`p7)igJP>_bPJzd#i{{aW~X>KkJT;A_SvewYNZq(9%`w
zIby_!NEEJHXI)xT>g7Z=afn$KGn<n<2l+Q>-s4StWELJG5ahb;F#7=0P2Eodr3G-)
zSFK%}#op>UJvuez&{VpS-Iy$Fm3%}WTHbs+h$ongb1sgcU2naDj!Y*G9B_G^I?*eq
zaav6Ph}iMuPDRkJ1%yn3Ivk)(P$%>mqpdmOQyjJWGPLic7d$oZtojWaq(W3%nl9iV
z|7tN}G50?{nvq0J{xAh4$euB5#t8{F*(mkTKh&;W4#<#udD9$vU{m2&Qn6Lb|G?=A
zq`X=T?FWcRG#3k&&%tuQK8n-(fcH&$^vIkwOl9+311~87=~o@-V`?Zx%``Dg^PBD&
zJkhAj`JI4}L0sSx{xAMAb$JQlY|>8MX;<qExUdZ`=Y^@|jHoKG!bY4%X@rmH-lF?C
zc}q%|cEh?Ok7MwP`SE_7&!2wVu>(vfB%};8ZgbPEOOQ#}iNr9Xn;53|e1K?5>UJ|B
zAwm0f6xEnOq<g|Xz_9CW@pK8IhSCOalB}?;b&0$_2urH|Sw`7l!EWMb_}*F_A2HuC
z7#L%i^Vdt>-rjvu&Zs6PCMpCqAVcS%RZao~F*>E^>GA;NDv(M-5)dZVL20JnV_DW2
zA0`P0P`iyk??l@9tgvu#I*sLl#DF2p$eH9=KHMHdNM;<-WLPO$buhT*v3dhDzs{RG
zH=R6K;74Yh4m8VWqVX`hr`rI@eF1&0X*=;Z`ND{?4I0$x_;uWS8$ocn%vP&<sdP3z
z?^G3Ib=TWE9lGm2FHP%(`^@lPr?H<bmy=SJV>cD!>j-tGZ|e6jv_yqQ9Soz+otrgj
z(oO`~?Z189bjL$uoV1?5iIMNm{BX-{TZyQHfbxdj?UIO3?$x>T9|1ZeMl2lh6>wSb
z1s6xikbJgM)f%f6v+~K7CQ~ObGn@AH_dB?`GQ`A|kat!?w@FwMe5T_5f^@cY;mZvG
zYi$Qw?o3pDL=F=O7MSGLWovd;PZB*a@q=zN^|x)?7644CUMmBWQG}Y?uE7t%zwE@=
z0rnbGC35-W4ZEvp|6)3(Qf;>Lu0V=NyFT1^?KH}a71b>*Dr&Rr@%{LCU7C*nLI)g3
z^ug!T3p_w_54SLM{dn;Pv$zb7{uDTY0<`a@(_(2sD~zFqyF3b{9+(Qgp$XmA^5r|{
z$p`xca&B(jz1uIxqJ8`JGXIs(W=_YB9pf!avB}o3)HR$wU10?xnQ>GdrcsGmF!0I{
zOmrpnJv9ZJGm`{?+#?V-k@Vof@SG^@dMI2i3I0~u*{#oC!?bIh%~Wp7{=d+O{Ahk!
z-FDJ}m7IVm0rcLgHHFQm{;Tm6=&M^KN5r2_QW8%3QN)^4@cZT(@u^$1$()#9x7`HQ
zliQn4<@PjDsLx{uf+;c8zL&XOH2ya!bTF%@^qaN73oIgj-Nx%ZC1A-Q_}t%nRzHhJ
zfF4gDj<cCTZGap=A9JYr>5noX=yGZsbIwKt4As_tLB#^oe!yiDkecQx_1Q^ieMK_4
z&-V<#=iucJTbGm>D|#_S4-iyutU1_H2J{k7)!0+bnHrjoT&Qadbr(CYopa94AHx~!
z*K_t(KbVKpxFo)bmwEd;V{<Q6Dz|z35VQ}cF->6WV)A6-WZuPf856Njo5$s;9&4Mz
zwfGaACNw6n+0|n&o+U)kR4m|xHq%{YGEpU*XO|qbvsp)%@=M!>t$ywzBgVjAtFXu%
zMhvGlE$RqprGfR;hw5(VE!Y<GQFU{}EGEWMXl?m&l6Vf9+!v&yoaP+mSZ?#vni|-_
z=E$zbJB-wdFtvlX3@4l#q`p_(2&{Y&S^tjiXKJMoVSDObu}wMg+d$BQ(zjQxTv6|2
z`6@loed)4g`eV-%mu#|7&Ydk}bB=tTrTOGWD!N~XD#GgBQ>KzXmJuGci6Vf9KYoUE
z{BW%9uRqk)J9TaHZo6WO*(<9m9Y~tmI$(o<n@*%sNf6}S;d)|PPah((q(l8zq%#I_
z&xiX|kV+q3NDDxKcyZH}u9I=9dc`l)1DV8}l$rUZOR>yP%?>}Aco}o=waIBNxWhp?
zry1==tUJq?dbL=ujjxJ|te@;LYoopL*xY&ZTpd|(F!|r=4zGcMjGpaQJT6F#FL9hp
zB|Ar|aH#2}Gr_^ZIB?r^I8KK<j&fT1;S&|GS>%fb8`iD6zU~XP90}qSj#`OP<mF1U
z-xir)#8PsGt=2RS%%ys61aaJVB&aW#^TI28PRzojxK{#xwJa{ksPkxNa)#VOyosHe
zKPO(jS@Vk02mTaAR44E4nL_nhzgR{n2Q<6xM+GRJ6#DFu5$hLTS^iX=-j4V+dgimw
z5{SCTbrQ|t5ZhUSh7(Zq(k$l4b~`ffav-3tdO7aD*|O3s$_T*}4j8m%xNSx)l|Zj^
z=LFwel+F>Jd3ocfKKE0;X%8FbrDq$r>e+7Mie*>!)V$Fx{VLspR9!pj%m!9a`W-uV
zZ2aN#Z8S{Uwr(AOn2X1zSK_=&f2i9)<_~Lhgv;91;xja6BhG@Vf`!e5SJCcSjJ3~!
z0|%fGuLxg3zSgo>-D+R=hq?`Y)y`pt+dRO~6a&Ft%G$kg`CPNwf%^D#{ZrjL={Tlu
z$?ZI>iMcI55wBXB-uY>n(b}~YOZI*y*K%D(8by()M`jcjM(=6}nw1*$W7Mw`GwT;~
zgSschD6O>}$YrWmU^eT?1+_}2e_&wXj4c2;CD1zu6;qad0coM-%m1US{<RQ+^Spix
zd`{(pJ<=@3WEL|ryuR5v{E8GW4EmdfUk`bYmel;F#Y9TK<9|-*d<8ugjS<&jPs`G8
zmh*{yhMgRAfyoJ13&I{;SndDJYuA-(5HhPvenCs>c>=ygUA(yA(y4&UnT)-6Pk5A-
zHDpZHNlU)TA(UDSHf-1sXYBs_jIE%4AWnA!RzFKpW0>1dYb-Adz{*GJ>cB1{y~3)5
z`KV2488Pm-+T{HMq9wc_UyAol8&Y~d?Arb4@Nh%?NV7}oPe3GQmmU4~Wg<1QA;sj$
zZOu>ZH#9LdwFWTLts+4o=gHjCp$5*>IciF?F2)M+vEf#CdKG2(#Y)9yojxxl*i``2
z@$^U9xA)n(U?w}{KsXqmf2i*qE4@ooj*g7Q<t|#aflDqRaFOwwCG3w?-q!T~1S0Cq
z>H)i)PT1RN&RO3fb?erR)p!z3Y~Hen`cXHz&<5Q#^$zx&p-yq^dH@lKdF;kd1IO5&
zvLy2v5`FF3H6Z$Nyv0;vDfPX*`&jUF(MU0vQ|!>Pl>k*Rp!KhIBKb{|0X?Ndn|!-F
z{tIKO$B!JmYTd|@lv6C4O2QvRD%$FGxu`fw;-kJh%x2l&TmYSQZ$<;w3@D}sbdwL=
z(qTd<Xo5}Nr3(gt?B*2v!@sWxaH1yNS=u*u^g{HMg}$draZ8cP#>oswBI&+kN*vd%
zTf)cd##$yeUGM0qyWtBP7m0!QJwum7gO+_-=WBsDSS~%cB;~2A^>E4TxlYd*LaC7Q
z9i^34hc505!saGf4&+3yefIPzhUjZ|hJGV{eR5An9h;ZIX0eXm*H#1ar(x4N`mdH)
zjC*|erI<5C2fOfv8!5lEJAQ!-21digGiT1!HyaX0_kpQ!>(ho3H@K`C_6)dK2B77S
zs|0UjR}WwV<WMqcR>A)n@EQ`rfXrwZysEvhu%zU3{Oed0O-%w04?!3@Th-$onFE<y
z3Fkb1B;cl)8tDYEJ59LL=0RxO#w+djjSCVV|M}qy5i3=%=yKdW6WPXNTm|<{;LhNe
z2L#Kaa4y(v%%;z4ww$T0GJ4fvf<0zAuSh2~a*J|Es+t<Wcrz)pHmG0U0L#v~=m~#g
z$~lr%w*qP)ON+i!`%LxLY-V`Ck0fFV6<a>TOVt{`LREOymP~1c03`7zUzy~nRW5En
z#pyBQz{}OI9J_z25X?Wz(#8y@>pMaeZ*(V-CS4nbci^{L`F~al+>+>b86cfm#@>Ch
zeg+$aRjdEc+=xn_Jqdb#G}f$y=x6VH2Z3uwthm#{?nHrYlToev-&oeb!oF*$-M6n*
z&083jGkEIgQFHIRWO2J!#o=gWsR-RAj8;F#WicctO(C>ZRgi=R0rU}NpTLRr!g{{F
zSlg}4rg(8dRt~#h|17D+r^?F9O`g8W3Oy<#9150d=#ocg{93!-iP%_R>DlL39ybk5
zB%*2kz;1n`i9bi`HarxcfN>7xNVjnSO%egBI;YzVJ=QDMQRgdxP9<1Svq%v5o)ZXz
zal<-O&NUHeiwfQK0A4egi#O-&f0=K88e_ki*1i0SA3r|!Ha|fCLZu()+ZKS>22rOi
zndOvoSpq@<qfdxAPWXI0pCqpJ11h+}a9KEa_|xVYgz$kJQiG20A}#1D)92IN%WS-g
zK~v@C*i1O$RY?Y7d2tN@Z+7xgl9eSGc2e<aPtTmFV6?CMFb(y)x@O(pX{CCRi7jD&
zWf81ydmJY^(Oo~6yoVU~I2@fNu;rwBN|1N-cJ8ST=&Yra7+C1sB^3k=Pa|Yd9uK~r
zUs`%v!aN3@wWV<{GJ(;Q9@_%C?I^Qo`sseamY2_S00t2ko1e~ARCf-g##C1Mq13ke
zw9Y?8{50j<KV7$5@yS59pfa1MF9^(NylA6H#o(kL8&jJC+>H%)xFxoXia_}4q~EMD
z=>cPdu!(65L0gm#8+M<suSH}Dhu#Q~TBDd4V*K#q8F%kaB^W;dz@uu7NflrgrbfQQ
zQA78eV}b!=O#<9sP&m*7m~gH5M7&}^RX*Q-DkZtR`>j5Ot!KdWr4756H=-m{C)Cs9
zG9-QNX=`r->bjhpV`>^ma77SsQKDwznQ?4!2Amq-FOPG`H!_Zos|S)fK}f4J`VTlt
zv_>$aM&*9Wxp&*4t-auKkvsns>rjF{i}9o7Ya%~99iPvQIYk^^M6HpnTChJ<jr=G3
z{{0?c{>tX9TQ6DDc%SpE_=>0)Q1Ymy*{LtOFxreJLSJ|U?L*5|RMtJXjs6r#LbSao
zRt~sU(*L)AhTNmSoV?%`<m&3mi}-QC6iWJePGE5-u%5dryht4kNY`CQ3%Njw4}w+~
zoaY4g?9=CVb>=&FEfq}l<0n8XZmiqLsd9C*89jQl++OMVnOdPHquBN-e7wi>l(5G-
z^}6LFLOr6J7V|D|%)XCmnWm1@7ZZy8n<B^Ldo%}pr$9Jq$wdiO6h5tIOmkm2%yuDQ
zmi>tlYf^fG8q1l|J8%i2b@YlyXGn77KB>>>FEBcZUI3?3kvVPlvsbT{H@(ET@Pl!2
zasB3=pa12EU|A3`H%Wp<m=|pnY>*_-V%%Xonm^{H7zk;9S@C*9hL#gW3{J}T@%DCk
zw875vxtOXUnY)77))MFegRd45UCI%Mi|(Tx+M<Q6t*v{Udunk11#}zyhLsMa4B9=(
z0T;Sla4!->RfU`n%+`r73w`&W!1snnMHzGVR0Ano2qU5I!xr3=)CZLHd4hG(cO}2n
z{hF<??3_KB$u6WORcqXoxRRyI@}1X$MYy;X|LJ{;hm5@au5w(W(kRHNCw{GGycSCS
zmP-*nG{D5Ty#0uk2q1S8lttAV1aZZLNm77NcPQv=Wf&e7w(s1zwfoPNK8h0pR66;9
zngZ|Z{`>D!wx|cG8{u2@i$P!1*WKB<V6GzR=qTrq!b?Z~Xx%DwROh3q)V>1ohQ*9G
zmYAM+WC>;~zLaMf(R5}w*JH@Yr|$>tN=`O&Y;m;{xp%wIbiRd9?h~q;RN2{Ci7-0o
zIBI6pY5P<29><7~f`m!2|FvKwJRYZ%)h>Z*S-UP7H?O35j31eqojr8wCc)pi*6Cy?
zY6?uD#0+P883$dr_VIwVKG$>LqEx=CYvC+z8pQBc<iuuRC>dCs+m$-_;mHG;0W9rP
z@sILx{&G=SldzSG4c?cPX?|__;Qsv=L}Jq+kM#L-&)&a(A7THu5@5Aqv!42J;>c4?
zxt1Ey%r8C$xU0S-7S=d)rj4)<+<GZ69~u0!%dqI4L0ljA(9lqWqeEBglIppXn_vIq
zF^8q#_3NX@J|9SpUH5h@VC6tzmc%u=9=V?{BzRKL%+p?BD?shvy?q;IGL06NGlcXm
zmArEO+5NS(O;{)`nIAE+%|<e0AH^p2QQN$PZiDz}%%*qpxot#Jw*0Glv(c|}FZw%w
ztIFCk?}m9nLKVK<&MY6>%eg4jolD(N8h&Xu_S87}kzlQuW!#dfznqEE(xT~FNsf>M
zUvPhdZo?(&s(!P<DI$`kd?M8hQs>D^EO0qMNFX4kRp^4BQ4{TJa&|P|eg@Ez-sKTp
zL4yU(5QYs=pW5V`9aT0LC{fkJmfa1YoU{Dh$?-iC`E+`g9erPM#sEbY{W}x%I+^We
z12+k_e+S<q076GbId^<rF1)(227p#W)SoIsPkCLof;b^{sPkq8jr#z%j>nYjDt}Z`
ze{E{;uHUdOzgKLU+z3oY29{O>jATPw(8^{c)M>oc6ean52IGU)O>@@^fMj!c;~!rz
z+>T#9+Fi;L77WOibvjw!&JQt75T(<(n<Z48FdvdQ?V~Gt(o{*0%vQY*J|j2fjLlWm
zD@f2eK58N*nem4^(nmVn;dNea01U=cAUu5yGN<;VC^jIFpuN*GyC(iNk1noFF3@W2
zzSDg6e40Gg+%Mpa1kLc@!y0v0pxmBD_$N6=#NEA(aX(jsR5ok+6BPBD8RB8Emwc(<
z+lroJ{;bh2P4CyQpSrnUjRZ>Ny0KTIz{#i5j8;56f1C_nbxABf%R?`4qmF(#+s@Eb
z*RVK>RY{<7ktM2D=QS5<Ggb86yMcjtRomlJPZUCkgssx99Fb8?=dT-oFP}jqW$~G+
znFLt*u`>(mU&p2V{_Z>!CeL)cMnksm*l}2|6i>F+`|i0&LQAjoCjPzr)$3OcoqTGB
zeYem<)4@^I$K;@}+f!Rx+aPq`etyczuwI=y<JWs%ym&FJ1F&T2brg94IF`2RH~0RJ
z$q5CVc<K}f-&RIMMNusYPWMwZi#X#seVcJD73*CT?Ws0er3=_8osaiZ4kOwgh<{E9
zm<T_U$o78(duyzR`BhRE4a9Eg>cB(N+4yllUP+67b4>(9HUPt$3tnHzyjOkof^{G?
z=kH4JyoJ_4Ga))>f9tw^8M_)ved+q=ktZ#sz{O9v4x<u4r<_mS;k)xVSo%M#$A}Kx
zP`O~?XM`q&7IWwW@7aQSV4(xv_#~#XZB%fuZRC|G%!Efer+sf)l+=To4tBX@Hn{?S
z?w;ela{grD_+>wM(9U75^B$>e5TLro;8S*G9xm%uAp9WT%W#(7E~*uHh4Pwy@y+8I
zSzV_M$R!#Lu@wd@SpT46VuZsEQ`tM$`XLld7)1OVR-#SGg<X9Ynq*wNw)L!FUp6_B
zfr;PRQ2%Wc+W+gM2Ey&a=DNg;{`Ci`i~cX<>(scQ)Znwn2vk&yh^^G!mpzr9&G-+P
zgGllwck5G}MkC<wg>z*fT6{D&6DxZPx|By%C@vS8!@$f*zo!{V>h192-WXVY@s|Z@
z20`31Z$dJ3HcPJ{;sn&y=kGJy-Mr_*rs|{};fk}#?E%iQU56Aa?Mb7!OTWMS$o2>0
zJ9SG5g2^rqZ;HJcdW&T8Mxgl=riC0;K=X6@$w4^)-!rKGLDJ(HaJ)4?e<5W&e96lF
zY2kecU+ycxu@?t<o{FLJ<38-Et@;UGSxBb3RTK_AMw~Ht`{Bdjz)^I5wcZ;?@B%ki
z3ZM$121k)^OC}rtUg-teLW{*D6EglFwqOdtlQOU2_SvZvo?POplu~-=K?wD4u*iCh
zSL48z{mmY#nn)Xr+7d4tNDFXJ7p4Oh+#?Egi2*oNKkjw&RbH&^z!oy^XqCOa%Z$c+
zmp@5&SXg!Uxicc*AW-X_!EH(d9CE1w@7qP|<FYGv7iL8)p5|^HgewfYubF|9_p0-W
z0-G;=U-2QU$Bi480r$wgek>Qq806PtL?}htc*$o(HrHgULuzo55+gFm2HAI$t$B(k
zc&}<AGN_QY&)Rnd3iqOTrNE=(U-nr);p<S`gc)}&>_{PHsHPst2m2nTb`&xGb$|E^
zf&v*p(74ex%_zUE+r#K(hZAiFP>u-Vv_vKVaAw`V48SOAI;CNl3}Fkn#6Ts%s7{Sc
z_)Ogv_Z7c7Hz{c{O>fij%eOD|PJHTMLN7vu*pR@xfQaH%+LkjhSb9)?TB8bnbE_bB
z5~)bvuh0HF4E@hEXi~e>jgyR(grbY}cGhp$Fr94nY3xiKyZ*@A0v#T%^S0}M7W#%S
zywSit&>84x@2pNuk~hFM6RClcp^U*3Mz{A@&t?N%Lhs$1o(p>&@F<fPNWZvt1w9M1
z`0^U{*Ukik6$&r-f>R8LwGD}tZihqGL7a8Fui2N@z3rM){_gpmV4~!<Gq#<a<vtx;
zLVXl{|H+@p=#8P3oHmV!zki4>htp_VWG2Lc7W6VXd(0qo?gc~e(F1XD&XI+5RDUyo
zi=sEy4Hm+XqTz$Nadu7*Pc&$}0~RK9F7ZH6&`wj4B$ZapDcQb#yZCH)qx%F$eo2eg
zZ<L(puld$fUydeWeL7}Q%H$Rs^8hsFQVbrle(D|uRNSq#arMb<)<IOaDv>fN=N2)b
zpifTz8QK+~cuC1dJ^4L=N)Hwy<p?878oL*!u(>C^y{br*H_;RcIb^^GeN-!QvhGos
zG9m_@cWGV9{UIAZETu-9`7&#oUg+=FX9i5~B7W3J+BgLARHZ;`OFv-C(#1ru>gG$E
z+vW8BXNJq)-F`{g`$caYSb@I)G+cpQ;YT3I(*gP|{wv{ZFvz#Yk&6OJ564Od5tLqX
z48W5M-wD&wt|Y#t+i8$X@6ZSeN5*I74mH!!m5QHhYmKXx=1XVj!e-Lqzw3Jp7z5B$
z|5cZvbbikvlN;njM~R*Rarm>xkAKNu52lnx{p#t)Sd#HYNaiFxpoZor;P#V2ik!0x
zwmN;QTFXb65<XvsuILN42JmG|&?$AG#J2eDEZozx=g(W(_9q{zg#U{nZj`_Hvon2<
z!ZoI35-L`Wq$mc|h#ml6PC^Ngg1RjlG76f|cBfg~V@{U#v}~&Nu7lHCw{IT;P`?CA
zCPh&EmmgGwo<Kbqo^;Xz2go^KJjJY+dSOgV%w-K@t*Ed+qa5QvL$z)<-*8=mDNDpB
zhf$Ppd{?kbK9~wnG2xoJEfaIPS3-7k51B~#2_4J?Kx}_moOO_Nb1UZ!3O{>x09mkt
zb`2%og!6Zd0J=AvYO(<7eq`dbF|S_iS~wfWqe;_P>nv&&SzI-N4*`J{j^*bTv%w%e
z$7R2v(oO;1C9U(clPyp5E4?X+GWW*wWjlPI<h36*b>eSQ*ZA;u*AoX52Ur8|%F5D-
zXk5;|EIBLul?;$PnNrB&Ps{uYwVyk%u`NX<bfkJH2=orgV+mi>H}nUS9`ecgg_Qbm
z>1rGP7UKW=SWY^ew_8A$-35F-$UXUWLWO%mQU0Cl{DV7oOmr#iFk;<wx^o5;!`HiR
zz0h(z-rXiQCaTHK2N&0d(uNZ%6@S}Uzm`p#F8olY1BH%TGLs0#2;1y_KH_@0qgOHf
zLDi}iUN$h|`=m|-VJidgk`#_L-0wHb-5cV4D7kgQy5*eID9ApG?s#RqED=~%dWAs4
z?1il_RlLXz70XNWVu#1CW{Q+Qf-spcZPf+?k1V?Bc187#h<SYa_z@~Z_ssW?V5yy+
zcX1{p9Q~xh?h`oWLgdGI<C>>{y&V5gUVb1nbcIXdnpY1^$vZ5R)1C|e18{7C-Y?~4
zWky6rp#F#avRso$C>`)MJ|or-jL#>_60<5@YF2e$kNWtyHU(5Y3f~PHHr(&mIy8-{
z2&c9GtF@h5>}oyJ2Vwwq$Eo6_7YgWv;~0?Fsxg0)?fg*DTa2@M%!3CHN|*(x$Si@c
z`p-X|mqkR|*G^Ou8YZIyPMmHv)UEi%ivZb}byKewX(?gwey&qafLPBRPjG|uZ>T^<
z+<Nl!xQDs98JE_thIp=+6TLKrSJNV_G-@?{(`ixxqV^pIq9m0W7^WzK0h|TROj^9f
z0Ayx{#l1vKtow=;ueIwMnbXj)n=n&t+O%o#l;YQgY~8vQn!+h4AvWB!w?8lIz8z?r
z_KwlS%>ES7Lctw99L(?qk@K(ofY#S&a$LO}b$0^_0uFS0O6c%ggBH8rnvl;^!5xjY
z%aVx$KJC3*n@yXsskB@(qu?FY;UK6-VIv1C_jeihAAZvSbCkw?@8q8-_BxXUL-P0~
z=AG&`XnqfsmmYMe{Jzb;?{P@}kR103AVFZ0l=;E=(S^6eLWIeVH<?1n5jEdmW%D^t
zuDpiASV@fGPvG9gbi;js9;un8b3})fRDGA`vqkg!!EAr?X2=>{kIm<}XeQSVsTl4h
zxwi&2l1vXQ`y|jme#C$R?T|fz(~oZ<pDcL!())3V%mZYu1~q`_AAb0O-kyNJ+UbIf
z0+pQ7Lyv7$TfpbV7wE$}KSZ2LUgr;d*#l0SI8ZRC4&ZWkQkSX!PJCEIM^OxohCI!3
z#fnggR;k|to$OBapSGf?W#8u*B%!B3lntaV(t}D1kcc6ej`1nIHq=oLZ|jj?LL@>e
z?+^Qpydr>%GT1UvDTDy!##PJ4YO+PLw_M&e?p^g>78X{-TV`aD-Ft>KP&w;?1*K)h
zjO4(*toW8Y2;4CYvf8I8qCI13&REZ0*`cWVyBSheF(sHEOqe|@829sinA*8~$~v3>
zj1E%voikYc^NN?}A|eKzs_Hn*eiBhb26$N05iKIv+`u)nXGo{akQHWA&h6`Zo|8GO
zO~o?fv-7W5dY(8;tb*n4ml*2aHugwJC0Z-7O=fP=F?HaoNXV9W7X}{04I{!dH3h_K
zFKxRMaEd$&vH%V)H<^CG4;a7M^cpO|(I@0usu*sE>!e^z-vFCVojQpLB>ZgovVqF&
zieVv+;MsVs49hL0C1-{F#W(FQeE%&zKd9uX!w1BrySg}%DL|x{l4=W?Z#@2a(BFhb
zg`@sIO#y$u<a457V9x#ftsjJT-&bqW0~p|C6mSJ$j=xNoaxlh~j~{JAFXH&?_m&t6
z<F?7n($tebEihKud;@~hwT~M>G^8`Ldr`Ttw6L_T%khxzrLPCn__(}&w6_QvT1wqS
zb<QA_KDVx183RjL($eCr&`=V<Tae@MnBn%eDu#jZ?7Lo$oAfjARwiDne((<}ea^@M
zqMG9B$P!DZrP6jDG-+xOgNrdA#SFexD8C=i#%st2`}nw)63VK}2PadBfVY+|iLrAv
zzCGu^pEvdSHe)Wyiha^Euot%0Y|so{N}uxy&$?GSpnnk9s=wJJNudZbLdM6{>~nbI
zwajR^r{C^$Ij=GJniC=A;KDudvb(}tx}{5@L}2`+*+?P$%1a#TVOz@}tUxv6rr8eT
zIJ%_7!U~KJvMW&&!1C<KA+*>WVlbze`fj=|ZmMDe!B1zRs@1Ht?cb~zUtzNl*Bn|>
z)B3CIo6yG4RlCT=t(RdC;ZiZ6+^%qX1D2c!sja$$mO1sD)tH;lyTX6|#fR1JqovRa
zzqufTr}ZZHJGlHOl{YOv67`hBb$G$Q;{9}F)a{9?4zQx#G<>wkfQUBq_B+(TeyZDA
zq@6m<$HcwYuh*%x4-#y{Ad>)XT=nORdEn~q3O@)ZfPWePjIbO4EbPzjnoB>k|88?Z
zVk8%Boi>9s;RI0SRN;NT$sx6?#y)9bHbT=!@g}Cm@f)oda@BmV>8@ii<D}VK)fgaK
z7R^1D5lwC}9Y#6L#R6&-gZ>wh$VN#a+pi(vLke|2RRxDY3|{!+WB@=|mqv^~#qKJU
zvO$DkZx=~_?7pS{uteQ+4qf@@I$Sy(;+q4N)Xw5FU-r*_mErX1Ei-J@d*<!2KD<Ua
zdV9C-Gp!*E+j;0%Ib(@kHV3J49(HZ+RpT2eC+zQ%v9pVkYbq7s#7qQ1C$+<QS}ZM0
zbe~8x-SXvs;IaFHD+o)jy18w|#tU07VAeGuq5Jlmb;cWAKJUjJ|M{BoF{`f+Qy33y
zB$G2dx-Gn~{%!*vD=&N8v<H840oIVm9>8g<N{1n9=9)E(Qd$(i`I2-@;QlCw{ogX`
z)p+Hm^Y$N|>)_yUfSHsA-$1ecdTD8zTzZK5{T5k-cjv+WA(HFHg3@b$dnBt>iL8`M
zC3O?(Oi@iw|EqUyFn1g}jMP<q^S~*?wWw4X#*qOR<EnIXsRG`jeP?t7G{ww&621K0
z+D2y{;ZBRDO}i?nrDR~c{y#eN)B<^%_zxIxc&Uf_R5$)66KdVRONs%#)#A!>*54Ci
znKY)gDF^BjgeBr``P;WC<Uh;PC87oHZ+dY;^|HMA_A+<9iE(-5w{NX{Ywzspb)xH*
zUD^&Sk3{))=x!J?zIVO!k=9n(8hv+YDqOvXyUz6T8aLaf>z<)4rVh>bc)z*Xl3rc6
z{`h0us4o{TFZCSUU}->Me$1uW6*;fV^D4|<#-3j7)9SzCS)2PTYHL_ds0s{bFi6Hi
zdGua3DT<JQzKwvo7i*~;d+dnJlM%DUd^<wcM;0gilDeAO1ZuW}iix9o4Hz&WboM_B
zfbum49<ZJi1(YRJHG^i-E&cq*#*MQ?7hqVa{Tf0W*laU7ELz1ocm7B>j@m6-K(b?a
zci*ps0>TC!QSuK}-s-ivsduW2aiXSCIPhHVrS*f7rMvvMIXUJ_7g$*M!j#RE7Q^Xp
zXd^cz&C)1lZ;G%;ZO*vv-J6Bv*!*<DXi%C-N9g4I{*UGLmu|&`VQ>hGN37s~ZN3~#
zA>NMiMKy7RZS2wh)U>1hY)k5W+tsmCr%+hqmgirksFaZB8~IJzx3Q?^`>r!O*u@yZ
z30lV!0@9}H5_ro1+H;WrbG}nQ|J0wN+;hSIfB9v8I)L9SfT={UKNsXi04^_xfUJ;q
z_V54v;Tzr%#QcepXuk*0%Czcb$ima@_x4^&lYK3f0goVOk&bs(OjamFu}-gJr$2Yk
z#SzN$r<|G@+na!;;{+AZ+LQnEsU}?sBbLb;m@y#hfZbeDPkMwis#o{CQNZ*unAai2
z6b%GAQL3UiJBf7~)Ukw`i4c_^^{v4)R8bFa6qp%mZcd~$xR~2=SZ_Jj#mx_EZVPgt
z+kqvJtJ1?;8i0%greE>HRAut!`<2SBie83(qQ_zx*s`Wg8W#=yszHMW1NU_6)=fOk
z2wQpakx<Or>NrLk%p%hRHjEa--Fzx_TZz65=#)47`t@rLt+95mq%$6VPM>=nzF%h!
zX^5K*6{HLZo4!ZrrU36bvRI$q@2iUlY9+@sa4t)kD6z6Y%*WmU^0*;bVo<MMy><yW
zjtn_;yP|76ceDNN27!}P=}U3R_wZ;9q|#+tTRF;8nA$tC@<q35juZB{&wY;6Z->Dz
zIC)2&Sp53yuYk@;g*C~En_WCR7%ofo+l3<F1mCYTWr?2I2x}T#n|CC+oMmb0XE2TM
zfh1d^;LTS<32}unpLhXmW(h>wmc=!1#H8ex5FUXX61l2M<WT)EUWJMoNT;q8T6}dS
zgTQoBs{l4-?_#W7yz|z@Mm5q)m4gR;-E2sNGUA+_ea&L*193}-N~%|J0j!YSyLM>^
z>(E46q`#WcrYFVsTX2Kr>}}k%sc&x68tXT|>qOb~h7FAfvDFlTfq{-B%LhC>JW5>I
zoGr_US1MTq*UH~onMspWUs*@zQ8)=hDzkYEY@2ef<_Yz4&vy%gO2N=Cn{*g?sZ`EZ
zMfJp<oJG{=ChwzAD3q%0+O=azOwZSZ;CRIX|Mn1#t-)3hHvGCM9S&a#!k(*6%R^SG
zsj5l`d<^)n-7C5tl;ApbFV=huEP~SpP90w?YSpvJs2I(NzaUI(LYZ4p@%+zM(pksS
z?1+Sb4P`HmBh~%KzetI^%O6cU_V(+gc=hU)fM=v@{i`j(t^RQ`m~Bv&7rRvV7C>eQ
zE!gcuEQeO4x&I<h%fe4tFXw=qey*_3iwWifsP~cxK5sUJAh*FmdSjMU>&Q@sgBMCa
z#X?C?{`KeJyYXyW@uRr7>NO_aHl`59!7B5cQ(I;84^PQfi*qlYGn_F)O#!58%wBP|
zmOQ!puScoO?>VhKqy-9oL4+B)RiMYcK?N`+w_Hm(19jmX=~3OA$&IpG&Senb_kS(-
z=9AARPs*TmfyO$x3FqvVv-Fh}ao<j}S<m7*?J7SpSu=`esvvUgc7+n@OXz*}f1H5k
zbuKjJt;8)7{}3F;Ul95ZcG}3q#ALY+Y3a@GKurhfURt<tq04G4ZU&pM^vaokf5qw3
z3uXh{Q$#$)j|r6{{sIdh$jVRxGhIFsZ+){H?T}JNlDFEwzj^)_PHm)pk)i3F!s57^
zU9)_~F}I}h{fTMQMuA?fVfCiQU-<ZO9d+P&*p|uq`gcnG@#Pm(yLKHbpa&S7%WAlB
zQiLxjGP?!+d`oUk8_Z)nC%PLf!D0*b5jC&n-c$7TGmxtD!-Mq(pX`66rHaakUtzXM
zBb4-X+TEpB1(X0P*494v>FBTdr@@I4^#dm>#rRG25s{HG6LvS(xQm349uRICR^)wg
zU@eu=KR>*<b{dzQ9*NU}pXP7mo<|aq>rj|EX!~=`=W_689{J6vQ*oOAUO}RP6Y{i0
z_6)j{AsLP6b-#-d8sx96Xw{o*jio0U-41`!qqch`xIig%2W^pk?|1q4!yAN;XdF1%
zkV0xCWY&yO^G5|=*uye(L<7h&=xaB0isag>3Vz7S2q-Aslke_>E;R?E2G%wS82;}E
zH~-HkIb1-&#h_335HKA@OK!aOQKj+(rLVR#9-`a&E?5mKYR7^1MLlLFtx3YNOceRe
zG^$4A<*K$N8$Zvg8L;tj%?&?!jTX2Ytz2JeCc}`4XM1ZhcI+0xeL>|U1tkqmPR?W`
z!JG&5)B@wstztnBo7ae$M2XVuofBrUgJ{I+_|N}7Dbw$pSn7F!gpC9f^?{QT8vDTu
zkijK^{urr1BxYn7<5liacXp^Ovz`)JUuE?11K!>tcm-Sf)8HS@f-4!hG<%@C7U4q{
z#0c<ggV;A$e`;A=v--vN`t5+Rjg3vv$-^JPF|;T=b3A&bX+fKq4%Lsa-Jh$Kn3UA3
z)9^ZkyT9++l>+D>)|Xn8F7%7LD}CtgkhnzPRYHhQ4_RdXY+e+?9<s*OEM>TCaG(GA
zjhj0~A6!0KDdkl+w_lKfGN$G!M6I$VYd(OAOCK@%o6W#Fi{UBELeE43?e!Zr+{(zv
z7@J#L#qFC?skHy_($q)WZY&6i5lmh91|p2Q$kCOzB1kAB2|@?-NK%4?R5kv*S!>jJ
zY*1tH(aGROyLavs^kB=@tx=0^wNz7A_X_!a=gxbSbM@{H9Xb?YuPFpA#-t;9UrpxB
zDJ;B2Vwa_=u3ijgDUSN<T%bnb)DVV5X8{hFabfmh&2plb1p~zvjLWL=0{qvH-Fr;$
zlCgtU6s?tyM~fPehK9y$T7u<0P*$Q{a`-h-n-b#dv(^3_#S!d|w0P1?pU&xms%aYY
z=bC@__%DrG+;p><4Y%J7^pc}^fG7pK)eCx(;Jh@qi!8yEbA&t-a7|OCf1RQ#Gl{!b
zlb!#44K_P({-KkhK8<I>@iYcTsSYsEXv?B0KsvSOonJYIFR<IyRqJb;cI|>O5<ji|
zS>=!XFgpEMI*`^SU(&L(O<`Xk@^cWU;_c(pH&^|;SFiprUw>_2JgMA(y1JmK;Ib!R
zn3}}Yj6<t`cC&Lsx`zM#4E|;F)g5j%aezO6a22r5|NNEz|Nn>0V@svkg+SVfQje$&
znV%|wKCmQ2+J?`3_@!Ahi<k5GpHPl@R{T}PtrOet`dX&Vn#TCVMM=v=MGUaT!R6lr
z1e+7AY>TSVG?Pq@p_bE^b-qreQCSe!zK!4TbL#=40p9kj9zd4_XPe)w^w0qcxz(x+
z_QW-MS)xQ}ve?4HJy^%j&#(1{DXG*GRyjC#K6lzIcDD2a7=SnzV&#)kI*Mup;M?MK
zLE6xUNj)vvyJpT+<$4ui$XWpzf;I`eMT!Z?+&W9H+P=IQh$km+vQqeEj~_p7Kd*7m
z!GkkD_Cx#ZR@A0LeN0afF|{d&7|JjI*1lB3v22NebxMA}O<yMFWK~9NgD23YA}2RD
z_bQ3(KmWY>_#+Z2Dk|Sr;xYt2Cwx#<FnVHIbHggJYw!wvJC0cQrdh?0UuLxDxkA`8
zfTq&#+T%iZW`3Wb-FlYqo;`c+zU?T~n(S`e_-hVyV5pbeUVt8i5aUHIa7UZQ9Y-t~
zF^xEAb=k(7bGYt<);At8Rb`FHEx-g;eWv}mMtJvbPt-|a1FOt8C7zsx^s<X1gbNJZ
zM~l~o*33Sl3UvHBtm22S);KA&v~0dyplo|`PWVn{kMuRWWI|#nk}@YB)UaWr)jg`m
z?u;fk&!XhuDie;qMyy}8r$Rx3h(fhXC4*uO*y+_L6S`;68hF|yY^+jR&Yvvb?0kkc
zvlq-a*BIKWLx<B8OK7i~K?ocnQKrt1rNFKRRKy{A`>N&O^#A#1bjv>%T~Y}8U>jL%
zDdzLUhqh~XxP55^G{FhFx@{duH&#a_cZdGdg=~MyxmsWHX;~>oQ0C5?Frj(USv7-l
zQnfHxD&Mq>P^yGlSaL$Y8eez*&wpL=WAk6oXkgdANt5FsXj%yyZXX_!tR0PsVO>}I
zYN>qd%#vn7)?d8p6<xbw(`(v>n+@EnXAVtL!u9Yack4ZLsA=lfKdfoUxsCkxox>8W
z8IbFnO83P|5t$H=E6_PLE8|tG!r?!vQRR}@pMx{)!@_}X9v%S%j0z=y5qfnCG97yM
z>?!^p4p;~Z9l_L?P?Nid#<IWo1IMG*Crh&_fDjwTTS&hIpW6Zr2>DrHdtvfQkWu7B
z-&GdZyG5Heff!KwBX6PMf(h38>@-3e;v`oW3L17jnBD~}>r4VZIBJh8x(Xu&lN_%_
z7i^M!C~?|kCB2(>oH~u4II*{uma$T#?dHsR|7`}UQ^7c^!_r8P?5%X!;}`@kH%6~9
zqGJ6E0!xXRgg8&Q-Lp%VF$D53#Upvo007uvI0r>%e&4%y*20A+7Ft-O#YXQqni#q2
zUB`Ydl7DlpiufW*X$_Xo#=5sGmA}9=Na1z}OI<QbJPh<!k);us+_%C!r{WCIDe@LB
z2{b1Ki5LXn6<x{(6t#@lHN8=zvUj<<X7Cc^_og=z5`xG6*1++(=VHjSz6m*@X9Z*<
zs&|Q7(X?4J;b$8o=twlR?qzZcU$feM;lXj-2Z^giZ|3RKu7Xen&r1II^KDsqk^18#
zPu9~jB2eOEJHUOo@$_hogW7RI^_Z;9s)0}{N&VeXKT=hIMnRD~m^~(zETyN0MhdW(
z)d4>eF>%T4muUM8%uUG4Gee<1NJL!MuUj`FzIWn%?zWb+fhl3HQA#~rszpYY0^3-6
z7VY<PAW8sgQs@&|bvj|9RL6yGrJ8u>jz0F^h!|CJASintbw;Tr((65Mk`{|D4*?4+
z2OYHfI0EL1WJ~dTI~`qgQ|mPJMO!Wh@R6aty?smql3bd&7m>!05T7*5dPK{1?RwLu
zVV@;EU)0XrRf$a|al{4(x1#O2+Y35LXG^8|0c9UkU)X9;sQO<^SVrOO>QDWd6Fmw4
zcWX@?RheqZAApG#ty&!_iXpiQBHR)U6mH@o@5ac-z{p5F9SU1#`)5Q>rr-|mM2B7t
z!Aa&oi%{*!73RVkz&CgwySJdgQbJT&R>JM(ZQ6Ji<xtoyp%jw7vq`tx4NNayxX|Wk
zJ{LQft0zzRt7YAP&Wc5gPD%$D2#nQ^1&G)OgHIQM4`_~kY%QmTMzNbI{ndKBkX%Ai
ze7*(J$tI^tM1Tc`6D6{#v|~h?Zs-J;Ls)r~Oiz){>t%^A=IRP=4vEJqGY>B#iXH;-
zqBmf_cL=^y^lwR`?&LK7r_EK_{N>HMZq*Ucm%c~@Jkq|5oCs9Hr5~awsA%o!jbJBH
zlE;XzOf^};$us?r(aCyg;|lK__9t%dt*M#*vM_lW{EcXtPt~w?kdjdpC)pRup+Go_
zPpLDEjP^^X7n;s}=8e|shUq{<a;wa3*Q*_rx^=@ydR=rF-+*D882veq{E{1(%90Lj
z7%*8%=joy5qq<qnnJ%F*rGpGS@KNj0#*V*Sod<_q+U(WqEUsot&$}26<zwHX(Z<TA
zO`AsA<?BY&KL5?K;`O5;dnir3+qlZkN^B9#fnq?6<blU}DTE%(nazOcK|9OPgyg7o
zZx_-t+x6P!pt8>PBdO9r(aiA}c=!M&4A(D>Mt27Ao1_Toyh|v=vBL9@wgk~Y$`>^}
zSj$*}27W5^s0?ZzTyc#Do3QbxIafv8jJtfQ&bt16&{O6vX$BYGyg5lUY$4Pn$z$<d
zGbpV_p_&`<;rp1m^QZyUbE7t2LGOc`nudE*)%o$rNbiwe2c&8SsH2+;EfvOy<$3xj
zOv#t12JVMKE!wNXU&8cD#{?1?{N}7!rrywnGXGSX>iZ<Qx}yFl#dI`YhRBx%)RHzb
z_$hv{5z%%WLm|cKNX33HuOOHzA_uDU<C_H%(MVGtHaf~8;b+r1-{KyPvnL-wI4oXu
zXVLTLr&^h<8^a@sSP$4!AB6rh2b)j67$npR%CW+<z}4K1JOr`MW1Ala*<XH%e0m0#
zkT2U$t{@!<nT)PDe*gac5$C%NU5nBOWk73!lK2a>#fsWQ5N)dx;d6-Pp~4t}1J;5<
zf;^ApjE33uF*^DA`NG6P%wFL*z%z`ErJ#KPTvF6wDGg9=F5z0uzOd@#@`va5Ek6pt
zf&rK<>MGFvR(N+puL8D2+G%H!!d3YPn=iq04BT^z7suetK6|(xm#&;42#LA5^H@s!
zOA04il1z~SYSN^M(vJd}DAM2*2W@y-1lpxZcuBgL#IJC#jivd)Z&H&ELsyNbjbRY;
zrPjVm2kNAO3{TG4K19b!;@SxKXp+HE)+K?nCXl4rGzCt7IUO*VL$kfks~a2xEfY;L
zIJyVqOyFceg<e1$lkh|%aLBM>vw`Xx{Pfc;`z;k5Y~eUq*sK=H)$7-xeDxxdUx~}b
zV-w)XTk-I_noBDKu3sNd^;jRi+97@bFj;ywAfliOw_3Waq~NX)p*zM^LWi81h~7x6
zS2ghFY1{uyqP9YTgm^3hw+f{Y%UGr$o?vQrXwB{*iE#VpdSL?vkwiXW&Zz|vKuH4S
z3dSReJZv$MUBsg9{j_`4D-Jg@Lt6|+f%47<V`Q$*67Lc$k?7OlD5Yho$jsU7Jd|-d
za{EwK5IPgt%iUE~44Yb1$4FS2h#zla1PpT312R8WR!(*tFy<T=KL(8cDW?f8S+`5&
z0U!_}t)UC<w@jcX$gJ@fSTbSh2nHi!`u!^s+JgfkzrkdOaS(r3tywem+!~rl9BDUp
zcyhI_L|P)dN@kr_SC@{SwX)nw>R(Odp;X-xBX^+t2bIr3eN;WgyNU`S7NOw2w5cII
zSCQ>Ibm&x4-qH%@-N5=oh9GObF!nw&)!Yza>XU$oJW|6f@h-fI*T6-)Rjt8k<h}rQ
z+;%*&<H|=w^S-44fW_Ir-bY|du^{=!cg_gWNl1V`kIxe)DISmwHumKrN0DhtFqA(R
z%gPxIIArFipu9G4{p%K1Kw8p*E;>PYxjxsl1f#(Xi}D*y3)3L+w;jGFM3(1CB`D+-
zkM=~!i?{~*L{xVpcX0NlFSZxmJ<(Mo8y-Un7%h<r64)i?6CKNMR|_%;;hXeNB$Jj_
zR426m=lD8@nl6qL!}`alMBiFzWQvO}jO^J{A*)nO#Ejy4@7x$TFFe)Ebn3Xs@bJ{&
z(91z=L%TvJ*h?FIu76@;R}T#hgVe1nb2xqaKLlC3wi%?$D=)ZQuCBn)+D6yPASktk
z4WJ9pVkL!)lRw4kh(M=%=b~$hur`X}7gE6Ah_Q#%4;U#dFX(hHkTbj;p7muF;svZ$
zVgOy!f$XtWYp6@aqP9@&;_Y*2>0PpZ&69$^xd2?yqD&h79%+N@ZNdc=UGdA{zy+{$
zd*2WI+5~1~AX5u&6+9%$>znQ>Np%&J1k_BIox)>DULb<c?~Z&UW?Ee~SGZFM5pF+f
zOtX=D6^N1hlMRNBZ(_d;xYt7=i8172#pv=bux~kygUz@8f#tAaFwdT^gqH~~t0YL+
zym>QTzOmQ^hVy-Mab)udT4!#zO>@e8#9X*O5(9j$%&`qELgZ<1a3Rfs*1S{E5B$5i
z<{KI+OU%Dj9<uA_|GMx0ZDI9a-ZkiAEPqiK%#VU)>vCK!;H7s_C1y*gZ@NAy%`?2^
zoHpqP3+N0J0IIHU@al$@!}Dkr)6y6qkcinJ$kqpX7<3Jt<6buZoi+8<h<O#fPum3I
z&jFqd4||dgwQ)CATcm9uU8M2NCn_8Zebz!jN$gWW`D1BxvQH;b_{!fj_wvT|1UIv?
z&1RrY$9OqgUPEUnF2imvV8q-PWv^d@w+begcvSdiLg?nw39l1$?t#g-%sDFpiB(&^
z)LtxdJMHP`oAvhXTdR46@Cs#K&@C;ga*!yyR$^P*ocRe$k9Twt@tLAiD*lT=7(jPD
zGZrt`Mre_*?c+PDvA@UjXiUwuj~%Dz>7|o34Vrr>>nM|@;sZtf<qREcJMFx)lRJL5
z%$vXHRwo~$hgokuCGFa5-@ti?*Zkm5{zPZ++v~|IAOyf!Zs(9Q-_lI-Q)x31)zw=c
zyx309I&I#k(n)c+)GIyRh_jLzV9s!)KG&?Ri4qgFzm}eRl&W)NO-v9^lqoSwE6U!!
z?fJ`$aooRU?bjlN|6t{^oT$bk*5eWWd3sLIU3>o%y)TUXBS0EkoXwm*ErL5g7Dkz7
z=Fnlo;7LpuP5!zU?_7`<Yqkyy+@auRlZZ36k1odojz-Kow8pTU1aZ(@_YV=p2!Ud{
z7F`Sl2Bm&rrR(oJ%DVf0s}B|WMB=Uz)R#cZx{x!D+Z8d-{lnr;02~;j0-NsxYLyW`
z&-oKLJob1!W?WeO7C$^jY)j;{?Mpf~I$Qbq^R1K=jR#e<l7+y*AnG)grY%VskqUIz
z!nSGbS&<u4e!jojL`30i+cP`?4abC#lD0#Zd(Z0Yd2@MCuqp=L2uw=X$Gtv^p_!U{
z<azh+o46k>B#3ayhr{aGp=>FoIB^JTI$bE`MhFUSfQrY}m$qqn?j%;l!r~tj7U{l>
zU+)9!u@Uqw{E7R;i=UgV`I;<Te9_EHOG`^V?YA22A9Vcc$FI9xT=ZI*L`Fqv{cz{G
zlk>?&BNnTbHcy5@+c3+oDg>K2i~4u=D_c?@@*oieuquD6dKtn0_S3rY?qwELSGN#4
z6hm}XcYZ|Qh)0NGxSCeP(ODQ`7ju=fC=Lni$2k&SnYWM6>W8z02}m=6QFKYi*u`Yd
z^zz(orc(ornYOz+hS+S6Eg-(_FFh*CuaCCfBs%m6L3Zm`f<d@3buwK9yyG6Fk!R?i
zxi!^E|M!b%h1tC<E@o6u?}#(2SFgSme6S%^IV*iry>`(`Kk<ZC(+oFh_Q1O?Yig*!
z!5Q1RB=d;U2u~G}^&H31&m$dwUdg1j+cAUH)Nc3z=nM`7Z#>P;2z6B1aa%B9>=|gA
z!4yPr;88eZU(k?SiHSvT&96V2M9{0Rz6SP>kZPn=12zy5`xiEIE)#fq{L<x;+$KO(
zLMf?ptg=6S;gPv@cLyuA(!~Q={A*fut0D-zZndAb%tymQcTc8h#>=-Q3M6&3{NO+`
z*5-&a10|y%ba#6rGNR=)n()ig@<2*1{DEMiMSA9L8HDbAA8}~lw@=@b4&09Z3EbTj
z84Sb&0BUfO6Pdnn-SQ3x-zA^ch1tLxN%nC#vSJeE+hulm4I+Ts0mx4-+os;BQG@3P
zA{T^jY59`rLH?G@mid&%M9wf$^VIw0P9VqBD}C<<=Xc$%A3iYgbs|scxFK{$+HYxi
zsDs?*a!j?CUit_QH>38>(2=Gq`Yfy}#qS_WaU(yxFFY`@`>$Tzx{rAuDG(j$xZiN+
z!n+-0z>8cf$q#_TNOWkV8aMPvjOPOp0Kh~n{^$XIBkjpe^)3<T37F~mt;#rZNlNz>
zW#49*j0(Q62>(d2-TBnsLp=<}@=HTt^)IoAv9UV(o2YfL>H<80+qk?ZWXFzPj3k{A
z-9NxOfpq9ovmLl=XzvT3BEE;@JI6Jto`B(YoJ)0!MkPXf_p;7zUW5G*|1`t-+zudT
zJX~Zpe9g;y)Dta)c;(2PG#UB=;v*6PMe4~?OO;Ul<g6JV$qzlEUZw2%m2L;k-VeR@
zMIL{0^<~Nik?TlsT1JL8dF>gf1&lZe65>BCHKs7MM6V#xi#T6!D-wtOM4Pn7xG(Ru
z(8*D=c`HDXd>wc@%MC{reZB$3m!O>vlpXlklT>bKHyuaSDFbDyBTHU)htt*2eX|WP
zPX_TIYD8vK7!O56td2=GVMs)(e(r>?_sKmmAC~D@$4sV+ogk*U$r@k=ioRYhLbe0Z
z4X@HXda3VmPg<Zs%tLxZ2*5a~SJ%0aN?1Y{OWUEV`~->`-XD?jfBf0}!(Y~-A!(Cv
z9wmfSMIJ*>R7K;ymiJdQR?pDkNS>Bprb5^+uE&l+JaXc14X-&_W57Qt%*XBli)@o1
z#`|*&0uIk74BvYrJ3HI&$k5fNu*C;@Zy5Eeis74vXGS>d0#CT?I^em!><DuK4WzQM
zD)x}DgC3r@lhfF>TQ?CMY<DF+vSPjjytHA_@N%F;$D<@=!#nMx=h(`&3D}kJs5?I2
zc0B=gPvLx&bGs%fks%BqfDnswA>4T?xU2x+Ly9+VR=I<o2q3AaS+jQSY~OAUk~WF*
zbH_H$e1A*y!FxWGsvU(-;7YiM{;$9BP$2~i<r{C^vx?|YB0njN61h%s{AJHk(kjy2
zh%ah2%Ky#R>>a{1a0#@>A}Nx%?GIvYg_0!NUnFu0A4J*u%e6W`5kL{)l7%8QY8_29
zioLsSv8L)HpvC<56UUFYZ0EEwpmW`esh9tw7)D+5$V;DAUGga2w@!Gz{R;$MpHi<&
zm%4lQL>ozhflYJ?%cLiO4peYm5}?1F7Aj8i=bJ%skw-NBDqlEFlTkx7ol7Snc5v3w
zYwa05e2<u2O%#eM8TA(q0(J1yD@P+U=b1kRfdEoYYg10}7SSkR^0W_w-osVEeMO-l
z3&{KeKu<_gt_hD2MUD7Yqug+8K-cQxO6M75gX+z?qvb(`Ockl$-o1JyX+L5dlU{{{
zYgi&R9gn-SX@p&Rw1V86>gT2{cRNj!_JVwVg?6rcAte&k&FcHi1l$Ai;r#Rq*>ku`
zuK7^V4tG$^h4o=tLY}m={o!_BbnKpvkG7?GNEB7lKUKY#sRYD2qMPCV-ujw-V@|4P
zdgI#43nI4~e(v0mVsh7KFDh|nFF^Wqb0J>NEzwtUE@TdNwG@70+4C>qbTH<h2N)3T
z@#w7f2+sGPGjK{yvJC|$)7QTED1m7EKS)|lA#4U4Z2%tG`GKvRaQerdCB0`Mj9?9B
z3Po=<5e*xce4y%k2)xJ6znqMrIGKC_vOs_}>i;h2r<0SDr`gfLx4pom@M}wtzK5mk
zbbI+xJpy@s^~d^0N9sJV70LtH)kt2Y39@$Bo4kNR`j=r}JWtBAu6+yKw0hHHp97;w
z1;q5Te<NjlLc-w|F9%lS0R?Akn*jx7U&(%0ke~01XKm}CJ7z8u4BRWp8`q~!k**K`
z7~h{8HM*0c;|Yr~(f%gB`MHg=vWx@e^)M7I!;MEzd42eN%llX%hYdj;ze`IK`&f?(
z#$*ZEC^{=-?uFEl#OrmlSvq~2)lOEZ*xoK5NhrJ6u+@k9QU5Ss{MGWeKf|3qpkRU0
z(vDPzB^ElRI(NkTSUPS3Qq?QwX^TH?B<_g5d40SBR)G@xZSajOa2UUFFl!@8J;Z~=
zlFU_>WD@ajNy*D0BOR{O;Lbi4_SIYhLw)rpP9L%tXHT8s!@bW=E}{@esN`N15e_zA
z#gAK+>MXrKz+$rX<jK3u7*X54UdKT(-P`!w5(Nl*Mk)I`QAJ5TjcTM)u?hdt-ri%7
z2ptC2u3g(TFu_!ECH~n$L@cOTO*~Uki2N4ByySrXW|ur(KWbzh7l#75XX*7jXo1OG
zxb?X+qmR({DJVfecYUw@&pzvr(gTz$oFWhU+hm<tX1Ib0YPZVigS;n&yv)4k8wYok
zh61~#ixwSt^?J<rtNL~7-zQFHyU_dYn@3w_qGmdi+ZL_ggfy!3S@}9KcvXr4PjUqF
zA;leRn`2|v24@2<NX=6Xdpa4s<<81d5Gd;DAHOV3?nC;f`RRfP`b&_4=~F(FSWM)k
zh5IHAYuB{6&4c!I>)JIPD6wJpE$Zs(K@=8*VtD)2gBv$)sH%P;bHcS4w>g6{X|x!=
zhzgkpl7~Q&??}h809;83i*B`k9v4rdGJ2W@U#ss4rZ|I(6p`B<b~$%%u=?=Xct4?V
zXA+j_VWD)ZNWB+Vu3vA+rVpww6IrGbE!<x9?iDEmWWsq&J<8G^LS<c`oN11cWtzt1
z5Bb`xJ2oi|<Sg~{6otZI`gFHEMxk#k>D!yheAPr@DPr&rQ-)X@IsS4)`ei1Z`l)a*
zeW&ip$<E(Cn+p_wEsDD3Eb!Lb4ZH{!Z&7^00wxXC?%1NmqIdI9FY8N9Xps5$mO|yX
zy{G>yk57LCN;r)?a6-&`@Cwldh|ZdZyJhh0cGaFtl7KWKgnKS?H#7i+SuGlM6s@qo
zW+q%kl)u#0n(u6LDK=J%a*QbPE8#gf2;0r^?TuE##zH1ZqJ_9`UoWDZucmW;)IqPW
zUY-)_;wdB@_N&*dE*i5y!^1=|M|xjyyV6Yu54{>4Wong#_X_Mm^2$fVI09meoC+ss
z1FgW*F>y8z&xeuF2-!|<*|3ct&-!`i9wmLZ1`~pMZm@CVB@o~;)I@^d{Q)Otii!(i
zrYJxu%dXVxM1kyPh$4*cZRre!0N1Bz%u11i;DY$@y4@h^pbsRv`0<;vd8;Nbg-`-g
zUQJY=E73z9{bIZdl105BsmY*<A<G}$100i%UqmzV3LLCj&TYpHU|38aMGjB-)A5|4
z4dhl%<(1c76s^}it?&j<6$wZZpf+in*D{L%l6L@dK|<s~?~PJ|1L`{jxP5Z>Pd7I=
zCp9hGRe5taFoDRa>eX}7)-O-#d3ODc2M^{@!Ig`ms=zM@w-k`M2j50bO-*)(b`y=O
zFJY{wkls_GI?!Lo%8Ew++2NME1i4g5%)`d}Q=l=Uze|{qI9O>fdjXmi9vzKNP^_ji
zdN&`c{M7Y4j#2!WTs@}p%O&|eVv!dpg-Y3vAYZB@{A)1LP4?79dt6+Qrg7KA$cj2T
zVbnhAt}LKvfE8iYWnPBd&ius!rAR%ge9HHj<sT>hvPLtxjn8mCTv{*h<mJ1I$05*v
z51yjSFVpq(Twrf{J;~ua+E5;<e9cv|)F1ULk#>(>y(Wtsr7DGNTQtE%kS->QJD7&s
zZ7_F|Ob;Lhb(fl@L}`u#8Vw+drpBCYM)~qUk%jb3K=7sR+D##nluYs+&Y<MAMVSmf
zdQeO#o?YS3@s=3`n#&(*pY-$VK}{GQZx$P$cDfN2SG2N4e<?E$YAdeJldWHL=^F`E
zIX%Hv?WVhjU+!K#p#zYi>w`@M9*YO=`(Qu|U<_^7%eO@~Yt~F?6Fz7xnXJY@E<Kvi
zo&zbjOr$ue_YhxFU**uWu2pzjR1>7G_Tln~K>A^9`G)bfKU0B58`5Q0!unF`cOtc{
zvF|-bjriMWyRAf}($$9K;iuF&Goee$L_*-TyFcEehjipMb8Q5gPQs!Opc?<%NWZqf
z{BjHvC~~sOj&%|{IUO1$wHubM5<cslyiu$IP|@u*j<h#LA%<d01v}--^Y86ek8L4+
zt9eM9uRcjh^pfIvc7(ra7IxVhEI{IKaF4)-S<U;K&6Nc~{kL=D#(TTJs!$N%%!5L8
zGg6A=QuJV7C1Wpqb$bSl(Q<2nRAr7_L}>&%41$PC_R^>JO=!LbuoOj;|NpV~=iykd
z>;FG~H)x<qkp`(m0~$z0NhK;YP^8(=q(K8MC54KLMxr#zUCL0Qlq@1jN|Q8@lthM7
zlu{zTkIPzXul@P`^ZW069N*)!9mo5<_YSxFzFyaLUg!CIKF{aL!C!Ly4pEj>e9k#I
zRg|0oH$w9Q)tFg#!$lZXY-NnZF?w_Nw+H|v5QG6lB5gLK7`dZ+|GVHMy_&U%!_#K*
zvE}o)$3n40=reR^^y-khgwj(_VQh3!0BPlrZwi=IprDI3m#Yf`RQO??3op4w6c8o&
zF($omMvghHB`{}!U5()MiP4lZHk$#USvECA?RsieZBBh8z&#KLVQkR-(jc1ZL@O+1
z%lrFdwQ;Ks6J0<edQ&iUzZAjzFOIX5^8vX;6lo@+Uzpbzz9os0SI|eyKyZAqJO`n=
z_!a^yE8$z6lgH#7bnh&q_>d}5|Bjh%N*!doL_H(jH6JA&?Awrj{rfjjm0yZ7gg-w6
z&IAo4riY<v(|WyVG_4e3-@>n-{XfM#HmB1ZOLn6@0elfW5NmGB*0B~j2XLHd=0^*#
zVgHY*(9DR11)B<TJYSU0L_VQ!@YX;}dx_OP_Rap$<I&vm!bAr96roBHIWtjx7JFjp
zs#V8}77Y(Lc<?lN!UyENTrDXgd=a|D%ta;)93mFKEX;zY=2RMi$vy{Ohf5s_F(BTH
zF#JJ@=p0s><O*vccwLB1(Y#IyB-+H$XGM})Xe>&)9yUKNm=_W}7Cd1N87YG`g|CGG
zypOh;Bj<<UNwCap5^<ji)_VCVH{!$yT9V!R3zc78322=LgLU&6>c-SZfctl`KgI%)
zfoU(_@<KEr0>!~Ria|>ng#IDPvXb#@<|Vpbgq7U48L~u3q5e;!s)6-?MOew#XGJ@O
zmdh*OxC!|FCoSyr<LIak|7TSG=UY>D{J)_5eDEThmIl5W-UwoxTK>$ntMA8|{GVY&
z;+4{(AtY7&oR<N8WFt^=KhAa%|NFnc?k;_Cc+G$R!@vLCr{iC=%D?~e_kSzy_J7GY
zZZ>ATdEI)&+^ml+Qe5Tzm!x(+JlY~$q0>?4EeFmFu+`DI|9YG0hJ$ujMxQiTIw@>G
z%Ng&?byi+qI(ziFgB|8A4)AHW@5bBtZH&@>UG6bx;KPF_irQK&dOg<jXLUoY*WG<L
zuV{rle$e6Z50B5K$<gmSzUUS5vG%`ulLF5*;ROG#|M(SVk^lZL@!$UUBVrZ)w=QB8
z{<j&LR^k8d&2XdTBD&i8NKB0<ST!xj|2D=y%kY2q#`tFy{ud>hR^oq~p=lZZmp_PQ
z_}^yu|IlU_pEwc+11+3VvbFQ(&_0s<W#8JfVPRp}mQA06|EDpjNgXYbIMOm-CQT~p
zRe5*mk%fnWI%kib-V>v>dn0ld9NNe?65ei?)9CdN(SBMru&H}T;^kVtd|cgJFs?&t
zb3w=wU!J3fIGeH<3vP(9d{7g`=|VdwzAU=`otKYKe1;f#*_xrRtUyc-0d6@Y|N0Q6
z8T?PVc-r|te_+MWszMOH8QSr?oFb2}v78o=mzTF!W$d5ZegAq@KF8#LK1ck>f^&K3
zu0z$Lub9w+-t_ghaaNNcKqASz_%J?V2#&1|udJLb|7oalH2>$<bMo$ww4VRhN8?xX
zX8!YgS1&rva$31E?_&4W|M|7tfPlZ+7qdP)B~SZ<sRW7N8?G@6?ys-arvJR^4~>Lr
z&$~8B@A#J2#ed#SO`GFuX92ubtVxI-{GWnle*BEE7LtmG^XAR_O1rX>?cl+KgZ8(S
zj1dh#<*>{23tz_F#CkOBan^(zvC}|H-kS!{&#pUd+BE%dSra$D9Q*I5+vLKcCt8@B
zo1gOdRjxZ~l#=JjQKObq)7NH<Yw)+R-Fh`!zM0+mkAUyIbT;CVcHM^cfnRz6RXdzn
zRa>fd^qvZutI-RiirgI|Mvh#@<i>OZy3-yo0^!K($Nzq~Q8v&2EFYuEAP%u7P*X1#
zjxOJ$Jx`)QkInX%oPHf18JX!nS>@=jU%#F`fBq@kX)=)|Ls-c>9A6orwJ7Q5V9%6b
ztna7OgyF!@=gsuaBs|Qa0YDeWl696d!NDJb;J%sU{P$XW?GO7iyP0J4cId2<^W%Q6
z`0(-LQ+Uc}IXR{L&xq|BlGW#sUIEEIMlX7zqvy|CZs;oo8L$+=sT&=e8of}a<xbQc
zIr7@ko;`ZF-rM?Lk9y>Bt7fjE|K;l*+j>>#u#GC4%R=L|UI3Vm`Fp9Vw{_gor*d;n
zVm2xclxa79Mqa9U*-TP#6szLnfIf=0jXyKSU8X;br*J+YLI1Hq^;Eu>_;A%X{5wN_
zJv%?s#^wnA2V=pO-b^dUDq^hVOQ*=CqayO8|1>pLy{L)Uz&9QipsbpDOn1<@hA#)M
z-~>NvY_w-%Lqt^6{qD<8_|w^UmIj?fZFNc9P`1!qa3v2ua?|tpwAS;uc<>MPQ2;&|
z9G@RBe@%kAK)+p3_mmC~sht`b8L1K2gV6A}N6((a9d7S-SmWq;7kQFv-uM67T&qS#
zG+%w*W|5nE&H|TdmpH{2ASCvbMny(C7yC~>mz->fdDg4^Jc-0T5prM&^75l-t3Cs6
z!rD4VmG=7MnPtL<$S7z0X)8;-5kH)=t9FXSMPL(rNYZnc`>SVO{m)sptFy8hEgA0~
z&y&kvcdLCl8loWy#Q`H_o&#o;7WHo2bP2NCps~LCD6lI6mgv*6lC`1uWr&qQ?QsI=
zc?r+F`=~Vwkm?kaBq3HT4V*Ro-iq@l4`-;jUocw1!q-GH`r@Gh?J*~v7ycU(t{s>b
zDS1^@9nxq3DfD>wV}qw9o2;#^9{~t2aDBN{pW#cIfgL2HPZ8Ae8IzL0l;!FpDfM9w
zU1*!{4q}e-HV{tKdSGA9@0-<?BcFeIeRk!ZzhVg=zvhamqMfFSTd}{gdqu21oj&mc
z!%rdea>LEX<&{(Xpz!85r_Z*w4uY*J@f~pLZby%*9c;wJO_##L)KN~|7YCOHj3i>J
z;#4+HoYLQs=GC94{*5%RX7GoG$LBknPuDB-Hu!qCpVR){>u<}~itWMCEe&a`4G|xv
zrUU!&5g&%n@qTFSqm9XjkPf^{5O^^{<cDnsoH$6INa*%KV&Uxm3D}SEft_LS<#vaK
zt3Zq4_oi#-ym+w;=Z3Xo`u%-!$4?GBD_hkV7Z+FDv*72X9zA+oW^La6?7K@jfPoof
z#fi-@tcjKF-_q;G3>5M@>)+khntNHzwl>oy8;R(<1VrG)P$-X3_G$)WDCgMG^~HZj
z@yv*oufM(SDsdMh3f^D1@+gyz*ZIoqP%(;B2Zp%<v903N){-Q9qM}&vD|V^d-_1c}
z>il%tsP`va9!1#cNZvdc>REeV1W;k#POrtnU!!M?{ciOcV#mSo^YtR<cfJEY@7*og
z&<WAjLpYp0wNS#35l8HCgPzw%KEB5dEgfX{678Y?ztPNf;(wyq*c`*44ibwMv<KcJ
ze3ctuhMyjbB59mxr9zLc8Qe~iy8uGE`euucOK8MMsD3o&keaaJVb<HzXU_sPFI`t<
zzbQ^{d-EKu&=EH3a0F;m0}Se`ZixdJv1)a0OkZp`TpKVfA7I)+@2!{ah!LN@U653~
z{O=>rvc}ha|My-CEPegz=Aus<Q|cD(*Dnd?;PJrT!<AZD$auL%a?lcr_K$Hc4?A*>
z7^3I#+}b9LD1iLxlHF*@$c?w<Cl|jeXmHhT{9u!k$)#hyu!wtZsBGlDkLqHCTSeSn
z$%b~Ac&)9jF65%PH*3b&s|%y?a#+DC&UyeR)EznO^vC~rLS;P}7}4DQV$U_#`w9(p
zWBubsg^c~Q+lwu&&*yDgE)~4}?+*3&vZo@Yu^~Oy{d2+qT45eud2Bd8b%|v4XINlt
z@h1A!LL5Ej;l+Qvik9brqRj%!2ZS)QiISv<J9qAktftBH+Q&csU66`y>ehDA8^lhz
zZ`<IEmTZplm>>BrE~uKq5JqjkC-Kt3cIH%Tl}&vr-3#jc7K?kDXIjnQoIR|&<hU4b
zv*yP47h)rt1~lSN@DLOE+W0N6d3Lan!Qxq&W^<#}bA!AIo7*h+3QpSpm8!U&2+)Yh
zNkA=J{eGxtLhu;uzhK;o&mCW*@n%?iNrnE-cHIL+>jqR&dTi+__aQiP4m6u4v3g^_
ztJmSSUHU6jW3}N7y}zb<1U)D#Xlq>X0L9T(w)&0xI?c1R17Dx}uQ;_oigR^RNz#jU
zt+7WijT+5mGBv=;#-{XA;%Bpk3m5tvY9?8m!$+89Ya4<`O}t(W!o7yUau$*bLw4hX
z$%bG3Ng>9W!e|~s1bQAh;rtV0upHk~+^_dNIIKfzxRgIY3?1+GyRo6N@exl(Fmez_
z#UTylA$hBxYDRIhb9EI|^W>J}<>i)>_$H`DM}uKd+z$k8cPmH6F6SfaJ2=rr4`vwF
zE@{97s{|d-(EUQ|l+kPBf)0$$lb)S7fBtdqhl-k{zvGj{UE{dbwi|bls+}1ANbk(R
z@c#E0Dy(SL?DURY@_^w`<n2@puIssq=l|!&OHp<jl95+w-YljoVHzPMKuw59OAUV{
ztZwMOQXEk>kl*%|BnU1LRcpT=L$Q$=c4W~p94ZXNTgEcw)U4_H>KV!|Q<)xj9BsmT
zKg~;b>8bhiwZ6z9O5&bQH%Aj&{dr@`7!tn?({XCS8(FP#Yo+^Blqbp?^Vc8MTkk-a
zcCA|5!fW9Qu2iJ|uRpl`yK$4onnm7R6w2zAo^Y8i9=Gx;?s)9+HG*X&xi3-6o)X7|
zeQURVHA2gyc)7~VY8E4?;Zk(sgG&m2f8JPI*wHh$<OD5Y;xZao5>j70z^TE>^Omp|
zyW4kHae(=ddngUAZB8jEDcRe5oS{gVppWB^l6EaJXQNE#mcT|-lhtv5T3zz!<Z))D
zzMnkq*OQUaZO1Qd*V{1Z;mA)!`w}D`Yh51g8JZkSGlPPQlate=11dLO>HL#*Z)j<K
z@pyEkq|7V%_oua`bm3~1AZ{~+ceky<BUScXbBSw^NSXBMYZGac+P!A2l@IdT%P^W#
zoZf1DfVhm9r0|&MaYF4SZDiHCiw}g6Th%@dX$TarMoZeffZ{75zgLS>JNVN2>W8CB
z<!pZ%k+l0Q7NV5UT`I>qZh70nt<Xp5GDg(m+IYMXEmuc_s_`Ah)mL3C`BgG1<>j&+
ziwFj&GY+GVC^=cVWjS-g{o(e+Yyvk@qC;x5%`D=A@168JMM2{FXX58SHO0{_!8@WD
z9rutDo<@AFg*UDB8cjAFV(SK;JuACmQ+$DkJ5-?c1N24r$=$NqicKqUwddL-ZQJ^H
zN_*V+)JMl`TqEK?-+J3#Fr^|^kgTb>{l4WbRJ8pL7+fBBxTgH+0N(8U`d7kts`O0n
z-;Q7GTej}C!2*+!0A>;l{ydx>yAvDVxXr~WD4=*p?|M7Ynub0nPJb<;n{w=#v^~qs
zZ8LfB$H{!xjA-O$I>cK)ckW#Of?qG<*{;pJ7G6Z=J{Jyoc8Iv9dp7Pld+pjt82j9l
zPyRWWqg$$5pPo1$x_<xInq0h&M&A24-$kV5TYlc^eQBMJ#BQS=Y2Z^@JRXQWS$({q
z{v1VP?lU5zbE=GzLiH}gZ=p=GFG@E+1k<kP$O{iw@dR}ovrZe31(+^s>?0*1)Z(_;
z^t8@^)K0(9yNjP{wn!tH*)g(o^`B12P(9ob_|3Am{$7(jL87sSqqg?Wza>$xSqsZ0
zlEmyBw9(Sj^A;{V`D#t#v<Zrm8r7Ud?oNj6MWt#g=4$%3L{Xdj%qHd6^AqdR+NLM1
znDCu#mDW|}xmxY>Xb)=zE1GSGBZzV8YIUgCw&A@k=B>dF4fkevTu#^L;iMPc>M&;N
z1jW-kx*2ZSM6z+^q07outB6;Bubb<^0F5mBho{Dl5l2G%0Q1zBpIARhrb{zP;(QcW
z&ICgi`<h;j$o^KWSP?-$dt<@779|1_YtQ3F;*noUC^>d9c^Q8py{O-QJ=Mlv(T#sD
z{4tt~Z%+n7h5Kk~@(dW#Rr&4<z9e5ciK}z|Xy({RZV_KwFO0~K2mJFaHyD^jj^Fhx
zFYlP#(4?4P&d5#TL^6xvWv2hutA!3ohQpebD@D4X8QjKeS}y{NlZU5yz^Y3L{c%#5
zKbD)Xa;VDMKYhMm6!CadJ&Ea3bURL`dSj{jWfL{BIPulH#?{*=Mt2-vM@b*~-?6aH
zYP96$rFC2vrQA_2+6>b%<iUsAsY*@<G<+&(7);+8htfPiO{h!fE<YKBj3+wno@7b@
z$<XUpCkm>FiSO5X*3H*OcByAumzQ&`&QPSzoNvEXP9F#((-^rd5=OOqBDx%!K6+54
z+hcbf?)MWLvQ72B-0o7H{Nu*j#LCv=>z>ebfY^HV`uu-4Q~dcz@}H~OeI>5vQ0pzH
z`&DedLu%rgh#~>>C5-pvW%eg2;c(~TyAG%Dqe-rPxOVn1dCA)AU+(m*P9N$K8;p^6
zYCDu7d#c4{c#iNk=KU#AJm{C6cv_MxLhNIYnkz?%1ILp;$K2|0U!<bCy1Er{T9S&*
zLsROV#hlB-hY!D-Ljfd2DZT$=j#M>Llxa5~x!!6&N`cLL6yH^f@Pm)HlnmGZ5Prt5
zmi>_Lut!Dm=@nfHm!Dp`diAjrnm?P*B<EAPlh2=Y&719cWC7=UNJ{-zWzID(GBft5
zqF0R*2G&j@UmPblB(dVMtolFEzpPuJ)wT{x(P}uonKN?9-Gh63jEEGws76XTi?`vB
z5;B`Xl&eeG@D{UiWPJ4iY-z@-RUbQS-KR44*R)EpW)Dv24;PiONcc}+ztr7e)4Jm>
zqKp@}oOI8SJoN%i$(YCN)`Q|!4kk+ZW#BsFWLWi&rr!$)i}%7?or}0a+w(_afm8Ll
z;S#$_*KE@P@4JNjG}abb%VQ)}wyDOF!1ZspwZ3*#No!7wc_m{f;sGy~X9f;(qk*;>
zuMTmInj)?7b76y2imjcf+gh^rF=Ad6TgTL*m4pk+v8^>Pf!;{T7i=o@3EKM)Viz+R
z)M@lyDj@812BmMw9CUsO<9HRPwv@z8wpsXxb!3!nqqQSCD5q;t&9jmz?FR2s+3cu2
z4tW~57HQ5s&)+$oOG&}g9|wrymWwfQL~F^bwRDT2+@7a>fN4Y`lSuv+HdHagqoF#a
zlxr~3Sh$RfFR!tuMC{2Y6U6(%#;-Q9;P)DtrxMAh=OP6q6Hg4TB!!AYJjh;My84&B
zF?|gpcW`yzi56!WyFI=B*{m6#YT8Lw3-Cs<@kRkkvjywZ6-_UvFRO_5{Qc2m=wE*h
zG^bh9p?;(TlKJk7uuOesIoX<QIO`P8dUX72*ZBd(;=Ce8KeBkg{<*XWNv=xcm)?#3
zA1@^i5g95c*BPv$WQOOjS?H|d=DS>&AAf06K2iVm=CzV*k4bXA5>rBhhhBfXJ&7kX
zEkJ-d0vw1>{(e#I9;v+xF}0Y&GtyXajb0a5u2^voEGaub{{$J40U=Y|mnf`G;+3Q?
z(nW$N6WfoOO_s6i_>|jGG&&OI1pN19IZ&JqZQ4yJU8{Cei27k?noD9@TkwRvQA#fn
z&q%23Q*}W~HnQ8oP{+=_y3#rzry%LlS=pH7dS$0~e61v*uBAIKMD6G}Pmd-9W8>>T
z2uE+OJj}VogewsZ$lhJZVXnD-9#c>|9eq#`jj~r?UWgwdJXi>aer{A0V}8Dt#6%Ir
zLI<AiZz@vTCnic)^-H5{f3Ni5IxYe3F%MX<;fYB^<G7m7V>BW^y7&CqB6qy8jABcz
zIXBnn`nBq!WjA^JA;$_?ZObl-BT{#s-Y$EmbLy|FcNX<?wd!O!p`UB4{RETo$Goy%
zC3#jACA-+$?JSw{b;}Efi~7S$PbDtD-r_-F#T6$fF;-$mcMUXE;>*7esTbXadLH$9
zOzt@VI(+v0dCf6es;a*_KF!IQOdf6T<g^dK>@>$FvxDz$z6>WuW_Iw}9d6LFWy?MY
zv>jjN<!Na5Q015MIYjMAVHNVS6<_-9E~}2mjnUGfjNU|h2Z!b;3OBjC7a_x+GIgr)
zlqqcx-nT_qyM_A}JMx<pS)F?HnCJKa{X3JDhdNT)QRwXA#HSS$^k!pCTDGh|Mr557
z6ufcQQlt`A+W#@{swR!ZHKwOV$;%HC^Ma%yKj@ko68FlTlBe+V=OJ+<BKtTD9+$f{
zeFQ#*q|e~N?Gf;M-MBIK+qZ93<Slkc4zGJQ8g{Yr-94q8rjqsbKff5Ih)KZbDzd~!
zFB>jZ^`D}a*<t(c@C&Hrb`lGkN%-|n-MhC{R8&--Oz)0y$Q9Du#aKHTiAk1@Z;}!^
zBfbAsN&loAIP-weUfsG4j2~T2_rx%i;3qJ)zFmrk{w=yYjDLuJBR$+MeedAvHi!<m
z4ht8)?wm2+*jRCZwzfQ`P~*33F_4_58~^&oN)@WTB{hv7qN3NKC6{;|KHL>y>7$cx
z|NfleMyUG>$qkIsg`hAY15=MK)aqH!pPSG}X>4oq(7ltqyyAcnBNQ39tB{P{Mb*1>
zIX=dCe}x@=+O<ST`j-}f19t1qomR*q%U)dUne(YLJLvZ=YfD#&vGMx}n=O$Qju=<Q
zzxpr0=hKLr#y==Xrcd;-4?NdEWknv2nYp>#n>TNAudY%OYVEA)HxT1(zj$#lv#REl
z#e#6Wh0kcywyl3%N1OKT+k@e@MP@nGLS6M&JH+vA+eVIGB=h-Q*OixOR?SsrUv*r!
zetjyTNW)+{J5YT6ssw%ON^-p$gsk6y0q5^}Fw-vP@?|4R&a6mlP5h>BW@Q~*CFOx0
znqq1?!O?Lba{Dh;g%f}N{P~uM=hJY25$cO+0_}#=ir9weEEx#6frmQL)W3^3JC|bu
zG~}%})5<e}E=nINfb-gPBdJef>5PL+Pz6)l$Vj{Zv+=(O#1QU@Ck93ep!OPZXn5O!
zJo_AAc*z9(KhWA&@dt0;xudG7DF^&NOjp-CG_)^u=6*_qyS?z@Rl)sh5{HJ3Dc`-j
zFU?zw_dHFccVwTSo1TyJMYPr9pxwJQUZ9kI^5-9`mMmM={BGUxMgpz#fu7n9EfI*e
zlvvD~b&DPPgbggaj~{RPY8bO9X;U+LBa|5(c6VRr;|%z-I#Y*)b8atw#!!>bEaC)B
zu^kvbWIyZY_IB;t$1)RvbW{a6D@4ystp3cd{UbVChS3+U3SZGpaylZy_xg1`Mma3J
zXUS_=E{(x{ub$VHeC;YtasRR3l%_nfWVxVs>wi|+OT0)(5MJ*QEzDzwXlb?M{7;%R
zsg=ZzOHPlc;B&{U=~s-68$HAn=0E;O=d&#7UrmN*GG(guk`6m~v@Qn&1HBR5-hB0{
zCrx|lh(zVSV@cAB76NU2iqws#h*t^e5kH`>)U1+ZA?*`|<FE;0NfeeXUfeIAA@_x<
z8^p(wnrUGOHicn7jHB{V+SsFecY74zMs-vt*J)Nr$Y^>oUazq|-XU`?FKLUmxdXw?
za(m>?ovm=t^1|b$W$V_r?%nfk8)<B874eKQjX*fJDN^N?ly;FipN7Yh8lv_VyOq0a
zUD2KP>LyJeHUw8d-|(4rKfm;2Z8YOhrUrIv&w^Tyq}&2YAL?BL#q-y{$;$^FHdamL
z+<9N4cwDe>p}FoIN{!QJ&h(4(tot;oxTNIp{JnoK;<w5phYsz)xJ5W!a-8I?4>Qn9
z)}x_zxq)YcGD>51qm{#1e*C={KhjNSNgE*aZS)P0e{_{*v}oQu3*9zYgfbIcZDt0F
z7q)s5eAdi3XdaUI@YjqWQ#Uc<UxR|a6?DYp#@azm{E)HLJSL&urk}E3T(4feLeHPK
zk!sUC(t`G#(5<*J0pOm=cfi)V=^=Q=!%CbXm<Ka0N_ysu$pP;4cC1%!+=?!^@Pwaj
zL)_EY@8>5As<<DL$DZ<@Sf@DFgPq0L&1UpvTFmrr`qTbaYMp(JUry*GAM^r<VHoX4
z61U##=%>NeDYQ78Z4j=re&far-~ow*l43Gl5dnm9zN7(n@80$D^=-Q-#iPB1%WFK7
zcOpvK62_lgbDD4OLKo{;1NWMCz)bIZ43~dWI>gX$QTWfZp`qL8iwJy`d-Ukh-Fx>c
z<gxBMBQ<`^?k`?7^Ane2%(ZKGxW9~lFvs=Qty?W<owJ#_gtwgO9}uveLI9klp_6sj
z)?VQIH~DZHG-UYg7snVp;MHW~pko`ZUg6>#-n5m?E^sTSeWKRK7-3-3MXjo;5y6_z
zVn2HUs03|36@x|_U}v0n4P|KzVr?BZw3R<@rEfoe+ynGxN8>>5HK(35$nL|fEO7G!
zHcRT=yKOj`!N6(ylaAX&jP_j3G>1p&+$i#vVZv>L>}+A+X>LCA69#UbF@h1XT-tb+
zZhHsvbcWl?aCG~dO##CmL>S*mZ@2oSrnB_k*OaU<;=PTo#EZK}Q@b-O6nR0mp?%-q
zKV<j|^732X(AX1;qjV@<vCH@N8gp&xVsOec2+NJ!xy?7#)i@o!bD^Est#o9xv88Wo
z@Rx4XFADooAKP%Fa_y<8sFX1Ui(5P^eyuGp(v_kijU{eFFCy&+J?L6Uk6ZDy6YiH4
z2b=EIh9Fvj?T8SOokrQ+l!#N!<X2yR@s?DWe$|m~Cgri46(|rDKL4nx*~!Cp?9vn;
zBa@nrMII5_=M_zGR!s-NYOe6=jGKSvTY*x@9=d~*JR29iv={3rzty$t;CbF1dmFa-
z#Dny0NFF-4e0_FyHe<}T>l~;}pqULf)16g8hYrnpr%kVh$>J$$0kXRT%c}9gl?@LM
zA8%qJ)4zZJkcuP@n|ExiHZbBImO`;^k^ApoBUs$lix)4})7S4iW=!3o^jcfdiCZ{t
zpwo!8Vy{Oo$bR}%d)b3-G+ioj3#a`is@^8`w!o4~eG=jOTW$Bz8wO&Ql*QQW!es0j
z#YpDs*k5$+C(euX>rFLl)yQXOl}<BLWwNh7AIx&87%l0za;2<OdCJhh!F0TH*ACOs
z5tGy}-|8#=@~;cx3Z@cl^ma{^4PR;*qxumtZ#^Cb&fSmi4%eb9VJDp-%~+<itz1IG
zMvclK*@?w>k3zKzV2w0Wp}f2tk;fp6MJdV8?alh@5su&<eL^p01&%n^qX}zbcT;Gz
zr<nNrL*Yo*0t>1y^i0V8NWXK3{*>lG<u**c<jZRI)S2p1Gv4^z>w`}&5Yf%5bGGN?
zDUDl0wX*L;fb>jUut1rlZYKo3#u#1kiKLJ3&^SEAs^tYDEO@5nr6TAqg%2M-NF=_-
z+i5`!`uNk>SRMPt{*e_IsGaGCV+oscbmlNA{=~_XI4`eM9^=}MCeJyEu7iPOy%%#T
z+p}9O!_LpR2oW}A%9KvY7^(zyl@mM2(v-CHG=&cM_0Dy+gv7$q($-vL>XXP;tn`Z;
z-^9hoD}BEI;DI;kFuf3g-MWik43hch(mAs(k;ZJZz1{>Fjp5}f{mwQf|9rMY{d@_(
zbi2T_@nT%A2td0H2hd;0B^{RqxS}(4>eS5d%3M&vG?iv`Xw$|kK7M1usU5qgSmN*`
z?wUOE#9Q>W#Nx16R$hM3VA8~iEx;Wz==p5gO$~%X2ap>@6&FiVSPP8c3eB<ETM^rI
zI)aSn&FjIVl~++2l0P6yl{`ycvFUOC`G=-xFpC_Y%>7I=`JATnDQ~$#+capm#)xvW
z<vc&0NOnNO7^Ch%R(s5+%Shzp<e=VVcms{av0@42x2~aY#pK=@%7;5#cN)bDD7@v>
zJ@E!2SBo-wWMXU;_~60Ry%?Wa{oX(>$mKn=>?dI@jo~A@jbbwz&|#Usn7_uJ9(5%?
zK7&>YpKC!uip^WJFgc#aC-Hwrin)${wD71XxgU&{X(s$a9juymS`X{MUJ~B<(q+q3
z2Mn0(m~&z7EZ-+hhp7MWjm9fiei$%jt(a<lasDo1greD0nXdt}XokOi@<`KeKU<NX
z&;>}ROCA;>Sx=rs9CTT+a%CEK2lEb^OT<Nm5zI|0c8%gKjV81cRaIBt0-xh=Y@^9W
zO<jEgxjPS1oG@rxOD3&!KJcls@&E>%-n(}7GcZsF5zTt>V(0$-9k_~jqjgAq@Sq*n
z)zBlQ&IDp^(N>bv(a{}e&6*_{kGU>xv3uwb<D@sQEJ&G5(GbIcC`S+g<&R|3RbRfO
z($pj0tJl77-!_z$m7OLKi^K@3+f3Qk)paBtIP2+G^7irR+pk}XR;^l<<tGdW)c4_r
zl}HvbppQt@;_j<w_tMggN;ZLbccgffNVu}fL|)O2V&`pT<<K~ig7B)3jlaIHIx*J0
zD?O;=H*C<Qu{QML#eIYr2f91?+(Ru*9#vGVu7_>jRP}b-x_!uXWOH`=`^z&_I*WK{
zRJ7>&x@M$*Qnkm$#l@;ogL$cLtm16FYuo9u^CAw&e!}6jD`}tBlWuH+UEJ|i)tUna
zw1(<RBjYvKoz8~FXJ#k+p6${cD-qH!V<zPe!vM->q{6hRQ*UGZ=v@P9V?kGr&!gTd
zDjjH-UXbF^3w+@giLQ9#+!}UoZ*D7lojA(M+B|uN%k=3T2+^V{F>w3Zk|p0|thx<X
z&niO!;)OPvFo9AL=K`s*56!`<(LMki=yg=o_a6`^J5bORxwMyNjT|u|oze?1p}qPf
zLW@-`hOfP80lS6gi=_Br_gA^Oef0FY!F!nPZ^}y)!v0e?>vEZxBo08_C9IIl_KKI*
zh+?<&?bAmhsRHs_ObM^J*|7h4QDMplO*b=>rNMKM*<N>AcoWpSX9gTU4hH+PIezD8
z8dj|mo?7ADXFexqb*Et7k43SW<J!Eqw&XZ2zIWFBmBM+~fO6V7IH+E!<mU_Dzn2*|
zZXBvV#W8EBgt2~?kaUJeMBLj~M7^}m)s+ltRB_GotSql1N0cznEv^Y#j_vMGy4oZX
z-n)@%0eq$Rs@ZhvR>}^(y!mHUU+|?J1P>+mA=o`_+PqmKu$!!e4Z9s1%Y$3yS<u`T
zBQB@oqdJ~Cb!y$Zbxdvx4t`6J*Ev8blM09`k$|R)lD7EHdQ62ZFE87$A?~2^{6MlA
z`-b{jy>)LTes%H7fHdEhmq%nRFDD7MqoHrp?_XE*lYu;LLD?CvAGPX5J9~S3=K~Mf
zg?fc~1NXry`33apJ$AD<f#S%f6Kv*gJ$k5)9^FG?0m{ZPJ_F3-^Q!^+ml3yeUP)@%
ze3&9`)Zk(E%`v51x}W5GE1&D#uHGI4NAAb4U&>8yG-k+<>7SRifSO9D%!r|{+|uOb
zcHCYM@CdqqkPdP+SRs-RMzvCE@A-88(xv@$#&!^4<nzauR|epdd7&x+K7AkiUL!w5
zYzxDV0-!<CR&~_a*0wjUL0K4%Ixit6HmXqEXTW&-TswNSyO>G)CckMb1x6LWy4$pI
zEPcpO+q1EJSh&9G>R}5qxEMR#d1SkHO2}-YC3T?vk|o~!l%ko%)tH!@)K6r)_gh+v
zIIY@UG;>>C4q<?$Pyg`dqAHzzX~Cd4WK|tUjf$5YTk4sL9CRI7ZbI8gN!6F4$&8py
z%ggJ5drx}JjSc0U8410le|To(rQl=7nBmbTy~WUN9R1U*lTH__rTTw-P?$Px+IwF8
zCJmRQ{v81z20qKl&riDB(z?%3xAg$X>eHuQas;IlvpQqpA{@F{ZA)sI3s_=@rF?qL
z{8$GWVZL&-ZRF)k{?yu-8z0uHa#p|q+suL%O81D){Kk@E-mL7Wy?fjJtgRiip#oIP
z&dF)8nZ@8a_Fy_9BzYe>ViWOBGn2UV1#1Wg;J<Y7-YE34Fi!59dQFdB+hCogvK~JR
zTl1mEFH)Rq@+L&wQQs=@A==JIkP9(oW>Yil=lh5A9D;_^+6n(|?ATgHW~*y;koaM%
zI1K?I?%w?sKcOP(-%US0_ac=K4GWW@Zo&;qde^T@$V?-n=A?VOu)n%}`}TNM|I_GZ
zskOW!A_gJI3F@W#WWWzl8*u?>Xvh+H!);Rx1)7JF@$SV2i$Gjn3&EQuUO3SBcI|NZ
zIqjaYE1zpfypV(8nqaYJ@vJX%^qWAC@Cq_QR7sv~J`q4<ftDK8N<ZgB_ZDr(YAr9#
zkMBTgWkOmv?p|%<LwfCZ0ltKS!#QT3ZHqm|Ua|n*N+I7N<V;?&L{0J*cwn82%MOM~
zJc#A|Xye|=@bDHAu#>{KZ@mPv3eleR?3pn)4o1Q|@Ki2BsHFGD2P+?gXm)Pun>Q*X
z-2xCgc@k2p%nN|39}f&4itu??BeM#CMnyF0yoTU1Y-y%KyB@l2Ae$$^Sjczo+#I(9
zt@+p5QG$SVr7{`&0O-?c3U{5N-F|-CLG6&3_|zdr-62wG3|JL)h7XqqV&(QNLSG_6
z0ozowc*LLxk=nC+jVh=)yNz0-EN~|pqPw>5p?j0NVjUj&=&IW=#qVxrW*RmnPbmE`
zYPpydj4P~kWeRm(Dz7OrZ$?H-$X3!xslSvw?1{m+9hQh~+O^ZteS||I$@)%Usv?-6
z-jdT?Hd5K+**sjc-=h@_Qo_QPMr1Vq>T$|+z#E)xt=GJNiUA_#lQNxsTLKvE1nPM3
z;DMc^<8Fe~J0d!Mf}JiEbRWK~DUXPW893{Lr0QGwEZ)uJ;Gr$N_zU)kckx$iFSbze
zy)G?VwMt7*m%)4d?!9}dXj|-=cf`5rs$WAr7=x)`=*4sAb`rdA<>xEgZuuh9u3fuM
zUAyiCZYm@;>7=9(98I`#!1uh{w-Y9?OPbfFT$BZ=mVc765FnSi!~Q2uXywP_WV+!~
zp0%$f-}*f!A~Mo}yS$9K_Be~Sl;kG33=rXz0%4H;Xc3+Qc2OQ1%NU!OP=$x*8j@&D
z=84<$fgvC}Gdz9*t10)X$8@zB+@MKGN$Y5A&rjZ(cz2~ll(Z<i-j<cML9pkOQ4qhj
zH#eO3wF3t_3Wv3-FMQ}Z@oRcbKcTmc_3N5oe&g7&9?A7z&B+m4@uYXM<<d$AKH|^r
zS-2rgD&0=!btuG)<Fjyigzn85xHo6syvz%m$6KkeW;+p`wV)Gw(B*7DA}RYx8;~1s
z{_Ye2b+;|EOSj*P5V67d{c?hy)Htzz+9tywLh?KGFs%Ospnq|@5~sFgcQXvTa6t>Q
z;z(I=eX)hfw~sj;v2eJBa#y{2JxCHrpbUSppV*%wryKv~hdsZYm7T4z;Q{YizGqK4
z3EAo${y-Lf?UucXJJcVk&z>p3k)*NDeHLdv1$t>FAu&zk>Xda_h7#Mh(ADGnz515p
zu#ZsIcW%j&cj@(%$c=Wh1>9dZgH6LoG7mBu8<Ckpg8XwlKX5#1*=OyLhp%7v0?w8i
zqQ%3MdN9Mp+kzAvwRRkLH7-tf3&?+(`yy^SCQc06aDz)DjkiN^7B9-R>3{NMdv|wt
zrp27jI`NyL$w&VYZ%mcMi2_n;h{^8+^7$q%11htPoZJpF_V5`V%`bdg6?W;;B58t+
ziK&gHj2HGXK`W9#mKDY%YeDC?lEBP$!HuAc`n+SHPHblg{+l4OKu*mmOmS0d%g+sY
znly*!fc2((-w9Vq7GNscJb3s}ZtVH`ghHZOA2qd>M5~x9S0;k0Q?JSH+lmvU<@S}l
zG4g^_MlQN6*+lMrk<Mz_CM&Zk<i|D;u_a#N4woY%SNbdv^n>xY6?o4UA^V$%{nxqz
z9GC?{*OYL6t7L}AV2G3EXk#`tHjI_reDXwIye_bNpmHycki6oqmpwTjQ`9;yS+Yc-
z?t9^_)+9JZ1ZT0YkvAV8+b-h&GCPE5_!DSuF+82%ev9DYH`PMstH#hxZf>dkBhx<8
zwvTYb<jOc_jiu>18B?{+7v^1+1rghE=uj8HB}>G}`ubGYt(f<@pS<xFl@;ZX?8zuS
zRwF%G3D46nyaP^aA>W2xZXw<QX;=~7E=vu^ZB1r$b2}&`;2MRwW5bfd&Y!=Pn%a!p
zC7lYS=?z_ajkg1QZFfhETSC)US$SY6;=O9Z=s~tGDOMo5I)J{BT1H!JkM!}8fu|I~
zzv&u=e0j@NDwTERUK^^D5Gxf?8)p!sI&PcB54F2+RhY1F;SFP3q@7lq>fw|%zKun(
zn8C04m<1Bi^^kl#NG6%>yk`Eqd0ovcf=uSm?+LKvC$rFq#Smq@oO*cI;_`A|u58J8
z{Hh>hw;8pK%!VNL1`TWD#2XU(*CJ)q+Ba`0B#qp$&hzPPRV^YOPw@TB+RFx_S_OiY
zd<|Gd6+E}%d$!a>jtMm;j^nocv{?4;(zg*hC@gs4%iX$npI~DXuU2>@ijl0A^WXG8
z{uL7uo49*+sbBVt!4GPd$?WF6bR9c^?F^1%YWv(`cWX;3zD^5Y2{<tDw1#ko&m}O%
zY%2toLq+Xt^qZo;u%bdMZq>8!ZTKT3xaeZve3QAhX1{brZW<l{{NIHWq$Z&F7%<59
zGGf#AeuDS1^5_k1tRst`zsvmV-ta$qG@|%!)350X&_QDWaGtkFT<hxtd&yci#~`NL
zh?NQ?AU<_g*4FlG*6gRAbie^HSl^{T@P_4;Wz#}uP#J>dYlCAun>G(phrvYdc9Vj#
zf5oK3Vl=FH5u%DO3P3x^ONv&dPdgbjD5%$Z1cHj4LsSVQPw<upkDa+fJ1fO}=FH9%
zdb_|kz%$IR+fwJ#Lo;~U<5T-c66{fF{DfXKwjM1CYK}PgPgaW3p;=A9g2o-fn@{^V
zuC@*vH*O5OEf^s&0mbq0u@O<Z`!d3}P`TgC&Ymgqzk3x&f`bR<Hz+3$1&2s8ij-0&
z?=EQv^x>VkH@&;IgLk;<xeH5f5_jb)dvYA=(Jnb>oE*M<f4*Tz8Z@u>D=wd|)~5#h
zL9B6k`dqtUmQicHRPzvSAC`#(wxuewHt*eDq(lbmvF+TsWwBd1aRbcCUNaP=ym|e&
z?3`3AVN41Nq};bn6ms6>H$A~^x&)lwmh@vGfhto$Q-qM;iCgM_$|E(G&!a+2gCp>6
zZz-O=!`wM@c8@d$EFzNk4D2R;SpMFvxm{FM^%>^S(brh@7lU|ilSs$HfJ5}mFFWq<
zzl~H+(QHcJfNQX0PlkK~uoOfFmwBg7oxC6zZoPcj9TM*jnL1<Fc2GObij(jF4#mXA
zT3*+QloEr6L0t(ns|mBDfV@di5Y#0&rV_uqGcj=t2JOD=+1u&q_6XsnvK<v;JFNpV
z^?7pu@9*nd>qdg*sYgl<o;<k^Kc_x@`-bKhoo+k~%+fb@n3xj~gU1ai_gieJ<|H_)
z<J1@fKG#x4rjWa{8-s7M#<8`8+xTW_<niM@$^8!=JSZXQ54-bq?X6-fk)cTaT&Rr}
zFt^AN#^=U^pqA$5Ha1E?K8ktNa>9>wrbBIXIfE0{)loU<)Pc6oyS^1j$1?r+jEhhb
z-7rwi_rR)7aqCWH#tfvDk`X1Ys}qHv%8^s|%buR^2z0By@c|Df4T__%n}!inV#?eX
z<mIUK>2o@(C_CpaWCP&+qRfHgP6Dl4&fh%iR(60&Kb&kr7vplJ5kCVO+F0>?G?NfM
z=vQD$Yx(}wwic~5wp`foeBs=jZFn25OXTka(>D{*#70RyqeVhP$!_$D>5Fm8U>tXA
zydf>L<9>`|Ad$xV{u{(K)~MKY;(fSyijYd*=Dd6%w|pYKP7JUk`7ztO-*7pgDKw^H
z9?P4-$rl{yf6!3WB;r6Y?Vw*_1JOCq{rN$hq5Zm+K>)wy4w-XhS$pb_1;y)$xM>~7
z)q8>U+B4xJD=TYY&UL>tpg|lAd*IME?c19GulQsbZuxoo+u8Av^`va-^E&0g7L$PA
zeDtUTZ{djBRI;g9_aAF2aNvnM{+Tl7%c@1iXaCUx5V&OzBn%`Zj>irXO!lPn+^i{6
zr#B&-k&aY}(hmm&5&;?z*v<0I@-gN5$3R{BjUBttSKhiEyeP;^P?`DWH&JS&Fgszg
zM8FcybML-=@PGq;5rMn>Qo7n{1u|R<8=KY#<IAl`i3Q0HE7$^e&oIA>ao@gwe?Qw&
z=IbeULx6j*ls=472pwAP7Q+Rj(1Tt7D$R*p&1bQV+R>}3rYZd;S<FrFvF%d6GWhbM
zL)>$+@j@OVa6Te`RZYzu05r|dra==@Gb6CM9#|cmy?Dyn+j9fi0ihgW*?oggwmCt9
zhY!+WgYgoSyGrWU4;PO<*wCHS!*ZZy4G|~p69}-8xp|b8wtyp^q&x*BG7fsBHF&T+
z($U-EHfTtMNAiBfp`4SvC86^fL3&8v-EFMYBY!cUF{7gZwfI^Wf{W_7cC-3+@7|rN
z>xAQk2P~Sxn`X(>10b~%g#zJq^}+=UL{jx6EhJmELx-;FH`p6W)EtU~T@OvRwpJ7g
zF(Gs(!jr@L=K`{yJV_OjlgbQ09+v@IG)4f3A!fI9{P^L+JAC^fPOZy+5+UA_9szZ=
z@=B7qOgXJIxN}%0Bdxkq*WE&owPdzMJn#wVcyMqNS#33mn&A#`oA)&;U!%6xilz$}
z_F_YJiCmHl3@l<CX0$;)Y}}$4>Iz<9DP62!ni=Ryz_^~6*l*ad7~>4Z3tC4X!!Sb7
z1siVtb6o+AS4_yAEAfKDLS4H<RL?{fbq^19%lw^dv(Fw{?&9ohXJ=;-S$)qeAO85p
zx<s`ivjIN`O-%KE2dH{@<q3iuvIr^9GHol-8?9-*7m_8(-Q!mv5eJCai7WhD0LJmu
zPspFzgI7N(S)2*q+;8OoHMKyuspZ<T`-hs(y%fTJoB7aIDXGKRs56JXq1;(o<9o^3
zim}9;*^%qT9a&Z&#)?pTH<OUu?G9Kh{_Uxl%&fiSZYM#DN@8$@6M`qRkXwT4mZk}g
z(5eHUu>~yvU?eRhuqoT&MlFN>Bm%TKluK<snQXP0#MjqXB;n!^F;wd8xpVJ`GFq2=
zd}O-`Y)a4>P(}RxZ3xAgDz%;3`c_(+^lqldSK`xKN@Hqn<Ec~I0f(Qyc(Fa!sk%;i
z3RpX<&zl+$9K4&q*oPWJpnKFs0;Hj6{PyXU66>b5KK&s{QxQH=46&QMX_MZ}nKRKD
zw4nb$cXe(jRD3`AsEYIKTmdsrjPq1k`zC1uKgJ)k!1+_)`gC!Sgtn&elwp!}=kz&&
zbcyxV(V6K;h*TB{>yvI!rMHpP4P&5@#O=8;$=p8vDNx^#tb-gs^iz5HTxm<|6=GdD
z^!Jr#tq>&*@pU2rSrX`Yz5%#%0SGq;O9mLDxM114QvUd`;lp?A+czzut1J$^0)1g{
zj}EyQDQGkCNddQ648Rr*ucVJ-Jipk1)i0TSk)l+-|7*$H<7<;G9s9oIeSSgSC>amG
zCZIeYhsO^ergMky0IDnkB-riiyA5T6;D^~#ba@AE>T3h+gDA&aK$K7@46OkR@`gfT
zuAO(f7fK*$5tl3Zfuv7msd+LXCk=<nk_4~~)G#|brw_RJ_VGJ(Xo_>cUmr+lzePmz
zmWi(&=T25<BV8{*CAc(I3NwFye}OcyZR}UA+Cx!p1dsN)TXxQbhCeR0p~`#v*6zfZ
zjU6cTCb1pVI=AJ$9w5iP38;x^OntLq?N?8m1%Ga6OGJZY^g4I0KafWjHxsqKm~JdB
zJ>u`*S8LeeMKM3YsUQ&m>ZQ-dJw2=a7s^)l)YQx@jZooz4fTYu)=Tm_OV4@_kdk!r
zrDnwsqjF!p(oBkwZwB{}P9xEPKch(nurrSxHo4EqgZ0SM3cnvdbxQ-`(~4o*+NqDn
zHST2reO2VR-6%UT-uLGGy~B9$4q@!RQ^Sm7s?{UL*QzNucMAy$3p;nNiAK|$C(}hB
zarf2FWoty|v>YF*X5DA)scZb*;BlVG;hR@NGOc-&<V!SjKqXH+^x3mVP6%Vd`bTxG
zf5S8j0e^?73}v%gnOgg=I-`{{V?|2H`>nmE96B{$>p-nYgj9e1px<B+v9^EQ<h|Xt
z(T=OBE&hF8@)ms|sL0P>0G6>BK?FF@`OCM&_oU66g1~e>V?VWs=5C44%m+j?(8ont
z-$FtwaSvE{Z!SvZUcKZ7_wn=dgKG#vAVRa)t*1|~STt^dVGz)ypqZt`8KR3^{Dm9t
z@s5QvCjdk^;$qBNS*`v$4TOlRC<bb|uXg-tp2I{kHL8+e)am)%e%IH(WxVC-(|r=Q
z(mE*+RFF24k|M!uPy#bJuXw*TDq6kKqtkGGTx077-el}#W0Ny;Up0J*SiQ70m003#
zV^&z2T)`5z+OJ^)W5qlO(#fe28M8#Mg6@iJ<0-cfEm~)FLKNip?zLr-NMP+xFl>RA
za)uVeLCFqXlurSTh(U8+)#0^lXTZ_hL^VOwFQ$L_y2tO)UP+n5vgOuSLzz0D!ZjL0
z03#MT7YXqpE7D9Nh%pAZ5Bw3#LfY|bLU&mElf18r_F8*#43YX$p4(Jx5?p(nqdaZ>
z+qgdxN=FSJ-o<*RTTR8$vV_txo2vR?^Ejv2#UgIr`U!yYU4EZ{U|bxUe#Oti(sCPj
z;J`uO*`-!`rX$ezK_I7+4w?i7S2Mz<t3X;vQ{MOY`<xp)@#k-c6)SuRxp&8=L`M(h
z=?WI;=mC6=JMqlA={u{Dy@##qTuGV|yQS6{Hl}NBVsi=70Ffe!VSwQ?zcu`JKbo^W
zB&0Vb=92wa+^Uz=!|KSU_m}&-ax=UEiRjnRuqf8S#8>l=**MuM3RDBFPs@Wpx@S;|
zu<d6%FA2Iu#Wl=6t!3!zOAE({C!ConOTY<o+l!my!Lu4O09~r;Yh6TnfQnAfy+#Yn
zQtiW`ztu`qTUFn``}q2rMuZ&D@>|_srugB~_ffOXcc4MXGO}7R|9Xs_!?N`uH{=3F
z9QZzn91XXHb<WNj-{;8Kwx%&uY@sw#QzmiU1Y}s>Q18agwfmRJ<jIRsi{)Nf-cf-0
z@7gQfH&2z7f*GU|#m&bqqCSc(x<AwEyTe@BMdQLQ&RI}Z`Wrma{G^uF@04TPweLk5
zO>N537ZRi=bKJd>zN@~Eoh@_@ndd-Xx{dP?ZVt^PoSRYP%05Kvf%-b)ga*{OT`1{;
zRGJBHH+i0lA9^C=<33TGXP|nYvP_!^Z}~Uel}LOJy@Fl-NEtT)4Vh6adVo#>PSa^S
z0QOA)jNDuA_bbA63#5%>l|~A=XTfzvV0iJ0d7qRe00VOBPS}(b^20hAj1=ikGP$(>
zkjx%vKcXzseX@7&-``bz6BF&vJhK*zvLDHtP;N=Q*tS$+@+dX7MifB+oG4519Kv)-
z&6FO41c$2hY7`_i{s5Xp1htL%z^lMteTNO}1U~0Kzt?++gA6Wtx!2KBsj5{y(yGCN
zt%DM|H@5LSl#S4P&RLT}EUV`nBL2}J&JD2g9Ws!^0y6rOa4b8v|Hm7x$4}9neV8)P
zSK~_V%a=i$wJ4;q`Rzt#&`cuUC26j+rmeYJ=PmRcNk1f928ovvmD{vwGoJZxX1$hA
z5J@4`Sghj8uSNNw*9a*J@!q~78xu!9jvOoUZp*UmX}4~D;oP+`jST7h_r4D-;zU<{
z`=*e`t+<nhq0ap@9)NcWJo}Cqop?*o6KMDtm{j|UvDpW|y@10IZ;J|jXiac^dx;`9
z$WBJXv|{X7dq_b6cQL{59XYMY#o$x8#vTeO8N8jD>Gs2?63v*SOr~Xi^4S1U*iz6;
z2F;Nu=-X<TH`JS$-aS6%?trmtZ4}CL)OZlMn~V7!zKa7UqlW<kX6rONI7;acwmwK`
zE6AU;E!Gwmorn*yuwu>!CdgAG?m})DBbbT-OCRZLeBd-nU1^LdR+%+yTfCl3bZ@un
zD<*@2V+_IGDYpN#TC6y#hGZyn=~S_!BkM&PnbO!W-%(ikn=~{Y=NuSbWW<IYNWzpE
zGbXQDGen^9^jm9)J^@a_%s)RZ^W7bOkZ`mo&*an3juIr^M%!1iiQg6$ZsRB45#4^$
zANK{1dD*QH<Jy?|ql+btrzLzhiK=SfzRge~aOOLIl1(9~CG1(IVz{LZ)+|8B;L_0b
zKFIbc?#Mjkufwgrh_>xGeE1cI41D1yppGzZ8@X)RGV}@KJ{P2j5xe4y@zRqR0p)E-
zC>!EzISs5!cuj*{Q^!FF-K3fUocAU*6ilRmX4y+(vXttfWC~F7Bu%w&x|@0e0t>ml
z06GxM!m{T7`G=fHP%uic;G{W(T#+J5*H{TOdU!?BcExUCQPU3Jfz~zobotKtsoWsD
z4;)a+1EU{wtr47n_X}??E^xN4|G|So9(-c-A7*i#YFIA9{MiS$Gq=EvDJ{$aIR(3J
zEwl}Y_`y#le4a`06n`T)15aozdV*|=*Ca6e00AL6@6@yB9x4JDWjl6~Q3w-a?YId|
zW^Zml!D7-j62Y-|O3FCu8t_S9v0|IQwGm2bw(-&-2CHBHIRaw65P{6E?s!3LDs0$p
z3-YY_{i8+I)>ZcQmLFmXNhXz1aLPWBDRlo#pJLGq1d_H6q4^eIH<3uH5sRp#8xj*=
zjWY_%iAKR=HeQOkYX#7Vwm9v_U_zis%8^_SRIWyZLu#zhb0Xv~0S1Elc}@<4e_D$U
z6(C-rksmm)4I%6{43@E?m1I1I`wXIMT+>5uot=M98vktetsWKO{~tu$+6$e8Y>0Ms
z)M1bPqy*b22b$kCKX)9hT0p-@WzL6szKTGgT3Vm3@LhtOrQ6uex(&ZR4o%wpT^3fn
ztBPEQ4uV3;)b&`wLz;RWna4iT;GkEz*?S_)1D13{G-{DTWz#kuiKXJ`5`<08byHIM
zd;Q!TF+~(LkagRI$O0DJ@#W>Ps$4dqk9Wb0Y19b1(F#3!_%SPJ=03q+04q;%WKMW%
z1Qq`73xq60O>;)-$H|*jqSa&<wf0-RH)3FU<~=cfExxJt40k?GBD-$>tXW;yz-D`Q
za-7e0@6p47tkURJM#lMPE=$DqXEi|$ZMN0CdB<9MRbeR}>)d^ms;ZIhXSTw76&F0G
zpJ?-DwVq`l275M{vO#C#=LM!zMX`$;!Ih;&kU;9-7&>*WTDF{m^w1|6N-6+K_UP8(
zIy!2w1kz2wylRLs)9+NjO>J?H3~#C7NcNSz0Zo$kz$(<?N_6UQ9kJ8_#t8MKcvGk8
zXUMb185xty&Oq6>ZQp+INJHRN(<xI9vR%Woeshg>O~>(nM8aZh;-?64e0+$302#OT
zzH#HmeceSk%{v+lA3pr(Z!tFZLuqO0fGf6SjXs7vvOwtgBZHE^QeyS-^Ay6;1F=`G
zbm>)8QL$i20X7)EzorKdoA4FAlWJWwBZHrLf_muG;eEg7%^tQy07cW$tw05u<!H(r
z7f3oIBRcw<r)Tn;Q|RZReU_X_Hbc13-1R`l*_lrpTFE9=13fgUDF6lyZ=|$cQUllE
zpOpdVvL>mCHJXf7#o4SM*R{?TD6yJLJ!}O!^X&#c^!pxofc0s7s}s^low}0Z;wc`#
zzuQ<g0^MJ{+YRu3@V6^*aaxxPC_wu~2%UgHxdK2SRO{dw3#1J!(csI`sA~o;TD5AG
zDHyN+Z}rZ;Y7Db*=7AqQFn9iZxy92?=*8x)_ro%3hW!angsDh~%eJ;1?_h7=Hvw=v
z;_*bWgN(l-v6%L4<4^9Kpk6a$N$vXj<?!5I_6;&i&Dlz2s;;t_GC-;glrb}WhO6r}
zW5G97FM%iv07jS1ApJjkJ6199;K4qY?ASZd@LGUx)n~YyWqWl&;ko&t@Tn-#`}!NP
zdfIi$;{bwBLIy#>jQ(5iA_S*?6^SUULPHQS8fi~s`1`jlXU?3F`))dIT99Z%DWel#
z*XPcVwb?FDC2F9A?CSgXqZUNpmvXaCQlJN8q1gx<1|jw7LGGh(Qgf0bD7+H%NpW-r
zHMjR-Aj+jRZGqVK4PLc|^k$Y6Mas9>_;{NNQw=*ls<gW9*RR8FQvt;74MvQ(s@gb8
z=!1<z&TkKS==aNWESK1z$ABs7G_1>e*f#QU{%)^3YlWIQ$P{S+guL;Omw9=aW7hzX
zfe^aIZWZ!wYgOjINf7)Y6}?}v7OqIlFbeN_<nZBE(8-jBe_9j>!Hes~5I{R2f*tjl
zt$#16k?2GHb0o_Zbm7L0t^P&muN~O*e*-{_auUe%rcIl6|1zx%DBz(#`TX4kK)M5I
z_N+3G@>n54U?<=2Wlmm#h%fNfj8oecb@uJuo2h#W+=A&J`)Ex%T684v+ZQC6K9OB#
zx1zJ`wou+6?<_Q=uj@&NmD!*RV5r_Tur$7nzbieBzIT~RfDlLrt0r*^>c4bhDGqQq
z1r^We%0#AJD;-_j1IQaR8l8A&jaHgZ$>n`yV-a-bLTSY+`oNs~f-X9M>`4TpBFaH&
z<|9s;R8|&dC!pspDrKX}Cw^+blaVS|9xYJHer_(i-}VHl@^05pL0I$10#5^mzvV4U
zykON*U%pJ38gv>xtv6}0#4V?cBGK<+CqtqX-gXniRnWFB(^_zy?!_Kb54erAy4Dhr
z9g|+%-<Oe<)d?Ox%uORqb>a6>AqYmf5PXR9w{minNP9xGR755vZ9GQ7(KddBu5Jvo
z-P9-b3qdZ&gY)tBZYdEoUn_I-`)2wnUk9N)m6`=LHdYQYG3@P5o=yjdqq$muPKG7=
zXh925!b`rE91cw7kCPX*k(F&O5i%fZIgvPI8eH4Aul=<(uVp24q1>jx)`s_VI4~D(
zob*+(M+!D0X`e`N`VJb@7H)9JWlv+{mdr63ym0}ZKPb9dveu-eIreMU+779XQx`e2
z<@^^T9PI4+<nQ0JCn{zR$|)f=D5MaOc#*OQ!7=IB%uRbaWU25bj;mIzum|Rp?VUoa
z0&Tmeb4B|TCFF&yYj9qh>bEnu!H;CEZR18N>ee`fc@u?#Hb2-xNdYFk(;~J`lqRtD
zr=`-FAGE_tFTs)>3=W=Cv89Jd7Pl@s+qfKd*$+L&U+pgeVY~!XX<*FsPvpvXA3pSf
ziVL7sLHZ7CSQRZ9P+6J{*`hdU_!1OGQH0eWoo;nch{wYfXuqiX`rce1Vce_ICBk0t
z!Ktx{xkb;PJp(Gy`e8t=+DYA2Ur$fr=;>o?Q4l*8B#%`w*d*z*w(yQ9q<%kP`9~MJ
zl2R%9o!6sYRO-5m5ne4J9R1y=!mH5X(VYF&LV|L~-^etw)-?EiU+9hN3svM^nyJ!I
z^lZq1^g$woEb3jpD&{Qb*I4et67`=RLl^|5YIdpB*Hd-8@OoO-pM1Q4=91jLC%nud
z{THw?@;!QJ#Ko_EIdk>)mC0l=vZk&8uD8iX=+;&JaAk2uheB7l9r|Jl95QIS&tSog
z+g{7$)3jhV@mxo?-k`v;vXYXW>|7zj2EY`RACI)3!J<=@MKi+Q)=87zT*+2&D~Jpa
zN2X!9CIxnyicBa9oQrqoo18asqYVfQ$-4&BPGNHcv$}GV+=d%^)bD2Ji^_{cLu#0v
z;x6*dp4wYJ(}{u3>RiPz@)>9p7jfU2HLp`%v1%2lk!f(3c5T~k13f`x5nX)Oa0Y5M
zM>_wgZdyt7=(&yUIq$}%FU={;XE|2TZHyRVcBt_clA9;_tK8I*gI*9=w3!Ylaq~S$
z*hm9)utXy3v%e!CH)OEv!?Ep@^*X^Dc0N@~oDi&3*@q9A%B5Tr(#M~_#xaBP`bkJ4
zA<hMZ<&G{XalqmaAl}k(wP>`YK?toH`tF$c_+3zpX~&(@Z{HR@*_$_SmewKAJ|Msb
z-JRe1&jt|D85MeH`qZgt_=qZ^yVK{+P|<W;QIOIbRow&>tr9yF1B^WyEwHg4$9_~-
z3z-qe!Ml#hPhuncEUx<TV;4;r{>L{E7Sebg!R|JemZ>D);Z;8`V>#6ulx_lLo+y9T
zu023B)iBuAt9S1Md-v`&dMtc_==V|uC1@$R?o!$TK|-u(fQ$|^R`q{*{%vI>2@!g%
z8KHWD{g_gF_K+22*rMW6(cw08$o%>9`<jj*<)=*Fg(xxL43TdO`3`r`ZI+pO;{ca(
zA9i=>A9c*B*>>ub3IhSRaRO86KL&>m>9bN*W9Zc315^WU(H{p3*=Z}Y^12`&xy3je
z4KtlcuzJ=`ZR6!UM46%Ej(t^H`ToFfn320<Cy~9z)wwZS_F&Ahq4d?#Q>c{3rXT9k
z{4j$I*CoO!$*R{i>tt<)A*K2oQoGFyHcwzoXGdxf+YjAd0m<ek(<u&FH1|WSnTBVf
zMe_FNGUjIhh|)e?w%R=K`mm{+^B+IN*^e5y?=R8%&F>CHXH2_JN{VOfo(W-5eS~TY
z07W)E3(<(>yH!lKEc?QiC$pX6sQEQ{uxSeS)G@1z^Q;3M=beDN^XvRaSeJ#{l4Jw3
z_h`WSX<C)nFR=dRKKq6K5^Y)(E^ogYM-%IAjjM|oFIe2Hp*NhKz0r7b&NTsl7!sx|
zFUS=19RJ4QjtHQ#DV0qps4OMw@|HCNyDg^z2vChs7L$bvYuL(##l_xG4Mx8ONkJIz
zM*+@yA8ZoVJYhZ|lIO0+mIu~+c&<5zd@;lmd^qUX+0nGcO(k!341rG&A|_VC&!9g@
z5DeKJuVyWT=q_nX?PZJJ;J#3Pa-XPA-{Kge5!Y53pu=g|vYjY8tfFR53%xGdrNM|o
zZy+uSb&iUoS`-pBAt*-xX0&)?MXqIF)n=j`gq#qOny66z2_gPsq*ekQ<~o%7Uj8hi
z3&O)MDUH9QbM>Foxq|+1uH#0!hL=@Pp`Z@zoCoqEV5ZfpFXWfbnaRJ>7j`_{teQ$l
z;LAn)=iNt-hHQ91{bIj-`7VS9ekD?Do`m>Wa|;zygAle0z~S2_!YCnVXry#B-Xc0f
zRX_o@VN;YvH)>x})fjScRi!w(afLt?TOvK^?DgM2SRegOf4oNIoQikvwzKd1GG%^Q
zBgHRzxdqEE>l_@Fp|x;fF8VMM)KpHFVePr2BEPiKLARN<^QMI6#4|~DJlpU&$T^HS
z89vv(P3mH7d{$XB_ds%^%?+j12sB2ZzC`#*)JbVB#c=lm+k^FKNnOo)o+bkVYEuDy
zc$DBOHS-Fx@=Z;+ibe2Wz5u(61rhdX$f7_&p`#g>p1m)HK(q>VDY)TobKMC>W?sci
z<?>z?+md7q$Qc!c{6jkKnZj%R<bm*)o9chYW{Jst;VW0Hm;G$lfExJ8=W6_O1YJd3
z<6g^3@$?jwqYyl?eax&(MT?<myd^D>*umV3D+9-~eQbZBZk9b@JyT|*YhzVm3%ImQ
z-4ZsQpK^*CGF2I(X5q1eD)Blxut(VC77uX<n%=xJ?`l+9j+Ufb&z}8;4Cyfb%?Qm;
zY<cOABT~6o_~NjtT1~%itFqA%At~(BuiwPb#h7gMRZCIYG7YICa{7IcfGs41g|_J2
zps^N<1{|Q_(3Ouf&r!c_whdI5H?U3parm3}3QM!g2cscCL=&v!EufFO+;lT096C;w
z$fk^=eSFA*$uiM9P`~(UJPZ83@$q>pC>99QHaUN_zgnLFY~>Km3_d`aZ-_P7b`5L8
z0?*|TqU6YvMRv8m)Ky<JpR-%#e1%VPI=o*N^rT1<$pJ(Nr$<7j&sxLhD9weuWK0b)
zU+_JwqDUV(JCkXNwMg;UilnHJsBqo+y)4&5vtp;LI6}M6p#hqis2!?s`~_~3+%+G_
zT-jlCfwckjU^yq!fJ!^N(VRKm=$9TmJT_kFxeM8XdT=L_KJ@srLnl&**somaN5qEa
z8n@|dv9E>O20Ct}#V_7rY-*f)bJ*Ciy~K5l{^toj<y5n8NnM4|l~yLaF8~D(AfD3D
zy%rUvDVR^#42c9iu8@xE>FKqJHs#9p&MBsd1<gD%W)0>Gw0LS$5(>^6aB3pRfKb~B
zJdkH1-Paq8_zPx__mn{+<)C0dDVs|~vlS;x<JnrkHIx08oq6(;dF^3f{)GvxWMo2V
z)j(i832g9mRMZ|sMTH{<-9@Gfa;-i(8hs}Bazk(TAH5Wxf4|YbzS*E`W2>{f+pEqQ
zpKcVBe#zJ>E4PdLP{-A`?OM2xdePF|RQFmR*YuqQoyM5$Rn-{S$7H;f@rpG3UYtE$
zwrx8a+ODj6?w+fk6I?#)yD$6PZkWrDm!gRed{R^sTQF3NL8JjlydHm6gl(2(YnLw{
z@I&9K8#zr9*$`M`>w_n?MuQFGI4CDT=WEw?a{J;aG9-VwTUXg|npXF#jFlyO5#4;_
zYmANxejj<D-SXwF2_=M}KDxRJr0}%IkEb8uYp)s8rnLuQzJqj9BH`TASoP>>G=__i
z?3XWhY%NmsATLm2zpis#|M<h&URT7iPTW*NQB8<%dGO@f$g<@N`Bwun2$2*kqkjvP
z+4B9{Hw%WCi9zaFm4EUW<&~B9;!$~%zC*+(cL4JDgjKbZS4_F=ZrxhmvO7mmNEhbJ
znRA-1pR(ssN|0tIn!!rOoB#N{y;v=EkaIhUP%oC~Nxoiqw`RqPK|gY9@7?J9Q^-i4
zFHro#4!3+o8?aEmp!fCOig1fnZgKErH^yL22IT2UzaKr2`ya%9|NcD|9o_Zo*V{y8
z7F=K7f<7$C!Qa;z7p%g*^yZ4nH%<L|cWYrLw*_K|*Q)!Dx)iqaQdLiy9d6N#n$f89
zG1Ys=!kkFBp|U#Vfu3R4rcNjxVl@fAasuyTJ?pe(X!HMvtTzGcId9+ozswjTV+>j>
z*&<qmj3p!{g+eMNOIcdRI%u(^#oB07v{+M$s3gjoB{V8!Neq&`qO2*Y6nS1(=6;^z
z`2QWp?|0w#F#3K!pZEJ(&hxy^E3aLL4!xGdfFQqGl$oAC<5ggaqSWHRJ&az!(LSor
z*?pjUIEhsGp;L1OBuXY8*`vWtn#-W1xbQ&t#9|-1;BJzNP>I9<!-{!HTN_sNbQm&g
z#_gjs#$?<-q7hJc`(j^bTkox#t35w}?mCWa8`!XFido**nb&#cOP2H_+6wLuV0O(x
zKdPy`P_7jY`1S!a#X4Ame=y|W^-OcMN$YB`TtVtlEdr(b9SvzprhlFhZ%D+9L@c$&
zvR|7-C99(|WWof`pB9*p_`PJf1U%(Ojsp`Xk=_mEZ{9d@cae{U7O#riNgE)8E7On7
zZ6>N;Z|&}gJxFEED+E)VM}zvY1}3a4cKL$$uX`JrP{EuLz->VNu04B7gg0rCtaOJW
z8`W_O_+jO+K4@mDY*rqjx~8|Xo*R{pYqk@t$bx&xoe+J7(mE-wHU{^kq6Fm|6ncc6
z#MhlO)#aU4m9_%)(l{Q<wTCMHnc;|CKB5%|AbrbD>!*tjW*s5W|0f~uKjJi!wbtJ6
z;rB#9D&_R^;ljKxduqgadIpy$<`H`1`W)dP8?dj=IDf@F88s&ii|#>Hb%TudH-gPJ
zuQ-m$FxYmVk1JcYY)QEKfjysN;EvY4tqs|5GiZbAzy@TtGVue(do^<4WGN+FHhQ!;
z#UQQLiLC?WiW=dXMd6N&gxlT1*O#&XtTzym?6&O$i=%b?w-ERo0X8UtWsHK#3~|PK
z%8doj3kiRmHKoxMK++$=yYDP>uc4xmNk~*~Stvpzbf&ux^H1=II1*;dC)f(=k3~m$
zUxdz32+|-Bkwv`h*LZc?uvp6xGc3=ZT`-TD&h)OPTi>oPE!4wKrycH>-r;DV#zhsY
z?2xWOh?8Igb@Km$m;Xopbq10ts8y)D^^Ub)06VsvOXPic38U~ra&<IV-h+oFrfRC%
z1ruk!4@_<0P}e(@-tc)`@|SG82%45-==^%F`gHyFy_1XWz6cf>3h5$b7C}_TM~xj_
z7cJ5e{DT93P5tnhn-3qAEqVWO%C@p`+wOasX{F@!zW6cc%9S4(V!Z?yT=fXrr)g9L
zRjrI}72s4<kaZzR<Le`poHxd2i#^^~z6gjNc)M(hRoIP*uTO3pc`&Z=eba*EjkG2#
zd)6uX1`RK?Be5H_Wb*=37p@3yA4X7HW5LAyP8~WlKclrqWDBVR8Hl1bxt}e)U#5Qq
z%PlpfZLPC<`SD<s=`%N9rI}f0cusPBL8~@{T9l<<pjv=Fy+W9iieTrSJ*`Vl0YyL6
z=K=&nia3(7u?hVnBj!O;Vxo)$@yAV2e2L@yhp!RwjExuv3#8lqD2N2yqNEHGfZ$S9
z?+#%YB=dJrLn6bH`ArU0uDTs~BNx<<t{(Ctyl-v_l^nBmO;$z_w0<SggBP}EGrNqr
zzVz&`Yn!x*`Ml@U2X(AVXYhQ$i1C;uD0N*6Iw3WeSVZyZ{%{yoaeogRL&xyc^~I12
zeibU?^R&Ug{`%|RC@(3jnzwEp<lW&{dKIbpsbS?a)7R(?G(w>#^9mfKOt5jOBxD+i
zNxk3R&xhGpx)2j6DjWt}gDLmt5v>QQjlf-PGg2ZEl+Z3S|L_;19Ch#BzMZ>d$uESs
zWIX1cek9nek!ckfG0_O9m&%7!Dg(qPKy6-nT2iOr<EVroiwS@+Ll!pA&d}D$O`$Kj
zg((Wue%Z*SfNrAgfkw|$$5ps1p0470CFK&0nWI#xkQX1Ozid3;B<r`)1<Qd7R4D?B
z(P^TMN`<`*G_s4By?leezqtkMHIz+Dlm`ILBl3rw1fvm+s4&O~vE`9S4o1JV8LU7$
zyY`w1%^#TV6LSDjBVXOxbLVjPgC9OO(l}M3!z|T4(H;Q=IP5;aM+1zW0-i3@2<xt!
z*uGujm_Ky?ni!tZv6!^r7W$20+k(J%<obx={kQHtvHPjt+^RgE)cXveD<^%?Il>wH
z{Jx?vwU_87LBIrQ6>5_z%~ZvHs<pLD?+F3}Ot;mu=T2-dpkZC{5)>Yv+#zHyV~~DE
zXc6k*OI(psimpMPlXY$1%}@#nKKyZpEhoIHbnE-!MYlOtfRL)~%Lfe_^Z}C(ofUuV
z)>%>Uq$@wy6bgG=baV)0l}t`w;tx8{J{GZ`6IA{v{kZi<CIXEAz4^5snZV7Dog+*o
zMr`%P|7>A%;%<EQwv%Z~AbdVBo+>tV=xMSb`71#_gW9L8f2)*3#WDT->eO=Mr?+30
zm-_?UHoKZKunM8JVg6~22+zlTSbIJyqxy6B(=3mwFr&8e8qiGX4zYN@s33h#OP5d0
zKdPhn!jwahGnp5}f9d(DDCfIa1f`}mnFd<5O0bM=PEKvZK#5`u6fHg9-#~{+25INz
zG%@5HdqMd7(Ji$W%a5RpP+b^|Qn&Qnn8<!~JAPa!cAztW7lfG67?~L*WSr?;#Xcl_
zlw@}6OLpzv?MML0EL%#b^$!Xfi%1f^x|nlNx?PRzm>4VrF2c=p%b^&f#LgsSgZcU+
z#K7ff3^R19s;aU8JR@e6%0V)#sJ+;WF5Y%1&tq|kNU%M;eL=xkm%^eV88K9>1Ayp(
z1`}8;!QtGga`!;uj`oUZK64wCbjG*W;NHdzuN8tRKE@@O_!Ph1@MmI?NTg|Yb+)r^
zpFTeUfo`49o4;Zxz)8d!Z>(E4%h;y3y%laqT`9m@Zv8sD6W?F(jU*eh>5=vi%2uMP
zkn6A@22CZC>2TK}7`_P>%?YG(w_NZ?nh1brLGh%NfW-}5_QX)KCpcjaNv>V@?rpJ@
zlTStim1uj1a)C)9ON?xlnT)0myTrSQ=qAJEkNQuiZ8oWnPsgIC+-suC#a?|u;ch$4
zo!f-hlfV>d;Wm#SKeolUub}K5pocgBU=i1|NP;%SofA=%F+bf?pTR6D@ehB_sNO%k
z(&a4fl^I~{HbQTe@h8g}?;o-9tv{4h<f}|=lQ~LQ#I=i@2e#MlRQ!OIx|5up4<zjM
zYSHeMYcuHu$w|{RGQZ?3Ccd)ZCb4>T8dR5TkCx$F)Ng(~Ie~>m4@U6tb55a>=s7%f
zU+bIf2?n(sU|;CLD6&0v9D+9y0Gc`5HFm+I2n2p>nX8QnIX{*!B7DvzZc>oPJeT)(
zFOpgIS5H?oO;Cca88=Y(zvyqKa@9AAZ`R-N6emd<=z&Pq4SgWJWa_2Ixjc5T&riLw
zb?S{F<2fXp#cAcPV7n0UHmi+ZnY`No0j^p!zFz(Q-Mf0Ha(WNrD9h|C5mKD(#Gi`J
z`x!agIL!lV6saev=8BOPYi~19x&yWHw&>)<1u;;kuX@8V*r24Iy`W3Sj#odm^<?1X
zk^6*i(O17_B>()%3H~VXo#EB5-C(0;_AA-mo2=F6aFZuO;snyvEr>LEdJ0;ypC-ZY
zPV!0bh;j|BO6$K`w%n|tXI>Nk`;Z}iiHQqSLuSMpx7fLB*9)`NdQ(^$Zhhd}$B$F#
zeA_2_?AlKp*Q}q(55%l+UTQGfG?{Zzd-bt0O%(QSKEKYecMHpi<ZupHLeZ-m`Dhtu
zjIvVMD{>}tx=1}PWoI9po+FbZacO4tMXh1#>C_Vjilb=Q4$!i#2iD+&2lNnGK0n&T
zWKJ5i{j)<cz68E}X7r@vyV_63)?Nr;(~;khX8?Y*1jJQYdJ&)kQgQj)Lj4oKMJ7%?
z<2Gn#{6aw++4+@@M|y`Tt=mH@FPb%DMnF;eVRh9ZRtbcLIOkh{YN`tjJ-Mb%G+!eA
z<M6M?bm8aIEn2i_rKX?v56}qlvJgd#{1$5>em)Jf{9K010#CB$yc|U979~Ws*dzTr
zUF7p}SXa^(^Jg||WYv;UjRDyf@LOHE<))pd+9I0nd-lU}unW&=FI!$Y8dPjJ-~Hl~
z(#eCoKfPALJEirzL#XR1I%4&F{;>PQ*w|R<U9YZQ;6@2&mzxy;m@!)`C4wRPCkiGN
z9b0D?7xBT<?6y(-+JC!nTJ~z&#LsL;R{Dq5vuR4h{;ry`nRR62D66BhM`bmSK!vKk
zWHgE(Dn;{9%_Cg9xYobY1O>W0y1g|#86x&)IA{U-JiIK@lAsf*W~`Pz9o<wx<n87b
zD}C!l%dIleFR%CnZM&G7EjWsg0&Ip3ZXF5UTN^FnD8Y1^e5L#|Jcj4$jj366=F7!s
z`CVf6=?`8bQOw$<*ju?0v0`GFlNO&r%0*Spgb@Y?&#1Y?EFqw8!pnP%XUn(dEBy`Q
zdu%kV7|cjJl_kWs9305v22EPymrXB{9^P5xmrD*)pmJH`9x|<9dbmQQET(}|$B%C*
znY;*#D$i*XwHNXyvPhMf>gc^i#`Z0u^F$I1KSk9+egE6(vNyfYqWq}gQxkI*GP{lh
zV*jn^f%7(KEwt(cUD1)T##<o)0ovB_c4HcqVzMUlZ-X**D54vx;|x?)zo7^?_LbZO
z4ih*1<+5A*)+g+K4bt{vgv?&K<@a=W@JIBIHAMC%)r;@#&|De|*N-nJr#tD$^Xxcu
zNk>E!ecpOubeQ22pZ}R!w|xK|hKWtHzOdy4ys4|B$RJQWb51N{jM%L!9(gM1VJ0QT
z#mmtc$G$5sPnf>d`au3hE|2zJ%a}btuv-1+%z5f)woY%0d(W2PwoNbB+>U-i=J#WL
z%5U|gqa5qk?rRK@){zrsd=8-rfqIJ)zGXVyVUuw!@r`|a#??t>T$5I0PMWCL);8KN
zm^i0abP+ClNc0ImPg=hGm=Z%!^<U@}<Ivv7h~Tj)pl%||1cofg@bQYwI!K2=$nHf2
z&NOtp8iKDAG$}JeYZ8@T^^9wB*t7ZDN3^5nUZlnW)jO#z=FtEepQGXu?Z77lCS&RL
z{Ay4^1CxZiPy=VyVBEc#9$0yyp$p@80b#WVbZ2NK8T%<=EaICQ90_~gjbc7PT)<VE
zENnZX7RjU#_B(}LD-ygw^)3p~vxzp7S1|Qc_w-xip?{~#J>y~rY4&%KQ3oNciYQw0
zrcVAu(v%_nThVwZrd~fnN}_0K^^RQm9Qi_vZoRfmkjg#1Y^zZ|TBz9zzR`25b^c-N
z*J!eJ51BNKNKv1uEKKAnmkTuqV&-_h-y;s$%+gGjv6ujO4!>+MU@N~inX(O7`r3-O
z)B+~oO0T6+23utwk|`~HbDWe9FX*|EY3N+r7k1r134S}pM0q8&nKDC9?lk_fS4(m?
z=3+d-ulV_}jkoUH=}=VFzkcd%;b6Vf6XWA;OS3Xijn2n>NUTFBW(s)sqFNkNGru2T
zij8a2WMp;xn)>R*1@kIN2j9cJbp%H7$G+l(t1`~mq}sEUl9DkTt!Yq8-d|VBp=>gw
zZO2`Bi8MR4>}d!UK|o5&Z%q0MT#f8RW!(5`7e|bFtvXGkH-el}ddClZ2GTsJVLqb(
zh+*PP;vd}|=?+~#D?%}nE(2-hH5EHwl|f>=V6I&C;e+LZ6-jbLJ*#@>H*&1=9R8~2
zZ7@8kQk1US>hDdPuI^nBNj*<|ZS@Yyab`-1QXKD&_BSx8QE&P&1!C2R!><z%;3KRu
zIehL*&BJ8_hYZnkTcVgtWHs-11GEfBHdjnJFpr%u;S#GiaM`)&X!h22JCj<}gS}1w
zpMSKON-*j#mJ6{y?;j1vL0fn5l$%*L>DW_Q6gFZA%jAZVcgR}wUw%efIFNQYB}oud
zw@H6Kr4_?Ae@u!i#fq52i21ZXBO=$jswut@%sgul(d$M`&~dnIdv9?*MrlmKH=JtT
zPAB{3O^Xv_#xNNoGlO6>Dr=T7O4UTQ7Y)OJ#<pl%4&(`gRJ}gd(1QBE#Or!E6#l_m
z>SEL)hRLyC%L{tp8)+B&`s(MsEyvVUD7~sprqa0fX?pXt!@p0AX^liWYrCax+y6?G
zNRjF_5rR~0B{)#%1pkb~?uG@IF%lZam{HO|sTA~3ri)J&;lC0SmwE6!|De`AoOx9c
z$MT8W8#=4JGEo!oqoHY#=8M3b0$jtF6yC?D5-XH0*yLEvb55I#Z4BjJ2bE7F);1b~
z+FS}uGKmisgB6!YpdO}oHDue+GQT`jvVy<Scd6B&lWZsJ%vRac1cRQodWVt#4cm{K
zf9;xg`XbYS=u4l$;8F6Ir90r2AVo#{IpDrRtjlt?#JSpH&?J^h2q-H-NnfTT?tGPi
z;tB^@aJQcBQ6Nu@vQ4dXvYs_-<dm@2JmI<X=B=lvP}w<V56WS3Q)`vaFi<kty6dY-
z!M;C!K*KpUqKD!9o9f<d-~pn(c6yNum>>0Y0Ai{V8sW@F6fxqdoYmegMBHxxZj482
zYPJw~kdTESs8zw2;gE03$um+@(c<eQ#_frLVo{wrc?CieX`&?8HRnT5otwE5{1-iZ
zD@r{;kO5DP5Xf&KlTphKWZ03;>%}Wk=Sl55X5|YN&q;fRwgH7zq;=?t>>z-<_VU##
zt^{)d0;D4FbK5cssVU<D(-#b&t3Vc$NfdVO7EZUv{f{MDi62JvLtKb0aikOXBRaW=
zT}yUyK{;tM(3hD3e_i_U{^iSm6#lBDB<`;MIKFx37sTyGLzK|GoWmxX3S>7!p0+i>
zu0xy!nQCYbRMM^nfuxx3T56@*BTU5PnEu}>Bma*vV-zz_FWrJ(L2=dhBL8)-#;O5x
zAj>3d`H7t67Be#p#^f5l<P_8aAdnS;40Cr6*O`{=Pcmxtj<AIs{3r6%j`SXvfz@a(
zv<ggL-9C^n&SmousiEG|xodlDXY%*yT8ZwO_1)Lf0Do=_b?D3+lDWuO2k1dM!YP`m
zSQ^`rRp5DV)}H%`OF#jHbX{Y~EZRfK2L-=jIT<JZ3GcYMR~>%w!;EVOMiHP50@OC}
zJ~!eaP;l~|ixpQx6h!znjVWBk0D^>0KdW{=p8xg^j4<JbjU~y)inp|nx3`Jy_(<kh
z_8!tGM;8-hD2o>%kbYGFWbI8bcbF$eh=@o6rhObZbm-q3H~z5bUa}Z9mT-*Yl#(d!
zO?a&QLv44NLg9UCO^KgG9^y>Ia!e_&dWrrAyRkE83=|Jqt%6LtvFbVxa~>2!+;nIm
zsMt2VGa&ySBzsoQTw=VZ5`Z=Ksl0k(c~CY5Q5S}z6wZB{Vdrp(p(d&w5Nk^6=CpV}
zfx<l>`xCtrTSmHf#1(x(GUq-}r{nHjyDp;?;4+9ACV(%LUI@%;fKKHR`*iC+-6GNu
zGs$@`aQ{g`m-`3BH;SqaFdfBEu3(R*(IxConU5eZ`Icu*#nVt8NUL}J9kIZze%(%^
zb0BK>m@+69Qj^W0x_px{)In6WM7Q7CmmW~@h`vg`UL5!1b83Zo2*ljFUnH4xfNd9)
z)fTl@QW7KG@)#ZTmPAeQrQ`eI5jcdm5rTpO53y;h?KuLbbL`E6f`g?cHa*-5b$A?r
z&wma+qJh88fZJSg0vG;DAu>nckU<p>>5WtQiQa}qC;z7fh&=+shQddzy}&^@x5h{y
z*1a{Ef^X6DPj{inL^t-bkXJH>%E=@$0GL8Fi-<=`zzB`4t;0Tyz`(ox?6s(%CRkXg
zZjpFk6?TYe+z%sgVe60hPG%dLo_Gq1#I8uxHvIkfxaf|@)6(YB{2zCmA0k<wF+ROx
zp@zVCh#O6opufxii?=4hRgAj$J7i|%$wS3Hx-}rR$Xy<L&MmXhEXG~Ik#{!1+?>Dn
zC+t^b`jDDfyn9w7Rw)1Bo{VX+b!+SJ8eG<8ep?~mXH)I{FD9m@v3#~T6VXYE^@l-Q
zz^fkTheAVds`W(;+<bJM!}-;&(MlKjisF}r(sv)#17wgS?FpS}^W8Fn@V!R=$tCaQ
zZlvHUtJ)5~d4#GM1y@UjEQ_1+$;A|^AH*{A+O^imnDX7d2!+qTvu|UOpuh5zZ0MiS
zn?fbazg@3Q=yVR7=ElXl5Z~kSg|YY<FGK6ljS0P5v}{>Ik*Y`=or6p`G_Y4(Re#_x
zLJ*^SO_RVJx3LtJcjpObTcEZSw=`t81J=E5y_@%$P%J-cLOWSgK*aD{i2)wQs5ZEx
zSbZLfKF%stRFu!zz-roPI2xRXF`EJMP+~w;E<=S#UF^$1lNGvhjT<TeTJTi`Cu;*|
zds&#6_UNghbBN*c-il51oiUD`h9P<#oU(cI_|#yk6Nh=%nSIgr{sKv;nP{J$rZsfN
zXnKYnCgaBC4Ou#E+IDA}>h^s8^z5H{JOEKy??g#3!x|^4^qe1h6tEJ4SJ@|jI`_$T
zfjS*_E)7-Hmc{fIN?YPlcmtJ(*oW>P1X8R?6>g{1hs2*tP$-RdLUa@-R?fX^Q=x>z
zc#yiv-4$j4@4b0~wl90;{`2(doWV7~<H{q9upV(lVyC{0M)))3ZnQ6U7Ga<%+TL@{
z;RN^W3(ZP6cS3E%O*Yl(dSYd81+8A;Y3y5@=lC|%963No;urEbacbXOa+fCF*_jzQ
z9H`b8YWC@4PPuaUgOlUp#e3!_lj?O1EfD5tA`WVijqpQjA!D@bOCUN9-fBqlCo=`z
z)b{jcqENdPL$F@IVgc~HklMzKvC1C$g9hm=7wRJy?~>MCy{Jqx_35j%Ppsv(I#WQj
z=QsV{yL0yVZ9aK>DBScMtPRqxrxHs0FrzSWeGVZ&tz&3)LnZWT>n(G-p?qx5n>0f&
z?_y*@9Nlr?&>^*J-c8L#%yD|%00uZd)Slqx_onr*al-2B!W9a0|I6${TbnO?IQSLW
z1V=UIFd=&^=^ydXXu(+yO8LjL?n7+SSPhN5UIqr!i_!CAxEYZ&R{Ivy7A6&mtWvpJ
zyJoQ`@Q9hjxm}DUUAcE}+WW;OAX>etG{RWh^G6kJd3?n+N_&(0&)H98##Bc{w^0Am
zL%(Whv@by7fo{bwh9X(@+8JQ@%$<43_x?RJr8{@|7hVgN#d+>teo87*3h)G5LiC4u
z$@7#28Nd+P|BaA&Hwe@W36@EcXzeih0C{aSL!Q#<phMb^EC1)3-^rP1TM)ztNpZlt
z@T?b;Bm?idfg+9uy^5t@{rqGzZKeoMab-}my%}+eCXztmDE49Zl6PHyy#izc`b=!v
zWTxVokDd}QNDLB$C!uD-gerR3Xf&gAQI1^b)z#(gI99r~>WJdvK0cr<eeZP6<JAU4
z1<%L@VoY-V{)V$>M-VV2;L3!Yko&fy^#UoPgNla@8G@e(Ekn~dcqJqyT=1f3UkCu1
z=)<pU1HyW2d<>pe0xAmw3J=zPO0?l+c_L9y$<cHRAF8VIPA7r5Z%O5<L>c*Xrc6|N
zJd8spj(mI^6MpYwR6b0Yc&2lP*J0@)CRD4{p-E?!*8#dB1MVnnApmud&ZLRJ<)+ka
z&zLg=1W<#Oy?Q4H^G7kC7c@-_1sP}f91?%@XecfE^O&`bm&p^(HP@t=CjdRCLgu4o
z!r_Yoe8hZ|>od!JY>AS+K2RNtl0e`$+v@GpFwRFE*$jZmfF6?^{33ckVaNCjj~2a{
zE)hly_k|t!*ABjp-^+q!IR@pa@%Z!?(Qd))2uFqDP4D9>ag5-b1=3UeCy3JZc*{2v
zj0C-r3_4`^(2~i91E$ClE;Y<|aS{Jx`*SPXkgT$3kcC&rS?rJ1{ah~OG=avvcn#Vt
zW=%b3dr|b}(0$Kya@r{LXRluS|8)|x5|p^?s!t^Y#(qT|!!-K#MZeJfnxLS(#e+I|
zJ%5KJ27V<h@!|p>J5pZzi93E^P5M#2@W#g$IO(JA`jKm4Oze<Ui*WPshy#ZBd+V=l
z^o|uRs7z9vH#*gWYIPGh9H6eKn!eD8xpi+~`zB>YCj!Y>ZY|jDGEvYz@5n(EL)S45
zqeeRPM><ACGlgr&bZWQF@n2c~ahK&E+PyfI)j1;XMayj4(dt!TNXR&`W5wu~2AmXr
z?$)OMo?yE@>3WHw^zoSTm~P9qm^cwY>qkf-nV{st?c@3(`kJ;H=ih!H)?!PG&K>$@
z9sh>46V8FqQ$0{WGwZw_12|r2{J-7rW@$12E5%)C==gZ^$hmAqKmfu@k%WGI77B0-
zT=ScnT1$ckaymjp=a|Q8Ltz-0Q-C1*hw@npOg;gdjgC!lqV^YCXU5a`(O1Jg9&(jL
z_@Ow4RNJrrsmW8O<j_TJrQjE0JKQk{g}f3Pi`7^rGu;Gq6Kh#~`~<xTIyiBg<;F;_
zciSn^8p4A2>IdcGUH73GVMK6^n$kk`;T4A{`tWETPbRQpyF+>?mCT@~DHGhS{CLEf
z`q+x~;O`R`7zj-o*;vb8(&VA=0nmctva%?3i|$eSwM!V=DhB#~SuNN}mXWxX|6gMA
ztKn%D0jhDfMKwFX1NsWK;4&8$%V<o&7c6+jsDrq=1mxouHjz|{-&cz<HQ#;%OV+OR
zY{D@)lFl&c?J*2!rjSXV69%f1P<(jFac@4OQt>D79tLpGNF^%9!YW_AeqH$;PUxDn
z=b-s*RZMHv(!mQ4jt;H!n3b+QXdECgv<Ba#`Vblq;z4DxHv)r8u+s#X762T6Av9|$
zP20dA{e!9c`6DL1vjM4fPG?l}AN609HO(R?2nu(JZT1QUf`~%K(F1$wj5P0MHspU;
zY=jyfzm(kG_0_Eua`cJv+w0Dg^m71m6bi86GhVg*;l(C;&z7geFP%<wK;zjZrC^6h
z3xbxlfa@j){5iEY36_5>_}JM|LuWC?*0Xo-wh(wUh}HS;Tzby9i{742Rjr7pJ5n&I
z^w9jgybX9{2Mnm+PiSPQK8^#c)O8r#qa-HdhrC8$fXS|#$D4eMIh*uD4-M<>%&8}h
z?ZGFp!;aAJU0A}YhIFl07xe)#p1pn@NQ;V)bRWHa+`|~!6>6+ZwEv8Qjo}~$WH-Uc
zHqo$0a|N_$Abe@gE*MO(;wGpSp>%QD@ZXj@tKmEF*IfctmM~B@$XNePh9VShI#pe<
z5+I4`;g({IMN28OZ{pOw^dc5{XyBUk-bD5IZgU6+Oi=VV0fLiax#2bcL5#OA#sa&>
z%Nzd-d99|eK`G9(<8i4L-Hx;kNT`!xp*%fGPOJ82ixwpbwymM_P<C7K1^+|Dr`AmP
z))i{OLC1a2j3y)M3B%z6A=F}TMPvR*b8o&R1KZ-C=d5I2K;}I)hpIIdKAhALx{_88
zA^N^kC=r@pN7~n~8rjZjhV}Hc*8qo`obSSwY@caAd-iPUoY%d*@{KYh*XJ$&_=5=A
zA$v7dW_Kf)(AJedy?F7FXD=Qyt|%e5GO#qImo?Whi5t*Oc7Z&ywzJy|>vhYQNdEo%
zcu9VR>~SQ(Fl4j$*hNw^E8_Mj_0sh^@GXRRFyL;wirF;18*O8o@<3h^VQ(I_iE#s0
zC(is(Rxa`klA*B|_$-%XT)=fxIgtPNS4>~eFk7$cax0zOBv9z48OBDIftU98#-QqF
zU_IvbB5YQ-fM@PVbktn+jiJTBjHjPId>8|vZ?<V%b(RyjaO7f=c;-qsw=|_*@-n<c
zGY673j~Y%ay0$t5c=Lqg7M1p9D@c7s(Cyw+(iUN^Z`;0$JaelVB@8=J>nX|3Z6)2W
zsyl*%e-XIyFK)G!*d;Xmx*{SF;?ARUtJ?A=>o8~x$lnzi=?5QU=u@vu$79O<!}FXa
zdA7ywQy+XHdGaNCFxw6-G|6P2+Y2r!izb>u@vU~~*REjxgeT6n<HzT;KWu|ptbJ_r
z6?`u7+e{B>sD9N!#AX=&wGWs$8`bO;B+@TlABHMKFAyt`I#zz?Hfi*#Pg|(`#LqwB
zZCHv&wz(krEo31HNv^8*=&(h)i7&T@Cu9F6*0F$^&p~BmbczR?aQpj;mpmodvgGNh
z&9VRbQ9-*q59uXZ%Rf?^5X@q@8DlTj0YeSwo~ryW(E6Jf@pZ6q&^!Ta?@wu@@<yHN
zFq_!698)*p?MTQTO)DE2I-zZlID*{7cv~66A7X1I$^uzBNfw;aox*hRvM1_dbPkX6
zqA}VVLD7Usvb7a0&C3=IWSGkoNguC!KD*RRwu%h75AL1%=Z(&>7Z9z3s9ar<oW_#R
zZ}WKLgO=G%ow^a+ozNh@WRe!>ajfdxQwcsAg9fEdNW}|a(tA(DLmyCB784lGtgh6M
z@u0Ibi(N$~54$e@oW!N8UB{z#ry}otqVJ@g3ShPL(3T1+u4GIm7s$>Z{(S!FWx_!%
z?nu(}qnLd8Q09?n@%5I^M$7S^AGQ3&bZ;s~IT%s2=CAMz$(?-f>nPXaA4#n`9}RdN
zRD|Gq3S!USR7Z?UHDhn@pyLJ&JYJ?uEDAC>u5px+N?SUhv0^AqFzoSI2$Y|KzI3EW
z6@dqX`zj&&Buc=99NI#$9uhe4^e4R3#O`x7J|Q}1(F8H6B|2UTJ>?7IpPu*ZAfB-@
zHbeoKnVXw9{iP3lwG8#0!XH%7y!)w?bva@>q!|*&bVE0)vjXZG;|BD!LQjrGi@)w|
z#rmA!PE&99Z13YLxc!UHgq?EtLDYfNQ_U3NKPOHXmv>^&u@fguKxw4Vu-$C)XJmZu
zyXxuTw(duFBIOiyOP7Ij6|xyYwE7BaXC0A75)DkdHHdKa#DZ<NmZHoX7u?aRw8<_(
zuCDo1mNv<(mb^F1B~F|D{4V3$4PK%<7*4Tf9-Y2mHoS`<fOOp<^T9b#OC94(#a4y)
zqui4bJB&3%8U?j=iIj;O`+AD8>m{NBq;FH{JaNsMv*oEbp1*t71^_0r;+HhF+2Ku|
zq$wqVl5U@#Y0V_<I%*6jXg0UCF^#;i5*~ZrCN0GETMs|wW(w2;-jeq=oX{fDQv|NE
zdr*Y0GQCk)c;;3mK1?Q|4+KWAv%l>&`aZ8=$Aem0aw+x{$~(923=50<;GT%v9o7Zd
zc>GFX7WQT*QAEpd%F?v=%S=o*Svz$B7zA^`0>dM<?-N}<qbfzYTJ%wM>QU<jQB)jG
zBxBF)Tvvo+B8nBOEgZ|l=zrfWeK3Vo#-vF%Ex9IPGbR_(ki|~NI;JjiW!h_^M$^8~
zhR#_+K(64=l^sLetZ~C3N&s#)C(uwQ-&*XXYm=}JgvyD0qexpT0-C(NQ4>w7wtbBm
z+RkeDT!57&sFNk#$Hl$DSdbUIo^9a+%_0L$;buOdHQWbQG|5tL3~o&2ttYX7EN?@U
z1lRGlo0|spZC;9<Nns<?Luhg4^egF4hXOmNT0}Lc_o3Ldsg43xACODxy9ID$*eVGj
ziV3BMOr{KG`3h-P<uQN5ST?K8;~gsHdotQ3V<xny*TeTM;`Jgi69EEVKl-ScKYDNP
zzz74OPRG94R4WF7#Zc1RBjk1seqK#0abeh4%4gFxqzAKff)ya*sp_3TJte5E%ox*6
z#sXH2c+VRj3;q-sHDT5hsSY{98~5%NF=_1U<q;qVBSoZ1jWCXJ0O0hvFawEKzo**F
zrii{o>@+Q*kd{retU!%TK>5%Z#9SDadeSXd!fOB#LVQcuWx`url4~}t4S^bM`bXuH
zSIwsVh1PzX>Q;bNl~c1$Es_36dCer$O;CtOs-rYt5ZE}Z0rox^mzsR*C5vzmWNOqq
zrZy#N?f}B}Ulc#TxGy<Gd0WFW(aozg?U6Jw33T)DxB`~wiUL7#iJPd83Pfn4SNe!l
zMBW)Il{NLd+VE-rdt3PeBs{0U1VoxQhsP%(y6V?=TLZ*q`r?2H<pJg+&Vwp71E6s+
zoc#wDr*!v6tdQ#{XH6rAP|xW@ZSqzx<4Hz+9p^+X^8<mI(z_TQ(%A8^hiy_A4clgN
zp8Tffh$*f!*wZ2bvLK_bZnap^g9XV9%&~7A{kr$(Dn8&;r8Rgn3pt?B5|=NzU1q%$
zjI5j$By3&n|8^>7>_BHCQHH}0s_)yUPcb-+#Idc<s0i1~wiD7m(EU_{jI=))eH0s^
z1#_5V#|TTrA}n{cOxV4hbp!|j1fSyaDBUP2DcQe#NqS7%83;2`GwPktY~PCRH<bKL
z=4&sVIisly)?bFSXo+dOXr8!KvCEg_v5;iz2SkU{m8a+0ZAbpuw8h|~kl~yxk#RD9
z`J)2XwLNh8C1RpNm;vg{(coxR=POjQ;ZisWIi%T5!#PK9wUg6c!)-q+EtLsG@`)Hr
zx`lql0moj<q-$B&ky64a^+o{XDUBno0#7Y@&>V6Y-}lp(e36ijC!2^i_6G$IE`-Os
zW1PRqoL^)!ZF--*CRLy@fPSfQvNurMWQ~grN;DQDPi>;bgcuVyAc9*j1`l`xJ1N7(
zsl8hTsx#v?YeuYltMcZ>h3R2Ur5<dvyBZ65(YX4zx0!!^=X&CRzmDxo_Uw*DxFWs?
zvZ{b;NjZcJtOvqfKqzTmCg_ED#93{44Ff11@-jkhcoWZC>G~LR6pTY$8)$qitNUM@
zOs|5LQ?ZWk=)}mQr%vv6QwCPCbsC#-nkuX{SWQQKvbUBp{joy4Jn>m~%V*7z&0Ccv
z5EMG*mP3XP%_e*nux8!60nL94z_Ne1?E27-Jr|Auh~SfoykE&MCT}B}@~htcQJFkr
zy#RG~Z0DsgIx<a8UFr8yJ9m-H)`}Hv>$l+$u95{Pr!qfv<AY-D_zP$PB0YP@$`@i7
zN-ePNt@~oCLvzim{l9ODG3K*=>Nwi>e1eR}AQs<*Xd!mZC+?1@BXETn^RiHMRD7`y
zJBMPkG+_eJo~qFged*sOK5@QFHF+5w3aEpw$90&#pvLVx`kD=)j^TgUy|;+ifc+gR
z1T}2`wN4yu(iFaC&YUW|RqL_8SrzDq2l?j>d1ZSXBD0biitj?D7u!5E?}`Zc{O#UN
z4Oikc;H7~m{9}FK@Wd@9F_lwnVmnI4BM5wI!^i!<P{T{vhTXkLbRdX|ygS&qzd?me
zO=QyIXEOAxxh{8T9%NcTR&Upc7v#k+Rrn?QVd)^&%(APE0gG!sQ5tN>{<+PTw`cW%
zCd3LR;QG`eINI<-I!i3#qLLm_fzja^pM%K)OAWh@6)v5Qj8_V({}!JroZ-C!uFTv{
zjO-|Dx85}%H?UFOQiV`VQljjKkO=4Z6)~1f!Qg;9(eNkk)s>u_9~5YuHbWli8VWSV
z<?D5VRy&j~>*Yf`M*QfXHUe=STgJ<85%QFEQL+R9_*?YtnJVsbvB?SlB?!hmb<XnE
z-(crHQW$hPUS)&r)f(Ly^ZHHYm+%)<*O(bj>tAQ>#u+$|B;}UxZL@S#lICj<O)~lX
zy_rk@HZaU$kU;)nn^`Pe<z3#Cy-i#~H*an!BTpxQZMMK9_+_KX<{lrsH55qH;cZie
zC`F<skD@a+XMQWm2FGX){IZ$v%tVZ{sfL0|)>7{J+7`+h{jbtr)JFmn#SV{O0Uk_l
zo>pJCfxX*p`Ip-lk>oA|j!bk;xjhtdoK*wKM<=lNLvET$%vW)Z;I6uLKgteZu2*1K
z4ak0fn~q<jSRNA4eiqW?b;ui4#vL%EpI|JkE%{Zg#s`oMv6xPQCoNAUok#PlzEe6G
zd7rsmG9f012@{=T7paC50^dn~hC_^h*@um*i3VY|z^S@Ru1z&nQLx7+*85g`DYai*
zL!Tgoy5$wwnPF=JCg@{NALn+1aeA<4;|Bb4zt4N*?U7*xQ0{g`MEvjnj3t0B3l{v`
z)KQ}AS@Q7I<XC->x=m;ymEJuHI4X6w{F;+Shv8p@c7mzg?U^OQbdX|=AJQ^lsebiz
z1xLy6FB&;%hn|0So7(43Pd%7rHnl6(0RrX!+3W;)SE;u3x`f?J7b2JbhoiRX6wM7+
z?a&7UB47^rvfl}$8kChU9RpI6uU%MuS|=ty4vZoPV4+E``4H0>ln>_48HhAwOdMhR
zIB2EFZr9i)S4bQgM|x8lm7SGk`tNpMz2Dju>=;W(Aq-t&eP<#4nO8x@RTLL0BkYhr
zVb|;6eR)TZS5J?$pibR#tSg%Zte^kpv#qIHna!B<roTMDodMg@XfFNUfddDA7LCv0
zCP6dZQy?|G?AbH+dY<VA#T@pgkZOeU&R$Qv-2kz5YdZd~YtGxxiLe^Pz}m@D^Mt%9
zfWrf^R*2n;`UTwn#j9F&3D7%RE@0boE68p08#87iC3?>OSVps-Y(bKwGS0>jw<U_`
zO)CY-Pz?fz)!I&HA#849Dyy=8<-f!_Slh0=*7;RVTg!JJXQ*ROU}8H#Y|L5>&sqp=
zWSr%|lqgaHol(=~&fRzHF=8X;F4fjdlDTbYq!SfSR=n?b<bPU#3x}(}FtgjJvOT$;
zH?<Fn#5iry`=m<f9>1II*mxnv`HLTEzM#~nqtQAMQ~ed@Unh5~e}=3{iF2E>W<`Qb
zWw3g^DK%Spy0HRs-a~jG^p4g|qr&_MO!7L%z3%*<jlO-(Qdqka*6$&jOb%E4M-sO4
z$rZMTJP`Ys3BZKIx@$i#6x+ym*y|bk0DtsZR9jv!_SI+eI|O#ibT=2pgUCbhxQB}U
z1BD33rp%aNQKS>}f=XERq`TdA8xtf@A{&bRit{(7fab3%^IE^UvXEYf#WaZncNdfC
zM_V;;+Ov#uq@!UqB7bigv!5x|)4{tz{MAsNKg<&gG4p#nEJ{gg19qIxO?v86yLZ7w
zL$f5#r_R0U6K?}LvXv~{xPkcG>LEpxW~cTAYMW81*}Ru<Bo}PYT}pBP3ElW3ad&-#
zs$QrxC9cRe3>=%Flh{;)-=K!M(Tyq0i&2dAIYH@z(aojyLEHYTW)jY)Gf<uI7q(6Z
zDp|Za<5}J3ckauVYu%2D&!RLTrW-fF1ii>8iamY$bi$FmGUNL52@I^gCPy5obc+c>
zD57<Hwaa5pdOJ0>z9+6-dy_=kJkiefU%mHbm5gx7?l{Fhh)VvVmO3^G`>I!qVE?29
zy4uvH$&k^T&2R8>y_F_T`^p2~B+<eu?O?wbM{X~8zbN(dwv4Cr+EBtiW`CPhn-*BE
zP?(sQ+A^Kv@#bC|3L%sX6J{KnyFL(y843kF>=m%v#(PB8$FCS!c_S<DWtf<J<clCj
z-C+5cKfi&*XlQGjiBvshaAp(9#owSa47q^zA`b1v2{NLT$+Msd%3bB%qoT!2)4j(B
zBS&k~W!O@fuYTM&`TH0^`Qz?9?H80+)1ktkhVEsPT9iANK+Y}q@USUoWG;IyIVH}A
z!`R+-MC9pu=RX*n(pprus=sf4&a7VVnJ;$^Sxgkws<&s-QVF`>Zgn?P4j5y$Hmjd*
zO|hP-PEWN3Mphv^d;_BrzR}%T%^Fd8V&H8bWI)hUGY)KekZ*>qd$-ZP$*(a^%KMRW
z4#KZ#LI&Kx^uAg1btW2r@Ct+_Vw8Q>OM@7%FrBRqlTR8nru5dJelD2LMm*CA)*xu&
zS%&kep2~Q^YF&1DeELMjjpHHwFIfamB$$cUtFYdRCeREv?)qt+F(5sX`%bh3v!r;7
zoR-k^O89>-5Ddj79GPIuuo&|}VKzVx4&_k*Tm7q|;!PPBYpvSv(gCw@g#w)g{nH>S
z)C0v=tIk4lKt!50z{ZIni&@K_J$j5OJc?B>$*43j&vqy3O$w!{u}(P8RlU_s{AfAT
zx6IK~Z2PH|Elv!;>kLTcjOWKb;_`{M=J_em=obwJYU2vZZu5Mf505~d;?h%Jvo_sY
z87fK2G=+k|3yY#twKHA!l(t*{vXryCqoRHpJN6%qoa*7s*{;LDH0hrnoFQR$@zO@n
z`FsA;jl(5r1kR=3^--lx3s6$gk-lEB9O<Q>-4X=!aRY)p!WP|p+P>)lReMfHckwHO
zwj^g`jcs#@%i^s2u^Q9Tp-iXz*yEhi70C99BW-v+@+)r8fWEs13#%Atc+kVzmS&Jl
zV4{`-$uX_)UO~b7zsEh_aqdrNX8^=~w|qeipmWY`Xs3&XW7CFl7@B4Z2K0|-=K93X
zgD`UY^gF&O#5Cs1ZnY1YaEfulW|f|HPq;pcrV=|QC8a;G;@_Zs+l_7F$JcvLfGVYP
zqSg!?{1Vxf(Az!J?^6$u@=ZH;P>4oqk#5+gm~$1>Rq|X+%#X9eeAhmu9#dM}OS6b>
zG2U%Jo#m7Fy{u*kPgdWr)Mm6)Z;EGh#j<2aLt_{9>*(j##`HL+GqNf0`52K5^}TAA
z%(HEvx0k)?5?61DXO}_KmU0#_iML@<Y}0@g|5BtUfi!NVxw-ka99GioKXzpQ{_wKm
z)zoD3M$!;Ml+g40g)kg3Z9z<w={55(M)ugYyoo5)O~Ev|o^V%$Gfksat_03?m`dF?
zi=~~(q2k2@7M)w(@uLUw$M*2*c`kn!fnTH#{GRTpY-T=GUN3_?ueJ}|>f2vtxuW(d
zIorJi1OGu0+)=+drDOl9onxMS>{shKee0uEDKQPhC$cggq-(sVYS1?B(-4&F2O{=c
zM;qSFb?=+@(qg8j#tR{%jJhz-YaEsYI!RF^+oS)xy#>;JzawMDk*5E5f6X(wxMJD}
z2mFIV$V!1qX3m@`yFDpb{4zjz{vmtYs{BW`wX@o_y&?16BNe^Ko(`#lE(Ybs*Sfg4
z;31g!$hI};!$3ZrAA1B8m-yF2aUgVK*0!(R>GVP5e||?qL$Fm$gGx!jhN`&@H-<fZ
z#{6MiM%5q&yu!n$ZgbLm_3<~Y=-0_f@F%^@jlRNupd<Uhox(f&2L=DM0IiL*zx1Yd
zi=vBH_n)|-+I=ByaA_qCo1jCAG30J!3q=~CyLzq4DwC<8&>N5K=FGV`-LYO>+%Tx0
zl78LjpMbH&)pbzMvKt0y-|+M>7Ml=;w2p->q7E@1bj6X`0uBR|xYa}ED-UG$tS<&`
z{QkT%{alFcnLJ$SFaCSrH^}C)Q!Dl{S;$Z~rRnrpeP)(rv$$;|*igXcST1>T9_sJ<
zCFqb%K|eIR#A1g>4y6<Ri<UMs-Rz8i!65^+ab&j&dT+!4;lqvA8D_N-ZCiQSFn~ci
zAJ3Zc<Hp7D?9Im=#*cJ}U<w!)D%LT4F8*=2DrtS1?z{^ZA@=HRo4=MGPj$fTU_kvg
zir+AX5Xm^Tkj~*p2~bMx%8U(j#wK)Ij(6jibY@*wzB3NZy?)(hbvKs~tAByzV0t3w
zuf@B`x8dC|X}z(*000n?q|6nkzhCCLb@y%^^NekW0%y)E+0t!PXOI@fIzlzGCJWQU
zZQSiVbp1WTlDJ&DiROv6hgDIyBuVD75iJKlQfz>@u-lf2hZs!T(OY><alrJdg=b$4
zo%x6`Zed{>dqMhx&pp_{>~Ayx6zVsh1*2)=|C>fK(Od{U*EH2L8|a)UBB0>BIkczx
zh!1Qx)qX2H_i_1=vM+0&9d);`wmLDsb)<QpSyOu|cW|*h^!D7q*rPuEoy?T1w(Ix#
zJJa%1<?+*Vwa#tbdf~4t`&yV4-FL75`ut(p!^dkZ_PQG#x>@4tQ2WC7Vnu$H;r_%D
zkI@xs3Weg5YAo<=r#GmRS07Iqh6nP2FDmWcM3tYxOzh9(oGo2W&#0YrZQJ;6omzJH
zUY_=z-jq!bgR@}oKHeNDwzPwMLuy_fiWx@-Vm&GH^WsWIi**0}F>l4^XB*oNx_7bR
zamBq62N98VdNU-bO^Zqd?MpxG&RWQrR45ZZhS95w1GMbkpMEe7JK4oiD~lGs>9=B8
z0PWU}NsU|lgJW7P3xrL|rUb<(leB1s(2TLO!ZqD1F4WG>{@mUB!ynmi4hP;noIGRq
zfa^y~?zTR{>+JV-$4{50p?-4Fht1?Uo00t7k8D_k+$yXL0;%7v+QGACu0MWE^X|J-
z5BtlIY1FoTldP;;oYDaYn=tMsblKpP3pGU%9hxcPbD7Q;U#;A;=;OfJH!Jf`6<OLN
zM~+;2@oSCqC_K>?fV*YSF?zD{;a|CXj`MsK(;u#H*==VkCdv1Qy;*bge3f~2{l1OA
z&U~|z5a5#hbj_P1H_p!A4T-wd@Ec&PAeY()wWDa%T)s4P$5|Y~R?m}$iyLP?h?*nf
z<1OIpBWKuA0YSH=-g6!K{)|)h8YYPSGVW7^4PAXB>=t+XOkHtM_$SJ|VqTthrFz!$
z_#LzJrgwL{+H=o}3qXav^LgHHAj}{B)SWYT&EVV7wO<!!zoAvnUwr|^tW~0Qyz_;Z
zZ@Q$_AB|rTnbb_nYv?o!LDz%ThYzBAi%z}xvbOJ=+tAV)H)clZ*rljbg*`5JJ-qhu
ztfB+cwcbV8tUqE-W-ku@{pN&wp`&W1d)GXeuidA)!aN+6h-}HB)<DCuG~@G2dCH0`
zQ5w7cYc*c;&E2OT?(mom>dW`v@yGT}aV$$X`s@>TYM*!w0GK*sc0VsaKa@Yy=M9zB
z3g2VPDI((_`E%<N4@C!pxi7mt>dwk%>syL4ID7?7_34D8FK&*knDo>5(ibnXnBa<@
zxgGthOLF(s&(=@QxCgB<sL%9nKGg-=!o!c>bLHF8&0OpICQd8y9#Fuo`&vq{aa&+c
zHQyjd(yWLrwAP!E*1Pd@{@OloxcUZfkNsmk>4Ym`B{ip;SMN702Oi>dwz}T?^NSso
zSUU85GphE{@#$5~j=5+p82)KvTO<Gdp+;+tXzy>Ko!HI$!(}VFZs;fb#=4x*e|qPi
zGCI6=XXW;x+N$OwHErh}cK@f%FcWm08pWr(FPiQ7B2v3A&vPS#z|LP>%5wY0s5iVn
zw`|RNg<@TM_lJL-KJw|O<3kQ5H<u^qt2TS}yzH|u+<QFsf*d=aU*EXXDI|a*;OL4+
zLmw{b@a^O1Z{f*s<sE@zA06=8{?o9>9#gHWqgX8V<=wKi6Ng(}J_%%OG3wL5&iE&P
z8~Mbi_OVSG4lYJcMXx3fxS%Z8GWO_kt~_x2+UzGS)a;MlbUOXu&pp9mHEMIb+kv|E
z`*5MEs>+c<C-*EbwUcQ<m<_dJ@V5$(j!{3g?G|OeJ<g49dIgRvYy~1DCY+p)r_3PC
zV4SP>!3j6<e1nVdX`PN@QCze5afyGgkO|T3|I`KKJXc`9*y7Tx<0smTd0<)S_8K9k
zO#r21-#1f?K0EKPWkYIi-N0wJ`@w>a$=TBB_dcE(*ZQARwo}&%ms4xOl_-e|>TiB;
zz=dk-^W2oCQ@fEGY6Ksg`WBB)*OD#64o3Z~P-tnB@IyOT81!^H$`wuJfF6qApDX5G
zbF0ejJAcxgHLnv76+f6CqxbI+7NzdeU*1Dkck#xl!&y^RoG?ArF)icy-(3df`OXUC
zaQtpD{6&Pb43f@Qeq(+P6lcEo&yQBzci1s=`{-|<^K(Dam!QBL<;YZz-`VWHPCr(S
z@u``SW>oCoOFE%9qZ)6GZ96%ddAy^pJSerg*;5QFO=PV}ZhhOebz@`G01|Ev@5>X}
zk-RMZ#df`wyI+rOJ4$)jQ*ZaQn|XOfrOm&-{?(}N8IgAS`tA&e<r;irRb2jRABU+$
z-1zOO-G;lBj&qkt>p7d4dNMCnvE=d4lTl~S_G0+KGowC6w~O_ys`<O=3wBhVJd#hj
zTf%<33HOXXGz;7wrgO~pY&}wuru!PGo8r%xI=J&^#e_RVEl~#Ko&`lM;6^q@TFt+1
zEbRVfPcTnaajEFk<CPCP4sxCVpQ7n?Xz$9I=WB`<w;1sarX&z#P}W_BU*Ir$Y|OgE
zUCr9N>dCHTDC=$*<oI(VS9HkOQ2luMKW(fsyg&Q<vv<q)k!wy@?Y=r^Xdtq=MN!GH
zaeIpf-=zkbKPgsN(ET)bE&9*=wbP*9Dd{hFJ39~|&v4m>t+o(q+3ZZai;=-)*LNK+
z@B&mExZkAHw#IzT(|pu3uagdkeIm=A$(lTM?{N1&qrBdy7a&>-uJ!x1<G>z7#Teyq
z6?+P*l661)I^o``C!X`Y>z;4sO-6gY4`^#t*JDO4g=We9-ildA<FpQ?+$PAEewOQm
zitlmx*HFW%t1En;8839>i)4k6779wH#h7Q@82V5-p-@RVs={LZ5o_Yv@4j2B&@g3(
zPcho%sG;aF+0Ne8wCX(DVJM6%l<)9-7bZ}%WuHaSq^(I%R!qnt20Fo>_^l~rjX@cp
zpLPoKLC&}t7vncD)t)e<kDPJElivaBx_P}#EnIx`f-JVo^(7|X)2TReEvB&=yXoZP
zVV{^>?TnZ=`1gFn-*GTayX^k)<Hr*6Qy|A<_5NDzR-CF}_xw@AX5{bG@0B&!Z`He#
z_m|!te3v7lT7UmBLVAq>1D5T*e=RRB5Mvtyr_Sa4Jk^G`$ERRSwCKWcE?KAf(Vl-s
z`P4ixOVuYycO$?fpeXq1;@=Ld9uGOYsv<i1(BwU;UhhuY$^Cvas*K<q%AfCRgolW8
zMWIuuo{DDP=&!G)Sb>E(JM3JTw5O`V4J>m{)C%f~$~#j=XN~XfqYM}xD3^cb1D72q
z4?bwj|Mq1{_JNmrq7Vu%6D}M?e*UD#4lXyI=5X9kUe^BiFlCg--fu?JSY~CH@a<bO
zOSizZsI%sPWpUtBx%KH~(GSaqlc<B?OEQ)}pJ>SzgOY=Lmg?L}J-ow)Lah79x5vi1
zW^EXhXkXM!5qOPV=IW~+udrjdQBT9Sq4dHJZ4C#OY@VvPbgu#_YpA5n8FO5-RGtL?
zDz`|Xh#1~CYPoT2zUTY&vO#_NKlZpY8Q-@&7_TuVCP=L`mR|UD4^C#Tx^La{)cdo&
zOi4|S5X+TxM^{=8IRD$|uhmnthqN70z7NjVd62D#(|hQE!g-s!7LyyiOukGr^5Gbl
zaNt6~L&i}cIhE~Q6~arp!je{*3jm1<u6uht-w|G^(|sw!P*TO+`ZiKIlE{~XNtq*v
zb)rk54Uuh2xWx!<IbZ&D7Z)ZW5qSK}6CyE)E=RTA7rjfa*54^9z~+^F<MBujN(h)!
zOia-3XoA=%pL?4&QQh@QJ7!fkCh()KM-Bhohzeshp?px_su$OGgmR$=Sd4gep!th*
zN?a!<T0u@W`PUsuD5BIT#97Lz_VKDvenyrgOxD>1;~SL)81Vc1`$VggfsqSm44M3i
z>=EeyZO_3qoQl7yA5H$e$`fBaDVc|^vFADbesIW9&`Z$JQ<vTO+U@1tMY(2o^1B&%
zYV5DWd-uOkeY>>wRCnLHo^TSX*n|a9s$_wrw&(xcWE4w#T3Ko76<9QNZpM@HPbezR
zPK#YQnGZPU5ubGNJI0be6+j|Qu1iuBN_+{TkRM3BdF<xXoLPv0sb=(+>#tZrrQo2x
zvT$A{CaB|0uJA>asxP;kzjwtn35>b5f5e-?>kO-3->Y3aG@KzssJ=6fHa;~NQ(#HS
zJQJa@|DL61wQm}JyzXE3ZuB#JIZJSv2qCb<NByeMYDKPd%vQcj@=z@wVEg?9GM<T^
zNLC<~<mny_28I}aWm$)YXc+&}HWhE!FW-UT1^<g*-!1dgIs1Yy+jZ5WcAUaM$;2pu
z8%j?u%lO=f`f<;e*}b^u68X+h(94F+78$Fo4$~#tb2FQg_4ax0_FVW%R6>0_tUP+|
z{n<7a1N1ET&&B6?*{<?}j^`WgdApWW=}IB9^ur^`2a+1WyVkC+kZ7JYYuN=AxjB+_
z+Eva9fF7u%X{&1!{g6K`DN~q}OSQU7<-_9)+`EI1WLX0O%do^vGi`=Wo8aI;*bs?<
zE0^!jNq&!SfBAHD?G{9#nlCB<u(HuuIN{p1xa%xZRL8*!EIj~>4mdTpY#w-=B#Y@o
zsaK8MX<sHq>4j^4%BQFan6)%r6P@Py8MXZvNq~?AFpO1GvX}f|au#CWK6T&qJd2Tv
zF|H#@f`2b&;ntLUhz>#}8h^IYR?K}fg!69jximcdqWVKxnG%ZWs(C8^y|6v6qTFwa
zRh|wMwF-Ns9z07$O0;FF#c)j^kvn|STYYvsllo8`S{<>m0Tnsde6r(X>XbNCXeeg>
zrRnQyt(TBewd3L!O&mC*R|ZeMO{o{0yZ`XP#Dnp2gRlRde}!4ft^~>eUg*;OW&Gsf
zl@#r&N&C*4gQLjvsl3u*$`!i(9r~Z#9cnOy>Nvt<0gX@}I>|%EPmdZL*?sVAUedy(
zcrya%em=C66mpGA`0Ak-Sprf?M{tG8rvrAoUsW9}x6~b}{#d?0H2Y%Xr=yH5Js1(1
zOQMlGNn5HmKgMTetG++(J0q)!C{@*Y2mv4^DYlmX>y9X#Hs0u;FwVpS>x8u9YY&IL
zC@aeWpJ?szq+opau7toRe?GmKK>3nI1He*<e+$b~Jv}`u?_X>jGK1v^gV=#OC#rJa
zq`aAli7l4A!1bf^W_7m-XbFctkS5KZi>-aIxgzimwT_rniEO;D7wyyJKFL2Q6fXIo
z)xtC6*3)u_NM6e_;T?{d$ua7H^xVnBL~ge0tN0xUqZV8n##^c5UX+ke{W*oE_yxrg
zZ&>cQA6u2lrKP3HpGUEbL>au%S8|MylkAiXpuQVVU9q2bsDR_Icj}kCgEP*0ER>Jh
z$Q)BPyN(67@~26Y)G{dEo!b>kI?;oJzwn@T&+qds&U2E*&MOPfPW|)e&ol*F5;!cZ
zNH{enzSVSmTuO?uXAT9IGLaX_=$z}VKU!v`oO{1}<q7MBIbBx;!*q=^k^Nk9uU`Gs
zTx(O<?x?f<i2yQhCDx&VDo%M3+IS6J*b;r35*}YYr}LHBT}-1BkI@9#J=0F2)|x8^
zEq4vQxI_dsyTMw=X$l6B#C-iBn{trNgk9(xy;{S<;Q1!ysm&Bw^Y}=vB)S}|vv$38
zK>q1UK#kw2MDesIOo!)wEHF$bLNDL&<D@7K|F#`FkWTU1{iU5>2{;@P-fYiUGnK;j
z@iQzOTu?MhzSVr%Wv}PUT>^MF-+L~lnTF=O1K}2d&>82)<S-{<fKy+44g&^wXy~pm
z(HCc*?v~Z5UEYDWCw@>wY$E4fK^nFneMatVd_PLa6_fN;6qf4!&pg`@yy3M#JEtGH
zO$-e9?|!d4p-y_0*w^O`H2iRpw#)j)z(mEmH0S?6oI-i$$QXF#<(A!*7ymIt!;v=s
zs#eYDs;j*!!G%=IAJJswfb<ABpm)%t%gXEeIr5H_yuWZE!Z$2pS$*SI6`R<dT8YhF
z#*w0&5EdcIRB3n7M`s)oWD0~%+5oJ9dHf3{VC_@x@e#)xHrADF+xu>`&-YKh?rC!4
z!BPsQ13Q1z(k50|JOW+GttW1WGNGEy!HRO!nd_e1IR8v$JIk4o2i;!3P5}gw{>#LK
z!Zt_6&fe;o`zqdC$B`?SNH)w;S+<vrI$fuX{^|i{96Kh5Bsfyw3g^e1b%Xb3N&<De
zMR-0*Y!ji)Yw-pp>N^7ve$=m{s&DONpjw_=+;R?lPRzG2WzG&H2Ar8ps68~ZY`%Z;
zF$<4>t$EltU#;Ktt&Z*Y_5S)|z}f&wi&6|y-KWx-istZ6NQ)&KP=q19vr3!&HGk#0
z+xt#zpK6x~cy8~OtC_n7{I>GnsZ&(yzQBoPOEWGFzw4E2mZ^?etH~4l;k9xvrENG<
z9H{H~{!x1Fnon)}H4BUm)3JPs&;78FQ8k6mqu3fyNK;)*sI}m*9807~QI)V~&%xe?
zxeRY+L^0)WS22Sb-u3&}uq?7ku^;Yfw6^h!a=1eC9nn8z$LuxQp5n>zZo;KLBGzZJ
zau8+1{E=f8irw86zyZtGd5MS5(ILeVoOA1wkKYXBai6$UCbbQ<y2`Q(pQfoVztqe$
zdH@Mt3JmrGTSs}^HuD=%%l!|Ol4eHt75`clWcVzOyt4m)T7ZVQke`#snW<>G!#x#C
z4N7m=+lw}C%l?oNI*q9C5AFO#p+(~PQzW{MX!&!WNL436Kz&Vltacwlsr)iOeD}~1
z?L_O&a<_2~*sI~0-1yRa-I1)_Ykl_|P>L9e4(^)PwC$WK9m%`DbTc&AWpNfQ6?lcD
zb(Pm61VcSfeOdX)J>L}VT2SwYk_{N@Ux;7gV7C5PCb-jfcHQByaz<JTG4M-C_itKZ
z_Lu4-Cz7!{17j!)AR%wtHGfnsfIRXmDQ_zA5R=+ca0%^0KPrZnO0YyWdu1)Nq|Qg_
z<s_ksOWW<%KYjmB5sMB_nKg@-5@<H}F)+KDWQA?^iz&BF-MX&3?R+CF$t-Ei!hh)t
zC6^Z$Ek3F@B<tTH)L^bsRGy)4>ZMUklHTGJGQ7`hpHFv<Yqifpj<HxpAI0x#Y8yuc
zq57UxrOo&5K?dBi+v>Rx<$6*DO4&8<Vg&8?AQ$tf<(aLTqT<CiqX>EPhkjl&=CU>s
zVH#uk#XzGWa9vlV#{o(QQkQp5^VnV@D&Fb3FCr9|&O%gaNaYcHao|$05&55x+B+Qw
zegDGyP7tkTR($~_FxPLDJPW<1$Yf33j&PS%b5{UMGHm~6a-_}r+X<x3N@C5Su1@=z
zKkhQe_p^&3^-a5WaELq0sZ_swjQKX{V6v(WH0)c#cq+6-7H3*rT7rC|hJJ$d7_t+m
z3&Qrmy(^2fr6eizEZZvvteE}ZxKTfXN$L(zYavt~Lmr$fi}w0u)cW>uoF`AD6Tu|J
zQBu&>aTCG&mL-Gpc7SgQy-@pP<cm#;OF97A!BX-GAaNDtPz@q)bwcpY?gsyz+%9)1
z1WG^i|EworAkX|ImF4&%eTDgvyL~^}CRp}FK(WWM^E$m*d=bOyTVtg_lTx5p@#)KR
zkTQmD?zTn?<CrtK_gPEs$^6Utgt(OZR7*{@8FoIsy>{5UnSFURWvxz)*AEwSrMz6Y
zygYVuHfeiMMzealvHf6muDO~!t~3SW5sDrfj+Aer2R#D}^t)1$-E2>nU%CvP^v8dt
zrq<TGeJ2VWh!j4?v9n^|v1tPmhc3L`JMH*g4aHF5mIWq~%jjGofG?Gl0ScFB$Fwb8
zxDPcIMLf7ZUdSf{Ii#bqY%FW)mj3c=?U1F93_uCHjPK^@oF;X^8LI#N43N3rnLJEP
z!L29#tZ=#0H^#fY02Pux`0rtF?RZ+<JWIEoq22hpuhaKar3JsX+a-DO)E4XXuDxEn
za>tcTM(fh{Q4UpRwjSWDY&)6;Q_O;byA11}<@|=yvo?!h)QvXEqDJz>YCytX$Re_w
zEo)Zy9d>Dvw1d6IhXfx^IjbY^+1va*!v;tml2Vg|HX01ldQvNe%RijEE*$4I3=Rzf
z65LxklTiSg*(d&YEJo_Zdwl<hm$oO-qmol2lhN4k{QfXw4xA+x9oqTh+&8y*3zV#F
zMa-Z31deq-ZDHlrUZDqe_PfL5D3)fHM>K$${ph!p1)ue?B4sawdEl#kORTM1OdpHJ
z5Xo#0@XR2Cmph#X&EBK$G)`cyR1S4E!|2xLKPzUP#zFTA@1z^iG6?KsFq-pS=ci%p
zd8Q;}q<HnqEsEdS{`==Hw6;y2uD|l}iu=xA<u0oIq|l1!zV?fL1_{&o$N?qG6I2&!
z6bJzwrWoo!n3d*iCM~q<hs!N<AfoonJjINRkXep2Zb54ar@6ioPr84r8!r|=PSZPC
zx<%MDySJYR-PCb-Ra{V`)xNg+FVL%P2!~sC^{`~`TyKOmWf9iRFWsAm6LKZ*PbjZA
zIWv;nA@;-XWB#qoR|y2*8X?`g)|?FQz=eXK0mkb+ZZ}?in_=y|Pl{tN1TCTBpd{ta
zH6@z9%?s;o__B>pzcs8Cp*C!{c@0BJ9hyQWn@0OE7!<b)6oo)|!e8Eo1emvW(CM?+
zyo#ruYi&Nb?N&20mASoS&%kQ#fD@&eSU&~de?r_b03h2B@gxn|8J?hQG1u0VW6S$@
zq<C<>+(J!;o8+$Q&%LycX-o^ZNr<_*sl6JBcULA4d#ntWZl<sQ{S6&ENqU<cJ%!rN
z=*x$H1U_srgaPf+&-7$!1QIj-Hka<nk^vMs#}cSivYAc!$LZ*Wnm|FI1#5FW_YM4}
z>E~0?n*z4ULFjb!G;1uR;R3VOI`zw#%g*>5xw#beRGd<#L#RYOJRXL-nENoN!c~Yy
z4OGLDeW<bW>Z*TJXkC-6Cb$FUorbf$E3?=r^khxwJBs+~il?Kc?rzUbS1dU~`7EPx
zQ|@uPTtTCZ1n*ZUZga2F5;z-GtF{BzhQQ0kM=2=^w<6Xer4Dff6eT0@s08A*wrFwe
z(=0r8Skg97io~5n<C#a%r5U`Mq7DGLZSRFwzpGH^{U!(w!LHxz)zAHcFZVsn<W4_O
zncoN#4@(;qrW1LK9q=dUEe+<k`ui7)soaCxe4Tcdd!6;ftD-A6Xks^s2Ox@BwCQ#m
z5}WOF7FvrXDFUWR(hZi;4cUMCX4I<9U03>#ZmbM-t;|x(Y1UHRl7B(5?#SNn?a4tw
z)`X1p_b&u`E#VPN9FAFUPcqpOX$f-Ia3PEo-S_?Y6)e0dP?Day!gn~7>0_T249J-S
z=+{uV@X+3{@x)w53hBuq><ID|n9Xw%q5KIz+v*pQc42LMP3MceQ@-!8%0WO{E3_z%
zpF6Lgy#IjGv0Y@?b`t*>pSl9jbN0!yQ};9pki^9>!=Ysz#sXV2rW8PqZu+)VEPf+S
zgZQwmbBEMh2+MM)<EBp1<}0R6GLw`t{SJ+Aw?k2G=4sI*RxBFK-~k=+rN1R$NUWon
zqR(}zD$Rva)7m2;rW}~n5F{iOoV$4pH|=B-v`N6#`PXamD$=>!y5h8J{eytH{xWyo
zx08}ZITk~VEA-8dF#M7OgpRlq@}nZ&n(n5T98!;0#gm`Yj0b?7@zL%L20WKz#-=T{
z%{11WzL@2*!(qFdj$*C@Qz7jD`$MQe5F0fDnOr$?`pIrLopot{aktIZ7E}9$5|q=g
zrab1|%l8Kzk_sMf_3+h{Hp-(kZPz)5(Q{Uu|7am-w>~>>rRow~ls!#bR}NNa=|fox
z(hcG<gK@FJHJmbo*9rUM$Ycvq;wbVuY6@&O*Fkzh>WC13e|gSbmYv_Ww1;BuUU|6&
z)DPjGMpm5fK#en5zn$XnH8@%U3t^1A5g6Ba15P51daE_zFS*Z>z6(Kyig^RUeC!33
zIIRx+6lk7K1H0r1+lpj<R3cXJSL8W4unkT$E~!`u2x}vLWqg6(2ngEoen;+0%9aAj
z-=Dv8Xv*2wNf8|`-&@E@+yWSB1W6tB<+y}E>Y>7==ic28X~|dO*D(ufRx`5|sL$ln
ziHUn2t=o|A1Q&H<AqFi|C;f0~H_LEK$dw^dZahGIKSNG8CwANatMyhr8SW`XDSve8
zq_#`?hubt;cch5Pj1uW?{QbMGEbJ+ofF{mcv2ft`^SJ|Mw<*y#{8O7@kA9>5|BJ4C
z-H;o5M-G!AHik41Ts2`}`D+`0e?j+{9QWscP(I%v!VE|(NKmR7Pl*Tm$l$A+H&ZN5
zr&y6T`wH!NG^t;4@4x|YiT{2@%s>}AB^sZV(Mv%>B!C~@gQu;8uo*)1uzEKJp6LJk
zZ?#lkK1K@p8F<zh2>dE6-C^k=QShj@YsW%2*K2yG55SME8^Wdd-_KLH%%t6yYDYsu
z+Df9T1#xB|n4=(fX-4l(+;RLr?7ewd&F$AVz703YR1qqoG)IX_xl5rmY1AkcC6o-6
zC}}{^s5BTVgra$(QIj+%bEL@BB!mhn4SLVDD_?%k^E=*u-s5=xc%P2r`9ALUZtu_M
z`drsq=Q`K9)&l#WBgw{Kbo_OtcJS!#WGt%t(O)G5=`=Yyz;z~83qYN*vuA=OT#v2@
z209ZF3xG}d&v(8?_H-^7Ev!A5^2$gP%X3cr43V4U6)7CgDt>=CkSJp^`&&GK2*&=_
zd-+~USRj^`Hba(g6=mFUtIE$^DmYC99%5r~!{uvAO=mE8fZNCZjKRiEcovhN70s;n
zKUS3jXlDMIGb~;OL6a2JoO6OXr9<-n{Zq<TBl#iRL74^7YcU+Oy|0e<&T7HU1~YTO
z1-Mwp$EtJVkuvoThHB;aH}_dl&_5qakLrHkxt4weB8!w6dg~AO)R{Pf1fce*&>P_q
zFq1XdD;sqt!4UqrVuR^O1XWOoj{~sb2Tn?kYwIaBgAM-x#KG*U!t7h4NnG`7*dog2
z5v#=b=h7c5kP$`950IZV0Fv$xD7@Gqozceo9L|45!Y^W@j=%pbVIg<an}pCk5uF(u
z`^VZdo;?C~as8B8MIsUG7m%QEkbyWS@iEgFITDn~E$k|rT3rBZL!1>QkiE-BjOxgO
zn4X{@7=ZX}iWdkvGLERnzXoP5hc{$(|4t@JQ~<x;4X?i*o^m5@QF-g1YmuS`q}SXU
zuB*c&$_Z%#f<;)1F&e%WeXS8kI2FQ72BRsAEBf~QOT^A>WVnAnlF~^EU8NJySt@y(
zA_|M-@E<LJExNQ8`Cp0$zVso^p9hbo@#FZ61>At;d%+tq8fI%I{r(IF50N;OTzCp`
z|MLM{&t<^0ZiL2HL1N@AK@Cs{p+X6)2q-PpER;i)$blr=xB*Z1Dp30G&uZ{P{7qer
zDMqS(jgvGFG2TuhA&RyzGJN~sQCc!?&j`eoNIn+_jAdRw<%h$^F*4-;d`7HW=zM@a
zU%}Lbph=Cb<1@1zB(C9QZrcgowH-u85Oa#mN#rLCO<h4;0l`t`wY~fE+C*X@M=pmX
zhMU9)+jb1UX<SAM4-x{A<rlq*58MG#0TqsoeE=NMpO784Bm%O0&Ey3UmdhB70G~e=
zUzyK>($fH?s1|U_>cyW>@z(;xp@##i8L|5zb2r`$aOg<PB(joWL-010IHNq2E)4hp
zfrr?i4<h<4k^|HnW<By&;YFbJlpce6MisONao!dC8KEZ$AHozd;{!VJh~mQQDM)uk
zuHOcyNlS{4!B7QQ|NT(5%=!$)5YZ-mw-^2j%^ZGazPAE6jSVs)2ehu0M>MDBgb0kc
z_ocHg>gnVF@@64E*R@Q>^Cmi!l3eQ%Q3L??h}i#i&6gm9pr9=e;n-z3K(2H}EI-8t
zl$Ejp4<RZz(YyINjy;8=HsBEarb^^3qU=&oJ$6VRC25;MKWmEO$}9f5@)gL;sel=!
zfWi@eO${MZcs&6Z(E58nA$ddEg0pCX7N9XMb|-Y8OVAOR3$+={xD8T*<e+*=X;W^2
z3Ah^f+>DRlV0brQ{llW@so;}tV%(Z8HO!SLcz?NJd-U$GdYs1DBvYb;f!pMS4-F&&
zrs4)ePmb6=FtZ9e3f+Xs)}y7GAcZPHHW1LU(<Yz<0A(&B!p1Z74F25P0j5CNEl3X`
zz7($15I#Q}7>O(0>-%Fh;=dXYEMD1q`#9xLDv_q=1vRBED#b{_sNN?`&I-)Idin^m
zb$}+ziOO(9x4WKZY}X*roYE&(eN2d`#TVCRAr{VG{uyqs!WIlT9U@hg@)`erVk2c_
z4H5L-(wNO7iY^uxQt&`p8o<dKp!EoRzsy39@A{P6q-T8R?p^avN6N|(%{fE9HI#|z
z5MrPshS^b#aU#H>=5xR~xzN61rtRPa5979Y6m~#P6F}}xg0x9!gfd0&A4cpAkuwK=
z?^Hw$uL$Y8B9dr9Y2Zox-)h2lNZJIT0fg=Rl~6;v;^SJtZ)*QQOFC|fRNxPoJEID8
z&_a26dBLH0Mg}Ja2svUpfD+bbA*G23)Pp0Li|$SLCn;^%8i^oI4GJ*KtF1&(nft7K
zAF${QCKesJBySD_d^3tV-S=ZQ65$U*r%3r!p?uy3x7>k_)G_jOv^aEF8N<S$kzZiG
z?(B`x(sp471VHaj`SasuQy>nEPOVt{LAbjDvW8DdMkf+~sHEc-uzN3eAfpG1rUpNF
z8C#6#yc>(hG4xpf#5!?H@J%zIj*xpFd#o9oHxQpjMfcW-GAKS{rby}1K$;Uh{`DdF
ziW^tfodOT3Gl&EwmpchO$*IJvWVqBI4GHV0g5zaFPW6`=Y|I#5hfbLr;6~?P_#Jb`
zpZ8-Rgv%fnr2#PL3Ni|IRY$CI5z~+$X43#ERB$j<k&re}hm$C++;(l0(`T-)NaGjq
zjc}d|pS`dG-lfplmvV`-|1`6V&?q?8s-?LvvtHMqn8w9{;M!seMbUrzbnmArdjsrY
zq*Tsc1zggL`g6e;iKfm0_J|$B+7a^TT!?1AWz~Ou3vgFhJDKMQl<4qp*oey(N&WNa
zdUNEyn_Wi|7@{{*(7l6=1VLG{+OW8>-~R+m49%BO8x2VfkbM#sde_LORs8*F*=eFl
zh@cxbRmnIsJd#Er<ZUn#SB@SF5&c~{`e^Xdc_>6?<U9WKY7EVL_zuWEc#uTwI~1}P
z4vYfN>KDw9szvH=^mFk4M5ORhMPCX!WDn_}6$F??{Lc69>(OrzO-deF!M~SB(0b$5
zgfyr7GW8>`*8B-&7!`XqUQ0-;P0(NbgfOlq*B|?Y5!<l)!R$Jtk^8s!>-(&;^EVor
zNHK40|6hw2V5Gl6-=gBbyA4@Y8C4g~kuRG0_ZOwet70H&akPi_$jg)edf7B(SAad#
zJ1YkYK(Yh?hANsdw?gQj$DR>uI=c$j3u1J46gItb&0m+y&)fhr<YLva9@fk^^#9j4
zbfn!(yVJRq`EtSEFB`oayX8d|fBI78Q)2#D{LRkyWv)_?5vTIk!&@$hyN(2LHFCuq
zf8E)gh}N+cRzL9vNMYy+XdVjqC^qtefA0p4k&U(2|5YP%mBX(6;S(7SIWF4zpAi=O
zzoHgsjvyrjcQF?=;NqWOkny}W=5m4N@BOsq&s!?pZsr{D5frP{<*|E?-S*e1i?+Ql
znnY}kz1hhAkpJuNg~XTs{=?S4c3gCdwD#Ek2>UZWU^s-;%KqLT$N#!k4YVxjAm@`M
zF&&?4<`HF2HV+IGsht@O{SnBA{pTmcw*OV9=Ug(-P&Jo}rxzNC;i1<e`;dq5;0g$O
zij`FH8N|adGV1=?!m`gP=LcZ4hX`vsHM6_OaGg4UH+rXTIskFqUq20B|GGcCrnmFY
zwV*f8j{5U<=r_K90vY;+@}<Al7r*(RkD+y;pZ~jSV=VD`<T4nx&!GujNGZn3*A#~D
zh;dwhB;66LK?NmV*x5;x2d0SAZvE(Ac)N`4EOnxoD24u@fk(;nFmWYdpEk$tB5@M9
ze2hXsm@oR3sc5FZ?g%?S0<nH6xgX@++Y_TSW3X=d=RF15`u<Cf)yi0Hy;>$v78+E(
zB*^w@`Pqve>Smj6EGr9|H_gUwiB(*2!nQyWTb`_N|A4iukw4s(N-#$2oX)GZn8y1>
zxo)c$h77nKwrnqa-TAO1X3zQfZ>uC3-W#CB4<Zwob$9dz7$T8EaBleV7JH9`Z!n}@
zNq@Y0>i4S@MRXrqIEbDD6qqCLl-wFH_9>cIM{Qzk01YuBSwt{|dc=tD5j4ihV*co5
zy@<3J{r9jV3M8tCQl>x_;I#tj>}F&?8?4(0AW9@+mS9pJ<q~1&D03*+8oG|yg*Vpi
zaFNWPBqi;nk$)MfTOMA~GNuKfG8ClUgFz{)sFWiGO7i{ygpkJX(PsE_HWkdYK!zPG
zpdp)I3~v8107xHF9?WtI-wQmWpWm?RY09TjX6ep;0AMxDM@2mVI$%fukFdTPKF+hp
z58FmbNcX~Khhvbpgb6UAUbU_#2ViQ_qi>^`S%&%K-`9E%;E;!ssN5k4AuS;?V0}J-
z0kS7a2EAJ+75HpEs!}M5B_4*DWk=v^n*EM1Pe>4XAm1L7*LK=mtaWhoN=u)u3x`+4
zk22?eM4eQw_ax72_*ZmMJ3z=hVu`q+GE?G((1A#n%Xp1qVAA8XAQTOxyf1WU7vEX#
zyY&z8iTBgSY+=Kpouhn0!cn|sA&JPj(K1{90!kh3zi>uk7Hma;H1Enin^C@*-0%{|
zqyqN1))gWwx{dp*ltwQ!!{za)L(@~Gew3cyuPlu3Mjs-6jWDOrJtPysdS0xgL>P&8
z<J07+&;h91j@mv|ArWnn_Mb&v_<K<eaXd*^x}k-NaCjkNcKR%XS_V^0EaC2jDka$k
z0(!?og-D@LaGL*M=IA9kcu0@ZhlX2A2HPZUE_(dXXn_uA3G39U&ac}+!`=5=856oG
ziV)`F3&?doXdjhTFmiOFM)|{}3=%qn0;}z#Iv*fR@pcd5+j&vTxeO%O^-c8%6=`lU
zH!-m7&cC;Y@b9~LiM$~@Nk_P6B4bGj(<i(Xx*aM+%Jkih1GfjK_l`Z5UpMW>9?K-z
zn5+Gud@GT%GxV<;y)nk`$2Nyp{F1&3$y!%>Slg<@QtDSCyRLWvM^vZ%^)hr3QM#5r
z`gf(zw8l1*3^S8w=KRX569YFz5XhhFd4YKHY84@V^jwikcA=00V(M#-!0B15g?~Tj
zCu0v<`x7`DM-UCyNVm9<)D_0N(3omCs1F*Cd-ksYXjU{MeBPct#&9?E|Gu~NlodmA
z5y>iKtSdmQV<ADvkg4Ie0<~n8I)I}a!%N$HhTL24`AK8;A!qyVhjWTF8Na$tD8+RX
ziD`AXTlHKAH(EqM+GowJ3yOjAVFvXe4rX!9GSP)793Ar<<&%Ct==Hxp>l{VQ#L}~~
zqq*cs3WBrKaGoARY%2W)Y7qrc4i)c+czBGwzciYKY(*U9wc<Y?CYvpOb9AAco<NdB
z$c3gr%BMCWY-^$NJTjyF{KTt}{CGZ;2vkAM%-2!z0<@9kl;hF}i`%s~ujzOLa!6v|
zf5+{0(POsT{ynl%K_u5E>LunGojPo6W_AJ{iPggdP+vC>I+i7}B~Z+C=avjD)q&PO
zK;*X>4EVzgz9RU9nn{uR7gW|qOo-Y77eiz~k{e>E{6=4G0Vm~tkRCYbtoi#<7zm9W
zvdbvnkfmBnr&LAIQ7y3dlJzf+9zBZoplfMMT>$Nm<gF$B8|Q`+)MTI`d6BGtJ+?=^
ze%sUG3VIXtqmdS44@+-)-EYG^`Ui{z&#_}Z_M6ZZW9M${H?12+H~!c!81iGgc<eXI
z5B}$4M%Uv1)Y>FlJRjR8^vQ-UMD+`3gjG@|6l}5*Om<{lKjna^vPXJ#Tf|0EuW(wz
z*p&8a{Q1n3xg_#i!?Yzx%zg#hOtaKsXa}y~blRcZa`G;+m`O!ZzmW)ip|XoK%7#s$
zH?Tbe<Em%(*AtGojTA69QI7xJtF6?J|3f!rJ|GW>G(~DixoynF(T6iak3laEVz6U%
zKoN>vNDU%r0#KwU|JT>F#-e8d)uKpKIMf0W?aRyUU=LlGYH3O=qpM3ZwB-Jfy*fO0
z1}uqC{p-$8{ue`;dxr^kC@;`*LTPX-2GmM;{<waz0)*sz&=(<KsEA2Z06T2nipfh1
z+rKaU3cgSNfm}<FbaBr!^A?nmC1wl-1_U&tf+CP`5BXX23;7@<PvSHpPWevE=MX->
z-ymgEc2XJn*wE>JowBxlsF6_xfLzRPjT|O524Za-AkLH&_@@Lk4n0TB4?ETQQG$_`
zl@;S#hY!ymMCOFL;Z|Wpka!9Xx_8!?dt)xM$O%w~Rmf#rtR%{uN<5;AIsq4XiI(PG
z2|^TlF<v5_Um_9c*pZrB2>~}3(hUbb;oWwxQ4}!?*VXum;KjBv7s&i@WqAwa^&Z20
z`}v88i4kSG|N0MeBwk3JY4?&cSKx&&Bj**}3Y;lRq6SKeOY$I1gmlB)Xd`^6a?W3m
zJYpjRokXw&FNAfc;iCDy$V3cKsi)mbBy@u85_xt(g-80*U>LXsq~6YdNQ*l4uSJb+
z3h^4WK{fIWyTYwc?9&i(gz^r<+XcND{?%)n_5r=jh?%!jK;??l#f1RMbI05n^9E(t
zfv2W|bc`jfi6F^s{*Obz=ucXpy(hA;X7fg{o}~7w?IXn*9R8UOLZA7M{v;?e&OzvL
z1LbszwXWzciN~qqj{a-1tFgnRU!w%!y5-HSU+@S?iz$B|9wt`duQhSFN<IWm{s~R8
z3nAs_HAOlRL3wZkX6dgWIMIAH70LvyzrI*++)1$Hq=TsKgJdNHrek}NCrTB#9I?pH
zb}>tmUBL;MrNaV<NdC2aoZEnkK6JwmQw(zF5LKW=vwHzinWdkHBU=9w;ay5S9l0~3
zZk4%e-mJCg2TC%CComwl2n44*lZDm<AoxrrFzfyPLY{WClU&k4*s3l5Pwpso{BAjI
zmtTWSd0k39vy$-8Ao35}ioRgm>V%jhWr4Djdxw@{=eUjGA?6n+C?lij1*|O|oDSJT
zAA*OhO^wJ)eRoAxrW>JLWd3&K&xi$=UJX9lDPazldhoBMHq1bc+j{6+`1zaR#!v1_
z%NI&^L5}``AKK$szKfz(40u#e@?b~h4OwBbJpbA>VhyNQ<)V|yy<-Kt3_poCx&y5S
z`GY~{@yxZ@uP>ls;P4B)d`l(I-VH4f*+?SAk@1xiRx)()Uys1N6ry)3E0IsX34y^C
zq<!raD1C}dU<<@4q^hnU!N*L+?|OspR+d!n+>(kTfnm1=WgnsI5YhTvBf(spk^kAU
z>nZY{RD{}G(2;i6&VqtM)cOWd#d0x9d?7`~K->)&PF^lU#3RB?RdBW|lefdRY(D$f
zuJ$FlBXpQfmi1UO5;ZmZ%+e8A(F@-aLb`W+mGK1*IFFk90wWPM^D4ZTE5I1x6sV}c
zb_jL2P+22xtpXk{($Nh9?V8Ouf$S?0G0dZ^4i)-Qgo*%FlETa!C?rKhMEqd*)G(Jw
zCl{MH_VV9`ZynMSHAOj4aYnm*LCM-u?4iQ@FJN!BXeF5a<yvu3dP9HxHGZ>b$6rqs
zzqxbn&s|P;;xrcG(|^#9cg$ZK62JMMk6|v%|6^<8E%pI%=SigSSDjvBX7D_I8;MO@
zbiMjFQWK0w3z!YYpa}_%n-N*;Mlo4xmR5Ba<-4Z{$FPz6wLLS+v5Z15qZ%UINQ+Bl
zIaHC0_=ZR9W*h|><fI%S0;t3;r?&7(pTh7BTapiu4gp7pliWSzz6n`(t1&3yEgA%G
z_=J>}Bdoc}0r|0K6uB1INiUu<>x;>~B;S*+L%w+_IVwLtYJW?W$zkHSGVfG#^nsf_
zXAbJkke#rwy_!g92u-pvtODT^q7U(W{?QNiuDJvwpWrlU#{9Fq7+IL7xnU#b@EC1&
zsWY<MjOn=Wvq|LvbjckDNr4OR#BCC3mxSSOCj~UX?~v99fWgE`_4l<Bx1-latl|u4
zGo;g4pBS!;xy;Ru`fd{y*e<b5`uc``Dm(<Ob-vPQYt+Z%8x0rpQ^c!+>JxG1JLm(w
zYp&1*h9%WX8*L=&BKE6;g0>6XSEOmMXwuks^3=ir8fqBXMI|wRsplqp;c7qXjVe&L
zZz`I7_A)(K`Uxfct!HcGYnOC20n4S_*614b5qzFl{0!z7FyFPD%tca4(lYJ3*<>IS
z4&xd}KAQP@H1qrHBIU<kUnS=Lzj@vH&(|v`PBV0ilp6c{L%7~mc>bMjh0M!he#>lK
z=1Lk>j@|pm=eSnDS}y1e-dt{%MjzXepV)0Mir)5312I?a1H|w<Lkk|=jSEolI!E#1
zf0jv*`L$EuwEzCV{?*qKqkb=r-YR%G<?L>c4I5>cpPf`3d@XSX`tSzER52HVzRtUr
zxjMm}He;*Zvs*#C$6xq@AHsaY_wpO`VfUFoA{5uhZh9W}#88`l>HX2B1)FEm^rS~a
z%wPQfy-Q1H^a|(=i~eQa-43namvwQe%;?I|>)xNpNhF<L`g=J&bIM0=kzQwHU87BO
zTFhzef<17-w27j#|5%;p%+=B2{QXdi>7hW5N?^Gr`^<mVF`wcNLvzm2@ALLUiyIYG
zxL=0D)YsF~d*0^IL&ad<fAONK)ZdMgQ&9&YSMdtrG*%jUGJ5$xq<%lYMJt&Mi}%+}
zO4=Zg64^8NM12Hp8s2^BX%=(y8dZ_~p)N~)e$*D|u#~p!9Q48g$Z)Fk1Pn@h#GPwQ
zG#6?lz{FguH+*xAWJ=-3Z&6o?Jp~`Gru0%N15@AO$COzCTo_!E*-m9uABKj&97dk)
z1*aM32AI`vX`h_-44VkDE|tL@Q6FI>pQQ9IQ{@z?#-W;rjs_Yn_&5m~1paL`Rf<sr
z6c7-=&u@+E&>ns@-aGZV6;#0l(7APE<fQDM-TUm`18vE7637B&pfwLjI<reMIEkZx
z&D(xAdRaL_&8%APbv4lv6=Y_q%-xuD8fkJNGJhCT2C2Y<4inH#)INqA`nuPg#ypXG
zF;#-gtGENxSylk#oUY?VN_%U88qAp3jn!grP}9doN)TuzRLTny6Tl<gJ5(f^q^v<L
z7%<5qn7)FaA4oBuq;NEYQ2z51D1?}WFxIcm2<}W9_qK%U?2SHk<ZmXGGCGYeU}r~a
zAl)x3R+A!B5)zMS@8!U%jhfp#7JIC;SQvU0DHpF6yhgZi(Q{t*66R?)^n%hg{S!w5
zKNj4glO&`B(~`6CYJ4IHb}EO?M86bVv}DP@Jx@2<fIl|tWLEM{Ph#)jZh=I}swo>{
zogxw-QTZ9A9HAj9%(_bythW<$&$^>`(uR<F-Hl5FncI2Tv2@(za**FNtjZCO&FFx<
zyc^V*Hc%Ubp)#T}NH%C#?G#|0Ql6c=%o<@!1<lCJNCXp~8Pq#h3$uk|h!cF0hmf-S
zn$l2W*{;z<O2Rbe*-cj%wE%q~VC^bE;q#Do45FAKcs@<YqMnR#*y5SoNde99T0p(=
zX*eTyjH#BQU1`{jdnT$~P+DU4F-kz=GAcJRA(`?s?d@~Hf~#TE=Il(Rjf9^!b79I#
zjrq=u+Id4S9$9`*a4L>Cj7FAHhN7d#F!3iAIiFyF4N0;6{7^7Zj+!lQBo#!ZhAGiO
zdm<P?1}}xXbJAyxe8bxTgPU0h?Gjizt|j6~%J4ta-l&M`-hlhe?b`5&3U;U=1<8gW
z-n$Gv76s*C21CFflC<3E^*1U}M4ehW+CSRh98&v_255<{U^8aocx}&C!|cITE=&1I
zu=iot8IYi^sP`f55Gl>6ZiS>pU>=;(WUMX1?~_1jq=1_`)#Y!eqy~!NDZPbR=#s!a
zq}inl*@>uj|EC72EBYCi7obL!`kl~cFSfS0(nOLnFdmJcicsgwg9J^W-=|K9*NN3e
zn6=pYRa_yC*q#GRTlWk}*Wuon=XFl+z|H`%P>}1JDy&c)B8SZi?gSz}N5mnOsIHc+
zKCkG0V13KLLy$Xi2spG}x+C(X(ms+q5)RYHpEECRROIcPsu5NWyJkarB*>L1W?qbT
zKBOz67zKU4Rw59O{8r4+J5R(J>Ey}8ka&xqpIS1J1d`fRyiDgqUj?r!>W+huH<-kD
z6#o{V$)IX5Kr*9KD;JY${Cge_p8m}r1tEt8H8>;-yVer7MQct}`zH`QjwmDC?$L;U
z-Tbb#5@H@6v^3RC2PS*SEPOzlw<<IQx{QqBV@wX==<TOhD3eE37<h%sP=aZtE}h`z
zh8VB$QzH*M^C^Juu|}{>Pl@P>%h(NE@;uQf4k<)u5lS{v*&aS_H5KDm%=GL!wtUy~
zF2$pM>LnQh*00<b>nipb9!3^}3Pflv>AghB8w?M--R|A`%*)O|g=V6y*fVe(u_9=z
zuMe+K2J?wCWJJqaa!SBSbz`Bch)|?e#-62BM7y)Nm+kI!g{XedL>Vz9t*9&mBxbH0
zu=5pwLbK2MFFdR;@e8%Uo9U6z8<`?65Qk8>@!)Zb9(+ZrI%NC!NMRQ^SMnsbEX^uu
zL6fjx=pIkITj8*Ir&^9@WJJ26Q(2gwx>s7^*P2$~=?&1h@(6>;+d$9W(pXO~bT%ia
z(E+GpmBR#}>eINGj1K0D+k3G6t6jDCL1z(p*4)rALIGjA2C6%jKbzf4-6Dlae`PE)
z*kLuSNvg*<<c|fv9E52Upyz(hT^nZJ<`tR(hNG?OHdL-v)4f&~qn_hofANb3q}oEi
zgri@Q{TKM$a8fJV;eaOgn!`?qqx?vCrb3r;e#eVPcnZ;(!$_T;p+*%gS;#KrJXJ)4
zhcoY<Aw5%Gh!)}3+)$QVQ&33^M2n1_2G!Y0cVaG^hrinyD^ItmdT=Kx9g8$b>y5Ii
z_}({2V?@&S<SLP*Y(_0UN_r1skFQ8s86NncEJI50psGSB{{>t6aT9TX5_UQu5W}eo
zyW)!s%6wW6mJC=JK)1)S(1c1sTfK&Ry{;$i#?Gup_WL{t*|dA@^0*}}jPbhh98=dL
z-a!fY&~;FB$&!0+Ar=Ro3tD)gQZ6!T0N`7Y3iGqDzGwR78erF2hlfgr&m4w@F{>v{
zyAX1{uIEBBQ8cK|Y%B+Xw)~rC!Ks)!Zqtc{5Y`A2AbK<l1zDW#zaT)|hU8Q=dJfgR
zEWyQmD4;?;yy+Ya2a#KGkkfDtP&>p1MJlRmEuAoPN%t?RU;2uyo5DFXI6K#a;Anda
zQr2qWpzTTL54-N}-}#CXVbPy@Q0^lDQo|&37n;4FgCD$d?+}XcA~N^Dlvcx7gi{a9
z!Y?no(4|YZdU)u~aAaOPY>>&j&PSC>)b;aR_UWr+t}Ur^QkZ}Sr1<IE3eRLV=_39K
zqd)KY_l6}#oPR~VOe_04JAhn<hRPbl6)l||l}fO?T7(}{EWIdkZ3BYMGaA>*Y;y>0
zu>PlCFyS9MH%Rb$4R*H*EB(|+EV&K0y!k7HQtgE+^;VM}r2k+Bo^qrGr73MihU=5Z
zF$|^PtkMob2u-CH%bl1|ou423Z*J9m=M5-?E4ufRQWsQKvHTk;XG!u8-bw2GRkIi(
zgUD=CNug6xJ}4hF>E;43ya)!U_>SFf)t|5+)B!PsGSUF3ruM|2wqP3u5mXJVdxE`7
zW!~H~QTPaFlvVLSttZnn>f<3QPS1UPNPO`Q93432wjbE?iilU?YiwSVONLv}OkXHt
zZ%D8!SPeRD=o;<{4N&>=57<enm0sy4>Aa3m-ylj8Pj1vzlsUiOIP48bI7iqI($1T|
z`%JRg7T9g^6*C!0;l!~aFTzO$mWghp@j&626m{%5OZ#O2J;B6Kyct#3@sbQTwLij8
z7qj~Ffw*Zo&w<7_m6(taP~?f63R7@RX>r)4dv=`|wWNmj4b8+l;M6VurWQ1hovP}w
zMNgmIXlOVa8VzP&K&pR?`RMPLht5q`&?JWHc;~neK_5P!GOCr|qDVhRz=<m5GIx>1
zBoQ#A2aB$4qQomTlcAEt^4>+OQ5h(Q6={L}erVU(`2+@vjq0KbkyNd)yeOct8PJVN
z63OD<eYqD@^JCZy>aAphSvK+SUOC-e%5*JItc7j7k6F(o->Wd&ah?-4TSRsTkT$a_
z0nPEE>Mj5*`O{jTM6W+rcyKMnUes`qHo+g~pv`b4wqU8(F{Y+QS(Td_w}C8S&-|hk
zdjWm4gF03YvblmX1WDZCo{E$~!eMH3K|)5mLaHkzIP%Xw|2#$&AqEGyP>@3n3J?fC
z+__A&8j=jExVPJkD#5<GbWcuTuY(Yd@G`qk;N2~N^#0V3D@=eIm{1AkEGoLbp5zWQ
zIZ|X<9s+#_71LdTk3t~ROsNBO{%CX6ZT&*sZD2-JRfxi9rYbuMesB{f2+yHtb~*J^
zAh-v^b*69Y^8jf`NhnDSr$mMO)Qd)H+nvy*o|Z|)RKI{N7wNgP4`lPbykB6Lpzrw)
zq2kpkGrq1K4`<=Z*RD3yn1?+x?fEzAMoIm}s52b(FpYA@1yr2daUs8&7a9exLDXkz
zM=L>T&rS`#E)KQ|Q-LBeL{tk1haE2a94z!IK%tGzb9WNaLtP`J_W<S5w`AhD)9@<V
z;UB)mVE<OZMHz4Hox(7b0ao>3ruN~Qsg~9nMj{X~h605^<l$a)^#R^6;r-si?)BiS
z@*0Y$Wf~Qu*1FQ$sYVI6RYI6VK!bzYG{GWN;-<I>vLsq<$(E;Hvouz5Btk?(L|*8w
z0|<En4_Tw{-G?*g+AxgdG+co#uD@_c7yj<(H-kc?_W}wFnJ`0c5iqee#VUlu@U^E-
zc|m$yj;&Ig2hhb7DWUtW4G>BYy!Hy}v_YrQ&&8^=4mA`MW5xhNnbm!#PF~bM12B{d
zoax+AeJOZxPU>-lC$3grAXJ8V1Lc%aoF%lu@5qG7VBnDGY9WRFW$@jE#Lfc2kuil-
zB6Sld`A4c>M|+h}BSq-;Etwq>pD8}<fYC&2B|du2r2iph-jKm5(D{{Ac0ty?k{9Q}
z&cnpQ#i-v_n4+mcwB?ofQ3$7WKdIOOC`r5<-@n)xsW_y$Hc~M^+RzM8$WRDuLC^jB
z-D>iac~EpyKeYHSZe>%1<Ge8Ro2nvs6%Wyjl*`!n-L+bh%%VGj7b+@LutzEfI_nf9
zo7E}ea;fDgT47_|x}RM9B~37oKpj+2inQ}q=kg-INO>R($<u50gi#@*LjtebyRh>u
zCMEqwl=VFT86&gf7nC@GILRyF5N1(x6-Y={L%cR051=|}4?)9W*2q;=oQy3~DO?Zt
zQ|ITm14KBq87Stv9EM==9!kj40`nyM2uZQ;KM$c$(#cW@@oG@}Amw~A-FS+(Q)lEb
z6eyg|??h@`v(OU&pQ~LFa3CCocnRf2B-D}4MZTw+y0Te2U)yjlEOW1l0Aj@r#GL|B
zoZjS|M*05l^ARmqyrYU0u54zL9G8c%{H^GksYUymHL)8<<h~pe16m#=oza<<NW%Su
z2Mu^dU68nXJv1sq7G8XZs7SnnyBCLL|0~pmnpsmy^31y-GzXHD>V#?6{f2&eF)j-R
zt6+r-s^47cQ9|P`^$>v8vKk4_gsU)Kk==5Nz}i7o{RE$oWkY!<cG~jSHyr@xm!r_h
z`XNcITCvCP^{sS3f3J#nIXfTo-<L;E8N#~;9bQyr!m}rjua{>ALtYNQU%^{d^DXKC
zx&dj_FWmoVP5iqb*vDMxO_c=*#^H<y7XA`VY`M~>N}xKJ<D1t|ht)MVghskwagZW5
z-G;pF6m^QTeP?R}fLT#|^(XAM(I<Cqgk{=rg6Tmo5eh}*dBHNRe0~#~tQwi3jrJB~
zSq!i(gX&uZ71g+4C)V!)FTETO)!G?@u>w7mT2c3|g@Lp;HGYv^`jk5e6hYW+O?%Aa
z20Fjd@Fo|_s%Uc`Jd9QI=NK?lnLQCV-oa1nKxY->STei!@V+7}nRG9TVkD&YI`1}p
z(ti=;jxb{3MuCGcUmEc2wS~KLo(q`)lli;9fzRX``1M{*NfV2Ztzn7C-3ju>9j!Ew
zutBLF5Do@)uYof-s4#qgQNtk0XayS`u4_j%g2OZD45!xDpI*WGw8A2a$@b#8YfycR
zbS@Ig)xd0;uNF2ajG();|Dd}BbbK*C*Yjo-4?Fd$i?8Y^IU-v|lx^Q$BSbtp4t{>r
zmG~(@@>3Zq+#xAIg=H=x9g4x9z;yg_Q~+ei1haEGuO30?9HqggnTXwi4Z5irVn;tT
zotz+V1EOR~hI0?BjJc5mvqQz(miC@l-OIQhN7xUC54F^<it6W)oIqI)+DSMBUJU=(
zbabkOAJ)`5T?@cdtdvYDo_(O7%fl5jlm@%@XBn%M6Jv<rwnwOg%ILlq-K8=oG-V`J
zWyJ-X=-oN~UTFA{i8%P$84LKY=+>nprS_qf7~9|nsawP*FXTpB5MoHkOlF8}f|b7l
zW=ejDn!KBJ4x>nNJ!%4};fUZns$hD6L<*C@x=XnCyGvQ6>|t#M^v>WAPD`r?=8yyE
zs<|hgPLd8NNvyC<v63eV55t*Vv^;>^#<rq^;DDR)#6+D7+8_$B0gks*K)6i33Igsc
z0$fpYSi1%EV>$B7*V7Vl+=&;VytZuq7mB~Ap{<<)vNg<wgRGL;wOGGd_W`xY`_XG9
z7!rw+9Tr+D<<zx}t}CGE3x&&6Nf>+v#dGzWowaoaycX&J1ro1Cb%4>Eb8pZ1m)V`6
z5>F`@3Hg!+4>GGv9+$)@Q1IDM4^e?!Y+gq+INzo)JXl}yixXk?-GVQG>}p`^0*k(&
zo4FswUBNUDy18Tl#qe-USGy&>e%_@9r<yUQH>u+k5a5$Hx4?ec4(gD4bTF3~b_W;G
zMsomL-wK_X%gGsEMFQP(3m<_3&RGr7_r1R5(a>z}dFF{n77T2#zPw=Oi&qGl?XGXr
zKwH7E$0}~{+1m;&MXM>T2G{y3<<QD1EI<tJ-Y-MOkEs_G9T9Fiky5Y=nkjxs{7OnC
z_ueJbrY02GnaICo7gNj#uIGs>%Bw#(QX4`%gI7Yks7+>2r7swu$e#_Hpe4yeCFYYp
zDq2UIc7eq^ZdZN8ZJh2K=gvrQpvGqplz2S3cB@iz%tM0^_EgalYv_ataE077YLcPm
zpq3wpU1X8MYthQ4*7Q`Pc>VQFkR|c&s9D67%q}81sh=El#85%mP_uy+lIFJLZ`6Rw
z<0e7AM0uVPD{6~G)v;O@*PFiG2)<|%c@<8Y3Ns_4o*=d$k5=mnY(ZU<Qyyl<!!IN>
zNGd*mL=8#1cdP<IX8nz(2@p-jO?{JWSI=C4Y{mLxJ#WzE!=dIR^=m+QXJ-H4cu6n2
zV7&)AP{nIMqXUb+Uh((75$n#?sq_l>V#}0Y_wA*0VuKh-MQn)KF7-;M5=of5+CDt0
zmnlQ!*myyPt)}J;bp;f9DT2{YZ-FgX;(UL2N9ThU>&?T%M@nAkpI&=<j!&rI-Nbz&
z&nq&+1>4>p-WRi2%-#3$60?Vy|N1Sd;#M=`H#i;PH^*?Net>4ckNgs^zI;#T+y_se
z&hBh)kqW8uc;#$SKXkz^3jVjl!vgoY<6Ls7p-fZVR?MVh=i(C0Hr2G=yZ52-Fltl9
zzq#}M%#6s65=*_T$#M!^D}}ZIDHnQRz>(a(x61xKa0$3S1PAk!JPXyUq@<-=r}v@R
z|C~<Grn)32XJ;*o&jD;}i&vt{M4nR{E7WvCpY_z2K8@3uwR7jrjIU^D8(4Sh)TtvU
zPtFiG`LSuOE#T@*j2&)!hJG}wC7*u>tJRichXL42mM*=UIu~;R%gWXoV|<NU{%%HB
zv6t=k?ainlZOh?O@>HPxwtYd<t~rcl0NYNpcKbd&kKP{Lc!QJ8xZ>66a2rc=FLa3&
zadB}K*15*-hGpg#G{+;ju=|WG*V!(4JFxF}wcq~ZjYoAGWt@>X=Hdn%ors$5rarl0
zw-Nnl{31)VB}|?oHmb@wF`Z|Ukx`w~z@$?1rE<%bvEf$vvlsiYt!3e(|M~e^KTM4N
zRjd`CdX@E&SklN#gLk%V+vb|A429JkFwM7c-{LpK0x^22@ynZ%k~^O<3(Hl*`Le)a
zxXU$#Zw2l>dK8+<G0=8*E;37VF?3T#$jr#X;(V@V4TwxOUS5d`KXq;WXZA@q0>t=K
z3}DV~i$BC@9S}+)nQ2`=ZzI)2jYj<r&&PzG9E<NOO!4Pu)Vm-cD#Oe~WDwc}PqD4N
z)4LsQotCXwaqP&EaeL$K4V;1Dnot;T{YrCS^HN<5iBnKiqyfq{pr|keU=k86WjCh?
zpNo%=k8B9(>O6_r@IIJZh0dpbkjtBhq}BAnFRCP=@AkUa*%S3S*1{u+*G@FMb?cUc
z`TF&f;O^&$UcFrM22*KIH?EgklP9fewXm#RC0;Ztj%(pUt35o7Wmw$A3zshOr7x-Z
zW@Vw`=E?ZwY`7`wTGy^i@P_d^97YjcJ^Apc9J9&;Idqmt1nzq&C|Hl#Ws8<935u-9
zzY3~wN6vXLlOHuxeL`zy{Zfh_mKl9ei9h33eqK#aN}bag!^7dS+y<m&Wb8PNM&9AM
z4_%^sii=mH*G;M8e6*|Zf%CWo9K1|QY7HRvmhIb*!zG@19-_SH?ezUO_cdXd)OeMX
z>*Pd#V57G^tH)U4{LZA<)YR$j?(TA{R*moD{sy)Qb7v0i+_mdA&MDN{-k8q#H0&4H
zprhz5xJX8ZbNmqo$eyE^{$yy)CleSPJe|fM4-OvA(bds8X{;~kqkb>ff4-*pRLn}2
zX*?Mew4^s?-Px{ujCER{InevL@dWJZkruhxvuD2rVIz0wy9j{6M2zo*gmED{IQd{i
z?42qBpU|jJc+ePDH@>Uq-)CjMQ!zkk93m@Gwe>a25BKf6QxmW<y;wxtg!QI#`wX-J
z+V}ITZO+kr5d?dN&7LMECYuXgPo?I#4gA>sve<(Mrh$4?JTCF_LTj)2xEyOGSw}m2
z`+&_RT3UgE!-4_=euh@FF}B#j+`?i3#;WmWKY8@XJ0)ewL^Q=&Bqf#kQWoGsB3I{e
zq_L`o!_pT*XqNO+mf<Sid0N#7v&F>3QmpjDw<I4Ec{sDw>*VqkE3{G;4{l;>e_`~v
z;Bw)dfV8vb+?<@8ITp2VFx~oe(WG%(&_Jr8$URrxW3Gpi=!cjXHUl>d@GKPQ^YNMJ
z<Li3~57r<EmWz3Y)y+gSBI)06QZakhdH|hMgFbz7z+hipR(AH0_tan<^6eb)tQRJa
zWy^-9JgKYmMgLVW0r#VWhd`n^_?|}MV~v*9R1kYUMMaAEq=26AQ>Sk6oIQ;((6!zL
zVJzt{45DCmOcM5LfW+sFh>UD{`_^01syJiF(a~|=!GkAm-u!o)tt|$2`v3}*)z)S`
zEm>!TvXpV4yvCt;oKcF}?(Vm@CY&<a&-W&sF1M2%+XvIOZ@>)2y@<bd?OTrT-Db95
zOMX>izhTx!CH%juKifhj&vJCbprO*3Vy28yiddxE=$BWa)6a*E0ZCiv`2nw43l;<;
z`q&Dct3g1((}^=?%rMQ}W8vRhedi8X?Ma1^_pq&y_h&E)%VoAA{Pu-S!$Jgu#>*Un
zDS;St4wR|?ps!6rax$e>G3s)*_&LM*mxVOO52}>b8vAn!eGJGh^Y9NpD<UZw0sxfd
zW2XP$n2NSHr_ck<o@S2TpUA#37QL`Zl?XfR>9g=mg2n^JBWR2a21JA7nk5dUU|t++
zuTibMJYU>bbhLI2S8$p?8A}9Rwo!oo=wo9Mohq2ffk)VSGa@|v7?iPd8!uu`Ia<sS
zUN!KeJ@7L##j1oC1JP0ny@ow8;x^z_NMPVpe5lx~nS62YX7TR)fx?W;#%pnL5ihLt
zj~_n{u)z)^>Db+@>gw)3*ZjWp>ealkdADJzGvM!`6})h;q$?nZ@d)^YRrsd=@_j}+
zI%#V?w8F6U9UL5%p~NR<wFmcw3m5W0`Rrv&S6)<##JJ<|FAtiXjUkEYSx52(F~W2l
zhGjmORG4O(IUa;xQcg>FlpP4Gib>H=-pa1^yTNjC-A+3@|H3dMeK1F2jwR>Lah2V^
z?TDV|u7?hlRaISUc>5C@!5Ux&o2&}pmKqzfRw%RZ)$V^=I_~tK;JxbVDVWtPs3WUV
z?1gJGE%8(o@A&XxE828J7B2vA6`PdA>gM)qUm`3bpMXHz%VNx>XYum#!V28R{B`i)
zR++olu@wOx7&;de{GpJ2i-gO?ZM>#3>@J)QA7erT*fhisX+OlQ$+Gax$w^6?`~qwJ
zLK6}aI80U+qh(;4Wl;dUxfY+;$hl+TYr7=CG|-37AWS%d+3?1Do~3Ywg`)uu=1x~a
zq;?$pM^jvZp7Mzdbk>hibf1Gv!Z?Phxw#GaPV4*9!;najC&u<<c%$@C@2D8x8!00r
zqa2P8xf9np&bFwyQMkq$<_x`}mxFW(0t)f*@p+5mn&&yR>dWh*yRY3bq|zI`&swm6
zkDfdc&-T*Ny2~Ma_a`rG%PrXcoSdA#zV5}CC*IW3atwo7TX0%aUV{POvUTe?D=Vv0
zlM9S#h&)XK1mKv=*athh`R0M?RJ8fk=E+AcnQ)jD>?||0KJHtfoRU8Gtbt)lNJ_#?
z+9`}j*K`*S0&8<9tp|=lrh5a3&ROV~#xiYMIhsJf#rJ~F%_%^y=X9DhO2!Ux8%M}7
zwzWw$h_qd2g|S|2ftk4d{5cnPY`C$jN&xP1^2rtk19}M`c+dP~$pGi+YmJTP0Lzx4
zSqt1Dpxtq-H+IuxDDFPFZ^f(hXBHL~5a7m^g<KOr9|6w%J)1YrZ#=!NIj2j8y~!rx
zT5PQM!J(_NLVZOTINGXF<8v|kMW3naCCp{TV0MO;@ZnjJU3-5j_pDY@4avs3oIQ8W
zsIhwrpRGA&ooWf07#jLyWi2-!_x!<w83^AJ*=Mby15GHaDfxo_8YbMTdyk{D&(U#f
z8z{eKq%IxSzX3A2{ra`#rY5olO4H!w@^0Q-r?1b>=<04!JH1RG03Oy9<G}<nK~6Ve
zNUsrxIA7d$aJBM{p2NQsfp079t)w-K@=Ctmsjj|NTFQW>KY>w@&CSg;B=>-qj?N4e
z0#@$=hwhE6S;ki+9?JuI-O;UoF^wu}$afaLpyV|Jrvyx3;H%E|_7m_uM!PmZMWO;m
z#ncUigF|SRh@qij!-1_^`QUsu@8LP3?2T!X-Qxv~PPWK3ym*o2gdO4t<pcUt27SJM
z{kl!{CLcC~1wO(LXW7=})EF2T9L>y>g2|%siiL-Na$wB%r(Y2fv-1iHjNRt@u<>gE
z0u*vC>Fs<If+R)eSMWt_3l=O5e&jd1qM{;mn=PXO(-QNiBmtgO7_Z}u3<{ctpzk=g
z@NLX##jtAA>)WSC$0fe+W!GRAPBfOY(}O3lmSVa15L3?m4o`1K*$NxW#FQlue2&Zb
zCTNsl=p(wPTH7vNnwrF_k>q1FwOL@v+*I@P>ApzjcGW0-lu=x3fBACweQ+8Kq&RKc
zy1MrDr-qI?W_uA$13^6BI|p~bSofjJl6Sh&jJ>Z4H~}=!Hjy>C<;$0on3HMetBxHp
zxD3}jY4YUB#>EhF-cjPcnV0t#Y<0>YIN8UV?|lxpqeaF29Ql*Ck;=xSy-~c+s~N3$
zxX7}Ao67Vk>(qDy$CB|GhbWVSufznW>{xE@O3BC9S8?p~!C;TA_)THUMS17-tv|qH
zG)JnMO=*QYu@*KCPik*!y2ayA;MAu1{{8z>Oab{!qwAH12Nwr-VGoKleLI228h7=o
zaYwhy{{1xPcOEx)mWSZ^cED0?P9B~>tl{-6U~4oH4u*3@mS|jQef2{y{bH$X{t+w}
z2UhNU#K5~GbMJ$V7d$YCPPA05gKqTfjdSPBIezr$c>e_x7)OsCQ%yR9&<i8fGqMna
zm0J@?Z;-8Wgt+O5`e$HQ6kTk-dFnK7_S8qtA|0a_--bVXO!Y3e60cj+myMX?f#)^J
zhu~tK=Y)lEpmQ8wcZ24WEL$z`)+Zw?iY95WByy_?AH+sDcI?;$^K*kdnB<ysbOrNx
z5~?^BW;g}^@znw)qNPYhnLU5`GG^#)`^S$p+qLGfOf*{VEJbe)z;qS)y|DqnzL?*7
z*Wnum+gmz42B`vCQQuaIW3ByhBpJTefOO)>-;MF*a4^+1m>x{hka!zz^rmg}gf-2q
zo8$GfZEns29-g}ctG_PZXkwxUro+rELO@p|dfC?To!_cnzow38{MmI+pZdha%oj)d
z--yQJVe@xg0PK6sdIxy)cy_i7V+)dl?`z|y-VB+P%f2=#yzA$LD#wi6-1HywfYPLP
zK3Zgax^jmMpO4{FaFwCq;S=6=3_OQ7VlW^ZxD6GQX%RS{w~#~__@7c&!vy3;iT<G?
z>9YDof~tL+)>>Nf?sYNIU}0fV-m+y&eh<Fy7{S4>P!0*qS%>;>K1s=kH6Rq(63=&K
zUw{yyOXz;WQhMK~PoJDRJlyw=XTXiYxFnY!Dx0<9YJ9xW>Qejd_VzV7D^{$?1SoTA
zEOhUkfw}D|F9Fj<L`97>4#$H?mTp9l`A+aY$J)3StaITM;rR;|T!NE_rNrRbbDwoJ
zG>#-ECrhstVA@#Nn@MBm(H6<yPipOmHoH98Fl~i%@4IGrhh|7@>UbB^1HXbM@&spj
zwuPNL=MTCjvf#xQ+%HBmn)2%-^8}b=U^G-brUfXr4?M%huXy$9)k3bv;2l&f{o$d`
zo$(e?SY~!MPuu_~_W16DA8LKi<gqXSU61AD$cke$=xlO39rG>=>1amhITm{kMeRP=
z@l3n6$xp>K!vHyFsMQ1w{)Oj%{l*2wFSgG@f`cp2GD>`oK;m-r4PCQ#?RatY0XlL%
zgseOo6TUhV6SL%Nto>S+#3ddc9*AsWA`xUwMj>`)zsLvYd|6N9S!@0Bkl?xVZ+h;H
z8?C9u?eE{SU=FQuPG+WP5BKb!zgTotz9ARqWWw6p-F*xBmYUDG85w#h^{2XaIDlom
zgh<!PTwng*f6s7jM2OsZ(*ew_V1d0I2spIioJdy8K3~HV)A!m^H~))DCD~j1c7Meo
za+)R8`KDy%!i5Wssp36R<7`=a$ouy@t0$TTqhrBbpux<qD0Rb#-A&th=FXjqmR(s+
zcJ<v!wQ!A>5)xS6c1)~CGP0>cAmD|Qc1Y-pMgRWGgBaAh4Vk_cg#J6)0CK*CHKX_Q
z@w~h|`(O|UBf--1v0!OBz8}!<dKQif6^12a)FdmEQ4x`6mYDJXSmZ)~;HRsrI}?qo
zQ$BTcn158}MNsg1OFS&fItz=U@&fppuJ7M{@Cl&GX4=@;V5TW$NpB%@(2XMNOdF5B
zF22nc7To|nEsz5p@%Nts%IF08mv2GFC=XKCz5k3~>(`1Q&83eYpNf<}c?{MQvzpC5
zmfnqv6QG&dlV{A|GH@e1yBk@ENYghDAI?OCQ-PxP8jJJI_@=_%B*eF~lgW$2vaZ9^
zV07WzVVh4!PZMQh**DbhayB~J22`u<vs6*!z5_v)y+tSue`os)pSD!e3?x&r(E>|<
zlzQGX7nG2a(r?Y7+;SttMosshNqz!cS|%&IU0nWDR1;R9A<uEKI7|}{Ty^0p`1jkW
zQ8#siAWS+hn9X1}qVL$0lxc4}<R1cpWq?_Bnp^<yMvq4ggnr<wgROVi2T`IecermE
z;fC!>G?E^h&dhAn#X9(WiKe(G$ck-+i7Xs|nLxN%T7#tE(Gw@svMbf&t^tcc!M&vo
zh4G6QFTPS<0GY`x7z5RhD_5=Jh7mg!7^s#1M*K~o+XU<*V~G!&jtXEn_EzwOf<ko_
zRaMk?t`d^rhGL*qO$Bnlmd$NwE$&uQ$BF=99x6K@)F5AS^!)kr<u*wY_{s`wGOfZ+
ztOt6&P83g0NQn4p`tSbtr8$^ue{!I=Q%mBJ{UQX0$T(&=X=<{f!Qw{ivQ$J!pe(xK
z%`-g^gcTZTCkI}=DkRDG1@{d4$h)M(>)dC+Hb=<q&?|l-VmhM*LI8j0_56C9GbJoM
zu1>HLjth?*TGc8qEIb)`)`VyC$VJg^jnKAyF^>5!^`qc;hVsxAVk1VSWSJJh^unP}
zL7T_PT|HG-0XM&G-$I5_y)NVW^<&qr3G-~bj^_VFgP^+9)&>68ZHgeCEeXOii*Z$%
zC`5C3nV0$W$aav~GZDPMefyTNYuB#R%EnQ+YoJx$;^N}A)pL+5rf3CdQ!-bAPelQa
zz6uz_v9D_@!)kIg#Wk=M<eJbt!Vjr@empI>c$O(s)@<J{v@1O!!4G-qOVlQvckz-X
z(@<bn1`>T4T-N)KAJ?j>O-3qo4d5nHe3NmGHzUU{7(f#xp01IEak>rFSq97x!)g{E
z5?cZAh-G)~uoM&&JgTi-Yhb`(S>hQCGIlXIyYB98Msb>)J`Wn{w_sGeoYyY}go}^h
zY=DAdu^6b<`KR{DlkRu-d14gY!d5;ng|cDG&YdFJc?ciG_YXp7v;~Pqbq$SiT`r8I
zGiT;**suXKS}?H7A_0MkSe3VOGr(i1SX*1?i}!?nY<mCR4}r9?#O`==JY1x(C;0mM
zlKsY^6!kyCX0R05;vm5BvX?LC!=usAdXOEC2zL>$c%Q!*ckNmWNLkl!@1|c+a61a%
ziKVTZTj4k#9N!7}&08;CaHH~vW+kG<sre22I#zJM>Kis-l*`Zwo|SttG=%XTn?Fum
z2-g^nsPlBLK?{Vgnwu{<L7~x*y=$&k=%#!pK{Roo3It>G6qQwQ)F)6So>Bdkz7;vS
ztx&$cf0@4m+#MS?cYwDy<G}QNsLxf`)l~zBe$J!hP!B87gIBIBMrV3&xU)5Qen38<
zk&&txv5s)l5s3@gTNZ$(fr18FN8{rKPx2}T;4<d|J<%DPHhns#PWXbieG3nuuA{TP
zM_Bj5J@Xzz16n3Tj#SvpAX*N38E#?>;hy%pxUlo`65IP03XPQWhzLN0m<x*EGd{8R
z;V?c4bKd`f)qda6(SkB&3PQnKxy}m7%g^sN=3Z(K-BiQPgOb?%^!13%)^6N5i<_If
zFmk)1f`X>P<diAMzx@Msv+NX2_-b6|*6rITty{Ma!rO^tsSs^pp~_y!0QJIq+i2{l
zyMOD}INX<<^Sfz`x3F9=swB03lxn^boBJ}tUBAFUoBHnnxDDk85h@t?M~8Oahmp!a
zp{KE|l$59=Kgm5xYil`R@WwH)D>-mPjvhI(#>H2Y>E~GZ;-*E!(Z54G%fLvu9g9V3
zJ`iRg!n79(#oK88;_K(f!YIX2L3pok??Dzs{Wz8oQ~r)(6JZP@&qXD#N<{ii?d_A%
zvJ`%p#NiH+@C(s4_`HgK4PD(TaO^ebAJ1ph*4AdYc3UeP?qkFBA>YEo)o0dH+>JDO
zMBa<gloW?d&I#YXer4m~5wE!|<YS1s+{usf9Br`NnI2M7Qhxsaw-B#s?IybwqvU1T
zYNUy^Z~FY%;-lEYH|Wc{5IoTFoSXxRE(G@C<9*TU<$P)a*X-Fo6a`o(?rv^raYTPN
zr;c+`QO&U9Z922{BBxE8Mvx@t--9|S2hjZzq2f#=Y@W9t16_fXbwJ(cC)Z}`#K_$;
z&yG~rg%X;k|JH;H>q_)^5ZiiI(OvdO=bM=fImhOSDXFP;`*`@`Hi0HXW1^R(7%Klf
zjs*%)zkmR-+}&;$QvnR}5Mk#J;Ruu>{6zQb*-Lk>WjPgASg3%$wLy_6!9If2a)hY~
zLL^xBGE7()$Cxr@N<)E*_}&VIuS3MKN>~*Kg@&>*N>S0EY4JG&=bHA--nzSAA!BLA
zW5{#+Mk-lOPRIW5cG$>)yoG*50AXKl#baWbIdez2X#`1eL8~W}+w@h!E`V|c*#nyd
zqmzdQrAQVST6@6E5OoKeZ!~A4QDd>kzc5$(dcRnZdBS~)WT#<}CeVZVb}z(^NAVw@
zK7TfI+64r<S9J|z$<O?&tK7Z{03+{%2V+>Jw}7>s4=PYH(-YU?*jB@d9d5kititl;
z%jHnSgJX#Vm25_2fyd#)Ab%ET=dt{J+|bx~z4{&UPZ>~=8FZw9-30SfiAN722i&7d
zf6-WotzH-YKzbX~`*DDe{s(yr<1YXJ=T;2gt*-9gzV$GOkZ0*uR`CeIK(L9!U;__k
zI4LVLKugYGK%XeHSGf*Hn>M2503HwF<=$h?IKBH&Z-KT3^RV?@e+|mRboqjI$XW&4
z<8$STjlWbI4g?f#OU5OFlh}9Qz<TVQ)t-ZXVBf&S@*;gC=g}_>2yqfH#^_h|BA*CN
za4tmr!89-P9CSrI6KQ4zs{)Ye7Zjv|JWWkXBTNB^59-dPr>`%1JuN9oZ2tWDUHv_~
zC{lWv2Puw;imGZ8#J|emxN1_8FJC?i2B4|je^&PPx=P@Q+jz`CX_5zh191kMafnek
zGzt48S+uMc{%{7;MAo@H$V#qVyH;~(04Syu6cxxZ>2Ce$*1L8E;wIoyj^8XOIBoU@
zWI)lv!#pq7v+&hbl$TG$W+z@fKiOYYL}UvoW^km&PnZz+N@?32Hsp@V%FE+keiNQP
zeYyh(50tBlIP=dyL?Vg=vScBq+e89TT}nyWY(IpxyM!((DTP~aPeQDhrfDM}bL{eE
ze%PSN!ot@KOdjrT$l!C>y_+%z%!-E92vrD<KxsEADJcn{)+C)5oQx03_P1iyI1f#`
z+yGsHf`S5(?i`&a8#mrYVEeYM&FG8U8r!9oh4Vm7%u{gPmsmd)s(e)3nku;em^Nq5
z93yUBqhw@skOT0={);@cl#&fVrboaLsC(e3%*Nf60x4{DaG17W!GhOfN!dqmxkMR*
z7E{*MO@Dd_X&+)Vz+=;VZu_8&ZI~SghHnjE19f!!@(p~}NrVBVckgPomPqo&?MEww
z3Rr40H^4<(%RqEM7etV3D!*uv@~7%4V;IkHI@g!R*;|-fK05+Vb?>BBsB30o8;Iq;
zf*)zPmxDAF?N@Xsw=mku-1o!mEE6#_lc6P@y7Af!c)>t8p6fmw=!ZXF-YL%1oQH?U
zp)n^ok^&~ASx(FKi2`0CZ)qz|*n?kMdNy=?O?6XQS&zcCdZ$mYL-=U=g_Zn*E7E$B
z?5EibTwtx)VT*x#-h!j*8~nKf0<CE-E-v%t&5K2x!TB*aHkQ%U)Z`ZuqGoN)9~Kq{
zhI<0Ci|fqIc@7;qWIN-Kgcg7uHf0w`Z#qRlEjzIm$aNy-Jc6*t_~)X>NfAhc0Q3k5
z3GquwvBS=&0D)Zs=0a#p`k~qx`pxhK-5_G<!9rEH2B8U!z;p^fuhCOLkr$_cxw-l4
zq<isZ=;OY3-v>DVh8lCAq4P+WvCp3$1OoDK|Mw{$KYo0Kq#v+4Acg9M*?cQk&ZVb?
zI=)k9&-&qA5YL`H-;Ob@`Rg|bfbqVpuC1+#9t=d)f+SveXt2*QKfHb7KmXjibH^_=
zh;)Km!H*d6N+!y~Z+0O<Q1JRS9}Jxy7$5k9E%x@CnmSuysR4}rf`e`AIS{lQgA#QO
zRthA1SRZQ}EH*R#0n(-sO^jll8!erkA$RVm3kV8cf|Ljca{>aoC6N#N!JM`ra8XxR
zR|b)T#}b6k+6tuBrt{utBc4t0nSC+m&)?_Z0zXR$0L(aAv~=lo-28hC#|jDxisRf9
z%+AT_3#`8wY(6~~kdKgudIPA}z5n*;<;%@4ZyuZp+u#bbD|gbSy(KCt3fHhM|Duu)
z+vDjARz;+4hV0v-(6xK~rcIk{bADorKwT1oP?w<$sEUNH{*^c8qZp=DO&Po^BAUcH
z4i1jk<m5mwT#QmA@=TlU+}5sJhbCycEEAz!K?kFK=<FyK$jpQezkyVh09DSR#AVvr
z+DIdC^4yEWv%>CJtfaJ%u?)!f)2o}g_gc2?*s%^lK4OP)3`%Ms+J0O29F`NJ{h5sS
zXiB&@(wMN(Q(kz>NA>kP#IM5{&U^g$G5>TQglNap(j;(oj7P|35#Ea0hSI=3s1{70
zBijHwKPNHO*Y}^33zcRtK(gINuHCLy%Ag}6GEOte(u{e7Vh<V{qkG+Q?CZo*%yV_(
za=@*ZeR_V~%niFbBQx`qYY_9q<9}4to*bf-K%B8T0D_htrm<DPw5jY#PEQX(zwfNC
zNZGN?n<w&tjckU&c$g@M7dH~i2T&Vs+H5}ok8j76B#31AJ-*bZn$IPA<1o^yv(Kk@
zG>U<1$8x_y-Os|)v8)WN;~cm63xNM+6&1dbHrCb|(ER#W5n;`?w*1@IHm%nJ5V>sU
z7fu-OjkKedkob}%KFnZwgm-I3xe?XRndXB<gHG<;ozD<?O#v}wY>8us%`d=BlpC!b
zTeseb8pS>p2(k%|JjDUCjc>9n4S+OejhWfGNW1N-bo2eF7F>vYPwQul2L5#dTRqa$
z$~F5t=%sI~Z{Mv&qABNmR8#<}US1F3v{*NSs<;iKr~2^>eU*$F0!?5@Gcy=>V3S$N
zGr@IJl7svb!8=@$U&K<gEFbMnLc+o)5Wfc2S>otHB)z?jl4FR}I7WFTza2Qsm?pW!
z76cJss#WU`RpCr<N7PbE@V~jer7%1>98t&&VM7WZSO^hJDZ)Fmp9p9H@Pf*%nX&l?
zfS_d_{rg|9hEkTJW6tc^i_ozp5+h%HK{W*IM*`y*nC)F4$*MYT!iVmxjhn(yUc|PA
zBr=FA@NpEjPEp)M%WD`9u(e2D{#+!^Hf5AD`$JEi5|z!<c2zyVTz`Y2J#UJG0eCaN
zLb|B*{=*0VR}VoB$EKw{sKIPLktIta)JL|WiUKNq%K%5r@<#x2PQwtIW3V9j+SUeT
z$XjHqIsC_XH^07Zd3(<-XuauzwC*4%Aci*}_7)Ur2|jc0dOHp-X(|I?=N16{(#LX`
zYGiU+eH%~+0GH+sueB_q_p#ovwk!+~5*(f5ZEY<|JQrXLA%lV8Y8(<05*!`T5%-bE
zMf`8m2I{3t!aA@8mJxN3itgtT%P(5KoC7IR4u7VNhzDcC)_I~Gs+m}<T*XIB2D<{5
zibMV#k}gsxk$hbYcfJJ~WUyovA9L-VOcD|jq8XaYpomA#S6u*r1~Jq6!-o~f3NmdI
zDi-#^(XjT?xHjak$1^B0Mi@$@kpR<>u<>)BY<ZMyB1zbiLH<ugO^w<Taef2`=Yjr&
zyyBhDub(gxiW3qS5qYa!<_sB&|F3u2H3+z6n0zj5G$gwVMAxgZ@MSlGx6X8ISx=O!
z81gB`mx|%Q9>f0OyBQ3~`ERFnoa)?&+$L>#vMDHw&78eB=@nw0BiPIn7?gVg2oO~h
zP$bpU%fmP{4X%d_<S(yIhy0~*a8mypq00rpkN{N-214$4+Uw2Du!%6;Z-zK%|M?i-
z6Ja`RB)D{GaIfc==H{a?OPW&rYwv{kgc+(LTNjLqo2)EQphSozuBME8q2~}cW0AP{
zR2&G<A4W+JYth~<Kv25}${#R~qM5Hz^w+>D3ws5h8o6^mLI;Nd?1jRqd10qP(&PD2
zgoTTC#birl62UqKAuyuej`NUKxp(hgEEomjH_)go;hWAtveXwK&aV!`AS93&p9=nn
zLRPq55DV))Jy#nV8G%ihI**I%Rzt%)$dp6hSA52KJ3Y{*f&44tM`DD4=>Gw_^<Qu?
zw3c8Bpl1a*#4cDwfY=#O@X=w!kd2f0w$gj|roj^&2M9FvfG&X#Td}l0{BvzskGS=~
zkIxuhA;pLVZ22S?XOCVhSAe__Opfo8StBPV#)|w{^1h2iZla>2rUp|iGP1K%_otB6
z6pc>MNJ6rh#ykr+-2?2RDJ&H~lw7+QprY5fy1FLrj*N&vkbeYEtu}-of2BSha{XyP
zCfoog0;Z38iL&-W;OmQA&xn5nAl{s}Zw-IuNVfVhlF#4L-cVEm^)2U@^o$I){{H??
z1tA3mt5A1<U3{$OxTbpK6#=6Umr3$)Dh6T)RIIaOLI=Ye2D%A15&6-XsHGzJmEzdx
zJUCC0AFt;$mUt<_516_EDnu4oZVFd$`#KRNQCr$zr(z*YG6+gIa6Kod5?42lfd}H9
zo0}W4IP3y0n`S(sV$#+YDJ>0o{tp<HJl?X<RsT{BsPHO?LK%lGcJ2Zrz^L)G3_Lmc
z((van|F8*qynqF!rl#s5{2vBD&Ub?c9^cpB0LUo#>>zeV=go`YZZ>FZ3qJEQ@(&3)
zLHU{!Cr$t>=mtPm<tgyBc1El$=FEvAZQZcsQ)Ojk*SBxU`@9hQ6I}pCdm3Y&+`dJW
z`#fdpwI5IpSuEt=b|g1VxqIi1GVm{8?!I4xZp8kVm5s+ioGWi8BP4YE%-d&3Q=SSp
zbO!GVK@MV8*zNrCRoGTU`9Xsjg8RDy&2vUZMk$U1?buT%H=e$6LppQTcbw+quw_k<
zuUJJ2Zk+YuU&Q4D2JnBn)Yfd%$>`IkC&5>JdR-JfeQ?$fWD5|Jv67F32c`5sg76kp
zi^Um9B>N$Q46x6_*x8t~6m>{^ZGHi$fLN)e_m4LYnUNSq?Sf5#c4!73oKFv;nhlyv
zsiHj#6gPrF03>ToOmf$HxInF1K7@d%5>Ji|02|J<?C#yE0Ml)$X;IP9fzbR;M)bhs
zDB-+JL?(@x*nRt!0YE*d!Gyeo@7~EUrZylR9rm3Ba}5H=v+ve!CWNSi*O5exJEwRq
z2v3k=Nro2@={6L)t$-n5kkV|Qi;Hh^@~-%P!MIgKtCETq@nrnG`yp!U)*b5|e3Hin
z2$Y9Ux<1heyBGA7QNcr;?PhQ^cvR?z)X=a<PVQ`OLQP03h(og2KJ}6X?!6Ky=~WV4
zZxn;QW4;d`HvuE3q9Yb36`?O~)2C1OY7k-WL|x15#bIeM2>g6}$dCJ;2QMek=4UTF
zbLLF&Ud3y7Qxf=eoR}T*ehy6%jEt<TwFnB5T1{p2Rh<|CA2A^0An+rQ&~^xn*rgpB
z*igu}Wku$|zyNWXj~+ix)bj$++BzkPu?)#K|MH(#v_{Cfx1F6<%|kFng-0qFpi~f2
z9mn%PtU3YMG(D>i@@0SQtnRQRm2LzugD9eqb82P5qMv}5GSc^nckll$>Nz}g5W(X_
z@G|R>&`egGWY9zI1P@>W1ByC}r5Z^P?N)#u)U?RYj~i};4J`x5K-d-uMc3;^Y}L?m
zTCbQkgKK$QrC{P!$a+9DM1tykFn~T6IMNj5V}>AGX?^_*V5#TchRpqN28>AhOMp``
zv!2b!ci{&Klu~T_P{f6!LLVZHKt7FQEL?rq8weak?05(*{i_h5`50zH%7A!mE20K4
z(UAw_IJeu_+@7=<ix;v|?$UBp;st|$&wA(y*Mv6?WgKfHh-&aJ0uG!T9_Y=o5BchW
zzAy9`I2{RQNifU42{ma14^Y##fRW)bZ~$#QLX3Ct$y^vAR{1|K^E5>yeX0E-8@~$?
zNg!=gbrhz8doCINb+-l&Vvd_*XciI3C`&F!+JnL1<KvS<E((WC{MEtT`;kYnJSxV(
z7_xuhnmNn_R1FS$c#uq&Q3@5cibhhTo~fxHc5D`u6Z)y1=?N*c*^uohtuJ@gG#Dxd
zmHXAQ6E;i9kcqerp6G`q`GGX72s1<u5}EH#0k!#H9k(|EGp5v*t2>e{fA;Jd)7Xlt
zExv$fyA}F$mZ?*127ogNr(z5gGV|ZP;S->1XXoLW3Tk}5f-4)~!9)fkEgM+t1`Oze
zhg#g-2Znpuq3=79%J|ky+6J^2ngXFeWS7*gk-RaG6_oNv05Boho5;X}@<oQhUpNtQ
zWm!YR+1yU#mdGH&kb+je`$Gwy9MK3QBIE8)(-6B4WB^6$wq(NzRwhChfK&j6jv=@F
zzo<GBaIDvM?LW=)JZPQ?ku+$QRa9sqloXXlrJ__6X+?!1bF&g<NK#Qsl0p<BQdG*2
zN|q@@i0^k>@4NT@-s9No*zbCa=lTEd`x?&cJkLvbp@|+{UA=u8v&aP}dPa<E0S_1R
z$coC!zrgAPYbL$Ewy0O_r}r$H3r?sUYXQKwX3dZZATt^pk8LM`RN|$3`+d8*pYPWj
z9k}*iF2FJDLa)V#-V<G#x}~Tlh^IcXRb`KKt%e;S6`h@7F-B0N0a^;+J4<3^>fj~!
z;j4uEtQKcXlaLk91e=J_y;G+XYtG%Yp+Wl;;0S695^-j6KIPD!J$u%BZkz+H<-`bq
z%Q>9M{X+GefIh^DLu|_MV)cVP8^W{=mTGCmGi6)-{`KqLI1Rb4ZlQv}`)D>CW`5Ic
z2HzKFSj^w}r(f&kT0>&uBsdCw+3MACpFYJJ$Xw~NT;+zpfBc0jv3J0~BetfGfYH!V
za+{77jcgw(6wi0cX6=ruNe&#S+t^4mWdVAs0I=Lu$Nl_HaE6^57eegk<g6oeZ7o!z
zCJ7j}G}WJ}H6MFjQA2#c-h!BOIY&P0(ShBRUryP_J#1)V^`y0Q2V_uLzrMb7Xlupz
z8R8Tr{>iyJZ1(M&$~jtXO`VQd_LjP7SP+1xKeU6)o(p!;vWtE}>90r{N^ysn7rhD%
zWiZWWp}i4PGLX2{jKF8O9%Dkww*s%|1o7NtV<iJ(Q}ErG_Spb)g&6#bX_`wmM0th~
zDy;I}deivv5C$R7=#eVwD@~me#=U~J4C`3>ldqqj8-0*KRiW!h>_2~APc621Q}+C-
zLYvBh4#0q~v{zsPJ3^cVc=pvlSWDlYJ1IIhI%W~J1@taCbLNaa^%|o@b+hCeiY6HS
z?kN#R)R~!xG2H|=Oh&^F%gYI1naBzzWDkuBzlQeYQm=2y;!KTE1*tpBP=pyYKv738
zKfhibIyjoS2%JbzUQs5%xaca0Dfbr@qIo5i>@e{AxE!ar>&q^!DfQ5=uCBH|7D7!s
zvGOki+$=inFaLC!I0{aD9}RMF;@UUkMH=oS)4TIKwH9iT88c?A=b1%LG|c|=>GIMw
z-PrrN%ln&It)MXAio2)c^IwuU3WVFJSRpKE{T$Sq$35-=1{W0-N$O|q%6|6j+FR++
z%QN?Oq(Ct(CNXR8Q<g|eOS237=+a#tJRZ2ZUb7}v9V!O6s;@sNv8S*loH(^6BRWlD
zV!&B|<_$d1%%0a4g5xBS&jN=pJgrCJ+;!gcUoi%XQ>NS<`OjTfzJ01e^`i4xy=gXt
zS+L<u6_tUIm-{~QqrI(2f#MRfbKATa(Pj2MLb?(uXQ1{9MJ@URvQi?`wS?LM0|#ON
z^>^5-m4+O{Nz<oqJ?48f{75yQ$@lD)H6A?o(Xz6gxzm0BR4(n00$$wL2*Z~G;|#Mn
zQ?5-NDo#nGg<y}O0+aK(vc}8DXP_7h@wX#viL1|fpP>rIx_22Xbr%F-iKrPq#TXVO
z3G|O~&C3*QT;sWP(sskd1wWY%iOoDIA>nCuc4V&U3Ozk_S`fpTeEVF}Q9OS6QYHrp
zTeO;eZjy6X3C1ohu&(p6sX&_Zxo{I8sxM&5@1Mk9eon`^`gh)c(XVfGAg{Bs0A~2x
z+*d(P2PyE--RIw>M~~vu!PqRc6<5b;<f8fy?(jq3y<6P$pSR9})^7Y<gNa~B<RA!I
z4m?WlrMC@M78e(9p!K+U6N;F0i3wAxZyz5`pRhakUKf!B=Pg@`5@~dl`OclEh<<mg
zC@l{<#kU?N4*zzq0Qruf-JiNwY4lt6a%}I;gpjlpxXlyys-!XXd7hY9K*9OIwo!#T
zLD%%i)RfdzksbsfLM5T4kbHLzw51YhS$=#k_zTCFJiM?)3@GSaro|5)%rGu6+sury
zCs6Cw%_Op)dG~vXF-r}5iaSv!(AjE@v2fY}`#nZqzFph4aTXU>+j7c3Gxe;ft6RiW
zir(cYr$#HO7Tl(N`}U(q+Drw#{|TQ(UpN+`gs7?b+${ci>QOHLgVTgpK?gCeh>KGL
zNvJlc4C_LZE-+;S6+#K2Uwv12K!5}D%=u`l%4S2j0U(&re>t;9GHnO=y`lxCI3Doh
zhCc_fcfWqe1cv~w5n%n!+Gi<R+S<=ZP!@0$ahH?8n!r4mM3mVZ%^TfnL=~oJ!m~<#
z=37R}uaQz2L`6mpXtZ?`c$<gV3G%6=g)ql}V4P(m$pyeW=3O&jwR^f}?BU;k6S5-&
z)AL1=2qI=(nary%TquUP2{Lb7AYcOWzUDk$oMjcVP$pDVi%{&mA5kK1?l+&()7^KF
zfI(=#Z)v$|h@huC82FleeiV@hHTLsIN+8<s2DiPr-UH-qm1)v&K~Jt;&Y=_B7A@B|
zG1hxq2ed*zOEG4U93g(teEA*R5nA$izNU3@2)KtRi3RKf=2|7QFH{rKmJ=XA#2rvj
z{Kbr<lX4m5=B1^iG+Z_C)#mx}mJQz{Wy4dk->+Z4-U&-8?XmaFfE-Vkr29SNX-7mv
z^ewI9-*@iO!;vNeAFng$Zz5vbd=`}s20rj5+~N0S#D?k;9$;suC8{oD7RWgm@S~J}
zo^*9h<a|)&yYWPsRji8dv+5E<3IqX^(NcK%sIOgnQN2;Bb9)908XP(?rRRk>)wYa%
z`RbMW!GklzsRt;oR=qn;OgjL(IiE>%ZfAUaWHOpVT>|n=I<#%W{DwBJJKBKuojR>b
zF5k@!S+saDWmJ;@LY#^wo*XMJ-GRdYI9~?N!Z`Q3`rU;-;<PfoIltDgx9;6N>IyL9
zzex5-;KTi}AXxN`E~9u|Z6vvP;lj}JX66e2aBx0Q*(87e_H7SQIi^7}gVro9F3z4Q
z%t+r$mlQKC7}6!@a`~QQ*?ju+=^|RV8{y&UgP|p79iWn&PG5RUXn<w_7ew>_Sn#KA
z-m3V+-|G|HQpFFfY*@#1!m&Yf*|M*^!<P*>gAMle^jx`d9pCYj^2d)Kwae--Su4l}
z`w3fd*rR{He$QOMjx+=IQ~7?5q{os9{>YhlK!COo#%Z-S2KxHN)b7!AO3pQdFmQW7
zO}z(Zk>cB}oT_N?-w4{nk}Md&3_r9keBGm{EY;JePaDqtl4EYj$$pwk+rFl#o(<9|
zr$@{^zml==z$ebmU8h?Vs86IWC~8LC5jS(jj6DF=N^kS;8`1mD;LwR__(io*>&-nq
zJ>Q%5Zk}hba;0gb%cnHIc}kW$rN3i@HycG>cd5aH4X+ZGOGbV&y~x(kV5`|yKc4@H
ze(+!qpNq)wfjkq9NTC0rSZFTM@UxuygNJlFv`aX<SvEm(BDWSgKR#mDcz7`DZ|W+(
zEO2jZl$kQcbFY<Eu}~)$lnB;S4%Dh$1kknAnc?Ql*=H~exJ7cl$sDOh+g6e8%IIgk
zyw<4RduZ$wZjoRtd8^@>rn_?QX%^KT5?M@dZASG&z&|fTu=mD`z~G@Y8|m-gz4QA0
zXAX+WyAcszFda;x>>2PVpOm))WyJl%zbz-q%ZFsyadZ#nbRhUXfC%Q&u!1`C%n-SG
z^Zba8dz^A|C3_f0et=#X%^-aHi4+Cnn6pxXauxdP;L)Q;V@ee^uR9^IG-le|NpYUM
z54zsCemxOR>|Su1%$}anhks92S~zs*1^Kz3c=<DE8TQX%9y4+J^!r+FnynGakSqUz
zpfXcKBcX4S&l*ER@83qNtQsr6w9BDy7+6S0_k8Fhg8{EnQ>_aF%;L|c{<uxR?VF^s
z`@;kG={<i!>Kjv2N2C5}Mg;Q?_gu#1M<ajZzvBFH_r{I!-%CsPqMb6e$Y$=JRk<BL
z_UFhWP4&v<RxKnMBpMUPjQRV5s_iVo*W6EkdJLKRS+GDKAFP}oQ16J?W-kTpT8ap*
z$NOUmu>TNcifc*82_sf=Ti@BiEZ)WZ5g=?>csc3DlI*<M)vZy*PXFMXulLJU0_XZ^
zJZVQO=l=2j`loH(FH0R&i@P-M$Yrs_BBG=*FO1vpfnN6koI>43#Co5X`KhL+o>e{u
z170b@k4j*V2oh+EULGzN)9pjU;+2C#Lwy_8eqfh-&IvcS<xWSg-Qk7qfffDbS51xf
zDU(HuPVip_`x3NtkI)w?bOd1$UwFa<m%I1xm)IWZ5C?%_kC<)q3l(+q3x+_6U>~zT
zA9i$R^$@N_K}+p)uvhUTqZvmGJQU_#JALAW^fA+?`wHwZ8urM*#+G(*2uCeRxNDie
zN4qHl;~n?_1}c8t)Tv(L`QG64N0bg9klLnq0?*LeZS3gLM++Z>9~sJgN9)OxuI<}S
zWWa;Iw}`e*r=Ys0JyOkLpa{jP`p@idcBwninE3JIr72UVD!hF{n|+_M*}ZBMRmMSc
zZjpwwoV2u~kRFL`0)0nbBL?2zTe2)7d;zu09$H}qAJ3~-uEd=lJmvT!@Tw$>VGv`J
z9?hFGXYI{G3g68uJVMS2al)ZDss}5syfDW;Cw{2<g^L$oJu;c`d!d&R?M^fY#rx1&
z9Zx+XJ5Wu?98ULFA#dMxktxxzB>klxAr*0QWJ&jB9kmfbJawt$j7z`mH%)UI4`Wq&
zR@S}v2u)p$<tsXM9~8Hvjs|OT>G*Nu_6V)@_ece<vN?TrzzpuGvu*Ii?{Db|Co;Rb
zK=Yh8onlzGQJ+v&11vaES0P?%KVxK*U4Q5~#8Rv=bH|e<#ED9IEDP;EaHGlklt*3s
zvSd*7W)GAcfJo_n+0TQVSkW*99*ARON?O|2b<Y{U?g}3NQ^Qm5*x!H8=+Wb}<;YU_
zUD0H;$%XGQNea!U$gwO;<A@@1QLL&qH#b+T8uc2C!u#w#qg-<oqcOFhYa1UAgtVjX
ztlgJl>|oL-_(k3$r!Y#~LGdyBIt<_!Qf6XAJ7$)JC!k9q{GtSHy+8X^gUDLK(h11>
zE9A=;G}kT%ZuPp7HBSG_Ea-=8iFh+9W`)P02p!S9YfI8fj7|2;?VUu~lWnGb#|%Q^
z?%tmOq(X`x5Uw{THMt8R2$*4QXpiI&n$oqv9M%?2vrgWh{NdwA>-0q#PKn|Z%{L3l
z^|;x9Nk_#-dOoy$LYPoDd*kNB8`&~62V30)OJ!#Zx!2lB&3{>@-}&<?jd@NF-^Gh0
zor?-?z$24`mF;zQY4lsCt))8`bST<X7JHiq9Kw^o2F>96a>Ii|LY(`X!Vi5wjqUSZ
zJloZ_q-QQo8r{i<N*liKMTpT(wq&veH%t1eMU)$&O6gy^=FrZaH{Y3l)E?6Af}fvB
zLE|dJ`@#ccmW5SDj-%{!fO_MRAfR%!)8(}RGJ>Dn@cQ-9$jhRdFu27W5GYY&(W1RX
z`QqAnyFblwTK;fc@VIPhKIdOCKE45K_C4*Rvn%j)P4}){3r=@aEH!vyXZsIR+Rdto
z)Go#sIP;cZnerAE<F9;`2_Bew=wQu{0SCUm8tnebL}Ty)rKaDbQo_h<2_DJXx>Gf$
z5%u2<y5g}*SRNesE7*Bla5Foo#uVpBOp-3T*u>TXxc47AUjLVjIQ`IZg!)KVy4M&V
ze#l>l$x)<9?CC&-vZpwz5wWJwT3Qo&VU3hzC#R-v&f|v*B1Hy%RNI*Gqt8byyKw#b
zQ5;E$1mgWONJ0Xu5OeCjy_Ro+_@Bs}<e>77ZQHIefD|adfYSyIf{@l7@EcjUc7ZaC
zlF@`TZ}<^{vTg9-30UycXU~p#|M~MrndLuS>kgEp4L24CW57S5GStc&^EkN+n8#{|
z4Q2WV+jESn>g6&qwI(i60SlB8{Tr8X6h$V{g0YsyzoJA#vnS+GF+ZVGd9TWm5c4=R
zjEwPw;ux8gpo1Z65JM2}!$lsXpHt#jkju(KO`fO{t}`%HpiTLV>QzXd#Yo1r@HQE2
z)0Qn8iDS~W@K5$~Ha?R>clx=z_Yr>yxDPJ)SXzF5*FlhOH2W?!R|5jt_v_bBq6WuL
zcjd}95(+J07pXO87p0bb)13Oo#_AOAS=b&E%D$)6LVE<^U2Xq<6$)PmBpP1t|Dm!U
zG<(0or&!x=)Flvx2IGk1Nb$lX(uGISI<Vzp^bqwRt|jpnUA31k6+28}SEtkl2L;`3
zIStG$2w7B48_R1DDX4*fAG#Pg6A*{NXD3o?ZFca=PCzV<JZE^3uyzu5NrM(0RU4&7
zSm@iYUmFSS>o?jIr<%Nb+sD2w3=i@z@4?MLI%efPa+RiL7jQA5Qj~lKI(T<yb2p+{
zNYgt}@yK0>ju!MXvdEU(doM8fb~t{#DlO94!`pkn_r~vpg-XzsjV0mv5FDQ(4B+{O
zziTJJ1+!6nH6i<D5>io7Au#)cIVNMrjG1KhLvP0H+0URy)2Kp3-Wiz`jU)kjUK@#M
zlD~d6P)veLmH=)l)M{XjLNNct?(rJerT=z&)Q`^?a*Cc5Y(~hRf5!eV3MHnj*qolE
z6Vy9&iuNXnk7f8iBcl(`Lf`HK-)21#5g9@o33;F=<9~(f`+G#SdFH$t+z(pf1ZHht
zm~HbS@9x+Ft|NR8D1#Lg6xQ$F?Z$v!|IjHx5Clvxv<5r`%)3=p7`5x;5Te#|K2aM9
z)Bq-!(-}zdJTn<U^b>P4@35OU-|c5MuY9m#y--z4_5f(0=QlWXDqrBzVoJz}u#c2f
zr_ZG`QfS(IRzKnRY_1g-@73kGLkZ~u&EZsDxpCtJ0_8dAf<O;inej~{57iCN$*O7T
z)s)b`y+&M*0*OUI;^{-9!w%&=EWKH9#XIDI)<<Wbs0N+VTUup%%FSttd$*aM();~H
zpEDQpM;@N}<WM`!UGqo1i}k~-XO5-E-gMiNuU}=NXO{290bU!8ftL9N0YXB|j2qN1
zA%mO;7gWeQK<)}#Rz5-63--+2=!lQvsO|IcwHuCm@o@W?X3-R>WB%WJBs+$on9ZCy
zSnX5GTRhC>b7XnG>gEh3#bkW_DW`@BsAJ<26R*E68!~i<p9*NmQTU>wK5tTme@`zb
zgyTW_p##M<i$RNEe{kjG^Ip!|+C~j_!-`M?#Vky<08GW4flk^LRfL+1XB!DMg)1`q
z&&>OTtxM$Q?c0+ZpLXojsXF!!rLb1x3=A!FsxMU>0jhaTkh!caDXQ5_S33>t<2Xa7
zLSA&tyj^By@-(g|7%vEht49>K!Uz!fGuXZm{2)3N{7B-f!-*4PCr|b$zW|VVg`a~1
z{H?d?!S_OSu5|>m?tX5`aYmyj^7CQF2mX0}`qZhe9}ZyOfKYyURyl0OAA)VbGqumk
z(&I7~&=Z|`SuA*Xcpjca!@II-hxiM)24AWx4$}?nx_0f_^_w=0`?0_{mq^hAO=CgH
zs;yhM;vf|Cy1JCH9o*Ro+{g*$%j++PuejQlj@X6ohyD2Z7inpUTpmc0uhNz24!@!3
z6_^3+3QgBMrY>#Tw2|0rdCOnrfNq1n%Yzabg--`QDa&h)=brAXox2?Yd55Y|;*-<n
ziDl3vj`@sxAr(l9ircVuVgx)8LB7r0-)q<mduYy1s=jywo+iRP0~dwJ+qrAk`NTk`
zO4oc_c2mK;+3ouC#&(XOe@2IZQ|nQmZONEL4KKGs*g*eeY@;{pM-S6eV93hU2|7kF
zC3K?A*QE!XzkGS(kgx=Bg)oFuYLB@@D%{78MX8qZrwpa01b1B&)+P?Fv0gxJ|3!9|
zR#uAlE@z$7gU2ota${FOfQNsotULode=8iRgYWI)bM3XT_+s_aOYWKQSpIf$Dj1i4
zpBNaGtJkl;k{QKEl5u9#IKt8OhXAuw8+`ZNleSF_U?4u>ywh74qqdkpgCK;deFSZP
z%Yn<N)*BWf=eNh_9juDbi;qW-9eb=S|A}ApqepkC$p@|}!Mxn_Ubyr8N?V<*!Q-QL
zz8_<@n=a7tZNIdD^G8&XJ#MC6S6Wf`^jN1?PoMsk^$*F@D{+*SjDGamG*J$&;~uG4
zR~60QD(&j#wv|~%|AZ?)9>n0Tyv;xfd{YGyW#BbajfD&EF!R5Srm%klGWR#uM*La5
zhaWwvp7ok{vNnO=puMjVIbLC2)V+I~zz(G!3b{#9{y&t~H@VS=Gm2(!1kTEXcUk)8
zhFfOFP=MUka75lyr>&+Oxmq@E{P??~1rnZS)6jp#oeKV~jfnCbdMg-l-nT9b&VjC(
zcj7sHa1wdvR+V3rdE%hz+S-BUEpX%i{k0Cg*U6es35`XOtIsw5^(6F8%M_Pqj1@E*
z*K>xXqs&Ff@4Zg$^psEmiTF3K;h9d1FrQ$Tv=cWQqy=&jWxi9t{M<*k)8W>8=olth
z;Xf%e%<>d&oztsUT>Icm&JK2q21E^>FvD~UPE>;>DlDXI`=_GFa;8zVW#Bd$!!HVV
z9i#Vs_Xvu;cI{ebX&h-&>d&H&;)*Ao+asforco%NQLmhZ=I}BlrEhjBh6HT#@cw2!
z@a>}6Cj0kC1^oj?p|84Vbnukm*h6)$pwr9mU1EeV@NC&+6XunTtSB+02=h)0Fx#=?
zr5FfMBYEwrBM1S`+xeIMlXri4@m@39lJL^9vamb1&TydbLRI2#X()p?J&Y@TG02qE
zG@;_c?1>YXZO@C3{rx*B3i|mYuGZ0q^n;su6@@hu^h2J5M2-6WJ7i_<7Tr|B{%jqg
zB46w(<~IKCFY;dB5gfby@he4v^(rlGncgbHd3_Sj>7}No4wk&79%$=lYZ)E0_|I}}
zOPTB@Qz0i)kdxEYTQ$-5E^HvDG+%09z4y(?@KyuUzQ+sv>aT~(vGkx>F=Z|v^N~{%
zvUAl8&yYzbn<<t%80Udas35q=sQ!tY^3{^yrh^Vv`l$gn)Mz>%30rcPy6ors`Wxze
z{P4jmkt~#skVQQ`;`Rq`qSo8smE${JiL3kTJZ4L}9<rMH-2mbTTzViiac$84OB7Po
z4f-K^a=%V2-e9uAyHE2ZI2*dZ6LfPlLj;L-ZVOe^gs=&o$p~i)yRNN&t>N*5T0+CT
zWBc~~qnB>jc>a#<sA-y!?0ohg>5V6fhU;>vsek@%5Kk~uP7(#ZCa}g)s#ieFTPQ}a
zfWC9edD&NMM$EH&1te$v82Bu>X>S#7l^tAX+e!yFQ#5$gjWo3`zd)?4Zh$1|_%;;7
z{_tvAyT#6i-X4o}^$(l$uj%!bwilaZ5caNN<Co~B9yv14=GWrwkGM#E|9rlG_wGuY
zHkxK0KVV>KC{yW%9^Pdcy*BGFM5V#6M?RZ;Zpp6^lToHs&5W8V9W1&<((1CRUTFn_
zifmH`aHv<HEG7Z!kGV^C==Sai4I(JWU6S){I*qVgkC(+iN#F`lYXD@N=Grx#g<AY$
z#zqk<-mF;Tp<iq{Q(%dCimPs2%xoj;{E{nU7^vl~p8ojW+B#vj(K$nJyQTq7n!7df
zAmco7vAy67_g$$Wd}(&eN%03p2O9Dx^naStO&R{o(_<;ZJg1F<*Qqt<xCayi=^u@V
zK%3fHfgq@NnW!t{@LSJA?`VwrxM1bM_+3CHonKm9RCKao)2x{@BLJL3cQ%5K`mgp{
zdVKT}-HTT~@B1$oAk~DEc>PWpxRJBnHMvI}P5NqvV1V1<(;JP)Dib5q4-@s4$Fz+@
zn|<w$oyGXzuKfxEF6JXnni$f;mM6Ke2|w?4Es~B7p4D+cdgPCW0JHgL1I&Q+X#J!W
zojnhFUmvHxVdQou?vcmFGyie%kbZ(q=KNAQ_F}IGG?Vjb^PvA;34-i*s8*&i-rv~O
z+(;Ss#|zVT_@o?kDCte4uLZ9Uw3?Re*{A0%iT%e|Tchpk66(fD$Q+Zs%jg@8^jhdo
z^@iNNefiF~>|ek3Wqck)EM7S)d4=kiL+vE9Y4NYtICz#09yI7Sr86-Wl#QL>kK&rI
zzzAHd2`^BQ$nE9#U`JNa)jRE63w(PiDTR;OJ#Y4GqhARn5Z<*)e@xcY=bj611{**S
zouNApACB2}uanwz%@F5#HdBB52QMKKX_)wUopv4b;np2M5w{LTMtNhBu1|0_S;55n
z6%Ct)HmWqT=|H-hexaoDAUjY7FFT860QBoBsBVr2oE4B?gWv?|UvaIdQJFMpJ;M>b
zyjul+Aq|Uly^}Zj_dE>A+$*aVR7!p9E7`P3q4f*2rKEakkI~dW*k_Uc<QP4;mr51S
zZcTF53{h28HOn)&7^we#WPz@yp5wKxHQ(PX%B*%db*lgApL>yqw6*HL)%$J2x3oYx
zO)DyY|B@SKQN;!0E_QhL`t|J>cO|V93~@^RhS-h|6_NSgV+6PTU+&MszS~6IqRD7>
zD~MC{WPx9D2wDsO*!GNjCi;{GRb%U%am11)=#6$OkAL(-|MX4z=awW=wI$x)YHpqi
zKh}A(Q3&nSZNWI0Ay3R2bL_U)J!mzWPO|amW@gt|Z~6H~Q#Z^Y?0l|zCcX?A?d4MX
z9(K^wL5u2`W^8zt(zv3A)y%rvh9`{6reu@5G)*aAkn2ljFC4x5z*Fx{W~Ta|?9!~@
zYbw9Ba!8L#Hm)IQatW6L<S(vZ)VeV9XP~g3DW!j(aN0y!GxBz`zq3R70W>aVrP|U<
zbh9_<EGbfeLPoLlifSwzPh|tmQr3+u{ADBMb204f_>E>}A(IX7%5t{v8G2nxAK<CS
zD^8*Dx-t1Ob&`(Bfz3`nxxHm>gq}a6&F`Q}HcQtbWAy9s>B>#Ndje0}WB@Ge;W^*2
zOQ2)16k7m}dMlY+&iVcGZhBVK;J$rzKTo^SdUz+d&qx6#sW0Ov3uf&0k5tW0DKO@g
zs%ioDX$s?CQj2QrTImct#BlSXFXTU?$WlGr<MGhUuvQ2T4)&+;vU1P6Njd#Q(f6fb
z=ZEF>P29S9vwpw>=Ql99HxLolgy;qT4J{-NK0DS$F}Ik5F|p~@ub=1qJp5p9ezQ(L
zH)WA-ch2Q;W=0ZwWrJ^x-yst<?FSsx0mqLl)0(O3lE={yLMmgQhs#B4B8-cwkOykG
z8Le4^L!XB)5q{0{#oEU!>R;C!GKjF<%$z|ub4Au9x(;_CLsj3Y7?hO-e+<w0cE+{8
zetF$9=7`}=f5_NiPEW~aREVGN)4bl^l-xJ0P{EuPg!W=;?@LX5oYV1LT9^x7We<p?
zN_8YOlV5!WNXZ#@=<Tlr-(?Wfq7kZxPx4vgGct639c1h-xL_dDf;>i|*(%1U@i@{P
zd{3!bWu>z20!C*;RCd02sqLfi6b8nxzTL#nJULO&)EK5FF+hC%_|Sn2Qy#itbWwhO
zDJ>1HE}zTPkM^ab1Wnp{zQ`<d6M5Pm-26}b0;xEYl1ilqwtl*GaIE5Bu~*Qd^YJ@i
z@6x19D+U63jbtl6_hnVvkT>Sg^*d4X$NVfTYzK?}(yj$!dW{K!kFTeP2LvnUzHZkZ
zl)Z~MmcNUt@LO)+Yvyvl#aV(daO<7vgf5JCrE0DzEWvAH1v{FI?cn@htwFQ%V)y+W
zIXx+O-TNQAJ<l2>kMNd#tC~eK@l5<T569M0$I$RYLK*TU#E<Qi#4FvmOs)$JwF5wn
z5@qxw_4|J10tRF3qm+JrS~t)avm9Y!`{dHObHS5KMwx(O3BFrojYE=CtgHL-zZeV;
zGL_hKBwaq;59wSQc>VgA88cRw&4Q=yNI$m!sLvQa^`dCYV!gK!_wO%a6VgFL-=y{2
z!g}+iRh!6A*_W?zgvLMYxsToxqTh}YMJ;{o>=4>$f8QE0=1Zj&*nHcTFym-TjeUyC
zw2ajuQ)B@3Yvzr2I8(6xX1PRFpWY~ur4Pp_9NNCnRxcyc9JQHzt~+o{aWS`Kar0+%
z=!<ZE1r>yK=tAMv*1Y7<pN2@4<qJ#&amTyy*Y~m8A2X@h2sk?HbON*ky@CJqGM9_G
z`k=?s&N<nePbk<189$ySq$iQ#bsV4iGBd1!z6D*^!rermE~Atp_CnuliU3j)h>b7f
zVCl&BJTy$VMvWi8$a2_2nGfSxb1t{%i<&q6Y}Lp&G_QT;Zdt!x7_130huSB%k3~hB
zI8K3j<2AbFOEuV}lVkgO%j@eJrK1zT?WAzti2mtE&i5YCiID66e5Dn3s1C3}B@$r5
z&^u)S1Q_-il+Mr|%FMHQh_Bqrjy&{CBLzNoBDAXdgi^YyFI2i7>5Kkz)#kr=qG5OE
z2VVY1>B*nw<gA*y*oc3D7)N;V;QQYF_;HP)N^hVcFz=6v!3Rv>_`yrfL1H&>e}L;G
z6)m&xf3JSn;or+vG(J>7*sCAz3l4g-)9y|PdU`sjV@SQO9{ydWk^2dhv`_EeaW72{
zS9YKwHVja4*(hukkPDA|VM9iI09zy1weUZc8J~w+E*ObFKSX=hS*I>H_{e-ew!Wa7
z!kT-X(W+_W8q-qKNxyjM>gq}!U+A8z;LK{c?%c|fd~?9Hlkmy>Q8(JSX!`c|T&llR
z<_(lSG2Ra-BE~dN@K`O-r(k2?=}I<SNP4f^k(M;*8MUYN`_$B>mfg981^4Hn<Yu0F
zZ`a2)#j|t^ZV|G@3^sGezJ2$MWe)bPT|O0d4YWk(&9kvk6kH09APRzRzZw-yV&~*b
zNoQ|0cHihP7F>)AquZVb!>uZ|i19JXl%N!=fDw7|?VrZGny-^xdA++33IyNED*DGm
zW{zuK<c{$(=fz>mNQM?3PxdjYF+UoP?#Nso6GSOD^@m&clWv3cr_Ovr1a13TL9>Qb
zgmXk;^knCD*NRK}OU^$o39S8Yb>KirOIh-!$qb4*@$G$LE*(a?>A!aYP^WbG1PuFy
zhX@Q1I<Klmhd*x>6%@uDQK`Ykndyo9Fk<z$zS6;F$$S=kW0Dv)NhFwaOb5g^8a4AL
z4ZnY{g;ryCQ&g-c`3Ub#(4KKgD|N?4cAGtvW<_(^ae3E1fAznA$;Zc_NX2o=jUhva
zN_}^mMywpMQfJF1#a(3K!~4}FFH%z#Ck=T)$8;My^F4+jaj(4R$DbRsbjgxQhiZ2w
zTNJTnu4}9hh0o#kLnVjb>RZwKY}mT>1cl#X*9AGy*ngW-4CC#jZ7jx$P5U<_)xpmc
z)S*d<f*(%)Ges{U=y8+;j`Yf6zx*VXiF0q*K=y97BNM7TvE}v5Q~M-q_S<=~*_8qd
z;cbyz%Gj<d&$&@y%9NGAK5@=m-zxj4@SOVmS$uxxUKwzyu%wgrAk-USI6z_Uc*a*f
zkFPVP$2R;*|GkQbL$u@#ry*PBN*8S=d}AA>J3jp{BkrXJDM&~{BykK`CZR$DqFfnn
zA;xwN-{xydhth%h=BrGfp3`{K0P3JnnUhi_5<2Z?yhZgX%Ub_z>+i7Q()!0PX*g@4
zlR>#BG$JpGE#YAovRdmIc+amPp0|VsWc=fEXU_&b-Zg8>t3jW3mqEE&tgU^FN+lx6
z@S;QVoRH32t5eGxrGH^TfLmfk6?MndA1(4r)bw(cGKr;@^JefaF9+$b{viF=yWN>&
z=^KA^NIWh8nsNF0CSGS`HqW&M+w1EcSbKW<v}qdP1;2k+@-EDB+--JtYkV~@M_H6~
zI{77;i{G7?PRD<(?*17syYzUwq=YcIOr&u+pQu1Psos}O97}XI^C(Ub@CxW^{69$a
zr&_0LmyNwu-)vh|<Ya&->hjzL3}2MMIM!ADUZOnMq_VzmbNL!pQY9;U7b&A*b=F$`
zHFNwn_NdI!oHk`jKTylFbFA+KrSYSGn<Ku#e{24B^32C)?EjHzaG$8Jnc81&$?@#E
z6PGqlK0k3`BHEym`(a^WE>q=0u>WhZtN`Ohx$xb5-x2+R3aeLq?uJ@pw~&*I&q_#^
z*n^y2qv00TtVEP<=GyhevS8#WJTm34(}MIrxoENHxCNa$b$TolOwr-ItJKU-qQ;4e
z*!*&!kQB_jj2|$SN+H=<Qnm1nCC0c|fC^K;$8NtcWqO$}MWHLaz*2k^L#+<Q*C~u@
zj<|N}deZV(@@N6`i`)0^d5!qo(q}{`{^XnY7FX(z73F&b$a^Lq>?9dg{-BTRoggIx
z1B2CfHg#c<YnM^scgyHz#hhmDB0)HBE#bZ`w-_IamHHqUIwi%F9N+#7kvfwT9ftl0
z1R90S-}mp=J-NQORZ`n|MND!CPgzU=l!W~|WV~6YO@`7hK4&ji{Os;ZYajFmFIUWL
zIrnc)(6o>VMcCLCgU#Y%?yA^*H0wyu^JYk|gqIq!Ly3essWU(>0mC5OeLxS>C0X;{
zqi3OW(u+<bNr>8%%Ma0x5LRk+-Dus4i>nt8w#xAu(D>z&s_hT}iMR4HUuu5Flk>KF
z$0$xar=8=_xX|}cKVsd1C2XiHYnET4S#xgHxDQgo7-CLFzcUA#Q`38$@%ScN^G+tS
zb7KV~g0YlHq5A`dg$I6VI6iUPUORoO%aA7*P?YUqOmo`Qz2Wk7I8j+{!(NnX-%6IW
zOX=*UD1l9Q(x6Pzq48w5>itt^-f}jzoQa4|t9rxBE;(pLb?&?YLr{0a#Q8I&V+<tB
z^?^rTaT(X6z4LFcPZ+6hXxK;q77j5a)?-}DSixhzzkKoEP2KuRrfOx$gPWw8_E~1p
z^W@f{Sql+_qFnci3J(^wO5Ul6F-fa1c)r=nvcyzKc<j~XKRU47YsU4(799=D<?J*E
zj5uK5>^664{~Xoi>DCl^utBNzt*)BLW3zUQc6mLjkZ)PR{XiM_^>vGKD4&pccHxwT
zQeS}rwDMM6mrZipb8qO<Z$D<dXi@fBu6+5(OGhVug#Oei)r{Bm(+bvlKsa|MHdj``
zgTME1#s8ePraVdx0LI=hzwltW_N}sMlm5Sb!tFRK*LdbArcmly9}k^?PD#X$YfKCV
zLF!TJ)V}>^a5|e)C&j@HILJ>jX7EATAT`&=@8+6E`^|ZR&a=|xJfRbwKMJlSAGl@V
zK<3rZ{LlLqVw=0`<E*(ta|_Tsr^-{`4-+gF0-x;rmH)zQPI%KgZPC%&OsI`<^I}7R
zFrQI~*zpYFB_(&v9Eb*U7hW4GD2J(u^%NiMLtIvThvTV}AKmnPo&Td|Tl;1YO&6Ej
zZvM9##vgZZSP!o*CjSz;SvYiE;94~SY+*0d7Fb-}_G{#&FNVGjjq~5cCdW7A)-I6F
zg$JPcy4N}*-B0<{q8Z6i%}W8D!8oP0R^Z!;N3xW#;Dm@FCZzs#O+4hOpIl}BJR{4h
zd%7`f-ySnp?Y`eg=ax%d-Hg7}4YK-mY4%^8fA79FE_=+RsZ*bG1g(E_`@~pXsRgvn
zzt;)ye_8V#lz)e#7BSMI>KRTy45xjxVB*6wzRI-;Vlr>Cuf|ccUwkjcgu&hQolc+5
zwpJif^*bFqdf0aTq0Hs`dAsDk*R)8f^H02?1YJ!Hmf1n#NvhUtqb{DeVGKzU&l<c$
z8SE9+P3_wI<1U5oUix0R5E|uLu}D}DMt&Mk%wGBMG(B&8e*Q?olP6_~*N2c*s(yY0
zP}UV9%3>|8%w|m~9Y&_=n{8uuyI3}DJLInMz!)evQne@0s)E@nWs8-5cRQA*FqLF4
z+(zSDz}>;;gR>xaP5pr-!Wc}HgOg7FHzJ<N)bLFX$v<4(W7Fip_J4P27x<JKJ3aiV
za-y)En7ioT^K*Eg_ss@D(rbRxzzd!BLw)s!<J|}UEuh*eKKIlgLxoVSca>a*{v9(&
zwTLZJUxIwA^95a|?OzJo(IelkQBkQ=$BqSvR%}iMee2(E3A`nIqIN~P?3vVz=H$}y
z*fD|2H*XJkx2OhWcuig9P-@T1mo+MT*Xm^Hw>+mr8cXU^`}FgsV299Lv5^^Pn_2zo
zL>ADFY1n=xk%xMkOF8Z_!EnVa%gyASROG!S?<!63z&QoUs>-tYRA#P1)+)W(j2iE5
z+y8^KFK8D+SR+QmVkrnMY@f#^J$g)AzE?|A)4eHn31N{0r9{oOBWCWE^-roOl+0`o
z*L=%ZkY%tvC68|(EUOuL(qU|1yMp(6jx@rzP9vw5H7_AhG}ThmXdJPT9c$$vzb<5T
z#F!_SU`GEwHb+KgVM&Bu(26$TlZC}J$#iS#rL_)Hn(V549PlkSGBl`3&TUpCR1jJ>
z$%>EfwGJMJ!d$wuk($ci5`J`%72!oXyPxrT&sjs9_l%po*`cwBscM2<AF;kiXg-DG
z52Jx$v-fxB{1&>6my!8lHEu>ik$FPhB^jVL^)9LWIH9%At+_YX4htim*G<DSEsG8g
zgW6uzO+kaZCOyRJJ5PPq_Eml~Ez;++ZTQ%0%IgZM*iGS*R*5H*NBXpXvn_7YM>KRi
z^?6e+a7`+!n6!7jcXfA5V%om~*dP6+4W}_WXG2#zC3>ON#q0AM?jWX7UB4gS7x15e
zl7COC^D2H$3CpCy%PG;lQ^t*;mwfmBePtE()V%layXQYXbV3Y{$D5aZh`#%}(J@IP
zN&fSZ!L0KzPu0$ib#3B^oi+V6zpsq8+-zqg^`{>pQr**P7%pPd%(7NQrwL$Y)=ceK
zB57sbDdp3BpE~^M=2&*dWAtISH;s>qFoJQ<=aS7~M~nad;pS=6Pbnw&8!T7*d%)$=
zsX7<^M#eXFS=taQwdhk%oE9`RLp10z9AL^-R)O=4_I=rB$PoGSzxNO#{SD_i;%r_)
ziE6xm@7|S<J~Hxo{OW8DRj=Kn+lGI<oY*|#a}Y(1f;^lk<Iw#Ase<oSg;;S4-H$=Q
zJ39Uj2M!!C?uqd=ByQ)d>#;1-=mpGCBF+)7`lj044U;z^g2BVz>W(cU>Wszux^9o2
zKUWV34Acyn(BwX$=ESu<UpH-Lr{c@qAbX?7jG3>S_Yg~;);?7PxJ#>86|iQT?U$e_
zAzN<Cb`?M7&;&G&jFVo6g!$PuXzshZ2Oz;?VVb*5lO&FM?RObal-a;5_7yYEByXBE
z^k^D-K4FV~GjzYB->Or}m+r}l4iu{5!Dwy@-Zdsp<|h5fOC?E0OvhNFJNrM;N3;`O
z%W}tsrW9LZh*~)d-l{0CzrU8&`T5~1Q^1UG-&>EIpS-z;KHOjV^MAGw5GGBYET8cp
zPzWekIGpwpMNsDN?koQ-)!bE*Lm)p$N&5*licrCgcr=TkKcL6iz5@mbnaSLR0gr*2
zGk)$ypOZ-TkyeUtJ|u9`t2t8?6%{q^&ebYgDfe^t4d>W~8*-*Qc68&>7&m))yzAe%
z<cH0Xu8pb;Zm+-aoY}c9jEz3q?u^+y^;}%g3^&Du)q%C0TwxDz&XtgVYu&K;<Gbxp
zOgA^vb<5(_1Ny|4Lza@=K746|&5pa53rf7BY@fr%b}{!*+OPzel}7k<K#lW+-6wj_
z4`5_5ytnJm!BSEu1SN2x)MU~gWvkb%@EJp|72I@pe2+sO#M`O8qE7OrCp@gE0163R
zcS8BNiQVtO)dkRrPHnTPfm4O@cEvT7L8fd6JufS_JMH33El=lZqlamXe4!npKTOd;
zK6<U|l`B`qBn2q$-n|=8yt<00+BNGt+wOy!7*KuRlt<?&I##9Kc~MI<E0v1tU#+^k
zWvQJ}$~I#N7_2Sv$+ba((EE>UX0~dE1GxFOVZUe(<}Xs|=h}8`)85rN0CF0|G_6{f
zAFJf^t%Q2hSY_I@1UzXKt=GwQDa4r4-@*8cef#r}JuYlhS+UOebN}Y=BZm!JyRB{X
zb%&(CvqnyPSi#!DO4B!7h|;5-wC0nT*-tviSQP>qBoG?l|4oHUJvU`T#2F1Ce_j;H
zGsEh0rh3HQJX)YilHU*fLHNUGJfx=?W{WKx*!k3(+BW?9i=IS#*4ktuqT}SvDUuhB
z;dZQXv~m5ncq>}G)PTbOW{}cq2qfAyYUMn0X_Sd+FA*Zlx^VK^xK_0F7Sm2}6=(6K
zjUE21K?MPMyI*av*W}=3=v*KN$$g*crDvkCwDS=^;W=p;9~LVlBe(oYA3pIbD34+B
z^1$G^8~m*4sx<p~Zp-ZSct)ctkex@%viA0{ShUvcCQJHT>NNN_=NPVDeP!qSJ2471
z(+0*qF?np`2xmdNB*HyjObk2DT5-|(-XzRQJQ}`9Ej0Vb{<Z+2x;5>V^9B`?JtEXj
zLsIYDbgo!Sa1-5LWGQ4t=h*RZvo)s}m^cPaL0&HSbM#xC&iKk&V+qrI5R6mLwR`c;
zp9=CPjvp85SFO?`^%YlNm{diQVjSDF>-d=>q|=${8^3X~^p;uJRTXJcElX+7;esYm
z{|h@piFKD7ApMDq>RV?Br6uEo1i;s%N_&CMS7*EcY&%edJO@3H6s1o5@#V`=@L;Ef
z=XA%T^x=PTz!ws3V3_B-srmrf0G*C4LBbn>-t9PL*TtOez^XzyMPO<tfk|}~htMlj
z&KjSZxnQl{k=Dtdg>ynmQ8|OgFi*V}Tmunk^`RZrDurIRS~os|HAU1*@%d9|uahWk
zG5~mzBfkGVsmnbU>G?Yp9;Uf$s->oIR`lT)4;wLJgz)c_h{8lz!!RFTp3!0HW_q9s
z_Pjb>egh*xCv45MWMweag=K!9Se5<dK1v_45m0NFi4KHo76F>9CxlDv=_F0Ff^<Md
zUq4JejIjDCUW4^F?{KuSj(;R8XRtEfbhN5!><eWrp_}^&KgT!e)ZnoXW!DZ-PQ*dD
zbM)GtiGx^IE<Z%4RVLROMpMKYqFTqQt@r7yk$w7%9%36KIAN-`4^`)TEs^njikhWY
zY;jqc*mX4Edqa28i@&&$g2OY3EfLv%y{(uv9i0QoNEE%c4&x0;0JL_f$vR6!^B~;h
zhz_MQC;xi^aezN5a@h6jRfeS$u5<`vL+*2wb^q8VlW2r$#I_F1&xP}1t2-qGXj&MM
z#>`<M?&<NHzGqzPB&JrZsFGM~hI5K0t_X)IhLEj;MEE5zc9HMb6%1p7wZVc7E%*3?
zFE&kv)w{iF>b_mH4Z@^@K80kgj93r`<kIo|KJ}lDrzeTE&1>8IbRaRYSyb%mvyU;|
zz(<7j=44RTrSVnL^XFn08EH(b6zd!Nx<_9AT+=nHSFdN+xNw}YkI8qUACYggBBQi6
zi67AV-P@KipFEKx3ZM5@fw76=Yy&~pTMHH=1lbD<ZGSuM$Iw~u1yzsgVc<yFdBgG&
z3(6Oko;%~lsixDOy6v^v_DfJ2PFmXP6^~u~<@@*K#(7U#dN#fPFBbrlAWF6b+@)Ny
zWF(@j0NyP2YXtU*XD7XSa+R~t5Yp0**?pn+{CkNfmjOFCwUOQT{>hOixiz4LuS$6%
z9=1*O5wC5aQQaiVcZgE9ELt3BuC)5LeGZ7#$~EQq`xe$<l<M{N5irXXh7JisM~)1?
zC-ef{o*zP!7Ff2U&_yY>cce+6)_{S%dtb4<L^A_HNiD+${>)D(Me;e14p#bayF`f>
zdJ|OP&{u-Xnj~l^!)IEmmsO{{cp(No8?l7wF5xSj&$Y_3uKjsV)`#E$@(MKtg6ooB
zxf6uf;*`mg3#=|;ltVPlin@diUeA%LuZTJZ-wHvaZ&K04eB{<f00i}4GaU;lF&K)o
z5c;;jyk6bA_s_lryz2R~xWkX+V#_EB_l&*m<497W_sZ~X*s^O^TB$*(!Rg_+Ql^gB
zz$J+w!QG*`xeHInX+*a!T{Z|21mhT;yfi@@LBw5OODnlz+ha0G#VjE;LrG_zmy3R9
zBg8I$+jo$D1`Zw^Y$+H_lh_TCVFNK`18kRK8&p!Vd*%>`SAMr4<@i6umuN+96a$d(
zRR{$FYXD;t;p|y|r1%Y<yIk4lz$;PiLZ>><TDksfN-pe<?UPXY^=l$YDEQ7tWb6Bx
zF3leav~e-$F=&41>AOKBuax^+VSzE)g3F?j&1@{t@6Wy0^SdejfB$gV<pXT?y|J(T
z8V*WUqn*Fwz%|>hihum}8mQlr=QEI&_|5<S?|r~nP@k=}J#yOfIb8mvbsTcr6W99C
z3S`(FVbO{~875{`DuS#CVe}}o=bwGdchDU>M&X*GKWd`nCYk}Q`$xdGbUxB!YdITL
z9%`Vv8y7bIXUR0c!oZr?h947j8nGzV&E2~E8)KH8^h-OLy*jGK9w;~dbR8abz}dm3
z{;EFB&COb+UEIDiExXO}(JW(F=@MS@&p)^BeF8r{dzA%?MjYD6KXG`Vy=Q-x!RKZ{
zQc%T;`C_IDn8<3%)NaF!=#p1HOd}*8d`tmxJ19uj+u|#xZ)XB>u(3M@;9c>ML%Nk@
z?D+OHmfMV~q!I*YXoC48%8r=Jetv!d54dn+Y}W1D49eDeLbrcRgKsu^`xD}ymfda+
z*QJ~t_>)4<^XLz;v}sK4LMAJQ>go=;H6T@SZ0C7O;nmF+8PM9Se|WFb3D-{h7fFJ!
z5|=k?1OfMWyO$|VDfTJRuV?XC3a#+iFeK(&twFVclkJ<XF(vx82AKOu1(g>S1xy_&
zTG3bRhuXI`#Cg%Xe~=b?Cko=Y&PVR<UAof1n(Bna#L383YoE0I34fjBSRy0233AcF
zvTGFw{uEiJ|GSaMyUhyW<*&QCA;xMGK)ApAvMPOAXMjAtN6iqzDzN`)_u|6U%<Sv|
z5N{Une;cSMn2d>ulIS!0_UlL8cobT_*cCJD$iyGuumhnf4uJNaQfQuYYq)4V_!=E~
zg$s$GK$#u+WK=f(I7mU?m5(|Lw0vBcl#<Cov<-%+9-aZN;)IO$D$q}mK^Xt0-X75n
zm!zK%U*pMdJ(Pk#7+a@peR}uaz2~%SpIKtGRU+ox(7xOV)z83z>5_uhMo$I`cOmUO
zfByV4JuW1#m~9S*wnVWZ!e(JnwBk+`eWBCG)B}!|q-sm@&)mof^f^6|4Z?)Rou~_C
z*CP1nbiuvZR>V^pg@+R<QE^`$NWGwui7jUm>#?UHdJAVdfub;5$DYOo%wH^E!YR_8
zx%{x<!-a$;GChne{!JK=qx+Buoi&kb5`hmUc4yK!88m^nZ9$>O{LuMFXeO3{f;i7y
zyyKbamg$Tjg&_)qxp=msVMz+;UeGuW!aLsg&zTamk%+ol-JD&cVo`w*a|kjBJf1lI
z0%O#mb&qIIgpV&szF3N9_fyP#sSz9#XEIYbT%9^ytT!<2PB*g<G)M=qG^6tYzRZNG
z#mj)%pMzkCxjp2bwi2-hj|&|4@#Aocq!Z9YInTl>S2*lINA-8#VINbSfmAHm(m_Ro
zw<CNPP|;T6Ss+~1#cw$`c{5Imig+MYymxC8hfxbah=xt9WCg~Dc(+QS3}|cG9rK4l
z92HKQGeV%Jd>>Af5E1c)Dhd+131b8C7^uqHoZNa~Kvhjm0!gTTYdmN1HC$U^`U>E}
zs*rBtd=MvuVK8*;1Z-(e!x-=<z;(ziWnBg7=H;Rb=p09~iA%_E;&XG)=ahnuq;2V-
zGG$6(>&%$q`zf^6@#g=-<tlnJfGkqpyR|Jk>6&psZ2NOKbHtAheXOEl51wDv0a<zM
z#H&<w>>s4-ZU@YCA(&QKlBHfF0}jg_!pbAK4(&g;q&vgXRScOz-34A<Ks_O`=jo3H
zJ)r6moAm?-0x=Pe&ONx_IK-(5O2(-RAyhkULFS&5)Z0kJUSA-29kLZB2vs)Vb4RIL
z4bpXn;$SqE|0${Q3#9Uq5Hz2|%@e{XQMHJH^v<0M<%Q@frG-NbWL0WY8>a;MUoaMh
z3Aw}`tn?Ye8X8i2_(}NaS<j`j4Rif1CODwut78w(WTc(T$TI<%g{a*zxr;;mgG@>2
zd(q!M-C8{qcj|2_x$qx^G;Ibhb`nv1FJ_GeRgMb<L_D=A)Elu%hn>R5P}nkJ>x4G|
z+XQrmmI}H9w{tWICw0cQte`%GVMN9f5NhMyDCdG!g<no=^r!t0@}R?q57X7GB`bI2
z;|lQsq*<W>!-zo?(x2uHlpOCl+?l&(7PE8=^!QDX!P=-9&)ZK`xv%`wa8ioY@N((}
z2LOAe<rh?XU}9Kw*S>`|O1K4z$p+6r+*Bk=>MSEEf5}5I7ofgi?*Jtj-C3^pH&>vl
zE>?z^u+IPP3+kf*9LWw6O5v*<a2OYIoWJ9+{|gEDNS2<0#`o#lx2?o~@Wnt#W*V5K
zi0dT21H43`>f_+LK}{3DJV7A|aISt9@%z}ej$6#>mfK;z+;l#N5sBEITz&2aPPjV3
zy3)c^q_9*3Oa@DI213QK?GeP%KE)F*vaAw8k1#xh!Fmk%><j0H$U5ikt##ebEiw3M
zJsXx+SLxs%i-C$(aMrkxEB3Vz<)v+}nlQbl5IjXPkyx)h*Nat*uOGr^5cCk%Q26_f
z(;roSVl`-6OWYw`PJjt@w|!)oU%)3^1cT67aRht9#13~BF||$*ZyfB^rOOu+13e42
zBokqrXc`7;ABLMWAL<k}{j(>V+6XwU+psAq;ywrlpHKZ%woIHBPz??=lG|`z*^4b<
z(%Op&%2N`ZJAyNb*mTB!+@rWZyJ0~Kr%g%K#D`qN_?(>kYU>b1V7)UK49wRn0M>59
zAKv;L<$7ceO($;q^TOju&AJ})XAV3~<lr)b0SE3V`OKMRA%a&xjlR3h#dg-o_qqHN
ze<>sK#dly38%-rueLFB2UVG*8<HxobL$<j>ViW^pA@2d^m#7i)Seqhm<0m_XI)MAS
zX#2*ylSxp*8NC%r2tSGus<7yzC^Ea(W3$-D0y@!61Oo1B8wud!=Xqx%y^kpL#K~9G
z3KHS+1;s8SWUe5zt%>Z)dnXOR&wp);+0wPU<Fc9i2qWL7B<6qBy>WMWsHUIGGM-_A
z79q@v1OE>ow0sdeUsx1Si93Yd-06Od$e!#50ue4<e5~tklcZ5y9wj}(a%&@j6(u%f
zXxCWvXbqVK!UB#}A7J(DCo$UoSb(z3GxQFm2~CqosjwX-_LPYvpm9T9w|e~+JyDzJ
zJ9f^TVPGr*<jb@nm?SXu5{RAe`hDl~Xg!xdY+uz^Y2E-lh1KBOD3vTff3*j&N5;60
zROAY00?gQJ%o`NrO=v0|&iJl)K>yXYthjCm_BD5C+j#w=cHrF|Un0}a^wjd7V}4;D
z<-5%zgr&BEt{`j`V=XZof64$uTcM-57|?pX<^fE&d~$rz_wT`08*BNW0Dr8HtV<ju
zRy$IxZTs++Ybku>@EROw|0DL{0C~MQ1RTnkRcM;$y??&}aBNN*G<xwg)E?8A@9-8U
zaGs2`bY+(#qE^ZbnT!FcW9)&GUkPDd86?sG_mhaig!3#FR0pHb*+Z|*XV5?m$F2kF
zci?=|j$(k5E_LK{!YCCL1Fz1C`gZxv9tG4JXtk?y<WyCSw}0v)Ib8Sg0Bp(EGc>c=
zSj2>1On}ku3llT%8YE7MjjyEiiAfeD4Y+2f>I#=>Y3ZIn9O6WYaE+XKc>M`-R^Uu&
z>JfzYMiIr&;d8FBx$vyUWE%;(!}TPRaa2(apjrab`*l}($Szq04bv)dkSRy_OPw1u
zn(dFe4OIAC14GK|Z6jak;9Phqk(FDpk}QvHbOqU)aQeQ`fKf4@QkHqxA~<q&F4x71
z+=uv1BDT@{M_Y1}UQ{$F3LG-aMyN&oBUwhc>vX{*um?&3mw<Z7ZC>bI?$@MqORj&v
zC7VUnre4ORac!XrbO|}LLg=`TZ@cyExrHzk9Z+Hj{Y|vkaQjsw^KdGh6l(nVVP+Ja
z`aAcriw2pV>M?k-L;gG}zew|W@C&0KK9o0q1dmQ()F^x9#CH&FUzCSqau;A*2i04J
z0$|IwZ9)6}uyvcv)FO%zh7W{lv+?rs&O!+WzN4M{gkH;3M5O+OR6MK6p67ytw_h~}
zd|0YGTNh?n6b=#e&Wf7p3EA1+mjFSpnS*E8hd+UbC*%9_JpuPD_;_X+R@)wq$B&1Y
z=cT8+g|8%<YgSS%ojQ$US@G{FN66h9(DrRa18Q*S7LE#AxFMT?2+Z=rkYeWD+3b>1
zJAc6f;n~8_$?&RqeSQ66n^;{!xmH#)BOR;U*oidw8PWdYdygLdSN?`pK9d;P2O5Le
z3dfMEIZ0p(LKFp{fA*W5Tu#le?OXu=gE+~Cm7i&?v$XVBy=L@a&(+M9iF4=7c?T?E
z2v+>t7Ik*Uw<8T6fGsmK_L91yVi&X;xyb2IHi$KbuQD<sUY8$)%(6)=-{XLm)Nyj|
zg7es(xTS}v>TYCYaV0MxNbN~XrchDM*^h=|;LxE)0kwk1XS1}0oHW0b;$Qo_g~T33
z+NE`mZM>Cb{xK3p6_LuM!81L?YDVg@*HMJw9Xfv?8aa(fFZa8-4D|c=Ebt0_BNLDe
zUR4Bwh{ZqNu*7z$3gg+pKRxK?UzUPzEp|SqoXDn-dK-FY`BIel?l@;S&YU$%zRd69
z`SbE?wo({1DRV$Hl`pB<o=1YASEeer>ejHKb8YTr?uVX_BiskQsEk|dW)DOvKFIVY
zajL1AIz!X>F27u>aU1;X)p{*VnTI@C2*JV>XjR^C0r&YmQG4~WWv;ok4z}C=G&PM&
zU~SL9*kwfSabaVHa$P+<Fsiw}u$N}zw8@iouhjvqs5G+6bu|amdqg=h9IYIV`?wt+
zA4Ue$!KG3JMjJ-VU3=Bs@x%$29}qED=cZ-+y|Jf#ls4*>qftC-4J#D86Xj(1TCr*5
zSMRrYDzB%~xe4MdpFWhozv+~66!J7Xv8~7}s<ga3z4U!v-ju|uDk%XR?VAlFL+r9#
zGSL@36XIb18rq+r{YRKFP9p9_mK<+Nz>wCK?&l{+l6)S8nquRR&~Ux4eoVA|v5dbf
zu!ldbU9=2cwDS5T8%|pKM*<5}zLy-0(Qy!5&0Qr#?*|7f$B4Zm!-w}^;Ej}7G^PaJ
z6W9*e#~9Aw5cL?fyMH=ubpKpqT1;S}E~9p<p94f4uto{GApem_@E~A`$zQrL!u%2A
zY+)P#Zi|cF6+nwYQ@8bIsosmyb<viNZg%+rn*D^oo|%ae_jd-%hy*c6bRGOSzJ1V|
zNO@{DN5~nN0S;iqG$gVSNkYa=Z}2TO-r-bNC8o&~25Ku-^ad!$i&6puo`?{Ste?(J
z*z2=|IM^aD1lC(+hN<KVoc|%a7g&shps=*~<b0uq2jsAznG@?;=y&+J>{A@h_NWY6
z*<ar>+F=;vVJZaf1j0QyXwXKoL8v`Pg<<^!VcnJ|cI1j<B#EQJh`?Gm(!2y$0NOVi
zWDWQcScnS=zSt`O<SWbhmW-M>(ba970fASrcrBa2Ohs)f>JPzWyndYqZU{$N>_B7&
z48O*Sm>Ifrk&NdTf>G!0-PIYW@^l>Q>kr}+afNq5mTNWG02@q>C^kJcT28KuFp9u^
z{z%JPrVa15+`<%BjE{xQhVUz;+R&gv(qSCJrkFvTqU;}Y#Yg}~d^-tUb~~tk66+F?
z3gM3p;>QU>un;*jX7L9$@JQ<g059B0@!lUY&1249CCRvP<31xh6Gb4TV|Ndazq<~Q
zuP79I9*M#8$>39MV!2)7;6a*j06H0ifzExSYYThqE6W`~zn2k|iZR^tgoM!`t|Plq
zBxinCc+X7`G@X`LA*j#st_aA8z8cU3$)~=+Md_ee`Q2e*zkj!Th`B?H6ykfLYa!7A
z#-G24&675#^k+qfpUHtC?C-;%m9A<H_TO{G{-)=J1|=MbZAfX^mepAzj2!86!b*bv
z4crTn&8zHuC*cYTFTc1#1~;PNVIx`xi2yGs=@Unqusx*3FKnv&%VOcjPgZFoA=A*T
zZI7t45LOeN<$8#{m84q=^eV$*M+76C|A*>+{9sj47aGgwTQ@hN_F>sqghx-Kz965(
z^UJ==+4hBJ$2a9MsWeQN%D2*I2tM-SGN#Uz<uUdTOfLCTk)LePBjomh@1O=LLwS9i
zglybaf-WRwYYl0_(Z$7OVWoJ)I5X8P$93uiLr7Uy;!}mCXo;>b860Vz|K!L>pdKKn
zT%0Fv1)QbNV&nslc%m>1fTlE``o6r;i~|lqNGz(5&(ma=4+?%sYJ*QcKC$$-5_<tk
z06t{ekjjJ|4QDqYr<1+tIPpvNjkJ9{$P~OSo?S=1ao7b76P$G0OhzFvqqNUQ)^NLo
zo}M2}`L+V6RrJ$fEd@`c+gOZTL7PkL(so9qCxQs>Wuj|+lAn;!0j^8TMK3Q0dQ8aY
z3;8@^xt#D<rhpp7bP%vEX5L=NTv@g4(pYn>2momIYgi$Bny6<a_N=}oIVx>8`XT%f
zxL0bQmL$g?mMlg4U9B1!QoDm@iB9~W;g3T@C7hiXjmx^Z)zKUWm$e%P9LM9rCAU48
zkoZt!ro_eyl^t)pWA{)HJydt27}Q48SnI!P^V$H)SJzjQFTe+98c=PCEJXV8iD&Wg
zXFNRGN`w;R;-yRaZxMpd6x%3C{lZK`#7y8qv2_wijz8U2?bE5(zo+<JpzbQGR=`@I
zX{T56rWuE76@-ff0w1v)0<JUQ{P0Os>v~Ae%l4X{a@w-j{O!$iMa>_0Qv{ml6r^HX
z6+Syhm1P>5_Uzp&taGFzeak_3M5KpQe+G{m^fUrlVchU}=6vytnemw1AXm#8McrH|
zI8)~IuA_@gmR>-(HkDOQ?SNV(YSarB%}v&G7ya5k`(VW=IC;r01$qld`AX8suB^3~
zFWfgsPZA+}0$d#TXOwW_Y`v7tJEksOmMT_65R5B&c0l1TAU|z|U4lD$oNw3WMd^9~
z2>;5FDXo9WZ^%;5mDQA&TzQ9Hm)BjL-+?Enm!<q*D(t~d!r1C1h@PmwMvVQp{<1qS
zbEB)ZjZFda<f39;<`qI;!ic*v+ipXK6+_O>a>nPEj&60%b0_QBJz`F3bE+s`Y<=_Z
z<0jYw9O=0W_0BMeS-zq})fSz=_H3hQ{kx;p6~>HdEA~f#^%0ZQyM!P+5WoT8AkLwQ
zZ86JV0kZjunS(Fv<P%h2-iv?gcIeo#s=fZG-Dl=#tq>yP7f%ccQE;go@W(AYG15-<
z%oQ;R=O7i*t#;^(TKKQI<ou+UqSYg%xXj(PlwdDp2QfckFu@HWvWU-hrobDl4+L1O
zyM?EE_-OlVo@fEfF+~=^zN_mc?_De`zl|GMG53DJpxevxV;(=Y{yU_gPWQiGO=D5(
zBB{lFa1wXVzdkP8pSfQgKj`3Zk_r@Vrx9cOY6F{be5~JRXX{U`p78HOfnjK}DyvBE
zD#6AdrCQ8SwxWXE?2Oo9MorzcAAOhBy1)Nb{M_n4ZKnPUa9!SiQ85#fLJns_-}@@S
zJuc)(W8%#;1{c2u^$|aPaph|bOEXnkune`4pmg9m%OetQ$t67fDzoIQ+OgFC)b=M`
z#gPRlawHuI)P*{p27B#HmI=;XR8#&s*7gvLL@!^=s>Is2xeI@_DE=SLc^oi+8(TU4
z^PU5bP2}j2#+*8aJ7XNnXkp)oM=HGXJ=I^A8k6uBQiA;FGoJkC`{bGW+i3RYB#$0H
zz7v$nuw{jBMJB(!zif@*l0Bn}{r~>-H`aR{2i8^+Y;}<GS*O<xJ*E5#X@)N(rb;Fz
zrT@NNPVDakt@}_$tGA;#4MIdDZ*WugeC1v0Ju$r=F}Cr5Aqy*jNZUvdwJ~_Gag_}p
z`;#zlZOzo_+q;Ns|G6OIk^Tyw;jz;3|MH{N+b#Ysgbw0NL~|cl$m9B-zmO4DptUTu
z1ivCcnu;n>T#>!UB(2knSMLg1k#XdxxKyM49*RH5n9&*dvieSeWK=_6Je0V7m6Lm@
zEc(x5O*keD$sBt35Fw44X28cB6qZd0=xv<8<p&dn&oZM`BEAoypU*Z`w})vgIIuC@
zN?}rD?3mN~%lOAh)d2@M7eGonTcfzgVoCMl2&rrmyTI&?jUzU8Kp9aZ)mwb!ldk;_
zScbd?^6Mo~+sjZd2bpS^-IZn7cN-^q;}O%$^xXYgw}>s?zT!i2@O*&qfj#PDd4JE7
zl6HJF)`0{wV9?HGGeX5NYdt3)S)9R5UIWd01znY}0&2zKXB3%WEYy)M@h@m^LV_cF
zoaqXWJ%0Q+c0pr~A)qBxPV4uqZp``;ISx@(Pdvm6in-J*ao16b`1cp^TN?Cq`7pHq
zGa-3IUhqBgUoJq32z@y9zSYb-ueEGhBK7paXjHO;=*WyWwtmD6Z;vI*QddzkibBel
zj?jg|@q2)|xe$OHxsRP(PGg*G>$lO+_u%)yr#S(hCK)w%?r<hfnVOGs#THEZh~$@3
z-wpfE7w<o^-SzaVvaLRUdScoH*X5u!=}&C>c1j%O`!a)K-~$DTnz4Ts%*PGp=Ii_|
z{`Wie|KD=2Lq~UDx@SxYCmm@%d`bGcJQ&Id>a>LWAphGQk5fL3b4@+1u=Q`CYI53y
z${DSvY2Rqr8kDqR>G{#;dZUzPih+NE%C&7QW+U^8<q;B=<s<>mYR|C{R!sHSSy)@M
zKdAo8iIG}UTQ|e>UI*Dd0bJ;FX{pgD<pD3Wm(^5OK4lgCKA*E8+h{FB=9I*NwKC@g
zf8QRlQ~O*%z&N1>ERUu!oKIh~{ECR`;&b^M{by^k?gSj^sI=qx{cVa)hx{Qm<HhB(
zx;w3UsI2l^RFVKb6C=w0XUfwMP)-yjjcg#*N+et_oJqUUA|=FrJWQqNK-QriZ6g6Q
zdM@-18_~G(YcmGej=#|rRcj}RRK=S~)(UGM+<tfef)XD=j34SNMoX^1A`k^D;d|A_
zRwE7MVA~gyl5y5!ia%Q5)<VB4^u(+02XDiMPY`O9OxO}a`6Hh(=s&l(=n3n%#M{>m
z89vvhzW_HjQxq$h#Kx#cU7{SKgv6(Bgyb`Mih&&jX|ETxt;a?D1Y5bK|Bt=@j_Y~<
z|M>Bjvz)^*A~I4(%E-tjQby4*qB0{RGpl5$I>u2}T8I`xq9`+xnaavaB&$+nq@tzq
zyWU?oyx;HN<@eX`a`|2^-^=Iq#~JnNIUeKwxZQ8}+x>n|K3Im(_W9elr~>{}xRaYM
zV%DjT^V9OHqnGB7Tye9c>cTT$l?K_vGe_Ss9i<hx#@M3ase7kw+C{X@Yj$8>{nZ(!
zceS;{{%C1pcJQSB`_xS96UQ55Hppz;$fxd|4%wy?2hMsQ@Jw@C<#i8>;2T3{{FCO;
z(cxW5x0P<^LkiNCy)AjVKKuRI{NX;hQ@xRl3?<^8_NYpsNVN&Mc2M)+;lo2w#1-DR
z8lhv>^XalIYisK;j@UQ$)rX?a=prv{SJ)%X*7x4<zVm|K)=^kC%(K#8Y=hCb1!uRh
zBGIU-OU)L}xBEQ$yiRRW((u0TvZpLkC=_qD5)`n^e@AVl0E6XDKK7UE^t!?JiAfzj
zA+<an5OkBc#>R@X&ni2C3YJCY*XFMl?=#$HHO6L4b!644^OYT|KiO5=WFNcLr~USc
zOUB7pxcxM4kAf`u>B{_x*?6A0=?+ICKdquP+7r@Px}Y_h;bXtP#gZg$y^B(x<DWHG
zgr3QB(Erp5m?W>?4Wz1_jFT3U8@zIUP(|dYcMIJ5mSij%;ZskuX9;`f0BGh!yq-dF
zVS9k`J^FpRZ$$y<35MmzUamK)nBrRb#x5-{cyZ;D#ys}e?RhJ?yr#>C0dP-#AP*fg
zsD&N)wfkA*Cr;+F7LUD&I-3(PGuX_B;%~Zo=RS^N^V>MA{7G?tZTY0(6H}L-|NJCl
zd2W!I4^M4SbfepAAXDUf{mB>Hk*@Dgax1?V;&h=#&HH)5GJDUiA3Ri^py%qXSzVfF
z5}y}wC?Y$3A)Vq55REXQ9L9pHUYd4?xV|DZtd^pC{WihNrj8uiv3>jN<e?tB-s$Y&
zW0jmD+lWG?rMvPPmTJw+8QipqOD7KJg|+OKJescm=J2sO^UgP)f4XIxAm_V%9@k?q
zn~maa+0w&dNROd=(@rKL7qT+{+^Gk}D_{DLiFvZ*@pN$58+#*#d)^$=m-oF6lXKAb
z-Ek}E-T>`K&i95<m)jfaJ?)ySh_!C@%@5>E&@THhWf4V2W<v%>zOBjlS09jP|6SAV
z*lQ*{sHVoU(9y*!%3mM2M+7P}Cu5pdzn;`%i|{|k3xsy+e#I$oh@tDTaUy9U@wNSe
zo|Pr%tApU5b5EpAvWS`gG^3W{=*ebNc~Q=Yn~lcUj?CuCdm(0Vi+sEIMwi6woLvis
z$Glg5v8VEj%8|c4pk|}x&oBH<+aBl0x1S2uKc2Ya^*((ZVu$Ih6h*|SQNJphZ6e$`
zgIK9ae9^7Gi;`Ndzh7$j`Tf}iBi-lG&<9S$Kl0SmGgnJ$C~!a*Lc8aN@7*#!G7xin
zZ%^QvM>BS%-f?!wK?HK$_4B(i*(~C|+b6A<y*a<z)GHoD0}dy#O!A#D>}jQjtb-oF
z=DDYyED0GqykF__HQi|Rv0}pT$|Tz62F*M5q$eD|sSg}Rj}(KVq1UcocW@3tWc;%E
zv(mxdkf=cpN6wubT%u5fw_Eu>cBaOPSG!XU^9idE_t@FW%OGYF8}bA|?<J39QTSq2
zZ@u`^slv<dUFq`SV$IjMyiDWv?91zK_N%Ta8b`xz2WL&j!*E<>m7W!Ru1iIoPMFRV
zu)Tw`7wNQTuQeY}7W&*@ZTMQeB_`RQOQ^+?efFAVJBeYnW$As258dff+E;zq^S@2v
z3$L{|Dj3!vwF|GS+znDU&GJ`8UgXVQ&kUYb<n%h^QY_negh7Gvd!BWLo#ikecI-@I
zP$pGqI)VYB@mEV;L+Lrj6<lpTW_f>IMgLVr=kiw_F_&Vs^Uu8AZ-5oh&kNt1w`xES
zGs47UZp6|u;!h2O(^pHHbel1BBp0>l6l+W$H^t-@g{^HAp#x&ypLyeyckn>t<!FNR
zD?i?Iuzv@~a{xX+poha~pD?Hps*#$aPncuBidPQT!=ns<H*U0G_{2}UE$bw}%pJqR
zPKWt2^J%rEw-yomm762oxN6RsH&GToR3?3i8e~EJmsAnC{>HOSa8la&s!!_9w+EEH
z9^sb$SM`!{XPjqCr5OWvvESS<>1y)@wyoYUcklEIlUi+bd9h9{2jh0c`$P@JoXZG!
zNm6~hpOAmkuJ)$!)s^|ZJf`L)QiiDS`HGi%zAmK`AG5u-v6&+WKX83_BJD0zNCiVV
zyzs^491W(w*|_Gc;~slukGB1BADgkBed!=d6eK3yp}Hd1D5dGlz>(R9j>PvdD!=0u
zajp{salaRhf?NrbKm1FK*&Q!eKZmH;{YmxueYBLS-tQLAys^VOXz5dZu07O8eQAbc
z8FM`0-C|zgu~AilmotoDRATrxFEuk{%N4fEUaU)<Bt@(r@zzC!*Y(<%#TWV?v4_^5
z%_E&i`%Mu(Ol)s_dFqj#Nf?W&{OT$_PW@{bfDmn@xkF?RG#mH%O2ZL1j<{96(bjA{
znV_7~OeUrC)Q6kuFzpv(=_P&-&qphSjZ^k0#dUOKkN-G?!l-i{K+y#@-Juimx|S<x
zlpF%TG~>mkb!I-;-I+X7yY}r5JvalOa1CE5L|YzH%)}9wm+e!7)fnA-@CybNA1<32
zR;-+hkoVD?Ly-|Dav(FD-pA%PF5{$}x25m<({m#KP+Zt~_QR#x-RzULYANSE)1wt%
zB`YFm;?gHQG@sO3^)@<j29_vwd_!jLZjX#a-5LtJ@z2U1oN`iHIMy)7*6<S#;$H39
zxMB4ipG^d;WVtKyVsQ><;AWY)W_q@9x;Lzsjl)ge{XpCB*2##%BWZ$sbc-0pgf&C(
z`28qmIL6`Jsi!LrU3)y10#n;qO((}Y{G_nlx#*Vufop4q5LVxc!f3R^O+5NWzort1
zwnrzPI=&tccS5<WOb=}{-QHoG5A1H#r}0PP3eBTVXKv6cAq>o6F!{vHUwE`R&$xe(
zSk@%yw`(lzv^kNuDA{pEx7rJJ81X6SXNAIHCWi8Qmqc}|Y;4WT<TfF;Z$1s))WrMO
z+KpA0lNe?4M`MNiVrejIV;&~UBr2}(+KEZ|QD@&@BXF`Y1I@VZvxXe0N8h(S_>-c}
zT|p7-+{h$e(?Mg^$2%v+J8(#hi?KKJ31f>l?Ym^|<{Q8BjQ8Wc&bORGP@yS7n(>i6
z95b&Vi9MDC$s(p9qF*b8Vjp29=bhbW`)Gs9Zs_L*9vl6J{Gh&L>{c!IuGjbN(YLX=
z!9BXlH}&72&WZt2G?tpy%Q;9aCe0+qWTVkDjfil)UA%7iAoB=C|1~`*)r7_%E=eS4
z%Qq)#tn6?q!^y&XM4#7TZ;#&_-lMCS>!b54p4T)o1&?o(Mrk-w=fiq%<epQWIarjN
z?G6Nvn$}HbkAdzpGidQ>Zz|sV^v#bumc3YJ5=)|EMwQk;I&j^8xJjY#+mFTwX0Cl9
zU-HGJ-WGQY*;5c~nA)SuIkKj<0k3XPo`>meN@;m-qe;CdHaygLLa+2$dry>SVqFyB
z6Ex4qzROy7uSY?_)Hm>9R`~tO=Qu+niG3JX6T)(CBl$ytg_>0#)@zl}rBiZV?li5T
zXnS+g%6I<xt|e!crwFJZ`f3^y@V^kY=oQxO`*y3<h<+yq%Q_0}t{kujP$y`C;+1O&
z>BECp=@S;5>)~ZsKFb>w^j1!sxT{~*ogGB>BF<v9<wz|9DDBy7B5ZXA!o2t-K@`OZ
z<C=x2u+wA)%xj1cKejyYP}-|>Sj0fKfeBTPY)H-+l_f)ahM@}sGMf1?nETwSs~lY3
zfvb1OCQ8!i2_mvA@w2Ys{#zsqSdfT!?u`K7_H2noM<%f5khqM^?szIA=Gx|3j9vfB
zi;{J=tM)n-3H-{%kT#pxi&z3enciljCQS-Pm+&B6IZ;I6u$mU$L%!?=m-mZ7Ro8q+
z7>>&(<s=Nw^n`NR$$9Tuk)^3t2CP~orZVN+dz75FDEPG@PH=+z&vnE78F$6lMat1!
z`ti<?+&6aBE4=m2yxJ2-y}gj-H~Dr~G%vbob5Fnc=R{8yw8HYUKxX0ys%60|-zQ@X
zs{_&u3a&JaeZ7Cz2A6B?4uo-{D!;q0taOm^(-m(b#olwZJtiBw(#KHCts>u;HT4vq
z_AZRJR>_+*J*3xs1B&pN^Xt3XnpHu)k;{z_B0Tu@+*$_TVH5A{iYlWUJ7q+_YL@pk
z6Saxf*>dv0uewCuk_~*gIf9;pPKzG1FMaVXUGvHgJ+0tmIY#M=Jr7tAq20wKfoE*8
zA(65fma6+jn3212Ou0#XwvR<jRr#B=JmrWpq_NLe*WLir`!Qo#*5;5ERp2e3$Merd
zCbbE1iCKS>F}&Z9F}$F5sn_|kn=bh)pS3U4b1m2i>H4N&3i|zJQZ*x+^|EhdE4Rjc
z|AN{8kgwAIr|js`s#nIs%WZ;JCbn2=&p~OT(Rp%zX;b#N)lZ6}jYn5j>vKfO*ccVW
z^?JIj6$(H{Z)EEM6r*(s!fN%OJ)90qbI-mzX+i?%!p6iW)0Z=%0;0V6i!92qILQ|k
z7jo}i1<Z9Gy{Z=F5wG7n?^d09E1=)XB~d8awcK+1K1((PD&Lx+G}m?zUlAD@OD_JZ
zmc6E)VYt&R)?POp9WA$)?d=Xa?PcSCy3V1tgB2K?gw>v)u{_&5^%e=)vz}6ALfZ_=
z5`1<_E*RP!Xy@7~Hrq!FCb}2C;-fjaPn@oI4Cpy;yf?ChS4x-klLxlu!@4^l^gzd}
zO-<slo`n~Fu4k>E%Q11Cr}ou;6M1TqYw@v=$a}Ja-P2DoUto|fCNOD}`~$VeOj<r&
z7s&{jJmKBvr8@`RWRPA9oZH;%>FFd*x1^+Jw1c-@`ed<5)x~<QTRG&994k{O+CEVk
zqV7$EP<1&>OMsD^t2dFJKu)#BUoD{~sN#9;m#b@cG9^c3gUc=b+%US{n{}nGaK_@a
zi3usLANOj$bg=uJ-Uo|<VO%ASv;VHgRG-_05UHP8A*azyj)R00hzU7umjtEAB=&qf
z_ZaG_^GU>Xu4BDyvlpfG>(zerVN)L>4%*<0Nx4evBP$7$Z5Ffe#U)7O<E4*S!@+J<
zMIk2fzyX7~bup5`?G9Ch10g^B+GWb6wSmiX0!-px{L{SfvSw9h{I=_uQ-AH*(Dw{f
zOmgd8_fvO>DeAZq)KK{8h}*ek?x_IS9d?y@W5j*xMo=&_j@l6RDg8<gAL@e1zQ~Ri
zuqpe-%xB)oN3F%{KzSbcbKTydy%$i|B$nsNn=@3QFn0#h<bZXD`uJ_%o(m8d219ob
z(-v3qbfuY(03UG*M$Y<`hj(pT4PGw4cShqUMQH1HG1oiAzT7sU@WF%yI%OaJxxcw*
zdRqa%8yCr(!qBItdhqZU`W)q3GcexEfm}Y?^j0>7@$5>OV))puW=;>MthZU-T#Z#b
zf%EPdZ=GGwt#pu&JsjMlg_rAe!{~6N8kyZi&!2(idNg@WojfON9-q>CB^8-!=aX1~
zR^!IWA(9PEkjx&m4P1ntV&<-SCl8)&$$Bg`ehSidY54?}pzQt9^Aob+up9LXas712
z?q+ShxaU`8ca=7vB>MdL;uA-vQ$EZr!ga`Pup(Han;ePPRTy94cx8zk2wtIUmU_Ox
zCwr$uRPyWtL8HfH)leMWM&Qbiq^HwKhpK{>@@_BLis6Uu$i@HMoVP-D#==*-*U!j5
zSJJ64qE~BaxuwL2@!BV`%Ylm@j5C?^sqbp6dE4-x6y5uCzu1p=EjGsGJzEBh88lq~
zrQew*wH5Ajq@#=od9!UadoJa$x}Q3h+ql$K?gj@inc(BXN4??;HmfhbKXP$*S^Ac0
z@`Px-t;-I>wut}IV%RT={)=%^Ch32?J!s5l7lPF7D4Dv(lbsR;qMlCN>(Hty-;fGz
z;C_VsTru{Gd4167>|39H#Siyhn|a94MnFfY(<}lyV*GSNf|jJu7D7UKhhgFc`q$hh
zim00E3;VYiF1Hn*34&C&keS_%eR=SLb4cN$p?ryVNv*s(Z0YrI@|w5!rHgylkrx;<
zx^l~3W?TB?h4<O{i^6@UtajaB|G^lZu6v*cOOv%cQ#rgRAJ2dD#eQY1Slo||G;a=j
z%P}L&%(qXV%y+m2{iSTUb(x*ELSgp{0>JCy{VQpfH_MuZo{WQm(0{SEVGO>kb~4t$
z7eDOGwa0#G663mux;d^m-NDR9x%$g)E{M4^xOr;n4aMPeApXXQtiN$Bh68#p>|9v$
zH}3f5^Jz59c?@vUo~qLcGlku8E%XiXJAMlWdJ$x{nmEL@BIMha!<5VB>t8BLI|%c(
z1b0b`JQgETfeM@184>shq;$W@)1}W=L8gZ^lT(^QWfO?!+h2yKp+oQ!ItpdtFdv~H
z^k0Yhjv6<vEH*6)lp`z`=Tx9J{piL;!9e3Wr{>*|zyB~@h_J7p{^!yd@=eWpL?qQS
zES=nmM@TuxE_GavIoaUydf)c_@Iy+_!%RLBwEy*U`!BJ1QisBuY>7br?Uq*tvw8zj
z$3_<jx@^eQ$W%E%@YU_lozeLAmkPxLV^X`E;6m*W1TDE%Q`2QDMXX=0Z8$s$TqVHv
zWrnyd@&kaUk2Z?88+vYK*GEh|%UK{4POxkFYq2B<1#Y$8HP@%bl7}q`AedryEP|Jk
zFJA^F>&>g>uobSCzc~`ZHVI>}UL(z3lHr)>lO~JCz1*0p#$P|~zwL#Pg?}3g74EAo
zBhVE&?Vo7OuPql)uzy6zq-;>8)`a=7FXz0WaZcOqcCO1I7()aFG%Uf*pH2eNcHFq>
zdpGwi&uB`RXD7}y^ZdT-MiHoEJJxhM3u5-8n3uUx!uBdY4cq(U;FuR=X;$|Zw#=J)
zsM~Tw+~Sis5^V9%MrIGH*RMNRtYXd^7;1YE%?%=rh9^RIYQu0PG4#jy!(6<J${UXe
znC~E`&~-i}4v)8)+|YLUobkEAUvBH&>xbD46>f!bN)fn0V0Q+@rEHeMhts@t%!c=V
zv6j}%-Oc1A6Dv7x-e!0WMo6O!2FAwaBt)t`3D_X1iAY0=01K^vl6C@(wKccdo&OZM
z;N`&s!Pov_(WdW|6Bt3?r0ik6o^(%CUo>>d<9VkL%k;!TmgO2%2guCH*Fzvp=&pHq
za5VuEw%(brAJ*=gd&F@lht!ExG~Op0NA?D6{4tcc2JlY_%LS$g(0iGVR3caGPpt@9
zN_bC;3X|K=T<vi0{M&=--TYO}b}N~92Exyg?B10v_$S$#Om5knZW9;X>|vsRQg|#V
ze0YhXgXb@kiW#tL{+V`InF*iWlpEA?eY4b0@{nIXM|+a;6C?+95*flblt_B-mOi=y
zjK-XukE6u)nYqD*U6Ac(HT>Wx%Suzw+^s%u4hJrMy4)tp4HP!I?^4!cLIDX|hR1{l
z+?LkuR_|83=Efw?48{#&@%RJhzJ2OEK#Ow^)S#WrYs3gAZHC+L1Q{K*#FeoXE<Bqm
z3Wn>MnB4b^=v6TDddE{keW;b$7JT`54vti}1HGS;zh&{+M6MfJLm1t!pU{ix&@N6C
zmOfHk#?Jcexu7d)wlgR``%+7D(Ty$+$5WW$9p{SE4<-4w88PWyAVg2&L_y%qB9+Uo
zj)W4ved?tD(I#*!$Yy^MzVV{E`q^7Y7)VX$1V=1{Sk=P?hH_FmR$QvBceuDnpkpFF
znYnnJEdOjAB)crm10J;HxFb=@F;QOKJue+_VOUU_Mb3qldM}{rwZ|ikQaBSPs-I_<
z9IA9d^%qO!_ae9I5;rr$4p#_B_n<z*Esd3Lz1cZAIB`itje-Ynj+-Wi&;6efKbQ->
z&CJsQsR*$=cvbPE6XSDbZs&v`iqjQiD)SGXQw`CZaI%9q<wQN5U>|4r4(pk`G`=VZ
zPN4%u{_PG`ijfR8wERBM&n>25OA-nOH=pN+tSd6L4-2>AN(wzT{qU~-0@E#UB}Xrp
z$LsX;aJe_-Zo8d_%>(bB%0_i}3!*W4bT=7_{u8Z!yzpM4#tA^&&E0_1&7SQA>59Kr
z*Wkki>(Qfg2)(8}t13PP{Bui&?J2rgQ<H$iyu&ktm(M`P6v&95znUu-c29p0{^N)*
zo(@ja+oINC>{iJ7gQH8xMzJ6`vWSJABV*i6XzOM@bfpudK0M5!)TVNs(33x$D<Aen
zr%hUElZ<w~w9k|CWL-DyKFbnf#nPpi_nN_}|Hc^r&WZmAUg5Wo%j~yM#E+(K?6|>z
z5CN^s?SoRH@x&V?3L`80{;iqvW%s-v*7I`<X$JNh;>6p|r655(*svbD?b{zi)}k9C
zbOCOjL)_K&N8(1Q_aZZ)1)9>?%ELdr-Vf(->8LUY)clG>w~8U&q+JCy9AVG}jZpQC
zH_$F8Y@P3z2xS2NI+312C5x@FKsib)y?D~9PpN-u8pb8zUQTG%!>O;(P>MP!N|Yo2
zDWAg@o4hrAzG(rda-WP-9zao*ew0$NU}H-pE|>7pjR7@V_z~tgK-B{w&v<YjptQYU
zb_kj=E7#;jOj`cZAGfAE%ufpEQUFrVFb=-goE|s;=Oij1-(7_L$pML(`UpD#%kuF|
zd8%@u4sQ4T;P|jlj4(}t`VCQcG-l&OYbR3;!6|EVuhA>t$tnJKO^u|V>lu6q$n8Pw
zm4k8`A^%D5`YA8fse8m5`HwH3&`xus6B;XT4zD^L7q%>;sJh6gx|=*J0T2A+?Yc&f
z37m<$q`u_g6iCXOGo$ViHwpw22;aYZy~g;+XUdD_`TTgqJwJyW)nV~O!5+fKyxQw^
ztNDUBZ%V!7kaUwGHk}B}%tMhUuWg$!KLA~@{l<<bOYbkHE9_3*azAXC3@Sds4$c;x
zBj>ADOd`@V_vppnW|QM8pkIPelq*S1uTri}%LP9y?fyOponLyi+7e#ehdC2+{ut&b
z?E(%E;Lxqdk7J=6ky*=rSY*ndwEfY1Du1H$!|qo8Ak_YceWCn`-_Y-7OZfwLpC6`B
z`4h{op!EOvnD767)GB|`Kl%S2MmZ4wH!@!q%KxpIFXQlkyXng~DE?n*XC54q6Dt02
zdGWhlpb?w0xy0rkaX3AARgR;SBYs8U2z-8Zr=*rW`Ur{t?Q`M4NRU@Jgm$5+IFB!n
zL73-=C);e|d5HLmvJ|&Yg#awuy+z+oK^*OEgN5TzR7)gvJLoJlD)HMj<=>^YV&OlD
z@0Yhi{Mc_F_mq7YZOeL)vd4P|!}|(GOncG&+wbMyA%bB;H68+qVzRdMZCnP|nuMG%
zZ=u!?Uvp16IcXyC$Nmx^0VBQa`>brZk3CpgV$Zw4H_;D@C6-Q1-OIkJqHJ8;GDoU-
z1<9!yvZ^>)!tM^A|D_AKwB4V=+gXlKhps5g>2-cwHW|qxkm(Vhf<|K-VR)d3b25J4
zPJ*U0LFb~oVN}<P=dNFt?OTM0npXOhi(SYg$g_h;sdZT{$rznxZ-(#Qce)sNHFBTX
zx4~4ZQNo9Gq8&iyGJ=j0baI&cj;PYh(^*@t6TGRED1ueW1Y`rkA5Is^6rgA9w9kYN
z6(Qo$OBB=JE$U2O1Yywjpuvc=PPnAS|9o?c#;(Jq>EG`z46@7T$Im(yhL7AU+%e&E
zQAt(hx>X%WLi(J7ySz(0+E~V2SX0vf&y|(|mtu&b=i<K}_7+#by~imQheRB|PkZUm
zFH_E?M~xo6O<UY<e+#{H$I~6ew~r;Dv@rvWV!(U^pvx2r<8s};9eAc&fFrqEW}LXe
zrCDAnkSY=V<ozsnN(30lf8<RU{#W@i6pylhKT%@5+%auSyFzHwLc~B(pH={dZJx&6
z#lbWvf3^3~l=Uq}_dSLGAUC0y_{Nk;M4}{$<8aQ1YaPw$3Ef8`RUfk$oO0dj%}U(P
zZ!Dh)EV@4k&v+=Fh_5!9v>UwIgB6j&I|Jj|IuRU+;jP?qdJwXkMEQ}?*=X_RM3#t;
z_aH+!9U`BN$|Nei*UNDH`i9?T-K7s$#(hP&fLik9ypJ$-NUfJfKG=x|?-+OSx8~W0
zkKHQIaF7NQ)2oRyb%j0|tMtR%?+TC<b-{+XIkQjfKZmO&<hWD%>;o^Kuc<d&JWu$x
zTw=!fS{Xk4{>X#kZ-ihoL*>2aptljm+gF=h_++8lPmG@_uDm14yJLj%qV6mPQMcWK
zi&Vsv97(O>t@_WFs5iT!(Q+zz#&Tt(LSix?=&uW5$$R#p1i%duyA8!zbt4AZjS#vz
zA$LSm^PI3t(-Ca<I3wdPpAQMb_F0a=$DU#HbVd2DXBDmW;yw&aeuF6ZNN))rrj?%Y
z3i-@<ZjbB5UmRUBoRGN7I|sY=g-j}B{J2&QdgEfWhqPF1E$kLvZ*Dglxdtu0ix5EQ
zXxSl~-(oG49~VdE<W7T489^A%SDO$^5)_MNVY5R|=Z+8Z$;*9mycS=*ABe<Hf|n+Y
z_yO@Z9weoUn>imQN$b??d#%y8-jr}4RA?_Tq7vhQ$WzVD06U9H>VNMFE0;tpZ=;K_
z1Biu=To#JkeX-!~B-YA!iR9X&5l9_hgs{aS3a&y6%AuVEwuv?c3Oy~k!NSW*XnHxm
zg2YiWGf?HUMhath=*0KY-6Nx$5+q9o*L$M@ab=&V1q8Dl4TymEh<~4z>-ur<7#?Br
zleUNsm2y!pw~AJTs#YN{!6n(4#V}-`F~CK<*CzNe{)qe^w7s6;S)!#8|8qMMa=Wv*
zI~Izgo<Shc!KJeCgt;Tt#~cVdlh=ovT{v?GQO;XrW+o)!E<=ZM9C=Al-&5C?)*7O@
z${8Q@LqM8@G{1<Vcvt_AmEWxOhXld?w-tddg~>vgde<b*K%~CMnUjd+5*+FCTSW*f
z^3Gxuq8+z1hl_?gnpfw5Sj0JZBNkXm|Iu#5#UMrQ4AG4AAp`jA;Ivg0aS%_lB8z1U
z%O_sx-!yao^k9M>wxB~Hn#>}^u=6)ZJ)wWXhAbV6ZT1zV1tBYMVkNt>(zOWD_Y>xI
z%2fV7bpKld1Ns#oE^owrSDQ(kN#{rr=fUV?PLgqZ-=Lx&uVaL4RVQBp4vK28bA7!E
zV>(qQy50QqdQ$xFv0A_XuC4QI=zx9o+WliXfA<XgwxgPDoY6Mi<BuBGwAxN?rfaU<
z^3F*0w%h-jb@A7Z+kKnvjoGm}Nh_w=&zCEzN-N@w>i%`>TEA`v8o3Ky>`FenKFL3z
zQ7`dgY|bC-=Tv(+Ykf`=^vNP*Ile0u2VzWfd8%fd&}KQ%P<n>w6@LznB@8>2-I8p8
zrJlN92J+fn7E3D(gqD`9d4j29qC=vw4pf>RyjeQmn)De1!Ay;skzLt|@ef0k@5rB8
z58FntK$rT(n<P@x^~ktm`;&4FA745{oT&G^<M%S{s>{<1OB$=HUcv3pf;ku(b%MM{
zLO?O2v}JnC521E(ggI<oM2uxBsn-cBuFiZs#!EkE$JC(8x0O1x9lsrb5v?u2BmSmH
zs55VLOX*M?D<{+KUNLN?vySZTL^)|CT|i_!qA(;!Wg3#Ip0P*Bz@mGY82`Zm*~%Nw
z=incS7RbYcFAdqPX>Ow$61>^t;hDt_(YIWSt4Lj+8uah2J1K8{W9DP)jakV2w{Qlw
zE~4&nCWq}t4hR$aC}gtlH^AoVFFz0QRdB$lvYpttQ8UGAo9BZWHdF6Zy9jn&6=T)5
zu#AYJ&Jh&EE$A_C(&rS}Da+6l`^GZ*CRK!6m7mZ#$7J^>i{QEws*b54)O6cGIJ!49
z!qN)~_mDQ5P`DrqUT~>s^tz9f)4l5wEZty2X|1%Rr@SMoCAG4-M3H>b=yV><ylMq~
z=A@BdCTBq8YPq%kdPmC>HWq!^-MjOSMea-JfrV)hB6`y-1dVb~T;*iX1ip9><CMl&
z!u8#OGYJQ{dWMLB_6s4RYVcb<4Rt6LFAopVLCJ(@1&O%3_DymN@35Bi3`(+nM>O6!
zg4myyay7~mMD&rtULTG*QJrHc$F1&q2|__a#*aNUe<C$x+K@puI&6_FuPh6@@=-1@
zNh&IisHqd+yIOFVgshx_yh?)R_J#=a_F&`peU@mW@)NP?#&JO=d@P+wscCn7M>$$c
zLn^zKt;>bP9T~2_7=dUPf>b{TBO-I5#*A*j=TC3c$VAd}o%Q8!Nq>l8Zj_fvrsuVu
zNCWMwc&81{?}4V9cm?eu6f&8ddtMa49$4}+H#bpW{J`r+u`eFH*KWV$uaLq$;>uUn
zy1$MUo3Dw!lYMkbYUG4oP<oBfundbD7SL6PpqwhZMslzRGkL--IugCq_@MsvsocMk
zEbiv7Y8sUe2waxwnP8ZP!5<5H?hd~gdlGC)i=L5U)uTyMCVSbUa1y&gnqb}Gn_ZLt
z-Q+D&?|ubT3)|8=*apz3qoqZ9zD@Qbie<<UH$ix}`;A>y;r8<%-U2YC^p-r5^!&<%
zz<-<@3}C+^+w(L6Uah`;&nCrwd)Ptizdf$%C*qTo$FtjW3_#_DoMZc|x#Zga*|e)R
zs;vgpU)Tg%(K7@ViaAn;2c(yKR)c<s0hFKK&SSrl(7ms~13nz3`}G%=a|337I}X17
zD6}y8>)d_)fueu(xbGCU@`s@hJA5Z0l|QkZD>m=PPurfdTz~wi?)v&h|Nd~p&94*t
z?@tnD{5M%PRkrz$pZ|ND@1x=V|Iq08-6bd{>-F{#Ds8B}X^Qf|{8lmgo<P#E`SgGE
z!z$W$ocP^C`k?Q&13z!7XH;=CDW&x7BX+C*wDHQfY1{n!`UzF1Tw*_J1_dqo^UE)L
z{qV~`1CH!yJeuRvl)vmBd-VGPnI2ArcO=KMhey)&>l=Bt1A(HO<2?Vio%rvzgD@JK
zIi7Ti7PuDe!e#0;YUmeF{^j2B>Hn_d&<GKPDvbdrmt@0=Y)0h&PGyI2iW86-HR9;l
zK&76moO*k>q$AlIR}cWTkgX~q=j$_-7IopQAJ*~o!#rje3WGG^`o_i*OGn{U)|<fT
z^|#&V9MXb3HZNfBRk8<4R;CcWkiIwtMIqG&VhCn@#TqIqKWtz3h*_w9<^I}5z>4c{
zA5m_{qjsm$e{m`l$JUMr8BYZu0_uN>H~o-Y(17X6p;3I_sFro9=R6GvkX(U_+d~5V
zU6&UlBf2~=r4Q%DRAk%HSUPgm7F9q+Y(y(+jBea#rTFg&s20b!R-SYUg~|_emI1PC
zgTiLl4Us6Ts;c_s1rQ_IjBcULBB@V<?$Z&_nh5*QjOtn&38Ez8-ZhZWyV5c*C1hK0
z*Fw)f?+aJ+-0FwR2ii}co&a3)m8j@Of#v&F<N#lM(@3~4K#LH4TPts-AS|H4_8X`R
zJ;{UK{{QV#>Jx#ojtD)qi&7Bb$tZaSgSIOVk@jUXW@4iuhyZJ(1Ula}Ls{Tu?@B0p
z8cwuMxr=fvOFR59n7623=NspWuQrv)wa$uL)GxD}6_1{8qx1V?$}<nel;xfjr3rRV
z`F3b>rI%7Hnlg)N_L41&C(tIr^%kVjwm6daR^Zj2G0l|>m|0c4-pIEpN)Oom+;>Cm
zzUKL{c@f0YJtYeIxhct;rjsN{>>V)f_=0MEIs8$HCR6aFe5zYd<-@=I!5pjqav;#j
z+?LTuHsG``#ZBJ$X;aEmH`bSGnJt<4;`V-C_2mro^ZRbvdz-R#1#76NL=zyAB>CuD
zv}|p21cW;N@UaOL<Ik7;JUoc7@8`&c0e4aQP*`<D*Ac-6`U1?gLKZwcI;F7OsJd)~
zcgj4Bf*f&`hF?xB^K0J^4|QXau<snY^zB0x5Q1*uBZ;#wuf+XHATxWT^ZfjE4*<K3
z%DO3c_w%A}2O^Mg%`2D|PhdmqBFLJlc&8?PR!TC>PWr8k30uTU?bw|jAFoaNe7SSY
zsoxK&x-n?22D1gUzT?T)86p*<D2r=XucqBv*Q!;k?y?*X`2~~=)(?=_YHu{f7F(Ms
z2cgyvhN0#-*3vYjg~=7*;shN2^B-(M|9c63C0C@lRdsuRzPbwN)n%$Nl}9=S9KnH3
zy76(|Amyd}f{o^V<3ik3MMXjIteJ`mI69iQ&<bJ|j8%8MqLS=_O6@8Lta!Hd6GR%6
zN9u)?b-V3nu!=g|f!>;r$}3L({-&eEuAYV`+^{MNb0~g8@3%)U`#3;J%%u2jThx4w
zNtWFtHkIOcdl6Eva2i23)@jI~yn})!wk}f+{)O-J7M9KObrfCtL#1CPlu8zy=Fq5B
zRGy8Vd~x+@$hj;?TMNpgc3gf0!yRp(?9&^))itdztJc`q_{2BV%E2=|jfBEi#43%A
zrFu=0z*ZGGcGw4Ri{kV|<+cpepGEZ5Q)~qh*9EF8j9Rs7HQcZ)o9Z@81+og*&9+sJ
zfu-sXw#HA;JE^Cg?mR-IFc?0{!ucd#gCiQ61c=nexRDzH!-+hFlqsbQ>#<p^V$UzS
zABD-3?;{%F&X)$`DcsxgWnfxrcYCM2<@bMB8-Bm}m!JOs6<Ar1rTE+MzLyL|Wmi^K
zHaqeAtrZH>AhvbrrE&CNv?Y@6cz@&&6Y7ViJJu3XE|c`6O(g1!AN|cAl)tSzn+JBU
zHJ#Y_9WHvBI(}23-MTQK$6M))#;fCnH&SOyMp~BWJJTO;c~EeJbz7>Ad!cIT5P<VH
zaZ0*1jTjn|)v(FK1F!ltM6wm4$M2u58kpVw>m>6~5P-39c5dz%kDjR`CRiJ#k|kPt
zZA`q+RITrSpm28<Td5m}D{_SdOz#_wb`M*e-#Aqu!_F_;{L8ohnx}l9gIXsJ&Kb#z
zrbXR%{-y=^_j(Vv%Rmi`Fr61M{y%VV@pPs;{HX50T@j6c4Dq^G%C5H_%Ux|YenaDO
zxeHaw=Q`f~vGoaLtKUB^hRRpmHsimqlrmFp@!{?)tJFO|BISjXl@G4Bxu;FX|3Kn3
z1!IS+*8QI=>HYuyMfbXc|NGv1l(W^W=HCB$i~e`SzUulH&i${4vUHY*GT&$L->;{t
zTxxgQdHwg(CQOs3b-wmLw<u8FVqeVv+`>h9i-R5h=N2I{Nq2QO{`W0(l(#s3ZO?zd
zMY8f1C+;5qGWGvXMq7QEi+!Va{?C<^bMevq?*0gqf2EE5S*WudbpDgf(*J8#{kF(6
znYSJOb!5YB5k0D)h8^B_a7!`U7`(4Qm&=67k!Pu+df@AWTGthbN1lf<D0C`lV|HRY
zp<TVeIf;l=nxaCt==+WL@2@KlVKaE-*N5o;@(#N1CJ2}1C?S_?ORanR$5UVdGH?@w
zY+G<+W67~f_x|?gqr`fJcP&oa4~v#Quw<6(2={AQh!V{v9ic49rQ-(;Df?C+M^%8)
zE)x8dpXZixWQLC_o^KUI7DM4vZ0B)V-u-p%LY2~=YFO7XYrpPSA{?iQ^;ms{<O;=?
z-R&Q<bXOjB-8T(Ga9_F9{Y|M+l>zygY^#!PT{3^<Ik-$;%^lzD(ZX=$`qU4ZXY~a1
z?$i%fcX_08W^~unE$sUwg?5%1^*_cfo_=|-m(k~YrV5jC(EiT9`^s{Ma=Oare*fAi
z?)-hHzP+xTp;eQ<&8G{mJTZD|!hi)o?1ZCw%DeTzTv7a8*Lj%I1XvHBee#Ee_RvWA
zrBsHaH_B0=967m%7|)ooUujCh!<Yu}ke7yE%7cHO@Ti-te%*P5JETSuD5_p2qOr6u
z<Mr_Aya-@xr;;BRZpaaQp3uW&v2~>2g-G8DkRm0phNf|tNjb~xBXDE06A_8)lDpp?
zGOZ!(kS7QJV07$zu(*yK*F#usd-=8_tkZ!OzPdA{k})y7vBY^$zV<C(WvZ2rU&z;@
zLAS@J6;@LO(gWT``}`1>@-%2a69No-<Pw+uXk!e;kv_6Ucz?rrR_{0~j4SMR2?V#9
zA9C>D&Go!!+^BtbC!hkP3gi_s)tgK4g*ZUN>>(_#4brHHLYZd;5Qq@W5hOi?UJ&Wg
z;l_AujbYpbWt76fv;Zud^=&YnX3^b*u%cArD)MAnbvpfgb#L;q?{4|E|1}_UBL;8_
z=a+{EJErd*C~=w)J*w8L_ua~3Vg1byQ24m2s^t6-+MvtBiP~w2Hn!lGo>UbiGUW-s
zex=3I3>Aq9*e<;It0NKJtK?lYr97Q!U#&*)wJS48y)%v1aDlbFyTw@lG0RxeJz(UT
zB60JAIlV$sWCOKH%ce*$$B_h={Vi17Ro_0@e}<Z@P7XgTyM>dRVp4vcz205Vhgv_#
zx3|#bh2Dsh@JGvQr%>N*Fl1MzP_hE%%3tn!LLPvNkaIYqwJXa%T&_0_eC)k_d&#<7
z7Dsc@(93<r86x^}ae(PClaEkc(v(Mw;&T!LPvlzhABM730eS{o!0@Z$HI7@4ihi3B
z+l@{D&F~1!T#t;U6oq&EdoPb!aA+|{S6pp6leIoWzs+x<dy*(%E2_TPRuoH}jwbo7
z`@9I2*G4vlP7#>|&CmvxW_+$)t5#;1?{M>N))OfE1Kn0d?TOIU5>b)_1QiuJpY1pe
zb{Qo(6SF}XdK%>Rdw9tD5JAB3UiC3pHN(vOYrTW3-2{o4K-^Cru`J_r#F!%*5+ZZS
zYW~cFuz)ekH4~w{2dwy-9hBiH)dE8aIYG(k&8(4SX!tYHT0hM_UxN4349x6_BG4Eg
zH|z1UswI-N;*i-=gtT7Nh`U0*RAWp!Z$gpIrUYS@IFsa2w&EyMvTN^=I;UhamUu!_
zCXis9MeNv%A_S^u@-g<FG+4cg1X;-xh>BgfL2hKxPG3>;dR4kL$&O8>n98w~+y9!2
z4+-55j%q2c6&1efH*7uBgFCz{31*#3Z*!j+I?vnz75<VJASs){xT4Ah1E+nyWI79m
zNbywiy&MVDX=eMWcK}aHt?8?%SF^~Rdz9ag!o0laiYutFRfQFyK8bp^UzqgP=t3Ek
zBx<&j{Ot1nyrv|RNpKMo+-Re*!p7E-z{0&SG1H-iw*gF+pJoXa8E)J4UR_1V3F2Wp
z`YfJ9hJRNC`q3$?^LU6BKmYcp2SeABqLlT$`W26rq{U+-hAaHXQX(jmu%f4MvIP_j
zNkmQ9M1pz8``1^AmOw+c_Yi4vBIJya9Oj<w>S6mFAtIzO`!q6oK6m&_l$MU-K~d0i
z8nFcNg-#PJ>=3RokRWmcvNkrevw;1B2z~d$7B`ev+x=M{$*3%OgmkbkU;*^3aOvqD
z@#Y>U->UTe;~OiF9_5Ltx>?6YcN3W;TDbX|cw}Beo84Y1g*f7fXcdqboq#|^joTO1
z831Ab>vVg2W01DQlQxMW8DpL$Y&(lHJ9va)nKl93<|vsrK_!_mpBp^eMN*z|2f=;(
z-q!OGnm#=3IIVCJyUx}zp;3WEO3AyczCswjIZs@fv7~$57AUMYZ0vNVEt(n)%=l(>
z4MX7DYd<-Ly(xWK60b)5<Kw*(H6o63Fo;F>k$gk%kPy3wnG*A&=#FnJIVTd|+Ljma
z1tBODHvT#`qo{q6lE8-1kd%+?oSeoh@(G&Hkn{)CFAas0u(!7l^J{=}avAx$a>+s}
zwU;pt2&gWZ{uV!W8WjS>`QX*IoxEZ`>&2yY1&}!XB*R9`%<dA>%T@55$4jb&q^a#|
zxYeAZOzq=IJ(5|?g2LMjIj_2+n)Jgh-BJv?#aF&tkSIocl)2)X#qu99VOv5oVKeXr
zyHNGu6*1d5Dj=+T`Z;gR`DP>feX^FFBjs%TX!xLLlt6H-IXs7#Bup|{aRc)sG3oMf
zbTFGRm$no8)~XI+hQuw8CwU`5B+#$UjhLWU{b9Y)l`+(l@M|z?9P6~B=!vQ0HbZ>q
z+biW}tlXAl2nIV}s$n_*TFeiawm*<rr;%(>PGdbbyydGE65Ied7EmVnDu1+V6anne
zJ##qwgq5r+Pdk5Aa`IlCLv3|c=s9+QMY|Rz(NIvm5eQ9X;MYZoTtLIEqF@<u;Ju`w
zwA;5=m-@gSlGh=a0@_eeL7RLzO6v5=s4qJtE-p^h>L<%>ASBT<m}mTm$Ch<C=ydxW
z0$mBaEF+5P>mUmcta}BSG#;CyiT#Z7F#ya`muIC{du56(l<gu%cXm0W+7M{60c+hl
z!PzBPhFTK-mPziU1J#l}M944VomY^M8(xRc5t=|`0aVs9pzusH2(09lGD|Y|h6K4)
z8}h9G;Un}fc=Stl==h_P2M~mewmc?r(@X|&Bdeqf20UP@3}#H(t)=k|_0Cr~Riso`
zjBuKVXY7cIBLM|@(A2KQ#kkQ|NElG5=KS$-AT;es(C{i1uNra?T6Ae)ga7?0Q+Bny
z4OMY>*g_WPW|6q!NmYg(3C;>X|Ck@$KTBL7{aLi%XdvgaEU4He9H&>94s{Mn(=I6g
zEdzRxcT3@uCQ{kKsiTpR(R|eBuh4a5zkIoG#}*F{IsA0C+cw}wBcg&(V+i$2GE&1)
zL$B`6CeXhHYt&9iZd)W1CDQD#K#FN4*z-XD;WV{vY7yagmI)WvJ&UNH-p4uvWDQ^j
zOaT8@LvgvSe}y;kA|b7_Jh_bjCt5!yj++_O2&iGv<;m_h94MYb3y4OgZQHh{QS~4Y
zsJ38a%wb|RG;w!02W0`73Q&;!d>q6(lCRSfYSOD`Rtnva$`c2xP`|aiJMKGL!~OGj
z@}~l++C=A(LwEJ;7`x5izme49l9DG3!e-Tb@G~|y$$(aq{I~9NA9ju{7E8s}XiOcy
z5nUeb&Xs2aX<iM~U*zKeg7bhX)|N6r1Fv6M*jeJElwQ#!f8Q)>ReErVoX|2*>wNyh
zlHghT9g_7U+`IjJ44DC;;evZ1RoxR%s`s~9Qv7IUB4|aBcJc`{{>IoHN?YnB*stG4
z{QWAF^41$fCuD3Bz{~zqbxZ9eB8h0f6f4+*t{6k3jL1->abuXOZw<@wD^DGaXRFyg
z{BZ|ncQ`m|J_J=`Qi+D=V3-oo6-bwHi!Qjf3){}(KSe>aF20I_rDj5!C0MWD0uoFl
z6zyBq-mc6%uA=ZddG0gAcGN1S7hZnpb-SttJln9SIvNJOC2>d9iu)(b{sE<0_St6L
zPR$K1-&B%1lQUovW&iKR+O^w{{j94a<Pa?0)#}e~)q1f#!8AL1J5JqjFd|-lN*f8f
zgJ~?cm-=Nwzo}YX%$1@YfN<^25dbttgj&L5T}xK9J;;i<g}&{4iIUw>9!70jFbPuM
zF@f%(>f~@ym6X74f)wzW1^(pk6z+qD5%Us=8~<^io=%#C@s~jwj~Z&T_#6yB-L>*r
zq4dz=;#WBmvM91;uHRIBEG%j!X%go6SG^LkTAG}Y<_zh+Xq-=8w)j5=V+Dg@g~zl}
z0yz(k*oD~cLPjUq&0hv%IvRqx0y1WsW#Aipq$Z8zkNNr9bQC6%#n71!7QwbFQO)fo
z+TU*f>OF6Sc_VlnAoY1pzm2(GJZ{!cp-vC+ucUOzz>*5`)9?O^5iNn!?YiMO6s*y#
z2)*6wlT5V~TbZiMICvmc>_~yroj1V9o<ul|aBp@@jfjvnDca9vq$2t{K$&il?9Bvg
zOBWu4zKScfi*ORAvclW7{wcIOr$8lHPvc%yiUs)UrOR}L+OrU6%ttK+QZ&m!rFw;2
zE@i;(gPR=t<hKp#dW3W#xtm06SPB1#V<hRTv0y}zE2uUckc@wGRS-6Wx<%9zOjZH;
zhx>Naa`#C;J8Ut=cHL7qm|@?vFC3nGW*!4&KXc{~Jkk4fTcB0M_&vD-jiwhODsVqO
zcGSM1QXfFP3j6saM;X9<#2>_#g<F#Cr^%m>$PrCt7p%H!LmO8qV<1AA;W>B@(xt0a
zw|koUmikKTK>abG^3bTtj|Yr4vq{-BU!KhED=gG;WGIJl7)+(UDHwZ;&?H$BScnep
zf*fTT7<`)i3Pb#gv?@830viy1^sD!*i+R9l1f6?vO0~48ICE4`ywqcSiB(aoBO@k(
z#}Ua&@(EGNQnJ5T)yifP)9y$*kj^5C8coHGqW@T>s?~tkl4mD~jB>ifd3cs4ge1=F
zR<!j#_t?5*$QMr2vH{sro*dw<7qQ($Q=63A3kZy{w#WgWT_tFDy?ZNI&x@1I{72FL
zV@e0A;sm&n!);7lP)PxOD3ca$xF)7K5@+pKlHogb&ou|qj0>c=R*`tnZ2}h#+~67d
zHV}(a@Fd^0SAZt9I)r%G;K?5U`73ve-bi}ah&s<c7(o<?YGI}`sm{?v_KHV!<=-nQ
zt03N-Q!)xN%V1WXu8aVwb!`@L5M+{?WY&d@(+g@+<Z3Sioos+z9ZO_&gQso?Ah}U_
zy9-!`4LGHJ5{xa2g;xt3r^oRs<?Nia6y}-zzp=#bccpqFRXH39Vlez|WI1!%8a<a1
z3|HhNVa^t8k?KIUi?DruYFMUgd^5{`%p|iM5kxUB%DrIOT{LQ>;6I4$0=iYbXKjc+
za5Gil+7!*)UKSc5mP>YSKnOnEG5`dl+uuxj8Od@Om<9ma{e@R)djcvZ0VUIp8+0Di
zvsN5Ch4D>5*y&q#$gXmZWX#!8tV7{<U=t3+>f?hf^~owU!BUdC*9gTCIo@JmsnXl+
zr9JD*L}~zCAttAxQhhe;L%v&e-z|i}{H$zT#A*<k(|LDHDO=jNebNRfem~y<k0vmv
z;@SyCprV3=c*}Vpc)J5Xg`Sp^R1M0+FpZSihT;>|LTK8yJtoyl<f>X)VA_UKV(Oaw
zJdz-10%>sdRa8(WdJ<1edHtL29!f)8A+JqK8hx}9Bm~*{z_8>KJ*jeT1vOVu5j-Lg
z2f^miXEUSdvLHv6oOT>5t%c}>^B5pC;T#dK8sp*bk&(Mr1~$6N8J&gWv{9rvXiWD2
zBt(_d8_F&Vo!%z$UCUY~aHM;Stjs@+AiwXgsY=u}j;eyN=Mr3pJbL@|TwgAbiP&-@
zZuh<xhb}cIs2UU6Oa;r<yLN>2IN4?>Yp-zjX{e|Ow}jO2-O@XMxNn#(mE_sM?@G>*
zW2X<B^^@C4rHaWfU3_%p(N@BjjfD6WL?$L`ByW-(%)NAKN2sV6eSVZud^WUPf~lNO
znfT3KK)FiSr&0(=id0CgDO00O`4B&wgvO9sI2S&Hx-?ifn*|3+WgI=1PQ2}m^cvxT
zGNmv^!*hIx_h~1NkE-a$Rqa^3N-jAEP@X91lT-I>SU{S$_}|(^QjF|bNL6i{WN{&6
z*L1B%DrI3&kt}6La%g`RzR~_Y7^H9oN^B8Z?N?D|K8H^gD<W0>x=Q}BBbtxaQW79b
zY8&Q&-SpX>XHpi?;9Ld&Rea=C?^ov?kf8Ci%J)mBQM#jM98T8qJH(SJJB81f@&5C>
zY-(<A#wuxi5H~g?Cd}M(XkhPXONU$FjgrqM9FYA@N?wond$Wgt0ZJF>yfkj~7!MeW
z*+NCdn{G1v*D!q*zw<ndTDj(D;V(ttFNb1yPx`V+WLufGLQ}hjJlfDG4$nR?30nu^
zUT{7}yru-LEt#yz6`W@Y_$v)nRMKo04Rhf<P*JKmcTfY6{w|TX%fL>F)i@$oq#T-U
z-`v1OnG}7UC^fN!>0Jh^Az}py_34yQTB$45Qe&SDWgsVgeE*~`v1~1^OvC_Qgj27O
z&fP+=3FllQFh{sb4@x*(p*GB^5lpuG&(Sufo)x&k=95BzED~?{c!_8B8wlv1hD<*>
z4)%3ytkZO?XB3M{$cV0PkcQG2CTz#=b%Ql4Uk$kf47I06$BGTJ6>TGM@b=#RDUbSH
zd(e2wnb;;x21>T|Jr8B<&U%1Ee4%GM1-MbMD1n7OjWn6$6QurLrSQ+`lt-G>nu~_!
zLMe3X))w&`gQ*E1ERK*fbWD9GLFP=!A&C<_hfkLM7JW%`4A!IE00J)NQJTo_B^)j4
zy*(VA@>k;aqMGjt%cUw_s<_b-^%PGmpi<-q5h&wSA0y^yOl)+1S3B%>yZ!vU?Kwb;
zF*Iq{lwG~_61q1^gZfv>k|kQdf5&fiqd=i19Kb$h;$@O7zkkQ??s_r&bVt|e=3U+1
zOn7D<e=v^{?_OZ_?#maz)O+vRweq$YYdn|{K=v%}AsQl0_V5@>ShoVKG3==kqU5Ql
z4n7Bdrb=2fiNgCzEy9AJe3#rsM!C?wUSgd`vV=TJpJ^tQ@RR&S&m`qO`xCRRCbAf{
zs(z$CbtkQ(Y@HOBH3lC2;^gGylSW?8SZBzJgzh}WzBH_$kR)9vjCyiD#kHSsZqkI=
zYUs~3pFtA(#odDLm1{FB&o^cu?H5GDMBTWt36it%3OAlj{4zw!z&)UBcBrxzo+4sD
znI+W^&*q1>jXG8Dxm};tp}*_uH106@a)a6@J>30Gt>4x$8CJhh^kg;bxhhCRM^5vs
zKkZ`GF}1@ZqnGX-VDifV6YoxUi!0Y$j_Z5jQl}0b@=6xf&3zkmZc%Q)^d*m)zVGJs
zGc8FAJLu7{2rE`=@uxVe(`kptwKAChG%nWG#2$`#3oOO&?^x?OuN!J=>MeN4>CVUG
zlD5sL9UsH8fv~?Xoy@Vrr##TCO~^!=lF~&;chmm2-lp1nvY%+WmJT>wq<1H64-!}D
zJ8*kj{NRDc#?vk6oFtt0@gZB(|DaLBNKI<&-^q@I!+b&Uh<%M)N#7~uXVoKG^fF@|
z@5B&jxImm~gq^4HYPwJE7Rg6!wdUjf!<xS+z<hlu$Qp8|2-BdZkxyq)DywaGu>JCU
z%e$EQs}>f%v>?A}!YqpsnXSJ*Hm9W3vOsU|zp-BjJMWCig?IDVu%SV^fo9kd|Bumb
zh1q6d`}aq5Zl<N>Grcf7`BE0urKXW2P*%K)2Be!dZ(dgnkf%kYO=iK@XI4?Uvweh}
zohD<~xT6$Wi(eIDuzWS$?sq?-ITn3+l0QwGGNt9=?NmPJF*jbt*4OObqel$|9kY(o
zN0p>5>{w44FOD8}77Yj=yDqH{`V0&^lrwAAtWfF$=x+K4x6H%CbU6**Ig+RCzFEt2
z>Rn|uesy(q>n3%)^Gw?u$F<8sx2F7dVMA5bwUjdW{T+<N<@@)$(@udd$}b(8I(*Xt
zP<Lf*F(9RWlO|*Dwrue43whFzbz?f5v^&P$)(CZT{mAC5iaC!TKD>~YHfENEb_4a^
z3l->O*3eN0dPf4f(qh!q!lHd_khYBX9=*oC)@Ch1s`WKaIi%HX-MaO^ZxI{TUR#5{
zzVwb_0nPO`)D*yQ{KN?xc@flee?msoPrsXAM@wteIa+m00UHhc3>dh`@Yk}H+H!O&
zX`IfvHrU+U+%v&cIc)L|zsKwAY5MgX?drLob{G#~qUrNsa$TpvANX%;aUbh|r~amO
zE}eL{?%Wx1e3^1&UtK?NFi-KSNJUL;J;`Oi&wHKx_{%lzR>KKjq#A$!;wRHnLX5nm
z8&GfER5W=_$(3n)e7T{i-C5#ZQvs$5cVzP9VARgbi&Ilq89DCgicfRau3PuVJ2>aP
zwy{pXM(sU#P@*BYRIV5t6O$=`Tq!-~dDZ;;OVEFA(EZ@fQ+~qiZRoyj-8z%_>$rt=
z5T!{wVCgrF2UDN^?s>kny@u%&#fmfqqJrb-uqI#L=?&Z0=P}U2#AYq6#|~barTn>v
zANd_KP@VLV4seQ6>{g<-je?7+YB<cEeG#8^-JSXegPncyU|wm;wi?GLqPMP=79~nr
zh!Xy|FtVt~uAPXYs~K(99E;zMQ(PeT-~)&`=b&!?e_zGAfv!!2_8giq)#1z?Q@(_y
z|Kj;`1r5oh+bh+^=}W6BO=E#_FJLbfF$?S|$?<z2T|VZ_nPcv?M)}b39Xb^Bck1g}
zar(nUx@X|bjhfQ^%UyH^mH%UKH+O*DF)YOk$(S2SFQ7()2ZgPGI;{UBc4tT<4AEse
z46Cq=kJG0t>UQ=){EXWE(e%pdGV_-DzQiAvP)Noirv*>W*yui{2S(zD7nh|QoPk@F
zI#@<ExG!Cb$qlvAbp)KV{c|^)MQER5)z$LC5jt|o^vfWd59erIn+Vm_@V)Bi9xE$K
zqd$x-|J1U4{Omb%Bw#aeLix@=R8$ULg{?a3TDfBP69~75j~=z_E+Nh5d3n0WfBxyG
z-ZeIUxgP&CU$<`EuXH+JR}9#+==a;AMT>s<?Y9lv`YrnqdOr&<nQfO+k8L-f<dcvO
z53gM_U+1lSNELte*KQTK%q_cjw_bNA{3(UP>T76pI=;_NbI%cBYu6^CVH`O{+t~OQ
z1zwnmbPeurVNsi&k0#A#LKNJ-ckkz|l@k||X=uLD``>2@{|iG=UxVqK#;fkr7{ts>
zo;9oOary}Ii1JKY<rSUH{IeU-+lj^)yKkB$E9dRwz6eAd_wV0dd-7wQmGL4>8-!Be
zcFwSk9x-NZ4oXo|C{?i<uih+Sfzf%^be0$Off&4wcgNDwk5F2~ZNo)5n`X_`DtD@*
z-n%{|gfZxQW8kYv+a9H-*ZO>luBtZc2Yp?SWgiL)SJR~THs;3wAL`{KBf5Z1nKEVh
zHrNNd_g$(gOYG=-_xn6rD8{Cd9>I_vQDaCu#kOC~TPWW<-nzWJoUZ5f)9qHSyOQxa
zMcZc2T;*Am8`XQLvGKk(OHWwgpwShsvBM3>giAMW44p-*?qT6~$B%++@*ouPhmpy_
z;m=>cZg)8U#fy<Yjcl;$(WLXPn`u5oZ?Y`RNJQNsuetr&O5gY{9lsi9{}%KWx<qt(
zZ82LAPwr=Ft8u}>k2+eH!01!v%-NZL^B{`9KM4&HgHi?md+XmKJ7hiM`TIPcN;HNZ
zE5D40UBh8EHT#FG&rJ!b?X}q1SsK-({`%#2)|V)FwYKkF*LVKb`%0eCb(bA8hD|qp
z$ouBYi2u4BJ$~GJB%9Fg2<?%Sr)>(o?s-Dp2Rj&{v8NZd#JT)cv8<xB3+Ue+WkVx}
zjMdN&O=yB#KOOsD%geE>aJuv{QB0mTZSV1i9@g{VP%mXCbEI5INH9tG_gL}|#9#cY
zLx(@H>k4<8`Yc<y@-lXro_t4RVg}M?hZVhrPTz6M3I;~)dP*Nzi4#fda6vc#@7=gY
zoqP5iOv^>)e-lxkKPpcgKVDx|^_OA8hWBWrob5{mH~!9Upr+QwAc{<(`>EsBZvQgr
zwpi9i8kA_Aw9Y#`_+ypD`A)`mXDJ0ZXxOki4LpD8|LF5!>8J$+mNt<*Y<M4atvwB-
zaU$Hv?{Ihy(@0J<Z@Ln>I#9L;tu<>aV6`-G<TlV-vF&shEgw7ZlF}{@wNx%YS%8<|
zRb;Z4EnD`S3Q!7ndXPz%b%8yx!CSV}r6Xc3^}h6=XDRaxgJ`f8zluIk9zdl%vYns(
zAup#@9w9r?XY1C#40?9%Y$@AaJ~}CMMqbt-W#Y{9_IE$)Ri3H8>Kz-?5|PS_expVk
zws-QeqTP%)5Qf8XGNS$4{K4W`#>VC)L};GFIt*NiBL4P+2cxe&%*)Fg8}Aa^`43@j
zNlsD$)%kZdR2ez@Gh}N4$W3v9QvHWAXMMFI@ftklKXik?{ow9hABTQwYHDEbI%El5
z!B3>;+v<-Wokwc+=+VO(-xecm3}zC~%q6!}qwkVGArLQ115mop(Jc5+jK&^A9s<w*
zw~QxG=$(48x(*H|&g;M(VdhR#d~}tIYSpl?_VzkDItM#9NcDZ{Ho9)B2EM~b*?gL5
z@;>{%`tIGk@rY|OH4&Fyd3gBg_31O-uXB3*s+B;jAqO8Xbapl-WV5jJ!xX9uq#oin
zH9)re=CAh%?@sFoo79$HOs~o+fAIHnHhI|MPai)%r~4T^b68jy2Ky(PtXf)GT_*Vb
zGuAxTXVUqyoaR(pvMzNSi3!GeUqf;`s8k$BOwQK6e{WNcTH9VgL|a}*Ie~T!U!T1c
z(WhW&>R2;>)1J%~8184wCo|U_&bC%CE&tFz@YVYa_UZ=K;$O5}?Z4!NJBZLPX$h*L
zf5_gzH2jP-;u8GQQKIAx9yR`V>v?xrv0?>?>z@-R7Dp%E#bk33b?DH+uRc_&d@zv1
zhmQJcE<K&Q?sxXdNi*$Ju*EFGc<S9WQ}fTq1_o!}2X^enf!)_kjm2=9PEPnEy2k+?
zn|Ow8NhcY`n)KT}Jn?K}1-o)BuG1c3FFG;(Y?cAH@TWJBWZ6<zw-$3Ot<IWtpXH8o
zF<``qBc@sZU^kO}+b}%RwGucv^57_)Ce54g#oErwINgO6?RQd>7Oh)N5jCw^wQ6MQ
zdJr;6>osu$2BH!|FWv(A%DDHdEX>RX(1zLl?fGMO-<+dIJ!@<bJ#!6RN)=XCR;SON
z1);Ti7A+G*6-(Ix9$sEU=!rUc#*E)M4R-_tw43gR_4Nc4wBm^wYh#?*7q4FZK5yQ<
zfUJq<Ry3k%lQEA9LM7_c4MqCzefsoSch!f#E$?Ivh<UN}GkGX9qt9Y}dw6;dfFct7
zPoZ@UR(RLM8%as^Z<)lz#H@X(Y2<2bYik?-rb&|~NiI(;(t-91X<<T()4H=~&%WgN
zl=RqFd3lXzV=aaT8o6muMRdsAxgGFp#5FZYjQSWYTYlD@oa+2%n3xwQ?%%uTyWBv!
z>S9|ImQl9)ce;G|_}a?$jPoBj2c0{2cHg|Y4h_a9Pn|j{Y?TuED-8|**rWHeoSS!j
zTkLDo=gU@D<r$W;vTN6_)=fO~%<_#=YI<G?Yp5`Pb8L0;L1W_!fcv$^?I%v0i2C5P
z@u^;Duh7ufVa62hOl%gmR_Dx3pCvCY{i<%Ttp57CEe6t_{Dv!ows7&{bzWZeK)<ci
z9?}Sq1j#OSH4Qsx-+Fm~&Q{Va9!jGQ4dK?6wCq*8cJ19~-h*m8)BjIg8BAmX*t6(k
zT3T8niX@s^TFug$aciss9JayTUBND!Ol+bz#n!jp-hTP!%{t6P!;bW4XpE|4%k$^Y
zUF_5_P~f+V&z{*ug}s5|_``EISffeLxlL~2H;}-S#Zp^d?glq6&xcsG^>|luR&i&3
zhQGXaYzuw~>@>%R-Q*6v=4bSWU0k=s*|~d!^}*Ew^0_Ij-k{*cY`&uq&7wws)`eEG
zzqV;}z~DNL(ciFH*=KLD9`7(1KTWfdZUS?koN0viE)j0L=-u7}2iD^gT*i~zomD|m
zvP&2=x<&`(>SH&g+n(5LXJ=>TRLe!JpYyBwu=C#eJMeEBUZur)ZDeAF@6ym3y;#J{
zYRce|;~|+<&k>@OMP<EzzlH4L#`-P49Gzdyyocd}m<1!jM_)hF2aX-vgs^uV2M33_
zPvge<g+@e1)?xpz<>V&d!U4EPFP%qqq~-4Je!!Ln)fwHobh!wXy>^Mv3T)Lqk2}mJ
zoO+RpG_{6W{u*;=GNCgSSoI;Mrlz~Ie*5h=u^_#jUs?W5^UV*%?<SC{*8;O!E1}a7
z;?28JLzcA;|Ea%|Q&(J@U;6g#yRQ8nJ2oeOmhj^8`XcS{oSB^61S524BHXcPF@#6&
zrSH|}&YM>NZLF(WPcfHUZrQR$c^&q%?Zk=E0QxD9Sg^`ts-bm_=bVK|_G%MF3$yG1
z@>%HQbO}nSXqe@%?ijTxkXbuAPgy;1+V)1t$;pJ7YJ#0~x(#TQ6m{t=UZhwDp4H!B
zZoPW-PM<lGvn#Zg{g^%z<6ZOt76(2=Pf!I^^@s1W=XInr=VS+m_T6TD+m6bAm&ZhN
z_}x*{rT-df+tLU*VszvN0Wo}1r>OWZ$FgE*E}{|Gy?5`=*g9z_n>xjR9C0%-leV_%
z+6|J&R4(@o2=JumLndR5Z!m~pq_|x+>pz*8nVVn2>J_}WT$AR%dq(XuH$QmNsxkdZ
zTeWWe8)JVvEo}&^X?J8~<o$WT?Z2>(T)uO!UPFL!eqHCUSkZ^)t*@!+1uVLdkrC)`
z#S!e`Z{_JxWk&-)T2ZcB0?_P?jBV7TlSo5}_OGWlyg~u{>j`R58~^vQ!z`A+p`am6
zFmQD+$uB@pg3)l-*RD;Zc`gibb4JyKYZbO&w@p~Mbg5eU)vH&V^j`QE^@%pKi3U!b
z*n-o2Sy`dZ{Acl-<*4k~G19pB4Tj?3$$8BcFjci~-MTdkIWj%M7m`-}_Stz&3JLtQ
zHE5yayao1l92gai@ws!}&5hRM11C&q&XQV#?c~{{RX801jPJXVN=5Qn-0jg;R%>`}
z@((w%2wt!SPP>$K-J-6)n$2vg-GHpDrsKzt-}9-K6X=<}(-gIYwA98GpE7OQ8XBeA
zo?TLhcx1zJPHvI8oL-b$m-0uyDCBGOjQAZY4!fSo)DL|5kUo2q`~8DvfKDMpZUuB3
zvaH{`w{M@ndgZ~vtYu)JF8&3BCbXO4!h-XazhOeD;yAIp6eb{&YpZyad|cmu69)0O
z2@@W>oN|Ek8sm~c37~cSomTJOW5>>zI(0Q9Oeh;G-1=YxnrkkEag#=niVq9{rt<{~
zgYb!GPu_^Gtf(;dyu!09=YfD5@aF{`k)`2tUG?7Xct2Ayn>wfVDhTcvQIGa_nlg9p
z(Zhr%y&XQX6$>vDYukI_a|M204Fxf!H3(*y;W2x<C^5^oe~f%|S=&ZSzmgE&WjZT$
zIu19w1};4N@lwofZy1MJkH~=Yz<)|QcMjGgldY_9C#n514LX;-hs31IrCK_ZN00Yo
z8PjqTX?0Kf+ph{)adcSfaP&N96T!Gn$KSnsS2R@1JCVys^Vi*#1SEEYPilGj3T;H}
zY~WcUG@=fPU&WSufrGfH!?0n)IMiuEtN7=if5h2Aki|Uj{TQY)-PFwNBFU%g<}}dv
zUE&me=+IuQniv<VeNCP|ec$a;0?`+60NWHTm+LfZCXMe2zx@s1zER?FoUgw?np-Qu
z=P`8W9a8KJuCH0W`snoQjqk)TAn_NTt(;Hr<1&C-q2LcM5+^Krw|(c%4KQPWyo33z
z0i$~JR6g;s&dUq!10LVMd-vL+w<l)Z`3d>z>TTP$WkhfPg?O@Uyvw+pB7h49W6kc}
zEfLbM<rEe+q}IGFNR1}F=G#VR5)p#|AN$wRYW&h^tYVJcCJ2@OVVT}3!V6tbYh2W-
zotJ%>?5Afp>3uX%VH2}b`yGLhc7dlM!scegEpMoRiSP&w4R!hag#Uvr96jr8hV<5!
z4AX~gFoHE|)OZ-XsEzFF`}eKy$g_!uNXcN1bRnsZ&$=_v?{qodZWc!+E>#TY$Hdvm
zOV^e0Gg$uN>UbdBpD@U_S7jVS;%}9*D7!3t-hW+#l3Jhp`d?<|u#ZZZkB>la(Byt*
zePABoyc(sm>q-%j7QTbwd!khtxqbhul69v~_kNpxqBhc-ON<NMN_QRb3J7S5sfRc$
zt-+D^cW`j<hm6l9`6A(*n$Y1oL{%4}yIPUEn3}Cy>oeL-W#7U~6j|3DHD=8E*jRmm
z*ds=aKqgktBz?5Gc`a$IEL{OHGJA4yl<STeGiK<H&NVo|x2?PZk1hC!Ik=3Xw}8<5
z$d`YCUxlRo{}A@(aXqiw`~TatH<@-+WZn&EkTGK!A}T_2645}Ji!`VVTbqhX2^pdk
z4U|S@%Fv)hie!i=BqAw^(C>NMpZ)oq^Zn=Nk8{prpRL~S*XzF5y4H1FYb~*6RB#TC
zj+W66{iGV9+)GwIAam&+cbav4%Fxrjq+fkz`uOw8t!=W8i9x>Gx6g=Mvv|&&-_fFa
z-5I^~lKXan6I!+O&4^qts;b&k`h}NI_V)7ngZ01+E|(^-x&Qd4iPpUvOjGkj#K`NK
zJE$UFz~_zWZMD5_V*p6^z|HOvE{T)8V7?wAOE!J}>|4Xgx6W)H#mYM~GtZk?BO)b8
zS9Mbz{7MJOD!jlPm`If8D2A?mUHPJcGcv3Ew5zMDG{2vC)Ag3ioi9uY2;#yjuwh;@
z%Jr=&vst<b7s9wxN2BwoQLa~3PAk^T!PhQIV>F*xlx~bu-wocHN%G+G5PNJQT)}qY
z%;M@%;N|1#$b*BI+S}=7Vr*9l0Bu)NQqr4AARuPl$dOU5w@pXZ4<La0H>blpUvK{T
zy>Y<{Pd5&V*-~#;;!{+|GPXKA=c!Zf{(bI@*uZr2=C)nCb}jT9&jDvWYzs5tPn<e+
zU}XgkFI$|&I#1XuFVHhQ<4y<oa6zk!dJ83d8LwJ7Ibg@phy0HK+&wR|UXLffW9;q2
zZTvmhd&DL@AF-5jetEk8Lb+f6?XYL3UJo9^eo3$-n6CZlWiMiL$Q45`{U%WY%?3Ym
zqeV69ibRPwd61g6@Uk{(WcgE$UO+_a#}|Li;_SIUd-jYqP|BbzJlef;Cu2lv-zsRA
zC~mz~KEy*vNJ!Mj3|WsQuc$%(?6;nuI;Qnmrn6#ky?(@CPNyGn_$B6#kfx?4+uQ`f
z2!wFP{R6|V`@lad6RyH?a&m57K1RY(`))O9@?-<nVc9&-<U)=pt)KC&hKTqz@G?rN
zmiOn+pOs5WN?hvC6EV-NgI{)No@-#xYwb!zy)msnAvJU#FBmv*pgt*IiRT)E;rr(0
zo`v@zbbYH6O-={e^Dtf3SCf5mrw+Z~R<BW>VQXinjO4rD(aEVmJ0mVG?j=bkn4?jc
zz8A{S|H0PQ=Cc(^x`71uuJ0`3P4!n~13mh*ruU!f<-R>xgdt;OXy1Iw4%xk8J*#cL
z>bqg8ss=C0EsX^4C$N04?%lg*RmU&Ae8C>wo6kUpw(jGtkPQXIDkY$%?>fct<IU4P
zFt*9QS$pH_dC6NRV9^O#T?sd?%uNju2r#mNAEeBI2>~@2DE0DF8Z#y(Coq*hh?`#m
zismd_7<~N+{Yc?2@%l)utszi_2tj%BW&)pbe$e2Nn=Wzu3|O|PP(mR-<pa8a9-ZzM
zITi-#JeXmgd#|i0t=xsAZaOef6y;IXqID*|hu_O4Y92ox{>R?^`zO2&_Ai2Gs;v*=
zJkA9lh1I*6ikE)z;zcDbEo+r0LZf6Ycfg%F?>K31%U@F;i=_}U$NrLer8R9Dgu9&g
zYht#w?dsJDcZ056xpMBx-o1N`t3vdYLa4L+n-@KBT~}Maf?#9t<jSS!FN3#<nb)0`
z&YU}c{sEkIi{IFswbBg#vC*b?f^m#Li#&V!=8a<|b%`fBr^>lDUg4}CEMyp(nnVp4
zo3v}!ob7gEZAY<N*Y)e`+m|zH@ci9!D)ANB!NI{=c2K9MuO>5(WTcUW#lh7!L<fzg
z#aREhSIg~c$`a$OKfP}RfB7XRC%?(`3kXo#P=PtXf9VnO?&~M(@h0dD<|P%7>n)yV
z0>FzKFARn=U$K?`u*gb~oPBe`;`51)MF0-jzWKjm-AylV@2+(VW|{WFP4%Z&j}ePf
zW|h4V<@&x}upC`08}OEy4(#y{T9VZnILlNOdeV=St>SP-q&wiVPAioRYf^Og<v+RL
znh^W`^=tEGZPbMQA(VQJKmxuBBo7#Hqef}Oi0&fta8njSwj7=8YT%H}by)@_iXX2d
zh=QpT_wUPKNZWDj*gz=g6KIT9^(5OloJFZKfmYUH(>4%+uxw-dWTB~xOUj#dO~*qK
z3SV&PH*DVgH*RRI&FQznFBuVM!Y0zbc6ob@T!$;bkJ79qOEa2E{JfaR$nBib6TDf3
zSi}`y$IDQv)u)g92=o+u;DGt#<q7vG0f^eqwPXjYnZ|CTuo5$<VnJzFWVeQfgczt5
z_4-2B9sLXgXeihf>q%%E$_HPza^)@_`gMRs+A~rC9Xe1}hWdW~{_xwOB`A1WTa%{!
z&a==VK8yymAQ$^ZsNv`5uir)M7QXETp9A4yphWtT$Vc7|4m(BH3e@{7jBAZrZmrF0
zMS_d{u;dW8Otdn%e`|_!^x)`XLg{bhP|ZPq4rsWFA4F<EBe-=UAT46my~mFqi;4@u
z=0u{#)Lbt@AN&#c@3*X~p;1XQb#&UpTa5hfwYD<Oz6(_oNrqkRdnxz=uAE%8di9N`
zPX|JiVkOj0INhtn!inLmQH>?2n|_IIVZRZV&R8bvI1W=%T83bzoN^Y_UIhS=`k^#z
z*g-w9<Uo4qJH8zJzgnda@8-JQ#*K}={B)%`n{vlmU!FRB`uFwg*GFPJ+D@>%so4xy
z(WvbfdLTG>8|Q1WBYhmdftoud-itFC=7qCHXA5b=z3r!WWP@q!!ggfUk>`q;OQy7{
zzr6f%<~nprRQ!>><INk#NaJ<O3lEMAf?DeH@H7?T24`pK#{{W68wZ|H$2ZjL$9!zU
zR*ss>*qL5ZQwA80IK9BwIONS%byTnEls;VtSVT<CjX~38;d=VjsXWXbB%ixJaM6Bw
z|CJtRIV`BX^L)s+!V$bmPzXBIjO6@&lU$T&pl&CDl<eHC+fER`^=hwgP5OO*zZo&y
zL==(bM8SZMmH-Lzm}J|uw(q?;v1SwhPO)V(Ow>yo2{phB>T;nUiAM~KkJ|YhC5h&T
zPBi5Rw^Cf*k?`;?z$>AmS)PiFZ0EMcUbX38FMyldcPvuuuaApu15(mhHmK$6SD03V
z-Pz<s!FRy54*8NXV#EmD{C2_K>f9DlkTGy9VAOIIQV==gI%w`L>`Z$qpfcHkL7$A3
zHcR-q(?nUoJ(~MsZCFR%r$A{@4&<Ke$!^to-33q`X>&y;f*dvpKg09)@4Ii^+E&^_
zUUDKSDTvq_aDY~^A!Ek$;*8MbmO9+S6ZZjAD*n{c)|P!NwyHN?n(7-zmAJil*WZ6%
zzjLPtDLcv)!|z{w%9C(_Q9q$ubMR%ITXDPJpOe&v5AQs9s@GM($6RmYGneS#*g-l{
zOA9=+a~IOX?xB6+6B0yU*2m`NJB`2S4hROpaJ7)}otdwuRo%VsC<&$}jZp_EO|Ysi
zaAb{cr$K`T`F@!BAxGEY0#)~bfdhf>YU(gE{Rp<8+>n(7=gK@XG2>>2zNml2hx!BK
z0Z!-GxVVDLYtaXUExz~@vGq^BHGPoRprZcV$KVM9)UJycw?rH<8Xf@eK`9@5cQQFv
z?c-NOT@jk1ihIDJq7|KBo(qBPc4$X=Ik~@ijCRzGnOnYSY^%%BlThazcsIKX40sOY
zay$FMPd-(+&n(H-&XVun|HidzGY)ODCdY{a%Y7=)7avM4+SZ1eI|C(;w)O{s`*PT>
z-@K{!`XPMQo3ez1jxP0}2wvZac`|JuUv!|h`;G4cV-Xz_BbYXKK=^jM8tQc4UAuk<
z2nFI6>T(<#Nn9pFE_n`rllP>4fUyYnRwqE_{+Ab`T5Lzx6Gc9`G%Ck*$dpNCP_Up8
zTU%9W@3QMRZs?Xj<K)~uIj3h>PAMWyW@hFxTEZmTcs<we-D^y}yeLp>ldG!;U}*L2
zZ%!>=3oeiFL3+yL&P(ho`zD{;Srh`8ROH^o-1Wi6copGoXY>uI;XeJ`?s%+P&MYJU
zpuy9mgsY~{h57TdkFHjMT+eiGu)R{=A)4mwNP1~IHOEm`M7T;#X-fe8#SWC04_~>+
zhwXSO<ykT3&re{#Mu#D-UZ1F>rEGpzUt2n%$GGw1g}J=zlG8w%zN40H3r_Q*lNLbe
z9}=6i<l<0+_QC)jSuIYbSP^Ek-fR|(Ro5TvHMCr`s7p{xlHD(r>tAA{q&#xX3e!Kl
zXTar>%YMU31>=QaJb+`M)|?4rDI_u;UONeO@W+M*qv4M_Nd&#ZP3im|a3S}wjXR+e
z)ltIS>$$N89?0-$Ki5i2jU)RO`XfXahOOy6V89;yT0;cKlYz-T>w|gHJRct)N)u9N
z6(!=B&}oPaFQA2ib;6gbQ#v0Jmcd{_@QlJ2<Fa<KjZOB|@>SRiXatysHLc5#Dci;U
zg@JM3UcJiEQD*Xs_=)gUyLbT#+S&twZP0Iv{npNvMg#U8v;`4%*n$YrM6q+0D&Lkw
z6p6jt*Iavem&1n-cgoZD{<cZfwwznJ10$?6|M>9X1LD|$EmOviA8(+o0mZYEXc5rM
z^w`m(AAuaV&TNAanfaamuMHbF!pVgOPZz^~TUuI{k?aft7KB@+IYy?H-+@inOX-*r
z`pw>O+r7JYr$g`Itz4U#mGy$7LP>fsHYhz^6Zb~fiWMK?S7B68FDc%A9W))qHRV~g
z>+st$UJTr5vD-1O1y=d);+K+6MlEu~9nnHxrzk(O&f7e!jHB+X0ydvJe|`>$dRtxn
z@0`++`wB|&IGr`#I+!c<rabBR@EPeGMZs}gL0Jrcx5&zh>(HA@f;%?l*HzVcP*xVE
zHoG?3R8up(*R(sZ{o8pGFZDCS$iKVj(2Al30rEOvRG0C?RNQD19#amXGB!fXLm^FI
z-1z2>_7+7AO--|q4CpHDKBRTZHC}_%rLQx{bRznT?w!hF7XlOAp6x6Wt*>z|e3fb;
zG#MIj@os&4Zh3FP85FGNrR#h;aN)w_12}a`-I0%-QCSHge<D%BuH4?Jm{di6Hf~w5
z3lc=&o$F7ediKnR0^;y*CnR0+{H$6$$>YvfbxDawavF!Y>x6_ym$yt1oGMP~NEFUd
zcwr_cRskhrtbY(1gs^s0dyCxk%~8vi!-Qy*yWSUx;4v=aFtt+^69xz#KC&k6Q^lTQ
zfcyOer`xam;GfB_bWx5gZ2bn%8qlv_KL~)1!9Tto{H$bFTe+Gb^Xkf}XN06b^);#b
zxmq$$ua2m(^6cTUKG4C=PSGMeDx~I1_uWBZN81+vdwGBTcS-ro<};28#)6<1nMh{~
zm=AVdr8yI86nJ^302-4ttTRu1oCtw&`lIE71wDZ#!_Q@J`dmbU5h_pY#Nqq&49-|B
zUQ`94%kvWo)qa_}nwniy4hIanVTh6o`K#Rt9bc)=J$f8Sm>j-+dpl%RU$A1=TbSH-
zGc!qb#1*pZa)9bxa{GZ}S{}wK`998i!|uPwfC(XCvV5Gsk%`Gn;Fqw2(H1kkse<@9
zOaGpOZ$!i(h$gke!#|_IpdRY`8aWIrpF8Xcf9#0UV|ts$Fz2%`nQlAv&AB3UB?i?l
z@XN6>7c@1nPv=QViBY6fcjkCVhdiIU5?b>Q!{+z&p#1#Vx<0&1e5v5;`Feh;4tFB7
z7uO!2$yFF3IyI~gY%yN5NR!&OWXsr^`n5Comr;WS7bC1EmEK>L==;XWK&PmUnqhYM
zzyUcr&@`;f@79|t?0XJ<BKH`R^TRZ!(4wCtonB^rzR|a^Q>mr`N8DcU5`y5_yGOc{
zy_e%Yf*d(@u8ulb&%i)+gSJ9c(v1IKrAt9)bLnHj<2FO%m83bD$j;usWS<KRgH9_q
zC8}|SgK!)m6Uuxu8YkUEea-bAjLInZbz6KTEp+BJ&=0(v7Z7!vv)K7v!Q_=6KY!K*
zl<sU6&<yoK=;5G8;fmqd3{g@#pach#)oPGGKwds>VcQNYiCuyqz`CB@boeAEBC0Z`
zX<~}r@ht`LFCBn?ks}t^uKqB~$)mXTrS}g&zHULPxB_QS8<b}E^a$!C@wig{>gQ#H
zVLL$F|48$yi$6$RO3@pvhUZmT_J4}W|2gVmMmPslJCQK1zYN0GL#1P>QcZW3&VHph
z#~p6~1RDsskx#))?d$KfA&47=>`X{dOG`@=Z*cjd>C+_;5<1Raf#RhSAqmgB53tqv
zylF-@nb}D92CMlxL1yjW;>|aJU)J5f|2z_1iG6An<iL)AfPlLP^psQ=yliZ4{u>o`
zTU*kb<}8l$4NmYVJmSm4XDO(p+bu9cY>q1KJUzY3Mrw62C}d{_Om_PY9gxcuzx3st
zMEUOosC)F<l|2r)8uii-%`bLTzp~CmD5?bIv;@>#=!og?`yWO#?@o2HdFj1-bEBn_
zE?>SJ>y5iDX8laz1{>kI-aOv43p=9@R+Q;QhaW!7P|4nf-4?t;!k^XKrt7z3&|Wi5
zlcTA9eTVMvAwOo8`_aRPRZ}0wZ3;=(f(6x`kc%t#29r}{`u(L>#zJa=h-^t-m`*j&
z#P>2gX^66N%uTx$4i1omU4=7Au#OxUTW+SuP!|fgAsQMz@Oyj2uaOfaJQcWQ>Wc0(
zH3bP-8nHIh=f?$|npKD}*PA!0mdg%RRGeu!3~IZ$QAI^%cR;|c&<gatkyayXYUUoP
zxbxCfAu5Uui76i^%%i&6R6XA8Q$xcH<iDN5V?C?<UEu|o{u>V-$l<gtn6QqAh5N^>
zW#81K;Pm6@AOt)uu(j^3v17(;fO`-XGHs8s#xYX#@dQE+skxnw9v%{{`oqn_Jj~K5
zOD&}E6Po0UWQBq~S#}|V=E&(Lu6-4J<=Tl9SxtS*2yZjZ+WIViua&o+PWW=gVA$50
z#AS>B@L2!B%#@9e|Ek!({`<{4M58F<g`{{<IO%Mm7DOO)NX|b?pA|@SXEVW5Hh#Wr
z-@d~SFC6Fc@@D(i!4o%3KNNj3F;RGD+uuxF8my?Lb!ndYCUq4Oe{bbo;$`k{S=>u!
z=1g7L#Ye_D?VvhQ(+VV)4=-sTzgu41eAd{us01&V(c-c&Q|O-20EtL%@?)6AXZ3ht
zGlnSEX$4sVN~5F{LvBBQY<1tK?dN5Gg?99R_4NAQVkFFnXZ3n#p;Qa!Nu(gh5#nrA
zMjz14YRkB3;@UiyK-bSG<{%K<Z>Zv}TYv_H9Gxuy5rePuhm1IV{cDXqEO-l>L+%oS
zGAcrS8c*td`dFjm`Dw$9dXQdE|HqKnzJWh53kEDrr2y&k=k@QeuK3ON(O*5wVec%3
zYb0i2x_S8U;d8;dP&+=asrg;hKW|DpAj2ZZTC@xu2|)ilCPo=5O4z4Rl7w0*G!VEU
z+Ezy@T}2M16zR;Mq=z(EMA`|`0UR-E^ynFADEKTzf7!MC{NE|g1Op@t6nsIbCz;7h
zQAu{bzqQ507b{QacYWpMU+Mc}GgHTXeU~A?B`!D=N<1e`<K`S#ebHfHC_1$NI-W$-
z>Iu-*Qp)SYl(0{gbg$#3@1j6A@s%zZIdNiNQ8+v%VQm-s9|9J|n<B^+M+>4x`bT!*
zZOO{ZNK4BBBRYR?afaj@T3Km<DTjc<L`p@_y0ufQnbrNWuSuH5Q)}%P>aKh6Ddy=z
z-~T#}Qx|++Fxg0jpNlFqXj`5ARlco?gLQ3A>C2b)WTH7ATw~Od9>kk<#S#rVXi`!`
z-1;*)fqAD<1vif0vR8M&i1yd%)2AIDaXJk)9U;^AHf$cmFxP$g{eT+7Rdgc?>iusX
zyQ;jt)2Wbgo9iq~o_-}^<16={KXc~E`$3nZLgv?XSQuTnyHMeWd>kahgbC*rg2Gxa
zpT1dBUz3L+`TmtHUlRQlj0V<LuFrCL^~tpJ0gDgS8UQ=e=*Z1prNV)0w0N>g#+eWw
zZ~SuppPzm2rL3g%oJXWH<%{8vXnl)Cnh5)6&#sNEM#Vk}zSU`k$k*L7E{P)5?=g|f
z{PDwC%EC@Ak|bk=c7R|D>V#%V6K4l9!7M$!-PU$ogYM{B2R%0K*uP&!_|D)RjayC)
zg4TizQSqVawEeKSIdkUR;QTi?H_z)gveUfz$_lCxX=&q(6k<@+porqH@BY+p!n&hx
zhT39I)tf)xeEF<T^8AAhm-7f<B(A^Fo@q1k6Lta<ld;8<Q7)v`o&<$52!9|7bpsUl
zcQ(-r_L3s^ZVd<>;vtWoqU@^o3#STV)Xk>0ex+{KpJD2yc1SP7(-Jq$<G>pP#H9`Y
z^lfhT_~SRO805#^+?((6<@V(yV&wH|c&;q9vB*KU26p%_Y-yyA57J0wG^O~#g9q>S
z=+><$be6FU5j$#?RjJ?UPFYwEgti_Dn=81y@E?i_3bSN&ViHcbe^d}SiL3j?%+USA
zz0*Ol-tc?9o<8H`E3W#&al2`UZWjqhtka6^$^FZRCHwMk8Gh^Ap>XzRU6c}9%xoNO
zF1Z_-hBt3Cew@G5=+)F7qMbKnBI3@hf-teN!~AoYV2vMVRUWbFg`Hf4e@FDK%SGlN
zMs$H0yG~Zyx%nTzzpp}&MQMKECfR;q7h%7Qt5#c#bBa*vyBWrLYJh%ROu@Z-CYdvQ
zGcv~G$h2?v7M}b}$Z!{nmN<)~h>sJg2=?ol4d75q53-=I669oDm^n+?0Z;P7i*8AG
z#j<P|;J=YH2O`(zGKT0QP*AEEfoc#1H9YZ*?bSGkrI<R?`|&@{v|Kt3h1Efnk)pW0
zUsfhwH?`rbI33knl)w#4R{2w1eV*ltwQIW*{pu>RdegOc4MIRyHoom^&0t|mbgFmt
zAmVmKO1-@?wI@WH7^6^J3?`VXIn`mgi>mZK7eeT7w5jxYj8k_fC9;%aA(FH3@#{>P
zJh>nIu-Woiz5zi&eU>C({MUp5wRt|7*A-RY&z}%56CQ6ACHHsy5HopzR9}&V-X^il
zcwe4|o>8dM#&t!p-Ac=k8Jn0$_wKD&?n&IiZS}`vIXO9T7;m<ITM1n^d9sz`+)C?n
zXF`5nRt@nwIz?aeOMMyH$o(irVgRa))Bm(={p(ROTPBVqi0E+erhV9pP`>+YnMcit
z&rQ$KCUe7#aUOH!YFC{`ruPV$zp-oQ&VPKUzyjp~-LpGlu$KF|4ZD88w`0|t`N6xT
zBAn)!UQ+-)3!`LvCt7DIXi?~EG)KRNm-m1C$$W?Eo>>Y7p*aUG_B$DmsVa)LYn?5S
z#4f|y?N{dOL`nGpxpl0p4)Yw}aVOzuWk%fcE($xq-SvyVU@+{Ej4xx`9E~5NHBGx!
zt+y0-EjwuCiWS$NJsTuABoNX^K&$L*^H0&!+_qN@p29SrKMc>@(e^Qdk&qGp4wuQ-
zfk`XUhA!#>8a7wdSDnXrpu2CsHfBa*f}D4thUGa4tU=NFt)8A2Vt4o}$Zm^nr9i*+
z**j$vvlOJ2Z#OeLZJhM6*fWo)&U*~f8ZO4z?*%|Bj2eYGeh>t=FmE{j_~vT#$sX}v
z7|%&^UikotT#PKgOjR3R7s+?**l`)P2ThM-g^*2%eSsv0-}5TTfePjKtSYQLX^!o;
z(A+5~!86uby+q5{kt6*@g98L-z?EH3!84m050u_T2xWg%Ps&ZX5nqUE$ljm6>s7v~
z-H7&e6)dQr?6-GsF4Hx3Zl+-Fdf6vV6}!o7F7D1|=xkYoVD+`)#3b4{(mg`~@0-}z
z(qI?!v_gmGJBmKspF!t{JS(H3=Q#*4YW;)b>CE<@$hC-kX?<OeSH7Ow7N-2=_L=DQ
zV_LF;zkJU2Xgu}C^Vpekn{U>}559aTRrs-mw#gn-eZCJb_bkn}zz>N6v#`mFfhV)p
z)*h*mu_x)fd?pb7#~)Sw!|^?~y;*IXY^y7*oMfHfCBgwlAvP1%*IzS{rvg{=`;aN4
zM-3Tr;%Y%2m{@Q^cR$cIx7}^{L3${oAHcNe;LW&ynyQYuTKzGwb{jIKOU4OR8=J$Z
z{GIjtLUG}JSKC+ELs+#*nZ6mDT-F%9is*LojQ%F{*K4RVzMFy3Qik&>3Qt}SO$3de
zqYCnUP;&R~RRF%PK{QlsF7%HmpM3LFx(aIFG({K}Kpyi94b29aWl)I;7Xn>D(g$35
zjK!lZ4&h<m9rEF&G~@7BR&D)Yw|G(gaqQ_5VV<n2swy<?q=(;vqhK8AidXX3`cAT7
zHDMs(v2_UczSOB>$00+8NG@EsAUYpmFH6|cGja0d>okz4v@Vnz-ue*rQw$8*S$vb!
z#h83qtA<Y~<A0cG7B|q&jkSVDuag-G#qwhrg-5P``VeZz7BHr)RSlMXk7tTmHkBz6
zri*(qeI^LqU+O*I_XXEe&(Kiz07k>*5R=$)4;49+S9J5Y!8lZme)*w4T_0aAd@U#{
z+KHBY_W_TKXzH&y)JVS&pY^esgcB;}j`T8me1nFqrrPc#c~M^n@084vVzH@UK^y2p
zs&{$W{relLa=M82;>wAFQ3FqkR!)~(@6T_|gx$~aA`~@8gqVBl-g#cR5LpC9;NNN|
z@%i!DVqW-|n0ek?zaG`EtWennD*>Uiizb?D^x{xqMoGP=-!U8VKHy5|PbQ1_MvRRs
z6&^0s0KvIOM=v9kb?)4Gp{wQB5T7N=z5J{vR9Izhh%BuZUR2Zw-_5gT?Yv&TM~dBT
z9gb>w^ui6Ia;}oYs$0I8skLX)`r>nqga!m3Nv;w+#4rJ!^3cS*gp()#q8)s`)95gw
zX~r_F@V-99-ytb?=EJ1Sr2XyFd&1yQ>rnr_d(D=f(8W@<jek=jd6vC32p8bBd-qbW
zx(f2XE!26#hMSGy<~0A(pVX1})hYPLW8m=Y%t?+u*RNkcN79S>AoX7mW?w1YEV27N
zJUwlBp*qI*h+xtK23VgNEk<+*=OjglBxP9M9lFyi{R*Zx56lEd_%=hRbRE!!e+a09
zLFQ{SmWs^aXiwszmitEurZr<no2eEYcbRlto5DOAvwn`}bs0&_yrIR~vp=jIE*!LE
zS5c5Tenrg%Fd99-z+1`m{2Z_Iq?I8kGJ(=JBd%8RGK3jZ^8DSq0Md*1X4z*hgSQ|(
z4Nq4pLpB;fD_U_1oF&Bia;}6szK@SbNyyi`gidc((x@%m_9=LNU7?Xx{qdCjFB=fF
zwY<NXM!MRYoy13XgMj?}_3HyQ-ca2B$eq=EFG-4;uWQ{yY09s@;~ax^{9GK2^aoGj
z<57vLrM-PcaGh1Q#6J1_c`*h7YVj}I{6)cl<SxBuy$Z8=b*v(E?#8W&-gMw9NPTae
z03c{-ZT;238W_5NztXBc>5L67am$T5^s9!KlL-9`Hbidqyr_^(l%r^$oe{E<ykPcj
zADz^jLH>XAT8KB{i<W*odQnSjeYS5i9Q(+zGt4e5pxWF(#i3JuCu@;(@G;4htv|iO
zYqn2su5857-nnLzh?vO4Vuk0MjMxoXy-l~**$KCjROKd$p`SK1<6u~geLG6(ew1!k
z_~wonUOGs=v#Xmv!Bydx#;XoA;W(0AyHWdu{{TU%8YG4)*VLc5RFE@i!jcXWpaxP(
zL3)IO@PY&T!^@RSjE!gMhY&qRj*Bys#!xN{{j{@5B$+O+qyh(NOVM{7{!a9(q7TYE
z20y8qlplT>wtxRl5inI1YMQxRbx+POaQyPFyr-<H>CN*=O`6MelU!96!>};aObIuV
zM8Y-t4F^<sa)(C~zJ*+QJsx4$tJTBZeHm#*l9J?ihwK8by!B;@kFjwtn%ho(Dopur
zky)~E^Lp+1O}?sh`@`a>r4=8Y6uRDQoUZ<`!=gck6gj5Vz~U`k7{Y`>*H}&BbIC$Z
zxL8Y8>BEVM>N2+Uop)`w?%j3Y@7%ew*Q5C#;#YJs^x9|fVf4$mqs>*hU1`rUY_g-v
zjl(1S-GVb3Gj^=+PyE&S&^P`A6H<he#Qi&yX_)3mL$QqEhgD$!#h8rul%%XOUD8xt
zSJw?QI|mEJMa(7P^d7vqbEZdFUTY0(LGGYb^#tt7ys<qXpA!%pV_IWkVqS3HJ|Z>{
z{Rz9zjQ1FSEi7D_bP3isfJp_*kY-)Xa*Wa|>W@@xHBq@ZnPT{M*Rz2kQ}oUD?X0Zu
zM#p*8bJRhkKhd<UbCJ$IWn&LNy>JNFVOkI90cmNdMu|f;{zbB1@%oywP+2Ws+?vYb
zmxjNEoj=~>ahxAx?Kg_|ts@xL&Ccr&^DazF0Zg%P|9Gh|@boMNBM*gR>VmOevY_AC
z72T+34z8~xU5Luh<=Eo9oSYL#J)#E?Q_Z4fmE=4l*)k5_{+oNNA!xV3ti0ah(+F$M
z`!U+os0>*aV^Mc(wB2tY_mOF>O|^gha<~frnyHf+{6AO8c$HR+6J*}U#>QJ;vhadF
zeDb7g!EMTsLz6b1DoPej#QC5Hi&{5JIzP0`rY(7<{I3^a8~5f&y<sy)M6`4J|Fp1W
z7fPyaJ=F+}z+EFRdwq2gen4X0_1008?gHo#?nRAr=<wkKwFdY8>rghiE>kvBkYx*+
zlF!#yeQ57!FX3DJ@;+rP8%~V^Fy}(>`${=*2yTDr(K2%Br9TYqf$gJ^F6{%4(64Bq
z!JL6ZMH6XK9fh$r@^CTY@;QXs;>0lyMlU1wBqk-<C_E{-cTa7@McsWSU-ci1|3swP
z`O7xq!!;9HyJ&xU%oXdycR#qgVnA+OzqceMUVB%+Dt5YF1=_yy>|W?!I=R_j%wLJ}
zTkOw^+vB(+LhDn)xy8Nek5|~;+<5fhDWcNVJ9p+sx<(J1|9TGQ3=B6nm=p5xWkGM!
zdq<ivt_tU^Vd-A_w)p)*{^TF1$;@43WIlDvY2qb-@AVXOclU`A)3yfEWpv5wYcEmP
za!H-3nQ88pYdL=<mTm{x#1;E(O6@-sV+p)nz6@k1h>dM^Z)Z-DjT^~1fyJ1KRzY2w
zOEBMn{{^{xc%`$;*56cI&Zxd?ti!&%1A6DKpqmgmv;FJ;YVu&L(BB_{%immvc|cPv
zo!C}z^X64B(_KEBSAM4<ZegoELJaL}ZD(~EB6P6TYcP>Nq_aBA4ujB3D|Q0vnGp>a
zzE+EC|3|#TYhgq6S5P^Gd?)B(%rzY(6ybv96L^yPYdE1v@MNO*j(a9a3Dx7R(l!y(
zKA#z$SIJ*YIBze^Ji_52Bo36P8T3qGYP<%#qCHUqQ3wtHi{*t)aiw22B1wu)4ACKh
z;ZzPokieHT@Cm&hBC?9`t<werXN$aV5Ok8$*FxD&-uz7hC=`Rj*jr%EmZE;VqI~K+
zXMxffU1S>m1C*x=y&E>j#ECXD-DS&$2zs1Z16-<;_+Vk;rqhi?2{&wV+wo~zr($s$
zw($}`Z8>tC-n@CU_#pVqI%30Pq|vX=v2SNtz<JeqzXL_qM3<MlKMrEzuryk7JCaG-
zsxm1uM-Fu3A86~G)voW%&;bzX$F$`~;aUSsa`<{MJwdV!d(Lu>*C+xy+EW8n(Tj8w
z3yXa2$6YoK`X<Q#mn%S8rFW>QpXqcHlin}{IosNGkk~J<es<Aq{T07qpW+$od-T|`
zWHwJpglA8zm(((oV-UeCw=2cr0~Bv@S9JBef|@!t4~7*Sr9Xw99vl_3sY_%ZA1pTd
zAmv^v>kwA(@L}fF_j0-)qEjlK3>OOK4L&h~JH2?J74MvwY{G5NeRf6Rfcl~x)Jz;-
zD1&}ft0cCu2AY3Y-SqBeO6S}CjI;QwFkdZAQy)KGj#iwgoqo*CRQU7Hb`0X0yD!5e
z+s8X*Kp*9Xp9R{p7bQp@;X>)<y<pMe#W$cE4n4%MY$Cv|u&|(;2jd!UdU|eo2UbFS
zTlCX#_}=2B9?vd9Z;J_`+r5QpNXQyYevxd$l*5_nAm$+SH2)30F=l{G)|VyWW)9Q(
zFm`$rjggOq&M3Kh>sD7}&>MshXW@~#iiKD-<81Hn`)m1OZXsWJkFNs%bgR7H>p^2G
zV+r7Yx>Rb8P*>+Acf*kDo3Eg{7T41CY7Wq?%S%68nbf;rqn?HGz0y)08kGFUt@DYt
zJK%Qg`?o8wP1sI;c^AAxY-n8_z3i%_+klDZ^p2lJNKZJv^`|_2wH-fht$XTb9rn33
zzhT0V&bI4jIiK)T)a-LuZKM6FtP%O;6*gnn#=d$s(WqOhgH7tuMTcJ(nyt(AJ-p&T
zs*8g0I^Dmo*7x+Oa1M6f)?vb%cVFFG+$+kxr+%rqGBIM~#F`B@$JLs>UlS_MEDgTa
zjgWWl&3;O-Ic7;qpXTfdnc#SL2ztnD==%doPZ`GpV)hFh!N>yY61$QaQ-!Y@CG#Ms
zEUYe*u<1zdmjAT%3C)FJ7>{r>m7zUv;*BWfPel;6%5sUhy>a(F&=^~VYj01eG&MEd
zZ)<BS=7HlBS1D<LrTvESxs3j{ZnsoUvS?G6{B(~RGM2>KKPWv1Z1`*Y*5;`bCQJ}3
zgy_A)K5$T`)o0?1Emf2~(bGKC=tpt_9k9S7puy@hZ9L+$S+RICDu4fQBON>>^OLtd
zr3Hw8-xLL*30GMERzj3hgSYYa_MOr;ywG9gXL;3>iO)9vnr0;?T1iHA(2d`wFKk<6
zkiLE735w>Rrh|X|HS=&y9b~FeG#-L@DyuuTpTA((feO938_7@s+pvAjo~_Pi98weO
ztRGC&GNIv^ZUhzmQmB&@hZ)AJ*hyz2=R8|hYAQo`T{dqvx3oN@R7=%g8!>kI2PPb<
z3^HMPeL()-GFyxm;o!g|8M(%6Pu2VPXUmsvF=U@@u+r^Aqi3#Xs@vbP{hmCgz8q0i
zRP>~*%uMW?Xv)Ci@5mF&TYWS;JDV{{p^1U<wP7EV*S@O>I(hP>S<sJ`K6@9bsj8}$
z<sZ6s>(;F|S6nECFSE8v?&%}uNDrhl=z7!*-Oa%zLC2ti9-kQ{2Bp$;W4vtHiIRqI
zpbqwVT#f-*K6*JI!#sB3p8*pSQwQ6c#Tn~@oXn`u_UM#iP>KgT1Zl17r7_<HBVj^u
z=!P}dvy4-acEw2Bymw*rz0+hKPvLrc)u5~D4I`W9FW9&0x^Cwx8zq})J?Vst{bbcG
z7ead%Y(6;OJ+YUvfu-j8CdZZMdBKHGpFVwCy)P3``G$=3_}ucpk_mHL7@(Sz=JLvb
zk-(N@my8Q0BPCh|WQ7D$q?m0N5=~(<ZLV9}pvjwJ8<svSC{UR>`LD+z=)2<6a274W
zCF3p}&O6BHpU?Prp)g!rT@9V@kp15A{m1*8RF8bHZy`fN8AH6j`{1csGpCIe1u>DJ
z6q7E5aMql4#i7H3;G<8`xpA|kWb}<s!O=o7h{tt?+boVETlw3Ppuhh5YpG|gvUsiJ
zk%GHkV-EA8;OSy%gmT1;7Ieui%=TgtV})<M%^uu@u^Jtul(DuaxPi6A?hAa|l=|?o
zA-Itcjn9&0&G`oNQvR3>L-e*XJDWz{v%E_yO*ibSsGhM{!W`iNCeuJitDotK>Fp@g
z#rt~uDD|{dAB{8oeaity9v3(Mx);CxV_8?3xb{PnQ&aD8pZD~z$I<wJlYJj(GOqX$
z*pp(Y@6#=G134N+UjPOKM6t8&o6?j@(nBJzqF)2?{fz1czpd>`aTCf67;r{G*Wa?$
z&VCALb++4BmFB9Cd(>slfKo)lR>`<o%YU2ORD>L&;#i!cBC9bsIoFQ^X3#h(^)T>7
ztjhKG_b&w$jkC+^W_Wz+)4DX{P57<@0)h(<j7Y$~7JjHC8xrk=c>PRZ9w%is%<ynD
zC?n=!moX=myw(iX_8hmQk@!<Q{N_R1`nDVm$9a~)@&g8}DH&bTkN7m#<;t0Otb<H4
z3?=8;$_)IiQ>R+SWSEfD4ew~UuKDp0z07~dUw?%jt(0R9eD{-jnzTD`VefJr*7yus
ztk=>wc#=y_^t_Zr%vY<pqe7I5eyCH+qwYJ<q8gT*+pd$hCAmo^?$oJR59kI@CiTh4
z%d4ntP7Z{eiN*3^UffPA(dBiK)0$!C-}mj`y}PsB@_zP%$=%;js9Y)TzqYhk$|PWF
zTFg(r4_sAYqncXg#fz))@#k%M&YM`pF%Yq{AY6MD<yT(KNd0~jH!M3WHS))gAFt}`
zk0)9iH+mG}>4Ek(0>HSUe+pO8j2SajtuxOV98iy=*thg5PQ%A%U$fE0rIfwV2@FfM
zpoMs{_qR0M=}Dw##@!b1V{n40G96ddG&Xp7z;|Ua{+I%9K3TV%Gr<baXqprf@P3Fn
z_h6i}hgTBbYww6C^Nn#_n;KsmVr8015q}@#B@S#DabA!?0D-d+BS$Qm3Gr*JiQ>DI
zPY^eCK}9l1v3$3*Vj2V7e&E0P2C4Dt_3Kk$);K^lt4ZgU9YvEb=Mml8AEZggdU$*T
zE`_&`(-S}++|&8BfKRC&JtzY*nO0&(4>hT4nxXF99zA*h1T6fQ>}f-`w|l~`btv4g
z@3N+%GSE20y5>bRMbog{>`6>6{GUJWUPjSUhhnLB5!3cLzqo-kB-TzRjNGGt6HBkQ
zXVWPEckSD^Cwfd`ONhSz`&Iq&iM<pDo+*vWb^ASlFs4f^N91nqW_`&$87D<Ve054F
z2U}iOK4i=#_f)>u?0u`|&D#Sz5lP~XaZ1FT3$xqTnTpe-?m+8ARWdxzsI#mPFg9LO
zevK`&F&BbIrLrw{fq!7&_^LDJ6OWFxnaX*aC&XGf$f&5OCia4>A~BTpIq^t`1ynC<
zYn?V-W5NA4D#75_QN^Um#T9KMFMZUBs_rE>Sag%}d=`{tf$|T(^jfrtI(;0)VL;VQ
zT6|VqR4Ai>S0N)`@NUge5@Th##|9g}G;)=#asc`Z+yc9pC0ajHAcmyfE?%xCJ`AaQ
zk3s=SF8bY1Z);`s*Zj{qMcw$2CT8F|LS%>7c8xkKyLAn4AZ*xzK?#9RE^j%HuP_0}
zy?%0WD~mVvVHDE8RZKSzp0?HJ<i&d&fwNOJUOe0xP?ob*gZw?0R-p6oy&qw5F;V|b
z&+_5E!}ITVxwzxWs(k}fFIYNg!gt(<?&V%>+thE2{ce$5=pmUK0<9TC#9FN0et8Dm
zdqD9eTCnajE_Ghf@Xw!K-%da%h~<HgKXQ-qRFF-^UCZy&_KX^<Ii<UPa{Xn7125a$
zFMKF6rzaatismcc2>*P@CUwPL-5w8oB7V&y{pUa}PMI*J-E;k#ckfoOvEgwa_ikQv
z;Wcx8&g)(R-smTHIz`2KIXRmj&c$08(x~OtvXE)M`W70_RekcO2C|^CcR&j>k_+!P
zYOa4)q41O3S*lfz5DtlSR;k7(q@|^$Z>OrBgS74f+vnXG?!W_#(>+=ebUAJK;*2v4
zvs#lwf$@MGZg^|hPrL7YeYvE7xUh4<)8cF!b{>na)<{ejKu34ijk*Wn-`IqbzMB`d
z+IXnbN>tK@@1!q(2Cg1`{k7MXb@{Gl=VNv*3F|GV=%CD9lq<eXDf)&MnNg!po>6(x
zn$dFXT{Va+BpF?Ml0Z}{cd&5BiA&&2`aM(VM7$!v#ZcHP=gL*DeRgTm%nKbl$ltzk
z<Hkb)FgU*Iq7P$n&VwsG&%Jh?@?wXo)9s4{U&f1i+7~e&+hI+9TT$@Qv`yBYM{{Kp
zKni-?hqTNQiI(Z6amKizlD|#;ZQC$9y#h#OD{^o&m9u!u-gb7703e&dREo_F4a*za
zNy1-Kbx=L-lO|I>%USbpJdglOh8uU9XHNAUaD6D;(Nmnjw;MU<^Fg$iq+wbt!QfWO
zw!RQZ>+2R+79G9|ppfa+%QlDM3MC}Kvp>HO9{c4-(5yu?UC>y(Ka3kRACi4^6?iEY
zYF^&+4#D~jtH4HA5j=lg<3_X^E9*DI^kK*h+<YFH@lcvr3evaXpp8!)e<}Qs(I=)C
zM+#W(96rV&rA}9mKCR?8O|Pn}Px8tShs^!nW~YCcF>mnD#@fYv<}=*e{?4Sr5cOX3
zAI4M@J>w=@T(5C6ul=_CZ03iP&b{OotmxBa@D%W5%A4rbX9*kqmuSR1tO}!NA!bVU
zPM{z0Ew7-EjYQf3?pV%GU7l}mMlBhjd-T4oB4H~<ca7n-dL%OSXIrgO9Vz-xEcN;7
zz$aZ0vLDDssi7~jOM~SQHUG+2t)O7@KHYvJ2tL6D5VUEc==#)M^S-@2M{Az*yht5i
zN?8@fXXn=+H`_RkOG0%vZ%qC~vQ}P3`Vy<N?<?NFdDEgdKWMDKS-T<cq0(0*cP<15
zg;<|cPJMcLiv_u6f;dwNTibpPUD5Hmvv9ppOljrTtABa_<TUh#>d>LHL)aP-O^|k&
z?f-wr;A3Zh)9vcZn68_0KFE7A-ohn=y*|$1E>m$Ndo!|v!+ksINF05N{!5-zxphXb
zO%gGj0UVY;lCWLK`RWDPO(+8;B~VApwF3B#IrdRlOp;3-{@O1v(40&08I{=d_E>Nd
z+d0<HhTW(hcBSzVq|hFnMBeBs{>jjl`!k`d7HbtNJ0a8;?o-^QFRwfj94Qy{2z$;<
z(MqL~rPW%Ox{8J*>EoO`fi=qpQ2Ki^JV#bm)}gLHtX#w7h=p;+F{TtWia+^%CS``A
zV?fSXloDY{k9x@!<&1PMm=AU6*w9bDZ(qmcA%AIt<WIAJ>6UG!z)c}GI$gT<t{%BA
zSQemnt18+1<xOcr)*jz(1bN+(b8=8==#v{f=)LiP8p2peLPCP{Vv}f+w^cwUVXq)?
z8vM=S3G3I%WV|j6n~TnIGkC}9A*nfAyI<f<DGq$syLYc%Q4k9K5Z*t(s;aUbop<}T
zA$e?v^i~F5t6W*1O&(Po_$0Ix3%cDFn8YA;<KRPp><3YA#>M%LuWGw96%)OGqi_hq
zkj!^JYX2x}{D+6b+U3Sef<1|1pT2yVP=)M%D?dN~($1>z(RP1xAXem1SS)J3C@*=G
zPozFeB@;`drpPE)etuic)mR|hrIY|CMY0AT+@*|7LgVX~FDhq1{J7EotiJwrm==r?
z=ja4o6>_<O3?hhRhTW0ZUqv|!y6T^d3a`8CIMx8r#-9b%6dvi$)w2~p+>QJT$Yl~X
zld7eRrVT~t?ku9GiRK)0SI9~fA`>q5`8R(&giV;YIPQ`-aeYGDu*|G_l5rLV@XX|&
z%$iGk(-h48^JZ<+_~Nk_RTiGurhDxnx8m%F-@@eiG{VsqNAJY!n#uZaE3#4<eClMo
zLZ$!24JSU;6tB-&v048+>vq&H7|drNBbx>M%<^Z?niWf-Guf-<Tyhe1=vzv-l>Ey~
z7|+|x?k*ymec4y~VoqQj>+1}uSB5n&Auv4#2JH<z;(Rmbvoecs%C)8E0uH0}CSF{0
zZrS$S`WrNDt;T9=KCnL}Jx=sRmrh~HfcJJy@rV#hL3wB+nlBU1$4?77i*#RHl{JY$
zN2Yz^|K7RtO__xazv<+fV-dF@%}-ruyoVP(QBVWBFViMXJe`$)Av4ob-ToZxC4Gex
z3$m&;HtcOIR7<jyc`&Sr2NnxMIlEy$mlRQVrP0pc?dK$2`sA-`^qO3<ziML{Bd?;K
zH;Het$@+WXD*Ps%%uZLAySRHKjwC!C=e~J+f8U5y;Yi!j>|rrEe3n&EYP0L!zCHZ1
z_2w9d!oE*1S(egexqpoYS2gXz!~2xZQM-rz%>BHey$EQozwV%RHD4GxM5Xsw|0R7#
z{j8cuvM|S8F|Vle)#}$2aS%hP_i=E7fo=GCX-nN-bP~*gRf@e|ZtG8gjnkXEkwaJf
z8j=6&NIut}vrjcx7ZfoZKoep+<!r9&DT4q3_IanXkDd!yLd_nk?Zb<Z%N5J-=9&xw
z?_NmuhNcsH%yR9}pk?Lc4#aOQShDljQfSo+@ZvsgKiq_fMXa*mQIGR#*?{Y=uVCj+
z(@Q(_k$%Yo9I0vc1-$}#%pw~aAp;GnO_Q^s8J^y@#0k&bZ&dlTes3&h*F;$4q{V9K
zZEaY>$B)=N0IL#cUpaT_o52);saYn~oRtgsR#<Q|0m?^@P+<bX)Lc>2mtm~^s+pA%
z&8U_F1iJlNXTu`a#bY6K^0ZcpK?M1R`aj}BDpX@UdG!KrkC1#ikmhn4<(72O*493I
zp{@1vyVLaV^=qI?rx#Prcjr!}$x}%fLNB6AM?E5euxU`%=4$of;>V94XVt*G1(F<3
zLVzzJF589VY8uy7e_;-@5zuXfzZ*$vC=^;kWAQ51Oe_l6@f!U~jM>JTtKXb%i<Kwd
zDm|Xy=1|wz)O4S{T@Im_XefzA>06C<`}P6DO2)5^=dV>ab1g&z=lDq$UKyTVxgM-g
z(nJLg$ZtU<D8usno+;6fD!;(BmGV!_PR)~tr6@c#?ey6tSuVO@Yzw?vX^7bN`4C&i
zZH)BM6y?AV8jbavGnr3jxyi(vJql?Yj5&Ef*zU^OxXTR@dE(Z(kBH>x#u7eeOAC4g
zHTDz;eDROIdLPm|=q06H(#X{wI&i=Mb-8_Fq=qS&>KMZm_cbzW@f~|J?os6J_2x(M
zL%pLsTx&~nZTAVH8mwzR+2d1m!(%yF*%(Yv@x&*q%bw{XAeHIN5PzjS@tAayRk{JA
zOy)OTz6-Vxjfg)mVCG%n-(IBt#~(K6a%NCgii42!adHRE$$N@tyZ%yRU|E2VUUJfe
zhG|<-iWSQOmTUDGPDTC>a#NJX#&s)Cv;^!4UyiFfuV%@XEn5QCC9$L!I*^2%-0&sp
zC5Tg3KzX{ij=jnr{M-LRhmY>J_I>(85{_BJgq!dSfrftN`k$ok&`QDn^$o4rIwhZK
zyz*i5$B%j&%dg<ZO#ti8{ymC+$#T;k!+GL3dq)5sZasN2#c)y{J4WiYQy#m!<c>40
z({;oHcb8gqZ`W620`T5Yq29-rE*?e*<3^mQhUVdEGNviilwBrSnVE06h14;@;%pgZ
zzI^^%^oqu0{qg7lICf;8J_k()Phhy8_s46$k1x0ecS%yc#|8<z(649U%D2tAbFkEI
zB(oZXy2qNy)g`{FYW;bzkTwq1%ceOL%8=Yg<bKD3cKFnM3D5)NZqSq=NK#><q`uf2
zRVfTGFfa@GdS;vl=&9jwGFU1f5WJf7cH!k5Np-M@!?|GeLBZ`Y@X3sOu{Y{1$s`u;
zNX+J-b{fLJ`Gedm4ocwQX^GiCzumG8q$x1^LjM(b8;rf48V;wH)t8%rxcY`mSi;oM
zlcys*4LB_3U>7rJQt@O2UAL(=gl9NNWgG<Gp4$<pSG;|4K1p0W7^TGket$o|5{R`l
zA_Y607xH{fk#=RtQhYbAfZ>G=FLvY(pnSY5i1YTHq@v$e!0J2*{&VJ_M}y_%of;kw
zvVlMOoZa?gq*+a}0Dol^AEpDVX>eY%@-y2o1pP-Uy*OH9$dKuLTho0Cy7xgif>sel
zE3bDGGTXqZUY3k5IDcqZg3TfML4y(ruB%W33y)9Bh6Qr^9<XQ6eg4@d<~|0r&zML`
zTF5xg&|{TPpDrQXY5HW(A%XL$<7vF23i=a;_Xqbws&nUamYeJVy`HR~3q9%vk0W<X
z8K?dT|LQXhl!>)x&p$IL8@(-Eu$S~&oPK+Vpx3W{ERL;6@W^U%J>`BDoby@Y!CNTz
zP#9%&#waAXH$;K)uf-0vCThf6AfA$qs0Q-c!>W9;c~y&`kj;riFWF8A(X;5%R6Ly1
ziH)QE4MP`qt6`PvLJA9}0x9VW8V{@V=hC?&;{XbtAD?fh1t1+&gF&HX6BBVMb5iGp
zG?MQf*<Ra^1QPvlT|BWvpd1l?NltI5tV*a_ND0cXZtj~2+iIBcQ2UBt${8{k5{=JJ
z8y4nMQ<HcZds<T*OQHm+clPkeDFJHc+8`jWo(p$w`qvBK<(0-fi0X_?+cLbBs|BUV
zF9vR{w9Sw#3xu$Y+uHUsFRC*p=5p%tGEu@8^Q#rDP-dlZXDorDDQ?pG7|S=1uRqR`
zK&Q}Dj}*kOI3o4zqX+8Ur4yL5^Z1JQMR=YQ$eFd|ZmBL^jIikAj5qs-IeyEkmb+|<
zvD<v%e`Awmh@XPlkhuscd(fJbkeN<xN#vz0<=}0JZlo#7J4Ab3+s_}UuluFjYNoa6
zZ*;qh%oNM(I81hneyFjNzR8sbE>C|${xx@dDas!93AM%Ywa8toep`7U4dOwK6D*=1
zewRHzD8v^e50B#^i=QFN?h>aJQwRZ}+1YK1x;x~RHG?j5*AqB4f*L129=#U+$lQ8D
z8B?wGzMVg^%Gz0HMJp@k6&d#QxxTV;_;g$XM$@Nn<JN{~XK<>&Rkr;+7~g(7#rP_+
z?c0aRCq<v5ezNZG0yrYWhH7tyZ53|mvYHf4bYm{R<tANBDv3g5phQ3A?uC^y4Ya=I
zsjlXg%*4kcS(JEBV6FqDf_Pz}+Rdzp`GqTCeq+8}it{+j^yq~=G)=sVuc-eEoEzE}
zC@U{|cr2WVI|PR+V-Kbi7soW?qgrehYkGd&l7J6?FM0}qb%jO!0U9X?6of4sZ_a33
z-2#QetSVWy09k>pU;xcI_8jlt1E--7?qz3B+1Cz1N4VpH53clT+^bXzTAgj=VGBqS
z6@-Xwk38n?A0A225Had;_SWp=HlBi9rzDS0FH6|I8_8dJ2XfE*+46K>Z<e^4@H|Cf
zcIosa_&s4reL0%>btSw+V{7%7h==!C0rL6Yf@%8x-u0g#?zP6;;RD!sHTcpXa7M!z
z#Bq^*m{ZnPWEvT-dC^KT-_yxmDUNJue*1Ig2}@Z?$b{wBI|37PEG?ZF!86(ArQYG}
zi}Ml?fGREL4J9=~U#vP6F<AdrtnT696xy7uC>zF2*_-bVv$NEzLH9B{DOa5SKZ#JH
zQdp5NL85evDiKJ0<@P^}8*n=wjHJ9}-gk|7<2Bo7dgj#MmG9j<^sI&{_DM$feig|P
zLUR#KK6h~zr+YN6Abgmi24}@}igy+dlNM%y3^^SP!O034DCQV_ZEbzWzb+Fy^cr6u
z6gcMn_em}<M@@bwepu3#Z}C_~#dA_&gDLEsQ-<2Yy<>TG0Rgr6SZrNOmdqAAUj%mb
z{@#%PskwQ6a%&V5o5Z+N==+$s;U_>bBDb-3<K>GN`|2#&Wr0P}2p;4<JoeZhQBPU~
z=T9J6P3OBOYYoq;_7zeP8zE1SKe>WKa*t2A==AhLI`2}fe?<;dew2(CL6nFz+$G?e
zh>n}CISCCIchqraN!^c}`Mdaf++m>#hmKenW-l`@U*E}V1xm3vheFQ6a24Hh@is64
z|7!{7C>;X?d;2zq?{|6|roPA+O4A7b*euPlL?*uvf+4ke24<#%rf$0jU>+3(H0+Y{
zq*H`ME4l(RRO>p82@x<-V@W(OaVfl^fr~ZeuYjb29EnGQGTV5NAC9j>L`x`SH7?hy
zqHq(W7C_?x(OLwP{R`7$LDM~5y?^O(4*yy3Ye9bgut)Qs!XI(OBiQg11r$)trOG}g
zUOV4ejdI8@5J)Wmc-ULtIn3BgCz`W6eF+t4>BeI1(}V`)NBf%fds&?EWD9fpnn$Ho
zBG{ve@C)*X-*3Nd*bLI9Cf#0&Q<;7&H*)FGxJeXgLew8$h50nzGTAo#FgqLn_s?{5
zyFR_oznl=fhhOZ(X$!Hvm=CvE^m30xNf~@3G#U61q0S*4WL><Nptn!KlSRjaF6xZF
zdH}g_)AOtC#L1=66n^O*4=@p`yuTeQ(USN{H*<59pVklukBX&R_}i91XmJjN_`{1&
zVs(|q+)e583i(T}uw<e>5TJ}|Q?PfhZXdDW|FHlxg^mdEsOZ?KlM3VT$&h7Wsr_me
z8hj=?9!-FNhAHRr*WgqsV?ULB4uRPW$P3r*j1_q@i#IUoo!|qAvJxAH2@=R>cIgQz
z?@>l<Ew^g&)}NOUDB@A7NUsZ#(+`4hdA+CDm-0AT?+0arh-S_`@Iqpo5DD}AwFM3C
zA_JTT0P6WKkx`mB@!`uoMfa!)#O*b%+tGW0u~8%Oh*98EJN^E<8m&v58j)%cB7-Bd
zPrD({z+Cigfb2cvGk7qi2NN6L2uX3nhI0c34&1BrP%NFlJ&931wSaF(oI_v{Zf7LL
zrsb08)=Z%zi#`&S>WIO9uI76~S;09up}l*QfS{1QB}5h#eWqd_LZ=R`x;{SR4|sA^
z7x`ni!0PevNJF1Auz6Gxev+6eK&4UvBMIm^9yf_Cnv!S>k!ajLSnDSTT(7Ulx>vFD
z*D)$6T)vrr_@t1jXnYv^&Hbiln6hjWK$K@|vuRTrh4-FL{luLYfLwS20teJ?QKQgS
z#&o>t_VNSRZxW!oR-E4Fz$_fb%5LU=uA;Y2&e>&2hueZB{U51h#cA7(Al-$SDaL%)
zB3zlFU5@>(b+tP0Ol29ShtU~ynnlF>uAr5|6t5BFMCGYTlcr2bpjr^1)38RjuxfI`
zQ1dhW$``p33}kpn3e5R*qEG^VhDJa19Wb@!d567&r%k<4ETqEzo#I2rQDsP({-1m&
zktoGvEB9nsr(F?hAHUR`r?|(PDHNvo0%y(iw09G^BZEtBM%-=;X(!S1e}7Jk4K|9*
zFum;eXo#90Fpk2AP68+A#n#EIAV^<Ar*nkE_bW^6F98oJIXq`G|KT)L;)*wu*mV<w
zMB2}p`@rE#>ZU#HfA2Eu05{Lrr+TJWwn+umn_*E$$+n^zeAZmaXHkleh^v|;g5Ig^
zOFvNciF#VM&j}*vy-uB>e`+F{Hs87Pp+)PE55$rnabWU72D-tq68uXtk24TglX9#`
zPufWaT6fLL2dg_lX$~QN^?!m$R*s!$Y?BvJP+Z<UE$sLVzO21<>3=@7;Nix;VHi>D
z)>I;}=gh-oGl$%kh6@C)Ngq^VfdUOPEKlfrT6bTP;6>y{qYV>v7X$_#rM%4B$e?s@
zzE=L-eg^GSqXh_CYdiFHKwD#ew#~B30470vi^I-f(b#`7()3^KDW{NYod9JS&-7xJ
z87&_$Vb%TN+N^UPx*~9Y#pNyK5AW2KOF@Kb6>uC*Lc{iLz?6gL-Oz1PIkzZ|dhz~l
zNTfKS_1w(*j~5_GIXUd&z;0*cvh_57b~=QnqYnT-O#nM`?6=^d6p9HLFhAb(!LQCx
zn}sC7aet}}c^9Sk*+wSr@g1I96MHT#HJe4P*0r;JhZS;hdE%G|wD0Am?o*jBn?MRQ
z#q)DY<!ig?vl~8tE~CJfr5J;n>5gBDPnP`EWA>iDk=OzBlb58DT$~#JgBg}c>{rUf
zT~}=gFwGh+e{Lz2lPi{-BSpOD(XuMWIYT$TXt02@fwQO_x=|?oJhSr!*3)ORHudti
z=J%^Zvp{C2c(70G6VC`T&y&}rN$Y{Ilhtk7rY_DCS*|c=UQwU6nwrLCk6+$8xB!z&
z8L&@C5BB+Zg=SFdn_#IJt1=~8Shn}9O|?-AQ5F1XCW^+|RqG_d(!{73$i#x;;sqgT
zkf#FS310N}9nr}HD_FW4!fejL|NMsAI&#p=-b7198&aAu&v{*F7P|GCF+C%?@%vI2
z?OR1;GJM@`%uK{c!M=xPG04a%)FZ_oAGf%5czn!Ar{eO0)(;(%3wFR4_vGQJ(6`ys
zwtjEz^Z+B^JxWa(9=!<HK%;+4Aq9o~sL7&u7Se%OtHrSTRFl8Ms`|vO2rKvBnHw*@
z!O^2fi{^KgjLE^SE%-A*DuhIXzT#j=TsCab`%-~>K_~#yH3gx&G;03ysQI1HlQl1(
z21*`?W`X-m<8Y@lc!9SZk=<NV7<OxD<MV=#k5?zDsH+zZ-3U~<H?&a_9y!aem#9Jw
zUxWNI3bYpK;+im}ry%v7BxP@Q+s`KtH6ZH!!Viu7Sv<JSXU1Cras(p)(z`vs)A$W^
z-UM`7lJa=9u644iMC%Shwi>NummBX)35kZ6TEYc3AywSd{=(UJrOQ@P^dGW`pj3P0
ze|&+f)qg9PSqe%tuNk^x6S*JP(cweV!P-=I#dR_tcZ&X}M=Fw2WP}VJ^oq^>B!fC|
z*hXj2TCw_{3oo>8{6gv{+UrfGbkO}Cooz1Jwun9DhThPUqMTH6f(;io4&i`%Jqh7g
z6X>s~VHUq1#ro(6Ya-M~QIfu8RjU!$ya`KN__4qj)R}_z6bu^KBm7v8e?R`C9hV<<
z8L|a?^ikcTA9V<05{bKY&WNJk!(P-x4m13Id>U*mMYHDU{zKj|#4$P<$&h&$2H^+0
zNwlspV<J+p7tS0`@cKQ?8jyu6q={nl=g(#&=zE$XuK!HOz8}V7aHQ4}3N%_Vv{OyS
zcu}NTA<BRzf0fYU0!^VO;GaJ!TK=ZX!w`ExUb(xg&0~Z~U|areNCDa2z3p-cMiWN&
zZwwo;*c>ftc2Sh>^fN8G@%UAYAWP;I{U(W6BU<aJE%va=<&j)KV00eu^(?H7yfcud
zOb|RZo%x|#!CvnmUPGd(%;yL%K!JR&XUoS(I*e>{Xae021LG(EZvqI`UKlNv0PPZo
zwP$vbZh`o~gDe`R)hm5hZ&Gq`b~f_srM%}*@n3wRuI}2k0}r+vqQ=DbgO|PQj%$&Q
z*sKsc?shdf5<uCv0c^V_WH3MEr%-ud$L{XNv6MP%LK&igm6-4;9n^oq9rvIv;x~yu
zA$jL(&sh=h_P&R32|x7f|FA#Wa@>vSgrF~t-l+xss@y_fH4Yh~3s;O*KYKvil-`nU
zlLQRpAopzmmK}NfWrUDXC}o%DKrfk6yRSJQP|{EIaJw}teb>czxfqLLZUlTEGg|yV
zzy753<mIGunB<=bp9H^AJaGPu$rF6Vdlo_$<jhM6q}c8Mgg{;blVMo&+o($P0$SxY
z6$9Ijb&*`vf)vq|>&u9q5^PMz<Et6%b&4No5JE^9$LO>pzuu4KqO(U-m;5hk(VKF`
zXjd6biNkm4p`1^+im|_-o#fnEvi4if;Oq(%Kc2zls>+_oA6%g0e85qaIDhxPhguYN
zm7yy-NOo5PJ*g=AIa9bpf;p5W3zmYju-Bcz+MfKywGqFbN0`}#xYB=CfAclBHAND&
z2%IKxFncHd>?BqjOFmBA-8P9qlx8EZv_$zmvL8rZGzHl0<tVt9=5Fo5rfy?V<&N$z
zneGL)v48>H>kg&jPftVhp??xz&TiU5Vv!E)Ed%+XyZ_(c{9>_dw88felcsF0y9+h(
zKM#J*YP93L%_u7`>+06nj$btQd+}dXwicL`{T@kPPa=R&!>-NQWc}N=Gr3I5jOzLT
zFy90xsl0{T6Ck>=6eCy&LbyA)d=gmrxy=eUlbC<j)Qj&|i|l2r{L}X!g@|ws@^ksK
z?Y%W+6DW6f1=C-7=$=(u2VFu}f>;s{eF5A764EMGzly)mOE{@1qjPsNIqwWOQ)%*e
zDhcXKO<^@y&D;a|Uys~2{HbA>M!fhH;!pJ8$}@^))YqVTWyQcs2X3xJl9Ecnq{1Nx
z5rjN%F#M>|1LLHn+BC?^k3Rl;L$rU}!>vfSVH9D#Q`<?DP+pc|t)J}$Z6rkZl4M4(
zn4+Iaw|@Pq0zLoFZ~y6FKEdol?7tMrvi>r03T0Jp#gF*jP=p+2@$1(p`ncs#g~uU1
z3|$fWnf{CfJ`i{9XZr{lN=Z?#N$0l(c9aCC)0t~3(xvoPxM6kz9L+rh^j(F0K)4p{
z1oL{&r6cfHJ@r4&n&ipzC$7;{`0w{1p08gG5&c@ZgZS;^H_);p0OoF$`Fhs8ZvhQO
z8!umUOl8k$-<NH&&PYwIPH!(s$s|q};>QcYc^QXy*Rq1z+ES=Fr6-?S5ZZ#X#$5c*
zTXt@szv(_PG;lwoJbry-abfsV`-O&ERV}TG-L-*-GQo~QjG0|jGeb)sSNu3p7zis0
z%#UGFXGw4f6Pw@eo$zc_6`GWjFtbH78cSCc73<*6F2WK=JW>&-t<7Qce?9UkUN-_w
zQIQ3*+UrilW>Rj_KVf+KV}W6!R_hS3Of%Lj>OHpb0+WQBFe&wGK=X^?ogN|udx#N)
z1h%5xI6Pd%`?p-pK&wJL%+fu<nEwMym@}rVkHM#u;`z3LG+(l9<p1*yqV!~)#;_zb
zpz9VKitB90i$@W>nf3x9+)6|IKFwK^G8F{DL{5GG%O}>Od<|XM(f$(Xb??9_4|dND
zQ*|f_?<om(mDRAeME)F8MeJq@$WmySBgyL#nFZ39ujOS7i70w|%Ak*#_$A`cnt=6>
z_6?<4Oc_3psbt4RGlT7H@&5#S3YI~bv~onY!}tVK@NNr%tBl!eiV(Q<Sfd?nXHU;N
z0(FdJwmt`Oa<qSXJISI-0IV4Vo+5h@l9QLDIU30==K$W+8FS&kj)FEvVFeO>gumQ~
zRXKcgV-Zz;CB*4(_w=7IpBNjWgvfUx*2;;q{OkD!^&NdZXU(=fuD^WC7764X04l&p
zG9(?&=+(P-N8YUEqwGsaSj~eXkVM;W`mY19#p_<+xLaXr2Xj?Vi8KYleS7Y&Yj6Al
zg*g39R9WiE1;SsRvnM48GI^2ADd;Yf|BtORfy+7l-v5KajAhJ>HTzO2dqqUZSVN@U
zQkJr`C?u4vSs08+l2o!K?a5LqOJk`li58V5Mo5ZK*&_e<d5Z7&z5cykzxmDA<as{J
zeV_ZB>$=W$VD~wzx)$LlTtX-xr;j+OprBxne05(X)J`tmrW)4j2nq6@oj>s$eSD|g
zGb=gRM4l->2C1Z_C0R$NcA+Vxa8u98{`(mN&{9Vk4@$RU6$hmS$m9sRd->7UW4r15
zzDh>6i2!1McV9|TcW_Iv2;GOAt<wn2Ivkz`Gq?(S%t+f*7q0)jHfaHG+HRCe?tjCa
zU9+=`$0tFzjAm(#TLW3O_T9gKA-<BU(!2v@F}65USa*O1^##749w7jNL>~AMt(GGc
z7QdNq^YPLt&<fFx@8pU@{z^zl7)wX^;+@)jqrpU{Zvv}bN8YY8p~VtJ$t$1o1h!#t
z|8DYy6H-ZOD<Mu*7<Kqw(oJ^SSrKWmtJ`BKbHNP@G9HUl@r?tcXCOiOnL_scj)&@9
zdk;gTw5<4gUr<-UErjI@D26JD_di0Nt9!kbd_m{=rOpw{r!|y+=cjAYORr&0-PiTp
zL1Gj}Bu#=^s9R_cC4c2EJG?@mB6W#e3h;>J2|Z9QTR>J*ku?xtpg&KafMLoqRTVl~
z@(jJ+UESzwtP;&Hh#>T;B%kEtei3?T{c>1J5)S$EEBN@0fbMQ~rJY<<pMr@0?uK+L
zicWRW-Xjdp+cY(3$N?6kHS0lrf$~25)TahJP1|pZvj78PZ?HDcflkbvmGhRmh=_0V
zMD4qfY#wY5NeWVOm1+jM#emY^z8K|sf`;X35YJnsThIbtBx2jhr4Rp92H<5YS0>m?
zPN48^HPh|CC$q}mF8Ai@aQJ7z@GZJH^5e@tQ0>mI4G}M61r5f$a=<+BKIx7^LoiS)
zGVKC<EGeH`j~brIK-6Bm$gCI`G?69!jH{9<fAK7j-+s5w!YLvVA$jpu6^|9tp5xE*
z;r8JBRb&8iF1bXr%Pr;Ne0&POeWxhI123bw6J7%exJvcMj~|5x=1s}(mryo7yLsp@
zP7hT>+G05Bq9H>jUoU&*O)490oqX$Hav^mCU5dT<J0>n!A%^nqe$GQ=%vu`6X8**i
z?c2tu8r>*}`9Ztw*vE^PIS`MUArCGOS4HiCQ|0?6O!i3rZ!WhrZE*R~aI!+_#got#
zM<drdrfBWkJe~cbSmguSDSb9gnl~TxCIcfWPDOcsQ%UpXnk3@;aP>KOLCazD=$fJw
zOOmXE!zQ7pL88+usc%u-0Oz|yI07>^!9PSHtnR6|4lG6pik~r#v?RD+xzSO+udAm0
z^Zy2a?eRYzZ<$h5Ea;~Y@Gu-2I32N2pCNLC)RGW>JX;Rum*4%+qJ<?g7o;F+w)fF!
zLu0pXdE8?SDBDzlk`X4U8G>?IvRmB1-#Lr&AC-BAbQ<nqhU|Pz$em@-w3DwlJK9{p
z9o{)NYlb8ZGW9S*Iq9s}zLkw~4x1(~ti4~rge*Q-F^(z&VeAJKE&_XjeHuZD2qi}4
zkV9ff{WsJ+k$7t^#4}jDRLb&eaB0&}z?&VNGm7$OG}wwcX|d@_B_fy}|1c^1h2YOl
zgL79Fx{qg>O?flqe~Fp5o`%WTjpC?F0Xm2S+AvF$EU1k{1c3vQ`a&rj9~l1BrcEgK
zAiWQ%XQ3e-siM^vRJ~(h$8J$SkS-bf$Tg9NjU#bB(zMI55TQc2pf>mXU|{wG3;X-G
zp0k=0=O%I>++&9rW{Fq<n4?5eoK(C#3`j{#0A*CeVJSYK323>u9HI9O2<j?|oSq)l
zfbatmiXdf}gjBMZ@qUA2?^$8UD94i(nE@Sd899|hRy0Gc(v&MuAFWv!?Y%xV&qLw+
z(pA&4|5uA#yYS17^Z`;%AV%8yj$j1Xa}v|zZnYcir79k~7JOhOjx`;s>Ge5?$TFRr
z{NlCXW|IB#PQBid3ka4dj2eHhvv8of;iltBFLd9Kz*tag=xX)uTC}yJo{4OLhs+y(
z3ZghpAHf*1q|{B)8cXd^zQbLNB3P!X)AzTR@i4R3R_ziE8yc*hdi~J&aeY}(?p-vE
zjUukzq@>?Dd@ygxGi}nW<$GsO`l1CGoI8Y69bub|PtkwQ<|qGlSY;;<JzP-bj`Z2I
zwOKVvNZh&&8}tbUoX}Y?35&{l&o~iA0PcxKqovO3WkZGxVY$qYn3Z@et{i!{8M|Ic
zs+KwpYUmP*<yT8#c~j4lN16*W$xYjev;kn;1WZHCkO(RJ2pHlJTjuGZ?IW~PSy7hk
zmQ{A!&{Q~59gUmCf|gcKNW2dmd(sZXQVNGSNcE@rxD=_SIi$uxcZ6K4d8wOJQQA#G
zjF3y3Bt`PrapOc5D#pJjco|+K9Uzqnmp>_k#A*%-t@xs(aP^J<E0XN`ah4w-yE@4%
zHG#YH+p_HCctQhaK?lv|0_A$TD~?Hcf*pOj#R_1s6E>mHdg=?_Jh}{tN#WL~NsuU8
zd52HIzXxdP=$D{aB#88H&ZuC{y3`ty5C{0D<ug-lV<Gk0T*{{+_1?E{pCF$4Jpm$E
zB~jzI-6Olbw4qQ4VrmeXF9LjTfEq{iKe=?+^|eki<JoEln~wba@%RV^g^h6)ty-Lz
zrvs%=74VVvy*?zEiAhNje3=ra<-b~=TJq1qnL}mi^!(%GHwoO6hcj2%okHzo&qW3d
zS$go&hG0@EWN+37*AJ9~$1^8jpuLO?3L&+#osGPp)lWa|r;jbbzhGx?)HE|di6v39
z75Ybd9(fx*3#PS5*Wg1;!F=f|?QSck9PkiFwvYHQfiy&YL1VjMwniAl`8a(trlR`J
zpr&$cOdVd8(<4oa0juRPU`I2^x|_7p@P6bj;veav9QP5}Ty!CAY@rhlvQ|`zUr_XI
zd5>##B;2OvHf5N9XBZv`@;mT<ph&tM1*)lZ5Ob(V&oV}<UY~$QOo>O!nGI6mBY)F7
zdN?6UC}+;ot>;xV<46B`KC^538m=5YcOEJBWAX3A`R)Ku=O8>|%i|YzKH`X${lowq
zmomYNY4wllwWUGlp8P$LqfmTxPJAvY3p=KB!Ft#h7FEiok=127k?Yc!&EAX57-5qM
zT{nxCRwD-3`uyEFWpwMRwb{+o>oZ>AHxK<M72NsCNMGBWw{n9052V_@T1s08qe<W+
z#=Mc*wVduOOf>ZC6wcJaZ@{=0$qVPrk^)b@_T#In7x!lJ2rc1Bz1DJG?IIh7BA+<-
z7wyS(z;TRK5iNwSPp#n|Ia5b_V8Us1?Z*LAsR;+-?)>*!8ylMdE!%MiiwLm}PQ1^V
zvswiQQF2_S+j!GTB!Np;3)0iwLNh+nk>k?bRUY>$ZMCvc4@AE`3gc}5iZl9OMW@|(
zY()C<&DP(2AOwX`K8kFW{@6wHR`B-}$NnJr3w$oEgF^3=(KjQU|Ak8nr<;*|$=OYq
z&&^*+0xqO+VPT=vk(&$tU5ew>Awdp_#d+Kf8as!(e)-*Jr0kR#LT#3kAAs1!j7du^
z{}t@Ujk)#U!!s>D{XILxgA?#?cZLyEqUdfX%3aZtp-_je_8$9Ou1&xD+`+j(tys$r
zj{k31esE`%|9KQ7Bm}02^ZLHo#}rbyb2GMz^l<Jxrd)#N*4S{O`}gKWtou;X^Y1%s
z%4llg%PjJcvN>MTN=kf{?B-I9h*yDZ9c~`nz%lJ?vSQUNant5@Md$|?KBp`JzMk{=
zBpt)VhXDU>-k-Rw+<Z*G&WYf)>YQ}&q|rQDy(6*s+MXT|a6QiARjf`~2P7!MQQ_uj
z_jk2EyGGA;{RFwsf^i?6BR2PS9{r!U)?#eL0I#|YFIhFRuj8i{1IdV%Kyoc1TGf@<
zRM$wFHT(bzVg%L_DR|ppY5bNforVz6)wVqT=SlXdT=-hRa0nLPON-Gx9|9DC!1th@
zoAg9=lT+_?yC3r$X56(nzQ9Pt6jXe^FtUa!^$YTdkc+jaju~^YM>R!RDE~>-quzV|
zR1UQ>RkvpLns)F{2Hm*Jp{RRVN)&@PyN(7r{Q95GR*`=RLn!~f-@U{pbZu3xCCy;d
zAnh+Lrn#s+vq6M_M0W4*+f5#g4lYe%PVgGm4zjP0vsCGD+aVxJA{kYmzo`;T^9D(`
zFwSTt?mg6{5TqV57I8Z_W_0DJf`3@05gZE7m}+csJ~jz-PqrHe*N%r~U4MhdnMtCk
z`w%J#+N}T0xJ><uts+P=6e$bl`+GxOLvu2oLcGiWU=1IEed{%FVC4=i0#m?<wMqC*
z284Ee`A7(qVD~2~Jw|v`hOx~TC~Kn$+eO?(Vzs?2)+!D!&MM0-f-@hB!>`5>EWsy4
z)Nlg1sVgh+32oT6CJ26GC0`_cqd<MpBf*kkc@zldtb9`ZzWw^iQ|>$(jz`QU0Lt4-
zG(6}S(Q2l@fC_Xor-K%R^qK2Oy?m1<`+>B4j%n&6$r-VgL~MoJ;twj_d%HtKa3Y_e
z{YQG>peTxa*h)7$i3VO(>y~j2beq(*bdu2y2V(t+^`F-n?pZm?m>@(_a)kY-Y>J0e
zS{g`qjOd1>)oWGfRcqies2Seb)440E=D2c^3L|!(d__=}c!M3i<Yn9S=V+NEIgHeZ
zGPTxJ@)ldbpa>qhR7M_xu#!nmzWxh;!Lu)G=_&c-xVa9qcE?|o1{99o2qj3m>6$2T
zc>qr%W6y#knH{v9h{%piLj)5J*zYvlG<6eC^;4JCZ#(TazxR3R$L1Panpt++qWSBK
znbFsFEts)q$Uj*pX1e;`vp02pGU564jl*=JD=m8Wz1s1?WLLjL%gvfUj%hfiW7pAp
z^2%u^?y@_oX~Q4IOyuR$HJR^&%ijl;4mjVqyz~%pL3Ea!vl%z6-?w2{l`zkQqFsOg
zJ*l4M53Twp{t$ll<Lj$(#;IN=wvqZY{Lp9_Rw#mY*sOj&=#cF)QoNH0O6y0~8{4HD
zpq=OH%;)#ahU@FMYSU(%L=VsI+q{*}vQ^(d&8CIX2(gGhG$dH|esj%Bo^;vIJGaOj
z{x(Rcdddu|Prr4N2YFrwB?2SUt$m9}EhYz)2zINdVDdR|>BBL@UtMh3&`j+bjnP_O
zI5iN}uW3j1GKAW)Aj;=bcgcY%B^*atlcOe&cGEK4Y2><DoW?j|mYzVkrKYaFK<|D*
z!F0(zabQR}_k%+BiqQm!ybY+I_Gw|&6WbXYYEA5`6(qblEd8#A5zO_2Xft^*X#dmh
zvW}LxNRKFezk{iPCo^hGLTZ5;yXir{pG{;#cpg0L&$yog<i-J_e-nK#$@jPfUufS*
zcijGwkn9nLw5&HGa*jSt01Hm^bm)qA`>zUb>3z<`)U<Wmwnvx~TU1139SS-Ee6vjd
zJ~$6`g%24h;CdA3UR#4)jmccaVF8>0sc(wFfD{ib*qrRyqJo;e66cF&jEo)lMu5Im
z6$dNNHAV3JvU*Opo&Nq|d`o0`Ti{LUmnX^DR*aI02}@I6S5yeji2U(#{jm0@MiR3G
zwlVqj*WXn|<DG@VV)}!7n>kn=ozhZM+dKtuRc!GA4c_qAU!_C^i!NNl#7UEMlJ&c0
zX6zl7mtTl4&E{PS_gJt!D(B-LG<XWcs!$<Ztvhq~^7E6)*qhi$g>r^OvP~vVnW9`8
z+?S`PVlQS;*{<N(C;3nHV+3PM*_)L6b2hLZfS5?h3)Bw$B#f`1cqFu?aCAcENQmKC
z^%?e3eBprK`aGC8%~(b>B73Bc38$;8VQ23KFDzT=zf>Lv44j<kv!c8(dg_SxV>q7T
z-MvtTOkz(Z+@|bMM;{!RJm<*gw`UQB<*!*R`@-D8Awot15HpNW;9GLU;4k4uwR3z@
z1H~g9GAj{)4sysb1~fHC=KKD`hb!a-Wm(FbS19f-{673(x+d8WS1m>6BEWD_v&jue
zpasZa^y`4+G4dC5LD0Nu5#)D!tY5#L1l)9a;+S}meWK$FW2Yap>T{cJdimSV_lAme
zVdBJz+R0-cHQ>CWQb~F0FY3zUlj^^iDIFbbn&p*Grx|7eu853-%ar|ftul!G(~*)!
zDWXGUNG4J6>>azdiftiUa#1+58+!u+&$sHSr8SM-_C3HiUTaylSCRusjx>IKSX5NS
zY1oUX1XL)@>a~79DCX4v`;yF57oEDithjSz2P{G4-{+*wZQh2ur}LuiiZ*{=nz!O-
z0~^Chld{=i(S>S5D8VtDMf|H%bG1vq1}UF<^y_#1U5`Z+RKqK8j8?b&PVp9Dbz|9T
zmoAM()+i)4`K&qFVQ$oPQ*O|gY^`IbP8t1Lzuko2wd9QCT&d-Ma$X$!U_GE;zbWkb
z1-m^gMW2Y5uc0)qX6$X;v<EMhdAIHF_i+A{cj3ZlK5XDngH;|L0oJ{iWMYuu!=BRW
zjM*OR#P_)#yr3Cd3kxO{+kKo^!ug@>kRyX_Q>RU#8r|jRr(UvPW!at45u#fI?At0m
z-AK=R(1H)psL3;~qbkkc$(%Z=i$IKDJW)$o`vjSnh0BU12s?(qPVb>^fz0f=TsjB1
zCQqL$xKh>OZQ+McR|^XCvIjS;r)Xuv9g4H;nl-0i4U3P4_=*B4xXN%N-rz&8?)4O7
zQ?WOb-i%2;!5+^v7vD?Dz5BcJ-4q<$+3STSnAq#ruYGp!-c7RZxI$0i`RkmzFdGs$
zYFp*{3C$IX7oDUUd-KMRN6sBDT%q?qloVK&scOkCOB=}-CdYiA^63d^r+7Fkb9HMY
zQ&UsvbOdngb;p%<&1JJjf)k4Lm2BpCP&WP~$j1Nl<Rm&(d?__m(ym*eQ75nloBy^Z
zTQ;^FKv3%{E<b@7H5YXSEnBCjwNu<}(5KDctj^X9#FaAyoO4z7S@8H$$~Kk4ka9}L
z0ETkV&J|7C8p&Z!2T=d@rjqmX({*a?A;7<SR(m5;mgi%OKzMPsJB5lR1iYjsL>X??
z2y?8=0kKfMq6Y;omeg8oMJ@yhhIinv&RLw8vi+FGG@gS)<q4VpGid%>kOOr56wSJ;
zMxJ{UKgJN$<P*EBt=xfd>R6B^88k}2tHeXln8TxcDehtlTK4GS!|t5^<|rKy37r_)
znGy;dQMMs9bT<F0-ElTrLY(77^*m9wE;Xi!cY^ZfIO95xozS}O-(QU8{FR_w{_Z2u
zwG<PXoy(8wTm`)m%!nh_Sgd2vMQjr*>In3oV(marSZ{KH3`|pdYipZOT9_i?HbaCm
zECyhGf7ns0KB8xo&LK?9o28*-r2D015C0k5RLh9(6s;`ei;)e7Ai!WSj^S-)Wg@x{
zPf1B>=F;yZo-wponDJ_IQQw;Lf_FyL_1!J$-&GEA<<BXlD+%9UVW)hRXqzM<4UPgy
zHE!jEZVfeU4)~9DM@Oz(JPz0fkyOL#W{njZ4ulEmxaR9Dpul8-iglGBIXK-6d?L*n
zvJ)A`7fb4WnMC+v1c#&iv@(CQpl$8HD*u`CN%BZ3t}5@kX3qaUOc(43bT*IIUx_O0
zXXA#7yFU|PI58$r`as|w83-;*Bx{$3k8UL>TZ!xvahBpRZy70x2tUTHzAi`kpZgVR
zYHIdKK1e_hNEz;S4WBjSLT7*w!}ziQvu=t9HY}5aq}`<musrDMWK6YIkrmOPruzQp
zE8w>zl7r$V$_Mf@wz=ejUw@jU^Zu*o2q-1-^|>@p>kZJV4M<=fpD4(hP?T0`e2WE+
zJZljm4y9C)RNbu)0i0c(h0pEeh&uI_!L-p|7aZT=S$_$LfIJ0IxB+iO`w!xq#RwA-
z%MyMAthj-7CIob;10|M-f~IULrv#=1ITR)2fdQ6XYp>U{`){=gYu)9)r{<n75)K@1
z9m_bGg3)bD28zyNk5wl=`4$oerf1VI+}DI+*Xt8A&i3*Zhe=rd`3>cd=lQxk_{+y$
zoEIlO-Xc%?<(FT!exjoKz!8k7dcMt4L?79(a#HY$!t@OZ%p~CUQ-VUxn_u@4O>};Z
zsQXv>e~<oPy073NM5f*HkSQXoXJ9r$@-{i@M}_BB((4ea#Ak77ops)b5FN-Z2gqS^
zRI}R8F_`<mt<0Zz>bF5M0m8>xpPzbGzzHf}LH6g9A<T25K*~V4&-Wx_(cn;)jPymk
z&y4&B{B!Y2?MEtFjr;Sfeu+OyAC2ZoysAh-?8+i3Jy~L*>pxfDSGQ=S@LVifQAr?i
z%=j(0Mphi%ms;Vy>OO75&)=-9*Ea~{F;ueci=<iwI&q-KcC$Gneutrr3qaFD-0Ds~
zX8T!8?%;X@tyF41%k%u7-@IsdJ5B)U&+~c(t{p+1#t4(_i#*~}u6U71nC1jkHRL1|
zDI$2dt@GTv%WBf_+gI@$sh}ftcj_rZ1FezXh&kk{mb{hJjWDlLgr5+(r6%c!e1-C-
zRiken)u~Cai>9=r`f}VGQtalC^jF;&-D1xyZo$21@5;iPY$%7V7&r76tdIQX>u33U
zeRFdwyKx@!oCFDvE9Y-zwVbLycOJX+(HT;uNEUDEDpYkJ9{kZ_a+FeO!22)wK3vID
z)?VI{zbHVe@N;-Z2u(eUkSv@cT%F!$gBs@L<#3*w9iG_Q_CA`75Z+<I|1M_pw-@tN
zOb0n1yk1FP3~jUiR!C3YU!}(sH5E>Zx^H-ZQ&EM=rz?L_`h5Fr8qkq1P^VT5V1Zz1
zdP9cz(;}vLAIpWwYh;b~G@LkL!VU3jifK~&F`g>l-cn-$!cLtUV(0^?wC>%%jdy99
zrat0@XtWdTU8-E$(-5{`_~{q7)P9D-|Jw+WDDFT~#<XKJ`DhN&fpOgxiYA59H;)gE
zArbE;zGdVswSV7WRFAI*4u4|M?+hDtqM_jq)z<xOX32Sdxph5-@k=x@qSjL>;v=P%
zL`ObW`P1;*mz#K$G)8)U+EIm+l0NCmZ(h@Z6O_`<!70w_>pL|Vr7T(NK8P=G)@8)q
z{1r==-XtqDisDRkC9v5`^ZGjoLpgOfb2Z8zjS1hpgQHSao?KhK!d8FzQ)85*f$|og
ztd`^9q=UJwzDMOE&Xzs$r}E?Z`>+3v+lmfM8MR06k($qY$Cyq_`PlwK`1%y_e5}@w
zKm2eL80|lo-tE87&9gZrPzaqqw)*I~IQEo_Xv27fR<sSRwbf??Wy{FAOE)(D=DpAP
zgYu&N9h!JNKp*9{J<nq&V#C3qohn9%oPUewja4}POua4D2a9#V?%KVuC2Za|2erYp
zpO6_jfo4hP`QW(ry!(ApVu6c{%kN7b1>dQY*h>MLA&gcl8ox;+i+aEYQk$fnX5U;P
zjB;>kkATZZ9@LxGw3g+yPp#F0ZytL3KV-CSuo|}Xlq{S#h{RzE$^nljdlpI!XgGLu
z1X^RQ#9j|-Y~!pXzeQg!U2oEHWK=ADUebC+lXBFXI|z9J7^R>G=aXKmj~X46-`Z;0
zx5<dX+_pdcG)K_?QdE<Jl=s-5s?v5fm0gpjO?BehKd3o|N8~5^egzE>M}f77{d60f
z9hd8%aY~p}h&RE$5p73tN)?aFResz4utPh0)!wc0pL!Fzm{cL7<}j^&H3B;vOGvPs
zF(ZIfoWfE1`i@_%|H7VU%2f9dbh<kpcZ9YlQ?`WqRv95)8kD7_(6rJCg>X^S*)qus
zfebVLEF1-jf~`fh>u0mJ%A9T?8~*0|wSl$Q<o)eF(WOzY5;{?(sIt>T*78ZbnxqY0
z&TO@NYYsL3HNv3g6v#Rw@?xRtd$IB_yaG2416z_OjEeCQ9xkPh5OZUtzy+pJ*1O%h
z{WHYR$LFB%7Niha@D_t)Kb<;tH+Q&l`Fb8qD=e#Be6>$W<C+xD&!GduspHix8Ym3@
zEoM15xsZm4n4H&9=!(u?6jb2ZvW=qZM^N2Lt7jEhrzUw7rQ<C`GpokeGdGl8Hi1Q`
zM}!aJ$TFs(`w_a_Yn!)k&x10ne0iZosi4&}X56;E-$QvJ8biO?Ro-68T_wB+2}A9x
z>%TVdRY-^`7Tkpw9XwZG<<aC|I1F??h2kZ(1^~NMnu8^KWy4Av4{^^b*yau`LL6AP
zc!6RF97a3PvE#>ewv8V*&H<&Y^k@TOy{^1n`?_9!`?}fy1XTfUwJWMTz>@Y(B=-qJ
zB%3;9t>rSsN@v!)xHbw)e)2QKg(WgrMBRr;mX8`Z(5-q))D6OMQ(46irN?`y)DO5W
zYk1F4exqmNxA(q*H=(JfcBx&$;ybr4I&gvv1$nn~D!-GEd2yoW>I-P5j!+p<;AG{$
zC5Lk4bQjbQ#>07{wPbe^&#1Qq^l?34aP*57Ab&j==OFv6G3P$L3Dk6}T@t^4n*;ax
zu5sfIVu!}t){^bHWgEqb${k`^yhnCpMLcuKvN?q6vfcL8;!r~+`*d^9-~n+-pIJ1+
zp5IHh1ZUTMBS8YxI)L#7n|IZI-N$kN4c(r77^HGHA49wypcI?g#m39o@!9#9!CTM~
z!Jmw^B%Cl_M%A_qc`_Tt9vPhg_HoCyiu{l>Z4pIB>RAw#Gu1DWg{S`dWn;emvXB<x
zp)KyP>B^AFTyO}gS=dW)XARNi1M01<OQBSRXTTsh|6;^3M#*Vq1P`AH@_86mXhB(*
zVJo7j1nukc=C0>jU3G6#yN{Ire0v0YdD}qAP~ruAMZPO-tcJHnn$~;dMC@ki_-d_t
z@LS_bR4l;HGu)5Wke*;-6e?gB+nIAjTpoyfuR}(cc5pc@O`YO$HF5G}Urv9lp`v)$
zVfeSWFA-4=W!KUD-^9G>o3?Dxjz=oGV4fN=eK?teRy?!iT;{2z7%`7U!W3hluJu!!
z$xg`SfOKIxhoKJ@Cp{*wlbeJE>$#4Dh{(aW;Sfg(e2R(Kok$@fHVsHLj1gohEnR51
z1qDEplJMd4zjwv31G`9l+m6g+0`i0-FWHu-Bz+VcT6~jlAN#382S+DxuiF<Vvcf%t
zYJYydbCZjo=7Rr8aFK2+3H)2OZy%f-(oDE~D&(1;)<2~=q3Y4jsZTtji3e-pay%aG
z7;na}%j>^=+Wk0N_PBo9yf_VF6KS9aT-;-t6u`^HFVg$cyvuIQp?R`c##>*(omHN1
z+Ft_&TApL=8a@AQmbqus_U)E{u3A&NoZuJqT$e7@iqCHRLZQR3CXufAsB))<6!gBk
zcUvB48u_Lqdpu%WZBc&SB1H~}9K>m}?&GWR!X%(C&O)A0eoCfMig&H>0pzhUfGLkX
zyx6~1(kYTET@)ZOFHWf|-?Q<lpOg%M@_(?STe8!Rw{OXxbzS*1WXpL~@QxNE-tEsl
zTRAruvUyKu3&y>R@AKlVcTPGU!4sm`LFNYYnd3gZJ@;7v5dG+Kax-~vC}xInsO7H-
zK6B;_{o+wn&F!lfTo2k)T%~*}3fKSh{gO?b8n)bI?A(VXCE-L^2Z#vq{>zOMp(-sI
zn5PBU&ou{kh0|<TM0d44Wgp#aN8P;u+5s^qgREt4|E0NfS&%Y`Od&9Hshe9aM~7Fn
z;lznqB$E}9N*r2Y?D=h=+)U?#l@~nwWN;hLgPNZ*uY;Mk>|L*BUu>+4-`rd(qaIPH
z10U6I9!c}28FY?LDqmy5p|W_ydQ|MxkCT3L>-!@@NBYQ4lAi}=hNIvDS8>_8o-Cep
zU1Q{xTKuiyrf-UmJzz--c0&#f|6^aIhSRbpk&J#jopL^cP1c?^H?0_x!&?eHO8W+8
zcENsy48iol?1kX!#=xwCZ{AsRoy`7mSy`WwCvP{1_xQOl-}G%ksj&oqLgQMmp4r5^
zYh}xtTx4f%U0uUIxYjRiAZ@y-r8jW$ssG%hu_ER9vX&NfJEre$FAlUQ@Y)v%*Qz$r
z_h`vo8aN%fnD-{TqYKwnFQz=r2u&nmk>)}zJSNW|2JxAFxOOYlH@@~w!eB6t!&X8_
z?pe~u(%%|)9uR);v>RytTK24uDt<_GgcLm5@>=?owys|H`f|_mJJ;vpAd*_z)exv=
z@X&~R+vR`)Kv>{@mt2{w6Cf{2U{e-dgq2p!qn;y)Ng`^!jphUY<#6OhGCF`m9=c~I
z*spLpa4n+!kC=U~rqgWcrDvo=G~?r92}nW@y?*)9n6Rs~=V3`=1$8AiKu9dk4UWft
zDDK7yzYIYxs1!jyLVN`2{6+{#)weS3WP`Wu@n3~NaX>I4D1eZ>9g|yI?A4yXMf6PA
z#f>IhU)fnYqfeX2!Ljf1&ea^o(5E2OReJe(2u}<<t?Z$vH(ek@$Rcr-EBZ*bTq4CY
ziN2a4pqm*GX+<KTkRR{a@7g-nZFBj5O%6~4>y6$N2d8DR_ehgJc!Q+`L7xy1l}Mt7
zy5*n0A6s5xf)Lu!N6Z!o(}j<=YzYMtD~@Oo42d8BqxcDdioCZf_*4P_Ao7IClPAZ!
zf(7+A4B&py@rWQ(7@H@hA)%qqFb~NkWAhCPa&qfKhY)mA9;KQXy^3-J-sb9xGZKWE
z`XXi+xb;T)`ua9=oo8#?`sbey&<nc=c!PK4CtW1N-#^-^o7enqi(^eAX_uHrA89r)
zU`3xO(I*l?uD6@&KVTF9zh1Cta?ZRw-xMY(DYCS97w_*fBmrCa>Z^=aAW;KJZ86xN
zrECP2vlFnj_a+nNvNh;@_5Ez^|2#s2-vUv)Z(NJ)X}|%WG9lozxv_z`z|cc{vuv5M
zCwe9a{c3RJJ=WLP3TKRw?lfMyXpfIyO)MtX+jTHLvzJqtg_3i^-V_Wd^GO9g(2>$<
z_I(%tQI^9R*aM-+IEP&0OU2zuoO)O(+Reij2w@_Wt~`vu(nc?Ok{sPmbd_xG2wgxk
zI<c^#37TRdf;?o{+3Vbs*J4zcXqEm6tw7i}8cAc}E4K=9sT2!_z$Yt8Z)N09F*3^K
z%~VA8QQoz8CJoR3yMKdjEphE2aj?tpf`*a<N0hMYW*d@oxlB1WeN<_?*%_&|old1!
zLnoLZ%bpw+`cj2qG3Lfveft{G!J3QRzzMX&)BChB9GtwEonS5=2L#THUT=emV^Q$V
z5dep>vVef(%;gs}C{JNhb6J$m-(7URdus0TpDJIzOkeR_<`{6=r=H@Ow8xKyU1tvN
zBN!#wkwCQoR-tI=AUDmCe4BB6E{-^ddPQ(Q^aKZx`v}_xzSE>hlPuPf8@_XfgGZig
z)U2I&vxytb%6AU+-o^(Fjii(|Lt2+b%LQd$%B+<Z&A<PCKs<-z!tBgTREGAf)x@MJ
zqf|z&J8gq;FqM<tuuMQ~bctc&s8RBy^ajnrziZS25s$RK0qa_6mkbN_SiSlx1qXik
zsr=WmrXnGr6Z`np0oK&z(ob^ys>TT!^FT>w=ivm%AZGqj5gIZ@*{6~jgwMD_s?`4J
z+U3)sj&3KpMG|t=$B$2&T#Q5h%*+whQ7DB}shbz)AEh6S1X7+QrRww;u?)ems$CJE
zzlilKn=dXFSWe_$SSRd9SUJH5X%ym^adI9P-1-cn?uZSN_!&avL~WCa9Wc@%bpD9x
z?j*#`urD3TsQ02Nw-+YsE;)B~`_X6Q6cYMv%gW1LO#2cN)@__}ZNnvk8dZj>)Qo!9
zpYy7IHUS)&jkADPvre@Ki^0EX=cd%rTCz@!H%YwV^9QAJE?7`9Zha+%6Ny3KwDyXf
z#3d`30drDxueBn);LDunnZIoVA}iZ%dLuKJebtoEK!5l06IiWInR^&=NT$2>6(+g!
zS{obDeN}k;SuZN4k?mcqmL!vpl)#J#87!R&-S!9Au<R>o&3m?Ed}pmU2+Bo|UvTTk
z2V%ngoVF+tgF>xEZ@bqdk~b|PWq`r-717Fim8wakkK6L3-Gq4JvG7t`Z|DQj2k2d&
z)a8m76)+w|e*5Ovo~~=Y!LdAlwc~xE`SMnU$0*@Cgpj2vv#X&v{}Hk?`otNCZzW$M
z<5nP*4(m^^AV!F(q6A;gm=eqfAmrVTz3EGPgRuIX=O&Aif1%H}m#XR*>4g@g9I<=v
z5hDuAjyYNUl=%wgQ34TmxpPd@L%X6Cg~gd`QO!XOo&3WOKS+~ByvzL<@GR@~pFbrq
zgS8?gnDbn!PdTO8JBLo3IH5oNtsgI~l*~rV;Y6q)S{Z;6cMq@RX~=a*`>wU?GGs~D
zJ9%>eW>Qx`{EADzU2+ZYf3efdK7M`vum@tWIFKC#w<n#CM{kdx&^mo@*?I9#Rk|Qp
zWISs=juL9V6LQiS>=Hej!CkvPc+sT4f(%8s;S`z@dJ@xYXSI3(AIy)P*|(`o%4g1m
zvvK!iK*{RWlY9hFry85&(}q3;oF8tVC?qCJn}MMTb}W^|uiMLQ_%=al4ONogiyH<H
ze3z>2HdV=fm^3pwwA5(t&_QVf{8U9~Moh^iCPw`(fRMPXEV$+`K8JxXM)_oAWu0JP
znoxS^)-M0lS-k5hm=3Zn`MQaEF?r|Kujh=J>XTEa87FtVK~R()gx**S`IizJb4M*k
zydiE<swL1d$31Q(RMHi}7KwXblT`s^L!zi%Mh%@L3xswfxiC<Rs{@XZPYBCFtlUpK
zdze++wa+1pXd8#f+E=xNxvZ%*MDzJ7-W@>3&{xmh`p56TM~zrdo*8VbainXo?Zk;&
zr11)o?eyW}8#it&0s~<apj!46-EMe*G{>Uo&OUo5rzjBy@}?(>^9dlDPSiA7ZX_cR
zb8u;WavJ7R*iTJutdyR>Ov{-|7->t)G=Yq%q6brq)%b4%N91*Ye&R1YIdzu97&2*~
z7-sMrD)mnSJMBij1i!m@&Gvyi8J!omm#F&qG~n6v;gK92k58>2?|4kfLd|U`vx@-Q
z))!w2t)P^f;dSWX!Pj=y57rd{p0eqIo22dQ2K@wEZ4=H%$oWCpIB-sif`U;cE&KB|
z8E$Ws*R)x)Ysn8Qrtx_KkQSY0=P)$Q)F*@@@X5;Q$|cyf%QrRDes5~^W6#2JVGbjo
z&+L}VVkqUYBX78}Gy}*?Og4R_8QrxnyG-ZzmXN<EhOPjQv(2dNXLH(r?u)+k-|E@8
zLJ<Y%yDtk(6ZwT?_?$bEkr{PrK<(du<j8YQ$qit|OF<BF=vk8<<H!Nd3q%)vx0*aJ
znn#;{|NhAAyrLBdK2lFd{kjKCR5yCp9!!@ezopuo$uX-JygIVO6OvEyqrf=T&VM%(
zZ0*+y6il|MV_p5`!A#iP-1d5Im-=ifW{Hg*&Im9f#Q2SgL;;cE34z9~I^wCK>y~tN
zDsqvN?Gbpjzr!zhfRB(v`aWk2&fObCPU)f%X_$268P$6U7AtZ|0^9n~G<feSa5XU=
z6{Ha@`l}hc`_9x&s~SCebQNX2U1Cjid$F06d{wHC;rc-%>@1*g3+~)mIJErD;2(~v
zg*Yr+cm#04kr?I^BJf+cZlg%*lm6b~B10&0^UE?F_lI58jQT(yXUXx*5jy81$Wkq4
z{}umn{XGN&PU|lGd|Xy{o4?i429H|x^uS+RpEF|cW4~I<>qiZ~%@lr-W{uxBf^rFM
zyYw2Ft>_Km)Bp+?l;pqgUga`GGX+mW-BH&NWsI^iyhmABH;2yr$0_e4b>CJ`rddbw
z_agx{tk}`nq=c<Ib?RI4Ir&uQVJrGvb>62;4SEKzIv?RUm$NO02qpZs{4)3JHDC-{
zJ4s+6e6fd23C;VL2QJcmFNF=U*&NlD<O1UVK=^Z-(Q`OSRZ-Q6OPu_!&D=vdLJ&Vm
zozMSCaUpQ9&>qr%gOQM77GIN#o1Yw>9FG=`u+Z05y#aX|R6h)~OGFW&d9gGSWxRDw
zW=Db_%@VhiHwCXd;_e~%d|=EDUthb{#?b^wxm^)|u%xylot(GEy5H=xvsw(V^d__}
zO?&Ix*11KeBQ17IF}Co<^XGlJUXUbnzKVl&K=AwMn0;X879uwVrgge71_{0;LZzso
z_eAiJ*#ml$csvalS5(rZSmIvxq+0G@PARJmzT#CUCS?3~suRI-#M%a!UXv=%<xG_y
zXJZu$rC`n8)54oXcD;?B#P{)CaJ=bWUDkhG8W?jEs=r5wL!4D5khI;?(A7PO7j}bU
zrXPP|9s5H{{LyE4vgWYHBP*n%z34Vdm&>n;*Ue>IPs2|f02ICJ;w!T5uSBEFQF5$V
zwKALX{6E;$hKro+UW>Vn$e0zhteJ7+RlwvEe9nG)GZXN<U)l?^_y63vGn2N4U8*wd
z<>}L0nlNd~*36UoWfA7oKsGlh#>G!CQsFRbR*>)<qJi)Uk+d20mCE@}308gDR6W0w
z*K7Z6G_%r?#FCB=Agb$&W*t<7v_x#~#H@yT^s&`jAbB@}8NJOCm&7fNY-dhK6swuJ
zrCl$d8b9+|@bEhke>?(;+*zV8br9BIv1i`Q@H=pd#Ue})C7rh_(r^PgY{6As24!Ys
zWUP841|sBOy$l82QX)H!374Xa{YUI~D0LMlcj||^*{-yh{f2D9482HSe154tjt^Z&
z>y6Z&#40~kQSze?^rsoC;z7UiYgnB`r6%N=oL%ECRJrnE{{5HBmSPlo%qN61Q}Sxc
zF-yO^PT1U<8_-MUC+)T@9hX5a#BwQMrUdKnv2A;QCON8TvwG}@BQ?ZV)dXK{V|HKk
zlg><>?|-J!=jK1lp*N*+?7X^6D==nPTge{gU1}n|3F9<Q0nOs@yTq?piKeeuw#<kA
z3Zp#XVshW{;#PJtIf?KIeZN*efa#wN8ha0x8vN9fQNj}Eu9^93M9F&fHVq}hZ#3&|
z9%1KnBs7#^fD^IUOE0e#jv91+_&ij3j@AA{<2#)E9KVZE4X2w=<q3IbTK)*vCtJxg
zW_3OJH~}yY6vrO04dCS0jX#D<V=^?bd3v|x0cF%BmE?OWMX1rlZc^oUFCSU((Kcsp
ze_u_qDha4=?poG|@W|54!qgLU1M_1)T0c4oeDjP%Lo1b|AeVV7+Iy?1ph}>XuE#qb
z;@BtVyW}=ph8`|-g=6oq;#Ix(f8aNeKTXU!S5wuWV14E3Ge7jnY`~9GoHeJ;q7m-t
z&^41jcrIgbfYelw4f9oucZGn#OS_}RKNne4-LJkUueNym3ByPSDjJpg5m^~8KOiM$
zhS-AT2Qn^``g;9z1Q`HPFp@f3zH{)t%kmo-9U6+-n25b7+ie+HoRzpLjwoa@93l>p
zSy^z>3d3k9wo8(9F6f|t250cNwX0ta9F}k{HDPGG`(Dy6%aNv=ikErJmbU%Z<(1Y?
zPsgMY)o~6e8u&zZpJEx^m9*}YN4(?V@`2W^m{tFHNb#G`vwJzbt(6dbixM30KKr)=
zg*%$}z-F$&s~-Mfj<Y3HmG|=F4eTuL>HHl)%#${ft3`-n+5-+Ss6*3GY6D`P`N1)p
zo4Eq0**lS^%%V=Z`qLVtSl*Dd#Q~bA8iHerVYWF9JRM6hj$RT!D&?c7uH4EC?|tum
ziw<jmo{ZO>byj;Fdrbx8z&;>sh#e>4{vcuZk>R~WbMMSo)IWa7$*cX+9CN}B@R)35
z5|Aohx9PX;q?^+7W&)!u2FA9tSzWou=1+=rk00Smk}6|J#wpfNc_)#?g#MEa{x@TT
z-^dS7dm!>!khlWKr!uvJ%Tv;#jJR#mL1=wYt%T}P>c8W|k3fh7FsTK&OzmE?K_Di@
z?nCq`tz^)aUs@n`c$^6`$D&}}x``&_zHxgC9D{b<X%H=?$-clnyz@oW+o{Z=zan!x
zUN{)d#LjenhZ_xEw52{Wv$C?<82gw|^NicPg{}s4C8#8EY~K|3Bi(YxcXn4jH?fw-
zeed}VD6KBiDPbCH@1h%QX07K^!rU*BMJn6<Av(36_nDr9`$qRPJ^bFZ<NLPxn=|?d
zD>C0<3h4k0rNdS@ulb0`_0mpKNZ9|`fnTB)-D`X5COr-$wAYtDKP@{1TgvwT`0;8T
zzyh(!%h*{393&=iQXFMv+&HMxE%)~|+c<tvvbt<@B&W;&K78ZGjZcPrp2BF$3lXaq
zLB=DAiv$H-MDvfusGCCN!Y8M{uHMiWG`0sd{-M?P1v|y?WNsl~+Sccke&K+%dNIS%
z<{9l9VT~HB;QCC)p_zMT--_)G{X|VZ1+;e>pHB%q@4JGgSHP^RI6S44z`AjHylZyj
ztYz7TRc{hYW=Gy-1jj+4TB8W(VqVOzJ>Qmh!khySjsD*9yn0)-SFU{9r$L0t&8FdG
z)5SxMK$$^CnwgmRsH$|Tm0%j&9Q9w?QL*!0lfXh+miF~2CScAKK^j@!&(56&%rO|{
zyC>GEWE|?cv5`v`En2kE`x%gN)URtmL*q+6a6ntIA-!Iv0Rh|R+7Hknebcz%xr9ri
z%viKs&2`0!TM|l9b3Jz0%UUhrz?bcUN1FC`-$TtiI|a6Gl^9rTC8kfUY_GcFl@^L<
z*mc&hPsR6HTZ<!#r%Xm^7wS%c)?I0O)}tyyrZgf~(d^#+S7d4yY3$0yf12s6enQud
zfF)X3BqkaSvcR~JV=fP9`PkmKoW33IfYC|WWmG!J1U|^C0;7a|#ofefOl(zCMMy6R
zA`K)mRHK)srXd-<L<f;VihyZ)%&wY>J`mtf+GnlrJ0Ypa_%&Z4YFO!z&mRn*(`@gm
zdj7??-ad@7%ljv3z_G)HkiU`Tu6k~V(H-%#p~bn3|Da2Aj?pXK?#}k%Z~SYjV%N{t
zOCVK+t~$w4<rFkCXSC>tPliYC$J^WdNHiC;(4X;7^9Bipli>!pnEQQr@QAfT)7~dG
z|Eti8ZzEt?6J&gr>y*Vq8;RpwXa%MhF$5Etvm-q<8F@xsg8NNaS<#W&e%_yEi`}<z
zCkgiVfO0zAL9!!l5^8<K)Ry{t5mG6T)62_jC<A296XTV#zt_F<5GF(A4Hk3)*R(5E
zA2Wl}q~quaAV!NKWL*WP*Wu9;x0aT$z|7<3JpbcSJuyZm$mDRe^?-g8NP(dBVorYY
z7cGDXkiE{{a@@(&(<c~au~(d8{(X}uD`4O1NyIF`Sg-PKJ}7}t)qmdTIan?SSlj$6
z&+{7e1c(7R;Ys_swl$g4rL?q#1x8hG2A64+IlXuPnMo6^P5OR0WWHhT=0s3vw)@Sr
zWWkY~AW0d9knIl#y_MBc5uN(cFVH!J!zDEyns&*@H{LUxFL)t&xw3rkH8Z9@J~>%_
zi-{njEN@?g*5gWMW@e}>s7!>Y+M)9j&%SuxX>iktqei6tUbfNkZ>UERP^IR7%QSJ4
zSar(0#^E1DQ0UEs`@Fo&vOV`ZTU^g5KHE35-zS-7aFc_@x#B~~z002py$F+XoO_hT
zrET@B=9K4U_K!5K=v#8(Fg<RCozqtm0nPV<mWil@)Wf!HHPL+_CMC0?T@$24V(LMw
zr-Obw-<>i;XTh}_v>_Z@(_j-ymoTc}f*8}B`axhGSC(FnF5j2X>g4KL_WT>=)_`2{
z=IHZ&463+=XVUTEJyHHRoCZu{_?O!3XT2Sq%P0B;4zT=?xW{d9vNeUDQ~$DllbM_)
zc1o#Y7@M(I9mkX-I4j-!KI}G)@iYyH8K_(%s}rx?*U)9!*WWYl;1HPKa2J>EyPLe$
zYop7uGNVQ0#k-Fnh|)Zn`gXJEhsb&b;UZ1;S{PhYkw7|5USQ|v7~0~m;=d}bXOxdy
z@K4ppCoCi=cUs?^eViNJ1RV?g{IPiCp6h2GI}Z(iqMowL-(Q1rMLgN^-!e$dkrO~S
zw%&v51;0!=bII?==Ny9elX~XPyqD>s`Tt*H?OF12rau=@rfR52&}E_}qDcMiy>^<I
zn7nq1{(brCQ_^oC-lrvZAq*ELZksMTe;_NBBDy|{Bd$K`9ees9B(h;vgBJSxK`bI^
z87c^NUH$#-W^Zr1_L(3x#;ayx%SDp&xZN7W%QNEB?%ll`m0B{pC@5(7YTY!wlDzdL
zhj&+AXfZPX^t!n(soZCHA$HN(Ye}1{;7dNB9U(;S`KuP|xRyG;Ycq4$LXNyh9?|Vn
zOAp1BOTP+;nA6ZMDSNMK2GRC1Q^uUh`-<yNgvJ25ASN*T)%j4$D!uE5T}=AYuM8}_
zd!Jez&^*Uwh4SBOGk3+^SYcpq+_;f!Q!JgoG(Uu<Wv!e9A80mX#*A&H)BE`8hhJ@`
z6cpt9dCpqk>M}d688nV^gwDcS40e*_Qn>t*kHC<T+hm|*hSvUGhA1DBj{jb9<4k48
zrY0aV<_62ymwJuNY;A4P!(4JI2E!ajph+DvxSRRRv%B?QrZh->!!BHGlYEp>$G->d
z-Rt!VfKPj`B>+U^(hn~}3kt;Gjjs2l;_sQ}%1achAj#tM-_i^rjmGZ_Rob4~N1$}X
zzX1$Q23cr-XGTsDDe45UbtS>^{PX9jLzoG?Y?g8WD*Bk<yuDp0uI6WVm@EpR@*%Z=
z@s=Nl{#Ug;#|K=k!ySNW=~{`oPG|nXpWDo&ek2jpxn|hKc#@&vG|F))*q<j+N|Aae
z84U_)VM%2ic>VI!?fS1bDeE!5%zRrhrmRYk^&N&knMGHY^@PC|<;T!@9>DJ;R2HND
z2@;okEv=jF67b1LbEW^LRi{pivp<yl;q3mYtbA9o)s3vi`qUa#pqEcpO|h^ZnSC6A
zBZY|!6fiv2WaPr0ED@6U^rbeW<f7R#^a1ueKr06gKev~Ao$rd57mbvuryvyeT&JJ(
zWbP`ikRWCo@5oAYB!NynMaiMJA_Jn4qTtL4GH2V_NXiAnjw~-wyx!J#uPOX+EVV;>
zWfwiV#&-YmlDMo+e291gQ69Tnt{L&FqT;x{4f3wI=Orb3W<ORgO3yXlh_w_gAv$D|
zPwG2Vb$PUeEju}G(W0;spDIlavp5o4(^0@zSY?Fc`j9(BRaG_3+u?(O*%V|~UW;d5
z@OqE01crg;+DXe~P$2_|(zW~r`><;03YxMf)@?ygz-|;C(&w#u86FYV@rv7$B95ih
z71V&onq5CUc=a2nz`V@Nh3ot4kJkw)|DC@&J+S^}*x@+)#UR9y-p|O*!U5U3-*M&U
zLm`Sg<~iSqj~+omVK}%!rU=L&{OnDwH~a&y5S2RJ?Z+qtRf1*h-`~~n%CQD3Jjjj{
zK71h7nZ{RSXJv`JPBvKTS*0%z5iG;nzh3@}Dd)pWM8QXwvaf2xMvcJlm+INjnpz(G
zLwG3FHmf}K-MZ>T<q}Rg^Ls+-fAXM|?*v2@3U(_P*PhZrS^IYS_`F_UcF*0){BdFG
zs}5s-QrSD|=f>)4M@+h3EeJB2Y&0p-)nw|<=@#Q=Y}v1A6sv2cyXUN*eTm-Y3ro}E
zf)qMB&6oaovEIOG#;taIs`>YlN5PPK^&S7XpXug)GI(L^nOk1%hHbuoR-XGT*KO2F
zxIb@Y+T3v$j|@(uUfsJNOi_9L<CG`5zwKEpjSfqxLCgamRN2j+Zx1DtdYiWhCD<=+
z&ETEP|0X+bKiUZtF^AyYG-uPE*|bySy1C@uSOH-m`D4SgXHf<(o%PGU>SG_>2Tm%?
ze9w@mD)cq?D?ieIAt-Odq&FjLUbTp9l!+Ty_A^JTb<*M|Rpfq0kzGbq>1t~qGiV;G
zcHn4q3aGRQdU9=8_|B_pMt*)jwTLkR(-}E)sd?rZhJ0w9?rlg4bqhMtWtFfJ!ZC{y
zPG+zMKr@v+FVR+PF{Km{pFE-`G`@|_etL*j(%@*$>pcChXN2AG^hDdVAAu6@y)G0`
z69i{g<;%k<^hF`@NziwJiJfR<H0V~t#j|Vs8R9p5qpO?z5~8(38ohCx4z34cZ=zG+
zLOv$tT@zc_)K~l|t=}u}Rfu61+2i!)P46PH+rIQ8)$a6@D+3<0-4fbg>qK!6vE+Ks
z)ph11&?K)jcsb=dw2K`$oDr`U)5+mu7{J}CWQH_aELk$(7HaXte-(w4zS3Hv*`vpy
zl)TL9#QV^Sl$~3AE5==UU3{~T`?<~&EZ4Vie#8rrZM_`bMt$pK>N$~r-x8%0C&<>+
z`=>?8gL%&3BS)^@ycuVZx1BauBAu$JfbfwMl*0M_Y0+lO8`;t5Q*2L)a8MKN8Eae?
zK=Ozq9(@e`ZOi{@+~xF>3hz7|#G-FwsMIkWi|Uf3V(dyPpzZ#MTlepVw$AxsG&m?h
z-sYX&LZZ=jb-Ji#xMHHo(&k5=DB-88ui%@U-v<E+J!P<LuQl&XaD$z`U$-1w_vVl{
zm6d&N%;~KRXh(;i9{Z)?T>jv&6Ufd7UXNE5nn8y_`;FT{HHcG{sv*&rQ~l1M(LW2>
zBo1|uKJ(|#M~k*X$&aDVgQRo>1rx4SbRYr(i|BzwN5H}Q_e9So3iV^hj)^)&z)9%L
z-IO#-3t5*k<g5GIts8{-5{=>KcWEP4tvk(OD;^Oz7lp|v)Dqi)4y8YpU&)V{TM4Un
zF0^&r2`8N30By8yt-R;98?k27yUR<+<j|q2lu}FCgVlWi5K}e8uWA}6?jV#kSUdg7
z=_*ux4DJLnnU-AN97Ps5*kN|!{nzWD<;*!<yt-ZD_GQ|ch^ZxlSBPSX>^Z@p%V?YV
zRTYcWX-JlP;(hN{&Df(eo*w5M@V*#AD1)X(3GfBce^4CmfS+i0_F9gMQT>x|=^`5?
z^FSK;u(f46WF*y|m=UlW5h|Tr|9Ksf7J_L6Nf^LRYTwvTbT2vJZr2_qh^k<Zk~!dm
z5<#7&K_dn|c0*Uci9+xfMHb9ovzARxR});r$vf}%R<EaXRFug0SVjSoP^C;IOQXEo
z!Cr!p#I7NX;(o^3PP=1%d`(2E2+do`>@DhnflwY?5Bf8i8Lg}~w!5;Lh0YT-r+()B
z`}g0SNem|7JOegAahrBUe~R+i54N9?JAeoLEwk|pRZ4Z~!m4EP&(iVlW!-6t*QQMx
zH|99l03zIwl$L{Qx(^9OH1&JoYj+T<T%>F6S5uvI1|rTx0%G^ub&{^QrFZ%GqKsNe
zkwL-vZ!o9BebyJ1JRhj|5#J9!Vo-Z+Uh~=v&oNx|AX;}MDEowfAZY6A6NpHc{g6t{
z8&tMR$HvA+)GuryO~WhKuI1pN9itaZrg2y|q?e&cP=uiTSZKF!VX5%SRDP}(ijk=I
z9y&BBy}^Y9=`pY<6?uL5k>Fl0D<G(2-k%ml6OhV=o0X?9apSb9NXitBNgOj!&nFm+
z7CUX}`Vv1ILz5LN-neymAj>bLn|Zj?y3QGIh=Qdt$uG1wigo(|&YM|pXTeL*{5=Nz
ztKW^2ozP1o4Wo%)P+*^!nnZ@dC59R%P$G&enU-o_LsoxcNfoYoMv%oaePPk6y)gC2
z_AK|Wxul5&7V9!`?rIm-(>j61Y14Lgm)UoN@bF=MO!4vEvEu;C`gK6J>{%d#(i<1G
z@m$5#D_4>hxWMBzyb>Hq7~e3o%c+*WIZGUD$U9TLpMjArrvMGCsqSa}>BDfwah!R5
zrT5sgE{5*KdsjBeIhch05qde_>aUF({p@O0W5&Nbf7+{zU3LF3b|RQWHHx80Bo|P*
z`|M1JA`+$nx5Phe!Gb4)ip6<Pde+U8?bi{}(HT@(BA0B_YxI~gf3jSoDKuo-!3Ga!
zLjrs@#bqwN<$=MLiOc2-e<RXgfXIoO)+I|2{&L~Ydhc%1lZ~5_DBm|E)d)R}YC*Oq
zC(S9Zkin_NaZ4n9BDH$#*F1p1?l;lZgeJd8iZsq+I-l6j526c%5cDu0jR~RqF%6L>
zSPm<T1{28P6HeDib;rjRF7Y2avesDXrC;;VhSFag$r5Zh;y%q($eq~T$xQ}r8VUO)
ztQHhhVu`!x$0e|NdV1EM-67>UZ4p@d{3)Kc>FMc?jm*%A#qjA49B&DO_V=3JVxgFV
z$XfU<crc!J_vlzma4UbPJ151n{`yZ0mX29kh6)v-vaea)`#4|LC(-3FyUzGWB3|06
zzm{@ua4LI(fbaJ|rD<Wrp&bu7hqB;A=Pc{4P+ZwYt~BFQ$~$=+6xRX%-z$vUl)=8r
zx{uqoefzn`-m^vpja+XdT{Dtg@kkQfG6-WGjQ02}$3Z6@*fXhEon~$znGYN@7@;_`
zfWuj5?U~3eehNVewCl~cvzy=}qCN7W`t!jFr=bVo{MZ#7>|8c@@$DRkB`;y0hAw&F
zsmgyfB!y|1R3nf}P*6w1EbEo`4x?);e61&%TuyUgv^wdp5~@(lGpL17yA6|M(I9UJ
z8!Y|P=jNOqy>kp)3Nv^9^;g=U&%=HE{4Ab6xp11Av319eYc8Y>cFNz6CRTIA2(g-w
zIZsT>$sv3(9nJ<|$tOgn)sw#XEqD7qscVL}k6oPAa#WjYJ$s6(c3g5Sjvy>9$DrN8
z!7<>JxmKJT7V!NEr_UDbOQTD9CV-UoE!ha`GM&@FV0J-JM>YLWJ?$rsCri*XTpo4>
z1Vr$tA_3oIo@DNlHGsC@s{KnGdW0n;to*HfseCK6anGLPK~Llyj9xdJC$eB*#aWDi
z#vO7U)p6+Z338<Jk(9h_>FMGn!f%TOAN}J(90JrQrsVYr69AphkWN)N7N!&}rR<%8
z@<_TjWMDHgQ;|+2<lYV>lNPf?@etV7dAQ7~qes~kr%*X>@YyumUm7%G?F__X<9E1D
zunauW)Z^Umk_1cYVQ50_#(8ZKmDhO7O#6XHY^Fktc;%%6@`|Ev@LJm)v!M9RK?jK6
z)1utB5ZK#DYX+~$#oc+{yn}=kWpj*lsa4U;=(l`~Z#NM(l9IU^T7C|cd4f+GDM^mI
ztwu+%-e=hgtnS;h8CALQa{1?$gCQHu>OGjUgRVDre238!1nU9Xvs>27SAC<|Gz<Sh
zK>?1W0g}AMF{{ne&d%<);0{<wpay-);i2Xe-Ia3uFs-|Yms&mjC~Apz6Hg{2<bij(
zR2$7SK0BaROFMs3!{h%crihUm>(LImGz+u9y9{;hz`;K$9_>W3O0W@wPPA%y&BCA#
ztbuZJ!DA*l8JPP>cN|~duJrT!eV;X#40GUNGQhypsqftlP>7)<l5r^wBBV!)gJNM6
z!#u8g_EJXV`M|#aiO;kCA|1}XJulAR_dA7C8ntDU%Bm$OYFR^maWo<S1*RD7v$atN
z-?y0)Yx2xfCdX?B1>|9-;n;B>2}_Dmgij^Ff#4A!e=`inBp<-^+Mc(W#G&2vV-VR;
zyV)INbN&4Dv|me<Uv6MO_rLsxXX%oqOXFtnd4(aWiaEn5bv0pM&M+?V_VI<=5hTsg
zUx6%F%!E0dq*=#z=guA_&+@XtZv$GZs9&irK133!u3j(Z*rk7SW^ts%VwSfk>fDEC
zy}_2-zI)F~7IlmuFTcEsxrv$x^Oas28eu7!)2ZcI*$bnDv_iP(H%4E1nZ{e%{kLJ}
z!B8sCs9Pl^CF+1;ca}jq$^lEL*hNo0uqC9Vk+>(bLvl&-x4Lq|i^7`IEWp3rg3Hyn
zOP)P*nD>hTy;!IJUE%=vF}cH(48bQ6>+V)1VUrRo&+d#0w=Y$lK&4>y6IBl()Iswm
zV>~5RreqGo9b9SNV$GLgps;I9U5m?=|8vd!PfthQ;`4wrGM5E-Ag}B`Cx`f|cIFLd
zZIYLJQfK{WJ>%OF=+JXVp1J!Zhm6I4Xi$I{>j1&%-lD>gt*xxKW?!IB8uZy1p;qU$
zmDA7}wVtF4Gb-n>=&bQiKCp3)j<&YM&B(khV4xfGl=z`W&$5g<_YCDj_UsG$<qMoi
zqM)k9KJlsC_xa;^p$7z`p^)IRX<;1;ExdzLg!KLZS_u(!%Z3@&Z}PaEy_}2yV8n2Y
z9oM^i_w(wFOe_B0vPHB*(vN4D1v?~8C4vWRNZJ+~8!L(~^dHimC%#35#sd}f2#%r4
z<*1B1Ba3MB;eDIG$5O_eVgoKNld2Vs`Kkl4wRN*o%Wt;QT~BPiZoU)4q@CHgN4%`6
z+Qs+C;N#<mQc_ud*M}^a&^mrUur@cgTcY#|-wwR^Jib$ANj|@SZnlpY=}UVjv8#7w
z)r+&$&iCkz_`nvcq*M`;v>d7d5s-=~mUHgP<;y#0xT3rerIMIMOD+Rej8Ze@&WBaf
z1dI^S_FlMYPZ`ph;AW(J?sH~-StuHFIp$<W3Kf9MidMbhUxodC_wNAt#Zy1<v9=Qi
zt(?IBXeHv6twqE~|F++yU+`;e<|^7KGIMic5FBi8L$QgWyEp=hIV3%AF^Usn`uvkC
z;nC|36MAQpqwl__8^@mIn0gz{0d=zPnc*XoNK|kka5wp<O#X$R$L7nH9kW^WZ$oLI
zf$)|I=LI{O5z#EjadT0l@i8C;7s}-F6mxdI)*VmtXx>Ft;(T8*H}mjFiaUExcie+1
zEivvR;j&?2`>IkJ+cVZ$w9=R6X~tKZVLHSv>3geQF6-eLfNCDilXJ^NIf8;fhPcJu
ztL>M}Z^V%y-=>(DPS~gtw_wfzQDuN|%wM5;0eG6qasFP;Kk3Y&^RHls{C<l1<4$3Q
z6DADMVpi1rNi}&Ho}P-GK8pF4BC5JMzKcqO5SE-Mlu<cJ+*_7ZIt(5VrdF)BRaT4B
zFL*KM_T<U6MCHULUzVYo9l=AaYU8#c3f-)mD}^PfcIpSNP!^QYWF;3A-@Dwvhyzqx
zN5^O~{n`a_w8R&kB7TZrgI06n6{5G4d1*v#uQQyx0wRbH&gRQ8Cqb8xwf9z6PtAw&
z2^ED3$3}pEGr2*9uj<!lvx%bxgD|g?(I>*6#D`5Jh2JH;2?3INGEK#@P+c1PsJ#6B
zF+DgYc4$L>q@N<7YrR&5;5rCU)FH?+^X~vyNUsKJnmsj*_7H%jFc$BwK|}5!z6J&l
zC+4b$)}F0uUUh($=P$nJj3hPCt@>;1BISGw&-3;)F_=5%V)HV)Wj1-SF3>tjd5+ac
zNCfrJdRP7;>FtG)8rw+gjm+LYLnhUvS+g8`FM9ud$s}SAk*boHB@<1-icA(P2z_P6
zY81Gf5uxYIbZRM+thBl!*WiaM_d`)X%LtOIC-hG!2O1gt3mG{b3}f&u795YA6>))-
zNL0(Vop1}D*M9#;8CEAC)_Mk}SX9eoA<@)G;y(ic>gHk^2t~M!&^1cTrhpk!ZP8oZ
zz!gPou_Fhsu3e~)+kRanebxs$!1ih`j;Onin~yq0z2_kTC@h*syS9@UZ7(f*@gjym
z6VSGi#=?#qV}RJ`s%A(HkZTK4A~HZ}{Sjyc<hg(Rid-PbrvRY0sEWD+YY#`cFEcE1
z^;kW*@L?nX-G&WIo|jlVx$o#&Nx<aCcfd@0)5Eo1`l1FO!EE7!aW>-jVXsgeUF-gr
z*=n#H7U&-TMjHFz$Rfl&5+pPENpsE5Gzf@_P4F0Ms!BwKj^y|gr%vskGhBKK5G^hO
zU6QtF!Wsd#(s83{Ia7xP9?$C(R2$A8?>nQkW#@Wce3!U5Lb@D6A{R#>rStydkI~_G
z_q8#Xi`7UX*O3h&sGq9H^gKZRt~GC{@bnU0gDBdfDs+7sXh^Lfod)9CEB?A-NJ+jD
zb={Cifk<1*OG6)02fXzjfoCBcNvE133K7MREGPSpoV{nyp226<vv;{c7m?>5(j$YV
z|9n`xFK_g4*94;~+D&#;eqJ0w@ipt~rJfoNmanr>oEXFC6h>_A-+>6*!8c*)U8Yd6
z^9E`)U$PK)#v5W+2JR{j$;@fL#c>&PC&&YD579+7{;{J*))_f?!E3`HYzNBdD>vQb
zm@irYuE@~jYi@g2bJ-m;SK1iNr%#`*wr=(eWw?Cs=JDd+u3o=>ivnKaj^}f}Nq5^Y
zw`ZzYL9-WEezAU)6dak@VFLA2JU+}R<D5&AC@tC}g`{3@E7BmKe~U$nG#b>Vvj)Ey
z)#bH^Q=@dvzkH+Q(6Fvje}hz}s0>{mb~&6S)t8+jwrp|NtJPa5ChjKv5chYmIgxCM
zwV<HB<QLc8?FtHt0z?p=O-eydEM<==*OwYgrb`gWD{E1AFbwz_{H8evJ|hk9W{9(*
zw2M7{@W8nH+e3A0d@3Nv)^53SfAX==Ps*$6B$&vQDceFKU2f-*H|=a$&pW23x*ZL7
zK$OQ1$%|KbE(`np>q1p!p(X+bg0)5clH8@Q@);Pfk>=x$3+?O{akYdrMM^y7df~H^
zTA<rheuK2W*x+QPd<jvSR~MURw5IbbDk^H;xfXSwbXvkLN1sY5vI7lG&C3_bGV`|)
zh-Gqg>Ia#(A(2aYVOd{5Jp;{To4{viC9TWe9;mzJ`>=-5O<Kp)#J(Zi&G_^Q7qDSs
zM2gILxa~cvbfpQVdTm5d7|-~UoeUUNqbvKNjbmW1x~tMAcM6p%%SvXp$Ut(rp(lZK
zYh`6;dsTt)*-9i+{v6)?h2CiCyZq}%EW_ne6_XZ26P`EXHb;RzuDO!Zi(^3Q2a!>t
z>7HDBVp2K|l+;vy=J<SE96>YkrL542wNv?g`=C}M@x5ZzA0;`0nd6%`GmAJ=RGfpa
z371N|z04mef269c4a$>!&KV6t3ByW0`@A%(cI=g!3w#`H#{+I5nODBMj)1c_Xt>x~
zg+*K|{C(zesmh<jUk*A&%f~J<;^o=mli_urb65-{+v7J8w~fv(m@YZ|4NAxsZ(>3P
zV4*75;xquK!~=C7=R5T4m6_fBdOVc4BX)d@LuAxGkk03YXYR-v@C}AyFa>!Vd<$&x
z7!mC2qe^M^C9eBNow{viUwiImG0`A|b)!;RS-BjMw<Q#fwidBW4X1K<v1{;hBh2As
zvEb|dE%;I;rr2G|{ra@el38AK&?shC36}Kgtq!17AY3%FInG-ppE@OTd1&WS53O5E
zbJ~2lFQ=5M+h$EG8f4TSeV*>H;W^1GU2M<LAtHKhb=Kd0J5{6;L^%=ju@zI^3gf%h
zMLAYUoP59XWgV6ze|b!v?$Q{Ely-{rZ5E=6Ilzwb_iv)`e7I}Ro^WW664pa%AswdV
z2qRmX)~*4?fDT{cxbDHQub=jwO7n!><zF}pGV)jBLMT;?{2k*p6egkcbaf~NG^$wO
zUia?4?3Sag-`_FAge|uI*Od_e&zA)I%o$ZdjIoaphvdtbN$!VBJCZCeH|qQ*m1mgx
zqWpQ><?CgI9Q}G(i%SrU$UJk~wUjyc)_?vaitx=uRE+>m|3x`r(<C#CD~2Hw^&@q~
zMZ3CBbZYqZ6CZgjj)476{P%s`dw8xwdze&8wqS+p#ZdVJBA3aNv2*(uXRdJA0Flea
z$pCVq>a@bbLUr{zAZ5;^ulKISy;uBr@X6TPeVHF4p2(j+<el5<wqixRR1wn6oA+rL
zq*}ZkZU~~!Ld9uUhGUo<eM!8)FL|{h<yIYPqnKmc<o1{4m){S+UeW(bNoEJ5R3?KY
z0s8`Fu;;v?3Wc*1X`XyCmYZA8czP-Xh6cX*-xdG;^@>Mv#cYILxCKWM%f{CQlzLE4
zQnD(&%UswNNdOur7iM;DxfA2QXjWDjk3?*%-vFwILXE*aeM!L;p3(E_(3O-%#D(EZ
zwSiaia&vO(Qx`zT>A!pMhj{4n_P3saLktJRkeDYopJFbK2BL76VxG!AwFU^b>i*{%
zv9tP;WGm)e{dyPExQp$bhArrrmX_8b?aMo@sHl($CDM9m+kg0QYe)~74kuZ1%j|lJ
z7iMs5Iq-8m$rYtVBK0h%uoxfF?;437OkMrE+NCq6^qX($Z=Gb<vG~!W2?uMBmMg!I
zJ_xK%BSk=N4TzU0Js~bLpBWK!HR!3)3t;LZ=F%cK7V+SA(5gv5RARb0d9tz`A;d?`
z`SRE{^4K!A*X4UNWoMK3T1uY?z7e^$*w0IuB`^WPrJcXjS6oS^ZBU#GJ)VUhL5yWr
zWd*p?3dgp_omZuVEU()GSK5D#L{^+?r|W8xV~$j!f^p+A+nt-S{S4A42wa_=g5dT3
zzbK4@FQ%qOkc$WuDUd{!758uw#aOgeoJhFT)#{#@ahtEFRgrVfm!<2wn23K<EP;6A
zVyh>ld*`c=W^y)zemXM!QdWU4==;1G3WMps-rmYP7f)hL$7BFfWZK%bYfmEC0X-AY
zSN-sp@AUiMcgEy}&Op>zn}zKU3IjcsCQs=Rqk~?wnYPkE#zQ?q6pJK{5~3Zem~ftF
z%a#okPUalTGEzp82tYOq2(l`X@_|iQ6wBMI1D~*ObE>*s7YY;`=DH{cxA3^{-ll>S
z@LxD&cuekff8Bc71AOt6Th8Sm90(;N60m2lqN4inFB8Q!0FIxp=nXN)6bm!9#{87;
z6)%k2_M3G>ASu{R`jUX89&aqhrT!`Iw(?OJfS7F2tPAVDmUV~VmJ9-++l#w;^A{|*
z0?yj0vBpX)RUA)_U|Z^q^896<i%Wmnk`PiwV9>chIgDp=Hq8dnnB|Fs&pG^+>a@Gh
zI#Mtb{G~TjtVDu>f*vs}D<#FC;dkFj?*=M)H1y0(_#1{D#s9Ugy%oM%>|v@QK|-{(
zwRyQQzP_!bEf|@pR4g=JxO^DyPBz4K3cxC(M#%Q3ZRt{XH=eJz)h1B}zlo>@HXDjy
zz`B=ebUBhq1H1)E2LQ}PV5gQ)O-w+#jLe@yn4y1S%fn2kIUkR%CEPqJDY0KMnHRMG
z;z`=B;kPWvjxZ1rkV=$yykU}*xS@k}bi}AGi`0Gc#HNa)Y6PEWbRzsZdbD(x@w@^$
z{ZPBF4D>G5rm+t;O1<8fEQ~Em{<Dkwy~fzzQw=Ec;hHph^cYR+lqvbWU;o+8Zc`{B
z8O#%bHw;Ydm5>lV&!FTLy(Y3Wn5cF*G!#?l`BD<mjKx82zd~Q(+59EWW@l$-(Un+m
zr{d7u+N)4Z?0kQ-ax+-zQTE=v5(j<(q#MX(dOAMR9fPgSbWSeX7-Honz~k7Dm&;bk
zmu{BYLhxL%B7ny>gXy8EOw0<^R8=*2&PYzCSy=cLOsl6*OToY$B^;o{z#8{F>y^^8
zQnsk>GX5W7Zyu0yy8iJ$&dfQ^%(0xAVMdmiktN%pg~&2vEFnvqEj!Ul5)x{@Gm{w;
z@nmbaq?D2rDv6mWrAMPwN{bOSDTO2n{a)Ael$rDWp5O1+A2Y`AEcfTWulu^**Zcjx
zYA3dCJx14c8oDHTK5N0YEf|^|L*HDW0``k&I9oRhu%&F42M;VhjA*BLXv$UDx=lFV
zx&&^Rf5UfNe~Xa;YL{mQ*<(S1ghaQU`L;4!5IkCpBvDt~U_`|CKC%V_$DvFWHZL2@
zL$wl{u90thjAi*bL{j2>p!@CpL-aY|Y%a~!Ddvt4r`}MDiBCnujyVgb=?gg)2?;0F
z$D%ctQ@p3iBG$KOkDJe*f7sCB&idSX%<Ck@ir|{H%L)C7!Ijeo^ud@`y8h&enC|C7
z`H>MnaDf&Dxo{put0(mqCtWOS<gSAbVW?}sr(dScVL-_f35CRFYP($}@EBu6$3;F?
z1+=;!f%pexJ({0{`X}eN$}iWq7qbMSOQ?{xlim}BuTX5I<JAixo-}0o&k8(ALwop<
z4;90AU%GTjLOccmZ=R%fCV$^ARDm_YZd0H&6a;#ZWC87q5kBeC(GltbB=aW#<SO6U
z;}dIFO4k!9v}GpuoaQINr8Np~-V1DQ2dzgKKEn3a#&ql!&ro=D1A)_Nh36rWIZ50P
z*#D`*Gr(p2`Z-)$GK*Yfs9e>#wAtz8t#Vz0I7K$6#8S?up6*b2w<8J3w0JVFUr+eG
zTzr$TewefCzkCu;Z|@GKH1S|4yaI7K5ESHST!Bf5#=w3i*st2W3=N9^VLr&OAR^|V
z$zovxL?QD)fp*T1Sp(v<6<IW@f%c$%D)nhqc;4N2dGa}+p|n_5Q>Uo4wqggGYL3A~
zqei|_D^_>b?z1xh?&z;i;Vd)|!!sKB{lnf@9N8keP?Yem;43}Ezp~+ubeVZlYXMb7
zWug1I`a2JNcK&1$;SH0JEko)8y50)Yl!X#FTJwj@2r67V?oxrm_bZhv8t!lx#go1X
zi&RGZaZevvMO3!^?Z{W++G&8P3;XcKqo=}T2VXkC8?Q3^THbNu@(1hY(i*so<FmIb
z02WS|1Aj79V^Q+|r~gZHBIa}gu9!(!FW_2TbB^rRomDawCvf<UCRMD6_{YfQCSqfG
zAi|(tN&FTmsmMh>`9yunKK#PtXFF)udF4b1k?6&SnW{l2-py0l3Tp1xqx&zA8-Xg8
zVy>5DU}EOOllzG`8}7pag{ipl-j#Oa7?6{;gWx4|xS$6uVBd}yp<d5>Q%)BgD`LQz
z{mmW-&K=bNhJ3C4UuaULBR&0SGvZEigv3Y7J@LI$;CCZN;5vQ&IQ~KYkRBwpAX)C-
zEV?M^jZ#qiA6EC6){nbjH&;dV8V$JB!~QS3V?o>QSQa}UdBqkPIRx02_7-McBpF8}
z0FUIlR}6P+k6Xy5_hmjt>;>WLVAcxS+nUZlIB<D#136QQ)6aINA@2NTKj^lWubBym
z1B8hs4q37AM8c7ssXZvsM~uLf{d_d7Zs6<y$UEMb$dcqOC?eY4BD3rmVxX%5!LtJf
z$=b-ziJh7od0;BN`(uPrdyvSqB|PEy^}m0uwmo0PD)y4(iMFSR(rQpYO@Z8zPl{}+
z=^hMp_}OmQUsk18>#AtIU|fnFC~8^~=nqXZUo1YBt>E1=gV~<8{2viT@4iIV)KFKp
z6zQDi!+MTgw0x0;%U@RE-KjV!uCl#%ygVBF0z+Ns2-4hA*R-2(Qn06i4e#u1>>)bw
z+{ZxxR+`#z{hC2`|M@B1+CHTWPLh%?tq3{ZjDth=AsbUyqrIi;MX#)QejUUWAu57+
zNIl8V=HO%JPgWfJFI#$q_`!41q!Vc(FuEkDAaA}@U2}G9qeh{u8<8)x2e{+58k`~_
zuDJElXMm}G{Ffd4e(MhIkO-%e8~*^IphlY7lE$b%rU%Hn2+OewF1Ql_nd~jTVgY~#
z{M7brT4aGc#m^giQDv&Jjod$D&C}KrFY}*dgabmhnE}b`zX;y;%;eIGB71>8j=UDY
z8z`S7QD<?>IrS9nIj`loL8bU&sn1_RNT=2iGUc1elNX%3P{Q|qg}J&wIun};NQG&W
z-ko20-alL_5%tH*ym0^j<z$U-dphgsc#!iH&ZlCo=3(q--iUnd1icR0#`B>?jml@i
z<xmJ-#(nadjb20p<u0$>fPD71Kfmt>ZL!spTSG<{DlHH^zQKu!Z>cYs_~t#Fst68J
zniv~d(cfx))orcEXGP+$zdW1{nul{G4Mb~EOY`Lx`=}PAN@6}HAke*=D><jFm8hC}
zXv>6z{^1fJJ)fNjU1%Y`!F&E(!(CdMHC$E>ns`dsNur>qWp6s`eK4a4LPJ4(ZB5a+
z8v>uvcS_lBLBt@z_{&)tq2{O1g1IBEB_fbuLgQN59rBlo3wb#)do&Rgk8ZG&fR@Dd
z-qVvN8+`WXm+SIn>zDH)d(e`x7Hj@Zv(Oi6!y}YHBl5v&MB?2F**%<Oa^XJ?#QoNE
z`p!uzT3tiK{P{jOQga!|%Fv&uk<Rq6g=s=Xmhlc6IC;P0iM(U}KmTP(I=3##cQ|ZB
zVRM)|A8OSc?$u;@G!uuB-~F(2XOC(wt!mW6!~cI@N1FCbF6>c_S6R2Zn$AGBjbs#1
z6w2mf#_UfYk)O=dIZks`lmCpB*S^!l$}?YyY04h-7ZJ<_xP4Wh_QhpVhXozO($dqb
z`C$63AHh^}_GUaxA<_v-;BD}i<?Yz|y;h1<4wTAn)qv4oQ`V~2r{I(B-3K98Sqb~Y
zQ3FE{bbof?B$8zjiJsWh!cu(q=Q269@(7l#6tZJh*36Y9VE@va^z4C+(=M535v8S>
z-S%sS<|;6|G~v(BQ#`(HFF)wD-j?*2Yh)%37KKy)x&RX}1DO#eP%^K0Hnrx{JnQ&(
zs-*Sqt=LKrgydbtxPN{wK(wc$JDHZn(O>h{#bJaZ{m}=SZEJYA<Uby=Q`<wHB;`7(
zsg}Kbnlp|RR5>sg*3b((rmoLVXIpV<{<7O|wWg|uI(5rtaNR|FE#VV7%7FJhbZqSP
z+sQ{({D1wuy>|G#SseYFha)$2{=;5o;&Z^(T&-F6Gmhu;kNMk!sQ>wm=e++q9>kb7
z#*aYtxsOVkD5mY@&(E0ykr5N1;rVW58`YW6vd3hKaS^N-=!%tNB;{f*#JJWzI<GOY
z5LukO7^s<m;d?k)QOHQ?Q$m&ywUM+pO!8x@6m$L!SYyt$m$!s!s7ueD*7xkQ7+XgE
zr3~e`3*vmupFYNs1Y8y(2n_yXTqD6(9X}ZwnaCdqm-`c&U=fIcw@Y2C`SDb>g$*&|
zaW2O19?P9;vb~QC7lx-=YEqdUa)`{DlefPgg?a(q^{5xZ>7(1Wn9FY9Zw8`0Vol7I
z&#(9OQG=fj2f^fm-D{2TjGYOJVv`;VFY!2MkU{C`H3M5efnvYb-<vbkhi~FfU=|_H
zJ*7|aF>5;CZRtg{|LSQm-4zdifuJL@mbjJt)&1Qlvyd;`t?5><Y~s5V^VinA$>E#Q
z{&}9Bicfsm7QbR#A7?i<t2wEYVsck)?bBo)>KAGI2#Vr=w;s#)@U=RLb;wFnv9(_P
zGuIB5rt8><q3=yx4mP2cPBE<(=DzC^$*Xt<w5{V6(Uud#S3a(;)@+R~Zc8tBW=ss<
zX|*4jEq0?$QDs>3s`C`}(P;Z1qtY~B#2rua(1p>E)osjVB`g3i(wyHGY*GyLh7NUn
zt^rjThEiWXb;oOIra(QE=`zHEL_X?j-3M(i$iFk&j`%-dAI^_PA39Uq8+K(<aF4#(
zQq)QDgEMk$d+Ld_R}iXmxw(FRGoEK&APon&&@znxH?FNuerXTORlJ$Ssg{guq$yq8
zcR%;M+Ty`pK)`blmWUbY5G-2X#Q;Gr+1d=H;5{c#o?LP1Ef}wWP~6K9ZyJ*-Yw&Kz
z-$Wcc_+Psk-oATr_T#qJd)#4S>G^Y@oTp%gs6*4_uY3o2-j^4WOubr=d+zd~2kl$X
zW=eq~bB6_|7g4KB9_I^<;y-)%2oH*5af?2b*^ov}Csy;858Jox2uQQ*dd`zWp~Htb
zDZG~Q<e0}i6h0|3W&F3vDd62)*e;qfDc(c~6Wb^wW)SlUmL#V`>VN(d?aqGZo9Jeq
zlYj{2_d<|5RJDH7{k=6QkY~s185tw?pc`1BJ_{CI2fc2&u&6%e{CgAUg8!u3%@K+{
zSXx4~eG0X-)S3C_VKZ-W8=j=3Sr{~rEN44p6Lslu2+0Tik(Tqd+<fnTGC$LVe>U*n
zD8_$7iGiHwBStXZt{Hu;mIiZL`esNaapekyj_~E#hsx6_M^%VhcWsM?yH!OAIw~Io
zB!{G8M{cFWADG%{Qku@Qva;Hzj+d=(==tnj|LcgST*x$}BA0awFKpuiAb+;Y4clGl
zylXMY-qWX4R#$6ALl9u`EJ18ymoUZ^l7GP$iv`D2i_w7YiwrtOHc26XTU6Q@0|QHn
z@ySUO-hEB-9FNw$xjzyDAe`kUugg41VO;`${s9Hz7FlK#caUE%1}!Ltt6(+gFuz1S
z_696t*T$gNsV4w9|GpKM>NipOWCFT5Z~pS=CN`yN4(|~Qwp3NvWx3&bL0bwwTH*Va
zY<oIcP7=EYEbMII({^`GN+XoJA68o~C(nLUPtK(!byyc|ZKo)YS5+-{F4n#5Uf0r6
zp6$@D`(T@#J}bI(bw6m;{+!wI=($5D#200!mv$N2Z)n%WuObefKe-?}dZArRQREbd
zk%K<}{(GAs>&p|0t;+(lKKWw6mg04zMio?#iD_)!8srkB<FqBHU@Jr=-Mh`w;Wyso
z>T1wqX`C6een8F+KgF9PZoA`O*6_*tV<zfAySEZtaV>(ctq%{(la58*2L70*bph>A
z;j2C^nQ4A$(_?=(>#&(x3^ckEf0NO!z*1GU>f5~aHMJe}HMvAh7}xH|4yljk0j^Rz
zpCB)ip(IvKgRP>(q@c!PsKWTQ%s2vhsv^<}bNtecc8bt@XcjOA_J1lWSTdy5_C7CP
zZmCaL_RIeiE({ns0hnTu##dkSrdLvb?r$l-oEUr`qM=MbVQWF>nBo7yTpree<=r+h
zpiSEe*0%Z4uYa&OIp_1P1Ls^ReW*~FNe2^bdwCiNT`(pps_K7r9kfat4U0{6k#4>D
zfB$yR;xWWMDQI9%T1fEf?#h55#g*}ZGBS@@Z#)7j;ab;kWxv(G1T0Q+s}D1+Mjhsg
zt%e>~Qi7^=kb&k~bRM<FT{C2Fq7A#a0qxr(u$hWP7=zd-mW4G)i-b5Wz>&B>^YVih
z#-Ef?OhUsadehUmz9EE)eh>!9$_JnvEb9y<ZeY(*b*-gmQn67K&Z09klXh3hV1Q&9
z>>_Nek3SZGl`)LsX(?7FJ$uEq_?aQ=y+!Y7BZEG~6B`&;-j#k=1kpT_;@|Id8T3`4
z9UYU&ySmIp5gzCI29gbes)b4hC2C1z&V7xygvgr2e?abI5~Gt7zx~^w1!qIWy$yV;
z_|ON7;c@08)7LS<Sbh$D&VD9D!5Fc05CI0w7g`jM60JzQ8n_3lMd!YuPOcgzPAWmd
zPJ#jX`3Q5C#3fElfQV-iyb-w7H%T#Z%e#pwt&kK68S;JDOrowA8jpM*`izaww|(--
zC!)lnG+#&dX-VyfCZ&N{hceTqDy2OM%#OEBYcTqrivmR%%KAjosT4^cQ1#iUHGFj1
zsRwk}ho<CGdv(P24s%Lr>cN2&Qa<^$u*Sq15v+ax@4*}cOY${5+-!qsbokSe2zE+=
zGHhAy?nGg%o(#?OcuFK$TB5d$rkBOzq%p6t@7?Ap^h<C?kTvFchy%S$`Qg;@^?Z#w
zHV9-7i9ttn?1FD@z6_I_|7Wgr8Z}Z-?~-JeMJ`a~1GJcHLbhAwJZ`LGr%CZiY9nT~
zIbh8ZZ0PF5%3yN_Sf72<vz;QJ8}USV$c}};#J)N*u!wkxoc+;+Nenp|a$~{;lN@d;
z$F5~facUZ|X45M?p^19#yu&TFZrVs4Exy!?VeJ(opVQ>3+t;*1M%~sYVn=i%%z$W+
zm^elGlp=FYBIuA_8g}<~qcJ>-Hhm*|HjNx4t~iDhU*S*At>v}68=G7YBEDWR3tBWq
zFwF5Z^hPpi*zb3LPE8MbA%>TR@h9Pz>%%yxni+Cjr*EG=S4Km|^J;#dHhLmq<Azm7
zC_Y}0?i1gNkJRu{7^ECFbo8GazxLM5>IV2ZqRmfT5qrma=TI5ZP~Tl__Lg_^iX}?S
ztkz|Z#S*}VG%i7OnV1F>Vt9wte^S~=U$-^|yxh@$9CHb5Wmfl%=E6jmHGTE<^>6rN
zrfGj#NUHK$bZ}Dd-W{8IN$h`+(-hf-aMF6rHh%hzmp#e59W&rpEtvhohh4J_SO)_z
zhuvb`jW$uMb}^$x%h>{2wF^S0?HjT*X8&ct{zI#S{ILF5m&I(_<g;0`XU#Gk53_wp
zHIC}TX+W>g>DRB&`UXkOZrTQG5-LGcoKiN6?CezI>?z##i1x_fQ<Hg!WskI3_CRB|
z9GMB?)zF17dzfCkD!cBh{m<MZkcAWC_hwQwMW=j;GV8a}ety!k&9^+W?3W?+3^-Wc
zU=4ulWQ>om&Fjp;F`*ZS>F8X2l%2l$t#!Zw9&v!ZAm5A{aTrH7;Mtr(<?%XhIySj-
zdnhJ$+5&k<HKCjfCrd&+KWF#8xiv)ns|ROEwNE8X+xLZE#X1BP^uh9xW~}NqB`lHT
zBUdKW(4bv&DvWH74uq8$x_KFimLHPsnpxe%qf*9|6INCyaOMr{emn9l5%z4<a-acj
zl6^*#2kUXi&4GKGWfBr`>1kSziulZggan66+VnOoIO94Qd3lx`e$!E3;uk^BGk@>r
zlX8l4Z=c5QiF{3(`bg+6Bp$306|gXyEoVQ<NCGFHOC{WZlyr@K9jGY9(jt<USX~bs
zGlhcy+caQxEr6a_U+SBy&OW2DUFEkXc*KCCVU^VVcDQU2f%=)CSvxKi7?%&%Y{j81
z5=2-gITuDEWE)RcFc2Ey$SmnxN>K<enRiU?13iuYOD_G3jeOmiE}(O#Nzlcb&T#vi
z+5Y+_eC_G={^8qNN)wzX3DcLTuyyn7K0TxrOOiWP)JMZBi76sOC+H+JFX^l>t|5mG
zB?9|Dr9e^HKJ>$H#f+;dYYXZll+g}h;<9iYk$r~uqWHC+fB9w1#glEEK6$jp-fK1D
zoCj{SbmMky-?nXJ);QuVdD?PAuQ8)XpG1u-iM!kibSBoak}@#V^2o$?CPIJ`%S7m{
zSHiY3{ahTB(eKH%Dq>XD^%Swvju=iMGs*=3?6er<vuA{w&pE?0(p=Oda$n*OVSs})
z%A68w7o-{d{@C2^qV0x4{fIbdkS%%@xuSR$!UmA;BWR0$Z!8JS=q{)#Quj|kG%Omg
zj$gbhv;0=(+V2~KXz+ZM;YW*xd@56X1z*S(wS_ovNW&c3j}T!eym{`+P2^ZHguXWy
zQ5?HyG#z;Y$>7xC$cMUaZ+X*5t0te&fsN>=yS4PD5Fl)%qkE1ECg6o(he-k~KnCPG
zdk$pq2!U6wq+@&nn#<E@Tid)PX%G&^V9aEUB~2982}aLjw!ey(Au${dKN<cYG?)d3
z6G}fKQz9(O{BOa62;iaumCFXCelDqjs#ug3Fun>{p=jF2yz*SGsax_#Ww^>{=dbw_
zR`Aub47hg-?H(+K6W%m_9p#14fMrg+xGRh4l6XsG?S|4MeM`p=my%qPV}uG8Q;7#g
z6#2x7W@*A07Ho;}>Yyd|PX1Wo{$Q{=vy047!o^qgdT4L-!Abp%ByD9C0;*C3Euo>i
zCJjD=(A&hs9=f5ZS>)qEYS1wuB`knev*Bgon-CsUHO7<q0K}3G@y@1~nM(^lELuj5
z)!d0in>wOCe5N0bj^CQCI1Pi;bky{_Em<zyJ~JoG`9fx``1iJ>JB46-2Heg;CB;N|
z$&YcfR64a3Zl$?vG-sST%xV6yW$hg|CDsvFwu?n!4`l}v90qq1B|SUPS7>oxm9kW}
z=(f{Bb{Oe_Ynm5`P+}OyZc}*hNr{wPQ+R)sH64d?;Lxn~b!4O6m@#6La{01{S0bNd
zWPR=H?$GscRNmjekz+kY9;Gp|;#30j-c{QW4SHQ$VY1m2-ba=JSJn6X2;NRZxdPM7
zXOCN5F@`bpWQ{XM6|9Ku#=|`ud66}$su;E~{`#OgvJ<To?ae(YU+q*N1i30{rbj(v
zg;rrL9~Ka>cki-fQZ=h4zmoKtE!EK%a*ET*7rS%ZO-Fg4U-hC@=eH<jTT_QJ58}3I
z+-5i&aZ%%Nzk9U38efcU+!$3AIK*}*dYw(0LT8zj0izXLJ29C|%4WCyLgV?IU*-M#
zE06}=+PkWQ)<~U_#+6hzw`hpCn6h<vz)q{?%k7(UTW{@eM>byW-ywB)sYlE9fDjqT
zu1Y3-w>i8yMy9pYkD++ds$e?vH3;{^U2Ys0yauyf<C0=wq(MD6zx6aJq3Nhm0PX`x
zll@>(+B%e_j4LUo93mKL+b*f+K3p@u5kNXCnWbNI_|U7;X(I{aYv|mZ2)N8_@l@9N
z(e{_ag&Y!c{68+>b^q%E{wkmV6T)$-#+4>%h&Gf}NH!ZUTQzZj4I~qAC`rou(c4>J
z3_WN1jl4FHLcmfg=h_A-`W_^V^{DHg@y`w&;x`+y1FyH!ZHYdE$%mwL{OtXEe@$)p
zEK1}WG0D$%amQr2@W_<`0gIBFKw89^w4VvS-qOe=$vpJ?TWL}g0aP#1_0k!RGd*|d
z<^7-eI%q!4{nMXSX2+0D1ULhwN_8&%WEnF$V9ALkdRSZPrI7Iwst(njLoYK=#)jAw
zU-s}|Cg121YXC=P9Koo#VtfHDB_N5usT2Kis-#tE=VzLm`k5d5=7USmb7t6X5UVWM
z4{34%@-(Bv_J>J|jb+={!W7BIGj!aIg|$=I2|~~9I?Q@>N%~TTPM<2`Xq_T_7KUBw
z)w5?jW4mXTeW#>TF~P5Hk%_RfX;TL|o#ylrHCG$Vb>*I+w-_4{#<Q#@&z;_AFJoyq
zefs4<nG)ym)4oNgZ-v1J^_?i(*nBs=V-{busV~^OvALRAq614}J}?o#ktK`@)?0#1
z3<pn#(z0No6{Zf?DS12QHLDR_nyY(&q37hvaa(tj7L;#vIW%O!F;0r#Q^2k0uzO)5
z;N!^%4Rdp|zC#7-6yjyrSd#@x1hnEXaQG=c61DE8iYEi%l6K}V_&;_PLrL@N3_#G|
z_Hw<b7)h<>anud?Pjq^IMzWLu&l^IWG!aYv&nHigXfTOoqu{(tY{`oeS|H(0=#;lP
zZi{hN&Z<LX=cPKVl=&+D>2$_^6I1Wi9nri5LIAQ&;~S_p;EXrvV9Qr6KYX_2j9oq@
z@|<PMmWA0%y#fn9z<J8<o$Nb9pT&z8Gu!mHA@;Kh6#-j)#**}hOSbtGGD24Wi_c+<
zNqf<zm~?GpkJ&_UcRu|Lr3L8&wzGY2Y+Y<^t*-r-kYm81i?cqoxGuSV58g9+DmR%t
zj2X8cSx}v0(M6fO+Sr&q^2>*p2F^coMDp;5{u1KT(fg_A5*WxmfxJ&^{1N~yteh7F
z-8i}6*&hDr4Su{G9S<J}#foy3pB}4Oe}|dv5a$i+)_qAkLF~*_2^6a`YB9_n8E=&T
z=nFJtz?Z`_79r(xv&M|~R7~M>=AjflA5(S;|NTYVTc*#3@{?7LgC{EKvdT!sz28YX
zjYLmXh_T=OW2g?R*pJHa@HJtHa97a6#ppxX-#8&&-6Cmyj>bhfy%(r|W8yHT7F<8u
zZkCeH+6iDpTV$JBv#gWBQ!OXW%S_9S(npoU?(@|_;+z+@m9+cd>Lt{%f|QtC2=8E{
zKly1VPU-=MJ8sj~GH52I-!QJFre!{n@9Lp&d*`8SYCvo@T}cjk&}oSfm)P4glHT~^
zE4u(20EeVRF5-Do0~S4ZxO3(gW2ZZ3j=~H(8`U_gw%4e2rMDqyN8Nn*y>M<8R3s!O
z$|yLobP2s1b6IY%T~5=rE@|sxr32iM?p?N}e0PWNq%gUVVeXj#rz=OMgy=&3oz25j
zjg&!8u(_2R-G7Z48j}cDn67`n!qQNnuGLaA-AHB|ia%sU^A7S9E7K&mTjU(k-II}6
zt<6osn#>NtrcE+&97m#GylEk;VwRgo<{Y=J_jEHZss_@t(t@zxaH3h|=X=(#aCir>
z>k+2r`U>O7((R3lC0A6A3^WYchpu=Iy@dEN^OzexqyQA}53#^uv`Pd^DE0_KQ>Q&_
z89MDF%%Q5qC+}ZhChvXNzEvQke!8AhKQoP#UwIm<zyRTKi%XfF!<++AJx2ADP8Iyf
z^HtsHkySk9#K&c!gGn}RJ~+s7x<|{K3p$0xKeArBaV7>sh73`a1GCF4gshjyQsZrx
zR=u#_5dO<!qJ5R&Ld1?s39k9zfjTCT-ZIXZxKamHI8%864m516mzr6dRQ_&7v+~QO
z;}Ny}!4Xk9l?4Pkn7KkXWg|IeM$<TT+g4v;idJ<^Q&IS~rK=wh+XR%;T2r~h3SEVR
zSqay|!6q^))y7?qdg+Fzy?XVkC|=T`3g@kLcc06}A7)&&X;O7i%v1Pccam=|!FOR*
z*SlMnhCsDoK@WF4O|3YOc&|$TlG})k;IK2<hGS6y;hP(O40iUWO@$4FlDoG%9C)_<
zixQ``VZ=M9dbL2jZgDhdf<!Wxf&$tUmxZSO?|-i^aBn?X>V<E60*Z^2NjVgcQ8%%F
zd&D&<C@SSB1NNfWS3=Ew1xWVr{(WWb5?vlob=a>pK;K>+Qm@C4`0}Ctl`J;8U%DU&
z=L@hr40U@=l4TVe-5hq)lvxyP40gjleK+Fk@Bx-@DSt(J@nM&N%MQpGXUMh1cBWf7
zWD(RKdfXm9j{d;`!DCgCM%NC05WhKeM^N9sed8RA;~$njxcw#>diufK#dQ_i?PnZ!
zd}L5{X<e?%g_sr&P2B75=PvAT%!5i7R+W(RxFGhMpFRe4H}l`FbHet?`G(->7nY_r
z=Y?(^RaT~Rw@hP-*0wC3$*m}`XGs^l;(0tX8)J!Mn7x>jM;*`+qb0T^os;QFO>CGO
z`}{kk&H>wl?W&iR5%tmV0R^FzOZ;z}Rf401-whQjJ*ka|$T%y%;+DD1@0<!`OAkg5
zoby<Bx76^B{zk4#Lj%{XoiQ$NgkD6CL2+A`kiei4m~*hX;`ST;4wDdEUXRzx31$!7
z8FS6*?2gmCCdu_y^!IgB7Z`o<aJ%Z}xJ$ks;U)$R&3zx<UTgx5CEl%!f%6!l)+B_~
zebV+l)&HJYiphces?Y2}AjwkvoMR>z7%Sr?7?3GQq(rX%6IT1~2epDx@5*+%(QzK>
zeB3VcS-Ps}kBV=bcdQ$@I4NFW0B*HeN@n;3>YGN&{o_`g<SL_8hLl_~yL^zSf%YWN
z;k3~Sj(163k~cJhqQHPx=Vom0Z5HR6xyGqDJNeO)B`wKst<6gdYQQp@B0|<Y`YG+u
zmrKvPm2n3+<o%_w!bkTU+E%a&F<f9Uu?i-&)$)=dmv(GjTYrW5toNBaDx*p*&#uZS
z9@dmHW1Mb1<XyuU)1ZLTE_q|OzNoP^jBqN77dIfl;e$Go9Rc`_ba8+F$G+dkN5sqp
zMg)^At?;i4$K)ZvWzyGQN8Qg_a<S%mL~|8jESW&%G}FX>V`DrrD}h|z8kdFoKTCN_
zK}in|O|GLy$3xE&!*+z6*m3!LFRvnN^G&6T)Q{rbKkj7SD%D7b_i7<wVV?YTZ>-8=
zc<Jzr!9+mIWXjFvB?05atrniC&9)1syHPRctn?XoaJgiih5tUpx#f!W^AUF@W6b|7
z1g|VkhtGz_z_47Rj&<FePZ@>Dl+1t)=9h1RFJIr+okM%5%GDtnV(X}>k1|X*-_@z9
ztlT^yGh?o9ojs-rDpjb^gUMU$(<16lQ3!DNWxWK~Gkn~mckhs}TYp7Ucszj<Ten!Y
z4C_)S#8?U9ju4xPZAL_1=&xLI4;OAv6fg@hu1zutw3gSthe;H}OcDIWo2gp+ZByWr
zBM5Lv+uYsUd{mUocm#9zs}(riFCDSwdAncZ!qIuiye-3r(EIa^Uoey&*vBQ*3&?Si
z!D1+lIbp8sq<rv`tkI{M{XP@GpX*sQvJMzm$^xxX*!Gts@AqBBke|B56!*E8cWgg(
zC%-w#p>X7>(GA;O@eUf(2wNMs@ewz+1F9T{S{Y#X?g6TQ(PwPiu5<&87D1s_$Qak@
zFvHJe>XNDDeUmK-KM>Q6bKPBJe1obS>RPz1!;EagFR+e*o)gjKpuLPY(+-iXxVbJL
zzD9KakzrXG*X?62*=Wn8cr1k%oX!|ZdpBcbCG~`rY2^9jO@;fO?Wjdm8TOBAl9sH<
z!cpP&nH?oN5o7NxZ0PE`bnUu24Z43-#Q|OOG~*OH370<G(i!X#RP0MVnc#cYp}#4j
za%yK)!u;43RffGcGt<+UQfP&L-479DFaf2N|M|s>JNj$5(w)EO^ku>{^oHnv*v9{n
zU>({RVG4dmSL0k$cQQ<~RjVFc`pi8<_=}MK^~%AfACWU_RfNDQ<u?3D3q4nHq_cis
zfI@SMxU4O5aerf3wW;rt%!t!kw$#(Kk5;EqB`}cE{$O?OG)A+o>zEFrnGv4>#Qqg9
z%Bb)>!R`PhjTWYgOM}svw`EIjF>m5)Ae!vqEwXf~ATSB5-KRS%K`E?>Vi`}Ka?nrx
zV+K-OaXu(1-fwyoaLP(`J5hxcMG|wZozQA?LQVWme*h;QNpV&J@4`TxrT)q6GnsYo
zO<N#v`AQc^%`iNItL!zd7Hunc<x*><@?_$f)&BI%Tqz;u=mA|_5R3_<fmI3X;L6jW
zIU#jvX=y3U<vBM$3rU^6f8g@Gz3z0?M3c@+PxHOVBvf4g=dijXvn7Fy%rMZ?9dH61
zWEy^bGm?B(KLmj?fBU+rUrBJy9o!b)Fm>B<<Hn6%_CS^fE3W=iEIpw&87{qH#VJ#U
z&RgO(nPS`3KONRf9^M$IbR)$fld!WPzSFxf1-i)&t>(1ZZeUeo_>V=GoR~i1XX#u0
z-LIrB0zH!;N{$`o_L|0|;NF&TRa9>yx1A<u92GEzwwPe3pl7LeAKE*KYzXSvbvvO2
z^--97^OZ%`%kMgm|4rQXiC(9YIrSm{<8}42<&!hvyQ(&TEKUX$c!OX^%7k^{ub}cg
ziXccJKvXC)?L}zKn6WG{*!9=`Gbn?3;N!)b2XtPJuP9SoG9MsM&pT&75AC0ykxVEO
z`5LFe<idavDKKOq1cgW^6_Q0Ju~u5G^dUDgH3zOs;lrllpXq1Vg7&_`8AHbewWW+j
zuq2P?tIrm*)wngY{Xf_xbZTK@*1NJ_PJ;vASP?tlV9J=WV^5KU7}lB7gBfa_FbA+O
zpHPf{$T8HLYhiuBXEK)&x0KfOGX+c(whp<kLurc>6_&Nv@;~UX6v*OHtDS;}&1IL*
zSrt(bTkl3z3{%r+Lmh86yMZ;U3<?t<Gv~2w1gAq>1(2nlB1@Cl$%|iD2>tR*`%SwZ
z0sKli0_JN1>%)x0YC-UnAzB=#+tRl)7@7#+B>vrA%?Ad~{hD$sm*~>Zgp@-N&zuJ&
zinD<@+-^=dYC(2*g!veMP(O^iyk<L?i?lIFN}`3DOr0b$v%CkzfBXA~YuU|KzQ@ho
zakLk&qqsyPP+wj#bNxblMy9bc$GP;TDf1ddCH9w}+P}9}A?>Ho)R*~*;ysenVrmYB
z_o81p`f`9PA*PCFX;%MKl0lMWJ07A|Z5{1Rc6(XbfPIq!0|Vpf_DUoZwFhVG`WDV5
zInR)i*EBcQ+_`#iAH1ZhYo9H>4e8F#HHF3ydDoWnFC@{DY2tz_8>C^s&dC^q7o%4-
zO{(WtKbgI%dg1x?8#l`Q$>-uK&(0EH$G^zWj4D>dn&OLMv}C6an_0ZJw}KSJlk`&f
ze*2aZ7KHtB&I4rZYatv1hCJ9FF<_KrxWLf!_%01RqCbd%`0=bwN<<(dzBB<3g8>Mw
zVAqI2DdRu_hZ)_K9=D8z;QWh1Pe+&DlT3U7ILv+E?&em-*%rr?v&HWBu6!$Y_a1NS
zd$VL=0p{^*)#KPj!6lBd!C%flbFXCF=YM$|{L<`bE0;t)L-32qyQV3nxBj?+2PiI8
zAjCQ*qHD19ebkH4E@hJRvc#T6oMAeop2>8Ee1#FA_)GxWiEAd{xJhFYE1pM<&`(?n
zVk1O-hvm=|CAC?<fPA!xljx8ub(l&y(*+#nIh1vE^-hac{Bp=hP6hITgcu?U79a*2
z^Nv#WX4@S*sq?0CLQCQ)(O$X2l!D!AL6FHKu}~EZJi#`R!zN#yS_}{;<6_bhE4s?k
zI|1`sOfbsfL`G{jqHvbuiSjI?(5U|Ml&9ox{9m1tlF-a_ZTFednn9p;gqwXPmEp|#
zB<@IS@#kXO#BKAK#xSnh+s|*C&n~o>ip{6W;C#v&A@RGYXu8|xb~j;2UkW8>DD|)%
zI3sQ%BYTTb3(Q@@zf2Ykdqb`kDib@A^fHHGH>jToooRg5SC<_u7^)|kWXP$ZyNgi$
ziLs*rawAp9gr!_|GwUyj@2wekkesM-FYc@~EZ}Y&Ams(7BDdHqC?ti?O!6^>TgsBW
zm3x1HiIw>Qs51~52sRb<Vp8elMlEenPbIX>{1PQmMR${m?7yN!v?jj0@yoO~m+!NC
zw7-zLgKS>6>cz%ng8kTe?<=aB+5ZhU$JR}|-<<d6W2ClR>%!ZR$vZTx1ye(qS9CGH
zr|;gqM-bLv_x81rRAgSo!J+Q+I{GH|V<eD>%h^9Tm4^cxo&vtk44KffJ+V}@&de{F
zq6FjpQpUzv`Rqhv_b1nc>b-78uk%0p_>8Ixhw2G=AOfs2lQ8CFP%;>2z94+Pl=}GV
za+%%UHiY=ayJ2~kfNKM$PDb>PicZ~b?$4ki$Ywk<vwdGo7Kb0;)RF>wd{Kp=0_|_F
zjywj6%1bc?+bo3VM^|*e4jpcFyk7T}A}VmS^RJImr^xJZ4-b#AR*-%@1LrV707#U%
z-B_A|A{Hfn!Gac_0?@L9DWMDnRknpQ^J1u4+rC$~6^PgVfL=xB#;x~KuaLu2?IoZ3
z;M|M*Xz_TWGO^{wu*qr)k0hF<tEVaD3(1KKe=`0L5oKyd+PWXwu(a#Yg%*TcRi6D#
zOs&9zLSY6}JZkvQny+)r&NbHR9Lo5L*{mts_J-^HP4Vm?4;vz4z7!0hWV3~_$ELQQ
zko_Nj)%ZhAUhZkkN6j-f?2x+W0DI<rf>|Dx4WU=BUhUw*@Ff{z{s+ZSMI!CDiYabB
zQNkS?{V=;t2(AfPTjm?xWpWWeo)%}8eN{i2VB)oW__rMudymo<74?zqATe_mY@D;0
zON9(eJ4(91Wc^n5OGvA5fGwTXbwYRS=(EcAPq_OZANk($$(jo4K|8b(6-2hP(7$Y*
z+9_7a6fAm$H%G>Zm4%Uu%`l7SYiATvbFLYy`G5+A&;Ni|$}DV><O7#x#GZAnwh~)%
znSr@kSN_zKIUC|PtKZTyJ~v;6FoaK6C_4X-q~eIs4}j5n8By??(?@>}74i?VN8g`+
zo-xeo<ysPX1D~cdZKUEW$G>0&XfIf>-DSKgN|C~gI--n5Z!ky_#csnV5*5yFHc`Lz
zZ_AZx0OCQri16qVTK%gt_s5zWTuD7ep1`2Rqe3#eaWl_&>-e`XSH^vCnHzG`>55+n
zs-w`<n3By<#P9O<wt&8V?D+AAzyJO@R5|Ep%t%v}o)~X-xYb}sq1e*p2j&cuIZ}M?
zlNl9ilX4eJ9D^TUu*t3A-a0KqEeNEsE@~#=ll84v(KAmj?giI4c99@}L6PmWm(X+7
z53tzROeVgp?qlsSVC>?eE}gL%->z!NcoN}pzAdGEas~ih$!!@$Je{HB7@Z)l6~6h-
zk0MhH`uv<}fv%k+b-!oxl{Nq%l&^Mb&e5-JNCF(vsW7jUjAo*tn>Fm+u~uynaAK`=
ze#ky_N}M`%q-*9fIp5r(pDl&qrYJReUVDj#O*v6}-&wzYt9}1PQ>_`s04|vJX=G_<
zR~pE}ke>&q$L3np9R@|Q{BEt&%3Yd=qphjw`uI#M49(PGX|#t#cx=+sT+{rmCnqyz
z<XZS?tcDVIYG{<#`<l(N7EyPv!ECNVnR5}4&JG^LpwC{X+O~L~#)k)NBWG&de2Uw4
z`bV&C^nFr){q;Fc4TZ5l3VVCWd~Uazy1I4g>`u+knULh+rU!H*<-hh`Y&+S~Tp%i6
z)`B6OvnP-Lw+L4WVGY_8W8pE@s_n6OzPaP>Kge8Nul8xYrP(NMSHV%jWd4-5EliMm
zznpO@8ABH%z?mEB&(D1&rN-#pTQ|48wa#ku8$?T)oqI<<^|GIdhKJKxW3ef$ncwPZ
zrBJ+B9n<!$70s>H-?P0?3l4`2wD0Ccwz;};7c3+jTAT4?cX~FOM<L(zg<n`^7xn%;
z)4BD*bQWS5L4H*lgvfY#oP7oh^Pj3hby)K_<Zo{9X#2WXcC>xu3IIt%A91@YNp{PX
z<?_smnjibC@h}1xq?Bc{@iafz$8K=>zc0}L;rr(?DP~|)spfBo25v27osGskoA*uw
zFfDOZ+iERa`r1bwcdoA#i|%uFmU>HY%2h8dhCL5{gji#rraNJ6+Xh!WxT$X$rgk^<
z+}`$-=4AFiMDK8+!4*Dm@^X^W3g>VC_II)AyDKZN`FR%HJnr55dbFJa@s5GVJWWY^
z%>X+F$q*D~9OS(_u$9)U#WaMAYfU;2K=X4wptkbeM|kt@BM=kw&{XM>!pD+js{g{o
z>Ei6Syqi)7>Vh;=Z+30l>U&3(ynE=L$=|k~lH(%m!zyXIvP0@`m<l|$rb)6ll$^4f
z6Emv(^GRMO8CJe2N`2?@c|4OJ@0e-6y7g#wZ2M9&J_D%U?<t%G@pLT`D)F*zUf9Vj
zPXlW%pcC?V{<{W@+tOLH-@Qn$wihwn@?_b8Aq#T6r)o@SBr&*h+>zo+j9j&R@FnI1
z|K+o^pEPUM|9u%Nnwh6OW{%}y3Y|a}a?3`}P&GBUUb#?*F)cj1a&p`H8js#!*S4|x
ztaCo!dK+cQSPftuaWDwI8#1gJg`n=zlx>?%cTjjvy#W*w0Tb@<Q>s)t=quWu*ON1_
zF1;aP4mjlkswq=j97<PG6N!z2j;_bs*Qjwl_T>LlVYD39j1cf)Y#W(2z;4dU*KUnP
z$v?C{pmJ!`qEETRoC0MihPpDu;S~T{jWu#{pFK3L?7&KFtWm4iuW8jZtdEf~HU#+v
zK`wY%P!35IcPBm_WI&%h*~E-7P8`9#14{hDn2NcLIxS)kW)X7#*^X<CNp;R`7ju;G
zY~{)+7pqy;M4o}?)TwZ*s3ta6=MObeqN&2%U{L$^?Z?hj$9*WV3%GfOIpTh(ox;dT
zI6|UIaq*9gKCFq>Zk;vd?-S4Yv~wv(R9hH!B>r2y2BTN~{j=V^W7yk+Ax|2Q!qsM6
zeU{#f!5?a#oR2r?hR6V440}(p;dYR1<Yu&IHzJ?v_ibCnpERquW#Y@1FaO|)?W2vL
zld&RJrn1Q>%AmpT@h%NeqyaV-+Z2;Cgw4~u`n?oN5=aPT-=%qLt*o?D^r<XSwH?EW
zrQc|>BIAid9S~Qvr<@s>jAKcBReLPkDW0r{a_CPAwlYmB6b1~bTKcq}qGEAj)b}|A
zC7fDUV)b>m!l1UedcEx~X+M+pK_2})z47cpnMMQVIo9g$iYuwB$?@@RPSA2^CK`y#
zpgBjl9yBrQ%JE|!EpG?W6VdYNZty5&sUA#gA*FLR<As7orth`9xUu?gTQ;s<^KR$Y
zwTdXTC-Q)W(XHA7rX|Ec&9iXEyVJEQXEIbAr4C$;Hy{Dz9I-B|H4C=I;z4%EQtmmu
zaw3n+l{4DWD|I-ikFkvA;zRl}K|rY9;xNhN7wH;E;X)2s@$y`|EBS4Al4tVn*5{@G
z>Jq17a3#HLF({Lf<Arm$LeJLGuHDM-xR$4NtS<&vzKtME7Ds+Or_Kd<lj-Gp*k5kk
zGs}<}FLU5-$pGWEq@&Qysw%e8ftJ(=k0!sB1^@6I>+tSwyMDLzhH7siOc*>?=*b?g
zlzEBBat2})yypPVc-caT(6R%dvDRCor^$mt_~(ZZ3w69v)}{e*<Z>$q_H`$KEMR%^
z>5!{j=${AziL+&lV4R%35xptS%xM%sG>Pw-I9^e_uT(z|fWx26dt~du^f|7{eYBTJ
zSD8xiVQsBb@S;mw&#^qRwF_fMN|q!;lb|`sP)WZ^aa%_A|L2D*0mKiZW99!8Z2VB|
z)!Z7f-~!%WnMN%VPlhIZMRAUl5iB(Q8z4=KHZMzBDL`5-*#+%A_nXZ&A4ha<x&sk3
zRg)N8FK=7CVtP+8z<`mkg(?!MI>d4socz?A4>@@4o)AvNZ%g<+kj%1uXjBTk&=j&l
zv!@j9;^Qi0TA|2OTBnYC+(Z$umfd7i9A?@>21Qb_nfl%(C71tz1FB@yoDR&Wm%*ny
zD<Vz=hi!$uTF)rFtH!N)%mY)+m2+j%5jufl$1gs8^~Efw+G&>wUz?(c^2vi40SG*h
zM=Gpxk!t<ZVb&*wfk3{!DN60ef%HEbgg|)9T7aR=*z#Pgev|U@{=e$)KrG-a(OI}L
z{IUobQ2c4tfo4LCNT{xUZ{k+7S>~ojBgVkt`@bLUS0+!0UoWgG$6!WKTA&JsWYUMx
z7=^K86jYqxv@+gRa7ee)3@Ma_%?m%*nqazp1)JQhCniROr{cWvj9!wdC8`7{NSvn|
z8%ntEqsQNN1i0Glx?OR7+9TV@h!Gk;v1h|Hx!t|b>BApmYKj%4<%lNTIOX%I@DN~F
zJIG07O(>M#vQva;ET}&cvWh17fztPkG!G}YX#Frb1-P1Xat=H5p(yh9J>D*Z%VAO!
zc$?Sy`B5H5h$T`oyTM^;55-yK27f!dwlLn>6yNesso#jymSCk>E?^gremnXdiDxKc
z`@6Cx8_I~nl2k!8vgIjq%qvz3f18TUGHIjjSgY0uyvm85$%c)|Z<fA=5%(O@#wvFo
zfR{zrgxjgIH?P3|+wd+yA!?Pr={Yju*3V+>-5Q#v34u?<gpxy^sux!;8OY=5sUWsz
z&B|-1*gF=pD_O2g@zfqLo6m3|D;>l^01iqq+Ns+%MWLdVpX&>O;)RJEAapgHIQ*i=
z(MGiCTIT3$_h`GKPx#B`=5V7*Tzqy;SO1OkZSi^qSw8+jJM~d}kn3kYie(?eF$*^1
zDTw!I_=oKj2@^>0=nx~K?nh9ch7zP=CA(OxoMh~!04}kb7gqFfN72@Y5N{$=+A(@c
zb%@6KCT<rE#I^NBoIm4KKGA@yK*b12rn&3@T0moTZjvUaTJ)QynCWbUFO0CRgiS4e
zQKwoaiZcyFczHhHvof^}+WF)8crP_p5XoL~6$5V$y@XY<jO)%T7b2Vx*G0-8V2*C<
zf+fs=2O+j&TG@d{daAN-SBI_t{Z}jJP5vpgMMf64S8Vu|m6Xw{`jv3Sm%@Tb>!eAC
z9nj^<8XA8g#7l;Gh-0yIdYW|a<~;VejdUbit`k;sx->&TT3>c?P+WQMcRDaaw-=9o
zh+GTTU1~Te<e3BIXnc{sn97_!uI9%U>KX(0tU9uXz9i#na=wg3sb2^}aBB1=n={^_
zS*DjdgK&ZAi`Atw4FeI*=mq0`F4}UR9QA`<&|0Bsk09#hqC|)U;t=yqcz|cN8sql_
z_s@zAXaT@2^Xi}&%|)deGzj0zg#b2!?aRDpP$>Zrm_!nR6ynD44yTI20M+9c=)gQj
z7F-n38hHCu3OY}6X;?1aq`)EPY@@lpEgh<pz@kVYioBcpj8+&SA9Kd)WS<VaA=sMJ
za2t?;8agIk%h$q@doe_v^Y3lf8cse!;c66T8;%?5AnSzn{(*cAThJP@N~D{36xP!z
zL6h)Lk$xkgO2)i)%6m_t-IXmXx;LBb;AnPxBym}C9Pxfb#4wNxLe-t@6C>KCOrZRM
zUSjT>IhssVaqlZb{Kz;bGjkqycI|=VwrMrFaDQ-5y|<A60QL7jOfqt*z-G6|8;@jv
z)vk7ZR`Ru(D-@TN011;@^mOv2OVR$%gn|ePd-wP^@^~ipZ)??ENfF<(&9&A<Xj_<Y
z3sbfw3X5OD%0ms`ZYshGlenp{xCO8i;Wu)sitxg}fiP&;G_0jeH3DP9quU{OA<mg}
zwXErsOP2=rp=-z~O^&0esg!{ZbWKzh(R{T##wGEa>q@0Fpi>3jFWstAQk)L;v@}W0
z?b1Zqh}Tx_(XEOzhO}_`OePmv9vclG{@XSOi1$KYQA;4DtpPj;;cCU9h3W#*wzcfs
zt0N6HyvOpyZcJJLl322o>LFF5*Z0XihlQ3{)3HJ>5epTHP-#5?mf=A$2Th2iDs@Wr
zzDAf^Paz{?;pryr(?Rf97Uqf*)-9THt~hs?sCzd8%90G3_`1V<6EjD&J%-t0&_oQ)
z{&tN*kt0*RcniO$N51+_DxJfzkmbdc?n3F-8A_RAC0?u?@QJ4jK9u*K7IOR&I21n*
zOeH&qOcu|)L($8N2PZ8ZnWxM<-!6UFPN6-5HgqI|@*t#!6DS4D0rX?2Og*1;K=)RA
zwkOw}U0iaR3>os+m1rey_^Ovwpd#!SJG|%xaZ>;vaai2>9KX7gsB#vPv-vH88jBy-
zm;ssX6+9Bb-@VC+rG7h+(d^Mu*Al^fYh%ppNUpM>^X$M26pB^5O(Nyro<oG>NUP}F
zn9Wd4WsC)|KkN_zM?DDJzM>rdbjucTP2}yBI--t+(7x&PKd&#K$slf)Ftt@>RI^b$
zNy*hVY^sRS(;x?)``JXM!p9nequBX;2{1CcSCUp*-+W-<o^$k54Q7vP*w3Zg_p{Fq
zxex83(5Y&P+gx^Q?t!~4=@Wdv*HKRV`h%g<{;-T3Xt}G;<T3MfkC`<r{Ayy-^T>a9
zxis*{X&-$vrz+>~Rg1@T+x2hdoR6pdp%WTd*8BD7GA%P3<;)-NHJ`J}_a9ep++5>l
z<kG(}^QNq@D}GFR+9aezvV&`bsPAMdUxM>Wlg5@s4IB>hWE=Gt(eCxuQY}sHW4fUt
zD?;F^O<GqjXL8AA^_MYzk3<vsV3(|^{P+nY2oC-&`iCJFbs{&C3<6M~>K|`X+qeLW
zFx@cO6vTFuIu}E$uVI+ao}H*zCag@+6{hjI^6)b}Q1gnqCqf=N?JOOc60=oa6SS*C
zOjmiwy(2Y2Qhu%Zx&Do8PRh2d1UeR->JTnPOM3vyPyKi<m7OmP;a$j7AsUnMFqgn_
zr;~$a`Wu{*n@xzhJn77UQ8DGS|DotPT((fkwnFa#7{$+<SJ0(#CSo^X6jP{Ek%VKp
zRt@H<`om1UW}8|s^0v=IuoH@wNE#~M2qsX!<g?E{6a5~g!Yr3gifOw+D7I5O+PtO_
z6+zCssgY!4mhjrSjQg3euk#@{C+v{dpV;3eqefG+zIz9S;`P`L<R?V30~;^T-9ehx
zsje3dB%ZHL8o^=T@@}(Y)R)S=(f@nBI28%>QmV*M^vlVNC8g|Cm+d>ihla|kG%lTU
z8EO^BmgkxZ<u7lm*!z3bfRL>aIOsS=+`L60C!{p*_BdbC+6m87XO7c){g?MV3BYAf
zyi`jvh<jh=xdCMua9s2{!9}Kg2{P;JIklX1lb$t%{O~7Fo@5QHjQtE~Jtdg$s;b#A
zGLNQ6R>6IOjNjr;Pwtez`rDPcPJXR4kUu}E=YRro5@~Gey=ZKlN3EC}7=v_C?o6t(
zz9wR#E5r@LQ`p7)+dty-%JshS>HW#lf#5Me!>TUW*zGywHQm|4#y;`d_nb%YdgA1$
zlu=oT;J)x3yfwM2uG!T<vrF&_L_y{|IMbNne!mgY`kBxTk8e8ukG)Q1Dbf5|5~w8R
zy6eab%6<dF45w-uj4aO2y5C!qgcQa4E*h}s&#$6TjLec)&log4ZPc1)=}lB@<06zS
zf&nBtCc+s*7$oyeHWt{;hQb7*a-8TY?JF4Cvo<;Y^l?A3-}VAcNbl}R(US*<x%$M+
zCXE7Ha!<}e$WNB-wph#fF<x8EFD@_lU0g~3Qp72cB80#rjH0RY`zh`@S11cxZ`nUT
z?Us?y2<+G$HrD75MG{+elaYsx(s&<HF2hg=H&r(SlxzX%%}P!~-#%o;cab`BFonz@
z9~S<tklQC!-&o6U9i$y}ZN*%Am?JL+4k!|LKG-ewP%OqGA9AuebbzL<kK3%*pH#aC
z&cu0c+fZQrgM|-QMY0Y2V}4+)HtR9+VrY6kzrker&LU9ds+|%0m1WWdTiAT(B)0_{
zc===G`wHU^{%lIMeYrl9yg~m+uxxsE>o)M`YxnmTOT8z?tsEK|8c7xyOKdOSU))*J
zCn8(_)Zq@bjqE_!Hv6GF5$8-Hr^z%^AUlC&)HyE}Fz#X;09>tQ);qYTkmreEfq%Ru
zGTGuo>Nn>j&vZ^Tyqx2oe!0ZK#Y55~$ga{x116&FCC^ZlhA0bXMt-VzlF$l(w0(U3
z?U^e}3`^{s7WtVOHLc6Sx3s3Kgsa5~>}NvVn8&l0yCJ;SBqiRDLSe|NNTKhs7H=Fb
z_zg;TnS3mi2!H(yhrsO#zjU3JDH)&(`0-RoWruXQ?Sw)_NnmAjaHq!+VI%}TeevSv
z1G|w0L`RzQ1BCdTCI8J4bm(s3@-XuRTn7qbxol@|$i~P>W)G<t^nn+_R*MsVQv@r9
z{kNk&8%&8t*<ceugj|Y`pdH?%5AgD=ZJ=HE9t?6|+XUIqDfh@D&3po}%*-%kG8Myw
zWum$aID)1D7WPA+)hEH$m`{jtyjCNWasu4&avsC#DGOfitfzm7Q3G9(hZQgCf>%~B
z9wX(`mKXgktLuuxgSSo>Jvb<-uOoeNj<$H(NH{w<Z1Jmsne402|8GpaXCcCF+x2ev
zI6-|j3GbawEzC*ND`)FVTYpx@c1i0V7v*`Art<uwcpRaFW&<C}1ZpX=XGQ#L_G!@P
zfgm{EBH1SiEcE^iP7qC|HB)RA+I?k@0QYOjL{hHI^;<3jqjAIfesrRpB6v<q?F8H|
z|MTZc1jKnDm8?7RiFS6*K2t8xy7-gfUZHCuNTXn8WJ4zg*J)~UTbDpC<1pQM=vhGe
z>b_|#OLj8{^|`18JAS_8KPB5ZFyaWLgC4KXwTRQoE=>CqsUWChE*Yy3Pq;Lxm}lTS
zAtVX{+$7R~xu5=g&8ChW>e^Vl7>?kt$#pOoGiDVIwoW)BE*UF^@*HoIq|3ZhLeU_o
zEJC>Be9O=(j?3Nc9d%@L$^bYWsdk7&hjc{YB`R$Z$b(Zt(Tbp@BSg=$s$aQ#_{;Ue
zvkSr+qqMYC65U`paH!hv9Nn5zO+q_rT>;}&x#i~3&5)Z1K4BHtfXE3Py3aHJ7)4>q
zI?AVw3017uYAkc2`f?FetVH`(ba8Wxj-RixUlj<b1viv$mViNIt#`*c5zvV$$E9?J
z_%3yWm=_3f!?`>S7Hi0)h6y$7d&!xwVm`v<DwHXJe=Amx!Px&oJf3&dm~A#9<^#B@
z()#abvbnbS79_XG3Cy%*Z*Uwfh(DGo+uUgF4!KsDf<j!Dg#yo@4jtR3vmr5J{6Rp7
zQf<$#Q^&MX>z3>c&L*>o-|=Sa8%`Uc&78WLD)1rYzWjN1r3Inplf|ECf68M9;Gs%e
zEPsw2a2o0-tD%dqERvCDJUE-iH)9d=Q<}<^7tqYA9*0xce_@D$z3kiT6)B>QCyFQ?
z%KEy4#UAG=uB99iMYtqr#Ha`aB~nsYa`hx8+zI(;GgJ8<7boU=FJdNP$_^>WgiJ!T
zsUqVLX$1=z!^XOM$tygcE$Dck?KIlpazp(_<_U9C^eVc5=`3PK6D4$`>L<Np5?m_x
z$U%fQxfq;{YG*$=F7+)I7hlOx8R2lH`hE|C;2eG)g1pKgH@rMocN1MrA9y`LO_NbL
z`63yc)TAR5a2H<O6fLkH+)#SrGX0&eXCY1jb>ZUOd2mO|o6W6;H1dsEX)!iX54^%v
z@I_I8lEb!0%zi}2&&xbyLM*qR%-~=>9_#0QcyH-V4*Hh=;hk^nT{UeavcZuTv9I!E
zOnkI|(?wGn1M1(<9xNX4m#6mA0*<|2BQ@#0_o=fh>bAgz&#u|PZ#-!sMi*4H_yml0
zUg6c-1sRrMdQamm>yw^wA>an_)<*L1ayIO&$QLb0pNqq4ai7`wf^BoNIG2B}D!`Mf
z8wB|gAA+8_1U}gD>_NuLo<<w4_Mb}2xMxxGy-NC#)6WN!{&ff8nc?g~==KJG?9PRA
zp?QonjBj~NdIQO@BN~TQ^#ypRB4Lit(4%$NSBT=ZRa~CVl{b4`YzP%=)Q-$#uRn}P
zRj;=_UKws4T#h|&8bPjeSqfjhXX%<Z#Sq~g>+kqXczZaq{ww829AV$%#IA~!P=`i=
z#sj+9chNP|DeTE<Gu+Yqc+}32@0NE<L&dtAN~SP6M(os}>C{xjy<PW$Bv7Bf#YbNO
zl+d@Zn8P^p>1C7s1LuBW8S{{4!@+?&@m1~32RKkt$?@*E5@$azc#<XMU5Cv7?J(Jn
z(oJwL;R0XF4rnkC2b~yaGQCyRuznXsF8P^5H)if0wo3o4K4u$8X(5`Ho^k8w`znG)
zPAt3lViTB)ZQPd#&RHXUN}vM{P6XVQpivkC1eUzsBdDWl1Q_SN_+nghxYvfeTue+f
zO0EOgFlZE@u=W*8p(RRX$lo==oe4H0iN<S2Rmxl;%vOq2hd8t4)ba5FGH`whb2e%!
z?71wS(l{Ucd<+&c-%Op_gC5Lqu2l1^fWA{Z^#y5}Hf`Gafpy?-yO}%JjRZBLB8rXa
zjDJSza5InXG(}do%ogeSfBbm9hoIsVYaif@s3Z@>ufqf<WHnf%jMF2TKMUxY6IchN
zUlD3%Vn?B<($7f0#>fZRK1}`Szja7Ngr|7C5zV~vau6$Eo!$SMtH{D=<yq1|mbBC|
z{V-P`&BnYgA*sZ8$(KqlxzAJT!w9D4%doMlP5pGpeCeF%60<EELetnpCrMgOlsk9s
zq#Lnryv;ZxSB~{h{Y}T$8ZxMlr%;7RC*w5hxJz1qv?NCFucy?sBz!V6W6VW+62r|h
zXqZcGV}gx|bWic<UOCHaW+uc`F;S8j9FZ9`m-s3Ecw*2*`gHc<cmNL$|MX|E!g`}$
z*J-hy1WR!`21QI_!b@cJ&41F0q5YJ^c;NOfA3JV<eRz_xa4q*w#F#0>^~iZKr%7V_
zUF?r&gM!L+OZSMr+QEG;va7-$?yvwU2*a>JW(8JUt=VsVX{*7t>;-J8Qn$)pt~GaV
z1tte8v8-MTlCOIjj3P|P;?kN>UBG~cgi#gvO^}j2RE(2_*3T;*ykA5HDYL_98^rrL
z1u?O*oA6X=7+6u2t5)WJ;>#r+O~MIQ@3P7M@1E`dOQO|<vc|CEJ`p!vyx81#?2GUE
z|4i8m)IU&_h>PutPefX@_}pqQa8p~F>^9cX3k_JW+0;h!aMXtVw~;+4<EUGj%UaZw
z-}={V3^7U<yWY}yz{>z}x)~un@6mJjNd8XVY*T~wtlfM6keLQD7!ZI=IPjGHH?3v%
zoO~HD!A|4KC{H5!Dr#p~F~SieG4YcjzC^CdP#W4_#!^BIScJr)BT{>|dA>w?@-z7h
zLc~r49v&yGiAm=|uW{7Yl{!H!<cO&fDE~6|_1&q(9~hhZ=u9~Aslq*oV_N@~U-omK
zWz2BQjEaBZhQ@Z;h)aY3{LE>R$poRO%7w%Is4y<PDG~FSNnRap@$k%}ocUb=Um^JQ
zGg)wU)m+*t;*B8rl3>z|T*P}tW*nL1(AvEX`v??{5CGvJ)!~W<g{+V+xT4Jm%nrUy
zm!knosKfRvSFE^w*`r0LK8vRS=9~kw(Y|!v5$4e>y@6Ng)uXSJA2YlVOk9jN4AW)M
zgq#)1cp(VO2t5v!2x1bGl8RJ4aCCy{FXm~ovfRb4Xj`$zm?QlGT$i)Xf&QL#JDo4s
zoooXhtzjc$akEWQKCNmp7PBM1z<IaJWR?*CS%U%eDd`r*uK2+;nrHY3O#;;KdrzFT
z^}nH3w?v$u2QVY!T^-9(77H#2xMq8LF;N$Px`2wxRVoT6DQ?TTmh7=+{HgmVEfG{%
z0PA`IX;1kA_CopKEr?(nQJ%5pvt@<}sU~xE{8rrLAur|Oj9N)YYCBf1^6*K~BWN9n
zQeh$dCt}fR7nNxy4X!*2;Ch4Y^uP4MT#@j7B_ob_^K*m&(7U^@kN=zRBz#m9dCL1P
z>(Bw3u5_mK*9W_oTUIg=h7pT6M+EEEas1+9!A@G&qHVD0$vR6%RJsH7w&PJev1+p<
z`{xypAr3roxU<4x)r)~pNj$w7V>x7!@^i#oPczg>Ma~JrVMU!Gw46-&jV)?E^lR+{
zt9k;U$ISo{^Zev}dZm}k3321&Zcw_sEVzgR$nTV7Z}(Wi#-F-m5|@su92=#TY<Jtt
zdRm7Qlr6KL!iO<T|A6-N+NEsrtZ_ibrW+*baVV95aM5jc(3sWV@7y_{=??a0S=%TP
zHlLi8I@}xhw;Rc`ULy^blKCW;N_&j4oRXoG8^&ZHn(<XF=CTPmN1gJLow)n^@4x@X
zUd%eE{!6W^=}f+CYSQ9HOT)M5z^b>zwQ@|mV%<tj9?ps(Ke%J;LsaO$P*8t=pU=4S
zfi^A#Y(_CvArlyktbJUEo|+dkYtv%N1eGg&Ea%Z4*aJB3`8<OYu+y2^MyCKt`foOm
zf$Wv4UUWAfWFEL--JGSD-Ax2&o8A!lJJQ#2*-o0MTx|cQtR}kU!rBdW*Px&|=HuFK
zTv$x7tVqIOtpCMfx_q7Di@f`)0?t-ZSTIJ7-KnolMr>y4M=TeDPVc*fK=zp3#mW_g
z`=>DZ@AMpdqHz@~Z)gus)GTXVG;m`@3OHN;i?x!qs7AmWTLqz8C-DWwx5JA|N*u>~
zP?wl&cuao(Nl;%>Uww9&(%OTtdmQe3MNwt2`_11g?XtNSgH9eK%jgbeWhBvCSyS(N
z6>L5$5S4MKI(JAJs_lT&CYu)HT;uSFQX@(7j_||Hr2J`=8p>@Bfcl0_@Uy(BDNY=&
zV_niH+kLkUVX)GZXV1<?)X9}xA*2Au9TTS4y5Ak%;W&OlhUaF1e*6f>dV?bu!>toD
zJ`1S3!cp&+xQXh<uwWPELpRg`GdD#yxZc`V{V&DvcVyhQq-A1~h~l`ON0xJYPk7cH
zqM`k)&FIJhXid$7$=w4+Qz4g}8z*8Wy>*wt(-;wY=3+R-DP^sTT`xg%oJx~z)1)WE
zN+_)Z#<_1|gjkNvvkI9;$yK>?PhRZGsdR(N0+VftHR(1<PSDb5W8LO+OSmwpz?9&e
zUk7(oG19j@y3j0j>n<$h+(>Q8zp)3ya479W_u9{^G2s-&uQ>PV`Q=fpJZ6qzFFj^9
zo19JTKRY;zy*XVeq8Y@Pw13AGif$<xr$IfvC0G_<-}rD&iA?NcI`Z0CCfn{{Y9Q7s
zJ0IN?leJtzzbXM?jc_Mu#vZtzLN@sbQ<rJaB!o$GAY*(>d$jyw;3b2!lGgz>M4T*5
zlxYK8xPDKCQ3J)e-`Iv`gjF)rD{D0Q55fqSKjw2g-J;*-*xzW;zv#EIH?p>HTTzg@
z47@N-^rGa^_AX^S66hMk1t=uUOSO9&28UE}oHmzC=iF-P#nTwg66LKZlXrE|Ro+jL
zV%6=jH>cL`!DH|yQDTu{=~mQJVRMDC>*xnpe6xlg>`)Y+lxDLG3uvsY)hm1rDnIkN
zyVw4giH(2UQg4Gz$70DC#Yjq;d^vB*+;R0$J}6?A7wPl(3#3fKxHLH(&6|YHs`<y0
zEv=-7wr$40CniZT6?W^iIK@~+7xj%v6{p#V_0$dA4bGAE-!Mht0_f7&HQBZMUumD9
z;jw1Z2TF$?!$GGbU|#jR)&Q|o=ucX38U?D{<inhx)5wa#6DpW45o`P6DTWpV%$nNR
zPe1;6#f5{nf7FbiRlPh{u*4VZr(>?<eQ~zu<996Xy_uvXv1CfRcnV#B8R=_{8|!g3
zO%T^XF;Kgh&JdS4k!F}Q1|;{i?cab`f~}M3E*3;c{TFJd{*v@mg=m#n<@5X{pU<$P
z2Y{DHX!-?1>b?N4EUJOKCG|ujrsNfPQwLW47Aw~LWHp1X8RS=<e~?^%bw%tSXz9#B
zx|9wZy!p%|ozJ=CMB60j5xYDdXO{4u6QWa^YsWIJF5oF9+DgYho34TxIKEAo$lt{W
z;;4S*&on*Ru~}OH!3{m;e{RGTW=5FlSK{%Qkm<Kp1rIOFMUSS~E3%5m6@01N1a8$9
zIDANh&Ma`@f)D85z`6_s7SXLBpNw!@{Jvu9|L!!=U|TG%p@x&UY}s<h@zbnn`18+$
z3ha3Q_N*V{g8y0l`|tZ|y2N>mtgcAr+(^gUC)tbIJD{8lf9IxvkNQ;!&(|+95zWa(
zcZ>)fFFYN{6VId{qy_gf-zI0Z8S*O!|J=ZmP*K<igsrXqDWY@Sj+)=M`wWJs5uh89
z5$p7~e|7GB!FGlFGL90(gqPMR+nlRMyF=SGHGe~i^te`c(fKIAk;kXwPB)W-bjtJn
zh?H_wsT1`eVD0Pc_9vPC?$*rZ?DP6%XGsi`7voPuZk$sa3`iu&j1ATbJ4zB=(rZ&f
z`@4_N0+$4iv#H6dzlsMB+dznFlAF{#m}w%PL+pFy2$NUmQ&0w3O||3r-Acx4!04jK
zojwLlxFhJVzjtNh!@DG@s=6+FmaIYgcMMP5d~e^Ro8lmpOoHGTQ2#|gQlwGqrcRz*
zMGa}_!&hBIWoYx74OOVJjh)|fVS7dA|MHYnGT;N&Re-ZFE)&-OKJ!#MA6MMV$}xeH
zY26W-zn7P<EJZwb-nMp&_59gGjiE?$orOWpl+$KtnxG~4kfFHD^eU3B3_8cdPiaT8
zwivWcN{kMO-}Tv-wZCashgG7U+xcR2=GHIlNGu(?H)+2R-jrzyO>gmu30gSAW+0UU
z&!@z-^QZzTeiz1(rPZJ3aLL<Jf*Czuxjn@wM`u3HXcz5u?z*HGcD%U<qZXwqcCf|C
zd(T%QQv15^)IAnNM5%!f3|(Xeb~caZL{<oA$iG_8B`2=IHG)o0ryvidL)dhrv;FMe
zpE-Tu=@DAa!E|gVvjDe=f$%bxhzX0#;yi0oHoSvSSt&PznL81*<Yzd*H6zxIEw?^*
zb6&#w<)j=#7dJ)4=rLO^GidCE)B>&Qx`>@IdMLCF&ymPq`#l+@!d{e7XA{ZZX9pxu
zJ#`v4Z)*R!?_GKCzqJh0MFS-oCOup!a=Dd8#vW_t%N~>Y0u%*G9S8^uNoK96vU(M@
zJV_!(4klZf6{FXe(sr)k$3Qz@RPBg+OsmfTs@duc<zym_85gsdN6E;lPNVEjq><t|
ztZ?_8)q4rX0I@ptIw#<`bb2WE!t2_<|9<G!*>>U2!gTcYZ-@Od_JnR^&YQ|R^eJ4j
z$zNhRkAHc^wqeyjre=Ro{f{A4JA7+XG1^{RpU`l-`1bnHZ*y)XMP~<v+U@AV4ezjG
zYLBE|v90;H3?l51x_-;jR{Bi88J~vd-5*$8ZDJQ=lCQmEaj!z(z^Sgmc%X^lD0hoN
z9VOIZu9g!RHG3GUc8l#PIxMI9ULm)r_FS7^IO=UmOSF44-l%U#gKK|^E*5^8c`y%y
z%FpnVW6!^I$!X&P5cMJ`e#i7{<S41`Qq`U}Dl=O#?t|`%npUCNU#=}reLpOSWB^1O
z<?b93UOk=(>_C0n938zq6w=%_JxkY(%bTU7+Np{!(mp|bHCb*J30k#2yLabd(qI5B
zp6_A`7U@4?<&;SOte(yiWbfRXlC!g5eBc0GGV(p29o#eSCeAoL0VAg+l^Np|HI&Ca
z>{<v=o?mn4o}>4!UHG^>&9Ck&kP!1{qjP=?EUcVmXZ*U!IX|>oDtF0SNOIgBpP4^I
z$UHoIQJYpF(z7JF$zwJj+^aI1%W;g18LsvV8eV?e+E?4@&W)4RImdzJjEEDn$<lul
z3ygqtCg;7K7G7#|HPJ38SF4GFH8*I|^ld@T`3-|3ifR4oubc3?*>t*DeUn1bs`mWL
z3Qju*RJ2wNWkAdj<-6bfebIC#89QpDu{e+nQivI-{eP`3h4b-;bTi6HK_e(%wXE!?
zP}QP<+a4-RArb~=)ZP%dA0g^5HYIdC)Y<@YMbRXrn&;QJZF%(&)Z~+rLp`g*y06Kr
zpS_}+7q7MY6Y$h=d2amj1a!2~aq;N~T_+u3rX~UOlKw+Fgqy5PTK?JDqayIu#%@^O
zh(lY&?b!h3GNw<gi_U-GL@$S;+&sxANSih|m%dF&eu0*IRKTJWS7WNnhf$bIhe}!@
zM2%@mvcuz`)#8oh6Y8}SmGS6#(PabHJaBPozHAr;8<oCzKT|jD;ODQ`Pjca?TflhN
ze|Q=mplJ<UtkM)NlvFqM68~RnLue5<7K3S=(ttwaZA)JcIE+`UIM1WG0>Y2<Xn8B_
z@RIG&ug?8M4iEuuZDZlrf9imLg>6y>fc^7*j&m7KQ%Xq<dLcoO0BqoMkv=Ol?fKkn
z5rd6Ie0Aoh?2rjxQoQYa5zOR=<RHB@v%+uJ&*q_gDqv-ao6P2*m0G0#`8b%QS$FpY
zFWNJ6=j-sZ<IAWNB0x<Z^xkZm*`c#Xry%E2F(d|}RMvWo$0gzjIc@m=L*1JPQk}PN
zz^7@ZY1%h!L(S-*C>2qbQnWZivW8HyWNRTx)@rmz4w7ss`yL^CyPdMDq_Sl%LY8>1
z`)Fo*e$Vs1|G)k5n_oSS^ZkC7d%5oGzU~LDNP60~#ESx?mLocpkwf6U*7qs1bL02?
z1b~5vrzTz~*l#+{yVuKHCw>k4n^_3D!Aag$KoLf|1P~L7^8&14oTWf^&lzMPApY>y
zON2dbutCrc&7N-o?ANCse|zE*%F8!<OC#gmRNrFZAC4~P|9#lV2U0t66-oAID^69}
z)5~m41c&}@@n9TQaY75B?;X6NZxaumBSY|I*t)gUYCZzhP50M=ccquN2E{?5*HWn$
z)gMjN6pQn6hTDa(L*YW>ldJ8+?r;1H`DXE|{!y=ed)jT$6ofO)Gj=cNA(6(Qe<odU
zh!W{6t9q3nHkuuUu9dCq(+(DZwmk8^_%-{=_G09OzZtvqaOG>XGTD!y_?P<nwjc|9
zJmtaTfgy)q-f8LjvLOmZ+&5-o-@K%yvqho){&HzYPdqrI7sigsDk@&BTYU=ypAGvm
zB;oIzx0D_}owCIR@t}8fc$qiabZR$5>$p5GFB*Qe7$Gwn3h|a=!Lu3PNw7aG;?`&)
z3gH3SOyK(wN^gs&5^xB%#FD|T*EJypN2})-PZW8}HFl}yeSzyEt={MEifa({>admM
z%=&>F)NbI;d;Xli?q`333hnTWa_KbkYPELK&EwW3-m?*P2bb6&{R)>GS+)q3-WPD2
zhR*@mBFFSq?Vpc9(A{ZAPNkS+^RHfA9MU%iSZbDx$Nhl$OK9edICaH|M6oN2@@vZL
z>-8woYJ`{ftLeF)bmVpnLPI$Ru%cRCNOsi7T90*nM)2&PhL>nP<`vSvpc^4&49LyO
zaUH=Q-tR08<$tbYpv%n5$t3roEU&~ud8ha_LP({P^CN9@pi_3jfLdh^&zI_uJalg#
zQG0KFCRPS8&xoefvC-Y-zzDcs(df?z?&S}2CntCOSRnsY`#Q%dvqUBqY^kl!fhJK!
z(daomhTQ|!DpBA(W|;0ytdh`?5)GOlh6(JRA96rLGbdUA+Lf4XNINPhOZV6^ys}D+
zTk?cFs)^Z@;eEUZ!(?;18P})^OS8a+Mtg>sJgH0!S}H`GAI1C6k;7$meOw@pC>-^_
zhn5#<WGYdY!RZQna1=TsEmjbofi%db6IprB5dPbu{v`@QO||F&z+yBqlKM)RkZ7_+
z0-S8`!F;_l2_hOaSc5#K_)$ws%jl)0-=LTQBgt|P#&)5&N(FEj*gsgL+KO^U0%+&P
z*2V+cxhG-cZBLH@;cEi~e*Hvl$S35sFQ7bA5l{xjzbq&GWM&7<N;KkeDep`~KH{Gd
z5Y1CER`$Sk_8%YLhVw;O0&<qH2d2PN2tOvyN;%@5zhG8@<zl9K=;<DKGRqI4;Z69Q
z7G%6kCV$3yb&W0i^zO9r9(de-kUm))4**ICaVchXDbc8RC@w7bn;A@u9c;O8c+Jj?
zh9;1$584QJBKxGGxiOHd60t2W;IsQ?FNPMJIYKqOu2DuG;4e)KE?MUiJOmc}7ev;u
znW%3P87aeK=DUV-6Aci5UqtBv;yB|SP3+K+$QYM|KIBqS6Gao>gIKL>V!GZ`;v+Uu
zJ%1Ih)M3<TqW9iCUw5$r6g$+MsfJ)}lRUoX9suz#z%(pSsk;;|z2y_`=1rw&K)*GJ
zSS|T;b)=j}AIP}`JX<#dcW?FHJ~L}<h4EWEFj#@6%#XWwg!>8tCs47Va=AV;9q}Ag
z^`65|K@&>{+QB7%X;>h#P4nAVOCddaO+#8gKS&I6L`@1UeM8(Y!RJkG1Fc3MjVM*1
z6I)g<05pMj%5WM<4IOFyMr~Y{r4JuIWJY}Ck0AQ?_7a3g;RCCTE)p#rU>mzTID)Vi
zQZq$kIvc-g6|!?>vrW5ac9c=Eg^J)<Q>isBH~=X8uS||Qg^qdZXR`{w%%8XJ>h_sV
z#Ln?QqlNGkMOOZirI3GrHo9VxJAh<QR80Xm^0kenlLVbaRzna<S&?7|fU<Hkbfl&p
zSQMXqy;mrVLY-pujZic#y`TdIRshX^A$AKyY&wp~wGiVBfsX%i;Eb01o?GBoN$-Pz
za5j2d`6-KL$HZ8$?NN>n{*aQV1O5(2_^!qq;86?=8G-5b*{r~rU#2Y}<*zT$mr`Iu
zW^)gX=0YLm-be=1rwoKz$YhsO@W&dAP#<is+T8$c*QB!XgQ(4+A0QF=s%7_46fZ$T
zh(TPlJ7ZkJiMS4^RbA-CM$+6ewD2q5$$N`oBYo0a!1^KB0!-f(1=8R)p{#ZwLqK@)
z*OSNp54Y6y{=Oum-_$Ugm?5G~dM_w^)fv}9vmpeudcV)-S_B+O@C>BYf@jU+V|D!q
zz-cAGB-o9*DXUuw@&{lSlk97MTg5JvvXllESC{C*BdDNv1M}j|lb<8GgH#mtPjbzl
zzvAf8o&_E59v&oFNhM5BEJdHSQbm!VNfXo%Z6U0}ucHO=6MK7mzkalF?ZBR;NNr2T
zgK)aa#&HMDfs;_R@GxaxR660r@iLdH-v0F@uLKd1<*l<)CqBMAcE}6OiiLFn6(|xY
z+<%Tt96fe9OE?4PAP<IaF3W0ghuR4{#PRM7(yfmDotrvQ0d{rZm;1e{twduTXx@*)
z<IyaA7$uK_?n@w%0{NkUKMH;xbL1Z1U0JmgbVkUhSUe|wFB$T=bKiRx6hKkg#4G5;
zxQ-gK43exI&DspjcPC(v{wO^Kf4qkRh+i6wp8x>x5q0%T)x^w1MnM`xURm+Xyo^=0
za3sU%p2D({pymaeP$MWMoAkX$s7$yl;{BtSsv+^w1_1R1+-LC!DFwq4m9DZi3Ps7V
z1IXQ8m>VMBqpGy_rRn$?)ODj!+CL3KnpO95$rFd~>@55>HaC;FHuxR<8S#h(ApLQW
zC^p6jF?;4Xm=xbUxQvwi@Xgf#^KW*hG=oyuj)})~-I^NF50Gs3Gk#knyy}h41@Ayp
zA_cnwaXKV=fLBEt>8jwKfP1hjsjLl#nI>|OXej~71(%x9Vn81r(!PXw4@BugSjChv
zm<>+Jelq3MTY|<pW=+=MTL-!;OOWus7FR1;4uY>H+yNMcokrs~e`YY<COQNDw$P_m
zqv=K)xdeE*M@@WDUiy@P5RxZ3{R5(V*!6g#@fB!<S;81mL+g?V6Ki8!V{e4t<VIVz
z12Wq~ZKUX@qZ%wsR|GMekPn04g=tKNcckr60~B!q1WNTt6mcKNrT_tnRtY%^+$J6s
z$adl;SRlMk0E6p!NYn|EltfXY9|=+vX4%k0E&^wWYDg-X0Dnr%&a#_OR}yWm(7^_g
z+yT~7fepYil_}6kt!3gR$I8F8&@96?99}kuu!OrtDs*7;a^ZNGQI%$<9MUONdaDk-
zoN;66?A#ngObRyfu#$v3vAg#uL!84ORbH#)aMbsQ@suSyo5}iNzg18h^ag!{N5XnL
z3>8>vULf7VqTWVcv+2YrQXX?0&1th|YheNlCIQ6)nHA7kv|zy(`H1&;a5Z`#+>heM
zjpmi|WF%3ICDkX~;*ZEjX#GKI0MT<KzkT;*7<Uv9B2i3IU;`Jpiy&(K%ZwU*2PHJT
z?5S9f0%!=(TQi(eb|@kSN}_PCA>`Mr4vHJZB|hTPSA+h*#mx;6#pd-Bz=q)jKUWC5
zfc`*<0#b1;+zm`jyF>hKoM(|4ayX<lI1^U4!qr63MVUNz02L#a_;TnER-hfv@s|D-
zqD;VJxAb>{k%KBqItg_FG|@+nM4hPa%Ql-=)M|relox*-cx@kz;lUM;K>QpHtPGg5
z7bcpMo)>U*<=PbV1L&eID^-`3kTV>;(_>j2sG$mMOb&}jln7(X0?MZf6+QaRW1i<J
z*ugPt`O@qSFVE@MfiEns8HZm9##IeLnn$uva3TIQB?lPXM|cfz62p&I>YzePbL6P`
z#$-hoie*IQ!%K2L0ofL818K!j<s0xP;J1_PA=G2~(c2k?HK#Y^P}xAoxIs<BuvrQS
zmtG(QAX;YNW(Q4VoCV^)={mp#P&XJ6#i^?cmBTILqc*6!E74#$Ama4Zz%oToLOrNH
z3!p_6&H~Lf1qhGsJZjUViaL=osXl__y&Uo`#pi2@Obo-KZ07yzr>6hIh4zSp{pTC<
zScQ20`f;#2sM<h}#in|AHi|mv4zb|Zx{(F`(akgr%-R5vSM{!=fU2p_l8Oo&GMAnY
zLEP1Wbt~w0f)y5nFkdz%Y!$@&ftN$6Hc>0fzwLYn__$8-jd%B+`T&BT{Lg~hMDyjr
zljh3|hklR_lpS!dF$D?;(kf)UNEdcjZGQsRDOLW6sw8113{oedZ@5bH;>xgdD8dDG
zs%PbCVA+VVBML#7?MYt4+%I83(FXi5;IAPRE(Oe0!O%-1?Py{JTmA%iHVOEIMRMtr
zCvqSQUjuN{_33kVb~cGalGBxhn#Qf*3(3adFA(B```-`#|IL|^L=*s8Tij9=iVVm2
zRZ1+lCX(Quqaxm=BC4x110_v5jEHMbfLg&C6p-d0)b=(~=1ytBa0w7#Ip^x`M>rw2
zWl$OTtB3);qg%nIQ39o$MI~G7_9W4(+!Cs|FC?yj9b(oW{iqoKIR*R`!mr0)HrUQ4
zc!I_TA)~U?9|WtY)@mLJ!GjM@gD29{`5LT^?(M_mHeTp==>vQ8JmDhSgXn!8QH~NQ
zQ$ms>G0IJ9rYQ37fiUL!h~M*`KE>^oBe|I;_RCPbyG48j%4lGoVF!8kv}LZ3vKc>v
zqS|3B50p4Ph`rJ$$qh?^?jA5I{;bP}4U<2vKtmLwk$H6>n%I~Sha*`90!qm%FKQY`
zp2jzF3dt9W93s>;2E>%zz46Ri-PF}DUm<_mhw72Sy}e5qvEQ2u|8`jT@56)0cy6JQ
z1s85DiwL#o8$Umb=T?CapA`sj)Cjr+!qn6QxW_gK69Nz8LcIbmK^^+AZ5?<?mhxh%
zf+BwFr|Is9r>t#lmDZmmr5<269cW>!Kt+?-E6MM7umOzS!TGyYLi30;@Zfwbr1#3+
zWzbS3&=OvlBddm0!2|8SFN|7}APPS;G!I*~>RI@bHfOaDxWi({-fblw6PzR3qN@lF
zt_guRWOW1NNkEtp4q?&5=nO^(u6rju1xpwMmqrbWNnWOLRQQ!X0v>-?yl;2z4Xgw^
z6l4X-`w=jFkla{rp%{bkCI+!$i$gW+;f7W=6F4G4prmTTB*%<m!KKnP7~T$SEbSsh
zZu$LXzIXu_CrTEn8>5cTWKkVrC<E!E=(DBz81%w}fP>VoaPq=I7bhe%AZX>Py=n$T
zA?gE_t#{Vu8hGi#H!JFoito7uZEPxmXG8pedXT`UJCvhbO?4&|aXtbi(nMt#1U;~o
zA29ur5p08x?cMY>-3uvYa<})=x1l3t$FUkji9?a$4s0U)HeTYfqYPQ`!v;7h#T{<h
zgS$C0W=M!FK%%88ddY_7U$e5ZDv{06H6T8l$R0lt;}ej4Abuc-<#Es_uv)ej0x6Ws
z!>I~_nN9?$5{H{_I!3o5Fs(vM4q=6$)DUqSXq1uuMs~(d=}i~-^4{JB%1#}ubR21(
z<wuVLh}j7bAO7@YHjPZn9D>a??&I#tZk;WSItVq%g^n~VZ-eaK7Gl&Pu;NTT1>8b`
zE-2|}Ptw2BPi!)HZE&A0$hr!uhF+A*1AKgy+&;j}?KomD;gqd%=Ht}G;47)0j~z-w
zEm0esB~#|Bf0_lRR5@UeeozA}U?0RAuA!99LgDQ$dedtIf6_z3f|+nz38%q%zYo59
z^0uK#Ks$+|4QrtVI83z|qnYTAL?Kt^>?5qG@(h;;&(TE_1=C~>scU#WlfgHqy3<=v
zKn(^#!5-=|CVHW=P1+5Fi-fD7rn?s~M5psfaYQ?Gb8rGvz@hTzKL*4G(ac_I@`V>(
zy{f-v5o26`;koo8u&;j;M^g-1K{VJ1sl5)m>_v<2yS<U%w%GN&UBiO2_Jyv-6~%an
z59Q?n+YiINzxf$kYB?72y^qkf61}bAb)#(<982Bfpbz-%_ldg@kuy9p(t#*P+5fMT
z2!2T>7)c#k$TWeW`^dOBC)cfvBaSVikHU2`kbLK_O0WP}gZfh>xKa5~4T3i-M2t|s
z^WIf!h#pa|Ep8gX0s2?ayKk;a8GQ|I6$G%xR1x=S0CY(<>tqqeO463V$M<4qi9_F9
z;Fb4&=VO5?xC#<Bg$4j1jNPycifW=d2nY};uSKf{2}aS7o%<cTbrzowp@FY>a#T90
z$qwWm(pfdOGgCga_&h3N#e>lM)`c(v1=FA$RRoU10zg$a608+We7xS>^Z0^ZuCpFB
zTcAk<SScQRrHoAO2AA_F`Nkl?>_Bu6B902``gD9VUH0+v5p5X!GgN4rJ32@&Oc1rf
zwwzK7P-sVphhL?Fl|qVwkR~|3PZZu9fX7~_hf=RCJOL^C>)HPFb&$i~kbcQwu<n^h
z6$g2#f9ejcuQ7y|Gsqb5Sq*>*-%DJ4;>SO1Cw|XWIAbg26`Z!b(1yl7)9(@s|9Xwl
zLtsPe;XH4orY7PBQb7n%E{&%%0XSkzm&|WMhD_T2zge```H4S^A~6%p=544Fl{8%*
zE5q+0A|;1qy?Wtpev&I?F!p?xCH(j6(d*7aL=9`dR#ZRNnKXt2FLBi)4G6`x@;i>Q
zE+*Aw7YlJZNrO}-G-!VOynHgEFZ8^XT}5<t2ptBdhC5VIO;|uZW#2o%L{pa0M^35!
zx6}Ni1kDZ`K=K#e0-y}ANTy<pDRNUHS1!rLUooiIC>&Y}__OD~nvL=JMI^_B@Y(+}
zdM;1ET<p@{g^Y%H7|$tO+2Z(hMFQvJV}H-Rpx^cV&vjvt(`aDF60D#F;4F_UcN9U}
z5n!2&LSbbkj=x71M>OYa+W&y_Gtir(h@f{JP3hYYbjHOfFBg3%AlDi`hXJZWD)u$s
zoiiqWeCL0!-m%Nz4W&PLGcHhwqQFw=Q=dSCM(>a<1kgo;V7zf5mSeg(9`{|t#s5Sx
z=@pdsLfH~X@UyFs-PuKe!4nS$d{!x7)61*Ghy|@t?1=|QH(=cEe|$gcug~*=xUh{D
zpNFV{*ZaItj4?QYDl%tSJB*L$=uOUI{d3|uf204iX)kgm)K6tZ-$KO)UXXn-4}i{f
z_~k>-$wVWe66rieKk7OzHz8j_fBE}Q1c|@XK%3{plL4@Oo;wCyK8_wQq^n4Gdx<sL
zV1VZv{*OnGMs`LRu!$oYlavA_tJ?CkQS7CD9MLfZ4-4kZdH1D}^JVPsQ(ON2X8Lc0
z1EjP_NS@@j?n6;0;07j~D+4+bJ%n-|64Y9=Ax?o|;J=UU!?p=coWsvCL}@8LU(xFV
zO;n`dxy7dt2Nwoy&aCL=9J|i{lkDKDx1I+fKL;uC!RN5|Rlt7B0|!Bw=BT6jLf#n~
zEt(m99QUC5T^#hsM_*zBQZnwA7ZWyT&*UjH<WH7@o=;6!tYw@p{q*sF&|aQ+Bk?1U
zcL~9B6vy3~zbn1-Z!SO|5=Uif`f2=Lk8X>e5JD0E@5RqoK``h0y=<j*{$S{;8dMYr
zJ!GNixEF!1+Jxjo=(7LOK&=k<MF5xRTd;%BmvOya8s5AdA!W$}lvxRY`TzR(exM^X
zDNA&j^r=K}9@Kp9!vD8eVF(8(A+OB(IlHFn@%MFkH-7JA>t~&^q4BTFBUD+HheOuO
z|EWFYkl)KesYBlmJeM4BoY5#%{aljoFV@A%T~}xGnyglPF8S*G>LpTlXFR{|7^=jx
zM$oD-s<daeOijd!a_iFc(x{Pdb~b&^ISoA>{m%M<6}Exxr*oE1?2>vq5Qk8d65LMX
z45zn+`)dw=p1t{t3bm-n)>C^PqGDAC807<1izlY%PJA-@+3`FcUjSG!Dh4O(ZT*n%
zp4@T-$wPV*d-t?{6MrkTu4bsSJn-YO(sCR%jfqcgO=&~T?;thcwY|+AIk}|;v!zSH
z7M*5`<*EQKEZ7D!<mzK8&rxoe_*A60%uvA|YxLzVY6o~_3X)vI=`k?k%7K2#W_QGA
zw!j?3moLMT?vptGT{VP0>uL_CkwD^JEQHN$#P!X(WnCD&Ktrr$ou16x2uZWhLVCw{
znM?lT9Vvyi0n)IDWPGH{r2C4kTR}DANAb-e1V!N|$vrtEn!D*89XI~xJK~eNsC(!~
zW`gyEOh<E5>zymYg~SnNqUB*X#RDn3@IlSu>w@%{6Ms~?$j0NIFKEY?NFm(a6XFa)
zvM2@*%931M1R#N`I$r#A!=wNB-~!Wt<2zGdAIX#@Oy3j+PaDJyfM5G-8<3r#AtQV7
z8eG)GpZ;TU?$FE@*i*I0-Me=Kl?Z-=$iN;WQm2iq&FoA9zdrW+$NDeV|NWHsZ(_IP
zmltx$NJ~t?FlVu`|5VR#YeaxrVBZ?36+3{R+BfM(v~=s<`eRRKMya(Hd5B{?z#m~@
zVQz;gPlYMFQbo$HLI-}_^OeyUJ|__oU|ncELgxCA$L7?jJlNnwkr@+nLMI+*$H@}0
znox8Qa1Ef>CrzH7^Z)+HAV^3unO&*6A)pN!JC8OlUvzH;elF+ApBfXth5qmDowdfk
zdedHG8Lj3@;hPQ^|Hr8}4*=G;Fq6WhoO3^ZkUp&G_y5~}aTQe8)Vz_|ogoAu)astD
zwldP5UTASG%KS&ym~s1t2uFHMWe0?3J%MU8BSk6G(9-ikU13pX*jdvcdwy(X(VrK%
z*}<bt0z>d^m+R-z+Hn4;6iqB<BrmAV#ehP+m}nzVK-hNq^$QUIWqWHORIy*Y{zL_@
z9mhLxK32JN;>1ShD@%2G-*uOaR%yTq6XR9tM+Zc~?zP$Kk!v$P-r0cQ_97jR?|)J}
zIs4%%2vLYZnk*3|VHRB!9*K-f1PHaD;l{szlCjmwm~-%MPjgbc)sE>~m#aM{<Q6$U
zay#k!gByyiQquTWu9=~tJ#i4#@7-dD3r?u}aXt~L`2Cq5C7DGd!C9?vEBeP@C^BJa
zBBwl4R`Z#VYvp`SU3|ifR5f*&MWa)}DMe5B$M38A{(W8v5mD&o%+)DZ597!uPrQo8
zgiY8gCb;uIzfbV{3+!z04%fjS;~K9Yzm@Czw|3%NaUr9VELa@b?up+TeR*Ob%{BGR
zqE-Jjt*+5V6RS2g2Re`_%xMjah5q<71sn^tb*|%PrG9s*?#Rjw8WW1%oZq`uLv-Ri
zF*W@DbMee47VmOs^nboy)%Vw%>$F)Z1%Q}ER``#LDmn3zEAJdtQ2PdNpy{yr$FH+p
zKk;=&Md49k_qL`Z3)FI0^FM#Y$LBwvNO|Ik%v}rR|8u_tCRR@D;jQo}g&)_<e`3v+
zexN0F7}Rge`+xnPVd+N{!v5pqm%qR1%p}SGTyn#86EAVj5eF5xL~g(1k1ufV`#vAk
z<l`Jvi%i_j)&QH*0{GR-^$NcLBrQPQFX*@V{0lPw_OGsYzAw!a>{JR$Gz~ZD^<7iy
zf!ziGQfsN!JsNlH(D_^M(6&&jce38cDz%Oug$d_-|4cMkIqmyWyeJH%cR65{26ww!
z=l)8T2)NKoy}~6?K#>0Qa59UXl#~RvLTLU!w{^jV@5}WO%SG<Bu&{7iKk^Hl?!@X2
zaOK?w({RU5Luzc%6t&-h?c(0w{~y1=ylz7k68+Ho_wOI;Tt5DF*Fm~K7BK*CTfn&x
zu0(;o2!xuwPu&H>Bl!!=A_8xeh`)~g*K#cI`2H;Icou}cYb*hJg(a?`1<_X8{lor$
z%AL55l?QO75bm5vZ^ZT3_Zr6&m~6<7AAeTmyER%$cg#Qlzsz=<66=Rw_RkL-!5bLk
z{vFWUJO9V?zq)MVI?Wuk;+%<nz6+#&utpDi>0!i(*=k+R5-<kD@a#y~+1%0QwdpOl
zEJT1A7^eNih&@E;SjdseNKf3I>QyiZ!(}dG$sptXW53?{lX)`t2Ik)MLT+}+GKWr2
z06{GXFNExN|6*)xoZgvKWc`dw%P1x;wGih)qw@yC)s|zRfuk9tJZs;TQX>L23!Kha
zo6A35r+5BULS){HULC%BO$6YsY(3%*2+2k5oN?d{2%XUT*v~dXaz;fsPpO|)=9HJ0
zJ0kS+1ExuYov-7Fz|{Z^bq*YeLu7aR@qp6CdiAHu`}|?&L-7Q42sA1XQ$8MtZi5eK
zGSbiue0F5+9|hy#QE%}-ve-~xZwekCHFf@ScezHL*uQ4fQ3?ln>$M8pT5h}AgDf@x
zhGx7vSc7_(U#V$pYsVw*m8}P5-~_Td931roR5n`B-(G^nM{VyW;!^(Qj-R%*lm_Z{
zRx=_Ek#0Gs)|vQQA_Or5U};xxTf=?o-5Gk$EA>kg-P>`*ky!cS=rV^ylx)EO)3E!&
zd^MC}^HmzTPk#)la~iD2-111K*a{`vx&>9tbaWD{p-gwDf3gY>=`BMn-Wb2Y9=dW+
zF&H&W`x!PE7H_B~cg)A-TZe(06Hxpz$PW0faNop>)c;ftSlWy3$sN$^Q!<Ojv>Ow8
zLWSHL|JYYoF0$5@@)I5~QJ9>&$f-~7W?)MC+Uzf?f37z-M!$prx;0CYv>EK+`AJ2C
z3N%0|;wvr2flPX$eqjnqaU1NG9mpx%_D!A=A1<y)dNNB&T`uimMz?>tIwZl=+iE=j
z@lJ_`Fukrzqxd-nvf2(oV;i_K$XmQmzO^@XYbAFMXvK-Dhp7CUVugupocwa<@5Tu3
zSDUwsF?<>U-<F{$CIV=UPSTRir%#|78i;D73^2)3SQ?=K1AYA<aLi4R7Ss7IhvDNs
z{&cQH<5kgeY&P%a=?AO^`!`epN76d|gMW4H(Nx7@)bHd+SXcmbXPQ}bf$zEKm|Nke
z%Qg=-0Yy||6Z0IYihfw0ua8d{qIkDIt0;y7&rB?IS}YfiyBDzVR%mFiW~w-O;Zlk1
z;y%9JUAi~FGpnz(s`gKY*h?Zv;Ok8x?qJ{Sqm_hg=BRW6*h)hsN1eTd60$_V0FG`E
zK4bd`L4Q(}rY@KBjm=nN&70xF7+n?t+|6wm_n}xgv$Hp@HTXn1YYA9A?6qp@(9p4%
z2*0BrX`2T6NOeD0!Ab%lqBXrWNa%<hoOY~AAVp1|ta9LC70|k*xoNuw7ks|OUCg}X
z-B^D@4cWRs3O&MuuXGUDb>@zbr2`ifJ^1*q(Z1kuMKpZOjQr_3v+i_991YOR0_MDG
z&6*NK`hIe=B$yC=i9Plf-I?XNF5{LUA<*GQl{tXdc1CO*eQlwZS+vi#e}bZih2*;`
z4+CIWYl%+pHEH#Bx+!{@v9YTumJK<A+Xf=ZKC7BvBP}sIkKPt{%@<Rv*P-=sCAZM3
zRRwc*aeJc6-UxJR`xZY_YhdsuSJtGiG|XdEo}gfryae4UWJ>mEfU@~;Nx%dTClrtj
zlG+!v7ofsaf@KZBGTgbyGugr)2PPafZMO_`GW#TTgUBBU(GJ}09sS_>#ChBP9jI1|
za}IdiO)~0dQVPJL^;!Py<1UG|P%jbZ(XZ3;1{z$(QPdOxzpKz?tktE(p<zV-_^qFB
zYZ4E}U83dY4DL<qda?)g5oA4p1zg}>hI#Ykp6OEjy6n^+c<~*b3-{?#)BwH2l${p;
zMkD*|IS-Jqc;W$`p)PHMQf}+*bF*~1p9~`l+>K^}Ad2oOf%266`GD1ZutQoO{kpsu
zhAjxC;@rpgh=~g3V6lhGXya8LsZ@EMpDerze++LECp?t?dX87KI7gPK4oO`v#cH(;
zNUcVP%3Mli#)rzdPrTT+qkWdE?IW}^bG{k{8zZtw)ACS#^+Q99DEP=LRZl*Abw{M)
zhafn1DOvA06-+Fk<$Q$S&ruNuzTxIXY%`Rk`fw9kL%oz0Alp4x>gNM`*6+^z+5)kY
ze7s69cqa=6NcZ^H<&MXWq&MH-wfi-8<_#saHEY)zbp05@#ylsZETnEq#^82pCfuww
z2%?mHyE*ORu~kQ3u0I_#Qi?D<$%u`?tl)AG4zDiToFV(+J<tFf9JLm3F%{uf=1PSo
zQS(w8`oU*y`TCCA@zbNBvhmTfs<EZx-6wN}Vr@Q#Trj~I^m(%;MbDTMW=(|XjD5DW
zi8^;BIcu9zhs_T{k+J2nP`o_2ZwJSb*WTE*%$|u#`6@ihCsICWC9ehuoNDfm#{jFe
zx=x;z59f8cmd7UwZgdFy5rm11BDDHwy&l_dQz90VRZ7c*80ubPDa;5PR$hHuUZtJE
z9<}WD=ornm&;KR~nt=$WZdXUT)4FZ7!nBR1(N0sDnCqh?J@|N?JZ(YdWY^|E+iGol
zkRd7nmOjqGu%<s9I`8d*`bQwI-A-f4p(ZaIT)ai?(7F*nn)Ug)g3K5u-W9+!=|;MI
zeX_g-gHD~o2J&AuBEF)V0-unr>hW)Km3W%sqZ9=VPM~fcgQgTA`U-S+Xw=rA_$G~Z
zFa115<V(OT!F1nnnGPLnK%QEGGO#p;Fz)EQT6iLl=j4L(p6JjHP*axRLjtQ4l^1mU
z`4VW7n6Qmt6pG-VeX+V)+6k4;SQB7Pc?z4A|Fu}{9E&A5k@ZAgBhogRK7vD>=!Shi
z;K>&QCp|2zGmnYuMbzDLafSQJPLRy>-7#}73pSOWCJB&T%MINlt15v+9dY}8j*~x1
z5o<w0T~mop`JUvyQYkH#N9<-zfgeM~c8)KX)bOM*Kk^#N`Zo>6dVNvbRXEr{z#hEy
z%M0z3A~lF$gu#TXQLz{5)J1L0eba}Fih+_T7X$ZdD{p%L7dM8`xee!zb>#Mf2jJ8(
z1U6eK=&c5k0FnmxTNm(Yyjo%5p`r9csGB(4&XqZd;i}QEajP966Wh@*{1wLQKK@lj
z>jG|)xMUY_YD5u>+7G!)@Xwb1v=tZUaxE7lHV9Lb$ljuMTL5B2Fw<{?nX0>Fd*mnp
z9ul^@^5#zq=w~_GLm5N_rBLJ<%-pg5gg&5*Cdg3@y5E3qv>C2gxwrYnJB+RIKi!}6
zEg`u9ktgjsBK{JT-RK<BKo9)uNf3G;6lOakZm@@{tf*OeD8&$XU}a(zQdbg)M|HL}
zdQjze*jlY_5H=BGj%`#*L5o6BpwK^|^??$~(9FZY&1+43GHZ8lu30n^2kp2Nc+r%X
z^h$`d7q*l8hwDw4q`@%HrZZ3Goj4jy^840sQZ2BI!q%p-Q8<C2cwxAKLu^M0?phEj
z-<)c^##K7fxP1JkK+vf>Dn!n!qi|0*0e%rhj6Hw@MUQ`YdNiwL%I}ufLDdTb0}+}f
zZ6^o5Vx?L#I^v7&dThA`=+e2v9(VmXd7&>|uQ$qkeKb4AMlafc>h2J+SPdi(?j;>J
zpRm~G(tnYKM3Xn|Jd8-6zoUgDILj)X-IoPbUeEYloO7ls{VkJNVD)9~yj0FmQA1=X
z0LEM~9NE6wlL($xZ_JnPIsv1q^<dQta<Dj=_f+=4h~<vd_e`@T-WI}$=4uKef*iX2
zY)U0sb$?a&GJ+8XNpBB@_r_qm3Uyk6`d(+1R^JO^LBg@EVk`=k5m0Rcy;$eH{em(C
z76$gvSHCf`Y%!V}{tbP_2<M1Qp~R_nOi;;I1KF9mKelHrR@d<0u{+r0p$>!bTX?{%
z{J=?Dn<=grHOjw^0WDdHJ%s$iSZP0vk6fMh#(Fm)T+9O00{ieGN#Y%{M_V@L7Jxs1
zX3?c$g>Y|PK&ZyV2CyK>h+~?;6Bq2XfbXI%TA6QcdzOe8$;Sh+BTwl@B-tX=B>h1{
zbUd_&lKcec{upmxUjY^Y%5>sE$~7QA4zc<s935qkWt+)aMIfy48JsTb(}t+%{Z3)p
zN;r2R?p&CTf0LrvkkikO01vfw@(Guu<ij95%C5cA%!mCmeki2?3>UJ`rYM-WIZ*-+
z5|ql*c*bpW%akfjdwh}2!%4q};`GtY{Y@a?I^JpxsJKFQ4zXw8dN<)zmc75QJcvn|
zML9|jqn|Fw6ywSDHYEU~M)G7OC~XJ*9f{9R=Tkh%EP#awwun#XZw)-D-(EG+klVeb
zGw}&bj&BoquO&xaMqU>O%gDg64s{)M@h5+t9@LF1|M*xZjHVyX(s8$qlc*Pi4n+j0
zNipNoxA}|+D)pcL{fImph`%V8`|RagvMBxk?rIP8%hMH35#wa<mEr)X72xP~BS9n!
zFc=@Md1f({5nWs6JdixC-~z5h=~|beB5xlbu6sg)PYzz-xdF!!rZU)3vleddV8~k#
zPONciR}VfQ2Mw7-%a9!K8v8OEzQsRwZBJ5`X!hQZA`92D+|DvJgQ518T`c;5qp5-u
z&aU+<vxqRnpF+|eA4X2!YEMGt<<|Cp-OVk6j4I7xl$^s*e$q}n@JL~^CN7~rMx^rs
z4iT!PkP96nJ-l{5GpZU1)+Go(5}|7##?>ZY<k_ozB%>`{*4h}c1c;V>OcqX@4USYq
zXsA(o9@!hWuF12d*C9%5IjJ83(^v;T;^ipez3IS1*XB~~fwJ>RO>|NOWUmdt>R*=s
z2Q1s?#0g!F+D?QnEPRD9s3@}au)uFz#=k|W<t=Yx?Au7jN2=?-T1XB|jR-CluibXz
z!wA{CVXT@58gS*%j?`~GVp@FD6G7;5x8c9$EANZypt%nSf)9j@L3=CbjRXQ<+k+#x
zE<#MpB)fg$O8p)G!j`d1f)7uD&8?c)U4E*Df#r8i)~U|eHw;j~j!x{Z7W`oa%1W}E
zfnU7AH}B}YSZGaAvw+MHD`aeJFgIAVbW`K+WmJtJs3Ov3xFR_Ii!Bg^3y%k&+u$oT
zM)LD(EM@vD)i^ml!~`&7%OWgcTS>~DALC4m@KDFPJ^c(ur7EFUI6|6{BdCD`a%zIj
zE5JCCTTFN*7Pypwz}Dcm;@5?~LJE?FXyCm1nWa&<cqomOk<t(o4x$v&CPaSVJvoI@
zbrfUV3y>fOGtH1sP|OOjY+<@kb!C!44eD504?<of(f;p0_1?|xG~Ko~i{e13jTn=@
zm%Y|Y6x_~z@4o_*NiGu3G=j0^8i0)AMu+ZnQ)j$&%frdDi|IPVQq1L~XYP(=G)^uN
zFG2u3eFVUd7f82DIi)w(r7f|^rG-2v-*__X;CuVffy0&dC$63*W<@g+HTU^UM3UAN
zhfPuU3I%gz3P3kg(3~?9H{)3Bx2@9H(RsdI91=&<`Y8-7A9oVFeT#|>g)q88v6wLO
z1ZV%w;}Q=xFiJjqpo(<-xsN@ZWQH0h^2M*$%wj7o!P3y}?!fK^!N)9&qJk0qaZQoS
zraV|hn_R-zt)G!=TfeqS3xjqHSLrGtp(4nZ=tdIZ1~Is%MKD7MN|E;I;0I6dhtX~q
zo9=4+io6wtHy+Zx^6XF-B+Bp3PEUgEU6d{wEr)#IpaY`G-SBXl4si&3ng;;7nvmVc
zC(}p!6I@Eb{va<tt<@1Rt38sKUf9lXc=B{iwA0G`HM)k+cYp6Sx#&fDC-x$G&<Ty7
zcmoE*Tn2g4L!HK$4OK`}`3Q5Wdmj(8p^}LNPyq6lLR2>ydwymbW1laDTohDe!_-hI
z!Zxpln!tg3ukS3iL@@5wh1|9Y_EuNC_P{xX+)~t5y-=<c*x2A`gG}Ze<_aWJbT4Z7
z^ddbgD~J0g)nIXZz2F(s%N=f8(-b~RuBY2#*+t>Qn1rSD!Z@3t8$(Fb;qOO(rBHMH
zZ!SQJ4hNA?@#8q>AaN_5Abjt%JaS6U;5;kRjyA|TQF@2eW~JdShKeX*a1sbGr}aOX
zEwlf@-kBC@kSX9w1-y3)2Q;QIA-ya0HRl*o1ccOwIsUC-JP@&2?y=F6xg&Z$gAZ@%
z4s?JR*_Z`*!VG(R&;a~K-`(1O3!5KkrZ}%!kgRU=C4r!omM+Nbkdf*%;s6u^iefVX
zNm32s%A2{2N^Zh0n1^rp`nJw?`6}lrbw{!jj*6=tMWAe*ga)hxP<#n4XW<c;XWDf0
zu5%iFxLHjEa);!g?4CrA4fVU#oen7AS|egy81nb9VAofK9w%07i!0fp^6u6J&JR~A
zR!OWLol4VQ6HH9Ecfq~i8Ijr)pacL3aT}&RMbGj6r|yxn{Ez0?+aV+4;I+jdj=UP#
z1UO%)^1Ql5Jbqs@fQ>bk^ivS7L{3|5_u5Kplil}nbk*Cxug_L1D(&wRBIA?}TCEL!
zqBX(gn}s+KVYmv^tq(c?x-0%=(f;eG><a^0IP7*%)78*l+TMD?7$cxqM33r6@W<l;
zxQgD#)7RqZql=OzUm%dMJgi7C;j_}@k{FRDY2YZ2?T~8P!B=W@pK1SmL1r}MaSe^b
z(T29}KQ;O3d6bQzn5};D%HPK=C5Td3O*HSA={tUY2FQ)?wPmuB-J9ci0XS=IppbUM
zne=c=Vw8e90R}X*F^}6uk;L@Q&5~S6MNtrxV%oGBj>*8CL$k7^3w)OcjXzuKytm1n
zak~ZF24^-f?E5OSmq|akSg)c-SzaeZ3*CkRs2rjUr$<o~5?iN181sjDJf420g)lc=
z%X>S7v%i!Ba<OykC<bgnQBBBOI0-leuc}l0>M4i{n~<EXsif>uS+Xs3S}P&jTsgtS
zqyi;YU6(ivoIe)l*u4o`hGsBSrc-!8!8pzyWm1CaJ81=B=QzMEZctJIzrT8cEhDF7
z+pj#{U@Z%>l8}cI628Wou38}S;&jB3UQFF1>BeqPx0`#ARR9IeksS)wFOdE>)5^wi
zqB%h>fm_o?pd{ffH+%C21cyZcDEwg&*OF*3Zd)$`#1@kDf^}rC9p9gh${E+P5mc!{
z5rVUFM*9xHTqad0OHoD!FQZfqCM(iaF$k#?5^90X5*X?=p|Gb253L@RyG-4^VQe6c
z?)<cVo3hQmxONWdeQz<{rxV*sr;$w%Zb|Uimk9HY`Ls&=-u}M=q#VbPC<0W$2kpzJ
z+|H4XbuqmMX`z6^i&ksrW$3z?)=K>a0s+Tlp{wBKedC4+_RDYGL0LDO!lEJq_%Sv>
zkmwPxEEUMZHlRaIA?WvqNq~yg-Y>76B{TZzgV<z-*c-r?dl#z);<Il7s{*<f-qC$I
z8eH*YL_y>EFh4f|y$i62!E|BS>BHA*gx9Vu14lRjV>|8LS_!wu85O;)BS%E@Hq1~B
z+0vW8BKJ75Bm&(69D50AabPpCHb)_fC7r-Gaa_RJh*HKyWbE?<uGNBoD<9rz=-TAy
zhLN{}RETQ!+_kI#m{KoV3JLvB$F1)}Rmm8oqv&JKNNH@qZ)**?u&fXZb`zbFh~L(?
z!5&f{1!X~}D2oE&X9a<*NQ89c-%g4YM3ciQVl2yA!I<RKPx_Tx<-LgrrfLZrZd8xx
zaq4lf2TCh~By2QzywByvNb;K+WPf()=(8k2M^nHPamNT^F2X<G!2HE6{s?lW)o6p%
zW(|qU794~k0Kciv%g#j~f4O6kF}enD#%>|faByoi02F3c8M&8j1XI%n^;n<5@AK~%
ziK#1Bf#bE-4u{2HBf^mVNZQHL`Tjn`3fn?>w7hJTR?q7v?;%m~j67l+dMa?hWSU{d
z6cJtK_K%Y1L4R+-3J+;Ew3$z*H&W!vN&0Mx*T;-EF*I+ZHI4i}n<>?qC^rTSWKsGG
zMr0jXMQJo9u-JNbb$nFMfk#<P2`@P9tB^Dl!pRfYYV_T&GWoNeKb<4>5ZIDu3JLu(
z<9#wzgCkQ2;}8mTpw95hnxtn7bwg3Opa_X;%lzs}w0QUv_Nx+%O3cuc<zt@$Jvvas
zh|g$`mfehnCnKX#&N2ImhNgkGn%xf?-I)c*%>r?l;vdWe2A(L(L7x#+zAd2i5BslG
z+khwAf9%mOl#?QVRc&_4LhO`|-R^_hg7C>s@-8mpgDx}yFQ#{ktL-jW1TweCo>sHU
z5#b_YNzT`sw6#PW`NwFxR<2+r84;v?+E3kG4e45wDa(R&VX@IZ*n(g{5q-TmefN-%
zmx;f&^g`7UX>Lyr446>X`h|4hRm3<I-%4RyVnaPlqB0cv0Mr+&#34sTz<<>d5e&J6
zlo=>4>pOJ$5R^&Qh9HgiwG`NnfAttAlr=hR(SiC;kfT_HIJOB1=voAoDpK6m`G0bq
z&!=$h=@D1M3|Q1@lcQPI@RA9YuI6mZ#79#mLP_-57<`?>A)eC1P1Fbv5k@P~9(k8i
zq{lfJ(XnY9>4**D<xrTP9c>-g<z^KiEDl5zDL}~1!Ep-y2~wvYyi&d>abO8N*}+Ws
zbPOWhe5H0KqjDDA=OhrLxY~^y_MEZJ15w=?DG^sY@bV@^>3U&e%A5NuDQjO{3Ee+q
zH~)NkD*BU148W}~X?T&u`@iN><rqFND{&mVSxVNIGM0<=PEj~&NOsi-`{R_Vz7eoN
ztB9i4qI*&YtUjaYupkxgFOTXR6aj3$@okAy-Jsfm`j;ppqX{xh1vbAw${=@4Fm5k+
zOq8Cvokj}`ZA)1HKbKTITB~yks@AUwhJQMDR}**<!krc<t#zZ`#yK*ErVX($I#kQH
ze*Bw26D+Ab8;Zhf3EW=><dZz%j_x^;CHVDfwei1A9%iWMTEfb>b#Ycn&dkgVK2|M~
z!(VfkFiEMFeCIm3_lm(NFBvd)6OkX`F9YLJUq!2){)MqJ9BwNN%i)HI_AQO?n=7S5
zgWC!a4EQrSh&*gnPCn1JlD^jsW8xh6hyszJ&mJyW&n*b1q@vmMe#8^rIN9-^Gc;&k
zr+r(PFF8;X6s`S$BeRLHN7q)Rxuyqc-g^@Tg0p6Uq9K@zQYM43fXH#TBZVKlJBt%Y
zNFA5}_d1c>?C3OqM$sCY_BK#%aRf;K2hp-2i;uRXQaFkIO|#CtGOr7{1^b$MF_5vf
zE2*=DQ=mpb5{g_2sdS_=xuExxYY_~C7uvHlt_Hg(4UY&qJqysL_io{ICgmE&_jMkT
zp#~{|$s)z5`O2FP`Ye+{XX6_{n{LCVG9%iAIz?^%Nu?kBkzRzO6nf`VjS6>}!T<u-
z!u^ljT9fuB>DYWXjchYn><~dhM>p%Ms<Hvwo1U8~o=^N$RAx8hoeOSl;WJOfx2k^)
zdhp@0ka_*}cBCwRz|rs=phnAc<vb$v9JxD2$-LP1t487Vc32;wEN3!8&u2vm1A`_^
z%o*a}rtscHJPk%(O3}vh{rB>g72y^KGjWsjCded-ngq@-P(pTYjWB*;JBr$^VE7l~
zr0B2e_)eT8xD!bPMPPKRIb$9xqmp-8P~wduuM)aHZGaMoBh(~&Mz9lV+rxj%PAnuh
zKvRfScB}s4>ND6sSVGEh*9Bu&K=+{wS9!DBFt~pPjk6Cxig`c+tw_@+-zFf0PJ%*i
z2%0alMSwRj3-I%4g>um-&=!aJ>gz-%WV8#)MaObMge8EGBbAegmO%*+Hry54g@U`@
zgC*M#L{hT0rUv!2GFrI(r`y8(HXZ+9ohO4d5s^>}6{wMxu$eGg`yt+%QvM_w9fHT*
z1~2<y$sB0@2H6Q!Rn;T~k6$872>5{aj#2@XQ8$*Ia0A0jkGfSJrc->oo!Bgwk$KLQ
z0I7UhKT7NYsOZGMbZrMDcpZ@=u_cC3K+=<6F_eKiq)CO+#uCC);d(^~Hl(z+Dx-y%
zQy^4D02pJjaeJEcS9lat%m_aaJ75!KPQ?#Y;n}D<rq;$W#&hx0T9Lqfi+F8Od_sNN
zO0cr%?bnd-#akRt(J4mQ8DAUsPzM2?FelceNH!gimY{Jxc)&&&<mw073p*4-Cj|Wq
z8e1KBcH>)SDpLaB<V>^;(z1RHii!WT3Lr%b0Dw|}rr)mRbs+sc<)T}SSlS!rvz78r
zmO!97U-mVWIS{Rzk3l7ks04&o$23VY#7Yn{3XaaOuH3t8iE5l%&RB92RSg=xb)Wn@
zm}VM`>8__`RY|AwTGb5)laD>|hs=opr;Q8|=1Le%z2+2fb$pQyN`UyE55!BWeLaD{
z)T#lWJY(^?KPWVI8O?KPIy+rBpL3QrlX5&T)ZE_MLmqrAnEn(FG!AVYP5ZcLanuh9
z3Qb2^$Y%0Lo}inm*%a@}beo;)Vtn_SxS*;4LuG{M-YB}}qqCE}dOSx*5nTX#fOu1l
zs+pDu8>`xR<3QYJ9Q0PuNLN)-xf~m!x5@%~K_Uo~%y1BHFbNy#dv|Vj3w|)cyMNNY
zlhm>;@$vS#UYw%^168<h6vVrutBCT2I^66eD0pD_-zu{31WuBw1dB}>GAiAr2<2|U
z;kx+5e<L?QHApunL>`4uh83}H$|o0=I1ZmsLb&m?o|H;wBr|cJoGJh_@!BPyc1Kfe
zCn6~pn^KY;-BYT0P}q+7G`v^sC@&S$O;Gz_v9bE5V4+cr>X}I`8m=k9WY2Zh=w)o6
zi-p3KM(s%?+D52q8HCxwW)kay@G~@`zgpT4k@m-A;ZaU3IrHnXo1j=5*XW(pYs>TX
z_HM$<5;)ZhOV4CMQ{g58+_gY7zvYUx$0e<n3K*{Xb<nGcDoHT6s!vN@6W}@%Wb5H~
zIJcn!82i4j+JhZEG0ze^kF{%!Vc%OQ5CqXz{b}ieuEYt#ewa!cbWzr+=x7UPeR@pR
z9_GT34ah^d0NI5fZl8L)Eo0wF6g*lnqBM5h?F>AODF&bweG5E++>iJ>RLw)!d4v*Z
zkOw#5!YL8fj9*C}o3>PQc=!UhwLB!YzFf<rswgA@S}>+z4}Okq1Ou`}+;ZQn&0k(r
zol33Tj)vGW;+=JhSLb89^g0(F2&_aQS?BZcdgN-42aaTRnQY~h4Wd~bm?~Bmm6x0>
zJe%9_#@rz#EM1m{P9r|dvDd)#V?VpL*C32i<5a3*48EEBl>1T<7B@HoF4N6PYya^b
zNaR$azQsj<CwH<ip~nWkLUXao8n9X5bgtC$B*q#W*r04`-l>;A>2~-l-0|tJpDC*H
z!0<qKBw-YnKVjYNTaJE`y%4qHiW1$I`K70U=upC(_${pAV;G7<WQ(TtqY6%Gnij}Z
z`_jHZQ38tm>LD0V=tNkzORLiS4s?)Wm0Jj|z}KP_`RR1wst6;ZE0pUZ0<J(*jwu-F
zkH@Io;FGk4p?<;mg1YYg!+W19lSMgD&kL#ZNO7oe+Q-Ay%4RpZOA+Z%H%tsmnHu0S
zHlz*FY2!346+p5e>@<<1fPPgu!W^H|Z!~qSe1I8mq&;MlppBbUnO54--O5Ti+|E)6
ziObQ8{F}1Mxz+w(s{toeMl}Y>G7<%E@TjiY$!_1s7vW40E+uo=3hs?}Tou-VdPKbw
zDo5#vfC(1eq(dwhiml*J`B|q2I{iS|NqMXkZ61RF(-h6qev-E41U%4m0)mPTel@d&
zUoxdrOWF$<bP|dtN(#!{YTDY@A%sy3*t8yAR1tlQ72usI?0$rKF~^}Q+X!<2aCLP7
zD7b-u5Kv*q!7U*o7@{a6<YM$|$dg<Xe-)`Zj0DwbJ*s1b1Q8UM3g3eQ$e`460u3of
zK^-8WvZn)?oe`c@8*Q{mc9N+~XEB<s5r{e3!6=+kC69nj`rq&#mMPWL&Vq(lUpSWy
zIBfd(dl0hmVX53LF@^wg>Fod&2Jj&3yXKth<Lhfm|BCbtG)R9K8)M89QU<nL0YIrr
z-v)38!n{2qU?>U>ZT^H1X8}9mB+4U{;P|B48B<-(8m%1*+KH=zi_XI8Xq~=BH8u`p
z4`anFfS2nt81FYAC{-w~j5u%`-yD<sQ>h<7QRMv;t><uR6s>Sp1TicgN^Mm_1A6pX
z3cGiUqQhka25{0^h0R)9g7GF4Y0x&|P?;dUF^I~^rOxP^>;6R384H%0j$4o7H#)i4
zO0)}v8{ux0;rMB2?>Xc~!3cr_jY5Y}q8wt`IiV+_pjeH%jXXmc?WguYg43B+nii8_
z4RT{<77173!a4Cd)DmfZ*QD0oQE=8PDlDWoKxjnq933ff_?e@dT~NHB!$#p2J{gX0
ztpjeQ)h2e#n6?@nxA_z$k}<^M$5-}iRV5|N{2>aqzE-^&^$OI5`mh1iON&&0+#|cs
z{W9;++p)<%U7j>)?}EuIr(WibKRfNR#OjN6&jON@gf0t*{~{`QUSpAszRknciyvN$
zyvbPa$((+c&6LY_`J|fLc4_lESLd`XtzRVcL^aZmYMs=oLO*qywoh=xYK7MW$leZ{
zo0psB@V@nQ93Knp_O;FO@$<Wc@w-fZepw9-F0?7E6Bj>!S)o}mxu~RM$Nv4?kaP|S
z58v6bTUR%;_)vSf-9`zCCFbVl_dUM(J^wgk%DG1e)-C@2pR3EcA5Z*kFY7^O=6uG9
z%+vjXJxS0`F)9s^2<Y{>hsH3EH)u?Z@9V6Hn7zgT!dL8ofYnDeeEgvNgZx=q6&hlm
zHhWc7dBHaO1H;;UT4tYn^bU<`4j=oX!@@MGx;bC?x#DHIjp-|2;eCm>%iTM=x|C3-
z=N%aQ%iVp}@slS7{QUgrlb;O^V8@J|b5$0iCGepH?pNOe!!)dVr3s8ov+(k{b02-C
zNja*0dC#7CLWcG_=pbysAXlu??x&>CsE`80^Ub|{t5;tIPIm6_;luKdd4`sjirhRr
z1u(HqTeOZ#JAS=>)8D@$?)GihIkNd6`?5gRyvSzHYyG-(=~BA)OmT6|@UF*?W!<|l
z<9Lqj)JvBx{fS~VKfb)NHZ?76kwq&26C>PG-l0izxVX5$?$~2JHfpcm+R@Wf_8AD5
zNA(jlQ?k%KyJ;Zh{{4&o{=XOG=g-kSIWRE5Yg-AionDkLJn!7$^&5kvmD?~R1s3QW
zMNN0(dNDCBi3S)2Pm*&92;jaXUjOFJMGOi<D#I6Hi9mT%tA55e00CL;?rQ;M(B=CR
zCwHF1Y~(n;SC`8K?T7wAb?yd?Z%~AnkyF>u*kOru&J!)Bo~Zlu_FCa(zGU(6@U*oe
zQsG^=a3OCGW9Ez*`4GMRX!Ga-#L9^GdC@6hs;hd8<~3mZZlkF4G{LoJS)M<Co(&J{
zg)UPC$0_)h;-VW@u1t@c3`JDgsefWlqY>z=Pv5-RA36((;5OLd75&aQ8sh6WZWNd@
zWlBKrhwhCwHa57sO#K`ML(q}~8maL?(GG#dPDr-x?!qNd;6A#=Vc@EbBIG#r^Dr}O
zN$V?og>L~i^3*3+wFC%u{53}w&UNSM!R|Gw-yq2{?Gl8tM)qOTjL;VU6bc8OBfUVP
zt^+siJFSVyPl`^<M2x0>8wE3iYNWi*7!l>$GFQ5xysYuVhkO{tO*KjPbMicv??FfV
z$`5iUPHZ@S;sg`B`N8{TWhIkN{Hj%}M9Nn1^Pg|@h;{yqAetz$1PIO>`3h&`2~JQT
zyydRwI9wRedw#kT7q{l+jhvh<5a6Ejxwn^nm=fN~aU9G-X;ay+{RKd?8;y6X26Hc7
zERROAZIzXk+h2_$yy;td&iewkjSZ~&%Kb(}qf``qnwNKBj%u%q|Lt+yy7?AsMMb^5
z)~;K3eU7Tg6x2f`@u*GQrU-Hada)x&E(DCAQAR)|?;);7Bc>=LG(na!tF#XYYh?ry
zzw)w#{pqquEBSg?W3a0y+M3y@k6#i8_I=dw$Ps0D(~?ydhK9VUG9NKWLVbC1a&iG|
z{zW&pU-oKhE|h3RZ0!ZzAFuoOH|V$SS5Q@*=O<>d@MU@VynAMc4n0|-HLXR$zBhD#
zp6B*``xZwmL-{te#bsn*4csC7X~Qzc#i*!Ns03_@C|NxnvC&=U-%?{>@C*|U9yuZ$
zF$ztye3VBEAdm2@daX)ta1WxKi^0LmkLE&+ZATGg9F@%9e))3ZLw9%SP~gg}wvQjL
z;{#s6zk8Q@EL^bQI*PaRe*gV<^o#QvCZNRI1g^UPL>#lqF2PC)dLaOLDISANR-<dy
z4|db&;r8eW3o7Ua8(kWFR$N>>t7ze(MP3L7S)+3CcQ$HhXjo&g?Ax&|E@J_G0uS!+
zCn%h|q_*U0a4?QvMJtA(X8iqIWq8i=R*|;<*UvXM`8<kTisIUK6gRd7rzKsKDtZk0
z5((M!fVzBMn;2hKU%vS?Q{<pQbt;Cs>EB^u{^O-PlaK2nz-@+I+n?(kcxWRG&n79U
zBI%s-=clA&RD=3!*z^Dq@X=O4Y1DgV^jrbe`Ul7F?mK?xK^zz_O~3+Foq7ibTD%KN
zO86l8BhvA<u<-H<b%;JK61p+xjir^9@n!y>J2Fr@r=JeR^N5sH)z;ob%RVc%1Rg%$
z)<YZ;3eg^pt5&Z31If6L_S&<r(f7f8Rg|Cqhn<~WR%c{n<aK~C1z$*T=l<2eK%Rnv
zf<H0mz}u|h)hnIwmC=cb*U>PsFFs?@f<lF)wx*`1nO2LT%u{^40tvF&81~7txL8pH
z8b^Mquue)?;nme9z=E12j|vG1wJlPZa@J4>9XRuNc=SwkVX#}i+M#pu-cX^Ss+g$g
zU1KC5JKaJrzk|=<4u&9H0eBh4)wx(J$fUP8al^={LNQCfrW#*l_*%UX=IyXEMyRlZ
zgZJ<&2dsP<e*2xmr#?iPo@5^pd+qLL>FWCb{L3$Uf5+Ga)n|c>i)YSEinzK7LUWsp
zApykKqK6r>`>h(G-OT&48kc#;Q~#t=gL!ACy9r}dP5aP1*?e4}1+N4~zJ5Jc*woZ?
z9lkAJIv2OFfcu=c59*AcB=dkFcp<<kHH9FCp;dTT*rhiWxC#sBYWf~|%!@KrL~qVp
z#>Mz}Vf)dq_lj+}oE0w!f*0@ygSCB|`ob$$t`vZ}Y5Z#A`t_b)W$KVftny80Z*QOX
zt*@_d#p%<hvpPS1{P;<K<sixwBCj#h9>ysY+a|j`8mcV;hgiDO2Vgy{zm2Utx?E`G
zl;-5$gadlPhe&@V$spU8wf&Ccj%YB#yuVtqUKy=<JBOQF@#?i}_H|hIg%S<}tH-CA
zu3LOn;p`>#CI18@jjgi3eE*BjLr{FK2L&ltKw!T~&ko=A;M8Zs9S@#eIeYdel>DaQ
z#JWKquXq%B#$V^oO-8UXnNgc|bUF0dJ;2Nne3J&rPJ}d#aK4blXmkV#>n|A1CnY5_
zO-xLt$%x}Vk1C!zeVTXOx;cykR#w+w;xzB=;wr;le;WJdz;MmZ-VB<t_OoRgGjV60
zVr3Z&;B?P{c|_N)m~!rOGN#X-!(o08gUZ_g^YXB+ZV9H0M8dFgoyt2f+LH{Jq^YIl
zCkCi(G|Edsq8sS}2Ks3%Sg_!BV&a@Di`G6zh$Ylqd-?Y5+l;^FFkGXf1)(hUo0F5%
z$BvG>@FURId_FSRGZ(8^6swyy3o<27;hdSTvaOq^;bnJP#Y9Hl#&tZ5umCa~9#^l<
z!068vl9EfI772y+$V8hjU%rG6%AsaP)3ktmubn!3_J!PBnR)Z)Phu=tvSjgk!=I7O
zOt!GF&`*_d9-RttCL?3xNsJ9*Vh2r3rp%l<^Dj5IOHBrla>;+7W?-<qy1M#Bb@g-5
zM?VkuTR=kSCkBQfzC`vYefrB(L{M3dP`YCx+nK?LREwDPD%EPboSfYD?c3iW*2*s^
zn8d)0xdR9YHsQxGr``k3Vlo2~m@`F1MHeq!$}26+4eo4s*^RWcjgUaR2iYk79L7T=
zGw)kle`Opl5B)7RE)Ln<bZM6{ZXAgnCMNuGMF<-{U_;Qfzbx<krAxn|Y5EMVahBr{
z+xdvG@h@UxVxEUEMeur>3p>B8>;kqKIeN*^el4v<EiEmFU#G4C5<X|)!t-#nykcS+
z(b=7ymS5Vdrmxk{x*Z&awZ{H_EDxJrUQvN@cZas`*fEI#MYi`XE$89vEbB9T(i+e=
z^AIL|5(D9t98B{|WK>XQTCr)<;<~yz=tp@h2YqMBr-6YRhl`#)`vuxGA!b-*Kz?+{
z&fmDP5Dsw;56?BkEm;nO%HgC{y;#DU2}av?88yUlkl8q3ZhjfYrxE!ork4Ez@xh-M
z81N+t{N@Tm){EKIkLSp)JNWo#cm*B?=5aYex^y8OV(9eGnKw_i#}x7?qv-Y6<S>B#
zP6T4mJ6*xY_X{M#zVrcHy}0=Zp5Azv{}MbYChons50WOXr>2Pm>Z;EW$sHcXy}F6S
z*01X~*{R#MZ~s}Tqpd9jK6u)_HSWM8F1#H-+jSB?ewmDOu~{y@c^1ZV?bFs~r3@kV
zJ&5RILtJR+&uVIFH*ejN#o5Aq#8X4Pe2@c~#DL97OiFr;i-Pf2EA*Y$>SZiI8`fkM
z5q?xze?c5_4d-3?cYZ}9BPLMyYuJLw=;+5!pZ<)b@frHyKDSp14exjSHp~SNG<EuP
zxnsxHO_{OS6}H4vWUWEYb_IoLjCVN5i^a?r$jZru#KsnPNHgCzH~)fLpuD^RqsbO8
zSrUR~5BWWNb}1^(fPelAN?1`&j$5}fU>?tnjyf{<YG`~hrjUw3R?!vVx}^TpS+l~O
zZt`BQ6wuYy4goZHYWT}4)2kmkI;JD+_&PGu*X;!XOaLg{b7V1LZYC<sOA!X{#1mm!
z#dUA*pBeH>O3zSYIFDlh#CGe!)>AFTODL<+7h<dv5s^jp?sh_g2NW-*9R_9~82$9=
z(>o`R>GQd{uL2Z#(Q!8}j&2lCx9Q8bIL;|BIGw$_Z|RaHFF%{w*@+|e`Sju0bf$p7
zWCjl0I<%wWrp(*9b7$5!Y#|p<GP0-J09V&-*svY1j>r1w;)P%2im_s~t#^Ug!Yls@
z0h`aL;SHxF{DT|{pLH=PDi`~kQ8!$?`Sga?H~sznWJlmb9mhtOz%HHYYnjRT11Am0
z_e10od;^;qa~3b2>fqoYx$qZ-=YlXWm}JX^FPt-Hjw`f;4gyJgQBmQgVZ}ugc_qpM
zVJdOb$*jO-{jp}vwF+l%_e(``v?ehz(-~7|&J63i16PPQ;bR+oTDEfa>g|}L@$F51
z{!}C%FKTKoq^62v8tB|*%iN*fG#r3&rE>%Y1p{&(#3HOdgg(cB@s|j9W>23!{bPIk
z**Rx1ZUfe}5s&;8D5;`9WTej{jL9=WjM{c;_2$hyc)O|7rpfNzJ2%H=+#T^s2rNBr
z`>H{S^?#?{6RvLTuDYM}4NgY>+~qv1owermW#X2Ldy-%ud@ZVKFTa7~G>*Tmr-1uo
zTGb9b%R6QG>0{mqk;UT<>bA@(*!{T(0W(;-RU@W^zutGoXAP>l)u%xf`*v#<@Zo5?
zh{9TQr^H<#s%naqMk#Q)O=TIMTHe3k2GP~s!uucmA$Dt;+;KRoc~ElvfPV*syb&C8
zEy|nGDSk01Xc@Q$LSQ{`BQBoFQdC@Ba}RRl1xV2I5!A?@u(f4@i*wP>ZwWX$Kczd3
zh$kGje+-L12jjqj@oXn-u^fi*PDsc$%vV-`OccgEPPfO@g7ndr-8*)v8hau{j&23G
z7I0V^m7@5{Mkxu2<3UcWy%Aqk{XEqH0qll*WMQhaJkBeVhAZ;Hg4`9?P*)Fi{|$(c
za-UuI8*Os~A2wSS)%4|VdK=%%M~C$sgf}m^bXEN_a&UoMPtUmprKJlkbT_f1GcqJ6
zZJjZ5CQj9!?Y$V{Sn&;8ZqrS&&YsZHzT(Z2m;VE$ly}^_bn2(>QeD%JsPz&|rA_b7
zUAw%XlIzwNPr9b?1#T->t@1>acE$VB)vHWc=GIzYyM(DbRoBEhpn{tO?RC#AfE`b(
zt8X-pqoBcj<qWeRa1=^sPqUhh33xe#krS@4*?N|50Y5<8k<0Mt(X|7&E+?D9$BFBN
zdw9%#`QpX9CWHW&x6AypBI?G@^RX0NL03}#EfP&bE31-wT|GT(tGiJw-ZTU&wc>O7
zAAem(Ty`C!Sgzwrvx<@BKE7vWVX+%g>h@kIU`#*&y}Sm&KJz}TwT^9W#sgr~mqw8>
zkE*LLK-=Al)+N^$>h&UG4#?s<^GUR`sYzYf0X{82K85YvbAyi^jT|gO5kinf%`xj9
zd#dk#eH|P$CCibn_IAN?=PN~8g@~m#4V9FX6aY!z-pjRU(UtAl-4GDlo_Y4=?-s~>
zUJnDSyF5B8zp(Jb_Rxhj&aZ20FK&MXjEn2imUPHi8UoXCWv>i=Y-OmdJPRq~yoh3a
zgc<Z}gM2g^_(JRv8-xw~hJ7-EyP&w#Ft-QiH^tb{P!>Xhe6JMt>=A&I^d6R(htKqW
zDL892g+VyPB|A4PXetY6%G~rt@azRJV-iE4aIbusn)USAv$;x2O6IysN+=RqZ)X}f
zJ8#KO`)fsf@3l~!(><x?RSKOwj*mXi`SUMSxGtgb^!k2iCK_&NK^&2UDZu8LU$*$3
ze_*;7hXokJ&ZbRmZEZ$q<PYfE1U>iduc1R0kd?$cfBL+oOBG;FcN9^)GKwm=VV^z#
z9gI}>Xt62}z4UbDz|hc8DE5*&7cC8fy|V;lWP%lgr2QCtFEf4_xmf5P8h!V!Tpz0J
zUJy>*ai;_mj=bO)J%PguJ>4Zcb&2GOl?kTl-WZ4q9Bcju?2%X@B9}7gz|V}pkn&T1
zREY=6N1tunwPwwlOO4{PQwxfUR)FwLPdv}Xfsdb`jhI>0A7n*7;8tn1tuGoHf)Tt{
zWP$nrCuDb3C-Uj}3t2w@qL0qPH{~b(y3?%>dg0b%iI|MttRc)~{spMwoLXvh8i2jt
zEk_@*G*PJh1M!b>ob0suWco7IQ{**H{lv|<=amq%6r-;*vR%f5PD=2rejC~mjTXT0
znk@i8=pUL5&CFKS)J6b7G(s@O6cUPw)*BC|u_lIjwrp`*TU+4kj_J>$;a^sOOygyi
z3!};b|FT0vnSc+3d1F0Op#houSRh@)Ti%EA_~jRn!M|)x06xb%|Gm&H81H#lpmsU1
z3X1x54OBv-6B717S+42T&jRg}%6CMgK$f*=g}kC7Gb1CTG9G|Qtt0$(K%>@xk;y?%
zK^5Lvo_0a#kZEf2W!|5^FzP2h-ZzN4{G5NgJQb4|SOCO@*B=GAV)|y*)(;<MJ^pDU
z!w6qD&&p-^%cT{{E9-%7G4D|z1PCVF9x>&r^$EA-Q%*=hf%EAo!MfzoM%nG*N!z1Q
z>;1qTfhevCyKS60IMAi*zBn2=t!j@Sq8oRWD#-5|`tz<-{Y7EBJmRo<R;ETq$F}bV
z;cl*f53<M&9%s&M^IN!PZWHWXfaJ|BP8r1_n4Nuli0&}k%j;Ro`~`RoLs2u{|A(tH
z0qc3)-hO7XH!6{tltv^WQ%F%7kkVi%h00jQLS;vrN~k0frAY(QXiAwXnNnoP5EUgu
zDl{qY=h^#z{^xz)b6w{;+qt&-{l4GlS?gZ+eXq4zKw1ml9Xq?dL&yj-*$rNtEUOJC
z;^N}Mcj^wV_cO<+pxv{N#9`&TW7KZSTS%;==fSKthxoa<-e2anjG265(vpi~&U_i8
ztbDkp5GSQ}recqSoqb$mU(%NAelpGFvM{*z{UW7H3Oa6Z9InUcTr?SPbLlX{Z&D1j
z`E@*aUtz7DA=S#JQ~J*3YT4gp6OLY-?^##w^E^xZ*4wN{N-XTvtCv<XNdczz?e<j7
zW0N)x%|Ap&FnTaHt6K89ZH(lR{j;00N8Ww#;JwGtZoLMR7fOHcFF&QfapOkcW_G}6
z>)sF&)%_(y0~6ow>;%1fydspxdC<;{6K3DQ*E&=Y%$!Q|t33Sv2@!YuCd|>-cWp5@
zY}=tPpKOp3898&!33UVBc9o}CCKvOeYNVO$F59a}w97pWX1m-shj>qLn4>%IO+$}%
zR`YD%aM?q!`T95hLr)2?QMdW@|CH4SBtI}(bxYZ+SA%)%S$7$SJbcomi&3vsWkAXK
zd?fexL&mTE<Mn(~(>XI|&OCl-(6C{>=gyr=F?RFuV;Rox_o-wsJkK40INDzA)9&BD
ze|Ohlen}bEswWhxZ1XR&pvBvOmEA{J0Uuv8vU5Snm~pCsj0kwNc9@);Rms<1j{5@w
ze3FvXup;edh&G7i_vV$WS8vMOno41K12<0*zyrh{(l`zu%t4mFx#(CfUi>$JuWCFM
z3mWMF227i+f0OMoh!dMjl6G(P#8VEXUjcf^x@SItF|<?;-mtBwrn%p2Hk~`S8%rqm
z`}y5ucESRxC)N6(8%?zc_+2Pj_s7w%{Kxd^*XI40Wn|QorG;Afeb)}2zQcS(W^{CP
z3W57_CX8WyW^!CySDwRi_dyfabtm?O!R7ZmQ41p6Vmo_wCxB&ETS9jTybb`fgsRC5
zn3Eec=<#<5m08{2ttz{9s}uFHSwmAxi@cWBkvPn}f6)Xp@4hYjN?14RqVqDvq1#w5
zp6=V~YUR3}Z~=G>jx-zxU87^Erx+s<*5TPIPJcV$s6P2^9O%lo3?9G^LpM{^2euiX
z+IdNy2;J$mrJ31H8h=hFB`sOKlg6~(Ri0$S;3qrt?%)3dmM-?={{7wQYTENG1<`!B
zIJdvD;T^=WH|hB%)Vurg3dV5MZBSB3VU?{-H%R~IjIg+`$&}@&FYd6heEPgkR=fxw
z>c-o(Teob{@Mzf*cGSFEh|jmCWpn4Ac{LG&d43}tQ(#DlVw&-+SskbuCNF_O=IwZs
z!A`@E@N%M>Y1`VvO%8c!>HN((hpSV>de5+<Pdo|0!^o5p^Gcs1yUZpZ)YK^%AKT5B
z+q|yfMsab_=0kP*CMJJUu~ww-yNSzhSojw7kPD0+PuMEfPhPQo(>k35^YvMhWpB~v
zpLUMIYNey&<Mhjy-7oK|@MmM<E021T!{ms%FTsq)@u9>qe2})XK>A8VaPS`f_2rqd
zfhSJfYd(hw+>4ew%QXWmEuU>_^L(AUswe3>S8XGS#{K2ViR%YewHOTa@^b)}hu8UQ
zK-f3oYjJL&lT%q$wS0X<Z}w(}H+Ch8&&Goha}?1h7u%@zs@o|$8#i1j%W~grI>7ZT
z3o||(%aE5EyrlZ$N7t6bVTet#3F}jb->hgP+eKZvbZKdR|FdcJnSson)!zPfu*ub{
zSB-{@?>Lj5qzi1D3)6uJ>D~By+W$pl6CWz7cK?TkGgsz@v)t+QNBS?msc!$>?(rr#
zRrLf_<hQWvP7V&8)~{b5mQ8c*t9<)%^R9aq4hUz;=x04a0*zEsIwLvFUfG+<!X9tU
zF^Kys{95Xe0RZR7AH&xd|MC({DHL2l+Gy+4&U{~8p<%hhH|?jmen%v<sQmJKBK%N3
zMP&++js-=sAeOlZFN`z};0)a=Dw1MjRb=zXkt5%|eY+ccd_0p=aQ(R5D}n}4wIlAi
zrj{RStlIDfcm{Yz96r2Th$pGb=An<Ia2Q_Ycnzb5oe5b%7FX09r#W(DC$V)9KFs~)
zc}YRTH`NJti1NgQr77LvAI?kLaxA*>d&8Ee*mt3}TdtUGu7F~;<u{!Eo%{Fu7NFbD
zz7i1__!n&6ygCzUBG(ZW4JHSE*l)mm>~G{)NbB#_9jO10H+L>um5`Wtx9?dAMfo#C
zhsWRP>0NoW!)}h;ENknQvR$Hlh&dS^zS6Ic7ds}d4C~)N|6YHI!FBr-sB|6<*v?dG
zpNk&)4Q;L4A5Oi;0O0Gz#i>gtf<{am32}Enoe~m?W4IUrzC6EtQJHs@%%DMPKRx2!
zj&C3xY|3y1L4K>RkNQY$`E8&Y4D!CswnDI4J%BT&zVy<9)jBr>33>E*j=Z6X$@>^|
z%)9GhYZldvyZx@RvNH(kVceNB-5}pNhi^%gTFF$z=Q*?+>QdE-SO>5l89W&I%5xti
z;xdDeIP15Ry?Jx$v7?a#9+WL*&z^-^9;Yn%c30{CeyNd6`{_{hb0=Vh=GBBJn(#-|
zJ+hyUcDbRWGhsrArL9VjciGLn)K!^^y>EJ?0;cY3@+PVgsZAQb1fM*4a+Tj{K1rdq
zvMSnK=z8bQUAxLd5yW-zxe)ZIxcDZb-@Pr<rcRxjpj%ciuibvc@vkX5RimE|10BdS
zep{z%<?!b}fw2xm(X6`+B@X$@(n~=Uh1bIT3R)>_Im<<i$Hk%?;AnX8sY&)PyVgLC
z8!Hf18)BpSWLb{a)VzD`Se)Hd>o*hYd93Dpmyx$0dMg(no93?Bw!V%x7udMse{%Hy
z{?D+O92H1%@n>ZvsQ$t4WNd*Fm5+x7!1kB(;o()%pX_22jS!gY0MH$keU;S)51B1Z
zW^~!UJs<F_7qu3Ixq_Awm(80UZgOW&_vt(`4jV}Fw;w<B3BsD1nj!%r6=zFcb2uXF
zyfCEQh(?l5kO%Q=CV3hNLK*#e-mi9E8V0`^-`;Zo73I4C9aImw{m9uH8>`6O96fH0
z1-=iv4I6s#OgRUU7__&@CnYD3<shhTEw2EfxKQbb!M09kP`I}JUqtyEZ{7?=lVopq
z$K647UqNz{1Ksv6w6Mq}0=)bDS$*Q&*)*j-Vlp*ujh<+CaZ=`wi;FM7tPj@NWi{uE
zIeA_OtP%3u*KNv_DK6W#{T&@WQYKDQ&SLkOGfIw|8jyM1=en3_B_<|5zvPN$E7u`%
zWqAhZ>xoWC@0OMp&9d>`gO46v{K4~hA8#N(CEkcJV|r0LhIgOotvf-tJ6IN<{E&lx
z!ZpF9`G3f`crhO#K!d$B@d*hb1<CbxYuDaWi{RWVwZVi1cA2vGo!atUKR*w6UHj;C
zr`kK4;fMB68vjFj4V&RvskcjZAL6v})tgdTf}pZI&T`1(%|?M|+Kqe$6U4Z4e<Ksu
zRw(<iiRfX}U~uXC)X?zo`%<&&J-U?=Yf$66Ah36mpncD3^?+r|mOZ@b7S!j!#FL?+
z`v{!=uVlO{cp2K*)`p?2&n5u6H;=tTIMeRAtWN6VQG3Mo#t15l@i_=qPfAKweULf3
zhxj2+p>#KI(@nN$=+((&jxbWl@6Wd%%$(+8Pa`A$-OBqf{k%%ir*#rf3JCIX`n1MK
zyBXh_8yum|qH!3Q-8*9OeEEPclNJ>JjUmBOr>cDhOY|04TAnFP2baP6_wLrM+rdXc
zy<>}>8s%=sjB}ke3*%Uk^MuOSxV`T5_eshNik0q3Hy_o+xUOn$N(3rV>iK40&;m0v
zU7o3PSz`BhS#KwI+zm6Gya_25sw?SLzFMt)FB008&jXlVpW1!ircIi!LmdOPbPD&`
zc}X03GNWv#cW>B`nAZCA>F}Kk7A=}hCBHjJ=h5}+yFJJL^3*+5C$?s}wVpQM{pc6^
z_VMO?IsgliOZMJuNw_QcOLQnmtXs^B*Kb*h?2ED^p?ul4IlWVm#-vGS*2e&JfjaN1
ztF7YVKY2GsabIfp=b_^4<$(v(|AJi54CwY>CG4LB{d>LVsY$#44F{g{IxFQ)V&oEu
z^sseaVd4DB!XLu|NRtg=)21+cTh;8(o;`2TogLG@u;6yWA6=tUo15xJLf`8>e)#Yq
z-z-{cJ+<L&3WGeaBNRrnd4c0sG;zm3a!Y(n723uYvDFV3+X2fr7`EODe#h`MtC7w0
z6B(<&B?tEU(zY*Q&kdV#E;b>Q*S)*d4eGC}#0BUWW4212y%P@t1i}SPb{-@lNN_@B
zG)8-^phKad{Xz9gjg=q#y#J}5PjJHQvE*v4->~5zyqo38*%FN2=tW+f(gAMx!LiAk
z<L*>$cZYYr4ZTpQDl=e!%0+_-s;ZK}yIW`ull}b)beC#PBukxLcC{aMr^EtzmlIGy
zr0IR6(`ZJ%Tu4cgx_WGu{`E7q9p~vygW5HZlp8v9Oxho|QnO*SURS-$_rEuYpS`Hh
zW2B_x+c0V78{%&^JFmGbO0%P4poWkB{h&VQ?_IcXK~*Y2(ssMf50yXP-EmxXtv&Xp
zg!8w6KUCCL!U)MqrHGDnMyPxr@)dwu#3BX;?skXZo=G>rBfLS&s}@Z;sQw<OD0++f
zSlceSHr@+6C@wrTB|dT7$!`tHaw+L&yFZg1R+mco>3G0)!Ghh8My97g=xi_?a`foY
zkouR0k|S*|we{-Rvtrk8Uc$ls)qGibcZCs4yFp<DmnIXDT%)?&oxLi(Oyc*%rGv45
ziDE3Ebg+!f9=gXI;21@w6y!M%9M|u`&}*nd_V6xGlCgK*K*$vAaYYws@8eQ8-_N?R
z?C2SjeqV!|z8BP|8^+3)V0?I^V<@kqbL#7->S`DH%|^3Nwe*Qmk22Nmo^|aS8$13&
zwDb?C8Qm*8a5t6Goup;`pAAzEq6)qOeC?v7r1WN$;0g2-Z+h(cc4>EQ?VtLRF7L%M
zC@b(4l3#}-;kP)V)D(ZA>J|TthPbl$5Ul|5dtq~x>E}1s2JwpDFB>y*Wc1Q}^z}dS
z6#s>;!yU9EGg@8UHk$F?2k<XNVq2(&{u_HE;qA3!r%sJ|cFk(Xu#SEM&it<%?%&JS
zzEdMm^`9$vKr+_6va<v!=Ys`{ER&*MEtG==K{*Yb-24{hN*|P;@b){C`t9`-jl=KS
zX(USCFxW;}F$<bH@c41Vm$gVjBRI0uhRLe^)qHN>)?;UhuAyNMN^nWv`?AA^9pe9s
zIdf+AqD3;O@A5L<_hzFUph*NCJGP(ig7g$(B)4!O1v0Rt0~uq1g@q6LAj*JOSV)6f
z%M@YSLhU8*Gw8De^tg)jiZiMMH0&gBZM^&P<<Cfknp~Vo<Ln%3o?rft7vQ>t?<$ne
z!@w0X#q4FvhVXs%1O_g=taO5(Sk4hPfC+$HFJirs&+?v;w;Rb&F)=ZbkX}xpqLBTg
z6xcEK7Y>D@f+GYA=?3WV&GN1^Eg07*tOXbn7y={%cwsJ-6W>2Qo3D_}>s;zNNKVcU
z!d!dDcjetd1v^pvvZ79!D~PA~YcS<b*!Wr7hys$b8b?B)4kD>jhwpvMi4sRcv=f$W
zFkFRE@Hqw2@u<d-IX$F5&`U6L-8%JlEJ_1?CqPIDQ8h<}?#Pa)N(Tl_>V*KV*4pFF
z?qmZCYwH1=__!!-9hpbXlJT8uOX~NVHycYngH~UkGi_DV^^0FS6m1TfD-mh1_tT}U
z9Cx2DAwOCi9UVu`m|?p{%RW0$D&)u!ZD+%qkyLXd$Byj{4*8zO+k_SF%tEvd5?ria
z9G^VwuL_c%_kOY?RcHO`8;2akY8|uO#eV1a+?{DPQ+fW8nTA+8i#>Q^%ZpZFHxMq@
zO*)i?gOFIe!Xt>1MZ%@7T>trt7w=$uWZPR$ZX9IBVp=M~5u-+R-R;ymVpnfC!tDDx
zJ?6Ugor8;|vc25My0koXj^60rjM&!0A1V})(tKoua^`$o+VW9)xAcftG!kiSc%^N%
zWQkGwdx|Q^;IlRvetwZ8E>~<!ud>`_W)^guiv>m4Eo!T;6!*y*Rw?y4BzFFowI|G%
zclHT?|Ixqs=JsjkBGFRj?Sn$Rd`Qvxvx>2G#Gm><yTQqYSAVA5{npqxHhA<q{gs__
z50#ddW|g`}R@wklEv$1Ghb+x=um`0)*@vv_=I&nfdpFwQIGR;(7k6MNd7|`;E-$h@
zrb4aiwMW12RMu)Cjip1|^OrUv$L!Wj++3icW7#j0mR+65zSl#TvR0s&N|z1mnQ1L<
zaE~4;!ShpFX8k{A*gv|?9&9lq_}}t4@3*?3W(y_?)6(4@b8OoJRZi|75daQ2&6U;~
z{mapA*RE-UhYVTa<kX!f{V*beyeMoG2$n8bKu0ZDr6DJICO*D9^i1?ehDp!l$ngMU
zf|YuV*kYzSY$9)&q$o0^eDF|3coF@3=`0ajSuVzPiQU-3s1aUB`KSH9^CTUalRZX!
z`~F>zvM%z>nSGprXnMSax8lHo18={6HC1|7r#ODR3=4<$;(HLso`nVQ6aBf(2&c0t
zwl8?L?Fj5XB&Zr8XSxzHyu?gh-Hv>XBE)ri$Oogk5^=i$0dA{Ig~PGgh8a;llQf|C
zbXbImM%3})2?+@z|5JQRKnMtV7!OQ!Nm76C@ZU7W%!EFp9VVBWIQG<U?#9PDj0w6k
z2-Vm0a^B>46{fhdy{qLlzBc!govW78r`lJ0@?^17R4Cf;(vMh3_T>DsL45FU4Gk5m
zu4)o1Iw=jI`ZZKiP_QG-$!R(Dfg<h%=T6U0SGqs{%E*{tY-}7E9lZza`3?<Z)3D!^
zfa&L<yY_%zV2Gp%u};s<4`ChE$FwQJYWs|B!C9ZV*0-SL$gh}M=J13cu^e20YsftM
zYPwJ{jeWCln(DwChNr!Qhx<qkO)7o)@?JVE+<i=2fUKK#C=GZwaoXg`)+;jKvpK2T
z;>C+EWMs%n#n<2qdi{C`GKkp!EE7*%V(jLoO_tMt%;~D;6Uy%R?q!9ukwdEGfm1EZ
zv+auH^q_|rF)u(nsxCOkOQwe{0Q#{UxX4W54!XL!-{>*H8qy2v%llQ9oUSFA>t^9d
z7-f7+g2xg#&DGWQd75KyWL6C^CG}IMO6RmL(Vn<m?%pp{S|cU#aOaThK>ghJqwiHV
zCB~fH+S~l~WyztI78V(=isXH2N4lTSxnLJiI6Xm>fxRKO!*x6cW@cvE*EVv!1?pm#
z#SQAKT)%PfA?GzB63vWl7V<*=4(=r>sTz6>H-_on=_^|6BN^RD9)1g17w+^P);FK0
zcCTX8*h*_<W1H5|^Y^+~-?`GQ`Df1=<3&-+&3IQ^dx$sb`=!Fc!9lP=TfUUa(wHAK
zaL5*#e%*f5$kKz*i=rp6HaIxgwdvc6=cT1L;T2?7Tvk_3oPYlF#OAqkPPJweaH*Zb
z8?&fBTwGmmFs9QVZ`oUz;w_(>d5i-uH#$bkx6ZiHYIUmaXjqs{Nai9@E@rIlj{>$E
zUS+?m3{-dpez{pp!GYfVt{U(PsAK{|a`@?XSVj%b0*113gpo@-8^^H8b#h};)X0FT
z+S+g7aoCj^_`FL{T59Us_wRj(2QW2e<x>~yzdrQa-(lSU8;j=THf-KIdd0uS`9(p8
z4_`NI@HP1Mt9i53yIY6u(g}Hi$rvz5(LIkm?cp!5hi7L|RIe8k;X52LwujC6L&SOs
zMVYVU!Gg6Jzv&y8Qe^gO?|4@hdTk!%C^<id*`iWY-N&n{&Wkc}zBxK_<@=x9LRb0R
zBmY`?u$Og(Zx5g5E={=+x^<x2_i8D0bYH4uUw7Dde_UG*q%{nB^6Kj9F{OV<N=E5=
z^V(ls+u0wAue|$2McfsppG+>z?>g^c+O%N%+;c9&0HSm*-#PFwBqYQK_Pzox>KJ?}
z*Ftfk*@7KAu2>C2omM#5f77N-+8>2@G$^)cO3cCm&*~7H<S<D9k@V|1%Up>5)z6ZL
zEk0{?qxD6S!QPR+lILT7<IG~njLC=Fv3N(`VR{xmGxjGQr1JVUB^egw=F_K(qmHoy
zxih9c@dX}6%qYBE+a+4ku$*Hm$AH7<jxk5#<CVoprvvE*URLd%hs`JAHiuK`WOCxz
zF@yVRa{3v}GO-^SCHWXMa_so=A|H#+>yLyMS0~4sn=4FmzHleukG#Ts&W@qa0&%!0
zP?DaH9D^JI^QH@d&Q52@4&(kYO@U}5@70GptX<oa@fZmUC1FREpN*s6ZZA@uaFUQh
zFKw?Kid}Dy()?2{c^_DDIFpFN`a9X7({=E5ZvQPkY}ow9T;C0M{o>+AeQBt4&ruAw
zgt1$pW6`xZ&+O(e<tkOTSD;HO^?S0;^X1;PD#LhyuislN{<eJ<4);pwMJhoYh7}YA
zaGQG}a(F2F2v@>xrZt~WEuvx!4%GAl@4^T_KS}1Qwae)0WE0DDQODcI{Mo&`a_Dpn
zB@b&g^z{-KqeQ^jP4<_?n(07~Jq90(%U_J-`OJ+TW1s)sea7~i^6`|?(R|nU+rP~)
z<*q%#vIr+vPT4B%mH6H$O|C6X{5vD$<vTJC=&;<6H&34Q1s=}D-h(McI0VUVLf2`S
zQNYptr&{%Fvl%0mHasjW%v`HArxX^Up+4Nfz037oz{v3d_s^a^djOdHczfaRwcRgH
zM~dBx@}s-1=g)I6Bwa`Beb$<e7k`+p-D_G}IbDAusk$|N8?k-{zw_f&Gu`gUn)^90
z5PfHg%l3SzthD26Zs{<M1o|r5V@XXK8p6o>UN%ygiEssX!fEY>=N;?hyHB6|Dd9Io
z)nxDZA&HSjmz~oFdv{_AY$>}zm+sql?@qhS`2To<KMXGz{Kt&`$GaYDK;B2J=Y(5T
z&s7{ge0Rf{NCm8))t)%F{tXgxU}wF?satDqA9qof3mHFU%9VLaFPSj}o%nqwsaHGV
z;`*0IJ;!9hOwUWVT)OlCA-G8A3|w9H>#LKnuXf|RJY3nv)45(yU>J7@zq7c0bDvXo
z`qI)TOC>%NJGOSPAA5KoQ3a>ysu<#oSwYFLCCE^?P<edMU%m`=PK~GGhNSJbaaX?+
zxU*tp4q%mCv2NV~1c4P8Bt^8Qp{I!PI}cYz1E$M?9{tzOpF4No@<p?x*3#~#xV*J~
z|2@@;DS5fME9eCm;$mv5CZI?I#z?4@M13t=4u-G?A~J+F@9L}16Hyv%mCp;@VxNw#
zXl!D#V(nUgY!MF3uyJv5*-fL(nO|TUftilyw?U`?YxAYzCptZnK=HG>vPFfQY@%e}
z+|nYN`!=1cuO+hc1VYBIF2P!cvo!qVN%~y14_**V5l|?fZ{Rj;b`kxj`^Fcza5khH
zvUfHf{CXlRtp4D);mR|;8o!==B^9eULT-o^Y|={UW%~cPy=ExERoy1kIqv}GVl&(-
zyF+0fj4QJ$JBIyiXt;%Tkoah1-9OmZOL%jMRxy(19fr%xM;YgvEnGN@*ZUTeDh^D1
zt+IGu_MSdH;z0v+<(1(F<)!+bnm1BS&0i)VftM}WFw4bt(7SO*wDvaCTPsw}l~++Q
z{GdA_wtIwHS#ChzfN!o{Mw%V%f<9+@<?J(CG`_q26EODlVk(Ot33d>59>mxl+*Wh<
zrmcTDF>A*UzeT1OdSR%UT+|?^*fSp)_jnvW!h5oRwbI5Bz6IQWZ=F#ey!$+vJ#SD8
ze5|tEQgqiDd2ehLG$VG1uzsEgeIjn5)*dOF+!Yb93pV-NSj*o67oI#Z|6G<6(U5(o
ztZWz&JJ8t(Tm<u+N44Y1-ql^LKmVj(_1!NeX)J%Ff+H_%Z)BUll3x+jr=N@JrtnB7
zfU|Dndnv`ckLQNS-q<d|aH4mL3r2rxN=sa5X<3!E8NXWW&2=b<hrU)-RW;aL>JuNn
zR=qcPLEI1=&3mA0DU(IHCt8&rR8&>%Bd%Cp*$C^E2UXhPNV*CC6RKi*X#f8BZwAq@
z0Zq&aa%B`mOk7+!*k156Z8{XORKYSTO3(YJdLI6-c}55W3t#+~shI7u$xvvH`f*J~
z?b;!8IPA$K34<oA(Q6zjFE8XQyI+0yNN)jMTBD~eymRwrM}DW)Xl18!>zFNkfTHG|
zfM$j8w4&$B_jSyV$pqh<oT^CfwUGE!RC=I9h(e2KCpB=O9~kZNFYIL>^bSgWK$|;;
z?axvESX$b6vqg*G9Rl#OmSeyW9#&4g^C?=07{b;Mnk=j4MoEb*YAznkd|Y6Mj~*50
zvYgN7*7$YE!J*Ud-ZNE!u5<g{KE3t<ttg9@yO<pqF1*X!Fdt;tT}|IQu+rlu)DYdW
zU4`-|OyG8Q!vVZb$0@6PW!tTnEP1?ERa<2(yI!P|JqQ=?6Ze^^ews37N#-AL?4qu~
z^DEV_-<;^(p8Q0NO@l{#hSQN9C9SS@Gq|ve(yWe(QSbQ0@?=O3HC@qNSqL0}X8jHw
z#;vVo!mnSy9-Ut{)n+w2bOk@;cE7ybUf8fqr917Wn1d!8%J8FH0*EV{y0JvsiH7Ng
z3;%)`rNGbo6wZgBC%N;$T;@8>5zkndj2WM5&-)jD1n;|WI(GbK`tXWhO?BbEMIo~=
z@X|<hS4uZPZk(>YxutG*jC@Wu-<kt`?A|~eiq;%7x2F2{J*!H^q!lyy1Wi}fJ#`Jb
z-ETngI@{n^K*dkgJ*1Gf<)hg_w-p4x@Ob+f9le8tr*8Y)9YW&xs>*;E)gI&_dUR!3
zUOfv7%f~9&l<GZp>8{S*$5cuj`So*QU+<ieqPW{Rxbee-L04>HCJvsA_={@%&CMY2
z{$mfq*+aRMzAFM(>+hGK`SYe>=v?*gNAxcB?;F4O@4xF+=XQTrX;Il0uS_@p0Ys;A
zvW?ahdk!;H_U!_trDtXYYv`IinX5m3^9N(Xj?_&~_rIc2X}Ssn7OcjUb!K;p41aO%
zW4fJgL1M|Sww25FIOx(kdaz>2lP5=H0)IGO>E<;@OG`_*6sEb??@gQOY~A9<chv@~
z!$vzjj{CDMOH10(y3c2$_tv{VI@SdHl$A`UXVmg?{S!6Y&OTw@wGy$X<LeyVl|RYp
zUFdDT^5w`^59`j2yixb`(0))Cf?xn~;9z{JYQMi_vX+yCvi5%Tu6?E23C0>Rts9G0
zZs3;rSVd&-dwFh`+FU^C;!DT=H3a{+An3FAe<gZ3?}Z6XbM!HhomJkh+S$52FF$|t
zs6Tq#{D<{doy<Xzl$2z2>6$fi<5wRr7<$7gkw~dW-&}07Wgtce(NQAI^&nQodJm+v
zw-pt$qmA%jQUK46x(0x7X~}}Gbl~902QS4|djTiHrOTI#3NedcAdoNjtg5Vxq{J5$
z7$U!F{WZJF4f+)|HGUXqi_=-i{`?9(;{!18r|kH#1`X9H{aK2`T(_M&H%FcR^6K)U
z6w`Z#tCr=9#)_}62XUsP26fmDJP5x68d@JRXC+3FTU<FO8|)n9x@c#_WpUx@Cph!O
za4GQUCc&lpb_x1FJn$0xcC?2PK%O{)mL!A>9ZUNwPfp%EiXmDOyEE6Ois}NLxWkeC
zvMl8;IKFo@O#N&@OAb6edE&%=aBUS^2fJU!w#@ol-HX(Qx1K)jheol7fF?WLgzMa3
zEEyaUk}I{8KADD}v$QudazEU0#9h#t_OrOCk>fgCr;X?z_kb_WjS8@FrjPkxZ7W6^
zJw;d_8HvYsI*#ilK0|%w<wlrk-woIH^YiQb<{9lnc8u83S|%k^wf#$Ju37}*<!dl|
zh2BK<vECKm@tvD$*%{IZJ_N^E<VQR=QS_HeHYB9>IcsUyS60^bRBs5Ml!YEX`604(
zOVX)M!>heOm|J#P^&>&%`5Jgt-jQ0~^Mr8wq`CF99Wmd6)~7#l<%_IpVr;CP(}|?j
zddv5x;t01wDc!@+!6WirU0mMoZ#E6r{tNVfZ@rj%5MK9#82}@GUNm!e*}7GqdckQ2
z!A~+{tbuiDEm3^)smX7D>rIOdpW!u>IP2#cG$IfefE}}Rw3eOH$%aA(a;EF96A`-Y
z`Sa(RKMK&dnohT_6!=ni5t6}S>rsgPn-9v)+OcB_DaARg@TN5&M%Tc=K>tdvf9k<m
z@O$$cXY1<r9o1Rr%5!%WI%X-(&rXE>><v+&wM@3$=7!JWrZM$-7ZD2MOi#{Z7RT=~
z(keR`eX?c7^yx#e%O`7<{Uf#iw>AEc-1a58|Ne2r?#M^8UFrk0+C%jcDK=&jx))N{
z)h|N{JWcNf^p$9#k^LyY=SI_w1iFJlx<BeXGP>7b?FDCdI}@y}GS>~@H6K24!XL_R
z1@cSC$JIV5G;luLyK)7_`EgKDs!_pxg(|Xde9FDsxA)3?Tu_|CuQP~t<rfN<+xrQp
zw;*_C$p@<ikuv|0&!&6+a`O#d^!|9?CI6bot|O>RxZs4N#<#TTJZRS5<mi+XSD$5b
zi8=yRNe;~&$8g27Rw>@5nvytf_fJvv=ckKL6)xMDA229i>IWQOUFI2jD6qGc9^~FS
zkU8xeB$xMwSW;h-X`J{)i1&GUe_K8|OoQw@Zi^NcT+ibUB~XAA2ELL{IY~=K=-vZo
z+L1A&bA|~@qN$>Hpt8ly?sI>RK4d^QX7F}vS3xfbmehI4k|k&a$xA0T3l-Vah7kus
zP2q39tElKSY*>V3<6k%Ijs%chO~0?g76)x;ae8j5=%mK<?@Py4M`fvc+zdkzrq9_I
z&SN}6Tq|xx&4yu9w(LLUFOPXSy0y5UmWmn;^EU`Fc8-op<1p$Dc09cgrdUPmN+ShF
z9kY()m6W<kK&&1_Z1mTAFTE1lF}%7CC}eqTMo0mb>^t1jTQ~itXpoYX)qhO%>vw|K
z(;J_cR?RZJZB!MqHDedZe^wjPNMC^i9|{3O|M(Y^2%RB3pH31hSFXJN`0=6-+D~7<
zKKV5%F>zBr{}!phAA{+8D4OB{xZrszr1kRb3@*JX*iYs3^~%EKMtY_Rr&HTHXhT?1
znL!p-gHd}gv3}Kr8m=FthGb&~t~$A?+tk|`UnHT}vqn@0BY!RG%bW&!&pvby*^AFR
z7ufD(W7hhmvT`pcp@T%WXPYE!m#}xe(;0uM`<Ni}H#*A~X14eANDT`cNDHh%e^a$(
zPR6BHcYtyD;F1^Q(5vsy4Ie&v@_?BI<KJA|Xq&J~)nS~P4pP1h35a%?K@#o1txfsr
zctiBDwss%EkoB%GWw~SWM)Z#LH#$0I_~x&#CZDy<SzfbqJ;VV`QlXzNh4{+9Jd`@T
zX^D!KR$m~0xc<Pss9iSz_Nuogq;!933Ha52<4jNgU;_4RiaQAwX>^f80!!|m@~^V@
zzc+l2`wDrBf77dMp4YONQsz?l$_$01_J(INKe7Z{oKlqPsPi-E-A>cI7Grn;+E~=M
zvh{dQn!I#lZ1C_b*X>5QRW%!Z^2rEeXxEeJoh8PM8KbFxluE$rf?WrSzYa&fE7CT2
zc)*PW(GM;ES-KLGExxn~9`hkw4fA6j#JhhyW5No1r*gA(ciVj7xw~=@$>ugFt;4sR
zgA|;Al7J^d!ER!BV7$SEDO17<o$r{Cf((uX&=O3A{f@jX8Ud@WlHOfA-&-~7TNu%9
zC>@^iGX6a!C95kvC4{dt*(sEdnx&TrdXH;`<d&lipm(8>yzCJ_b1>C6`g!H#<i4pU
zDZ?r*VCI*Tv$JcIRgaPC>LGJuRMpj``eogn&9_#%xrYWT9{kePJKvwChZUlG@QOc(
zgp;lKYnPR_TWSf)3nN8!`5;6U!Cn3R#{je3Qz3S%SI=qWQu$LAiwfGlfrL2}Oj5q8
z5wMC*BUZGn{OOCDe2HdP6U)7KdMHaxhs(G4d`ulU4uP)K5=pf`<erKoY6R^oGUTXk
z5?O9_9SIx4C$LZqDEUQC*iC9c=PUF92xd>$BT*g7T9}nU6BeHpny7kKklD1(A+89*
zHzPJN(GTlE@pgYfEFt0d&5nEk;>Ua5Yl@E5<xPrUEj@VyNtr%<1mVsiaKDCTn)SL8
zH3tT+B_BFHiI-wVth{|RPln+|mHQ3&<IUC~iBaP33zG!&O2MufqVh9cx!Sd`4&RFq
zx5I>olv<!`vO$D!Tf2Q5K6vopM}Qv9aFZ8Bk00-Wa0~c#Wn-BR9j6((2gMlw6+b_}
z5RCusp!mPh3i9ysitbO}_d+p;Cpfqujf0`RwZ`1%N3h!Bv)948ALS3A7*%#(DO<qQ
zF_$l;69TK_XBxInr@?;tm+homoJ~F9{v{OKO5wIsRzDbc{ALAkgu5We(V3BDmlZX6
zYfWF!{~;pD-M#@HP2c`XlZbG6`4&<OqTP<!BTyC@=1YJA;kgQT$1fKI1z+_WbWSJb
zkHLh0f2II@s|m)yQNQSW0rQ-0@SvS4i*ch8A!WqVtGsvb-Ypt{UF$0i&6Ag(Osk%$
z&mrn6gskgee!;astoc>md-zbez_1pZoo>G~8=9ng=S>jn3M_@1trrli-_hf=7i*5h
zaCP-R$f~!P9TFos@2?=IP*_zx#J#8Im#Nja@r_-pAB}*3j6%y30_eqy7oR(hr;%5%
z+dC6wZ$eB;(WuK;_fzjU!q~}4dBdA5!^g5e2F)7i?XL$zx`Lo2-QNkZ=KOQlW$ycZ
zegA?MLA*G~Z=J^oz|ef(AWYwL1G{vlN=m^vYaFgEHM2n50lf4)$1CT4mvIo`LRh40
z+T1za>c8cIKq+~JJ!KL!|A}z%8l6Y(4KW=a=rc{~xo78?=2jer1MA3}8lDQBqlF%2
zuxy!EaZI-vOWCge?_2;w^O%8ha{CdUBjJE$zdGm_LuID~7wzSwMYrOFyF=^M@g^0y
z_dO+QokDqF(X>mrF=D{jH5y0L*q46g@LO^^yR^UDLWlCjVRlz`vW&8nGlmCIIm4j#
z^VK*X7x(u+-LiqblL(_vKWW3!J-ltD^K9YMz4y&J*XH<1CyY{3+C0i`UNivq(ynGr
zszLP$!$x%GQ+y8tAZ^Z@?OilwUW4TPzNk8Jfu<7eGEbUJSN89lTKfF?H`PuO*tx=6
ze?XQ=_D?8%@nT`16E!50k)#F;@P#`@1MWcBxkcseQhvJ!qLz()>uB}FKAvA=7ET$L
zb0pPo7D;Kv#*OopvY*B;>?ArHrmBc;rI-<yB%U5Ra3P{ND$a5u$3YLn{l|`SOqs}|
zTGwDqmgrp{J^D}L#ZAPKkM<qmrz+J4jyPCZxl#xT!iLAFAq}^0cKoZ94*fJVG_Di;
zg>e)q<Q9jWI4LntZ)DJI-}geb#9AQ)R>8M}ltusf{sRYY12--(k{Y*S(J#Rgsr{`w
z7W4#yn?(D1*GRqZVl0C(=@!}Cn?_e?8&{Aa_0ows=R{ioX6;Bi9b6(*2V(6LEz&S>
zd+^aw0eM40-MW5VLVOQmiC{se9PB6oyh-R8DB1)iJA)Ya96sEKR&Jr)ZaEvBkYIh@
z;2x~nZSbHVdBvCmt_@En57A&8U=?}fG}ugZQq!jd>)}dC(z#0)M)dTQm$#rhfAG|8
zf1n-D#RWrr)gV}L<gZhTq0Zj9bLTpb+JzhW@RGT$ZN!-UX2*pKjpn@TJW7pCl?KeB
zJE@b8Ag8-#jVdLpc*TRYU3MQ$OHc3H`YS#uNr+9fhUkJo>g(&@e*Szwga%^2#<+2R
zrKF5Yv`jt-l_ZQiBJ-dOEmN3lqxHZ~7q*e79#?gVGMK?b5@P-Y>2HY4B%E_;-HohY
z(7A!Brn=)4AT(X^@}RfQcpR;)tRi_vcOE{RgGEKyl(-<9`b8(uv`K}k`h7?MzZk-M
z4~#{p_)AWS-d`I1WYwHnhe%1ydRfaji?FhyqJ=e6gZLMO@Nce>O&$uLzO$dHsi~M+
zAhhpu=K=`KR}Mb_2nf29BEW(2S#o+#L?9*~2XcxqMTz+U;P;};S#;Zj-sTeSm@Ckk
zm#bR+7>B*oo!B#H1X>ks!*o)Pv%lRveccP`(KhKbIck9s5yG}4>H_QmP2WGt><;>=
zR~$8Pm-WRBL&UeEE4rhyb$Sh8S)iR{oy!z_@27aKBA#{PZAcL8^~4+Q*>fBt0LcVh
z#UaJ+ihrVg*v`fw5s%w`d;L0Y@Oj7xX?vwP4*8=d4%1tpVpH+B*z89_rn2Ii^o)c=
z>(PES`SDUoPxF;^Kac)7&;C#!-Mk;Iw+fp-=mx1NT$Uc%`0~M*ZEvb}<djuy4G7<S
z{+|2EP%7}G3l}sDi*e!w$9CMj4)H@H$Q*Wd439v#m*`wvNE?G}-@Y+iawlrIDW1PB
zK`feI-L{?(Ioi4+^>+R+uXR~E6sikwB3a-MuK2ra@#D>HJlf+hS5Aka3C}U!!)V8j
z=oAKfF_U6>BFkrAy?SNNo<N_!{~p+S3XX_rqvqt<po<q9jVe@@T}jVwsZk3UFn&(Z
z7S1m23KIa*#1DMP_-&t`pJv**DYh$B{zYEecbiE=cUlnA25PR{4_t`@X(iI3o!5S=
zq{M;(a)FD>1)4(>$xj0#jEJ8Z9NyfDb9|7yp<|Qz(erlf*b_j0t!C=vAwJx9w9_Hl
zE;9)x&%gwIWn`jNEfTAt=vU|1W+###ow)j8;~fvq3sH?lQHnQDFw0xZFPVb5-2wpi
z488Ti2Gu6Uc3#`^5Xwnq`0(qOIyl<dMXD}78;?`V3ZfNv(V{?k{Vk~I6=|2K9!Jw{
zKvgvUYJrrPb}1ooSk76kXJ-kC7?qS@HGJf2ijI+x^R3T~nQ)hc5`KsZ!1VH__nKer
zhAg4s!#sAL?B%Oh^R3s*UVk|vcI?c9`}b=kT`9sz;WjpMV@YBN(_@8$$8bm3+pwi2
zdS>%{r4`j{`d_V&ELbUq;x9LNv~%0L@bBL{R#mC>$%~!&SI1P0B|(k$meIaO)D)w`
zrm8HZHJg<Fm@uU{{an`zKqCL7am%l6Gnw)GR~mV}y|}_|>8WK$jue~Kd#EqZx}?83
z-}9VI!@yA)wBaUD{?u^ovMe0wypM!PSqMUz_oRzU;m^@2x!FxtX5JS4PZb1?-1nkg
zbqoZ>q@#r=r-sJg{+pTj0}EtRl4?hVK(ZtOWX7KLA`3IHI)N`q4YuTp7t?$**Ch~}
zvb4svH18Fyi%SOIYVb%~b#Haub4Sxt(-MGz12(^S`I08Gb~A3C^mI!zoXiV(8s?BW
zdKO2!*bPC*dqgr(m~JwriP`%hO7n-R&6T}K)gosR9CN1X1VJ{{UhhMyW8ryv;ByUr
zL2?x1cDtYW?e^l#b=GarB0UzH?#x@M=?oe##YgDv!P37-5@QmD@X;9^dXBcbFq1p-
zjEFUX^<HkRnNCHz{L4o5a{P*5V$dQy9|!bGxF}sZcfLJ2@8LsJ9+w&HOR!>G<x$2&
z1`M0A9486`2CJ6GzxkO(q*b(fkWCD4p;kK3`5Q6w#L0Za`7&K?l?*L{63r8$$WnKn
zJ$u&F9{i|PHiB^#)gVH#;W?lo4-#(;Dx2#;m8F+1@JK`LLh>ucdJR70eBz(cg^lE^
z3>x#bH`;w?M6DAaa}D*G>#dWh(z(YC0&VEnGpCf%%ntp^Rxx!cy&XHUPxUoSq>{6_
zVE30~U*$+lAaZ3Y-26o7oKf0uxUXad)1!K=RnwE=TGaC@<KwOX+eHLG>6qv8`^%Rv
zC*QUsy}n|e&WSf3jmx5^RPgjBFfCfazj?hBR~5B;$@fz<6)ptf?{8df%D?`EWG)ka
z55oicr)BKC5NVmOJx>h@2Ai)N91PzmyRqb<V}2#|d)Cv;MP_IM--&LFfz~NTx#Ez|
z9NhY0aPi~XT;$#wCcaq*t=XhdL4mQDXjno=rGg>s^}+4GC+})<Sw&Nig+hWS+ttIS
zxu<gAR1BvuVJ7f<yD|08as#uBj12LY*q^oi!O5wX#g8l2;!G)LX6qx2TN#XdGMwM&
z>^j7fY=53=Sive}{N>!+x1G3lHq7SY7&$&Xi$*ZYZF5#79L^cW&)<Pap?6;MxN!@O
zD&h-drF(H@GiVkeDk!<DW0lZoT|OWJqUR%e+o6U!Dj+q4!hvv+F=r-SI6)8d!h#|H
zMjwM-3e4}`y|O{oFfk=Rrc0e-!s7Ewt<iv5*vg;<GD*t^HAI7FJ_28uB({hdip%5O
zx=0kPVC6}k&&A@$^AhR`j*W|EqsR0L?^3?pS`Jb|qNch1`#XWRqCAhj(i^@lC@d){
zDR&&2_&reWrMIO)D<>Jr{8;{sgYks+$CER>mKXn4l(q_6I++Ot9&Bly^W*mI3+eSc
z%!~>e>nwD<3RT?|CP3Q!`26DWI{KeZid%`e5l@R4(c9cRM625$a*>pqiitK=<HznS
zjF`XJ^uA*mrw+HOZ$lj!F>T&yXr)JR%j&0QWF9#?Cve2<u7Cz3SmZU&FPsKW^&K+g
zTrvqNwr)m*RoF4Ts;Xe~iX@kxnjnEiG#hSdYuRczKj}(4-IsNXznJ#ouY%(=gJv6#
z3MLc8^5VF7mbB)bvrwJX>4Gtbjbd)P;rxwG8ta~Gw6X4E@j=xMeD#T~uN`2w629)b
zOxa%F*k}nA8qkmx%ER^NAlVnWAE%9np;6}u#V0K8>>7Zdo%l76Q<_MCiK@7$cUspc
z-LY^eLZ&G=dh8bm4hvDwhBkKJ@i)e(^i?s_>(HSCwfJFAo~v77Fz&z~42Zw>eU7ZN
z@1aA7=u=7Vt<y9UL20LR1kaS&Q-=L4iaCo(u;Qn=$70E1-evtw*rHGWtSw8X`DzUz
zqVAN}%hJ+BzV=x2g#i!v+WLNd7xE=4O!7!8B{{#_HZn!Rj7rDjT-CQkY<9_DyN`G<
zdwAB~37?$C<|7&Lx=GcxSsvWzc*-nsgu)nV>s|GbewReESU)k{Sl$;ORe5<7m<wP1
z!m#N(Ghb{}DuAU0Jsq^*{gmW*d6DBD8gvfuM|Y<xk7ja<8D25tr%k7r!fJ^Ml0n2V
zELdccL1S1cHc0Q*TH0PdK`&%f%YFL%`7A$S4Htai)NN<M?=piczJ5JVko?4o2&3<t
z-5wuNvoz%$nAzFcdFQ*q>1J$rZNm#uwaxz3^H6`a#m0<tSTJ+u?!cJ?B1l99g@t1a
zHf%Cy%rXI<uFLrx5#w*irZE;+A-P|;GzLQ@aG3{_hHWlyihZ$B4c>=|2*<O3)f+Kg
zzR{=5Wcm9K=0}eKN&NbaPGnbNUi0L;$H$)m48<W+uLZyrNYAw=<E^Fg3)5WX=gExv
z{u|=@MUYZ!U?D=O>*+ulTD#G_5L!6_;<T>abR&nQOV57d616axy!_W|f=Mc)Oc$mq
zEU-zm&-F`O82vZ2OYqz6l6+OXAb0sX)@pl{V)#3piePedEHO0yMKYxxFJ)WMo0%$D
z^6KmAiin@;E$c6fpDuP+#M`t@<A;z|=kecS^eOe0w(<PCYZ!x@RgnB|Sem&@Y*&>i
z81-|=#*MEooj!K#Sm)ru<wh;W0n+ml=}fa^OZ9<mpVzDnqW%)2NIx<<M9Erqrr$A^
zF{iA9%qhxkPZ?{U!)Qn}q*&gblF=?_6Ft4XDdEq1Ua@aHG=2V3u^1}8+196Er5R@@
z0~OFgEF5JD>}dZyu<~+peyr=+dqg)%^s{(|l~L9<xwstWY`y3bOLSgLJA1KCpx%y?
zjpK;2bAl2TYaP~<S69aaR<fTCCc01jdS~o(k2cy_&-0{IVCDG<3&3(K9UH$Z#Y4R*
zwL~@CR`@vT$t0B-YkMr4d1^2f6Ejf8nuKdFEPkx2MbaKWwd}~LQGHh4J8D8D9eU)_
zyu?DK^idyv{i4=m*>!f^q!kVh(P9t{9)^B}f#%|>kyxE+%@#Msb=Ep#;{yz|kB2r0
zJ}VhxPgJ)MegTH)7>1D+_;jmE{LfX0aXe`~YZ%-meYQ{YeX7m_4f}Y5iaTCHzn5mY
zrxlGci!sP*yLRmw4Bkj;CIbR&5t&9-O6oNDHHm@c#H^DG+tgK6@2>kA`bCYO#%Q*Q
zKzsw-$Hg@CY~|PZ?A==pt#vn8=@9KO?`vuj`O}#@?U~|gUfX#wb7R?gyr4BCpDP}%
znY67Z;ao_fnpK5>_HKwV3VrywIdt@riA5<$+fH0~lGJ06Bhhe-!0I$!5LqH#y?$Ln
z|CdFAS#H#zO3-|+`Y5BIb!$r!R~<-MIjH!tLv`9X-?o56N}DTgby0W?Gw@t=>DEn6
zUS1a}dCjB9zr<mWZ}<XpyB1r;z$shek?mtJ3iFFfE`2mG8}(6^SSuu4ETjoMUlk3F
z1=K_qZf=+As|u4lc9D#SzFzYpHCDfBF30C7i71^#DCd}xL+XA6(g`6UP3C%1d8{dl
z^2wc4@R4Edff{f5Jw?Z=8l|{o9;fHSW0cTvMeS=uyVzqWI$3GyD98%(#C$&Qrmb5o
zC_SDKAM_MgRX#kqgmm+iK8W;H_xi18HY?%wDcBb<JBmRW@st6o=JAJtiAU^yq{Hzp
z<_Co;_y_L*v2FM{kcg4{at4PtOk;&N2JA>cva+_e6)vAiL8a=~J}$85DhTv~qwHwi
z3r5|P@D7el-n?3Tn+2zJMS4Y~JzAY}4`38_tt)MJz6S|`zGBl%z&73FiX^wp-|Yxf
z=~y+GeZLU7YcZ+?uS-!ZrSr{px8x1~0P@zbc<eC`?>h-*KJ3+m#EcoOfAmvcFq5)N
zpn<Fg@i#;<8gtw7)Pc64d^)SXJ3o(uv^H`v#>Dg>FH3!e`Hq$>hsK>R%9ew+Epj|P
z!~rE)k{6O;$ZWOq`m357pwanGa?KI(j+wFySCW;Ji|6?as_H4;F14aX{DKjeuUuhk
zpAoOs^xNfw!)ClO_>j7CM$Ox|k>qxAz<h8(>fLeHL1baeik&-l$vWCvFy3(j(|Ppg
z%&CFBzk)HI!Q3Mm{hU^~?sH-!+0XT>*XTCmTri@#0CD&cc#4ZZQh-j`{NVtDGULRJ
z!%oO_+r?l8s+n|;#nUJ8@4G&1P4x1ItsLh$X`b>3O`Kjtg$P_aXQ;W<czr;<ImN4V
zTgwU5HEcU7A+IAzj2gn=Crp!%I5d@HL=Ntq++2NH2@(mX-oLl2PB$?h0-z9|hLUg*
z#?FbYgNXQu5kC$Te&dz~xCPft%Q6U*Umek7?%e$TEn3dSdOXP@azzFL0DM{Db1yn?
z79r&2wO82wZV8=tL^)6)CHE)LH3|JFNPWiYlJm=!5F=?vYm23nufhHer-B_mm_okt
z)2FpRr@%2k)mHLo-+uWyYX;W-8rqzCV&)XW0fSY+%2ReVT@bVa2YFzX16V*Sdl4tZ
zkkg;pw3Rum5tA4^$OC!CWl5(>XK?Ur5oCquUL7&`EaBMf^@F4TW~ak>$M}b!0wR@3
z&;c(lz<ihc@GKAV81Kw#UJYC{8aJvKp5}Ofp}_~7DYW9`_5HH8n9}BigSx>O3CXao
zpM=3|e&OoRJt^4()n77iCaWMX??XnT*PAzQTsKs(oKdS~!iHDRqb@PTVb#Rn)Ht@K
zV@Hk3J6i^GrtbL_qU8Lz^I)HT0Z6omUi>7h)ayn-n#di(WL#G61|(JCAmlygCtORP
zk16SZ4u3X$@{4<t_nd|WE3G&hS5_CgWBBg3u@*fk4s-7y2Q`btmBid_-VXL&qxz4w
z>FZd=IUCf5!(ff;QW}{x@<LQCYGOUiDq6MaUUD$zX35Ad+6A}_a2K8so6XCzcfB}5
zJafqAi-r*_`_>)<{T=tn>)5g5^6HA(+Ko@Ea0vCwKLTuU5N%q^-KI^O_G;Z%lF5>3
z+t;MfFqKwCGkj|3Pye>%JGsQuyhzpou9QRRZc7ae_9y81O6OStiys5^?CY9h7G$ik
zaA<|no%qx?%dJS1V2cPFw%TzoN=w7QT8?7*qF<im@D(sUS}$I_u-?*Z4f7ASYQAjz
z^7`tt(h=7tV5ME3Ip3?k(l=xFjwIYn`EFlCw)o;A5i^2|tohPw?wmO`Qx)ExD@F;f
zs4ZmNTj@Ja#_a^?mppg>(9qC~TWmL!kWd)@?qwbSloeH#bO3E{!i{mf;R0FHAU4hY
z<+`t`33u4Qdqi#MjT7*LT3poriQ&_d&f3Ho4|otUqwJE=3<(7vvG*)de#KIhn?Y4N
z)3?2sFiM&yCTe9kq#k{4u~HC7<~2rlxLOZXr(}OV-=Ok^-D*YX{Q=wX4QWBi`{!d6
zxD)@Bc_-1N8zn2L&%AHL`s2HnZ7gm*7KF_pfxBR|!=`OLRY;G;X@1MjjT}>Gnct&V
zuT14rd^r^wA>Qb~Axxa=^%CtyfAg79g_g^ZGU|<5bI-5b3>fXN8k4sQ(jafsu8`sO
zSBY!XACVyUL7$kHv2OADf-o}v1pH|yQ74F{lcp}7o^-Yb4>)l46ZdKHfxa`>(LvC{
zYS@6E1e6DfKV!rona7;NfNg@vsF}~xow;T+U4yunUN|Xbs{Uueu!QRf7Rg8`3=*OA
zC)A+y;6+h-Jwl-HF6+*ttuP}sp6=trDZf5XNV$0NAMi-55S(8TWB#+m&8*82%oQOx
zi22aUl<|$RFICv?kTTe^{7Hj-t&-^5akxEvx`}#frlhQ@+`Uo3hNSTePOr$v4@yNQ
zD83}UmL%Q69+Lyx_=g|dYK1iiIh_OVkpM;2<L#h6d6HY+)1SXRZyMCxemd#Bhp{u?
zbNo?p2a6s|Rd+9(K5d#vrP0^GQ2yn<CzlS0U=YuMdnpmKZR&pMj0b;>{bEV}a+o}2
ziVfa0Lzk~2TGBf*=PGx<$HB|)4RO2zyPw-x0;5L}J^n_DO2A5s;a`YZ`!{{K@0>37
z$*Vr>AXdK|a$Oz-GQf6u^R5&}_wD-4keL1(q<5mP0Bjz7&hr*X<KZK5z{P(yN(GsB
zkeHcTz*1-;^MRitL=ALwu0Jz@YnMp1(c|Y;;5aw`K<1e<XI@k&By}`Up=VFiXj;vS
zv@?wFSy7k6K4V>&E3G^LPAiWaOp<~wd=_D(v%`{WJ2G+$M{bL~%PF*;Hs&%_;H|T5
zl(N=ZW46tpvPgS2F;?U*7GIyDmRFd5&L$Hukybg{==S;jpZ>v6WMk`TUKAVw?@3!W
zLyvWNv$wHmpnXnNN>WjtBF~TE#s(J{b#W3nv@-pS$%&(OKIVq}!Q9(JA%P7mdG*A}
z(Wc%eqmi5*l%hQ7RDAhzj)uAcUwG@Iv>O|$KJ_?RO9Rmo*mf<W=R<KTvbo{p+sw1R
z;-O=}M=98I;3o-}zQk#2bH01g;Im@ep1l}jvljd*R(cw2;503O;3;8<fxw8kTJi$S
z`C?me**-WnZZ@dk35h7cl~p#r?ByP^*5}WEUWbH)+pWVa5tIlDp}<ecVur!U4x@Ca
z4GIRB1<_P_P+ztjvd3BBD4ODJ_tP^95+#C`e2yt5)+IrC`JSp^t((SCyo=69_x?8i
ztWY9&aXw7l!^@OPZS2a+(Ej^*|Mq=*_ge8T1kC`GGQJcB?irxHe8^^0?9sN_ubk*k
zUb4m5P?(D;^ezWVFwQofx2#O%=X*-+XMhS&?&#Z;HCzy;e(cF@P^#K#8)G1qmKf~(
z#UuUb^V(+WDe2E_dR*r((+<R3tzO3Q14<ma_!~I6{K|a4wO=XT=IyYV+}NxtukzkP
zwPUx=ot=PFbEfip5|>|VF=_=B!~>w`?8LHBxA@?nJ$j5wid+g^+JD0Z>6e`75-8lX
z#&&o*rb)M{?--NNp&)T)>9>gAzw$p%t>=|}|MqUS+8hOe*dUiDmZDC<b?3;A?8r9Q
zmlQnnSUnml$~{n%GBY*>uGVyXs806(QC&0}4O*+^S;C^ZY>SJQ9ohANURRd$zeTU=
zwxAkFfAvIji|k$Q8DO!=w|1;Yk4}rX{ahJBSx}IhtN5l}+@4-wq!M6bfM_LWWKbOp
zMKD!ak*D>95~0U18+T4Cwed3|z3mi;fmX}~XY>@;fK><H<1al1;HeKiu{68+!yt#r
znwn++v~fuq174DUMZp9kX|Q8Qr%r1XwV3Xm#G|{it2tFcg=xPwj7o=#XqneQ1N&1e
zQ{@B~s>v33beRc)lni)Jq4^2S;@ewuC^I57jy^7Kbuxi1%d3aK_|C)2d(kN9dBkG%
zQ&*vg5|>;&U&IvcEMR3zam{^raWev;q9Gy5z-0q6W18Mwa!3*p=!(lbU2g}NrX=pO
zGtSZ;GkiM>Ll>x|7!!*uzi4Bbh}#h}Y|lxo${{oS>jkjMD26T%_(2Rldh+D5@Cvrr
zO?^?S)7D%|*rw>pHIli&^sIQA1H%+|AA-Ij2aG*ANnPC-Py7U<9Yctin6c$*8w}1F
zEbd}<@s9zTPEb~JXoa+b+E26Bo1e5RV#?OLPF{_#x99!YhnKwj2od~4f6v}xZ-LOY
zZq_QpV~B5`PN^y8;ws)k3i{_iS?|iT{kX})d%zqn<I$ABdMk?MSL2h+`-QT2lm?Kp
zsJlrj=XfWHfGY1c+N~a_-p)0BZgMAWWeLBb8rJ6-)26oIs;H=QEJ$Qk%QdY0PfpM7
zCU#A_&hLDENd>BaR+6;bRrxjcqD&Nv7b^uN&{FI5JBb$+w(QZ$wQG}bsl-!v2gSf$
z#X}1THI9=V2{ijiqjPDt$5nKp^E~hg8{aHN5YJTp8yW2Rr4HBmA?6TDKv^pYgw_2W
z_%8F=?dl#|b=*quKuQt2?9GS6JH}Aj#6iX-k=!<I-~NnQ9-@#B7&^UF{c?R$a<*TZ
zr2VE7uv>7D8`DW1i3|p($H`jj&Fj~%)qhg@#q0V=PGL-N%$b6Lbix!-PmaN_gpt$=
zU-2UpL;%GMl~JSSP|kn^kLj1tj{QmO+$~tC`H|vC)h0cj5%8<c_qoO4{lu4&`hAr~
zOi5!=82@)1<Ld_cK8)~eNuU`np5j9gu~)FZh(99y3^M$}`7Gh|NQb|Kn`D3L2^9AY
z;d38`O)wI{0f_t_phKWk)6jTiaCRMB3Dsr>aNFVFrKaX)XGB6&fB=P$%)MF+4CDTe
zwK!*E0c3#rh=i8h%1afjImN2Yl`RQ?YlV#)Yb`xr+Y3l0Sk)g)?&C>Y!Vg#C<7C#m
zh*{7@Q~^N{90AXo2h5*e*f}^Fbn%^{dJVWOD27)jio7*t+1J{CBzuYSL6EOFCZY(p
zgDPM_WNI&eg25GxS@imi8<XjVTH^J)?P6}>H6*F}A3riKdChY>dY0EPQ*>^?f<47n
zpwMQUDiF#0PoI(m!@wEL+;sc;%UjUKjJ$h9tWY#0vJ@d~oCV~aaZ@M2O}IK>F5S>S
zSWp=2HrOrf@Iq?swfpLx-aR?>VqHtl-R4QVFFs3?JXCnQ@%5iGZ*l};fW%G!M8Q=(
zJT*NDo%a*()$icJ#mE^J@URR{D#*{DOM#fS?LRB3cTWoJ!Hqk<^-F1qLV-eokg)yp
zx7NOSEf;FjE@}t5cGfKX#RC~PNX%}t^ypzidK~v4eDY)S7=ysjy!T(fZXoiXqOqqY
z<YI^GR|JgwWm1K*Y*<BcmipoqgjDjhXAoKse$L>zwf6L&i@=0rnC>L@`dBP-a*BU(
zMRarxnoZP~32&rgS?wUCu!<DYq|NuGcn2LOR)I6hKewV}KW5)yXuQK+sF00|u-j&h
z6SP=$4yBWSxhIod?#WF>KI=b}nAWs*hzxnBqW=fn9gzi;AyIYEzgiGoC!i8mpA`%3
zvI>Qnv&X}$)WT`wM5#9vBnqW+Ca%#H)RK1$G`>VDPnrvqm&IH3{L<XcP!fOJBz{I1
zk!NM*nBl{RziB=+Wa?^y!~*Zl_($&JF<YIP)5`wo@{_HET1v?&*NUskUcPM2u)RuL
z$*M22<vW{j`qP}IGUzdmOJp<cB5+ZKvhdAhl0mCYYj49iT8*1CY;RR@CrXaxa7vP=
zmyvEvL?IE2JnhqjS<-~jF5^*&)qBWyv-3q>P0P7;NT=nFs_QN`x~_J`h5JU;^?xGn
z#?<G}{@_?xPyJ_^`pk~&pr8-mx3^p&G9KgDor*4@s#(XX&fAsURNga0Wl>&KcA@Iu
zhGuX$Kg1f(`fU*wi~p3A6zRu8pqG69JQ@mstu4tw9?LiVc2By8CrMC#(QVM}VHSf;
z)M2YZ#}AzH-#nX6TXYf{Y!W4T-Qrt9l+IwDdfL3RN3pe>6CybG=S<j|L16S}JOlwo
z3vS#P@g|$2EDGQ#hycuiV|?U|2T+hdW}W*CPRf`!p8VKn008Km@c8Dc`^TecpS*kP
z)<|pB{S7*!mXm7<`^m7qc`uVm4y7p$`%u_U#fx2&=YR=o=qDidyzO~t=Z+mU@G(HB
zq$5zT%PzUxa8p0Meie!==cYv5@OST4ESx5g(VJ^m*+p?UzN$_WFI!D%MiOP;=%I_Q
zY;k5I;l_W^UUKZYbLV)|arhzguI8A8jyWlwuyCOiwZ5NJl6F_vco%ajLUcTKRHQhD
zSP-$EFhFF;49{17fgLyQBVQ!o8k@6|EV|kva?wqcaxJE;MMLP1C$=c-JN(ak{^x%T
z)~|yZDJY#qTAs87RY0iKOi(fmQnfsPmPHBv(*7WOTG3*ebXeJI{49~CxQL_Y`Mn_1
zL2j>4C!53%^K2SXV9y}@Cj{#Aq~&Vj*4Sy3tz#G~uoWAZb&#8c!ZlvkC$dh60-ES-
zj;l$KJ53z|#Ycbn`nA1uk^~0WNT~=O1VcY$9Lq?x&O|UK2p`5zevaIDhtbU(<|E8K
zRZyWwVbblPadBkgeoD3kc2zAcbIOAqfQuB-e3HsmnNohj<9`hfnrb9m@6DJpY(;5V
z$}`b0THt2{GcD9VaLq?9wIJE4wn!I=<jF+NJ33gfe&I$c`5iwq+E~oH@YFPS^?^#q
zbLRU<%I<jAwHxhMyFQM)ZANOx@3Qlw1NWBsi#c1qy`6Oue=4u-zieF+XmyYWysiKW
zhGyWO%Ia#TqMx*(Z)JifVdxW;RbC69MU5(UPAmT)Xif!@hU&k6Pj~WMn<KcbXWVwh
z=_Z-9c|_^IoOcJ%Alt9sC>7V_xw;G@O=o(<5Jnq|`ia*o$ajH<IU=e!9%7!g?hHMZ
z9f7InE)pb@c98VORHPsf3(eYz9W3UEfSFFqg9~DW9Ek^V3g#q?U#9^C1u#ZkB>OJ-
zt78}Q%bQjS_d;f-p;zHWu*mv1S=M;<77)cr(y{{vB!o}ij4-&1|7L*#PT6&I)1`?~
zd_d7C#z(+Y62yE@;Z*{#*>Y?8JrGR-%gECi_9_db_VNLjuRT~Lei0SxQH38go-ldU
zxVV{58pEk`LZI6LSM|byo*?pX$;C3ywV8)H9Znbi8|tHhRUXu#Pk5<j>sl!SZBkeI
z0+8BhN&T>K=)YIPpey9}Bh*3#L&(9>)K&glJ5kfXX!$Ex5DVo6?N4zk_l3w&L#dJG
z^qJExR&rHJK9J{ySYm&&me<>bbeTW~n->JFkU;WR#m`|lw0}Y3^%Em6LleARFC4(+
zy!%eJ=t>2_!vn7<ZV##%Pf_z!Xt;R8@|-Ycmah99u~cxkWX1tsSd?lG(lz<{<)4oQ
z=P*)m4&?0hhAqXt`G>J}7_x-eFlQ%u%J0B|bf<OPf%jEap-WFI-oanUaEX3O@i08E
z3>JjMz<(+jc_%6$n=*WT12Vpd-L~;T{r}Y!6A-e(m^ej>4p!{NFIX!u1gjqcwgJiv
z7wD(DZrxf!#k{rUyR$$FXYX$NS7lRXB}fLtj-b*m+Q(c!;Y{QHYKsEy-igm;TTMm<
zzX-S}3=CW`#ZME(m-x?riY5OcQvB%N+vC~vu3NMR3vmR*D6cE?Xgs<4{;?4|ceYk`
zA8Sh1D8b@uo@lP(--0t@Ex%*VRg|0>(%>c^$Klqp2CZ274y;lg*6I2pPOiy?`R3+F
zFu}xNPn7!v<q{aaVnhhUSKj|&@6E$<PT&9kdseexhOtK0?As(EB^gVyOGKp*MWwV!
zNt(@?G$Gn#i53baZHgHxB+;tXl1e+0M9cSa-PKIy^Zot){T;{WHyy|OJu@x${kmVT
z>pHLVe4fwq`3$2J3bQ!0Va1JUf<i{QEmOrBdjWo^k+lVb=N84$iVM=FJa!xkn!ll7
zc>DG8Pc@yH?xTS#<OzcDocC+5u&zSk-mFq-KD<QrA-NZ-TW<ZI#@!(4f`IYkd5O0h
z;P?yB{J9_S!(I+E^zhJY$A)mpu@uW@W09g=CEr~#Z@MTlXy};|*#*Uh?#sa>QmNDI
zh9J$e^F>eOax;NRWQ}GAx31d=r8UvYm8#7wmi091B3RLA3^yO*g}IlV=e|*w989#M
zUAB=Lze(tAAeVf#!>5s?4QYJ>@Wtd83=*o4<h*A<KUS%zgHS|3wy@u^V}$x%chLgh
z%&;MJG|w=j6q8p`gpFYISmx$2Y$~{WuHXN#VRM)XnMg?YfzG|fLBEPI?7<q(B`;g}
z?gCDbQ~MELW~JSMsY0f^oZ`6{G)ZLJI{~305NPTVr}35MA^ITwk}n@RKPn+@Lna4(
zz;?46-hwVh3qUbf^lL~o4{y|+(e&o<c>Qaet^f<(v1~^e#77*|tM#KH-u?#{z4?j=
z#jK&>Ca$z7s3{G^u_CAk8!kg~(xB@SL0TTbw!h7Q@3YH<UTqqV2g~(|H1DCnY&113
zNDukVeT6p_)7je+m6`_sch7@A|3b1^gU56)m*YTWP{<6ey;?{)go@lZojcRhJF7Wy
zw*QdJhqZpN4)^r$We^q&bU~xtEaH*#6b-0lTHu*yrh`_7V?n#MD6xxxBR6SN1_5v{
zN!!x#nfcpFsZ2elAVz<5?CP{lEo2ukApE*dUjo>Bh0-bny=D&7r7R8oQ77yQ?bSg@
zvpAU*5xFg9-!Cf~sIvVeiAXv6HHk6A)j-<87kezR+P*r>gvz0=q0~=Td6J~%aqXQ+
zB1zShlejsE@f!AZIy_*|l@W@xxq6P)S_;$fd0ANyFUQSZ#-`efIL~<CXwyBN$AoPg
zmRTA%c69_%$8qt`a+6?=7nLk+TbS-P&6L~63sj8$`t9p|F{h;d@ok^>M&1qBhMpH>
zfeN;N5Y&D)LMBU1PJ@t?PJya_K6vSd4gSclT|jaA1%(<@kSjQlmTeXUIl667ORsaL
z2vU;Z5+&^KxubZC*TUiAKM0VCF(l@j`MeiZjORnd&!7xn5vr$Ty64j;Ey~b@NeT?F
zz`VWvc%($q%i-mdpI5IhCmYOQrUD@IG#R5ni0&c^88PdV!jS`azWIZ3@o{CFH&$^3
zi{AFd=`{itfJ4c+n}$33Fk+c!pXlBCG1dMeHl3nZH_x5so9J0rd@037_V(5Y24^#Y
zcJ5DcCDYrH_S$l$3TU@zyPKCXv?#8pzpN}!e~g^>6!19a6Eb+b2W`n%(|I1Wq;|{Y
zb#;!MMfM{asKy2l1%Virh^`WGENwTGXn}Fe-2r4~v_)bON@E>GLy8bRcP-d?TOP+Z
zMU-x#KTn@%oW^`V)i}YEB6*H~d#&w3b)PF@BGle-SF^;?aV<`CK!6SIY{G_Dn}l+r
z(}u;PVKN^*e0aJ0@W4WP`Qp0^mO>d7%W&>5qn))mynE50?^8u`F=p;(61Cjdjh5*&
zo96!^nYWpws~md3!$PukD)iSn*5oJ;#nA?=<MTPk_TOL5Q>A$Dg<z6;4v5Hyt}ZTu
zl`V)SXZ|uVv95e1FZdCa;}3#U9l3t}x{r^~h2DLfC#3?dtWvctKhksPC!DqWeErK|
zVF9-4$jeAZg;1+lA=HpdqLfXQufI7Iihj7iHgFw0s2352?Vy&pl<mv^5UBJ8bNc@5
zbsw`WEj1Y%SWqSip)=vUCE>O{b7rGg0DIBrQ^?}B3p7NePd$fz_Hy{%HFXE)vjkR+
zf14s3c>0@bJHs~IInBXSxXF)r%LO={jb=@pA%pH)#W6M-5a^=p-+dvj;fD8qX+kra
zgIk^1FfFpDgSLQ4np8{?l+9!2zRjRq%7h%&@b29Ua?8Z`@VLZv=zaCwAdOq0{tlx4
z4{iP&$hQReE77X5Xq0oLI!!h$cFLJ1dg;U7Cu(yRK}b=^r64G$;&o5>>hI?vk-Qu}
zMD(cqWnfJ#hb~6P#OQ)DZD4l83ZQ^3_+2I#e)HXT+2n;6S&#U?YwX{*Pkz9M)LqSI
zK*lteeWB(av^xCUWya=rl6&Ute@Lb_Sr76A$Gu|i<wF6I!U2S88Bo=SDDi}n0(t~0
zaonCksP@csI-xW`hpl$$a9t9M)&nqDlPawW@c~ezDY|%@1VRzw-HeP@xVtYPkr03%
z)t)KnD?NFI0Snj%;(HXOu>5WA4EUB?0vY!?^UPPY>24%!B1`DEe&B?v%F5PY@!1V8
zu`SR_>r({+CzSJh9qiJzYZfXbF54gzJckkdT)r*glU`&SQXb?A3yZou5X$L!Qa+<Y
zA!}k+ipa~csz^Nb#fAIM)qbSlT>p7iJ(+}?YSWwLg06Gn(8Y@vfm6;gt~w%T+b2(?
z#7eWAv`rX8r?uY2v1Ey>!1u1gh}y`duhOk74}gFBp7Lg#4AM9Oq&f2)E{`75@#Z~~
z?)!O1Nxa_t*=ZpDr1OA;6=EN#06D@`*CwW{xVGKW9=Z%SE;rJ`kA_b72wzfrz~?y*
zElu^s^hcnZ3DV^^v?waH8OjjJ0*9g|0w#x_D}8z+`Q5vBeUj;HJfy0>&<C(MD35co
zj*Z`^>QT}%iA4ahqn!LpK9~5IO>`@gwSIEr6B?P>o5;vlbFb!I?b9*$#1)FNcth17
zK2Ucn=4%9c2frg6P`<yhXt2><9KEZ#QJf$?zP?9i>~h+e;<W<esKBkzaOoi<6U@Sz
z&NydbmB;86^BE$Xc;4(Q$(=G<3RX5YTB}wamlJrsjH+YQ(KDY)2HAQk+l5l=tiM7Z
z?IOsS?u0>-puebFwdmNA$}Vvi44|r<aCL#hR}pW-QeW*ZI-<TDfCRx&y(Y9h1MB~%
zA}0BMuK1{{hH%RSwNr2_vFVr%<@5pU7yUpV8OY^KE|gK{PeX!o%$70KZGu%pzdr+8
zKY^K#I`OGwl^p7bB3`j-<uqXJj$j)*Po)(7YZbCPW4{iT$Z2rQ%HZmZe!~O}@r(rq
zB=D{Wb_AKZ)Eq3zLmvm|*_R@=iBGW)sk{q3Mm<7O8ovght`hg5I`*!YVufi+1#DD7
z?*-%3g8m>dA<~t@C%?Hdno(w#V&YyIn{uVgmlEfUQLxvj-4zG~eiEVi8Gfsdj-!Z0
zMmt${8TbyIVKbU#b<7gg{t6U9I_(1KZ4kL-`J>BcSOFI}7GF@1vm}=>bHmei*(K(0
zplGqfhoCVUzDoeqD=!?6@arn+LoPC$)*s*mUAbY^7{f$bX%X+ni-{tR-iO0Ada9Yx
z+YxDNCQS*AG@vSx3SrsNcc+LX9C~M(U;~Yz{2w)-<33Z<F*2lX$?7T%4QoXqCHQ%A
zLBuEq-UE)(j~irb&t|Hl12ErRAUtdXU8NzCpk?$aMPETf6CRi--JqzIK}j6VAPb|d
zqcp^60}WvW3*L11x2-EnO_RfNl3`+J4R>;lt7bXt3!J4tfzT)Ym3hB&0fu8m(~;M2
zz5m5zUpjbbJfsI7(eunFZeEOX6s~e2MTu{EtE-Xr-HgVya)GK9>c2>nh1R!{s6Dex
z0Dk0N{RDt_U2L;6)7RdR(2iRrKSUzYJoG3jfu_?7S|VXqvn876X-<o2k4>qx7)asJ
zQgFW<Dq2HOLlyt}tnGEhKjzg+8;ufYt&z}71dH(@);WQKITh#3kB6}tj8?9@CITi{
zN!_QPx|Nfb%qLMkCO1c2{XAHaK$+yQmlTCZgwgg6uP)gvBN8+Yq50tGE9g&8$|cQS
z2?!%Pq&MEPAuPrMh|hvbAGUsyB<&ZnrgGNC6j3Q8T5-mv+>h=Ul-#C@)SfDHv|w+*
zCQlQn!5jcfW^>rk*`#nNQID72AtgF++@Z}0bZU<%7%vXD<-E#-V-)g(Xu`FB-RSp=
zNCEh`2|x>HxqE%80A|anbym7?MpxiXk#*ze&kkP2P@KN~mV~_$|6$}s8ODA)jjo20
zwhPkg(IFiVrtJ#S42wXVPc7gg*aarAZ^cTGR0w7=b0V9ir7^|cYH^i|7^ir)rQ_2X
z^s4>ogaYD0sFTkX@s}=!DVHFbx0=B?=`$M-t}KEk&&*$B{tBjGq=h7f9low9wY}J+
zwUi)<bLyB{6v51fWMPc@7ZSDC2lnk-M(qN3bp3^XN><Omy<^nj??uy6y)BFVghxri
z5a;ri*ik1AHi&5Zmwh5}YZQD!wv$X1N7n7UyuAH_G1B4dgp`UyJlPAtD`o}e?jQzo
z?7N92F~~mU#B^QJWyqxvNvFGZp-<a%T-$35n%oBS9J~}6na!alnDmAPhzE!fm{k)-
z3OXKVdBz#_@6PywNH=`=Fopwer3*o<!`Juy+Lq?-sne#J@Md@2haI>qo+Sn8mGy)s
zxe!Q#!D4{}rpeu*T4F?ODR(!df8P!-L>>M2C5?g~Nc<fE0Zl`bRW6njG?OvvUrKIN
ze2Z2Z^ovk~>*g2w;i&<yeqBP~N3SHAFstnj&jdTjLg~$A8%L>l8C1&0%>9CwK@%T$
z7GE3SWW$0^107G2k?P8K3>fSVz4m8q!r|%w0mkJmA&ug2oS@-}C-u^#`tkJ%0|yR7
zaQ@z^Qi@Z``%LkZj$hB(uV)>|-AeA#!M7Au#r(FjvqW5v+B1f7SBhGSlF!AK(^n_n
zF?yoWy-f+XJHC)a@~Zv8U!wdnCCe3)9G9y(Uj-7%T{9Mcap|6DQc!x#0W6!6B`DNF
z8wp61g#V)#l>4o1(~1G-0B%>gpr~Yt)-DBbmh&f{G0JI}@IoTln+LHu1HaFL_?>yH
zv?I;ei1a};9M^A{`-8<wo}ffy_Dmjm$FBu#``5x56x4+ASQ#ZNe^H^FFC>m<BHB$}
zb7TL*Pb6!{!<8V@Sjvt-nQG&O7MjX}F)oci(>lJW#QAL7lbLdxD`d)eq7(%xrQ1T>
zc|rBC(xtP+IY59~WalR2=84mg?SPTE0=V-i5KzxE|GE)hwyxxtyEnrn7nD8Fn?4mF
z8>iu+37Znp;}w5(Ekq1(v0lzYlN2*`mka;=bEX)44e)a^5x1)2*TuG|xc#%Z+WX1^
zrhygdVk<8%FLE?!T^Vp4#Vy_6?Ndo%FW?FpcumwT=MWSbIb_IR+b<B>#NUy*U+6Qq
z<7-QvtdN#|z_x*6#E7I=@MajoSSy|IOhl$i)Hv`cjPCrzUOY-?fHkvV*!&|)fn04#
zM~f~)u?i9!_N%X!k}HSw8TRp8*tS2xA4xpKsl~Pt!yOw<KkPF2Ot3|Od;_@^VkBby
z`t=w3jFLRz97*^F63a@kiA*w(djm|V>>2y@hvPUJ`t-{E9nTKVwjOOyG}4)|Hm8;*
zJ8ZR=a;*wGgtFp$#tKF1O6s<Rgnz`ko)WiBppZxL-lNhzLwCIlf}_zP0cG)FGWnYo
z5Ix7tq5s_BYu^0UgYSm!Ezm^z@>y(|6-)q!CkafBNw*;6q@gEhl7BPCagma5^(Y+}
zk-d8MJS$o{V&3_iUSmfxT+~D_ae`cc$H-+r5#wNx#%eLpJ!Vc@cGLE@trLNi$hv`K
zEMf$s*983w-G|M;_VOJGIsQ3gsfb6?^)?})5ucnPZ=J#7JuMNo6Zy30QPIwknQRtF
z#$Ul_oA4%u5e&M$!SHSbw`}F!UL8Ir_cOopLhDH44F}dJCzQ?|ph!`*fc)C>!r`iD
z2xhSB885cd&}5-MCk^H(xJy@zG-n0h5xvNbsVCM52o)aug;zEb$wdT|e}c<Br5UMJ
zF~cY(^_n4g4=q#zuniU`7LYWvwab7{G)FpobY0Gh?aN7t{RkIpuJ}a?Um-k>(A7_5
zTGOb8zHO>0hz+1^h@5`w%_w^Q96E-D0Mx`R7<xb#WV?U#+Jk;?d+i@Fya<97EJ7l}
zQ-Q#~$j$c@^eR$N<EoeB6SF}}pBEJkC3XuI2xU-K*N@lA+AmtyisYHV)Wl*ISr=J4
zuMyD7kwG_dx#)0!Z1f~dRxSNRqHzyEmho~;0antpgeSus>3JA5(j@-o$5F@s)3)~*
zi|+A|-o20Y&hlP3{P#V3#*7_%?_E9P!=4L=kD1-@UNnl>M_wVs@N_t|ry#xSj2bPO
zr_Yt&rLRHf!@LnPQ@@^?e;+<CTOP%>tU6!u{^z0z)p4gIzcqOB&Ffi*kC=U0Hn;Q8
z<$Hb)yZxhF;O5Cc{Plg8gEvBDZuc13>5o49XMMK$S@)#}+*frSJ@eAfV;Am;I;uB&
z-qT-(47rfp)cj|)`h-D+Q}m|RpQzp5SZD9|q2bkEEjl}@$*#A~M&U&wan)ehnjEwj
z@#Me@?onux(r{GUp`N?Xa%y?p(%hSPdXP|1vbMvKyUAz2)pYShC-ou|-H#fp>{|;?
zOjoqgeo*O<z)aGYzRljxbhSvSn=bEqObo?1yX^DD9e}Ze-t&NhB&Vx;Ws>)8yzXap
zcT`Tq7HKLi-UYO1@E_vszo>aKE*M1fUTE^&yQc$R+-PyUx=8$K+n1`Gn4LTMWT(vm
z6Xp!?MVs+Ks1kJ^pfXiC@7y=-zbBD&+AEr8BR6%jSVs8TYJ+&*{po_e*74=K4w1gx
zN!e?2Y-x1t$xlc1Bv0CPYkj3BgQOqto2;i-1GiOVRb8sj?f53P`=oEOsxIfWPV!`F
z%H8^RfeS>5sWx-|zkl$~P236RUyg*$iSYQp-GI_fR|B)cKDx;7MS-w%tE<rglW`wi
zoTT-h6|egDpUf6_w#RY9f4_U{E2+t>|JN&xv}ygAb7z??3)$!`o<!T%?~7YM$fn!l
zf+Nh9OUpLtk50O^e)g}rME~oP^q45UEc=@6|Kr8xOJA%|d4R5#X-<b5sdlQn_>6AZ
zuBE*)b*@SaqSgyox>x#Ho<|h@kGC1p`Zg7_|Hs?RZGD?*-Tuehbd$c#vBl5-{WkMj
z-{$NO|Kn}Cx4zAY-v8spq<7QJ&g$~NZ@@RLe=_XYzyD-#>z`;_{f~F~wDnKU$p8Dp
zG_*c|!cCq3{bKPyNIy((ne=~s7`N2c5A%ECm498?a|P+!EGnc5UQf$0CtAFp?aRrT
z)W4<MhqOO+iDXkB>5A~W#&0Ha$`#!mbJ2ysIF}E*vTAZB`NJ(nsh&aexnDQ$pTB!B
zXntGZ_zlwDEm$G4bV^+~(MuhCrU7~kAU$_MV@K~054`=WOY0NU-)#1?$?RL31AILy
zI>eZhfA%c?_~?>Iyaq@=N&5@%&pXl&-QgQ@()-il8*U55y6Etw*1A$VeCNLx`QLv}
z+7>9`c`#kwl{mm$x^JOvu+!GDX2;|6^~&Z^Pj}-qYB+ngp4FXUmW-`WdGU7xVb4%;
zV(@kQ6bW#Wz@Qu7A}5guoN|WBr_LdXJg(@dw*J1ods{wSZ!vw@w>=5y8Za`uE$3L8
z%|O2F^~T}}*3;Xu$s66I5tY}LIR)!P$p2aW^TQ-*gye^ly5nAMnWiyf&g@&{x$9{)
zDV_LAToPYTivE6$eQYv}R#t6udiiIkGl(qi`Jw$n9Iv_S2|@{9H}*Ka4fjhxDMW@Y
zlT#%U_|-8Lq3=>GoUHTXBcb}@l(6|)Ly7k*NPx3RUQbiCy*hf)aTx5at@-io8TO=|
z(tyF)HrF5AOrEyzaTR;3*|YEYDo>&4`+@Rf%Yz#FYQqy<W&4pH9l*(BR&ycWiF%W^
zpa_YLgY@brzldzROy|a>M=IL>J<yc%`ynk+1ouNjU7;g}&wM-spc-K{?Xl3!FA+Fq
zW8=ubPZ}Tf<d-POr~Tf1X#J29H79A{<-aCPq_B4NYkm`u({N{mpUbYsqJdprR|7lz
zNDu62LJ)P%fia;`L&%+bz&Wikq$_2a&{KOhdDM_0>nYV<of+6P5@0%K(Bn>Rum5_F
zG`}G;=@!GS5&~a2(Wg&8JN`Ht<QAo5n{DH9FQ%81L>dM%Jp|g|_elC)rY(%ww$l+0
z52O0#cS$o`v-NjW9XD=!T}g)*9?c6-6m2Y}&QCOGetpc)p_DOMLq>^m8iE2&?5CSA
z`?iq(PguTW`cYqav_Fu$O*>c9p652qX^Vdk=5>*sHtD`nsZXUN%UgZXqLgKErWBH|
zm{m3|Jup6IB&e6&Eo1(_cW?de>$W-J#?DifRj=FGc4>oJqzM-PB@=``WfTa0crEpe
zA-Wmrb)h84i2yX=wOb+!R$eUSk$bP9jF`d{kfqi?_wCT%_pKj85EREll^@%e`Yv0u
z#<%eVk2YIrm(8s5KlE%K&au7E;+x+*x$XVk{MzIF!Bsq(^-RL#G-PTUi1x1Bbz|07
zjxA0FM~)rKu88J_D5};4E!kKK!$+YZukAI|oc`WaR!m4AfCsXnG`2csjOx25zxvy;
z<c7wo*4|S%e4^<^)4-i=TSl_<QTtmjx}hE!6#pu*9{_<%|HbV$dQe-8*wh_xRaRTy
ze&aTHg;v+NM|Do|l&(3pm}I0y&T!ZTCpRs;{c@WBzMO85lUz=p{;Z|`J|&KD*{*ZC
zDpnQbxY#o&)as|wrJr61FTK(cB1rZJ@AemQYCrZSb)&m<$n;{|WaTB^lgAZ0RD?K8
z&!f<uR!YwxUO$!TrEB-2;cM18h!(#1y1lD?7Z2Y6JL4gx&ECD+f!m&)*ijvnZOv4P
zD{-Z=@qj_&Y5mj!$k{ozn>TNEY)Cd(e7wExy>0yWtN6p2MSgB?W#fZc-zDs7`S5s&
zV<@nlB^+hrQsxOn2z7mTPXtmky|@xDQ$c-Fmsf1P9*Ntbzwh-uS-bph$T7fKr5;J(
zzEsrd!LPt_W@9OBpF|4a?{?Ji|AtV-a-y-TKyKG{ok`nE4SIa!d3zd>CLneEUt~dM
z=Q)H@0$D;oO8}o_kF%rX>5#q4&5rLSKCpG_^eNCt2eSV5!vkcyEP7i>E4PTTNAm}}
z+JnG@EA6q@>m(?05-8hx$V3{cVzULKTbS6-!lk^tTo~;bpRgZ(!oI}wW}yMv)!(VS
zRMTU0qKo|Bt6ROT{^HuppfdG^^7vudbY(>Jp-OKNbq}Uf-|bj}Nu2l(F*8ePJ;S3N
z?sQh!c(^r<SL+JYrU*Xapp`1tfMrEU<bcfZQeQj$#<C^5_6xaVifS_~82H!IND-?x
zl`Tm+drV&jhOl~_dE4zf`D6Qr|7I1dwzJHnk=cfAKa(t4x-7K)KD7USnKapM{|)~6
zU;ZWeFDLykPnZ1fPqEu$cKhc4Z`uF1?EinT?EkJTTi1P$UrJBx7*EFghwt@Q2Q6mP
z{6G8{FSV=N-#y(EUTZw#L(aRb$oR}b3ZF{US}~*c4dWy6`;cF{o;>C<xz66b@2V_z
z^+P>iy^rJTI~p~8m8>?Xyt?&6w{FWwALt}lyj=Z><fQ69NrUu-di+9?B=V53+A$Ze
zbqD=i;E=>nL%5pakY^)iG-zPo6Z@yp=Mv{0Z3$cJ`%j%2-&AFh^yJT9!)xg@uBV?}
z=kPWpvT%Pti)-@AWQ@}R!5=&k*S)hn>5=~Flg}NV{M_l;mGs32_U?r;nPi*2rZ>`I
z4Yx|?y7cKrI>h%W7mh32nTwB-WV=!#nc51m{r%b1xJ3eyHY#PR17C!MZhoFqEc8_x
zo*&L>a8<6}JHhekw@F*(N+f}Y{w`!&|N3_$Zkc6@V)iY=L(}QtF;0Exd}z$*@zKxS
zXH`RQH_dmfP05L-mt>hFYuEo(6M9|y0kyYN2NgX(yu?-9F~%%*E>yrsH-U<CJq&_}
zjL=T4%UCWf?3b-vxou(17m|}@?b*8Yt<}2blZ=ZF-Xjzr@tM5EP(c$W3I&57meK_!
zX&*gg2;-9j7}DG1W0R(_=NeS{o$?F<;pw1%?d4zJQueGVt)X@40Q*Ib<n=T~bDh^K
z#DlaO8%t*#;z!d^CEodHhiXehYSPAIYkI+2ayc*|K1!cU8Z@KF$3WT0*|c=_!4cV5
zDpGHG#w(`Pi-H_(*Ad?u3jL`y*J``kXG3N>4LQs*ebJNz*ebi`os{WznZayqmvs0@
z!<t|2nc?`%kt$~&Kb|pQN9E;1U9^UF{p|w7LkD0`?|P>EiRAW#$sM3uiJGfpQ-#5y
ziqP2cP*z#23_-exr-6WVKkq3Pt_Zzutao~Kz`zCS#DLeX;3o+*k)JVrlk8MMv%-f#
z$cK<G0`YR#)m-a$nYJBz`nxJ~BgTZrlnbAZnU1yIk5wx5M00|fiw&i85v4cA*w=QY
z$nr%}3;Ll?el4EHx-+XJlGlE1b!Y3Uv3j9>{rw7+50&ARauxzc=uFD4?@)I3-Jjn%
zeGeDSW$)hQi<O3nkCBj&V0)qf!kp+ie5=I(Y7w>3zJBIWV%DiV|3mimX2tjq1vQCW
z$(fj#X*ep%^w!%tlX<wH`#X_Hw@e-vxuF!P6qNzH8eff^FkwbzqY&NaekU+m=5(QD
z6aeh{{i+S^1(mqWC)+o}N>F)yduUEHpJzM^26sivw|PvN6y;N+JkNpSlgRoVI^;C9
z4{gRq)qOv-a{+n|o$E4HZt20jSQ9S69-cAqO?0^NE0AZ6%&N}2v~HFtP+LRF5~54e
zm%-h-(eHE-#SAPpgVbH}5=p~PAAzV!+Zu|GC9%H4YxzJvYYZG;CD=~(&T^o>D>}5R
z(Qw-dlrDX&?<=V{-tTMd(~Tx+>it71ujgrLYiCE7QfAx@<p%d>j3KyX2BGK|X-}s0
z!3Z>IEyeFE&s4{A_bn)zg%06O^SMn0HBP;`mEF2MgdZhfuDEz>bT*B%nZMb~>{Uj?
z4%kOw6|{Bd@@G3+XejpR^ATn|=~Dqkvt}|Hs;=glAAnKc|827f*|E)O$KreNpzGc*
zrquEMzV699#=)zXX=--w)-5wL^C5#Jti3-6_tPfq%C)0<try)%+G}b!BVYEXzEeYS
z<@>70$F92O(ZzxB(O@XkN@4fkLbOOAOWnG?$~C>1K%^BiwBlvom1|#@Ii_c&fkACm
zV0<TuT5~&gC4G6dAKpBS!b&@WA+y{w4yizZT^qJA+x{v`*COHOcQbsNu2OT0oiTRR
zCEP>rPpi0qla89+j;e@<?2<F@DKZ!7{;OU~<8dT`f;|{i6C4zz^gL2*BcQqU^qb{T
zlH8ONRy??#7}T<lMKS>zV$T_kProZ-G-<P&J<D~PSsUmfy-Mfd=c1yf5?9xA=ymIc
zvqu#6l0W^r3mTW|L;mj(ZNkQ;nq7y)o=5JkAGm}o2Zs8spKsTl+B0B34=xd+XFo^a
zQJD$e9eQ$-lV6)~kZg;im00vXgbP(Cjv9i4zWVFi3AcbvpRomPeJm6E=1dn+!w@x`
zBwHX3ncg2SfSFYH_d^fa`8!+^&jg;PA-!n<Ggj7L=L8&K!yj2mTY2s4kxCckl&}g=
zM1eOfdDodz-snwL-V|jtHJg7+1y-(ZFO;Q!bn@%>_wC|;fV`Y~e@cPPa!{qB-%?-w
z*{LP9uqjrnF3Gb0uETaCPY?Wl&iYOHCq3kjjqG$r<4EUR8J%2{iX|h5)PMT*r-QxH
zQ#J(;|MRP#zS5H&{jLAmm^Z(F74QABsaL-K*S?|C2c%EW-=SJ>+w44|)bC&_%<bl?
zmhU8L)*of!4}N9Za2b<SkD{C)$sw>1kI{WhVP2U{IV2h=jS)5R-oCyeID6{o>Q*@1
zfBo8OIx1F04mLJ#N)tbmTpD)8t8JjN^^P=p3FZb~=x~Ql1_$?I0Ep=v$Ud5gN7(}C
z$v~N|tE<ylvnGU%<A9hI3UZe~+8}87zOTNA!kiEf7YYW7N=mC4rnP1Gz$7wH5w7Dv
zXt^lLWZ*ec09#|4@8T6Jx^(WG!HA|)MeS#j2V*~apl>e0_7|eJ1yE#zgYm)AQBY98
zrYt<j`ufffE3s;dxOC}3T_lHoFeyML)UPRZeiF$Wk1dPZ(LL$sa$0jfGgv6$6Rvi>
zGs+m4!+M2j7R>=vS767q+y%m@_W8`FxK$XL*+Qao5Rw&GMih3Hs9Dqw@6ZgEyqndZ
z0R_PAtCl-?{C@Fv>(`$iK72TEsdgP0u8zKbDEH_+2Jv<E_1RD@nB)q?2BjQk8D7No
zH?7Z|JBKS|Fn3_w`0-g}d=)IHh^tpu3Mm(IfDBl9czk9u86I3<Zt)(D>5D}lC3Wv+
z;T#eR)iO3nVfUUrrbtGn>q4$tT~t)0sHz%Y1`PSg>#Cx(?f>_3mpB);cRbp^H)wdr
zoz8dv`^G<QadDIWzq%h;CT;NMjhe|*rf6etwuo@VSF`cPjc3a^0VSWe#e*9L#tsfK
z(r-zBWBQV|Q{BuS8kwnsv^V?xaX-I{+hPmebmn(r+D{?fLR8(Ft>d73Ad9nOmZ^9F
zXLIH!O=ylt-|^(PZQJr?Ht@3k8cd+e{$`j?-=dq|4wOsZTOxTe{iBu2ch~>-jkbH!
z`j7wa$49s0zxC1ac=>O?{I@;++a4Y6z<<l3!_D|FI{ddB{#y<m?!bS`p~KDiFFO3U
z9R6Dl9qz#YvgPo^;BB??wf!a^THcND?bY4?i?3wMW<K5j)$A_6?6-M7e_2eGrk2}~
zuQcPo`Luh_*_Q`>t#{<~5ZN#MzxsSm%*bJr27mF>ry7A@Yn0S?no(jjPx<S?KRju2
zI8mFw+W2i@_<hx3e|p<?Y*PGvBXj0{gv|Z@eM#8Cf0y=cKikl6PVhg!*5Ti7Pu|}V
z{r%@BZd-bEY&ZS$gF$&C{{>OC{Y>rZvX8nKfB%WI*_n?zLVy22^1t$f+|EWL?t;I+
zTx|Nhp{lBd)jj_Cz!HhsoPVC(?PKCM8Q{8u`3u4fF$HC-Tx6A3BK+(p>`|Du%k^z%
z4~iFY9@pXCH@Kri!tDKd-b&b@H3WN`prYq~_%QZlKM7^+YR1_9`7)c?@tql#GaWEu
z`0x^M^I#e$nGj#^MbR&qY}64yT08Kc<)Idjxx_-`zr8G-%Ff}5y=g#fRMaMP5dPo(
z1_{@}(@_R9@);NtRG2@fj{dK(uGw<0omMTb@P_I?tIgSQ%yrx4XAiV8>{_q?M$6KF
z*4FEgH!(q7WhUMB(0g(En}0r_WNpWLn{8fw?me8<oU}zp$A7f=S9W}_aWicG^<HW^
z9e<u$Z60j1tRn_F??BroGuLDcGVXmjR->8PLS{KO9Y(ctTFp730iqH;dCf;#E3I@x
zpWW;1{+Z=l9gVmd8ddkY1|#w##%|BvG?`0lQJ9W-zhay{<LrXodqQ=EAnd$MTy$U&
zf4r5{G_!U^NNL<^qj#?xiO3Y)i7cdxgcaepy~n?x%Tv;ln2<1P*sz3Ztye8Q$F5q+
zz}iuCargHaHH7I-dj|(*tLF=^wrWV~D7)OQp2SOr*_`n%$KPXE(?#!cWVWsHLN$7K
zL`Ixl9tsU2sE0wcDH!Us6<T&eauKqmZu7i>cB(k);`$~up&iPD0)*@;{L_@`EBsNK
zt@V@@C>?@d$|su#D^>Z=|JSQ4<@rjV?VuKh*dL;W`36d8Fax+Ws6vDdF#1B?pJv9o
zt?M%lg(=qI89sP9zN*@c9#2BK6&CLr$Ln0<?Iq?m%i|EtoXKco{J8AXA1yAmk{7Lu
z%S}!Qf5L7~hcSD_wqoV55hIM10+2;SryKI-HKED|$NVm4nn)kt`_<)XAkO7N#nwt0
zsZj(5WxWjGd(u@GCPmplEKwP3XIG!+LvL5D#42r(;s{@@vX9oRTeM4yj&#dy&0e6P
z@enG30kfdxh`8LdF+&0AO~&#iLEJ&{fP^|GBhz<ta+D5*%`rc4=ukEvSq%4!DPmzy
z$rSjJ<HtAk?Tww9(1AhdHyX|GIuzM;As8&<1uHd>DbBCujxhNi>R(Zy_1Lj?(IP+9
z>Di$(KYj)m+MaOrGU&N!=)q4Mw;0i`c%~Ch3X1U0od(>#S-JKY7TiK252i0&^z%4t
zAFG}!JPT?b8zAB%MnqpvUBK3;v|FBHK4L{oV2AM}$%cd5ricf<^-vD_xR52zvHSx@
zEw#mm44;8ICJA2fF&@&4on&;c&o^2%gT>e`dRcF1{+8pZCiKqX{0}lPFi4KVe0wK^
zdg0$CW@72)<Q?JmM`;(lIOlNlpm}ig&mV^a*Hf)z-u$7+uGXRbSAp%p66;WefrUaO
zpLG!Pxc$Oz`mSaFc_~?+Lva15kB^y>Hj~%1QWsA+k$CWFI~O4S-Dw2!%<eMxoo^bJ
zzDQB|-;exBpJ~#g^~RcNT2Nw=T{zyIQ;R^W=sh$U8<duyqI-Y3VneyGwxSh#7NU|+
zDfX~NL`sC473dN)F;FmhBVn{!vCMY45d0k%^6?gxB(*=l^=#3VFf@2J#?jaD$dg)P
zca<GY1n}mgnX~GJtP%}gj}krZt*}QV0_D2VTZlR~HFr_w!^Qs!gj@UjN(0=J@xs)M
zChw|mv>@4JA`B#qROs#nsP&Az#W*%QPlrAQV=L>FA~~Fd$_9hK=PKPE!!a*|WHHV1
z*>4QhS1vAf^>BAzUtNsEpIFFt^RMp5r@DTKI7n^Gg!7;E1TjM$n|{ZdCg;R~yUIh4
zM?WP{mE<zC8XYq^Y{Hb-ptL#C&?F5YJeeJ>=caS)LYjlZ+f%5!5fZOmhxacehu?54
zA?u!$*x53&49y~8R0<{Ruh+RqP8?$*{kVC+iYF-DuY|9)0_k4ZQ}?QEsyCtZS)wnj
zZ=o<mC=b(}4w0%v|DKm(GM5{HR;~2}#<R`srrBe$<WN$CE|h&}s1Q%Hu0nmQq&)Yw
zCv+^GX#q}rEF<I0%C9<io^)u9o?dlBYKJ*JiSvcFBhc;-;gn#SwGhqblAW9!Vlo?<
zw_Qtm1rD-^iis&_KuRckA<Au0xC@OU@yiJIT$YbjP8S0CxQiT*<YcJef7=3(<%mDh
zui)QtX=m#xcw>#A><b4zM4Rq?nC~%Gs)+_o?d`DLJLco=E_{hr>05vO_1ERhM0i!l
z-_A$kJLI?DKCh(%s)TX*gX$||yZ`V*F|o2xxMSJPx4QzJ#%o8z?V*Pr`MQP>-Zt8A
zVST4mACcsLVjkf=`s1@R>`?2O8}%)Y;j6^#JdO|ch$8r*NdKMUmfVcQds`>OJdCSH
z*268lwxv0J7P%1a10hf)`h~|T5E2IF!fx{V@ar$XnB7L<N_mz;f!3Zb{YoC_eH@UU
zcWzCVx9;&~vo}Me&}|Nkhn*(WtKcwfx!1Wqh6Q9oV;W)UNi`o33l)kX#MAqU_g-H|
zU)4JaA>@)*L^9iVFV`t+{-g?3Q65r2;Wfog4{lT+F{@)p&2xwR+8dJC^vfKJA@}0;
z?%yA#EIVjPe*Pj`*ic<<tpYwisP4BfflHh)<q_HXhu8Hf*~xJ$m9`;G=%?^mD3a3$
zc~(OBtTrB>09`I?rKYC)&V9v(Lh}udV#;;~vJrb$G>i#)W`t}sQe~4Za1q-Uuwe`l
z!FmFk`IU>4R)&U#mgxJB-`=U(NQ4;1h|XDmoO8KZx2+RdAtR1--!eQe<nE-TEMj>I
zhif0-hSCAA4?*%Xf$S%=&+H!ywRz|PdB;~Y3qNbfKpHX4@zu1@(e7M#!VfF02G}{0
z%^M^Cy%MbMD^?5^+uFHt`1tXQVO69v`IYiPsPmznm7I9N*##9>VbiV2*(0RHHPT>d
zVyYLwuuwut<?Cb8=L087985yPQusZ(``^AjuL&s@p-wSN5CE1il66>4s5t(iKH!ek
zVj_oFr-|5Rh}%^}*1Q>R%;uP<=6P2avHZ(IbKpRtI;mt+MJBzOX*ZFWAa;j}^aw=V
zr!(#pgY#aP-cZKyD<5(|UqGU1IdO}0-%ISRP6M{9@!r~GQ?fe7d^)4Z>HMXTZgB50
zaG>zX-Ha+5nu*IvqEoKrAzZduJ(cw{N?v{$$=~D}Ap?mbg?sfo&SD&QQ(Z2ui9IJo
z6<(#JY8xR)9buFr120X3vt<9lgGX`qz3VaVypVt4vau_j=}{pkC$|Yd1z{H6gH!@N
zp@hUlk@xT$nG7@v#nbZ`l6r>La$1f-(gxZ`SpIb!vljfB)1|Pm5S^7v`H@ad4hcy~
z3&K>@S1aMHf{rc6_%<OzkD0d+P2=bb5w8VZv1^F1eNxy(=79ReU6n|bcXv_?3H@}Y
zqqWY=?Si^n85>!f8zZYTLs{tC3*Xwby1!yMxr~&IVMK{+0J$utJQt5*g|K0lBYcPp
z#VF#07EdoS#Bc{v+XU?(PVaJtjf8LOwYWH8n<V15NLHy^PUTr`DRY=oA*65_>dHcs
zWS9mD=q73Y`=;4dJ0=$>9(H%{fq5zc_5}ndAvcdlf%L6#tP#%<Zv~zs*I-nM$_i>I
z^W24mJ3i84g$YOY&a<EaX28reA62h>hx`PB*-@J&1rv;7g{Y&~<&Vpcs5#P^)+es+
zq#!D+sNHh4lW|LlP5-oicNrOz9%EMCbF7Mqj_!*FV3=}<V-a+?-B5p`XUu4P`Kx^>
zce<pB4B2XX3W_$zYmuHSdf)?jO-I#`?0ucmj4ip7lI_*a$#%jokaj88>ftoh`R0!<
zOy%}N+xgDcE~HvTM0wkHm;3Er_uFs3^<nTXW#V;cbA8!1$yRZAsT{Y)2%!sq27TrX
zDM#PXrYFCCC&MDWzjYCgGiFuAP@dO$4n$H!2@28Mu>;j@Y_7cGJnn}D(`x;TsQo4)
z`=7qXm_%?cFRZY$af&(a0TYo$S<f2Xa9l`Ahez~ADrH{yToDaa)IF6D8h%BwU}PV{
zq^ZCC1pg5uN8a|qXKf1=*zCD;g=}i_)-Cwji0Qw%^XJd^s4!0Aol;DrVq-CR<gMnC
z5y|G-p=)A@0$Q|}=}$lXBG0jX2EkBI{XBAocU-8fjzZlIQ}muzyS8u&xUh*fY_Ed6
z){pSFdtDzfx}5R>rJky#sz`87q{M1oIM5I6pNFJLLkYR*5$g>N$JI_Yd$g7h)CaoJ
zmB#+jmKE5z&r&K}1aWc$XS&ypr6<)sF=RP;>|A|m?a#%v$#{7s$90?wb3WQS>}Yo+
zve01x3E$)*_<I%X)-d^@H!Owh7R8IuTP$<vbQ>`>k$Alw?y=<aPMwl}?5vT-W(y#V
zJ6@`3H(wt<7NMe6<$7KjmSztS0}aASuXECGzyB_TT;Jox(qG4#s>|WcL-hy<mSdAp
zuw008QW}D4{qL`KXXto3d2C+V?=?n*yJg7s;WmH5EM#YF|EXKmgsT91PodJ$8^@5O
zG@HqB>$pat3@#qCUcBRKOzGJIzt74}`BrFF63?#?bH*m^{_Qse$7kH^8rhdgaE2eJ
z`}1lWrVbx9N`uo-o8=l7vCaHz#H+dK!nEnEQfZ~n+ZlrmVz-Uco)I|#Zv(i6bIDP&
znUhqI-9efZ_wLyNVREafscAKCkFXiyjF=c3Q22zzWq?79jRus)EI9kT_Wb$#g%&>2
z3u7itnv{MSnG{hO;EjZl_0yM%pfH(G)iK(;*{Ec7G4|o2y4^exotUEw((E4ZRR6fn
z(w*H3&E(G%cn*=vOFS)Pt%m@&<R0(oHl5MT2Rw#Ni6|Y4YC&kU8?Jmy#VGVN``RIx
zNG9m<2(>47^5#J3&c(L-g-y<8!nh6&FvZPi>x%y<E2JP)(5qo(!jU^BuJq*0&#(zt
z4sCoT0&-+3r$`^Y3<(;Fj_<ZI62H-_h-uX~uahT?fk)^r{EdV}7AMhigzHG$uMp_j
zgSW^2rHs-(IdkdOPlT1PA{Cp4CR?c|^#mcWf_HsSi7sxAbtMCzqTmXMy-!tp1r4+X
z@|<)L6Z4Z9Ih}UIzyV{jp5K3elE>s-FU~+Ac`r;ykck%Ztz2*x;sR%3+^^dIW};@C
zgYBZ@Kh6{tJRg8sCxBqOnK<^ou{L$Z<@Ix{E7=iska^F>-e>U(*)?qI?pU>O#pwkH
z$V(>fQ6B88WIY%9vKDep_K(HFw}@{L(Fcnpe<5mx_{Q;4<lBOI{9>}Z>zbh~yj0Z>
z7r0)bzh7UtV~J3Q=4J}V=0%<p=gisPLp~|hQz7YTg!KYe5B6b!j~=a(DuN10WtLVs
znc4isi&qi@g)SSPRm!1#)8z95iFGz4&J<ykDh$^J%0gl*4sqe+`%UlhX08o<#yTWJ
zO77ON9L~as^qO;#+)hSi`z29PQ>4qzaMGjL=h2zSX*e*I5rHY_o@{Jg1L5TwB?1Cw
zsSn)g&xe0OMMaj8&NIZOV}$iRVHw2d_4Zr0y5V}uhZ*7D$8eI1iy?HK6pxmXjEks;
zKHC~^cUY7(PD}JrqAGSQe*|>J82R1s{I+^b`j2XvZIM<|U~Q@qK^)rTp22tAHuM;$
zlktv<ta9<Uw=W;lcevv?eZfR(+qM4w{*Qb;wh(a)a}ME0H$CMzeDeD$258am$&&qX
zt+Nt-o0GeyD6s;E9phB>R~|oj@ShXS*-KqREc)ygXIZkIMk1P?2XEcFWs{W3_MG?@
zCDglHtAyw`)Yr*L2tz-bigm#5qFoKez0Y7nUGk3AWHj|E$B~B$2mC=E_1J>TqehLI
z3oCD25q>-q^>(1wSrUcL!N#f8M#$cIn3^#}e)BTLipOR2{(gK`RHU$`g)||N(Be@Y
zO-3ezTH)=9Nt8-wz)nhR3vfS`23esb?QT5x;(<3Ap=<JddiUvb{Am<}Gg(##(J)Av
z$BAVprlh-|oNH~yv3KzK^XE26Uw-k$S^F(hD2JxvU=&kCUTblaA&UNa!7Ik>8ECo^
zt$LGCWPndpALpPsZb)u=kiuqTbTyCOg{1WPd{>Uz@X8egYvwZc+9V+Ym_8E4(Bh^@
zioVX-Z^?a=?)%M{anq8RJ1Ge<>OM$a&a=xWkRBAe*!E7GcfL<^gZw_zNMxeL;#Oj!
z(NrfY8jn}PAJt9|fom@n)a5o&Cy%)qQL}<~UKp-jR=}`_QfvnyB(R5}?GT297%SXf
zyLay{r-5|jdm_gQ=C!>QKC`M84oT?F_nm-@9D6=Oe&`OgLGx5XQ8*uf7s@0<SoIqR
z)Z|4@NL3zRxLCwf82N*yOo_BfMdi)Fwmd_=2*EM=n-M~TjK`tjPD&_Z@PZMk-qRTf
zGg8;m5au6a3t&A{w~-A^D6nRS31fTwEKLd{QGnl*6(>uP8^Rts{))+w09eCDIX%OH
zlZ-mu@fNyn<e;nd^N^ooQ)ps3DW`!7pYSG@U7~tSR@L#*YZ-p~D1ttiJ{+@2y8brT
zRNyszktBXBK-O8=qc#2a3iHXM6AV-fYI)H#GRS+|seob}>VjvPmhR5*8_J=aIrNZ<
zd$A9)Y-IwhJ6aJ??IrN!5CqSKONX5q5Bd$04aY4h5zpRqT+FPx29q;;`W^z=qMqYd
za20`<{n+!Op}GrxiYjkwYtw<<m|#Ep^j!;c3&NbMFFFW|cCVXi6T<nX4R&(+W^}<A
zKzOeK|0=Khx0TnO-j$!fi0ZdVB7zKBoF()GqHH<F1Xd)xU<#)&Q>8NQ{@n?zH;YmF
zyr*$Y(Fv#bn~#oPlj}kuZ@$Ca{?9viG<a~99)_AV$&^!vtD`s`FhaQD@|X++0NTj&
zCYruNU0*|!EKUp!7W)XnNUC5@*H_4NQ<;X}Q=V{-c%bt3<;w@~#%tfaCuU!6tjwjT
zJE1=#0x7%&Pah*48|I^c8#e3y_$yN2ss|BF-~F-fVR08?_~b)fZa&}u@2{ggg=Jro
z6JdUpGN$VB^~Wv-JL^_(8+Ur%=Z!Bjo@A+@kHGWlBPV_cnxQ_OLwW49>wi)VYhLp4
z6dH`whm(q=D3r|I+pN~L1NQ9RZ9>ht`u?j|ua*&eWban!FK_Fxc)HrZ%`qNlFtTHi
zl_a$_<r?zY;X)u=K}gn!W4)ikr&deAZ^k9;gK~eRM_R!cl*TQ3m7*Ye9yF`W)f$JQ
zZzo(^n@EinlC!R1@k+4m1;;X6{Htf%qX}Y@WQLeJ=)6%r$N3(st=87**PH7mC^Xk)
z8-)ARq8pi<m#3U;8B}}q{5-``qwc&uF3dSNQ%dazuvQfg5us{St~Yl9AuM?%@;DOq
z4N3t>fzo>j?`x40mT;=;u_e>%v^)&WtHZpGT|AtzCZ`@{!Y5CjsKmad>Kprthuh!l
zn1db_I=Yhe{Y%|qVqbFMZkvy#_Y-Iz%YUO1(*?FA7<Sw3mfdGjQc+<#D)cdvW**jb
zUQPpbPP@_^H!}R+-JU4LR(wNEl^`6*klpcDEDix>8O~L!mdcykKkue+Vyflo5Z|WC
zAF&y(jUqqZ{7sf-1?iQ&Bclrfsf|>Oytb9AQ=T;5cFJ9PGb2g<Q;ugO>;aP(()>O9
z^{aRg!WmPN@3Mcbg<{RMN;l735+NJrIusVK8SAA>d36>wltAWuL|!b~0eF)kLz#39
z9gK|reucHiwBJ@2m<~|Z9JF&5A2_9mB!i=HY_gK;wZ$lzuN}3$>$l%pPYuw`WGF5C
zz$KeFNi6`!LogB>hC}ikstCr%lQ3xPYCGNILh7$_n2jl@XCFFnAe~{g6mi6LO&NpF
zh!A=#j>?!5#W|qm=y>g>pL&qN6j#RqO75v~WB)IAvTT>_RIxY*8Gv-9F@l&91)kB>
zcEe}YlW^b20&Eyx=J2%GU*qtk&1rJp;dlFqjoD+>+3`OuT7oX@8|p`|gf%l~&LrYg
zY)N^w4f}>)W)*=}jkR=Gvtj7ap(#b6qg3o;)s>Vq)jSVhTW)8cvVgK9;+E(=MMQ{0
zeUZ=9WeC}(W?jpe6K-Ed^5;>S{jhY|eBH0M<LI%lJ}o^x{gipEd!4QOF<JKmJw}}-
zHPj@@(I!gDm4UWSi9NhBaOuoL)88H!x}$iml$gjHkh<CX_?Dg`O+#FDqH@kT{SnHf
z$73za*B4v>Q<#bM-))<P<*CAhqcAJ=%)R)0Nw!G7kwe-wPS(xW$LC{!ZR>$H?Ao!C
z;E_p+BDbbx=zGA3JfCh`cc{F5WGEmj(2P+UUX!<Y;V%4Qt9G37>hkfTtq7d+GX^t%
zl=*OpUUPy8v+2aA>KC65<80B>t>D;+4s#tk=a*>D`l@Z#cF$OW#dl*ESj|*ORXM{#
zuT{l*Xa(0UeA-y3#QlxiBr|}v&gO;4nvZ{%ym;NS6hDpCwmajO>klP?Pop_hm$qQS
zX3jMaYoZH|9ks%%9B?d%qt$DgZSeeK<98-!FN)ih({Qc+<x63DbnjV(&$h?$uavX8
z1jP<8PWU5xk@?O6N}Bolr)Tfei_R(-D<^kL^W<oa-RoWuc~<~%nBDEz0Df{`y|s{f
zE-cG3dmA{eOC(7Z$&49iOB|9uJ4K_4%uO7V2q&GV?VekG#r!;NBPOL%yJsU(scTBE
zxd{nB`ad@20e0&1*Yv=scMip@vU<gl(JMwDn|ODi*i8GZbuy0S(yPee&%)Ir(B76o
ztXsG?tot*c4{bI<GcI~)P0H{4J)`X_Q$9G1z@Rf;r1zxsrU1w~(N<@fI^Hr$EglGv
z>Lh^0yNSEZ=FS<nMxm~GW2wE{1>fx!PK#wRi9PYuYqh1^;|xD_<~;X`voPuKf?`C~
z?>$s$TtZ>NM66e}P{s-Zs<W~!ZW%A_54Rl(x4&*Kmp0#C2Y~~LmG2(fd)dO{KmJ+b
z;+&V9nz}@k8lvs1LC4^sw?%vq80I6NoT_ltr!f)8e?5)uM*(ppCuCwoM*UfT|EX8>
z&23x4Zvr0}3rc|r$LiZ*hYtxPs{26YZ3`)}qR%Q`Z+>rDTUUXDFNu?J&ck|yj3aGQ
z@}HEIjRJ|G%G8J{EXZ6Y4x?LBYAOm&IyJo)CIq<D2Z&<l(WRNpa|4MTxL2w?dGbnO
z*FjZczhH-(Lv_jyZ%;6+a?TbbpZ7ccWQi;hw=mJ^nri#pb~)fXGQJw__@&)1{o|mp
zOlEjS!AW2j*raNt0Y}&2=e7x}(rsruqAFX}t*<hE&6gTwbXA&o`zVY=g7M@%*!L6r
zB6g*s@-te+rr<=Ajcr;J&uw;g+B{y___Nho_V^=Fs*Nfz^&epOwsQ5J*AN8Ob{+Uf
z6ZY}z2dHDgIdNiIqS@<16y&<!c;FV{kZdXvZxyHN=+dyUm@?tIm;c(<dRDn#P|hgV
zM)1gchQ`LFvCYQecuI(dEJeveOe-HSl{v6h50i{u<Mp;Ls0b*$4zeA-b?TTYGmJ$D
zd|0>B(NXB&E8JiFNAS>#-Wm31ovshEAlJK-w&fa`r$A88&Z;_i+N^EWNdK{6U~Asy
z_MK4O-@R^LOkweux`A1r*@c68t(xYE<dq&!_GBZQ4>-OH(RL#hfJqAV+^4!+59xGD
z1B<6jKY-+`<nkHWp=91Q52gz3;OJ;iOLDVWwdMhA0^MhvDUXh5ycKi=mHSn3w0#6r
zyd_Z>kpo#+Y))ZgdnO6U-^!7e1BpP%gWRC{pWNxQdBr^sdr9`;orFFnN0Xz6b?2K8
z1ilv~5Rqw?g(<KfPGb_bYX2XyO&4y@16sO=^74id3a?Z4Gn(I>8FqiO_F4j;qS>Pd
zF4`CMs~%h<ze8qV2>Hy6LqN|v)pvbz!`BQ1(PP3`^!UPrQHTI<>hZcTMd53k|3?cc
zsg1kw`V>3UGl`8BY4g+P)!T?p6Avxd)VzW~b-(avOdCB7M|F36`g`v%#m7_$snhFy
z`l5eOFO2KGEV(5=9!m95Is+<V98)bY6k6m{kNgT;1CDPhAfm1*vA*n4e`2}kD_x7Y
z;-#OgcUnpUT>EZY<whWjlp^MV$4s62&LeBVnv<3D<n5O(b))|+tCNQpNcW^$w>C_O
z9*YQRqKfOmgPHWH!+pZhI)`UuV3bcetd~-@_z7NK^y|GW9sHDX9%7ffVCHMO0e;0k
zf_g$prdUMqcph~)SdP=~zDhIw`YRw)V@t{J5>7=Z(^?1YSHN4~dc!ce+x^(C9_zJs
z?b<~(rjb@R<XMK_7mR|YzBZQYxDwM&xAMted$I;r$H*2QnDb*)B&Co(5Y&%F8NT1v
z3=dNF11U&<eO&fv%%wVHBk@vM=Os_2<PP}iU*S6_d~~QV^Eq3jw^FnB56!@iT~lM}
zyXsA{dOlBqBq^P|GAvW^4RFC#o8K439Rsch5=qXiGuTn32ye#g725ve<{b0XxOi#2
zZ9QzAW21-ZT=&&!=K>5HcC&%cB$V!NMxPu1=%|3elvT330l$a!Sk>vvFO786`T>8J
znN*jQoFm>9n=Ia@gmW+LQdt>qfIL=-w`KX_K&54bFyRyGB344@*q;_;8|)F}3Ny0{
z_Ky*w+qOXIO=Zq<++}|(LeNZ?9{$~}jQ~HQgx!<%wytgk(}yYBK>z`59In1*0@vVb
z;!P9gh+`lk`BxZRcnPShbAJ~FLP_dvPzgMohNN0|(3+M+rMK4;3(J4GMl2jXXwZ%L
z4H9oiD1WNxQ}?f4YZdv9Rl=lkH--D=y)*kEXd%zTDRdzV^EKkpZxnVL3eBL2itGOR
zZPJ`Q!lRkk`i8d;25;$F`heWDb~_Q!Xv8%21BK>$ILen%1sv(y>5DJQ7-83(H*el<
zYrt`T$};E#=OIZ%<`14Yf(UBdE1764Y`bXK-ia80n)XXNOZnbA5EF+Nr}l_u|HelJ
zmLMGtG~KaX^q*8p?qo7x&u_nNqW=|RRXpFzQgB{qCkGNf7s#(Q5^DIg;uHqp>>w=d
z0csW=SSMS|gA>-^F0{$ds}Hc3D;V!}>eML?!OLe?Z6%}j7?Q1=L$WKp>jgmx1hlW~
z0nA{<HXMH){J^2|a*}z&d-k(PuTtJ|4rK^ub|XC^qW<=$Un~eH1#J#Q(j?NRiKe~o
zH+hj}Ij3>e0ID3G@`xC4p7Rb=D9mPF%02erMbUo|g;B=2Mg2tne^ZIjEb=bm`&rQ|
zD|$F6LgXOgCg+pAB&Uuodw*>9wbysY7+qt@01J&vwfgAU_iJlEH!Lh4l1Vx_P4Dwh
z@)v3L4${X|hokwjym!8xb-)duUP058l!8EkjIIGN!cF=yB?{Nfq{<%0+}%%8MVu!=
z7Fnw(y@(*3rB=cT1e=H+{rgvL?aFC4>41)aSf><jpG8CM570p$AD?@9G<&Vz^s)X6
zND<UYK>r&GBe7K#y*)Cg3<1|NZePJY)Z+OH&jTD+&vWafb$qeC0!sK@`cHk}G6mQY
z)Kf6ZJmUIK+O*X5BH{@H7nI%+bT;w;;opS<OC2ahxp+Cyn&&*jqyak?)|RF&i43n4
z=@ARg`xX4S)7)6`kp+uJz*ro$ix4spXfCO)ulcKWb2Sga`#3I;UvxF@Qt0O&*oBCT
zQvTOLU{-<%)K?f0ikbq>TrdS|5Z4{78yQM6xVbDW7n4lkuAvlf?qowA0Z%NLk`SMX
z3p5@C0}+cOO~f{rvvdXAkz6wpl~PUWK#PW4+*7?oWBr5cx;_pl6lx)G5@D93`PrA9
zABc`F(i2PgTvJL#`&^*JJPmWDJ))OHn{;v!t0)knpy+<0_hKtZoq}XVg!ku$1;cLf
z=z7UB8a!GYWDD$`0B{C_y77}3dW>ht*w>J<xdGFWq>T`dq2J`O1*z6k%`q%CTDAjI
z>^Hyx0m=wkSiXM!dSa0f6kYPVBOx_PH!8Q47WibB@Xh2%_QF1*YRkPZFCBsoA`+@?
zUb-<hL1(wtE#CI@uP;Og*(e`&hVUUxs)$1h$ZO)p{UVTT2E*`>=Q6V>g6c$bgRIiM
z$AAH$^t+R%LWICo-1xlmdOQ>+8Q<?8hy3h&GB2yfsaCp|*C%k68O5P$!wU9T9cV-I
zTDX=|VI^-hN7`e{hhLmYvW4|0=i$AhuBXa8fy>3CB|zs@YWAn0@8;&#IW~puayI%R
zL_=YgLiJ#=%@_3b0jNZp3n@vMaC2U8*?1-SdVsK>6@3tb-}9H(D&NuGT7hMVsA)k+
zN#}1FWfX@2;7Bj)&CV&9S!-?BuwnNXd04DTd0*cRJYkw`CaOlrrhFiMVgrBJg-4oN
z=6Z3(c@JS~N*I};9a{7B=_#`8)ja+TieP$&pVSjS(rhv>EDvxMfe<6I2T$uL7(-y1
z2#?T`W8>vUj1Y~n<oem58)5Zp2Wg1?Et;H(!d-$EZknua*anTbrnh<MW=6_sTyJ{o
zO~x81K9)vk$K&2ECbs@!koeA%u18{Kd2)VJXKgf`>>S6fx=8Sy=YECUgrHATG@;~z
zc>yr=SXtGUTECY3G?rlIazTCT)@^W^LpLJ_!RV>rsL7)Hd<vL$<g{tID%!MHMb?32
zlPf$m(OsDix2VK^$&%EC*4shWGKr+X#`8LTH$aPQmPBxD!4!+}<=B6RLQjy>fCXUl
z;xfIc40r97zx#6%Kj7Fpg=MU8V|<STu+Z$7B+v@25FJHf3L<W*kd-lCc1}*wBx4>B
z`Z2lMUE!KA3l(a}k~dDv%FELg_*<dVhb@%W^T{VfUj|eeI<Z_3cfvynnvTcLQHTzC
zD2eqbpfll_!m9=7jw~%MKFf0!b+-wtGNuA*>^$^)((uWggy*qfEm_60v&*wWyb&=S
zhbqr%eO-Wt`x8@z%62*@mY|f2#m&15mIE31usdmY>UP674aV)lz5fnZ;lcyCgZQAq
zMI9}UvmBaAT-4-wZwqu54Rc4A)p2&3rUa1aU8KOa+x3m+9~rr>#C=)P!|znzsd40R
zlfAE47R_zqZo!Gs@v;==VZaEa;Xm#%_>hBYt~JIn<=nLl(htFvOtz;B!q1n25T!vz
zt6X~O5<v$4`axw5Gj|%%?i55kQMHgvW|O>*Erk|(5ea2enl{4QQ!t;cEt(n|!|t6$
zl1n_R2%LijE_1!{^?}v-zB))R3(}?Siw84#YFeVty{4w5J`O<9Ln(g@x@(iTM1}Dy
zf{)B~?eAIUBTg>x!VJ&>ISmA&mU7RZKYePc{BeI{%+$V9nq%<blt|XbjySRXugdpt
zZvC+2c)>O29S=b#Oh(<v0j9h<&2fk|no`0Inwxft%wD+FZwojw0?F$hSe0^w++nRi
zP#L}K^z7Ypg6jA4_E;<Z1V>TWnBxs=t@TD2{LmvmPp}zHTZf8ahkDf(fCCXuxj$oQ
zWpY#yNZq&i+E%UYvl|)!P3=>h4d+STf<fF!g^mZ<L&=`YdO#~zO0dBZU1i*@&bYZA
zXhyb$bY~0&s$N_oB@sqfXX!uE>zL2=5!>%(n&uw>-9IJTSuXhOmObeG6PikDoK*@%
zfLo;|No&PDY5Q`H?b%j+F7cVMOJ6{y0*Twq#&V!0*>eAzOG~H%DfRA!?xtOP4(bWt
zlt`XyqvA`*^=gQnMV~Cf;<4%;<;%$QtP%mozhX_$q5ewiw;4%EHEnOE_TH-g{9|d&
zuXGizRJhs-cOtJb5vPgzK%`U(`YiE-If8~}PNiq`bFdsrz?n}!U7_JI;pSe5+3YSW
zg^qeJ&avIwKSCw#0F`*KZ>-CPeQ^Ke^*(5s`6^xED}Z6QzHB-0i0H2Nogo-WC7#A%
z5py}r-=Ie3`RbT~QxFZj=Q^(KH%R=`ZfNVY#vs3`$N<^vVK?1R;gi>gGHQOOw1wNA
zkw`_a=A^j()>p&i<mS24{u{SuS-23(va+)~CI<$y`O&3y(H=uPyzGsFy{+WS+aoZh
z*f1bFaM{hoh0cvdCBIZ<)S!VT(Gc!n#JvrPka)1FGH}fjc5Na{P#`rF;|zAmN+r9w
z2+>+ccP;>cFaUy<=kL+3U-7AVp7-+DDCP!X4UhQe*bm>+7lJ1mN7P#VRt4Oz`bhOA
z!FbhIr4_d=!0<eHQu6CuOpPxq5BvLapPYDZV%N$pzw=|~<bmo`?gfcv&W$(O8Z7H+
zJKtZCGfi42u38+0_IfnKghOiNl|ouOu%0*cQU*)cq8xD#w=UdOQz}X*urJXu<4|3}
zPAR_T?d=Uy<RS?;CE4`!XZgbXl~eNat@_i9<0Pxf4IiF+JSA>09OJN3t|3C+TiF1N
zJlYRt(_~}Ai{OpPrjRLe#3O0@a^BIql~Fxt;8%or!gtE?#lbgP{HxE+AHnE_TQ0;R
z(Xv+<K$6K?H{T48%Hp7`a+V9kxAU|_bafPBuUb3~1w%=Oc#WIYLu4q^dj!tU{&o=x
zXrV~51(K?X@&ucApMdCRg_j-bOuqR1^O1uFsj)-Cm3@`<MQPF`D6>_NKv5_^5#5{W
zBvM(n{Zb{8oHowN^UuH=Jfeu2lQ(|)d`8gY@1|VWuJkx^#9yc;K?$kWqKjJ!w`mi_
zkdYo)*aGcL-G|VhaOy5_0jLe(As64xUF|7vxElh&Y4AbaYCFuyIIdP)ciJgVMsoWj
zv9Ylm@6kLzCsJ@hC^)QVX|WHNd2wiLP9MIdASM$|_IB6=3iS#qD*1vj&H({q{C!31
zbWYp#yDbXcHbVOEZX6S9_r+biW_I`U+q*a_Qi{AEkJ+X%e}0-^yue{9qsSLdX#hTN
zZhZFLBVQSbq}~NjmkQy;rUFv{L}sLR);79jH0i`(#DW-opDDCg^9r9@@S%mJYH>XL
z4O41M&R|yi=#5Ip+}utI{vlgm3l5L8txX;lsklV)7C-BQoJ)i5ytg>JV;Ny{?3zst
z7AP0CeK}8WZwfr29Q267>7e!Qx4e8`Qa@imHhOB^mp6ZW10AHCG%iwJnJEET9+YTR
z_noroff||k?MzcN92e7#&W*A>Bexj|MTg>}+7u4adU5x=z?=%}5eSj63?wIW!Gt(+
zx&WI}q^(}Sbj#wKA!N6k`Fx@&Zoa??Lj|hNKt9~IfIlW|x3>?1Q?V`JANV=H)~9N*
z^b@SD>RMJ_?qw=_(m8hKA4BHcGmM=UG<?{wQRtG9Mrm=c$9@s)E=aqir-dF6N1}R*
zQ44~(QGeJF>jsyG%!{jLi?BEX^{(%h6E1BC9!@j_vm3W2MvGiE?B*d+Xrc>xA|CL$
z=g6f`u09t^P3>P>6<Q}T)KuMKlsA-z{voNX^7mR+n$fSZu~7`0kP(($?U6{BztVMp
zN}%Y)x`3Oo@tyOmLPSkYx+|(Gxy{tk;v|Ag^{ZaoV#w#k$y3RW&IvVob<?`4JZ%`S
zIbMc+c4Gj1n&7p7Q%}&zAqNL=x}0D8=PyckXT=o0dP}7Q=OzG0%AwRC!jX;E1a6>9
zT(cEB&mstAlHc;vGh{L6*?6P1Lwy)B2qo<*-d^QG-&yAwxzXJmCA;`<-?B=-A;h+(
ztVfO<5$<v@ViwS0UO`eLt3O6nRiBQCyFbw-IVELWvJx%bR!HcJv?(p#Z&+eL3lo#(
zW&8c=UH|+`NE2qojjY>EU>>5n0MZeU3XZo<{DtAMFkMJ)hd06fm<AUIbl4y4bqw)^
zm29;MuF8hw4{7jH8hvLB8#YIHRRh1{*m0KibDJK7K<W1EQQvLKlJIOf7yU{_>hC-;
zpWCq{Ix6b8<w}^$WB^xo)SDBt7QnXwv)NBb6lHJbh1JWchV8b8xadcU<wO-P>(Fej
zQbN?NjVD%bjOxt**Of{Oqts<9;nD>Xa>RD#G+9O-qeW#R00oiJZ|b5UM)SyQhnG3n
zRb=>ilJkfS1Cl%p<Qhuy9WI&OZn?e5M=*(Lz@Ddo#NDofMhX)G()$DbSM<HNSMlk$
z<VP+0P+yZx5-+N7@C^+ri%X7WI(m9Ooo~9?G$jY<t&wd>|LxMHAGhR$%^~q?V`>u>
zP7>VD(~nZR|4%rM+$Y^;mkK~?yJ+l|6Re+V8)wI2D*K6#2ZBuAKWwVcfW=q17?KW|
z=quNyzzu&#gm7U|sN4anZd^j-O!2!znV1MtWnNJSSJ{Q;xo39gufDpSS(oaoY}{j%
z<}JPJfF_9)&Q^6YkX%uJJyu-rNmdCNxQ{4SmQfws>?$3F{f|6$x@HEZg21b$=8QkN
zPjw8KS0c6{8->)YZUrQWKabNtU&ej5$&Ryx3%*<4;mxL@SpKERfTej{=4Pe7@nTtG
zD=~en^_Slba7@15i6T3p58O4v(7}ZR4{$sP0H=uO*fpdAvhRK7E#hZct2VzgOfD?A
zKu^rGWP5E0$c#q=1PYH@k=w89v-=ebwVxp7*mV(fU*cd+VJXOh3<ZfId@qH27cqxP
zqz@IYH-=PXVhwj$kbB`CZagwZdwfAeTwL5iJbqMfDr&<n35h$hL7bi*ih@>m;yeh*
ztPkD$^)qF<H)|x>`MK<1if4J~7)5NZve0mb4Gqb>=F&6?cPwB9<xPcayj!WDF=p%Y
zUd-CAHlzqDQ&so;ngm;LnFLXJyDwY5ub_3$+L1?LWL-$9mSQT-!kei#2of?J<kp*-
zD)+j$5YCRTQ(?jZqMiD=9XZ6Qg$C#Qe%-a}WVTJ(8am$TXuTf)!_AGHf8A6iCC^gI
z#^ML>F;JHmyx4Vx)R}X+jDu&?4;d-jwMS7&zG`%BPpKN7aAK@^CsWhXQj|JdZtlM6
zKXq5wcJTC&x%-3HjMF)@vdU}4`V}cU^5<9T8ia)G&z*B{^5>V;``zk%IilO=t4r(E
zokEu^-r(c*{5RF=NbkHV2jALw{p<=Ky==?B?0tJnu6;?_{RW<ZC^{)~Ypv6lCm$UX
zz;3UA&&k<3EPeSWl6f0Nr;g`!FpBuB;ni3_MD%7v_}+_k&lz_62;F8DYKobTBS85P
zYV-}ser`k|VKOS<U!VFJ4sYf$RJRo9VC-GviJp__Wr@fFm08}qN8cR<9P}$9Ojd{i
zr_=dj53s)jp5EL80HphMC@hK#q9kUBTjz+fDg+k}sz1O>hG>LEL}Ws@n1sdBF{gp=
zSSY5fIYOn`FBM`s0Q5Buk}4M7_Cbc{hEc_7{U7$;JgmpO{p0@5jAh1HCcEq;Dk3U-
z87h)cLWn3rSxO?b7=~$&vSx`SN|vOwktH?R5?YY0P}U?%3O%ng%a}QS&++{K9QXG)
zZueOFUf1=xKA&@WpYQX1g4#2twSDnNjE{`J2HT17^7`3#(Q?2|Z~_dH?W!vB3TucP
z%K9E|LH4>^M?J~j^A|=rV%M%+{qkUWA0X?tJKQRF$?Fm`C{&Z_2+alqZemr1%b830
zGKtiC`#YX^G94Tw`lD7Y<A!P$e9^=6m7EjngtrgkvAXi(`X65h-*}yyFW_UC;jb>w
z^0N!eOSiH+qU4syT2l`H!D@`d%M}f-w!U8d@ose_<Q2&mcIvr@%wgnqyaj}&9_Q!x
z-g^DSilqX<AWG`zd<od#0aRM5SX(}xuoH?>O?S$jltlJ*^U@@q9%Rg%2p~`Rl;O7D
zwqu8f`IC~r{LTSMbSeDlczmcRRvx#v<k9uRCo4x{ZFgzWA*kW)<I~&W14-~UnNX#k
z@%Gg#>7`q!{Yc^$49mz+y^kiv0k==(5Dsp>Jl7k)A#hGmxHRHIx5n^iWBFVP(|-8^
z&jf`Fb(c$wrLx!f;tiU(`OV*6cU_Ab#Idxz1h~lO7QcBiUI@7yFEfb3Z0zfC4iouH
zQ~tGA-%=vXhhT5(*8Nr#4?c+zS+34dA?XqVW>&+SLP@^HVieAA7;8cKP6~d|XhsGx
z7<m`4iL6)8jeX<W^j{<<QYeEMGpI}9km*ZU6x!o<1hm)JG!{@(iZ4$%Lxj2`bCny*
zuuh4)<r;)BD#jE`nfEkt`_m>4ZQxA>OIIpX8v%<c?oA+6Zw3fKPA5v*Myqd0Oioy8
z(0cE1f91Up{FP%cl6sXTouyF6WacZ+ZylFaV+)J|cnnmLP;z;Ze_w65mA*Uc5~c`t
z8x&3(6F{@Q`qZRjR0<DE-xZJ^amNM~x|XN%^JE59&RLgY^A2*CEsGa(S~!_G{Q|3c
z>z5LQX41HXA4#7NZBz`egw|O4si_`QiGBx=EJMNQ5uCYU&K)?02Qc<dJC75h9mt;9
zvOJ~7*j+0pHLP2=Zc!rhfewn_H<p{>o|+Xq+3JTH-zWHCkwSD9o&?X7D*&H_QJI4G
zXH5zEI-6O=7)!7zbLLeHevbj^JUlzf88O}AEZsP{W5{(6FYlN_SSTvVi|L)LiF#gB
zdzb^Iz2}E5h3Nk75&V~3zZn>m*Ex$n;fo=n*~;ACY?(QBmv(g<$_bvU`ZJ(l4}R&6
z7e*vHQ2&!9&QGE~7r<(mk<?&Z;0~<Qt9sVQ_o=^^*I4El@H#b%;u*BPpMNY5%4J+Y
z(lLf3G$urkg#}Okxt|Rn{cj>3&^WZ?x6`LG&>_I7hSqHWJ%6Whka18ZiO0={TOLD)
zdyM>iAO5!@0`zT4a+?ozr9~n^?-emkbmG~wXHBI`rWqJ&KckEK^xF1;uX7XlXk&B+
zUut|D+Zda=kIvtasElg1?8N|mDo-;rrx5pb-p9amHDKpSuhJ!m9{g@v29SX^My21~
zrxlfzA&ZJH&yPOH9j|&{4A*f}GEex~I(~v$YZplK!n26vrKRbKGPz!rJrY~c-u?CZ
z$IuS^k8eUe_!>uP6q_dNc8lMBo4)BOCB>|R{XrEnkw>-+?mWC<FoF82K>bLJgsqTu
zAA@F<9TG#sjO(-w)L!>&A}8;<r7ybl={HGiEiEn(Q24up>nW8c0lbC`?z)NE<+2wA
zv2k%aLhWnXy!qRLN}7jmSpZnr9`yC~eT;!9dn89Oli0-48gTL&1lc016&RLr*rJPv
z{;0^UtgO_VxRjyRqlmzKoj*e1Hw_2~uyaufC*erH$xn1m(2anx*s2N=#<^s=FjuIO
zL&a92CopF@{gWwGRw=I8f^J@8YZRuW;vyr6C_~!md$d^?fDyPxJ?rA-TM{Ez2p!Jh
z?adjHxPg$tCoxs$5??UHAnQbc8*=teC*Oi2Uwu}&c_!y)e2NatsdtIx570W-qMoI9
z{4M3d2m+6-2T^T~t0+@_MBhs<D$!@)L7uCX2U4*`syx@%^>?-#=jiB|@|2j+{%CA$
zpIk<5ZxioOEUUT&Gx)N=nOocBTHXjCVjg-B?nMUyqBEWqk0b6LM=rZ6u*J8ntCppE
zzd18A&?E7@4NQCtsD)=W1+vW5tZRG)+>ffibU{ks7<a*V-2X>3vM_dz##b)D=g8#9
z(JNQR%ENdGsgP?#*f#)x&!v($Hx0`+-qG=;NpS;$^mwQU8z6h)b0X=cc)}bCuksTC
z1i8S=bJGBmdq;Fme|zurPYqi2PV-{2Ut8X}`ki0a0WVy|fY7L<YJ8O~a{!l>mbe6B
zWBP;N)t37_$DlItJl?haW~OWtQ6I!xpG#KNWAjU$6#|XAv7q7t(&1E8`cE7xjhj?`
z&YwQr@s190x#$#V&p1=7D4vZ#m@zzavab$<9V}$Fp0lzO6*E7z)S#wtW<||?Ygcvk
zkrXETM0jpe8)rnu=d(1#0baRu;5@vvZDP>t*N?}EDJV?xq}KK3*^NGzs|bqrFmka~
z8Jjk=YH(*AD!CfHdR_6#Ag+S)ZMHC_%qXR*siu`Bqvl)}JbBy)J2{TnPXanu=luNq
z{k%VcUz~110r7vFkb4A*er(=)2?8*6zU6VWS}dY5JoV_zOq&8-R6~4KFY4X$#P2Oy
zvc%)XNg(gXKq#9TOz$+s?XY{#FwiO@tQ4AVw%<!)>7>#3{MJ7ER35Vql)09rJe71H
z^T3iNOKzg9&QktXe3PK?DLeT{!Xt`-b6_Rg1>WbaYpn>d5or&0{Hzbpe*E#rW0Wd<
z1HTc6R&MzH%dEM>g7}tT!>{n@yGddvC2!aM;}PiEG*hCrB#)0tN@GH_jcL$`oV@zr
z!Gn~5?9;#nuK`6*Q=d&Y)1*BPL;W{rKEKrWt_49}V=E5y#69aRf=Gc|7AHX=cueg)
zC~Vsi59S^k+#N2twoW{MTam~(2qkH8QySR6zl4gvJaTV^H@E^(VfLU+fIf5Kqf=&>
z>C^UFV`|F1LM9CxHjHvf#{;?LN2%RwGheS(UJ9u9A{Q5(LRRry;sW-BUGYO=ktXwY
zZBQ9Ld^lyyY%fHx4?(XmcnTMPESrTJC9%74^HXW6by2dN`DEfH9LDT4?l_0}4&&n1
za^I~@-{It6m6x036lF+d%XT0Z*6vc8lNugeI?L0<w_>Hb56H#f62d0AmM&eqSk&_U
z`kizhxVJylcXo_X3Ls0rJY@GzMgMXPphO0GtV+a|%`e+ri>4J5fI1^nE$i~4q8Bd?
zjnR9b=2cW#^-rNX()Wu-{mYws`ZrUooR|lAML0V@jZ9@C)%j@i3(2J?4-hmcm&y1+
z^WesG5&1o8V|+eD=c!4~=B5M)V~(sRn6tY$N4J6W(m5THZts|>WV`*k{+zy-m@fS-
z_S>Z>y+LdhMo>icTMH-YQixsfHO@cHLj!AQkE9H{Ahivnf7E1sQI|FNNoZ@fX=SFz
z+{Yh-1b~GZ?dZ=3g5-j<P1{#sM0}Pe+0N6-Iza@Ao`*`dJIsYGB_Z=}990{$bC6LR
z=b*Xva&ofg^)R*u>yPUDb{}umbo+6ft_XT4y@Q=MZ=}7OUiAm(SmRW}&QXioQ>>GY
zvTPTvt{>BvF4(u0liB)K*+(})*kA%Fm(j}7_|i7bsRMlX?Z`-3yN&aEFZ}Knn`vi3
z@SE#|d|T)5BK?&cm>#klV`R^`4kz7pq~)V&xY)>x``uO@DS_)!GXZRFRffwxXz5Q>
zU?BoQpGjTUAbG`+R<}6cEcyN`+*PJon4yiXLRH1{(+2^u!V_A*K;I|Mv)ZFGE!1nz
z>A(XXi6!j4byScFl(mOhp?4EJ@i2Bz9de>(IV~_TG%|`J*%5fq=@!$4qOik%U)FT_
z)cQH3kpVO*V`-x}$ZB*aN2`qrT5u<2?!3FnOM8xgGE&XB|GS;uhi_cNTjh^FpSYPZ
zMh`D;z2>U<@#9AcZfm`ZS=>7u&R<#i(Fs2l;<YaoZb(?d?vB8ZbaB0tzJ2BVgXM3f
z;mpCW=|{u5n;b#0CHAX{ENLuge7o52@^ive?o_pM?+?b!nm3Q2gwskt6h?=7zkd18
z620D^QxKhx*}lxCuOq4Q&9I`)J*Mbp>p<kR3!X{rHP>u`v0Z~JB)ABX1QD2=`{y8Z
zSeE@ow`<x!?R`HgUM{Dz?oW>oWy3o!fPNq~?WfJcOX}?4cXR2Y4hpyScy9=wBN&h(
z$oa;tTTlJ_-nl}4)x~hk2a_JskuzuNMeo&(+6{7j@re!9@{P$=sftjh^L^@dBV5_}
z)t;uePrdfT07^5q(=-!zY?+;@CGkiu!CTPBeop-<qQXWM<r0;-^`=|t|25Hg(T){C
zi{HPRWxE2ju=yDCjWcsUw5uxcHGy#4<9uu9#xpNEbk;eSvV;S<CA!HUoHun+6vETW
zjr|tdj+rxhWam9ReRjBV?0sFmo{JU?H!vt6_VXUyB3=Og=G`rK5oQg3m)``ezj5(%
zfHAFjSk{pYq_W(Qm6M~Bt)q3=TCMWUQiv(d9|pR=n6#+Dcbomn=e0Z%MTBY(vcr0t
z^Tl|sFko&;a>#FbZhwb4y~&Ucwo@eNaHQy0fk54Oy$!$FI(XVu4q14kHI-FW4s6#X
z=i-2!gO-I!mI(Jwl9zLm^wXH7ZY<2D8+FIa4Tllu8JojR-ADvmbdvPDX!Vt>+!5J<
zIwvFk>OSeHO4aq|4!gzL<y{cweab#3N5?B<ln1TMjuFT(<z|-AwHy#CYBGPcSnjzV
z<gDo9Ex;I{-!4<8+?si?ujVFQ<t~qiwsm}Q%&*Q|>l}KbZ-B;9xIqu@-FrE7S(C=G
zzsCVdBFSTUw0&nyK^tY{Rq038c08T5{{7gu6}P)Qs`@a|jF;M|y`IoDl<p=tbv8C#
zrgcv5U15-w%f7W+@<wwQf}bx9mAM}DHkRE9ZJu>2|FD_yd~^SvW2~ax18UW-9SQJZ
z7rfc_=<(wdLGJy^JEC0VYK6VB(QSb*oMdG}9MfcKlNHOK#;(2BVn(KpjC82^tlTi{
zv-3WsE)^(<6^}9YzVFVi!wuxoM>HNy3*YiOwQ5OAk4${n{w@!QiBNqUn7TGB@k?9#
z3=a}<88Bn5><^sFTu!tL!Cb%6rH+ncL2L!vFwj5s9wK_H_M>{zl|vZOc<{-lgLgc{
zEChvP6{BFvrn^fMJ($GKTeB-(-iN5>y8XQf9l>0iwD{REpPE=gUz(~3xcn15t3Rpr
zHZC{hK8KT^_PJvX);$+22LZPELCykErE4cbhml@k@%)Q6Z40x}{bi&%ZicEwe2eoN
z!EzpSgHTX$?<eBG(LswpR5<A@ykmvcGtIX9%EhY*h6#`k@D3&LT=d}Y8E*}>g9tM^
zQ`FNrXTQ7|?+xhV{h8vi=E^OsYpazF%p!aite`U`ydz{=!S|Nkl7+gH(*K6T>2mh)
zb=uPQ{GN0A^zTBLlADkwa)wxIZ+oR-IHvsqernaS=g*(}KMx;OCtzW3hfy(y@3R~y
zUT#*Jc`4-0nz!GM-;h_kzR2A@Avo&FJfHDIM86y=hgeGhD2?v!2y=Nq0#G|F{uW<z
zE;&6TV>mfx4hBEi!kK+2bUCv3t_d$l-*8UrdF*`<;Ut|l9?&poZOuy<!&gh+wi2g&
z3fz$+HilVMkh63=Ke>@5jSP~?61=NknU^G8&jk+jb0yR}Y!PhF*0@wiICMY=AwdI&
z2ee6F0y-pk+p}vH88lNss~ZROw_b&{9WO){kkXB;%FMyJeZVBOLSm`IgtKEv+_g@-
z<5D(tiW_nGMXjL(Xg6-&RJL9&90*^Jg&%r)Et@)xCQ;Sk$9p~7`z*UdbEO&PDgMba
zhe(bR3J%TtUe#aWzWJhcp!7~Oe~bYL3daXag8*e{r&U#!ugbmO_i0$K-q8vxpZ5jl
zy1sQDFzbBNPYr5d1UX6fni+mRNFBxt=tsr`lG1yD^wJ1fiwNQ=z>NeWbZ^hmjtM}V
zfatqy^p6|Eg||YeWY-`HuZcv!o7eRJKPCeg-~*2M9srsWXrq$)oO4+UzlYX+?Ly{r
zMNx(oUIb2-df+kV;?V+u1VK@amSV1eAFyQ3Wh|Q{3}bwYiZNAbG07@|bNDWuY>#Oe
zcktwcq0WRLhmV8AOrsy%Xb{1ucHb^NhOMn1Lg7OzN3U0}v9v}*dp;Yqp_rcyCKN0C
z<cdpV=S)1Bx6K^rq6hhH(TOUujNpUDIp7WX0rb(ao8bR>&&+IljnHo+Ssw|Zf%)P+
zjs(}Rm^K+~dl@9+Oaf6W(Kv7|%r@=K&c2#tPixBto}v+;$IW7naPxyE4)f;E=gdyK
zo!~Ug{B`1AbF>ccz-c^XgMbSzzwZ{<UO$(O>+g!C&0KybB0N8EAonhe8^fyfdB?gV
zQ*tzSV*%^s_Z&)y%FSKshSdW{+CV1tdrmb=055t+jTfh~$|^~!gjaTDh=I-dM^x6;
z@JrAzLV^sQe{<OnA7sO@m`)yE?pUA7l0AV4?{rd2GK(WaEYo$9gaxqT4;8==Bf+(?
zl9%A)UHKi;b&Uk>FhK;;Sf<T$PQd1ftuvmUBTU64@LR0~RWugP1mXwdFx@$5Qqb!M
znN8eZWp*XvwLCh;&1VcjfDR=o<Lo95q3%OYa7|^#zC~SMcU6L!5NZyt{%erIu}<n}
zOz3RRSv+WI_5u5{N1&BUze|fV;Zt|}d&|-h$C6V=2Ghk@n&YVcz5&XL7;!06wnU9E
z13aagrljB=OZm4K3$ZHuM$kxs4^iXsge*KtH5f{lkkVva{iLqlz+<ckXUX5XlbLNP
z(QBb;b;R{%BuJrF+cFli`EzGz!@jwD$AsR=_sHEaZ$8FD*JC1$80%n>&2(^Zco@|^
zI4EoOGY1MMgE92ae=QzJ$Y!>O4QW{X99Q!C<^5s4uQJ>;cTR1e`H;b-y{kGY&;x=-
zuaf=okaem|d~fCCW?i{q0zpMuz6boy?l+5ZBi@IcmM-n<i;J_(ZlU%8#;x}uHM6ik
zIludGJ0p89JofF#pE|JSa}G5mN?5bm+G>V<&ElzSU5*n%3M3azdPla7QZ+O%n8V<&
zN_q}Lr(k-fA=%Y3X7lDe=LS((l(8O@GLHps_wye3OAXu~^fz#S!#4eP5i|`xp38oL
zR~1COh+bqj<5vs`1KNkMzt13WO&X)o`d*HBL`X$N)dZ6zC-dC6J@BY*a$;MupEJBj
z_h-%CtXn<sEMLYR>!X@V?l?s94_c~2!w2zJwL&bqM8X6TqV)FC{!N@gRA~blNojw~
ztCKy&)))mpq3kMBDxyf%bH{ORP@U9u)v8r0#sUrz7>k|We7Wsre4o1P11dbcIXZWh
zfTrw0EzYx$N81!h2o=8vW+2dMiJp*m`lYfD%3{6x`}fl$;XRt5)%}sdd6GL8(DLI=
z`u-!c!<T=obh)%+;6&U&jJ@e5X<`lOPz@b&=B24{R>?rdv9*I$+=23h$@1*^bL(!_
z7t3>J_HNZ6^cUmv%UU~!*)7s<0mdlCF*~h4ZJ+qJQN#zvj;Y}DsMHpCNo#bpOPAyM
zhkJOJAtwN8*LdngFgc3Kqq)1FrXQCs5{M$@t!VW?t-7%)YA?;<C15D)RHTU$fj!|O
z8diN16YcPP#J12UHIY}!68v2hP^z*MVP_6Suv+hy0gdNSC$lYlj6HJ!B_-Y8cCd>2
zoBwm_aRRZ8=(P~6^feF6>(<ClT8bc+ZcHrEp||d@3?;Rs$51ySoiVSQRdZ%GzH6}q
zfNfiGOM>39VCnMp4x88S0yW!@uaibPl^XdZ3M@Ory+ehJfZNca)MtE^41YWnJwX^H
zuj!WsWhG1!p_lhgN8Sv-89RH7h|^RI4UyJ9>UxXlCFnPtAmWC$VNGaGukW0c)KsUU
zwbIH;uF=)HEQa}&<6HHfIhIuvS|}BnNSXvBA)p5O^6Go)rL&tOgfWJ<;<xl8xvpsN
z`Ib|px}JaM$c)v%B0>epNcJF3Z$9P_w9H+Tq>Y_g&(*@4=4V7A29y1SN=8t)bef8v
zba9F6H{7atn!VRDJuq4ohZm$Z(z2qAh-!FAWQ1_h$id$aeQy(b9DK#}W!!tR1H06H
zT~!|?Qeap!Gt{e!)*N9f2MK!&M&)?+xc5?b;uq4V>1i12_51eCKAIEUn3~-I@Oa}O
zf!nL^D8U}VDo@&;jNy86JNbBciSt~dT#+C|Ze-__Dv(lO#cPFm&3g9iNr`O)rV?$@
zu~=nP0#B>xoSO1f`5O)NRJF?8>K8SnighbFKHE%>zkc<~r~D`Xm~$Vd&jL)NWc0Bh
z1i^`G`3q2F!awhra|hKObq>4tp<A)D17n`wySIx-tZUL3g0dXSo1OLCDtZME=4+>&
zTGw${^wd>`Ho2`@wVIn<>q5Rzwt;4q%jj_tDLVgFebVO*oi>k>uZ%f`JG>i|u$6yU
zBypJ;4n@0=CiVm5C(_!os!9wYE}veJt%N5nibJq8k^mYFBA60Q++XxA!x(a4RgkZ<
zYTVxV7|4}@L^~lnnO!KX`p1~!o*Q~f0pQ`^>(6@WQy5}jYg~?#au|TDZMH?)Y!O@B
z^I~=b>#T^m>C95?A@-`03QCX5&!0Vu<}4`-MRo4R@*b+hELhD86}Mke8Yh~{1CVcA
zkTtWnbkR=)+`G;*U+?y&zgFuTa0?C)c6M?2g!Dy0bf!BML9Q8GHfy9)e`F0sa*NDi
z>+NX>P*EJZ;Ke>Vh`~$WYKxmU)>|kFI?ttl2hZEQZ~w_M<k{|UXN+eK0YTCBpI1D&
zu9ldb{FL%e`g|GM9Y5K8B;lL?b6~!6w^ZE9ADN<HYb{7qF}09nLgATd;Hxzu2PL0D
zfAKy589^xiLTzGc?Bj%A)aXt{fOvWuG5^No<P~8}cFJ^3YOsHkl;b9jRK(PnCHbYp
ztX^Ld3H65U_2xAP(VucGlwXOx{2L{-LmG`Rv)7AM&+3ymu5aDaevs)1Xaf(PJc+{i
zs3yDss!Cr%Eu@G2%8e>WXiE{){B_-3(AS0VH~Cmkt`Y_Z?)663MsX-I#^z^cs%7@a
zR>#?9G<2uuSqkvsC2NxjB^?OCCE^&rduVMz;(?EomX$|{5rD$b4Z2JB&0VbP1Q#rS
z`>dwC3(<`T<F-_r*)Rb8BNsV4k2~r1UL=D#x^z98h_<M*HbA`c>^ovvF@Kv_ud;JJ
zIWMvBO<rFfSh^qNogckMG%petQVYkJCgaYgMZG^l;Cg;t$JJEOBEc)f)<mJ@BMKP&
zXR6~gwWRycZ&;jRL&I4!<yI{u>!c<mZ3-l%*K5Kng5!yj5S<*-Rgb0<a}KFU*%$|L
zdJp2}qi9E!{wdOd*@K2l8T#n#EU9$Z)Bf-M=<)`&V9wI)QAej@%1Qq_5j8%{49@6R
z%C3z-QSHRv<I0B$Y4w*Ts&ioQ1ch~d;X&jW0+*G4A|*sX^p<%SiJXKZ$7vfO%6KO%
z4(LQMsdWy4^zw?AyUA98<frzhZ;ra0-KA5asdRPbquEF8F7Z7R1l<903Q`e`QUb=!
zP*ulM^Q6!<N~XBd0!Vj>8Jg%*RD+FK4mV8@k0Oybt*IhEpiL2buyx0A4-XGXmcvUP
zA4r5VSMD1j;?O%G5zhON{0GhC5(e>@vECQqKzZzbdXxNFND9QEuPe%IjjuwmibK>U
z=g`zC5c;kPw9S(d$ZXTuzvS^%!}e}3e-8@Wdb9Ff>0vO>5*9Z|r1Bgn+e`bH)RPf%
zrj2401}qOhILpD|fH*nOocUpi*pOpTaOC?T>aS}$II#+AV#a$!g`y+fo=<UgK`K+G
zOcCw?Dn~jYmQ5;GNIO?0k-mRVUE#mW3lfGVc(rWMfHwUXb5Z8ZPHNF}+J?Zuz_O)7
zhhE!XW8&ppt{d<r2MPC?-G1hVF#YW%&z{Z8_8^axFi17gD%IomvrqZs{t)FVCsX8G
zymcefqi@l3R9FBt%FgLo(t5XN&z{MP6ru+kGImLSvezyYu39&#y_sey+`%?eM-vB@
zV;_63l@qb&Mb$7>Lo!iOBJgiFcrwL~iBvdvL($SL@#c-GV>M+cnG!*==DE8lHJT`J
zzo>Y_e$%R5hPAv-h_toj<S#nC$N-J_F;Uv3aMMk#(!CO+9=z|RE21g}B)ifV*^J4-
zSW*#|7rQ;4pr^&<TWl6kn#)^kl)?L8il-&U!z7rT>Tx3by1h3^v?T8$y&PVWxdCJ3
zv0w*fv0SV+-pF$M3M5O#Q~9}*iA2LVD51)d9>OnEw)aew>L5K)W7)-is%dn1ie#$y
z3kUy*1;*!ty9TN<_ZLw53F&1}nCC*jkIA+d*Jg&(8!Bxb*J&>=TKYsxJDNqtmvd+#
z7DS1XN8cwtr71Y{{j`_;R{H0IeEhwPs&KEk|5uWGRlJH+@7)*pEG9V*vU=A?_AK${
zb@)l057Vu%s>wjoh6UPp_PKxr=8_2$FFF*NoD`xiJ8aPL+{>3oOGhLdw}-v?#<0|5
z4w4;#VDmk81?{SeH&8#3lPP@<H^Ohy`_uVO0hUm>Gum^mbif6gn7`iaE@)P^_dhy#
zBU*pkbX(d_zQ{7PY15|rojmpw{ZP*uMW*jm-l*^C;afiW>J{a3*G;;)BeVJ*OFz`Q
zrz&F3q5?#g9Zq6xY>pBmhARS(C&X*fArW1`ha-Pbobr`cA88vRnZJPRCDJ`Ir*UW;
zBqwQ4G+&H9(eZaC4>8|6h>iD&VZ!m=BpPI+Zoa1{IW4v`C&qR-=C62fK=n~^#@JX9
zI+%Q7c^s6GmZdj^K7&=PB%f})!){X2;<?B_OlB+a{$l-piFS(QbwbE2+Pu?My+*q*
ze!=Z1iR*F5;&((37=w`NSbmH|Oa79rJ_jH$UHjCQ-jG=E0K!y1&xnSgSKzNgz9r(y
z2Gp|6?e=yQIn`?{d?ef>V|(*Uq<Xxg2tX7E5&@A}mI?_#Xxg&v*JUC_&cP`YB{apW
zH2KiBJ9xZ^oeNf|v!I|~vjf`iBqSw?ryV$#))et_luY(y>-M(*>jKV^u4>V27<JRn
z1c>Q6$woiViSaQp+4M;JmFuFikf^gYO!r~QS1v&BSt6ILjV6dn=y4iCgf(oJweuiJ
z{!?r_xV}$$rK=f#BiSgx(lM&mMZO9fXun}XDuk@o<yOqNVbbRdALPyBYr_#1@^UsM
zC?dz`PG`m7%XM=9Oh`<W^}%{)0})DxD#4ryD{2ADxu)Ho$mslzf$y9TYw(Dsy^d2E
zw7a}LlG6WEL>P1B2_8L9c#sup4S01@mPI;{jh8b+;>%}*hpwtabs#eq$cX{l$Z=1o
z7><ecetLFit~qh6?T=#!u%!2~#rbOt5V!r&n4$451X{lD-n@L-E5b-Dz0fLOl)rl?
zsww`ium(lB$Z*+|IQzX)6S`U*p>pmK-04x{o|E&6QkmHcUgH*>pHXcaCI#my<wAWT
z<G=^2kb+ol7|0PxuLS|G2LE<CqybRO$elK&W!BAPPZE}BKK3jYwmzbN({rOMM^Tuc
zJE1m!V_%x25EDJ^1#C7^;@b()-4=*29*);PfrPO6n7t-GGESVCA!MqO&IuU{^FbG?
zA)IbA8YzN4ZprM(3B&2it0dHs_F@G1_e=jBi4~Z(+Q8&+&(J8SVQjC(XvN4onlWRB
zU4N!2jJuZ|?nja?Q4M>It<l@#kgy~-d534c3hn1Klv_J2+60Xn1<ss%&-8-80Yn0V
zEl^<+YT>Kmti!YtM-f=i8u%x?nCZ`ZkK4foiT{LxCl>^9PLCVMf%QH4x3Q1jVWGKE
z*2J2aVih;R6rn%VVWV+U&qBPfP(ekRl{e6hBXd4fKUIKO3Nw?EQ#RZ5-ujy8UOJG-
z#x??v$SqL%7?^YDBmVj^-J2U!K$4%}4u2Uv&i^@CsE8(k<jYt74WX&uM7AR03U+a7
ze}CO-3fFeQpJ(bsc4EJzvrCV^fjHv3FS1UZI_X=7`z(0k|M*5)PWU7LF*tlbRnGn4
zla4R)T~hrXY>z6BTIA#;0{H0Py(|tH58q50TYF4P*<we3)ig8gW)7*Z|J<#h3&Pi>
zR<`ir`A@|+HssB2)3z-bU`f;dn<(?q2WYOcbR_i96ZG?vo2`#tHh<nc&Q)y*QYMv8
z9)?Gk`cBS%v!aa`LnrXKQRHgk&*Dss$Kj-EfM@`;<&lHr@U3?ks59&Db-z;(n@Apa
zaO%jTu`w}b6oM>h2R@K<WWntLw#g)P#`XvT5mpP7MBm4>MVr5+tt*>OcX<985UFk;
zH2e6>nMV`u_n`|k@33{>LK*#VI~38#S(!oSyn?TWFUMjS<fTR53W~_BSd?*SO3;nJ
zv`g=%E;PG?m7~*kvQ@^@7n5S`A@B3>9apSaQFL<lr6>rTV@cOs9$)REF@ZkIpiUSW
zW%N{(Lg^<i^nM#Ti-RoPs!D;Vh+G=2U0cy1u7Uy*e{A$&UKoJ*m(Mh7?a!me%nfnP
z7Ym7TrX0J=&Y&zfD-AYjpX9r_xf5Xd#w#IZKS4EEEn5g0I;zfHR31IpK^LB&a6w0<
zxieN7n^;+(OaN<Jh3{I9%?n!w>TR1{)@7@yGJN18uBj81E=4I6DIRnj*yz??fCZ`7
zuwlH7VRbnHZiDuE1zx|>wBqrxa#Bnug~I$YsMKqAJVQ&mpLXHW=#D=3^W2P@;6#qT
z`5uF>&!VtYGUc0T7_u<K^v%lJdD{y$LmRU`kKtqZJ?HH`hU&I#f$$vto(o-;Xw3W3
zj($!yVGb%=+Y0R$Q#~Q9>I0!{rL<=xP>>Q<i1Sk$-N=zasi~e}i6FaBF=pG0{^KJ?
ztoxnP@kX(%=;1&vAnwt~jlM*g3N|6S#1kRWLj-%R$`ID0iaPzAk3un`zt}8#c)G*K
z5cPCi|3(Iik@u+}&ESs63`&zHxb$9Zdh06DRVJ1{X7ljdqmF3s^}Vg(gyUN6)5z3v
zVX8DKD2A0|*I=Lc3_+a=l88(~bpC+iVabN|?^`-X|D(tZTUsooB13XwmxdY1CWmNJ
zkU^^^Ra@;sk=ecMLQUJwbc46fDagOp;MzyR=Nb2|>M(~5d9Lb2!#QHD-_Th16KVTh
zuhjRCS|6ys?G7j*;F;I$+qd5U@J*?Cj~Unt`g*k4DARDR!ibg!BtH=;Halyhw*Y?*
zpk5QA{~5d&`2~kwc@DsxN_kMYKE^ry6KpICu`vm_Pzrfw+cPAqrcq*{+o|k3cczKl
z=XM8TPJ3OaH^jgqmLc(s6ycAH`UI*Mys2Q7a^pQ^v}k9OuK7{Cwq(a&gHO|}xV+Ee
zlCiOB2RWj?$LDqgldUAg^miq%DAV1IcQNM?jgQ^gVxyY}?mms|c}37$&$d^h>nTnh
zSjd-4{a!__d-qX9NHO+<MOLM1Xb^DSq!_vw&8P7=%(R-Def=dVf&*?qI*zeS=DP=c
zd(D>H{M8=iZLKjX(KeqeQkzu-f`aBV;ZTX^d3x#Lou7R9iDdLTF2&zfN_!~S-dOA}
zVz9^%N{&rc`b(au(W%oJOXT<ug4mr~(Iz-ETx7X`H0+Mwx^W|t(IrVM-W@^)WJbXq
zLUBQz*&XXu2yG-|4D2iPyi1E_UkVvd@;QM8gHx_2Lx;pcOP6wVCYig`wnakZP6~TY
zDEAjbmO&;8!x2p(_sU_B_rlB;MV_FreMjk^8(9NxOZy;QWxjph5s;1N)k<aOI0PSS
zP5`!etKTirX$R-Xn6f8ML;^^@5>?a|-bwKuebjWs=Wt>d0Pxnq#pa8zIdV(dgcHp)
ztt$4~W2-YoU$qjg6aW0YJXxN|X&Ib*fncEGj0_T%ypTC_o<c=cCYkC^eT8PGX>{=B
zvWJ@yL(qMHJ|{<*K;|Sw2dAojdtv6SKAWI*bv|qkvDjM@xr<EO?T~RVP3THOhGddi
z<EgCyOhuZ4fX9c=(y2VUgpM>cPsNn4R}p;*(3QZYp$H(!pH{!~tlm7QZII+Tgs#Rc
zyUF6`MEp8*#>7SxB%ttUg}<Eu7Sx?IDI6)7(HQeQHb>#qSeR43PmXPRFwfk5ZH>3>
z0d8TzOZWdJLbf~xf82=xvWhuEFHnJRPo`h)@hv~+`9AEsG5K?6$0^S-gorMv_Dhxr
z`PbK(bito3zlS$E`8pzz@$vBzvQtsHPS6S2Z!#qaGjYm{0>N(y&FC6o5nRzaGQust
zFJz`)9*yS6hz^O=<f*@u9lF3yf*B^kkZ)^!e&_(ONEGRX(;WuYj23ZsjH~~<_da7-
zLKkrI1}%FH0j?K)R3Qt6w>jJyJoQqjzBR;gsn~$T`B$M8Uo)t&o7qr;EE&KUZApjk
zx^S*4w!z2^Lu3&;JqZ@_p5Mm@fkO>njg9~IsmQVos`-8R4|A6V*^f*HFa#sn1H@DU
z??akeu)Q5<nIvWFY8c1{@~~Aerm`hUhn6X&T=E$8GAZ^#oRl0K_Mdc-W}ZHMf6WuE
zt)nC{p+n>lmSqYR9cYmIDI>l+)8D$TnwGJSuIhmw73<y(_V{2)&!8k%Dk4fDjYCl>
zW27?_%xy6*$=DogwV0*pKVU#aMa=i_^lI;rnvkwTgNmMgBPU;A8;nQCzw=uZjzOHF
zEtLv`l})3v#HbCq8BeJ~`i#V>hLJMvt8fyl$M(GKg`mR}k?1@Z`0KYdVm))e?iq#o
zHbP#=g?|00I*TSmGmW8>?;~Od;4a;%qE3V-bF!wyB3poQE&F-3(*D^@122;r2{}%x
zT1w;ud6=jLKJCguwUto>Qv%#E=L<$;+kUG@aTh7-pY!{b+8xkWbXw4Pt_%?1kf<i8
zV(NME=p}?YO#u{{IeYfzs}Jvs1yH^f>EizRfoGCZV6R)1agb`F&%uxI;)1z%2C02?
zqVso;da8Q1Ep)_O&6+#-^i&2p;CDv`vEL+2CWx_@@KfF>xI`4C8*zc41knHpBF!M#
zEDA)Ef`2FKT+HMu;?dJS8#{NT45JmoV5$Oir*2pr?nuoa%Jmfp9dstxEwRRm<m?_+
z7iRlVif*Id+*BwkdfL;h#k7W=#+=V<V&8<OpnsW~v!IdqL6aakup~vQRZibMhhp0J
z&ymFt<s&qtVU;d=g$`QQ36r2P;mac++EG>s24GM4#6ygzH(||YCTn%DwV4c75%jvx
z=mo#%9DwjQ3?zR-RDH$D>P--0B0&S|HEOh3McR8&-yiX|NH_vD22b)4ASsH9Lyxxq
zM!@F2?v0=IHK;ZRiN9D#JL;6kpovomT{h@@elo}-nl=;=g3UX3tb6T2ZWUMZ1KbaW
z>;50-er==n3(lQqeHJ<aOM)Z$yHbaMD8BS)yCSYX8SyG5>W=H{kdl1+thC(nnf*8S
z6gy62%{n*y`DdwXM_XnexJ0JKTphSX#}`+<osVpl29HEyf1GWuPMv(##Vy%4XPp^}
zTf2s<?_!MK%%w>n+A6zx(6;F1oYCjElk;v8-MtK5MC>TIGXA}$&F#s{`)7~FneHqt
ze*OCOb=c<}jbRT5i$8zxU_<xB?~n7e7E5w9Ywo&(1i#%+u6U<u8r5?*KAlR+hPVqu
zdM7R|-5JxiYI02cYzS~+VbN3TDHPTHK_#v;Vp2$N##iYV6U>97UbffyuyyL4Iix(C
z_iMZOx8FX${q^AefSR3i%EXCrk?cbMeh3o!<S6D|fYR*u{MgNu9ac?lflOR|{WNb3
zdsDYisk2cxZSB{47tskzmG^=dn#+DhmfyaW|JYL0WP|*EU7dX55onP{ZV)FlCj1oM
z7E4)=34Mha2TKW}*5&5ky5#`$Y}5v1hziL`i^~KTkHG<q2GQU<>+<&Zdl&u7CLH=|
z6V6<^bSXdJ{chKLsn77EoL!?f<pWsGb>RTBnZ&L&b`H!oW$YmWcTxKA(x3wzNbBTc
z|L^bku*MfN>hIORV~}yw5N-Tb>=vO={I;31*ZLMF<|^CEx?2|bJqB}d=bgw!&zt}L
zaMSO;Xl2FA%$g-0(OFa~=2eT}XZwJ<pAJZ|Y97@*VdNgM(E-akC^i%@&$jb4h-}Q<
z+8W*lZ2dZq;-3Ht2$yv9(HsU;e*3%}5cawDb=3=(+Ugc1*qbTKVw)ZK;p$q_-qyFY
z4l9v6<pT&x0AOrRot21SL-<ERs3<`>gFpqK?gpPQ`u3&#Kwg6{A&*f)Lc)Gf2%|Q!
z{To&E96)0hAo!d#Nkq5`Jn*T26xU_;(w!LFzlg`}vjNLb3WBNht|WUHHM>!7mH)M)
z`+hY>D1tcKt{?*7xJ2@8(HeGpmJkkFq<XlsHvkZ7i_R0S&d-&E1phZ`aVn6u@-2KP
zW$?u#H+*kaUf$gOWii%m3GURMmO9)4f%&N<85(0-1&S$z)`OOaL%B9fThQwx8Q~ky
z`mPCCBv~%BW_1p@UGn{bSXpsn3t38>Z_VO-7{jwl(ZkprGXw2%kjBJX;U~%KAwE34
zp+BWNRd8^kqYKP1avOhxKu>X2CaMO7)BaZiPy)<)!Px;hjwo#H6D&ti*j?XHJVnEX
z4I?M@{_Y)|((pBolHadOPum_Ljl>!gezeRYYVog=LslBehL~`O&5)u_iKM0%LZVq1
z07X^<i9034;k6t5E5sSn_zUNG?x>5ZIovogej2AcHwKc7Z8Cd^h1gv4Vh@L4&Ynmc
zS)q_jXcL-uiSQkT(OR7kecq=<76;f}-#+(ThI}R!hKnq$IgZU=)KMoy*BRjsn_XIW
zln7A^xE>uGIds*}bZGtYZU>qlvayJlUbKhVKvKFeje^aXoXT%s%zsR)`*qWx(!38y
zy>%HhBx!G$9Mh?T3w_WZLkR%=`#oAbgMV%^9w=F=zJ(MlpHkor3J0H@1K};*UHT6T
zZr>jF?;Ss}?bjfmI6XbTVg34Y?AR;omNWcO20e5>L@h$bl1RFL>cBkuBE)K|K%5l(
zf1OGLl5tSKnowJEWqX}}S*i11trYmPkr2q0#()6`+Sp9vNAnEmTs1}{;KmVl;5sSo
zu;*9%<->Rdy@Ca`&F>a(e;;_-ls$vKTbz{>clvV^lagyJ!>Mx7%K-9F7P(T{7w3Fd
zZg7Ez)U4+;E39o$IInpw3EzZ6TqxxU;@IJU^}<Qay1f|=xg<s$unGIW@vgbpy_^h{
z8vi+Bj{uXfYg?7EKuoHgBi}D%KA6G6{pva<evu(R;35r$xJAv&RrJJ}{%aqeGMWA*
z)Sls4{qgu61}4`eYN9_#<#kG;dWZKCKT)*Sx%>t<>;U5Z`F=IQV=bf(GI&L9!a-sS
z1|zP+h&9vrMlI%cUE{RA*n%UZl?O1KMk&w~sfiaXul<ACOwoo|ZI6F@gFT*-*a<g1
zASNzuBjwr~^8vqi{od@m6~5Qy3xjfQ!4@rBx(JORF7A?<c@KS7J`f>VQr{deAk@fC
zhCY^pjl3KnuXvIb19ddUf4>i2R(|0<Uri9$+B&s5<Icwn`>A>EZ9Lmwe*AN>qu0;B
zP1Jg$sO!@_Y2=?O6O3N3cAj6m#BSc>+_B0_=dAS}R`l%1sY~}8U3J`Kdfjm6I^Sar
zTBn6|yZ+00Kj%|FO^N;K!ppkFimv_sa<0yP@w8pH^K}~*uh4WI6dxN~TAXyqd0O=u
z*H`aD&y+Jwrv>r&B}b*jp>%Vk)5d1ydMGN&2e)pQ@Q<HaIj)PaNxS{1|EVm{mR-4~
z7<}~{PP4aFt=qO#_RHW>x7g|VdQbav&~W(EZ;N*-vax`XP5;1dr)PP*jXhJ&f7wtm
zkMXSjRDa^>8imtBCT6G&vR-mymJ{U0e_gw&h^4LU<n%l)FP-eNUKT!H3+SdFJ8tcP
zd#|IX9M|-yINQGY&YmeR&-`6njuKXC{fYm0oOMGb&>L&;<muBr<ghPOXh+{NaOr}z
zz8$90|83=bNhkZpjaEuZ%wa&f>q$jgSH1OR-<e`_FG;9;MxX{d2(2`R7UrM10oS2W
zCIC4$+nywt2*<NIT9>2m&ts=*A;bLrEjSJ^h+;(yBY5N(3T_o8!}TZkOGf^*sF7#I
zFdk#I%i_gpK+uH@q1D)ad(nj+Ww%Q``X=K@zJ9jr$}EN<N=XlbOu}~W?x^>AcOxiD
zz>OET_wO^!t?ZoN=F=;lmXvsvx|gnqAsIPyV`6G$P6BFdeXMwYUp}X{{#NrwB1vL1
z@P5{=9?(@pvn~dVi8qogod{agL@II)dyMaQATrV$!i3@6xpSAC{rV*eMZeCUU(6B|
z2GZZ9R)0Jrsaw%ahr|BKFOoEpl9GB`)v3<8e!b~LD<{KfnB|VTXhGBQKi`elb=i?Y
z*k3=hN7lTe2kl(%{gFU9Y!CAy94Abi*aD;NM-5?Cf?xS<*{u-A0&(iiE>o~;22Uvf
zQ#vc*A3L@3MTeT5x(MaH7$5~pTA~>{*Yt90W#z(Ott*D6&^OZRP?4Jpcx*;q>ZdoZ
zJo~S+DOh@go*I~%ny$U@^{y0(63v=tbe1<`g9R=t3-nBJjHlvKQBbVcf^Nu6$5zF`
za(1wVMRoNneqX#~N%PCam$tQFMM`Z!99kXv$1d#}=q+36a!2SF%h;{IqF7UL<_6qT
z8v<T4YwPxeW#=8+7AJ8tY2>Aa(3my1W0f*`dX)KEqG+&T(<ZxwhTm>+<qK7L;C>nP
z(f)<2-x7ROeS6&T;~BUKThutqknN|-VEEc!`{zAl@C?{>J6XllkIxsbDF@6+Cvz=a
z+j_y@j{m41DQ5eMBK*BJi%-{Xk!Bk>xH)LHzn=T2>Oc>WHh-EVGZ089LbvR)W5?oE
zr19s#&kDzdR$6>`dpvdUi#QJ1IYtKk29e?7obSJR+vjiA1v1EoF<`aq;l_*|eRXus
z9Y6Wz;Fex9hJJXT<#~Bd+jCL0>c2>OdZ?wAjlrPTSB7QWzBpylq*j3avl)}rpR{l1
z{gK}mLUFm~c%14l@{utl43>Z%OxLPR$oo{8mzq9);?!n|R+^;mo3e-coFny-;h$zx
zr?z!*adCpLc*bGYtXWRiO#2!-J3AA|b;H+gzHk1|1(pvrrU)`Iw=;iK(h84LcES2n
zZ;w~Op#~-<7m}wPK6EI+O0xwQf$-CE@7}$wqQm>%IKI&O!;7V<zHWN$1!)CiSbAbM
zQD}^7Sz*imi)PmO^#{dhQ|u61EaGJfTdQT?1y*Z62b^5VC$wh029Z_oPC)0u7GT|p
zZS~GAi;_T5>$??34;CeE={;+t#e@lOUyeL_6!;t~xIU}cmga4zqp1TJrLd^`)Ff@a
z>i1diUJg~PT>M#ol5b!6qHE3e2}D>!9|LKN@p6LC7<}?Dbzdj?Z!!qe3j2h<A9elu
z^)!Ip6^?4NO|Uua_pTu!AvUDiaw$qzrBz!mXeM_Dk7;9Fbu(}IoGyw}Tbq2YL~*Ib
z`Zc3uWT`FT^E@bj?}`X#AwK8BsVu0iD)#pFHe8ws-YfUxgGl{{j~_ptEc0;P3C>Xr
z(b{wHV2{aDru=FRTo4GzkxrdK68zGtUpJ;vU+ADPHu&A*J<72Og+3acHeWE*+&ob8
z1&*uve;@c>Ki*#qIMA1sBAlNzrqfR?tQ>!Ldw;=N-eX)`oYuVjBhg)dP;6KFJOziR
z81k;>iC&(BFW>IHn;u-9*1)U2m;k%M-mx=zOIna>|9-eg3}^|OA-TZ{MUua~#G22p
zsu~l}Z&us3ZDT0r&at=m;aQBvjT<MnDVuJf`Sa(mDW!?(e&Dtf!?C)rOYiDOMMc%S
ztN&_!AV<1$SVV-XtQIT|Elg@OjiB3gzI()po8HK^e1=b&G|8_`|K6gX`{ui(w1cht
z(RQD2=j*RS%9Osnsn375Zq#Rd<m<ms4C(!C6~6pgW{p?-_74;am49CM|GwnQy8LfV
z6#v^N|2sR1|JjrOnMW$M|8p7tbEE$=1^+Vz|1$+76aPOo1y>xH!c^_UoID-Lx8H0i
z((c<gg96^3y?eVn{ieFU^=ry;LKJ6;f=o2MSG-8<3jcn?o9#u{^YSvNkL*cG8X!Ht
zZ@v<wSB|QI<H%j7MS>7OPGS(vd$*H$1raw33ffQ=a5XSE1^@!g*n8SnAaY%UFUiXl
zjoV9Z&CjM(;^kHH<jE7A<B_>}d4iA_7@)_Q0mS%!{?ydP*@jvGyl0&CLIZ(s`kyt-
zxErRd<OFjegX%?}Z<y!0wqGyh@FxD2#qBWA$C}T}>Mzc3$YGbl`BAWAGN0*=KfeDf
zI^1T=myGMReb+k?lP6BxoZ0aI?Qey+mZ5Pt<?5c+1^--N!Iva(SKh!f-5mH*Z%Rs+
z`hptPd`>0Tq@J>JJum$0#_oK*F|&UB9ME06_a_j+T=LJ4uIP4Q`Im2rtVq3OQHt7@
zmzQ8H^XQe=`}lZFXx!Z!tUqL#?t_vINp~;zAji(WdbP1I=>cBn(2ghn=is36VYZH9
zND@sE24F7#q_=Nl0uAZM&n@RlB}QFfYfqgN`1z{+nhEZNXukH%TemuQD!g^~(-MR!
z-R>1Dw{C3<-*inewfb}@e|j&S`xZD38$^GhQrX=p7E7Ps6!dy!ryOpD%C8?>Xt1l{
z+Pb>wv@R6tSHB;VdrfgK#cc9q<;~NU&jmC}dMShST2f);Z$Q^fzpm^4i`)7hcHCwU
z6r4i4eS6n!PaYeHd{6*b$eHKH^za0PGQoXz0{L}`F{*g>03DW)ky9!PeeZ{k{9#Bb
z<AU~s53IlNu<*RbVLw)3=3qqhSB_H=D29*EdGF(q%)=bKbNQ3VcONfug#~6jL7_8k
z`4xapjR78By?0AtjD4m)SgDG-x_Vf2^t0~WYppClOR2vQXvm3w{2+_tp)JrfsMMj8
zl}}3Y4&R+*39>(A>DR+&Se$mt!WtB=CHj=ccSDsUljQCBTo7Ckre~lC?%#1O@&^+_
zRL808T#Mnrq^!~aFbIJn_=n9wYHEO+=;*~OS}PU@LmD$e{oq)9e7XRk`H9Z6wRLow
zF_ZUZGZa+%KQ7i#SGS>lhLDk8!lMv}uw%!L)y)GcbyWYl8MFJd8L2&{E%Yeg7JO1)
z$J|9WWYfQROKR8z0o3##uK=fOVg3I6L;#<2fK@h7y#^=zrf}5<M~R{RTULKi)w9?#
zWJ-3tJ|PXz6r~OL+eVt0hkL8P+LN#ii?-R141dymJn!x!<;x~Z3!H|306h$NS6MuU
zM+%TT;l;^~qgc28^hiYqW|I#8@OX@;540KsY=h^AqV}clPaZgwr2gV$)r*#BM>pyz
z*E#WjUgrd)%JwL8meJvpP7`>*iupW%7REs^B&Wi(ZasQj0!q8mcG~jCdx5K{K#VbP
zb}mnzMiqJahu8b`{UKn?JOU=Xvie%rr(X&m`-;MRHGKeTTkI6<J7=Qx;60&<93soa
zMYHa|uY7vA1%_uxPe&j(OQZxWCQi&iCuN1zuE~I`NGke0dh{rvc;^Zm3IjimSM;lE
z<?;TZVCr+`&GY-K-STd{_9X>R8#HK8mN~|wHv~?`f0Y>-X>bEI1qODq;nVnA3w(jM
zjSLKcPOs<W?8wfVf-1q{#fuHnJQtcxJu>}ttA(u2<%_XddaZeUzgr7a2j5v%yyMI=
z(5r&Q*G#jqDqyr`<Hv6V@4YuqO+&+%OKF8{+qUQANj>_6$GSd8sU-%U-+nMyYKF5C
z8nfUZYN}RppmI4-dT*|e+vmRRiGYSN8SOMa8>yqm5kB94@Swlvr}EG>v0#T=s9JJ#
zI=6Fsc{%}zzK_+<iq{)pbS4x93=B(5>`#wY3ra<6^1vdCHceUJ{q#_>CRVAB6{pzo
z)3<YVFnPhanhpE99blf*ZI`@r^wYGX@T#%h^RbDw4@7f4XerI$IQ;F{QL%0#pmYX=
zfw0I(wUgyLN)50w_v0A()%#?{xt{4z5anJJjvn7G@tmV8Z@1L5dd1Z&M_=_*H)6oz
zw;+n-WDUdDxUv<~+~(Xz^)_zyTs6fBV-pjTQ6buDJKbJoo|%NL9rWt&&eZ-ZE1u2P
z-*$h1V%PBm43#Ym>9P#{Pg-m1zqfw-Vo-GYhwAnfv7;v+n|<L>@64cit!C~x-O^#^
z$9402ZDPvI<`HW5XZxM*wWsl!T_HyU-Th+fYi*dSV$$W$?sEqgzx(UJyW`1kwhwUG
zP+XLhbg0TD^xemk*84sd6nmVo9-sCJ9@**aY)a=!$`=E?<Wo|#d+*q8O+!Yns`>5b
zU-tK75XKC=2+cx2D5$=!g1YOQv9KWF5B8!@1;oW+ls^nUu-U18HBj8S`@sYDR`bZl
zN|C4O1-e4xja3y=cV27)4IPO{Vjx8+RzfbVm^#M5;Gv9xyZ7u__s1R+V1)g-c5Rq+
z{#|5tpqJiE*r>x&JwE={s+HQ?RxMjj=Mpk4p-!L9$kul1q+XqGyz#r+J)g4uw#Dkz
zt2e%gIIkIHV6d0UWdo}*TfMv%p)a7pJ5o^_3-4F$a;SdRkK^SVWa645)Uo;yUZ0s5
z8=pqM=-!JLm-BWR)O@;l8S+KnJ{Fo6cMfiiBC$e|Xcd6FS994O7}%(H@7{`((y%9w
z9!;?6-&iSo1<egZMvU-^xYnUlSfjsTp=d##HqMv_jL%D{N6jH;x*gwYF`=chawip)
zTJ%b<+_Y&^erZwBPcZJnBO>g34Xk;{uvfnSxrGPMB9OcrO*8L_Q?@oXHu;7dz4kX{
zeZ1zwlZzRlP*QR)04Dzxalg!y6lU%dqOF9ewDu_97<P1oiOH|5KOUkh1mA9N|5~$V
z2Gokri|*yM|AWnXb=ewUJ{w#2PmWx^Y+18@cW&L<Hr2x0Yh*V3bB*|gx0BY;J=VZ(
zn1Mn2RTM#Hz=iCj+pE_pV$gffpZ9pY5-Vg7?n7Ky2xm8__G5Hljz9`%U`H8M9$znJ
z#J^r(gYij`M}5_m%pO0@-cwgzm<{A#T4fHUU1sp=Dk!A3Fs)y{e0d521)}ADA+p+d
zU{@t2wVne8D2rPCuNi;O?9Et?U)e0z9BUT2owh@6eaM=_;Z>%cWW(7oM_BnH(iwdA
zf0*&_$JO9*HK|5rIl;Sp7B<qr;yj*GRCkpasPHp>!mMf;Z3nApFW!ZAKuOMl76@O|
zLz9D8r4gjkm8)0(6n*fZQq!ij)(qYKw!Ddw*?r~>5&~N@pv>EysRK=9sKM!IxqeDa
ze7w<!5kF(06)CCHI8+}S!S>Ioxpx-nVO?L={M%>0Rpt#-7i?Mrt1|N<WsoCC3Ms|b
ztQz%|26*SLHn8ne+}@kdFDJ;}MP-m8a1W-<ylUH`Nt4w$y)!p%B%X5O<#;SgY{Q8=
z2Y2n<Nrv?)iyUE{SlKAAqA(K#oN->(Czh|lrxfDc{#mx^|6aC%EF00?gjWfvsrt$L
z8!OFS$H_PrcQ<wFjtv|BgcWpP)*Yh3T@*H5Up?^7M?<L(b@V0>m1Nqo7Bj0YEiJt=
zur&=h0!u8qbW%6Ox}0JA7!)vq!1(^pY{~UW2<$4sd1+n-IZ6xSe)zt94!vl|sJZ7q
z{(V?pa9Bb<)^Szjqh^wC*J6C9u&WHVvrR}!@~J@4^bD0*U!B=@cB*tnmsP%Th*?No
zn8iMYTVOi)Dp?XFKF+XfrV~e}x9#VsfVZ!a``+7YM1P(qjl<Q=rgiJqfByOBE|GPt
z*;jgXkcsF6@48bVvLnCVb$_>`4lQi*QEzV<KC))}fBxm6`Q-&sH)h${{WzW5>txEf
zoj(s9(p21|mFVT$x0<<bM7tcMKfO@e@}rZqcJHm-^DMa{1>iau4V$}=nAdIEG$FbT
z+i5yoa+|xWVi;DTp)g{ARTCC%V^fM>+~6tbLeHvLZ6y@oYPKJbdR|ZL^|y~%;)d95
z_S3|wjBuu7(ic1K;|d|l%iCM+l^gVxX1A6vU+%bcX-~(LHEU`!1#pE@R~3~G-MdHs
zUEH-(*qKYrsqFr9hv3X3Xe^*eHumf!zCAl5?aY}Ud6u=b3g!1@8m;E!&nsY2zq@&t
z&x<3!hAq-q(Kly%%?*^p8=En6W-SFqYc-0h>mOzQ{r4$Rwi?8Kv7k}+N|8`46SdwG
zkQffoS5j*Bf?k%>$k-TspwxK}h1BcQ#SS3{b$!1QvTg=$?_Ny(Ks=^=@$;$LKhO5x
zdwEK2mvOV?Wn4O7zPBFHylNr2P9aP^^(<#pmmo`cCBTXp*><*#&5tw`DuoVSG2x+e
z6Q%Ww;AwS<Hyt&q-g8$|u4)k^Zc}&uO)pmz*hY*Vom+D={LQQu|2fy&2CvXX!fj?~
ze7vq4AomWmUi`sDe^NYHv~0bHK0>-CHshOj{98{~Q**Rj&g?#_8;*}Iwo=NXJ^#at
zt}Nfx4Rl5LJcp<^(nglEQz!Fw|GCnIix)3Cdm0%Tsm&g0V6aR}S9ep>h!;0v>+(Yr
z<_0iWz@#v&dE`mgvLEZM8M;?4bh>w+K3!6a9j@>HLuP}lhP|VtbRv(m?)8%#lQfdh
z2Zf)Fx`E-TPU2g?e$?|I-7jhub^hTZddP+k<0s8VbAF9ravKgp#;3-CJZbvdZ!0-Y
zUarU}?Waln^Kq%vhuV52*TZw*8*~!Tt=WBFLIXbM+x=(P%76#B@rG%ts;V{vX-#-I
z+MV_94deUX<Hu@+1S_pcjK@~GLN_pWtN!G^H}H~P?!}AsCr_R{vb~9cL2a0^J!qTg
zW&=r>K}Qpuf03trIDO&5Mg-GJOuH|nx&7O=dG;UAA;Ve!8oFDdXxXymJ!ql5`t)fM
zIA)u!>7daD1|d3ZSUC)7G@6X84iE`u6;1o~_H>$U)FTM1cO1o#w2Ta2I;vVgr2f3b
z4<9{zSbOl`!HOZ+D0=kwe0%=p|9O7evIF3Lc)7y#nv)ydim18kTOr)$pL9=Fz1q1`
zSQ{kHU>+N~(eg^bJuK2zvU7M<K9)B|-(a|#myb_lCyMJEFK*&~g12t<hD2Yp(;b&A
z`Lc1BLG5dJk{(5+QZ@|gCRffrD?js<3-E1o|N8GOS71D5Oa=l92J`05RU6R3jj<?4
z;^UhKqSV#`XRPt2jki~~<3IdVXBV+ir=9wqdc;)q29H(^hA`8x6W#W);m+0`@Dl&R
zH+m;vh1Bgv85q3pzwDI?XI-@r2A#cTD>hx&(2IO2kV>b9jT+@m*A*M{aN_diNfF~Z
zgf;%p-drl*$j<W3zi{DK4unDh1cDT>!Jy`?Tl>;9yJ>j<FjZgtX$&URAE`4nmjW7L
z)0WuVM}=!ROe29&Nv#%WsiCKVfj#pGHDl(_nDK{*!K}UkBU!0gv_uJ4_xgIpR`(=U
zGB7y5qT*#oVxfCapZd~b){wYmD5UHewzjKz8$+RCkqROip(L{7el4|rgq4-X-yGq~
zQ#?LSzBc9$FP|YMyT^9Z-cd`o=$Fs>q!f-UJ#r&Pj{H#ptG|d%zZyEVpYx(cXW-EP
zpx|(L1q2w;raW@6H9r0s`xN!tSTA%jHNDHP(Ztb4&#hmc$Kb&y+>)&?JY0kT;eEI#
zHh1C63SZ62^QRXDiK|)kLKe^FF7bwts)jlfls~kbGNrSsY8^!{HamKJ#%F8nL^CFJ
zyFiNRtr$Y=$ppkB$BtchoFGflUWVDBFVKdL)C9--Kl+S|ia2~YkVt|Mr4^~w!>Z#3
zvugc&H(8;lIDp=uj)g!3VWilJ>9WyjyF2I_ytpvUTlg-K4~-38Yjv|<|Aeh^ucTzl
zQ=?6*d@TNWw__rb3~Ny6_i={<Uhyn8>q^vkjX^8k)<+-YEG(FFHgyzNAlU!;*Iydd
zY53G3W@cuLOp5ek9sr<=qJe~!1{N^&`=R}1lG6O4jd&P?_wc#ZvGsp4Jg<OLXK;Bp
zi7q|<dpxT@Il8zQ5`d0;Fv!5d?LQ8$i1Y~UrH)sxUR5Y?@m;_uLQ5;isb;V*6pF2*
z*3!Z#IF`ktE}be{HjRVc!VEb-S}HP6o?&Qihu*y#)4Vl=39aVEt+eO-hV;vi?B%`b
z;w3osS_tndN|UVzxmPw_yLPSeWeI=xJBE5xs?lU#S0Q1n@R&c_7rpKzZKp_FB#2G4
z+F9I^-H#MgBjOESo&j|8w0LjtU(hJ@`SZ_OnZw=O2BDv_rF0oc6{zhzH|T!7diClS
zxo^0EVcNePLSGsp{zMT%QR+Lor}arcc+kZI^>lTcBUBW2FY-v(1bmjMlaGaD81N1|
z_USY3*|-QE8N<+!tcE81`{*Jp3t-l7N7O9f<aF5ksw4Z4?mSGuj|$&`@^tgc-n?0}
zZCh)FX8iBGo(;EY1cwG@gCSDQdit7WAocD^`sqiif3~2&>Y=m2@ZmzO`ngdf>1QqP
zzKRi{b>tE#W&S<$Xs5v~I+^SL$MQO&$aai|>@+yZI&?nd4GrAZXLds-(5n|>y>>Ho
zp-WI_qOe1+UoYN1Xjx-8`35#NonF6rGh^;tZ?dH`r~_Pk%)c<9$3<G4*1MPlg@(3g
zW%k{dEWvAo^YfcJnPE$zleg?OedTBGcs2U^b&Kf9arJPLDD5Ub&|-ta?5ah_c}ecU
z)?6TG$sI;Ua(?SdoQ(p2^I#MbhhgGsak$3c>hHb3<lph=ter!54<Y1rL}XvFGA2fg
z>Dgwy@1cRFqemMN2bLi%t5|vB#9%t@Yt5hkyzwP6Y*u^FWReV;Nq$sZ$;~ygvT7sx
zRbTFYwu6H&X7(oqVK!Vry9Tr6yo9%+OWuGC-x2k+Ob>QB_-#F)Favb9Oa=vdR(}*i
zY8t#*=fQ9-`$bPpZZ5NG%LaLM^Gr$p9;-N?BG?4D8BF6t=Cz{~(+SN;9+ie08VWXH
zpS51@vc&cXU5_yzAyOV4BDv@JHYDXSClFpZ(q62!yC3Z8pN0?5u&N!!GA1l~SWnox
z=4xYW-?6q8buOiL?HUpwWZKeeSi<~A&cI~##NW*B{0EJoGxg5t%a<Dx?kZN2%ihBy
zU!hxidBDYsqr^C4Icc0QF~L-{#`kmy>LYgCY?;i|CQ<xBfjF)faq^eN3L)1E!&-I<
zK**M+7ws)I|NJrjzKKkS1vKz+M@8xs>wb?JX{Rr)^z*A<QB`Fta|zB^XlQ6WyK|y7
zjS|_@ml(9~x#V9#cklT?P+>!wxq5a^QD^xie0O`lNFw{`Fd*$Od|AGiv|*aj!$#P0
z?Xz<=L^!&$u^Tfy8q6Y`G_Xi|u&BR;t~An{)U%+gFF;fxQie2BkmL4Z+%TVAq^dTa
zqej&yp!$nMWlpbwVSz0M{*#Ef8_*{4Cz8iMDM-J2VfqGToLE*~hnBuhw5;flGBwTF
zBqgVp2wo^8<z`Cmq4-4ak|Hv=CNxO3C!$fT#77me{jXfTs(#fCH*}WlSD`>`CBfxs
zbJ0$ScdN;+&&LwInJk!);#}O2<Xz|U;%09N3Gs0VAiPZj!O+=Wv*MYpwQOq9c%^Ow
zq+L-_F`XTwd{Nz#?)g6s9MB*nPt)UX<`pC;A*u$hQc|>M&*NIM{c1kvgN_~3W+IhY
z8Uco!C^As&cKA=bcI;?NXzrsk+XImwKahHbtLF^8)J{1B<~~jenco!GJhHN);vRRy
zxb&q<<C;pCKJ;ivB3w<xJuE^xYic%pS9-Ta3`<hKetn-Ew=!N}EE!u-3q$`GN#s59
zc(m5rjv6&;`ho=kSlHb}T{t*3r0aJ*UL5IH_VVR#eSLp8MQ&^P;K!WkBADL|LA*9>
zXo?`y3_4byd<Jgz7bGKjm7ja<+Axqb?alRN18e2qyjf#~YhGt|#td5IgMJ(j<(Bxo
zHfASh`h?njw6zW9%t1<b&=Dr0;h9d;)Y}diVmJY)&i0Pk8LPib<<+lbXP>6g!Jwlp
zJO8&PO@6}gbjs?FE@(`YEj`*VOR_u1J*bRfkeN0u1zifEc-qi7p?)cbMlOJvF=-%R
zN02+263~7d`|&gZA1KN&4&Lq}R<0L*9qMLddYHPcsUI1g?D27cwEo(FMPS@dS~}y{
zn^Md8eaH}nVmeG;Kwovl9VbOEtJy$$b#C}tP$036e%eKLcnIy#88wcta*mukL=rmD
z#-&UxW)&&x{#hPthW;UMgJXgqMi)-)TAGN?q@{)DJ3GvsD>q2>4$87h(|Wbd$BmQ7
zW4pd*J8AVg+owa=nU^Db$$pg2`g+G;&(ffw1Oc|aAl|Rs=<+&^Uo$K~Jb>oaz5Uc0
z&$Ti)Z@iqk9x+J~O<E(H?YC=NTv{4PXNi~=rmS|qKPobMo0e@I622c4gwd9C^G<&B
z=Iz_H>(?u-e7A55g|ewV%4-mVX2Sulu3o#Qv%}~Q=9zSe2O2qWdX(&PpA4{ud0kai
z?Rzz0GpHZn36z>QuLC0X*rJ~F^wn>#XZ0X*-@d<&964gsY(J4{rw$zyY!5@W(k}j-
z)43armC*TDv^r}+*lpRm^;s+`6zH?WpX-8x%pW)h5Fev;)M@mH5kqh#J~~~M)B?ZX
zI?8?Q>SIC-qz$E0Rvd$BGaE$kBGpFQ+wVDW;8)r-%XaVEx9{<W{eF})>xee&Gt`BT
zrc%qIB&m(!!fLitAqz$wvn~~cHN3O4SFf7){sihEr24rLqi0>jvK&DpLdmoIQs1D~
z89w}r#sFB2%Ro?mL-1l#V$DYJv4Q;Dk`Rp<3kpxq>PGRFZ`k)XxAOBXS8uJ!7y=_B
zBl9nR(r+lQ_9$)2vO7^$>7b(WV0HHi?r)#9Vq}QMd(YWe4+(qEJI|Uq^B%D5>fqoe
zC@N{z8^ducKe6czm{vi`vT;q1O*mxL3jDO^E1NR5qTuLWJyBPj<h9dlWW(>`YYR}7
z!L&OXrXfXA7u?cUdm?%u`SHh&rBQ~T^z6g+-JGxlGzBV-96fq<@kon0v<bHab?Hy2
za83{32#zoFe15K9KaE_e7vUNG{tXD$)44@oK;yJ?=kAkvNcg2)QGb8*x(g43UPLr+
z-h2xKk0)o*ZnRh;>ok_Ha{8}7$cEbgVM+o;n+~KGfOgf>ea8b!c8Q-<1E$TI^tO7|
z(ds}+ufqK>uM*%Werwij4FWCh>&`_{=rR~J%Fm1WS>C*-s6knDf&W2#WlOry52GOv
z%d2Go05mn0A)>PfsyO+u`LY0XG)|!vlO~dTXh-;NX!P$5X4ngj{g@rV)2Ni-rHER9
zrAH_QVoe4N7+{|nxc?Y$XF63zFJIp#Rk;1X7(PSEVb_(SxMRnz0HS>0iejPp{)ww@
zm`^&6(aJ0xgEsD#ty?4Cv>^}w6Twd}43Uh>h<ejTOpL+#5hF(YJ>D<mgr!c04)<28
zO_<fSrmWHPXm!uCqor~Y9z}ZeJLtvH(qS4C1}`r8jntxNA-Y@MXC}{@n(EOOjV(tf
zr_%sj*F)~&Pp^Q>y3vQA{!!m<`t+5gGO*r<J(I<smg2fQ_k-66pYM*B;s3+fo5%H>
zcmMw}w$WgaEXk6xW+_4>VWP69Qbe>^lC`4JVi{|Zb|pnht5OkJ%2o<V(IyH-i%5l#
z^u0fG%{4yP@1I|{+ck4d)cf^%F6TVX<2=qe;%EvlDS7~m%=WlW#+b^A*^y-!5PfyO
zp;ERM4-#VKgLY`UjLB1SS+wZS1%Z<XzoLDT6kv87V;$^cF+Z=U8ssv~iEq&Tl<f1V
zwm2auRhhW|H=JDe;-^nVR#aiz7~X`TtTXR$<3YUkhXQGbb@1Tu>BJ?M9lt8?*}Hf3
z=FMa66~!q@Khm^nN_2vk$Y%KTE^6_EgqTCv-XW1tAtWI^KVKUDLSxmcK{O1KcX#TP
z7S(xQTNDM-Td}d{=~}XG!zhzA+h5#hLz=q-K6uO_sW#V0{edUf6~xLCwS|A&%8=O`
zpbX7GZ|~4;ZN_wu-2dzHtYQtppNGCM|6%00&i=l>`ymkyUFIL>6BE7M1fNOVu#ae?
zjEw9oxPVnwR(}v~_37JJz(*1aH)t;B+Vb}{-dI)8t#uy9k4HS&N?QLWLYT!Acp<F0
zm66ejHdr_4S2V23!Ehx+K|h*JX%JC7g7H3n{J6%PIUOMu&d0~kp!?T2dYts1V$*5F
zh!Hwj{y{-Ud7{<irupOD6uZF{0YyY){2+MxK%&7#ma&}ggK?*6_fa^In}tx|6eZE)
zCQUjpZ|E#S+hfO$Eeg%vJM;7nWJH>Z07#I&2%54wN}N4=mWX6|io0M+)h^YvcjdYE
z#KnzegzphtAA?ysik^A&P6%pvh7S`_0Nw;zpbcwLSyd$}V8uZNMdQg&>pc`kKb-Jj
zxa|Yj`8!JV!}@x(iLQNVmq~gZY6gCb;E&cJt10<ll-4QC7DU!;8Vc&FdaK~VX92t9
zV<~Ap6bKHNWWd~+gI=DVAd-+Cs=b9{T|7ge&n+)*v~|@_oDyxBVEBo&gK04~Y>29`
z)seHP;8EE6xy4!>MDNpQ&g|tByI^v_F}I;&|EhWUvQ5vPJ;U5h;!WEN=S$BCPpz?j
zjH9}+>3KgOfZn&`K(jM2TXH`z1a)kxr<VIc2@Mgo{`}J1MmW}9qK;wo#$oPVe*fL0
zKM2JkvrOcpuo2qnQXg~ZU!qA{zta`Z=|nhr_VVRZOSg)CP!C*i6KyM;8r~ccVvY81
zhI?g7k=^Q?Y#hr-wH{6MY4B+Zjr{OTV)*v=&m!yl^M{_QOp9xfy-LqMCh+acH95n3
z^>%<CX&gn5Fq2AS@}QlGu=W{`8M`G#98ojTVH;C^SY$@2j}B@mNp&%Ko$WvK^rHUs
zN>*OT=m6IV?jr@TdbpH?FKA#9W4%X#<{KP0iCXEh*V~dY!Lv@s@evhQG2e$>etZpo
z6i9M$$kDGP^t~Mh(D&reyTVVEZY2maHRkZ$i3iiSe<Rj!lxW_oH^$;7(L*mRr&M+v
zfG=!Y32FC3)=1Ds;-}`mzSg?3Us0DFhDM<SoKsL-`<R#*DOz0~X4iGIq5%MM9ZgJ1
zb*D{Yt39U3(&4+lB@Y@w<)i>WK3l7*szeLTeMgSW4=S+cto0&5*;mqWkufg(FbD2X
z!_%ivM}m=j)SUqmI;F!-zwZVylZL7FeyGA!Q8=Q}M+c5yGjFlF#b2TAehJG)${}?T
zJ&*4&Muv6Ok(KGwXLu5~`XG(3v<9R?H(`?p7cE6%f>~@!Y{%U_T^<j=9>RTw2h{zv
zUaFX^%OmDb3eq>B^wFa~NrH>+^KB&j{r!(m+B|@sFuK*MQN<WECHs2w%!;e@d1NxJ
z2BQTYF_8+~HTURZsf6k(@?nP&Pz{<gWm!ThH*y^V>)qVk?xcud_xA1Ih*1qjZ01x5
ztHEzK4TdFRG4%q5g$F)&<i%Z8Ocn#Lx(PHucdj(`Awz~#R#ukx8|8Oj$??k;I|m0H
zgVX{j1R6`Pf-dgsLZek1WK4Ln(aFP3g|J(Kowun}QBl$4maT>w@4JJJp*HjcDX8^I
zxcB_IES|FchZL_T(55=CuN7Urcs49-H5(ANZ6$D2F66tn&%^(w_CJ;!$Teah)<xQ)
z1|4*Aa%ylinKqWuPoe<yP<fa@6m)-<!d)z~bmY0@8^=O#{?3gZ9r^K~y5+rQX?)7h
zuMjo5oJdo=`kMr8bp9m%O=p_i;ulJFb#;P)(NrU8i8(IsN8WKiCA?-hSkWLj_SO?@
z0>dgKNOaIcq|lI_+3lflcWw>#)q#XUVW!l5(z-_y@b-V7IWq(sE%5><FCr1f!R(?7
z6fD*?J!`#i<d(N+u6Av(XgmEK?P4VnW2|X5sAe@Lp;PD1dy=;Q*wBF;?=6z4)&d@)
zKukx-hPmwg!pUQUxw$+5NnjO;8(7^sI1^DdyYGz?QwHmt3gC)`9D=a}nj9t%JR29z
z)jG18UM0SFz!jPS;Ssp-z0?fPIKAiw&WxTuGl(7+hcA#tZACP*k^wd-0y47?kxC>v
z_lT+Oi;eq}r6x8uCD$)e(z`<oa+_H^jX+0H*<-`u&sL#Wkl00YUlB7<;|b-of97co
zDvuG}jjD6n#v_VJ;=E|C`O~z|G|(1dtK4>2SQ=OAynaS(b(~gmU!1>`xli9B20Bqn
zsP_<23QS>ejHy0>A2{|FVHou9tGXD|JQ^k3MpDA~(jJoMy*tu>vWKKrRb}NVs<lUE
z*YO#Hk=#k(zgsy?)iHwy&)D|cFbSZnq=?$S8S~_KupVu$nHY{}dbReR&iwgl;KgC4
zqeqXPJY|Zs-Sfd?i4JbVWobTxr}K%ERI~dafv@bbmB&6sxbmX8trdAs-Sz4gh(~k|
zCkRZ)wziSrIMCr$Kd1q5Z^*G?R9xVJMfOMe&=&+QxF_ggwH`ftu3ooJw2i!Z?_OsZ
zk-ex!?=_@2e2ThpVl8-7d<Z<EI5-8LW?7Ku>>`*H39bb~3dMrs(B63HRIP@Ja4dl6
z`4ZdA64`N0<KJweNp(<aExHtlnKCtZ^r(9fjR~#+ShHlwW95da4J0)uJAa>SYGwwK
zIY_?o_MJQJK>x(&2fVzNq@<Q6?EL;kiC^-U)#lA6<+ag@ykW0m)_LE>i?%^!oT?#T
zWelX+H~+CV`?p2SwZfEarR7HVNtjDT#p5(YBA)Fvxa<~9v0!9E46Vu9zJSrbY*#18
zG{_H-M1u1N5JfDF8-U$^@#2L<$BqX~PYzR6?F(B<gwx~It5>J+=!BoAc+JY<OL1Rh
zPSY0W4<X|bG%gGlSLgu5$ng^=Zi6V<IbOl*o=Zm&>`fREZD>mcX<>qeBqaRSiifgw
zb_VfLu&0cJk?7sq&vdNXNrfRpeuKi5+f<x18g<>NC-IEFxkY@G=Q(F9I*uN6U$_az
z@xIb{hvNv53XB~I%SKyyU}}<XhIi$VGdIV?{=^FW(_*EmX-Eiigw7J3B@UBAlXiFj
zz)rK1I85+V(a)OrJB{Dtb8j`t9Mdt-RcSN@te3qC5t>=}9nN5(XBkmxL;oE-b7sTl
z$7hcS{fGV0`3n~=6#!p(ti(QMe&}W=jw=e5kw^o<=m*`VcZ%{Hb93`pCE&8O`%=2X
z2);P%%>r%hOzRfFwG=CE`jCV3x=B@UxD=jtf@aH)<}^DnQW|~b>ibV6on#y=oCwfj
z>BzMf5Tcq7i1utRK0F!BLsd9z0w(K%aIf4b;}G?Nrg+r{elrctM1w4D(Q+RFL7!5d
z!SQZ><dQjVn1cTRheg%aFdo5gzkY@?Dy<+K+mJ?FJECt3&~cQ{;{#DBR9+>M!yOK#
zu_&s-g<eUwplr)YB1L=-ZdEFTyz=}PHpCYEX%x2`<0VDyu)?+<XnPJ@fBp8&H$yc6
zLMV80u)n{N$D52GYiRX)*+zUo#WzRjBs~v;yN}5UsSB)aY!r1<FzXL|?y_5YK@~iV
z--9|7i&1KK;V%`e%~OZwkt$G2?daN+1LdIImH7>?l<=ND!C>x1dQp1X4{}7K$fMV7
z-};(Tvfh~_-c0LDv|uJ<68UjjLxG9Qi00%RvJK>tv;>w+gV@k>7yz>O{vMQZA5~S}
zk57R#>j<i#`JH`y#Zgz+`_}KFPDV@v<}ZP_9z`+z8AH@(awA4)hh=Zj-ubmYOh7i0
z8IeyKB56EvtGM{;jko^nrf+}rCyQhHKYsjJp+WSfDUIj4kNsS5{Z#PFYv~oX8`Y<i
zl|R-WrN2>KA))z`9}OO#gg(XQsHzwSl0*O0OqK6@)P-bfGNT*rRS?H5#Z79gUbX62
z?KAAgVPf>*(@K$Z_9E(AqDKR(N7ra(?H#nd7s4;UzzSTW<@AmM#LcYx(GvU*WNWDv
zFGSRsS6@<&j$7WEmPmS$Wf%x4jLqoymYuHkIXJqo;6@y1+E!we!xZL+ICnlYe4z0Z
zf%#j%BKpu)aSxn_>tvFdf>`-*oYy_P5lyxY`Jsa2xYFBvY-E2iRM6n2-~HFZ@pw;J
zAWME>QqKCB1R#Lfud&s!SR8`<5Zaf8`I=~x7Tr_0DKDxQ15RR|Yz1}Ozc;zG>11U{
z2$@picInH?&QPG|nIN1~H=cp6xhoO|0r6<QB>5!io~3Wh_co_!ifMUrxe=G|Lu2FE
z3yHUx)wPGa*PW3u+2=1_%-Zptt|}s}d)SVQyyt@P0U^=RuDf>aatw|m9)yH~lN<J#
z!DUx2<Sw}iXa52NFBim^7@g;bpPVMieSCUNTy4@nS^$@ngV_izdu<nnuyU_gp3x`b
z!cJYg`q~7x`w^FD$sK-CTRV2;<0UzN&7S>=6F)Z3dJ`$Vf|MIKZs=z1mVhCpVXY9b
zb^87H?$7NcnNcO{22adAzbhDvATQ%FcUdcuNr%T?Eix78WQL-=z#|F%>F?irBJ#AQ
zTgM-yeDiHA3zIg=K=8k;syamGGVJJ~qeu5&y*ibU#+_Kfd&_={+sIT^PR=}pe5(gm
zE&O9?6Ts#Ssl4O#o6D`BFU<^6#V?U0dwY93-lg@)YM`|co}ad+0sNmPj&<$7H#dtp
z-81i&CR=wz9J!DF^SY_-VlC7s7@gD?B3h0^VPT=xfb8m+>K89|krKro$_3-NR+wI8
z!$e|U_wHzZ<Do-`G}Sk2PiD+v`By1(Jc?<PAoXFMw8Jz%=H%wswEfrkKgZh(u2n*?
z{PayY3IX{>RbU{Y^V1Z=J5784anD>C$kPT4+g?IQ$)<n*Ff0Czp224sQFb%putmce
z&X;I`t6Qm`Z$9>$P%YqeE?jg?8E`5!HMMZS)a{D6M!iZU!GQ<?R?bV}Lqdr1neGiA
zKPqku`l?ORaQ5u|2eTeL@SZ~dUV}&(`#ElXPU|VXVtH1Zn(9_w7QDhnWK`N7_ReTr
z_QC<Tv2*EJ4K0KicV*>Ph4s9#=;F28405w8Bv9S7B*YN7^x-QcT27+^y@9w$)0plv
z+QtDSA@{I4Wn4!j$r+PraG~6&Dhzi>{n%*3ytK6TL`fg&>u1uP&rS^&O@?BNwe@X2
z0y3a|mo>)QM+3tNQO5XWo7mV)_(7{<<EGoUZhd%_CK+bp<+q=~W9>j*qqodsw2lBO
z#)PBrVA6K;W=PKW@dYEe$xP~s#rLeal#p<XP96xrBnet&X_tgvp)sD$wP-C2r4G@F
zD};A0Om&&gu7~9&GjT;E1~XGAHMx_XF2|j&nF~~8n?8JgxBTLYZZt0J$DozNj*bLB
zm^-<mrL8&I$COrauk_S|6Q+9!t8N_ZbN{u-FRV;)Jj8S_?bw}RXV01<E9lgv3l4lL
z>a0^|mVCRk%E8X=1_OE$7Sa`mB+IR}!A|?h&Yj_6qg$H|bVN7pPSfy%rm0*dT0hPY
zoB7xL2!>kaO14`QpOB!t{yPvs<VVS=`W(HVNeB}e>`wms(98uEsh9FTUA;~Wz7CZt
zGu{pX=LuK(bGGe1R(78`YgQc-?vy?w%bZDw1*=*(vqDzIQc4VRFvYu1rXvY&0M6_}
z8}@@RlY)1?(e(Bur&>74hLhvh=7<*jk0O^0i(h9xdv*sReGxT@Y@1v0#SOjDts6v1
z+Kb>la*08FHO)O3)Fo}lPynvFK>7L{L=l7GT}PH~_PidEXp-uz^Ze}=;BBT;mw}$N
z`8-9mdo0tu{m~7WWsvkfg1okNE%t)ITpz0SG3OU?>|!M`YBFNw^(lzy+gz*l4lwbs
z{QOWFT7cxj1)U0z1T^lkXEq%)a_z@Q+eL*kJ4btyvFHa{J$dQU0_7E<0oM<H1ZN(f
zyj4!b>Z=+be<v=`sQ+{?I(n0Hz{HIslM+kYc?S!Y3-dAZb+}v23hl&)XWYbmi@eAi
znVH&=a(USNghxt9eP&x(#T@h*-GdW6jj3&#eqLlhdppe2Uh=wP^xH1CaSSY3cVajN
z|A42>h$Z3F&K^XFraA0o?%D8gSP>IpQ*Sf{zeGdwJEFFJnS_e)^y3r_M%xSW4Wdxj
zbxyCPpWo_WqSL{C;_#y8?n=-;%BR1#PvWleV}-hvyv<+NOw&43nU*U5Sl1PSr%q5X
zRT*d~4l|dm-2UWh_+OMu>GWvY!mLn<8$_)lSTs&?>`UX9#owM$ev#Se0D|dF;`ERH
zP&G9Tb#;Ov&C`8Gsg+?^=luHdG|$)eU`Ef1IuN0>Lm=b}ItIP+2I)8K-dE{>vxEu!
zlF3_MNC>fL!6`%=c6N3zIIV?D+llWzSTBuMlJf1Nl>PtUoZcd)kW~D}E$bvHxt9w?
z*Z0N!BBhJ*BBC=*kLlUh>>C~tkeiPFs}L{~ma-5=lLOdB0<LvLPVGhs!J>%Z_u_`7
zV%}NlR=COABm?F5-RBc#5)oSWN?&_vZT0}jGS@-^X^`#y<mBYSf>ak5p`ym!ci)#w
zXnB_&gsV1gT(Rnh@R9J=<IFRTskKaBJY0%IRZnJADIRvgkp0=C#~vss>B)lG$~h1d
zdRQMQsn9rV_*KLEJi3D97e_5#W%sUK67!CaJN+mg4pD%HwlA7h4zZuU)o)cp>SHV8
zqFS?BV(UBIXp-4Y@0$^?0-x(9n%f#><%%~#%ylC<80ijY1~u7fShYtaj8PEe5aMRu
zWwq0k5CZAlP8@0c@L|V$C5x7Vy^h%QS>y*wZcV<x$wkn2PH3J)UvoYAK-*cmzL-ZL
z()#3a?AV~AJL_KUt4#L@X5FOU&W`?0KsLAJvOV8@ntl2Yi<FjaKa8cf_tbMXvv#iC
zuqR>qX4TE=_npT(7%@9wuJ&C&0U%lnAv%#A8;-1E$SdmB4lek!)w2$af&n1P95Q)w
z9|#A}yNQSOg`FmYH`BzdhrH}K=8x*FD|jSA1J7F-9Ksun(YaG3X&6}!kzfkFBsX#V
z_}eh0bx5##+nH@(NomhCLu5j0c>MOX*b?H9i{<&a3PumN1D#7Zkw~edNGsCf$1CWJ
zTVzh;O@Wm_jx&!IObQ@NBQb2)Fk!*~!0595j7^Fu|BD=BYzwWC`N{>zh_O%O1WUft
zi9UBu=<69>*dC5u(c|sk7TTXnUveX6F{HFZ;s{ls-5nC4ofVP1j8*%>s2eTmUi0S8
zy$uz0qE?9<Noy_}X*Ar^un~*02*LK!+Lk0lTRW4=lg)*J@DN)e<b(|o#a27obb;WY
zg0UY9=vUL&&~SgpCgF|~<f9Egfs8?Ff7AWGT-aaou}Ia+tF?lcd>#`8;Qj(amCSkx
zX}}E|^|a@3g_4qzed;?jmU+t%LBDnGA~!O~y-DXcPIBv)M?iUv9F4crjm-%C<=cmn
z?akbwj(~xd$|1ND;p<7bY!xD4gK+fVC+iROp7qf54rgbiZ6N6k8n^4nh3O6^i9sq(
zdv_gy96^bj5GWZK7>KhdM6mtU?8Yq(&#6f;IGU}@_-G86Nu+z=^L5tS3$nC*V*5wo
zCdMf#b>FJ1>#2K}0y{|3Aq98o;jZ^^296e%YmCh^?yW-n$Y8G;Gasj;3fe`%r-4;k
zo4$yi&Dvpla>V)a(}%HkErT|#YNkds?K80zrF?B$#nYtu)TE=MND#UY*O{lKb%Ujv
z`_YlscDHbttx|b6-scXBW3g#<NWxHvQ>qU+Tp?sibY$aDDZ=6j6^Lmmg$rI4ws%5u
z^YhbTdq)=Spo{v&EE9^pyL%p;h-eOR95qAxIwb0zq)<Urk4IZqQ!k+tHa?Q%54?p!
z!2xD@%0EBo!vel|`EobD+BV$qEIv$zYtS<uDgW+*t<$B6*1YZz5N7YN`s=TDBpfu=
zR^R%&ZSVG?$hlR=@#xW_YtY=;@rbd6R?~aF43<BgB0afR{GX9diagh1qf@b_c{Q3*
z99=2bgHq+Q#x82Viy4~3^|w3)3y>f=1Qvd-;4hss=fE%NIZKK<B)L4@8E5jkde5=z
zXZBHW$k@l=T1R0_30PXILgJ`#q+C~#$zr0GbrrPPt06mk@6Yv2oOMuHbB|Hy<wdE(
zx5fT2G0a)Ba$AX%m&u&n*prvsIoMgtpi#GlFeCMQy(HjU<ee*ajz2Z!YKe5d?QN39
z8!PUO*x6<+8S3(;iPJe?hL^Xjj&-kDvC7*5SN-I2poxioO1Eg{aVC{svp@4hCq^NS
zgdaCs=SW^oj>of){-sAu28J9z-UmUT&K;q2g4Kw;>GorxNcNF}@7}RpJI6m|Tf?z~
z-f5<JuRt$8<tjBTO)f2C3tnkeUs!#+L;Sn)@^%!L2n9gGLFucJzA;c*Wf(2F0bnr^
zgy;6h^Kl>ijIEc&o9<f{H=Y538rx*W1U$<V%k=?t^kGXi)LTeM3jn_NX==El(4<28
zD3~T2cO5t|xX1KbDvGusYV6)v^|&KOVtBnHnYE>JmRSTa#itOFTbBNdW~GFL1W&1v
z@(3TMPFx#5lM>v{C#UaRY)kF<5A1@Rx&Nh_=UbQP>TVmIppBu{8z2>Kr~;uzA8)Dn
zgt*@mdM7z&cxNU;hItm$k<b{K>3vXr$}b9BU9XzwdSzv0TPq(8?miv56_DAhj!HlR
zUcU-8n&0_78`L1`vXJuO<}^?M!94E=>k9S2t64=yyHxANn`&wYCXQM+1A;a0WLGj;
z3U!2y`auY?VsEG>j;H*cdnpJ{E~P1*aLF=i#@@=WtXxOpLKfJTr84JX_Dj6-7Tl1W
zQ@Ot4@?}$ODhDOK-li%Bi^Usv_Dnpk?^AobX42_?efw%pS>v5VDsI$sCDkEAX61g>
zFWOVm?Iuyev48+5{F`>4--iv{BkDm;e8!6iT=Y{+_*du@>1b(2CQfS2A%K}gN%En<
z3f{@{#Aq_hzrSeSpg^D%?*bP2-p}V$V0$Z)t%|v7h^CP}MjvF7)qV;Nq()r|1kI0V
zJ(u~(K0c(9c?F$VF$*b9OVZnE9WmXI<k(AuIC7(phl{#xEx{%FRen|PAYv57gKrq6
z^W@de*G42{L(f=!ejlo8;gWg=Xze*B=W7+yu)kdWT|(%ZOwT4$>ZtV!q#LoZ)rWMO
zzxc2|(~1>GEXzvy)7BXs@|T+_jlo_CX&3VI^G&B#G!OnuPwoF~I4AWsmgP>-)upty
z?7J=57(cztTFe-?vpz-LTOpm&PjCJcAQT?4zBh?1e|hJRl^(ixDb(`KNc$0}8K5~r
z_lUc@-yPLpvy})NKQLu+H61R6ik%}M%7TqgP7pdsvRiGfWA!3?h@sV?-R76rJVx@N
z{hirW>xO&nv8Wy1`C6@AbWDwz^+PX(rY;8eN~B_Hvga?j_u~%{3S6l%fLzk57_|}g
z%1y!)O*LYpZn5_d`}p*t;(coOfogVtiiyGhDZkLXYnm6b{?Vy6Fm*#-5efTcs0gCy
zaL8atd<4ROsZF$eGCaN+W|pvN&bx~6M#<Tt3-uk*lNF=vs%G*zPUcj}%+dR14z3DX
z#uT`VS?3Oe%U@9jAV(-Ni5WZ-JYBD_GTP2v$15v;V1}!A;a4)93c+*H0D<&;3csok
zC8;FsnlsJ5z8!hXM_XnG_#{ph<CKGH3$Y=t?{LQ>E=HJ;!hHm**&UkqVke_F@8Fh9
zi*MbUS--N2F!1(aI`P$9I(hdI4a?#cuQ%GmV273LBolI_aE-@E4~Jh$Nwwyak{pMW
zpgT;K3?x)X3B;I-Yc?ZsM6u^zt5&o$gdAjC=!enMRb2<poh4Fw@d@o+gdQ2T;%Ng#
znfsyS57r{_sPA7CJd22UmAQFneSgBsTPP8?U@S5VrYR`2CzSSb%W|I8b(eBt=k*H^
zuX##++*ESS$ZW-w&bh7HSPITWvC+heMrYre&Ffw(+C9wXcKAFTJk`RbWZRGa<==yv
z7U6>DTgmk8yBfRD@4-;go>^W}KZM*)SBhE}Y+L?$Lw#Fx4zC>k($Ud5B=vG*;rSU>
zjc*IOp|6ljx_D6&bNg4IQ_ck4VA4uU>m9hH+tUKZR_rk$r7$wzv1kRjkEpL#ypNC1
z(>DgbRBNKk7$!=dsM64nluJqofdKdXB7A?mHFJe#)T>zRj`}8wXraJ*i8k;D2|p~y
z4aq8^!+d$bGr?`3;ZVDqj;xF0CMO!V=T<~AFRajDsYf+-y?f7|LtfR$ZfoVgI^2_r
zen>4?!a{$!ypU(sr?u~0I}p@7t@+NKJ3W$j?5i{j`#*YFFPPcGC)ywYtV4f&o6%&t
ze+68>J$nIz=RJF6aEweUReSd6K_z#UsriZtuu&Q~!0s|Kk`f?hPn$n87A{(}=uo+k
z`;k)5(SO0)&9t&oq`oowNgcT*AE`ee%2End0e+o%|6V4K5&dcnfTmMw)zkGOB__H<
zm<C_Ez{iSk^uwo5?IlFT4Uug+$Z<lTzaFP!m4$`ECc~$fw+?Y;veV4X$G&sgw=nOf
zd&Q0+0y(5*n|?m3AcO~#cf1cwsG8fZef!hc9GxTgLy$cJsHCbK!$iaQ$vZ#C9ArpX
zd&r<JYrLnAA3vT@^x#o3Gf@*S#LUlAFMn1s9v=4pi`a@$g(kWsm|iM!f0Gc>LbP@?
zCm3ew-$EdUh$`VA=HGwA1H$37w-N9?gVfbmZhQRtt{kkY&|=)XYhfEXTI+MI%L}K~
z%eRW`rf63U2^Q4QTOU43sL?akaUK^RoD)-&SJAygZX(HgJG;pw0uN6p1-<J1xI#Y%
zQf5h76-x|Y1QhB38gpxmQTKRWRx~bMd;pgi`Tb%oy&))6kH}Rb13L4k;M5~9@DHNN
z?@;I?vlbf|U$Oa}FNqS96OQB!g>sxTH}{IB3(ZsDyR&x$1<HmejD2O$M^aKUUKAul
zP-sgBD>6!_o3^oZT)ZfgjhyxWVT6*?*KgP$dfp;E8u8)!Hj61<&RX6^T2q=n^&p;r
zLFV<N<sZv^TX+7aBw7T*T1V)s?+!)y*E4S^5=m9YhR}*sa><pJ(RX|iat%RU?b;@*
zORIp0_*frqRvHPqHWHwXyIdhLOV9CcDqIQEAV<bKcIeuF_+dTFtPthLth~M~(kwA(
zj&IG1t*%3w=1;PJK1dAv%~7c5Q91G>Kb`29_maypharQPlk0(kyU~M-$-6HfghGPt
z$L0TK=klAFvz5bbZtKo$u|tLUOJAF%8Dn<N_(&Q`pa@Y1R?+2;KfI+<qfCJUhD?*&
zJ?dFHwWx>n$Q-*m-Cn8<H|Z1eYB@psJgn8;zP)16kBplzK`Qltm}x~D?4DDmI7;pp
zYje+?*hXWh*Gn9k=fm|zX;Ij@QT1<6)C(Q`hlYmR#5tUS-K1>Hu&tK<Q+M{(=K|1g
zy?1iDC~rZ{qe%i3L_>Mf-*m>0eEr=*TUbQf?E6JVi~Wy|-^ak?vzL#0dV5oYzqowC
z8KPF<Jz<HrQZE}{nx204#s-gS>E69N5)Ci@LRfqR7a4-!NHb{s(4n(m$GxRaXxoan
zOD+XUT26EMaqZ4SA8&8H7s>adp+7`8KT@`*tnA6?4SK5)5RMb;-`vPb-z1aa4s#kk
zVWE)_w|^&K`>IYh&3YcC>r7Sbg*GasY-OtR=tGGnzm1*ua8EuLy4TwP3q!*`6mH20
z@ocn3n|s&(=s)>b!FN_IVjkENK}wtVCD&cyk`6ahxDU}glm7`6O_Qezdq?}Ry6sC+
zk6H+S_#yAVMcp0&NBWNM07WOU3z9~A*xx94PO(Gn2bAJ+;h_6Skce?7OK|JPjX~M*
zB)>Z`nrX?Ks1xH>x24c-Hyqe-sm_AXW=HNfob`s@o)@In7mfLdct>EyUUq8;dGi}h
z*(U6#XxZ=Rj)g-&)0Y-R3ZF^Czgd2{58SX|awkug3dn{7=h6*+#h<_K*Fa-@Gs=GG
z(!KBCxpU_l-sStRz?L9a6>Hi1>fSk9_37P`+VW%S71}>RlStI2PA6onYbm<g@ZtFT
zA1!5ZnM1qF`5N{(a_->8&kA9_kCyd(b}`iTLXyGri+a5@XIVvtgk8{IHh1n;zr)ux
z=f0aCtrH!gqPOVCXf5-m=9d+Y<9}E7+L)j=u)ybSK(@cNdd0NNgAX3qJC(2`%#K?Z
zU`=686^F=ZSp{BC1wfsao~|Q`yhE@9>KCr2gT6078JP8FxG>@)^)01nXJmHggM+HQ
z7OLlf9R^&kMfRftHnf?36#i3;eEtT<`ntM0p!x@Nc_iORFY`9fPm>RSiqxXWdKLc0
zU`J}kCVZ93^5HK)U}9Kjmr-qLx04XeJm14oBTU~aTb*SA9T1=kbD*6|z#;0684*5d
zRs&RuCF+dyFUfQnTD30Y`STTw^IMj@Ei82B&HV3ubhC6u%-Z97E!)Gl+?t515~cFC
z9Xnjgm4NwAh`2qYk~lw!jS`_dpZ~>1>{L}%wYY3BmlQ=5Prash`-Op%7lY^@_%^J)
zM8K6<Qc_|!Q1P|3{CH8Ixu)zw(6I9*n6?X4;XO}rTF#;FH{JQ#{L&ql82Qx^H!`0e
zS>NG}*I2{BM!j|CC)a|LUcY>~+WvH=sM%j5sZO4v^6|py^9zi9Urd|M<dy>O;fr6L
zZlgb<<!`+<=3Qq-u_SzH43$Lu!-u&^dV87-`W$h-+=&G1Y^_h&NHNR$z(D8WOo}xN
z#(!Hv_oeI9yHEQpq?msG-EPZ~4SWK5d}LJ#k!m?3N2nu>!aQuVvC)Ig5i{rz_EN_*
zKY_9mFxwK_QyG8om-2}kjz})SA3mYwhk$7Cd|r?<>_#}%ctA-V;YY<(Ti{t=Ypz2j
zq5zl514_s_b8y3XOoROdm&6QB-Q;brAB_3p>h4~^elYiWOIbzj`}eVc;j;m8hViBX
z(NbO(%5T=x)Qp7D0dQS{N{r?6PMni>K?)^45-IJnYj*M6n2S*DCl2T-L_+w8X?fIR
znya-`P+dMY<;zU8hL+E-T%<Z-5YCY;u3|;dygcF6K0*erqe7ptR5rf(LLJBS$h69b
z_VmzELC`=dAd;0dGuCs0dW7M<AJa1ql?ajlr$@<CZ7NUUdqy%&-1B3)%;rkik#A_b
zq8UXtTuEv1umypS#EGRu?D_Sb1u+c?VSy)4>YvhRvk^E=Y1<<*+Io1IB9iv}eF!dH
zq$62vbD2c4hx)HgdG=O=U#I08744(Nm4wEd<d%NprlS@;E=uQtb%>p{#TaI2W$)9f
zV$^P8fhI59?fInP!!tTXlF^(;^3(o>sgb=u-mTw6t975YLfg2Kycw9B-Td%Wqs8oD
z*S)Pn)$Z;^1f&D3b|_be6MBMjj`@A3th$Uxi?;|rJ}Dg#GD*7r{y`p_gxxX&Sw_a5
zeA%!}&R$DpluI|@vj35Wxx)m_6itbafvi`_(LizrIsC38jmc0LG4Q9yuMZ3EjbJ0g
zE|#AdAtyHzhYe`IBsFlLAg0!HsmW-Z6cy2vCSB_I(5rsO*)x=4sDwV7biHLebIl@&
zviiE-Rpp@35My4iDXh+o+hL!UO}=#fvz^|H&nez6F6!%)#z|CpU3E4S*N3m<U6jQH
z*}v(V_}(@5y5tJ%u-}`yxa*$-gvjn4k)!7Y%4ziDR<7WoJs9PKw14&X-63RtuGnS_
z8dUO+7U1og#4(3Z#(qPdD=Kib8^`=jb*c|Zam?mfl20-#W`^yQm6~W(cuZlie$~o8
zwM2jcledP%Z^SDsBPtBt*?XkI(4p!dZcWEjU>34N#+-$%OzhtFLSo_)7U6YORV2u=
z8vWav=*+2{+!LEq>?<|(0hR^gR*@`8yK`qahX8Aw&vz`=t{p}}aq^Wb)fn|PvNF~o
zOIO-!a`p8{x*VyfBD1JMIWsLyiVNcyKYxX=epbZ@hE59XO>2-f4o5_%A?*1@T)lSV
zlog`&9sL^|aQn>v_KBLcFFHD!y*Yh%z|I;E>jQuP9l<a0d~aKIa@^`Y;@6O29WiCf
z)0&C`6x`g&`PhrZC}#k)6Td{vTcs0RZ;bd->IuaZW?_4vjS`zt$ZwEN%E}}I7{%_i
z4&Hj-oB{&8=iODsh@g7pn(PYJBbvi6?bJzh#w?cxDq~7h8ISq0V~Vde6Xki$jf;#P
zzO1f}BG#%VJ>e%W?i^{eMWF87X%)mUo1QtpIy6iVI`P2!rU&D*Bj5<dd{z1NScI=*
zLYJLiHG`GTt}fH@9_~@?w9A`mteYk-__1=SLs;PLfCYcM_u#~G+08d-*aG&JUEXq9
z2@{x9G<nDXs*P-#jT4{3N<Szud2p|BjIR2m`unxT1S{j0mo^MwMk$^&oDCj{t`bQ_
z9&)CW8!NKAQrzPxbg-8I7KTE^AG)*U04&oybhINEozjSECevXxF=@@|WbYLR7>sUS
z7vD&?l8o%^>`DjDKsfie5_xNq!<Y^2I&@gGe1|2?{T}?u({jL;@Ms5$UR5{x&l@TZ
z;74mTa0{D17jHINvF2>N`Atvn=LV!k6QlYMDjodK5C`+!psdi&krdSzhv@ftS5tGr
zrb_qv$K1J3ncF8XED_j$+?Xp`>J>PQi_}Iw7*(PJ%}pKkIq-f25M8F2Mm`_etA1vr
zrJ3R^biz-`n)&8S_2>~YEXZyq)TvgUKZy0s?z^I93TNiL>eAzKwqAjto(Jw%3?J2t
z*?8bcy`}=HdGJ|ttxI~Zw3|VwQ2-)&Fy$)scj69oQ%k>ja|Se!9)aQj)g9Y6P+lg^
z8|5DB&<d{E{k&;_^dcrqUm)5(gAP4{hJHr6!Az#*oH5Q>UyNewbabeK!nE_z>+xV8
zVaAM}90|kMb(WM|LJdIHo<fLN<>J~fzm>Uj20DcjjE28ef(Bh722taWLdjc;f{`g`
zrK6f5K~J$o=5O~!_Fc_(k-L%U?Txov5C0mVYJK*|sGXOQw>+=;`kfDpL@7QoMvT+S
zPy=BEP*aAw;1jSs{7NbwymQyC2H0(@MJpbTr+SI`*N^SSntrUzNtZLvr!T@Ibarla
zXRbu(G?whJr=&pOJndZ2oDjhFQZyX5qT)cZ_u!ik3>`;*?GLb)wvF)TG9&sqBHB{f
zQkujx(xt*3l0!X>to!=6>gX#dxw!AgUQT(;(3q|yG9UE8#v9}GJ))yG_y!mI>UKDh
zI6gGMAfjJY8BQKO9F@<DJwri8BdC>KAsb+Q0?%&=InZzNmQ(6q%X@0)VthU!P?0Hh
zFW2ob_niHLvwuXM{o~qM1!ZMj5~ovO5#ry0Jr`5Qr{55ImlgNkP_mZhr(c)b*jy04
zk=<4M@F^OX2XYssHq*8Z7&|sDW~9>GKXuz%xgMhrsQ5b89uhN#l>G7beQ8u-;p$G}
z_8QblEL$jM#(e|Gh_oXE8t*@Tykz0DPu?r-Uba6YBWCLL>fc{c+x?nW2*F3XvwL-Y
z#ryZ0YKA?3JG^c<dJ6!y2X&3n#1d}-XN%z5@c*=a45KBgD3l&Q#Tn7i9FpB0p?}y)
z*?ZIZb$T_eRcLn?jYG7=Xp0hk?5+Yc*)j0Z<T+ud{fWmnKk@Pv!`zW?=YnW1(wvH7
z-;7RwmNGsXj@<XsrAq>#p~`CCt{q+Ej3(@W%)3CZJz~ANkP&&^rhh*L0v1>n6iD}C
zzk9x;N8vy&ZY(wcV>y(!--7*`s4nVl4{NHJ`(o_YQMp3M>n$p`5bMqd85HnwAK^=f
z6K8^|3>bpTPbjFMU4}FW1=)|H1Hpufg+Brp)@r)*#Jc2W#o%Q$h1ICLu55dKI503!
zjO9aUI+D@P^qYy%U!m08+-wUo>Ga`d$0>FnPN9>D;PBZyI7CsZRZUi=&M|uVrP#X3
zG1mvZeeGvrfOWq>9+AacKrnWgDTEATXH?{pPgReHEnPXhBx&RFi!`?oLMD0I^(+<c
zA7i~$W~uKoHb}TYH(2H0MOWoP3o}N)d{Q2lhwNrxQFGa9&#^J)@8U-QB1g!}{{_0l
zS-{B(3uhGZNEa_Wai_@$x>@lU4&_RjCJV`KEukLnB85`TH=LHJ=Oc<WTw!)kGg8qg
zaP*}pT0<3mfr89<<VZEfxaEfDh%=;RD@Y&!f{$;cLzRa}Qh}QyaHX?161j1OJf>`~
zIevQCKty0Oxu8o$o?&P9ZXCVgce`zg9OX2tK%d^55jK@reP@5y7A4nTB~7q_wzTP{
z9s)EHnVXhHC1gVjT%d`BEZQwkseb*UxTI$tT&7y=sPew~c#d|;=G|@E$2e?m<S<zx
zn--YJ>I6oLwBqJE(N){tXxYmrO&I0T%Q{URyI&8v=(=Y~mo8-|>`UDJ{oucMjV=E8
zaB8i&T@VGEk#Gc_A2TFJ!*|9J3WTegP<Ek$Sb9R^C;*9OQ`i$Y2BxGM=bm}{?s2$#
zo^|+v>({R{);tO?+pk#kD$0EIqH?bkN(Dlp$T7<Ev(wIZ%SGy+s6Y4d)Xm5m^AMW<
zQQ*~G^RSfmr}4)^$;JP%;@UFQZTO0@XI@8Alp>CEPWM5H&ie&er8D&gH_GM)d<hhD
zAER97o?A>dOw5&M%$tX|{ioumT-#5KgB^kAhIz{)0>izGT<+&{kJEf)!L^}YBj)UI
z6z!N5J(k~!Z0t2c_s(Tm{4co0$Y#bXC+zr|)&AuTVFiq(3n%L8+a{QNRs<htaNS_8
zj*jp?SxHCwtL9cOqi<5ff&F@%9+J4rr?oWyS>S|~Hpuo^uJ*OuYfYIbR-V<c@4x|>
z+Qrk>{rEWCC?OQ1e^y{9z_@29GPNoIsKHn_i$l1g2p;1b5XfyKP}MIu*yL>Rs9^#Q
z7k!Bg54x9NJ&j)r=u5XAij}_q(5E!{^5sfqx#mR2rHs_3{b)45-gk3Q0g@_#)$3de
z!Cb;mO#57Dwx&rxV$lpnfF5>r^)g?frD9*8Ph{#^8lK8XddxvI5T{QuZ6+=AGa2JI
zC{<@vV0A@BIDz~Ez@$nNJpJIjS3^dG8J`~!o@jnEwEU#rT%VCX;k}==O<4Xu^*^1i
zB{GI>TmC^YJb#0-zp~UKC+`@C2dbZT`gd3TbUP^K+sd_h)?>o1)f-2WRx#@MH#;7F
z<;&xInp(p}M8G{*KD!+MuCpK=lm{W^M02$mkogff8QwX9af2El(j{=zM}Nn8N_*%$
ze0s{FUb3eGqoAkVRw<&VljQG!<N*L$KZ7iiWZM(RoT&PQ61tkiQnzbkUz=sE)5<F;
zQJ=f#nCd>_kD|0#$l;ylO9L*5vg9>oO|B^x!oEHTa>04(ty{P5?1PiKNXS}ok`R4v
zppwUETWsJ^3=5Ry_+sQVu8LDlh|%>amNi3ywh1#m=Ke#!(ogS-mtsyX3)1*Pm*`CA
z%-{{4D7GW@nh48}JGm3gt;%`Ep;dX?&X_!y>(Q%Q%k~F3e_JoBX7{L2x<?OFMK!R-
zF%ue7kD{EJ1~rf1&X-(Y@TsBUvG6nmJebguniOxzh10aa&)c#pvf2Ji5u+^Y8~0Gz
zm6#wus5DbHbu<gx`lXSg%-r8Z$-q*(vMz~Z#wSfA@CVE3c;XQgYeG!;TZ2Zu&fik)
z#3oIWVWM$*R2eO}9;Ey3x5&*!^pN=QI1$$s+JvUvg>I-w-$+35six?0)L3#LY(m0N
z6XRj3oU=s9`8duEug^ei$D%+jO49H;C#EH)zk{8!L`Pl~FpNq?5_sd%DWB5EOpG@!
zbrNzyLin|AK(A)K-8F6j>P}aTv=X632*y{Q4H`0RIo%_Q+CL|DKj!DR)Hi56VfN*d
z$Bvz%P4e)$*?z%<r0d|e(vi&@Lv<&t)+~C9-(F)jY*={5_kND?Ndnh}wCsiSjKvr9
zDZ}HOwSPeTmlwNYYGT)0A`*b*$yE~*>EaTG20q1{Y3t&~vZOte%4;v7))U^(f7woh
z-#c|Wzb=)QocAxE%!@1A^?m<8#ulu&RmWFxeSV}IH&{Qs@A9I{ThEB`+HMCR_W&$K
z=jB-R8&i^}1v->AOOCGHX*j51weI`iZ7FVOJfgNX0iUHieu*_n-6XxA%+d+pu_l}H
z3gD_X_D_ZIGTVK!9F{JG74BOm966RodU^^9>xYV8j{BEh4XkDu>3GQv^Mlk>^&b`W
z;L_`X&y<{B`z$So8yumc(|G0U{=fh3Qzqas_B89lSIXy1^RJ)hMu;Gp(=q;Cf7K%N
z8Y<=)e<p6E+$X!f0T#71=C^ttFl&nLvbQX0mRmx73}-$9HD0<MTC&6L?w45nVfF{i
zt6n}2!)aJfgrar|u#PiIOt%WmFYQCYn=ZifBEn^}VunqG!5E*lA48~gZTK`i8s)E9
zZNotd36+7q`=@Wr@|;5Washp<*)wE`F^a!u?CA90sdu~j)4pqU{pZgU(?!)N+Ltb)
zt`wXT;`a1H%1MOF{mE}C`YpvJeEss}xb5`k?20f)IZU%{zJxy1((U@SYtVBi)?XB^
z4@fsIopf$4h$dHU6A5{mB_CB<P;&jTZl=2`3AZA-shQ0c(_54_A<dsdxRmszKXULj
zWvqswk;VHZfGQ?S7xv+nL}T*S?0$TKX^wiqPM`gi#^5MKZ~l4bmUsdw)@_e}hq_Za
z>_j!WaiQH*keAo;ME)k+o6qRw6K`8rbP!QAXZyjF86DcSi-55)a()kL@wYuHS{uV=
z2URy-R&f4S6>j{vOQr!0`%ti(x>5BPMGRPcKBR^Llx-3Rt;f_3xH7Jo6Lk)Y)~}4a
zI4xnr7er(isChDLtr#3@^5b-qcrz?qKGx^RM)-;QPaaK!58LG7vBh#*=H5WjkakmP
z%E>p$S8d-8oq9D;b{a@IL3pM&&QQ53J2wx#)Nae}XL4&>&i=GW{PU|Xd`(gN-2laJ
zbkDak^q4?bIawx}_Ysq|@vuLmF0JJ&CBujMC7f9eYGuY^+?)Z{qI|tWhk$+Sk#H&k
zZs(obNLCP+=^0AC=S2IB1KtohOxol}XF_5YgW!VFQWL6L99{%wUa!A5YR&VpBtpZ8
zGNx~P|K*Dv_h$hW3wz@!NO3?X;*)3lW;SqRF>iaM4#xH)3`Hfd!(D9*R3S}EPt$Rc
zdJXxim7O->3F<$5$nac7yYM5$N=iz7yKWce8z4>HNO}@Le-TLBeE*xQDo~T?>d4dI
z%g$aXV)pj}LZ>i}!YbN=BfKW{3|lpld?fHbE2Qj9NXP{GeT&nGp}ZfZ+~7uvBa+QZ
zpKR~<_Sq_oZ2+aGX>C4HVE}l)p%@|b!3W;g*3`s+Ci|6vM_-?AqJ@qqMxzeJGk&!F
z-3o6gW%{J9`s|X$b(%l}2iF0TZ0kx7BW|DP0p;3f$!EAW6SK@(>6Fo@d`=Q?uF7%F
z>}?(iau(~Puh8bJ=iYPt+<(68jtdk)rxjg0yUX(HaedWbM{J@0yNk~*Z@pb3SIW;t
zy0rW#TG^4GSrv(_KPz~;374i@O;Q0=HQas0l~tD8s8h^A2zUXvuH86uBKTW>%a-$`
z#?Qj?0o_fn;5v_TtidcJ;A#+^j(-DZx_f_D*?_8x(-^hTnK|(M3i-@V!_*(pqvbR)
zbY`DM`oST(H3+^02Um^yDCNs5Nl3(7Xal2+?oO>***jYh6m)#@q`7auK7AtauW!?O
zn|Q;!Q+e47D2ZIK8sHg#t#<zLb*<S^#(^KV?U41B>nf&_-)DQFppV&%?PP$X??O*_
zS}KYb@#X9bTH_T|5dgjmxbYvMQIBUqc~8KztKYYL_axGb5~9t4JIM3(gR0_id&PbQ
z^2Z7P)yEIjzF=*sFv(qEhDZGbu2<U@Oy!Er$uq>30IRJ5O-MkpVn!{ZcoQ!Y%V$CT
z{KzFzw8~fgq&|K6ba<C1ihl;>VIwF62!Zt4(DI|%^Zn?`JkcD?GEYZ5G9c_zp_zLo
z`eV9n3XYEYyo;#&U}JPpOZeH;mc}ZGxF71#NWX$l8AJc_w*#L2_V>PhVWZ|v1=r7e
z`%y$UxLX~arX6+*8Yt^-eM*Q9bOYrT6@ogo-?=jy>PiHT^r%Lxat@+q9jI%~U6`gJ
zSqrjxgDVufuKKRdjT!s;#fwwqNR1HJ0Cpc!;xmC3cNF>+PmTr4V}YK}ssLG?H=4$U
z@qs$kPn8tQ2%lwijdYL3f*!K6=P1HhN7^xRPh{@(f+0A$OT&)`7^A+>JGV@w8J5}e
z{dE)c^aT^#Pe3A5-5!ZFGWwyPEW3ng$RRA*gjI%NTI*I7(%D@7pR5u5=oU_=lX=CS
zYY)to*YhC^g$b8$Hd*u$l=|@VGEjIFCQGIa7V7@Z-R{e{6UQ3L4*<nDqR>2XPpA{%
z6&88Y^=P!1?VYYJ(n3I%fp(76w6`9%%*+vUt0jN`J*VYI<8)+RVac2C9Svuz9j|0J
zp=^{HoX0(bh<niK%+N-re2d--xg7^OuCfxKN_3ahp8aSvojUU3+jo|F1ZdKS)Uqk?
zmtjvfpmwz^O}P$w9aOclV*p9=^>jb*l&75z5|p>Qr|<YlqA%pmX4Wq&wXcvZyH(uu
zT+gc|<{Wc!2PD>EYsWu339TKne!pG|Yie^c96CjMpWa=!zGivX5F*iA%MF8WWux<O
z0o#?wdF&-66^cXZSM2iTWyi!=FL<59hYs1VJ74d=HYmQ*kw`z`ikKw4R!7U0a}v47
z%l9|~llNyknc%mvZ>MMoHt)pvt7&)dqEOX0u-$WxWIj+VV9oJl?msPKPC|HFD*h1J
zb)cmdo(G(}DQeIxas@|P%mxg7T{?zv86M-YVyua$K<i?I2Nh&S;Q+~c&epPpPXhBS
zY-m`(F}{wQa;UxDnCny$qs*;#U3r51#@!n0l{2F>-rNs-9rBO4lt|Db!7VbXW@<mZ
zpZxL-FstLP9=pW#t)@#@Qoi`hp$h*SAlVC@?0*8JpiU7bOF<f<#1%^A>2JTObn6^3
zg#-;oiv!doidYq+&v8MaZCnDHI3iUToeAmsQF_A3J$5P~iv=Q@*LT<a_hiotz`1&G
z6nc%%3E_9Q$%7-<K)SvfspXXo53;c6k(}(Rz1`FoK{)9?cY)UG*g+3;5`p~0Vy=e1
zCj=(hoM~oin@iNFN?UV3xuFMKx5!BVU~(~K=U{vb<xe>T0|i7<12a2)g1j@1j$cKa
zz*tUsMfD?#?I+mNv$kup7H~{P!WQe_rC;v4@(d3oH<vE&jm0i+uPr&pL!Q`}O2Ry9
zR}?jcFo|O(O_~&4O^BKC78<D+CJ3$PI@sCBwoxF1r${ozSvb8bO5V0AH|?@)uU=s+
zyphc_iX_f~sn=FM^FJqIRkE0xO+!s~g_9HS`$N60){)oO8J5%frE#?J{nc9jiY;bn
z$;_F1W>b_1BWqs#75VQ*V?#>V!f`3)#mW50t_$Vi4<oxRA;Td!FcgxH`JmRYm5yeQ
zNfMml-S5$HLqW%T5mxpI1stC$b7qmvmd=J?G{Z&8n4vUrb$6;bxucwncG74Izni%C
z^;Bx7U#7TGI=f{M7DQxZyAD)W)CL@JQ+;WfI`DFf>(~@($Q(pQD+elpmW1j;n+IAE
z*=On(^-~<}TLJLY?RwlXWxZgVIM<E!wd-*TF+rkmE{a<uA68UXySl{T?P${P#Sxjh
zkPiKn%?}DLALL*Fco*&_22DCjK}}Hvryu1l`a<%dQG{AJa$o(6KG0+}JH3NqFAjA2
z=uxD3m*v*?SGIWY*`C0jOFN4A(pEhK5w+WbL;kN<w;Wx`#H&9JtRE;{|GBZzWu4zb
zuS|K?I5{~va?8tGBNvDK4e~IveKhu}O-<oqVEiLWNk!<~{NZ*tL1EJpGe#^jb%z|O
zDAGpIP@xoWW!$}6;bD!UHKRt=ZvdlB(l?U$Nc^hXq3@CbemT~q(<}DM2VVtuOJ~FW
zcA>OWgXdK#{&8xR%QDe$0WYL;rT6x19a0yIAvIb47%cBPPBnCQASrWBnu2!Y74@C=
z_HZK()W#<VIejj&X|F{-Dwb=to@DnjBvgWNW$_4WBOuD^>A=ejwNP%V;e=8EZt&@S
z{p2G7|9z)0ux!v&^Enkyym=3KY!DeKEl>Q-86M|s@;F!W=J491z?DGLwacbe=@Wp>
z8I$4j4Ek!lv@X{-nvg3oLU~Y&vcj}=$%_9u+Y-C_uMxQP`8*LE)}?LiOHF1hMF%pn
zT7qAvrrP|g{m)~4VT&a((vd&2MSoL>QY+QX%cy?8{AJup2uf><jx&~*HFa2Crh0Hr
z=Fy5d2p{H8?Yee9$u^lb&e~UiUyNwjXxN?WI?Ag1g8A=hVzvY_=0Q4+CBCwdx*!_s
z=qI^_;GA_x$T`%+-&K5?%E2cY<RuR^Tm@UAXxY}hP07B0UO*!G79stEDOW^k6!io~
z&Lxvd>~4QKmB$rBjq;%0T5wSAJ!E8}fdUa&Ne3D)FKMqwNtWm#FOnq-cPzXp)h6%b
zkaAyj$I?|B)H>D;FRJ^V@vaT?#&*U035-AkE|@oN$AVsq{-ta36(u8da>d3$Z^)EU
zNmPYrla`giIWe+pY_!hYCFDFWQgQG4o0vv7v2B#+M?8OzMeP$h)&BL*YwR*U4e0GR
zX;Yw*I;Gp9R3@y#m@u7qz{0JRTj(=l$<Vpk%(0SCo424_cn>Xh#lDwI1rPY~-iV(u
zwTf-Eo|z-#4Md{qRT;IWu`n;XWD1QIm&_8+k7QvnzEe?sjR>AMVn7qK1KOC6`4`j-
zDxl-!G48Ut8xcJ5%O;D=WVB?_mr5M&_u*7mF)ZVOr?oJT?w*ft!@w#UKDvBT-zA(8
zapniSUGB@b&?a2sMi14|fdPS->LS%}m>4MhWsbm=>2Vy1Xfnb^i&u^mSs%jLVR<n|
zk6)Rgd>Hg<vlho)Li?{7dSNsg=~u?*&c#+{9Ilu6FX7D@(uDG!fd4h?-?#7ji4W%?
zi_N3`^AVbecqRAg!qXLvQC6<^c=-g!Q>+%~U~+oqKDXkWoSca<NInLcA-rDyZ2Put
zo(LeiMDseySwvLZ%qOcPmj}lK&X)j?ACUqWt)9ZZ;*6FOg(QZkX?r4~DsgVwxbgXw
zyr^AOe5wk`K{MmC^ZMc!6i4Z_`_Q6Vc;%nHm5|r~yqnLpe+;=UuMII=Kv`G$>(@T(
zE9e}VOC8jat@xKb&d0nH1Npi0dYDL2D3Z8KG(V8)-#>83p2$pvZjnQ~ZI{q+-b$kg
zCq^UqD=+0vLT_E2=P$YIlV{6lukV{h;$SZ5Rv(<DA{p`R>(}*EiA?Nrc4z_F8lqE<
zUy7&vyJyKuM2bcr?z;ZiygZKZMey8_K1wq=Cz;+)Yieqw0BN)vfS|~aGNT?n7NUUp
zfcFZe`}MnLdPhTg$UkXp35jhdshW#otq@q|vdJox($bS)+~YU2tPF`=dEIimx>u(6
z`UVb)ME-H20|C&?#1R@}TzGlDRxb@_8~BSZ{U?uG@&+T{bFlu6{lB~vEjUCmV`oGQ
zTge`Y{;SQTGp9IyIWJ!&%n56(VpF*&`VIZu^FWThq@~Y_j6MDy9Cj%t_AZ%5@)<~$
zj*;wJ|EUgz1F!8zh0sE?VuX4|ZhbO3pbq=b=4r$}CWp?N2|b)=sEAnTix)-wvA;rn
z>#M(+t+&CAR9YU9=pWf4R1RGV{vj3ku)n>M*|yBz`jdP*zgmGm>Fed#X6h7Jtz94O
zU|IFi_7WC8$q!T0<7i&k{%)CyRpFz`Z{OaW*nIEq-C-+S-?VGjZa7Q>w1d#_iQFYq
zm*xvTYs|`P5s({ZCLjfd#br{D&&w}C#4FzI^uE2~@`JEs%D7bPNljG+b=&oN9&_uo
zlg0>(*!p#284QikiNF`gYqLW6IB#XOT1M^-gf3a;SxyiJmRmtqIqSnUenw;EBz6_v
z(a4j$zrO4=hbQU1Sgp{7q>Q04$7qX8R%-(6Fn>MaA(VLpPK~VX0#ChAt?nX!$a7_1
zu$D(hfRgzN&3Qxv6L_jMPoH^CAcKDW>zfnlmrc_SLv#h}A)KE#t=q1SiHWxVY>R|M
z)l2etD3AM<5p1p`{>^?wGn)4kFs~C(0<;CgOYGW5HH_&qb=zuhqaA<n-_Od)A*FAG
z$d)l+4UT<cjOU0f|M7SGP`SSX$S8y<XHU{Oc!7{9f%(sN&?|fOY691rn<xx9yVN#H
zW1`$Ir~VwZ{Lx4o((SORRVja}BiNvxYf?JJuLuYpZaE^>&Dq0ow;v6$PO3XS-Ji#I
zLKptj25xfuU7U&U^qy$5MzY=Av^2q>^rP)A-qp&m=yo$Uvz`P2<>N;-iU4k@iBlLz
zpzu8I{J$y^uHR_P`TXPKZuSwaX$U>$78nyYkz^rfL2Kjaw_@K7v<B$<JeYcnr7V}G
zpt67saZ?(MqdR7Dt>s6Ph;7W*Ho9z06mn_cKKyP#mr--y5w3{zC~Y6tTaAL;6j^H9
zn!=p@K5f2oQTf%aU&o?_98shi(h0T;FuvyknDjAQkhDs%VqQ<T0fFmP#G`!O4RFEz
zy4B&OOmAEAt=tOE%QzYCP}Xc8{@XkiQO^>#cd3V*rrSorMvAbU<5+Y)VW&X-^#6f)
z5Q3ES&*XLK6K)J+kTj}m#@$~SWaBJqL3pzur4$n4f;7$R&%sHdwAgJcZ9Z`(%I9YD
zfrC=T{En?VflNRBgcFC?{2Ac!0@;_1hBy|D&l`xBar5EiZDooP%!Sbb!vLN!pKm5!
zKg%u)><^65Wwsye>BeWQ@+5xcTu^?|%HF$n{`zQfEV8&XN<k_ce2eZSyNi}|^G{C6
z>(lh@o9N2xze0{DJ2n<;(C1RO{*zCUt1Ld>kMF&uy0-5n&b`%b9sbjb!B2Bg4J;)O
zmX*{(Ge5!Op=gN1Y@h}CTH5j>9CP<JwWT=@lx$@+$$wtIsoP^j9R||2HFHNx3~>7;
z(a{s-@!+XfcMfzyxob&eB`w>V1qWQ~TxpyEEi^tcrghcg-a>2D?MOBsP|tH@R0(hk
zVcxH-TyhKFD4!%^eneRpnT|)y|F9+n8z8!7iWkR-o~V-aVPcv_?X`xZoU+p}?3K91
zHI37m4f^!zj<}%<0_jES9a+&~)ii22bv@6y@_T=NW&A;e{+K;j<JQQo0AHuuw2%^s
z06gi?FhibLe=cfzecu9spUN$SE5<u0XhXy1q4Zc=CTx}Bc<1kS+@Beqq)?(L>d7Dr
znXb=8DO^cutsude<Tsp&zIn|<y|hKkJODwjKmQygGGqH5DEhmgSQ6Iz0&p*J-z?8)
z;wV7^i6hb!FOlK+i(?7u-nVZg2Z$(txu-nPz3kPOj#ZCN@8!J7Ya>S61-SRM?6pd~
zW4=9S_ajqswME9jmWno_p`yzpv1u2C+K-YxZ~6bk-U(YZ`3cqgP+EeOBc^|g&+hg-
zn;Sq{z>`cVCs`k`g4lxwm@5!i=@QC}F}}RYQ3zJt)i&eodZ8LSb!t%btvHE<j=x;*
zaMJw4Cr>Wy6K9;P3p!eOu@srnN6wl|8Te@=qo0>s3QcW&0{1_f1DO5=yrBz~W+lMC
z#?yyE)1rxqWy(ldM3XK}8bwlcP)ApU!+cw~Z1i8`{|7(Le);CjS?-k3B;qP0W#8}a
z|LgHw!reLtRITJH`^xLnLQbfqxyx=&gd_w(D~JxYJc*%C6AC<fE_Oddo}lwFCR;(9
zDhVNpJ|d*?b{ANv4fuBCmOrjg+k}Q|O<5E_uq_2$%sG?PmB^yMA?0J4&)H<7HBxYK
zaUt5%B>tPw<knl`;p<hc7M7pkOL+<0Ejk_f>yVkAp&*7TB+;!paVJKHt!t;Ju>RKH
zzqb=mW7j-E*8i;sREWTMFq`IS>)sxq25J1JNgMLrc8RUt$1|N31s^OLOj(WqIEeLN
zhV@MN(PIY=91vu3^?j@WPwA6sp73c_+f@nzbNu|;r8bNd2R69?!HR-54r&S@2JvMq
zI6soqCF*T&o4DJL@vP-9ZafX*$28UyasQYwa%8Ka;c<AM))?-_Z9ys^D_Md-M!rh0
zN;rs(#=XP`m3Q5qM6&NcUxO04M}i(r|AG*rGaZTL1$*6zz-edg^*K!YU{}lus69BE
zN&|?2*u4LI$dQ55OFBga%o{2QoK~PAq49nO1AhMVRW3k_0nzsnN@rYR#Kbw^^`xYW
z>mSdiyx@YSJ%3RnXpOQzvgqMvjwqf4F}`0w7PUf7!6(>CnKG1If~eTuo^MNNj4=bi
z>Ll25TL1H9^peO^5E?n{Z_*%#_4l!fE3T$``6Dx*3ll^fHz-?ZG9atC?F!noU<(w{
zIhljP%gStC%VS)ClW6$={<;fkRHdIG*Q)lv?vB{GxNG%?l~M*S@(E>__93zH636y&
z>&00z6MY`=Ed{MFaGbu3!QJ_bC>6Ue5|S8+Q90WGuFd+TvBry0+S$^O$m|3`i_mu~
zTigRUi07?E3!_VPAt1N5E<~RVYP{sDSBu5-N{B4fHx^Yv8+}g>F^)dNp=Fk~eoC_B
z$$t@YkU_{_zb9^r%Dp}&>gQ>WS*z^-5zee%88>I&{{2ryK77|s6x*xBsYj;R`u8LT
z$yWXgqw25W2CEJY3mTV>%hM-FZ8aAX$5PdrKR$k%VBsn+vJ@`OpZq8&wh{*|BTn3M
zI>fdLtY9>aMB8PUsEM(lJ#Oy6U)MI9-lSGUG*)MH__JN#tH_FTMLgvpLFd5JB?`Ma
zX!;2>pkhr4dRjrG#IXhcT5a)LCCnos+eVHX_o&ZU<I9UcSc$8}Pp0B$gDLMZbwi~Y
ziRqLv5N1#!S>|8sDgIl+XcN70M;c!~uk@bEViN9~Zy)B=Ia{Og5ex_drt~C{GI)4&
zZj?BXgRa|Ywyt~YkBe{I=d`XQ^%vH?Eu6<<EVvCnEVHx&W_K@eK&X&JGADlHgX2mL
zZ~WI<8MYpaa_9ej7fFm5XuhbA2`MY+Ze;68U81oUUvI)8#|XJwpB+3D_Va>xO%CHE
zbe{h_N$WQ@(!U}M%~MIAfw*vrB*g7mt<Q6gJwf&o@^`fxiK}y>W@M;W=6>N)B{WJj
z{=LTH*JvbxzITIb&E1e)Y!E<Jobp}Q#Na~*s8BbWfgBJ#7wQxlgVsl||HU(j-yu<S
zuc*jKsAN%G#*aoxNdDzg>!ZY}!mF%wtkXPWc9piP25~FT38_ZwS(nI|`Y#}B{XH4m
z2>=#j@92^)FM=kAm-~7PP4CY&-XnqzQF4RmBK{rO9s{zX|E%$}|5@Y0zknwfx4fKb
z7Koe$%W4VI$5te+wqS`Soq)v^r4xvh`xcYlj6w}wcwSt4iHsBf^H}HoX}c)eZEoAL
zWn7X-tqKH_+VW$=?R%`?rk=ffhZ7y>w=~zfkjUI@H4w%Y47XbRF&|d@OWY#9apSBY
zHF01O5Z~!ZSWMA7?;9^<Wr%t#V>GFS5JE!nk?9kWIf#!O==foGP0eL10YD`Z+Qub`
zfB*NZP{bU)U=c~?_7mV(L8QA2&)+0Ykk}RYo<b=im(z%cS6elF_#hP2j9{8BW5C&k
z(Hi(amqir@wATe#iLXsfGQ~)w2a5xXV32g>#F(!5n!iA5-ZTQCOu)>Fz9+tdPlDfm
zwtZjgIaB||U5Jm+IJ%gYDI|(!L*`9PLMmm+C86pjK;-^N-pUw&N4AL(($UyJk|N>6
z8Asl6Ii4~b_@3X`%~xNEUo>doFTq#qH|8k$&kIntI1C^fN?dN%gxSnXT)U7GJ42Eu
z=U4Az$qj@?UIYwyyd0vPb=yltI%0Fm*V(*k!eU$TtB$q&?<E@|NC+IA@IpnOX_G@8
zfG$enTvFew&s6hX+eP|+<<561c?kC*A(XFX!*;YZm9|WvRXZgKGWxt2H~W`pP5ifn
zssRVomiAI2Lq>$MrcsolEmW)fTZl(FUB$C|5uwH~8~7Y8)k!O9^P%w+Ivr`EDWLf6
zP^u;lpNrORG*l43vD}2_Xrc1Udy5@t{W|6&viYFFzGaAZ^=ZTw|I?i0ir^4+U=Fl0
zYHW+`qC`;$QFrZ<5OQMjp-GE<SnV@3k3u~?k&tISfL;iji<%Kh3UzxrOeF&9!U!Gl
zVY~kN*RquV)_NOvU3)FCN0%-Tjfqk{dwNwn)6D1MrsvDpR!aQ*fF50<u-EyQ33r(w
z7eQ6XI%4Q6Os0r(B8lFXyc-@E67^;W{Z>4s`^#mjS8H|W8YRLGlfl_Qo`ulE?uELD
z6l5mqLCml{LRXP#u54i)CL!@+2CzIFlrHR>sPv$P^nfdy$*Tz88Aa}($Z)WDok64j
zH7FWEb6Vdmqgb3G@~)#473a|w*RDK8RQ#YN=O9N34F!}6!j(mY&E;?2tZ^jGV7}xN
zJ2MT3!AqSL)dr~KMCqpB=FuLXCTY{x1PY*bNJZqL(;{{Mkv>Y*nZtq~oULx%$^1dT
zIPCwt@{g@3cG#2=3>C{dYQ^(bh|a#^ZP`M=_Wk_V;x#04e=+#w_CL4fdllP42ZS@E
zoX-#vz9mLX8Us!b6@%%xM?$d<VK;JlQp~xzt;=q>`<DQ<;irKVBhJN4N`k&h#JEDj
zE!KyQ0>cLnzM22J4bih52^p4OuwBqXa>Q&1;>i(Z<%hMtTW;pf{PwL6`p-W!448(h
zONvb7=n~%vfdr})jDY}DLIgBr$}(E@PmGd+TFQnrVhc!s9qZhCObli#ll&9Zd(s#|
zMoS#a{2yDMaS2c-Kvl1?E1%_aAX>jPV$Ih65=H#yyRH8^*7QF%;h#U;mG?it`kz0z
zVfpXL`R9AB|6Zl?6Mg=lZ;Jmo-|v6y?>~RT@W{Wb{?GSX{~a^?-^=!Y{=ncDX88a7
zLG=G)@6F?KPT%nFduG1#HDhKNgRvE6?E45IQZv?2i55~>vX><)6lxZOqzG9f3N0#2
zSxPjv?2%FlnUb_gNQipg=e^bZmgo8Bc|FVPHTNI0)ZJ&fKG)~E&ht2r<2W1rGk(zg
z^8c0FcwB?K>d)5qDn3g#y56(+yWoofX#t^nN9<-i=t4utkNal*7H>9p`HnABOZ0XQ
z7}$9F)Su(J?l9QdLEkuV+jz^cGokGbewrBYynE;4ldly0_N~K+iC;7cG(2at)2~N@
z-Px~j%{k-H$2VokttER3mb|^2pD6gg!h6P##7A{M0qe9Owd%*CI{pvC)ON@JFw*}X
zMDg#KDE^%%ihtjo|C^SA;iusm$mj9Ymw(l3bCJE&k<_?RBNq&c#5g%5tn<fYeUd?6
zIw{ajt!Ga^s_Mh$&MjOO)J*lKim5ikB2@pW8%7X#Ye-eesa&6K$70}04*(9`>AJV-
zc|xz}XI|YZdDqbE?a*Jls{iu#zWPvEI%W)2{lCtrIC@n&XC5h8?&juZX=(Xn(f+lR
z7cZeuq+K}Rqd)Sv%SV%2BcNPa9Cb2xyQAMaqOD=WF3vWp%6glfQ++Rb{$cge6{YDt
zGNkm#N5^+nMdXy>m<0a#qgY&*r^l@7C%#TLdxb-M{MUKx_78xDKh-SL!51_O^y1*d
zhr6q;o~obt^Lc)FKv<b80-rtRyYzeb4Sc%&Gre}IQz??3H<`h0MXyo)|A3A2oSYnC
zU1YtY!xW;sD}N7bbNcabUrnd`E(T_FrXf+DuCw%k%Y27ydN2{x_~OX1cI^OIuZ{$k
z<fWO@UMYhi4*9{xB3jtCd<JZ%@ZSgZpAK-bL*IV=F7W{Kw%RzX8`@xCXnNd~n)eyp
z8XV-@jC0i$3qDKFaPaH_L9iti7Jt$}9^_ow7xgt8R2r*acCHhY6+a#{%9*vq!^7YZ
zy)Mn}KYGj<NBFb+Un8p4W6t(con5hUujauIOgraQbBd>&N8d)jwQEt&Nn2dpRa^9k
zM&UL~r0-d;A|fI>_v*FK?HpO`CBw=Gjj8oJ;aL=abM~8}^lm?zhnW&iD!BmB@kJ3r
z{?l>KoaVW^96_Srt_AU3guOgx!GcHmZU+t=Z~^GJJpbgw?`O`O>3K$bRXP8clj`2t
z5Ba^4+xZX12!}gbPuh3Mq*D+^rVG!MkD%GBp8mo|I*l3~+T$^AFp4pYapP|1wqBT6
zVZD3Ft${~ZynC7G@f4!9%m5#d)v}j6k??o#i85x?yG^MSIrC2C`DGUuD+5gdpJr@U
z&3WTaFV;`_@FT+4)ywES5`w2FJnV0=UA3SAEA-dp`s1J%&Zg3G$SOFVf=P31^w*b$
zBj#R<0RJ-SbO;{Y4l66t#R=5CT`?5h)(rHzojZ5ZhGt>p4)B*oBJTKa1Vo#4F)Q-B
zx!~e85;kxM_*~1DEpuUX_(A}<)YyD*BOuhje|_IgGrJ60Y|>mQo$k+_f&re(6;B^F
z?8B?QHNKo|2n9VIWb-#1D(~*C?&~+?{j=})KE$`s4j-m0;|j+%RTC|(tS+V7OwlDx
z$SQ`<d`2E6EujWQ;}0QL*StO*qfbBGd5ZL7@=b`oyPb7B(=0|_qAENcxFq321I#(r
zqV*j>!je&aPMOIv@7gYGGNZaGGDbDB@nK??uJ1hY&6)Uk11dF(2i%Fach8zxjtXJK
zuwh_R5c@Aua%uNtF0_AN<iZEjzfXrO`%}+^l4B+B<UNLboKw1FK|<+?Q_tgzF&~DS
zBwepYwq8DCy%TeI^EWdnXTCZ0=Dt&9VS@UhD(uIcv}>q(6_Q5shtY4-4h;dIm&`k?
zwa2r4(k;RI*LfGcK25Em>Q>VFv-GuVouW^71odgzs3z;;`=rkr#>O9{3zDauwRPZ|
z;p!L5yQjH2@4CHCUcl#xm5;1ra$J&iT`o2n8SC+p7u)6om`}={DT}Xm@T}OqfB*gg
z#fOg{D-fD+q!T*%Ery~W+JE}=@|fq!goI=3=xAQppc`2IwAx$spx{^mMsB__D@&c`
zJ0yS#eO~}f@~F5#Jjpz<UiYys+q?K$m#jQ&e)Rl|s^2bqwr|aJXr`VYm7pt!4KD6_
zjZ{<liFLp7!<yLTXO3e)`+Wgcf}S5`F)JyjN;f&tXl`ogvd6#Hn@%C2QKNDOJ{h5Z
zOQwm-`7b+N1a!|M1N8%^A8E0v%^>wiC;fH#91<@1TyX@6TebcblimH{Y$`KR4#j+X
zaOHy~<xvY)cH4ttT}d%xy%y@mMR>2dfs+@k17W)e6Ce*~8Q+&LU%DGAV{$p1kvc5*
z9()3-UJ09k3x>!M_LYUqnO!k$7;hF~^NUDJn_&So@x$K@z1C9fK6z>uLm;#4G8PSv
za9709-TkKWBKgOYW}4Tib=BKsqdkTYk^SgjU;tG5rfLaus<FJYdy%PI*w{2nF|4#3
z{OU%ZqYxf5;e-ww=1j*Y_Rf|l@?Gsb3J+ARRN`eEI(W(4Dx2x5eQjg2YuBzFOExt%
zJqp$Sv+5h%-P<=O&*_3QEjx@A^>fyt@28b4Jy-ScvmxreP_fZdd)Myw=N^h1;8l2F
zo5AaM@SoNq+!|qJW%VYGw=Nmn+rSmfP5BAV(`<+@Gc88yHWmBsJvoc7_qao=lE0U%
zsD8C~q06J&w{QR5NBtKH-7)HEys;n}jJKp5j4;<Tr;6TgJV4vs)D3tn$qrsr@OcH;
z=6>9*Ny+0oYDRER!jph8V#1L13ck_h;mz!uuunZIEr63%`Zg<N)%UP3{OP23^pfY~
z6VB_X(p;{j;yn?5>w>aZfGd~bh#fDGeHD}?E^n9S`rd_h)&vMg7D77AyEC%Q1{THM
zt+s&G^oK1HK7g6!NSV;W!J##Xtp(296%`dnfs)1V4m0YN+bStv&X*O>wEx2<yd{fu
zmfYy=^7_t5aopceL_|}|HoX#Gk01Q{_E4IRv$Ko2-UE-~DBYJD+OhY8@6=U0*H8Ao
zz1S(2_reEi?*QmpbQ47ia4t`7YDmtY%~vl%>6gGDAyMjhE^PjnTg={lG$ln@fZ*;7
z&MnYHcHSRlzW{KSevS@I?yk_O+&w?Ck>vf^YQb8GsCe%tpRr*BA^=)y=Xz)O9k%m_
zj}B3rj3$%|!vPOthmzt9&A`1J_A|i#6A#s@?EP8zi4*$xHw7BTL`VDi`1t6UrS*P9
zv2P-9hb;AvmKOv)V_RGC{_bACPd@waMVUY&bzCkw<P^85c{?&KBO@7L$Pvl}!A^5o
zky2JX?IVK@R5{2yM{{G(e0>(9S5toKjUallw6=b}&GVZUdhIF29Gmi7GksjYd8qxO
z=BnR~tVOewKQq=-&oRw66jwD1q~<5>8*7WHsvm6}`|m;i9g~0O$-nQ8;{St7f$Kbp
zeJEcP_qLroZ{D>EP28*)*g*|18XTbPcM$?d8_6jo!p_KxeF2{*8M~+HFh{3rQsBqI
zRvQa_&v^*Jm}K)=klVdUN0C{rUE6%fie=rWoE=OgpHr4Y)3gmJ`)8)0$wT70|KV}G
zlDk&F&p0<?*u^e~c7F$?KCd!SwSH2u-fF7C3ycrFKG17r7iE;W?8&B)iwE2si6E=c
zIk@GW#b)ZSd;h*p4TC=0(i6YE<^vW@eY1ij{LX_1yDzM(cEnXME6;q@%gyCC7q05F
z=C0;6PyDohNAcB>8hqBPTSrXY3VK99Ht>OQ_GHnInv*<eq+aHO?%m3^^m-lACf{{e
zL=V+<@})Na`27^m(zxxkLNuFoba+$sA%Z)o_mbP;rDsgtxWG+UXBez#Fj))p+G=+A
zAlu2=mTi_l+0-EDukSU3?R`(Z^%x)8Ry;rAgt+D?Kd~BI*dX!5iE!eQlSB8+U$08i
zr~+nd{><S@y1rHI+3sup?B#jx2sT{$XJ<{*YfopdS;Uuzgq#e&zrVivbVr=j!C~8l
zu21S7&|Q<0JlX1Z|KL3B6(l`Z$A#W!Qt#=fOTc<=$c5Sy8EQ{dV7zcboOZybrf9DG
zQP%QZVtG)RUH5!%G|%tK7@9}ac^00UZT!gr24n~>DOIlKwKx7|kNUY^nLKFWgdpg3
zL*~~#ZJG9R<BaOw_{I_Hjr~bn(8+N0s)_d5mh&w%0mZ0x>i6g6ea3TJkI8{&>JF!?
zX4J|`i|gJ+s`hLd3=W*76){7cv}0#nwN^Dfyn9Y7m>+@rT6W|=p1r?j4u5z5c-_;z
z(G05nWv&MO@Y(Et{M}y7-|4wOI%qp#LSsssPOoh1jM4_pH^%b~1B|ou>kh_|g_?)6
zO&;nw@RA<UVgz0LN>qily?ZaFfeMPc;s^zGJy6I<+|Y*&6HE!z>v)+zSPCrh)?~Z;
z<1s$a##_ce?$X@(Z0@|KRoIAO`r|en(N2%xL}&GY$A|JfPF$*;QE!f`Nl(uLxc2+s
z*WT6rl#Z(RDfs&Rhjkyrn+=*ZXIorC-H|G3rM(V7srfD}LzhW=j>T*Z47?0=cDQy4
zs7lftdrUWAP)U@47ie5Fh=4jbA~O0r?JHZ-PJ7UW9JHLg^CF9DE=6<yW5;TP&ZHrl
z#5w6#s7d?x?fXHnLXu-i6Qt7wy~Mi+76k*>4~0d6$5@4T&k)E)4F*2h_>4qU&R><2
znwko*<`36II;Jf)?5KK~lZL3KiE*=6fG`*LR=+;9jG}!A(K=A1n0BAWCcwMq4oDB3
zt>y^wMV{Vl_HLIE;3iKzx~q=k-Trexjm^bB$p3n;JWlqr-N<Xzja~hFp*8=Gn(FD+
zUn;!+Lz5lfUMv3o%3{)_7SbyMvFcNg_UdC8s+K?F*0h&AiX6y!dpzhu;(OX7ChiAe
z#n<a$t~vi`_~N2MQEywrA#dCA@;0GB?gN4_hu+y>k{6+eR=&+*m!U_VE7AW5z&{<<
z(t4|=s!!zpt#U0lZoRzbW2Hcl<-2k|bc9HhaJ^U_6)Exh&1ME&u3f)=+zUR;?O*SH
zs(5jZj8xi+OF9nvY%zIqtFONAz7{(Al9PJ}vB=~N%6Vr-!?Pbq6bH=_Z8slp_3CEa
z`YmF_yy%4IK7gFdIC1tF;e}V1)l~QDdFt_R1Aq}j=q3I8q5mj?4d>09Hyw&iZ?EbP
zVbRf`nUcXG;2bDeS%cl`lzVE1>Lt9ru3!KD$)7bG{4F*X>*%v&UDgIzRIIea4j=Xf
zlI+yL@bzt-v0o~Zs#8Ib;fwoYm6!ZguQT6*4Mar`gjFpgAt=j}slTYN-Cwo%1aE#1
zw5KDRB4c1(Mw5E|XoSZD;NgY9%^SGAfx`PUF$<CFJym#c*M17$=~cKyPLs43OWGwr
z>8g*ZT2%~!FiY*w(R61M#&Ax>BY1^vPCi&XW;eULu2FL+D0kA*n!us*!LREQ@0;xz
zn#NbYz1;t7BjkLJI)IV`cYdon=75Q+H8glL$gdxi?2F)+I)iE!iVNFFzzRFi)PXy>
zNW1J~Gsipt73j^)GGUy{AMIPyy5+f#r3>>=qNUt%RUI+uuTiSCJ}3z-LGH2ZJ=Ysm
zm;3i{pv$1whsX7d)^>|IqemXQxG(n=bQK@7R`P|sZRbAB6lA8#gIE8<lTJqKVEhy;
zGEg1%@zfucOP06JWTY~?;U<@(&Yw9&5Gp%}j4lt|GKOREv1EW8)e3LC2a7IzQ=X9X
zG5S*RHoL_pH+J^xMi;0}Ay?I-`TJ_scrF%eWtTg{n_coO`)K4@sjE9Y@lTfzSxs!8
z4gc<!Mr-$(Y#P({KmTb|IR5jw*Q`8_EB-so!^YTnSW@KLwLX?VY)NYRZKHAVpZ?i8
z^z$aaeDg<IqSvDB39ZJTXy1KZPRc-?f}o&xHxqUR&Gdi&WJBLK@FawzLi|>pfBqJi
zvT@Q1mW`G_P4$Me;=2+x=xvt9{Nmzb<*!v2tC-=oAbNrNzuz7bu`>Eb=ceQ65g@Yl
zFJyU4nuTdbDm)L7204PBREeyg%1*)&EouZ~Qdh%Dc-#nfkf=sQl7sBORTZ{02U)4F
zW@l%weh5I=wvX_T#CeEj;FmI&BFCk&utZ$b?K9!DsXyL_wM6n4UvMCZW7cB-c{Byq
z2K(+^fafiSp6<=u+0eXi9L6;XKw=v*ET<A=dV2uetxWe0dAK@A1OI{^MvR?xJgcNg
zz1n(v`2anMm3!|ZN(6K9nG%D^uM)U#W9#YqyYO{yZi)|j!|EkRFhykuMGxI<sk)lO
zmA37srI-!=k+;}}JNLbh`v`POE0llsnG$Xui+~7JoKsVM5^hQd6Eyv@xLKkvYqnH_
z5^}6aEqQ0~r|d!#FpI<&x|fMiQH4AMRFxXHL56V5<g+VIi)qnV+_|rIlED;(-le+t
zTK|FFL-km0OvfKD61;STaXO4M_;~Gu2_L<`7MEf||7&3^cIIMeOW?g^nvMF;<jU)7
zcqqpI73L{){BShUjyZVa(*W17nLFW@w^sn5ATn<E5sCQ4;I@*qTDQ)qch$0ATC|7V
zj+>D+#Lc4%QOg(MZ>}8gB%=+Cun4E%MzyS>B-uxtnpfM`IZpk5KE1<psL_c9j75Lv
z%yCeqwm?5sA1od0%If$m(~qQ0N~a81&Ji#tdp_4-;5_14!_^^`;)()Jt|gVF4f5=m
zKGtXhRL`!uP;6Ai>l_b=fG3FBPzs>tyZ(>C_N_D6O~27KNXwMC|Ce8WQN2X@(w&An
zZ1V~xLO%p_&D=ErnY<8MB2MUWVYMMz8DZ$0`IAuDR0CO)fge?R_=Myz5$f{%P94z{
zFL_8iwqAAC-(~+$eaMYgIR1yR<r{ds4r|YQHyJaL0Qk1+2MM5Dy^!Nu|D4XUJro6y
z`?Qg@k6W)@M-6&bC@a_qj3l7$jWL#4>>orJ18@Iw7^<`w2#)`}iRl6A6lbFuvpgS5
zL+MZ<p7*YFd0mdk?Ubw-kEfwpzAL_0bX+kR4`H%`_O0=!y47CAjxRT>b1-jLJt)2H
zg1egF_|s82XOpc(P)i^8kZOQpp~nB?GLBEvUPc4N{#J0#AEFcvpm$4{aHTIPCsg=)
ztbuW~J;0+L9U!i@VolKVxhAKQ$?;cvb*9%=7y17sQA1E6wa=8=%+y^(LWNwnei58F
zCt~%UCECQDzdf({+aweCXSACL<9+XFf=2ZKbHeU{4CmBcBI%$CAnd;OBIFaT%X(RS
z)Srzle$t2q7Ac*Bgq#nw-Lpg%jU(m+Btl*dp$&s@FYPmH^$^}Se$&vw9)~ignrA~@
z9nS<;U;jA*wdNEbbM8?#QT<GH(trFR6nn=iab7|O_?5DZR${|Tg?(G|xcpwzYhO+8
zEn4Q=ZfU0#goj~Rk51#{8#`8CoiQG^tFHlUZ<gPGEDc|4mj<&VyMNl+XSNws+|1R=
zh0E{wht=JXzY1+%b#~PyZfsF|vZ*b`&&S7-$)0~+xs@dwvXouh+{xc!@~R9?D##M`
zMEf^7uITSebI#?^`Ex<3>aPlBTn`lecb|Eh<xWnO`io|LSTqiu;L%c5uZH*|t@vfq
za#FC~C&-ufD_;dot%e!yqN0HErA4<XhHfZD_83N?NcG$nIWS%Dx1XC9m?O>&>QCD)
znp1oK?x!<wx-;fZIje)@w}tJdoLwROXYQ$>&OL={2d@GBl<yHhZa^6IQgxb9Mu9o=
z=@0$<yqV?{C~BV9{>cD@MK@+0x3G~_MmgYx$uARnXf|^Bqj2r!HsCR0zso03V_+Ac
zdKjtx`R%2PuIS@9<)4d(m9v&9xd7S|Cgo{2@yCkm>&9affO+IL%>ibPvN~4%c@OQ^
z6;sz~XRSA@T=Q%^k$RTMx;AQx$+;ZcRh6~3uNb4{PS&GcMhhC{7PwFA#CMI~kADC0
z-pd3H!GIr4)KY;5h`sz}_dSD`+hvN}Y~xu3u3OrTY!Gtd!}D4zHAP_UNFCYTQMFS{
z+K|80PP;<NReh-$uB1=KN+@Y;J?owBHWO_Qs!)utokYfVcDs+378VvNABp$t+3$2S
z{x?_2vFm;kmY<5(PL<u$^mn=CUH(QW-D1`SE5!<CK|YbKeasS=ul8qGOd>6tASS6q
zZ77Bg75Cd%j)dG5;VRp-DI(=@{8rvKo0FdpUfl5cYIb#eBF4ckzqYB}n#k<hWk@kY
zPdm~BdLZA0cyC_rf-5(DjXN_nyCOCgO(>frDOzzO_jQM#uvFR-qmT+8=7fcm&#e7-
zjqQlE)C}dD6?;Gh0seI|(P$?MvLnX?cDF$0i!OaXsk5yi%C~5wCSlS81y^udYM0nj
z<EqBx!Te2c3}-Mo<Bmu2`>nWr(?(7C^>O=taknq{RiuKXKMjJak}w~UJ|hV!yzN0q
zMDx<(Cg|bzBsRa{t&ihMvy$Xbi03GJ+IXBnC$4lEkDVJrs&U`#Bh(ma>C(SQ9LnWZ
zO$+{n;f^sao>Tqbi0iDZ1VtE-tfYqMUa`fJ4YmRghas^w41>_$(}%!j#%ba9(>SC+
z^V~j=K_Pnl;I&G`+c2@Gr-@R)DJC(n<S1;XyO`Teu)}rz?x}4rpWYNTW+WOOrSIPB
zdH$@+Xw3Q#y>}u%@g)3raRR`?@9L`REtu1>BiWFHr-hm{PKZ9|oTaytc3UIFNi7n(
zfPRoC+c6xhu{bMSK8rJtMAjn`SAFzYNs9_DKMgggxJ+~Ty!6t6C`y@O5EALfB%%*S
zg>WT|m}_cf&Y;>^y0L|pHvBl2!IpM9?m?TWVagDJE;uf3<?PPdOS)<;(kQF#UAi34
zIt;13kfQQ?rUSx-F7jI;E%oU;Lw}cua-@GVyFi!L+cs{L#6$ehq??G?-$>XAzO8S#
zO(q##0ZtZ99K!=kV<Zp4#R<ppOn>iEZaAUrZYa>f<J-%LIF`J>-{mxss*k_4eh||n
zv7stz$*=BG^N*k}w<Y<av?CA`in|plNLMNzfMGZrKtWqci=l9Wiw!G9ux@2+6<@Pw
z>6^GQg{MPbXMKcFRYWcL*j#+O%_m3kvg$hNtrN>SH>%)!a*rbVb9vV98iXN<rqPH-
z5}5k8AGZuB|LcTi<2}oCah$_XQoJ6<+vo9mNaFL9po?iU4^*H&-nWJCao}n2@GCKl
zAuo5ObC_ce;-JGAEQrS8(3Ax7p-u@k5caP|KZFRk=K0kv^ttJJVO1SL(2D_i8I|gH
zebG93Y)~Tz!2@vvDJpW`_$3u{dlBT)_@;IJu<yHCjuP2Cbzcw)bHly|Dj^*z4SRN9
zd@Bna=1@(s%gV#l3#lc;7f$o%LU>olb|y7P{RGirB9e})W<_Jo8y;K;7tT&bk@%(0
zYmXi2%ygz>)S6EtSkA2h)}((D-NGc9I_|N8Hw#4QnA6U%L{SmRW^esTI#Ugvib)H1
zQ%^y}(!X71-3TcRjHz&bg_s~<)yE1Oo0D69kRGe(bcQq;7k8!^zu1ofq^;puS~z_E
z`R9{N>zOWuFcTuZf|`z#kWf6?zfL%4D3)S$WwJS`U4@B<`)Rj=QA??Sub5Lm2ek-}
z(_M&3EaX5(Ys8cR^D=S>`e(lmn>@VZQT$!SmZ9s$!n{0X*A1={h095UN6z{f7pxS|
z6?xd_YN{s(_<D8hMAJqQ(Xu=qO+gOM@@oSqVRc}1)5tuqI7u#@Fpv>ZbZFJ)|Df~_
zA>j@u6wt?K(#QyRtJ&67AOWtjIbftAT~L^8A;5pl|NaY?647f(R|MvlCGX&_m`)}*
zL~kVQvoFXru;?958;L@c=jN|YVYJX0S%os7riOH2x!K|rPf`VuVOgCzjGm0q+m0#f
zenQ(8RWxIc!!=mk626G-NL~Uy1x}ONYT=npvl_l3gZo_?It(_)8bh>epbf_gKY$r!
zRy+!rQCTj@0-1gq0e`|RPdggV+oJ0~a=#f?acmS_X#&6z#bC#^Ja>3rIjf0uND|Kk
z7R;^F5-~meg|K7Pt5f{A3sR;4am;!A_;KG9lLZg)&k92<Y+d;aYYy%%KM{Vu-RC)t
z5KS`6@=90K(+*xA-9&>b``+<-p3rp6#MBJ@tNp{8Gk|X9=^-N<?z&Y2yQua167w;{
z+9d`<5dKJSA~+xm6K>Uphu&V_X(ByEY7qUE_IN%&J)=!4{6u7Sib(*Zrhw<>J#lC}
zz~Iz;kuYqQ3({YHb+c<QUF5uwXPc5(jeeuUF6`~Cpvwi4|A~EO-59lGbpH0<j;sQN
zPPXS(B?^&bhCf2sBcc`K=}FkD)Obt$KnIEtnF+ka*{^jl#R<wabS%Wk<o%P)=3+~m
zS21AmleM(-*hktvq;J!{{ZLhkMZwMFK_P&`_yM}^OrB(RsE768?b0u-GES@|Fx{WD
z`sI)hFNX58I%l;#LuxK_0)$aIzFEO-+^_^wgu`<2|NZa%ha(rma*ZJWPk&qT>h<e1
z2s7zW6nABWv1VfTn|fex=;Eh0=Ke9884=0jzW<^1s@*bKZ&q~yRDgVVJJe*e@0StC
zr&?kFU%yG`V9=deqZW!#6t||-!MF5`p96v2PCVjOvnsOkIDmt1i$3Doa9~+4tg0*-
z)^rvG@uxv`c+FWK%JQS}Y(SP|JqcB#ZoyAWLnRIzH70-+^&pzS%h6?@K)teISmYYJ
zm#qfN3}Ym%e|4zc9FuBJpVmfjHG^fdhtCuBM)c-Ai~j3>oW+Gj!GerT|Bd)N?OpNG
z#OIUr(8UF}#J;AOZ7CooX5q19S&yOAowaDzd7LrqDU;s8^STg(Nwg)}+!9)|ZDhHc
zHo@ynXRP=hdDX1^2yf52@vxe=c@1|RYB*~q0%m#ey?-4aAf4+#WwZN+pEln+MD`gA
zJW3{;E_J(%U^trj()^Qjz#hRD-9NYNvok*}6P(M5{y{xUIy&NVQ7A5#DCtEMXKVO|
z4OMpNo<-eP(gS#K-<2M0SRPPk=f^i=2F|W{#kOF>MB5O4=+;}_or-JSVmJqroyH<h
zj=mq>G_dkK0UQd^!Oh%j-y4O0f9-m^Xq~8Zac9umbu%Co550H$ly+f*pXcY#>{n4v
z_$191x%yBxUVJd^;ZBb&_rM`SKtd7CvTB4AI*4vf`r{E!9@=xActTna6k+=zXcrdm
zKO&CB*=+=yQe2mBXB5(!LZpD$(zp_W=cnwQ0&mfhSW|l2B~&Hgl_Zvf3{f#}5hf58
zSVvigjr#$NRvO3Yn~(8j`Q!3sljfZ=Tl)Ng1)&vS&ks#$=7HzMHK3!1h6iUb<kI=Y
z0&f}{_`yr(M5!9uw6Dr!svqvS5Jl|-dK4U4Udmc4t-GYB3SmzN69ID{t*o>cRB+#_
z2@?`M+{7V+gR}Ssw2#6XgzY6klFH{9*SpKR2g1_Q4al)CX7dU6C{=AEv70^ivf+}a
zzU<P63E>Al$bfzjw)D~R<S<sqNEW0*nl!mByXiX)FAouZvWy0Vl8K1jx}@Rj2VEaP
zEH9#41dY@FvxVl)eQ9VZg5ygM2QC0}r2}ECMSmLRhy#(mle7hry@<)u!Gst`fMJ0-
z)>O%gOpY-tjac9=zZPeKH5oU)5W5T-Cv7OaPf27v<oVQ!vi`O2-j!PXanYANXK^nS
z8<O@SZ4~<%wmBDH1j@|mb|%Wx#W~sF9cP92f;_3i_rzuI*bnJY@5pm3tpDmah6$QM
z&0#+@J4`E+pH@3MI*L_=lXRb4GRjO^@8BH_&uth64`bYJ60?iZIa1J3Z(OkMrMJ(|
za=EfHm6S8Bq~n6Xp7cxXe<_c(P6DU7uqX+5M!(rkeg+^qS#-S^O7F?F#T^sK^@K3>
zEQek=A%kPZhVINOIq=M${Ho$#;RP4*ynZV3`dB>WJ!HiBmG>cTO1#TE+0KOI@t!Pq
z7;mhpGBw3}h9>vT#on|^R*fE$j<p{ey{*LxvYPOFCwBIB{1e#P>5nInzr{H-OLxGw
zP}U|V-op|0B$^WSP~lt}cG6cL$+2jZMav4jC94bt($n!#Uspoelnz3K^Z}vdOcH_1
zG+aMu$=KA&YBnNW+u2;+h*4JYUcI>e3v9>ucI_Oz{FsFi++GIwu47e8`qfSn%s0#V
z9!aH`l5J>hct3r9ZGe{Km|R}7S%cN@w!}KjG22<c8|~53^Q1*40fJ$Zai(T?2T9jW
z;)4UtF_vJ(5MNQINh%=j{Guuzju@_zK5U!^Aj%KLPIeC6kHX&&-_=8<Y;egt!qqE2
z2R`N@0kH2r9KSgC;+KX52k)PS_>cdF9x4~Mkd=)-nhdb<3<KpmNIxd<^YH}D(shfF
z?SRMb9=QAjBfw4%`~A1y#Q1(d;)3z~Mc?yl19tEHE|WMY^4n6P<e;J+J$T%)JO6VA
zH*k6t%y`zXjg8D}F|0@v{kBuf=mYFhMKH(v6iJ%Jmg6o72|m^fCw*>7bP`RC+UUe5
zRwfbj3{d8w#1OX`P&>R=HqrEecPnLH&hP7v?YK#PT!9e2g`3!@mz9;>wng_#;=RXW
zjZ$2EBf1}W67BAYoqMqJ;LKi-tPgfe`T%Ag<ojOyb(kP^fl9^TJ=-<>%%qv!FN83y
zS$%DMl5zY?k)&|z_U&Pab-Q%#JWBkM>B!_ti&6pht&_$0LRy(f`6iq&T3!e&;>9F!
ze%7(!WYU}4OTfz(o=VIx{+pY_h7Aj28NM8AsI+jR;B^?yF+FHTi_M+*uTa^Q-Y@Kt
zU80-eHILP&n4n)iD=qqn`^ND;OQISyWTma7>bM3+0%gNBmL{ySIgs?cyS)?jjd*9_
zV%eo|)!PUpE0{E#=IXX~GH;DR>@%jinEL<-H)+vghqISB9bzwaYp+o+lf_Gx+@%;C
z3`~0^Bf|!0FM}xG4IwwDy+7}}eaFT3K9YF-Ug5C?<4rDHy=5of$kaIgB%W($VnEa;
z3UW4~LFta8UlydqNRvQu-e@oBHS5qgV`Jk#?aEwEko`p7&#D|l%}IQaZKI};TI{-I
zI%?E77SmXqxg7~p_X?K7I1NnC2>A&kE^K-%2~;JRXEze-4V#l&|90>w>=1c1nL`PN
zVV}9lG4)j+Q{H6amWN?WDW#x$&vIRWO|yj6Jsi$tW)_r{#fUKwJE?0#%*bi1C$>kY
zua<-b*LBHFq~}9jNXk38z6N+x^puVoN(<z>J72!Rk8pGVEo-6~Z*e2;(z*&=3zHqg
zl_)0jWK%0=T4OL##mR#yJtp4B;x%7M2MNJM^Te8aE5FT*{d$@-o{}cJSULqd_abM%
zgV-mWIq+jv@<_s~rsJ?f3zi;$&S6Ihor)fuKF*_yfkPl3F_<)OU9+a*ToKiW<2WmH
zHIalL--0>)zU(D!7g!yC$a1Pi%r72_?H@J_TZLb!c#iuxNli}-b*Q6E7<}2<<acW-
zxQje)J`vmf%kCg|`Q%k;9^}y@Mx~QA5^&8+4P7_E>7bw<ES&)ua)0#yI^4Eer^7(Q
zsJ?|xZ*hwW13;U*r&;61A>!LF4is;w!44NQ5-Z5@hdewiM>9<9^u-iKH?;>zGG`CG
z*5s4Pv$tSqgVlrn!I`#Zi*Jn$c=XjRvtYC54$nY2b{5c!Ra&9i!qz_;LsuLY=?Okw
zorWx+t6rqq5+&eyjcz5YedMrp-_@<dDO$JD;){b9Q!go^D42d0^zGns2i`pK=G`&&
zU=x3nv18LfiZ;X(x4kEM+5FAL?PEKNRn^-=u3j(mS?gXCOb&MaK%6d(K0=;Le+e4g
zvL_zMG{<T|j9N<^i7G}ITL;jtB^o$lz@<1aj}Vp*Sz~4$pTt@v9U{T*Iz{HmYU+HF
zcOYF>_|$o<;Q=deERG`94sAJZ>+^b(TG2wSsP_r6^Rcogv~-=6G2YU0OK%tJ_%`F0
zSf_sZJDo;&dTEx2C*FxLGq4)af!Efw!eMj-JJ8NPv;FK74M&^g^tx5ueRH+W=IFfv
zVi6-rx&?U0WHDD{)uT(;uRNJ<#EbfE%7}BD{&5l`k&xF&?TXlwd^T)IC-am4y`N|{
zYr5VJTuVQ9^m#>)>B<DLJhZ~dFJRTv(8|QA#j|ZWa@6zHRP=}ohdk^!rjngD+Vcmt
z)%Sm|X;X6c7KfHspK!zmds9iM#fY|2O`VYNYNM4F@p~~!dI*2^->;9<H=32Q$DYJ!
zRzv|DB+BQ#Z;rDEyAb=AG+>gkOQvUICf;}Hb2~|@1Ne^zGloV4{yLu6jEC7H-Fu!b
z$A}^&G8vC(qJoG4m;w7zmb-(z*Cz2s{q*OKN`Lw8P~X4Ptpl9~4w{zcuxZmKYd4S2
zca2XNK{y@c(5J8^_qc>{Z@<!BIyv24-tb`JeGuyF(Rpp+LXF1E9=dP&%O{&iO>s)u
zY;V*daNij=gF<4aQ5hMx7O$L)3?+GAvGmxJ*p%e8y@{*|EFJI1bvB4JdA{nJ^AG8-
ztL><R?8Rxt_gswg$Fav(#Nb|JPfwen@n-|yJo?J7T9-3~h*PGdZtdst24g&Gwr$G1
z+Aviy>DRoP$|mX`giZz47o0JDFB%*HIR%uXbTQlQ0|E`pV>7N=W~{*T$Wp?#m_&S6
z90w7Y&HZyq2fRUkkygVNWjqry$`b}pQ8>P5$K2rY;_+W*YxKz|W;>sIo4a1${13K-
z9Y+({1KJI%G{#qOLn)!^p<e=UTfO`SBy>ho+naN6ulwo5!-o(1v~NFm`8S2DnqQv;
z@*Wp4|C<d4UFUvrXR%(1(YpMU)C(8d*`Hq&XmmZatm$OR1H;J67sWTU`LaO+{ZIWQ
zHSazBkM)DDEt~ZBs$(l+WU3HJFP&$&`Ra^{_yI3>xKll(R&S8LrW+XbjW5o2YTsU3
z4fK3oTVG|tP!?O1bMU#CxDnhOSiYOelFS<r)kDh<Q>QY`IPrDT`>Lu)#zQ~Ih73g_
z=+uvjYrIENerV-So1MEwZwa)sVi$~-bdlApRRvDPPOnZA0P2b2IEpw4sBrw{v&_Gi
z*%D&$EDqx7CQTT`?%sYSfpPZs;H9L5KrzptJ6V$93PPF{7ns<6XgGU2?<dvhEWMJJ
z0lbd(hcbNq{LCs^7WSB%a>8LDfa=Q^M?M-g&h+SY+Gl3xet>@Lt}kD|cAaN>eeZ#&
zeHrvfwnxU<_x&>pBFciXS;fmF5Da<Gcln<zn7!Nb?231NX)i|%KPEsNw7|<*=4~6q
zygRkz^(v3u6W{3Ivrf1|QD{)y!F-kir-0WE&oBp-91uUwf$7&jlMX__OU^?c?MV5Z
z2*L@N&V${lg9(vn8iR+Y=HnMTYv=ApD{Xo8#V8iraOu@bw_z}PrzLarqD&$i+QqwG
zeZC}M(7naFCaR?pgUeksQA}MI%HvCCwViL!A2XN;%)I}!8Wjg9F5!^Uve>|@`V1=8
z!ypxrRNf=7uK{HY6C=^S{eB9Ut`baa$)MVIp;InovO6q=mYjh;?#77qc1uh7v36s7
znPez?{w>R0_w~6yj|Z5wxbbY!?9@GN##W6PLprv*fy)rHfU~!l@8Zm(<It;P$ID%}
z&n`|Wrv;=1iKl>sCN&KsusoDbfPb%Q9mb0ZLbcl=*_!1ojknV`C5e30iOQ&d$$S5u
zA(eOYF1}oH6Fdnp-fZQN9M)9g%MtU76Mw=D8|N%18h8gB{yl;u!0puDdUzSNnLG78
z^C*od5sB&#h1H2ic;iO8udE&QWp>*2cjI$uGmRhN)iBeJn-@R1vQHvn0zxI0;N;=y
zneDoJrt$3^8;gLb$J=FGxNsplZu928SC#=RuE`i}aC$-jeXzy|m5cy#^w_a|->Aa+
zv1Ixan7C;G@siF;J;vpu7_CAs+=)jxbw%HgY^jvyGN=+fp>oHzB0ZPTEx5itJyG~e
zRx5!gTpNZ1Y)_%*1EsTV?Sl+G?-lkF>QUtV9l@dPGRBl0Su|_YYqufvh?o$wGPUh#
zLnp{ImH~%<i(nTE#4q!`^Np|N_N4M7T~tF!h%F?5p>d#Nv!#K(yO(up*sx*#&0QI8
zHwSb+?fKV^l+R}mxhr7Ej+?X4<$4B$N{oiV<HO$~{KvB`_49Z=M`~07(%(+<238(d
zm)W%g{n)maC}(^xPt~pS)>~+9E6Huf5ScISOr8VIQTSkH(b$d?BI1q{y&f(CuSutj
zzt8CEY9ZttKn^Jpp5T+LC@*jKW)=`CZI(2I)#n*Y*VQ*gxS`VX_8B5SflXvCco<?e
z{hBJIbY+!Dk1!+mV&syXbJZ2SB0VS?n8obavTN5a@u>?LvixNzSVmsjPC%}>2&zuc
z(>&&8(QU=b9*O1GiI4KS7FOj$12v1<_WEO>>&IC5-<C>L(P;aRr=fixdcSxz)&r(w
zcq0s1P#C&q?pt~Tdma9C#|}c5GS9!VQetJ66aA0)*fxwbf1dmmGL0(%%S)N2DlPzx
z*~8k5T~}MT_x94$;@`)%V87Wso3--zyECE5w$Yno{rvrxdgRVZtuT7~_%mLIoBNC?
z=#4EmkbInC?rX{r-9Y^@OpX#SH72aB?n$bWj_+{=C3+<Vw?THYUO+xjJFKo&3CNf3
zqMRk<&x59HT0<6^5>XAyl{jG_(OAC|jT<)>^RhJ=(q>bdI;4^3O(;w~5Hz=!6+!8J
z;&=;Bx-SD0v~W*Mo|IaUNb&g4z2htFH&4#_9tiO6mM#-~-~T+Wf=gT)adPBMS|8%X
z(YJ_YVGc*@S<>0@k3avkO_v49sijLm{_LGwsw;m<t(aeq_|mY6<w{zvNVt2*!!wNt
zTPhnQ!~e*aPqo%&K9fe{3F<q4_Ae18Lw8f-I1<5It^4eG&59K(4i{0a7!<cBDx-wN
z1V7s_L2aq0Nd>$7EmXq&Or@+?Yv9Q=8bga8w#2<GP!)i(t^8vqpS)E#)sj&^ylM}7
zh;$4pP1|{OE_55KMEXpx$q>j{%(K%l%5z!PWAb58MatWHMPl<!#?->&W-?vm(=Ev@
zLL}26G3vMG9=m9u^wSg=Zvs)>P^UzUC}5=BFc^M}9o4$A!AL)yaLQ6lxoS%Gj#mBY
z2s1orKmo9c1<SIp2d|x2eGPS@iR6W@e@p^=l@1mA;$$2ny=Q}|NT+!snKk#8Y$e;t
zn)hiX3F+328y}zdt9`SR;<Pl6E93D~^DX6pb=K2MJ@`s#fCw}wg?DTJPC+^aH)2gq
zq)=Bs;yDea!YfK<>g`CQb17Nljd?Xhh)-{Ouymw>Q9gm+Q!)tfc7kC%5IJQ8y&{r6
zG4c%WxA`umc|)Ru5xRIdGdVI71%t9`ZV_NrQ&`F)khXK_XTe!JU5KtcwPfj18(#4Z
z1|2&--M4p5l%Q!4*IK%PKnaCoji)D@bJU}R9WFkhtdSmu=9tBiti>M*d0hcKKXGL>
zd0zfLh372R>3yi{o4a9*DInjPd-UJhNus$So+MVN9~Tm-Km3>#Om99XU58f|eRhns
zu6)IME7?F@uAL%U%bzq3Ol5a)97JIdN}<`S-Jq3`g*(((c6x6dYLC`Wy0x?47+^oM
z3Ub>qj-I>`W@`*|EnsJ`f~JI(?ijMma@}_wB#3dHRQxNKDO=140X5fjiXAb0cp;^u
zm2=Kfw?U}wYd{BTen)Arvc%SlWyoOFhf@~p+!J~2-NG_rg;&D1abo8R>GlGSGvi8y
z-g;$e%0xotrHT(s3F&|7OIM;2VLAjopU+O*@N=s^*-ftU;0u9t`xgOSPWrrgA7x*9
zye_P(1U^Mhz29$l2GzL8pCo0F{5LD^GI(*{mG50cZZVX!7yagtXDdQp>D`#dVlR!{
zfYl3L-}fI4Kf;O~B&0Q|6?>>%9r~W)RD(KiIot{1F^23RRg~ArGUXlD>{@V3H^i)^
zwZ~MbD3{+5>50`oNz)q7ZyGcRWahT-LJ%oU1gT-#J6*hVDJ!;D2XZ2ej!*hZONRzA
zfNOJ_jy3i7p2eWQ#@!$}?B=ZFB=FLQD=Y36llmb4r>y<HDd&ky{Csyq>U%H~?&}yx
zx#+Tgn}umaCh5e9rA2qFg}6+JfV26$l5P`^1mj#^{Pk&vS>ss*gda0PS_U)4ivc6`
zgS?17#C(&XxqOzss}Y1Og{e9GPP`mLZuw4V-{VlY1J<`wR+O*)D#7IzAi4n7LKEz|
z<q>rO;+b2kg9fJH%uL*>SH!vj;c+ZW$kD<NluaUO7;Ig6p0Wb|<LFoxl1*6e-N6}g
zY1kIaba0(iV{v4+nI{=n_kNQQJ7_*7T4z$@z+6lk`|Tr4capxAz}{^P?g1uKb>%ts
zdBc=51xqz|FJ<qT^mz;1M<xT>bWUFvA&$r$&G#H;Dh_$Q9Ux8G?4?osv}ExErwJ-r
zLMm`iDxSPVH@ElB+m|f8kAO{zi1|(3f{53FuFQcZ0wlWPflSi9ON|1M*MuUtzTX%V
znsZ9OoHS@F;jI@&(pPt)>9I5P%M~n4c5)<VW)%-$l|)cn!Mrm5{Q2|a2j7BBpR?lC
z24KkzD}mE3G47lY^uPm}jyR{I<?r)`EMA)ITCf++U+xhufFF2d9F5*E|90TUrA|Vp
zuikmh$>4>HMAYCOwX*DyVM0x2tNre)DHeo-zm3qvQJ;_qGC;pe;d^-k@89P6ThYgh
zBJ$PD9I`6c9sB1M5~SUQc@z~rKc&f4R?P&j1%W>goh=J|*QCOdVTB_*FtN$^4d^Q)
z?L(#IUss1Sr|3Zt##rT@VtzTnj_p~}_oI}PD7Wer5eDH2J&pv=+-1BgJ&N(cX(!nl
zVEW~1fY#8rU+L)Z%)-|E7Qu7A%QEh4kdt2d3y%p-#{9G$`E@F~-mjnjU8EuJw@n0^
zokYAZXmB?Z14?GJzl>tZ34=M|k-M&w5S2f2w^EjL*+ZsENv*rNdCH88mEX?z`in1a
z<F((xgfdgQP@@H^1q8Q-NFbaI*!#t-RFKrH*x1PHf=YHugIrkjy$u&oOBdXmbv%M9
zu?&7!-aDyMV6XWMW1{<KS0*(2@BGxzt3#bwMdt#Kh?8?y>%(D!El@k`I^m!%NmQtm
zCWMPc$;}NT^Sm>Zw>kp}Sv#@3h^8SOAi;`Whj7tHN?jeiARkIR%e`D9f~ceQKc&Tk
z4GX&YtJyQ@uQ00%k-+6A@hnW@UW>ALJa+{LL;9o<rrSt!M{d4?`)*-$s2<U?PsWS#
z@;lPIjs&lm8wd!+;D^L(oSc#@%@RZN{41M=5^SWBjmAOcikuryTJaw8RT{K`ggrS#
zv(W$$6HC|A4ZD6yhfX|u68S*hKl_Z$&&@sKYyidL2xJmcJkxkm(oYjOdSdFwtH~0~
z{qbdEa=AWY<Si{fh1tVm1zPr~>(m|(8y+xv`?bkJ6xkbHy>^DauIUmWxiJPH+lx*I
z{=9s$RkYotH4Su+ox9UyED{n>7L!*W3%kagdFev{G%K!GRQMG}?=Dp!*6r^7Pab|X
z$l;t|l?e$lkeghMp0r^>XYUDTc@?{Qu`Ok!g9a}j53I86nZq1*6PHyU0zd+2%cfLV
z^K-fcz5GS^p2-L_5@KK`^n*}#d!NJRKCG!x_6hgG!;3Ua94KB^Z5G)<9uXB7_#T_u
z7xETKKZOZj2Q}?7ei$&MG(Zn3iicSu@GCJ`w|37Ke|+!OW6D`Uz)mKZGlsGN(5;@C
z6&PC8*a3MdjUVS#dYDiiK49?kYuVT5u*rtEe$}@9u0U*HEN~Y-dV1t!0doQSnfUie
zlA_KZ0z@};AHN{=)f7l&{HjBG9z;-jH<?waip2fi0Nx!MXfI|uEOdK>0CAzuv03`N
z?tXp8a4O*$E2=baBoh@9`@@XuMbghk@rsg#Y@jBUpFNoS@X)};Pi`aR3t_Nl&Y9>!
zxe;Ok2ip=_Q_qS4JRreCrrX`2OkE*>2$eHEsy(vOTTdOqWDcXA8_xbu%cy+4Bi%Ay
zs2D6(05gPqla%cUY8)oAiANL=&`w}{=(jrd&qrTTqYb2l$xGMaVZ$aToifabvlC_T
zre&Bml$-}P=DZbJBNtKI>_7Y}GFV;bO!|!xki=bvoslyuAHX6k$v0dF;R((yWn*!Y
zKGkAlj@y!@e-tbM-mF8x!NHcEQ1uUjamTQucO?i4j}}%MGB0XZrc{cr4E6V?Y%OsX
zbib`nmq4^zC)7L0T1HvP^}cBt3d^R55{8*u{cu;Wh}kgZDQW3-ACPrmOfy#A(X2w2
zP#Nx?@q?&~(N!qSxS{CVx6-oW?wLQKgYf-Waw(x|39G4mBCIBizeWfS#TqyClk_c^
z17Br_mx?3cj~s;_y0(JF31yhv`P*@(2n~c)<Hl>6h=i9NVOd17CtZz+Y$Y}%2zxQ=
z;9S`C;~RGz`%_W9pVJA~XS|IIBAPhW*C?`eGwE>3;z?|DKw7_mrQgGPObpncF^mvG
zX9a#8HiU^KZNcS51o9sB%3;}yr8mm+lKTuk{4ojO$#-Lft5FzIw8@mjdtZntmAAMH
zWS!^*b@(iHmtnZxj9#E-UtV!0(~qO~tx4+Sg^4rACSA<y2H6^6QX0GifefXoHu*;e
z@MN*;?IKo=`-z?>+5374kS^&eXgR{0PB^e9WUMEq5Lz5`MCt#D%{8@u*(FDB>5NBv
zP2bN#8d41vJ7%A?Ysb;@nJmDHm6b_1nqmkU!vW{##faX}&-S?|d>9^>)v*~STYK8y
zKRC|WLy$BfR<e7WNRT7IE46azkwJcKBf0b0%S7kWVfz`uxDXWOJMj5vpEi;xjh5c#
z27?<9u1~af2P9{o=m`k1y3$?8=ldQJ!h0s#(a*6lp0)Jti)kz&h5U>rD3)wuvh#qd
zxb#XIN5@oYEs=WR=jpX8+cIyhnn0n19Ijl`W_x_=$m(5@qU89WKgLgoYLy?}EE`9O
zSs(vjllBL+rIc~mo!ZY=N+-0`y~qWwmz}LWK^=X=|N4s7Xs<{wWbpErN{NnA)X=sa
zj5OhY7oK=T^o4$8$AaQdTKom3$WA|E{=0|GYERQ$yQ1q%9cbz!qcABOQbB&v_ueBh
z-5ZSzCv1nN?9Sh{?Vzo|)q9e%Hz(82*Vk3F6m8oP{VB1sdrOuq8FMnu+c)5KRaE}c
zDYa)iqIGj$<jwASRF~cY1mVk<y@<(1b2$$ox)2-T&JG@*?BC{OM2~Y-wdw-z4y&xx
zO47&PJk1u_z}`X$Qj0`V$UJ>Zp{ZO`3P@{DyKHyuT|O==TWHmWR(Hcyf|=_t6XvIu
zCDwkq&cJ&^CXfor2vg-Vp0qlDX*TCQeWY>i*Zl`+AS&<QrJsN^I%BOEhuD*iU2op?
zGU>Oc{%mZbN!XHp?sewHZ$}g7-t9<L^psjGgw`s9)W!Gy%RzNyDebix^djl>zM&Mq
zM*zr6Dm~7v$x==&WtQ^}oK_x4eYU#SCy?LP?vql(G7eA5Q_GoF|M5rjY!<C8S7$7q
zR)-4Jda3p~cbaH6;Tu~0WI4Mlzu}#S47<NTvSHb=bJYh@oo+^Lzr{`y|FrBy_g=!m
z1l66n5LfG;fbSSZysVN&sV}m|vCQH3$gVfeHq03`^*3WhT<{#Lt}R3NI1P`jALaAg
z^xS=M)*J8GIz>j!jEMTl$KN7iYH{YR0r$JQyY4iw%?{9g(N}MDy2aXhw|y7C@U@H$
z>%6YtuNyzESeCQ&T*tP@+Rm8SDWhWez57?+)>vPDy)EHel{$WED@eiyLe}xRHS2hn
zXqs9?RlYlSeUEFZ37(w+xh+-K7p(pM>yoTKW&`uLe0Wt5WB!T4c%L|Zie1~gg1cse
zdR*$K`UB&ADxZQR{Rli^YnHRViL+=E_GaV7d(Z8^|EAed^{uaHr1H&h4q^6=pgT$R
zI|3<l7qo-z@1~}H$HsQe$RE!gvGZ%9X~MAj7u7479TpoKn|>gC@`BSH@CMzK`y(CB
z7NeWT>R_7}9I@jQ?9}^6lYp^3w_QJAsC=L5+w;-E$MO!RXw-;6*#{x~pnP<UN0wtN
zV1Z?2O^0qM4L69{VuL{?8(&H%AwI$1o>HB=^l|X-4SaA<>|bMNWz|$%@O)_G_W1fk
zj04{p_xn-obU#%qBd4xEt^TVgR7chwJ9bP=AJ!@@fay)X{Ur-eW~`Lh#Xyt((iX#p
ziBmv1o{=Nikd~|E-s3vksdV`6$FMKGoU-c8@ei+tHZ*JkW@)|<R{>{Y+deOUoj2?v
z*}&%!s%tj>v8T#6VvsHLTn;&;96)#EFdR2^8WEJe_IguK5j<fMGV2o3GF%UvH);fd
zWBTBiSK4)nQ7=LDH;hpp@3x;ji|qz(^Qzy$Y1{yYYjkNiBX^Vl%%Dve9jdmo{a;ge
zwe$YviArc1dmOKeOmGsFMP_f;XSc;fPh3FrXDSrmmOogMa%t1Z)-8JU=+UTAZ^$iS
z5fP)8ivpC-xV4%)zsGxoIm8Vkd>4ydZVfDW(vIJcx{fJdGtxSb>av6Mjqi;^>=qk!
z?6-QfdcOPx2e27Mud7BWJNk4I2WOcw@d;enfYR8za%Jz9lKA@5@jbMEedU=Io#*VZ
z>$z==r>N@`uER-C)?u)#Cq}g&5@g;`?%tBi6O4}}3%rO%f3w$~0WQ;Vmhm!iQA<t7
zJySVe9MOdi)OUoRP75I}4;v;Xu26|ukJNRuymnoocxEPklBaNPew89FR>DZU!yPx#
z-iw*~Ub5u51Kaoq1_rKOo9UKeFYYH8xyEeS_KD)QuBDAlGTw=eYRX1l;3_@ENwoK}
z7mww)%FpWP&ZWx#yq(U1+jG{f-8;NiA@K@1b7n9NY46G@Z|k0+_}$wj_u`7+`!ev+
z(cf##U`o|*q3&bIHvWJ|`Fp{hE)C$d%VUm>apBR~XQ5v>dZ*XO)A+RHt!?KwN`5Mz
z+gsHh9ltAWEhtrectz;r2yL_+g7m>t^%dUH&zPtFlz1+}GI?1>v&-)ab}upWiBuiJ
zJG$fM>-mf4`pf@%KhFgYSubBELD}rppIhZ>{rExXsjoR!?uqOL>*;UZcjvBMugYLI
zI8wf|uzXV4T)jk;CY!gF@d*B`l&_Wp?kD#@TfX5#0(s&kF>sCX`sn1tGwSS$8qeiw
zhiw;uj30Czmx$$cE^uQr?a16R|3P`A-&f+zy+QnCZy6LH{vh*gJ2PV}xQ?x@?RdL-
z3gaJy_Lv*G+02JvwqH#&sa$zgPR$VDkfzMzF45|%i;t+YfW=1^M<?{GF7T@EG^A#4
zAvY5e5z!Sl>j`%Mm1Q}9tId9%BE+$Z4+%l;_q#BnXPc8q$>qz(JNi}!<=Qmr4lL1J
zajFFW=~NSa@L)$jgQBoyMd63W%duvkM7y%RpOdwYTbf1Gr|EDbj3|<HRyAo;C{7Gg
zE#RRgjF&&}p8;-_0bZ42fQy}ZD;nV(MJf3DGIObmXz>~hdHeX(i}PQJBj&qG@zOzB
za*-`{TdtZh6P%#7x#_g%#b5PC&YwSDjBC@Yuy7ghEco}_WTR@A!?tl<54iC<elN!A
zIExIRN+AB=b1SlDZnOWMZFU1ZwL`HDRQLOAf!c7!<ZD_oldm^}zPT2^&L=qw;g^Y-
zY$o+Ev0TFlb#LxyM9nXFl`c)19n@6Zk_VGgL=DOIs`(hg5Ur|A$Qh20?<eYqquZ%=
zA}VaF<cWd|`OCh<RokxAU-UTX)cc}H@oMoWtq+a;R^jb;glI~Z$`6I+UOwQKC*M0$
zoOij|FXQ6p&FsDfkRCPn2i5i84pKYCG@eW^?Xi%5Fyq;eQ+WDpNTxolAVZi0d8D2j
zDE%Lb{Z8Tih6SKmmb3n`EN5~0zVl{eJSgS*ZqcWH1Z34A-7uTmL3MO*RS;kQJg-L+
zapGCi+GEb<y_ncG?>&7OcJ;$(%&fC0=@Z>ETz6FZg9ke1L*C7pL2w)%zD|sUHczp!
zv(o{haItesw>o;gXM*bs#!x=q8`PKXeS=I`oPTl7$t=mBUfq`vJNJ*qW@{;rCR3wq
z3O7_&uKgwse?H>qj+s;Luk~85t=D>4TN>-UT0JEPAmHs^4Oe}eVZYS=>lS*Ud4H-m
zs1;wTrec#|lCt6YyEZuMD~*m=A8)Q&iT-PP&dSOS?7hmhl4_@T!9GJhz9lelRbl04
ziX-_zwqgK%6lnS_x}NFGQTcDOiQ!@jD7L)4K33UKPRheO8GV9JbE8!&@FAa47+j&c
zUBzVe0{!`O-W7l8DZr%wGYyCMet$Fje0>U8zF-9Xxclie>^hp~H|U_DNUZrxJ+7Xp
zt5-mGEWgsue;A%kgFn2ufE=zUw$mqyBQ5ZS68~6UE%D+V34d0OtNfhUu6mU5M@TG_
z;rUIccKFVVP-4v;?2|C~m4AKn%{NDZ^J5Qv>TGk`t|xVtZC*4R^dkYu{V}-P^%;8N
z*$zyz0sE~FMj-GyjLLdeg5i@UP1>?`tF#+P-Sd^|oJZ1Cm#i?}b`qhJI4D*xhq&c}
zo%X>~8a7h!i>3z*)mN$hm-l&%^PJ}AZF_5N)YLy(r<y#PFR;=7PcF67)dqFi?|i4R
zkkkBRqk2>{|F7`AsJ>+FPugot1vNkUfBaG|FO8i*9{EpSfdBU|OEVsde=mi#?Ei!F
z=HCaT9f5xzka8&gf3e(YAKJg`%D>b0pVRhP+Tzo8PZpn!o$VZY;6R5`b!ddmj@D;*
ze9vv`(TkV4(39h$QO&!Q*n(KSg^$j>#oDhmiLSq@OEAZMc0v=K9CAf1l3aPVGBGSN
zay{)O%-l@lFfGNi?|aG|YbA&-9jKX?;i@DAJHu3ro&#!@02v)Reb9iDNOJTN@K<wP
zw}Vuvtis!@@cdW3d=1}ZwyRlD8kgbj;}k)okatE6(RTNw051@j>JzH5`gI-Mp+g60
zvGL&*(f5}3{nAg^Sb9lIC!)*=c1qBJKiSw?9U0x8>vqB^B3hGbDn59r!=K>0_tW}`
zo!g;fmzpYbJN~SW_wv0rJLeHOcFnM~*INJ1F;#&H3fFl-fA5Uw7NNd6MJr7R737fZ
z6hS0De~rTgH?4*3R7dSeojgs2Ips^F-r(KRgj%=dxtg!EjZHjgJ84qZ4|UI+*;jo(
z<GxKjb+E_>_(b_hYNk2!=OH06;qltzy||=#j(<J7Qg;BHHLl2=JI{{^CyR*7&aZnb
zyE>`ecI%JkR;X<IIqPRf*EF!v+E<_5tuA789>5W-t*uWK_p|z6{yO_r-6K!d_$oIE
zHMO5GzhUh|an|%28n^L8a@}K{(4J~y=}Ob|+UL|mdzIF5mEZTcUsU%d+iN1_`nI0-
zbsj`p?TK#R&#QZFSJiQ|_irbo>W=#;b#|g?a)xV;3J=fPUsmV27Hej5&uLC|NB@YM
zX7sn+ezUU(#odbobq|~Ap?TWZM|sq}uPDuZ#rtx;AWEDa&)uuN?fIJfir>;BvF<cD
zp|K^mm!~GZe+E~-&5Jra3wCs!aSo{iir_v=x2a21#Pf1$s+WSGlCerBo&qDIk|P(U
zlae$l_lgcX`|jy3_0{r%{Gq}XLGN~-$gnhOgIn{EaT^xZPIV_WbgOVRVRkI=seMT%
zr>HO#Mevw;o~CXS?6mJyriTh~1pvGEG`h|#J~Cf>y2Cf?KFF!rYFt_2I#-(BK)+4~
zS>5Y(65uQuL`ySJB#{5r9^4kh`~z-F{%hAl?-<!}^SZrww|=U9`{%2%SH<mo85#iE
zmSoaXyCYbB^T>0dHrYzjFWT`&`Tlu7e@Zv`4P?-ls2}DbMD?ZLk+e<2oi{8d#{cQl
zr?H(r9Y<w%EZF5R=$0W!KP+r*TS~sj-x^ZhkiKQTrzUyF&Q|B<w=bzD)`<{7xm&Mz
z@z*kP(md&Y1_egEweKHSJo}S+brVT7FEkj`T_8Hpz@z+ksG&O7^!_yPYCb!|Nae-4
zc0kj*7KBBBK2aRfk7n<i_KM6a-k*GyO9C$)Tbd7YcYa-*(W}%%wZbTxG*{iX@gTvU
z0Wq%3I(`)YqaN?~Fo??5HuRN2k<ki#MQ)6m{)1aipFHzv*{W3t{d{ONwx53$6&L3T
z<j9Eh`uGSM``cSf&o(A2m*m{D<mkwH-PN?G;M?lA@x*ws#&x}G>H>Ok35{@KR*a!w
zS|CP#0<HbouuW@mOa?^m!wA=l`aF1$E!@X5fJb62J&~%iJUu!7L>R-(R+;nA7p{7>
zt6aLTfrjhUOjc9KlbWfw%l5Ho9pC1)scA0IHo(Bbmrg)tjgobijNJ{GFYWK9RNc=o
zSk^(|Y|G9{>oFNo@Dtp|-kp!Zf_bRYWI5HOliTB8)Z<uxwQAX%`V~*)6caWNt8gDN
zISxswdR^F9DhOal%GQh9?A=YKbx^cFP92Eh-gI+T9u(zuKr<W8J{8+)VB+2l5P~)N
zUNd7RX~ryxnkHQrqt}Wpb4ZHcpy#Kg=^BNOjzA(?&l@P_v>^iUk`52OVaP0lo;rCY
z8i?G($8Y)Me0bVlY7JYo2i~Eciu#TMQe0|kb1}q!Nc^4IYjhTm0*+~ikLRxQdWy_d
z;3CaVK6IZvcJB~FP|M$~_m&>H&_HQc3}`x?#(`aWsQ2gKKI(A6`4`47GCIENf>VG0
zIj3r`1>;gC&DW+Q)}<rjmegMqne=kBZzTiuV8yGO<t$bw(`Um%_XpDxJZW^XdW1*q
zQjKu%23|e^j+w01Ww4zKq(G1tFsA3afPjE4_dYRB7GGw&B{%!I6a+23%p3T!Y`u?9
zuCzgtR*6~^xor>C%IBT39LpBLh}pMambpK0Nj`<Et>d*VUF5xOlJSXgJUXYAP~SK3
z4eK(P_z!qagFbwx_6hJ_px*snc!@)tvST3>h*xFczu)l`*5T^?)1{e;+o#1z+ke&T
zkU4biIM-_6;u+E|&pmto$tIdg#O+N!sj7CJw_Au)v@~P0{<TQ(W8htuvpJ5r7uShL
zxAo6OC}(mhB*<*|f#a(_uI*Lt^zA5-3k$v}ljSgq&6?^pMjxh$p*zB#?O@E$&Perz
z<GN%{Ta%xI!-t-9xs(>0fw}4`pTfXLHS*6+P%WVI$B)%7))+m>;pJBL!r~FkZh}YG
zsRlHpl6O_vP>VKaugawA_?DhlZ3Gt8!0n1>U#P}CI2(J0#e-iYefF*Z1nv?Q52f`s
zC5_-C;&}i3Tut?M{rR?$mC`aXEiElHw!Z2Xz5O=UUHW2KJq&xsKimJ|l^F2T<J1=v
z^$=x~`q?WhA2ySsCVCC@^YoIE4s0$-pVSLIqjvT6F8x^*`MC}<A6!0c_oDM(3L;4V
zE_}kf+nxG}DHKS}v-66j58Z6U@cUf>?pU3~#9!WJO%+FxJ=Eg93IsP0HcnI6NVA5F
zD~0y^fP$Pnx=zeU2Rk|!zAIqLw>w+)uxtbr2~814k=a@mS{R=cXfi)Pznpt{lJk*f
zZyP8IOCczJk1P)`v9@{b!JS{a#&zkbUMHq{ULjSmyWdVZN+(X*^;DYt1AZ6e1aaNv
zFmeZ8vQpf36R~)2>P!=%WmZ2#Y0%Q>W1;y3JN0sD?5SQZAD)-Do9gYmf`u!KCzoeB
z`VSZVK99(W=rUtEthb|-XBaG^?ZMP<%1ak|4SG0D^_-GwjxEi(W3jb3J2~cuZ%2PO
z`qS?MzO|jRuk!YnZ4<lJ?>xLwqv6K>U%VZ?e*dCzpET`WuhAC2q<uD@6eji`+WAY}
zUw-la&lf-JsBHLsRsYR;JN~%x$L_M(J?`DFESYVzB<0rE$G`W;|F7PEG$abeq(|sF
z(~e9VYWS{T93DKvtrlLz?|2xuEzZXA7EZ(gs!ApSxb*Bt=y4iVm(pQab-jwDyVssR
z(-3qY@6|_W*DkmyH+Mf9b7Sf}k6X+|`AU&<Mw(DiAsp-0W#G3B(VFiX2a0YJvh~$4
zghgXyz#Cxq>s@0?fl&-}JDAWd5DCFyIJ8e5N2@PD{$>8VhJxhXy&J?4A@o6WZ*TJG
z(IZT_ERbpGKA;L-<0%H;=w_N%B>nnX1@Xqfx(?6(!@cO?b|R+8kiGvyxW8y4l&NB>
zM7@jlu6l2Rnrg{ZRV1Oj67NHoG<L*_NvSNz;>`?MbyPrC%dlXY>|MEf_3B?(hrc){
zWLp?!6g_sg4@Z3@oWbAgI1(#Dn`x|>6*I(>Ss%B-zL-ILN{Tf=xa}<Bx*^Qwv$%jg
zORA%^VJNh=sK<6=4J|Y?#L0o}p<IuG8|Sjf1|mhk`3o1sT|;E&0ckYU5Tl^K>bQU_
zQtKWEUR?{^OGJkFnHUrY3X2&DM#~CJp~8)7KHU9Pmmh0Bsq1U6VGA53?2#rajc7!C
zM+CP>t|2LvBGMDah{Evb0MVRN<``JlpxW5Bx5k*+I1tH_I}hXPyz!99uISLVD1<J#
z*YPcLh+<0CtK;;o7}Ze2D^eWWLNMAQ*}=g<yk(RZ-vuAc5SJCuQs+N9llALE%~kX7
z)H?I%l3pl`Zcm6=^~4@){CEiT%RN0?#pN#@Q2Qs3-x;gZKZS9i3+#O42e-m72YZ~f
zfc&5b?Es4sJYXQhbd}kx{cN<>a)f5I2yC2bXJ?m&n}h0HcOh5jy(NS;SoGLidC{7`
z3vF8a?*2J*R2({e7?j(T-wFTn>#s$fh=1`mb!k!lOwXuxH2y#zFc&8Kh=&;JD9=^$
zcS*@%w973j;GF9!ZMW6uY8$1c@m={&lw>-yv2PaX?9~1|J_pFYef_XLj;35Xur6)N
z*j6i3-q?X!>$L&2V~m!URyih#lu5-2Pe!ti%|Y8GT7UMoV+Oz@b$Nh(sh&G4b?ScO
zUq2OLK6iGg?w$45-q{|{%Cejc2<}R6<_2Qj9l8~9x{HpEPDzrPX88E`T&>z9X-OGn
zYaYx9dnC-t(MY}aGGUiyEs;MOY@{88WzT~!g&Cl~V=QibvC0vjD}tfCx2y~CXh8n)
zpfcBM4&z<0XXdDM>}A9`S%$7{RQI6~0ZqR9E;smpcVWE-4}LJ9=lIaIp9#gWaMRnW
z?3W3;wRf>`xt5jp;z0sZN|)U@z^Vr80%8-UU09EE*>&E@9nG{8CnfROvpIR&<@!?g
zLg~H=Q{eyP+lJx?_u|9x4-IB(Oy89w)27bIOfs7+-VCa%o%v4pmUb!RtILLH=fjH!
zo^N05bJ-2iQyz-3$D~zjCa*eK_nG$6KGWLUmH!%byu^=JO7+=jfTb-9hp;RWO2IQ+
z{TlGBGkP<>1>Y!+`Qk1mQVDhq58NA`<mY$Te09sTs$Dl{$&U#&7rVG@LLb69viS$k
zkt0WT!$%VPfUZztQR(!FU8*@1{|?adR26#REH+qn4FiivgJnxhw{?aok|ryr5EhFO
zIHArXw*T|<Jul7`u-4sXicJ{2P;bYUZZ<tn$HzyIheb>{<Od5mzog{D*9rg88-Zy*
zyzql89rM^##8ZeP&yMTJ-Mp-*urfCGCbR1anb_4ZgP=j2{4qIN9>4t6!SvItoDndu
zMOK&p<jIW6J+R(ISU{)da4xcaR(~R2F6mcs^2OPr8=F93QJuM@n5=z}#vNnvbQ0Eo
zC-XhAr+YHGB90}ottj)VnSATkEg^U#|NZD|Fx+}E)_Q2%dYWc5!O~isbTJ&k<J-?G
ztWVoKQK1RJ{$@WENU{mTScjA!!X7XO6(JpYk5w%fio1N#<kKVOCHLdTB)FHRvN`s{
zwFJfS{Rayv+mpP;i0)}uG0woT5ZA?44^N)=41;(NBvfg_4<1!g>krpvs2|;x8RDgs
zl$6x|lXO_VVT}AdWVKzbBDR!VOk2~iO%X9~N`#eh|Amjz5dNg27acxw<e+%n$Ki-1
z=%o-Q(teiL^wa2_P$P^JLsGW(()(ou*mt1CI5i!26UQM;H-E$eHZqPjgX1vM*&MWU
z{#>ZySO04X@{1y_H%Dtf@Fcu*GU#6EQ@hofUURkdRE6FqsHy08)4M9<YD8^t=guAB
z=?ec`*U-a~|HVKo0ND8;J_IH_k_II@lkPBRaadI6rQqiyo-c$<X6*P!Y!gJrfxFnx
zL7x^*Aa)fIu$Zf$OMCtJug|1w1AQhkxG6UzCZdcMX1>c!<OZ)HQyz-1+|+L5Ytqmb
zZldAGEs~^Q4rT>B(mM$4#WL3MCTfZ(m?@bLy^tVO2oaqN5{dUOLx;K{tr|XJgox~{
zz~45+5ekSVut}>{PL<Vl#vxS6)c4ac^%Z+YF!M>v+nKZ+yzB^RS;=F+)LxhefhP2p
z!`Vad47fUDbj5w-dGokD4=x|irdJK|Mi<{o@yNB<i+(_aQtnYGK=8llhwo?}-sYib
zkVBV!vvCIonpao?qvLqrERa&*6E=77_lW3F&4(^CMQRy`>fXfPsFip$pzPdySXMD{
zYlZyV++RElQ8<is&jBeZgg7LmEU>3`yH<|Gt_*#v!P4iu%QMlf_nn%g*p)GGH2MoX
zlDeCSML~My54D5Pc8RvZhhoN$qNU&9h}s9a;)Q7Mi1y+g&x_VE*k|_n8G40)K0+ti
zkc=)V-Lv_X8zng11q}R6U)v*qSdq+Uc10$aHNnmci*AW%QEja{MnJdN-TfXWPEU%8
z<_*?IiQS}f4>D!uR-icWiJKXFmaX9la2Ly%I*W9YLzb>KZhBlZct_h#CZa_^^P%Tj
z!xYZTWD_zoGYfZk#UwLa_QE(o7KXl`C$t{2B1~MwS$9QWfM%AD^n2kwyPlmr$n+y?
zG_Tnxu}(uR@jT~TFLQHqBCkkM(6M;!e6v~nV?=Btw(id#C3eG#;@!J<UC^H4G-UE>
zm1G*k|Ke3_kEr$kXz$G9dd}Cs-~5~zGsa<zeH}|AyCjj)j5SdxS+WgL%9aqKni(@A
zBvWK-Ls}_IWl5N!5|WWhDa{npE>tSj{k-b?P3PSA`Sbqcz8}Xw=L~(neLnBc`}4l8
z>vg@Z*UKFd_&)qhM^v!or6{~^IESw`Vtg9{tBjmr$TO<qO+|$nkN<g5k=M&!qaHCG
z7L5EsV$j-8E8W|(9Tej!a_lZzyqH?^G%p)C<KV>FOy>3&t{7QT&mqq6=rH+hWW5|y
zXv`UwRg(piYo`UheR0q7AF<!C2)v;MWI@Pz%oFWWNJ5gKV_i~O`J*1>El!e$47-Rb
z340aXA_UPSi5yuq3muJ^|6bQ|>owjmtu;^lnA?-dK^faYg?qZ^kfSfJLm1l3EJtn~
zvxvduPaEy+(?siz>gS2quw(8bR6w+mB}84|EPFjjMETJ|O7u;;Xo~1(Xf<f~c2w;>
z7DsO_TOP{$T%uLEg)w=A3S>;(Ky(Z?*Ho<K^%|a#5%J88FGr_yDiee5@7|Y=|G2MJ
zG(Jkn-BAVZeE0hAiKkF<bNZ#EUiE$XZDwdXeD&3Vg3T~nU3k}rG}yQRbsaAlEdz+K
z!%oPUBeIg|qaiiR1TC+kyv)aIWH5&^DU~;@L$6*wIpY}3i2>vi4bHjKhM#Bk6A^KR
zFPKdH^jPdcERI1EQv?9WOD!%=Fc6JEhOEPx`Ve0-^)Sh2WY|-rN0X9<r;ldROG1&1
zo%h>%#7iOybrG_ma~K?$Q(WeIK)XwicJ01T+bmIxcp?Wfijk^giT;w?%N(!FOmDs+
z0`P!k)ncu~nbIL`B??Uv(ik{@N6$fRtP=qb=4fIN*tUqq$!9sQW>l2Rkf7L}Bi5Q^
zTC<}sTH7+^b)8A*(ASqwGj_2W9U<%xmW6!(oD0l{P3xh`cg=)}^_as$lM)@vuEoq{
z8g3Lh(g@`LnQ0rA;&|%RsdD5`Y{1K|5@`1niuy7^ynsqM1r+6bJ7e-L>a^8GPtNnK
zO)uDZd3%d&tcaiIw;F2c4<==v5>>Z<2`)Rfi-KmIQ2iwBIpO=y&x7M)V^>2W+z!9=
zQTo|P7QRcLl!MRKH`^utQ>z`%k|H<!>3vJ4Pf^?$Q2=dk+_~fL%&%?=7O6YxZ*`<V
z-)Z}asv>9a{g;l!a~b5-L}lhUN832mS&$3bH^OWqaw-CGpgl82KD1Ti1r`S3)Ds0V
z9Pew-2wupX(|ZuLT06>bkZzkV>k)BHA-1{eI-xE~^qvip8QFE#p<c%SB<8p>_HAL8
zHG#SRXCV(r4-(6n8K?1p{%?5%OK#C3#5h%CTIG>KLS9?44TVJpISmm*z0mMI!;n&p
z=G9$hm(^ah_$WymSko;ob9SMm9P=2(gXoIZUw+vz=HH=%#i$WonE2^4@fT734!&O5
zelN!-8k6M&0k!U2Tg#1*%U5>{n(=_bT5cE_q1&rC#}T!Oz`BgI>CwxpC|ZP25;u4W
zv<{l?7MO;m>tY^%Dg#byOR9`@C^_dAmzMe#U6m9Gz-CHTz|8K^1H>mG)%xznoIHna
zo|R909_luGa23tN7D_UjKYB0<pUV8_J9O^GT^?K`(kJvnB3ktltuSP#WX&0MV{A19
zT#34JXv$Zqq#ciu7z#ZX%D|$$emo`_ofdgp<`-qY8ygVy*oUXyZT)c>6Y=kOmfhVr
z{l(fzKowF9FeLT02zc`fA6AvAJei9mjd_m#oJA5xeh@R(Q|2e9q|9Zgu3^+!oL!h0
z?L2&mDWi}Q8Ca5lF3)gUi(;euQ!yEch>@rb(>a;W^zO#Zn^QRWI(F(5@Yi3<WH|TI
zx~vP^+Sae;&ZDGPyw0u`7!z7^bwbc$>U*>VWHZsO|5IiSIh|LuT2BNNH5JKF!ec5H
zy4MoRkxX2-V;zJ_s)X`KhQnnh6Em5I#EcI7Itp${E=AufE1ZPr&gYA?5a1eq{ryQ|
z#A$xB)DhKC683%ditgtSX24wu&9SxEX{4|-LVL;RCB;!F84Iy5nbS7{J)(YVV$f`-
zj6pzSr$NBB22%v~STcz+#f3lP`y#L;Vr(RK;yA!#oB1f$C5-%Wo(!F5GSibC)yf)T
z>{3}<q;m+qC&WX50t@$)g=l2&`J_lqCKM4V2u*ULkJ50D+1X14u4~gKm49PMwJ&N&
z<eEW19HP(7dFfH0d&f!y2q&a*D24DIB!n?sb-vYlH6JZ6cS6{!pF1ykNG8%hVbH5;
zO`g{&o_3eb1dCA?&1UITRGW&-1Hsowt<6mSSzjLRw3-nP$u&hNikxTcIi08b0XP_I
zdHT7_xUpkbBWfYidMTUq4dpat9>ufhilprMk75TsOvj%<>?|bYR~!@7WzKTsxs5O6
zWus97E(+Gd&KGwv(J4J2Kqe&O405+3jRjC=W?|tkl^TQa1JdoN^5WhZk^e}J$(}K)
zsOqnd{EPVbux=h+7hAulsI=zrVG4PgZ8$m(QXa8A)x)X+7kp;aKNt$KdYH@~r&J@V
zluyxOSg~XW{ZriXj*skL!P$<7U!p0mK<H+9X{jhxb=!!Nq#S6|&;N=F*(>IN=U7-+
z6bv_dMD{q$K$ZdVR=ZF;j`U<YrXtaUOwdI4cVdCV7L_r|3pHX>h?@fcD83W$gyU9l
zJjq@1T3PHe5Dgu6S0N3FnUQ&FCP%onV1l&lOtU;xQY0wXSJv10HVBCy6LE581T4bA
zHaSw#g4B$>tVU_qOHC}rGoC|xY#2*h_7BsG1TXn&#_1!gGdaD?+#|LWFJv<qqR%6u
z@uZN582db4_w6q(yagm#np=wI_xs!%FhyqM2Y9Hb+kE}&CL|e)9reiR`uTT5+Vnx#
zS#Bmf#IZbO-oNcD_2Z|ShFw4S%Dg%m<%R8Qh%s`;XJ%!I5JyaXU5(Vn?JVvNp|oE|
zGu)q9F)MVq)ju;m9pAooPOB_2EkKK6bOBBWR@A`_|6(#8V}`*?mu9Qx(XL+KQAPBd
z%b5#b_^Iho(Gr2B?mb&nr9Pjr@PgN8RcKJB%Q=55kY_2H5Nk?OuGm=;BJ<1qQ>bFc
z#=7jU_a{TziBrYG%NtIV9l>`(>{g4aN%$80+*?#qK-MJ4_-m}ZYsE{#*>^})vMy2I
zbl>b*c|SWln^;qQ!yt6{jSm+RH+wRRc1+c;dJ@TzOr5Vxs(WAgBPqb?%N4{FvmbtE
z*x!obK8$75Se8iSwMBYlYY}GP5jA$c$Tu^i+225a?)DvR^{Sq?53Nk(Eb}VT^Q=t6
zvMDU#0Z%d+9|4~tT!t!E11?O_CASeDCiTzm(bGKLpzuwe6N=2v>5Pfo)SnZH$-FAF
z2nke*r$|>sLx0M$2ok3ZwA;|A^~lkqscp7-;dddPHtkD2da<vPS*g{JMI!A@&*p_t
za+8^;%F+8kJt+Vps&1%hzC!m+HY-i${v5wpr<kL^I8)<F=>nb21qVS~S3c(OoXd>s
zqnK<-%SfkA4P$Ve4N+&RYjjLAL2%P`7fkxKFT^Hb?yPqSrZWva+xLsPcFiXweqZL`
ze&SL=C>vde8sZd@6c;&0dbwgT6}QmR(o%$8V;`3C&mBbF(Drf#;c{NonyC6wKZAaW
zfyLwcceTbwbV$xFvD_%h6|tb3fWfZ$S3Mm+luZpCM}%3mTVzkG8PjncH*A;@+xcQ>
zDK8gO=<zR)F*VXXp8PnjgN31I<)vxA_1&U-X{e{~Epoh9GR;+fj8jO2yQg?(*7WYz
z10Vwxgg?>Vk%%r%Y9vAKy?(tXg7J){sdXQ5sYB16Yv(#_-TEZ!r<K#ni3zJ;=~d}b
zN}s8zEH&IdK5`2oA=t5`Sr#(w%eujuivPCI5JLpiDny`@E>?ntM*rvsjov?!_lqtI
z^;P#DLM+!ZsbN-*5{ZxX4N{a>1jZ@4QV!p8tGMh`e_iyXABSJB4$1m<=)Db@?5ac0
zcQCiVFP8z0ft+bsJFBazy2f*K{Ym}zC}!RiCPREh&E^Ampex<LQ)o3ZI-faz9;5$~
zEAT4~ZNo`2y2Z028{|!O=Rd0_XfS=h!28m*dL#)n2P|225cDk+VcOs@nGD*OOHyVH
zu4#}u|GJZCXB7A^GLWN%M`!ccvvh?ya#*gWX_P{7+WYtJHQX{i^hGUqb3`PT)84A7
zq2~p1s#U;_UVtLUxxx&>dY5=Yw2^(={Ej#}@mNGiT~g@8NK}c<HUn@LJNCL43D!DI
zOM8tQ9l>DsrdXerJ=xu^A30m@reZ~NUmk$|^k$$UhDSEVS<&-E-kW!%oTw<JetM*6
z6G5~Q`H&UX&n`xg%;!Eq&W}RYI5Hcs@@xU<iEfG`o8^2fH}d6&B{o9?2l(Kxl~4uU
zr%Svz%94=bOt8;FZFNB0#&D8JQH24LiW#=_y4TAXpF<?<V%$RkKf~5FeN9yL(SR3q
zhliS{T4z}0I4|Rf-siUhts?P{B|hg9;i78Bt_h~)u(%N0gh9MYr=CUIho@A@kr?9y
zfNYs|9hBX=7!i*-{~Y!b_##C;WX_|6AeR<5-Az%0p;J0-dygHh(Xrx4Thq}oB8`sp
zCd%bgM)zuNz9~H@-~&&0wPW35Uf6Gt(mTMF`jZr_Ch%9YOyWLe;5IP|A(~m_VOSts
z?NDjZBgnYN!pPV+n<*Q07n>Mk_VE~0F*H9_Ht7_%UfwTbn!gn@w@g*mR4V5Zu_k7`
zbv8pdss^NKY2ZVGZy{ImhjqqF-ZNx_{CP7bB=;IR@t~(i=TXZiSX$<FxOJt1=z48#
z?aSlqGkVrtXzdys7l&PM>Y!bz6e~bf6Um7Vs(NeNekZ?xZmub@P6UO}yO{;0V2<}^
zPbGg|pS?tUuij~EYFj<*jdjs9x|H<ST%{8k!^r5A4X=Gg6^PWP+h(4NxHW)fclkDf
zG+7Swg&>)GbQ$<kA2jGLdh50JxuY{~Z9H~v<(=8v$H$hVtNy2@@6G`R<T9R;rtHKe
zfj9mL3AF&L`0Gv~7G9_s>wB&;hEX+2gHz-z2JXPq7Mts^Ju&-x4h`{WhjWV@>g#s0
z_=c#KsD}-oeR9&C_D6;yzq=p>FxDV->(;GSnU`&`w>fbBCE+L)WO69#Fr%?LLZWRB
zXn^~!CG8DAjP1dX%srRpNs<;yj`viYTNbBf+}pVPtm=wK#Z;q`2*$uLBsr0j1WA(4
zhz#6GP9Bw@=jq$k0LUyNy5+q{7bm@n5yun7@JAro-1B5NA}E{R>Y9StAkY6mx281r
zwU;{bu%hINgT0N2I*MzQBv9J*=-)~k)mS%Cb0`~ZWsk!{7HCYY9K7V(dy`*7hg5p>
zGTt;Jydf8u3Fr_;YHE$Cw1``kZN*`LI|-Bk3~E4LFc<iHG_ozY$&HS!C3J>L4u*2y
z0baa<DkOL$EQ;|8=$SR5dI+r=TwQ8teZ9WU0U0R0gxo%T`pB^m0qA7#NIJ}tM}av_
z*XnWfecjT_8@@&AecC+Zgqf{+aRQ<UE?RY=Z;3!+Cde$Z82+mF?yWCn3GYa;<MoJt
z_`{xaJz$-)Y<Z5ufoBH_JYv@TY-;!7?#jw%6<e8HrX6#Jp7z3@bHdRyB?Yx%L7~x!
z*~7E#g+oEnho>j4;lr60%N=y@x%>$XB|=k(j*C;Wf!nRC?BPdFb#HxD3)}x{nEdq|
z*WJ6P*?!~Dnk~*?cIfPulvd>JaS`7)dp|Y0HMQop?vG)*^_Z?h6b*Vwi3}bAeZVLQ
zu<SM`(W+v`4>R`CfC`NfF{+Z73zo*!#)WL;N5}%A!Q5MvwP^8<{$r2vq^VQ8=RrJc
z!KC@TgzHB0=FO9oR<d=}V<MqiNIbHhi6kb;<tczE*#y-|PIVpy2UGW%@`g#rWBs+V
zU!be>H(>hTl^N=jROka1tlw7OU)($Z6^+yE)W%$Sl#pOB@t4+rLJ|#OB-e_LH(k-g
zDbF9#IVsM(Vj==N)DR&=%sW7)i*-MQk32eKJM<n=5|iJ=b*He6$<g|);E+xQv5uq~
ztz{OLFuue+_^wNKOTpRgRdi4NbXmgmae%@zMC@tq<Wq-=t|D5!AjR|d<j3<rTSyh`
z6Ho^eDS+~&3(bx4$Q@N1f6Z*xdAV8Nrr8UE0;l8!?dBZvS@+%d%PVFKiD=z}P*@S{
zdlCFJ&K7ljpcEhLV<9gb0el!lodww78xsGV)7My%QCM4YitxB*W?;ETZf@LfM<?7(
z5bB>o#crteuxb+NGXhpC#ewti@TI9hsPdr2#)tJEom$H*IE;}44T_FVx>4ep%=aZj
z)Y+$BBC!@_EbOT6Sf71Sd)S{T<X5OdB)s+kODQLc6jJt+z+8$zW>>yc1jR7maNR80
zL1d$+SwjDAyAh(iz=3F$_SW3!*O@*3n7O0vBMk$svW$11?eO)a0ub>h#Mko)2%>Cf
z>qMpY{TT#Se1VKZh*1k>zMiq8t=P|4sFkl;Mb%9^o)ABq0~<EOnN&KS4??bQe6eS-
zLwsy(K5=HsVx+pFYY^qy*C5piQ1d5skn|ra8!3E^uLUq*y_@nc^aEzIT%px;lnheE
zDqzs7t{pqBOnc_}_w|FA20Yd_8vm`P?vP4p%5Z$YGpzw5y&a;**tAKpr5g>75J<*y
zT;aAEBL1>>kB<qrbriXEKC;+BnhRt!(om#F*dJS>o7SyfiFO(4B(0tP8Js||4)GiQ
zE^U59GCVB2(JM;vPqVbG{}Km0qV_BJ*7J~u6rC(Un67y!q#nspongo`jw-B@22IW5
zH@ZU%P`UH;@bH)&IL7}NH4ffp*(Emh>QI}kaj+C^Me<)UsFa?qZ5=!%@vcZ2?V^^}
zYy8&NN8cU$tyQNXR&&+H^dF5O9Zd_Z0*<Dqk(E64vySTeIXBWw-Y`@#khDF>2E$;|
z?gViFE^I~z*xId$e$xBP%Ya;Sy=nQX+Q4x8zT?*y$2{&rom<fD-iC!VO4xd<(w<cm
zsp<M4d{0x&s^dfY4W%Z<hs|g}N)!?lvb$T>4X5ldhvO))rN09zx2CFyTR~TymiDw?
z-W`+f${e5y*X>Y1kh{9L&_mZ@i%53|`IfVn$@NzA8kzaJg5{mw4n$g0lu=JuG&_;Y
zX=3i3M8Nz|TkE==u(GAtM(g<5R5}DT!2zx6O~eD0bb8^;KWFZ6vPlV9xw*b)ncmig
zE)y(WCWacrV$RUk1LUXY;9KyF!zMDsoHlvEXhF{#3L!9Zu|p#UT{jI^@cLvw_U>nK
zy?(E9@eZtVX|W!SuY@pim?O43C>TvE1r<gK+r8i_55fG?JSlz)Mn{2(JRMY|MQ|cj
z3UIi=DQ*6#`VC~7uuG~9-af<a_KAxTGm>YVVLDnG&9iluyBD<Q$k*DROOFJC`+x<>
zq)fT*=_gQ}|2--{QEVYoHcfXZ5iR5Z()NI>4>q1WbMfLuDF-ZOqN8bhjf%VYS&UA~
zPO{up9apU*pA1RUp3Yk@ot;xgJDj||z0c~k5T@NPGnP1-(MAj9tn0EFOEr($pH<u+
zgA#;pX8>HQ68$tY8)32WDrH<-1!uy{DGkXSv4a#_w?rl7SXS%Kw2wQh{WdU+&BzjH
zE*8h^oeZU$xt-ShAzXYO%HUul4(Q#XawlMe$b?33fBp6?P`mfO?UYBszg$>jOM{X^
z+I1Y@A>A9pN=J7wUdVmVGItxXO#fKr?!9|27M?%YAovZV&7g9LNbgcl@5|8GQFVr}
zcHg?Xm|x{S!vuC?xabmYCwoDRZCdi%@x`@=&p3Tnk$I7tvXJ0);mQCC1&;O+V)kMl
zld9GrX+LAYsa~{diS#C!W3;r)L?(B(j*d<!2TO2;*Kd!uI}KI)Wq`fY&<VeSHy~MG
zTUX}eZpUucEcQT(mm#RcL7C4e06L^$bMqZoo>l>H#v-a}1KV106#g!Tvg3N9BO(VO
zZ6|zq7zBJB4&oc2o!(Ivw(*a%Q?o|eBp$*Ep1NS9a!PPkTiVqUQKaGuUA>DiF>R!O
z^#h&KF7ZGb1*H2Il5CM26*JJ$Ys+0|RwSgPqy#O+PYP?^^wxh11GMyd&AJPD=;scB
z({QQ{9WHXH&D>XqN*(Bz4aiP!bpvU80blIf&M7Hp7x?^|>jGIwZ%fSPpr9OWD3mcf
zJYZTn7cuNQP}Z)IVEZDTo+@#Z6fKQVzqX_!lxX<wNkQyP0m+W1eMp{jJOBc@b;pWp
zWUPX1gTOq=90SFZmv0t3g*HjOY90n*p`83y>>8W~&s|C5Z4njpQ(^d~C6*h{I5Of}
z+Rrm8GC5MDGcW2G(vfb{Ai^C<NH)QPYu|RV1Ob51iFQBZx^JHdjarp2>4F6ns-SD;
zC3Ss4bTuQRkJywyCwFwfb70F9m-cG=#$Bl~=fwi1cpAjXFP<5NNd9S6UZ+J%q8s4s
ztODdT*fqRwgK8)fBLb#)?1~=>%*{$pN8SB=^@lth6<*#J)3U*GeD|Yu#iuQPN(Z5R
z)ZofA<EVz#tviwt5E@*s;_?KzaY*dTslJ|+H><&&_bt~rHhE{MQWt>6`qVMXW6Zc8
z=`m&XZ|}69Xk#PT(*B?$iCaXgkz?7`e5LRu$Ls1!MlP@}osq}DJR(vTS_r2_goy#Q
zbYk<YQbG>#I$A!KRfH@-@jX@$9T6MkIPHiJ79I9batX<6RmDJVVf2=@dmNJRz2ZTf
zYxSjcgh=$Hc@6n$Gi`f{A0rWS<5wOcb?k8KGIwXn5dc21cKl1KH7LbFWT0=}zD*|l
ziD#Rz2E;dt+>z$LDd(|jjSyTZFdx#=b&Z#zLvW}@BEcCkeFbmvp5U|u2rz|vaGjOL
z5!Z0?>5|8-^$JJvm#aF-FAAnRE-fG4NCras!1|dAZ|I;Z1X0OeX?C2?5Q@S$$U3T$
z8_NQoKg{tc263Ef@Sqn6b;mYKx?<4O{omW2PXl$*#OtKNO+qyAD$C_^iMT-UHoxrJ
z6$FZIW<#-dOVwAFGn8apbcA6|Y^r**QZ8QjJAihZ$_wTi%%OGoj!n5>@l#3?f!y7n
z7Z!$+28VF{;!3~=A-Duf`=6j-=6m>gg}XmfL-Nec3XyQK&n*`s8>ylwNm2uy0{k_P
zahkwvLWdS--37sr*0gnw6}S2L<m4{}+=Szv0YE}HwkaQlc6JDo+h=jK9S~iL`cXMr
zUk2{<@>ZoyddX2c7`5XmF%+AspHxy%SaV>wtJ3B`j(n0hz4FDv31J5mQmjboHrKDh
z;9N>Vf_lPRJ?JFT(c^%2jlV!aO4SfTyGE9U_rPXHn<P}3NrAh4|7@va)#UXt<z^w_
zNuIo?-8@dhjZ_%U!Z3rqAzJy;Nu%AdqTKF4uN#*d417IIeb4Q1n(n@L?_R+S0479#
z6R<V1)vK2eyv-q^%$5T%^CB-~@GpfXc8Gc7Ec-6F;=LM~uMspn_g*&w<M(yVee#R)
z^yYtq@0K+2<yGp{Na4)-qzI_T89U|kG*8iy<-usR2zivdL3G|-^M3%~xFnMFs)ang
zh~=@Z=-+3R)RBUP2@QeVb;`MSq{f2SWjV|j-Er}{q%be!>)idxcDkNOkDxD=%-@yA
zbzg5qn0NOFh@fKBUR={ZiUu(dUE0fTkWHx5#u@03CRpw7|3x3QJVfU19B{Ut(uEM%
zZsQJ(ndO)kM=cbcW1-Yg_l+E2SMucit<Nv%xdLigv6jJM+{G2gsu!K3D}Z|==sZS3
zDUh}-Pu1AAnA2;m^g4XYfWbl9%%*6UaqLOIT<j4CILxGB!M*P3&>|%1E||la|2eEK
zh#cNFzH4Y}(}+CH%NXKRUpHmedtUH`P!5E<R8U9XX02=BAE<VcRKaA}!)9D-cb2fT
z>i&@v#7DAaQi2YY5xZ(uEME?*@UBImMl_u?_B%`8?0H#erT1vYb=tLSmlZ7-IlRvX
zjLpcwR1vJKkd}tX0Nd08b^r!cS|sU=9UIIUBA}iCPXTrPgIP~G9fZ6OvK4T780RlR
z?U1k_kJpGtAUU|{tXT(ylVZ1)Y*`cSG}UAsL7P?+Wf|s+VK<tzexy4a_P+Q83E_}9
z=<el<iH+bp6f;jV<0;3<(9?vwhw#|o^wGQsrv-=RU`o$4bVoHe6au#}F@wW)nl0H;
zHksB%T975{bMD+Z)k5)sqOC1mNlFu~%KOk^8muIdu5M`hyhW22qU%rMjAnXkFXW{W
zjuj1f^60U2N&x^wCY<K)Z$;ez(&UVk-qd0TT#}@`p~vc#SQ&BY(j`F^fM)N|WebZL
zwGcv^c+mxO&;>i1N!khTXEi4rl-=`Jw5Tuz<cV6BMT)Ud-C@hq8}o!+P0E)FGJhIC
zHLz;4YK7DvAX2ivDVpgA#aL1JKO6!@ZRm$B%>%<NXF}EgeWg3~m@EiYNBU^*=E>Im
z+aezPZ<NH5t2c=a7EZZ8>D<*O2$+Hl05zZCHOuFSmP8&*3iCJvd8X)i=RcdEp)rS-
zJe3Cm?{V-q-+aRv8_?}?L>fmgn|l~uVukWqAKhqDBY`9Nn!qmAhAxCNU@2h>P&6zi
zO>t+<_!$g5wsGKSCh9)BzSEq8BAL<>`V(<)qYwsYrpv}dhxq%-CDOtI(sB*n2XaC6
zBD`Wek;OozatS4>8Kvv_d0;`J2h2;C0Oe_M_~=p62b7r^;+Hxy$pH3oNspgCH7C|z
z)S1<dKtg-FfJp^;%ixg-@F`s~LdHC{fJs)aly9Gu5oh}?LXLc*&|-+TbKyL*%l)~@
zP->ripOT|w$)Je&L<`}h!8{s3K!6I9RpM8DkyzbR@T$u<AX!KSBqGVsYBBW+tkDDO
zvLOc)<$k`m%>HLtp`AOKz&ZST_{;j+ad8EFZJcE>D-7q+44+3_B1iJ&x-)&V4jxHd
zCFhbD^MGQ!$jRx;T}TY1k=6C}bRQ?lY*--wc$0nq`+441p@N|D*OkMECWff^3^fPO
zs~^$?EpeE<{*dr-N~+o6((q4xK7K*o^XCVPMnai)e7&>H$Dd33rs>Ok9HfVC3&zq!
zwqIA3)$C{QTx;sQY%Ss3=o$~JV9PQ!vcQ-jH*WpssQ_IN!rb=+)iy=UrTV9Fez>l<
zSGwinW$3>=l=Ua#sttc`CSUN1nli29&EyR*0)>To%&*7mHIQis!i)MB-D8!cmd&mo
zhTWL`B(^=CeBqqujUhOAZT>4Q=lZcOH*Wmf<;~Oj*tsyihsl+;9#mRTxE?a8GA)!|
zPiV$}o{WI&e#Ta;_#j9&&UX~he~Pmuz9Q|MFXJdpe=3?i$9d4oL&s@rKl#?1A)a^V
zK9m@Ji1|-z472+Vj!;2g$e6^A^B+p0ybd(~+03Trap!BcyJe5{*lqnFUmQX4noP~+
zid=EerVCLyaHVOu<3N8LfA4EAxwOuE`HB?{<2m#XhMG&{dhD5<|M5f4_g$L?PKHRj
z8D~qmMQ2Yjbi;>M^#C>(N@~M+jPj!gIyKen7GJ<oGXbA=&CqyFA3<aIz0xAEtvePP
z|8c-)rEvSSmtZ6e#ML;4G#0iFjch9}@P+cXaJTo}K3?E0jVFZMj>YIb%K(=1<M~Fj
zH{06Irpjq}vdWJ&pFz@4uyVRau6zwTW1;7nokG}<JpVs`20ZJ8v^Pf!#I6y}G1PPH
z#@j(d)lN3+;`_AyxCH8+pBx5&D})%(I7M{(&0zy=VmVpLzph)aW*;Ki^aOyJT@P5@
z_%REz{Wx0)YDB=l|7D})Hw_@^d%6Q`)4jYKMBtZsmT@wUc;E@r?a~)-FxLH-sUrWw
z32U^D_smiZj;mNSWbUNu+mVzhz4ms$q!KOdSsqn&+Vs@_vlzQj6^lZMRZ+)wHQSh5
z^_q=dn!p+mf0rq`&|8T`I&vYeZ_|0$2kjiJ+S8eFA?2U(flY4Wy$u2KOgQR064nd~
za6$7NvLHvMGv8--qL)m*A;_=0KY=)(oR5Y|n-awwv3%WuULQ?H`%B~?tr$@t1Xt-F
zw9sK264fKy!98)RugU&LlkN&?$z$W1#*7vSqX^=2Fv+E%JH0qRo>#*(Vci%Bo7k-G
z*}tDD$o0<_fm$_8AS&<1Iq>(7-y@DrLdkh7)hBVSVOq65TBxMXAvhmUul2}O$nwe;
z{I$B-km43Pg~;|VB%pe#);d*`jMfVM!||{8;hAFwPU-OC<iKgOI#2%nlV_8&oyYXL
zYLs{S`1K>xqlTEz@S0(v{qXO99#%g#@VLv{3u8N4t<2Htr>Swobh3%(4-+S!Klnqd
zQ+_X&`_}J$QNPRVGu?-IV|U)o^Z4q)*rc(6H+~(XdSJaH$m(7hk`^UbpVlgEdeXa@
z;<Y(-!FhUjyLVrHdCVq993-|WpJW@)nGKn){;w60;X8+7c;=(ygvVL#F`F=#fPjDw
zf&b$?aVl*ytW`#K4%z~VwdC5{2L}TcJx0HwjbaGSZAwM3lzQRigU&<de<iX9+gp5c
zv(L%%=SL!yw6S|)zrMg2oygIQY?Z$~W4ZykRe)~8Ue>?fFknr(fmA}<jcGnuXaofX
zP2;CuJ&~#JIPt~Mxq*~Jj+@hm6?@t%fQ*NpjRW8}`-p(?0|w}yU<fg3(x%d9x*?&V
zE6`+6H~vher$`XACs%pk?S}6fd-Q9OHZbvO)wm0sqf{G(e%h#`xrBswr}}#1Q(#kW
z2!w$DEW7K0PC^+OZ5*loso-GszJ2$DS&D?|3O8M?7YT~pWM$~BP$Td=z+M+g2>T^V
zmwp3GfP~XtS<?N8X}q7hh-vUE`jNn8BbnFvL9r_OEtS_XR-{x#3&OsRhC3ww$yf}I
ziVarrdoL4HB5{qd%ALgy{6{Xb+#eVA&E&>}qKA7grw?V?x%)<K%%c)<-8<~+K&UK7
za!gfbT_YZJ0%zV2A83MoF~4Cyt!urQ6N=lo6Y9=EGt;4AV%1smaY{-o7^Mi8*cXf9
zhKNld)wzdNv8~D~b?hvH6p+IE*%z}$`(f*kl%ba#3&r<6_h{T|H~ZKCzLs6OQ9D$$
z;4>pZI!7Qp;)N*p3|k}v+Mr)!i@HP{lGJHKW=Xet1#JYh02=-{w^2wC^>{>u(u0iK
zm1(2#_Pp(D<*6aVYcCg7lZqSwg!z3CaL3r6B_1}2d!W5_l4@DqNCA`S_c@3v#+r<Y
z4PWk$qLDh)$eTkWB2jHX7bSa=pt;9dt7Q0+q{o5B_hO{`{$dDO^TwlcEl;6?nj)0=
z9az)2hj!P;R22sY`s@*b_d1TUK<%C?5pB6MbbyU-lZqbyG=z6yKTy~g$^)&<NUa8)
zb(M(Myi8M(N`0J`HYU36?E0O99jopwjdM}+Ir7Lt<$w=qew+vpphA%tMti)fjM2y2
zh@T(jpBw-9#|~&%Fy~HmtJ<U9V;k4iQZt(5DO3B!L6hZ_edkHL4+gYw{v(7f%wWif
zVOO5JhyNpFOy-7(*O;AXTJebo8z-EXi3Ua&I8H9~Hz$KLZA`;)r>C1<wH3amnxf5%
zG_1PO7b;bR@na$~vVvyrd1B8hUrJR~ABF_B7M+hj35t^6S}_Z)UoahwVXfjm4Huqq
zk%~T!94#05j=eM)N7tMIVjoGP5Ji;k4bN`o=PGLh*@(!Zgzc=0u}_{kW->*=oMR~1
z%OB?og|zs?>7uqy_xCo>q4UuC)xz~02^vQ}V~fzU=+MqN_O*(8P1=pRj=c7w5hCtE
znk-n&HGbHZ_C@^AOPODz<)c1Rq1dMHpionq78DRLU|mdk>U@S_mQ29p+Rh7YkKYn3
z`g$bXrfu=%_&zE{<_P%0TFLw4u@D0sV#3+8Wz2O=kOL9CdGPCljn}ObVc#h8;oL%I
zK;pr3a_Q`*=j{|tpBV$%LulFJg{87BdMlGDR$6KHSDB=#r4>gDbvc<^+1<h6lkhKK
z-_$477*3xq3N5lqU9{HB|3ppE(egW@P_Sw92wn7(NZ1V;JUExu=d;pU(AeG7nsEkd
z-W`a;yAkkRb%Sbbp>yyjudGDC=){RW2pBDgfOej?;(Tyi5z`iU5`mVCytnXV_7VrM
z9dHpj`;qZIO#BiQNA*B6#r<i?Ou!Vb)YQyu3IfGNbgGJfQ~Aqj97<a`B22^GiX60P
zn(z;ee+Kqde0)6FhGB#3HL>OWTi^N~9HKKFR8@9^F~<_1W%<#-UiOoc_0&=!`#Vd8
zt)_<**nC*%*O-J9S!CgUtbnv4H?-=;nx&uqr7yu_du2&afSmmzCMExWY7g5<t-EUt
zF+$8cvlN1pfrF{y%Eo=(s2`*9@NXc&K}N7uGpktK96%yt+rEmQa?VLpZ<Nee{009r
zP_OZxKK{-BoASd=*Z*HVP7a{|>im+||G%J`{oifdv;zO#whc@1-)+k>{5J+cVE_Nb
z7@+9|R~=CI(hn8OZs`V-zBN^-+A9CG$*<sH7@8B~Nbw%^I(3u=(IgC1GFB*m%wJ)J
zq!M9B8MIHTQ#@|g-xe3D3hhJ~dTK^G#SsIC4|ii`PN&#b`N27}-5KRt-L^3keE4W`
z=fxcu7led^YQ$}jo>LJK@0_0jg@tIN2WXcEy<<0XTebWhT{G>!ceOtm7B;MJUva`g
zf-V1(m@gII?RO+yfuBbhik7ooyzkD61<~mN<Dk|o^6U2J4kN`+I!|;_Xf;_KMy9cQ
z=S3U7E%_h@AqXUPP^&KOl)`YFj=kf{qn2@yH%z>gdQH7`6=|AZ)>UK-H^vu#f86@s
z&=6P{hPDc$GZp7eO4Zygp}K2LBAY~D{l+TO!?4KAfa-@6+n(0=b!Y?fB3G8!^s%!q
zv{LAGb=+}0<l{dt?XP%N88H!;f-^o!8qaOICYviW%ejq#PqgNmE6YihiYBezpLH(<
zg9`?Zq}}-AheiL#AMt!@YKdnMRrI~Wq==?V|I0}!s66=;7l*UU!0-u4ofO5mXtOES
zzJu#`>zdv2vTUW|?`-wQ|8iALA2{^gn&uy<SAO8n)mLWXik!Z-+OgS{8Y_Q~H&+Tz
zs!r=^fc0J_l%(IJJbdzC_}Y-DCVlIO{fZ|(aQe_o!4Hm&F7#`@h7X&BhpmcPL#75?
zAgaIjduG|}tCf%EWXi_l1<)LwZay_#+a%UItx3i?GAg6_C21%hPf+pN;{~+c+sEAc
zxNy&#ZkLBAx9j3_scF@FD>uxncWqWR-wQ33ziiXz+>TUTXSYB2_@ynBGQZ<?wMcJv
zEjNEqKE<AKK2J@@FhQN&e3g1=D>vx(s{iu2-<3MbJ*VGW8{&qe+mh0YO_%xCUy4f7
zxy@-d2jvtK$T@pgRRUBcf4r)n6o{6}I4_=^@3xmmSNTHFNNe^JrvGv}q{_<)E3I9-
zKN&}T54N?@w<iWt=V7bue$QJ9Y;sxye7fO}{>Y}Adj#1b7c7MG3>LyZ`tqHZHC12x
zPn#&TCRHL%BTfrbXpbB|;51j09E`{1`-^(z8k}T7{90)?;t|Aw_+=iA+icc5dd}U%
zs*kcY4q8es$Bl80{kwvc!64k7LHLG67hTZisk|MbuDrVVK8n|O&m34&Qt+Z~JOt9k
zmXgf$Riz~i+BE|WAU|ZUDpl$ky&9<8C9{Lio^|!DEwU_Q8ho-%-EpCrmjOpbRaZaT
z*XY02700(}<CV6T`cswX#-2YIf>{o&t&Ew9DJCY#OG>+9%!Cn7EHt?lH=REb(biYs
z-CjJK*(N3)(WPPq1(cyi>!bq&ayJ-O@f5VnX`GdT6_%7|p*wGzGIw4q2t`*2APM*E
zl|6}p1C%>|@l$9s_r1oB>V;b(o`q{F7SM;z#i~z?lthxYhkd54!_IhdjuOdH$P@9j
z$X3uhK?eDHnnM~Qx-ga8kerCM36JRn<7HjNHn;#QK(GWAlFNR&gRs`{$GNX^uVtLY
z;&9lytN8&>xQ2^`G&9}4seLuIEZMg%BISe?pbX--nWbmTK*ZyikIVrB+PniYd!pXp
zp+jA9?NUWtY+>a}#aFA0QwTq+JS+h+6g68>`AiJ6M{Gd6m;l;FT0QjpG4Ucyw)e5a
z9owP)^?sgK=rb%GZ9&zi3S^_zR`GrM4!xD<`XP9r<1rQ}jRl5#SX52u$@Ot4abYzA
zH5c55r;sb|b4c-MMLQy#6gMhqe0!h?qt!~mS?52L??7=J4_ojLp4P^+?G;5`MWOZJ
z;lqL23+%+(618Sfx+^x=%54;FT_j#iyp;VIzYWR_7yX*S;n@C%7kw?Q7`wFn*b?BV
zxQCdm8=FwEj*hrspN(KW>(Cy`?Cy&X#tn{5P%c=jiHbAZKa9|Qy()3NNDFUF6GT#;
zDa&+PJG}w-Z;(I*t+z`P;cR%XZZLrKVt#M>D!-<8_tz*6nZ6+F7xl}bc<hI0aH$Z(
z%pA<F_T7M9YJ2OSW1feJNCZE$233iVSM(;S5fxSGJ$K&Hotr=W-PY-j_hH@x*8M9s
zbjuG9fE;7#zKQV_HlUql?_a%o^$F@NJ+?jnO<ojf28azDWc7|B6AV^V>vugKr}l4T
zsgFA<pRjX<(rn8AWmt5{9+BL&*F*nxD>ASrK^I-JBOyG<s)A$9XZ(H*B-)guijU_B
zcOVd0SyDDLGK)6-IayS^Gb81jATs^-ez9_aV)d14y&T8ph9^^BA0qZ-hyV);=kZFH
zcV~ZgUBxBa_@4H+c@k~5hxOa9-B)ni33#FjD(m6{)pG@gd4p(eoXU)Z<|WQ>ZMP3o
z{37QHWd!Q52!SEN!=O!eZr4tbLzucS#5SF*6stB-QKq4}?rm3NvbQ4`)h$9T+r`I$
ziJu%Vy9X{1ji=sr%6$q$yT`*V^P7IbnU9a!2gXX?|D^2REpOv&zpGr~WgN#(ojEgP
zxVV&xX(yv$D;FU%EMzsa3HF$a#=<(>m`9Uu_tM&ec~xDM&AQ%m6#%=+rzrEhl$>%o
z;ydly2{t|na2`eah=MATPEGFl)YYrwd{<~ORDI+KP1<)@6Q?A}NiBwiyLS)djDV~>
zoc(${yqyBzRB81<vBCWO#1QjK(|&zR5P3Ii86rqD6t&Kpvs`y?Wzb%<>1UgpKP|8n
zbHz+sWPYSo^vx;dSNX>&ziOGRu=Muuf84!WB)*YYJ~uaM9n<mhE(u#(Z)#>B;OAuS
zqQPqMYQ0FF%j4_Y7yPyx!*hF(j(Ki3Nx9BHo>yqA4m`qi5UY$fL@YhB<d8gk?(c~j
zy@$15w{~Svu_j~ShdN*A+{z>lbNRk@?chM~p%3uFPAT%_{G-xe<<s*7r>zJA+2tXR
zIC97P*Jip7f}}64dvkb)tLGg!wmG7!9a;iq*J{QwO?7*bF^DHgdOKQ~PV0ZGOuT;F
z$^@Gr&-Qh6&MwbQ5))K00odWXS)Zx@_DsE6hnCbP7(2S_tiu{tR1KD{P_ASLMgKx&
z;BKfVdHY-95&#)|O^Thg1JkCpeBo)n&Si~ObasuXj|ci}w=UU{G(kzEc3!SDcY8Ao
zsZh?)lJOo15d~Mod6Jmq8GgRaT@kMqM;Y_YrL+g_;^j2tD0yKsq-njCsnoVhP*w3l
zNb)Z2y0+xr+DloU;lE|vW?nmoP8O+)gJU+d1~Kl_i&r#SRR$^%<^%ThDXxgK!uSX1
z?$+vEgsc^G_H1I_{FXAtem3JB!!~!cE1s;d%VT%n%TvBtDxWGdkvHq0cwEUP=xS0)
zUC6fF)BkzqsGC`b5uDL^_BKh;&QkH4uY3a6Y7i;0i*H!9QL$eKo6VgYS#TY5)aUyv
zKfG1kqKXpVSLq#23ME#ESKh+xFReT(Z;A{9B%RN=&zw|t$by>k!oxc2Foxh5$g^u&
zrEAJKwhexH+!H9wCD%s(W=#>QH`Uti>{0uqX`}l}7jkK?^0#)_rAYDbgp#F<(OEy!
zf8m->EEg}%ax5LoDR$hu^V6o>#L7T%PCie;W;*J_eg`|+r&BS)D7p6JdQ(bisK{V?
zhgY=LrfTX+|EFf>D(<MNM{r`~Di3QU$wWu~j`v;)uJ<=8O0*&hF1WRLzy7$1*U9gV
z##}lx#6jaL_q#oGyL8FfH1%TZ?fMS07tHFqyw!>2d!lyxsZB5V`6tbD7plI}`)#)S
zcO71S*+;db%azq8nzk)(UCbK3PWw`~ES==qB(0hq%Qh@d3oER4N-Dfq+NhWKFj>8^
zSE%Arjb7Kq+(oTI+O;FUm_Ep;@5V%jy1WU{IOa5!-*3KCyzJ8+6YnqPVme{PnpWON
z{M~)u<9zASXV}xeExL?(MR1e8@wO9+<x;g~ST4Pc6yzk7vWb@4e_Zs&2XZ$=Uk`7D
zB-FZop?Ds>ZKpR@w)!WB4cnllr4{865ZF<B@Ss5%S;>zdZ~FaOU`Jc!t2rz{`TYfR
zribXBy-C+Iy~Jm)A^(53vcTUkQel+Rd$xFAk~XZ&yK>MJ5^i@%f;7wm)rSn(M?-o`
zrT5Y~LkA9&7S@2S%8!4%pqvLzqpUe-qib5W?($Vzz4y!9e;YTG7rJ$?@t3o9GOv)Z
z-_X$T6l0hMamqJunwLWK_P}Mho2%mC+uq5)4==`jPjc{_U{j+Sl-HgXy@yjhV~~<v
zqyKE6^7$OsTs>#YH4a2=+nh<!me$tRC(oU$aXLhvom}FxX<ScwSBVcoLqk3GDHG@e
zowMqP>olyVbFb15ee+oM<v<O^KI(%9?~U)}FeG9A;k6{dov-z;@I?be7dzk!Z<%>$
zcGtrXHX;Gew-<}C12Nws4+GD!-e{<;#(hAoW8np~q^7V9j2x2cuZ_vtWRi)mf<dhE
z&hK<ruKRHAa|<J7snY_Ji+!%ph|Rf@=VPdm+W$ClT^yK;OR)Wv`m89ksc3f|{IhcD
zI_DiWHD9<;!Yvm-rqjC1h~B~T5BuYzT1K}!FQSqtC|)Q<i<FYzDwpRd7jc_-^ok9}
zg}0P`lg-V|qx0mbmZ18_A0=gxQ;=wfqA;1#%BY6vb@!g^$#}+PJoYGSsRQ$}a>E<_
zxtyJTW(wINo)_CCNv~!|pdG~~!T7l8nKlc!IC1O<jFI{fpg~W^2~kmz?+CV19y#0Q
zKJ>hIV_;*1c=ZnkYv*N3lFu+Z0h-$C1NSr=b@${d;GD_SeeUh*!$B6br9SrB6F{km
zN<&X5t9y6v=H+{Weu7w;=O1bM6@NGKB~<jENd_picJFV-Zyh0dnO73Dj(Bl*AJFdX
zVycX-XTa?8#++d6Vvsor20kw?KPs`24U@~1S#LPjEDfHqB%fTUhQ+iV+8cUTSC;y|
z?O7UAxkTFjbg$j_9GyFVeiuo@C1CCt;B6F7r6>`&Z(m7!p%b~H#p}OZxmBKfk5TOR
zZF6VM`U+w~dKC#-4oXm^4||fZFJJTQ+E{o=Iy%oj6_+0J>e5-?lC_^cyyR{t(j*yV
z^J}HJ`$e|O&3o<mi0{7}kAX~j6*6kwKm}jD?s)^L!)x$Du$g@nTqVT^`)V&|!);pT
zI-5k$$`yxURh=88M#~v3@jj-^$^CQ&TG`mx6c#jc1#aF*;t}@}Lk?yXH2c=o{F1^p
zk3}U`XNQpImqWUj9x)sLuvaiL%V;s}6AK7o@ATBW0qx`nFSv!qQPy+()(szsleVOH
zOE(Ts+>3L`bj6N-r6CzOphP@rZNI)JW$zQmg$^=2|2k$iLR=El5h=Qv*Ddzxs%bR~
zD~hRPb;7{nK{**DJ!7wA;?ZHt7$$ir#=C^jc)_I%DwXHzCVS-}e3+@8xx!RQuY!oZ
zg36f+&~`y(R8&+PvsLm;5pDgNk`U;@Nk|JTIO(NIl+=x4W#FJeSI=0E9y4Yt2W3(A
zjS0~eH1Fe>)EHj4r0E`KDDQEj5RC-;)d>#@+AXjFl0;WW%w0!r*I5`%aO_v6E!q0_
z&r&*G9nn$o75Z<Kk9^qS1dHX|+j(B~BC)6v?omIt@sEB^sJkKTkoLyo+kp!`2tyN7
zkI|n_%!w5Ip=7?OBn&PpP<$zzDZxmDPjb;_=+L3chu3*PjU{_j@PjW~g$PTix_bMk
zN>KB!rQa&=rqlH4({l*0Zp>G%Op~{V%&80+o+%VRodaroVT#6s8g`X@FEur_s2UDP
zE<~#RjOB0oUa4;H{6W3>u2ab~hc_WsHIMQ)Z8_`jugXACcS&NYGA5KB<!@ox=}_sc
zzs;e3p%Aix3!}|(;OlRFl!4Z7urde8dIW&bBiM8hu>G+4-;h!ZzT^X#^9q_$&RD8Q
zSwqU&I?vP8PEt?ca%h~>WLJ1qdDQzoB|z=rbQDZJHz!<k9b@lO|4>GX6-?lS8uDAA
z4sC^_wVW{yr<$FE4($;Z88i}|+H}RztLXlqIQ$<Lv-^yNTElr9pY1r0qlH0?y{3aY
za>=;qY)eQQ%S<n<6`>jm$xY+v{p<<>Cy?On%FjkW&r^QwqA!&Dq*nuH17V~myjBxR
zu9T;m=OU!&im>>=!Goj!$`f>eXFJKn!~{Z5EY;V=TwtJh^vT}1Rqm(A#nhk|R3C#K
zO3f(eUQ?Bie)d9h^A${)orkCV1mVVrsHg!IXP|*zE)0tnv#2sKvdO$C%afF+;H%Y5
z*H*~A$|}9*B67G37j#pWRCuE@U3RlYTcOqVJv2QQx%6>;)D^dO^N{j)U+(Lrw{slY
z<vkcObAkLbmE9&hp9BxJ`m+0wXiq`xp+;T7K!w!$Vz(u|7&j%;MrHc|MeP1-kEc<f
z&=n!?<N_=SM73rl3Ov^r_iQ>8<LCTaJIL==t7zrsRj$0QTXXe)`P-h#>`nP2`oAi-
tr1Ebbey=!)lz*YJ>B#@Buc`RvPPhNjNednpCBMvIveBfl@0R`ezW}5t+*$wt

literal 0
HcmV?d00001

diff --git a/oxAuth/docs/Authorize Page.png b/oxAuth/docs/Authorize Page.png
new file mode 100644
index 0000000000000000000000000000000000000000..06ca88da193c616f411abe541a9561d87d8a040c
GIT binary patch
literal 21692
zcmc({2{@H&+c&-tDHJ7?GBuYBrAUS{rxKxL9x5Rundey~*(D+>%21igP=?H@gv>?e
zLS`A0;rm_f=Y5|2?DzeD|Kod)_dCA5kG*y+Yc1=(@9R3x-*n#BR8<t2R&H2Hp-`BP
zD#@LqP^g6{6skOWIy}>6mG&L~qq04vC__oD-bnsJXM9Xij<Q7leNd2i3(u^$taR2E
zZ*M05QOWFxcEpp*uO2-izx)e5^*ZYPCl2oQrBHY%N9B%aIJOM6Icc$)zLuKL3onl^
zqQqT`5?=WS{V<((_nITVm+1qK$T10<|8alAnL9>n4o7Ly+Q=HOi9arOvvzIBRgPkt
zYt>$n7tg7g%BiYpTwSwHc-MMX`PiAz{7HG5Hh!6lQNL{Ubd@#j8tXe!tw!7jl6PHW
zmhlV>3`}D9Uc82xg@uKN5f6WT6fPo9|Ml^I^Afehn@U^wsmZHrNBcfynBcEsSH1=+
zEW6Wp)}ge*UhdG=H7mBPS#doiMA&1|m37@Zo9)J)ynJyTtq}(9*H|_ybXE!$HUv)7
z^NL*2V`_F;n6sN75A`T($+CF0_Rr5ve)44HubI(`GX`#cA3hwP?~`6q`=H(!t+v!L
zS9z&De?86eRb>`w1^zu1p}P|z!o!Q-y<6e$?;j~{x9k1;_qUtw-n)0bt297XQ8Dq|
zRP$2u(#u#$my*WDb=y_$seVqK3pGpK^rR*2J@?|+@@KlQ)+mN@S!yKuThe&e)t&m(
z+FJVI17k);hO*^uLBW8C2=?R0k9YR;_}KPU+w`5o!SHFm{@KfUJW6E6sbtn$+fVxI
z3Rv5u`7_HT2gE;mw9LuLDN@qqfU$|my85+i*BY6bT`MV(iHwde?dUKta|>9tsieKY
zMNM73{^B7!X`LLa@_eU>+r64+&X|0DeqJlbDyGFgEA#g^^jW@oY`lWoq$SfVq@^w0
zl9Fy#zwP>_Lu|CPw8~v8DDw*oT|-0H@wFXYTsDh~M;$UXWs#G6G_LQlV3%Q9!^P{%
zY~VH(e%a1W^Ml2#n*P#ELT`9P1Ou<H<NR#K$NGBp4=*w^StA4u*ktI{PMzYzvEJr#
z_+Ga)yp=^J@TAmFxtFhAUE6*#mY&yF%%<CS?8lEa3JMC;p8bta&jh!8(LJP*Rme-B
z_7vK?ca3$y)EzO0k$c9mx!Gs6v;udZNyXb<y8e8As&#I9_^Fm4C95^@MmZM;A0N}q
zM2&P0mQdtA(^Xh8z11<nCKWfj67RcHQ~JMu?;7u^pm^pvj2_67+P7~X#q;%RsaOf8
zxal!<w>x+4>}q~x+o$sA(Idl-*KQvh8)+%NzP^S{&(6Md`*k4IpfL5K$+0AhfZS=(
zMuw@*Vw$1$0?y3}*Hw>Or&>OtTgSkAx%b0*`B61HyZsKTTrzxoaS1~$Squzp{Ho#_
z6N|q_O=d>gD4sjj6L=0DTra&ezb`H>?lzajxpTfROlz_)9*T{PRZ>zqeD>`6?w+2m
z{{ByK6_4?4O8uF{E_YHG85vpYD=RCFE?x}$@#BhbKtRq*JxfbPizJKa=xELZmp*xN
zidymT@*XjZ&C5G<Ztwb)3=B5o-SV?Pf7&b`<{$Fq<Ey(AuMo24^XJdX^;fQ3DN9m|
z_hptjXKEU}V(qp-b^}*6?1i)6Zz^hN-0l`SY8zmM!xq@MX_NeYDL3C+w{E?3U&wtg
zD>aok)n6<7JzcqN^7?f~BTLIYbc`H42dut)>bB2H*fg+sJvllt)pG0Bt;R#2GD;d6
zG@fZ^DRXde?C90h(4d!=mNqgr=6iH1`BR>Qpu<NMK9)^(BO6#))Y$Ep7Tuod<gCK#
zxK#UDW%5^@(F)X>+l?{Cd%~5+rI#k8`RPeD3G3}CUQtzXBwtQWu8bo4w?{@HJR$d&
z$N&CIhLdu0H+U=z8g%va&@eDCL`Fs7fLPhs*dq5^u-Ol{_zeu0vjw#r=ksOer(t2q
zig5ci-BshUxGz;NFTwuRL)idhT*0yNaiiKmD*wPh@d{jRW>!{TthCdT0z5nvTsFCy
zSjn?;f0ni8pmn>)-fh31`90(5>6DVD6rKP0$w>tTy8MEI*2M}XzT%F>Y0=~NrDDpr
z&|&QlIEHdd`-g{XzA({`+IO{Im6e@c*1+Jt{NoGb{9E|=oCVgeUthCHpVB$d`1Dhu
zhctsSIX#oVmT{cWW&d5PlQmRTAA}9^k&ojGw`$96v>KfIo_JqN_4oI>QDJ-J_W|VI
zJK{rU_BHqSUzE0Taz@+hM5Ltb`STMS#@k&dPK4;Pn~Cbby%87~TUnoYQrNhRUN`sZ
z_g77uaTRfLZq3NWu^Fw#g_LC1)6;uqP`LQ>^@(F!0)vB19C^t%m|MvI*&9vI#AG?q
zQ(98u$i2l}um2k_4#j*mPL`~yD)S$I{GmPd($kZ2>C4No0>Oq|LtbbL_O&lePhM)v
zU1#92u-~6?ecjLx*??8$uibv7pRZ)|XE)zJjb5Xc_cS&2jcA9f4+<imw6uY6(M<Rm
zeXoK7$uDhf<Gs<=KdS40ubQacyLKsmH;C&imsR@PGW&B?{biZ`x#a%)i|wyV_J8uT
z{?j+wFuJ(#YtwW7-)-A2aA@d~*r7wR^tD6JW$5vz&D*yJ_-+2Zt|U}cR8S1%ot>Ru
zRF1Uftj^8Ny?piRxvoDKbHwp&vKkt!<`x#30_r+C!TtRgagx#v8@7q_Q=t%!wwHge
zPgK*;@WnQn|4}K(A4DfCEbN8S`{>lpOP4MgUbyfk?&?0&zQB+WKV5-}XJ=nT>28yh
z+~hVl=@k&LoI!z6=uyG0UAu1n@rU=qubKFyBzm;z06#xk=a~^Ev_m!}AM(jbPo9*7
zZC1P)9nFxeu~JY_F#p#`p3wgN=e=@Q+&%7p^Ct6$dk5D_I`43pZk~FLB^T?5wO*$Z
z9v=Sb`FVzH%T_vTYioS_qS{&(93{UB``F}n^{-#Q8e+k5NV$rgPSN(mazi0Y7t>bJ
z6J&HTNRqtF$Y}N~KVL#iN2dpS>upt4dEb4HRqX8S{t*IlXU?z-2nc+7WxHJ^M%?d@
zKh}_!O@6QER}uZ#pv7^+4U4_bJUKZzQp!!-e&oxw+qYR6*YEX}|K9DtYEuwOr|aU+
zKF6LA(VKVfBxu%Hx92;};$XuQ9zTBE730wUJv;4HV&e9>$?r6;bW<bWw6mKFuBrXw
z*3>n3MVFb8az$=8UqGJg9KznTwK9FxF+PAFXciBy+%!EiG1et3CMMRI=CQE*lBK1Z
zs;cMDiN2n%?{1;@4rHg<oj%PbBO?Q-5>GEQ*qmnS`LOQ|7f0QWg9i`NGcuNCm{f4+
zXMTDcw%MltBQJ{lO6kSf_|p>GH*em&W&8Hh=4STt@^S)Q{<w9^2#pSn%hAcHxU6iM
zl#~?d>)ke}OP6hJeUg)RK1)f-aG9}6aZVX@HVO(3R@2q}(9VwHGpv60>@|F`&FGuG
zy}kT_cU-0#&)}D@`Ve!7ed%Y7M`riI6Zgbe&})k#g-y~gcgY-&6r!SZj*hN2H8s6`
z=T1p$D`#zOZBPZjem=*s2myI?*{@d)K7al^b0q7|yK`@=s}=0+4^+HX&FkXbQpfT1
zOxl~_)|{|=_dXb3-ORu)P}W)O!?Jd5{JNUH&o4|r*47?5ae~QtdT0ejXx~0rd3itM
z^^%g38fVVXcy=F;0n#w(D)GB~`SQoyW-WRzpfeiElP6Dj!jxY2tfgTz3jjzn`ua9(
z$BrFE_~f%Ut-b=Ursw2T;5cgwJv@eI4a1dgkI**cSQ~6SWY1{w=DOLHpV6Y$eApTQ
zVCyz++(-&qigQSCaImn`k8_lwnGTQDyLay%nVtONNPkVFWTY)m*tYk$e}vV=w>Nol
zV*Hyz7Lsb(+BWUI%joCl_tJ5kZ+?EBb)xsfU7sgUcJXUx(vt&6=gJ)UnWmLN-PP5l
zRp7jznug|8J^9+JU+JzgFfd??i~cb+r77Ncx^>Iet;KKO(yJ#N_X-VNjqbE=0uOkf
z7rF%R&Ydd`IgB(s>2t^W`0~<*rZPgX0{u-@TRW&UV6|;xV&5BCrH1eCD=URvXD`ps
zPt*WGnjFb}h;qTmAw&U&=x@ytWQf~pZf-7Q-mnAZfo`8^^|G;6vj!Z+(p+=lgZR?m
zV)fRH<^JM&`ubc$Lqi<;xx#L4Zl79OP}=X8f8;Z89jBd}8cd`Yq!8TgzA(qTb*mq(
z`LQ(F0;-Q~ZbBk7jCQ#Iy;@pY>CA2SP+XLc9n;C5UoAaf6lazmu$r3>X!P2(YazW`
zw{1g%q+ZP}b*Wjpzi@_oI@?N-FKmavP=!zlMOJU#r~1>UNWcEx<0nqoEG;fvh&TlJ
z_9lcgps1*bZO_S=&Ahx+si~>y85w3GHE-U~kphu!Bpcy=qh=rVW@%~eM3tEC8|0%t
zg9?bxkFgZCU6jJ{lxL}Jz>-^ES63&5j(X|yb6PA21uH87pEUnnyLXpP54W<gvnO7;
zJ3H&>I{n#n$L`&OAG4G4>N0Y7Z#lMQ4fdqT>{!>Xih+hDU9;hJ;qh^CW3`IhS^X11
z_YD|@8fcGhS);UNP5<CvX?69gB@m_kdq0TeRQG+p;F2@rlv@BU_Aer4H#=y+uB#Br
z6_S}La;f9>CeR*DU3Fg(bw@|BJ9~8eu>_KJFMND(L@W2|&U1Uu24u^(h2Ln@<6S>H
z%=o0hWhO2mq4!mG{cTzXwg+)>)XP_G>|9lU+B@l%yn;f|+qZAG^)(L1t>%&-gt9v&
zr`^2%fVlG+YpaEt7j7q<qMNdM(8u`r`HutS+I@0YRaf79N?qMgW7oR+gcEBkLb>}m
z9|ym!tX%6u$Fv58zDhvn?Ae`kt2XZV@#9CVMIlO#=Dfa+&eO?QTw4}wGL~a^_*noy
zHJoukZnTv0P_(8xXF<K(hVGe!+~Fi=-3u2II1XNU<TyQaw=Q?X>psn@!4Z#=^@d5u
zmT`ca*bUx6*U_AJ@2lP<>^67R=+Y(r3)S~_E>5L+?CjMmaMlDN3<e$vij3sQ;-+AO
zu%^A9d(w}(@?x;SrpN!XjSb7(++5I9!xH7v0L|m%pUr6o>^E-QC@CsBEOzkVHI(8U
z@uDQ1itycMd}Cttf@7BwPDGb^Qqh#5c9%PJxHZSwlg$+8v9uV{I|H=-^5x4wZui-T
z@|MX47AO)pp~anb<p;&ZgJKRjWIO)cbjY4wQL*BH^{5}aKJ(JzOyRo1j(jI|?83ul
zcY#p@%gW@sIy-r&si|4(Pn<YWes`Z~%Y6C6uDwsP<40^z0a$kK+^JkYIXPJtuNVqu
zaXTVnUs2LWqh_xaD^?iIuw^Nw=@+n8_(qFg;`J@U{?BllxG>+bw7?BELZP_3yK{(I
zZDixu@&q5}*}R$N*Yq$Ag|wBEu@XlvUfcmP=JWOIxpL3Exd^AUL!3O=hhQ}3_66<j
z?Lr3*D7d;x=sR}#DGX~k%syV6fAD}u<Me4h35kus94{S4xxlic*(9^K4r;x2JqQZl
z6xX*@yquc{uekDR<K4S=iS*E7FX1>w!B>9iJY^o=GrxcT{<j}Klo>4kV3%jl&CPB|
zo0|VQVKeken1hqkr0&sCiG3*yxz1C&s_#pO5-K;lK@jiZkaQMVvvzIQz(C7@rGV~B
zW+3!8KnPS6i{@1M(e{Gza&`mC?67hLlmW-@k0ZuHJ?3df3ud@RzPzHLM2cE-aY;CO
zzI-XxKQO>2F0P$%QgkNP>g9DTLYFV0(u;uyZF?U)dv;v73PQxb3m-gDfSXeFf(ga`
z_ABR*!TS_h>f=CX?z3IXas9_Oov3o2><??9s8_VNbAA8*eYS^tiT>~c(+~bVdu(RM
zjG!p=ybs^aao|$q`_-Oklf@{B8C-UQ`-O#%ptSlkaW=)>d}zM7J1yTEz`3NPgc?Nu
z%}bk}%Q&FZv>bMWcr(Y1jR))E`V92-SAl1vCzif_tMu(~OKx)sS_Kyu7d-<*X&}pH
z3I!WY4%h7Yix=a7B9jA+$HsG?SR5<Wp7~zCeA~8d*a^jBU8O&J`;C>AmB)H;)TvYn
zs1(ovG?rP5ii*0<k5^#3(NbIi32weS_tIrXU}$(a!}aHt50Sz&6nrm9qR1>?%~e+9
zMZ>aweez2_M++L9MUk1<>G5$dU4b*lE8o2%>nl~iAP5zo`N)wYj6x^+(<^yYqC}2<
zqqm6j_sY3zqrGF#o^l=Q0zYqWYI#o<na&S)_wBO2*?elM^q5O(&S&e@OCCHIL#bZZ
z*zRE@3PWKG?Ibqj1%u!OXbGK53x!Jok}lJo)iH-0e}0S5X}B|&mD;*mS67#L{rYPF
zk*>2{0gk_hbJjW7ZL6Aj!)e|5qDHC|mqaIX9x_G{udILO&U{K?+Ya@%_0o`!%D=p_
zjlO4UZvNy)yZW9LbW;&(IWfIWF|o0!lX>y+n^o?KJ)A9AT!<f#&dxJXx^K#>7GY>*
zbpyP8+4AM_`S}|?=QzK<%F827>HPWgfuW(+joA$;4g(FzAY&E{`!D^ePdw2zE&Yj7
zs61?Y_39<N6AdY)RaH!o9g0FYMQ`4``LQeQq?6M@MkXdTef=9_W0xO04YZspY_gLS
zMiYAju$J!j%l=V9!mjGWq=$9T>lLA9rC+Gp5H1<S<Z_a%+!N6UGA@Ixv{)2*QfXzG
zuR{}|BkL0Y#Aa^N?9-=DnRBa}2b!X9-}VJk>3$rce`-LJe&tH<`1ttuvHt!OG}P3W
zyGm#Y%>MDM@>8yz#S6(jQyx(|iiU<fS8Q#CFMQy@I%A-tquVssQdVAWG&Ru3A?+@K
zHkKlCQcq`~*%@$OIn?Cl_o!#jo^=inhu94^?av#^wHp)yn&J|8bl`isu+Y@f*6zi+
zgCiY<q4;?hF0+{X{7Z$L$FCMTe~lI@o;$b2s^fK)?6D0axZF3DA4BVsi<ix`!$KCq
zA0cEuG$?fE-vHc_%OxpUaG^q9mGgCs(iQ;9QizRVw{Jfhw@gk=^?&{P^?SR9skh)P
zT&>xbrM@fHI_{=oY6MJNMn}gdBBJqaFE1}IPJ^-I!vj49ACl{Vs=IotqWR?x)jy(g
z-(yyZW~+VmWld=*4fY>a88`U^Hpme8O+B;YJ&wa!&9{5qX4)J8NmUPe-bvc}iAFXi
zb!1X|pgmRh6}7GH1e>6=S=|=46FxX)3>Hn#yb24Y!Ti?MTUc1IFf)5*Sv2oTrIN=5
z)cXTO`p3kC6Gt*9A===8My93}#uvkKI@~$M#l@8q4~{|{BY!fTfmW;<(U4{!eSO3J
zl@&KOnF!}5TNf^{WoKs-@E8109%>%srNECLRW&p<A41JFGBU!o-94Iqye7oNP-!!i
zkWDCPmmM5Tg>!j<Qcs>d$tJ^a;_hBrdwYAr?|hjFy2h!~;vkfwv#)PCzP7KQUzYjC
zWp-|)i~&pNxD_865QpZH$nm!IbK=CU=}yoAdcoJTeBR#P%xr9LjIZv)FQ;F%N&(pJ
zEaM(*8royWj%jIYm%M);MElUb7zBx9ad8os{AT61$b+`q80wf@7p9s)4ds=UR|Y@)
z_T|eLt!3m}oP(GLc820?IM!J#v01+I+qZ8<-`<DMR!A>;Nx99X^T;*qlJJ$=aDKAC
zcJ}M7lbwTu!O(u$<c^_juR^zZ1LA6EX<6mX3^H%$hG!IHWT>&V{ISQ`<SHK}CYF|$
z)1rZw0Xu6k^O4`%g-?0*jQ<%RJ{H%GojZ-xa$k~qUs17~ii%3iag4{+)m4l2_lr%e
ztwX!JjjwM!xMuBkm9p;gV4KN)H3_%5+vVT+Vx`=I(Cv+D<K!bn%+`R>tLo}9>gedO
z1q8-2EFb?vVV{TyNcFNif(AE0Zp+Hb9)Q7bR=nY>vCGfPiz@h$m;1uhnS0V6T!fwC
zNf1;4{d{_Lb#;6Ohhfq$vIx9=d{{PaydD&^l9iS9!ONE%=%yEJL_PxZ2${TLgo1tN
zp&woyI8gFoFs<-Lvw=rUIS=1Jf*2h{H}ZqOJrXT0@VAKZkH`O+m;C-jkq9|H(4mv@
zX1`UON43}rHUkYi*}TawNg50c3Mv6HZ}^)3{P|u0y5f%?nbi|j2q|TFL)6TMp9BTr
zU^j|geo&ha<c0MWm!8fH`a3o=V_N+C%ZhZa)(GW7nU+QG!bS}5#bV^$vSpcI;rw11
zS=q2#w@ST#YkOvN*bkABkvx0$q}1l;9x2%PrIP%fM>b7q2B84j3dP(0*#H92HyFx)
z|M(zSrlF~6qR1ZTl<We!o>^J@1q@zaPtnPFuG)5e)v?2Ja#0HO4<}umopb9(0SO3;
zW@rpSQTyBZ{`2(yPn>ln^|nHfLfJc8v6A`XR)xjHFoERL^G4~Nrl-Q6pxC67E+Quv
zQvn|bQjXHelh*d1A<Q0u9s?ZBzmc33wZ1>zox`P&v9wHie;((LWz(jRz(9Jo>n(Bt
zTl?om+6#gqUJ}8nv9WRXTZDlY>wpMQ$;amA0IbuH5T*|wK4{&xdQ)G&78s7~_Wc&8
zZ;>q*fAYT6*w~n1aUfN~q2#2b!`S%KqaC4faeUXgrMVy<_qXMV!Wz-y84xL)|G@xp
z;PThEEMI$jWp;&^R8}&KzWyZu26^^@mCUwV<f4N0%7t>hk6ExQ5F}d6Lws~z(z9n}
zXp-rctp|u-13ZkwgI;&uMyUrolodkFrx&KH{a16}(0qED7grIDkN?IU^=5`rNJXnR
z($xEX{r0W6rDemJG<|tcNvWlITht?={F`s;8XNtBgBge{h1K~GMpRQ%lbG9_NN_!q
z$bL3|69asO=%b(lP_#1sVV*!~;9qIC6Pl~Mx%n>gY5C)CIF*haGf~UD_jjdA!nc8T
zs4b6OO-)VAd2)xsb&g_h)rj7aksGA`>+9>|EakjE68mV=z?+iU*;xvOC^SZ^ulp0k
zhK_z?)1fzGGTJ7PQpB$IGZTf5+habAw$|9LKnU8?4grA+qYPP`(?u84-@jM>a9^7H
z-Me=}qN1ipl%D3#4LpTiw44}46MZ%0n(+tS!J=>k3a3!OX87r|7|2_}r(fpgmbA5@
zrlc&`k9_@FCc9F*8r>A6l3W8$>-=JGW}52<^6UoL?1w%Ths`~jg1<BN+4O!F`ai$_
zo!rY^)KDx#pau1m_%ZO)3m08{(U#|60`-MM!ci#rh_>aQG7X*mXnU3M#pHFnPZMSW
zpre38WsqSMYB??t0aY!+?}1fubMu++8aj1c#Qg&XO9$d5^&GmOnCq+%gDhU11bjyX
zxV`6B1|MnjzIAIYJRzLxVl?8Ys13_#X?dljxFGF9bdlB7-3XWk6S0(<h30zpyUI$R
zn3zpqb6Si8Y?D({Miv&q^YgB3vcaxkF8$4E++elIk-dNFDdU&67<<+#;J2rzryKGn
z>13p*A2u^H3yxR<*w7MTng+m^Q&8X&7S8xx(9jb)fjtU!T(+z^8k}IZ+0reRQE0>5
z8_@#?F5vyb`}dba?v2(P0c<C{5MNFwQ^M|sukSK)E#ACIsFmR4<RrZl1`9tcPA8CN
z?ATZsori6|Ku3$aHAr+)YO2+hc63GPr~WXD4J+^L`IPUp4^VLZ<bDlQ+-&QP8z5QX
zm1PwbJ%HP?XV2bMD9CYvws+>tnR{Y3GQyJJqE=Q`;2C~dSy?UndVxn^#u{C?;BV9O
zrVGlQ@&pu4B4PFS_wO+O_Vw#BSy|cRG2)uZTx+f^)5*S6d`z%l8E}Ft(7n>}<3vsr
z1`2$vucX<U@+<!jr7gRp^9anbZolqDv%EX2S-%u2Vz~Y>yJ7XImwy*dH_|XJ^b)tc
z?R@*>e`EoEJLgK#i~ZRZ++De%z7W|VhK<2*Q6C&=s`dKj)YQh3mi(j{IGO_sUQtc0
zc683Ukv5_>UUBoDJxr}R))n|8Q4`(iFQx;<^Xp_YLOVJ2>cfL0KIvD#pL%=ldB^?-
z4NGQ9^j^^D$j=9xQq+$d<U0!A5zq@lLwoz}%DMCBliR8bmlmwitqlQPfWU(5@=+9w
zz!QUxe1O`Lo|!3UWW@WSs;X;rG%a)f@v(@@=#jI(e)Uv|c9fL|v)lamdKAJA@3w6T
zpNCiSvMx0(6z+r~2tlWG=<^E}PR^&1?Yh4-B&$0*xT~wHLC^ehazx|e<6D<#*KOk2
zyZ01U+{%HMb9=PX4?_Z%`4BCdCO<e77?Eog^A}lZAl))EqNyn*`M}kWtqJuO@m8EO
zqaEzPc_lS9qYj@(EzHg3z_9@7jA5L2124}T_VYnQD#K}!L)U##dHVF}AY8bh{QP_s
zr^1H&_T6PGy1sqedj0zKWt7^dX9Uahq4yB_k#X+b8XVfY3puvm-min7PP}p~Vf85D
zl0W{o2Q2ejWrQCDl-sxIVQ@VD2HzKdl>ou09mRIt({5#Jc{;1TDKl-c2R8U_$`1E|
z8VkW8ukYSyB<UVY?t~5#)xu+Og1bB)G9gJT6gW?v8W6wq$xmykRZ%C8evo7RdLtwR
zl$-5Uo86MEVwzL+N<rpf$|T(G)p=g+ulFJ)Ir>REqh?#0<*=3Ir#JqC)&s3Z>TNBX
z7NQPJ21w6Sfr^)5(daaM)7REs>Ehy2KB!e_IiRn|yUay5_ho0Np`5&YaZ%BO&*zyK
z8JX9u^Xu&FRIzqYQlh_573GID*8^#mga?dc;U-<Uunn|}nS*0im%Rr`0*%knEgESz
zq0MwNTa<R(mvE}HsxfGD)@gY?7rOR02M>zn)(i-^uNctwVZ6UKUilCuOBYI0L-i7T
zJRwjPrN^g^$4ab+#50;dv5H~{fK3FK%ZQ5PkCiY4Z92*qmNX>wY>*EfSN`~MMx-Fd
zu?R&5_-<EzgE3`!b@m&I)$GuVn%g6H^qSpZ0|yb2N?d#cL@EpW7@T2$n4qs0=PUrT
z70eD*rMyVBuy06GOG%B6;(EW$BJs&WRpTj5&cQTk$l{1}C{IAs#(`Y}f8^c0`)R2`
zy+2WWAaZa(zO-l<ApsI_Vk5ZdpWp)o8&p8j+>Cd>dGm&#ZGL|Ko8jS&mmDO`ZV);Q
z!C&j;Wusv3iIKcfR9cn}_g{N-_4E#<41-q)0f>X5mz0)<_g3BAw;Yf~EAt`?K4h%j
zWpux|h=u`}12i3GZtjkug8LGZlHqq8!1gC>RkQS9>D-faVIw}olz3~4l!JrA+jDzC
zpb4gewKD9UWqD22LG@Y4y?ggA_q<_((-Jw_f536FpT)Cdgr%MpYEAyq;xA$cO%Hwc
zDV+Z%7$kidc#7=jbfeM@z+8fM3mpbd-_~uEa0J<6L(pR{QO@CH?Yu*>Gk5Q<fAaJx
ztfWUubyM{(!7}UW>&HQs)WY5m8r(h(nET!4NfR2+HRy|_U%qTSld4;c4`&^|WEB%3
zplAN0^~AA(gjA^$RqBn4z2=|OLztQuU~?OT&SAs&rltz0#7bO4$44-t2NxZ&lnCRc
z{=jC9Mp0Ru1xH6m9w^Q%8jV?&(CwiZDm~S&fW3IBHJj-#nw8PVa_ryE3T}@wD7%`|
zz6Uha)qO~%MGKUrIj-(ixR_bEFl<fKFd%ks>4onn!7ERH_%-k}jpx?8%QGW-kcv%y
z{`f|`oA<-uPCU4%I4{33-KtGbo-?8LL`r)|fnXScrok^P-*c{^pdxzi-l?oMxUnSN
zM68M*$3k<bva{TfK_PmQ%~<CV#*JdkVPRpz9(F%(h&7SMg{X&<&`X*(Me~#OC*w?O
zVwEe{TqgT@7Z*l75b%M*%7*frvY`SAq~xnZnO(vvnxRjBEkTAZL)j>UpB^6xF=|)!
zy@T}w!dppEGe5TAlycV8VlV;Vk4w^di!XB=YUI1V&+S>4#4JJgORB3?%!Z0??^Ku5
z){eq@2}91rIk>g4sX24Moo4d^#4gmdwOgJvXIK?VqXu5Kw`V(*tN}482q?yV$5q~u
zkrBR~JCn;Rt=n=n3EtG6n6Eu*^7R3)$%Ok!fZX!`h~jKK!z$CcFw=47YSoDt@pU#f
zHX$QJI?aAbsln-}J16uaL9sxH4qv`31Xn6NcQt<dKVmdlFIzL*b)p9TxHK%Tb1LUw
zNgmtySV6lii!|+of97>O>poH0p-TRYlCqA-`?rA3L(Mc|u@V89m?kiPgT{rRIrS_*
z%udo+q<+-)fDX#j{!0|&;;<a`TEE}?Hk``SQFm_L+N=<=VXH55H@1f{#5x&Zm7QUV
z^71<snnjO;AN)29;s9w&-n~1jTj*Y(DJe8nc(f{N|1o-ARAj%giHWsXuAm!15Qnla
z#sIsOw72V%(uPj;_|L0$Cnjdkw&RgJ`mW>hkn4Ndnn#?>&w6Nwa!KBH4j4!<J$H^C
zI*PDi5hVjyXqCqaorx3`y;i7PWxywXI64S<;X*<}7pLtsvN~QUCJdf^e(u_A{r$y;
zp({{YyM0zm85Sp<5WmF8NWq@l$D4gbZ?)$WVIes^f&eqD+QjckI6eRTA||SJv~X$B
z1x>vhR@dxU>FV+6R_k~yRQ~65xwd_)kSQRF=M`P;qeoY4Q@IxizBM`694a4wx`%fQ
z6Np)JYGMV89o;oKY6!F&rCd3V9z9wmV4$a$BBq(S(=Ol+A;gxg*+wP4EAqoV{RcV<
zrGY$IHf(ru<t{ckFtc#JYV`N?Wl<Fnvqi1j&+#T5v#{(N!AWE_6;0~t>Y`e`di6ZM
z9NtgIuySPy6l|OMS)2Un7U0C!zeWxbP=r>?&ziN~#ZW}GEjdxH?Hx7|l-c&~Z`)5q
zmBDk=FK{-()dJmD1VJ@+M$8J<OFAM)7t)*{velQPIKVEv9}t$*3Yhy}h-~aatyvcA
zSFc{xwqxUEp*hZ8`&W@INoN*kkHC7EQO`NF<@mx3d)|Z~b0e>*xeho271$q4{|7|C
zFJg2GvM2r`vMCL|`*y|A+4(uM_Qm(Ncc#C1Q3@W)<Lil%jP+7f@^NDMxmbmiy9g4|
zVu5_^>&r3MrKp{;{rTfOG6zHi!o@W`lBsHAlVQv=3b1Q*{(O1dM_Y2Grn-X#`F8A}
z2L$7%Gs{X(7lK^9FaM%2tSch5)z$sc<;P)|OXK0;0f<h0<<&hfv&pGugUzC%?0_T<
zxqaKhlwkJOU(|N^*4s;m?lUrpv$lz2!v?;6`_{teJL2vx#UP`-RZws>0Wlp*iw+>N
zio5Td;0MTSl(R>J;Qm?<BS-4z*R`{AbC6(e((<NU9{F<cL#!kx#8@8?f+ne&q@*3L
zleLN`s`34Nz_Xx(3)>B7+zt=7so()I68M`g=bM{3IeC?E7o2gZ26s+NH~-57y(l7x
zI*&}^4t{>$SFa8Nj=ZvE2EpNm`3`JtR35Z$Y-&m#i#%9H?>&$+akUXmLEB8Pon=m$
z_Z+UJL2bje)Xd$mhl2O~O&5ys4Wv>y^trV)9$FgIxU#ZqYcm|jjW<d<v!ZA~KiDh@
z{Q!<`d7OMO0Z||gM0bNI+m=8FCqM|EkhZpVypx@evy+-=TvLzVP%Z~(515@HdY01B
zqelRxf`WpC&>{iBNNxsR|NocTS8sJTbZW5K1id4~`@}zy$ZADJ#St;+Xf0{h9j}S*
zipq>QkSf9|P$hwhBg-GEh@$=wzXy5G;p~TxrIs&W{^|4QolFf(^z=n=>kv|80yIU-
zxKhDu?D^f@s26Lc0!m@EF|%2qKl?!-hck0-P+{}657ydta*z}p5t#n{@pm}x&xqWg
zkN^FbFbP|?OSr-YQm%)gKURHcG+pe`gHmLw!?yiI|Ap5|L68YjDk&EWb5mkYKehzR
zt|Tcpz7S*BGO$9)n#4sRtLw^@z2F+EFx`-Sg4S0AEf<Qax`e=A+3Wt_+QMEE(Oz&T
z6%wn?5N8g!kr(@xLP5O=c=2K%;tyT0K7b&~P1pqWuVanHJ$uFo2z~bKS^h_Cx6njf
z(i)(zQEtY>RIOag!b0M#i<Z|=jgKfQE{6jOM|(S^2+`+t>(&LGhmxSGr^iJ3N6rfz
zDg!wkl!Ejz?dy^VBR&cnkU7>?Na67<g0+lN!Ysq0PdN<r3)>a+ik^{C4mwEi+dmaj
z<n(xNy;DUfIG9}!Jnf{gHI@!ZfnmX>!@5Pw52iICmvF!pRUVP15?~DM6dL5b$|djs
zC})Utf|9aw2{f9sLVMoSCtV9vGTFZ|!3=cox#@XWv5|)y1cIARr2k)3H2+P9{;eSA
z1|qNS@b>v{{kVY_1}Re6jJ$F$Dp&G$BA<Ql-bS_?zs2MU=*I+t!~Lid$g}Q{f?Hft
zTO0O|{GKjCGEjVy5OjET94!Rom{|YbYSI1a%NiQL6u7V_p1iN1rp5wXJ&q)O`i>32
znad!ZfbAlq;swYZTvvrs&j<L2>;K|HmHCyss9va*%V8$*a|jpRoPP4Z)i{|DSu1=1
z-$wDq#v>3J(Wij{$G}n$roBx&unlo#1kH%QHrfC1%V&e;U(bO7*@8F>l@4j1K5a}?
zn`}!?M2qn4sZbJdl+VTVilEOz<@SN8YKUM9u?*284Gj&8x-TAt0yyOMaJooX=url!
zI!uxfkR(3zhx;Cj2VuG*Cd7>NDXGHPC}MU4tUxW~W%$$=Vr_@jO^n2*(PfmLK2At5
zM#PTf_)eWVC3NmBGuz`}PVuWdkTx0r*>@lLy!OM|+8cu7zJWE>CZ6Pm2vROG{aV$9
z#L2|KU*uuL-{6uAf(Dh&qx}XUEJDt37Cz=VScm&a96i(!;x|4%PDQ!l_RxMa%br&)
zs=FcIQq2x~E6AnbC}|L!-YD(9@plA{Ef3+X1eKVT@VZd!*yMskpeqyMpVA3BO%5hl
zrY1yE=#emzL1c0Q;h%l^S7{J6*#&{p3t{(e6vqDg#MQxZk8%FN0VOF!r)H2D_9pK;
zou(fGc8=8D-SU0~HUZthVxQ%kw{7z;|9DD<esZLZlcK7rNqbGMgfwj){W|&_tF{s-
zvW^#IL}73G)kytfbQt+!B%Imc$G}dGle`Hwf+0x~XIA_ppT@`~5n0}U0a;z|_4_Uu
zf}uby)y^=c1yjwyK8DBnoQJr=vi}f2`x9K<+`?6|whoin;eU>my$~W6qye}tQiQ_i
z-?OsCM<Zb(1GNc_LyK__u9^?BArSmzPo7*2L4|lIC@tXQTIkjfQ}+N8z&9jWG~wKx
z|5cPM03~Wy!q3^+2QYCZIFE+(t^fKZhE8c;k!s>@=uk+IG1OLJWZ^+(W@dTi65t?z
z6rIcL7%$)E&0&#|pDyYn1CM{kfDToDnh1s|X)Iopp*K@O<`S5GIhZDK+^}+n(+^y{
zg0ICJGW%d35l3?m!W;Vn59IT=RU5@T0lRsHgwo|J)%!3%;Q93FZn$t8s$O94LcK@U
z^W#p-wK6;0qvrH(Z8~^m8Oh*5vK+5JDc$9<G~*G5u)q%|^L=z216L8W>FV0dH0|O>
zQ{UXIXlG}4YXUhLe+0aspHUMb6Si_#baZ9s(}x(1A*MbwfMnfm5R&h^O|QpuEtYxz
z7V6Y-yAUnMcLe<jHpHq;n_{-jEX@@@ZP9PrJLO^rk_DNJ7BUy~{Z7Ogf~Iuy?3n<I
zd{B9yvNmSh47X&>&h~^NO0$xNhK76*sIz9%1y8MhL0yIP@&+35c#B0^7rM%>`^zyQ
zu=LhK(`6Cqz&Q9C%JpOqz$PStoj2FlL$TK|H#jE6I_O;q!6*#UFv6Za_+zAm(_RO0
zCN?gv8|N$U7@;}ridZjlkr~qF%Dcy#tXlQ{u5)HNZ~DjljgH7$t;XpM(?b+b7~}V1
zVnA9~l1Q<l;_jvwh&myU828}8gU^T0plLPhyQDPM9BZ4VdhpK)pKLz4{ZkSmLH!gG
z_NuK_W6qL;)Dd|7`cPfXL!WkKz3x}QvO#2A16*w9iKU7AOZ@E~OKvFfyyXAm5Zj;V
zIV>zZNJvls+F6;bu?t@Cwj12i)uPJmVG$AA>6kWb!Rd(B%YOd+6f^);_&-^di|f~}
z-HcPS`40bCJ_sP62P$Zop_iP>TgtiW!o=MS{fX-Eczj}FVx;J$PeL~TlrB&Iiru$=
z|2k}2i}4Awchgj4JO!#I3|cFZlj?8+McS*PMRD<hKxuZmnF#(HM1E{7@FZ6*dho(X
zzg1I0Zjw%YmafObKyEhY;*wK#ay1CZ7$RCEgB_ycwb<IR=nqK|B(?jb$K2Yzd-rPp
z@C%X@(9;Dh1Oh?r|2Xs<CKoaGkiX5lr1Mt*aj9N@0%50c_vZTgQpCuqD2S+APE7kU
zi`n*Gj}w(`?5gVpR&`xkn6do+Of}E#caCS%dpBs&&HX<|l3aMh5ht#x2_3y)e!A^p
zKvGiDwmv}1QfTTZ-$<Xav)21~d#fU|3;`Xzv=ffcER;xAk4)*=P8v+^ppb0_ra?2L
zqD+o<a38WC^2AoPYR|t0<}DvMJ~2UL*mT2UY8b#2>?R`ry%@Z$v}MnLak$bJjFTLJ
zrw$3Aap=Gqm|ieGctk{45z4?mdv1J)Dd+6cjQ^5#nq|`&J-v{n#nGiVB*0=+vW#pW
zlqY46d)Rv821`>0M505_2*AWdmYU>1)220RydOQ<@?WRhc9mSQC0ShO$%|XIZG)<u
zbt2%{;PgX;(Rct51PdnDEMokwvtXv(Vw!E;lXg)%D3E0HVSgKvos1NNc4mR}eAnu?
z@7@(d+M-Y<daFud9y7DEFGoWr8%D}upxqYi4`@;IXDp2;)I5`Se{5A!QStZjp+Q2~
z|I;U}axo6g8pXEhMz=d6u3XyOhNOoetJ@tPD%E``Dhgvto3p6i0M0;eC8@T$$us&+
zw8(-X_d!dHY+~Qw@&t(*qFcbtB?uLjw_NlFJ{~=sn6*fM`}+9!)aBfqlU#vj5mb?^
zV`@SD0g(9i>u<@eh~jTu#Vy5XYiq0f>IyAHFAH@~Go1Muv{W)l2&?6c>qkk)vCdc2
zA4puo*q9pg0gT*I_pEOSKr>o~*t|(1Z6td0O5imtNk7nNl9)h4lsMxF%kppWv^_2Q
zSFef?vj~SPL+^z)L1H5$xPf$QAo6zQjTO+qgK$|oq4&|#)5EIwZK=5h(v2QY$1bQ}
z_VJ-C5H#!HsVUb6OM^DkqosWh)x^7BHUO;g>%0Fv&&8Nvzn;bf0agH`4JUG-#*15B
zGB&P@>uHjq$GKxdC)<IHfZXB3o^|8jU{PmY<fqrzXkj(%xW=wk!{L%Hc$I|nq!Q?Y
zlhdpB)0uq-IHe*I+z0Z1yx$G#qJ<x*sf9Uy3qPYRLf4D>UGn+!S?oX<l)JFbX19Hp
z0n(QT><W(P$hCV)W+Al1x;Z%Nq)21}FfKmT5Wi&0mMsWFGGYs2JmpgD+<(rrvrhaQ
zWyqctN(u{Osg9LwP3TLsiiU=$T$AzoU#i}V_w7%o+b{SCN}td_8Gi$@6p}$AXBz5!
zmHXP%eelUhHXk5K5p=;=;sbct?1g^n1C}km`z@MwILkJ|`!7PX&48}Qc0)Ua%3nnP
z)TuQjXc(dIeAMi+`QgJ9ghMHiNOWJjuE$t_W$oO5O3-Vx+`(5(IDVI!o0}U(f6m1i
zC}-qA>%UhHWUuGo2n1#=C7x(ZZYf|B<|xo@vYqplbaFm#AZu#mOEIpu4MNE%K)dbK
zL`7%s9!apk1cWy{GbEmxhn~a9D@CT!>E+FqN2PCykYB7i+;A_q-KS}q?`oy!C5DQY
zi#_gRkWV)w4WDD(@g{)VJ&;7Y0KmVhJoF;T)nttz#Dqk|pC+pOClStMHKUz4vTg#l
zEnIf@;2$Ds{`8(f^X3;o`$RuqyX|;q$}$lRi192qC<MO3D-oUK*|8&#=sih;DEM_x
zq~$g_-4e5Wo%8N@tj&S~!41g?!V><WxyiV@zpmRKIpF$dpzUJ4oi;K+N+u04sZaN8
zSY<W5OZ3{{C3pi~uU<I?N8E>*5}Z)%JT>5l>sACi5wcFucRXO@kn6|U=I#y5n#+nx
z4=HOx=#=Pb)KzlQtE+Ed!T@=N0}$G7r`i`-Gz&mXACpP^jY13E7s%WK*2(qq{)E>H
z(>eqOK+53vXA4u>^690`W<+(=G&TJ&fq}AQgp07j$-!hm`>Gao-7@?JMQ3MmtlYEL
zt&{+O>+5g%eUu^d7I5dYFMX!wU531?FbX@Hf2=gmgot_FGT?A;Bz0g4=<HwRo%<Sy
zue7+BN?u;RA95x`oF8y8flJ^T+|sKcS+V)Wa<1kLQ*eZ{&w@}O^fqAT6$}ir=&Gf`
zY%j1%Q034$*XtAL9twa1p_S^DZng2%wPex`etO20Z^|hyR(1|l)?z7nc)|y=w}Uf)
z>#)h6IXC{Z&zJrD`4a;?Ff@q`F+Nkcv<ZV=weR~P@81u_h8{29hBsJ>qP@8Oc(<LX
zT!8HiagRaJ1K^{WKyypa&TeYyTMvd2Dm9n%&IumK<ttabA3o#-AtDa+2nTp`LwFS=
zI>fjm4_I!%ve9DRb1OEM3}#_okOeHZZlEt09acj_qZ9D)_h1Kf#Wm=S$cF^r2pv{I
z;~5wL*$4{{_d^<^2m?(pK=_r}iBpSy#)Ci&y2&LGDY@O!hAxwb5u(7=3{O>Hpg<>~
zU$LSXwe&icF+xd~w?ld2wKV+i#OYeC)M-%U{u<%RPvTS?9G9_wR12{Ytk~;YWt8+C
z3WaqGxi3Iv#OAGAX%Tzhv1?Ze2DEs?m5o4)`OF^RYOU+5xnBVS$P=y%?CnSNlZJ*&
zohB2gOc<V4i8s7;^QI>j0T@y#w1h*ekS#QehD^*SCdN@*Tnx~2_{b3|vW#ZOP1qD^
zm@un@2zn7D|2)f!$u(GQ;7`glcF5xjfqWv5TZ+s%+<-4Of!bbYy0;>^#lCLc<4M8V
z2^90c$!s`Jc;<glZ2Ld_tlxkHw--njff>(4Ok)Udm}q2SG5h1B^aAUuRjY_Pl9eTo
zvp^gJBu}1;Jt`t&=yf|V%}#JiTACo?pDxpv$SfSp0(h_(cK5z^Z3V)WL_;p`!Mf~(
zI1N6BGeic&`L~hr=Gsxy?y_rI>4sE*<USzJ#;_wO6o}oJ&Wy)+J?0$(Z`?R7abdi>
zoDA21cJV}1Vwsl9m<!_$4Vg2_0gUUZDKG7ZH|#zxCkHfqYA$Chs2ts<O`94T8XiEV
zqfkgZUqfTZom%97Ft<)22o4etfN=#PN>Ct+N-TuQylj}l6NWu@OVpms)TY(<yqKwF
z=;a-$D4456d{yi0SrAZWFE1~CKJx9=`fME>0^sFi=aM8Rbc^zQGOPdrD41<e35Fmt
zP$b!|lQdw`1a{Q_?+Dqs;!KW{@ff@cX}lbnfMxVPHXIAs7!8MCTNIJo|Cb9WF7-R2
z!~ZwOX(yMm9Qux&xVOYz)IoJHVdJ_-Dz!J32g)Axrll=oSe<m`^x@i;TDDsIgxH1n
zl$g^JsufQ^YHM(0ux?zf8pkXV^wIg@W|og@jCU*6n)wAKY3`;wH$4+zFuj~Zfa-{A
z;e|+>TSFr+Mnm3huaU~Dq{em0y?_5cHv)<eRCh$Voq#Mv?pZN7SXmTEi%UGkxM!*)
zea26V<S0WMPLWyIKYyT=>umJtmkd7%x+>N;l9-_}6+8h+eK*1DJoL=VyfCV5wnauK
z^+1D)tUn_a1ty8G5ntSyduSJQtGO5{uz$s|Zr-XUmCgxKL%vle_6)=-Dhl8oqp!Gp
zz-r!gtgKhxSzHTDav(iIPjAz}zyP$}(!)vW2m;n2rA!iuSm}r1nYijU^FGSW6^Hjj
zlFCF%ytO?}e;6(z!UsMI@m{B&mLrR2@LeKPdk>}P?c4tF>S9c{U@K#zlkO58zHaHo
zRYfWq3Zzl;E8%?v(_Y6(LJz%x&rVR0D>wz?3^#9ppg<R*Km*GOy`Dt5d_Xs7_=wmF
z-&DrNMi_DwiZ2Pxqc_0N+WWx1e~cp%1|tS4A0{Nw;qD{i1}F<Y<PH`9T&CS}4TEGZ
z2}~b5p9BISk73S|3W|uoY}J#L6f$Xzp@C(9DExZ4tZ4cHn5r!`^H~+@^%*1oNS9ss
z5Lr89fh0QyQPUkp^|#?W2Pr>BxSD2he&QsW6sZ6(clh;_G(n=rFv|t5bs4vjfS`xM
zPX!{y*eA~_R8+4Y2@M$MS7JifZL|`3th)zTrgov<!a=COn~)+A<dWKMo`zc>@F84`
zxCx=HP`zZ$<P-IlCv<5=`kNR+VGVSShm}FB5Y=7bnBl<{K7qPQ+)juvY@t^91LDKt
zLQEAU4LzUO`36E%?n{LbaS=6)q;P2-s%(v@v_asC+(8Am3}M4CN0sW;{)XM-O*19)
za5*U`RhW(D8_-0;hLkPvY~bj9%maHNoNGbUK{66|r6@TZ)!*R4+ZgJXT#+Ft*U(C^
z0&=K0AC*8ZMySf4GR@YOetcLz>h}m0UO!3cY2))59771=+F*<Xhe9@D^v%^pxDfP&
zI20%k`)<;SXD#0bVG*;Ruxk}iZ!rgO^Zxys+t-rLfZ%iEx@hHpWY`CJIUn4SJXP91
zM4f;;P#~wl0l68k*bt)tmS+f26cI=|BJHQ9Ug(yatUI-Xl?)sBJYY8m_fg%!${2TT
z)h3zum~2MW3Q_@qww)Lmry5%lwM4Fo;)ysX$N(8RC6pL<4Z)^}P(FWtD-b2dc-n_F
zE3V~wpMHwe<9_&fAK@O;{gAF{qls7D!HhIMI5G)glpk~JI%SYg@r3btTX`$V3u91m
z<H0Mw@7C5HlYe~52r(#r{eHiFd-r<7TN2RAEfd<{m^xUboA1a1^q~OF6So7IorMQZ
z#{4mLM)5?N3hNU0L7^v}lp=Cr5X*%wcOHgbpXn5XyO?ksvge=SV6h9v>#@=H(hrc4
zk#2|GlBQG>z$G7|_A{Vh7>{4U5E!8KcL@b{;3UXLkSx34|Di{f5)m3L`l3kGY3mes
z3^pKsK}We67Ul)Gb0v+XmcaoxC2?O=&B@5jECb)*kfRxv^3BBbIeM`Pq8G;F-CbR^
zLzK-&m@h+*hN;xq;ju(Z0X{qoq36JX(|r;UQjz-f{qt@KL;*%LfAwm<fdjC~^xS8a
z_`>?<9ZojXw>GzC*8nPLr`%a$Iiy{L%M)CWv3BOP{MJ8E1v_t@lwwH)Z@C7+a*$sa
ziD@rP2aseC1SN>3J+XXo5ei@o5M7L{tX93!y@6fLHT5kjJRDNJH!MP~aliJvm3Nf3
z)XYy!@+IZ4`$)!lsy%JQotHwY517{^>p^dT^Sq2g1ZZ%ej~7Mwbpw-{5sN7z-Ws^t
zmwczSaHtfa3xt~Y09GKcl#cDlRU51FI(FBxBNr!|b+UuSRf~uuf)(F=6=Xio{w5DS
zqTp*2^)T|bX;W1R**7qKd%z<-L9h|OgCcSB_U*|Jf>w~-akGFf)cu;Nr>~7hNy?c_
zPDS3mYlNvw2xJN`CZwGw>5=v#cgVrg!(Da?FSt-|NPYTUoC^8RH8gaLMbH#%riads
zkKbw89HvAxCR9jb^!NRUo{l90qCoKoRl!?k6KoupkmRe%dIc$g%xFJ<E`uA)?3<9s
zZ6V&jUx}wMQ*AMUWj50L{Bcv31+z6`Iv67^|Bl;{*r%l<)=*TRu}}H&8kA2*uuqb&
zfc2>`a|(@YCx)k6C&jb0LlAe!nKK!AcWXOp9vT16lbTs}#8ZyXY_exOZ}c_EUawiR
z25}E<lCg!#({ykNX*6N`AuXsQ*EvO3t@NYD1fb=N_@H!+=B{<DD`^3O%4AQaWc9(!
z2LffQQEhBA$-rztlEyAd(ev|_LQpIqlmu?K-za`Hsgdtw^Oa}|Ta2nfttOE$+<Rx_
z?)gRZ8*(2D2!<rCiOkLGw$Fpw4z{09ajvYJ)_ptDYF#J~!7SUVZ6yU6gK}WvhSYWF
zS=}V=hD}2DDQUJa%`kS=*Ul5i^>k6W8~&TsxE)xAEP5b<hgYRMFsw&vEN0$IAWe~B
zX@R^h_Or(f%un3slyVg#43&7`?ChmTutLVDJviEstd0~MxuplXr4dkbcZ6g8x9kQk
zEO4a!fk%%#Z7linMR()5mQ%==uRuGZJ9H@TLXIi&W@G_+eAPaC7K3EUuI(Q`rhleN
zN%_{K8$FD)H0~h<9fb~{6oR2vyrtmIoh<jG4_HRcn&f9$TE4vA+thZ4I$_bRx#d@=
zq)-*esDi$JteE7bPwDn)m*GO<#!_y-N}wSSO#qfOO}Mfj2FR$nUB{@9qkm-zU}QGP
zjuDb_Kv>+PB5mR)$faSiH!X3ZA$SWxDy;swzvb)YPyvvJx9{J}C@9b&ElW#*B~=PF
zo#d@>e!H=Zkjf*ss?gC(1Vr&nG<}PnocT(UDL5j5+@1(Q#`(FyGz74iT~wh6aOw$7
zIb}8Urha(+v}s|NMKcEn#=aFQEFf_{Ol+Q($DOixckEDdmDPWFnF?ct<hLWofyG!h
zE|ed<pQYeBNx2d(k5H~79IXcPEG>S@$qHNS%!kjPujz1|sIpBV;Y*TiPF$FuPlx+K
zd^${_p`ry;|C}Ca3&x~vdM%|HG;>_R3&IZ}&yb|=@B9>%`eLi4<w<oEZ!)?E+jJ$M
z(6|lE6f(<ep0&YaetbE)T>bZ7RjsXgYSGc=v-dD?6_7LK^x`p{ul@6^taT)w{T*j`
zC8cGOeZz)b)rqH)$+)BRi+SjDD?!;v)4}X2kA%|?In0V#;eJbNFhbIp(3}A41gRKS
z6eQYLx&k0@!8P#C<lrbUW4HU^BCTYS_K*JMppG@oh7fysGeUNHnE7D_Q1-pHcKb?X
z@R|?a$6zXA?a2zEF;Z^YQ0!Qj9brbcXzR<oJO=C6KNB$d`#Fi}MDyoNH>N}#^U&1c
zCmx8gj@}(*I>PJ=O~?pK$Qz;r@FM58WQ()8cWSkxF-brRC4<aoYvtJw@0&=`%R7xk
zJu3i*FXANj))vPGt)eUyJ3P{Y>^nXPqZXoLcAI%2_FjZ3NbMA^802(u%d(6onBf!O
zb~2V^JO*5mH0nz?Z`_5u2S`g~0=M@vuc_e4cXlq}(RsZj?nu9aBDFB74ww_<^BRgd
z`3S`7Pxg&VWA_n3Ms55GqKycxh~%d0siP;!qP-JI6k!q^^~B!yat)TyEDl<E<%XPo
zYB|+(C@spqgW(+<6y!7z^C&}EB!UIzD=_WhiaX$t8^t+hhy%Ep)hF!F?TXh<QP9%j
zz>&6O?t?%>1{!e}qjqJ_z}yfdrWWT01?k3D4y;HN>v(0m93u?f)%{8U?-=6%e13x<
z2x$ahrWuA|@6J_KCu-~>aTGMt%t4g~isN>3zJb#R4je#rX7tWQ((0Py8b-;+5n&;w
z7>p{yu)wHddDMQ3D9Q3Y08l{UvnZR;!|9QX-gZ(>FdUT#2|dhM=T}+}C^g*tJC1S_
z-#Y>K<3a7kbTAbFIvM6=I6tMB#q#DMx5FR<cd@Zt@Bvo&$?(QDpOl;2>je3`v%fzO
z)0@BXtFsZzx)qpuV-q}aHEDT5GGM=K%IO{mx)e{qPFPJQWq~ZmqXPAv0V2`L;dPsE
zOqP&QD7cK|MhK<-Pr&$+M4u)ld4dT5o-M;*4V{c$DxyUg?(|oPKLSB^Jv{>lUtHe{
z<S~;P&0$P=8mUGwtXSa%NO$^~R<TgjN0Vi8a+W!lKJO*toGbmj@d9yJ5@0*&7<%x3
zD9f#ISgyhT!i5VsuY_D+e1fQ>{xUHtfQc}8$e11ck&?q#4RL!gwL>9rtH@XiWa)>e
zpRT93dxGJ6q6i~-4;6;d7i?6m53Gau(!}d0u+vL55$Q881dh?6g5aSD-DJDWEXbm^
z9F345XQVGMy6%Y{EBnwM`)9-Jxq;n;{lLh?APM8+btGjqK*1K%EpT23Nd&fWF?!o|
z$Q=z$O?x+*t07FYci%p;XvpmoahojME@D@3!~tXSy|?3*lQOuo0Tw8(FQgf=oXySO
zUsjsL926@X8;oEI?)8XaTl7yqXse}0V95;&<;M|^A@%^0{`;8Mtmot;$}LLKx!Mv!
z%LDbdZloa*J3_Dn0}20TVafO{m$Ci6>)l_U$MwQLe|?^CcM$d;9^6&yRFA(MkHW1*
ODM#g1<Wgk}z5f@y`1~0F

literal 0
HcmV?d00001

diff --git a/oxAuth/docs/Class Diagram.png b/oxAuth/docs/Class Diagram.png
new file mode 100644
index 0000000000000000000000000000000000000000..a8ff41cb700816c5e56f57c7fd28f07a9907ae54
GIT binary patch
literal 172288
zcmeFZcRZGD9|wH3Cz^=RkfcauWmZIFR0^3%$R>MhQAx^(Y{|;F8di2$NyrWvC42A9
z`#rhu=f3afxj*mteBS@wx2O9t;<}FWIFIA^`>x}BctKWzVk6x~5{X11c~0ySiL};~
zL|P@gel5PUxAe?8d{|+AN#YDCv21rYzF2$xyo4BOk@#O&R<t+1v%&P-RdW()({|#&
z6{LV5T6}Yzg`~{cbw5^ZU9)M0&rX_~B+?#|q}b`pHVu7E_7>GOS&NG_Rhs8MF;i>N
zb#Kw)P<`#q#l^a1-?43mbb7MC>4r?7JyOWM;`jNa&*x8rE1pzJef@ZV=WW8Z*FUHg
z28Q{>15Kr#iHa8g+VXs7Wz^~?&)yw5ChK}bI7dYAg@)@_X%4ZVd!1SdS2;uHr~AsA
z?K`~d?VCsI?Oil!T`|1nKU=t@xmNu7#VOOhF020hV#|&7t$%(_TD@x}-+#V1?MkBj
z^NUkY|Nme4b1we>8EgG>D*nH+V2)L-#wB<4uH8&~YCnmWl*f6K_{I;;rM(lT(dw=i
z=Dh#HCKAboo<cr`*lE0J>?$cSk&y+u4Ij)qFDon0B>V06Zy<h+l<2l%t;iL8dP-xk
znvyn`fv;}QzI|uL$H(6(Cooj*rgYOO4@q!!btNb7wzajL8TNFJ@9XO$XUXJR5?fN0
z>c?$j1CNR7mIZbDI^HQrF>3Vj^{t7}GU5s3P|u_tBTH)72@&t*FuuIM=Rd2MWJM0Q
z6~(=K_pWGmH=pUL2yu@~w{E?Yl9I}-WOSO+tnarvD<NS}6(tkW|KY<2yV?F!-=|N*
zy1H)WR3)C=O&R&>6)Oja?28vKUdP3aN{QGEg_R4|Ca6Sf6+Myk`ts$=jnu}SG&Ip3
z^t@J|8+G0v+Pn9(*JUN87+2S|?VX(l^E2a4B~=Ulano_5JvDK}Yp130kyFM}v);YC
z)K=tK*JzT{KPng;NnBjoTh9A*_&DPf{XEuptX9ROyHjNG!$8KMu+a2x??;aw^^6Gj
zM{mlo8GgBK+ct}l-;(u)JVp&kl5vXU3F&YJMa5`;f7<!>qs|vEUGiGMB-)H9r5L{0
zxN+lUdHIMz$3c5shrESFQs*261%=ePa~CWvldo%OC7XB33QhhnpJ`)S{I16+A0=J!
ztH9l|PR&~HtN*driHQnIO8x_BZIoG)&GyFwOYxiE7UpMtU%cqPGWg)Z`d}e@g=f#6
zsW+B~iZBiNr|=A4(T%Q(4K&HVDkCGKUNqg<oK3-F{DajkFTB0P&!DF|wn?g!Uv~<<
z$%THMbt|r#<oNyes&zg=LGhSey_Rf8<y2!ew^kX&3BA#bmU-Fk?(TQ>hF-6>?iaU-
zY_X`4vFlAp9V-(U{M>%aHWEuuTIc;$s|+>#mGER7mpXd%sG^-+I<D@3ByMok!|ew%
z?=Ywp=iNB2*Z#%VZlw5NO+&-$*RR>GT)xbD?ATk;JuFWX8QbE@_U_$_6>>>d_6a4E
za9@30%LLEGix-vO>v&A`Hxjr0(8-fmwY9a?WY=NXrfqwcddryR)vH&P-(0)hY}?6T
z)RL`coSGpqo1|xK{Jh?9;)PYm*Ikj3k=<W>4+rp>UC+Hmv77G#i+s^f*MjTQi|h6;
z`VEi;7e>;?YgK%`y(5Bxc4v)Mo=@*h%wU!b4-aoL&MAAc;d1AfFH$luj-Q>Lo@P68
zq|d^hKD9BSzcIBp*t)qQ({|LN#c|T|Faw5_>v4OjnSFD+dW2eNyjq^$qU&iuK!C+$
zlXcvySNVroD}5as@{5Y%UcNlz;o;#`tx4hc>J@Wo0QdQyKYubjA(P2|W9?kmqGf|C
zr-s|ID&^(nuc)gJ6weO*%)_0)##JlZ&(1D$P%dQbN4pmW9WLs|CM2YG<;s;1%Uccf
zTsNQU8yE-}QdvkV_87iZO0pTgo;CDo)9aX+E{lxD{@SBX!<(8MC!6&3^(zOR7wv`S
z$ErfY6m$tJLNY$G8fb;&;<SgESxio3K8ccn|J8Xv4!x#yOQ8nczVB}Xc#HyEshARf
z|GuG?X8O^aNAuHaUq8RY0s<<B72+>kzy7i|{%V_~bH@u^F2@-Q?Hf0`d==Fzp6(UR
z9FdiluHJMsGb|~It2F4OygM~}C01*9a(Mu^!OD)U+qXxQ2J#wIzLE?$X&!a_`0?MS
zd^g_Lqo}>^>oaU`Z!b1ZwU5$KNw<jYC=VsSe7TRDxssvkYA`)LJ-2=}EAg6Z)~r#+
zzcWuaaY**oCdg}PMYQBf|9Nq%HY?ozqaMCXvn8AJ2V-9`M9G_HG~N23x^csXi|5a~
z|1eHHLhZh9-@eNl8b{p=_IVfowx&x-5e$-z{`BdSLsW)pBBkw(8#iv&yuN~JH1fNm
zy86|dH=Ja>+PU_A3w|N(USr$2nyWL%ubEr!T4}Vd?j)x4Te~plirx5RY+9CGqtB_o
zVI^OGv}iAdL2Z1+ixavQV_g@6`ONOPtgkysfy(YeA5A4qBG$TNwtNXqhDJtVVWB!z
z^SR0bcN*O6Nc+Jo-c~iCR(|4VX4IJcmsZ}4L-g~bRx1*LA4y@MnhXCyV=j9{mtHNm
z?o+>2+}pPoi5k)9JRYYJi>l~_sYbOD)gpdA?dO(U;-je=Hy2k|xEtf8bLSoye`u$6
z91U!_jL#`|^X-we`~6H}Y^Ild-it*pB%Xqv=Nm97RuEtON&@`0rkiCn%`8mjkVO`!
z%NtTnLI-jdog^#K8g}m5Rj;{N;&-&fFndDNy;P?v|Kavz%U%WbrMBg`a=A368KXm?
zRE&`qXUHL~9?V2zU}1^MTQD;-Q~q!(vUB=5yUGp*26p#?mtVh1t7Y0;^xCm=XCx+w
zD0aBD0fM&ga66g1W1~YZIXY%J%{I2Mad14LAujJ!=&9uyv6NR)IV?FdV4c$#IWICl
zCa;$5aMjD=SN;Zer8lQg=4)FP7p!Zlt7G20`S!l0mz<M`^+<GwTYS6m*Xvd2e4p+{
zDk?=|<3!m|;Zk>EBEsaBOH^yRUdG|5gOrSdtdh8z%11j7@7T8OWlxX3+)Vt{_hVfV
zo;}U>gTBnkNlE9tbT_7$IJD8fQ#z8lo_Lj+)wRp_qUncKqmkDuqD+7BIn>0T!oFua
z6BBuA%BIP@Txez@HK$*a_l30j;!6D1DUHI<1mDQD^bQVA5E#sqFBh5&N-=2}s9z9S
z92Ma=?~slzlB&eI<I*bJjPg^meM`^Ru+w)fetue`PP{S6aqZG_CDoabt{?AivTmtC
zvx=CTb3kdsUyofU#5>D^H`y5K>%V^F?oM>Gax;{Gu1Z_ynX1s9yHvs#l$2<X660|Z
z)&x&jTe|dVQ!E4LDGP&HM!%BC2nkR9u5aOwJUs_%-(p4Lo;4{~6}I1!+}7J_8cZ~3
z$B2LI1Jd$tDqrr}_;+0G(?5U{)iQ7*zBfa$L@~N({FOI!wXCniC|bqycIXrTw)E#;
zXom}Z*&i6n_c!)2Zn)U~B?6OJOuAeA32WwCoj~%cwH5{xyU|nY-|NPqNz{F5z4d`8
zb!zDrl6Tip)k-iqzVZ}VNIPF7e)ep4U;TR&?M(kuN7Xv<#-}uNqc-59i$SXWr11w;
zjw=cZQZvWH_Dk{v${dspx^Uyhs}`*d%}ZlUEL<9J+TQ<$QMb&^+ff@+8@VmIF7(&G
zFESC1Q%I<MwqJtZkcxt$rn@ToilX8{Nh~9DtjnUJcSlA?lbz=6$fNx~KFGg)`<CtS
z;i{mM=D#iY1=vfn9cQ_&=dV9-@Swr)uYv%6OSYp&hyjerONV0_xn#G*_TSKtbf-DW
z2CRkF<AXgLB@>urH?Cj4Lx1bmt#(5n*Nu;q95onh&a!Ls;7u}V5e~Iw5OGpHcI=q&
zV2o|w+oB}w@SQt$+?*b1KmJ1c(SrxyFoRhWp7`X>noR(3tncgNfop2&>PqyJXV^=o
zM?1N1{XT~)In2YOaNxiJHdfZI8ogGRY=@<lF~5v~!&+iuV=G)K=rdDfg7_}t7AOFM
z81e)%>*YV#%J77pjm@h@A9%wjATV$~WdDH!1t!X7W^aipxlz200T6XCXED3Qu`W^V
z@cVje>mQ0&+1S{8LP8S1e^-*c<lrE9bcwExX)QI!Zzf`Zujq2>jd;^2V40kcUOcPT
zQTF*BzoDbklSd^|{rTDcRk8&-$6utYQM(s>a^Fl$C-3^@HOcF`dDqMM_;|`jk=ecz
z7+4I-u|nJxUteD#VF`2~X%=}mlC(;**NtT5os5heaW$_`-(4G<l2Y60W6*TW_y=EU
zsE9_9CzB#p3sBR_wYQ1aCppsZ7siJ%dsK;<B)uvwhbdFs)ZS0`Hwl#;K6+FR_=zE9
zup#+8DrkU^eM;fuT@jBTZ^pOvx+^0CM4YpMcN1eNi3P&WUW4CDHvM@92<i|Eiz^Kc
z@g6g=E7r!H!gdNHTkB_}rG2RC_Ng}<u;5P)K?~)#8;cS5WK1C1;i&SF=jvHn9m#d-
zRUhxJOV%o)Y$pBDuC)GYR}*WeuUn7&E~eu#^hd1*`io}}uwp%M;65)YtqhyaW#Rie
z76R?L2)D#$ozDJlq^EaLTRRd>y3muUoR060*EIj@HUHKEe;%|ahQ0LXk3DaEQzgX^
zoxa3UWN>-IH$-R!%SHpJ*$fju7{;WvksBY!=4Jc2r4x2+-5NeKV|O({;p~4lbk?QB
zzaaSExfDld=f9VOlA=kgd6(>4%SG+k3l`#?vMmxmQUsPpZ9gb$vyz9yFHW)KuexCM
zd9labdFS|24N?_Z-i!2i@_t^Bl6r*o4Lag5a6-3i_sL*c$xBzSzUZ^c`1R{ol3AO0
zxiFX&TGPA6emZ`On2Emn{gVHz1fkPR|KMhG&n<yx__5#I`cc*R9cPkydU}{8v3xN}
z=H^6wFDNX0jdd$JKUX8_MZj{<0#?9s6o%UBSb5u3L|e_ZT&`MOv%w9rQ40Ld3z-;b
zlJlaIwvLWnWOC@4g#JYhhvECg;zJj_fB$~>6M=zmz%vAqIx8mD^>H0jb;;43_$>R$
z9uMB;Z>Ud#w#lK#*#Sz?bL6q=!9HW|-CG?jXnP5TGmyuq5>(GoHr#4%%B&zie=0Mu
z<82XR6=>s?3m3vbe@bo~pBA(h6T3%!L@Dgkr!y}~bwVx2uXv7jmK*&3{EVPmhKBLj
zOqVZQ_?8gc>_To^MppDu7jOek<y-`r1In>63gk0;iM6+F`*wlVCUb|59`!4}Q3-}|
zKr$gA0UiF5wDe=<*qE5l?{#D`aegCnO@mI+V`CQJjgplQw(g%B2=wy$#hZ|prUXi%
z{O-m>0IIOb7U!1j`5zh@k`07D(rY->M1UiJe?9W>@MSJ2DjF?Z>ZIfq%P5k*qM`z@
z`FUN6W}a)eob!zL8Bx&;-@1g<=GWjck_3~&PVASY=QF*QT2lMt$8JvlN(Qj%nV~!?
zqOPKENPzYWPma=j?~Z3Ql7CO!K2o;uA60JiuH#~0R}3j`Zf*txKR)nV_4!|tmlr5K
z2>t==ehGB9GchoccA0WG$~sa5kUV;{k(-C-i+=L!cke1qgxT5IQS2F3avBv$5mng6
zCau#p%-p&t&8&^fdBK5b5g@T_hYodfZCQeUU5=0QF^q46m@ePv&)GmMFiI?B5SEb)
zXG|`SNprlUH;Z1!*B4(te}0<xvujKc9HnM%dKAU9dau#{(i9V6yasw+?;E1Z1Flq|
zFLUdBr3F8+S*dWltcl@&YM$lc2WyB4>0<aBZLl&kGf!<~2hV=<<_$-CuT=(M0?_{(
zj+XnsEcmtGD$NZH;v-L>y<l)aNqc2Qgao(USQq7ZSKkkz;RXY8ck9Qy4R5v9nQ)Cg
z>?H_67q8>B<;E}?tepM5|BClPx!O0HdB3ePET@Jv`@g>xJ#^?0*XHG7*jxWsF>H5l
zQm?73d<lL^ATlPA5N^|D>BfQKAFsJ)`FEXMLo1i=F>zUch_GqlM)mK`;x=hqU675I
z2L^L|$v$)GD)Dn+Iscb+uuhc)Fb;U5w=(iPouJJd;hC=ej&s9Br|X^Slxv#}d0XR_
z-#q)XGz4uDNh7^>&pqG=NCP`|?TT&6ur6u8MR1Txztdj5;f}k~*)Cko@M8K%PyBS3
z<Nv#5@4l;R&scXA6d7-3%$XeH!pMYT;g27xf8nChz@i%Mw1(GL;w(@YC>!T}YZRTb
zzf@*7%_Vy>gZInr7k_*KiWc=z_4ru%=#j#ubt~e3h5`e2%#m*_u9oU74^=#K=FY@m
z3mMdeoHQXHlRUrZel+`=|1qu0YHCD>Y%(iiup7*p+yUZ?W+F7zde?5c-7ndCP(5q7
zke=X72g&bs%k2gf{ue*#-@G~WBDLO-QmJswCTcK~3p(%XO&E>Z4K!RQo-m0dqLzm0
zWq;|3lU4L9P^6#H5B;}N7Y5O+Ik(Gqc_o@GU&Fk(jEo15;rG^LqhI+C0V1WOrTezf
z4o7EZs<L=X9#%~BVNOm-L9LSlyz_bmCSD$Jvb40+Y4i{Whk}z+_VXiGUjh+z%}=&W
z22RpwIBb3M*q|<Pe6=+H;ZPAQ=O#7-l`RJ^Ty+?(5#G6Tr<9zWBFZoGAz|SV-X-k0
zdYPQfi$gfmDGg{(Hv0ZX6TD*K)wgfojN2`tL$Mt^DB<M;2?Tr0zH%+)?(gjm$4{IX
z|LMl0k2@FAo$t`DcJU(KT5+BHN?&qxB8P#xy1L(&Tink5RZesSEhnA2_J6<JU5d6&
zPU5}!ZBI>YE!*+qm!RMP+j}tspA8L}0v|+1Ma_H_5E9BN(cXMHdqO)+`A;<WIOm<!
za}Ddq^t`gT4Ry;bIM&O{OLo<1Vi>0TweqoyT%5{v-p3{-U9PXM|58%o-DIpNFYnzl
zuXX);lI^IDOaPZ88vbQ*ao63H649Mk|B^!b{|(hmmu3k3ITCgC5U3UWhLei5Wh1>$
z0BuoS^?!c4ubgHYURhb0zH>JLG+gLQNq4X8!S*M}j+*L^AN^J(-4*~3@#m-0n~b@+
zxewv<5^Hz9U|H;-7t$<XF$_X>m%-%*Ol6&It)m|=jNH_4P2707Hsp8Ri#m0CnRQf*
z)lV1%Y*s}ml9!~3ma*F#TJd&a<<|Ps*Hh*E!PJ4KS)i=txltJuJz<cNlnmEgu4Yp`
ztF{v?_*Cd%^+<tn=(m5Zd8_~NQyj~`I(B02H?b|3{_Od@ENs|aD|ybYucsHjH~n+B
z#p~GEhpxoGyKr3p5A3VsOuhuL(9_$i4Ga!Z0s9b5P2D`ZE}$;vVuZ!?h_)ml#X!tB
zB>Cv^<7(8i#94#3e+7S2>B;N<sDfXXt6*J+^2*K2ly7LYaw4}9;Kly#lH6i~gQMA!
zlZ~tfo7quYQQYM|%++M2Hc}IVoH@RPM{+5CVwpe3`oR8x9R0gKBrq^8wZ%zg!-fry
zo;*>|)6?^-YzRD|`vkgG=ZC+8#<`FjlnZFlU&_ntX2yG0br5no%2Z8FjqR6?zZ1*o
zDjrr=)(gOvozuWl<AwAl7Rq(+-W`XCUr<n>*H-8uJgT0o@B3u;$x2Q8n>S;ifAk+p
zEx10cGWl0k4Y`$K;(5xl85K?ZF>N@sLw5B{CHZLCb{Q&MQ<%vKV)}&>4>vXBER2&~
zHEG3-j1smoG7i);GBO$q&i1`8^gXQj7;sUmHTQPm{Y^CKK2{)-l#5VId4YU9Mn*<B
zLKmy#M8@r!pVu7>b+~@d&5b@eIT<fjh^6<KC=wHaye1)LxOHu%ye(XeHmxhjquji_
z);Ik$7H8_j6%?L#PD9kya~P|TSkXIEd@z(YwaF@QxL!AOmtvyoF$kXnvFGg}zp0Pk
z9ITLF;{KGE=g}GJ+<eo>h(c-dV2I79v|H_u$|r^tJ3$%9R#2OG2<eRDG5ydop4|R#
zc(S7`I4;mQUD70L{JAg`D6(EAvtIo>ZRjCDKKM%zt0?Igm3je3iE=3|eOX5*s&3*`
z=Oj^-|AdJE!ZKK>3aA;&2z0F+5NPzY(AYQ8nPNGom+9&J^W$V^f(!${u1d+n*g3q5
zUtw~kyp&Z`2w@S8gPbXU>C#+C>i-~A4HoagVp8oAQC{RMPz*lI#+KPYRBd+xFq{gN
zSd!HKS+$`yJ%(bDtY5<hf`058BRazvz3O_OT6HX#y3v84MSUarCz2yUjr~^kU#gli
zQSc)n1^1RaFT8h}Yh$vGWiZYfS7`tJ`<&OUTer9XsEl)X{te6a#yif}d~g(48jbTG
zJ){uoGvQll&O$Ks@$q?e^}SB_j}PV{q;r9|OCGex&R{q2TlV;XP_{&JX;fBKaa#|l
zf`>}S#>RTR!XC`&WLn0#gnGG`TwQ&cT{-F8atGjdn0f;~7O!C7+1T|=g7G3cAa<R)
zeSflSV>rnDGFrammSNmrpr`k&_(snb7rnz7%xD?+-Q4U$*1fj>m)5|srU7$G+5<C)
zD1JG-|0cCR;hx)ppIOQR{HyGq?$ZH@RbEdo_TBsUQ0fn6G$j(Ilv8<*MfW8_NC2y4
z7{QYI7j52F#^{(;pArUXfKI`1XLoiF-M`87{J#VJ{Gws`Q8rrlH$=j3D-97+(JFj=
z5v}UrXX==Nrmgh!ag~*q*j3XmY@*?SsIQ!RZ3z&Lty#5Ta*W7DgbiBhuiJb<w@Dcg
z8>R2*(=8B1KcfL%f6MxZbE$L$d_ujKyjrUFaby4Us%{8JO1Y!wy{fv$f+7yvs>Okn
z#>B^eHAwI;>*@IqJ~wV@`gQ9Ap|X203Z;uO@W<K9Wll60@WWoT>ihn&!0hg_K<E7F
z57EtEn&tkzdk*y*CbmA<kmM>QSF3moZ~gJnsZNu|=9<jJf)F8lV7IoNncY%qGA#0*
z(Z=tUjs$RO-YHKi>uLTk9Dj$GxS2D8152H(Ww2U3@91bFxuP;SDf>&eg;WnMUw5zN
ze`_16OQK=R;NKhIU#;!P|4D00yp6e$m)}m92_%y6ADyrD;lYrh_=DTg(Fi}GIF)w<
zO56oW$%l13fu+FmJ9ijC!0<scDfT`{$mp;g(*}%|AnwO9qIu2j;=D%kApIaI$^U8~
zOh|>eWQn2%Lmt={XTas^f)wd-^P)qYl&J)VT(B{8Ro;BhvQJgz@B;-C@agZF=<1(<
zut;iQav9dv_{hLVa*-9Wu^noyaAxB5a$|B*f}se4+mNK^t!ocez1eBj=m0Y_D?h(7
z)F?G61Cz3#lOY*q%*8)VAr+m)*v+jUl1FK%sb7bOpC)K^j+0|<Cgc#G7cXK__T=i}
zCO{x@rDS+5WIti!+l`G{(dH@A+@HdF_%M)`A9e|3r4XkXy(Oaq1R8pjZcEDiAEHWV
z=hgr2bg}N}bd8J<TVTIO!}f%nTO01NGCA*mHC3iQT(N_5?%iSS(DXMX($GWChX(I~
z>e?V42v;pY!rw*CS(vF)e{xNKyJ@g<&G=NW#-cv0t7dg=Egk&9kbeAM;rnu71Jw_=
z3Stryc>sEEssg{A*Yi87F)*}<YPO$?tD5!b(ZP{v!pb0b8reF+brlEkzNn&NfENQh
z&Z8BwOVZ7;9qrhK-{Wa^7?o+ey^e9{_c4Imw$XACUgMm3t2W-8X%EDE%u3i(X@Ty8
zpSKSeG4Vo0_3%@-E2ceu<H0bjV7w%)q@-jaG(MsB^!}8_$K}GaUx_w&4Em#7NI#m2
zZB0TJbn)u-R8+hn&I`5?$;sT;>;;GOx2rn~BpTam^k2}>7_1>MMIn3Yk56aITMk1?
z>g2Lv8rwyr5ONh?&Ck#(3ZO=Z*!9Gcvxvk(h(?lgllBTbQP34?cIDsWH!}=6q5_R8
zi41~uvu$*q#dRP(?|MT3CBG))I$(edpN{iq&)!G(BaHN9p>NakkZ}Inw63nMW|o8q
z{FiW?^@L*6rm8q{_G>hGqFtzQl$1M7oB#wSR6#g6H6S}jC5Z_Tv~KnBBNV59dfu-o
z+vOxBhXr;L>NC(?0{nB<6DO*A2SVZ!)G`!w-Y?dNIwp%^c#4fse9UiS!R(27Tf09|
z9BtLbm=CrMxo`Us#4w_u!!a@#ysx)_Vjt!#GgH}n+kl3FApxz;R%jr-mm~P3xi~;z
zI_?9DY!EG{Cyf3tH;!8hBxHd>Q4Z!MhM?_Mxufl7uzx>h+M4T9qyr%svK%BSNwQC5
z7N+sa$&)9)6c<;VKbrL_V<0`Q(e_V?J9KfblTtp{mO`0d&)m8HTXsK2oBLhhyQ)y)
zfJZW;iBC$#MWX72ZECjbWrsS^{JzynZsMeAtBbe?T_ixDuaA#S<oFGvClhlC&nh|~
zj0le^r5XnVuCWv^+EHiMjtnKs-Y1VFiFD{M^kl+rAc_D7M_C;Eyb(D*z8W6+_(Y@0
zte~83cbCSpu6~4E1b}||>ebl4IqL%xF|gK|2}2V~C7p<qgI}eCBv|K_E54l#`u0pS
z0*ip&msM1HPY}%=jndxfzBTlhdczcBiXNwh(a_$Ug<kZ`%1GIg$}5;!e%p~(U~qz`
zgW$nieJ2wsoP~bpD>s)^`+->bu!*iGW^IMB@$u4xSg)oQ41F<uhXbJ}w$RzHQx2?X
zv3m%)XQI#i_vft%%E@1P{SDM;MtUrFlRNGF)po5qAv+-If0mMz`y+Az6t9Gq*Es0y
zt#+w4Z#m)aTH*e>n^R*|avs2r#Z!$f3p&`0nR6p0>ITQgFt0qfYd?1#@m$Afllwi#
zIj3d($Xr5u#d9(_nVnxCDnZ7fW*U+NC-Aet?oJc?SsokM_Kz{-T^UyWJy!g6wu|H<
z?Asd-y(%rovlr(F=@;k97Y!Xc1zL_R^tUXOj%EiP({ep#)WFpy&@%l*x70uJ)wJ@e
zBF@cPjVVUNUcNq8B{J`A)){O~2Y+kGenB_Xu{LeAOuz%OK!vV4w!Ao$#AEOw+fYro
zkT|H;%&~?Y^BLy)?h~j;<e9;yjJl^cxB%4~sEurm8&gVc;5Z4{Ce3HvTue2Y8v2Q4
zd*U%T7~Np@tg)L_&Wt|~z&;OA$M%bew49TX;bwFkyC|ou+rKrYpKR=wlH&$-vk=#R
z^Ho&Tt%}h}*w(9mc3Q|4H3uh@c9~@5Pqa5-*6QrMvfgt1uIc4dFCXX3;9tAIR#-e%
zmwm^;9UA`7$Hoezay+osw2*LdqG=s444q&gt7TZ(TE;XxPO6bfWw>OWKHNPl-HDlB
z<2^??kd`s(!$tK9Vwz4k4c%q32}w;!p=+5c<b7N&vY1&V*pRK-lwuTUhI|zL`R7ND
zK~uSo=m>p=^&k%_fDZG41Jm(2IV4%#q9oq}jbP%!+t!Ip-5#E8S#0iAa&By#CDsP8
zy`AOj4DT|_=A7P&h6a6y;Q|_h6%mZ8qeF*0scmllUf0EP+`d*(S+T6nieW8(j;6z|
zSB6GL{kPQXpvR>LmP12d^}Hz*ztHwATvWKX=BoWzKG}KR04Q&l>eyTs<muC6Cmj>C
zOq{jqC+4Sfuv|jSY#Kcs`8Ty%v`fg`E@J?hbC{^tRihi7-PF38u6H(0QLZpI>!fT{
zPVKC}C@KgOKxERjk1MmVLK?CiGs+LSq`#93#M|a<GMy}J*i9^Hea3~__i1+Qo{3$3
z{--PxQ3-qw$@_$cl9AAmO-)7gfcRY^6a*R}hxCm`YGuVDv<e`)b6#I{%-zN>Lc?$A
z<+`98HVO;EvU?5*q!rPV>HK7JI(xdeXN`V;MfDA8_p{qsq=&AO%Nio$h@b-jP6!1D
zrh7Cd@YY_8dF=gLYh8mARw>56lh<1eq%8E+B{S+M7Un+op3UWZj#ZLteUQi?RH9Iz
zwY<t0%vOP)sm@T4*jL3OEUXSr7h=hjsGb)YZD4**O=W+?d%?K`-Jb^Ro;(Y+vFraI
zg?XMB>vo?)+M$J8du8O_DF#8C3!@#SRS}-TuLA<;kfQj;ib2oc>}#q?-bLmyZ9PR;
z*Rs)71~Rn+T|FPjlYf>T0V345<rE?x1S(?Sw>am=p;no0*=v_n{{5{MH?}<mldx)W
zadEoo&pQW=KHb~EhGuGIm7)-@6rP_ihIUlwz3}x!`OTTJZiw~Y4wExq?iF>lX%F`I
zkD*bwIgL6>q<zr7U-7m$R2hVF8`Q4;x}Swb9NV|{m83TpnjTd8&p%B+|BE!n{5Rt=
zb7Z51w63MGp<y)|0P%Z--Hdwe_1ijwIYA{=7Ie)?APB*~+iOp)Hksjp;SAYB#-B4>
zai9x0`IM<g*1U(dz$h#d16)k{>_CQZKtMypaqICPw+rVM3TxCDdS@$rk8!sB&eqCZ
zER|VDI#opVaK)<pBC)|+f8>d--}*n#6YVhFcyP%?=(Y|x;8#+!*Apfzs=pKpQivdI
z$Q{(w9pl>3Ihk-JqYazbJ#+ZaYpgX)<PZ((Z{_bC+?h+jBhxk~*;)FMwUt;>hvg@&
z+A+kO+Zf_5l~LiY&N^zsDPqd}7{~5X)o8r}VH0r#IV%8yERk(lxlgsTdcTW#XIU&1
z1bpaMBxk|QZR}rAUVCTRA$5n}W7+rp7|b#d#n4UL#?B*0VNRDx^^LNn7E2>P`}H_4
zp@X|I+MPp>J7}}Y;ujh$AX>CwIUFp((F>C);Bn9h%SVB`E$H}qjBUXLAP8{Vj@*z5
z=Dz~Ps)<d@q<RtDgvdXvrDBZ#{P~;^&|zi;Rw}8LO(y{QQ0w@Wgq*Frc6Gntp*S@e
z1pm4&QD)gZWrZ5+RsG{fpYH$|AJoja_WJ)YjswMquUS~yW`CLKY;TwJf{0TVNJNxK
z4y^}M@gZ&R?~V?A7>lslu0ZNyCK@&f2u$*ZG_wfZ7U&f>v81GAWfee_6ot(@zCNq!
z?z0M^bR(=8<noAAr>15&9UUD}gvNX8CetYUORAdxV<L!(idxQ$=|N$W^wJ$L(rEAQ
zbNFwIw(Vs3|FQ;?GsH-{)-KUTsD6mmeCtnbNkqa#3E4{kQ9EQS{_ZHCG47<Mjyh@H
z(e=C78-pWQRI~G<BiW&0;8C}J2!4$qENE>|%Y|%(psqEf7^&n6sIRQ~*)x*Fi){@L
z)#AIb_Lm*~O&N*=lt!F2$zl2yN+^+QWcX55KP^1fx{3lOq4QK8QxZ%Iz&Tc4UPV|R
zb%>S_Ln1_GAD@`8Fc)5;PLeEE5leFB5a=Nc4?+rnbL%zM9=rl*p0Gl=AaT%bn3w&#
z{}5t%1A<fU2C=^|wb!fKS_ROG*vQDUe~YND7SvT7nfv8_)W_ey3#>eLqH`0v<iE!~
z#^3M@Xk5JbEM5U&%$I`lxe&!z5u}6<==BP*s^%bK-k)LZk{8R-M1b-g?SvGu-e7mn
zNZYsjDvqH{jD8Z`wscX+Xi;jQWup+x<34=2YMdHacsd91v?WMxM2~nw=b|Fj$bSi0
zHyv@m)HXh~I9Lwr6!w%=Kpk)PFa@z;l5`Mf6<x^UzEJx0Yc)Dg3=%&2<sm{L+<N?R
zEj3_&UFP;GMDo<dfT0f7TZA%_$8c`KK+q)NDCZEGp>D4QmR|W{US1wI(gF~B&yP?l
zt%xUR6@?*^oiH(A^2~Jb=5*I*YnM<Xo=qq&1U2zHjTG)og{RZ2uV23kH))D5a^3j6
z1%VM;A%OUH^A=<|2@@U!5H#T;I5R=8F@1l;TD*Y6>)S_XOHM3jR0$KgZsG1)ic1i9
zJ3oMvC8}izmU}V?L<tO}MMxM`R95~vq132wR1%{?rp~WMfBb4l2pw=Q><bIn``AN3
z_OIj?&uqhmYmmWf^bz#2YrVaWxi~Jg*JQ58B(sqxDws>p3xTjOcrErGwyDNVuc2(B
zl3{7bBqde%eoq-^DAjq7rrvkxymeunLR`)0Q|9;eeYVCtf#VTO^XH%{yr1}uhzJ*A
zR`Y|43ntO+R9qnvEqSaPVU+k(byuG#7mOg%1?{)GJ)P$wn7a{WB=X1#Wc36B0Kr_i
zh{DjBhA{2r##EC!?BAHsg|TQZ=9zem$EZ2;syB;F<<}P{e4jnri&)uPts;HwSUO>c
zG{k!?A-frrRsBond(NTu8VRYmn3!{3V@!*~Ov-Ps-`6P%iajJBb#rlHo{01Rh?qfa
z7Ue8HZvuc6=A10#;aXUbKF^+o$HyO$?70vULX<togVY?VF%Z@f{3-3U6U5Y>Qp7eE
zM<=L2W|0f2qjJv;^Bx-W9@dS8N%j+c6+}KrGjHwuPb%kc00n~6r7uoM5c)G*FXCtc
z^o4FPv=A)~=XpzQUEN*?>OOft3CDhTsv&gO37weiY;~1XV_#+>P!G=w&c#5|oX|<8
zJN_$3E=&&6V@41jT$$S-)(jgqqGatYj){rkgjDVEGtZ443+Xtc^PE{5dJX|;Azcif
zG%of!P>337JU8SfGG?c7L^bW{+7A9f-f^h(+#DL&hDj+Yc1DXR6p!I$j_HRWxKT)`
z_&){vCk^m3xIZGh;2mgmx44PAQChOPlSjr}36FrF8G_~5Ngf14S)yE-011#+_-OWb
z`4O5$QcI=@!8#5dDt>wc;><_yj^!o!Tw~U31SHpk;A4k#@WQ(=W-MpdCF;OXm}fsZ
zz|FjCc5-lVcq*N}9P?*M%e%zAi1P>$A3oHlwLe#R48~~nVeWRBgmZ$4CIwMZV^g{x
zp{eSsG$u4XeE1L&=?t-4i8MP={hg*uG?2%*1e@P0Th&4kh!Y17JhSKfO=iE+cO9*h
zYOG$<uU7J-YGH)yh4jWvn>N`n!WQ`b`!_kM><<k5qE^M+ST02HYMv{FH-hAte<IT*
z*MRh1lH;ruarR<%q93b&g^3uJ&(wJCDk{|eQ~M>JR6}S>Ol`J1?=|;?SU~Xi8Y73z
z8w31}dii-k>%OPXr%fpr)-8M){U%D)T|lEzy*TT<D2MjCB3i-t@Oim%w>^yHO6ZVd
za%f;J(`D9|FJ26HhCAT(im;lY`&@z-hFK6^oHGaV>mq_@fat_24CHksHJV=vFNa;v
z!_=Xt*chgQP;LydNa5sMLCZm+MNp5P*SMOHd5|#au2IyeDfFP%<HY5xCW-*@vZ*=q
z36S==B}W9D#(A5Ki1aXQOLzp13)7uaGBUo*P0ow+UattM?898{lP@y&lWNuT{y18V
z)cMcdEsOIl<AB6Ak<*7o+NKxWh~W18cThSmK=GzqCG12t5?_u5w#<pcZ$~TxP$Yf2
zBM_=YG;&gkXy16BD};<R@Z%6N>PSHEJgo4|pOju;$aDC_33-r~)<hu;d+ZU)Q!j{h
zwVcz)cH)@I@ba+D7v^jcu|X(HA0|K1H<<Mx4cdVmCL1^LH#v-!&iFY`(+DljjRLu^
zS4t#bcL>HwkwK@)jHR&j&$)#!<u=)iyM~<2t5%S{4U1mSB@G{|5ShcfRN!qbix{je
zruHSr#!9ky7k4H}E+>3L8Vf&K$_kN)e6P#3xu6Mdr*ZCP2F`0PjJChGqCLTHw(|d_
zG;?caI4X*TU}wEW=dw;_6UZLP%JI3;aw3q_#I{(+9TE-ZsI&_582u?E2wJ$DgR{yi
zNe-4UV15`+TIQ@xHLQR6{5dsY9?jfpI19{=vN`$^bF(LAx<_DLkKC+s=sU*%GB>;Z
zCD)KAWH^0?@Kb=aF^%oIf-TOb>ma}^x~<L$LLxD?$g=%kP2Rr(ze033Qy$_T5=n9U
zfe#Wy6O6?=v#qUIN!Y-rG!}z!Eyzty*!oFpu<CO9g)THGev2Za2)Bi8R*X5XHoa3+
z7A$~x{`{BsO0P@WN2G19LG1%@KPxUi!_caBen@=gxQn^vo5DIC7b3nfG{0h|cj~zR
zn*df)SQV8zqoB=LOOeNo@tzt2o~o(_L46l$WT14zI>)&RpQlg1Y1-r4K!HnX;V-47
zH8>iTfLt9AKpc9cx%59$g*n>)BY>Y&R2ho;hnp<a{{25vH~~W8u-lE`rF~KO(e9xg
zB<q$lN>=_a)Mc{5J!zd?#rXK>-7Ul!fH~)LL+2G;dNV_-^SUj1Is#1yXR~es{QEG1
z$f%Qwa6xtLk#9!C@DIRA1bK+G`@&R_2pdcz2*C2EPv1s*Y%FWgQO?rR64jCJgwA7R
zfC!un*dYq!8FKylb$*{tw5vxC9}e5{mTGwlMS(NEMghZ7g~=lUbclhXx!FA-ZtZ_3
zmhA^V5#J`dyPt;BRTT0XdXvm>MGeO*D1T$sIQ=7rvnfPsXLlY0U+dt`KZw+wyGu#X
zQ_la$7ZQFj6eX-#;*<&G%1q{1!~s#-)j!fp5*+*Qr>u}=6Iv0bUGluxkf+2r6@PoX
zDk5gEO|*}{NP=1@dC9;a4sjiawWhfDbG70BW9<GJJ=Erz9jv6;xwBY58S=LjnlBCx
z4ZT)G2-<`=CP!L-iCCmr9k5R^j5>U<7cz;iI)n;{NE02Mi^kuBiIQGebK@l%3zuNY
zEIH88A$C%gepSz>D|sAWFw2n&`mL<Lo50i$8T&(S_Iic<B4N@=jDP+o>_sAG^h0P)
zuI%i)HLr;@vS}6&B#}sAX3p>Qe1_Vu%2CHn9$Y`RjzG6v+&D)y;;^?t<sXEz#=!AW
znb_I0v2Wi#qgk7F`;VZby643RamktErf>f`GWC=>GCCSFCxwPJ`sE-u_Z8r&ket14
zR7}rHbw)Su>+S75;CQm80XZ-(r#Tzquo*~Kh=3zuQ=?&owj1i{4e#2lzsQSFJDZ^3
z5A(9+EcZk}gYJ(sGt5sF5GpocG?50ndy3?;=$U2j>HfN5cHM&J9Zlx2&mAOPu~Wr@
z8+Y^h?+ZJ(Z|kpnm-fuCK4>^}RzCl@FNdeyS9-T3&aQoD_4SqMZXG(aM!<$5Pg?dx
z%<iG%0S6iMXw4=Dshs=VZttQ^eCgCouFLdsylT*&T-W?w*LhOi{lNqNJ5rHn#Kcw$
z3JGncp>czi)0>r$cqumQGTSl3@0|Gs1>q(w**4fGW0h}`lkcAicTwdi+V3fN2N-q^
z3r(h@&KYM7KR=4jpliw9yYHp35eW4+{p4RRZORGMq_7LD7Zen9Oy?fhLF;n3?)HH6
zgYxlaI<EC0At8KLeYD{0`R0-e3e*sze+~|MA{_D)wZhcgJP*m<pPij<P+8kxDt^Mj
zgZwdQ4x58z-9nvaHuTn!-GYM|aB}tOix&^UkUo`^Y@#`;E_UnI@jG|#2KpS_w{PVM
zov&M3YGYG@Q!<gQ8yX)kIGQteCpY($**xl9eqrHt044tuy0U>iAM5LPL5X?b=_vuO
zb<A$;W{|LB0L8rr_#=iBF1bL-LthS)b3c9z&#Sz`<~uYwS%h7GNR~Jx+RT0H+`0AY
zK)j^XRs7l6*;5Fu-Giq7aB_9e;F>NA{&?l&jrcyF*{{{R85qVpwl{71y7~#5n3z~$
zHnTLX1INLG>#)<GN=0_H<cJX2ZA#Y!+z9&#L(qhEXiul@?D&18B0pMyAs{951d3Xh
zOnF(;rI4TKYD-ywvO?%R7cO6B7JlLF<%M!Z{eYK8!?u0ru^b?qy@w8M0C7Hd{(K%{
zJ$t>21K7`7S@FOX!{=MJY;l1_e+_Hikd)sx$M}OXS()PS;W!qPU=05zR{%>B7hQm{
zfq^>$Ip-oTon!W5X%eos-k{0KBoFsvx3B|kb91xImxzj+`3?e~5bSyy80d~_`lvAl
zka07kAT7zX>)T$$;V3}>+diHV)W9i{rh^=+X)b_lzW^5tv5#an{!SVbQd3oZjIyy&
zKe?ebxese|>y91OH=M-9*Fr1KcjMPSz6-T&Y$X?fsi>(bCo%VTM<3Q1Sf7~iJ0&J&
zWYzv<r?fxkiWa9?c92L;oOQ{XMu|R)<%a0Bi;vF^oadvJIeh&1He+LBnJ6Tl_cJrE
z2CU2n^$Dx$&c9Xy4WDJLNzdqE4vs?Dw2!`hy8r>72K}V;c{`%V{+yaCv!^@g5j6Q&
zQgS|%lli5+Cpg4MrpMbJ=C{(S6h^H|&A4%*S~pc}-?0GCL$59!nwy`e=s4_M+`y2z
zi(7vO$od^fCPy@~cVqr{bix|ZMEgp!=-$SmmVOU*;T{}bqj1AI>=ORf+DZ&Oh|g@L
zj*bp3pXnYn4R`!r(#cY&d77Za;$&^PV18}WY<Ktb-UCnQM~8;K^@_6}JGQkdTCNCP
z<HL#W#3GLB2M=P-qOK|7ux)b^V0{|`_+qC{k#=lcLkiQ#agwP8aJvu7_V=xmI9%${
z@w2^M+d>_S5P2C-93tC?6$?UmEWHmYV2b7o+zQW;30=K<buP9N>07iM(}3wdeFaO)
zakVBPEn{O2B(V4TO1%Yn%wj4=FtkQx0`6%iCAR9mbh(;!x73}cwc}MkY{M-u9QN3)
zHA%(1P12oeUvlT^NY`H1`}aR0zR;Dm;$_ALm1A4CCVy^jW<=w$tFjyKxsO^xee}VR
zBS-jOZ9aYaG@nJ+7J?+gfr*o$aVY$<&sXY$_ruROtY^O~cXV{D-?;JD6K1^gKJO%!
zr&@grACc?3sHC($LBU{%H_hFB)5Jj2CP=Z98QJgNZ9^ih^!Xro{)5MlcPvs;QtHs?
zTa;g;(H9e|-X|a+uzKCPUdNfqK~G`FnXs6c_4>(lq=uStB{ek$3w|~4?s2_UsU`sp
z-@oTJG|)YN{+w`iGg3?I>S!Q>5v33<0WpdSO|A1=uqp7T>9BOSa_RT^yC_#_X=&GR
z_Q*~T;S*|7D=MYa{EQ|*!mmusqb82>m0I0@{_NRptbx7AWeGeOkaSpuCDUN|`RQH^
zIUm4g?FZE-up&}UCP0S6Ve?g*nwoZ1sU|H?c$;lj5jCsbPh$%$?St0VYs}2ddw6)L
zao#HrazH~6`ThG7*mql)m^?9r>tkINe2z0*)*MR%HA6Hy7syU&t5~%W(y-Sj2bx&e
z14BbSH*9AKLkk%i9zK2L%1*2zGdP~4+<~Tytvh$#&&(9$<Kt@u!=^#@>ppzEp2)WD
z?hPb#5M&05Q2WQ5y~v?dB%Do|g6#GoqAO9GW&NF8eLT|OuEsVU9nN-xGZ7WJKYnCZ
z%|J9t=5v_h%*@IfUproVlMA(!VW#lwUxn!1iY=bz#uD$bqJeW7nj)1YUTGN^Y{F4u
z6tExZmYd{+#&;0Gh`U<emMH_5seesBde9&8Af^q+o>vfE02xDKw-R=%sf7jCw1Z`T
z1NR)pMg${14pd)e+X)1}&cwuI;_1i1gjq&U(!PEAIHOq`dv}#o<fW<E+1@oMDE$xI
zKLB}X;#lVc508S8_L8?abTx2!pZ-OayBr(uuSCJuv*xGJOIAj0IURZFCw^pTWaJK+
ze6%c7q~-NHi+dO!v3`5_XgE}JfyrR!pYnh4;wM(=IY~*q<CL=JVdfF7Jff}QOZ%;<
zsVPny(ba2BQA&u?jI2-FbZ02egPhFF%v3rgHW`Lnl9rK?S5vbS>uL>2HPdD*R!N%8
z@IF#leEenze!uvoBDZNcO&^$<=-*^-Z+}Bu`{5{yv_Hv1d_PC3Q6mqZfWZEvN2y4h
z(2<GP!XAa)Ln6vn%w@L6Od^b!$D3ZVr%$iIySDc9JPHfjb6G*5$2T%8j5IJXfO*Y_
zKDb$<^*pl;1XoU67Akep>m#l`pPwQ@up1{1+L`FpE-YWZD#OmSy)SFEh`o4Y?))8c
z_O@ZZ9ElXs$V-~v!cOx!&GA7C<Ghwja)7I9dh6CFoVIxj#gq7QXmm6W_~OxuRclFU
z^A@c*+5hHd#XhLcZ6?mM^w^b}CMHxWDk_&174xulQ&LhMxVwwuEY_6xb#3hfK|w*L
z6Ma{0Y;0Qbs@DU6bGqu^M^9N>T5>N;wNZ`rH`2f&al`%rxpxIWZkrv<q4A>^usTBc
z#17*%ir>@B_9LdZ;)m1zw?LhUTj_lDzun@z$N*V_EA~if%|)E;W4P<>?XB)Ko}PXr
ze{|>8Mxm`2J2|Vb1iTHSC|At4`gZc`)ipp9Visfsfr@ZSXe^4b>2@ED%XZI)+!mgc
zv_n=_)?dh;2Z4mv?(T<#6Suj!8kQU5*V59T0|S)S*49KDN8m_iL>)16b!#swp|LH9
z%H0MX5{;`#QJTOpsy}P|mR-9Z0t&*3dZ2bLDk|y|Cg|3O-ROVpQCC~~?;X-cYMe`1
z!Xvp|rl5>%6HzTJ;|p&G;^f<q5&cVndn<OM^dE+(AO7ae7D%G{<LPuBYx#o{i~ae<
zEGFNlrb<BGX--nlvP1IO$>r|dRWN%=BrM9Ii3w`I50<^uPK)!_X&*jt2WCSwsK`#E
zmlZ*6@{u|KoJ53?yh~c%Fb&O&S?~v|FGTSJfbHAAU**d4j-D8ybor|Uz>BdBbr^a0
z{fe^UI^!f|_9SJajG_n3>57~#qGDoA3T?)&bjW=$11YKO%&pK*wt<~(Hr{hZ5T`eY
zsyPJGACQ@?$}#x#W8uS?(eL&3d-?d%ipSP5Ic!1O1+<XxPURDx8xj>nD);+)T`CCa
zYcSn7mLd_Pp{C}6f==vm;2&Cki<|E4NDa8UxvhH{5pfamT$+1tlalh$bOVAK9UL4u
zaq>8(Mqf!qCF0eq)f?}>l<5qDn;0ZuO*uR~{2ea1r1tRW=m|_cl*ZHhp80dVG1T?D
zPh2a1El%0}_^F3eDok}`jddi%%Fbp|57fUu2$&RhDVEc+=Q6SJu~=By*$aSjhCgjO
z+SRl_&0+dD@Jm^UkUQ)|1T2_Pr?4U3ynVaX4=%_7M2^;DtHi5k(Gh6|KDqD<VIZ)B
zKM%bekov^7XWz?#FFqV@%38}T0hcJQuFfbMA{cAE!WuaWojTni*RBB&;CparAMZZ7
z4L-#B&6~wgE1YJ!55{ZcFyi?Rc`hqf4dIzBnqX4jZgTxfhc`n6<lNCIi661DvSRP(
zM3cl)z31wB{o|cA1f%de03Q>!BkC<U)9Yq_pgyH6JMOu;xh?2MIL@Sne#c@G5gmOH
zAP7wY`{WIdFk+emRjIWsZ=3^JLgYOC?DC?S#pzlJ^fmO73o0t^I1_vs3mG<IX7<?d
z@JC?QVU*Xl+}o>^lJ$3D6IJ|Xysey22qk_9((ak?3lByy<@pwf$gs-FNlBf-Mu=`Q
z*wZ7evr=LwO1qZEHkQr8ym-t7ggIW43ywJhY^Y@Jn#400+K_v{FB_dlv?Lq{TtULn
zp8ELQL(#Yfp^Vt*q*Jk%ujA1g=kVG9Zg|D9wV%q0i%(y_z7Kbjz$>t4PeoqhJ|qv~
zgk1YE7(H3t5as>34XAN0cr2t#R#Fl(xakjMkU8?@u*{cjbaWddFFgdfKf~gE8gBx^
z0v<(~sQTd!4n4B^N*xPD65#WV<ERy_ung>Ig2k*G&76)JxyeRvFY-Co-oJIZs=8}+
zaqVs^^vT4=yK#IM&Yu#{J9>_b&ci<{e4L9;#?5N<d%(M-lqUln@3xdHiWyFdiK*FV
zSL!Fffn23B0d*Z{?v8RoZAM4Q=g+4A@BuYfkdD9D44#pPLx-G*GfTsCR#jl}?rsvf
z$>#`3pU<*qhgE;WnpUepI!rw9Qj3c98mn+|F|q#2p@&^?3GmR89l8C1rZ{JR22yeJ
z2%GOl=f&9;GdNO8SFdX3x~!l@Ax9H<11l6Lt+h_W+31${7{Z+dHINPBTXFx)ZP;bN
z-9^`4pzu&web^52M$VquNHC3;XWcn*BJv#bHf9!<UpV)gOHdB=zFll3%~|#rah`vn
zrL2r{9p&y^$V&II$uYM<BF>D^dUGKm{Os#{jBg%MPI^FbKPK?$Ic6g}??iTy0p@KR
zZs5R%`+#_7(oA<@ZEx4HbY=PHDYX?%N=tn+eN;A>|2}flT(;MW3JTUBoKzE-0uX}B
z=mJEk5gDqFkf4f3MlmQGq4CYT`L<wb?P&SBH(h0^FtS4n`cI?DtRL3J?GqFf+(J$5
ziY{&T^#S%DE(}i0mfZf^dFRicFK{U#xPtJ{Y&<FeE8_uKVzRfc{AM#wXo+`1b<vue
z8umYF&H^Fj4FtmoIZOJ(=d%#a!yXjn@QX-Ep(cUf-g9vw0cWgoY38Ftn}|(J)FIto
zD&*S-nMj<|Mh3vT2m!gbiSr;<v6h}bkR_)rAwGU+VRmpo8{0<2ett+=C~A^`k(F<l
zn0VqrR9Sji$Qqhu{rYv?0ro7dh?AhYUH1XpmzAX5yLaQVSk$lC+S{kvR4AyZG`>!B
z57@qA$2~YYKar3v0%QSluZY@o4o1q|s%bi&imbaI=?R3E9@uS>&e8uUg?*ArRaF&h
zrI|$=qrqVnx8`@i>}P=_a9+h7hi9^8SAYEYQ6~L@0pH+<&X7Ei|9aN0#7|FNJp^Gx
zX<JW8Svxz1;+@;Sr?4hYF}&jD)925lQbR7Y6~L!@gKNO^P*#vo)=VKB5BCQ_qT}P|
zPf>FH8#l=pHl>JVk`I47V|lxgSKG+YFhB79pS+~^%YXBdk7o45^rBOi%uTg<K6v=>
zBXppBPiC*bp0GMr`(u8U7HDk+SwjRmhg1-@6*rMQ*?l54965q@cwztJ+EQ^}Qg9r^
z0m-a1yKy%94NcrO5)e=uw1I*NIRzW}XItBTS;e>-LIi<BPhc@{5fTYo><^)5A8z06
z+qdo7x@b?JSc!>?|H7f~yC~Yw5w2O(gWUXXZ|8miLSmJcp1zNTWi1TDGuN)|fiAS-
zuLhu>(UbR=<^!n{6SnzDk*HX;ukgZ@mf7Z`Ga~%Klz1pbb{u`mx_$dz+6Ss~Na*Xc
z;RmJFb@AM+bLY;X0<3z2h(x^7+n47{GVyqi8@jstSy|WPjO5VJ&?yIp%nFxE>}gl{
zcl&T`KBxl>=l&U#1x?e(yHNsPMMt+mjxl7msN>we`t&vKEnA;`Ji6h;3I7pp$iu5%
zNb3yAZ2v=x8MWYNfT+E>%;1T5#O)6sYy&gotNufK0yl3<thl+yS4v>a;{}eb@8RX8
z0rJzn`!ZvOuhYtc0^%8_<vJd`V1s_rIG>mG^5x3f+FGc4{k3h=-y0e*=PxDwXed&{
z_s3pllMWSTfSP&+&axTO1i<eA>hFYx_zqsrIQY_@FhC*9=_EA{6@rv_1`Ak!!s7jH
z$v@)|c`4R(;KxZDd;9mio19FxPOYT`_;cyF!-@A>+bPMsEn+laKU5HI>L-`k?&st<
zd$-CsHZYjo=0m%aesO#aG8szQ4kzJIe-=MuL3NRJ2jb;Y(XWENy;mhGdw2@Z#MBGQ
z91@jSEzEDOLXUP})Vx-{#0CQ$UIa-&d!NF_T<XEV+(i%x)76AtG%!jZ5>-rbbG4KK
zTDJBi)+d<v=h9McJIC63w0!_9+RVK(i#E*I(3WqoDWyXMcLC7|LW_n9QXsXrXDy;J
zt?lh=P~9=3kE$d*=ngC_VgcJVab_;e^ma9-9#vISy9gEQKg36!tnzRsNli@+QWkS|
zarkAnXMTR`00LQeY}`RZ1MhePmB<_?0B*qJI-JvVg;!77l5xi{C_4N&%D!P^3Po92
z*)KcPei!kG3IX16u#1U_iR+A|MmgaQJ*frD#En~7&XxJ#!8Qyhp+T1-_2UJ`!U+jc
z0js`TsH+8*=#Im9V97P&;cO-Kjg6`4LbQkPzMc5iz@sT;&&iWu7TEP=0_M?U=moz3
z7k@uQo$TUxXIOt6&w#^<6=m~%cjiI*Diqz%>z!n_fN&|MM5L!H!-8<b6M(+=r6aLQ
zjb{<CufMYgC&QV}crpqF95K<-+OLWSEzQlM58OdA&lC@9JH2JKCScv2)YR0pK16d_
zaq?j!zOfzZ?mawv2><>uFHaPAXlK<)>w%ze8P+Dm?;r&K30UfJhhEnp67U;%O+aR>
z=4UL27fmvUT}?+jWPZZhxdU2YibRD@YL1yOqKw<@CI{H(&<H-EL)<T7w3p_?i&og_
z$Kwbt`76a$Wo5b`#T<&#_KGx)9^(0O5RP|Z8M3M(F&VVb9UZ!ncuJb2QL)d&wV05{
z$!@ht4{MXw$v228CcC*772t_}Ycw=8G+~TG;(Xh*y@G)gg7QyXTkG_rsVqyHHhR7#
zu2xQPHE@7&VQ9~+Y;1P|1L^PFxg#xmp2Zv2Oh`1WhYlS}SJl+qyK?2q*1o>YB*-~<
zM8htW0TKxq<sNnqWO+PdV#~H|D@k2V8L7>U)J%?JTXBMgL;|E0m6fH$qcd*avc=Um
z7}9tn7<%`^hm${=nn3!V;OK4YYhyI6z0c0QLH{S@W&~%>ARSUXj#654<8k1VW}4i7
z<03c(W;jfR66Y@G#Z&#9<0SuUA^!%JhDJtZ{q4auj6KEew~kzWw;BMF&u)wrKVOha
zw2iK^;<7U87E0qO=Y2gPwD1b{=|>>VMhhi1{((5ETDAVTqav>%Rny(9EFrL-abY>Z
z;nk!tz>)-6a#|WeN{N;XE9)^w-5d9ZGp(oE1}c<CVB`P9sv`s=jQnR;*Y_KJ-a1G7
zRJQuy2@N;px8!~NxB~OIe$%Er<W=(1xsyX0@~Q>V4G7l*>&vkIU1YISS4|uZG7yc`
z<k_ZbM&&9N{&XR(IpOc`v^U|QLB|kV6vV^71SJU$d)v!v8=7|;p3kS0ZgB`MV!kZ_
z$N<>_=N8pp*64>T#MN)<3dtp*>NOEn8^vH4pgmQ99U(9E^<{YYpNZh@fkITn)@xON
z)LX2H+^VYWF#c%;Z8*{MzB9(0$6SI;Dh*cUI6DI~5tx(+lD~U$|Nfdp^{kB^;&%Zs
zvurQL?ttNu3*+SC<;$x{z{Uh&%-2Ra!;WN4xsO4!?s%j?K^yAl=avJ%{xj~02x2Qd
zM5ynsEzd&Z4$#G4Z|(5B%gqe@Nd^5T{+^+sOn|X_v+r*Mkdly)h#0Sis;L%tmzKSM
zlc*&W-Dm#(59VhlBch_#f}n`w@Sndm+AWX{r$OzJtTFg0jZqWd(l%Sa6iSMevCy&q
z)@?!9N}M)B*B~A&DS+_7zWWJp-FlH`7rzB7<PfvrUuSopytNwg1a&8JOcaDXFtR8x
zOpk;3)L@=a8axF@)?@OAkN~1r%W+;@xWKvtf1eiL__Zj6wbx4rk^*kDmxF`Sadx5r
zF^alZo5!g}kRzpr)D(k9vmKV3*TsqEUt@sLSr$7so(*JNzfYf?P|0Fc@M3H4QZVd=
z)UBVKUhG}sG0GLW86r<Y`i8oi#)hYF-6iEyK2{$O5q4Cb%efSL4;$ENZdk$rsgNnu
z7zm!vj1}dgQr5|T`R3anuBj&9*mLsm;Z2Y<u`gUQGBUnL)*#1Dh`L~mc|}DMsuBqb
z5xAHKj~;yjKY04|DTxHAfuzF`L~~b={*|{TuxX%fsoVTqlck3xdLgdnd#Z_sw;=tZ
z(W3+BpSR*P^I6=KTCxU}fI!AlEd;@b*P4%T1);`*Jnz`CgEk?$5QsIP|4d0$mHgaW
zL5Klawx#Ww@f<++xJd*dR?V{835#NTC(=KJJ9h?H2rse5+1VLzEG1Tmiz6@iCY6yM
zQ4(AlSM7<b(O+v!pvU@_7#M>{5?+YCOvnj@0@&N@4sV}cH77H3H+UG5UZ;$V*kSHm
zxN_w_PMr_i6&Dq)!@~sfk=A+w(sT{NH-hLA-p8SV0P?QIAqb8g8}F;z_Eh0G;!8fE
zLx&_ck8w@f2gc-?(LyWMFK;z(aTxU&s>@lpGBp~ycw|X;Vcfm@$igD{`6pEDf*cLx
zd&1>Hh3~k#yAviFfnZTWwxCknM~o>>vVntx;}Z&P{>NuUk9X}yfSBNLI~L|TMK&QR
z`U&FUJt7lrGt(V?AHb{IcNoor8mZ^|5U?KJ73D3fy08n>b3X!@SN;#`-aM-3z5W0F
zWF9i4jRs@3%oHh-kg%yFW!M>$p+V+Qs8AV`c_^VMB^fIuG!Pj!sYDq{rb-kQLeArg
zeSi1<eeZMrIcuG@PU~LxHssUi^M1eHuh(@wr%QI~^G`Xzya!c%9@^A9XKnxa^2g~%
z{Y#Dx`abgWiyfA>k3EKd$(YX@+Ejw&Ni(X`P)N}3M8hTI8riR1WAM1nP&c)lwv95I
zG(NCzUl$HrivRipIc>&%a&c^ua&!9efzh!Rd+)c|Y~lP^JMPRttXx7wwl=O;aA{G0
zhr*@c-e&a3!*>)I%zLbp?QwG2m8UbGw)Om$HZ$OK^ng+MMvZm_cLdaXeyAdBo@f5b
zc~9bIof@rdQRI;F!NF{b9Pq4k6J)i(AUP*0rXN4R&xsCgV|aGpf-#e|VpnKA|8gw!
zS-7vq**djq)#Gp;z9~z`@8bYmVTsR<z)6}69_%&s06!y%t=y-H@#lmi&+gGRBmryt
z;1XJ&j*llzJ8SFJ_fexGtj8<C{*-Sz_umVSq+-oMas|%BQ(!#xq0-n>3y43D<6%v^
zdPx-9wZZ2XKEjG*6&@AUoImIUVpkuv0)M}Trfj+O)TXua_}L~z+tnU&zV%y&<%ya7
zEQflMT59(G)o!U={$CXu8M(D*FK&6TJm=ozHhx7RQ&;8ArbJ2NtzIpF-;OB3#1ojY
z+uX5<Z(-`h6%H1G4i+nP*gVIra9BRMJ3$Iklo0OtSHrngW7<7;tuKgh+LXnYdw2Bu
zh{&-4=aGYc>!C`m?5~Xc`0-=8$70;q4LJH$(Th5sT1h|Bg5q8Kwwy$j<SN%{*|KFG
zm{RjvtCd=L%y(^F4TV%U`TsW+%7*VR_w3xMHsu5liIS4if~8CADA)jqxif$J!GY=$
z24?H6muk8*YMGdrARt-s>4Bzw9-b7F$&*_trbE8pNKF;u&7$XfZj&85+mb4tqUrPI
z2^I}~AV+M}v7G-w5|H610y~YdwRKuF5bi8^&fNnp*(bwZDLsC-^frelXCrO0KBj*N
zuM_9YC)G)K7hW;lDbQj53Wo@bCF56wciMC7G$DYLG5IXFlCrY7v1X`-_zHQq;K!l9
z*&lMw^ev*4dHd|jvs@x*?Cb>Q0Uj$4oAl?Od9aq(*&M)1&mWGswfAfTcD9bx;p?|-
zc@X#@azZa5gm~o<k?BGl0|I*i)#QinnQAg)Mo8jIjf#EKJlj9WRys9^;3T+%^)07u
z*|Oy`sh}l=ktdga_Brh1Gc2&DUh7}5Lw9#zhhzUNTL^s^5<Di?r{&apIS<%e1V6Wp
z`hB<a#=o@yv6=R*A6pa$_jL(5oHKMFt)EcIfVSND6pVzaJBYZGVy5V8T|vdY`{~;`
z3(?4u=X`d*k_`Dl(G`5|Ef0d#pMP#Zq^yP1|Gm;B7{bF%M%JlYH~$wzae?bl(g-l$
zX&b5xHq3HkDuNNv$)n87C>hhVi*W4cQkwwSB0xwF>;y!JFjKH%woZitbV!89lT+C1
zDcGN@>f)8+_>I!gF@{d^M9jK1D5!^rn8F2~sq=B}w{u;Pb15kR<%p-eN^3Leah30v
z&tJX>1@?SWXYQMjbheg)g2x!HPrH9v$EGE95<&~Ck%K6qr38UoTJKi3PMsuBu(Px8
z+&B9HTIb@_#P8OEPT4~zWt+~4t;^*jkh_W0Hx?F+>edy`S}Ww@tE$yq$Sjsl7nj~S
z!)Y9WWkp#{01TTQm7;~n$V6T(u=@|xm<jjqHzV=eahwEqCZQ!>N6ze`Io5lo3l5cS
z9z3Sq|4%9dRq8MPhh8T$Fl%y~ltN%&k(Z#(yACFGnnrQqR1XhhLG6VC1IGv8X?bwJ
zlgkQ+$-V>9+GO9?HjEsoNH{a=)}ir{>gVYQ1Y#Nfeg1f`J4#iay({CI6!wk&FPMrE
zOoPLMFIdi%x$|g#&WyYgtdu}q$XRk8PH0&h*ZOCF3_4E(Z<YQFObJdeIF#lv9k;*1
zB}&!a`)*G+7z<B7e*Ad%k9r!7j*N|Xs%P)GY-fs_M%STcz|p7=b}Y0C$f-*Cf&_+2
zRWCwyXn983X6&?aig|-xmPr>4!|p!B_d#r3`|=DbydLHE_7&%iZu9!nO~~Wr`&H@x
zR9t_297lNutXUR@CO$Cw#Hi3DJO;VN#ZL;Z99{oxQqa_+%DKGVE6X=5-@kak`t{fQ
z%Z{#6&Fx*%sWnpi#a~|;cdGH%zkh4`|NZZO?s@&upd7Eo;f{8hujK<rXI!i9?GA%u
zbsV!UV8F7TRIIwBs^Hx?WwQQtw>Ep^U0*F)sMR~kJU5NtN7E_74~Ue-<7=^j(T5uy
zsx?xrT20h7HR`zme4$UDK2Lw^2#o5#P?;@8tFRdivQ)#0=^$AXA)dPVtiRr|dN)&1
zPc#sIJ3Kve&`VG7Pms^&P*~5Ot;{}H{Y~mA)!*>$qq9;q6CQr{PSAjsd=fZwmHDQ6
z`-fNm*zhjZfBQe*)~D~vo6iyxhs3L-EjLstJ&$%|RrMWv@;a+V^)IaEIDIqqOx9HS
z&yTt;?O)m|j~>;1po(jYp_U&F;#Crle&4Wsax;}}3xB@Av)_-`kk8fq=jS?}7MOs-
zgmkRl<4;UZy{YwlA$Q+TBy3!5t&p#3BDT{C8EyBrOI3>H_79GpT3pwex!2?Nsdrnw
z-ZXyI2-778r>gcA`qDHg@nJs=-?$oido|^g)$76cUj0Y~^<>&ZAM~v%t_^7GMA4w#
z<0}fc=+8T^j6P}~+DtxUVehscpW6c%4d{Mp&6*nU;>#S=2XwHIw`*K|uR}(ck^vm}
zxP1HCwQCatZ&J*5ke=*D2mk5NFUM`<y)E(Io;q`{p{vunBcVKoV>(ZFaq&Z95Ys=%
zF+D6#eC?-PTA_wQ<&qv;{y@c%)PhoRWZJ_lDc@7&U8?@P$mcLmZVL!#Flf-A@pV-E
z&9vgy(GZ55IB{ZJ5kT72t5@~*U3SjuDT<Es3u}@WR6P3R;mKD#S_3ILf2{Pqne|k!
zsK^+33w;Pjb_%G#)*U<2i?jcj^S&+D_1$`*rL_uU-xe3c{@>l$PHw=bZ2)=w`uE>3
zzgjyQztEEgmEYUJwUNq^LN%#0VZww<<<C~U9~fU*7`Ysa9tTz1_31ITJ%AO-AjKcS
zwQ9fTmf(W$V`~c>^)y5ehagF<uhY(_fn8{KeRu3o6+#{w6a;YL0ni<sE`WyK1kNeE
zA|ty2My=;4GU>UeXq8|ruHV0Zx0^Mqc7%;6)aZ&1zl^j@-}wQRPx6~sPF@jo5&xm5
z_};TOH^}~BP7V;B7C1FJ6P2PzKa~yiB6WD9K%2J5i(cKI96MM2cvKV}eknI%(=46X
z?<}WJhSd*-Jn-Q;g4%mleQXQKA`VayT~U)Z=Cs6o0azie8uak$u@P4>M$KRN1j7X1
zE1V>RKm#HRw;*lU@Uhpl%gR99xfOw($R;5NtOqOKQRh;x%b#n|DGRm8ySl0v2JnU0
z#7k5MnVIdu_N9#d7)L7^JNMBVDwOBgH<}-v!tECP=vNnsN?P<Y?(=u!`VV3AAF-v?
z5RNB0Gr!#@jV-Kiew5g+$1M~hYZCas`@~ZUx}+KR@KGs)$1ML|o>huYKA0vIdy2qz
zpn2<GA6U`&%J&LQbT*PO<`9$Jq9}V}02&72q}g|ZGo4B)7dJVo=Xl8Z*1Bdj@W*w`
za6y7xOXL-NGS=T(DG^`Y2_$;0n(BkK*&7&GQz3z6$SoH>ff7f-gG8qlz*#@Vn@c|S
zn@^Vkm6amJwMY4<Xt(s^?!dr?3JG*jD7Z3p6kx^{^PiBpo&4<Cv|hb7nATv8aJq`X
z3qz3d2gSK(zJEqLs8oHq>sjOc_ZC}Ef5_|;W8@oKTLCe@0b_P9nuO|QyX}v%`<RKY
zK?b+mk-7j5lvpi=f`^@YeG3x8z<5u;&@L>OhxYz<1huiAe5dM!hZa*U#ZAzy-i`R=
zrcZ9tX856})R?xayt%eTKrQ;Qm0V%Efg#L4Nh=pXYQLdt1Av)i$>E=9YpaF9rI*@0
zjq=r-D?N)ck4|ViF}z7vpkn<$v$h`etWswo3Bn<!*M*gU@|>-W_^^06ciegu@IkF>
z7A5(%g9n??3&wwbzUg^cWjnh4RXPZy;u!|AcaW#?yr=Pxp6hGacemJJx&{q@yZ-&v
z2P}K%4ZDPG=*C*`?sv}B`;eSAX|1z#)KE)X+1hS|HT3rOp3ZHUcyVbDFt>YW=U6Jd
zLPI-3OSL<JhoB8L1Pn^)S;VliGYOfRK4|ePWx<Q$G5WZFF&KTae|h3AxiX5aa03dp
zKC{g?6&<tbYJ~rGIRSM7D6rR!R!*4v>~d?OmJ}iYh1gSkzLIOc_@%R@TVa1g!x?EI
z!}y53NR+Lk80_HC*(+ztahW^Aem9%~zm#z|>IucCU8wP^<9r_P@hxQG0?q&eB!D`}
zzkD3;riw(=C3}!O_qWScBE5L(<0Aisenw3FQDS;EfBX7(jac@IlH9dTHl`m~`C%kV
zXjKtf)~}xk&|d!ZvKv~b)9~al=Sm8ID1Wy8g3#7T3F_9ZE9rYW1_svw>`zni$>)9E
zuUE=_=fB8tD<Kn36~rl7#OH{v)rrh&QKM$fNs~X3s*nuKSprLeG+PPGKrWM#0v*h$
zGiQ?MH8(;Zmlb9<Btz4Ce56b4%Hl4TLqVLb1N@ZUH|v#0eJ%<`1QJNJ>O|NyVAUX<
zZf9iF>aNj8Wszx#xoHS2SowX&6DRyaBhnm1xHh7VTP>D>^tU@l%?hk&qT)J`V#VY0
z>V5mvoA_=qj;%GM>BL6zu<vSF5&y0F95L#7<?FivpfJzrsylb@Zc11w62%9{^a`Ji
zcD!@GGu8$G%sLkd>T!pF<hOhfC+lT1eA)7b98Dk6b(abMADKzbz0c<IU!5(J-TN3A
zWZjx{IBhVSI^7bfoGFMb%h$}klNobb&)LbT-L^ljy3BiD_3De)`r@4r8^4=ftq+x5
ze0|*HlT$BEx3^z=y{%^}6w)rPC3U<$*BRlg*YdH0i+i&TwE(GGYjk&1yXVmAhC{^4
zAgcqu<q!J3f3>Dh4|#p4Y~?!hv*WHn=KlS{aTU+kTE1v1HAI^|ODrQIBiF)MnrjR3
z(9QdG%^3qi^|#-83EJm{#yCgm$qDP9=Ss^ZR4Hzgo4H<LO@+6)a<stX;sGPJWx^!V
z-_42}0ObZMSoZdjs)EiTr*-^=9j@1(HE-=dC0rg#zFdc{X~&5*=v&FmKR)du&~G~9
zCQuvcyY2gzz%g^u_z0Vjf2j@?3MN-I+tYt}Njv0Y<qsk(tr0OnKOlWv{yA@*3LtpU
z=uSPIyUzz&cFBnq-vBU#oM!MTlnefV@ruEtMm0bRDoSZAdJ4rafn=EVm@x{*B?&Lh
z*-Q5Sop~)4aDVo^LD^&d9t3x}HRe;o&l=Xbm+@!Q#!}-*0b<m)X^vw}A@K+pC;=Rt
zK^z+Jigu5~h_*<~X*I~B70rwqNo|+ES4^TdQBsHi6!DALRX+nQoC4<q_9)tA0HTd7
zQy74(F9&~oY0JTgI;G~xOBEW%3@BhP6D9(F$<)EY;jCLucD5EEI!7N5>4^U=e3USg
z=bHUcgHa3la!2{}C`32qU-uW5oxGc54q!P7HJ_Ytr(>u18-}clnLhs5B>HllcjtX6
z{OcDnCZ_~X%}W|4Q7W>Y(LHIh12{K}cbvEHzrjJr&UwJiOT9vQMd;bs3zQJ`d75b_
zQMt53+OH7iu(Z+s-PPj8emx%!Z8FfC<sqmD>Y*dODNVH6wNpT{D!d4zKzSRCtnpeg
z3w7d|ne~O0fc{$U?#@GYGV|8Gpy~p@dd<ab8h%)1erJBYuWP@4YLpB&?%ur)3RM=@
zsgJ8VJDj(VPy6oOl|{g&YH1W~@GL1QB>m>I$xoZ57EgMA)bgM&R0{{t22Rp*T~|fe
zWdDAtvUtAZMc5-LZeXf}hqg5SGBa>@@PJL#MJjcwmXm7K_=c=T(Gzp9Ks}#KEkf^0
z9XMW#_QRY_L04CW-h2eu1wk947`oKXV)3nCPzgeXrZu~OK=pX#Y-hI`Py$i)di(p)
zyCd8H1u;I?L}pJNmzJad6Q@a;UTJJ>%<lEum2PIEM*S@4pUl0$TO|~2pm;slw>|^6
z``~E1G<|FJs+Mj@zS5@r0d|E(YFV_hoUY>|hb>&Fi+pVX#M6#j6RfP#o?DRp7&iz3
z8Cec??7X5F;cCvl-}}GO7SVg3{fk36YB5W{?|i@*xube|zcp;p-3w-hG^HB<pi%;l
zzkc<~7rY|*?%gIp6nl+V84|0TG2?=uhcUKK=8j3(IV*gHj%vSSwB{<VFR#_D+xK^Q
z7>kX2l9qak%%WO#>S%GpMQO&F*_6{v@i5-44_89uklYq>5pD+>Gy!Sg!ln>zqfoG6
zAjwMtbk(6Zz70P%-Ge+G;V?Pv%EIQ%nPX2U1R>n4?q+?P%M+%$)ke_(17<RIY%_vN
zx1kRBe-hvM|4V!aSyETCe(B1=SC@9ZU$BJ9DXZCf9%fE70|BFyGoN~Spj#0ppBP&%
z_|H>j!w^-!;Wb%=Z$**IwlcTwr~K2`s&8TGnk}@_{$?Q;-=B|;i2=W>?OySA1B#RB
z(9NH*Y$`;^EgM?it5<apxyS_|57h*zxkMfY<EY?RL6?(6)l28%gZ?^~@;bBO)eLqx
zHK<SOr@Pu8s~9F_4`@A+5|zE8*HbU2iI*#{<UfDDb^G=j<lKs8B`!{b6ABT_H9l!6
z(#q#}xs&j414jCB(&vjl>tABIdR=#I^z&YB+-}Bzj<IW39Oz$N*>DzyulT2^ZSu;s
zVNbylrA(0bjBa)9<euvS0|WbcK8<%{D_nQ+;sEyjg=EG_O~;4Aj8jV?UIJ`^b!zq#
zW!tU22M%oE=i4*9Kmczn6q}8Q#UrZQ8>o4?xpcG6&dw++sAg*@P+eliQm_Vy)-_)B
zurqJ#&E>?uA08`%S^w0lo!M{Gbr>Kge%^(J8C~L;`Zhd08Z@|OcQ6D<@0toWp2VD-
zixw}H8#G8l(NThe%bxYh>*}1Jy!c554WioqzdXKhe82Jdd5c-?{Gd5=)&cdd{n))n
zkA(;|PH#Fx$!3Q}4-^+zeC^XS0IP4ZPPS#Ymu`U<H;Ec=&q>XeqVxHI#ZdTtG>H~9
zbXfk}BZYzw`taey^_~Vjr%n1?S*b-Ej<$U$9I@D6-kk<Zr-*0~Usw$YvIjII{ZG6o
zWb!J!@Vq6Yq|~9fvslyWf6IOm_nXX~tv!58s}14dop~}j+!Llx<-^>#b<4Ro6manZ
zSJz?Y=E`*%X?VkU>gHygU+E$uN;+*2+z!UZZ9F_YdejNzU1Ud68c_chkIJW*FlCGC
zwj=wRd2TqSNvY`Cw#wKlkdo`eg%pIyuC94mT=Do$;eOO${N|{r9-!0LUTXLcIh<ZF
z1|=6}I{iye5C_O=K^T>M^X9QfA7ZlpVNluD^ln|#xkp`?KX>&9%Pbj4nyvSb(W4*a
z91x_019bj`plE|eu{CFi;i39#S%j}aut-@ub?S5}*J5Z&%Jyx4{66E{92a_be3j2;
ze93kq%Sa>+>`Ta+(Kl&@ERBeYy5?P9^_0hV_ix0<rSL{d7*>%--wH-wQvqmlDYa%3
z(`7X-j_DvL4Y#ANbU7G&EW!Xg&UG8S_~^@5uc{SgFy2;Er#7a%c{i6sspZdy^EvrW
zgMmJYIK3hThWJ9IcE(OwLm}HN3xf962+G90fJXqCZgUzhZz^a)Wj0cP=%wC$_N*;C
z5NuMtMvZ)Iqv|N+yTG5N;eaKs4St1UecONyivIwkODv^`ezyEV;93JDymPUH0am;}
zb>bm+R>PgQwV>!h578njyzn;U6N%2Eo*2Jemu;p=)c8$|hnhP75`R_wsQCMf(v`eS
zrS6krkB_WmHL{H+qAA;o&k2c`B7tzYbyy?kK8;sbpvd$Ei2-I=eDq#%Q9B_l|NeUN
zUSm)_0abo=$>OddIOWOAAf$`t`}?UVs&4{h_q;Qk(Rh%O=FRIWnm#*^dOeXGnNBMq
znD_PrL+#!B6iV86^_rEYiC&zqkQFy5<2T2}#jP;5L>fZ)8#X*Gr*jaxDzKsn)d!5(
z@6AM8!I^_^zmv#%N^%otr#pR%ee=)Gd8_s<v>z()F`^el`X>AIf_3+P#HjrJiPA2~
zN%efkrPd>R?%A}eV%fL@zMLb-)i!JNmHvGw;(!4&k&nKqLe5+l<(~L=+1yje@Y%Y5
z|Ks03%OjDW(g+cAJra`==oVQ>C(gmw&Or+<Iy8Fa1e6i;s~A93O2UW;+=VFLJMR*)
z(~5*aRi#ZJMfVO^S9Ypl-=9|kD;1%t{SIs~2_6h=#0mB2rNk6;0@)XR__t>kI@UKc
z7F55r7{_#NGPCMSN6k`L=UVgtjc{=4B9<7?A|2S8;fE99{%QBiclY<KGQuLju1Bue
z76}u%<BxHetw-V}g#w*$a;oT<1>2wmwY0SSMgn_n1zXah*IV0MUM;{ZUrSmB{Ht*|
ze2YEzFkl^|<W-~%It1`22LGQ{sf|VdqXuMStEmv5D{qwQ99@N|q)6gxf8s1s4Jg#)
zv@{ixJ@1=gS7^eq45=p03kr!g4Cdu<pr=&tz6=s2ah?+)>#IfKKEn+GXIk&RPq$RM
zgddzRX3X?cw^Ir?vo(9HX}A6$*~;Hws4dnQtZA3ap0tkL4hn_5)E~LbBS_|in?7gG
z(Q|Jh<?yfgh)a=m@O*8Ja>wOvZh3sqTAUETT?=tfefxCfhmTFy+6pSxaGPV=tJ`XM
z{axLLT)h9I>iv)BEb6NqFH&)>z4f;Mp76l6^n$!1;Rb4S6@nMxzoV90P0&#8zBva}
zvT`mi>m`auJUWzuHv1XgyY6RsB&n3*FuUr?bfL{iIofsXSX*6P-QAJY)rJ_b22Nd7
zKF;Xl?LGoxa9O6I^!Sk|8vj#oIj(S(IQJe1Ou$kR0)wlr6f}BHw7K88!ycN2ufdo5
zb~$_6umhO=o?W||&+NS~?F%IWd)e^U?CzVCG&h)r?0EqH0rkBF1LT>I2*(_|=2C3(
z<!bp)gRVWG>2fA>o&rA-4duyR-+lj4D>VK3v{(1;8G&v7$CPDoh`gu<ix;QQ*QCAs
zA9t4f$A7g(>(};UL(h4mSzWArWGsuIFuFKYi2|C=$vk|I%e(=~yB<vp;!X8MVOc(Y
z)dY<XWM9=}f1caBs<FyXf`h-dI`_}=BnelI=v?>j-%M9y5IFq1>XkbdC$BhWFqbM@
zb7YGaEvDES{KKw$>D^ro=XnD*|NLRw7FIJ%A&pc1QT<dGCAr$^f@8y-w=*;p`^NBR
zGfK<LhrtRFB<#!jlf#B<O`9TReTGwCT0@34*YGiEUy<{y+0Q<v4)&L~(Jm)JCrq^*
zn|Vd_>Z8DFkW7ssn8$c+dsplrcT{Vw-nHPMebbZqr46bR0ocuY=KnW`Q9$?C|7S5l
zQ6jQV!oeEBSr9>CM}72=fTq+ho&HnW1jYJs@&0eB6wJlTChpsusV>)dLLXH%4cM@d
z6Y-yQ`sDBUQ%Ifgnp@0*M%See+-L5~!}(@OTv6sa%J84L04*+7WuLOE3EX{}d5pS^
z{D!B$O}Lffpr`Ri==}j7mTnv$d5!y%S6m!5q2jO3*7=4Vo`2F)$?0;s^^)e*G7wYu
zDchP>vn>O#bljMECTGyQK=r|H|Eem=YN#~ZaKwTkPBWe^Tk})ZeRNmE1$h7l3_Y4o
zGhJtF#7_HNY2O!Lx{e=AE6(#f;5Ea<nub{(+;W9zDggNC)FMuuZO#9vMipz2d$iZ+
z%a7B`UM(Cq&bjRmx4qkj_G+-PP1B}hwhg(kQ!C^TyJq3Rz9F?kCUjr?$E`Cu>G74X
zy3cxa&3XOykA1C&=xq4y_M!&6mS1aCQ{}hY{%aEK`rZAy?$g^9`g5i?-I@2r!}x2>
zImMSAd^{d=;8Mk@3iku`ME6bxwwMqM8k|#4*12tcompxaih>MXlLR+JaoF%HM*zl<
zQzVDPtfUEIlUTiOU0oKQE@o4#&EdNuAB#lC?@qKjR9mu+a&oji`F-o5FC+znB0_?k
z*-3)?+@(JdaCAx01B-gy<EJOCseHDwWV@4Z-pB2BYR0|Pee+7a9G5M1nmczhShM(i
z0nx9qC5r!4F&IY|Ndh(O?d_55ZuroMmxm!rp=j}r#+DD}TL0y%*RK!bHhHXKG&Sau
z{>%EUNFwufJjg#tq|T&Y3DGPBAj=y*QIpu3ehYFHJTofInk5-5QBHo{F<Hmr`>DU=
zzea6zTyBpZ*J%MB`Aw*`6oAHrW!0{22P7r3MFzU`;;gHophA)4g`G?t@|&Nc+K-<+
z>+efpjiWqcYCW^iu^1Om{1q>*Vw$#fn1`?#EVA#dd~lC)vd+Ue*KSnOn(-$)%D&Ei
z|IXakZtv_DoYNRlhG5F`y53fogR_H<PE#%>e%iwe<`Os{sf4Z{hNprNZ=xTdo>-^3
z*U`G9R^#eh@mf=9Wd6L`yL(M*+^t(T(m)oK{84?m_s%gT%>$)zK<L~l3mZgB2!{<r
z<}TcYzKXs-CUE7;nPpH8^$iRRUc7#7FliDyx|rhCj92!<$J21ci0gG;p0o@im^-^B
z3yDk8%!T4DsY-nNTqEk(YX~PBD8x)WbLQ{WS|~BEQ`dBOk%s*y6&$U_uKGq(6A|^Q
z;f35jV6~$)#ZC1+JNgZ0A+3zd&d9J%abI#fX8yWCi>8jZu^Ei`y!hI9>qFf}uhxf2
zT==!Zg#}aacmh+kOZR4fXluN3Js$-+X*%&4c%YqQE1q&pN|c42$#FvC_9`>rkjgY<
zbe2(hglck$Yk*^urS3nfR>frI>+9=F@%1J<WFu-H+Fze%VnL^W7gt6-Mi8hX0UFjb
z1Mv@quFuCcQ^HG^XYS5x-jDmKoId*W*|WHrRq>28$z9lV3FT2<$Aw6vni`EQ_w=><
z96wVnY?jz+(#+1F4wDLoX7<L78wv#nSqR$L1q&8<UAc0_;jyrqXbiv^e9<N5VR_Ja
zDT)(Lw3-TK4A6fJ!skZ~{kx$)WDX$L8xkS1v(iRUoBe(~#j3E=j#Rx9?)8y}Gc&nE
zKs-qAYW8cM>=F{`6be!P+xkT_3KPm@N>u!?O)c`^I-Lr%wYAZ(p1EgyGc}NUF__o~
z6i4V0LhsE3M)wH{3TkH^GdeE2FX$WIGL(gNMZUDT^?==t_Sx;#r>?Gzs^4@HZGLo{
zg8&+!ZTQU^<cQLhGPtG!SCwGOgqJPO?_I3wG+a@VqS^QCz8JTM9uE(whxPBjqN4kS
zix(M>`8x@;{y>yItJq^<GQui6tv5R>CzrUT>fGLOa1YKL_&SPCii(+R7ulYl-c8v)
zDs%}x2`#N`JjrhE?i*8f(uFXYF&JEQ%z_1{PTjq6V?7-sSIzlFe*RD~N(W5k8ig3~
zV*u2|v<gr<tWKReOl9f(wp*7jD&IX>alLhQ@to_$#8FYDp}Za;L(C$r@qxTS=!{i%
z7&t34M`SMTZ%v!FYxTOYa1?a3RX2k^eRfc>^^JWE<Ug|OE*YO49u_v-rdOu?P?{wR
zerSkZW~HN37WtZ+Dm&=w?*^oJ^icis=sv|MqjzPs7>C1p7?@|vP=+;*!TIn8aLCkD
zejqi$i+ArvqeHE82|Mdd=;p3WV11XQkJ|ZN(>5owl`Adn)~uhCn%$rL>)heFAJ-S}
zv$O3CnDd#8N!%p00f9Hpm~XW5^O*b}zpin52S9Zy-R7Z<S{wd`bS^}X?U)K&{9vG8
zNz59cF|5PWiQH64A$uJ)A96`$P-caY+B~I+H*YpzsIJXypoHA#&)3jK-VPdYZffOa
z1ZelNvOu3SA3uI9#+j(ndSHR*1ZshF`hA6lImIg7w&Dzzol}~L#WfWmd}5rVW^MgG
z{$peD2tyIG-$4&V?0R&?(=#gWdP<5G$TauoDpf!!=Zd4B8IW`Dpc6%UG0vopg%6^A
zO0Dykj`>9s>-~Bbk%Kxm+t9hr7Rr8)sxNcoGMpbV-ZeR_N0ml$bnUX7MK9U;ODNiN
z-+TTTkhRG!TY&((kp#7X;ViJ%vGg_xc385tMBlB?p_5Gj4d&JRx%amC187Q@NMNe~
zRJIT1T;n-tIPW^Ob8Z7=uLVC2kLm2KSF>i#s58ALpD!_8I7L}mxiJ1Ut1T^VKA;>m
zR5HXfon?3Pz0`7Y@e}e7WfD21qo;QjyhBn<fMTCBHPvb7UsY9ALi%G0^5ek7ZD^Xm
z&^6O+(#2yHb!D^CVFUdV)HMB_gX;W~zm8ae4MNJmJ9Eh_nrE}`m_f9KkJCQ1sjG3V
zrC7LiIOf+WqGkH!pJoJ|K7E{ZrxhS+iHf~K@I;W?QHwxd$fJeVd;2{nvG+O{V_JlD
zr>LqYk`C%?XRFa@L&xb34(n-@G|><WIf+(YU<Jl0DH4dW(lTnR*MjTt_=;y+$QL>E
zva5I)Y6^h3px}N-DvUpz|3t)q$ls>n(x{sdr}aB@=pf!YMQ(onS|l2FF;-*7G(`ZT
zZPbgrFUeSdEe=olz=7M>_<gsWdI}<dfwp{>azDi|b?|(zOP4NfBV7t$Rf0YUbAIl>
zQRcz;rj3leV%?A4SR$oR>FnOEoxKccWRSt8Y?1%fo;|mL)1C`>K%u-2)3G7N<or?f
z$U3n8n1y}Owdg^x>~b<0xtG-g<m+K_6ac1SY|lNnWB_*FG8coU%IP~PW<>hIWBgc6
z4wU5R{+u*vBo0Zu2mtI=)VaCHXHYKy8`On_8ewDe8xH(Z(?ycE#QtNCb5mnNgR1<t
zKN6fzUaCWBE(!$n{`YKmn`;j>F{uH;Oz~5LL!SLDqV+jMML59f^CYif-9OLI7g$)(
zP!7<ca8HWqB-#N|p>sO+V1tB6qk0PueV=o#iO9LYYh(%zoJ)H+CWUxogwMe!YMFtr
zcd58ZIahSqgE*KGGw$}=BWppeIJ)A{Fl@%5n8r6!kvT#Znz$1@fY{NBeg6_nKc2i1
zPoF-e1_7ueP**#`W)wSe$e{_85A764Tuo{HP3|2BQ@IaM;ea&g_dT~#v$FP>o16b(
zY3a|5zV;0ksI_c4f^FHPKWd8RyCTS!?WE8n8r-UqUOn~c(*tE?Wj9h%e8FKl9m~R2
z*(-zDLpEElAQw0j8>@}$hMC@KWR`AP<0<1D%3vM0^Xzp_=ur2hQ()p1e$Eg!$&TRL
zeRBx+9aR4I(GJDd4IApqD5*K_IB{JI?)&gmI{-18G`)*>#|nrzH6g+4z>0VMgIBr~
z#1yqqQE5La2VUdR!-w@^PipM{vwZTO=#~65`i?ra%B5081smUe5ES{KYl<TeoSl2O
zcoSfDjADaw-M%xasK3O|-1}hpR7Q{N+|p)X*HIi?Ru{9PA|g}{_yn#&MqUtqaQCg3
z98}}pf6zEQjR1g@IKu%0(qo*nG{*J1FnKh&4fn#$Aaf2MY#)u8Yy?uJxo?%H9aWFD
z_AT~Gdm0vXA(@;FOMD}yroU-u$Sp}~lu7VTeFaYPbgFj;MDVq|z@~<Brq=QT#YGb-
zqO6<oi(WQRI)oM^02R|4Ht>#$7o3n#sfUSH-Zk&pWec=Y+FBvx5!D!sW3Sn~1jRjM
z^buiUz62hdQ+S5-9@ifqp3)&)UgMXj9?dw(F}k-q0o5vnlE_JXbnP#dl?`_2aR|#A
zf`)8S7`$?1#PM}RU@`aBA5eI>BH&w{otBSxr+d(h&73}cFb?)m5^aBUR4{1^aU$-;
zT3(!IBd9ItV0th)G$X)+W3t9zk@%1YzZFiHfKh80Af-bXlA5a2Z!#+Te&0+B*BT?b
zjOah)3m%e9W#dQZwi>W>bKH^w6RM+-l`-YkyVCLc5LX?_`RA{=2ju$jKu#B<)ydM8
zNO2SOJ)Y;X3lXW?BO{Bf-NKxEV36^e%E*%zQTAxi`5WeX*6KfCK*PI+%E?)dzQtvw
zrtTw0);G}hpRl<>)B~RYli&nuly#i8JSz!FNj13bgmft@>Qy;1pUYX&NT{GpjAw1V
zN>~6g!-S_#r*{6t?p;^GV^_1XvhuvgcSD6F=n0WWmzZ{8@f;C)Fn97Q4@@vBqR)@N
zzdd{R9!7aVJHaQY3&r(eI_ub2v;l)#d4C|uL=sMPI08AusetNoQJGezT39Y}<0o;h
zaEEI+XSULgG{9zb4OzXCg7>Rvm(hWFCL)A_siGE5tXi6*!#+xIlnEwK&bUU^<fNh<
zT5W|6ZH=0y=1}b&!90+*>EsJ3DbPzw)RrA>CX|SphDH+f{lQfg>QcGVmeufjP!>1l
zrf7MT6yOmGFI*iBu4569ZT33SgnKd06Ra+0S4Q;a6G$h`7GJaE;itZ`Q_E&OTwY2{
z(sEP`N{=XkCv13Eug5MLKg!eTz#}3AgY><SPk(BF3{Ku7V)JU1F!hGQKR=AHP>rF!
z%0t)y2~;daA#`@C8x_N__dy&YofoB@?9nzkx`l0V&{NL01+V{VJ@@f>6|T)Slrc(1
z9;+J~HU2C7=+U}Onl$0{<|({b@RZxz4jgEVLQELT`Io<hjXCil^gSr%u$N>EDJ?fr
zk|=z6B@8dLXv2}tpsg80f)7ww!jmUcjyM<d(7|CU>gl@doQ3kptX~*;vh@yyXIy7p
z@#r)!j0~8MY<xMf%cnV2;K4Q)<`ooliQe&Hn0~tcBlu&Sof}2Y$lCGVwoQf81`9@)
z$q$_@J3E<87`;^VFMRw&N@EGN7^<}`7afz(q=XwP_)N&>Mmf7r$=E&L!J(c4ok)@{
zOB6CrDuqLP^uL>~ed5_>?iZz>hm5adF(YWz`BYAyii=xQxaQTozI)^4%f?(2U0f0#
z`gUqzPs9fzbP3y%36+Bk+u`EvU=Ng@=rcgBADdHi%BvRF>SyhqP#&aG^7%<r;fRab
zA9T%~gU3DX@%ZAhCS0qlK!X@ny#Xg4Us}=9-Q7K@dm)_mbSI~c)HvAK^3ZgNtAk2<
z^^dPtek6+$jDjl(X~u8A>r!mXcIsEcKgxaeO8fD|?<`!Y<>Xy)O`lhN|C;n-i>cNS
z9!cRZDN~y&7Dx}<dt8^!oxNBsB_Xzdrtks^1rsbrpxWV>>-2_HylEmxqZ&xys`>;D
z#vUz&)=9?Ah?a+r)o#|--Uk<j6p#z>TU4c8b_;2HaUm}7khd<fG*m06BzhEOwZaRP
z>_MtQ0pEM{$P8$srdBVvbkqs<8v*YjW(FgwX*1B>8)8i6*I`ZNk=;`Lu>GJeQw*-x
z(~x9@wB$kn&IN=V+&(y{ts=Vcx{mp+nS|dzuJ;oHsP3@06p%l_I$y^_)4oq1Rce-I
z6>QRWB>7B))%z>nZx<Wq#s_aczGL=nu%z;b;ziv-P8mn%#EJKyI>Kp*WV5eXNBIzn
z8xD>3s;a7Vj2Udm8YFi&z2f_3VY?-q`O@owN}V}%>JUMr^}kYx3$`mK3X`JRbJq6;
zo0;*Ptns1s9?zp1VOMgRbqwvO3E!X+x{53|d0F>&7hconuSYE1?yYs^2=%NNaQUE}
z0JZhv)JZ2?^C0q-bxN95iekpIbuM?8&7@v!>N%X4@kW16nzVy_JQbCwX;%&)a`7%^
z^%$nJmJ9GHslM&jz5C`iM#~3dQJ!gMH-!FO5A7$e>?_e>&c_0slv|Da!n>AY2_=5h
z)`KW~w6xmqz5`PgU3j$1!QOSoL!0C*9*~bF_P188%%{XHX;1I6%}+0-@$!7)dzL%5
z)l5Fs#Ld@kxzY5!VW+JrxTTwBgWcxu-$bS|meE1pmyt+I-*T4SfQpziHFPqr@K)y_
zY|=hnj$NtjKOxGe@ejv`v#AgoJES}>@-Yb>jLgE^!eUqfv;vQ@#-0h0DW&&J37P|k
zRBqHLn6zECh^`|Lto>{$lWqpZ-OM<$thl$v_Ph7)oqBpEAaM8ex>5UH%^l>jH0)ND
z1b%VB&h&D5z2n5k<Ne=G3-p+KS2;&X_UZhA$rV{20D79x{ws_sqUAVK_)mB;Eq?jw
zVFgYw7SM9_47;92XNi<$`s~>cj+`M@N>VatTq#QuKi2)!%fGI2`u$?PU%hd$CiZTe
zbUw>(Q5DszS5J})PxF}IGE>Eu6=H;JuO@cET6aeVeCYZT9aG-Gdz`ZVPcAN#;4s6F
zx`2o+vg4B{L!Rin)f{Xeusv?-w_|Z8>1B&-wYG&niSJuB>r7bhfIe;0jniiLihCR0
zzWVcBczgbIZyGFHEinT(efDl7tH#IAuaQU#XIA!g-FLJ8N|#Ubd4$Y!ObTXSK=Q#_
zLC7`#blkBzH^zsaNYw;jM|g0|;#<Zm0LV9l{k1DX+D4C;EI6Zhtx+r+e40Nn$KP)6
z9JBv)vrcO3Xie6qSdf}XjicPa$D~YUJ`>t)_m^h7DGj!?Y=SB$>0(y)ONU$6b)sr-
z*~>&d?nJsbz6OLjfCKe)OEqpqJEotadDKpGW(1zow4|7wy*F*#Si(9^e)v!g1?*=L
z^l@}Q$2>WA3@>3QD4FD$l2qE>V<y`i2tqDdvgqqg`Yk0$1D~8X;d(TArn6T5`2LCC
zoAS<SV%ohmW6^OK=jG-qz!^Y`>%09MadW+y7Pd!UaI%d03WgJGpl&S6_;Zi4i+jWw
z5_~v{jtyC*<9PpfP*jJVr{_H}WRDav9OppB-XF4Af{jEMW>6Pd>AX9db|tRz^Pd$b
zd-exA5_aJ7kE#`HnXlCC(WepqlonRB_9R^#ljWz9;TE&Cq9ku9QB^Hy!6U4himoXQ
z$~WU>?^>Zkywy4}x^+O#>(=w*SFdXO!7Zb4@r6T&yiiV?@djpgn0@es`2c%9;!H=!
zk%~89`zM!OX7`M|Hhaw|<&&M5p61P>J{Z0^+faYlK9p@Q3JOMoL@@we>&Tqhv&Ujw
z-SNpkZ0T&ZHt+X6aPs^glnRa)n5{7FaNU8+OT4J$Z#;Um4<bh9Z~Zpn&{B1#`~?#o
z$D^o4H&5YwgyfX%HeEw;f;3CZ-y2EuWOCqNpq!4%w(<S5%f@OkMyybizJpUcX+C-k
znfp0D=<M0EF*omx^BjjJDD(M)V<}_qMO#9SW(~C<zb_(XB{G-}DDG(!!}wXpQVp?f
z6hAt<Zhufv0UCMB7|)pU(z9=;h5i-yg0p##7$QDYRD_|QDJ@@bXL~59YkpeBD=zVi
zq9QZOyTh0j<ReB+y%aaqjk!L<Vb7%Bp<<SMnsz>tVl01Lq@(pa9be1I^9F?#R1WRG
zFdfVzfcQx!Y%Dlj>XsVa=O5kSqGiikUWzBi;s|2wrfHs?+yT2BL3nC;vA2``J9VbB
zKzM%YeSGOkJGX1+1=zKIy#uHHOndvGR21?b`X$v5(hO3cIMPujne~PHlb@=h@||af
zd)_5`C+qFA^q`zDa`btxYi(h8Z1<mSgNWh`9>0gmw8mhwJv}qC!vYEqTUbsx6CKkh
zxn%j>=$T(HlGH3S*rU5#pFr2$q>WM252Oxn!ad}O;7dl*6%wx4nwDh!dS(+1mLfvN
zC;dL6zf$nk^z<FHpr$bN&1&yD!5PbO3Jb3?GIXq*OfZeyl8~0A0WaR%H*@nlzUnf@
zWDa2gGHE~$5pPkD@kJ(tbs0M8dy&}`)qdGCGY%w-95qS{4>dRWLH|GXc=pbmJJ)iR
z@`vck3HvOq+YXAX8drGSY|D0zZNUrpRz{t@DpE;~)*3)b-!q6I&&yv$^kTIyp^>v2
z8<1CetVd$c3?PXBFX{oQkda0JM$`m#mWLX&ZE?Pi`2dliBQBOM2vz3RUAuh1iW+_;
z!~my61F1zN-4a_9-2&K>gslsqZS#tPO@$*KW29E!zRjV>L>mK6?=3JXDnD{VX%M{I
zMS>l%a;uXR$$zQucyn-4ulSN01hruB@F!(e&?UaRmV!o2PD5Pc*F>zdf4{Oq!_}t8
zSz|-CP>ZOZG_(pS=c0;_MHpw7Wpp%~FrW`jip|c`wQSBwMC!w7Id`wny^_n*6b}}t
zU%l(IXU?2Xvd6DXndqB+sBUiB_`N)4Zr%B}q=f<Zv_}L^&He}8$O6d&Z@eF|cwOVx
zOKyhG|9;TB@&?D>VEPxfku{ud4U7K_<j|zxtjngLa&3#7?f1wi|AXUxbS;lGL&hS(
z$&#SVHOPgUcrnD=&Q=BLiS};n#n?<AQ!U{iNliMhvM;vo-SfIeA8!_4*SkDu`L#xz
z>EUNk9LjS{LSy#1`E8XB0S0ZnY&@>&X^eAArKXQV5MufD%m^DDG|JSJ_o<~2!hlk!
zokC`iXlcnNrI6`nyDejmXTN($B|2PCCVN~DT?`Eapg!w+IW)I$X+7@N-1Vc6xo+_D
z>!?^l=zH*E6hG30%d&D_wWJ`zVt4F+w#%3aT_sE-QX~2_poBZU<*-?-h<)q-SP)qb
z@{vY7yy?q>MsC}AGJ>_wRWxX2v8eFAS$cy;A=kSNFD@=l&Ca$h>l>>bboR`d!s8di
zDkH}dn_3?EzVdiN+V9CU6z2~_jGa1lG@Xey6&rX$^VD&!pU$Euv2(qdUihrCtTg@I
zGg^JKqx%s}Rr2tq-nz93+TLQ(h5aW-C?_wyd8&1EecSI1_9Ml%8hkN~aMKzTV@4OR
z>ues+HBQzE5b5uKZQUNd>Ah>(!3YnZu<n-ArnOD*ymDyQt(Q(;qS2;$P6wotBx0dW
z71gnhgv2pDP+EsZ_s_OBj3}IKZ(lQa;VG+*v|5Y}3hcc1jMIV2HxVOSP^?V4j`f*}
zdU-+U9vzQw%LQZP0fNz$@-4-`q|2c{|JDMu^_LC<%~r@tBw@NT)JSCDY&E{nQ4(c2
z`;LY%g8-XC<#Lag+{}{o>?#4%ED^+a<6MkRMx8~%GG5&^bK1zCY-x01eqNr^KJz-1
zNVxspmmm8I4y!|Q5)a|}Ee87f;)q+wN|IKJE;6h0Vg_}dU;Mf;dXz^ezGktj9NjNZ
zFBwN->F3*rMQ#!dG;CZtlQY2SMp55bjNLuC=TYSD+bCZB)O6Q~w(HP0{-)J$o90Zt
z@I8BoXURrQ-@9hRRoRC)1v-pErOwjjtOO^i<pn+2rCYa6L=>5JTL5u1tm@gW*s#fY
zA>Ba%H+Xz6pJ4TPFP+_f#XXwvj1P`oi+J`3inIhAh35K$C4p1&&Vhk}96iEkt=SAX
zzUiH-jchL5um=R8`||oy-<Q~vP2^EyFl<!T#Dj5V8QNx(*kt@anNK=<g|$Y5U^U4i
zq>IIc`&c@ynNFQ@X6Hhy!cE%!<I3*)(324*5cSlsXnWe2M}9+gY=*_r-j#FU>$%g5
zKD%GlnR`?@XNa@UppiCtpibe(kE1}V1AQ$lfZaiJ?PT`zC9ke5%&!BOf4;qXm>+%I
zT9$f4#%PQHIiyXh`!qYP0(04ikqHhjSPUstnWl~eEuM;v9Zp(DS$R3$7hlx;o7Hq{
zpwRrS^;e1Bf>hJ#+czq!WhAe4okCc63<+qM2((C2Vqs_z*Ksq&%yR_)yqGU&23K5Q
z?!5s4Nkk%mfa5Jlgr4`w>>Iaa?(xy!Vqzl(dh{jrv^ne;JMCKD%!Al)Gs`J@M}nk^
z@5Z;G4|0ms&<pLNi^_kz)q|dq!S-SL6i4@EG`$_uDv$y_m^5cfZw;-BryaI~Ydt=)
zC};5x{o#lJqBg-bw4di-|FbP0MlWTcov!_+<lw&3ue!t!t(!4!CBVLzRDdbK%JN}B
zL(0e^N+8yp%3>`<fFhSNdpV4d9efQ=yj)2{!qlY@H5murb#MTk`A?1bd?PGgN#N_E
z7k`kZI%ekqg0rw@c3?{4*4hd&hQPnngNYF5ES<Vk?UKn$KrHG6EzTG*c8RtQbdGot
zdz1uw@z_hF&%v>|%|P3&ACbQ&(FVZ#V9&TJ1M8Oh9dENVVZqm!u&TY3J+bqiY^0pT
z;p+7yjG{}Ykp#9BZEE$hmg%Y|9`qW}9f=tk(Wz5ska|8ecuc~*dreW>(w*q&>z_Ec
z#WKViu!8C`?b3>6X_qG2mmN17Jv4h?Ug-h5>@(kqE{uKHM5SBTu8P4fE9a*gp3^(;
z=|(%ed&bdKm1RS~T@|@RrM-E4p^xGaf)qLBA+1V4k6ObQt>&Wg;-$b^`J9=}Zt_!8
zlGioy`T7}#ZU**6NyFj_lU2EZ6mEe?NwOY608#GlN9c4=qcnZNxtN45*QO11=cc*o
zbNa6q^A$>A3?+$}VgKkw+}`2C9T1@)Rb0m-@?4NtfO21Ok3=K~1h1hX1}^JB=F(;s
zfB-uZm_L4e3mWk>Kq3i4b?T)MAp<UlJnwNY1?xqDC~5xjKdQbaZCaPzi5jCnN28QT
zd7GM|i++50l_o1!{EkqSC0Lea><ziy17OZz<h-~#4PA4h9aW{NG9O&J;TE@VOO@PF
zYNmiCTI<@{h)M#OA%2cp?4WA6A^S{_d}z?I;)g8$e1geS2(|+297HYZhtI_x{AG<Y
zP=on-Y4RRkT45mV8ncP)(ErLPkTI_a@e~AC;or%Va%z}rKRV!$4{B{r+G<(Oy5tCq
z%w;#71V8qZd;UEjUdao>8Ne-xq+*3gRuN;Xa4<^r{>oLWm@Y&1k9&EumplIWT@3e<
zCu42B7DIDinVE5N;fFek8TR%IQCAa;)f`5a=h3z(1_s*imfJ4D+Hc=h=Che7o>9A4
zJ&Eqod^QRZdqM<6sEaiWnqG|Ypm*!Y&#bejT&QQcSMYw~ILV_|FaPT+hx+0<)lKzJ
zFgo3-Kk5(`+iBX=_IJS3aSA2yy+yYVGERejT^#HoOJ2TclpH;~?4a*fVt!{ZBsxS7
zjCe9bApnsyK8F9bvg?FI>C#^=3fiGf^FttY4G}~orl+4xtgQU{HJ?>V;+KICoG^oa
z*E3(XxSEh~=&v~4A1?v$CF&HA*DY+fW8co57Ks6xDBT7W*o~%clf-Co*D%h2nfBKJ
zpZ=v86TOQ-^khDRn<cdV@LK^zxj~KU&)8!-@aA)>sH`t<AGboT)S*X@MnI~K{+eWE
zMGS4C?oF1Ftwc$h+S%n<FV^(rnNrr&H!q$NNfslEdBU73o+Q67&WDv#l?J~a@l`o}
z`|_^K7K4>h!HzN8gD{_3U-C>|zU+8pg_~P@#)vKGR0e=Mm>^4T9`KzhI)YP{<sFZL
zgRz8i-@QALKHr@!_xENSvPVW03Qw&(Hp1q!%gmYHoEJ`0E?7@vn1@6!ir|-pnL=Py
z_Nv^0FR$K_xaAftQs#6_@9Oy0bTm2gG$FdUAQgjQe8d650}D~?c;_`^q)14Tqmkq1
zfnnNhy|zYax4~5^@>1QyVtPY^ATS?YQV$WjpZ4O+NjaC!cSSIg1TK+ts6HcTN5xlU
zJD>ObVaz1k^<1cWrxz9twa)T~o>gL$?Bh57Hj7EDURrExmCb`(6t8bo@HMUSMH6Dl
z(KVNR{=R@CbeVqobGNWQb&(OG1*=D{J#`a63^TIo;M|~A5=vX-+gu(|`6?24&q93n
z8!!M9-q05(Zv3}8Z=A)vp9NUP{ZGX?b@?(!v@dzJoWI^1j*^XPM^Fk{IkynQ9MUA=
zh`@!f(GU~2Y&~b|)7YDA4!S=FcGOg`Bc4K~VBBrrcng;-Cyu#vx0U0^@6I;$v+2r7
zul*09Ui)?iKcA%J@DE3JX!6kzUa5K*l&^XXXbK*=0k0u6crLu8?JR>4-=&yyJ#f_}
z{=Vvt!U`EIaN8b%6TD1B)J6(!)u);@ynsC37#<nZ8D>R%$<fi#h9|86Ie4msb%2<^
zaCqMXrM?}?dt9c>0yejKzeFqK!-quxEcb1ZC)G#vqc?HRFOs(NIm8oIvkI}WZZR1;
zG@^%fjzra)@D$CQJJ+25EFrCI_#=xIt8)&!d>R4B3oC8Cb2fMo9*M^fS5EB>jArz-
z&s<MKAyh?b6}Rkt&$y#Z<gyt%7Do`iVR-{uTC~yHU@^4YN4W=+`+1;|U4m_Nk*jM*
z%r1t=DnY2HT-*)CEuaOeaWstVvNn?^caJ;B>}>-PbYa>DwQ$NPhw%u5QyJIeJ4;JS
zP>z$3B^GCh93F;xIhaph@6)Yg<>}*_gth`{2RAtio_~*%<>3vr%WZVc2SRon!lhtE
zma_v2Lz^*U?l}yg{m}3)FDv^kWrbD<CCyg&FM;7rY*8L{CLH2(>(;F;pdwHdpi2ud
zUKJNk&p*GxkF3icUCQa=A18vuIv9RCY8U7OhH+|>dLtBft&j(@f6H79$#5sC{K}mN
z6CCTtObKQ9cT?<}a}8Fui7Bf34A7Q`6^Q1n{T)gcIvc|&;ky61*2OthlCu2f&3dX%
z2Ip+5*cTX>59$Qgs#--8cbymThoz*B3}MWWq&-vdHROPmR7fG7c~{<mksWk(tvZ`!
z&I&kvT9-pjfNWu*5CdX>_N73Ex|RWe9PkkZE0~drtI%o5r3##kGk}~Yo?p;jVkHtA
zjdpoNq=5`nf>ZSVY#dW`ETRosS=rft6%us%c0~DUl+ToFzj-N{vZqnJNaEw27~56F
z(LX_Dr|T_#`%QW*k#vDBh<%P)(7x*1mn2;##*Dy|=c}x~2Dz)438fr1T=s4=@?7%(
zz4}aT^4+tiC7%VIjaVpRiuN39LsOE!>*MmwkhIs@%PUEMhJ2{$>+4H~ty!S|>OQn@
zh<}FdJ)e5>=KX#PlXZ$!0E7{OiQ`Me&g8K)7HaE*Hi|`L{*<>-Z#;b?dNFrv`R9`0
z1w-9Sa)-zSG&ZouKgFC4?zJ$J0+IXbw8J19;}}x<Avh8hhmd<iCnsH+Wp2K?X`c~2
z_hd!h7DG7lRyGR7J(BXGt`}B1=wk1Ktro*f<F>||@du48TKs`zFz-}N3x{JP5I<2y
z*v*+!R{`GMNmE+h4)>b>ICmM4+i7Luv#3c1kTx=Ri)RDtjLpRs(gI`azVf4LfT%|7
zCf9AV?g7kF0)^y4@GL37^>nRK6!#ja78aVQ+V5^iT6uZVsvS>S$Ycl^j)48a{p+3=
zUZ?&4#QkkxG9Wi_{$<e{ixi8r&8y#PctLmN!BCkjUw*#&O2te|pbnsJUR=E|ns*zb
zZZ^32{}c<2y51se2gie=P2EKmJbe{Fj(Ua0L$hX%8Y*!*(4uMB)LR)XZ^}lk;U8I4
z^ADHu+>?>}9yGqv$<DSb?Gge2r!yazYP7`tcbtBhE$_uWqws|g&f8*_t=w#0jaQB`
zorj3M>4fWJo^}elu1dVsL=0}4mID%)mMFP3GIxssd5u7Jn^z1(#kcpA)%SyrUqm?j
z`3DCCgz~nM75^d#yvqnef(!@SRhqW4)Mu+P_?@f?(J+l1X|*Hf7v!I4s2|ft2#jRC
zfj>)yrY_X~t7+P)xE8Vzx$nyVsY62~*-&Z!Ma&6vj9Ih<k67nl783`p(So|i-3M6(
zVu6dv%}|)0@V-;6NVA(gd;HP2zNEbP@qVO05M(6U(K_&xcVhIw&#mjv@8Q^uFdeE*
z=}85yL@>2-dvEhTiOag*wzgwyyK(bo4Fx|uYlYT2yX=M#<X~yf>!#|PG9jkq2TcL@
zxqfcxnPLt|Y5oXG^(~n-hUP=YgzYzSYlc=Q5oO&5o=imoV8K@EM%X^b$*KM3Jw9LO
zV%Xfq1Le^3b#oUtJB|<fIPNUwp`i@geUR_s;-Z2ganDru`aB%#4jw%C#$%W!L4--v
zc`B-^hht?@s+z&PR^ao(g@ckry~Kv;@J%rjQx#I^1o0?iq!1rF$E54cdG-F6pzPG7
z8K~xm69v7Vqacx_cxvXsBxOqc>D5FamV$!8ciy}`8CtssTbVF=-Y4BOB(DQbkDM4O
z*$Gm}MIM@2P;~Bs!^k+jtBnQh0<meRyHHvc_tG1QCu}R+u6|Gap7<@RarBoXND*2-
zx|x@}?ljpG?bS*sX=MKu`3wH<8j811FKJ4~7?6yT(Uv{2m{DnDHP~h)$Pe+QW@x0-
zm=x@oZ3ObA96fkUR@KTUbN0SEJ%}`rjT;+q0z8PE{4*Iue*HB+m_L=>Vc=yzI_|6A
z(xc<4M$ovDYhfML#x-@GGE?q{F!l!UDA_lq1ZJaf2s!IuQ4;JSB@^SFnq+9ZJRGea
zyY^MEg=b+8a*y6W9hmoN$LOb>=XdWlHGaMHg{T=le^fD%YB&$}+9i$+Y`6Dpl$e^j
zVZsZ_Ozkn1M<zTWn%T$j<E(!H$KFdqr&TikZ0^HTLu|&|PqTefP=L>T?B^&%u4fK}
z{d#)Rhh8!r`#x3kWhqT#qqs13lOm(14<CNsFe8u8ID_6zqsVH{+sfXIyApY)M10E3
z34}`eZMf@(xy=of(`&pdKM+#`R9&`u(wvda_$;yTsEGOU;-I(?A3v7HPqZzHQ?#la
zhQBDfS|$C|mgA-T;{+5Ta**1ebVfbmbz}*H9xdQZh%&e=84I*v5}?p-N_1wZez~7>
ziQW=Nr)UeV0#Y0nL)|uY?_HvfW@M7L?!@wr*Tge`O0(YOHJU|x+T43*-A2Lt5L0X3
zC;AERer6U?BEx0JH|vOgAH|W_xyS{%hje+~Z#-B%^sZm^1B&cCFOYVgnb6+PcuMF!
z&zDRByCAZ!hjBEkm``lzTIfw#`W$)vtH$=(`Wc%u#(kqcNWFU1oB5F$6_73g%uNC#
zB&7mKJ^~qFS#DxY%1SLtD<)cZ)M{1*2ekttEnJK^Y41rxii0oVpT@a;)K*auCJjgJ
zu<Ho<#!!hCKRmsb#qG078tL8}*25?bA<5y`xt?)_V*{lLcDp-j&#N;vJF=Ao)4e;*
zK0DWS!HNZ*I#KD3@kNb>C>OoDNbeW)z~mVWJRtQUg0^&EARi+k^muy>8Z`<<Fwo%Z
z&a7T8n8rw`*q*WqI;;bAr~D=Q$3ootOj|eD^y?Y=8$7TbL|=16ibR(1jz<N;mQewi
zmVFM=QMe;*@cz#AI0{;s_lciz<Np2abLY-AeW|9dUjJ?=e1+&B-szy7*Q>O&-~Pv>
z%?bc)Y74<y>@OqYtbglN`u+Qq^xm`nf>fg0^9JaV!&&6iFhVUZY)Bh!Ype0=tj}Fo
z@*3W!frpn;JJh}`eR1JV?s@X8`OEF^D&K@e_Kb17Jz>b5P_xB{CvQ7T%W~k)S!!XK
zs+yXcD4Y78Ys<e8B^i?p0^WaNZx(g;onGH50bFm6O?i;!P2vhQR4F=ENwQTvvFc{g
zV(Y@h{~!d>9yH=>wR;J_L&+mx8>ojaj-14zd$1=GyOXxKfbtQh+zXEptq%M9n5f&>
zsI_Dg=Vr%rqvkE0;%3y^yLYd{gcG|DPO>omLdJIEwr$&@EwzI`D}OLj{q~>ZwjBGa
zUbE&}_dUCUf}TvDvgBIJ<;~bgSo_7TrzEb9`Ep?X=4q9Ny(*g3XUvl64uiWUP2^xf
zWiS$L2;|K9_WbSuCx8+#fk;LGFL6uw3Hl1RCI%z?Cf@cRaRCsGK>z}M$FU0?>v{p+
zcHkoOcs)LE9{4Kac!E_*y>R-yVa#}8&#lYd4Vncl(2nstD2YQd+oL@6A^k$)_~1j*
ze%}nREAcga_oka5)FwbL$g(-7eQ6kLQ}M~}bs~ozUZzhnJbMPGSNZ*6lcwldO_|bY
zgX!3lEgkMeHT>03O5IRfjscF`?2mEyXE{&P!e1{I8RGMptf|RF45y(PVt`$3v<i{S
zs$SjOz&REba!1vgw=FY+e$7Osz(nexC3%CSfr$#KpD}SpG=2&%Vig4K19%+5t0*a?
z?xhu?Pn6)&c}v19KAI1T+?6_0P)7ph(54_a3oCb41M(v?LUNsxFwDxhYF=EjZ-o3*
zR=z4|E{**+H0BBgIol1{mxogehj;&9?Y`++(<zu)1uX%Dy7KKqLoAR=efperFA9n3
z8GyBL2r8US_k7%zLZ_`h*W!$Bb!DZa{PBgu;*V1fZfFMU0&tnxMWPH8UbvYL(P^Nc
zpe9R1VX9&CKn|_)=}0P@y!midq)!5cB1r^C7iSA9Gl{*gJY~eCq3ua#GJv>%5%e}f
z9-LGK9M(=(cU!0Vdn<;R)w8v+wjPR`=h&yyL^X#T8qY&*1H)!&%Jzx2+-DWK)ew8l
zZs#uRnYOfWb=(x^wRQq;d&n25huXYX4@)h6PxNOnh2D0MCgy)NEMUV8#Uy71j1U27
z>r_Clw!GEqtv3YDCyj+Hf0Gev)-oF+Y-^|f{r53lL&WLEKfZl5oR#(JKP~eUq+~dW
zGVjZL9;53{+s}g0AVoWbh6L@i&+vVJYa#soJB3_deF`ekr?P9B&4X~O!wy)VGZ=wJ
zLq9&<@qcykUSpohMu?mP2b?3R{(5W+i0^qN#1+{n+cou*vpR%L$tmD1i+o*l6n2j@
z($f#q>1{eOfVsJ2G_!VP_4z3h%d7Lc^w{_4F3Z%CJN4wiyVWWSL@<K0$KqV*hnh7q
z{gu^Xo5wcyeQ&QGHczGxc7n%=DZ})!1L*>6--i2u<7S9Ycn(ozgATN(ozv1nE)Y%N
zIj;oN-(5aGHKZI`<!{o~wm}ic9eeTitvTJ3?JQ?WTFf`~i>=>^5m51a)3rx*-Q{#U
za{u`aKLsNjD=ZEg2T>G8O+0N<mN%nVL|;&0la@>wmx*0VXkHZG_h1e?Gq}WIS!M-F
z%Z{intiF0O3+P30u?3gizUCarE2HKIW`-ONZtIqHeRSJ_?tp~u!WZWmDDn)_JO_0R
zk3x1)?cGB0oj>m4+77DF^E&1YXHmA19=H7YBKjcW;In7C_Z{Z;-)y*glO|O_5wHRA
zKRVf@A53$;8-K9*f9$)}SJh6fFJ%RzAUkGLL_o19qlo~*&7-<k*}`>Phh>rKXV}Xl
zp`nTNu$0&eFEGPAK=w77A0;20LX)CsE&3y<85zs+(}rbFuR~nOklC}t#y<+6{JLVh
zKd^G_wEpXww3R8JY?%^CATz*0xkK##4TgvGI~^n5hO+XQb;?^dY>;$8K65)Bv85AS
zp7Hb?o1*%o)ZdebQ-$YtEfWkzFDu|GStdd8uBO^)L!bLO=ULVG`4hHCOH4G?dOF-Z
z?2;BI_C!QTkh(6kRGxuK{VPhj{4qO@is1Fa&H^LS@g(Y|?p<2jGPk-IYZ!dF>apg{
z9hEL8qb69_Ds2r_#eQ2NC+RcfZ!!*y!KVh3R=j%gLh{w%WV{%kM(8RBF0);(&3XEs
zPd}Wq`Nq*cISq0eB<pN$Hsy3JaSZcL$fdAD>Tc48CGIy%T|=Yl(=4wSr9}!0Rdtd5
zdQj4EbK2wXA~Pi1da1Q_+x{GUg3TcGI7NnJ)Q&#C%w04o$39*=a^_vOj*d?F*;Ref
zO3HUg1`0=>=&&CpsQWs$fNhic<f28Ch;|yVqFti0r{^XjGH>|Iy)A0|x&nQw2OM9x
zAkt2eRBtt=_|E$Quxdy6ro!vrj?e|SDP=e|#H6}ms@}g`tb;f#y;ljfM_mWXv5tNg
zkZ0t?ASq1j(U~N*P*dw1ubg(|to9|FTajk|oHKpD_aS&5Bm<gYRI%NVNv)$}j_Rvt
zXIrbXPye<`>EbWPYUdxk$~sEpxTVD#y}fUlX#4-I1*nyG{@=a)gAXl9o8dD!K7lSC
z9z1#6zyqOCZ_cR3?s|2$IlHz6SyAoUwHq8=&J&f8Uw`dC3~Gu59tr>-8K)KAih_aX
zq<*&!o?l+Jr1P~4`3`iaXmfHU!B@@5U#dj`L>6Jg$mu9+?g8OMo#{&*5VbhQY>LBn
z`=2Dh#w~6XhoTvPl$3d!5}eR(f@|M!9s+9cG4Hcy^=-j^D;P5<mbm{YFidyM{6SWS
z`0)96GF6v!SC1f7V;%}WD%B=%d!j4!y1wJ_oWJ%D;qeG^LxQytT47O#-sWa&Rz1~y
z`*o{y#n=1J+WMFZ3Qb<-UIRwUlmwo*Q}?2F+oHIY51l_eIZ=3S$}ZNrHAfb51~Ws~
z2S+Ag=DAdM@5m1>Ph^XoV|UD7k!kqmzQqn@m#Wg2i!RvyxOVND6+=%-axyb_0Yz)=
zOxwCw5peI-*J*#A1kr7pmf!9!kh0Ul*s(dIAC3>WJ6`Rw|E#^f52w*ml)rltNPUvZ
z*(27aw>ju{MB)YzH44V4+6Cs`YR|PNPlDvz_z^O~X|o;vBt7VaMGF@Oiy^49GX<FJ
z`|{^Y-i$GHFAE?2D5ien#$h0?F-tg>3ZGuOc*+97N3rb@i@zA5dxIAvyY-~iY@9qC
z0BeXC8D;8ke~meE)?k)^FlkU-KK9OgLJMps4yd!`!w;7B#uE*17EOYg5otE?88SVt
zRW!KNmV9Zw-MUhXY{OaD`3{{0(VIn6hT}fAZKWYrs@zA1o;}b$!loB+b;=0qo%YNJ
zA*2;zhERUV+?5!GG^9O8pZ4rAvLzL9toU6XoS4#W)Gxhp>Ep$BMU_947%#vK%^pK{
z_`6ydzePf~o@N2iphkGkvK2(_P~Vjx(QYuURNv-x<(uG<o(iY9aT6wp_!ye2<$ar?
zLuLjpy$f$4lh`8T1NqDhr}LpgWefEF9x$VZk$c%6>+359udhGd**S8&2inq@n_K?j
z^+#WO6+%m+Jaf|Gha0sA*iCXYo<uG0SnoeQOBWG)&$}Y^H7)^^v-R@3E5uJj#-6p=
zgsD5wd^57m)c!ph42+6en;(tppFJ}R?AFRYF7}~IleWgk&u)>FG!mPmPfQ19m0x*3
z6L<i`NGuUzV=kO}vHQ3$0ZYbypLRiO)JPgj7LAeubVTKOZs!SUP#;D;3K!K*)iLj8
zcreG-M`J+2{Z_^~n22Ra7dU~W?@)}dJ9o|i#9rfwnf1NxOXSmZbND#YlR-H&4u_5%
zYk-)2m6m#W>FE=x>n@$ptN{5J!hpBfqDCu&@vq}}WN@WF5$CAk34j|mXN|Uoh4(Ec
zY4$zRn2|ON)HDKN@Ma#9*&NS|=BkI<i*FT-Pp$u=-<fQ)fep5A=N6+EXIEcUx23U3
zI?9I|AyD(PzhJ6m6?i0V*NIlI^(+d>!17xZo$8_Cs;93%Z|hvzRciN%_D?izck4^8
zQy1$n88Gk}!<KjI3KrGT4d5G+&>&vH)!^?2jgzBI4t%M#Mf+f`^bcdkY}I)v<TtX9
zmLJ}H&^=M;d@0s)Np8WHxmin+FCsQ0`gI03u+ja{h?Q>#Sxli6&aRog^8OrLXHTBA
z<|BI9bRD;1<SJ|`-1GI%7c0vDFS_0XuIK&z|9>0DI5Ij`N*v>4Wkks;qsS;^gc2&N
zl8i!;jD(|PWkje*X^9G{5X#9+i%3YQBuXm6|9;`KZr|Vkb35PL`Fua;sQ3HzdXDRQ
ztgGtkoCD3j#0xVB^`*t|?@lHM?&f~93-7=McLrUj<zwf73A&cr*H3*#x6^{Tc0g()
zt5=wfGq9<fIp%QLcRA-TT%bZQeMptOl9aNGqkk>DIkNCv%n&7f**<*U{0;wO!%DyS
zI|iZPi)a25*`NSh83e+yWzZf3`^lF~vc4Z{K%<6OB01Qrn=QrwI?MEEcoC#QHwbw%
ztO45fl!Ak{t>uf)Z+g!7+2}}|ieQ(p^&v$;4&V3gyVK7k<=jV?Q@6TRQ@2cn5S5++
zLU13`U&@Dv{gZk@BR}S}e)_TCd#g@P%Fq3lx#-`3ib<i(ciWQWq~?b|4SNx>z(Hy1
z0d=~=En+96*glRwV>6np`W@eLUU!4k60VFuRYRw|`-Phm<9wVQ^xx{#ES>Sy4J|_5
z5kTC@adZs+LrNZmCAns157*T_K(_Zy4%Vk@3YxkS9(5Dtq0Jo2_@X@l{|rwGzMwIl
zb^tM?`JLBp2G(`8uUCDim&mLgpYxv>f_s@}F^|Sse!Uu3K0hw`Omjz1t1mVxo~iYM
zdkp%YJcmi8iN!=YWPa<`Sq9Mm2Bt$b%q6!&ri5lr)JZ%xEqL|Yhr3zzf1N;n?T4Fp
zF?pGR1+<G}`yANImh3(2?1{T8e2eJMVyticE+!pXh8%l&+6ApMra4tlx;C&0Xs|-r
z)>~Oz=R_yBknf(;Q$$_pkLxH9(_ROVlez29^H%4#zO(N1`c5CuU;f&Z`uql+;^;4u
zG=ldNyIvC)Nf@C>0T~sMQgTl<QN0k5$(h&YALt92!X+_?3Li^1Aj}ufuYF%sb~h;S
z!h>%c-5nlHQ*9Xg+Y-|e+q!Cw+Gct`<Y4yVUW>anT5PC2Poqy`74HrQcAL5wdA}G~
zJTK6?jn`+pCoPnev_{O{qjf=9OI4@mwoM;S{W<h&?YH-(eoNnYtADIHl3^5H*k}6r
zu+t@GdR2`f@{yD^k;$Ye%t8BmBJ>m@L2+-+wYy9jeNcY`_)Z{{65z$jkqaJOS{-%Q
zVSdPd%^hde&v?4|sFXF&j?3Nn)0cy;&O^7~zD_52>M@?h;?{g|uY{-q?UXZ7eJvMc
zPmlE6SAg&L!m{Ue**ebpHDO^(;xiYlP5Ss?0`ZP*USx&MX}(ys<%n64el~TrHJ0{z
zVy1Ges@?hFDJlg8b;5k`2t5CMad71Drnaa2-c9Oxs^M?H1&|b%toKYbaxgesATsf=
zcGH|Ob7mtUK{3NKBoPDn{X<Ld6p2<I43zB{ygDhVe~HBbpBdp=Dmq3QX<Bus!FRVL
z#HEGxrh3%rTTh)jb;cNNMu*|+!v_uu*Ep?}Vn4-yJt=(<u{K=YCLPXM9{xGxAv07n
zKF-u2Civ``{nMvR*#tQ*6OB0zVw0jOV-YeW@Fm3_r5c-H;@fBKa>h_<T;9-nyCF>O
z+Er&GmUo$vbH~1Li07;HnYu44eP_+Ms5+$??`Lz;t@yOyvWA;Fp^>f&-V&=;o*Vg_
z-Tts126vZPJdaCOu`%hym}3wZBDm95PLJX;=f{uHd##l+(*n3XvuA4JA#gi3hR7Ua
zpSP0)05*MnlxH_cmyz)$_QQ^*g5*%RFvQHPNmY37JU?(~C(j`n+LxmrEDWEMU-;^#
z;ovbNsD+$i`|I;h<!T@32)rsnHgTwkGLrJkZumX`w)cbsgx*leG1BSdx^!t|%E3~d
zwNn!l5?UxLZv;1Hm*lt{sWY9Om<j?dhq_GlJARg{a&g`m9Xj%nUH@q3H1%xgtz>i0
z;yc~A!aO`Zt+89UKEBS7G|Bp4yu+PmAL=S8BM^cGG}nDXE8anWUC45Op)l~4SB^iR
zWr-Wyi*%7AgO=ANZ}~c4l}k{+s{-$=czM%2!^K#U;;=>Q(=hxazvGJO<@Aic6%y{;
zxSclCBWucEZohxk4dppQndUlZKK3g%KMKE+fWLnYRt168>4Ki)($c-)Wirb>MP+UJ
z;vLsd410|rYTJz$=FKgda?f+K%Pd+z4N-r}fG4xh5=ps%8QOdq8Ey)VG9)9*FyHO0
zUxnHLhm_*9kiQ0;Cu5j<Ul=zqvS*+vGIdp=3i*;^Z{#!1jJ0bmr4j^BBi)b#1U<tB
zi4|2;nm{8@YbEkkUOQFwCY16tL?|ydf{a;%B#_zAljcvkUArFP1t<>i_$QMbf!enk
z=@j7Zyk+Wn1RXU=6BwCa$$jVCb4ReliBN+ju=sG-!S6kdC+y!6i#m4&dhU9nu4Wr-
zMHehR924Zi?^en{ESjN2^={sx`by5Xj#iOa=h?H5yszgI9Sl4!lNX+6*{9e&o&CVW
z@nyfIy}Y8^j<i`d2kAAnh3T3>XYmd>BysYvNP_miMt&+oGnu>k{_qS77r*##URs|5
zGumt)H%?=(?J$iUhMlETCfb%=vd!B&>*2-$bl9xGAUZv1m>DP%G9b@ypYrzN{y&$y
z`L*Mt$@ZlJG30LzdPlYQh)YN~LgidCEf^}cXYbyBbq=HeCoZ||D-@r0y~+C3(IdUh
z^!y~tv?)0bnSN<?J0zTb)ZlyF5wMw^1HU($ww@#3YQ01}ls)zL^7a-(j>xGYZ0c{I
z-VFs*PQH>x;~xYMp24H=*mzDSVv=DDqrZzYLtC~}Q=3X1o|Ps#*9WjiCTyN=hm6g_
z@)XDK-@k9}j2QhmkjNAerXK*}=HfcXnVZwe5nXL3ONRy1vWvtlGpobWd-pEGk7ue5
zI@++%#!D+Db!~Q=$I!1G`H?;()r_WzBQOXH1OyD7s*z0W*l%KNe1b}84;asH4H`^=
z|H^z|`mICw1V5M=F*}J7YVe>z_fd%4eE9GnM{WciddSw|vRl%0IZR$+QWLu0D2rz5
z4VvKCU|_F(m^R+f9@}N;_!`Y6fq4DCJ$pvUuXS*U__Vf|D;P0?AvUw*vfopx*IhsO
zyp+~wTB*KwF~TS5bu&5K%+JgtXm-oitr^r#k#V!3sg;#UUD$izz=5Yu(@&+|xIrYg
z|1Qs@nx^9pKdxgR<B;2C^})0Cwti@P;QZXu1)#4c_y|67BxXR=ZfW*6SV9X$E<=#X
znAwd^rMG#^HdcWUW7_ck^7{8T9KoR&2w^-0fGfKaps%rl-`Y|+9o9C|>?nmF1CQFf
zaog74KqqP%c3WrYvVAUhjtxJyZ5!(9NeXVv2{XG58+HU8%s3&MpcMR_!zZ|0&>Q~U
zJicBxef^}n%{yxUwcu2O-63;}cI|AuqHMSwOD}uBzI~|6k@FpaF%g*tqMZ?SGT|5L
zyvNWpXLg~RF~)VzdSwD)i1V|MZz%({@4(j=qmtxk$m+SbxM^=U^+7rn8I^~J^GOO!
zv^xi)q1rW5GkAKKS*YHL>F0)hE^oQxhM3yG8290e9CmyEfdfX?(Fdu$MjPH+ni;y(
zKwixSf7R@b8Q{jx2XLrc#XkVu+hP+D-0TQ_{VoQ=fU=tMpq@JUX0S%apnOTbcz@Tg
zH=;Sl;X_2HomzJft`cQ|L>CmMwMMqtBwBaxo;?Z$E^axJgjS*QYW!j7=+34Q8xL&W
zwCOzneq9B1OvG|GP&3i>bo^f35K~KE%_u(r>H*8%KGX`gI6u+xLjA0>xObZ=$gBUG
zVdkx{CV(0?RLJ2fNj3OG$gA$<@4RHOi;BH5w#tz-?^Jje+D~0+l8M-r0jPt94n;Gm
zCNqnu>@w3DEt|b2Ma3rkuOhVxGG0De#|=Wyu(L7&Z1okAmw<K}7+S_Ia-1oyOz4|<
zV!$MW2RH(@a3Vwfsm(UZs&z8`*5-a!Xb7s%gF5zYgt(DF=8{46KbJoyd3;$!uu`1^
z#Hu574&vo1jt?BumrZ;PxTnZJQuXO~#N1&_`!d#bT5rGw9v$;fv-U|FuOD26-~1|w
zt;n~<r!a_7ABslmt%>LnC50LuQQp%V;|Y}wec~!dcUG2A+j*4Kl0zu16H23bTv>Lu
znG0IzF1T%1=+kpS>K?n=CBP-y3_FX0nFbr1!|svJ;gfiJJ)4%c(&`#~X&}v-fKG_g
zx*A`?5fav`8y}gYT6h15J0<2InpU%?U7RfvER-b=jyKyAf8r3|kw5UpB#a7=W4=XX
zQS0AFM|@N($$bLcCZPi|X9Giqh{+mcMQLDn_s+1_f6sgH(#p=PZl+;#uM?61@{v{0
z`t+8da0S!GS}C6K>O_W$q>|%q!7{(x?5L2CEA&PphQq_y1j#=Hs_o<&24*!@RCDGk
z6bK>}3Jz1NLx5$S(UQt%KzN<g-Fbev7Pc4e(Rw61A@xbWaGQAt9;a3T=%Dob9p^J4
z%j0II5a=!X0cU4%UrTAH;9in>AVQSuzO*yve!mN&VDE~Pg#k(%&<KQ>%t*SE{iJX{
zNA<x~n0+WP?K(nxd*8ym`6nW9jz?69{3RpDkSajca_(r(ZlW^Y!Vl|!EIu~lskj6X
zZ|Rt7^O3<cY}UTTH+N#H63Bw9%x%M^ihMCPxL3(<!`42Vs@bMV^JAHsliZrNAJl^H
zE}<o00Gl~nDh#anEGqV{_g3D%go5Pq+N#LhD@AvF9ao<GC%XBu%cTuBps?a_NQqsx
ze0gZ=Q*=;wGn3rb_J@$Po>cWF-C$d3xStu~v0QDFlHu!X4{{0q0|JI6cZ3*ghkvg<
zXQoP<U4H}C0Q<tJD;a?pNQK>`$d9oBn|Ed#&ltSld&M$S2WRb=VNZ@8n~TUZkb7-1
z)fRf%2@ww3pQ@%<7_TwW%El%hld?aj^;XNN#;XkquDj#3lT+OP!^i0bcXgcy|2$R0
z=6=c0HoJ{df|tJ?$ibGd61kB0BFbo}HHgIWW46~_tz}9k6=>oDc$n$%v^Q_u*uo_A
z@kG|YeDPuw&11LDfoz67TpV1M50IpW(6Yp)oCrO1EKX|~XHw9I&wB9W+<$OI2SElG
z^FJmh_!XufI98m`mD+XhKOTi#jYePq{P)Gsv&qjMd3~tarnU5x*W-~>ZL8eX;>N|;
z=QJ}pm@o&SSyR=%-E?$Xqp{*#TAaP^aIZVB9y};L9%27?=?oHpyL1V1-Kw}BvmPXs
zqlw;4HR1^V7FbNl2=qU;)PAx0MZEzAxf|mSenjApa$1HIJ9oI}>)uU6!y0)fgSnJ8
zEGifbocRNTAt;1;uMSrq(7ttLaTctr@&g1R3;hlDx)Ch)kbFf5v4!^spE{ZLkBZGY
z^;;LdW<`Cqy|lAWuU?yX?>6;M4lSA>(}u9C623U?Rw|Ux%!y1&!Bs_zaju`Iu}v8J
z6IHPiM?~z|#XTq4JOuicvFs>jmWF%XGxAzKbitEmeqPFsbyMaH({aDAo$|S<$<&s+
z$4)Docq_Pja~mDo9pl{L4K`aRhdpRzF=w1b`%j<6p)3lR7wP9yR`i!6e0fxmTKO5@
zIBmIK?92RWINMOl>Du~J0g3LxyF#_3(>WAj$6;gHF_OHp`e{G;vqe!Q=J5)SJDIXe
z>QHa5l>t4HzH#biz4-VJ_Fd(O<>0#;;Cwmoms8J~*DwS{4Uucmdv^z|S|4<%Y;1m=
z4P~79tq6zNbui&~6{imbnG6=$QWT$NH&)Nd*NrAe4ieB;oK2_Wymh=MT;VfV#oRcN
z)28JdHHYZJ%JjAwmKH~<;cLaC!fj@H_#2p0%vf3RS}D1k_~FuAvG!Q<8@UM`TgmyU
z6OrBG+-gBEs{7==D4~7|_1;V1q9Ks4=z?Ok^!I7mPPfS!GkP>(Hv7&*#tlR88_G5p
z+dr|IXBX@+pFMASZc6LPuhh^}bD}z7%i{nDmJ(+{md>QuKJh6XCx2TDcJjxL8+Ijj
zY6p(%+|W;0RjNt`*79(}rjLDwN0iuXgWi|CH-UN7J~UCym_F5bjipw0><!t{i3@*h
z>0bBRanfmE0{C4?sVfvqr=6GBX?~}V@IAE>9#t&G(9)`1yKx*31)ow?3M!NfR;67~
z@3&d!mdc>qltwbiN>fvF86O|6N1-4#B1|jk8%>6|y;?EoQF4YZuh$dTG6G3!evkly
z8x}=7vohYl{HG;8a2xDvKw06r7Tt2o$+Ah7B1o%_s=d+?K`StSrgF{1?uUR5GJoy-
z_F?+*4-JnFbJ--I5x+wQZlI2w+`*yX5AB9-(allJ?4*TV#~gx2&6<s&g-9JAe(jS@
zguOe(kqtXe=H2z9uUtpQ3WwCIrd6BP_tm-Kk#l~XWvZLqV&f_-rO#y6EYUSrpJ$o}
z$|K3K3h#Z3NlgSL3nM6tfRFAPrF`+LR!a4nD;NCxFKrk;>s?^?)JBuPB4+=7c}vLh
z0Y>fS&h2wRCew(Rj=D&E>*VwOPAu?XVCWv2QLfj<Iqxz&$st&P`q8z5nUPUB^LBp5
zM%bkA!E`gX%KOtl{Tyu2kX515fBv?V{xJh_vZaFI!WA}9T!1O#y1tP=K6|12KBLj2
zC8wEedIMyeaKslYUX339kKMM$QI0MvS5^#hUO_~NPRP{jXgWZ9#`vcs+iw4{n;i~u
z0`n(iAPzrJehics!6xnjai~z+0b5-dDO=a8UC69=Cl;%98PU@6L**%u67IPI#9%)P
z29XWZL!#Acpg5xMrixo<&6h%%=S~R$HNIs*Od&BL8!%~E4bIY9ZTDbc<OW>V9TdkI
zr9wTs@%;Joch44wZA~i0!c>QQgwAxNW}6aCiwPOo%jvvt=8w&OwJf!%Y)h2^nLBcK
zqtUKI?udXZLI9AJTO5<bxxK#E0Qta)W6kq|c;9i`n9;#qv>l?=8c`JrsNWQ{+Tt~q
z61yC=|F6-E{g%JLLT~tIr%oe#-$9usFxr~e{;L@!a#F{qPQ3;&oC@^p%T}+>aZ%R8
zP>q(}-v2V-sX!hoB-qHLKn{EV1v)1>#K+zHne6H*6S%k>gxn#Q%RDQoaHra*Vb6D}
z$p_Uko7>mi=q_u4N52tU3_r90Pi*qA&}rtqtjCz>IzA1rT-HUt`NJjwvCYh<Sz4OV
zZ16XS_vLAI0@eJC2&<TGW;XD`H?%dX8R^r_3`zn*-%6)$ZjNc6bp%}gv}Xfz@|hHz
z9=oAQ`CB@8#+oy|I@E@ll=&brEPimZ2|qc@_D}Pa{0V%zbqR}%_saQ#XiMT3u`3qA
zMmLD1&>KE}+_+AF<>WgCBb{qffwfq!acPOAMiDUCHc^@zYA$7EuF>7-r(jsqsV`&q
zFCv`Ei69K~48%g?5lz@F__MS5`K9Xg@_UUnf@rWBFW_f%WDoD)D)X>S%a4ywTQ8QG
z6)TuHulpGp?i(n%S1C8>uT;)YO({L@;5hZERruhf3kr`Njs^!_H}6jVz-6O|7`=+E
zmk;#a1dKMu<@m-A`t!Z+eW`suDNmml+Q8Cr+YM_`LZaFo4^Tjz)IvF(19Plqn+$w%
z(2_!l78QlA2CDm4gV^|%KG`jT2yih41A6eePG>0x(QAz6;i|sAb5LvZb!#o@^Gin>
zM$Zh7+ezm*c;%}Q|I7UEw9ZAnFWLDswJHRFW8I%N>kRg3B`tk1X@L98f*0u?v(5oV
zUlT2?%=kgS<(befrDJDC&3LIz>IK2JrH^I&pZ)v)A%}KcTK+AwJEZbaWAhi-S8_gz
zJl7n5rsN_5G#{<U`K|3a!#3?;HDwI~s@_TWjva8jIa6)t%qtzgY1h2w)q?vN?m4^0
z{9jrCcm=dCTiCh*O+~ZOx$~&f3Oqc&SLiNzr~pm|5@h^yJq2Zgv~M5Z<*6wcRJ8&2
zF7U(&!`H5;>sk38QBhH6X8*hE^I)~%hUg+)b=3_z1FY;>gZk3iq5hB|mCs8`!d5=X
zCgDMxt0n6k7R-n^$3p7JCGHh<s5+x=$LtFi>TT88!Jm8%zphZQBsLFSp<?gt*K^L`
z=C{-QgzP0#XE{mMe8eu`!SvV{=wS|@=Fr@dQsjC4x^CAveFYSRLFsp~*FXbfef{Ul
z<ZGWO;<J}|dW9`!4jE$X*h#RpTWSyrsb&n+(yA$I?w)?`*tgUE8oAjeK*$lc_&b00
z8Kga&GymqySJ)v#ZRF@idlHi$(xND7y46_!AH~JdhEFzL^Yf;=UH$UR>oGRXhJE2p
z3lqi=nEFf@$r_T^l{}dKWnN}>|5MELG@gWvlVSu=mx!vM)vl=3k-AADI5wlk83%e>
zc;Yx0Gde;)^HW7Zw{!UKc)yYD>`W;X?I&fa>7qj%&N5~UUmDZ5Lh=r3ome8g4LY=v
z82@f0p(j`c_VB?(-l|orKL-s`flJRmC>DBVLRf~)X4SSnx{MvP{&|%ZEg81V<*2m2
zZ5og=vtGLg%Y#VKX?(~y_|x)LtFjLzL5;FXJQ{jTJf_bK-qTe9TlrC}fhN>?ErV<R
z-L8%5wi9VsN@dvT)7nY1f<7PLgHZdrb@b#mQ>RYF_Y`*Zu@mM82$B>c(5V#FC4=43
zsD&JoGs9A~hS*<1#^#2AC!+J++KLvJ=2#59@Uw9GucL2JT(8u4hjU*HGOnESbfp>>
zd9&fiCHKWAU1IqfeTX)3yylFO|9bCxtxvx<z3lb!CoEV}%@^N2Q!`t2#+)1{2d&o}
z`Js^5cDL;Of=|<|m|bkT-DfT!DMvcn^yE3?c<Toxy$<h*yih}Gf$HlXw?caP_(fOx
zlFB#&P38&G<K?`uE4_>-RXP1!okL%1Yv;Ui3-QYb5M0cc<qOx*SLvt!bby%=`#tDC
z$8}M{LXV9$&$_32f=qTgWUO(UNF7$Yu9SKl&}p}CYcEbDwbD~?C4iYO{Ex1mKlYI9
zA*2c2`}Ny}r)(5mmFg`SD=^;JIJ5dv_T9TX>ANNE1Z{e!+dGH@;tyg2bc;A^+cPTi
zY_EHp`ycW`_Av>a=#w`p$9&kEv85}oRIJ)m1jZe)BQc&!A~a{-R=+;lYNvZVSmMxD
zRcGjm>ST|;nYrcPLhOz13K|FAY?nccYoBMF-L-FDAFk0cf=QGeY-86@<nJK0u|DN>
zHn2rA=s&46cJi-pQR_@^ANwFfCy&o6Ewup3)VM=XG%M?sRIBN^#@w$t<>0p``0#fL
z8YdmpyxJW^I@U4&C@pEvBb)Jc^l+N<rq^DMX4>kh1x;I9E*RjE)U3UwOXk}v<BW~F
z@+i$QJY_cv!a4C7z1$eXdqbX+l{2ZPrl#*l{b|#|s>xE6ONo-{#pb#NCH+!9hD=B`
zv5C73EdKn+{ri<@=|V$7w(+-;>H8rAcrBSTkFp_LPler~4(`EgQ0qwH&HV0xr5D#8
zd$?<6b+~hAJ9F>oxbTIGV<naCbvXwzJca3DjW#>7lFb%Z$P8prc8?$bV2FMrd-GiD
z2l+6nFythDTqhedGdsQ2uXTzvtRG`v@c@vFZ&sr1_VGsQ50Q76cc-9U&64PAD|=X2
zw)5Lc)HSLdK-rDd@^(s<XCY!3$I(oJQgI|>zwP3+r6Ta1!C&wx5|RL2FVidN2WsYV
zM7xr*+t$_Kq|R>$`)P0ornz?B-3WH1ve|@%*4CRwZf;<!>2v7NtRRn}Y79z7oaM<f
zcp=Cnpx||HAL=|C2a5^AJMH=(q`hnBKpG@fbcKblUjrqRTJr{7Z=3876%|1M>H8Vb
zAPJRr&+np742g-ER=t+HI}=mk^P<TnHOhKxRk2AXCHH!j`}B$!`1}X298)kXdZsZw
zWyZ`%$X+o+NSz`)!{om{zY5i#6&~@HYEjS&L7@dOcG$tciDar1_}ud%^Yv3aj>T9-
zEOKX1!=BBXH|NFxetc+I>X4w07<}roWh}@hw``Xz3I9|@=x4{+!dR2bZeIp&zhNC)
zF-nB5L1;#c{DX^1y&=s){TBg`|K-tis$N4u>M_SlxuCf>a+e0w=d@X~LMw|b44z&|
z-!Dlmb`BPSiza=6Mmj|hA7fLOk9x{s@DW-*wD($0jup$6tqG{IV&%h)d2>X)!LN0a
zRVYVF*?^SNsOgNfKY=urWx3>|uB))iEW|d08^*kBJZ6T{Cvf~dd<r<7Jp>jrRwXQN
zHmMC#_n@QrgQ~5Gzn+dw!Cmr9R1C&gtfvIZ#L*>sVr6BAM`uUdH{2OnU7MSBvX_2h
zKy-<-Lobs8&F(o_ty7Qo)vg}p9b5YiZ<kr3K}d8qMr_MVW8_&Q>DeK(wq0uq57;t2
z-tffW$b`ruKkK_~Temjl)ylr%6pNWS^<>ej;k%!I_%NK51lN*?^C5Vq?Axz%(EVQN
zYckH_$-2U-KnRNDMckTpF2!j<3zvNL!;4@`@0+YYMZbIC>G*g*4BQiG3D<S1>ZF_w
z#&WU1^TUUuT1(x%wDddB4B3w<{Z?jpzbm%ChMj-t$s#OH4V2*Cep*^rX(Yu5q8Nc$
zoRhIREsA0UK72O#R&t!8@QOs9i6l}<)SZ)U=?!}_X=W$%;psc)fQ$IbEVMd`hX@N&
zYQe;X0+n1y#V$WTnOe_HoEe&wn^yU;XsVdxI1<~A^1(&&3?0EBq<Yydz(lPcKx}8m
zNBlo}=cC{$^}tCbG6JrV%>D;&9bI}nu2WE&`o&-X#yl3R4EG&Q;wJ9BZFJ=I6zpM7
z1o&68v&~8!vp+xnkHUfW=&$zqz7^D%c3WDc>m;5yQD1<nCVi*Op1tJ0wp&bLn4`MM
zf(Iw{7lie4aG^ZDdj0x|^z!wlRh^{6@Os?Q#>=N6SGS*!>B{+m?YoSaj>cZ>xSbjd
zRlpS^NBjL2<zfNTkf<dy4<(Uvovqef=ahX~8Mk!5{&uw{0p@)yKNL0HZW$HvR%FGO
zFAqnAXl{Sxw*~D~Y$6`>4P*>20@V2n7JvedJg7_j-I7OVf14U?Z2IMJ?0QZp%I13$
z<8<z7<-SNS@r$%wr)zMk-IVP3l++wE4NE^8uOSXD-K$31yvuL9yrTeOo={YqM+JoB
zR1cNb)aLDFzmxS+i7)DZC_MWkdzgWxb>)^i+C86KdNFH@XA#+vxZ*ghJZb=qB%y0E
z0WX-Xt~`Eh;W!vIk@l<CKYM1>GS_hNN-38CX0mB)*9W;)Cqic<<dfLDUEknDnWw|7
zIGM5;QK8i1ixkkPiYZ$OP_uhmZRHiaRJ<G%?!Ts#oK~O9+6esM$Y<t*n;-uFA?_Dj
zZa3V7%(eX5Z$G|YPcQTSD}Om$B!rqW6eh_BzFf8z5oBtZc!h<cf3qSHg|Kw5_w`FD
zVweW~9%-aC%sbke@YU;)-E(ot95lnu>5tlJ(@@_&GI;8mmchYHM?cQd9Wk4A`l~yC
z#sD?RJ6MzaG(Fw4WSBvkK4_z$I)Xuvae{9#npRxXGJc<hu8l*{ye0GN^E{rm`0=@W
zkEj`8>4pTvtnJ@ZdiuTqbd=dOL7Iy~XkLQ?14pgtel{>L`B}n+3Qu{F;c*Mw)l1#g
z<Z1l%c{6r43G!MnH|PDL+;ZqIfn_&e3!P4Cspf&m>W`i&kvY>=Sr%x<{5>Wm+T7*K
zhi~(qG~>B)Zp4lfLp5QA^)dI%PIPT8k=0>sYDOLg>=JJkO4BPG4qEGLtJ~PRV?MqH
z680OnD%ZWhH4VULBsNHi;W0ch38Dc9dQZkd5a5aY`>@42eGV{751Za|)`G;dA@mE;
z$`=&_t|mdYazAo)%Zw?8I?UM7KA=ZmP9`yhf>jy7!b<!TR8r&S4w6bEI2({6l96o;
z(nQ-+00J&HH&Aiu^1#*#a05I!*zQNor+4i2hV1(rr_M-g)_(nvt$nrEe9?N^@vY0^
zhUl4R($jO;^&_q-(dKf|Ip8z~TwF9wU2Xrj_OV3?liC#&=-I0gfw_S&8<xKs98fib
zXCnukh<kv3w2q=Iv8n^~k;RF6r$E6;S0*fKdrJOoppjNjSHYe%W1zjL1+Uz>W76nO
zSo~}_BZ;t^&0r4BqU+=;Z<6_yvC01RuFx`&2NCwc!4G9hN8B*N`$?MC^Q+hV7NCP0
zLFvO&x0*kHTFL4p&T2`fmxF>8euLaW?|b@Rlz3P-c)l__p5{ZHc6SWFRCi&@>n^OG
zdw-c)X#T{#*B;fJb+*22R$O8bIQO4@1omJ+<yrF#Sa)`=Y+i<h)|S3|H>XV7ViUiS
zCqL6Zp2P&M^1Uy+`HoM=*CfN?nC<Y&EsbBW5y=khmPMlg+{Yg0r+tjZ2I=cN{oK9*
zWGX}O+Z|&Z%pV+RVm%>Mla=8dEFNpg5Mb3!ZekydUZW|e9<}QzUN@!bZeQP%%V%*1
zL<HP_@#4iYgc)+l&^iuDwY6l1)!l}T2mW{CPfD4(aA-J;>RdT~{^XC-B=_vVM;ovC
z>$3BXcH=C*LRm=M6QQ1mHIE%R(w;-<1=JwWrxEkmq(#U1F)%hUCT~suuB(zz)IY2V
zvON~^YBiZdGSiF|tOyJWayeG~a1L#`nY`COwi`P5&D2cc^_x#0%#<Up#uJ~4z+Dx8
z5^%wCA5GQ8dyMT6<hE{|gw8Ny=*?{jT0sBCUmR;~%0qiGcuA&~%9sYg>%gy`9!Fag
z)91$q#|AHZ{^Rs8F}Z$t1E+%hy8o~j-Uwn9BmSrLuA>kUGLe?nkleC_=bUohxG1{p
z%g3U6keso*`r?E5NpE`JRqJ+I@{-9$<R3{cJ*R-`fy4NW*Vle9@-Hl}sxl&OAf^A}
zUgu7;(ga|4&V7X}=#Qt})At!M(-Kv6i}vlk2qCaHmi>s;Jli~yYntfb@zw5bRiSaE
z*=AL?|J9n84@k+)Zf<Q_@_pQr|1{?f-iHs6G30XALXU27rn?f+=5v+OpVtWZSgfw~
zv;!3%K8#$oD(=0R4{AW^(fjvEof9#x(qtx35dYHi=f7tq6x;uw<~-5lt%2M$(XK%n
z^*0Q!4bWJ+@Sfh&^$EjgK3>ugwFJN10GQIyQ1}zdlD6Qh2T_zjt!|f@CWeL(^kPql
zyIaDgFohga?N{pmmR*eCpPC+?%N-ZijHul|Dd#DR35aK#?nbp}?gy?(D?XZz+_mIH
zgi>zW?5Xg+t=qJ*JF<w!y!_}{ulVv7J8r1v=n=&OtGkOn#E_pA;+v0~+ExHS7#^DB
zrn#r$v+Z|$nWl4@SnvA?Vv6{`b;swed%7s%DR5y3{cP;c8l8Lf;xmUm)m`+3%)3Cu
zK~v_<JD$rpb-^Uj8w+RYRGO=UnPO;SWwymf(JqmVWz5YG6?>$7-5Y)%>4q{|A{HQG
zsFqfA_Q&e#HAGqkJ$p8fLsir$i#7KayM(-Q8JF=LXZKi*y`ld1L|ydLQE@?QfPP0-
z?%Jj8bPO6QSM5oB#<iEKwo&WT>@<eX0|{gXH*MFyK1EQS;~jD=bs~o;Iz=V~Z`|0_
zG6$3Pn(?d9b&gVUKfdbr8aE*Wt<xITum5M)uJwO1qg@p9z!dBPCV$KtH?`fgg327t
zb3L0k_i-(2Yfz!sKzM}>;J4(MQsl;@ROCZ>QWtH(7R|uW2BlLiONx4~wa+^>9>XcA
zvJ!pEu2oi7mk5A)7%bPFndcQdo-Wf9v`j+v_z#1@n-l5MD)}_$yONl538l%+kJtiI
z1P&|Hp(*%ICvHDWTpXc>3JBX4+YK+QF6%(b0HO53pFVjNuTaQ56%?^^2F+N!_EI6Y
zoa(7bOcAF(tmfR2=^IBJwF@huuVS5@zs{|Br7Y8$C3I17h8Z0l8g7+h;hs*Hr}e#J
z*FR~TGPC4_*SM(Dke|u<I*zX03)23joXw7DYN^Y~BwP@{$_H{Xt&j{Tv{Sv1g9az`
z|L*tPG!jA!2=sS#_4wi+%k;@Xr8~?yk<10G=FE|*E}8rN^oNDhxwLTzZK6MFLK&5O
zVPIw6uXQ;tVDdc9<3Y<`)W@=+g#k@}a=#SwSf13M<YBT&2spvdvZ<dV!-I(dYJ&DP
z@RRNj@&-?vd~*p*78;L2y!Vub4h5GvxkCNx?fX7M|Ia|%!G&j=wp*Qj{d#@EIv!XA
ze^#Z3CvLSdbqno+4V&f3u68!zt)H!(VZ43ro5iyMJ5@S<RI#b#={PomfTVQgwvM<v
zsjS$1M!PR_m{dY_7`b}UHef<@M7%*I&Xiw#QfY&`MjhQeP&-R80@zR)xwq4T$RE}4
z>D9B>Qk55!^%~lXuBRXNZ0g9CqJH~8vL7cyI}AEezN-OnLH3mrzP!6sO^RfRrMp{6
z><zcmxc-<l5KtiS->{q7HsL13y(DvcZbIfJxgezvqdqqnd*{3X0B3B{mSjJf_kbgD
z9!Li8^9PkdTuOhx*V9Z<ckwRUa^b<F#I@&hH(c|Ri;f*V?eHfia7nfl$ej!Txe(hg
z<>AUv8OJY~-1(K=27{>u0VQP~^-ojt^O$GQnI1%SB{`EovN@O5{U5R_L~l!Y3@iL&
zNltSa<VW~I@$7B}w}$;<r%Y0DkNji=D58#DbrC|H<LL$=s+rkZOea7xERz5!Z5W<5
z#wJNPSc<M_cn#Mw_9hSLcLj?A%q<0kMj}h!CD2dwAh$wNadvJP7;_oEUPAVsE|S}F
z?Yr0@jkl@}*yjCR=lu0YV{FHvmCmJ7Z6T+cd1l_mei7JyU?9lJ93C?#fyp9&_U$`q
z+oQ-H;$bAjMu<VhWK`pvb5ej@IX5$j<=@oRw|0xeeCH)}i`lLIuYTF$<%QtM-9M)I
zMwP_-S?A{*7$rmA51HTo92_#$X8*-V={_4Hr1$*%?&o()Q<<CEKcy77DYafo={_B=
zq%Q?en#~#3yL`v6E?o=?oZP%CFgDykYLXR9hDSq0m<{r0_xsqS1qT$k<V<sONvmbm
zOU&)X8~svdswFkbWv((kocX8gU)+}$k{&VpaeSr8B#REt7t`nF57Ak8sKjrpz+bN{
z^W9G42D&f_Rv=c>#Pl!K<XvOiMC4UWZpfoF&BH@#y5F|+r+~YA?PaYYj&t@oR0S^H
zJ-1Nc_(5*$VVcl-?=_DY!Gg|nbnNR?o$w(=O|d~h{+X}YR%1XQehicSFG+;1kA!YP
z7{L<RsT-hg648jzwYL0&RPdMT7d)0+es(Vs6F+#)<K;eFSp+v}R}eg|>mT%`IYSen
zvl?CYKm0dEE1!`*3^ZsHI7RKJ$BuTlv`=)nW6Bq?@h<sQpM0*nA$Y<63cnm?(TgCE
zNk(=>O5C6oFZr<8_mcZ_ir#?R$;vhj?%_Kg?c7G`ar(N~G<k_za^@-rmoNAZ*w>P@
z#t+qbdLHKBUy89Wg{P|`H!d;_A{T?l(wssMN0`x~#0`u3PFk~eZ2`26`T2lOx6YVt
z^4k^nG8Ns?@_2AyXh16ClL+h<&t3@T)T%=V@(TcaUp{;G=j}_tcFM|#k#}6TULN5z
z{d*s#Gf=!`fZc50wwRVI6Wc0@e`HG!AAZ@~1%lHL26LOv#G&)NqWAX$ANtJGsktB(
zkx$jzi+1jm70Hg~o&Q*0FXupU*_&W%JG=1!XoiMD_ToA248_2#3HyDn+D7W4&OppJ
zvHAa!2TF5Z!CMH@=~`Q@1s}`<*}KeVrb{1?*<aLVi+2;k_UmHzDqSDT7iCEE27at9
zO`r_9peumj1I2#+?M!6C4Qs7C%todN+dj6+&A#yBnO7G}_zhj#>=1O{&@cvdQTfM@
znX~$yBq;Fye-Rblk27{Hs9uv*?pNCM2=tNA>fj(?*Tm$UTQn(R0cl;LWw<zdCp#zX
z4yKN4(piB*Q06u)OZpPoFABMg$S?(k=70AutU<~8-xATTw|_R{yHi$t$oL7rutd%4
zIhg*X_^RAz!=g!L9fmkHl5jCf%j_0Q{En*5A?b|gvPE(NHZ!g&K0E#w<5ihGy6Yb@
z2?<S}Y1ob=R~7TEp4porlrsEpVcsH{Y_I@voQ2HUY0!5sGg|?-VQxA>!NRq3sZOzQ
zhx$%__y!)nfv^1?KOHc^jfS1C0ws%mT`_{eU>>^5J{BgTTz}qSrR6(|UTBRaXIGZ6
zLL>%l`_3_>zkTY;9t)otT^B3KHJThrMqQOOz^Pq!xnD%RMQ9m*<zC`==u}%;Sa@=I
z4e|lT2)98Vi*T}a@Z;RvWcq1Z+>t0_h$K~dHtUJLB+M|F8o<)^*3>z3BBS><P;hT*
zdya>1+eBo<c~ur>(+4VA#TFLERVja8x))t6oaHr{lturMeEIuV$JzK9`L0tByO+Nl
zM`BF?ojGi0kM-Zbu9l#-MkbN7Ux9`aGS~Cl*E08l#Hyzf&0=2|%LM1yN$c8)Kooqj
zkpf8XM{wc-=05d9L~CBspnm-;s0E+7LfD3GG0m9K+@R$CeOEzWRRKXjNTs+D4N{w<
zx9=}t`Xzyf{1uI|4l&ML2LQt5dwu85c$%g)y2Lf#+_yM!@dDSh&n01830L5`#XByl
z9%kiKntR5EFD$w8p}c&PvBqYo4{ok4m#62i3w<;Q8~Aoq5|TLQFh_6!YiscfS$*YE
zlXfRT1J=<q3l3QN{#2H3nHhh2Qm23BpEY;<rnvW_(~2$&y|flKviy+it5y7e+Wkn~
zulxTlT54q#Fz|}?ogsA=@2#|!B^*YR+-cL6a$(wwy?O?WpW)F&QO#`$CQ%=@7Q3jV
zRYk^n1)uT+toEYkl>Sk&E;0XVugb&`a~vMQ`I2d;Ke9qQcxDC!RC0i4YyYZ{<}X|b
zJzt+4Foaq3k*geM<n)I#BKWe+U1fS>&SBRIoq+@GH}`(=FD*a{l?$n~!Ooh_Zc2A7
za@_2H(y<e4K2uW?@!0ZR@1ONrE0~@kw@!liMY(@%BEN*ga9MF?590PFMGUyPYr)Kt
zKkdA?^km=%Irfq}fs)dOJ!w~AFly8;ichW(tK9#mfF|aZ82GUTUHRvq##~<Lm1Yd>
zj$$a(xfm6;1nGf#Jh7X3&MqfX-QE1r)>sn;Sf)_ie*iYKp*OdCy(@SbvVg?4({Tjg
z(w1?;rgP@(B+yuDHUOcBRYO(FPp`HJZ_CQhHb-CISXp!5F@*3XypW=l-NB98`Ym0U
z^>$eLr_3|ut5>qac#=B><oBMEk8;&~(!`vT9sG*#{~=G_OqUNOLF<xXPBln;wMvZF
zuZgjeC<=up5+X2x%2&D$x!QvE{5YT*nSNIBJ0JNao0ptIiAofOr+LZXAw#Uue33tK
zm2w!oXQPKl{lvn*w{HhCioQFsoxy&q2t#|UHa|(nrgM@YH()!qZ-W=v!>L~xIn~^}
zr;^6WVx*%d=y8!$DZ?_QTR0}39C*A{!PT%eKcP$~$hDSt$EA%_hNqeUn%zo8C1l{u
zWiBokQ?zM1|4a50rqd#5#k^~T3yYbdUti`X(CV_Rb`D(nB*ZNEKcpEX?U|IbeP^BZ
z0F?|{ea6bt+3u~YPRv9$z-zZp39*+kZDEW!x$J2zoNMr^K4yBSdO{cbpdUIFcN^4W
z`<u)4{`yY0VpoDs?+3}IoX2D$EJRsp#J3wE$uM`nG{ely&i|CF<w!$H79)`w6=rjy
z6pt`$8rjfhoxXLr^ZAV8;^HCs6V@|9FQ|Q0(|=gqCHT-2OAu1*dwjJ?T8Pf-K1FL+
zT+|?0Goh2so4sRmpN2%o#9XIP;`FYkxMy9SQyJ?B;)Un?Dhc~r5q%_QXUC1SCF`wT
z-^7o5%xfJ|j_RhZDZS!ulZlempr@}j`To+3I7iL}|8Lw<Ln4voDqujYkEF;DGh=G8
zls-||CH8|yrDV?jH?S#L8wlM7;RMDnA@=?DdakXIPHnw>**zkmUfsGM*WW9ddg^m_
zm{#$1N)A28X+h)B?N9>Q&yJ+eh)VpVDmNS{v*uRTOmDCIzb?7lTKL-MWHMdFv+VKS
znlAkcA5*p=n2&^#6j=0C$cPbXycknnux`P&EbeT%jA$HH%YJ)vdTY`U?J;`%`q-sR
zW4l|mXDE}Gm$;O~J4W<<L8Ocw5x8-w+jKXsLd%<={IJQ5+qab@lYl<n?v9L80s`L6
zYy<=VcJ1rcQ=k&?L>N_c8-q}La5P%X+yoBJ*pZHP=5f0rS^Ya#+rTC>j8%V)@>2p-
z759crr}d?^=sf#^1EGe$)H#{iEw>xaWKO2yI1`1~?W4Bdrbn6wsR984QR?locFmeM
zz2~|WPs?}J8RIWt*6VbMQ^Z<I+}+iiHycSDRszRyh~+s}S`ZLq?2zv0i5la(K_?xn
zHa@MA^yKAaMPi|o^m?jpyXY^s($d~PU0Y_`yFeh4y94Gw8EQ}*5Y^1vw7Has(fhBc
z(_xNeyS-1@(1+n>t-qP+hX&V1-z+fH+sk3eUbvQ$(ts$y#*VvQ@9VFTcp9^tUG36#
zpBIMo%u<O-JKXBDuBzf0A~H$r&9w+*Ya~yN<fKPHpFGUQreMs_Ihm&>Rz}QNnYmq{
z&K*jL-?A&`pGmq<m3vfGpQ0R)9U15SC6!rb%?+%p&Iikdj5c&re$$0swv}?!bMDJ@
zOu3sr1&ymQ{Z?)IZElT$WM-X-jom^PoFMhwYIe7U`~Xc&zVn#6`5I|DAT;kQD_cMP
z$PU9esex}(fq4dnXJB^I{A`H}0==U;8%ZP!R9;%sqQOLQ|4U#L8GGd4<_@K2j}!@?
z*N`~hySK^A*9gP`PV97h>wkXJg^NPM2WQ^J$O+5;6CL0B1I{$@FP>hpeVR$}e{GiN
zTyVDH_DjcPVT@(@Jq#|nZ(e+r@2wR)F0AZ|wE80*>uawzH|edbdp^5q8LhM=CyNF4
z{Os(Ppi%gVI?A=={;lTJ)#tkv&$wR>YTN!H3vv4NEnIb!A}{zecDH0$DPcA(^}oCw
zz><+Fi)v>kIZxkeD<*+J{)tCKA#tt34`Esr;GR1J8CR}d+>ARr#eL0KkmTH4Ked)q
zcbJyFd$$wCL}JOH|Hp;lVSWoOgTQCkhL$C423{fJnt;L%sD(7-Rt_-Onq70L|4%eQ
z*VVt+qOY3T;RZRfLTqAnVhXO^z8!ue|BB;cb@K_bxwTTXZH){w=Wjo6ztvO2(aI{l
z`=rb_<8ProrcSE<j-Z;+KQCQhciBCb8~9EG-@*SjWhi8@l*r7GKVKKPhyRRuq;coL
zP1OMPg!^+JEPS#)O?S+yvZvmlE>^JkQUyw=zkrOGYsVTJPgC14%~|~<8$wV=(j>2Q
zW-hBKUqG=Y2~3zaWcfTJl}~VbDs-94p6kl_K`O;)YwONfxR>E+7UzgG^_)K9k0Urb
ztLKCXZ<{X&iIFES7)rNe>yrHk)+T0-*BO%-z_?8)@Zw?f0!9V2Nb$8zySnD*p?gsd
z-5<t|AJXxM6?qe<4}C`i1YzMp-J#ZM&)yFoP7jW~nb+LlTDbNB4o-RR)V@?E4wGLu
z-Oyn5)5U-M#2X$yer&@xm%$L{=VYItJ3FS{wRrj77;;grxEGA?HEI3n%{$cEwZkWF
z#pRNGczK$;di(b8Q`8(~Y6Xc$-`tze{61rU_OgQg`4_Az6Gw#G8*Lri_4LZu-YfJ_
zjB9*P`gIay{dmv3)Q1%j2?_1N8Ks;jm`MP$_WJ8CjK0;?cRVRG$wRk>+U_3u=MO|e
zk2gw|8e5JzQ$GFl@I~W)mtj8Kh#o~i`T|2>^MEZmp{qV!>KgGH$9h$j<+Bq7f2uRA
zNn;(bCaWZPd>U~N5j3JT>HXvp-Z83B4NaMgirmzqkx@{@6J!uusU*3@WNN6D>-6cZ
z#nC46i+iIUV_FNl<FVPsVJf}2LIHV@j4|;&+Nq3Z&i^*Cc?@i>0NzRN&*~b@BolFE
zKfk2IcwNO6<S#AI^24Yzx;ZS%LG9gzA1*IkEudG8Y^+c38QV2^jjQ*e1Egcp=+ek2
z{HvO<CG<Knm{54a=j(mTH_qoekxV!!HN4-NiaZ-VB4=bM42R!nmZm7Q07FLg^i2j|
z#eq3vLKRHAi~=Opy7!USSn+qDLS9EGKOrx#{jYu7@e93}YHyCJ-kBsw!Rdo{{I{sN
zMYh}fXLUqOO?ZPb{jjhZD50|bcJ_||@L<vou@>E};xWN(@${TRQYPKM(ZM7Fzsf&+
z2%s3E*FVAO5*q^*7fKC@`q&VjY~QhCQTu($%RquAFIaH$?uxc;+Dt*wS%eA!kbnTz
z;_L{up9*k%)aI6BuoI(B%50;(e8AdwI<G&~8$r}m^7m9G#Vdq75u!%X9hBnrkn!Rc
zqs=%Q6VsKynaA4s<_=-ALKM;Kv{d|%`YB6n7QZnRwnrv6(Er9}quk4!x&Kw}m|B<U
z;WU%$W^+0vHM8-0e5?WS0%RQ~kC|`}xY5QnE&s8%>Hd88@0K?w99l|9J(7%AztRxR
zE~0{ZGEwb(0zyX_Ge(OvpHz_cj=ojN6trV0Ze$E%-4R6lbn6@lwcJv{De%YsGQKhz
z-Wj-7#wcW-0|1cd(mn$G<d~xkbFM$)f|2E{S>qtT@X|5(^T^{mEwvx34MN+pZQHgH
zsDOFEU27AWmY^6x*gXOVB*hl?c|wyT2!Q}?bamhV1BG~SsF`BP&(fxCgE2Gq+$vnd
zTG=vZx<Y2S6NuFp3sr%jnlf)V?k>c+5*IB^r66#KAkU=?Lv`81<3PIEI}(HHK=67p
zutX7Cr@*(MNeCTG%ctd5;mSjuvQo|tW=tpr)(0pO?ww8B?7Rn0U8#N&eJZE<GjP-H
zJ$ituG|9}aAu>s!pey}Nxv}Fx)baJcmwo>_e3(mleO_R))+lH7i?bu6HShdInyj$=
zTy3nOhMiyBYw}T|4m)bf4U^sT&EHA^JybpVo68~c(<`PPTj-nK83a;-0y#Ho3;Vin
z<We6MaR1Pve^aHJhIw+8a()UQ8xfGnM*W-PCp+}%Y16*ig#n?OI_l8lPoF+jy;Ygk
zE2_~X!}Fe{2Qj4(Cf9z5(>66d>|cR2|Hg+0HifVPxWgaZ;uWbz&rwatZG&L3zCwc8
z6~eYCJap|9a`{urwh4S7G6K1^MNF={cEh6GzQ8hGz&nAg`)b?_irUpGn|Nv!gN7M<
zo330S32eNsdI~|iIerwAoA`*S-@8OrP0jwuQU{0LPp&Yu12RlT>0~?Y`$ZuI@}QHo
zMSbml5)CShfC}^h$t42^W~=VK{L0CsP~WBeM7CCaAOX8A699i+^c`T|=Je+HEZ-Fg
ze}4|Scd+A~zbH4PtQ6-r>fc{RsHV+=%xLS%N@?-e%x;k#%y}|0U~)`xnZCTBTuHzO
z5|GP6%Aew}C~LAV2x?A7q$XL0>@{@=1aXLaG;S#q>BKm|VV8<u^gWbGBU_1{k;GeR
zs-+Ra#B&wu@;UVk@L)3@;sd|e;JHE+Qm!<RLmSVM{@0IFS$J>44REGYY?jO}qpXQ=
z$<*9&nsxjF-J_^fWnd;PP;8CJ6DagO4zKK;s9t9tX%dL|r2>=WANI2iBBt8kz-=4A
zwm+zz-2eFc;W@jakJ|5i{Dk=do71jTtvL8};Dg!iI5b9T>}{<6SK4J?M?VStrHzo(
z!;wY*k+%QaiJX4;2cyLsh0!YUK6Hsd9H)0r+VN!cWX#hOJP8i#|JNk7I`LNNPfb{W
z@##r*{+Zt&xW&A;zf>{+Sx+{#v+qP*FQ#d%U?NcDl^Kp6&B%+(cWu9N^sFh3&5@`X
zG)A%6(PMsykYIAzY^G`*y`nws?yji-0+5Ll%)1qGG{PpwHlx*oAF$NkU$9ir=V0&1
zn=N#LM#{H@CPY6_@RFj|&cCC5cKAjxM2G;Ms>ZO<PegfpN7>D#Cue2j%WLhw9i3kI
z{CU6!tMLXZehuF*xjl<ORnZnxY8kK;BkmqX!SMY1xz+Eirkg$f_I>>9HcQ)dm|{5l
z??30M9C&$V!f&m#rWua-`$9<L;xYHep<>N^s$tRJEpA5Uu%Z;Deyy7h$e7&k(foO;
z`x`p`^|h-`3)9Iit?IWqptIinLeAPXvt}&YxS^n8Sc#QZ{@~R1D{p_eTh%|OeFd9u
z42P~h)N&uI)csY%I=X#S{yCCjFmPI<UYjITd*|q5iAO67!5}cV0zJtbzh}(1YEKZ4
zea_myf)`~h2(E^Jmok;WGZIU$qDm_1>)fDu2QLJ+37?C@aM=(te(cQPeSHQ?Gfm!s
z2PtF*GatS9&#X+2Fo|@KdPdR%s5&KoVKXqfWvjR)&=QiJB!w)P2>sLeMMHIp^duv7
z>sFz4sK5gEGViDrO;hrTiA1czsvcduz;MP1T7H(y7_jK-+e=2v-!ew)M`&F)yo;7B
z8V&B-$LE_<I~pKYo>K_AD!3|WLB+Uam3{kfU9wm~$b)~__4)k|<^FRlyL-2u$eX-8
zJsY44>w@E+%foiBrkm3PqaR7+MW=C>kPtrpqYEP5tXB@|?E)*KTrI{dpWMNIaKQZz
zF{6Wcl19jNs4S)@A5{C@t%MO`S5TTStF2xxT5`L`Zrrn=mM<h`?D8O&v{lmr!543|
zo%@X7BFg&b9i53JboztLgX_r2&k!OxjNs=r@SZ<rm)6w8&N3sNl2-%CrA3v6F3WHb
zQ{cWfrDuP6vz6Du$T(Zml`98O9)y?>#T6EM@nX&Pmocpw;0(Y|dUYt5vt{YDQ>!g4
z{moq{S5I-EW$*%QVc{C&sg&C~&T&SxM4QtF_}(h0ucz+!;>fRHixW{<1=1KF6*V&f
zDLH<Z86f`c<Ei1HOR~*PO#{wPM1w)Y)ol4|r|63EGWYL8o2n1l$B@1rkfURV)9WOX
zn5E6U9@QaEA>-q@{3uIz0<CV_*1c<256Wai{`g5SN=bU@vyXv3oqx@oqRo2~en|&*
z_mr@LWlcAOvy!|q(MFGMt1AG-?~NKAmpp}t3ZN2gie4`DE}a9#H^N8Q@~Nk3w_f}b
z?pHzckgrX1`n_@E021JKp=52U(r*J(dNgl-0n7ZAeqAJE8VBw+o-iQ@3*?8v*ZV2u
zZ`I0s@SST~4kOqtQ`3>;QcD(z>q3W`Ct3YV>D6%%o+|g6U>HMz|J*z@A)nmLkh?>^
zRF)V?aq{<3q_EmpdSe|HFIh6prBAl=qzCa1#l`neOt7?6|0R6sK6vn~kjKnX7`<>t
zv<)xSAwS7qf&^%G^ITWjdosKCi|y($8DE~nJ%rqzShCjs;_RmpsV*I&hFl4LVpVF8
z*VM*n<(E$mlChVU<aWvE$c2b*OGyn*>o%nMI=$fG`&tg>lFjlf!>-H-uD(*N9(%vS
zyyKd>r%Gx@@?jWF6?P&Yst_-54_)0E`y$sZCPLTqecfbq1s9&;7MOyUg7bGfN1tT<
z$Rh!w6d9D=k|kY137G?%KJ)w#4CGl!t<qmF*dFXk#BJ``wC#s+sfHR)zI#~LhesMQ
z>)aTpE>Fz&GbJ9CP<nH9^J2QQ9vT{+DEoTo>G>n`==?D8q#L|oC{E4JU;55XIx>cV
zVbFK;8!l4uEW37aX@NU$grlN6u{-2lPJ}&5|9so;$Pr_(_EyTuBkARwfbwH&oK1!;
zK0Scwcg$x1aVEl5%DinRT<oG3^B=T)R6%0+l(_h{d%)~|KSqPF%_+;wXo977UKF3!
zQ@l5sC-2ptxajfjZHvL>hb_NWP)BW})$r0z0|{ui89p!9Fp3-pgEuI`hD@%VS~zZ?
zntS%*(jUUoL{}X_NipR}VhciISB+ZFdtKi7WD8G6U{Uqgs{Ae57&JPyI-xJF7yN~w
zDNjcFzio&fO!ArEJcJgIID4=5ga4p?pzqss#wfS#+;tnl5DK`{0{hQh_u)61$t~b{
zjh|~Fjr;Kaxq*^OKLrxAKOzTzuQ~R8J4VG9K<FaQ`J04L#gB1$wiy}}Os69*^%j?;
zuW#t}p!3WyE((n70G~Vi@_NheYrz(3fzC$5(4+GR*Gl;+&@r>^ub@-RcdJsTd7L(%
z7++CLBAlKUwwJJ=Z`B3OA>}(E^<)L!z}!6T?cu$9H}e`~Qp^dN?Mof%A%zhKdB&Ia
zOa+blqEr!6JIO^|TSo^dZugl<I|hPU6ql4dRzEs=hJR&cWwKV`xs_;#hC1zCXyP1`
zePfqXoO-(s&52|`b8MBnot+&C=uZmbZp<70W@h!o<Nohonmjgrx4hupyJkOp=|EAV
z_v$KDgv$swB&ypUu=YkDeyC;H)<LUC=Y|dJ@{C>+@@E$JE(mJQGi0s^Jf;LcI%hj9
z{upX>Y)ysYSy`D6H&h@O72SFIx`M!hzdVUMnfT@OW}7rgde3V|H<+m5xG!gl!S(E%
zX{WG$TSoQP)Eu(zk5N<ABb>Fm`a2kLU%yk7`G<e)@<Sj0&A3$kj>@y6n@z4bX>(7!
z+^*)Ceg%)zvzISD=-}!pB(D#*0qB{kLS!*?y}o6}IUo<e1AYYh;H-P!Pamx?vw7-J
z@F^6C3M83;LbUT>QC8i#Gup(Ysp1(osU)BJ{6??$n?k%;ERlYss)+CaP=Dj4OPBg>
zw?T*;z0{c(qL=P@skm4aIh^T+E~5FNBM69#YZH}F{yR{4r_8V==gJFrOzYV?H_zN`
zZ98P|C;<WOU1$QWsh$GIoyA&oYz^_FlPxTEh!6|u-jHtVWUxYTulp+&ESVI!_sdTH
zpS2@=&X+v9H=x!^$w%w(hN8t3w_-qG4nX3y^!Hw+Hss1YYIIK_14Q9Gsc^P19N+}A
z7*d%%vr`iDpl4dSHSBQt<y<zRU?oJws>xpA6iaPTT9+iUXCN#CP+u(LLlR2ZRPiTT
z<@amoqD4-GrisuDk6)^9V$G!78NL1t{4m4PYSC^zWcDrb&hxO~{;Hf*5SmHO4rG^?
zs?K<aykhZ41Dz_P{#|jKahTN|z-dru8%GT!BB+IQ(>r!tBjdT(%L8M(N<^TTTDTAA
z0fsQV;|h`np%u8Io&)V5RHSp*U^dHP0UW|ZX5orj8}+8OOiaT=s*pb?GkOtJyFB2@
zdKRr3=G|Cv)M?&O83(D9;qt!2Amh}bv!dn@Qnf!t&+(yS^{^M;)+GG#0z#Zd?d9ag
zdN-SE->}JPHNes`KC=1^hV0nb*q)V6V-j3UDr0mOt~D^IC(o3{c>3XqE-x;h3J&g!
zQ<kgm?QNxN@7+|ceM{}9<kL{;+WNFJ9i3)X_wJO@1KjAv4=*$&wJ5!4tCy&F*64!L
zh*s;L!yP<>*Sz(!4z}NMGO~w$JcmH8>yR!_6M|iHRnO&7Eb?mX9xn~4E+bUo3Q`PZ
zrslXaszlo6q22j**Hktz?PnchL8_y^e~#)?;dLGzBnx=?++}n5@+P*67q{5*c;UfC
z?bc7d>7<G~c-U@vDq{xe$6JZ;(AZdsqiidf6VU!9Z-SVw^)u&WyUv;A^vVKYlcs+w
zv#5z8EZO&HNcbwMHsWHu!D==abzmqO^AskY^F<wRV6gf9cL5d8q&{iu|F|vn-&gxv
zK(>aq{SO(d7@!YPCdv%e-#kiZ(HRW?UUP5YKm0ZiV~v*j05S`%4aieHdc|sp`q7)b
z%k+*%6SQO;1TD~3{BBWBB=B0P=q(=HDL{;QR>Wyhnr<-G$mmf48H+lq<%4~Fvs?W>
z`h2YK>^^P3MosRn6kqJ|Ws}vxy9;4xg;YYp?C{?H7O!Ts&7@me2!@n6E2R77B-l<t
zrcC9KN>g_7yp+*`{xT?;pM8yZwhIP_mNvb7b>2}`KaCagVSfIVXMC{V$m%(4TK2;8
z?^tG#OeiC;qm*v@;M}=$IDi^phFwR#-Y8e%yYU)tKmjkNfs>JBhXVkjz-%hiA>@us
zA;DWF5V4>{brcZeve~dG$!W|%xVvM(-HLx{0gfPjle#?lJN|xw(7XE#RQFA#xMq+;
zv{TWP+En-2h9Jd;Et}H@O9B9yUi3s?ua{0@Vh+dtrO)Fm=c=6TsBjuPS0%9Hkifod
zr8P)@e;`z_aO*mE<HB}KtlU3d!sRG{M(6bBHW#pz4t?*O{wl#nqtwSX+_5OW@#oK1
zxv*_{&2O0_y4<~AUUKv5YaPG6-#YwW%2uoRa<@gdhC$7o<aTbM%tV17wb@IO&3GU~
z8DLolwZk6D7G{*RP~QEshLQ@bGr67va4|+sHe-khi<i*%sUR(rbN2O^iVDYI(>mG%
zV1z$A3ocZSD0x1CE9u<H9x(_=?^DtCz_1Jt7<ynQ-=@t!g)4GNjpMPTV`$sHO>(2D
zr#;qj!(~2vI2KT<GX;4(jo;zid_T_J-FoI#csSaA8xGipAJqQsj=19VvwgKIHwS!4
zZt?ZLsoT|pI@g>!pgW3T&Z6tLn%6}%O7zC%-O8u(1rP}-lf|C_Ex2u)@bxq^wy<*A
zj8XROFD63opxpW0eMpx=dE5R*YU;{v<!iD^wO;km3=TU!d$-NaHJ8|^>eclc4P=D0
zar0B~kW1>n3Y|J_ng>_b-wz;a!<>DH@2&fDLJAt{IyA=(6eubPacG1vuAV|$S2yU)
znHC^14HPoTIwi$#ZcAdv+mX;kT#H#_wcvea1Shai6>AcbZAd-{iHI02_7Vjwj}b=!
zNcFD$`#q7B5sf>dtHI%&R5+V~t!Y$cEV7I_R>1yuGp~teybZxR*I4GL7OIO*9eYoy
zzUutt#4oQyOLpvh*U;eOmVnOzT|UchwIRPxLa0eg-pZT~8HR}1Yt8qsRWRKfR#~2x
zLr7u~IX06Y1{mfq%gMz8LdXr(w@(*ipACrz|Ft_kt>U|*p}~vw$H}Iu+G7`8goJy`
z01=RA36(iR428mHZVI?zoi(+aZqW^N4=TBFh$V2>)x^YP`pejL0gg<&km+G3PfD0E
zka=L^_Lf898nQS>9_VI!SwqI8X=`gYa+uM*Rp(g|Uq)%{bzU=EC9tnjUUUC+IS!Q^
z4&6+D9p9Qn4o*~r@FT{aJAXcvu626KeKs}FV%VD#6UW@Lq4+J_Y2#Xd*hV?!fBj|I
ziX#-MO^BYjwgJ*OlWlPD1=^5f0F|UK;K1s#Ig%m>Xet&lD3~q2%{;FY3WR`9iXq93
zLX|-34$)ED%I}~NkhDeOE+RT#n>^$xgKSZf84%AYf_AFtAbxn>*~5N*^XAV#vC10!
zq$wSWAuz7u8HJV%X3_a{gOYJ*Oh={kww@nb8&v(qT$|<&EeC&|ect@+`me4sK>&7L
zp+N4&*m5Nf*tRd3W!gf>#fBZ%9Y3JtS+w1$x_+~*>MaPqy}8P9-A%srFd>VY5QFe0
z{niy`0of712;%=aYq60jT<z!2u27_BH%CXUnl-$1dmO@rP3}(nFB33g(0Mm?;@?9z
z6=})c%T3yk(F*oaiJm-%Itps%_pgV47hHz0z=VDm2VkV*)jrRfG4}>w+cIJ-m;?Hz
zGSH+WerC!0rBu8|Ce!6_pL^lTnO;u8`9p;P;4yt?yYZ<$`kxy)J3IdiC88l<OxWqX
zv)7W7#cpSHW9)>uC66}IAc-P`0^<Us2+=3G+rIs^_B%OiJIx&y_Wp}baM)Qu9{#<U
zJB7$dcH<|6m+n-`evwQV@I-OwQB!t-9_I1fw`iacR4l(<y?P%WEjqT`NGor3ZMSAG
z@{4pIk_ILDoMn~CZ`}5#oa#~4Fyrgj5sY2rhGI*}1@m}%6nzZE@yYUA|HN54IC%4h
zhDWzINDHG@<}H)as04h8kfMMJ4R@C7)=C@DZXlv)Dvr&G_kG896*0s6Dc_;y2jSY`
zddcg(?s1FtxqICzZL34c8>0KDqd;}va@5F=rH|X9t$aJMV4?kE(Bh_m*4=yep8lb&
zLDi)_tZnEE(fK((Vu)z`wXdElrcBFA!*;DIEMwup75%5@X&G2fqF>sQXqMZnU>q^1
zi#Ko>q}5+;6f^f%Bp;OLnKG})q&IKY_cNTUGCuY0+a~M3%{#dBHFdEVtRyXzU-be(
zq?lH&*2?T>yfji6MsG|FThu|n-jLldURb})zub{aLelbRh97ljSL$u!81WWT+LO=4
zbelK5Cu!_`E}2X@731c5#bw`W(bt@r6;fCO_7ni6Uzdy&hCy$RyA=DB^M!JFz?-NK
z7LHxRCwIS3mF}?ag5LVinl*Nds%`BPNrQx5_2g|B^f?fOs*_42&#ruof9ba>_wQ{%
zU{;>`c<B$$1zMbjIF?^FX_FCj|I>@dTvVl65J}#tO67r9Z@$^C;iz;n2scA+mYaI|
zdj1IuCd5A>J+rNPUUSbkO$>@29&)?d&p35CD2t4K1zM0!e?7B-82l3Yc5}rEQsb@>
zL6X|Qv(BVvPCX%*$3W1*m<jIBjepLRddRhf;4o`wF&vV6dcje4as#$cuG+MzE?Y{W
zfP54G9~)u!6S^unP=1y@+jbqLYbLFbfuMCzqp%)Y?}Yw*fuoD)wMH~plEI#tlk<~+
z!H)2}CH)1#fC`@(-to*kPDvTlC^2wi)c$g(qTPG<1_inUwMsZCS4ilS7<;?TL-Jy>
z(#^|)gEgqnJ8NrCTQoODqf@7Vyyuf=gwL#FWMnjG(4a;w*Z)$Zpkk3?%-bP*i^k!Y
z(W_0?e~xjRe)!m`{ZVnLlVU4(Bqg2pM!7vAa}sjAYrOm4YH&vDzz<r1C7J&g{Lkx{
zfS3blS%ZRX4%bfDTZ%0tGtKtVq};ncpC0z5`sAhL*;)JkxUF8<X3T1-t8^`7<H3p2
z0WmxJ4S%!yzDUL7y=~gpt4<w<|Iku>WTq((1W=ICzEj7J-DW<Ef~xgD5d9KsnEsuu
zEf^3L;i#vG7?>~T#AtxdozrgK{F7)((~H1TlvJ(0MMXxMrB~2i2$)H{{NKlQmD4FA
z#xhbaD=a?Vysutn(PfBFKW*DRW{1x&-8?WaQ=TFHsp;@H#XI)XbN`*2Z|?bDMN!Lt
zRdqYcXH1*MBujNY^0{Ei7>G1$u|>(il2Ln2K4w|+B>$T0P<qP0Fs$^$RD<f%f51BS
z|HNjRETfk$gZnOX#BR_7WQ#vd3q4`Jwe=|B%8OU}$@pPVy{Su=MrN<`tF`}CLq)8z
ze{`?+mvN74(%XEAozH+6@SYnvZvP))-vQ6{-v0g7-lb(lQ%WHvN=hM$P$@(a8g|17
zWt7k|B9s|IvQkDALUE#$%*-TNDP&|n?@OKgoO9pjd7k@qUjP3&_kH5``+h&;y58$@
z{=S97xxUju$9yj!U=UY=TLDT_jRpw#q~vj{XRXI>SWk;K+Z&g0=Iq&V9ahpi8u=I1
zPIp0<KIjPu2Rn>mzyx0gNjQ$lbzkfbkcWjq+S)pV6EWLSt>Mj62$E~&w(?xGRumvX
zpx0qFxNAX=I(cw|F~2Qp;x|Wm5u+Nb5pLm#cJM3>Q^UuHqKbu~3{7p@o(11()32ig
z2~2AVa}ghAx!+t?QgRukfeyN0DUAYA{bEHGZh@%y_)~q(El4rYSKIvG1)nT_D?qD<
zuq83u0lcDa7sgeWJ`l@0(CsT)GqWX<yD_?TC~<>rQmmcf6zx(tv^I1UZut(+|9l*T
zr~?;%+sJYh330eVoe`-HO-=`hyL!|H8n#N@xCbdV0P@DCZ(VyYXTGzrODwkoAFf{i
zyKuSx-p1V@BRZVas@A<$xg>qxVqAXuDdN@k4dC*Be!d=8y}218Vkq4VH5Lti|M?9(
z&S#WaS$NcBtR)l<0?s$*Z$OM7ywBg%&~U(>t<OGl)xlNs`3+hzye|v%<wL{{)K6@O
zOq|A!<2-=uQT5cYc}s}WD1c8GD%5VpXJqi;XMFPau`ehN_g~4CRQ7ne)T*t0)n=i-
z-P4?;jt$~uCyWv^Vy3W&lENA3{E(L;Yw9IV@ffwtq<iVZrE{eR4CH=35SMJ<qiqr$
z%$cudk+c+iIj&qFnUhBlFQ92;zsjQci<uu#ic={;u;@u)wQ6}8#TG>voo~m)nH8<}
z&Mi?`p;xo{l3j2YT0He|JhJ=bxACZ3*TA6IuQJuU?A<$R^<%Ap5u$jhv^e!@T@7o{
z^Ogx3@frKxpItDE+WM`K%}ar5#RS=R$j+`GMB&0n)Mn~{kc9kd{x%GZ%7QeVMZ%8d
z(60i@+g1TN0;h2_q?-dTTVQJbHemC3Fx7o4KjJo>f*GlBrCm<M13`JZ9A6HJlHKn$
zytLX&bC3}Y;}~F^D6Ij*Vnr^2o>^duFqB0mFR5pz0^*NF%35GrMu#zNG#IoZc(c%s
zOtc3`ly?W#1gF_-l&X}4aoKw_`cMcHOV!Uot*jsKlUym|^(}2Eam_!UFe^qULAgwl
z8%Q(eaAR)KLWTyZg6Yaag_JZ9uyV8u`W*}k$9Ii9$fh`ge4@z^86ZsM`ukD9wXt25
zHg?TMnYfc+I1Lgyy2l+5uSUc5IPCDFFu-FUUL5luI0DPeAhqc&)UK!AEii)N84qQC
zxVNt_rJ7H=zDGwtu*aYnfJtI6i-Tp~_&yetzmCuq#Y?X=6>+_T(uU%gkgQCH1f+kT
zf=7oU<%1qRT!%ZDzz{+SKYsjpS2Y=B7{QDDLSC<|-n+E;bWBj19A?ntI#<hyUhv}&
z7^j*a{|QCqUd(!@^b$a`&cH^rtQ!{;J>X{4pPXKbww*}ASPSIKL!UmArk+E-L0YBm
zZu9i+Er1x%<L<>IS>rjuP)Ojbp)VvOt^IJDHkB)=W_LwvDTn5vDc-ktF9Vk^$%(Nd
zI2SKWY>9C7v00-gNSXKarrSo0QqNo%t8YniPc<s|Lz;WnZI7M<>V!EQ99MBoGU&ly
zfYQSBFlQhv3-I#@<5N;{%T0qVzzw>L<f@f^=H-o%X<v(rG9J8Awn(aZmr=P;a^tP|
zRuV4Yg1f!pq+5P#I4(YruC)#r2LWBeEEGYp+ah0O{x{t_6ScO9xESTr)36cfE{O5P
zBZGuFDLFQ_$z@wF;$`JPH-jkGzI&S|3*p@sN|%snL`E8jlA(i>gPZ|kqSII#O64gb
zAuP!7mV%wpBN-hR^X|Oo)98@z1<&K&&)%9a8`#N+-U&EVz;O|hOW_Yl`dN+;B6p+=
z$^S7A;Wv~)0_P15MqV1liTC)xy9V1F@dDR!#e<&dqzOEmxi@b;)(jZTvUyE9RzHNC
z2OV2d?a(+cH#9X>Js$(oupyxgjXb6qxX*}C!x0a1l$CWKiVr{=>D@MSxAI`@0#0du
zuJV+fVkU_tgWx0yYS?$Aav)T|@+syW!PzL?-U(%jx456be`!R@2~;yQ<khkAvTe^k
zm;R`b3kTU?f$hei%IojZVgq>bIxHB812)Mfsdux<$npDjDwS~pBT?V`LkjHhAw-bq
zLxEG;eRp`wGRLOh3CqY3>cggGbrGHE>SfC=K?BXV$g7~y@OaRsGnce%T6iC&q(nku
zvJbASe03?AL=0rZ@S0nv*REM}9o!bp5Jn%h?0pNI7N1*N<;PE&ahD=b^Kgu<0=)($
z*s6QhHa7cFnYLG_sze@cOu)fU5x1DKbs2IaX;S|bS_3E|?h=xoR^(LJ0;REO3BW`E
z5Pmp}!*#>3zKTf-nLHamTBhMz^0s#+v#Tc$^o$46iykVm=k{)yZn$QVh?tt6u8H`G
z{(*tHtl*b}Dkc1m`2%<g-FY2su*{}f8YgZotBVrjwEv^2;%=y&J!O`K;Qw*1Sp4Jb
ztP4Xe8jGEEB%3z_xz}ubc~0#FSUhEktQXyD!R77&-lDeqRDZVnaGP)@#>0XG_0KyW
zAy;!MQKB4(i~^i>Aqdf!%UT2}Y^d3|$k5PBpe8%Q9De~}2X1Df(4p+S`vLzf$8MWr
zPtBh<PZ}@nR!|Tz->mr%h>W3T;;5dtqtlE;_Dp4}S)@|x{{=NWVpT8nuXWn$E!(zf
zwO<xv-3Mz`?yEW<p&1rE7t`!MZkwa5YS1>BXEutf!Kk#U0b9@azC(i4!7ivG13=O`
zNx<OtUNia59S*1fu7LR_luYKuyiF2X7TPzgXYS7nG5F49Q7?1rd_6n=m$k)Vs;?4Q
z(SwLjfil`O{5zP2g23D>WZZ^=`o5<fax~KWvTRg`jDQw?UAHIY9>#|Og_s}i3VQ^x
zDB-rim>~besIKvhj^s8ILd-D6LE3o+3j;aF-%&7$S+g||ZUFY`N<P+-&WA_G8HX=l
zPM{#xg%5>sfT9>j^|)VYq@m(~_S{kHK~f1V{7kSRXp|ka&X&h&P6mU9?n)0zqwJsH
znfa!TCjA>;wmkNcTCB!IJ-wdzU9vaWL)5g-ES5O5xVd#Q8m}^oXx><9mguma3bc|`
zDH`0Wg4XrIKuaXfyaVSmU$3i~n89zk1O-ZH=D_oLn|^^yH!}1q3&LZ;73P>9L4Sfe
zj8~pZMBhVx8)*1AwmM)y+2<OkCzhQLAq)U*PIFaCyvOg#h=l>R{1NdCi$FjZsRzSZ
z5E>dvxF9TC=pCneO-}nfhLnXIsXW&9qiZi)^<?F;$<FktN8C{+C}j$j^reNrKr$-i
zAD1E8c4Z;A(YbSz8B~LFu)#tlK#4+HQY0=s|33hlL*T`hWV$0m4H{*jov}Iy=;=3L
z7B=q}T-N+r40{|=d{c$mfQMW7ph(IFrs1?6enMRG^U}Yb2M9<{3_$!MNxMaWKXGN|
z;@^S5O;BTNh!7UW3*6rw5K3HsAABIr6NR7-1|$8AN<{CTsEHBB^H6S^D+!)nY<_q#
zZfwz!y3s-V+uLl#vFkc1RTlMQ$@z_4D6=1;ewdYMx*F^_nNlADRv|c@aX{#VE^<76
zB2<~7jDARq^U(R+ymhN&r7c||NT?2b@ZcJ^BPs-Ct}zm#Wg%f@Kr1JCQ)veVRq}_}
z4{jYzFccAH92mWc`>y`$*BQ9V>4-VWfeVP3Q`BEr9E9@R3<`?#JoWP00*XK*jr!fF
zsHv#kWDymN5Zr?@va;E4-_8aZVbj(M5|W5VVgyzV?{4JpZw_;(Kl2>_2Kk-5y-Vl4
z!hkpmLhs8``HE_`GWUNaO@-@8WJfF@XnxkwpLvoGLGRBhdV|nAxJ&VueSd*A!{FZ7
zNx4i=3&D?vQdAF4HM|n%z2AVqfxU4+`WX!uh1L~vfbA!3DOOKONftNamPy3|Ejyph
zzxTtnaLs8vEvrS}kD-u8tHwHSo+Cync0{!zVd)YsKxU59xR$CEAwjKY_j_`mZXLAI
z4@C<Eq?ocfYOR~N!Mmm?SgIwMoNupWO+L=f^PS^MOTV_Q?N(Ubs^;e_U_L}fhE|1H
zxIp8r^GWRMyS<lw78MbBj!*V-7I*lDz8&SQ<9TM^K6wY2FF~W2`Y7cG1`WyKfN+z1
z1cZe0@P^6Kg|^TlEf^*&GKj(*#F^)U#qlR~*~G>ZA2ju+{3}}Xlca*zaX8ETLZECK
zw_1K>N2lQ7>Dg7%4u{iaSfikF;D*cS7oAnS`PET<Fw3Z?!Awp54Iml&2E^%B#p$YH
z*?ehPc5_$dv)R{?vF6V=>sBMc;~67!Yv-KBGApeN2{Zq)ty#nN`MS63L6hvibN{A%
zIB6^kAC3Ny9CZXMg>*lt$wP`QQj(LMG2yDLGYk0)0G#VzaecXSG2Vyvs@@V20pYjE
zzX9+HPWoeW^Av^(X58BA5Vx~*1#E(%=sHm$JK#Q6UnP0I*BBNOpgofSGL2_&#6V~<
z7w<?a-7kOqbC}U+P{7h)!C{ebqX&9e(ZqQn2~>ZXf=b%TTNdJ*Ha$o4f+NQ8hX9Ca
ztN_Q3%$4bgXaQ_A9=Zqs%b$Q`GCX;Yknp?{l$}Ff$UZ14N}X91#yGQ!vVm2Gnu@*O
zR$~$Tq5;3Oysw@59za+QGz+j+z{PT0di@?XhucanZwhf5Y{=^b<#qoa1s43NLK4KS
ziSa5xH{b@vrA>3j0J0MKgo5k9{{2!i5T2iDn6x{5|IHgu&wXz_SPRkDl`F`qR06Lf
z-lO6h7v+|gCcYlct-;d>b6&XqjureH=yM);iUEoe!aM?PRu{ndx)(X5;gAy8qUhm$
zG@i8xH}Gmif$w|^2r;WL)*#ws<A*AbWD}F}!ejxE-CJ@Vjtb9!Ht0t;^ud#cTa@kR
zhNE2Aw{z#j!PPkp2gP38j(kW@Bw`qErXCp;43E%3w10vO4L}0+!3io1GLH#xgm^zf
zqQcy4`G4o7WD%m#0ZhIgEHtNYg3+2_PtQy6v$8PQu2?8nplW%J8Z^wV_5H?D(96^Q
zNq2Q@x^N}UT=8G7aH$*S4DD!uxjUn`CMIz+qNi$SAo>8eFtFC~KQk-31z>)=A0Mw)
zWP|_=P770d5>NR)`26OTZb#<*C0Eg-5!djJQcBU~g9Y$9k&YDa@p{IF8O0mxr!Jx;
zVm%Hh$4AIYnI{+e*W;387?hh*JP6lGI<6^Xv>4fHxJwyQ;sAnv0T_eEf04ifFh;as
zYyNn5J`U8*tcw=SV9+e@l$W120@<WNsq&Gu2yx<jkx?omC)W^ou9mX&k|K;k8`s;0
z+s>cnv`QI~>cr<mLD5<=oq`5R%8JDgYoPe>&zX>zm+beoM#Z=QrwO|ovaiQVsoSDI
zz$hS(W)iXFYuA#n{j@R4=%1gxl-EJ5Rn%7~gCh@oVMCD4%$YOw@t?kJVz{j#%5AUI
zyrGk}=-HI3zMfb#>zq0AN}W6~bZ6zA+qd7r>%3N8%{d16*?uYD3R9HBR|p8Wf>qf0
z=oVshls%%OE~u(5RD`SbmSxAs9i+8X9WKG94&(hTJWPMD=`xUJ)AQgDL3EG{v%QiM
z55YNReg6FP{=}Bj{k7nJ;rZBp|0#&p&}XnSMPjQg;6PwnNp*FMXDv^a;iHtLCeebI
zHBMIg=={tG)TtO{C!ElFKtxpZJw9Yi@1ZXS{RUXzm@Vp!E@U<Ic$g7u@b2!8&<5<m
zZrBs{!lgqRQL^xNE%FQqSS!!9>GTqGVK9BnpF39yE+guR>Obr`WQtI>Yy_%o6>m)M
z$eu1`2UfTqBBU)_*xl6vPpXKrY*|ky<Lxtti+PqniXRCX_EfP4a7^vL^L(kzP*)uW
z%R?Bbk4Q=L4;@_#|I`8?N&ydpzvp{hFoG^+pgCKKxt;+~_hC>X2nTAJ{6$UPt8e=y
zQeE*NGBx$iK;L&|6ka9wgCoo>EDort6;Bs>wjD-x8a+RjMDqT2oJ@_3G<uxWr%zST
zE2pNVy+;O-j99h2KP9HoSJRoj)WRl7u-L|vvO7S-p{YjaNj;qFFj((>-rc>Gs$S_c
zk84_3wi{QipHY{xVaDL%oOKdB>%K<Dl8g#Xn#?Ura1ixRF&LS5<;rQJK#<>o+iwAI
zAmxW<00$vfP=p66AxS*jTQ_em9k>|?^x0b_B_&GKIxQ%H9l}vZtx?gn#jgrJe)x)&
z_qJ?P+}>4twYB5Trly=-ZH=C3r%oIvCnx54qV}8MB(?N%&V%@P7r^nWPPKI@hX&*1
zus~UNKUPg;z^hVzag_mzu4&-gwu6KukOi&(zUFn(&Xf0^l*UCc6&FFqsgvxzk|;4G
zj#emZdcqI9+iPV=M1*Yn28zN#{c_L^)8NPB9G3+*;gC0Y5#7IbqJ1RBzW`vMx%OoG
zq=tQP;I~v!;)j7(<b`jhV7T!0gIy%Fwl4TNHGs|`@rFxA$L^IYn1RtDM%Pr`^~Mc+
zC5C}+CNzD|in&+iYs(sgWh5<H5Pxvslx9y+x#~cL5*LaJ#112bj}--1=~6GTO5^*l
zYPV)3<6*siTmUQmf!;fM;=v%}@Fpd_)8LH8wfb$AklrrPZu>MftD-D0Uy%yYKyT|4
zWG%vlAhJybEkg8GQ%pbr*Lw9mFm5Nry6E76hjxRrAxQwZC9rR?`9Z<R>ZC%u6P0xv
zue(m#xS{#DDDeq4T!%&lrzPUeb8?U3o2G3<6@K9pn=<rS6kU~|yYuOBAbMdL86#J#
zz(%?PAa(qZH>V4fDH1L_hJL)wfv*@To!>k&NQ4KKLOljyzJd4;l>a9_e!VI7WiCM2
z$w>o_$_ir#>YJM@47Ty!+%*S|p1qPMZ^v!N6QYT`1FQJ-Eryrusat%b2mTn!SHYOv
zeTNRM7WV-`3k*UJStXDvu_=B6Ts$^C;`Hf<wO#CA408VLwD8R!%i8PgVc@#{^@9u=
ze)II4@-1L~!dPibczGMIerCS}z7K6<XicMLThF~NhdiM{`@wcG8k2)oQw9=1-;S$g
zCK%-;1Hu8CytLS0uI%8RdU$DY_-@C#0yT67Ln+gbZ;Mg}ZAoFX>KL6c+jx(AHp(X0
z5JKOg5xIdZ0g^M|*fuPHB&7kDKYx=Q3Q^oK2fHX+5K%$Mx!t?@%P$$|wd~N<1^9Y8
zh{!PU%v+~C4|=WN<qs5|rrB`1B=Kkig@iPOVMsKKqRL5+Dtl5M{#C0jvqteY&yE*C
zECTnG|E8Z}-mPkanv2Zfpk$k09>VAl^tvo4Qen>tgY0(GLR^X%)j-Jt5WwexFmdvh
zz>Ai}1MirMd5Oq`V~!%ignkIt5h}uneg9zvRY!ej+;!;QGyi1ymJS28C*&8c#7JA_
z2!*AjDLpmxN&%?=+%_A$B!Z{-O-u|8rI1s3zi#8J_hqW#uJB&yAH24*D#^Hs^lr)T
z^F(6{5?@AQ#&KxbY)wxO4+kL4-sZUGDT+&K%dL=WrTreFi%U<ug({vT5l|vP!jbXE
zWLP0VbLZ<!zQaQU(*WhmEC%%s&vO>KW3-B)L-s?RlbPpO+Q4>mfS@_)!Se9}E|`N-
zL8}j8?w8%q`pHWd=@cw5K`RSz$HY(HL;#y>!V7b8V@nhwJb6#W3GKOkdl!7)VT3}-
zoIsZc*%jv=Iq8Ds%hK#ew;_;|GJijmaT^=qJ`B>SY_bP9w9lUhQ_?6okpMLu!pbsZ
z_Y6szu(hsS`2!doV8p9eKq0<Ipny{sh$I?CBqKwf2S^!`(jaa)a8KH3GxY6P&-W3B
zLRqKJ;CF&dz6IX}V|@X}q2&oZi!YtsBMZTog+-G57TlT&c=z)w$4X-v5_@5O$-#Iu
zZ|U88BPCgBs)#Kj{OHf4f;PvM7-I52GX4;p!23~NHiM*tf%O$%@ZL<jVe`s^UeA7)
z(h0i@l205zesw^}Ypsb%`d?h*eICW+;<CctO4*jTGWUFyQ@(vK1LR{Uu?=QN5Uq(P
z-f-3rz56U(dEr3d)>D{b`RLHuvybiv%E$nEi~w&6{^{)tTNO+<1Y-CecN<}$2sET=
zkedjk0)G)sC@4TotkJ1W_5}$~cxh?|%aYW?N`P-*aZpCXLlXw@2IqOB)VSLL=EY6P
zTK@Cd&A~1gMu$q)K`=&TXUhj9<H5un8W%SU=ad|7ar9G(K8K+1L?4Vg0@)g-bGG6<
z!<h28uIa0=;!p*QXMR_U;~1J?inBWTkk<Kqx!3DZIpYEZU{HJF!;ueV?MY^G6@K_l
z23(-*r1T@{z^6P-2k-}kn1wz=cq$1lNJ|aKdm{KZ3P~aPFmg5wtF>|VO~lBMam<UC
zFS8&`L2!#f`L;8FG@TJ=hrSq*QY;LBAYgMZQFk-UFCLW>qM)%b5qGhha8nNXg~A*U
z)|I9?f_PvU0Hayp8l3RH4QCV-&$Y!O$@By`R*z$Y1fkes6YjtONwQkzZfYt`<I*=Y
zyc8cV1TKL&3Y^F0gR<8%phHA~fd)kSAv?r5@*ki;x;b;>D^3Zkhq=jL8XL2af&{$A
z=EFB2J*5>&(iIWu+iE<aY0#ITO9G+?%0Go>BnQrd$bAuli%m@4!a#oWjq@z-2m580
z-DE#jx5~L?7Mb~Q)<9FUl=KVG)lOSe$AAG{i2oL_6H>{hq5?fwm{-=M0J4SWEf)ho
zk(#UDQsrq4X=!H%{!l@D-2>0ub%7II_KwMC$A_$5X)70UD&~9d3!_YksENjQaA4}Q
z(!y5p^MlmjfNOOY(%^s?pebw#IIvD6->MULZo8XYt+z?d!LP4zMJIC8gxSRx$xc#-
zQCtVQK(X*ZLx=H<SvW{pfzlx(cp>l#SxisO6-SYO8o6!YRrOFEqIoeX*4iX6M&{Ob
z@dkD|9WF?pm6(1d{x2q1N4FmL3Gr9pGf2~zVwcwa?w(}F&*Sz8QU-dl59tH<{^?!l
z#Oz75a7MNt;%8cP-RkqF2sSsjh1q{3nQFG3KJ0hQz$iLmvG@JQN7{BTx2=4?uqv@U
zvg%UA@Oq6fqer^}w`x}I;ReJZ{$t%9<(yxDMN#u0P+Tze?~N|0)@*KSXjty|4335w
z${(p*xpDE`d^61>GdjzJ6ItGLX7#wX$3<OG=)PJ$0&6^_!=ufmB>0LGwwie-PF;<-
z{nPK=!mtcpV#I(z-Ay`@Z+ZW^Vy(E=vt+B!e!BM`$M(2KzoiE~6Vds2(CFHx)s@C-
ztXsc68{|hP28!swB8$|i9boxkjzm+q_A@#OaxGj=xbVNE@9HDJNZ)!bnZQLyOo;F8
z<-=5f8Mwe|qqm@hq#22bb)0H|RR;7`4zuP!BIwVR_0m#)FqwHa)Kx&aS+y5_C^8PH
z&q*DmW3dOaOW1pbf8(qcNg1j}kD^yvKW||30uY%8_o;`kZ{+(jEVBTNco90}M*$1J
z30mKFtqYwyUE7W0O)6W9(}o^KMeRPWXTE*Vj$>dTSrncqC#Z-5B<*>C*I;3}<WFz;
zP25fv$MGh+b<s{YJr>gYbF+DAsf@jZq?df<e92FfyG&fm<BSVn<*ST|kEr;Xrkfvq
zeNBw=jRD*jU_)3jExq}wZhDFvTf6{IYBGCkO;%a!C$V!8u^i6dt2m%N$5jNKQaGqn
z3=0JXq906Iqkh|L(^lD|)1*cS9!H{i%mtP$11}drra!1U4QiiRiy-m$?74H1i0S*j
zj9Vk$!1~RSW#X_8PMk1diZ#q%uOK+a0sKd4sW+0C!_UU<>l+35H<eMmvwr7KL<ii2
z$xWWxRx}btFkbJ*2_A`iwzWh-d#gs<DWIanpwTbVczj|eD=SR%9srx^O2L*{Q#~Fh
zYLNrWc#<~bvg2!IGqF6#7mq7f%c_3jHE`%PClgKE5DS11c;)D|M@(v<asvnI9-$N{
zk5auGbYtw;jaLy7F4@*l9BXp-+q2Cu0?MZ)53f(`_lO(StW>eqhO%`#n#;NEeK*nj
zp=|uv#+uWoIAf3{>_dd{ILl*rTM@$zKXJX23L6*>syC&daTh+Kwv|L<8T|*U6|&nE
zNk4+4Qb7Ho!@{-d+sR0YZ;cT{K%<+{2Hrw<U3oO2ae`ZN7oyxmAPXbjkc^cFBhz+I
zwC%A4rLGU<kNH5ifwyQ~roDE%!nnrk9zMzR<rIS?4s|bUNo@+6r?muA&MC?w|HXCD
z8j+UMU_EW%%$7MzLkqlp52ZEFN>&xSSbQh>#8`KiGf)TNb~DoJ#+veZodf&T)c7hB
zk8q(oe}6kg;4Eq%C#a_Nu@X>9U`aq`Wg;G{D1=Fnw+<aS61)E-B=4xT-ji2M^kMl4
zHN`HG(h!<BzKuSbNb23)s^<sfRni^>wkIf_95ib?{|;-=z*yz{F~eoNyiQm#m+b-|
z$jV(jsk7%w{oqRHVTYy5)_>W!Yplhv`*)m4QTT<Xi}K#w$&(#mc88zk6OLD4t>m;T
ztoYWNzh*b)xM6XvLpKkyYx?<E{WZlrw%$wEK{8L8J({km{>&<2)q!1_?-qpdFaXdf
zLkogVH6cy?YdF9TYn*Sm`8alKRqS}`b}S*nn2d?%7y4?>Wy`h<08{QRj5ZOvnEZz@
z46Mx=6L9xR4afE!D2nh6>DilqfbE*1KToCkyA{f6+`qe2j0p5l^NQ*1_Kq+=(p#1%
z8rb+Y_WMP|`p)2g%uD_lggs!Y32B>=JIF8y7N<<`BHINy64N0Wln&Wz-psS{m$wI*
zq3yNTU+?XKo(xnzx*rpsusbKG1m%3XvkPl9cU{AiG>?@SX+dV(0fgG^Y>AZ?M3jLC
z9ADYWt9QdjO9IBVyl}A2`)tUsykb^gC*Z$gbin35`%?I27Taoiq5#EPJGe$Vc)=!0
z3iIBK0nDi9qW)08C^Mv3EDfe5x5T&LpdD*froDYVTe<+|QkDEvc>V3Dk;R(R;>Be%
za{Ah5<c##iysxNOm6p5Vtx{&wmoJ39RHpm6<c*KuJDh@w&*}1I4^%9G%C4f6;J2}4
zr-~4^E_aVOQ*XbBA(Ylq&3QPv;EK41zK@l)2q4dr&te-k%*%+re!IvM%q8t2I;!~d
z5=$f7Z+BV23Ym_f>y)}nyAbZ`XbJ7)!-s4zjlu>+_CzksNWI>L_*;+9XRV)B<@X64
znWyzjw$6QJ&&nKBkhoMRWt^Bp$PD@W|7O1bn}rPHKtDo;D~-t<sP=w~P^i@UEomX$
z4~ix=lYZPH`?f-;1ITqb*dh%g&1}5)xuC4UT|us*j*bo*Epkv)+;lojPpII=qq?pK
z#X}MhXd?OhRb$j?Y{y3^NVY?7BwLf1RPf87PeB4;mMHiVGX12?G{C~-YI8cs=XX?-
z439I4=VC#RIQ49({El+Zc*>VMO@H;?4tZ;oZ@~#b$zuF#-fMg@2#gc72ZMms+5uPH
zbOY43EDTuSsT93SDW1NyC<&z@l|hZvfn?p*Bf-gf`AzvaA9TT9Fb;?mfW>Yau7Ny6
zNY7#rT@g9}NO#WWP%L0d&4mHx^8MNJ=aW)m_mtl&&perXyHLa?UhC*%d}0aBh9^=X
z+ih*r3y*)wZ!CpaX`xesA@C&7PT(x*Cw+SWSsaMo&}Xp)ZDE?41<m}LDk{Z-*2=n1
z`ApOh;)KzI7vcMYURoDm&ZOA}S-+3O-+))pPDy+p8H8^F-=}ckB4Gq9p^Efwich}R
zgc;B<=0m4fG_WT$pyXX&0E~{=D3o0x@uMt|otVi`H~_yA1V=;-G$57mIo6NUZd`#j
zI|O~Fza1rUZN|?}(<v1JkuRt&Xig|*g^Xh$Rg@(~PG+o0W9I{-Y~_lvSH;10cxyw<
zng+*|XIG85tI``0gML+p7Z6{2)DN_HYPDV!-*#7p-(bU($P%5-KR#f~QB8-(cAbh<
zARWladWn<rU~d)dV8SG%LeQh8kag@2-&?nig0!DxyK=RFz)Q-hN6y4+zl{p>d$w!Z
z!r&+<sCvE{ojW3tiZwGaiHQcJVxpMP7WLWA()S4zpOG`fh5sO!;o;K%Kq-|wfIE?x
zMV<@MRK#pz#tDFZs+~81+shdIwnb+ybt8zB&&?f3k5l!ndndU{0g_2%H82bU5W#xA
zK(^N9ld>i_>R!%CLrU)$aD~~y6mV~u!87ew{rcxOrthr`9&;wR2^j;Z73XFk)tk1h
zRlO4%WwC*gWFdiJ<@|{u79)S*N1^u@C`*Bj_&0JQR@qk&LP2Wyu+sFGMM7H&1AF%9
z+pT>8yJXvj<hLM|`Y68H*9%+cyP0MEdi?+SzY@Z@2H^CYV~dUs!nft06COTvIKYoa
z%_*z3=f@966booxceVf;k$d_X6Y=!^tNOJli&S9yoBhP?xBX<klLt_l91t~5qi-=6
z4lMM(o#iNg8c?in$D-eIboM>A&N!*SQ|7g=ucF1x>l8$eJqIS`z^eY5&+{>^8RXqb
ze-HmQKna4sTq%}o{L98}okXL>cY2{dLUiT0HEW_zW{crRoOd2}2MR;Vm;M$YtsZ~#
zyh6f>{@fw&{L|#aillFce>Ub#3u<3d5s-r!?Ev~R?1u&<ODyanZW$<2)8++0#V7)P
z&1D=xM^TVNUdMtaEtc*%bjA2ba>1Y!JdLUd&?#AxrEH0S2jxPe@=D6e$lCt1Jafbe
z?S|B{n?z;*0VUH_pf;HPrt{J*gLc>TU`=?F*tDpiJL%p4t{tY3wEVN(NTs1PCTJc3
zr0oE=$b5uaM5-1)?Gw&J@kRtN6dcVAdH^FCzzsmp$KUO~>UIyO7!BCMkiCvb$>FKE
zEnh<27^ij!;%U&<={3E`M3RE*2ryCA+OVhnlX5z&-u`AHbIi3RP4xAj!w)t=S^4d(
z;i4*(i!`(jNdo)hPa6Vhq=_do2H+_tMPW6P-DLIZi<m}JX?q3`2n9MJ)s6r~fa}+r
z7Ak*yxSWo95LQ2a{J^uhtyGNBANBMd8YUnm4sXD~c6VKub6RZXJK=7Hf!{%LsHWOQ
zx1GV9#|yn5PNKeD`1Ss?&E=)aVEL7ep8`_ERFmLb%zCLj5I6QUz^MM+J}jXC%QEdp
zy(MLFN1{cy^6^ck5p`o0g5?f*1qrxp$viqmX!yUJrTw_>$zKPv8%=*>maJYq72lMa
z-`3It8N9e;9O1)(3H%`vj?$|ljKPVI2Pd&lL*s#H9SqT($jzEEYV>|J(z2lQ_=Uj=
zj2*9lL<sa;XC1aWSTL}Ab@?O7?gVZIo{qbB?{4R<K?)kitNGt`JliFEL^A2yAUxUA
z73z{&0<n4^L(PJsgPK9yUxJH3v`T|Sf%K=ltlwZjR&)3gw$|^zf_7hNF|Q!fW~<qv
zU?j)NS7MUSAJx?X*mOHv02yMhBmL#(l`AOo@QB?=;s`>I*eXDcGBVk9&~#C)_UZ}D
zqJ`8WkSl`Zh&?UEE*OFVHjJXQu+f$8`5qQjGtdURN5m2+ZC2Lf$BubmZR~RYt4Z8-
zK*>w#A86&oDhMg|!FsVPIqkwg^S!u$w2^laCyk)7pXi@*0?i+wOar7^63>_%T+);N
z9_WSXhguxu-WmQFCyhU!w7V&?o~ylcx^w-Y<)5d5^YASlNvnnR+{ZcaOukGdBP5D)
zhJnn2q)TJ=%RG#pLsvZ+G9JL<(YKDEhk2NK{@(@v|79sive91?{~20Nm%oEtNy4B4
zz*0&*t3jDa+ZfVWsp?N?tL{E|qMoQL<*W2xc-&}k`g!;3532hnkK8=Ueyd3Dl7rRw
z6=%%$*&SG^<q;Yix-5K(KFi!E3f=6M8{U+>Pft>DPD*l>WBKk}C9jh8aj&pnl*J#K
ztqZ-|UH$V5W{%r1<HzuD{hg$fM`Q1>IA8Cu&D8oaw>+jN=A>;?|F#W}gATpL(P3hq
zb3UQxb(B|yrEa{-=7eGnVcpBe0wB*oXtom!LCC{o$GMi?yeN03_Mr2<)>!*zxN%&Q
zjjZM=n6*~(n1pR^zeK^Q2-IY6yJp4E>>#6y6am)X&%&T*ae-ckc@FQ9lLaIhGASlj
zXF<AhK+eKA01BkpH*n@q;=!Zi1?%8-4YOda(h8Oj_go~hZs+KU>uEMdNg9q8SPnBy
z&z^dqgk2drXs~JK?FySOCA$r`B$VeI`1*PQybVBwb)iQj+Z;q%Z*1EAZJz0haJn86
zYo1?RW)c?lZy%K)yYCRfBbb$4LK25Jfiq-3oLOdqG17BD_5x(t_@qk@mRy2cAOXki
zas0GyHBdxEu23N8=iUKa*fd}WG#}zjrK1k`+1|h(&9;PC(FJmmEY}t`3<hwOb%b7h
z(dM%gaFL%VjS9hifI?8?o|5hhE%%5Lm9QchE*}&zH{y608t?%=bx3>E!Z7Y+ko6=W
zla#0TE>d~1ab;rEK5m*LfjjGQTea4Iy@{Aj6YxsZ+s>fmf=Q3c6bjJ-+X2GDwTuf2
z33QDe)n;$W27|Z~_$dUDVu?Yz5=1Q$p$K@Gs_1c6Rw_S1`oT@K%QXHJ#N%{>0yV8~
zYI1>p>am*+&U=dTC)f+%`7&W)Rz!OmCe~tn49#l7y*{4PH8)0l;|i}=(6AevWwNTp
z@BFaAe#-l5<Lu&sh^?nZT|kq`#|A*&3PUgvf3af5mzGSWHybgChb9t&!MNh?E{FOy
z>!Zv5C=@#rFf`?Zg=u^;nv(aQEs<e-<RBt!erC<K>u}tH`D|_Z!IMY7f02rDmAq_L
zf%#2FJq;SM3$Y`!ZFk&=jeKf<WyJh|VG_;H<8+;*5vzJT`9X5BmC%!-KeYf0*WY=4
zw8ptg?B3J2dsHG{ukT}jy?Lb`&dhaCP$9p|?^$RBuZ7{0BPwklJTziyrV#Q4>h5ow
zsU7JfudFNw?FDc}^4em!*-@0R0%`e?u~o7P4R6@(O;6r96J!>^p%>6}qiRQ_`|8;r
zPfKIMLhi7Y9MbHs!6y71kdtGleUSZ#HAX=!#^=YXk^^D|KJOw}Cz?|V_t2*$_(KSD
z{1MRbn!Q2dWc4g@l|9ys3)gyV&u@8$@*<1$?;hX>sk;tYSQ&;+!r#8ruU&L9m%V9o
zgXOyqdimow(UhwjXCw=;rw7mHZhFg+cSktay6_3N`P!jk#ot?fY`-JMdzSO$)A$z?
zlu&U@qh2z2q?->UPV$pyxND@siqsR`d;}jO$QQXC?VOQN50qWm%IGI)V7|u2=&vLI
zg+_j1tTJq{Ft%1nr~wH9ubP$mVUmg4?~~<rztyy)-YMeR^7!@D?qd5uUWGt~0PhBF
z#HAZIE`T#xHpLpmb4aNn>%xW3bWxU;CcU(Hg2^^eJkRtwZ*5KLHs&-gFgnH=+C@N7
zBMu!Gl|zArO8p^X;^2#|`r5vhn=h)Nb=8@14$v7R&?*%Ee&}{6{1H<Iz$ndpTtKln
zD82B{nuixBX}IFm-o^KX#QHfT??f9vPC19p0pcS+?qJBssNn;(ttjYd=7lFqk9^Yx
zdcY};Wx8*c(k!C2I5=p$>B7|oaOy)?%c}I`L8&1{<C8-OI4kwrge=Gw(1*bV4oATI
z2YI%gpLT}0!2n9*rk}pBN4JX{82$Gj71eIcBl)8a(8r(1F}r*m6>z(1Fj`>gSXKPG
zX~LfQ6NLphp0PNf!Xzj3;tL%tNEHuTX;P5->etDx7n9U6-w+@0wo}ZJr>f@tDD*pD
z%u^<nDtNP;>p~f;Bzyw{XQDNLq_F<++il~S7|oPf2ydXg00A@f5tCH7u6mQNx*o8*
zdXnJ+sA;BttlvF|Hd+@FAS&`|lujZA5V(VbzrX+K{oD-PFVpCUK6wJI&-fEBd2zQ=
z83zX)2F~%ucY*HR2DW&m^`106yb_ZGlX1oZWX5;qh%suldUMq)VPMzGsLct6N&$ZJ
z)`aiB3LU-}=Y4FL^@rS1;KGYL9T~|Kzme6OTj^DZi|91ERoQ~}uU}6i$5Tfe$t&yG
zUT6hFGl%%1vgR}X`7d#|L&JJqiEHJ-Q-zAf?XJHUtNQdgMrMmFar6WX|AY{LOMs>;
zt)4#(2gb5xq3HZExg5b7Xy`d1YyyrNj6n^56c>AeFTzZwX-=0w=Pkd593_Q1yFr2D
zCr;3K^2X1fZ?Dw@6x&VM$8n?yX*@j2g2SAnCN3hv8Fwou_jRd|ySHz%Kfu^?7~nRF
zYkA9;t`bFgG$}9m&Yj)BSSB4u3%DQOoR^Q!e*s&9IHaXTPzi9AmIpL!T*#-_bMu;4
zl=>llr8lmnc&z$>8bW(SRo#K{?1eJ?7tNapBmd*dM;V|G94%u{;p5)hyGkD=+5v6t
zQ>VWUREb=$?QYQf`oy&{v=G_WNPUUk-SegTnW-xGPqQt*PpGyb>%!S~r|nN!OE_`j
zKq(uC8#c#jIvc}4(?z-E%tx#i+GG&qQC~&#Ll_JV5;XQl#RgqEjiF^AMsmj|A-S@-
zHt5M*^e>lD9O|@&NBATdmhwZ3$W@~x=$ixo0qPDSD8YvC8bbv+4t6$35~RZS-?^a-
z!%0@Ba_}~8TtN5Z;$-2mXJH^Bk%Qx+<GQU%-U?M0*xT^q#M-P}U%pbeh00(>LrIDH
zMm{{R1q{*(Hm35BMG5xL<<;?xSNVeU&ua2eRW;*(tEyvLd$bn|>*krPWwXFNcAD2c
z6%R?Irgm)8sW-`8sGFCoF>&@snn@slX!Qx`LYe2}<mBL($`CU7(9KkQl`!ae^h*;N
z2yn772jDDHj}9Dua+-wzU7U4J^I8;FOOIZDlF)ujo)-em8*qoNg<co&jpG>LB_f+;
z2lC>pGF78Dsz*M2`0nG%w%pd0s*~^RSt;J*otkH4yhX1{{y%#t8pO<USPl)7G!jkZ
zOQpm2b8w3o$X^Ht%tO)_n)yP>JlG+RwSt}R>7H84cF{$p^Nxm#*<*vhHp-7q2HDkk
z?=<YO4za_ort%}NH@u~J05oD6>PSaLf6=LY@(5%=p4Aj>?K;`a{1oUlaYKZ0rAYRa
zs8Bu!8J;e{Zz5Z;F1N%IVt1TLFp4h+*lw_HT~WzTI>LXA=i6jAv<b??nWmdEF@aiN
zgcIjPJrv4s#3O!{Vxogq{#?<$H@wo*Z6CX>0WbuzBp0j><RtuSM-g{nkjR4?m?DXS
ziZe&ArS`nj7eNlNp$HSUW*&pf23OPNQH4e+6^??Pfe4davSCB<R~s`^8m^8rl-)>C
zb<sHdeM}E6XsG<<fc4Q)&d$Cn;OC-$EzKNU#Ado91Q*GeVe2Jf`lWz0L^07<uCPQZ
z2sqVj@&y3*dmSv9`5{jdqHhXHBJU~w2g(DZLqX#d4p{bW7dD|6XJKRWUAfo`<Dn2r
zl6Ch|YF<^fdeXT75l+R&?rnG~lr{)`z(o{wy0}14_oWrtP^=)1P!}9Zphqxv<o)NL
z|F06xnX_P`LgTWIj(i^g!9YJAx4lU<u;clCUa}jdnZB4eKiT%(Q;P=cr6|#^_cj1q
zMy}TSpWaxL3%+d$8J#|god=zlSMg4cHDSC}_{JMkCG-ZPVq+J4i!FMeb~Wn$eM<L&
zY{lU8f{VPLju}_=x~V9*A--^cO(}SrE69J&J(0&_c+v)EUR8`N^ZbdcH9*{A8qP)6
z-l|)N^_2uw4<6LP-mSn)>Fe>`_0^w8f~fe}R7iK<%UWqvQ<6_;W><|J4RMwm9T`T&
zaR!O5V|Czaaibu(5hScSws%kJxv{(P6IASQc+ZA~^o++?t@k6~3~Id_32r}lP;3ol
zIZ>6~+ko0rK71~gE<&JNyED~K#)N%3d~7H+kbeCcDhGL@`u6fXub(Z5zkjlr#!{lz
zL(Pa<Pw$4s+M&l|(}@3ksDIUF!eu8g34NNYtX@JFt{_AqRe$SYcxo%sQL`Otq^KG!
z!4#`!fQXPGRTB{p$Ws{qCePL0;yY(A{&}r6<*3|Gl6%+xUMH8m!R{GHqJ{tvkU4OE
zpr=l*>ioYISh>x~aHPEe<)L%xRNW^V2x7?pjLMH9ko*&4dE01A)r%K0s2j6!7X!4~
ziA*HZ>L)su98jtNcag=Mn4Mb7|Gmmew)nHk^8c&Kdc&Wiz9r>zTN%DVXA^GYrp;8x
z;!^%OZ4vg~YpGlE;V<*gqCJANYNii2I$f+OO#Ct`Z+K?axePs?6B0Ofgzv9MDi6vk
zpI7tBe3Bty15`7`QA}6ZXgc&Ul&C>nF4bf|>qdvQ(LD;a4{)|4=mcE_-YJNxC#UN#
z6(xtq^E!$#G&KR3VT0rBZTe-sKE_S4MJu}tzOG7r{%5IW_KD@!Cj@S_CT$2jt<|Ti
ze3XhzlOmB0JU^(Qu#nu!lp%l{l7+!1bU~$xTx^b8shDn{;};9AU&oqyI!OKym<x;a
z?Zbk}%8WY1N_cOWRJd}6>{WpcJ5#jb)4<8CpmlY<{m2F6jK0<n#Kq>}??3&o%8OzC
zQ&#QHjS*-KIlzAg=;wv*BDqP&#W!!hb0ZIQdwpZ$MBGtmPG228A7vv#b6f*9oe3>E
zi$F3|vAZh};o)^d1)g4D=+_DMMz%8aN>U~!v9I*R%Hnb`5Gg1~P<-d@1A&T3W`R(7
z;iF?L+N-0Lsm>;)0eTZ10M3$Zj~FS$ofZw<%zxASdgAZHRWFb|K{QY2<c);F5AMoA
z5~)Rxu)Muc86lky6D$=Kd7*$@whU87!l1b!WnNTVoEzHN7H9xvWKhX8<Aq9XhG97p
z{{oz#2+xuO0l6SQ1yicwMV1|0pedO27CKqzLpP|a8Q<APh1SBcLJJ@-6<XOpP{-kS
ztj43kaK<;+kOMvg11#SIroPO6^7!$o!taDM*&Zi90Gc>fW_b#GKF9;ja3Aa69E04T
zl6a`&c&I%zWUR~z{b!ja#K~7P$_7#&VM&t`itID$6S$1Z#o_b}g_3n;>7fUKZRN+&
z24K6%p`79cGlJCJo5s-*ZU<A8m!aKRwtv-p*&lK-uX_t8<_1^&*$L{!{CM<b=~}v<
z`mwI~_9$B*X$LpxI3~!p_Yk;~<rrH;X;<Ki8HNamWXP;32_NG!83v98N&y5s&e_ff
ze<n^7hVuOI8Yv6|iWu56DBfq5`D)-X0uRBccx1@TN19p=rg4GC<r3JyD<t&xqZPT?
z!4Tt1gh4aSH~?rw*4o}Dm!2P31d@*s5@gNXKfupyM*|7Mvnn09$?@Z*pKXXJXWwvQ
z25x&6Mp>d$=5ZxuQmyC<^z*xh0*FjCU>nJ8!rPXHGBK>v*y?L;Ws=)rL9r*Ec>&@I
zNoK=q{A#TlW}@UH=mcHnCX3ej$Q;(S)HJb*Nw?|ACQTfQ<L$AkTyKIS^b17)_^*8&
zGm&haNKRm2>RJTKh=n2DWm%D;HgE1fk+AD=zL<T1_|-jk)=y+Uf@eiUD8zC(kaw7K
zMK$gpJizZ=@yvPyHLECJkT0~${LbouylAd<?+lYBwc!NitnRK+Uj+B5Oy5$`t!kR(
zVfLdVe-sorYQ*|n2z=S9W60!JTk6O|?4}eXaTSW5PiU+#O`7e<+lnQ(63U;m<El8z
zZC2G!0i%b6j?}y{i5|$q@Z^KkN5Y(oK@b6l`itkA6iuQTnzZpObT6>Z)fUH9^m_g9
zlZsoi0LG4?fq{<A9Kq^P$J_;VF}Elu${*BKbGJHVaNST&&ne1j$;MQyqa8!|-$`0S
zpfVu7>@@NH1+MKXd>b}+K^Ao4?463leUK)L-oDfp8EiK<;>EIozQlb<n!gLC5FL+*
z2H)@_OlBYfQN_8O)la+i%2a!nEaMb4W`7g7C8em%G=>LBPaB{**Hj<DTc4h%S7>xk
zMNRGGx~+b0BlGoTWQdzbP?_u*Lo4Hmk@zi^dhHsKr|L2esHo^!2D)NBq~R31dSztm
zP7KNFTT%5OO7G1df851#atsjmk<>k&d`@uPNOd9LmnJm#?0SK|3uf!kBZ@tV7MH?b
zsnA2<CqA`~_&t{Kla^q9ItaW)#7zP>g~^Hlw;#U%x1;c{T4CnO%>0?NXUl;{0}M*(
z`2^9SFeA|#unR2loxTd~k5S?RrMQhjV?G!H0_Og@;0B6({r_Qe$f@-_<FRZEo0}TG
zfA!j8_d}Yc;~5YZmjM5Ald2j&l;A<I5nQf$C=Dq?ieiO<0Dvoyvd*pCDUDBrCf+ph
z0*0l7^N>d87IdL&H>JL;SaEM(fJWGn@w4NduU@(0fIarKFt@TFPQ+Df2N9k|W6VkK
z4=7<f>H=PRwA@>5M2G_icu8q|@Q!DJPF!_IQt_&`X7UbNc=TukRZ>O=c_$c2695Is
zar2xT!oBx1tS#G|zhu}(L`E)Ovt~LdtL*i$s%xs*r0s1Y|12goTk?^`hze4t@N9xD
zs=qr)F{wSmNv`UF_u%#<?K=`*E~lrb>%XoH<q;npD9<F;4>j<kq7t3`J?|95SBeH|
zn6-t3sYahchByH2>)*<&lS@l1NhbIk@XJm->Jy<Ft%H+km8q^tX-NW_r~9RbsD{yl
z01m6~+0dJoBqF96HuI5NY26quG*++}b)MHZn)T7Vt;}`#YsNwH{u#S<g$07c6TAPX
z{^U%*xn+YkTnFHB7&!Q5$#QuamQy(eNfnHOFLvl2iOVFoaf90iJh~G_eecRpQi|#4
zwmURrKN+^@`Dq}+xyoA}g*J2&*X;Mb6`yEYPB`Fiv<mAuTE)J&_R;a{S=B!UZu<L^
zoLM8$&PPxsx)eQ@{Oz#xD3op&!FGIvKrMjd2-76j_C-#iFHf8eB_>G$&`MnJ^gr{I
z%G$Aac>9oeb&5%>>U2~pfX^FHva4Osmq(H@EC*}%$Ah5d0nc=Gr+exC<1ow6SXF2@
zFsA0YJyKb>gTuv9uE^hn27vO9LEvrPAik>5-7R>r?x5GJV~Vwlf1gzJ8)J;xPLJO-
zdDbEaptWf4JZ|39>9vGJ52dDQk`1ouPtc{E+Q%`oP5<ipBn<(aP-7xoifqI^Q)0N$
zZlwPtuC24vzaQHqDQ;=EtNlAV-`Gc)Wp+nCgwd2TbcM0|gLw0k&4+0zf%;(w273Sg
z{g2LLqxR^VC&+2Ja6RwGEKp}?a@Zi#$Lap~;o(@-9B8-kWG68fpbmln;qv~d7f8W4
z4M*1nz?|4!8&<``QB5N>aP4)%r6V0(I*#%JU2&*T(mEnNo&)-KGJ!$66V5ssLkHgh
zOp}-!haf7(0ln$iOkx1}lNm^{MbgfFpLJ)CGxRdlE;BN1_q8K7Tlk5c(hAdi1-uj1
zEAnm+b-LTnF9UQj0Rf6fA5~`#x1WN!UJkJA%uh2VBwD_}m5QGOn^HAqmu_(W;rJtG
zmmS^6R2pCyD{rb~6ubOO+1831>2WbehX7?kfbO5@sv7MCXb+xT(?p4yI-F)SR}I4$
zfRA*f2&M=e$&7daXa)>6#9H_Z@_DC4G|A=HS#bW?zBPu1ov7XTsNg}3M>?hn4v@%P
zxdMeED?=m9mxZDunZxA2dKCg?A<7_{0l@E_e{>Y+?OlK;Hb}&o!f<asdl`+RBGZhi
z5BNhVwKfGuwbR<kt3fGoKD;YdAa@s*^{4~<@Lk^W^OI+qDIc7bHBiFZ^UAIY0_j<A
z>T~xLh@>dZbl;gW3N5#)NJMUaI`U#zuqZYG^$t5%Ywg0ozu<DYUDUW@JIH3@U=@7U
z8hBa0J9yg8JY#5GQl@i4xqHX~<9lw3trm^XjO&KpynTD>M;f3&+<(UJMF}n3ylK;3
zG^MUS<qwUIXct%Z7(KwpzK)>+LPMkAj2CwK3FlUJ{Q%(hyAu^wXx*#!k){m)8r1y)
zpM&LYQGD%7R6XMvp7URYaU3`{k=W(jx5Ef};$iL<>3ev4Ph?0Z&n$tdl|cxDmSg(}
z4D0g{p<|jT33LvBjB+4ITm*oFW`r;f(8SQ)M3J-1Wo>S*=;h4gwvrBYbG1FYgjK)6
z=fJ`MeuD@p7aBlL6E)=iV2(0`=s(iWY?9n0>34H6g@@w3cjD`aUQ4%|5w5%3!Z<=V
zw=xgnqMg1js8Vo)u#4!=L4AJnzfkG5N7ClYhwraAfok(7rZ_QVh9LbMnkfoM1LJ+=
z+ewU#C3O&U<(u?LT*29;C(y<TY%^6Tr>H@)Pjq%(ga!aG7xVX)>V<q*(UPrOxzQPB
z_u@L-rL26)E2`@EMTKRmq2R*#`~yljT;!dft_yuqwjY@HTVs->Q8P3?@zMI9Yz}*a
zzD>CQ?Q<kXd?p6oqO@`n4$*YQ(UI??lb9i}Z4~FdXXS?5+g>eFjPkOpnKWzB6vkC)
z7J~dR%H?xHtC9`0z<Qt))FEiDwP_P5WG|duID2`2QKtQ<?BG*y^f+G2nlC5YrAFv3
zw>17*)CJ+f_NW7&;5MgeHN@r&br&m>&3Xh^-zS{tc&;8<caf4|Bn%b_p2h~Wq%Qyo
zo@uY#NW-w%%}Y{XjHf$<XDcTdfY8BrNw2U9NCHN|_4py0=Egp8!Gc<7&GO(3zJXv#
z9R&5@E`Di0Ty9TpcM7J5@Ot{k`j18E3OL)pM@0q^ODVSP_h!c&!bjq-KRl=WE^uP_
zP1z06@fq1T(I3LTUH{@Zv|rSm1EAnEK4oNdo!H9W@GUzA5G2j=voGEq@l%Fnz4(*2
z*XfKyE;tD~a3SMnCS{!a)?RirZ-_6M#Z2NWcP&jwweUj-4n&ZhzL`T4;lK%hIMi2X
zp9h%7)u#$ZT4wfl-?QL{XaL5>Rcs6-cPM_RAoF7yUk*pp<R%v@J1XADbB0Igv}V$4
z9e&aMeqCvg${w56h@;OU`V<}8f)VgBDOomfJY0gQ6?G8J4B%Dp`3M3)4u=lTG)hAI
zTJw|*G{Bf^9_=?QM{qOgfO4e`z#IjLO4bCNGER?hEV?6(fQT7pMIQ?T0~Fo|k{?#A
z_=x)xNuegaotkNO;=p2Yp1S}-h4=%fED{%y3c!DO>12s#8j505qLl@GQwGw{{cT;V
zxNto0$Ab3o@HqO=n8bdTmXvsc%ZbDUsH}A;ztlC;f)0WqRD8{~=}%wTx&lok6DZ9l
z!_>Y-I3Go6CKO8H$E`LnbVA@+kD?Ag&KaY{@s8%8dWM`a2R1@{&Ss=eAq(~LyoB7=
zifVDVG--ke=9=t;=>o<h{6#frHS|*Yskr{Kp!c94VsZ=OdXY*6_zVN@OFV3+^~lnF
z&5_fe)vvQc5^Z#cBoa8-CG8~8fjHw=5^jawL{{(ApRa5lb|eH2c)g+U#b?*yhq+dU
zxd9e{U6XS9vA7p0Z|#{6SeOQyb8oRc3UC_ckD!McBO=ymXE~Kv$#4wbg0p6F$7!Ys
z!>~w&N+b91E|I33v}%%1Ot71)t76zNYBTB$0e@#7^+4!OAirW*QAhWszb?Rg7K54o
zuacDNYtpjbzeGKSqw~5F@4YP_48Bd}idDT1Esi-tg>_ZtwS0RDF8FS#VTfupY+-NW
z^b}g}{i<TYw@u0XBo<lyt5AM5jG!{4aio3V%hm|vHox|{VW_#JAAb(1b`CJr>!9Bk
zaC1#)FwAeuxBigUzvX!T{6+9{6?H-7{|RLXh3~*nLvfNg3d9V#aEL+yFHGs2z}Z-=
zHg$B4BIRdZvLqmSG`M4<Oz(cBbR4q3QZE8{ugDe-$mP7eFF$68QMe}^Yll<MhVMJl
zGg_7;rm3mvsF!kV_{Ar0l%}9wm+|q*S=r$_0Hn*8(f@@DTN_g$;clzGI|G`Zp&!Ac
zB5T~Skn4mvz?l;lt{1cXkzEPD@mJq3id!!l?CyUf_oo&Bf!+bP9;t8di8zx0$lv_a
z9|yQK_w&`HPxRA>i}KPOYO_0|5u2P-<8}E*Si@(W&pGIo1Qv2Bpv)P@L@5S&3s&D!
zo7U;Rm_iUf+G&WhcR(MG*;F&*o^Syhp{U#mlO_=sN*QJ3E5Bb2P8puv`LNAD2l=|Q
zF99$g&0U*R<>cbhkW{XfgH}qv*V}Sn?V(Ii8Lx)Hu-C(niK%Rh?cjT^uiXlG8REsg
z7{h9N222p(FslydKT9V)_e8mG(-!qk5q+doGK-E)9BK{t^uR==5z3I~bVlp!kY9L|
z+AV`54M-eC4fdvQjJs#_eSpAtjZBc=G=dEk4|DVvhR%n>C&$%WIQP5n4dFtwv8JQ9
zIm0En7sL-E{$}#V8rKYML@we0N+j)2p~A?x{I%thl2#oI^X@lpz89STSVOd#Q22`F
zv89oF8^rX>?o8reYb)jP!|{yP`ZD1`dU3zDK|=3|mt%DLpZ^8EVw?IeZPMSn0LPZZ
z@tdF)$;R^Ze^vvqE2Kz&t%h&eDz5~$YT2HG$1)#GyrrS|$7mPXU!eFCoriKOzw?Cm
z-T9IsX%_q^XnP|eE~0qWM<U%osu^}!!nFfLDt2evd(PwQ%W6#yM3-hm+5+RQm`2dI
zQ_!CNo=u97nV(f}-^NRSrU)67HQ0&xi-wdyOJuqzM!NBcN<r&~$B`aJ=upO(iQWd-
z>pwkvXK!z6n)%#z+<(4Q+Bl<GEP7wIU<c883eYkHfk%{$h`zw2$QH*35>S$J@;>3X
zzYirS4rs9O24{!SYm8&i*Ps+RgXU$Hg#@6L?NU<XFd$$i1Jz9)GG-l+XL*Hd+xcTZ
z)M8Z|Kq`^;X=gsPKAbq;1XMHKs)bJf=b3!L&*7SUk%hT(#qsElcDsp%XsU#UY+)o`
ztC_s#=O|8flt?UqpYgeLtPxKHX+MBzXBu^*ZU<`w#+_#YV1OCQv%2XQEkE^D)8j{v
zDEtMx*U><W1jN`&=xLUszk!W;UE5~c{T9I+PR^pAh7eAiI@1ae1n^HlyV|gd%8Jv7
zL%}}$grOw~KR?c7#^epw|G=j;69oj0q?IgDqu_buPCnReV*aZ>yj|2gjiK1PF48Z(
z%rj{j*xl%+o*9brI4H;s$fnNVFPXrPZkN}~`lF5N@Cu=BnB%h;#_dFVU&E^Xjk_AJ
z+y-d`@-`G3oFVVcv;HsslTy+7)m_P$T?iTcldf=`;A2<&n!a>TpXsjlU{-FeGFR{P
zYQC{?^`MZ7Sy?61emW*8=_YZST`SjaLKRQxl*^Vqh>8Np{#3Tj*W0@YP+tp5H3Egv
zY!Wn=X4W)|MkxOhb8?9qF9AGWWV>+w{C5DOWr9^!%})gBL0t-Vw<qd%OcO!!ILCh!
z4G^GpA+DiyMNdH7Yd9=krOmt9aSEju{tZVHJ=oGQSQ&>H?~A5=@AKb$y~(?PEvj5S
zWbZq$s^Hm`9tng;L|_cbjfbw_6cNc-^;MLHvjOy%HB&6tLZiM*Mg~I<d5{~EwC@O7
z3$9^B88|9Axu1r&@p*6AKP(SjLzv!@Wk}ba3mo1esyA<Ka3%t-SAuzfM#tzDpYHI}
z164l!a{O{vu3(wd5V^T?=juZ)pWOvqSp|+6%$D@PaPB}!``XWgchybX2JZP}NQxzC
zdx&f44PQF&?B#${Tm>Hb&tcC5H<{5vX_eCQa<eh{)==uzGh3QPDvwP|!e;v9rMyj8
z9ma!Aq$l*O0?_kMl$&Ax7c_T}4a<UM=3{H?G=?~z6$K<6C>qG<%;iEyM3fKK^l6|>
zU>KSIK=2@A<p8ze6~Qma*MAtg1*fy&t=kZMhRNR3>6(N@V|<c^$zH_N&IiCk=mNj@
zH977rA*j4DRen0-fVWGPC)0tE#><e{tbPh}bMRYzj1@r8WTV+~1K2PQF*XjqzHD$1
zbRcfn&p7N)fkd>qUi-%X#rwh1yb-rEJ9~e1k5@i-lwCML3s`_dhv(E~UP}_OCs{a{
zYQREbm8vncBcSm1Y`oHVMG0OXfW<qwM&FJODN`p2l@5WSoi36?S)T_#qDtayS1IQ^
z)H?j3+HOaym156y-Ohz=Y)_O)OjVgDInp^BCX(q`>QBsD=8lZ?W#-h>)O@yt1TP1w
zQ<|7dlSmLl<oF6CYl56-SXkK0NTHMN$)X(35ne7u#P}oZ82@S|NV8D7LC%zo=jG(j
zgN3ymti|)3c`6`$Fg<FqjB;|~E$on(7@k5AKFkGcOgpX-TlU#(;6<z5Kk;*Y?zBtj
zMsVCL1o}$Dte+lOHfiF-sbcNhkp1Q%1dc#NUAa8@UZp2o8MvycHKDfeSM9jjBoUf4
zBp)vL=DRd`HiJvrF+M*2v{X5!YoM;T0@mWsJzk;gt@^hsJ!>FfGS^rEV1KVr*=D?Q
zVr39Gz1n#O$9w*MBP3<^^DLK*F@d{C!DqSma%Rrlxyx*32f&2^Pifs};kL}#q9vzO
z!|Q_SA?F#zXnR~cmt&WOIR=9hsAS?E)6D{gqOK4i_A;ah9KEK$8bQIk;HAM>?(7|(
z0f~!Wg<#Qd(P7b(fo_H9TRzq%`LI80;ZJB=UpeTx8mJ9GC?0G?$}rs-8T{(?>w8Ft
zXZ=kbWF3Iy{7)GF$pjK8_y$PD;uPsRtL-GUg9Z(S+AG(cg_$z#LjR+z5@E^VZm)Gt
zw-TDnN&F;VwsrY(N7R>Bu8^4Nn4Vs-zUHz}7%njSv&G!EZ~+@zF&4WL%Bf9INvYsT
z`DWaES25o(EqO_)k9qqFj6R3=ZtdC)DXwwq370Uq!8N%YM5W(4ol9AdAY#3V3@ZI2
zZ|+FF@$A_kcCLGHfww$wr8dl+zQ_{%=~*V|aUDMv^NPs73)6&g(NJkm8%9H4KV)*?
zfr)}QUV+T)$i4IY*MkatbIZeHd(+!sGRhXAm)(;w+b_S}=h<He)8_AyX?7uNdZ*qH
zw#z&glYS)AE)YRcIuBo$mH8kJ>9ydW%CTQ(m3v211U_fchPM*ZC`eDldwF~BM1rLV
z+-4fEiDadrbN~~wsH?YkC2~|NVfJOcnRPB3aV2+Z&wt<QXkvc67uIG7vsz&Ny9;Ak
z5rked3fCyKpNE_N7FbZM;Cpx~&~q+_N3#`akR}xmFJ8H_t^f19M+pfeeTLK8^<m&h
zUm<=KCp0NDc_eNlM?vU9owvAPs7sSyu=N*?Fx#ZfZ5>TbvphB11D_xaDIDs~n^4@R
z!?2kBDjru30?k(K#E8ycIyv?gQTQAD^E*IDmz!|N)AUyKum(5=J;!gN^bqu;SGPri
z>kaqS3I(Y_J)u6R*laTdSAA}4Q=rtY_I5?!d>h*~4|~b#T4VwQ>A@=m7`$C5y?ZW#
z*KZ(x-%+;8GMObHPW-eUzu=b{AK44WFAK$qQG9K|ni<JrDXtm4l|~{MJB{;sUQHf}
z?JT~5BrQR-`~VIOPVbY2j2mwoU$U#<xf?xeko<8gI9O;1JURqwo<AKAvgN---RQs7
zqqt<K26-I7_}-z5{iCYNA4vbvu`)upk-dNw-A^lxYel&hi6%>hW<Oj!4c892+UrNb
zNaGxlshjNDXsJ*e>|ZIgi#t9+eAi3O2inbsR7Ro)GCJili+lY~R!-KNj*ik^-z4+K
zPe)T!5jL2*TWr;1r0KreaXi7o&&>U^b5Cie&{I?Ya;@{OzzHb(xdiG4apa=2vLcaX
znr%eX;KSBBv9gNcw>|b&QKL1bCFwe@HDc*8F*j%#*?hTkQXgbdXs5_Y?vbHtmb1~z
zS9}A0vm*XVR7}i#+c@~9x>LclFBR5+NbjnTing{;z&fLRvxrtL`dbNT>oEzl)L=_T
z+_uwtuVyLo&%P0RN{P$l)iw<q36p)22|eFyp2`t1j)g+f$f@&IUeQW@-X8xWFFW93
zz?T>CQSF)!OvLz<{iOPI_O;qROzkoKHfVOfXZn#?+$5cYyn5~JsHY~W^~^hDc~l2N
z$I!a1FT0*Sd2$;Xje;{@aIRH;G%E&x`$u`Xug}^;%lZQgD#S5oHU!O@3SyMNk<qD;
zRk~{6v3&FB?YAY2o9Ue6K+L<drwg%nUrd`m{zkhdiXsRSoZ2xym?oiw0gHYF@TbDJ
zgegQLO>)dhbry?($=1t-=;oDDjiwJQf6{p6H-}s#B~unhyRCE8L<PXxRGyNO!e(2D
zZ{58)^|0y9^Ywt_ip~Ppxa|KxtZ}o7MarW`mktX~W&re_%ir9qATRF`5HJIq6>QT?
z95{KfSAG2Y^|cv?sMi4=cFno~(MnI-#BQs~P&?f={1Ptcv>@)3MmY$L5x-5{oU;Cz
z9P20Gzut7dcP;ZAic7frb^s3bPd*iuToWLX@Okj4SzAqYUsG@EpBJ?cA~2}^^#Sv;
zY{`=6x^;4r1I^1HmqD;50Kk4zAy%L|7d6UA>LMfn4$=MHL7yVZifX2B#3f8IN<lWQ
zs~wv(e~f&}?TsCDv&MysE*fDyO5Gz(5gGnsYn9IpMYt(Mmwp2C`~q??5-*($woN|N
z_OSOjT1JzLlT9naAU2r_RReN6T)e#IO}=;CDE4B2+cz|c0vS5X`f$cV|MdXcl`-1`
z{1^;Fl27=*ka{+S*<{tR1O!-7^C`1*xcn>9ETUhrIO49SX`zH}<=uf~%ZOrm(JE#`
z9R}5vD>!XVv^ne9?+GU>p%O)!-E0T}be4cKdimMT#MpT6zI_*g#vsZf;gE&cxjIOT
zU^1c*eyNakn?$kqfs|eKS&Y0GcsS7fvoJ`KnFR#MtL_6hEXud6$GA9Iw3(D`GuC4`
z?)VauBR+}exsD0)5GLZ4=HQb|1Mq|;5UU`G=J1v4rKG2EK`v=7tJ5w9;Q9d(Fdh|E
zVA_$6k29(DtOS&<NzW3(oTDfv5eRy{qZ;m6fP9i716)>CQbw3GO412Rv1@K_mOW0z
z)5?{(pG%hl{MiY)LgYx+QV^bHtVnvKkG9FC8!<ZkH1qs%8OOhABI8~SzrnaB&<(k8
zJ=c7Vp7W-r50fiU1iO&q8#4w-X|ipoLz;O`<5ba7qx>!U!HVgW!nn0*Ml$eL66LRK
zOTsV0L*wASC47>*OxS!dGqpt{vct6I-L;pG<-%`Tv^hglOjGL-wL|0XeoAvTO>XGz
z`{M<<15niDVuRA?6-*w$By6vSJa)Yyp8vzwd%*R$_y6OUamrRANkgFyilSX)L}<wf
zO$zNjP*hG)NySO2l$D}WNt)6^14-ITTWO+%H1vPIGR}Q}zu({A<J{-Ix$_y<^}gQk
z*X#Luj>lZ)e}LNu9?Q9$oSghSwyU9+#B#^|U2{sfvcx{|oh+^Hn#lf#J1{}b$f)a#
zm*d8a3pqg6wu&aNvT^Uwm;;5C;GUhV9WQ3GTSsSRsOm9?`ntM0sZjL@MaAO^T9*B{
z`aRqlvVkF!#|x}+J@7U_uSKP*<7?i8=ux;F@C`ZLgYkX%pP(X)EVU)4uz$ggA-#9(
zy8%WL!3s|<V*}z3IPONE5CrV~PE|YHPDV0VWWW7s8c=<4gh)bt`4}|<_KdfitG;Ky
zmqS$SX0Rm_Uq#D)-E8^dkcP@v%U(QwESKuK_0!{wT36W|=#hTF(zo&Wo~OaOm+WC>
z6sMoXjZEZC03)E=;{TQ|L6byLr<@rv51haBPA3i2cx1qaCz$SD&Ef~)M;ES#TOD8h
zR$zd4b{6{_lS?*fS1){pz60V3)4-Y?;C5{T5KIh6#@o*?AM`7^y!rdyD5?~0?md6?
zoQG7v=I`Kvl0*sD0?UV$M66&EB)eofo(5fPHmG5VxT+Xt)b+NR@8G|6JrLZF_a7~j
zq7n|P81B>5EWJ4_LM@^Au@$ouzQ1mlHCXTj?L_}Op@O~}OIux<?@PVw?S0d_$_}I0
zOYq*!&COL`$RD-4_GUNH2GH>XpPmUQ%B-|`wmawCMhOQ9I_S@^Ha+m9cbi&#jE;{x
zkT@Am4xJ5;qyfwLA$p2Z!rx4H*cF`K8ojjr1Ii9yvf$=n>g5MZB!`d<?a;}mqoM{L
zooLhYM5<@Yp#6a6p<YQiloIt(M^x*LF#%*Ro0RkK&1spqeE<}c^QOqe=_$UJJieq5
z8zS1ch_$QntS->I24t1u#h_3DG33br9>6CcN1=@&AO8CaVDy0~g$eaj?5)Qh@SH{|
zQV7}bvL4u{ormTRc*|r4R*D|dO{eyp*noi=S+Wr+5l@&{LoId=_)M;fOT$c&7}6NM
zZR<JxUvSV``D+<%j-Z%;#zaKXffG^PY|#C{DZlgtBH(%O$w+m(JH~Tc<R)ilIS?8>
z9kIGVF8uyXbzgPR0keOS{V(Uh&<?HP->*A9uPF&$S$H6utH?ZNSn8$kIf_}G=E2tS
z*6is9rQQRWTCN-vX2=m6nU{Mcg!8+NpVw^9kGhG(dQ!Cb1*>G8!=||f+*Py}o>Ib9
z*QI)`qlObu&!CyVMhPqEI7l0RY2wj|sFVMY=>eV8jHdNCd+%G;OJ$CIspsLD07|P8
zcdasOZ!Hdn{Rv2Z+o~VJ?$@$DwfGQGk2-N2Ie-j6%~E2OC56Ys%|{hCNb*rHOq0qn
zMrep>U3+ri?Y1Ih^{P=G$CWF__jPaX+Vvk)L`&F_nm}6PF#i2C3e=^@G|PYl{fKPF
zgMZnJXWOAHqG$^&K60Tw{0&se6=Gr+(ak(-YPyci%z9T9>Rq5Y{-{$_FeHJkpy7S~
zh9&@^Yy*4#X@ptFP3jVm<>2FOg7Mc|umg6v5pgmafDLGuphh5x2tv8%O-)Um{W~ik
zAILPv8$jJ~s0ni&3CHe=ZMN5b06gp0o~+$Bd>8X`ba{4nikhH`_!}foM7->RKS${>
zSJ6VFlcM_!5;I?aUV(wS0|Z$!X3e^dX<bv?>7K8PGjj6%m%}D`^XAQ-<B)-r17Tm>
ze*3_f$fB!Qu_|Ad&tC8g1mkd-?Ko1=6n)rjC8u=a7xLBhFj7%dlk7B*-+4WsE5~4M
zfk+?ba(A$TCodT-rY+F_^TU|z>}$A;T_^%sir|Bz3ihK=8cf=6;^9m_IO}En!n7$>
zw?mw6FMRp<@g|wlC64oqP+qbWK@xNq#61>aN$xVmGXg0A=#V@(IOp;y+<?5Wj8*_9
zR=6a4BOQ(U0@EXoGVcI6-2~ARw3!>^Cg=8{F2&c|8&sJsC=_m4>PV-D1O_e*Pkw_Q
zf;ug97f|o}K)GrP%D~_4oiAYEv@dcKD{6^4{0y(0gExvT!;iYyL6HShhDa2_P<tgM
zz#W6Ad!(Gzf7Yv?Z+B-|H*N6XXq){hX!|MB@2n>$V-M-?g?ug-(4{OnnYr6hjMG~1
z7V3*I@>E7!&cV)p8e|r#fF;g<f{o5=fjW_#n@)bC%LReiMWW9uMGJQqO~3;lqi=>H
z34ZOWPw9rDJ|lE<7_;fCnbu>tm0Mx!j{6TZsvISiDIC)OmaV<-8hoJ`)+nNju0)#+
zad&^IwPBQV6c_kj-Rn}Wn0ju^T)8WWtL>{wK}Zz!{YarvXF6ducL!OOb7oLIvT1`f
zR!=GRq-O;M=YSiYb;E^O*1JkT;BlN>XwtQ8jCa8^Fdtm{2<!zYHpBA2R+9<lv#Khs
z!NX?bqu(CdKd=gjb;Za91MPZ~hcOT93?Ny7p;!z2#o2@V8nYIo;f7J^$)v}j^8BZs
zo*Z!elq(&c6C|zzZSG&#IVNIaQSD8oB#&JO3W*Y`1GJ>H{lC>e{8(bRm0*IlVq!@E
z{e6*T%krAX<<N7cyNzc*kBLUPwah-b#V*l#93|TQR4e`CQHqwAtqcHGb@rdHe7rXk
zfW?0Zg)k_+RXzvYFb_HLS4~x~n(*v~E1aB%E_y+9@!u;8_hxTzPucrQ;-&9aU(QJk
zSThZsS?McAs;WO8zyua0BL+`rFngwv)sum9bZY>GbNZ^`(7W(uxmxK*NknQ$$0|yu
zWi9FnOfLbar|MwW`%)~@Ctr`W5OTzZ=_Q)C8z{Fx#LD9zA5vy=QBeyyTfGPY${}=J
z!x@nqL`CVv6~#l$%IIb}FF;%W6epw3*w7lijAf(oyZ)rPIf5%EGpMShFW$Sme%qV8
z=nw(HFgeGSfS%acOCjplphX5i#6zV7k4P6vgD2y{sv%1hU?i&yu!I_TqG)%n+4cFW
zE&R?1g+SZ8TS>|Dqi=aeM#i?B_rlI6KKsYS)Euby&vXh}QSp=BO59g2k!tJu;hekK
z*l$11bg+L>y2c!Y?fFmvT?SEZm0U^*j*Arn0%UEi0f($eR3%)O9id2U+0QYYGa5X+
zJPWrFm>ad-hZ`ogwpBKSC*2RgOx*{J5R*ZijE6)Thq14k!a)?Exzflb)P6HgvyBVh
z`t;eHcZJ(xeMvc(4uTJLN#w^7Xe3)Mw#MP~&ZilnN!E$3Te=Sr;SC0zVzTn`Gxx`B
zZ@=wI8zn&FunWHG;G1*?<?T+m`F@>`>-xoC?i92}Hz6<cJf4AI@Dw_6UJ%C$m{Xt4
zX-=b2*XLa3v#GP`>UzHatPK<~yq)&tXvwBA@!BabI<p=2XP|leJ0gO&wx;Ga5(#Hz
zF9hx}ZI3iUCtkz6fu8WG?m`;ZRAI1D0p<lkN*F~5I?J?yTs~#}r<dzC%Yr<yHl%cu
z+4bSiWv5wBqipx?Y>8t7`}oPpUL-mZDn)OA@RO}2S(8XT*)k59IlW+ud>sxeO4>}f
zJcCz6fOt8Cttw1ssPQ%S7m~(qc(Oe@w3KBZN4eQ;GHW~~cnjfd8@GF+*@Iaj<Y5uZ
zRzUQ5cJtxEspk@1%p3+?_J3U1<Rx4}pBon=3ho2AO5GB+mtF*blXekr1I3#k2qtGu
zb8oZE$0<*P8oG9%A#tb=`vjGXX^^EJz{bgdPcMNJLGBwTpeZQ_<97u-`cFJ1+Y<QI
z>kj2$OT_*Jmqj^(t6-3QSc3oaj!Jo~DwrES2U-CeCi5z0PU+JT*-jQyFkR11Iuz3;
zsl^&|Vn6f>z&*$U5k>IX&w+pcJ&WZA5PR@0d^EN@wz|fn=tT2p^0E0by3eiX10=u^
zi~KAeye4`;J1%?oNdYN$qgUBc!?R<I`r*b4{t8#`7DeHxiRvlK->`3+^aA&6+=}Pb
zHdy_@+(cEkRKJ<TbIYx%To~^98^#9r%$PQ<^T)cW9cXK2RUGQ?+#pl(?eW}KpY9Dl
zTp=kL#7x`Mf0a8|7T!o8-)%S@#!Q<cKD&C#M%?OTAm@ZaGGuUwec~3DKliNHP(WT}
zrYTk|MjFDVhr35CWZb8098ym~M(gB_SX57(Fb%tbw!+TI$!c(Hp9LelO1j%w`xh5r
zl`q~jhRmDcz&NX_nzs$-<7VbhS=rj&vHo}OR&Q`O>gJm?TVu6%@zsRIw-b>w8?<vP
zkzFQ`OZ%@Mn(kl`Xu`pz7ERRpGlzSxar2HfE*Q;E>nVuBp<U`%uNrS~@L+A{l?FA@
zJ24I?qj$%IIaY@4%|c}qrl-GWViqW&J5I#_r6QPlV~0$xTf-x>M%FDK!U#F|OLh)p
z$|x!wRK5GN<xW1yH0ycwugc5In_uLflQoUQ8L4JJJkQ?XDSTv(U0Fp%5pY5|-HF0x
zz*ekajP0GQ(dfxYbDlyJucfyqg+r2Zc*zt7<*1s&dS<ZBJOMs<=&h!?+qAy`a6kJM
z$HMvZ*%<8yN2ZTK5ry(@R<_HIzVbJd!cn44>k(SMycEi&t!so#WZVJjY0%SvenBh!
z$vgDww+dC1Dlq>KQ#kpccBJjg8}WlFm3u9b=Yb<o2^JjKP=rT$+1Qq3WP=%tNf343
z7;H>0VnwF6X5_ZRz%rgadq$GLvk#|1K&rWazZaDIp>YB5773rCX>sk8`@1v7eI+km
z%s?MxT{aAfz2AG^*A;eQDnfyhJ&lsPKL;1J7q3o;DO|OW)rk9E6MhW+@XrKkAUo!P
z@63;e=ZHQx0NWL1hwr^L`}|`Dq6W18$yR$F+3`hfcA7lwNI;V%Lbk`}LHn|a0<&Xq
zc}Mm+yN8*z?cFZGO~s90@xULTb&cD%nSc+UV2`}u$l&=tkmW21f8Kt~+MGh1Eo&eA
zflqI+q^b*UX;UbN6w~bthif+eNnfHLUGIf2l9^ot@C|m<XcwO!d6H$Pdir?9cp7l*
zTRnbU;*)W3(e8kF4Sx`q4quIazvsgH%p`<npf>Tvy=ey7b#3f-qH-YY4*-x4n!V<^
zZbKf=EyEruR*5IqGU`Z2rMmg*&7SYBG^o@#0OsFZ!c{O4n0?I`EI-WG4r8ulk+64V
zOHYq4-VD>cK<N!m@WX|*KE#KfeU5k$8*Jp;>Y);wjIqB+8h3#zJR6)M7hgWU4^1bb
zaQJKxWymbK@F`<9QIGS0vtH;}_Vwg=a8S@$Y}qd(<S7Q7j0~x8a9r`j&jXVaj$oLW
zfdSP9!&}Y<I209P5M@}EL4h6w4B?Ck8+BbZLAmJ1xP4j?>dw+Em*a!IwdJ=8L1uHu
z8n=CVIAEEP><Q9Afhvb31y=Hcfqz<-u3w*3{K?Zk+;KU$)Sdubz7Jf<;Tm;s`AG_#
zUDc3g%}*R!_&d&Q`cz?-vbCF>mD_N%6R`&2F@axW7JtM!@dPc*eY^IZ9!697^e?i3
zEk-w}`Nd^4IZW>L@loSUm}B`}TeEWIU!X~2*`u*!V`F=LYb^1LaV7gI&~V7qj1or4
z$`Fsy>}vrKPr~CG#$;!YqEV+?iU>b%P-+R)q15{2U&Za-ZdZlu9S04?h$1rbWB4yk
zu>UWc6<NA7&5sus$RyN{_@30sHc;$7eGS+&4qI{OK@(ry(x+TT0fIq0&w^9kG7dr}
z7}alcci4YfDpl_hf}xAxvSm|&28$29U$yVv&ZsBYFFcQe__j?=%`ad52<kn%hH#!t
zOlmQw@gPxE)b7Ke5Iq?OgQeXmM*5vh&q~187m;rcJV6j_Jb<Y92OO~pPoDc$;29H#
z9TWz*)!aY>1<$7k+w~F9)SOtzw*?LcVmJeZK9pm>1&L0^p_7fc{YaCVRst*GC9o0!
zw6nn98sOovO5~Z&g+W9i$TBdasp$NMt^l+hK@d%F8b4iZomq-&Kj+5MlG8O6vTZ#*
zJ!h}pt;V6eGivQazl!yeasyebPOR4OpK0{wyNoNK()65nUqy>v7i%Uc8joTbPh*g&
z3q#(2_Ql@CBZ_I{7KqB`RTV*0gj0&>7JmGSjm`3rKMN2PDrZlAzA1er>*=`hhsLM3
z{`op~CTEeC?UHRv!(VTcm}>opg^ZT|F7_>RZ_YEddoJ26nb5aa^^@I$`0&VJ&*0>g
z-4~L}ltl$Sm#r;aZMNaER`;vd%T%X++OH}zO9o+H*A9A}2|dih+CJdAzC;20!La^@
zo{@tWdgRUHSL@|r?dNl7C<vflM5cw{ZMSjM`g#l-h>i30G91`Zn9m0vXdZUdh3FsI
zXlJzv7+2;yse~)Hb9@fp+9Tcou+nNj9bRny0URO{<xOSC-oX}J99wYxrUSE1VwKPc
zm(e8SIfe}eifdODYV!uSZhBQ@(D87rKW;?92MCAW8^>xrnhObEJF%Hz!~T<4Y^lm!
zw4+@7DB5U4Y?8ZO>tC>&7f$Vv`IMRU<>{d6>){gV_}KTd%^B~`T@767_#JJ#REhOC
z{>v%isT7T!Fgw3qD}LvDVqw*%qrC9}P4YS$t@@cG4S)#p!RQpBVz}$3R$kswUGKI4
zE=55>z7Mqlsga4(!_k1wWDG%_*gQ=jLTUK@qYqOViV>!SlMJW6m8h1EaejUDK0^ga
zz9yWYl(dh@v0DtE0*G#iOtH!C<SelHje@uXE`<-;XH~FuROar{hg~q+W_ogGGPmyD
z-M-QsAj)KSf}->2GriCHs!s&{uDAEr_w|)U`O^P$+iNXlg7C=LY<vS5E5T4E_pimg
zLJYWswpY}Ni=PIroV0RNP?J3YRnw%6<U)&STO!7MkA!VhjT*Gn>HhM_Ic%rDUnaZU
z#V)T*{EX}?1!Ki$M?ixj?;%d%v)yjjTVzZYzs+QMF4s5`0U*cQ`|fFwhX}0v{?6??
zD?pwT822%6PMzZ-*VY!WeM!{<IOAoipRaFVRob%EtLGq{MhQtJkU=bIsN1nR=bMIO
zs4C0Z&1Vpu&E%p%pVQo7sYi|vSc<Ihq-ThK3VqpBOxqsAJ%nxHLSv_yGA?!Ukd3K^
zNleEE0r3~fCW*I=9q(!bw-7W77zs{hMyuV%7JeW5;8wp+*{FX>Mucj~2KDXRp--cy
zo^anssgiz<I<g0~w9Y}37iW;8FPC#f!~cMskXWJ5v$r|pBRPq#W6r*5Irrk?E@yAq
zRsVSXPFPdnS6^_~)a?y{SE2)N{Wy-vf#)Mc2Q)&VBM5N5gJB93TAh`#3t{hmZsh%=
z62n@*%7z-}=+sd47dSE*>Fd6l`!V;Tqu6bHqzOkED>gBK(;eGg)W)-V?mgl;f7r<J
z<3aO^zeBFMR9?0<)lh%YZii_fR2_#fGK5sh>793qlz3rGl)bI(VK(pZF})xGdVnEo
z`Lc8M6%vWcoEj4QKKe<6*$9%o-0}A`2;`c@GKvS|07T<dF<@!HGKmGfJmZeNkcjNy
zF`zS6PD-|gs*7<ax-LV0dJL&VYn{<c!K!u>L{ogOLx+<}!fP7=edU@+Y{nQ4)yfm-
zgv0e&HSO1_DG-=V@kizfSsfMOgD|wf31I^YIQDXx<;o##6=gnG1A3Zcd2^n9lR2}+
zf%Rc}`p5ig-jnQ~s%sN4krSVDVP;$5!g2lGv7a$th6U6DY)YHJ^8bk664*j<<oXHZ
z*9Q_VAI^nCs2U*qB0JCfM~gUVQNi6B|KJF<4E{13v8f4}12f>>VhfdKGrZ1;w-1l0
zW2yQ;x%ywpe<1T?lU?W5)%Sq71(`f3e-}_`VY+AM%&Syv2?fRp7;(@pK=xhe<n5i+
z;h15B#~ljxr9h9YW%2c}U_OopniRx{WB&Fklf7^fyQaJth}7_w5R{c&1hItiMy`bg
z0Yj(%?l%vj(15*=s-0owGqG8918h;;@jruJu#h<hY)w_tG|g6Ti)6>|P(|fL=`4_q
z%);-Tv&g@sSc|pxdd|yF(d9jqFsJq+M(6qSj+g8mGUMt={CT#o&l$d$&STgL{d+tK
zmoYC(bQ^b7fbA0v@-XdOw6Nf8|5DfMM@GFnrP|kg3io!qQ#-d+#^maWnUYvo8OuSX
zAip-0>kz$OLLAQxvDFv&!K`3s5ACXm;lNbJEL9bjcZb9n27U~K<IF`2E&yL&wRFSy
z*0)_-TfKtw;|w0N@0$v2H!4*e3%&QZm>#d@_<HCS#a#0~1d1+oRjP2Vb@^isdrF^z
z^~|Pfz-+K0#kMuuZ`%}RS8OG84QDssbcb9A2zQjur_)$xCtw%TkIi{!JtWs)TE}jB
z7#z%zla}TaVmH|<Bwb0VV()}lF6mw10qufx`r!Q|%i5Hcim&9nv={syVKsXUOlpLv
zPjIDSx4?wwww#FGX7uy2Y3@1jXyvUe1JTDnJ}AC;!~4;r*Esq=IGA_BzAg{C6@Rd5
z+03ir9)mn1bLMHks$c$P4w<~X<$|}O?>lZ)a>>^I%l7c7ca!iUMZt`QZ$%2itxa9Q
zWdYbG4`Kg5b{%a#4{ED(m~`kTC_|tJ3b8E;RfUhaQ|JQ;>4>*aog;4R<NZw2Pj7aq
zenRjeT`tAeug_CCb4ZTxV}F>njEOAu#u@?@Hz`C+-QmusD<@wm2)mY;t{5XJ4y*<b
ze>sSzsua+O>10;sn(MGB=5VvGpZ*dmac1e2q6zxGhnE*Ca|o0U@@9tr&UAMU8J?0p
ziRkcL0io6G?6NPetrDnftDJ`iRe5wnZB=V^%pPH~hLF2t=mR+>FbvCk<va*0_XL0^
zEpxD(r*8$4ToLq3u_uT#oD19t5ev#7%J>Fwqy*rat}F3rve(|C*sb17wk)IxL7xvB
z;XiP20IQ_582mWnjsqMFKwi*kuB5)3I;YV7k*}$}Ml;)_Ls;l30$=q1C~ds=;{qv8
ztv4L)l|39&-u3?3^PT3x=G^81AZTKB_Q^fpgTQKxGY$jzfb~*7;5?DjV3)C2TYoqf
z5EwH%@5iTdyQAYmpNiRtGYz^Y;RdNbu%Jl~N83HF_vmm>!VqBWC|#|ULB~$=E?VS6
zI>T<e))Q7Uj}#wFXZveSc1W_4lBFte0z5~H*Pnck5HSq@fMBj&-6w;UsoAp&It+YK
zXqRBTc~I9F^L7ZhC|d+JkGI<)LAmU(R!B~c8?00MKek1l(Tb(m%lFwMR`3mZY$CC<
zo<bDS0f0!j1}9U#+<u%mXd2`yu4MGZ7${>ti|&ZT>u9tOiW=cAa{&>A5e)tzBW)ax
zjTXG+I~qFt1GQrF(ckw!X63iJG4E6ON%e|<DkESrhr%6|(fUt982iDB4*7F`5YP-5
zx5~nBTS7GjlR1Y9nZ}6<n{iCVPH|}pBQt8KTW5_`YgaXNqr<le6LwGd!~H2DV(~E)
z(@_BQcuiyt|LMs_p}wdH59%tTEQAi2^e+84a%W(&1%u8to@|0*V!NmynkJA3<P36C
zok&acRP!+Y<y7pcNsP=dQSD3A^4b~oK)VCDN<Mrp@<2Y%1NXs`Z8JqTw4#|vs(saQ
zKJYpIFb|WjJo+L0u<YGXY!4l>{VsDxHu13bdBW@jmB8EP0L3_c%N2F~K_RsAE6O5p
zjzY{K=7PG2d?=viQ%1f|aUc4g3jjj|V6wsD@wnR=1*I2uFFYD3l*Q0#F&iQ0zHJb`
zDrhI#SL%Ym@C~YbfJW@<DMc5T9>yJGP}0(4Dv1=KO;|VRI|m=C9vfGTh*%`d0UsS`
zJC;Hx1vc+Sq|QKGCUe(^o_E1pQvMt=6V;1SA1xnXTQBvItRu$c78e(Hq~hTtRs|-1
zVjz{>Nmh=nB*#M9=e4!9lLl)W5!E3G9?=C9Y!oSQOjrv&o<FevtHP#N*QpEP2*S>{
z0YCwHQUUX|+r>c(1WTMp*k+<~^sbwP+l5aNk_Dj03yl&g-f8%-_cP+LY{8Gg$GQRj
z_o!VaSmuAg!qfu{{zV8$N=;X{wCoeDJR0K<V-;Erv#WHFqerYEJZ=gD&z1tXS#@FC
zQjCOca0(cqh&@(MwmoUf)$!R#;{Wm4(f}N&Ge|iBn~~e^{$LX?34Mn{!O3>A*N@_s
zx7<Vm9#vonFGKVi`fzu=e3B#P?3$oZpmisuDat+|IF5lm6<rRU)d~FAoD(sx1Xxni
z>I@=@l(oQo_`2bsLfrtGYwf<m%#)v>{qh_f9As%<5wsJvPcuX~v<0IEnZ#hcGlT&Z
zd9R`z{TaD9JN39zI78j5T!g={!^E95TQ`ekii4b9Y=TFplMQ?385ulGvTZ77eP>=*
znK(RcU!QL?mf*fw-2;WA)n|K;#|+FL#tgq}X{_ybkc07v{9x~N;|lx$EX{cCeMOs*
z2c5bXri<ErF7|moAros|yrh1!B6bFf6o;SpV~_!0|3TueW5r?1<IAzZ1Bj&5Y>X{Q
z6G(Ep3AzSWVbr^0*pga+8Fr!~Alefkj7L2uzO`Q=evWA<wp^SEQMyvxeuPfI7Em8K
zM@g1yj_f&UO~G_r<Aw}v^`mpL&Aor=t*WcPPiWekQJ(f=!pNk{-dqPGS;{OVO`rSK
z{m=L9-J1(PZ4%ML@p36??HMcmedXAsSU%$<1XBUELD74;|5Z=~3Bf<oj*2t-vCEea
z#Q6?=?R07ut@yEk>ECy2dDc76r%M5WTC!@qmJyhGCy=NkV)ZF^%G_okWW~D+VbCWI
zAKBQWaLZl-qYB2NvE$O+hria@#LI;h0~>;5%$p@mlAbAB=qp)zP$dF@;)TsHUM5V^
zoP+`3CM0c=1>2DL=&%W-xC8vMVJ+ibYCLV?#U}pMsYM$Q0B$iIDLluh93NfZ@i{GL
zY&L~sP%ai^0CIbCvK+AtpoVYU2+2JRKrFx1LNiP>!RC%2IS}$e|0AN&aj^y`9P!jp
z2nybL4dZcyg{;=g@I=4*w5ciQV9zR1QHrX<<l~gia2g<a>dov<)(_uFMnPU`l01CK
z1%KBCk;6+@uYP4gwT3N<K=hu|wndg&{2c`;6XNfV^|+xwhls`|{XM31P4DFxG%}Nc
zzvW>pR2*y#njL<O3vmz34Y-UE+DXp2?+<14{U}WFE_T?mwde+fK+X&0cUV?7R1`)a
zua%7;KT6gi;goXmbwz&XtnAv6qw!?rB^U9^^fUS)3XiC`t4T`;_IEsWjkSF@tBOq|
zo>W)wceWYoD|>TNL&?8?a1h&<XKgHGp;&}lDS^98WzCKrfW6o0+FS#(`A$W{Ww{CS
z!v6e)^n|-#EqT<1;ss0Vb~Va{e)NlW@5*=|Pv@cQN}n5T7a8#3S%$$xT9&KF<JUs1
zCh`2BYo>kkJpzjVSD#+|&?zhcF|Jv#1%mm{Q!t!)SH>oOsi~i1wiuGBo8?`go1}7v
ze)WIL$}SlIvO5<>9<TvYhUN>kzBrf#xItb1m8E!mEr2^iTE#HbP(q!1tOuRb#yjOL
zsAX6g95tIFOE*TA9>Rd}O=3kHdb5cWq~g_9L}<h5jHoYYzAps@9sN=Zn%wIoV-2X3
zC#8SuslW&f${0hazZrMTzFP3Ol3tx2^4Ok(tCGI2HLvgJ=pcP9M&VCDUF+*MK%I-@
zj&NnH13Z2bLuezm@4rFfSPY>Mb(i|B+0fkb6jbx%y#y*HOjdmB@993A2f)J7L~%X5
zBg+<S{M<t*EGRputf<?MJxaoF0ITPII8lJjvML{`M~r*^1ChR@j6NR#s(5!qcf5|*
zk%kym#Sv~7H((n|pAOxznCs|?u5}nygY-e){g7beIR$CIgV^Kohae!nIsLT(Dw4lS
zO)giZT%LmSAHSo#K&BbHAjA@vQlCG2cF~_VTHLUN>wd7ZTJa(kqf%|x1F?@*^rc*0
zs&wQY)-~>IO_qx^#Q`D^HmPlz&8O6BRjxdUZ(8DMa$h&08pgIoH|4sy@g#V%p~nN0
zW*byiweNt4;9cRlj#gON)HG($xhFm?-6-bdbXsG=&DArgv-9_;TC4~j063e=aoiJ7
z;|aDkyZ{~y)&gAK3fLBa6o%5?eCwUP!GYa^@Lg{dLF5TDL%<X6TNi2&#}wI9xn|-v
zYVF<Y4PmJ-(r5Oe`T_*L6?%=^Yvr7JiR<}t*a;+^o9K)H<Dk;Q5MKwj?9&81iJ}EM
z7YBk$j@5_MokS!Be(Yr(3|CE)+#qXTh~Q1Xf=p0|HtAS?j<g!9>fRNzSE~rIzzJkn
z0MFOZbi4NR$)`{%5MT&t@Odcr4u}@jZCIBN3sWB$5E4d5LN#)4%}=))O|z&qOf6AO
z)J-%zORqvbO<?NuLPeKPr$DO#8&Z3M&rn{z=k2?9GX*^1wK*SZH4_O|D8K%MxJD43
zzN<0h$U_CSB)$m~Edft9C@a~39|xu;O0rn+3ilR=4u3PW6sh7buj;lka}jNyrs*<#
z?db<|bm0nb!=KPiLHyYWQRXnk4G~=osRZ`XSqwQsgTjEtNcBfsVSviq4|;fb-VR(H
zKP4g};tBmRDp!WV!%G3oP>;QQVP%n(aWpI>_+UL)U7VnB1X-0-fuOo=L=S}v)motM
zFz%QmE)fuz1oVJ_A@uvmG_^`qgLEnpR3A9n9LQQ9m?E_eesHkK2bfOD$k4@D*p4(e
zHw%4GiP~+tpEtL7RWKQTVDbiCzVh(d2hWKtj2;3fnjp-aseP>VxGvhqZ;nh7(u1Np
zMa|CSwmkJJZfydwmZd(X(u_!=G$1M~E4vS~HnbXifT2`%h2Iew4fV+ltymI*lIO&P
zbU101O<a2}6fPdnY|g;sFhtUvlkY_HBu1KlC;|r<6N0HYws0gzp>4CiYLwg9<`XGv
zWGYg3^(oerwVli2B6eJP<^F^j*l*c^#*lm+<CvtQz_ruT@8NN%-7z{WJP62}Jmr{;
zU`pY3iv$~)uU842>UiZ~-4{&I)#PN&G9(W)$f*j)BH`m@l_&(okn9nphp$;LQms9X
z9*XiH$r}>P7FN#Hx}Ae#rq;Z8-|a|~0~7|=6%beASQ6*XolAtu*C3$yruiqPlynDN
zEoim&D>cc(i5P&wn`q52>Q}8h_R8LzyXXv-Iy#W=?%*INgNJU3g?d@&^dpd(aSF8H
zNV0aARpX*y>zR^hqS1gd+Uob0|5b?G<^A~MOsgybjm8r(FE<c|gLRYYysr>Z0b*p}
z#loUJ8k8B?Bm2M-vlbh0Hai{UPMkP#;B>aC9vKp$jlXS~J>0ztohttP5b_#A5aB^V
z2CywcjV3-1Ap*F>D80h;f(}`a|0wUFUi5?3K|5R*j<07`h0F)08>l!s^wzK=Rzd91
zi)}Y|5%rwl7-C0InNOBw(eMvMS>7c(1%y!S2xTrRM<uDDqY@iECnuOq#Lz!@-EZ4c
zk}#-kJB`ZINo{CX`M?{#R6Cl6ZpNA?-}1va_Q@3`XMD^WKwkJl*0aC30Q@*S%bdY(
zd5UBkGGnUenc~kQY$a*j9bjtiC?A`J1MyYvbry{E=oi_zgDo%*!ib5u^sX*b+x2kU
z1k%@9s>}~Uya?J8H1)6Fe&&fW0zs1uN{I9eUku&sQx6}fVnw3@z&~WdgU6GmiZs(B
zmNTw0#r831^EYW}aRP2;2R$DrEzGh;Sz$fHj>?dD>KORo0ZV=4Cl@gXxa1bRFT9uh
zVKjQM*9d1tF>6Hi2W7pgZi*`f6$`TF#v2OQEpd)fiUsJ&6hH$r&zU%4X*hb*i*NIR
z10fCrO<D*2J8P4KA3S&<M#V&g+yWT5iOcs#goVwBQ1^m_V;*=U;hCnB&@+j4<YIk#
zW2VE4$8{w=r=*R<mR1Nj_#BMaCApgLAtCg5SS;TB%=T7dxT)%xxMjSRamp3%y46|w
zl)b_7m(|QG<EPW<GMC1mj<K<wl%qx1oh?uDt053br{lo+3+=S3P*RW7(ckDON~aSp
z)%Hhpvh?RZ)P4WDuL2F?p!0eVzZQ?ZL~(aW47ND8uwSAS?auovMXK8&L+EoYdvN#b
zp3h~j$zG2S<%0f4Zv0E6{DY4M!0)yVYHK>81Iv916^;3Yd7n=*zHmlIR$b;vS%_8K
zd-+;@!)s|#t_ov=<um{w-H>Q3mN)Ph0(X;i!iT?o6M!fe4a%+B<3R+7rLWx!e;#yV
zm;E(CjHY~MT;bb&aE46&j-5~(ERfhHFOkZ_+V^(He0&?ILE)6?m=b)1N}>f$YTLj~
zgn)ZGg9L$plCvP@g%RZQe$_P3v|URljv7J6rgLgMoLa5Y+An<Osnv?vD-|Q65-1(K
z0bXjmdHvMp9W*!EGtxWFI1dlr5($ZlR%11vq~$O#-i)&SumpF1<$eR(f#?M`%UHw3
zS*+S+TBfNO)$MK&jmlE8eBLzv{WwNVSJj#`G4Ys~6euC*bG3sUFS?6kQfG|BxI}_=
z^z<yhG@3}@vR7F=0?1kCsItr4F(laSM{Qdss;gF15-z(m>qAZAQV571K7DTbZ|w=>
z-$!_9Of9e;2GeLj`T)@1EtttOMbvec&C7YRP0;)?jKQh?vx861U~@5qGxo8bpKTbh
znT;5h<I&Mk<wu7=S_l-HFrM{F8@pZq*Kd%7N7(wVEJQ1wUS8|ic&1pa(UiXe^aE5h
zQuN2g%_9A&MB)_Ye>G(?M<*L&&q8HJWO+2jVY;s{-08;#&;s0ytPB%R^c$*w-2G`>
z&G7%-ys2JOSOl$nC%9|`rIC{y&54Suu+cAu0%Q_{-o^_hI51HhV5e0q!8!YDXO!Iw
zQ2~@Ve*sD)1_caRhS2oM_-rXY|LfaXh66SC*q8@k$jk}U5!eN-)2RYKf^ml!9jE=o
zyJ5UG``Vfm@Yitw5E{g|!#?>i-u?vIo%pKin_F1XIdwT5+ZLJl*b~z+PrZ`dM3@rG
z0HZmFLAM}81As%`^jBE?zJUeP1-Pc((t37j$D$5d&H9p0Rk`KmpbWEXDQe(AMDs?n
z51d2Wi#`nuyhfq<_U+s4MWD=iq3Ns-&z+9F8rA3}IO#Al$O^`$a^_gqRrNc8R`NY4
zG=g^K*T3GK)b?3#qFedVvh+eOYV&R2DE6`t(Gn1d!2Ep~od5r7ci?EYSlSQ)aJ22x
z%>y<g{bymBQ&o*N)Y(~-7=(_B&$&|o?y0rmae{U%3m;!M!3K3{UG`qgudZAtK#+%(
z<^yMb&IerHqan@%ha>>yawN(zzkAogp9QR!bks3nG%^2>STmRa5X7AUNW&^N&L=6a
z|Fh{*67^TVLx~*Tq$$JE^{B0{79&IW>qYFYLf!ijgy@D~r^T~aIvp~O^=a6b_I!pH
zh}~U-SKh^a=Sy%bo`a4c<!%T@BZ7!-*xIgQUeq6avFT;MyxXX`&$ou)=SS9}>#LPK
zIfWs8pSrq#ZIM2nFvKf_XWp!r&R#V6$4;_Vb7c_P(6SK>NU%<8P1}!S6UM~T(jn`=
zTX2iug-8ZU?L{P{2fh@>jqj74N+x>n@4-beFe`zK60;qEZI~}si;N_q{D4&)7Yts>
zqzizU+gOi*)8{*~^+$`)NhQJq?0@y^z3;D>szSw8X#rsAQbEf4qi_6&0O7z5xM5(2
znQ=!8T4e}jHZvQsP2R4b1_-We+~cpmtaP%IQ+X1uHWi1eh#sBQ<ilevlB4sY|ATsm
zG<%Au-8uIOT;=XqsaXm>(gBZlu(ytV@Y@!-$1O(p>$0n&Ku$yC9L*xX21|3zl7UDT
zI~D|43<JdXa$RFtoOa3#dQhQVCT;Aq_To<^17J5%MY|^R<7D@%!V;{rxjiw5Ux;%t
z?O|Vhs!C)jHH|R;w=;PJbs)TZ|84wd7hG6Bww7xa>F;4Haa+8_WKr>g>lujvC-R^}
z?uS(&2jJzL_>)!|eAkdDt_@tqALFvDrLyH=c9~YL@=LFTEzOCLJ;&RAfxhsExBVZS
z-r)<+&HRmnYNuI6Jgv|CJv&HnXr0XfQASI`peTSD_zrD8US2=&TW??~bGnuC;CEmU
zPMtcH02;KVEDU~XIvVqQz*ryQA~u-;YZ!KXv+x4gSR-%WR$6Hc|1cWcMSVrJ{RB(^
zE3GT>Qehi_!=e|aF9}ySKUCpK9C_sJ`2%w(wpw@8dK`Revdsl{Glij1E<9+i_NP=@
zoA=8@XNc{Ph*ze1C^E@lEoi^KX|m$y`lIn~(Wzj)cP$)*r2@^IPMylk7f;2{0@<tR
zkfF>=%ow7wSI(c|HT(zdvxS%-FTUKjebJY^cUnfsJ@!B)AYI=V-uwI$o?n_@p>msj
z&*FZ5RZW~Z;_Zg;eYuMls2J5Y@}z0K?|a#gN~lI8rzc>6d7*}~eP)zji~Oaws)2fh
zI_R|h<9h17k}HR%yZ|k@aCd`MG!mAXqrHC=eXEh<7@DW9G4S2D;=@v$Bn}tz``<CA
zP{Q0G4;&c*bn{BsoAR+uo@Lt%Y*rk`@0th%jc-acQbsE$aQa$E$e&QIkY4U(odn1^
zH2jU312|x{Zu$~WHbWfq;BzUh{D3J>*~o|N5p@M1Du$qIwSq^N9P0-HAtxSzRulpY
zz$_C~R5X|-poHu$Qi&xug7KsT00Fb)%S5JwwX@URaojfQjMw$FfgA$Rg0sy$wkfss
zD~9aeV8X;b&VEr+a;5uz)%D@N2UR&3(NBka5b*Yz8+`a^eQm?Im2s||{QPSgT}Ld@
zYhzA2e`U~4)RI~t13i838d{JC_+k0`oN-s0-2+_c1Xl*arPN2WTw2@WY81ZI7?sJG
zclVc+DoD2<Mr3v;FjY!~!?m(#%sl9T3|NZ>2y|H5>(@!aj3ysGHhK6@?~5(wg?|;;
zz0rD@wyv<}-SLJ*!=9lo6aTb4@l*2lZ?s(HKMfh1=jiwbM1E_i%6|88gxi)!Vs7JR
zzaM)?1h6QA>LxK@EIdIG&oE1s{gsd^UTlf42Uw1*^l&E)F?M9!F;W3;3ooTvj14RY
z!KoqWow<LknEPs4<PHrDFAQTV%p5)H(?X#Kp=`Xer#_G{kR5whOEq3Qk2ZT;BSe&N
zU_gp$GNATLY8{r1GpHx<N+TizMu02~*d0%MtG|KN0Li#A_@4kBK;5(@dWh3kgM?}w
zzq3(8b=_%QEzhf3g##sBpUzepTO{vf;ZdX0-GoV73#OJp>%0mM+1T9I>me>H*ddhP
z0zi`btJ;P&444Xq;MJYMY{S$|Zr<XFTY~-h&iXY4r3$2V5QkEsOKb1x;lae%IW7eq
zfJtpJ816C)D;RiPm6)sLFO7%jg{|_Z`bHV;^C~KfpQgzdTDGSp`MaeSRHEJP^AAY+
zbk)0#U%mN9JC?$MKCEoYvz+noE)eBRN<TTT{5F6QI=DnFFKml+SgQ)U3f48HGJgjJ
zb^Ba-sH;{%=f^O3UT_d!dSTwH6b3**&r&+&j#X$hM*?6ruw&pKtpwZ~xW!8$8*Y@%
z#DnX*p9VXICmrz)-G%!jOKW=5QidAb#>YTNyjYt(#T^O)lu}Z4*M~(uf53E*p5dx~
zZazMLY|uC1NRCa@Dcu0Y5CPbr@VlraCNAJN&Wom6S+U7qK^n?etAS4&xEEh#XmAc8
z%syxR^YOZgjv^)^g%J@=YR~B!IgC0;6za5cWpl_{t;mTuJ(`r#)aUo(0tx7QQc;w-
zH*8|Ia$_vNq%J;)gycRbZ@b25D2fgHWfc^OX+&|s6M|%CP3$O1I-H>)R*`%6kLlbE
z-2gu~$Pm26%&&KGno&Jmn}N|<6rf(Oz1P?_)7%B_XljUaQko|4((2|h>%~nt0x4oF
zB;~QgDsilSLSj9Ka_afU;N3pwa}Jc!y<he^7NyNM&>6E5aTO2{pg^3m5dtF7o*QJe
zUrhO4VSOd#`xs{IPbw?-(fiD<!}xfiZ_!z{ThY<mGW2$zj;>!-$-fRG*99OiCdV2$
z7J7DlLR+HY(D`~(M*iRHkJfPT8|Qc6P+kC7C?~3oKkUTJ6p)v+VSv6<d^}-%7&aI;
zkA0}oMR+KtquzJp;*#a}cL%ipyBVaV@Fcj5TA2B#CDUe*nK<fH)n8KOn#Rem{OM8r
z>5`VOlHktp{W@2@mjSb(<wkCRWaWp}IG?onXq~<IoTuRs8TwLh4Ge4&LpJcR-Qznw
zs0kk>qNf9t#f|eUuX~G!jwYjMy*Htt`G{ka^zO%c5SPUug|q;(#l;pM;-p|y%8hSV
z_^S&iGVtJF@*@i{C;-O*J%?lF%ieV={V8{vswh|p74KGbNFX(yr(Pb-X(3oF7GDZ4
z)c{=<Si5!}szIU-p~hzc`<)o#*kcHFqacZ-0aS8g;JtV4?{n0{a1aTM;NIrrU=YKY
zj%;UvPzSb}YUFgoQHF!u*MK6*&Zj-$LJd9;(a&~94fwwuL8C1WhZThPErzdpM#`0S
zcJmnh6D@yW97!ICU=+R*ZNHhqbG$>mQ_Jp6>8R5(f3@cy>Lt(hJc^iD_>QAV3l?K~
zBECUXG{@(zrOmgdP;u0-w{%8!x3o@njh|r6fa2J{j@ysSR!fl))Kxo62%rS$RI{z5
zjU>3E-bvMroMKU4<hQN!vvXH1n_BI6t$GtNt|fubx!*XwXnc^M_vqY?Kp|2m03KKM
z;CLL|>auEVH5e{9jR7ARCh7$bb8vE2-O#HVHjcLhTMHY-J(&-09&!M#0C_GCvS|+t
zQGiMOYyuK%J`@bMU#O{Bd_B4#8gpwRM1y>@qQNjO=9^1w;g0f8Iy_ks+ItF)+4HUn
z-}gTL?TLobFCRaeh-q2yDqj7&?YQ%-`o-^p!`jm3EjI7BU6xZ{_m#)h07HOd=S}U^
zo72<N#hzI5aQyvkQ(oK5eqZjkCqp2pwJG}_gv5jRutW?L*0^SoI(?0DJQfqmU4(57
zSz1<O1`kI=8uq)pyK_Ej3g^9!0ToeqF{jCHN6(YSgB5ci&59T0hEu)0k8EScz@zx~
zH6`|!rjPT<%BF?6O!kt$FwVBDAi(?E<FOxnEL$Ei*FiUO*hQEL4ys$v=U%kd=rb$n
zZvnMuhJ9vV;kj@1!$kgpA;|%FjAIk#Vl!(rnksA)u5qUv`qJ4LEzILwqd&{d&F%Y^
zi(ENcy@dE-T*v*UFeHROkKW5Q&o+06T~p<mL5D2+xO#b?EgD1xSpSgy)C4V%QqJ*M
z^)&*nNDYY{xa(+gJTeNJPGBtXuSkT09yZ_wBoctVx$>e?(cR#VNm<s32B8H&D5q#P
z8XhbAdYt}kkk)qi{~%`q_AkW5%L`e&%tnm9VLjf|DTPdi_0*<<khnx%{_3V>UdcYw
z!*NX?Rf}`YatewmH3?HFC5jT*6<EWQx&1o)2Ltblk{beCDYw)EeMN)2{R0?`zHn6~
zfBK9JZsf&XY(!>G=q8~b-J76bEV&_|C0k4p6&Oz@*Q1prg`vGXie=<1&RVqA6CWU@
zdwMvwP~t<O7+2F52Gt1RAAn0YLg7iQK17*7fKCCE5XlEt6&Dq4K@|a4rbN?np`^8#
zr_iD{#DA0Z2U!3^YsAjbh#ieWZhie?I8~K7(TmQRa}NBa>(>n;KhwU%r@)2G$}^SU
z>yqYZnj=J=1xPA7Ato35LX=M!k`{-Ch7Q5#k8U=s(8*baaYuDDIGK5<yE^MiQ9Jpi
zwY0TOd8j*wVA!Ka55_5iPJ#Y%_n5p>FEL>NM8iO!Sje@~Op*vEfcu~<p;>U56CIQE
ztHL?tUbc9{+ITe3PI_nCkUWaf0?Wm)Z4!|kE6InJk}k>hl`OXB#Di%tQEzAMkJ$_N
zJx%aA&*KsBK^n&PqMm!lF%JW|b}m2#H*b({OTnhMg)@X{1BH8#Es`f2YyjCuzJ9op
zDj9$L$6O4fGa}T%64M7IVv<w+KZS$e{)3|=`laETqxQge%Qakzg@!?>^g)|~<rycF
zhnZzQyxEsA)4;)}oKu=Wp9erh-2os*R2#RbRz66lHZIv@chEfki<YkKMlAql9<6j<
zQesQJ6@)m5yWH*2SGNz<>dUxm6ZH4m2U{t?hG7Gx<;~5PbKgrBoCPsa=Fq73vzQ-D
zM^iI>3PVqScg=+=)nlnm-D}dKzRMa3x+MRz$_8~KbQzv_s+NGu1hy&2o^ulR7{KoV
zZW0&>!CA-B7GYMu>SP)qQ8)$mi>^=5HXt}c=S?as#cH6^0U;?$C!K=8z}mqi{P<ly
zEb;$ElzRE%zA^8uDl=g6Xbje&Pld6lFD?;=pNMd0_)ibAqb|Iy+xz<Fl=(BZMjqt@
z0LgrWb>EcqlXLelRAeWsW8O<-AQakN`#GZfs0BrIA1d8&ImZ`qy*P4TLdS!sQ-<-f
z{zLi4@={Vdt~C~Gt=gM4!|QI$+xVD7RDl0A9TGuD;8h({g3jyS@c)=f-7bl%)WoKM
zK&3d$!J%xC9(f5;SBo<PLUt?mG7@G%Z3aQmGnS(@^fZ00F$!pbvA`L?#GE1r$R(1j
zEjIzICF^CcqIGI<VM4B|fg2o!9op?=A@&C0Pz)e694}4RM*k0Pdz?ji;?2aiA7wW_
zdx}D|aTA$=b1E9(9N|0lag)N=H}<oIPIz1Gi<OJKyX#L1I-*en29YP;UQ(uz-X!Cl
zHA(*KF*f$bdAR+9*Q`Z<@w*O90_}rF>6pR6xT?xT7N{@%k*_Z-RQ|4`#({JPAh#Ur
z!83ucOwoXRC*QJDeFX}q($1adYZtJ5iQ7`Ka;}!6&_>9nH23bEin%?WLL)H65faNm
zVm@$`R(LIT@eY5E8g>$M{nWs8X8Zm)V1eq|h45`AgaQ+~i%1w{NVIQbf6M8I`~4O)
z;ps^e{T}{RH_d#1Q^?1aJZ9?g1HvufGGZh`*bolFb68M9@kT|z31JQspeuyj{hg5k
z@K@wS*Md9^ljLxis-VFWM9GDg_$(Yu;r<Kuvj^<=U`;Lvu>(jE!1x{<)WEdHK`x?r
z$0C<10W&p>IGE;pkKX?s9D481#Yh0bG?`+4u(fo(kYotHC1pD}K+@WU*i9#LM6fU7
z9?iYx@?Mr^H24(9dSF8RA9QwcSdS8C1d@z17`AM_nF|-1hvoRfck|H_QOJ*Wi|@%-
z3k_b{XC$faZ=#znRjq?1KoaHt!aOo9B|##9E;7VGsLP>4&%ft<7$12Zb!<d=^Eys9
z9d({n^JgR(d`H=a8~7N`p6_)8QF;ON!*c|O>L(zza;!qt1RBrd9UajX_QK!UYr?*+
zX{&y48k8Gq&0y<{d6+FGl~mu}T&tS4E$O)6C#`{dsH5y2h6hH|&P00?7!gwhTl>#)
z84H>%#k0VGe+BnYNoU=p)YYZ&&07{(fDk@gz4gVBwHR&6IN0qM3fvU4ck)ILj!a~T
zw=S5h7UOkSw5u^o9(H-dU;2E}W6CO=oU$=vWx*v~OS4AgHP{cF`?)yo&hEm|ABpvW
zzR0sASKv<D0-3zAq9Jy1MemWHbT{u4rvwT@y}b)1%?`hvHAylJn;8XS1Cm#`e^91|
z@baI(DhsFcm`O$ZT!o5oE;{d7-hYI@7JP6a@anJ4rJ^zAIcr?z=PDhX;p%Iuq0+ch
ze)FGy&Mz%Ihu1w!q~ck#rZU)~W{?=+(642T|L(026t;mw6~!uES<f+vpfCW<eaT;N
z>KlP%j%x#?WhU{B0WH8G)NX3!VawJ6_{Ti{$s41h!)~K*c&;qW<0z{VmS;e-RH0yU
zR)mvHeH|xA>f@s&<9W*br#)ebf+`z#8<~ZwVRzHZ@%AW--X9nXPdDYq(oWd$bDo9Q
z%}~>RJJtU`&wT3*sqcUop2Z*os~*${M4B8;jDzJKV8W*+5(v}jt(k=58y^=KWE%z!
z41*JaT+X0bg{X#0(riBFgk)%mjpZ;Ij;(i2-fIO@BD|bMuxYHWODbI5$ks~SsrLZ0
z5tg<XDT1v)3BKs$Ky+!vqXCwTA}XQ2^L|ket{UQG!53f!eG~f+*{M?I3aEBY*0C^m
zD(~V_`c<6?3bLlWFm5I*4hk8-mxpnZFVG##|66hOC3QZ4p;d^{(#L|u)*FQaiDyaY
z1-w?=QAP5?C5vpg7)mb30V{=Z7ZLw%;T%Jum5v-tW(nLw%yi;{Cccad$tKX1H-j?3
z%8(WsPYJm<;qbI=&YeWGjFmw%P&UE;FHSEpaj(-JB0-V>E5|LTfkPTLQON$@=h05N
z7SIXT#)>8wuR-G_m3UnEU+nrPX|2zyiO8Qm2mbxW4-8_lKp?7Sno$<9GWe>K8B~o+
z<M;fQXz^iGb*vtQ?!%bOVBrzUn5+g36@{!p&de~FhKN?V0S2ZRK%5AE!KU%LE@>`M
zsIhT#&tQN_=41Xw`yG>hQe{>7f*p`EVkf)5N-Fq;)jyzBk`yLn?a>(+(NzB<JoNe(
z7oc-^^R!qF{>{^p_Uq`E@cl-P6{wJh00Gg-8pESldHML86KOZ-B<2!J4Qnka_TGO%
z=g-YfqnFRa@v~Uu_z$#MbNBAa42FiB^~Pp}|B~ri5RdYge!`Uv$SmH7${I%?Qo$`^
z{PCDj;5`6?vIXY99(8Dq4&pkZU0{}|>4&KQiF!|^2WK|w2ax=>bBITee}Q>4IwaCN
zVGh|kKJ%RFu`dP;jECgiuLep%!oQr1i}88NOhT((I3AI2?x<7(4ucPOEX~e*r$zUb
z)2q<etX5O_gN3DT{iQ8_M8(DshXx!J-i=BNWJr&}lQ@<p@@q(uOHzXH^)8&`lt5Hr
z)bH3s+TdMS04T!;e>^=Q>r0pf`<^BkgNW#FmBh0}QxdpuEWt$<ZkT-Ebwsrfo7fQ6
zDRCXJ(e5xBLsbgK_7fl})QymrA49`1x^hoY`PvS=-2warIa+qi?+QipQPoN)Avw5y
zp7G0(5cGea@yz^%3x7u3&>?S8wE%An9Nq|Ce8=|Bsu+7yy7uaW223PNF%PA#6jI;G
zAKd~aA;ZbT!szq&OZql4VlViPlbY!Xb-+RA=yIScHiMm-m_9e-;Di!D>Z;Ab|H=G9
zEG8QON2o}j!lc9(;1N;@pBc&%O|rfHXnzs~vcZor4`>V<AKz-V)&ma!6q`;?%tjZ7
z^9l);DuL%g{VBj@Dg{B4xmY0m>+E3HbfL?DTjaf8|KuMiwW%im_{P5EFfcdZH0yNM
zC@Aodp(XHGa-Rd6=MX*&@e|NE;UBQT%;Yz&T||B!gen7QlEGdGImukCJ*qHbRGB%}
z(%_2VH<2i05T2wAoP<QJ*yIWPrPYDI)90^d->jrwe&PpJxc4&(Na+I_U?M<3N?Q#G
z{-B;8O;N=wcdd*?F-0;70JUTvE*fk}I5ZB8S(uI{$%G!1HnvD9npYlV`0vx<5a`Rc
zSwg2}^=gxXR`3}#p(O%_<z+n`A%TAoMa0L*<FPv$i8q+H1Aw#L8R~DbAI^-CrPI!C
zo`iq@pwp+!9?Icp0jgr$*YxvjCMSCm#D#{|#<kt7Tz;LGl2pjHk|<D&Ki_)lxNx+A
z1GRG`6(|DfMql62;KyU|6q<AxMb89Pf~w_-+PTnTtbaKWrV9%r)LB6e>pD$PA51xL
zuHM=-LRu<Z&K*6~rwzW2&zv#iK8UV73Mbg;b*Kyhl*tVu6tM|6jE~v_G_$=ZrpPtz
zS4Xx)kk0^Bk04+5-G;wYx(kYqfPQUKHuWqVZJ%<8V(tsC=VWKW%oRuF9_Tgf;6re{
zT4P9^R@wy}AHSrE96>K0xSuItuN44cJ-0Zv1O-sEdPLo!COBwMCb$Z8r;mVXpJK!h
z_drx;d2oC@PZEc-XK&uPk!z?2en6S%*X}xyFmYC1f;9u-pr}4kecZ3fj{e_dBU6V5
z$eR55>u$Vx<^JZ^ynG68a?+N&PT*>r!|nrcnTs9w<+TMy85#M>`eVkg-*hiH$l@`n
zFo0hfxhz<3mZ=}KESs`<F`mkWsg~^a5dK+Hzb<auOuQmC_JB1P*0Hk(m{(Xmw=O&+
zbSpa6C2HS~G>ex)*4+=BmS5>Q9~X_BIWWO3lTWKj;!H;d4=*ZHs&j>{e|<*pyA2aH
zUj6yjJJmgtB*G<P#>2y^0P1u8V6cFgoE@3=eJP*8|5X998~H&z`2VgD4-Tz6{_jC5
zc#HEKhm1P9a>-NJ#=$?=4lDwj34Ma0*z;&?N;g0dEv|lk>K7ITtuUA&>bsF^2|&u>
z{hLL=bHVkWV`(kM#fG6S`L3Wef=<KU#3e<$&nBY688mtWXFmURwcN_Z`|c!tI`eSj
z@5jvYF>h!t2IldCGB8O+ub5)qurF4NOdmj;$p1N`F29*UULDv2fcAhk-h$(7PD&dn
z$nnDhUn<sC@GARXa5GK{p8N8T-(Syc&HHClU*QlGSq;CvO#t-R02TbK-O7xA%HY7X
z0tmNElx#Boi`8A9QvC1HI#KxkR?{(*oAq-TT%m8?URhOT2<9I|#4HR6it)cWt))|b
z42hE;+hIaUrx{L5hJh7S3h(Foxy*zh&(SkJq~^SMib8Nf^wNiWen|L+5QeOvpv!IG
z=eJa)Z4QO78rtfDNU!pZpu$QsG7v>H?_z9cV%&b5^?lnn95CNA<|?-E-({r6R{Tu6
zAJCBL{a)0U#CS%hjA18v^U}cc|ChK8qU3*oQ9F)GrxyR_dv7mVg8?w0pb8-jWl*GZ
zi+(_3NLCBS#!mJo7Un@6#66fq4h2csq3eui;KwM*oNPK1d4ub$wY9+7UMG}l*!yx!
z<(2RC_(apXrm8PJm}|Za20})hZy5>y?f`j}wiko7n5S=bbWEY0`|O=NcP88srm=Hz
znTRh8`+M%^`Xe#?#|0O5zIw}Qn<GBK^kZZ1A9^Cg!QP*~%`$Y<No_uKhC9+WVH=!(
z>}AL#hD+9N8NsL2^YO~f2QOhN1!btzrT#ucr!e?FQy|^J&OV9iT;!5Zfd~Y!ijyVc
zFu0$!OFx3=q%o-lP-kLN$XRb4tB|F?Cg|ubz_}aNER&I`F}pxhi~r_VEeSlBz5O4n
z5z)l?96I9B^6%h*K{ZhA1B@ogrr*g=&3q)~{{7b$-%#F=1r3OeI1=k6{d*Vf7y7^T
zfN}a~+DtYaFpA~>&u75Ts(z|E!fcR0%`k)-LpH~}QFv%>m|+>R96%$5q%liyHlk`P
zGlnDI9BZR6E~FCtCp)><BV_<UmPdUQmU>-pfFxMjl#WP82P#ag`2)Hob$RMW;-)*V
z-aQEckIJ`0u&6xlRS=yrrhWXO>C1`;RZ|O|TKRinDr2Ya7icMl%>2CxRB$(>P7lY?
zw|)FNQgdKemQ+GK7i=-KFM-=aqK~M+2bBMdp*R~1^7J;9bGf8p=RiNIgt{J7nqqaU
z<3H%Y$S1i{Jb;}5B;O;cy+CMc@L@cLQS&43j62+>s>`9wqk26c!rd{qzdF|2uCmAv
zdC#MvQNr>KbR4JN`*Ko!wF$rY%86Kd22i+cZ~I6575DK}nXv!fXtZB0D#B&~s?<!J
z)wF9-qKWA(P`O!Ajhq-PRVMFg!~sF;S0hr=X!(DM1SOe6AcMfKX0x+%Mlmk<AEa@t
zG@JA$d_IK^Ufy}sV;Cc|+pGoEDX=)CeFFUax$6hnaCY7f9CoZP)fJBpF086aHqIFy
z8EJ!OQ~`+DY<O>qA;x^dsro~lt+8+9w_M$yd-|>MlE$&Zt(tw~Q`{atejw-@8h7KF
zM!tlr=am;tGtTb3dzbCZ0q^t9Ng{4XxXpHVsXg)uQJj&m!Yr!m>CUZ>H{ScJJt2eZ
zNbBc?JH9J@+OuT!%-(O`TN=JSc<@N%{>s*#Zzp=UghqtgcdR#l6&kT_otJm#;nG$&
zkJSwkL1`vu&fRlGb&Nu<+U5M#*vg%4$3tAwGG&Xf(PKn`#v8!SCj5EA{@t;a=(wE|
zuCGnbMsa%xd;}U8f%4)(?AS()>G%uOYJ!=6rQpxfhwJ!*5B*v2)olFlll|-VNfkFF
z;0QHK$<PX2TiEdDaliF^VXcW9)ndn%`~Y`?rw9sGO`POCl4hJo<5xH~!)cR@Z9Ji6
zMthJ5dx$`faA`@%qBmipkHO~*W#vMlP-WPMF4$Kd)5$+*^lp<Pr?>FtpJOAtjY@F_
z-nK%5Rpv^ZYs}SRrrbfl45B5z3Nd~QZ>P@`S!ATOSMAQNcZp9!`iK6n4|D8jd`$Lc
zzXO`$u1X3U=-?M92skju+xzp(HdUoOXFooz%=Yl#n?FD{pTn$k*emNn2S(jm88?9F
zX-$3oR}m_|A3C+k@;2UK_t6U@fBb1{&*%RB#{~S3HIUp3&NRa#w0zLM_^npN2nJLT
zkEYuC`Yn;A3`22pn5Z<9xc0@J%{MPr{XtJnE+AA3yG46Wu2Vt^D)il`3Y7qaVdLGK
zpzzP$l_)F|?~`<G;@73EiBr7pPOpbC3z`(s>_(`FmOv50*udeEPE7dUL=2urA%*Wz
zeZ#RwP8S4LF^d{8La*U^I$L``*g1_&a4l`s_-=s$4MhYlF4?}p0RHv|I2_s{;wrG{
zy8Q7uFhCZG`~CfoX!hm`m_32Y;_lbmFLAn&%ne=8c3v@94O6r#xHH%`cj@Yi6!XJb
z8c-^}@(s+m$bW@Uk*T0xGw$fFNsouViG`u%ho0^)m}hO<#sUbaxuxX{`kVu6tTBKj
zeJhx6pRYBRLPQ2UCX*x&oodp_uTYkBt~W)dhtMg&l8yz!xOia3kv2U-V<lWDHR=k&
zv{Nm7K!V<B8(7rNxMO!jL%0NEHi)gH!t_DbAIu9#JTYY>@SF^XuF1#`A!0E0YLVuD
zzxL(I2K5{8Xq~%ti3<W^KDLT!8lj}RiQ0>?3Md@_C2)^*crf@UM7skF1Ys4mQ|IRL
z`;U*lQ)Jw61#Uv8N39q}%sw<9!KZ~059ZmkAYviDKNbv4<)AvEdYK)ux_Cj-djeFt
zpOQijQfDxle1fbZ<|8Igt$?MV=Fe;T{zaM`zY!Y55J?HAo)PLv=XxWH2oSUj{$8%a
zHgDeKW~ahR%p`S;Pl4>qinff}Wi74fSm5f@R(z10jZ+<@O7df)K^=;a%|d}xRBl&Q
zCDmDJs-;e37kGIZ&MTiC$Rs%nc$TJ$G`0qv_3$L&-(_Uv`)&@I&E8%e<xu-E8+CQx
zY)NUTH~}FV1Q~xd7QUWne_+)}N@Hvilis*i9)vMMOGgJwvy<>vSJ!NPVGTRGwY|N)
zblU9yJH@n|1>a>GCMd3mVIUp`jioS_48R)0IF;5Ftota(97hR-Lm<z=Gz)Nmdr;5<
zT2*ar9^ho{Y(nfb$n7_(YQzevWZ?|JgV`0v?!-=jJnl8hlcd%(%su7gt(n}WCWCJ8
zhkIc8Ku$h*qL%*o=QLzhKJHp{{x}G{jjjWOgGV0!`_%*Exc(}TKRql#q;g;cw9LuA
zZKQSGB_zXQ#x)r2*jrQDoQY=+l1;xs=e5WR>IyPomIOAu4~(y!blB3;(nb$6n3@#x
zg%F2MflVS*C=)^8D^^^(wwEHdfQd4Y5YWagoxU1O%@vjt!P2noBxgDlUp<Z|xU}zp
zc7|$&*qgAb8ii#OD?>6LC}7H@!1~B?Ftf5Z!UAgnrDeiz2O47l4Nsa+IYt?aG)jK`
z7Yo<alVS1y0|uaMKq^7r+5{~Ywt{CjF4p2xdca5{O9RK{>{oCG6o=3BDIDSCqyShA
zW<62DdUN;`rs2ER)Yevpz9+l|cp$M)nAfrU*N{{VmSvL}`V(}KSFR0DhXfdXK~(!1
z{mg02U(8D(coN9!Rx^g>>HWmS$JkS%Orxt7K^F&xb}P#JE$|g!pf+Fyi#{-T9N^bS
z;I0yXzQP=g<vM5`moZf51=>De5iZbxpCz67zxLL0U`S5287^KTs0Y4|3ct2ncFj+D
z!ZzGHz7DFP({Zo&NE{g+9$3NiARYJ`aW~PmJ;lt5)OFO_(HxTmM*vS+iF*X-&9rKm
zWi~gB!?0B|=?ypc=;?_%5;ugb2Z$j69g;0()<pH0u;v1Vou3jmfiRp$mp|3AE;%Ns
z0FNLFcyFkTS}=5!e)tM62YC(VRNK1WK&rV2xOXD-ON9E7ks=_o#q)D;RvkilTvo0q
zhigJc00@WhLB(|#;j?8@6thHI5Res!mn&F4$fNPXNyZLB=@$G2s>yJw1fLE2eNtX9
z6Og&MBeL__YLpTY&rOw5=45k<cJnBk;1!)CgmU}*dEkYfB`kw|?MFDK=rs*|eE<g9
zrjwzrf}PYl^I6>XRka|M0XOaRV~?yf>&HQe^Qx+hYi)3JsR@C1X!o<UW`Q|?Ap5P?
zLk^;Jf!vWw3chK6G82b7><ijKBL8)$hdCZJVpV?{0VWEz7tHxyyVMobI0)LW8m6lX
zCUrhgVOW}s@5;0?hsQN8+(D1)_f5MAr31=G4qG7SqT`#1+j4TrN2ULxba-Yn@h+jx
zW#=?nb{VZ4MtcE(dM=*X&#oEmo1(O0Cowb5-a2Syuy5Z24BWxwDa9K1Kl7AB;0Hcr
zD7)l$;Urjo)Q?wY_MYlJQm1Bk9Vq4KA8K}8O0zSRSB7Jo0hA=_FE#tKadP8EG^9!n
z4#}mjLV<%X#X*KYICB5@&G8N+NiNHo_tQ6=DQ7x1=smq-^X%<o<85Sx-2=<X&PT)C
zDfl~}z$^v<%`WT8zSv4&zBpjo=R~=<o?-(;1C~<JBzE?mg$1FVu9tyfMLcTAPMmUQ
zQun&-*@aJT7KG>4)z`N{wRayL?helIfF;UWU8-fQ^m-KZq-cU6W^GTIi3CNk6VW!=
zta1hsbaAe{)Yp&N-2&eM&f3+ja}`=$jo?y47sPN39cZEgho*hp+&Hd|VT1)#j#TsX
z=H47ZV)FqDJ<QL%pw7eb8t+J9IEsonTFRPgy_tmBxuE9VEYzkGN$^$Jh^zqw>POaw
zHtHB|80lRH0`ecY2J0T4g0_!_;CMtE14qNIt`T%MYL@V3d(wR8-Un~)iBw>$l{I4#
zU<rcOg8HTz1V9!BEhj6nX%sM=dIFk_rnw&ZaAM0N83m5?#cK9wMr7a&5#I&iI1i>r
zU=GY;P`Cb%(u0KoKzA6F9#B*R2RJ!6pwtvSeLX1X54>TrbrT;7!;AkPTi*eXb=&rT
zb*nTe?IDU%DMZmQ3uz!bQdTyhGBPq6q%x8ygzS|S8nzTSqU=;ggN!08CGr0rx}W!X
zp7;OWpPr}tE-u&g`<=h@JdW==>JGtV59b|7jw^Vn^%%G~3zOiy6~<9y3IYuy(Y5pE
zWmKm$<fE>k@}7KAr%x9H2Al^CB2EV;2AT9B+7fNvak^tK_=8wo^CHOSsieSxHX6@7
zYgVJv`l2U4x&L~7!B7Q~L{qlzG*TRb;lugAUPKwGe@|h?_Mm+On=cK&0SY|2`YxzA
z$})8B!~6?T^jQ=m4_7zL&9BUIv5C$ux1oS{+5o}R@ag8S)J{E0)o(GjGa&@ZGm2qk
zA}t8%sUeLI1yaoO+a22v)k-i=#x8*6Qh*C=Ji0>Q7+2uN9eK78uN@!+(u^!zt$DjH
z?W2pJfEmkFLZOV2ML~zn2ju1g4$+x<dhO1sDHs%s46F3!?KFrEUMo*jWQXb@k-d&+
z9ZtOByM0DNUy3vDO+P}tsQ@-0?t1lWy0UkJ{Af4Mb$UzY|5vd=TnY+W8hKm@Npzxm
zvNnexG)4!gu=(<Zg+T~XZ9cdPcGqRv|5Z^O?0qI=1f^BRgYA=LWjGaaMDB}IjRL>O
zpxjnmBASED=s@uMQ)zrs`?Gd-mr+hIO@C}3QjTK#p^2k#>BjbeAUb{KOp=H@06cw5
z%lS`E_+f4!8i_;gPL7UbP%r)(b^-GwF2fj`ZC3jin4bN3EKvGmr^<v_gz?D6+Trx+
zS1!ZVAd>_k0>J>(=8$+l?A{2W1-vwa(eCz(ACQ*al3{EuG{p-)23j6%r3vNX@&#+6
zH=YjQ+Op;Fz%WFqebu&DN!rV@F&qqiJPmmVcSGzHCN}+3q0rGw6-s)LE;^Konp@)(
z4uOjIG)kAi^vy|qt-~0nG&`YBw_1)CJ^d4_2B`_daj0Tbb*L2L{yIB5Dd{H@dE}^p
z<l6z)umZ`dn<|<dw*<C;l#~UeGl3}h8Y)N@oUH*7j{_=<Ktc;+sa&4IywgAaG-%XJ
z;*Qm$w1}+<hu)8J+kjeO4ITh^()BVDP09}@6t&K~9P3L<u5qo)E&8VrifJ#x^jToS
zaP_VP&B}z$is~9HCy(@Wo7B8{cqkWfaIj*$?6>eR$cCv<g1QL>uR>w)ee}EAL+&4C
z_OU+3z!r;%JhvtvW@heFQ3<HsbnZnXh$dh<vvGdWAx#%<fwaP(3nDAKv3;hYH!_B)
zibtFCmxu7qEG|f%=@UX}gjz5YFzaqn(GPU_Vd(0j<Y~y#GoY&?&K~=^bGlNBQm9wA
z=y{yl)NDvcDdXOHh)r>orbNju^Z>#95gOrV#EBEq_U~$jGDxUCM@Pu;_*0`0&N*95
z9H$TVuQ~tBrzVwKXg}h)ZUh9VSdPQON{t`D@M&hzV+K>~kwgqhWCb3(5790$4_ojE
z0K|BP;U*Ygv>Vs+ZO8hIe|_qa(`W4MXE8_tZC{h;KIKMS0p^4c*jtu$rzP}ES~VsI
zmHfn^{vL4zNQBVG9s}Xi&EO;(e9$ug?=b3v0m?9|<%WnXkUr_A(|ntSgaSTx+}Mwa
zD|&TPnyK1xV>;;0<$P9NfPL)sn>W4oP2~7kE2V2Q8CozwL0Hhx85kSSg2@FrR4Wyv
z`1z|lMj%eq$BH7ECWS4dLh8xGMKpwFv##%@h4rPVugO2BsEAGofS>^U>s$t5HRb=-
zc>v-iMJHsNGe|#9(Fr#q)RUZ8&9Mkb<|T+Msk_JoXN*L|n){G~9m=yZVxpm}bWTXh
zi_lb8zYG(>ELe}y+IFIZSV1Kb+?vo@6RUgXvy{<~nSQex#f!cBD`xNomSAK``mhOB
z8to`qSx9vew%}U>0Vr#kiCJr~V`~fP$canFf+R($@VzzDn=^a?&p?VI;Zy~*?cM>2
zPjssq#EC06F`;A{fd6><uOKy6O=*_HJLi9C0VHs$2y|DA;U?n(KP@SlLAyNM%DS$j
z8rSVUQ09BU0nU9mKas0g<eXq`Y>WYUW?$aq%m>#)RBYS;oHh`WUBsZM!*6#XDyo0t
ziUPt$^jGpNeX*Rs_;elQ<GGuxmd<<5v=(}dEzs6TBhnQu{Tik#<^RCqnINh%-3;zt
z)rvSoF@~reYYSanVs;5@PD5<?4iMkcF}3eTElo!cW##9;`@~v{JtzayyW1RP7Am<G
zFIaQ5<Jpk(vyYb^x0C4%7*t{f1wf$_p$g0UGmq@Zt7hi>@IL{--roIrv<W%(CM5_$
zpFi={#-03f)w&Ki-&xiHy^?MC@@?*#`G*x0WKqyF?d#$=pKo}{yPWwCy@q!k5Q|e8
zniV+&N<g9GN%m$moEvYqKs1BMhHJn8WFWLchmQq#A4Fwzp0lpBY;37!;-W$6%QOVx
zuGqP>TK|e&4ibcUo1618I<V23y?w~fxQ74??1PWAB>Sq`+Bi`Q1P;k8Y#!YA&W3!s
ze9W?TQy}(Z0LS2y2F4?94*!Y3n2;0SNx4(#O5ya#=9)7N9=?=E>{kQxdC%3gGO<zN
z+<>XbOcm1{qlR!5EQSsgi-@Ty#=^ijwppk!jvM`EjjJ`&IyhbW_QPv>QJZ59q<}EW
zsD)P%L5fufjP&y!iRmkLKZ9^HM1+$E8$#D_I3<`Eh&H+i9pH&4XJ;{PL`M44a5Zg8
zS){`a5Zp}6&6_^{1yF#XUk<hTQ?wCO#n6Xo8&t;y9K?wGnZ+O&`cG^;DL=IPDk>{4
zLRN?$Ml2eX<^}oCNR!<RC<>k^u@`Up#fFovU&_kbL2fSa)zdi^=<SgtS*x{bJLq4)
z6OVO&mAu{=`lb;23o2uwYNGfL=%bF^L#^AJ0lz!qEn4n7VThX#>a-jC)>|A|vDt_<
zPnKM{xR=<7AluENrHtBGDX*H1O+*po+8qoAbNlh0nZ#*G*x8HX1!x-_6&FGFV_$=@
z%K)2q-C0WMKz@P`u(Xrt$`It0-_VjpnKl|4ho)XuS3gH#PcRe15lsCz^l}uycSpiy
zCqo}6Kgv>MNoS4t8MZoOHYv0eew6iq+e)7VI9b~5+t7iM1R7WIDO6+CZ@!BSKLHv6
z{A{WOTazy_J<x&wKzOv&1kjovNTT&AtGt0D1+Dj!>5H`bZQ=i}7Tv=KZb6wJJ+AX2
z<>h{9Zi{h*YQ?qli=r%m(q5l>4iOi0aJSPgiSwamL@3{r;j6uPaOnv%VoPj;){&et
z1uy@|G*|)10B56c4p3VVT`@88C&&Ase)5EUmZHf><>cIVSIBTSlJ|i;F`=v{^Q-<F
zOm+hx6*O`V>u3;XiXqGdCK8JyA^!NM$}9d_6M!(9g4w%K&H#S}uZX2@rtCv>F0@9t
zn-my;E5TqusR7VGFf%u>sK~vb>~WGMJFAr*;ZoaCQ}A_T!!@A<A2=ZNKF=yZ^=k-i
zk|TnvRtiU(P)$hyA@B<ZgDO?%M&g=XiTK-P-Z&veyHnyGsI{(*Y`poaq^(VNpz)_D
zjG;C!_~d~gLBUdr%^wj*eu#eyDfrU*_d*pllz#J_p>kg}GkF)D9>k>fxKivb!{fhd
zKl%C@<eqSc2_{@A5W{rYU1bZqMsQ$7BLV<kFxjce-_<ql)dxP?_th6PDcqhc(BE>@
z*VuyH*D5koa~{M-0X^TvckX;xllKUNEPQanVhZh5tbI9Z_;5;4s)8eO_`bm>d8i$6
z1eCFxGx>7d^UTKRvK<af()SoHZQo=4KnSPcEXMx_hQH9g%~Ph()Oo4<0@vRsR~~s_
z<g~|qG9TKw4*<V&3XcQ7Lx$%Hz*W<^{SXEQ6sqBGfy^RX6(*Z4z?z_8mx>(#*=G40
zW?qzE`_aIIN(Qy4gU>DBjuB1Xa2Ts>^R25>J%c>Lf>Bbaz<ig}bY6N6Brm+c`bQte
zL`Of>U*pqh3u^!c71f;wxwi<_?DkbDVweJa4YE)04X<B&<GAlp+>zs3_Anik@@xDF
z(9knTJVRN*i+Z43`sMhoKa|J|A`S*2Sigz~XB8i_SK+4Ut{4~(Ch)%HUbY-760DI`
z{5>Je#kG&3BHYuDWyv88NfEx}6DRJ%jI<nLrX|qZ2|IGccI5=3m$-_Us>AN!o#&(J
zLrkUs(yKNqx+7ZuGX4;5)n@s;czn$@d~JxU1ni5*_1%b$%vhML<Z}RL0{-S(&aZ8B
zx)rs}60prnA)mrEC4&~kC6+p+LfL8PYOkWvCffx@RHoft+d76O@#)*Q$MNi3#Rem9
zj$(5zj4LEb?ADRTWYT5yS|q-lze9qpNb~3QJ1bTu&b@sbC)!*H)ae3^j}2^tVEj3}
zD*G`Fyg?r$*!PM5{1jM+`N68thF`;$QwwN&5JEY2ajwT%OrHTdN8^|zkMRdgM_&wr
zZV5I*I6l15O`_!Fhm=d(vgOvTr3m2LiVDvYlcvelT{6;d!t9r+wMx}?mCPnS2qtex
zlAZgBZ~Q|Wh{2-a@5As6EhM9=!_$-TDoe5xh>7>$`W=elq8bWeJFE5gJRTPNL&T}5
ziApIRI<zP=GqbK8@}v(a=5g8VwE=d{MYz~E(Sy~aaN)`WGnbun=GR6YT)aU9++0Jp
zC^T<8G-DTcf(OLOG1Ee1gs?c&b*EifIez5!HZ^ld#4lC#idsVn@C=B@Xki$<EqESi
z2!k_6#kn;3B=u_;4B`#aN&8IQZw_|$tyuYlgYr_c8^sOdk=VRt%gygsE?v5$JC1^D
z86;kGTW*Oqdx!Q8G%lZ#_vRzMMSpiiT_+gMXoOZkRU@b8c{H$~Kmsp<UUNZ+Lj0~W
z-#zBY8u$;+^DniO#yU|}{sa`^mX<DhhT82~jptffTg!kgl8_4Xe+)`YT`S>HWBYi(
z1j&5caUh(5D;taEP-jO?k1Y5{6hy!5-Lz4DU_o}fHX|s7pnNR#QZ$65f}o^Yz%&d7
znYl?JNhu)^W66JP>rU%L2j3Gu)sKmKknBnWjG*|g7ZDQdcw}dgHo_1hTWp{tdVB?D
zg}`61V98@UQ7fHzd^)P>PKn5{F(0doiwg>|Biatwoas2F1Z>E!*g3BJXrG$gMI|v#
zgo$76Q(g)iQ*s3G^>jF9JbIKKgh`@s0<lw53YLV>7bw`Zirgd|2HIE|^qvz{Vw4ev
zxOE|1tOpPkLgW+*2sS7i_&ORsxuu_FSu;OW%3bo(-e9SN#@h+I&yzvf+nh2icRN@*
ziormfV2|&|XywfcesQ)%Vm7OnY_)CHiL?UAvX0CM*p{KxmE4O!m-$e91%&wcMimP!
z`GeUusIO$Ne_d0v0R8C?_|!9@5+MR^Z)rJa;qdG2!jm?je7qKLTtj_NaU(%rMRxh3
zOQOOAN9PZORF9M$O5+7BgK5YmxH54I1Y~-1%M8s<owP0EX@Z;;Uy}hmfZ7He1jbSE
z8?Pe0yfyvOfWYW0OhXcJ-n+{p|G#>Gb8%`{|J4MDn2HS4VH&Iil3AbSJ-j*%HjnJR
z8);%}Y=Gt-rK%`8DP{&;S@?J|z)0c_&Omq?4oSvHBws*PCvp_$5f`~a*Kr2pMsTnf
z%E6wMXHjq6>4#7Q1g2gGY0n+Q!Md%=mo%tZvb(GfXFqsZ2$Mb99zaNg3T+xU!;B6<
z8K~bIbFCY5EH!DwF_?p#Cgbj_?1t`r5ygo9V&!z7I72zG*x9DD&CnB5oeO+E4391u
zM9_ehp|`g_dSzkl@9~1lt=D9$S;TBYXQOpRQcV={Ij5mj3lFh@wl1Bwvd`$`bXJDm
z_amHm@CXIQk3uC4I1GGH2~Z*O_fpnwPB0_@d?@@bnMOFtrK{m~k^a>Y^CKv!<Rqv9
zEI-Qcq)wJRiy+BphJ}fs66{-h<>b6-#ee<$S<=$73f%yen{DUf>m0x4Gz%hE12I^A
z{4vU#zfsAI5(JRIY*0~i7?fL!dV3lj1v|46BhYblDyF4KB8@8J%ttv0krxoRff{yH
zG#}sN4I+n5TSwU3TbyJRIU|d?a`l+k4s71|VUSF-*d#Xg^tVmo6#s@}axl&64^A!d
z>T^PT8E0A&n!fIoFTTE0$B!O$&@7voR-v^zzD#i^`1}sYXrTOdNo{UyKBr^<{_(Ss
zdsDidR_|qvUZIzvH#GYqI+%X;*4DQS$L5`Xx=l_;df^K713sC9?gLGCio0SBEZ!N(
z{J~=lPv3t(o>s-?C$CVQ+@?Q=Zxb+zee15PCaI&@%G+ih2?zjAlIF1ZMhh_67XULH
z=i|V}aH7a9TrAA{>$*i%%T@^keZ}ec9?sp9g8wim>ItAMsc?er3e@stbT5~r7xEQK
zSKlo8v{mx&r=6WO7h3z{u$%a-7MX_zqAnXvi4TVuC53@St+NBchxV*_^_QA8WwR^S
zbFNi<B573{J?q@!86L+v8{Q4QIJ<u=>+XZe_256Aoju$j?v}n-WjJ}^kC_Wpmiz;S
z|CT_uiXAeK@C^N3T`eNY`uO+b#2Rz}LTHJ427G*2pevvhYMNdo?25gy8_5#LrOa?1
z?bZHy43PpO+9IvR=b*L3bd+hTa+~g{(_(;~ufW6CZ230p!Gn&00SJE=VyPeEkb@=`
zOY$PR!#9s?{IPrwR>7zgg{p`+K2&t5b8Dn!&y8MLC$(_wO6Rq;!D?uou8hv_Tj9o8
zcoqR&cH91lGvJHFq&CJo&SzgSfou~+km87o0^~6}q45i&_6c?j;A#v?H~T+2FvOqw
zfm;94nzsTjPl&Y|s^qaz_^p*97?*ZFOiE&SV6OujqmN<`C4O+pSFEGG=)|kr`u_+K
z4AHX@ErZZgA6z+kp%#oyA&3(yh@==CKl0vJuTlg8Y$%8sNpFtYFYD#{y~VUH^Clnz
z=%Yk$3!Re$bN9zfu;bOa3z<K58bxZ0E@ah!B@+0l!T_(5ywI-YA|KC5o!l!cd#bA1
z>UzI}n38PpBXsaRq6>#@$NHMZ9{CO?FfW37raueDQt~DZ#JE((ZG`BX!iv1Sh;)-n
zXygGc1wlSWW+U}!3nq_{z#HM(F-Y$??cgw*f&O>D%@Z88+yHVhylSmKI1bv3OyYV5
z2K3T3V==pK`m1einNH_1ZAOC5xIrM2O98>+poD3g!2p~%5{x`2qxaD!`*8`OmRPQ5
zgV+cRP-1j^4|I_a=1Z~-$?e*T!8&+^VLd`Rs|V~;OOdw#(x=NWn;|o(v3aTLdG-fN
z{NY!;w!lAv7l5&qFT&K;P-TbPsPBxbJpn)aKWq8RE>t~kef6QQcc>p~qwWIp=c-np
zU{J6qSQZDU7w#S~aK4rPLZ~1;0R{kv$B&Gi!UovdJZ=vQC6=HJKxfLorci;&k-b?b
z=kS%^WXh{AEv>Cx1X-(dJy<QX({0F00-iS;96hx@f|%ZUslNBar%#uGb4+`w06+Rc
zk5W=u=@^s&{W3IhlybxH048LJ0*CA=1BXw5a~*LH`Qo6Ll~$Ye@L`(ms_3rx=;#k=
z?ID=gZ1I3oP&g9r6~(eY@hIgzxPv4zz(Zp|&8Y`MS6YKI)A|*Po}}2EuWn5ky*gab
zRvx@%Mewy*ReO%T0jSlNKltpfQ)sSOxq>*&KrMGZuXXak!gIJ>w!65UGlXM(&tp0<
z##1GXncTw9F@Wl`PGp&Uy~K>fS~Gn^!%KjN-i^Hm3{S@urF+DgceR~=@k1?;$Gf{w
z@bfn`WYO5Annutnc;i6`yK92UN|Qf6E<DrM#7_)2{ST&aq=BzMfqz%ZUDxI(wJ}gR
zAM7a@t`P$UxexsgG=?k19W&Y{s3$>#jlz1(nl;bB1DM%~A^3?Tw<QA@6#WbfbR<4p
z)c&x|TjVY>zwhnU-ntRJ2^I2qA>jBBFf4+eni@%1P*t-noBd{`Ldvl4_$0#{3jQ7&
zW@cs~ob(|5H#5AsWW2l)A44V>=tKCSkmat1QfN0B&*m{GeAu~s4FkTAZPj8xfqU{W
zDN7DXEBHI(s$e=JoriJx6d7z7Gyk-;RVR5H!yBH)m)#G$hiH0oqax-EEXO5U3XX-^
zn7T9l9Ubd*ojRA1pkxrk9lTL@B}oe1a#Q1D4!&!H@(WJ(4E+lgqbuJg;B==3=qd8l
z08bn?j*>jHbJIev@0pp|Qn31ASl`wt^)1f<3e92=96kGUi`J9GRr3uyzt;TV2S5yh
z_%Pbx>!^n0hs6(ezN;Hu<}RsK17biHKWe{)MRLn93g`dmDdTqyAdOPi#3Y{DPz=5#
zNjYvx_|~49G35KCJo2#)r-6D1nmq~8V>DWT59ryN#oTuUf5*2zLt{$u+`tJ}z+y|C
zBW}bINaa)!wGH9a<(!-xBquC~N9SfRl7EA<BXAc65fC~L3M#ra;VG-%3h4Z%aCVx7
zxzaak&#-cR;zG{g@wh^(CrLX~Ox~LGKjEt4tu5fy%yme`!m7&&6iYW>X|ZGA)cU^q
zqb>-<DQZDH7_K_^rcLEW+9Jb-y?09*_8f$mI`s}hC%kbk_Y8orS3M7Raox@yH_L~3
zqo-bHl-#$o!$;kUja}W+8PJbe%Y(SuJ|&+b;}1$>h2aMBat)UkehXdZgv@eM`0O__
ziiJFQF;?U3gdPRV3$*KNQp6^3?OdDFfn3Mfyp<j31JR-G2Lcn<38u<3Ffb6-0!rez
zC3@N}$VCyj*L1rJJcUH>@DyDKO}qM?AJ%ENj!#NOS(zLq0gaRK3kx0|ae4t%`E-pf
zX8PK9%sG>{B;|kgw)Zk;oZ9&_FN=xU11vTh<<_FeT*3g3b(!uFAq@!Nx-Zg>doz<!
zFn?TR8(YJK`@Ve_vTFb~UnNWhQ0Ot6LbS73Z}ee-p55@%VVuO-xbaaOoD!5IQJ3lZ
z>F-5&=%uD6vKZ@hj9yiT-Mq;SsXG_L8@(u0|0N?~C--E0I^R{+{7SO%IbzmnA5kZ0
z0Zfc@`4g^RueIJ_z6u+IkPtvtOToa_^%a{RjPMP*9-1k5w9TRhKp#Iw1a91jZ1>%m
z%~3EWqqg~Te({@;Zc*cZ+UV+t&p<pWY>5UjQR)K<v!2!)G57$dPTfbg;4(^nvg_Bh
zjl?C8AGnLg;2Jz-P@=1QgGjwjJC*TE3{x0?Z?nY;14-f)Lb$ObAzLa`S6zJrdTw29
z5u0_1PDjpRJOo`C>_KgN!jrz%Jwe-vK(RDfff7(Zhm|;n?pQdtY1`OA*SBYF-`pR+
z%l_c*;@011?Gd6;`@mQpPBp6`QU9c!YP<ZOSmj{44>l6ja0&n|@LO+Nx80#exp|Lw
z)Pl>{277hV2k~%1`f;-kb6b}J{De_<FFomiBb!6~jsT@dWxwFb_5rTj6~LJDTbf%|
zPI*0#>~|F_HMP1LngQ-se!K{L34mA?1dkJWwn#yyp0SRHXBOBNpvyU&%`6D`2A!y^
ztDE-dUD4#|HsIH2PI1o7Lp}h*10`KUWf%f_Ib}G|7m(L&WSI$UDRPf$U*}2UMtZ|^
zfNuinwA$wo{K#k>;)>S)2N|b#dtbFKG-h!769^2~GpTAJymTDzNr2HL_9qd8V2PL*
zZBCy#CdP`UQf*s-(EWA#S9pHzSWnxbu}VM8^?deeD~mgXj1&n)S=NgX`^W$r`4sJ#
zK((Qj6&a>GfZgQudV%M|Q@RLmRO^A!)sZcGZ0l`~C=^IN5r96H;Q?fi#$n+aI2%^q
zVK=oMR<>Q+*T(E>`X+bqt(@;_A|ff;YoN83wIXXz=Tmj3dUT{@5x^id4<L8lL7Ks~
z7T&0&4AIY0HYhTGSPHjPG>D6o3(Z{TYp69`(C<|?_kI;JdkA~Mz}n*Cy*>6v;C`qZ
z)YT+h`$nb3KcMzUK#a~-0lZ#iQfovkZdD8}w1;)A&3($1FmsgTBq_x!dBdmSTrJa}
z{%4&<urCfUMkGVi>MP0aQ<Eh3Mpg)z9R&d!>oD^p$5|QJq^DJiAh0R?5<(8ug8J=E
zN1E*yoK3)WN5#`dBnFMd!FxnoF5mw0jt~>3j1g0V;+~9xi0}#x@`I41)~;_jcY9fp
z!C-=mQW+bYgcb;R3z36f@iP(|lWa|6Ow9IpO4r^S+sxj(*}`rXPhgLITZ1vY<}@jV
zWb`z<-onm1)N1`?k>Qasn9WmrbMEry23C$YG3N^9lUmhW8}A6Er3ZTcOHO24Ck7Z4
zYB)>So0=;jDJhnzKSJf3xuEa3in*Ky0MqX5u{A09c*>g7BCTBO4IY|}_1WqXmdPpk
zjVH!XaF7nr0H+=GCa7tS)g+Z*wJut*;tDpej+FGm?T(8cr8(JsT<PWIMH$VsLPraC
z?L2ai=g#5dn$|c{ucI>s(z_V-b$atS`}WBwKZy1<^;|vi8tV|1fdc>3r7k32T0MDU
zb=2@B>(xX9JHyq@6WwphadL*9cqn8QFNE@yWck>FF5`jd*(fO=t3i*yg9I!xC=0YO
zje8P=CVO}@ii6}wy<s)sMf<a|vZ{O68BFl6b<e%t?6&f+szXG!c=yNrR|_iaq&d5`
z6ni*Sx68p`K6V<8AF=b`&AmR8oX(IK;upY1i)vHUg4j{y-LG7}ObMx4$k-`K7-PZc
z9d?Q<0Z^*we75FY-c71V=OYCeN@vL*9ZcupRH++5zU4AhQK`1aS{KqFD)1JERs{4e
z`Rw(nMC%QT2nK_UHIP1)Ar*-4rm0%z(|1E8R2=S7BxxAdzKpSPoUrodsy!l?L2AQr
zNA7;oV}_VUlwgM+6*X6=u16fv8Y#Cm&?nX{>_g4n9FhjL2Ap0r!~w^X$mW5r`0%hW
z3WvwLKo~}^RTyR(BkhJIO={gb2H+M|F<Z?2-7O~8yvHL0H;v>hKw4&#`~@?N2p8$K
zpB=ITe2i5Ud%Xi&ZEJJ9B70Bux?Ixe)?x?(1nePS5=9zKcFLi%AS490G#c&h=;5l@
zdt_u@?jzwC`U4Uk*S%G>vr}3Y3^z4=|G3?^TYA9!t$ODLHGVOM17hrBZP+9bETPHe
zK2ohNB%=c9e0$%zTqv~f69J0Q>2C{6qE`b(n+cSF046-;$k>$&uL85pgdhDJ#h-yC
zm-lVee`x_M=VP;nUo5@pJVh<wa&3~}-xOFuLNlVletdfmAsZMK;rpqnzLF|b6aW9B
zfh+;#cOh<BQfC4yZiIx;GsXq!Bziggq6`Scv+AF1fyf#>sXlIG-C6KZJGZump0Pg2
z=@Tab{SymDMq;a!g)sLOAh+wETGXEiKFY_C4H5`qv|TCA9=NQ$;aI|EDh%}<$mAvD
zeg&~fc|2KN*u7}39A&`dLxD%=6omi13O3-Wx?!oM_AX2G8>`T+ueeww(F6`lpf3i?
z`jCE=LH=Ze7k7j}?Wg6OKt)5j=TRWc9DyJbM|mED80@<&k&q57Xh#dLVU4(~Vh+EJ
z!rOhaWB%yZFk=PVE*qK2VHvKo+*fVBgProY2nfe%p)ru{6TU-uWDO|@fb7GMa3a-G
z82H6=()!?bcTkiOG>|Wjn4&WUJ}G#o3r;Rl2}MI7NbjT;wrdi5^xgFwOxF{&8_W68
zt}kYERsW&c46i^fUGLDT!NGMLMf}>?)HMTvw(#XOUXXh9xMlu*u^s{LcTOspO|%Z8
zHavNW!v#-r^Ahb0@BgtkWeu6}{f<{%z$c+s{Z$fz8UQwW142b0ZlSx;NWZh{nyt)`
z{${HjZPq6ztRD;)6gutH5a?BF!&kt}=Hu4hQ1v9PZ)-%+JNK@JDzC~+9^G@6N8X53
zIaF`AsmV-hv|w*IsxrKLt@Fyh6}E3`%d$D1Ib83zd6Jx>v!l_Z&3Bj?WsZH#s~fgA
zu$<url1cZ=di03m2;*!ois`*=y<yis0tNW=>;Pc=K4rHCi(CdxUG?7!zlIE$>7-NU
zQoO&^qg88L8@~AaGiNe=revl0O|Dy*&!sS3>2_<-<VzsP^+(=Ctu(E)7vO0ZP;f1Z
z=EktJzP*Wk8cEN7WJ&(eTm7ZjVAc`ENBKZFNVZX-nG9DC<zHi4xd3s(d+<}JK7Ec=
zNp607@V?U8hVeoqUgB8HR~wcLW^(9IwoOjgIzr&~;JH~C-g6>ECiN)O-qiMJs0;IF
z)6Yp{-s;tI7Q(le>u&6q*v!HHKXP0F#_tOv;o;#BR{Nu0lYI5|piyGL#*<HA2{|ct
zP*yf)Ro>Mb%^oY=lh-1J^&;Z3R?U2n2#_nOe9hz5L$Ckw5ry;M<Sj<C8aK5TwhTa9
zfs-}=CE1X#FMaxy;;azVwrUNV_5UTf?U*Wxl;Y)`3v`VTZd6gM@hZ0L_(n)!{!3v?
zW32v{!uE3iR<4;+3x5LOi@cI^ck!aZiEC>gUczb~o2?fmXIHd9atCK-%1_<H*sT$-
z%z`bqZp<rwmG%@|JDKnS5Ne32YqYNb4ubyjItH!(g`4Jyu>fDbex*Yi`;7LbJ2Q%L
zOFK{%d@~QFd`pb;qFF4+Tj6E3GqJJp$5VHx>RpIjwN*A27kXz>?qOQp63kzig&K{x
zTX7&65W0IHA`t;rR5#v>jlDdphf7lOj+C=<<qW**>ZHPxdvXY{W1-Q`kh!fcz~F5@
z8U=%<Jx6Pjui!|l{^RW-K88FG+zft8i`yiasHAy&+X2jj4(>m2yDTK!X%B;?Ld(bv
z2MTmv!lJ1H|Cc1T=NCq%ul$lfgMpyPm~?4*#EoMIr~EeT{*Y_0uD+Bcj2wCcQ&VP?
zYY<sZ&wPbPc0POv3=gEb&tCu?PpcYEfA9d%LYCs7ZcMa)US3X8hUFE_SS>Vp{knBZ
zT+=aC)r+VC0gDzxHRdllz8R1?$SzmSu^{YyOXqo(yo9@5>&{j0#M&R1*`+4F*``~w
z=`$~=b?xfz_C~2)@DdY0tfpZ!@;L)WgCJ!)J|N%)nn?$74u-v?-Hzz52=V$4foef>
zWMi_ULhQ7AC$~T6l&qZ%6u0jwvWBuqfQ((gZwm!FC5mZr@)t-lh_!$U$P1#z47LnB
zasd(OQ7{s&11R-DMMV*pJvb);wD+cU{v%$tX%Ovy5yR7jV@JsGn?5ZC^aV)p1Jgta
zXvlcr=e!d7_B2viNUw^sUS|J(GWf?9p@lSFZjzgVv8E-vHc(cJ$joU(7M0sN;8FvI
zU+kCRK!n7n?4P8ln0k-599%e4X_6{3W@CE*5|x1$kK1$(GG5ZcWesU-Xc&L1puotU
zDblNK397qi29yaTuZ6k~*-Ze~Q*a3Q0n~!_F`}W~oIBwe0H9lD=r7@gv#tXKF%Va1
z0zN=vhVVC8FyH(){RuAh?Tdp5R};mK{5gfb$pNqn_eMq3q3)*w92J8h4n${rcG|RR
zsSu*%O-kl~Izw0oGxp+CiKb(CpnzBo$vCP=61Rgz_6A5c8x(_cA4p?_7hZu?3_g&}
z;f9a}&qZAe86U+hwFS1|`;e-30ApW4M$Tg(%7X|^kGCH=VbLt`PkS*29t<2cnif!D
z0hQ5F;!P(K_Bhq~Drwmsr*IzBTLzHi(nvI6v>s9?fS_CZXPyr|+*f0Tg&io#&^I>b
z`E3O;Bd&01OUp6QCd391EK2~lY6R5{q}B#c{1nRlIB^P&Li0&KbKbnVUw)j{*!96<
ztOWH6br{^43C{fKs!6ZqaJN;gJ_!6(th8fF`J<nIE{J>;ZS5_W*$C30ErdWwpbnH#
zeW~7V<B_|Y@t|zPdU`H4kiVX|d)G&pRYDSh|AB@q;!QC-N#+@>6c&m~&{iPRms?a+
z8!`oNcu5bp^8ogM1SAt7jhD<DCi1$bcI?=(A4%rI?I<>7LEF%OXyw`^krIo``EP&!
z_&Y_A2D*g$1JEKJOXHqMUteFlQv_a8N%7<b;dUsk3~MKvG|B;hG+4Gb=M;{I?y-%B
zurLpb3&K93;jQQH%+4InJRxzSGdZa_VPW4-%Ej^oq(?)1ew0g10_#EhT(JE+%{oTT
z10-sUb&!7SM<I`OOxFZIp!<0y%5rWVp8Z&8G7L5Z^ey@W8wCYI_0}5~cifu7NwE{v
zWdlM0szmr$bTmR0)xDwkn6Y;P<H^{h=bV|woNm-npah%r$`^*!_Mu@3VvqLUo<ysv
z7>s`{*OF9>Gv=$wHAd3qXnY(1PX<MF1J(puL_m{p5rh*&mOq~c!DxVNfp{t)OC;aS
z+q7v@z>OQl!y--F>IQ<~t?bK@8Z|%8-}0U9E&s_U4{o7F!^FO0eN&?D6N6VEUR#3S
z55&|V<#sugUpY-So2%m&FN}84Slh9$opJKgXvXt&tPyoh&E`E2{ouqkKkZyyR{MHv
zR0Bf~7OdI54u5v6FAqJ}F+L8i%UXF3sd$2oxIPTlej3uuiph@u2Q$5fdpZX*in*SB
zo!<f-#v-5x+!7Kx(4kzs2{{auK`Zdw2L}5C^lNKtn}!$xyWz9bm?u>D)5|5>ETE#(
zQrC=D9JsvOg*&oeK)x;uoJAH?IlzVc=iJ(Xzr641A+gY?=vv@k**-uq?NstiB+i<i
zvd^@|&w^iz@OS6FdaGu%%v*FOb_6{lQPGPRFSMNq&|9!zfwQ^T?%j99_Y`Sz?B>&4
zsQJXAceJO}c@mh{z*W?}*I;JO#FJ65fL)DackcFO92`1Z{lGCVk)A`-RA%gjE?Is$
zwDm@%4v<R5I{U>9C(^od?ZWv*(ZVkQ;O;!!)!BK7V;SQa^c^FWuGQE*OkIc6ZI83q
zcaRbb$(2W^6<LqU)g^uZERg;$#dOyQ6vfGYA2=r)-tPy@xS9R21$cWBXVY_TNlD%5
zaf^Wbk=5w)*>dc(YgzAc!>^&%t8{+1f=>tt3|vpRCq|O+)6Ca`cHXkypP~N)Dvx7n
zQfQHG*vb1=A`O$!&MUmb__vy`kZ&dsl#EvP1IB+W0yO){pZVeOXJ?IXswOQ3>IPB@
zy;EO2vtiZh+@7Q7s?EXQe1K5kBz|Y@^)AGNxDpCi!tZe)k=7|1ywU9XU1cRDQElc*
zfTxoK?TK4~U{+DL=)p*}?z8dY`@&jLtIk2tMuL%oB^ijNeb*>vFz|i+iTkP|W)18r
z1RO&Jg;B)vxqX3-=Y``YR^`5O`!|NE)A!5<;f!^j?=a16-v5$8<w)haBjowAYEr}T
zEB)3-)T-V>MF+LyHBcno5~-#ZAp~_x@ETaV+5C}9nU5Il!d=2sNYU;Oj^_90zjFIG
z*vj@{O6uyl&lSUPtjFfX^t}-<bONTGZojA>pzm#gWa0R`ZN3ZE1gCTzPYZQ+9nXj;
z!qkI#pn-Y}4Gq_8=UDJae672&V2#eE670CKe#GA(a7<u9q_~qRgAHEi#GJcP_C3Lv
ziR}y4B3NKAI%g#Y8-^W!fFk$4Ci9W$HDx!|Z2x-RnP0rZ3{{EKrfq$d37OeG&yPKN
z5zet&`kmWZ<>o~i!$~$WSkE6FVN9x1Qv_zV9RG9EcgqvGJ^oxh+$LGa1!I|kP<U!#
zww@V&CWZ83mjiB*bY!Q-%Vt0yrX%K|I11(gl7^fw_S}pNleZR$zjxRLG`w=q#n^*%
zR#b&a_A!ji*63fFX`w@b!{FdZ!c-^B%zQ=eT!+?&L&JE^4u4)MN}iEBg+i=7%5Ve(
zSYNDfK?V#BhkoJ5Tw7pa%K3WV24sMg`L9hMD?El49KN~Zd^9!(dKnn=_l9E1i9Z(b
zofAjK((Gj-K?sGMXu3PPM8XHoQVJZwn~jF?3l=Jtc_MRxRniQ>jTrxd7wMTo+xr&-
zGRS+V%yH%>=X}8k6CB&K7?>>q0hSDk0z`C?5)<eB3<jPlUkVDNOjo%Wp*suJs+b;?
zZzBcnbkrE)ZtfeezNzOa&E=bE5B^8H53Riypl$%B$O%#?+X)l^Y%Nj^*cpf)`3s5w
zXC|g?Xai~bsH*DCmQ2B0%&-qy9j~@!mG|>}diMEQ`=Y94A}?s<BILnv1|E#0H-R*<
zXOP-(`Bwdx4P*$l8k+wH$IN@muKk3ln!$k0k>P=jFeK+Z1nrnu#)4Hy%oB>&i||39
z$D?WQG`bk`4sN+gg#?y+b@3wJ0lLRhG+flGW)10SN-8EP-JL-RbBu5P?h{P7Y>mIt
z{u9mH2%|=<)nAm6Oi{cbvZ15y+;`FdjIL^4!moxk=PI;lvHgNb2kta@^eM|G$Py2%
z`2?@++imDAvaQ}W>9?t=s%Btb5miOVZJb@c5S!JilV)PJp!?qlww{reRiyXEdgSFF
zVLoW~xWP>59RBGi4_R44*8d*~6xwe8qwtRrE;|E#9BJ1%IQZi%PdT-YmVtqJu0Kf?
z<L@cV8^O3o-SD?4hdoJZ2onK=91i!7KUx6$c}`b2ra>-PD|y1wnNkd(d#2z{=Xws<
zz~ap}L(H&b$@*};E1sT*&Y&`;r~?{pDn8yFgT5oEw-cz<3<g;X%_XS)16E_ao!|DO
ziG?0p<L$;vp@RSjwS%Nl?qj<gaB0JULf+qc(+=_3*oy1?9k?y_qM0}TCe2g(dneL{
z%{{u&6wJakubVZ4!|+m0pTKwz_$@B9bqpkWUPDLw5t}s$y%DJV3L?lrC!y@~)$`|p
zEhz@!k3D;asp)6Y+vW$|>^FVDpjDFEv^jocRfv?-(Jp)QCRcYbsH!uku4wq=-%zYj
zv`E2q-uQ=A%AB9hI;9R@gYK?i<QVV`&XKeGS%+aNTZc2tMjI(|C<IBMK=LB=VW`e_
zKs6(X%m$d8q(jFL`Hv1@2RiJOW)-u8Kv^gaoJ5v@68ED&z>aenfYqI#W-@q!OI3Ah
z{LP82gHSjy_o#|5paG+4OV6=CvH&dF?$25shylQW#)aG_90~QqhL12Cl#L>%tgKiC
zb^u`v{3#qKd1f{PaUrA&Rt-O15Bjs?%NL650N1h>dohE7GMES|n}X5h=u((L7(q9j
zWE;*0#fFN-m>uag9u%f3<u$$9`SQe+f58s_<leu(PiY#d3+&w2Ab9Bm+w2_QCHM51
z_wQwsx#Kf$@rG10Q462RHH+WG>Is+eN-7#Iejc(@CC1yVV-eHFXd$k{KCjE>&Qe*r
zyxKA3`@q6>iGc{Q9lReV@7u3<Cz_D_y$w8EZi2-?C^j{4B>wv@&3=y<1+*-+JwFq?
zb4}T$WLCzz9?Ns!$5N-u`M#wk;$7Z3N+tkWvZSD%Ot83ir*R{@`}$&Fsztd?8X`2_
z3-d?n<Y}}jt`xZvfy915`vR9Utsk=1fe1w*J!|>$<*SF8{5SdPoH&sI7YX?%xL2V$
z@SIvJ;T(HrFz9>)_K<6Ja(-*5B{3+u<OBW6z6DO805NhPCP(U4RON#0$1BU;VITAY
zJWj(uNx=^Ya{uAO^C({!NhluyNiX|!9YQC>iHJ)`oSB+*MPsaZ=e3IFZ2^aR2mY1u
z&&5*&WR*{Q-u4u@aqisMw{Pn(fo!{=;5yvilIN*FSEcX2#-nik>HPDMM>T-zzj<(j
zFzW7r<Au@ku6SjrAg{2nu>4(Kejx5GxBBBR1MNkT5P~G4pfNHujM>Ro48H3iwxx@w
zLVN3Dm*jD0ZQWJ+?f0P3C$(k0y?Avaef@RMerbMo#z5(Vi?7P^svkIe_5s^sxue17
z+qZ4i)Nu=`%D<n6b#~L=-@i#bSz4!uJ6#;`%hIpcx%K2AncQsTJCSvw46LiHlN+jf
z#BQi<*#>nWB$1bgg)8EZ%x>YFGX!GdfcO6PV25i9=0uf!P40V`QqvYW^kct7=y%Rr
zp4#<6-`i4dbe}nKE`&u<QStCs<uD(sfJ0k?RIRPk%3O|X?#XG4NeKt72#3?*k>d)J
zV_Irzft3Xuo$2S~(|G-x-z13J|4xnn9C|(i?N4ol5Gw7b1Fkv|`yT8}?v+$#N!o#F
zHC(r%C$cnj=5X2@T>CVdZ{N2Z=MEy5IF~J7t_tHUT~slBH)|oQ4m^(8fY6;0CeV$?
zJ|34fCs8L=uP6d}U*Kf?z}sD(8XIWeHX?>}fGxkWfF-?m!8(AsLK%lL&xQ?fQU|g{
z+>egFh&DtPCp)4iHf)jkZmq25b}RxI#r9ph5^y=ar4uXq0)vA$j{lBIvk^V}$-9p8
z1faPkzN0yrpdE64xh5y;1#+lYBqqJQJ^E|o#*G_-4x6LmA3;knx7;pCKD<>}XTDeD
zj?{ev$0E*);)x-hHr3%k88k%;p%6w+eFvhT5VE`!mB$Rm!nKmmunH(RCI9#Lx0JFD
zX&wMXLFl3=&J%DgqM_7}k6{JisJKLY05)?#e{7yDuWs2uY)d)*s1(t8V&pX+vBJ^A
zbYPqZ_eTw56x<g%lJ=rP3YGw87JKrV&9%3;7fp3Gy7PG!Oc&VdnSuVuVe37iqodKb
z9)Jb~UvEv%CqEb^$719exs@RuhaxibRLgd<`jR7+p+7nCli*hP#T&Xbb1Zr$fB&LZ
zu*OL}O27s=7&Q14uR>yFWDMBke8o%v4<+QA0D-|}DMubr1~kfX!$cGl_J+LT)vMXr
zkH_7PilVS{+(4#|%tr^bw6qdN?{+#o|9Y+GJeVVyuk%!8WJ;H(hBnvNUjpM;vsKl8
zAF9wB`_ODAaaaUq@^4?Ydi6<st!S!v<Hm%C&UQJ&NUDxXPfyRDcT88$K0^9IUv&gq
zIJ4qQ5uMtc$c1y~E_%vQVT&ApIHf5F7d1T@1w6k+54~)9s1J1ZAC?qN2H>EMWvwjr
zasaQcpuFtBYj-!LvIFBG<|n-LtTV11syCdMz?2qG-u7&tsolS4Ee6ozc+rQMhrmEQ
zrmtSTx|j7i|Gb+MpqE96(1O%t=i5{X@oKA6rvP8asXcB8ejUa0dlK6=(Tk8m&o{jI
zJyHH`j{cqHgZFFp&bSBoXnxoMtR~G0rcK+n`2(;#f*{yvR>2v{7*@S#QCxidJl&me
zFRWuc_42yLZdjTAw>IFiZ|-<h@WgDkQr#-1*T!@pcmUL<tn97G$Ze-0c*UePZ}!GI
zlfe;s_-8|7!jVn76;HQb5KcX*{HR3-ThR4grD(O0*e44B4m#k3>{WMnA`qvVy+r7x
z!c^VrpV_IO8nd4sbDQ;GqSA;v8jNt9?eSdcT>g~g#!jo3K_7G9q@_B8@D2b*7If<t
zT$zzgtosHpi=Te1Bcb;-IcqFIe9|y?9=>EtflEW&j_@M)+L04|f4k`p?y3bIqb{kp
zG&1#T2~Kusn0?sSOFg>dAiKhUjrgUA;q54@v3jq8ffpDFoIQIshR4VO5rPCRF_8I)
zym)n^lfdFdtQgP(`g6ZI=swkCJx!&mU`Nco``T6zhN{sVIFM)ybVl|L^^Gx@qUw_-
zUeCE3&G*w64w&QJ{TdIaKWO<<oLR5$DL3*xnmG07)YKZCqd^rWA>pvTqKF`sCWNN7
zp-MYb_}<=E-noOn=x20cq2$QONCp6fC{CSTwYVjvW|r5#QfiHgo}NFjhP!C?mi}sm
zMg;{=-JL05#eyOto%2iWj^Ww{NhzK2%$k^I^fRcU_+vri(w9~}^LifMPd<A4k%XpS
zpGDroUSn%(KXkH`R}aWUHE*BLqpjAOIt4oBWZ0c}|8mDvz`+fILPE8B!lf!BYknxG
zk4<0SGy8L~gH(RL{vj(ThcqcD+9~r=a=d#zpI+fz<~J<$e%X!d4+PY7?XfX2@q*G=
zSVUy5Ilj&dSUyTto}o2$P3=9s=4myyix{vCdP1_r0R_SVxax5}BN-yuPS?dzJDHw2
zVsNfqvpA#E`=u$^dnQZFO;h{X^R&MgAH!TK`+>G_+|A9qcHL&YqQ2%+Q23?+<MqQQ
z4jnvr4>IGSu`$iQ3$`!}tDHA_zUrj?*-E2h5F;#FWYv}*!gz&pbbqI*vGF3t_}lhL
zIoVj+8wU>uo4R-%mGpB*0Zypek4fz6z(|(RN#fw}5YyZvjsP3})X}k*n&LWmkGoL{
z8=0COfFOqs742DfgM;OeX2lH_0|kp(--Rp?H<i`Z8ixT|@t~QCTQ(b((@jiFOhcoi
zaeyxpZ|x7>csvQCd1P@4e){l18eGAW=kss?^MD0_KX}P^*OQL3n5xR{x*R+fj1(K(
z+0>f$ID9)x>F=ugxTvTL;F7!XxN;N@@IO-XQu!KiNuX<wQmoT9Df{e%1Sd2G&_-Lf
z`lm~X^V=8b<~GDtSaW11a1EcAG|l}o6GAM`LmL*O@VN*5!-LFBE=Zr^hL>&<Lq~g<
zkqC7JoxwRY<{GDG0|JeD+Y0iO{dexU>J3`?AfA6CYwIKU?Ww%g^C5UL6&ROqH;49q
zoO?IT>5@#fml>Wkqmw72?Iz*VN5|}k`<IA!j%Uhq?y{@0(vT6|^YWU_&0RaQ2GCxT
zCX-_d(nZ%X4$1CQPuH~@>(}Ategp97&D^^{ZgUoP0&hhzmJJxFmg%t2iLhwC2f|Lb
zn_+-a0h<1`y-4p>-s8u2HY~m>=oE76R>KEn8x|?XlPSXpJF$+rYvQ+#YQ8(N%Ip24
zr&H4#UiTmM5o>X|`_n(cHV_3Dg&G=Q_Dk;vm6>b5x^L~x_%@G2EB`2trP_DzSY%{m
zgm>+VDJ;}YP!#Oz?bSCkOU!by#XY;OlN}Zoh5=A9XR_+Q-%sDF+n&becG+7QdBwo)
zulxC8JOwgumbUzWpn_~GkoPZOtVBi!A0HpZiBZ?X_?GVedp;mh85D<%b#SkNE0TpW
z4FKh7T#Gv)A#(*L(AZ>TWE5k+p|(5f3+iQ{GEvYxKX-P8cmtt$9&vFzL_&1;^pw1K
z!2%>;>C>{!mE7`M1q8g3l6dL$etoyP6Bb4%JYe_z=!7Rn)7=fgAYlx+Y*?pJgzv9Q
zorby6VpapgE4$3U|LeNFZ(sIe7%O5f0*kLhLq@4o$d?eHAP{R!mQwM|&kDEO`1ZTq
zl#%32+o`=e>>;ED{1FP~@+VrG8p`c-!S`+b(z)Rm9CoUfh1la1LblI>R+JKcZ?vWB
zNl_;S;R`{=L2+pXhrsCQ#XsB*y#vJB@Hq`KW3!JR<a~7*g=VFl^)HrEL6%Z8+!#)@
z-Y;|RV_*}Yi^bpT&L90+DwvyroU|aT-%d9VG)la5Fo@U{8W#38^*)+6inqhVO@}uP
zal=`D54Md{W?lvnoAcjFl!_Z;_!Bue$0=y2_~RiT#DFw3HqzYo==0E80R-Tr-UHhK
z69Wf2sUpEu&kfwY4T-BqSD~jx1|9#zjoVhz3G+fs!?=gG%}`KO<O(>bZ(%WyA-H|}
zQ-oH$Ih8`jITTqmMEA_+8V>X}1+6=?Ojddstc?F{W^L_-+yN?;;tb2m$`aGlR}`)V
z$%ZvGlR@tdsB*@`hh9{j6k#;DM>%I64vfV^mEvEFJA*K!eE05^<b+aCU?B~^`{Z!s
z)1M|LCitc@C_NY`ohG2Bk2b`2QTWrk21~TR^78U4fs&Pp_KwtVD2o1)`*$uN7nPs*
zY20s<Kqf7PWCb|>0lX|}524-(@4fXX0PBxNOJZHVhi&mu-I*3sXouf*ge24eK~vV$
zOc-1vFJHA>=|thrt}v<_>jt>+&A!{N*#{&Pys~>KMK@|KrKr-2c&^ZW_1Ifo)A56s
z!JQhpD@8xQ;Fh`Pc3<gnG<g}pig!;AC3wl$>Qa)E1wob~+Qty!Rd?WKWE3|wEk_YU
z&>^x27J#EdCW%F=DJn#OE#$!fZ=j;88vXqp#4>c`^3ouT({^^Uh*Q)BlZs-vw7Gc&
zLl90SjJ`2MgJAXG3f!rn8ZSY=4;K|EIGG=3o?;~mDtxASDOiF}u~2XMVFA~Ub#<8-
z>~}z{AaENJksXXvg-JIG;20zce=&jrR}6J}UcRgkkqy~+3K3w0kdl)?*bp(6abpUC
zGH85C;ZMPo$jzUEg1&<8XgH397wGh1qCBQ`C;E_-;?UO0wCnc=@`o4T=iD-CpzVVy
zZzNo>f=d^nz8QAKeF>t*_LzV-7bKA5k8kA2_M#Pt&MW%k_Euf@-}ctuUhF7AuIm1=
zOaWrT%(+KFc>xCP6`o%q+&cU+OXtpKW~>mBW}>LK+Va`y&SR(L;-{BMj6!;IW}r=i
zpadu;thR(nEDJFWHg#RHHr~>v?%DVC$!Tfv@$nmj%7I>Ka9UbesJbXD!FkbulGq|V
zR+Tq=kF6IRK^noWs!rLo)8S<OSoRG2W4T?g!>hK>LNDsSq}%bo#Be0ERFI&1;kTg5
z8wji#12v%xEqL7>X$`7VN4~w6i5td?c6N2$1Uz2nxSp5yYJPtH<q6c4D0uJQRREBn
zaeU_@6<|f^L=Tu7>MD*W1?m-^*D=<?Ko*2%&MikD%Kspo8{&s8RgF1E>>WUdM8oi%
zQ@*NSFGAf3N4YQv5S+{q_HW|S;SQKH=72}z$>Yb$2<I|`*6isXpaSa0k8hnokT(?;
z$Ozew7tBVg2X65S1cqJjUxM!zg?{H->&ut^XzN9qc((bYdFhsfr8DlE&PGszOsHy(
zrM5w&77MfE^48(hOx%k4RbQTd+$t9Vxh`7SgV%?#L;JU3&NubaX3&XI$f7`V8mGA9
zUc3=u<jT!sW#z%o8;7+-TSpgv?dkHQAYfn<E<Sv=-cVbD8uOvV6^#L$<7OB%OZ7@r
zRFp8X?@&0XB&SP^`uh7Ppsw+*TfKVq->?IG%oEc2WDrp_CL?~K^xLTMF9|g$NK|n#
z;6%NS3V;`#itp1g=IPs6ykxh6W^cM3Z+b??4K(-O-GlN6e$Jh9Y?W0=aR?$UASOV#
z-kRrSW%D|}w&vYNuv5?wVoa_<WPW)9O`shFl4l(p;?dZvv<xj-vXE2!9+U=~3s~yn
zBSn99RyAuh0j58D`t&`B8s=?d6ISd<+^X3us?l=6+YEss!mv)oS!U>${8d=-*xl)5
z=du+m0<T`3i>8~GBhdZ525=f#(gSi|m5m-+gX#t7HcyiJVH{Ij7;;b1`HL1oZE$s?
z30&@qQ2)uws;jDUhwiS66L2bkerL0wpmMh%K3*bF3A#=o{WmKGpt1>Ck`UVev*~pl
z&%+)Thxdca)+<?VI*k)HW%!xzLkFI)XXjPPd7Yg|yNs4MSKdpUEU<COq$Ve<-?Z}6
zud6Vwze3xv->?k-mi_nzp5|A8zxSIzc)llB;ZC+(J96k%iVn(VyNp?fLN!)1zGGtY
z@a$g?x3df@AW*>%MHEy-oLK3k31{~-z}XWai2sC2$*&tlJtw0W`x(#(CI;xXQgA1y
zrzU?pq=@0L#)eo5s!I?#*0n-9(qr(0GpH<per(%i7mep2521SZ!1k)*?9!8P{l0|r
zNHKy4{Gb`ShuWpO^C3@mz<J#k5t<j(&hlbOpB`2|P01twpy8x$f%AKy?lh*VEaMW4
zph7IHtOn-ha}l;evB?a5Q`1dv%ArA+4VG2L)l~vqwFg4ovmXm+;2{Gzun>Y_8o1_*
zjR$;9lK4549H^zt>RnqGAG6O?G|iY_n$3*2ZJp<NSnVDAVL5;@*cxX8Eg_t@_~W-L
zG>rtZE>FQxO!9@BXe$zQ1`(|`?<Xo|R?rk9U*BrJUh4$85}X|5NKsBto`7~!1_d{?
zc|5mF&CRa@)j5gdSXvv~Gmb!ZdUfzV%gXGNdqX5$b2B1?6ev#xpMA!;{&$Ol;NO{x
z7bhWUw8S;_o()QXe#pO%-JgpeR18uO)mNQ71+OTMkGrby1}z}X3&i7Ex7whXjI(X5
z*pQyCuq`AN|DeOU1OpJW`*?jM8}18EC-O=&z`97y`3VsB3dB+2Bg`Je=1n0R{D>WE
zW6rX8%jlOI&7^2|NBxM9z|wc`@->W65k*0uhg+(DX}eGI5qUkmKL4GlT)YfKgAsHC
zG)MZDiJ>7=$KcE>D3rgQoq_|N#w>lCnrxq9Vo-Y9=;)}Ru<*=pyE&cYH!cSr;<+MZ
zXxnTKfX`4<#SP&ZWkQ4X-UY-Af}AM48%|Pkpe6Z{3LaV@X+%la30aNzTuggVIl_v(
z1!?JvO=tgLDLfBsEPK^I0jt58ui?bHvg^?3HgqkQaUhiCL-n*5_X0PF<T#J6ivtWJ
z)jusFL^NU)P)2KSZ*%%u5LgWHh?SUu>Ue#~GWT<&X`Y~h=?5H~;9%vnwL`mg%Ft@Q
zhl3O?pNyW~S~_B3Hz&0u0`fYL7xENO3MmC)%r8Z0^2ny$3xpq;l@Wu%B_y;61P<1v
za@Z7Z9}=wm>$Iw%a3dAU!3bphc2F^}d2?~()PyP4{-Gq!mM4(SV7)zuu;Ci=gm7y<
z;$NRa2uex2b3TWl)<<wWc1lvs2y(?7-sA-73q`r{xL|$?8N?9I^kB1uu&{b3X9f7U
zEu)&Aq9I1(m2WG{%4X9bBud4G%7`F+8uf*uX%O)2NhA)FxA=cU?zQnnFJ^DYN8X@d
zVrj8eq51Nr({HX~Y$g>@5PK4Q2-NU+_9A^et-3B>MZh4(;3<0S@O3p@(P_4Bs1c7^
zN&ZbW6@KwQhubx7tP(UYc{m}fKXFj({0~7=izu81drpB;c-7gA3BaF@aFV{^3j`2B
zVZY$$XwV(QgA&>)y5Z=3t*DWYQrPgo-V{T;zDd*pbvMl%L%-q~5_0VNsHM%Z8TzQe
zXkL9&wM#)k0o_*YSnGIs4;?H*DSW-}RwjOfjRlg8V0Ou2^<OKl%3cI6^#Pk(8ARgh
zUDXv87jS#=5Gcc&H56+;ALty-v(q;)xPVD84-*9d4B)euqLj$4d;_05;t}vIVNJKK
zaa&*2*Q+_tNa~4zW@cc>0R?a|_N3FukY?<~Fj}b0m>55*^d>Ljk@ao6gek9FBcp4J
zLW9O6nbtW*w!C>WPuB{7vwB}+ynxibyo5HK3&29BXNuvX;lZivwhDt-7Ku1fMU=yh
zs@KB8;<9HC81Rc|82R}5xuDq0e`ANLV9BZV{^&FQW|#Ad@8;tlRc|mdU6t#+WdTy@
zfhcM8B_+!1<my`X@5mES;<>Di!SXu{)?f=oB;>&aTd*zA#4=-Zqv(Or-bVi9K2)`6
zX%1k|A{x_fGPklMaF@>(l&~`&HJe_@%@qZJ{>{@cVlHHAWs#pJO21x{dTA-v_>8#e
z=AucBTg#DR26FK{rY|x)P_`OEqeVFLEnYPQaKztA$bnM#J=8M9@B=gN=<4!9;Z9W4
z;m^o!S`9iubKbcjENJ}gUnq_Q(Hl#mp%m?DUi2U|B!mkhWAyskRT4Pr-KKt@qfHx$
z3*f|;=9}83*25S<ZCG~pGkBfPbiG(rYs1=d1|K{h@u1?H^&?&n3}dIFgl<r97vMy#
zvtdT-g44+We@3a^RI0;dbg$a}0DAh^SlKzQ^*3|>-QpY;9yG$nfgLG-sB$Yl-xVwh
z;4CMl*3Zvuxam@u^48OU(E(_mj#08B5$zoP{l^AqZV;n76RVJPhZEb{(;A%?ZaKpD
zcm7LkX&Fe_ro<Z(e`2Zwij!>ToTSQa0~faX?_78S>oa_#<fnouqt8{%#`^mAZXH+=
zj`LT;>#*giQw`l`620>iqBm-vG}TcVQNQK;=uM1(MssM-Q*mF#^G0Fyyf;Hb4@1$5
zjz$h;Qye5KbIYk}fBxJP?4lWV18HZdEsc$gZa_8-$V4goNl-k|T^r!!Kdhvb0QETX
zQ=(AQy#l>@)!Ph!8A!CfP$Ll><l8ACEUb*`b$>3RLc{O@ZrPz&=0U}u+|UX`x4EsP
z#@Wr4+vHPHQyVRoDDLd4X5_VP)I`l5{jdct|07RUg{p6fyLWFLXlHJmE^)qX!nMcj
zPl`_cE)jeev8t;l=QApYTul7Lo{%E*>HN2j8R!izgocKS7APKHkMjOFFKWCIl~@#b
zs9r##N!EWih=}|gmewgEBBBDvc-hAX?PaX2tXl>ye3x#{#q-qIW`kv=e(YFF*DsZN
zi7D~7p5+EF0>4bDOZejh$pf~wBUCf@gUKki<qZJ`Z?(<exM`Cbxn22wj&VIW+t|5@
zdo>BGj;J*0(YX2V{jFPXPTNd(@8b?oK6WfbRbuFY9;ndRa-1m#q1@eK|Kjhz*MT=l
z6|ERTHyU>?RaVw@d}Pu13MX8?hVLs7UK9nuO(pac%a#<S6(Q=bO30cjIL^w#5}TbZ
z{Qeg>hl-Y#5YX~5^&&yr-WC^oP`mK(;ZfnXdb`w+w4W|T^$HybgAA1AUStiW`iA#%
zuDEJwcvJvT;+EZjGwjttp2c&iEkG}5j*3#c<;@U<h~Ci;h-=TazYa97JKpKXx2UEe
ztQj;V2V?!AsTF*}t)#0Pp&ZXWI5>!_VuqK9K5{^JfyU6*wvOIY(G_LlY`vko9)Fm5
z#5BBnx8t{Ukkia<H)c8yGBamP-n98@&%_vW>1h{}mDVp=O6?*hJ$|k5iah=zt1Yd8
zUkjf$3g>z~4pCaDxK%+LXL)-QpNO@LJzowY;RJLXNVQo_^d%BW%y2P;aX4vDBhRQt
zZ(==LVOWfnTXgvVQ$c<{SmP_u)K&lw#d_J4d>r=&^rxqn*A~V8%}wjKQGtU#LIr<_
z#_<)-5?SNq(Bj(I!1ECZBCM>bSzcLHQxlJW&v|$|a(6%inkF=}2o=UK`=@`GmR^D{
zl`C0EGh}IzWmvJfnc2FlvfO89zRF3%?OeUxXbxV!)@7hzlZ9Synn=A!<PN1%f0^Qe
z!ks#R#sz5Brimi3b5SL~e*K#NxvI$V$e}}A0J0AQYsb$;q{ia>!=FqqcZxAtIRVza
zoQwaXegyI(M5f6_v#Wj|(o%CmN|VZvQ3x~w9DB~jKHphYSs4u_-7D<Fo`=?GEZIFo
z_bT*MbPe6BySpB584%=NoW{FI<zIMw#2;*ZG3ULZX00~06cJskf4A9-ohlNy$_E5H
z-b)&i46N9MXG%E#<;uyZ=k&nRJw5G?-jYS?(MoI0+~{f-<w^1V13MITtpGI~{+v9l
zTmR|8)`6eVTcU5Alt`^r6!PDxQ~+%|$b<y2-O2awZ@^BFdi}geNyN1mS>tzW-ERtU
zVT|?+24!twH)V*oy*s4wPS!s2H-k`1ikn%fq;j0|*oiX0w~*SegiEw;PjKu>r{oXY
z9|~`b@tM11V+WL|5Qnp&2KGWz6#l^|`I<%&|4yFzpF~<fQ9%_pphN?BUKs1H&6wz}
zU2kBRi`s;yw2*xZ0$Ea`)|TayHVo|mqSq)@6nhs`6(hy++X^mYqb)&&Nur4-PxgRT
z2nY?mhN!&tcw5k8%b?^%V=5aqV7^5@0Q6N*53GHpmmx0m<nwtnfEH;8(g>b~Z3_hp
zR~@7wGmsy41=JOqQO{pWfnNZeA3!C7wup)$->^}z6#vw0ET!2ioSmI<z+XA?nYaH;
zYC-}t^o<OU!onXKX?!|rZmWWWgK=gyXcgs-d0iXLmfNLcf79R(Y4rh;W`+kmD_7eV
z<}8I^1Wihs;`SU<msfEDiVlsm$2?yWRvgftZ;1|+LI*gY#$my5j6oRG@HG4d*V2lO
zynto}O>5TRdM2I!nKDmj7^=Qv1Y&}rC2rg*8z;|Y6fY$pk_?@2rl5>m9tYZN0gfQ`
z<aES$;8Pr4B8Yn6siG;MTRc(cQLgfvJrEimp<*0l@P2b_2<0GUX#B$(Sej6EHRQfu
z&7i6TSkXnOiWvIv6K{Em2jOBw1Sh!K1q?F_3u$a*uO9BQdNWf^O-)N%TY5{-Uo=OB
z`rq15z5>P-J22EK=fNf(9xmwSkeCCQ{<7JJLjk~QmA^6_3I75L7BO(l3@EzJlo}Fl
z{Lil$7|`^NcM}tE_o@|Foceo&Z3e#LR{aS{L*2R@=-t!#`oLd7FMouzcOTd}kl*_`
z=On)p@ka$s1B)P4AUhgOe1nmk!60OnhLAwr;M)nl9nZpFNZw#@D$T<wm2@|J0Ybu1
zst47<)kn#?1mt3tffp(k!3v&j2M)B{amrm7L+Og9|4oTEiYa)hZ)tQ2@^}%$_lF56
zfgQ@zuvh#s03YoWN9Aug-TRG9U(9j2Gwvr}`fR;Rq!1R}i{V4IwmT5VbW8l>sz0B<
zI%5-ashw`_Z=3rM{dn__@5+Ao12>kG=%1d~y?f__j)Y_drY{%i4E^DEI03PnojN6J
zYn%1$!6Quk1JW<8Yu_0Jb1(4ua!8~R=kAM!J?FJyJZJ~R5HF!v+fUpHn-93$t1MIM
z9pC=u>mv{kK$9247P?nOWf72qS=-itMS54{z7{$X$~R*$5GPs=Ck)c5{IU4%gob{=
zz?X8=waVJs^Exu~%wQ)+!~Oolhl{{3wkm$8s1Xto*$-rb7#N&B`@De7Todm_gB<ga
zZ@=B(UM3GbHy@FlTeN7|GEZncuJs1qRvOF`Z9%Y-FH~S$Xayn4f@yksdI8=~B>RUQ
z&hCONk4(LK^1rtH!y1)61w{b40~`NIQ0Sb*9DuDj3D6tG@g-UAeF&!kmWP28vynct
zB`7Z0522>yk0zFeBp}!V0q-m&3?sY`hIeeL4FA%a%F1kTSU^F3eAxa%&8={7_~!dF
zD^b-Otn6QSt4Dn>3!W5jl+i>lVa!ed+s#94-`x#=<rpoNxh;O}40ESuFNXSDA4=Y;
zwET7^(&`(9R-vqd2_R{EVN~=Q4r9ak;d>Qgr|@P`p+7_Rp==;KW<trq(}nkppi)0D
zKtaZj%8)+%hBUh+;9n4i{1<Q*v>Vxp_k*49Wsa?)txViyvzKdXdU`odW9s5!v4<{X
zT>kbPs0HjLTTu28j8gRbtId`wRgDAKSN|{6z2_Zt#en_aqt^#ejjcx->q4pR&t{oO
z^9RGrvYsFS6PvS($!KCqiVSMQgvaqvZt}SO9@QkrFHMT_D8HV9Rq<B+p{UJ|ng&17
z81dX!N#dtLRRY^#`hV@6`9Icq|Mt&nX4>~8N{dX3B3d+|H0_dh3Zb+rq=_O~+BaGV
zr6h_%NOrPRQX$HcP^q*bl?qX~pYLj}xvuYZ-}mGG18zUeG$zjT{CwV@*K!=k>v(a<
zU=+RT*H%bM@-wbJKU@C3tL~E()S&B!)>T$ko&`-FciM16atZ%&e2A>kA}`HK&3o$S
z>SgjLyz9F6SzWe@Z`4Gt@Hs4Hm)=`tVd2VyDs(!egVvI74Y|%4Y@c{qRds0m6T3D%
zFoH&a*{VTa`F#wI9?Uay;U%%1Xdgz&Jd*{7rFv!2=j}Uotb3Vvr~Er-Hh#Oh%C29A
zb<%ogp?)QFi6(uDA<2w~MPxv?_lCU&pN;Nid!~RqA^ZSxUOp%&7)TIA&9E~e!9Mhb
zouR|Gf}$d^%VjD$P%(oBr}>P4tp0jqaF|WxO$yaLv(&}L42UnWB3c|PJdihTGETI+
zu_4M?r*^wfb))&`wvE2Qi|*sBQZmqYMPIGlVcYiIIhVOer+NCG@RxDXH>f`s8EoB<
z=|1z-jt7Ru(ZaF`!`-u>UjP>`@AMTh$9^Z{NIeDmDI}?=Q&%uIrFg3+%~hJ%uYp?2
zH&Y42Jq#*FeKR|uJOx<!VLMJ)6lrNW4&3uDO`>gtpV3~~>ns@NK-NBe4*2?$fB8`3
zp+0ZD<)})jT44%Lstz5p@r)X!!E{H*<jWfquj<+)I8{%uA3PXfkZ$np$nygKA<{GZ
zka25(^P_-|_($-p91z1(vo=(C{i;;>$vn2|LaUa%6@6YM2=bZBHRXrNnOG>O)<HZ6
z(e4~zp6{8Tc{Y!fd}{gVohnEp65wR;AM$}`jtnbco@}d9LdN#&y>m;_JFRtgANQ_E
z{AF7DfM%Q9`&OLk#qH5Md4}11ROi=t_)vtj{qQBQ9yf|#aV{KG@a>Mrp0@qp{H+BT
zilr8dBxed~+mvQr`bJ@)6yf(KVNxRLt7b77!+PPeyG`$<x9+eeV9Y7@0tQ~Z_;|)g
zsgu~&erO@c3a0&8l6pd+Dri5bWh;rGR7D@pU>)`Ig1k^Ny;vy211wn%e|UXWJBfJa
z#GaphmHxxdDGG>?9(H)(sS_sz5Vv#u!I2?{L#i%>=-w_>q^<%<L)3ngJ@oq-ZfRdD
z>>tqb?S_^W5Fej0=4SQyzad+bIlfM$&3L<-fV}hbU`h2J_`j1KUO7CeH(&zq=^7Jx
zyR@1r<}oxk8KU8WMUmXZS(Pg4@pi9<-zf5~zNNDLd*FW6V37-3as1e^L5;M&d-gMy
z<@yGlz?A+-JLKiR%U(E*f&NqX_2@3>6i0^luTOvin_WBHEAWI9IO}Lt)j`3FL-g0&
z91UN_Q+gwJJe=#6_bsj4wDHViXWE_g^xf10(<*u#*xh^N(#ZtfY12MGz1D_u<s3T9
z^|TvkDilYKRFLn{{NzXfcCk}&pP7rA0X!G+y4|}AsTTsxS-o{%W@W7XsD2?ZuzlkC
zkR^}*n5%C^QaO3z#6?ZzEN?h6keKU{bdEmQ9)5UCyUBadnA6pEw4%GW_l1Q^<OBW@
zg#cPD489Pe=07ZHn!NwNsX~q>e^-UHr*YT0ynwD+FH?S_v|d?LQ`2w?fwfIE%sNbg
z$XX7L*ri-FOa9nB7z_IMJSG=!KYDZ;?b7sV(-52P+&(YVSj(;E=%m~uV}6#o`8|Hf
z1WE%mA>_r%k`E7zHpZOl$5flx&jjbqo?V6W+}*xR!fyBfUYb?R7cMancoGSEYE{Zp
z$&utE*nXoJa6`y`@lnoG;P_tGg=*<1ebH8e!b)ua0iG5%EKC@<vW6(6vrf=(XUH{H
zFYP8ni{V79HuesSP<|OYby0GOikg~$m<7`FLu{g7(XY6F?&zR-euu>Xt)F9^3{}lO
zQ8xh1zg3w?e2B?xH+ki8Z>~KpomiwR#sEM{FFe?_EJgRC85K8Lv^|jh92JQ$u%HIL
z{;=rIo#4W1jLDaN*nM9w)ywWi)i$?D&0kjbk(Irkm)8R$3SomONy7*jrH165d8zHp
zw3^=toMwVa2nyQU`I^Xxxq~3|(`b@aDIa>jWQK1a1vG6BaN5RUa$5fd!%ZW#_dP8N
z-xFPKu{(w89-B<z!2h8ID0cT|ipRyT^tRVL{tuOjs4W?D?~Jv_S%3dl)bK^a4uyP^
z2#6l$SzJt^ixp-~FU++Yl){!s(*TPNo?I6*h@RQEcnGEsN+$gY5hnyAuD2;^h~U+i
zb+sH_d7UNI){L)V|1==r-rACq-SU7siutSki%VwH4IRpaM*UM?-)nA9h3ZXiFDkOD
z6O&hT?YFmLCz>BoEXa<Z;^6*&%5ibg(Ql8sm3}`|=FYvARNry-o9Gbxp#=y!Ty36C
z9xEmV;Ul1L;*30gR!WV}f|u?^X#4&^nz+<+k_Kumh@zDLz3XaFV3EHB+wf-D^nW_1
z1NseEiFf1~5Z<F0iam9dNa*$Bk#eJADtP7H9icMlrG(Owq2#ki&v<y8i`{OIR34kI
zE&#vxo#aa@3&rd5nS^#g>;|Wx=uz>qswy;k>vK|zkQsv%w<CO4Sx-cEJ&S4pk>v3q
z%c&uDZ#6(SaCDZ!^{w_3ORsatnb2_)c0Rl))P_T7{eHY9`>}oUVw96o&EBF~*_hoq
zCE=xg>(J0C&(bk&qv1mti1e~QarY1VkLRD7bdnHj?LNObmhnx~{(I}{s)k4k-Ddn2
zqa8o^hkSj}aMLsi$7&&av9;BcIhp>yla^f1&+p09Equyo!iO-;5uVr*Nw%NX05RGU
zZSGO>Z8R`5Zrt)EFXUV@KE6DO@e7JbRT%mE(~ie(8)v_eturea5)&vkCPYGd@_RC%
zE2nw~s;NPK5fP)_m8BjzapFXmqN%>F2N4eo3DN9|eO=^s{#ZZy;bYdQ8+h=Yc;QhL
zr35P^Hc;$$bHiwEBzM+uT!q*;hKUU_pQ=j(&L)k&8eVkqcg?UZP3g~cJIkb`_!c?+
z#9QFb2ST>4xFM8N0wCdE^6~->RWiA{^yQjlA~nh9Pecs`JYVYDK3}vxL!J5IU)sw4
z$Q=<)3i$wDB*%Syb=g=I1hb3!H+5b4IGG=6hGl`DnOo-N=9hff@SiZR{}Ut#?s$(}
zRy6=GX4(4s!lC2Fc~a2dxqH`*DOMe#Qu*GDrjGxD^?-m>Izh~&0^TA!c~EhcCgi?`
zH~;y}ch=OYZP4dDTWV<;mX~m_!8Ul2al=Q(pF@@6#?@xd_nc=E@dFQ%Ry*S?yDeIO
zyu3WDKg%B$*f&W<m^xhkp-ow2KL;QW9o^$(2XB1ANg?eT1>X3+hmkO4K#Un0<De71
zz~RIBl3I^GU2VUX9aP_q`Ti!moywg|%MQnwQpAWB>)-f0;mknk&kA5D=I6pOrunsV
zb6Xnrhe=yUiRB}bBje>pC@SvUv*%ZFVi{Ahc$_FDcs_iIQ5l9S2%=snjGqxpWElP3
zA&gady2R=hu`~%Ul50>Gf>Oskc%*v+MmBrkh-cU5{_SbR@w<%c#<l8&s*g_bTg2`^
zdcGCqYG5*ehBvrhVUy@tZqO6_;$X>Oj@U25=NYf|&a}_o(lOuf#@?@OsE^;ZoLL~w
zEpiMB{z%ouD*sVLixt7D6r4;3P(&7>G^5ss5JjPUP53>Cj*?pYO=;YyzEM5v+Fotj
z1)UzF6Jnv+f)bF$73<cuBZv)Jvx<Bmp0Y)Yb_wPc@9XQ-j-vBRMeTU~g_|N~82=zH
zl_N{3jfKn;1m-%6dsu|nT7n6Fu<L-}%4Y)+4Yfz7D7FrBNk8EA5$txS0RyfM9^(@$
zJ<$1Gk=81Z*;_GEVaSjx-T%g4Rv5OQH*(z&Dr({l6n8p_wlHPmS9X`}X)(od^_jEN
zz6S{vAKIVhG(>vJ%*dKL>?dO`R=OQDi_cOwZ8+e;fyH8Ad74Wr*(wzkl{dW-=OPcl
z$MzOi-TLiARRX|8&3UD3HdKCocA`Ezs)N>uq)D0wZba`6zY-8dk3#=PCGa3#W!KAU
z&3{<?r+troM~hy`Fh?<fwROv<+7wo0X-$IjFawCSSRVASA&0IW^oxvtlZ%M)NoSxc
zNg7rj2ZT0*eY`giy-}!_JeS%0FGBMdl#&~wlz-BgJ}$>9B$B@aI8`Z=<vOb$#&`*v
zcWB{qar8LJ5Y6GX^7~h)_xzT<s?Tq4WP2vUq6@biVdN|Hj)Je}cnML!<O$nDIyKmE
z5@#v&c=nK6=*q8=1G)Hub1SCNqx#`!oIyV-?z{jX(un`NKhlBWs1vAvX9QU)wl{3Y
zpCIpy!u)DqcxTwLS@TigbIHFnG>A4v0~Yz>IMWTbi&p2OmJmII=qHgkZuQ*aCDi(2
zeH~&qj5UWcu)P=d|5N8XKRSDrc`{x6GgN$!i&TK2)($u}fsP0@JZ)%OiI{-?f&$AL
z){syv?E396syl`+9QA>3m9PaPJHXl=0n!yVQ&t|?!Y&N`DMj5h5%L8{D?CzYuC9rY
zA1yXH(2)rTB5J&(Lfg`R#eZ>;Dd<JjV>PSOr%nTnYM(IBcgD_gD3^4X@J`|I?<5Mi
zht+=mTw=K=IWe(hHlPz@ZbDw^_S%uINLY`sC8;Q&?!g(g<>_n+xIyY;--_GOEsWkh
zYiVrU=GpKfzpAQg6Xr#M+GqI2RV<d<b?PL{c88hbknrL0?c428HCuYck(1F*?SXL?
zoilX!cHA-zS04{V__0zD@nE|`sEhtTa;gn?0*~6Wcxp4-(hWVAdi}qM<ii;o(#5sU
z_L%Om)dGD%WmVOlU$2DyX)FV7AdEMgr(Jc=%F0@>WJ%knHD_{Oy?SLae($k;RH2G*
zwtfA<*4gg6!*X#D7+tyW2*^RI`-=sE)ZUL*Gmz7ktGH=u)${sWpMoL?3?C|}$T2s5
zdf-v2+)ao8b8bgLvcp!IDt{mdK_msAKmQ{5&iQraqG_2On0wkXKQFJHgwx%<`+Xs=
z1Kbz1rjXT}7T45W3Z3}=5GLT5tb4+{bt*A_7yhKh++&o6#wn`Vv30sX^^I;7J~;+I
zg^K1>puHboU`4=MjrATyw{P!<Sv#<Q*n|lu5%-tKPh5rf%L0P<zKWobIZRYTunq<5
z;a^2|R-pf4_yMfH>y$qIBY;&kZ#Hk_qeL?f$9w)~-Uq^dZono>60w`?xPw>(A+kLn
zwlOW3Ky%3M)M@7A`RnmhjAR&b?9*oWXdw@K7@$OcUBpjOnBz_&gTyR2%)2^6GopNu
z$*W8i-_wUp27NoPf3+_S1At4QGVoHhya+F<?Di9Jf{nM=QSv0TQZ?>?IWFr$gqW4e
zNUU;Zad=I3WzT;7TuDn}+r!1+;A;$Y?F1(^W7k1IQ_7iWH^TfT{2FkXSxz!!Q{$U4
zkF8LKi}k+zoaovamlLuCA|Mh=b+^+Li43UpNLiw<Z-z`?Zv8Gs+qUlS+{@Pfj98#>
z<jA}v%_3=zuJCgu-Sh~=4}2fH^KPMnIs->O&o4tbZaU)-1Ad+|ceLVjbO_EZU(4pr
zi34{Kqhz9N<laQ@&Gd!CXK(8-($dnGjFakuYp;oh^V7(|pH}IOQ)3wJ*xc1))zktK
z5)59*IS3P|gukZ$F%)P)G)~|hA3&>x><4CA_=fJ;yy{HyN0X$F{bLi4`yXal)6=Nc
z8}+$fanp$%%vLV9vg!iF@V78SIWDv`EU<cih2e)^y4+AP-iujhw$HeZ@U4RJpagh0
zY>xMhv@{9$#xyasu;1hg1|=PVX7*6zW27*!)4S%HBhG0B1-$^#zvTNhE1Y&_kd0a4
zDdZX+C1E3>GC2m-1g<U;iCETz++@1eEdD7Pz2$UIVk?=o3DmII!vt901}m>!h9||0
zgRn^vIJPk9l^{jGg>jYG?FaM%xYQZDNGThZu|<EtWuocpbyb=Uv3(~ZrBU&7ZLQ}J
zmx4QIXA=SXuc9+Y-Q1(|!_^-5c(39%&~S_`Sz??RzAZRuQst@^meaK->xrg}2CrMr
zUFJ5C^|9>fAXQZR3SO}1lrzDK^B4&&47~fKGCV(E`XTriR}{%<IQL7QzIijuXaAD5
z&eIncH=#wGE`EHZL7sfybs>v<CxzHl9OU_0&Ju}$BbVG_i>@EVr&5@i+Bmm9BJC$!
z88BgQ1=UyDyld7Wil2UIq~1eV9gS#uqd)Xq>^617IE=-B41bg0q`!|4x&QjZV0nrc
z5W<_JCb4JoO#1gWx%U+&?gOL6-~%YVFzl{jo&@WdP5@#kWp-YkcUBXsLRctSXWzTm
zO=A7-(F9>`h0rj7m>#GT$y$>IGO)(NReE7@qL<K;a;e2yhJZ5p7Mz!Mcl-9AV#$M*
z$12RRJ?5{CC=U1+<aYU}IJ*LVV~E=Q5xnVj4)Iu%U2AVz`B+?7H{P~-zy0CmGl%Yd
zcC<~W8}+xM{6|SdCxRYE(AsV?V`jAbx*5}#){`Og0?GA4vZutb+WHL}+Pid1d<`fZ
z@X33m0eh91#v3F73m&@r4I^X&<pX#gT2H3gkv9NB)@Ir(h<HCAVzbp*sL_zHus~!Y
z3u)75pWMHn=tkHM3OZ<`2@cWfEMAa{7?_^_o_Xwc5}7`Is5*NJfUOrh#@v5LZ{Ax>
zNWCEk$W{l;ZfoE}`^L|^Qws2!?bS5cHFq(a6c7><k!T~Ir#(uyXr|}eCE?2kNqY6{
zITeT@nhE_umrkl1jfhoh_&By$cad@8L!&}l0l6Va#tUqUUF%`HXDnLneDhO5aq>8|
zdy6j&aa>%H=h>)ra{Ir7gLC~R>2hCXZ8vUcH%^8JS~xKWbz5KZ!gJ4j-ijuGaX#X4
zqx1V*5k%(GuWQU1e{*#8+qXi-`~}eao^w-?v-u^{8R&`VcJH&h*>3Xn4|Z-$to+(!
zib^Qc29{LQVE|%t@&Uyy5E^{yc|uXg*W|4{fy>vp0M#KKZ<qS@CkQv&_NTIY+R9!3
zXtsOYZ`re^Ft8IJ6vZZU0+Z>kNR<P3CwBQENZIyZ%93t}W5E5$lZ;O2geigEPxoKB
z`u6p-@7UoMLTRz?gD#7U=lVYGWqC`}w0saCfq;+J?xz)9PVXr;ISGO8is@UoZBv&B
zk5VH4uE<DLFgwv`0CjHve19f|*qNug@*2*_<0UR2kC=C`1I%|d8#vR9HYWdy&I<ur
zD+!RPgpv+N^l~HsimUVX2<>hEiL&^-O`*ObdF@~zZ|vBy1JR$+#{v6xyVHYJ5%k`Y
zZu%C%QHK=eRtcg2W((pR4C*(;;1bO`C&NgyJ(m;dap#6P76!Jtr#;Fz{K(a}bW6WV
zU|&UX54a`G%7CIp9wI^=O4c(TT0F#$8!fGWXLvwn^TBmjlH`GY#!xs;4}IFJbXTmp
zUd6dX%Eqlo3}SD<B#tN??s#-tLM?y40r{%cRvBPAJP*FKq5=+6p1MRRKMqjiFgbGW
zrmb*lpjZNUaFkE<g%PFLzQ(cIlgqjCy!!IRv3lh(K#9}j&GR!-z9+e>qQSh@cLEz-
zzO;bADdq|v7jJKAR0gdiOdrJCRP+GvJ)WcYS}rs+E^0`wiE*aL1cY@#7r^3)_0Y2u
znSxs(EV1!(zF$zV8@at?@|G=Xf}cZ(aZxFi>(xgiYbD<Me_hg|^JL<Doo7;1sjf%0
zO=RCs->#t`xgoLZ_i={jp%6_fRr&hd@Y%-3zM0p0-mv*i)X}VQr1>~z6!*5-_OHLL
zg8*MflqS>@$OhuApS2dO0bK{XIONcR_cXD{`Yrp4^j%7{`agF+da4(xsXMxr3u7IU
zVY+W%fZ9k@kmgEU7>iD6sxvwt6l5ms1Sf6(L;R<3L>aqdu*dXGlf$%svu*PMZVo4^
z=chKNT;sLLqRuT7A*8!d<Sb~XY+I-2tvvOVN#e2r_Qe!c1(hqY;FJU$=wSKtAcQ6x
z$(rf-HtAKI&3uPL&}_B%&9A%QrK!}xV9+RUW!qSNzwjKizaPH7Pd(?{(k!Hh2m`43
zroYB`;|3&-fY5McU+i_Rx*yFL``i3EzBgX}>H_RvPN)yKELFMcc%YG?q3{F~2DR&^
zoF8mUhuF87McN1Rrc9YKA3q)JTTE6r{TGOpq^nvYIQ>`lv^W0~+bwu?%=E?JzB5CN
zY{vcPpx|%FmQGJ{G_3eWV!8OJ6n0OVNJ$spEzi*Kw-0tJJVI1AVv;HdT#~It@s(f6
z*1ZnHL9C1R<)mfS&!>O2G-+2@Tpe_0OUc^|&3%{8aqE?&lQ`mHlzvzkbFH*SzZ5O7
zRZga^-RW@gt+PEi&_xVI!rXO?PbQi%E8JnwUu?+s!38_%!BEfHV!%cyw;1!`5k7PA
zaQ3IZ?roIX`48#1A(jKwda{_>mk(g;O*{YdtLhuU_GjVDv1wD}(~{0Ec&YADF@e(?
zA|F6|+fyREClJ+jlXM^=0wa+W_h)un|M6Mas+V_9sP00kNG*H-rbaJQVI^+b1=y2k
z=H?C!xb-ZY)HoAe+x4atlwYky2O@$jFRef~FFR(9>udwGLc6U^eBO%uRl-F3af?(!
z0CT|_dW#pgOLQXLt*;JMHr}h2Jl1%C-jxeD4^*E+p2ob+uNqJn$56wO?G~^h<mhW^
z-6{K3Z~jbVB}O&scN*st<vfe@e4C_l7p<+Q{T6whJ0WIU4(xveQvb{3c0B{vwb8X*
zpFeYfcX&Zd%(N6}CuDI}dczXx)==vr<_ei|+GdEo-){?pk5fxc#i3EN+X}m@87iIf
z4>r#;ZWkkjeJo|$zn@iN8v^P_X*GWtj4ZMJ>&z)ThNl<_<IWEb7F?o$`bkn!QbN-=
z=!N%Nxr5&}p&k^Y&?-6i_4ksyxc(wHIr8nEpXcc4oI}RJkn)s=W9``pDdd|wpM+ST
zpVmuRS&8pAprvBq__1RzI!4rvEOy&pQ1Vau>Ay*Jj&#yBM3J6D`t$hd3Ja|h^PD99
zRz0Q^weQDk1je7X^nEB9xXu4B{3TbkbkvIuN)f0i)(LN>?;YY>a&GQk({|C*OdHzw
zE7q}Z_;Tl;`E3nRm~alcT}NTzN%CUGso~3)c5QBBT;Aapl;N~C_enslCyUmtd4$gp
z>laxbjx4g}$ehD#7?EQ;7wa5ww&@<4jO_n1dB5A~GiQ{29?m~Ly)fNHUB+<q4i9hd
znY4VjH?CaC^6VLl4Glx`QheTqhno0=A5kpEmq_t#))nT<kI4y25yJi9##_ioMXJ`&
zFtW7w3HJ?3w26!hsfq^HYdtXih?kbBZ`10pJ8tLXud2sIdBqjMMDl)bGwk+o-^}~J
z`BWAJ9SKl24sI!zj{PqEQ|VOitaK`kT>}dAP$lu3&Z(Ge*}Rz(se+ied!6ZVw<vVq
z^XOY&FyK%9I~EVGgDm;Y8Lq561Q79KO^v^pkB8f2gy2Bsalico8&jt*y%KpTcC-Sr
zRh}w>py!YYFNVthr!rK!Y0aGfR*+g8J9>2Bw;{)p^WB?X>8&<xDC>GKb<dgKlgzL9
zDkcT5pPBt>O#kQIrEl0g@2fd@@GcB!XJa+-qP%=?cD6UPDNy<4?j@9)<~7f6PMO5$
z-hD}0Ztgt0ff?!P-__G7QCa$~xb61sAp@D)+g;cN*Wj^O@T{;Nq_yK*$R+gE9y@ll
zY9O1NsAYNw&mC24&r>OIc}kw1`m<4uw(rm(K%6RpwRb-gBGq@=wEv0D8@BSFJ@jT{
zFWbcz_Fd{vA%wp090hwG<1JtI+U0Nv<5GC?W{<dy)?M#O&mS`9;J<!fgb;d0?nJ$d
zBj$O|8BJ|ITtg%2#uCR3?te<7J>LCISGOfK`D@pZkerr3ns;{F{W<cHL^9y0@CDc*
z*>`lh^nTMJ=O>Sj4|S<ncw(=zj!%cx*L)1j6Pq3esTJK<Jry=i*Y}w5#ezEpoo~hJ
zEiM_i`0}i~dSkL4e3aJi?&aa$`ufB&t;WChcC0sfSNmGe@5o7w8xyrAy>4pQ{;t9L
zy<^$tNlN<F<`It7N~!niqF<A*y2M#F?QyK~950>6nyISoB}tKy_uoxATvFz_Wut|~
zcUz28slBcqU75JhJJkMLc}F9OYg<X5mSqE4N>aC4nVUy8e)|M3EQ97E=svK}r?!^9
z#&Tc5k!8eU!z{nzWy8<$OT_?J;gz}rvNQb*N{XT!jRb~~!C$i^kCpu4*cc5yetE95
zX6b{%M^=YRa`clXe3I!@^y=%NBQ09pT(Ytm5<EONm9Ys1CfCC{A9QssK&nvdo%(Hh
zOVfMj-?bs#@@PN9Q0G89m~X?PumBr>?L3CT&(b?rAf{O)IFY=(&nS9M*1tmkBZ9Ce
z%sjKQC+iI(f`bKb)3B9h4fom@vIaF?Fmp?^O=E{{+PwGyg?`u&?+r?y#PzF^!ga;r
zUBXN-?FY<pM58ZdGCh+wOL~3fIKRxX-Z&XIq*v)K4E8Gy8+MNhnR;@yo?jicu22e|
z@+h15@wRZs^n|*$${Ao5I=A}B+R)CHh2<1Kh#F2Cv=AJ0{U#;fNVhvZ;Bao&%8o8I
zE?*=nj4#HFZl1`ZPz3&Y5ONn$GRIx27oV6lUFOtfjR3~VC7MTpCQ+LBDQKf@I>+N}
zKK_H##m=LAWa6(d5O$VrECxz_83{uqIgaNF`-Iu<01#o+mdq{BaB_0;QM2?BGQ{J@
z&%@yq%y}|vAy6j}ix~6`GmM!{AwIr{kfO`1_F;<t6?5G!b19<5@8dFRyW^u{8S}*R
ziXo~)jZ5ANVrv=-g%0i8Z!(`!3&6Bg_pH@C>Xx_R@IS(=i!D$Abn;@FVoOWHmMxk_
zwYbDy4iUnDp{*q1t0)qnAj#1cP2dBXuUZyN7#Aq)9?`yUN#~-$J^o0O>Ww7}u&{wr
z$F5zANRoF$brnwTx_Z-0)f<fF4d^<~9LbmJj_lt*pCxV7wSlah1J<18&I+(W!gB<u
zP*&5<`a<M5HMJ7m`SFJOM!toiC{N_-5}xhti?(jnyA6>`)xVV|Ep2HxX7uQ2C^RN~
z&4G?G@7#$@FkX8rO7BQrZCgWoJG*=BB;gxqey=PY`KqgWiI8|;KX!M-hEd0Fnh6IW
zLSuPB*FXCu9N(1aU^<~vYpYf2q2iXJ$_BK<3ct2(J7UZjkG*FfTc12u*CzZj10Ji_
ztTCMUyu94g-8}$9hr*&F9d~XPE$|wrvyRlT1;9*VzWT_-x)TKTReDz3JmGLb$n;r~
zgNu+Nd(ar*T!aI$US7Hv(<!9X6RP|lpQ?VIVofiC_jKHU3bTZ0Kg=L1V|xm6(9qDs
z%kUDhh<X>Ms_o9>1A3nw->>kFl(73^PD31YnqH=lKXvRh%iY!Qbzu3mUAJtT<9q*t
zW?<yVIpZJOc+kn#azM8%Eoxj!(??wgn;M3&XFa<;4!XIGi;D;iU4(y)Rcg}~sb0N?
zVO1+o#<0V$%ga~V{{DfYr#7ukR~uO!`WVy<;-Dh!YN8I;XZ_lZrPUQ9b9m$2lC16h
z`}PfG@7Sr_0d`MYSw2qG6OX5|a;&1p$dTEX{E|=fE6hLXB&)LAMQqsF?0eH}0ZZ>$
zY+xR9BrN4hk#o+2;*)ioUyYOM(IeoLRiZYl5F5){nv2Yve5;+;BB)J&zD~=bssDfh
z8?D~+2Ah44A7AzED?-?<C0k=-V~Q?tcC8~uxk}<I6qe9|%`h_yP=zxRAX5e+Fj_`e
zL}Y#8316+s6ajWqsb!pjZuoZKs=)&XrY&X3cEVeXdoo5j)pT6R;BN*Mj2oSKA>2wV
zO+Vww%ZaavH_AZF#sUYgfW?!A1sRR>^@%wx{oT<>s5b~-w^xy+Ugi-d)p1{Qotsx;
zCLv2-!XUV+_%Tc>Gy15S?f&r&EQ+>h8ReGB@(ng2G<M1IRx(;cGcLmn#th0}Rr5TB
z&BkBVixtaE`o@OsThV8Rw)TNzr%zjmUkgkba?IWRdizbj^A2XEu9PgvvU@sbJBs*m
zEp0I#@yLMj2zwCYcOv%u`E=&CPZXYy5JB6O_iLcrr*F@mE2+~n6oX>Fe*5ItGL{sr
z;U-pEWr)QGQdtl~RVw-p>W4N1v%YfJj~IHYyYRx?{MEGiqxTFQokRCI%;FM$!C~&M
zEl|Pus<oqr%&fHu@)KLtYMoZW%*=rNbwepU_iLs}%LJpfYfEyAix%_KHF-LtWKago
z(A9Oj(WsH%5`Oit?}3~5oeno9#~54sI#*{!7j1pLxw)qKSCXY<SwoFW_qNubdR`3-
zy!nMQu3WN-jxl>$E|taU#-m&6-Wrsn%~JNX<xiicHrxzZ!pjJ&zH+()?@OjgVBOe)
zUF;ebrS5x#Y4|=XGhCnTj?XFU_NkR5t#EYzc%L+bSc{W2No7qr>y5vTI$9KFv{u{`
zT&JT9n_04h@F7L6xxTlQlnlmBR}S7e`ODnWrOdckcs)+(pQB)X`al#H{7dyl=MCUR
z!th;%ZP)$Fy^O4c4t>kphbxA(WiDvFa14DFyZ70)))yR4Y2?qNVxEC2G2tE7yK49-
zt;49KFPyf`!zFc%xy9-l`A*>}LFl+vd3IZ$Tim?$<%#c4$IPZDjr|Kx{&F}uWpnMf
z@}`awmF8B~M`~OqSWCvguBfnI@P4|m1fhS@{;P3PSy*Y(La$^;<?|*uSiP#2SC+!|
z1b_LYf-d2*Y}sLUV|C<GwmPlOS?~*)Q4kvH4t1AAltW8n80JtJeBniPwGtCzEbf^_
zOI$$GE?|_L<Z7I&`N<VRvKB#q<@nSF-F-%GGp0{Bc<fWP-E0D){JU35Hw*|>%1K8J
z8B8Z?FtRsW7PP4x3ITR(;3_QHW?7l?hEdlAR46eN1CO0sn&#emaq+I)1e-TU0m{xY
zXfWS>v9WO&&-Mm-F=_&MDSwa+Wo@;;PukaF&qfBV)UUevL^Zw7ta@0y^lf#KL8``$
z1!cu6BU%U@Py5e$DoI-%3skMAub&A!N;Y~qb+qJZ$Y#h0dgt8r#RP}D32Q|{6EhW9
z6|UN+ZN%Q_UId2P@*@EO@(dHM$3wgXqawA9Pey7>zjQvIy!7<&QvFM@Hv0PW=O1Ms
zwLqPTnmR<O#PY)$(QK~~pPb@(Y+UW9Px-7p4?<N|8J_g+FZCfaEv<4b;~obQi1aw7
z_j}IM9Hec?=05}t3fe@X#lTV&$WpSh>*FFUlr{(E<b2)}T3dA~yW_;5s0g>ZTUX*t
z*EYR#&1uZ(Z`5?_>mojH{p8kdCCc?_RWAb>5Rh#xu`a~sqY!B5lGmPn`%XDaOG#C*
zfU$^sL8x0t!Ev&Rad4@A{T}&e^CQ&{Bc}rC8{*7^fFhddP;Ox8C=cp*3cz)fQh(%e
z1<sUq<>lnCr5q<c6BDZ#KczY|%dFx*oIjl^6C;{@40l}Q7#{iziEad=c953a`VsaN
z>$sHPZ+A80mk}TYVO~lGSEd2($}%ga5DaW7E=2R^3tGk1p(vhCWt|R=imHA+yQ%Jd
zSp>CcsquS@7Qfu8_^74*s$X9$^L;jlJ08j%ulrFrD0g(yZ^QLS`<)1snVlWI4QFs8
z%TJ-EO|yyYd87b2FFjM!jm_1p#0LDqeq{uDQ25ga#F)FaG^%;X_=NlGW&>d+aLHih
zq_UU|-q5t=Dqe%8?nT2tn^PTA@{UNX9JeQG)00iN<P2GqOB7bn1_2Y9(ji7TVANh~
zJKzlpt+}_JTbwFgq_6+|w!{6tT8TBwHn{HUy28%mA1#k+IUOcGsYMgru`S9D-4iO;
z-l>IuZrKwZJSK9PtJBt?_sb@V4=SUTJ3NO*t$(Av>}j1tzjU$gjGNAt#`#+k<QR}=
zWaRzjM`n>1aV<k^X_L1aQ0FWKI#iBJ)*7k}c#T3V0xXnuX3xfl^#nsxpYKiWYK{cq
z;Nipi3?`vTir|x;hzm7LbxMYM@;r9TpHi2HZarB;fAj8<%i`zfPOLwjaab-C8ely)
zejA{;hTF^J`X~8o{Tzc(gSyFS=%fCU3oltWAar6*x_y!H);ngA>(H~fJI%Gi1mvOa
zQ)-+LCJvO8l$39-3cc%#?aD*{Y6_Iarlt|XDeG-0DDyR|pE>4a(c)RN_EWpz2_8Gw
zqg&4B)DaOY*RHI%)bh6W>z=yD4X2&C|M4F+U9*l2X??He#itMPs|-qLjVAIb`RowD
zy8&9l*r%8A%3DSn@3ph2Y9Bq@(v9Kwg?xM_B(mfCJAGLp6c1nnMU+_(*cYhM;;Q^u
z?>UWm{%u$V-(AfW=9)d=XpYKsyoURP4M9t%dBiP%tj7#os-rfvx>_?sPSb8aMk1a@
zH|-|m9;vd_l%&~Nk4rBqC^*k(lH!C32DA`rWu@%VnFBVV*3#B!WN$}WlFA2Rr_i|@
ztJi_W3O>GbAC<Ic)zRnuQWeSwONCdMzqwF;^^y9adb3)+wN0-x9UdNf?BpA>V?>j4
zn0i^W$Q*>iFP&zzZW}*kXxZ=I(mc+bAs8j<h_+3uQ`dff%onH=12f8vHTa|3eEU)}
zx91<6WT6kh9oEdMJUczaTZh9Uyw9kxLs?=Ai?4s+Fl8bJT(b!%(l6~8j`99o^$OO|
z$uPNS5XNYok8}F-er(Q?(HT`u9b2VHT3N@qwsl=1>C=_lq&&dN|F`%^^l8D^u!+-$
z&9QypZ2C|X=fX8fTXblj+2yjpJ(^KN96F7#Z&1l%Antxt?xax2bv<`c3L{fqf=K~U
zFDCIW?9@rtsq~VQ3&UXJWESvRjL^C&C<vQF5#;Wk7;o|LEMP9_IXFK4;W85ggJ7aS
zC60Wdg>{x5<LfF*i)*UGqLz5a-V!E{gk`*KA~;B7g-X)k1DpetwHr}-W;+UV32@!H
zjOpe)pz)THkqJgcc=z;#MZ78T!B{zy@EE(k3oy+cLmb4XxQFeE#>o2G+Ct<lE4+$*
zu9};!HHwULyT4#0F{1KuQXHh?So@DJblivi!sX&Ce8g`qBLbrG-@^fqp_LFkv(TN1
zDg!_11SjH(FeTYUtu%PTgyM&(&Z*S8H3Ej<5^df05xdKYSeq3gmVs$f5fvRf<#JFD
z`rQxIkrs~H;{?xM&Sa^Y6E@SL_{va<dt}Dp%zpHmkTw=F(el!=ggjC88f;;R$&JL-
z2er5g6~h{#;o&Wb&1`P;oEolK#f|FfDPgvUE9vA`!YRqp<m;<q`}h54{E(=Yo?v7{
zyiqQyERWZkOLdu6N^2q4GAILG5pwucKQW>CVh4SNxPCCRu?JJbVBuw2wQ7~Y?CUBK
zP{KBsJ}k|6Gt7&+HuMWCKC+!s7r(w$tJYt#Tyx+g0npGC4;Zy@X_}|)zgGe;tE<Bp
zlsj3!iCNlc00SG8SrCrqEI}aLkk8!vJAPik)c37NWhWi>G69&+-&#nH;G{*f35IXX
z`}p~D0cm!W_Ih*k`+Rn(?%m1m<OZ^x=!MX=bXg5Asz;G2Vy{9lt%iP;+)Z-nyUQuQ
za;Z&;G^k0o!51&ir|m{w`|PqCITg+21t7o;u<){4PFH0@&uwu(4<^8dA00&aj0Mq&
zdLj1or`tYcQm;=$jxzH8uNuZ8PRnp*+y%#xK-~H@x6;$C%|yQBOL{-4WDis6>tUnx
zv&io;gqzR<i;Yq(;%LRMczN}1LVLmK_D&c{5~Te(cGE1fac4?mq9I9KZRMN1z(Wa^
znBK4%?RRZP<Q8%y3%49bvQpCYTuW1PnYiztBBF~79OdN79;nZ>t*Nc8j^4;9>2V()
zgdF<jxOgZIAHFH%ZETH>R@tO?2wIi^bu@q2r}ZZI!kNU2wp&Gzpx*Y6kN+dgI7uIo
zrCMCo$X4q{cvacvnf~}RPZzG}((h@9jvYEIT(c&qa4<UuXcZMljatIQltM5O3rgtK
z?vER<*6iiX22l}KvE?(LP_Lj((h?6J;^Gbc%i-^R;Ch+kTB95a0;T}KDN3m&fFWf3
zXi%_E2amCBul8+mennz>dOB`j*Ig5;w~vDKTtMlM1Z#avE;-`&;QYqK%mv02`{!w^
z(Cr!Pf3>MD(StjUG^Ct7OCVT4C-O>adU&h{bF=7kFNsCq+%35Wrk4_t#TotXXc*%)
zLR&yXJil47dTW<-CWJ%wm!Pb{v_Nm!vbP0#%YR%5$=mV{{nB)?UD1iS`tcy|xYvLI
z5iAs%LxFl+!I3m3=7fSsr+2WoXXUax#*Tq3*PF%MhRFXS#}mtH8JQ&$`}1i+-~`J?
zw$KVkjqH8MK-9s&&e7=jAKSn7MS<Z*0XuGGMkjC=b*WD-t=fp1^YLF<N`P4v)=8Je
zW*eMK{Xh`~Bm*?Y7}f%TiQZ^D1JKki$+msRj`{FK;~2xDiK(JsDPVN|GY4=43^C!R
z;CtoFNMt^aFXH<edRrVwK$T^wsf5jFg!{BLi3LUB%v9Z{2)jFCmm#ps4Ep*!_+{3y
z{D}{Ax@)1nud#^NWU>uZHyyfkdBE&Q_HOwf7trNXc}<H)*VgfmhWhQ>cX~n-9~sCx
zJ7NAZq=XlMPKOg`D-Z66l_)GIxJ|D?114wXuqJY8cEggK*Ru~|dAqq;+K7>&KvK+l
z>K{3)WZOZtF-1;wm1b2-0lU^DEt^$b4KTGe@$t=Y2P2U464oz4_-Pz}KbwhLlpwfD
z+^_W7>|OaS{z*m~LRorSmm1#WQ}u1R(@E~llRiWbvCgTlTQ%7Md{fWPE}r*F@WPcY
z04SnnkEHfjYd5!l(r>wgG7w;G{f-MMDQ8}ERt`a$@Uvec`%7;h*R_2=$yF^8H<$22
zMNQ)GO9t3Ua(;lUH60}7;EXN~HRs#^JZ=)nqeIfVl4TQ+tdDK|^P6Ye2&6GxsjZ}R
zmer4MKHYXpso<ZV>BI~D{Wbmu|7Tfm6hs9)G~(7U?fXgboWK8{y$?;NP#QZde8MBO
zE|PL7@grxIcu&d+6f?s(8PJ!DaRt*4Up5?_<AwT->(}Q|lZFC-Rw6DdKx~fA)^tL$
zGj$|&-`hOZ9a#q&E=yEQz9Xh3<-OOtoC>~l>8j%MPMksT^7jR?;>@5%WcgPZ5`uM9
z(aLgFsPnx6;sEhPu6IPKrF`?xkH7u+7-@xjf9djcjqnmZm4yba5aN|2ZI17cEKAc9
z*v~nKB1Tk?D8{m1LPe5kJjf+t0R?gGL9inWKf~anV3#XcHJ>ah8o*lEM(sR+ay?ET
z{#av79A1taKYjz!EGSVgg_kd0tmDt?t*qY7zr`r&I>e50USAs<D^ak`hlf$PgDlvp
zUv;_n`LFMi=5hFZV-K8D`}w|IvhLh?I;mZn=Y$4LO^YXcS23xtsH7BQSa)}P8LJrP
z^6P{V4SmWuW-1AWEGe5yyIzFiQCPxb*z*P)ZwX~KLJ3>Cgmv&%Y)bMKMH2C6Zapmc
zPozJPni`GJ8(Jw+7@_upf;L#AIu5AJqse(8ybR*=hECHayAgteAQ+4aH&ZasRnBMB
zZr>LB7sqBsGvoGeAcaQy{l=@7-@>xMj$gcgzcEg?UySOb*WZ2~uyE<@9c|)w0F0lC
z`xUzgKT+#z=gDn-B$^yx-F5fQ{t1I}T;XPV`iZYz-riY=QggLht||lv22Q8)5QwRQ
zIh(VD2RY{m1j@IB36TkFJ_?WZZLfW|+B{EhkEXcTwQPaCc)kt7sI0R`n3ag|_*e~O
z>3<;jYkFKrj;$#*3l(qn=Q~|yr2yEY0u{~C(RQEI^m!4a?Ob;o?B!0CMn6%@_F~RK
zXr1zMm&9S_aH=ZNrsDa>Nnr<$5dk3CzSo%m9dZw@nb<#h@<h(c`@y3}Z!b@(!^wOd
z@E7+nA8gpu!(-)U4Tl51IVCT)oBe!lU37MEhJT~>$xf99ok1xWS}R~{9xwr0KYh9!
z*!q<ALCk?B!dY<($3~p3aE<!<4`7~;>Id8@+ZG73kXEr*zkY8oU*$KweEr%;sT6NI
zHqof}i$KyU!e$Q@LO55|TS0W@fRNjts2%S3?4sKbIz#gGukupur;6SFiP!A9*~zKO
zo~F%BVfreF@!3U0<w90h!b=X>_i{qgylvYO$rK`)Oss#jS(Grsu2?&-{D@XKU=>tL
z+6r-bWXD^brfvDX>2xn4fZ&#?_Zu~I=uDEUoL2<NgJ~{)(IS+o<G3qh?i8vW)+x;R
zdAqC=?E7T*=)CNt$NSbp%uU&QDeyj9sY5?`i`TDTfA$=l^LAzAQmQlskUJjSEVIZH
zak3lMtvgD-Pl!nVh$C7s3Dy+EN>4<xOG}@9lp6C-Lg2!!jR|+`C%r37Eu(Og)6W+#
zYE6vwRBu@JZRa+Oc{+6M>J2Qfr{~G_Wjrf2G$;j@OWpdZ3q%O$Ql*!wNwwwniGBlq
z{DQO?0+w~)+)2`@XBqhu4GV0Sr;ktOw~^iw%k8yi{^wszIs4lmT0dW1<BR=-pMR9N
zoEo&_XHiLVS_2aI_gB0Oq5AJHD_-yKKmXr;WR#C2{x4?N*8OaOB$L}JSi6is?JxWD
zP)L^djGO<jSF|3(L-Y67qyI=OQ$fjoex=<#n)dgPOaA|l{6Af>Zv*bzA21CWn(#zi
PMD6Kwr-e^hzVm+p)2cJm

literal 0
HcmV?d00001

diff --git a/oxAuth/docs/Client Credentials Flow.png b/oxAuth/docs/Client Credentials Flow.png
new file mode 100644
index 0000000000000000000000000000000000000000..4995843d166c86b11ef4ceff624a3b0fd48b6aee
GIT binary patch
literal 6978
zcma)BcRbbm|38F`jIxS~ZW&RCV;^KC<cMUi?7inPqhwqvl53ZdbnMNsGqNu-vop&c
z+5BGW-rv37@9&@A$K!k)AD_?XywCgndOg=C<UU%CoRonSfk2SU-<45CAn+OBeLFEe
z>?^J&TEQ<oXH_{VL{8_$1^9!=NKsA(aeVUgrYa)}j*vLq)pAB4$f!?Vc!;=!^KkIA
zi@cKT=@B9#3bM2QL&P`)f}vhsMpDgVcxlw<KFu6n^I9}9{>&6IG=SX+-}oZMDe1nm
zH)lESjHUlZ!y}!?Uz90Ao=>gAiDzqe4mqV$WZI-kP9d^m*D&EA7NU9PPN2Qa1DiJ!
z_X+a@6C9kzY>x-s=4OS^Pabsd`yN&JED!m(ZNEMo-B?`Wy+<R9hw!g+G@?f!f?<@7
z_y}e+;^(V@1mQ1)hoE9Z{CrIjAZ{o8I_Y00!bymKod_o(rqY<~#wueI6SLJgo{=-o
zE-f8)imr^5IR;AOMcACbc;1osHbc1CY<uigxrl><jV@W0tPdaJgd9_}v&DT6gyv|3
zc+XO_BpE0y;>zBRbH@rh&yH1jnRg}G>ie!uHSX-}Jjg&35)e3OKQ{h>PFl}2++H3H
zqvyUX?!80S|5|T;3lr5cy}W$n?XwxtCpuK-_?6ptjV$cOS%NFqu9*xKm<kIEC#d`5
z@x<O!Naqz4EIlsF(#)629guh$L^Sd`BO?Qy!8k~9VYO0BOpJttWMj5Nr_AAPP0jI!
z>v<vdgp0yXCfzBr>f_o)7AmHuEOUg02y}wb+unuH&`=wVjkPsPdwV}p@}czXpdcbj
z%ICi7B^Jy1v;6Lx^W8~FNgqCZSYKba9>_V%Caqy?oT`vsu%~|ec5Sv!sSr2fT=*U8
zbLUdjIQpzyot+DriA(LrBSJ#TefCS3iDS48j+X5GI5o!djpZC2^O=cfW@c1dDm^#S
z==u5iRcmVAym^zIeG}eGNEl$gx5x5vM7MtVvOkz_OqV@3J^lIf=S_X=7&&=a_88+I
zFJ9#N9Up~Ivnh}%D=QCt-_pp{58tnO|NebI0KO#E>l<1rs+mm@mvF|-6xa^=4Q*Rl
ztGlV)nxk$oYb(|J=no51Q@_!^j)}plaipu3yM9;qB<cC^E<OF>!-w)u{dU_7C@zVZ
z;Hr0h3niXa%umnFxzDuHV(t3|2E05y9rY+Eyu|vw3yO;$zP*nW5C~1t)YfKTVBm<h
zA1Yu$p(=4WQ6#b`CkM@8V`a6zwM8rI*b&FSwzft`c7u~MEId3~pOYq3)P4C=E*~$i
zh^VNdg2FUu!SJwl`MY*2=~LEi--tM9LTNeG&z~Xk%<1ezmq$C#b%rwvE)N%5_rwLK
z3=R&yzt4^lWb67eU{_SNq@|@r`gH2+a|r>4@SYEQdwXs!F6Yk#)z;q5wDf#PMn(po
zlXl_MsZ%=I+BO4z({d8;Q$M{uG8^;R9vvCc#oGI9cFSdEW+tfLP6$pZvmdXXpSM^j
z?zZq=NRL?_ui;jD_wF4L5s}?UnMzJVOw4xOX{Ngw12OuTh5l@vLsa8<m6rxhBUI9-
zPoIvm()xmk`d{~vtFhBux^#)|C3BUXrR4=dy99M?G^?nH2*qWTrlzKlQ3ElfW6yw{
z_jHMM@$mHr?_^|T&WAVo?El!^-My((Vgpql#i}HN*?eC_VEIr~R1^jaqsi^FN)Im9
zI}T}Tad`HvCRexI2^!PU(NSWr`+0j?u0c&T+ynaURs-JM>6dhDY;2NL_gJHlmPiKp
z^me~fT54)E7cX9<r)MJ$C@pnYQR!asJKjG+PA)DUXkw8QL0KiHuBXxm=v+ibp-i2e
zo%^hcnTf~!j(w!0q|j)zj7)>Sd+L&{2DWdmGcg|JS%9ROotdGfroKunb?@Fi3yb%=
z_+ltjWK`7l;?TxSjKR^~K+Ws10+r(yry~1Dw6wHeo1b@ebVQ3}Z*6Tc3fP>N@U3)V
zB)z>Nvxj?86R)A6p(uSXg?)LX+<BoV-PP6gYg73CoW$|<&?$NY?^}LH-kwc?rzz2K
zNO>ArbMrZz`-+>pdvjA$t5{HXs$8;!-`Etcrq6z!C{U8&+sm!KKWm2zDjw6N>a3f%
zxNNpYbIz>m;oRh}UJ$e&b8&N99!)^m8{oQ|O5$^Cr(2>pIXL3t;%G>pBF#*T=hReG
z&eGA%&dsq=k__i`8ODh53ksT>neFZF%HK+gi_<nR=prF(2q~|xub-Hhn4X@7mgY0>
z3{KJ1(4eQI>mMDx89HU2?DJ#TI@cA(+1$(|?yZ^BW`T^j!1u18fR~fgy7krdy1F_h
z@72fNp<QilWTd3SMV7r+zg`m%D9OrduT0AgN(&=DWr5u$(hiSGm3vMaK(+73C}@|J
zo6E#!)_$<NG48$50fm&MQ`(s#ydk?~*Z8AkWw^MltBV`Z<;D%@KgG_@+S*zeVQ_FT
z6zmvQ#P?vQvJ$nC1tmq&7-BryWHGrgUO|YG^CM%8lFuEW+%c=j$>D+}3A;sCrN1&Y
zWwiY`=5aCq1UWMH9>8r*P7WoLIK1x(RyXJnv*Uzg27ZUGCslBRH7XN}Z5th}O2*|J
zZ!LK+Ttf#_`_~YPV?-xH>VbOx;;5*(JNo)b;TZ?pTm8`H!a|5Q$7M8KGjc!A#jqj#
z-#-3}+WxxaZ)$VoRnx8XxW&V>I@K6<@#J=A?ps@18yOjSdmkwK?e&(F2t=GhoKKsi
zDC-~!d;~Ob;lhRQ{n`6<l)f)sz1l3TIb3o)?qWyOCR`QQy28nc&CXu>^R0AGFCiV5
zu8>*#ANBQ85kx}EA^y*@R=X+VK9alHj#nRIbE`SHxLz~iY3b_f>giSa?7LCiK)iA9
z;m$xODkv-G=H#ezM9<EUlao(QPO`ADSQW<^<9o{zGKp1D>i}f-^!5S`TEAooU}leQ
zjf{-k+}s5Aq2LBG-%IOVICt)xlarG^OeL1~v(;7{zcn0j5xMk?5P@=&Yd(u9JFFQy
zYBM-G0pkjVt~$KaB4>F98|9Q&(j=g3zkK;3ak$wl*MG3ts|<fQJ39-1LQLdW?rbM6
zj@Q(bmF+-(9hMh13=Qp0)CKmwQ;HXH{gxsdCL}&_e_VBlgc)sPX=8(Onhws$Fqio5
zg~41Fc9Kc$c5tY5Tve_XCR)s6GuSyC>^<4OPEM}bXnZu`g?25ksGwjvsv!ns+=gYD
zkw-MNINRn8p!I!sO_`XIHS|4A`?IuwyDq7I>F@7<{o=*ySEgejKEB@Z@#8MPqm4rC
z@P>wl%m*1}W@hMQai97pB&xf>3Y(a!&rDNuCWwn-Xbc8Zy}yiu=I{LD)>Uq9`@6O}
zu<n4aN=hA%Po1vb`-UZF6u2njGQW^}2e1nmyAP{Dc~NM!LvTC+Kq5s-TKc20Ym&FO
z_wbi5!ftq#_Z@%pS}Gm@Wx`&?#m%jesiu(b1l6J{Z)cZNQ&Xdw3DPH00m-0r_inIi
zrW&@dqoX5$xjkM`8H0WIj+Ko~PMm&ayvA>;Aq0qiT~}OO{OIUNoiVZxh`hhQwQX&4
zQ@7Zv4<?&HQnT87ckBBAp`?)OH#I4#0JX`~=i(I}Yew+?PO3_#+Su4wbHt_Z*3LKj
z6<$Y0J$UfISYP$wLsvjWxUP-GxH+O&vu|_LB{SZr_)6H;b#`_OYimXL{#{*jtAspH
zf&=-C8iKndjw_3bkUTtjDJfDkjs5-V1_t915fp)SROinR!oWsHmu6?p#5Js~u~Kg>
zY;0&`^Wl6XQjG!kYV77ey#0%oRcL@pM@B}9w6iOz!h+i42Mf)WU0jMhTUw&n()%>a
zoo0f_8D&%ej|2}74s!Hxtf48%$;sUoK#I_PiHV8O4?QB9wvFD|?S1|IW981xKde5{
zkOG)z9Hit1-RPI&D6$}|^(Q|<5{F#MIkhs1E3K#ixgg5Rt4c+Xt^R#_x(KsnB}w)B
z9b;QtTUcEO2L~V@G`bTcRJuqZ$WKtH%*68Y@|KpCdU|?3H;+G3O1#R^fN~OHX1?v4
zrM?n0-FEKyyQi?$ikGac?9AL;&GwiV6fg`jIy(A9#{~z!_+~#=IrQ=4$KKwJy1>%{
z+AjxMbz$|RDc(G&sqpvVH^~=A@F0h-ph?Nda`kWmen$ssY1f#Tm?WtxD=VQQ2_%C<
zLP*HTqno_lmPcaa;`ZXl4`!>j$EXSF8XFrAY^-@>_bxu?6TO5hFORM1!(E9@PBt(#
zO>Z%YG`F|2qoAOmBba29*lnqQO2*Hi1X97oWEv{yXzjV*H5L~6KFoNMQE{|yP{YpJ
z*J5p3W##9URRWr}!F~<+D3y^C)Dt3H+S&MrSoNx-z3(aP0{r~fX-LD~vcc3W1Q3$R
zr~r$^Ji~mzVtsskWL1C?tG%}E+}+)6Y_fK1Bh-{=8si1+Vfuku_2Y`VUtB{XH$if}
z)^~Stxfjc8+La{MW1_0slO`VpRncv6qPPtW-*j6b?Q>F6e&gjW$W?D2XicayeDT`Y
z4#*Bv+j<(ZVZbY|%}siJFE~XAvuWYUhNz`_RI0cJ9ft!z_4Pe^LPG7fG|cb5Jo4(*
zD=-!oNQOl8_BU+qyR@`}NlHIxp>k$oJUqN)?{#?(4-W-})-U!odaA0w5!XkuD4K!z
z^x50Y%j3Z+fe)dfr<aqJWnpFgp!Pu}^^O+OM5QJxYY}G6s#xUa&6`3(J0LT50khIe
zQ&Ll*>N3=^i3th6UA>y26yL95pSnFeI7ku_5<*8m2W{)QK3zKQ`+a34IWm&hy8lKw
zBj~5sAo=@s>}|nQaZ4kDBG_DyBU}cOa5$WIT>pa0Y?SIHAkyV!u9&-mdqbDy3jV;l
zOVbSx4}<0aK-w2Z^>uZ4>H<07To!tMzrbhn9J5t;<tO>_{&5qZxuva*(MnJljNa<S
zB!Y6zG4u|G43T&0nU~?K@aA{x<b;UesAfZc0S^&D#2KPMy?=<78sTwv^#!e$V;Pg~
z_7<bFuNMVk6Z|7sLX;@#QKSC(MU0Fvq8Y{JKlYEEoFd4hWIWCoN{K^fc<rpd)h&SP
z*k~~~4bCFEolq;OSB2rfd2=aRLtof!@sFiAXh@hM5TPCI?Fr&Od$5RU>wq0#^dzZJ
zVq&f$iFyG_nQG$8N>=MuXL|fg>-FO)sn|TYJTVyXqQWTD!ApKHRrvV$Ir>$YiQ32Z
z)w{Exap-7)IZ-Io-gwdT=gMAQUMuU=Z0LEHij<TTJnl)ySnj#}5~Er^{00(zB%tFZ
zQMWAFM<802l)^pbA3p3$SB&Y;HLw>?ZPZ;@SWrEFQ(38-u6jMX6}()lN*X{EM|5dv
z>1T3|e?e)fW+&V!G%PHA=F?L!mr?qFnV_OH_3C5!%-iG755|4cdE0FPC<Ih;aCn&R
z8S^hE79rR9{x5gvY_MeX!sAouXfVaQTqU<!y|rr%O-(>Inn_vN*;USS5uQ)Qyne{Y
z$>}6&yuA;N*vhS~qXS(D;{6Pfw4tHlg9lNY>UZwkF*i2{Y=Z_xrOI;t?CIUTz0j00
zD0!&#F(wx+t=K-6O*<n)>)&i;6&1tc<Kxw_#hQXDG>nXlw4|~Id?h6%;I*2X?x@fx
zDk@4t?P-e{2A@a2nQ8$So!@iS?VCojCbmyRSU6k1N}GxRoTQEpr=IChrDx%@XU{S+
z=0JwqwCk&>y^4*!PF&xUu6THO2o`D-$M~5(jFqU6HA6X>f|&R|wr}<+#0Mys`9Bjy
z-GRDoY>pO(3fa&J?8H*4s;b)B+8P=$IGoq<Hlo&$Uf%>P!hlt=06KN{7l;Cmme_s~
zupLHb{y8*ME&-)Lt5@c5g^SA$tP&9AVR^uB-$xq^`x}6gz1R0wYA7iw1<#*3d-iOJ
zxr?LYElR^(Hs?bd`ojik^<Zk$X_$43HQXeC%Fga?HslFhy8|^xrmkbFtE&|i6%!MN
z3#jF#rBMyet9O0}QbclJ=jKl4HEmrx{!(Dt)|n_e<Gco1g{exPTd#E9n&gLe)KH=M
zK!3k}nS&%(=7$fY6ck58UB2(`vri}XdNlzGWvg=@HhhOK4!S@$*-xrJN3RXdjOKZg
zAm$~&#kKrBx8`W|BV}(-Pg;FLgUm+TL}V13vhV&<DX56+*RL0vbtot(6jaobP_r(A
zQU;3zN1bQe0cm~stGsvDOUE$QP@+yPP_e#SSc8@*Xho64<u>jb8iGeHkt}eFIB_40
zrsf~vEQ8icP_R(gsVOPvsHq=vJk-z_$kHk-(zaDo`@G`2jq~^SmjIekH$Ov6yfYo8
zT>tUo169>A7*S;8xrke598vh|XJ<U50Ib|Wm0aL6`y?%*9(#{<A@1=KCl{t_tg$gY
zS;G`26jbs}4hbicKrQO1mb8KI>6}bGCO}nKEcUZk)Q{VKW(~c7J3?2`kY9Bn{(`M6
zS0O-R`;oG`90<A$@3*$Ku_-6rdk^TxqY3^(;%&XO`eOg}Y1PUlCq&oR<nkGMbG8h@
zF%RP}CAL5ei%j4jR!zJ(PA>QV>ui%eZ0^`CL~}#gcI~RnqlhaLga`c=#okT7UyuM=
z;pF55t>wNn%yQVG<J~wNKjVLEkZ__=(75S$$XXO*xI8^Q^+4z3`W<raKLMyj>A(0S
z7RjlRv)aZ57KQj6?2>Zczh@74B82B(7n$>t>KcITnGxedg{Ws)gJj!@sFaI{4E)X0
z5;R07fgO(!%B0cmk~k4=eiA>zV|o8L*?R>yB~1IL=&w-kznu?0qD$;@ff4tJ`+Bew
zA_464Pd8N?)qFA`lg4>rm$@c_=fp1;Nd5ZH&%p3Mv%tz)0HZ30@s_Ktcn%zhs*^-9
zfL<H2B`AcAYFZH2zB{W|l4qU6VbIwhn+@s3Ml$T7>`0&1x3nzmZGDH;NZ@%C5Z=lf
z)iORVarLV4(r~e|`If%VRv*MSl2jnA<-!?Qi0j|0q;eTlkKksZ7Dsw|rY0xr%=ZqG
zNIgE0I!Yy=nt=j=90(;njt{p1?m$l2szJcG13V731MrpXbZprWe758{>C_XU$G_Kc
zp-!p3CJx|nn!XD?Sk>9m0y)lto+scw=&AtbS1~bdPZ`2luU%^Z(>*?3vz?}<^*7op
zu#}gVLsvnV2l-y^xi4wzuN2a?vr9ge%(TTEAFlYVU>BY|Aqc;ds+w6@RrUOmXcL}4
zebl_+-muB(5!x<YP|KjxY;CiVS~@yjbDfvMM3j`2s;jG0*mJZBS;fWmIczK~9i5$f
zt%}vz(pmQZ$);){Q(9iO6BHEOVA<x%U!ABswUL_ge^Ry36sfoKi;L}@C)+aCGE@6s
zz<-13@P!Di=E0IP$9WzMn}@&=jJdh7k(Q1w=*g42ELW~v>3K@(48k@xHa39yhF-;H
zLkKm9S`d?)3%$@9R>j&MjBi~h4p7IsIyq@qVYYB9)z(M`Fwh{F0|Nt%jf^^z#5nsF
z^o)Qz5`mfE4uq0-6%;DGcMCQj1VB;+L2)Vs9=Y$**E`|`y+DIuFbdZRc?Jmw*%YC5
zA%PqB_)7kTKP)tqOSg=Qp1#y(h}YhJ1$1HN2w-((Tw@wDvA(|kt)CloZM=YO95XQ_
zl8|e`imqqYxQEzsad92*7dkqfBd9asm5&m%8?msrFYPX3CWg83UN+1NtK%Bff^aJN
zXp=2WDzMHF$<U!#y)zZIyD`@mb(->W0@5;)J@i-PBkp%psb+WUI{8ab!j^AZq<$%3
zn;6YYiyuG?2bF**&dGTlG?5kw1hl&9uy7Nr)W)Z-rY3XejuV1saLZ^}b?S-n{Piew
zubrJ8=~Jn<_f1Sq<!AEq^G!`nXZgQ={R+v*4P}P#rd!5MYU=7h&OnV2P;qPKF|)JJ
zA06(~MXCNEAR;>PjWRN7YHC3E=p+=x-NJvHwK0~GuQD`^|CKHMG1nlvQppENSYX|s
zILj%M;AB$p{KB+@gc3BqGQvSOenRZ%=x8=tfdv+Gd3m{K@D($$NMfgVk5!8?zg23S
zZ105H>eR}~w;*Ol3(=mrY><c$LZ0Bobfz!MNjU85TU}bZ4P4qKd8+bm2L5trhWq-f
zkqTE%uwtN)2J;?)S6ZZk%!26hHE>RZgoLn?i*#^+_}t&SBr*bkzKiaSZ8KFZrERmb
zv#O6t)jVEu5Ti_<;-*fwG*Lb+EG%?i8B2WmGT*9?qk`2xFo6^@_jY@+$!GOv+=e7!
z)6*Nxd-O3NAfTYI(0;U{Q5;X-W2EVB0_rS$<P%Z=QP^SFx`+nQmsNbhLx4wiRwDFJ
zQ6_}X8EfI2&-DH=WDcW!<Iej6KpVsM#{Jjxldk8Ji};8LOZYx?+>kBRetpUP!Xdu_
z^f3O!pEjt^WX}h_e2vlbmd1mte(LEY{uA&$<0h7J(cd_U`Y-hT`=QL=4`xn;b@M+M
z`@dq_6TtpI#rDJnhlb;(PZH|{h$)l2`96G}X3D2aKa>)CIT41dWp2L)3imsC$n*Du
lp8v}U|F5S(wR~#^;vdgMtCPfEga=#*d0Dhfj+9}*{{TiCK^6c2

literal 0
HcmV?d00001

diff --git a/oxAuth/docs/Implicit Flow.png b/oxAuth/docs/Implicit Flow.png
new file mode 100644
index 0000000000000000000000000000000000000000..dc8c6ef73e806675aea6cdd92ee25fe426ad4c31
GIT binary patch
literal 19849
zcmd6PcRba7|NoJaLNqBWr8I~ldz6Y$lti}5${yLXqKz^WQAx5_NXMuYAtXC{Z?ZSP
z=TTjE*LB_B@9**Z@8^2lav#SzpYeXbUeEP9ch1O5)2!XLmOvoT$ecW`NFb2s5(s2o
zlq>Lva^hJ@{6l7~C@o1yC}rx!|Dm`fCw-i-MEdV(c9b6;Sz~ch)tW${+DQ5z8R2m#
z10Gy`Rp#`G)%8^LTlTDHvyo{f5VjL!jvrOB|31*@rlDk$Gd)7fx!rzi=F63QE4<yG
zucHh)tgOqmcH`<@{MWxyr|mMP5{S;ON~1h9)l_wVKKWauw6XsI6J7nqj{#5o_j+-0
zFKYDn?W1>l;qJ<s&q<xz<-8<F>@Izxz3%p%AC8NM$AZg*!pnrl9Ks#Sg3ChNcgy(V
zum~+H>}<*K?~zGre19NDj_<l<_(rJX#kW5n-tI(!M?Qy<o}OZWZ|(zI@%_(-DcMA4
zFNT+fODuJTn42}eP0Ps<=i%WI6I+<+4yUE1?QYzr)6mdRyJoG7Z|$1<GVbjZw^ocV
zCH2|WS=-o5eDI`lTO12FZ_d$-tqK!&aUAO^k&%%x&s~^|Q%$u$Cp2#Tg5vUqmN)O8
z5i)q<W^2B9jdhoCYrIK%{`~o?S0`hu*0O!b%hPu3jU24cSZbrs6?B>98{V&>%OBz;
zby-CvNO5#=ZdhG>6-7F$)w^cf_j-qd)zsCuvNOCsYT5e1(~D8y?KD|Yl!04WShMq3
zN%+!y_nkX;lsgX|JXj_=cIxO+GINH6*y!lJVq#*#!jA8+ud-`)v9qv9(#WwNx#U;K
z?(t)4N?@DUz@7%JW{ShxPG7wEtpDB~@<n}t%KmgS_6<(iCeqT<YHHuddn;HSd!8jF
z@!Z^^@vO>-mRXoxVjUILxzW-B7AKRX#RV6JO(_@iZfa&)o!FY()YQbx%<Muu!J!c5
zJe1k3F;7Tq2o#?oF!P%{Qj5=N_ZE36|HN^A+A^h^G0mpG`WCBe?T{R;#QcvOm$};)
zHB{8p)a>o2N7@Sn%$w%5mnO8e-4@c$d!`zc&Cbrg&5=w~i)Z@mu70T|K~pNiGVdmh
zfK%Mt+B4y=t0GRmHcE&(8#g^(p&%kGOigj@{Q0UvKaQ<x7AKsYv)=2_Njgt8+8LCF
z&a|^G?Fs6im<?YXk8)`WJ)h9f)U<fRMQ4GB^(l_O*>!HPDpsYvz5U+ZyPw0%m0Vo1
zMK9(l<G>>2f^J_FG~i+IW)e!V>XeOS-@g4_Old==b!TGv`Sa)1;*}%H<1~rNLKaFY
zD#mHwpFVwRTA#j#?e4vMA&(!Yq^7FGU3foqf;A=~!TZjgazj3>9IXG1k{UVAs!<i1
z_)cj#-czo<(5E8X>Fc{;=Bmp1^8p%%TxPG%95pqKpC^V6URanPE8|+78hQQt_3z)+
z>b2_lao<b?c(}L*BYecy($EB`9FT6qRWw*QCMzpzX_-uS2@6Lpo`3uHr!QW7G_#i7
zRG)rH;K62badDh(yhcTFvD|^zPJ12@g$+uXgiJR`&JWq;)~D#*8=DQBqal})mA$K#
zNH1AgSvfyoAmMkpJ2o-r@gcptL?Us}{=r~Vwg@LDCoV=I(;Y@pLrS)_R8)B%KJabx
zdasjocT>Ih;P<rshYlSQ7M^`#*VIeP`qXdtX~iy&+JvuG6`=!U_2mBNPZr5VR~dD7
z@0K=Kr9HV&*i#<i!z`jd6?ra7eia3UEW;7A{2%qNuT*>q<{iv=p%{(D;=kI<%ZrVT
z4eOzQVBr4k+lGdQ544L43$I+cvX`4%;q>YATTIN%at3Wz&5kja*VevLjPC32-z5_h
z7kA&wE1<Y0PSx+hgRj-qTNoLg+CHwyOnUZ=jh+3t?+X<z2ffLGI%UnqOzWt|WFtGC
z{e69XCemq*HyvvN8)=lHmG04V4-E{wUMo{a+JnTQxBVT3epU+XGBJsXD$z=|d1vli
zA`;7I(z(@MpNv#o=n}~79U2NG8cm(qZkP7@H6I6uv=+~f9c^u&?v?h_er_##*3wrM
zi<{Ee*qE7_>6qPAQ89)`PMkP_`jXx_vYqx0sz_;R>E!}%2S-P(w^s`%s&7$m_4V`f
z3n6{YO}G0LM}-f1Po}5yv$C?rDhLZHnut_4Gz@fi+bzyJ$oN(#YD-vkoTQgH!gVZ7
zLHr2*JjG>hvZ$!&_U+r*PE+3p;|E^~-L;cmy+??hTPv%ly*;9)pR4Bb6j%S*3loXP
zW-p?m%$u_6hI+e8LIj$fhO?c?^C#RCEbV&fH)m@N4-Ms9?NwwuZf9qwsrf|oz41g}
zRZdRM;^Ly%Y%+Dv`fRQ6M~@h`ZQJMZ`Sa&Tyaw{d#{FNP9dny0)@Bj4=fN6@jtYCs
zbMd-{19mvo7EU_Jj;^koo}Snqb(0<sH03F*Po27Nx}YVXTaP=jNs?1Lry(z|w7V3A
zE+{N4=Ss!P&!11Sd4z{I2Xd)D4heapFm?4c;}dfytP5M)N!~KiRO6b2GV!@D<<E``
z^<e`CajK3^)|=N<S4&ArQLI|!GTnMhzK=J3^^4ZLTliw6zIp7{x`4pICcMYo)No=#
z!U1k>J3dzrx-yBSEIdOww#q0?+hroasxiqtXQrz}pjk;--1Pfvl*%tLC!WYhDMowH
zX=-YYp4ulJA+~RyY*fYOO`A>yANn+7prN9oa_Q1@wfHTP_nAc|t6kldm6VtSEw)QY
zNC*kl4Xv&C_AQRTL?)|#*Dc-Cr%&74+bb%5vk__Dxv;-7+--4Y@41&>9v|*6kXTIC
zn-OSsPIX<F#rfT5xM>|B<@K$90+p@EJVkyb1x4Rg;TgfrjEwu~9UUE07)Qv@+<Y}}
zsmCAE8HII+t(2PeVc{kXBUW06PZLTQ4I}@2eeOcY{?p@Ed8Xd75l!nFj}XI4P=aU2
zdp$ipM>!gTc@4gO`?hxN+Lxz8s{0#zoa_C3eHZ7uC43kK<QHA)hMpbKdX|`IuCL#P
zXG{(^FOdqh(A77OY+LwkhO?)Ja1*9~v<?joSz21U&9}3nV0Oe657{T(U02+?o{sLv
z=bb(mTutf@_=bjxUiwHm;?{kno_UbsMr)&8b4h8b>tvll{34}cRWeqy(9-p(W3KLj
zfq`M74p#a1x8lo6(wrz+f7*J}aB1$E>FMb=-)6#k%_V{c8i{t5ug;RrW7sYV4XWKs
zK+0=dn#-K6t6ZCkmCAiq3D@%HCyLI^sIb%rGt$t|><cLB<6w*|ZOV4S&g=Z}aHq8E
z!bHvdisDBD$M6!06!q80S9i>8@MX`Q8zN#abI6Cj=}#ao&er70`o4CW8rsUMzlX|o
zex%@X{{4sSGK+(6;^VmvA3i^m{LL!vJM)*jrKR!?P1ir1J(g`;JVc>(y6Q|=X{gW`
zK#EFHaZwSP$u1dTx5ccesHjFB{~#NzZxf>4>U=N847*{i?prGycHv4!Nc$*vWe6sg
zeeoi5*fZVXrywdOrtQ$VS;jZrym>K#b-{3??UQ%@4N>--g-Lb2ocHK`PJGtKf(N&U
ze>62Wx8wV+7Z4CYD?a^H??tWcKrweNleqJnteYy@E>*T&HzR1z;F<_blL_m7rpxTQ
z$DL!3yD41f6&TWGNLwp*Wbfh5yxV%Lp|3j~FH98Fir5V`Twg^c<-@||Ch@tnRNSU-
z)B95|+n(RNdGq7Pj|VU3>+0+8W@rES=~G=vSm*rq9XodL@>+j?ePy(AKk>b`k`kX~
z+sBM1$9oD#^L1JGadCOwy<7C<OQ@h_TX(qI0hw=iHgdGJwSE8oon2<O<p%BU(~m2w
ztNEQK2Nc9-j;qEHiF2hQ!wnhc&CgHV%lBbr-Mo3CFE()>D?{MrDu>C?$B*Aycgq)V
zkfxFGtt6tael?q%?~Mvy%ci*0icKwQ(^rWmCWQOuFxKUTwNaO%mwxe8Tv7Vw?s_d{
zWq!x;o`HdZH*W-Y$yr$KdEm9}aLlV$pGRXo$7XfQ$cNAT$jDt7l$Mx%=)7at+-)v|
zPEsh^K!l}(?I6nP{rmUPxy`@7j+TzEF9|~>$0D|D&)3t}-?#BL*UnGrm$96#UAuPn
z?Ad!;xKcvI>K6!UC1K`2$dwAi>g($Zd{~!4n&<OvJ<~(F_B0K$Jms95za=q$vE%bY
z+{KoUcQ!6fX5<Pv7CUZIHdB<y3Goh5&mCf!9h;k5m}+JfvSJq(Z<^sgqo1l8CfGTz
zqT*NB(b;J;<{GT`injE!cby4;@G1GOL7|%O-}?p!O%HRLf4eZKsh-_*B(;uHyDL35
zw%CNf`0T)|%&_!t<>ez)D%zj&^VJTtwLN=UGa+O~J#g$=#K_n3a_sh|TN~R3y=^1P
z4eMT$*4G!^Lk{-#g2Uh9X9;PV&#GPueJ8i2JySXr5>ZN=uJ#kVF%_gq)<nsp@jk~h
z)?94K3h<twapDhZK+f%SVBbC~>m!t{J&`q9PF@1Ec!~ti;$g}rZQE7$JKtHXn%gpO
zOovB%jQ<BB@wbN?w6Wv`(Wrm4=4Hv?&$c_+zD!O&C?@6th#)anSN8bvWBYLY;w!8D
zc%Hb8t*!X{k31nEq2fTUxhS{UDBM+vg<gfQu&^w3Jnc=|Y<u<|dM-5ps@HnOTV`DE
z(29+J#j;XWQ!64K{z}1`A*rYGLyADHGRb9@k&)9}(r_Wybs<RGHPf<PN<cusftTN`
z!M^3)wTb?kv6o<eEn7J17W(R|48mRbvB$_)uQTM^Ry+#qjNRlP6vVM>*GSk%XBg?~
zxwjVOe2RDMpDWMo#uG}Ph-5r}{$ZcZ7D+?C$D^a8nbzH5Vore>TX3uyvTlW8U?zZD
zM~}YGo@z4AkVNm<pP1zv7^u&;&7mGovXC3U*SuR}$+*Q&LA<WEcF)qY2Li+Ctj_a%
z`3Wsv1crnG^#(I@mt4UqjSCm-JBtFE7bi1n;%DmdZ&AR06yL1(c%A9i#@T)`xAAgm
zMgg<=vGApVqRmghV<Z-*+kxgmOF$O#vfRj9<XA+=?#mFE)*hK`AfK3+P|q-%n3}Rn
z&dJSPs*YEWjg55}GqYQ0wL9n<cFc{@kNgnT#e(a{$jC&VPHvc^bWTWRB|N7lkoE8Q
zNiHq=Q@eQ$O2^wG#Z6wBtCI+%ne1eiUU48=D+4t}H}~mqam@p9sM34(JYc2YvIU6b
z3g0%pk(ii$@yfB~hSdq0`-5IYM!MkWpFMj9J|IbX<2{dFk$=2;hFV(ZD<-^V&lB;m
z#uU7&K$CrY&fJiCite2%Rx(p<#jfgs?`g3wUg#EhGw=56^%fa2G&MaRXk=tGJL2Q!
zJW!kb?AR^&M?9?xZnNhsEPf<i%-h0w;f#jHKx^wWC3T{$DcEW5Vt=mq_}62B_v*P;
zFR~C${aA7P5MiZ>!gyU~w<gi{gtRoP@Kr;+MegE6BG)+s4sO+v$w}|Kcfa*sT}{j4
zFE{R(jSBe<REJabTVtc9iV8;%w|0((%o9&KK)A%*#aVA=k#)?%o0yro!u@O&*Ws)h
ziUzRQ9Y8fvW@mon(U$0^-s7%2#6X>@Us6<Bdf>o;K)Ds<<Tk>9LAX<m0Ln{E=63yI
zAthble->q7Vt4@%v}T)PGPad=O=Qc5?K3_y<KR~~PFf|jZqs?F*jCooT-F-(L0MT@
z2efkr+S_+FPmwN}Y^RU-Y|m8g(gN;&*%J`~bcu}|@+()b-k-RRk$(Uf8z5BHbsoh(
z3q856t}b`JlRG;rD>R5CC@k!7Qr^&c*tq)Y)vJ4!R=uA4hLwDUhe1?S)O9j7yl_nT
zzErypfJskJPu?xsAb)>$4h|}|bd$Q#Z*tt9K7Is+%Y6EDJJ8xbClVNNadtKtyDZ&_
z*FGXq6sGyRTGHeh^5ODTrhGNw&qz;K+q^;`;T7rY_5y)Uk3d;lztf4r%#!e<`;z+}
z@+0piS4LU=OU@XI^!8pCQT~~64I~cra4}j&{!{VF&6WksU`t}I^Y*!Yj_1yu1Bb_I
zsaQp|#lzEcq1$bd!<+-hW2QIRfVw=G(X5s2cvxIKCs*@5J9gQD0}1Krwh%P5U1vHO
z&9jnGnwrj%?r+L~>cK1DUI6sYSb~rO>l*R_K?lhFLG&KT#l*&5zI2Ii+iBDXln@WP
ziYSF3?U?xZ^Fz;3EGEmPSv_ywR6c)xFQ{H0WCbG4UL&CYzCQnn>AAVw>9%|3*%N_u
zJGi-rL(Fs5OF9G70kT_pE=~I^2|7<(pa|L6q$$VJtX=y(-83YkB)M-h1&^7`+T|-3
z_AqqYA>GfDgZ2CO@87v&$K+7sei_BfmoJ|@`8mzFMp#4y4{qDG4cNfh*_kuQ$ixIR
z4#mTl{k*bretv#Y%{qT=5IzGVqnP;%k&0YeS#MHP&-uOp)tjB3?wN4Z+oepS%AX8|
z0mQ2oI8c`=J(NEN3Xsoee$tl@4ZJ);I$YF2(f0*@00oLwiU|!3MGqexwaTQmRZkw+
zj0^ho&0=Qv-Me?`wd~ozQ*+GIwG#1U?YCEZeRs*dB@%H>va+)yo<F}T-1z>+>dq76
zjxLujT{1L$MYm(;&UTRF`1pA5>Rjg;D`-}1$A5DI-;@opH{%pSMBWVR$jTO>iht1`
z10u4rvchG_a9di$p%+f5Bx()z_xBGEH#ap6z1SS7f@6BO^zvy<{8?OLRaI3brK_zU
zR%NpD@SKUN=)L+DYR%~|QB}%|JPi6Jj{}}O(bUl3tQi>{P5EMp&7Q|{f&D#*Yan+W
z{|g2&$8iWcoGMNL^{-y-Vf*MZ)u^JbuCA#m20ql$(IK%o;uG#Vdqqm>rbbCcMMVs`
zt$J%<%Z-&&J6A1l{4x!@E-5*=d+ajYIn!-uI=GL=j@^)rOnEHL78@7m{Nw#<z+am_
zf7wW1dQpp(BPUPZW|u*K#hIBJ8_S(OofewOrsBumJ3ljqhe<-xe5K5>l-k<b=J_sx
z(RM6f5_qe4d3v-0?HRzcXJU3}$V@^a7ep986nA0$goK6;yxLr>by0_CMoHLSL|Cy!
zEF_an9s9nsI0$midL||fWo6r?g((9)y+-RYv8t*nsfdFRJNEDI?+nr|EiT?D>2d2;
zqFUNMC>40{4oBD?Zf<%>PK`GfeU;H9aZW=cv~hQ((FDNzIqaQ^iZr#s+v|76ZA*#C
zweBuu7O`dDwW}nUmt)_)zL5e}Qh)3W(ubA>z=pn_NhES`Ky(wWE6>!eFKMMBEioob
zzg&ZH|2h*hQ&VQ)tFL?mws}bvM_DoZ74lu}ITQIJEv*W0apnbOY@`We$~QofuV3jP
zgY2~CN~m8;VM2H_acCu}B$3HYQd>MC9PuYx$r;+JwEt_a;LN>2FMFJGfLuB`!Tp+_
z7*Qyn=t(vJ?asREOD2>)|G8<wvLvXBJ_%QHmvzU=d)_m1bBtd3tX4<aKB9f$gqiIc
z4gycN7x?gsl0@B7!P$*_c--;4M6GOLHn#TxMMT@dL)*L<`AsaePRA>2XIgbqh}cdJ
zsA_9#)9+VLuZ>t0kCN>?H<*E2@8#pO^!`A2B?pm;qzhB)E_4UJAY1-Y_FT1URa#nF
zdVrj)EU?oakEE>Nc}Sd{tMMp)_vzCo>>~7q{mO9<iY1ojtz+ve!OIIiegrCd@!|#U
zM4_j$T}-%$T|%L*u<QJEoZCqmnTLr3ITo#w@yd*JbY~P5cX%Wjoz?m(vmXmVc_I1m
zm2d2NA7uV0nrZVp)`N~RGcSORk(zb--23trAfSsEFK+Y7*WszPWg$OQM4(G@X}8V%
z`m|+*2g6FmbLS*xIyQD*fq-CboqGPs&6^Z6+xil-MvG8`OfTy~MjYK$b$(w!%A3ae
zN>rWMS;v`6gUQLsvZsqhs?;?X=gS~mYuYv1jCROma`>`W)zri)?TduS$Hm1Zua?~B
zQx(t!TBN0_x^?~fWRS?rj6b!t2O(x=W|L!MA|RdYGW|7)pb9S<7j%dw>gpjrK0fCo
z0-vlVyjyQ3MKi7qF*@B7H|;`_&NaFnz^j~`1EZbA=^XKcDcPt0C}o#HYDaAtJ=;a9
z+|d7fdwWCpP4C{nze#d>X2!HGB@%2WA|mf>#PSgapk@Nuc64`R!58;iE|<(`y64a#
z(VGMX?V(9S3^z(sqdaIkaDl@mNsS+8_lMZx`H+HO!OSbb^QzH1gS`>U5U>g*ZQ=`W
z*~(R`H0>r+KTPsZXlZG=NzlC^Qr#<dsm=b8S#B5#tsi$tQPG#K4HD#<HEW(cd4lR;
z-INfaY%+H_`t|GADJdzhUiH8tu#(Zyc`8q;oc-1DA)*c`bkDQ18_fdEi)~eb35~1c
z1_n$VwyY%;JI*>@3zx*~Nj0}2Ey({>s|I3XVn9rD+gYpQRL6#h!}|(*mgd}+%5)DE
zrathbJ9d*gIx*4i^(ZK2widVcmiCtSH;mH0&xFt802CD!w{WSkOB`mP21WD{9lb3Z
zsVID<{*r=vGM~d}$BBDeAloTWK78=N0*dF1N3whr)!MZiB=2wKefjdGlvbuF<Qmr`
zVq8#AO@)F)woz5g<Hy@nZ0RYC{K>ZK6oy@^|Av-ifNKV3$EBU)j9X}R(b4g3=h6yK
zx?Q_=DTqz@kMfC$H5&2_HRozmCR?<Ah&~t9gf;+4Vl>vl!2zC#cD7?$<CeU<Je7F0
zfCmpA1O!Zc+^7JiBGTKGZdz|U+_V6?{n?F)^T2^HVVfAOL<Jcchu+8_l6~T~U_<1Z
ze6?8}42$SIGkSOP{_8hxKo=RxU0RHbi*p*vjC%W4jdDFJYxu*5>+uC=qW9Y_hxPSX
zv2o>wDEVKCiX3M;gT_WjHR?3s8qGE`>oGNU+ze@Mxy59j5nWxaY;JB|>_ETUudukd
zxR9#{ovu*Vmt)5i%IZ*0&yUH;z_N$MynF-c_B-P*#7l?qo2GfOu&~Tc4u(M3Ja^6y
z`@>EZ?3TE%n@Dwh>ydZY-Dp;j-!gRsa~^bFZ)Z29#gPWlYjl>2gSFmtL`p4L&1di<
zZT*(PbUk9+{@4|Sce5fC-C^&8OeXUPU#qHM2RXX9Z6N`k3-lx8yWFq6%geh_Idf~?
z`H7HqS8qjB-R5Nn>`e~V5tM_6$H?J-QP2Y=jX$n4vE6lRcM(B+%W8%$IBAZ~Pt*5d
z8@aVyTMgh$&%#o=NXC<7Ikc5v5uqVUOM{~PZqQ5JcZGn+@4wSG(>deq6w>^JY+gt3
z5&6Q**h9+f14Dt=k1ouZ+B|A`Mb_|nstgJnq|@R03~mt-VqDypv;N8CWDV7iGRX*U
z&W?<X?A^Op+M8(&HMOYiKrKY%0&y~)Gt2LL%puh(XQnp!vW7MJvc=a?vTXA8#QXbi
z8r5I+{@xr9Yd+OP4SSD4<IS$UU#Z02^3j~7_>nC5&LZ1@y2!GOha8)$XLG`Z)o6w=
z4G**gz95{XaCaYEzkC97Zqyt@hbeI#Z+~TJZQ%W?jW+T+J$+pZjftu0;gAyfeUD1?
zBg$*5sy^u~zk)><jJdL+qQ`KjJl1RkYwmvWG9$xITKd+!eSNyAkJw}_4ZoO4ZPI>~
zgmE)fH#fJ4@*dd|6b2|opk7Oz+-}J(Y5%t7c#f?ge3h{LB>Yr+I*)a+Wq6p|!@kv%
zK9E~mOHHlsmA;b`akSQizj-=XZ5RFUFGEZ#<2$4xG^(*!l|=EW2J6Fz4{zLkDybwM
z5+o3t@=Px<irb^c1m##C7BOLnrc&Dp?@oj|QOvFq0@+7}4L-Gd#`5S<lDBlvcn>Eh
zH5FBbAs@w!qm*aQpO36EI=rpqdzx_o^~6tSDLy8~Dkla;2o!uTDL;Sz7on8R$(IXo
zvmzoQ0O@*fu{fSQ5Q+}jP>=KO>oY=M+_dSnX+3}JX0X@ya5VC0B`W(TXhnaxSH(iU
z{rqqzu9uSRiWMtD$3L2>Cz#|^DgN1vbylt*XzZHc^?qAPOT1ejbSN|~zlw`hAKnk-
z&4k!kzwqj+s>1>T^|m?L*_y8Ng&g6!1_pAz(EYmF+b?H^p}GL>L6(s^ew>ew@1!s6
zqb=N84Rv)_(mt>qyLln~+rPXa_Fhm%*^5`M^x^<Ji}nS?L`I%)ec<N@DPB=aE9~)O
zqpFX%%Dd%5?Q1mc3dN$MqtEgm^?h+Vguf(IsA8xoY4A>Cx<-R@Jxh$zzIw6y*O>JP
zjt_6X-_RX)ZLy6woD*``SQ+#NW`@RwjT_tBUaT-T9|mB4B5(Jj<tUrSzd1pNQE?FW
z)Q>l%&Rl=9Q3M^w4ULVBPoMTu6x9F1K%`30%KlzcQ`6ksY-M(b?h?8XtJ{3C=+QP9
zcN-+Xgo)Mn4c|cBIWUPUe!wgzf@KAvMYv1s@|k{#4E6;y9l%RfW#yMIO1<f?m977s
z1(@%Vmgqy}8y(#siS4m#n2&*aIA_ibu1ac|c&u_P`7+C=lZ>i><|izpXj-^mrLQ<R
zL9ypHNvR%HkXRTukeCaG$bd~B<m-D#|H~tIXT|mP>d`z#m3y+a5=|;?oGxW>sqi<S
zr9F6(q|(%L2u|HU8o#8mMO;K=4*pPz>=WYKw<g>pFRP3o4qcuZK^ymXYe8!fTNtm1
zRgRB|j+Qxj5~{F=v#@eh1pr=Vli#n7Df6pi*3?XKNX!77RiRWtG?;=o@aB<cF*IYP
zvu7{zhqSk~xlY7tH==Xl!e_);l!;B<XAyIRW-eQ}G+(wP*muY8elC58gzo1DKwK*>
zJ~+OWup(W-Vrc7|31MMj$TvB&eX-zqM=1}&Tb+5#2#AA=@Y;FZ`DEY@D8)}i?9$WI
z!zA1mLDv1~J{a;XP8UdcdwYw6@xmdtu&_{7ts`l(8#h|djCR8J?dZ_uV7~3`9mon?
zO7d#e(~QnbN=oYLc4#k-27zm`9XB-W0iVEaA6dUs>cz{KVM5mV6Y*$dBA`pBPMy-w
zXmDGaax2KscLkd&T3V+E@g`Wr&g{a43;3NU75(@6ddNNfKYm!$ht*c~my{J3he)`&
znwbrOq%zzh5L7G@kD}Ht`Lrr2De2CL&Dn0%*H4`R3vhLH9SzkfX1D73`mE^A#nifn
z@86A7zeVgmwYvglpQ*MZTmrOsO`KW8X01%CNW?Js`Kx6Na+Vh7c1nAHEGSTyZ?*Wg
zv7YHIeTey?U<f{r$@h4YBB&Wc<5q0ZEpwl+Xk+=15F+j}`|4~2Xf8krcz>dZ1mp3o
zXDJ$T9#W+kxR*^Z0*LGJFyQZBo(ldDtcHqT$4mNeTEpNGS%TCV@MP>`po%+(+y@+z
zT32o$JS`w$FhniDW*}mu3M|J?ESU9EgPFGd>`7mjd(!q>6z+`qjfy<4Eaeni^gF(y
ztf9-G51nb0uW4v$T;X0%Nq=Sq&-O<7?l7U2w$;<V`8?zrceWEd(FCC+HD{P>+uGU!
zbc?Kg=l(IvfZC|RXH(C{|I#9*{mGm;*C{n{t-4{=V9mO^C4a}~L*~k*0=e^}#YGF}
zZXaq%Uv&1^NYb{yG6p(~p)!Xy*wHP+fg5VFvTGf9mt!#+JIc&=n^TaIGw*D8xHi1g
z$v-TBHu+a(rsr6L?<TNax+Jj=6JZDU6o}<f<NrQY5uBnP2Of$}OPjE5zB|?ImKz&u
z%)@8Ow@uq=FpVSJc@&K5z7{EQL*cn-E%$8(NH0Wyd;fl8D3~BA)>`lnjQJk3j!vb)
zq(!1bIW{{xyK{AUdAY6e0j;cB-9wE!){q*dB9f!zCSG4bO@!DrGXhM=;xuq@X5^pL
zalfZZf=05&e1HnpQKziF{!1Sp+GkhQf9^ycYjRwzsdgvIvS8lsYpYo<ys>!ZCoBSb
zfFCk4rfkLra;nP955m9dCK}czU8LvM8lRZRet7e~RKz{wGqF|DJ}k@!FCFK8Y-??8
zY;Hb9Dt;!7Zzs^m;$FRaklNSPrLV2s+#TkW@a)+|=x0`~*gYLLby3`XBo^%*9cSa2
zc><lF=UMoD<GIiVw2{ll&+omJSISl6%$YOl>c;9(kbc|qy(Di#PmWA_`&M}OZmD?X
zTb`bE;sN`O)6~4AQf&v-GG9P8<K#RQQ4UR7dRJ*-{4zIXk5v+fXa@JqqVnoLM6xO)
zT=xCpCv3Ii-@JJP@F61N^y%(qt3udiX6NhDuhg7=%vV^h^Z*iBb#*mV)%mm<Ex);$
zpK@K%@MjR3G&R#BM~=wI+!^&Wz>UPsA{Fvuv|=v?R%SYZeCY7Z_o?L0LSr;|B5%MS
zqS<gI-3i7(h0MbJhyxRO32l>+)Eu#vHdMD%)z$0UeI(G8lgt{0Ba;#m5;8OEV)Tz4
zJGQLi{35lTAO2F^hzh%8Al6Z@S(AxtU|?Wy{P=M^`xozIjgyUgospqF^gKUbDnRzU
zwl=qnqMn|fiAfy0%yQq}1sh#LqWNrvRoZVcZnUyeDfVVZfJVk+jiYrZ(gOzhO=oN~
zGBS#NK(zfp&t^s*upNU*`X4?V`L!?m<muBS-tPYrs|5HVI!pRDlb#toW2^KNE(Aon
zj@;A6F(pFmhO3Rj`jCC^zI{ehLyZZ;e8pnWQr^g1Vc@h(Jo;1{G-7cIr5Gj>{2d2e
zUJ^E<+p&9hetH*-c*y+QJwBI|&`?o<>R91E{H6A36!b;YNha2S|8i@-RiZ3kR_ucU
z1GjA699hvz^5ahh@0fZY^HJz;cmc5s@A<?6$lai|YC?0y^;Z!Pqr3E1RKrSf==Qy;
z0cG3DahvmhMiD;QS)c{6u((M)pZ!hHRl`&?&z*}H*wcAyRUO<Mi0bnT3n=hfGpA|S
ztT`A`BJieyKoFp<1Ik{xawQyISBOVTGvP~nITUS8Ym?Y;Z9sM<Z~qZDp!?95Yn<+;
zM@3Ct*?U!z@`*e>LJJ-|e*%uV2J5mqE=&0^K28q{J3D&G&*#>8&_yYP=U8>#J+!qZ
z{R*20V8?#qr%y)S`|3^ACgFI$iikMYv=UyW`SrNhugBp<@alg-76m&!fiIrZwd+eT
zpewp8q|&;fJvEJ=<;e*RqF(@;gCMWZ%*+(}0DSm6D?!RW3>k=dDG8k%LY@lc!$*%U
zsHoWWd}YggTy>7^xTNF<sIML8iiMvX*t6%Pd~X;q^7&Zhs>;eeGGXWMYy=^8%+|^g
z%t!Y^fMnh$8wTFwLunQnIXOS=l=`dMTMy};L<TKF<%vN2A7E$qsYg09eK>g7h$P)P
z%(hU6=lF>eVxymT?hBB0opT-a3s*XSo*5_t*^1$;F>k%cO~f!_4hRuQ-Mew_rBQBh
zmJ29PpnlK*IzEh#UoBo*wU!OBu`tKJy`5LU>dOrqa@}&(;+x)BUdH2iL^&2O`lho2
z)uN@P1)9U$aIOTD%`m5-=!69RZC(!_K7@wMojY#@piK86{bS~jA3t!`yV%)v_4LF>
zK5p#n>@1Rl=7k)XBce7WEEh7Aw-6W<B;d9<j|@V+OO-<fbP^Kb$2;KqrjcxUW=MX^
z(yP<#tt@B?eG{|({{BH)j(bH#=O=2kX=!L0-&nSzyc|$4wbPrt-7iuy!$Kg83ng5*
zbyR3*>0l@%B+f)r2dZ1abta3$ON-{Tv_3dIM%6ooy4xU>Hbz;={EQ?8RD?@Kl#fO?
z`m!AEd-3>uh07<{(+&<os_}j=OZ3OUz82=^J7fx7rp;`xUbS~}D$ZrOAYV^PK>Wlu
zy={&fbysQ{$<d4GRabE$nR;`pnHNa9&$h!wCj6|T_DLxz--ecs-Z_Mx+2u|pUPH#_
z(bLxl?+hB$xtFJU%{lJimp$v3!Fl=cxu64@MP+3WLU+y4h;_EMKJ@qJgNAz4S9nU8
z)Uh+(*O8TqUFPwgV`(}z4JQwJ<}`v3U1i}*AE>yI07{{~mg9AZupmTpV^^sddFkiw
z5ad&Oy1H!JKHh0-yQFBaoS}Un0AmagDhm->5NLrlKo6wGu94=5#Dq#>&P263s3TNC
zd=;@iKwh$8;Mt1JuXOI+SmS=}uJN)?P@qEoxvb0$``y~gO3QiVguE!Zz|JC)a3EpT
zy0Sa$;H%ABwx|VcqNfiRwER#~Vv2*n9>Zx~;wE!pT(-pKmL(87V`3*BR>P@xKO<Y$
zMbNopUFPnBFhuAr<bJWJm);I>$rL`j76PgTCyfd^-<|@O#Kki9vQA2BYG-ij+FS2R
zpbRYV(va8j3JU+oTn9jSGQ;skFe3>8Ek}yK)`-@wVhHtjdS-c!4_zBq;oVj}Mf#0d
zB+uB<<M&frR{XY}SX%Ge;IG|d0g&+Tzw`!+)r9u7KLOSIOkCdo5={PkUYTP3e_q;=
z6n6gq>!n+MVZY+?So#ARwb*joo8d*`yfZQYYLOJKG~^SG`GHoMa3NXJ;d@opW+o;R
z{t(k&7;g<5T7;>J{b)xaaMMt}2!02#f!4w0>px+k_rCoia6nTGbe<mE<^?^twY62g
z?@NflFai^2!;q9C@!7^k)$QS8PSrIv8PZ~BW2=A(EhD=UG>PzS(L`O7vd1AO!gFbb
zU=HyOhmD^<z@^&?>j5wRRW-|g1XdpFh7HgCH*MMk^+2t9rdPpjp9hRd?v5yU%fsDY
zf_Hk5fFnFeO3FQZ_a>_iqPhl*CBmnGY<=I`TUpVfe$~C-iQi7YhCh<Q)#+u>M@Ok2
z{2Sz@5lcUO_yBZ=tOXAPQ-B~x#`AJRUteG7Oa>E1D5O~xCL!{2a<K^s)kbO9c#xbf
zGp!&b9P2Y+vWaH3-AsN20<}c13`&%lSpvHZ6bXpmRu_MH1|^6c6dndn;Dba!O1eU<
z0A~%5-4*moX`h2w(GB2O*k3^Ga=xz-AVjR~yXG0K<7OEMyRfr&Kna584K3A5@5KKG
z)&>(&<Ks&T3JR=B(swC?MRNJ9fmj15mXo99`vOtZ+S&`nPacGmzJ?90mG+&Nm&cjO
z;lPcI_8mRw9<j{%MW+|t-^Yb(Y*_@UAZ03t8i~spc@<cLfNHmHNt1%0o$$BsBQLTr
zJF$85X25ShDwJikiEqg9BW3g|U}0{GWB2ZuDkHX!P^vUl&-@cH(K9i{WxYj`9WO=6
zhKvEy%K*YmaCFX{+sMKa2D`r|+0n@E2_QXWb>SxoPoL@(`R|paghU*>q5E(4EXmV=
zJ&VBTW=RYMbm8bnW%Q&&QXMCZU|T^K6xv(hexDS~(7xD3VbKo--~bN~R--5ECy2-D
zSea-p%;(pwTNidnPZj}S5>NIK-{&D{-E|5?-@u?7QRvXu-{9Z2j=1IU5L0yiVL5cl
z!G96F+Vd5M5a!SojBtY9WGajry~D9lwl&B$psD_La+A3%;Z*hyuRd&N$L7%~u~#8n
zJpNRBI#CGbDYYc34}@FS=Y1+t-b~S78b|@Rp`rBnvG=Q4fyL)LI3ym12L=S_kz}{4
z$QdgrC`j`P<ban#St<5GF1G6DY8uL`(RSl1D>)Obq`Z+|muNQ}cJT7e(Q$O_z^I3x
zV}0o}T>6}!{E8foZ6NXr$UhN|H0fFnRI(SP({J7k7y*D*YpSMdG2E10SXj7nmBdQ&
zm7EEFalTNnRv%enR0*uJHZtnN-ZAaJYHJ&#6a%cgC$s%u$vxXt0~uf3aOhTW+u@w>
zAskJllJ$k6@hfR4Cw~vQfkV8!QKv)FVT(o5A~Ur}A_1hptX-2sH{5Q74WZofSap0}
z&FTze<&N82eREvc_k`5QNWF$PmchZnq>ZyNeOD>z9cAU@@OF4jG~Q`sI@R^^bEiLX
zLkla1C`lC3ExW-(YUTpZn;T0S%4w=IM}%EJkJ#1&Oe4zM)YODcjf7rszE1ISWNyzn
zK_)K4WtqfZm2Q;pQg={(YM&463ImpU@id}5Oo%EEQyHIaHj434A>_}gx9g1LI^7xA
z%Cx(dc3Bv=Ss$f^MuS>NcvsTe)y4ly{Mi3f{BS`X13}$+YgspNm;0j6E5t`CoECdI
zIdwS*0*8Ma1PRdidq%E(H-j-fM@}mWn)enW(&Pq!0_!q@d(L}}b%YyaX#IN%vTyJj
z5L^jNU#_{v{))jsmJno;S8l(1k>bA?3HSGqn>Ck73%>tCLwM(P*T)C0kPz;fj!p~Y
zjwYvJu}OfBq8o5@-aO1w6>3Iw>fj<b<?<vD+yl}q(75vdpoRPhawgo^TGR0EX+D<>
z*|PGuQ)7551O(nM%dOuN$B(Z%-j)?Z(mzutEZD*noo`r~?D|NohSg>KEG_Mv+d7!S
z*R>Me29gUHXi1&_SwcI>W#Cjz`B+n92b}@w_PMG=*Unep;R9!0`n0z53hZX^usW0U
z_{_h}>L@3Mi8_pCc86I<UbdyTEB~hiGIoHRB=U@VflFs#qyvB)GTJblHN1M3!x+{m
zbLW*4CqAL~H8wu^G+LKx;Ns%qRJk=x%>`*ZE$#&5nx>I}hwr|Pm9>oa`tmvuQ2FT%
z=oOMuXKWwowVl}{K<(Tlpk=as{8JdHlI<eN3?5q~kz@Ng?4c&}-jp8hotcplLSTUk
zR{QV$(@zh8nvU2I<b^Y5zCz()GX4BQ#_#Rhw;ct4v`ys$SYm%!6RLxtD=5$~3`jmc
z{de1UX8q~Lsix}*?pnUHTctJoZfSlRl-r6m)K|SO)or21Eqkm~1Y&NJ>zwIdf<qT_
zc-Z;7WRSY~_UPc{jt?-^WqdIp0vlc9`SOGbCo7+Tz}(Et6A3qTE@Ulzn1sF!T_4>c
zOB`+cS5ND#`kTCvunyb}<s8Kfdmo|i0QTsAbW()LO-)UaoKdDijr!+shuLZq^$g7r
z(|aE8o&vCE%jJ;}?-93TtIi_m(Qc!K9Khj=2;6mkc=YHIblwY98c90uhuxOupdW+j
zz<4V3gcwU=O{oS7u&N?<BYlqvj91FBo^+Tav2j^;8Wc{QqNbtQ3<X)2NzCzeTH1Nn
zD}Sj0fJ^CAz*$*8K2V`YqvDP_HZ(Q@i@((^^o5N8x#~~rqIeZ%5*!drg1A>@lsntE
zUz$0|sL|Fmo$F97fsidVNj=W}{{4GWWDjY=(3;@?t;uoLHZ_^qtXW4-?~gZMSa{bu
zbim`xVoVQ|blqr-9RN_^%2ClD_`C~TfRr(;K;+U4&~iC}x$L$NfY;O?h7?!C^?lIY
z^w)Yp`FdI~+s!3|+qz-Hh8+?^eSIlTVqSm&^N8wCj*L81V8iSODw8ye!|_PPx_E9z
zUj0)rTAayf9ORQCR$+cdQCr(Q(*z+Nt;C=pG5a4+)#7az5<UDl6trF&K6HL8%Es1;
z*!5`dMQ9kCHnB&2B8g`)=VRdx_(wwX+~Z+rWF!o8-hb~ojbZny?*r+#kFt;`Ow;8i
z-bXc63O7}OI^^X`kv!PAabti`0k9pS^snPd8kAx*w3D3@Vqk&)?r+^<a=!i{A&d+R
z44XHn8J0i))rY^}h?*Vyxr#plc>TQ>l_WF~?aZyLQU<dOW~wG9CxJzlFunAUy%%lT
z`}Xb6$lLRqe#iKOx|$kf@}S`0=r3M@Dk11{4<8<cBmxtx&@-Jm$+U6kdz>2kO3=L{
ziIy3gsHGOHAKBR0Ad$3(o&AL!hjfX)HC83ioby|?;EsQHv$zCL$cd+yZ3A<Q%Xs=P
zaz4RG$}^#e675HxH;@(A?LJ`p&dAhOedTIvLeDDk6FjdbV)xTI+1tZQm~zy*29XSJ
zlf}Xjol5rs(WgVKHm{%J5!2@w%W`dxPR(KgIxC(~7Yo2TQ$1a2n@ql3R(`f(7Ykc=
z>oSJ>?O{%oQ%+E)YcdSU&Qd%zuYjV<N8J)57j&SryE{=M(^qqZe7g<BG8?jM618kQ
zE+CK*8p>o#xjeX<;3oj4`y5^r56^=}M7O~?(U?en!Y|6*qQBjInb5ksq-U^eW;;$m
z5y8!h2ZlqI249_RK>&qjlV`52RZ8k)FCsKZvEEDiw5-)<w_gkl4=2_C?v9QuaF<Yf
z3S58p&EWb=(w3GZP^5s2VO%~64|hW-ViL>^ZPCNRLhjqUcSo!YTV6`R#hRS_^o0iY
z&hV(12Ux>vXzN{81Oe_M!uS#&bs(6oV4j2F@^O!g-&%ykP|HRjP^*1G`(&D$e@Xq5
zSpU^B(KnZgHNidPXlDD<&iK`2Ew%-jB*VjZ(;Jx=Zt$P|7rAZMy(?%NbTM*wqq)T6
z?Q|3BLl5cD@#iposNnWPJ>9P31QyQV-yXKVd_~6Wt99<~*{4bAf#oy7_y2JQ_}Wnq
zq#2gI0qHkQyy)C;fzUV*0l=T(9=vh?>-Uc`uR$})JSSig>(fUP6gGALZ==P(89c-B
z{~TmL0O|kzBt&e;|L-SpL;>*xe7#kyFyTjz4v8lYn<lp<m(1&<Ey|gl%nYv)z#8XD
zSU&2x&cgywlvyyq>+ViStrLYqdH3#Gj>F;hZFk^lNlQt=5qudP-3$I|Yy6*#bP;*%
zJZYShgQFWhK&l3+9s+VFjvt3Yqwqx72FS&rEDVN-$A0zJ;bAvq@nUasI<<8ayPF!A
z#Xv}f{LJ<-V82R7JmbMjAHlGn3`kvyqW$X<9>m5}_Z5c>NQz8!m4sxN)U~lAkbv~O
z=dD{vWjce!Vf=S#0+QZT!Y3rxw|eDc4(-Ag=xo2TepS6!G2s@c(Kag_P^tPm8fbma
zWvoO1<X+He(!|MW4n_=!zK(!R{*k*NT%@qovDq@cRumL;9<+Z*k6-jt6}5iaFsc<g
zJWN7Xy1+!TGDnWM&+Gg-IU6ALJ3II)CMLzj=7Yx??{Cd;7C}y>C`alH!XqOi3q6-c
zSeGmz`y&JW7^6*XZOB!DFm2wiyhqMuai$xSxO?^(g1#qQeffvcBeX9%Cgz(_+BPqJ
z%*z%%llblP)JN6q5_q;O2AGufba!^TjC`W^e*9AluubtIEoR&85B@?vv8?M-#hfM)
z?-0Y>1Zpy35~S_fF$!P>j$iy38N0{0`Hca~X$U24?L@`sjtv2_Ro}i{nt7LE^`{RL
zFp7i(_}2VHqT6Yeb)^XWQ;(277vSVcdnCX*H^hpIB7<U{HFA?(2KS8-@n6hp?2_3g
z=6Kc4E<^8Lpj`BSQqUyhr9MpErVH^3;2wzI(U;W`zhKy~!3w91;a0?NF%0%|fHm@Z
z)j1**gn+5+<m9uFiU=*r`6|IIWn?tYWE@-mVm|EBXu6U>O^slScFLS5_C-WFNwQH^
zRvxO)7)Ids!P3hu8#i7SX{~K+bnW<QT<BrwAmK|I35a7L&4UiY5;UB*&NC^a-+)0~
zF^{URuP^-gdZ@2&ia{AmYMnD^9RMEY3kREX-7u2oExcPDDYnGK#N6E6&?Mnu0E3^i
znZAkz>BoPo3|9+%cY!IQ?SZ!~s|Q0!>`79_M%6^t^rN3cO!1^cCKN{F`Nj8{;N{q$
z^z`&1Mze40Pm-$LYKj!pNr_t4$^?>;ii{bc+h$3Rn>QWNs$QlBVqy`mWjfZ5Ar^La
zc5q&K<WK^(2$<Abz=Ky!)fXH4!V5GXxX~M6Ck21LOD<4QZ4yH$u@EZ~5)fWfv$7gx
zU79WcJmK59Gtc23$iG<MeNwpdaJ?^D0|{F70(}cOjOwy^yw`bz1dFY0dT6hjST^Qi
zxr-C`1g09whl`sE1$;`s(*5h;DP0u{biy((9!@YD<bhJt0H15G3~9(@C~K?~S!)?z
zg!4OB2a;lshUGgtqeUy8#>H`ph^YI%fE?xI=qMbXnfz;PQh_uLguM2J(uO3HQp_N-
z%i!8!9<RKA0+$(Rm&CLs0&YU9m_Y$iFKu{G4Cf75Zj;P?#3v6kK3LJD?^>SYlnpz4
zF)}4(6gtM$@yhZqUNCs}E+A0uE*gBi*BLiUQu6wIOykQZCOcaZ9@Fcha2KCkW|_5@
zabyZ|a&wKtt{mZWrxX-27UY_dxJLjZ7xNZyAWuILJ}=%YV$-Jt_s!RrG%14mM#@yk
zf8V!vuR~vSlz$XZEGB6YTuqp=h4s{of{u_Wk?4e*0edI@r76bmO2Q@F0LN=I0~$+7
zNmLMV1nBUmYVqm7>ha3z0T^`&3J7R~(hlzhX)py$O8g_|7#F6M!2$IY@fcamL?Hjz
zc88;=xR^_ui<2{y@5(ng+6_oc)bo)u5Gd9pAaf%$G}k#1=1GTG2XY&T6JzPs#LxdV
zDX0}}qQf78k6ggGLMN5op3aQBg}N9avl8Dr`&Q(m?jagT!4AI-6_Tay7nN;TDRVmZ
z<@<6*Qk=9f?C2!5JMCq6_fO51IV*p6aE5VU6oil*X2-ACu7Y#8`e#!m*Fszedb391
zvo#ljavt!2o{!xV%%djooD?7RF8~{XefsWaqN9#CJD()CyB~dT!cTN%*#-o`{4?5M
zWw;_;`d5R$#Jt?#U6UBDj>c4JtXmN{u(ii>@=GZh;mFZRy<&(72*A6#bH@_Q&QpKq
z!iHdltp?c#W4H*N3PyJzI|YP7z2m>cHVVXh*DvE2>cHQ6M1s2X^2Fk({xW9xrAOc-
z1%91mm}qWYKvuB3%_^0+JfJCRfRpJ91Di?G%73vJ05OItX&U+>gpuqtKZip269P5p
z{#568&f!cZsatNntmw_+f-5K#BV<y`1M*+MYzKJkhK7=nRQBtGJ3_}vg9#WU?JikG
z0<k@pNg;eh1^s%FT4O|X0_&2wYTz%$Af}=>%w<wlMHxv$;NLb!14lJvx9}MnGvsSY
zR>!;3<5>G#V4)vxua~_2^OGy24|AM)w7vTcBvq1Vg3oRM<wuc(rYjX8BP%OxHxx<-
znEap2!g4s`uVK4HX|3bS35iTaH;k>rbVMwH<a3Uh2J>A}M3#EK)>iC~VEvxPq=8Jj
zOBh-oy@45^>(^JzBzI1JpKMMCZk_e5EEDWglo;4&rd?!_vP~t!`4O|Ag${<tiz<Hh
z%~)YXuW__9{n|^9A3XShv0>T&L<uqW_>Yg5pg$X}H0rpGk@1+MB#emax;g~w%fEiL
z7->6!4`;~MGOzRSn=L6RLCNYa3lCzy0tp-0r`L^l(Q-|ibFx!X4(-@+2_mO$4cu0Q
z86!B`UUe6Vq+k{SeKgW(bW+w=x5};lCd1&uBv7!=r}|BHefdwT6U}6d_(PUIs-`JR
zb?==!cPy{U+s#jp01n6naz2zpwsZ)SgMaHk5d5zEoEAxW`a691J6)fE$wv&s?cG~w
zb}W4Ys0oop7}j)`(2l&*BcDHSdv}eT<c${=+Sd5}J%M1=7^eO(Lxu9}xpSB6aIlDK
zZ|z=&;It1(kwcYKE8IYli@;MGcWY#HfucIQxNyleG%kr#A+c7R^3jA}oeLcHRYk7{
z9lUgY{`8kG^I<W_s4GuQ4c2o+#h2pK8K9E=p7xJ1O=BUoD0@s5q^73AR9D4vZw#w%
z)ME2Ezhug|VmS;f_oaa#v1{tq#p=dJF~koY!frgr(}~3Tp)WMCceYp+!e#a^SiO#k
za?P5D`|mRejrJ$z2C_%PK8aLREj1AQIfFkR^Fd~T<ah)3S#3<rnT?4EX0-BzU^aqo
zkw#=Wp{Lh*gI2ufRrf!pl%5Tc#V(3mp~MEQ;+U@4KJDAc?Tq~hD1k!{*CQqC{p4!u
z*3!~y|4jKQD_3t+5Iw7<bsz{}@K<YqoPv&nM3x(VEjHC~PE!**1-<qWJfyI&geoIU
zU_Gfp=_>pD84wHUL3~b!@7N-zdOB$|11@orrq4eb2GfKy@Gp8I>0=C_pAGO|tXd+;
zOou;i=OF3RF84%iKyc>BT;vo}>r4&>$L*#GIkg*5Ku^&_H1<O9k`D3q*enwC2>J)?
zWm0BNRl}QHZK7d2ZfqP2_T8!E)o+$!daUP`v<<<T(^m{L-gzqt-c1D7d*n<U;Kd{*
z@@b;x+pBveB-{YZ2k^;Ppm!P^=3$`GAtCDW^6Ny<H&9Az3PTh^1<z_|FflNEHUq80
z$3OjYt(j7t<P=BsTlA%WQrpe_u!cdE)1hEtE?#GGeug{i#|jx<g3bdsPG6V0k)?W~
zQ$58s9zxzMJMH^*10UC^lq;S~BF7H`H>u<vdJcHp>tuB<JGXn&`qmpYl+M+6Kl;9?
zkyx7f;WAU0t<cJ!bdAPDhn&&5grYC@wo{qX0-F=V&HnQ;J9k9#m08!=xHJ=|sD0{B
zZMBFiem?s)nOMntIDEI+ff#>lmV&d#^3Ij@y*qp0-elR$42p}fR~}z^Ty5iZJKgl0
ztdIe572!<T(`RIa3F>Xz@Z*okn_7XN){(gzIT%0K=i`(p{f=1H=U&`)G?QdW_ieRJ
zV&D7d(7ShAMmi|YvrMg@a_!_Hf2UWjH$u-rbYCk(Pr#Fx?5%FZs2*WBwN*#w9)5ni
z`km#fm()B-yBbJ6Wn%f22!u+sqgUvwXP|~Z4STjDkbTuT3WnMpIm2M!lUAhfmAnHw
zGKxHU?$@~53TgUS2nCx-?;dFJ^Oyhm`yajXtkVJ~JlsgHJ!9T9-VwkVvy$|lC!D#V
zObm3AI{43bLKj1ub$9&ZQ2yV4K|1)S;PL-@ssHg8IVD>Y+LC-}$4)>NClF*#$RAIT
I)VcnD0KSrg_5c6?

literal 0
HcmV?d00001

diff --git a/oxAuth/docs/Resource Owner Password Credentials Flow.png b/oxAuth/docs/Resource Owner Password Credentials Flow.png
new file mode 100644
index 0000000000000000000000000000000000000000..76d97e2d137618cead466a7ad94cde8dffb67c02
GIT binary patch
literal 12412
zcmchdcU)B2vbI}^B8npjhzckQNCrVvvLpeCk|pPih-3+hi7X&UMv{m`fhIRmM6zVb
zO3tatH1w_3nK{m!IrqEgpRfJRhG};1UVH7es-Ak^@>5cfK1M=Af<PdS$=s4qK_Kw%
zAP|RWh!4X%9w%d@;Kw0H73rIZoVK&G@IQn`a?%nAEbiYMRC+kPbL8GFEk^|6C^_!G
zLx`9-YIu|AfsDK)(GVf=snh2<G#$+l2zrE!gqW)9z~Zo{DuqVO_UdCiVp4V{lE=Pl
z7r6X=9*L7mUz8vX{$kOLze?|LI-bu&pUc-l!(9Hv?KtwF0t?<7=NtHFv|8Vs9L0NN
z$xZz#@JRBtxf<qxCgyh@r1&v*<?~z8i@mwUqY@Oh-}ZJg_j;RA8x&h>4~Camh?FS^
zU{s`sf}g+-pB6GWns~v19*qabXgWB2#=t>ziU^K8B5-)QbLjU|e>tC8B5t8Ti{EZ&
zd&?WUg-3Lpm!E%cclT{t8vETMwu={^kQ07AMMU)cP@kDH#dU`_WJV`u1})4&`Y`X`
zzkho>dTe&qZF|K~nZnx2>hR&iC&|e}&R(yzBwV;Rb6WJ8KAeAVW-pz<;|z)YPzkqb
z(<>p5&5sQYXI>`?c{pz_^f!diO*hdQX!M<-wIt=HCe_u|&B@78P{3aKp658-)~Dwo
z?`3U&jF3=^?%_klf_CA_)$gm8yfnTw-<Fo_+S5mt2y4>hUc0-yQ&LjKaB7!3+lq_V
zB?x)U%vJmB<#vsX9PG~L>X+U(t$lJtBUjJX-oDCfzl@%^?m3ygt?kCj%F5<urSoFU
z^XEj-bSvElsmBP#@7=rS?7TVGlj%|FH)Ot7o-EwAam`mIvAD+y34_{S#vUvu?k||j
z%gc*kR(yvO+{<GZh3<W;9x8QY=ZFz-v2$|b+doVFLX}1B)~#E{#^aTqdzILOy({Kz
zQCTbRQnC{hM~BN@j<Bs<3qB{%+uvX6xwm<+WQWR{@$25W<?AQo<f(9)j8^bnj}=U8
zQ*$$?UWG+F)9?~c)zs9~ix<QJ0XJ{nv>PsylqMjIi;0PO_Usv%@U|$&>gp=D785J0
zTuKM=V<kO3+TVWrje?@kvWxM$b=Ld${x4oo3%Rc+i9g2|V`gEovbS$<Y0)XRJNKO+
zP)$uuQc{wDfZ!4%qpU`+{b*&jDhnLhiEB$8rw=Ce4<z;6=6kctofpG)<5hW#KatK#
z!t?U-s;pmfUYn2^Kd@jE5vj__X{%71I<-;CfyPtKQ1#eaIz~+V(wXBJV^B~~!GXs8
z`}dWVL+ObFDA{2+E32#hWlov(a}$p~S5O8Rhqkn~F0M^BcgApVaHu5Jcigs`!|b48
z7E)`m+aXwHR@MSkrNa>IYm}!kHy76m{E?E1kB@I>cXusKp*pA1XehQvR#sL;MTLz+
zg_+{qxpQj)MMYP=y|H^+%kvM)zI^!-8A)lW?Ck6;E#0s*Tz==yoylX%L#17cu+A*#
zY^<&CFjKU)wk9)2Mn+0WOUq5td2Ji&=;*k(xIB2U{`4qSYAsyB+uK{2V$^LqzQ4dc
zc41|vBZaa&w*G)QGdGuiIf{~X?yfE+nNpGxn^wL=dRKHHOPGDt{^qm@cBejoDlPIw
z^4FoEEG1^P;EQXbCftEVAwo<{(n(5Ly5;J*eRA^1YcVqN>>M0zZEcZPNsk?~wY5c}
z4#>~8E-c09Yikd{l49c+D7GJkhr2CEL@E&+jH0pawnC<)j5kHFqSw~e-90@$QL2>=
z<5IKbK0-o5_~dyVzGLI#c!v+;i``OG6meP7(a?BJPi$Yg^R}uAn<^7d$)?HWFeYI+
zxj0zNsZ*kK;t33vPQdwg8S~dOS9gt7Rl7fjGRTwc>4duJ_8!028pB8FO}tiIwa?DZ
zo}HR%0^95{y{o%>WJH9Ts;UKYK=?_=<_9V&Dmp>ed(&<4etv$0zBL0DjC_2otk%mT
zC|E%d1QNLnYhea$bFui?TMJ8DJk62pu{@?tSy}~puHOm9*W_Mv*!Jg7Zm*6%ura7U
zeZ?$LJG<8kxpwizvC7Iy*))|C_-QJq&z)mGbwfaaT<Q(~gdU^k5DztJ=UtSZH}=4D
ze9zcsv{HzN=YDUN)?@lWS|Rtn%|+~{J+?QNg%&BYS$ZMBNlQ>PAdy`_K)}2uN?A$i
zWmFV1acxhgh8l~SmzNi8xx_k)y|3it<nSa1SH~OV9BU}0uUI~(rKLT6`t+qsmzWgd
zw$r_Lna-r>bBbIQIV@1&tgEGU-K-_*@#Dj@12%W=bnR};Hw2z$7#<<3_K96QCCSak
z#s*K`i&Z`)s(rJlu#lO8#4@Jtp;SqJKF{ULGA!$BYd0LHNDEMJ$YLI{%Pw&uk;u-o
znauu!MYeY<TvuU1dL5t>u`6|C$;@6mldmDnyy73K^2U}pj7um#aCWYAS=NKaYi0Fb
zFv)Ugm~B%!S|L4r>V|1A%a2w1#l&61D>f`F-=?3Z^kGBrx#;NVWag0)hr0g${;^vZ
zY^~V?uLcj792##3$<4|t6pE1%fCqVml=Ri~N84Nx3v&+wv0JjTH=O3Wz4!aP(^6Bf
zUAtDX-YGZgxit*)looOnL743C?_YJWky}$!gPv-Qz2Ri#?p{{k^C|dTxp70VhMt@0
zNQE0`73RL0S_JYO#JPjrzA6|5!v_MB^XJcdZ`aX{jg7%4w;-g$%DH>u3GQ;<m~lFO
z`w>Bhv5!dWzRKOXOqw7wh*Q`VGAzA)RAeN?SGTc`ev$!{^6@t|>Z$Yt{rqOdUF78C
zuI#WsM*8E6&4|NR{gN#H{J1Af-)j!tFs}(^RaIW6IaQ=~d|Vu+d~~1V;>8Kn)<}W6
z?y`00;%Jo!Gqc43W{0z4rM8)~D(=;*^)DT4moLw5E)I4IZZiaVg*1-X+t#-h`_y!c
zdt+7`AVh!tsyWzI*?BB+czD=W(b0mJhKlO7bPS2%ts12nUqWB8l#cZsuiDPVUU_$Q
zy0W|2o}OtuUTRWU>ODOhHNHe}3eAfwwXJtZ*jZJWNzRUrj!&`c_j%{*c73N6+DN;q
z>Dw?CT-AxZ35yvn7o8#Ri{t;mf!~=Rp`^C<CJ`&XSYFXgXu>WjoZ$8SkOA?A(ld%L
zMBE=0g$hu(4-x$OA$a58K|=AG$EJ;i#SDbM>xyuO?{&1bwKdFYEadoHuZ_&jO=pEu
z2t>8<{rq;b*#~8iMa<02tM-=4MfUpJJG;8Dm}wE%YmT+>>D?BE#NDv)aLCwt>gtR_
zaT7fn`setpR2>|+nMm_;e|wT%d<Y|BEE@0b5w|#;Z`wTDmF}`QF!}8p{kg#$-Eu2y
z>tdV!+Gs)qV#cG%!ang-Fr7#OM4`KP&rnd9=y)v-AWKS0Anh_SGTtBXd32BzPKbw*
z8IO*0-z%GfOChtevS8>@sh*GN@d*ePM^FN+tn&j%>o|J=r$_NSPR`EnRo`PU7|X7=
zS~};sxmV*|MwByD<KyGwuEQzPrkomn9@s0v{3EU@+1c{Dt3=aeuAdl)VM@I_sg=@4
z^m2AiQBVw_JhoCogxzOi=seduU_?hrNUqJpB!qnASeh<&Ssu|XclO*{EJl?YCl(Z-
z5BB$%6cYq3J5yl_?~^<-KPU~SN34sz+!1;V+XSf1)x%@!zNfwYGW@Qprsi<qW1gA#
zHae>MaDpw}S?0@}c#`^KQr!ryH+Tkbs4tv70w{=x9wooGG1nu^=KlDUP`@_3^BKbi
z`4!@>th{{CqU05`mX{>+b8~BGbXp&P0c>0`F|oC&$;nB;3ivhls%@C8Dof7@$^&u=
zU<!fQyNrxzh})0wh;Gm2s~<-oxbTH`uCL|i=WopSDJBXFadNg#NS~Psn2_0pU2i*F
zwgCwRcI?L&zd<TkQ(s(M#O<ja^fYV|TsVb{>9+9o0|1+T$vs0rhw$+5ih;NCu|S{)
z8~WG{SSWlWLq^vTd*`CIcaI|o{SQ_z=I)#maJK18mBB@zPzGr)?B3{^bkD1l(f6F3
zf&v3oSt8OE;=^SBDPfwm(p+C8$FCV2+=Cr2aDU>n%cv*6W#`3N?KeU9VV-!ZD&=Hl
zwP84tlJ$uP>rB2iUz#PStgNieT4N%jqqS63FGg(d?y^KcVk&h*Pc?=!VHLa1$)B<3
zqCQwp7lG7hVr~x8v7a=FSRgO9BB~bcP)xu?s02x&JEZA64|b-nU%wte#d)=@y@jf@
zq-3blbFj5lzKjVCH!~5jwKTk!h}}sfI)1jqYv0|~bsMq(L{e7HbHWc@t*tYkKYt!K
z=(*O&1WBT~rR5>Im0wp!$L2MZ2e51!G0SyiB5?0(%U9Vr+{c6XVeD~naj<LkWgKf@
zLF1kQ@IYIFP`T55Z))mAu@g;AO<r5&qX3D+m7W43A|jVBH(o@0ETguDhK5=k1*|7w
zYD~P^MS&?YGcy~zZOzTo%gf6hl4=ZQ=H_@V<8v{e0!*i*JV}HgrSRo~TBYleU*f_c
zgEupDIwCN%zmzWt$FkK2`}-S9@ev5up%(k?mG6**8KeTEAaxiUr|2RpQ7GLs6%^!|
zqf{KE$B!RukB3}Ofl+w2V+yqwC!1d{50_J&Ib&@vlBggj7vSfYk(oIN%mlHcFIQh*
zUHy{`)KN3WQ%oK(<A5miC=O1}5CCivl7T|Ya8(s0r4wh*o~58ry>o{l0=Cwlh^$xT
zrF-HDfXJ<Yxw*Ls0l`ew_pq-C@$qjdc1IM!o;iB_c#&pk7SuD9m3ku~#l>6xr&zDr
ze5EJ8X=k?tRSUk@H7`twY+9JQD|UaYJwYf_B?A`qg$oy?LTEi_zMQvyZrsU&P$VZa
zJq+tZ|Ks!1@bT|;&mqW)i;J_evPvogt)jQKAlFwaq#p%Jw6vUET5@)DyfX40B2bbN
z)N=vJn%delfJVa)q_y4GXF9sORcDbmlQi>9{1np3B|jjMJ+QR0)td#lGd`F2hlPc`
zdPOlF=I>9EaT+-6Zj~2`+5add8!;&<;6^gD|D#8b+);W-O0b53h!-FgTlv;&2i}Fb
z<hr&#7c&Y4SR|)@LToInkQ`iC;Kq#{ol+i7PQ~0lc$JrxNl8huL^Rz=SCEN)*E6@h
zz3t<J5IX@mp*>!pucyb<7Hi#`<#7N0N&N5gxmCxH9Fe(w`<084O6cq<Io5XcEd_;~
zckj5UNvSw=KDV{O6bl2j-n{v^@ZeL>86iQz3KYu2-QA}9LNQ1I2KQ#vrZfQHwY9Z1
zHC@qD@);ld`ZO{i1~j$C@<V9VI`IUGD6IlBQ!_KlQ>SF+KZi6$tg-vn7$AR>IuaKf
z8@qY|?Qa72-P6<asT>7c&cq~@p13PrF&CEl`}eX?=gG<fd*mLc6^u$q;K-g@Sg`3t
z1Rz(Uu6@(`?spqO&AcmTZ{`7WA)&1E!Kfa%T|(K$(o&h3g3&QIth2N8y5kg71>N1L
zO3bOpAeZj%?@Rs_-&SpM3uBo5p<agyRoHPVaJ^SbGHhmM2FOP?cX_mmj*?PcMdboY
zUQv;b-!2ZoVSXbaAt5O#$sILPQU+TXwz4&nx|pQ;PH$||5d<EA*i3G}USs)kr3dgZ
z?DZfBoPdD26>CiuZfHFKN?4Ong&ZMgY>DMxUMwDMYi&J+e;#;<%zIm0M`s9kn)m(&
zE|ERXv*<|9xRYMFJr=;t%}trPf<_M_t#L&kOumG~M_l#5!lQ)+*q07I3r{sp#M{fn
zWWwGH9gC~>wO@sWt&N9>FfuaUxN(E=(k1x>!Tte0L3G`BG;D0@SGxy=#t?3MdM1~a
zILvXm_mh2^6E95=L>iq=czbTn%Hu+h2`k$Fc42XGabcl^w6sVYW<lKg(8@X?BkjlI
zK96cgKoT(!g{aG&chB=EERlD44dsylt(tcwoIy?DddDMTeL5j1@C1A*S-lM>qP$K#
z8o{NsPVRwmPDL);tm!I1%5SLQ!)YsUHCHKDW^%|qUbS$t;TzJ!h-%T*s1lt1^6%{Q
zt6sw;v8u!f@o@ji9!{YlJ*9)wa3B);m_K>WgNuz!Et`i=5H``nA1OlotZ_Qe|1S23
zQ~Zn=iY1Al1XU~je;VW_C&)50*Ydiov(+<utY8~HQ*9`5L%-F|J}9r+69||t%*<?t
z9n{!3dt_;odvT}~jqKB#7Y|=}U@(?>4!1>!`Y^kapqM~eFC9qj06}oj`Z%5NP<y*Q
z5CQ}YTN|6g%oGcId)U965c+GM9`*J06@k!ykfR(dWn;6zKl%_&8nQoDA7GE#h;$Q$
zoy900Q+V%tEtUR52S5o$lVa5L;^J_BzokP**d;k$nq#_T@RYVlfunFb6$i&slC>3b
zp!qfDXt@jL)vLWD96IS~Y4smJcK7r^X}r8X+cn>p%L#ngM>A=`9MLp-uvxt6tPO?Y
z-xVLhr?UGP%+d&o6$L`mfKvH32|V31h=)I3w@J`wG%!|{?HUH%F5<c(>aP2%Y?G1t
z<_$fpOJ?SGZ{JF>Kz@KKiiCtj_V(?HA3_!m(kNk0C#R>I8=L+lvB_-U)W^QQ?CKXG
zK!GOldTV@f5oJ{Gf9%ZFiK!{QvIjCJo<Kd9smfwGySH5By}6*3Q3hN6#fulPH=Fwe
zTCKS)BTD_qnPg|%k|hHmEy0M3?1rt_DL!2)iZ!R@4UaqvkOd`wIHUaTM7ZMZ7)X;{
zU%sr=5YbU5ng%>K_Nt(CvF2uD>|p&xZHlKS*3#1Id@6*_``j{)hp5If4bWL<=ePF`
zyo`z2g$nJn{rvnqNHWIxZFz=u@cbck)6mdpYiV8fH@bT_7Q~AEy)CC3x)v4|kPKa1
zig6)Y9W)Y>r^%(IS`_v0&}U{W#<$N3x%2Yzskvt>F-Nj#C3nq2%(b<3a&)|t*|Vl_
zn}sJQ86x7POZ6qG$;q{?tspX(!jq+vbf|eu0P&uRQ;$LtbS5RxWO_{hmhVhY1_cKP
zgF1AcgTt=py;?G}>^wg|KPv@^GDWMnp^8z88>O$=P?&(r5=bIY%8FCegRbi8=GK4w
zMT;xbRD-ocac`~BNudm-g91ndAXZHohEhd0nETM&i$90Js~4@|t4e2r$(#5bIyLD5
z52^B@o1LAVib@zgF)Y!J4u{F62sbx3cNFL#BRxHQJUl8HstGroWCtX&)f*Zbi16`=
zAHPgU@LC!w&B@`g-pJ7^klG!?_UU_{J9#n;B#z~esTaDA)<%K^5ErMTtZc|d&7o8B
zGCm%F+!HG2Cr|L*CWFrK17_k1jrH}f?<DOac989`)2=Wu7()^97tKdo>_p4YyYGF>
zSUmC3j~rx4K)1*Am@%rVyn9cFc0-&d;-lzt>xZ?E2FR>uaUTh25fnxsFo{^xC*Pu3
zLHh$eiH!|1%Ujj4`FU8R5wep|`a>PWMtoCVz7>Qao-0=Z{QXm%Ah8E_{RX*u<LsG9
zR+yVl0WGXy1cZd@8X9MoH$iU+4GsOznL786Os(0R3~Ma-?DeqMubF<xKI3C!4{qoJ
zR#ZH8V-A$F;cqwkG7-5B6R>T&5XEf_04?*@l>0MdgSBljWt|bNkRu!!a5v)JvMG%0
z*NazRlJ|>gxA#vjfvpF1qYSwl$<tbsB{dao?HlH8XO$^pV`3)!ss;wMe+Y_@&wyF`
zhKJ*0Vypx;n6nxE$6)H?;^W)nt}~#J%Apr;+;E3twR0Zi%;!&^M!b6UA{mH7*ly?=
zQaihE9)v!C!^!cm%*?E;+p@Cx>H!X!Y*OO+P;Rxf+%BD@6gSi}%Ko`BVOm7Ch8#Nw
z)iTwiTQ>cZsVONV!^0V>A{c|^osE8MUjerJ>k`VKLWL<t7e21fi+a*6D2yj3CU)ow
z4=!Y1YQBJ;Cj(I`BO@b4D#+i@FZ4i0&hHyUk?hGEFdRceLzTBk5aB?24Gau?^5h9{
z2y7e>hRjV&K93SmNPZ|OxyHl8!@$5GD2SP83{PgBnwWU<^r@tjRE{>X$!Lnne{4F@
zduei#&%7-TRQp7)-Nw`l;YG-zqE8JCim_MOuUzRG9o64Gi2EUog%>2lbIQtM8!QcQ
zV@I`MfbXP&X!snbS_qC(!j(~=Lrf)caen9!M8AnHG+7<1hYbWP1?sM;Xnlw(4<BMc
zK!Z_%>SSbO#75YUab;iXmC_7M(a_YSrlqYktRr+IfFKsYc8~!ndt9N-S+-0!4@g8X
z=qqFwjJmdTN=Hd~dGn>tbI)u?1qS|(CF~h=+5thw;K5~P&ifLPkrMjy>RQv1pu_ZN
zE3XGhjZaLN7!PbU(0PN@@**fGVmjEv5n}3KbKVd2h${S!J#D101RjE`8w{R2fu~QO
z3cki+T{K-Z9TzVl;|&2^L0t3jgikuJRC;QvPU-!pN;r$irzW?e;vr^xb;27*C<eCx
zr+@zHgTZA(qF;Wj+=?SqcRY9Y>^1XhgI4TKaq(;?=cQppwFImJu^Bm*`h5&Sur9>*
z!-o&;LR&gcPEKZKQ{ZjP>><A7MlBMo*nIr-iIItkpO+Wv;sg=zgDyppON>9hcxCz_
z$a|kyS0oq#wM0Ak0e4(w_qDgH9Lqs6FOsQc+HweQQy3)@RbNTH_S<2EqV)ay`LEFN
zBHkkxr}1#k7PV?>sqTGY95!)%=Dv)F*!0nN1y1^x>4ih475tTdq1Kyay#GW-<@0-j
zsAHmu1q5F|{lRyCzt+EsRiE=#Z$w@-8gQ+<&HB9Qu>wi!`9R_%R2CpAnT{8N(ID))
z@~v@c(_vw#w18~U@C}ac(rtZ4-XK4GZ~zq%irQ-rX1=6w@LheleGg2O-x#EB$KQaz
zcH{(q_=hTYuUzUn4NNwmPU{uHO%MtyH+t_<8iz$jUIm>9!~h(D!;bg7P`-G{-rn9?
zYx^hZ;1Pf^_(uOv(#au{3$pwR>KqiO{XbF1*>&U}P-opG2*Nz*R}p&p<<6~jb-p7+
zfW{ABc@O-g9a>9EI6+r89x0#Tec<L+lv7b52w(wPYS&wN6&cW!z<g6uQUd)+RYgth
z6uc-XUPVQ@?(aHf-1`)Gx-+1xtPF#BcwMW%+{Ip0RMgF_v@jwuQUBh(JY?B~P<LNn
zv%u=+rXEyS&yJnJ7yI1Wih3{$$r4-!K*mmz<tpp}XqGU1ctJ%1mB{3L{FE9sf1?pE
zqe2{Wn!sPIDWp==tFIOb^>0q|PksGhOwM>air2D}De<Av$ooH?x9V+)Si0byRqdf{
z2#^xF@7}#bp@gnnaU3pldQ5L(YAQpu*-~fJA}B#hA^zIJI}6z)eD~-#zb()3HsQQo
zFDt7#fYXlVw2h4om!%<YE%UE=hR@09APpWnb}Tz93qoXecI)UU7R10C@f^Ioh47Hd
z%Rv)rb<G5O>*>vop&>SZBTGxm2M-Em)`Mw<U~nubb!G~=NVbmI2ie)#kQ#v)Ttyh2
z8UubhWPz;N@7}$P`C!wJljj1GOAKlrS65fVa)L}iP5rKK{uGJipGH|4p=Q=iyD&Fi
zsLZ^!zdr{#71D-ZGIRFm4=YPTnV0OTn;&utZn_yV<tOk%8@jsCP?9Gz+x6$yH#aw@
zx=nF&_xsk5BTMdD8*=+4s4`>wnJN5(gO8*0s5yDaKGUD!Ub%&<o7!*xbeme6w-)*f
z9`3Ax%=ANu`ghGPGt(OCag_`~r@2>!e%jf=At7YM#3%623kmJRAb?}8zSk=-3j%%l
zU)b|Hwr|6G%I_>Yw(tL{C#at1YaIKPdyZOtO@{(;1=kDk4-ACMv%uznL3~qx#~?u$
zvrCL?-~UQM+-M&IW(Ft#%kTVGdIdZR>gfwb-V$unI09k}XqgYg|0@AKroWvii~_0T
z{d*ROw_sId=2qTtT`>R`rZA?Uz|sDFUgS+aUf#3U?_UI|=ERdsjoeT5^`PA20FVIv
za~~kz$k>Cl!p4}A&u#n(3~IDV^TfT|!F>aE?9b{2-KW@|)knF#;CjG4c+{tV<N%!U
zhue9pPcj-+;uX^S=Goi+4nwXY`9SM`h#wc*mwI}8clY+>Sg#2PK>3whUM|4L*W+5I
zq>WoiphN%xgt}Oya41uxq@?ua=t5!TjrG#h)Rd9&TfZtK<T+I0V1?Aq?SpZG>mvJ{
zu}@7)EBe(dlWY<<KI@K`Py;etxpK#@v|dS*?Za0=Yq9X7I5Bp}v0WxtBU{^4c#zfK
z2rj6g5R6fe5x6RR7L8l5gNC6gO#aEQU%!6XlzIwoR4{ewyit)0b8sPKm(Q4l7Xt$W
z-QC^FDN;}>-oidh!&WAGZbl>10F9(WXpxcg03`q)GSR)Tj{(!J@bH{Gd6I>d6=b1L
zV1tH+p7*9wqNoSt`26`Zz!IQNIFq96Q=k&SD8Q3U^=zJYjD#`<%0*N~#Z*f)IV~+N
zn@0DU4i)wG_JWuOoC!h}ZVvSm!fghN<P`!zS}VxUx0&FWQd{T2+37TVR^2VpSE$%D
zPf${BE|o9GJg+snm&FH&8+fL`b=62;e-wrg7k4(`pJ=Fstl>Y<5VgHEH@%6Mc%(0d
zK>64=gHpBLrbDF1@6++mF06a{{m_E%ySThg{|ypl(5UP@fDD+E<HtZ2)X~+=ZcWo3
zYO3Hc1|tA!05G_&ZuUQ~o85o*s|yyB!v~>8W|?gCiBt;cg!w{?d!QO!<>dv=XzFSp
z6VeMPUo_POT__+RpfQ7=Ea1Zkkx6wBwQFHX=*}TXz@k(95-Uf^5YEqksw}yI(IBk=
zuq>FIfOr62q~ony#2qtCKlGT*<e#u~`SN9r9G&wt@VuYl(>CFgniBdZ@$b;#Nse+2
z9<5&56|P!AJX@eQP#K$<*>2W9=p4gvGKi1fYX!~cYlfa477ypF(PMotn|U1isyoV`
zxOnLrg4X|H5`P@=Aq3$Ag!9^JyOA3R8IJ8j8jvfaqf3n&jtgH9J`SHi_{94M1<5NY
z*jZStY-|X5A7IiGy<~6GlJ`NskB`vQ!!@T$^mMzUy*XrFUrG>yKJU=Rpt+USkHN@9
zM~MtLeMNuZ6AC<RN=IQr|Avn^$T8qdT}E>k4|;DuCHkRu`6S6u)GLbY7rwUq<@OZq
z@o-+ne=BSOZGrQ|^5@6eiGP=<01gdYJQIIcy8h6<0Nr4kstvd_+4`)I5WjuDAs{dA
ze5>)T(H*~Ip=oYD4GlV@uH!+h8aaZQK3{DOR&TEei6ET&wib8h1)$diG=gQ29g6Hn
z6Cxwc^4B9Y^q|Csx&sW}_wU|O3pi&j4snCFA|T)aC9GolD&%(1QcvK2hprF?>0k<c
zL#Vo;X`!HGZRLC2-Me=|(%MbAG%_**QRhm(n|HUxhh%Bf4~Ae)X)sfOVFi1%zP=vZ
zG0NiB=H@HZq%09EY-}y<?aQn4i*@}AeRmo~#ipbIx4Fn>z=)v4|BmY>0+qogVFy`U
z?BU@78Y<*EDDI$XV(@DZ*gcf&+7okg?)$qN>2Ac@+0K9lWXCM4-X4Wwu`>b0rM7qh
zrb`@(@1@2)n@$O>wzPv=4DUf#0w`eWa&pbMW)VAZ7eHhkjlyOKdQJ817065x83Srp
zGe8dxygn4E%I@Kdt*oziTkv+ygM3t0b^{$z3|&UneH>u_G&fJyf<E-_9Wwyxw{Hdk
zm;Pb|sxvb)6CXc*oP^|kM#cwqqgYi*068P0WH*|a*x0>R{!z^=?KFToHAx8xXusI~
zk|aKL=2smmV`YD9R0LdQb@fQ8l*_*=MuqE86!vbKeTZj?n5%w-2Ueu8u&@f3{N`mf
z6Jtm8CZ~2G^Mwnw4GrdC{iFOwKuhCnPm6hi<4UMTz)c9{m<RXvcZ<fnf<L{}S(J9e
zrYSw2%$(f!`7cbi54{=!%X<*B^&hT2MW%tQ1WFK)S?A#H?k<QqQCVG`ony<(oc?11
z%N18(#2I;inkbpkuL_aKoxQ!$DsTPtuBXqQK~Kj67nkzV($mZR6(1!O6+;|u4Gs)Y
zkVrZ@7BKq*$U&4-DZQBli%+xc!E9%m9J@Muc6faJa7V`nXrKbaCfpy4m?H2Ulqql_
zo0{5nbxcy30uK*w!yQ%VXi0Yep3QQrkpS?Tp<$9jx`6jV1z5+~cZ*xLV2W%V(KKn|
z)^>KlgNy>)U?b(hntdG^3Hec7U0wTV=xU<>AC}PkWJck+mm`Vt;dlCr3mQeaEg*XN
z44?kOZ?Qi(dT<pc6Y>+RgN%zTEV40fyhYHy1|<i{<2)D@6df|*pY^@>oj?hN$6pa6
z14QQh-~m*grh0k_db#j&`PGCqKQAw919}`R!b67+J*H1hPfrwZQ8;+o^qkJi738ht
z<O>06a`QGrB^`Bjb%TR<WyJz7F)?YVs#23a1M3fbC=Csb#A^;0&Y!R8=$NabJ>yZ(
z+h*Dv3275n8@!-b!rQI8jyJah5+NA<$;me}dj^gV|LIi40v<3(e1hg6sJXkF?^p`Z
zhdhY-l%8*I9{$Ma3$9{gir$3I778jV?Aq(9Levzrdf>Vlz&6@Pi(t`ENWhNfh=2zj
zon@)=zsOdT*!ihTMd0dU+N<!TrN3hjY<8e$3koNsI+C6k5U1B!z;kyUN*&m6pqHek
zrshIt3q-%!+1abwM#lC<gO_cs8PW@jN@aqeuMx6b*X)BMM~;vM-F0wqfGWVy@H<qX
zwohiTm@YmmLwkj^MIS+xSAmMAbZv};WROa@{LoPaC@3-_r<wsm4z?RaVzRQjX4l<O
z4vnw%y@1GW?<@kRGz6Ui`Q=|K6erJR_yUNfD!Poaa&prx(Z=N;$1nzW?t}}*YTdod
z+A7w32Po$$j06--%FIZ9m~oJzcyd|)oz9Y8^5e9nkhaYcwxT;pN;;JfwGt*PT$U4%
zp4x*$sh_})GBGo23N02IWIdIm`N0UB+1|F`Mw{G<#F4nB=g*2?n|Dp9YG<POd$^TI
zpM^%YkollCpt7>l@T`K`h>y>y`<*h_Q7ZoQ`^}hzg7#Ew4Nx-4)0;_36B84kv3nu3
zLRJ;wP!^tH3U)_%!RdhQ&`kxdu%4bCh(<@q$gs2Ni7j%Q%cFEOG%-M8FJCHYY4vw>
zaC>340|QBS2F>81Iua;T0C9kj1!z}WSBLA{2qVIbiyVvtZ8_bDm+3(@o+`2(gf5Cp
z=8r%JXB6OMV<ROa8_hEmx8F1yQFwY2E*_eYK>O3n%QkaJ?7hmL@gXC_62=A1T{?LN
zVw##?!Lr-?(vq8=&cw!M1B#%^N&Ax*tfLcmnx>d?$f6S$>s~3Q)xSMn($bzlMB?#D
zR~G@iK{v*44N4D9&?iV&+P~n~@gF#*&F0oEo1JZ@vN7Ie!3#PpYA8uYAZ;(=R;=7;
zVgags<m}rTgD+M{C?udk6|S^4VY$rEzjtC|N>w;iBq`nb>S<;|QA8sKx=oCIXiQw*
z<Kflcspb@fUhGqrbU3NWq7-~ah;ky^-|%j7<A-h@!r_#98x<|>(zkCQJj;vXnwqQW
z+jl^SR#H`+n4g!^{P9-x9VI2vHljD}cmy`zicttcsnII9Seetj@ZLg!K6bYcOdF=}
zc+||dPVV{u&=DeX(1(7=U5yyAg){tiu(C!#832oY5qgJml{7VH434no9cCr%J!L~m
zF>~y9E~^roham!VM90U2Z$iSceTbCeu*>}=)*R5A5MaZ=*uH)Hb^?Szh}n0G?S3OS
zU}o~}tQQIBJ1mAv@c?L-uz2(boa24>kAUp*5_<^OmW}%XbVFK#S%!{g271Jb5~hgC
zXL!TYD<AHx|FF$?4BelGqsFHez_WEv1oZ_RAePG>Kr{O~9d49Ici!qiU(V3mqdvBR
zsO%8Byy!&&E+xW42!l7SxBtpg|JV>to&1Ms3HluZ@r(p+?T64+eWmtyyA!^L7|#@J
z&_6iw@7?4-y-3$yTq8N8|F|=Np*4v+s|>aVFUFI8_})jhYT>ffEZYfyzPMZe$HBno
z{;`q$zdip)<NJ>TtTp&5;Nbr(-u-1L|F`oK0<lDrkGL}y`<x2l;|Li^1&N%S29N&-
DjF0|5

literal 0
HcmV?d00001

diff --git a/oxAuth/docs/oxAuth.vpp b/oxAuth/docs/oxAuth.vpp
new file mode 100644
index 0000000000000000000000000000000000000000..98a60606ad3169192858b16e05a2e2058cbb23a4
GIT binary patch
literal 537116
zcmbTc1#lcqvn^<`#mrzaGc!vTGo!`K%oa1tVrFJ$MvIxzVrJHk{M~)AdpGX)zqd0J
zk<&d@Sv99mpUkXkIY|&ulrLWa?`Q)?fiM4$7X{$Ep_!hEy`B}FfPtf#vzenCzVJUM
z7<3s}>8zbBEp-`K7-*fX3^Nq9ZPMsbykxvZeica{Qwrq(Dacl&8bvNxrU;^#(Zxbr
zS3|MZWx#WubzQ9RixQq0aoe`szp)>zjZL!Us(7<>wgw+?h2~X_6%`!{*wTpbjtso-
zsCGRN60eKZ{Gsq(ytteCGqAjR_vU@^_LZ=Jd_Q7HS-b}1y%i<GA`l`fm{y1l2NU~o
z+w@D4hNDnZ*r0xFY#gs#Wl28+4rv?`&0cbBBynIQ?iyL@S#o8nkfNE@^NN-yc7&>o
zn<?gzn<M_svThh(|M&P9Ym#Xx+aIO%#9!<=GOp2mVL!0O^DCBn6t}+w{(xr}{sC1w
zB9+hlkuVFKdwFL0+@c_`TJA`6{({TiHgq^vvI7l5mS-7nb_yds%_Hd)glpKDC4Rjk
zzhSqoVZ&TragcRf<@jqhu`hL@n3P^R&3i~32-wfIWeG-<^^O*?CFZ^rb3dh~A;%TB
zVhKB9%#3Gs;tR|8A|yp*;aJIhzO`HT1dDmEK*y9tr$wT*$2|GZC@Y0J)P_2PFdm_-
z=BpG;2(qWq#K$epjVb6#oA#~K_nOLOSks^8S5-zS88QcH+KK6QD><Od(foQY&6J_}
z+$B-LFUIMrhh5AQAsXEm4-#jiKwFzWU*seqzDk2i^Q{1V`BDh-1#tX75r*VH5e7gO
z`oCmRSe5DJNARN6)qBnljY9*1)F6@%CEX(V;mT~m)rg$5ZrqkT@OUwyBPaYVLfU=#
z?3BY~BIPPhxlYDw0cXl-tnx)~>03S)dhrPX)L@k%xTa0y54Q?NIdR9OuXqK1S|cX0
zB&(75A<j*#nH4fch^KN!r9aI|CSv}CjTbpViZ=^Bq~%b=3-Xs1U5n;UjU+T4=P$Bq
zRf)ITY&c9=N+~>Y1artuPd~O@rx}#SLCZlgVI+{y4+ujs%?$|q1DAxp#U)dFj-dFa
zbLy1P{*-qhLTI5y8apA$K~ahSh4;bDE(r9lW*LS0(=8`H@u|~CctVyWX>`R=aNSre
zn5=al{I`ZvuDG$0{A}vlU0T!xjRFXwCd|df;Mj`Q8>>r@@`!rJ^li+0`wvmhibjY;
z-Zz@w(bA4q>_{oet+j6w65XsMOX-XS)GfdJoO*nwPD-h?6spRMakck6T4dGD7@OPb
zm$@X^kSfy$^V^=^EhlNbP^QVG?~RUtsXXyBOLP@`vrU&w(DbWNo8VVE-mKf2u0DG8
zD$!kY(!uqliH_c(ZkhsgaTL}f-i<VRN<&qyAy1j({T|>y8BuT5S<(ey#K^xgg6uyr
zLdHgyftlkU0U5DgrAOdd)kQp<12)T^PyACYhOijv&+deXE$YF55n2->md`&Eu5r7`
zMO?toIwk2eWjd_B;lXr$soxoOJTgziz3Efh@3tdjKa_&ho{aWtd)2n-@yE{+Y_kT&
z>+r$-{8K-obG<KiF$lrv&=Y7*!tmi=r3WY!kvMwrn{h<Wm*BMwaGRCdv0LK}N3tBW
zV!3)z5KSS2OYqg~7;;>xY|ZpDR+XlCl${)ksjM7z<HIX=M^?(BXowob@D?^XQGBR*
zPXa8-s&mtU6iYzCW6G8zI_z)j-976~3$4cCGO;4H&`%NFY8px8T_>0nJSoH=^$y*6
zUo^&=&s3fu!*k&>-@JA*BxqSO)2FN|V@$%nnHJjbK>&GnZQWK7bsW5?*t(cnVPwGZ
zm$u^5gu>Po7t+hbd-vHwLiyQ)ZE_mKyT@PqK|8EV-TY2oky{g$e1_it(~xOaByh5y
zhN7x5H~-sIUlT8u4~JzNUw4ajGtr3NbWO$gvO~7;p_kKx@(7w)gOzt4M6X#b4J*r&
z4kyTt{_Aeti-%@C_7uMItL}+CH!eKeiGrLcXZlYvbGPn$dUZVkHI1%scv!5e=RTq7
z22U`2Ti6Ve5I;X&!9MA-u6We_DImrFN*C_`L>F-x6#*%6VO<3gd1VnrC0%6&aeO9v
zMgWJ{|IrnBn-zKlZ@4btt9o(GKLKB~xnxBGOH*blY3TDi@Yz~ORitq^@Q5m&H(eT$
zp-!!0<LbP0J6}4vY?jx@?d4=;1|Qcx;!HXY?+@6cNXvqc-t;-ss?gx&n`Heqmf5F0
z`<$$DsavaXFa88e2u#1b4SB>tF_QS8Q@l-GabK5s+`@wUM?E0MhEhX`-D+)!>zHy5
z<)wNbAxCI(GU~ymt`DR1D|KTb+}yq7j9z2s?tv%lP(+L&CF_d-OIF^bfP*P4k_f8}
z*Ct63j1*8&&9l&>;0nbar3dZl^8bc5o#_-m=&sY^Iy?@AwxbACTG$sUR2#iINT~#q
z`&iTHm?AH#Ef<f($>$MO=91DE^BmiG68Hh%@iQV-gxwa}@7pZPO<_AFSXnf+j@~}J
zY~)H#?Bj6UL5Fz#8jaJK6po2e;3n<PQZvZnB~_?&(>qin_)3~Bso}z^>UluC=$=4z
zyr_L}<s)>ewRW3*K102Pn%VgbVePInNmKoqYKLaWi^I!9Y`us=cAs(GHmXlQ<&AN4
z6O2+%|4f`G+^a20=6&$?k^K8g>^TTl3b0Lorl3-XqBH$*hStztR?LUF`b24p$~ETc
zod}qX56~xjQu~*$=l)~(A^%V8Q8#h`Foo^Er7Huoq)xvGVh}#ll>%wh1tn<|r~gV<
zYBS(j0qKf9KFP0VM!aUN7w>e3bCQVQ?NO>h^u<f=cPNmP6iTXQL@mi!8HF0Ym)Wy+
zC~-CgOSgzFM=o4P@B8gDSDmICC(u|0Lx(|h5t$m;cTRLbx>B)`?ZbOJHGDHQy)u0F
z9ZlG5dSaQf6+sqq<Oudpszm$GJ~4&dKpdvpSYoD{1*iPwsH0q7YN`s!FQn+Y&%3`e
zzF}Fr<E>TUX&7c5Y>oxEQiU4(ffyB#0M(BjC3Hc(I&h>Zo03Y8qh$iaBLaJL^Ay3e
z=A{M@79K?>7$XGH^&MH|ycTMngRb3ZxH`K4aiaRD?1+=E5@W3jeM{#Fck;{dh2Eqi
zcDESsc21XYV=gW~$&e8|A}oLnWvP&p{!vN#78VbK0{Taxrbd+XjuNRPX1^8h1j4{v
z=!#OKW|N+-?MkXmA-493lhBRg*xsDEL<6t-B$pFs?}TL&b!=BT@2AHpa*~HU2Up<|
zKy&7JsUUjATNzn8IU2ca-*mp+AK$)LQm()i$C_U)x3V{Jdh^)|*3nYz)(=3s?trsf
z!mDz`CVU^bvem6?;r}497o0<W4Yir0#{KgC@;6G2Q_9`$0*F)lud?&MndmaJ{=*z;
zn^k%k9<r|7VKb0c!S_;@A}lQCu~dR(MrMIVZJ2o#gPcagVF?ABC7*93tG?JjlAeB~
zB8@yeic$TdZ4%(=NbSBkJ0O0pRj1D7qNtC1qD~qL-|Xv&SF$YH)5+f(x25M#LN~Et
z`x@lmWDufMt7cbIDJhC`xvOBGL&bP4=orew%zEDuJVewySNpBCYDt6Fu-?!`%CvA8
z3l4dpIMICcNM^csFp4yEAENT)eo83}wsM?=&9&8OG^vuPBkY*yyy21O^#{^SM{cSl
zP=<<zJbp{c<Ul-e;YZMTdD-%=Vmty-HC?|$Bu#RmWJ>L;!35M-BDS%oqSjtqjU!RQ
zukN0357Rrp_W1Ps$P7G_%ytN2CSr>?iQpK&L^Hdci(fQb6R|^KpFmVW$Q^N-Xd^RN
zsEz+fXMIzd0tRr#z6Cqd>e!0Vq2$zwYn;izLg<RLb*Jlxj?95NyU^UvAxN6Y;<T3e
zd|%KK!MUJCP=l^F>sH6MG8G_4Kk;!5<_TZbS47)|ipg<q(DA0mey+tUp>H0Gyu58)
zHs<#r8o3(p7Mi>^UH3(GwX1OsJ?=CDX=J(8+_{t``h+F2!9(CnErK5fcA{kvj~|&S
z>m2y62XvoW109M-v<9F|(Z5oL?>}jcik_vJA-=tlos*G+BmQTc(z7<i7t?bv1xOIf
zKfy{{cJ;Gj@)1cWl3t04C#9ihl%LK)`&HFYu!78ZMN(sX_M0J)9-u&jGTDwE8u^bm
z&ub3nEhc4SH_8gp52BCSAI+RF*2P=D7cXxRDR=3*WW6X;_;QpHaiR!zQB|)687_V9
z+LI*5`HM!9GF_^e_cVAU61@-I@SgTABIM(4+oLg3%(6v~7>Zg7Peil@u_74z*w*IG
z^riwRC<vIKoeG+nkAS0(Z?k1>y=7kfjdlEU4#Y$}k*mRBI5|D&4xXt*OJGgMF(XEi
ziVGS2QP~F8eu5j(zo0OwKgOAZa@e{3%KRc?#}v~-F_YXb-wUiJlj#2V(1)2c#S5Kg
z0(RL>54Url32m1fFw-bCRGet%$<5Ya+HF}91v^ttZLUHDeiWrG*ffF_GnMPAhq5e0
zN7(0#NM<cyYg)ST8lhT{eHV4B*zUFivn&eR$Cb)siMcG`GK@=a7xU|nS55jjmfe;o
zyYgY+FR~-7brIFTQGctQC^j>W&NRzB{N`{#Br`u3Zgb3^cSxJAwKL#o(B4wuEt(ck
zrMFDhYjQ^F6PP*IRPB9aLG++H2VZ@KW1?B%X@%8LsHw%z%A>~{e0dXS?{eU?%U%Vd
zQTCOt89+)Y+S9e}nz1@Mi~XR~6ew$%J_fQhA@cvPYRbP>IPxAqvEzTG*#E97G5@1V
z|0{cboC6l;x2how7Kv!KhUu5~Te9^)`mgMHI$UE9kUf*A{;%x0oy~nM@J3lqmUifp
z`vd3uW)eL7bjFrMm}hGE`tpVMg|t{}qJE#^YsuzG&P`o>6E^7E#sQ+RggiGxXR%}$
zE<ly&D=E3ZdR}llP7OcA)_^oC<zly%916A@=I6U4P*Gk1!y$`@BH8y2YsB^T!wrV&
zYZe~w%c+Jr0n%ri-jPv?hcn@03c`5TCzt+THzH*D*y1S2IHVN`pXGPj6`SwfE82Md
zXZgLmjSAd0w9(KArff*7km@sT2Bi0B%=@CEs<&F<NQ4K9%f0$?colN}t!6M@zHtJ@
zIfk~?pk%Z<ocqz6WW*!beaMMs+tjq;8xFKw31`t60z*S_A%2l~*Pr|^;Jz(d<q$;i
z?r9-fVh-!YZu(MI<kopq_t3ZY8k6<2*-kg?1O=o{98Bp;i5{mO#gJ7s3me`|imcXs
zUpVW<?=;j*#whQhywD;i>+#a}s1$d4onCXkxvP4++WXj8ID=qiOT1cW9ve6X8Ee`P
znwbz|+<ZYv3|1wHO(475wp|={3w;mYjZmVy{OC}ubNKSO`!|YxX)*6z{*RKx^`9i^
zyOATlthf-q!hea9tiHLCfg?bUnEsI?d4L=tcmw2UzDOEt7?R@XM`rOT#ypf|eX)m-
zwLLLjWd=v#4}=ddbS?@jH_iOLiOw;XO&6DYJ6nc})!8=!-Y##l?;RIET2*)DAF$qe
z`2*i~;PVSzn5AHK?F=l+3?B-Rxpj|Vn5Cn*dNO8WEbj1`o^y~v_Y_?Yu<u?nwup=i
zB_#UOO0vQvg-l$H%&t?iy>cP)8zt#a1&#1KA=Q9My`E~u?JrU5=Ai2LF<}6CvoT{J
z2iw3LKy)l24a)bnBnuG@_f9Ci;9%5c`S%O68Qikyw~<n9)q<h7-1Iz;&v4Q8^8;pN
z4#X?f2d@rFYJg2$PwO)=@)bGe<_N*fs$%Ck$tnZ{gOLK{_h|h?h$E37I)pA2n<~7S
zbbk3Q<A$1Gxb3NrFUV_E-+CLM&^SY{6Cy{ebL=Fs#fw+KdG<}Bu&y7)TSC^mjHbxB
z*~GVy$za844n|`2csUPb$vc*<BoResuO|GuV_c6|Z}u7?Te%;r>|pbHe`Sqp6a&Al
z<|ua^Kvy$bNVgm3mn7YXGo*vsCC0<S8T8M1Y=KypGBt%-3xN$9b|1I2n6qfbqgW&R
zn6LFyR?M5{X}%Kyulo4AYGZaJwlN9d&A+eOpaOVfWn*Y$NoV6|YGm&~2Uw-~TTNNT
zNXz>3BLq#3RndFQghP^pCC&tde2dJjAh|bH!I)*}Mp7%O-|lL|_M-@m|82CN;&zbn
z*qv6fE|QcJ#-ht0p`I*ZDevr}cKxbuXzR>8?9qb_d57KWodU+3Ing1viLZQ>pR8v1
z7@Cc7bG&k;waOqpRtJv%n#d&&aU0(B^-iv>#8)yziBzq7bLqDOw@qQJuw`|zy=!2)
zB#Kd8Un%4Stl<9Db*IJJRm7-%fmPc4q?+lsrQO@9@m_rN&c-~?KP%(aN69iREP1Ws
z>fH9vkOBF*2{@9){w>&6viW=F+ZOy!D<2<tGY>^8O_&nzu|hGAq94$onLv-Qh3YE+
zoL~Ti|MQ|3^?!%&f2>hi{#G6ZG4ith^eBN@V^wO;`E;VmmgNy7!gAAktUoks(G|Xr
zoBt$qv~0fIEFd@(^Q;q}-P@>oNO#D(>Rm7X<z&EW(lU<VsI$1gRwFp6Q)$WfRW*|d
zV}lYQg-b?ql<KP1(KeAkdCM=}Q+i}N6vp*<QeQ5KKk+yApb?^1QNG^Z_PT3siGjKb
zsRVQ~M5jp$5TC8M_{PGygC9ptD)v;stEXbah-p3~@ef|<+GJPa!Csk~B6U42@h?)^
z2Q`%S6QYILO3Hsu=TJw<h#w-+m>{)I2;suTsAuZqCsuhMLbFW;_ngz!fWL4h+Dj?M
zVJnWWXo+17NTKt`pFBRe^K0vxuOj|=q#+fZO2D&Ed?nf&L#OrrQ@t5f-u1WI6HsS2
z!~<Y{^{=?o{de5|E#qSOo4OasX-f9dqkKx-QM_MB2GxlXE=*Zv-hAZ*tQV#oN3GcE
z9B~`N^QJUSJe(&2%-)~$3$9HgZl8#Q1>R<yQZ~1g=0O;fghL$OMg08t^dL^!5Z+#W
zqh=uLlI(KVAE3AXL1-LkNRJV{ti+uRygZ2*nL(r63dzZc&oTmfzfY_uYbr9$oYQ4M
zFe?9q*=;^{V?(v4tlM@Y0pArd2Y=I8thG8xV>OaxrehK#=u=QfqSAo+kP<5X7X09$
z_suE+x2c-CZVeYAEf(8uhP4&L^l+_gw^&O(qp-!1To$CD6t{tS?J=ZGlHYU$D%1>U
z?P9g3orEObR~1C5^6cU+yVTrb6N&Ol6Z~B%@|=C_1MxbHou*~c)HdfM(sU<Z8bz9G
z9{rR2KM~uO$pIID3i#j1Pxap~!v7RwSpKHGpWN^L<bIp30D$|01P+=*VqeK=YqOg}
zcw>7ja||`VtFofiepq9t`}VV?F<Z%WZ8%JNRi@kO&F`k=XjFZJ>p_mmP^Ulst=AMR
zxUQ<HCMgwUF(N@~;dNc^z&yoR5D0oTkqxE)Z8539@)VO?wkQnJ?RO^z`C$9Wa;3p?
z;j&X3*^lNVY+BFu0um6r8ByTkfSMIV$?XTti$;^w2dvOXY{?tY{TR7*nHoK}ZC%W-
zcYQw;&}CLdH%L;9Ql4@E#Aj@?bmX9)YAD*h#6Zf}S2}8L+tc#9BO=usJ0ifZ-%rV>
z2HAedxZ3$G(Fwy1TdXy|xho*;aQ=qCB(4hi7#oKNCi{VCPr1X?HklPO&i0A8hsP`j
zCIIovf2BR!e@EQj$WqVI%*Mgg%+^7dg`Q5x#@f-|#!}SM#zmKb{+~S>_P-I{D*6+B
zgrTgetlnEl9T-JYgFMmzvs`QA0D@4u!d9X=OGn4~62r|5)~}#~@ubohE-qakv)`(W
z&uv^em`#3@z27j0y~b*plia*$EudQf+kjOum!kXL2@M_|H<J|r`PPQOAdgA?2E!U`
zIlq6-Ty;pNnp_9&qw9zXo0fg2k+b>`g=!g`T2n%4wrM-^$dFkibRdCdLUmwu-4pjz
zd(qecU--RHt~Q_n`on97^{#|Qfp5c(6}~$da(Dm<729?DH-(QgE@zDaP=vl0F9kEK
zZ=;*(6CK(&#Swv1TIAHOgW;K<%-ElJ(qs5bo&eCY_*Xnx{txj4ELgKMe&$P7(bE<H
zGzYWjd<KT&JurpOG&GqIPJS4yqZk@>ifPG4)EDO4t;f7yNG7y$I3uvzZ@N6ZBqx)W
zJfLnySdOD9i)Eq04w;+Ok6t(^>*9W;hL*>it3o;nj!<+yVqhkeLz7jBFP5q#;gqhr
zfCrv5DaUpt>oK)qm2hZ9{f2aRWK%AW5pk9_20Y11hq3njeO05Z*Lolw{@ZMluF0mc
zODvHC6NJhY91#1f-fHk1tXXnBXA;ELIyj1ba4Nh%yU`z$6MDrav~I$M53;~Q0$VHW
zJdJ8e<tGr<k$l85oF{I=f0#)<i${C#ACYAJKSc6#HIDu7-l0{r?x!vfWZCcr?uqLf
zn$f&9eKk;)PdxgewjZwK5FG1_X;wda=)$IFt;m4zwdElFg$pDljPaRT=KJ|?JW@>U
zACh%7I_h~RV;U~sv4Nwd=QWrgpxP`(N*=9{n8~WGNo9!Yl_UdY`g-fwrE`;O@IxE@
zrqjHpgJu_xwR4u=BVkq0pj{41dpc;Kc9{)zYMEQ@O4M$)rQKc(&h(u#JsA0Je$eod
zeo5oAoQ-%U81I)kc=^KJ=J!h@XS*+-eEHenpxT8Ot((C4gDtR=%ytJ)#m65^RRs^p
z?+EBrkW!Ope)xdnsOxWHHebAVc?N*X@?WX>|L<1+yTN7^BmaqLV3v({;GS9MS8YwS
zRgvN{zZGk^LS<di#tprEZBeueMnI@r+GnM=CD_Y!xXDO6Vx;TMx+SbJdF6}@l2u28
zotrULURNpQSVc%)(6^G~le9dSkhu#zpvhtIRnAbCu9RqrF=fg8c1x?ibkj}?-Q>47
z+fFrp6#N)h+++h1+55xXg3#i%F3@|+1%yo9RC%>T?dn~qFRIf^Pql`~fd`^-9~Zbf
zC8JjR`y7i|!i5tpeD@lFprNS`>Kd+P7ae`vtu<fJYM%Hg>S=r(JQ&O&oOL6jT-bSk
zt|!cds0Vr?#ozx8SiJGhY8U^Jr2oG#W&689_5Z>Yz|x9}v6W9umpB8*j}=4j;fT%{
zYk$j#ezZY4MEUtb6Fj7+U96dnT@${_Od@+^>Wm)hWg1Nj(?qJ=SyimW<NDSjTKGS!
z>wBo$ah|#9AY&n`v82rJ0d^ZhRd%&O`w*dnGY{%)>BLy~h0J9529kt3e9}x&z!f!_
zmbbEKFhDcEv5yFr4ay9pM$^sOd%rebR_TA=cZahamxb)Mo;7KUDz=y*=R4HG`{{x$
zH%wyAYiza+*h>s{b2I>=)_?I)IOGI2x!0egTk`S=KK<&fC{DCtzE_v*$oDCrH6t3H
zpDg`%0i_4DaJK!g=L8%~^=yqC=-7o-8EjqMglPo;FL_5fT4!4aIzuBzJu^!OT30K}
zGcOAVY_^&6hZ`!TnIwl&l#4B1#n79?Bxj^Es?|`s7B6uMRs##w#QM1O)ha%Iwjf~;
zrb1$UV{#}+f;tX-EMYc0W-QpP@Q<gPzLANGoA9ySy4m2iQ-OvyCO$8R`}@b+^}hAR
zs?O)~jkheik4g0C1J&<CWJ$W-SJ$Jwyu2LjZ)cVVXRp`e16NO|o_BXg^H=jDuV?2I
zSF6EoU3|~m*ARD$yAaW*KAX62^=%IBw|aQ{t<NWGGf8a#C(+qbV_Pp(S(zOfS)NY=
zt95K#7Y9QZ8@fDef0PHb*S+~NKdz*QO!#oRI^1neCfP0cp0Bp8=Q}?}x<333U#`Q)
z9=;zqyp(NRHPzL@e~XgY^!Bp5zw$hgmc+^E;`4TJbM-WPI#a&nTiw0)G2RU2G5bKj
z&sdqg_c7W`=~#K+JgqT*GCw67^ol=YfTOD!GQ32(%%O@a;VIny17%<wJ%4F_@7mz0
zKI3&by4T3r?$v_SytIp?Q>m|YW(P}GH*~UPv?VkYz~+%_PxmtTK6VcpoV0|@=nDCW
z;N7@_jHPpa(t8?;r8Ayco=7Lz3a^bzvKo&AI6K3dW~o~lrEn$=a6|Tw8(~(DQhU0i
z<Km^vol7JS32-`~Z=9qOXB2=YMaQ2bsTP{wJA%<Q7P(#Op9}rLFsmstda+lYSDC`n
zsRXsUcZ97no>Ur3B3TbUFT!p#VQ<%}h*)Am(lMVr+$sRfv?rNIu@Ab_TDi!cZnspi
zt|PTi@^t=lzEgI^^EwsVMyNG#I^evH4V7sfh4xh|zm}^zf&gt;{<itGT-+hrM5iif
zaG%=h)nd*nvsor$uGLdsyP|W2@9V9qvPgwV43wqOP~{lI|3X#vu6%~<m_5p9?-jP~
z@i1ZUJJGk@@zQT^n*kL^v*<(`m*4}Qu8r>CWfohVr@>p9C1Br?_&s!+3EXL`@<Spk
zTWPf>`Aj#N8e(<Vl<^(&Rc7@n`OGIK8<}x+GI@)4c_uI-?s9Sqebsx|(xo4iWW{>O
z@}kdBvgs|B_yLpKU)Q3Iq^`puC0pq*O^P!>fmdAYTybo~Syl=w?xjActI<+f&;BB3
zj4|+VaGNfnJe&A1OseO>>cFruTAwjyt*8-Zm4Kk-VTvi`tl+n^iWE%T%UomlSy?hD
z@k0rS@>#s!9&g}`)pw)TtCFBS+eMOn<eBrTKSo>>q;Ml%P+fh_dd41%q+lan=01TX
zUY{=EI;o`2c^s{cU+C)AF_8WDcpKU+(T9lfTV!(_SM$`ZJZAu{touzpO9@&K`~Gi_
z9-N;Z&E1xxWRPDa!oU2!cTN3iu?t>8DiKwOTVSOxU%C~FTWk4I6xxT(<*5#nE#8aF
zWv))0Ee<#?RhCZ32LDZhMp6vq;9nSmG}lcC+9W1`JlC!NwTb-G?m)N@v53oouvzwr
z;gS{uMXV7@0FDCMw$q4<eX(2CzsLZ3MV_JwnEGKgU#;hYNy~wR6Rqt)0_=9gS5%T>
zUlA<p8h=uNMYWy|1X#yV5lHhN48f9!fFB(bBf>t%g=;z#0*sf7(3A|Y{4M>QNOQgV
z$W6m@8QH98HO&K5soAWf%L=3ta@gTUYlLXha@c1`;Yf4+`dCfFBA-*mTBHQb?W~*|
z`EyWa>*+|qV0M28i;dJw$O8;I9i?gcY13oPazR<>CpIhrrdV5F-VaL+We@EH@F&!W
z_s~8*?dxtsDAHWEv#1TgpTO?tSl#*rP0h)q#eoAt)^@S~AFB#2-_oC})Pro{sHv3?
zK-?k$U;&6*q-ttO#RnBFP*$aq3(zD>QcK7|cMI!H%d5fUi}Tyd()fh?GgFA2m-u!K
z582lrevf;BDW?Fc!vMk{Z%%U>CWjO|r$~SqCSy;qsgY@Zf)QsSewmYYSbGg3eqDQW
za==3*fg9m*Qp86kfgIs!=$e-f5CbqqaSyHw4ng*3Ajy|q&?R-jR`tZNxPZOPm0IfF
z>3o8gB01hAb>M0#H6>)UI#Yc>hnF#G>uCV(iW2K)<P`uX#+G-`rNQGo%vV?SF~rZA
zs+R*q*!AopNWlT)uvDvw#{b;QY!xqxiu2pc1a{$P(YumP4kLX?3F1_XKt>z+>ve20
z7gHJ-;N(eNI8R)_UN#4AaNI48d_Lw>v71#-UPg^NFBEW^hA-TN8Sr0A{+KXC0&Wl<
zr}!&QiO<nbW|Wv)CVvo;Q(r@dTQM^L@UVplKt?+W5MfS5A%2*<wm2ro1oXT?QX+1d
z1pSR!Fu-F5pa5W+sH`KO0G50{0aP_n86|^vzA}=q@pc{VGEuPm4rBt?Tm*PR>-upq
z{;6-hEIiubAmBQ>%~Oy|x5Jg$!|C#MIj^rsR;PnKxx=$L&GUBbrm9mz<x9He=BZBB
z318x=b<gwimvnL8Xtu)co4m3IuJg&$(_3?I_dDB%63a(_bKNDrtjSl88-DdZRdWk7
zwuN_;m)gPTglP>`=iU}NZBg|;-Ph7-_<ROuD9f6zl7d@xDOtdyTTmAq-nz?>>PF>8
zhR|YRdy<tnU8zbib<8{@v_2=3SzN*UB@XkQkB3-M4S3_q(l7gak2ot+ESU<8{Kg-i
z-o?ow8&umH2AP*Udv>VJt?Zl~uV<$_{xo4c#hEI+U>6zGxI=RJUAS54OQV??I9=;*
zw>u|3ylV{$w|U1RcTRV*N#8P;d>A(QUaOvi%N)97ct$Gnm!a2AtwA-Gnc)+D*{`!x
zFu@T9Lqtfr>d)<nlfuqb_G2|vB29ac%AesQ6CATRU0xsWobuhAm~Io2y@p#5aNW!{
zWp!|H`ZQ~vou}huP4K-uEZ1lXF0Vh?da`sqp6)HZpDf~DhG#X5!K-Ce*XQo;9yZ5H
z;<7PL*?Dd`t%a;{T0bfbMWRi6R4pWjB8UuyM{Oz%v0xD`=+~I<K^}#qkez<Dropr>
zZ&Y2I;5+fMI)+&IJtaL((li)Un;1M+T4ATK?NJsx9+y0iib6<foKS*k(<NVrhxQJn
zv^Rw;H;_WcuGC{Y*1@1**16dOVo9WnSe*sug*u&l{D^xA`_ZR}rl<Mm=m=|&G)h!y
zTtpD#aDx|{V1cFd+|Xn*y|Ny$t}>QmauZLtBlW|r!NKT*dyU8S{w=T1f2gb7^?Ln;
zj869~B+N$xJLiKtP^Pi%=AdtV<?SU&nG2HA&fj|1gB*U#7a>Fd;FVpsYPC6wmy3&|
ztyyLglJUbB(dD2i4}OU39)gdTmy^T8glq6>6OO|(+E)FP&x&gE4}r}M^coKF5k>-b
zx{xyctD9fX<pE@7M6xt4ys=dF-LWXQ>&Fv;KOql`LBxO%srS%IEsxd;nOsU=qM!Q&
z_dIc*F+>))r0)u|97{P_dsabLK~G%U7`!IcWc6Bd0nkJ;0>gHN^>5J-4>La-8C}Xe
zdq&E!(&u_s!3VdMavt)R^AQk3{D2|+O--R(3Ilrz+dSL+#qANdt*br8OILeTSMDou
zndqV{wA{3KBvM-kg&my<#PH0jq61$(G4ONz<=xWQ8lDAC7o{y&ziSN}gd}l-N7zbt
z*GGs$xNFc>f9}|4^Va0c0rb_QT&OhxZN7jeXm4$5zr@kmS&^yf7Bom-FU{h|w~o{O
zwAs+G>6Vx0<*~(0@0ZtsGO~$F&!@8+6S}O|>*FGuta4U9BhsuGn09^|$^cN{Sg8&4
zU^xogy32e6IpbfY-%MY==|)Lo1kXGP^GvZ=l$P!&FsdJUr9tzSS+ooX=ra8#-?$uX
z=4Kxig~x$^N%_HIFdCU(__CT<R{epAV=XPq!)gDt8Ow{<-C&+NNUmHadhRkOytU|R
zHSRyEq<_V=12LsyN9E|nWj0yqemhJQP0&q=v&6xfK}n<_0i91zR`8er#FlX!ey>es
zzMkrUKw<>T+}C0yvRM9@!m?@@d98f7rU(s!=m;j1QO;6`(bzdj>LHn!55D1igQ&QW
zzdQI95-JgerWY%uaghY|ZrRahL;%||ICV|DttLVka}8e*+!`SVge_#?q5vB-YtPaD
zE21ke`7~%IyhKRufykr{Dmsx80y>c+0=fY~)+4&%ceRM(Bt3@9jX)>rP<5IeCx%y1
znl_HdNfyz8VIwe;%n)si7hD|tqN*SmKmC})uVFnlkGdJQUsowiq#`a>8;~HULG|bp
znv-z799re=0!}-<?+@?FY%;spAD>2cb&Z1|WHVb(*_|_*F%C_(Kp0L21|F@~^##S|
z1ju1X(2ULO{MSx^*&w9dBV|i~cad3V>j#T6!e}C8J>zB{6Bw)6Ac1@|J>n6P&pIQ;
zMJAarvJ@Z&i<o_{C{E@F$<E&dS7r3^MXeJ1%PS3L5xV5r)^T1Bz#}J()q7INl=M9d
zak_(d%5ng%L*aIjyS9CtdI>Cx(g%w!R;8Dw)2j1M03VOFX|^J4)LkaHx7rV0Ue_zb
z`{SfVIye=&{v1>&T)6TnV;-uxhYK_u!CXifS&3r(z(im+C>8e#Ih7jQ8w(O(t^{Sq
zwRep_Yrc`1nq`!0cUbbAYoOTj^IkXwVZBvNxIj*+yUw7*^sl4HjG-5@Y(PrhffLkd
zvn$o~vQ7hmfhXSDo+}W9Auu<n84W0s&QDHP>gNo%pwu}uCF+Z^esnB6mc1%tvkxcL
zCk9e#QhFv;$`Wg1QC%GCrO8EYn>y(oDY`o6+<eJr?a3bxyRX;g2TxTWnO!X!H3B`$
z1xw4_^vX>eIo<vn9X}xi320ex`}KW%7^E+peA7TEw0&9WBlTfiDCqr7RJM@#Utk_6
z=<6ZWCu~u;PlNS-Gg=5k1nP}h$w;h^(eLM8T2Oi-g^*9{oOmJyek^|%56CsNGt9bR
z9|0K?DvI^R-CPup(bI^p<bLGh%v6#`Ff`#QWzVdA!@UAoRKY!)x_YY@iBG*9A)@LJ
zAq7R15J&WbDxg0g1ruG+X^@+vK^;P4j0b0ySW`MO8ttge*9+#&I;YZz$8s$V^T+3s
ztn9^7>Rfc1L%Esv5(&1d#x++E&3$1*YWVI)!#2TCnaFjJd<K1GuGYF8VRtB9O#{2R
zS`rFbj46w@|LWp8+gIrIGslu9Fzs1Gf|xfBjul~RZ2^2egA%`$b?S+31dmoP&1g+<
z$P=cX-^WyVek{WQ(T;96hpk8v6@5e>?Bc0OHWLimZSv!(imc88ryA7bsCv@3D4?P#
zt@7*-bOL??eEShT+8FMDvV9dm%1w`S2Mp42^sqAzr&=Xege>c_j;1)jzqV=%2a<90
zE7|=*3GA|y!<6ZBjg&XaG^a0zp@>b-DJi>EV^F)BfssYJf!MkJnVMp_==%}J$Hrzf
zi&qTYppH`o&63fegoM4&11_zni_J&=l<NM{vJ0`Dv;r=^6yrQL`=*?yp}GF1MWP^K
zdw9u92Ef_t<UMV+B`l})<#2cYr7nE8D|*eVl4}#MBTaYraT01=aW=K+c>&Q_+0+SZ
zS-|awxo@PLCnBZ}%$$ez);_<)kSonpjmEBe8ckpg4b3m>3nse=W{alxZgRCe-!e!3
z@dR;jh1a-JkEMEedg9`O%aEBw3GfwK)+vJ3m7ma0)fE(+32oj8o+Va(0kCFGQaU8e
zZLsb!sO~Wo%DaJNfLZ?TxFxfZIiTFVBfK}hf4z#&P@VjE7^%wuMBwf;SqqZe!lI>v
zsUpXd=1Y<2KLn<7P}?Qr;w7aKD+S$=z=^a?NU6!Nnd|Ec?2L^lvMPS1hA|el+n@)P
zk-AohKrD*l%;g_(3Otr85T^3=D482)C9UG3X9=*@yO#|mb|Ar36bf}w-}WB7m3S=0
z+KjLo>>9ORpmXU36BPh%&m0s=X-(X0By2jW^6tl?ZGOyoGjwtDados0;%M&RwCUg+
zjPF$>{amRW1*y+Y7%FJIKq{pza!&$ggO=x1^`+O5Hd}t|ZW@Hw)0WLG=4p~l4Z32H
z#(6tfjEjRf$D3kzt=wG&&%4Z*`vre0X)*l^!bfN*o>PBCKAbb^)xt;UwYx!K1{il!
zMw78bBnzjuvZ)6bHyo8!@G2~jtO$AZU@f~@V6C(Z!9jAM#|w9HK;`Ge`|xw=wRxNt
z_eot!ryuP0MF}U|nIyEabjMz_@M1-yRbye**5!juaM+r-MNI@Rhdu&xi|AsEha+r@
z*rH*Vc#@gD4{ZTVi%gQjvyMzOK->y02ZJN>T=EO1xMmbWS9|j%@4<0!!M)(X4{#fx
ziq$jvd!Fg$3xlO!zH|`L1a2V89`##I_lWK?aH?TP-jL`j<{RVkeeK#y!#5IIp_vtD
zlU{l|(a2A@_$2GO$-`#)gmODkh6zojV+@94%weGa-a;@9EhiQHrJn*`%F2c$x%Mkj
zLHBrXf;aT9@F~FogGWv1Unf(7f5M5<Yt@UrKY|F`I8c_yr}y*cI@TuTQM@~fv4bQc
zUz#<b*z6mW^lu;&sa^EsO7LTg3D*``kXuav3u71OKMed<>c@7x$y6mtJjz>_eiBgk
zj%x;6Nl&|<KMOpPEDVuaHc6ehpf3Mb4u>1P*eq3oaH4Db*mtbd&pF4-?BIH7-f_e}
zWH+2uaXR^u*60wV$AtJNHpEHZXj27{pU~$U{H(kR0q(LXTiEWbxW_zSEmgkv(rkcv
zuySJ)7v7esU?nRU?X1YXY*KRd`4gw=>T{s*@;d-3>t=zZs`(6zx_Ae1K7bNW{^43Q
z5g^PI+&1tzJs?zxWQ)xpRNTK@FIr@bsTsMe1>Kp7;fhnjZ^QRRA4$ITCDfXItEO*9
zwpa;r3G4UR>=FIhwYeyoJv+6CQldTt-%IyIDz^MrKw7?|XraYO<tOwT0cFK2<WeJ9
ze$rmCdeu@XAnF#SZPgtc72S&^A|gKlqOkD>Ng{#8PhrbgK;pxd#+6+M8Zl~-kf){1
zz*VuwmBuzwfEkD-UYRqdH;MQ}Z<e<kq*oJ)O}<gd-rfZrdw6vrDE2D#E^3h)r)t(=
zxX*cvOJ_G{D=r*PA|5eS;ZMw^^ijowQ@c0Ahwc4~=fUgFY2VX)6s}8@Y!#atT@-|g
zMf3vimuM&Xu!zY7%I^W6cbuI2MWV%9Q7R7N2CvXZ$%Kz^GwJsL3;X|NXuk)b2X<Ng
zHgh!?*OS~Xb(1V1-e<n5tcH^7yie-Q{%F_+VzHP3DY=x4JpG)ssej_N%ZY0k8Ty!G
zwXaa->Wb|xtSS)8$+N&^K_es*YySGRqtEU|ZV%k%mbfZnAZ{l>ojjJ`*oqubZyX;k
zpB5n|x3m`g(Pi<fI#*U7$1EP77mjlCt`Vrn1B>VO^HJy)%m8WkW&VjEDCXujg4cO)
zT=<=eBF2^h!AnC;ip(HXA8X8zJ-EmyoA5`*sCqP9^-J`8c(wMs#ymLc<=*fv{P#5$
z`R5m|&Ww5kg>XDf!`8H(z&~dmSt$Mn?Bu>wVxL9Nos3aehfoe}jw?^BrO~gENDRTp
zd65UO?O#MKx_t*oJOg1dP0{00&a2J|qre;QGtp64`n2<kmX~c8?Fwt+Y1I*oCxLU1
zT&d=Y493*1ZF#{tbdJ2C2%R#tHajCNunq7fQnFsf@l^4goo5$1_R;3nW5=Z;s(7!k
zxUxGpXq@J;>8n%kLAP_kQD}#c&MR@^G|zi6X01ojl7rH(4G0t@w#Z$R;uM``MZ9xs
zRH$Js1v`D1$G350Ko;XV*|`8kTkGGeQ}zN=4e;@xb=H#l-qQ~Ec(dZtke|wneL=<k
z`nH-wXms1+lLuc{=xRTZ%{IXKZQ#erYsfTD&{2W^d*|6+r~zTT<_l*h-R#T9Osb>N
zbyxnbJmaC`9C3$p^&1K91DbQa@Z!TPtF*-oS-cdub)busnGYl`J1g?cqs5`;e#jiQ
ziwA*wQxc)g2<Q^kFCDYt4q2S8KFtd8!6??eQyQ%q4Od3oz*eX#F`Cjw^uqayMBaw;
z-oC~q!U75+CCr?)4aIdf{ubCmszI_G<nLJb&3giihjVvlhPFq=BHuGRbHs~(5yi`e
zQjLEEJqj!~&pn;xlgw(|4iivyHW#;$WC|<c=86lCjN?S3>EA2ua7u2kUqsykvv?WE
zr%B(VQbYRWEA8-}kgEm0DsPg{8P9rwL3H_WDdk7-8r^Qcw~tIre^33D7tPF*CwrZ3
zaeMUa%;@bnmrEqOc}R3OI{p1PbDGR;isjkSo6BsZ9*xI-7>Y(A@CTB-^jA{E0#=7x
z^^j%7MGUW30ZyH4r_IAz<9IJH$=+`iUXg&#F<s}_UMrTZRa;x1K_+3kD1x{Bj^5GZ
zfU;$UOLc_zLhCwzmTU3uZLV!WKE6__W1~f){C+|?cakfK`{;JU$(!%Z&P@8*Fm7>L
z!EQ%AR9u>yilOD)PDse@01W{AiR(eBt)Slrz$IGPnr3r;gQ<a5)ow-^Xi4DV-9!VX
zlg+lCre*9*0^;#|q}&D^%HEu<xD0F(z@&W4*$PZR79|iL1SlSRXMUAK;q~t=liPGE
zKIfcs&d^>~E?y6q%CSZkMCGA#_uj2=W1MoJ0pS@U)0u1-t~f}AaIb6#fvj3djzkcd
z4A0!;enncCVadGMgXG>AK|WfC8Ht3%qI3A^fy#`R>bJTXbGQ^9ylHC42JyiG&AOup
z_QuQo>oiM}gM7)%e_rk#-?fq07*|z)R~u28Ex0<vKB(=fGm`84>-Gz)F;V~9>0#Pz
z<mg6Q<qIBfMdXxEX6XQf%yFaU#R}YL(iZ<$c>d0=pa4oT_Fn)I6t6tES?B;Nad+Y_
zmDzos4o>1eymoQ%;<8h9`Mkneb(&RC!t+P8P#@Sk5ZamN6E<WtZjt13>BgN8oRmm>
zVieN35EKQh%<oF^mx^8)hl;r1S;reoinu|U&Y#?}VbSTUtLUp%T*r1Q?aQ96^z+~B
z!lkq)tLSHZE@ycrcids2zZ2}$Z99NWl&U}8t44}iNKCWRqkhVP3rQ)7L)N*xMP3;1
z@j1VsFdT!L;Er9u-_B0zg5F%!MMtQ+Ro!Cq^dOe)a~_>tMRk|5Ym4{20fO8%7-7IB
zxb0YbtmjxSmV($e)P=?$vWcqP=c=MRK+jqbIpmSe3Emc<Zt8rjI?Lkj4vM*a-0h(v
zrq@h?-FN|1pkmL9Nh9vqM9|g|<;^v(lGYK_bs`Cc4|2%I-mMhjy$9^w8u8F%%q_Nr
z+VqF)7wW<2GOldd#lYsIYWB7DI(U0C1Aw9e8kr_=zouv=&>xPqd1lKZZ#WRS^r06L
zRfj#cmf$S$?u*6db|3;p!3ZjHLTlE#j{~PFgJhM{K^9+~dkdr83)cr)Mm)qLKZW#p
zLbj567CD$TM$oNBz9<BENePI@9J4QnIa++V)<Uto?~`~)D%c<yfz+~x!tLu|5c!hd
zU^Z@;aHKIglC*wc*s$p?uQ@2K{@}yez^s_#8dv0I_xLyk^oJX+7H1^Ot&0qH$MdM!
zt_!vQceLn&0VqO-lSj-))Q>h~G(Ab9T5h+g`73ub!N-lr<*#;pZO{9T`TCCM-aK6^
zZr=2(ZVVq6Lr(=>A17T0HY%7omC!ta){XllCY{mOU+@Kc{Sl0b0@Tx$<jN;MtA?NA
zL&XtAgsiA)S-JKLCVd?a5Sd@Ac{%#USute?{@9)gM3!9utL%LRVn|D5FeDPzUf2fQ
zK}*k$8Ufy-uHj94IYDGV%dstu&7=L8POuxK{d;lA3?f#7@=cplpLM@$NjBLO$w?@2
za%*^CmjN=R9}&D}XO`0|6murmn63(e?87_t;kxZ4B8g}4yOhYqg~{eddZyy<@pXTb
zO+HR;SD1%vZnvku#ebz;S*7$;NB2tm-7yz@Ypo1qK<1;B^677dEzumYMG+&6mok!F
zLC67SJlD6U@)H3R8_T#dK6AY9^1FuA?~gYrGPJnjT_^A{NTsYA=IUehP}=I*&wvO{
z^_{b{d*_RJx%X?0RmN>m(WbN}eWjr8iAh+!e=K%Y{Z9|L5f81te(voT>9$KlH|{nr
zZ@i5mg0Zt2C1sNO{fM(g_SxXI=C2!>IP=UJUlrMS!_R5uAh@r1By&sRftTaRz)gzg
z_0_CRe0wh1$9B5ngEn|@gju_SnrP`6ak}{IQ(d<^5+*Di%R4z*J-d3H_kQq<8g{H{
z%Cp(sKs4qQOAC@mW_o2JT=QbbYQOtcQwR}G+W$7RKlU3x9?TwrG*v+~t(E>h9vO%L
zjYja(Q)3jVa+BHEYwc&;eNMhJHUx>eoIqA2Lg5y8<o?$*M&epwODVD<KkNZ^jZJn=
z_Zwqxw-yH@BRBU9TpCJ{=IwKoz_)%SWx*eOSIb}JyDKc1@@zU{h8ZK%Wn{qC&dHj8
zVI>0IQ9L~yUF<Km-bQ159rb;q6F2Bw2RGsHLrF<PCPiG0C|oP;>l~f+AX_7UJO@y|
zmV=U(-Hiv_+p25XGBtaU=O*g}84b;K=mef@njUG!$f*|!B8QhH!=%A5)jiy>eJpcm
zSm(M-+25YKo95o+KxTS76bBw<hX{%)3B=1VPlHN3S~I6eX@N<zVoCGr=wx^;xe0IY
z{TX7j*}rL`k}>NakFjl9PmNL7Efj6%zo_nDBP3-xG)hZSDE$egeMLqiQH+z#*wGDD
zZpm0K?0P+a6>7DRL00s=u~@lU|BFiU@E0oAGcsfynu2pelH-C&NecNNfxS>>@`6Ub
zzed1Rei+5;fvIY&rRZ_#>ZW^ff7B;~VUd&erGKwq9LkHdZY5_<TTM@(bjUQdKr@pS
z{L>v<GN3G%-yFx(5@!|7qf?W4>czz^l#r2i>u^Lwrvy<T_`omxORi03Gs;Fl(CGF|
zinP+t!39)AW>Q9#J;cd>mbQ~OgkSzeEul?T$Vm?Pwt8HgLWe&<hfZ`QUQV4BF-=Vi
zOqdl@_(!diXUom$?#M{kQDV5}s6W2koFHTYD=rG9URt~Ym_Y8)=ah_6tfi?d{qT)i
z8#*<Q3J>UOEWOP|+cPy><PQHBa+8FGbGB-QFdG{~+~vnn(l?FZ?-*+?Zi4*mJi^&#
z@6~1elaa<qAh<|M5~kWZMpYqH<k-oc4*5svr@^f6?hd#!#CfEla*!LEb#`CwX+Y)(
zoCK)mnSSZ-x>jegMjEkVKny8DR_%$E9z;wZXs^!FQG-$M7{U^)&Xnljjo=r5QGh`9
zmcYOnr^hBZzZ0m{CKX#sAc!3RO#!fxlNFQGm~6<pZH8sNy&WvNp`%@<!E>sZSy|BZ
zf@BX;zSqkD!e$E4eyD>hB^}BVW%8V}`+g5lrRXk@wsO00F}i4NCoQIEU%}{T*SB)G
zLo~!d5`gTcBMlU-vQ%AHpd&pQE5{F)bgz>74@r|L*-Bo{!VI;V`he8TGVj_5>2?n7
z3ed|wcBUU91&)JOV6;ynF*1ezgwn9&)$sIiw7cE5Klspbjqkf!+H?cCDf4f7;X=og
z*3rfJ=t3PEYjC-#>}uEYc=$GPt1P&s?>{LTQY(l;LmMoOiKLE}R1~l1n<yQG)|7UA
z+H3wX5kK2>&}gSxfgoTi5rhc?O8XO>GUrg!N9;=wE9eFEkExWgTF4}uy5AauNzy=}
zk-(uFXQXjFYUfwB2hjWS?Chr>b>Q<--!D?)x=|Prf$gnc^&Xq%+unKjrY=>W8q&b#
zM7}CQ_0Slh62MReOd~vY3b?~A@IIplXdt*TFQZ0Dc7s=%z;7~XjrK?dVCb{BIxx4K
zgcW6P!^3Lrj8JOl(|4e#@hZ_NkQehJm14IG{_=PF33@=C<bqWt(p`&<+i?JHUEM1c
z@KZ~(Y@|b>JE%#)wj-s@A~zhRFdlemN(2gQ{(`s^qS0NkuDr3;I`JN|tQ(0ifK38G
zfyPzAqZpy3+u%s+T8$GCIExX2v<{s;xoR)R#nz^!*e${;8(bRXTf(3VH(Yi^$eMK(
zi7J%p?GBp^liM#S6l;P|TUwuU^G26n@1AMtf>ON#i~U2n1{D+muDb7rjNA^C2U>>+
zTxV6m=<=1&@<phU;hYmaA4Q;?>}#yWxe}=SmY0;P?was6Sy1t+prL|^im&y88fP;G
zdC&T<gD3_{=A7dSl|yg6A2(cjbLy%*Ve|`#;93=O0rJ`Jm4aU5z-<G^b;IVP*ti(9
z<$hMY3D*ly#>D-JX|x$zNX%U~L$&29hKPgDy~C_cl)dC)e1T+{W!=bhN;<OKRf0(d
zV#AcS97um>_y7gGy1}&@ID7(5>(|_Z-~CM&Fu%9TUal{Ym47Vy(1bhjb*DuU%92fO
z6oM@Sx-B)!erq3)fm-<#D}x}!v+Z|$-D&ija_id&$A@Z<HtT>!R=ZF*XxIRQ|BWn2
zj+RXJPoFoBK&KxaW0pF;gdwX?z~v8wA;1?ds2f0HQlF=XtlfwLg7?M6$ngL@VuWzK
zIypwyESMYpzU0Xtw=Z}g_FIAJU29y3Ab@QQ)o&Q#s$Fp2Kr$%=Obo<KZR=tEGfIcw
z)HVSV<qZ&-2m%{AsM_D=7v$~O+>S`QBn&7^ich^hX`CUCB%o!-^m|Ei<Idj$??m<K
z0&?EoWZe9B!at#&#KzDCVC`K$<?5drfZpO7X0$pD<>G!}z+a`TRH+!YP2GEtuf)>t
zJD8R?`*zI_sphsNj<oEojOJEO2Jh425c|F7l`Hz`T~0yPF4k%`cu^?=$f6-xu3g0!
zO)<>MrCF_uTMn3J-y!kjw2UzNZqGMacTb-F<J^FkEhmGn%u@45N8$C9eNKWB>6E_2
z)tOG<aT0_?_JHTKA)bFYw>1TP|0`j%-;)c*&FUEZ|3%tYfJM2jZ7U7Z-QC>{3P`7v
zba!`1NlQt0cb9YtNVn3RQX(x~|2w$LeZF)4^X+fA=3=hlWoA8V-A}Id-j7k0OzM{g
ze>xdiH2Rk)Iq9X>bjUD)I1Q@VH-Vj>*oIhnQ2`7g2Mv6mqWMIv@VwqV(#@}><?fnc
z$mPH{-S3lxu$)y6dKbYGP^K%{UtV2m_gfwm*&x7}doM_R(oY&`wRR>-2zg4?f(qxX
zu{WG_c-VNXVWk$Us1xQTCuQ9v=PK$JjLJPp%eIB(ZWJxv%b)_fzR-TR>Sz+UJwqo^
zt_6EaP8GH%)$W^AF@tW(qdaHd>@sGe6~5YQx?^ht6X3(g+<xx(THaVQ<)qpC)(WF8
zNijkhn6p8v27*&q_qPxl!<DiXM^V4bnKzm6u<bXkHC`RAJ>E$J;bW<!eBfWU7d6uF
z1NdJ6^UOtgimmn4UfP`)7#{j?`%RMVrxr+cZR2Tk0-apUS9Nd<SW>(DAJz8JT#Pa1
zuL?%3USqm1DiXfC0*P_RzC~7YnX8&^(V*PRK^tM(i<_@FxMQahs`#d*QsN*AI=Umf
zLLX<$sD-_?pDc`@70Ln=_@2xyCxZ9lj4<si(wm<=*BZi=^?%^xLp+(!230_oGza;<
z3X$7UTZAYxhSLDkjFfB%&v-(e^!&aq!0k)&irsoK?SdDj+a5{jXBmqmIhyu?ZUA_7
zORu?q41rVFsnJ<6Cw;<lmtjKE2FbO8I^3rwE5F&2Q#GX=E(k*0JuW9u=hGw%n`T1t
zd7jai<caka1B6n107h_IE5^g(g=_2c!XNV-c52TZ73e<}r^KDO)?B5<tuO3XexC<N
zm(nANwA!N+C2WWbzSzDoba7+kYwtG{aKAJx3gsWf_6+XRvwfXnx17&fQG9AlWzHZe
z6-~!YYB6*;u?IqJgeBcc67T!aL9&Z8Sy4i+c<83?kj;<$Mg1G~Cmq~fq>%<_OZurr
zOIYPyvku94r#xhQ*{~ELm`ZStHsx{`Ln5fdSWPSi{Tm4<FNT?b3GxYM(UoZb=x48-
zG3a9R#MaXZ9dl(TE~XJ}emgI2_JF%Yz90Oe_*qC&rgi3<=)N~6FR(!q3;bWEWsr@N
z0-Gwda)P5A<g<hc2qhW{```dzMXHzXZxP**VevnR5y$T@&XGpqpY+$am-grC-7C9%
zY@aW#vrsePThUeB0N?^EOOGXNeKp0ASw*LAwtY%jqpc2tSZyCWXzkl;k}3x<Dw^9C
znXtAj9Ypg<UMs(mvcq`!O~GQw(DY{07u9T|sBtimMU-%Fpi6g617rXg4ZYn~f+N|-
zTvviAU1u+MWTdX};MtqH#8$%itga33G~N4$FTBt}I#z!p7z!+5q)#Q$u(nq>KdRp*
zFC;c)R;zR1w<KiTQT9NsHII)=E!iIVZxMW8-hE*DkUpfIXGcf#7Ozku8%SVYI&TP^
zoAFP^t0}6}V;rhmQNdB>2fSS9_8^B1<Y`bXY@zQ{01Gbg?cvrjt@#?p@6ew+U@`!L
z8j;s)(l_LHk_Ba-cFjNLdRsa%Tz5(DJ54x6-CrtZCMs%rCz&S-Ne1ZQ!R9ib5L{>)
z#mG|52^WOQz}?C}ec*PVBDvn?!|Gk_jti8Mq4B8#Ga(O{J)p6A-b)|w6q!t!agyni
znl3gk)*_ZZdL9wZ?yG2-cRwVIS#<UAqtncov(d#ZAz4v{ZCs1gpEm;kv+Bn(BZ{3$
z0v|h4#RPJDwBuYmy_MwlyUKH<4tC_`DGI?f#t%XaVq@glDf@`rmjQ=*B*;Gql;?yU
zLSLM~kZa1wp-2ebeTf|J+)KU16jnc`h~IpJ8z?QuO=QEAM-sQfzT>E9G1P$UGC&sB
zk!^%pY&FA$;r=yByq+T-WRH~yGARe97Ox_Q$rBNjzQu}z*<4I@-JM`x_Yadsj_|V9
zfWXwBR4LNWMai^Yst^eK>hy&#Y<9h7vInHE^<nk0QA>Iq$frJuV)COt@_xOx^fcrg
zD-))U_+*K$^0r*W&QgHH$t{APWYT3!zNMZ68t}zUj@Wxv%YLNq&LE;kB2<6I7&EMI
zFXpY$hG7m%VB>Ha($PNcF#(mP1UkoUoebjzBHZtLbE|DI1_DAx{*V56BY4^DLozMV
zM?<%_q#nZ5n=06Bs0Kr4P0t5KVhQ-Jm_Nc8dg*^%5Kswt73FOtB52p;ku&Q2E!YCA
zFxSRO20Qz+;u=f!rd*%5(2E74>)rTK=PUz|>wY?V{OIt}mNB&Y^^P>~+dGsu9lJ#2
zUu8!=C%>MFV_ul1b$nPSM0vTjc|iIO55}M$^gH#LK@{jW>*)Jt%g!6ffaincseR!a
zyJDf;`bvX0V4fiFW0@sF_!2BwSR&7%Q#x84)7{9?0HlLN53CZ4r$tA86Xyx9q7hE-
z+N3yKaEg_rZs=rLK)a{Y-<&{>IN0uEQOg<Ny{!WH^>~^=OQhX<>q3P%S8U>Ns7w|;
zhhp5nj0b#EWTP%&(0ApDCRZ^Gkbh`YDhFMi-sd?H5T$$E8f9yg)fJ!@537=-kYsOp
z)<mRRb*0%_S<-r`7+_DQPdp0(b9;>hl8)!bcGN1~OVXhMT6{xZutIVYi|j;8=-)!D
zgY~R^BvA(6ewVKbDBT)<%yXl-v;ZCiNn4+B^Op8v<CEhi487mBdy>#e49>luff@mI
z3dEhCfWx*zmBdy1<-}<yx~47OB{1s=eyhm78b9N@7VsFTG4j498dUc<90fR}*B9ai
z0WbOPx;^7Qg=?0Mwq-me4Gm|kAq_)tNXF2&iW(||$%St=gcd5M7-vg&{cIf0#G%$t
zNr`JGif_OvY}Lf-x-Ww`e;?KK-a169Q4yj#gIJ9*Q61%_?*+>m!D72CBuWL;QdJXY
za4s2E!yIdcVa_Y;^1j@QBy-ENMtP{&gJ4`4URNm5=uTx;X6I<3&eP)~&r{2!+>S~e
z{**RexBKs3)+VSbb?}FE1Q%rmuQ#u1v<I(JTl(DZ&o94C-Hw%})7@;Z9n{pwU+9f4
zuJrPJb9KG9;+xbxM{vo-dlGTe>+L_JtCbSaG34&WDXeTc|NfwGbX0DXu>zb+XlsT3
z$>FWbkG0G0`_;ZaaVpb8`Xu}Z0o~hMpGNxg%z72*9Wm`1o$<J*(Z(;5<m9vsg`GE0
zd}C3vn=Q$Neftpn`ZBi?Gp9}7DGc~Uev)^w`{I`m;lcqFO(2O{J_UL11-?wE%HI8|
ze01!M+nB1`#R}YM>DQIBG@()UynFRTci$gBSrVo=k!~wajceV0AqaaM$T^MoI-MM7
zMTYMnjz%i=aSUvpck^Gnoh`3VAE)M)0yhPuZw#datOciG7)p2z-ZycbSDDO5><t<7
zcCDY#4s8+-hU=0(b-5t|AzHDst;0%vXK+1L_K8(^lB$+5d~+s@u0<mb<nqibhpCst
z+({nI_(-<TQT$`h1@dqQ3_gL=nvlK3dA5;n4-(ywJWWB)7@7X4QT?dVf#IcO0xXfr
z?3A*0Pr#uC?e~B+S2#h&$W<y?9Ax!_SYVnUiJl4CU<y{S5(S#$^H0-uDY7h9Y0_yq
z$H9JKZ~Qh(4q-%hgiVhD4P>hB387R#rrHM<>H3V&J~>u0-ZC96%wlHPKnl9lgr)A_
z{=phtay}zquwjuWy%A0ovuu&ROp9kK0l!1hD9KW~6;I^yj9^4jYJGSF2mz?k4q)ib
zJ%W@mtI~ji2L0joC&glY&<~3zC8uXN^8vvSvvfetd3Dhk5&~fm+AHoaX23asVbt7s
zwfPK^cw+_^1AC0F!nd0yzMHg>DVzsP8&lVGhzgT}m{URA-RR&C&OjMNMcsv1O>!Yt
zfv3vB!XBfnHM79Bc+CV|O{`nKf(3Tep`1nNRhV(;J5*Y=f_K#Y>SEn)5d#gx*{l^T
zvXm99q(9}@wJ@i(tLulilmUJI*_FQk%!Z=W8fzdBm8efAQLBmV<0$fUfWD%NUav`A
zugSqOO1Mjru_|V1o}v8ndeqLGRSBY0w&?^QJiVIa(s-?a2yK|=8$gIMdbK8XwWjf^
zvL$0_c^s_0oBZq|FZ#hbq8$I2)p;vNMJe=l_NUUI*?pRz6ju7y`03CH*pNz)ad~G|
z+2W>~r6GkHzCzr-VuU13(CcF$HvE(ZNe5m=4vfmZ%0c6g@8G4)c&g@*PC`pK>d=!T
z_&hGuS;4Jc7MQ5!;ZM6Kh}L6KgCAPisvF_dFsl~ntF(;OXlI^gu%>U+B8GpQY<!Wm
z#`yLf>-~4=VM!WoRo5IcJ_!$0+M#R$pt7fD+&MV%X>cltq89<D?qlCLbR2f8w6y)S
z&@Ls6KnS%8e}cBX$VW)ncorKoR$!*^!RVzCxN<vgcvrR9<l?6&XWYO=8H5RFdP<qM
zVic2V!nuy!Hh{_@PG9Okw@PoSUwmp{d}$<s3Rp*s>5&n&n!kyg2XES|WCbv)E+91m
zj*}_KLxF@?A4meh>Y3UyOBK3ZP@Br#8H2Pho@6!vr$A+bIEalrP+g5)`VBe_=z0h2
z-R^Z-J@pQUnvRo{nxm2mhmlX&MLjPWb8vBFzLLT@V3viOu7L(`k13c80(j;(g3d`k
z|E*!S%x~A0Za;xRQYix+SlHCSL!*MYR%j*%Lf&Uj02b^_X5Qk=&W4{o>&Uuf)ywTi
zr!TIr=a|rqw_EDIXEh>j4WRUd&Lr}(nt`-JycZaboleKed*6H~wDCe(|B2V@6t;^@
z5?rt(cMeYR$UQ4~H_Uzo@FDz!;RAr>s$ShNS=$(FL&kl<+LgSnFz)T)8ol6$gW^V6
z2h^M#(%jJbUZk)Re|U)qRENPLAqfvL`3L8F;QQg(tf|d)*R>G3wrM)=dTe+}2FdyA
z3H?EzJ-uP%KzpRNYG1Q@jQg|*ft%d1JF~ed`MH1`hqEv>QTr_UOP+HkL;-|UR^k(g
z3^~d|zeq?Tu4hD*SYkb?S{|m^d7OyB$T@K5IzUAO!z~=F2xM+Q9u-S|RbD;zuBfy1
zMi@e7Gh=_tr<h<m3kF58?|6_HD=G}ro<xt9^Zh<_<H@H2_;>uTp2Q9mhqFKu9byaC
zL(dv54Cs~Qb48&#W5deBC~>kl5o#;-SjU~NrojF=9ZL0`p2K$Nr0BJgrn^%GA<Jz1
z5=d+)IrzTV>E#6V8z)`~j&)S1uY`L1LQ?}n>B_~xtNItsaV*z!I`6+qUEhB0fQUfF
zH9!O0(u;bqh@qP@2_>kP2@7Qfu}YnNevzqxk#t>Rc+q_p0e-DGIqn2)7pgEOq%W&+
zb2%Qe2>dV9Rc{|ZKSG1y6J}$;wkgrrz(nO8m32bH=?bIiVWj-xjNb)SU;8}L>fzyb
z{i&K5kxp|Ze%ifDP+he_ZMymP-R<R)2OW`)%3GFlGi=*@Lr1Txo}SyK<GJ0<(W$wq
zF9TiLn?LZLFH~DRZ|Kkao+uwFIIHXW<DQJ~;k2?3iE!@WV+(JcdL-kPI01pt{el0!
zGT-aZI_Ed-MCrGR0*mo(4WYS7<#T?koJu!35QoM`I%~j<f%F0<U6@wN98d9h(DCNY
z$f^ex%^avXAMD`F9)#i}R9<tIf4l#2$FIEf+@_+Lvdon&2|WdNmYD^chz&Axc!V<8
zphnnzPt~31?vz<!dBvx-`UICHR27HgY3f>BX#KpJCzR6iu$3xxrFs0tey2|cL;MAj
zv*G4c(0go=kZhCKqc0-IA@kPsg8u4=O;=?KdP}rNmDk2u9X|Jay>N?@xg7=`L1+D*
zL0zKrHipMI@IGuc>e(MlR95D~DuvJPykv)5xwY~*cg;MZx<q+U?-A)T1vgynZsW_r
zxP02+&@U_fQ|XSl-}Fq8dj?IE(#*maw&l`Rn#I5NyyR0}e$Az-qxvNUi4*RFlzf*2
zLZ5_O7q#QWz#4YBg5h$>@rC?-vqs7BO2g4@Os5F^c8?Y1ni5iPpUfvJ$Cfi3l)Y2+
z?2a;()jkJ8YP&NBS*C8gP?aIcOZWn{H{_6ns)AlR?>aFWEif*Fhq@Ge&r)FMq4D5p
zSl{=WHs+(U!DbHcPX~AGonF;~h4sKKO5bnoEBek|rNHo~8BCGU*a^gd?M0)zsa^db
zIa-BlRSVqE)rEu`&a4RO*k7CQ7uk3h9t7^ehLSrhI|JQ?1B`m3=glG!lMm9A+M*|q
zA^B#GcLfR#LV=dyS%N+VIrK)2a3B_)gXzOffqF?*W1v!mTh=GY^2LnoH>6_zO_m!4
zcoARpGS<F_s}>y_7$2PUZD-@IcuHYSX{nN#&$xvL?J)sYCZ|@sj+im66^_8#a~ymA
z5ouD5u%bb*FG$mEb>wCEutNA(c26kHmHrXaKsYAV-IOrbNN|jMkEP-zyA4nF4cy2t
z5^K-MSaE3-4BY$;s-;}Lk4O~^&oWb6W=o=<^n?d$p^&l6lCxSgf5G0g;pM^4#jt2q
zD=l5oy7wsVy&i~|Qu~akhGbGv0vb2NvtC&)+}zIZ>!5MlPnA?(ee)6F_;?jllSfcR
zIP6$C$sV4vb`GvG!92L+<iIVKscQI9tzp8Epyas4*?PmI5j(*IRcs$>fdo5Q65H6e
zS!cn`ON?&Pt@@4Y)%KSaX%0><UGMi66@BxmJh)_R(~O@%18dgd(8>G)$DvcP+;-`j
z)qAGPrD~`Yk*9s8c9%~m-I4>EPCJXVbkH?rs|0BTcRx;rBZzKW8F7)ehvE%+A`Hd4
zcpQN_3v$HUHUUj2otux3>#b3CFB9R?;u__w#5_gsHzt<c&RRMfU^Wm6dgpLJ>kPNN
z_c~ISY0AyTaiOu`^m<K|;#>8!x`CK~xm5S#bR<0gz^0Mi8>Z4Ka@9Vi7(w*ls?9-Y
zcN&=d?u#B{bmOj=A^WUY<j=LnINU$=`KVrU%!LKWAV((DZHE|Ofh*?F*pDE9kh>^L
z6>JC^Ua8x4i!K<4pqg$(aF~H98VfG{6Yj@>Vg8h}LWAQY_ubmkz$Ybp<rV${gEBQk
z0o5}5VY9~A{N7LwLN&3U3ouRZ&pzcU&Eef;bHMf9?+$vRLQJmPjCnsa)rMWnzu4Xd
zv;a-e^0z;nihEZw7u6zgcp&T>voneT4RbXMO9~j%JAY{-NQdrL?d^JXxb1`gP^z+;
zX+ub_EB?y8OSblkJ-k~_2=UcKL@%}LPqp6Yxn6Qz$q2UaJl&|xjSWx2v5`g*u(6Pl
z>$0W|)wJc8>)O{H95oMQWl}xX*`-w2%Csf4#aHoa+;z#*-(bPDvS)Y{*M(p7ae&pK
z7b;%3CC7WtQ)-9}b%_>$mO$0$uLDc}YO7#RW#jB|xoDSbp1&;W<%%qR2OVQk7E9mv
zm3>-0!O#JBZ*~|yO_lo8fI)tzCi9_5VT-6@I>HgpE~Gp;=!>1S6=?WojdiU*7mDF<
zpXiY3y|>NOWuNV|vLQ!|Lqv~wWS)lM@xYRe7jCOyCI*}qgN?%V;f-!0-0g%bmu?T*
z26cj}(h-hawOLC<k103g=*ad2U{F5ZjLnr!<lo=l?x)ynto;aOECKzwEoYw-Gjr_+
z7gwhI-l4(L!ShHT__K?x?LKkJR>GkWKEm8;twvxnhE!SwbLB0M4UP}S`r7XsC)aba
zxTX!>g!>Z?OB>Cidj@F+W`RCyai0=;<JA04yKJ5yBh9>~*3U;{29IU>)`DNmaHOi&
zkbPQ<5&ZF^nhsL?9uR6Tx3~A8Fp&zi{N%gLxHm&n08n(9gFwOf!>sOd=a{L|N8#Dn
z(Fi!J`2|}SLF$Z5r)gtuEl5Br*Os%+qiau9eA}sShq^wK@`=|sxlKH9VfH_y!YAds
zCEkcG0B)yi*A{>er%UbiO(jtV^!3feh=9e9s1*}tp3mBAxyLwG(iW2-$1{u*ojMju
z5fR9=zO(Sc$49WG>Hd9=$`9p}FPHFzDjSYCa*pDY3nfzvg+4^ujA!RNTQyvyJ8!BY
zFwW4ef;0(J{YLasxmasLIA+?LY7f1i`*?c(I9T850^O>8>OZkE`aRfoY<aewsr})4
zcW&V-#Oub*+u6y};cD{%8g$2ex$h0vq~Mb$qCyb=fidd8BgK9s8A(@?wao=cu>rEt
z^;$Y-Iy*Z*i8hNVs}u>zDV30MJcmvM)lRWqNvYR2E3Q^q6!GVZi13DEeIB+!qSX!!
zjTzcnU8grJ2<d#g0bGh^6sPWtk)}RD{-(vVaszD=0}X3>s~MSIZ^*)f{STD@s?o-6
z(h_Mg{-0E%>w4ca0PgpQGp*-IymqC=&s}t@B|uc8TmaRm1VnI%fwDBmhEt)LzG3>_
z%Tw?fXAd*lo`UKTio{N<z4%H33NNB@_13G^#xw7f0H?~LEyX8OQgm?CTtoS8314k$
zG&sz*v_}XtQe-G$zSDJ9Jge7BsW2Wq(dD5d4%ezkY;eYKT9QJC3-@qC3}fb<;%9MV
z?R8D2Bx8r#?pI1j8RK-z8IYFuK*|=gcO6$F%9P6*cOK<MWwBHk(a+$#llqNo)Ukl`
zj5fMS`MjB6o9Z{NQCnuF%2O*o@JaSaG!5KWT+*eI6R3HgZ18kq^%lLj=*1hIH6i&Q
z+T<<HbL<gY*X2J`TX@+(k(zz1<M1XP%e?F~gZFTL({2_Du#M(v+}mn@E|+_b_<6oU
zdK7Zc9xNko<LLrfNenGz%=O*T?1v`1c5(+0+bFnhk~Z&?+Y2HPVmhn~@|OS>kmCPH
z1<4L@Ed0k#3;?g_U%5sBPQRZ`85A`EK5TRlANHns?DXIOYSt1fM!X8~7aKZa!sygA
zO4W#T9!5=#v-ZPFRH?a)pqKc3eJh)u!E&6X&hv6|eU~@Y??=06tgqp`1%-2ON*C1K
z1bx#uWJ2-OUpzEn@p~yj7JdJ&#MGDwCq+Rd8r`-B`Sj}Z^EbWb^UszIjVs<-6jO#L
zgxVxpBdBwaaxAbcU3YzslO!RYk-pMq&90#!teZOuU%lp&Mys(Any`%f)b20~hUrDv
zdWP)NN!tXTul97K8LFhHUw_1@?sL`)3!_Yu*uctS;V9`ox+!$(lvICe=XiBNCRjW@
z4)xtHD_GkyZ`(1GEitM-j3XL2j&ZlgY0)keJaf`yZf*U{z@=BOf`x0$iOFG$;_uY=
z{<F0MII4Oaaj2mOcDK=vZp>sGvS(67s!wN1%EWp9HHP<951cX{UZ5+x4>!yQ|AQz#
zy>()|(i;<wOgzU`hsKzsz&ffO%!wZ5Ci*UsH94+h+!cBk1>{8)uJ5n{t_1`H$KISg
z<+8Y?$?0I?AzdsxxYH)NUZ-h2@AAA4l|o_!ULDUb61=}6U}d-?oPeUB*42!P<(3K>
z*x4Y)A@IuN{oDn{6u+T>U-WVl=j!#mN0ZJn%~fT+O0BvX1yP3_C#~BRI0#F^tf@xd
z04%NiM=X&8So($T?_aRP@yIBeA0=)1=>>Y=Osp=7$&@e+Wy)4IN?x@Ji`VRB7G83S
zW?GEVc=9W{b)Un4C{AH4VW#1&VV(=ZkEwb*>6$mI&4pX;HgDWs1dOgZf(w6}7(n)T
zT2_=r@1e)C1C79-L`r^y6S%~D&cd^#w^|=`;#9^@61K|+xyh2ku;5I;z$`OEkI)vO
z#dffP^dY}PdOra?8o3DT3%a)f!h$ufjef}NGucxJ$|&Sw+7OPBK%Z=qNmzg;ZB3cO
zVPc4WsK1?7pYO<x(>!KIin#nB-do3xGxXBdu6o~M=YzJL!iyL%5%o1@Zj$O9kH*Vx
z9knaCH!$UDl&~XjZwRQ8X5<D6ZCaSAiCfy6ayF{HTZoh-mr;+%D3<IK?)~NB-s9Ds
zl-BI>AEZ@bY9%<mUjeNES|P;{Gq3{c|B*E9A5czl{Ul_JT>6bC=^kz%_G5p_K`v1k
zvue8@9%9Lvb@wJBnKj!7v-mF$Ua*b{zP>N|1-2Jg21?Z{v2TrL&|DKL_W~H%Web|?
z#S&ffZ5YoXRO4sW*_q%{#Rqn~n#9NBI_gt+Mzo~sUhS|8%@Xx|ArAMmLnnZYmA|P#
zC?r~!&gQw7MSu%SZfPnx8tYy6<_Cz9SehM*)lQC?H3eKPpSi@o0TCtfc}qSyKjXop
zoJ2BbeZK2S^tO(US~(&pGPew-euXO7>!kV#V)a!!h|`DeqUsted`WYTqDmCng)Sb$
zmg0n;V*il|5XSk+asOW!XhaFYgn&2ycrXC3enIq4CcyuR>Xi9$9`hB3Ec{=fYe(vm
zRA^8`>Kd24f~iJYn9VD$b5fyvBSKkZ=rruV+V1*t9D66{v+rD*$ALiP*!E@p?0(x`
zwp-<OOa4pp{1E<Q@e}xI4rQ&3;n&EHJtxEk7{*u6q+bY1?9h>61heK;ouP^AZx;&p
zBq&5jKvL<!YAYb)t8h7mBZy4dR!yS>ap-;+f2C?9lKs8v6>NY%mA3@jrMi-AS+STj
z>>S=mD7r}$DkHs$w1)C%V8CbMBcgK*!Fg(SIxg9>ua>7~<va&?vRbg(^Vay$bk-A2
ziHN=KSrSfUL7^D<?$)p{J@nfFTME43-@Sh1T~5|%`t{e{wGmFTd+oObIIzlh!a_Rf
ze)vvAlKIV8el)51^~nk*R^Va!6UW863C~BHLPCTnO9ddB<`+cIqV&G_WBP#?Sbtvu
zU2bM3-Ny)qF7%{EM!MYTiz9?zM+X=k1qI#3Wb0&3cg!TZe4;_11>@-D;%(eyTGjC6
ziGgOj0uhmAmV!yBw8<M2$?Eb7k^nq~xReBS{n9*$uL<Os`GpCWeolePn0fQGJdl^y
zO<Q?e1zYjdLUGWE1)cFC!>+Oe^pY}zl645xTP2W>bX)I(1P0y$Lresoe-e2%HMxLT
zy#IJm0<V67k%EIQh#*(Y*1=leNtc}kAV&Sk1XU_?>daVQ^iw8!BtWLpw>h_ElV4FA
zhSTu3Z_{o`R{)XlABEFGrlV)8Yn`2Dn(XUK31g$F=H|%zKs=>7z|k?+PA$N~R6|=$
z&i0&%ovG&K0B%7a2Sp7z3k}s2Cj@mI6dSe-_WU<o;DMc-nxg4A1@<UWr|>|QH!$8P
z;Q6OSX40}RfH(elumG=qk?8MSf#SwC#tr~c`5O>}ppEV$OJKyfHi(}TYSr=*<Js$!
zq(Dq6|ACl521i)>cN1==ygYc~f}six@Ebl@5@|assXuaTM`P=GsJH`4XO7JU(>V5Y
zsOswj@TC$AMj%eKYP<-AaE0dyO0l0MZu{vgv0p03lb)(kq~I=+ynHVPZ-LU)%pwzp
zJD<mp<n=Bo@%?!(B8+h=aFik1F`IU<yj>%s<n#`*&i?^Pqsow}XzqsvF?9JVl1v_n
zNE?!@Irj<bJ>F+6TuP65|6aNK$Qym4>2c;ah#p7Ra=3~QBr6{uAU>s)3>wdvG(b@5
zEq_Na`78@I1)HDC!eYK~mROdaM-^bWSw<vqh|fTZZk6g+lU$_xXw9LJ-JU@K*pL1N
z`~L(sJdf;`r*eORO&QETg$)Z6OW_CZnpp}qmNsgZnKtV7+76^59RNCCeuWOfBXl%1
zeg{p5MroBN0EtN8`6p=puFL<08nCiIMhJBM$A7B!XOL?Dt_F#dwcX=ssF}m9%6}*V
zJ~0(P2b(}{_q4)T2cQRnSmYQ9$r?IVdsyE#fD<%Q^l}Kr^b&O{4)XMpDj$M&97e|m
zm_AH#0I_T}yU32yzv{JKJ;baRAWXzB0{wk~(1E}Hq6I*73?gu(lmE+dD5HUf|72w~
zraNZbVEeW;rhB+`k`&Njx$W@bG;~b_Mmf1u2PXkDumTreIJGJF9JnNu;?Xn-XUvx+
zHROuvgwfyD_Zzu6%A2@198Z-L9Y3)u4TV|X343|23Rlo1Q-nzJ6xWkXYt=n!@cytJ
z(;Hx94gkRZT#UcFwpYLve+2%{PG+_azv(Km2*B7({7CZ23N&XkG<I|(R<^Y?wjp*k
zcQPZkwF4=%z7@drZQ@|;X!i4OzX_hMv|y78bl<86y5z)3NkZUN5u}wHP>hJy<>pZi
z=GOHZ*03(;f9K_lxIRqRCMHRsRoV2_w=vxshX3ZGRU+i>#rtV{cbnZoToO!*r&`P3
z&PA*6{V+$OpYbS?8fMn`;I<fAxFMb0a&vk<y`D;cx!UJko5BqOK4@Fiprz475;07N
z(|%E{truRCrcGak>AnT&A13{1BO%#VZQhyuK+vp$JY+uT&<K{DomD-+^>$i<>11<h
z3Od<}a71UO)tFe9E-sZaKTt_gm_N?r+r`)`n-?`9S})ES{1Jk_gbmzTTPpK}OqzD7
zvtRKKiz_igew5-k69E6X@hpA(?T=%R(U`OL2$@}0@arRfLcEU(XO3jmRIzR}vrt7I
zBkGi|4?Y*@P_o7bI?w1qe=;C*!zjOGN~>Bit4}kZLC>TZu6VdwmdmAWD$LuSTH|i4
zx~jPJy2L%{^vDiWH_mT$=-F1Isc^P&@deoRgyh~4{qXNpXTrw6Jf!{X@?xnZ!G|y4
z@aEMGa=i&#P53jjXyKe%b1f{HqBIQRn3JW((z&!Z4;-6u#l?(AGu0PC2oLv<-Z<pj
zO>I2@7_VO<{J#VKUr2d{{ta?|HcdKxe_{8BH%nuuqv#ut3BS!5F6oXLzU7D9zKv6c
zY)HFxprC8W>0VR@IW<46%<gqmK(&W!hbPfBDMSp($iPJml|+=J(Ud4Gqrl#g)Jv&{
z7$+Bt60`iNKX|rId`e_PQIHP%PUux7(q(qTFHxzx@<&-1@YK^;7@a9GUrBs(xU(-l
zMI1O4gFz3TwYRtMYunX|OHqsY2G&iI+*G_8#avrk%gn`IQ^oxBidPT|+nYx}xp=du
z-aA`R(2is#ZaAhpFHLy?*|I|8QPqg(X5TIWiWK;Zs{MV|K+WrZF%$pl{(q7fOaIl3
z!xR0*?EP=NKTQW#5fe{cqZ(kh$A7ikh>vy~4;v>HH|Y=K9k4%y;s6o?c>ZZG{w~CS
zVZ2#bAK5I2{u;v!Gyg*=26|{fv5E>H#3&#H1i1ko7`l`{4iqK4we!fZEIdPaS(C+M
zEH5f+Kw}LI-tYe`0Q+NL`Ktgj|5N}P;zoAZB97lyV)oaSKmn~pN-_>k3a;AkUR2=;
z8?+N3L-2o;<G(-?*JDsnBk>n66b@+LA5QdtgQkIMY96u)u4?kB;#zJtrn<&imL~Fc
z31C@9ew7ICr$i|@e})AzMvy`O8cVKf{MrnZ5D@nl_0VNuV`6-KN7BZ~9B@F!pJku<
zy+DRq<;hoII2TV4ocvDheoTz*jMd2iwxq4ac6$+#^jYqiW3nru3-%McCqo`9H8mkY
z0ezQ@q)!qWr0B>>42EtB98SN_$1e@N<%8C-NJUmFb1r?u&S$XoHifM0v^frSV3~5X
zL0%Ms9%btad%*XW6?!sFFP5_zGa`zBb;V>TGh7O>G?keQXj_pq@AMJ7VWJLKA;4!r
z_USU7ASg+P@<R8|1Eg{L#T-bt^}hh#{Nn*Cll<;^MXbz?ZJdZj9E^>C-{wHA?a}c*
z()l|pTPw}KK)#1>|FovWH(~FFg25rDge(n>0$X0En?#`=Q<K>8<A79_@9uC(8Vpsr
zFWIhTY+tbD=6i$*l0SxtzewW!0b!zPgrF()u#m3)3tcEJBKRgPu2Hd1Szs&7G*Ixu
zkjI@XZy26Z%IL!RevGytqyaV^uoL>zx7^$6KckSl$xgrIi>=&Xne$ser#kWp`iks(
zTA@=~*Rq5JUFow|ci}X$LOzhYLMx3%pUNNo{_8bVT@bRsddRpDEbr+!TfWxU<QFo_
z;Tz|JPhLkkC|###=fis<B%k;5bzuae3O17-jT=jP25A%wGJTH1<uU55F}8@jqbbv@
z5UrnfoKgyuho1pwu0nokI)N_T+ofAP!YR2yL7QHqTZLs!Btog=n5q^#>T!XRpm8#}
znp7Ue=BooHh_?3D931^Kk9EfO$RZe5`Fxi%XCutZ4wl2(kC6)KJRz^vwx;+;w=}e1
zTR7+-1Wj2IURecye~CqsD7~t*Y6g!9xha~spSz)~csEA&4CC2>x*lnvaipXSE2RIV
zZ0&KnSm^}MzH@WA$>G<_qF3ir`3mw1wL?MBqrxnSGwAfs+gWi>*a=Ho*0=`kb?-Q-
z{qC}0M?_QcaH=r6h)u^W&orp4uWc7fQJ$IQ4&vz8hfB8S>a}3h*V@X|P%u##(dF*A
zYsY^mv6yLq-R&Y3D1nnH3B8g0UO*W$XwDB7pHC0@ai~hT>Vq!(ER%T}x<kE}cg%1f
zLB-Pv*x=!k5x=@pQ-@>=k>_=EZ%tEnqjha4(S`-d&`Zm_s8v|%g;%Ad*pyu`7@g`i
z+$8V4yWNh3wZhMdN=NM)EzNYc96UlaMQ-g}8(9`jZP&b&?N*i=?9w;jY>qGwY!;V#
z%9)-m^|8Ltq3sZqteDCb;1+KQHKsh>3G9OHyiu^~vu{|~{m5Ik@9imuDOR9{>~SD1
zM_YwpbvDoQ<?e7R<nCvYy47Fv%_@)tAwvDt_xw+Z!=D<X4+NwyfA19xu+l%OkS^=b
zRx?VS4nUhmfz(PpZVoo<UThfjZ*oNwGD*Gxy?Hz)MjnQi$T4&w+;W8v%XLP4FKo{`
z=i^_u$R7$Ic_X~!r>Pv>zP!bbHfPd9Z#+0JcuFSa?Bj|bAF|E}Ey<4IskF6vVM?&Q
zFGopycMP*(N<tEEFoyOZ(r3RIxfI*Lh3lMFlf2I{qcLt)nY|yc5YMJKI@R{>T*^_w
zVicARLnTbj&PORz3r*4`OK5rh!zx2jR6*KK8-x;$G_giMos=Rym&ltf)-$=v5|lKN
zGA;uK>X|LIU3o1nojdz>4SPiO5Qte<C_ba^hYz!u0IS-KZDygr;Ym)VTX>*)l_tvr
zuHiA5;yA>XJL0>vz9S%qAoWJZ)vt412<)NMwKR@NlfcJPdn>&BL?|P%Ln-}A<YL8-
zVpG9~vx6<myx{J>5$Ml^K?A<Eo6L#{Lz(ww2Q^uOHeW>hgA`=$M7~(kApARNt8LB&
zRhrapmDrEF>puj>tavl{D*V^_p%_2X4vZ~B3O2ogEX{%iyAV70-fh;GV$(&cP)c2^
z*rp&#Hdw@n_v8G?Pe~Tm65%|ys!f0>+RbD2Gn9*e^V9ulMh<OTqJ*JP?kcE8OfxVM
z0`ZG00Vgyx^TR0gp%BfL2QwC*C!7sap&v=U1u5{2mN&f#mDE8ws$xE`A=AAR3;htW
zTwLSM(8^^VOwQe1%GQNbI$OmvPe^`m6j?AtRrwqriON50?d#W@i2XNe3L8ddt>Euq
zS^`~+axrbKhaE54xrg4t)uC(BQIlStKJtH?36EF30zldZ@mG-kJwW;|{PNH6g6^+T
zo|C{o^~+prOg&uHKz<G??M(mbi;*AWygwqmh<7lTHh|ah1)l$l2v5XJ-@!@Q-Od=)
z_(9(sDCp?2JqAc&e~s{J`RORO!@F~0q6Ynx|445s=ww*_O*}6mE&WW%5uEIq2q>O^
zObJLe^UJzF$Ycq<_)AQmD&f@f1>yt<=-<71ZP3?K3|l|iM9l$2B9QMySRIv67+E>l
z>X^ai2s2YNV^YxmO!=`K{xzd_!I4s_0_4Z|#W(-GuJ!-zG$7>YXlrQxv#7=Xvjqmr
z<D87d=-T>$It{ET(eqn-5TmnleP*;@2Zyz>xA*yg<*(3C8pvCOYI=EKNzz<w<cLH`
z=F7g{)V7^L1fj*$s?q#Lliv$sbl?AwZ=c?f1OgvmLr{#@$2UsLi+th0^a*#aLbA4?
zWY|F0><zsi3v#wlf;ricjap*8`D?%PwDxLr%UHdq<mKnQG_c(EJ$!GI;*1M?Wu7HR
zNQ+1Xv4p|Ir?YvM&<;wi*o@-K5?aXFmd6HRP#D1?5tGo^L>G!tEhv9(*(*SYL2|#N
zmU>k*I9K4x1x6T7-3eaZgQK%Q`MIsXSyDMg?FAHBR!3r^Jqc4qQx#{Th~J!)7;luv
z;ptncC%YL#vtQT?+ktb(*S^UrXGN~AQEeJNb+G7xx1pb<0<@(JV(b=A3a*^kI_@I&
zTirHpEpsB}23Rtb5ZU0eWz^Z6?pnVe2uleMfaTJT>E4fycX1mZ>)6GTt;%+v)J<k>
ze9pL!aEb4H$Qkka;gz$EJ8uSEXV3g?9SszL&3s+7@B>!(;{U3uoR7^8eo4r}U;I;5
z?HQq{CjY`f)vg7o>g2Dgiu9<eDaoloXpo}*dn&;8%BR&CK<lrmz~5^)|6sf4XMqan
z*8=J=(wE7UY4FwD1E<%D%`$?x{=M%YRF8m^Rwey7u4Iif?cIU2T`C+D7|BIT%gS>)
zN}JO*S)1Vd)(`ACY$CbQ>U@@i_U0+20=}a87QrqR)$XGdBcmR@?37i-lo`n>T3EOO
zU6%w{e$RRjo4B8J$zSM~<<Xtxe<8dV!;J6hUXgiyxianX{bW?+1)L@Aa}4P@)7^8U
z{ZaUJJxmLsvV<83y>>oVk5Dt}akJ~bK>jC(f?4C1wI7&bxLm&5G3nF4eQm`^6<AMU
zw?Q;|8|u8LR5HOAn&0GNp`J5rFn<4-qq7NM=Ij7d`D?F%zlRu%z!m>C#87cGc966&
zv6VHpHUNwu$D_gn2PhmLLk->NwaMXHoQ;&D=w>vjly0`DDC`tNv3jgBAqhfBh%~te
zkC~YLCv8*EmK2pPD<3af7ssINUN35eAGtf2cAX3R!e1%M=%e{tA@zk*JD;~~7Rh`k
zbc}kb)VVE+D70O&+4_7C-RScfiw+zt9Zfwyf?yqf-<_w+$$9fqf}^*wWkhWP`?7_Z
zMZWT8I6B!G{d)O0ejKj-Cpb}+BpAZs(o{Cm0Vwu<Xf5I8x1l?sXl?O&tZ1+=pSg<+
zz)i@;*5efLnkVx3IRb5^haooSwdni~^27E7v7H7n@S=+)eD92^p2}QfR=Dov>Dr&)
z8ZvtdP#*8{=@`D^T$WL{3#)bmr!j}i<%bR!MRUvM4YPZKjBC%)Wu3FcpJ{H)$rC+m
zV}%0ejsy{s@kDo*{%FYujWSN;Z0^a}+X_~KAA@d*@`lD$t&B8=hMfWIxY}fBG(D`*
zjB3SxUv@Rfq>R5&L8?0L8J5N^ksC+9FJ5=zAH(O(SSST+w*<%1&HuVh1ePhI^J)GI
zy1j=<1z9eEW%GL%LyibCx+y#r_JZ(lIbya<!D$v!YKB$10oMC>N#uLr!P8ZilN@FZ
z4#maSRY@{Z>mA>G=str7@xDKJHorqjsk$$sNKa+M@$kjq{t3NJ4TcxcM<lyGUDN(7
zC90KN4+ZyPF5xCCA;&BS>D%{@<82#UvWiygDtuiybaPc6wE_~i13EJCOgepsS9g_(
z-Va}I+REP~DXbaow16TGUm)UuvJE`^bjLKxnnTLaGY=OEbN{oa`Jo-hAkgOQN%wy=
zV|V~&|CTs&Fp26ry6Zj~uhYMJX?7|)ika?pDWDRqn>busJN$J#Ek^2b8|m+RWJyt$
zQYMlHigG2^?>JsFJSq|AP@k{_@O5&)^WR4h|3wJI^LTpX*U|**KeelWlqRaPh^g3k
zKzm(dJkJ}5pEGe(f})~@UrcQc7|7IWXkg<dVgC^tjXEo{1pz`O{UVrvI)xDM#vhM=
z*4yQ0znn;0U}qgUSXUS5KotKm+Sy0g8cV+n&R<qJsJShAa@oqHW!Um(3!(%bW>5>F
zgN&6QCdnn6t`33@+cw!`A3H+D4Qr~6LiavRQt?5J<(JTp`}e+yk(BF`wIpPlO;G9^
zmMM6ROMv#{niT(C)dGfo6|@);Cl~pZhL=U&-Aa;zy3Atw9_m89FLJt0`$jZI^0;h|
zFe1~pG(^ix%EW4}Qw}E80VSv^>ByyJ(t|Mml)AJr@S}Aw+BTt>E@pT5dR^<_wll-0
zX$E&bie|V_rU&{Xm9u*u_leEV-)S4qm(;%CiBvy*EG0KALJ1!LQ}>@+5UB!J{BCfC
z44uqf%$?l-OzT)UnLvj}>>O;Z?VN}WZEYMuWfFNsVmo68Yja0OU<-oS)Is0I$=Hb4
z+>zKs-^$TgmxcAGVFr#SP5kV|7e^JP=P+)B=bsfHUo2t_K3|N=6q}e<Fpbamq3u2V
z@e0pJBd0(r(w>=(Lx)iuqQOHV!Ltc}Sa03eTja^F2wbJ=(?jTJ*kRCgy~6ku7$#CA
zQMf|kz@3MkS_`y999RQG=Srp3MQ$C@1$2sWm6I`S#lL9Kn#HwZIbRu|i+)vU<uVav
z3Dq$$%72SnTo6tw((;{;I#$wnHX&IMpORAs?rFUGAX5yi660|Z(*!?R<K-*NrgTl_
zA8es(L_D=SS)N?p2dDP}Vgn4+Jr+q$1PbgbouSDipWcF*N8N)J<9mx^_@%iU6q~&G
zvW)-IkTZYdSqd|xT--#){hi$?M1X0rSN+pztMK4Pb+*wl^2EW-UG)8Fcp@g5F@~g}
zsbZnz`D|6Ql&G~?v};*oA;n<SeDy8F+;IFrQJqW3&d!3RdyWZ$!n=$!$5wYejuPjA
zw*09jISS~Vr|wTE2^IO45@$}EIG{fwZlhYReTSVlaIY@Y;vA^3t4xK67^9q_fjP+K
z@OU}qZ!RzHmzf&sQja@>Rq>3Uf>WG@eAs2!Z5ATZHna-KSn`yr;9B0LVRpAcq7L4J
zo{L)OYS6cJbo`e3IU&(jpT`9oQZpWMt;6?Ff@JD8@(0?B*hS*Qx3{mCIhC2hV_a7?
z@Gx$#5kPUE_<bnu6TpB%{6_=&-_*2!)>41nm&f|21`F7iFK1_J0_>Fhzf0QwR-Di0
z$nN{sK=ALm=YJyz&tp;X*PUYOe=5jtJH^;#^FKF<`xQR~nLGZGbv=d4?;M6g3#xC%
z+!Dhqz})(MZ<5)drN;x%{21W*@BPSsBM$4Mb#?q}E-j<`PsJIS;UaD)=cpuSW1*t1
z<FBR`1(v7h7w^G_^;qB5Q2WDmyj0G6=?2IV`im@ocO4*~_=lbQZMV#rSV7+uuvgr_
zC6JHh`gEn0$1ce>4{(!IlutiQ7|AN}vpmI#e`0OHN3KH~o7CG?$F`6^g8aaDA8llw
z-$swblj-QX;<cjv!^UI8Wol~f_33REZ<FrgGG(HlC5_r(_xVowiU(#)S>EgsKEZ{D
zfSrTW5n@i!$_+b9v|?Gil3=BjU)FJAewG#;``g@O*zgW=hzQtVJ62{A4JS0t(BYo4
z4vHpnEwqrW`cQ^F#xGa4S9G@vcD}K}UQjhmoFpp}WyPyO@5WJ62{9*Vd@%dRPnpe?
zYQU9AVBS{qIl+}{qeUFPl$+%svqTFTJuFzE#o#hCjyj_DGk*5)Cf2CtMZtcLp~Vdi
zj5Y=?f}ym%w4-*G9yjMURa%=<T%geE83dVamzl0^KAjjYs`Pq`)JUz?HDsTqAJl7f
zwrX4%t#6`~Nl^!m0%hPE7OCrk8eg89AXgpZr>T7MV`9_Nc!i}@7!tggt*0f9cP3`<
zRUzp&Uk>?%LCU6YKmB#dPONY8j9}fyYLY-BYT;9Oaee+<{9fo4Th9@j7fXeh4;l$0
z_aAPZhCWeK5r_pDFBHuYR7laoj+LA{?D?+YTr!0`D>K<Td_!WhDbscMc=Fbf;tN?X
zkc0;Q$Gz153gnMP&0qJUp8Ru=&#+aJ*HJUE^szB96tZ&wn}nc!oS|QFj{AsnY+P(y
z+&>Nl@rg-L{_93g+`C^-%l(6N^k+M0?I?N6PcM*r#$x4Pohvh;o)#K7Jwx3efC*G6
z!BQWA5a+aMsSu0yyf_%2&jJVUYUPR~LK}XLb>f-q)K|YOom|yqAX#!QMt4Q2a_4lm
zTAC8#KcFl`p$}}0hkp{9JoWd+Zm-H_3y(A@WjE!sC!K6>QO;%Nu1;49Y+!3Yyz%FD
zNl+{uEXesv#wLw5<n!L<++tH@vli*obw{SaTTAbXLI(OkSVvOn52<6FU{>^PSppV<
z*V8RUZL@G#&-73%M+wKl#35uig!&N0?tH)8`4>T^Vj6X8kd6iG{0xhzmV_YI0AnBl
zAmdNd_xF?@RDk;3Tqqhl+B!QJ8WYRA0<|~5W;i;!+Bz8hxm#rQ+ji08wyU%9f+Emm
z-3w7SdH~oi(sv+Xe>%)gp4Sn8%$%5jWn#!sUqs&&BV)&RcTr(Q)&1gR-R#2b;`^L-
zn~d%IVHeJM!q11}M28#|pNo{C)!Nl0CeLuNYZOwZf^l)AhJ=!?)rv$750y10k<}``
zz7r`Tsd!i_q3Fmbprv7{lF}8|$kzu*HQ_3o+EqN5QOGaT%R-I|xME@F)a-9y{B%ip
z$WH~Wr!4kuE~M`^4psNrw4WtNp6p<ypb6MnoxG$}40B|M68;fFMVm^oqn((6vq?IJ
zZg64(_WHHhB}{Qu{t6!7ATeeXPG;-tONnfwx8MV}PCBT%QVF>vbr!?rhlA{b4@zpU
zwZg2*XG%<QGkF-r^wxw>)AOm{hex(6C0eKSI!;oWK6I=M2>Qz8pOe~C##&w=Y>9<T
zt_M8NSw+2r0AuVz;liZOnz20CHmG<jUA(-?E3E|)13Mhg>54K)O2tCEn3K|{sS`%0
z|Jo#ixWYZ$7`-rRZ%2fB62BWBLL*F6$o)&cr&AhD$wQrS_SX0JY<TVrt}+I=N>vgT
zIbnw!8tHQFQ<knbBb7@wxs%Q>vNN)yh615GMcm6jDplRy3R(6~xRo#t)xN5~x$Ma?
zvh}B&#4;Si*oeeWHvBNLd&ax3<Jd6g`kHJM*f}C3d=_r*Ek9>Lr)A!-c+^BK-mfC|
z<+PdBSfy}Di=3SZaaT!2Pf2@GeqG3dEWa2r>qBiW@idMqjOuw9u17+zB+IDWwrLNz
z*2Z9?B!rR8JpL^FaC}N(@3<~o6ftYph`E9dW#Xd1<IYi;)0cV!fGyvpY>5{C`)ufX
zjmQZS8Dl8c`s(KX-W1nyGYRi--@brNiOw`US7NFi)$Sbcfj8R0&V3&*<3fPuJGhEA
z*o*G<ohiE;N3_xQPtIDcuv8OzC}r^9e^kvjsIj1Ler+nWTRra}XiYzpUE@66HSVG5
z3|6q(v;nr1yt&Cs+xUeD#p=~$TnTA~Cbn^BzBM@J*tQQ9-mUn6LO-#EetihQ@+Lz4
zRnH;~f8BHz{fnOckLkznz1HOwMCBx3>MDx9QV~^B)|D5Q5*1M<W@Bd6WqVY+^cZc>
zjSxYVU6n7ioX1sp%(F5x28mUY70txem>zG0kj3W-ik7=M<f}%5`)(7B>XY8O?LKyF
zm9CAsVByKzy*+?b`6hOEOrINv$uzPPJ(#F-f;35dXs+R~llof*N~J4DILC^e_Ehe0
zOFQ4_jSNNB&gx0?MynKLam*fnHWfi1NoI?<Zsp1$cP2Ayf;(dM`>(lQn+i~DR3^`$
zAgDCIHJ>$tjSw1vks?=tg*U4ckv{kAp>BGb?*`VD^Q1tHu#0VGPRk#xxD<>sX>bQi
zCcD3%GT|E`wnK1KA#bkW6&LYW9`-&cD)0=G`5;E!CS)?2JXSGVr5@Dx&&Ql8-Zszl
zelHhG8!zfLdmrV3SM0)K&#;b*(RapQv+MS?HTlwukL0p=PqiJE=~-t9S(vNaNf?#H
z-kD`L7H0eYS<aMAzNWDOhcvjLc7XmqqE+W1Ip)&k&>WnZ?Qn9Gxozg6Uo6y#9&?+R
zJ)ZW7EBjJ&{jP+e8BR^kN4c;N^9I?beCxK7rSDyt+CH^;vN2Bx*uxN*uAZ5Mq;M>=
zDe$0;iG2;*zTUp?nd@lh=524txp|6E(1BMi{%(@*gTLybU3rX$)P1QD4&AoK02lKN
z7VK}Om{wd0*hRo(*Zg0dIV;<vGnf8rRfb;rFV6h`cC=A$cwm5u;njyAGpFB9H*#`v
zF*CCVTDtrZmj7{Vc{(~j#23(jUk~~IJ*xl}e154f{r!-yEO0gu6v#3&{SW8B0Pkf7
z%G-4xD?TH!+MxdIL6v=##0Xe#3^^%b{9|M~%=E}f-$)O-6sSy(mT$1#y0%1AlH{<k
z*bk&^{`m33YuV8RAvd^+)mA&{q{&nXJUQBJ?Ws1h5YG@-6Zn;2fS@S}ahD%6`B;?h
z7J8?w=4Z*6puO}pYsc57-*Jsh#@jmbm_y3$QY-N4(pY~OUD+>W`-S(ug=T&Ey>V6V
z09?oA!+I#xH~)8FLGX^L@nQx-p@+_r)bs}miGKdk1z2?!btQ>(iJPb;6gV^lVwFb1
zBx=y9Pm!N8Tp<=gFZicaB+y#K#KL*yFeBI>Rxd2|u&%$RYifLYA*W&3Y<n}k1Bu2u
zy_h#GfeEutcSs%<UuS?)$}8rGx>fS7zMzoaG{(?fL6bwFl_s@qKzdQdY7`<H9!%?E
z34WX!vy57?>qn!axr`i7A`wZec!$-F=&}T+Fs}w)5R%Gp`0VybM_ux%DTACg&-^+j
z0&y~XnfDiaQCewFi^xuJO7G7Hy(S6}4=)8CbSLKzi;*547|vXoOOZf!a<RJr_B{aX
z*#DR!6a5_nx~x1*HpW2N#m3f2_t64|{T0!*T6FoXlauIyt+%KYbcMu+lY=L>Iq3h}
zt-#?)(sxOYuPlJD?iq5h(N+OzElz5(2DWcp_x4s{-d2EdK?2sob>Q`7N1&Dxt2An?
zgQB&_?+3zCJ3Q##0|PGvo_~f~e|G`@)y<O3zt#GeY*U$$edO*#LknfU(GH7~<Yj1Z
z424d*?59vi_CsQoadWaF!ls_LA2O5YN1wA2GMi=|Uf7FkKe%n(n7G)3k2wyK?Y+|Y
zQjV@6DY)(6dhWshCN^|S%0@Kkd4xFG&F%NE`<M4_KiuJxrED^i)YvI{VAk{EWOm>*
zeN8jT(0P?k*JLP_p1rTbr?jPOj$(qO*=4{;p>2ITqWmf+KZPZR?gLBHv}}p`h|`2^
zeS8e&++xq`HLJkET*^Cin(Dz7(U>Dk50VAioMiN@y7AB_BgXh)Tp>h>7Z(JnSJ_){
z<^53{2rg$ghC&ebf-Fvm*#_I~n|=8`f!pP5OOBqr=8ZnOdzyXCSn|C2qYW%Z+-6`e
zA{_B-wG0;a976}4<P7*l^oCQ$f>6Vo`#wVD=CvPLq}c?eJWi8Z?U+X3n10S$Tho(T
zZE_TegZLK+0_rl>)XT=Nzhkk(6Oe+>pjvmv#>JJF4$Zoa3mw?6%3V7hjoB{=?ie+D
z6P;rcAHu}d#eRY0D4nGvX1GqOV?YV0l!;(MJON{JVro13dRsxqE3@<eh<gjDJeF(?
zG`MS!V8Jc8ySr;}2`<6i-3jglcXxLUPO#tvhXBDH0(lK*X3j}w=H9vU-dgWptBa=o
z{=2KHt9I?$wZCr{o8MOYQf_9}UL&ktkgrQm_);LlmT*xg<0~WxE5xu4jA>Wy^gPlf
z!6~+P$u$)ifA=}b?0gyznx)2UYruFY`$f?IuAe`3nqOq%-}QvQDG1M+!5^lU{Ak@L
zxI=&DNTJ$Y9$io;tPwS#pCoAblFePiT2TdTd^{{M+^RM<V_+ZKM`oF$hszB63Um+J
z5rYHm<_C3_IcUg{avaF7R)>`tKV-P44bh35KTF8CQ0Zul%A(G1OY}1=p)P|LgH7+@
zf-Ry_oL89;rN*-Pxr<IZj4`wH&b(E}e{mg-Phr0%rucF+XpyEDW<bZ=Aa*m;I+gH!
z7-@8}mAH<vOGK^kd@*8PSsEOSk1N`8V}fggLP-%l{PvvcgU|d-QGIk*KF!7inhDVu
z{oa;LGY+`O%bahcp`<UW3L)ggeN&j&+IM5nytU>*zuB{RS3)_gs4dCC$muYB@AKS?
zocw`LxT@O|qooN?*lPXM)L%$kEir(mJ_L?G$LH_MNdlm$|F#qoa&&MovZIr*1ZEpC
z3u}En3&4fe*v!I6J6a0Kj~+ST_z`xhR-ZvMl=70mZ7Lwd?L@`)3t9eqNzX^OQw3q`
zR;E>H){&q&EmsrzKw-R?uEIXB^mUbePvOLH2`UnyukWhS+=<U7hcxJ!mi;zl&tct_
zkWnPrHHmlZ^+?@JvSm+bx5~8l(#lD+P^k@@O~pu^_&pc%tea$QSUX-%&NIJ+#b_jM
z8Vvt&{zmO9740|_$f3i?l^5N`K{2YGFSs=1;v?R}rfuTu6Gn6#dBi1{w_PvG((E3&
zx4FLPUIEPj1%2%#wKfD)+Ul2P`F&RY4>nm?|Ijr4Y8(52{1;8*|K$J4!$Mb2!9e~8
zl<3K9x%{iW;N|lM_CKs*5``-zPu|1<!13q1{ayA_{`qbJjKROK{#!X(SO5n7Kd{D1
z3V&F}ydn0d$rucSgPbTc_#N;>y7==17p06)r_~(4588eVGW+Ri!c{ya>7IhGpZTx?
zFg<AVmYj#JewnU)ulBh!>>J>UfxkjwR)@-zT@ttY@U?ZyBL9nM!Io0zoKPXT*eU`1
zef#H^{N@RKwpeoz#IL>^Wj8UCV!aEPq!cA)?ymY__Toiu%Zbd8{$=c>-wM51G8uyw
zS*k+rMf`L^L31x+#mnBt<(aYkh`PGwbh>6-IbGZ8_oa+-lb>a7sILH}(im?lq9BM0
z=1Zce5<yGy=j~P^6|m37v!A}76vK#u`1MA5v{$*0!+Xk8zFdVE0TH9c-{IT0TP~pT
z6A#i0p15KSLvmD2l>c<|h6#BEvfRa-5tV>y1V?5T@4*(?<;&#YaqmeLTz)ac`%*Q=
z&*qRkjz_AoI|PK{<TK{<wiT+OsFJO_1^Hqh!x6f9TDI^f=$AEU(@8Dk=w525y~VUI
z43%s4FA<zsEBDErH9fEx6$Pu4i(ec%`IMOS1A(zWV$4#C1ig~BFX;u6Snug=zm3O*
z*MWf(2*TUkM;7|1;0N_qUlgqxSq1rT85E;Y)Nmy!()$laUzji8ACiW#Xmr=uw3yhO
z_-{VzK6U!Ys$+r$pu<=EB6ff8^#7G#&NCM0ON^Y{vu)|Hke+9+f1*=RPX;+eB^*+O
zCpKT(A@6X*$(LZy*|`ycLLLkgk=1N^v}3{b++FrC6!MG6eH&#)hU?*1zWa_PX(j9z
zJN$8R`6clBX?8t2KBMi(X5+?Dm0#W(q23El=M#SLfsU}k78PNmX*HkyE;x~P<~$sI
z<!i#PrtqG@kHajy5s5*)9xKsOr5uhDtB;u^CM_*T>8(PdW^Zc+84^ol>y$)q80tiT
zfjG1f!r6Y^l%v>%jd~L3x}Hu)SgcWrT|>qSjPItNu)J<OyT}rvm2<RXEIk{8KUxqn
zh%UiEB4(17+VD0qJ&s`>nEHL%hB#!Glh)Vf)SWAp0f^l8l!x^r0{8q!Nf^VFAF!sb
z0qG%qB<n@%5xbk0pi!zUY=L3dwUbE+yRYPk5#yjiCDf<SCoSKRL<<nK`!t)3Eq8@X
zx&$wdq14Fq9cxxhM!l@R{+VlRa4;td$xE<5+^t};`t(vOm`A~EftPymKkAnMi3Riz
z#5mkvMcJt0e=Eu;yT}>no)872zlt!pXOpL9G7gS9_CExfD$^L34Irlcei3B9cg+8w
z4vc>|h*AAjO)m5JZ|m^)J#X|Po_yx!r(N#uUn_(DT$z-=`r!wv*Lyev)%bO%;&(rM
zy1&Zge}n5`{M9i(Jz>dyiXZLM=eTs+x{CG>#CYj5wz!@G(3af;uPF7i%O_?RlccdR
z29cfg?0v5)orQ|irW0L;l#I_GI?fM|77$*vf%?!~ZJOu@CzR5;O7X4wzhKqij;}sz
zvSmim;t2F${9e@((qz{@nACGdRQxVsc)ok)EJhAq?t9lRkzE*NXXH)L>NbL|jf+F>
zJ6XoAA{Y*;$UDW`Ija)3MJ-a!kmhA^StY+iW!mV;6J%EJ;57I6L^tkMVxudC+KAEN
zDiNjn8}=Q&t?zk>R5GuFtfG2%{E1Y;s#B_b_TFB^r3@~};Jv1Ue9_Jn{<21Lu${VQ
zuP?bR$TD>-5w8L)h?r9FD1L~!fiX{dhc3GMg1{Nu&WPFYGiFe3zeXNghafIn^v+6o
z(2!7IIoU}A=jC0+x6_ZQ+QslA=XJrhL{M7nnIU@z7AzlUhX=h3yY1^-`UPkAMSf6;
zzDJ`m&JK3Hht1}hZ&)FqFWYQkIL+lvm!BkI8m39AQOUePG|f{~$*Y>>|JH<nUwtk^
z!y%b(mBrRl>N4MnAdd6nVb#x~a2N@L<%<b+V;cG#wP$aUPtt&-=yJHrKod`)Yz*uC
zq9@GzOz5qb4eNn4!AW;b&Q}RbIO7$C>SEQcn>N+~l;%!|rDDXM5h0NV<D6y)+EnLs
zRgB(x0xq07T?#LGCn9#HV=5gSrf`g7Mo-2vQJju2ZSbO~Tg;4U?!0RKCK*JSmP%c}
ziUBlj%`M`~UB{zKc_r~PnCypnmr%?WmE1O%vJx~8c<WZo&Y=TJi*_dQyah^wZ8VxI
z*rIShZ3IWpyfdOlW@$?}C?}c{J~Z9UA#^@#OaT<6%pSltZ!gqem5u*(jOsEm(E<Kk
zc6#;>c8&%Pj&@JJ15d!s^eEjwXb@Hkp<SJS?$;fp_RJ!pX^0g0(Nn0~FNu82BPq@e
zSzVd&^NZ4Hq6@b7-p%k#=>K#aw>LXx@D}_=RwWg?v~|h}+oo!Sk(>o@5Y<7NW=8V*
zn}J=o@&ZhBqDF<`Bx}5s-}%cdVwN`Hbi=HV86(&nSw6K>*5YQ$Ab4Gn#jpy7ZUzF<
zr#nbdYbUIqrzn<rNaz&ii45)`2SMOU-qX^Rn}ad)t$oY%T`!C1S%A*;BuAjDBXa!0
z)bG;oi_&(I7=F2^yE2;8!G_(C&O<44Lgl%eB}Ow#3yRvvfqCM-qh0x<v|ACnKg)H;
zhIQ+aQpP)vXEX7&cC`o7?GMl=8NRxbvJ4H#@DKl^Hu}%t9Yz*9Wg~kBGb<C_=LvY^
zuVC0ZajN|2nT^=dHithvkv6tQ{n7w1?|<xx)O}%LEd@xbC;aN4`sMG-G(zCpUzTaY
zMh0e2UL&#qxK)>d{<&oN(V9}d{K$csY@I|~5(0f%i&oPG^3q=<i8T!FDc(Ctip5&Y
zm$l2Et*#*ZQQi<VRnak-7>_%r*=2|IGPGsvU)wRAl%q?<e3V+FAXL~{va`A+BvH#5
z%mjxzH;lgikN~>{tH-zNThFUI)hG%{Sra%b?6(Oi@ZMt1p7N4==}@T^MY?lFWw7hc
zkPCca#)_04BKwiScp|bHjI*v?fF`t`%2)(eN<3vMahL|f$VLyDF>>d6Ahv-OcHpx+
z&;7vMQFj!ZcJ7she)Nb!L~ip`YQcho-MDX&ETDw&nL9c{2aph{!rMo8CkGvj1JA_z
z0y<XzljpVK+m$7z$S}`5<h~XMa*->f!BGhpC`Fly(M|;3tKf72a<i%8j%RpX4W~UX
zG0+K!fr0jCi~p|CKS4wPzH#+0HF{}l6Kh8Y0NeHKhmfxL$8NVQu-jcIvlyLTK<Ve2
zlOrTD45<_z?IJ+NfeJS_jysJ~@NmqvBr)q`9Ugx(e!bm#>_v^qH?`o|%AT=#{_uF`
zkhZ7TIe)sx-KbAxaUfeB=@pUF_+H6JFFqq8hukuY`A!7=`wB(aU~sO#HFtVs&UMIW
zy<+rIeaEDrdc&vE#7Sl{)3%zSzI2?bAEmVXUNKc5!k&uvEmpk5lGfd?6uR0fd~qu5
znqD?&sMBXzYWAWRoc&;76SqS_eP0V6*}^2BU#=$j2w^BFfLTDR<x4?@lZ7NFI1EQq
ze;SyP6od)tt+Sv4nrqTAZy#=l{W;aZHsE5e$h>PSGQce{<WqI$2Ytqa4~E$Ae)w~2
z*BCj)q}E81ZGD4s3R#OYlpb5R=i?M^`x(vTWWF`0EuAaIDO8ApopdZ$%SnYdkn=8t
zO*7jrsxA{UoDuH9_$;wd4#Z!(4#jtG9r8+d33uz43YMt&4x`T!E)UJ2-c!&uc|%R@
zQuySj*P=(b^pPBl572<+HnpAO;v1xn#>Ppcrs4J_`8r@u6vsCqae*pa5Lj4G_%C(|
zM-6#9mTim;V?V%qxhixY^F4`)s3UNwexP?G{-VGC?p{msm);>{@f(8Yd9C+{KS#Ra
zlI$k1i7DF&dI>{<v5+mZghs4FlO!2vlwEYMl496UZS#GQHOc2{buOtcK=QuEb<l+y
zz>lZdJ|4&#_qw@Vta$Oc*Iw-C@ygK&_~fLuEA{5h-+vSC%=fF0{Y*rDpH3kd?9TPG
zY4unb${<|1rp-uSL6yJiQZ>P_$8<_Y-(em<tGd?TkojmaE5`C$ZBSqvohigiWJomi
z`4MRl7DX8>Z7K~n3+JBV*|7+!TDv^nn6xg&ly8T^Kg8Ua25LW}oSre$Yg;I4XtC@K
z3@);5U>^#TzH+0nU)#l%gd--Os~x$kbwe*~q;oFchc3KT6{*D42C>k7g&HL~>uS_Y
z2`w7A7Go?&qh20@!{BU*tokt(%$CbeN$A_Y;NrN}T}oE|+X2|#?G~=9Vw03D#ao-&
zV!X}wOB*2N3#}^<UtKcBS@s82vC5a-U6Ng8K(}!u=*`zuI@WFN5tTlDl+S&!IJIT9
z-R-KE%A=7XvdPqlByc;Gbc3<^HH(c~)~z@F=55geBy$AzZRJ2$r<KWmL+yq%|9cXy
zod$*6q6zf31T}8%x7Z=4D0g%ba3#kPv2tsxX_kLm(z#V1ed-3fM9?o?;&*lPpS%VB
z#U8>l7?PRoSEbW2x)l~!(TNQ7DCdM%_6*Y@<D*z4g%H4mq>6q--W0}M(Vj0mJ-sA*
zgN-2T%5hE4^y1wM{+P8l4LOsJ%h^MtQMmhXAGRbQ<}=bE-c&Ay-X=;1if%)tN(g|_
zpvQMIZ0J&qxad=;iv<a~x7X>8T;O5k^n&}Hl0YLME$qM0xX8O!tp1pJc1T*nuAcW(
zmxRvDKRMS?w9jP1h3?i4{*m(yA4Rpcp0{BPoQ%|&jGq<x@apMB-TEd=C&SiD0DPr7
zc00=TG<u+s2TTTmv5^Qg*PpWW|2Ug5JX=YC*$nXMe-%_Yt*c;H-~FnTXTl%da3wp7
zQG53tTkOK;lqpuyP)_oPV<}4gKy7Hat(}qcvvyaaNA$O=_urg~#%Eg2Pd~n>P|B8L
zb&Y(0PE?jxkyV4e6A%jbgNE^t)x#_#yc*x+W1o<J`vHx~m{MCo{)3)I!NFpro?GMs
zXfMF1^?Kuj1?7p8(`R4tkQo_Mkbz_)PMy!y*d%(Dbwzf`0<w7}B(rs>>j^>f-ne{+
zf$n7rmp`T&B9tl*YkxANIEB+fvfUYVzeRWUyE4tnKFB)F3fPJWYUm;4V$-{6a_xJ(
z8DzOa)~HcL)c{4hx4QVMPO1wj07gOB+S#7da&+V+UQCk75fF;aW2f??cbq%Jk#C5$
zK`4=k3n8tkUg_tvYJ(hVQvO6er1Hy*_B&4ZudWzMMz)SdR)8yp@ZW)l%yiFOP|rvp
zfD7aAdtJ|7X-`tDmmc2pYlr^+OL3pYI)i-Tkfm2b@dqzXnT^WTdt36%d-4e$(@89|
zr3D2qvLo^C=XcrfKd)<VVFu&4@3(St!IWvnP9=*EtM9@Je@b~l1uX#0=s)h>df8>4
zy!|7z-z9&=eBph1KHt96Qu&vT;nCX-zZ%;Z5T|&)A$B9hccn}A03FH^vG<6Yl(yto
zX-`!8ojI7HwHL_&xKWPnkjw&YhcY4;Jl6#9VfVK?&hH#LlyY#tkRqgk5*t$8hsCt!
ze+MOjafRO_2n>|$U0OF)3&H-*DCB#CW#j*l*@EEM3jU2cX1<!`1}?(LPaD7ZJYM*`
zQ-aJe29&pzgXfD!cG_-8X^O)-EiqizEFmdnrn;w63(jf$?oJD+CL^S#Z_<Ka2W4RT
zBGchTQ_C$0QOei*vB4sR29N#<)KY2H9>)Xwq0guC+jCp(m7>);Mtj^!0)-{hO=rbl
zA&B?VLDa<}=gvKxr_Ym)qNFB_1zAeAI(Y)l2L#RuKU^4-Q5sDU<cDmehK$0z#2WGy
z=~q3;*RR$4DYYFC@;>F9Bl)@j^6>`zX&9>WffSVk9m4b%iRG*YD*%kme|*q^vtN`-
zfc4~Ak+h6n1uXr@KA9uBdVr-LGMbXg00yOyN&knh=0*REt+7cKsk}hVN#{~fw8bZ~
zYrAXh;||T6oc<+R-iQl#4^0M1^*V+5tbGg$7cV*{_C@ur_O*IH^S}w(+GtwDdmYnv
zF*Qxo(nL%@geN}O@3`(p8nia-E`cF?mX?<Z-u2@Im=9{JbfNcgDpJ3*s4bj^o4bUM
z9X6pJ#?2tuh0QN&RGVF|78#^g*Kw}rt59f>mL`+EWg<((DL};ZOxN5Zq32wrVq@)<
zYvmJsFDesLW4JYn0=*!f%??}ClY(D)Em|Dx`tHTymq+i{Q`h&km5j<ih=b`7${wE)
zl9HPhY7ao`1pgw&ejiZ8z!iT}5#{ZSoXm`zh4mct=$Q5G4Gh>_g=qzVkD`byhy;4W
zeyF^x7y>LdEbtQq32|XX;BOsp2tfm09WPik=;8n*AF_n7fU?Wtn6|o-)*MO)%R6RY
zar6ZdU))k=c~gF9DIW}{of={g17>23P|Ii(P;l5+me6`6nqlee;Z(A>-3iKy#md_Z
z#gbn984uBgZCiX>d?YJHQS4erb}h%F;*I;W^dsvQD}}9{=jk1ZMo!vgrKKNTcGI1)
z@%g;kF1|0+N`|}gxSr*~59`oB@XVle&xMAD>N2yijP+(VY<56iQ#`DQT)*gu63yjd
zvs%6}GBDU=_FR3hh+lV%S{R{B+frYj(ByG@mL`RBiL=C(-;OU%f+|<Xy1yF1F??0>
zQ$bCQeSU84IxaRgmiNvg?Xi&;vBI*bvNE&9>2T3L?zHQ@yZb#_B-}+M%#o`<k=kd*
zW#Wl(t8c3q%Oe^%ck3M$^^Wop5X(Fe5D>-V<Ku@%M@K9crB^Efa;sOo!KdG3$l@|n
z#y=vw^n?q9<5V-$fQDQzA#IZvcXD##ZL`}R_KeD0%j;X`73i4&cZO&{8g}Y>s5Z#*
z-*1h$WC+Acc(*q#$9G61aM~izuVAC_t@NE<Q(a5TortydF^!8Zv@?n)n`Ecl)UMhQ
zGmI~Ks4%OEv9S&_GqXj{lFHo}!akplb6qFZrIX-K^Q`iRf=yq{H|&vc2IHqc8*ur&
zJWO3&ZkAG0Q<*OhdG2^YuHnqt##edna3LCs3JZ5%A{$$5YNyKmSdqX^`cM$UPMcI6
z_2tVKrK~mG+_tQokK-%-k&%(<F)=Yw&3-WcjNRy{rpxrQFUt0{3;g9ABLtdvX<xp(
zk5}(|i*;b|MhmXaTB~%#_~Mvh+15AqvkfMU#qM;WTq~Y|KF%8|XDy3jmI4mBES9wk
zq<cum{D|GGoSY4`WM8zhc-`J5x26#+|KfltScV1G+zyQ!{C*v<Lk5C&+|pc4<fdcO
zmnI)&U#KQ0kgk0oO`!6#^Ov`pb>J?trc-bQ-_*AsVEEvtq`rc^BnlSFdtPlYK%0U{
zB+GiEi{Jg8Qgum-(-^8=!HnHG%M3za2KR0>b|}D2QC=5)PTy>}H^U~`U!_UTZn0!1
zifYu5V;+=7!KRM0gnH!66f6{E5xO1HOj@vJ<5t=!IxB1MC*wPLi$*8Av5$&2uLix6
z8WusQNLz$*m+ydOW|>wX$gsivSTld}HMK22Zj1~>WxvaS3nDYqgs@;50Tj<V`Ai)n
zoBe}AQda+h_#945QbR+-?yGf30{C_f?f!{RSWVuz#`zZ~(?~1z_4S)6(mU5^Rr6`?
zrl#LM78e(<+6|*&U^vOh$$5i;?4}O6u-~x`q;mxZMYFJ)6OYe*`}VEYknwirbR|#X
zC&Ah><6+WAIs34Hg`7Dh(Cn>L#9U}x)%L5atA4GXU|QI54a&*Si8rI{iM-HJ<fB6@
z>qToeKjmLaCPt0dJA4D}zBzu!Q9y+@NnLvDvf<+so#n0odCk#u&peb##9s8_q|<(Q
ztE+wdLL}TnIyjSnj#Jv8Ibl<3qqhZ|8dW(b4G7vIe*`}lkn6{k&4D+y`3YYDR_ADX
z+*UrwNr+qPX!;enq0S{sH@LF63V5)l0nRLWPhau)I<g=ZWI`2!YP-@D0$sM>T#sia
z<tQ1fmAm@u*#b;f_#bWPuo^_PUNw(c730wHm>E3o807E5%{GY8w5k&Zh~I^#K+>e$
z#rqLgjA^IyWHG|L(VJ?-7(z6em!Yeu!G7aH?VwfQfxT=O(5PTXHPP?Vj$_ciSfk7(
z|IK_2oQ@1NbQc&8NPFj!LNxu51*G)xP!rZTkkrcwiUE@1WeG@c*2B|GkK_f3l2PAN
zclX*-BOKJ=*>|m8Fv4r-h{b4}B&{QcfZONUp$EKYv;9H4%se?<gpl;+ki38Pv7xLb
z>@}~)e0@s`=USEg8-6E^s`l%*Z{H5&xiG{x2k#_Lvu)4X?7l$9rSW~&`#yPzuRLuo
zD9OaTns%}vNpB*Dd4SAbX;k~vhJYlQcoxE+Z*7`k$$-?>DwROGko_gajA_nf8ykw2
z!xM8mPiQo<S_a>Qb9lga3LW1Kw0C@|Z?m*CHM#2B+J1ohQyql`mog0$&d}gp0oy#a
zr_QJqOrQb5rE3jQq=>j9>FMd`WnmUe9V3^XLtBkq2g!!L{V$BeU1b`;6MXKxtmt6^
z%@YuNr~F&2h&Z=y%t4MaWAAtOm2ws^b7&X7UYsE)Hp9M-5T(k;(b*bqz=30~h!>C9
zsu&-f+UyY=^?`r@rHmhBDi#ApFRL=h&CMOzXNu!Wk^Wk6_~16q!^L%vH9J7*&#Xmp
zU6Y@0G{1dcx%P;^yxRLfey~=6yd<Vd;TtWZ*0-V={f1pfNJ!|qI$}9F*b*kX77k(g
zlQtb;&`0Dl*a9lSFtqWZsS%NhoFtU$i+AYF7*&cn_e^qB4wC9(l%ZmiHXMS*pZffp
zU#VppHomF^WIvKUfTk8~vXlZd`=|oxKTmL);+Q<<5cug(-hW6%bA^IpFgwx*F3{`i
z$<&mhzp*RP;sHmw2iEPH`>N2|eA19%&P7M^WFr^6Qd`9*ttv1I6`T6K{`yaSQ=3yZ
zm8nE3v=5t<O=mJCrKOejZ<J5QcQd_p#t_uNsoRITySowmBO_w?XLHP;NWZ<ewDbfS
zUKFC=dUgBBUZbi>a#h{%4n@;yWq!UXO}4NTJkvVTOI2@zk9$FJMEOj@Cf%utx6FY>
z^(Yiciq7USfcGu{6EU5o51y+Ky@msnCcs(PUqM0P)UWq!3hZr^<;+x;lcc&^Q=G|!
zm~tBaI=)yW?t(BX5++hoPi|A}CPquwLkq#WT&o(=QWm_on5M{@yy-B^5>^GgjFw(v
z&Bgxy{wzDm>(m!VlR0J87w{_|y!$p!n?JHyKL*;DiTjDOgARZfdK03xiEFA!uGpAX
z+La;D`OPi6fHYwEG>aa-^E)Q&d13s6ShkN&fRx|I1f3DY@n={TZEnrO!-EnY9$u~%
zGZ^T`Yvc+XEoK8fy>&J)FfgVMcDf=&F+T-;E*|cWJAbnI>JEvL2C&;xKsZ~tK~zkD
zQ1h%NY(+}t?X?QRK?!@54R%j`WKMBFNQlOz(brYvYskuamj}#^Uw3wPV$D|bn6>Pv
z-1Dh<V3@^bCr3~RxEF_V*QX*AR{33E>*Dh<^*_!JO=+^(1cr5alt!e#LFl*n3X7mX
zo<NKiD259ivd9=^IygjnXkBO5zG#*ik~^+X*X;nk-4e>biHMaHBqi7^HnaulGd1Fq
zZ{ki3zr(C$WS3<h!cu7i&Iuk`C|)D51{AU0FUpKmQc@DK++TC`VU~BVWNvY_i(Mc@
z>~1uL32DObLqvq-`$4hnt4949Lc1E@9(dYM18brzjg5^z6FPeDIALf~&V)p?)ZA*x
zKxqU>&&H;hwnpc`DcG&^nI~{HZ<(4HrC4Q1;zwU3eub?seQ|V75<UJn2E)o<(?3PU
z@;&pTU!@wa2O<mt8@!a9U@yYA%yV-@c^d;?#4tr&IEQ%yk!3t8D35PWV~X-O;73Si
z^7|vh!>J4pg4){JRGunAl??k)=jg;1t#x%5%tUZ&Ia-%D+M}mGPwG3Wt8I~0cC88D
zX<rqWE}vqDi{`G>*4EBZ_{W|*XWk_1p*%k|YfURr2SEv>Z|=Qs!KXkD6*Nd*hgOU_
z^t&{TY*MjsQv%X7sF+xsXcvrSaE&k~DRsBkApw-B-5_xLfz<7DE=|?^N+gzWM0-S`
zd+%_mG^*h3>#?L+xtL-uzGo4J?#i$7FN{mtyKjZ(lW&jewz-^!1>^@`>iL8-8$|NY
z=}!s!77sgiDdMxfQ+P@1drp!Vyw6k(e%a!8z!k}HriT=-SI2ab{LZsUj38?r@^l+X
zSNIXD!G*wEZ%|sG07R<2_xski8VV&I7l8pVO6t8<V$;UGUQ+X{r>&A<(;n!rufK^+
ztUC0FM8BO4PJUz0Z$4AvGc)QT&6=QzQ8n2#5M~}ANqf~ORC5v5OwAMQH%I>|);a?H
zgqN51kx9(P6dVC&|DflNo$T`4WG)^muP<{GEKVK$dap4hf@;k=x@dQCg=K~Np8SdN
zj*ILowrE%izFAfjQ%5Ixy9-^-K($hdHwmdj1Jy)A$~|mV8*j7$!9bG~RNBmHaBH|1
zC~xEWXb!&}V8Y`O+dMDemB01<9dzQ?LqJAS_7b^ke(mq?CnqB(=X%ZK7JzbUd+>$T
z0i|8EZk4mKkNEm{)w;#&;ST+dN9S1m$W<CKS&uRliop^DZIJv_%^E?fl0#gf*)(Ww
zl1SHAg_?)3jft9J9lH;MiTcdc$SD84q2bmX!Dv(HDGY=*dni(w>e7NFhfOP|!Q?D^
zLv4M%V{>&i%I&l{xt+E9^5W_^Ej(TwI~sSotUV=!>(a$AiWFU<%+18{j6gKMd-a9g
zdM~E}3=o1^qnmJ5gw_F_=upkj#^z*UV`BrE4f@&zO^iU1*muEhaH>|QC#~aAI*T7p
z0p{(hWMZuMfHc_}!fPu1OPbeF-XPwOBW{lJtj21X_xz>I>IF4@9Qu3xf|^LZKHJg!
z2hGUrMFH3s)HN4~c??xr;#W#aN}A{A=ep|fcD%8-*~<+i^&qbax_Y6~7&kXJKaP!!
z5w9)&!29|W%4!tOlOV!3ibx!>t|rcCs%<6qBnzQD@o-0DqnbVv=GFYlN;xb+1}>^;
z=qeS0n)1YkZ$@6354_N_kF=lU4KCG24r&u>y?P`wq?Kj-(Tk3L>UKL54<i`xZBQZm
z?`#P_mIk((V%N0Q+};G^6%bR98uo<R6_wAZEBYxVdb7@kRIF*CMu8wWuh1d0xu69n
z`4vKJpLI{w;uR%*n`yBX3A&|ggUllqqi&B6w?6(f)hg-tkx0Nnh(p%nq#Ft@R9OEj
zXYvT*n3vx$af@&K3`k%YG`{bS2LKdab>LHpol<Gx^MT?&>zblM0>MDDqaOI0g}u|s
zP7*%_9u-8*Qy+GS@*_JU$u9l}*M4qUv;H2QM)sFn_GGM}oLIvY!ZKT7JFl0R(sg~w
zRYC6|)Npj(EWoh+41`r9*<E>61pb<2h4=;u0YS#u+4(b<tjU3}hpHc6yt|=Up8JSE
zPooF)W0TSzH15Oxn}L9&o3L=O*JLL}QthfpkGAe;Q15HjFM~+RlP0h~i)W4O?d{>j
z%5XS2dDAR}j(t~Sjq|>*&^ItJ;1ef{Ycw`CR*c<di=yU<^s7`_RwNnHCgNfH=1+k|
z38G4ot(#7WA#LxWk&UWR^K!|dhV=eE4;&C{urlZ~Y<u>Db90rWOj1$ABt>cMiqu*m
z;(2+yyri(Q;!9&ID=SS#H_;>tPTo*&^ghDYA-3W0RZ|F0paKg+`Sr7eADUCLr^G`6
zFkM1cE)w|tC_(vb-RkrU%vzZy6ie!tCUsdNZm$T^Wq+b*<!Hl<r$rfv)PY7wp|uqj
z7WVEc;CfwFn>BIHroD%l+x2NZpi;2u1b!%x+Ix9UVX6*eTV}elaewvQKtwPv=%;wi
zLrs733+{l@Q<d5aZq_ynAyU%~W}DGnGwFt?+r%wMD-<%>85ynNjr2S{v9;Ju6-9_S
zm4zB$o$uwFwPiFNzMNX?SBIvMiQc{}*R9UH>_d)m3tM*)Dx%J*Vpt~_JeaRaZM0`A
zlN+A1Fxni~WkHmfA>am6$uaL+^WKZWKgrKNt2xU+Bm<PjLqCS(wsEdHrz;?cJsJlG
z=Z*Os(<zl5BI+H=xoGx^I{~r+$I_{qf~Mw2LG2G`>)Fw3x$8AuQ{gGJ@LD=GHJplx
zuT{GdUiaG;brNA$tkaGV`i?7|S(7VoV)#N;Of=;TY@X7fsx5!wH9oZV+zbrx^621*
zy|x7-=4E3`swgehthuVa!`beAZ))liW;HgME4D;~G}Rduy-f<zbP-({A0&0i?1~nQ
zm$fEJ<tNc)$Dj3<791>5hZhuM6`gZLK*|XWgX%;9x0*oM53UwwU8ufs?dlch>d0Dj
zrPn?MM%J2fsUPL*5}jULs$qey8vSMxeX-ZfXR*yu&b@YnMmuCya)r|)KtC}6mMz+8
zE%fWHNV|(H3N6FA!A3M>syK1|a&mIVb_3uCoZgQfe2rRUajs@d4Z41}-n|bdO`ZPk
zH1G&X{yf;-PC-TBjau?ub`;wdk@kCmNE%m5Sm5}xhF~!hD^f6zuY>YU<PkFmZseLy
zyOnEEu`9M<Nhe}K^q{xH9B;CBn@97L62kp92nI{lv(|KMM<8IN<id>U%NVR!ACPzH
zQA3v#eBfPQnwmLzpCQNup796CW@c@_%0?wG_fNSYMtaR{s;Q%MG{3yumPd$Jh&veM
zb?BM6xwV?;NN=4P5+oJuK^j2V;1}$R6cfe7&VJKMe+y&(W+K**yvIPq9n`XG>OGMu
zLSSC3d?>8PEWu63^=S-xfR6OUan*_f!erMmozj9=!U|vTP-i;mSi$<v$9!^Mq%VOU
zX~bfY)atG+YM?YLq6xTEg1!ZD%m=-_y>4IOiML~FE(A$l?DnBv>cx6XsTfDpk?QYB
zm^A@vDNY@GyEZ5u*==Jq8Hf9NPvEg^ChtSM%2e`ptlp~a+&h(=z`(#uz#gRomh*7%
z`Sd#3mM=z}TJtFHr;uauG5`7zB0RhU#LVTLr+`2=?#6oL_s8+a=2@d9CrD|RsO|GQ
z&|UW`m4ssD{aRq2#T(f*gGk(@2iw6MHDsh3GCV6@o#$BH6s&7#xQe}FGdtv~-8n@5
zMlS$oB?_KaX|Ji5n~;#uDh$sT-Mu>T*+68fk1J&eN(u=bH$hgsw>-M$f}MGp{_~<O
z2%H7%$tt36qM*@KRv<-6>8Xpyw7%g9(kXj$mRPK-Z0d#D<d;&_>1C%dR3FV6_@9u$
z9@_V!=SL257J}SgfnV|)ZB<GXrMXQ^jh4~TJr==+<zvOuNBf6sCx!<Hv%ewd8Hyqw
zJm4W1*<qudxJA^cd#jStlx)^TBymn<v`6S6UTV*vwC;dyHEP4%*L*>OqoX)tz~39u
zuHZXve`ZaWm|-cO1Qer+#KbXK%$D7>iPeCcoJ5dv;RH1Yi;P)|D-+c6preHOwvqWA
zOz%{j1`<pGHsh^xgfK;OutzVyMUR+mAL+sa>D*5cUNVx6OdVTkz(o2&LPS=$Lhzm6
zlX?4Cj*(avuwF|5$Dg}Q|ErtKKhqR5Fh3(ces#zDD?R)F$+MWU>xmYtvo0^I?#Yks
zUoqrj|4Akb5n6d+3slS>IR31}?`{bHp<^+_AJ{#ml_$qy?<dH8p$zDjAwvL~96?K@
zEImU#IyPN`gtWo>e9WPjq3O^2aaqMF$+l4>j@4UUuj|(Ei0z=CMWTgsHeNhDq<p*1
z&O;HgDpU*@=Jpq}$L$nji5lgGqP&;xJPsZXCkPBj*StvGN~IgVBkFG%QGGfn(357P
zyZf;?KS3jau|G2UsFt>LQ1u#{r%uNLe#I$dO!Nh*3Z)kz)A<E~*LYfmiIvUe*tsKh
zHi4eh%^$>~1ez^1YmkPRrE8sq<h>k079^EM5&~2rzM#pElfS&p2_eoBWwNq&I#DL+
zf!<2g0++=YopMiLIF+daT^`(i*m5`8XwbkSL)}EoxU|&2=J<Jdvh{(^UJ7(8*2=}$
z9#wx}m`O&LYZ*#UjVW^cJ=XdI%qvZpS=MTR1cYI9I#^di<Ar}$n*2!jM6gc2B*kIo
zN88uXnK-d?UxR-7x<ZuijBrd;+z{pG6Fc&rrp=HxPP`4l`5D%<K6hO(reaCK-^!V?
z6t1Ce-<z2|Q8w9(6Oy+vS;!9K|BXAWGfm{Q``$9W_F#gbem~a{>p05fXimgth?7Sk
zlPjx=XDVKqDMf{Avmj-c@{TUn-n`%hs)Mo9;l<4#ZVCPlTkCVcZp5$AuYT|H^gv&7
zviaMdguSVrjgdW_yqM)*w<B0-oowvs42=K+L<@Ub7fXvnbxZq2cH~E|PC??1*QYp$
z<KW-qrzS=NoFXUQSL$+B(D3stoXtz7E?0JHFF@+qwL8F4PJ>6451hHFE_$|2QMY3@
zh7zz*(=|!o&v4XG>Y0%kWYFGStbA|7o51v6bu*C;)I#(Bn&3B}rIlwdp|2v$@j2e>
zQoE!HmAW8cz!N*q3Jt>9L`>*L<};sSY!D1n{){%{H3Z%TwGjEM8++~;hL`?2)WkK0
z9@Wa8`)+QgY-ygJ?JJiV1LiQf&MG|kcQX~Iy6BJQk_c}7jH9ncP1ipWr;zAjN7=ik
z#}swI)RIPpN$L1hCn5w-+m-gdcU(Jp!7*{%7+IRT1iSVP^vtZ>l<Y0VyC&Xwtt<$O
zI;%rUT!U^tIGdp1O02tFH;+~1p<4&`RP8oTrna=UR2e!^RnL|$mwSgF>m3hw<}TJn
z%j@eAMsQ$1BZ}%_l#q6hh!=DbhkWVdsqqdzzc@2|>BzDy49%NC#G$zL;{uz8lZEHe
zS~_Meg%wd{iMObCWG~;q9Rb%Rq&@_s9$Z7!H5tP`g**#to};>Sy6YPVvk9mEID`jz
zAR0GW@7@h*%_u%+1()OD(fr{J-6_oj?xNyi37PSFRc6CIY{E$ALIc=gF;4@VR%7gp
zWePl@+^0i|QG!-^BA4MsU6KJ@Nr@ixktIJN&Fze{ey4Q5;nU>B*Qm*xw9*=Ky2PUf
zFYp4$q1&-}1`MuG*?&k6>Q@+lS3!Zmoahybmg>MmsN|+>hM+V3yu1!u{BUYh0f2ZQ
zaR%$(YgEKs8{l>~N90A{3YqFde_p2|I;UUXkZlzmgsAfQ*{d>LFAtu&81WM?TeTJO
z_NB55d*+xY6#=c~c(u+puF1it%i+t)P^s({>R?1N<pDbTiUStw<;ch3x_BVBcS(_3
zJNWfQj+0!GEa&3sA{gn>zNaX%X&D=K{(Vd9qB(c)4(6hD(<&mAs6)=)rN4V*EIGQ|
z0~z9X7C9M@A8ijVim>G^0s3$AF*o;`_KQXIS?NTjXir$c;2yC!FD}VS#k~S6zhNi8
zMu-LxT%cBA*_Xi>hIix8v`N7berrUi;fykv`(0%>sz!zNYV{*a9fNof2i&nllSK^w
zS%svz+9hm1IgSGm&Yq!4Q}xpecgUkx^K=Z6&B`lv>tz;c+$}Lj9c4heviR+Le^6k&
zf5Db%T&dI8m%XG2w`2U(&u{G~+*TVguMZw}a+fCE7au0}$dec9=Q!^fr?;#iY*^;U
zw~{YNY4H#E2+HnsfrakVtoSOvzqB9N@Fm0g>xA;Vi1<(7Hh_$<H2jq-(&oSQ@BTZp
z4#}ZTyspL?lyaFN!t{1(ta@y6e4P0o9QX)N9QZP0W7IUG{~*DicscO)iCHJ+m+A5M
z+He8i{<4KFpbz-K>KQl?$N-L!7P@RKze0JRVu6S~@oecn*Rfww^9jZ4^}4f%nb%Z*
zl$8~?KV?mr1WRX^v?I9&uQ%o>w!+W!=GaO4T@l0GR;=;R-rVtQSWH6D_=Ra>c?Vpa
z!jxBHukspITr!yswt#AtFzUW-;x3Lg%ORnP(AQA;8W1QpQ*`1)DZq3Qr?Uls<u5WQ
z#G`fe(rlXmp6>DB<n1FBndz(h_9JH99;UdAC_4Aj^A-V1Z)H+xMDxXljnR#%GO3LD
zR|06914I#A5*IjFoAgChi<XO~I&UE_k9G>XhZN^tc9Gx~qrZcvW!Nt$#wo~W+n0^2
z!yrWujNiBRzm$cHNBbCXh1ry&Ap<up%qY#@bZ@hCqT+SCAW-_EC@t<7XV$oODuYe<
zbwWv$vl}`&B?`T)*u)OEd?yL{1vMB$WeGF=CtRpO1=$rIgNo$-ju!3hm-r|-BC{<<
zT!|HNNP~0X6JA9_bsvM2{7OX9b?&{4ny&hkThb$l6z2!bNrGc-px2AeW3zp}@hPdh
zH&{J#eA$qAurRqoeCoY{*d*>x+wH$jaKEcVPZQk#=#}}4Uo7L_Tr>Z{pO)~%pC(w7
zC@@iyV3yG1Q=cCdhnYz_tHos}Z5DKMjH}Do((^KA<KWbpW7nc(s_x#)i?R2Zii0P-
zQ=xm|2J+RMe9GyaF-qoG_6DBnnFhnFpSU7XnJi%1(s9nY-*n81>hEaPPoJpLzTB8f
zpL?LS_YF#du}FUAC}&xzxWfo@QNiliEI<mbMo>~DI+yfR&`Q-06!VOcff>Ii`ux2O
zLWnOL<5ZywgZ`W6-SWT|m}oJc=@{1NB1Ta`jUNKr*pv^XQM9M8G-5|Swg4@6<&-M_
zq&7?qtIYb1AIYfC^j03ZHy?F#zzKErXY4gc1Ma><9?T6vn0)Qj@kyG^8y6rhPPbOc
zIKuFET=Or)kXVsC*{jMJB(@X^u?0u;l0ziaHOq9+h^z-!CT;H_4x`F+H^z|0<t@$8
zzfSJ2XGMcu_;9~?iL}76GIvl@x6?JZuBb<o#v{?Frd?Jd@906Xd_X3!Sv$l6>v#Vx
zk}qesyRMM9`?IBpre?%tkE3tlGNw8w2|UiuVbv8z90}6Bd;*C(k-m3qYcFr7P{G@I
zgL(m}H>`+Tj;V%m7I!<$A78KNx=!@^5CFs<PoW(lZdL0uw;)}~w>qb0C#=ls++NHr
z6s^rYV=-qusXji1cH9Ic;h$>t?{b6ace$a<$Ur9nU^4&ke`5H9aq<^eZ)Sjv>vQZ=
zIJT!)FG5f5-r$W-(V5uzNLk4L3|xjyw)GF`ra$%;4k!f_^aBA1wkYsSW#IVtrNaK_
zQgP5(>bd?QtbWC%Q&Z(H_euW$21ySOWT*)RiktIGg?=XsV+6ka$8h~8vanwrB%dk7
z{vf?q1pL?mseI(sKOg5Osac9+-nR}xe%=zg7T$L?|9UhwR<u#}$8iQ(InFdx^#p5D
z+_6W}nuXgN<Lx1p%nZ%8`Gbp9=>q2QW&zSAHtxXjulzXzv=z#rhf#@aowG2e7&rGc
z$0BCp^=@%6n(tjRIwy5*gSfb8tkd5ZkdpQpmsz1n_I|2UuCWSaFo@|-^;u7v5lVwi
ze(?o2fap69>%|f6lu(J{aTW{N#Ao}p)R9-OCk%<fu;VH1U&#}PXV}XS3{;d)?RJG;
zA{&}BV%)-s=1nVNPwQd);AR(wxnz)H0+VLy?J@sx;U|bom0g$M9dDjNfcH8@QTg4h
zAF&WKTsU^ps5OQ*7h5P*NSFRhNBNJkh}nUCnW{kuI#uD!$#Jwe(XUKVx<4^w^cHkh
zkb)CPY>qN1CA-36JwVIs1=;xX(~Ww(*A7bH(&A=C%iizKX=LbUsA4T6SzJ|Yf3S4M
z$sLxA#Nl)lcr|;@8Afn-6i3bNIRKhjJlT|?)R#qyiG*Ru1fOFyv-CB>jp}|E(V;oZ
z_{}#m>KKxZaAxmt7mewqv!B}<pTc7%_tC#Ql0jxZBOnj=Nk&_N5m@;@jzFQ``}%)M
z#-aG+x@ZqL-ajK;#+06B@K>HkUV&yV6PUFie(>ggHNt4o$jo<!!&eAlW&RaD;#aGd
z!CFDWp>nk9H6C0%JV~<`t8ho#IZirn<#xX|+B&|0%6^BhToaw?@QyK1T)!1YLHORL
zhB+F(w8F3!oc~SSF6#>8vYq?sS%Z+ewF%@NPv6@G{z`#w-GisedF?3C71*~#@LnWd
zuQ*%#oKp^%8FW#m#r<6L=_}pA*`|?$&<%0RxKX+Dm>~68T2c5(XJ(d+K#(oAYt*OT
z7@u=Yzgdqkl);Tr0?XcheLeB%t}x6zVp@-ID@aT6lR&g&2WImUx~vkMsJK}&zDn4}
zJip04@f3><rp9zuVMtYACn&KLQ+tJV<7=D<M{UGwRFuuEY<-2E<j-A8$y8eLqxwCL
z^zjCY68$-iv$fbS*T`s6HN{IT^5RK3IEbNrMu_)k_4;kqGdry-pni_jUpmj-H=1nT
zu`!*JKgq8nvYP<|;GK^A@=pKnUh%Adqn{W7qFSJ7_o^DIu`ro^V*K<jgb74zYBV5k
zJ;q@GTC+QKFqSw}v2ohF^7SVM=EEH7=*pvmW&5Zcu{O~;5eHu7&IS5!t2EZu_d<kf
zAF}&CWc;vT&A<}F8E;^Q;bX=@*!{lsZS~M0HDcN~Y>WEdZ!c$10Xjb2GPIAQn<25^
zG)Nz2FNi=1;>9Z2y)Vy_FNcqbRJmPHF`6D+Q>6V)W4iC{H_q;?{AD7eR?_}TP3H2;
zS4?k6g5NM`#S7Snvg<1nqVCAnaPs3-zhe@ez#EN*nTM@=caFAW`k_d&;*HFV4d)pO
zT-zt%dZvnGVhXG%`emEsl;Ls)U%_}bY)e=Xyq&>#wgoDg6c)OPI6jPaJ1nHFj!rLE
z#F9g9_C2G}tqgMWqAmQmQbMx(o_dC`s%iU~TORPNTs}sU^?1?{4<ZUB+x7m7ofa3c
zm{w1Ez~`Xl8~pubwsG4C*z2hI>PXHhzMHaS=bhG&;Fn{VJs*{WvT!I2f?uWtbxpd=
z(R&q3pfpvWXHC}^&T*jSMF&oO#HioFULYiwMktxCEV5cr3@5Uf#!j9oO-A_?(W-ns
zsb^lg!K$%_FDdcPI>iaQD8>ff{vjxlEl7V!QK8a7>l0@7G1PV=-t<bVBy3uVTn_sC
z2<udX9En=iS-65|?i5sf?KQ`Couz9xvB%F1#ynZVZx&XWUrpOy6bPKWwRRVw7pYH~
zNkf+>6?|hih!PRLZ>M^6zI;m;`{g`EYFwvGTK4^&tE$>@CtP;I<pJAM-{j%h*pmc2
zpHF`Q=jKWO8sU@Uf0H-AMfha=8<*v?L#$(z!qbctm>H)_=sAU1P1zvR0&V{it08i)
zBr3Mt`PCe2s&OL6-KtEQ6(Tb-G}~_4Jzng}Ty5j!NuBlQKH=}Ia!O7JET#&>NP2lC
zQLL|c-sUi5;gi(m`nhjSV7SAGR=zc7NqMs+==bFYB-@L>mmr5^9`=svyo~u;r>_;f
zJsp7=8cfK&u*R=FBAWiOhNiB>;!S)Tn?}Qk>yP%Uqu84Bw=+kOarNFY?8@X$c?f);
zpe;WISH-&?O&cskjiU>jR+tm#(TuyFyh2RXw%~B8hF0IXI^Hijpy#Yc%6%km=NR!`
zI^)@UOBj)y&{YU?#QVIgG@iwzxd9q48W{fnUUm5oaKnE?sr^E63J>?+t}FkJ8~#F9
zpU2%vq4{rs!`L_}AJvnw{}G6Q!sdGSDVXF3;Q05o`DaCpfrE}wm;Mj#r(cQ4t*J<f
zdBC0`Vph%MYyi69e+>O|p^Lr~2FfA%OId!$mHbnT!hbSj{}Nj)VSYrG7z!;wuQHap
zHuMZ*kd^gF#}4Zq@Of2%16LJ+1HZ%D<^GvhJHc?0bURI1s{MzGw^TW2xype_sh794
zoRdms*mZs2_T54!r^N%K1zp?M$j5p2G~Fn=%(>D93rF6Md`F{Vo9d<cYekTFP`Gnh
z2R?Dw)IskGVPxM=*mtQT+##}8cE^Izn$z2K86m(zeK42je7Ah(I3KDMp3L7@E}|vS
zS1lq<Shk2BkZ_OPv+oI}2azeD)^AN%w&jeha_&mgqH^vIU3v=^@Z|?ekNG3G9*cKS
zRca@{+L$ik#*UoKDHxFz?FPbA(vA^sYmb7D3?!BzP0b;Q!pmC1n7}vsC_s_}g~En8
z8C;c0C!jV41>8FagQwILMvq0;rz#bRFl}er2*4~kK=hdLY6se+%FPh~S#rp-=X;z1
z(;h7f;a<x>YA9KOhZ6A$^^J*G2s|ZEXCA&GAH(OLlR)6?1{Qcw_0!X;b;C(ZZ`pw2
zg8;?n0uJOJb1$F@d_Wa4fhx!mmhG4TMLE}iFWbQcPNaZqp^2<?m?5qP2&`y9?+uXI
zFnu2wfZKLGz5<^0&Kn*mKouV(P|10Gk!3CLD>2|nz7Gn|U!tkle~;=hk9<&28>{An
zE#<fp(_<NUq$t~&#}E91d!JjEYTzCJbkWq)MH;|Gl1~?zJzZ1|Tx7KDQBPULH{8?=
z{XL2iXtlXJ%Xzbb$-oPVjeWsH@s00-kR-Owgb)(AI^q(jNtiYKsD+q}B({sHBP6mv
z%me$1b<6!o$T<k#lgK{ozYJCC)F8LrSH%JTGmitl^dtlR(<D)OutY6=!~_mRal5qA
zRKp~a3c4*S2`$~h*G~!WQ^FS8)DaE#lpK@TdJ+adC1Ov>0Krg->>y0&+n@1$CElX?
zU--zY_jRMyF6ku7?udb#Cij)_5dvAhBv4$0N~on?BKluC$wCkCnTHUb?)>5DX^Brs
zB#;=&qRwI3$pOjPi`cZI0Pfhn%Rug!rzB48Qdhj}t`aCPK5(!B_vQi~>)%(h3Mmok
zBFG73(uThEj_E7;{1A(K7GTp!lEh88OgBU+2YoGNH{x!MdX%)4OdfDg+Pnj^?j<qq
zD%hkO>#h^0W#35x#q)Hj$n&LBFMA$hmoJ{~AoiU7_Bng@Is5V{JNP-<=sA1wIs57<
zd*C_S@j3hJbN2O9HWcsEy#t@KH<qlPit*{G7#wF$#i;OjDh5*~GLSv~oPF_>P3!rT
zt@NBdOAdaY|8e;)-~-SC20+aNfW`(IGBZ}~k_z~j1!#yMprMJY_YFE7;xsd(xni3h
zh2lmfHtqzEo|4z%Ps!6+#?x8G)0xiGna<N$m2S&Wx!fQQaGUhLlAi+lU#x-V=K8Zm
zSAjcU16S_K_&rR?Sb08mJx`$PY3Yhf^xSzr3eA3sJ5O3TPujQofp6+tw3|(+uqwzl
zA}sY<gAm)r)W7Itf=pqLklN>HHL3GwR6_{o>qWACGSl}BnzEmM<_JCV$KJ1c#+^V-
zNp(PR|6xA;Lgy;Z0s-vD0XC+8KQsIX=2OOJ)8e_zU!qlB{Pz?e1SIu2eGGJTog`1;
zAfEV&{v|&K4%SDUlz&9t<RRo3b_HgY@Ly(@-;HTcb@|8Y{9ln40c)(k;lEaaMHaHx
zYwy5?I5KlqVG{EQVN!EsmUq$~431olaQWITu(F#!kLvOKzWLk2<Q`V6M%`P{FQu#-
zIkv3i?_TM(;RoHX^sS-Ed=VPz=g+UY`U?HE!Vxx=<r)#YyLKwt?2<^S;VZPCslDa)
z%JPaOIF53P>6+-C(pJh&oWk1|aJwg$dZr`s@zKdKEeaF}IFkzf8%21N8wvfk7ML&T
ze}v5dONf_QHND-=ryC(9GiY_6&{{-5wCq#5cv3w~`TZIDyalu(v({4iWw~pCrTLI9
zzM-+*Y#2t4yhPz}Xq30k_uPQH)VLHd<7PdXRv^$Hp=`YTBFldAj{@<e-~v>PQI>=G
z=+UWcGW77B;EZu=R5%o_4=ue^-WBT=n^#Ht>d-pn$w!k(SOt00X6_q9H`auSvWIIG
ztBr|W&Ygu6ASRM$F!_>ZunB=9em}G3RFiH*b#{$;w3XdmrCs!xnp$lZ+=t!BJlfOa
z$34!CCae$WbLes$CTA!UZ-k|D-Q=+R3qm`cku}Gf>gV>q*J-9F9PhriZ_Y}5V~Uoj
z9D62`)@j6jE`I8CQQ5HFhKpVPX>BJ3&BNmvC7430Ow$7>apS+N;eNM_{RbVK<)8Nl
z;Qw2ydde;~b|A<L(5?R^hfQj7@<)y2fAnjE+Ubt}Z#Zn2pF8$1<fRsJf6+z%Uy+x>
z4t_3{{`^_#KO--#KxdTj1%_huFN5{>_wt`8*o@D_`y+oP<{2gUOQrr#-V8%?bAP8*
zXQEr_q~Kwo`;#;6%dZ?g_|F_YzjCZQF8T%d164}+rCPs};{B6$t7v3sW@iL!;5b+l
z02B*mR)32v!1P?V{3rz=Djg8$>!6Upb5REaTscTzu)s=+c_H4ymQD(ajU6;T0g*ZA
zm>0WXdY8p4Rm=Oj^WG9cliKNiA!06L*K%uuC4l1pVeKn`;>@;g6Wk#{aDoSScXxMp
zcZU$%CBfYtg1fuBy9I&<4-h25UPET)4$Rg0UsrV%)lfyB^X+rCt-Tg*MAGJBlyHK%
zGzHM!JMV6&Ev*)gIXF%^197Fn*YGDucn+qk)x+vVWtar^I#U%u&DQAlUncz&A+m~A
zAaxLp4$o<QSDEZT!3+0_C<l!(C%h&t#xpciLf4mVROaM+Thw>$Zi+KU2}6tn^RvhF
zey@X++CR!PT%#`W7#$wZo%d5yj&DWL&TcUOYUW-vTM<D%3?$?`D)epK<$-vS;<m5^
z$v!BP7PI(Ptvt&ZFw>;7g);=AYmtugrAfYT2RKn3y)4mg>JCvOkL0HtkmE?mfU`aF
zZ<91sz@vE5Ewiu&u$ufj&E$V_R|>}DxhXfz4n*Yf-BH~SI*9*)@6;anne^d5_)f{j
zGo~Ykmlgb&^y%g8ks_k5p6N5y{}Xv8q86{92Xd#U)n&p+a$dlPf4nFGKRsCvzlou~
zIj%0C(EK1itpBT)|ENsyOX4gyLiVBE=bzrBUGZHMNuQ_A+cy#y*q<hwhWA2m(8;mK
zGF1~4@=M!N#qh^&aKz+lQR%VWh9B>`KL*s*P&e6eQgR?&@_pl0I3?l}0XYxOppYG4
z*O>xKH#)s&2a<7ydLJtK)@zK!BEZ|fuTPuOMx57_BkoNg==V^c@6%;90ZP$3p_%*s
zndHf6b>BjYNx$*!+u{OQG-zUUSr_M_2RH>aScq*f_&^E-zO0JKOLWY`opuUvUMf}%
zi_}UCE}fe?mQz_x&Q5Tx%a(gL!G^kL+OcCOcP6Ggx$1!I@Oh9`1XngJ6HS*n0Xq^x
zGKE`jiqxHz)6Xpqf)8m;smXMVTyec(Y7iE&f7`m$q^->95}2%?4rnNL(yQtU$Dy%k
zOe~d|GZD^oxQJJFeBmAt3V}lu;;-T`04z%nP-Xc?X!Lv>mJ{$eeh(-9*?c*_u7w3I
zuZ$?Jv#Em#F0Vd72-_Z4!P?x=3P7Ur$W|n8`2b(KTfPe+NoNXHbRiIx=a}HtjU>@0
zc)c#al~>n0U6VauY!GzMwIqtGki<ZVW7k@@bJS3EjMLe~Q933pe|}s4hUfx4Z#wC7
z&TLwLXVNw+gs!0*^sv<S-bZE~PIz!`7trJo?n=g=G*~bx1p8~p*f{XuIK*U?>rI%Q
zm5m^qWbUeVojE+UsNvymtBKvVCOIW3QJ4HUpawU!?L;Xrqh&HBcFcM71&BMuHmwiG
zwg>70Rj-Uhrp90g1>+~X3L;V2#klasaL5~ggLm9u9fWlAJI4n&T8ah1FIv7Mo_t;-
zzC7+j-L(Uaki?7JH~Ge?It1juA(E=hvU<1F?^jHkvEMTjyA3VLjjC~;gCvdq`DNu8
zWS*P8w8Wn2C~4WpCQx<+z`!~4gwKr<k`wz#%+%rD`VdxplufP32t!hobpK@vQ?pR(
zQYxm06>`mcVXk+S)w4wwG1>wVv4t@;Y!gj737^p;q|-13cn<=3-PZ0Gy)J+km5A<_
z1m`^$E~q>Ctc^q=eczA@B0CBg_$QLsf>M-ehhE2x^#3R$MO9fI6ywCUUsdR$_IxxE
zGi)&6dVq;oKM5|LpV+_L_J3^wJrd5+(mmqYa%CsX0Ou9Jp2Bxp-GNY}v}6XV$?PbR
zCsjKU|LSn1d6Fr2WRLA+HC_c8$`t`c1n4r&erzE4oI%B9wL$%Gh!H23>CiKnQTkgT
z<fg3QAXjGA9LDrf8Hf>yo#Rli6u~i`I4B`C#8Snv%)OfeA3H{HmvC^R4GuQ~VO}Zo
z(nu0VNt`aS7vESWW*i=tXdNWY%hF|Nm@hn2l0})Ad4?)bm1|>Yy)TFHSgs`I(DFxP
zg+!d`-fS1RRMURIbTU9Yum8?CBy@4QY%<$apds|V5Yzgb49e$kdRYxvwToJ+-)_=`
zO4-SHj`%Z9$(xUt?TtJ03Ple^gXJrbD%T@*(0JD!Brnee#3Wp?K_f)1?(YyPSJTZ_
ze~`@6y)ecTzl4Ope`QXenm$+)B7F2Klj&se8leBnas6+m{~xRKmJyQT02--)v1DyL
z*U1kC=7qLX$UZ08dN~sr@1knZcSWK!qiRe^ejFbm0>QG-#3veWr#es8n4MI77$ZR1
z?Mss%%nt3v-aCRLm*p73l7fT#K_Qr(>A`QJ>>@I?t04{?_~~?jCV2P+vxDZK^Nb4J
z-new92^isaucVm&CxH{hxlB_5uSt-kkxD1awibQ5i!#c<CV5<;7b=OLkSe3Pg5<kB
zgh~;mOU;dN<4@>i+xB@E`ns3xExVaVlX%A7HTrI^XGh9+$E6y=<d<?d&{?lR_?Rju
zfyh5~`Qx<Vi0+=#m3y7c+}#7F|N9o}Sj|opc@jXS?!h0fI~p<ArN2)9KM%-|pL-vG
z{?WrN_Ov>v{1AS<SoO*pzR4Pn68l3>7~oK)c0LZLAgjYtNl9T!J7}5!Svj#mb$_xa
zmP-x9M$OM-L^XD^@(?qVQZX`fsVLF@6b`S^|3}=_om7PKc=8N`s6;IQ-(?!`{>SC~
z{M-H|e0=1Lv$U}=)i-s(1yFxDKG29geE*&ZfWRLQOs{s6^sA$m>;3Ab#m-q+WF^4_
zU|kxk76<kQt+1vdweI7i5g#Azb{<?p>9m{v!eM$;#-SsQZhh9o%BDdQRS|ggQZs`o
z!L-#~x|l|uWZQ7zN?11sDv;NX{)_h1qQ{}@a>N#J=&JloU)6xeH(#!*OV4<<^Vxm?
zf~$e2554n)O7&HPt{z45mjw<Z1F39}1tP->YR5(Q$7QsE{X(UtpW8*1e5)&};?^`U
zXWINug)6_}<qoF*K$zn4o7~p#26^MF72k1mHqt~lw4i6N^Eft=%|=qkMEm8kMCNrE
zuq572T;*|p3@Fjjx<*>?Yx$-eTzhDU0{oM1Q%LEmiK+38u(I($E55fG`N;^;rS$%}
zv^i1EPT;qgk>ax-pbw^!=uj|73OH&YPdwxEM4RMKp7Eb@i9Iq#{Vv1$sK4PJpe=h+
zEs7md1)!&qJ{&ZeSS&!w;KFCNMS|}O!vY@3ySvn4hlCaZ%w4Z*tcKekH85+dUKPD7
z$?GzI=MjMav!byr+$x4aEjUr;x{CYu^M^@_88dRE)6CU<mmOnbYn%;_;|&n}nn9cf
z4JA+lhy%x8+`tE^*&oJ}=iyiRP3T_K$*!zf4#b&7{>Bb0UjLCXTWFUwzaX#S1GYwA
zz;S&+lDN95Wuzt*fE_q}d^K%YpCQTpn5p4P4=JkTff~34Kn<MHkTkaS0bj{GX{5Mh
z;fwq$2XBt6cSQ45#t+oMkVvZ_LwI2tT*KBycFUcwJqT%!5EfSiyYy$60o1_nlF)t1
zAB5?nUv0ifGi~1e6z<kGyNo$w>=kY-lO$GN`+>1YbwnqN>Q-zLix6bjPYfI>{{3q}
zU)`P=n3Gk*l0-{5{)QO_rY6p}N`Uf;Eze)kk<mG6Is#X5jq!_88v?V?O5W;E49I3+
zDLvF|Ca31ju@}`A7FNXg1@G*LxPFkJfo_cH(r}%u&M-E;gq6>}tD*jK@=mUf+DCkL
z7xE_ug8zA>AunUJtz-Q%^BLCrdm=lbA<!FN%<Wn@h_;qTAxTXwX^005Z_yJU`5#Z}
zU+VqZw9Jnuwdl`@p2Xi4UT38xCT@E~tdIV2yMU0yfYHPJqLIZ&{8I+LN0Za^|0M&b
zW&9`5d$PZqtOCjiHT5jCoDXEUlTTLx_Zxp~l4?@oA7r>-wPE@8fK%!J<kI}#``HZ7
z``OKAMw1^cEz)e?2E@dXMldB*8u*p?V5r&=%I-P+Jf7)7OU}`Z0i9F6%(M?5g*6th
zbQwJ^<Nt9@(R#i!v|Ej1C#4SplC`<6Ty+vlS8wPb9knJ|HBnwhHF~GHYRyCiP8U7#
z9SL7Ht)o5Cqp=Uj5UodKvr8Banx__RkE*1$;CwlIruRf5-%;q*D~|GJsbjHi7`4`t
z5+YwWVR&($v`ZVM1|0!NRG9usT(T$>AUY9$zpnEIxNl~H_46--6$C*_)|F~rx#ysb
z@|q!DU<oPggyTk94zc&z8O8npwXNn=sh!D8;Ke0r64n{wDP&hCfMKDQDvq}aAZ9V|
z$+5LwE96{X*}(h~c;~h!v3}aFx`HC|Mg_l5@~$HoOV7<h1Dya~4O@K?hj&Pc$scIg
z1n2}Xf}e=8JpA_f3@Kpvki9D?jpj<1yO<pE^Q;L6K_5sVkM_7KqBS+#B?TIJBktmn
zz?#WN@R%UYwZ<0uM1RLb7Y{t@rU<jTw^gt~>12~m8rghvM`-&$9KG!$hkDIKrwMrZ
z#}dRs6n<dKW>Eg<Ot32PrfT^>nkNzX!IG7}vChJ(lJzGk(N`=^_f!n!V*wbtn&_cm
z4=np!x2iPloE`5)gfq==_72cT2d7B_q$@0|GaEWRwI`8?U@zb0sy91gmu)zzTb8+^
z-0QqoLW0Whxsz<dIZTqkCyHhi0#Oo*(vRcGeFr)A!k2J#sEZ%Z&-}WLCC<DK;UgEi
zyQY%gWg))yDsd^{kL$;bzF%sLPX^#sctHQ`)}ME^|B?d#75^$~@GHmqRmu&G(0mYa
z2q+sWqX`A*)_@%V532Yq>GcauhwkR?uAvo<<4;o#b$a5&9sqCnOTM@NnbNw$S~VI{
z*5(w=UdA<MCs>XXxQ@i~b|WTkYetLT8l92|nHr|n<6vF2iKsg);M78k-aBZ4-8X4M
zvTIhd$r{dL%Iw9l`r9m<6Yv!plBC7@7i79}s}Y7aX8WqOGlyh^$l`HZq!hThQIJ}1
zDX3R4VKa5txDUkkS%j=2@<%$urToLBKI*uze$~mzR2SY2LX$I`x~WdD^T+p@A$Z#n
zDKE}Lf(Ss$WZDFNTf|APn(B+p_F6Q*zI-pEsA(jv|8|!Rl=((B<@Ac%<EJ~xs0U~G
zJ6>|gQqR{>LiKEqVHBv|JF3@!%Xt&<{?}pDe^DK!e?$zB|C!<2f#7f6YosJK<qTCM
zjLeK>AjQ1@s`ihDp`MVW_Q&1k8NulOz>fX2#r+(b_m_b1Ar<?rY+{J}pb)Q3%lI1+
zpQibv$!wI7G%Q+y)tKFW0!_UBnlP?97rOFMVay}|BUn|P^zM=fDX{Yh1;YE1gZ0>D
zjKAKM$XfE<>;5wVCMvkr?l)q*^7uNZ8o+&45m4_lvSg{riH%`fP;*e)>yX2WhWqku
z<I!9(3PXek1Sqm`kO}Ei0o3wpVTTEgQ!fWYY;ioJfMdD17a74#u?CaJfjrtqb^^A(
zLW#}?peVx8ZVH6TADb#(qhj!VFmarlcH$PwZOS#3Dw3zhI?|+l<Iprco}0g34r3Ra
zx9<Sp`&idg?6#V=H-m)8Ek^c>Yrpl!ZiOlCe!ok~v(0wb@@Bf0|2X+0ROL{IbdJN2
z>PdJ+^G9P~_H5_{k4JZI5uvL7P;=Y=w-)o4eg3OEr=xjvg-@kyvHqsX4EzC%D5z$k
zr>?0-Gm)T+c#yMo_(M1ALC#hJ{6WsvD9@-j?sqX;N6SHNcYxtUJ#mW9;}d+qZ=Y1%
zo<e8oeqkh@LT9=E44ozT-=MR+aqS60fdBavI{Tbb@;?eH@LO9s*jZaVGH}w;P^%i+
z|CX;=hW}O+wDttujc!Kh&5H?5Ldf$2`6x7gWl-4EofH~XN(Zsvd8vflJ-_)@@|ZP$
zHF349YQ`wJ7R=#@Z6$$QcVHt^mCgKge_0_E+joaA7Vglu*DOVpi<=QLjYj1)(xilB
z9x8??lAkPz05a$of0JWSU-(O-;>}~Tl8K|$0F>CS7^6IBj`>A~9qk5ab11PMjSF^y
z%j>1&q3-A(so>;W=)m*0y8AuL)Gi#i6F<0KlqtyU5~(eq?&{k()T`q_^90S@OJ<g$
zGwiMpGtXZsyvFV*r8}G!53`Fa|B3XFtoT~;2yX*+@~M#d^XL0tTyej`&!+<-0)N+D
ze;*L}U!|9CFp1gzv-C3Wb8G$AFw=)S@3)qNHZH(i9wgd-QGSm^{YIlcB`xa{)C$wo
zSm9VCQyZ+ujKIvREwuP~)FgWN?NY?Vv6b9H`l$DMv_B7P!?LRfvGQ~pj=_GmHuQIA
z>NHM{$cUxP1X-)}Ma~W)8~+wO5m6(ZGRhnQ1oB405U3;P<2>dTO<#(0pYNeZkVm2~
zx>{b{{4CVZBt?QW@bx1@G+YZ84;BIaLEt}QxvnqEh@!7aXWYTp613b`W*~}pKlz>&
z0o2{SH^w_0yY8rZ$ufVzMjh@m9DQi6rx9K?*Voi{^BQLTlBpd6Bq$oM2JtSN&Z_y)
z(ZT$x17~dWKao&4lzI|2Q+xFR;DjQ~osRa&+de-6se+i3{Jy;X`chg9$sT1-rJ6QL
zPNdexs>*S}A|^V_|1?>FtRi7TXnzW8{ZyCQi73{XZ&5XI3Kuv}d7~e!eacQ-=WTJ;
z*MyNDLfE&|W;@5zfv#=2caV9%=qiP_v+6Yfx2WHf#OOH?O62*Yd|Etw812FRonV*W
z+EUNd%FsZ_PS@D-@i{)_+|>ubp$uN=y*!KHIM(|hhRP|73qcWPuy#%@LMb*Z9?U#W
zJ|y|-beR05U9>pe*;xi6%mED;!b4~P4k5#*!SetoeE35D2o;{+NDR-v?sLm~b|Xny
z|1vhqa7_U3Eg(XZ_UP%4{ft~STT*M3;nc|!=tI(kVaqxCaaQExtmMzt_%&rvVDE^t
zluM32di&bX_iwfO(oT-3vyMZAIBV$C3~wb~!-E5*H_W3=%Ln(U4;DBtO=Zw}J93o|
z%jDYOP0$U)-_U$d)@@gl7S5<*6whV7eZ?O9^J;F21m^99ltEa0ZQssY^D8)2lh`GN
z;dkr_dWOXdZQY~8Gb!@{a}e#BuKT_Cdm#)MX{>ed?eUs2{jbeF!$qqyI&JE`EY`F2
zlqV4fa=fP5BfMC_RwxKBnl~p4O)%~!rX{_9#1@{Y9cq0A?34Mwb)hW(X(#_Vbo0@v
zI)+b(0g#)3-Av<qpUXU1y)v8kfrdGfk6AWPOH5;orqq&fgktGyQ!-60?F68hwd#3#
z%lC5u|FcA?uoI^hxWz@v&cPe=>8u!a0CJPs3FI@`1llw;;!^Qi8cTSOme^X+ASJz`
zzlK;f46JW^zV7sgF2Y6N?3y1kNv`SZ>RF#xLm8obk(zcYJNYRx+{FrxBXX5uQ$vVw
zjEbBbZ!UJ3bX(3dI9)8hO71COA4p(&h`w-YGeFvI5Du4wPa%gWm#KL*iL%4*b{L+l
zpXFww|FYQr+S&0d8<6sa&a`LVhzkW<;^)_sL6?X>IEYprvj_ZBB=R%Bwmk)H{*C<h
zH!1h0cx@&ov>>`KvJgnPre2i>$m*by1_O}-K})-B%J3U#NlvmT8rr*Dqnwu{F1)lD
zhQ33kKivV7=~Y_>lSfb;_%K99-w%vyP5~M#Uo3?6zZIwzu%H?f-)kW#kndo>9#B2?
z+Qk=tWfPlz5Y$cD@hVRB_>~~yBrI>9SdppyKBc+)7}{K2>?~=Q0+b9i=BOa216%1v
z?Xa-qN(ki=HL1r!rfC6xx-1^6f{RWh_z2N@kf^_K0{y_?H-~N?PC6eW8s4`$#N$3A
zbu@zR0*ZFBrk{kSB3H}Xr4v3mZIi7-i1mV_S+Ph+Y^kO5;GH6cIzbDf8;t?r+UAl8
zj%DM86R2NwUvIW@Cf9F#VzE)4V~uisQ<S;xDN!1L_691xx1Xowh~yfKPk9MMl*N!1
zUmHS90j)kMOn8AkVA{N?1=O_<!C@&|zhhYoXW|`SSPKd8t?#JMJL6Uy8=7ecyygY5
zH8zZmH+^={%^A6^={nyvCNuX{2i{3dsd2L?Wk)0;CM#9v0kGPE4_IyMPga`puJ{)6
z`w7#@L9cp89H|bG^nb@{iyU>(A2OH_tU=`cd`Z~{z-phuR{I#eNqea+Y0`EW15Qoc
zPTJV5Ryyl41A`=)cwX_D%HP0{%<V#>Z8z{d04HsEbunqn3oGBi6KSnW(`BwK^YeL<
zPKX#%0V#Bbn72Ys1ObL&&lj%M?c6hM<f1zI_!Lg{$dvf$v&>>H4`jamy<f9g?D$>@
z0)U+M;0aRudA0P<eZ+rSEd_`b<37FnA7+PewY33EwU2#7xnCtzxHcd_3Dtbd52TPz
zTF_82a()p`Cbvbw$}U+2jonT|Ea76+)sh%_ehHuGuAX=&&Hk7&zwPZ-ZCXnBiHnF*
ze9K7@Y0NgeQGL{kYaD-_bk^rB7Dl%&NlRszn_ZA5_EhgYUxR5#t(X9fBIU#h=~P@?
z?MC8N5>d7eV}U#|F_96z6>=(A%{4{IE-t+Kg~^WbQgfPvz(F22)N(KZ_gnX3c{l!;
zMXy;7Ut3k6DT%yq{gSlI8N7*&ex!MJH$+n+c85sh?$9ufV?5h=8MHr8X*Lj(Y)ra9
zzctgm`T4!mzg~&Y)c8Bu9L2`f+43}y35%Uk8O&e-mU+nbxVn94;YGr9lwTMTM0UR>
z*ei6VWR??59~^b&Yolf|&?0Gy&pMl-#!4m8SHqJtywqw(agBy=)2i$`J*kZ8_u<?+
ztdUVxeneZqRx^K*_|)wDX&IV0v_HG&9Akj9ah)9?TYLeKE&fVsn2VjiHC?lmzdTv1
zb?$NbWh|XrZSw7a7hF<TfbtD`6-5&LD7wi&cQyg*ht79s+TX!XdPHw#qu&5wBmxny
z^WYVJCTBN0*D5uJ8XNG8E!LS?HmLz(ZvC`&{KzZ+##WPZ4B#X_J&6#WyIkh~<S3rG
z++RWsk3*t>EC7J;2LMZ`)A>$wsIzM-;+$S>@5vkpWbS1PxMn8~&{dkm0s_3wX;m5o
zh=$db+dBe@`2FxPJBE`TD)$lVqaw2Oq}VE<k(gb$T9CBrd6sH;#HONvsWaX1EKu*7
zQVx3NPz{mq5-H_`Ln^&lNWD(&n<F*7c8$o#h=)hkX0j|4w<Wo~tF==bBx37c6vY!B
zWMo{eDVq11>glgLD5ibp18@+%EZH5VSYZW|#ysmIz}I@fk?s8B!mCbcKReei(V(=G
zJKYoew-VcI;*7d|$mK6w`Jl-#8Eov|OeJ#v*s|~%R2F*30{*?v{V%cry2sk*Q=B8;
z-^~L4H|`Xe;B(Kva;H4cWd4iPo0jIWXZK_#K|=WNE&>3Vs;FlH6rut3ng<4$#ix~M
z#K%gsn#v!QnknpLj=xr+|IRY#A3;1%kzWRXcNz55RfP1k#2G9#3`E@Z0Nm+ARlVow
zT2LR>f{~P%oQ#Q{^v84sGy=8sLj@rm@cu_+{QQFdk3z){$@wpJ@zj4vWex(QGGh{0
z9vN*)1r7DG6zf_P-qMB&>Iv5_A?Dp)Y98c(<g`%0H!S~fTLnmET4kLTzc1}0R{rKD
zth#<{uqa-dOCyF7&36>;0S_K7R}mVe9vKPW)zQw)_5M-_4S)g>jwmp2>FdcVMT2bD
zR*r(s4i2pF{0PioX5qIU2_7hPAzzn7x#=!N?lj`38$yAbKqeHbpfAN762~;xBnG=`
zD__@<H`&-x<2)e9p#@q-nb>5IyR*%>CY+uOy`Uu9mFp!{Ba18oxLr?32I{ulj^-sA
zlQ_8;AqhY(5_ML=)#>=H4SPeVLCNt#HI_$PXW5R%$zmWry1F?{ZElxrn|2W!yG3LA
z_&}s^j!8%XL4V_!%1`_Ll26L!es}?)4cm*!v7_<r>~KX=JImp@IIp-2LJaw4FXlo~
zd;vvHW#1vgD!MvmNR!2gwvHC>j%s~?32>{F=}b^#imD_Qp~&lA%lDEry@z%Cr{9|$
z)j@r}c||k2eo4WeyLst_QZkn84WU+S5h_grG1hs-z_#YFBd=VYK2FDYs=Xg|XfNpL
z=#3-aL<JC#o<sT$DalST|0a{XFhOLW-)7axe*HeapLOQ)8!#7blf&<dnVIhc+#iIB
zpHBWik5vf(CiOeI=$|X@{O0>*trr1M<zMYn%`FfU+-Z4o74{q_Lvl@=NKC8l&I*F1
z_Ri}2)+%h1fa>@yyq&7!qo(WD<YA{N3mHi&t8dqhsJrny*Vo_S2u<EzrKy%~E|fX#
z2Tqnxni0f**KC@>2lP(?f;-lApTlY7iu8K7n#sI{zEX?z<T6$x5p6cJ<7U@0f3Nio
zS7PL62HV~vH75GVt2XWs7M}=a6q{yKJ6Zg#BDF%Ncbd6$xYPTmz<W^Yczyd65stiD
z$x2tu3Va;k$wRzcZ^a3#_>5c8?D+*C3Rf9%gme&OG@-ILdCoKH=X6rWOV+SJqA_sy
zMh=H-c56k;lR@=a?5)+Tp;35g+N!ly;~|7^`Z;R6HT20}PMdD#1&q&>bOQ8tY79Ut
zeY+uQ_CC7pIp+CI-Zd!gbzd#2a0p<w3R7nJ?tIahf^&<km^|z{o3=;9jV#oa3nXy=
zWX=*uy5Xx%&l5%?PV8b+yZlYLJ8_Q7`Mt<nEw^BJ+iCIlzDI`EHm7&2(-vUUp=#%4
zhVve6riEu;r&S@SGHDURTr8%|-bxNI^cS;f9htFG_j}r=(4QI9sQIq4T3lV?JmlB?
z`?{0u0E2j{xAXj3{Hu~XKm||U(FOo%0MxD@jiE<&Neq}4!M#@d)v49-jAc{P_=k-0
zq98>CD590&TKP)R{@hCB`xOglvO6!}t_b=aKYIEuI_>#STD8V_X+vN9THlp``ea7C
zq;dDly^8=%0JSfd&wHCc`&!w*jE8MoW*`&=#*ojro8%>7v)P(~I?`K6u`uDyG{`I%
zNGO`c4AAw9;YfTMF>As__o-PSP%4Jl>&^wRDxEMDFCr;WScLsLaFXS+vPFlVeKLF-
z*NSPmCpV@)(t49rl%YjttM!ZmPZvo!@m3fm?}u!cCrp<c>i1JhnCQQf>CbM3=m)nW
zEn<Fm-LPe7JiN%h^QSqpDwE)YKbXh*`jHaGZ-|1wwA=@0Va*5`7Gp3^4yzlpGf?u4
zcGUr9<Hpx{CJQ4*OLvdQR9qGJRF(v==@3tl49_usl7LhAr1%R^im`UI0|?1TJ6i$D
zXEFdOEN5#w16+PPLxYEIg06-Auc8bK1NGCt{Y9~0`431YF9yzcLt9OnVj4tb8p4cM
z9iOQ4Eaqe?OU2a_pcg#rKzV7Hc87KwZjV?aQR)`UetL|h<r_<#AXjS?fnbCi!a+^R
zTJcnL+az8h5-95LXJ$s}MdZu(Crq73p|Z7pN7$1Px{S5Lz9Wa2+2Iqpy_`c@ce6hc
zCTV)pXy*ErpT=^48f#D%W8<sa1W|1q-^UVTeEGY9j`uz^AAL}Qv%DAvK98#>=PJ-@
zRlwGnIxVIG8D&@>e}rZUTVW`Jggk+xl<&uKNjGa^2`nRV3Qv%N<5Gs=3m%5usI93#
zJE!4JMRQsj)o~`d5BJ%7kF#V5W?Bg3fsy)F|4u#Q9sBIYyl)I<Z9i^WP0LTrhl2pU
zb`6FOcqYSu_dnd}^Mml;gldm?fv2I`-&SlTZEqoItL6d31pgE-@N^Popk|)-{|{b(
z^{<$RVx7Mm;{1;y;Lxcy6m|g9_j?l8{EY`e|5%iI+8nh1yNl=<smUU&A)%)2V=N=A
z%8~n5{Xxt`^yK6}W+-exv@ZTS8}xiF|3&Of_Y1X4{$~_Q@!uv-{G)Bf%3YR2Li?x$
z-1Ri(MEMQLf&LE?MX9|Q=>NPJl;^jWDWJ0d=pn?Pz}|_;bBCJ||7+Acz4-rM)O(sz
zXXgW_O6I?{vj5`A(Ej4ac$(EbA`!i^Zi=Tj5&y?Q5N47pmWKiBe|p~kl+Q?(yMDC<
ze0k3&3wWNT(*u6{dnEU?jPs8YJ{|RA<>wK>uTA%uqovBpKA^)rq&z_jFK7q@QX(P>
zhmjOj6$KV_Ku=T}1{f=B4*O~Sy{?Wm4*UW-r|^lmRyA9%TbtDHKB%yM8if<S(%_EL
z^^8Gl)eRtDz_B`PiBG${QO?gWwV6Cq664RC@s-%UOxua{ZArC85ahJRp+_PjBHR|z
zB&C9F;Z+vQ4qE#m;M?A34;!Fah}>=c(!4z<9reTRyCJdSfCJNR_OOw<D+23#)b&rW
zCL{7_uR&=>41k=MH|+t`Fa=O7!c=iQ9Sm{k>_%eJ-hftJ|L`UQVLFnL1|QPJz6~75
z5Nr)T3OQA`3S_P&u@wD?Tp0J5B$3xo;#$mnu-zCG#sUQ2YAb{DwCHKvR>6}S+;S;u
zTw8s=NO}m5z1~^t!6CkKGvRd*f^ZJOTHxw9iiYElg@RVz>Kf|^;^Nn1hZaiaz|0ZB
zotY|*Q6=6NV=PEy`_3-xi#eHBU&@QT)~K2`$4DAx4hAEIM)7q8TP*5!oUk=S>xigY
zvifY7nv^n|EQKfIM7?`Q47<czyV;_*!#+T$(b*c~d4PDJ1^Q-h*pwrsvyEHv@hhwe
zIk4bci?w2$v#SPf;zZq>sf`XcOzgcm_=)d3_ekA9?^F~u4sdSuPs%#aL;nW{_q)OT
zCG-b;U}~xTYa}gIz5~E3g20(v)_*lUT#cU0mzi_q$2Ua-3>hjql}1<D(t+W(87Y93
zKjnF>7KNQr_fw~2bLMF2GEJT<v9r$XJyY+F>y`bcG+L&*r{4!T;x_iQK|vRJFTy0K
z)<USD&a<#fI|BL$S?=~LSrHZSiVfB8c^fVrOVQcRb*snk@^@-yRm?@BQv+(1gcLhO
z7?tYq7f45V3uuXp<rGHbI<jM%8VI8-czv6D4SUsPXf^G#oDn6A$h=MP@?(l=R~Sx4
zXpXwe>_K)S_F`3_25TCW1bxfjY_mf7>SF5<S0bR7m%-F}siqqx+eO1+E7xgrg#`p|
z-v0bJr;;LF3yq?wN0G)Omef&C@}lAl`KVx2Kjnp=kj|mQQoY7&@si;@T*M_w3IV(_
zFWf2nHS<*AmbFzs)~z+JWJtS=eGPTfLA^*4->ol^bWE=#L<lB9<sxM%koH4n=+H8$
z7_t=dJk)e+GFWTn79`bBAthf^A2^L<&cT9FeLc5CSSy;n`L6gSd%#?UXvAz8?7({p
zPH?4rOMo(J-t1i9wIoS)quKb<5WN&5QL*DZe5cce2jApKnjq#p>>ilInuS@R*6PR(
zqpi+)8}iqe{Mf?Rf?SKi!8L8tAzOqtXE+qwsO{@a>Jz8}D+p#wpkYOUG02QBo#{8Y
zmQGpCay~77jb&?cZVYUx6%CMVv@&MVXT)?0Zv_wbTxcmcEycV5Yx!~w-|}VRl3d-9
zyW@+&*Cx&&h$eq0ootk{E@zY*RAW}zia0%eP(cvSyT_@?@;P?n2OL)OlbSUege?!i
zD*t%>rP=pa9M(g786eVaEoo?}2S`wU&Fal4sRPngG<PRYLBn(1=sZ%?{vL){5{K8=
zF<O&Ku7!wtYIO}GOu5DDZDV+lgb~Hni`B4@cqwCjJM25`0ZTjdNH}AS=}YU5RH+2-
zdT0*)H%z>MQRRc!TD#_thT!U9@!_w9-+T$%*B`PX5{KJJ&_d!kbV0$2?-<P>3HH74
zTNR%6fgeSB<)wEB9qN-k-qhaOC5l|>ib%iT1^43G_w&g|bXLA%+#lm%LPP#WnC|fG
zD>LYoO?9<2Z1XR1P<Nb2oLG)R>Lh_IcvTe*s}`m)8*_%rW0_+j08&_{=`mN@xCtD7
zCJ}Q)bT4Q^_>LkF<jrwbO;TTLd%hbNgAz!eGGlCaOPj39zJx-E6<u^Shh|QEk?Okc
zYN{PRw}DdxHMPRvf~Mb?5#@9xfMy#k4JcM`35wf}qbfn;^(W|1qsqq<j+mg)kS{o3
zAe%to`z@bC3vhtos360wfOD)Pq_R#!mM7%LfV^-+*--B#g*>KsXUEDhLZ-gELCG>x
z0aSCAiEh`WFx*_sLXfX~>tWgu0~(P8jk10ZrENx1n6$2(rK~%)lkS8>e0$>9A<8dk
zv&l}VgHY2jK9FjY64Gaja6K@=*U69gK6qhvXv+(=j`@{ef9a=T7@HpDg9Sm<pMG0E
zT~%`0jT7s1ur-Q+j`LjYeCw*pXS?1<Ix0>`n5rso;M;s%A#BGp#+>|GCK4@a+?x_7
z1Kp^4-O{(aLDz;F_?B+)a;DCAs}_TnK{P%Fj3Q>{Q$-C{&HL$LM><bKQf9Kri7_M3
zA}O=Q`O?5WFtP^2X_s^4wrj1Toq|tElWxYXn8T!SeIOkP>$G{uuD2$eSMQc`(ml^V
zY;fF`h-w3S-W7?)_k<QU6YZKG7?%;Z@TCs*?2yTx$9LdJI5wQ$)6ew0xm!_S4$Z?C
zx4xelz5g%^9j`O$`FK)P_FQB70VgE@`p?<Q^AVuGWGj!dqmO_yTwyzFM;mQg+Q(vM
zuFL}q9Gbh7r{He1PycKw>XIYPK?*Rt!z}CtzU{36x+PNd!S+{A<{D)7Z@e@S94RTs
z?C~=%JuACt8{ZV3ZF*ewVi^<8XoJ|e5AVjIdw`JRLr~^1fZpb0&S60V6kv6@Mfv$t
z%5;P>@Zz{hq$K1|rFd)`mBtPor(HMZog~q$wvtZA=hv`bYU$TumHUaT_-%gUG;&F^
zykM){RfzH9icT@4@r4mL6fK5C`r;oT!=3gqywlu*W{TRP>3YN5`B>liOZ^a-%Aj`u
zl`mP?V639)o+R-x2ZD0yC+V(mOf5wqK5{h?38*#Q)ek6?q(4|7$b1HC?pxj{#91E7
ziV=DY;YuJo^qJm;N6b1b$5nwT|6BzVu97q#r{8xPq<+W}zxID;B?356yeFCa-w5bw
zSsq&<PhjQ6FaCaZ^1y~pN!+FZh#aS%M)L6gw0cahZyx0cxKaZF?|+@{{x|V2{bOt5
zX*pcv?=FO#n|=(Qq|5+T{_7vajzGv_zKLKDw6(A!!y_Z1FeAkcW{-6g<_$;Kht`Du
zzg+|};I~ieDB8c2SLwz7G=_Wdu=nKoS>40U>rppZ8f`aG(-GYcfEgmh3>mXXK1S4h
zdm$sKkP<Ld;`~tbMk5Aq9(HU{y=hRS0;(7h$5&1oDM_;$DJKm-NDEkX6AQL_YCST!
zxNPv|Vuqu-b5azR5X?)}0DBD%(RMwV@UZv5Pf88XLwA0_U;G}4{p-;E-wk^HhL^WA
ze;D*kxq;e{#&qbg4#m#LfZc5jV9d;=@^yy{ajy|H98eKMvOZ{&jyjx$h3UQN$ai%;
zN@F*rS7pLCD}4)nzM|}6K~0-GyKZHO9Yj$qnB;??)S2$RaH5uK3pZPK@-=uaV$N-h
z?z=7r2CMPxz$!a8PB_=7qQS@zduLQ05Ma(z-S%P5b7y4qradvRsvxq~PK*m?1zO~a
z-<w<oC|V|4;Bn3qb!KYhw8XvfLmM`#fzG_Am2ByC%u6ZX=EUsHR}Ehz1`r9g&S1Wx
zLghm7qwdeleX(g)X=c7U*}lD^(=2@vg^Jh^2F4vBfnvf2JL3{Kwd0AI7y%1f?b6%=
zP!&GhNh(TnSSRWt!o3dB8MJq`lB1TFa<N>-o)4y(hiVQ*+00KWUoy{2u~J4|&8v^{
ztLlqQ6jDD8a_h;5wT?JG--%1d6iWRZ4X*`l_&&Deln-Q~Kuk0rsRcS<*BSV9z}}Z8
z=*AQw^~zdpT$g9AaMQC1g7>?=&8xxC&%<$uV8C)ABzwXA81%AVFjN+sG2pS2gU__(
zsmk9))VycgZY>D#`~}xBo_@bm4KR?WL!QrX8ph|g{T%otXQ*odAfa_IwYJh``bD$$
zIREPyuKB>S_JDly|1M@7aGPMXi$5%BFisX%5Ko{!Mx(wYf}y+uxbbyWQcc!)`dvOp
z?*tvtsZEB9S{saYxeXn?iS{!jfoeb!D%>-W*3k-C%<zbsm#{wy-jLYn0nr-jrYjiS
z63a5Yp@A5^rP-UZ;el`eI?_xs(o!=oHXT@3A*5@gXZ}|FK+l86l-sUftY}iI#|J(?
z*=Wi=SrdL<&;7b9J6@|tYNlhfdOIIP=U)6G)unW|;`;}CXdntjL%(8~GdwQskNZ@z
z%S{z8W*dIEI+~~h8DHoDkUHO4lsuC^Z%zgYdb^=SUp#^`=c*tLP5?U=`sCm}r%Awj
zzNe31MN@lRDMt$n!1(kd<~&zc^I^Q*ovKZ5H~MXFKNB(-fht<Y7lO`lT<Sb4WoOa4
zQ71S5Z>xuNyz9}yl0WT^Sa;H<z_#_~myT}CrPBwN?Y>3>nP$-Sl8+W_@CQK&vZ1^}
zyM`Kw!ju0YB5)Ok&`@o*pww0RIl)<}L@F7yLw&0vf=aWJ(TAcU3?$CC>=*{=D$Z0e
zTX&%j)bK5k1Rb3G8pYhT!pB5AYBIlSA^6+WLL364yy#i8nS&S?_hS&Pc~va$-L-5@
zy!gd4#)-@y^qqMQi<foDRNRoZ>*IPNsS}aP41|QprlT~VyR}?flXtS+#VZsLjdQ)Z
zZOd;yU~Jm3tgeL87+Yg4CkDKiBfKXm*xp@`ZUH$Y-w5Zcq8jrXI(3A5q$Ul0jj!|u
zu+cxCZ1(e8?m=_o$>l8X_-k1GcUkmbGs?8THa$Z20Uht3zEKvzVM*PiWJxsZGwev2
zT&@VvHqLiuNX4Kn&;)?v--<B%w@@MgG4Fh~Z*5ZJIx0Grr#annN$dp?4rBlwJ%{}k
z5{u<9m7uep@57{!GCd@ATby}`{{?7|8LH25`^$ojjGrc~Vo&t6A4PULa*mOOTHc0A
znBjcf3gnINe8pndbxx*?b4?Ql;!E#lTFSM2OQU`vVNpGliL60gV3(}*Z`dXE&e?bj
z@N@9QM;iJHNOFr8SIo*)_#RvkjhZH3XBAl}d^IK<qDQw7zQ*dD2aCR&DImg)sgxtE
z_FGJ5@2E8<N<%G06e-<U-RHGjx@;Z$B*JC)O;1&Aw)hHs6C%&OsSK{N<<X;*E-NiQ
z3{)IF+3V*Gh5sZ<|4%`=ztw{*t&@K_k?ug#=td|+6NG|%DR));$fI0=87@J%<#wow
z$ivcX#e3H=Fg6U+Nd+#O*0UA+OOBmDL60cGk)9Ld8xKO!gVNU`#IHa%M%i~XY(O=d
zPM~74Kv}{!CaCc;Bi6%qHgDfCoQ9?N-V?&~Wy9MK$LQUMo>UijUwySU>!?@i4)r16
z{=WTXxNf$GoiZTN8A{GpeiCD}f>R_a$<Ei<caveh@ZfkkzGyzX!>b?vW*VTfNCcb`
zaFrH#0iOtFa*?qswke~jRNhBn*Qn-Ust|tOlGeTFsDqJTW~iQIMO2<OjeWs6<S5!{
z60k!#0zh~qOiF@ozE33#psGI8fJ_-cPP1(UU)Q2h3+_x^nyivg;9J~>J7`z20I{xm
z?aJeQ`?>0HxIXX4+w2-6pR#zR&{`rhhLc8zY0JfQbq^z#l2w5Bz}Pa1E;&mkt?iLA
z-J!37k}6V%KDAv3ufk1A1DWW!%>u=K>yT}BQsz8<vkc2rbz{a<Re%=wl9W*FXGcwr
z#*6~cSW^6&d*AlFYxE$IBC}cu_WVu&FgNGpyhOY2a&QU27>u73d!8G_17-A+!}r{K
zNCIdh9ymQ{etC{xD3p=t-$49BWw_ArKl!i_fT9yK_<>(4fCy+ysFtZ!*33J>@Bw&$
zUqz70u1AZ<QS317d_FrLCHPV_Ox^6J$z9i#sejIMDsmOk5{4dh02@cQ?PEX<f}j(!
z&Z8y;p3_Yop=lJc?x;P1t`tLGrzGclCf(MA87NqSt?Ok^ajNf09x=OM3dZT5!ZVJm
z@Wu9pmA3epParo2IoB%V(N<E2i86@?ntlNf3~9IIx>~fuBDgqCV!*jbi(O{XJ0V^-
z6E;evwcR>tejCarmEy%%z8R`mGU8b$1AU5>Y#6>FkHzbW3JKZl#T5E-gi}`e1hYyj
z%g>U6jSRp9ImSVk(jifVzG3HqesvHD@GB%(<^)5dOL<g0f<7f>y(NxG%FwC{DiY9P
z63~Ky7dmwVn-(K0n(ucnE~T8ut*otDI{L|m7%a>i*>K$RcxFE`<l5!RXwfbXT_Dtx
zHs;k#aFDfYQ+5sPL{5+5axOqQ6L`rS@4Zyl$0r^rP~EUD5WXj`xxJj$_UyFWTkRw~
zeuyhQ$Qt`&0S_JbN%`b?$nck>@UKHMznTqCTUaoEH>9Ver=}%-K(@??0Fsm0r^yMz
zKTS@0EBn7V0c<k}@cus~Cv^0WQ&r-BZktg2?H&*(aa%o0#ixhf&-l}2z&<VmLq#P?
z6$9fB$WfkXpxl3k9N|4bgb!>1a)!o^7QdplN6%Ly0|?i65Zr3p^ctM6Ul*AsgZ#uJ
zAq<fN&6J^PkbEDtjO`jPhH&2`3I)~LR9+54&)%i6HPHKW#HrqFhx8KV0R2Pbrj%I^
z%06L(vWsf=U<A{$Zf1e^Scm_(s%EAg=dq3$m14gV6ayq7jUN+1VwP9+%TlkoqferZ
zU>2#^-s)>IUy-8r(s&95r^Gt2Uy+r*^X4o*lUmXe3CQWeQ@^u?Q?;oRUnf!Fwpz_<
z_i~gB{*tDc0#!hj$^?yetor?U!Y4A=XM(l&)7Z2>qvCLhcy&aBz^lq&=G5Vxy8|PR
z^L*pZ!b|uCc5cxe`dU1Trq8ua(Xa0YoA(os9b@=&LF390xh<}~A@*^Pmqdi+TY@%i
zt?fTHZ<oOe@i76GzYKW)!(g7*wjY9J8#`+=0OOUk%|k?NPt7MIDfRo$q5?A3_NEV?
z%UL@-?md<DuRqI;lLRnfp?Mu&zs|XoG;;d(f@-uZVfdqkRlX)!^MqB6qvgrQDm<cO
zxk8t?G-1vd5{Y#>0w)d=$GrEXL`VV$mmlGa$ia`niV|F?(bsQWj#dS$Wbqm4d$OEO
zO<WFzci8O{U&0$@Co~g67kY|*6Lf)FNpRcIMdOO}m~K$n7verO%rbydt3#G3@aE*K
z%|Rk<@OQ$@DpT<Cr^3u4F#Ec63NEJ)`Cig_M8>d}9icX3*LBSAWsUd8*G)Sc=pTl`
z)5#L8)hoMd6mXS8tmcHnUlyA+2il6T;^YJzCYZ8E=4SnrNNWVe8s-U_I<a&W`9e+o
z^92&sWgHL&*>+FfWNf%@MvX+`K4TKbpnhOgN|iH_6EPjdz=vF`N+vClJ32>^dO0>i
zRY>fpVn?_pU8n7co0>s9My1Vi?UG3r!uLeBZ%|fWIe?V<e-T=ZU^4z(F0WLkUK0)r
zb6$@JdQOH1dQ`m<;ed7TbpLRfY3G_q+W;OXD%77J>GR9%ufP-rdg|YGNq$YoS%yiP
zck&<$&H?zOs|qnsfTtt|DW;K`gR5Cal(drb-IELqjI!n<?mu@^<$U#p4)5Z$xwWh;
z?;ye$UUcOy=6~}ARdtdGeh2JRwN$cRE;iZxxmh^6Uy6r}>5olXrR#h5*QY<05V6v}
zbavIyD;&x7lOHJbGWn0vNJEY(m2$0LZGmai+kH#SR=~Ev2tQxiQR&vv%%WdJG>Qs;
zyAg@d@!f?5<z*X+QS9}s&?#pM#0ZXhH95ABCGzWcQ*ZASf=W+y`fopOqdx3Q)OHQS
z5WtYJpP2gdefe(+H@~VN(0?AD9k%$pw>&8>;EMm$T|@B;jrq^@_%M=H5|aLCj<>6y
zdH&~Hp6dDa_&i4WbB6m^Qwt4OH}~a1@J~Ni_H!4*^XnGZlT=2CMWlJzbHOOlB%e~Q
zHD1yab9ZTiEBABS+a;lkb=X+|XrgH<P~0<NTA51x6`>}NtRmf|3}g)H;L^gj0=Qy<
zmzagoYNHY=ZME6Aaq!GF3rmb%GfTBveJ(Z&W{ex@SY=pa<F63Ove0%>K4XrOu51VC
z*B5sj1+dCDxfRScjF1D9rzlnTpm-~HP-$$^b8oD8czrWyu$Z!eh>g0KQfG`d*<b7L
zD0h~{;b^bFi^AuH`b>Cgk$<o8SnJY-;jNqm>;=pJ^|{miN?@P*#6J^S{NLypfs&#U
z;?trF4PYnsQUDz821VuoZVw$D6R5ePKT3LkXthv4@|pSoR`qlY_IZ-{AFCYCu;ve#
z*2laBfHVipcm0MmuWkvd38`TOu7C<ts*`=|im~v%QpB7vbQb^i=xx1hEGQ6QM6YR;
zyD+NfNX7rKg0)QXU<#h%6L+L~i2>7)!2;W>t6`T+*%oMu9n$Ox%PAi)5GNOd1eH8J
z%5j>oC40`XLsw2?miiYPEq9S26R_M63h`~he5JGu%&%CPEJw?i0OHyu23C1`y+Z4j
zPBj-QT%fbVv&AYMZy?%tM=f{d)pI;<`W83<LJ7F2>IxQ{{^a?)<J3+RUa}PT(ol|)
zYZDyRH?N_s3wDGolAuP~=nO=8_UIq3g(is=`fb2QKAkr$&+Fv@eE7%fe-8K`aX=$c
zkF}0~vN~;E4C?Oz5E8n+Q3%Y4QNet9ow1}#FF#oHlmOcTsQlmpBu)t4zNOloOi4>?
z9djM+=EA%PA+MT8)V6Miowm~q%JS)YgU8dGJ0A^+jHuXfnFvlll%4X?$Sbw65FuV3
zg{6pfZIevf)G&kV8w)a{T2ry40E+x}t0cb100&#%nyx~jf?1<hp;@EStSsk<NzaY9
zKbqu#4_`g3mLCsGf*$L1;7U(O-mW3#$O1%5Zuv)>%ih{mJ=T-`nyXO$ZE<&Ke8zR5
zX`Ceeev&*LhoH7V$4fg0_f{M<m6673p>iIQ^aF@Et<NF33XVbB<OxYyf{u)Rb`&g8
z&Nb<<gz$pdmCe(dJ%%rd8N3jf*<5lWk&8+Ax=zdGbUzlR1WAHO(}GYr=z9`EWzsET
z1VoG8X<3M*SLs#&9ha#!J8tQGki_6)GrjsA9Y)Tlx);p|j01G%>%?5e`{e-meBDzv
z-a}f`wC)l(7yI0qW?%W?;i3hSaJmD|J<pTC{&{#q2zboD7mWYXx_=zMp#LqImz3TB
zbnffgfX=(cEMol_EajVlVx<cxWI|YkrVMIN*5@NFzXr_QUDl*BV3HmBW6`~Fz4<)s
z8nDG8K|J&0+prt_0Mp%FwMw@*h|nspd<VS8r7O2zcPMfh2SMPi))+h6{55#CY}=)w
z5m_$D5vjH!5#s8mC@INY2+U1CdkCL33YN4cRsug|V{RFg@;YrG;!Z!KSS4L@fxtLl
zn*6*7iN>MMC{KY=UngPQv?d|(71oF%J6zL;IqovHGg#DBv%H~|SU6=tA^EXx?e0rU
z3Yo5w{s>JP3JG-9hL(oHyUcjr6wY?R53L+iv~DqHBa>Sq%nff_jd|-BrdUt<<g2v!
ze@;fu1l1$ibI-1mY0?tT;<7W&YHC7FCAN4BX434T=_bs>7#;1Ik|jhO)!Uj;vseIY
zDU<)SYX0V&m|Z2QeoE*+*&3LSnJ+47niJA1=^|KMcHWpqH=i2{q$M7$I<&tTO4i84
zQ3L?7!owXb@Vdd?*kDP8W!qFbduZxAK_>~-T&?Pha5oZ^utR2Ju@fZHE(z6ul!`_4
zPZh2#GdaPvNSmhkzMqzB&TzHQ`@;Q;bFP|-K(z&64!%#4`{&4if`6EUjGdvAsiCug
zu7fT$zko8W%{vzXDqg@#)<Kps$(cp{`2L>AFKE7^ZjoSSQO)eb0%2`038h-$#3YI$
zz2aFYek~fF$;f2J#b>qY&qXGrC2F~CZmo028gr~W>GqmCY?rt1In%>;+|x~R{9h6H
zq4Eg|_LzJe7nVP|B;5h0q1?itt~cWmB%;+TF4I5PbDE#{9JR{g((OL%(^{;74fI0I
zKIFp>A%y-PlN3Dqy030+VN>-HU)9`qw9tN~XezH<^cbyh5@H>qH78>^R+{-S!|lxf
zvpQhbO{?2g#CL~L&^)RwXWkfPKy|fFbq8^Ih<#NrcXvV2l9Tbc7^Y#~a24JE4NH$%
z%1h;70(B%&vTQu?6%Fof-xS~Q;%v-BHHTYn#kb#&BD(Hsu8v2TvF3)|lsVX#F7I31
zZ(8{pvbL0$3pzw)^b3?-$L0FlbOwAgQqw7iJF4UFYft%5J|I~*G2rx4YD<CK+IToN
z;@ye^Cof&St8-2COv~^-!nhM@{F$BOpGZYFPGx-7@ZRJlZnv2iaINplk1Dl7^1dkS
zhv{-NyBtoI$&;Ev8Qu}5;dEf@ON-oJWcj|qnK7&R%SHxGjd8GtSjf%M2dF73C{P`P
zgM*LRw|g{}EDKVe2kf3Ywq%D)B(rfYmE=Irf=Or|F&;7lUD~{|_mx3?n{M!VSGL5y
zVF`6;4V>SRk=?;)C$q>tT%A!I1l&rR?VkQMO(0UW>GBMstjniaSk^nd@L|Kie)*03
zSCzV7R7Z+dK)qZkboRdA90R~}#<m}IE#$-)%8(%3bqXC13BTKx^OpzWL(om;md#6n
zcR|(Pi;}<(`a~V@r@Bm}X`@JvZ6P`#Q+|-vHzi1esx#c75A)Dxdf~HuV!Ry%3&uLl
z^0{7HO=4VnC}iPf%3?aZmY9QiuSXN;;Vg=k9Ql%wL1|jDf{$0`x`>4>Ry&Vyh7*sK
zt<65_87wSpZ18M25{ZNLrvP|NU5T%GecPkm5xq3u^OUpMCPSE%1J|5O_Nso2UwZWD
zDLD%yj8>LgOSJ$^13O#2+RmGzKqnhi!Gg7!kS+JLxzGF}en?|9gJVuH%Wolz)`VxJ
z?h1al2q|k7d1XGAROO7Ft5e3L#O9SH#L&+);mj-j%??EF{pYQ%t;6KSxxJ!7kJgg1
zG8_f{h}@yLt&gx|75%0Zqp#k-UvUG9TkERq?;F8Z69Z2OW5a8mnVxpIxVU&jX6bk|
zZ6sBE)^g)2w!FMdVQppQ^a?iRQ`orb2q)%Va#|XdECEU5*SqC8(waem6}8vS<kfzB
z(~(H<DAs3`lf17QroqIT>UUpaj1S$iv-f@YI;$xvU4JOR2+*~Ue7Cx>JEff@Jk|gm
ztER9K4xd+9tAXxrSGbADL|;NB2xj)uy06g8Y#yy7sir?xYNUC8@kd$XcP;#*pSnqD
zw>C93sg<4!araPDUoUkGYuINU=y@#B*JAthr(A2?CyktG_C{0Ln~>gcoo$+>u5o-`
z{Uq5j=iuOQbyihn%rEZ$dNdnWGh*x3%=x{fM>-Y=@ZOJoZQt}`M@)!Siwz&wK+0$?
z5)FEjQHxf`vzgWCWDS5Iv?CE&0^KLmhSy^m1@|>CjD47ZW1z|9?rW&Di>GLWc~?Kd
z%4n*J-Y^bNVZt$}7@tL0p}*im{&*Yc15|D8R^9%S){A81J3hkVPT<GlPfjZET$Rl|
z*SHl*bGgSBq+wda6O6@xp@ij-L9Z|MVvy*f1i5&M>`^hJPQvU8-}&X(H1*i0iRHtU
z#YcT5BbE1R+;Egm01>T@F!)Xj9iN`J)LY45Z)o7x#SNgn0lS>0ymEbb2%c`B4cQK>
zFQ(J>2y@5eY(GznnzffY1c8Ay`y&+wj31QWjKB!_FVab32UWMCP7-x~bH-`}y77)c
z;(iH1kCcX}<w^2WVv9MJR|1z=MvU1Nk0s0lLY&fHpkJ|-g>xA}8Y#a;SZ{mtM4nex
zJlGR|%2tB}rh95K0U@FgkJej`hctf9C_l6D<<D1?dWZztX*~|P5nEajZM&0#7sqYx
zeE*NMcZ{;+>DGO#yX-F8?k?N5ZQHhOb=kIU+paF#wsore-TUs-|9keid%X8UjvOmj
zj#wEZ=bAAiGoI(C$K`tv7b;E5%iVQxdueKBk@nNtEpMo<31%}%x{7IaV*`gW<OKf1
zH0bvB*AZLzk?wl^^s|Sft!+(obTsY?sXdLY-iL<C3i6%v$;l6w+=)itNza!-EukqI
z4d5<RxZD!WvLGvCT*D;7Fl#=z?P(VQgFS^76uNb<idR{RcER_>WmbseS{%53c-|B4
zm!}}7Hm>H3K%V4eD<>1kh2jWY0C%cnElQ7%cPtn!d7q<qph>A>ER(1=B8X^Dl*2yr
znOo5gtX1#YGdg@E3VNwcaq4Ab*GH;*g!{ryyEZn|)$Up$r|0MT_^&KO$^7`!S4HCn
zcE$`~FC%z`NAtgext}v_`Mu#jg7-X#F+{*aGS)+Qd>g=#j~-ZOnVfO^!$W)TW^DwC
zC5@9qRhUEfo3@r7j*cw^qTsBEkdP?OWQsP)FE-LRjhY#wL{JPT7SAEqUNgPLLSo^T
z5Te?-xc2dz-f%Fm<<4XyhNXanoV}wE+6Dylq4qjQGuS<|r%cygD#zV8=7!hVj_*$T
z;R(TAC?pTlS6ZuIwJ6P3-J@vx2Mq+!vQ!gE%*rs|@i>?2<WatQeON^7?~zf$K<u1b
zyfcjJdzIE?3e7|-R(^f5`!MInS4TH-adA=GFDN`?v~uJ*N3hLYt6ChqQy7{e5Bzns
z@GHQu7J7K`2>MA3WIaQLZvGi7vxd2Ne1y0uE%J5&shhWxBZLNSd&>m(D@l$k_RX)H
zZ*0x>gvF~p{M0cU7486<n=~e`1s$LFNQcJOY<wb9A{WHJnZzpHE=qr4sau6eSU7oE
zbxyA|o|s*n3O?ryzKg8`nu#9kDX~Yk9!_GUW%83UAJ#kx)Jjaz5QXfv)tVHsDWZ~9
zE+%ACPB8YocUtK4P5B*9>aDNr3=b@^rYXDpW|lQvRTS`t&BZvqrNt8~$c`eI02M|w
zw-;KZ<pM-+(D3-7h~5{N7fBs*on%o$C}xFQv4xG>`YYO<C;ry%>Py#Zrtq_Ea1p?7
zF2i)|Gmp#*cRK5ZwqZG)fL<T#^f{#<PhS~+MF(HVV+lcnMCL5S;Z0{MUm2XPdf+j(
z<GP?!`ps<a(n2z5cHm{(r!*bpO+9vx5}FM&-H1M>IjHXXYW|>;Bqwh}=6QH~az}ev
zZ$5d}(p_4S8rV0@-g=h!_MjRyy&9k!W84n|z0V11UI}NB=i3+B?57QjgRR3PstifJ
zBT+OdwOwO1&8LY=8$}Uzw$s9uTKw4BV`=rS0l}#$O_<XN9OW5^$wXmM1bQqdHAqBh
zdK{JoHgvq#@ZK16ker<CH2~A;LU9DzCXdk_54zy2ibpKYT~{Y-fdR>yoLZN7e3fdx
zDM_Fhxtx-6f~_TA-MojcGl)RBjPL<qe8fhgMwXni0~i43k1`f-?*fgmv(q`?7x@rr
z%kb)iJ}Ix`GBJju+w=p|l~bero4rk)>4qf*^iv{JPY4ld(h5{~sc3~kftpwWDm+c^
zp>vr{TYYTa;z1{-wvJXOl}*}<Xwi<)srAoX#9WRh>DoMEvA4)iR?*^`voDb40foR9
zV?uu#Vkm0+&I&M@G?fWwq9u8=^PR|dAaENxmCxtfbhFmPK6KDbhz}Yf8F6g&!#tO^
zeOrnaw)j8VR%Eo<$E9r0pi=1_cnu<~w+Taz#gZ56Ck#H~xm3(A1FffB%V_LXE$AmQ
zJ~*fb_YJ9ajmv^+AwepMt4N1YMRe5%8?fFq@{!a>D25oma)d&C7!yd8=Jx|s0TLyv
zn~8uA_Loaa0#`jihmtOSVGAZc8=*?m$5b7MjzmI2N*1AS?%)jk!0OoZpG+IdT3im9
zoF9Z!z!m6=g+p7}ct}rAq_-u|EGdtw@Rx`Ol#I}=hBXXR&%To%8n__FFM?3u7Ox?U
z+)ol^M$N*`5z@S<PG^Zb`xaj_A;aoZ#K6GV@c8(s&N&qrGTOa`oNuKWs^FqxGKdYa
z1Il27HNE~_LWdO<UvWWuL)&+*fRcgV04887R8&;-@|R-eAw~21%M+61WU8tGN#e=r
zZd_?i<IJrMjWv_Lr6aOtIjQ2-U|-FZ;$bI3^3PoQzHjd(c8{kpMIsS1C$I=7-9zAt
zsH_L{Vkf67Nc~A~37a=uTT0fRJtOpOm<GfQUJTVr`wniUbTQC8b#VAzr^hS!Em={0
zp{>j-kyag#NAM`MqFa809hnR|Fcv*+FV{)?++M)x@l=|^WwsIx9yKvg)T+w`3}E34
zd$F#h;bf3V9#uU9jn;*m0TMc(p}!Uu%bFw>$9%{G7vcTPWAP>8Z{J}`Df`oxcKr>N
z1&hv7nmAWKH6BKY)3z=j?8+w=zMHK2hy?Gw(F@>3vV1k1>BYzkD|}1zylF~<NMM@G
z$62UGtdkU!fzyx3*Yq6{F#H(N3#2Tk{fV8AalnxXw{1kVzM3H1X-Y9ja&{l`LRq~4
zOb7v*>HgVD=y=X+nlD{(FgCElofJ#QxA^Qu2c-#Cr}6gBuTu{_ik5LCV^F&oT{WRN
z)j=n3zod)wa{!odV5Pba0)Qpdk8G3eW#A^_ayf5NXqtAHZ_M6o%WzdA$AsD5oBPmV
z6^p6Yx&WxLhe-OP=+c>A$vrm5lGf0b=tpfoXlK4i9!BP)RP;bOfhmy{q+oh%toYTg
zyB+{RIIM4MG}<fWO^h9%pC{l9{gM%Kb2euPKspI*;c)&&VK()+{-$=X_r+60e0+&`
zU{M1FQ)F<l(QekM{v<zt&slE6Flh7z$vC$rZ~(2>7O+YiLKjH_fhcSWo2!kP4br_V
z25Ic-Yj|dnnA<Y7)(naTwN=Cnp@sX~GsENIqISE{Q+{pkPS4?u(IoDQr%~NnF08sh
zsqp|RqtFA_8@djyZ9Q3sZXe(}LfTGpnGEDBGnlBLX~!rVtb>D{9YK8q1b9h4wG}fA
zQSR&X!dg`EdBIuV+kFTz;rm2KyeCSs15Z>{Nd<_x0TP7R?J<tuCZ$=DM{;vSd%<O-
z{kBVwbbCA3rB;YKkD;RCH{D*xp4RFyk5rC~s7l3mDO-w&Bsamm5=4hq^~K9~+8*;G
z6+dlI8z`VzSou2wLQSjc1p1h+xuLVm@LwUsk5A!8KXq!C&w7SD#={S;cC_>2eTJY6
z0r3T%7ZP0cQ~Xp*aoDdj_L=a=e+<jti3scHLh&~+aft;gPIN9^NZt?7z1Hfi18>*K
zy~}?%&q$NNoS84Cm$Z4DIjdmCzEVg)8JYfs54;tsb^mtjVM`W;7Ct#Nbh&1}u_uu~
z@st367uQb4KNJ~FrDQ~MV4tNQYS|$-g-3bWHLQ9a23u~qIXGqnE%ha{e0g2EG+5KZ
z+?YAP!v*RQpKE_RCp{KL0FsO|5gft5Pb;iqb};$Z30-2YqIgBvU@CwY`_i^ibt(A#
zI6)`|Uf7)16~<4KhB*mbQQEt^A8@yK;YwUE@IK$ierVNPOwi;q8W`I3A_ND<iv@Yl
z8aZ4F!Rovng;Uq`(E*2D;y=_=wb{lyW{NoKp;d%2(U$F3Az5U5pPL`I!dz6p$+Q3?
ztcRN{H9F$lxfAIST|<*qdXWYcSC7kBf6rAWL*<GZXuK>yj#tae&j-JcrVlS4Qr!Fc
zSmRC#j%u^keE6cWtTTqA?bC0^)wuy5OBUF5-s$!6i&+>V<6Vk+>h;?Zkhxc5iM})!
zV6b8vBJx`@A<3x2Z6xtP!;DCwj+k&WIS^}STVo@N|EvZakCoL>Y4D8jke==>e~Zf2
zv^!OKe@h(guz^*lv~nE9Sq7dE;x*Fg<i!S6FOz*$C9`LDaDRXQm{Pi$X3fPTROy=A
z?cq-;Zf@_*srm6z@t(!3tQ%oNTsBB`Z$KkpYU5J9Rrr(ba3&wp4tnV}K2WyvlM}V;
zW&AYYR1Ej@8`NQ#q#3*yxB|*Y?aTA+zRb``#l=Yby1n~V1fngIcwo7KV5qZ?8a_#R
zvYe)L?GYZikE<Q{@4LEQOZn<ylPvQK2p9Fmg#~dyITGQlo|Q7?)C)5_W2*#e2Fz{K
z_hsyhALfb?G<KU86u_Lc@rHB``OG4!Ut`>1{cEqK-qW>R4U?nI22qL>al{Y-g(Io<
zUcY&b!7w#e2?KaolO`U1%M_!o7bGB`>qUYI;-NoBJCdP=kd@;O6t|#kuo+Y96TPld
zX987kGo?u88Obg>rI20e*JbS*lw8S|!b;*cslc9KtgS%bop;@O=a@B{5s=e`m(wmn
zgE@*hj5MwfKL0-QYR2lG{q7PTg+R$2h2Una;H{Tav2YX7<k~sjGBqnS+#rgvO97uR
z0h?>o6~yL!B`$g*bN+TzJ*!=$=Uq<mj`aF=wn>oVJlV79_j7`&w*-gG@N0KA8xt9=
z8q<lIs43X<PmP|M%X5`YvmJ@jF8Fh0Cf#ywyzebG4J~}D2c3;D-(Gu<8SIO+Hr9`i
zj|<(GN=wY*<Kri0?d)1#R#wnj7{-Eb6!awq*_=|s-*WLs79A{-_em;?T--5G^KxAx
z^cf*FOCZ!;B;<Y!<=!R9My)I{KQV2i20K<SK_Y($tFXcD)@L1of&*)b@@<%Hf%^4x
zLOs{^1YzvLyW4y)jf~MQMD0N7lf!w(ag54cRLghFUI3m&A^OW*aD180x#m%Cbl&u;
z;VK%J1eBmaZgcIAU@(t@7gxKdy>(%4T&767C6vqo9QI2{NU%F=m8==18~0G_M8w&5
zf4Mqa3A3_Vo&zl=<fmpZ=Es7<hK^*5+hbbaE*&{Q0|MN?{<0p0(+Gcmzca8oNSIbE
zn#;qpUDymA)J9+JRZ6^|bRH844ICIl0ca6)Vl_t;X@5WxiicF=xbbZc{>4iorfLP5
zH6UmBXjs|A_&{5oKHtwIhqQf7z3-$OXos2crr@YK$C@hbR@`+Ijj;X+ME)UOH)p6q
z$a$&Gtz{WURTUWrh?NTCIDpI}Bik>I0_}~dtfQVP;EQ4U!McM+c%LN!Mr9qBSrZN{
zn!VTJ_QO-?=%Wdm!=)&nqnS1mXM8D%dZN@=!2Y#bd_)rcK%U$sx1yqBoa#bg1@wr&
z5PUxeDZY$ry7^-N>VbLjp=}jQ8pHi7_o%fcjLf-4$+#h?^X!hgphWA*9_;)N-B3Bg
z^UX+b>=cJ^-b@KK>RxV?`UAI{%n4QD7cUlIJtrU{;&DpuF5hWbF~pmurl!rW40O|j
z^z`(rPchn|^mv*RRd!q{P>Km~I0+P_%)%lV5Cm(ikOZz03f5&Rd!*92-&rOrTt)PH
zu+m|)$)3+B-M){ET<2#Wqy_~ov{IKZ4@FYEUaz^;(=h?y1GE_Y>@eu|!nX+5u8-ff
zIJzC>vwX``P}@9SSjYO(R9zrJL;+D0QyO{E@k1|@D^=+tj*t_jD;Yif2gh(d6>oNr
z=Pz&VC`t7U82}kubY1eZ<eZs#13R}X8Iu0-V8>D==B>Wq2^^{O$h~RwgsGKgg>HE-
zTz=B`J5Q=!Zod<8dKtwpkbXNYif3(#Q~a_@ixzT$`-2?2M$n^}LJJDhF`_RI1F7WL
z4iJZjh#XwDte)n)4aX$h9Yu1x{3%ESIGsiZ7vDn@&pHdq0poHG*<vbEqo6ZdDi^4`
z6il7{Bu3)DTtF*6#~mayPxa02g>>G?Nq#vsjO9yKP?|3$v`{3dnP+g**xB|ro#C2T
zY#6c)TZ)T`B0;PWdoAI(iw8|OHNxZTZQ-%_rQ*@>>t%y0@B-xJo>DJ=>&+cu6zhX~
zEO4!BZ}@bbz;wtuWVR3`v$D82UD&cgT}9_6ccr-y`r9v3$t*n$fDA(_rNFQUEaOpZ
zird>;dL?;zb7(}y79&?{_DOISj#X;Tl;slKwq{>40`|Ly2T*oHc&tbP2NN0G;|b|>
z%~fS`v#I;2D6z!tS;diTyiKO&`%&xB{d}Z%uHnWi-=(_QuxTyfY-keDkAT<w72#Q3
z&)O<-17QUoEEL6$giKQ^t8IYSU0dHHvV`IQogke<W_pK|nCI4qjYo~nlf8O38d_S}
zoWjB&h;u{<Zi;x-1m@)A)SxSqz?nvM_fm-g^p`avM!JobM-EC2|9AMM%NxA)Ff30c
z&br%sKYo9-Z-v^;bl`2@HdHloE<J3uTTm`1l&@mo4B1xFpxBCy=xY?X%qcYHvjAf0
zZy-|C<TjGX714`IN?h*<>D6~r*0n2c2st{;oDV=zO)FRx!@Q2D*U%y9A2XeJc!9;_
zs`Je?sr*YHgG5^ab#>b}WT%Eoqqb|^G&D5Y)ZJellwB>l&h?&z<y!RPv*n2TAI~`q
z5ARHH82}gucD!^ayq&U36j9}@_UZ69==Kx_N@%J0`8(!vdts{+RB)p+5UGZ;5t@k}
z9ZXH@w%6D$?5MF-At7JU>KA#!kLC|H1--f2TbRWvU97~GwNlrT@`ryRF;VgEO(saN
zL|+&*IBba%rIj~s(PI3-w}4}^@>E0TB<8OoWHHj$H&_FJ+DT1Gx#VvD`LKockUO$|
ztdfbrcPT)SHza=JB0k(3ufJh>3ks|y`yB{9nH@;upt9x3C_M4(F7)$7(vW{4%5urM
z;>hN}{_1L4xj=)e1G{(B{<`uMWUA#)TmqKxvGO?Oic;{4A3rM3c^z1^hY?fw8;@BY
zfoH5pn8}pZYUI@yTG)-g3(6;GkmXv1l3{@+5vjxh?y7%{7G?70%g=4m;PL916i&UO
z^?eo1DW0F~qVA13<l|stYvp_qmMdv!#k%rR-ePsDe7@AMQKF`igam}FAswV0aE`^q
zP5@;}A*LHB-y22rY)NAxil0`}M$cG8RCG)72pHe$z{=&l-^ai<0-{n|?k|Ong;e37
zi~U9aNk75Y_lmy5QK)hoYu}7T=N_I!uy4f2AkV|zICvUS!LYgADBTFy<7+bxV_!o}
z3VGs5ir*Z+>pbJjX#E9K?Y_`kJwq++n13Uv;h>T3b!-nHC*D~+wl8j|sR_pABq{2n
zdOOP`(EC1YetE|6vJ}Ne4_HY6n8=dfXgSFaN!NUwEyr5230)OR`CRkX`gO7NaB!PX
z+NoxJgn}(+=J8N2$%pM4)5s^tAngS5byTWK0^{Cj$Gb34J7{EmMzqc5?eX<FcJxQ4
zlE;8Z22j-w{Z#FasIgCZaVWq&IN}nr|5yjT*Yhn((By0yFS2ueBhY~PeyWX|^)zI)
z>ii&#6lA5~rF#KQvxfEQjQ-8eURlHCpd5I`MZZf552Jt=y$cYq+Q8tzr$JJs-&3to
zaN^VY0QYmmu!b%8^-Zbe4cMgLmhyzEXb6l?x3nQD6J+f>U%d37l+5dl?)0@bl?@aI
zV4NEUAM2Vp4dG0iNoSEG{;e6<8dvHgHuq**@HJ-T7?o8*vhuvg^I2O%1EZPlHjBM#
zqudn=M%!D{tVVexFiZ(mC{Au@%ICYvgU%A$;BonFS-go?#0hjs0;k&R!5RLP{aMpt
z%>C&O7`4(X6=V4VIxWC=qtQ-ZkS{gRHhbs*$!S`>PFj;ppd2X3`_K?nQKcGYkX;3g
z`WrpV1la_*R)?L#KK48iZ}u)55X|K8LtQ_OaTJu4aM<5|HPf?zyIvoprQ+aRHBstJ
zt3D!Z6!v2el}@00DA5Q1`ie=$U%H$<rlPDKVXHIziiP77f3KHTpu$5Z@d1_|5`o2@
zAMFG%6lO9+Mv?MmLt#>chZV6reU$bC@!_5~ym+<2o}F5ke3(=PL~{ayX*1IZ)lfit
zNcT%%Tve(KmWhg;f(16~X~d-HCP*8eyjHu_EBkUwY4VbI&<jK6*0UZGKyitf0QIt%
zpt8vQ;Dw9U5$pwX&cl#y#8#j{bGuG2ly-BF=5Td(J=0gD86vKW7|`7k5^=jh5&uB`
z;0c6s4C|dTjcVY>IB-~|;D+xS2MfmFfPjD*@TP=gR@!;moN)cm*FP2XQaG3k=J^Tq
zPgiGT!FqdACdBri@CbVNh0tF5n-dKBd{n$aUq0C)08Y0BHYSDxnz8URNLs|_S}f93
zR!jN!D5e5I&EQz;&92c;jJ;!T_q>H=A6{0&Bqq6L>$y@|1&R#Hh|=V2z|m0<VeLpX
zUGyGoN8)1L_C0BhF6qgbTQ$$8Pj-fT*z%MERWE|;fL}vQPqfRG^hYi%g@-6|r<~{l
z@$b<C4u{-;vHBSKu&K@R<s}dD*=15a7;i!5MxkD|1+NJ9vMQ^B>?}i$Moz8c)E(w?
z6E89t^1eHHtWIyhb)K0pWTnQhw@qZZZIU-eh@9cdvQgxAJ=VxZAXyE|$}eVLf}IBg
zcWB`1%01?l^0{xR`#Aw)DGgL?Q)w_Qt`Uc|Pj*Fwi`Sf`EFA#vynPiTOWviMMYs&Q
zWq*${<(Tc%U%-<VjrNz8&m0v4LbxG4E8N2S@c3#LC|vS@2QWAI9CHVJIv5L8L_)+&
zMGgg`56^W=DY!?s3Rf^FR_!)Xt&B`4t1N0&qeVD!HeaeF{6yZC8yS3U?vO=Z;Qwy*
zl5&0*L+$ns!p{n}&^yfa7NbGULQE!s?k!%{Gvk$=?vWuk06xlyn29Ba^3lPPyCww~
z5ro>R8RcMijj6HVfMo)v5g$r#@szV(Nl(`*BX=B*MI;@7aRW-2|6zWsaY7S5x<qT{
z!pw`o_auzAPdNLQ0s4shUD+~P`s(;W`;t;F9e43HK=qZI5lqm;;ENwI6iFGbu&*Bm
zCShG~zOtxRRHusXS8+u+ofQvexo4bR2Xx_t_R<>h<ysJ*5D8OHZH+k#FwcZ-j+8xQ
zb9L)0ShHcws;@q<pudvPuG|ql(rpPd8ADg|ZwFiJ&{wz)7hV7+gBBa;42~pQAF8wn
zo0y)dea@V{$gEV<{IOxXzw`$puNC;H3)8}X`S`${3_^`sj))a$9~@0p&FbgyKwKmk
zi_ffTy;r<$pj=@avpoG}4Bj%QB9!PkWuZ*{^ilv)Ae3$1n>RKcl<QZNZt>RtM%wyy
zN8{<0<j`{qWZ(AO<|IJlJ>a?E?u7Si-PqyX$wDBvQq<w_@NjrTbxcG4ii;}BQ}lSo
zhs8IPseZ$77VPTN)`f|<#tYl?y_dY7@dO9%5pXXYVI6NW8aNY-(*y7cltZYoCoeb9
zr$UvLzTeSOPBETr3XJwp0hL^U15RvWg@Ft>dx0)xOOi3l5y7gf0*v|?>5I6?pKKyH
z!zE0&7gwpb*-&Hpqx&rbz63b5(-BsBC8o+yJXqu7wAa6FTnABOtfF)o1!#}*oC$tE
zkt->?$7aKfo5Gt2C@aw!rzJ$^E>Pm4PVgsaR$L60`GE>q5w9<zo+tsc$QDj42>ubg
zBLp*|l{if;#n>`eM4N90A`obDOR8iayuzDvm+DD1iqK&}Ux7jIvhdD~?<Whn7ZwvV
zS4KoYHX{;1kR3xSS84UuVi>dQ0l2>LngkWT=@^x85#{zG25&;(5yaQ}mW||e29yhx
zW`OB2DDb@Vbl+&TLBC)bBV{y%wSBa$nyKE(peOS_eCOb|@1Kreju{rM35Pt+>ksDm
zU0lhqsxdp9qs7eAlXInuRYT@GB^$pq*hwEqqn31;@$9>TI0#u(2fcoVWos7N+FY+h
zD=Qn-6^#AyRjap8<J8M|Da`3s1P!1n7SHp!ROt1M(%eDR!oq@u7Iiin;y}vI&W@FV
zfgx*MV>jhasN+C*qeRIWezQ{y;JO^lQV3*v&jOd{>*Iap>`P`OHyAgaPq=6jz$lue
zpc<AO2z>VYMZ>S7mgK$_?-y1eM>18`mO{!qeLx|QL&~~-eMs|XRkYDBpjF`ztFCto
z1g!?8&|Vrjg(f7|i4tfcd~Xd73--wZKMl?1$6YO@hD>E;XVPhmll<(`Qv1RJ_<sU^
zVJ{9}`w@L|<A2)%A;RRitV-Ko3wyQ!N4)G3As0<6Gvt7-<{$z=26OR^BzSCkS`ppu
z`;AgVQgTQ=Vh$pL2#~k90Kcgnzk0JY`s9Vfx3Ih-F|4hI_X;Ppyy(xF9I~k3T6N3t
zr1OYu^;;mjZteG1QVbFF3sMX3b0f>ozwH`hh_yyc;1wA;#?|mV8)x97Fhzqz*=o<g
zuY2~5lt{CU^WprT0m9y}8y1MVm6gYCm$yUrPveD&7&sN}Qz=<*viT#)9LJhJ;;JiW
zOVJ**af{zaB3SB%3}^$+R@wp4E`i4;5i`hEnb!S_m+D+jPjtqYmNtL=yjVQP4O#Rw
zNwwvxK?SZZC)&_Bj)B0baL-M>H=O%Ih-G#Quv$lwd!FG9iIeXB@ZokYBtot_$r)Y4
z_Jf9;I;)zfhci1xpZDBVzm_WIX0D59tV!4J%Yu&>$_h{wN<d@yMw3l1w=tWVR-g0X
z(u?ryKp<zos~B3qo`R-3nj2l2J$4B}=Z*W}WNP}+(6f}D>{${U&|duKlQ-0TRUyGN
zq+U^5Qw|iMP!JflPPCvMq$9E&PJ!vykj+D$u#B8O^w0v;SwVJSpKS?TP3X)`_$Bo{
zWQD5t@Crm^OSPJ$YMtwkc>B|xpAnin`KjX5>^i_WT%P9NsUD6+;-#QY8{-Gqv-?H1
zJ#Q4VNsh#%=M`B5Vz2m=sjAAgpR7^tD0?4BK50OeP5TA)oKoOzTpfvIt`;ItMo3W%
zn(m1h+*BFW!5Gt4wIQ=MSjmQ0V^a2{ykP?1o5|?N<wqY%?9kc0_BtkOBD4_M9+|H=
z?2C#|06Cp$`PbS9Dp&<Ta;!{DjeGKbVZth|!{lW&cvl8_#iAA?fmzTWqSs+&u*zJ{
zs!J9(QijD1*%nUW_PoA~N0*56VYZcJefI~wd6ngagHCzL>X}b-zPA^o9qAjBb67dK
z4uhMIE=R3<OG_#)xgQqY98=iNuFxMi4V{LNA29XX@~}wT-=XTYyzah`T<DtbXY`ZS
z@!BA77@;DFmW{wao%5xd8+*5@Vpa2AnFyudi&U_j#TPK#Cc<3#z1STLWnN10u$X>h
zpLNQ2fC~@&%2XhFUs!L3K%8=c0@|iSn#`yrZ85hA@Jt#KKQ7Ff?dM!8#JYJeTGJ`v
z<hgx}-E6i~x%1<!4%A)zZAn~=!$@m4fyOb1@&MJx>sGf9-kgg9$WkVZH|d}Sdd~Y8
zI%WJ|W3K^XBLoi61yEuf5DEze8CkWF7Kd}`^f6SdX@?x-sM4WqO5gMKNLIN1?g1;n
za`fZvTF}5;J6kLJ1pfVB@a2QYM?&yV%UsaU?Z0#+|IXri=0CEX(!Yd9TL0$a`cL2<
zDFX{bE%|>-+*3=!z)<-w;n5|a<NW`(@aTV{5n%qKpZdESRR3l-h8en+J}LK|q)gR>
zbX-)V^~{}hq%6PtH2$}m3geHON)<gN2^~$%ZvN}%tpEjkgtUtB{#?@d_e$}9-kRTw
z9{*A_etQ3Wim7ZIJ~{Wl*(9GJqTjCde-V@FsDI>V&GpQT<;<<lwZ-WEMkXbWZSRix
zrj51zp|SrHqi&Y;f8eMWuqaqafBwAU=l0*nj?_Od@Sk#q|B_t(ZS7#-Z2j2>{l8h>
zfAkLHaw<|i+^FuFo&vR7JX+!`Ir&wD&_Vb?=-uD6hGsm6OsN{xBBS4(8u!TIi8z<?
zh7F$$I+B-6=uq83mTNo>h7LqlPnrZR)M&8PM$$rxzd~l(R3Y}#<AKF>Jba=2)p{+y
z!L4EteF-I3g@!a{Cz8+6QhIiD8lpL;xrA+vT{B+c*c7caibikC4tW~b4}`VC{rqX2
zKl$`Ci835e*DV2y_AYu+6=9Yez)OePN(E@eq*jAm$bAs3e{Kh;a~2J-W55)%$h*b;
zW$cTuU4VOq{CAT8Glls}Nn3Hu=rAbWQiAi0$ek$Kk~4KoWZr@Uh!OS8ylpAjgn?>p
z|GdB_lYG)p+Cy3Fua8jO4B05GdLsS^Jed4LYvcXVqKyu%s|b%S9KwLW8d#FBivE-H
z636=U;#5{A?L39G?KgpDM3U}>1hw(!i~c_GgmFp=3|ge7{i*!t#rl&WjPVw2tOLh2
z0fw@`4qP#&P%$GhRTzxSo1t{92x^fzw(8qf6>J})4(AsYQC{8YCmUn@e-!Xsw($19
z^_W<HE!+MlYUeM9?oTe9m92@Z!Kb<Fr|g!7`EQa=K-?djo<J@{AXsC}jBnkmpH8OD
z%`PmCQz0;uHKnpES>5DI%l3s_T&WhoTo~2T5L+&pZBJi;y*Y$6XE38ublFXI&4zEf
z%&NT31nO`~G_~Z43GE=Cbf^|hsWXMtha(|SPhWL~zo?;GFGe2Pp$eq{*HJRZE<4m@
ztU(F5o45GtX$=qU@-YUxBt_@@?jT2)x9*#9?z-xBi1uVa6JcUlZ5AP)NFiMp8_C|T
zzi6K~Us*H|EvzEkST>UjfG9hF)}4d%)aQ_m8Owoq^vA*zsrB!40`5YrT;M&xS4Uq5
zJL=-C+B$lwaecWCypgiL9`e<P>R`lJFM;h~KMg2f^1&jeY3S%lQKNZUqu<!JWue7&
zfpXe1*YVP)6;4qF(W-Y~c_R@RaL#m6zNi^$Pt(%X5W)IB4Q~omI!t?{m(=Yl)GUby
zSZR+)rgx9P7`|w8x{qAYsV$e1Y8%>lwG`f_t4OJurl!W6ghj3vcS=ED;IN!yZekO%
zBr~F^ya-}gNTya@HJL;~DXCPSVHvt)dpxebVV>}sv-wAkNc7VnH}CVtm;QC*|Cy`)
z2SQw?KNc>3!@vG*tNBl}PxAUA=HJP8l7)+@k)DbUZA_*n@aS(?UHBhZ-GJc$2uK3)
zf8y#Y4_%jkJ59#_Uz6MaWJF>3le7L-ok9G&BMMm;3tSN%K_@8#S37AnZte_CGhr?H
zzwBA({~lCu{tPO~|K*?0dxur_yGwr$DF0kV&;EJFe~K#pkARfl);zz>m-YTAMsYuF
zLafa7e*+!=Lu?`UpNMIn>pBsOc&kr~bQv_j5X*G1l4X=#V#=%I#bmv#rB9D^Gm_%3
zGnxrOiwhk%2Wf5+UawF=QuC*#5E~DL%rymW@o*K!zDP*!+@n6)WIq+{e>BDTjwdt2
zd}=SKcw^EL-7<1uKeZPfsA+F&xQ7p%l3jA4uNl`(-@$CV){%W}74UytwnLKKo`o<q
zoJ0UGh}x$=5QX%!_5wEp%k$@;!XSuL!P^R6Np7z`s?PFH11c!k713EZ7$AgI2-SiX
zI-7-*ycqZM2R-fVkYGih=VwE!ixJUut&%6c3S?EL&X)+%S=l*W$`64LFq*GNADl3d
ze3oQ!Rg>Ynn?V&930ft#a|u6IgF$&fr*z;Xq|~Z^dDHSbCG$p>$6}k5(C&g@pJv)z
zFUxG$tf|_$DOY-0FZ;<Vgx8Tb<OwnaMW$S0MA}7v%hS^}k`O<Xz)y<aZ!tMs(zWHg
zUT)3n%+irGOSVO?qwJ8d&Q@3>k05psi8jS#JkQcPT#k^LwRdl<R)c<h5G}@zSZ1Dz
z;p8iBsxCeUA3W_QY_`YpI*e+Y!bxAFI?mGw0x5<6NJ;8H&Ewe^>!ThK2|}V4pnyZg
z)kIc?&yc?e8Vnqdf77BhYEtk0;Z9_D4se;-`MXN#yumK}&8Y18OPcXdJsa2m7F2&5
zb^qT?y{Y&<-PS+NbpKQ^=`kykE8O1#E7J?Pn{#9_$|LxU5AltS`3VzwV}r%&77^U~
z4Hs0c$Uv^n(>a)FO)AmJ)@KhhFEW$O?q2KB>JxJzU)L(E3VV|`amTG&qCx0Kp_OQN
zFov4^{T6s`ulZ22j&|+8S;Pg(mTJ{x1^JQU<G|i`3_G(2b8734)0<8(tbBcoNpYas
zyWWQav?U_iHO#j}Obo2JEXgP9-b=>zXgEQJdZ~c;wgF@=b83}d>~gVJh@>c$#Xz;0
zQ{iJmY}d3?pqj%VT~My$ldQoS#e9P)s`Z606>Vrn9$TNP>lXq0;C=H~O~pXs!F%h@
zE#9#>>1Boewz;w@1&tI%fCwoKhY9FwdPznr8GrkQ;QFxPa^X|?9A=SKgScps#XP-E
zyvOQ*h7Vt+dhN4}L6(l!ec)}@9?%4?d)EaKr;&8(tC)zL4o#zE2G9;by8sRA`@FN0
z%NV-s5gnXWyV$NrOPgAsZO)c0s>5cwv)P}U2b@Or={<KncN>MbdRx6~d5>ok*<67I
zeMgiMJ|;2NuG`RFUHqli`;Oa02u_l_a`1(*x4VbT97}GU*ClV>+~2K9U8BJyhdWc+
zd!gM4uC)|Om22r$Ieb&K37ud5cz68#Bq0Armrwo`L;oxrejDffXJV53EN~4hKaJt}
zO>~TGbu4JK=>J(bjQ*B<1swpv^A3?)XIWFbZ8j(XTKMRxMxzUhC|J0pl|@UcJ;3pu
z-rg-BSS6NIEL-LY|Ge|)M2p%30Pr~_3aC<!tT1YHVRB2UhsR`;38fE-28l&QP#lU9
zve@p2h^3ZQ@3YL~|LVpl==+}jbH}Ah4a+th$*#^z`;qe^Yf{g@9GJ(j5>O6WTS<IP
z{%*0~)qy8kq+eF;@&;{#G?xJnso^LG;LS8%qXL?Je!Y?byV$8fFc}nvq@_jpk$sK~
z?eS-hd|A;=;|Zz3q5!ih_|H%*#;-9FaZw-KWqAmW36R?Eu^ASg%7!knEC`V%l3S}0
zIb{;hYEaY#>;)x3b@R8zB;c(C9+pbKG!H+VX)Eg^;5%TO6Z-t0b5f_n6$Qv0PV14}
zjHwT_pvYiYa}DG<0%8lThgPzAOQ9Y0qTGo1zwbQX(4Jml+j=$kCl5Jk#IXSXIMD{?
zv&7C%p7Zw5dyT9$c_%_jJ`O9_G?&$SF_0VYRbjw{DPFle^e@fefIFC37PRCLmHoj~
zv_ygQ>8CgbD2HUdD(v4Qtd;KNG)|^c{`wfH|AF%_Tq7JgByz)NFa-bqEhQNKX#f5y
zC7`_i-Ent=g`TSRH+5(1??D#w&mgOkqNbYkU$apGSC{YBpV9hT=lkDJjD7<i|C+h|
zPbWq^|MH9a7kHcIKW0S#k2#l#`xFYGA9d24{zwiTb>HSfEZK@em|BnpiA>FhB_zIh
z1bU`=O&&`-+e4b&MFq+DXwlv3+TE=kGAku#o`|kXp$~)J@%nWRSYDmr5}@_z{ay09
z4?`txyvt8rDf#N~*omEaGL2bGJ157>DRsc^enm}Fda(P4?}x<Wy27tXWUP|j;q>-D
zYHroGyZbf>IhT$DZD+f!Ma1*J+H`9p_W@}oN}TIz&`PwcuNnDnf_v!VCM;$Hlw_4|
zz=`>6s;)JZG8CTGVMt(fiZS-Zm@9otVH#OwqGU{DEm24Zhs-A338jVcwMW-OEAPB~
z5v1l-?L9TiFCzVJEQCYIzTZUvc4J=_Vm-SGA>F)b<%gH<X?;ts1k_u6HbN`y1WM&M
z&O`WORUG>iv`@jresQNr_u$fIP5Y@}S38SbqYYL9uP?bP(PM*b)*^aIH5OY+`2})9
z`(;`espKSPW&pR`9Ihdg8$$g}*C>21XOT|qb=cv>tGVKB?QT%(a_vsaF!Ya#RTxak
zE9Ntlk^Tzhe->Pf|65-BKNeiVI(E3WzZ0IFJ+74QZ!-_Ae_2qb%c^~vmLq<emJ7s_
z5JT_kgA17R$lI3*=Tp}Q3+=K7^?lki4BGpLd`w&smD#(g<`XyAy=qK2%~%zfXS57=
zqk3)3j_x>%u4D&hMopz`%^!nOBj8ARUnTrtQ6hr!g3USjq2Ws@m^<lrsA*DE=Ne~F
z%@mA(ZPRoke&hblqf4~F2R)x8O);e+Q3Ftb-7wIq>8MA?d^9d@s6~DuR7{Tis^|xN
z44gVUQnOoS_mmhSK?j5~prVJ!21atGcKj!tuFc<O7GPeUwrQ_G6Ll&JYDNn;zSpWq
zFq%%P>=u!9In}33T!XnI3tVlJpXF?L1I0+4w<%%KjN!6`5qtYQ1JdS`F;gK`XxzB#
z?4rY})2&`92|Z$t^}V)0#OoCNEl?%8FPmQ^rKOjYD7R|JwiEZU%A)ZjrZFOGE%MIp
z^*SuEh_N0*DUQROXo>G(h=cknx_p+SGkLs><&q`s$5_u&tbN3lZW*t_RfBb9Dp16Q
zrlst+Ri(yPG>(S?4lHobb5sj+bS4x_2zDZvL7ffimA1AG=cq%HQ$BK$`vLj)qjL}v
zj{y16s=+26vG0~xL!K%6xu=J-I*xTW9>+Y5kiLpOa@9l#`6#<uHl4%J*Dym~cjX0V
zJ;rwcmUS}Sqd$IETGp;(CC8u9wD*4<C9(gRRkWC?{~j8D(`gMp>9m=oT%&b!|Dw}E
zjp=EJ{lU_1*+`9xQHYX@NL<;I8ESJYCBn)Z1xskam9%`#VkN+zL;5<8hLBwWRx|+=
z#`^7df&&F})(~C${hVj+bNlZTp3pxp?cYjxf6N@mWB)^-->OwjuXzZKwjz%@r;o-D
z*B6zAvYu3vF5-Z*h!h?D=CpFfLT}n;D-yeZHoS7v#&M$5=AxL|_`TxQa?r<*16`oS
zZFbs7JluZa0dMq{=NSUrv0^ua)30MHT3AD?iVTTdLb&$De#^olXR6vP%KS&)0;p5&
zjKH)CAD@&BI`<q*QdTe65Vt6v)Q(leQERInrUdLMqkZGohlBxogf1M^G1f2LZ?wB~
z2}C=K>A^B1;GWrXAnwI3pO1eM)B%wJyA?*uew{dsverjQw3(=&8SP5*8CM^0*jBN|
z$&{bSD}z0m;FF4Z$L=$e<3TI*f(>IEYB_~otMduj#&)j&!Q(u~I+I3RhOqA860@st
zK$&PdOgKS{ll*{8&{Iupb!pEimnC^2-MqbUYrjivjLpJD8{|kX&(p*6%Mu=<hw806
zP4Q5zdr_$A3~7ifZ&5X&80e-F>|RWWBL*3s2(4Oy>x&N78Vl#0xCunxmYUo8$f<Zw
zcl|(FmHq&V_4*S6CQ)C0M*hEY-9Huk)Sn^XX#F2moSm_bwSgU#ff6I19rJ(cv(2R_
z9j)!C^bJ1W5}4ajI$M~ZX`I-uFxR|$W%L**SQtzYqkY|!XpLprt8PcTShV?NL+e&t
z9;Z9q;HW?RW4L*27ANbAC;*u#KDa3261YwcS#VYh1`axO)>ZF^hX*RQdnEB}xAX0B
zbela4Y|iv}6Bp`QJFC0bTO!KV*2mi;7grj8?YcJe+f|Sg-TRfcGh+)D&Ta0|xc()x
zUu6f*I7qF|92Yz4trnK1<jdO1;mYtR!TW{P!|tW_oLlg%daYGdS_by}WADQ<oy!*-
zO|9^k>B~W!=bco)7h`KDE;k2M=S$N}(CNg?*+x&STcd~9GY=!rlZ#52^v7qM<L9uS
zXM;Ee5AB1&9|dg7T-aRfw}NjAu~)M@-4f!r*cYHovp3ywC<``^UNhO3nGUOSUIQ0y
zSXyrn%mR;0zLH=ctytTaTslF~FxksIkL}#-DGtFHIGRC^mx)@SSn#Go08Gh`f{lFX
zkDFG4^?qFv@1hls)HbnRVO~92lTlGwe7(Fv09qH0Nwv((WR|XN-vn912S87#nK)5b
zuUN+xU|=mF5~{O$dmaxR)rBx$ePbz)n&jEQcHvI#nuS*%FIg*KgFyACZ1~Q=HVZbh
zR?eIy-J>Igwx~J{u_otXh%H-uZ88?FULV0&HI1>qtX?>}8x40~gh>ILxzAjgxK~A9
zRIsD!@3ibuv9UkOQ%}IMdZOa2Np1%FX<5_arh8Mef$1Y-LMfA2@ARGkabjXe^N@hm
z6L_ck`h8I{A>nNLKFbd3V^uAAXbOtJ1lWBtb>i>oe(8$%yYsE-6}7vY5B-I{(;72J
zGmqNo6_8#}^$SPO%Uj(N-F=o*M}b#(rsZ<quY@i^;er-igNWgMXtS=_+V0sZ5}enZ
zUiq)*j4;2ZSqnhOa{_<|eSpAlg!OFzSsSU~e~0zL@S#l(8Fr8Sh5*M*v}u~*{PeY0
zmP|VHh6$cKF23&|S_&*$+9y$7tj!$8@ThO@;MIcpYx1yMCY&?A7c7icSl_6gBx}ga
zwjGS9zg}!|@N<Q~r6!|Yec$L#QiE_t%cPj04nFWPT{LnKOV70BPiGd)Lq(FD>rmuA
z2|{8nJzO%SI?|2=em!_%*(}Z-s~#CDx{ygc9N~~1;;l=v3E%B}SIRWtez7}uX2?*k
zOuqczyZ%I@_rzS(Ep0)7aj-#-o-L^~V4`JyoX^vxwz>oWn!yH{;fLrxMrk6fjS-A^
zt_p#EH<H<-Bk_9&?{AHa=p{-z`AQ{3(!(SA=c{RvKRdWUfWBzyx+%QhpJw8XrWdaZ
zt@ZH$DE#$cx4sen`GrM--#a*A9YSYarMjEQpM4xQL@6#Q!a$sG7VW9RP@G#5TtWzR
zE|=g|lPsP|WZqJb7~clPr60(IphS)FyD_Z8voL>*0a<mOFznr}h+l$W;*knL&~;;g
zsR=35yT&9yDRa{Q+=TXTCm6#f_&j_gq)aC0%k+&gg4!Y+$O;z<LucbKqzA*AJPQ-y
zPeb$u=P^K5-7-G5_S6V%z=J>|)!pKk$Zgninwb$m4ym??S(wnDXKq2zO-T?s18O>v
zRrVVCGHsG_v!Ew|uX``J9kUqP=1UB3c<XtK1I09riXAB9BKQ%WU&nB05yAdGu(yaS
z2OzSFM4V3$+XPaUg-Jj<2$2j%Xp@-OMZ-r7^7++%MP&@==l<TTNcQv8JtAvzAHs?+
za-@UsBQyfUU;i93{~5vq@8kmR^XJ?>BA{&1FaK%;G^PpUG#k^7bP)SL+ZF!Z?(cSD
zhCeR`B9~L1%=`1A;9DZax6!FXZOwBqbM^6~`!qDa4t`HY{oT&gox(M4Nb9A2r1Ey9
zGqD}!Bji525Ybg)w-(Af?}Il%)FVdM#<%w#CvbNZX@9s!%1sc0OAY*1<V%e%5W&q>
zZ;<dFr|fq+h>iSH>hmd$D5G|~iw~Buo%T+)=>-Im!#$o#1$&f2KPkR-nskW_{Anfy
z9I6v??AN{H!^h{->+$KQ{-eA3rK?t@pkg%~stxjyAj*r$pj4FSw;cLh{T&~YdY4T-
zD@QNfcg!fEHmOOsag^Kqn>2!Lv4hD2|9r50z@JTVD(_E5(|S1IQhoEWq^W%x_YPK0
zbeQZtW|!Am&f7k7ezY11gvwn&Uz%^tl118j%x5qptOjF2->I)>nyuw$DuDU;lLK4E
zh<7#~QzZv`c|JA|kME=^VOU16Sd=Er4oI$`ANkXE(yS9A6a0+lyliIO+#L=vv7tb7
z5Bt3a0Jkz(*qu?wa)!gUyffp~_&l!!PS>I@a=9d;W2`nHEA&T)?-*FV_}~`_1Km}Q
z$#_w>Ms`fV7`{%H_M$NDc-mhU`Z?8tD+SH-X5)juv9LdmxKK`PFsq?n8rby@PYt88
z<y8<;8YIB05_q0nIWuRN=P;}8t7*o=Sh~Ub;e8a7_^n%yCDUWQQkq7{g8dB0)E%JI
zxgtCUw>lQFB37o56hM^#)W0<q6w<;0MZhR?1g~*rC?%OTiuCoE*pb?~qCSoYty;Q?
z9>*}YS7Ch7(61fdhY|~UpsULS_lFiUAvrA@5YKTO%kxk9u%UjN+M&8RZN)#v(rs-*
z7kGEJ!&!TE{GOeM8WrM4q3b)WlJHb)A-C}icruGt9I#+8N<{MgV45T{u03^$L1<J$
z)k$!tgrzbypv17?MsR+1cW>22E~w;*Ib$M&_@}W~k&Fy%N0A9(olSkiJ8T(j1$pg7
zaKVu|IGnK19(+&EMht7pLbyx<KJOChh&jl#ai>Z{7a<T$1UF0Fl2^!Ouwf!}?a4lI
ziX;<FOR$NfPit$^Qhf!m?5|(&If?@)DQb7l+8&pLt#>dEZ@<6=86Zb-^%+a|6|)*o
zS-X>d)nNFK{hBl6RMXa2TRm1~Y?OvEwygh#J-y1>7HUZ{ed}rG_9JaYO;W_|M=iLl
zvQXkTyk#{vtq%++QncR0iqd8q=pMWM+RHkz<o<1c_CyneE~p-YFf{Gw`mwpWeGW0n
z3`Tfja6}$6in86fs6vyDC+sZlJ)>O;nGsa>A$M=Z);JZ@ML|k4<l67Lo2H#;U}`rU
z4HFXu6A!|rOh0JXmyGWOQz6()7~Qv}YG1DOFWJVjIItg>l2{>$^G*wY($2!wNGK^N
z#U|R#)*H@$3X+0}N8OCGY9@>4&Y}yz8X^7148P6kazU599ms!L-VVh0A8;d()}jGf
z*mL2jX~Wycb(J~%l7@jku9R^0I^*CfM+QHf1*X{07?l?n=sVsn0Bey_w1}DJSYvk?
z-|!+P99HqFyY<uU8EPLY$?w^`=#hz``%u<I+;Kd2P^8#%w4zZn_zZ2{#5W!0ms-Y<
zJy@q&1}+LQkY*H}dU+583otPhU(PxOb%^E#<9c}rKThhDn~$>2Zev~KRz7n(Cf$cy
z!&lU!Wy*yRl!Y70hRRgeqP<FO&8Eldn5vnNMJ%<45xMjRicAhNvyUeps@X?(PwU#M
zh+odlbT7a_YWou0$5G$3@MglZjW)o$%~^YyVm}a9b}?TU&TzkV?b~_M5^d_zrSp9q
z!FOdukFrFj(dhVL_5%)f<uoGC8f83OH0uF1@{XD<!Boh*{Xk+bhY6-O|9YqzhDi<=
zk8u$LoF62L1s%q~$aRh0TinyB+GoAYWonx%PLD;v$N?sy({KGoO|xgb(P%1OlUtJK
zJ=d$nr1$s^ZK;QhI_PNqRq)Q91~RZ&ps>3v6(`HITqZO22GCSd#)cMZTXet{xEca4
z;}Dp}7r{U6Bc}$<zkirIuT&yAh*_REJB2TK95;o-<TGyJ9pl2wBm#L@==EvE*E6t;
z<KvN_RE~?m^66<)c~0l~FRrm#$s-S7DOX`4^<JXhLcbUMvYKj?R+t}vdU5!bkfMB%
z2Y#x0>Lr!cJr%=Z(UbTyz71DmXwma~DvvVMEy;oD3vEFfNdX2?uypE-1$+bybs_~d
z+NJ35kZKlJ9G_eZ@~9!2`F7gP=!J4jaW)N{spaQW>EK^yrqNTsIN05sF<~r0Y9rPT
z-th|@lqcLea^{`h^vlKTpBYMXjJNS~$eC=~D+)GzQi<~vN<X_QfUp3`F#G*dIW!tN
zd&KZt1Y>y(FtHAa^`~H(H0VC1DNC7Ad{rDe0z98-joydYvK5_>-UfEBCvrz*?trAi
zWft08LqXx7!LqTaxV7O<Nn_SBg<H<)gJKqhV3hU%7fSlk7DSj^jvtpn%a9H%c|3+`
zA+{m5t^`#K-sgu0XY@F(enUZua`IP5Os&|TdgG~Kwu^FdC|hvQRFHuS3iMc95|%lm
zRJq324NU2tXj0Elr_=yNkj7XeOFCw$#34Q)xWuW%b-kB9cYrBG<F1=#Z&2G)^!eeH
zT~ct2>5)E#EUm%4%AvC3o>?mZ&y6XjfclW*PWIVf0&<KSSrWo;Y;WJ64@OICy|6<Z
zUw5wdhL22#fokCH(rY{i&5_b~LT50z1cuxh%mowc(?lXOHQG41*f?7$2M$(e9n?k-
zc5Z5CnHF%ODkY^JpH2^7HE1FaU=$WqBel{yTHU=I+@G(m7nll_a5k{p-5yT%=0#lK
zb|d8%(BZPC!`jUt4ZXoGiDl_sU4x0Kl{ENW)o{)v<`<t91*M&_C!ak7OS%NtB=70&
zOGg?M)<XNvBurCqs6w-VF@g+D&{?gkDAdlod`z?_dD>g)ZA5kvX_EVKPgyM8wQgUu
zyxp=O*T1}_451Ox#`3fo*W}{LNsg%q2QAqyW`Ut^l^#Xy%lIpX0m&cv#@|ot7wJP`
ziz@gccHb9)*0XoKsdQqN+O?W2j~+Wsj}xZE>p5BCNMJ0jxgn0yb?qy@7{zTmTPBK+
zvb+~ONXP6nGeH;=43fMK5Vj<@XF~0-zAtn_Ua>t$ezDkXL|duCEwr<Oo)VN4!e4~s
z9{xR!QcCuZb**+ZGhV;!o3LVVVU9QHdby^csp(**;*>wc7=q(Bo|HiQax;B{F;T{x
zLA`g20^O1N*b?mS9<O3bw`8osD?MFZYU`TdWpHeMkocw1E}7cV_*PP8p+MhENE*cm
zM?%W#IF0Mj0|#kdLaW<nn}0W_xJfTjlvNcX7B;P;#a$<Z78Exm;o{JfNCS<R=y}G#
zN@$Xh_EiW$LffqGtH6{$To~8700B)pp|3?Y<CRB<A$(ntzWm}|%ICkICPXYbKM>lW
zc6s2L^v80=jpPhk(Cx6r1@Us39Z<bJTt?j`ZwUi*ds*%9XbT8&|M|2mlAkegr2!jt
z#_r6IMq{dC8P|X}Li6&P7m<!alLirTR-xy7qvp)r))tKl1RukslZF39+B-nkwRP>|
zZLG#l8rwD++qP{xX>8lJtp<&4yK$q&YVbelebxJZ<Nm(?{gQFU8E0qb?7h}{Cf3|@
zK9fN~A@Z7v{h^Ztb5mIp1ewp{r&x~A-cK<JCIy7Ac@70yBUH?mWa;xP3nFUMA>2=?
zo7lowC-BfWGvU;#>aI(sQnNG`W|uPp(9S<TOn~i(?(gfDx$GB(elq8lLSlJ-Hus?a
zuImg5kjrW-E@SxdTUHZjNh|(R1Tydj6SVkZ<Mc_|r1Xz&P0oHAd1>@X_bbYVVBbz>
zI}J<O2YTBt4C&f^$cBIT{p@ax+I&ro66q4o_73d?;6UP%>#i;^>GG-haCHFMzRoq%
z<14>}TStnCC--M!=!2a+s>u%h+(If`$zmC~S5xJ%<<?}%hScTwINdmpetwD6XQoJ!
z!dT8%_rN6k_PaS;!Tj`@B$t<q1?NkTryI*_#f38x7>(f%t<SlGxG+VbonNZ)R=F){
zSq*>g88C6|cs);(wWWH6kSNf6u3NjSeXlk0ESao<=RB1Ds)}dXvgSObtU<%7-?CQn
zF<Il`{R-7MT&<ne61uF{S`C}L$NeI0y;P8y(P@SZGmPpt-xX#;)v~e~Vi0Mzwb$u+
zF#lmhg@CW_{OqYy#lsdTyiuU!J=;N&FhKFcl|G&+J4HI>LO&$ojEcPS!4^iEz|0eo
zOY(=oA&`NhX3DD82QGF$rP6%z8Ht=WHaC(avx1xfF)Y`!FkAnS)_<}F+(2#AG~P|E
zRyV|LyNalmvmThq22HInyhL5MFmdNbiSxxMvV)ScMy?U*_RL#pxv6Z`V}t8phKzqd
z(q7v}dsY!D6LiVcXzUa<ahE+Fi?W6|;2M64IH2DOxRj71OY%&5kW2z0*FMFAJa3wF
z-UwRq3~Q1JXm856`h5@K$~9_4Mg0rO4g-)A&5~z4?hzVJvfARKXiB~W#M-vWYq__7
zt)bZH`iH_*i0gD&R;gAHveaojLmtinW!87eK6r%iveAWP$^4@<jF<sqi*J6Qsg@3!
z`eIT?VBV5WczK^Whin<NY`#4q^YRLNFmfS-URcb7`I4VCgJ+Bjw-)N41KeUm(vH5+
z`f9OE@7HnK>E<}iNp8AX^(vXX?>nwcks!+74GdLQo^Psdsn~b5trpeUch_vF!oRgH
zt~4fnt1*hKx`;dNcjCSqX<w-GUOtoTcg^y6uWjMRgK5)AKsD<=cIs_L-CoSt%Beu^
ze1M~5N!|X_|NBl2X~h7Nn^J>E!1zHBwogU`E{=)&&j-{qWE<Wq+I|b_D?Ng5ht8e|
z+@5|yCqE*wKp(O_=(Q~#cw_w09d5I~JMx_Ysws?Zd1uW=U^bfyD%hl4hL_DVicl(p
zpN^B4r)N*RxiFq!q3f#iUU`IOm+MU(8P7z#UM|+a9;<Xa4)x>LTI@O>@0aWZU+D5-
zZ4|Wx%F4>oP(SAC@S2uVRLfPz`zJA%SFs64AJ%zBWObLcr=3dZUQ~;fpu|&Ti>YaT
z64NxPb&Yn#kw7%R2^}$!kJRo?re<PB;zUhobV?u#--nsO)yc}JN(xjY!5Sq~DcQ>i
za|)!&y)_e4i<?|b?#k#SA39t!xU@39ULGD~_%gwbxJja&9~sEa1|2E=MVbMVn_G~<
z^oKDeky51=l_@3mt8s@~xp|FRJCgC~FHolQFq36_kF)j+bJs14KJ(MQZ_=gg0O?b-
z^Vg3$!=NMA-<11=_)$JnU+_mv8nT(=E0c!fT#ag}mCpOHe2g={W|3-E2Q*oWGe4s=
zc5sxuyF$sZGlfZt{)5rxADgI#j&d%1lo(!K4=?uzei1ZBl%~Y_KHL;#ldYtC&8g$X
zXuO$O85vo~yG~~h_g34?&Nx%gO2Bt$wFj^2^LqI~GCc*NT3X15KpJKCSmO*brO6r#
z&+}|I{BY<j`jp(d5tux*{`RG3R}AE-vt{5B2(!a^3N*8sR3yX>Ec1JH{Ek_A4em+Y
zx@1wtuH74&oy%juV3>yez)g~j2RS|0X9;4%830Fu_4`nkPAAW*C89{$v=Fy$rQ!9(
zUb;)MO%-%qTM1l6VuiPhySKaN^Tpx){iT;)6q-|Tqu-9{dR}-D7!9UyWvi+34cWH1
zrSiF9w0>8am4=cujmTuFmUV@e5I0lgEY0<lE>_c;08&p7NR@h-h-lg+SB{~uzb&;e
z)(1TqdKJ({B6#7o0<Ko9vN2P5>wE!CV`wSrU}gS#R4ZhmY3!~sfOU1Ha~?-zUC^-1
z(L=L-n95%+;}}FM<mC&qy)*mh!_gq^h$TfL_v-06i-j5{mrNY67L~C8fsaJV-MZuc
zWKn6=+Nm&crWAv~*fPzCKzb{04R%}X-v#iB2t%1KgzC%#(if*}q#{4nV`%ZB!h~|=
z4l5F8il9L54+v<ROg>J8memV8NjpoMD@)YUM&-oOYxv1(^`>SQDZXm#F_EXQ+i7=P
zOXEQU+&inh5i|MmGq5W7Oa}af!wRQiIqW4$G{}ZA;bzak&WT(SW&E_F+Yu0H``6sN
zn?vaUC!U?gJL^p5_~EOkS#tHhE6b1wkL@FHjpNWCY3&~K7_9v3s3+kj$`Nas7h2)4
zKX-l_aTxeK(TP+XwPeve?(~!DRQ$*p%QSU_4Ai=O{=vtJu9Ad74J-M0o_b{Jk}NC!
zsw5p>*Ydz_mvT7zpm_T8u!d<q@$~IZBRAYU0uMEH(2^Rtr{u6BkK&@;;nL5p2~m!L
z6iW?hxio|h6f2m|5J%PtdtFN5b_HziiI%*%NTKR@d`!LwRfw#<`-zQ8he+|=_$I#J
zD{`9?%2MC0^vGO!uV7E99xBZ1LtlJECs=%1x!=1Uc0N$So5pn}Vh8mj3pzUajw&V-
zuO4|tJeM^&b}8|F%QCxme#gE=A(4t3W?5{hBMVQ|AnRDjTzLSOL9O^LR~?FT6mu<X
ztC{$Ih2C*m^#T5_`85v<L{J8?-xGHXYN#%#VO#FYm6k=XFX#T5_6P6{$-E6J_bVoB
zo}V-_HeBU2ySVQy<+M~Mo<>D#Gn!1q-f5qG4y;6bSEIo+G`T-sZ<z%5a$`fu09g~c
zp-EDIp^pQk7z(Nu^Nim#d5A9vr+0(XgN^>Z&$`Fjj`f>+F+ih@KV~?l%~d4jrNi?X
z8A%E)CUaErqhKIEWr`Hi0YuasaEP(z7I5I%0lR6kz;FVPxJnUSdg%O7%kfh#+muvF
zMCtv@lV|=AYYv~XJ_XI}7<)<I2>(pNm|Cx~Ba+Y7o`x9?%C6INO<3jbO>q9zT`}(D
z<c1aM0qyu{UMz~nSF47W8Z49CJ#wrAI7vxPyBB4(Ry$%AO4pf@^=k7~<-}2DkmQ-V
zB@bDq4V|3^m=5rzBz(BoU}hh@%bFlw3^&zYZ~{1s`*^@1&;QGzwJ~!9#$EQr-d9DK
z0?M8dY5H?Zj9T9wZ8fm3yLBK#g*u~>joAqjmILxr1)nt0LSzZQxauY1Bb#Ig*mI)8
z&Juk49#*`_h2a<58tZVQVgj-c<(tZmNhi^RL+8;(atw0CB((q_aT_qd<RBLn)Qf_p
z)mlBT^U76(92?))?3l;!ZAH`#%4|wuV%x3K(Dw>LQ7xKrj8O`D6zfTxu2xLA=x4TQ
z@~ssH<2fg{<-_^*v;tdqB2F-`YrnIsY$GK6sR|_Kz0VFRuA(S{G9HGrYtBr>do5<j
z{rj1z95KJ75B0J(M%n}rnRf>fBWKN(TgGG|_I@=@knf;?zIpvTui}W4uRmqyPtbR7
zV>k{tqM<Na2n}+<VU#0A1<|@bl!NC)18HnJrTF9YGcftoJ#TYgYS(1u{=&2u%m9&R
zp>lnA1`UHmw@f_EmB7Z0PGJaIU*gwp*gg43lS1OL@@9ELeigr|xoJlY*yAOEL)lrQ
zBR4VrQX5gE#Se?SV;2poP;>z#e4vFj2ITimk~RrId5;US>k74ApS}`(W7Ggnt!mgY
zf>(wMN`vWv)0+}`+ZR{Xj(kyu@6mZ&bI>GDw3S|>|L8)NY<_Z<L|45b9toiZ$^Wyn
zXf>`Tc#3B_fgR5~PWF+q9z(D<(XA4X>w}@^Cd<%?EX_QgqeO~|O`&i=)j$xe(=jka
zmj!e#cM*C0<P#A>OHLOcQo*E|x(G!uHQqh->t9for%rXXI}$Mw+R}zsw4|E-tF*8<
zY?+N<wRpwIpaqN>LxLzBitvbjwBmtO-4}%WE!E=j<AVC0cXplA6k&50S1B6fg*4_4
zzjK};w1*%8+05gUZMEkE3~S~DAytx3bmI#1!xtzm<i03SeB;f0Jot?}<c+URhvbX+
zDKJ^otLsa|h#CH12yFJ?d}%GW&Xz^j9<x8uI))2KS-8NJyE6xWZZO4_wL!nOkdWA(
zKaPCGny5Z?g>xou2;<t3GQrY!hNj0-e>}*7A_G+b=eBrXsQbRY*zaseOpYV>wlzre
zv9Wo_slQRsN<cQC^-};QfTD7yYFAm#G#=F!wzfTR=~Qk!lK|4=3^|1f>ke&?E}pOC
zB@YnI`|yLy7>fU9n_GV|)6b8L0>b?5{gdnFi@XHMPj7RCS_|lnc}(5qOr_%>CqJhf
zr(O>HdS>O+dNf-~zM;hHs=dT(vJgK%-6WNnw~;qv&?^gdCLkD8_J580%BaMoj-jML
zswtuoU8GfS9Q>q43W{<!H@lt1uxP(F`w^mWCZsm<U%~}jT4c2zGX_aXW4Fwy*f^l4
z9VXA`4lwMdu6<d=c~h-E8#nE=RzcGIatX+R9k%*pP#_P~8k-=GaYRJ+hFbDtsAEXr
z?m@W>QQhM75F@)o9b+c)dif~sfpjU`@Qy*U=$wc_6E6-uZCdBLtL9E}=zD=*EgRd(
zU@Tplxi=veqQ_j`)qe^6h+m^EY;}!7S<6@2(WxjMZ+^d_v-}QeQ~)SqE%3vh9G2Vt
z!aLkO-;^%GF%z(T#?_QbMD+@Vs@#5S{$8xg*=6)zm<YWldfYuZX`Ht=z?nj0F1yAa
z;^W9D>KbtSvK?Y_=}8y~XfDco*Earf>{#Wql)Jf4nXo7L2ainzkU3o9BLV}(f^K;G
zKj`<7bOt?zmU}(f#o;aJiM_+Z8ddk1N`sECq1^fmG&_yPMBEbMgH155<ZwbBIP0!D
zT<d}~S4^pmH7qmPg7)-fDQFS_hFQCw^qujj04R)tb7x109$9qU<@u?wt-#wwx+jwP
zAP*>yhBN9628UeziJXJo$tgm(6Jllyo{WD|CQtM&65%yHA-))F=JDe0>G9#9K0lDb
z^*vb`bZQQtan3}=CYV^UGx%yvZx2m^+)7Buc9K$~rOp<t8CQ3YC5d2Tz&JPVbkJ$k
z!ph<h@4bJfNdVV>;W6mERvGC0sP86Iz6AXp9Y@?h%%faz6KLpO+rWuK1E-dj@9~QI
z5m6RrZ}*$p?P(4d{1v5_?i}t|Rep87KgKI?o?0QrlvjdW4J=&eK-|v(+JZ0kYK*jK
zs|?`MVGv$MUkXBU3gp9e+_`X~NYf7+lOB>5AN^N1dUc0<&WCeYu{Z51KR)4%`@Gx{
zK=bxXR({G)TFK;~WbTQZZ>40X2F4|2y_N-b&+zik>JSQh7t>S!8QDH50V-~Xjl3sW
zoD`s|mW{qe3P5Eha_E7QJCl+MhH(o+Eo~h2xQq}6u8>Kj4dQ<<f<UoW18AH&Ku%mt
zk8Yu~D&$QqCp*6U38Q?7^R{0AY7GBbE74*rcy2s_p`}RTINk`2n+>)+dc_<BrRc9y
z=P<}Kl4)OEKBz*#ErAxIb_02uC75GcBT6296a!G*d9%V&!6=&tpwuj7X24V3Vo^Z^
z9CUqlqc>Vdv9C^bWq`d9OUpB7h#E7KH!9v|`oIwPG)KlsNY##lMj(<I>t7)P3l=49
z>y|78OX30*dJsKSqeDWRuRXvnRd%xP6Da^2pUq(e%I-`>BN)X&I0(iP+*`4XeO}^L
zzXw7jRcb5&@Le0&<0zdaz0DIcQ8<5n@p!Dk`cj!7>|%2eb`>rqu7rYbl_zA`iQl&%
zg24=bOd|w#XA-~{J`2NwS;HFV*7q33pf|!L|0semJ1MgS^L<7}Vw41o>qFmCE?`_o
zFsK$WKm_-qr{tl?RWQ^9+!s~H1rXmuRhD6Zf@LHN=+sIPly95X0h2&}i%zcFYeZSk
zFt;#n|9R7)otz)`yd3bQ^$dTU$P%L;Y|md%!YE(i;@-ypzG7_TGig8Y6Am#sf1@nG
zs^qA}(os4p9|fS)>$}+V*DTr8$QqQ74cIfX9}a8_$s0nV9Q8UtLM>)cf7FO%FHt}p
zRCakAPa5H18v<e|_8gA=RO@9elM$JYAOEgu81~#JSaYmD#tfK5^(FY@a2ii6;PUel
zp?7Ti1?0>u#rA2)uoWbFy}QN2%f6B8VbFT{6E(G+<#}Mr)KvOP{x(sV`4UKixcQ6_
zntg4Kx=MC3gjBE<XZ+F-s7_$vkzmTDf!`39;fiuugiR2&tRg0eY+DSMyUoYABWqY|
z+K>Rq1Hg%enX)91jHB**Zq@>SYCv_PEQzn2V^S&#{T)+JmRc>~G}So_Di%h{6y|!r
z@6-u=E$+}p@G!CZscK(M<3v!$!?cDVWA&qB`Gd&2&MhlcnF+Hz;18(zN`;~+ip9Q3
zo--rtq9tUiW&xnkBb=#c;4i0yLEJmi#)!d#uiYl-nN$SCJ;m?W^DVYej$t2rjx1b`
z;U92_qM=eXLQQJxjn86iRc*s+A?K$_R0b@vN^5$GUY$IlCEft+UVyF~sOlEh_Fw)k
z9DOKUG=j>G&c=z9(JAM&OY(N)<nF|U>0fL({<ekG_1=e<Hw(u7OHQ!MHl<1aYOQBF
zt`EHSmw%`3^Z+};d-&^SJK92ANb<hWg`R=!OkeA=WZeYySh%8Za-v5(POEs2a&w{I
z;M_-FW%<#vert|T7J1s-><lfwCXurV)u3tf2oVP8t(tJOmsZxN!*h`i#l--fdUm0}
zYGp0P)0O!uZa3-;4IVBvsMKWsC7KaEZ>2rUF631%2TF=Pk6iC3A{3Uw7Aobn!FmlT
zJD*qbuI;$f6694Wc0MEV#&r8K1)b5o3OQX&%JTy_5tB3^og}3#TZyp7LVHE7mJt*S
zjlHFPjUu3A8k0z%cvatGU=bBv<q=2Q^;4$rs}zF{P17Yd#enN+SaT%M8bxk%)NXgO
zlcsIQ={QhU-InDIC>6=$uM4qTH<#H<c3PEVuX;LAQkpaZ#amZ&A9S_u1Om<a?2Bld
zaHf<vSv9Fi8-*oqtu~F6!un7r*9-ghs`|b<i!g&4XNwcm=%^KsKs(Dz8)cS(Y&IzY
z-dR@xcfW<Fyane%>je6eq2b$c=8R0aBrgQnRG<n8xM0Qz@{%*V1@clfitGIyrIhb_
z{1b#FQ>(X;l-?&7IcZrnA^L}=N_)$z@ydz}W~h^Xs1r#UN6?~H6t?qb|A@X^PVy3t
zd8np>o_X=1w^Jy%a6JrOjnbezI@Tyou#^py^bcoFlldtumZY)(7c5g;v?jMecHz0b
z{mxsx9=P4fMZ5QKQ+72plbN89siOO{(6awZqcedyj1$-4_#wJ&J1PBi%VSlpq%yG{
zC2>WbJjty|({41mPT20iz=~DHx2Oe|l$g77UN5&j-rjGd3}Ri39c8;}&whcd28r_g
zbUk?TSw|lfCv#6(*I1P!(KkfKMOM;DnQS$#QKQsxtt?Ef^2^n?CY_ACe3{osCl_Ze
z`y$xY8RQzk6${CAH7HFa6vjuA>(zY@@~v!qLLaA(RegAaTW^}NFv;YXVd(hRGm&@W
z%Agq7n*nphI02Z5c}y-`YmaBQ60`H<_BBjNO?f@wLh_`8v%HKW%v+G1CS_S8l7Lft
zWs7sqFQ>=fO{4%Z5AyP_h8AUwm42#54j4!ktLl7BYRRR2d(i5Y{a1X=$u4MGQsL`$
z>YD4j#|8FQ<#^3)ev%7Tm3XTaqjTGrpp^^T4=t;wi_K}MoHh;?cBYO3>qldX{Lb<*
zDyiwCyK7A&wc~8fb#GVIe|Ofbq2>SMYNzJ=W3_BOqJl%SlB`o%qVD<vRGD;WC0c_q
z{(z^ffum>Ll>X)2llqCJnKL22Mp{)WRY}`X+^_S-T8%q$m<6zEQDv;NnW&2%Oym)b
zJ6)aDkv5mb`1p*ht3i&Nlw+(GTIW$3)Wb6$%y*Bo9jRYLma{T7)MWh)gDo^bmDqfS
z3;|cI8*dxS(t7ZVQ?H;ATuO8tLiVobMYU7k@N)H{KNBHfse*~)e7^Xj*Eto)p3W56
zyLSRa!2gjj`{&GX6hOA*KPz5new7M{SsR)e7&%17jRSgdqYrpo5vU^olcb%Pa#2Ym
z3?i_GU?T^hZ<~>8_{PmdHF-WPa(0i1sP)iDtlT|!$YkHWf4BSY9Vxtvc$Ontr<Pc!
z%*s3VXaaKT?3~U|grv47-^n<%KE7o7j!8pCc-X9l(6m%a&V7cy^hf?ScIg^WiMdz5
zWi~vrklF(jILawCR_xfVuM(7N++6kpZ*yP=(ine(%u_nw_$WUmE~bRJeB<%fL-iQj
z`D>&Ir18ilNK_mzpFQ;zvC_Ubu$D{r!{B0h19O`eurss-4?^hJK!lziGg7ayrl7Ee
ztTdLh3l&hC_h9IOdz-l*KQX>ksJdmP-A##uS8lLj<Hb^09oc>WIU8y(!Smn;_?8u9
zW;tAN=?A=H%jOf?FI(DQaK`R6i~A3zBYF!lg7aDr`A703_P5WXwKFUpvpBarhOe*m
zH)ZaAwHbsLuQrthB(O&RmR|kmCHbv(*}&1v+04=H-$h9DEVOT(*yw*1v1Ter*{ssR
z0D7qAotpu-b=#i~*p=m~)i;36<Ov`-a)O3c4)9wJ$0WkpEcxIPFJ~g@Chx)fArIf(
zi&pQPD!5e?`$Il;eguoX@>iC2ByEW!$llwwy(r)GK#H?2Sh_&=IlOZ}+v{KMLIZi;
z7^F88m*ZmWERhI9xG$HdtD-mw80rx8WnEaf5-|YBNjxk%qiBPt#UTIwaW72#%V%8z
zayfo!jAc>z6it&jvL=%<YrnQx@trhvPb6ub>CM<V2c`#xA0W4zyvKfyq@ntLy#<MJ
zAfhxoDP53H4H=Wv>1wO>y~P7VH{CcF=PRHZvO+jQ;#bw|)Oa5@xd!f>P?}5&(Jt@~
zdw2ye6|Z9V<K>!$k%jZ|*}#*^U_LW-rxC42T@PJVY@JQ1^Rj7uDm=<)5~wIKV)l1R
zyVQ_|l7&wg?H|BMpIH^$<xe{>PB$624%%mF*XPyKDY=2kASwH*0!iLjGP-1{j~~q@
zs2vY`8E93Sd1*e^QVI0JDP8uXhr>g;miZkuX7=|$+qkYYoNTULxaaeu6}ZU_T+3O&
zPE9e?CsV?`Evq|2VuI~-48);l3KhC4ScNz?f%L}Xd`gnh_ElmxLXr0Ty>%%&2j0_9
zxVMyd_>QR76#!gHe}l`PE1v&1^}+1F>XfejvnyqV;NPuN`j3)lTD;m4B1ZOlJo@Ul
z!llXI3zx9p3YXIUM5AGil<?gbpmgE^uYc$9bE^^a0S^4@=dFzUpK9r?82I=4{a=08
z=-J;$Co&b}Y*y&t0c?PB7Y$<6VNwi$THxZQ3enRAsHFzdUBqNpW@qzsevZ?wAC{z4
zc&A2gLk}74KRbV%T{f+1hikdbKZ8sH%goSTt*&0ni<Kv$LpO3i%v*Dlk1MNN847PS
zYE&KqstqIK3)bCv{X{Dl?ldPx{18B1@?<sD1vnr+$k<^=ZkMpw!9{Yw>nkzp87xUk
zIjGl2kWkMW?w7UHy~Jg79cEwX^sq~{2Sa&#IzlcBD~u+B;18HXVeiL>ddl|=1G-bR
z83UIPnWFoy$1?7oq^Y?VGmun)Y6zgSccpvMjOPeb+ET=Wpa34CrYm+zVu7gWe9X?c
zP_l-^;Rw~pTF%IMfuD$Wd{{fA>S4QPJOale4Sr^BLasoq)%Bf6FWQ@>CDLM?Y28*V
zQ8L+8piL4dJLOgB<zVP!L57<S>iUW&d+Nrv2npV)I@81K#B;$78N)f#tK<j?v~z?l
zxLsmj4kqZ4Fc!(lR=svE@;OzB$7Lr*(esXYf-damMa~^Q4z^bpBy;+E6q)juMym8)
zqlf)uA=_chuupqgWG7Kfp!1S6qtAOR@A9p$b*LvwQ+qaV#-2vrf7|>cyI;rNOJ@Lp
z_Q2oJ{^u&+|G!-;rEPQ=e)U_liUu@$rb7;@mhleU6}JgUlQnOLFi^5pUmoB&7vFXt
zAUKt;o1@5o^@3C~(ewQ@<Tk-R$ywFhJiqAT&h2P2LQ3y7&4lwklex{6%+bLP?_7DL
zL#SSHiEH04>L<5C8hpu!$)F*J3RYkgB)W-QpIdhi+2LnBtL7DmM|@tCv@;t+S#`<v
zOh6IzinS`b{aI|}bYXf}Ao>@c%GXMx@b<p+hcvX+a0wvWl1J<Mlt+TddYy@b_p0rm
z<xi(V_!6r86oNDFYu`!NvS%Z&By}fxs6G=a-<6&aIcHN+ZbBnp1vH4f=?yGWO6&uG
z09gQL^WP%&=b8MiChQ*~_D8wBfQ_LMp0K5jiw*;T=EcFr$sSMzE8}7fD8T<Um6`JE
zZ!+ft>jS!N7T-i61}W&68g>Y8YPk-EvVvrvNmy%sGGv$gz2VjCAX<@pb(Vnm_JO7g
zK&It`W8$>3rYU*xF!5k`4s8BVLUwH<12m^whm47wn<hqIs9yF`t$prUZZErR<Twv~
zE6<m^n?F>~+JOhLc{AB*7kBN~tg40p%0G$1{^|DHmGw07hEE?5Mc}(K*2{E5eiJM%
z^E$ndQH7+Gy?1GzvFztE*svittYaYBSRCk@ZXkuKu(M@Ac_BG9Ms1q;v@va^x}kkZ
z<K!9a81mGgbH-6Z_>-jv)xL&7o_`-IkkAz>ttVpsYCXx8Ek={rk#fu*oAGVaV%>Hq
zkJ5vE5%XpaHHifRv1yR(xG)GaW+)Ft4tup14|dR-QF4u>FS^y_YQLh2&1`~eg5E(N
zkh+Tzco)FqsJ_VGJVb4Kh-Xp$^LX9dXw3JxTT>scf?IEeqeU-ZRDTNP%rRJdr@TK3
z%&+|@jXVEfp&=i-Bl{z9BF5MD!qcvN&ynrgYU?_??dAzx<S5URbi`s>Cia;=9*(-S
zb;9X^!Lf*TJWmU`jlpSKK(io`-fOBZ+mdyl>VzFxN5Q;vAJ%rOn_+w*v~ND^>S9NY
z%9rm?K=S?mA&zk_)!5$v0Gj(v9354me$&(c)kv6;jsfqV3i}T<y^*fq>FDUt|KYL}
z#>fHuO60)ob{)RQf>8R^C0kfweryV1AW4E)G==7J&7}pSasi?z7mXxxBA%3`0yF!w
z*1Ih4E50ogT&&kGq?3J7S}PuC&{;dANJFy&DII+IrRj60fj|<-ST`d*%7l}Ulpwp&
z5XXGG(<iQTVNJ|&#CJ1{y9k{GqS4b06-j!BMb=uH%0cGYBFPnkLzJf!;3VD2E@6--
zt7%aN%WZlb)JCb7;F5LdKp}VR;h@HWE_nzu7_inXfeM2|lB|tZJESUZ$4Psph(6HY
z$~+eCHFl`ZZ``Oso@>fuXPdUW2}4kVD0&unNMc(QQA#;0yuxts@nt}Jk?pH@?(6-P
z^w+E?{XyzpGAWl&VO{PBkxz)hY$ytkGe}=^3}{6xzLW<RtKAH*|MD7Hw;hCO04qTb
z^q=DVXRq<i4fvPE{GYr=fF@*R{=;PI*rWr*SDHttf0o1vg=9)zUZ#@2Uf8_d8B}RS
zV%HB^`K#~%QSNN#&j~OFOf%Y@_YSuY-acnrQpT@qjo*e*xOjVxyW7x|Yv47-<fx!)
zxgVJ`zd(sGl4E9V%ghe<@$hiCa%Qn+dS(d}A@2e2$Z5z$;AyM)*(n(udm7^s?mjqN
z>1D4vKu0B_ld>{L_9;kHwB=~Zg%U1F5)q3J#l%X+&FreHgz94zt#~V_s9P91py}Ly
zV=M!ciax>*$)|gvw3qXmN1G8w><0m_Y>Wdj9VkcfLAmGY>^NPb3Qi;Bp%!kk=pBUp
z*{Lm2Hk2u9W~ViUczNExex#xC6WDtXWbH~gfQ9w_>!EuI<X(bNYtP|au<odQB5)j-
zEB^56kk>9-=E1F6bKAxs&RiMwVUE5Or?SLhNvrp;7$mBnQ{YfVYpZ)|2*0Sq8tb(#
zePga`vR1u|DLN(raB-;lxf4IdsreU%EXNp57_A?(UwL<1yrzaT+`QOSx6XX!xiPeA
z^q4)~7nDS&T0@fd*Oy-O^PQz0PfBaOZao!Ia!4PRQe0H~K5V!~_j?oa8S6p~d>2KA
z==Uc}!PQm~l+SATIc`<G-}geB>>$tkRpwrJeCc1tl;04`XA6Ltir=L7&zJ%14*wc6
zzZ|VU$YnAWhOJit4Q^L;5Dw>n%<zU+2!e(D*sNiQ_)xLfF(dj^E6C;Xz6+5*{`e>_
zPl0t<$Pt2VpLDkYvpC7iTjs^h-tPB<9HVf;-*(30Ya_DdNZ;A+qU|{ik(yZTH}*#c
zY?!s#`1~&1px&>G^seG^Jn}r%lzv<_$%#3dl)C|Xjz|5zoKg8##yj1Os9pz=1P&MS
zTVa|=RiT0oY-2=U)rTPaDMKZWk2Q_btV^p_1>()jC{|S+V<ojax-zZ}%5Gak7^*tc
zKYJ3^7Wo0I6cU4_gfB;QL0{Ljv|CI`wr6m2F<<66ps{!$w;@yzPv2|r2CUP``{A~=
zWIvZE%_NpTB?RliP2I9|uq&>!eum;#2^7w<i2Gq$1<iCRT;tQb+*aIq@H2AXdaZ)b
zbqTo8LYM<pVkRezU&QL3c#v2WVurrfet_kg0ZCHSW1Z#Nw6+!BZKv`OoN4TsN@L<P
zOMfy(RYX~M>U;rttB4$Y1At}aq`h)_21cVk9`BwiA${01f?DbN1I4&TdRmh0n6?$5
z^AlPhA48bm?%_+5*oup3t~mfS%O7uxn}B=CNV(-dAv<yDdbgC-5OJ0B!nshVGv0M6
z($u*7inNe8pS(N&!TaVitlDh4y=^uA8ZXrUFTA{!kz3lBm|5$v{6VN9uVFL$&+74*
z9Qzr=OfbH3<sxMYtddNUTL!lYHU05g!odWikk`%~31Jo2Jb9#5_7|E1PD-J!O|IMU
zVQimG5?0cSIOiSZ@*-w~Tnd_<cu=|xJ7QWz$Q_;h!|(FRIpLm<ddTaP9}<;$4b{G2
z2qCz!^0*ec@q}&Y6VHB%oPn06luEbS<VToH{l;niXp6qeKuk<mucU*LT(q<;r$h7|
z;cLG^tjX>A=Ug4xh<mD>_Z5#N+N(L)HR7kAEVO&RSoxY$U}!oh*ua>|f_+yJ-8<JP
zL)aZd0wi9A-7er!DxgKtn)aZw$w_-$-t{vl!&edCs(<)W78%^qaloHJp4)IdOTI$Q
zuDy|>txC68uHetW89Xw@gx_0BdW~hwhZu}VY<2{jpD@-#F#7Db)!VfGBC*lvcMHBS
zc`+)ZowqVa@g@I6k9PRI`zM^wp}{8^XW`{HD`~*ly{$b|8Qfx65oiYe2w``D9_vJ=
zo;UXKep{VwJ2HoEbf@1%&mBfhEoNKPTglH8*svd_=s4-?^>(;PhM9iVkN3RQkHeBa
z!<IJbMcer&DQa@Y+?mCV*X?|lbM`#<`p$RvNBubIKkCPaK3tOQc0DT3S{pRDzhhk~
z*}D7HFx{&?#`^>Sqn+Q>&YztIA^?njW2Jb5jjg?nm8~P5wT(4^qK)wv<3ypX7NF5Q
zvKN4RV0acx;8CwonR2MDGO$&O6v_i*dSl$u3UNji<-3ng+qU9TudeTxHIE5yTxb@b
z$)@%a<~bY5w)atDdQig-xsn4ITX=rN)MO@bT%Zm%Ig1&{P`eR5Bw_+oleG6OCU~)%
z7GojB*O7h$OV;h{wN|6GE1mQ2f-D-h8TxPw3h>gG8$t5$W_-jQ?u%NrnvWf+M(xap
z5_o4d4e5L%$gE0L<>Ug;!1$l#?3*c{{6BmH8N0H)*eQ?jS7Qi`0*;1*aa=CnIn-3k
zENX3to&;_L(xkPc<JdYvgjcsOf-u7C1yudY6wJ-$r~o@wjsLjGDdU*$6e}eNhv_NB
zSwA{@MW~~~9TaKZJJ=d|!n!az%|z@d$~=O8lU~js?^|NPwB!Ayhrsl|k>1~yf$kqd
zto23#@wN;A3J9wqX@!+qP`T+`0w+s_@W+s~-8fY?=Uvx8I=~kDkx-T+D+Jj`I~%YP
zDx*^5IPDJ?FkL#9?wGWyoR$q`Sd0nc{GJ@a8O@r*7E0aclX&irxzJN;;$1L#oQ1h_
zN6l1q`FzN+(Y^lk7}4O<;1OfYbotjA_44)Z>&!9z^=s!JS+&?AtWx3-?dz3!QIbhC
zcI1-fI7nJt$4Ce{7j>6hhzL6&OWx;qTI-bGdj`pwgR5Tw8A}06GN$$hrJEal@@GhS
zfl^?93Niy}Jr7OPekb525mQ)Nm+-~52a!!aiu3vPTbu;MWQmvZds@mJeCr=A@MwVj
z@{wbdJ#<vGN)Zz3*!<BN-uOc9K3Q7K%M$5z`kJ3?Fyb_kU9cQKiC%0JK!kNitzZ3`
zBX!q(uO+^?ZGqNFQT0-f{<zCH$@SR9NpT%oxajOuqp4&&=h39N?ir4+5cZf>&K+^h
zZaI(w8dQltMh3Z?ruN|<?=a1d0^x3Ex2V8kRjGpZ6t|3u@6^pTcp9)Ma74cSikik_
zLZMyO-YdPSU*@!wzn(*kgav*{p8K6BGfH~q``70l|1)rqDxh}#XcGC!Aq{8V*$>xI
z!|g}Pwa!KjZQzS5LtB5?0Yh-1#zO#-wto}gzZ0GLCBc~rn}0-Sy7IP5<5wskrE_zu
zIQZ0JN9M|ExCxRqLsbmGSCMDTUVlD8W5(RpaqW6utb1*GxnNkbx>#y_py^CI2=zAH
zEQW(q)3K!n#bT&se^|Ht0tE?8zQ8qDJT6Sg!O8AUYPMqO`8`#XJSjRsrVP>6@=1-H
zY!Rw?<?sk5w**acbj?gIT9Yy*<iIas3cQMMJ5;LqW=+JiBd%+Tbk@(XT;OO2D?O%~
zcv{hR)^{cj{rtOWpAKk~ms`rWD&r3&J*VYEOVm8ghDkZYs=M81=u}e3ojB2*N@eZ9
zl<^V8W}0Wyn?LG{U&;n--X}@Fca$^57HPT-+HdO~%G4Qpsw^_iAkrQz*`XGPb5d&4
zuQ}EO%bK5(94_3nuLD`bl<n!un|CN}cK8aQ+|m;j8JK73_iD()HHN*IaIj4(0nHv4
zGh@z-${@k94{y(e*V3EogfZDPL<D7pfIpS9=d}9qML|dhW{l{5PTC*ob~cesMt_cP
z{g(I$XMOW$+Rf)~g>awKkw;q<?-nh+1c6Gz*}be1wU1Te1iq8y&x2Aa`$E?`h-iY`
z>0L)3)&?+od|rUwRLdqgd}Sv95MI9l;_t*DnSZfr{LWE`_;+KF<ak7ld42S>v|U7R
z)Qd8J;N#cdgO4b`f{$1j=~$_%|D?MGiBalw18Bi;!0X?Ekw1II6n{2Pf94SR?Kw$c
ztd@-*Ag(kykLsUNcVf=lBbykSY{{|PV~F@ejBwmiUV|Uf`|0sJw)_I|snzDyZpH!V
zXP$Rlc!_<aC|UcxhnEZe=xZoSVV=`4aK~ORb#d%_<a-7B@+BWBHwsH2kQxF8H;EoA
zW(_?|?$NUh+#%s7CU^~&mx3@I!Qs7Ehmz0*w}ixpsoTE+VNFcWkm<ztXC?}xxRP6`
zq^ql`V^aISLmM=%<^Z!%K+IjbaYz`iprVcxOl}M)wx~&X@*fols(k!N{o<3@Q6#=u
z0r6aFYRKW@bbvIQU+&?_yx!85KJ~?As&(-d><tlB^>M|gfGLXq&Di`6L@@jj!KM69
zI_C<8zl(@kGIqjQ015JZZ4MqOBl|Bx&Ppa)3_(h@UZ(aU!z3b-y@HjXcY!myET16-
zG_)k34S<mZEUMH2PymO3psD!g2N+fIUqa)zu=M}5$p%C@SbpuX0klZ~*ToyBtLH=v
zi5M$~K%G!76!S|U29l2CdemxYp;j9d?2gY}#YewGf4ku(ZRxHnEzHvssf#==v)k{j
zUTmii-qpBR89C(OWUVdokQE)QUzQuCKh-<8Y@TN&1}T=Sq}JR79e}1=P;M^VI`^*T
zjHm*$if7}=Fyo3C!H#A3E{1z66%_<52_6aOGEwCf#x=ITf8JC@51QA73DQBtu%pn0
zQFNmFIpJk1s$>qNZUFSm1zyz}@eN0cg&~Iz!`w%@lFEC6*%!NgKs@_BshdDd>98uP
zsx3b;HTfv_lbdY_;*mj;F<6RmP-EG}4kMIZMZnBLF=1Rf-bb8Nc}3lYazX(n=y1$r
zsubEbXKO?i_}u=I584lEU6tSF({*E^wW~sKrY4Y)w#{0(FYfnjFi?|D=htmj#efc8
zKFI+oC+r$PCH5dw+$2N3`c{|I*b1v3=xep-EL@^reHqz0TQmNlzTna`pNzcd`BXS5
zbxh?~%`@CH3yFF!7@6lTjo@GO)7u8WNnOvRdDiNOV;kj96Ih4V9Af~J7*#CMb~uwy
zxa(0&kMTL}B7=5BgfgveH6#7~A2e}w4Y?;@0lIJOFLfUt05N}fvks0%_C_|2Zf}e;
zN)AQ>dJaZ9Ous@dd#P4$c5qN<RtDi=p2P~}n_i4%s-T`c<#ZKNgH0?xxNBJam~)O<
zzf1PVoI*8K{AE*W0)!YRp7kF;+Ut>2jU-L>S{zp57Nf7ag;}vzQh@6`fY3n*V86Pu
zkwbE&e)b6OfZ(7b;XxoeZ@r@PJi}{1sQanbblQ!Ua^IcMEbk%Cwdh9blQ=`;y<7s#
zc;0j`R+OyBWq(30d;l$x>-n649@G%t+5)4=K(fU#RG}<6YQBKA7d9_wk*-Ws^xk1g
zhKsOUxi@rkWTjyI9rWRlOt!3S)R^%)lf}GnN2fDWjxY2EwJ*C%m37<t9@#wtXpqu1
zB#e&VYv@FRd#D&~KrD=F0Bekk!LoQgWiLyZyjc+emhIONUOQRZJmh*d=Hqk;5FGcd
zYn7ewesIF{q+>zKQNKMA6j0g9UfL5|><2=Wt<k>WyPxAHG8mOYViJhUB_F4z{5c7>
zf#=$82F$&R6vQ3<-ClOHj|JT!X+llCmpC(ZCx;CmaV5B<rICU-q|v#3h5DjvCVn`H
zhfqp>y+88+b-t;S{(?sFT9cf;Fc*3&nR)Dxuk6ULg+txP(-L{mGQZf@c-xm~g@g`#
zr^9lUfWwTXMJ7c)bkHIQ`K;as$bcv=C^=5R?3hMg8(Jl1ZA$DRt#k!7&V#TLAYHM5
zq-3R|WeIcnQY5|AZ%3VJo4xSxuJUD0co9a}_Xo}9Wk)Qk4&}!7U7Q}C5k$+q>j}SR
zgJlEE{>=m2fG0^Rd$g%5HndOO5wco5LlG6~<?Z&*WvYa(!3|jw40@QocnKZy^ZUEL
z{B>i^@Xa?>_Ax(Q$_${KC(-}P%Dt&FfV2Nb^(Jd?V{2sZXlCRfY-S0-u8ggtnT@rW
zm933E0MYfe)kEWQWD?XA6JwM0N(^(1vht$i5)(4RV-n3uP#^4O8)fU7cj_)^$=*|(
zk5LcNQixI4)lZ8cy<Hw0Vu;bE=#B9Ajf?Q#M)%M5;_Y^R+Y<tA>h0cyZS1Y|9CeuJ
zX?2)?vH$;0wrKNr&BgzTHh-6+b>}nShJR-{{<D`%2sq<k5!wHGh6xDA(*N>^{=-Ke
z0fb|fun{o>-OcCu!v)KgyS=&alUw@AYZ+IO>&#v~CY^hJu^DSlbhiI!|3RbUyo$f6
z#A>2)&P5*!3db;1RY)g(iIBV+zqvjUuIN~}E4+Iz&^!w%BNMeD7w5={3l3kp`xqOl
zrX(NHt&<Q3nQsSw*P}2O4YnXG#{sc5Gvs_IJe!(<T2Qd4h+cL+w!i9k2Cws^$h+O8
z2pzW$py+(EM7oS52oifwZJG~}GdXB*L2%LQ$#6lJUt|nj(gPu+>(Y`Oq`Np5<B_Vs
zv+MXl?|$3cQ{#IBA7#EI5hTUkxs6Ne3kga7^Vhr5Jq6h&3K-#M9yX1nbfEkxAg=g5
z3kd~eA?@MwwN*BDMdkFc*`iR;n+jn%(qwP)p|tI-AOsqfuib^(G{ngxT8jo83{@=1
zchhOletbCtzno<qDls#m%;-#jvmC6K;>0$TTy)d?qb_;QI{(v`!Qs>Hj;jGC53n4y
zQ$|jBzIzpw9fg4HE4I^{o$JGw2{bG4ImyVU#WonY#l4YAXcNCCcRwDxStQHoDPlQA
zs`BS=O=tU5PqeYndBx`@9rDeNpYA6)-=MBnYehT=Fc`jnX)yj5P-pp--SHdLBXs{R
z)L9!_*yy?6T0%_x?jpndA{I?cO;5+d_&0@jSbA%{Jpj4^fY<*?UjHzCl>eD@07LpW
z2SJX<Tg<@y%g_Ix29c(LnW~=hFF*e?hTzQqn;iAO!chOMa(-!?E2%3dnx+!RX$KI$
z?rYJ%If7x{p+!LE1Q9(WZKEh)EtY;?3xr?Wl~lk$u+;y#U17E5cX9%(LhxU%1SR0F
zziCb#MrK+;BV!}`x6T$u*2Xq~$G2~7I{x6e?uc2H?s?<5-Xmx6D1=N>=mxSv%0Z`9
zj|?LrAu`OJWvDw{;QoZU)83v)HUMrL*P7z<lKQ~V&Xh&o3<c;N`18bFP(YMVToeMi
zGzM!Zcgm3|a;H>I^|L%&Q18=RxGr4A7uE^HTKdLrrZ9aa`=CG>+{V7h{rS750<i_*
z*9|Fq<yhtz5VrD@Wd~b^Vlh}4W>kz?9s)i{gVWv5?iS^&{>(Wm_y<QlxjVdrUPtRx
z+hpfOF5e`!5(U49`F9nt$77%-t0xf7XwPi%9)3~AaIGX1JBBXbr@jgy{}>LU5YShg
zsol(o-S%AWym<QY15$o7|KoMyDZ;K?x|l8|e>(KoH>L%w>veA{wY{D^9zyH{pP$G=
zyfa*U;|sUY;dVPaNN@72HX7?o29W1l!0Z1c3ar021@)r;0i+1WzYC;)?Q}{T*Z^Q^
zK`&t?r6=zq`{zb@{WoOQ1OEeA7#jZqmOVyGdmsQdDSrv9|An4n{*@2#yNJ8|-Ejd-
za@SB7UL#;2U2hVy^4mBV5&zIuDOhPKDQf=|5yTz7WEa3FLVp{{pLg{CtBg9PU&8*U
zjJlpnkqox^sXR61e6i^~*sx5Xd1cGoD8r$VV9t}S=(y8`4>hCqA%bDM9-alPMog5^
zHz(Ve-q9}%4c^luP&Obc^2k^G*c0Ax;8^%(B>hpv_oKFSHItLlFCRB?VLPSq<-<;a
zckHwP=2$x!@O)Hn^g{Rm0`zw7Zf#%xYdzxgmX?sgMM8YshHO<yA3YnASSX_XfGElE
zLZA9#sJ=(h(LyO@C3D?yfAY>U<D;oKcfdAHswdmpeY>=%OB@*q+qF8m*ynwUuzTUH
zpY!_DHK{Jl9-ihAF$TSRA=8E+2T2rl$mG=C$d1r<_x2di73Fr|DjfKC&p5fyRxJ-y
zKlzbH$Vcr1V=KdPRm<#8q=8zxVs;ygdF(TU9XL&;Cttbz#pgj!+f-+R=CMi4XR6tj
z{Q~f`@EI)3<*O0pAk4B>eY3EOSdeY<C~v`l1u~7cn9M$ON{f~%X$c9(gI$KKcU$x}
zdUtMOYNb~$i*0oP7rHZI8cb5$0*TsLFmfYGhnXk<h%LW#W3?07cwTz1BA<dcC??)7
z_DC8oq(|QwqZa9A+@|>n=N^MW-~J=5uKjAt*+K6$d4#<*Ym3mc(D?N8KiUZ-(Nv3W
z0wlWfFRe5-08ziIRVGGSA?G(e`pa#zijoKi=+S`5cpZF)nbB?F`qUw8&yN9Ql<6qk
z!$S=#X~RPWN{W}8tahMk4Y@fFB@`n%(LdE}F+3f^)6Wj@akKD<ac(num<W%@`Vjlf
z6<XcKe8tb9Y7>>BYtvtOzd*SCut-2;1I9%8ntzmzU6h_G9wnPZ*TkeOz#zb8Vt<Jw
zlu3$hPShy=X@GdlA$mUSK$jqKddXaq&~zB9(pVrQ=UL4r?DOV_bwaDkc+X;Kh_mRM
z@D31vetJyT0d;SUkeN&4q2q|BUugzlyuc6RfI$=erLyDy^R)aqIQH*WOTVXqy!DF$
zuuK1uK{T%L79K(OI`alKbDcu#MNhVpjfX^!{46)E!q8-+uEo06mKz6P*2S;E=i7;w
zNTbr3l%6cK(2PFQf9~+n4?PGnBWXf>K^DI5-DiTKXg*K-G*-**$JT_KTc-#QM;$!N
z1RirXf1THCbk03{scov4qeM-Xg^-c$jLc+|3;ohvxR&+si9~-_2%l5bvP(^9yCIE)
zc)K2@_M<}x4jC1VmY;`_j};Z3L(`?`d3~mQh;qF)2upCMD$>YjU8VB!AicRX_fgaB
zNJBB~ctX(JJ=kVz{Z{fk^&LZ12zI@0E6h)VZ4T9jW+b45L`+n-ltOAnIR+PqqnJS8
z1CZ&E1QpxW-9t0vK8s9)cfH@*s`$3{3HB|?^bvYWM82-4%&NQRC#J7rjeJ#HX>^Yw
zA0UWMs^^L99@eO^!Y{0gl}$QeI``%4_K|Cbp&aG7eDQKvf7Gd(?`q$8_F$><VTkwo
z6~OI(iu!H>Sklqo(Eeu)$^QRZRskDpM|&H~Us+-Fe`0%fS`>50lZ6MjHQ#3tquJPJ
zNtDqgZx=z4Qd|p#Mw76E^Mxpxrp?y#_>$!oDRQi$CH4A~J7I^-f2YM*Z?!Cux64|+
z7SlWE0Q2rJ!^%UBLYrqn#%U3fYtee;?B-{?ER6DJ?X$J&takX<;I-&1jdS%M+~U<J
zXL_9%Xov<rK{{y0m*`v7+L|iD$1KcP^5muETTVCW@6RjKbx{V}<6tj1G6g_Wd#!Kb
zoLY)gl4?^wR%L!(`H6N1&!f>A!IME?{h3;-b+BZUA)3_^(6e?lvVZ|+5ZtEH_XFbS
z0K#&U=KG}P85(=zCzj4nl?5CoL&cveWvMHMcWcO-Cp~og`PLXG$Jox;OIUN)3!U7I
zC-k)HS?4}$5jid6i#RoBQ|l6QyK!iDXIsx;@|}_-E(_{^X?P;+w-0ZK2$pZ;l$8lJ
zmKJlAWMydh(Z>K8q<q-1R;m<m{XUf|E(<H4aEc;Z8TDNDR>R8L*qt7a!z5cLI9PZ<
zL@D_^<019yZRX`;fUUDkzIMh{m0)90|1`u&lJLS(bPhEMBZ9p#!$-4EtUWuI*y~{@
zqTWH9XdB9~bBhH{LmS|Br#E9)rQXZ^TH*I)RgcW!D~l2waIwqtbWYQ_e3VF|5gZMT
z-+-2sm6Mler=rT0Ggn~Qg9w@m&%*8Uo63>W8I67R563N2_jg>85xt`yzZ|{ykd%;M
z4>yT)>mDchwzOLzjjLWai^$SCTFBeLXwgARy>qb2B{3yFtSx#XL3ft&V|-uH=CpvJ
zb9};#O1}L#KB|_|MU|JYU92*qV~I&`qtMx&7`5HL(BReG)WkPtRl*o3)Y;)2(kfJy
zDpI8ts6y;a7DIwi_M_=RpT38sCaCGK5|M$2C2F)Wb$z`+Tt>!Ko28GdY`C30L)Kb>
zm8%3}eR5yj0b!l{q^2AvZ^1{(A!g*pX}b@>_Ol@pl=o&U7L2Cc@|e)HQ_76y$-DB(
zHRoI=MDHjO!vj^gvkU`o>God~C%<~{fPh<IU~3*cZ1J|=y6;dU-+Dez)Pg$Q0F}q-
z5JI6|$*1yT!H0J!M#6P4CDv_K7`C|%J(sV5I`bXr4=UU(bWemT)$XXNt9)jj)uAz;
z2rv4A{pob@WBGk}k%P|T9L-<>G||pE9M~Tv1g^ZM^riq&HiP*;x}<;fQvBT|_58c8
z+n-%hHnzqRD#l-J2&aGd;y(VjH@e3MjQJU$e}0dq{5f6qf1>raH5UC(T5tXTruDW^
zS!F|dd3k}#zR!4`lRvheo#CdkTFwgW_|)w2P)8~Ob8i(=FP7uz^L(UFN=OPXYB*Q`
z#Al4%A3w(B&Xi=hH{aZ>^1MazF|yvXW|5Cmj#L!f#Elk9^Tf&f`TWdn?cw(3Rl7rs
zbiIPt`}xR`AbaBR2l#>8l*FJ(z9ri<?XwfzFv)YnB4pi$_Q7*kSMImdWLD0fmj}ti
zgVJ<|+J!X>yQ8v4I}^t$wB785zR|&hZnURe-t(iAexpq7Eg2_Hsui0nQc2z~-Y-)&
zYBu(*i=pJy(NCR=q2dqG{4X#T9p22HC$I_+p)|HX@VeTLVBLfBpWM+i62)CyQ!^u@
z>uQ-$g&)xZmmY;K(IHD;h~<s(7rP`!2qJE(W9$+0L=y!wfde6q^Ry#HLrQ3lZbAY>
zj`Joy3x?>+#=(n}iSm^m^{I9eR)lk4kl+`!mBj0z>Q@0ipyEe4O;=0sBbNHjYY>nT
zsiHmmii++I>fwKT<W&;c)kBCwN6ro7$_QXeLn%dc5)b1K<KrtE>YdSOpb|uJiwI2c
z&)c9z!H?vVOEN{QGgU5O=#?F!BO3uD#Lv$;?5>HilTG+Q!jI~oXIVqEJ6%C%<ewj7
z05~SiFU=>%(h|V~F0{NwuuD(IkK)D#Da1r6zc&*1DYrWZPia>V5ef=QP6)?1cPobu
z@DU;GA9rI1I1OdQFro+D-%l|%SPWf3HiY7m4%z?~N<j!GNi~`;w(KzB!*>Cm@3(gx
zY~SjpwMs~ea2$7L6mv1Zv;AzRUDjo2lSaWumZ3Gz|Jok^><{<D=h5!<@cuM7{tmp@
zBePY&=lS|<eXJAEos|==`BC548g%ymW9=)T;!2xsgM0AcF2UVh0>RxKf;%)C+@0X=
z?m>dP1()Cw+#x`K1PJ;X^3VK3X70Rsb6>BVtPV}O&pBP+SG%fq?c$%&o99|fok_Eu
zOV@(jUlHVs!liRPO_D6}Aa}}1gwl|30)LH$>YwAE3l1C@kR(ha#3+dTW(+9-9V_-e
z?%S#N8lIE^xk0oo3cx1}+d0j~TuySTC4tNzSq5BouI9&?Gy=98;8=`z?3iQm8`#|s
z1xHG-X~hgJYTfK=MRlM)j3?Wab?lu`70(jjhmH<D+2<Ge%47%Fax=<t-v^4gF*A2^
zsU0)YcR8r;yvqy<ht(s@nFjd>*f~e9)#>N>Id5d@WImqf#_lp)$+Qab=i(2gTz%Sn
z#>BhJ%YX3PsBi)1YM#*J?w&`nSomebAo<>|D}U@ekwgof%a&c&XjlHPmJ+OVZrQli
zNDA=9wx;csJue)e6B;Q+bDn{iGYCx9xfyE2o8vEEjQr5yz6qvkkD9yo1Z&%wx^9zS
zv8XJS)w#rXU76juZjSj_Ur{5s^U~5WBitp~3twNzD%w<nku@uPiHy}U&|b<_gsy62
zy`*|tOcyPm6e#G(i1pG*ghiGavi0cl)YX|~-*f(eVw7wF?`rpJHMb1h#R@Xj7x7}+
zms(TB>y(ss5>}sBKo!9TkHkWJD-xM?qQlq(^p7R$+po3boP1@v`j5o+LOyoHPMpWY
z1Q+C?jfqi0<{6p`%;Qm>7|swHj1wBn5lWFs{#XzbhekqNONh%bh3BEPqNgO{B}7UM
zs|!{!?5S)tSXCx-azVf-JwVp4z(OkR560L)6<0=H9G1dAs_jTeW(nXR5f`CDvZhiG
z6>eabDnv3do<Qt}=#nOrJh8p7)s0xP1E*M0p~!O34ADa6ksvG;hG6d4PcSHP9d{e&
zPuYM=!!f8whYem*!S!v^`wDK)tpuBvYM!tzcr1ADQc##8-iW0byp3jnrZ}P?#rj(6
zy>TR2%7`-Ux^e)t@KIArev<hj?3D-z>Hv*s05NecQh5)dXhJm}2>004?GM|5cGMrv
z6!&FW$qUQnvdwrOGBqZ3*nUJU%lL-e)X(ni{P=n&XZjV_;;V!2V(W9oce;7p;r#eM
zSpBOMk=tkx+gSFoBK_LP%=<O?o44-YkmkGxcdF+hc9u%Z==r~<mMxCalTuZCO|EZ1
zWrk_uR#uhn4+Ty1$#P<u-oq?T7QBe8E_F{$`k-Z+QirZWVJc&n1Z2yv!=`@FB9&Jr
zGQR0mszLh#a6r787JUPa>s^J;(P2$J`ua^J>oYKP(7rj^UcY5OPmys&a9e9?p<&=(
z{j9rY5C5>^>2554h5rrz8+ATA#Hh6B8){rbmb!JMZ{*69w$@D8n#hE?Rp^Lsf$#ls
z2@6#Cu&%39uDP58ycJ8>1R2x39vvib!Rqn-Yrh3{hJRGy5Zkcob$#2d2YfHkypy_z
zuc1BvrKMNgqF0xSs4L)FmBq4=3CAub^6cP~I(Aw?ZmNR=zsUi_X5ZEa|E6Z=T2~m0
z`L`lUvFck2juiC{d^ypS!PlyHW3OJSx{UN0%X<;<Hr4m3*bpecb(=arTCOn&Q)6sj
zYEO{1W|u?!L2+GQ%4Y9|^m?EBz5rJ|N11b?X{C}lrOpIszJN{bddtyQFP%Zz2yn)t
zGe{PDqoHo4*lNhA)j3Fo9ofHx!l|!DBB6g`VFE6X4EW;(r8neUSQO@bY#H#HB7x`z
zmj(Q;#dj5bd%LM{ltb;;!nA9)Qm<Uq#Z`@9T9}vKk%m%N&toELq9Dr#5g#>K-tV31
zsf(JsV#LD~OGvah<B+Z<-xtKdU0HF_WVmVewuX5_9yLPNr!>tciqlgu7e=a!i1s*~
zG{xjcVRN}(FbkD-S<g#%imhmjnpEq+v#?8J@a6~8v`riE;Ul&V7#!fuSVLdW=V8yj
zCxpFd&$1ri0ND+w)<I?vVN!}2A$Dyo*WGV+dmgw0ec)Dt<X8vTpA1(%!`sQBFvUKX
z|N8m<Lxb)yn~wmtH5!J%jOH!at`L@8#OIzDv#pu$myp_;4@3xaUm=T8BHJe_vJphS
zojA7ouF~9j@T2~te$*ZtZOw?<XCss?PaVi6xlZ^zMBwVQqD@M)&Umv+3i8>PWLEV8
zCq$AruI0P61$!DV`)vQn<l>nL`&#pcvE^5s)LwQuBBb^n(Q_3)*S!Lm;m<K6Ca`ug
zOgJH77S?wXpJ%K&+^j3?hOto@jIGduTmkT?2t})y>ljoN%QQ(qAy4hVp)YXTM?*6i
zmJMvI_Eu1!&3KLHK3~%Xn9~KKS35!^*Im|8UNYqR!1@5_6MSz!Z+Xlr+RlV?WHh^n
zt}Q6N)Pw3e`Ie99e+-_2o1c8d#Ih*azosDc`~(ht5X6%<!1BUje4;foX<ir}o?R}e
z27nVT$(zffd0gkzJr4jxz;GE63bKcCTNfbr&?~8df3=`wIfc36)use<B{H%`{Z@!s
zAx*aHL|C*4z690f3@S~&3tz!#7>Vitt7@VS>n9FhGnrZrd6o_!ho{SYWBUUakYQ#`
zO81?{ZvJh3EzW30szsWp5rd!!@V~qeyb%iM{_MM`9wa+{yeFZr(~tXdSC&yLRbu>5
zfJ0{7gV6n@+%Zi13~x5l0>b&&=)?)fC1EF9l(Y)lSN9^Pv4eBJ*l+G}k@O<~NjBO~
zi@S`qDMH7ZF=Z{3;f<$kLrg^}P^A<pT9KjV3DrlmE1LCwFb-r&X<yz{H*(PC7`Nw(
z<H%f2pPGKScB!5^>{;G46RFEHRtCw=D?v-#!F+DgHS1DWR%x`xTh#DoD57VeCf{Vp
zsmiDtr-k6N13Iqs%nv7)!9=Ujmn=qH{qzCW$|5Dc<7o<cR0S#dmp9d2N#pTyc3nxS
zVX-DsV@Zbw!!GO`yXV)PcVovRWN+Vc4~v?OHMw{}`=DTO7BYmXhK2F!D2K9YioEfM
zJ>lFThNNwQLU)F5iso>I{0_fB2Z`R?IhN}llOauNk<iS@AIw;l8>g6AG^}G8&{1bX
zIfuGU+||>tPZH$c7{cM&_04~tuFG)LIB<$x68FsqzK9f?QUMWI=J$G&!~-q9JP`{l
zu-Y)_FIk!zIb5;7vn<eIZ%tEQ^yyS>%uS<nv*94giEhV%Z!*<YA6bKI_N6^sPolRq
zsZ0hZFQ6`rbI<zg`T3V>?glYGzm`Nul&N?6vguC57+=IY&S~R9ImtjM!^>UHwc?y#
zEc=Bvw*W}&PQUEU*JytUarV>g+oRwZq^}nIDt%#osZhPE*Yb^8Kzb&*%&WHIEXJS>
zMAZnq5QnB$7MWIpV+}rf114u%cyoTD#;AENMyZ`s=VjW<J(nViGa~;GEoszjgO5I8
zoDicNbD^2!8n05IWl)LwCST!%#G1&Ar5zf`C>f2$e#<;?xXB`o<<61PF{HH<d6Bgz
z=(=>>T^~!!S>e);r^<$x^*)q*<VWAtkDIrqyl!f^l%?M$&Q3awW>o3H?D?-X@yG9N
z0#TAC#;1$l4qSJ-S}#X9#DJUICL3cUnmci*WU^B5IZK(H3>c-)z8BpKF!Z%!7<jqV
z_6_zpt`8KZND1L%)kAPGFm}F3zz(%>Ih302@#9RgoxarRwV5->w}~)nm|4A?Rx+y<
zhifm9-isUy2=V+lJG=LdF)&e-QOVKMi)=d;*n)~Ab{nE<T8UUKAk5Yg<8Q-T<T_#z
zAxi*J`DBJ(4NGIs4BrzVsQ09L$Ko$o&PjOKR(s6Er8n6g%nYKe#-KEKExG%4^uB|n
zv+}p(v|5(%@XkRvu}ZJXW>r@Q)zSh@{OAR`s&jj3x*A#({k#Qv^&<kv?76z4(>`d0
zCbgt@n8a$#!Nw$(E!6cpS@bEEt#4MdiDkvo?kQ}!?V*(!GM`U16rFIJBW8?@VO(-i
zTCR&Bmh0a^zF$@-_f%qxVX-OTlbhGE7?iPEb+p{}{7O#dWP=FNab&B#KE1NP@QjSj
zIEYO+Bx2s~OMP>Lvj_LZ20Psew|INdC9hVj+d+5yNNB`-F@h?3JF8J4+f7p)fZtOj
zWF>aUkN#PECcalM`RX-!?V3ceA*z%4!8En!!)IMOTJ3n=obCm8FMbQc@_fBgp3FZL
zMBS`wGb|&Vs1z}8M&VV2(>`fdJBbM9y>ha*aboe#=wv~(CP#XXsCK^Ub|wyQ)-$(u
zzLB7PlCv&4Vr6Bv_qgn$9HSj!exB=w>wGc&QhRaq_A*_j_BKQ0e)ualrzW#kR#CEN
zD<iiM%fx$j<G!kuqd|h1df*usGFu-<z6oCOnrZPYMN~a^RDR=RzR?@Hl2WaR<Eg!<
z&g3e;evx}QmA-bdy~El!re@Vp-B*iUqli;M^@mFmCG))J(+6I7F6&v)m95dm0r2L~
z)7JveH$Cta>f(|Xy!OV$bFY$TZfN@L*5qS6t6Z8rQoVa}a1Sh_K|wp)`=!JpK6_RH
z0`iBlS|uc?ATSH?`-2ep>`4OtX{Py+n(jFMNurwpGjMI=oJuqj?Ny3#`k^soEzV*V
zx@t)wigaH42WfEw$KVU=T(#sm0T~_q%e5h=RKMqlrDqLZ*E5+UWK_liGfn;~xvu1m
zMW@Fza|!()8BG0CTAF1v3#C$*J5ZrzkjWKM0(<)WT`)}b1#b)_iYeY2<3Sr~DhT!N
zg&c4s&aa$ZaYSv+Z|XWvZZ-E2xws6kl?vT85#j^f$7cM7-Y{?133@NqXO3Ha)B=2|
zlbq$eO(Bu@#j4u(0;#PG`@s=P%mi1+JXQhFUF<y;Xfc25ky;?E0bux&jq*XQfgtnY
zu1UI{jqL*ONyFdf=l?;`?q{LvY0>WWzs&qlLKl%S((}H2U>8h0&GbBf%=A1h%(n#R
z659c<;qSQxfBNQinVElYMAl_|WYpD0X-akrAO&PD>Q;TJS-_e8Fao)tBqxSO1}l_p
z87t1!G_QT30JHAJUX`=j40dMEVX~d-N;x?PIdWw=KckI4w#TcsCH>r?O=8kQ9Tt%Z
z3Kakq&xGK5d;uGOjh(mgJpQwJr#w^2p-<9r8QD#T{MYnn3RJ@O)>3}e#Dm=H8XKdU
zaeB1!WNR@WYC25)UdTYJA#mCgrHqCYT<kXr%%*+n%^V32R8>!TwYKkcix!ZgHVdr>
ztnMpj^EgV34cH3jdcB5&;(~>G9o~td2vvIEubEf^D(Ub0>60N(%82h?uPv@rWMICt
zn-QkRHWWBu$^h)}{j8OVTDOg*Js(0rx{+onXb(wOsu4S)_$i6@i`}MfwYps|_s7IP
z=QGwze4wp7v~~Tjir1WvRQ@NKLU`eSX)go6X9~$`|C1nGerh&ok7Zt*<W%(}?BC10
z7i>^we<p5Aw)P7Ejp_FX4e;4-gsZ=r-uyWE^sy;f_h%z)%nGov1*tD{vK>^}Z7$Cz
zjV3>P7<KFQwDpnzb#N=uh88N~?DNQ3<bvDd<~eZ~JlR(g?&sQV7o012^aSUw3h74?
zCqM3tSohyGqFWdTsN8;vZ9OZ*;K@iugO`5p)~SHgAAXmwa8-u^zIi)3!;TIAwv#)2
zQ-gB#TtU|~o2IoVH#88r^Sh6zc<=!%&2@=llnIK8w;;i>msaJ=l49)id!7TmQNDIg
z&(U(e>_{CyM&bZF`De^hb`3Asbk!KLtdu+8)o}$n;R`rV3>Tz)^tAzU$s=Y`cZf-F
z5E0yEOPs+p^$u!_?2<%VAqfi&sT_mwk`Q+-mGR)%_)Wl>hrx<m%8}Ek6Zj<4<bkuq
z*@`e-6!t-auL2{G5nBYmD(YI^7Ua;7mext6W$o09Mb}wR({4DYtJDsb+m=eU80=NH
zYme+WTCL(ReVRj4O*f#<x>fAV8@<xDekYCHV-kh~0c2<8yY$2?rg(5o!~we1<q;RB
zha>!C_X>N0t_Mz>G_zM&X~mzjnJHv-8`r$ZZ|LQTHGby@Ez0P6Na~c!fd6qI=$2#t
zRJPTWJqskB0~t?rvtTn{#YV4Hq2aZTqZubP#>_6a?M4{5*H7)ET*FJY8KB)aJSlqp
z$~pWe$|=l`$|*yC<fsoT{afRwZKu!#Zj}8`Egt44vEdgQmK>Apm<`aNeSpXRynG3O
zuRd{-x=ft(R*t|azScHC*5m^fJ?xL?{sEpk|MSE;N<hmE3K?}F;qlbq=}it=fH~c$
zuU2NyI?BpT-0+9tDKt$o;Ws40l9F(W05B3bFfyPDV&6ne_zkgUepyfT@Dy=y5<uSE
zK)eJFDadfUfcOJeYO)5VPh8K=c46MOzfnN~#^P1L)n!M3mLiiRO02ztm2g?3Imm-2
zd)0}b6$w1?!Y7yZYf18-H7Bz@en07onm~Rv+Jg$rmRT%UoCS^$FM2!^ajl}dpz^iv
z=N_^bA$XkIF*4W3+;ymE4~<4WeCLhsE6$N7fVcNfMKApr-P=DJ8Mej@h8}Um`tD4o
z9n*VWxDjYY)vjtL<j~*hjJ34@Grxl4#~ye-g{!@&Mqy2){UC12_Jf82WgQoEc<diu
zx7nmdK+MKCr`Myaf8Bvk+>B%p2iNG(Cx%YYlA_Ro(=yeyNE2(yt+sxyTo7MU_U4l`
zhpXLS!ju-D2xH&-*9m8xi_Yj#)({DC%&QvWJ|Npnk@HZm`4bTlAxA!p%y%l1^nJIS
z!;NBBvJfQo+@u^h1}JzFG`WU*O)1YMP%i~T2ttipzZj7*+JTi5-Q|kyuTq}il{O00
zTJ*c+mSMyDjyKDivN&t}-ER_Ksd`j=$Up?XgwjDNXoX438%Wz2ot+U2S|;b&5z=Kx
z;MH`n7PD@lzJfsjXh<e1W+|U2`%32TGtHzV#XxNecSkf&*vw%E7O-0mtAO6CQ7Fgi
zhvSv+aw}=Duqo5(b9jB?Y-^14It*HlC&*YDlbWay22(!uLKxmL^J06eXFn(wgoY$S
zi<m^960e4oFxA)X(QT{;ByC_-WUL`u2jg=;yV;?Cu$gH2)0Ac4ihfGk_|<0q5z&Y7
zKPICMR6ziCHG2M3LBKS9P(g?>5|PNUCM!8dYg~ma)gxK_p*MMVU4h_0I-&CsEYV`+
z9bmMTX5Ua5?_hqKmuF>PdGjV~Fr>iOf-=;V=s8Avpr0zyo=Pa**w>&ny;U8Zv{re{
z=THPMktjue^t&jiqPeZwP<1w_%)x-&qeOfTd8cK8*D#es(4@$MEX!HE8)q*~CbP;A
zA7@Hr5^hOGX;lWuG_NyhvPP87kJz&SoE*BGf4R-iBgoymaDBI7cRx>R$Sux-ikn15
z3*)WT$LNLbQmaFQ&2m;@j3^s{Y~P7rMZ}03rxcstZ+eoSMdrV@XmnGnvQeQKK#U*A
z%X1xMYFF}OVs(IWaU0vMg7U3i@@UmN_e)QrJx$rSh}ojH&Qo)QJb2y{j)L4MI15=R
z-5gd|crVE)pa;<n4x}viwW(l<4js8inBQ0kpO9-*WirseKeOZpTVPqq%VWx^cvC7q
zc^V9cSi453yIZ$HJCr(ehz7lUZD>r7Z8C=D26TQ0%*;qYmXGEJ>Zz|h!})u^llfa=
z#SaAI#MA4#2lfE2jJXQQPL4x6(2Rx+ki~9g5z;NQTTd6$d9B8KGJBaR)EjS`DLTAo
zcehXv)`DLfBr^}RmcLidV)}LS1XA8D&EA+f{1m@oXa5~^{!#tLDoXdEE4epwQkF;`
zadF7>Ak(@SebAw%n@Pp6vJg3zd$>|sd|d*${Td~m%gCoCEiHA0x391jq}igczL>Yy
zLBJM7qXOM;6ev#HMOq3^F&G}DJQ%K&9ub5ePxBI;UQZ;wA~9!Xpf+fnVJt(#<MO!n
zc?cgylOf-hS8&ajeIXZo*In}S@z>(DWbH7fOc{Fj?w|PT5}MM~W$79((e!u)+2L;q
zvA-SPQhdgls8yGUU!}jIwM<Dr&+^8`T;#?e!|n5}BoF~v&L#_rCplKMqFY7oJVK7W
zSq0=1_81x!RhE-=FALR7_K*_vj_Ns^-o5j!TlBC@#L6?XxU~A9$81Mc>CQj1F^5VA
zuU$r%+_!xGc;mr4Gv}~?H+~p+{LfzN9|S3!kLq54C*<Kb|JLvR20B?AsvAgI**W;j
z^LVN#9%7ciQY^#%1$?TgwYK^IP35U#*{}6!Uf^&120ovPCK1Z%0|3r8_J)MQKt?W*
zKxU?I3HWJZ9Q2P08^8C;0%ch|W$s{mCdq4&kqTesWh|5rEtG`J1ePi20=s4XR4b94
zQYwMnvZIh(*k%(f_#8*G&KFB~VccTVSxuN}8-Q!tcc0HlLGsho`21|0v<f3>SQ34W
zM)7#!vnCdHM47|i;MjVeyUAAjOH<YxNUwZ%<2~-@bb-p1Z@=*Ljm{r#w?|fmkR$l6
zOw>3Y+N8fr06}6S1Zt2UCPUkttqD=3l~?91OUM$(!uA7l9D8riv+d?GXxIQ-+xk6s
z;8u4Kw$Va?gDn-d3;rN4ULd&9^OTWI?CLSBO-xZ)6IER*R_o4CLIoRy?%;O3ZD&O~
zh&FN7@3fbZ?;RyzU{0>1$;R&4nDR^Ecimk9Z!U$F#*_?X$xoyzaf{qK)ydh9dI~at
zQ`qty*@3xe0}>a!@=L_D$`$jvG_zSWU9#Z{FIS^N`NYqP_Uo)`91Z%{+GlWGFG|Q{
zb>PZJs4TVusPBT~*F|@XF<gu<UTkuF6&L&1jmpILRd*(9$-6+A_TC8^(0GjBRX#sV
zwE@bN7e!$evKs@VT#52Zp%vR1A=T$XS5YQeV;98>&&_7;>-)!^n-EFUibkN#|9zY6
zKd^h|KQn5-N&H*8r|jTFE+Qgnr(or8rKlpzonUMvt)Z#OQvh22^ivQ@@CZVa|Jw#&
zbkv#R1+?j>tc+iWtv_(+f3tdFOQ4<qSE!QVp$E=hm-#<3eLuY|d3(;_B$X9<r8_N_
zVvU3HUJM(x*|i#{Etm=}&b*AmgG`?Rm~?ghiTC@FTMoXRN{LLTfwA>{gYYqW{O61B
zU=7_k^j{U%tkAwTGVsduBTa#Aqp*i=ksoqxPK4>tn(cNWBh6E=bVYGD<&3;O`LcQF
z+)TUUZs-<Ko8ZtmJ^oFiXb_9?<GvtGy#zqc95@94O<AADrLu@>=T!`XX_Rw=e+vlu
zr#RHscs-^!Ft6ZTMZ`n*jKvnU3b@P?Ieh`a--U)Dwie>heP*5QJP^2a8rKP#P+=+w
z;Mu&zb-TZN;vrHM;J0~URYVpy-v%1d43ei}!BsH6;EswRXBY(t?D7Pfl+-}eKNBLU
z*tSnKZSUXFNS2l%jZ9VZ7g~NMm{ZuHm=1w=vEom;CFjA`!JK7Q;3tT6d^WFuMMF<L
zIQNQyC_*%`|CLacbRL{aiJn8#RIozw9pmX*)AuUnLF@JE5R)d3jN??{KId!Y@x6tP
zURBB;KbkvUveWAyn)x=|R&aAME>sm9nDWcl7#Zd-$crS#$!kyTTG{m%7x=S6x)EDi
z93+zJ5O915)XuFCY>t<do^9^i`#}1<>~0p6SFdPew=FBe+JM-KAjW{xuJoFKb{nx{
zn@#f*`zvi!^S(xOReHt&Nl<*@4L<Hu)}nlhl-+c$=JyU4P$N;`L6_5`wjU+fzTjIS
zqIgxCOm4*<J6@%C?&z4<p5A_R;*~10W%{-R^2&cnfV*1WZ`SFQ?(_XR4GGnRLRooM
z@amZEgO^87u}_x=Ho7%||DCh>CsE!{etzj6BPANuf4k~{Ja$I<-aio8KR;b+s6XSq
zr$qLbqzz#%z{L~_JpO0LNeF!PX}AaM^?2=QW@uz-2GmV?%xZW<=>vrhkplUfb&*fi
z59_Mu9i{cPgNVz855e^rs<$*qtQ1m)41@1I${`^5U2JVzTE^V^tWF)wS`^(|O%JLX
zF80dfK_!a4ujErifueJavUUFPgN^`iSTu55{}}h@bpCvEGOHA|3)5tYp`T1N(e#jd
z$mTUkB}jZS&>ilA^jR8)CP?9P9B;58Ss7iZe5}lRQ-w;Xr)p&bHL>qdu{j(uIXt}2
z(r3zxOZ{=AYNHy#J9qo>-WfC7*fZn0S=*?oxlbbG9^X)8@6{TC;SyPM$D-dD9678@
za}QNa9Qx^yx?`SKipLO`k&&KyxVf_txTimcmgje8u0Mb`N&Ro}$AhnaavPsgmH(@M
z$npmWsAy#G^st{jws*%aTKhgU(VS2Ye+*+YgQv;zHZb7%pz)zRs9;apuiC#H*Fi9X
zvCRzwxQ3;bP*6_K#=Z=**Z6)5@i3dEW8XX5ZlTcgcejz=F5(b1^n;drYwaD(hgi8|
zKKBaSN#0IZuMKxhz^Sjphp#4@t2iL$Nb#6kbTK0vlql5=y2xmcW!7g48QuK=M`}{B
zT#~171DnL~V2!9PAhGSOs$SAn)<uIP6HWHI351T1`#mRee@-0gmyg0H)ly%AY9;)?
zH^iZmM}PvnzGR6+;b*aVyqpuHT6O6ks3xsJvL`O;H5G!FC%BeL=qUy5$`rurX+xsu
z9_D2qr_{-rN!(VX4yiPW&@j#FsVi(`3KCXY?rBEfs{AYgCrbG;2_yH*)g)SDmhK?T
z0{x(EF`Ilga$$5l=O-0`voX-PP42FE&3dh`>%jq$lDTxS*r}LUCzXb6#4sq~wD-<2
zoZKeKJEaEk5mI~Nh=nN$D9r4Bkvq^fD|ljND4QkE0iC5actQzAMD$|BZi+!MYRFl(
zjzK549P-cm!qO<<)($ytfQtwU+LgCXHWz3KfdBOd!SoktAi00LLG-d0vAmq7Wn^bA
zeDK77*$D;&p_;!nx!^S--vEFn8vs21yEkA$+X(=F@cZLI&+~~<KdqNA&<g?pHgC*+
z=090}0#D{gYo3mlwE<dl@7PeG>G{;TKo%8f6S<1i<f}!~GHKaBehY3#5V+Ehm~C#(
z*$YK1Z%^b<pp!jn&bDvU7+t>U9~N1iz%MFa@8!?dESh0oui6LamPYuJXQ$eyg!@$B
zgZZZ4;={3{u^_q$O}+z50!7DeRrpk{u{6HFkgfy00C$J{65OjvGD}?kfOKkW3i%jX
zsL7(#T(q}LVt_OpY;bckPKz4a>Um%(TSCy>k&WX7gODe#9R_hq6uAd0SMiTYM!m7}
zKs0E?(o<!*1j=1w_GX-C&b*=nVsS1~&+(?-5g&*OS{uMnx^#HI50Q_>NYqkG8RG2x
zLPmnuzcAZngd$+SIq`w94r+0OI5&3q&el1hRlzGC#xVINbll!wTT~d^Zo)mS-1zRr
z;@9Qsk)n++Y}mUtoPD;P9K%?bOh#qJ`&N8QKK@rR5TC+$WGz$NlF02`(6kOgT}V!@
zGc3LhjkDeHTiLMHdYV~`FZ7k9N3dQ$%4r}J<>0vjZFJ*_jsBY0c#ysQ4QD;3v47PB
zSJAgLGbB_nGBmRXc1;s1D~Rj<1YQc-4+?BQ#haq^s)dDy2u+QQH1Zkrtgv{bb=(ux
z02}=$5;bP`={Sq?)m^CZ*nOkl8+SHF`HVg+*Pi)d-L=_x;Ro_3p}D(1*D~!Naq(z_
zM%;-C6D``8vcp_?=iB@~#ZP8MdikBNMSk}9e%<<Bm^@OH>PD+c9BJ+<naVbHlKfjb
zwd{H0>6xg&n$N-I4CVar%}mP5bFTSql=8_A0k5qjNPG|I(qpWby!CaX!ft5v!PLHG
zyHsq<zAjVH9M`Z-nr3AfDZ!=lr%Z%oq3~P6m>cMtl_Ke{Iw<`{$)J=dsGP(UF@Q?u
z&|zOawYP%7Ebr4U+H64<oWt^b{ZvEDwJdL9rhr6g2tr3EMa4;Pri8?g1t%;e*LZ6G
zowjiO05_7kJSeuvIYV%NPkT>@8`0&i*72PdOReEy#y8ZPQ%ze#i;-4?A0veQ_)V{m
zd_w#zX^v|g6CBq&wrq14;Hcjl;7DO8#+N_`_2Aj8bMk3^$s%khweG<)KN4wn>N#i}
zR$t1m(wU>QrFGsT-9x}h*&$U(xonjU`1mg3GPY4O?Tq@%hf_Bx9EaY`00>vSPcA63
zD=iU)ZY#2QyOkY^@f>Ji3H>}|_Y&996@|_McSChCtdhCY2y+9XkcdB3l#ThLX#T9g
z_NzJl5w`!OIqCk)d#5W5$pEngPob`lJt&OaL_u64GP<0Pl8!m@=P2<6!vKrdk(A&)
z?KO3Z8n95W@_MRTxw&g<rkA#4erOQb0Ch}`EDr<Mtod0vL=+L_?Cr9d)Ld;KY!bP^
zM&6$2P`fB$+m~k;eN@pDL@Iwz<FUA8O|6#OuLRUFAs`uJ%?v+4QRDElc`l3t)G?U~
zpN<zYn@fr`fAKOs*i%P+u^g4*Capgh6$CY_=ysp`Vi`oFn9?)?>)Q}Y!!}cZCQEO>
zH>6R~4OYDUCD|;v{U#i>2W;9Vg5Y+6o;b^nzXX>;q}vU%T`)?@hq(fDZ&!V_#k&>$
z9HiGkwXZ7&F?;5`&FJC)2tX?r%c~muBD0a4`E2?f_TqqGJkiP3{NC@2te@MkRPtB9
z$LxYEwdjfR;MGHA@ZFAd4_37{U_CD<{klXzVc!uF<1SPXlPt8gM!d%V_4_CEw&<B;
zH6Y#p!{@@55BQ(cIFCKV`BC^jkBU3j{g~LPkHGk(nr^u~NvU!v5b$v%g9cLi%=3Vd
zZNY9rvW{DG;C$k?xK9h-Gzm7vA0p<J`_Z<|i*}bh7v?L~Sy-Kja246rkI9(sKP!QC
zwIh37z%AzQbxi(2aLV?WsF3_)QYIYw-+Dntdd9+Pj+!|#X2w<u##zK7C7>_tdkU2?
zAEEMp8&}`GV=sGX_xyX5{Era-qeFj+`2QE3tDIf@e{5a-Cy2k28b9sNi2v8L(*M<~
z|I(QCm{0nT;Q4>@ls0_5{jqLXrP0x~#&U}Y{#@jjJMz`vUyzhXCsjP(1FC#4sdNeu
zZe{?Ej?p&cE4khCovXMf-=ejR*3d|Oo59v@i)(7+L{U?=xA{ba#<rm~KArzE8`(!Y
zo^#~YPKn$u3kVLws5-yimyAqsJFD3R=%(mQ*pWSYMhe=3qfw;*uR8CG`Hgqw3{CdM
zYN2c0O-E(5SCprQp4*-0Ij^5ZR<-F#3hxK8q}}Yh6L=%4%9YS!Gj8rx<6LjQ0l_r@
zv{HVc_0hbjyn<&_(_>%zig=y|6g-zis|o(_n0<NnZ7+ETXckWe&zCe21c5*N{UHi`
z_5>jPL3Z+ujWqz6nIn`{AOuRGSeXF;Km`;+6MKDY2VfJu8Gz6jn6m>4Q?fiZa_7ry
z0#m@44^DL#C`_rMSzD@NTYA>@xpx3fSJarFb%Kp3guUm!&3{5(AJGru)V>V>{IfnY
zf8*&APKD>OT(H=2gc{PQN2%)4$pn+!MgL}4Fi%Nhkf{ZQR1xV7)kzE~$`?Xk2-aMa
z7hrtqyUb(?K9^aQ1U=b@I&UeO&4@Di%tnKI9mE9zxU*+Bfg7_&xb@MfT$;7U#2?rV
zUkh%|`8@;bRXPhPUPe#j-Om6JjJlT122nAEh2nI?D<~7!;sfL?Sa$L9b;~+S1yxEp
zZ{(gedm@ebr(tw7)SGMWHkqyOYK4f$wma;f(}603Ey5q_DSefKf!@19%f<?>+<HA3
z6aUtV9YJts;a&%kD|2XhDT(SdUV!7%c<x=Amw%cn8(A}!)yir+Oi(ceTx(1E8T$h&
zS3B!3;R0?)Lcq}dzi{?n6la;39t)h*Pr`Pvf4d+3mL#73e_|%wQjW_0nVIna1Di8F
zn%Z=<?t{EsZ{|>;+SP|v%ujpI%0m>jh8<Ez`Q4bI9S>-x1Vtj&n%@WLeKh=pK_CiB
zRKIhc;pU0Q?C`a_LfbUdq!JHXc0*^(6cVH+q!;F_;v6=qQKh4bpU7p>5h-szgR+cL
zZ|mH@U<|jKP|bA8UVWMxy<Cm<K!ez{;s?|j^34Y!-`l*I)2d!O%@&gNb>YQwC)Flu
z@quBZ=LPom-WBN2&f5dqvE=ZDax?ey^q*O7+l9Hzy>{d&uLGq$%o>YG0YdZC8)X4B
z%GGU#MF;5mZM58I3cJAbbjz_z3Z_Yb0V)wpf0|sEbCE_g#*S7}DiE9-#za3iJhZTq
zhw0$A=VT;gf!wo;`6O=a)xbTZQ_=nzJV(q^#FSAe)&Ro|ce;6KWJ0D2;n?v_>Jr7;
zZUyB_Y6;6^CYl$p<~*&^?v|1-#H3Gos?5IVuQ6XxG|a-Se(yPUE0d=ecKdd3*3Pp|
zfD`bRB&^njZDtqe!Ai~8ziT-D377wBr4K;r=brLM@h>B5M=K-y|1eD+LoAU<c{pDN
z+@8$uiamVZEYfI3h&iq5XzK47mvps?YOKg#cwCV4IoRUjw)>T)Unm6twn;^Ieqa&p
z_B|(^*7`=#WEw^Iji+P#jb;nVZODEgA=={1_?FV1pI*y$2Xt4)fpyiv718q>bTQE-
zXz_8sHje&UNisQvWV=poHDiu%jLWV*ArOtuzJhKW43zdQ+l|E%C0PtFp(Qj+rZN|p
zE6nCWDGjc#!5*%irr+PT1bAh`z~g^jq4>XFyN!dXkv)JOC}>14XQ^*(ZDgqXC}4B;
z$CarBpw9PB>uG73LL)1Ewz3-26Ek7(Ks>nod=od7RyjO%YM|LJM?hea6lEb{EN-A6
zQ(_g&s!ID9%17tbrM(7zp!Abd`W4r517H2yFiBZPP+3V#RzX}t<dv?ll(>kD5+QJ8
zfiCOgVoO($e^AEvByT4MN-<f*XUpX{Nkzmch4f666P0{O><^%JakMo2%wo9UwW2Sa
zVrU}_n(0BX;<1vxg70}aq|MuixpwwOO&3um>=RY;692H5%*z8io=m!!JF*kV*<7U>
z+DXS6iBI=Sfb$C~Fm#Ac=`q&?SbH*Ekry7joX>wu@n63c90%|bGsO!Dl%W35X3EY5
zf4AR{!0X#d2it87EK#f&Lb?y?g9TqP@uN50hf*{`<f}pER)d!miLFKN859fpOgX{;
zXpAl;OQH-d;UrnXLYv+oHPR7h-oOPXd$S#~?SZQ4n8IoEGmrMgNE(GNZ-*Mgd+F?_
z2yZT9*3@HfDFw2M0Q?>LiuS$5aZqL}IVyINh5JbKaV~ujpgmLCSZzL*#7tfduj3gn
ztIZU#F1h9G4Sk~FI*M$1L!MB>)P+&XVg1?1>N35j0LRPMnh;wGbBl=pm%6@7och#|
zu}0KBtYQvd+PT7ta{^nV@PlQ=q`CD+E6Jmr3f=ESZ!b(Pj!E`H4Ux2KQ)x@*P*ubi
zc$b;wd{18spUwkr#|d<FestH|49DPuX(Z#?^h66OdB{02?fYpBZR$kbo2v_!=Bu1S
z41X7a_>YRI#HZQwY2af1`+D#{z>Q2l*@sVDP8sq4*5$C$Fcz{rlq3HNH>M<~{6V@!
zy`e_V325cPPu9V&sF5A`>JzB*YcA-oP~%TIPOEqF59#B+O!`cr(>!{i1g>f)<c}o`
zUwYOGE=lbg4f3?>XetJGo!Rxx@i3wNKOY}?-bY~geeW~z<byT&==ipoBGkcBb$Ncj
zsd{7}qXST0hri_4X`Dm0gnL0a0$p}M%%E5*ZN|V5{!%NLRKJCO4g|CHTJ?a`Ly_C>
z=qtNZ5zqG8sB}cTRoNI+YglmH=!`y<iakf;%AU0qedBPBdYMR7IS<)0H^(n31uQSj
zxNg@B@V$+oi-uv-aYJvS9r5nyA|aqdNAAV5tzgmug6dZcWZ8$>r*cr6Cq9-Y!fx@9
z96oAZRCE`y>;do9Q{edPCjSrYf|2DhG=lqMXf(|8Z|#Dzqm`olg8<MV{!;Afsi<wN
zir)19UF_-~M0XsI38N=G&+vaO(EA&jVx_3fqNwFyegC^o?_ZVNpV~NQwpHFk=`s3=
zjsIGD{3F-rPo+n3LnRvvBWs{;;A6U8Nm>y|^yKAk_Z=u6M*HZ5Cnmf^gkbbFN+2}d
z-q6r3gjJqYRROwS@_xD2FqO2G73!e7*=D7!ezd%Kb?^QDzC(CB0T<TyTpncV)!R@0
z$oY|;7r4s7haNC7rc^Ep@knnmcy|tUwh6myo?VOybt!}*jCCXO_Sx~{<MG^fX6@kW
zs+CpE#1!Bl;Hk(c4~Vg<AQCT8j0hGpzARHv5=mawpD-K^A+;DMJhlySc}-OyDf3O#
zH)NO;iFOm6OcI`5<f<TfyFj-OdX#7~BnfV?R=l*U0{|>Q-U_xF5HX>0RvyF8cnj+0
zOgqIR;8fwadEhS{mDXQ|n$ggaA7H_~x1-k)kVxrnpaCg9gU2tXGq8N-FRG&rIB-dg
z1C$SElcEes(+CsUcxR0(u1aeA`&`>}#Mztbq(Z`G4GArdTX9OpubqCA!b*iE&pX*g
ziSMWE>S;2lh5J}289@`@IY#vguxN1*$7{$MY$As{b}^E_(Y!N4jyV?*_HN;H!`Tm!
z>%EzknYBwZ29#gj@gCK(%oI&TxiY=dr#PmP(u7v&NRH{aO6v|!l)9=PlmjZ<s0$O;
z>h*a`#u5noO9ou!0bmFBwH;Ut6Lx8BmG35ddaB#0L#KPJu2wXMF}zpVG(NE#F2R})
zHAbk&Vo_RvyogTb(>!IhEH7$WYIZpPe0c<+9gQ1yIWl1S(VX=QRv$j8r{O!ut)2_t
zGrh|_8ch6__Nt<05CqvkK)o=sne){7$D)nJuiTFJk~O|XYLYiLOo7CH{9cc>Cc}7&
zUIkzb)B3lW+lQ_AZy|}4>}zouT?G+&WpM?OSA;AKjJk{rKdVeYIPx&t?s+>XaJHSr
zRvwJeArm@!6S0vInjArNsupVL$4K06vBKMnj6;7=H_f~rla<8dw&T%BX_k%Vw+?(g
zCJ9%nt%g@`PAlKyjwQtQofP4qv^%p(u`V)crz(dYWkz1GDPt8~t{*t|xkUqk2s?2Y
zza!5(_q_~vKZ<>qOypz<BEo67ACgSj8xZ)@RkFlDAcFsGqzO{mYY_f2sT&*VyA_~}
z@iOu!5b6F2L_+oqDjtCdDvi+(AQ0J{K~LDnr`VSf*lY?GKBXtr2Tl24GXYWAGXA{j
zt$x~y1YJDq+gR!p#v9iPi|18dRwK)%af<3QQ%NL;j3o<i6ol6`UyLDwy6r-2R>O4l
zLxA%a*ldpga}pYvYAxNvHVIg@bzx&H9=u5+LrV(v!##E?Dwo|%;^Ex32<@?R4hOR1
ztUayBxmw$;!do&NX0PyRoo2+2#?jq`C(A8VBUu7fC}~F=HDtatXb)(AJ}+H<O>p=5
z?hUC`H2k_}&3ttz@0)m$nm#v33AsB%@ljCz7I-L(TU+47N9VjCZ&C6-9J?$e<>Pp~
zh`02!j6ZfZ+ci|i%`4*FA>2IVJ6D_^fOTpmv;HU$hvYrsCI7m!p#e?iiTBp!c-+R$
zLQZR>B+Gva5q4++y$kilRLfLOPs|jWY@)%=O-oFV6rpZ*N>~ly?8~Z#9(H~*W?E*}
zUX_9Ixw)>1xvAlfsn5f}JX>Bz)dy0N_I?#g>M9!MT4>VkwCLnmgVN640kaK1YpfK3
zjPyuQ#{E;fVrn6D3PJ^KqUin5FAW^5oy!h%5)hD4KWV>R!d)F5b5oz8HxGVA@eO|g
z;^oDwby|TJ=Lx(8|BWkt1uuVOQvFYbStk0Yul%Mi^;5$QD89Wf@Guin@M=?>r$99<
zfE9@ce*k$5BK)19PqekEvzt@B80($$g~ErJB+Tpa`9=@smEmwt*@7HR?KJr53-))Y
zCTfFmcBjE)`X9~^?-B{~Vx<J2TLMQFn;pkE$~dX_VDV}-X)hW8UoUctmab+Lqtmv$
zpwpEh2xa%qe37Xj?A`Cb%$+UiprvE)Q4|`Ej4O16ODk%1Ko@~W8guD_VUz4*T&U*O
zkJgBsTCkHM2)kO#(_K&^q`~%9pm1;Ynn-LDp7@s&UPlX7<j8q3-Kn?gqk9rB<M@)g
z^EU{nO8S&3hVZER@khl=$?x{<w{{GT?2wZi#)C99wzkbUbe;nSlw`T=1ni#oHxhEZ
zu_!cAfRapLwEoOG=ff}u`&kt3v<ULcA*-THeQDTOV#By*J6@{UTnslF1s_`r)8{XX
zr)N1?GZ&lPvqIFZ;-!`$gmB7cDhIFL`>uZ(^>)8#Wq97)X*S3ERabr7SYWBdkYK6P
zz1eKp=RG^~7<2$6r3l(#h*)GX1p`!5nN9>EYbxr6q@qk!lEf&R-l#O|&CO$@%I66~
z%~GI6m_1n(zgoq=N`yWl8sOx|2g2sV<j3CrX(witMKjA0fiIA6l*uO#6`0&gqCbia
ztMKo7>H6X*s}UmEX8=ae=#HvC8Q06&TpxvBxbmbJtMiOoSUCJp+TY(7(<|ti$#G3o
z<K0Q4qjQTQ2WO)K49o3QN9`sNh6{b{a(e->GzzopHJ{IxR?$=c3UGykiS|O#`K5yX
z<cxVu(Lr>V=~jWkfLr?c;{3wWknsA5`$(A84^|M4NcyGFhslpYUTI@s49*|{TDfby
z37+86K_1`VfTS6G_fjab0A)YY|NeeX3U9R7jO08?lA2F)GuD5K|6zv_m&6(VGot-<
zhoSm|Q~DEj5_|(3{|xwvpB}^bbR}t<1py@9R9)mBQ({(z+)+qHrAQMLVo~EsEDH3W
z7Vy7@8qF?fuP2q<w{B=Jg1n`MIu0^fZgI7d;!}Si-rmBCvv%BfWV{*~10JUl%xde*
zVEn2$b_MUXQI5;7Ac{1EZXBooUFF6Xd?Q$<7OuWq1u-@8sx7n2;th`Fo!DHH@dL-S
z$?RTiGg`Bj>2ZU6rLFKdlJBJJ<rBE#;T-z;Ip#6Y_;mZjoY970*qdN<sLL^-yP*#p
zE@IRN4wvKrY_~M>EQ{hwgL3#PE=nsBK(LX`%*f@)t)VSQ@V!PAQgR5|oHHa&N7nmT
z$0}<Gx28ty8!jc=8-z)<xCnOU7t3opEk1E90rDAO3Og_@a_J&-&!8h(7Pi^ss~#9!
z!ZM@@IGTY%%V2`pg&nF~aLvo@Ac}+8o>tiX-W5z%!eQ<&sJpiu#j$YU9sm?}yclKI
zt0u#EAb_%X08p|Lug+2)02C>Du#FrpKlE@us!QVcg2fsfM1uIOLIOwvN1abprsghg
z-MNC?-yHDJ->`;}SWM$6vlN8ySL@rvzDzThP~+C)hgn>>Ng_RHg|RYaFT<J8;mwEq
zzUInR?hgb|>Hh&x<Gp4E23tpA2COIhcZe^}AP5^GR2+iJa0IP5-_Pu`61kFfob^a$
z(*D3_Q;9n~66SKN@VIEUibe|q{|*FDRKEczddMxwRcHF<+p{q1``z1CktM_;SEjUP
z-cYgTd?yA`+Le@*<O|&tqgNst>t3;pXjnHt9>*3@$o2;)0RdF!-vX$A)(7%)ViZtI
z`=O)D)A}BEs*s4$uy7!y0Mloei%QSHoC=>hHtAzmmEXo)|M=ZSdU~F}gqu44`sW`<
zZO3iREy=c8UrP6Wu=2DA(p)vRw7;{CW6=mnmTQi^@H`eVtD7+=Q9R9GImoVw&8^1(
zPQ%^<C$1eNXbdm)MTS2wk<&_vf#)Ge*GJ0<x$Y3;!0M=#Us{zOFsSV}?X*r}k&4Ak
z3o)Le;N5a4H#;(bnhjagv@ZE*MqN%*Jw%4F_6^4Cn<0Mgl0m8`N6T8iv>1B|b_MA-
z4Qy$jZF{~%`cO3pbGDi~;~-fP25jQXIaHoHlTmmNIZD(Oh#{g#EuLX7C8N16bRAN^
zEMZeOoK_DN-dcaAkF&`{E@-}08^r_920(cxH*0hG&RaA9EG4r1mppzGO1`z)Wojel
zkf@G(sxjMyL}D+e-ZIz~tA?ORG#?mey$&ix=snntxexSNo3VcwMWajhp|XT-M<y2A
zURG~knqxQUq=9jtt@XSj`Wc?BLNjJ<)fSl-WL85}V|sAj`at~UzP{IHP`8bzi-VWu
z>=#HDsferDwxZ@d?u@y^u+<nxpu9HXD}4_`b-58k1-!Io<BXl%_E)2(jow~g;~UGt
zew#&;i^=`wp_{SviKF;6TK^}J?&G%hG}3*5Q>ETHH)T_sDD}f>xH~s#H^jhhs43jX
z9HkZ#H4rGZ%+1hG_4TEMF;iA?u;x`0POJR4qwzO6UQ;QiD23`kGY9Db8gZ#X@md5B
z*!)f@DAd5ZCgTF*j|nqcwU0SXh*d!?58zJxlw$kq^^p7t4Kgv)1M@ck2YW~02of9X
zpSji{**}O2e;}kL1H!@en4F2tnBg0qhlHzlc+a}hKhC$-Z<i-Y0zX+Ec>EWtt!gj{
z0)O!P<Duj72~rg_0G^gUkboi$oFQxp95_n<WLQpwlH`LY$q-g7LD_wlZ<f!ppI;~e
zoq7@dEXP0R8ED+L!H+6Pj5mI>EvE;~oekk4#M2m(XS`0gBjF&ckk8um%(UnCr#+Ze
zF~;=h1q&+dRumn*Hb;|l#TrMt8cgS?cA|m>F6S6Sz7>NMH&rl?f@Mqj+kvhcD;y)K
z6HEvjzYQM))%Mw?qxAhesHl%zv2WqE{dOjHU$bJ;7NGzwgv${!_g<3t#RQmpr0qh+
z{-s2SOWv5>w{4LNL*i0f4<|W2C34YBo$XaUD%2X^=gFf6W|~b~Q26L6Uf^8=EU)u5
z8?5JE0B!>N;7_WRQlapb-@Z%a<Z#7AsWE`_gvWB8%@{qZe|~l))a=N+G2ATL(te)^
ze%2!Xj;dq!Eb8?&nPT2eDaaj(zP>V{H5md*Ck7QtdWV|aP2fVN)5)u`?}Toc6>O;N
zDnM-((uG<>v{$t)dFC(^{K|cm^LDDHHS6G=`;|ftutA8<i?*Gn&dUKtEQPTVpAgVT
z@p}5wLKZ)@tnegOrV?;3Pys_jF{khi*ohm1KC1KP9D>8B_TtV64i=Q7sPdWc>rko0
z`+f8mbZl%Vi=%`jANBUQ((qC!hCT)G2{u?*1=~9#4ixkz)-|abUSR~|mAY^rPD8hY
zhqUd`C9LN-9Iil$C^>m_jUp0W<Er*CF5zpM5=$o2y=8*UVPh{|@O{^JBV@-}orKn1
zGHIIeVZx>Xjm09n-+_<rIqTFg>)If#7~VeWv`*NUUCS1J5YtHO;(g@mmkeU*qvA}k
zq4#_@5D%zlBQI_B!IM0L{G+x0x|04u9*>FfXQcJVJYLzq&g1=-1e^ZP*6{x%ix@u~
zjO7iyq^G;XuN99!X2JfF$@4I0;%A-o56&^JP}+b(e1k>e1U&bEf+{#f1+PVkoUvSF
zJq)*=OzP%1Egd}IKi<(3*d>`rtcu8AQF1cC$=7}#HP;C8vh7(hx?wE*`D?H1)|Ybb
z<$BbLS3u|3*!LRBCNs+O_yC#&eY0L@wA5D-@lY8=Xg`L_zoAb@;3oPO`qp%FwKmZD
zYuzTGVX@Lz*S5GZ2jD;+%8X!6GpAAY`6Jg($P4c5(vN0T<x(c8lCrrc6Vy5yGFNQ)
z{^LZAQ!CO!P0CVmQT?@3p+v*I4pf=m%QVI{*dux6zz#`ydRvbhm+T(Lli^0=*{IVm
zCLaOexrMWny2@C!hp_w!{tnL$={8EoN}wRe1H-<HDtck&RACe^%Z;(Q7!CkldyHLJ
zj4bJUKyIGFOK2Ol7*(yamcYnN6=aGh<oZ)+Lt2;^DvqJ_3(N!kBUDg%1kgV!w5)fu
z%v2x3%T2n+S9TROC22_SCs3f<rP}7|PGPf-fS3)7g3@1_#-)rDMWj>ok~pQX*D;Vp
z(`YVWuej4=LVhBI&+)q+Y67-6`;@Hd!Z8mK;_`inymo75NRDa|h7FlWfI50d16R->
zRf4$FrVm)ZOB}>eSzeR996nqiTCIOfFaSChUH&}x_g^doMvg}^`BQ=n|G)K-E1WF!
zHLrmA?BS>U9=Jz-k9vxxMiTb#>h$j%Vu=5o(EcmKf8u%`*c|phMWzX54IXC40P|=+
z=^9ZF0U&0;`$=7S``S)Sw%QL5gG7t<97nC6+mO~BGfc2)W49ySUr(UR>tl3*Hga;l
z-1!<+5q`F`?DeIHnOqp-!ZaK1Qb(BR`zHg4=$;BhWNOT@Kpx23tZY{aIGA<6&N>3O
zBrPwL)q=oNhb$hDck>uvTa3d^OSUwN48d<y14lLJ8oz!GwZ;sVa6=IwyW9_?30O(m
z<M@uvC~c6C5GAXY^71PrOuV^5m7(j}k{NWZucxyvM<Euc9rF;=XfqoxyA)Jyu_Fp!
z?zx|*X5|ZZUw|!}sl{%ay1kr042m%88bcE~qrKga;HA|~>OCT~6DfrRpRXE`{H;YX
z?+=a5<OJ%x03v-GMi+o#Qf<=J0ExHAJhxEk7X#bXqixBfmK^6}LLNGwIPV_ON!~Xo
zL?$5G(t1ME_%)LJBa`q?k>n#8iRnMxZPEZ>E|a(WeZQ@_@j|$jr6u90|GNnWusj60
zf|sII%HyxZDo7<h%iO!E#=L=-cB6orp+4+etd~91xtB!Q>Mq5<;R|q1pSNe)`<Ax}
zBN%GybW)>pJqWQ3-DYBTQ=n7IX+uAH*GgD4OV^A<d3i*lAI8&N1$SpHi#|Xh9z1xB
z$RQtWMZu<=Q!rvBA`&r<Ia?n;gY{Bspdow1cYMzrhwIQ9jBYD|AR*j+al<UX)0?>%
z-1mcvJopIuizI4ql9A+fWd|;UP6Ccz<`3QEdh{p0WAzl>V8eusWh}k}4x1*#10>nw
zqgrI3B)z>+SrG!<ij9m}VuS0ia+iqJ1LoPcq|Y_ZjFv1~%n=M5VcxDJOMgDGV?Ek0
z5U{6Lz@)nE+hpk3&9^lQ=XuTp^#y<{x^Pq}q?loFm9dWJ-#a^b5_A(xbjD@v)%gz7
zSLY?~^w8?I|3_x~FCyr>1P%#3+-Kc#JtWc?<f-MMt;RTMVB*tkPIwU)$YiqUSWOuw
z0UK&tE}phjqQ&;(DK9=0U@sEA#)X{TtCy;`?#Q56VQC`&&bAf@2hgUt9!^@2`z$JX
z3g*Ar=2DOjY5pxWOR7C{YfjEmldlh1%BcISVGF#sJ{=|D&5|!jp=GRjtHw@qL6Z4s
zne4Z>SUJ>+>*+gJ*#xYbo(@i4CKf7Suvww^(ms*6Ds{(hZ|5x}Fe}2r-y{eK`brs#
z=_PD#t#z_Fy-&Me$HX7gg1IwPwpWiHD{Xpvt1L!arrZ9Qb*JPv+ZF+u<d-Kw<FB)q
z9)iXvyTe};{()?+$NW%!l)Qx>16n}l#(PZH1s%xgIu1=Zg=S@y=DM)Oula`GBaIbF
z7%ixK@7uubl;##e6FWu{-9{UcUvfrJ-_IzT;JwGgrELu!&SVq(KeW9CaFlDdHB8*y
z4dU)@K-`VEySuv(cXxMpV#E{T?(W1rAx;SSJ7Lbu31{xiy{Epvs~W13g6j9_{cK%p
zZSISPDM5NQ<RfRU0eA_;?>l!h3p`6<3CP_rzIsugZ%et1{Dr|OKl$tOWmF-6hwQ67
zWWU8+EGRAkYO!kE{nC?p*}=oyTKtN#Q%O)6ynXGvQ-T2k3*Rl%PzWk(l&nSJa!rnX
zC7fTc&Y4WSqggI}x;y<IT4B9S5?7=~uD)(oYIH;wiikss;UveAEe^z?@R1))VdBT}
zh~1b^xPDyq4|6aSjVWQwS+;lp)K<x%__4|tVh`y~k`f0x=j+HQx5r~yDQ1GhH&1yL
zV&L!~2EYd#1K$6t0)E$B`E!N-?{rtJoS&Mtzsi*Kf8x=5rpcnTZ6|9>Il~k!<jYZ&
z1-aldNXHr_%bFamTdHBt*Ba|%E2y}UD9-y@Id0P2q%S<UzHaUu*oTbG^<3puW)>jS
zA4#JR`sge}morv-OOUhQ&4gxDO2P;94!F=Q8iV*xAW#-sxqc8>O~>_!-KfH7?HLZi
zl5sSghu;f)vzBm_zoYKa4O$ToY&qvz?ElF=TnSDRidLE#uh9V_!DE)AUmDpF@|tZl
z&xOWt|Kk-ACXsEDA{u=cYM`3V5Sl57MJhD9@<JjEDjf)d#ZHHe5qL?J0lsbAI`(9M
z9tJHhYJR?NHrKL+UtFT9=_Z%m2h0SRA8rOXP|WXcRvN4N3$LqMco8Qxh{`?So$#xL
zgTE4=Cw|}?U6ka6#qoJFXMD4hQ$cJN!8}U;O>Rqs4U0YGCd>*UU{1$r9FGwysgCUD
zHtA3rCnQml39j#4;j;F<l8>myB|<X9*F2It)AJpkvnY*FBh-~*_-zrYy@;B@yEDTL
zI7BgUEkAp!_$rTR%+X`zul8DG5WB0^uBdgN`@{~fsnhn+VjEs>dmtAY?K{(p^$DN5
z@Vu2UE*7ip0TS1j8ffor-Cg>|Me;aPA2UN`c8T5+7~T16gD~zjUfT-5Tqgfxk&f~E
z{nT}_2f!<zhP6~we=1~A#i{c124mz&s1mzlx}yeto-5e@AXUO7{y$2UP>yF!M-4B_
z`?2aV$=T^e#r$tZ78&>pp-*Vz9KicuH{kCiRBX>phnES}-<I9_Kdr+G`BG@}*M#c#
zTP*ndSMtASu`|>0o16S|!&JKLlIa&7RCmpGKJ+)L<hn7eDKn6>;!pyeX5w06rV*cG
z^hp+6d4D)LNrsD>W-}u~#x8Ie83oj=*vYRt4bq&$783a^z4rg8rwfM5XEaIyW8U;C
z6<mfJbv$rP{j7<0d$bT@Cy$nZ40##LzkEBzIVv7kmsjP!oUTnjJ6LHnfRDUdv;T+X
zdPIlaR+O>mT(pZ4Ptin!=Jki;oGL}pI56f(n}=<OUUS7kpvn>8ruSnOf$P?LK~8)g
z^wl{g0kU!qxjBd66<V~!iIIhGoE;w-I=_*TKEOyXejHB&TShAIGt^^CDv%0u8)+gA
z0uUCPy(9XZTcPeNfwpfNYL5!yKpaN`zplmYK~9dAi*a<^*UKvEpwMC8>$@ZeV|SMO
z`3zif)l(_OSX@`R)(dtUz$DP8(2{=^RSw85l7`wgiXA`YP%=~4u11cX6h$bgPX}i5
zkowx#7$Gww=#{r~4*KMt4RaOR3;}oT-HW?M98JXw_%8qXdg2bfh=u<J3<Rhcf2rzN
zL_VqOJq=DW_-ympbX8Jj9g%iQ)&Xo6*5h!2R2||K3Khfn2`9D*G&cGuMBBE<Ew0$b
zgv8j&ul8GWT|`5Bc$4N~R7Ml(IOdV{pc!V3j)S9hrdE`^sa+BhcEFMzhshL*uEp_2
zIY8p`$?wNpT0n$wZUPj?o$j*ZA3Si>NYW{PWbCUxbStL_m~_V^LFk)QUu(o8bpiFY
zT4AJyawqw#BC3Vz0awu=tT+qtM;lIMz+Aj)`3{t?NkJ80QXP~s_HN^ZU+q=p{Ll9k
z_ITbXUN)amYQSA&uczhi$Q%_+$h5+cYtrnWf#k(+7r9RW$Mq5q<fIJ!;z0ivy6V?T
zzu(YRlg3=)&5(Ky^d>8DjT~CU6>P&IiP3_kVV+JXhFGy+zyvqVj}Nq};ifK+u^QLQ
zE@@*ifxFz&-(4-j6+!Y3Yw)}q#LQ_@io0EvZ8_ObT(T*=CF8jY#`D$1>|vYXyWsUY
z6%bdu-Lh^>-q&u}le7`1JZP<DRV6iYMWfYQ@Zv(?p}Xjt*l){zI6pZ&qgZlp&?9n4
zb!F1J&{gx4dgb`IyaRP5n1V{Pdjq8W8SH5uwZfiS&0mIhul%Y|Idc^?C7{FKP5FVW
zp1mN%cV2^{+*zrgjKak8Ia>p1N?<+u%YpvxKL6|X8DRrU0G`&|#Pt`Zmhl&R@mH_L
zArhbj2+)A61T11|oWxN{9d+0z9G1)*r@*<eCaZpE>Um9QQae2HX!&KnR{+F2iu*Ki
zmqxKotZU@b)_g8)=jbPc=sezZmLNsDe{{*aCEZKa;NFj(G2^{hWIZP4f`no3O1c@D
z;s?}y47d;O-$sHzM8W&w(f?#N%ja;x&_cdEvCQGcOj>M>Lp##*M1%+TIEYd&9hCBq
ziTs*F1HVRV88A$&>3(^pSwU2Ipl!5xW*0Voop_XjbR#lvKGx_1nP0-nxA@f^bWACB
zCyM;dva(;9-My2;v;(Hbyzhs{<WXt8{fSG~SfQ5qjzpvr&*uV-Pm4G13UIbj01xo5
z&{Piok{0?Gk(<A^X#e=huaVz#5FUxwd4iq<ybsj+a5qIN8G9T>3J(gE|8ZRV_~YcU
zoB^_vvtJYmDK-C(n+4Gta0heh$!S5p=!oWvx2LU`dS)lwRL!nS@neCo3t7z~0upZ-
zmdcbN&DpX<ZL6(}0ivN}J{e<R8lc0;b@D-^K0S7$j{Ivty*6}^`eL;wmOZv8T<b8B
z9H9zjZ>(nJ+9H5ib%4;^QAovKlZ=)I6x8)~@h1E*N7lI~O^3~F;?uv`t3bY$;<BP0
zr6Oh%_Ajl0p$MGeyEx+G&IkytG~h`}54h&U=n2O{I}-CWbRWU}Xdg!KWt_O1nWt1<
zjY4hj)9IVgP>ZZK(Cg2`a$J+lRw&Se{ODX3j!ygU!ZFmHR4I9Bb#4w7Oal2CUVGT{
zwCOnwfV5-k+(pTstK&F-v(|R<54zK(QfBb!Cv>FaIy<WYDY)aZqN^63q_frj*^ykC
z<sd*y;8&pYm2taKqjt)b0EH+ALsX$>buB_Dem&ZR#IUXH?TMR0T1NMWLJ_VKJI}~?
zqaRE~1qw-7;HV+Xl+zvHM{3=hk3d6T(0N&^-+87eRtK;KsZi39KVnHAcg7=1aY^>Y
zzX`W;_z5bAXgcekqOVZo6xr<RLaxgbWX5M;E#u!*2PD12ypDXpsq2pfQxr$$-U&j>
z*e5_HQMfaa8jz17J7kZ!-(6<bbaw=~Ev1PlzEkeH9i!>D`$=?N>mtsJt5744ne!LJ
zdJnjMf*4SZ!9o7n2LJC(f`6>SmDK=@?@&D~y}%BpNEx>L@@ObBk_HDU!Fq*0kZ4lI
zuCgfNaeW#QPP$%mIwmHO|LV`Z^?h+}ciAn%XkXD_^WeuGj%Pbxy!uLki7gN^Gs+Kt
zm5Qy-HP6$?$*PG1-irM~&q`r<gzKL=xHoQ@WXi<~HY3|Pl-}S;m0~^lEcS@uQt+Ee
z5`=v2xa-*pE0Yi)Fb=Ub$OZT`#!Vd~5+F5VnRfLPWoLE1#oE2hT=0h5A`gPD&_f&3
zN2JK_V@sKn+9NQj+h-+euEhdNa~KFPGxu$dbb%5yN?3wUfuX5$3llFw571g+V-Ne*
z@a&O^&(#F;bBDaGY{fwkes<5X7IyA|&fQQiIqC}{sWIH>(Nt8&zdGQymE&KTk<c+Z
z`JSu~R^s~wvJOk)$4rd`RQ`j_=CtP7Jfx-)&QBjrP>Y>?^{EK=`0B~lz@^5yyaM-v
zi74i6^0gw3Ik^CfMRFcTW-}v~bZ*<O(`ciKt>rs{WM$VNIvvFDobz*f?9=qeB8Fx#
z$y~+O8_Y?IX@}j>#u{XGJ|kjWySbtniIf<VD3!V;che(o!Z(uuRn=b8I<Uu`s*Qh0
zFQR(FNp=7{QoxIx<oE6!1;B6pM^xN%>xkix4axtMYKt$FJfM`|=gG@ZWf>BScU(y!
zUy|GM!D&InSr~;V1(<~ezYyWE0k`(a)dTxY+R*K8B3^T)5C+?s`@{KL&ooKW^YV4o
z5MA}4l?Ani3rb=QvFZ&h&$(m!mW!I$hBu%qqxS>?V%46y?yB*qL{%91+Uiuxp;1l|
zv>sNN{{0@8>#CuSXF?Oj&ZDBDRupscUn$t-M1#?7yZdEh>cWp#@=`34D@+TEYw6Q1
zXxl=B?Bq{UlP~4eN!NtD@H!82Mf+J}j7iytOKOQ<*(DJFP|)uB$j@YHT7M>wd6y0G
z#tj#KxUnFGJ17i26S^sY-Tf-cy+VGvmg*r1f){4|nif7nB@>5-!(d2VZ!0;6D`6iu
z*E@ULKd%)1zW)YqS95RF)4I%iQh_&>0)09g+c$^xAtjbY267rrcL8T{`cNK~Z}Cud
zJhp2#;47_awH7|6DfQCmN7fMx3JSQ=nr_>#swXyEf)4CwM$=9KI2YQpsLp}!l2u@h
z%#(HL#*I~%hRMH(GBl99yDfTiojb()p0lytj%5jmMV97g9o>O)M(_$?mE~dz)DHJ6
z|ErA>;+Su>oa|0@85pZx(P=1Gu#f8@i{&64?Z4!pas9l=mjD*?a;*FRCh2;{g8`B*
zK>zm{(yqHDswGrfw>S&iEj2w;&CAw_5qvm6SRRcDphY;bb)wl&BSJQ=J)An}y(jOv
z<Z649bkUULH)bV@48N^Nl^kiSvYHM_4bwJPv<j9G8#ZxnF%~BT>L{q2lsw$6nx(T`
zzk644Sc_YUqyDjz*GsHtFW?PW$<Ue%!5n64Y6$QlE7{)dN|r%%U5vkIPudmR>w^`g
zx3i*e2+a)56wSx5LDw()jw$l$MY>c*7Cc_P8}?B*|4{8om(e_@{Gh7`6sCLkSRkVS
znzEC<T{%BS!_pM;){yT)A%Z$w#Nk;{prX?N`tUC~S6t9bdF{WI#Iig$%oHM}rMu{1
zd&W)*c{n=3%4>7W)S`NSrZo|C^BnmBJ0zFp>8NDk$hC7p(L*Ott9Xt{zgIe3Qnqy3
zoXRduO+2*sOf=XRQJOX8h;Mqg2ys@zSY6GOF2|c>hc09@9ojXjg6x1YdlRscs$tTl
zLa_=pa$~74qm0|E8TF-0g=`-HmzY!0skJR8zx%j@FqDv+B~JF9vT_Aw7RM9!)lrSb
zTN6q93`V+7_Ks&R${&q{>5BNeAk5@`x>%98Q-9<y<G8=goV^klX9i09+<EY(>YG^d
zex(^!gLZ6MnR84(#zWTKbAi>T!Q#3DI7*QhDc0}l>;Gb|$ndM8dQtsL!2I2DN)JUI
zIn&#>b^U){DBbgNw1V+8S^=z+R>MwB`R8cG#WD-g9q>F)>Z|`s8GnBse86vC6pUI-
zY;@9wfQ`~7mPU5J`gnCw(og!^J!98$ux_VbYE!H@B5FPSlZ3TCGUR5C$iguzRn6t-
z=grNMA3B>s>|9#dPW#L+>~(ynKB3&ZkSog7kJ>TkK@SyNFo%~5HXy>oSV)~sG{tao
z$rq(r=gqXyf>Dg>f~_&&!vLFyV{ON=(2h4In&xg3*k!>fGYbzQF5;s`wdX^-(juMg
z;gK-M<FVdP^{6<vi^h_tRVGS*Q1*2wM81nq_=1|ZC^aXycdUGgK(Esf@#Q4{^O8*3
z`2i);Y`*IEO>&My1c-+LV$79G@Xo6q#5c>KtZA(wMA?nTFup%C#oKX8&e&LSBYn;n
zK2_Fse~UgF`8LBU>Y1k|D&@@DmR$F){W%{mY>f^<02oTs3uF1c%|Zh>+&?1UziXC0
z4{?8$ISjwhcP~|{i38H8vlWubD3xc#@Z_l!HlVO}MF1_+og_=0uU@;lWDogoX=K0F
zoPKK^yQ8gkAGn{nT0qRqWV`V_iBhZ9Q8b>xJ35MOPhY>9&C@ovpMc7!^B&&Ah@Xs1
z$Hy-u6J8@1<?JN;B~mRlRx6XRy756UH);KQAZaV&9E<Wbe<6OmxH1U1$AiOrJ+6{!
zY<Ym1{z|9*wT^xN!x@~zC3qMT1#BpAl1@mM?7X{W=f`>lAQXL@S71y@JA<(%OyB_y
zlDr12g%L;O+LWlwCsmHS_@9=)kM|i7Y{x%oRDT|R(x~Qc0BBTeeqQ=q`=n8=nGJ3d
z8EuNwWfnbN461|L*o9Bn+8cyoh4^C{L#-V^Fdit$MHb$>qmj)!&b{isHLX-Ax20M>
zK(18gJWB1cSDgcIBOnTww3(r(2VZPOmpCYE9y_iU^>wcL{DH^jjYfzPbz}KLA(13U
zWE$F46%DB+uDjTKl6T9}5e-Yw4;3b&$QDz1JZ>X~L}KTDE<z)(A&|m!ZTE@a3F|C}
z-fN9+{*3lI61)MymI+3w?h9Iu`%yZhrd)}d5&hUyn-*_pb_u<FOW3)@_1wF8T^T$D
zu$2ESQT<maIK%Tu^98e#`MHhwN-J@=wsv@HGA%~z845n!GEE4;`$+AE4X2^1!O==d
z;Yizi7z0Z=azb|(*^$bohvH!r7O-F#xm$XQnMx@enz~e%YZXNzsQ*i$x;v#5{n@$?
zV>$>d0k%5}c>m9?gWz}9@tdUTv+9Dwm<9|GFDm%@;fhxE2pUOv&v)EyrrLMNU&Xp`
zIfj*It3-ct9rB5%ak5!Sr(e7_;%^(&!WlTQ6FT;Ywx8zx3SBo7qsbFOlSx%&SzseW
z`+h%z%sLz&Q#9WqwZK-Yp2v=r!avJ(7H7;ze~1p!Giip694s_B;KMsltsL%60pP-z
zD$l0QdMumtllM;Pr#Y6lV_<a%Y~@KpKdwAiAS$xYml-IX+4Am~>tJ+J{l9_sQ}9{q
zJ_H}O<reUaBqGm$)?a-dkVqw#kM;qcS?<N1{~f#hf9=4j7})*Na<hnBF$HEo6sjbX
ze(G)PV>g^cB9*D}%9!w~w#4j3SR7SEn;%eqI$Z@_QVsRy=})`c3484!;S{Jhd9-w)
z9)Ogt$D8ZDh+Y0kr(kd~xPuVGpZ9^V8aF?UwlXz^nY3!CFCn=|zJf%xSI+_+bQob#
zbDjg_LHeSCxe%v1v1rT-B>aoE?y1Di?NaX#uGw#RpJpi=ij&Symb&Jf!&b)Js+sIq
z$P~{wf!H7H)C8u{OqlOBmfyXiYR-yMn{L4&uJqC!i46s-3fVrE%r1dsKI$s6sy<6;
zY7cr_Fd1YJ;Eo=9@Qemcv%_)Q101FKi=+I#lzc+N{oy|U{k-`f6o3!EfS`a%5+(K(
z2>}UUg;Kq&GRgcr`PXXOsoZMoqkhMI*>100b25_BT8wW|7YhI-RgX2vJ;M~ZlA&0u
z+lN)!$xH+`wtW^znYbDn7KsqwIm=y9N@a>hbaC7HV|$-m-&U{bQztGhA<SZZo4)Qc
zN^iftG4TPvi98I_&IuFTupH+-bA&hH=7AL~!&@Fw;+VelS^cndOkmR@4g-5)6JL6+
zd(%uc*5(=QU=EN6IJh&yuPh0FQXN;uj`Rg7oXrqvuu#yHg$Q)LI@UrKnnl;%D^~~3
zv?iwyOIwqwER8%ch+A#_VS<F|x4)$&RO~<GU2Y2?WuUKA<qwD^!JfBdE!c%B5?2%0
zt-0FP6|*CjMyF%DD=8s!)$C*Vp!dTgcWsxj*%o6YZ^<_9susW9G}W_tQ@(&+2Z=M*
zxlllJ%blCQ5*S##+09R=Ac~@iR9gD}o+7um91GHsUYx4YNi)e1raO7&U5zW`;2VwL
zP4ci<XKPn<gzHtW+mz#vO&^FJ8(_CDi|b&QP8HKRjDS^%Hj<i!!gKf%<-Pk$R<;Wg
zE{JbY`#5H9ga(YPxdP$ZTc26zKkj_E{#r@?ez))e2Js?U5irm*c~b9?0w55zIG#gj
zev}qq-8eu*p;@~62nw0ck3j>R2#Bmn0P>*wR)5eHN~yuYWGGYg_QX+TJo;8!H?}P;
zW6904u;HUr8=cR!NG3$xO&OSERI(kVG37|WtK<s_KKZS2#!XNHIRdj}U`*(snVOD*
zZ7{@Kfs7G$kPGdohBz@WUGFNGWUJN;x&;*v->v=DYYC1nG@onxqm1LG`pxSmjFmz9
z#Ud7rwkxRy$ehUvFc~oKHl%{Hx3i5+_Ug^G0zaUpxV?o%iYBACu<iEQVEMqO&g!F1
zD1=t882gI17gt?Mt<_OjH?w(D9*~9YNJu2FrZzTli^j|Mg@;lz+zp`oy1C_0nGk<=
zz-b<!T<Ekj8&|BHUPWzIx7`P1=L~`V5D`b|obuwSpZP@V4zISe22RGyc#m`~H8Xnt
zd@WbtWenK?SCan)4CMED`(Hq}PiP#SXCeW<{WBBu9}L-ina-!-5Vutu;Zd=_Y?z5I
zayY)E8j+AGj`^YB>{h&as(#mrBGuP+Cw@rEOPRednmZ#cE=(t^oBE9~6~YH2TKou+
z!Q-Ma9}%1MGi7w?KKelq4q}P(u9+DtAQE`fk(+l-_wC<>Fr1hbQ5J-tRL8Z+$>4Ui
zRO1bue6BFD$NsV>ZWwld>uXMa2Hw2QLkxP*SNl=XF!^oi=B26FaE8f;?K4o0=mX;D
z39(xYY(8Id_j#zox48$d`36`sPB7-ZtKE)MMB|bH*iA=sHu4oMQd8!Om7^ddZ`Bd1
zG3r{HK>d&v#rVY6e|A7=N|kMGR%xNgR~(;SWp!;#-_z#Dl-Zr>fvwmn{vg`YMb2Eb
z2vGXI<~Oxq>w(%fQIOt+@RT3S@Z%_v0M4D@#kv13Eb_#adSU&4^m6|Nz!h_{f5Dad
zgDS=N+~}QA){y=xf!bEluFJIX)gw0CMEt$588C22PR>`;>i|^FFUIZlcs$Gi!2D#+
zlvp)u(~&OZx%JK^_ZY`+vQAT9KOe+JuVZ-IXdx%4Fq3R*R5ixBaIE%ND^EKqIq|EL
zB|}V4x5cmDBa8@|O>}hO&Gj!G31hL4QGaw8&(_0^OA61tayU<CF9SLmrV!%QHv`L<
zvM-0xr+bYSQT+z{(ZXi=MD$+!wdoLK8>GMM7)~4J7IvAm#ST`@y;!gIsmG%twQMPe
z0s1?2dB%XDuhBweoHa6~`mnAWBC8(~Rr+rzvAPsCM5gZ59J4hBFw<ITP96n4u0iyX
zr?XC9J4ONdnJSDMG?qZNkb0*ZY~&L5DY&LQ=pJ&L@gjOatq)AnnPNoXxY9CIhXU(i
zXi(i(-YpuraYch12QC~`Y-D6^Ub<>72yuvzxhM}{MxX#+_s!Sqs(aY4xLnP{&q?$o
zNBa1a1aS5cyw=8vZOn#-F>jm7uHnV%Y`|0zS5(MQVipAp9$K1MPjWXF8ZqlOWcGg5
z$Upc=5Cx>l47|X1?^Um;HE!~K(VLi8%|syTwC^^v{J#wh1r1ps3s#Ed^wO=&3vsj_
z*vsz3SzFuqHwuEy_FynaOHZm{c_<w1?)F4+H^N2l-!{VVb|ZXb;Y-GnfDADiBB2Rn
z^jC7JZmRHWWXgxkp*$ej2un4h#(e`k^?G8ISkI^?iTDGum~P5rQdJT#<O$!{u@pG#
z>({w=LN>uId5PsS>q0P^Hdi=^pyZduKH0AY5!-tFan~Xkv({#-&FWUv#+(me63tOd
zYF=F{I+Jd`&w3;*?USAElrQ`0QiF)5$0ZTx?^cpt;Pa*odNpW{dOII-$V{F%(M%zV
zSyV>zhpoLIlkY?~FD+EK`E}r_Ol+-Gj7wC=;F;l3{i)Fn-BQ1xMxfMpXNFZb6~(YH
zcUI`B=po^VPeK++1>eGjsoR3Tqw~dp=)DE!I9G+!Hn0>u(09P_`kqwEr?9P1zLm6=
zMyS{Z3CfQ%1#Y31sz58M&>a&sdXGSzM*+GqPDQKIw4%Gqcq>0J2#UZ)p`xph>-8qO
zOyYXWV?ec2>bp#X)J&UH2IKgnsEe4+t=qP!BC+7tp;6nhn*|lmASnWL`0*%pFy~xo
zl2BKZiMr<ZD)NztpEJ0Yj~X>+w@eo@DH4Tg&?9-!62~FTQ6mXqD7CJSnmzgsaC`JN
zqDq#Rrrh_t2M%f$`M(2`H5&BKy;8_|uPK%zFC0lN1_k{73^x;Xh1|+0@W^#rj&0DB
z^K;Wc_@_Y_#>eb%#@N<t1EYJ_?<rD0QH<_k@gBE!8awcRUZoaNnzj_g$8W20&G;`N
zO7NiycsTi_0eM_2m8v`vI9$2?j7XsgkyRYAEI6T>4^_njHot0d+xkgR=6ku#?1@pT
zxgC$7r?Kk1yZf5u>cZ;DU%AtnqX_~qS$J4~t`B}E4E!6-nBOP@dfM9BhOcyi#+bEs
zbwkB4-U{PGO4#YH+e%Vbgt3iN4M}c5ojD9hh!087j!+cqYXga9l{y)&pGyMh79-(o
z-P4`m(R_28Upf$!P_6um!%;@Tn*bxSr_boqkrto~@R(29Hvg(&e)p;Wm1+2Igj9ba
ztbZ44;vz(;C6x--%SjErzc55Rm=)y}kH_qC(hBVi8(`FO$At1*2ILthcUMZ?WDgb%
zlL=$&jWt4J5qfo-?B9y0j8Qd@nCT5HsUf|xiK{(eRjQ33aj=ycg-rvZrFY{*;3ggP
zXHBn4vQydIc-?5;5k_njHfQ^tn&C;Q^EQ1;ml1-uX!1sEQjDPpbw@55U}&3uHUEJ5
z?o$@0-z@zcMb|6m59I3D$PuYqGke`vEkw@7EO9)pB7;gmCMDjbT}K(x{#-DS8T~Oq
zXBApUSh#|-Fb~7s0loG@Ae8m<Ma7}wwA3TpaoW%W<PatGs?FZO9g*ss=zg>8?^lg3
z$!fHg)AcK-wM>9bO4=A}VRh*6!~B5Rjs-uR*_ul?6kM_2woUX7vww2H-($?m5W`ZW
zLW`3;m6hV|0nYWv@G?(vNxBHa12f75vLg3dV}j#EIKF?BR%7pfhuXVWuF$Re7R&7W
zGXtO-L2Jwj5H4TJsQ%vB`b(N3V{7$<6c)0wwa@|VOJbn=2i5u|HwgFdHtK#S0L;IK
z(hrGYk;wd~z!9VjIh-MT5`FCq3lj@deeF&O*t4msfAghz;s(9c!1zziq+bx6f9;s~
z$BGG7x_`j$p2K~5jK<TVq=3q<%A(Jz`EVR2<UylyAFwE8n<9AqT@@M!2+mE9`WY;`
zrXSn%xOC!<O{0;$(pz?2JVs%bmdD(#^4NNf+De2qt~ggya=21NK~nMqsFKfEh}FLg
zR7zDf&tMs2YuNkLO-7m3#bZ5;Ljiv~-`c~ux=&w6B@!>-O({0S$;vE!a}&!_OX2ke
z16CwHE-EGed&OsF`(QPea47i7+Bb_fAOR~yu-!^PIH>n(M$B%f21fofOvWQjn299x
zBl^%(mLXuOAO;7>hDi(g7ePuH{QG9w#!NuTsb73?!RGIcBk;6<xanZw#*V-0jQD?+
z<uh?&N^CU5>TAa+K<DX#apFn@ccCOpoh9d6wCG;!%Tpw_r{u*Hv}6kE&r0t0cu#O!
zjbX7Crj)OJ72QXX(Q-EY6`uMlk$5J2$ed}zWI5w`N<7G;V<Pb^-Yv2OT0-YtY<<-V
zlo8+d3coFa6n4LpuNgdG^BLM&_Wo?0v@kY50tJ-?&gzId$ZcF3o%?4qwD%8s6O~J!
zy6?HMc7ju8m@03H3{_dpEZsC2t8FPWbLd}pchy`tJKK96D<FVi%X?ec@C0uGx=PD#
zs{xh5KMxn76=|NNK3y@PRz06<rq$30^JTy_n0PUL`|n<uiQ^?v>&Xl20KBm8pS>`G
z_BsqLh1iHV-9XT@Cq{DkcI7}#D@8*)Dmg-BBSkGLIYw8azy7h9j}1S{n~s}>feWFC
zU==YFh+bh29Fzg_I|k|&Mtt0kL4tfQ&IW@ojwnGBLnkaZ0hVBKFv)qZvxK&95l{dq
z$nz!mO4^_21GogpfG7Hwzy5ue_|y`x{&kN5*BKz+Xm4U*CuCx7U`Hoy{X~$HHL$j_
zwI2a!wx<Cg4X5|036*a1;goe4JhdbQYVj+R)F!l45Qd%Q=lE{@v@YKl+3jOl5o8Dm
zevE|eW`a!IRm&Z{4vR0+Yjba2hqd>wo0c558ax^i_RMGrX}jLSt;iPU7qth&4wK2e
zdc7b<!ELVI;Tgt}48*PmH=PsAVT2*eEM&h1o=wbgk1k1uYNRA|SzdM|7HdzcQ)o}%
zs$u!<4F#tphoTRuMx_1R*NsnyCd;~THSJ2(;2*l;&h5oMpctoQ(WF@t5s&a{X>(^4
zmpAP2vH2P=`!{Gqg&8LLcE0wzuIE)cc7lTN@(5aioDz9}3I?ne4P;uY>9C!jva_X0
zy{41beecV6sqOf!GhefHcR2B8zM3OZI9WbQ{NWG*=fsnb1x>LD$9w19-RlSO&`@)q
z@hh<?aRtoFb83kxwTR0}d@)gIcVnjT)b(CIO6sE$^aI{>?%2JR*l>}YajyofPZKN5
zKGUt8)(MTtc||{LsWqF)qQ<?q-E$@i)0KL1ZIAF&e48L*;;onP%{NHv@tU~aC$`F<
zOOb%z2o{-Rg}k3kezYbTZbtS=yM7fz&Y$<F<S26^;P~ofbD{n2S((qEjbXm$FE;*r
zMT!QniWij;U~%X#UDPN^X+Iv=fU&Mhdb`O`n-7riL!<)sD*|C}Zlhb1Y>Km?nPPSH
zNpOBP^Ftbnnoo+~*IKQ;BdPSMT-su<w`orZlSQ|JWi?);LTzb@=fFL}{ib-n_|a2n
zzT#Vur{pdu99~Wd&QKm>9|Gvmu+-R(jth{vI*wQ84HS71dt_FKmom-c9dN{~Ol9j<
z!*;$GDDA?GcR}%#8$e=~G9gVo3c`W#1Q+&o=7-wc{EZUMs}c`k{yQmXQ~Xz72!wU4
z`o2@Tv2_)!*bY(%-IE&Z_g_il>l68Jkn;#%;JYluGCGA;L6lV<Kb{h3G*o&d=Wd*m
z2&nAYw?E}TWU*<l?g3{L_~K6ejv4%~InZwcVox2*Us_AQ5N-f8y_Ki`mPwn)P?Mt>
zhE5rZ01Ty^iWYH=Q&Kc5QMjYtWqWE_9LE!CaE#+_^swpMw+DjO<b|tG#=1>kQhMza
zu*$d6<ws_sJA?<!e7{R-+iB4sXrx>-6I4;XDJPZlpNFi)_QDkKHX0LUhvw`&T5_it
z*-LnYoL*T{Ct?Gju~11e%)8FJ5pu1k7g$x}S<y&R57sxv8j9N_ag$Rys#4$}I~bbv
zxw@y}Owz76=OEUn(6@5<MhZ4BSJti~j4rlxfv9yayyT44fak7t<q=2~Ft<IvP`>x2
zf!4WIB~&BLdw9-0G^6t@PXR~zvUAxN@c&@o`fDA~ivhMtTbQGT5kSGB3`7SWZK5xF
zA-1Qkx92lw{@RKkrIZRlz@okR{=sc?+q3mv@(t&8*u0*^8ftj6sX^_amaW1n9%KuK
zuAYoENy0<eROMmDM^ez)o>BvF%2=4-gmYhdWB=Eogr~(SAnE0I@+njKx6wt1?G-{g
z^mR^zFl9@ap+5aLUlRDyRnZ(NcUs=A1-~~-T^kF2>I2tr+<>lIZ=&}C`oP@mcC-i`
z%iyTC{wWPAoELO>hI_rh%01s6^8n*(>}#EA(K0W|V>;bd3GDM|qD<mE&SyCg+6<zf
ze^s#f8<`yQUsoyF|NW6GToD~d-DhP0hwb0)ImSuGN=;S%V`Bq}O3C(r-*f!GnHzIF
zr)?K6_^60~Hy!PvV6UrUW})MF(i)t8IWI<drsAbyredmK{_{Du>fllA0hS#Ac>gN^
z|Mzr)f$gv9#9xa#z4glhy2xKO9rPI-`QR|!AT^+(0}sh5bujv8MJJ#%3Lecfx6#?L
z9i5zkWaU?p0Y(gKkMJu;&}flSRswvyq!%CYcXN57vcHH1zhj^!0g@*=Mh05+bb`)$
z#yXZp2KdiwU<|En@qY=T;QvVxrA|)csiEva+wQ~sZZFhZQh<~tndcRr0MU2TLB~S0
zS-!b*q?$)dE-*G`PZC;_$+V?30At8Wm)z=Wti%2I%vzlc{7Kml;lVdq%g8`+`~*W4
zr~J5y!n(k?Tp%8WO+VE6#6Gv_!jvSf=efA7nYGGE^7p}!QA5nTLAy2@)~qg=K&=Qj
zjntyh3--z36T$h*3TPou#ix>K9%<Mgx_rG*(#58Va)M2G_^ADXxvBg60JSa36*+OI
zw0$Q}n=TEMJg-_NQs~F^5(@>K@Bo9ENHf+|G1hK|1v-MumabOYDvE<5)>8>($U7gZ
zL3WYJG=DI0Jt9nka-F+I*|-7{`z$(!VU+cEu(8Hv!DrFMVlu&7R=xxyyzR}S`8pgn
zNLA^)b3;HEr8N!H0~PVzSgWq9hC6t#^`#7>3u|Uhl>71fkv~z+xaK?N=nZapCLBrU
z(CC|~;*^aL-!4$fuV$jMf}0qq%%@Wbbj%<)_9{zF$<=hfQK$1fUi>LNH`Cs{`T*8Y
z(T=0@{n>AfPTH+LL1D385W{{CY&gFgf`pZkl>>k(%JM9^_8S+hw`_*994uK)t*A`H
z0LKH%q*YCB`g78v*m*l0FD|s38a`B-JKJtXD%jeru^d=Kn|kTUWGBpZPXsX6PpR>k
z5U~~N<|gAkA`<^sKgBkfBj0i#Cce{C;&*9^lIYj{F3QW;#DEKTy5(Y(tO#-|Ty3=6
z1tBZD9)8{74GFmwVGP}F(DbefmY)DgZHifX9Sk{Vk>Z+}uEh*4+lD<;(SM~r8X;|%
z`Rd0q^!D&MLaWdm3f#(PO88KM4<;#@w5Ja|R1l@l6tDmQ1<b%_9QHF?y>CNAyt0%!
zSigE<d!O$?)8PZA9B)08b97t=yZ9s0<f>G&qYcWZpU(*H3+Y57c)+o)zsMJUzh8gd
zLk!RY7BH|gF?tdMem>e4BWrnpBTk(DI(+%})PU){z(_;@-=x%ky!8JY|H}S6PJe;R
zq4xT_{*|JGt?n~B!`m4evUYWVi(P!_Vv(OAIWN^a+m*<>9RW`f^dFz(f6=#Kc#d`#
zl7AvkUH<Jw)uqgIjl@jvr2)?{{_+{%p2I}SZ_BD*;bNftbwknbMgr&zzI4L+Rt~!6
z2EWYX1??-&nJPc-$7EjG{}043l>dqNML3RCPw<B}OUp@!S191~=KaU-h4c3(`k%v!
ztbw7eft~R`qR2B2Vnps)n9L)hozDlbNVaN5MJZfnx>y3N=U744jf=_RaI%(i^0BS^
zlygB}8U}Q5;J9%&Z8<Is3vTGJ*Oz1t-!jP=k~Yvf1rLnrta`zhKJPSYML!CXTCFMx
z8vQo!JEP^CwAZM{l&#SbEcsR~^G%lGKvp#dJG~XB#P|SizX%^KLd%=r{XtH$2)o|1
z^DyV);~*3AkL?V~j<`PJ`>Qn6;^-M@!6qG0KeHG>+PV&Ki#`S{6YT(Xs`AcV*uIU2
zT><3hA?(CXSbnS+%N8i5{8%&DQvUu?c(*=`Z`g}zm*et-k;9^<t6C~hNkqX{h9VK)
z5uI7=39kwu>(Eq2a0CV2-=`AHXcpGJW1zNYk^lj-JE$LZD>J>HAIMKESnxV_L`Yn{
zOfQf3pNroRa~n2T$0eGC>9MuJnV2!Q8em1MFfFeF-_*7;BJiRV4Tp^xtT$oXUH7K5
z#Kbn>5T!H?X>auWsZ~+e-rVNyD?HbpEZX+mUT|m4m39ZXHK-R6<M;LgGvGV^199+g
z6*hjYUV2(~i7#wx<zTJF@`noH)8-{lz><h~vZ(njeW+w`-crS0(s&@#q1R+%9O7k-
z0HW(8>T$cByXZc&w7jV<SKr#Udm%t;wRyj=59Nmk)nd&p7g`H89oP7#wCdZs^95AQ
z)6X$%B|hhsA8H?RsKyO6TW|ys#Q4JvK2d6g=LEH2z2TnXej`{}9b=Luv`<l3S5PXr
z#)l=Hv|(oX-5PU=k%WZ4Mn(%Qu|R$OgBGcvm~}P9#c-RF_MQ<c(K~2mAjMWAI*T8-
z9~DgDR4<@OEnwv32G$c&4J~<m8AZIp<>A}&v3Y5^t0$FsCRSnfEm9`W!6fH_$p%fN
zf3~r2B7dpt)-?M#7k-ZDgrFV-LlWoc!71E~);DA~1p~9=>R>5jxGRH|LaNVx?dRD=
zE%H?+hgfn&CoYDN`qMHU<U8}F<Myu_RK{M~56JC5w$Mr(Mp_GxZ0H7nTzOu93=TX>
zJ4xL(HyrUE+mO{kAI-?43d7JtD~Y)AcUvJgc0ad`^;vIg+ElybPP(=yzHQX2tuvvn
zTtRgnluS;Cg{wiSS#pjPWjx}i7OmGS`DyPI9_tw?A6nJ-nOB_B60iS5ioT$u>o-=e
zx3`|#yf-jDir#Y7WGMNGTUs`!Ti`BzTkYRx$1N>uT|wCvi`MU+cUnZCL%iMxn9}Bp
zzT58(@P8AKer*_eDI~4__X83OT~8e~OXZXH#=lGWQ&f~wQZQBis9O}}EQ<f?$A53F
z{4MD4FZ%0m{I@S9I2r){n*t)I&1CVBU{33V$P$i8EkIp-&HqE4_B#HSr_<d-=vL!w
z>gksIs8L<@#0sZmF4)Ydtc#qi+b4`O+5O&Z59ayR9WnH-WT9SQM}@)R7~2|_{^7l^
zw#X4=I*8VI-gkji{gihV@8K3Vm%ijUCRrO4e95e~L6q_>7OqdATn))jDW|x<KR%$m
zHf-DN!FHg0b&bH!h9SBZH}PrL{q;vS_#(-0#gQ*tCbjnmWXr8uFdZSs0Cn+0(6sZO
z4|J?~drC)~Y*OtBMW2-IpBG`@>n|g013bq|CgJaBCWb%xmcO8xUQF$UpH|WQW2Kv1
zr|pxJM(RJLG>((_L|33lBsa0}nMv~-!m8MmeWSQzg7i2aZYoFsYK)}_35u%6?^<t|
zQ=LCBl3URV-9DTpbe$L%G7;=&7*pOliGDtT?+YV$xNhDol0d!T5UFV-w}Wggji_l)
zr0BOE@4Ksss!Gu9n>y3zvsu0|BJ*mWJ7nKgs-G1x6IJ4ZvnY=%NsG44d);kX$PAG$
zlvXAC0gc2bF!cLYn#d<GINJdJZZ#PO4Z9pCWC=q;Z({;0auvNMlS!7uVx=a9h<_?F
z_6?p*I@!3x`SP;p5;3AtR9V5+e-zEkm8>>#al8F)QWP2d;|eUYnjOcgkh-O((HV%s
z1Ui=+!fzBsSvI}L83+;ErY>=*w}&v(%)lp2#GI`j(!T}7M?m^xr2{(nNjntEVD{>D
z$uaC6=T!DusSjahMI6utK-Kz5lo4qkyI6!`HrQc+5-Ut*4qJzE3ZJ4nZHZc~*gQ&J
zkXx?j+<lFjvu&x8jCV{*{f9zIW;=zu?G>~luN<hS3Hf{5#p<He&zPnAl=Z5uGJ;Bg
zrMj$p#~VR%l2B%N*RfUUZ`%n6b~<w4j=&v27RxP6OGaOl#fGp~fqzCb2Ij{TzW3Lt
zML{_{A)rV=X=r<#(9U>;-mnmIg5<zoWU)J|{+5Ke64E&=?7@6!t|~gm+{kKr;WPRw
z%pxfT>-k~7buT5Wc~~1naHY9PiThb=)*D#b_u#&<4_s<j^x3@w<IWI>NRBYa{X#UW
z*lYgxT4@FXJ*pw$XsAg4&}3X5NxD)2Ku!i;#Khn2miRx}?K5?U<=41LZU|tis2W{L
z`pPU!6na>^umb6?C`<|nL_wIv0irLt!PJd0kTzToHwQYn{8O|C{`piZeT}=XtL<mW
z5_<&Q^xNoqoULnG+FpmnAv5%(Kzm-+EZmY3i{{Utfwr2lVs{QqbiO}wOby@6K93`8
z&UOE=1q!5Rgi~NLYAoTv&_-6>%WcqY0EBp}Jx`<5{%TLI+?Kadu?Xx7IlDJKCNSi^
z<rL$bDNVh&RJ&DwnW7%y=Sk#Lo?7zsofHwmTHd_nWORp*vw8$4U_@-}M58*n{d~i7
z>|`ikB(393OjBwyw2E^g<C1MpC=)=<2<XVANJiCnX8m;X2T?*D!xiv$=JTB<sKk@m
z#`^iKa&lJa=a1J<m_#)TFK|7`qn8J}nd5)t+D&!aCw`t4^5%T#D5Hb)!)qQ0>Sc;X
zypE0@zRj*#m@znqCPaYHZb7th7{`Mva7%G1mT`HFFn^BWkmq%#!tiFe0Rvf*M$50j
zESyK1!O|pWj{N9q<R?;}Gz*0f{UtE0)B|+$y^nkoy=zTQy*kR;mVA<s#VtoezM7$o
zL|%C|%-cvXlu3=mgLlg6ma)rjRNuSEp^m7PMtvNSBWx_!#=i}II1<M`;Cd*!q(eLc
z+g@#GtPunEDUr|xI}A4xXQ)YYNnO0N9e%AIa6|C1kpAFO+ur(dV7H7bj;HQ66?Eyo
zE5LD{N{FMlPJglNBQ~6Eyq>7Dx_sc0ZQAjAJ3DKoQANJ<H%g9*fn7<B)(7f1wAo+V
z)g$)G+n(@eXD^KM??l&MGND6%-b*u#`gf!2|FufuPB4D+*Xa8DO!rAs@sE7-zYqj|
zEv<?90LU`|?4~Jc1_kbqps^^E1@@Tbi$$svyn<|SPm(I6iW*#YEuUbIo9(J&X`dxk
z7TSJ1+~3n`y@$Ok;(VX6e(^B0^7;LS;!zTs>Q&#^`NXN_+3iT4_TE_@M%fcVz%71q
zt`#5ODiXeJLVFx$Rhx8945%UTNjBvYIgt`u2(%A^Q-lw<L3_bpiq|ut3QXd=^Nrp>
zMzNu(`opq4{qB&`ow(%%l*1)FfFB?c^2`sYtGXNX0kS9s-s%7P3fk~2iAlO(1QzqV
z>c>HIDZOt_U--z4>$_aJAfmSuNFCg3&}B1Bio=_Or-rNK*T<;TM6))6o5STo+4JSL
z_cEd!v5K!bTF{}=#Sn#})nEx@n0dL+fI6i;s;^Q*K1G#rR<ZY_YY_@AA_+BwS#jo@
z#;a{8COY>_>Ug!PQkz<>!!XV$qwY#o(~SRY)Rr}Rpl#?Qh5H)XSqB_)e<aJDvprk$
zK7!fNlAY?nusNmK@l5zT?fHJ2o%=H9WlaI`o9i$05X>f|TpvQzxQ!NvtC2d%Nh{O4
zo1Z|jm!6oB@YhC~wW;GD#g2mDiEQP*Rmz^~w8}b5{5+hrRjeqRz_C6K1(p7_%Jbeb
zeC=sz&3|SHJh|c*oz1^O8lEw*Od@~o3|RkNoA03@W}qN@>K{L?CIKbZ#Q{bY^Th%u
zg|%=P8J2{l2`g(feQq52a@x&U06yH)0QX<L<KH96pYYr=wg!$S22KJx_BwR5O04{L
z>@EVdynxpSa~U9Y^4z&#87W~nXl!V}e+VZkA|MO+yB6@4hXe=wNfnG&_39Nlk*EN#
zyz}CShMFCYuw%wJV|YFfHLq-oGHPHRc~FjXyLTRBF$G^<cPTj(GKDIJSVBt-^-|1n
z-CW|l=29_nygB6n=XS}Kg_)M@ebls~Cx3=)@u1u{D_eMbY;)MAF%#H5c^MW#M3CW2
z`^-ZpT0GE*xj8Mb^pCk$7h~_=6S$KZa6z<l{ai50bO0ZQseIfo%q;LtqHAeqe%JEO
z3E@^M);coawEeN|L8<+_0?d!noWB14eoNBWg@79z`=ictG~BUuXMkY;t%{Y^DaP4P
zFkHa8@WabiDmghhr@+8KtECD!Va>=+ma*F})tz_5;S<-e4xeAMzp1!b^SnPcIeE=4
zt>t-VkdR7c*=pl{b}xEzL;n-V1lAhX`q1L7H|R$ULsI<n86~Z&<{+q1r>;A;a{_g?
zz(AaBNI1_mQf}NKYxc%VJWE)W6Yh*qiL4TzwX@aWLg~z}S11*9P_Tt<_b1IL?3o#`
zyWgdtgL|&RwA{}HD?6qozi_jxyE0sUgjInsn>=X(|2ZofbqTxdLdLu43lkf=4(T6@
zy5saYuq!YyH;@Q8c!PbQybeT|{Oo?**27>GB<Pr(O&WtvQ~l)dFxAIvZbR8mZ~O;5
z;-pE04A1vd$i;l13Y!8Unpt%s1~O6Sd|b1cJ}A=Q4Q9zNb{VL>$`s4QXyy4i9R_gA
zpdEGh{!n5z$X&i0A;{uUCo3@mAOSd^()hl>q67<^=8GqeZn(|a{J1?2lQm^Map9g@
zUG)ql0>#e@gJ6KSR!vAH8`s`kzS5y_Tff2Mg`-0VIE<1IqIxSzsro5cG>1iGnVjZT
zNd>mWSH;e_Xv`9C6%jCjdJa}rN3_+sE^i5&Xh@Gy;Sv`{^$_Nyl9-Ja<|G6HZ%Gd^
zdWR<B;|(3wPpk|K5;55vT#{e?Ic7)}x?OcYLxEo5im@`Vbs~2mW#4=zO~#~E8N%c#
zsTdm`&Vurubb*N&(ig+Gq08j3Gc3=~-+t?@qZ~klmTtdr6hjj-7hsfx#2jTT1lcZa
zyNMqVGb#>?5lI>x>iTstMgR2L2Ib=}XsXIL&HO;B2yY_P(IK{-?0BN<&d$!%Wfw*u
zcHLv7Jk>#i8aK|(GEot}Y|$v!Y<%|bpoZjxS{1vO`s|`-pRuIyfop>gzlt$Sl7As2
z1(mW`&tgf_mfv_SB@9D0!)@__xJr|s&kV;I9k=67f;6@!nSedexEJzbd>DyYlsN$t
zY@V86Vfl4c^42m5d+dkFud1<j@8Y_xdDT<rQ3@@Q)8LU<LDWw4!<AW#P(qQ3zF3QB
zlLg7ZSWB?6v1uKgp3+@jU(<Fy-ck<<Y+YTxOBKt{fYLj%HD=fzu%<TO*@SfKFdTUY
zIug$NDcCzodZynx7{5YNy>yBonelVb*{i<KhvHSq-PXwFhSf`T-4ckS=Ds7cAK+p}
z44ZYo7!LYwD9^+8X~9Sx>!EPz)Y!(#Fyh$2CS%(i6qH!#B1q70=%6^c&C3)>mJM(A
zM-znxO<-s4lds&c3;du?miW0ckt^)9@gT>3^5y(Bt`$UOj=d5#4o*WqsbT`rsmz1{
zGBzYyrN1G#(B&t4ZXu}fb}bc^<f?4^4{ott*&L~uSemwsAEstQ<ThRDWh~Xxnra;Z
z*Z=g3s|Uzw=DPGc&*yJ=?5o05dFAED-{<G&b31}ETqpF)v-Jlk&b>!)d0M{p6o0VI
z5petY<F2{`DLZz(N3SnJqf?~7e?Mds@Gp!#ZdRNMLCIJSj0;O0&OpiJ!_M%8$dm6q
z!uR1QNu|nLj3<Q!#aW|3yQe_edg%QXU;~C?Xt=<I+c`SZLWBtUeGGeTzSYfXE~RH?
z_8pE+8Ts0`yN<uUz*k{IZ1a6g)D>eHv8IGK-zm;%CW)<1xCD<}hBH{7hV;@T*bl`<
zs5`}EU)<>E=qRiWKm$GYvwdsFmL>&3(kGI=wK)mO$a>y{s?r6L>$IK)XS*915Fn(!
z>*neT9<Tv+I%n>CdpG9Q)>2=ez~%A%@^vy|Hj*~4Ns46QR68@VZH{X5+b`CXr1qo%
zF<!c9s>3U<jJ|^>na4)6V2+>Cseh&qG=o14BwAC^^G}r~Umzl)+263QVrL2TCn9Kl
z{CR&&CY5%Z_U@pTM-K{t?mbZwKNe|L^p}p1>T#%40USKM5qiBnl;Lu6sdC*8!-r+=
zG%hF05Is|UV<~d{Y=TV~pG{yp&)eZ-CMO=>w}p@QqRnuwlX<$i<vx<bUkv;GSps4}
z;Qi)8{XpTYA`zVeYR54F{e+8kZp6h<wl#OAF^076D11pFbw5-asfjxt$xp#mc(@qa
zHU&#dOKWPHni<4GrG<i%VY}OqYUa9VNYqf^BZxMp`j~{Z%B<%)d2HrZRz~RP=uHE-
z;>f(xG06nqO+;YQVzI5W_2F4Bdca81Qb4}eg>QW_A%abeD9*46(-C+}2_aPuLZzY_
z6?t}3EPud=bON8=EYcn3=aF4mY1Jx24vRx+7ixW!lVV|N+5}U7lV4F$A$+OA7{Y(=
z*OI@E*lDPPn>yb`iebmLv$K=p<m3dQt~w4;D5SbRiNj9U8W}tMn$<>3WD*IlB?!ve
zFOLv;5S@Gep}3d=0BsWxIE{g0mGomCUs-8=<z-}yRI_F6E-=>;<Tt;xbU%#$MSmJ9
zJd0I<&IdFVN}>>+B5qmdmQAOQ!CTeF6e7n5n1J6d6O>7xFmY&QJZ4caHY=D-eX)n5
zQJs8&%&AMy$0H}KAVhHn_<T$Ks!yLip9K_xMU>SBaC77<Wv{bAV^y_l#tB{Y3fV+p
z3xkurj}N#falVJU$k_a-RsDDyp=!rQ9bGOv-bL;rTcKxdUB#1D2J3bY^`Njm&kY1&
zH+6My&)K@e<1p;DT&oUJ`6v?UZSHmWwqr=E^8ybKueAQc89w8xBF?+NJf0{H_xoaZ
zT>)Fxv_7-)IY(#bGN;FPd;8YUM5j88ucgQrAPUh-G`gW-5dvxedO{O?ua}mW-Q@-g
z(fI}(!a{oQVLRV0a-fZDS;jHEWs-J?8+0A3-lOY$?FAne`C;lkf~KJKTJBB1^_$MS
z_a2+!Y(FWS(cTIcA(_2?@11Kesb3E%x8vcTibN2W-i*`?TR9s;COt5+Xo56frkcii
za67L_z>tP2w)3Thu#3R)fMDX_YYI||Oh@47eV>tpgamXBWw_eD1uCTqb>??e_p}+l
zb1p+xb72g#ajUO3+qvJpYdee?PPhz!F8DM_jKrkovF@$V06qD3z$O=r)y|{vEiJzb
zVhX0%HH8ZyUvQT-p*i}%iZWr~9PHU}Ozf2-4J!jkYB9f<6@6|scJ?AbsyS+-W25hp
z4z#jlGq#{>bO*%+HP-P*9Eo&FG3J%p?uQd1!Fp8;42&9F1{l3F9d<l1cs=A8OtA?1
zG(titW$hY!+?o$1(7<Xp0T5E@m)*q{qbnTr{uO|jLbzBhK`!E-OC7%f#xmcX8>7G5
zqLc}W7rf!lH^AIW4{lD%m?q=^8;sOj6`U_(mM+LogX9<Nd@bVUcJJHP)@F9;rNaI?
z|FiH(fbus#(2<$61EZ_j;5iVdjVgHWo77#vs}Khe2}poUuBxOnxLx8!E2+^#q3=rj
zIOyKs!P}dQT*<TJX2^z<2viX%(KA_kc|9iij+;W0;2f}-6?KmjqMDY+HM}K5zGNRh
z?*ZJgzLk{~mlS@1kM!RPSj5QYbEG>JSKz2A%2b<Re8@~d6MWdKl1W;D`rZp&#B(?t
z$SV&1$aS#pbadb(wD1HXBMcRoU0iJ9$MwOri(r5A2%hQwZGb*D`u}6?Er6@cvZzrK
z;!fO!xVyW%ySux)8-ygp-Cc=?xC?Pt;_mJV;oZPYcf-s-uV4R<s!J8*R^^`W?!C{p
zwN?S?T9W-SfdZap%2&TE+ewg*=4|B}X%CBamfAE0LLmd&4()V2nx$YYHFR3NKp*Uu
zFWmQe3=IuGQ@4+)0;Sr+ggPeZ>D73AkWO=9JJgoC8Zlx+qwf{B9S2#?lp?XM1K^d#
z<N%(4E+owB(YH3OwHBkAgIf_8%S5A=t#Y==YO^#S(2HB6MeBWYv;bFp60W4migXrb
zbwg$q0^^$5_aVH6i;j*?+-1p==s2oz^{r4A1iS>rB0*K$els0LB&-0>g@U4DY|c|O
zyF&(txtAE1W0t-?dqrLsU5`MZefRqwvjglTGHAV;m4f?I2JGRyz;z`U>H`T|IUbj0
z;!H7dOc-`ha3)}uNpPSk+qVX<$=3#<vkq9^jwaVQCuI5HbyP91vVI1hyhIhhisdJ2
zb@cZ39_Z5g{I*hg6jW261%oBbo}QxHF5l3_#Ra%#RBN}eu#i5{b%hur&#Y8*KoMB#
z9d#0Pnyxl;t|kS(JbYk?H>6|Z;ajFVZ$YBg>@7V8m_n+6{5lCCVau@mfq{Wpt`?Yi
zJ2DRV1h2Qm=2gUN(=c3X#FeaQ?<$?x-^jp;bRY1864o~sTlYLXJlJONct6<U%V%0x
z#a^hED=c+)D#l0;cbMEoU9QQ&th0%wz)jxmQoGoO*#}rsyBi1&nC(m>O0XQcY-e|-
zL2A-ZVa<Z3HA&eCRh}q3kU`PV^=3%IlHlA6No0OzN$QcS4t1P9ZmJYv#BR`oB-%Zi
zSyL{$V^M{m=rEy(9f0Yu4}Pmn*b}vAIEu&ZadiWbP;$Q;<$f4es=EFX-Z77k>noNy
z0=j)2kUTLl;q1^x5)gQBk_DB@=AXTSNx9umNY-DiFEZWjG1|pV6XpJ9rq*D;9p6nU
z0!P~(w@Rc6C}<P5ByLVwxDBQ-FUenJ-I%@2DAu^Jpg;!v23vRAU-3}w8!Q^V;pl50
za7Ydss}Qqr*=I4Khg5W%^eD@h%#Vd@)fnl}jFNy?nUEsEtdu<a+R=#~sO*X$kChCb
zOw~d<JGWdiPnel5OVQSu9jkC)IsW4K_!vuQd{bz6$mqjNAch0V^qum?+5VRZ<Ro5b
zy;AFjPq1+PxQo?mojF^cB9pcm!zs}rAt4q1<IaO?Df+tiG}R%gcJ?D+bgzXf3FxMf
z(7PGDci!f)WakIGQ<RLq5ZKWZu*fiAOEyz{hJ4e*Rj!OGEkO4;7A?Xq6JYAM<8eYa
ziN!UXZ!w8gc8O2F)YH?GVI*IKo`%W9!s7FN^CRywCmZhRq7@mD5q<%920R)<6)lKJ
zo4*oVkO^?g8@-Px8*9_JjaUXfk`^E~@)L&>rdcgEhm1L|KYWR$hvz2JN)YQf(l6gi
zW;6`}7QMrw6oSjmr8Hl#kWZh~62X*8Ft;Fa&86aDprflC8mSxEN-7MB_Sm?=G750A
zfQ%6G^G{4pPL{_nP*x?wXsgi<mM(*VOs7VMnlHG1S6E&MQOwQ{z37gsQz(<pA)9fj
zqNfy<WgR}E%lAkHvOTjd_B6NWOY96C)8YkAls~+t7#>q-D7D8HMuP1ks=A#N`mFJ`
z9JidjWfH5_iIrHSuh1a{LVrY1ShLZ}%xn+!O*7>h-R8s^$Kr&Tpx4ma-S#=I(2^k7
zhC-Q<`?u>kQvO9fJ)t==n%HU0>3074(cUNxVM*w<j^g+??2aX7lFH*=JvO>2>FM0B
z$J|HG><82MGN*w?N$Q=Plu`G2$nxDdhWj>}49}o~3DH_E-jO8|$PN*uo3gU7R1Uag
zL<NMY_N>d{QZxl5HQEUCq@k<(fqj@Z)Mvy?RkNTYr%xN7P!>OK^ePGH;9V$Kim(sc
zaEVb8(RX~>o5*$blcTY<wS~8D3mk7N{a7kcQ3X@M2G7)1ZN-VmFvUlk*wJ%G_Ri?5
z@IFD4%HSMW*p?01hvW$y0t?2pbcw<#JjG1bpzf0xAu4Y)bPIgF#R&!$`V~?x&zmDS
zw&HhX!;>KEhh+&Z(PM_4COq7f4WDkzC_RkWs$)<f=@m2+--R^ue_%<@RL_aB=V&T{
z;O;rulbHEhPLC;7^5s5kzK6jDD6D8tI6$!)nfr0L`dz*lK`itdY|rP~+9yP=dC`!O
zRLJl?LUeb-99PRYT#uaW>~$b-6%$6nT>KNrgTuG%QUezHjKy2xC2^vu=#FA=#arg@
zXU&51G~TfKo^SL@X=;8YLwI8E%IP0I?bwB8c5<5Os@RGAG+=a*VvIA<<Ef*ndMj>f
zy2}Z&-4q6MBoOS+Kko&FL!OqA@%#>wxB{bIEk)6LEr0dmotL_9MeEIC-{7D`Bm|G4
zpjK3NxC}R;d>#<|s4F@i9-ed1vgB<CeZz&GQxWzQ9w^GOCQ7YPIEVCY1MHZct&@{e
z>NBkz6+h{B_<&>wjM`~sM5VcRkQtNLH+FDACHUKo5kXV(BGlpc99iOX=Gev&CNODD
z{+(URB!r0@kgV<SF{iq~ZGwf4n;1-c-c|;kfumwF;0xOvjn5?J=y4MB+lAnHowQE1
zV;xgf&BlJ}I=iFkoRaO_=3*`pro25%u#2ksR1QTIpi-?s3g;Bsn-JO5-#n`P)^X8U
zsvH)!)1V5iYJf(!VoL(@W|6UFw1ZS5ahlD=ZHp{&^MZqeoi$Ru;mPLeXITT-Xw&=-
z=PJHmKR-Wzv_Iks98YU7$m8HV^(#kIFdCZ4XY7-a6{U(iGnc(ibI|SvrdNSZWoEy~
zmWLvBY{Wh}&Pgw6EDG|u*cvb&PLAw|c>uuc2VfE3nxhpGN-3Ynlr545cj+w>Bcgw~
zN-iiU;N&rO!@k(cix)c)NrMWvaPe?R$BRmX6BMS58Q0+0qN|HJI#7>k`etO2710L1
z)4#Ua|B;iNax_fX5KZ13>pgn5(Kd9dI{K$BUVsIL*u(GNituu&4pz=jpzL?fZ+C?I
zBG;jtO&H>Lu0m4XlSDIcDaY5?5cHH#&@pAJR!u3+@U?)lP!gKa<tFF_*u+R%84ME}
zfCjXS!Z@x32$Od9eI-ogJbd@5POQ8Uo2BYv#-VH0VsChinwol_#b{v-pB_513JHK?
z%h?T?o`rLqxREKGV$a%s1SIyDAKRrB9MudL*S>NQ?b`-haI*+ltYMD0?Nl<^+f~)T
zjL~<lf3K0NjzCgIfl=LEaN=f>p>`e%7pd1eP&RvQ2g+H^U|8wwBn`2cJIW7l-e>bs
zll-H9HZD~wu;ZSGot&DU1$Y^p@2d*(KG!|RH#I|^un~|3m#T&*SIEMQ^N8-?PAYNZ
z_|9V$Wo1+`AYEfBu#CCr&tUH_>G@r26807uB2LS;Kew?lTOtt>NK|4Nlqv*@i`Le;
z;m=0g5_~sWMqR7+12SHHJ<ui&m&Ban2@!uW$N=t)3#<ak#+=%&L1bng=u~Zw$z~o%
zA`r36*qEL%Jvus?nkC@suV)H5CL|#Ah>k{l|8Q9G(VwXy!h(hE3q=~~W0P2m-bWoU
zMZ-D28yBe@(WAJO^f@ex7AmVq6jq}HBkM7-O7#x$TTIR-k+D#L+PWjpHqMXs8p8`2
zLrLJDaIhG#6vv7Q2XAVD2FN>m*X=|zLpR?o>m#WK3vPnocl!sr#z1f4cI{-9OOY*@
zTGmb9-QD5Lq5I}Ue#$njWhU~xio;j4SX>+_l#dV<Rdw|U6s4S(!)H1NvV<g-#LC+Y
zBzO|NS!ZEqt_cFo-8vFdH1hD^z>B*zoh<+n5kL_O3}rzAIR%oLQjdXYf(O&_49H_E
zVEQC>KP^JGu$^B+ZE3l;hZ#okz=tG>qiwwpy8_dn6wU)<D$qzJR3v<_8<iLy@y!SJ
zW<j^UuC6s!jHoT-`*$9;dCX%;wiS^hg+&qI+$eo?AM_RrkUQ2ZPp^+7K&Q^m&flmJ
zhTwOc2atT<ufDzxPrnyNvEJG*C_RJqvf8K>4HRc_?cPRKA)m3>-@}B0CHVjoI-bU7
zX3)$=AUJ7S(WSu(ZcVnH%uiIjRGlrUUc*b`-tIPWb91AqMTT*%NMTl&(I4cD*_{#^
zHd~3a*pnn_4{NX3!m|w%9#uOM19EyLq?9MJrY+z!s^XtrqR$3@Jycf)YnQ>z*%Sgi
zHD~`kCObbdBN@0qi;TH8TNl7N-w*VNC@UjF1D-HRDTrBwufUM63?=gl<H}g5;5|xO
z%_ActBW1`U?VIFY64f;6rG<s}Z|J;fmq+p28yXr|n3;p;R$<^I;wA1U=-RyT?|eF=
z<1wWqJi|#Fk0Za+ay03*d8tEIrm$dXbKk2KYY2+Y<rw=7Xz)S1zRp(YeaEp&96~8>
zHmu%}f#@%HArylmS%I3f3(4Zhl5_rQL$Usy+S(V4yKkqy-+8lOpOfV$-dh~I0Df!*
zcMxW!E*+WKkW0Cfm^KgSK_Fn)f|R=H<Ge+9GDl=14D~AlQC^$wb#HLo9aUQU5*o7E
z1?csiqCo}Q%&kz>UxgS1_`15@634{s0!s$88;Z(OXJb*ZM1_fsAn65gy`uFUCua7i
z!_%l2R!rNRnxAj5l`tzS%I;cDSj+0+B^t#AGCzyy<3eTEE$a`Qla7LDhcRg5di?05
zhPW#UuF~m<b9{aBN-LG2CkL|7=PR%$iYxxRrA=!rmE$Jx8`nMwBvoc!{q=@W>CWJO
zBpGf#@JV2f9W#@hofhx_OIS0LxA79?VBqC&aZGcAxm)D=(H6#NJN3~JI@e*%1|Yx`
z3{MELP9RVhxD+Xtbnic0nBL*0D{*A9js-e~!Bus+KqK1~;gdYU?f7U0z@~YWL8!sN
z!=Ktm%fvOop=b}Y0{NeTpx@v)WLyjI5)sgcyn{iL=sWL3heEUhbG(71_lZn;j&8$)
z$hci^z!7rUcjjwUi3L~mVdsTyR+WeI_SM_!1>csQqfB=$CLmDRaCr3@=(M-1xXyJj
zc$gcp?~VChbuv(+md%-K`{S~27MktjH+bGBKTxRe;xeJm@VpPBzJQd9ZC;AZU1M&v
zUcXuy8yXr~oyL2rPyzR{Y9iD=y+6(7<W?;^a#!1Z6;;%C#N@5tl<m#>xWZyTky6?6
z=z2hO`OJn$y_d#peQ$3uw_XhwRR?1#WA<2XdS5bR!+Qj=`cMJSPavVV5D^_SLy5Ga
zUl$kUIFpzIjFk`2BUwgCOW)UvC|Jwm;}Gm?Hmyz-%03pW>PP0)e7d1E>0H0l&nN)t
zj9VK#3%}NSyI;zPJ+U=n0KeBUAqc8FKM`-;M}D+AvSZ^WRG*Tc1qGgZ|LR=92pS_Y
zFT@e1iv=-dy^F09;~6fkSx#(Y0;Hf++DQ#JfBw~p5+^%*qsYtzO1|;l_pQr&Z#rQf
z2<+pw@GCImr3yX}9216QWr_Uq!ZF&IVtQK8HL3aG-~%=E(GZ>YINFVAR)umg4y;64
z<A7$F-~|hW@&GI#8F;lJNKze-K&N)>Hh<C8o1S5}Y6;20$nvU$jx?ztG`}8EBsb;F
zoGT2Y0d*L5b}~{(c6qABz6T&()1HbReU}-6*d*&~3P_;*@x`P<k4^9;dhsQ_RRp5_
z+~6Au)bCo&MC|xl0HX<X8sxW{*@oc-(%342iih-3(p2lym~Sv);4DC(lVX>rr=1Ac
ziueX%dxWmJ0^X~vVQq=U9QMVL>6413>w*h3GSbmSWv{}ZBVwMqngX(CIz%^$Qbr*%
zH0%!Qhtcb`teK=XJeBTYMKD8OJGmT|yi?NrCro92=WxA}%ZS<oaG|e|t!_twXRw{t
z?Ql9Xd&`7oW%KAp1_lPYl`{%7q)5>qxtHH0n^;yJSs`%zCGKY@FjfzuJQ%ddf?@>W
zL!fhGG7Tk`w*5vqZ)Z_48yW-#8Y&@|^)3S8dCaQyj-4NH$1-_&QQ0eYE0s`sm;g|c
zYfi%U3TU_#K@vGZ4TloRUBDZ@!x@?^u!wsjV^0TBNX7Q9eE@>rAvV?G)vCQ!3+~oW
z;3DwQYiuw_QUwvBvp_Ki(U~1zDzbD88Im_>@K~VF-jahLPVG6c7(>A<kWoY#clt74
zqw)?3{Q)yn(DGdj#di5>=jC*Y!E%To7F!*PPVL%s31*sxD3CoZu1ui%@FW4$m7A+m
zM22X*+~=mIFpGV(&dv-{!X9eFB>dX8HXmp(RjXGJD|fcfXQ8}Lti?^ZFdQSp!+R{R
zxSgnCH~m`)>Y;-L80%A^sW@Mwlkwps3R<SQF35jM&k*QTn%r$HpAjH(fxNCV!Vdx1
z7@|a^Hj0oT9p$#5tSOff`lk{*S3rp`I7M=EwC8cwwS@y?+B`UhvrIqdS0vxG<9q^U
zNI1jmaYbe*Ke10?cVMRKx&6(LN!%#0c~V=jcndN)-tw&=jOoxa1n9B7TJ{zqy(4Bo
zF%*<Hx=err;IA{^t`rvV<D;V%uozX(33Ue!2cm3FJYJtA9Hn|QWn6gGppfc?Be?kS
z&1+u#T@w5|^H<oZrv8S_^k9W50n*sQn4|VVl?@GUGGcF}vx<qF#{sP3SJ588-Hj=q
zMB5Dw4*-qt8v-K8!I?8{YGXGtKFeiAodtnbKxdtmkdSbWP=Bc!7gON51UNLOFh3s@
zW8L0voC05#L=<x<|I55BX@R>Qz3_Y!!~QzNdkD*p;`GY&k4ms`H|VCCof1KEf&+?s
zej|fA5Ut`;$MPZl3~93YT%SNU^QvJ<(re$n{<^yQeUA6}{G%?!hqc=1C^_Dzv+mB0
z2?Z-x*U!uPjD<Lr>Y)6dMB$cc9A!X&$=f(oLKc18QKuch)b$Z#$ao>eyQfS)$Q*HN
z_eZKm9%C7bT_b}Cg0tyk{OZiSdrzyr0ruiE7|=x6X%24gZ^*>8fd~TT0pito1iJ|D
zui*6asPVt8c0CUR#wlt$pVm1-GwLW^yMa?1v2!i#EZ|CatTt>8K8IESraEasM$7vH
zV<a?fWO2jg%6R>i%vNwEZ!fpJLZnC-1wF}CjFt$<2=ZCcVG7v_bG!3%xGg}K{d|L@
zA}+63LyP?YBkDFO`KrfG{sR+wJk$m|MTLnZ9d+Z|;Yx|L#T}<0;42eCrfI!y|9mEx
zPs_Ahl|=d0MCeF44a%1n7Y?+?(T3hY71jW4vc2Qg5Nk{+M4E8vmQR<vjXthG$LlzB
zk0K75E+Es(3B!HNa4d&<N=|D)smV(*blhenY3WOgi<nynw{1@sLj!y(xwOi}lX4tm
zM^+`)^5m|BP^sl0Qe&22Gv)|NE%Os~fJw^KH|teEcWrXwRJ<}-)FZG9XS#?2g83U0
zBu(1m#;1BcASeAPm%-=Kd6&_`P9vgBF?$v{@Z214JAUeH`!mZuCnjd*Wq7!*8WTtU
z%$Pzjuuz&s`8cP@&H&$_O+gMj&dt@Xs=1}5ryDHWmUGnvK0$lgct8s(6#v_s_xDV0
z%EKRgtKj>2JI-6Gs?MkC>+4qoT0>+``khWZ6(V{qv%?~p>=!;R25dptj{A3hBxTys
z6#a<nUHbX+?VMf2*#0G@(_Yq)v*=(2oCAuY53J`*3vU9)a_{adl<%_9tEsC)jxLSx
z-RtO`1>BN{A11nZ1nR@IV*s5{55M^lmv+J(SN?<1`r6vP@}j9uegd$5yD%(8S(H07
z@Xz#xYjJsmSb5Dv3cQM@4Q;ixOla>J;Dlyka`!!|DzFg7orjZMP)>5Dgx-tD%z#ro
z(a$l=y>=<h-x81J_W1ar{_PW4T@UE0Nx$i5%{g}qx?+%dSWuHeMe`ZaPEfdS3X!>c
z@^1_M4;l`mz_6_VrBg1TxrJ|k0s@{+GQ?7UzF*V9j(yi9cYbr@qN(SE2OF+5?8M;>
zM>I=<z-$wm{lVEe(AldGMuKb6-7;Z1S0=M3XXUFMk0_^4GS-`A2I7#31LcJ@((3ou
zaFDWQX>6oJ_{^;G98=s;_=y35h;=YKMuA(}8)<Z0qK0e&;Tm*AdP7@VTii*Z+Gr=f
z=&6AQ5%|d*hg+oD#L`Mj>_9_je2Q(dj^SgGYd}1VBtqMKp3BDv2M<YxY_-KWF83Nv
z7yV+wn>o6@{`#b29o2YY;8q1XEp8Lw@OGj2*=Qzwp!B9h$i-s;-6SfgLd2*L@G!Ti
zk+jvO;?qO29y`v5_VL?Qb}_s~Qb6Twm1R)!uVgL^66HQ^k#FEFq$$-<m~q?Xy?2<Q
za*LG1X*Kl%Rh$b`gpR-HHEkD}w8}VIw8SSqp{1f~0SEKUXxO7jf6U(jQNqB6i$Ihe
zEL{2eH5CQybnsXXRVaUh@0fv+(UDdUO59)U1R+}~t$&y=!X8Wt5g~_0o|DBb-i;YT
zp(?(K<vLbq3``^#j0P@0DZzRK!C2y>Ty@wTO}<4Op!Q^>g9pWDTgIVaI+}TPOA8KL
zX*yqIEY+FEn$(k|uA^fE4F^@IY&X8)hMDw$_`v3*+j?EUQrd!xG)89tJE;lXrfzM^
z=%calfx-jO+bZzh>SCVasl+HD8m?{f{qBQQ>@TcQX7JkK=v!4|BRgUPQaqv*nR=-z
zc^uX8l~I=o0aDWYnkl5weT*_9pzNFQ=P{vHx0ajB-7&?`=?UdVU`()Xb$H1p8y*9b
z9`bHQxH67)0pp<SBfarRgFx|eW56y3r<^dj6i;>i`+-<qfmLb*dbFq{{@#q7X;JB6
zbLfO)rSrXBMi<X2*jHk6z-Y-~*p~jQJ6ZK#RCs8*-IYLzLDLq4Mw9?u1(V5M>Taa0
zrJSI?Pv7*AC>a<X!6yB?tgu~=-omn=#hu=jUWQiNMSNUCuQE$~>i}GPB}J$#zZ4Bi
zJOymTg(pM5z9pn|@aT3CgeZkzWE>w3@=cq>H;Zp^9r0Uc?;`twTDyJ`FSmGO=C>o$
z)7Ra@z=o%>>?|TcS;87Y(K9nMl6+UTvF=$`FyK3jbkrLq`X<PyfoH@nE(|=XwSL&)
z6rCm%)u_zQPVo+`Tv<y79}LG8%r2zSNtAhk;A+;;w0dAuO-xNu{6Xhl=N^EfXX8m-
zxF?-fbyP{a5G|HS1a-x8sp~OjhAM^xodA;VLI16%5VkXaecFvxkEkNsoa4v{9W9-P
zXc%K-)YjJ2A@{B(R;LcOJ=pZm6s{g6WK)?*Np2so3BB6LA3lr)k@f4*BsS|M={=;K
zs5uXknNl31h@VCyfK^>VWz;ZsLA22o&rc{@YLMS`XXDi38BQu_<Wt(@DAVnf+87$<
z)(u{Ts5)jjvKrX*km&~q2Z+$(T(a=B9z|0(3XUVw%%VEHwY!K|%L0vCk*vt`SaSxn
z&b1HfGD~vOVN?al7HWsm>vL2lJ`Ea82hi%a)fSs+Gi(no7uDcX(1^10PbkeXI*D6q
z3ws2{;x>G1o>(w>Xw~yO3KPZ1IQ{~z(A8j?G@F3(IoH~uR@{6O<FH#iQ1o>E-KYI`
ziSJ}Z`@XOU$8nhX0G2&Su_-jvtqic>sDon^CpE-i)rh!O4R`75nS)IO#fx((HOX!B
zSV00BjeKQ_0}JRnm$6CSJxT{|<`M8xdrO9V2Q&@HIBc^rZ03hy(zN<@f(Os-P=>P}
zm6|;&%|l|FMCsv7GVBhD8kOn6=Gr16xn<)-8=9TgSi0yXGrX(~GQnb{aU;uYJp>U*
z7cn1+xv>}J$f{me6trJ|c;e9pwJLxqo>Tl_aWya2Ch14EFv6dIHL4+*QPNSonG~T@
znG8>V=<eX%U&AcyN?l-&penox>`;l3@QJWf5~X{Mi`yXYZD|hoaCrATwo+LfFNnaw
zGdbW_qqm2Q@V8oBXzYIR`bJAnfJr^zcX$lg8hj-#EF<(uKri5h8bf`%j!~Zspm+*+
z{kgIDJK^X*LccKlP}2p_`AWS0gU&Z~@>^9wbA%jba0yCq&R#^%iISoVCoz_G{!w%4
z_(2XjM9^?@^5wp8>!O!e$;y1@*G{I*xt<!x^7Q<Rmb@Lkp|#@4Izdm<%4F1-!&PoH
zF4M~5Ph5<-T~x3hBodQCFq>=~kyGn%=<SWF)iD)U&HT-escO@3@$HU^>uu6`fk+dw
zLVO7c6uc;s><Tx+&X!Zp=D5QG)bD04qJXTvH)xx1A-l6Y?g-%e1;ZDOV3uP;I^#Lx
zoREZro`sD7@GsUF*!Q8it?1D{Zco`BO-P)S;ZtM8gYKh?v@Z|zwkoaT|6Tp*Z-84F
ze&8i3|H^`J<?v5eSjjus3ERn-d0WY<@N*f6s@OCE+pPbMJs%SjGesRe=?`=iX6AVD
z|2upB-#8A_4@ul#jst`CPmjagvG8w%*MGz6rlce#rD`PoLFq8N%$(-{F#I6E>rW&9
z9rXCZEBfyx^#2Na6f`q7w8Ym3=z0Ql|I7`45Z2?r5Gc?y{@hCcL+A4a{Rq(c%u5HL
zA2kZ3p<YkROx-ZJk7^st)DiX{enI%2e)uu`)0t2nQQOUR<L;89WOhN#S08t#{@urs
z5%Cr?KkL4$2_}44(`h^6{@Rc`Bgk-9bnOzTK3>s@OI2-unwWu5`Kv6ZX$|hd5;w-M
zw-+{EXVRBm$gRCn1^$@%iD|PbHgn$4!d#{yrw#kvCRS5%aUH`N-ilf&1`(Rx(Nc;5
zAMk`T7QUmxd<!t@F$K~z()60H*k1DKqN;mc?hblc4_Z=eWH%yR!;r;~LFMb8kL@GL
z96;rzpFifG(}D;<L3YhRr&WSR#%*Ric~@=yhJp-6lxXHj&shrF+>YN526b%ZU>2)!
zEP@e6Vz7D);L$@RvL};|DX?Lb7@+!rg7g8PAT`fFq15t5`Gk<lwg}XJYP^lJzDdK*
z0^b5ka{DrR-qu1PNeR~iZwl3FcR{qA(`r^K=iDN@bV=gBS(=%O405}G<0~=}Xr>zp
z!tEMfKO0dB%?jE^1SiVFG%Pc01kut*G$x2`C0?B<F_U?6VmEnOHO<ju#%d<sTld;M
zlVpL4GefFoGw{+8z9|!-0V*wwJ4LJ&|9kaguuYb$&~vFR?6HbSDQv@p2w3}1`myd#
zjfe}t%KG8|H4KvehsQhq)#IgX|EY@%%+0Yf(^tHZxBNF30W4;!qoe;Jl7V3&b@@Wx
z68MXU{JyvjxFi1XkpF=00XTPmvW5J_o1`nrzo@DCz_sUWn8(*s7?I1V6)-fFNR2ZH
z%!zIh&GmH6M_Z>9Og%r+xWoW2PPx7F9=$(lK7ABu!Mr=KY-vndJKYtDY~qD#Mb%te
zo``#sKkDO(9shoV09>32#Y=k!;i?a3_n4mqKkymlBr`ZjDU4e-03N5`o;M?%t9587
z(vhdWjzmKe^O(7|4za{RWbnPld$S4vSdZidtjGKT6n^%4ggDv=9CM4ChH)hT%6#zs
ziX>ff6-Z8SOEyuj(^Q^iNU`h>u$}?7GdbDZjt0gRH`?4>$7LxBR&=nKpSNk{YpDl@
zuc%)W%4a^8PMjt2T%%M}(WRcCQZ@9pzF_r$V_&d(hHg0=(DtuhuzKCcT?Xm2bqxG6
zMD?i}K>{m4{5iWFis_(W3*udA4n?}RC36_#OjG`*0dIAM2K^Se6#EJSAkBrEL?{r$
zoCUP2CBO)$>qL?UnchiK?XvW%P+;{aM`sjo02qp~IWjnlSfBHk8}5pjczspxjIIDs
zJtUBm#*@1q^Zp#0Zi5n3d9yl?>@bm^P`z!8!W6_=jw3XEPfy;r=Qn?a>aFmO?xNW1
z!P-%dgM@HI-at2*k&;aQgz9B{H>1z|0o7|GI0%vZI$GYi*z*F_OT&0vNT}c^6ka%4
zDXy`n_8PNIC7SOkCG5s1ov);Sz$NlAmMs`0t=NTsTHkHs<#P8mEyX37X2ZZdef75M
z`E!Iu3v(OvZ9Ci0JE*!IUQ$A`w|AFlFSo1JbQHe=02S5#3o7dONd7mKwitgTDCvsJ
zwyAUozB12Y6tbz)%6xVLV%&8ULzu<sO)T;St@z+edNcE1*zlYVzOU5yhl?x@xvhEa
zKHe>#j#{3x5w(}@ZD6)#f&}v>xVo-KAZv*8Y&!Vf6s~$EgxSO`g(3SM+<J`OFAS^-
z7Og&VfyxqJf|H;s^H)K8Xo-<Hy$2`sb>P9}Pz*|IcR-W^U&}LQHPW06_8Ju9w=Ei1
zS_ef(5`LdRVPKRiX5$S$_uhoFptR47p|_wdqBoJh*5QNT*JK|E_=yMA!kPXG68vR~
zoMhy2`(hNJ%AtELE=eo5qKV<fG#oAzTu`_#uSFuG*=M$N3gUb>nZQ}S+<Cw2#Pe&G
zp9%QOfsdWADB%^~!e)e5OBYmeLh&usD4EWuORcq#3`m-SeA=Dq;oQ`C*xSUH(6(P>
zc{7DM1Jh^GT>&!S&#xCbG@@rASb;c@Up+UXBpWmWJ79Sl)7sUtq*AjDgH+&_7S$Ei
zl%^?j5W_c9=?wnxWbgQ?`6^As8r?3^SfK{BuG)}TQ!rgPmyr>k|8B70Zlm#e9zKMS
zm#wkA+|dOGGfU&yQd10>R<($^OsknX4RX;Oa*+!-c>9epKQfBAGt)_`y$;*=UVD*2
zQnygr=@aZ%KAu02$((g~1utYS75_6v|D7!6$3_2Z7GwHPLv%Y8y(l0&|0z5ILKX+c
z2>CA&qvXFNFd1_gPcOJ4-(SM>?^!zIU&8Y*K<b~gP9j#euDT4ge-YbZ_*dE@|Kb2X
zB<(q2H<c2a#$-Wc>4hTZxk^LzBIa}bUxK04?5&KJoN5nzSM>!2tGQtzPmVa-9^0B9
zQEb)N%RY_v-BG!G&V6R1_v(jHt>#^PB(2~+-7b{jpE}FgEsqb8DkV*x{K!2<m?;z4
z#*cj6qBtxS7Z;Vp>0H{tbOl#Ifhi1fY+L)fR+H|iS%O~+dLEd>`@TL!`lhVMgGtBM
zZFl1-(D#eyIg0%>T<s2dI6!H~gux%&<{}>mc2Eg)2_H=|OAm8M3Y#(Cv_ozV+sMQL
zGo~GBM@s<d=Fkp~YY4XPt%@a0j}T<OH7O0_h(aVUtu(RU16n;+BG`T$DswSHVC~$O
z18&k{ey<N3_xyUat$sZbNFt*Icg0wm?c}u3oh5|t6~nnMkr&`5JdFkl7)wwaL2c~c
z3sO-Z<K14mm%}dc6+nd=%!t>6F1Bw-6_u@SADhL7Z1`7|`mND4Z_$!9&KwO!i;Pm}
z3%6R`vbx}CiGL=hY0U|2IMyy5Pro5FAIjs~+^O6o_U+-A+6n&vp}}yjN5BK_gC5#_
z$<M|WHim7+noU4qN63L4%}V?o^O{pVbSpFZyM@N+VE%-~YZve6&aXd2T9)<~b0+{6
z|G$BBe}kNXf$m4*{wo_B)ju`){~!lutRSi*qo)7C&NlNa?GD}#M@UY=(EKA!=}`0#
zd%@Pl{o)6|gJO{ZKm7$BsLSw^DCn;cSSHz*GrU@@oX*)8e&YH+s|QJ&0qguw54x=1
z+?cN2*$5vSkrf|-9Fn4@t-pr8KKF-iEHFwSBH7Mc4Edwv*b?`!Favy!(*OBM|IYLO
zNiiw;*UxT6`<LgRI9=N_nTD7-+@iGl6gQ0xkUtv5#wX=sX5`N8nUx#sNcq6XgGPjs
zkgTC&b%=Jb`5IY5f=ULqm`bcp`GQt*SiU-B&tY_IfVO&unT3Uwj*cn#&<Q{+E-p1F
zUI$zCZ+2!=1*9||z-c0WInnPi=p{w`<=HD3Tid!A;{(WQt?iuft!z!rZ2<MskM9FO
zJO)rP2GC|s>C#{1(RMYdST@12lxlWnmkM?!MwhFinWsec*%$+8Gb^Pv&PF<jqr7f2
z98a987F$ja?<}ljQsO`gJA^^Gi$M~b5<keQ=rOFAsnBbG)kJO$3{*)=z?`NG)Q%Cp
zYvL4LALozZ#WbN|xasVm`{vIIVY8fd3U9MSNcTLenf>-jm=dh8fD=?n(8^+f?Wx|~
z-*oV;<at-aFhOvd2IqFd07H`<0_JF}xi%On7W95h*X`rQk)`~|mpsc_O!hs7T6-a|
zMrp@1r!{REBr9I}<V^NvkRX<v@i>&M9DRiLy1c7PvRc1^x<^m$BJ;(?TZ}2EbirCC
zS$LDj?+}eXDYaWBg;66vbTFdPgi%od&U*}a{aLU6u4efERbdIBasHE`Ks$260>I=4
z&^XUD*s^Gjo|zUe#Soh*b)iF+w<Y={8lK0knNkk7-%QJ2Xb27*`m}m~e_$Lh{c&}3
z^vlShMM5Q-fw)9Gb6#OeO0(jtQ)3d#RK;u;DCkZB+;cW4yk_qePlMO+;XKC~;d<cr
z`QvHd6#^$W=35&n&K>$Z?RnvH=LtCl^DTv`LuyVQKK94(HoGZ4SY=lh_j<pw)4)!B
z-zE@-xFeXb)t;6J>gIT(plsH2){UL>wO8js<5l52#7#x{g~)h45LZL*r0}rGzJ+%_
z$Gx<b0vY9J%w8{qTHcpr@tb6(%oe~Ne^oO4oyqaV2mf96|3^_n^TU?KZH&wfjU6Kr
z#uOL%ko#}tEDOoB>t=P1t|m1@A@4gsDv~06AR~L5a}xtO0302~hX{N(_LZ;tqP~pr
zdSke4?6x)0dvzI<;0l_6$k13NEj2$sL2<J^HQz6CS_k1F1jD7}js3M34W=fiaz6xc
z?O4!R-U|5SE)<8HbSwz}TV#K_*T8HCCC>QGBB9okx8ihCPKe{joe(^XJ96`ac+1I~
zdlwQ><!=)2LJWDavX2{SY1J(0Yhx#&GU2R%CJ{O0P1naS6>|>Mg=qao;p)5Q^%UbK
z1B87#OGR+U?>(>L2h=WMS*M4xHr8FRku(Fvwc^whhoLF8MPPx)YRx;f*n!LDbF4DD
zSwyPA=Xv*>4jp5`F6{<&?+~7s(L1eh%c;&?3*_2B8>X`whRv@`@CE8adFJ|&`dN<Y
zj%EFCj1Am+EWm4J{8v?6qXON6WJ)8YmnsjCD4$KSWTIxNy13T`8-`7g%+3+p8!pGe
z8p^UWtr6WASBd5>(XD&)cQS0PZ-H^HHrtuz4J>D-W`+D$QxMD$(7vA!a+sR36Er3H
zPEl4MBorWiDL^;lUEtFWy6v*5zQakJ8QcV;&6v{pfL(EQf)?eSXZ60HXJ!jF)iP`I
z8YRxlYwx~^DA1+a3IQt^QVDwRY{`x~G!G5?$_PxTvg;tOR?z(Ti&ScdHS1U5jsu<t
zCwkcmD@e?<*V=txrAbpq#4<O}Sy<|can6SDOQ1y07G{O6rNmyWreaN{45v^{$R|rH
zan<_Z#)m4C)iAA9sh<q$2F_%eK7SdYX0avE%sIkJlsaT^@s8M#hxGn%`~KW0RmzkI
z!Wl#6VG9=OV<FvYi}(;_nu=xg>jfZ=F!-Gw$Jf<7qzqoBH+m58>f1po>kHoYs6a0E
z!PO}^QrL#YL&OaW`xGu}&lx*3mn$*+H85%z$Dh4yxgec|Ulp&Cewf$aGbSD>JJZQ{
z&H+`+4vti%DQ)(y5btZ94}kKr2RsW;wD6P^`Diy$uj$YuIv)<iuM+|cmrfn%k!r_r
zv+L4dok|x&MtHMY+48w(QP_6UuQ4;Ksk~#5SG>MG!&K&kz|FEZg)kB}0gFD_BXxMI
z2z!^D6<|A4M0pGKrwUmXqOR4}SRo9Jg?l8aP@ENfaz0+6{Hih(w~c*uCrbJ7Ly74~
zEAF)|AZc#}0O0?Oguh?-f8!dZXZk_N_$v#>KTc!F@$q?iUvl^1UsD$7pSgPypt*wi
zN7ACad~an32r~bh6yT-B{x3%NpA7Dfv@fgxO73>X|NgfWfTGnI&~N<r|I^t1pn7-Q
zPF(%LhOv52nR8?x01HVFv?yaaCGJmxBgs)!I4B)Cy*97x6PM7Qp{70Qa=y%9jZd^f
z<vV(Qf6``J=vpNnTo*#MD{*uD*>=<#+9=O}Cbo?mx<bddk`}DO1BoOyhIp+qAowc^
zj0R&y7{A)5sn5Js%r(@R`F6axS1HEO`5<%)oL_y-#_B=Q`D=}m-}IDdL0qQT3RHE8
zH871q6C)9RNu*$;Rj0(o;+Hdey0bLxbCcJ9I*=~I*AQ3)xzyXytB`(<9<c71ihsqe
z?__3r1(C7bfUaGMz0!{5Fi=fxA-JVtNY#q+0b@iUV*~qb27|vriwF}nql!}g$MY(@
zrfg0)F`rQR76{5DHW*mr4RUoVa|!D9*FyBnMD6WCu<7P=odY9xVL@hO^x7u~M1C1!
zOO_DZN!64E@xj$^go%li_scr-(=S`?9^8+3115^Zh`-rjDJRTP?50!INYFi@^&Im!
zZ+&HIfmtR$cr5wqqFY3^F`_Iu*&1L575o5HR3w>vDI~x}#GzolxuL9{D)sK7#5y3f
z-|NAfj)S|L7MPoB-jwHiamAO$1;yor@4c4FuRqK~RfKDcQBQy8*u$ZstH63a{jD$O
z@p5gSy?xt#Ac)zB{o}zF-U!YS3(+Ut+DTEhAnYR%mv@J=oi*au5K4Sgy{_+utE?d{
zWJ?nK+4yUlznbn^I8A=J+**&l&0lF2I{F@IhLRDD%?+Pz#6>_%A*~hTs}PnL?L!JC
z-=`{^zL(n=sUY+*7^oe2C;ZX4i4R#A`Qeg~{*uJ`)z#Ve$7V}aYSf<Dr?nrfZyTNg
zqvn7Pj6M8cJ<>@HiXULWfBg9exe4Qs?x*!f-ItuOH`A6U7@%97w?C==RTzB)EC7l1
z0M9GB!35JhH96mf;bB>tWfvVVE?RON{g&S34xKT#`sB4Y8h#0~YLRBtR4<aasqmQ;
z3xqaaP2C(f&Z+`B<j`;oq7WisCSpp;DH~OS19o42k(3DHwa1%NknX-V%kHz#JB7)k
zX9mLH_@!knWe3Z{-o&8EB0LeDYPu$e;%cKn{N3Box`kckgMp{v!18%=;CU{bnh2z$
zP`2bF=QaTKHwtn|LI|wEvsi*>|Mbee+N;p{=T+n;xXxrxwQta~OcS+Fl1ZW9mGaqT
zZq&p>iqqc!aSa@Tu3Y>5CE)4(N}cu(;vB=zrq(azLYdqDU*!VSm$720u`$K!5HqJ=
zD+WuK|Ew5#JGu@10f&kLy#6nP_m6tv*Wm5+mqUFXPQ%`PN_%?yM+J1Jg+NKgSl2Q?
zOFP})4=91itJs+Hs_|!32B;Zn=}8-is)%O901<rl*9eaAU%6h5rTshpld<;q_V^1e
z&Hpiz{J{|Rv%{aR@Ut}@qAP!1D~{s;41{=4jHJy;wCGHU^YIJp=bjQn(RxX=g6G?e
zbUwwrRw{V*%+uz_lQze+Yh{jNng`vpM|%8$k#7dkTK*s-AglC4@m%*`kDpX98Ok%Z
zLVWgIIJT~~_V7gHKVRC1iIs<G(j+QFGV%FpQ_z%Wx6%_7P9#aC<HWixc4sMD@5TD(
zHw~#nGDe{?X>S+<NImjt*@l=Xx$0SwhLd*s;?+47GR4O9m{XFwg*H4LY9MxO3BgLo
zn5VXR@_Ush$cW6okIQda0VQac!oI5jh6<XfIlNcCR%wNa{dzp6;*3ai?kVgVNdum-
zoe&a;o^IM!#SZ(9&`odOP*Mfio_43IyqCEik#9M2X<E+Jxww)s(T7Ie{~(J_z__(o
zmRmMnZZR}f8V5rc>%*K`w`;=(y;FCNxgtW{!ZN4Rb)OUFVsiPCBqqB!TSS&!k3l;;
z3uJuoln71tW2?q>_%Ah9UMDvM$!hnAnO%BpxH4e5>sw^c<)0S7m?AW;EBen4zq!=g
za9VZ}*NSw}!$)Y0<dG+XC98xE?WVBp#eSb;Gu;`rxQ2Kh(eI|Mc=1=ruKX|Ufa)yd
ze>N2VPF}+JLtg$@(`NdorcKGq_`+ZO-#Utzzw;MMDV3_(0xb5$L;v*7-);JD9D(6y
zYIQkyULz%0?lj>D63{X3^-qt$T}7k}NfrY(g{lyjq^cFA7MGH!Wo~Jvrw7Z}@u#n<
zv%ly^)zPt5)78;^{&$Z;MiO+u4{)BeU(WP<kK!L~GyLS5w*EK)xSkODGHHEZuBV_y
z=_!{teI;~zA%W7~SQ9Hui%i5H`q&@ZY3(Ig&+zTG+D=byTe(oDb}VBv;k`##oH?|S
zg*hhcn46l)YdIGX)hMd!%}$7$><9Lb=5x(OvgCv3q@2iA5nD;ZJn0SXGp}>DENIbv
z=2flPypb{yN1kns<kW`0rAh{;AHUWAhWB;QZ2Pl8FZjUSx3#k7mQi5!B+yD`UgB4p
zuEVo=Ofcpg_fx@Kuf}+?qL?vx^zH?x*^ji<px53kzw9zVrrq})=vL-G@F-DpRHiCu
zoGTGzn&vJ4V6&2v<OcpvRf^w-Eq|?_|LfQs(0BOR?@3qG1~i(Hy=8oad#6a8;|Y?+
z^D;D;hcL;@If&(P3DK7HP^^qN@thWYSL^%}gkA<M4#$u7qm7BqQF+@{DO$^&mqV)&
zEu{MqC;4;|J5yS?G(NYU6$(}5F`UscwBK~#wRO^3Uxz=oRv5lhs&?BkP>&D4TeFoI
z2%hNaW^3w!hzJd|H05q!s>W)XvLZ*rpkClc3L&o!>K3B6$V;(nQm(bDTG2MR%SbI@
zuZ?G^uNWd`JvTb`WndV~t;<LqdyVY<8FF7nzB~U_!6F$HzG_XfTl|(ebLN~`f%OPn
zMpzKKKR06d+e%QzEBOMd@6k2DU0+5vk4*D7>oqaLLHcmG9z*5rDH^NX82UaZ6Yx~`
z!gDcWKyCnewU2L=6Sm@k)UBDReMQKG<4dJ5rG5`vDle^{M)OT&92gm7+oAEgkLH>s
zx>4z*DS0Q^zAoDhr~ICCc*vG}ZZx2NgcXvyyr?vJD$mB9NZxKaDA0@EqRlel^-@DQ
z@VaQ`^oj8CQR5EnxY@$p5}eSu*Rh2c^phQWUm#id*a_Z2&axj^arAeM#NK^3iO)3b
zXl31yZZQeqRv*WSm8FPg`q#7d9fO}Gx55uVpZsixsc~LC{~XLM^FKGv0|H{v{|tzK
zW5V+Diu{$+{r`ds_(y-4m6@0kaNYlVWu*VlF!C~RLI2rj#!AxA_@jMmUnk1+pKC9_
zt0vL_!i<=bw3MQggSn0ApF&);itG+T#-jhGa$_{oHFL7IQZjaPsyT-^zpkpWzi@qD
zTSG2KMpHa2UZ*@LO(iilJViY~Td6=NSA7X+DpyU=R@O{}7EOU$0{_SmT_R{KUlfWs
ze+g~BJLAhc{+)vSS7&^g3;k<*#TfsEzZ=ku{ZSbMRPq4o;ee*#l&<`>MJ&r!P@XWI
ztdbK%K{f1Rm^tegXSnylmZFjSnB&ink;i$p%gb+xpE=yeE;BYqjP7H<S&)btdf6;2
z@9RBTNy@3%nPj&Yb;8K>FNM`rMqt$)wBO_;o|1qIZXT7Paa+6&o*1JjJoS(l;<<uv
z6HmC#xkVqSQ|LI>`aUk8&e2~U5@`^y83M=1`l+KDD?RY(t$r~2)zqAK*Me#Iq$Qom
z7TqTby%2IZfGiIqG+3=QMMIyIPMZOkFpYqY^(Q}q8)PMY$&?u1*98Lno<~&@2*T!q
zd)>KF7Xp&jEn}Bmm0D|Kj9<mF&XaFFY~B>!l(g`}PFfSru!L|%&zB0>$J~vO5#+kW
znCJ_fZ4U0NXidi(jrjLUa@|uqh<Y9&B!=@I*XB%}<Z&7!GFieuThpg=xFSIL6j$x7
zWExOr1-{o)Knv8qcqOCprL_~#l@xTM)){x&<;Wu}&juf*a7{&>Yg;DR4sp4*sIOu5
z)&DjdLn997G*2^|gDN@9U_0kF(m_UY+WMuRNJeyj;GB+|ovj@zrx}R4pa-i;@ZGd#
zb*qZ4eV~FDU@gUnxYTrZkMwK~4f6Tvhd>jGQ1`_!z#((~r$hdY>z$tQ2etdJ8H&(9
zz1|sVYls->`{9dT*t!2!?#=jtS-=@!*6)5X{NG*i#qfWbJN&Ln@LvQ>8GoulN6X6w
zzDyy8D(Ji?(HPV44G&}3-^nZt4^Q9K(vfMX>LqklQ$4wALWp3ScrFAIAvk#2oHp(b
z1x$CbVjX(nXYBWuv%5QBJ4O*ziE7Dg>=~8%x$lu+*O&&(5#n`btuTgYgO&-1n)Ox5
z0tW<(Sbv_0bOAtD`|@?5z{q_+Vg%sXh|p153WjJ$QlF2Cy(?uIp<Be!j*W3ge@q%2
zfaFkqHUEssL!ZqRw9_yt4v;Xl@6kro5AnDY#v>7#;m3Q>CP%=X9VzwWQteo{wfaiB
zq%9Y2lG9^YJ95B%%Ne~8t(yc8K0pmZY~ybtp|xqKq)!wKC?+Pv`LbwwpaAK2+~6by
zF=FnlWm22CfOi5{J-1gu@6VN}`$ofmynwCejcDtHL+cfV)yFv;NBPw+G;AT{+eX6g
zNfkpZ=ojC@cp`!*4AI?|siQ-vVV~r&Z~%W5dul_$yk;vpede_w#C)C?^FE%ds)y@K
z@%@oplqiEzIRfl+?UzlC-z#4H-@jIXXbr89xrvFnp|h2f?hlsFUqn`z06T?=!vKz*
zEx=3+FyGT<D^$pSnSinK5;K$jSrKBAY^B7g$0WtYT3{KBC`12<v6Q$rCL(~}s0eud
znG*m0nf}Hl#`42uB>%d}6)yKrUFQF@g4HOBO}-Q02qFLT82>3>0}#Xn++@Z!rcP$M
zKML;NsIL;;d<Y>G$BHnXwjWidSRk)Jbck@xP=W;1Yo?5dJ@s4{F?(ED&E-4M?DT1G
z44;#2>zgHad5Tbv&Ao9iL+Lf61=AHf`)ZidJwC2bPBZNWHQJ+i)zSnF+`w)UMXW5w
zNa9q*%R^{kyNx)4Z2EC->ACowVk8hBz^s!MM`0H66<zL?#o`{4l749bE2bKQAadt3
zmQ-X`OhF}gIF{wE5!e7~zgK`>HHqbwcmr)aXO0+J^Vlnit#PIlk8Yi`L6i6p6OJS3
z+P(4J5ss4uj?=V#RJ?wnt0c%%A|i_O{ab@p{&rSO(C$<l-Ubddsaqv<v?^AgsJ&4u
z9Z4jbgXRP%U&FvdeY>eRtN1r+Jd#`wdne@LKH~~v8x_~9Wu)a}KNf$f+Q!q!0R{~N
zXpa49Jipf-FDb(x7c}55wskP~__;{>Lwf69I~qTAZFT=8U;EW&@#RYxQ54duQ@|?M
zR)pAB;m?CWz9o9+@Sf#HucG=$;}G_};`K78C!K>?MOe@+)5Gqg>CTROU#hsLH&6Gf
z>^U3GC@8pj$W%O2mby(t48|&dA930@Od;A;XP^`kw8TKOLZ&#tGHE~?hR_>#SC<QE
zkzD>OR6@%Fd8h0J+`YooV~3TY#>a4=#u!A08hKvi#1Naal6>;c?c_c*m*qfxU1gw+
z4}RQX-^v+{D@L%(DmnaSTm00uUr$Nx*!4@-iP&aIX?8;~Hap?kpRmX201IYfe3?|j
z-6HBhCF1J8X$00$35g`Rsa&=v*pVPRrf^iYP?@j(Bu(kpm-vZ870exzH1#u?K$B$;
zN8gqTkqd=<8qo=Z#1}TJ$>>#tr+I;|zMZKWl{Y<`z`7Z3{tbqbZetgrI;R}_GL1+i
zI@R_|t2Q;mDX&-kgS%+hJST6Q-A0n-wkzRJ8pZXz>KYdK?D3Y*(5{w}Z}!E`YDUzp
z`_EjqA5Ik?s?OGJ6rOJO#_<FdH?EQjI+(=SaNN32=_g3i8gbkQdeV{HGkf;g(!K7I
zWMoznb?WdC#6aPM;SoE@?^SC)Hu#^WJ*m!6%$7x{z^{>@L;8IG5d_Wf{TyGi=J8)H
zY1iMHsVD%O`Q>iY{ns?ZI!f9y5MUZ(hZSU=7PP{O%q9^)#rKudlkn!*iPaH`48qzI
z<+C8)J++12jr%tab1|N_IM$-UuGDqbt@cknhR6>-wf0~dH+QBL!oT(Z5G%sNpd(JE
z`zD3%+>9$-Q&E*r*kzS5TI>uu+cX?&suor-bH5-L-tRjhe9qM#YsH(vY!^-7M1(60
zL$J-Hw#uVMMpZE?9Xd({w~#nVWOwI|oC_Lefdu&mYf4kD+@z|d>hKL$s%g&pR9wtY
zOb*)=oUIi~jTkKHk%~4$MHULE5osR41fJ27k?e6RlaMQ;d0U%<%6zA#_uskm4oB<e
zASIrY1JIf^ZhtIx35?RsJp&%kugadk(~Hvq-r-{RFSm0v)3*c2<cce(3z-=IJ4LrJ
zpmDKtq%|^j(l@tqq;a#hI@Z*5O=UyyS=H_Atf-10a<n%r>~~IK+GRUt5&wMLb|pvn
z^}t~B_13IzJ0WCcc)BKZk2NF+4<tRIi3nayr3bC;PMeEx_dC!JZIK!wpC)?Q&gKmk
z=XkZSnQ^{tcj~qZVm1$dg!9;?*D`q?FhDfJjp!rL?Aw@y|B%$nbL|x2?)~lNl=ig0
z{A>5@tLK%EiB0u(yGqn3t26{S`{1qhZ;_Cn9KA5zrg`_=JJnL<S<-vu=p~ho!zK<{
zQ`Pa3(Z(K{%#+MV3)^h+?i>RuW)#3%&30(Wxh9Z3yY+Zn(N^rywP@<>Q|uBMSt3QK
zfQ?}Vt&05TSU}wKCf;BHS+P*fOYymMi?d*{<W5-Q2cBxrzsdsZ8XVompX9?a-o1!g
z;7h1Z^$N9W_Qy63%_}cNX@@YFJ3UN*9b?;;?UCJ34>E0#etR<mzS+M{ynQ1}W6Sv7
z#fb%7C#}Vk6Ft4Hjg1o{<MukDjP^7#Qsp36cXjXM+@enLBhZYk<ai6onVl&J&9Ym;
zc{iOJU#x#6mva{E(E_!hFPYqDW6h#KNCA;K0qyC98l2?dN`5M#%9>ER_TGTkqK|^9
zwRHAUU#pr??WwRxiBF;u$&rf)Pnny0h)}D_KQ(?Pr&T1oww`{c>v|HEz`fS~*aAw+
zMxU<jpqX6@%WE`JHI~q2rB^|MHU|Pck4G>yst=+Z8bp?BARlu0QPA~`bbuXP%vx7*
z^b=*0=SNB{OBH+cC-9kY;7s?$wWB*_-Tnf0y3ugMO_X*)t@Yj7JT}QmP@bC<Ls!WE
zhqSkhsw-Q%hJ(8VcL@^QJwR}GcXxMphv4pR!6mp`f)m_>27(6(66`yW?%NHwpT7O}
z#~A0=VGLM%*Q!-()||7b3eCCIKW{bo*jCKcvA;8&JHt#zj*MevK`!C1;Vxmyj2AMu
zkF$WINPE*OaC3#Lj|)Aqj30_bfhK5%uDG3Bb{lChv@V%n@0BovPKvL(MAQ4e{GMvY
zd3fO`s=78Pryavy-oj5q)%yzg&AnXr{6Ltc9d1TKQ*8(0kA4)yeo6*Vs2c!<7^rjY
z97{|_kEq2EpLysC$3%n6d;f@G2qYpHbOGj$VgydsROV$m2kUDNW6f8?gmy`cthu3A
zM>ePxqNd8ARxr*l-QW|~thVT2lLYxb7Ny#R=@-JUmk*;+=Mbq#_w^IYmBvWVbucnc
zuW1!`Zl_I_sxbag@!+-AqYmQNMz8`;`n;uWa)T1E-!f!8QfH5)HU9lBk%)t!C^`5@
zQX8Fdsq<b0{0RArt6Al1h?u(Fonnl8jh?M2ZrB?F4~a!3XlWnRy3jYq+??MC?QeCU
zC6hdh=Jgv~U$PY_(d4Kuuh?pI@%<#4zBa<%!ICc2XccM_inJTAus=MMF^HrYH9^q`
z(l2Ri(fW*NqW_ICr0cpZf?ahEN?K&`9#VF-Y%xNDDEO-cofdy@g({z6Xu>Un0;sUU
zL1HR_Qy4+L=QX2JUcj_UcJxIIBptb`$Cf<(s}pL2O*-<m2!$KERbl?a9Ky6@u9|XG
zr*umY#*HM~PXSkV`ssv2w>vWn2dm`})g+_y1en?<r)=c$ez+udis3jUVW|6@)+qN&
zHwLcq17YSun#V(d-Q1XWVOAw~l1)1=ET-X$=e?Zg+cRsXj$th6@FvM7Xb5J|E?Ci~
zP=y1$-G1_lEbyN+NH*?S5Q92~$Lg6wDU2ysj31_wPYb;4y$<&(DIztiSfZ{F*nus-
zYzHxBLBn^!Baq|<=B|TYl{k)L6ZcB#Bo6+{rk*HUtvLCWLz6;D!G_S_iVFT`o=Z&z
zjh5-_cUtkKpG2k9dh_B;*z~zOB)hn;p)uE8>H<1J1yAk0-l-fAn}G=V@r=-l50+Dz
zoiaeQMN9btzoJfru?xvGGDVa=6H-yC2zw<g9E_Y=k@)kYVI!eq11Mg`DEm-<pS*`>
z+@3f6&*o_{I^g%@A9t|GIt99L!P1aUImE|ZamglqIi}5dl~mnIX64EvrN}uJIQLhH
zH<<7%$s%UWo$szZ>zj`@4&pWxJ-TVQ5_=)e!s_DD#rIfB#iUhb)yopEH)i@>X5==`
zC)eUOl!h;j>YN7cd@skfr_FlDpohk5jp|CyP%P@DRLxGR(_Vauo8J%o4lmx>!d+@O
zao}Kie*e%7NUn-*Bm;l(Vi+JH`lIw)R)^yS96bN|`4>G=rpF5o0CWaSUIl>8*4}|T
zaqWnE;11Z#yoEwULU1p?_9-}vjC_o#po5#gx1#hLcM**fKWaJh(!SFv8Mqdn*==cl
z<1IPITy4N(Z(htsS^PyE;=4l0U~bc_iuPt~Ux%|16`YQ&7W+uF9oO_XCeH9z<6m=e
zPpfKQo+UX63DvOHO_;EFgZK~XZG90*x~xMBy9{|(yvThP`#xu)NsrK7VAt09yuKh(
zUV6(IuPpW&sPiX6np84=jX~q|6~O$5CVRr3spfSJz4pGvK|}+XO~?-b^lS>uW)o3h
zT~);&7dKSi<8lS!lxkj@2@{{kWWxPe90?0DdH#1#^m#$e33$H$yP$rYR0kM)YHCHG
z4PZlC*#j^z?Z<|5hTIAO_d@itx(_2mm?Y&*$cIuO&rBY~5TRa}QZi{(uyP|-lGip!
ztARc4*uaMh5EGd^i9XFZYHvAuv$1MLBmARpHSNwzH}R)9RCk)*Xye5|8bMNLLe?mc
zSgQZU)X{RDkH#v<O7z&R7A@Ne{GDv<nY;E!4*Au?*BkGefsxF-6$v-Qki1dw14Zei
zVv)@~J&UT+t_XB}PyLkW#t(R-1IbxkSVTrku1g0Nm%ehe-L@Tp1KbC`)==-PP7%Wb
zTi!?OmW{xpWUPS?9+B)jps}ZE-WRV_m5?O>)XFF;Lr%ucsGTQ#%yUr|dC;-xLO)vz
z=g(I_<4S0Jm#B*5`O%j+lZuTQ0=Lr-eJ;_%6O*s?)!j06L%X$Dbs#?KncE~$&udfL
z%(>NPV9qjW8-9?3y*gPaSyMBMV8TzTaKx@R{xn84c13-4SvUUCVuIbBbY9I_jftDF
zboE1P9l<AAjI57&YoeSSjU9H`%K=6Tf%t9y(_TXyzWo+PiVX0$a;apd5Xydbs<J?w
zrP}^caA~~XwJFdQMiV-z=e7$Wyu2P`B3nCSvjk8u8$T(SpAWnh1H{CWg84ZZ^lXy*
zpFmMlYbyd%dje|<0{}G2`kR9FH=1gkwk&|AT4Ofb<n(f|gn(^MrDzU4bPxAS3@KxT
z66Wm@>F$)DZ-Dq=)3(>^Mea{|CtPm_mQ>@10t{)-q2l}Ms)`kTB(n{{f=J}c%f?T{
zc3I}+Ph{SG^lK6{siYjOvR0^ykJa?tU}Dr<1Mf2Jt~Eh{TY3{2+(YZTQV3_PejH{s
zu)Q+nQx)B!t^@a0U)Kdo7=(5nL-UPtw1-~)UF~^$s|Z)hk!w{DzAWGQ5ceX5Zu>y&
zJn!}?VvQ3J7zLe&UFJ$)OG8gUhPyf+j^4Gm+=OF1PD}T$HC@7m!l`!E5OldqeCNA(
zr$-h!RR7EV3&6wl0X*_Q65De?<ez|uERT;8=Ff<Tg#5ooL`F!eiRl}OJIEe}viuc_
znEG@!ITqC{*#AaE{>eIiv9X_mp|JmU9pnVRDRKXbM)q8Zy9)fZ^S^0i&(k68^Uw!$
zB>>b_dje@uegZi|TSr5C2Lfq5GedpA{O4cP{(@*p@duP=EKU36c|JP5HWsU7&Id10
zs&dPzy!-)?2I6@K=QIql`<9lV1@P7;Ix4_D^0Xb9davxK*=uE@A6gbktL(<)kh-I}
z)lEJJ@BvK5rEvL3ak3Pql7^+;N~!K3o+zQwohxKavS{mtZ%4a)eM{C=>E#p0rJ=*B
zab}M_XY10jR}Ou~r7AEHj!EB>f2U#HiWW&O4lxDlu$-l6&8knPHkJKa<-<8{*PE*J
zs+A5AOCs-+(xotFf~443tyJ^w>yrg^w>M0m4YLobVC@bH(>@q`juNS$)2HCEdx8eY
zDGdfBcJ}zbb$zQ&vfaZ2GN^od;re;aru~{bk3sb-;zx=fovOzOaq2rO8AwtyDV!c4
z4`(}{!^t%kApFmsY=P&GUHDI@kes2twWFQBA%V2B6<|K9jIO=Cv$dT80l%H0!9(js
z*TSCQ5$9o}efq1vK(`FJ0V}|P#5JU?dpQMM&P#rhS`(5s6#~>CYL3kg4$B-9(x1;m
zZyTR`|79(g$JV{%MQFO9^_R31)wX*%gtT{Sz*+cddfb;#b#7BQKb0Y%+~~ALK~imr
z;x%mY9PX8A-I^vaO*q~h2wsTsS4`&(e{0b~i9xu{vu3~ov|*A}>ER}*m={5A<5M*o
z4u2R+tcr=P8kJTgL<d=oPk)YIJ(iH(uZHMpe-ArYNwWWP&pP>PzZ_53b{g4)nn6VY
zm2QMM7+W_CZV=co6<SGUPVp3Wj0>)S);DL6xqk^I^OJ11nh50DTo4SRtF8${{l|kg
zvLSm#iUTbBMDs+b8+ZLwBomL_RC}Xn=>r{Ce}a5RqVicBD_*@|q(0I0bXh*qwb;m;
zz|~LZ^X)0crLoMySV<V{A;aT!C`TCH--avtta8*1*6GcKZ?3J{>UTS%bl%&*N@abp
z$JKyTD)IPico-VTb275#1k&Z{M6D$Qpt2?r@qVT@PSEUH9;Ei6y^@F%?YH`7fKpN3
zZCkbYUP61wK!p@)Ca$;-7i|Gtea<ndtksqbKaMRUe=^RNgDXtiZOV#IM{QlnLFARK
z*d6o1jO%xi<LDdZS!gBeZ~*F~gn@Z;_ZU)3#^4uU0O2(C<PdwFRk5D$WNmtOT6%4|
zUs3WD^akib__;v-BxiXLfm|*D<RIx)!&4`E>K!up_~yyc=3+*odU8@FmLbf_)PRf*
z0r?$IzfJ(~mmZGHKQjDt0Oil~*?wV@e?;?d!OZd?EVH(I9>auy7?$K2H~}uA(3@k{
z>$F^$<NYk(DWV?=Ckc&$tW17#giFJK(oh7AIH3A{t1ShSD(M|A)4NkluNCiD(|d5U
zt9%B?N(5j9Hn{C{-_N%@VkR<7lM-R7g$2;w7k)|R3I1Yn@3gAoprJ{!1Tx$Az<{n0
zGt-Z4=3u_)8wsKU)1WT%|EzAm8Yg*?MMoIN$5YsFl4ihHr0&3M%J=<ef)KL(5$_}|
z1H@fQ4_?>Z#}xQ46z^cGJirT7;A=~OON#qfBX{iln|XE%{ZN(azvA>YZ4geQ%EUK;
z%YK`9$u6qG2*iz(Vgpr1=7<#$Zrh=sK1Px>=(JTM!^BFx{4IzdOLOi}!)#MteXfib
zaiTe9hW<4pL5v_&E?fO50jd7INYEkgce)4`@6p|`$t{5mBqE4J>}I7=kP*B$J?7Qw
z-_TOnh8K|T-CDG;9an{_;@QAUrIWkP(ZlUj&sv6YZP!KHoA&Jp8iy+8VZy8wTkLva
zn#W8GoxVF6qIV|rwqZnhxWz>V-_47qyR_hn+m*%XXUwUOl^G$ZnC@8`p=rr@8Ox5Y
zlVQG&>-rWl^RW`gjI~StYa<$NVm~K9X6C%d>EgA$*|DHB;g*-+0ou~jzxv}*slv!m
z?D`cD$}4{x%DDd(%8ZP(BD#8}fHUY3<MxdDt;AZcgmi6K<S5ddMQL`T%TWxVfb@^4
zYhaupC2Ud*yIdKeBD-7-ytZT8ZrQd<dsWvJ?HZaE{1Ij+5+7{BMjoZ1#?(C;H94Lr
zJsz|F(`K%c;)<_8B;SC)Ra100Y5p#CN#vU-mR3GlAlaZZG|uKbWId*Z1VKFEwCjEL
zNTzDG51r>zebRhdxf6sb2c|dp%&EI<sgVIYtcM=L&g=~;#cE8zW<uLA-tB5&Luo1a
zmwALc$AXwb+E-~W7|q@TUFdGrqu}0rM4KI2-L+tMC<!_j?QAi0j&i*tvNZR-`L>X>
zH?aMvWiCgol{^MK8ObLn%kz%@Yrt>(=YFH_VCrP*;7TB1s%vbgYe}z7&qAweXs`Xd
zl37xE18{OQbO3+t6{8YM4=|Ds=W&2Z_y#>CWFnm)Dxn`U7jxhR`r+R5lN7LNL7N3a
z-6y;b*P{_)Rf}3PZRt_#)r)}Kxhu&8<Q3?O0<yxuxeO0jh)TYRIuz{8waGP|)yxc>
z+dMiP`1S}w`LL6iV?#~Zecsj*&<!=+*RVH?V{JB{xb4y+KxWm>;#k9I`d+<8Z7a}_
z4^6U378CmrjVv@18_zP^B+9(VpxF=%ZfZ!e*l@{^%IU71d!`?L=%D@eW{|U=CDw$L
z%|uZRDLZA@=tgl>d!UEE$7n(K{Bml}o(rADJzU6$`aP+A%=o%7uXuk?(&@Zrd2WS9
zpdMZj7vJJF8~X=O1IVxO<@Rvjz#Tp@Wa#5xRe1wkNyj`9az5HSPnGey%z+f_`8iQ2
zeb8kNj9l2BO^??hR8bD8W2~31l$V7xty~PkqejE-Ota|wlB27IK5rNFfxKNz)KEjx
zXeO?36AvPDr4aibxB*Tr<?TXMEx{#Ke9C}{AGQ2G7zOoWa!R6&9H)BtQ9q0j@1{2B
z`1q|S$bz)Vd$Z$8-+A2gPYodQbW-lQJY<Isoi{d$FGXF|yzvgzn70qTo6?c%e4@Tb
zEL4MZd*1;+Bx;ekOuczPq?A9|Y0v3;|C@r!^4pMFN&AO+%00i$Q?|6=Cm0QgiZvo7
zwxk<5>m{rAV~!yaM#_;Yx^JT#XbdXkiU&C{b6z=Y_dL=5B=4arB`x&*dfm`J?dy*p
zI>aQ>ka7XFdH4r2MCdNmmq7*NEl#ChTi<eAUif7%bKvpiuU;8<uh(?Oz&N$%grUR}
z3nXm3Nhj-_LBU30wXwAOrbysv-`F0ghMG=Ck{1aD>t4ivy~f@H-)Q);L0l-4)#Xbu
z{h9=YF9Cg6X?9>Yuss;AsC|)3EidlN(>GGbaD&xQb0RpWf<e%nU9hp{`IxXpL>)+?
zc#wg19}^(MQPAc6W`MtfH!<dj4DJd!rxDIu*jubho{PyFjWBxPOBr}Kz`DIbj7r;b
zD%@6l-S8?fXTn<oo`2Y>GlG7Q>>Im{SCq!vDSUP%lTmqzw{q$H8V)QS%~am3vMwOb
zIH&pTkU}8d+KdBNcu^4hD#EpsZ!gPIoY5BFhZv>OO3b8$Ev=%2Q;RC1HANm?0Fg+;
zkvC@=*KM5b??7Dp#g~A#naY}1RO8xx)RoEb>T=kDrwTi9G&Yf=MUrZwI}}@n2<`&6
z!KNOdBpX;(EljtX5@F*F^x_|)<gccNnu5?Q3Zu=dnk{cXNPZ*T=OdpaTBlQfoJ(Gq
z%4m+<rXBRHjrVf3$!qM$nZLt(_1=I!4M;IB>|WB3_V`Op$BtnonQkLJQn)HBG?qaP
z4{&XM8EwNfhjjY=I)>I5AJm<JqTN#TSX#5&wW<hpSysnm^?)37@bbTh)IR5CP(M%q
zyn6NycDniw1d`SUh8BQpHlU?%Z)2hBs?G4oMQV#XlJ?`l_@tfXE!grSw|<5bvP*sm
zvfm>0o6Kx!&`G>98R#~G#oZBayk2dc2O+jKUZ(ru>FrWA(>BeN{)U`*=4g#%byseu
zy`F^QSZHqC1#lQ!!0IWRj|dkffr4kV2DQ-OMeb#}63=!5uv_{ijZ5KBBjXuQ-CJ>~
z=H@Y-aT~?frR4*>*VJ7CX#jOe$z@*(BV=tVo?lOwh*p{;PoDsasA_BliYnQFORXvg
zo4;GfVuqz`x>xUqAInKXye6B{O+AH(C5jmFXC}x!=Cc&0{M}V^(qS`uRK*8r@(nPV
zJt=P^K2lwtOqfk=9CY$zZ!VlS<N{ja`;iBkcVuVn3cLDSO{z3Avx7~MFZ&XeSm~$P
z5aw+@5)PqCq=xPiQ@QJ{S_P2zO`u+(1f8b}b+jag36Sc|#5Z`Zn6udTWt>W(Xr|{+
z<xUL9^Ybm&yUoZ}q58%n^hR2vx$YZ>9XLsMaDlVDL{;TLbT?!^nG0X{bwZiVry>j1
ziV@l-M7R~Jo^NJ>>tTxIr3qmmzfI%3eskZg`fF0FfWN|vY(PFz0{e5}_*|p<uc)>x
zkK_Z*DC<Y6t+w{tz|DmAm|>;eX2IeEQa(zFl5A_@g*0(dv?Rfnw`VPB*^cX7UAANP
z2pwsLr6N}KSEjpW=RpGpp0dO#T55S;6?V@}@H<;5E*BD;(d>PhiTvrHgU5X``_^0~
zguX<3%>}ZAGu_B%UwttIZ|YleBtbbhKJ$a$h;|!VGWjYeTVv~{X_@5~*>bWqF)%i0
zjsU#K{09ET`Bh;Cjt-b)2)d};IX42#_uX$zD!IBF38r_g4XfN}orLw_H{y$~uf8?E
zkXq9DfuLevFnl)q0|U2{w65w#@Kvc0@5Lio>%&{Z*>8Yd@>Hq%{6_Fk@ClYj#P})B
zLi8{333B4P#$L>RfZBun4?Q>#bU~K{2y#$;GilIAw8Fx~8I8KfT!3gY=l6h51OPsN
z+$5f>ZJD0ug6GhjBmk^<@YJHCeWJb1Na%Xd-hNyu53Xl?Qzu2uF}mQSCjA}=l=GF^
zJ3j*GS4k42^U)%)eaoPqJKDtwM-G_;DUvkWFWjwHyjFl;sK59QgsMJbuI0)(Ub60t
zilWnkB}`-ZB@WY-sTcPI5g88?Vu83yn;B|*E4tID5Ry4U#V=5PPTrB(44H6CAInbf
z8?>E!Aj-Hnsjn%hwv=(Ac@TdMB1imMi6In9dkzs2mTO>Ji&_Lt-GY7?{-Te0;n9X!
zOJtGOX2~}{ztLOu&|;S8B0QdoA*dcWjx#=s5Y^uC?tU_g&WqSB^IYDM+90Mier%?u
z$y`?4F;?TBdY14+OPZtZ#j6*y<@|45E(k3#GkV(H6d17G!{>JG2E}Tn$CR_>Tn!2>
zNncmxL~6^1SWjb~2A;nAkQ|{?I$|PFCgSjND~G-|#5N!C%WXLigr_oxnFm~x8ymgn
zm{!G3JpCZ7=18Yd5O~vQibpD@hxT=*!)+kC<La=O(nPKOTBnp#z>gaaOt1WAiFa#h
z3?Vj#n@CFsQ`J4gx^%2n6+*yom3^$d7UZIYaO)ZUb1LJ)*ZZO5l;XOiti33W1Qd*S
z&EQ!W6~DPmv`U&L8Aq${qEU)zRmAQFz``}R&<^A??3cU9pPej3iS4~7u~p~x7_Ms7
za-BH^VQg%fKq~rz*R@A??#Zt_S)+Q&Rc*+55q9Y|b0iPgXEGFr!b9t=snM*1s|(rQ
z!}n7TuSFxwuEz#^8kynx92+D@i{j@SNwp%cKnuslLvb6)OJ>DouI`0habM*fA}g#J
z>Z07g|Nf{n<r?N^(F9O;G$8&QzR$NH&p!`e0PyAjK-mlp0I=IHKuG%+w|OK^_Mx5g
zDeF@a9UQ_>y^nN0{;}EWufQ>o1Xd*G;mK>zn&JHdj;tD>KtP#DNm=G=mfU9VkGz$)
zmtF0|VfJbYl|Esn6;n5YD*HLl`1%BQgBh?8LiSUpQ!}P+GAmDD#>6vfq;NNgrh0vn
zFg8G+;JM{Cuk$MhQA3!v6LLRpg3w>gi#_|~(?TJzRIKAn57dftXqK8<48ni{n^HGY
zL5u`7LF(lXS~I}Kk-e%LKZG5WNx9?NW`ZKi{zVq%Ycx!_kbw}d2e>sDB2=PV^HeaC
zZ22BB{mX?sIs}`&>TwbMH|xrjKd>MVvpyJkoz`1Q(qczKFQ)(K#p(lo#ZgnClCDYV
zlD~^MVu}G`DIu*giu%c}^1N4ITzY!{NBf-S$X5xZL7vq?#kV$-uq~KSGfV}#UMlYy
zNb@v{qh1se(xI#6tSAS{>{}UNd{JIYiy7PVtxdUbre=w(pUVYa7w!2O6KO7{x*x{{
zj-PzP+fus68*>B0e62mzv?71Bau4^znXdHl4lBV;4;&6S$-+SY?#=&`<ogRxePZAi
z{%7so|C>yWz6rD!dT>k>tojzoUOu5rH&sKPK^!U0PR^3whtHHQt}7s?yduXpupp%%
zC+BxS2kE<nk{cjOV*sB&((rS<^5Itbq(dSqrNk>CDxfVVD61$auRy>=N2ksH*dPPA
zbo|bbRr#4u8w7_4tPk~40VM>R%~O4@xB{GvJRySW=Aw>JUc{qzKr(Kz@*>^-$0A!v
zWV!ps_gYTww9ip9QmZX#2@M`U)(vt88JIF~d*F=98%5dKMRnx!nfV<e#=FKW8ga*5
z{SrY-Uad-qFx>dQG%gG)!3fI5+?7yr@4PZ{=d-*_V8Iw~cNUf%j2@!w0{eOOQ9QxX
zmzemYU_u`1puBF;myMG8O5zt=IrpDuKK2PQGm1;5-TgGf8@Z?+HzD*j7w;v+9289T
znh?de_l4>sV(Ni;o%o_NGM=iBB=>yDW(8bs-%uCIXPe`u4ezrfza?!C)$&%ql*?Xb
z>^eT-+pjtVvqql%hp-P<GNx$e3p7CBJhka~o-+QDXQ^zcYi<QN>3&iC+WwMf$s|@y
z!Iu+0@BwoKZ)v$6^mtj4isJGGJnZnz&FLxqfhB_@FS~hUsoG&8|FOtrNk2P%I`P0<
zlUaQJ4GP!62kNyp+r%9QZS!xcr4i)Oio}N>h<U^z-C)Y-@*21bNpR-3%R09~r=e8!
z=Vj}1gHcecn3COej(qaT9aJG^Uqa>BWmD^<GU9$y&ng{e?)!!yNZh@rSQFASaIjAf
z567mBhEg6V(4y~nScl2yPQC8k2dhpBul_oJ23;G@Y7;m^+To*mAr(@FRs$mj=xwPJ
zYa<)xNB1mq>`-)0y7@Sk@@%e=60Pd|mD(?cZyQUfvEMUN;3Y@WG&gBedF8u)#LFsm
zE)$A~l74vFQhPdCgn+00;I;TiU_XD_|74r8JWB3L|LmwEA^tCGqybh&+CJ9m&c7kF
z|HlXblo`6z3b65fpKQ&4u>yu)#$A+uUIEp=t?~wb_he#jtZ5`>W@UR@p3hnR*jXEU
zDwM%_)W%|`q^Txj{l_3Sw0?HvVL@^Ke-}kh_t+wQl09Mn^=tWkQPb>iSsR#W8QH6e
z8Q;<pR1@<9I);B`G==qSU8VucEf1w^;*)hfN9TwD-~KH+_d6c04j>tzcu9E+CKO37
z$Sf7gbaBeszD(eln|g&86N>OCtx?A+yuHBHu1V|$QOobG_Vj2^Q>}aTqmb)u^6KeO
z$%aEsO#;h0*iZDZSv9gWJn4igzX9`+ocorf)+G%1pxE&AvshuvY$mq?w%aN3*nM&D
zqc<24ZUe?;RIqfVBTYI5x<i8MAd;^GQO$K18<U$E%2809a=bZgnmY>;BN=d59GDz7
zkf^SGH8ukSNOVRTdS)5UoXZ~MHa5vq%yc~pK+fGt_5it!;CFK1t3zhSxlO80GkY-D
z=@FiU`drs~L*fr7@tpQ2=c^KAA)i9tDEX36ibEXU-^q%&78bC4DUe4Q0>jH(RBAT*
z@?QQO6ZT4-iRlbAcq1LT2F$v<fcpjbQGLT=n+8*z!9nIX@g-NZ*0_t#u%alEIhXp`
zhT4=k(5_qY2q+iXFlu_aaJgNEWs)19_MGM}cVW@jES-k3L!Mn`NnHn1#`pxRO!&@1
zbq;g4;Eo1#;inj21NUp+%Ztp%Lm)uadfA0wh3H+k(>!paZ^-Zw5KfQ3+$owgt0Sg}
zwL-lij=5wRxp?Ijc?Mr|Z&$82vV?UDddETJ|Mr)DAp>axXbg~wW}o13|6()Kvprtf
zo}?qHe{1_n-icmJ%U;*`VEa1pboavl+PxT<X;{hsNlCyuS)mWk$bnCy{CTzTKgBiA
z_!JM2^e-gG@)6hv)Vj1;d=K1-1qr<tNPSt13I<*IbEb8-X_1zACN)FA9iC1T_rcBK
z=+NsvH*@gksd#48tt-YTQge3@DRQkN0M#fkm39K1Nif4%5RN!tLjS;KHE1H1U15|t
zAW;Dmkr}FoW<RQeqJ3h55WccpTJ6{V9wEZ%p0&CdN6Z_&xtm{o7=qvFWpsDypmd*H
zxRP^Psh4GID`4tRF<7-wI+D-w&$$EcoE(w3{UjLI7cAV_6Y3xIdcVp~IXAjuz^tM!
z-pBFHzGOQ^F!t)r_q^h-=B0ItGcU>%M|l_Tu<~$3i9t^f?*g8r#or!L|3E*&{-__R
z6*+aJsW1Mes16tVw<pwpQekyA!Rud%aO}^vdy7xvq!#!gPSn&eu#^9=2UgJV3JwA+
zEcr>8JWqx&fN!nsENyhH3?CTOwbhmVBeG=T)D)w`W3`G5Q;aflA|v9X(gVZd4T{ik
zwv%--H4Pgz#|S5IBE#Z!8|xpS#K6d<9Y;l}XlO*J20lZG?e%Ov@_r)XX}^d({P8FM
zz`xmTOpitF6M$s+UyIerI{`$L@wZU<4?L8)C(n`b<>P+)!@H0}XwK+CZ}0zP3C}yN
z^nh=FKT!Uz(`xGUs2b7!O}l9gI9?DxY8PbzE4E@x6sJeusdgcw7MK-SbwX3L@{u-?
zg3m_cOj2i@FFRKwLk21<nAz3Sj@{y|;Qp9#R?g5{!dyGrb>g&$dey@^Y(uixGwX6>
zJ+!Fx4TFi~6SZ{#6R{fCP_mb)E8bOe!zpa@a-y?ON=z)$EBkU9)TAJ-4JF>&Y?Leh
zmK6_=%C0JW3UFH*9k^tN*!yPe%Ire7fVFUD`lQ9%p@yaH6<J|R9&@}NvLPQ+QX&<*
zI2u?JnZkaZASyHheXOB$c7}qY&d&f7Pdz!T*b69onjDVvp$!z5SgZxgjcZi&bqT0~
z1IcvK)IOZITFHDbencHurepOEl$!+{LcMQ@*(G^RA?Q*1;Nr>J=5tm`u;1*nn%6pa
zf`7`1TsBwD))lwHDYO72gh1tH_Mt?nBG6oO9mW3L?WqwrZJV!ozksfM*_(kGo<;r9
z0I>y0t6)irURK&S&}4@-_U(d0b;in(3QmVai3vSUjI|r9V$I~XJ63iY8gCp*XA`Fk
z^|Eixs@K@PJ2~RaBK!d+p4A_af_?GNd%9$4arV=tGfWtBfKl0A!U=5_ZssX<baIe%
z@N+wwk`JK^mA<apcn5m_izq<B&1NzM$R&So;`!g*ReDxhNkaouN6TN=i>F)xXG)Tl
zsrcaujR(4bPwwzd?r^NwKjsTKW6p>?Y(%LiQT+ejhGPB|xbj1G3v?)&J<0|u%#5ZV
zfzyoBp`v07;h^9OQz|g}lz5PH_QYQG9-OU|2HV0)wvfSWmR@sQED>EY9YhaVI4sO|
z(0*w+9J%?~yqJWf7lsPvbyln93d)-Z%)$w^qDYB)wE1nd0}ph1&{kR)T1A>XswO@_
zWN{Bpp2?7@kOF%tMn$*XpjU}kYlsA*{f(yq!e)!yI}|cyhBCr{R^*P2AN#_H4sOf`
ziIj7r?6>WNadJ_FHt#`aLUrRIMo?aY#tRW2WcV@gAiwOwrL*&&?FF|W4%MmeCdWjo
zh<hid&y^l}BSzwxEzwY0p@LY(6HcZD-CCaj5PKF3Tf;7(CK@J#sDCk{g*6=IB)S;M
zu{cWXvTB(eBX(ULwZG;RwxdMiQaFhk_<^{gxi*2J`t3TCTbpl_dE`?n8K-YR6+(EK
zqlODhQ}eJEZ~hM&ECEDxblwh_>(tQE3l~nEPwayt_p7x!U(zgvU*TZ4LuytigrwqH
zTA1c4VO4cq`)m}&qR6%#f_|%8dTc~dOu8}VvS=W)ZepBelivEJ%`mr-fe)#T6>9Z%
z@~Ajh9Qyan%=Bq~$bb7G_VZ}X0jvz=8b;9;+(;!=UqwM79&;-vH;lg!<-L>sAtyVC
z);KA>pX0~coMg<=bjcAfcB6~>?rV+{b+4B3vqgxzs0t%?0*I1TYa|bkdG+%tD)%n3
z*99?W$zU?&yfpGukWsbkc4?KTQ`fYSKlW0{fuyBKK9O9tzAtUa3S{d3`2+jm<ozCn
zd>{xw@4i35aGoDf4=3;M$@MSQ@c=r)Z=~Sg>vgcf$!H8QF^&bROf{gF5`n%8@TRo=
zlJEnvns4kRTIdcsj(VkN<GB>x#rGy{9C@IB(roIsp8mQMof(`p*?x2p9NI;aN+C4R
zmm#+H&3VZEwnF}M+4A+$N#=tsGI~l40`(Y-ROEU4fmG2~TzSJ>U+e<f7~@o0QbnL)
z?H<;5UYdpZ0lgAaZG5J40f`i7KY)MU>*-?5_=911i5v7L_<+ewCtXrs;A_7Zqvkc2
z&{aX{WKM$O%pLdy&P2w4U|pQhN83mm4Ku5<W4=mk4a&gC{?3p3wZcSf%~H<=gfLkS
zyOHUZkE)eQ3*K9<JVbOcGD}aa=p~e$?{f;d;I&$Cu;WzJW^&a!ZQmA}MCJGc(DLYA
zj*M^XgJ!M63<+K8UUL*?pceK{+NB*Ec&P*x7`n6KMwp4NE=8e|=m?6oXUmXF<S=+A
zeFyT;bPTP`cch-FgTbPfhN9htEo5bJpRH*^u4vcG7;(uPlT4%Xlgx71+d&dfm(3Gp
zEDGVB^z{CKh`*@ofaf^IEx6ovYaZOB{+SNd0oh3e>DV&$KFsB7bob<HhsKaAJB!*#
zmzJ^K_w7ef=7IRztv)~o9sb)Y{U20hzj!K7Z7Ke>O%HVk*~9#me`M36*xXX}-!?tZ
zE1!R`0_MkS#uH64tn|OFDFFjmI>@-_X=^DS@6}ASwGVp!zcSVU&{(lBQqoe@?Wcbk
zS*Q)74LtY=M?X11o^Ms||Fu>BhS&PbumIq)^-vT&+_|R!ckXE92{gc+JAsfQA)#E5
z^VKXn62j~#j{L)&I|E>6;i-||YrK+l)P6Kt`A$;HGOaX@p8M^@<mp|;IL<Cdru6G$
z>C0Q-x`^#k?M};kkKyt;$i+s*(o1Ptx3n}ISX?+7xA8a@8I0RpyPrAef}8RlXOa;9
zT4yg~G$;cD#661wYaBv_;Uq<b=;kI2zRfVJIF;H*uMn33$!Zq{tJPM9Okn?EYk|<6
z2=i!bk*r5PrcLip94DiahOJZV4qj44^20Ie1!GRO<ZBvDKQb}w>?moz!O+A7m%OAv
z-KNeg^!gZ{I2h~miQM#sT07%Nhfl?3!E2Gk$5eoMD|d8a1I2JPypWJy8Y@d_@0w%F
z*lS!OQj}xf)U~@)e$2Ws8n<<x!exX?uS37P^<uF<Bw)Hx)1Pd6+c(2=t?VbNd3KQi
zv6heOT6L*P<jOO<4kzhc!OuQ{<+fR7H@oAt`w3Uf%5=8U2)*qZ=K3PWLC`L{$Eo&Z
zor-RPVaq3Xa3T7uRZ;FDQI^3`so?o}**ntcLlCtTB<tQxK7}@UC%WB?rOx>D=zBBO
zf!#pnpO`m41i`$2DQ3O>ac(C78@lXoH}pS20ofii{gZ2V8PC7n599=FbyZBvwCvN=
zuRAmVTVd(xWdQl{GVt7jYwk71vMV6a-#yt1&-XSS;M*ryy*2|ot);Fjft9s`_M<ub
zyFUYgA1o*fmU_hkTW^p^D2oV=rUp-La#0=%JU@-B-gP8^Mc(j-;VBe#5`KLmesOUa
zd3z8d7=9A-Xy8v1vEetb)C<abYlf#@g(Ta{n(2v_z#s-2Y!$xxfSHz}hT$9EyS-JE
zzZGCun25gkGw|nSXW$=giLxfM$LremC=}a+Pk7;zg+1>D|HZ<XpLTsMW4K_td0>MW
zcjN>G_ZJ3aZ$M|w(1ZQLR)%Dm#Ihwz-}~Kvkry}{^;f4EyC&Xzk^SPQ(u6)+;u@F9
z)z9HbaT{S}LZO$m5(pT`Sqd$V;_#zPup;O2JFf#u1XBu8r?y<$C%}+5H55K2vaR@}
zX#4NkqpSq>%4_-Xy;fR&8|P8HmBt{6T`V0-<y9AIC#L$tLh=fo9#@@=TIOV%<)>5Q
zWkt$+TqdLTOz!Xy`^}JxVsNL{+?*}ed~a~P$I4{KQlJCy7;^s>6X1LPj{onr_+Lty
z=pO-tkyvd&XAxkY*&@x0rGM5J?h6aSNLU4GfT$NV{#w2sMnN^$5-4WBWpVVou}JRm
z0EuMc;^O4#n>OAzB>~fpdnGyT?j0MeIWM%n$3Ynep7Js30w?!MAp{U0lUcwL#|e?`
z#EPWSHQb%E5xD!Z*w08;LWE^>%{$z9$$UFmO!dv&Aofc^mlYLawDB(!2mrm~(VY&}
zxQSui(w}CC!iHg&Y<#EP9}9e6!px2cMO_Ds<^S#-$q>W4dd0ef*ih#rQ{6Q!3`on!
z5AN_YY0!3yMf5MBkx8KpJD1&DiMwy1DvK}?<?xh>GIE)iKNtLb`Mv%H8lU&esCdNs
zv%}=q)h$pb+lT3QpD!AC-Khp8hV`}ka>K{z15F^5o7(9QB=!u*Iz&m(-?gjFs>Sms
zbCoq&4{#yNjn<^MV)mLbNlEyK4npW0guzovn!DMx%R1kqJ02fReX{S!yMrRV1$}s>
zJzm#k`heFN@V7bWe}ZOz;YdUO2!T(>Xj=O{STU_BQ?)Hvp&=fFC?liP$E>2EUpN{f
z?#`$dQ!47i-g{CDz{Lq#w_-pAq_-DsbB$row_Q}#IaOF5!=`!et<7IhzmYTz0f{uV
ztCmf$#mUF1Mh{og0_AO4vPa-3VTkg~!Tby<O^<}NTs+ORT%1OoXNd;v-u0H;f0a^2
zuQyCBE60aOxRnSe&r-d7ehOATF4k6pNMLglMXMyN=8Ac#)`t^xMyE6`2$dus3c<z?
zqm{QZ!mD|YAZj@h1rnijS23PSKB08kg0-7784*-Cx0ifL;A`e0h=CQ-SJFhbK4b|x
z?VccV+KR@i*dcNqF@t;%)oU$K0q{<EjW4P%RC*3<yS|wic{jcp&?@K<16C#N09M1x
z5tj)^g12s+H>+1)eLq|OVJhc3Vpk|rzm))I3<{paFnc=>cUXqZ-^UH;v_G}Umptzn
zh<O`!o^<_!X!hH7=)&#2tiATdIrfhAvR&E2K(*1^hZmcEJ!j<zc(G4CX`ZL8KU;YG
zpAgLx@`_^g5Hz6UFKC?S*9;lbID(E+x7)2*1<5B!;TI)IZd)>*%9Eyc>yC^+2hJBH
zI@-h!(AgUyJ9A&?dAPwdQZ}CD^ffA(&N&}85UGkpnD*AmoGb@@!D37(!r3W_PM#po
zAOS8Q6?9mH7#*wi<WuKTsTf=94C5e)q18JJ6e#xAislDfrZ*Yn6z$Fd!xkT|`4;f`
zc2h<?S^j%}bI6<bRd|SuMU5S_{Igi8_u%nnNS7N7svh#f2~#W^OYshQ6=WmcU5`8o
z*-c24en7Tjdy>zdBgX%g+C_Bje;@wvYZym?jHWptS9t=;vw=x)ev20Pa;4~LQ(fH2
z0Txfp@h>|G^-!XP$j2SD1(#s%7*x?o?qf~c{`M>>Ue<YPv#q)jU=E$})Wl<f^^EPE
ze&8>MWeI6BU7*iLU*WUMV{KA)lS=VpX=f%+Bnk@Lnb1K=A0v0^;2h1EGilBqYj$V>
zHEX*K7>X!cL=cqDw}BQCGI)ox<Cr+kn!05w^L@MlvybV5WGIXvsT0WQrhFIegmlqR
zVp~PHl>OaP7{{|50w}F?+SCT!naXaNVk22YHKnlmLz)J7D%b~&2?F-jK_ti&Kmw)W
z2|5rub0RIsdQ*<1V`u4A8N7e7z0iijoMwm^Ir6Q`;XW$bpYS}=E|2DDY0jId@JKEr
z<W_Kc^zPB&f&)1~kr?o-2?4j;|GVvp{rvoRtPvdT9e(wnhNS<5B!55w6bKXR|1Z@6
z$Um$O{QgmOaJ{~x83y==^8la!dr3Ucmn3RwV_~Xq>hMcE#mY*nY^VoN^NLv8KagyG
z+ll|-+Wf+o<hrc<cu+ViwRu_a7WlEjP*wYSOUjAK-jAndVg(p$z?7-V=tbOr5e$R2
zoXjUCHgGy0NyA(Zz6hFJx;ScCPr;xC9n&RT7Uf41S{37p;zJZghMZ4);}iN)pwseo
zE*0Glk_48I16dAhR?{k+2G%?b!kH<huLZqdhfD~Z@+Vs@lOQm|4d;gOFk9Tp16;67
zov8FH|IQ2_<JYg&!mRji3j<`_4LA>aEV@sHNOkdKLVoCu&|)Pj)4cF13b2xH=7M(u
z^*ok(kHAquQKRv`M6p0=cDFGBQ!G(>8bQeGp1o^;kTfqmsn;jE$FCnP$EHnFJz(_f
zN1Z8C63{iqJ9an+&cZ#(d2bLGP1cH=$Z0#E&+Wh>&`Sjy^3IDmV+@dondHeD?ecMf
zW-v*?uNhw%$X5w)I*4|Sys}b?52G;0{OW%H?ZSykv6Oj_e5X0<c$lfOb4l9;{zs)_
zWY$CC#8^5ZG5`cA^pg|uc~W=_c%#3=FTcO1e;|^xc6rd}{_^_Dkb86~1Y`}c-AU4j
z!GQ_1LC*265~o3Md3C}Au#`=fYMX<8TTGzim8SYQ8V7ekCl&u<YsvnQ>vXw+b~?Kq
zN8<RZ>5h4)^wZ8L%IyFj)@Leaje!7bf;FVbO!uzIgi)T!HC5U<GPowCH!0)JZ3G1P
zk?`%~zXU}COd^bv7BFY>7Bd;KLwjS%(G=u_%#@DhjZ6-K%FGc^G*J!?X0y~7=bDBD
z?a*_t=2qB{uasbFJ9mLTY+*_aApr(g1!7x;k%)m9?joV7%qN_p&~hRaY<J2S0W+`$
zzP5|jxgHPT$ENYw4$K+v$FpM92!SDqcgkQNV;*9=Yh$W=ftA^Gn2x<E&p!7-2ysG-
zsN7S^jF&GMDL{6U#y=!HO_K8r+Yf)y<l3l}0<08)X_W3H%{cLJPOepd$J5w_+6iX)
z6>^j+`}*4%QN3wj{4R+#jC5{Oh{cXgiQ?9k2X$P~W?Em$gF3D+>z6t%B6~4DVJ2uV
zkkN;B$8&8mL-FQ3O2FIdBhtrf4$PU*)Jc%aOI#&2W@9TZ+LT6HGJxhgY9lTx?{brX
z`=WR`AgF{#-9hD*JwO|G$h8u*;&Y?C2(3gNp>(mz84jzZ^>}gcIq8&G0tC|dlR$b7
zFH`<0kp63Ai-@k3fra63qbMKisSE{8z$i)-&tIb`S>p3^=pIH<LKB;)^3Q%66tzNz
z0r+i`OP1bVEYFETn@DdE-u3@z`m~+SL-URRGjX;J>dx!OlB~0k%b*T5OJ_?SIgwaK
z8(<dYyIW15SQCoNW-5ZmS(H+R1U<aW-e^b+<W8J$Zyj+y-Fi5koL%2OjG|OQE+>g_
z#!@SbFY$}9%RLlql~47TLzYr`U!3~dFL>|gW|&9~7~Bb3FuS#=Ak&7x5pnXM0Pr}U
zmVB&klj#I=(tGD-#fViLq&754-X@k$gEls6>z7#I(>|X4a`~NJ40FIU9%<I+X-bvX
z_}apoDm+JT@bqQ5muXa8{Oyl{<t9)_1%dk0Uw;>I#3S@Z#4@dOUKF}^tezO8f__!K
zJcWc}2M+3}^<vDyDkTF2zytqTr`$H`Yt&R<aIJ?)+4FTLg@FZCLPUQY6*@*PAk<-i
z0y$h#8B3MIKPx_Di)C?!tVM(ZaV(oH^C(U7lQYB*;%|$g@1h2ePZ7MOt+d7$CO@nn
zv~0ws<El4@p3B#T6YWjGC^8j>@7CyABaE?6$5*jvcR(%9pVEu6Kmb{qu$Ey@SmDa~
zyIohQD0KV&xEIm^4|l-nL3g5;kT6*0mn|c;^1RRM@^}GhRf_7#KNFE%pP_F4BR)D8
zX;s&1!dSgMC<4{+&2{u>h51Tbwq>jya)%b?h)O|_rv5JPI_tTKO#7u49b^!CQrGv*
z+u>Y1v?)%^twWzz6L-$xYVFJ&nb+E>Uj+o!*0tm4Q7~_=9;=`zhR7Ldz=_=Xw|Fz#
zpW^f{@n%85Of1(2eyGiZB?ZC5unzzw>{rmrsRM?3{GyCJ3=`(7iQxTQ;xtW~0Bl~w
zC8cGTsA9k0&!SlydOvzhQb5W1lDr+yJIQ|Z%&mRD{&wHQZzbwri>lq^&16(1ud|#9
zM&&iUg9nR$tSM=qoD!WErr_9$0$9mqvImwRf*f!8rnD@owUDg9mk5N9Ok=|1>fuzV
zGDOqi<7(qGeCWsdOcp&7`0)DJq=7yYWnY~K0?21vrqE5LY`&nm8f^on2#2X%f(4_|
zePeV#*xZ2;8h|6~qeynZl@Sz#Y8Yms1cA=yJ*PCV`;My!$?&69P7_$r83wV=6#5f7
zu`YNz>1(d5>oq?p$T6hrG9V?^kNitqbfZPF;$J5mBCRNcqLd4_(S{3lm$D@eWQOqQ
z`)&52ZVNvUgz|^RGC2mzib-|98oKpc)u{zIdF(_^-gW-OvCdQpG?Op=o|zcs9{Af7
zVUYs|T5B{Ib9fKjEhO``eW(RJ$LbP|nd5ew$~4f3O43;}$iqBlccC$VQ)ywptd>}(
zdMsAu3K&ijmQTmgbQa0W3+fUzO#A$bu@=G#x1xvO*Ee`6GrCdJ;3Q-njs!=O#BT<q
z-r^V+L0lx^IlLth`8tQ<P9f{cd#8Aiu|#kba-+O}RiZ33AZ(Kn0qu1Q{&0eBAQ4>c
z0TSQWCy9?J7?>9jL;v}C7;O3k3ex}0%ES(!>^BAI%K^MifGF@6J**&l$m-$NF*~YE
zP`LotEsBT;Dc4(TCOgDWRl{q=5RxN`gM%D`c>hI({H(g1WN0Gejq_GxMLqsq6UI#2
z2^F|_F!-wh0$FURU?MR{b0>e<PcSH3#n885`A+mASRLObMg&6C13niF*OW(&U>OaW
z)te||x8^NC?M!fuy)-C*BentSIjNuvDk)#qEi<fvpG-_p(MuPq@(I~forj+s_N0T{
z8ObCSoVinT%1o7-u&6n!zvay0xU)`oTp@@u+#*FI6fh5vPjG-5Es}Mx?tRbi7{gJU
zCXI|FcNe&x?Bn1L(bUlK#;J8>Iw*E;bK<Qjas+S1Y*wu>A;le@Zwp01HOlc@0{?Ag
z_I8*%buiaoH+aY$*%5TW(;fnR{-{8oW6%#M;_vm!Uv6K3v-vNYONRXKCNj|RMUr}C
zwq~gXF2HpT3Os!?PMk`l^bvx3!jacK64xuvPDqdm=QW(0cIV5UE1u4(`__)GbaAzm
zE?%vvb7|tVc;Yz;!$nO?SvQ9lnFV^-Bn_`fvVOK@db`=331M8gX9**|H#qL>n}`nw
zU9A)!2&@PRuJ#Ul#Z<$BBSeHiQ@0;vMOh#JE<Dj<IKU{3YK=}d-0VGRx)lnwMwxSh
zN&ChEQ*iyn!g{lY-AhS4|BJ{oe$G4gj1GJprxgpnW<>>i^6W`5N@(H-Z}UWh_U4w-
zd5OhTT<)N3L|-n%{c9bV!ksn=Rj-T(Z}Yy}{g(H+XypRcosB)l&d8@xvG`P3;m4AN
zqTheuq;p9-3IRiW7l=!WJOkpZTfM8Q2f49*k-)-ko~BZpI*syiXMz@tnuk}0CJEbm
zQ;rrnMf__;nkgQpGIrSPII4G`D_HsVDwQluyOfEkpyo(ADKoK1;4SG=G-BY0^Ri(G
zc7vkM_n^3iw&D!j%1h)I)Yw^zzL2SJo3XTI=rG`Ozk49!F0V`pwgAD&Q{UIobW}(>
zb9R@DkAm%;fqKT)zn;UBO;DhZNp9%zoE%BH*M4REL9G+vvU_O)Xze$$7f@4h?L%4e
z)ZP5~?))!O^+VnIhry@JgRF)Am+7#kjJR|+4<fg<H`sif7ObbKs!A-l3=lnZuRnV2
zL>+F;!OVde@5H@TQeiaPfQC`KGPf{W*YzD;JJg=)sGeUBeufBGhlKwy2QAfBvIOJj
z&feN^mu-_APEWl+t$xUMA7PZmitTgGmc6AWFQ04h&&4vWhHq9&nj%n)Q=|4Y`3JGp
zKHFQh)NlU;KZ%(EUx#y1{Y(jyL$p5>YBJf@ovw4*YcRepffc~QFbT_0@oiPzvJHkv
zx2GLw3R5iX{{2WeNeKmvW>(wlmnP@rY?`x0?j)0_`Aw_hG*XTzP@9q;y7Ye9kohT5
zIg4yvJ9#OsaK$P%VrrITeCmml{qcCW^-c<31qM7;yT9Fr57nNHo%Mrd383j?V`%4K
zYG^NHY5_2D{52Wt!8ujf5a6}(NQpU6l#H6BLu@;xe6`~H!DcnuA)#Jfp?5+tjf-eD
z(|{Uh(QZHN_F~R9U2<UpWWBM$Wou+M%~j0lqGfFW%3&zKe|(=m3<*&{j&v7?D<SPd
z`}6X;X1)AJAf?!DWyI`iZxR#=i>9kcK}%aW_Mbu07}PZ;ki73K3Z|ywb<7PmVx!9m
zmLlV}`b}WSwrIk~_f6p9X$Mhtx?w9acKOeB%FvR0gv)F}z|Z=Bz$W`?@ryIb=irHj
zpB|MId^DKohb5^G+!@Zf&(#b@VlSby)_rl<B@cCxYXr>m2FV)K0wegfV6|_D4~~6h
z-<qsAs<1kUv;P&SxP+IgV)SP_4%mAFY1Z4E?}`G;=u`_zNG$VW4&}VQ*@rS(LB6?r
z1m&cf>*b5ETS3e*JwVstU|*NToTs^h!3EyFTsE2KWMew|hF;I^_eBxnt5R)DbMGe{
zPoYqFCfb}>x0)JdyOwCVLtfkaH4vir_+zSYoEI&7CNrPe?wW<5`SQ>0$O?o7Nq?dV
z;RI5O>-)-bShFW}zB<)okLw%H(#baLvt4xB!@z9lX7-$B3?XEr+Bg#y){0bPzGs&<
zK0TYXxEpKc5EZh9rmR?z79<H}(wtTwTgE(-G`Ci}rd4Y}No3TziPKPF%K%B{9=Y^9
z2yVE1G}S;u`!aJ1h$EW6)$cr{^d|=>Afg@uO9;SQ({<2hqNfF%o{tLYp+EOjB;Nkp
z#?Zj*>_2XlswD#&rT?L3-t{luc>@03D8T2BGwOMB=pQtGe+|~6{Im6v1LMD4Pv8Hm
z^^&YSX3qb%Uit^i_|>m_%8Atbx6AmQ6Uj_PU&Qo4-utV5UFwtB!|;x{{!V~*5%T1H
zJg*u4;plm$M~Um7$_7A-8aUp-5lN2I_ZtUALTIQGYO4aEZU_Y2Os|Ombp!hwQK*Ny
zp||Puv2Gw7X9&+MIlf}%?8ssnsO+;yToTcZ-$bTye(n9U4gLK$wSkEK?@3;j+ZmZS
zZ6E<Z+bW3wBT*WS^|TUDu5~KK1_H)ie4?FqgUK+OqR2voK^j?Vuv^C+Xz=aiCa@`B
z6<y#*6=e1Du^4NV@@=a9_ok|-85K7^Bq*WHe_bDPX+0bAT#RdyHqvlP_3*f{LavE;
z6(kDOW|jx}Swo^|T~M!-XT)e?X8-&9DttE}kA3<RPBs{`{)}O=`z});+shNHpS2UV
zFv{SeJjMJb?rG6uCD`I*MHU&@`@)16ZxT~*uHjcx@+)zF+!7QsU*!J8$sJ?-T)6(>
zKu^$I2|2k~yaOr!1r#p_&8&Znc$*l&bVZXDgo{JNl1xk3{2UzQRDGyRH5bhzA$Fpq
zIhjM!Oe7lGRkCsVD3^Jc#ec?v_&YpXie~u29K%Q^kja<1VJQK`b_bGCU~de#4eK>J
z?&gkib0-k2LZLfz?X%2QPqy5N0~ljJCpSNC1OZ*o0GiO;SLN`dnv7%iM;!vAp<X`T
z-xHe40iF#jk7x$IL-)i(*--kVsDHkNi2(uiD<=VfOglqshlg7r?Qa#m<%3Zn)8m}>
zuPKi(Mo{HWWwA${=%he5he^Ez-)BpQ&$M#Q2Zaoq#Ep{s!%p91`n<E^<Op6`64DWt
zig@&MaJP<Cukh=6><8wZG+wn=;BEgPg0a0sMusPp2`#Gtg_npVn(J7h6y3jGJ-0#R
zN9N=UB@TzaZcmpy8R6@<OYCF8NJy4h6|I-k7XhC2%HvKrgqTO6hGGA%%pF6Tp((am
zT-_vaU7MA6bwUmo-pztm)1$He(#Fz2L1N>3m6Hs$@}S`vhJ4i5Xj|;%)t5lrxKgJ|
zc>Gv6RRM)=9K->{F|u#y!VwZmY*o@m8{t!6c%wQqs-$Ta5BkQ5l0=peI-MrQ2R4_z
z#O~=!ujly6w+`pCHkgN|503AuqIKx;J1O<7)W0RlIA8RdYT4VnW!pmHyxx_^I9|07
z^h%iai2V@El#kuT1BJH=wmGemneXb`MQ3C?L@rh!o4c<jB2{diS4odcylWGkmaM*Y
z#Yd^b2;)(L{2kLK>KIY}>&Nb1V~&>%#V1L@%4?D<D;4YK8oZ;_Ou$mDwh$;WQWaSV
z_L{TX6gD}NiN%y1QD86oa6d1TR5X!VA@e!nzQ#|qh1;5>s?9^Te+Nxs$G9q<;e(54
zmxfED{4TTEo?u<6Xw(R8--7*wGQ+9Mc^%=M^<@@Ej#DRztqRV0l2nzY(*^#>?f=Kx
zS3uRZCEEsff;++89fA|w-QC@TyL*5Tf;$9v*Wm6B!QCym{X=s5b|<&{{r>m;lX1p?
zaK<=$?^Ua+R@JOIHI_2Os144bk0ReMfSaTUN&0Ab%wE6mC=o$4$*!^8pgz|9T>pv1
zj&4<0tJ2c%U_YS94a&9^igq_(5jq>6+i59aZZfpqzaX4sV`II!Rl50$XFG88B8TZ*
zGC1}9K8XS;^5wZcOFZiOyupdO8+pCpJ3JWM*cJ2Xnr(0LA${~3siz;dJyO&Y76zz*
z1Y-Pac>29k_hQ@sI70oUQuk95?+;J-ClIvR+;}1)oezH?K*TH&XabyELbw8TOfX(k
zERH?#!TplHC%QVka`kSX$MJZ)0rIu59TlFY)AUKO$l_$T%eQ0bc70e9<L`$x+U|xp
zB^-+rpdN*@=EvRh{cU(cmkX{UM)vVuy^d)nkS+r<b%N^=s~CgL&L8xl_LA@?NlfP!
z@XJ}Ndtj`-DD}{P0%q5{*caGx^y_1pk>jt>YXa+Tt2LEx$QaF!#wlc^r;9a4vg^w6
zBO00q4>K2XuJwg3h!R!qF0t4-OhaT2ERdRmW;P*h`;c$0vCN>zbTE{zx(XqwsDT{D
z;TL-b6l4LfFgd@6OfG1*-W)v1`Blw~w8T9!KC+d3CFEPp7lX1p)4^omeq5QU`hH$^
zxp%PFkyHkoUu_x&c>KRkvkD<etNQh!`^kR-FD1(^y9Ii;UDvXlf=e&B#QIhlsg)z^
zEC2^PAJ|jGM68)}5sn?hyb(d$hWHe=2UmI%{N`yobf~eH5hh!}SesyaCT8f3?t@}X
z?an>xpp`nda4#@Aqe|pu?5>DFd>VlQ%HFv~AwTDSAe06tu7VpjQ%5}%`l7wQq|Nj<
zW0;35;@u-|htxN-hk~$7Eg!>UTyfmDm>`$(MMr&?5$?54tDIquznv!uQZ2o0yWBt+
zuDz^40}nJbQ}?)PDaWk!6P|k;>RrWM1O+DB|CG06`MsXAZ!`CcQ6*tQ)_|z_5K=x8
z9V+H#NRO*)Jyn41-V=JS`H^vK6<JZ)Mc65i;%4tXaW(PE6ChuLfYi-VrF|*U@qzuT
zf&T7%|C_|)M?LP>!~^($n|Pq+bLTQQynyD~e?<zRz95Bu%{*`ozq&XBHquMa?4Oz7
z@0rJcQ?2+369J?hfO<HBS5RBl06>RL2`3gofcw*@aYnfrC|TEcq;{dxT~Rm}M9Eie
zCx^sZd;lG`udP3`4z>GmS1-z5HlmwHcF)%(4dor~?VnKgh*5isbe2Ynq8-V)(|T{-
z)lF8EmC-)ojvhGiz!S)a9VVU`B`QRGUEcJwQ_`j4dt$LaBB)&QZBRWe6y$W$8Ov2A
zCjN3AM@4ytloFF82*qJ+NG4{iUm}+?=UY(ev@ebgXK8<CMeoJ$tsy_UwmVq7#a_&N
z5a2==s_*x%C@>aOwKPxRiSpEgC0WUmRB9M49qF|tyLA1@y{)lg3>o6&cMEZ*kd8W;
z$>2&ztnzPA4LddCc%7FGn+{TBnU<f)BP_KZ`t(1oYL`J=(}XUoPZ0GMfY#kl@44-O
zkSium<ORc(s7mRkkUmCzgarj%ldq@>BE6(VDu~{0NZan#Gk<qR*{I8_r<q>?n?hRB
z&W6}ulUGzQp5w>024uf~ibT{~dh-6WwiPRM{Rw-8cK85$xt|q~soJ9CsQ<_B-BW-*
zN!<xJ_X-^CGG0;Ekxx<q((^+6(XC5sqLmotmy)y$nQz~L20O!3L<h3Zmt2dR8Y-S8
zHUm&#ZeFeA&vW2E-2WJ7ALDL}TmU2;zt$>#xBI^~i~&OfqGl$4^x1wL8F)=a@?q#Z
z?B5y~K<*^n76uru<S)kidz^SFo&3i*@egvKpQAge3jg58M7)`LWra`SbhMy^I4gz)
zvW&$s%#e{2DwseD7OVZjkBLY@QR`j=zYfbWxRKo3xkT%W*L^e%*_IxBo8c*;G$K0w
zCIVA#f8BXdE^&^|K3Y(rT}24qm(7yH1}4!5w$Za%Con)Uj7G-qHBGM_uXf7gqjlYu
zCcITi%uKAX2Aot$*A-5I2%^=e?To1qWM%R~(u&pg!U0VrG1d(J5xc}wa79rC>F>&Z
zp%EkqG@CRe6hX<PRt|~gU$lB4M+j!9Dp2AqJ}QHHjdoumxTIQ}>5?%bLzQ!aV}H#r
z`*`VvdrejQrp+4@M|w}gqmvoUcw;yM?AkOOS5yocV~Ydd=}jlov|0$;t4u^yhbF0d
zoh^xyh>ysjM?Gj+(XaWU_b5&kP565s*>uG@6nnK@Q-GwHa9w)lcdA4&>FLViDk^jZ
zk|>t&(V@EEX40y1Krj_xN78>XLqJy@DXBXuE=K+=#HG-E=CNY=wso;6LV6a9_Gutf
zr}e|l;XX+*x0Lwm?D46j`4<JP;QNXsp-kMFC`v3j;rDXcb^XZFEF{G-b95cGth|J0
zccR%Whgk377D^n=3rEuPCS%#lf$P!9f#2bZJc8XQLL!^pC!h?5YAgZBscc?_FPaLi
zAiS5#x7tzGZ0RDVgK|m2xSfv=&Uhm<u6i=1)`r!*Vv|HX*Hy;ViAgnI&I64{%u{8e
zu=Vley<6(j<&O08;X}JJH+;S=Bg!(OV89X|XN;VG9n$uvdz};`!9ew}8eDS1o1glH
z#<7&=@_=a3_De(O_g(Yfln>~COqc&M#w<zpcf$psd{9u$&O}#J&yLSa#?&AW2pFBe
z1`M>9fT5m%t(Ksk@F&Q6;PSEA9k8cfK$!mw8Nc7oU!4Fm6P==-gT+tOh*gx->vn(|
z`0S((L6ts{qT&}u7@8&|yiR4|yVGhGMkdIK=Takr4hidXdwUuCmLqn?C#yM}I5r6r
zAk>K*X2_bZ><aN6WF!7Qt)n#rIL1y+$nFDpg4ZXDsSwO5tw({=F5gNFoq`643{#6h
zD^WY9Px~38?(x{g#|EUpH5JRraVE&q72Ze~^isCd2y~b=ZPa33G_}MJdfZXMjyRPu
ze}Qo2AG1OGgiHfF2syNt{l1yjKxu0<dIhr^`6UUMX%|9yL0`VmH2ml1@LwbWY(MZM
zzo6$MQ2yqsQq(i|bMTf?*W|Ompyyu{dzXJ*Q<NWY;bcr~4ArDRH7R=`kv{zuEo=p5
z#|OB<KVN@g-1;lo+An2k5qmwr3G*lJP))<8P#ndpwoO0y#@5Mxf*zzVw<c7{g1e@q
z=Bic)D^BhUA$f*!^3yd_$Y-ET!s*)NE(~GgidLHvo8jW|0v~&YBougu%|@UP&>yki
z;!bubOt<IBRVsGs#Wj~MT$R=NPdSWEMQcx$XR|uSmEbkJD?GwKc$00XHpr;r<^LMi
zHD~1_!Z;EAeL&1sRH~YBnW-sD&ZxGbv+c^rlS8yPu1>rJvb$O4YgAixHWkvq6hB*E
zF9>M}aBb<QN7Tt!t}N1ya7Wz?q{Y~HPEU2XkXyhn2#fL?YoF3oWgx(h^)>dRPDB>E
z^}ptS0RcIq*`hs(=+R|Z%>aB3by42Thgne_Hez(r*Y~`ifB%|`*V?YEESsG|9(Ovw
zyn+vrQft3uEacqAO1}=SAXJmM9DoYGk4|Hc<d$<UmP5Y1-~f8mUKS|yhu&1^<&HCY
z1wjCVALp8eo{$}grM2bS+-&A`#!V4%Pn4}mo94ihBF-Y!DOcfJe8}L|x2bZxH%lgR
z3?i7bVN3C4d4>D>9JknFS)*aCq&`BIhF2*eQ%bOO6Q{Q$GSk1g?#dlio+5;*J}_px
zW6g&;1T)m*>yVRarf6=87@pCG!6iHAJ*gu_WpyhZ#%E_nwhHOw>o<s^)H`Z9p-qiN
ziuwFHRz#*IavnuX$`m1iu^ssqMwQavBB0d$iXlN6fJ|p-$ND?0UeTQ4=rW1%^VW<~
zj9o)dPBGZe`g8klg5zj0V<qz$XMpAe;9r_0g3sf}Sh2=f%?{Ht9<t=a6O#15_i^zG
zgDbJD9y(m?6pCTZqJYhwdYAUyG6!oD&FuK~C~Jjvb(JL8VpK4GE&-wRk^*ysUyoeE
znID^pHLtQDq5nC-G~=eA*{vq|;--AbRk;Xbw{~`3jc<~x{1A7Yhcd;oK<u_m1B*7v
zFtc}M3Yv7#P!-{*9qgqlD0anO$R-gp$kM^%lFZfuvULN=tj!54d@Ll!8GQf<<fYYd
zBXU}IsDwaudKUSh*a6#j6Fm_<>Z!`;rFrpfpQh}R=0nA8ppB)IxP~G7;w~$q3!m$|
zWka6EQMu$;vr8(&HyImcaSg9KW#St&qBa8<ogdUp$zf-Vp;zwXxBM<I-#KH~QdgNm
zLdp5fGNI9uoSITaEHU4cTcb8%iZY9Bq$*eVoXy&l=p&RfHc6qvxbV(vb_>ikq<WSW
z3OQyj8g!q(d*-A<i(E5NriLWAeWex~Yb|N7%V&av?)BufBr<cjEYXZuYX@>LmuM(-
z%Ar`qn#S(%=po8U6fK-4S6G;P742UvG|?Mtp*UhaJ?I^W6FYP^2>L<v<a8=kLFN?x
z(S<4J`kt_P&FX=)dG(`93|^Ti)*W33_VTz*2MqE$w<=nm>3wrw7=5Oxj0T}6eGl>*
z6Px}LX?T6p8G(^8#@c;jXU%5SR~%`<(K3DS5V4qFCxX3ZDXhDrMqImp<VGMU=Mzmr
z(6SPQD!Qq}&ni9&@XsGMB8NbtvJZC{!C+~l_{=eIX%fgFnH?&y?}yydAG#*)*dH>H
zAJ>1X`+<cI`1q6K+8f>q6dRMz(38R=btF&m{33x|M;^o8II(2;-U1Io=QQW{;oic=
z{Oih-mPV$~mue5r^{*h`#i+j`)&0DNw}dm%`VoBMR?ZF`D0Jv)o%UQ7Tz`V)WR$37
zTddSkIG`n^lx_qG`EX{5BxD0D)MP%O2%U~hyQO?&JQ}`#f0}>T`mE*yO^zoOCFZ#p
z*qyyj?sNa>u-wu}lz3rYRPx8J$WH*Fut`;|X^Qqwg%`-lS|K#H>g6?a#6W<Gs_?!+
zg)75QG!5z8+o160ue?DIPd`A%;A9c6>;Y%gHo|`mQNMF&{v9;=Pu1<|7`YcT`HQ}(
z>Rt6wJ0C`vsZ>frw_sgEJ&ijfq!K60wEX*?)0J6)Ils!?@Yh7X(Tfi5queW$`}H?^
zJIV{^m{`a=XEiI%3wA>u>rfq8MJ?bxndmS>E0D`qz@RGKX_%I#x|mnF#$SOMNmR{Y
zCz<z^rDlt+Qa?d0STLC2w9DAMqaQWLjpFvzx{VSIxnLb+eLq=9(a&xOlxJ=qQOfe_
z3ZiodUNLwKbMvhc#;bIp4kE<u{Lq!6)VUGPU4^1d(234k57cO4toqx;CAg4NQk3i%
zYN#N1+|}&9M!D#ux#$E*ND}?v!uZDe&5jAp5vaWA2>T54q8bs@S6-X;`+U2w7aP>s
zABUc7o#R{Ny>p?6L+=L0<O8(A-r+z^9n#do@b+HW>o^~-3*%Ar+Dd_`$*&j1Woj3E
z%bV2ds3=p#CmOuy$}0$_Fj<qceF8fbK6j2cj~E<-f8sqln{{|}Ci0x4)Sn*hN&2ZA
zurk<Y{(>go_#acs|04JJi81(f_K@&z<{te&DGQj&GOGWh0`EUL3pyvh-u+c`;`hn}
z0wDSLqd`kY`^OK{>KYD<tZ3HGm9NjsWNYY-hTcXtH&lyHVX9Rl)x?*Gihmn%Bn63y
z4hSGteN|mz{IGJ3^Qu{tl;3rMr|UH%T|Ev?%HTEb>75&69Is_dFUXBMcJuE0n<IRs
zWNA9Y2ck=*`wKY>b6RfU89%|#q553$cwCKyX8GILUQDv$<wk}1uCpf|ORla{;`z~%
zlvwwU6;h_p{ewZ7;PUqAh#pR85GRR-5@?JyN6xML%$J^32`TR1@Xk~{F=9dj$1FMw
zXpz?^Gg|L0_+#NNw(ylB0wP4w%I?D<M8gj7pxz9-h)NL7zV^jM^XrOTdlV?YOoHA)
zLjSHj-S6C>&XAtAbcc;pX4XoHrNED(r3vqhHA<=$9?qQQcMHP<8ye^4tx1?Mrm*f!
zXyL|B_*P|cY)P*R%;?|-y)kuMmP*`Om61eT4hZ}_5e4f3p)<t!^}-s*{l}}Or3G3O
z2DKo^4t=!T80*8i56oiqvd9U3Bm~?h48uqB<5uM4<Ts3Y$dn}cM&g0Jpw;gn$loVZ
znX+yIafi>+e{aD>S|pHr>S6e3hE>TM*&_G89hKrXQNhB^{o-;?h!IcnyVlT?s1}ta
zPUcGcp644OW@VVE8ypmlO+74M%QwZPExL&BHKr}v{hs>P(y3iQ;;ZEztvz4)MtAcw
zG{h~W6~TG8Mm|QaGGGL1t-2%Sq2RRlMP`9+ce8^VkhqDA&WmdVr9e~a)u=zSE=-5B
zWScI$t5+nvL`C;UjWA8mQh)78;Mmad9#l)tSMJhZAQk(Xg8TAPAgNir*GhG<#%_cG
zV+L<-iPfSO=KecMR)_j2GyL7kn;Lbp(X_`pt;gs5ORa2;Rbi}AtX^26G;4^CwKnMS
zLN>I^>63@SmYc*1?r+mnd92iL&dE8FUEwmDDzQW4(5&nAGUa+rM6;tIP_rv%DN5hF
z)yyX7Y3vF?g|_F;=q2%N>qmCfse{@x1RtI<H5e;an>-N394XA{T)fSgKp!GqQo$DY
zOOIMOy%yK^v8HnLU*Uv4@4aq~YjYmbaCsg+t7x&T`^+_0%UjoOS-)HJd?EPUVp)bi
z_NL5{@~9?U(OgGV)}d_ah_vpAlXK#%BK5(YyQzVr<6g2{h5eINoM9!#*Kr<eo&9IB
z59!qqZqux*H9Lx$oeK(*o<}+@cJ7fJ8nvi48X@Dg?<k%^d(JC935=fZyK{e0o?S|1
z?H&z_-3<ztX_0oC-ZN4$W-GPRJXk1+4;0wQ@IE_!XnqjIR)3=Z>H-fm>NsdDp$2OF
z=IZTL)?^jBaUnhv1J;KP)Xxi+8QA{G+7RBH+z%`z8Z@oyVufBcSvBg24MvET!WlGW
zN)dD3LS<>6ziPSMezYnVv>7HfuSqlIa4u^c)#e(u(dOc1P+4iA9z4|`_1D^4A#$vA
zQ$TaO6@q+pr10cLc5`CAB@B2o>UE*aJo&ws?%iY^`ib<`hUD(;ZaBgn#0fO85ovYO
z(~$tL_mfP>WAM!l^HBG4w72xE$n9WsS)xqGb;R;_-p|%<sS{FPR2msznwppxt`VYr
zMKg7Ek)iv+<NXKGQ3`ydw)}~q>Q0DJclb)=eQt&mAb|uh39xrXREu*!HfB1YBN3T&
z<yKat;knvd`EJ5f9FIY!P$D?>w)dt6qj^3Ugwan=G<maC!t|*NknJ(5c`L5aq_3q=
zo4HV^g6F0prG@I^Kzy(D`AV|t4(as<vfXC+738>LITQxq^B3L2dMH`){Ca|X{r>De
z!=aQ{TVWv>d;@QUQl!4~L>Uw@4`$=e816;r5#MX(EuSC5c&N7d)y2=q3(R1u)DUGD
zwJ%bAHR-q;eiugKF!yc%F=+scnD^>1LNlQQlsZU@)5Y*o5XQ?^DlZ52U3gJyy)Tw#
z&Uh^JaLz<${uG6uIz5}q!Q{8;5@y%AJ-!?0#Bc0e#LDWj)t}{uC_YXLSEb)$V<8Gw
zZ@7E_kJJ-HD#8@fObH$*fO=#GZJMKz^>H6E_1b~dNb>ZXyQ-jI03zwAvk}E%R!kTG
z!#>gty8I+T=zfU6-pVG6Rqb!Ad^m$bzmNSn=&`VI3sp7-RPzmoxG4X-@(Xzm7$%4A
zk6?%vh2{AO`r2VqIj0##s~XteDcDYJq^yE>c@CBR9a}4&=Phh=D3K(uhhgx?_uR6H
z9N$F@0E65mDk~U76_TeME5^awkAp=bRdbf3C7^VO`Rl-c%~uA!qT%R6Jg1zn2)i{d
z^}d|grRe~{n(7iWU|r?xL8OB1RV(I(6MHc88yd^(Ezm_oTzt$Ln{yy_X=*6bi^r}M
z@?n4`(4mfWaJS605HTNcol^w|7i1=mjpF`n5ghG{ra60sMO9|n1yiX#$)~c8<rACw
zbf^q89sEV%7=DPPY5bTg6C)>_IH$>+=ZTdhfi%o-#`fK#%rI+<0h4Mi<De-Dl*8hd
zc^a+N_cAy}BTkRGg1+O>0k8&R3qk2%l&BMu$>3WG@SfOKT=f9BX?ENrSN?eEm4S_G
zE-hSyHmi+=oK-ozW{LpARVJ;Iy{BDjL7fUdE6w-2lFo@Nan2Hh2)4YDm2s9|BMqp8
zYwsil@G1Om-}{&ed#3VjW5<pa!9~ge4F_rH%(tNc-2@lWmOVm|Lx0d?QSz+`avwIe
zJFgi1TIl?w1ze7%<@I#+5M5Xu@U0xT4^t;ko}eDf=czWfzhZPF*oO&L=2gZfMkQP}
ze_b)YE^r3>DWYu=IL*AHwjd5o=bO;{&+CV*K-7Z%gwk{12$KY$$9j?bupl>)(5tu>
zZqQEW1q50=0ZwrXPWbSXET}6^=^i`w5`7=;iu+u)vxD-4C`)`SA#hO4Ni|N&qp|J!
z4Mw@xIf(PO%d=Oddd`XPQ($C0>ReU)Tln;tcSV~sKFA9Sd+MUmahvnVOt=>A`ec*@
zg)415PGFvHNi};LFS%qWXxWLKo?iG}r}OYO^Til>YUJ7KS;=B2bZm*^Z2^Jjz`#dM
z6;oND$7j(O%Jeb#)FUwXy(ynH^Qw0E%2ECqmj&&M*3P$C?C%=S_4g`w&yADMX*9`k
zY?)sLX?5q!muB#hAiWU<Mqe4&JEXbxja~Z-25zWe=eI2R9tFPzg*%i;8DALW2G&4w
z(05r037iTbPh~uEG(%~vBNI*i*jsmrv@7tMnw?BGii`eYK!_d}A%o2l1Wn)_I`QPT
zHeU>Mot?-sba|j4dKR7lCc1xYF#a%?(P#OblVThc;(T(aO~rgW9xcjApdo-K(1(;i
z7@amSU|8Q_7EdCwQ>ONV5~$qlnS*~tBEG>D(&Z=JpqP>GGhYdl=BPdi)~C=#J6lKM
zV;(-hf8C3$MK|}HKKt6Rkqd$hrk5WM35-7dsIYy8<>+vcBjFebFX#w8Pm7hLFY;EK
za(i9{iy7Pp_Dmml0?`y3F$(wfxJHc+rZ^3WWUB22oj=Yd8zfg&A5PB~qzF;;9r{39
zRTcqbsCMH`mKlQT#WW!(w5zND$iU_8w<7uL*__2CtyG1uyEfpTR?06)yFOSm8m>fy
zRjXhwjA?RN-H;Dt4>|%^!{OD-wkMQl%8FXWu|(7TzH}XcdnJB;psb84afpX!QkE3F
z_(nFy$8}68oFL=vWPuK29U;#PXX&~Dv^OplIO^DMZd%hmPXC$xNryyU8Xkxm#bGjp
z!gKX}tT2P(8{1|l64zqV9grV}zUAs|mC3Waa>0i>3Y9+MUZ7q75>*gETkn$wx-8`Q
z%`Z%SWM<l+<Q8ArX|_S#-#S+Abi2CNiq6dG_sW>Bl?9QC%lho7qH%!^qCudQR&vKL
zj6?v-dSkJOB=zx_3%Yb>4FMsbgkXH11ko<VKQ(}oySH)bP?opi)}=r##<Eblis%^Q
zbx@Rd*hSlJbYbJL(NqalZ*QdCl>!HKV(kZN3=`icz%1M!I(=0{{y7q!>$HS@gF(sU
z`%DnhJ3FuNTP*n+_|IUv5Z|(9`@le`h}TBsJg;*m9^X%;0CS3d=AkwC9u9U62UHh_
zLAidEwu%YK{AHN^c<CoOLuVwF=^20p&J>_R_n)h+^nl~SFBm+4d<~t9laal>nV}KB
zvzenQzL5(+4Z`{-!`Y9?_S6r6X;D4|q4a|?)vFdSFsleLzU(mpd9!f={%97?B#QZ^
z@}^MKJ#QPHj6fbIU2XX5AtR?R#Ei%9r*)<-?7hx+^MFfYKpHZJAwAGIJ`QEYPHB+#
zS2B~gC(JSi*Kkp!`n@tU$j2wETgFu}oA;SvpQ0V`5f*2T2$@i|2bDKfnubf!WQ^`I
z=A%?}EkgJNV6*gm`|LoK@wCAj`p&ySttHrtKcZzD;jlpWF5-N-u!E?R8}3<d`*qkD
zo?|eCm4t#$NCIXuc@!Dwo3R+CH^auqn|ka{skG(fR(XzmysCj2oM>jcXv&w?a$n1~
zCCQGfLvaGuquU5HB~P2fH}I;rP3J4T%sEdyJ%1n`fjOvZ5CG@P#9wOLzaP&2wX^nb
zLF_MNjch-97O4svHpwp|CtgC`fWGjj26lp+G<B9?ESl6t7P(KYg7Ee2g%yc*w3Z9r
zEA4zjL`Ozky6K$_9xJ!-rbOcx6)BpUofjKd7#vi}?BkKK!c+{X`?gn2EADbhRy7O#
z0Uo>8Zo3bMn@4)zPCRkm<tWdCd=6(c=>l_4rJ|MMPl@?3vh>Q;z`Y#^%ivoJY_shl
zpP$^)cdd4`eTH0)CcO!IDYVrHmTciYs4p5)OxOpSy+J1p6xb$8W?Fg`4V#Q9Tn(-g
z7fr4q+wHUPC;g+NN&=OWQ??|&o_fq+tAq2Bt>ouc9O<*Bc~-;lX|eS@SF85K7zFH0
z#=9-z3H7Md{_OUyy!Y~GdW*c*grRm2V^6f|t?28rK;oDyc|kYJuOdKXB*p#8&C4^-
zEJR+<UYMhfmGgi+Xn*R6^Q)nrDHdh{i?q7?l!F<8AWSwjgSj|WqzYiG+Yw&>*f|rl
z{@$_O+gI1xV%`aLtnl`2o-51r*3d|fwJUKpfpv$T*W9~ExykP$k@FE>;g+#Trj4h1
z($GCXQqdxZsl<p;WomoKM&W|^cVGLRZr*EYRb!9wvFxYA5KZace0!@*)kN<nF+%_*
zC^iUkC4$B=E!ne`d@)wu!1v6u6^HiWRHK!#$?4V2sLo4oBp;^F^kw9v?H6>KqbfB2
zpUnio5C7M~)4$>VWch(tv-+R|5byx7QP=<kJj8TzYMy7D5QU5I*=^-<kA*5PrHRa#
zCWqbvbW8fTal(B0`nY$#tt6IohTeQb*&%Wu4W}oOnTuuq9H}g?2{WH+iR)6TRwT!5
ze`rl9-m#JwVhCTnuaS*87)Hl|6}bb!zv+4$h~4GiqFX&vCNFp1!^2+qs8bqkMm<F1
z8p)ZQej|o)AJa6bMX8poh~mg@lSkKEL)|b$otUat9-sF1)grH@o%msN&W8WU6_9Fz
zUj$qJuC1(O%k+nLEAy(a{O2B5Q0|s}nJ&i8v4?2FgXj6*r?=s?mr|C_YvR)|eR=+&
z(}X-dS8@(`ZohJX{>~xrm-%?WAjz-PCkDE@x_YnleIJ;0cJ#x=(YZzNAthmSSFeX8
zq-n_ehepHM#;69R^j@FB^@&nT8?6RNWLQ8OA~+6<Ne<A7gIX{Nj`u_o2bMB~@b>|_
zP4zkX%$UWKkV0gyD{&fUbisY2v$~qsCCh~kP$D%UF*EQm0X`c7QaB4!{{^pm2zdWz
zA5H-H>u)}siSC_^m93GZ*`F$aC9>n<0AW#&S{=J@O;(etQj5gVd42*}kV**9TS=A^
zH2q5e)S&s<N(+|k*?gcUrm>UpRiWrc4`*pmOzM|)&k+M93wl$Ovs*@~6C=4Ae5MRl
z402T5c{AIXqT&*MEIrx&l2XtCACZW1WYjA5Xi`g`OhZ4GpoPj}AJnjfK2E*&B=plj
z3{?;_)lDFV+n=rb(7m~Uk5@`2iNAmTP&7L>d$n8Pr`u`4Pck5p{XHd;jq9No;Yl?3
zDW46;vmxDJ?=51am{Js&z#H4%RQ9SwwiZkot}kSQCG%9!H~fx}Qw9vak1GSmSQa-i
z4YLZP+zPcd1DS68E*5^lJH)p^)(*`2CWEEu{y#a)9p|L;-~n5%9Ps{sdAI=MPz3bp
z9LyX6`oupuKYtzR*QLt+v7AG(Ll0a(a2gR^>x%z1t7FM0VgoV2lFIzD=)ccza{~VQ
z50J($Jw$+_HXw5U&@^SF10d@Ez3xS-{Gv2Kp3c+y1$IOTG!V%w#Q<#AhEgFhE`BfH
z&_Aa7{;<y}6X>X|?1-3IQ9vL$IAX`icx33NeYhl|sOk~<@ezgE?hU9)G-V%n8{hdS
z(RMLXd=l-it1T<;+rVgkWvW45-`%;Loy#w;U&G(Eq*g?sG`rwis(<p~Dj5}*PKfQp
zjLKTVcj|5Bt(+K_?rzGYf>L-&*g%r@r9dz>KZna;$?816-FKX1O(oNN2)2anew2%}
zAJ22Nr9=TOjknl@6H!OYI1Mo28>K*b3yUjVN>>D@x<__iMIibxYM_y1&k-$D8oh&c
zsuEj(BQ!4Cw!^OFWn(C>gfjLxxs<vF^PU%7^V$&U119Y&4iiv?R@)xdOZKfem;>vt
zwE^8TtM99cZQMGvi{|a~v=ltz*X0pM(n^n*_hT(kOnKhdztNm(weZqLU~!Y+c_5EV
zRGJxpi7_mtlEO|+(4v?0)`;d_feF^b5!7qmYAfV#0+K2U^L`Imckpq9VC>WUPy`bA
zi`KSzD7kMUb;YZAWxSr*pyAeg9fgq!4@Ez^_T^;jo0A`niK2=uxnh8!{;IY8xAF_d
zpChdb|1bdHt<X=Z0N_g=hA+7mB@l4UQip;O(xfV}lVQ{6azJ)b@v+=2*K?lBknu`$
zgo6pnGi$(;g{LiOXWlEcM1`>ACWwi|g{S}acvGeAdIU@jrd5yP?a{T{)qMZ>BAlPs
z$s!~n7+o59vI+@5{7q4;LLPCYpRVmT+>zWaTx89v{F(Kxa4bi<Q9UtR00rR~4m>h{
z`MSR3nfhu+m-=jImPTRWwycW!UMnfOmf%M2#phVJFz;n$+^F<Jd9oaAU(_ww1aT62
z9{|$*Fg3fk`_VJ<1?#?A5WTagdre*rp$n6B3L+!smHZL7W30RLy9h~kt;SvtHRM~D
zT4y_#{9E~ren>47XpUOi*6f0TXl&Qh$DofNqP|BR%=j(pSv{`WzLHnsFcT{ljWh?|
zVBS-KMbE$||9nxy!dRdJHQGQwJIwqcq5!V@z*LM^Ph0vR(Fv>Cx>ek^KuAk6lJxx`
zH&(qKGW>a<(}h;m_n^o{%2n@6u}kf#k$CYt@W|~*nM*#5k<WQO&a-Flc+bJT938z?
z(2u~GMNyw;8zWx#GBF**DhR(#@gXyJ{dz^Orq8b`?}>Yi#kzCl9h#!Y;g5IfpO6dk
zwe9&w;6QOdV}8M%75tJ;{0=!G_;-Or(a6Bm+Q!nx#8u}<<}e+*^b$A%%Z?Oa-Af*8
zl4`{=y)&Z81yBM6=1D&~8CGFCvwgz%d%cEyM{EtJc!XVFj?U?^GnAr-uExxy&0-_{
ztzq!)9hyPqC-Ho#?x0EX#`r{XInsQSZ|lN)(AwB!1>yrZxm)pZny7vsVO5)j#>DaS
zVGrB4P((?yB*m<KihWU>$rUS9uvZzu_&KJ9!Fg7Azgo)?Z8rO{2xKm8G!VZ-gEJI=
zXBLGO@kE(Iw=eLq(?#D*q}KjbT^mZ&n#I~fN~*8{3&{-g{4Tl5*M}l@=-#LAPEYJt
zF!Z%Z7}RPbmqD9}O5F$x60A=<?T^X~R~qm8W}Md_DZ{undxR--Bk18&zsw%Nf@?ol
zE?qXV&{G^K@A+__;bxXvFhw4x4=qJf^x~<VWSyj*#3+@@qr48FBdrHCqu-guG+Nc~
z`MFHF-2cc)-ZI&AO9GZA0RV9NXV~FZBjE?E#-Fd3PSo%2-3TCG{W7)4PWKb6{bPB4
z8(T5lfv{5GVgL#>FZVTNGou6OjBczgBp$_r19V28VgjlswBv(QMjM&{+={dtR<8ZE
z)7@t#7vClsZyW0y#74ko<;y9Mx7sz@u8E1&#46S>@5W9pzpk|}bB1hqoosXoidVE|
zduXGA@^8?=@HZ%%z6##xqzC;7$xI5pW~eJry-R9|k{BM0gT9$!D@B~NNLgFlB>1Im
zt8BMr4To%x*1t%Gm0(e{xL`FXWCAJq4O$hZH&Wlk1^r~6F+{#VJ0wPvkjU5q%lM75
zVSpB6C9B@<cPA&M0y%$WP^b?Es@11-vtoB!$tktyyeF2t9GOL$*{@W?NQNDw{A?{p
zKCpWplf(FbJ%9>Y7CtL&6<3L1CXVlNW?`AM-!s7}gTm639qKZtw<|Cy&=qJLy)3_q
zD6$H>Hx<$u#@F58U@r;))5)tZ&!RP!Mt<EO)cLkvK+jP=-6AT($>J#ktpBjO<w5|}
zlbQTt;foU%P8D8hm)xstJ!WW`tnuY*3!N%#*}8)6HYcO1CaRUCQu+b0;Anz*R&(Xx
zB4CM*$-)+DZh9{8=Um&UY5&`Xw9rNN$<y?<mu%1YqzAGWU>W~2l^F`aGJehW7=N6~
zf5}0Zy<b|A07~hX%wy-FIks!4d5RE_f=KT~45grGz|l%eCwn;3m;wViy@l?|har~N
zLWtS-JE~`ADQRHeaJW#Acj#bL7!0?16!7#|6)2@hBncJcD5xd)hs4~l?Ov26;9710
z?|<6y?=I%Q>8Sp={9ik&e|whfM@N;Rp1AFYX3EU3NG^mQNUnc&R5h~%eyHU6{c;Px
z2h|r4*PmPQ---Up8(G;n8Q}w(tpEmzKZv#1e^yH52VdmlxqiyWTk&xpf{Lkii6-^<
zEOH&<^U;C7vmz!$p^z=M$lYyo788#;G5{6zI5c%Kb|!PCda{_*ej|0(ke)a>&aLPM
z*SWA;So^L3CR6x}f_1n0+)Rl&+%tUEEcQqLOf@&wkhB`#j@=c?FL>Z`f;@1qTl-zO
zLU;&cEpmMpb6ckc)Ec{r;(N@5ZL2cP_Gh4}?=xQ*PZfRg=~k|VSalEsu_6&UBoD9>
z^uju`%eOlGfUFj=j1vYfW{2?mg+z;oS?H&@A(ZA~@0uZe8f3=;4bW-%QF7tNrmLdQ
z1thGR$1gg{HCIPr7R58p64~6X<)k;%IFg8R+Ju!fV4aC8OhVU*&pyiuL^VmV!UH&Q
zRM@V!vkFKoUQ=u9ZGPxWU8wkY({(c_P3Lx;)@VZNTXojq%`>z!f*atcV@BP0{Y4eb
z(UAfps@+t@6+!xKjC=SAODu#Vk@mRb$=e*F)J#;98tgB@i8jun4Vj)T3rEMpI_zyV
zIWn;zsgA)lrd`O!YEC98O!Q&>A~NS3p;a4)#Hog45N8K`jWD~0;wd4xf%$GlmSxi#
z0G2u)!V^lh{v-h9DcHkJmfs(gr&VnIO(TFkn)^Qn*8jrl8Gew3{%Z9&e;Y@DUr$_-
z-&I4+QuYEQ`1j%mSjnmh{{%1+PXZ79b%OHuQ^sGN4abjxT&oWnGX8+1ApNt>_~FOa
z1nLl3^`vTfs!$efEKf`2#2|)4lJe@Apyy-4nXxXh?X5$$os^aVi#*=z{_d%fY&pc#
z8B!GzuXbHprV?2!tXw3x^L1?_dUke08W*Ds5B|AaHObq8;2ff0Q#+Hy+yPsEUCeDQ
zx3w|2#1pV$kj9JzuTvU<d9zs(TaeHtROlOS7;d!kOzi4D^*MN<WX*09c!J<=v-&90
zd(rHz7z-HW^U|C(^2~@{z4L`OmxKuQuTFE1&!`j3@Ep&BX(pyO8bD_Q;%vD{qvVc2
zGP1V*;>sNRr3)^Jv{y<l%#+r{o^3m=Es?By#bi@e{W7u_a4#+!X{rYo6kraY0Pp|o
z1pf=9GUHFdrHg+Z3@(QKyY}#piQ4Hu@XB)~%ybQZpj#(@^@(p@eB!SoE@4BhoW203
z_dlyh0T5EZ#~~&<Axk}do1dfqKjjX7iAvP~O5fR(uAGOguD^FQo;&RG5`S^lFK-DD
zP?T4YfPcTo9OmDz>_454nc3)mGS&UO)|yWmHVZFCJzN%|>}8ruS=rKxOoWIJN}od_
zyG6t3g1D%geAAH|@|?y(d+C;}*dreuJ=Qy<_hIL7^)QKj;`-=-)b&x-N^(qHZ?pI7
z;VlDns%r$uN)L>o0iG7F`L`<cdedn;yTc*nzN9IIO~ITiGU3HE3txUYMxY$SBbJXY
zm;q=vTbA_D3Qp+Y+P%)brdv6@NHk|}D_f`7kB#RJjvWGP426YWN!{w*B!Ij=zaW&w
zS}7f%0LzXxht*F55;Myke;*D`JNimdeUCP&bsPWq0v01qS-u9H3?i9z)JHnI$CG>b
z3o0R*u+@2*?rSx^fLK$EMpBDLO5Z!z)4k{_3f!snlsZz;Hqh-;&Cfl78{58koWxw2
z@2j-G)#XR2Wv8J<b6Kv)z&Udn_a=iX`7?S*=bPPWqygPee6XLZp*X!uHTha!9SeHz
zj}t)01=2hr-Z2?FAavfxq^quO*04L#Fn0!f^GHU%CopGd&?jFmwi~{)l9X{<2byrZ
zLk&Ar=+nKuZMI7s!CFAb&;b+i%>e~2f4`D6UE*np>{~DeE2z+{Py*^W#~UfDWWT@?
z;SOgvmtZfIZ1{%Op|#Sv2QzpQa;hNp@yu`hj!)|79EM3Y&j+$fimKz8h2)GVRBt^x
zfLr*M!f_afFJ9w{`{76P?^eq7XVSvRPEx&{>VbZ*Q@1VzZ_;hN#)OlmE~Ld67ml0u
zoW0Bul^@e2wJyW_!RBTE`vUkT=>UoR5ahoa<nKB%FHIIF+dpy$2UES5kzzYlSv>=G
zS3z2Sz)N1#n%2qIfzHs#QP0fM;YG0LNXyDOxgP1s%NwjWWl}~ejJQhz$wVf}dNM^S
zX_?u|`Q$VA6e)w2rRKXNWADdlm^q?#b{k;MQhkmg-9+C+kq_X}rz1AJ!3CE@X`5oK
z`%YtdlNIZ7bO&VF;nq8o^NW!g7mLT<PRm_FaXGigBfWl}DLKK}7eo8Kt~Rj|FlW;;
z*@P4m^(z&zUUf`&UUt)q&0bXvy-!bzP5Y|ZrWl>--Iob_t|rbqsB@%Dr?;!@2fcg8
z(!2+1{_G7HC`<5}`m<idXVXo|MXkh-`eR1{)~Y49Rf~3%w`KCJel<?c=lsl3^N3oj
zPhJ4Fob0D|;wBu87V*#?|D4ZwBpgh}oa=#>#mxvBB9<!6kRJ<<LeY&XZ6MaSm^i9q
zIwkt*d@Tcn)>eeOgiFaE?n4&(kOOUiZdsuP*B1FQBU9D%DA$uaEz{}AL(prJ=H|cx
zPdk(qu-%n1o6Fy~MuN!JGvF+AC87?|AQ~dWhOxWoBcr2O`^zS~WY}VN)rq}=uHzS2
zd~Y0Ri%nap1q;0%SYj;g#81#%K0W2cElW;kS!2@#M9xEJ`QB8)L^)yK{v*mfioc(W
zUQwu&mTZFfTU7RuN<wip2Pj0439w)|9mubcHx8>?{j+fd%?X-4IGbC&7q%uX+)InR
zoLsJL&W;cF^LuMgz1BNDg>5p+t*P_qkvm#DPs%#OL);zT@4>05usy06v2jGYzpg)D
zRUvMW%v^oo7RIA{lrnMG5nanWAwWkCNEtIgu+@>*Db0e1hO{U545cp;rMU0SJ@O1=
zV}Q!XyU7#*9_=-X)Tm`+AtzSx`WzI1^x;NZRA>3y@>E8(v%!a(on;!0<TtC&wH#7W
z?Dy%~_Bxqi<R|CGbW%MXRzo`Ey2*>W_m!R~ZiRi+_G(i;mH8bd=pRkv(oH@Rtc>J2
z9LCw;U(DG#h-Xuh&huK5T~JHi%`ES=A6P>uH14Flg&47Tf;)rKQD*6uzp^MEJh1tm
z#c)9WRyiqRJ<>+4qp35BMKa8#GKSPr&57td9NWmoZ}aJEiJem8A*yqqrs!GgK`z;Y
zz&j<BN34%>Qdjv<vf)5UwM#_vg)SHLtu~|A9cv<`rxLmzZJ;aerDvW+t?0TtBHDLv
zFjv?%?iXWwR^FRrF0j>4xH1YWJ-G_vsGx>sps0ZisA|ajr(zC3otxW-TB(W2&0y_a
zWD!?MV)`>~bR~ssC-!9EZTUx<GKQ8m;f^#2*1s#peVxTcyW}mAUrvy#G{4#`{Yg@+
z|3XtKE|PD?r;<nB{;ZharB&tQAS*r<#Xy;`_*80)JcR{Ot_c>%JMjYvaj#WHNn&de
zJ~>ukz!lty_FqG>L-DaRSb|i>W<8kap!i5<#nr@2Fh%+j<X)1HNV<AsKvH%9AIl0W
zQf9?wfntrWfr8v+k?6L{8Y-qShKPr)moYJ6*0TXS?~klX7ifHx2pAL(%R)Sk8(Nj-
zR{!}cK(c=IiQTCeKEqLn093XytIzx`)SJNQ=}ZC5ulr$yMVMpQW4s9)5-Ae;DyZlP
zO@*eQp8cx?n@;(<(Dhn!u)A=(c(8YTDFW*VgBLU9rE#0IMHFGhc@W=yEp>gry5g7V
z^5qgct4YZjvVgdO+<kh}Hdnb-pN?X3Hrhcs*JiyV@i4tmzHH=*cwO?ytS7bdHuB=o
zej*&54abh<48!63)1ec&jyBV-_#w|KFj{?pm<3_mqKZ~+0Hc?B)3!)!dhYxtj}*2d
zkI9s2sz@iX5yTy7=)|F4&9}`J7q_`G7u4GPly7`R>K>>rq~;Cvb6%F)cBL1(J>Ae7
zZ&`YTiliHY2vkA{s?yy*7x!DKdBjM?dK2-;b>Csgcy)d3W=D7S{emL)W;kY`WhaSz
zF|8QLs57Q+sWm-R{TR9q54$rah)5-z$Y{MDV@y9~IS%%=FQhjnlksgi>3}e)1>b!1
zniUAONml$|<xy`>^qP2#UL=NgPB*K!&i2`6H`vGdd-x<>8y-c0%7A;*_=Ko>KKlgn
z=q+N3V$m*d9u&C?yZ4ROshW|;1EQ!W;;K3qEzHYSpMAdYB#W!>)@_wz9BWY=14g*$
zpTJ=`$0ldPsgBPbd+p2_360QCW>6>ig3F!@9}M)IXI~+9005v&9FW^fly+$ff+HW9
zTV%Klxi`vDgUcJLrdBb4H#;h#OSKu{f!s191VRk+0|tf8Cxd|4*z4c|b|CK=Z5xfp
zc_vkBR_sQ?{WA2B!8#vD!|%KCsX>E*iL|EZ-rNIcz!+^pZ3Y$YmaqiaoVX$Ok;j0@
ziwAt)iaQF<PW<k!)l##t%JQ(dY7}kWM~jhAME8+=$0=?sFbv~SJNGrf>Pl!5PH;q}
z_?$>k&oCfLOs*wDC79xxudFq!*s-mxPa7dgZ3Pg=hlYVbnG|hbwZo#KP@@kOd79-w
zf2K3|ay`-K06SY*8kO(+)vYWlfiFQiV;Zz2Nt-!YFz5BqR&}#1{98Y0yR{bF{62FF
zm~Bon&wi7EzHKea%wtIh3cK;tjAz0>zAPYl5GoCWcvpVBZ<q)0bs?_-U#B)qynE3!
zL8*B@@2G0y_k`0~Qw*vF2Rf0Qkqr2@uS2G0`oiIDMxF_VLf<wnvQF3tur7ivage_x
ztt0Wc9lDXLmn)1YzhjHDzY8eNBOgItyjp;(4k`@@Lxb1WP8sU6c$ZKll&~CMgO^)S
zbG;VLLNkMK?bgCRTEYY#H|`mtut~Dt94EqPk_g%0A*TR52C1}Fpf>KtXtKwhziTj(
z+tpA1MQ>zUU%JuAGYVsO(}6^_lw(Brw#8m5qFRoW@&fHS$WQM;0mYEq;f)cY=5>tl
zfTnN?tP$3LCe483mpDvb_E8kJ{P!stpV_*!co=f>0y1t31{6-B%E(OOm;J+dMl{7!
zU`?<_G-*b<G-keVrKyU{3o%w|3wEB>){HU@bK-p?GG&_TO46Hu+PCNE&am{7b={9B
zy383unB~g(K)?7pMo*$MzNkCiP(qBFMmVt>zm_NUjrz{VU40js89`N*N(vhy1+wN$
zggHu7FzoG=&zAatEA26Kz_erhZno=Cvx_{9_t_oGyDj3v-7fD-C?mIR9)uAdGdDT!
zd*eN~%G_X!Hxs>|tRQwjXNfgDYI>w;MSYTaJ;0*$$;%_{<aKPEH(a0D`KJ<uXYUA1
z`ozpNk*80c<F2IFK^&n#(*Pa2ZXXk=IJ_dIH+46-@^+iWBgZ4et-6xY8bZo~6!+B%
zCHnnJyv9e|yMUCa4?<eFbQY#`#qzkKZPGbzI)c=W8N#Kaud7(#CQR)KG1r@O3j{9E
zFG0S)9>=)f2-pz4PjSHG%U11y@Ys~-SR>+DRc2&Dy99mqY{+6nj0%p6B|(h3NU;vV
z)#l>KtBT;@*CN#BAX4jM%`_Tj2vVk)PFVgW%2eTY2TJuVPX~A*iyt92W=O2?#kr*0
zjHrg!#4gn|oRT_9v;m)yp!%lWqHKG=*Itjxt31h`)g`l4ZJEo#Rls90D6LRGZDGV<
zy#!rXHtG%h?TNud(D=Z&1s?0*oU6{0DZjmWQo|2-*xDhPu?nLpr{kEf`}i8dK!s~B
z+f_C+-Oy@L(jh^<WhOqgr@Ux>NdIshx@qnHVGy?IgqJJExndHYsMbj2!Oa3DVlEzc
z$*U>SE#2CL!AmYsNBuj#*Ru!VHES@{Csd89joQwzl6f=Ow#Fmso-&2C>+@uYQ}^@Z
z_8ZjK1PMpZb90x<beevt+b(jK8X8WH_rq30(ztE8Ur&<1HSe_Bd@y_v9_$^3=vCw0
zuCv>GO!2sWe#zGL367p*0gx!*FaMgY|9*V@Z;ChnrerDkcMt0n_{0_LFA`Kkzn;ut
zepD;5u#(g;68=<pHd<a`wFMj}el1!4e&G1mlBEKGjnv56zzAQ^OwYt#&x%2ZnNC^H
z(#%lL(FmX4zyKh8j{lRO`48ODKiD(FC}ku8?3wbS3S7RzzT$?kkjXBE-!@GpkvS`u
z_*sv<(~pQr6a|v{-i=%zG~FK`>OQLG>3KTY7Pc+AAan4F@-t=WIws}eZ;`KA=t`p;
zFsZfgj@q8~ffa+Ul*69DL4Y`WS6_&1oY|h56%v8bwJF3;q3X&Ugogn-gif;T^CG^S
zxOlG0Zx;$&cpZrd)|@#CR;lR0fXPT#Ua1rDz{fLs9(kaN%*s@Cs&slh<??f!$h)z#
zT#=T>(_!2q(@4k?Z)2iV0gK}Xeb~4aqTwu0h88+6Y5(9?_YpZy6W;L?)nNnpL!vQd
zuUE)-SFwr9=Sa!I##awVPx}L>fqCf;rS6QOWD#*bsZ8R~t@e4Wm&99O=rc=xN08wq
z?a8KM-Um?bsm6nePEuz=;*>%hP3enf%p^MHAHK0R_n5j{-?$pIO>>^N*UB0z&y%<1
z=SXN#n7uc5Y8O45^z#tbwnYhe(nC1Dp~D{Y;#(|SKhX-f(_3nToHb?&_ha0RnGm!S
z5rpb66ap=;UdBq-V1+mi&Pzdd{Sx5y_NsL+=nrkm0c=&=3P1_U{C})UGXAA5qVM2n
zuV>(hF9m=MSn9B`(EWqf|K}j`j}m2IjMj^eO;A~rj-FdCn{fn16+IFotQs&OJIh&6
z#L;S$<H3Y7B*BC8HDW7a4{3|*{Z+~}m&v(VXy5#I8~5%+W+LH7<{ga8H+}Szajsm7
z`{owWYFLzT=Wu#Qy|k$*-YJu{{O69UF2aO8U;=Aq%rt|R%txHPtiuaq_cNi<w2#m#
zkd;%-pst77*a4QjcN>#Q6xlHWvYjYsNQy`yB!+R34$+yyF`o(`)iOIc?5D8nrcFN&
zv@!H`<LB-xJ>GT0(FZ=N40@I0?zFNF%Oir&F_2&Hy=Uh_#50&$OYz5!TemiePB!0d
zD|}lLucZXn1%oyh&hN^SC{C|}`f;QW&vMFF%(`M{dWu(o5!=$WHB_k1+C8Z%>mdDJ
zUwBYtK-gVpm<cHno&jXfY4vfL^J;s;x(OWqVDO$d;sLw&_y@%%HFz+Z2w<7a02PD(
zT)z6Rs)au$;D4<a{%r-k->Zcf`D|ni6m8`Hn1^5b#V=KX{Iz0uadO@s2(YeSC5eA8
zCbRr*f4}Q0{f1rxF#7(a-~L^=n)ZG85n+T9|D2#+y-4T*9MLf2<l;WY<1y)w94R<3
z!F5y9%F5N}t!;N5%@3WfV&oe#Q6|WBq$h>J11#te;5N#$0Z-Gq7pj!4>?iZ*DeXPd
zAWROqYM8K+gz^MNNu>Jt?jpL)xvzInpQkwepKjRB@}a_QcY4+fr1}=yBQb;xw^HF0
zD&(`hxO1(oY+OEzRH=sR*EAZw3g)$Lis&UAH729o22u_3StuSailIgmo8=$1qvn&f
ze3F5-8eFC1>U#`38Z9W3K5S*qS)o$ANU8Y&^WYyXK-mU7CW~L{$x9k={DA-b^YwRN
zfUG|@v(<;C7oisb4Dcx|=F5=~xl(eiuxwLBWIs=IfhT5SOQmB;409>=#Iq+<>3s(u
z{$`rP@kvf97p{&sacT_rH4NrBi86Cie&l#zJ-MQ1CE2NB*g%F?oT`pdN>W>1N)Kr5
zR^+s#66q{bNzX--7Me>jx|`QCKE}~d_(aO~x>Od=gA_Bge`pJn+Ik%gq}rH)bmdH8
zb%E-s?}|#>%!qU6TuehENYM=i(A=|udt^TLgz3V*CZ5kH8uCqW7QAx9W2+U7;0A|^
zS7;SH%P2`fUlTnsF2T^2qg2e2Pi@s6eNs&(LUw>}sY!>)UZQ?Uwr=Pt;MrOJ@=Sk^
z`v1+YWBj4oNcFE|q{aU~mB8uPYx1d?I9@0)XMf#uuU_`tZ#v-0;NQdo0QVISc>gcG
z$&a4SuioVE@@e#QAm(uWLZ{LG%dIf|;MBtUjZTBhdQ#T~a32x>+k0X7xkkSd#{OuA
z`(!;7Pi-RA4W;1hJfu7j0;Kn*aDIUDG!dw%nQEHnX6UARdy~SMC@R=law_qsmHPpV
zF91Dpx+?1bC@GGG^)Ey(&I)CI_JBJG`d{A#{f`xK_}6X_tis<-F#q)LOmrpW6))J+
zhMa10mVX-CzjN?d*onz%30Qw7o>%mnxi4(1Nx$6N@4fQ>tH^@F`=1%-pE3(f^o%;p
zKQqri<z$4Wzer*AL75HerseA@jW>>>oP|U<m~m-xR!Ys%pRG7sk>wsOqfwmIob)&B
zd^<S%eo^K&sfjCdddomL0^W_hqigj{Hm6Pn^N1V^H$wU?w8l14r)K|ok7RU35-KQa
z;zIj81CBb<OP<7YQUd9`)cbTes8jnK4ImE+_KoJdGfiAJ441j-9S;$Pr76$V0W{8i
zmPB+qaq%lTJmY&xbUeh|S=|V7J^9(MunIWVfkn^|;MEr9^*!>wZN}hYv<7-s#$RQx
zai%7en8}`jw*~l<r9B&g{|{?#0aWLfbb%(gyIXK~cLD@=cXxMpcY+2dxVvkB;7)K2
z1PQJ|gS`Wpx%ZNpe`el&?^K;CiX1B6`M%zJcduT(R&|+X;8z|93cC7fQjB(0EM=&>
zX4@!`)J*VNbhxeg&Y>?j1S<?Bi~3DuV!#q{#%k=6jEvR+o*2OXZ&ukJKYX5zV*y7i
zOunHJuXNra`O5Ur#1s+TntPNiwpqu2J(qT~+!`={QruSn?h{__3s(UW@6Iu=gclUA
zy!jQ$IBFBos+TGCNVDHQkHxWH?XYrc)Ct3dx;a~`Bh~7BkM2lEWD=FaFM4rQUDfWr
z651i&F(yXurWHQN(4=Sj$IQsHsen7`xFeuvgV1PzL8wv#+g|zdKmuMoz#z2O@>`^L
zpskl&*Ramh&Kn+_x&G8FFL;rb{!VH~1w_<KLJPyM@Q;d-vH&!hgU9zPAw0~pQB<T1
zSfJ!@5ks@zu<p`WZq%jZRP4<5fIWKDBb7`Df?qP;wv7zeN`FFI_;fbjZj4uA5+Ogl
zBuXu(%$9uSN<fH#i&7))N<g4PcwihWc%es|*C0@1_?6x-^aM6rFWDLcJ+e5}T#}Zn
z^EN>vmg_tq3Bs+hb;wWRBn@33h>u}~`J%c&2E!s&mRm2b_XL6=iF{H&LhV~Rd7xy#
zf|XKoKURuy{szPCq0(2i<GnT=X8UpBN0?7A{>7y+3au9t5MdgyT0sGgSjnpDb@zG7
zwwvl6ftK$mISOL96sB}8qz66bto?)sj%+IPDsCGqi4yKuz{u(ne?I$a6X?U&!vJn)
z=Zk~v_blrv%m0I}@<Q|euf*Wz>62eGJ-=vV0E6BQdKm8`Z_rfNHDb8@e4{D+P;+`%
zhNHK@r|dzq7P&@ZiQmCMPgm{YKP0a3Xyvm;A9_FVE-@^R4eL3%p=>zNRSMs;GkA8x
zsMPQ+E_xjE93M7H^G|j19lA;66HM*Bm)zwa|1t3G>lj;TPUaOb6EX=2@pt|e3R+mN
zw<<#SzH2w)xjP`^EEvwE@(3zGv%X>`Y!SPz5)#xRr}n*E(Hr;IT&IH^>qW4pqY9xB
zKmhk9KQimH=GU-8ilCZA=n`4FSi_OHO!<YKvhy&8#`aio9mvL-0?3#9ws73Tu(;Eg
z`h!6jRM~ZhJwgR)L#Nx##UQee)6N^8@iQiKNQ*LKW~0hJ*~ek^G?Hh&0h!$eHJrfE
z+l2A|*iwCwc2<K>wiwIaH2^IWdx%hO@}Z0~*F08Z4K0biXL9o4f<0|!u@lxX$Cg|<
z!_Xq@USce8=%?1#XjU_FZ>|GM{H9^r8*FiFmR9?`*jiClIh&=8dM$93Nvkjkm$Z!o
z<?L1~k;xBYesHP7!AW<R`;w_#w1lREJ@G-;nAhL%aqvC{c4u5q`#B?H<p8nebR)Vc
zoK?#C#5##SAl_6KY?Y;Bmn-Yep<{Y_J~ItT>(@vp0I|~iV)^}^`1~uy<CjJ`wA5d0
z>KttVhYuB*j!ysj`ZUsZPu%qRU5@zwMJ$tbY&QkseI}OuAd%1bh>KoWz=Ce#Y3(g;
zF0E>8?p9r{Q}iBQ^H0z1p43t_KoSEELD6KQ^mK$SzBp!nzvlk|qG5Y>6n-fb`nMsP
zKTgoU#i!t6ZL;tKe4m$mir+DtrzY_~*X_T<Y+jnQ{St-CkY9PS)%KBo3@?#Mt0N%W
z%%%MC4zyIg80KBXJT~Ll7xg^n?-=6A0P)Z}M3fdD8hQQOqqEx+Ts^a~{==IuC?EIT
zSTVH(b2FJkzHMpy<4K`S`Wi1okQ6SH1LOokwdtH7Q~P=c@!e&ySk-w3<GeB6A>J@^
zUz4h_hVtqgjXpcDfu9eLzfma@q3+Osts)P^X5o|{$m|%E{h<IP2|abe2s~J;2&u#d
z^#EbtCK=MrhP<(953>%9<cVx%9M@e=zl8b|$Y>D@P4r;C?K5C@WtW4#t{J46L8Edb
zOP7K;(9v>A10k(EyI=ZXC7`H;Nr~c+_Pb-Q8pX+Rq8U}zX;^EzLV!CK_^<{Dffj~Q
z`;09#5?2DbG!l9wl6;_4>J4ny`*xGt4>`qDvv{uQdd76(327QZSCM>|>T~=q1Gx03
zF;P?Z_r}e2-#cA&3#y>UGV82xGoY1=M~mo|_euFTT6?3w{BQS!+j6$Y>I#Xv#&J#R
zal6uj_B#qav&9fgG}I0C_F?;o;kPFe0Pv#%p%jwzcn;!~XdRr1UcXk&-fXs~^m?6W
zf4>_i@4z^Zc?Ujuxh=Unp&UEOqq#HsvPa%^=-phom0B&MI*)&vuHwlr3DGHZXR0;8
zDxQ9^ihrMBdi$5?c^N4H(y)Vri;X?Nl@Z`c1W+(H)3bE=H6OzMa>^+&PD%op0U>yM
zQ-p#fiw}RTcS^rB2e0u$H{aW_G^d@KfXgX&;oaF6tH<_M%j$&ye-79|?(sI@*S=n_
z=804qFcwX{aC>J`#_ZW8C(LcwCqv}3#bk1fVq>fAO)*>qN|U*)vgWLbuG~>wGYcnh
z#r%fy?^F38uESK<-jN4p6a*|^FCk<Is#NM9pE;gzEjq@0yJLAbHzB7zbY2JMay+4a
z8ErcqE&e8@KA#m67jvZKmA{yT_yQxWucAjdNojw9NquE)yKffh8?{)Q!K6m1;2)1B
z$s`!5;ZeIeMx4<cmEu41_~gFGH>K}Yazey2cLnjMvDv(H(>{Bn#cEydc+)RF)9?Gt
z?cixVbASfi_?Kp%zh}Ihf4TAhcBJzq`RIwkjsKMMvOj0|e_AL$<-ChA@dcf_nLD~g
zqPSW05N31(^GQ9Q>xudk3Z@>o=A7jhkE~*me3s)K#+$Fg(~j@1N}Aa*Hhx&>%Ybd5
zt6)*hjfmymHkSE5#25y|Gq~7OXl<y#-0hO=V^eibdO9vjWJU&kPDQ8L3DJ&=k-2ZT
zVa2+Ldmp+fY_Vo-Z5=foJ$71>ZI+3+T()DoGY86kIRzohheG{IPN(BwudIV$h`LLi
zLRV9%lX?p0D4)s%jv8Z5(Ke_U$fuV&F1^2}Pue&8h+^k+;#1OFATNk5?bQULmOv};
zCNocdTNo2NG86R!WEkJLX0C5RVb?*5AcvFgmT7d%5tfn_{c?PsABk8kwI(ShhdJ8~
zxiy5h=gJ+Gp%%sLfm&P7Kq-p0Rm}Ck^$%q_&ZFoS1Jc-9xX+cx1q#P-`dxIeXgt?b
zmaiRc2~rq)bv4{jq}5}&Bz9QhL>y`6Oj{gqr($O(fK3wL6t<R593|TewYsyUt+aNy
zdfSL4y?e!D2``~GEHc7qGtO?J%c5}Qx9RZVyU5My2|eG}2pPg%)~v*0TfzpEoV}=;
z3}u^5;evC3YvQ1|@_0JSI6@yf>fNtN;71MKxN$((yp;U?U1OK}FJbd9TI~N+iTnl2
z{|c0ZfA|e_R~9v?=a-9<!-yvpV`?cq`z8(#iAg{ECYq&6-yU-{#G^Ffpr49FkGtJv
zvPC*?P-aZenIJxR&pgz<ArY5|+pC{{bu42NN$zx3xLquucts+bQ@pm{5=h^4;C6h)
z2#l#6Y5PD(yeWU+isrrNmic(Ixx;}G<^FXye;Cz_#;j&)Vr!^~60?}-0zWQe5+@;?
zU9UdJJQE79A}yYZa1f1ofD7k)TR^zkSlCyws@P(XoS?P>;(l9=JR7>HgLA3KHJlM8
z6@PoH_cPzz);6xu;6{C&2ILK&jT8F-#)&0Th4bC-BX)OWKd%9d6YUt5ei<i1$xp)M
z)PN9gQ*g^^^$frZ5GlJfT4|OKCn`J3A%$%j!^sY4;1~S>a;<<CaYm`i!bzR`(D5o2
zofBqkG>0-NtcHG^E}=R_S6~rOD;o*3m%F+mW!L|33Kh$jN&~-~A!F6LRk~ToJPw34
z0v!g-c?$b_!<Z4LIqW_B)Y;T~us2#Ox=PGUYiO69rXf5lJu{Lt@$>b2iIl0b!cHrb
zt=$e!O1n(+HlLl3JOw64GX*scKC}c~Vka$@xx9}ELWE0yZ4HvzDc=9ZOYhA}&%3Xy
z=)Gp^Y*&032k5?oT6H<cqAO5)LpM>%;}jH8uiiUY@Tr{9SZc_*)WYvBw^-d(QN`)S
z^4Hd+GUNtp<R0>`i(DGkdSZffpW50#II(lM`|Q^o0W@7<q8dX&=W!SPqBy?>ACElJ
zjY8$<)0}n;vZ6pfJUoxB<GivJRsf*U-TzS*?SH|>eyN$i#Kr{vKO+`wEDUr^bXovF
z?BAhCFKMgIh0AhJ7}85+_TN*-|KYnZ{L+^#{VUE#{kK(vJE$2%0N4L#t_wn*0LBFQ
z45DjbrKl(Wp(zV1fjemh_yRtF_n&~??*|St;9q~0%P(xr6V)_amYNXzI98+<4@mto
z_T3%6SvOiWkU2SKTiYbQ8!T|Dr;W}>$4m7mUPPgYPe8pHKd(e<gLow-Dt5LGk$jxi
zrE5$Nh=WJqS0igHTBUm^Y?F4Fk6a&7x*Ucxh?Z^~jnu&8rAVAS8<X#p<h7it)Cf=L
zaoz(<tm#58H;Iag$nm)b*bOlFnL5lUGcts-VT6#csX?TumQn#zERgT;)58=ZVo(Nj
zBe1ei&nWef?}_*@!<D?k@OPY2vX>jsIZ?%tCD~`7b|~01*gpl^KnTP5K0>pk1jW#O
z_l3Pk_<ULI=R1nNbHM*1nsGg9XN8Nc5`II25#24_8IMqqcaO`1!C6$oS!AIxTw)}B
z0T`kV^T%47LpX1yW2sIk-6O3@tn27{PZWUv6S<-gkuvtn@$mwG<BW@v%a$zIt1Spq
zb>p`Wcx^ik#9o{;^@-oCFJD=}Ot|dTT9;bve<(i=8btYU8oyPw)Y8f4G`t*O&Pcw>
zFy2bDAk?teXRC}dr)T>~0-x1By3r8cxKp=C1V>5-3!@6Wh_O?D=kaW)m%kZ2Pfm9B
zsy|n}(vQ_*IFnt~9VL;~4?$eT?o+Ea^JL86&rA-<u~%alD7hopeQ>J^$CTwCETyAR
z8CeWfl+Z`1xoT?J5Q9^C=&!wReK9Giz$Lh(ZH%%~IqEH8X<~L+zu+>eR_G;^cG=!k
z0F2WUalxCp1?A=FYj^d{TT$Q-*fWo8bTMM`dWt=wm>aDZpevEU#4s^IzI>#Alijk*
z*mv#CQ!=kwx}m?@u$AM-X#iWzG}WtR9>H7R85_`zqelCcYg<882IWg-<@=w8P~0$u
zYm!EgLo6rJBvoGy#T)NwWP3c*H_42#SQ8YCar;p2h%`kICV#en^bnXy#m}}@wGcXI
z+v{&Br$unB7lgX3E08urCprnQx7k`_N0YGY_CD#;li*#D-C+cd7KpGkbTv<J{^XdD
zuH*h*T{ZU$G^wObaB)ud-DmL5-P3z@qPn!DqW+j>^*|@#K_g^5gMw_kxp)dWO3(*E
z9^*tUPh-vUlVF2%8yu<S^yB6$9YkOqWZ$5D<X9}*WiXrh!~xO=1|^m}l*v=4yC})e
z5$TFV#O*^I*Fhw9tk-h_6rpy(;9W2YHnVInZ6IGQGi-xoq?8;$S55QRL{_^iN>+-P
zK=4#xXY4@4R7}{t*A7WC@u>?*2SwccN~;Q5`3F$vV?1zD0=mzd<IQ8PGkp2xoiLD{
zC{$Inze1%Js#6f>9N`myq-{8xg*W7FL#HkatrpTr$Lt0Hrw+((PCL01g#lF}UK?oi
z!{VBx$<}`Xd7M!qQ&nRaCRNZJfXK_*fukBb{ZPLOdJ|J0f@2Y6Q9hw&a4&$qbd*63
z36`I1aPE1nj4?8<vb&X3u0NOKO@8BjEyn63(-w7wg=1~;8p-^-p_$ugmaCttKOJ!r
zN#3qD(;7iyoQ{o;asS)z0xai{4X|kk5N|9usqOr4cTW(H<F?7&&g44LHpB~>1vMU#
z$0((QmsUd4b6%^^C7=fLs8MXibHc~lR}rt)QEYR<doKl>-sUVPkmRdyy_x+9OprE2
zPST;|B|ocq4|gT<Rc9DvoIR&1=9sBX2aC(CS5ce-wId8YLZDs6#BFZvDyFePwFSGa
zq4T}}wx|e2Vw|??SbX55ap#HkSZ9BX%lr|1>x#6E><^e-7p_BZDa^<gmen&y%3h}X
zLv0jAw5zfj0#|YO3B?I}o148B%-}b^yNiAKMIO*?QKTP_APy7tbm64ic*3B%ED#wC
zi(g-psoA)(vmc&sGO)HUCRkXFpPG%NZk3<Uz_}&crIz^v6??@_ix&3SL`+Eur^&XQ
z(_HtwC%aRL^Qhl@+f`&6Vb9$iRQX!(dykQ#@gi}cjGfyLcbLs4f&NN>5((XEoWJbR
zYIPprb$o*<mi1v^v}P~W`&fq`N2Y8b(OBwXC4+EX9fbM*rFqGkUHe+=6U_%zP*9c-
zNzTD1<}4<%`p|j$t@FFHizAtilqRkscZ>1T4oruQm4w-b<HW*d<|4#kZ(6@xJVxHi
zrEQL=9x=S*0QQ6kt3o4Kq;R%l!zYI_9z7}Z9*n(|q%j|3nTe?k@afOVU5qvVoHbQc
z589^s$fpX<#^kdS;8%D7R%-g{0grO8lKIWMA%iuK*urldG8o_GGV?Q;Vq?b+BVi6B
z+-2l~G){PtsvdaL=V#5s)Yyx`HuPnWw3q^WZ`(m>Rf*Y#n?T1j3YW^F``&fgLAU7-
z1(>C1i`qqhEc|*t*>FOzDZxK1uZD-(X6y=MQIICi*<=t(lR|LTtNTN<60tyg;T4@g
zK><sxGJ7x6vXv)-WOv%|Ic$*1_q_HPTs_@N+to0Qq5_w2-2%<YEMVm^KC88AE+g_%
zFC^nsblPO{JH<2*5lLIQSO}&}dP&$k0zoecI7_<vHd+~I`_c;RCiFg<G<Tyc$XPj2
z^#^A<utj|$Atf<ZIi=o+dNcu;LzAG&a0R*5qux&W!W=oJ!m;S_8LO^NPVrR*9qBRD
zU~Om7t7$>#eK?`dVqzxEs8^UGXvUF}u}B|B2h>uSL4F*WRTSe;e}rL8s3nQdttr6@
zUQ-vSA?ROTR(Gw#2D(kLtCc=GW|W8qZ@4tjm(E4v!4po&kqQ%Ls&UDS?E+)wak0AZ
zw35_5>;2|r)HN9)sRc`0(&Th8bjQsEAx`7xBI%?zgh2X@SU5+uT)EjnywGTXmyL_e
zeu>Y^4w(dWH+`$&B1BBCsF6-2!MP-0!|M7v8IO@{{>!rJdf(%1<(e)Tm$_UJI&@!3
zml5`3Ov_Q(1yc<u4O)Gx4c{@X+B7;^;zC%<coN2R(^yUom)u3pU=FQnLKE_gwuxFo
zSB~?Wg@rbj3WVux)N32Yy3dm|j_#k47NA#71tgLeN_I1l*c}S44RCC72RNptR!4y)
z_M6M2#b}4~B2J2?v()U$u>&L01|VH9&;x3hZcs^ZE=1eF?}a1d6prEJ{cTNQCB->;
z$&`|(%ypHm1Nk-vK4&`)B5929es>nRNO5!$lQaLAemjC0bT<n%mFL!nLrk1)rFsM8
zw4ChetGF%Nia5P<x?N}={bS*$dlEZyzJ_pDQ<|x>{c^nS(!nN)(KUyNKO1s!#F7o`
zF(FCD2FgPr1I4^5x<<lLji~t}q<yoF28Z|Ic0_mWIBu}FqjdCV{1yxekePId`4$f4
zuEFBml~=9>&X^<{B)iEQIzxCvHoW$C(QYB!mMf)jN?FbeC)7t!GIz&LXJKcE_luIB
z-b@Z!o@K;He~+{AbF7K+Jk5>I-|WUq8Oe*Uba7-%^DM}XZ{AeE$)G0wxV&RXar5~y
zcvIsnh$h36l}K~J@=Pca@V7FWPk;M42k^K1)0Y7hmz;^xyu6553~8QUzBQ(fL`W0d
zd_Rl3{T?U&_11>3Z~f|_d2{Q*nWK96Uf`@HgSs$TT)Q~F@C&ZWUdpDI+xOPv;oisR
zdZA-IxIrK4)hignzow{vC&y-aE^DFx+Tk4e|E8n-zfS#v@&7dbR|?(lX*MMw&Hg7G
z`)_d_NgERzCr6!MyowC@<0l~YKK%i;=p(BcK3QJAzgy0F$lIa51~h_0XvV=<RVS}l
zgO&p1M=o@(!Ns#E(XjDPNiN4LZa*Zn@73m#L=@b;WzY+|K^#1*yQj>|x5O7))a2gW
zVS}V`#ru8BJ+VaK&h=Yfix|5u<VUEY1NT@pWyS*e2$_;I8?(sq@UEEV<CNTJx9JGE
z>W>YvTH3Dg<7B@U`6>_rFDYlIVw=Fvs2D^{$sb4{h#aBdC()Ro!6s%&mgOn>b)W=^
z(Ld3rVk6{nz0O$j??2$dkHuPaoX>-fans{DKUJf2@`H+Ea?iw$75nLCYyry6?O;4k
zGgypcA^sg>KUz%by%<2TvKmAWrMVklpUev3y=Ujn)OooZlUkzqv<F%x#SazZyjhl0
zvAl?KImc;S2ayqOqb<kBCYiWCoNI3#qKoB)DSb#!SBjv|o=r5%`^M#c8NE@d13WEp
z*k{Wrms_g)+YG2i4rxa=D|KFjEXRvVS8_JvHjnUmrLnKyG^Qn%Z6c$lG<vic>DI}@
zM{m$WZN$6Ub4QbT++fSJz?v#iw!muui8<0)noP8-kE7sK!#kBB%#2`Z`nI;^tzA6N
za~cglMDzf_n-4F**1r?qtp6I{l7fG;9;P6#uVStxXJKQh1S#YHzlvcDEREz;^*=0Y
zMeK&Do{Y*~QYwD8$^I9IlK;ZVdRCtJWr3*_{YCnj7&xB!`5ejy#!;|=U+O~_tz$C2
zDGXad4KNC4Nj@jcLhBTm-6^q@^iQAdaW*Nm-MbT}Hn9V4p0f4+ZSMC9^-Su6k|le4
zJ6$3vKiV-%1*k#MA|3AlNuG4t<(+lXIc|(+O8sP{<#pp*uLlVh`vAdP<D8x!Y8YRt
zR$8M3La6I0t*FFVv*LoI`tSF~`fT!twLz3UX3t(lpUFmTf~G=XBBRH-dIDsCJ3lWv
zR11!ReRM}=Mz=UJe_f{ED|*>swI7*P!PC?bA=ja=z&T#aw>M+cBOFA3r$v}{(f$+U
zsWBxev+J@4xSgVa==ifZ{~M9P_-pd}B~pU)HzQ;4kIqze7Csph#}j1_zKG|Ez6UWP
zR}-AFmKvuPmz)r9jtzt&9-szH3S;F&LlX%r2~*x|{_GtouvrlK#NA5=y#M@S++cQZ
z0l)a;^@LZxXwv@^qx_RQ`p;3?XOdL!2MfT4h!V_K*a4(=OP>cxVmFB(7$ZKcDy*jo
z6e^{VNJ^W$C469yx##l{`6_M#MZ7OKzhP+i^wjOEgFg1x&Up==owE9C_Q_j_I$(dI
z1|V53TM8{VOVNaHDE$WnUDH43WAa9)W)TywNaKNgN(suXne((UZrSHgAsudCH>59b
z8rP0Pe5&<=?mRQ6U85D7$Eqo1ukWn)kg%n+JVa@Qak=g%AZYLfQc_Z$CViZAqSvB^
zrjB#xrtZH)7<d3N^;u8K7L7v}86iQGE|>EBYB{wVxwbSb{JqnmsdP*cD+;6t`S{%f
z1DvMtdZ>1+VcGDf_FH=B<RZ}p=WsdoA|G!b1}2QL5VGJO)d`1GNZ0<uT}vUZE(dmZ
zTTDRSAhHqF3Fjd&&?RN;JVR1n@<FA~R=Eu-43kuRE#88G+@?g!GB_#3!@}+%C*1&v
zCXx&k4oxsCDY2tQ*xD{0qDAJjt_^vq59$VY^UERl`zAG}9X_(e>0#BBwWEnSqAE%$
zRfg4}U4)BvkcyJcOE7rolwCOG(<;j}g4Z_Ox(E8E5x+h?%XDGy;ff8roG}uTGmpD~
zr}F@<StY3fX7f~G6jaXAygF<-b%rwZpaGFTh)3}_U?xda+?aNA=JO60dL%1dWR}V$
zEiL>)SQ_=}VjWcLMmXW(QbLevbMZD`rX4Va^xE@d471IQW&XAX%hk1tYD<n_IjQot
zI)ygA;U^O~iimCsm<;f4JtRXh+fFN_8)xRw^8V2Dm9g_`I)qmP#V05XdAvS7pA@Ex
zB*>9b;@;nk;v<-Fypaj;sf7B9=+JkX#A$<WexJT9JKS(ytdqa)*|fVwzZn9b5#Q&<
zpK9*3xK$%LN7td;3-iIO-h@O|Js^lsu|b<vIJd^z0dE2H{d=X;CYV8>$SsVL*OU&}
zg<~ZeS5h`^C9eq*vI$EoecF2uFY<Hs&!1_$_zzZV^8nD)8RoAm=J$T?zp$-;-&v&q
z%=;%jANpT%KEIsK>*H(yY-@x*9hZ;#W}ewLXnl&h^vDR3q6mmx7^}%Oxbn5-^Ug5D
zw?_>MF%)4wNJ-3U6?3iISIcTwE;M@Oi^>XKa~nYsA^57Fz33|^F`78=1@a=nzjK7V
z(iamWukwHth!LTm1B)x$m1x0_tC_dJ89tS6PxGT%uy5=-$-+kC<TP;t=6Of$TZJqu
zMoQqC%l$48#9M;k5Dd>6)v2ONJVj*m-5AEz39_2(nhisKyr^j@Qx2l*ymNZ07L7_t
zVf_%~SJtVZAQw~ox=d7yjwV$d$^og&zIOvA)x?T!>ntDcfwqE---?=vUQr3D8D|k)
z5Up|e&4+j+NhuOo?k`c8#5OjBAImrL9bK>ryR74*GrV^nLL-TkrT{s%t&cO{x-{cB
zt{YGI*d$*i)Hqwsy0x|)K;xB%(ifOevs@?*5v%^52U`~Ti?y$LZB1DP+cxyY+1&J)
zkNlEP;X~V%#@?}Ta{Dt$;`_Y&h!tQ@kAHFE|K6@425f)-%m)9ZUGsb<viw6;ZCD<#
z?P-zebQvlc`^IW=ZTexJnfg+^7LThLA#Vs}i6tST5R)o=)aJq2$g7Jmj@_qP>2Kb~
zvr?wB^2~rAcmH_>+va>^;^LB#nZQjbiZ~YSJ!?Uyxt70Xffn*{uO5q?gY){zKTDhI
zXiv0jO5}5aTd-i!y`vQBAbD8m(5(!+d?*b?gA%@F%Vwv`Y{=}})x=bjbb69*u=7{!
zr%PEDeEwN0Ry!6cCx?--b1Zl&?lA1};`kXD(h*r<pMf0m5yd<TTv4;alF!JbPkF?v
zVO1r#x8gyJTzyldX{n;lZAs6#Vh#C=tW7Ej{bJYkMJMF5rj@N>$m43*8BCFhOX+VL
z+D0?6htfU#KBfULEYbw<I^uP#Uwd(-%^LY_^7ptGUB8LnClGG^oXBuCapl**CjbHb
zBUV4CkGt<2y0<tQny#;L?uILLWWVzvL1c@6V&C$TMUd{wm0P!8OELDL%Vdx{*)oI>
z2lErX8YyMqXoGVDv9cJ1UsvnfFC~ORJ8sgxYs+eU^XPes&9iBU_1~~s2}CsE%_l39
z%~mENay%Dy7N<)?6=)BfvX6ibEcVxF)#KR8iJN{{asf|^vkRoS3D#;zR9h4mUuCKE
zZ0oHZ+pi>Noj`%TT_9!kcN*)Hm4r1JBQx%R`C_8+Z93qgdG+V=xd!+ZTZJ)8)~k~1
zRpO?39cTRyJcWVZhD6-~ez~*w@t8=-LIA&9npronhX{jvcT(|_M1?^+A>KE8dmAPM
zQB~geU{BeGSR${%JHQrm@*n#${{sz%>3L9q>aS&%<Npt7=>KI`llof{iacc&?F3jm
zA%ORv$;I!KwZD~w{@O3C-fKPS+6Gt3cn58oe}&Nce9%uAIqNs^^YxDn>vtZ;Op8W&
z#Y)1Dt&j?hegIutw=s@!iz&Cd`@11p<0I~qtLsaK@eM_rvM(2Hv-b<poi(xLLO=4V
zIw(MCWIQNS5$0K&4WP725(WA}B5Ub4xpm{|=Yea-lougdKD>b%eV}6@r!hXFRSfX4
z+JM|f{4p@J(<jxdF4<basjZ<&@^xgcO_fR*L>E1yr8xN~VN`_9*!F8zhu8UwS%_2g
z9&m8DmtWt5+J@ghis@lMq_>95@aZ28uORl)!t2lF*PPW0SBnmuJXa?OcZG?&fIIne
zI^g#l6c_M`7pWRxih@qc$k5Em>X**ROFvl?Dw5Udgpo;2fL@qR(nww1$mV2vocRAN
zSK4@#5hDKdcwao?-!F>%UoMJ~g^u4^&(h7o%mH5q|DBP8nTfT|bME+3Gsc#Rq`$2v
zeQ13|ACv_&X?lI+{7F<5aH;E?BmU_lZU4Kn>M&NoPbI*GX#B@Z{a-qS?9a>UWry(1
z-^}4DI@#D+=!5`e-M<?EOifKrPWwxfu(+MQ;lHC7Pdmdu&#QlnUg$9V!+u&`<7xc>
zc%MP%V*L3lLPAmO)7gx42FRyk`W}|>#$sX{4U`WqGI3+0y8)`INqJ<eTb?Gi8j`0q
zoGV9@Os>gCA>X{&7})t0E@bWP%H>r(Y(Q+-I6+6%%L9Z@%9st++lLa$+5GVrH8tGW
zxH5#R_!GmxtP^;JGR=7Llt8O&;dI^vH%N*>hG7<K1Wi^U;wn*pwGygJu4a!u)Q1Vy
ziN&%b)rC=XX1}KOc7CU14y0}XwUYCyqFHhcPl}g0iyw2n1D{qz)>aCiEK_aQVQsS#
zo{@>eLIhf_C{JOlr=O4RQcl2Yba3Q#?Q&It79Vde0+~4ZA(oS*w?f{qpaLZH_f#iK
zQR7|N_;8^gf->7|VL_p|!Ykhr`Q~ir>~1BhsX;20C9igdQ4}V3>v&E#w`>SLNFQEk
zb=c7O9ec~j0gWYW8i*%OqEJF7fj;sB{I*Y{+QvrRTZ%5vl21Mx+q!(Kxk|W@ymsfJ
z$hi4FoV7Zu_fF^CZcZ^W^=VkL@I@vgm=v<lF@8g;okwH)+@jfWxhLOM@-S$<B7bgG
zUR(m*`W?+iu}FAhu1`J9_SS^y1(0>7SXck^hzl7`eduRE5;OK9iTQn-mH2B={GZHV
zK|M=Le12K6Kg9pd0JO1}gQCB--V6mRfI>aOL;4+5Pob1K75-+_v_h_<S}luGA(GT$
z(tw{umAPeb21yw}Lv|tXgK#Qy6ny&eVYA1PWrZ@|bWzKv<n=2hIwBWg4wr%}Xp?cr
z@15DYBza@ZVs9zPKFHuNn}(URfNnQ0xh0TTN;D%=xXm3pwlQsQzB#{L8M}oP{=nE_
zLRbNX&%3uTz?h9{7oh8jcG*5?%Uv}oRQTa=BEw&m*RakP69SebOzP9?I$?V??yn=-
zW+zhTTl7XW-A95^j5hM>?5L1D@LPV@-3&uG%vwVz*CKEn!Lh?z>k1c8${?}s7CS;e
z8V&9&hm1NKQb<36uGT7=7}8^`y9ve@`e3I_qJrBuwzRW&W*?c*R+GiMl9<Bvv>PW3
zmvdDYtAuUV)EyDchgHo(Xp2x?LX#b^rP7!zvh>bD(lE#C*H=vyN#KdX-%NjFZ_;+C
zxB=w{o{53ifyy^dtUrsVXy_6@l`}C$_dl~i+vGm!)??p;{rn~Du>i~p97kj3%m$qR
z$IC`5@NUe~cr?Wqje=Mli?Ah60JRPzR*|mnK6W(d3ZN%k<UT>di|esk^=;J$a1w(<
z6ugqnXaR(b%ZrftecKiUgv^Vx<o_;W{{2kxuK~W%c)6z;(kI(P{0R7;`e2eGU@ZJ8
z;d<m?avvpkY1MUc8*l?-?p<0TBeUh!<0U>Y7rGQ)dA8T~b^9u#k8T8eAMt#{@M6^C
zm6NrUg_1|}_=eH+&DC8>JG+S*AC<L8pD9Om!0!HjH`)+xZdr}{y$n;flZ$QfjsdA-
z=D0cNIZ`06q~=Eo#^hH=W@hA{*F-j!Vq2{|9VQM2tTv7c8DgQ{ee7!6GUy)Kj)2i(
zgvE+=hX!R8Htc)rX^sx$xL4rqLH)`yfpV)xt){fWNnbfqYB;RACj>O`gY{RBf`whF
zD08i(PJz&1O~gL_wHB5b=G)H~alwd_JR=>)D7|*Cad(3PuOQfiq)}k%V)aN`ffR|a
z_w;R7EVO7g7qhr%xESda(|@Eij_&VS3gObZz$Hm<XRm0lHV@x34>FrtG;rc#GoH)^
zmKgWe4LdI$xfovYrx~Q-WSB~k`WEEs8k01K@we2XGyufgnidU=;|A<BC4#Rd%r83R
zlO8hNuh5tC9%v-*o>3pWiwKcuz~e`FkziI8^t}Z<@jqVwZ);eF=Ruy)_$6t8KS*$8
zql_M__6}@zf<1W|<fMM;E5rc%CW3riTQT@1Equ|RM@PyLiek*#3wgW7#%JT6kJ5$G
z^q44@#@Qs9T}9Sw4Kf6q=;g3JXgYhG>B0o8?g;&3NVITJ>vF?ej%lQ#Oy0@K&;uyS
zy7O*>bHleoX1bOu%qYyzgz%ojxyvcHZ-dPS!Z@nPptzQZTvOvQ8>`6G!0pRI5!>t=
zQ06_#MmxXhhP#LY<Ezfpskc{rFn7;a@98&|XD3yG5&-9^^s>-RL5Wez=y^8~C2%x>
zfMK@iHq>nRR&=C_i;qGa2~;aW5QYvLLTksyzZv0k$q3^bHk!Apcq-4W^_w|HKc~Ua
zAFoGMoiC=)G#hlP$nirwf5>(1@Hw|GSgB<v#gzqAoG4Fx0R=tYk*(LHOFDO4b{Ko;
zTTE}PsgF!a@Jq86IjtpjnG==#kZN^<5X!<;E397VfF(;}AIH4;(<?Xgp3eN@cv{CN
zljuT*e(-rpq&KKK+#T>_hh8k~-`g7$fM@(46NFz9!@rhqhJw};nCE5f1G+aw%779Q
z7>q)Mpd~_<JY*VlshHBkj2Df|VLe5E*m1ll-BO1{cTI3ve+(#VmqBWC^jG&!2U*HO
zbjTm7n_44m@+QR3Ad_akeDppRqHK}3r;)!aUfp-=7XjDdgSl-VCpuAN{K&vi2_23&
zKMdH`CAit)+YFdt+7SJ>q=8-MYWCY{cQtv9^Rn0!O-oL2Xpx1&KA4XTh{rDfgsVUv
zWtE&8%^$2|&bOle6xt_KG~Xb#tEPE>cYpavSVAZDwnh0J6Ghg7JQWZ-`c$!N?7ZyS
zgydp6E;oy?$u=HN1AC2!G)r?5#g-1oXcxTBvP{Q}(ewwZJJmov@QLrNaF=FRFj<i`
zN(BsOl9S>2oZSx-6K9ffb8z<qSGc=hCl2|W=md%_q?c$vOlPP1=CR(1$Ka5I>@{h^
z3bUS5#%faDE|a@gEiA_@yCogKf(Vuy4P#CeTr&~`={Ygfr#HoE>_7!Y@gbOQx(H91
zSg_)_wh9!dz?fL74rXRgwpFLZzC(C0RPa2NqlW=_0pfGIb~tgg!oe!itYRmJczIEB
z(WgT$nn7W$ybiiSG~!1=6>D!T!{V1|gRf4HJwtr>tYY2|_v-Qf8O@^Kx=mOB#7p^q
zjF+dR_&>%AU|5@(p4QpQFhgPGDJ}4keh3dQl-i@T)O|Lt8BV1=lus;r9}8_=1;xrZ
z2A&3(NwCZ!ioImSqc{0@d}Y_a!it>~;_hw-JD&T9!2v%RW(^3H@3opo<KD2~mGae5
zaT>94@ZDXVJbYYk8~7M-ywdmzgZhI)nn{uPp>z400xCUSpFE;vL&+|I!8gKy`_(Vw
z8&M;+6oe(5y915Gd#X~%h3gd+q}jsJSm&ChnOE(!8q*3U7x9-`0e&^SxgDwJjB%^+
znWA(L`m}i(LM%x@b;{~;S<R{Ay`{wPrM)?NO#9}S*V7;b@ZJ4>S=G=MUCixC6vG|g
z%Y3;3ZZ(g}Dth25>!Kk1?<bB}TezIP%pi;+Z5X8{OhLLb3pt4fSYFXFyX`l>r?=*I
z5gFYB@8>CU%&3*_O=T%Fo{;mn7oPy42HCf7wj;gVQzCRIKCoMwi0=is)krz_`UrH(
zqN}kBPWx6Ot7ECCIP8l7yWvk<u;Siz4_E{U7ogYanfN`zC8Q3T`r}q!L*w^ajYvs=
zjDEC=lEJtk;ydTP{Wf@GrBL^ALVo5<2l&TE6CX4eJqLOj8B}1LG|I^PBJq-B(Y>ot
zuhQ?I@9C15)OosOuKNz=U;i_2aOXwTTmpnk*?$ZdzW)|30Aq@0<q<)dcS87zG7>`4
z_+syLo`29`ejZf^P~&YD0h<n72heGqn8sG%+g#_&@N3yGs=FXcZ({eCNwuSJIq--w
zey(~LkfFG0=Jm{dBHPY%s6^I&puL>g)DIl5{B~aAV#6F#a}b>rZ|2f|$I!k%Muv@k
zULm|3o>8ULZa#BA2dSMz3Mv?Kzb}1K25Tt%C`WNW4GDCX?{OIg79f3s`8*R^anX)8
zG|7Ue#4Py}B!DMs!+piyh|dYio>C7w^yi24@C+}Jgs*-Kgh6t0ub3q5Tv1qc)abLU
zlsa)FI3D~li7{_KFD?TKu0YGCj24%=fT==&N^zD=afDJg;<dP;$w${u_hGgV!bpHV
zwACbnU}<yJvY~AyL?`BQ2rL>XI(43;5<61!V+bA5hYlDa_W-{^xSRGWT~$m7GMq{2
z#Wa2hN0||pK0@B06R9<A*4X=y;yN}7+2Nr|ZSJy$%{w*kxGhsnGx7BueR1vAYJ0kL
zW<nV>HVfjb9r?DL-Pw9N5iCLMvGAXqJR>VjUV}VVw@SD<@IKy;3~>#jP>%DK&N(PD
zszxgZr<s0olDwR8m2wz5ePTWsWF|KnGVU;@hT?6AB2aP{{0oCc@b)|kuKW+BMjTWs
zvpeXvbLgmT?avH?6jSf<ssFm&{8yu_CvAvdmf9H#OV+snCll#UIqPOrPE`2I;(H}>
zwF|=S<Vs;BhZ38<*k!&_Q4V@40A@Vv1WD{qc|451%wZ0bU>7`wJN2k>krVFrF~N;k
z>~F9p@+X#Yrz?YivndL?2FbG<>AZY(KgEPh#AeCqwtb4=9aQExc|?gnKJ=YX7ezb?
zqvtT!4;%*!SM)_JTM9QeM}@dhzQQJawm>mLS&)!wd{ujf0#_2-3WF#)>fH}RB^-*0
zXeE_nLP=fMy_A<UL>$l}$Gc~Iy*e@~lmrV9)D$M2bqPSg12>LCU)kN$S6AmuNuT_&
zpqkN1=XuV!;Vq?!z1JWIy$y*&=pAq9@6{6dm&&UIzqjCWFD;!M$)1UR6NA*sM^Y=G
z{FECe8G8t~<`K5xB;r2YV9_Pj(Gcyy?klg1X(mSf>}4^%I|sA<<YjT1$S_?z$1vVB
z@$6+$0r0ZeiF*ikQ!6iAq5$|~5%vWkIq}Y<PSacsTxF2931nKauCfgKEj5(`jfs4G
zcPMmdX(pC5L2m9@0`}SVGRMNRk*43p-)|d4<f_r>i}l+8#k28QBQN&M6z!x)#>sCW
z+;YRf4Izo3Xo0;m{og9|9IU;?Hc^tsPk<}Jv^ihhUA=j#RB)wkrB?tE^Kzi#_e$k|
zz(Rku<R$)!g+}84P0(hL0-qhwlxLyin4ux-&;)=t%P(aPke}6?Qd82>urX8rn4<r{
z;lJhv*c&4N??3U-WO?4VfM5La`mg#P{0<H_24?@T<oiea=ova2P0)Grm+$>JT&U{0
zc&Ym~18R{(+RL_^hW24e8%DqhH>gFPr0-;9?lZldogF+Wksov8)p=&7jz4<T?9o(#
zmT7q58<>&pY@?J>`aHM>j)JZk<<|<Ua2)zXkvSF6Gv7Xamnx^y-POn`6w%`D7d_v}
z*PkIz3^x*FDlrpu=;b31*eh)B3(c=b6J!;!I)$rx&!|>ifN8`NE9JFENJtiPqW)Uf
zgZ^$sajU@mvWC|T<5dXQa^GwHD!;x&Wz}Jn&8<(g*nuJBkCgb)sJ69fD|QTxCLmpY
z<aSVvUq2apqNtJCA|qSitYeZU+vsjd<E1<3TGMWW)Fwqb;#=rYrHQ^e7})AjRI2@G
zRfw5kTwt*q>FHv!Fnp1e_7-Qj5`u<*o?t-abx2eNx|?+H;YAnyc0@Zi4=K()>Ni)h
zDk25t3qwb2rcF@<S($EbuhDQ6VzBR#KShdR={i{vhJ_|`b-*rmWQtgFFCS$cB#w`u
zyu9K9)TvOc;Y}?%rXFq(#o$lbo<cV@Ly|KB5V}_{s;q=iApSp|HQ<N81%I<VKX0WN
znI|j8-tl-Dxl2Pjp;|NfT&hqXX?5~MeRql_<1%d43h9O@p|h3Nh=wjdKfSMM{qKuE
zgQvdnDR41Rkx`4SfuZ^!Ju(*e#ldPXP2tt8JpolKbMqqk2<ZN4=vA&Zo8-0E2-sKp
zhZ+q*f7CM#f(#dA0W-Tj_k8iT^wTD6GQBw0;b6&KdAW#h4%aQF{Ii~$n~jqebWr=^
zjzGRs8`YV+KJhsTZn62pd>=zVuWire4`X^x-U>}?Tjm3R@6h`0W@#>0Letb&)+@TB
zpwz7o6DH8C!-<K<SiR;5%pFfR^2q%w+a};vi2-irpX=s#(-dOBC;muM{{e9QX`1rn
zt@sbnQ=#k0{EDYh$Io7$<ZX5QgmpL~RhBHIa@iu3U5TUtR)7WgQa-HdqgTK5q!iVm
zk;8!DL5iErSIG%uFB;aZnL&70@6#)0SA9}Zy2Lv5ux#1=fJ*CaA+v@Fa}p-|`9sIg
zxdH8L(s9<?ORos))p>0>D4>NAu4@JC%wQq)ad5MVao&-iv-(PuE@o48lbWYb`D-zn
zrH~>g9Yg&Tw7;y-+33)8Nd0;c=fmy-xgf4EoEV4}IfF7$m>cUUx4C_ORN;@w%A)a>
zgkKNBS@5K|R>F9<eJHsJ%@R^?^T69tA=NuTc}<ZNlCt6CO=EGF7tb;tcRMF9$412R
zZ0{U*Ek_r*|FH?DkA+z{eMJI{M`BdGmQfT9s6}dWb@&Xz_suCfVl74_O*_hILX7L_
zh-M`5+kJOQ4}eA0x>DV@kMt1Ju6Sdy&TF+CH0ecCv2%I;%Q56fGvDxaP-a(^lD=Fm
zTA_qCvZr9XZh6{ve|&8!f4dC(PX2Vq0>=R5YTerr>+0&rrZnf!H?>&lQ9Y@D#R>D)
z2~o2~S!ROF?5FQxY(ZA)pj$JK=G;np;3J8>^eDzd8Qb?HIEa79p1q3@8hv7G`M=0T
ze?J+XniDTDtbe7h{BvSf#>Lvm{-5)*e;JqkC5QG5Zdk?0Sp+;mSsRrYZj0K%>Kfs*
z0$(bSNe|PT+M`C6zeJi6i&5oYuVTkmAft)m9o^d>a}-_=yyM{OeNW|}-CqBmNp>Ay
zV!nZ809URAHBK0bd^#1ef;Da$>lTr%ytOunmnw&Oz@I;D0^!GLCk8m0c?o)Vo_~!E
zSg;*wg#{O~4d<1m$17#<c67!bzRiKRa4fY6rlF&wYM^sAN7LMwWg_;ceI>zyVCkj+
zqj!@isAHNyG_x9xVjaw={o`mg`za$XUR-D|ZS@_3okIwyHWwyIPIQB#!G15~+ug){
z!M8;y^`s;3&}i4Z&{mv(95U{_-YC82!<%;UajB%3+KdoP23K}@#*zHGd#9g<WV2o@
zObm#Z?4iGPpglL#XJY?6(0<k(c8Mm#Or&1ZMWk3e*e&Jq7uDA0t5f!1e7YqEVIqzA
zbWM*0(ah6$wftjWc)B0H)w?{NH{NxNyFE%+nhd5{L{rSwwtlWNvN^kFJ!8#vhp37A
zs!UG-*n(A@#o#C&w5wQ{4Q9ofxva%(UYT~saw`rRq+>Z$H+Ie)s1@mI%0(Q5w{B&o
z+@o7D4s(OIz}!Bxg5}j^N3ab}5nMJCt>X~=D?Io-2_R}&XrJWv2};f#ht^_{;*chH
z)EHu{CXNxj>vt^<;a`|(#G)@(>}70G7VuA)kP#sV(`5-=1}uvrsA$VZw$gRQ2g$)p
z8Wvg<Un7XnHUnofQAGcUlxDo`UQxTGyjLQPA>K<1{y=~uJ7SA3XVDa{qV0EBZ^2d8
z_Jwg{pg}Q?g(OoPbFY5UinUz^<PrrsZ`&<%p7}==LOL#}2%RsRs1F}glsD$$!Q+&-
zTMr*=_<=K~#l2<O;Pb&{k2!MS0C=PuFAlEXSJwa1DPw#t=7#?|OE-e>cayH(xqk{U
zkg#ynvNQ3?01~g>mx&kpbK;ePiH-S3*7XDGA<!ML3%sO4{{C(LPLMMEvPg>^wg!-P
zgyzOn6t(NMvXWzfUaRDE0zs<FogRQ~>8YcW1^2u~9O{^p27wR-#YT%tAjeugU2g8j
ze283`EQl=~EYvtqtGst!DiK0-DW)NZKWe~AzIG-SWzRBPIiq)s_UNn1@oQfFkP3IT
zlYmsrFU(s>l&kw8vL*$}T;jA>5T@f0l|)ayG^7VDk6;z=Vz7cnhZ+?ok7}@I8&A*N
zKJb|3RYUK_w>M~tArpHCPjN~MA1DQkv`&f1JCo}L?%`2E?sr}_rVZLt4Tg7Fn}&zl
z&<$}k7`Nu?G0DUoQHJRn7KR#CB#4QMeP>t_!9+VUvX!bE9VZ8;XjNU80)&v+jH8C2
zzOrJM`bEgtr>S*FyP#tPWL?$E$Q1H3DG@IuNJWG3{(`sPRZ@)+HH`QCfFn}$LmVWh
z$+QxMU_zwzL`)MDh_G2Q`m7|3q~OuV{MnAzOK%^%NwFNUrvo0}tJlfxS0Q2<Wz9M?
z_aiU<oT=M*mKl;Bu8H#i1nbKz>-Wd|lpMS`1^^I*xsidRu#LTyo}&&k1Klr84JOgQ
z=$@R*{@qaJA>*TX9{l`wO<nb5Y_;US2!|05C}sWkrtW_&itzze@h{yI0Al;(9_<Bi
zkM04uN26kxk{1^$=c|30ERjGKT9nxI2NcDlkw3Z$?yt14cTDrzBf$?mn%``vd+`4l
zc<?UE{ekWJ-Nno_3NHxtD^x|^Kw&d`<P!`hFd2oymAU=|!|`Hgw8b97gTEm|pb$Fk
zxz3@baPHJj^0!mc+ed0PiS{s)>C0T{aJ}sDXD9io)*4RR;~*^VF43HWMAw-jDxMI7
zNQ5m0g>11x9DbNmqET2;H;W)i`w1#1QNj7(Q*oi~cdx@QQQn@jkh{`Iy&&L|iE$t&
zv>VACP<Kt~qgc#S6~^!~QMe$?!2v{{=uP-h-4G~7kL}gp;(T%s?U+`YxS*38@ah0J
z^?6hAb^oL3TTG)gNxl9#A$V#fOkqFhEA%)^4+C2S^Pa~3(cPQl5V>N`Lfi-zD_JSM
zI@0^pcpzesUHj^4Qql`f#O9dq4qOZI-O~Ul&av0~b7%S(;~}%@if2ZQd}&K$6sgoO
z5nRklaDeww6BAad^+ak0$XAVAMH^v*1GQf5tf`#(6g)_>o1y9JKpdL`(4!#qbk7c(
z@JnFzBJn#5y&+e;d#7uST6&I+IuWSQ^=R+|_)2j?3Yk4NKsDxI{g^a_S)BRJW?8-#
z;2Qm_G`2+)6WIVne#46d=y$CDiF@%!TKw+}%$~7+#($u<zfiYe9XSB%re#zJB3o3b
zY*Z#$xA#u=O{~~*kGZ}`!;NSmAa0f*C7#gRs><Vjj;rM~7@ChI20X1T0juMwLNfbX
zj4er@$<;=n-I}gvj@!k18A)6SNk0B;$7^Y0zlHx?wR+1PBuX-DLc89g4-(K`OpGoZ
z|GMvWOAisVQ<83AA+Rm>0_;~av|%M_D(CS)z3`rsWOCssMJ8z`AqjM@CJC5T2L-nG
z4U>I@t(x{sDeY?=JSp3zT<T7#+z;30$deg4!4j|A&2z~oH0jXRm5@q(O_*#foB`;q
z0myc&E^|Xt9Oh4Q1!YevRY<$d?{=r{v+-yZP=tuVxB|B!<hMoc=8#*FCd~w|YvgfU
z&F$Y-z0yc+bDHkwUt<w5@PX@o&oog$tGd)1?56CHTqMx}=($4jw+I*q6ic*A84@Hq
zumSUMX<CsV<+AvM_<ftTxBXBAx=LJEQ&NErFc*YW@0w1#P6cUdzh#xF5C(GmEOw~x
zYB0{S3M9KczbyT3V!b!<8fopDD|<5@ESbpzIKW(Rf}Z6}=hj~9lS@Bxs~1I+ZboL-
zII^7Tn{28l<aTPK3wVR-T!(O5v2qRD)4+P)_vDv@tc<W-z$_qEN?*jv@4Mvx0HZKH
zCuT1xWd?t9o1`GFZ|cDuP^bx}aFiOP2DoL5)x*Aq%I}f{Mh<RhAr0<BD=7HzPs_nY
z|8k?JZ88w>{<8}Fo#yag&+*@6W}oUp#$UPpd#xvR)F(1o@4$>RQ&F)N-^kko9AH%N
z99Nc_%K^f2J2T^q$wzDdrItY;znCBC4w*?(c<@X2Chkj(+c(j@j({@~+}xm!GB~KD
zG8#l%Tn=;EA?!k7Z1>zIUIrOx$=)!fdT2{L$B6rTE&Tx)UWES`=8jJ?TRw+YM8-R>
z2W(RmFa-~jnx2mh(Qg>gI1KZZ%nJ3pJQlR?v~RsXvNNeT=%aR!zUqf=w3gJ0?c1;!
z+j>1<`IdmK$c;`CU3*Edz?#}usq9e(N=k68k2mrs5_GNkihNfUs>eV+VkPLAnm{V@
zQ%x<Vc@O_I(eR&jQHcPbcyVm%FtO1Io4G!5LL3~7936h0nlrLX;sEU+fS<JffWvWp
zebR~mT{wJecok}(fEe4<iYaTDn6g%n58INzz+-18efLNT)3%{UBtX>0ic{hduhvx9
z`i6{ARXt)XZh<mdW-FC*B%ye%bU~Mr209^{vtm;lddNsLE`4~!f4CUf96?)-3qjo2
zDx|=a|C`(xcnul`wN*y3Vb+&TMU76EaaDN&O1{f<iW)d#4&@kmNN`JbN+xfFc_57f
z4%v<~WqU1X4n$mWTGjGw(4n_p2S}Ce;JXKqG_K*3IfpSfLD?}NE@C(|{xjX*-4IQy
zDv&UaMERxqjFu>P0=`C5Ka_4{m7?=s9aMPKs6YDA5}Iq3Ver`-670f*-|spywj9Bd
zs+e@vI5sm9xMd&Xj5as2?$}s*61R1B)PHkj#+-}s%EkyMi+;n}wkrI^W<S_Yq<xV-
zg{|WkJA?T+XjlTUSVI6D&_5&nchRROwapjL=6806yb(a?-Tfaje=o(Jo-OSGw)RN$
zEL8Mj4MmP$96<cv@*sm%v`wa`yArk6ETbG{P4}dalsuWWwLLz9A_a`ZCiEroCt?{;
zf~Jl<T^TsUMd?)PJHU151KxjL>F?VL|9`vEKgsa_;E@2l)$#u+5~}kn&HlwALFoV3
zUx*L;#3Bh@%Ob{C;7=As*cwbYoFKH&JH!t>Svd@*fBV)ze?5+7`0(iG<NdL6CUfS&
za+$rdyvlG3gKP*)u^{ml^;aN<b;(zZSok1rLD$>`V%jw%8G)Eh^xoESMGqe^uYi9L
zLMd8=g_E$#xRQT2Sd19P#Ylxq%wq#tRwmE~hh3^gT)Q#VP+WOS6Z5G*Mo!&?hR6@!
zY7?MX4tq4g3ksfV$eB19&%sk}qM()l&m{iIa|2Hpm@#|J3#^hGABl3$S^-@-Xkplq
zG~eWNdj14lP;uw1K|5Y=Lk}I=-j}N;kLgskE3c_k<8}4LwDgsHmT=IvwSf|S3L6bM
zXvM=^4!GRh`dx_+$h{1!yIzIHmAoZ-m1hDjENM()<iPOgV;=txYi|LSW!63Lij*|c
z-QC^N-6`GO-J+7xAl=>F(xG&Bmw<GKG~5>)X9j1!x$~cUUF%gB=;Ar&*=L`fzx_Fs
zqF)$KWh}~X>uq*#T%1#Z7D%v%4vR|joI;4~rj-ubqLQsS2zM#Upuyl$hzbwe3gj8y
zJW~;FTy0L2FL%6vjb{&Ta6_#cQcsJl@;$2K@%ebe{e8j}XI#f)`nZFV5a}a8QiJ}{
zQ~WDr@JF)viLveQ!0G)78C+SJA8-7BBMo8#I{*)ZJl}Od@|Qyu&8o*Em;jx#wKY?-
zx9!|m&&^u*G0cfUoxAeAx@h&)P+*Wih_sWp6e#+w^+^Xbq~yUb1P46-|CZgqK0CuB
zTkvU_s^G&7_)NQNG$Qzh;Ll*h!Km@7c0fgKS$oo`qB>ycuB9s3bN07RlNw2b=<)32
zH5eL6NpagFAQ6CNlofoTiw#mhG;#PhutZ0VTa&kd=U@28v-g)PT^mq(`vCekv;@%L
zekg~>a@MB{dO=A%H1Cx(4tNa_KgTuxm!jKahp%7d0S~D1e|yNkdS{G}zV=hQ1MxrF
z9T0hx?9AC!WE1Q>r9||MwAG^jBao1QhKZ@BlJI+1C4nvdq&r|Gq5rs=e-RjA_+f89
zZ3DFXkIVVHHozgqQle@ydh~Y13coGqC&m>O(1URmgVG5`;`h_GdgZ#2<qKF;!apwT
zuV;braTE%p*q@x{ss|?e!#N&mtV$XkZ(JKE_&Z|g;CNufct&G87PMh}e#hf6U?JID
z&wx;z*&>6_9DFb8=qFgfNFbj~|8ZN=Cf{BNnXY<uWxQ&A#bL0!Ukn|FV3$uYiGz_~
zA|5e+&`Z=YMzCOvP+pVEc6$`tHos3;X+toJ!`MVVcxXUIYyhH9lA5;W4C?I26RIx9
zAclzKTh^@KGhc=i(ZTJ^BcY&+0?@}RZ6Kq@vInpYg`oeW7XHOMre}Us6i|Q8IQIW%
zU_5y%J3VO^eH~FHRb`g^|H?SV|B-Brn3Rrn0Ib9BA7AOeSqIaj$^Ud6|9x0->!W0{
zG7~eF6HWY_S={wBiih^d$BM^{Q&an$j}<;cn)3#*mZxX$SMy&0@GpLPyFcUlc#nbo
ze<Wc(R>}WRhL0~TIYQ2Qj1FLIjLFa|alHqLMjXxFrc;~Ao6K*ORo=5b-c{Ed0H7K7
zV(^;*9sOGspAi9k50BXU+d*fyKHSSZZrp*xOLCO4ufd#k`qCJ$lA5PQTEIq5;3!+=
z?HK&`Lwx5GicwDY@B+K9Grg@DaNshW(RxBATNkS9800zKLPVIQL<x@tE2%mifkQnQ
zpN}hpVz#Eq<g35S|E^eAn7^p?9d>dz<n4gRCAwojY*F-cBSVOOhJmlb^?Ki0y=)yJ
zpbU<l5m&~oQ-!0u13~Yoc@1jvDI7bu%A1)i*sjv>uKQ+oLCk(Sm(OR+3_fGEO;9Hx
zx@)wnevXlPF~{cUui&brl?k>L`q2#c3+Bh^LP6Vzi!WsOs^(d%I`B74sB?|{ue0^e
z_yX)txx_uI5Ucjl-fdPFDD3-iY9b&}hTVEJX|PoDnRL(VD7<k@uzU|YM65u9`@IgB
z#q^~%^;;xaE<xpEbcua4*ey}@L26?|MvEO^+z;Ull4395A`y2>K9{)zY6^s(4a^Qm
zzdnXN>7RQAOQ13^9uj*I-fkKr&5e^A34AXEzXx8G21%OH<v$;FQ#j#1orV<F{Z3P@
ztsuH`9q8tQpzVhbOntErGXl8mYoGYQzs5@*B85LC=zla%{06LFdg#@Bi}TKRCXz&)
zMUdDeM36WE&kXJ8<M`e@jnm$!k^|bkv-KXlAZ{>`zNPc+{<ZD(rJhEk66zk%?S5h2
z!SyYlg-vJ<M#h?65yG^awQG=i@_VDE%+;9lET$~Arfwh0Ph7Oq3$qsoSXfn!*agAN
zHkqfO$BHLh1&}&-2+i!LI}F6c?IiNfklDI`)`=o}wBhRzUtJYiJGvXcZhr|NcG-!Z
zUC#3@a;1EBlMo2#z~{B=41VBDGwtue4D)W8t1B)*r$FrXF(^Gilh#6bb4c_TbUGlS
ztFoxh4>vkqikp<ECZOvipikycRgxmDXh38a%NP@}^3`+EN9VN_DI5El#Go*jsFZOz
z?9G#u;PVHKpfw&<yjB0QL)umW-#82ZDvP!>4qm2j?_<}{yS}n2i>|Seycm$d+w=^O
zBC;NP$mq{V6lYTq_nxJNG`4(dv3i;fX(J3lu5!k7O*JzOF$0pdZWvLEcDLC>mWfne
zrQAKeW9%^(q9GYZGB3SzT;G+!yC;{qkMHf_I=N#mm13>C@qJMoCMx<!v{K0QF6d$c
z-*<0WyTq_D39UG#EtHY|;^MKb|8D4hrWGI&{ZAy~SDnHPkcfYDw0;RGJX9w=@*gb2
ztO4yc@E^3bxqa87n_rr}h5<~jaReTLxrg>3A6Y!i(iBFKY8W}N`aE8M_QGf0-gzkO
zCR?4=(v}Ny!)VUnjg<=v3#G9Xb8#@wG`&mFS!a3^=_zXVigSy*S_-4el(J`hd_;_o
zr&v3$D7gV(e9d|5=0Fo#;YHzF(yHs0a-qGl7tValZ$BmH7<)%D5lEPC(;-tbXU%Oj
zYR_Gqa3yr8A<g9pfR$aZ)(p5%9b0_w=-_%bgrAm!ti~MGAu#G(yTgWpM|O1|$v;KU
z1_@`(-4P*n9m&u%okf(JN}(8(<oH;o!$lgHw*lCvr_E{q|L`UrkDF#VpTrlyc<!M{
zZMpARv7@#5%%;lzmdNSsie7oBssmAy4O`nr%+$p93z}vS9CUR3?k5*$9<c}7PS>hD
zj%VT22;YO5C34)%LtcLpXKfOAhC9JO$ub67`~s?tALob-5*(F~yU{@3TC~L?KSam;
zQpzN>A)n9GcAX;^GR#<+9#@D9t9`M8q24Y(uifAT$%-R9@p!hUG<pgLB2g^~^x226
zCGmxkreaZav=v00mt0h>4Vkf3LWCr#M%a$1*{9{tV9Q_bYO8Gpq*(&9IeSmE=xi;)
zEja6(con@-AUn1lzI(Jl$kOW?ANKNTxx=qc^<ND8zuL@fkJ-1%Kc_T;|1)Lhch<!J
zg~~aIHhTJ3D(9~=ApXMvV|X+?EyG5{0sU)!rIESe8e1Vm>N%PXFZAWm*ksYMwZx2u
zjEF4FFp3$j_DKdUVWC0z2b~8m@7`SD?F`Yna>H)C)loQp0V76Qb3B-UsXrG9BP^3`
z##O5!z)20#6P9Qep{p4C$uoY2zmy5Y?~J`gC-^&Ai)2mf#X^e;X?Nk(@N&&NMDSj3
zXy+1%3)3A^2wd4o%u)ZMB<e4Ubb3S!S3_#jr4=S9=5j?ZbJ5aaIGx-9qb?&HYF71d
zd{P8>vng%#qPjsj9WEN!P}0+;?^2N*v4xGle%&jbu23r)NRj{IJ?)s@q=o^10`0u?
z5O9H8IuqFk$i_d1?f#8b$MWb<J+bN}8UL#X(lJn-0q{3y>ARRqiGJ9pe~WCzj7LvQ
z{N1Fp-gZ*>Ydzerf=&QfuDyeyouRdZtBv80gq=OD9fOgj6WwnU)a692EyMYw+v%W%
z&XWj^>**{7LHR9>=`%}I@PNR}a^%cKS1AJC+qoqfbt$T{9fvJBzqP-KFTP^nhHpSA
zXh4XvMaAh3p>AwB`xIugYn3o%()hKOCdZgZA6oMy7=ORYz2ddzbVaEe+hwl!4u341
zZ*wV>=2SRyld0jy!Aa~_um(x+%H{?yWk)ihpxjiAE&0BSvxsda2r#^)bfRCq8^anr
zK9w|a1wr0qg@I%=aI2#?P<zWaxXV~_(*hHs(2wsJ;lCk+-eHIc4n5ZAgFm9+k1H9G
z3&tF2U?3*`x}80&mpDGRB6aO+{rO|)CE|r<#U5a5N}q%;;M}@-0bl(67X{#N|9E%(
z481*GSRvz5fC56a)+5HZfxcrgR0i)eHtFQ1lOQ>kv}tlMg$f$UK*y=C_Yo1Z=eF>-
zzNOyryKf526(bfWL8sf^fpOOLs>jJ!b-tN^wA_U$|DcBeHcrg>3R+L_Io5&)YHhML
z0Y>UM{0ANNRUy^a9f4T|8Hxy(YBlK}+pW+{Z@{uaL{!H#S7v5CJXceSTX<p$PVdD6
zJ<OxPwM%#w+tRAV(a^A3>5yWep<`{PgH+JGb!CQUbiN!+GsKs@0~Zk6cQ}E!Y&(pW
z{_g6}sdK^Pj2;)<DobuHha(RRt(n{LneZlWQ0}tPPj?FFivn2%9nhDf!~xz)7{89<
z)s5l6*0OlDO04f{I<?beR8-!&_k}~P&ES3#YqVgWnfn##G!luy2EQK2sSGBbf{~J=
zVbmO~+i-viFtk(6k3-FWF?8F0DNN5YXfF9C2}VUs5x|zA5c<ZTqx_a7Ef)kgZ!$4%
zow{k7NEjDqva|a05beX6uEz=5u>-utuTMPAUx^}r&g1>vgovL2p2sc>07qo*fg_Te
z`uuEy1ZK?#q@JHdHr*_zETj6xBL1odBHYv<7Tk-m=IcSH(P*pE*ZD^+WA-f@`|C?I
zVbgg{Y;0XiQ&gC6q+Z@kUu;QWOnRY}88#@p>wKD0y_X$JpoUH3lAyh!M`g{<1W>jb
z_~66g+&P!X#K79zgNyQoNAh#bMP*u+G{<<@jgJw*=!l8wDix;!B_e5#3Z(SC`Xn&w
z9AW&l@}IY7zh@4-EoMw<VLq9GEF>LHK(*1D;$@D8wyMiV*@THQHSeaYl-PJlnj)};
zE_)j9O(pe>&*`}ZU;V}~w{mM=Z`Ox^SM#N{@QB1wPSNa?%+waDs5!{texxNF#$c`(
zq<v~g__xe@mU?l>5Xs{3!XF!;3GC)ASK6&#ytPQ*Ygv|}HfdP34Wu1v<ed+TIrOaP
zDqcJrZL*`4Y&2M{ZJA%IV+L;qR`Aud`JT16bLgdz-usoMc7p_aHL+s=Ebw~MuO(w+
zu}VgSgXcVW(h1s{Vd`D#XqYdYbL7e=%nx_d%*4U0rjU||j=7|Zhv1S`yMyzgjae&`
z0lOl)Z?M8(!&XKHulozFz#X!lf6#+MXakIPF|xMdYz98oRw^{9q<fqRL3DBU*y9zH
zMI|*0keA^nR_m|Ol82N3(~tQJv;^=4Q%gXs-O*6{N0cI2LCSs>P!yS{{qZP2-juOM
z;Dv8JBIKnG7y?G*dfdmoj!8VCFe3gW>3jF7h`nb`6X52`vthZPWbCSwTP@kyF~6QO
z#zD{16FQs(l~LCMS4DGNF4!v4IKhEF(B=Co-VftCC7pxEdqFpNR4McGlXS%7e$5SC
zbxD;8y=&_b>SD*9RU<4W4*7&Jt46K_O88CmRiH~D6L_|8QklFQvlIwitmC?uXax|=
zF-|PGHJ=dEs-QJ-T({u!5q@d19=drZ+X2IE>`#F&lLRti_3+82NQ$A|J>aH34fC*q
zIT6@@eBNMG1{8e7qIobW)<Uv-)HTKTrhEC!SyEq)d$C{D#k<A@l-v|DGvitNAfihS
zN7x}49@BGk>rVkreR}E9wvYtn3)B2a$FMILUIC|UaqYU@gY}brxSB2vwNFzm5m;ht
z(8HkwUN;m%$Aluu0<;F(eUvXk+=@`Lr;Dr~eW4H!CKm9m(P(b4mqSdcomB~o=S6=G
zqDyS`NK={LhZeKVTwFr#dN)vW5d{#O)5fnK$6<5pL!I=Q!w5NxlnYEG(I*VO7fEE;
zC!)$;1167>5R&w`$z;Opf;j@u7CM?0Eb<H(A=~PJ+7QZu_;G|@L1~U7BE~n!1b%BT
zJa|_Y$NIj*5`dWZug4#+IWa5ILXcMk;gSluvFQ6$hAuRthC8m>g8t@{WrSX2+IMK<
zBE2tHWN*SR`ctH$X+4*kcE1m~Uu3`y9av1<zQ-UH_`1g@I89vzj9%?x{>FImoox&v
zvMKqbQ=0$s&|`5<L9@fo17ZI2ll;K1E;rwwMD=f7ZY602C0SV+c|{>XZFwODSs7^s
zA#FufSs^?oIy&tiNVVjM$D$X%(w<U(yJ|6YLp0MdC&`cm#epc|B6y{SKn*s~!qAZ5
z*pB4yOU`BZQWXvOo-MEk0N~gg(@~*n#>h%~?xlfUvobZJLN+b#tg)Ue-Guf&AqLG{
zo)uFbA_E)dL8dtd%LKW=yMvVTdPVj;69?CYlay>P{+?8Vu*Ea3us55jZ@j;jZ8UXt
zOF{z0OB+(f56cCrlR)}`bZM?#57Yulwe(<JM129H+dNr|`@Vx39HA~7_>HcFA}ufw
z8Yi9x5e71g1-YLtGP*R6|D$@Wa)EoA|0{60O$NxG79e|)v{yB3#AO-dG!D1@Y%S3m
z6gww5vP{Mo_8BlAx?5_rteIBEUo$i2@zq;q&2|}t_**M+@x0j0K@AUbLV#WHS<WR_
zKUps-VPhsmIXGNH?fb}5Rx88g&Tb-<yCCM=+ip6E@}@jt2-A5P@-1ok=45Ibrau^>
za2;TL?HX)SRk(<^C39fIW<pcO)?l@Sh?>Ao@aq9fwE>F;&0fv%iN0N9>$~}@Vq(n*
ztc(+<azkeK&s3%jo#tTTvUesz++c5AUWRfff5?nHaVK>{8`iUHd<pI&+5`a3p5aW9
zUmCBqh`%1?7!hxN-_$I6xbb*H2E(VjPXjbw$v<kmht&T+XgpIuzT+=dy}!whLYv*A
z_ABkSF*8!@gnxmwElp;MV1$=WkKYws###f0?@Hvk>Tq?SDOLk~`Wm+=x^dRydhvw9
zG{8hw<5TCwP5m@nBBHS8PJj;@s(4&|w9n4E&1Zjk;}*;maiP0#Pof0KW-5jkvzdP9
zcX;~YZLRI4{QLwRp<QjcejAsmL(+@MTBTo;!!(M^CnHLnF}Bs{mCy-0R9*$1Nt?oo
zhp_AVW|(0>;867?LOqVyaM#Fb1VbM6L2QcDVI+hQgmRS<^V+Hr8-rCyVUh}6#v*7!
zg5s;InF>r>`flq1MMK*k7}BlL{xD>NfVu6{7Rl21{HwbQ4h`(c_;+3ARFb4~>`+#8
zDDL4Aopgf?yqjEJ#sy>W;Lp-uD!-a%>5rY^r)=o)XYyk6;a>#e%P?+5Oa{}uU-Ci!
zCi}JqIEyz@v0<Dmu{65l_*fi0@dZiN#3p3Cf5>4vO`KfYwnO&I?25C@=Y^LO<qEx)
z1PWP}g)V#2T{v#oE!toUDNt|Tp!W>%fN;mpxAvM^*qq;t1dN0-FZf&v4osy-n#mw*
zDhNBur8~#wCSib2fvLZ&u|J<8n#E$P^3qH%;l0k5u$;Kgo#}@Mm%hjJ#3>uMb<iFb
zWTpSe1Se*jbn)#*B<L2nthVp<DYl%lPrcLIo(Ty-27%VG@%o|aH&7JhfgD$9gL@JS
za|`ui!BQOG2JJebF|ERCzyo+@DvOV^$M(NBcn9_EFRxuE7rMpCt{7}K0Q<ja@N+WA
z#IO!1{dSLPOfHumqqhno1oH0gkuVl}MnI<w(186<G~lnfe9B+V^q-@+e~fBkW&NA<
z{WCovZ$ZRLgCKF#S0Z>Xj_LH_A;hT%X{p7fl@4i#B&Y*fhbjA{ULN*SicyP8()9EX
z*#my3)ms)&B3VxT7HANfiwYcOFKuL|CDw>9+CmrcHnqP>F%<yS0b}up^z7}nFenCs
z=DI`<%_c@a60WW0S9}r0nQj83FAFInCGW3%*iB0#CMEY?CGDBLStGqPup#f2gY70T
z7!vSfBx50$dLs+4G<v|<{UgQttEKYii0fZ0l^@8_9}!oD8New;^6)F|J{<4QLhpm3
zhd2I=Fe(WwrrJxGIZa_gAQ4K0@@ec{DatBF!uRyIWe(X5N$&eE>*h!{xp6g|Ce968
zOu{z8!uCqwsXAr#gooaan=he>P!6&%1#pj>GjFWyt{s5!H90NHr6gq!#SI=q3-Qiu
z`H3dI#L|yHCn1XoFL}YB`X0`r40U<}+z6;ys=6O7M_v$S*>BKygA;rCn!3_7&%E5I
zfxW{Tlc`{QlaYex0|i|Iva~_~o1Q#A!n$My1@9icKBDk2T242c1xP~q7KTw?SRNz|
zBaD*$><J~x1t_A@phgE4U(dy}FUTMAd*(M0$pmdPMoQB2KJUh#lDOrQSFSUwF<ldI
zL3?vmr}AX>I@ElX@>~lbEy!QPO)ezy`_LZEa@=jnZnhxOdUi@8gb=FY)s4-Ue;iaI
z0(X9C4Ie)T)`T9^=bbi(gJW)FXWzaG!TCKS@Dz?)Vm*1wsx>ox9qQ|ZnsDm~nlszS
zoo>sT@jKAYQe^VyQ`OHMN_GLw%U(zf%5GyBlNy9`YvK9Aju+Gu*_dXsKE)W=h;EpS
zpKI%A#yu+H<|*pVP%awe5!h66lE5s9u)avPq+fccPsb>ZyL&2MY<%4C?PxX`Bk%Wm
zo?8@Y(xIkb$WD^LWUl{82eRjL*2U)Y`(C)F9Nd)ocNOe~u%PlicR6jhM^#;Jvl3q9
z1*ch8RGt(s<v;R;nk2=3XwXZE9enq(C}l{|?z@?xoz}=u!)Ld9%@@T*sV$FUInCBX
zC<Hi@M^DZqkz6M)KvsYM^%wlb4-e~)L25tes4>t2j23IV--hyq^I3a6#3=!=6HK^0
zU!-A*!Z`S7KfzHGQFV9I*JwK!Iz1I;!AC6(Q4#)I`H8#V5?N1-QueOLV3KnDau@ZC
z5gL6W4uqhucId&=5j`Rpx`|2nX!wRz7*gEJ*Z6tNyHU9kzx5!<s~y?(1&(?Q!(;fi
z_2pwRc|!$7S?WZ}01`{Wz>CR)*mRv3ZdhiUl$qIfZ}n}U5m4v$LQ=~jkY+SY`BTbZ
zfV1f>-Iv*nT6P?$b5UH}>%M*N;B?c$Gh=zlODs7NrUKSt=`<v7IplGpKY%Doxp7r+
zl5T1BQUjSD0#g$ilAnHv*pPzT8Hq~y6ZXzg8A2X*=(|)en%MPSvvn%nh!O=GLSKTr
zrJ|ONrbH7SgAG`$?IK#`2bcG-$oPZ+pcLQ$Z{ZKc@N4AfUxYXr9~<GGmIVO+*C-Z%
z#Z_I)M*r$z-t*|wj3n%jjATNBYC`<)<p7M|8Mo{K^5P5l{ILqzz^5S?1i*Lg4D|ul
z$8WI~dr4D!2dREO$mjIXzF$40KNd!@zh`jq9CaPlF=Y}XcX7+Dw>?9_J&?(6O}4(`
z-5{4!O~s$JU&VIzo=TO&kegUbj!pTFahO&N;dc1hKKo7dsCJZ7EiC17-!5IV(Rsep
zp%L38DQhm=!(O)%7J3^2p5dPp!5Dyl@gz_LFso@Lt(|{J^;2jZD<yI2jUAxiW$ArJ
z|4l~!|A80B8X6!V1o%-8G^#(g?AKTaKj6DRExEsob@2TdBmFob4bRjH&%wkHPf1=3
z&&W>K_@S&t`v*fnVd)_X^497;kW3~Kgser4Kag~oj1a>YMqbLjVE$CJF~`ZEA=7B~
zK6H-=o&sO0PhfDP;TjMVsnNS*3!CT|sk_^6-bXm+8sd9Fs&AeKn;uHl7Qd7|2;9{H
zmgf)|AG-QHiRTNT=vLOICY$n9mkrGYd~lHmEyT||3^BQ9W*sv<z5wWQR(m{HmOPx3
z<2&5VbRx)6Ky?YM_@vANWcRd3fcZtyrDtaUI3{mHfOKYdx3-X^allpGe!jRh4>MV;
zrWl+EKF?{@LOLGTh!Zfv&@^O$DX1_FM{>4y)Mjh*6d%E&l}~^hXM1rvr6*FhV6$;6
zZjX2jSuk*u*2<e(YeGbMrT13rQ&YmUOt%^g3z6hpnJ&QHO?b6>zMSRR#_WY?pT444
z45?VaEE+%^XOZqYr(`qkVH^vEnv0<&=Q?4)e1rA%oXXj03u$o7q&>`>JZKl86{NI}
z3OPx9Q86y5x`Swsf~3qt)txTP9=c+K)!}|r2nN7R)KJX0qkjE9RrT(rygfrupzLPA
zD8C%3pq->p2>Y-`lLdE;S!m;Zf?YsI)7lmL%ykat-8J-s&_+6`bk_nDgyR#7|JTf%
zz@Oyg>7>Oc(~kd2JNv!1@Hg1RoYgEZJixHveQTD@R1s1aZ-FdWBCb*Gn-@0u9I^59
zu3Ce6tKjYVV98!PUjb4FTuSm>JUb&|$E74pP~i#0+m;J@2a-Bz9|Mts_~qn$6}}DD
zJV_f+X*5rH2bknoryW&M6^V~0$d{v5)$^5uJxd2?v&E(Q!BKkGkw>l{fsSOu7~5)J
zw{M+Y87~fFU*C0$gD0yo3D|?$(@U6uDJ)|U#V5W2HVIiHaBog*K1-$f?D9z$#{0fW
zur6N#gAMeko~9T02#hdFeVB>AdCL(}9hwkz<ks>CEao!Z&3e;s<oa??st#nDW2D_4
z<|3uof&clt_XnVwR@^KM*+EF%VYyu*Ur>ABT7i5wK%iw`cy3#QCe<;EJ~!T%E$Umf
z54kI-VgW*%iOjj;)1+4UO|l`!r7<gB^=_;wSy=U$x4t_Ux~uJM$GK++^D<g15>5-M
zxSvA8unS3DC)+ifu@Xvpj0a^c@c`6YXL=9(3*x;d#4L24+QiDc4~I5!OmO(Di2(|o
z>3om@5efb=QH8<c%Y7>owWZTZ4XFus{1cKA<v{M%(}zp%9t1>BGUG!TKtODs2*|HD
z2rfWCe$i@-w1S2<7S^tY2HKAqkSD5b+=Y@jcHArJrgt3aLBA~nir+@{{xuDgV9`8D
z6!0UZ0iQp#+y6P-@gT|oEoQ3!SdoG!Y-#~Wf8YsO>FQYko|^SB_4TLOq0tYsLzC-}
zrWxd_74aM`)YS3!K+!iMRBD~p<M`tM(GE*e*@x-BH?AK0?B^+GW;J(5(}S=i7apmT
zq+4r?N@>YR^J1AF?DMgvzs9e#LI$21fbp}q*qTD3-C+>PXj=lY7<b`<_Y{}Qs@azY
z-3;J~bvJxnj0+L=UZWO<gqla^jBKoWQ)y=2Jr-bNN2xi7ox|O40`s}JpOvt>PuXRB
zJu37C4bI7G{}86l4OE1jF(iv9*S(;Y`PC(QW<N?%G^pe@M(sDX)@X+bgltdSxVz^H
zpf?HXAn~2;ohiT~u293-g?7SPY`PH7^IMbeZf)?H9ftDWz4oM{M8z+$&X!lm42E&!
z5UTTS?~<6JfI~5J+zvNFlm!hW$>IrxSQU1G$B;!xF#Jl_(_O1xCZ_?9^=9T)yF2G~
z<3c2NS0cD7-kj_>Ce6MR$Be*v_ba-9aH(aFIxVV3Hh+&e%w3`I+)J>zAWNkjN#_8O
z#jMo}Ge~K^L$rl%(((DA&@Iv24Yk8rXMK;C8t@7k>?+!H2XSBCA~KKC?|j!(CvzWE
zY*cg(k`|fDq+P+8gL!T5h|Ifa92GJ%@<G6<%K04*pEEE=38ZGZ0Al{en)cq?oVgKB
zynCfjfvgh71K1$ugx<fg`;g-JPQC*q|L`9r|KFql86FS7)9y^2|7tw-O#N)nL^I)K
z2$!$$GqrtEci0d5P<QC(he9H}p7XQt@S3B<`ymDRw5sdZV@&Y-G5#YFXiqC<1vnN)
zy84FNtdH3%q0j|Lfaxt<dPc5?%X`xyGy^r_-<s83A2NY$E2L@ri9f^Hx+91?PM0mo
zlXe&OZAfgtxC71Wm+7l{I#wnyWcAxnK58V>9+KWudRz(<2tImaaehhSjtIf5SZI8q
z8}&6>o*yh5A$k<5^+@tEX<<(~N73`VBxQQQRhF=@*g_9{*~*l^(Z2w@P5z=Du@bX^
zp`^&4F99F*U9q>N+E`<x09?Lv{YU<;TM6Y|0bpIdPjp4`FOwJk($4bN_Vp(h-^0D9
z{iq<KBNnVy=-_=z2NV=1wW>x70udwL<BKvCQ@k#_?Q^14&WR7q$3o~J@qgWTJqt1`
z+g4ysj+zo2Ht1}G#F3dhxPAP_WN^VeaqKJq&@qCxZ|57F4RTo=iS+Rv^`M)ceod|H
zybeYFs8b6uGMI0KpY5WA758>r$E%1gfsK59+`}>Dn7{A~<x=xsMUI?_H+@2-X(`^v
zJizYkXx3pf`N){5YEV7o-|P>Wo|UMk;Wcby+6=<zPj;d)rAq^aX0I_j2c%M2?fGf2
zxp64}R_xMX%D5cDwRb~p8LKxBuEqP}OGP94sfG7Z8JDEY<j$;Jg!aH#sX;4E#En1)
z?s3}nFqzBL5;yW&3xNP*vN399hyg5ZHcc{7a$Gab6^Hcnb&85|^i<CdW1n%b^>V9a
zHtEd|)z{u)h#AVDg0}?;OckP>-g`lW_BM0<XDZagN$o@0tG1c7pR`Gu4@hIkR0b0S
zL38tPd<B6W6?p5!s{IONzakNDD<M@Z>Pqf(nO|d<&fTJ}+adwleGgmYoci3k92;_W
zS{^R2k$j|<B)~C#I&9`w3+KO-Mm)Mi08+sN+SfPL8i2;`Y4W$MtgZ@@MP>CVW<!H)
z4mLSp8l@rZE7Cu0Nu;Y*fYx{c!1cY^;6|}8znl&Vnonj|&#4+_!rrQ8uE$WWXXk`h
znY1$>nWwa{l90Y`;kr#S0%18DH#MqPr1X_W6r>VI==3rP2NB_Gt}LCkxguFYPFS7m
zPOBo*pjHgwsUd@1jdShk-JF%`2!#6*K;2;dWrgCzpn0RM<|gSG)?Jxq?l`L{$MxhT
zp!|p?P0^g`O`QLSH2Y~z9+XymmU~j)8scGl)WVilA6NE;uZG}G3KW#76l+1jRjCiV
zIh%T^y#qK&PwS6<)g%8#DgJ;S+W)y~R}$|3gHkN7WvhMwrVl@LC}AEO)iKoK(Bcz+
zcPJw=sK@L8tMGZE6MkLAzi^9xw9K4H{i!bd)Z)J`f*cQzhv#96?cX&sC#c6^Vya^N
zzJy_*FA0BbX8x7c^00)T4&G1w^#`lv2YvEUjDLYoMh$(;ae0mmxuBzGPD!Li5gFH6
z_yB7ec<5xF6N`Pl;>)$RK6{>Gzb_&@H-J3%I+hgm@FuPA^m_L@3pQj)whkc)i^#kB
zWMlju{y^rTkq=h6tJt{MjoxhgPTa6~@_`etzKs<Sb%Vdtg6ys4Zz4Mljl63`<B<e=
zRXdh}UH966f&`SNC)`GgC?UbY+Zb+SCg=wFR#|O1YG301s)K0FJb)P)i$YdS4=**O
z>qZq%AvP18IgUC5($|Ad9f<^I8hPYGdd)|ZzQT*l!HKoGL~%4cny+_tn$~%@lyz&3
z0F#>qoTr64ILT{RDE%WY`XS7Kqvx9;c&@J&GuwH%ASGdo`IT~wOUl`l!U-7b?fDpO
zQ5IM1U6fvKu}F;Nn=lsJt|W2c-|KNkJ<F$`?Pnn0!q^{T4vnIx`@Ko|I(q8BQuE3-
zN*xJQ3|os&>Go<)3Eiby-MMvcWX))P&^0@d8)&HNdp<gN*KQmC8_1hYCh^Zha&|WF
zR_W$|s%5Dc)nayT4eLJjeI_F<j!5fImYv2f5vPI}Dp>fMgR>EEUV?+FBDMTU4WYpf
z@8U=CZKv$V%?^ONd;7#{`85>$&|#o&WAku}DY#nc(*Rlw9Zao^?W1Gn9uhQu2iHhA
zG<LB}bvs1-=&<RAvtYenfso8$5_%&jiy?@{oWl%Y11x~{uvc&I!wj99pz5?Y7*svW
z`3s$P*0<}U--|P&nvGZu7<>287Q0^soCap(vP-g3U?Xo<#Y9-Qvc-9ZAC?Krri2&8
zQKc``tJRQQV!f1Qn8+5x-xm-1d`*BLeidFWuLnNjpNpVdL#|_u1ldGO!j2{ainh*}
z`YcA+qpGxO8TaPpH%|s5zi;n#Lf?7drDvI|KoU+w_Rn%>MOe<bA5=Tzj5H={HjPA)
zo7uy@RKnrq0g6pX)nyU{zxJj$VO&q}iNNLe+~d!IfmWiBfc4PD6Ds#=eaHXF+kruO
zTt7Gwn2-YM8102V{V}JNnd`VCP!?^)Zi8&O-X!}=Q)=9BkwiOwRNl~<niQ$5CMAbF
zoa5)Lnggs-J0I|f5xdXKx{hQD0?%V4soxJdZ1hOsN!Vg8WzNfb<=%$HM!;^^@4Oxv
zma0}K$=p@$$?66<6gdx_n8}@pQfynE;Z1}v(3$UrLJ{xGDh}VEj)F!8_f;bAQVVoI
zJS}|*1Fdj`5Nbm$EG8qdWvl{DSvcy4|0xrV;l3w(y8Lx+#^-h*l*_$6$eWBjrzsv4
zO-}J~M4Jv5+k?Cv^>wXF;T}B#aig+Mv&@6gzWI9nmD#9+8l$GzjZ>+Wl(JW9FMV*I
zq0N?iN){EeT%9dWs6AKE2GT64N$GS2C;s40@7)*<y|iIxdTMWXlsoQno<~3PjN~%_
zX-*B+3^RXOYKliTv$7+qU>LqEKiwAuy4X~4TYjzX$sgNLBPZUUQWZI+_pZLC%oK)Y
zcy!^!)KOdfQ|P?I<_5jQyGkK@Xz764U6y;<#zzEBx_zZ~3?Pab{Nm3p->)kBA;s~;
z5B+Pg=3|QEsm4b7uNs??wvvdEo-~cEnu(aFmZ+TQA)@)Wq?BI~b)mEp;~s#A4Fi1s
z@L+#k4$ZI2(Pm_(m9;a}*8R!dGQhKTGPJWZ1z4kxdb}yTM;cHH?KgBvPL(RAj6BK`
zFfL^yI;|KUPN8JQWeT1&U6CB+<>Fky`_bhY)j-?Q4ddO~6j1`^d98^|pM6UM#uz6I
zY~P-i*&A?a10Xd*aE=tA5h~U=PkOkz_l7Z|*aDF8FzL_uxYdj`I$c5IgyJoubmA^g
zIlG5?SU!O)>d7k2!ISuKDc-zyl8F+|hfomj^MZ&_jGY#@O!$r>{ycQSJ2L8KP3W!0
z4(pu5ao6YE#WM;>U~8ua7g#Q#;8&1`Q%r_#AL8}1F(UU9!0rpS92J)xF|wuilmiNx
z3_67)^u1a=W-(9QGe2@R?tWk3LyVg=e{=O25@eyQ4$MebZW2=A0vl5UdO;U?CM&|*
zg`W-Wew`j##-wMY!txTkP;BP}>cN=7?p-A&2k1(ue~gaf|Mev>(gM1&9W8Af0R6MS
z#Xw~N6H<8L-_*3M)H+|An$NC3w^WlAMWTn~Pfu!+a!a^gw$dl>xZm&a@(QD&qWZGi
zzgyDBbv9x<q3PpBM#@-!*er*VJ>pQ)f1<8A3A2e^8%3ztiQSWLkKbP+m-g{fV{via
zcrZ5xXl-mgLG6ZU7HRhqU*ss8JbTGY5QtU2l|?4eBF3EE(Mw!r;nhTfp$He(7B?|H
z2`(IS9n6B-!mMUNedDZ_^q!X8l@zI!Mb-NAy)m#did7tYLIZL>Iu0}#@G(=S=6$%#
zukmFjUcvgOA@4+OjHw*q-&R0sih{P7XZEnwn~|#<f{YI#z@{v`GMs^{LP5ARXDf_z
z=KhiMStChx2L<e@58(5^1^Ztah>u?LQv*@vzn)Zp*G$StPtHjCqi7aTDOO2DPfj|)
z0zwuA#`yB@jKqMwoiHcByZ3)`M1Ku3u>rpOyM^_4*bgOXJ|#s_8F?`^Kv9i=q?nMj
zqBi{x62c$wT>w-yvZlA^LXA^Kh!<2|c<y5!0&TaH6(W?rNN8Vz^z}hQIU?k)<;Mu~
z>y#w-!KTFm(F#ZACal$yvgVfU&OTeLfrGa+la*UW2sB20dG5^858RFkxt^dU?1Me&
z+_e1rv-;InlrZtHX&JI{IZ{NpHIqEN-?prJ2pVK$`LqjeYuTEb_=q55gMh43V#Dmz
z0)Kg%htw|F3JZTq%{_5(h%ILZr*?wWDFh_R7~e|Bdf5x;Y$<q-qS7;pDoNPWKB43W
z3vKuTk1=u#=Moj(4nk_Sbd3FwiWRorb)8=_N_O_Dv4;u3>1||)ezvWxUdjsgEh>gN
zKis>jD{uR~m>I%Sg$n>4AV7=v#b{)w0klnKq2@};RrST|WYxxwe%h2tv*LEr7>h9B
z5xY<0)Qq-C*~rboU&@@oOTK=BOtiWMl#I+K+mR?vzIwgy6DhnVR+cGj_krdTGr>x;
z!7huwN=!v=DaS>(Yfrp+v_^YE_iTS?Z%JenMa&a6VIU>;2BJ`K0H+k)q^CWT_!8@)
zN!R++a2PZB+eYXq+Hg0L3t=cy#<q7wq#W)V2g!ZJjdGve>yqHt>SX}(?#<<+PPuIk
z?imKie%2HF>sQ78FI)?z#|F7488>L<|0@2>tuw_;v~_^Fl@Bbh$*0l}|0w;KXy}O;
zaliW)!D2aujsV&I@I?B5b({ZO3iQ*z_z_I~b7DZ=(8$iv-URP4j|Aw8{sAzb16)+l
z9*fO-+lZp?XG<1@Md1By5ut6#S8RJ(tV1S=l_Elr+gnz%sH4P0{kg}>^>MGKrE?q7
z3S!}4rH|ZIw1o!=`-$?hkb^*NNHM(R9bk*kjr2)~`m<Gz$Y)GhF!r^~cMd-2R+i6+
z$dJdJ2Y0!GwF`JeL3CCVgdX7T`=-yqeF=?*)iRTF)+G1uP~c}|11{l<m~O}9H7638
z+1=i4SaHBwu#i?ADC3}!r6~x<ke2435~{=3I*0#;z=R!0p0z<vH4=gaQ%ZYcUDh8q
zE+fFXeX~2=nkDgm08xqy>aI731K)G0<0MWR<(+x_s4L{!{^j?{L*I-PC{O12Rz&Go
z-Xx&R{5VbzOgDy?`2cSMWDWrZvkl6+W3lXuR`!fTjz;7gru29tFCOhVD<pE(_AUtI
z{pngKN16*)t<rJI<2L1te00O~qIf<1exz6q#>!<Tk8-^0W>g1ntp>!?n*CD9;d%kp
z0+bf&&n8WIv|iREjN<4YFaSeLC<xT#OBg6TWsYfA&3o2cZ<S*a3sS1ubM?<*pzeM&
zZ_(V_*5v>sTJIkv`d?^th9BPY(`IbF|0>cy`(&8Os?*4-*#P|z4`W#$#Czzecw_yR
zQbt$*UAQqW#D(4g1pDJZ3itmtCiH-~dCYVDX<S-Icl2WLgpv9r&1V(r7t#*F0m=w_
z=)$9hStCxtcg~18*YLm(gqw3N(xKDaoEf8q0G==@p7bG=5d*WyL5yT`1!pG!;6|0b
zO2YTd5<idI8e=%BHK*~UzaPmgdzewKUvF@g+jzvJ7Mvt?e?f(hXDyb$;XY9<3YPI5
zYC*dI=IU<26jXO_!f0*=ihfP|Cfg+QlqnrlHQwt0sONx&G!{t{vQdNYeZC&g7H_=d
zi$?<Khf<{Varvp<D;M1_A<f3LX1`-QA<S97Bv-=iu!8)yRtT7uCU*TeEp2OVk98BU
zjsM&z^G9IW8jy0av!~T&WTchSwE|4$e9R;NAjVdQ1IA<lYC2N)O3}VAXyxZvB5VrD
ziZ=2B@HR6nkq%5VnntYod^ZOq)MOX?t&LdC?DlL2rj1ovP1}QsuDvJ<FC~Z>sbtyd
zHQSGp#ZM3>a9qi;jS|c+b~T9Hv}^nwvL+_iA{6m(&{d5?6!H5#$vN4Eq5bkRuoyvZ
zco!o(K%AHr+e-w8$u~3kYrq*u)zr<TJds2}2jJE^+w_$C?`~jx-Zg|~4r_B2X$dU7
zcXSMG6Gn<)l#i88BtK;(xY^KoJLL2B04u{;d|a4Wh^RQok)K=_!N1LfEl#rW$no7~
z$Y5)u1NeZaOC&OWYBjO`*h#?*GxCKyOFf4BD#{EBN863>p^5kP2HDj|D+D{cDWtL#
z$L8ioC#YGu;Tjuo6d!6d|F?1Vml6X#YikQbU8^4@29%V43RWROQD$e|+$4>+a}iU<
zwnwyw_j)}}dh^mqZC^oHx{2zq>K{i^Cl=5r6p)aBQm_XmWP~C%4}bmx!J(dA)Lzj)
zPT(JBFK4DFMlqZ=9^OB%=)<DVs9>)j9&s^$6E&Vx)<1r%r`{rqi(4CRE^Z{ICof%K
z>Cdc84Oj&D3(_P!(-43JWj{HLzuuUC3DEya;rSa{H~k}UW8$Oc1FhSyw69dft$OeC
z3&{`tG`icq=x?b9_XhFCiz{W7DLT>buGRcI;ZT~6^oZc?u2NFY8{tZbEtk}oB|_hT
zbyhBTIBL!X=&vKnz@umuGt<E~spxPMxXi%9Q|+Cfe)R@hPp4$YMhPcxlg~`_lbal9
z2sE6esB2aAm+5?YbBy5Ss%37o3o##c5bonLW)wH!-d7c6fK~BKftg)+3gg+1_g7%d
z0s#|e77jzSXQ@J;316<~g)S9@xXkgnhrx;Cy`l<I1~M)1Ox)Xj&FjOOjs{~WMpxB&
z{c0hzTTL!JUQ|?)#0R0Ae<HBHcKP#XjX?+_TJ&$c6V0eNO3yAn_NBn2znaF{Ku<RK
z{-L3A7x{`(5>IME89+C+ki%LLO>=XvNwP$BaV?nX>7JR{%uTh0MpX=FCvFx;kCDip
zvv7;F*`-7g9XjDEH(l55Rdqp1atCVscyrs$bY*Dbe8*$?b(<4&>j1Rs40!xorCjb~
z^!+ATAlMZkt^Z7od>CZ$#BKle<^JrRq62up)(!xkBmj&Bs4cK|v;$<NeiSW6{`QuS
zl;b*s_Kf&!5JwW=nPxuJ57cVzb}F*<Tk)!rbLih3P+sgMafsoq*~~T%UE?s_-r=*5
zgiuOo4c&|h$|OP9fYe^nv{QYB#jAv|m0ZN<86fvk4NW5?AcL~qOMhox8hf20)=XV5
zhlVUJHO<vpqHHhDqeF8c6${C52y|``z_#VrBnIN*)>KT+AcrdWS-?Q8u*8)ZIZKc)
zs6AsqV_VLKo?<&8r=TDwHaNnwK=nhkKmID3NBB$7X0ll<|Mz~4?o973bj#)Q=h5m*
zwpE8THYt5=gE?u7C+lm7-?Bu)g;g%6F%z#^eo0s^AI6@Ibi_a2m=r}>-umbqAv9M*
zAgKhv7J+0c1)3OMC4J+!lXU)WL?X`9TNdjP-w^nPpU>n4))av?lxaBRYovVLM(uni
zl3b16ShQw@7ucIbZM;@Ky(YQ<YSGuk{GmQibHDu&|Go{OMjJ!xc9>rLM5dy<kF^BR
zhTO~^FYu5^+cmXe19e*Ryx%FLvQOvAp$_FP-rg&ZcM&ArJ|1x~_dU0GfD{BiDFpoW
zh~xb#1rHFkpKlpJ6@M@rtN-L@Z_LW5kFh|U3LN6gMJd8V8V*=SMy~DGHmQgowYW2<
zEjK{*Reb3mESnRk&snb8qV{-&yp_a5xYfBX`leZYjQC|eGaFUat8)7d@y*73Id&WQ
z!lr!Q0)OLdMNoQWFMXYl-_$-DLx73X1?BJ)=L?P)j;|2|>!E}eeK#)l39Rpb@AwwW
zpikd-^78?zE3D%8i<L0@_Al2|QY$uRwXPuoU%Hbif}I+{)I}Zls^Tl#Lc8v9sCN_D
zc0bWyEydI5N+mz5Q-pF2CnMm-3iGQ}rK`gZ_DYN?v(U)5Y+w2+kYQO~Ep*U$l-z^y
z&Tw^$C{By)S`Dg5iwK9@ZJMM9&Ve+`oAutyV&wAXu?V_Sev}OZu+I+!!vB3gaQ(W^
z|I2b``eXZluswd<AP;bE0Km^Tbxa#y7j7;{Cukz)HQ9EJ7sF(aUvu!Z7Ja6rI0m)Q
z)sob%##A}4mUMHX{gCH?>FeM^*Cpi*W-$oZ^ktEkd<WV6ygCR52p}OutMRyEG;YSg
zuOL%sD%gB{%$nHB8V~njd`JqH^Ud!2q~skygAVV$7b9PM-w)%>1#`23IgKCXXK!I7
z^Pc{KyC8&E6wakdVbq~tW1JS}X$XteRsNxdnE|tvrxzF%=PrXZXH=s){uzaC$$mn%
z4JKw76|>=LA#)i1$e>igNtt=d%OYHQ)de<9NdA{YM1}>-))5D(?__p!O2Ecpzun8p
zYO<C)8ZB4!er*_`Q>%!PX5~3EIS}e6S|DC7*34{v6!egGXLeM;=J!8&0l&r!9x7h{
zF=p^v1uS4@tF)tqg*L;F6b)ch&)5TP_MK2PX}FGEg^w_BrqW)H6b0yb=qqV0yI2+b
zz3!v>9RK^lGZA5B7lPjkQRZ<`n@pW=ZwvyL&YQS`i~+5N`imj4GW_kv_GGSI(HaGi
zojf8VcZDUqV+8kXfjCiqYK5e#BdnQZ1P7fW`UxAEo7BQF7;$oLgQ~><6ZI4Cs;TKk
zOd>Z{CktSrXtrvhb)ba6l*{<o7(|<^$VvYoCfzQS-AmNxEZtFW#kI_3Q|ZMm`OLN2
zsw_QCNhE5&<*1?$r$HOFbV|ZD8)EPoahHxNx5_R&H?YLmJ_Z$60qW|Jlev3ayNvL;
zvYp%f{Zz;iyfd7Je>{SC14DA=Y%hwdp_^`-M*bko=q{Go3?UeLs0V)wIko7DYzC3k
zf^JlVn2JH2HawQa#Gdw1333rn#M=PYp+^3id_$L^-Y#H5@J%4sXCyck_KmTuLB7b~
ziytI>wb)!EEQd86l=3*ZiS}J1TaPBzFhJWp9J<c)T;cb|KBjGy7!*6MuFpDp%G715
zaw9=w=Acb#>B;$6(h>J)9V@;wYv^EU=@Q&26RG5rAhE*kyk_blQMJ9orwrXM<=WKc
z)uAXOg%u^R6~8n54mHPn;B%uqfiYPe{5otI0~7t`>d~q$;w)(21jx|h6QAo>@0;<@
za`e~YJ7EhzS?OcZw5ih%=FZO!uE%;!0CcD2xe}KJ0v>6Wx#FRqa$evjSe~Lsk))jz
zl?JDs<dnng{a}Z*NghCwRw_L%7dPJeu-YgKemk3iPZhZ}AI9$VvyS^J?gZ|By{X+b
zx3B}kbk-x(rA`i$|GJbReF+d{k`9G!<|~~#YR)t+%JP}!$_MYrPM2{}96c#Rm>I=8
zwAJ+1ZBcr@BHW5Gymf5Fj=opkZq`~Ou*flu^#Qj{ghx)qlGi+?m2L<iIQl9!kps{s
zvN`=<QB<jT2buiP*%`7)Tj|QlyT=X2Be2;d>wK<ejZ%SR7zNy;n>1|kg~iD%DQ%<8
zVr*_)jl_Y*TgoPC8T=JgCTay?MzIJd8e}vAE?#$>c(>xX0c}kQPuqjF$tX>4OSyc6
zdX1CC)|uGC#W(w+*chdyN^OFS^>YY~ZJ=+*9b>9=;e0EzK~Whw3un(HZ^Kj)M6}b~
zJZ$2)KQ0O<B-wr=RP&dp#3W5N`P|B2RV}Hxo5@gbsI8p#x>%;*gjr_v`h{j<sW=dm
zmPHGfwp9AT+Qn5ouNX<HqIT2e54Ut2_b-LP&k;#yo$~lVr3Hgt){$QpO&pX-_wW#E
zQ>b+Y#*b`+?gF4Y_m3=j<|-}92k1`S6N&k?;P)@J_W#?^`hhEcw4eu~ej~Q-l#;at
z?FknJj+yybaoFTpye)5dIky^I6Ck0$1Al)#I$3Hp7}BQW8*{wAcIvT+DBeJK#JJ<u
zDL*x4V@A+d({_HwoeDG-t0?Wj9UH~CvaN{*bx3-I!7x`4+UV6RW*VVhlLdu<vSP*u
zYZWHt9+tCKh^RX(#k#PefUjMcRfQVHxy*t^(bEk&uZ&Rs#qahE>kuqLx-Os|4><je
z%7+3K2pCiQQlU39>#*1gHgpWfmlbj>;vMoOaYE5~pCQ+Lpn`J@`1p3)Ie`TEH5WX#
z+W>KS<w4ZoM1Dm?Ol*0Tt6D~r>QJ@MH%^5(`fW`?BW259nIIyJJe#WEyiVXnGF5ne
zQY|QAv=|_19UMc~2_#2&KMd=~P<E87lDab@`UaUzU)Pgq4y;Qe^ztrm7ew;b!@-y*
z9G7t&D1t_gmP`b}Sp(5wa(J@JhlGFZN!K)R5s2h8Hi|pF>t>ESF%}55XXjkwK!#6d
zPP)}wPq0HFp0H^HCV5A9ID3~TdKWNzt3BR%kk4}m1UtUeX0i0>8ivOjF+Yrl$arF6
z{i-pZ+&uqAWBiEK$^R(umcEBn+|!L@S*zVri*_ZTEDU`8T>$h*C4MadPy@LZ7ySNW
z$+;X615zd^>f(*_<^J`)m4kCRP43x@ZSW8-@{pgco=`{euo>IjoJg4W^4D0gHaZRt
zbP#n*JjN^O?A=?u7u{W%-n7_Z;BDajl2!8I(-ODpP=+(a^=2sYUK_76ncD5aW3)Gs
z)|??YTeE0+So$tgV&(@gJgD44w>8fqE<Tm|XHwD$XThU_+I&%ZKJ|Is915(e7>Z4V
zCX}}gCMMq9XqL(|vkW<}f1Qe;6!A4bA0}*~4J<()bt2PuBg(8K^ZbyVc2gr4io=cS
zV&byHcE{Cmg5=S3lDw4g!H}X9`v@>12Qog<e0#7cNi{+Yckks~Q;U<F3@V~hI3gOl
zW96)Fr@%=V87ue9?QqUz*jShL(UCjXYBlEBRyc!nTQce76;7QmjBVM2ejbY{ET-hm
zZ1WU&wL>%=z~cK%*LGRam0~U<7IPDI>fqX=)&Vl-iK~0k=`DLAqtRlXQnM1o;<nz7
zD0|qbFN0T(XZhY_=rRT5WDbp-;x(V9-TK7jwTEol3N8jWGH)AK;E;2X+)q>`#hRO+
zQrDgdfyvxI+A3Rm9BiY1(HOs03ZVXKENZjS{l@S=2{^8llqh~=+P1cG0RnlH=i`mz
z8SN3{NHVd1U(K5)YZNG9<YpvRUR;9jgDD%85TmMFm<6&HLxhr@8*}01;H!v|HA}%x
z61#><&W8jRo70BOFX{Aqg=6{pZ~VYh;NqMItmxAi-meOe@Q*7JkT-QQHFOr#b<m|%
zl~)xsGW<z3G1CX?fn_-gkd+pJfy96W{1+H8Q9*gYpH+Yl#|tpP@956<0B9p@xR@ZH
zqRZ@_=8m;u7jlaxUbTw~o*pxkux$V^<@3%q8nC(&YgZMJLtyW6=Megua-f4wG|rl%
zpj;D(^e9;zDe{nnG`s?eKv~~}8pvDu{OIFo+UU_c^xNr_%B1qJ4<7SfNw&M+#WNck
znw>+9*Zbp7E(XxMUe<PYcJ8lwI5<@4zj<?0El6<mqPbo+5W8&$z<7@2wa?bM-AKEG
ztnJD&N#c3;mVS8C`&xpR6g{ILd3?jPuUx+ir@E$QakjzvKvYajjB2h@H;|g+$mIt1
zZ~-~rQ-<Fa5?JAxpm-=2yIt6wB1rZ;UUFf#LFi$}7H?vKk4f<8Eyk%T`S1)%g*Yoz
zu`QXlcbO|QOtQZW$49I^w+PQrIiRw)w^sssjn6=4b!A`kxspn4)cc{~F_Vp_ndt^x
zN+!Ub%^8}h7kX}MblT)AnY*~SU|B(dgM+)DoSg80x;b7XixV#-rmu}PK&g6MToQh7
z6gX&~Ir$h#DpRw%bbWmd?&j`p-MYb5J2lKHfu78~`%b-kyA^6@x^q$PopyJxyjh<V
z(zCMX!F=wE%&+inYZae+9<-)0Wp8Oj4fDJZ%lrt|1U><Ufh4w-6cJ~`gWujBQn0ky
zkS~^b)d&trbJkHNe}}PuJ7RK*O=i4&V&2~Bo+b%zfA*D87DYg{W80iSSYr6(;yzSf
zZs?qeh2<_MJ^d>!Ha2!<M@L7%{{H^?*K>8*-ZaV46Uu;+t0kHW4y*zm;h~i*-U)MR
zq@+zLB_$=e!}IO!ZS9o<qGuXoz)QdqeP*MKl+`@3{98U1`2DS4(nQkk^fKh05mV$F
zJtMsDPHXSaG13?swkAQVhe2PtI9et2_4O?-W4Z@vP9?$S6q9rW5@(Hi-nmQ$q+EFw
zaXKjAhJ#-3y{ItsX<~Bnt|mW!>%0}JIy*aC;Oy*7TQ(WEJuNv{8gpW<Z@ab7D-QSC
zgY{J*iPCCk2&TyY!`fR$)wQJ2q67`@?(XjH?h@SH-Q7uWcXubayM^HHA-H>x1bdsD
z?$e!|zJ2?i@zxlN0h|3}RjsP8KAUsuJNg1w^r}sn!ADg+e(I5868;WSj;S%=%Tq{l
z9CW2jkwW64L7G%1>-F^-ix7*qluc19f6A>HHo@LSM^#-%s)|W!9j0|gr0$y*Bj9yf
zn}yb6H@!)*Cx|UeG7g=o;B5*>j>e$nW>jT!FRYKpOs5zupPD70Ov`)jmd0WV?@gSh
z5$Q8&8bUP)a<z038>uYID7H!WZeX2}QCJia#!JYsO@avF!PB47o`RK??3YOx8xM4j
zr+^_*ORKJ~4pVsXG_lInA?D=dz4DhFipDT9FM62XU&qsnfGE7-lug%BV%C#nv_MDJ
zdV`niET)MB5;c0&=5h>&M9ZiJQpBXpTAsPw8OY4S)>nf3pjEizw<>Se>t9LWX~>NK
zj+}1L`e2XZDPRGPkjyLT1V&A1T!CtTXU90iU$Ejw#SoM*wGSjX>E>lpzd{%Et_oeT
z7$nF|Q|_D!crHPZPYyUlkx45-R^sr$3{<S9O?gFyyp*SD;%CY-OZ{~|Rg)K(s(dCs
z?AoL?1~^71)#A{$7)r5Z7)I(KWLOPzHM})(Yj+t?*!l|N)DqQ<MLj>CZvAc@xLil@
zI#vN7>&s7b)f-|gpl?UJWM<OzIMXx@$UwQNhWKg(wk2ou<C8xt+~F1m0YjM2Cro6b
zjv_V?&>4-ylXAPAuDDS3Gt-hC%+1fsI=i~^QBYA?eiDjE$<h^h21iTtij=d?5e%g*
z<ma|XZ6iuZlq`4<m4V@r+}c2_!gi)l(0#VSkZCcLno+E9O8%OLc$bzhd^Bcu;bF7%
zf{Qy}00IJ{KHb;V)pZ*e7YA*%SnY#(_I_NU)(v%X_`#8aI`a^ty$!3Bg_C*vf`=_9
zd_+w}C0FnkhD3m`b?@kacg|@#q-n^5u_;Eah#A=_)}qHQuHpo^nk9aSECL9Sk#V+9
zCRvHCns{*hmSGhLCzFXEDuOMigOQ&p0&&|L1d$WC^n%Xx{rTxZk*Q*do9+!&c8mx;
zQc&4ad)vx^Z`7A|$;k2xV6(h0HU4S*5+q1>wS@L+ZPwfsC28U1Ioq%(Yy{}Siw5s8
z&)BEmqOh?kBldjw@PR$J|5~0zP#LgVT@nsFG_q2#8Q7wPU{~HBD(T09L8En?@(de(
z<D9K^Gv-2_6c;-V45ULt^-@!d#OMygKsi3mb-VRvc_u=OcrtvrJv{)?6^2#351{kx
z3T9-9IjvaYUr_rhYNi?|W?*`T7!9PUY^JbFB7Du*FSFB@|As93%0$m~uLpG+CNYZ-
zhD^E536zxC<%_3*Si+DDi>8tplL1+z2eyh<i!L4PG^<PN53}8jMncB40ZPQu7pjm{
zQAXsZ=}-*@<RJ{Kd6;lBb=VASGjnP4rZW2`<9_=P!fhE9!xa(iql%14wW|&&tWdVK
z?Xg;E$z2BqCjO*v<4hkYu_jb!;u&45f(II+*jVgsZpzb_Ke7&B0M?&sjjj&)hcpEw
zWlu@dR7gpmWvG=Ya#Ny)&juhi6rKR9n3XF?Sz29vhB%i};+lqWRw;o-FDx2+=hGmG
zV{?GajF_62w(hI}Wn;c8R94A=Y-3}C55?%D-ihO)mubx-Q4q*&1PA5{4gq2Jb%vjZ
z$J_AkY+V#!mK!I=2$ZX%3O(&5HdxZ36b21z%?%6)+bA}GJcTD3YIHUfEc4GF^~r={
z;2CaAkr4%s(feguV3;?drkV0m3j8wcU~J5~*_)f1o?$^`F~<Dg?c*_A$86r!M=p0*
zlgtMRANdr<X~U^WOOLAi_&nvn<8WM%KDv$>VC!V136dgP$_B-!hR$KK2k8)ZK})P~
z$!(IoW!_{O3uX*8<y+PT5kxjNc5e5Hc`6R%79Oy#0vyYD(~7;gDkUoV!=qwKyc~sJ
z<iSeeaJig20k%A5sUtl-9sW=UbxQMe42CKM6MsAPgY&kP6?$wshtkj(%o=DZrrQ$+
ztgp7lz^5`8S)s16_q1c6LH^kZx5gMfGB|}vL=`Fh;4886IFP2*#K1W0n^Fu7jwX4d
zFzfs{@cNorwQ=U5vvCtsB02r~WcD~OAiJ1cKDj6}=N=X?W+OTRog|>y80<`(rb5>&
z_GD-Frf1K$Is(m)9Q5=xHXB_&ZoOZ5G&D3k7_GC?pbqL|;PCk#-B+7z&<oA=HJYrK
z6=i0KB*kyAmw<DyOV5!Q8>n7Lf?9Hvx=#~f*ciXg%^g{LZyEQ>U?fbjHH|4x6{<}q
zg!<3i(kOGDGQo8jj0ML}y@Xz2qL^H?qr7n@oeq^*r$Nxja?&T0VQM%?_Q3H*Wr-V-
zIj9yJfsqAHg`CUdcg;SRO2=A_j*hNhGW$5=3{_z!iTJHhd`yHQbPqGVuz9Q^O+JS@
z_=X=l!?a4D45iY*-26bk*oM@`TgKE}$}Y*PM+VgNz!@{0q-m_AUq+%G(7p-_*gH7f
zL2p>rGNo-CNy$n|+azaplfy_k6N7Kl@+jXjPnw1nvj#d3ynatvSJyW<s>aGavSUXc
zhFk}umI^WyE;WzRJY!Eblngr+64&Nap<|py=tLa9gKD8PK`2~o9;JfWcnOSb69cls
zxtG9kjm6M1g>XHLtO?OJvO*iE;Q<h4y0>KN_td-*G}A!YiRQ*y)_lhU%=F0iy3(!O
zR7gD-Tn6EU8mnwG^Z2n$Pu2+TSq$Ohih9MQSs+s)a^Y**>v%zMK8lygshtRjGYT#Z
zeISmenpA!Bk@;m%QzB~NZC8(cCp!I5vW+164`~;1d6b5wysAtrl!D3qyx6e)Q~4G3
zg5<7Zp?j;lhh6I`Lz&jNdkz=VZV^;{(kJX-TWT<^foE^~G{bGjW=rI|IT;x2O^l6q
zxE_<`L4tB=gV_zEkwfOJTpN_LaPYrAEq|Iy1hK%7+C|XGg5|DdW^#UidKI9p@rDaV
z_{X7KP#<z({D8kZKm0CuKJ518eaeXORYG83AoIl70JY78%tyYhDhE=j6vWR7#zPP6
z6vE1YnM~uK_9BJ}f6C-?_CLK6geBuo{eWor)wx8FH0v-@(Y;$qPcMhbu&urQJUJ=J
z=c|la<`zs<(9Lv>=bQ&4aUwc>kUD5AV;a5-_^@lMUZ^T&I!tEvLq1V;8CJ1#oq%n7
z>&|B(@cOvC5wR}B?5Uv=uI(9;Tb>E+T^37_w?<@4jNeSD*huQX-R6+XY)P1!Bf(DC
zHxNQ{@_!feuD~IpB4?&6WI*N;CPv=gn`|yj8(Tm`;H>mRt|&?JCgxgU=;451f{Loh
zJjt|x90Rpmo6Op8$DOm&I=oh`Qno+*Y_w5Om{WExI^mQ<{t`WCV`uj=U#46VE9X2M
zjq4-ROl>l`&$v=8=2aoqu2O&-^25$<xvr?Qwe|Z-v24bdz{%Z{^P19^km+d425Ht6
ziwA@0e9;U+azACCl7^w|9|2GFil=@adH4vF`#cc)<S}@>KM-%UCVZ#No5zwZ(?)p7
zLl{O$^4OspcH^V!ztc#KIj2I-vdHAY-awYsn6k2^w#p-!Su2M%`IIL$r1y4Ua+wMR
zMng6js3w7|Fp||VYdNL4bDHYQ0e)<&P>)C&5!+N7G!V8idu73d-REj@v#<p7U2n%T
z*U!gwi(sw*R(y}f%SVs$q(m%=_iSUMQ)FXP4M>}n@yK%vq<vFOa*Z?1V<5z9O}S8A
z)ZS~sC@WL*L*`V%2{A^r&vzIr3uUSt7%T^lT6?Ul0RJokGhJIpl-Z|z-rK~Sx<r$*
zFt6c_#PdnbzF=svQa+(;`Fw|wxmJm0+~p!^tA#2*s6>$x@=OML1*-VRjpWHj<to#p
zJX%9CC3E4@7as~_rO>o0VgFBN&k~N?pt5pqblH}u16kW#x|7Bewc1SmVo(-j%_hD-
z{JJL@k^7Ed+*q^G3YpU-NPOAQ<s0jKmwRL=8UQ>V-_c#JOXl!KZ1fkVLN|hytDd15
z#R&(S@?>5c`hftwg(B5L`hl-i_0;6%{0TT9pb^0RuToIen_neE|5^$%baHkyFmfi4
z1waF=_1IbIe<=?AlxS4}(1YqR{uDCn1XNuC3V5$%V5OBh)-x)Xh<sbgQq=}!?7+0K
zqN}h(gE~Bj`d`_kDjx6BVp)yD$*Rx=g(PYwIel~P-nKe?_Od$7B)(jOWqmtEte42@
zCC5n};gE&KqpOA@kXa(@bjt*2y0X%ABxJjN2q4kn%jB=QWnSp62A>Iw2uP$Ejoh;x
za_5>X!?i1FIDP(n5N^yC3s0{WKv9;Q^#=P<CI_R68+MUpcMj2REO`z*ytuqB|7cHP
zQS9qYovXdsQ4wb*Z*VRzsQpz*wP;-7L)}+OYI7UCnY4h6#b}<EHgo9Uuz81)8PnN-
zp&~6~!tv%0tk9~bj%l%%p8Ow`@*HvRiVxnJ9{gC<Ww>nb4wi4HxD4FY7$#MdcjEf;
zE|>!WI%9}kP@=0K71TEnWEc#=LAU-paS5(T<2R8D;4EH-^u|kz&l2pg%Zc;RyXI#z
z(>u*oZ6>8{GpIN9cO}`2$nZ_{zz^;VOe%WueEqnf#*W8`GF!?V_!j9ms{1+UpH4Vq
z2zu}wo;Z5*j^EP@>N+EVOD9yZGu>a~`-D=0=3#@)BD6~~T(2{<iYl@|3+)dmgjS}t
zU2Z6><6qHppVqN=|4bp0et&2l0VISD|7!}70kF_q?f+4}axyotH*unuvb49hcmHQP
z#oC3=)!vET*u>eu!rF<>-NyP<Tgxef1I2ekulH-pI_9t#JKZct)?6zKZppe!ylp!@
zuBC(!IyQVP%er2-I1;E}W}#${E3)MvACi!G=5>}lu!>DrS9<755k9#f3-&>&*+Dvg
zhKMc$H}(PfuorgIv*&U1I4-|S5X15ckJP3;0^XP$@%VLuB+i(!!_f#0?99}iGwlWV
zk9{}2smG&XIXmp<r<<pW>hZO*nguDpF~Xb!tqh+cS%nLS7lx}xd#l+9vXxf+%&Za+
zT;d?NQ>KgV?oN$wZeNS`L9&q2Q@pVb7RC9^uG|_I7EB$_CVX1*nNMH~4(GBw9vqw*
z7s)(^vT`62j8RB(D~;a6AL-u{#7cyP!@o&$k-0P=(8AU7rismhW2)P^NKk|@ASKMs
zO=S--hhU7OkXO)mjU|mAK}K1696i)8ka*7?k*BOK*&!>#l}h!YqNg%Qmh|$A;TKtJ
zw~qxR8RRWO5)zX6pj{ucGY&YU))54Z5E%9`+3{WwO_2${?#Tz%5Z-e}(R-gAom>zd
zTX}7tZeI3=-K`e%uWw)WUYO@@Q2e+uu&bG(C-|oN;!*V^v`(zjZ71MV)|=I6VSiS<
zkM)8j#{6FHy}$54X7;pb>98&=^YV$tTmwuv%z(^T+xuxLNU;t)7f+>NX3A3ov5)=M
z!^Hz_)rK_I3TV<<LTtOsb9r-2kaZSrf)OEdc~_=2?qCj((CO54*EwpLET);z!{}?K
z6eUp)m0XZPtql0h*o0GG!Go$JV?(Hz_}|u*7JSZ!I~Txeuis$_FX<@Db}%>g3m;qm
z#9ID^2UaL|iUbNoeiiS$`%Raz^(qGT!w|Nv9!`LsMoo^+yPUi4t{kTeQIjj!+ShNl
z-Zs@<)QuSINoXX3a1=d6JqpO)_v6SX4`fDBF$p0#=POYfu?7kRUt(Y{@D-o<;&i!V
zlUd+A9lyxn=q;jjJGOx{bJ`hgO&B~ESQ#)}vv-NU$=N+zVUc)pCx-dTo`E}p%w8vn
z6#t~CWu;-rNh6pEyg5gKKsU-9j9g(Fj9f3kF<44umYbX;m3CwNA;qLWnN$}~+ITyw
z048`zK};wzF-`%m%!xvziR-xxGcxJ2CNXY)A(~n@pHyqe-6K+vWI~n`;d3MgVVK9z
z5o4rHc$tBLHB-Ix*NHSuwER>AVD?3oP|1{3sZR>p#-S+8({Jl#W_R3HmoXF9@`?Bf
zGKfUc!!$zE@}b8J;hJcGebjS<AaU!6Wpr~jj6<QTg)`%H?qyNSt1Q#86%bog<la)0
zn|>rD2hG={B(A8!wP~{V%(J%~jyB_StsHc^B(=KjB;dWRQKAj03Ghv9EAw*;exJ&R
z5>R8Mh5$^4?h7PCDu<6SDnpo_Su6!=N`<5Knc=ZPeNT-$vXA09&0du%r;i~wt8JDb
z82St38Ut65IqdUw4Sn}yMUTAg5;)P}t>A~v@+iyAwfXNBi2GRZrrO$u+68?r=IfNr
zuA$m5czkWWP&q!%oVG&>SPuy*+?e=l!nUA5UZ2jHz?vn^dBRuSg>|?y($rCx9YiAE
zbCo~Nt*)AhTZN;dwxTI%eF)Oz(=uyn*|C0uoXfwylts33UYj#kpt0pds{`u|S;}+K
zrkQy;B8l_pz>Z>Rm;hY9#7JEiOim|B8<XfEQmdDRQ)k`Wa56m+dgS5Phkv;<`Q1iI
znS&sRy;)FXbt!iqhA4T8syvCQZe@i(!^7Hott(TwYgIp!;l8|d0k*;!q^Jrz`D^H{
zq6zbW?aH8IjA4j4t%6vSJ3WD(@>F<asrwc&brMrUKneeG(6;DZMaa5%umkdv>2c7z
zhn`w3{08sm(Myk}k7{XU#3f(KxRi^D%OlH}uqjQJ>a)|<Y9*x7N+U$2s?b&U!5HQ3
zI;ZM>(0@AmE@U0>k*5Dhh$#;&p0WrP6Z?u6inTm#KWb;SvuDTA{jviMvE-(Ys#AY<
z0h+d=Ip%3K#M-6f^V12rTNp$9=n}^U&*iQ)8z<@*t5A~@asPWqXtmGpEl<5xj(GU%
zv*XK5vb(wX8|iJee6{I)z46!U?L%tTcp5GemK9m%8V8(|thG=zc<}H?xXP^?kG)2r
z)m5m`9BCueRkw1J5f?4xRwtWDkIYsvDaG&V<2%ClbIAIy33f^-9WlH^fG>SG!=~Pd
z&Jz2EFEL4f17CZar?S3UUdQ_`XK{HY@~NI6om7+RPSem+xA4uDPcBKiUDa;Po<Z%d
z>VbeP`|Ubd-e!(0VP+j}%RQNf?fsy?k;=EAeS~jRDGpspXrDyl%7~aLuXRU<Dl`@H
z2DJl{hvuf<m6pAOwvmv|34-?}(X1#X<+OAYU&V)>lZ(NR*37?Mu^j_jfSMyHVB|GM
z^|WNewvifNUmE0e-EXSWcWZjkKZ)P<56?#}wSZGLmSmhMbu(ACJR72G8#<HAHN2Ze
z_E39lJ~3g~ivOnHfFq`zoZWWnihaYUGr4}x>iDSZeU0)c7V}kC^@!an5_LrC8w(ma
zYCEm8{J3jD)M42cJMum6?)ZbC?=i+@#+2dWwr|(`)yu1EINSi)8x8>kl%etOuHo-g
ziFkl>{+FJ-SL_+x&rc+6jV+8!oTB1KErA6QM6F1Tivs*9-d}@+i-9#`=|N%|qAZSo
zoiop9;{IlY^yDec5+4cPmaFPA$(sS}k28hF7k@G0>=xu1v**JaytQW8)nJI8E0d^e
zIEHoOjIH)yu;dmh&0@L-3MaovEA<dg3DwdKT)#_90nZ><#rQme<FN4U$ggG46xFCy
zhPCd~a^sA*yg?GufRS;GZZgqkBeuK2r5X!i98<DQW-ZTVw<xVV;%1{254C6L(du^;
zZ-;iciw9*9raEoOg<GYhXWCDnbqV-gQBYKdxO8{j(EXnw;a;c8T8`;z127Tl{}mzj
zKlHvcvi+>2|0)CUclBKVwyxR>&X)3Db=4Bz0}BGi_~(TR`0dv>&-jNbTvVK_e2@SD
zTsT@|ep~o~aaWoW1<5)BYfzJr)svCBk}0^R4^0Z|xjlA8iidGT+jPV1HY@FdY@$ks
zx0_{Ey;G8EsQi$TB48ekgv3+Ihik=&A_8Bs_hc@NKDR5{LlKD_i65<6RHIjuoS~UU
z!U;F55Hua%vOW_@Y~Q90VOCG3V{15^2a)?j1{Z=EqE8;8K`falkVamP!&}+Yht)QP
z=r2ryvc_qXa;Br)^G?Cp4{oC^7_gxD$vzhz45`*Qlw7D?DM7vS*0T_0y?NKJk1;Ll
zb`9W~xS?O{+~&9BA!?}3@M<mbUDg>9u4aM}CCsbk**%tyaS()$K~Ev6a9@s_&e)>U
zi(l^gAjJ5H%iFOQAAgopu|{(fF#+E5uT*>gzbLc(LB6LGEo;^HI{UB6EOWXfjF2|@
z)Jp@|Fb$$or=qINgcaCo?5kv=R~zf|s?rePp&tD1pNX>k8a6EKtoKYVaS}KeNaS`@
zsVTFAt!?4pPRc1OT*#bs?Z+rDAA4ee0Z^z10}1d2hUd8=mBh+rba9twQmC|{xsymW
z_h?>`>WvtoI~3}~N*QV>uDRJAcnNxJOb<nk(<me5SuKdKQ%&O{+A`j#$kg#14>ua>
z{z-Xe-Vxz&cb2%?$fWg+K;X4`J9?`#NP>%;_GWOjem!jGU-p1+f2iyBl5s9tQ^rn!
z%enp33z~8_NdK!c%kQP>f2-}%|7Skaf3S|p%40Jk@RD}}@6Jj2pBP^^_M*O{K!DWL
z4CD|qWggdbKTSGCV0-t%ZRCZVEYax<&y6=ZoZ&I49jn1sPAAvBb?3w_)y==QR;ZTS
zV^7(%23ZyT+@RIn7?3n=)o7fvQiaCJ$93=a@Z@@Y4ayuvcNUzkM#>QWoIfYTIm(q7
zzfD4jZ1>>IbErRcXnM5Lr@gV?5ll$|5juX!#N3m`h8|c0LoZ}&M%CJQ6J=L_k((Er
z)w`{4d51lMZ{f$g)={G#M~`^us5aA6u5KqY)m0b34#weIkwVZdNx=}2wLVc@ez#}B
z-s$yy{%g!sq92L#!L%bn#Tp|QPC-4QbPBT+PY?2BHg+XZ7&jd}Ks~ih3iul7dl8|W
zOPK?co^Q2#zzzYuQVmyvf@iixne5v|A>7m{?2KV+>Lv=Xb&od_@JGGqnDkFh?x|pM
zL_1bXB*kiDqgay;qi1v~%mTLz(lzeRy1}UO@0n|SHg^@Y`9jgib<$xH6zyUo;kFiQ
z&6xA><_`Tj!5$Q|venE8Ljs4STK0Su%v$P5*>meG{aVX*c}QOd9VSjYnSWsRCG-cp
z`~iAkL_<pN0Bo#~Upkw9Zyx?%Z15jBi(e6?W`7rd1VEJX@-x2Dbxiz<H-h<zH%iY)
z)pD8#{%IP#lCZ9A0Y=pyaQ`b8^ZN+?2TUNx&qL%_p`q8liwghz$I7`Kq~@_qoc+hl
zM<M`lV-DvhoticRH4SrP$I=4*-0*OE1T$qV2Ww#+!My6f)GW&yH~`w5EgTg5<gfVk
z(O-vy^;h^*Rx0N8{~f&kA35O!?d=@_h;`#Xy19Shgi`^i;tU4{=0Dc`ElxOe4gZ|K
za>D&S$^XkTVgA`^{wrM<K&SQZ%`*R|#eY{n{ZGK-^t5y>EbKqQX&>y?p#O@z{9ViG
zFP(g^dAk2InH?k3Pg__Ns|OI%LmA9zm#_UMi7b2@Hi8iute}8o1{y}zk=m+LWNKxm
zCLnZw)+B?1gfC+~lj7xfm+cjeny~z6B#h;AQyg>$beH1zMrMX3E|J+u#0jzwr*4Nc
z3<d&JNwaK-cCu#;>!3`63XDfVJ*FOEQtmFP#VEI~MNwve`G=4oW7Dd&?n=|Hy6i^z
z8`{sJ?>FL6!4wz4fsr6Zo>I|1;yXPxoi=I8tu9E6om(jGF@$*gSvBUGpk`yfbt$-<
zFTU!YNKKUM;hCg^cav3J?DamBy*d{<x`A>2GVPjJqupM{Zd0HvOw`l%A?Tpz5CK7o
zGXc_sps!jUFQ#xur>5Y|uGNzlk9jlq0-mYLQDwh+l2{=63&Tiq%|Z+gVJGypUC^bW
zC(lyp?6S|#ruuX&5IF{b{h|A>J|M~OPSanRCw}(Q{mMK+@pqRMH9zwtJVlK$tnxv6
zyheO#VuB?$Fp5-A8aNq@jSKAf*!Xx9%=kYgm?;tWO&kCZ81jn&DwL5G0DSQ0^_toH
z#qawM9B4lYVgG^SeZ^x$#Y(@rg#G}RkO3Rslaa=Uz6cV`P=aJ$isjN!HMO_`T3VgP
z0{gjLAzxv;SN4|adVD(r-A`F;w$saK@qF{Eg0(mz1?p#b2}T!C<)f|Ayv5)$;45;t
zB77|lZh9?4Wnm3RHRgcG@1eruu>p+4!s`sCK_d-dCzFQMPSD-;xM3YpoSYwl*M5ZY
z1SqHFAqO2G`*7ICD)3#AAb$k!g`!h#+)b;iW(nR4@M~A&w=xFr+^Bl8rO#4`N$Ttg
zpk;BkVdG)~pI&OniY{;>OxYs)U~w_dDlR|~Z_(=x)yf*SUpqUFRuQrc)Ts9T&O_nd
zjhPoC{Za-HH4mky#Unm{9gNAMyRq_D+sT-VQN1_QP-=Rw!NW;zY6Avf;k-6-|I6(E
z4hG-`%=&)?1N;X90e~C_quw9VY*|W*b^yj6U$}1I%Q;D{UBG7kgF`^78BxUoz#&lm
zK?}ekFf364U~W1I29AkH%shR#TEAQOzzU?io&V+-ISF6ac2<?L?ZV@C-+IrQVM{h`
z*c91Lc<HscJ#c}`{th?kq|2?N86qpNxZqiK*h>|QsmgaWQP&wD#BrAG6V#i#?IZM)
zMPT5leQRb4BZg`PA1Ts{3+A{5tpDsClp&cu^xGdl9Lt%XLn#_Tsyv{!^MQ)fWWL5_
zc$)|WF}-^OU1@v>T^wh;bwtGr5n4wan>JEb<p%z~C7A4V@es#785?4q$BB>((9Z4i
z#WcML$4@s+3h2hJa#1VDQED_@<&)rwk%~(X3F`+tjaMO#JoH$D`nM3af)~ooRldr)
zXo2s{(9RjI!%7-8R|m<HJMg0NcWukGOt(0ssl8jH^H*?NLN_R_+iu90(ah~WrzvQh
ztG6P{Va1X6Mq`cOw(Z!Nx4E2tjvJaHGZ6L3Sb*lXRdbYI^?esMAI9JOf+49z0_Hhy
z?Fy*ss*~E@x{nJ;li|^hr1ZdtZI=3>Mo(NhiF?AB8$)#<ibE;h2riG5!aL$7_(?uj
zm~c|7iB+imWD$7!DLRHRJSX_tn_2o_eV+fpV_^Mh_ND)wWetY^ZyFr{Z8rrgCu=>;
z|B<)*H;ytU-}~Ud@^=4zB>xYiVEYO2`(+f7f7^62(leISanxf}uE0xBX!JX`{F_Sk
zjQ&s{q_CC_v=cG3GPILbwdPL;uAUpM@s$eX6{h;Ho&0+|@_GdPb0`1jc;pYc(k$gw
zTP(&`8szu4WpPRkYSqgW0#Xs5NnsK2;_6%U2bTueVrA$3&X;uc2`%tHgVY;MMowmO
zDwo@|OR{!Svu@t?ch|s^b?SCflFGkT3a*dP8|;&(yAZm7%^1!J4+->gakxDfSFE*P
z_Lt~Yy9<t*WsT;&P{S_&lpY^k+Hm8K9I_N>s7y++x|VBcV;+URB2~{yE;F(ON!>{O
z-U2kvsuCo{al{Q-OqZ=C$18U{O$As`lV>6jz(G5P+7q{D{lS>8fK!u5pxh2+a(kiG
z=(&dyFE<HxNrGpOtSbsLk+)+yAlqe!IBw^I0)<sIQb63+R&;KN0JZY6g))hW>sCkD
zELUHe1zD9>RLO1=&)9po<Dl#m>~!|dkyw~PoRzGXAY}9WdiqQ&;;5h=um>!N>L%(+
zg`7#oC!tHIzO7^5J1ftDkGIFVR%0<3`KGuzREH1akWpqkOA$O%Zq9h`-Nf6u5#3mH
zQfZQ@ZefOS(<)3(9vYd`SmjO7#L~u?TEEXDr}5_PaFW|h-q|E-)v`s(fziE#3b~0t
zAT*Gc4+9b9dP=sKf|E(T3YldnYlbY*PCd5Pnusie1*kib*bxZYou}<Px0{k9H7sy*
z9;R<Dk?U<wMb+7-5?jB2nz&zX$8<Z}Olwtbb7}JAP^q`^$q(s8$Vvw&SkqSq&*$Q(
zPM&oyr+@c{Dc$k|h@RA@C5)^pj2eqU_O~YIj)N#5&?i`tFi6kzZ_*(PjXcpu8=Q(s
zU6@tWjAmZ&sq73tkTjC`z5FcRv1bNJD*`+e0kD5xqJLwr{Xu*DYmA}tH!a2pCt@K_
z4NYSy$3M9l{*ziIRt6?EhI;y+a+PiAr+lwsrjftww%?%)|L@?ZpKg6tyw+>QdN^mK
zq%@z`SxF5Om{e-NOmQW$bXnG7e)v-e^2e>EPc6&l^XFYbu#{1^EF>4ZIM4fTbl~yt
zSgUI$OYR@3y5&M==Pr1ewMRC0Z2Yd6F0%a&U|4RpM+2G_u^g+ijm6|4vc)IlqPql9
zU^`+C(x@m2S>29G0EZ)YN4W(8lJ?6KMO%*xM5vE4=6mcn+yW(&&Bw;Kp`>gHho+-m
z=mqe5yzW<EE^~Mddzdn#NU5ewArQ9VNpE03&ymu^4gx327^S8WD|5XG{Xi?YSDc%C
z^2uO?w86BS5xwWSk7MyB6q-?4$U^Hwg?4@9_9V43bnbIe)liaP=I8QaR?FBktTH%0
z3*s#;)Jb??uR|~rTXusTHc)<9gADfVca-WriCZ|d-5#M0Mr*uv&Z}1MO4cCV+6E|9
z(H<V29G7>%s|lS#WNViJoI6|{dorcoOZ%=%g`(cgONs&x`#P6qGOeS_A;dOZ$B9Yf
z4eRtL94)c7Qkh<|;sw>NI-zHCO(bw|228mQUQ5^E{DzqxUPFSQv}x`ik#d0fBl|B8
zh;Z<i0q7?;^H=m!%q#jytpffP{Y3uqt|9Opb-_H^EBfj9r>iAy`IPckEW_`v7RA3A
z=>MpH_R8SF$n-PF&QjI__*E#rp?ZqD771L55z6MJCAt_PW$SII14Gb`$SEzbuEyBr
zY^UAlOLFBX7WCV19&mC-?|k+}?y{3paw-(hfqgf8c}Ty=mv`()+0%+L(hWQxxHVr>
zkmyL)?qd2bo;p8n7X-a9M7L+%3BOM?bQ->|q@slD(M<|;sQQRraKIt(2|vH<oDPr2
zY8vhf6&LayC*>jPZn_i?h#3{-v`{pLhICzR?HAGV<><q5*K{fB+2y^h`d)LyM0!|C
zpA-@D{6WV&{`6pL>JO%YAZkUVZ&I%h6ZxSYO?;iUry?`bX?alL@|E%F=rKa}))ZuI
zMa3fI!PW(E_}a5{)hwqPsQZJ59iXRd<7qZNPr&46*11$We9g%BN<PGaczSyVPvT=+
zh98_ayLR4=JZNW@>-=sibTFJt#VEB@mVe(E1PK7>Q1=qf@XQVul6cUD|MvA`V_r*y
z>IpgwjXBNggg@K38YN{^`E}X+KqF|G024ag56tz<O>?o5#$^eAU2GFm=FD27a9)8D
z4I5@=B)RaAs!Ku`1$@|iWEKwhoR<7kf2?w}7tPd@W0N*(oDK3BI+<P$n>gV7md!U0
z{qH16b}ep>))uWjpZ&@*kzL^NH<=r)ApBn*!CrmzqR3*}ZGfXy^<Nz=PQb$XB{KRQ
zHYaXkYvO2NZQ=O`&XS4#4{Ft)Ju)sa0BX3`9vOMRkR2(zfrc!tS<%!CDMIDM?+)Y+
zy!}ftku22*2Y&1Z*2>cY1SFGQR~@{H2j9OMIr2CjvsEtNbRwKUS+Ufq<jhd%;8%jU
zR~s8m^H5mVXC{p1Fv`vVB`4XBsq9<kO);`S^&?{qb_ymAVC#Rg)oa|`k*!8a2Na%i
z8#o-iimBFy`ciL+)7^~?oOg>2N5V9w(c10KCy-6S#&7Yy9n##C<J}g+^1}cvbQ`Bc
z-i!AYYfYeorXH_I?S@|y@?}S7=;U`?8okMMdT?_&XakB~>pgmrkwx^28R<L}t*-Q@
zjGLUvefSwTn>0+!+yG`S_LunQ?;J@#o!DQGB$&T@B>j^&X#O8*ucbyB)|yx1;PGGc
zUf6%ldj+nKX8XPl2yp+)4g4DeV*Cl{{xucg{C5WgNCmvI9)0@t@gZLyAM1D8$+U3A
zRXf1b2mIF&{4Yr|)}QQrztpqF9RKbRD0?`GyD3=tJ1J@j3Yc10AkAeQEgfp(S!D|T
z<coQ$KmlvYmCDdC&&tfq#KQXVpFprpuXjoQfbk^!GN#|%1$MxH|LYbOwzGA1w6p#R
znr3A9V*|7NOxf7Pyz(6&4Cm12817hjVa_d7S&ipv;tD0XaD;S9n94^Mip`916>j)I
zPDmOA2z+`1;DFBeN9TtxxjW@gJh1We551B_K^mDgN8(g&#y|Ab?Ia2EqN~S1i#?oX
zrw@VNnwX}2pc>H3HR0jE=r55waCs6xhau53Enq3o@<k|}^aF`n)3-dANxWY~3l=PS
z_!`@&T9g$Ye^aLoQ)7kv9fzA)&B+k8ofN1<cJ&lPQLS)#r>~U<h#EUK0@rc@dN!oF
z+j(biJ__t(_|1!Cp2gd><uJu=LwcL?ws2TzgZmN@wg|~<kXMsPM5wX*SBh^pbtpl=
z6#jYrt@->z3;p-`tWw?AWJYN36+;b?GoUA~Cm)rNMV~dv_|{G@m_-2&OnBG+@<i8c
zL!IqAa~!}ui;fzTQ%{3eo-{4RCt*U*2C6IF#a3ztd}`EtaPA;4iVXZNjnlLcsutxS
z^&_t6Is=TRptDmu7<i+HTKY8nGpT~zODI-r@7%g}qPsbCzHP~VT#;&#wCKnWm-V#I
z=TA$b$8?vbU3-HIC-Fema%+4>M-eP|r<~pJJ$<yF2BBDw?`AyIpN7*v#DLj{-#!*k
zv4B>u^_ONX-KWMw)IJDdJd?%kLRvik3?4_!_!s{=pTGMilz^H2XYlwReUm><6y`rf
zNtFMfg0S@)oFk7N+6g8*oWZQpq^xMji)uu1FIyY1sw8zaZO4CexzXB`5dTlQ?(Iw`
zyKn9{QIDlV=)~@LBSg<U-R%)}po>a73EC$UzAoI8LNkph*x6g`>v9lTIawV~1P88P
z;0Tq%w*oFT-YJ~~bkl%sYi{c9<Xtmdgbj%uI4%WA)2`%Ui<)gw5|ei3X)Av)vrm<f
zYKS!wTZl(tYhsrIh`H*_hZWDvd~0mIw`9<D-|aFe#NV2>YWg94`LGR<5Nk^^En}}=
z-arE6$d`3x769uPW;!!xy;)}e-ut5$PUu@}LDp7u%5na^27d-`7yc)eGQruZZ$@~a
zv^=Y;>iE*n^Iu0Ow9K%)1VJaFi@5snm|#^&JS-&7zjq<yh)&!FZNH(=*=-=KErgo~
z9kQ6M;iME0RG>pY{xVgpOHPD7qq{iE!`Q@z;x--r6zt&<1!y(NE&k3#ScK@p*O=at
z?1l3N86ECQhixOeXrrYO_+W~R)oL@7R@oZN$Fy;BjE7?cy=j1Z<5>Ku_u(TyM{BnW
z>*^a;1={CE+K25!@7mRPW;v}y|GhU9H1KMqaf#&foAzok*T7FHLzs&47cZR(?M^`V
zclfV6khOybZWVB7mi$+z<hAAZ7mKF%51kSDe<S#6KzOyuKzb=-TRUTcnE=Vj{l|`Y
z5dxh;h4I0|%(%1!!;0R)5sQSFYIs?KIXUqF3>O2Da%gfT9niQVq7N$QCc}ee7UP4M
zIT<<e>Bz}xn!47<=ttWi=#GEI<c_81%DMp_OYWBw|94aT{~Wpf!y}K^0mzI2{HR&I
z04loBf!G967HZ~vDiP7dm@<OGbrmwsSKbN^U2%a&H@TDGWLve0xdD9gSLI<jM@;^A
z4nCd?eH-%EEGIEa{c2<Oq!0Z!p8Jjao!ZAREWA8N9?(UEi$~342PxV6aZg!QW(cCZ
zcJRc?q@;y=s_PVVu$_Yi>7j_dcg(onb_2=!OGTdrG9lH0!Jk@E<%g`OYB54D>AU#U
zb<fFiT5lMSN>R<nnK6<`8ODvF?$%J4L9i0bq&dXVpcR;+EQX?G4j~!7v4W*#1cvUM
z`%|V&={}6Ryy2mTX(Zc&rW;U)EV3b$a~x-i#-9YRhyM_7!XgKEpsGk;0B8;y75;cH
ziH*2X{tv>`AXh{&K&o>ZrRlp_2NhUFGYy&hb(on1_V!UgQ4Ds~Q6l%ITnfkFXG6Vp
z*^(%Bdss;nw!yXpYsdyaK&sQjFJaXn0qt^jG#VJ7IUL@dyE{=2&>ZHz1_W;(*Rxg~
z>?zk1TQ1VY9Msw;@>Z*~W{O7q;a0}O)gIqmlbqr~AT}6peUb8peY8gy+JNhKKla@c
zVF%Gv2tcmweZQ9YSTT?P8oL36b^x&(bHP0E(xqr%v)k)xzf94<ngcADmjAli|A#Cg
z=g-snS2vOB@46&^x{0;91mw(|ulWmlj>b|NX3p2_=i)EURz1+Gv!$ttft`x+XBp2O
zIm{#&uosd6_rILQ-}l0Q>ZW#=dne>X_s?!>WwF0@Q`@LzNT57-bq5Mh9Fnt+L4&9m
z#YAbj$XhpCy0t&e2!oKF#K(dRq&)xVWCj@#U{QsZY)EBX<CfWr_sa1|ZT@(-XNqE}
z=9>vR-BM71E4=vVz<(8ZnOor3=H6^`Y<KIo%Kc55{cXZi=QWBP#OBC7(+m&);czbr
zD*h9TToB7QULEL;XgT@l>7Bh>`+cBiKHbxUl_lKomSx{ufj#rj&l{7tdVBQ5OXBv!
z9=vqt7DIg*Fp6<;nH?<D0{nbBQf~mQ)cw)6$m#puX9r?*F9{=ymSs<!#s_lV_hKL?
zE(Oz{aJ|GGShCEYv>nL%b9250f<`vNTnf=@yAysQrlryaHLf2V7zJInT)wCiaMb+t
zb!3w@7p+f9h)0mkg0P&V57{__cHqkR3e-atdRb}<Eq1nVh=<S?vVYK!)PXs*f#Ds}
zCS=_>nyD0%N1$~@hz)6g<zcHIUH%;G8%A(&J-C+rd%=4d0{;g-$gU8C9hU4LJQK@@
z?b<b++}sDcncnVxQ`}EaTPKBHU#8LPx_sU5Y;E<v?yJ8zRGhZ9lBfFW1?>ujgkdXh
z4#<XK`5lWHnWqE2D1+0QkFGGfwhKAB(u7iwy~TtRhRfF~CasqNSq8-{ZVh2TVUcy;
zp0QmV;7(mC7RAM8T+Q?N;B}ONiGq}r!-{K&Bu2BBsugiF4kP6Stu`=O?`4_c(@Wo;
zNja1WG+Df+MzJ3r*0Bs9^uZqc-YR2tCDdy9lyE?bsp+kn2<AI9la?nI*WnQpl$cyH
zf>veX2Q_0nUfYjTl`|Ya;OUq@^!3cbO+<eImQLRba4^NewEIpzfayCX9bQ1<_SMI(
z{antU)`b>k==ru=vF9AJjSWhP{|g)lhp9Fde@m7kRs3SX!qB_J1~#{mtXw8U`1kga
zhbW?gX9NZDV`F3@)UeZ)Pq)USTe5|h&s3fC+FuIR=m%^&y3x*=SKR#uzo7ez-;O<$
zUi#{M>8=6!?lsRl^O<_>fREY0L$5)ckv3dpDx4<ob4%SBEaNF=6QuzuXMYooih?f7
z%z1cx!GQ3m)XnhHy|keor-aQW?BO#T@%>8aU~Z8!;{!6^y=O0>5NxHDM5uGDPm_|8
zGQnl})}S(kq^gXRj75S=iAg(^undiYA7#xEsL4qqxau(^TDg=wiy6%&4tL{`9AZ;V
zd#=b%5>aKCz>-ikD)aFYXooN*zU0R#sxl-sn=4l4elny_%E6ji1oo7Uwg;=Zqe)0c
z9fN?%eAdv28!Ug*DJo*c3^qaQ&`wX0DiOkAB8p}uu;K4pu(+gZy?ht=t*=|M5#<Y)
zr?V47Nb-y3b{GX*SG#wkHuv2&HNWl`N0E&O6sP+y&dv$=dB;H{?)cN|%G{5naq=F!
zS>Er4_!mEZS34IoKzWf^RfW<6X17c^qj<X+fd_7j0h@aWzVWoYXnRd$|EW`3xL%Xb
zG(958c~A{Mqg`Uron?0mco&QGvuMUdE3Bw3f~adhQ2Mf?Kmss2(Ul4ljm${0$nvMR
z)T6MNU)U>TsYv@-2Z{;%qlo&E7(1Y5b)NZUAMfXZjPLdEEXT_FKC1)Imehe}k9QLG
z(~UUBK+#DIc=DkrUR|c;h|IQ}Tj5s^!@Ed8e@Xh-wX3%5?p6fKbGIQ=9_Xuvn;h!J
z9`1F%@<L?l0aagBSf0UKvy#m2ZkcRs9Kqe8jB<)~b~8W8#*6B3Cm(M1+`LoBp^Q?C
zZ()Eo<&L-60@HUP9!NO)bo6D#`hv}=h_x!5^K-gC)3x4+xpXBJackouTV!2ey+N|J
zw<@Z}$zb63-XyHrcfe^fis~+Fbwe#GvLoH^SJ|*9VA&U2+#}-JB;ULn8<zpAFV`;)
z)Ofc?-9PD&AeWWFvyXVBNYWIi(v<i3J=6*}D1A@>qY_fY33=&ThCsa%ghGE!W03EL
zJklxf6k8}8G%XL3JdnNc=~#E<lQG34t({b2jYAF*L`q2lKCg!Su4OB+R~k4qb-b=;
zow{J$V0zl_cll}+wQ?!cosJ<6R^@Tn1Y4|x{6$TNQ`v`E+4y6M+XmYcuPK56^mqt~
zL@1;p&JSGjdkUN`lDlZ+VKfwuOWCN@6b+kGL}BICDoIit&OQ#79Du)Jx2K>mP%r}p
zrzhQnMP<Kd66YBU#ziP<)COMFBgfK52|)wCPetJz<?y43q9KcayCRDhTZYpsad$_Q
z=Y{DIE-2PdCa(W0w(<MB3dpa>Fi{iV#RvNL2j=|~fNFM229of;E$o@x-WmD<_0Ne&
z?*@&^@J`MEsqnG*rt=q0NQ&7dWIb-W><d#I4t04!{CMnr%aFl48qIGz0o#qWZ0bWt
z+)}JP^qu%nfGk`Fbvco#+f>7489aR%Ay>N*RW&7xRlRHuylPM^qaO|qsl=os9;fEK
z02{0(hmQ}d#*o?OR2@mnL(Qg$jV8&viHe&wuSt`7)FHxY4Nv|>!Qo+dy2XULx9XmE
zqP%J@l)Q;(Z2=QoGa+fWMU>OFrhk&k_Hz6Cg5c+O5gQ*D`*EY|!MV2}ey}bJT76V*
z+%UIsP2OJobjh84Tl2vD=t&+kRI~KN(0#VTA@YdeyX(qO?6ORGZ}ZNz{1&@vTn@84
ztw%gAf>?l0J@Wpe)APWE>vQVWA9b8~*F@N5Ky&t@_P@IgzekJz*G%@$Xp!ZQiU%NA
z1XMhH<a|W|3YJGy)&#PWyp2-HtV(UJmicG2j=f+N17c0ry+5^`Vy7j%FyT{=9~>rl
z@8V@m)#mfEb=Uf?d8y*<Dh7$tBn%R1%!<}>o{sKxiws-iwc_I7pLFRt__;l{InM6*
zq6w8o#);8K+YCViI;%<0#S-2`2RfmE_b&N}5Msgi*ch|BS1c>>p*9#Ilfft(L#C7&
z&PlNDvZy(48$vXfZF1Wl?aioaY8j_USBuY@eQPGaPUW$VuuX`VWFuUqvTQ+_s$dHT
z9-sH7(<QBia%Zb=G7XcLMTiEu=Rj~anS^EjrfXXHs8k0#5O@6WeNi(;vjvKrD4ILi
z)$M~vji)UnYUF+hAxDGKiH9jvATacW&}?(`kGDoO9`=Wm6u$f*Hb?P|I+bZ=tU({z
zzF`Zp6A((MefDN>En_dEDRMkB%_R@3fF1N{*yA_QFKxuhB(>~aq^zneuV|ee5XO5e
z(+LUj)JJFwvq5I-69w9fNM0YY8HKy}2<D$0HGV1rN}HqeK^{XiWtsv<tN{5Xt7aM2
zJQeGEjn6bc9@jQxn5~`^oq7rR!L<a+g7`r=71_)W_tv|f1EPESIOy`6ulU|Zw#WV#
zf9O3`DZO7^0eH_9zj)98@1^NK8U?bHM*;dzC_4RW#_Fuh7GgwuxMqC?g=vtGuv5;%
zZwvg%>WoPgw_Jamcg9B=nXiay5a_Khw(jHEi1-QE&GdSp`|4ek`|!87Te&qRBNB&7
zI$YIjdnSihC$5E?+~;Xi<<%z?yjWJL(q*|4D2=#}4Y0_XzweE1Ui%na|30nZPJ&o?
zAY54utRPgry7|##+7SZIyUc?qje)CDKXO{*3D{*#9Hfy8)&96~Z5(vf`ml7WfIfsR
zT)>cHJdiAuiVBus=4|2<kpMPhQcV1;7m_mi$9ZQea;x|$KGfJuHLN~+wkzsc>t2oq
zr)mjB!$K^EIwca<Bx)bIh6!7m71n9dR9>|&CX=)#UpflqZ@O&HQhM=MCTq4AR$Zs=
zsf4d`lNsi&@DutG`h7P0Ff7!qh&c3wBad#0i$f!K;;-a0hY-+pqiyYG*byWfqr8+c
zchMVdy_`zZ2It?zh@ZHNBOc;=?~N6V*yi@-?MBqiuLQSD0~-w|o5K3jegXTS3#BwL
zUye>-dCy#m3#F8S^37D#rnT7jQ(my3&5y>9Rn#9T=+u&;r8}cZQa-mbyWrziv!UEg
zr#}IaZg%djXynTEAxfTLr>}E``$*^F1*Q6UW3eg3`aCe+Wk<eAY}U~1_1tbRO4XX^
z7(ej^+mx^F8>WK861>jGV~Kgp@fkN10H6EREy=*8eaqf{!f6(WCKkx(l$$G<hn!#f
ze&*3JrRo~z34Qp&lT2&`y(WG((EH2${KKS>mci2>{FU?XCyGS?)#wY*f45>7Zyf{x
z(a@jQ-{JIT`YDSsANOY;qrs0tdSmFmrCgG?1G%~S_XS<CwWw9j6|P_;#vALdqYOcq
z?wh@&TFI+UUX#51u8YkVr^WBgKbhsipN1(mTe0`WwhkZ$gQ07|%J`6@q{cw%y77Q&
zH0^__vR)jz6%`NjFp;ZUMjB3klqw3>rPE9jnNkmT1CV;#tAbt^F6=BJwvcWRUS3v@
zcd)t4s>GK~^2p5ZAm~^ES>J_ruPEROwWk~<8USgdy$u6REx^i7%rGE5&5gM!N0NX)
zetai@V)50Iz5Nt%bBsbvSOW>>lsgqiWC5;YX&^k<Sd0P@TZOJH!ijEdd^b^_X@mlz
z{I=1#6u1Xon{O3iCFmQ+$N@z?|5}zY{i2>Nuwr2sQv-%Uh9N!#@H|(<O`mKn@4EW!
zH}3jrg1rO!GJ>4M7AlicbSN>NPEih5RA^%o54>fTTZa8H{<pTy;2i;vJ`t=#9_BGG
z{HM>nx4!I}8aFhmPsWwgKUMCp8&qgq0rqD5mpA)+4TK!<j(^KdvC=CF66g`g8dw12
zWNi&>0mR)u<Mq*B(p41HMFQertY8}hV;%8x9RnRZD!-<${%4Koo*gbd6~JR?0`7ms
z-|af=0)P+xyodn5{Y&ds%+Arqz}boZouHx<gY-WmaBE|mSV6e~1{l%1Oronc1{)DD
zAsaKsf@*bwHxM6-6|E$;sXq8SdS;pqt7vds#ca6wIz6UU{b1rlXh$n=M@n=+$NLmT
z+tGc~9AkfCo4#n?vDrdbY{qW{qjMcec-G)mr>e75SEI@Cy+rC*C<Q*Gs|H$UF_yK{
z!X$2D0hbrfI1@q5${0~$x&Rv5Q^U+g@K%aV@-SVP36a{Bar=1|XX5IcjJXFW>H#|}
z6tl5sE2FWdui(T9bM<34Y?SgCp-cSxeR<456J!XO+0kIaY329$GVvwgtO>@(l2WPz
zoH3tC(@N@cb~fAo5Y3H$t5bIhn3|ej5_!Lq>;0$X1&g7RkrBr~rcOyz_Aki`9V@pC
z4&>M5h0(-e37II;R{U!AoXu>eY<ic)%Gp^8?;IJUj<vS%imBgI1@sc}76*F(u39aQ
z>Bq62u>x@r3HSZGoc_5Vc=A^y*r%>j#j~|riuA|i1rh5L!}aXgg8O%!8?L&8qKSpy
zzf6P$`eYV{6<m)U4SU$dM?zoD#}p7z&a`aQ#y{JVKe}EPG<)1wI^{e))wnI!icK?w
zHilO)&R$P^nSlN%Yx;Gz*I^+BAieIpP!I0l$VlPJ9UQLnkUhZvMOW{J^AH`xbPl$H
z)$hzTQ|h@Q(XU6-i~BnP*6_)DI{WSn*s$qRKZX&yVbvO?{7ZtvU2(~Y$mM8vLTqaK
zfd#}>RQf(+ORp`_w3F2U_wO=rHaizcS2hIL28#F1h_!LlP%nJ>Y*!+iS^`~Bz>4>5
z3g$*;s;S}kdkm}OFi=||Rb*_gf`lC(=jVoW-%-$8XW4B7q1eKNu{oH6IZ1;qg9Z`7
zWiJhYg{%_Hk>OFSfnVAn`S;nxPPt}j5UzzrSfd98x*JraCFm%;rMG5n)PYC&46Sv#
zY6}!T39W^@GM9#0+_pv{$~Krwpu1#gsEm$M94`kJU0?ZLX+c|Pz~8yopdTHW0r(lm
z-Q$YX<Sji}3L}Ka_e-8N4LiBJcC#?@^V^tcy__sOSN;>%>Z%|6JL4H?KGW`BT+eK8
z2FKPwWV)?->gsycsOx(jRA6YHYcirR=xdw&P8ff<pV@J(>JWxxbcJclAUF!e2=@5M
z`Lu>}Q4oB}`^MQ<NmO)#pVHKhVrPh?z<(he1DYK(ip6eiXQ?1j{YVE3Ns4#b8Ozt*
z)mbKJalV3gIoXNb#Kzmx-OMQ)&GC?<>!_C(PGNU#N-sOqXEUZpp`Wp;|4`?H;#vNQ
z#!+L=zpk{e3O&I*F~=-{aATs_=_JvP;CjiyNveQ~Y`NQ-{F+Ag$HMbr@8~*QvGWF}
z3tVQ(BlZ?@SEXfm(aEBE%Hqa>sL_I=b0rJrAhuq8uv-|eRVvD*F|q7Y-HF%^I{W7@
zpd(KKTHEE$%g|@Bt+87^i%#<QA))0IKUm2M(oYnTbJ0LpY}&=^-d*k)cyDB%hxEs2
zZ>IFz`$BfzX>UKM`q1}G#B_Y)W$LmUx??Aes&O&PTVZdR@n8~r_v|5pqlWq+7exc)
zv$~d2P!{HA$SX_74>lT-iVIkW*ZCy%GMGV3+XLzE_dX2e;_n7UnKON;cID1=`d}ZX
z&W$JHq22Zps$d{2RZ-XLkwujjAHUyPPJtaz`NqVjaA!*+=)${(EX77ZRVh&~DzTKC
zxJYS1OiG>wJT!43CGoMRELCDH+8>ZysRK{EiHko+wny@}bX*2ECKdfYFF^^EB|>RM
zTttoqA}n<*EtPup%z&U047QdRS*jvJDhkPx{r|D{7Ep0yTexrt?(QVGyF0<%-QC?a
zKyY{0;O_1c+}$<7J-EZ)$y}La?wfbtT|cXe1>FtRUA0f0efIvO2NLW`NTTaw_Fxg0
z5kdk=pN@$!gRKq7>1;-KhI}JQ5=2r0iV)!{c}jPNd)*(u_I0gwJ?kAuzT-Uz<%h^}
z6pER1MB;+NFBJ%A`ZR|MV9I5&W_7X-B(Wv+R#4F3IV(*;Jj8Yj44%k#qu93QU`%39
zZeU;eum$wuC+?N&X^{_UDJ!6;Nx|;}FLk~3x#ZRE{v<ATT9cYHXbyG-c16kURc$n4
z_kn!;+vfnKD(}{eiF0&|9{02zq1DC~voEO~PFQ<OJ9+4|)@<L*ztQjRKR2&re{}21
zqOA6af>zx`A}J4fvet20LK?oaJ4wZLW0j~K(n@71`Z!)R#Ss-KHVk*Agp|JoYSBF8
zeSTG?^PR#{j=kAOx&DsgyX36BUG?+g=$7W*dUzOWzms`*m~w_atUv{VfboZ0TD7>9
znmd9tqF14hIic71nIEG_!|Z5I-^!53awQWccuX+MHE;tWB#_Xi#q$Gl{VJ;U2bMrW
zSdj`ek>OrD`m8>-c5=*%7({qN0V79UsrU%V`A;?YJ!xR7<AT&lMk`Sf_&o^(Jy`Ty
z5@A*^9iv-Awa_HBx71AC>mQ5!4Iyv4sp#L?`E1k4;f;vNtHuPsI+Eq=ZXG(Vaop3l
zP!lS(QR;d2-A=nUYQ4>Tu%s}{-bn1xZ*s|Ra(O@5bqA1==atc+t!NsVc{flz6dbSB
zrlBGV{I27r^a4I$%?el$!o}xoY#T4xrL@;g9FbjS`ikZ}`Z~Nv8RyIHxV)bML^SjO
ze~bGN8_0eD0~CI2HWCf`P!u-U>gFm7LMGwyNY_EC(4(NioYw$5EtGGd6bj7k2kKLF
zzbXVAsBlNQPS<1TPc-o{q|w+VIgRrO9nD8Vc)5abqU4CvNeT_Pk;c<!PS^A1ehc4i
z{F3-e@LP3tD>@`|(pTj8(JAz=JQ8@wLdzN&bUU2zn1PlO6nhPD>N3}8iD|}UFP2-a
z>c3hxHFqBoBzHjy2{N*RBaF&+1A#Cq%2sL8Ro>*sP-u39XRJ#Q%Ft_$v~c8ry*+B@
z(0{AP;iHUvW$r#@i4?;_mo#(1&%O^q(Hn5<oJCMtPMvI%aYg)@oG{I$*uRBwEWcOC
z#rGww>5qdUTGNoa>PKfu2obVA0uG1I12~)^b6nQMnRuz~kjac*JLH1`%t8&4BQt`i
zjjuJ}Xh4j)`5~CpFNxP)v8Z-Y6JZ@I{-&e2HFlEe=AjaIo7G3zrrpx)8n9Xl!w1NK
z!NC?~xnjXOiPeHcq0Z*&X2(ES39DCursuAq%qp&6@%oH!p<af6dh2eNsbK;`mfMO@
zI4CjeMh<T{&VXotpHl#mg;+9dP@8jYI6mzmJ2j9l5fY~--IHG0m+m<7fI>exv?pGr
z>5v|A!MT%)VU{bYxJ&)Q4B9haNH!?D%QY<6bV?Wz-yF_{Im{H_tR8<LP0rZil1XkY
zd&I^^YZKi1QD0OFlJ8O>VPO58j?6e!J2<LmdUHG*<~UP&vwC_+V_B3NS9N4fn4uwe
zSm2gb=?LSP2JR}MDdTK!s@~Gep*?$FmZg`h+i`g5b>1k#0#{xX-3ok+o<vV#X<wqD
zgcudIa7rIu15f6A^}V=#eOHlrK~<F+avMSg(zXJGMG90<?A`PvOMT7Tn0`YCOgn}v
zvwes9edIaZBo8d_*6>SCyMn?H25#E|a3fqMZn6)~#s}^-`9T)%rw0<O!1t4K#G0Qq
zKW1u0Cdj}KGb<%{eav(L7aQ&b+h)4|q8$9XF#wZ1I{6*=b@=N(SDZ&rdhaK5*l*kV
zU9}{`QF9bg8c%S=Z1&0~HYP|qbR>i21e7`Pp3B9`)!QYwwKwk_%jB50fk_D$jzCo^
zS#Fm$4m5_%h2z*#f!kCK^_B5I_EC99O?#(b_yqFvNfsMw!qsjw0M$SnQW$m2*snMd
znwk@tt_9yMO$v{05+_et^jh@~Lc?)2M2nUa&Q~IMTwF8r9)JD%j2O1e8|R8-Gop+o
zh^!u%(XU%NH>|(vj%r=`@__#BW_!KKNenv}DQd=MN!-Cz-g7=NqrkRw0q~k>sKyW4
z6iv^rHmjkyrDiyC-wN&38>VqG6+hP-6_T$W*4JP(S_iBo?R@~Ue#PLytG({h29I!Z
z%UtQeoYh@Fpze+|ZfurHQ480S*K+}AFRZjzQ)XUGaTWE-)HGNXuuB$eTZ~8>EY4XP
z(>vP*tbNydaSL2?Il~=lT{H_qT&W@SYOe<swj7DH?pzaWk7}&N=q&m|OYM%(>CF@C
zk=Bzi99q6)x1t9ClrRPAtU04?EfjwTaCL$2xZON#o<f5VMsGMRkKIerX}YBy+KL{^
zsX1GocUg=JBRAwXZ>1_WE;k!R7`$?KdJ6rv%5X1N*e<-JJ8r#y^iOT{d8wqK-@JKS
z_~(Vr?@sXafNcI>_>zCR2jj^C4A^w&*=WTa@D%Nx01F{Qyg$50{@`b3$ZPy)xqAUD
zN9GEpum&LyiWa%L)e#anoXrqsw4+1dLzEUGae!e>Up+}X!Yj5yM9;79TGJf{cfTrH
zw=BItdTsO_n=;u11vFbwfB&ioCF|_S<R@RpUkW{@cgH09z7q>Bu;4z3&%P8^QFwz~
zdIKibzYY5|e94tdbY0)DIKg)s?I8_qc=~M=hkG<qIxEw}gBxt3Cm)g<g<iz$)z+a&
z%LD55^PQ&m7cx)yeh4^HDd15$r7sCp*VDd0R;^&WgWH?f#t4RoZuRT{W)XT8g~m)e
zmju6sw1Q8R*~4p3fGk2Ldoy!zNyGbZ56YtKbMn}GuT2c$w`v;8(l@#^-~(tz4RH0x
z2!6c=GW)DX@Ua~6L}Lst$%fl>R2S6%kC6w*n-Az#gldfj&oDOcK}70lidoAvt(3_4
zMYbU%xeSjSbu?+v+S$K5vCXJLo5)l%PfkhF6_-vm*jA>2M7&B?03)o5G=4+m7MaP6
z1o^N)Z1G^OIj)87DsCCcMFN9O5@umTPaIbTuhd-;F8IXWe7o4iI;iN+t&AP6e=+QH
zY-Hw@ECaW`7nkwq0N?TsAy3>glscg(JvOQ2S;acKQARtVA+=t@;tERBB-eMt`zJ67
z(m`?RN9nNjZ%c<Xe+rzxuv!2Qm{}?7Svnd06oq5?33$y=_$MU|U~8MuKp`eDqMIUq
z&_cjBg4JT~Q7mbX0I;=f@F|#ic^r3+eH%3*U~lrd^YO_u>E!qUtRsol1o)$uf2aEi
zKB41tTovr-@Y`kX(FBhBnF~c4XLwN2oZ?MmTDS-5vlBjJysiDWTLIBk@%lZrcLF1q
zPf?^IXH_$1ZiSvf%#-TV_rd~x335tw@^G`c$u{x3S+k#zl_^Sui#N~9IM|6}%lQ1-
z1}1`8^N?D$1#O5HhZWyW@vqC)^xCiFS<xz#*GWZe;>dF&EATZp3=B6R-`{yg_!Swv
zJr*P(0KSRn#;Q6TF|F6gUlXqzIGSkh%MR`A{6?R+-E-~V*N72DEh@%{fdY!>lKF*k
z&drzgO?Hf`L#tCw8mdCMr948&Nnm77v<t870sZ&<aRZ6-B3(&##TB2WaUU9ocP>(G
zlq3#D&23a<1_IswbtGEZD40UYf=Q!`x)CkYgYs%mb%IQt+Rn<&M9g?TLg&78bz$23
zI?8;rc0N(GTlWX8JtC~Eb<RwTZ4=KgQ+e-FTg06Om{Ul{OR1F{r7`D>#@64xw<{sn
z8}nbXYarbv(mIJSm1;HCin}SLuP?fl*{Vi_OMh*AYtkh?VE6QmB@!8V<fem68o9IO
zwR_;@EyQUFs;9tweO5(=j@fl=>=%gdOf@rm>K*;{s7A=`5_=cJw^b`lLsep`M#_xF
zv$pKx+@en-nbgCDbip*ar}sj$+{>K~MUSAUGJy__B8X<JvvB=IUyq`F8DBe@Mnc5v
zP$*5v815c_mY;SU2iAUwvGn~?e)=6%K?sQ1U&>Fv87k4!{RH6V%Su@Q$gA9yo%}bm
z{N(lhz2+$VbylMBUZVC?EYgGVbEs>*i<{nOp?S=c0@=_WDQ-6FLAwhCA7<CD1v~a+
ztf$BY2K__xu}(2^6TvO0VodO5c)2OIsUswS`jE0yiQ%*|aR-aa0nSvSl3mEFc%tD2
z@QyRHQc|o}t#EWpA=I=u4~S=oq1G(acxanLxOz|<b=leQBErxica#O}e(1W@(TT&<
zyZH{;2n=w>@J?o#mfMZW#u&>{mCv~Wb8R+Pn-tsA)?0&`Wl}R*9D#d2_F)YY=AfjS
z8gKC}GD9#J$<nJ2%H8F^4b^LW8dZAMhBr&?X!x8Jyn)FUgR_Rt^(-<t^~T+vmGV~n
z8Jm8Y%3W~mY}xD&J1dh`zq}uQlemC0{_h&v@5Mg8-_Q2%==guT_la3M15omYe>ef-
z3EA7**#ARGax6~k2Qxjea-b3q7Tw*TUqn|@yylHC!Aucy2x~!=pJF3g3mmckt2Ju}
z3kVYl3CmJVdWORT&zafvx+xMy?QTl`yp^j>4oezRREt_rC(uZP|K{5i77!pepJT3E
zF>6?&3?wo3p8C?gk^Y8t?9}a^oRBW2g<N-i@PqjY#^u@xt?%kI33+Eg&Wgb>If3Jr
zFs?jeVTUREaE4?U4CPYu3`mgE{a!&J)4Me9<ZbDP(V;=L7NGlL<rpU2()9xDdqIUO
z4aND&d|?6JG78*q*Z4G}DsvQQ*W$$EYEUQguJGTl1qy2;@_T8~4w+F_KbT7mxr(c9
zZEVw65}HM*ssp@b1T`8^!!jCju#1;P98d~ydWh7dQ3gI1-sXnnd^TS^YFpH@>PjJs
z_vxxXrwf>k0<lP){@$Te%s`TxQ4;lr1iuPMGssJanO~`n0cPUbF~dNZrxIQ>tl698
z+r?Kz*5Xfhd3w)Xz0CPkH^n<X@RBdOtJl|jF;CFfJ+C?AubJ+*FE&M;erg|oV)$PJ
zg(Twu5fJvvc>6s9{tIvx<4+7f<)4YDjtc)HIP0JKM*!>JCZ<9nw)!9N{k~ryS&ZmE
z@$c%%7^zq({}SRL?o*rh07PpfVE;eI^Iw6LfABUX{_LEp=<?&uPkvL}>-{zhkl%O<
zz*W|bI{qk6|BZL51MpwHQ=^j|gpH*`%fZk|0XbHSkm=j^&KyvxbA7o`u1Lk>BavYW
z$j4NBIkUa7is*Q7L!(kcO{<Hev#TK6!~c!Hsv2LSR4w2GQvfdG|M^2x{62`qtZXgK
z49pzyej?&oS!r!te@IN|{Je8!C|Jn&(V;w#dIgx>Wrfhg*us-Y6iADJ@$4PN9b`2f
zep*sSNqTl!nPcx-i1+7(+gs0cI3;d%E4q)c^e*kGWZdh0J0!6e67gxL7Y1>kF};@t
zE+)*Nj-{NeQ4T4~j<pL0ZeZ|z9S8{dp0@tgF$l|GD0LK2p(Mc+6Fy5*5V^3RE;vz0
zi=Ay?zbp>Fh%5ieb!g79>$sjU`a5aT7NM|DdPZW*F2b*3)Ieq)4p#Njt;H_&R9qa2
z61<gKaxA-WHxRxsCzl?d2o3#8vX9j3$8n`<fz-oH1!1NK>U1Q(&A$CcSk(q915!ff
zg~T|xMSK&<p7&Cdb5yV4+lB1$!l7cs5_bVM<efYFCF!Gmw)$IPN)h&b&}RMxISF3x
z9qC;G3~FfZoWwUbJSf$f#dTE3xTy8W(2hK0UFsbpn-XCf6kh4zqu^)uXt<bg^iVwg
z+AG%PPM&=CZEM4~*Z><@V`XCUPDT;*iZo#8R}9=MuC@c9%gZCTOVXf~zHdjLaafrA
zuq~fP^k!xw+)pOpc4UL1bK2?i6bJDe;}LN-mUyAMDyP@j35w&-(;k+ve=HX|<;WHq
z0ip2s4V-tshr<uUW-$i`C%|&yCqJ(IUq+nz%`T5-%vN!{4?t*0LPfr^WDDyoT4JZ;
ztr7VsudN}Vpr5rClTy@-jnN-1cl~DCGG;I1Ne!y6I{4``jhE!l!l16<)+8Br`!hCI
zTjY&Z5{lFqFx#sGh~9;Ol;Mx@Vy#nN!GiYt_{%fo0`m-}Ucpulu7o1y1yNrh%Jqz!
z3YUxS>E;_mj5qdeM=23~c~na5|9WNjf)#|u^%*LBJ|~`r)N`yqGP@P+{M7`KlLd|w
zePi4um?VQ*;eeen^v0h8shzKr6$`Yd)%pX5CWu%c_!hxA$p?rv&@}e4PWDO{A>x-z
zSnHr}DZ-_AVZC#H*Q==>htwBdXd$Xbr@gtn>-(Q<GL3j{G(^C;ZT@Ab{r^Lq_<7c?
zqNV_|Btrk^O7DP!xQ=Ah(#VKZgaSxo47{wbA&M@&u@N-+9RA1Nji6}0=dmP7>n<D5
zJUmpC*H3YpE?N=Bd{+!oGew0e^ZQTa3v+#uU2V}8VY^Cta}yvtdz|6@Aj1SssXpVg
z{Mj>A*yCpy(CR>)Hn<>bw2#FRSrYf<lQ=K#VEKK$?I9FZYS7D6hK(K@0aF1EeVUFB
zTRRP_OeQ@i0>?v7qkiRm#6XMBdKN;n@McV=jy&*PLC|D#P!aq7L)e^4%h`>fw!w1%
zDoO>UW^?}`;o`n#J-ZLL@$m31P9G7;HSLdB#p1<~`73qeKV^IWSla&C<H`J27_Br=
z9-PMi$>WLrr^nOhEg&X<$CJe$9#3;x8ZtOTsMdPn^L`;XB4}G|iLlOei~XD<Mwpcm
zX1X{ey3X`TK3ZvETg;1#dewT}tcI0!txJZi@;O|B!xrx^zzKFpw+pvf1>MBn*+Ye9
zo@Q2D&Rz9VC+w<g%_$X*?{F4MyJ=sPilFKw;CQ+|KU`0Sq0=sNcMDxBs(C-&Sov9L
zmE<03uP!Yee0+JjFROY65?k>ZX`}*OYj9ju{CuRi=B0Eh!6|h~;_0k(#?8FD=eBC~
zdE<lE)7{|W;-ayEfdQX<XGe$E_ua8H9l=>zQIg5D<m5&A_u@?CCDw8r_?6o2526V(
zUmDElKLS(rPHnn=pDTkx9EwsZ-a6Z7Hh97HboR$k+NfktZVWoCXWqWQX8g<wuycG3
zIlq4zNuo`g<8Be~no$uLY?_l>xiU5~GSbjG!?v0i8Wq_o1-Mm|xTj>Mq}=nvj{C<)
z=i`JPg^>z6hzOy8`g3BRqydYreibQ6SKOiZUMLg~W8Vx`%ykCRUrjJSWF|BuP{5a$
z`tTY~;d1{>aL(oBojQ<}3F#CA*}?f8d+wDzYAuUm;_f!?X+<P0Elq$Z#%8tY9Q*n{
zlA?Td{GD~_Tw<0?L}Vn-=-%Z<@h$GO38YJmG>MkE6MV^o)f;?g!V?9pLqC7QqL#R3
z%~QB03`AcP31({#p#*R}q!sy+W{g`^Sb~F3=>=kX`iTh0M2Ac+O3!S>#S`+`GGx2Z
zC2KN@&&aVrhNpMcE!u_UIp?*F`04NP@ub4ZiwnJ`)8;Rsh)>ywab}(8s&zyU8BA=D
z;Y5WIx7rNxiRkd2i6lRv&wMHu%`;&|%T?UN)pg32Vz>##*qd!D7l#zB_ayO0Ttv7`
zLYp`xB^I_)^3EE@^pZ04#|wl}n>FYCpaAa#E~`+7Nbqiwjk!-|5JXTo?9f9DvDe8d
z$|KkinC<bDKQe{0(^nBmLMS`*a0OwD-Y@#Y=7f^pyr~g5)uAHoVJk%%q@cBG3ikW=
z+G!aX&lw=f)BZ)7ohmgLPM(4_^z;qHcv%dp5!wb>^^@mNULrUBCo7Gev0XVa$XIy&
zwLnGNmi6HXfl2Q9>8Q;76h)Y*w3(tsR?N<B<Vb=XofPkog!O~(J5U}^TV-XK3Bwh7
zE9t_gM`gnT3z;mZM_;EZ$FrE{+56D-{iB&bPnN)0xma19+{X509nuhr!W@+f$}SL(
z3TD-|)Fjlv&CY0D%O<3d3G!aaLevR!Fp7cM($`6ZOsPsj)Vaj8=^-%zU2B)vJ!(?S
z`Ewlk*d@7piRCEuT}t$FadSV1v>a5n`Mt-OkYycRFs5<pI78+=1$fE8if1#IGfI%o
z`3O<pY=Ry(a;8Mb6Jg`i*IzwJOG<u((%;_6)S<2b_@gnD^Uz>Iu~dJDSL>V15zK|_
zg>+FgYjrxB-vYR6!3n%84n(|oHIy6RvtS2uIZ14&WLtU6QhaPm%-m>hZnpXq6EDHS
z(q)VkT*_b(YqPk^YjPTA4?gWCrYSb{X8PVVfsn)EjrxcNRUVr2@)hJ~&qhy3tZjaR
zBD+qaa+{(;H!)A+x0gl}dibXwFB3?wO58JmavEi67vCV1G2%H9t9+WPfqeWd7sugy
zr9&|%+FROjhS%SyC<S@`WSqgk=R?}RFo|U+(nUe-t6k+rF1SZ_K_xEr9ofFfn0!2(
z*8)-cGt*=^H;G_X&WUS^yp%a*A0iV-dA5%@M5>QqCg$Yw$5H-qccr%VIoCssa4riw
zc+rvsM5c{Fa1sNgzG4eh87rXjd-@4@cF(+t$Zu^$ilv`oNDD}b;<Jwl8c7aD`}EIK
zWL?ao)n_Bi4&4pu)%K50?Bqe!M&*YBzqJJ`N^IU+RmytLmi7z1xH03qKteQX?a+iH
zfSV6vg=lm^h(nd{5U|ZcW}U?aBL-ru2P-lv<^iRhLt#Fu74}NLlV2bVL5fn}4i>VK
zhLT@EQor&uhtln0wtdtu!?=Dbu~%q`M$+H*Vz$gDqFhZvU<!L!ucJ2aLBK@n2R_5X
zvsrIrw;9r^C7}n(lo16)lV|LA1(h@kz~3xkv_JYg@Utj4G4l~BGaqR0!x<4}V$tz_
zJnbC(y7g9lMmX8=IC@gSNAN~qnHDc|Bag#E-`5#|dyY3u3~|oak>3JCCSwPWvRaWZ
zi`iIkTJ=!f)vH!7wi}fR-Q?3Eg5zWfOSwU)8mu+n!osP`%E}7XdiEyi@~QSjAM`Be
z*v1*Cv=u-;dU192n3063=XI(W4A24=UTZJEEIFY+)8%+;0T*E}V#t6vBuh9^i7Tsc
z@n(Eo7r0!BXg?X8!w3O+&0~lX{?i4(QK(KZ%nabdBJ+fe2}0D8c<(Lv$@mS5+TcXE
z2kOJagI98DYRl1yP1NU|2B#7q<&L12%=M#q;5w(5rHhM;P?MA<!4DqZ-mm_>(R}Sm
zqFl`N5k=&9d8u1GU70%94+*fnND`A}x3IGmN_^B?#r2#mg@r+id7v`Uec)mWpZXOp
z+sZ{V(D3q>wNWQ3V@kSeiA~FE1GlY3$4V0W6)g0FMU|rW5BK-)Oe`#paA#NaY(7v_
zFXueG;S;w?peQa3p|xLRzkMR9E4e0;stv7D2@DKO1lT~K`)-hu2f^cxM@2<dQYh)E
z%YTL<?v9x+Y>|?ZTFA4yy}6Ngc6NS|Xn&2O@HQbFkP#n*lSiFQtd3PQAvsl-m^l0L
z<%?BerVex|N4$W;Y=&Y;P!==O1<Y}4NKEJXOC$EW%y72Bw_@bRsMBe&=#s41)Nfxd
zkD$>Fn)VjHl<@FQ0`An`#zE`A>>G%Rp)98$K0pQuXE9g6i)3V<&!W!Gh==!Xm#M7;
zs2=Q!^^Lvf!*(~(HdpdPhB`<mo5ze}i|HrR3CSYNs+WZ6b$e66l+Hu)WX7NFgg?1Y
z(>s*zX5rv)Y5wLy62xwNbd<@`(()-4T_6Lt*KAR|;Fi^f@vLZuG(JmivsL+g7OYLN
z+|~TE9+}RY@)-IjZIIq(XfZf=c<-Z=J@nZ}t}}n$bSoGk8q;8fB?_(kk1w=Lr&?NC
zw-_N)uTmg(?>QXzt*ccv-M(*jHw3cX*GKz@2puC06XUqB#VM2V>2!K|Vos$Xn!?tX
z$f?p#m+-I&XS-*IDS{><&0*H<e!0Z9ZLlh0=!b6N?oMvKeX{4O!*oi*s@t6|Nt~BT
z78JqupQ)Ha>C=(`WGzvaM^Z8}Hpoc1iUBIq4V7B0ETtGrh0`A4;o%>>c7_w|wmA9y
zUdo3*DBfG(1c}Veh!W;0Qh4@YRKwd2q*@&c&Z2}-Wo8TGr>0@?F`D;*gg@v>Zcdau
zNui1lGamE>MSn@D8>V647oCIfJE00@zn01Xt7`xWHBTF?=3b0cm`;R<d2{8&mWhRN
zYwqS1LU`o=`3R8$>-fIj_hcI3vJIm*#zgn7nCK$Bf0v4o51~$Z#Pu+qyVHR$)jmdS
zgq<&U=oM#sEE#l*gDA$tqv~Btc5UMMELom8`JA#JQ^2Wh2^3$hGIP@j6gQCwmRp0!
zWbk^(=`>%SIxJUbX+db9yH^HsUDzj7e+*<^3o*2~V1bB;2rG*OVAmVB<$)kTlPL<%
zXyPn$_$%Jt;3oxNFOjTzRbZ&P5>LX*k0rrx3Fcgb5Kv@bi^z{mdozqd8UQf|iG>d~
zTOtfMIK@%RbRp?LwsDI~OG6{AhTtfSd<k&c>|n{v7{6rHTHsT;$z(m>pUNd|Xl(Qr
zlecnmx+Z(A&{~!Q*L=^m7~5|R7>~vh5)zEwg<7Wo`n5;@^UZ_p>&vs9c>eK_^SvZm
zSYKiN_osd&CZwuw!zEzX%5vLkZ`3*8tPnRjBYrBB`HV)Z)lzqQ(%N<qJxqM23$^9j
zc=id;h4JJ&`StDXnWLlQ$Dxg*9;$kY))h|IF5-5i9<v>fQ5YDQRfQ7;G`W-h0*Thu
zw06&17yQZoA%I8fgyNcXzWMX!$=OqJqb@<5Iily7yi{*5f+~G{mQ(865Tnrd(S&s+
zxnKpbY7qU4rVF=vN`s>JYM=sOb~`$#{+S&nH}AxZj=x-Ta&bKks27=LgG8v$!m$X2
z0xQ3L+{_Ew2FYf|!iH*ClHbwj;T^^FmxcrV5I6M1^m$?ekScI7c+F_{*M=u<M|c=U
zfX20cyuY9V9k|378W`Pp`#J&kX#4d`02+s&c8L4yYO_NhFXuq)l^(#=)k{TXVXetI
z+{5Uer?pe7&9%C&q2WejxIdrAMgjtBEKf;z(sUgLJ!o4LSh>WNHxhCsX8#0oYZA^r
zlJ|TTj?O+Qb3;kPS6Hr2)>rt#m~C+u610qMFb>_N#nSLoXN6z5mcOCsiT$U35aNeC
zldok0bPuw=&LGvZM48KTK<xC&PGxeUnh{9O5}&dC=hO2pK&!u1vFqF-^(*9Jcq|#l
zG~u;_f3*%y{fd`~)i+34OwQww&M)XW`xx^6InkX$M<C~PcMRgdn`NjrSHAq1fY9G@
z9+2~#A)1yYDl=a^p&=g*aB=$gzM)8U4U&e++z34c`*t7E_VD<KTQg4KqsmYsa2cD9
zO;%TMZr6KYz@B}g*GuK;e0r--{jFHx;;BJo&dH9!PO-3soidsf-}L(@9Qr!tTwr^9
z{B*5Z9(P_iESZehJy!HN7Qp{y;)jvjlK>=7!)MDt>>cyBd>NRbg~lce0QSv~S1AgW
zf^p3td<v2$Hbr?~0yqV^xw+g09keGO2<BunICoqREvsH>6i|CH@v$N)^7tl$l_EfH
zbE{|b<qtd#?jva62EQU}bLQ_sTyP7<mVddAKxKDimPhTHO!b5Gfgj|9K<W!+SHZUD
zw>Vr<s8{57hOBm{u)8yqVg{8``mUo{+cS3IwaE-9xBOz?wER_LxESuun>@h&@1ouR
zMgw8{N6GG|@Rip;X&|G-*?F1E%o2XH&L^ow)7sI%)>Yz`hUw60Hya+70)hl5MqIj)
z6DN-y4j9jOi7(3wabei5UgOSFTi;%IT2M8`<Rqc1IUi@v+9AbM<SktTKU{lo?>!xF
zpMddo-nzlW$d`S__`E>e2XUN-5?%@g|8YB=kk+w(w?`yt3#ch!AIye=1DzJ2Xhgje
zD$W%&q9~u^pH5d3YiOkp&RVRmQE<2`uOjYf5*JqaWr&hOLwe$n9E*qaU2OGJ335#Y
zQ79ywCM7Xsmu4@$H?k_F?v&(8>N_rG;mp0Rf%hH)o)yIe@C3Pix4sqla5~(*E>5To
z&l0TP_$GnsGK5A9<{GhNrI#pFWS^13-;F3n#^hpCi9M{#;Wk&ytzs_Cz(<<M7Pn+k
zhxw~3DkK+)b?zF%{**I<?I*eBKn;lQUxT^YrUS?sMN}->U|^V2&qxE$jm5>stIr8p
zGF4OGE`pP=Xdbb`VD(HpYUmL9IPAwA^i}mIDp^8C>_&`T39^xEONG$VT!?t>!#;oS
z{ZPx?3Ir=p{8CT5bnbfGff7CgN4n|u2I{D%G*)zY=E1hvV%P2KQ_>)Nu{MAPQfPei
z=KIFaz8Dan_s(BwAiu}U4`G*ofdC8~&792~-S7m>^i1satmt*<S!ktg0QTNLbX_z4
zO&aQ(A#p;)NJo;FIZ4eoGB0(Oil+t;QD{^_u`x->0ny?@kMIX+$iwr)IQuQbefIFR
z1~azSm&<1k*fI|@P!)Mo;#xP7Thh)TKlEbNoNeXa?H*gYDjAu`b%?F6n_DOZ38T18
zs*0e5aEodD_Sq8pdX}F#OnnP>djwu)eJ!XTyH{eVw-v;po%{TaL#etj$%X3`8Kseh
z9FQ%vgj3I&D%4H1%oJQ$nzvU!m#61!T@~T_%1(a<kB!Q`-s8YurzmMg>8hU%eLHG|
z5sEH$n$*|`o9d=g8&pUDcY*M+4bgJNc2{zS6SMZ%qTfE4aL?tdlhT7$>s!#bTko^h
zq!2n)xQl`E!%2%t2H*Kr?^R2O7+`VD?AI4|_{rurd(Nl7_xj)mP?I}SwN&*pheKvQ
zK=<7RFo%+cdQ($p!$ghcQ;wXoM1la?foc1(uf9I)8Ai)<yhpof!D#g*Ba^1nbs)u6
zYk_`V6|80vfdye2wFzD4a1r0!8L<ooBwk=L(8|Y-Vjxn>B_m`8&&Rno-g&%CJxeLn
z;ZE|;UFbk>MeaO|G>%tK8|yL9s79e65Wgc|#Fax+q(@W&-|H}9ta+8#iBFXIj@-de
z>-^?!;-_$$eaF<?HlSKr_6r8!ckswx;QWA=KcI`J_friR&(X%h$XbV<=_fM-&{LJ@
z0rXUDyo46xd?BnPVaycB`lIv}EU`;&2v!X10KAvcit_yJ&Q^T?f=xbKJ(}9Hu}9ZO
z&B{f4^mO>^G@c2r7F}`@k}!klX~l2AY}apt<#INWV?H&r4odXr`Re;ry(8v%_Z~N8
zI+O3hvWz}k^gAk_0mpp6)^g;^$zd^24{beKfXv1cSay+%3Md_@PbLJTscC~jbE1<P
z9|8RUm5d%3xx#X+rUA_}vR||pTg#eQV|9!RxAjWKQ>&WgY1_Hs5=$tsU;0f68;6Q|
zelhKd$bipo3+l62dsVj*F#-~F1%^G@QwKIzL*8spmI{z##mU)qbd9Bj4r$RM1?Y$A
z(lma<R|q#+0<UNdVL!%88$r~vOgO=Yq80K#&=+nGD7M6aGf((SZ}s;P`$J~uZ%3?{
zv@)Nhn4pflkerf`f+8Lx9fQt4WJcxx;Qf(w5)99flqY0IUm0X#F&BsS);NjH1B4DW
zeh3}9n(f!Uu7|;z#SY+i*L%Y6Wja*Wx^h#xTyK92pV+c+<PJ9J91!DDdrsw{DZCVV
z^#$=evNOL+Olt`dzj?iBYsBRMma5E2%e>8D+E#y#!F-;*<hscBzJSds+Vd1PEXnhq
zrJ9xL%g=`90w^CMhI4X2r8NQdbd<vMDt3V(TwNckZhgnjnMDIA9ftp*bVzC)+Wb@L
zuvc|xI!TgnD5JFW3YacF<I|`VpH(|D?-$}avre&}N{9Q00nm1Z{?qe&RuyXf=X=e?
zpt7(1?(NKEg*9bn5jc6A!b%>J%h7j<eV2Y+@7;kg>%-{mp?yCWSdFEfm!OpKRJ%r{
zsAMvmm-m_^R=^8S*}2RDbPCcFP<b>+#J1oxd(Kc<)*j+4fgS0-0)!52i&h~?%Lj9H
zMIyH0w9Z+X)|#DnL@i7cYHFILMiwJi5>}@wbgsRwzfPQd5S~T_2xY8{C8|7OmQpQq
zYco#9hLB3wquqTaYiq*@Od`Dp7jcI$H3G;2g9BuNwU?%fZhy!EO9NzqK}&aqOPLps
z!k}K-e@Zh6hhHE}0AeQZm(lurH}=1f?_yy1si;dS`6sCus{gee`)?<K>LMaWYWn6M
z?bx1Q+p%ar+p*XwX==$>YX9^_P!g+4_|cC2RaW=+A@HNQ{I^2@5buA?Spc*e07BsP
zzSH+u44D`ko%k>ugeZEGI;)>lp>fNZe}P5|wD7#sV;)ZE%14x;#kp`}=VRfLd(&oR
zU)EIa2Eakkel1tK$j+w)BS-g1URc(<lHEpy;w@?&T$IIlts(;DJwc9c;V#>{w&zyo
z(!p%HRtXF$9rfHBwK7!>N(P8k)Q?X4iAM4e5Z9905-1$WQ*wxP%kRr8`DQ2=P?%cr
zsGrgWpcEbLuNB<g#g*)V#PvYhselWTA-=wMVwlU~HP^>Qj`NvFCW!9XNiYWqUzOtR
z<$#2-A%@JSOAU8?z3qd9Dyq2OsRyBxW-=?d9WdE$qit3!kTTh3;cwxZ1EuYjEFEVW
z8ih4i1zA6woL-Vr<-Y^VJv{5zU$%PC;z8WSH0cXG!1q+s7vzX&AVnK*45MQ;r?nxC
zn?_nZg(oJ~m4r-`FNh~js&1umg>G-)7+}3<VX!!88y+zjtYPq5sUBLFUyiBTVIl!9
zy`}YV))4yYIVHG3t)&|&)5}<T6HiB$dgB3Hy>Yb?bYgv!wYGN0Q<HoInjkCfS5*+>
z=pA&g@<k$So3+iGnOg5&k&+#paV&2WU}Owv`4k$u=ywA`eE4re92*c5zW{u67}#lD
z0R9I$Kig!#a>^Vj^Dn|@xriwX@y=$4FP?Hx{x4m6=>O2A4^DQFGuIa@fkp^2+$|ue
z!%Rz2$MB8s-P<k9+x0gpNJL+G2za>b3eZ$wkU)yFm$wr5r~1CJVD)||;0@;j_J8N{
zzf*MooSXdxX9qA7u(Ea3Vg5&M)(s%(B5<cw4%(U<tM{{!;LE!3i_XviLq>=>j6!%A
zSRllTAkj+~zOL63;bb*F=mKEfYlXL&oJ+?@UW%+4h&&$}zh-eK>1*xZ=#B=<lXhxk
z4h!AOej-YR>L`K=Zs|$9eZf<RmOI1QQo+ZM)9;ztR{%ikCIHa7tOX0VLV*>Fy!yNm
zK%Sx^uGB5cEFY!cESKshPbjULUzAGZD+29eFHNN82j&*_8PbNgk7)}4txFyj{0Xg#
z)oaF_W=XQ6JZTZOg$vORZqCw7Gf+Z#;PGmdV?CY&k|tn`dHXo73#)qVR70U6wh?pf
z>dD^3V_10$8&%DQTWLbo(x=+y6VDVNC-+8w50XnEW55*{0n3NEQDa~yC)vU%)>jmV
zwE-cZ4cJ#w#>a$1B>WXkk{rBot-R48ORa*wBCaNxIsxeNLL3ttnj}x|0IFG({3gVy
z&-`7uyb6{c1tVUuBy^)?eT|qr>p?1wHY>zv4*DHB4TJ~F_j9E%uLu0|sW}T(VkwJF
zlb7#<<^WBFZ}w%zBa5Ne!l+vE!cO%9Ht;fRbMaOE`kfFfi<c6yWj9<ce(eJ7z$cua
zQ!8#|X3V5;RDoBan0&G$b6;~<9zsIO+GRp_dR=Zm+$DRzNn0@&+CaRHl;s?E(QGHm
zD}r=Q#dutbSurIQniIsGU0Q|2y-LF;hlA8KW;0;MW)a!)>)kkBa=b@!><O##c7A^o
zb#rF9@ccF?F8lljkKh<=*(U<4Z9MtiYbV=CNN7C@B_$cb-6i^ufhQR*VJ8pBMLK>#
z`uyKr;TTwdb%is~)z#I1qwn*?q_d|VCXUW6f(Icfp}#pKPBkJ)9m+aMIU<D!B{51a
z1xq6;H7+?KDNQvrI$@yeM}{!SKb5jIfOiU-C<`$>Ax@=iJ4`+n!P;vSj2Eb$Wq|=0
zKHw0Gu&A<HfT8rOu+r~FTYs4Z{|s@KGy^!L0F-`z5>WHye)?(wP=Ex-#R2l+ShJ=e
z7G<cC#Vn#nLJh`5xneA9S`h><x7Mi-d@=zvqei>!tY>2t8>82jjV@=c4^r>>)8O*I
zhD9hMV6;Qv%gs9L`5?Jni~`fa5y$ouk|YcOYZ8FKF_+ex*BU2MUY95pmg7vW6-7e_
zRV<?Mp|oedDd?KpF@OOrpJE!38Y%Oh`S=oQht&;2P;kYAsZWuShJ<fr!?rlmA2ng8
zUX47$FcWuvelrA@bo$6X<oYsA9-~pt9#wx}8XAo%9&|x-Bw~VdW0eYDe3D`7#?Oz&
zB?p6yApNLNW{xgA$We}y<zNK&oWHwEKX~ri-in*0kBi9GVa*No{*`cBlDe{^l=Wm4
z)0^<Zr?V5GUCu6J>t}?#UdQ|V$XH(i`@ipFzmvKF9rRys&3|<f`3*JvM=sJH3z)rm
z5duCpc7Cz^IN6Kg(@+;iTpSQh0@{WW-Vq%j-D7Uk01X2Bx<-vk1}1goL*luAJeqQr
zUU9ZwmsM-2mHMr@ln2=oG(JE8YqU#?<WtDqcugEUq!EsMa5I^4e~SNPz4v`bvT54V
zj)nsN9xP<Umqov<6ME?ZAdJ%%!OH`Dzkm}=*N)CB$go5rCX<g?g<xLU4q#?-wendw
z>ffByAiyeS%~7@Fn6zS;QEifTzJSgSnChe<rQ_;PuU+jZBc%2s7E<}nHU)~z4L7j(
zdez3TLIn2d$=9i)3a>T2bGt>59sfp_R<li+RI#RZ3KB<A4Cq+Xko6H=JZ2tmUukr|
zhEAu}bWwi1e`uPOGXS{-i}VW_avSbvgbS!7aul5XLUoDhn%1RwFRpYnocf|Wy}wuH
zB!xI5q`-di(X+Vewo^zDos`{4q9UnS2l8~I#kteueURo{>GFpmPG?0D_&#oi3_g$T
zMfg+tMJKh+*w;~Q&9n_$`>{FFAHxd+e|FFxaD{LFb^`v(@cOIW4L#$}+3HsxCENcI
z@;B56Nt6w6yV?EK?FRIR+s)Xh6byCvKWE!n-i0@ofEe`oWw!l&Mf)R4|CLn!g$`k0
zW9{(c4q<O(=VWFNAVvK2TlrZR`L_t6+;yl}uKhF$MKYq2kI!s%6dL|X0mHeO{#-rd
zKzyLttLK2TytqrFXh^5@`eoZ5+e(M#h?VCY?$)K&N1h`ib)~H1FI|-;dY@brkZ#BO
zQ&6$>ELhFwp4UROf6yZOhulcj&4HVzCPHU&rBPy{*8FT3aGZ1CF+vWZ7&sR;>SPng
z?Me&$k~f?3&j%wcs*b~U@hXYSV*I@hS9T6fpzjSBTD!>Ffeb)`?9|>eN*aA9v!t)p
z<y~p<=N#SMkua7uM7l6{fQG3q%(B;*jDNzWLxoB;h*J7A2#w8;E`h%zC}Gt$F|tZW
z^L;O+oOtqX)uX*GSix<sOc-|BnsAPW#DSn%CFC2?d72!*beb3k46-k-3d^m%Tte&|
zIGWA(Z6R9`PTOD^Dvgu+oH^@!4I?BbN_ekVx(p5%1SqfE>izZ4`W9L3l-+sb9*^5V
z=}ggQU>oKr@KXt{LNnz@(UDAnXqc31R_;xgCvfDAb>%AUY3=vWM~#VfVr-Lf#?^=k
zu7D9?9I*fcU_wlV;gH(7r$&O29_(*Eu>_xjGbJP0^uEWJKO0=HcMrmj|HgA)8H-w$
zs+Oy=SxJlZbPxR_<{yvVfc%h;&;KRne~%g3zl|ADJqJ91w;3Q!!?U)rHq!aWl4K1)
zph57Kehn>=Nn@hmlmem;FIvta00lEgT-J^ji|qYUPdMNQh?Ym11_klPLLu>|nAVMf
zwK3L8hh{V59!Q=>eR~Gg?=3o*?G=_fW}tp?n1(rM>RLxQ51sB)E39#TdRN~qXx*p5
zpmM!S(mfA_5bviq9{acKXdl93Qk0<>TBljn$wri2=c?F9nygj7%`>Zd1rXWO=)qz*
zn$H~E;%Yeclrn}-)9Qu~>d7m0!Kz@cLTk`aV@x&_Zz84OeC&humE^8uf!-wJ1XWs$
zCEnITQg=vIP9ELg2q~6Dm^MvQ_9YWP!hfIXAFn`NZ}&0*-Q(ahB(XAxHafStnlrkb
zZ49d)eY%YNATaMM8-z5)=A0xa8To|-^AWaNMq~VDOh`*?{aCHD>q8}hNPR_76qm>P
zfh_nMzDrlHz`XSBwN`4wZrANsegoQc?!JXCFvjkD8nD(c?bb+4UaG4gcui3iec0}&
zk{%pLPh5s==B;)v2L)XU-)zHMeZO{vx3o8k9+0IAsF>Ce4{wA$`T{=%OP1R9Tl>jr
zu5(8FC6kB@o$u4JuRnHv&uRtYE9uQ%lnWWgyjN*#wD)Vnzpt!GXwz2D{oF0ZLUH$p
zM~}DZ(DEW6XqtZsn%}3x|4HNICsukcM$5+c2O@r?Qq{fw#CH${*i`Dfg<8Ri<|=@G
zRdPf%%lC{I_}YQy3q72}svQo(FTF8ynR$CK5k%4v)mlQGIW=FExef+A5=pR&6oibX
zd4fWBo)NtDJ!5msF9?tNs@G~!wrd&}Vl3LtP`GN+bgsnsutly|MT!u4k@97TAEYy#
zxm!>9$ba!`6XiPn`FV#_C8o=DYP{sfT|Ej?k$rU_T^G7G13ov1a=nVUKp<PSu6IbA
z2+Zdq?Z}vJ;GWjZdAzQR@s)351%X%}m$;*BO~mQ3!jMc%7ifi9*h9<EU5i7QLk8nz
zzZfVk?DP?%C+^xy(*+pj0joV~vn#%ZfY<780L^9|j;alpW_avbQ@as=P9TXUx}fBj
zK)fNlvFnn%)T>r&VsBVzFsl!1J|Y+K7GhVE|27=2C!}OEbD)K!uTsOSp12nxr2t<W
zeJ|oV2E7T}d&V_qik{uB1W-9i5;=ahu4B;<Dod!XCi(E=hQQOHyy6PDw!ea8e_yf@
z{pp7AmnGXz1+G7Qb2H?BD%W~idxIX%kW>#3#nwrkgHYfKP^^3+cu&dNY{7-YSu=(w
z`Q%cO!33RfQ^U0lKwhMKOxUF>%CVHo43OSwMQvTJtl6imzd?QqP^;MP{`_^baJp*l
zP;U1MP)o-P0`~wINd);tIgHMhJazAsRD1&4ucYkDXLdwEuuqm8TwM}lON*j2Rr+u}
z)g``$R^|&T3Y}W<onfY{Y`QSrikZ^$)D%CN{v^Vp);X&q`hB-&4c!{YH;<Nkr>PB_
z`+Po*jfATz^HhJ36UK-P^6nbS1V1)pS$#C_mX@}nSC+~zOr6FiT9;|aY5iwQ;W+9*
zA2n35dKn!vU9F)*i8kGOYJ%RE4t|Xs@m#UBu%!OP;ki0JDd|*U%b?;#r4|A(Amz6b
zanNy3C(o{fZ{$D0+`vv_T?*{XLg^mAw6&H6?-*Cz$?RFn-^=s)Sim@KOz1X~$IU7c
z*eWaW=0Mh-)OG7=H_!&bc<y1f7(b=ymYOGkk13?!bDU`l`s?!5F=?HH`gLVt*Ls*h
zI-5l|@fFJ#>Q=sT<7q`nztO|fi((}Q$(OKiz9|}|0BR<B5OC)o4y3*rIWa#RNPT`8
z>A#oVerU4&R+C_*71wh%GqT5%w=oAy5B!!+R(}vHN5ubBc*6l0a#i-$jLs4SWIdJj
z>Vp=hPiqpFR`sS&&u;q8ZjaWDZuiEHK5_lIY=M$xY93l1n_V4~ou402-0Tw*;1kO%
z>SJIgChQecE|0b-`5#Iam?{5V$wD>f&?O!4d71(Hzf=9+Kk<Kb_yi<^wl)p`htHoA
zAmyLceH0Za^8r)|-=}Z?lf!52cZBZ0I($;a_wfSW<-fl00YCk68Gg%5e>Ou;Rso*C
zDkz`6GCzd|D^b=%%z$y4MZ_mhvV3GB$2DsW3Fl@3_6x$8@fUnPBQDP#9q}xkIhEIP
zZgvA9v>7kWZPvy-xuW4v!5)#R@Yaq5U?|#?=Sll?8`NYb9%}OkBD{I-s+#Digr7&u
z=SxZBjxOC>)MSiXpKEhk>*Q`q-P^9l%9m(J`=q(4O2SS}!l0oyD!xZuV}p}M&3C#Y
z*p2Yra_mZf23b>Z*qb}em9ulOwe9F=`hI^sK-csfK3sA*r^Nj{Ad_o}6CZT5u&E8Y
zHo<o*G5L(;_?*QF)xtLk>sJBMA~zY~cgnUuoW)7sxZqgGrvkdBHYw#>0oQVw<$>%t
zlhq2*qBf}owr0b3%d)=?x~4SQ4&RcHWdXWoKIw_-r~|&%lcfRO($HL5a0HSet-uDL
zU2{mKoeCC`r%Nj|X-`^#tkq_%z_gtCo<3$h;_qjIuPIMjfv-tVo`9`I@!b;aYlE%H
z@HLuPmmb{so#Fx74V(Ydw$7AsgPZ>UzBM2$d)orGjC<#73evvP930$<mhzp1`|i&g
zfu~93_0FyB%j&JI{)^Htw;z>iT~<HPvK*PwXU-?Z>4kpOygE)e3$reDx?Qk-D%6@N
zRz^<$=e9ckr0_mKnU!raCLH+P5a$@+n=MD|S4X0r1JS^l7??srOlc8@^hiUt|JNtB
z!*+fCyFU{LlU8A{ZHe`nNsyd*cl4)UVbUuMHyw$A3+?DlIU=Ch{@ApJx(@!+izqSK
zetqi2Z{|O2NB`qx_{){ksXX}GI7qFS{SSx#>wD^<B>3Y3|K<Bc8m;r(Wxnp=yQas|
zxpg}=SOaJQ&o?-xpT6PI;?2<fb&mr)W}~Ui8wl77wElh{2Rt8`exuWYjAef>ZMwX}
znQfMI=3k)Ift>36-#zf`ed^!8O8N+^@p<(`&hA#544HI;%=xzAbmnFAYPZ3<uzlHW
z(QKsD%zI<m)AQyW?MP3pt$qLWy`_x~Zba!rk<RtBj?#Slt05bkrp-D+Vx_M{C;sii
z78iD6?Teg}<E;(u-Ud%!H-`<!Mmy&7<4=Eq?~OaM4}db?uJqsC-Ty-B`#}K`a{UJ@
z>?i44=VuowBMKmRL5C3dp;ZU*V$JC&-C0Xvf7zG66v7D)M%c1KgGh=$wM6LY%vc%a
zX}`PMuI-jfb3NV+9cGEi&S?V#e|)2Eley7ULI|F1HGU_;a+S=2j=bJh)|mG!j<Mjd
z1JtZ|NBp!tOA{$QOA)g?d?exx$OadE795p%e6@%mu>g!YA8Zx5_Nxyfj+TlMqDWfn
zF?}S{;W6H)V_S(apAm;r$6#YloYw&~H;%}*m}5^fX|FZ3y4rmGwy#|fnY2&$=BQMa
z#$KCIK6#BIMi5>Fv^b+p60mG8yDi_SpE9XwlDhlIYiv+~t9QOH$E*b9+^Ow^Ydmas
zl+4FP$^6I|sWjulfdDx|AYlLZjQM*n>%VpR_~X1PNZI59>indgIm5-2PLz_LWaU*(
zSkg%3Tc5=h$&&_wSXDvOn5E^N>jAX}7C|O?+MQ1+=c8?`Hi5QI$S`Pg`&Uqz1E3LJ
zV>ULq7TpObOKixkxt(j{rO}SmeSxHRO)Cd%q$1!p3%9KqHUI}Q0&iV_4l)X1RZ@Vi
zW<t{fd^$2pR&DnE_qQgCeip>b-D$Doy$<3~?o!P;NE2O{65{dEgaDh5ZIT8TRLTaU
zl9G&;X?eml&5!RRwPnxOukzmK4DGwL4n0C=L|YQcN!sq$E5^PVyLTMc0iB0ZW!Wk)
z4wDIp3BtK^9q@G6RgB?`nLIWTb_nj-bD2pifx&M2647+l2w_DkcPDo(h%8R7Q3%!g
zf{DSIScF0-0$e8gG%x=LU}tgW^22zRqLOeLP2y|~R*#_612HMPD8#gp{u*}b?1-u%
zf9jEY7WfYYhLz*cOIMey0VbQ2q93h+ys6TjLT*R^NU`oF3(nPLdw-QxON5%l=CK`8
zJI4HCO>FraQ{@#&8UMKBzWBRS0-Mc%=PqdYQ_==w&Mf1SUX#bz)z@J3h%GaMu@1xV
z8D*Kty-cz)cv@%z@~F~w2NR#E;!ENf1$myH4|l?2^FUw!;o7LKh_<`|h?rm1TYt~9
z{+nVO%g;6AFMdpt4*zqp4Yr7uy}n5m(8rzrwT}z;qmP@4or0N`_AkFi0z`PCAMVor
zfc@X0|2s>I3-Ijk6}O*mX?OxQhDLv|Oc`i@P)u#?|KX#Cr(k67Y-Ilr%IUx03^@Qe
zgH?i^UdS{(vp702)}y@qHNE}Ux5_x!n5>i;06>zJfN(80Eaa0NEdb7Nw)F0{Ev2C`
z$>C!MGzWHR;eBp#e{DTemYQ)>EIBRS4ib%5r0-rO2YANh&@~xZe4u=(ND67CFdy%_
zX1b>tPL%ILvKk}oG!-)^@5RfEbv?!`6^|}|L7xAp<s55YzF33n90_9g4ta=v>-(;%
z2@3FYxh|mYm;RKoFm(M2swxiOd9ENgE#MhRW7`R-dOoWxNsS&X%2xYK09;(w9Tdi?
z08c`}jlcx50bdKC$PMMHmI44|_Ec>0Q^m_JJM9+CQtjQ{_Se0Q{l4t9*N^wPzuTDF
zH~Iz3EW@4w8i^wwFK<>0EMBrj3I$M5iL$EmbXcGDtvA6+!np5t$df3}zw4@b)^+7}
zhF>E@j#^^-rgJ(yTLS#SH~$Mgo98r~^T&}C*&WxxRb<k4L+D|Q;J%N?fgf`Bwd-j`
zIQUw_=jMZ4EKJ_$Oh0}p<Se~A!3}v?jUWz}cCs%MXq|~+eFCDiYGrIJNRnLTjBjKL
zCz-lB)MDZetK>SQ%g&{kL<3G7<idZ&x(%@zIE#H!S)rJ>3|IEBeJ>2w>Gc!Zut>Lg
z^~3XK`ft}*e_e3^<|F}taE*->AWnYDU609m|Co)QS3E-ry^mUOrCZCXEi<wvDZZfi
zcMql>Ip<1=$0~>3tx2)Uo+D$hHF>nPdYsv36jq<FD0zQfci>5`ZemeRC|a^iDS&67
zHIK(UOx9SXT>Bz&#$QxMBd2aHHe{t_8;h^;Ng33)R2`+t!bbv+ya-?J@@+iWf=|n|
zA;Phb2Ak~`1}v6@2dkDQM=b9eF&1OqE(~9v81Fi<dI(2t0Wj=gAOlmhg;I+fM8Wzy
z`r6L<tEH!?#c0smBc>4FotZ;wC<?j;YP!{`*dy*C%F+@{7#6CBDC@VCp>NO1RymjU
zpOlQgL`WrMrOWzTvb~2bRPeUv#JJC8)RSBBoBsbudkdhtwk28=C%AhcxVvj`cXxMp
z2*DkKySqbx;O-FI9fAahpuzobax}U3-FN<ZyJ{5_y60LwyL)zz9)p1Ed(fBu%ui~0
zicJnxg~;AZpV?5nzsT1YAgi?^x2K(+k%+hFaPcRee3_j)U)}xD;;A2H*x>*?1-}0Y
zO8Tc!?04L$w(T<hU-aXrhs@4HGo|WtV%7;Ik(`$#xvUZL^lE%>Tg{)_Fswvn^4r28
zdjbLc<4yCoTS@tqvs)YJbK|Ngyfk=t8(bviDh8A@$A_{V*A>i~=5;Yxw=*Y~6Ss?l
zY$3T`C+C>lb(A|=q{@S@Al%g{Y0C*f!|6HS1et~F-}V4ymLG81!b;9K%1FBO=NqRI
z+of2Dlux0^sHUQ?y4s~_v~Sm2&}tVJlpPulUYdRP8}=L?9NVmuXeQoW)8eb2oN*xW
zEvrfe8R@ekT|={no-r%59)r*PAf)>0il+&?xlJ$eZE1Mui67d!NW~jdUP>m5vIKtW
zykdV-_cy!!xt76XrXC5Jele2Gn<=B>KIxRU%-XKK{rqy0k+k1<!Xq{HtVq-(4F)Zg
z0D7Yc9Wk{);QSmpD*janZQ==XOT284+>0JIVmj_PPdImhn!`zs+1h8u5|U&G20JVz
zlE=7IGdHTeEFEtfm~m=ifN&3tY-lYEhvB^a1;h;<=MlyG!eq}#I=>pT-*Li<lAT;T
zk5vfz&y;#c4%@ruzrpAt`DO=_37JjLGZnAIl%f(mtUWyrbD>MPJHy>W*J$Fk_XpxM
z1O!L!MYgB(e{R_SNFskZjWf{cvi`sg{w(e-_HQHC@8aGIBuor#<P7s|<Q=u02*o;p
zKsNbvAjACuNYeaMuIB;jwS)&CL`D72Ach9`?oY)90DH-gTrDD6TQY#}g}y|$YDAeI
z%&T0t4Bv8@*62;Wk`qdt%n_7xZ^{>=vko?cSQu?)dbV9|y4~%svTQP!vm(1W9<I&X
z28Tf<J`h4Jez9Bg)Oj`jemc<I;N@?8j@eS8ZtZO%dBBzX5{wKIyKv+Ni<@(nBTdQ*
zZAw59y*}WUc|P!CXJ685&c(mN9_$G8d+N0kRHW&zdT%s*oKx(OI+6ZLk7SL%?-2z&
zN4T}gs)=W=n7M&j`m#Z_#--1Jg~Fm0(zNCo94<3|d=p=N927j`eH$bN@d*no8vK40
z)N<b=a?9Dk<rSiYI>oE_+A9o~3w90?8_-I~{OHFu9r<}_TU{gk0ZW<3@*=0TmxQ=B
zcCY~+U>}`;>#wZf-=sDiKQ!;o|4tq9@n825e=!h*VkLlW^#5!dn7`UaE+^lMtl0~Q
z=l^XfEI$wjKV@knjQ`fwe^$*Tu42~&Eakt_pkQOCs$(YqiMs<Z07|~t`p+~dzb0(|
z#nu^qynX9vX;}bmQqcHtCB6HUq~L8VbpaGoIY7+Ee{b@maePT9vRX<0*Nzq(1)9(}
z09+y^<r){ERr_(JzecRjKZ!{~y*6PX=g{`kMxTh0oeTYd<)9|iC{wprM&L}^nCC<%
zzO!3VvXIeDWOj1X(L(#lP2@i3@hc%+Mhs~&*H%HZ&r8anS^^&#`;fi*X=$cwts?R_
zpoW`$M9CY4<m)&9JU}*x)napH?UzxE7GcU2T+h?9E7glid%IKk7{2v+9%xIWjr*Tc
z9R`YR6cS%^Jc0?-=f=LKGV2a}(~+JYdp*ntIyC?Ed>yUN-sYK+vt<h&V6F%IqcspW
zYm#yYxOu_<)2;~sKk<{JP*oI?dXX3f(4W6#DnCNw%96Eg9{p>e)A@77<o0Gs+GFvI
zt7;6#WfGy!>Fd*N49*Xb%4QsULDM%YG=jDS$9R6k6Ex}&(#zi7`=EjLEtr>idE0uG
zWV|TseS1T%_dLhIa$p4ln2K7)x$4>_d0Os`i&Wg(N73gP90Fh2wc+)j>3mt;%u%#u
z!5+Q46k{u*y#f1b=@^Yi>O5=VTNx)7-Y9K~dPr+guQ|F2(59Bjn>EipF;868YUDo5
zb+68@mM)udW_rtN6fimQiCGdS)tv7D5>IUyXe!$qVOaw7fx<3!6~Xrv=0K&ery7Rs
z8$2iY)tZ&NFAyiO0<WDTV6?}H5v(Z(G9b07q`lm3>suxbTGeghlfoIMAcm;Mko#^=
zgWpH5QiG<n@=GKW2KPyfF)-diobkJbQjic?dT=tw7pZkn93XsxF~`#6k;Exmqf45q
zhEv>z&Kp$Wt6(6sa<i|Xplj;dixjeJ^cKK^N*Z$al0ewSLoDPD6dO|5N})a)=itn8
zVps3S6=7Wj>1TE(wvTUEm;zBeK#_HW7K6?jP9KsqQD8&}&E_88P^Jm<pB&i~B1f=i
zaDX5l53JIFr^F>13n**ddeW|jTltR9z{V$Vi62MZ>+T=V{5kT&><wnqX|lVl77c7q
zNHwy`h98zk9}uKOGBvm&NH}+QI)}Z)LLI8rEeTCJ#}Jo5I3~NpbsZ4RHT`lWDn%^u
zSU8PhXu?6bs8gEKxe(eA4&xnIJ%vE3r9^_&hnhlg5&p#$CoO7<&*ZVz1CA`^=v(pv
z64=Jzl8Kn19^*!(+wWrGpMczsAIrea^_WeOoG};3Zt?U~hNrdMYqjq8EbKKbBQtF`
zRcK`0j~He(Qsc5J%i^Bjhv^v};e10UcH$%Ut`i1M8CrU}jg(cOHkX@9hqHex;^y{)
z=j0m7ZM_bVA_f6EV1GHpU;E|%N+Oo+cb*g5mn1$|SNCn;Rzf=x*RIBrFlL$GRH*k3
zt0z%OTa#GJ$YJf!p6hjYx}m{3{#IrSH?PEbsMmu8g1d*!1$le(cy*)g?v|CC&eD5Z
zlJ$})NdY!SHC<GRspAnfQV?|I&m*1aCKk~t>y0a+GMw^deRUA;Pnc_D22~&RC(76E
z;92yCSeVhCA_MigxS_cjo$EKs)k=?tm#Nph?(N)D-!ZM78%WmC0jYR@A+5TQ#zJ6C
z9|t`h0j^8QQ(Pg(g$x@X1=GH-1Nx};oQ0Yy(h00P@D!qbtl+9yRnr|kCaKgT#QY;v
z&S<I#9snGM<^Oak|DX!M_!|)V=THflks>Jrv|T>VY#}#{q`%&MNPi$)dx)QT{X<JZ
z3z3SNsjhWlj&7#EKQ)YrqKcg*zZ!p5<u6$G?@HP1<h*1r;)laOM@#G<C4rPwtiO_}
zK<blDPr!nHPNsfspT4xl|ELK3NBi`rLV&1)zKzolhDpZXC5`@$fL#i=OXtfu?hPc>
zhd{=T+ewbG?wi9Wjw0@7$ar#}k39l9DtY};+x+rs{|K}sB}8=gklJSrVI23`U%*sg
z3U^NF6eqMvN0nngstA_K`Fq)Ju~hsuM@(V%+jGdc%$k-YsF)|aS7%|-#0k0Uq0c$H
z?0cJolk;tjdmKe5VQ6MF=1OK$`Xox*u&TcA5#@83$t1vE*GR~-M1fz=kB*`xzLR8*
zas4#nCQ6x4(cc{1tJDoAW6*|9#oxrLnZWxRUv2FHsZ<rHOEL!WDkFx*H<#{Qx@q6Z
z?dHlY96pfq8G2qVS-L@TM^}(qCp4a!fIkx@yU*~ukTW_62O%@}N1}GPVdwU#A!3fi
z2^$M6Xg5jvkVbs&*_4x<4jA<KxSa)Vd?Myi=3ZxoonbL7#&Np%suDecRA8+FWHMAc
z0qrUc1Ev5fIOYU%L{*5~#d^a};#&T&upgN0v}^Vo%@)8`1K|)o4%{-^Wl#3@S;}Kc
z`M$IX#SvlP!dsyvD%OPyaFwZ+nh9aeDi5#fWIC2om}Izn8K^AWBSo^gUs;+reAJvO
zuFB?bbJwD__!`2}SqFrIxzDaPd@`OLCw70It0paX{^Z}cfYWJRm&>KM0&TIJBT}}D
zxmyPm<!H#e{C(6`RNi^A#fjAx;v}+}6pGnCZN%)e1&bAYI~np5zbwRd9M@^k>fXZ?
z4sOPp#>}H%5E<y^kv!PabG>|j1H%s19o;D7M**6?&+w?24^Ka;4rz@~nZf`^RsyJo
z|K-Sj#ggLw8q8m?K0iP{3=BWA{{neUfI>K?Cx9n+a2i7JeU(xf8fTfKo^cwZ6J6}0
zEVg;v$H7+or|SY#x<m6%d^$2?9BUl9GmRZL3vV_=^2aTSpiV=?6ysYFhm6vJ;SJQ}
z#W~VWQAhH8g&0T`NVp3uq0K|A8}{qd>bGwyb~j~&L)w);4<p(RBnqe-J|c(ssjXqr
zWGB`wC9Yg)CaTJtcu2s+^x$j>?YlAN2?V)92&`<~?&E9j#&<&{?=Eg2yK_NrrAGu~
z=m7*2_jKH8VQ@LUi$0ZQMEXD4MC-o0VCbABf{$gYv<R8_z$8rW&v@vSkhY^76QffE
z=;*Z|K0Ab!V(&RMXYh!X5N2@%Fu}oH>O9LcYWA~b)p_jmBzvQ9#@%kDI%do-b36iW
zF666$R749xfQx(l$<6)h75+Z)^dDY9!qw>~$DjZJ=ovdY=`#N=i~X}(I07QbKMsg3
z%n1xIn0n3By{ZQ%;6Q@a?{s&fEm;qGq4MTX+q~}nV)guxtM|07kppMr+;I6#ZO8We
z<b5HrW};N+x52tt<STgLnDPf(uEX-718)?fP2A=45#OoOm|o)>M)QyN-w2DTiN~C=
zzngb>ef>B%xqRZHIkum0#4@8XWn7rEkEWQwr~o^wMa@*eLC&%jfcBx(p7`CTVwtfJ
zVw?&5lQX6rxZ>yv_Q@15MJ#cAjR7196*Zfn+EL@u1Q&H8_Fyr(UMabX(JI1IcUmu9
z(DBP*AhMW}5MNLIPrx7V*mZWl73)^9J$rB@<4(EVLPb^4V_6qcH}<Jn@k?O$&`SeX
zoxjQ~mJw(LeihM~x@_I;5i?fHC@w)9iK8AOunNpyNY<&!3B`Hb0gf`1vvf6d1hz*x
z>FcdS>c*)}3A%F|$jFK;C6+hE;((-hh;rbUz=>H<!P2c{!l$Ii)u2<au}Dmr_O38&
z^R`{x$>TZ~no}F6@rF{E*E8;B?||fE`sY_)9K7}F1eNFY-zrQSoAoUz2q(qMYtQT*
zePt+0MV?bTB-2mf=^&nbKc2^Oi0urwRPJHXyvi#>N@A}EXGb*w7Q`9(1hce9Myhh;
zsX$F;<NWL&bqo2asa(Y=xY$zQh`nLsfP>InymND5VLZ|U&Vu3t>HEB~orF`JA}r)h
z#Ev0Y(~m|yJ7ylyH)%X6v~N5r9Vhp*t~np`9=VpCJF>e6C*HXuBDsJbb&9~PLa(LV
z>!y<k1!{b#LqkRS9Voa`V05Mf@E7Ah`HTNMNS^7xfaFa8Ao+>EgXFLE5gmp<ib>1c
zQPaxMP(=O)mACtT34We|BB?Na9!81vE*dQ-?dx#on|O_MU5)s3jn}pzD?l=h&`v8}
zun$k><|V=@Zu@;_BJ55*%0Q2uFK!L;)m*zDqb0zJjR3B{+}yu7i!=TPng4liOz{6X
z!9XY$1LPG;Kj#(5KThGljEqeqN%yz_RuTHsN`7s#{nTstZ*$JS&9BOe3*!IoLGWb_
zEQ}4EbpHTsY1&Tz#(N%57Om$n<wWD3txPjbIRwpYykYJTSJOKZ!PHMRTKMQ1Nw?VC
zjgpYMFm~q3v4)gY<9b<<ffsRhU7nQ*#!GJ6)R8RxaAM~U8Sx$Cn{IT;x)C&%WpXjC
z5d4$ic#H19Ya_<PjuW?e0Re(O?F6#Q_nD%rH<06I^m}fVRg7_b3DJroFyd_Hnu5sT
zOnvoIb;tA*#<``@ENHsmWlFId@@WBIebx<<gghTteR6f>V4r*SLDeq5?n-i%MX8b0
z<C6^QYt8eKlruIOm1<E&<D*WEM-Q#fD-jO#BEz`BqaKasP%5SLZmFZxcZM)7^>omU
zse>PD6jvs6eo#;kDYN{1D`ZC?oh37AGj{r2p-#&`MJIzYei3s9RvKjrS5u&6kXg)3
zu9g17NDf9!j%F`t3;xZ7_55=>3ro?F?<Ld2_q6R|)+y+D=9WdtYX9SCE<FPRoV<Gj
zmMlw0Jx6ww<iIM`Nx08pRSxoC_ub_-8_ezRQpEY~G*>>kUwlcacj~=u8Zs-NRvR5b
zRU6V~Jh&@>+-Y1^3;T-i;+`ad$&0i-KDx4zT^U2+>@J04Bz#){?1mF~Mvr$HwK>^!
z?FiGXyPogx`U6iwF`x?}aW7sG=PLA6W=&$9DDeS@J}v?<`S4?-1YT-)T>`?>!T)Pf
zlkG>I`g2i}_}}gm4&F-Yx?=Vp8szvdGnO1R_zaaVQ<mdDZ<*IWQgO{>92|A*KP#I(
zD0K|JfbA0Z)0X*l^Z!SV1E_4$NgErP{{dMGqx&0VO-YuDWNjvX<OQepI|pudZ>!bc
z0c!C8*xC%LCW)XSk)Wg`jG`kbk)z;$vfus}kXmZmKLe?a)a5(9l&}E02Y>TwzlxMm
z0lxd!DdT1E2VW2X=?8o?2V`+S$Zc8aev?c6jrd^MW|<z=Q>LBpbQ+@8*Ta&rh*E=j
z7#$xgaaMS~h|gY4vy28Sv3Umf>Lkyo#SRn}a|iOA@OyM{JZssh7ZV^mqk3RnLx^!q
zAkLm4PmID(H;dqu)W5J~2RQHi1P^5QI~#V)=(x$rHJF~S>yNNRRO%kvgcXw6v`fnh
z4moJf-3Z5_Tm(#XupgaH<%YfX;{4QBjXnlgB4Sfwr+I*yWn6gN9(g?hY4`BDO!}hn
zK)7BC`&aKNyk}=|=JETU@}8Ja-N(eTDfqz<9z1CB{PMeEc_FUazVJbLPt;Tc=yahL
z1otSjb0{$HY1^3Dx~$w<)z;aXNTE{(=%Yi623GsTMNRZVoOmnhN1%fdj$z}25vv1Z
zLPzz*P4q)CH7hXNTr}@4sFn=l;S?9?GwW`N(Sk<pC39wytP*eZ`mgMb(Y5b;#!2Gl
zjt3ws1FuXHBF^Hd+IuAIEgfrMy1sM4I2<%}5hvf7c3tc}ID#%Am}$;_x5envrM`nV
zV67Q#^1-7Zmf#|6HV{bo2of_>IVL!4BK2fBgr&&V++AdNg2Vdo8zKA^w3OOMz>d}b
zX~+H=5dN87?jPfo+O_}<RL>w?`Lh{uYcx}FsGN!q66%vnrD*t9L0@`Fba1(<;h4(+
zjpid_YWyQ(w-84F^F<Rtf9d8rt51}p9kc7);g-ltgPXgzK>?HGHeh&V(6r&46iu6|
z35nwEkqhVQA|Ovh=&{)yMg(wQWThl0fdhC_lnGMkv9G%)xCG_baGIllv0>fUS*vkd
zC!J_bu_*Rv(1IudJSjpis-;ZTD#Wf;ZSn>Si7D0XwFxTdi`yGzX01Zr?u_I1@p~?D
zuJfz}E93^rKlE~eM*Ey7SBdMPm8?jmN71v8^9HWhH$j6lc^oYU@}wv_HkpIjJucZF
zRSt@MsUFk<^us2u-s0hww$}zQ4$Y->kz@K)8I}yvI{;M@yV;gRd2~#D`KD@$h&RTU
z7CT)ShE}d7t(QytC=&ge7;L{$>pF<`k~Bt(a<>BVy;I|oT<eFqLkw70mPG#=A(|UX
zf<R?w2Io|zXnf`M*{>=cW^y>nX<nOUB&S#GCEDRb3yh;Wz-BtjBQipW?M@_Po~Rf8
zd*6%^ac@t`QjdI6OJbgvlAgBoxS1O0(xH|Ppzgk)1YROF<A3;&|3&xsz)k1fGl_%9
z1?*Fo>p?yItLNX&dr;#!J1?01|Bbi!Pb4oB3!S2qgSnxTl^edXjft&;;U56k3|Z@!
zO4ZY$m+*k;3e~iYCCoQ~P9NC;pxYcW>dYk_7oCp-z&;gHk>5=EZ>~4(ZXf3jptBYy
ztu$2zKUzp+rFVS^P4%IUAM~9zk2MxImiMcRO7Kx`A?I&Kjl>@?-SsPLwE)_Y8_Yn5
zH5NL7-hk%|pGU0S3X!0PeE1%25iQl&tWIxlQ1?ay25hyUhSv)T&X!FbJ9zN%I}1EZ
zRRubtwfW!(-gbiGdx<+u>}MwW!+rL{x}7#h1xG(xMHB5pcJxft$u2YYWGTNhX>ZJM
zjqX+lNMpjgvB+12edrJ#J5$#Xk~awv75!a}IfoK`{H^%uR<&L-({IfBCIKgp1(Uhk
zJBXJ|bD<O10|sz|QvlarndYyRL88C;<Uh`H#(#>@07z(lALv(Hdzqf`vU!G%FOoJO
zuR<wS;P%ykP5|mMV+&0hBDOI+SV}pX3JQJ3eHLr3ozh7R)*5TSZ@)jL-F9*8tDimH
zn&OU%&+lq`HRZdm0nKV);CNBAoB|_`uJF+<vfYU*<Md{49WFM1`F4p7Kv;xFo~1;>
zA9H3}kgY|9+6#myh<T-t%88RKNwbt=DNMRi(n*4aSP?3Ol4c9MLcsY<qr2HrfX)tg
zZTZHl0qR!6KpLD4IX-dWlWf1?TZ}!g_wL`!Mc_=riUqPUuv>)JXO_?=Z)COtv>B=y
z_4giZJhV%6dQ|-4$;6e8_ttEtOnG$QvO)4f@LKbL=Y$F5k=JJ9q<#bOeU*BGkxrw@
z69IIZ0XyCr5%)Mosm(AIl8mG~J1{a>pljDkNRFv6(o4A4G7~06Pq5<5QwX~G39d0p
z<zfYv(1KgkG^~EB1~#d_WV-5GXwetK<N)V)fqGv&+!N?aRtiDSBFP#+ug7qdFZvLr
zEwYw;?MA#f!fo+CjBns^N4P^?v*Fd^%Bhz2b<B}0>n2$?(1trqO&K}miUcp>RY*`n
zjhC)`EmUzteo~Et`ItG9RYz>IFV*!X>%}a*<ZKH+15Dz7Bk2D@g_GeoAN_L&P2k@q
zRur8iRm77_mD#l~$<*A>$rR!*T|k^8)nq$>;rjiQZhR{I%m?_wpD!lBXFoN5ewQBk
zHRoVw{DV;cw~D61i=gpq58AA5X6`*0BvM1F$N+j~$si;la9uHdaEYtnT5zy#*M<Uk
zHs;huqd|wZ)sthdb35k4#Cn?&imc;r@LgMNO~{TRt!jutWPYSovPHc`3{49do#YZA
z$n~I<r|iTs9ToT^B-eql5g6=taY<hU#MMP4nDybc)>%lT^j)b#m+U8q2vh`b(rKF<
z)q&RQH&<+%5-6#uLUw^cM;|OqKJ%fD`zYrDRYW>!hU@Wb-Cmgsy;fs|9j+fnE3?2R
z{aEB1@5bXfe*R?ns#Gw9lR|bDsFOGpJh6a&ckUb93Wc~W_2-CY!h!U(tYx5J|N42^
zC(TYxojKY};Jk5=8IXAmog#PUnpS?CuANYj$@vC&w|WgC??s-V7?S%~l5aVR5`Kz(
zLC&6v^@>B+kN&z1ie;&(@hjs!H7BN>Uv%G5I)`(Z2PQij2S+sOF=ukf;be1V9EX0Y
zt3OM+?}2<VMsMK*PBVZp68)4i{F)H|6JuohjcwxZEGi@9|JE33I>?t1$SVOuu6sWZ
zxk9`Qxx$T(jE+XYj{Y&`8WEm?@B+FE1YCbP+Fuv(58xNfKh{9?_wM?|yMMa|4hAx^
zjvt$8?B~q{``gI`J4GY;PuyUh@U+c;Zm3@sn*S1}_)DkRk<Q9U-wxmQ$C(}9&`RIY
zQJ3vUC6*^r9>$OUb#K<W;=o(JVkR16gj^nD-~6`EPS0kHDOP3Cdo65XoQ+AFu3uQx
z3))tcsF}(nK7m1rh^p4}IDI|>o5dy(1%=K}5wXh}Gk7ggI;z9y1po<uw?{M#Z<B8Q
zKrdm6-;z?M1a^5b#_w691<WF+Ht*r1OQRMnzvs^6fJY2!zi~RTH4$GBp;4MsUjw$C
zMdocW+?Z1iq);^W4erGRDFTN<@&He+_ot`#|2u0{H+BSs%HM0Bf71KC5VoNq+7MjM
zP`;q7W-GGIJVUkYx+oV0*fCg-I<6P^M2KFpR?o=sZ2-NWUBj`Vy%{>j{HeQC>%@(?
z1yQ;qDL7ps_*&K@UX)G~e#*LLVy^7w<N!A>*KLEgEB76@zgX8W<WO!Q;Q)xcqWzFj
z1nk<`7|k%7siOOo4(z)`56sqb@!l*4tr!md*jK2&Oh{mowCJd&AW58ajWWb5@{3L~
z%I0~T-?W^tsOMCiiAmlFbj>a5CbHj@B2Sff#yUV~SyIq<hO1It4NZD_xG(3bU$H>G
z!!}Z{he`tdUWk`Y5_1z-lz*cVjl40jy>j5L2<h1}1fTK^9_YxXdpD}O1zJwVEK$-Z
zrSvAVkWsY$q~{Tw%og;LX4!^??eWU#OB7SFv0`*)Ur=pvBE5WuSDzgefZq>%JUm6F
zP2ycwpw}_Pdxt$h>Kak8PluU2tJ$0ZQl4sytVN-`nJ|}c?Z)T3@A6fmqw_F4amQ#W
zr44MXO1_jekHw|7kZywFz^YWF+pcPkrF|iBldG%O(J$^gt$vR_+n@5b1D!My{mk*?
zhN1GJ8#O)#m;(R9d%RD)A1glLQ=3PQdG_ygKhPyOYVmf7-iTZ*0k89(yx5I%3zNwP
zz;%`X<hp)MuU^jbe;j##O|O3J66b^;1BpSE%euY}b>b)os+2?M`4t7=O4&rXW~u|?
z@S$B*iv2mY0EM>5xY|Cs>%!{Co14pTjxvegoBCJhHa7{LyhyfYu+S-yVr|yVWDM+N
zf^%{!mCF0$dt>uOz0)GX<tjw{9A70whY5WklrbR&+No=2!-;YeU`*byN_1!IFl9;)
zD_!9gzd_yviE5=A70KIdUW<f(X2a37*KFj;5BH*?uoFf_Yvm@F?X`$RlHY|B?^3md
zI6=?P#cl&a_Wd#%^)(b#YWBW06kTfJ!$-$AsweAE#HWZs+~32p6FniD$c@yd-Cm`O
zQMx3dbTNHsMMBy`O!^`k5$%qvMHq;TQtELecAQsc9I{eJIe65@?+8_is$!TsK-AA=
z9rZ3e<<+Y+6bOkfYnAt(7J|FKYOR+Y@`R8?;F;wkSC$8>bH@5q(=$?&L%1xh=(tW;
z!f`&vC4Mt25C7~zP}o=n>&b^)!S2aq3{n*SmZ+&29mz8nF`??7tYX>vlGDEe(5w{h
z{PvpDG<ri&M}!NqZoxfu+GiHRy!>5}LJ7e|+)9`;M8Oy8a)o)vOepBYJGCpF1cD(k
z+M%zdVl@Z8wVFr)#UiJc(aD<cruL#o?^blc;l8d&llSKflCjC@x)2&|dr&yU%c*QX
zMQ!&_ad~TIoRICEe*73Xt~I>%nU$8gsU#wg)YW)1k<`_Cvyhan!5)Ehce$~9>)85B
z)!<{5y)7xmLgUC*=jSHUq=m-N!M24)_qa{g3Tp>RoFXZi#YW%3asUze7Avcbz5^~!
z0|UqP$Ad?TMBFmXK${c6mCTFIZ?okd_vV!M*6IcM7U7;B9j^5PPc$~cC)nkcZD%%P
z^cFas^y?ur6!!X`k3{#^yk88RB{p~>6HsVphWvYY`_)0d2+;p&=>M(GD`aeF?r3gn
zBLje#>oWg_M^*T<wwpi}y|5KvL<5?q3^Prd0Af+bBctPxsOESya3-PH>%DeHl1IfY
zUlMxs+B@ky1EHCANn1C4?DU#wIjjF0{6(_sW?vlQnHw<4Nn<RGa@Wl~`I7fEn%R5S
zTlNol@j)78Wa^V_dE|sApGC)+$3-VKKT@;M=Q(w$moJ*kHt=n#n*(_C-oE}^FC`9D
zpk8wFK~hll-OM!cAQY_&^Z21VXppBc!$z17oZf8FMjiNftg;uDJhYJ|^kkFj08N|J
z0su=M{v(_M$3vnySkpzXgf6I{yJK{ndGRJp>L+lS`030CPx~>F0L##}IiO0MO#p_d
z5iv=E{OHcf*M%xFDX9<xedO|>J9}g-C($f5`s)J9owPYWaxgN9`2l=hyi_;g@T1>)
zPyNah)oPvJrRZGc>9DL$&e9BJtLgS8e=O*Q4>u4B!Xn2?*rkWfsPFh!34QdjOe36d
z3`4ZiNQ6N56=E}wONThW_4ejX_Y3aiD<|TcCMtEyX|=URiqm+m)NOTg1e8s-)lDZK
z=n~>Z82QVhCe7Cu?nWAcJcV!?jP~E?Wu}PJjHa(m7cchi>mYfkUnzjY_xVaF$qaT(
zdCB8!WyC&PX!bN0OdcS8F#-r&j=$KD>zb+I4!~Ki{^TrwwV@Yo%l~OZFG2P<++K#_
zvdktuqNhy<$aZLgT6~(g7z2nr;5h0mOjRqJATG5@Qbn}f2G-kgvLKGHw3IX|n2t5R
zoz4`u*fXkGSJvO3bo%h2yZ2T)Ax;abqJW$<Z~?Cs0g_H&Dgo6p^J~vny>&d?!#2-=
zApbW+A@RBC3~wu`KJa`>O3>4yI>g_?b3^(rdPQ_4D+;e=If<Y{#fcHcQL=}&ohrc%
zX-Y{kDG-UJF0Qbow#ztc)dLXNmM$pRw{kpF=l1&EF1D|p>ykfS&B+F}sDV5R23a8?
z2||xCP2r7nqi^pzpPk~w;{ML!P`Co&4Oh4p##pR{10AD=7DjCVyN3&JTZ!_Qy0V7=
zq8ZTICTYKuYDkC|`rLUr9uUJ}#tg%8)_0`)ma?AX*Epjq#T<eco)8lA;74lI=KdBS
zD0TZ7>G1$MRMn6Krs@)m67qoB`6Iq-cukxSY?B|_x;k6Os*hmhrae+(hl-n%HKbD$
z@zETX?ecVA*NO--v0IPI_?_0so3Q3Fuu4^#?lIe1n}~FapBY&`T(r?cZ>|%EUmx41
z<v#kLm!dywB(p1fx4$NvchQIbY!2W;?R()ut)L{Nko_jRTW{=m_>?rnAs+?cLRDx1
zaG`F}z1Yj}8*I*(5rm(E>#z3m55ez@KTypXia%v#2?Tr!3bGNY#-Z^l<*CI<FC$#<
zz|$7T0;TUyxL7A9#XPYPUPpS;u3cyNx4P-X?K*g{`t2U?i*9ktZwsmVSyEJslU|W^
zv}9lq?2CM$kv%Q4De{*A@aXCwI&ozMBT@)^4d3Kale={3qWRgEe?kHKYQC4J|K{?e
z^SVNq%bv<)V56)!e<k_6(gyhJ&#}lfTgfpI#7z;-B2^|_g~N9fN*XEctQfkmpAl^A
z&B*tc$rp>hzv=JaSB;CdBAJx3(<`kd26Es?JHzm`O+0rCG?|*Q`buGM7uktt=Ogfm
zV|Gh}nE5_&@^$xV-{qlu350Y*ci20`+S9|r$%nR`k#%v3<$Uax0o1h`p`wNJ`_nek
zGfT<$^XHUZ@*UM)r(Qr3Nm$lmAI$<SKsIallhU`c@yU}yBbaJSlBxy(W^>6L6<!Y4
zS7z4d)z$jtbIlQ~*|Y~*Tz5!wy1H~}BIN7bbI#V@oZy3#55|>E7O1Cdcf=-il&1Zt
znu2-4M@&qJGS!fpn_;_mp57BMk6n|GwUkTn#W5CVlg;5?g-2&!7M%w%i)dszQP{Zk
z+#4xF^0{f(;ICQIm;gBVBB7NYgd2&YDL_i*4g6v@+OwIL>j1MU`N_@XOG)zqJj<W2
zf5ijx<7hS-BWvr&huAkhTx51NqXVm_%+~;=j8M4nS!8(?w!1X%VbZvqA?RdPo1B!=
z`migX7?JVbWOwv_@ll>x{e%-ulN(f~d^cuO%_X)MukrQ9o=Ii4{T^w0HCy&_rtBxr
zFEyRg;N=3MW_MKxirE5r%Fc={s?IAPSueEoY;U+t!05inW>Z(zVL5Xgg}A;Vc(f@?
zW$9st6_og_e>lx2BQsF$H}Pb2Gu8baQS(uN4322456P7vH@tSwy)6S%SoHM!L_Ek>
zea&`g2}SS~ToYH%^<&~}BXS9D(jxdB(->zWUZyiBC@FlPcB0GF*2b;wDJ@#49dfLF
zzPULZwrHS*6v<EY^$>mbnUl67-?6rjX{%KaDw%zm6LgU@f<EC)M2n=?z8^lCqWaYK
zHgzuUeeERqCZ-Jtd>IgT3Zn`Y8co_Nun5nfpP5@GukBJaTuLxSSWnG*p=u{i=$d-r
zWQCynmFQB$vuGNZ#)%xJ*&C8tS@|-IJeiIkZNc2|2qbU7BfkEr?Vm0GbLr==ld7$g
znX!W--T$fd^Bcr5@+(XiALeIXTkpPR*?1%E>IlW9k2B=h-^GjEw`ViVU8%Rc*<i$1
z-@pGhuQ)C{t}=;EEAJ?`>VyCcMbh2Ht`DF4Fi_xPkb*`W;#kqyv^XbEqLpS(Y8Qr&
zX-{$Kv3A*}vYeNHPYo+$lC&Luc#B2gU2PYv@F~?=o#(MdeDemU@iFMUfo;Qr#k#%g
z`%**sdluCp2T=JGK++v<wrqWyA!A&tk^<DkN6wr!61U|a1Om4vre{9i&imuGl;Rmw
zbO0<I4sdJ!&ozjDP)K3?O&xSpao7f+ZpY09IF(owp!e}_@o#|=*Cxry^Y0_27!g4D
z6D{Wmgn0K;c*;SQAd`7i&ogmxX~1P57@!@-n#`xqD_0sWXXKzt4mg20YS?E~!@&x{
zw^lVEvPHS-g$ba1aUz6~p1+(A=n5vJvo*)gpw9}3Ni+b5QVt|^MHg_tQ>CuxBaK(3
zrz9|ROq3t(Eu7;o)+$mmpYER_AY-*@Vu$swKWWUd6(tjEm<o*U)tRCJz15B&k+XJU
z317taDxs;wg&>;<tU_9v%ack-w5p+}ZrD%vzvq~C`s^G2ZR6|dM57)>ley$7TI3zu
z(OxPp&q{5cw~JAZyJLzx_@=hG(EA=!iqfg4A#LhLtV1OC_LG(cE?Gk<Nk4C7_tk4V
zuos`R4Ew%;6mZwUe=^8laVRh8@z1qLGku32ILg0}=u8a%oxXA4@5q#4({*SEr>pQE
zh?K8RV`9{lP$kr2#(Kb^xm2|J>kjbH&Y^5Vs<6o5sbep;0Qu^)V5D6L@c&H!*I%~r
zYcTyg*o*(aCGfw}TQk$s|1Ln8q40;wILKM8xaM{~aI;J12WaI*#wFTMZwceHP|7|>
zzD|mfxd+@pDDb;EvC#2$x;4+W3|0SkDpqA@gRipgkFL*Govz$brTd3<<L>*2GhGD*
z-tXr1p2D#yw^1%WE}!YxI76p;akTBdi;@s5oUM`C502c8kzL8Noj7rAjS7*9kB?4n
zYF5<3=Iqb=a0lGwEa^E_>Cb|BrC5MZ3Nq(YT-hTS!`n_EVa;cm*<DQTV@`_lZk;p=
z&P=Y5Qtv|nwRabDtX5OE#2S#`3ev#H7BjIeFjCS){v&4w=(xjX_OK{zZvwJ}W?oW?
z2}OUFp(0fFQy`1Gxtxr-ItsI>n0t7sOL9Kx8BN$Oq%Y3}2&0wXrxOsrtY+KGwC~l3
zA33YvMWpa@m(Oa1QYCU9jplCKlxUi4uuD>T)Q99Q;Wh^8Qdu=$k}YDJ*^Z>hsoUx{
zp~zszK!#<o#Bw<e>P|R)TS_2`$T9BzaK}kg=<=mvE3y8u)Mc`ax4|1%T$31_(~K2I
z=R2B83Y&YYX*LN8LgJR=dT`I_p%Y>z?zZjg{kPdM6sIDG6hgCH#*lfdgU(V<P;RQj
z4l18T%E&&=W1#)s%&lng(whL7_0K$PzZNzBfkR<n`El0!xlLg3Z>yRVojg^<b=*}7
zfF{9zn}^0u!NS4%bGl~xET-wDGVA}7<&TAe@B_Z^=j*>r*D(KJ%mGZ-yoizqjen~o
zcekJ`u&^4%235F6Dt?TQ&m3Zv8GKPCHzU4TYYEFIchaL}8Xsvr;cj{py5M@|mcMD7
z@iJZ`zmR=kQ?<S!Z(`^0X~1;M5_}drN86adxzN!M0-fR<a+H{{#};gK;dmrtJUwi<
zY1a)D@n}Xxh2ZfkoB+#A1=TvVK?cPRJ$6l{#~OZ#M^7v2DYPF|yl`7zHM}g10Q%rT
zMcHFs_>_L&?&5Y<#ZG3QV$RVNp{Z|Go+s3%$%4~@Y!hx?p}4xk)(Fb0#Q_0(>TGBX
zuZOps1(`{{z_pcEfa#j{H*4*Ka%XhF`q*lZKXP!UYSE|v`*h7ev4Gzs-W~s5*M?>K
zw-!)E&OtQIRz*Df|C8Z-!dE!wKN-${t=AC&tm5}0=-&lQSsg5xt=_o_(eeXc@@59W
z&aXdghRVr^!a-w01AYZgTuev-@Ua$fMg9;lO{ONi1p<1_{hNU4iuN}}Wz|Gp;gt9@
z{%|l9rmFmCd}MIgn@-48;t(+)x-LZ@j7De&{@h|8?0B5K$xNvcdY7f4ty$|L-Th3Z
z=H}*Pr%NSi+3))8BOWQX=jKmAx1fd1>20)@Jv;A?c`6^5lhPFHz8!3TX&YB}KdPJ4
zu{>I<rk=RGTDD#L<dd}5AzX`KYGOi)_!#C@Cj4A~!%e0^vWH74B$;D&aoloJf%Nzs
zvq!vy_tY%LlyUsQMeSlOc#A}w>^<4=1&PjS;yWJ-e4;Oi^XO+Otf#aI*<NccUXSl1
z-UVX`Jtxs>FP+UO%05yiNLXhkC%+T-aF(l8&b<s#841_!UYmR#7S^O$;(W5fecmD2
z){$(=syJ_PJ$VuepDlW*5V~!n)kw(Q=|ZUC5vp8hZO;}771RJCP6>;8&EargH?Pw|
z_jI3VW}Q3ASQ8`CA~ZsdJvvD<NtrUa?}itmLWd0nqhVz#EP2+3_WgQ#diunH7i#kA
z^wDYUlNp<E%bRUnv#J_BDXc7f1yF<2s064oNP7Mz1B-ApN~Sm?^m6Euw!QQHqO8p0
z!^2jZr&~0pqY$%#kw)tWZ-WE-CvyZQdQX|}9l<y4!0oOukDhjRr)+U?aZJk%wjJFa
z$|oItQY+Y#O7F>&?@$%!-%Bfnnt}3ZehMazqEO63B&mTq+RpJU6RPQ1+E>7?aSA$%
z(@o<DG%%U;=5ok=7Y+>S<j0ssffg~*d2qfvny*AG!@oSTv4~<ch0jeYgn<$swA#Wx
zD$)6xZR$L)RmDrn#{`86%9<%`_YFE_MUr$Xi_a5+BhD?bm`n&(=Yx}=$J><gQE3VW
z7CQ&Vw;J)I)b|)dS`qQk8@COy(yvyH68(1X=-)ejeqhdIV-l>Oj-Nq2!XFYH4!>e6
zep2692y7jU*HFu_?Il6KcdXqzr%aJIfe<&0H4!VJU`x>xNi*b>2HFKiYt79T^EW#J
zh;3GeFf=2bkDi}$O+GW_t}u@cn29#z$T@z-6QvoV&M{dziOy|8JW@V8InOs|c6n|!
zd!|?-vUzTBIa<P6&;5vcV%K*A5$)2@3r6~SWk7o8@X!ioC|G)&#;h*Vy2}A27VA^!
z9SXyDUr<QA+1Xhh1x&6WMosDEVG368)bBf6bN#PeePf%F+umlF*&<BT)!m(b?eQiN
z(Wx;R&5OWcD~0uxJvZ^7r1RQo<!WY;05b_-^G*GTS%<_NA70m7Sh!OO__LHmmd0jI
z0xB}L3OcwecbNPTQWL%@IC@<mo?caISF!3%UXOR)&SECkq>!A4bS!oiqi`dW*7P${
zPt%zKvwF3dlfERk54|%0<-FaDG=a%N)w|q_0^gWO8>3=%W!nKC|4=z58j-4)6<>N5
zG0?Iwg<F)SqpL8NE)6jZ?aA}?Cbfx38>iyMfcJ`@OGN3bFXH@H!m!}ddp_2}=;P(v
zjaZ20;I8b+F>$W3pCF5FV&Y*hL@qqj)Ux^S2%K66m#I@6k;hwyz2!9(AjFJimrLXD
zfv6XJ>z!5Yy+1sxMTEPe5J>1qCM5=jf*g$T$PzG04Qd3;{0TQ!Ciu1ntc0M(f&s<L
z#OQgef?pC$uh`9AmwzN&=K>hi$Yp>*Z!xf)nK;(xP)Kx_Nf4Cuz)!S^VS4`pZ>wEE
zKLFpak4-RbfR;IjfQN((<@6P0cObl(k-g=9e6r>QHnl+UB0POi=wWw{8y9^TJWJZE
z!8}JYBNu|EjA%!suJAJ>vmA8**ZLY^4UBRPqb)}ABwp$QKL%%XM6)mSt>bdfNHml>
zXz`&yiSML|aRsCpz9LzI{Q>`@iNL7eyXnC6@NIWcG<g9cl<En;$t321gRQwe7Xcn#
z&KWBQJcs5wW_qWb6KyFm&<<86RFC|LDqiMM!E*l`OKEo;spJG5<Q!-#7zj@eP83l&
zC5Fm+`_0dWM@L6YUdM3D%`Gh_Gcz+2=kvgm3eF4~G;9WYoC!HG;U*w5v?sCZxIMc^
z@f34(8tRC)5KAU1Q)<I=mAYBA7x<3Iat6-c-n<!unru8gxGezPx#&Vs8Ad@e=_B1_
z8Mol)RDsexL_O9={uJ<|(P(+TBw>t8LIOrbRn_Z~n^s)~1&2|M&ctc^7^Td(sYN*f
zl_#s6XcIp2G*+NwX+gxnktv8&df`Wa_TwWB22)=6tlNxbc5CayMkbH@n7udWXo{_r
znZBZ(LsK&B@fJLk$uxHMa~eQEg(Yh-?^#XgC=iw<4#M0t?M-5w=jFj{9tNEb00W`7
zL&X8I*M~36I79vFHWzbOCbNy?;Czmw4GQnv2k<L}%XD{7`FVMpyXwa=6^k~Oz@xf^
zS7m!o+mX*5rZnq{4QJP7thTG%Q!_J8{X_GCE>19)9-MwlF|Y!=8)B5`B>}5Vj=M^_
zx@%hrRH_iTaeUW2hBOIQ*|HJ>l=dlnb>V`cj#K1VWmQ#Y`~aQ9lRocxwWeX_-sG4#
zuarfg=+Ph)G8vDtr2<QUcxuhk(h@qGVlc1wXBV!?`?u5W3OS2zeHBrfFuN$5ZEbBG
zJZ|5&L^sw#H#Ro-nb%xS;a#gpkV7js&u)swPMqsJ@2^H-;ou%`12J?kD=I27UoA#`
zi9tzi{jw!4P}E4$V7=^;7Fr=A!0_A=z)PnoNrE{86<>f=+}cAQMIp%@T_V3UF>#8*
zps%aBYK)C{`g!=83)z~IlJYYZ71g-^&PJlzsVkae6ned8;TD!<2{cffx1V%7UNEBE
z(H;Br<8h&MT4BA-%AJq*yuXRra?WbDjLqeYy-<?0lzzJmX(sUnCX<o^LG}X<gC>lu
z0)=<v%bVCD%z?t%Iw|@XI0aMPQNO>x?+(9nO*xHdICv;2kOowPg^TN1)6wxP`+-6+
z$?zN-vw&CES<%Ya@tk4kI(c)(UMYyxo`$Mzy{chArI299E^c;bsfAn$4!i~n5AUg0
zgZ)x^-aG=wm_7Y<6NaON84A!m_B4~GcE~H&DMf)qy#R<#(z%7zK9a_n@r#es6Aei0
zO<KV0%K;id>t2m_Ig?}~f}}<Xx5nsOS_2~k)LjK!sb*l~+T$r+lk@Y}2{%1F>$lv*
z$B^QQvliIjpnIS2ZAB}`8M2#Ds;iT;+LY94km1OZobil`Q@G*Q?XF~f8{d?1a&o?X
zgN@w`6a)m577Z9BZ5<PRE+~Es8y_;L4{8eP8oZ5txDYMn`(Oa(^vHo_AwwGXM&oVG
zkss^iH3kn4&zs|w7B;MnYv&vi_&F01akE$HuT{~9E1H!2n;RP&-<$%mNp+HB>jOzy
zO-Q9rou)*iCFc~d^#G-7*&HH3A{_~&5~HvvPNXrRJW9f$>xFlE;Iq)<(u#BsZudUf
zx$$#F2?>>q7mv7L)N#bseq~mC6&-QNt7pu>)r(oM{+M*MOF$|QYYkGh(z|b^2&KO7
zbY~pkh6GqMuATlW5KP4clzM$3B)#8)&cMJ!_~RMDshUbWV0GiJ#eBz6PQ*t03o8QS
zSgFM+es5zGffnA>XSs=3=xHbP9Tua2zx|5HI`i5H_NHVLguHia3p8c?A;^qm&uuOx
z91UG$RxAW1@KJwbrYfG%3`i1DaM)uf3MI7n1fb#`l{3ntJ*egq(slnG+OFKTtJCkT
zMe$;M39#PYP@ZVi)AiYAf5*Yz-a9xeQgf7W{VyzX(UvHb*!z%ISQc{(pMj!tU|jG(
zn3$2bG!~5nA}7;0ovk{F@>;5s%PsUSaz&4|tvZl_;T$4ZS#EHfC)1cfvrj?*OH%|5
zV_4-Agu}n0^?Hl~{82^Y6i@?iu#EKZD0FKkf6A~$UNE@B!3hW%JVC+H(izn?C;}GH
zpj1IROrf>-e3d=yg}5ANj^;-z#x8!8<e4Z$3;5PSFk=jpF;>#JLATuL6eiOr_*US6
zdFiSeL?pKZc7Jq<rqAez;I&m%_F_^KN%7<1dsz<o0LRb*@EeYmt=}a&&<NiwRZ2%n
z47@*X+P%_lcG~A+!0@&*Hy2j}2C@U;_J-D0rzR5wmBppY4J1@8D^ct(B^~}=#5mj^
znxKWjNFZskzMJL!#BJzJJQ<7SoJ#`uVPz)>8dNL`R_6ouUPAbm20jwt66|+acjN>4
z>GZ;O%cILcj7&q($JlYJu|BHma_2ol0*Qj4-k=K)+az0+oHP2djy*weWYH{&$tgI}
zlKw!dBV<GaKB0q3i^3Q3qd4|zqY@&kcMFOFdBkMaV?t|5z$Sb#wP~K2oV3tPAwhCA
zLlf$gqG%W1`9=J*dRQ0oPv_=uv<FOE^qaDy0Ya*+PRC!GZf46=`)|3>POFob<K~bh
zO29^yVk9#<)FC`dx(AyWYoU6t=5@V21!5j9d=SdF#j@#)-LOJw@A5C%1HMs`o<iJd
zQYI`>yBx+vG7wk6Q(m_qrGAMmOJJCz7*}R~`}VCwtfJHmiLu9fR)MK&0lYfuH+y+|
zZg!KMI3Kr@37p^N*Y-XVrKJVvrtZrLhv|%*W3&JiGp%fGpIt41ZRJ38kXPRrpU9(r
zXUYr~v4moFL;_R19kqTs#+^LA_lx@mP_E957U>hzs%OsAjIHqk#0$D`qf{reKw{ov
zArPKnZ^!nLWhv%RyaSK3nVRvp?y`q7-WD{$t_g;%#x(e*W1O#CbqJhDP?FOh5#mFK
zxK%YZmy`OV-aMNDjszP^b(Td5XZvwl+BySyiQB$!C46{`-Q+YqJs(-NpBvsGl_e#O
zQq|4ek9=WDW3}eA+nXRrHI#gCe}8`kfHbmx_sYFwrvpQl(mlNva)nA=>^ZL;JHxrN
zNtRNPW#`zqFzk=?M1W^e4Ta=5l54v7gzEKFR~G=rxgh`q^;Lq)UI55iS=ZzGc;zIE
z)A@i`LPCP}mC1cU-Rn~2$TKwAFCqSRL__Qf31g>4ABZ`tO-565#>Qm)MpiZi-VJ{j
z!An41Li0rR+#n0yT3e@QdJx;wVs#{u)T{hvx4?kc^BA40!PyLO49|WpPL9PK5Xt1Y
zpIV!goF?QPS-0ei;MzjoT6`)LcZNSvB)*WZWg{Xx4t7*L?M0D&z!VnhpD%~_JW&q>
zoU@~r*pv(+Vbbv!Eb?Ys*c)zp^fVyOk;9qWG$h2gOvMe+zSIXXBJnoIn4l1mR-w)&
z^vjG%oCUw&s4K{nDW-DB;4L19EPB(&e2!87-PC-qBxx}{O+;~_x3eD=1K$R{#U{|J
zR%;Mi<W_AQIm?BB2W<cNjcA#oYfJ$wIBGRQCg!rewOdSXyX|?P`fT_T4^>CL>=B18
z2ch04wU3&)R+$Y(OjMv(M`1a}#tcU5WTg<9VeE|o^`)rK?HlK&?Us&;IM~>C!h(W5
zdWqqzG!cx?1FCpY{nOa@<-_%^zzhN+H38v?cU{{9K#OwBDEmSorM|m_VznZmyJPFI
zi$1+>X1NZfd(Zx_Qv2ZfsJ2!~9PB7i1&8I%4-XG5*BKEDAjW`5qaiWhg};~U*#2M?
zDL{2&j;7d6^&ub#NK3R998?li=_vqZ1Y&FI07<|&7$S|g61JSF5j8ny5@>#i;r$JV
zAbw+hZHi>H+afkga)vQ~YB6=8GwqI_#A}8dCNUpN=4d$1nQ)!(A+0?yuZEfwgFu%l
z-sk{Udt@-T@Krf!6lRxd__W2a9J;>EGhZP>2IuuoU+KB;)S@&Rn00%*AdDc$7?>9Q
zIfA2rc;&mq7{U}pIWcmYBN#kT&S^+f8Ka~8O5@!aBvX&zs2M&EiiuCPybZ(@RN$!o
z@KZ@O<~XRifjW^kjZ{Z&-D!GM7eS7R20okZ>X!hB>aSJDsS68Y;^i&gGE_c3ixcOp
zY-}A->6VHb>|}yOvU0^mkuiL%j5Ai*Hqb);B{@4zoNX`#UD4ob(iUGo!de@ggLOXI
zu>eP-Y!eYs4b=eN10z;hS=l$He9_MV=wm|@q+c}lKzR1D!?~TU2xHChrLP7`6pOsV
z-n*dKIjCbT>2(5oN<C}p$&m)Wr7_%aIHanzl%P*fXA{IJ1_PI#VvuL+132T*VekPF
zS6~&?^z@>{EG8ri5ylk%uM^ISdQj>Rf}<A3RT_|j^A@R)wSZ@;*34L&lS&~r5*pOi
z)uo#!Co-#|qJn<%?b|&hmEKz?J`DoTv#}wA@0}Ia+d!S_6!#eB!Mo73qd7>+zAkP%
zU?Vp->=|*b!85c3DAhwBf%ftkT|vI~UnK|U*990>8;nZSRjbwWE+y^=R+G+--(7wS
z24ix?EM`R`As9ySRKjBy?)GteS3#H;Rf>(Nukv06Jx=EMC7$Dm<<9!B$)+f7?a9^b
zmKZ+AHq(X)DGH9>&P1>I+|L^@@qQlJcWO@5)|eXPfyC5m-iDA1IeL72<P{A{O$eRZ
zz6@>h3=IN4Eg>MviMreC7}#}Hul&f$bPo=RN_PF)$EN|+#2>$YdS`@>k7!;9O;~S_
zlM+0KBa7p3X9U4PA*znsGyY-dO};{jES*j(yFLxD!I1l_Ed}uQL-{MD4691r26Q0C
zH-hwai9RfCaaCFmevYXH8euTW5iW{BJlK?uJcdm@pU_(ntz+~)WVFby8ZNs$zJ#uL
z_o0kycGA#_dv0|n;)qX-3be2p{BMp94zNMDn7C3FWsMm+_VSP!b0jSE?kdX5kJwDd
zGuvnahB+*OA9e`W1hIE{3dKJxa~gwEVubdhIQiL`Ad2^p8a{SS1z3r{O5NVxHhe8I
z8)?MJ%zR-gk!uc!OlMVw{ZI04!RI5zGFwyPft{3-t5u14@RKLcna4;l+gZ9^x7*8p
zB^^8B?_;4l-bD=)U!LY??d+P>B!Y@g)rGvp4(mI{H_Na0heT*6GP}s>_w<?+g`_6&
zj0ckt7408?Ib0D+EhMF&&&=bs2Y0fC4r(@aq(PSlxqa2u#~!?x5k?#-*KCl1(&0p|
zuU=>+ErE?=ul^8g=vY{4N2m~X$?mWZO!_I#OlV6XSVB5l`{^@|?Sllhgh4wDx410j
z6mg7ktjqW3;CBv#;CJnUFueeE_qSwF%F4=UpdyC;TLWMsZ)Wp-!yL>Kr34ahxG@q%
z&i_Bwz5*z#w11oK6r@YKJEgn3ySp2tTN>#`ly2$n?(UM5?o#4=VE5f!eRKBzF>_{+
z2ZwW?^Xs@SWN5Xhvh-9EV*IJ`D;^t}x>-CbE~AtKBjlLKR~BV8K;Z8L@@Q{G@N;|o
zGcC8Z1?X<a;WDNsN>6$!XQU^BO)P*WStq8anPCvXMWM}Z1@N`?gOV>9tMfl=c5TbE
zkuatfh7R+_-V3}%yt%&CnHpbVyqri)O+{xRHC!3U^HZ*xr1Z7q31l|oKbbTxSO6U+
zWlp6ypZ-F5H=tSRxI1bttqpJ#l;3T}<HwD5C)@L+BAe-%&$mGUQRL^8RI&b|@^T;J
zz9`(JQm6zYZH#xwUemQlwxXh<<>vcKqahF?M(CrE@o!)EYpus*@9>%BO$QnsWNWOW
zkyAw@Dc0GpJyJ@XR~6<cb|sgPH`mwk0WAze##qEC_C<vXY?`#o;u5i?+#{?2VJ+C0
zkl0o6QU|Kir7>GZFjR9nOT{vkeCBMIOhjY64k_F;{uoHDIn!>IhB+X4!2wn0wm%PK
z-~l7Xbz5kdm2E;3tJ@l96D(q>hvIlNw8aOibs_&9Q|?Jb2KO`U2oVd0_$Hu+Y@Ra>
zri?bVxlInH85au0>l_hm$hVsyNwYjNbJY;a<Vy;|<gRbVd>s<1*caT6j}Mc_6U5W3
zrLE2Frxj27FyD*0C?{Mz`5MRKdY>~_Z1<JmJbr<&5BhsG&1OQ3MPKxGC>scv*pB$R
z?tpBHkwh?r+>o~@r(UqMC?4T}hZ~amH6obDIie(`b9fn}k~+;MnA8Lz67i`0k-pJ~
zp>v!|d|CuX%Rxs3bm3!Ese54Rid5A2?f5#%VK^4GEnH;pBM|69L7Wi?y%$dPxMNW2
zkw7veFBV4cIPXU}N2W#_n8wQFXt}DE*xfhpAu=HmtUe8Q(>OK2C8n+vEHWyQ;cBZ7
zi;j0ki4mbB^mvLtxpx!40pt&wlGUp6^Z28#ATmlZZ};@SZIdlqiGEvCGiKm596rdz
z0Tkr+W(BN2!Nr>fT$Rr<Tw>bP5)JpDo_5RXq3<+{5Mlw>i!{|p-TFx@p~2qXyS#tQ
zhE~^SIc+u>00OTU+1(?w%qwsqU=$afm4+50<IK@>M`51J2K)l8iJ%9Q5jT>O3{XO{
zUY#6?9sei6M_0kg0Udou+_z9{<>q!q6yXjzMu~xfbJ7eky01v5aWFd8z~1_x(x(;h
zF`YJ2Y;k5}WUTnb4Ch(oVZhu6>NBrFJ^G708520aVN8xhAg9M@XHg*hXqlJH%wmK}
zzcuFd=C<mxEo!>`?asSLNK$){Xg?U1H2S_RE}`L!{;>6Enf}Q_zkFOc?v_qsgvB&q
zcotB~aBhehJ~wwTs%F=d)tuM3@4ot7G%=ZudWt{TE>z}TYz@Tmh5<7F_g~Cyy2t14
z8LR!^2`;C<1gBE8YHQqMzV7dRE!8Jipgw1iW9n1l7Hgrh-`Hvx{5YDg6cC&$o&GjY
zlFI|-JL>!1!%lB9qGUK0%R>kCGh(oG9Q{sYv)d;PShe2b7A?(ha*l5^Rt?P@gO`o=
z;V4<^#Y|9kG1B;%DdToRY~b$+mkhTuZt;a*xusxH#4s=UuY#pQv4B>>YH|<z5>mO9
zq7NOg0sC5YM&M3Gj(kalzLK24v;TY!yMzmHu*9!tfCjSUI;`4BfvBes71X8XUTf}X
zN|HW>u2}w9fcuaD{w>zo&?p15a0j3ANvG!~qcU+6l6E#16BF}pU~6kjbJ~^g1G!7`
zTPLvMDGi;v;NI2tC)GZhI<5VM7-&+~6#Q?jREE?k_#9Zsd(2D@u_+A%NJ|fmwS1I~
z^SPDDD#3}_I}bl@*0#wBMsycD#+ioYDo3S)YPK|2Eoc%pleayL{W6Ciw6(R@TwPoq
zvkMCgBf0U;sk58Ed8-R<zhYv4xF)=LXl1mCc39*5w1!1-cXPDlDpIGnJSKI}J8q;n
zrmUipncvB3!1CaKhIJ@lt<+DB7wyw%IafARzyL@dAT%{KcY(afaPyL>>m8#p%T)Ev
zD5nL(Rc2EbI<rP#F62j&k!`H0{UEz>o~!|p@G_ttz`Nl+^N#WS6Nr>Oo}x-~<3JYk
z&TC_>hVjLsq9U8fs3-&~EcQIj0;LKVyHuP@ZKjzqOLOx(HF~FJIiNB}apMZ@D4EI7
zhC}TzW{ac<SSG?q1jy<3Ma*}v)6h6ebNv~L-AH)p0CP71km9eV(FmD7uW01iF$Eg^
zKqpR))F;4(?HS)k_)hJ^nv|5(7FcFwA;!4IxIS`=mJ*R0n2Ifv&OQPBQT{XZ+ii!X
zlo*TN_DjC8a?a^P79DOo`62}-C)^Z32{<Jt0rZDqLQS&;%{67tCwlc{ARVS2If29}
z69jEh(msswKx#b0&NnIeuwF#D(m~MF?5F;LAPX1;#^03LNbGPiO_yq|HPL4hzwkL5
z7dX4Rt^r=r-cr5&Cc}`aL#zzpDzOPGus~!bn>5gZSRn*l5*u~_t1;mlOXT5RRK$DU
zY%|#+!Jt_yKvNM&Tv$e^OhC{7d7vX-PP6MB4iJzt;QDi*<5$qgzlHhs+X|9(v^D@l
z2>_ug>)q3zunK4K@GS&++J<u48o{{&JM_ArQG>|5I_$EIu7kq~11d0mH~pe{Xl`}?
z!Y%@@X{Q<SrelaYDxh`QjAUw82@R19Bs^jlYeq|tK?1{i<r<ZlxMIYhE5ev?76g8?
z-g)lAGIPpKa}@L2@nw=yg!e@YpY!7Z)fN_!V?JS58*AOyyOBKMSqT#p%DfWpWa_fn
zsB;;!5v!4~?GgbXnWtq0;2L492)gtU&<aN2hWU>M)^y+PYLlWuy{im?BMj_$DdI`|
zirmfasCL#AR1IW9$30UB(}HvEU#13y3srgl8T0K|_ONI0f}bXM{tcO?F5?UQdxj!_
zGK>$&vsYK2mZw^L$``7if)urs<%_jN>4Td&!osZOU4@-R#97;ouK|CgImw%(VVWwY
zD#?|)#c}Q0G3m!;@i7c_+HAbe`}d#Di-?=w`GMN>Wk<}@VsweXeR$8${;A>{2Lu*6
zM<x<o%DbHiY5#FPd?T4R5nqPrPv5pO0VUC6-A)9`5N+lVLya8hxMI#Q1)IN?MDNmT
z21Z30TQh0En<*Yd8@EgdoXRPG4Wd83a}x7Tk3c+;L|cBplAP+5g;B7<nfXnE^7NCx
zyl3dCvkH120n}!@Y2bGxENM5TQr(tg>tbYdyR7gBbEpGnN?QyZ>~_@;vt?Gm<8P^+
zA`7`cUGH@HsTW%TFUrQx1~$s1#<ZTEw-`luZUA?Z8osG9g_{hVcYrBJ4!L&)T_H2w
z$dt_;V+-CDUn6H<keW^{C`wIFIHZlR(@QTZ*;CMn$Nx4W*p>wfYdMr3V^nQ$zTH=j
zE8J&>L-+8$zDiqB)G~UCKDA}6XP5M`BPi-<W5Y!QGO{R^c0cUe_VdD8g=|w^SgKm7
z{pc0jvo85iIz{CG=3JhB8X2_)x95A-x_^BA(>&onzkFrKXE4#1ot~cf7ubT}@{#g_
z677=7z*hp~_GuERlp>JU`q_tNF!R8+cYI$c4BkKSaLQB}1+t_uk0_vSZ{6N<ow%de
z-d+0h9=*GYQrkR5=%65C5Yk>VKD5#WjfhJY@~k5r1^`d3TP$KS(JX!4JiuaaEAiVU
z=<IImiEnbunwNRyuzgG>Q44A%Snf6r6c+D1zHq9Hx^!CnL!hTayaXF1DK4`f2MY;%
zUu3hB5zBgnF%>=;mlU=*@7hzVfSX^gHPGxbl}sK;P3VoQxtPI^uwf1D*-?7DGCE`b
zZ~B_66zn*t1t=@QZUUZ3Q{+ZejWW)d@ZX!Vz~|s|*4QTqVUuw$tu@IHntzbcOXeN|
zC<I^6S*iFCKQJ3kmJ_`P?4qXkIkkQjk{|fW#e@u##Co5;92XT7E64zx4SYr3p&%+)
zCskai%?y9Rvh4=+(FtroWrTjjM3Q7X#Eusi!Lh?1KF|SwlvwKYAv~!|o3I{P2YdYq
zjF{W_o3ylTnh*3=Wgk~e^twTp8>$ieAx0#ar7r6mBwMrhklE-9KNk82Bkzd#kqGmN
z6=#4P&%`R?RL#XORZ)RZzS`?Hyb?ov9qwV=<6$AI(H1*SR`ZzQ<0Rd`GI%cW8ht1-
zDa|)99ap@{Q!v%Rxv}Sq(Jq;cB*mrx<m=b$H2lW!GGTHS+zkjJpS(pe&s9lg8{U-&
zIDmY{66D}Bw>3X#UT%EaxIkON_PKX2emd1W!ts6?(o6W1tVa*nvf=(|%jQ>`{=Cxs
z$A-jD{0u)aH$0E;y%0M5V|zdLW%j)<YaqYi6StLuDrQIobw+-rlX{~uTdp!b5xPu!
zks;BharR8>4+Pd6=EbR)_9VyKthI(i-kxF$1>H=N+k5J`J$mudd3&mAESaopvgm;I
zuT2B(6{kmc1oLJ9a@01ZUL6E~-}FozuRS*|D4lH6q6GhGodbLT<z?AfkqI+l{V`_l
zn=;Lc`{GeP@AwLEr*}8TEy>*a10(S#C=*TdEw}eL_gx;-6P)xSMltauc3sLab)9Hb
zun^UylJx>;ka7+I`X-rDY2bEJR?w7n;EqP32$I<!SwbQkfIgtlHkGjn45lP5)=Ow@
z1)GBS=qzY}z>aCN&{A(G$*`2l2RO}%IiHGSe;6+Wdy{+2_>tI#ZDQUQ$~(1_)t0nK
z;ru&!4~K?#IGj0IebeTiSGjVA1KIN4t8z7tLtC~X<2dZw;9(Zl9^?F5wE0s7yTS|o
ztR=%Zw6lc`5#XK{R}wt>ZCX?OsOr5EMIF{D7su`1j*v^mjTK8)Ea#d7#>@O#5(e(T
z0pFe@eKJb>5c{1YOi1L2jq_RY<~)5=(YT2;GY2DGw+TRwO=(Z~E~0;=zfHr-_e$a`
z=3V)x*UcL0pHDg>{~${}4aP@#27dpU_wv^vz5ikJnCWHn{pZbN%D+3I1pvclAnRjj
zAg-dW%6T5tTmE?g8Rcc0KPB~#F};OCUnVDjWCsJTKjWESN3;HlQTppDB|Du003XQ#
z02@Z&WJ@4rYie%u8-@kz3y_e4{0n#m026XLUwSbHMWH}1v%nW7r{YUZ!3K27tr)cy
zr$h53{ZZSA6<M~EZFqe8(U0?$n-%vOuZH-g>kYl&F~l$Im``A|aHy=cZ%3Uelstzd
zFtUbWs8~B|X)Rtq;R%<o!9xmGP03&8z{iU`DWrR20O(&)PrRlEj8MIVjIt91u5(*w
z1k@Y5KPQrgfB_c$6w&AO79w{D=txR{`E`${3R4g%Pln3hPh!)H*d@=f(03^TQ|T86
zfrBpAvS=BS$m%i$5btJ}v8uMqIU^KRzXnK$uNL{Y$xumEg26$EZ(VUQ=UUG^!Bvyb
zJi$TMB;#At9^6&r`DZ2I?}&1EMU+AF?1)26Lt~k*LgXc)nuJ-QVg2#v06f7H)3G%k
zXuHYo$jgOS+MY%|7o+6wjx!rgN&TwMI@?yZ8yq3CzdA-r-#nsfg5v5zkvem%D&qyl
z$!s;Pi$-n%ue?`fUTH$u7Bl^ptyj||<vQoRoV}HJ{a_I?lh#(@gDtKb2+F<BiaqgO
zw50Oz+HItroK!V)%Q4lcZ{hNkJneY99AuC7V;seq$RWAVOhBdUXS^+lye;2*)gj7R
z>XL~u08cRG?Zpc{M%!Vj<MVuK-cNq}S9|%>Q1idFmkP#?w$1<?nSYSnyetL$gDDgs
zG&5u|tXqMBBE~6v#>&OU6{W&r9)%H(X=?Q@TNonA&n!1&xlSG$Io<d-JIjv8-1grC
z*vvhg9YV+Ij;@R@aj~unFyWFuX7NRn!kY6b0?2MS*7!zA;C$fyld!dYM?Y<OB3ZqV
z-KZOh1`rUO1VgToi$ioUn9M2#Ff&Ql#dzH|XUgh^hmVL#=}AcFndG)o(n{BM7PE#!
z(~d3NPM2xYUxriidA_O;u4uC-J=0WXLsQGf7=f)XvHX}S0pYr=BsmQ+Sj|FRQAxE+
zA;XQByUQnUicra%K;{smhdmi2h+XEJlrRuGjW>%;+pPqht8GdvAq^YlLnlo|05GDi
zv~cI<IMkNNftPb)mPuXIV&CNa>BE+dkv`bhg`%{*x&0DZYuk~gF@DXr2}i{1uD|z|
z<0hW_5Wc+cINQT$g8^Ig{yXbf>DyDHWD1;sDY7FyQPp%9<*4fvkBuCnI}`gIKD(@y
zQ*_jo;_GcOGP4mgYcIDZJBU+~7CO(ys<5?IiOXFZYW?P7MZJsyPVTedHN#wG*PYqR
z*f7qJa~_yY`}EAro;`lgWBD7Dw?!b<U;199m~QEAuAUv;X2byY5{1(Mdx^m5As;$U
zc%P#`R^{lFuK+1p`bmm@9gRl-*d<y3q4YB>p_sA0k+B04BRw;71wAA9i|<~o(_w#}
z0)_g?e*J2O(E*?Slt35)Rsen@RHCB#3!ob+H&yOdL^mM`RZ@3scg&!_(tp8nW0L&0
zSZ<W#AE#r6mz4rp4Ve@j4P#<&mjP(g=@rA%=LVW>a`^c5F_sc0;sy#bMb__GRB2w0
zgVuxeCJb=1pME;duMg$FE^9tx2QmI;e-(9Y)1Ilfd4yj85lGqfb22qphGGj#-zHE`
z>BPX=RKTz@%0Q)Euei?3O^A7@<2i8r@NDCC<<}(=_F)YVx4iZIAs;f@;?#*vQ5}27
zm~^#pa`sJ~vR2W7PT|~!3#(z*lxz*JcXQ$ghZ3bammM+-2@%wJeZ1DUFm{ZlUB$zZ
zCH5Z}!?^X+4r-0%YQ*?V8kN|j%!<VRT|x{+xf*tjiq-Trqt2i1{0{OstvGvV%G@Ps
z1A5RB`gA^cLruNKmeBIDz|ZjzW=R5xSJ99sXizWjsUp5fThbgdS-8PDHSeFkBEW-o
z(S8p;bt#ia{ghq>GT6Vp@?BC9oLgfr2xJpDtBdmfarRtrh|JJ4$$aBZQOqK9KY{@C
zR46XV@2dZz<m>UU2!0zbUv66Z6`_HNI*oq%&RxPsaCWHCZHL|Ak*Q*#9fgzwn^dxn
z%ix{b#*H>Toq{nqEy-%|XcUdwJe%2G6j*oSR^Efb4j$$`Z_Nah<=hO=exDxkrIv~T
zKh=9^-%qr=M|@x-b$NY|h<8l9$x;vNTi(WL2(WMSG#)LrzY(rl+51!on`k@G&hw#s
z1DimDtrb-wQI;YeInZAzY_NM8+KNz#K85tuH`((&&1!pAr1BJjvS;?Rf}a%WR~110
zRRw+r`5gM|Xt)zPAn>3f)78zN+!$`2-q`p!nXWX~Tz&s(YkGOQ`Bm0*<um{}y*XCs
zqtyoi7W8~a5fhoPQV4Xid}-E3c{7kQm$xw81&%}t8Jx7v*##hYLPZzE3K>bb==pgp
z=%$`F-VzovY9<!$UrKcgq7k+F{|HaIQ;X4FR3PLNic2KmX7vF_`ZFT=RRx}B-~Wil
z|JBOOU*NN}0UGeay!5OAAKvg`6y}?ZOo~Vp%Sg{2Q8={2t3*adT=3^V-soT#m^~9O
z(ayEv@1}cTev8z^Dc;iq85`pc%i!GWR#h+~xr-R;T3GWw5vOcab|6!@FI+pwzNm_;
zLkD|U-DMD>Oj%?4QUVjEeL5FpB#<-@?SHy_HNh?*XbF)2O6*3eJp~@4oR6wXW<{s3
z5Kx3e6D<b&RX!~DzKs*A;+|4=G@~q))=dki`?O~m@}V{Q>HgD7Ko?tF%rWYO6pWsR
zg)q>T1rNIHtF=<JaIBG%(uEGiujNp~$dKe<X^PS|#u9gkGLG*%(d#Y_iXs+Gg3!YW
zzQK5+Ao5T?8mt?|TQfy!8-?Mk6)|yLik`N-8E_PJpS!SVnJB3BK9zq`P))DJnXMLK
z2{2#0l;n3nLJHh;IEb(Y;2t(8T{mLxgnp^XcEi=KM8`;4dRLnPY@J$;qJSZ->R2qk
za{j)n0=~TBAbY1tACuXp*!O9bjKxx((?bOS6sW<<!*qcZ$h(N8%Qc68H$i{-IqpYV
zqZ!*r{-W)+TH|xC3EVN;CK>>a-B&O!`ytRo(RgrqCE}SMU$ga@_?~g>1|e^sG7DEY
zfbM^TSv%MgX_*6vN&Zig|Es9{S8Mr#AM?Al{43NNNPJ*@Agb&~7t9182D1>iA}Iqb
z*uE&M8&TG?wv$6*BuW5$O#k*_(=*gsXa0Td;>^^hq?`A#Na&4FO_Ed&y~KI^(9ttT
zxiDp;f&-1iy)iq+Er6r^1S$LL`T+)E0`*C9^4#kl;M*YyMt$aMq;o`2)TmN;d9LgA
z$$sx|8dD9P<YK~PN*G0_I0#I_p&tOkBJp9e=Uq~YKDNpJ^|*?LhE`Je*yf($=|pUU
zWTyATW5;!xbpKo!1}V5xQ6wRs14CLUdZ;b>+#Gybb@9Tc;$}Ny$1(l6R|N^nmdH-L
z&u(=fy{9+R5BY<7!QxIKg6V)YEs{Ockq_I7a<!Cj2oK2Ynu%#3zSQkZ13Dg)koxmb
z$62hb0$GqBrAN%?x?@>O6fp87+mLd=04!a!s;l$4I!3XQ+ht4U$C#?mo9(F&!S3K0
zyX(~Qu&u*l#=_de>7?+)VnO$;I9r_IODB0laaFU{uc1D<rY|20Z(1dri~%v*dYM2H
zLisqcM0FCpjogTnM?G25WfA@XOruEjR6`s0qnbA}QWJd??C1*2Yom;89xt2fQ$hd!
zO_%l3$d@NwLUbYCcEFDE$|UgDx)(z!=5vp=2oRT_SCs#|p=5m7qPqAiz7;e6bA|?_
zI~F_rsr#9f{MjgW1573%AYhQ$jTlZx)r6;&k-?UAvc4+-X?-z^7gd`Z)73j05o05=
z;v>*QQZ#h6SFl%Sey|OBMv26v+c}HDf51Y4I>$v=0*qWK;QG@H{(7_j%L)+3i)jDM
zhVg%87Q-l6L=+=e?{cdD<IaJCCiQy#p#?RyVI7HJ6=5AM%QRjLIwO=^_cK`avr+%|
zCt(15`csJZ&t*OZV-p8sM>8c`OJf_|mqZ~lhX0v^Dd?Gl2^;Yp1Gp8<(j=I<;rkv1
z;w!UR#=x5PS7>i)zP1fXSQMVElX|4MGo5%TT2q^Hu8!H3T$l24`+L2IL9%amjnOwC
zQ+gi`;2Tq<lptq?vmgVo^77PmqJVGjRnF9N86gL#eBMuGmAhK{s>T)}qvsXRKqqxC
zLj@tMS_S)&WOxa`0yWAowP-aGPFn)xad?so82^<9V`gabc4xB!QflL9m(G26Kg)))
zHyr?oI#~54;MfGFF;ff&Pk_+8Q99%sj+u0YmB9v{^EnihwY!Q!BEP=OS7W2B=C~Ov
zLU0<@hZ}dfsmm7hH&lC?ASS1g_5Gbsr-e7b07^g&u!y4F9B!RQN-pR2k(VrOG1wLk
z10d~tKl#yL1qkog$No%jEC<++edcF+dB!ub+5l)zKtp1s9I9awmTivXsJ6BOkw5zi
zG!H;*Jeyf&nkOzUgZs>Ej9ozPW-Dg1%C+0P3(qkYS9q1C?r}IPcnp8nLZ8!q`juGR
zMv2x^jv~2`K+SThqHb0`Z>kYY*k7*Lm;}5iCi=DGtK`9t;37c;Cb0VLjAYGfq)NS%
zpB;&7g(-1>hi8l7b1qv>)v$x3YE|;TaaHk}PeR7&;*nW_7Z%*a)w|dvvCIez_G**&
zPp~9e^L$4p-RijF3jM6-z~&L<AEs_W90;oeQzhao(TG)91s?rqxcE^~n145>q$;{$
zNH^h2Mf^87$3W_>mCQL@0FwN6%B}~bo|a;^bU)k1>y^HFOGQwd)f7%g>aWEmt`j#N
zoJQ*Va9b#yv%z)I_V*Op#$pEBI?g;6Ej}-@&(}I%@XRFX11K;4Df_>s%G`jL@Q+~T
zkAzs(74QlGl@v!uS6c_8Khc`4euryj{|&DBg^Mgh!TPz%^0@pMMxMnQsw}=ws~kp#
zp$&;bLubu@n#(v)dM0+*?=lC`?bGKHOG^L%7D41#TXMWvUMVM*H7>`wiMn!ic0_NO
zBe)akUe~h1gxZZ2YuF~VmjNSgM<q#d`b;4vKD*B4%E{Z{TeFUxxQ@6Y)5mGI`Vi3Z
zap{hI@`L|wQasHdNJaUTatDRtt0r<jNWb04&hfg*8JV7?Y;0&)9$9f<vPMWGH~n+?
zk1QKqD^_<`h|zb%sb|_l70urjvZYev(PTm&{PMREZUl3T5yGV0K^E%Z9B_jX^G(+z
zIjq{l2x4vFAI$DuqS*4ZV4N~24?Q3}B~cO#0tFtt3C=d#BBhELLAf+Dv#?v`u9&_y
zlEt}oiy_S89%P)>a8?$IGK|$%9Ah13RLo;Fhb3N$%g);}YmQc1hLsyAkPj}L56gU}
zZ0I7t+_&Sd*S{#c1vgVWfOoH^i%(Wo8MLL`3n;5DaJF#i5OcBQ=K<$|nW%VjN1VNt
zr5bnPTPfP`;S8J_iN1cboHkOzIQUUm0;LBYnFJ~h9JzhN!FGAp>fNf3GzW=88JG{4
zhi&86B-Q5#UYNXis0kn?Za>8_@$Y}$mHk^yMV1#G){a^OG!>EhvdVpew#+>~)JV@L
zGuc^W6%jas-Y_zHjK+5lW2lPmJ+%hz#pB`t_&YjGuTWDCZ@Fy{SB7<~oUYS%_rz>V
zCm7=zEoOi{i_%Yyl+X=mD)fjW%spkhnhLPVa3^nqzjoME>*s9gf{dKl8pUYhG-*Qx
z<*O}2cjY9>*{WlgYEenBs)@8vMQ!&5#I428>42$txS#+{U#m%PWr^b`YzW87jPW4C
zRybU0Sxr=QjK*Ka&fDq2t|L*2Jl3eof=Q#amvWZy_$5T|V@2q+lLl4XYZGc-2JE~*
zTKXEfv1|f#N$fwGyg%7<{|cq(=nnXowJzHWjG%DT2#h};YS7#rDgz>tG^qw7tR#8|
z>Vw)6#+3*gj%d2(n~5g2iBF)W7xp~t`2-__1+t={L*8G~n3gm_Ms^_m5#X+9;B;4k
zB&V!iYl9npVKb{yN}SE>gcTscxFL&UxOq@-4>)BLJ9c8p&||ye`{r%6;72H??Kpip
z<A!R-bJb;r<3(m_O<5odB}>IBN`XrmAGDl-WHnPST13no*$pdZwSHpsI+oG`$^Ee9
zrJ@pipJ`bMIQ|Ua`qS9_8V>(&AmHr372*^J05I@K+)KL1x6>fz1Qwwr9MrMB&ejCx
zliea=I$$CO)P%1nVlF?SJ=`Er3@F20D&R|v+9k4`M0#GuJkHNeRZ-n?5BHtT&5THU
z($pt@N`7tNdJX`AM~*Gaoj-+Z!$yD@-5Z!_!v^c>_yH{>A-~GhT0#|uJTFdyF$WXP
z#r9UX^+ZamttDbzJ>2_LWFpsXSX{WA0)X5@!mcPDismrbuMs=h8&#$-QY$rAI;A8b
zWeP~2I`>eD8dF;Ley}(Fn8sJ|W`<r60l+<ls3#<X>6M|uJ`z^wf8=L6u(&>*#&G`t
zn#3(44`wRP((oFShUW$B$-e1Up}68ew}AoCAMfK4*Y#SZw++yCe5qsP2g9%vwLHfN
z0Y@JI+EcXGRwMlGXg$Zndg%+=Q=XVvfCWStAc2yR_=r?M)%}k7OJUM8+S6F+N6`=f
zY)={hw#Q$upvsC9bedUKK><@m6?RB`${~8?%Um$1kH|x>S+5gkRc<@S<-o83b8jNW
zHC$w3=|}`&I;w1KHzfL<A@Akr!|6A#)#*dXYO$Kzxz>Uc*9qMa(`|78*pn@3@&yp;
zY)EmK*x=On_2rs(nH*2T4l>h3o&n|4Hn>2K4=)<?>IkK31)wee83~*iAW%QWX8%lI
z`_jZ<68lRn?UMfQHZi!#cqte}0nLlyKdJ*@<na(pu+Pm4jbv=~WQ}A^#~F|p54-!_
z+W4R0Q-2L}RDL~ygR#|fm(J15+zx<i_RR6%=%{aMtV>VFZ)gbkp5P_QBycr%G9$3H
z1N^3qz7>Ea<s|_9?K545mov8j8qWUD;nA6DOmFy+3Gh9f2FfQB%{)@9-O@rkj0`^Q
zLS3fEo7bnXyUUeEM1C=V9qAkQF>&sjOraU)gV9)7pD&CbjF*sv_hY2rC?zSmQKmr;
z3TzaE+HnZ!GzJfs4HMCQv~dX2OQiYc-yK^2$n0%~7yi9WTm_9An)*C}e{X9(ceP+U
z-o72@bP3_L(FQ2qAkvpj|E?>zQ<HdQi)1q(gV9`sgO~&n1O7qkZ!uy{DT3NC2qNz~
z=$WONV0tXRgjt9Ov!LT`Vzk79gSW!6av%ZI+##3)g+#t9)SyL;OIP~#zLT-DWmjew
zW9a>w&34~5b-hL8wv22k#n#o}WqehZ29dgNpD2$+BL6H5jf!*V4rPSA0OXWnBKE)+
zj^ffZa-H~*)m@TfN>*6#>^F8=Sq+#u;?!#LIl<e;xs%E14pcsbZfSyMg0^^4MsIQs
z%yuzW-4-G(nONWP+8>SIRpI5=Y8~2#JBW$ETk2M8eHeW8d65SUDGdLz=}Q)B2akN)
z6Tb5u<n;HG!ZA8u&?{H^CB$d%N*KXdm<f>a?Ei=o!~WkSL<zvY=V<;c35>ez|BM!+
z@B5oP8YXd&J{P0m0N0;J_}7T<pD<|v8ucP}g0e!w1WK}!!ZHNnLb@;C00iyD80W^w
zKTBFr)=)Wt*P>417fKg$QlW9okjBVi(XMscSs)VYe8x>5d|U>D$~qSF#dPnM-AqZ8
z1{%Z!pWT^*9z0Gr3O5ji)Xzcq$rA=>!y|=lk1cwAlBi1z%6oC>I}>~dT!}E<oB<Ea
z&I~PO=<BV1gZB+40-2Sv5G;lt5VET+HMb^6;n%$i;n8VVdpRLKO^ARPfP1$PC3f9u
z_8m`n7?=}p*izFmxdl<r9`(ah<$4$rFhk|XNlZFoZwDwkHO=Ohufz%N#GQnX6A6N@
zTsz}r3gk^OCqx~-9q;b=j?DQrWlE5b{A*B{I&dehoX<?9!jQf$sB_uF+9rR#;u5D=
zN*FJr-DeFf*vu!QoTQOOmtxYby%%F<2)&(&3wY7b)HQ!Tdg2dM{D61y$JgHqqu5>s
zi>#yNpHrcrEL-oOEpgrM#Tw@$!U$#lZ$kQx^XQ=mxFVCrCJS$IA5K>3cX2Sppc;15
zJw-|5*eQ4~E_h1&CUb8#KZ!w_9G6VgEi#j7LeSM{y{(poNo$g@b3ar+i|F`7E5^i}
zkV-);jpPzL3ZAjT9_HfzIM{+ob=#yxRoztQC%i|W&#l1nxadzGL2F2tqOPb&X)#f?
zcz<`@&^*eOlI32J%We#`ben9Q;lR7KXIFmV1(c^GSHz()(KJZbVNm5-4~Y-U_kQF_
zI@=mEeWE7?zhY0s8~0UgH0Zo^Zo20Txd^6Z+sk;CPlMj)BfyjUKT~r4F2X<IkVvup
zT?a8R$5x+1{)L#O<+;WEuK?>))vz$J(lGyE{~_ZSp>qZtBm{8%DH^|e2|~c9Kl!=m
zWLVh7#oWQx#u`AC^IONLCFV%tIU)9GDu%i{Y2B|rSnQmIN7WE6@TbT4!o5dm{YqwX
z59ws3+YgkkollJ2eKd`%VMExYbMsxj)8+?R!p0AfeiAMOG?6O8_GIo$0VP08CfV|C
z#90C18p<uA$*(1jorVIX%o-p&Qz5eLiRIIi@#L>6(JJ30I27l@%ZrT`2GfsbS7v^p
z1>y<(^4M+2g7Z;%ac%1&nb-!hKpq2QvIjppu(!_mL;l&m{zGhUDu##En}x|JeWI;g
z<+p^JG}2G%%y@guco{h&yumu!t{hCYay9E9`++k4dqzBnrfi$$?A*XZtH-ZNFC%fm
z)(aEgu<zBR<$haVM$;PWY$s}xnHlGSbz>WNP|SQvWIa|tobeKC!0_~XVU%Qb%e5f@
zsNvmDs`%^k{vWDWjPx&XKtETnjQ*zJP}DOI{DnnI79c#UKZh8oFY^&;nAjL<sehE>
zL>|Z_+ySBy{vU<sIj;U$co<pe1e_fKOxJ*LLK*<QYh`X@s{3-BA=$qKO4V{yB)|7t
z48WfmY14<Bot}$}Ny8gk!yp87%Gm%yS{`)b*NG__I#vhh`<sUFC=SvC)Z$Wu;x+JJ
zc8Y%Mg^s!o20kO<X#U6h#Q60-O{{G70o;+#(;AY0ZH6j|Qsq{s-*><I|KANo`QN&s
zBKv%(&kz0cPY3#yDw7uQ=|8F`|3sDf62^%d14=3SPPTxG)^8~BN*xY>rYQGjdH?P7
za5WwQyGz_;=mB%6>0vj#jN>rWysw420WnA5GessbL2Z7%10U53ac;ovoO4V>@lXd?
z7Jk5;x(~^0d%0f#u}1&nLOgPAl=lrzLil-EK~mv*agpyh=Lv_cD<e2&lnlK$+ABti
zS}u6rOPsz3H>cC<kgiNePn$2K8j@JHEKX_^%HTvZLM!2J#mtbor0Ep^+FVI6MAeZ2
zk`G3pSX(p*OsgNl%z8stCFoP!`~^R$8c>kWnH0jvdZG8t(HB5=6Tp4|`7x>ontWkg
zOFNf=bF;>i)$`*!b?XKL+V<3le~>ChIC@NM9z6vNp9+_sXwd~!gWtGYdDIOlrD~4?
z6%)n#ZU;q4xqfVdg0DDkd5%Me1o|=@%u6~g8K5H$xCjUJ)M#HAwK6j)3>7;9na_2N
zVslXS2?3<JdQ<+ek<<wtvXnxOOU6rJoZ=QpV;|WwPtt_@Tt%gk;H=j-ijQ~BJWdd7
zbfzfHH7-~?Pu$Jgv=0i>i-d6&WLo5e4F?O#G_J2tBNU~f51KFHDoVNW<BVDiTN7P|
z8cB{=A(#v55HH+maONL%p)Y+uM1B6!`ADMjO5H~lwK#NX*~gZCN5n3z^c!}i4S3D=
zvPf}$AZiT|BGV?1<~fU%<_l@A%j)F{zN@eT^#&W$XUyW63P&eyv3qYk_(8HYSdos~
zEoKb-!!@<(mB3&!!L=hfp%>EJIYM{Pn>Oa5(6H+6r)YC>#^1+aQv5f#1psxute@h_
zUn9N$ig@}ALg-*?^+Lf0Ae(z>M!hr~ewhT1NGOOb#eDBfFDFOts1s=xO+ASv&U66z
za6<ZR2L~2RVAOHceYGOUrHPj~+RHUhw(9-pmz)Vc+meYp$+F@Q6u)SJM6{8#&V3dX
z=4RV>`3!#63=YF;rWU#548WEQqnL<lX=kwGPnB7VP>qS4K|AMc^yD<8$9YBVS+z1r
zuAOC~DkA7Mlsli$;Sk$q@va;XM?6Qu6F%_+$@nbqAYTb%MYeHdLF(;+NYwBXz2iy&
zuS4KGGXzdIxbjgbumq95srXJ=+nPU_HczjpLhFEPF163}9HDo3;}+}ywAkt=Z}F?1
zKWCx;R?lCk>;8c@EbX`m(C)6^v>S72UXNfDOw2q5coKp<4uvQJCbd77DD+j`)YEE$
zQF}~vh=U%@QOIhmS5tZ$7pc6r>x|#pT(6-e7dC<>E`_^53}L$VeUVD5qu-pr?E<B@
zYN^ul4Z7)*H--vTlJ$F3t_Oj6<}tg&4vrNCVMd8ppU#g#Wl#+)!=w{Ls`^XOSs8m_
zt#XBXp%ocjoU}$PYiq6q>yCUCZEkIP`!CR<B@i#!<0J^g!t;g4h4lRzK-edjtz)Q7
zok+34#A-y(7;Q2*w-M7f7$mIQRW>Nt&bWs^9)6AFxhx@SLl#dA6j0xk022ud=k%Wi
z$<3>r`YblM(d!PM?-5uvF15JHk~!ybPEYi14GXcQ!`^K5K9A3VPG$UfA3vQB<-zN#
z0=D~M6YYFbJ+fJvL6C@N(4J_RB2;*}Xn^b;vfxf#^Km>rLtw`2xsv!)8Vc4}|CcDn
zaaAY0_pW43oX9sU+Q}tsl-K*x?1%jl)&^tiv_mD1q*ddC#XB0<^<<2ipSB8#t;cRk
zF;;?W_}wV&3LVHxl7tYUHQ#;5A)nl<lL~Or>x?hYs1<LKX5a3t54YxE%40>Xn~1#!
zgMRlT&RwR?%!QCYWp!Yo9j=cDnkjsl5NBupeVFY~berqz<%SSb6^*^?Q$fTKi`t_U
zGktoY-MntdHCQZurDDj5l&7jvbp&!>%15@N*-T606#|+#a1yvA4S!ZdKK^DY6EVHS
zt&kz@H-S_)ZS27{Y2+PQC9SlQogRuGY)|5*WAA?}l}I3sODO`>oe%u4A>^+@D*T^>
z^dGhTm(u<}D*Jy>B3U`U5WN3B$o{;<@XWu5(DrG=JfW7-C|gb~kMVmDSP=5!aVg^f
z%@=wXBTnfl^CvGhmsk)FO*{k6R-T*Nbd+mLicjA5&a9og`93UWbo`-GBJ^V%{owMH
z=!|%h@BJ(#k{c5O53cow?GAopbKa#8`vmY<gh3yftT;{_F$3V<p|krSzhYG|;zHo5
z0eCD=hs*26l|;w4)oMhgB-*A}SS86t@gEFw5&`&#Bm9NPWF>M+(u5rW%FYh_#0!29
z?$KR=Y&imrUxiFxNf{ISnY}3|U(jnXpJYucY^@%`>fjK1M}p?>U>)_EzkGM&7R_nJ
zp<Bd=)Ie_z&V^k1)Vgw{E;4=yA3dN?(7L>BlL3u%b0q?tjUBz5fFx2sKF@dB9ZXh<
z?2Qgkpoq@Mwu^qN1iD6wumo`}wr21%n{#%4JKI}m&zm)WifuV-*Jn0o(urDTSyM~n
zdagFPUO=zXoU2iY#2}15n^tYl|7=fzNYeQ9Gswj9_bTT>+E1@?4CT_Jc2lCGcCU*<
z*J@DEb#u4#@geY6nsXASFx)+Mk59?XLNaZ-JWEUt#x<@aUTZ6gILlYng^;BuLfe2`
zi>aB6m5W!eNSaAEnP|tk6vtyt{|MQuMnx!jVgq5)%h^nB{TOL(U@*0c-ea+$a>I);
zjPJW%t1;nfqz!Aa)R3SuhAb`#j7Li9RlBVzrzy`|g}8Uvc;2$fCT(D~p-lA|lWL~I
zG6LYm1~TCW(aSe)?jPqI+kC2hOyzH2DKp_5>qL>w*`^T;rcX<6Ga8<9)diFaa_2P!
zKXm*yJ*47MEo}r4>!qK(*sqcL|1ihQ^0I#+`PXrx2%x_is1H!Iv(?nIGjPw)khN(6
z!t{Sdikym#nTDP6N0iPeAiMJ1W_}O2{!H<H)zAO#L>PW25|XyXVt95U@2{uD%&W6J
zO+EurP`o0x_7&L&=V+o;!$_OYGg7>2bG4!y5->yDZa<u7+615{Os5)VGFL7QA>6k@
zbj?0Ev0FLkY(evf*|}U7Yut5!XTrAXo8M<^6xO4giavRxDpTzOe2C{&P=$DH?-$5N
z3&Gdwim^xu&iMA9kkS;birnDSu!Y?tgBf(ps77Yf=}8Rx5L3~SrmpwPz947~g0IP7
zx-YED@A=`GDnNsopAjQsQBl*Y0*R(pfyZt~jJo*&6}HMZM`-TK+!E#A;+0ypi)=u@
zcoC~J5&U<vAJ*Ozj{&@hV**qJDtaB*2)IVdpiDF&#RbYPclt5js1%d=3e~;R!GM9t
zWj2deaBlY9TDc=JB4Lorl#d;V^rdT%q_vU#R->M-;n<u@&}*zS)G1liasujBEcoL}
z?%<lW^TxPW!39%AxRiUx-+g<D91evszj3~W-B>xhR_XSVMkl=p3gZrNmQ<*D-=c9L
zW|AS8a;HOEwVpGaDPKt~zI5S*y**nB|5?yaGJ#*eh4`J={N&Uw-v^mCeXMFwlswPl
zYUzFHP73s$w`+++h8BYM*fay!V&hBhI~*%z3!z}8S28k?ChXS(bMvkNTsS*W*amGh
zypN+J4UXZa3Z+g5_tRb3sn!Q5G;qP+0E5sIH=Xb1p)B+_zdb%Xkbb{s2O_b7aLwor
zTP<Z0Pp@SGy-4lr@0OxP<fk6{I%G);D(TqA9?p_Y#h<RUbyTvGv#@{a2XPIt&(lja
zMag$?OzxjN$gisQKP1HrOfOyEp}$U~4F7Fj<=?jjCTW=H82S(k<N)f{^>bE?_L3E+
zrlh4|WB$2108@|A`;6)u^^?N=dYnHQmH*mpbAH~~Vt%n0!cjvofQ3h)xg%9E9=_CB
z3w$H_=^(it(brnyi#lgv*2E2zgpW;yv^dElb|%Tr37<nV<Gf93EUuxOFvqDEkj&&R
zn*~m`->Mb5Q0x(7NNVpcZcUDB&A15_fN%PZZL(i?W}gJ{5;RSSn|F+!N4XrQMY4$b
zhdTSgJF(yer6c;wZwcc%m?^<0;dXYt?_nLYR+0b>;(jw<QWI??T(DR|nEMoD9!Wd|
z`<~Ew4gWb}r45LE^#yS5@t@BAH;m2iOA>#KodK344En{fH59lQ5`Ys1%jKv02Bo9B
ziws3;{esM&I88ZevY!b))5mUByj<7Z<N7GEXLdz-Pn%A5_eM6Y5_SB+M!<Xw6RF%!
z^OxKeupCM=w^P0MT;6V->Yd<|iPv2?M~IaUa?<WPgEI^Gs8i6EX15T(2^olq$iR(_
zvqub2smUIL*xAq4do9JMG42$VlmcOrz_Uv|S8_SODnxIXimht0C+0=S9n^EyeMtJM
zZf}G-)jI-%rWG<T+*%^MI8R(^{4o#Oz7}k#YzC`a7MP^-+uqe><zs<P&)&*Vxr+0v
z+_bSU9*#y3Hyt&s8`*L9ZA;DZev}fmTJwQ0LYtoDI({ufOW^6FerfpZV%VUJhD)Xa
z2_?uNWXh9BuYL8rz)7BED~qw)MK!LE@IGDILYiY!4I;RAjD`swh|!AW;va<yA#(ga
zdw#Cx2%*@tE|B*<G@G^A?r{GaTpnY(db@li$oS=yq_t;4j~(MG8uD|?t#ZKv1aqXu
zRe7J?lRGC>T}JNuD-EKr$xR}qCX-510mJ(%+m-}TQT;yVTJ#rsHH*GJj`OE$uFvvd
z-}BC`6_C9I|J1?%RUT*n((-RJ7;$SmD|170r{9CX-{v|LI~<-<nY7<i8AGXTIadMk
zDSA-o?i>yiBM(DMq*&2cZ)EbHR%?tn`E0K`GzN-S>Q1=J8Fh)f&i4)c$BNLSmltaF
zn6tm<6KgenrXZ5YcsORKME}tQLOh{#>a5N;kL#LV$C=^}7s4Hp6%;5HhAZ2Jh}(C@
zlbO-{;N7;F9&KG3Ivd-|32$8*U*!M6;nT5jvtnw10*Z`UVL>X1f5^f2omjC-aQJhy
zBura=VdhPt6XN7yA&?0H9r;-OM)QqS{e6_WLF9D7Pjk<OiyaM2ghsrwa((&|6)Pb$
zLh$Q=4mA3`1FNdF>i89(Cq@li$7IhgOX|V=C2-hs1~fVX5@~$}RNrxTkZ7e{WCS1q
zqB56y>uOze$<pCGf>%q@Gy-pIeF-KU*HcEj+JCSCN*B{vBS0ME)N`!Py3_{76<pkk
zy?KC`kGWBZR3XfmP`gqB{PR?<Nc`ZmtVGEUOP>lwlXwxKwqnoT_f`%kPg^-i{xt}^
zR?2~~HE^DkX8)Re^Pr~PNZAONl0DKz*%`v95+ypNiDbs2A&8b1u1zJyPK|&ELMzjg
zKH>!&_G-VCk2ZWBHImXZOCfj7ga{>%b0FM$1)JYm$A#G#J~V{nsL3?Hd;HvU53IIq
zLiIhk09(MCvwUZt;*GFyd)ILNSgj{KHpL+8yZq5(%atbnCE^}Z?-r)?FJbUaqDukY
zS%(u!cU!Ij{Pc%j2*G4)wpKG;fmndb1umb^JWVwbc8!~*C;F<7eIm+ha|%`!Iib^C
zx@T$KSGo~<PG!3OuQ4C{i}|YhYuh*CZ`08Jfi4ax(dLjdG(3~h{wqh6nv#mC`A216
z=t`UBzZYl!hxqk3=FFeZLj8B+*FVluSk2BvS5rUFR8Cw2I1@1w?{n38;V1uE1^nz^
ze?FF=4eN3sz+5E$<Y0cC<skTrLHQTN5id<E=Xp)r4R%z>)7@*u2)D%q7s}3z1!H1@
z+;Imonk00iS4qji#L^(BDnC}{pyP4IF4vM^c0;_Z@Hu;5dllW`i$0XmK8Z}6isrS3
zThSqrJsz#rc*@qx?})BMbn6I-YF9Y7*RDObw49}QPF`vyrF}rha9KZ^bxA6%R~&lu
z@~DEd-noEO-w&yIbgZKqD!Hh`9`@86f-F=1v3b2is!IKMb#(Al$L2Fwo{|+wT!RSG
zvGQKH(=jesV2KmXIMQn5ht&|-#KhMvex%UkT8=6=JDRyWswIwzZI2oi9C}BDLkyX%
zDF&ZyU{`4!*U|wSXK0UMK>&U+I&SK+vEOM~#)S$trqNoJo0f22Mn8tT+R%Wg6}meO
zvh)TrG?{}@9A(+c+mMo6P-eJWozs9(!dfTeES@yAGF;o9^f!)fsAqmz5q=+3NO%!8
z?<D&4aG@+IOZv;q&qRHe;OgNdXNTe6P>q`13A8E<Sms)NDKg$r!~Nm{f5Pw0Q20GO
zW-CrgQ94bYw6JBUvtU<!L)nh1ut}>FbtpA&+mWFn$k_fSR`3R4Z7}puZ4NmizzaEB
zjUx#-%rL=Af>0Uc!MZ;3^H`kS!x4v<WeR*8Fr<AILZk$=ggEWj^S+f?URgOV4Ky}m
z=FFu{zhRmMg^ObSsDK5J&aE6W`*1pk`kk7STm`KJJ7cuLZ0<A36HOhv%rN5pJeu?i
zgWLS`gLg*PQE2tNaXn{EX>E2Ic6>Gq<}v=-C=KsEOTt_;Z5@Al?X134GOEc-!;bnv
zv+x+9aWb$zT6D{#2%BIIr><a$X!jd}Gs#wwXh6LoWJB5h_x|lVGQeQu>;kPbPQwHM
zj>LiPrjMM4z2iO&C$oT)Fdv=WegWFScn0u;VD0^NPmJ<ubDH_+baUk0E*IrGLE0N6
z<fMZ)H)=%+rf*!64-1EgZb}+q99HAhrD4zM%U3_cIMbJRF8ID>#}CMm*2;$M6Lu!5
zZ)4V+Ua-@Ku*|4Oap-w`UvGfhpxP#go37i&ly?kY#s>I<#mQeuX~<WI`jjAV1{@AT
z-`3L}L~X1$QlGtYw%o!ha@5oDs!-IB3*KZr<dswPJuqv2QwDNV4EVoSvuE?3_B8dH
z1g==2KZ>#E^zo{dA%Fa^`ZiW*DX@DyyD+^+uiF?zw!iw-+akJ9v-82W1jQBcrsi-k
z_ZYNnO&uxk7`V*Qa-3dq4nc3V7$Gwa=4)~z<M5A(*m?x3y6m^}HtRBTqcy%AUY>3E
z5elZA&dl?#3#Zl}^WWA-@19@i?Ca<?1@Eul2d8!Lb9ti;fAz@DeOr$h2>^F;^HzrJ
z>mgST)ogd3R>56%)qI`QXu3r>)A5k&)2|45lN7hV-ui*gJ-l~Dnh0ZUCAfY8q7||Z
z*!k4e*SP|;w!V?oVevCRZu;8yrWT16oJ=DBNB_6;(QIROigg$Oodo>d);*^Eb&e$!
z?f1(et*N<Dkzbn&ZD4$C8#cM@?N%G3R4MZ}*+LEkeaLKpeE^hY8|!z~mG3?xWXh_$
zOW<<VF?ro_(db;@9YY>jv!yj+dbZ&rCg9nhJ}}5F<79H;=Y#I+J%alQFN4g^RTWKl
zI37Y`D?s|NSri5Q5IO1YoMuRdJSk%G&ZL8^%k0S*(pK<%QjI<--$1PC+%7x0IA&~!
zku0;HzuPHMqTUJD)dAK%8C}#WIr`@5j^<<YE()C(okfEs3GDm9)0pPa)8otVz$u*z
z0}-IKrw*Vb`LlfRYc>CG4G%ECR1~bESDuFlda`UEVFuz_p%}Dz(e=wvf=2g}@ox$3
zTe`%WBA7LdFMZhTM>*(`o@WPsaPl){@Opdh^ntqOq3geM)<oTtqbr@5anD@}VDZb>
zU_~3r=)A5(WuCtgVkW96g3ZS~P@qA53%>~*9T%5;<<`yW-;w4uAu_IdS2k|-7z~ly
zv%Hd0bT-%96?4^U4g1+LDJ<a|SzJ|{W!ltm++7N!W%nCkwdm`Gjri|xr27C=si5?(
z;JF%~kRRCFOp8l5dv$)O0fo#zuAw$YwSVwXdjOr~l8V&^iFVQZte}3Um7Q#y^8@5L
z%6M#w>H6=(1J5z>Pi<4df62}ysGuyQ`!aA9{@1Lx`V|$)?ngOv5~|&Z?oYA**x1|x
zbWshS7cfTm#gwjc`L2WuLrDtda7XzP2yoNW!5er&dq`UEC{oN*3MpzOf_p`R6BE($
zb|6I1f+c2=NTPB{Fz<wGCDcQWQwoLY<==<W^5Mj$q=k)JSeaPpgUO?2!B&%#Q8U#v
z&(G3L_d!xaIpmebGF8IN#Sh1J=cFqwA;sufmqvl0$;PWwfaj9t!Qs(?Az%AL7oiW9
z#tXnIe8WKO1>;7Rs3fB-iPutaRDg^l(>itc4_8F#C-}x{MN32&q-Xy+kICYtb^s{b
zeK-d^s`j4}j9=pcx?dmWuVZdMHJe@@XTrR;?I%7|h;_?{*O97C1HI(<VMmKX{H0+U
zA1ECRV-R}?$v+mPJ)CH!Q9HVnuco?P45Emna5(nLp%#Y>DO1$(=uBM<8Hz`BGDrE_
zAQ|WO$#2#B?LesPi|SWiA>PQ+@H%aV==OB#murZBw~suzE1RNLcF$go>3&x;DDJtp
z=gof*Z}YiceNo+XE%GF#`3f}uu2hZu9_PwqPUySG1?UaNBQI9@8fi!2!~G_3z_ycg
z05;s_<Bw!;b<kiDYms$hxURBSa^#(IE&E_PqV&s3N-(%MSWoRp!QQM=>UK@-6}0tW
zDrof6+zIU#kij0KE>KeX>;)`PTUHpYBcrIZ`fgIW5U_6d90)R+Ab?hBo<mY6Jlx2c
z(i=N)!IN<^IVFAe6H8PP`szcYK7S4T;8H!YH$19CHj$mK80VX-k>JjF!MN6<AG<s3
z4k#p<5LIr6-BZ42;8@Vy+b0*^jDF+_(RW)^!canOcCuoD8KT!RgYnCtQ}T5d(}xi3
zdyfL)ar;h7c9AuJ&J+VCR74*>_-HSzoyWUReJBwVXJd_Fe@_)c)NM~JLhfj%!y#Bu
zCJcJHV?5IyEL9r^fedxy;LI~qDuAov3{Za*f;n>u!p4?_XaUmg?@MW4Hv#D?1Q0F+
zWp~nv!i}C?ksp($@b;4dwSq&HL&8wGX_vA<F`unaCJ4YJxw#L!!L-Q@3~^Rv2zK=?
zC3s0?``!S7a@P*yY_N#prddKH-O7c0z+*JqzwIr;K<&MCRGNhdKx^gg&F)2c|5Q}E
z@<qi|uxIFV^|Ac>n_?9&{x_>}2Oc$*NEgt)C;f3!Sjd1MTO1<QckB0<BbjY9DbKvi
zrSI6?ACbVQHW};bycrX0!f8_3r^L5iS!>GLeWw%aRyKI?`pi36_vqvacG!zeGIf(p
zdE|4{X8!D3yR`3$XE!gEnf2-hpkY96qlNTWJ8lg5GpNw>%)n1p=byKYBwU?-+caW$
z;V|u)(*&$opaQM$UaAuCT2BV1?(DdM6;i<sYS89ZZx%|VfwB<W8~s1l-U6zwWLp<b
zf&_QB;O_43?(XjH?k>TCL+}K5cM0z91a~Ju2=H&nIo+M~x%c%u@84rAV2lmyRjX=N
z&6@QIhZRGQj}CQ*CUkNrW4^r709W+Gox8tCbYsUtr!~uy<}ffHi3OYS4IIHFq!*qu
zj`||yMG!D|cE!nC9CgdNuX`2}5;=T042G{;v)}ja1!p%qFI6}mVJPvkBuaeYa@;K^
zO-OW?zyMt>{7}Fpnd@+!0>eiy@hY|~A$?Q<T!@FUlr%l8g|zK@+~`h&Q}o{DezBN~
zRNMp06a4L+izESQku$s1%DB|gd<MBGO69ArE}E99;!a*NPN+{;yLhgfIcMkRL(-iC
zfQ7t|s2|n_z0e+=$-GL^Qk6+6Z6V4$72c6Vl{4rLw!h4EzGR4Lxv6Zc$>Vkd!>JwK
z5mt@IblL#3?DO2!j~tCmAb;I>*%OJujhw_AJ)mzqY6Vt}Olnqk*;Q?bf<dBqdxM~S
z(tTA2WgG$}O5^8<p)5^jSWC_pW8)R&{?cILAZNiY2-ZvUpEv{%3;aRv$TC5ZHiW8C
z5$mw0K6|hd&XMmY;MVQ;nN`=vE!AB$HH*SZAv<dO5_^jVT(mTA)TpI|S-f-I9nB`k
zM6Rj^-tZnbu!DkRdrfU`P|b_F)IfY@QntwD4hmBMyuuH4CzNPYj-|e$iX0Xo>Bi{|
zS(oEKY9?y5!}i@nk?XX6(>p<3*{Zo<(=&Z>k~?YPR0C+fvte=Az*#JpFc3bFNR!eG
ze{jpyW}auTM`9<@QPlQpv4jAE4+oLXvC2r%1Lf4ws&hKwr(49>uMV0_%aAA%SvwA2
zk2|MN9?Up6mwYg6Rofr&&-fobSaEz_pj33-6WmUK0c{09l>V8R{9b1L2OHd<0$G<*
ze}NudasIa(T(S-(n%-JUrt;@q`t&c`Sq9jb?W~$=YAV_vIx{Ai{8$cvpbG+Af41Ux
zoteL$&iq|x<^>w@vS?)}tN{*3;k<*}a|QvNZY6J4=s@=aMezvWsX9=pB}n@)i53iw
zS}DA=Z_h+sO5DE?brDWo>OFO$Xt+BrQ;<L3M48jH#&(eokZ7KadS83U$WPS9X~b@_
zJZO*c@Nl?=*e##7V)Nz2rO8MdDv8;>daO#2M2q4=y4!_^5Sh)<WxW6}b*=Z5rzE+N
z^72>!OkG>!ODjH?&~oi**sCN9KKZBQAGfVi{q@g`+?tP3_`Yq)(!KFL?@+7Npc%|8
zoPEi$U<4{Wu%JCFFwOflcM{g@oBU`!nX*=u+{beg^~g6^Nny{*Z$7sS6`dY;CfyBR
zkdbPjg1!}dGa9{J(BWtE8fW03G1m+(xHisPUIXbJMX^+`*-}s3YzZ+fNs>2Jf3UvI
zFj$g>&6a$*$}=-JjV=QXz|5TkFmnU>fJ=Web2Vcp!<&-XrOf-eg7uicB1gx4x+`mr
z431hN_l03?#CAPyp&!9{O={u!Ow4^cFmHhbO8Cg<7zRpmbK^8&&D%ZQ?^8N7blx<)
z(qv0)T1c{oSkKk@4NMC`sJDn6>m=2h`o|MOBkuRtk0mAtA7H?q9$!W{Dr<|tAfR~a
z|4VN3`v}JcjGSMlY#n+A8Zm1FqZf4kf5O!PP9Miwwx<1``MCf*-I{M?&&G?O$L~rU
z7RmoXio@AqAV?JOnbLsk&k_5(x#-{dll1?CmFSPZT8Um7!Cg^`QHfIy438<${>xDm
z<}4_J&Xzzd*W#PNtR<37s7y8dxHBl=)8B#tJ(U~t1MVdFm%I6Wd%^~I_umEPf5*>@
z7#Z$gHOd5Rtn>k>L_=YFJ(Cw$>(7}XBTma^>Y2$fr9*cOL71G*_#hiHQ4n3EF!YLO
zikgCjO{%2Pc`LaR>U_;bpCg;fMKGKvX6>?tTUx%c%w*(v8`_)az>r(>Q+KpPe^M&)
z+xNz-JUWfHTwvPm`&f+7o5g$;Di{!@-h=6Fn82^^Z0%-+H_vfhV`5X{5a{EJPQxVx
z6g18ELg9{dOj)h&fzZAwZR56qnZ{4Z93GpWqskra9xCiyG2keSePkN@T2KUV5oK`Q
zDv*Q%xQKpUhf!GaM4tN8WQ!|a?wcJ0-QShKNc;q9Io`MivviE$Du;npAAg()St-kJ
zcKD-doO0Kdoi6GXhPK+x9H^T)MH<t$k2=C7+{6|_{KW`?a)zh@p^^`{IL)s+3tIcX
zjk#%o&!)R+Zj91o5}X)L;-9E~b5u;1ZjL`m2%9RQx_#(2o@xS8@z3v~SM`a*_Jy%w
zLo7nWiRZB0z>{Iu@I-Q%VDb@~%CJa^b`@BPR0^iJvo(3=D{;r)d~g0e_L2qT-b^LV
zEQ_EID>jSkGWC>J;$Zjoj8}pfr?kJ1G_vsA5&%&&xu+;}$6BWY;SM9<&pR2A7GK$P
zZ<DytQBkg9r&H(h^J*78+l77}G{70Ux1)f-s{JLfBwG7<0psM4mk{8mUjpmjFcsYY
zBL$U_#>Vw|oc#nwXUJ;+ScYg`W$pUF@9I$1mcBBoce*W*D<!iS(jY9cZZ0auxu@N(
zC7~5t)zhhF%SubPoob5DWsqpkvp_nXw?xAMe=Tc^MtQZ!*ag)H5B^zTXC4n}4a<I!
z5sd4oo)aNEC8ktQh(8qaBze8`SZ$q%>jD~Vko>)XfUzIZBHS?Htg+sBj`q8IQR=Ud
zRU5Nb(o;oR_iken=Yff@-7skJ_BVT-`dm}SUcIYLcXnA^(nS+$AX~))2k7BVQ63WI
zs#2#mfs<F_k!f4;NKSq?f$JA|)l4Vz<)fLkC;=hAp0d*%CXqGNVr@7fSk_Y3)OfTA
zkqz1-i*Erc;Y0K#x~@G8FG_>lW+F$EbNxxst`qJj9nx3Y?TG`DwJAg21|q>0;3?r@
zQxK0b2vG1)g@$kFwmqH}ZH^PJ`{JxQ(ZUms3R&#afs?;O(qxaq^+CV0qu#C{i$Tji
zMUj2eUue(LVVP_ABmeOh<hg_00;M&q0Ub>6O9%hHsy>rVoNfO#FF2U$*%~>}*!}9N
zsYmT>>p){@<fvz6=|JsjWqGV+rLtLv@aXLmB=ZBgYBo)0^bHqdbN&+0(ue%!`iIGQ
z1fVvS9!Bt`mHWf;yx4fTqYB=H9$#L#C`vQKk=zN>ym^l`uSOiutjqH}QjvS?$tZR{
zZg!fty?gfUmrDz<&1SpJ0Y1mA1BDOztZei5w24U(Uz;a{(4j5{?iw0W4szO~3VI!r
zVcGfU=1(2RCheYL%59oLE_UZ+bl5vT`DAQrPL;F7Wjexq)6Qlm3WyOQ*~Wc`a|Atj
zxlT?)U0!gHE&bViaTot-x6ggDP@lGS@f2*ZD8c8{C5Qa6IqWIG0sBa*>^n<iORfa_
zUgF%`!^FC&=ISc&F7iZsBl##vU#}oNB*C2oKe<m>WaaxI9byCg$ZZ>hf*qFFg!lVu
zqWH-4O3{IV2Oa!fa=PqtN}__I`q+wkae;(0c#vj{uyKlEVZ;1J2Byf0&<Q~ahq(M0
zxwwuw<`gp^Q}2!0^T_)>V*U0$ZeF~DMxXL4!bRLFg}`orpvQwz^XD&_oP2LY`l+Z9
z3K&F*qY%%8loV9+TLCZM`MO;{A`%j8W-w=UfIfjCuCr`9Ff@n&pB(}x(i@OoG0`w0
zXW8MvGIq#KQyfCF1VMwD&B`KLWo*n#S`<=SWW%aJVZi_QmsCdXQ%e@S#2rvoN`FtA
zO$vu>NDqk^?N6vy$bX>5b_{#Nkzj-{lLXOyAdssPBg6zj+^ZwNwp_5eq#4EP&}aq+
z%#)7uZFKeF$K%=U*73rA^J>V0G}ZoC*4o&@q2CXK-A75Ckw&%jQi!#hg08g3D{|Q<
z_ia&g^3TxHu7plwFk;nZu3p2rk_d`KWc*s$fyES*h}9H6Ey@_Cc}R!*rTXIJ*jJ^-
z8L$zUBRcfPpNnD%`7h;DhlxoI!hJ1KUN0z86l^}4+RH_k8+plp%@W*!?Nu@%twT{P
z*t}@3s*JZ+h4Sy7$~`6831p3w&duHPP~z8-%Tkhl09Ob}R|0L`eZc%2!O>ZPw%z<h
z2FbMP=zpl68sicY^n)=K1L6cDNa`b31G5nST&p~GwdS6UR&Kvrkj$%H#!l8TxKXu0
zyUfNfY*BPIbe*LBbwa$%F%B`8Z`aeoqAnTbSm^}|LUG_I5wue6Q{l+{##q<z@Q;ZF
z39BOe<5YVbL*Ti{dcw$guSl~)_a+Q05lH!_j8Wdh9J4Y9TI-F$4e%p6A7Gj0I2;)7
zHMDREUSU`Rg(pjYs_fv}HvWVd9n3y5kFO`pVptuT#5TRe@LpYy(K^|Io3y~>F3F5G
z@#!1K?zSnuQh(OwkJBanbl5jIvCUsUy&Vt3G0a#W@+MKv(jhu&_|gOPB?>(o>GNAj
zG-N|0G-BK(h)v-Yk8-RJoA*%I33vSD%j-ElT2R~2?PTA(FXW>mH+;mMlJT;u`eTaH
zvMwU$9wC-;#ZxV1xY+Euq*7cbkrhX6=<*43DUCQd{Rv}x?6Bb3c+7kQ?8qJEKJ;p3
z5(+LxMH+ohN7Umr9AQdzR8ZUvyznOy!yuv)b3Rb2Vp9QyE@OhKdcT7)(aK(xg~-L{
z-#a|d&k5?Gw%cjfwBhM42NiN72mXF6tu75sIP%SMEi!oEn?ipUxIE*;Nuk^r0c^?%
z+@Nb6P7?PPV;6q#OlAk#{U-E2US1%NU{MRIPfMe+Z_(yITO%^Ug=#-ge+=A@!FanY
z6a58u0;Sk)%$F(x+<KXTJx!<rb-&nbjP@efs&MWdOn@0W)~a;*U?t;(e|>IeRAA?o
zwd{eOV@^mav&~drYW)mrzNm<9*B)MO5AExP7PtEi3d<ONwFC8$_a=#OTWX1y%gfae
zDw^)f3R@Drc3tNmUK39yu@bpOa@ZEffi)_D^I0qLTNOv=OL;4G?RYC;m;Wf@WxQ3&
z25#WPa7~5;W>e0N`cj$7bSsFeX6Vpv9=u$%Kwoao>{2va-1o3G`8gGzg*-aV4?2Z%
zLn!*<TO^*1tFtr_*XUT`;4LRLO@!Q;#1nmcj0{t;rF3Pg1e1WYA{I+iAC$7>Ff(^+
z=Uooqj`7V>Bd4rOeDG27$t37)RR<S}zWVQdArn(5+a<vxA(b-uoX(i5YP;<gB#*y?
zPQn@P(h<~{{G%z!8C^__&>}t_7FA3@Zo=q$h)Dvm8lh?{h?JV+;UTIjDCPEi!ju=j
zvpJQlaxHbYAfbG$ovA04+Q?P}%c^YMtWPZp<)H^l{6pC{^iJUNhi2AMy*@=izt<fo
zw#QZ1zs_>p5lC`Y-F{c&wP)C=C8My(M#8ZB{V>z6Y$#KPuxq2_qKri)EX5p*vgzC5
zOlRGzlw*9+gy|)a6jO(cJ>@L=H<@{ryC$)T#_%27N5rps^tOTR00|6JN&cQ?CD6G!
z+grhIdl>O#suOld2fVJKMkuP?{+#l5GcJ+IJO60kEcjF~!E(I`W(K%4){oxy3_a(a
zGS%VTfoz9iV_t3R23g1G{N6%yY@8}<aBPX9{e9IBfo<Z=eUs8rxrp>j(ymu#=nT^5
z_ArRT@J11K8#f4^K^7CF$2MPcDKycZ+NHJ{Xox%Sm%g5z*yTZABO)l}W(XQLVD_*1
zG^82%-ARK=CZX`@OYt&Cglb=e>bS!cA8-jaRG8P177}+8yH}_QP*oGF(^`lwq0*Ep
zVZhcRCbM(8R5fjkUmv}CV_+@v+WS3FUu#!|O!`Q(Esj%_Q>)v8E7628(YZB3dXx>x
zlqcL(u+U>^wV1B<xT6zQ=dRAOn-`_2A^|<4!a`4kwk#zRjpV6bSB6_9GMn4Tgz?C^
zfe*rR<j`T787;ZUS_ReBeivdK+c@U>eV~?6XAeFffiEsACmo;m6^=vvYKK-BIElM~
zhy8_nu9CaKUD5`4R@Q8u+1B8fpeZ6cMd}S9f4b)e`dXIWT=AfI41r|dKdNSs%VM&A
zM(uG1$*yZ|#bw3?JC)RlaPNa<`0N~#j*fyPP3%yi?ph~GTV@5`Zw#MM-dSM^o16v%
zoZZG#km7u6SXL8`+GFl7YCr>4zMA#XJ&UKo+_<$mfwflY6Yox#kS*~J;45#P3FOYU
z|G1Y;i3^H}Hrx_2u<EHcoOUaZ(KU6yW^;Uhr44AQfSlrbP@xc~2@;JDvw2_({bvIm
z-=vNQqE`?r5*-#7B%cRn9N>0}I30=y5e-AvS+~KOQDQkQ(hM7s=<`OzHk4Cb$v7n;
zK2EeEwJ7`et7G$w7ktMDwL8>`iM@gA6N^j_L4oJ75ZREAu_gjJo*?QewOEn(DkmSh
z{C(#6Z`OLMi4wZ=`RVP7r(M+8foP(7_|qL8YIXVz;m0uhrT9NW((4{jFlvKhCcVD8
zrxVLKp>jj#<Oi)p^~+Mox=1&d)`F|=d;jXgPCCfPIs6X-cPa0hR12gl&@^R=wV_Ir
z)mqUOX&c?iZtt7~GDVAaR9qpJ=)yTV>1RYxuQ5%Bo0TZ}n`enUou0dD3}r}4o0bsN
zRa<Lo5OKe^!XNF5IUY4&?np+aI(Lp*Wo_NIU@>Y)Q`dx@_)~|-G#y_iOLCHr9WFm6
z)^v*fjlZfGTu+MojsMw!SNs7NfdeG~JcK<P58AqOjh3w12I{pVt9^hfpl^GOdZ}+3
zq%$0m4ed=w1H#kFy^Zqyttro=p3>>ieTzdpIdaXx6wOyZVcX!qusmT|*BX4oYOt!D
zGB@k7!m4Hjc<E?M8yRUS2Y(;#nM;-RwxHurXZh0p?Yr?d!~TSaIZ3a|Xu*rZhtr;t
zMNv0w`R~!_)dGF^H@l!h@9l70=%1{_1iddV%`3Ic&owN7T5~=41#7C*8Q1s}nOeDb
zC_lr~Jr<M+?OAFwP<v-gUE$!Tb2d8zM*P9VQmu?&RGqM&&r}%*^k}keUMD)IVVHwF
z!L;-7QMM^cr?O|n`sMVx(kWh72IyLNdJE{y_e!nr=iZ|>JL?&C>$pbn7rBeTeBO#_
zXQz=C_TDP3Az&_}r=|S^#UkZ6OZhmbX58|%R}T8z2dU%|J;Y}Us8;?&+C0oHw4H!E
zSx$-3h@Fa<jFEj3)S<DlDJd2q&L5=jry*`F*8dcqeOqxWLA>{rWkbkKlzRwU)DK9{
z!AoN^2+uJzw|ln}TRa{<-~}Ogt@+bC?9z{QuClgM4o(mzf0%l-ZI5><%H#DXPYU2U
z2F`t~ZQ7@KYQgrt`(EHd>f=oXV>J56ddl*VroH7uGIT*xIpOZu!`G|{?~qR6h@8;j
zlu=T1?VYj>s9v^k$k1YEf$Ip*{zzDorFDV*rrY_4Ix_CE`>67$F$xfYyVng`JvQ=R
zS*p(OjfH+p8VWQl!o3q_4k(s7w_C9pI%{UnYCgwQx#g-q_qfviaZsIs*?}xo-)Z92
zP<3ym;5i$jGv|5orTo*G#{BKW{@3qwA8r<>@mJnpRx;-&Tl+<AN^c(OJFwWh1ueH*
zZDn#|H8SVTn#2|?t#{9v#7<hB0Y1jl3h*yziqAX@H*b=Vsn#s5D)2RQ1!fDrqRz5m
zZfrIzeMo7gsBXk;uIV}<!EAn~T;o0mO1^})0+)8JH+WJjb*_f#jQ#uzd0i)^Q7bX9
zU&@#?N?;W<bi3#3!WTJF=d`}e^=w;D3nQC1Gn@PP(3-Ps?P$pcVQy4&-y8<Fv|!p_
zlr8jG;G2`=w?XDGON!TCUwqx15M%3~`2urvCJFQSqKNQ=8gg|3`qitpFMlm<{f<`r
zYcck3yvi5872^w;HACSKzLl-H@nWPE?N@>qzSSGE0Prcq-1+bcTnRyhZ0o|OR*C^M
zfk~V}zuKC2&%T?UH)jYw1J*R|XZK&)TnaAF8>ZspM1aY<78c6Qx5FUQ!P<=M&dSt3
zv!0GgKXR>=D~~qAk-2_Pte{<5?+9{e$`7|B4GSIoe#0ssN`#a~?#(c^vLs=!99&wn
zY}=IpWzJr9QrEob-ZoY0r%-llJqqAk$%w;3z3{CdyEsh?DmpY@W0{>Oi+*5muSR~8
zx0vgSUOx(b$5rSWE{|D}$ht-B?Tem3wTi|+#(v=^dLc@hz*Huxo7d1lL<&#JlxP7I
zo;Pe`UjFq8*7ifHm`6)j#13!WH-;RSjQx3Rq28e8hSAvNFto*}r%rH2x@A=A+E|dx
zP2UIj+p;<`Wz#MLNgnxhepOp0bgw}eG-mC-<B%V|ou^K-ec}-1F{Ye&ee8q0IumMe
zr^C+m_-N)$v|`HSwrN(ZN1`RleipV#Mzb8TDJI)WF7`{@aSH_DvqWainI^q^s!Z<C
zPpa$kMzX3jVK@kNS5R!Sc~dsYpjrXo3YpVQ#Mi_d36Ptk_1itki?YkY5*LVsdnYmg
zynN0=7?{<S^r#2`FE5s?HZ{<#7fr?URQJQxLuE8WffLapf2lhH2WG}{iD9BkH<Vg3
z3^sGA!LsIHMEJ1hX<?S~?G`WcQ<`&D96?HCjpT>Fpyiiw{nQeWlbSWbP)A?T@(TXt
zFKGGS_*T$f>u`VPTm4=Yey-5|QoQ<~%ASlYG=HmmGSbM{0*JxZhCi#vwQ>{E03^EC
zNt^$b7@~kKVjXf_AXF}?t|Y(&jm)Bx{P05^FW5r+l2xje_%v!-O(WY)db)?l5qf+4
zsNOu*-X(4pe2dJdj&xqe4RMuheY&R(3=tqod`hOro;`0tPSS(#Y)9z0VP8@i!oW4?
zirB1%7&WY#XY4d@s&Jv|4v0{2JbO8Wh5SJL^@T#dkE#kfs4Y2ZH6PAnv*c3dB#%q&
zP_{Av`EIsYw+Yf(@H5_R836&oebLnW^7-uhzyUESa$5e{5SV-L!@d%4sx~7%Me!=s
zQ}5ub-6mC=O5D}CZCd|CUjJkXqMG=kZN;uT)^<=k`mn6ry;Qcs)ZQyQPU=dEE+lR1
zPb^casRtxE@*7N4{D(5ab0PNSJ%Uv*s{J+A6loDGJTdFAU1kiQ-t^FLU)^i&b39k0
z2)vWlI04nD8^CGRpB3}pYt#aO9{YEV`kz-C0kS-Q7;F3_=)^5achf=zmp2#kBBJ7U
zCVV*g$OpGcOJ|1F2kb&xQxMf3M-Cm}@9MIg7ewEXBacbq?Bf&tfPVsWDQ&lm{?&mA
zHuzZ1@HP&;%+TZ3s=T$nr5+MHprF%w$U_kWp)}J-l0`jJq;6KZjjw*`f|-t9UY_63
zdOCk&avYPB{L>miL)+x|>DQ)L-J^<78-g8gXiaGtFF|LH>`kXF5HH=mF5*2*-Z@Pp
z)a=kjRzW2j)B9^!Po}(v9z;TyeBb-VP|_fkK&0S`jJCuAf}V~Hdf?QTEJ?QUVKU>5
zjJ$wXbED4|KNeYbO>207V0H558iNAZ$H%hPXrKVj#>A)!PyPdgp6}sd;_z!luHJC-
z0yMY}gJ8|0xVL0Bb)E*9CjQ72OwkjUT?ReaAFn%d3WWi4s(QmLku+WX{O;v`O$oH7
z$QOua{o;7b*EL?lDY9bC1IHC&LAM5#)xI0l?7KFq_FB~vB1QHm1RoNon6u{HY{^!V
z8*EwFN6RQ2n}uZ#IO)c{Yt=5&d31B^YWw7XsZtthF_!$^ee3R&rok$?mB}z?_=u0p
ziU=(VT)0)P?K7e5iG5M7A)&_204P;s>k{7H0zZ!(J{sxMA;8#a`lXV&1N!T+{XY;1
z6$ON|rP04m?q2|~L2=KHT4+Jf=Nk64E22}gF~-X8$<sa})-F*?)SNPEeCI<<#DBbD
zI^IcOLjeOPA+eFp46LO$nIQv>@?J28=07Kpz<<s6{WW+&o38vS78KGKN%DRj)+3SF
zkcDk##5GLPh`xN2IN={r0{eJ%Qp+F2Lak~!YO~vw(im^fIF{`CYj<oKLR&O|vb*cP
zX3jwEB9-I$rIU3yrtX8wAZCDMV@)&5_~Qr27NwI|z|s`SB?+4L5$V`>Dt)aL%m0xE
zttC~c#1lf__3`L+44+LcW&C`>lB1M-S{G{+uPO7ShdWNpSdU&0vIfN28!DU_(57P1
zA4;|RtRM1=LHGUpQheD$4>s((8Pxm^q=jLFIQ<4GF-GRk1g%$9YTWKPrOUa$ahe3R
zIPF)H&PF6lw|Oz0D5a8q8LB^PI$ON(8ASn56m92qo{$PDp1#=qc<HlJ`;0s#K%aU3
z67Rpy(9fq<|8$1_b@Em)vUdj1gkH$-wF*n-OT0*)AKLLL-A%KBS4uSS1J1Cw7_FB%
zw|YxTm0F{$waBWpHhoUZkme|uUbD&i@kQ=pWiT-GL1)?-pS+!;_S(rd4=~(q+rre9
z*~Efx7_~$2VCBV$o|wrdpv>(N`8wXmrWw?)woD6VoNymH;e5cMt2V7p?khhT$|MyE
z<lXg#psNC2EJyFiM*z?8-2gM|NV*I*Uqgme-@QYKVr4b^$HnUHp>FihdVQez>o(2W
zBgSv6>vOI1uXai~to-RXfqJDaU)^hq+-jOnkbv!&^7=qx;l1rI!q@m<mfTeE!CncU
zfsaB6#(IT#1oTKocTAeoI10BUo;75ebYr=oGjB|(#GNIQw|1@V_`NNs@+MVWOlpo-
zh8;j?y`c=q-GVIskfe;(4FR*G$g7Z}3w1{yh*aHWGRkCi#BctUaQU~Ycrx;H?N)&n
zi1U8X6CH?(vD3t$C<AjOScziOK+eIOoy}JSPe`~DGg2danWRtJ>1Wp8C_h`IR%yrH
zUaffDaKe<Va79T1PEAA*t@|DACxW9k&Yu=#<){XZyln*<Pp*IDK)*Zey*ai1BpR3Z
zDfP1&s!hK*kpv6l<_2`}e3@?Wcf4VGW*9YNw$5|d)OPz<KbjX$UdQHOY>w<31$+rj
z6$I~l5j3<gRU$bD3@|m&zb+`h4>0uK2bhDS{j<`_Pd@4|iY6=+`5SRL&+;n&)ZoDZ
z=pPz9{6k3-HaBtiNWcx}0j@vS$lsgv4>*AI3@^#I#9z^nlnnnZoZ}C^LMv%|4K4$X
z*8jl0!1#lAu{%~o{(n|f`X>#ceZg1#s_<j^|J;y&6EAqc4a4J@B(whT+5nR!g*IkQ
zrmdM_VqjvZtNFKj4vLLYkQbm=Vt?tG-?Nv$0mptvSpHQe?qvjWMNL2egrS1UFUj;_
z;j9#BjZkysP*IR(ttfwV^Ek#^slm5;M0Wt~ZeX=_F9^dQ>zwMxMzKSs1u6=YN5ItT
z6E5syEE3dAnk?yNS!@%M(_YHZ9yZIXv(UQ=d;-bl+_D?aWzC}ymWMTjoiioq*Mb4t
zS=$E93($8A!j@zZX447AX>@%27I{{q??XQHS$%GAs}@8qzw_n=_$(iSjhGH-bMr6l
z{@sERAMoz4v$#GW%=7@JPg2jyMmj7nOdzM}Qwx7yw6|w-*D8VK%xKw}r6uSI!VQ+y
zpG;fB7-X8Ky+4^*9r@_M6opjouCIFD*}lEO(qZTiP};Oq<Va#VDU#xYHH%Y(l72`Q
z=ASAk_WfRRp+tR55J9|eyK5iApn^!qPk61Sm;ef|l&$1DN~d+IFEu|NS>4co#RRK$
zoUKXTn(T90gnf8Ng_e>3O<`N7o|bE!+iBRSIvPAZsxdHPoGe*_3Y^s}x{+1Z*@Z-5
zILZ^9wW@1*xST&J*P0ttdS6dk5^4`@r{C|DiUaMg<@doArI6&@F^|3RJLWG=>mR^(
zIDI}e1{5!~>09GU*N=WZm?YaddhMY0bU=^nAcyiMshrN`z^Ef*m2U1jgxr>Cm`aA(
zb^|O!WSy^X!e#Z~%Zk{$J-1bOR`dsz)jY_R94%_D$5~$-hE)2^DiTh8A%*@bQurW7
zb3tl#J@jKulu_0p#A7RSwfaxH7YXcmQ^chgH!oXxDP@9|=M&%z;J?l%zvF_R!w|63
zaWDgLaIGC*dQ8~N5^xMG3z#V#0h1*F3Swmh(3!R<RgkjjqJ?TbRZ(PPP$nN_5A$av
zCeEYB`{E2c%`1qhVm3Heo)!P0)M!pT5s~DZhw}joR@PJxoBtrl;QQ+)Y6o6xS`>TK
zs`8mDI^E5QZd*NkduaJFx?n>_O;S825GiDtuYm{aC2|&$Ci4E_fr0P2ZZv`F7Yvwp
z4`@4qk>y<Z`WjQ(m%z59PX%`Fh8MztxxttXjmybmCy$&5YCDP~H#a`F@J)XtR>b}!
z<0VGw5RGsdX@kowh;1?yk9C4Nc60cJs-1WhVssHje++;A;2Ro1lGBIG`5pzFayd#5
zmecw&@xWCo8tk@?3p8N1$L2WE+?EA2_5%CN=}oz6KWib~w<aXb#YbG)p^xv9!IAE+
zTnKB)JJMCPB#W|PQnpQC$oa+$@$<1&344V&2_8Hz^FC68Q4y>bksKObCG{k>@RgUW
z_cG+A_~-g6^w6l9VixHNtV4=twWh!@8Z#k-G8gxM)jFS7l-sYMybVuQ#%|EciVBu_
z3bYzMnSOdfMe%p5wg&@xmid3}StdZw{(Cp|9~fZFG@^PAxOzV&O&wo^^XcgSMJ?5O
z#<O|>Jhl=Gr7-%%6m%^!Kkdm<I9V!0B!BadbPxkLvsFpqN&dK5nU_{+;-Zq@C_i)<
zYuqjHEP=jXkcK6>^?ah^kTMyDLEqIq9^dzn-QP!QsNgS_(CRvy!*zQ!7pG->=Y>Y-
zvdC+66+ph9#uxYArMuOJ8wWP79&G@cws1tTVzA=6$jY|>@uWw%f!Vr1D_I$$L1W)W
zom51nVP-Nnef?IjPl%<gvy!G?$ooSDDAf1c$J+2alE`PPwgg%;4BcQdn7OVQiMOCN
z-A4|?TVFAa;kG!pW{g3hW~g|T$_lu3@&b|1(mAh>P9q?*akYn<ESN%zoL_J3NQ=6a
z<ukWQntZB5a&_BRU+}w=&tS_l<07|#54c*w(^EZzA-p6N`>^ZHFfd@3j<iXOce`J-
z+L~VxWq6!<1<C1#L{xR%+iLW~yRRRoN#w*&%(o`<W_w0|A}nCNJ4l$Og|l~dkGhH6
zDe(jWwnc2~*8D8We;scz++=z=0%l)y+M!!*s?m<=Mhi}!dqRI26$;as0~Vp0GUjkk
zT-g#a(I>pQle@iFvbaIGzLS)=oU5NN6S=Q<VDA&_0!J3e_=>NnlD@)Gh2T!YkD+6#
z717i8KU5aXjgv;#Z4Nmw(OZ6iK5ww_{LwCs0K@6)FB`1iYkm}e8BTwz`TgC0Aw%&G
zk($9Nax0}cehIyl!M!4UKE1%Yn8f&H1juLNda(JwL~1Z$&qd0{xVU!%k1ur-93z?|
zUO#%D7IL}3*dQp@!BMPR+w_OZo4lhEG16xl;X{xD(LrJh^lsliDg?-=ttMQu;OUX|
z1{Z!!`mpJ$GbWwMS2$%qdXHl9u{Q5qSRf!#K9NBlYFe`gGoOu=X+01*yhsk;wc(TW
zXegn@IPN<;wDVv^!KC!PC}4#YQC#(Y4)G7F)~O9U^fS>KvtXlm6OeR>2^J0|U^L~N
zSZm!M6{6=uB?TdlPy?8BCvGOp>&=nUo?7;;Vu;coIt(ZWgAc(WPwlAdp6SW&cLAC-
zZ)g-v;QysbGdp1&J61y<kuGY<QUev_`O2R^#*fAcrLNTn@=Joi^&*Xq32#zLU4FAC
z0!8=sbrd}_lBDS71QmI#d|;Skr#Nb)Og)Agc|aCY=+4a2ELpRtINaJtR&TguDU!3Y
zVzFie5*%*vp)nq4?nXB;3lW9xrNb=X<M}D28q6XwEVbgg7kY9;YAYA#27sQN>dS>#
zSGj8tR|12eK2@eRm)A<34|;uW#z`FnbokWT0fn~DT0rASCnZU_A|O{ntnKua+v)il
z%(@tPh2T(Kc4@S@#$8HO8{&+Se!rS(t$Q&%C&f$LWG?a4yV)#GKmMaS`iSc1U@e0q
zz73IY`m${x-uF!_tu5v*GOIkQ)7}2zB;Cu{0AV%g+FUdyPYQ1UJ=yF7JhEBXlhhYk
z!+-IU&pl(Xo=bmSzf66<C&~YiIV8^~AojDqHxkPSU|^vIkL{PEv5|$&N1LGz;2GjT
zWUPPck|szkr<|mw8z45gYENSqG7?%T_2YGQ<GJAUytE(GYRX8jwmlJ-I*UAqLTp2t
zMb!Wb&<f0~0Tz+L4|KlF@<RN+9;wZCt=id#27B!cg{QFFb@%y0ks>Zxbch%yPGN3w
z1Yy+qbz9f0_h+i!G5y>Q?}BCjGg|O^StidY7#b0?DjKSTGr8-J>oXHe_nbbk8p`1&
zYnUwZZt!QO6Twmr%zLzMc**Dn*TlG2!U5Q&df+>Hn1_P_M=@`C7Q5loOU11Yxy=mQ
z%>?%tIUfxV@$cWNyq&=lzI=&)^ycZvJ3w@g{u2McKhuAdum1->8Oi_O^7a2)qBO_5
zI?6ymyM84~{}=6|`>F9;{L6;wzm}+F>R4#+Z^x|#sMNNL0yb0sNx%prH5oHCIr$Ha
z{61ApxC@{uVSww;z2Wb<+&{9j`q`EYg_WP?e~;neg;EFjP=t75T(uBG7)%*WD2i4z
z{U9u=AZh5k0aEvCF7x96^FMUh<m$1T`v!vHljGAqb~LR{hj%>=hnS@$ck;GGLT!V+
zUytT&&nO93#49(+yjifIj-I{G7;s?Uo}#`d6SC`bRZT)72;G#YEhD!a(Y(jPTT|PE
zbvdA+WL3_|YAH4)#i5s<B-#!a$Lcc1CzIm`jkF{pb1ZX8B&{<kvSvvWw+kpa-GJnA
z6*M9_C~is<(Sv(XYNX_0MxD$c3<rl%ryv3!kDRr5q&!P9t){b7)*8Xd!XVgUKeOv;
zv*}is6|xo*zm#F4!iCjYF5{U?T>F|dnjX`~#eaY3c02n`PJlGmGL7tLm>3RAwTM3Q
z2y{J+kcR6fb`x#v__JE;`4Wy|(WqG=enIdI1bb1rj=j8ZkggVW-7LROtE3=x9=A27
zd(|G`yu?uDh=dW!DK^+5lzH6_;5sv7TFOQDUW5~9NRs__S8|z|mVQMIvknFK6q(eD
zxEt6*xsrqzVkw!4>MNnoG!r*#f0}z6$N7)=OACdXtZ{jz4IQBBbL;O9ciC@=P13&!
z`pL>#Rp@%VDj|ru$+uhMs524Vw`-1yUcch`3OQr&Ht=7<LY<kWa9e=2z4VvZc2tGn
z1B|3UUX*~Je%Zn)N%JWwipt1~sS63}2uO+vNh{(q(9#3+#$W2D`R{dP0-g!0Lxrl}
z^Js$G!;L8MfUu2+!z6QQAfr>AUW<POTIh1APlT)QVM$|@8hyB4btrpx0@JH<sLl3+
zGvzI?3Zx102#&zhio@Jg<0(~6EO9X$8>X;%m-_jnr(;3~djv)B5UM{WPo<v2YH`p9
z;Bd>)6kp=4c->Lb)G{54@RGsrBUZ4i9(DQo&@OgTwhI<h2z^k^KZFUpdDa-G7#Rg(
zowRV_y@=IfH{c2@D-^86<Q7m7UTt=?+fX=E$bBMZf!dx^;SyMFlyk!OlaT1i2A38}
zZJUbCbfEXo0h6P()dzoNX*#MOw>gQEc5*mCT9>Z+X1y`BeGaJU#IY_34#g*LKDxnC
zW%B49-nG%h`w%|Y`1|)OEYDe$6f#Ziv(E8zmFj;ESwX;)|6h}IF==H!Nr2wFypWud
zkb)xMyP%l7kbt6&lDrr$BQ32C{YxnU;EVfWWk}qP51_qRCF<o3EV`K|<dGvB&hpOo
z^#^I_&s3(^RgZsuYDLAIB#aU8KaA;a++FsF#~m8d;^IhKci2rr4cPm3Ll|vb-220t
zO-4Sl+LSJ<pm-bqAS4iqnmFaFhV=n4`NGrOrMCA079+M->ycZGxIp$y_3(a3=5DOa
zL%a<w*0+|J(BXuH_bG}G@|qZ_8*)<Jbe#>kxfNlUv_~O>e8V7?ulUvu3_5+<2*j=U
zEHb<EDE$Cv{f1rR47Bl&l3M(MDU@CVjB%1$+W9uV*+*!Gdb86z9Ityc`8|$V<}B8G
z7g_fXVj=020AT&gA^=$b)<NI=^>llUb~)7GXG#lYg17t8ax*ybOoVMl=Ra^OLbQ2>
zkMXgZKssd<>UKullpvI|R9n8JwR4Kp@{Nmn>Ml(2QLvvxHyIE|S66k}B-t%D0I8f=
z1PRqY5-z>M9%cog^|8oZy2L0hNavLa8U<8-fJnKNX|YdYs2i177MP(gI5#J7EY1|K
zmajfEK6pqp5weY6I#+Ka`*cv6HTTg00nR__3A2EBu!1&ecE8?kJ${MBd83~4hGc^m
zuV|Hm!~9yi%-~|I-zU*>q^QUA8ra!WuJaJ{c_@wFsDLa0hEe4&LHu7VWb_O#1+`x)
zgO)CTS)h}qYkDTr5weC`6rbg$v7S9{v2aN^nHacoduC<FI)0a%20{`Sr<8{NOetEc
zWG_8DFhD~kR~2mPI65{!Q#HfH%*;Yd%NS(g{C7!e-B)71et^;c9&r5`AHOpYo-?_B
z$A^NEos$uO)q^W&re^}EO3>*r{`Ktdr|CvUoE(6v0`N1MlA%-L^aYNO&$rm4Rj(~G
zm)nO}QCuY+Ya}u*%U~;bkJrY5%Ar;rPJ&OweNX*#pK-cMGXyPDG;ofVRX#NHiDyUo
zC>dG(TEydi&xOXdiJlA%BkS7V!wQ$-dx-e{p*Gz6dXcwlrnGw?HnedT`MygQt&{v}
z?olGhQTqOeG#Es9Wf~Pn)zW<0;`47ny<C6P>3bBVU}$-@bFRD_=4nlB*?PQyce;X!
zgeQxPc$2Ib-Yq=uY1Qdlr}Wyv(C!roL-I~nycq*fuoD%p5p!Ym5w0#C65~mQ^Db`H
z^5j|G>hdZi8BNXf7p-15V^#9A)7nzP@v~vAzDA+U$$<+9fFX9I>KI)M3V4P%oNz1$
z6h6IWr0Y7gf7W;7Ll$HsJT)iTO(ZTJq3{N9b(csUNB0@>`mR#y^YHv`?Nv$?C#!W1
z`k8rTl?;82j}KwG@+J?|^?k(98xg%DZ^G~Q<T>>QtVX!8%?2B{OFk7I8=vfS7G4=_
zbU*C5HkXc{vU8bT=JAG%7?X(Gg@hH1;E2FS>f3KJt_taKM#jfav9g_wwV1Pf#7ksF
z#C|>n)M@oDu)2*N@L5qG9js;g{(AWp!N0^Pd(|%orvWkW>nY%W5d(DeFNefKe@*6w
zdH)gv^~31^Bir;J_<uyettK4BAB6rsKnRdkvNGjW;m#-z49v~d<^c420Qz_gG*pF*
zOf+n@&q>|Tue?W$7v3Wp1{wy&ANDk&s%7fle+z)$x7}EO34q_W-7kDcrz9zd4OY0|
zv4L_?yT#JQoQ`$EOl<k>S9-~>@Oa}=TJr*_EI}6N<1G0LzO|PdUgC`uu)T`IDQ;e~
z4g+o1bnd+_Q@NQrjOF(H>_mpJks~78BPV|^4|9_np|fj(j{o_nim}(v&=cO_gUC4;
z72Pr8BR7u+GTq=A?}%{@gBwQFw5BSTSA@S)9?E3JW#8RG%4U;~mgl3J_qRfKN>(&7
z7oT<DLIklc0BIp~!MVs;5I*xG@Yr_r#wLH3d>lCb37U`iwV--1-IoCbhY7oHs<7p<
z(%ar?qx|<Vdnm^}nx&&>5Dw{}^D^CTZObBb-TvF09U09J#BB-bln!BURmF#Qw>=ue
z?FUXm(=CL0(mfT&u)2#htuujB?KR<Aj`6~@6_BU++QABw3B<Vv_Y(cUmmsr&+@eS|
z@Y#hFHN5)=gL((vV@RhAE{J7^#-9ZR(w{J1(@Hd95ridbwcrj~mM++*X1W|}yHVXV
z6%b?-ilbV7#G$N5ar<CL*+V-(+NtMIqDXjP!Mi1G=A9r&whP($M!soDC1no6P;`L2
zk5ZB8(y3v!EI{D(sC8@F*tKl1g;TR~VeRA{Jc2t-m3*}6oW|VXp>Vf@Iy7_-A(UMc
z%{q5)7(EwMOzr1dS7Lukv&4*X>M)rV$Qn)ZOnFL);z>N7B)ZLvMNIishhrcnEk;g9
z&f;OQ@b+CX<;214grTlul9Xj9wVZ@_cHg2vNZ~h@J@U$%Vkco$?-JKMM;DYG)x+_~
zVg=_ARwZ&KmGavqEm??b*fVv`Pgw%ebgW|JIZrTHw(TBxlAu*UZ|orLdaHRD8{UQ<
z=9Ugn;gzw}vO?JTGfI|$*!Ay};aSt0V`yH2Y|!qfXhPUImD94CK-lFvrJ*nLz`3xf
zr(p#&NZ450mcsXN2}ck3-Kj2V0^5zrt!zPrURuJG@O(Egwmrt_31VgmYzW><Ne8kk
zl^R;t1pe}M?UB<?WewN*?!wxhhwsE{oZHTc)@F~MflZcYZbvf|(im`igM7`*^+63v
zSDJx0Az?_veN(d=yjmxiGW+%p$?qXUFZ)n#K<!3dt?k#nXj}X6aIlCW-b*kO*JBGT
zfBZ=NHZymAhd$Kf6czM_`}J7th~JGm7lsGu9OzAT1NLomg?ko;CQ!@Myh}vDSf9I*
zJ>9K`p#x^c$&~eJ50ek?@|T^CmUAU*TNqcJQb2Q(^zAI{KT;pVMgTeObH#7RrroVd
z&18}^`7E(0HUZr@#e903@huxwZp0*;y{qv+`CRa;mZDQ(QrVI{kCj*S!#;~-j;b<r
z5snMG5?7+NWNM}Y`}h0ZuRh)FKSe{??ovf=04c%LFZAzqeR@8?obku&xeWYEZvXqS
z)Gxvxv@`&BZ047g@)wc$8E1x1weRYTag{r>tN2X%tO+$@k|!|2QsnZURt(E5yWW7~
z?YhZiR=W-(`*0ZF05xao+<<3Dq(W^AQ>aBzm|05$e_&cOQ-t(0mZv|^GJ%o;w><o8
zWL$+r;TL`0EJp+LWBxLC?+sMjl{&dF&z<(irWR;q`>2$a#!u%QC|~%-YfVTT`^5(q
zoqNNtJ&Yf2mIee4hBZgRj_0XfvyPOnz<@gmr4Fl)jsTtMz1`9e2*2JeIjaj{&d$=*
zcvWorn1z%Y+>z00dPjg_Jd}iQ`Z?#4f|)#M=M=e$lV}9}InnxtnO%DdcwYazsSW1u
zPZW@Y)7V&By6L=>&m;c2veZaY<o{?%7bl`9#66uJy!erW^qf=qYi9LqAOIGa;hN!T
zBn=_~0|EgF2}lJ8AOc8%|M6J42of&DaHjyj20blB9nCMHXLqMCZzs^G-~;N?_n_~$
z9YLB3^b!d1_VQK&C5=DTVXTe~$HM_PoC~=AOtXGpH~)b~0OQMYL-AJ;XGe+ucG>JD
z%Ohpr;;QWj2>KDy0c7x=*Ua8u*G$xxHB$pa10yZ<kF#ZZ+8%FDKvSas*X9rc-u-3F
z|J{}D#W(9$S30o&x;5a0*@n;xJE?JMamfks=9q7g!~;@5h@q^UMuw%Js3QN}8J@E5
z=_~>F_MG?r*%`kR$2oq#``;t>r)i0$nfnWYTZjH{mSgKCy1MIdwo;Tgl69XPCmewN
zJBkEB%UUMW(_I}}tCo?tZ>C!S_SEUaMb8%1El*D%lt8kICIU(tx+)pTX1*nhSVfBn
z&E^VON1lP^xtyTZ73Km!M}yT<QSTEl3p*1qH*DRSaH=lIlkEwP1{LuA-zTKGb|hdL
zs90}drY9+aDQN4%C|LU|vC*!h1KRo)Ov12!B>uVWfF$nEw*O8@We5Dmzw`ZnLw<|^
zR<{8EJvvqz0X<7gTt^$+Ki?6uHng<?98~@^smYLElHR0+^OA1IKbXQl#wW?kf760b
zZuEKjq*O?>1veflEXd+*Ujk^&Q=0(?S^j-pEP~F?)-W5xWsO@(sFZ_U^2TMvn9O$r
zVnI{IWbQP1vqy-pf;)*DlUFj6!)Ht^QCf*mYwn$guo(dbxl`I_9~qI<xrWlc4?teu
zVV!twc78;~!lhS`=QsXvP?(=D(PD0jfT+oGWvV-ejK-|O78>S@jJrqqP-kh)k>9>M
zRURsDF`l~nUKyEo#1NEaIRO#~Bf*S3S)W)$hc1fHAWLPRLidw9XcaAyRDZiKdeV3>
z0VcH{YX13n^IPg3Rq*_bu}l8y^vyBIDX@<dpD*35Wu=c*t3laBU80KWl8562qlrQ{
z=CwfS*sNIwI&8oIZlXtNmrV#I3)QY+v8b6EwE`69nMN@jrF#t=2hl06ql@5A-dt&F
zF6)rqpDXr8vkWOdK0uBJl7DX=Y_**X|54EZ*a3^ou?jIBXx=;KF*znx4#G@bPuDIL
zE{~UKk2v3)07#x1lSBi4FiYL3b3bsZDVG?c(M<<>q6qE~L<a2W*)fO#vbu>RD<C!W
zAksb2{EDqg-?C>k8Z*h*37?dz;$|RoX9yb3g+P2BUlhYaidA0E0!B{J|LYc*j_n0B
z_A90YV6#M2?3?qWWO@tX|0?~bqoFITVy#9aJbtTKXb3&E{_7L~@jL}cjf_xI4gWC*
zWI5BHJd4pkLw){?ga1^@wY9e~H!^Sp%w2#3dPg%Oho1-Y%CbsQl8W|5Mlvt*77o>w
z<^3aaq!Lu*qr+p>O7znVvht!M5~DH$!xHsM5YTp0wX#+9n^oYDVAt2+Wa3iSG^DSK
zDC?>x`rv*V6S^9hY;gl_NAj0j`W@%-%oYD-QvJIy5@3U3W~HoW>13qy({N=(*-U1M
z7w*B*8$|s)TU2SAqRpRR+dnus&>xaqDJb0)2$Eag16x$?(Zj`y&{?$*&%9VYT>muM
zWT(}QV{?M=q$A#KS0G+9tGDd+Vp&uR#ZnX=ZNC@Nar=>7z4kh9{UNSpjHao&Q<I?x
zTCfTj_caz`ppghRuVjHX!<QRAQ~$Rf!MdVz(cK+~-$y|lts>v>G>J_0d)D{aiI}v;
zyX9@;6y)I5l<2l-eqw^YGbu(h@T{m?XZ+UCO=!&#$Q+D)QT_g{6s~C8$2s#<;(aFQ
zX$M}$JI3!3>Z4EduN)E4Od7HC{Wib&#aL~1k8}FZiF+iLb68G)e%*Q3V;rDCIeAs0
ztMbO!sQw-7EDE;~aLsA#VP1oIm%~ICOGo4^^BZBrO}Hq1C<Q|_cZDPb=BzH1i;PSj
z@ZqGlEbgkU+8j);Xeon@4gxS^MfS#{mO@=`P9?`h;HB3c(t*HTtiwO#rYB|GsEu;$
zbENo0PuIyfiWK=1gR#3AA*ZMyDUEK}N^TorTAGoz6h-9J)KDB4oaL{L%^janfBP6i
z;J|fXy(Zgjyi0$l6TD5kFx(N8-+|nrl&Qj~1_V+Kv85qU-ZOgeW}sFz!OX*mFHxqf
z`^pZJ5Sf-)A8vX$9NITU;{&@fg)?MjC1U9jFMGMT=NBdhDdi6lz4u=3A8gtlNy$f<
zJ6sn^J{M_c>}OmSdM1ms_7(OSJvEx{f9WB=UP}8SToK-JSVVXVHhU}sp^F^iE0qJK
zKL_%~7NR@Pr-0Xll%HS=pOZxi&kma(E2ORW3!QqJdsMrEmC&>+k;--&_`1*pIUMZ}
zIGQw>^?g>HEPJ{QA>X8u60$R)-gs05A?Ge3VX6$w!BcOS`9<7T`Sm6L#lfcex6GyN
zW4?>K1lSPywYO_+yDMlauo0!8{4=bdN|dGIgv{7PDTH4)j}&S>+E!y2YAZ8&i!ec%
zj0y2;fOd55Z`;yhadn(qkd;8R=T+!xnG|o2y?dpGpd{wWu=PX3*?~Pm=Xv!LUM05%
z0nA-pkbjN(-yvl5zlWHBlY^s;)ysMZK<Ahl{8VgFZ~~w<j0|<?eg;{-tj4o^q&EPs
zF%a(`S*KCyY@t`85R%qV#(pN`&Q>M5G)=e?RQY7BPvy8Cpo>eh>$!GEZF#2Kasta|
zL#cyCiz;JIZJHfpQRyfDo)IPR!}lU-1z)J<*Li_M0|X<yJm!0)p^dM;@$0e-adPss
z--Lx=6oohTP?`#_f{R8jyt~T49HO@xV#e^5&mHc5cmCm(g)t&%r7!PeDAM>O;Q;;j
zIS7OaWU?YG{{D8U3+T@cF4=gD>cb~6%XgKPC6x6wR@LTSRP{I3HQ>#{9&N$YA>`4+
ziN%Z~`3Cklq0OpPmCdGhMZkgb>fy-=9WAklB^>e_1MkRvhimU!aU9v5Y75cf?cxGZ
z2PUX;dwKZFx<3-INIg(I*!1k?9U-_#aTL-#_e0(AwhSp?9ijdOnEd-x_qTrd`&0+u
zC)nCpI~Xat*#aiJmo=p|Zpqr87cRIwsnC?U)inMK82$!1arkVqyD0R`D!OA|6IEeX
zk=$mp3%m?tfs_XxI7>A{_1cqPvn?s3%C)2t=hzT>r&s8kwTKRN5Z|!<c{#`GSlJ#t
z;H(IJ!(}nB#KM$o`<!>gDp|<jD@lZm_FfRu0rb`}*t8{D1JQ+Vp*~QVuN!|KWT8}l
zQ_sH3z{7af+^P#l%)|hkCZN@V;?UV)Pfdb)>Bdxynt;!(jY1>+k-7WITG-YzRBU$~
zRfNxU!(-VPCr}tYI29e+fVEYe%o+}AXeiILS;}ACyF1s*)^aqk3?1^DHhbyLK@F{J
zsAlz#_)ngR(~}lF*6qkGt>O+}uu``$Uh$l&B3gbsfR-#u53%IjeZK{<TqjG_RYeBm
zj#Oa6q%`Y%g({W%PLqO7Z6zji>7=b@$)tDs1|=NFTHpMdNvIUT@;Vb^rC7JP*YYH5
zevp8xZx+mYMr4kFW>5X=*w(<iOU%)4kk5T8zA&%i2<X$(Uvh(l&^LU5aQfr*U+J?l
zz0?Y|-pj~z@xt|vP08qe%R`-<gpgN7q_nNPeLF5lZJa+<;gmFE<YXb*-rNk|!#Y41
z?`EUzoicM>nmMhLJ3Bt}a6#Sb)_=*UfSH?^3}z(b{JLcz-D*S;xn)aL7NJ*cSt6%m
zC2EW#?-aTlwpuwgF5Jt0nx|QkfPvM%bsgcx#E!%~MDM0cL%cLkLWu7zl|maeELOFp
z_x_g2eyvEfvxE$guU2`T!8zp6VS;OH-c-O?_nQ(du1(BoM*tdR%eB&&8>ItJUHma$
zO$JyBu_FaDaxp+j<zg%#Gmc=sVLiANEHA=)-17xq=8lx<atL^CqJU@mXNL0omhu1S
ziu|`-$_p{@r|@{p^NfWSTpq83*E)$=88Skx6}W&*<`_<o+!9;z5MCJ~nu<O<@nqdK
zzrzdU_nz}KX;&&)`qGx6Jw4@mp27Yp-DnF&{e8&}mx5-EiALlq<}BHJ8Z1Y3SrWFW
z(sZ!ga$<&Iex#NyU9`EI7K%Ao;cOmo=MKwK?!dfJlKY+ikGQuC$}?Nqg$V(I2X_xH
z!QCOaySuwffI#p-aCd^cyF+ky*Wd(qhx3HY%pNjx_B-!<r|P4MDkz>Gto!b@R(D_0
zcur1bAlcfM7ZJ>*q3?@PL%c@_vXFw~AsLgiql;mexfUgRj6W2G;$U79m*=BYXJd1A
zgIg5H%_gy2jN*UhG=d_C`m9K688}YX7_xQ{mW#Wm>=RV+(7=WP7W8(2H{elxdF&+C
z1Q%B#(u<-x-}CJoj=QHi2<HQ-*%jdFhCO?_zv3Q0qV@MW=x=ckfVGm9?QazzVEQ-!
z8L|7N2(kn?;2{csv^B$&Z3O1kp#YywN0y3Cl*AmLfURy|z<a>fLST|tHK}^v<7{cP
zIUr8Ad^VQL!OkMHd`}dR99cDhMq;ImAjp1sR1Sup%<=;N2$=0~e=5mF*}6KLzH;2M
zYN2UpYWdJ{zG%@iaNXQNY`c~c=)GtvQjj!R*qV^PYsw*P{fA*;Ayy(Yzhcm!S$;n#
z7Ep4}jIyEWk6oWazUB!(+H;AoCT{6?_ZgqHrzcI5!6YG^YY;K@yoQZd_w0a3<mDRB
z$x0uQp{pkq2zF4qD!Z}-*S)-5*{oLu(+?L}ufw>D9?<vm>QOo*lZ<_2qQ&pW8aZE^
zjLwFtPPNN+84Kt}Dgk0O0@*VE1}*;Grq8x3xB++`0Zh$v-k5i3;$xF4{f2!*{S{%S
z@6yd$k9d2`!WSNZFJ7!);s-T%P3GLQ1h*>%<7{S==;e1|dHD>*_UTHzHV^$D_ii<3
zUT1tk6;yjjMX5xWt|FgZKKSCM%5=CQXk{3I2niz_NSYrY9Fj*$^C}@mt7|%N(DPPH
zZm85bEQzWuDbe(54e`eTM(^?6t{4ywCeIGAUy}p+KZV5a1@K=T-2Nnn`#BptIpWEk
z^amj3Nshy0A}=XyLh77OUJ$5gNd;~~9W5e>SWt}3nynUhvB+8$xzsTZ0K}@L9=4p`
zj+-l^$h==fUpbAVzTM|Fze)fo;u>12LLaIdFI|&AX1iODo}h^G=T9bzZ^y=Lg<Amt
zu`lx$@3lth6=nI%QzpCtk~k6$@*NXl>wA9JEu-4v)>5_Tk5~BGpxgG>c3e1?WgY3b
zf-P4U+72EZi?2|ZWrT_Vm~boJFaQ(QbN)u0hz`Jn<J)1%l|Lq#K-1gni-vmY=pu&Y
z_2v?>TgO>LoL6aS7`2WMj93~BqpE*OLlB)8RnJNw!tzLomjybfHfJn`UPV%5d@JM4
z&@Ehb96<3ORb12DlPWF`QmqMs+P1CF8%fCdG?7FYGwr-@bwjcMV?(fZlt{9ybjE2o
zQY0F))-MQ&snd{T7Si}Ofj({Q;%!YkG2`lzuF#9lWT&=e+6`hO)R2jt0lgTd@e4P-
z?lxb0xzz<R3_*$g1n5P}`3Pch;7TQ{sm7HOG$Z*#8#rDuV$H%1krn?Y8a7U-4DZ`A
z#6^c(UO-U{`^Hx8M5TbaRI>Ll?2%lxD=>c46vELhd}aBGo$ofLKQ#%6n!5iQHJpEn
zn*W8S^69L8>X9YO{yu>ykW@-sSHT^*9O(^MAtu7Uwnb-UY#(7w7eU#Z`K-b0`$Kki
z2*_w+iFN!fc8?!Jh??(??`4C(?~V%H9Vj`hy1yi<rUTvD4e_==$dzTsr{5Cg15>A0
zC1sBHl(m03bogy0C#*DFx1ZjY0SmfOZ)*iNsJp$b0fHcl^bk#J3K<Uf-hl{hI<VHp
zelOJ}vWL5Ds*|1Srl-g&OL@K0i^BW`p-O^%yOH<0Ik(oiK4o_AD}{@f*YDfu_GMi-
z7>{4R-cRv?Pe5Qu4uB4n0*(4aU{sMfTouS(OfEdJ%M%x*DRn$6-|uN*E8#Y5eW;vm
zhv54n1=r-}%;Tk8{o9WNN;NftZyD~zK`-<Xs9C5yYo}}B%WO!P&Iyox!!GKH*lA)g
zdoe3@TdZ5%w`Og#HRRlq$3*Gdl$aecBzifI`AdA)7P=PeMp1oicAZu;V)^1{_18G)
zJ8{a!%Fp9fKyy01iQeO0jhZ0&lgPMPKW5?YznoL7x|(K>`~1O!{?d?s*UM%*fG;f*
zF`Z~5KOMnYwFShfC?WhZn`}#-suD>`I~9}Z?&mO<$`i1i8bE|N{?`ck(fj@Vs`<a2
zD^HQ&5Tj-{$Aa`RwYQ|_sFJ-R@*4uM$?iZsaTo&+X|_l;bx`T+YNqmaVY-gl*+<P@
zCcGSYYQZfxHa2FBvB6*xu<N4%g_cA8`@9`PIzy}$`~Y;$b7k<HH(wnGrE27Xg*;JS
z(+0ALN<OliWP;1>(2C-R1ySn_m6N7?VT8*$zs@W}pcU0A%*?Yk<R(TWg6f~uk~zX6
z1BFTEmc$5_EV-QC>0XZPN;Oq2)ygb&AEuR7VNszZ)U8hRf+Gdix`q(nBxC6prB^Z|
z8-ykjO+;i7NB;_D@J`XiC{sgF-{1Bd#Xc}o9}-M!R$6KiMK>y*a+i06V7&et$`9Dt
zN5^VpoL8#FQ(S_aTcw?)m;?ce@^uwbfsS4NvEn66{Sl1TGR`euTe3cQ*~awV%71<r
z-q13tN)sUxw*mtv-X<mU(S)IckHBCAy^;&Hm*eBDeA8OJ>svtvLTP<fjxL^l#%Q6e
zgo$aJi}8qrS?{=)1Y$`%1_DOHO7_U`)q?sV;KC3FJOU#MHxt%F@^{@40$Bc`EKz0S
zQ|%1LQ6>-o;p#s7pkvK=b0gN-JgT>4i^|5NLUwhocq~&Wc*u4{aCDjO9j{4L_H5B%
z@E4Wn+ZzR7m}N`}1r491ayTm*pSj4>1MLwDt;(DIuaRi}_<Lr~5_mHAu9!HEzOef*
zpc;u4pmutq&I#VWDO@sWn(zFOf5RWy90=JP6ni?JxzH<ls+IY5bq-Y5McJ;jx<y{6
z#Xv;0x?<=w<{J>S7C)t|m+hhj21>DVsRME54TXB3@Y~W_nEd1bvKZy8JDB_#p`cg;
z3d|&WVj*=aUuvfU)h=cw(ZkNTD3XrYvwNNMtKli6u!8hO_pJj>4Rdfh%$hl_MD^~j
z<k#*P>U0%0OZOAZwavl1hQvY|m|J|o4b?W|3Wl~;Od-kl3@j+hb?D4>$-%DJmoRUu
zy70est#>h5I&N-&q0ZI{sIR41B%w(`A9U7CU1A)B06$E2In*zUhs?2fh`>lHPj5IJ
z^mf4?uWgWq$zfjls1X|#9U8OI)S;Sbadv{ma?aF#exPTAte(2zny9O*YECTctukM5
z8Ktk)*v)S=LOB0~KN(Pv3RKMXc;3p&Yz0nfr`1HNoo)R(x@J_MWP1ODGYif^24<@a
zWj~ZiD5u~=Ucu|a3xgc%vwNq<%<D(gAL)YUwb`l<U`xA0{5e1W6-D?T^K)K1J1aet
zpAZ7Wa|pp=Ov3Uj4V<6O;cP3i3(z}v$lfvhuxjwU5nx?kVcoFk2^kQyx&D`*-Fqp!
zc7@(F(WCG+g5$erWUXCNUIpKtT%&}bVB3-PC$C-XOD%=x$VKnmt0--{ALfrB><(#j
zcEPrn<X33|@6t2Hj#gJ?(C$&_jSmLTS<T?<ecqkhq*s2qYinWKOlJb)s#vP7CR?CR
zR65P9TufC?R0Rqc+?A}XYbB;!Y~hmR-vL(orb`hwwF5SR6C|jr({m1iN#ER}%f>AE
zY}w_d<-s?;!q3U?VfF4?KFvYLG^jOBndrri`5PQu+#RkyjZk1m5dX3VI0mntbp?K{
zczy`o{xhji(8|_A$KH<GNXO8^k>>rox4eKa8D0U4u(l`nfkO^~bvqr2Q4oF$C++V6
zFA<J_rZB4f7>Xl|rBiTn>dMGp2|cVGIz8N6(W^Mna=|r#ooPVy)zV+C`+;#SHOvdK
zR5PEeF)UfD8;+Ny()d-ox4|*bVXG7jna}QmrQAny$qQuRLVl>F&cDYgS1eLh$*gdE
z70QWD($R^b0wRC5{WVB)N(CdVDMCVa&Lvj7BT!?Y_L0Fql7kao6^94(M#B3mbi8IU
zbbO3f82x+@#iJE}JDQzv5#j2!n4pbjCr<kno38K~(ke;hx{7ClFkLwz5yfhf&_=|7
z+^nRn)8g$@z39r7uXzA?HYLw0nqSjbCcr12wU2*AwSK{&e^`3c{{}?M0IEd*rK=>B
z?<A8tqb%8RpCHQ6Ynw+Xd%OSBMHj(7-MDdb#`2;M>sBid-nzTf<?ZKALbn_BQ_X`R
zpG(=3PcR}-O_hR5vC)>HOfLpZXO$T)A?FJs;B96Y-lzZ-+;q|EY2?@Ob&rsSM7-e4
z_<)gY<$1UGwo+$Z!JU+0zUAwe%AQ5!{I2C{cfR(ki8po`X3WSGOwgdI2h%84sPW9F
zjMP)5Ye3qk4l7K3a;u*Su@6~NU#)b4Mwtfq!5}{HC^dwzyY6-avvgiOW{x<#NUHUp
z<klr_eh`aqn#q+{<WlN+hho3{V}tix*EQ?|9@q1s=f6S(q<~NSac}>yz%a3Y{~u}`
zEfe)mBc3P5U$UGGK+*;0Zs`FEpof-`ORgcva(HgD(Y?@3N5%lu0OG6RGvWKyARQjd
zog$*S9sMV8TSHElA1)VtyKbzm)dvNQj_y+KAd}5@e70oKh)&<Xt$9__-j*RxsbEWm
zaALrMR_p)D)#~-yx0PKaf@n(1T4i~nH{g2;WOXzNENBh>;Gjzr?#_|g-&?D~?^mh}
zq24EsMkLeg#1TMQcLmD4nG712AN|_JW>oeK(=vZbMM-tChbcA*q=NlyDY6bCRDsRa
z>56)J*GIo7_nRzF$s8#pL#zxT4pE(^rY4j5<`1%WARfcT%38ekv~PvBpJuPm2Dhyu
z4;E`(pt~a5_KGMq651uW#aq4`ne$xYDB2W5zc1RrT`?rYZ+d_^My~R5xK0`c?Jjd!
zKit`X&B?Rw)+?9!O=1z7j!S`3@$iMcjm@L4%F8Jm$SR-S=edMc!wh5|O=xLtl{QkT
zO)!RO4m43Is1GV6h9MO8U1Y*KJB70h&K|Teazwad|B|^B)HP#0hzn#gI@gF3@Z~zW
z=y;I-Asjb|#J$wXV-#usRi%9Jow*Ky$m7BxR)%W>4J&HlG!lboeYUoT&)Ym*f?~%Z
zi}}Hxd+KQVe5-FHZn}>9ACKmr1o7Q{rTI&M4OsYJb3MU7$IP=9!k=Bh1)TMabu5hx
zep-VYTG`_9{*(#+^v?K6IF_^c5m65d4}qkqaUIgSV>L)`@_}Clr%S-B>TP5T=`mLQ
ztO_oZlR@~hL=dmTPMbKLhOa4cC)Ho~?^Zy#b8m26Sizcfbzn5+se4`$L^F%Xjm(Ly
zgZbbN9}SG$H_Y>r6h<!uAaeqSl(ywLosl$Y)|?syg^OBxScgY}j=-G@-~+<z#wSQp
z1S!b1sX3C1E!f=ufPv69r3^S551KS##tmva=q%m2F0omzC-(TV-KPe+p&xRiTEygA
z6ayA0>1zh8AZg3CQuLD{E87`ew5GU44~peBNQB)`zf)y*thBNXx|Q955t`B!*Je8O
z;2xl1u^7t-EB(1B){*WU|5yE}`R<lP7y5`LAoIZIC9M4$bGQu?1@fD+tWGeFgjh^o
zN}~ynUm^U1H~VHCEsh2HAltK?>z&4PMR7=XUO706K$r|6b0b8kTJ;E7`6^zJQ*1<=
zHFt=L6xq3=dTk8Du2Vo{@G@{53bns^)Bv4>%~fMO(fVBKyjY3qIg_ZeuFmrr2_Xvx
zJ|k`fR1R<KWU#hmHVHH}!M5vcfz*x7a=G*yx5v{($1hh|S`LU3yJu1I>qYkuq&~k1
z0qp)v2N9?Kw=gPzMaf7l0HA;jJg0y_{h)wg#G}P4$6@}#n;g2wDYFK|u@~U`KkZ4U
zUnC9xs@==<MBuRq{c+zQ`KDUA`>u;<W#)Aj?Gpq|dXDw_u-Z@~OtS}74h|Gg(cUae
zBpHZ9gYX@&Zn^v4IAmDW%wCTq-*(E`UWRS;_DtwYu)dYBE7v<x&x1)zHZ!+`?A@8E
zSRwOvh-M$`Kyt|%HR%vQ(tw2b;hp$=>GkbZ69&a~;?0EdrN^7kfi!kb*%W)`yjYiC
zkGiYNvu*Q~``Vb)QFco#i=10TIpb5`mj-hf05x!%lYevXi4@5>{QwkG{AG+$m37-F
zbQMla4i{<#F7YvuZ=R0D?loPD_L|=09gw4ju`D%FpGx1H)sM@j`p~NQJK#}1=REz|
zkNi8Ma64I*cZLSPXFjF|e=!PIv#?8KfqQUo@oLl3!xY)<3{DQ&WiT;Jx=6^3y=b=2
z4YxQiJqCKeThbB@qTD4pR>`vv!?O|&*P!ckjt5b2dE$6rHq8*ET)MrRYp{)>5%e;Y
zD*MBId#B9!s20xMBztCA|K0W%C!BVJ%~VQa&&^R|ta1ZN%lpz#DtmHL({a<&)Q=B$
z?hEzo<}fRV_bd}tzU(=sc~_PYJHp)CRmkyQR#Ml-TQeSbhoQRWg35O&{Q_0eO{asF
z8fORU^))$mce8b}S#fXc!&jvsnq|bW&(h-?GLPQL?ZJ3oFK9S->sVJ!beVkB7@A?h
zC<BjTgf2@1)0~G}4;K_N2PvH`)uw+j3qvw%J`*HZ;|bmDr1SD41~>(Kthew>hp6O!
ze#4h4eU>NK<@;c^QP>gHDT;RlpEO!Z)R;KdqPXF?1B~EPzA**NpyCGM`YT1vbJsNv
z63&gzYCGGU9PDe`-`uS3={qk?GnaF<u(PS=p}K#_@MxL35M6wo>#pXt$>{0N{>FNz
zi#{0FuMIc>+Giv0rG@seCHgJDXFb(CAGSCgT|LV8^r4jf9!eh=U3{-(PM>Qk6fBlG
z+__BO0KK`8#i~zwvn*sbp^f5cJlO9`W{HT)J^`3bO%m_p`SPqX1n=tYLM!)PJT7ig
zIkyGu>;=w4W?5X(nuUC*MlyWq%2-!R4A=Sq9`6YICYO!y9Xj%7I&}}M`p?D)K6YUs
zsFK0!T5Sui>fclW7P%|jxrRtr1LI&u-6c0{OoN^_hFF*-SJ<nN+&M&@DiLpw%BHaz
z#I$KOPG`NCTEK$rs)`3y#M`rnSCXug8q4CPu_Ml9vW_zuR1*{R&7@}+@QGK457Bm|
z!ww#Vqom77WgBwYP!0B-2-Q%m2&&EtDw}DpdsZFsB`xla%9{12rb=dR2v)))Rd6S#
zsQYg&9q_bJ7vE5+uSj0TLx|j_zoA8u$A_;Z5X(hFood3bP3)`=*u#?4RYOq~yPFDc
z?i9l|*XIgDQ>n$vzZUqgQa4(-<Co?-J<Ym{paUD;kW>dRG2jteU@alqKwzy_`+3B!
z6xxa2U#FH5fsSj^M-GeL0nW;x+86@6&4pZ$I9xT@?dwBwd>-s2A1K#yl4fT@UiT`L
z3#J(@){Tobd#xAKBi~vMp8m2rmsxT0_)&u2>l&=l7p$EeZdSMTao@lmgy@`8kA~!2
zIaxmyDo6=+UTtA8d7SC2y!v)oX_0jVqAZhGYq#0%jYBv6I(x)^mN|jbF%i{M&U6DI
zVX_^&8<{ebTeiunI=uK;zpv9Q%50q!b)RkP09Iggdo@U~O@SqQt|1W=#*@j9%NxyY
zW<D;`H~Gk?@;(#}bf|u@hrw2P2xN`%-ChEbe2nreHNSxMyGhGD2;CfT-T4}BJw{RG
zU{J{SxB)<s5uHX{$ZrUi`2=Aj5tf8IU%zx`SjWLE514&3ud35M%S1!(j_xELcjysH
zuV2T#sM>(tc#c=y!HP+^CgzSq;wxL4@vb;9JmX!NSMpZyYHDICr4_k~&0sEtd!6(Q
zNxRml#AFK@Gxo=#xfhJ{hi~Vn<zm>}(_p&vFa+j6JLXoub$QjVematp;szIS6@I9O
za7qsL`4S={Yfk0){ko5FPJ=!xfz-=6byVtn;@x0$LuWK;avJio)5<{C>dWCbnY}`-
zIf^fm$lMW(dZ`iP)=ROB`sv84P3zTj#5w~Z-}+FdcJg{4NmY+`Qta!GezrYl=@t3x
zY>xnAG_X}eHe;lP$B$JK3m5mr7~tj#Uy%IHqE#3!_u4?DE?U4sbMp)87@0IrW~VJL
z?C3Zp%xb_AWPhK6%=-4WHQ)H8tX3T~bLK%zYsNUM5qh0-V2PFO{ji``jVgp79%Cnq
z#!JvR(%KAdIbBU7GPaVJ25izfE>u0_Vp8X-fs><T0z!%Y*h%_Hn`_8f$1ZC_+)cxZ
zml{i)teTx9dt-VcZagK*V(-f;Ei3ZRqL8aPP2aOv1_v2YF<NrtaIso;23aYZ<xrx2
z!o62061*!c#o{zmED)7yGu(~JBF1fiSmBHx)C4~)1!>%^P$gcJoHl%Xaw`c&Nq{2*
z0|FWVG_3z~tH1Go4&wf0is64@1k%z!buF_(d4GVnzQg?`#sKh^-vpvmIsyz%Bv+*D
zc%`$@J_>(+F-wCi`e=DSJKfqbvX_|tuqmE8iDa@rEn&&`TulH<kVGB4o0Q~^0W*3H
zm4!au)OSo8r5NU5RQ^I~jJ5jHP)s9Dxacu9K1}ZJ^-`<Td~(Y4{&*TP1MiE)6HdOR
zGh$Zjm*e#a17FI{Uuh0sE>v3)1-N__hf?-jaa1bf)c|3p;u9Rz)kMBejnrGzDW7*Z
zkH=r)rg4C&!m8=9NWM<UL+YUCn<d1)PD={Vdc#F$>K`RwluSgZUzGWc6#unggWK*S
zE0Y^XrB^}$^!5Q8RXN(aef<Kb*ys`S3trip1H0(^mvkw6ZzZokf}NZ_&49^&C)<bu
zNCror)$RW#8Dx1foGSP;@tIQU-zI~Mt?0S5tW~uvcx8nA5TvnS^g!Zhv)>Z{dgw&e
zIOTS6+dsr)ZPFIT1!m^j`sSwErh^JlPXKFdVQq*vAfd^6mLLAQtiL63TmE3xJQd8(
zN!(ZzS&b7DNdLc)xK+mF8~<k#_diJ60g8#Yju!f2e|}TuumAL>{yzx-A%PPj;$l-G
z^YvjyzbB<eYUu-Bj=80_wlU=N!5_>>-QQo7UeUh6k0d_gfBB+lX{d!wjDDLe^qKlk
zL+j)L6-em788lJB$g2ES$LhqFjz;tUfp2g3&-nHUiC+JRZ%<81m-B<#`QM}OAG|8s
zpQE>)S6H}zdR6}`qH6CnGi3$K&k^%u&x<VBry@%w;g15#Y<6VJ3a|vv|N373!4l|b
zp6D~rxwiKIb_stN(f#h<_WO*%!RPD2e9{fXC!nkSp&B?M{<`v4solS8sL}m4X0RW?
zG)K~?(ekX<B?Q|T9T5){!V|@p<;9b2E2aw&DP(h8uMMS1@JKad-|-QxK&RH#y5$<;
z+}gahI9A?IoV{i&+!A~j+TTe~53erLwkf_R=??P>moGv+5N3E}$C}1^NHU~Z6At>-
za`p<D!1cTLWAY$%+9l+?b@`*D(8=^xtKu5Un>1cZL^sWe352Tv)@B{PI(z^^tvFGe
zXb*a4T}Re2wnk2%C1BK%Sh7hLRHCvy`jF;g3sqhY>F4Pt9H%xZ>@W*LMR{xEDn*2s
zeFj*kuRR%FpbR$l&$f@_4cloiXN*j{iXgeeq3hHHMXmU~#a(U4hHWs7Mm@&c{x-WL
zbgeX0*Chv+fC^a`B3YjiPabw?rnqENe_(Uyl47tBKl1_0P2r0o%o`0v3SF5&UMWQP
zP8$elU_0^kj68@YQBcG&jv8AW3u0!%nkB}2kfwzpx(x<n4Y%l3(a8EB7?SFBoclQS
z$^#x;W2@n6u@ZVUuq6I?@lapJ>dNdxX%Z8Q{PUH#rUayAPA3j@|A$T%4wsf1)>~LA
zX`%;4D);MIB@){4ucRbRF<%B>N~7UuDk&qRF!}duP;AwmYGI+)x_jbUOAHLWSXuUX
zx<3{S)p4f*S7Pq79?7q|OjN+;c-GF=Vxgh_IfnW);G{xatmvoiqSXx$?-W1f77-Ij
zQn9)}&ZEDK8T=w`7$|1wVklBpRE+O~DIJv%qoPxg39=qTh?12PbLD04E02;nNA8P~
z!$yLVL(Uro7MtA`%{TBj%IaCvcdb7(GC$N7|4F5Oy#W8g{-ymXseXP0q5j+b3uy8%
zSJeJ?2L0V!Pz=D9O+btPW7o!rVr<w0*5LPS9lyQ^O2A)#Z-f6Lkfou1#?oYXa;Hg_
zYm)^uE;-q?+ScU_A@veL#-yEu`8@{+dDf&uf^?~?i38WeqtM28TAYYxiAAi=+cZTA
z7HbYUmn~HwYbMWkz*AEVnD&Nvk-aFC<w5QJ^#r5XZWfQ_-}d<f6OPJT+o6EQVjte~
zX5(ep;jSs+<45YYk8jI$pWY1%y*eyiK6LJmEuIoK6N$xyu_%hl_X;=7+|;d;N${3^
zBdMH~n?UF#^!aA<O}IV`#yY1vaU&@5co1S!xHdf^#5<_>5+Z&()gsfda)<U3AuCu2
zO>m)JwiYD{GS)hN?>~EKE`!Vj3;>L&UIC1$rlx!I)rq_l%C9e}+t0cDubCUWR^1v?
z%C^Du%0S6XAT!c|I))IPv)MvzfZ;GatHz7gY-Ko14NyVDXDs*dAm6_NiBAC@w#PZY
z^FYjw;{SjZw}xdLvumuqS{_Fg-Fb2%ijE0IoQb>xnI}vZ6X4Jp1g)4$5lk9gl!}Mn
zyll>%w?IHE0Ib#t^>xJ3CCx+TRZ}yRn;ZIIC^r&U+(Ik4iK%t!b?ht2c~l4FSUpCy
zF3AEa1$z<nNd@mEjTGyAGM%D!clc_X%UD8{edS8e#V?jTw^b4rlealL6L7C2A2B^~
zN+)b8wI&4EX~P|yL~N3-&hK1tZ=tkpVvDxf(=EXr_U{r3VttVOKIQ~Cq?%o$Fv`kX
zobe{BP1pN-SBnHne04Ek)$@a?5nT4}XxW=pWQFiv60ov%T*AakTCU4)fMAsLYo7P~
zRH|m|%4B+6FWQ#(sFk$wu2VHI8W9Qp?)r&`8f|n8uLwX8+d=-k?|zNfKRX)yC0<4J
zpIYn^1{S&id*h$%(`5NJ+eARXu9fus7@`0z&F+{q7O=|@Y_!(_BWX7PuI$}a-XUxY
zzH_$RAk1TasfephRJ7Fm!OEslMXNRR`;EC*OR6T9qtTA2`A2GPOmF*cIY7u>FWLb@
z_V!1}9w{jBY-?R4)wsrcLBD#@W%eUxyT_0Chiw`|NrZ;AX|`E&Vo}V}0bXj7{Ql9h
z3N*436W*VkMD3(azd{rsDO9{WvYuQ}M-Zw0!n^d%tczV1evoC99fFuXoToBuI!Zsz
zGO#u~-mtsK4rD8AJ6ajCuc}Vb*W2#(a!J}@A`nHmudwF_qf*d;8@l<ZMEwcli=%yA
zEZjihmQ_ZSjq!aiUuLw=s9_P=G-QxG2OORx`KRFQKxyI1(~C^xN}aM46{Md!Y~{pc
zderc8&#;`cPfHK)6KQg=67*WQhCB`HVErA`Q9di9za2K~n~|r%4;E1(6%d6d9z!m$
zpb^wC(a(c+m&H$*wp1(FBgo@*^IpB;)n-a=#bo03(0=(Ew`wcr5Ej=#bDZ2Hu<_;i
zbXz8NLVZAAo@z(<`FCG(3^_rE$?}?5qa;&NWoDfg@cCK5G#w__H*;f_Dm9r+hT<^a
z7uVc0p<Yb^B9>k|bB)D4?ekj4yUl~ox{SvO53e;h5qYc=i?%V#EkUa`8U+ise2}Vu
zLh0#0RIi)OsLD8uHrP8ZUL9OE5RjojBt(w}O`6Uy4si<K^`$`f<+L8YzReikx*r|A
zE)rOjGIpj*YTyhMZpd(?5yW2hTaLffO4xWOpt`CRMT>;~Tgb*=?@THKLbl^s$o_g&
z`~!6;?NjIc`2=aoe|uAq;ngxg<T3(kKxF_XF!MaUga4V{p`#~YDBDf`6fjYBw0-<>
zQ}{o-DSlnXj}f@fuIyhC=)Y$y(>{^=9YQsJfC7FcQtrNIqE>?AuQkR6;u3|^<f2%c
zB5PAj)aQjUsOGmln03tc(mi>EQ!dxvN7keyTq><CjTGNn4_e}$CM{|Qt47&U1<9ZH
z`n8G?VR*X`mkmN55Ovcoi$S<4))^4zhd~9zr0Kw2F$Ar;$Gub2zA{*f-dys(ipi~U
zdK3J0W#%BS&>9s=mpdJ`j2}f+!I3=1EsSb@<6+*vz$ZS*@YU-Zw|F*%SM1|{sR$nj
zsa5(oF1O2iL+n6bZ00lZ&8@n9l-kNLOeH;BPzKsvc+kME4{43(L_1I2*<+c)5ifx<
z=`ag$ONcmlVj1F<w3?g&9^7-f@~`Cje<3nw{2glnIPgDVEuB5%7j%WmL)C(C4W2a2
z$nmA90T+(_F$@S5j{E?uWkkgX6d3<9$*x5%hMNBRG;s-bG2WtC_omQ<W6YOPl}l7Z
zV;`arX<3D#1h~Ma%lQ3HI0JsEf|MlvXnYSSn*`jFuMFDx+$C>~0}^!0zCTlt`-$uq
z)`wtd+s}CoP-#czyFNvh>_-s`#v8IS<q!4B&CF)+8H720AT8Jp#6Y)q5fYsfuT40v
z$FI47FqOhS1H<fIjv174vhPg*ko}JDkJ-}GAeIa5-w|i#ol}?~uxCGV>VG|{dRHwh
z{NX9Pe1xVg_<`*|hg*J?!M*`};`gNHcTV1aWUxP|5x;@3zjHGoqezHpqf#wmbV1Vh
zb3wr06$CWNTdpzT6erKVm594qW@Q(NRh;WT3G1JIg7vdV9p5NMwV#?fr)(40XnwMd
zz-+5RG9TzTSeL4)K!_;JnmIvAc4WuC+*{w?7m@+su0Y|k<~U@jF|52eSEuUI#mKf_
zTRBhPcxaoibiRD`w#wMw5;;C_3wmqa&su^oA;C><1SkFT@`=(_teIcrDE{@XSY((b
z(G;NE;57+&@qsD+D4OSWMMDFm;lhOZi|8Jw52c`xx~O}8#%|QIUj>8A@t`#pq?%*N
zEk|s*zsam`xL(!F6RN>zxgWgV4E2)|+-4i^**$Na9hEogv4d#^rq)tRaB0>e+qs~?
z6!h;S*Pt6?pd~>rpdIMV*0O2D??IOx=$J#FnJCE8=9}Af5f|#3@>^A?Oh2RnFFB@6
z!Z&T*5=+9AF+wa50ad|6GsK2HInTIh_)d4F*bof-4TpsBWl0iq{x<N(>?)~29u`Ax
z^Wc(Z)QfhOZQtY3dkck1Y-#$*Rju7soZ|kGVyKLyN*6CKnQ=t(*GjB0KGgm9---`5
z7w)OU=?hc74Z9FI?tDDzCi#KG30IUM^#IC_=cCSt0-iTO{~fIPRI>hrH32jl>L(ga
z`J80EBYao-m&!yw=3|lcCLKZ*L6rTzZ6{`(?+Y|=;C0LQhfW;s<dfMOTW>sYHYJ$i
zkp-BT#EgRLWwKdk5uB%V_eX|^m}(d^CUu7WHbE5YkHk$(>%z9<NhMc#ZATlh&Te~Q
z(LU5N>!E)@O-0y0urilnS$|NJT}!Pd-OqZVqMY%8oSbRhf>Gr@#Nx2{L>tAF*L+YC
zqV=MuXwaB+tnlvJS1zCucV7Hh<5`-G&{3|bMSo?Wl9{^}GJ9-K`bX<cHFFo?ou(NF
zs$^%Gp8O>HC$(KThwA&SzihH!GqJxf;htI+6oG#(;RybpmT;h1C^3d8S)19L(WJal
zuYQzq`~yyZ^fb$Ucb(6($|Cs)SVSz~`~P0Xkpuqv>{1i4ur@c*GqJ}LG`DinVg}4M
zGB*Ke2Y;5P$#Op=YDjKfB{Y~gbD1W!3h<pBP>k|nrsj!UjNoD#{hdIjMaO_VQf8)F
zkO&{YJ*k47ehZC0OE+NmzygZ<%{ebHHYzVSSj6{k8ipb?&}KiZTzuRZW}@$dQ0Cj@
zOo4*|P#ZR!o&(@^sqpG~)zCq@V#wNk3uaWSCUAY)hHv4a5%;*DIXY{EMi?Xc)5#Kq
zP80&tG3w{kgjD>$B}Jwaw2B3t#<OP}j({93HIk)HiCkGX@~7d9fxsm%>^LaCXGMa|
zXL#{x5W%78G#!zT-cRE$B>a^@>j_qOsX~kq1?8*n@x1|Qd2cYkjyHour1Ff>Ya+l1
zsCeQgvgArzf=BkS$&<QNq`;M47PKIySI?ihtgVbmPrXPS*5*ZQ{jN_jFUEPO9!d;!
zzAo7n8&1KXo&a>0DjmVAl^r41J>ThhLNqcb_tE}JGMGg1Bk6@B*xCx?z}Im6SG=yc
zt{cT&@^wKcu2Q*=Bz}m_g4(jO?uKAe2{A9B<^#Q#;%jzb(;IWzE0CrFJ43sX0--}e
z15wEej|sXVj3@?}_OBeOpIBfzH?Nj+0SCgvf6dMQN1Er~CpAw^ZimoO(Vsa@3ZF|B
zv+kV4v?Kg?a@lSBzNA=$Y5E`w43Uaxi?c-uw0U_3IPl)fR5uS6lZtEY<P;J|PRqXS
z2iD;X_ClFcQS(~(d@jJ55Zy?dYXm%BsI7TJulSzUQz~A~un@8g&KMoz>H!qS<(?Pr
z!jY$(;ZT(R(7OcW`{JVT8|Jt<PGp2j+ElQpu@QWzqRiw#WK2T?HJs)T^$-~kC;6N%
zg*y&=^4NRgn2w@A)h+r4>vclZ7>BG%aN5PD?Y>k)epj}vrmz9u+k!z$hxV5z({{m=
zX1!$|<BJV@FK5<`UDUwam&x_V<9?nGoUe6g&jB0fc~bLhzWA5vAwPUxObmZco#~hQ
zQ{TCgfg)>w;eP=S{NG21Jok9{XFca^cy_5zfaRn;J1Kr8VE(1y0}$$)=mWH4`X;sj
zn*lt4p`;e;Q;Q@kOw0;!O88E<m*5r7Wzv!x!})Z?a0y4rXH7Yd2U)9GK|!N;DFr_^
z@qeNs)?nBntYEbpO1@35>DQrHK4|RXNjbjh9W!KTQ%>dy!XilH5_cOs!TSoVf>Me$
z(Zr`Is|vnC?-Pv6KDT1uqh5g=k;A`(UWTRxpP7?|S#R<kd)$~gxQ|9TfM_k`LUJ0s
zajcj{`bA13e)bWznNx#AhLS2DQzwIzHZTOTE#PQ+|1F8k=S=8fznCV}Y~6xl*Z#Zf
zq6$n|E>vnU-_SmSkS!6B1fvNz7pO~2QIF6d2KEO72%mS9h)DD+lFMf}W)L=qb6LE$
z7VahfSg_|UC3;Bq;U5u2cl;{OaKjcJ!QFi%hMS}xQIec;s#chC=UCmI=u{isLCZvd
zE&2vfLjC86{*{T1^Xn0<1wb&~J{{U3mii`o26lSd+S-Odx}KGET3foGMNv70@W92-
zwO7u1sY97ZDEcM7!BR;&NCJ!&MF;u~wZR~vIx@&F^jD500N2J~Fms3WFjzS6^lE48
zMtFP*yp>OyCnzDTJ;KYUlvBJGL|hf{KO{a2k6)qHf0bF#Kgl@(`q<9^y7&)$EI#YL
zroJA<oGHq}_Z0b~*94j|#yNmt>CA!!0C_9~c|AJ~&4BCa6)jYxB}$H6&0HB{h!H$G
zIYOtYS!KksEOPYcR}GEBmxf;u!Xd@c(%e`4U)<+1-nk@KCZ*ZY#E%6PUdw!G-q#IY
z(4M}KUw39V^NV6KWiV$G%U7_JlPSM2l+<ErE|;QsT$fCQpuE@{d|A6EDImoq{w7?o
zBY+Tt!wnWi+hC_|Cf#sfs|hv*72T-}2&GJWT?>PafK=@D(!TZtcHzw>ZzPE_HM}1+
zQMpM!Mahp0P5z5a)*9d$KG((miXspKKJiED{&%!oEykY+0>G=rn+NVgww8|b*gKdB
zlwDB045oyMe3Rf%Ltl8ong)H90^>U;f0g{I8*RdG<^6kg1M%SL{;OGROMBxE$Oa9~
zE%Q>8LnDeW<@rMFAt|h=4$r@4YOfv)Y4$fvgVANA%43vNb5JX5skl@(EXLFbMhCpm
zsbUojN2g7e2km&kYMwpYr7J=rbWEpaB*&C8E(o0GMH}fBTiBmCBvZDL)LjqoA(NhT
zKhtn^=TUG0>(Yk2PY2TR5nTbZ;HuW<QA_83L*7O0gCF)rsBn-Byqp;%dX~emSrE~*
zGhNyB>U0GTnW0<R5;krlrepkapHuXGW){;z4u5$f0XELO=#=(C0lyfXn4m;HOPm!O
zTaB>kr!d+CFzTk-<%Odg$ui2!+!*oK+r#wPnUPhC0qe(B=rM(k_MBK#F|7_BU&vlC
zWpzaHWzl2}-3hdLjO^x%xe=AvRfN1XZd@Qv&!w;BTHC|U!h}%L9PXWRJKh<lN~H9X
zN;xaYp{G0!`9wUJKmf*n>fR2AxnEkbxMLxZyfpSG=U=BhLK@8g0YxBkrIgSjaJLus
zb#O&XqhElvT96w!l%CA_@o8tttvcwn0`~vFGpOL#gZJ;aa}4$he0Fbt=g!GV|AjlJ
zZlRPYjP%gl;>AC-L&7)!^-^9>3Zv$G%8cdYf#YqKKN!PaMA*xY*oPay+{a!X21O{5
z$~f8ucJa*!*VOlMHKmuEhDfGL?nxk{0P|gJ{^`48yc4fu1EELz2g~`X<-Nyhr<EK_
zIO1DZBeEpeuWQEwneW}{K6#6fbKRIEfthT()}uIM-(OsTOITXIcC0_TJgzS=({oxc
z$Qql6*bZoJnO6J`^3nr4<y{Ky!QuN+9?YAz4VwM!xB#&R$h+N)&cc?L)Yy*pi6b0a
zc0$ay*Qw&oiemeRMEp*x?acKZn$#G<3uR7dLgN8UJ;+XU&|o6m!mY~vaMTlDeNnwQ
z#?n^>c$n108^yzlVqmDD2y=X)Q?N8&n&KA{b|C6UqNIxwaPU^o@=;0=ONAL#g%uH6
zzF?&?A3$7<p;4z)L}2z7fs!MFPr;iv*U2V~B<ZPEol!){jY+xP;t*YggVWPK+90~b
z;s#HJ0I^;sX{&+rO6rnJ?Pg{F5W8FDl(V>Wee8d^_|SW}mDAl+5z-uXe%{{TWOob9
zEp!vAW-&a-*>-k|L5WJvF%t(#V#zjfrACdxKMr!0N@L8cHWgAfj~G#*NBfSJx5paI
z7H*M_D&7F2hq#Akkjf|Ri^*5aSVvdlrM3<xs_!$OW?=`#7UY%(zJ%r874E=A(&*B5
zFQ^t;8A{Ko)e^X;EXvLALAlRvh|_L@IJ0du^RX&%tPk>{iTljAYRxZ9F{$@k;^Het
zlnK-l^yQY5w(sYZu}i*9cLrg6(VL7m+d^=<ZR7207~M7MVI41m1eP+z$>|0~X_BC^
zHo?NMbRzYM{w^*SNl4_N^>*o^H5o|lyDD1H{k})W$7Mu&3#3f<Mr<(afm(TYYxWFz
z!V;mP;DRv|i-QPuUIPLgxNm6VWPx4_yn;mW@e-dDG166T_xocy6NT6A6<oAx8>Q;B
zJ}o+XP%Rl%9zO&&Q3HkU#b3&--PbpIXuUeQ%y-R<R;nHSVEFZ<**H~K6)E5gvI<|c
zjlm+O?i{_j+*eUsKMR%IFO9~T%g97R0sdjM?Z`5N^ueB6#O)T$A&c`NLn^W0PM;Qf
zM<nhB?k{~HnKLWNke3+4QX?bcz~uyH!Q=Qu3w336MZHVOD0)>ewN1UX6G!kAB}Gvj
z3~9q`9Wu|v^+v+R`iY2E@n{D>Zb;0KQN-y(l2eo`3vd#v1<{8!3cSfE)F!tYO;_d(
z@6;scX8ckDdKQEA4N~(^jhKoe?llt2eMLFJXN8w8pFd3*LMExLI%-MNghSf&1yW9Z
zY<_VsSW;FrQ+^1#Q|A$BO4jIbww=xH8}q2T=1&US+~8KF&VIT^!L7Mu`)>Ib#O`Xz
z-aZmHZP%O78FzG1j{S}(T<ZNsvYSE|_jKvC(xHG3(xdRaBBT}&vnlEUDfqX~I3Sj2
z8hqn0&9@aLi<<%~VXk$4hE;9@45$=4fhAl_P5>I8abG8BAERj0XQpI3%)kY_z&+m=
z3>6z6i9z4KThG&1j*FlQC=Z8MjKQR9v{Foz7X>)kOYr+)3iuJ}IwNN{+<7Ei9T$j&
zee-yqOPd2pp$8$J+K1rGbm<4(K-kYoUW*66doBI0w>!rjL1N9b<U=hE_XIwbv(nd_
z7%hXf#b|`11rPc>$Qum@WsHMG(t{?m$Io#aWCPU^`IZ-rrfN$oc`6a%R0l_rGL>ev
z(@Na)XYw73++-=&%Mp>Q;xZlXnZ7DKYwvy52*BHMA^a#W3tY`A+U5tMrz*)eNzH)!
z20Vx|sLJw#)~7V*Y5E|C{8Vg@RTT8gP@y(oDVcUCLg>>8=uF!5W30(C5<L=F&YQC^
zFQ~7rQVD)129>8}rbiyg_lk!!RERHu=I)kYbFe%~63UedpAnRu^*h<ZEOvl4MR}=H
zN(?tBp*?N|JSd9I1Jg29@9mjNILG?M0@?ya)tN8_XvJ?X&jbFpS2{&)DT-8Ujf)rd
ztrQ8jOL<D)q^-~e9gLzPVbhsGnHRxlM*9BKRQ0@K`DpT<_rW%%*$J4$iwwj9B~`0)
zi5EGEgwry6CQUP!UwDD3315eiA`^<*AvmNAq}hIt=%bQ^RgqpV<)l!QHf~Q7fK|}Q
zBagP;zFD2H2K<iMm4-}1N(bVdo_gpPm~g@>#MkRZfSOUR3%X%Mf~SSyi=v)Kt{}aQ
zv34dVW6bW+rNr*a6lZ%u)8G5q`9WX|6Ab?`j=;Z-xd-l039*#~4I}wD^ppQ^K*0-=
z7n=Q20Ti6uMT7l&hn){Z&~k`W(XZdqpL2-4l)fIhGI<DNBSCMHa6Iv!PKHU##JoMg
z-ae%k`Z&9%;&^9cXL$vX`s~`Fw=r(e4dIHsqLb0j@5zq3X6(=JXBrvs1KP+hDy`ou
zY!l65GNxjh!*a9^W1(7$UU&Y0yGZJMe|9|TjGSm<)*Ug^*I-IfrIWW_p)i{VQ8lTm
z5~7y0c42(uA2?4P+C`-XVcB_TqiB)E#8HO)t$Ju?B%zS9o2t*o7293W<}>ba4XkXj
z>YZN`&Vh9j;|x6aNJ%fOs&{h!y`Wh|1y+k-$nvqhHD}znX?Ax8_s#?VYlrDB{8j%W
ziW+a)qJGIXtAcX5s%2vf$G)pU5UxOVtQRM3x*h(>rzCzgr`=IMxsDm#Fb=b?fPkje
z|6Dfwnn*s=W&dp=NlX7*CMh8Wa6RPAX#w5<LHHao1`HgOONuP4;V7f#Sqm^d?9DAE
zu@#^Fcy-8LCZ`Jd>RlE?HNE>Om*HH?<Vo@O!?P==4>_;fk4j^elQN3Ha<l5wk(e~q
z+WK)Lz2J`@WGI{oU&g1ABnJ*E!o8cvG<)2)tU)%nG0^2vrTY*SA6{Xj@DUvKXi!Hv
zHhd~<hW4IlLNVw%7s0gwzU481C1ke~y6|pLf1=I{-FotP{f!gbH}V8;+Bm)vQXY&v
z#9H3OP)ans{(b7Y=yvK%oiO_4xB*b%7-o><S#|q#A`-%VVb+7=t<U@uBkFbxcCC~(
z=^7=6xH5V4vieC<Ih4!-%^c;?`E5x`IWZ<Nu#9={Dp}6<?}+p8b^S-t8ZT_!+1qzX
zI?JWYRS`K?sE6a|q`LQciN_BOl-a74BEOZ!fGpj=umP5gilK*%ZkLbpE%0e+n^uaw
z`l^bm`=KFs)HbyzeMsAOr~HyCG5+YBgLJX;Mk95ZN#)()hq0_2JIZ5E%-}>$A!xs?
z`!3!))9&Q^p|%4}!0fYI-)?m(<2dpZALIyexA;vZcy8BBXOf$6vpPzlsS%_F7JBcR
z#~<ZIi%Jqm`(KjDUz-wtsp9`?ZAwS?M0}<AGs&-z{NI9cf6%Uo$_PgRBQw1KBQryv
zkIba`F*38Nl7@+f_K%sFDl>Q!E`U<#xl!w{sqqgD<FoFifQ2<c#rQjI1Mi2s769vb
z0z0y#CB)i!;5e<^1!f|>z-eK!MdU~&GCH%3VO*kSg6s)<-_BO`R-d&r;7??)@LKCo
zTP+RTwklMv2Sb*S+;B2h2^oRL_NjZW6e4L82YP?e1UEzK=_BfIUBFx~6881^4w{x?
z^ddPWbyjv6uTj}pa)9oRX9TMsXQtS!A!dK3J%r{u0#gz6jDC?o9-FBMFB<N9s`d+R
zGw=Dd4K^wwonhr8EXA-KSv3UAb%I(NaP-bocA|w0827d45WQqKi^C?;fm^}kGTyiM
zOd&(jH7509t`0c4$HwfLnr`b=L~!MXS>k0r<Y;x@%%nuQLhfU}*iE)f^TYZ#Ur_SL
zH*diaVg!;a-o07pBjRL54lNmIq0+s_lWHyA0dypuw79R}pltC0K}7VdBk^kx{iso&
zJ@&r_(Nkgn9M2{Ew;@DNT|r1s+x<HC9RSXqdJgBpJ+TiH;u8}w(G&idcjRafX6^v^
zCx3Lc{?l0b-=SmxBWv2<#IJuw$;!wb5w>N6ct%1*rD?-W*YfCs=bdXE4I3)aS3SD9
zBO;zqveV8dl#FQJ($8FN@vL~@)cY$#+$X#y6m_vSL2>htrTS#wFnzMlgstt``5hk;
zp;uOMgo{J5o&iz1=REHfqd{J*4U6*DDUyEDu?JqWhVvYmZ3T>WhSi{m2<QfmT~7dD
zWPRq%RNGwXr`#t_cOq4-JJzYUlfDu?(+FndwI%?J4Ccn3V-w1gc)WrAHNB~6^+$4$
zX5TJLc#bMZ0fuH&RvmspMPlgW<<J(T{N*pvG#etoeb{%q7LX(@DO}f-aT{`Q^^^?2
zX;k%Tb#LK7!dbc3uEoUUfYOxcI8K=)FQOIdbu&$L1vv`B<0Hjd)|~~Ut@&vY`?XhO
zskgi!c8YgtvC)*~kuFCA9~ixXg11&EO`y0E*Tw?bu-PRz)=>mRl>L>!4~CliN%Iy3
zJ)Qj{=RIAwqRDT}KbFtsIO1Vdq!xE6fv;B7;wE?9d*7;Q{SJ_g&1=Py)VvL{9sAyU
z7LdR-aAB>WD{|F1_hDgT@$Bm(LS5_k(K{9D4yt7QyN9Q48v#^bPzNBkJ)c$EzsB}o
z+>`(6-S-m_;kPx=|6!`AV{Rv8s{=qto`S_UTtf-~Nc)x4Xz2iY;)d9%u!3Iga0qan
z0kN5--t2QlVrqWESBD30+ysIo5{RvqQ%+NI#xK>%j4fSi7R@=8reKd*_zF28cpdT9
z@~Kq{1J-P^Cnl#D4B_Q4){%5L!PV(FOTr>zObAD5PJ`Zk6!RJ2r>M3V6|I^oR8=(D
zF19Dl6ys73#IqZO3V(G_Wr8*z-N;>};?%<jJWk`81%iCDim1C9gcv5C@#$3FFFgG#
ztL+444X;|=i52vkZkYOcpnH?~En3?{o<>IHRA!b5N&t{^2yb0zN&B~eE4VL)cCf{%
zpBs`*7LfQK6(;k?1mSy7snLiyFr!c-^WYE_XiP%E?t|HAM9jCylA%MwD8DZxKXy3f
zn7bxad=VS|pat7Y9Y8;KE1CiYZ{|lUTmxg}a5$3)@DN5|DWraU)LCC<apeASsZrG&
zQi=iIneDUlsOW_a4`65i@%0w))3fvFS7yeay(*q~1Hlu#R$eqnua4;5AlpsEVti4M
zM|EUdX>%wO`D2q&!r0iu$>k@gZVwO<t7dl?chVluVy7#2_$7OCikh6nVAryE=P<}1
zxeUU!ImYK+NEx%G@7Sme%=T@>e^M4aoeRw`jA_q>^XD}0GS)Tgp$VI$NvzM))7X{A
z>=7JzZ)v6_(`&40aFCQ0@F9!5Ph;frva{|AvS##gTzd1I`i1UdA_kml7RWIWbmCM2
z5*im8amV`>kZdTw<9SIxe6+XKk#y)uUeK^2G()TBWN=8(_ly#`9+1_qwYQ`4pi#A*
zmnn#9G26ZwX^WJC`rRF?c(L6n_IHZ=k)ajSPdD%&wNnf+A#@yV<$AEwC3&SW>l~wp
z2sagwPj`D9Y%(BBun&Y$nM^{`Ou<`LLibnZTRoN)s`mPfTIg^G`?uRoh{b(cjhfRD
zy1#$AI8e7s(<J~eD)hgiP5*!i^ivB`A^azJB<TO$%<iWdfK;@s3V@qr^7&1I`&ZsK
z-jw*67a+Ex0N?+)Mt(gp{=uSt;v&x$1^x2hUWflOqtdD?r21<{MHo)O`^P>4{P3^Z
z_&-N<0|q_-jy}LR^5qA}af&8d*cmiTM&3;&x;wlty_VuShq{B+x=QhWdoA;Uhzv|7
z<7b>(XRHsaW4k1{qsKjkw}dd3n>JWM26@o~)V3<P=HML2jbphuAXC$184p&k$HH3k
zKLr~S$b~~NVC2m2UP=zI9;rJ~pf&9n<)MA}X69*n%cR)DC}=qR&Xb!dXU(y(I9gv6
zg&5h6i85pQ-s(`2U(C=5rBK%&MElgA3Mv<SOndCRIqt_SvL1neK$!dOQI)0|*n4Cs
zZMa>4?0FoHg$|Xfr46jcs6SI8PE&!s^i<xsxhH&(Z_Mq<R$S=|TmSz&@Zlc>$j`~i
z&+{dOe;XiVt(;|qRUBoqfFS={u|_;PCi)+_Qc_L=vkl<Qd;ixUM*{ry*%7Nn|0LQ9
z9+iRu%%JZ+KD{8<&G7=KDm*vhRmou>CErGx!m+C=lcpeaIW+Mnz@O2MrN(uJ<;K3T
z<f{<Ti)s;Y-i9B;q&5m$bQp;2dztb1#EbBp5j72H=+mO<+~QjYHpNKQOs$WjjKTH;
zJ!G{IpFVF2^4ThOg2UKf^N}6tH0iFkj`;c=Tn$@z@au2;q_LydSENPyNy5<PH*MMK
zfy>6Ndk`VHp;}a7o1*USM{VLU10O&nmT(?MW~*nmX#%UAAD@E$xM%bc<!;*nOJsj`
z&-_|alL0>QU$L1d%aq?}@5ypc#)&^XQ@)QA(;_uML?KDx)rSZp(T2nB=g|e20H$Eu
zE_`O*Z#kS15mgO{-M}Z=dPqJ@%52x7FRO^Gz;t%MTj+d!dV71NC<3s4g{<Pd9zSd%
zAB<5gGLYmtcWqiZTi*`O$X&kW@Dnal3{}sr)(7!yCPj|TCU_a-CFh17l#JzP%mI`m
zvpC|=DSIwI60t~U5=TsiMn9M<<MMS!c04*1dqLmNs<te6R6(`2nJZR3n0PpMK}sKI
zO)QbC5!3u+l4#vb0!9gexF{$a$To%WL;;@JBiL|mYHy_s#Q#MPHt&{Xaa<aGH2twe
zDY8#^fy&9EVn(%EfF8O4Hb-KEv#s#;)HgCTEfl{mJ+x&Tb!6a>>fWdcO%Az2XwyEg
zP^+Lb+Ck;JAg5r<v>Efs3deJ_#Oi^;JXzCXyvwAThN7ea@?Z-b2rbOO=~3iIm|MQ0
z&3V=@#n%KGS#KOtoF%`<uzTr5uq{O32PPc4h%VG)fO&mLTu2ruGI#FO`XV*Ay|B+O
zd%P#+)<)V0F4TT%ZNJ`9VCMJ|<BQ-2d#WpI_ODu>S0Wq)y=X6azB%hF$PVfoUUpej
z3{|YOu)GBf(|cUTJY|0M@$up5vLk}kK>8u^$a$7Y{_1(a@#~iP=l+RLIf_H5m>DoF
zlHfFb3xU2uny``lTrPZJr~vx1WDQXQ#ZrX0XvB_u;NxQaTYXZOZ}V9Hhq$+l%6jX%
zhXs``=@dk|yF}^kl<w|M0qO28r9rworMsoOrA6uZ|G-ml&VAo!_`GAhA2?qw$2ix%
z_S$Q&HTPU|4lK`BN~o(IF_^*iDx1cr)`IC<)q$6i&=u>DCXok4>*#QCuS<~#Wc47I
zzpCJVd<N@DoeZ&|&%X@9WrbOxMB(I*5x6Wa>KskecQvda&e6{7Q82mbC;ZKq2I748
z=2_nsTXW0Hnk~m8na5k_A7a<cZ6#nnryR!0y&+@|>NS;Wt*CGP@Ig^l&eh;0SHnx>
zkik)cnlyi2YCEXYO0*Am659JEY5JqUPs0!VfPY@94?BCQzaF*!s5J9eT^T%kLmLA;
z^E*=mO%nhE(6iFDHo*I-IYW2XkKWRk5`j0<$|lgmF=4|ePlAHW<nl9WaxBM)cwNfB
zIGD(H)EU^jypX$jT?S3iCY_nfPSdyBmlVHb>Buu)T+5cccx1gnxJS^-NlJ`jyg2Y-
zYxY^Dp2z5CN3YB$(Gzc&<F&9=-H+-Pl%XKWNh{xR0jKo!ejBS3xYXFb%X94v<V4({
zY&pm_0T+3wjtYD;WLWXEaAr7<@MtQwicKFgl#FH4Y(f>#2|OXAZ?Gwh5l2>z&S&CT
zal~bF3AQjT6PRnYVq1%{1W>P|z?VB;Mqv%vkfBPxBiHcMTz%(cFVo-|&6V~Bb0Fe!
zg$6!L1<oYec-a~3-5@F(u_nUGNs`{S8&>>?9LVa@+4cN^ckM@G_t)`l(BjOTv*i5H
zC03n)7$uT-*q6EYIFNzCi?-!j)GV4!<0h=5g`{tKb5w7Rl9TyWzj1nW8Gp94u)I(`
zf(ElpuUc)b;)X8kQJSJ{UsoVCwb8S4*FWy{cn5h&1Lv#nY2mQiRKQgSB9^Cgxr@+<
zOEkwbnb6+{)se~r<sT8_7Za5iA-t&gLvNPZM7-f9!Ag8QGUjx9(z(^=rvC1#4S04v
zRSkrU%e^!AuonAQ@YWsbc^}?_`qjJkk7BGO1&^4XwS<74WALv<=FGh!vkdgM$W&57
z$BIM$V@@fV6iV3#2=_SP@6QAAaAk79r}r-4hdqv%uC?{8&kYS=Y6);ctba!Se?1j<
zX{J9?{kCIm|Ja$WfcgA;I|PiokPs1qq&ozh3xRH3WKU&C;d`%xxm~6+dOj^tQI%5N
zn%51lnyl;0^2(rk^E$j=6kYFd3Ha!8q304MdK6K8ip!xuh&pSN17Ea&AnwK-sgo8^
z<5bm0Zh;XQdg||0?Zja;aU!NFKx_{7nuMa%zF=gf5n*<$kiMr&o2gnX5sJ<ZB(an?
zKPR;Y>QT|hQE^{3%=dBDTdk9yB7}7WA?x8F`C_NWQZ=-r$XBhSh1YT&<VXxR+2ql!
zX*IFa-<GB{a|GDJ@pAIa6aCPrk|H-whzVu%A0~$CML6+E9%ziAYntlvZH>35!)%Rz
z&M(siWq`{+3Y<iW=5&d9;TRg6cJ0-#=>0-*?=W_`B@_k-I?rXyWdw%Pu#e@@vhx)B
z(7eu@Eg3DO1y{O?(*)srSHyK`FxFHWy=W3W&AH6?f^}cY^5VKL*)lg26$!AK!>f!|
z-I%lqkqHRQreH5e`cOB;SK}wQvofk4G^25#+nYK|KDpq2eX2fIvmoPkePchCtpPPM
zx{h;Oo+yRYbEE*lpK`CedYCi+CXx5M`LBc|pZH%qfF-zv0SDmU44Ln$xXdus+jiKe
zsJDowVcIO_FjX6m2*#rIkt?meVO&x_6(^+Z82Zh{Gy=1bT@_Kkkod<BCoY3#RW20p
z0w)9O`i0(L$LY~Hr+ZFpNBC-}^Oxhw9ot)@ZPv>loQgDB=V?X|?2w~T8zQ~FI7-v!
z$UixDHCi&XH+nAy8SU5{AC|T1`AA<!PR3SsRL3@joKj<dGDaTtS{M^lZpNBS5WV`c
zgTVKrc>o)F4m_y;R>Z0<7<3n+X7+qUX{8x~mrv@=yZj%4!P2w=uIkr6#_Q1|3x}r!
zxvR4Lcx1YG6YNGHYgKeK4*h};KKm2mm8U)x5d?{59Gj~mCuPEl2TYld-HO1I2PdZ0
zgcZJha7Q`%Qk{0j!A+<Cj`C#6hu!V&+Nbu4Y{Lh3;o{!S_3)tnixfo5e8&>b`zyju
zq5rEX2rz{IeUy3VUbdl!y=!TI6F&HT*d<III^GIMCSLzF-Ta%L<sUF!x?f!cX)`e`
z^=()FPZC}U%5hj&ikN?7%upC5MGN5T-}dJJIb;5dC9vLMcJ~HUVP5{~68^Xf;B#*6
z=%(-Q1>zl0jTN7$7>D^s@AWNP3g*_#$^YI$9^%w^z^8w-9lzB=e@=6#|152!djZ){
z1omuocPCItNoi@$_foy-pr4Q>q5Y7oA_)~OcDrazW!jp`N=AKwC%lX{yZTqJ%F1v@
zyEEfZ(dtZ{_6`qo)HsX;z&Z^A;Do81$b5na6PWA9X$`)x6gn0O^Q4XY22JVpA6@PS
zSD2?y<vS`PV~~=*pnGhaEs4pLqW%>6<egG>AJt2mOCMoB5s;TDagkMJ;d>P5uYI$T
zGdofkJB9}67880QJ`82J06t};bk$khsIONNI0sY}GmG9MZBcc#Wl(&N4U!ZRG34x~
zIE|m=gOpQ}%*uQ(WTcQj+f<*1upvxhx>kkQubr{lNXiSTr#wW*OJ9{E)pB_z@pb?w
z4H3T>U2fqE>J0x(=eJ<m!6(#Tc<nd!JZKNgXMNb6ZW0-5bZ4A5?L>qYYZs(e-=h$o
zK`2~-)<_DuL?7Uu)^1|!XV_AGi9RByq<%Ii4F9~a;G{4k83Ij=XC!GK?dxob)n|2C
z|5zLx?GPR^`kVnB8iRx-V(5}lh|it}7Umr6Ds@d(ad{vp5?t2B+~Ee)4VV3k{yb22
zS8hKj)*KfMe!$tq`L|5mxx9yNZ~K<rCiZ((&BMO)7L@rT0RHJI_a_xs^XI*9V{WW#
z2AKQ&R`RL>I*Z6IfVod}w%Bx7WG1eMZdw`-o~_9c=(Jjxu{t93!~pi_GlUx#=1Lji
zDL}pdy7tXUlCv36Q!nAwxabMdY0?e*LTFJAa=iqGXYHP{3pm;QM^L1Sp|7IWn;bvV
zI`@4%yGK`3(B_ODdk>!kZ0tKp@xJ+P-?*hQ6gaO<K+jpgB*O*G^ENQcgZ%>y`Ipa3
zn)GI^<<iYN+&4qqQ}5iB#omZQhQOcsm9IciT=}T1zJ(-jP8n=B#z9l35iV*$Z_$*N
z<AjxiDfFh?K!q^~oRXl8^eoEZ3VZqSZ6Z=iju}{PvF?X(G+_mh&Tc7*d9@_Sr%OsB
zYUEtVnLiMitGIh!QdU^%vhh}^EUwj<>Oijx+Zu%H?Mf<oqG!w;Ltc4Q;Q90TM=;nX
zN(u98M!;TrEoK)uU06xIjbM5;5_-5Ay4dvv#a?J?E+!nu#&;G3310Elynbw%A~{?=
zd?#ju#W!Tt)Vj^wF}`}S*&`zNmAn>4D36OxCHAy+@p1_Pj}KV<d0&EiWhS1!S>t(w
zZS%C%X9{^xL^Q%u0sL)*Nu*yBvVE{iW1DDTF@IGH30V<NS0_U^|J3Oy4c30rM~9)^
z_ndNCGA1Rw>#S$7Gg!6m^Uu$UN~6m^D0?;)Y@6sDT;9n$Zzz7J+yg>t<z7fVv?%&p
zt?;m%{3~S6@KXzx?(Q9RJRE?|Zv~MK$P->ypgn$(lVYqj&X6_zrK3{7v$#^mUQty(
zi1zZN6v0Fiv%!G`(yOm=%JHbtp~j-CwNQOKYp^Y4Z*<0B)h^xdVo_*usb6hEuP>0`
z**<4w>!bAQ*)o1gRpk<?T#TbfsGQQlhKgC*Gh*pxtm0IgW~*pu=q}E*2;mb>9u5)T
zNA014u%|IAbzi{}#?wAW$R!dum7gfT8n#%%xAmK~OqKCr?B7WJjz<7m)h*C~#ux~9
zK5IzI^;J{3As~jJ*3LfeH3X-VweSH0rBFyH&Ou}sm}XeK-wO{`$*@-{Rpad_X!7e;
zLNu8=QIF-6&DnDw`60!UqrI?~#@@h4);;#E3*3=A&lANH8e@i~<Y7ti3YT0ywy04(
ze_A==+?gE9>=E>GMiP=7s!<pNqaq<*Y~K^FQOmubeULs;?>VYRS>)m*%7M?;zJ3;M
z5znj3n{xH%LI-tHJ2pKE!GR@2ch4X$O)>lyw|n|u>%U*ZZt3qz5z|oh+ws))kLGV~
zH7ogVSdsvZWLrAT$HYAG)QGz{{3G)T{CPpHCxioHP+)g+ly3T!vZI|v`|rYPtYf7<
zPfQ-@a7Qy{6fss1D}za7nouM-d+&<9IL$ZDb?ix@+7K^G;WkBP6GQ*lnchnR<vUC>
z30(?*A<TckeD-N*=Y|L@vwe0hn(R;mnktP2Fq*{T$rRzE?BKO>QK`f3${UM3iw8Gu
zBYiw6?^1c<b@4(16+C(W@xd~buw3f16{%~4FP#d`+u9)5S{H6In`~hEdzxElCi8E%
zIEoEZ^WS|Tktf}@yDg`sM>yYp1#;?rf#iqtUAMg3-?Q%DChdQps=U)bzZJh#|4kiY
zSo|*C0$dtHK`dczs7zI&S{mL=R5t03msXJ?TI08}wiyODjaaWBO>tv=Pp2E-oSXu_
z;|)S=Ic5VLr&sgI@N<X!Xxt+>z+}CG&LZ5cK*ZT5Yc9f!FJi`&vMeF*b<W1la~&``
zOcl*bGJ;iU69-h6E!L2eAFG?V-!EQo*yxmWD2de08f+HR<qGrXmN+5z29IDzVOoDC
z;~OVHVOL@x-r$X3GzdFk5p@tCOJyZ?dfB3rh3JR+%_jnTRP5P=N|vJKHg*eZhSQ66
zKp!GRPKx8e;$7%xr)D-CAMRpxm@n^H7l`wAb7gi9H^wD#deE<%wJAuKe+2PWp$9UD
zMd;B`iEys7d+X;0J~{Io63nZcVVk1rsgc){M)Y6P5|QkBg_m=L>`(~ZyF;QW%*rt1
z+MxQV9~wt>?65M4GJ5G&8zK-8cu}wk=GH;hL{u%Aexf~E!5`DJn2nO=xLeBDBR+!J
z#!M1|`$TUTvc8uH;)3bm;O#5d^R4~ieq$x&gz@^phGD6XI7+p`l_d$3NZVsrKeZux
z=bztcL#Vo4y)e-pq!y~3HXe$x>#Zf+WfU`#-2a$0s>D)!y#TcX@)D<WJy6Ajh{(!b
z9XZc`V)jOZ2L4ftX=U0gojE9@UdLd0YEn{TkPk#z7be{&ITdMN(<HWb>JR7O>+msv
zN&EP_Nqbhi*Mje~2f@~q7ky)w7BBI!v3C~~$F975h+7+H(*4R`8G)OQ9h#mdJKkg}
za>=G;Dk$=Vw=B5b1}w>symJ`<n(nxF{vQS`!G8<bJ7}8mx3S+|t7$-dsP(Om0wcX)
z2OZdvAN`V4M4wj%?2t_-N#!Fko$hGfoSChr6Jff-R712MpGTtiR%We3<@0vqR5n(Q
zK;C`4G~9Q!w4cBtA=C<BM7dlQXsG--_DkUOwrIS*EHb@m!D!q#+vOk%|4Q(TeNfP=
zS-eVgG-x>P>$_7yt>CkSXNgZ4AERNT<}H*!L#gEI5|K=h8R0c;CA-VuGPV}ZF)S*X
zwwbkTO;E<m8wEXitE2@HwC+7BiX`L(#@qA3Q0l1x`}(pJja8_O7EWbAU%QDXJsm!_
zN3ST7!GMEnR=^t>u(cgI3dk?qA*5;|Nz;A7&sv31h{1Nj^2qv9#mv)VedzSn!m^JA
zZI4?u;2YvX$ws-<sh|nq>D;p-+-%^)M34Q+O;@Grwp-3AxpTCcNQWKB5I?`6iSSUj
zp>1dwaP#cCe2zK5r}DfUtYLzue^%xBfkRtJT@L=0=U{}Rc_mh_fz~O$O~dfBZ!jG=
zV&93rc~b3sw7irK$N%P%jYDl?Jj8~aF~Yjp?>B8BrV@z+5}a^AZYIpEAt{=V<$~pe
z0?4B@P>s2iPtJzTI+CB`M0p*@Q0j9kLw2&zn;TdfliCrwpA#9OT{|LIHfZfn&niEC
ztfojr>tWlGml}sLkR;asj#W>Bsnr?xspgPjrRTu#RdBDOEy;VMLuSaHR?X1<;@BW7
zX+y|q3U?2%nx0|;_JQ73RoVgT{U#Ql3Hnj#dY0%U`PHMW!g*KJ9*FIq_ArkWxe9rJ
zpgg!2ln-my+b-<)EP7`y^-yMBo%W|fLbCM!ts?kU(lrXnM<z(g5!`gGBi^U7??GWI
zAa;@H2Eu1=dl*X1Ww(VXal@_C_kK|<`X3h>?DxNN#6q(hhu8^xSGgKEUU6_Epcoit
z(w0?G+r+NCwoBU(iS*QLXgLwLDS}1j=g3WR+2WNdZKychg#%08B-e#{JZog_RZsJd
z$&^gv5V3JCNHswo$}9P+I%c%4%(Rihv<T9<qgLzds)6Qj*7z?&3H#ocy82bk4!TLl
zd;pk;tvR{xu?nBerce?C)v3su#HXmvqUsl6t&$3fNQ(s2kL4yKeng@WkM%@;n;pHO
z*2_t0Sl^0y&u6GOakVg?9_6cKv~pp?X=R<!i!>t$zV2+R;jgzV#n&3KrbmJXx`Zbk
zI?UvteRy>YYi}N6OXyhk!by}Ey3ap*!>+TvwUa&n^-SP4g>?j;jaz;<2(|DbM!c||
zuxi`37e_O*&cvyxQmhtFO~$wtxx*TJ^_w5_z7d)P+_j03^K=g5XrI3Xu2zUQe%-=0
zu21J4Wg-e}8LD4!@JlwEUf70rUN~<JK8k!_^I?b%7;7;m@IUS8KcP^2l3~MqCOaXl
zCXqi3zt|a%UVnLqllbs!Eq4Ib%KfpHhd2p75E%CWO?AM?{dW3T*A$@D078m)g~`!h
zF%nt8Fn(~>BWY}QtR4`<BFuZVuo%%6G4juvSaD&0&<y<;-%<id0XW2=Zh(vk@IStN
zUicF^_!kp*tbd=l(|V)@GRW|kiMu1MMTQ_|zn>F#FbA+dEtR!3n8xUVdZWMD@QJLE
zU*VYG;3EUNpQCl=dBWU0z*o___jMlrQvU+T_^B#)|NR*BSAh)D=AT^6j9WbBpX5_8
z|CGk_6pFdJ75nqNw}OYr<X=mvdzI5qi-5aPb2@4Xz^7W%Oh=vW4wFodxTD<x#&b=e
zKOi&QBN$9`>0U}Ij_2Z-7(JVj(OovyTAB{m*3g{3X$;&Ql0GgM6r$SbJ$ZA&Q?y!-
z`DH@?t%FOEYfx<!p#hnqJwqf|L7xR-!~Ui{u|vZ+3<Kogs}_F4t_r7!AZ&XNyh|IK
zgP@BmaSM;|_y|P0GU)~6SfBhMxk$CB<qI_b5q=YBA6Ge;HZ%}rpfx@EVN=h8lsJ6(
zdfO<f(f+cY6Xyqvk~P>{T}b3q`s$4=1ufDPQPs~diWHnej9D13=rXf8OA4QM%_0*(
za)41(KXJom?0kAqPop!*<J_>s9TY7&ZMRG}5oLMlXlMjNz*aR^&EO}aIG*1D=0r@_
zz^4<;tHbC)5>i0#*E)tJ1lTUAn`$Q}9_AvKzag>oAf`@wv8yq(_-1Iw(p;gyiG1Fu
zDLB7$li5CyPX@O-RTLSnL!M*{Rq!N1CiUCin+8w&BMyg(NvhiAA_WKK8WFVfh%XqF
zi4Ap$Q_&Wrb6M2~2?SSTGj(KhCuTIJ_+S~ZuIngn&7w#*{fUIJva`zJqb$NBI+Iug
zt)54pkmleIazIbCLJ_;|%dRGx)sv)cP_N(4Kq*lM%ZF;jqC;L^-o3P&Dw|h~0?DEE
zUVHj5<o^wbN_&?e?tyor_P-kQfWRdIZ4Cjv;(y>wBw%2oW5y@^0YO@tg}$%`V&3~+
z+&{ehh=EW4>*aS>mE8#h{l#MCmM##b!<a$(;k})=AdR~LmveyVG81YD4y(8b6F?U*
zA(qQ&gLdp{->AE2yx5Cqd+U1krB8xt$uUQNxM+OWlp&Ivyc<nrFXS2y-1yTbf47p(
zX|Dy%K}aavJP3Dd%LFMenc^&ciHUH43kz|k4)<FJuQ2;}Z1I>Y;7c}7?3IpRZU<1U
zX^RW9rE|-8$1aMZ5Gv)ezQp2#!g^IJ$~Z$eS1v9?N?Xi?_R;rfLyhPB4Zh=?y&o>o
zi#(KJQ7D7*k$^{?a@c_tZCNgzdc)&8hla%*AV)so8}5`jMD}#)m&Dmmd6$mrPHR7X
zhRcV+cb9~BaYiawfOgg0T#Yid3U<*6xHZt*QGSmW(Rl22;@RB2o6P!(e}ApWrqytQ
zhZ`sFDa>e=I)wE5_juT`iNj-AY8eqCx<xaJ&(Q&AmAcJ<D|gGYx$e&xX<+O^LWT^g
z?ea+AkkT)TV9gJ7MqF!&JomCtnrG5=^hjqld&!PLX?l<Q`WT)p4OX^QHRFB^Zr#sb
zIas{z7~cUeXRo+4c<ahB+^DT@?@iC;jKdY{oL0=1M&_S}Z+bkS`l=skUj}g_!^!L8
ze)M$k<IlfQ1=7%FFmA&=<NqA)EO)j0y*Gn=yk8A>W<VdA_VsOkAGi-w!`#8t5Bbz-
z?#Q}-e=~R(?f;e@^BXWJVxCTe@P-($nKgX-Ro;gaG()YzC;?Wk?kgE@w3EMzg{NF`
zxaITmuWkz^?iBvzvFFVW9Y?3@iJEV|+3yr4sHwD`9lb-lRGVJ_XZ9c`Emb74)5pD<
z&kM7mZ1*8PRR*Z<8~ViRGqx8E`$#|+;-<r%3l%^)^wwKLCE8(8dGp<7y8qKo6|jR`
z-U)k|5kU%R=^?BhlxP-Epp%v27ROK&iNIQDvCW^1`IJlhRg_$HvTa$!{9Fg+qLT0j
zx+qTWHOA0#Hk=?+1PKvKxe}Ssqcu91v%Kbn_n7_p{ZlP6OR1imdnL>xblCyyeqMT2
z82v4<>TkT7az~8wQ0$sjt335z!LN5F`C>{4PqE2Oa<grP5R$d?WGFhmI8^p^?yWTL
z7_N>9ab|aymcuYjR2aq_hgmoLT*T7t&ZR+xwB6F?rPhuQsGu^hus;J-P>UKwj^U0<
zmHMMbQ*00AM4`mK(lI2B5uQxqrgs2SQ!~zUnRB_Yk2fWWhK;4jmE}v(a*!C=MvoQ=
zoasniCu8XC>X*6>#pgF{2MT!}%lhA#irBCxE0<AXtdx%;mODOz>TT`y5bRm`sxiyB
zQqQTr%tE*Z>e|d~WC!=i?fNdqr}RC4G6@9zeF;>X2No;;6M}r;=!FL`@)_<*gTJ6v
z?Ol<Lf;VkSGkoa1Ua440KAsJND*H4MR4)VNF|PKA253<L|7YicnkM=p-g1W<1pUWu
zxx=L?4WClmhw_sd&y^A@t6m;Vb`|hkq!i;!BoQ@<F;YUBBq$ff$0-#cJBcOH#k5;S
z@$TR+K!X+SO(}@0uO@QW-C!w2!Fe~)k1xhj_EWD=^eaX@?e0nF$WB{#={0lBM>)=g
z(a}V0uDtYmv~yjo$<-Q$8tF;(9Yo>WL%Lx2n=94&;re2=z5NT+=9iT>%-)4BExzIo
zyz`{&h-M*5+I~5iBQO5OaJ4ML=HqSQN)J;XcFQ!p4_W=nwaI)(f4G-N`W${SkB~y-
z5Yke=CcaH1|HL#*P{xc0G}nKBdW5OVes@bX^tyLxK3v2b;M04J!GEe4831u2b5kut
zGhH2iD^2~|wn6<Tb1GaDKr<11II^3xRwF$GC&Xqdwo_~ZMtZ{JxSE1YYHAHezc83Z
zmfY-(v#NBWLSWkuHaJqF5jx7UF0}SO8q|)iW}sM=U2Qf;agGc#{`y=`$=Fj=r{zW6
z5_g#)nCmhI?<yv8qM_7kI^s)Jk_9to#$Gat*U$>{)*nL>B|=E?GhrIPV`FW;QihP6
zQOS94h`uc5_2gsaEBU&K?Wu_nQ`=8f)>6=Kuj9G8&dWYst&Y?R&iUfJbtcx4UrksN
z?AedqQaxP=7Xw#=P4Qi`%+@KR?P3Kh(*l8Vppf>HGBQrV6~nap)GO~kDMA5;R*<d|
z=DK5@ETb~vIJdHDP;84dz}F$6;0I@K!i+@ihM5^;DRnA`kJ9YcG(#sg`qd_x97%uS
zr=>W`>J0%oa9k;YX8zBn=;5~DJlqy_I%aAkO*=zCY4q+?-j}o?AkWNiEA1P@C(J8u
zOBxwl^cY+1EALxvi|D&#|Es1ta*BabKtV)mNqA~zruU~B_i%6b2u4A7Z9^e`*Ko={
zyy7@(DI+bRUs1OCboC-S6!_kS_X6(Wy#)h&N~L9MXrd!-dn=quPDK;I42X}@(J(Rm
z6o{O~gDZyv{?+Zj{PP!jNcbZMKK;Gg`#B?m_s5Wk^-n#m-(2;6R(ybh#|jOC%dOG+
zD1M1tVR?oFA0Mf#(X&{5R5dbY984Z9ffA8!{OjbB$dvLC;k<sH4*Cy(R8G)GgL8*b
zO8&VQuFOroskSjRi@Ef(Ip~yuIa(gdOE4K3#+&cTl?U;CZK;^v@wt{OQ(hF8o!EP(
z%(0;Z8d@X99UFXLZCq~QkR8zkF<7U*A;$0?+MNo})X@f6W(0lhs-pBPJeXmTHH8!J
zi3G)oszTHCbK;vQc+A<&z;@ILd#b4n7m+jc(;bNmchkkVhT|2utUhoCD6Z--)sW~k
zb@a?i?t#@G80uTVch)MynBb5vPh!67l_w)=oM=6Y;4cEK);|S2=^DSX$z9{_)~5)I
zq+(xVc&ZhQF4i`U88<R2NPy2gfin4lb`nBOPvjUJd}r)~VfNP7^*}#8r<oHZ`ry*F
zSBIc=!qh>P-&DR@U#hK5EMM*OlQ(paIBG{wmW<Yai&uM^-R%i-wuK+Ga1wHPJ%6PO
zIW3x#Lv~nYUpzM_n#x=zi0<n{f-G$Gf-GA_j{*ES%0i22W|r~IM3gq!zATkm3p+Ex
z<=Ne}h8s~rTL7Gs`#$Rr&&l6$4SH6fwY4y}vavM-z^|YBPyL~D!oW15chRm4jPpwL
zRRxo2B<BrhY6*!H0+g;8QMX`e-HsW))I0mg7_!qRaDDCAjjc(e5+2c(Uv2G&`*_Y-
zv|nXrRA%BSmrc<@pmwCtK831VMwR(we7d93Mn|R`tQ@hNVkQ1rTazCwjh+ub>zGD^
z-mIkybV;1R(I20C&H|K9?S+M)10kbZ|FaxP_EJ2)6|OM0HIFwT98|CxsaA?r>Rdz!
zcxYK%?*%Y4z4cvQYK`h1aXfpyKJU}=#Xh#~N8mmgP36GwOqs`aR9kek5!lu1qZ<kE
zs_b`F_B}JNe9V<UY4rxf>WD&W?v%6`u*8WcA7*ga6iPIwmB)`gcV0nBePc)-EEa5A
z_5$V97;7#lStt-23Pbx^^wg~WB765(V7g6bMoo=n|DDSnwxouly1)SJ0rkCH^{}*H
z1Ww|;E97@3lr*1|9G{G=x-=iJkTgJoQU_G4@EB-l07<30n<Fz!>Xr!Q{ShESxlF5}
zk}V>%dqK=7=*0U`%>-%=wNpiDePYqN+&32JW0;yrU|?pwa@uFD+SPabF@Dbcf!(^?
zR^zn%n_g;Di02ud0zv7yCbnqg4>~yKtU{j7-Y15B26DQ(`zh{>V#e-g0gEnibrzOW
z<sL6#Wo?M!{nl1JHM;Ry8Nea7T;}R=?A}))VRfjU#xp%R5>K>Bg4*d#L<n$e#Hci#
zY<1Vg^CmFiGLTzDNBdMNV=gFH_ZIWf3Q4`W@r6$M*H@Xksp{(eo;=jS0sdfx0%UN#
zmZ>8)$#63wA+ID~a}%>!8bLnN$www7rM2&@ys=^uW|!cH3cI61VTW#%c_#UNZ)i5d
z&wMqo$-xa(Hyha*d2l@K&F*@)6ETnjXvDxyoCAM<=ER3@5@-*1;!fxO=Ya7&kwk8w
z1o{6?=bkkhRewDb6%9OkJ%fyE>{caloQJ~V?<$Ewpbj|hz<2!b<ja2nN6^vSCH4De
z6|%orS9SlvCHmd00>CDkZdpbD+pMAxN-6s9W)%;!)ZazL0C74~TWcFUE#045kN2;0
zS@O);k!3{h4B7wRWa^fyCAxxvt;z!a{tUQ>3;Q=)^^+QNj{!`f{eRvndg=m_lIn~c
zhMJ6Wh%Ry=N?{REak)|-jKx2^Ye12OJ*Pm4U`%a;gZug^M1%8djP7Pr1!XAUZikhV
z{_EP%flu$HHERRlR{2Q)6CwZ0#GEV|dFFD^Wf~$Od2CxmTUd{W>|aZ+D4-A<Lsll_
z(SFGzA_6UA{rIKzZ<2zDDQ}d2E8P5k)?H*nDPv)Mv$9@H+VnEkNMR8V%_pk=0cZbM
z!(<ZxeB1PU>tP4GKetK$a6Le!Z_Z_7V`ZpiYomKRye|g4tef2Sfto;-4=CE-@%7rr
z)y)A#`$q@*-$?N}Oh=FjjVdZc9W`E%Q@D+J4cR7Sb-hoOZ=snfe<9a+0W;;3UXfrF
z)+M8rOwBQuynCu?dV%K6O4Fv#i2b#>%hAX}yd>7ToRqFy@G-K4^ye2uexO$zAXnKR
zz}66$Tt`RCiM6*RZGLQgtgM71(NYvvi1uuVsuImM1cB0geuRa-VNh?gaTK~nhQ_5$
z(;4LX^@NGkepcgq*VmMlWrk*KCt6JNp7z!y)g}hVVKt`YExcxmK+V)bTJ{do?~Y9Y
zxN%KKpUx^nV|MDsxcEm2R_0`To$xC3Owrl8Fw&SHN1qDU#|o^B^I1!b<{B=%nkfA;
z1_H;l^%|d2dp9!Q=!;g%iS0*f-j7%4%NdDGG6~MMOK-Sv2rTq@1#z^ILh#p?cU)0%
zjRtjWu<PV~#iZ=EeIojh-zHR_?nwungsnuWNC`SX8uuHqe^e7|(jpfbS%~5BeYR9!
zNZe^-R9jT`DL;_c)CHGT9;ea_u4A(=T1e>3!+ZHz-S*HbdZS6t^}Lnof_XsW(%E_K
zv0{vaCe{#ki8pUR)ZoU#=Y((V&yb>ZX^-<-$9CeFtYDe)3RW?bt7B-kdQg;3B8-_x
zJ6|^=pUq}gf7-f$=aXxGr^q-8ax}W$Aam>`L*X35##sk5n(Iik3ac@`H<9Kvt$er^
z4}0T->w0&1C|<S(zyS5YCG>ww4FBd8<ql#a|EnqO_g|h2AZ=!S*+jy~(Lhpymre&L
z(i@0c8CjM9@)zlUyh}kylECV*-O67u($mv1Fc$wV-dj2rQu7`-9g+9W&%<2zFP6l3
zch!pgbxAP4?6doSwN{J9s`_yIP?Y(9UDZ#c-FvGFqWRSXPD@RjUCL61POu9uo2>&o
zdOuyqL*1rpvHpGv%D$lA)Afw27sf4b_tvTFKVL=Sz^C`p^+S%`e;C;?G{dto(7hE@
z#nby8*Py-I$NtFQ)CD?=6fmj3chGQVw<d@x;zJ2Spf}LzzTyn8n6_;uxU`=Ud($2o
z7gw#*Yvts0-Z;oAR&BfUkszAq?dyWXNv^_u9^`n_>nD8~eNm5TUKQj{A!Xo#Ms|J5
zvmF7qj-e;8cM<C3l^!^l>UD|C4^XAuu-hz<D^lB6{hqbmS#o4G-~i+J=p}VZgpI)a
z88Y5?s>R9dk3V=PLaF17fnq@WVB5z>^OfVRu;zygesSb<Mg|Sa*Gdhm+F3~-tv5}z
zN?7W!YJSSkLzjg&?->i~=M~^I!{D{n;h|a_5@0A!^gZM=!RKJ{g316>zmJ3C*~AW~
zgbAxlhB#u@=EeT}ItEc_2<Kh7-y%%X;*8|#X5SfR>7)~W@9S;+Mmv+6%pypgt4IA!
zy4Ghfo*>G-SwGWkwaCuFmU5CN%BR~b6H0V|MUvxLeOvQ8gEq~#DBPr~urTI%=&urh
zH(YkqOT|EXvRBF~sh}f5t!EN!W+b|##O6=V11?kMHUhcAFFm)rZ>&tO=6@Vtsn=c)
z^j+Q=B6>V(&`JQR;kbK*h=(Y_UkzMjbS-Ul&9rs#cnvl6tu#$()fs^49UDWtJ6f6g
z&lj%b2vu`{uH#eGT9h+H#blV5gn*ZJB>M%<z3q!pxwd`ub`sI^jsa|*MDYtip$RF)
z<ZWQo=}J=l1}knNt|y^HZtp1V8}*{B^u0Lc5?y(Nah%-~;wHA1qiCTPNvkiA&&%EW
zHiLz?w#5;`s)z*^au)WVm=8r7XTG1oaw+gG{SH<{HoZNLFTo%LR$bUqI>`3)Oz1P_
z(AL%9{)CAHqg;AtXkN>;*75H6I^oIA<FA{P=r5(w(Vo(@BKu|*pMCZKG0g+j>so#U
zrAO1}O+2ax1#^_(*<&KE{jI81g~Xsw({zAKr{+hYJv?_0G(gmiW*LMLd3s%69Q_3I
zLyb|AavNzfS&^h?`GjD_(NcxrrmP1|z^pDpxMrFEg)7g23|ghDj1+2woB*l#&^Hq4
z3^5D)!PBoPas^i8vtJR56xepCtBxF#u}*zN8JOC2vnMePPNZo*mF>N#>Lh|)4r~tw
z4RGF<X4md99e9InI8w8cpX0l0x8Bj>`(0*v&eAHa($3W9daOJHcmHz+r*FR|xv*uZ
zB~d>H__H7_t1W_gK27$Z$ay^RkR2Inr_G`F!byIQ`B$@6)eGiZoH7rhF5eDY$y4PI
zlUu9=K56=?|4GIp0sjREnCg3vLk}O%|7JBQYOZf?3n;SF-93N;Evtm*?=9;H+DkmR
z9t96N97qB>f1*YTh;cbm!c6Vu&u&$)hyu%rfaFNkLc>N97NO4B<<!%SMt0*SUK%ZP
z6Joq?)?7;XY(GlBuBN!d_G7xAy==KCK3JS6|M9pMGslo1J`QCyTBCb&J=5@&Pl57!
zANnIV;>sZBgV)B8>pZ(YE24{>^HGxQm8yL(t(Jwz5vAbV+lWP$@uaW%W5$B*b3tfA
zTk8r-+)M~6+{t=Jwuj%26b=~~MNu+Xtmm@iH)jgdi?SV%3Otkjh|vBrJLVDR09klA
zl(o4TxP*Z8vg;BV=lb+b!}Fn&&gotczn#oBH8PQ^q+vI&dU2++B9%$F7Z-P)<dcZW
zYVg4Cx(NLJnV$bQ%L8bE?&&J)hWA4O!o*%^C?=0%-grnzURFK7s__SJa0H%uOe%z0
z<VEJ^Gp0R_@nYl6C%eHOp-*C=ek-QbE(`o}j7<oh^+DG=eKWJViFMceQy{qS2N_Zd
zjm6a^zQwqMt0JzKi1nh&UPH;E(g#ra;@%ykl*?lWm(bY=3`aInOF>WSzoe$ZD5P3@
zTC=r$LT+>~LiB|GY*!#STsJ4Il|a?oRPYW4v)kS91xrVHfDCCqo`n^?1|RMW+p+o5
zT|)Y5aRgEiTtch&eurPEA{hQ&7{M_A>U|5$E74N7H{n%~l>F>zXYW5jBK>@VjKcy3
zm;RWPVO!Zob^w-g+f@9yr4Mr}F7WB^2<+c;>(94==mnW&8o<V4smQ{iHnGN%1R14b
z;KibUXHlxtS0tqA%-}2`Q|XfV*&ElyO3u75XrjlFbNgm?GS-AR8w42G#|P%LNl8rn
zTwOUl<1Hvii5**h<bHnXIg5{l>;0a9yKPs5Nfw@aSX)H-nOzCCec&J>*N{KTS5p@L
z=yd>X&toXI-=RHgT{arq=6F2Rth%k-Aa88T#sSxOT`<wOLaUEO@Z(J&i3MMI0z=sM
zc0EvOM0k@iNN&Ox3RN|_Atgg}gdj>tV0AAaD@4Y9nl)23?DjGh#5XOc(g-fBe*AiG
z`j8B*@e%2ASGNHoxg}q8!Dtkd%b=aTQkg-=n{CG@MaWE#)4C$klT4+`(XrIDa7;15
z$^CS4U4=NJT|^O|<tgS==_u8G)FFHth!V7giN2=c+m<?uCHV=0tz0}o-;maRu~HVd
z`Z(qY(jFrtI_Bif0R<6RPhUQE=k#-EVKe)gX9#v8kGmQ+p|-G8oka5?5|O}!xnd*}
zY}DSU3_M+LYNDe~+k0&rZI0oD0p?;;@F))w5EG=CE|4Fk39Z}Js{)K!rg`2L5s=5)
zNud8YEjaZa82N$r)-%RO@q?e?%ci}hM9@7~8_eYfLB?lPsxlT85q1-sn4JaMqYU4r
zKGss1>|1o<HDBY@)O{NIbd?%WsPKi`+b5<BL7CIHREkB)GU|oqP+&AQe%>Lkq+>>U
zahhL*&j`fQ+*})1oNYeUT3!kq@@loLPY^+EDg%YH)eHF&+0&vO%g=~HYhB&G<`|Hv
zh4^y=8`SVDqIJ2z7<BoGOHU~&2Q$YTdNHl%D5nE_({vwerbdgKgZbrDzMZP9>dDQn
zm$uExSw{X)cE1qItL~*kleKh>cmCAJgU+{C5a8To2R-Yc(jGs!t<gm5Pk!W(JiE`F
z#Vn^{PZl^^AFxf5-St}5GE_o<Z?8BYP-J$ewp4vypHEyx$6OpwMdR%I)*zQe(^DtS
z`1T2p+_sJ)Xwhf;kvqC<Uu~w7sk04Em{cGCco+Rz+-VLCrc;Kwao9AIo8#Jy!~8eC
z!UXFeJ{E8ty$AFq|2$_8@zq;i%e~50R6;;V96(j2<N#Qe7eG{L0XE-Vv;LRsN#Q($
z+6T@e9ZLkY#eXUZ&!{x^>C#uD_lP8mr8`X`gmILI{X}As)=l%y0|jKQB8|t#<MprA
z7&07c)T-f?7Y;wDE|h@R3ezMDc#Mngto4?)aB<BrP&`GZhQVa6JUFk1Z9#gvwpFSt
z&#t!*qvT^y>ni5QCi|mg8stcL$3b&xuvkyhW?Bp+^-)~|h{)1LqMlI}?FfuDLHK))
z5(bH8UxFyR9-Lm0ZEh}uS}U{*tJ#?@Uj}-Zh@11=eFJ%yoJ6$)Q|GLdUjLw0Z9$!c
z!cmZc$A-wg_*r=$B1Je!mg6B5!Mqu9W{QZ@+g42Q-I?AVoj460I<U?7$3rY27JJCo
zQaYT6hH<4c?lht?)k8a8g55svR(Ob$-;S2<{MStVFR(3In!85f9xDpQ`d3r+A24JC
zNmDr<J+&%;K(^k`)~I*c`VU@I4m2Cwt@57ly*&L875?8$b%x(aA~OI}9l^z?sO$7o
zybyg%Nliz*1u4U5SO!Rf0Dp;`vL^*=#QWOhYiC<pfT)i972No(Qu5qu=cqlwAiefg
ztDMHci+Z=F+PZCcZ;fX@i1bd!=~JgYEW#`^BP{PGOc-VZ%Oac5p7eK|aq?Nkyw<9v
zutEl1(^tl~6u0owrFG&C_hNX_mGTHTD)x0<rIQ{=qqouqj0`C^`1|ID1CRM;%x0WN
z3;P(YQkM9-7bxvT$_zz>SoCBBzECezVz{9FS+u01iTXb1{1CQni+D}zv8U-H+AN<!
zsGLC~pv^nJ24$FAI~J~9+)N#pW3x`O3?bY>j825D2R4O)M8aE>o+p-?6U$0>uzsv$
ztv^TpefD|ao+jC9>dh(Sct`oRT5L4?fdV7SO}h1X+xJH*#_14TGjiKi2#?-kVMJIA
zXz{*5i2780VC4FW+!Za{*@Z@_G-n#Z=W4jbfoVd3{X?-f{MYE~7X9}6x=9HKmhpEl
zk}~L?xJs}(WA`$c{3yQyO&1f3Y(C15n+;LDT2zSVMiq8YnoBU&Nlc;}&uMh!u{9Ea
z4JdBIh|6Ps_A)4OMS7h$utk26NojFkSZHxE-X=jIeGOv$oVLIWww)<6YkoWGkZ;p*
zccjv^HuEjrqP(FNrNZ_OLp!gvo=g6Q$O}g%i2c`#_LpXPyY><T97=sooQgR*Zjp;S
z4wL@Rj}tTkj3_@b<#9)Yed>B4z(AJU@4`ADa?->iU!?znbw(jNY2r7sIydxhWOa1r
z{0V*lBRad+n>{Rr{>=enx~saO|B9%HBK_h4gUlgkWy~xmVI--jX2>RBskl|RY`=fN
z(0(4UIP?U}_&+?h<=z@II0Hv4<lZs+-xV$c{rw8});UBI;4zo|g~!|nr?UtpL@^L@
zM`V6xLnhqUM^4pE-SeZDS_oE1R9^$6JIxqMZ_!#vY=B~*Z!nO#Ej9dc7O1K<iKhmq
zmXwg5l^&Otno#{SxT{&gfT3VNjYT_3k*7vX9jWms6tLf^f3ly=$^-Hpfd!o2Tg1a$
zaZ3~Wy{7x$V^}|>7=N26kQp{h1ZH1})TP!8qbs4%4a;;y`!}cgg{Si~^2%d-noWx>
zOmtp}b(gy>w1XwATCy)1U!2dcScmBI;f-k8+A_85XWuxFeKfJ5BA9z7_B50ij5)$$
z4wo;8#P(bEMvjWfzDO96reZXL)5?dkx>$@Z3zp_nK0yVck|o8{)D4!sPGAg%1O0o_
zXh{L%u+oT5dTL&@lpNiy{iz_+ANHrCvIiDZNh%0JUvBMBY1VLZ;tE-Yu>kwiXu$sT
zZB#zZ9K%*(F9Z1%n}7w}C$#|Y6qQ76IhF%e>;-O)903#FbwTip77f_A@3u-NfgyFi
z`|AAP!bHEphL*5|ez8VX)22}45>9Bzpa4ldLjI65pk4n6BDlJ?w_s(rRK-A-h%kJT
zsuaSz{;3D=;QJz*=a@PIkn}yNQ^#L-u{X&kmQq5h*4U-MdXJ!WDG)^k(}xM^!lfvX
zwgbk=(37bc(`2(;l{6WvR4aw2gp|+@MNvABT*@|2_xO;WJjSX%%_HP+K|9@CXUwPU
zH=5npJMA*?O+Y<ll0G7+lx~pbL+Z&XRQi5=5G5l9xeaq1SRDNNV_5m5wE=V;-<*dX
zR%}A9eQ24Y7`DPy(Nm{p$<ARHP29P*w%jI(fVDQ$JvW*-wD;||Gg-WIh(<Ftux|%}
znJm!f*&QyGYs!<tfcxnyTf6zqy{D>?Fo~!AeHI-?Ogq@7@QAomk)OVGpLhgnoSw0x
zKi^%L&b@$yz4hz$^ecX40M7LFfa!E#_GX!anCy!*vb-ek!3pl|l`YTUn4$z^l)ifz
z<sr9(`Y+M@kK-@Ay4r@;hURACw=;yl>2d!Q4g*HE$B4tAtVVQ@D@A2({Dg6|ji9HI
z=nhj$fI*l;;np^{g+s!88)v1Aw%Eyq-6Y(qu(26CEB20!I>$HL3(_r$?|2whnGfB4
zvgAwM`IKAnsGfowW|<%uYpC!T#w6e#4-!d!^C5REKyPbu8t!H8=S0iS#&sS}A1NOB
znyu5$MIF$EH-C}kI3EaisPoAkGm|)}Fl?3%^~%!l)F+Y2<an2skdTggEO>bY8G6<z
zkbscIERely1rz2fKnY;V8_TM^>zTipb?uNbdJM4RS8Bn^$wjJH0A>226qr(p@a~og
z*_U138*=ARB(;g|D)G4%@3;_&78zK#x);#&Rk*8TCXG=J<aF8Fu3n-ob3<mTif(Mi
zOcifrp`iBh*_uh}tw@S|7Zt49g}h2D|8s_0{4+uCmDgftmYI4-qSBDv;5p&7<2uZE
ztp%>ZS-DIXTrJPudw*Y(q`mDm6TN=-qSnmMN-WM1g(bBLa;frHs!M9jkeCawg;EH!
zAI(moo%TeX*$^*hW6LYY6~tB19C}Q{*Htyp=Zh1;1JgAXd~*q=u%2BY?SWlfg2bb0
z29JYLeyX;{6EKWO)=6LTH7P&2>G9lq4k7)NsXatkRxQj;?n2Bg%wF`GyfT2vI(;0e
zdVv3FQPbUvhGfSS>J3l|KE4-Q|2w_YKS=K`QL4Atkk4TM@`R4+^4`_c-pLaxW)*xi
z0=D2Pv33t$10h4SDs^)n-V8L~4EsUHZ<Q|4j}VFj`yxqlzGV9zesLY_#t_5{jMx?x
z;UiwrKBS%IlOl<jwRmQYLenqvN!()2s!#`1O@oXQx-ch{gbLu#p3=+)YG-ATR1et%
zu$W!D7wSP(Nr)P1YWE?uw^Of%48F&9FtW;`C*8z;6&PbpXnmk2s<<8xThcs`mfF=w
zuJFil?Jzs6MpVMaKhuEqZRwNJ0y3GXAM)~X8EY!tP+;z|nX)mN#%-2Ad}{(2XLp-+
znN~y>nrL4MF#C0Gmlm2lPA}f<dY50UhGu7~y~$B}A}WKMXHuj$t7sJI$6F#yj%1u}
zf|y?hd~ULZdY;<wguF#*CJ*D=c=B8ejh07dy(`NbrD;?fN)Q;h`Uw7ZrYF<WU}ZOm
zr+3>kr6Vva18k4%z3q9}BvAlI|6Y?MC(b1&D<~l?q{PRo&Lb+sCocQ5Q~Fu6KjfYu
z@aAZ7w~3)zCVm!uM=QFg1uF@PGk^i8@I0dvJFfh_Q<}qS4jfFk-v~HL^LZj*%?y<-
z0qyqskZC2JBi<K>XPm~eD(OoU?pp7+0U@qLib9sCB4jw%WsUvX2}F2gSsnV8Clsms
z$WPL@d^C*`rsaYg=N|2WFO-b5TvTUCGEG-|#d#8&3DTdQWhuv)O~*`45F(Zm_6H!N
zhINdHSETc;&5}UCKE7E}P%H>e6Zxhlaq&Y=Lg;3C(<mcl#yzMNQBXG_YjkTnArK;l
zPt+p@Xp{_kt)7o!3+o#=<^@V!Ix>X4@3K90e!cmwG3m7sN$7&K1^0`&Sc(gQu1|)z
zo7&|0S4694ShrahmcN+cR-pXwUZeCd>vH|Ctjhy19n4MfZkeUG8qV5xcsrhqEuf$Q
zOrHJJGfkG3x*bS#{VAP+*(EeuQLLM0<jdLnXc#}E0dED{-&<QhL>U6<Cb=w`bL)2g
zXy@pxZoh87bQS#U$0XIU{;3L;E3VIxt+p&<Qh^xchy_3FTdQgnday8GUucc`mah07
z%~O2@_T+7Bn*`BD7>`$(sY6DTN8elVAiA=b2AH3Rg0~3t>0knCjV*?$h80G}f~^?z
z?^?xXp7JDSWjxW7|H^G?ID+Cc&44KeLG^spbMl&;<~wo3vxTR!T`X6*3&tZ0G$N*)
z#vfYq3*C*#FjTB%s9+5w!FoSxk@~931mjt&D{LX9kWfEXjH46l!Xh?tf4NpI;HKVJ
z?X{<*Qxx4CIO5=!_=>7c1<1Z1LnO@x4!@0*fA*+R!@<ayVv+SpgWPIuOj)3TMr4h`
z3(!V`(W2Wz?Vh9tM)+rT6OXb`%jd#fgNWhT1u6?aRYlF2vrh4xbiJlI3=3Xyv5VG~
z$9BLCL2+7I6;euVFvyeStG-px!0EK-U?zpwE5o|>N^l--#NPToOQWRBTqr(=d>X-m
zo!+Qvr<HZpVH^Z^?xHUeRWIMOP+Qj`)YLAWXBKMb86&ImDy)G;n5f(4J8S&joq~o}
zNM7@&$u$2lnQzo}>RWc-kGtJ|6lC;|7}&y_m4~++LEpw$cGvj)4<Nn{?!od8>(XaH
zjA;Xxwv3~hHkGxmjg6t1zIAlWUBl|Le}VkGa5`{(C~u&RMH@nA6S8Ls1lbs8Y&t?9
z0+L|Ve!mCIQx_u=%ctb}=E$i+slcsC49WblG;Pa8!%SY{2XJ=8sKX6c^9pRY>*+f9
zH>W&Ynk6g445K8n?l+HUyOD5=D5qo!HEVjCXTk`4T|+JBpf8PMGw8(W!`h11Q>?os
zcClJE{TEX6N$Bx~pfGhVwv8j2aRm`uqTrFz#vb!Rl1_o|2U}Jegy{9Xk8#ZK-r;76
zM%g6ZtVqEL^2sR;b@*TxM=7KW%ZgU(pffT8Vu%8M4d1~9i-(G+M{q9kL0M5h+F25P
z<xPdP8M%01G3p>ezt@;PE#>D?1FDp2+aC%n)X+m9=UToiLtiwsiN*;RbhnMdz)?FF
zFziu2_FD=TIN%vlF4NayX8a(T9A*jODPdbmXBe$>PpQlLp+kGH5f;$@LHh&p1+xm$
zHH;1EXJYmef|0dz5N}^}nBCX&&G4j@+gcu`k06penye#=<3O&w#kzg$yB;^G6uicU
zX7xoUVA@rJ4-ra(+I;%_i8WL``!aoavBBG!)()foVvQon-s%d}Q*!UBZsyV#q3<*M
z@hgxglPuNydWkO@;cQ4E+QhqG<-41^zF_<QNlEkvVLgW*(K>DxzN|2BKEwp<sb^7B
z52HvS;8F6_8sz0cV6(rEHd68z2|tm=QnBh9uS5PR>{4UmZNyMgH|sg=Z^c&HJNuz2
zhYM+^u;bma48}LyFHv0!+p&vR)k44V>(=tRH+dC2FMGm&L8_B!anQUHwzqHnDwoP7
z(g81OH2CqeQ@t@oU1V#ayu-&L=HVPDJRmvKaCW)<&))kd2vN+LTAqte!FdV3KcEZF
zRXkG-(GE|cShXRF>L|#{ANCsD1Z{$Hgfxsv$qmq<Y!B>QYFD<5*3Sw~dbenR#YGF_
zdTFCSKinL5AezJ^kNR<Wi&5sS`6><ebshQR*S3pqSRgCMx1G(WH2cW8prLI{;frtX
z?nG{|E~?|(1{><Hz~RFN`|l)jfE+7pV5O^RqyF=SJKXeEh{T(tPTjH_jicu6#@8>X
z$6!ze`0`xnL6h^9Zxb>I3^M`MQ#);_YtY9pW?QYRH^MYA3xh{Z&U=s9bwaIC*Dz~z
zkL1v)g1NMx2-mHn(r03w?j#eE6|w~@OIxX<CS^?2c5%K-6C@gg1v43-L?=Wr(^Zls
z(H^5DezC#GeIZY`Rxxr}!HFmJZPFv60G4YjNaUO)pOyK28injAC0I1KpGpEM$ny;^
z#t+{ML`6SRUT1udb4K!Z-!I%_rfyXBC=qj?4}mPCk3f@;wnpEJyD2iN_8hSX@9gsA
zxh_;71vN9tK@^5W3JoS&8U9g0pA6eMu=Y$rp6Tthws}3#n1Jcr6`9#IRyg3zwrcdX
zk4=YK)}x(%sqS#^gU6!4G?7l7np*j$%THG9SR~6h9gwkTfDQN)wSD;G{|mYZ>)j^Y
z6Dkk-Wd_V2=;1?cOj?XK*;1daKTWGapfX!1K#+VYYhzG5z=(Xls8j&!0EZyAI4tl6
z@@xX|_n+7GZ%`YWJ9(D-u;}YwL~XiX6E{_}l;qs%YyXqt9ww%OLV_aZpL%t0%<mQc
zJ}hegU>*tuSmeEW5qST<YY0ul#3TT#PoF`6l<Yhb=nkc)DvX5hIu>>A&GexUN}CO~
z_=!A;;psjVVnhT>w~F2ed%byo`%u_7<t;TuD`ziPqpUdO71E8&Y0<Wnh%BsVy7Y<2
zp02&(E)!)}60;@$ikZ<Rp8%=ru>g@!LS=F>QrZ`9NN@e<61O5cQ@}orpTu|C7LuDQ
zh5j=Pe|&e`mdaH({#k%x_-E)0?$o|KO4Mk3BLq75SbNj<4*CF$L7YyqW9`(&je+k&
z{h#sl&CCTZgq@jNGg@7H8Z4)oN#O+w-9TTI^hGyg3!4vk^beE$D7SFtyfC_UgWsxM
znPY||JB;=~tKmPnyO5bBMwqXFU&r@e(f2UC2_F7_e|M$13xfMo^1Qzq1e8rAGw>uu
zI<PXE_xPRhV7G)J*#5r${$QB?-x)&%T?G8MqffWd{AVOT?CAI(F5%xxMl<{!*aIwq
zL3)=}vb7q1S^~oi=paA}Qw~s53X97fP!Ebw2K<Eh4*G7{s-jfgeS_A(f2p+=dE|&B
zBh=k>#0?N0hgys483AbC3&AFu2-lB&<+309>Se*0{Gi<HrKxoa{9)M7P(m^ZF%J2w
zE4XDJxisG{5ga0{THM18SWwTsB|qG?e{*<$8aN&O6>`o0Wj7&Kjv|VR9F{w!URDm~
zDh6tLj6NwK9ohWB4!=!DLEyLPs6(#<3@nD|_k1LP>AQEkr0D<il4$NmrtasXUqzAs
zWQ+e_D9Bne2N-{+AV2J^$bgmqj>i5Yo^_8v5goT{J<b2T)4q_t#yCQxO1w}gSt!qr
zZggI>)APA|EV>tL2O|7uuz7<gBzP|g6cIa4scUX3RfX_&)1ni5vGjKaUF}a!>Omh}
z!arK%)UMHN=u}<F_qqPT4PHMaq7T1)mKUS#9ivIUH~WORLaf@xWxHEPM}My-2I=!*
zus`*zN2CvH8ECI<8X+5&e|?AB(`u~N%5~9+gJ9d{%e_SR4L0{ryX;5sdV0!PNR{hu
zG>xoP@2pYbT(+Ae&6Bn3OujB=mX(+$2Zk!xClA^0X6>5YTq1oLc!hpW1Bx4Qb^iZY
zdk5&c+ih<&w%s(gZQEAU*tXNywi?^E8rw-@+ic9{uJ%29@6&hRd%pASan~6Cm5h;<
zH5TT4o;m09g9oq4lI`*QYpvWh77uK3iyE|Nc?*{&*9Q8lu>JP8MkOW}YX8|}2j$ZS
z>@T_(@cVv)SEO>Lh5_G7CxlLWU|eV97lCalDKg^yO}F-!;GEc8O|Rgec{8LyBfYH-
zn=z$GGxxhJJOX=>DFMuR%o5k?hjfk?Aihyc`ZYpBvQA^7!@T+k_xi5<xM`cEmYjyJ
zc9AX*=VJZaDsVo;q@J2p)t59JZHsBuB)<yF-Kq@rT$%dbVpGf>gx0V+ex)F967RRb
zS?tH+$w9$~H~qz;{j*t^Zqd?!Su(ezKv%l&3Z4&QV5fNM$-NuH?F@$5I9J(UGIS%+
z8Kl02k9q9Dk97Ck!(c8C_;vr76EK4!8%&1SD$Z5<Xpv&k#VV*)>8eqO5`<aq2r>bA
z32UcL79<{a#~Ekywwe<#i{d7YMq2gid|d6-W4vVIaPw^_KOM1U8OM<KYE@AwH#<sA
zx5|<$KDsZq{JTu|>pGX4v`u4J%)o3piYu}KjVrwOHx>{T%}aI@B&L&Fgmu+JN=3W)
zLp{y19fO;GXiq*g19B@!M2?97-L_6{<^W$sO=lysYp6Lp4q6@HkOEI*pRfL*cGV{H
zkq4|-jytw1iUr?T`Os#r_$sz~L+19!5}n}0s3xUKD6W!v^KxvGv1pyTFGGeE+Uxwm
zL%(c@Z6h~hW??IJy`Bp#k+Gi+Fp{D<wS7S~O?jb)ZGcg^!-S9Y;u;n4LvgPT@jEV_
z7gzc6)mL2_L9Cij_Z!Bf4mly=o`)I^icWdVEH%;xf6hn_F(Xcv0vZ{yMQ6c+<vU0i
zoDVm_D);fsm@L(!G%aI#k`P^Z{+(59Mq<j<MnQsd5%2l1a|?GrQc0%?*v;_QM5_(=
z576ZhyN7yAFf5B{xnNlQu+1*bXeyQi_so2N;uh9PlzW%KrI6!jW#Sy;n-E7ES{d9}
zvY49A{2nCbhGty0+ds-<26?jd8p60F!D>lJ<jK%b@T~sC75n6J8;zB!lGxcsET*O%
z*ZaDC(b|jJ-nfswD=C#N3lw?MeojXto<bq~<<)e`b;d4P;i}Yhq*SP@3FQ5v1=bby
z1cjAEm&7M1Wsk|$N2XNI2HPS^KX{S%igT2aC0f0nWF##am*~@QG-KmLt4>kN*=)UZ
zPW|V^I$CUpjLiLSFGTgufz%ltklCl{1Wt?NGZ^-3;zPN&(ehJtek*k`wz=fnDwFMu
zO^A!OdJT~p45*n|2C}yv>S<gYZ!L>e7?Cr?{KH2P##UdY1Q8XcOh0%WlZ#C)3Uvs1
zU7@K?GEug#i%SP3PYX>CEnoXh+y$3Z+&V>CKW#PGR;@!OK-qT);R<aiDY(hO6hTe|
zA+M~t+F-h*d5D338;T#Z$Gw%JQ&hTYCx+qUDd~_gH3>-hVaf7N5Q$S@BZ6bnV=mrd
zMrnU3zH3B`*Sm~z$Lkg^o-1)8xuyF0N{P<$DH>nb^f3zlXHZsWVXshC+#|6YZhC^T
zIkTu;u}$SYFrKS{b(KQ9<W9ayItE2YRY>2ex+cXOhD3&Jqq%*Kq$*t2aBY)HiI?Qg
zxk@^l1{*a30;1vh&N36p56QAjYIq6F<!g>_;SH?@x_oghuG2-G3hpDB8O2xDP-W_K
zQ+dcB9U}95yQx1{VDi@VFgmvb4|vj$y0Bb)>q73sjo)o?v9i|nO+T!k3uj!<$sP<f
z#_SrzN8`M~j(E1;MoGfx`XkOfMH*?qtS24k6edm)UttAUY4#;Gy;$GO8aG&<dvi`~
z*&}9<?T*h34qWORSn8&3S-6&(!lpfq&SyksJN1Z<G6W<mn~pT2VQeIX_w8MS+it2F
z2KLFJHGBSGXeIfvWyhVh;EDHfRuST(*A?-?#)O-e2zBZF-3t!1u+ll(Iv1vl*=gzQ
zA)~sCzQ)AyQkBZ278`_&m-(bxq#y!u$vYA7N?$WnNJ^B4jC-Cx`-^+*el{*tCAR_Y
zmoR*IF$#Qb54=@+{7;v#dg`e<TXiND=o+HTqs<)OIJ=)9ZNb=Yw=2IUQ?QwDhR74o
zEE=g%SZrc}(=TQ!6)~rg*HTZfKG<ls4sJ0$9{0kT>r$)xVH@#J+n1oU?P`2+)F^1Q
zRmHjR*G<UtT@Po>;0&;76G2J5cGma?^!yV?Ion8lB#Fr>@zfnXr23)pGX+)xeiU7F
z`_|!ZwZ)9$4&wC)H^;*n)fS;NRfq@uf%wUA#G<@dY)>$@DnV_F<3>V@OHHW6aR$)a
z%kMJ!fH9sv9DwWT{P0H&YQQ82*wp`d`;Sya{}MC@I6(bs-h-><eS-F+Z2MOVvm+QV
zzzb3N*{C-n=d$z*ti>=YnVvUgGX@ahz=S3pC*5_{H^6qbGx6olS~2o(9pVm;RT{<0
zpDWbXHx>eniP<3TGW##S85F#(3rimKw2ja*D<^45Hbmk_=8+T$o<S-$fRfQ4NScdf
z4U~&?yrf&8L9})_E^nD?V$Cw-CgPDId^Vq7Dpjxl0ZxDEQ_;aYl95`@Sqs1V0Mz8O
z)|=QuBxwqIcn!p};w#itvdnQ1)aCt=Ydq;AtR8y%dxFrWhn*h2m{(YkXDh{#0Q%6T
zL2(jGUPaslbM;>!-ZA}qwjY2`&+>n4POt%w_*-+wKrdtK`WJQnPx2NbHEH&%18Mp6
zj>=*G&RkCaH>>{>drO$qG8Sa$dwk?8(ckD>|D86UmhPL_e|S(_a1dx*l#IFh9Q6Fy
z9i*kqB#n~bpkyulk7i~2S->;`@PZ2f*T0&Tzn6l)D);}f6#S*v@q3<-soe96>CW4%
z>*uhNq;3@QH5jA1<OqXm21bOsphJX=F-+7zJbD#H4FF(wL4itYu|lvn;bFd<NQeHs
zJ~g`d#f2&8FiU1=L&|-Znlwu7iRaTxK7U_N{db;u3u@G7YYwcO-TZ)N`C+>&FOWD5
zbXTFO(|Bb#7ZoZ(Sy5i0X+|+(pB+91XmUKQkMoEdYMzyNOlsHEbnuH#@RRC}CW%?l
z$rfrY>bBS)Yf+1AGMki);<V{HpiE;P^T{3A@2h36x35z8t%d65$Dv4b7e~z?SlA<i
zJk^{UTRW_m#@o|)`B(>rAGUXsPy)ATTJ)upu3kS)!iMH!jtw|#2jOZR$B+{83bm*I
zxRfu0j3Z67k24A0xq^%AkdT3pz}N~Kpy$1-y<|_zS9FBfyMd!pKKyn{v;$wxDKl57
zE2ZWeNT6M%WV@q8Z<s`VUbX6nhf~FdW}8R-0|K-!bAO9Q5f*QtqM^(NLoNXVrGTge
z9`cO=Ml;|1Cb7YUT<{7ZacROVGP9%~m7r2nb16<DnZFI2-xDX&|LT?o3h}}=E$_`Y
zxlB=)cDz;Y<;L9+HUW0TLsl@q!4l?PT#a;AYw)h!anr@o|EKhRq$=VSYNuVZi@@XM
zZ++tHFzv&2K>SzyF){zU=JdZEi2b{@CZJ^pIQZ)Rg>3JLSCscxKpV=g&dyuEQ_ytG
z)#)#9n28z>RtUR0Vvuvkh3a7yK6FJSK~FEAfLwOte8_P0dB@l4a{V|hXEUnt%;Sw5
zj-S_!2wpVqxbtYFC{*hU1risCRBlQdsA0SRbf)@wiUj`?snZ5ct{;BO)-fIC<TU8K
zPEv-|b8273ZduDWkI(SMw7J!?0~DbuJT82kBJNS5TTm^My6G=D2BjKF*nzQWN`y=s
zTFJDNxfuED>r4a7ghlJlx)|WOi+V&je0~zvJrUzOvT##v7AEkNeOCOG8gw@~E;;gR
z<X1R70g^mB+c7CN#hF%^!RS=lt37IHGe_qa8vD1O^sn;cqgoCRS_gB`xZ=6PWyj_i
z=L16@?WhQ*(4WQ1xZuY&Ia)sIj}~eroKQb^6wTmQ?T?x?n5~|D6w7V7=};EMB>&+2
zT~GAHBOJbboiWB=o80+W;EZ!y)GENhB$ao)AqH3{g=AlE)1(^8MrmypK64o~im}{>
z#M>eC@ipWf(e&vzl>Cd~T6ZYm8!q|d$n)=1g<qCe|6CIOKV6$7ZCv!N%#Hrbphnce
z!PeowzVS@uO@I|SocG4h@KX5@u#$7BcIQ2?ogu~^B(osy^|8cClPHM<o%kM@9UpQ@
zO*JyY+*4s(?t4?8Cg!Jvw}gOer+0Oq=JJ=N5B20Sk}J}W#5EhKNLm~}zzX`Mk2+kq
z5w*INuF$1tVr+_cFYcRu{_GKKu4n$9<$uT?NNNl`Jo{X+6-XJDVTN@9A?&*MB210z
zRqD3tOiH*t3x{b3BI73z7RK(o5Q-2H5|JRg?t}*!&}C#eT<xPqaVRSRTPz~DWzj08
z!!pMN8AQ$l{zZ&%(dNjG>8GkqHw=GrHvHSt+gfv}WD4+S6Bzd@U>~y5Q3WiqXP%*m
zq02^@vUrfT&h|DY&)l-ZjMFrkE#y8<g2P0;(Ui&IU_4rm{a&3#J<VPN%d1h%c+7SE
z>KQ98<tj-&%`GA1$&10JkE)}rCzgCk?KWC-8Pwi7{1tb>o>y@ctoap*<U}J{rcxG}
zUq3U*_-MxRZo=m2O(O>MEWC+=ueg**tG<?twrJruWB65#8<`|Bn8ke;Q4|(|9yjs>
zuMvIH_pDkzYk!~LhZ`$Jc?Mqgng#Fb_^kxM#-vVG2Z#-`|1tajo$PDi=;WYp=tLm<
zi{z`z&Pp$7^xLgV*7%nSi!RgeX<enNHGutu^b^Nh)cCHCN>&*JER;~<TLUgCt#(S!
zqYCLBOz^jyrRiL%cP|7<0^r#?o8)W4!<+RR9#>P%2vc|)_H}yN&dxEg{4DE7*sF`~
zMgoDB-LHu{-!KZu7n^%po1mF#A)WH^Qe{R7uu$BNm$~Y$YfVDiY1S9QCtd}_9UW!e
z1Z>)&Js(!;@p~9Q{NUvxmM-(5l2F>Ma&6CTWa+I7O={YfcY$aOY8N&*ci?FnO@V}H
z{2W`=<jxKJ6|U`-ITV&lNs3fddA>|TiS@(0vJmnk$IIy=&reRV8M0p2QeBb&5?Rlf
z)cybg+wPL@%e&4H6JPea-8)0)V|y8bO&{^m^)eApweYZBMSLeCIb6mq&tsTS8sQ_!
zq9wJ$?ILP@)u|yEnISH|hk>oq<jV52AM(CDQ{y7m4TWG40<1K5vEm1OdZO8~C}J*T
zo#)6Ct&gSS;kCHQO~w}W0TJTH&X>@i;%5Ew?b1zkm>HP6(yEc@)4l=c2r)D_{W4Os
zSfkbg+UMmb<Coo^rd`=96MAh9J%+auX}XsZsFLHA(ANZ*toi91N3=Q^?PdH;tXel*
z>t1n5_KvP+JdASX_DwkCcS!4StLVY*lrcPc=3A#!KY2q&ps^3_kx-Egq;r_<F|++t
z;BMhF9Av2n<b=KwCF(yu5v5&9cES!}wH{n9phX{YOBWw9e!cK}^AXc}+7bUSVN(}5
zDqj6v54z|6A~LKJniRtxYV}BUe-rBbQZ{;bTWw^gM31GolfCAEK_80$tKTt*576w7
z$>W#vp)I~2GAnNtioC2P<Uwlag&N7q&8Wguc-?M4t2QVLip(3k=#8G?x@0;3Qnt12
z)`<)QoU!;q{rAG??<38BKjZ=^+o~8l{t~tQ%|ZE7)RvdJFm`U|Khv{CK^lJfH8hs_
zqf-0(3;JKoSeclA%U4MMcez~}*#CGo&e#gp4>LL?310h#;;5Wdp`Z4zD$`fUoFSnn
zFt@TQ*Dt6rwJ<mLAL_h<e(&|aENbKa$9MC;IL2cAeQxpxKNt>BRg;$c=Dk+T?V&V}
zXW$&ZX1o$@z9!D${3@;=wUDT3m>a(>Ezr*m4W&geQ`T~@7Ss{UtBtUBbN2EN|6lTz
z299eN{++M%pOnx{ziAYi%Gv<U1Avc<x9GqunKL>Pw`f6@2I~kmWhGY<O-vlDT#W?)
z$|`Bz2oS^dixyiMbK7z_f3crzO)+Y3*tcZuXz@EVWr*p3+#hI`(x~j$D%o9rv8z!{
zJ8xJSi}d_}0P*u_d4#*)jpLEaPogqhoGzivhy=(-nToEG5O44&=XGCLy&}txt?y;t
zM;kRFy!#DC%`zHAk{}_aCUaE0`%cB?+Xfx!bJw8Fsvhc}R_464=~}~!PPgcZU$EZO
zRC&W~uRStj&siI_B=syR09K-n>cf>ph~@irg3Ol|_g5-Lfx<P_U@v@2{-3{8Gm)A2
zqa%q`U10K4p*pXRG9+U?T;W{o?A7npW6MuI(lwKW4sPMNn>eDhKuocC9ZTW|>Jzv4
zEUO3dBX%!I)kOCPvz8n%$fbDG0)!g;9fZ!mg-LhF0c3Wyn`e0#e^<}&J^}9FnTIR$
z0;dP*iOG#6<w3Ir=Fm#|bHSg$2)o{F)T8ZAU0`xz_&#@FMmcT;^9$z}+`022Ne-;c
zKVm=}p@`-)hRa=C{;HlaN>$%AQW}qAhVa{+k+tgZ$hRc9@M?I!C#o=~s^NzWB~Jvs
z>k=K#@$?`*_O5*g-rDr}eNd7r%ZB>za*6*@693*Z|43ph@&6Y0DRT||-!o8to!|U3
z@^J{rd03fw^ZOSRrn&)v&xc8Zo}8+oV|9vovI~kPB}F3#UrHm<sCrE={p+0M$YFA7
zguZT`m5q&^fq^CH^k3&Dwf~SWh}(`2{iQ+kORnW#4dmZ_t@r_d{d=|eFJG%)rwg_=
zO2#%u#ty%MTDA`6U;e^rDg5#|{3|V##%ur>EuJx5{l__wO2JZxcrs&TVnh<(^rFT9
zmSW$yh3`ZxlnRlCtw&w1l2T2(8&m>2hT`?i?c7=&I>V}td^oc=p!m^{yW@Fk{DS*>
z&%2nK76F#q7thUkzCE>|G&5|#OYiFu3!CtMoZQEvj@CI0&!YRU+VtT|AwM_RKSX_*
z@enf6pd3Dv*|bneo;oVqmfVq0<GDWtsdy}MjKxI35Xhl-yE)aTc8%7BE=<vbJ7B1y
zLJ}*1yO>E<hJ|RbrfMmY$?8N2mY5XMv91z`J%KLiP3AFv2O%rTfghsN0>LPRpC00r
zaxW@m+c-4W7m2>TnPWq7^W5pk(uh~~Sg0UGSkO)=gC}z&sWlDTA^8FDV?kJz<%0Pr
zhX0A};XwV95{m~0J>_+HtMbdTq$kSqjT|-CMRc2?iC_JFuk8gH>LG$q4?QdT`irsw
zu%}(L(1}4!IS-U+<uH4MEo&U4Q<NpsdMm=Qy5$igYSPD|cFWC+Scif3FRbb73%VS(
zn%_xB{O}t>NEaSOKAW7U4#GvETyG?J%Iw@S@IE`m;++pvgB;W4BvG0ZxuC_LMAflZ
zZVbcA{D^(~G$N%aUpX_iHI#z(`t*BJwRXga@k=$g`j3k8?-}vG*a$d(?`nVI865sw
zLi}HC1pjY%hDsLt4<gi``&inGjFL&n_6t^mfr7s4vH3y^Yidiw8iJw<TUKfOPIEGf
zIbnZ5$fx{~6o03%{*o^HM^gMdg_VUK&>=e+8v;rRfWxh$t+Rt605$%*sK`{Zww(nO
z%4<Kvsj>yIl{b<Lk0T)}0;H%vXqJ0btnHb}DC-)vJAK&cGUOgfRuvN36P|pyU*mO6
z;VVS^tfiajJ-w+N9_C1`AXr3zzwX!HG2AVAKtQ_QeY9wIg$r&4cHu6!0S5{CVB~cB
zFf|z*(2R;pY3Dljm{;ZNrlG4k+!Eg(wtGYpx)z2XQ|Z*8tk3U6ukZH&Ub%&82kuWJ
z(+S)l=73yfeE<F4DGP_sCLgoU>Zwz(^+M?j2P-tsr!nyzNJCoJoFg1Ziel0;C#=@5
zQ+$hcpf74qVV>4d@wazNQp#08O_XRqv_QS}TB#&h_!ci&Cz{^bm`YDjh8OoIqPAgW
z`4>w(n8H#rE_^vYMJBh{ld;_~^`QhgH|vT2>YT_l>d1NZt7m^(+IEhb6=GfQkIUs#
zK1qOVTKC;;^<J!B-T0Txb6;;e=B`!LDS9)FEVO;kn@?Q^FWwITcR%#lcE^HL#KM2-
zV##^)ZBh;L;SRhVYVd(#u1{4R;kcDB&nqC#1KY35194O1|A<JNuKdtdq^00q4QA7`
zk#6(&7lYvZ-4(0~5ap(SMEQSGBe48l_y1lakRef&7OPFv5jCo|lSSR5wQl*V4v7su
z<;?zkse(6R`L2^3vh?umo#A+~&-uhi`*3%A2ICzg_<@_>e7}ED$&B<Va%_F1dV5Qi
zDvi1o`NK~Z9JsaFgnS=*sNjGp)KC?Nx9<LLbd+Lx)lwsYRW+z!yUKw=t|-xB69ayx
zv@bpB;gkEyf>K{(gNk6LdQz#R8dQ|U97Gq`7FwkMBI4T3a?0k$T&r51$g(L%^ptN%
z+2!AczWcmepwvYXrAY#7QCC8BYmtPxB|UoEd#vW9I<tDXSwzMj_8P~4y22f%SvZh0
zk9OI&1#@`Xr+8MEmso!KQVZpemvb)r`l{$+4uqb#A2c}3I^aq(3x3~=bU{zzby^z3
zQ$4c=pFWGoH<|ODwHP-7-CAKnFOTg_DV9|N>brd^H){HqR4KY7FB`}&PD?8a-@>Yv
zxZ&WOldVk!(htfL6UF954Oq=JE`BVX_C|U8tzyGZ%(z>+pge|%r7lMfF4cv12o$?p
zGBcwHK7L<#+#%$@&7WC{iQf1<XTvB<e%HVvP3Gk1kTAjw2FQsQ_)=WBb^i=4BMA?0
z;Nx(mO=o`SQlXQ$1H<3`*k}pq>+=`NZt077_9h@?D*p(XzmH*v|FwoFI2Z#IT3to-
zo%HFMO(cXJIow6)1OYciD??x!qS^H@1vzne7;FG)4+vgTLPQDhvjK2<LO}rTyIs;w
zfq)2aBt-;O+*anb*KJjYT(YqYaWlr?@fSy-p|=A$Cc`Ah3Bf#N7)-klzGCfO+8P?7
z*4Psu1sD<p#;?Jym3$hhj9;a0v?vf86~;?XDKGK56fXP;++0~!qB>83n3VUTvhO#^
zm0CNr>Ty3_!MZw48+CTWXnMa<fB*bAq0yy3{^lmjLZ`7EfXG+U=6+)$*<f<uF0lEL
z-9`(^$2CGN->YAHWjBU@1MkMW{q*s&>-{IA{RTXoz1d>au`cK0?of;_qgFs;$Nh?>
z^1g$64}kGtdwDLD%P_OJ_&{i|Hrj!{xaRh9fBva|EviMQd?Ol{+oiO&)*j1oU07Jy
z$NTYW`*X_8Z6;Ea^=ebJX0wfK_&tjl1qzt|(6@&IGlE-9(egHz^A$RKVO!lcr_#RM
z%QWHJO4kged<MhnkCTd#9lEb#8&~d0W_K&68Z%Ahm<DUw9uF71X3tu9tSh$jW$e|u
zU3@fy=jiVjiP^PZyK2Rqo$nN9nqi5l(?FCTyi(XqlD6?m9#W>zFJ8WX|E@UJ>aYn7
z49`oERmb)ft3Y5)V*13M987+Fs)x#It;PQ2_IMV*<7SeZek8)V6N}SDC&TpvWhBW2
z-80|f?5yLM-MKIUdtOwSix|wEw|mq?v0P@Ewz|4mir4myj&<*LhvKpi`*_UjS=p;6
z#`D-^DI?jQ>-=TOqWwc9HVw>9TWe2V&({x}ChacgFZ-N{`=(ZX!SK7Xva;;^0XdV4
zZdIKi@EXt!eUYyKZ<`4#UP5<64N(tNM@E83<cGmS!Eq#3k8_X9jzz+CK)JwyScJ#i
zG=0Jic-9W_TX0J^eJ7_|b}UPgS~HE!zOA%p4RB2Tv&45ikt{9D{XiVBc=DDH!dUu&
z(DQFz6(*RyuLTWeILxJikhL1O*?k)5_LGndhm~t+;iAHWlxq(lf)vjT<m7Z0q~p+G
zowU&_aUaPVA^bl~$A?1m!mc0_E2M!4Y})<!m=L^a?}ZgllcxHWRd@42a2yT+;iuH=
zAeh<{A#g~zYK;Zu3<5MQD8dup@f;=(S>a}%*3DN~M|3e8j(1@_7if*V{#fyGR>wt2
z@N$C7R)9dLf))+qMMaxSWmmlbHM{X<r<dVrN$TB}Gt<bW)nZmWZ5jdQ-f4kksp5f-
z*y3ajMg|rbQFZ6@$uSfS^9jhZuYd@VB|W?!>yMR!J^0=uFvSm5>kCv52U|S>rfKQv
zrVLj&kB<y4r7CHVZqt|u2@5K&%HOcZJwAO}lpW*wsHv&BI=|GaY{7k<ctBJmMHeL?
zvW_)l!a$}8O9sIp&jpodRy^?36$IDo5@vr2Wg~=n&AHS6GjgXoq{b|5>KxaSM1zGA
zX<%Vt0q@6kNx%PtB}1CO+}0b}IXx#*9Eg5f?J`R)>-wHPncDMd$pG0&>*B(~Mb1}C
zSU#J()E?IUJOM@<a|~wFo*yenexV{H_r!X<NJS85vhy}@7W)Zh+ch;gLI&Nk4C<`p
z5y4(isA^uBNdl3Yqr8(H)H4t1+1c-QU%qhlot1OsB<UxWX>`!bRb*P!(Y!fI+Jt{y
zBixe}O}CgBphRK8(Fl`Z+40oYUWW~}r+$3Q<aRx&wLw{+^3{Y%Tiz<#8^(}LS8-D+
zN;O6oZzH-gtmozBB_;~RqDUF@q2ymZ=cKHUCaX3>+S67)FR9eY`=OM&sUUV+NQA=G
zpeE7}D{r9Y398PLuBqWv17ke%o^{;chLhc}RDv0CbK+gR8;AkV?mX#ekUZt==Jwd&
zvTomsY&TaUVFUIJLLVC+A3v&AXJ)Z6`1D@#zV>qik!CTmuV{U1p=i2^Tp}jodH-D(
z3|^m32EZ^1Z-o*w2t00RR_|it%V}jwpz0HE#Gaf)IoJa9_@nZ7?9w$TH(nKOZ7(-_
z``VDoNm;D8-mdJ*J%BVX+a*|3jC3~hWZpgwzW*dpuV+B)?2bW{19XiZFR2_8OvASt
z6a6N>UM(CKQi(2(7S68`%wR-1D<gU{WvQf&@Z+?`N_%CNS{1##XwVu26cUl*Fd*!o
zSt`h5Ii|<xyLg1g8B2tA8b9+Q1^kE``%VfXcF`7Td*bs!#)iP`95K(iO-MUVRhOzE
zxYgy8-*|AHnVKJjzJ;}Qhc7&ticu7jh}+i<Wb20d`WqofN9F=ayjyd?0#XbC30eJe
zKfCG&3i%uo9BlJ+zuIDNh|FDd0=u}rvB8(`buZAsA9mmRjs0BG9tJp#_%lnO=BV&z
zmQw*B<eu+T_mDMltTYjFva*>;t*z!F3#EdV)0mcJw9_l5d8|^v!yjZ=DGllS%jkP)
zCxU9s)Xd<e^a@6HvoJ*wL;@M!8>gfD;NnIlK40YuS=NM;kvZWcxF6&KwTM8tjX&i(
zmMZJq$%@n$m{iNb7L|Ubp%u&|2C(}Gh!UK`LqkeQ#jx%IZz4tL@@h22z=<LvB4n>$
z=MQDCtEmtTt(-ZP3wr`}0P7|UY065U2<GyNm1u)#+yg=(n2Har;>hVzov}1@qA%7<
zrpiU~eWHD&0J%~26Bv<Ly@h+MTxe}EkuBm#7wdN;%%u|?bPj9;T&~-nh0-ZmhWtsq
z$FX=MbgVT=*9?yx!q@eqmr#pGYxCuwB0xbwGlxAkjwz>Gp<n`Cn2k0y!oTT#lH1mA
zvD@yYtw5<c5Ejp~wDlV_$sPbB(z2Yq!oDvO0g2-pFHmBd!l}frNaU^F{0OhsPZftj
zRN;o04w9pVCRD1C@*|7dOtt}!7D~C-NED0BcH{MnjLOAY4n4~`@8diC6MOAtk!(7G
zejJh+xqMc}(EWOwv*qb&br+w%ppXhRMns<-0>UPE;%=A73rG%K>XvuFS8Kpl+-Z*(
z@1R)M`DX2oOJ+79DLjS~ASq=8e<3!$qy}F}MMi){l=I=JSI+7n^|`ZH^d;ZSHevzd
zVZT2N6;=eTIKn^?>WPIFIbx7^uwi!>I?g#yAVeZxCbS~c)69w>Z}N>0&4unEN(IUt
zJgC={euN7BjF(=Kg_|uK`=ULzc}7A|6yZ4e3nWn(i0lZDV`zmt$|zxD{;BNzr;HO)
zxivm+?w6C-*VopsmqTRalm)~oV}kxK@H5T*YV<yr1}01?#w;Z9tcPBkIa+1q<)<(Z
zUU?cUTOY$(3O5!QOa_{das{Lk1xVC#gu#dq;+#<yzD&&yC<=;CT&%ZO!}z#reLZE5
z!Q)*S$4N+VQZcl#sj9E7{ZaSmqXpB|o1scog^g<S^XnPpuG86ay{Tlz3(-QJpJ<$5
zB4&YP&;m^r<$NAGE?z%J^V~;`2z0ZuRtK5<Iqhhw59=XtA`5+&<AK-Qg$xM#gt8Wj
z{sXMet+tYI8k_~1C-9Y($VWh}wN+lK0#JzBspc7`BJhetJfS5bq-CPBct$}IZh~oe
z;OJP*bE;ow4W`R7jOs%aDzRf@^S3^R+Cd+B63DtEB=3k4IH}Jnh%P&<JS=)bTqWBv
zM~@JUwq|?U!ZNt`T5h)^gztL2)faf5)U$868S2pOwnsLfFxy{jo$UFJ)aU2#sx}Gf
z#~RzH{$QOuxp0=?pBVhCJfAJaj7&Z4@Yxw#b14i;B)L(6EMX)nDhgg11X+HP<zbjh
z)J-O{efngG_+kCCFe)wfN}e8c2+z7whJc}(1Bienx@?2<=|Tdf;!_(>Xu&vho~U&1
zP*SpuJgCNvlXTS2&JdL0AO#>fA#idwX6BpbC4ZGsS@48(1A?6$q6y?cWa}9m{6GWj
z>9mU?0$QR$Y_xeV&<Fuw92CUq@tkMBE1VyJlS*Ff2R)^jO3cbnVxcOXRi4B_)6>|_
zxsiG^FjUo`TEcLfp|ik#p)>*8U&(P`QO)C6gC0Pvn<zlS3a{q_2*o?&JYlA>NiCz}
zr8A4WOBZ03mrYl`Q$1v$m6@1eZ?xHXQ?uSgDlLU=ecUEI%xpW6t~C>n#!1bej{i(A
zL(I3=$sTjW{3%c|a?{k`5kzdk{!LPK5V*wC>rt$Z5d)rj9E~MENNS&(m32PE$)4&c
zbv`6K;9N^qZA&1q{a#dL!LkAcSVtJs1%>9rVo+QQBgzUdGn$H9YhnB-rlIVFO?Yn2
ztYnU0xqdFIG(o&0w8+8Xp-(wD5fJM!w9xAEi9@-nrx(*qiMzS^v0*D`T$Wh@{vBhN
zqPfBnCnF=UnrP;`%R$R7nx8F+xZfg;Cvho16vT;%ZiI=<1v|P67c@%{^8`xh62}yk
z->~BpFJ$@}#V6oN;o6Y^ekg38xJnX2L3dSAViq<wIf1+xz(TY2G9yA<g0BKCEpwl~
z;O)BeV+fzWN3CY7cu)6;Ip-}Jd(mv3!IL<h-PWd1T?A$m%KmbYqq*UT(S<3g`dS#S
z+-!r7WoM8C-33DlO5{YvM~KcDTm$u7Sc<Pfi}&srQM7=Q<3YJtu0v95a<EMT9fFo7
zsk%rzUHgD@g}*kZm+)nrVtP)X9~gdHDWNxfDb0a|G1pdb8B;i!7aDWBGqh@m(Q9n~
zIz1pDfSqv{G)zWUcT;uGT^M?ytFfu+r?Rs0EN$?TWReoDoROF8&c~7VQRzGoyJ0@*
zx#>iKe*FZTNw_B%w2G8?cMLrx$^MWS-uor|Z1;oIE=x<x_6eT4^TcZ<3Y6_N@_~+z
z-5KozwENM$Ymqm?G$2ty?mVE#lW-r5)!m}f+{Gq}$&x+xUtV6i*6K~CnhHD;?A8fO
zJ%#Z<D*>G-F11SKu$B};qJH*(AhKj}>J74X6(N>dwqi3CBvz4}XL4<5lb`0VJ8ao-
zrPl1IzPo<UneYFRMkXUa=D36x@U2CL;$dbQ%`?Md21i?2PRUo@`v}Ork<V|q4&%F>
z!EBJTg-{zr6p*eXpjtxJR}IFUh5~x|NTQ+SUad~k`Eb#GnY=%GY}3?4b6Vype;5ss
zXyi(kz&X3V{wAHPox;+vOKI&%)`cGtjJ1YF4j;9CLYF9dV<%gmOPi*eQyP>RDgZV}
z2a<I8t8vQR4z7)J_N`o`N?2K2d%ekVquh|)9?va`O=}g~9=UOnjfnGpGiQu-P&JmJ
zJ?o!7wpnZWp_+4TZEoH=OaqH13Ha}h$LXiJu%Jx0h(Xf10c%7eV`6u!XNq20+M_p0
zaCEiYUL{s@L9~0x-Ch}aHa51O6V%n;KtM7Lv-YLo;o&m@1!uA6iy&%MuZ^AnugAR=
zw<AS;xObD`P_%AjRFv1+%#3~FQ<A4DR-9Z0#|&91%+7O^R7pg7jSfsEePa$tuE4bv
zumUU<O7{1enHl+lk*#5J^!6~%pwUmORS%z+g&>FsW3fz7D8}<*AR90~qEU4sLw&0~
zNUJ-Mwv*;e8eKe=Oh{~sBz(lDh+~xrZ-CLOT8(38uat@t@#|-D{~~0`^TqZS?1`nx
z!LH?A%wIFDQ0b{{ZH+Ei{W;mg6u<c53On~kmKaGt7Ze$00rn?Vq8uTJ3lm=_LV0Hx
zWTDA?kYuUOnBo<RnG``@RJCE2&eJp+%dWnv3+h&*6$J^n<&2QxlTN4Slc5!#v%#|&
zT*CqBG@7F|#hH^=>~Q)XQeZ8Yz#CDK54ax+hCcmFnL_-Fv|ov5Eo0g;6&46GxnFRh
z6DEAU>*a>-M!V}}x>-A*rRHC2bv(>2Je~o~a*SKF#3lf#sa25CEnZk!;^5)sedBx$
zw$<$(9vT|rNA9_?WiTvv^!YJ>3F-A>vsAOqa~sq)1(*y(f54yQPZ_&2c<z0>I5}wx
z>$s56o#kovXy?E%o1mKhB9(n!ij9T!xDIOX`Tq8R=>7U*NGf1A1mD~3>TXe&pP`2n
z<NSV_ZN&YnN+*yxN(IPBp6J?lBn(>H2vn3cC3-Vj#hl#xDRL|Ykhk;ZO}-W%fCiiX
z37+S}x+`Mm<4y$RVwLvGr$yNBc!QEw0>YGM1y@lDxvY(7I#fvq(2G$@Ac=Fz=(|{0
z4J{D@nonXlM5iKt$tx478>f3C30-do>9#*VuB7OCKk=Wu%k#h8ZgxGNlpiL5Wc!*y
zP)5b~vZH`#%r<CZP{tNI>-=!8HT#?{KwkBHq5>}AeRM~4wwH?x4$~mE{}I_RtI$qf
zqzV_*JdYMT$+o}l$Y6dt43-bM4CH`n`b02vS*iPT4sULwRYt4mqm3r3zJdpQS)#nz
z-L*#!Ytl<2Srl66_x(OC^w}*1^W4aRf?x<amC<J&C<JiyCddyRC)DfpB>vA8#W~f;
zW=_u~EtJKKqM27-{cJ-#U;sQ_UvNF3h908R`PLFrdB$3z#Fv{HC#0=MeOwqT_S}Yc
zeGn8B6!7HvGx${})x5NHT#EwMF#8}Q8)G*HwL)qw5Aoqh-hZ*Cyc6%Zcx@|B$J8&z
z*pF=Io9Zx0u|M8t)G}I)8c%bTPUPuuG%8)=3quSqnCQdkqU*u~WpXHHl1RY;&p{{J
zt*pec{UDVir+sfX5(EgaT&PH1QkFHWvt8GdIm)HU@%9=gKy$xd6GB*&(^yq?G5q-W
z2ua`ddMz1DGdOUOy)-xHbOMM_AN1vRMcclnO<y5{@g;>}*j)rfMBSl_O}E>l8OpEh
zeTNELFI{<W`DWR5+2OgX`M?eR!+jQJjd47L`o)R??w%kY^h=*amm*>WGTa0pm|x;n
z?j)s<#D^(edWKph>jC_bz5^*>&pQ?x?1HYJA!e@2^6BLc7?d{&Z|-(}3vBU2GG=&e
zB#U6*pTK%}TLBF~_tw^ySGYi-`ci6IscZjGGl>?nvFQ?o(1;p}s-L%j_5nRh>Qb*-
zlRKUM-T);MB^nH>I)*}D0oOYM&2euXi?G7ePyQtma<GN5T?257ifxJgkKgks&&Lfh
zJl&wq>u^GyTwS{^U;2{4+%KlPH1e+}n81?gEBbkN()R+pztrdEu<qCMkwgpvb}&}~
zPxN|_V<LK0I&WP{geF*q+%-W0`hXGRtiop{0vU}DdR)%i+{-7={TfegC)fL9nbOkI
zZ`Zu4ew8jEQSJ6)ED*WZrMzJAA-)SN6Vap6xf(1;dtqT=n;(!EE{JR;<;@#PW~Fm@
z)$p{lSSD$La`5~@zjTQOgaV0yetYE1!A7E++?k$MV1I$u#M7sSC9!Z-ckT-@DnNLn
z#s+`p5A;0ox0#_(>6`<{hY3g?Z)2Wd7T07EHae%7jt-+999|RHPd7zS>5TT1xY|;r
z1ga3=xQZgdeF_y7Ha8(jx~xkFN%rf`a~1|caL4ysSX*(6NJjds3BJO-95NJ{DY9Rl
zRx6PVQ>hQjU0PZ^C+nbRO(1Zk(OdPbgpp2EWgc%if?8oOyrXQ<LSf^s<jFak=barj
ziV1>GKz5d3G9m)L_4Z*J4J~3Ij@fk5Q|;5I2auZruA`%)7Q3IXPp5E_aX_BLfSd6_
zD|Ho29><|85*oB*`zqIYI4t+7knT9IayIZ6Hg0b2p|kd#K_bpDnC`klfjj|X5abKw
zP%PHlKDv_vBH;e@A}S1PJ-sbDWVL>jLS+~#8DnobY%b(5dpHpT@U)u2DR{H+<90FZ
zfW%TyR8ZuSg&Z_zr4moph-6VHRA*Qi6^E_?TG=$yDo_Y9@FV2VegI{KIm$!f37fW$
zSZV3FavoIq$szlv%8oDyc~gYuXu?Lb21|@U;1DmRdKn0mQBKLP#50T*tsEOjIC+Ut
z&@cYfhjCrTH_fj!>@ivB0~q;QUwz&eLVs=prVl=2-~1Veu6xQOj(uk2Ib|`!qX1lG
zzEFlF-)j2)Z39yc2tT)1Zu3X2^bayK+Di^Pbo?$s2^q%;*pXuW`ACqrepGoJb^%Ls
zNTLjoN<}aJb=$kr%*d}_ZpE%K%%Zq&$)SaED%v3y-J=zO5^_^^s7aN#$n;R=O1-JO
zm6;4}e<0JGIi;$gWLEEY8q*>Yg^eUgBwmc=Bt^Aem|#5ndK!II&;udW!fImx@)R>b
zQk54GmRRLMWsh(E%wl67cd+nrg5WC3Zaq)`lV>KF6yG+^Y<9PzmOGLNfg@IHh14id
zf*;iAT2SvW?u91X_D1fb7{!YV>XTR<A&th)2(W2dWMl_n9#Hyl3XxG<=bKk5PXGiF
zS~<|qrfN0iUJ2*gnim&HKu>`dad7gElbm6$10uVwM6gq|=k-EH^9<xAm~_vNW=4e#
z%8`@iL4M{y3T^-&1<ZW8sr|Ik+uMt0t~e*BRm3~^X$E(=<J}j}0Ef!c6PbW=y1;t1
zW<iDz$}~)+(>-|snbCDkJV)4y63Jc}CKPg}pB)7CjroaRul=$X9q{avI6Q84xy8le
z##NQe@DY_~U%@>B`dE7%c)-R`@9yp}i;Id>kP2LOs4TtmoFIj-**yS-b#a__omR9^
zD2J#rP;;o2+z}@}E^db$#{+B=YD9j$vtOtX7}2cyMVK?iStQ<vby0UHmClT|FrGsG
zxKT_Cm}WET&WtMp)<*&qIS^TB5gKpZh3!F;P&0@x2{=@ra0c?6U0gab{A~jr*3~<a
z6-HN^tY1>jSDQCoGfhoz$7>;CiNU`Qykkq{T!Z^Cx!imqdm@(0=6j2?Lx0AKXWt#b
z)a3!Rif|*^GaDP;Y<@nyOKjFFb4;9^PnI;70~;M4KD>;K_V|75y-*prk=?9$8nUtz
z*}N}j^@uJPYfsrbcbEG-%`X()1)fI*=i#W}TtExyVAb}?3M8k}`{_azKNLzl3sE?L
zV#&6%*cBeSd#XHzu9g5rGiIuciCCL;*iFSl(xT15M|<BzE0A@GuxQ$+xeQXYk!Pi+
z;QnyRWp9;;A~2Zxndrd9X%%qbM=_~jQqRdVtu2#IWLQ%`X}uW69992SqaJAFu1ck|
zhdjw(#^6!xI<%IM{D4RBD`l7zDKvGm_QCRLr#l#tC0JUT`+?-XW@w~r?zJ)S{c91~
z@D!>VeZD6#_~uW_GtLXRN>cR()|<2KWIA1(aJdw~;~OLm{3-p@{V7k-h7x9HXBE^H
zzPy|_1Di(ExpnV^@9c!`yJ0M@(_L!fDt(m(14(PiK)K*(k{1LYq#Y2pM4*EVvL#W>
z*-r>wCn<)AlkXr??}iHU485nPp=ofO)Yk{cU?s@;5UZ=mGvlZfyJ*M5&cdRFi;dkz
z3XWIh!>+k~SCafr4(-Scp;N!L`}xy3)HHU}3RwHe>2}%xL=ajhpb{-Y6Zc0XX*gZY
zdYVfr#-Jjb%;02Z1{D60VHK3%r7Qh8byF0#8VH`mJiab0ne1V<{lL8S7G^M;5<7Yp
z#O_l1<PJ*I`_Jp^>poqkQ&|yklB&}yD=Vw>^Ugu7Nl)}XF0YUF6tEx}nn@AvNv97F
z53UdQ_ZvM*=s27Xd+4c6mM4qZx9R!$`NY=N*0xNbxWLQ`=sZ9AQKvwgE(Ptkgj8ea
zY|*0x%NS^6NHB=L6I&YXz(CrVjZ_$tq)7@f6RC7|s?$;~o8mG!WT7+!4-Um)ROV$C
zR<P=g?PVa)_GG=lfRWazsdOeJB*4<(Bvr?#3PKW{O6;d2!dEI@*$X{WjbEyis(eWo
z+CN46Y^f<>w;9prP*f@)qV$BJ&OxR7DKxC@x>cujE=XZI4aYUKZ6~79OlWdLVj@qn
z!W9byB{*lc(5^_d;R{iQFks_A1lg2`&6Ar#m%xM3NazyWP9{@)0-?ob%;w^(i(W?Y
z^?)Jas*9HS8pk<8pt7XOfwCFuvi|io7@OAZzNe*L#f;W>3O8`n)xx5T9-W=I2y9R?
zhq#DukBoE8P-!|SGf=fgW5!$TvmXgyC6&s^TX!8Tv!$TYjaKjl+?NX|gCa{CWy(?_
zDH@tmcoOFT)wCji&%+^5NisF8NJ|mW`{c#@$y0kxDO=lK643Se6#-^=s)Ib00{ue!
z=_k1~Fo4iY7-`U_3asc4iSCsMQ#GgndGJE2G5iS5B|@;HV4NWjBNBKC&b}{sey)9O
ztGef7Mn%7SO#P_}#}7I)BZCLyNe=r;<17%R#FP4Pd2x~5uYf8?;Yq0kCLWM!fErb&
zvI*vv3!DfXwgCb-W5oaytl-m6enN0BcFpA&P4qTC@Psdb159o!(riPa7ao>x7?_qh
z*QLfINu#iI1kaoKRgVTGFgROt{(Y_N2FGg^AhL>2S$<H6(3OhJQ%KVqNMI7#DiZ@c
zS&Pww!(r5&bT*W(t*(T2C#)c{lxHGfM9UobFq%t}BRs-FmbqJu^AEoU|6t>U;Qn<x
zr$@;qvw-=!Uy)7X?o(pl*Ce9P6cWaWwKb?PipGLxaKaeD22)<MMY16cjy?n{*&;6)
z?r6ydDLY{*;Cwceh*4Rj2n8-$y<}AcVTk%?G?AHrJqWZ?7G*Sf=TWQ%<D7X0JJnF%
z9EwVpM%C}|Z8TV93MB~Ul{~dTB?2w<GoUN4x$9d3n`FW858X#D0H8hMF=7Ezo^!!l
zXKDAnwg7SfR%@MNd>zik9Tm0_DCu$}fjk5cBdIz=g+&#ZaT(xX&QXt+TqLt^3HyA=
zz|E>Ka$Jc?_JC#|E+h;|l#?2?`9x-H1^0+ggp@n|Bo$$z43gn)LR6J6+SgJTgoH6+
zVPWjRE0t5~7g}&lt1(!WB#V3JaOPM3shUlz%Nw_hFfTH<3`)%uO*LDUo|cwUUBMJL
zDtd&-3q8QxIR7OsF3$Uy=-ALUCUR=eV{F$$z>?=;LjlvXMvWFI$u`blCPPjE!`VUC
zPYeaW3R;9Dshal6U4xCof+-cwEci?A@+HjaHL&Jq6@4q(o5M8Gq_VQI*4o-y&Zo>w
zE8|-5P9GVV9q%S39N297-iPfqcB`f7hhA8Enu&=Czw`nO=eeaZSZ<AX9WPJBh$b?M
zg6k*+5Jn5<sb2@>N|F&)>XwvBrM<Y|D6*bdh8MTpLmK``AW62j!%LIvakeCZqMGPv
zN>}#o7jKDknlPORKKiH4u`1x@AjqZ9`RUxhCVYPD0{gHUP%N~2V+UVzDNtd!gG}C9
zii;1CgwYB><kzmQuEd#{nN!qz`4)?&_Bt2&-jb(8&og-$7^cV8BHU77r2&f<9-Ic7
zWhChaC3Gq$U4(fbBq+3I2sk1iPL@NV9{~e3v+y-iV@*O!q%NSLCQ)ahTZG_XyDHLX
zK=LGBaSlnU4(y$r1Lx8gg&NF=|49yYb3?}NC$t~2-mE!*o!BeqFS<)hOZ$*pgZ9BK
zLCurWlNe%=4qquJp6GNAd}XH@BR-H)lxlO1JgE%K*A`4OSGe#x3NY%&pf#C<5wwXE
z);F~PImZe`OCUN$EA^~Q`;hL1;XjJ`C<Zt)SqoPsP@&pHqtRdtOm&4O@rP|NC5V?M
ztV2**k`z=1QG7aJpu-@X3GHS7ZcuB+8Lt4?RH+y&5ediVSiJ{m-$Kz`@*0TGczn@~
z`Vfry-W1iMM%js`Jm`AzX3$KoCg9)b#>J7EMZDD1oqEI;2rICIZ38uy%+&`s<JlSx
zj*^1~Vw)5W4&H&r`66;tEmu(iC=eikQlUtdke>f9RSzZmW&%bcARrpR^)F~=Vkn5<
zuSfpl#sc`|54z+33C+pK{M%xpFh={A|7LLYST#Y%iVYl;h$y4|tQUzPzD06tdSOC7
z4k(&5BvYRcKCb=AUE1xzEvM}!B>pDGOchSE*q!_5TxoIXFrHK)6yIraU8X&duGF;S
zDJ%FnRe|U_D*><SI2Lcc)LVC7>cH;&B4bV7RhAXpvE%QZAZY|K0JJYb+HxZhnZDL0
z=b)WBGgt6TJ#NtW6WlI~Kcz?)cpcL0c>6TehsTFz;|1PZxmBAT4wGl{_|4XH$9l7p
zxG}C9;saojYADf!hOQO#1mciOI@OrDJH!ko5~C5+5eDFG_$C8Ge0CwWGwPgsDxMWC
zc})s<CDmddd62|2W)NGQ7#pydcfwRFQ*zY>`6#2i-vpblpzRAN0MySfub6**=6{Dn
z{%=tJjK5K{e>fjjDE<G5hvejMCg7)Mt^Orsz50icbv?*0A!`i{tdC!@{wWu))DW#2
z42YGlfa_oH?BH)cf&U&&|3)49O&k(82ABluI|1lqjK2YKQA(PCXu|TM>*~EVm&O1+
z5>b?a<1*bL-Dnb5-cMh!H<y}6+V#<;9v5t~A|{NDar{Duf9loMR!Y9^Ag(ieJv<n3
zgxkv(*c}$i(WIT-Z+~2os}2+*K>}xRC?{NEjNZE26nv46tpOef={=S2U*Tnkv52gA
zh6z*bcev#o$I*|{>pv-YMs%^o%c-<wao?Y>CkJ}a2j@v-hBnAO%5*oAlilAe{MFn;
z`FndN*D2IX?cg=j{Jrq8j|fw}L;pM@>>x-ADDrgDgFnQUUcNzEo8pXfz0L7svi81=
zc2;(TA~~BHel72Ff2j%bibyVjipxdAR^x&9@(uZU5y-HV96x3VUCLZmdwyq186Gcl
zjOL14IvrXKul|XsODdHk5+okop4z9{EtWMdH*c>U8TKN}6XiILWc$n-J&F{{w^??W
ztdkrA7K=8*_L>up0MAX*=R&^xl^QBa3f(O?PMm|_ApVo&XL{}w#9s@9!MPi(Js?nb
z06dw0eWicLe*c2G{;@#(-5c$f>7#?Km6#QPBhAP_58x92Wn6C^qi6~6<QdAQ&o<Z_
z>43A)F0K3!>de44lz1|og1qQx(!d+F+(!6zA+10T4(b>Cvc7)#E@4iI*)<}&ne~Gx
z>XG?}nLy!8;^v`>_W6fz=nkd|Q)p_4savZiQ;9=xYy%0#Vu__mLSt^;<WRN&HR}jM
zmq52&<7o|B+1Hx6e6R2<QUPHdrBqj4m9uwmHe0btMZIzZTDN>nr~B^bo(`DY%%2<$
zxMvK2JeHl(Mc2^XS-9-!5WCyqDOAHWZhQCUS6?%@#v^`F%*)3lbE`gRt%l_0FEvO;
zO&Rpbd}tk4EMP4Ei(PJAm}(Dz;Qb%i<^PM+XJq@WIP|A(J?MX!`jixnH7xZMtn7a!
z`obTH&W!Xc(bKT7HNU25{4>*=b*ht{0dM3_V~D?lU4I#i*g4o*01(aqptGH^gOj<j
zqnNpsu_L|6UlwWq%<=l#>fs4R3Tav@fCPQLD$^XZf|A69^rZaAxOB5B47~kpqe5Nt
zZk_#zj10ZhxU>9(G_4d3fVogVGlcY)t$TB%IrA?P!k_G^$*@27GA6(y{s>i7Ib~G^
z1$iYEfQ+w_sIr2*oU*8{%4Y@9|8kQ4{XrMTYFqx2UasD)rf6NU3C<pf(TF{6vYF><
z#O*-&#GIBV#xg7Uqic#_o$AcS56NvR!ExhZNqa9zH`B`${;<(wVS53#xw8wJXeb(#
z{FYtksDEa|)r4tEc%4gOO>d<(1+AVLa)+msvdjgmv3xFYrC}Ea8;9cNuDgX~03QoJ
zl3*mBEaFv58O<H6LjDU$612QzfFi5K1G*GNUC766oTyC|RV6T4v;(*>iO?G+Vc<~|
zlVZM|IyPGlAdHKX+Vc5`D5W`AQDko~R{7^I7IWGTTMK&j65&kACTC83vaOi7bwqRP
zutUi}-F|2+J>X^IK^9%wQF%YV>vhMLzj^THTvnTMQx=VQ1dp4=;!(xF6Bp2)ub+u8
zH5v~8{H^Evev>mw3|K850N1}(i@$5F{*re42PppEJOFH*t*rhbG@vAFyUG9u(C5n=
zHV17Ja>-b+FUu8fYwAg>)Wo^PqCmieO(K<7N^2E<_qfw9*74Oo2%uCV!GFr?ee$pN
zng3*(J^r9ge!RH9uKfiRheZE2_5We*OW?6?y8ac}k|j}yRJM|RPm(ocD^#*v*_Z6Q
z6h#|FmNr`pA|yrHRA@tyRES86LMoD^wEWLp(&e|5`*}bA-}{;OzMlJeeCN!WbIzPO
zbLNcu;*r{8k^OmzXAe47tBlxHwCLoCul(hw`1Z>)GvnM@uQgs<+f8BLS5d(5dczAX
z&g@6-d&C?RLqax6m-Xa+nC0xaI*~QEQpq4Ab))ol_xZ&Vtww9Ev{xPAI+?b|yR_u^
z8BR*&&99cC@Aco=EN#0z`knJs<I4R(9fyL>dM-0gJXhh*xxpq{Eb!cv;Z!Y;hXc2_
zgjiGr7vC8A*<1atNS*cJfUmyO^mTL{y!=cx${mm5rTsYf*N2-7R<jrFx^<||sjt@R
zitDx_{g6!q7IxDWQl%=oaunaqaXj*bUF^(|{A^=`&<=@UXItM#?QW9ayv{RkXsBvE
zAvLmC{NPrOd#SH(>F^iaS)F3<R9L7vDs{8jd(H}`Bk>2@)y*s$%c^Smk8RLUb>KL2
zd$;VKmlAwOSJpQEDC%!Dac69LN!kBm`i79E+S5xV_0@vb%5M^4Y)baC;$m4=%u%&<
zVK?75nS|+Cyc^<H`uW~x`##8uR*;>|(`0UdJnZ^sk~6_6n0y7HIt8$Rm{Avy;$t_4
z3@L2)#OmVHgkx?ob5GUUBHtvqp=9-%#WxeTh8AmW7gfHT)BEE?XJ>tSO3<}Y(=+Np
zcghuC=D%6JuK09gxMs`i+efQ5%~#>AH+J}%$g;e+VcEwcRafS4Dm+fzAR%(+6TK$e
zk964q9~-9QpIkJ{xV9|1$XfrRXp{K{<5Rf>m9OSlJy)7rB75byWu4yWtH|e>*E_Da
z-@ae>Ipc}Gt^BrYlu!Y^cBOE|@2}dI)AgS}ZYimlB`DV5b}ppLaf-pY?@<<~7Bj93
zI`?heX{$UTGskPj)?W{0AGve-8?`9w5$_7f;K8pRc%v&ZLA#Kj9^w%cPJ5A3PFaSk
zVX9-dOe}2BJ;X?{imbcn9^#v1*PNqi$|idso7ShDdT5_G-RG>fmvhGS%;C;ZFCF~_
z?_HK{OlWvLdOwt1rBvj{<zn&KPGOO^%6mp%ew4eyV{5qDc=|c@(Wby>J9AboQeJlR
z*ye;+M~`J*y(ark?bu4rMYq4Dehjx;v#-+BsOnOIpXQ1WYJ+y6&YItgvzK2w*u&_%
zc<F2zwMD&Buj7oC?Y?KZCTmBAY{>y<Z^zMBmgl4_f&=p<MfqF1UKYOS;yLJTrto?0
z*19JhonqC6zDwsnHOM;h{K2M^B2&`#s=n!;x@p>ybPt=-n|XI?rrV7?af&+Lpk&o$
z=zRW?WDoz#fhLPB6gX9=7+N5-OHlji?w&X6KNpD|u((jiqc3dI(0b1J^_<K6&*O6n
z6Ta1aI{oIuNsX9+Fvf!g)7wIl%<p-!ax3+=WSrL0PCUbT?`KVpeO?yl!%OMgkIv0i
zo^`R2XLQ^46V38|X{Q*?)~xZgntiVEmi7mKy38kj4;ofFI6YCm*4$$7T*y!U+MH%|
z$zaNZtLIXWGK=3XT=em_PL+%75L4B_tzR2Ah0yco8hzhHVXS_Y<Vs<^<B=!c^J&Gb
z=H2T=lMdv4ei6`8_vywDnWVrq*D5tHWx4ik8yG9)QEc53fJ%83VwCT{)GDRQ2h=Lv
zv||O^t_E240zGB)?CcKt+a<Q`m$LdcUutMg?xwrBf`X0tYk7Y~xN-Kf&ge>BR-3Nk
zaj|FM!v2PZf*i%stM6uI-r%*0+9^6azwSlX#-xkUDy(nacKD?4R?KYJ+E}^3%0Dkv
z_sz)m<9u!}!dF$FvwLdOx{z~g;kDB`-)e1kY(8!GxRU4AQiUbYed~q~UEh>wyxd_m
zOBh2H&)t$%r=}fwyz~2<BRW(Hd-vUSIoYq?)L`lEyIxt-(q~Bk?;Q2E!?HeiOqi6q
zS@lg)N}ONTaWl8puJK=Tg1x11<h6lOhwoH+cS^^v{`oikPH#=ke%U|u#*(wUD9CiB
zZkO>N1$Dw!D#hQ=_&=3c8Y_nY){9yn`Iv9y&MrfWvy1<(W@eW%i4ge{PlpU&ZqDQD
zm4E1du<@7AjmOrqoXnRyp(u)F=b4N1j<tHcZTR8N)mb06Kqx)FRKL6J{7UtyW@TP;
z+b-W2&Yh|Fev^>9_C}l8M^ld&70uc##$PhOdtYf4pHqbJ*1+OBtXB^8v%df7>$Q4m
z-FGRg_==KGQ`{OQge5n5_Q!3o9dP*+>K&Q7!`Xp1TIuBxx_9>9T7{hWcPSqI?stNt
z^5N_Qo-xf&UHA4J_j|N)`tyYseyQv{v(WG5y!%_2%I`;5hBJp)EfPPb6emBwV>aUD
zNP~|~H^F$}d5OwOjJpP?oImZBs1B5s5T@=Q<R?C=D^I-=2#@MQaer{n9#OUz*m=#=
zF+KF)R2{dKwbl8O?X1z|cUALZcW!b^XyMBJ@g?&K%M8JFx<=pqO`m<r*srb?xz=NA
zh+<Xu-NBE3H;SIfOP=RX2px^ljCtO>ySDPdkTd7$vhD3Xl*QToOj;}0Ifk#VPG*bd
z=&3DRQ~AE^`eSYD&GGA$;<=;y7RG0Bw#--`azY`IBI-q#xjf3IK2Lq|WuemQ*d9Bt
z&W>wc_pcvMcor?UAjZ&os)DiqC7uiGH^?6Mw!5KLqPi`ak4@pTb6eeZ2m9&fm!;f|
ze}=ASo>rvhRX1(V)w4sYRX;qXaxy&g;|p(j_^cNj=ssB_`e5Le)vLz~OkZ1u$Mffu
z>le7qd$wnXsVH-HjU6KwUs<~9M}g>Lxo7LsV+#(PezwYg*P+e@I&HaDU-oGZZD?8)
zdLvW%W8A@;KO;-mD_-92TVw2GVH*<Xy^XzrA!X^j;maDz9$b_qKC{f*Bi6lSvG@=$
z{K6ppeq3n@--Yx*753#h$7c51KN5NG+2Yb;R(>eRLH>C5@L8UNm#S4uhxf%W>&u1r
zi7eN5SQhultlIyI+c7BruQPqI|ANi?YD{W36-Dm)Z1jRF+@g_ntyEDX$MZY0S$_Vc
zMoJ8OitnO}qu3X9@sSb;U12?Xa35vN9bmKJ<l*Pw1NDcbL%f|&?l;?XV+H5!hIF&}
z5e4Qsi*s8KXpH1tl;CpOyyTJV`A0q_C44*ww}f&>B(CvgXJgy{CGzUWb&ve{=89!H
zXnZ>6BH`p`eC+)8XcyIh6?(PJuNCecsk{<AxI;%a=+>>bOlEshe$7tW6)>y1nV(Pk
z$?9{aRbJ<6Sw0?p%4TA8N#?T`pPtORk4g)7al|b3xK*&(t7Bt@(mQ6>tNY)_hHUj3
zWHvh5wr}l@)I%MS#f6r#VUch1SJ<=Nl!~&>d#&=0xuaP5Os8AM<8<?cmi3+UB%0Ry
z%=${nUP@)uJ6_IJt-ywGjNgrClrVu&@WPCaZ-AdKgjs%H!M;YV*v?r^DL3O9G}8Lg
zV|%e|XOV!!`8Zjo8yjzZZp&2U5NU~@9~o-F#2QIQKRY2Rl1Ve*-hx%OejCoa{aiLX
zo5k$BQXA{k<*9D1F^dcMAG3SC%wF@9d(_>oYxBBQ<|52xZD~fw<3=`wCD+foIafEh
zKBR1+RB`GBwu1|EuAJa|KTYn$k$Fs;mMq<P$1|VBHYV<2bbo?DL<q}I#(Voh48pd(
zvC~?V_OqZqFG_cT(6izaMfPs9y)CMWb&dJa?l(`K6)g~W=z8OdfY7gt9#7=_pQzac
zU*{1BU1;$_;*lCJbNH=@m`LAc?7OmkG<%M1w>F9JUied*oq0Gzl=r(B@Ab73FG9Wi
zRM>n3oF#+VoA_V!WK|zl{1JOdEjjFyW=YzG<rT2IVPc+=Cd4NJ9RK=HuK$;N&D1?6
z_FnV<&o~~(DGhPCMHS5G!hh;>Onqx>dQ{(9N^0K>W45Bpo>V_GtiGRXC&)?$G}<l>
zFHO=!X;P9g_YDl9c*1im9<Cm6so6KgB_O~9p2DIQjw>^N>Io{i^$bPsUEsCs_%w#A
z+jr)uoHyrm?l2A#Z8ZsXlR7cfnJ#hu!58+rdoSuP*NMe<H%rbg@=$8n-E>65V^w`h
zsfa}^OOFEoLT=|*)^i&&4zd<)_2-keDu}O~%cB=|hi$olN-XagMpeV25WPDmS)XiW
zHR2w~l0CS7>M~Kq6)Sffn0{sF8uglRmI#KvVewfEIaL9oo;(j2gY=Yz&zFpRFlRY0
zrTq03uWVFVLiU4W8q&|SE9h3a?5aBSx_xerXR`F22dyOol$Rs#7YsdJ*EcM>Qt)ie
zLZ3y=wXY9O=^KvdXsi)v58iD5%jn3`rJmepxiwcQuJiIq<d!b5yEiwg;oHsaDyJ8f
z+ln8#X7v4R)lIRu$m1>xV*3l*`V3$7QMb`_`gO&kAXHB=f`u=@hMv;HL^AMOCau6g
zUnh^T$LAHt-2Sn;FilBXzR@c<cQy=2rfHNN)}M9i_@*pve(tAt?p!dGVRUHBuiUU+
zv3a1geENw+M%lADM7Jlls;K)u%Zr?`B%q?yXY_ljqTQ#DF3Xfh4Ylq3<~-=}lv!2!
zz;I41WxLl(A$`v>x7ej6=h>@mKdsOh*zOnq&~wqQ+`<`l6`OdYBkvwkywh{Dl`eK~
zo2(f7Lf)u6&g2r4O#*42?%MLx^H)xlQ>$tz5qZzCD<<~VeEE4snX*d^rQ?s#L;lg>
ztGzdK>_QmKt|f5#aXkHIm9r$}Wcsnz3ruyXOblk>v8%WARBFc6C0uR4#W?eb4xQKT
zU=v&0KnHK>ZUzfOeO1n~hQ}-n+eT_$-_WheI8d#pFP{42#fK#kWj{T+Yvez^KJl9Q
z{k9z<j+fLoc(3z`eILH@$j|d7jS=_djOiKs=xmeZ*9<oD-nzvje0I%_aL4-gZSx)t
zNGSDB^;-C|yhiD+i+Reg{hL4JRj8CiSe=e9J?Gkqj79e8RWg1spU*KR*YHX;8$YKZ
zz8=nF#WAo|CD%!wEcsqHOH}gkt>jyYccU#Qt0_tU*P4=x9~^(2Sl4d3L)l5eB9J>V
zd88fc=wzI&dpzi9Q(-=D-lfD%My`gAYfKBg_ly_!xpz*GFAj*!g7$YCp@tt0UPQ;@
ze_p>!fl%bfq*RV-E`s+rn%<z+A3b*CoslnF$FA)OX~LYDd^4FBgyuffIqg;0Td+6z
zTDdnf=RReRz=x5)dPBPca@S=Rzi{a+^4L->BviVu!!cIB>#fcDllMxcws&h=^44oR
zWEu(8JX+5$!tiWwot%?Y(}ojH?z47D@!x)L3NPEQ_;vHT=gk<EkNFSYePCqVdHclE
zK&$7=c`tNm*$7z+*j+kv<dglCe3jk4ZYp-J3TZ+bJ%dX>76=XJ@@R_FJ*AX<Su(JH
zia@`brf{Xv;k6Pfs{Jn>H633nG8pSS{dq=T#me2e^Zj117XDJO%ebSz@==oI+N)hP
z-7FrF)MaJV=V$T|FfI|J{dh_F4?$x2v0_7*^PwgGf6LNKD5;j6TB4w41qVbOn7DB%
zJ@utifz)*CBm93Jet$BY;k5_GhJ6AAf1H3yOX7C{v{EuwflxxmBT(2BMGAix%b>u+
zc$`tL#~fQz#5`G@uAEZh?|#gX=W3&P{RpeLVu;kDO!oNBj_jRkd1lEgRz-Xn4Gitx
zdr{$>1e3b>Nc&*=kNfB8I^O6-D9+9*)!cSuwry>a(eWRRgU^bCr>1=nI)Bye<oqU2
zY3?hHgUd>q>_-`|+24D5t7g3+%emB30=G||;9j;kzf<&*wEG;(J~p;;ZFYaLjf``G
zRM~~HUaV=|`h_|Bv7~!Fw`y(R#<bcwA1>A2VN{f`c;gpq%)8u;U&~am_~GnI^I!&f
zCB7N87e#_xl}uz)zg2KAls;klsqj2oSQ;PG$C0|7s#e+_eZN$jmb^H!O!?%gO0O9S
zGwv=~;<@iAi${XsiP2a|&d#i`NX{oZGQts`#ok?>QDtUz|E)<_()6`wtmnO~7ces~
zl6uR%m$G*0;}t43Gi3b}cQ$FH>92NSx1G0(HNxS&p)!3NpP!gzn>Ejepp*@-_TM(8
zi!SepuE_4bb3S`v*|F*)udP&a4~MYM6=h%fWER`ri|y)re=z3z#LbfqPwsEK{&Hmb
z{KlN0)vhszjN7gEy|3i>aw9TS<y~<HMfE|`whj4}sq497Z!G#+*t)8$?5f~kae>R}
zIRZuYmF&ukN4`%*2GjY{N5Mu=f%BNq1zrs%J$YK=0@W$UDh*M7$G)ih0kAGc)au45
zd5N~Y_3K-5&i5{;GjV>fI3fRVa*^ASB5!?usiogOh_MxN&zQ@s))_S@$osx`Y2>jP
zVjtQ$Br3Mn$X}<kF5vJuc&34Uj>fu@a~p+t&VSP83`uhkx$RDINvI7zq0Bm$dq;Mo
zEc2qhH$|3DO<6aZ6)$Y_HMeqZXD(yT&eXz_1;_W#;5+H?GAX|CU^?r`ISrxj&-@DU
zKRD1d{3dT@Wa?%sj)+J48BROcE1VaaZb=#VzW3Ag1?QW~4i+#jyfZM%Bz^hnXJ5}T
zt91|eH?3}Q2znvC_LtjYGpDMHy}>6=+a44?wCKZfs$=JO$vbZVbSoZXSwxZ~wcua=
z`H*90U}<7(5flKApwSL)WV|g`uT<GEUU9-fkK!KW?Pci_7NlgRH8Wb4?doV8PebNi
zo&s^rH75+*SRLFmPAvV|@$gWFa;tM_w*Jxf9}K4&dm@>*HnZQ~cGJ;^Cq3S!d+Wi=
zHAi<!aE7g!H*kA}!gOEFTrE2pn{=j_qo=3O5L&CgxvZzAvF&+)$xg~@uB<0_yVBD&
zl9nyV@5o&uwUYhEo5ngX_4-4u>p23hS?{&nU?D$G|K!l?c}Rw&6v|f}gyFo0Mq8!u
z@3atN&pKWn@Q$FcPJoLudQZ?Ha4hhkDo=cs#Sva*aZ*t^eE#v+t1NZ$&d)>8t1HCE
zSm>uK>|r{|+kKc<G;i_9;qH^Xi`Fkv?RL(6bC5Yq?2SI-+p0R2V#nvT#ePeqYWJux
z@QLhmPBe4fP+;b2znES?ciIC!HtGtod;k6E==5zrW>`v=qL_J{)IY=>%38YwQsk%)
zwU33RsHd{pgE=w}bM4->>CGv;afgxB$$}zsMupeoaI${kzQ|DSZVCF|r?Q%_Zf5=b
zcE7m#!?F?+qhsez^y>B(HNM`O|8y_?_7)>$-g+Ykbt#6-Ocfr*h34x5tCs|wxWFpN
ztuJTBNPmCM^siiVqMl?bM_<2Zw)4%1ikyVhn-9`fJ1e|bC*RVVb!XW?O>@s(liO?d
ztyj4CqwV<{<xj5H-`wW+H>6|#d|4p(@obMPs{YG4D(_4?;JIIaU-A~gVZq_5{nPy7
z-v2T@(Z_6id3RHk<INDau6wbY(}o>Gca{tm>7J`I_(I)6Kai0eK)T_D(G9%0`7f)k
zBGtasr<fogoBGUCMq7^PHZI)~roAQ{)5;p#vaKB+SOwL7aCBn(b!}BIlbA_cSbjts
zoD@C_m*-2?-`*p{s87kvt9LSMiEz5#%z1B0PEL)pK`7@rhLYyhI;oql(%GF6xxn_Q
z<-r!4t@RRDS(j~L*Qsc}DsC*|CNPKd+{_UpogM?z`Wtt>^h>6SsohdMDVKEM{o;8$
z2E7e-SO#0poq5{E`|03SpK2xVhNd4I9?EpZ`JXPXJv#N*KE}Clv2|u{(DcrH@4Q#R
zn;JR17oIQPkUG7#*C)Tk>!w#+KlkF=1@y~`qFurt6(nX@<n+u-ysEiS&5d)0Oj=I{
zU%Yf$&tX1~o(*=qx|KtTk}2gM>D~0sM7^`Cly7=c^!n17O*W>10`$pFeVd%pgYT&z
zWfhmLH;@MIPs4b~_=;M~VUEUq1G0)*>s%a#DZ&P@4~6~bZ$<u7TWhR-d9p96L3@X?
z+l=d@XG-&3!<6VA`Lb*sVHX>#jqmJSk{6zng$t}Mz32O{mu8yZ9rjF09%<;k+!+`;
zy8r1tuP5zCJD&$?+9Z6FTtDje)3TXAAgYd!`F*F3)I2N3AC1QD=8BJu;|_QWyG;E~
z(dhqLcvnkw%H_A=0{O?y2UmC1rXTH23jJBDvhUT=FT4vS3(U7>^{^*@(Y)T-I6FCi
zWZRU~SySb&C59%mWG)#vWw;=v%S~QH?q}%nUbj^GU$-1~J4W^G8!ncLRJbw7a==lo
z-IB*#PmfVD_nz8j`uucO*CVaDfqR^)=Qqug_-3p%>q?NY_>^4X_hnN0ET<)c1Gv)b
zZ|?G6e#myQO=_QZWBcRKGXm^}elCT9MM-%VN~~iR<f!YP)-iU~om%*Enu9yXwM4cy
zy;<ecs`f8BA0D`NU52u_ka$?B+vO_3Ik%u<*UI|7^Xk2(sjBsD(NWg9`Tk62rg6u5
zpZ&SR!|T_f)zW)^%3Y=xm+C4!CdfW3v{5NS|54_q!wKhi3CV9rRkOYSj_%R{A8Ff5
zf;<<uoa-6(wu$aZ6t7<9P#)o^WaE^pSMKK8Gwrn`+;?JZ6y~?L)xViCns1@O?!H<r
z;Wn3OvUnHe{qlheTe`a{?yh~f`OLxg=u8KZksnM*uD<ztu6PG>)q`;)@QVPvqCn^F
z;S2_UY)_4O`N(PG3bcSQG5g+WikJrfOEze<1?B%>CFI85=EJ^%CHsF&;HZ_8k;^Ml
zEuACs-u?h(!*eFf)6O#<y~YH3_-3F$k4b&~5~;d<<4*%LC$4=Q0YmwBiB@!8j|nt@
zPk?ed^nC-o;iX4KIhnB?D)uQh=l}CyE{l{dDb0B(r640$&2h>cwiY)rTMGqV>eeDH
zH9cK`FYV9X!YzQ|1R6{NW^V8&46^XwhWP!qAc5`<evpi^ih?Pn<tiQG7bxTG66E0F
z6(}9%?e*Sn)4Hen+&_Q*WEJeoh&0+WES;1nWHd9)qG#Ge<@bk$W>0@0;B@)I{G5vG
z5lQc?TQ{CvSK`OZyKG^x(r{gALqf>9zIC0?>_5k(2Pxhktg>f%ubU|>nDP3Wm*2UT
zub*$0cl&ogZGj{PvCN>-pCg|OAH{B2+E+0zqgzWx@K}7w3*CyLmMW3-p-1-OHJc+c
zUsP0Nzj%LGMSXOz`*3Zwscet^$+OK}_srkEy5F}>rc&+X_D=TwpX}SBeiR%&Htn!S
zh`(BE-`VvQW$8<PeE;$NL}%%<u7F~0iw#0wFSW!PeciA9lWo(rNTuuV*e$-sO8fN-
zS6q3^zIk`{_sw%M4jP4qrDn$OFFB{ktN(5G&L`jW2IsKk{}f&0I=`jD`0j#zpNkU%
zW@Z^2)Xk*d$=sJ^A8)Ydl=R!rdv@;W%euc!caNiaGUv(y1FihGx7J@@czW+rKC$_^
zS5Bok@H(D>|G+yxA-J)4mG;d1=q8&55+dto|JZI|&{gd)|HU^=tCd|2T*-50orqhO
zu|qM9Cx2$JQJi+1mR3Q{&4)JUm+10@@7sAGChM6L&-{3;)rZ_?LRFem@;A+EWF_u0
zE}Wlzyr=SPqQCip8DiSJF<D+`MY<YK%eus5Cpy8uGu1ZLTCIF(-*P6s*5?bl<Rr9t
z!c|%H6eZWZzMH(_MCEZ|t1gF`tgNi7^@LncJU=cA|B);1H#Pq7KjXRUyzj=Gm}twS
z-G*~4%=auFl%4Lx&T642bZGs4t)zmU12cMcmiG>SS*rS?q|xq_SgugetA~~+_<L1H
z%Vk<O%3m?%nLo=+#xuLBJmp6WM}O2e|6e^L?{}wsVakihysQ)TW9UOi-F30FeszwE
z-yB_irajVZ-q^bIMS63F-;+#R#<!hX%M<5HhYucERj^eoB<nEK2BQ#$m9w~aWbMdi
zXmm3^qO(L>PK(Q_f%6a#U&^loLxbC12pT(zIVSnd4BWn#KQzPF(|pzAtA|8)aG5fg
zJt_VA$z%q9L}0&xMnk{q(;@nwU)KaLqHnS|YAZ=OQDR~JroJ>%`LR#RPwjKdIs(7i
z+Y5=d^PaR4?c+CZwmR^+_LTaZW8K-3!ACQDR2To;cG@wo&N|*x{;p=NirW2AYndmS
zYTr#SnBE!APU(^TW_nFqGh66h+PB6oI(dyA4b47wm%KKXZ>_>xfBsr#k*_0u>8@CB
zPq=2ve!at+>_@KlgeQe-4tN<UNk^QRTf(`9E#J?*;_NNnV0K{_%Otf=Q#@r?Jh~9!
zyy2jy(6cY~U+vYu?^#@t_+&Ja{(AT0(d(-_H=QjsvmX%(?`(NBTAqC8;+azOZgH>R
zqx-^Aql6r^y_4LH<dlx@>kw7)+7)0Nt|xu2{$)W)lL2McNs-js!g74#A$p2t3XIo2
zj0}c{D!z?u?UT4K+9vp|XP`vgbo!T0uEp;R^QFXXALqYZw8-DcyHRnf1^wL*2C>m+
z4lCFv?Nwgk(7)<p#i-qZkZ98zH6ILmWA9X^JRD9=-jka%tHEFqV~(@uidMlzADx?p
z9UllgJ`pw+UG=riz>t}f<Hex^N8Q<$E%KIGG+#rQGkx!cJ!_qBoxSY%+)6YgY{u-u
zJ}!qde4K?fduG4lHnie;T4yZup{z2KOL3>_LPI@iPM^iraXOb2jPp3%Tpx1OOuJzs
zy6U6f7e7jThd+Zv$6ATwK{m0r+{=uF3w5R`RK7jrSP=do;(=z`tLYg6ju&}Y_jIhC
z8-0D_07HPfC2K~y=b@Kc{aU}ma`Vy*FY{UKc{9s#mPP#<W2KeG#jXjWY4ui8FRgYm
z>wLJ9cJhelQ`T>KQ@CrF=<i&xAe*!3mazVz62U3z4c~rz^{cJm{u(Or>-6!|wr53V
z<$~vrZFpp_{5A2JX>{!Oi!Hs~Uk84gyARCWG!PX1^cuUxeoBt|K24$Rd^OJ{65h<3
z_J%JYMX$z=OW|#)P}h$wL!3{x-R&-Eoz~q^cv?ntApP{y1{smXB~g!FzG6DI*Jke7
zbA@m3?S5EorpD*~i{<H~T;7C|!Y%1X&fB`DUEo<O;cn`GBzyX`m#pdMZADgF&3FBN
z+p=`lyTBlhZ%z76%yYM$<58{jk-Wds>8uhRJ<rtYCsMa#p2bA!J+NT#^O4l9ga22f
z)Z>Bvga5Ldmy2|ThJ=PBPpVA2Z=&xcIoDb7!b{E}F{?#>KJxrFT*BGscsMo#_MHyC
zsXFg3+^8}yFH&W=#;4=PHOKQJ&y-zl-c<aup<Pw`?yOZcc;$UNeDlqXfHgJe;{`Mg
z6(_~Lq7FQby0KP2JaBZKqSs}40srKLPkoKn{295~=|Mr7Zhh0bs$ZYqaiu)8ESzOi
z>t;R66zkV(f+a2nEze3?v}bhP&jwxbbz$|@uB)TwX<WHjz1DZ0)#ixD!ylfNI__OB
zSJ6>%$izp*oa3v+=*2?ifC$c&Z`FV0&Na-kQhRu%^X!7O3vM93fn9bNz3%IZhfY<V
zC(w{|bm7z6NlZVCl}kk>tyM*If>qwdO}BoYz{%67C=cp!l&!zb(n)M7pM>Xf<)dsi
zdb@ZWM{+g8^M9VH?(IpRzUW@XsE*VNKV#i+Yr}OeELRme_KU<xmbA{{u$jqawtK;c
zD_*~PKW((u_Y9wXkR{*9=xV5d$n(@+xyjSNc`sdZG{WZgwY}RIKU`+Kn0BT0u%XOi
zg}el7J^fojAFm{zOypm><%@!L;SHZwlPZJG4fowj?Aa7mOlE7G+_U6*ljCwBj%&4!
zeS*zC%%iP2{4K@8tY0dQ`_!sV>DgIg&n2rTZ<$=bApBYp<!yNc`>t;0zK8<O;0u9o
zAMLaHB-ouL;m$w2dZ7K+`Ad|3<?So@eP+#G(QNaBzDJwSKfe7IZ_Bk~#T}g2%lq_%
zvvs))7I6g}wosmzu=!!X_vf|cRefJC-f>9mRhBBPU*GOB^L3;>;}!ENwj2)7PH(9r
zhkcGZ^@vPqk6zfa?u$U|DvbkIKl^M_$<R<~si}YT^pl&)i}F{lUIPN@w^hvNb5`8a
zA6^?1-kZx(*PdMO#_De>FA%$Tlh041_GTZ|2%j_lb^P42uHLhDhX=B8&p7pb&db@0
zC7vxg@>IjiZr8nc)8Bl!*L>9LlCn~OH`CN|!OO$j2QpVEWUfehUKzXUW!TG^;<DM>
zS+@tu9E$$Y{(5VRg<tbN)uZKG;$E~_if?4P@p0%R$Bur6w7Dl!KgcUST~+g9jW+wo
z={$F*L`v=S`V#cu;k9E&T6NgiRLpmm1`6z3rID>@(|;l4W@}(zJj+rSVJ($7b)Q_W
zTQZjG83r~jQXFLYreU{;K77855BE^soHHh(Jt4xUo-%YW-3Xm(BG$upM$S2bJBW3i
zn>A~UAzSIA^diPjnSo+#(#M?qzRnFi>fs|I{dtLh>*kAP0{4%mZ_3bjk=1g8KjGE-
zuD$bSd-PN5-DVH^dyO3IYvzjgn913u8$EcxLe=!aR^ct;=KU-c%^D{-+hz<m+<*8{
zbws#IIniXT^1zl;Aq{=QF)2e^4kXCb2d+|<YJA!wSC*#TZ<Bob>Y{y@2bJ&1pGspY
zlt{Bpi1R#D@<FQ8=3)#>kf>$GJExM%s#0056(<b^Oh=jq-OrDPl{|ib>sgnF-h~`j
zt0^aP3T7Sdp2O~Tqb2OZ>9Z~`G)`S|x)*<|w)CXiy^wP*B?4FHwFmLcHEI4DqImbP
zcbvGQ%hDQ|ojz821<?;O)<7CW+R2gcB{z;dIB4#F<4F466gT6BBkvvS!c<gyhDWP@
zHuTqvZr-e3r|;2lB`k`0`^?#Dd9r)g?cJ+kZxyFxqvy1P^`lz%0!FE;Ogy1%SCUl2
z89%eNNi*`4S2bjBNj_>KvguH{oaP?6bJ+(hj-9Hr_u5%`!EMnK?l%i=+`9C3;qD!m
zV^za%4DD!@zTte|b=PB+Rdb!rFON_2EnK0;s!+V~(Sq8m(aYl76j|+9c*GU2TviR|
z|E$<1&HuVd@=LY-xmQn`c+`~zIL-Cn9AM~@zfkhQhry;g1C8hKHXjkwqiPy~7xt?4
z`V0&YzbjF{WDpZ`^)Tbi$NL@3GD8;3erH%YEOj7GO?1kleMMozwg*CapT)$LUkzO7
zKlrY<wbbriY-kLnx>rK=u1ty6fXNrnku@bf8?O#Yt}tm%Jsnkc=2Noc^(pII81e*`
z+&1HqGE#lPmh_4x>y1uV>%&r)@+Zlb6>9e48RETRrzAej-w|tT!hOQ=&i1`()9$N2
zi905?K{t)rlzV>lBVB>m6gSg`jQ5VFmM-^GhK}_GeLpUeqMl`J?=0o7$9ue2E4*X$
z=EW2#wKHKgg6ot8j~B;@)qk!2_VxQ_ca4bka~Bm3J^b{s%B6Xo41Iv+sEyErU%tC$
z9(nknDSvbAXjQn+v-qH722a0K*V%_XLsZuuQ<7L7YV7f`)+Mv0Sig6tbF{x~t$4@v
zA=dr_)l*qcS<bj~4s9-K8-_>csW817xtE@~_3Niq6*7e(D?LJ|3_aW{$<neh>zb%{
zXV7Sr-t8}0o2D6_JmBwNd^wpVaZzGwQqxoA?lb&a77P7f>94mv%y)H)f=~Q|&HJvJ
zSEg_<76c}q6m^ce)X_laTs&`v^{w=6P$JXoiP2WSlC8}LGOzgcHQ$~2JbC7&sE#es
zmACgZN_+3{QuBUhv~^q7jE~-#=T0bDTTivMoqG6A)YRwpKStc2$DK-IzsmLe&WtH7
z!`2odZ>OHIkzBQHuhH}5zE_X<{Fp}foAEqWd_Cmda`<$<$(A(b?25RvM@`!YH&}$s
zEst+@ab*e1o_TdNf7-K)`x%R$ttpDMluK6h&0TKZYQO2OsrU0>uQ!ncVxl3w9MdX4
z_}RT|>U`TqC#vkaTUjSIzSaNT#qvv`Th+h3Qjz|sZdkE<M8h^EqVMLx`ndSk{2A+b
zDwJIEl)qoO5U3fc7u%U~FGhy0;+Rm>ZL#O0Vr4Ik_BeBgc=k0(Mxwq(g1x&VzYq5A
zx%qTxH(%t+&Z1P!$GauVDZX{4I)^ReTRkMAP6<>z@+f=6LBFl@WACevoA$eWY|}5z
zGI=t;to7WF<^zH)k=bRfm*-VHQoE28-?_i<WoYwg^WM%~@4N&f1xMeTem{dcG0kgR
z?%JrS@ZI!&bKN`%&s^vufir%nZ)`||yFb5g-{0B0?`ip~IWNB)Q!4I!d-LE{yQU+V
zZDHqLUd(;>co(H5<dCubfsr33Ti)Iui1_p=?UmbUW!u(Q8wexMo>>ufOm<smLu1-k
zovoKjMnB(q_xSMPHZ*FTuQ3tdd80Q(E~^MyFZAxU=e5CJ-`&;WGFF8r>Pvb)_Kn@9
zQSQphP2r%UJ2Pbp1Y@R5okcf`jv4+BWkj1Wm}s^^&?gsyK8s+>kNw62h=0$ImK%F?
z1`m7Q`+9x_z}5mRO6;M1a&STFpRiEapPJ@_hwQNEtwfZb0!VaWhW6<|AoQP*aE(e%
zk$Te-51MwXb@1`;;iG5VXkP&1B%p?-Yqg9G(OsC;R(cke6st9c!V0qT&=d8xA-<>j
z#pXk=pr;ZbAElntzO&4e^h7;yP^6wX;8CZ?3N360)I7rU^+Ij)e=>!d-Yz#*Lmv+t
zQ=%I`46ttj7F`vheRF3_0=t&_$X$Soe=t1#B#fBi;NvW8;1K8zoS~jV<2$3f?0KV=
zbPQ1-wEtxciYRdr59`ru@T>t~kz}jW1^~Z`xh8>K=@KMtW~c*iO^l7g%n^n0fPQLR
z9N$ru?xuC$0TyLH^I$sahI_=AfFQ^=sc>jnt2zt8pMQjg4)tlD7$9OG{wj7#qyn;y
ztGpHE-bsSm$<Sco*HK;^^1o(IiF%0yKk|r(M{0ZkK7cyFfG?bb1OFRKl}JTGc23Ny
z@%w)$ZJhQUg!nUtANWie++p3=B@WVgTk=RqdOXuwiPi)BdJXT^{x6+?eNm+zX5kss
zbgF9rovEV3GIY#H`()<+Z(Sf8ph|t;3*X1`l#uoP0E}MZ#qw$!JjwRI3}cK}q{jDL
z?S?IAAjD1{3;iEDQ6V+PMcYSJ9>ckno)!Zg3P006F=1jbT2*(QoL|`ZDSMDPJ{XPX
zQ>AzANp!^{AM62k{a8<##2!%B57G(NmQQzn3!t3<ijK!=U!21vpkNY(CzwgFE~L}T
zohN!v7J9G-1x5!9w6EC-$9V#x5~*Qi4*nWAK9^XzU+;oLoJ6_M^<;uQLk9`-=dqiJ
z1JR3sXek=S@avQ-u8T3NLuPGd3DD?*WWp|u+HC-I7#hj~q<xFsanKZ1S(&k<_KC89
z4xy^FYmZ05UnW9BN7b~i9}hx2!;vFOulp*K6^xu=(-~pRNib$P8X)|t^1u;>XDcqd
zk6^73$(0)l&u#&*{m`%^i*3TelaQ=NFtdo48!s?C*$Q~^1kB;dG36Br(uL@JU*{)-
zUNZ~;R?LEb(!Odh9GxKY_=Ot@Pwd;#^B3T+w}MWsru{kmit(PHQ~$X2;^Yz-`1_sR
zP>&#YVP8M=sG5TpEa<KQE`jc2{~by9XaMshpKR-Z&UOL`*hTG<FKz&TyLm(O01@zx
z_xHF05HK{XPyE3T2TYtn;yQ^S^-LTW0Z-_np<#uh)PGV)IeCH=MwsSw3QR$Ox0`?&
z1k_{J6C#;%V@Vx&eKU5RwrgD9utQ%KI4PzIL3YuZG~?D;F*!hD7)%o^K@+|iKs|;`
z3Oq!LIi{XS9?F}z8e_BhIjAi=Bi_dT0IYEj^e@>?1h)%mmb>=Dv#SB|8f;Cl6C(rf
zW6}^EKu~qZuK3GQWM#&>pvaS2fcQPkBR(+B?a;7Hd<+VQ88LBU$mb=5&&cX5!0`YR
zv1A^E6JiXcjyv2GvJCfgK@OIK2b3J4j3voWWG1qMEnV%N(SY{_hK}`lQo(*<F!6Sf
zBoSYZu<RlkRahN$H5lkdGKytI6o?t74<akZN<vH|8(AF%4c@FCfI}V*c2!&%g@eSC
zjdMAv-U8mRA))B^Q@XnzgyI%(1|<*DzT|EH5DJvXYv|+Z`}=`tB~p$k->cR(06<e{
z0yJRwr5}SMA2uN}dJci%6oRLRSbIO%QehYT8LCZ#Wo-){h{#$sf(wIEmM^w5YJUJY
z<OO3r)U!Kqv`xZVs)wpVpc@4;R{o6Rrvv6P0CU$uXS9zVhBK~lq=5|NH~9tldiw<l
zJNfzqqLfCnHNsGa!`mY;5Ec$$w*a^v2We7}OzrC66$oz+j$NmmC_{*MCzVcAkBcQ%
zop$fR4V1_`Iij6In6i%Lw^6o6GBhlvdF<qvY6R<qFm)|+bioYKp^FJv%z5yyCQ%<b
zc>@2@BnOH%F1!O1yc1S!tlabg<{$q5UbSgi>SJLDf{90Ds_PqwjjtM5G8w>QnUqX|
z5k=*?#5=SYUcj&o2x{Jp$DBkKLCuMqd1OiSpVl}q02dB3;te1_IB(;e7|*p6HVXw?
zDr^obL8xy4q~eVy(|Y~RrX?)WNZPORi?X1&Pbu`H2g9L#(I6<}eUM7~cmTo7T+ehu
z_{vP%NKeO-8o?SXN`@Ei=A@Ic+o2z#&)j%m(%Fz#Aj}4u;r3g(ED11-6i`}Zy=Y(V
zK^!K2HcY_BLl5H0%8+<rz+6A1$rOS;LcOL}Mo1<=S9#Fp(Yl0R1+c5Y$Q4CiO~%Is
zRNu!ph(bCOHifP#&tV9sVJ5KK%AH_B|2Y$Ap^zn5b0k7dBH`Y=0Qw#p7W4|-2*FS|
zKApeAkkknzYCRJDFCnX**TNuu08|(=Y|)HAl<EWr1-S&s7<vP5S9<w6I(UJla)nYv
zcyTby>nK3pELd=yzAwwfkw~<4$^>aZLY;87Ul;`f&j2g2vFIsB{}4EKshzY|hnzg=
zbe~bIqerE=hCs-$4vE}x9Hn?6BXdXydln>8>lEtM!HFkv#2K@2eGs`JN8G0)%$?R{
zTS5VoXr=E?jww%coRHVNLqb$>3#^hinegGjgV_^U{MWtJU)^X#aA!wqJ2NnPA2h7J
z_Q}ODfdV(G!KVpu2n-4cb_xm(Kx-=AXF`}&LtehCfC*?Lh;{Stg8E`Kfg-OYV+lcL
zxQsy|OcK(nlBI#mQPrh|z<~LHNBbO3;jnaFoIKFdZwl2EKuHO3NL=@SU|_lpaECx#
zu^Yul`4f0aR$9i`*UdK=0?G=6<r(>jo6mi?Qw6}N5|9XuNci=!kOoX%5sJ7tqiJX6
ztaht`zdr=1Sm&1E3~uBk)|6UJLQ&=Kdnm+Q&RDl16!KY1V6IFtt_v)4<p@fPwq(|t
zQ%)5DoICIUtF$L!!!mAG$r9VC0j04Q(`m~9!DT_EU5s9xS^opLLJZtrD8Z2ou>yh&
zATs;S<QJOqK&?<{3o%nQT>6L1iLcQrItDs9jlV{_M$Z&)R;R@l55d-*E(RJ_hYo`6
z#>hK~At68HiV5m^(E_|gkx#5$-Ej90k^i!*a)gx+spgymw+n9rq!@(cWieylQ%4Nf
zny>VpIB+;mz~&C)8S#L-+6wu-NzkzVWZ{EJ8KF!#uAmxJevt??*N6}57=ptaagbVs
zQkxjPKt)zoqD=vX&=Il>kGD#uqp0vJ=m^Uhk4KX*9HSfZ1oMD~@k4kDzdn#}32gyp
z80VUB!=T8^$r!?VKBf*3VIVWHdw0r}!~#whG&uN}@U3hn;Hk-YJA@NQjdlR<--^_g
z!>G~o_3{%?=;-FOOc*s`2Y}%$IKtr65!?eb?hj%k)lPta5Aby`_zJB!I`QlH-<-wY
z2Ye)J53<7=8ZUc|z?^*q#{p}HnV!-HL~e(b39DI-vB?V8=GjssKsvgztcDpvHiR58
z+KnFqE=D|l1Ds%$5T_*kzI3A)>^^8%BQmuU*A0mgA+B}^GfXD&n=arPLBmSP13V^0
zPEAIhB1?3>(NfeT6K<e14GbJ826ol7eLfj&|MWgI=BwQe2jccZ!y1gYuO|bhjFp+1
zXoHX*r;1uip^|*}LE^BG7v9hWfOMAyB1NifPNk2o`vHZ~1S;?KOiCs36c)|Q86J7V
z?Eseu4LjQjy^})9E0U5K+!nnf2Jj9NFrD5`iYX^g*v_N<$19cx+_Qk2_0X_0zqAjB
zxyHrWBLI%vg@b&B!B_I|88ZuV3It%p0MTpP_8=!28L-*VXkXqt9I%%!IEMtAjc)c9
zEa;r42$VU3!b{N*;8)0d9Egs)i_<1y2QXyl)~nN)aYbfJju@LmPJ*W(BmE_S_60H0
zz(7yyr->1nFQen&<t40TZYWGW#?W%29c+N_h_~fv6gL#N)hhfR1(wGWA914~n%%MV
z72>G?@|9$bW;`YLmCg_1fWcQH7(X;kE_<X6;RuNCF|=72HVl0tKoHLU5JGBD{@q0|
zItG{{tfXfR;StaV!`sgbYFh;fgG(5U+;}|4kdE8gn=vEj2vz=*z)&@Bm^L}2I!+B;
z5vLqc`c^ild|b`3lp2Hm#~6AN3rvh~B22~$33+f@LOnmiVsd_+98-zl!=WXv#<W4(
z9JsjxEHZY9YXQu0H=BHkBhE5f;-)!<Nu%S0E@)Ui3jdCylIUa^I#Vl}Q^;*+RHD*W
zv>`^z8rB^5f@n^{R0YCHiF_8XL~9#lllq`xd0P4t2Z{9Mx4ydwqnJFXJ7MdB<|)|w
zE@dl_m<$bzDL^-6GBV|53G;+7wGLGt(FZ)D&-V_GiS_v)9}O?{Xtx&Qy<+7Xz#}H6
zL_?AwhLw0n1b5m&O->`#*6#x1OOXeU_<)_Rx~aH6h&n*70{U;VF4@9V?Eq!f0$AFY
zMvsHUlTC90sdZ7tRuzgcj0Oe#i2(!TtC(xsu0U>@!S6=v&Se^|JFGRO6=8&JvyQK~
zBb=8x>jyZvc~krP_fGobhWGa13s6s@6lq<;uUU{^@W0Fr1Q-cYkEChAAh#r#T&f$Y
zis`|gX_6ku-B5zeBHN<AVA~O0ur2Qh?(;>65=~-T2n#*3)k6MuQYfVlrGR1=Qj_U4
zL{eJ~nVG`aIYJu^VG4ypOiDxwvhD6VeWW17gs0szCSegyL8z+)`A&{4_H)$uW*@5|
z57}{@5H*DS2<nkwIyzD(StJf|ObRJSOu0egGM!V#3>h>yy}%hXJI={56$tJYn#vQK
zcWp&sb7D4@G}k0ki7XEBIDxvF^*KDO1W*(>TL{F`J|}J(DEVqe5I8h)YvIAwD0`9_
z#29;05Cm%+Mio&+(<0apJPueH2w=z!oc?^25oJr(K{KI|2ETeC){g=E&xb>*iZa;$
zE%_F|w(N=AxI2Osw5@Y+U6TkJ!Ed4pMW)}90HA#bH0&z30tSg04G~gKjTF<5!G4&0
z3&+SmDJJ=;mFe39)5jsPWImi6Ql98!qoE&Nd*cQQn4Eyd3yt<26Tp$_0ZR)(7!ZcZ
z*@zx*_`@h@Sh~FC;xI_qM~syto23v^nEU{Q3zdOYpb-VXqy%Z=kF|odl?q!fn6RQF
z{W{yC?uNX@t6<TwVq`y$)&W7k;9q!nQ;3^aRH$+N+lT`-0J&>AK7n$|0vsQR?jkNT
zg1GHOTcVztA-J>z5r60fOSB~XYmA_d<swr3gOvfk!G09Eu@`kF#s$#iDL8FP4hFXF
zCQM$o7!HzT@>EHqdMdAiXP~uUCjrw7!s-|@Nid12IEc=Q(T7J6o!}ecc3g5`)i9V8
zVtgBkl-uLY-RI%2(biQ5kZ4~IAdIi!e;28LZD2_^i7llp&ahLZmfljL^#;FYNa9Gw
zdw3)j%m{mA6o-iCS+Eu*+kZnsf$73w39bvOD2$iTlOt{+5R1;VuWdsco)6Hl(e?XM
zI5>;ou^s&Qxy0Cpo0tWOR*TA*_ShnTbOX*~4?vd6&^S*PG$8eF3Hprsh+KT7<{<PT
z4EijO;lwIA9O-yw)7<GX|Aurj@08TM2m#zZ(6Fkv0)iA6`6H8Q{Kf@|bgtp<HRS#c
z3q)@wfs|JuY=#hKJ7d8DFx+$~p<+IU4G-{`Xq8{%;uh>h4f+thYh)!UC*95b0BSZX
z{;+MS@|5v+e$1#Tsev-u<|d}&zYTSvEU*VkRbAs7MD0L&EORvwZ-A2Dlquc=O2Mq-
z{E``}I4+<f-{Xf0#JwOIex=Q)sPS3CE=8hhI53h~BH9gv>A<E{@(>6FYH+D;{di2g
zWKC3KQcJmnMcX49u+hE}ORu2%r1Z*@D{;AThr%1cL;GQ@+4+RW#M6s&_o){(@REBr
z_s)tryCpQX0{jYsvMtlVk&W*HuWSV835nf#>4nzU06zu{h6oIW_VH=b3<hCwrmC+3
z!8{-zy?bOtgay)1n4m4B!ND&Htv`qp4>xtNS29-P#dd%`q={U4qup^VAdxgx(!K1+
zbl>D{KoU_J3_bn>CaFQlRkQLo2h6q5umczL#9^YO19XZ6;cB$EhsuEXxku`t889;l
z8CpS@douu~eb@1Tf1i8oTIv$!2YosVV}im2eL+zS(Il7b9O%3dI)|B@@I3%=$FJeE
z%)Eb|wiNelZbQE7L1<XhUJLm}lh|Pu($zxyv*2k2Nu0@a-$^0m$gjUud=fg1VtY40
zDV9wbIb=bBiT*QovK$TM)clV3p&U@~0(`xkQPhv9EXWN=qU3a=IC2B@q>1V2CR~LW
z?+LqE`$yKF>Ub_VL7vc*axIz8djUGz15=9iIhcZJosl^Q|D064&Ebp5w~4btC!GOe
zG9;3G1Lk#6$v`O&P>RB6w66sZ`Cla;Bk^N}I42q!WV!q{*A<`x_}4HQ%Cs)wS7$hl
zKcs=8iI=E;-}@vw*JuvH?2I~)E<c8b%}kQof@2oCi1bg!d+eW*l<=END>3xe;IaNs
zTq5|vXu(**@S5^K0{nUrdR&&my~rtq+HWrFlyw5f6IWJynf)t&15E*^QL(!@3~4`1
z0S{(KU-M{F@K>%-A+9A{MmN5RF`|9>GzijJq(-Glt&9)%f!^&vPYN`w_fTGln>La)
zNR6;iqEiG)z*Y)*?sMYl34{_dAE;|DF}Vhr69I9_x!ph_ia%l<lKe9`GVv0Db4VZv
zOgv6OT_lGV&wT;#j|ochshCLh*eU14Z~@kq5d%*_aBQgZGEiR{`al-}r7=>VT7nzK
z-y^hg#Bc`^4{c|GC=^0OnYY-Pyiq!Velpt*JRxS=Bh071o#9C25GJU`gm1WP5=`o3
zlCMHr%M&Bt0V>J|!k&qV!MX7G+CVDE$Q*g06L5+$VI@EeR^JsljG`ODz+jOH<ig?A
z6&!;nTyya8^?~zHV)h|ofisg{Sq~t-1Y)tr4_)Q|fmpw>ixgu$$P#Eq>e9K0v*<eX
zfG+r9eFtgy*MHdY7j+@{IB1z+NVK|69_G`8fbb;lh@29^J|ae(DNW9M4=haq)-J}d
zmaPhhiC4kDnl(f#v-If~X#a8;8dh#sL$b*vw8|6B1){a&{E2r!6kQ#GrQ$ayu#`*}
z{ubmC%uYA)fT1_c0qMdFU;XwtnNU19z{NKRZiNNPK-fXY0aEUX=P8K58U^26<bWX`
z06XV{)qgg{U~n;y-;QmJ;TYdH06Lnu$Rj>>Exr6|8^9rd5evD!W}HA@@ZkaiWr&uX
zm~xFI)8U-AD3C+99oV=KU}>La?F2RwBok%w6J!X{7?*yzGyqU`K*Q4Lb#GD{i8*8l
zavPuSLvklgu5MCD;^ZJm6+i9ZV4!d}G^`OB`VWv~8y@R>N!uYnNH+`(n}<?fk0X+z
zpacO5S9kykb~7$;&n>`-x|Jf|Nd@p-D&GlY9w9JvSpyE3IO!^cqbM}`nXj}CqqG7P
z(#OuxEQqF0qL1XYY7R*k8+5|Zi$IRV0habX1IRxXj!Yeq=RzJ+VbrAmS`SDf06dq5
z2)|}N!qJI>K6)YOteI3QZ+}ndbpsTXNvVxNTJ#u)gtu(8Py{yUJDy2N2u&d657Ts)
zLy6oTZ1}WCy5>px!#OkmG_0?+==rz7aEJz>p%vE+Q8tLt1>_@z2E?R|mrjz!a4HMj
z1blsDKUYkBWXFH`$Y&X+YOM<Y)X)Q{-~`YKW6)Dz_kxi;>^u;bRV2q(_hc_XCkRAa
zQwv*Q3>tCx<RYg=r!;~><;W$%5*QEu3<h#6G8*U`4C)J+F=R&Ji!zhP_#%x}w6E`R
zXhZ^ucbZTHJKK3g8AOPB<h2CD!P_5bibl2(rg~drQCw1D&E?G+d;xJgH0&z<d0<jv
zNn!+OhIFfhj+0+Jy9AYgu<V43XWsBW9QEQEA@GHiDrxm#+A|nBvN2d!HD!=CbW*31
z>Z&RewlWA+sBE_>C=1D+t9ob>RO+6K0E))VP<8AHAArJQf;(sU3=0Hi+<$WRsFzMu
zRQ}WP_S*H=u5E{TLVG%_VEK&T@JR%Vki3EvKX#S-nae;f@=>v=CfZ+Ve86sj{u$1p
z@|@Inb@@=0HXirFQtvuCDfJ2jgNwHIJZS-$sQkbc2K<7q`kh8SAr_2Ijws~k=;9)m
z_J#p_QJyVU9iIN2lt?-9g?ISpr|_?UXAOK7hJVt&yk9s><Rq*Nh8GgOAd`yxL_J*N
zf>|~o1;UuIGxh=Qg=2&ayL8d^w2-XzXGSet0^m_b^7T{jGS_$VIQI9cxUPuuCO7ul
z*hFs@9fZ#~l_eMs<i7&)u_3FQ^f*lHS^yVdN!~9ctoum0T{RPzfZe9<L$N`H<I|@8
z+btP88vm1*4Rzhfuftv_tM7$f40R(SLYq+d)z36Z7ZhS(6&a8H`&CXO_Y6rMRz2uh
zaf~4{TbWej&PobpkPCDD<dAaYC6DNadQ-;(HrV+~osJ_DKYutMhiWMZYTaQoLu>t~
znu4XkTy0QoeGGHE*l>MJ*z7y~$C?JjQh<p4KNj6L8(*}sil5Am>yyZSd3nOpg=F1B
z<?{xJQ<KO#g#(9)=M{;p6Yp*yx|h`K@GAfw)j`7wqAJ&T9}~B)E<VBDzb{Hri17e~
zn3QuNV<n)OK*I)n6=#kk{@!oGZcxVD%fSb-K8XdWkR}>6whT7`2Z&eEssZbt8w4v;
zEh|d{vo(er^mHjY#)f*PW4HE+`89}W>r18PAwcjRXxQnS#)Bi8WcrAH99kRC+&rb&
z3wS6tsRI9`eGPa_{PdBDIx(Vw2v1qNv1xppizQre_N0W%5vye)Otll<IcTL#f`&CE
zFDA!SCHM(wrFA|iaeED@BP#TR-RYIip-m)Vr5#UnC$IUIepbQZJ}@^2oDVF6Hwe%`
zNnJZ*vz3OX)S9G*YxH!56=mh%-UDGVK$NdGEU~`^jEIDeX3?e)e#Hyo7)(-m5XnLN
zLuZ>p_-hY>kF-x{0-3*~CBy(Sb{QVuK@uzm>dJ7HK;5{=VXbQxL_RT#`+pHR(y5d%
ztJ!G@Q&|O5iH-O5L+;qPP7<ba>^SQ8y#@TX2kCnD9CatOfg;{8Nf)8vlFlY|DIkVv
zkt|Ppu4Rjoa*3PWdtx|_5EYwPtr9_Ad{cB}6+o_rwh$WaOBcsMLWwHKYxfzuy${Eu
zL@S4m$X?}SJVzX*W5ky=Rgu5}5|jJ>xz#^dw})>V0He`kt;6fZIAr4J<%w6$(L4oK
zJ`H;g^F*xVaT%(oj?X{oJfZj>aj8Q*-5->^fZU9IkeZZGIaR{e6cL&;#Ka*FgxUgY
zu{Nhf8iz@8nkgqsh=L(=ut?M6jUE6Jv-Q<vX`?4dKUG4B+3hHp%DKDl?rb0v_V&09
z>H~QknIvl(+#(}rDcbSR9TvRa0f-O5=wP?K8j3VJ$#(p{VaVVRB^6E6QQ_9T$id8l
zHX9o4^Havr>KGmb0S>&PBapZodH&>ct*L?oAqu4&F)0EK*EQSfx+@HKISf~iMiu;`
zSH)re*}6<tQ3#U8e;1k~3<D+1=4-Sq`v4uF<sG|AXjj8^If<<WwID_r&}~BcD~FWd
z{q6$0z)7k9Z(UI3k33MWP0>2=89GUXaj3yRX<y{BNjf3F<w7(YMU4I{dZu1z1UpVQ
zgBc&(Xw$%TLo{;Z|7L9YAWR2R%vq5$Oe$dr#A+b+D`)~wu9(C_31mO!?ue3j3W#Vy
z!e)>7!Or5JhK|Z^IU+2Y)H78stbM>_qFa~+*MR=#HCmbA2%zNMYCEOPZ=e$cpdTwa
zgJ8Y>=T3;XB9S78`yA)o0-c~(9d>omSc&U|M3IRik1+GDCB<<7(N~}e11{~GVSvM=
zD5%Joxx$GERI&*q+AFGA5Gsy^pg%S4i9J#FG^9--nH8k2Ut@7k;;}j+v@f}Gz7J5>
z3=QiS9$AGalsrA&^l;JrYWQmlAaFiyobb!Q7>9rh_YtCp$oI<#6o}}7KlTDRtUa<f
z!NE;pk5Gh?u%aRz`~EdreO$+|o=?6hjh*B=Mi5g(a|gS*E6RP<0mC4SVZjx+K!Fj{
z@#I`;sUbB&&I(#dn{))$kzZk00ecS&8d~rj#<I+Vd^frHz%oh*fuJq;78x%dJ#cgd
z`S8)QOBOiDaT_IU0##4EAaO#*C^QJ;yN|o>#QIyv3yiMJ*tH&bfOg~9eX~1M!^BXJ
zN>l#T??YtY;-EA@-WW;bfDH;{W3ceDKo&V5%pFny+rbzq<XIDUiQOA;eGs*uSfd@O
z>$ANHUMRb~5iBlNT`$^9lrPffw3TIkdoG0K0de=GSWQkeP&*UgvE2P&hocrkyMN~{
zS{Pie%RPa!eJYt)HMnX&bv$z&#!PZZzs3a}(oYO(BEc0;$)Fnr;&uZl5B!t%J=};V
zj^x=7<c-)T<@of&-y!YC?)*3%aS-?!#|0axC#wV=R_~gsC4F?^&+*+Qc2RM1`rrB(
z+prOWcSx*6tqWe0AJ3h0#&tpzEAlEGU1jXtLBN|`(6H-Nu*;;7a>Qb-NS^Gjny+66
zc<6u~D^D7(I81m2{qORGhJ62F;4|cX@qwX18%x^v9FK*cJK8z3UYL`+gAd%*rN-$Y
zJph~XOfZ;8Xg--8c4LQ*pF<O%^$Ndw-Eo5$FU3Y4^OK31CTakGW(sW{255yR4hY5k
zbX@{H+)&Vu5OG25s8}a)i#!(Bga;!^fSf8}+lDad=Fa9GKZ?MHw2p1U5lDhbDyUaK
z#6|6evF1R7)nUTt;)R2B_6>IQ`b)W{Ey~$uki1IA0+YXV0tonR-Z+@QPd>I_JHb6b
zMk|4rNvIe4LCJO4d^G`Inr$WBwiE9A5wn62kJnmw=a2Ikt7fkLxRH?Xm>5<^mT}a%
zo#Qodh3G6x1>i98+`*YOs>va49+6wqUVr2>dN-mLra%re1)+g7))3qp%-TLy=8Uiv
zNAL+fMc0voGXU@+7<ieGf51}-CNG__?2!9Ba!%h0!*PX#)5Jg-T6;%*;yY2O9o>q>
zrU>i}r%^eHt4ykUF-rrRykXpE`NfX^O2nkp66_Y@sP*eI1qX;~*h0fDz~NA}^Y_kd
z;*A?=Y*x1U#041np<m8rRFZGBB~Ri={4ZigykU#<ga6or{PFD))&_0K#dSiQHR5R~
zf^6<k$|292Ta`B{B+=tVcH(B$hImMfpz8xU(7;G5=czxuC9i_`_kvHv;s%I%K3C&U
zXsM5ZhBX-81(Q-QCr2=INHn}2Cu*UCh6+$Nkd6tTd?Af|f-ZxrJ{DUbDhFbUdfB{O
zv`7{MQ?Q|cwjvrTsqq{O1&~+dI@-eb9cczSY{5zd*V#!KKs1<0lG}URvKxP^vBHGW
zgSQHhe}Wc&KWsqBc4PZq@&m(4i_Hc|lMg_{P8xmbq%_OR5_VZg5V{OEd%6Q&AvEk>
zx)qN}lBACi+}3bsM8aRk6R3(gKRH#z<0Zt(q}h7BJitm~VAiS(hq=bZ+c(5zygL3^
zBDx$g=LAJ&eyloX+67di$P9LyUU>nBI*F-)upx1IK)&fa+XM9ICi*p2{1h==qR9Y3
z2mZRFL=3j-`07O-w7px7Bb#WvNM3|Py81FA`aVjX_UFI{sS>XK*+-4v`qgy^azO8D
zjQ?k2aCU>CHqH3IC%XfTGXG_Z>|#FwzlmX5+X@`vlk=NA_2PErO{eY9MIu4?N-A+(
z5P2g{ZW>%nwpWrn!Mm#_#grrNgAl)2Zk(*C0I?&6NLSzZhg^(VFoLy3QekXaxSl-w
z&+*peR1#CD5S6B@rqyl(PG%6eDSCTSOnKtlgGiN)S7}To-?@IpV@@IjW6U6I2+$(Y
zq4o3f6JReYyM(ojE30YjC0!&ym5J5@G1$Lsr6Re{5Li1YGl(lBiVcOtOK(CE0(EH8
z&}g6b-Klg2mL|p)K`5jOqWU|4A!DHypzE@7{0%t;XNr4}x0j_$7$%T`Siqxua}Z@O
zW&sPZQHaNY{b%(dOXx=4^zVD5<8|YR)r$~I6!t1<2LsW2pkdj}P(L|Ki1*qNPYSH2
zEeQm=pM%$crMn)FiI)$Oco}*51W6$uSAC$_0-7*1+LzOSqZ`HdbUj>MJ)DBQf{2lA
z#D)7jJ}1Xx8d%ps^#KlzXmf~X1_*M=^#>V?fC-Qzh1<mc!b74E8AyqXj~kp65|jaH
zoV)P0K%@*0KoYQ07W{C6B>dG6`P<1GIziFCFWd4H*hdVP<v+%a9pbu#7z5hv966hK
zNrDm5p1{SGrOgEVdfPOWkg#sJ##-0aWnBI}|Cz9k63|xaDQ+cSbNt$I1meXBw`&E%
zK&&5$_<Nj^*;N4iMRiY>VFqxg<G=9tzg0g$K_ZqKu9`2<!#3#62-8zr=l?dC2`Y}c
zDo(s(h{Tb9Nz1fx3CHTW;R{^9L<yHuCLCZO%;!^ISCV@%TrVfbBzF_Fg9b<Wfj5x%
zje9z_i3F2cnwIn#M}lXJrn%jX@e9gcN0(1gQXTCx?xIcee?QWuCGJvBzlpkwxHKT-
zRHh3(q1ndPus-$%$0bz58tSDJagdTJ$e#*-4aB2YKd~VN$!;3)e|axX8SOEB1Bl3o
z!XnO6laD~137`wocmlsXd+`)PDH;O@M-O;Lf)Lb3OO`>(QO8z*A>KjCeM=*fbk#<Y
za-#Q!d>HOs@43iBK9AqgKnWf=)wv*EU_~pGZj2?}aUgT;H2l$sM?Y@F#DgeZk3c^!
zs7FtHFc0lW&TGzZ=>gUe&x)Nt;-Dw7R%7%N)&n$SobFGek>>4yhSlbCgSbw}w3!eF
zLi-$zIvr&=yrHvY!iO}2KjAR(gwx{Y|J?N$FPEFT54au&e!&W$oc1XW|K}cHJV8*T
z8?Nn*>nVlknIRs{957ys>d_}b!}3Ua1lJo0kBD1qWIz-XmA>%82+$@Ln*{Y8kBNUG
zNl{joLcGY22sQ27cx*lZqBs#Y-0$`cM=0_X*10%r@_~1#$kTxslvoSVLHc&WsGCM{
zU?ihfCWKrOfw31_>JeTF0rT+pNipTg10NncI?9ps9wK0R{g@O}PL{A9A>)%d^VJl%
zk4e`87IGor(mvgvG&@0Re8>&s)Q!htQ9y7fG^_|Y)6ruOeo2@~%y&d0WW?H3_ZIMo
zM~jQ6;4txOhVy2S!6e!sG+~yuk-K+6ALuv@>&}Kv#q~j?Ta9o&jd&Y>K<1eNz?nmv
z4vqG$rl+U#4e<7J@Ntn2^Y)q;3`Vpp)qmoOHnlO(usnPSe~39eC(<HEeAE^#g^QP~
zy2G7OYIGfY#Bh*-{?EqfUrXV5RF2@zB9cS-nhnrc(fJ#8J*;8Gk&I3wP2k;tU~i&2
zqNQtKKlgh*Fsj7U3LB=0lsaIaWTl#Z;^82gi1({B-=O1i;-&jR78)YCkds7t(Ri({
zl%E}sJ7C3yl?^vuk|`qi0SI!#UEW$0K}>{(g{+$#l33jy4LmAl?vIBsaFi*#9AIf*
z=8Q=O4pjfmQzY(S5&2KV=X8+YKY7YAIY(4UqdVRASyWL#H5Zx?jd=KViW7&49sq<F
zZ>ZNW363mUs|R|$bt~X6vw$C1tnFL`tbb&;pt0VJ96jv>I6Hu^+8Da_&BS5h4H9kL
zC*1%MYfPg4GDe^HpnEvP=m2HbB>j;@2Z)zN5Pw#8G0&=jv7l@y?0#95mnJKJH4uOG
zVvqq}%Dux1-G)b{U9r5kosFX(<wgAtUlXh0AYP2V?6r#nI<ui+QwHkh;IODN0e5rB
zSE@PfgA1L3C{~!n6#z#2j`87uaM^Dv;7~XUQ-lqC;bIcJ1PZ03;VIfbz7@ehA{J~L
ztTZ0aEYhTP1;6|SXzU%wnDntx)&JMob$~}%JpE8bdJ`$4p$JGzE`(4;LP#JGl8{2j
zm~xOn8cFC%?}RQ@KtzfS5b1&x=^bg(lp-CGt^xwzZ|?H)-p=gh_<!&7?Bl6Vemgrm
zJ3BiwJ8R?`3A>b3=p?U+CquyNt*{zvD4qRS-t0_R|1G1F;}We|VJNM+@JDg?$G5;U
zs@GLt0giDufwh{{AJ6voCnnh*{B$QzI_xpgOQq2{ee>ODdyo>+_oJ!7u2mJ;%*19r
z3y@|n?H6aiNF(hh(uO%Uj9x`kAl;)CD!U*aUJz+E5UGP_W?sk%%rrFBx@}v9k*Y-N
zjdyayPC$f~D)sxx2LP;%V}&|>UscVOeR>z=-q@3(sXQq+ES~Q<`}`A3+axsAuz2_$
zqgJzP$*e(Ik8Q)td|`M=)NN~Lb(fg>a7N+Y<%jnHiDS@I$jllpA>~d&EPW^A=c6?D
zGL<^Ari;0^JKSYJg9d--+g;<vVWEvI%`*$e)HWz}yu6qtruNq*M6LoY-H#S^s7*^(
zKJ*f2F$on**G{DN;9EX!YrnqWBq>dmn|Ztq8l9Hk(O+yi^8Sw#=%$ohNrwTMt(P4u
zNx#RH*k0vo07wi%Q}y~YA4VowkS!CsYp#e82fIzJe%}bdt4lJoo=KeGpy8sB<}*$7
zzDLhC4FqK}yj!OsqfWDO^l!zS+~!}BED|~$t0T_Yh+$Hln26}~p8B0^cfR7&4bw}V
z;rxvmkR-02*shZD^lF;7YNlIS9%M08<dM;n98!9F6isK(OA>mXTuSHnZ|Om1jl4>~
ztQn)5n^79GMjyZ0est>-!{Ms(W>j<5hvbda`J_v>PpA=p4+pw<4>z}>m_PFi^na<I
zJ!+?>rSyQ;h3nv)4Qi|@ib2mt^ECeyzxuUh1W_@C5EM5^Lp=ri%VH=di`&Zf><I0d
z^Q!`T;%S54f(=>~{;Of8@M||{Ivdv$&J2oRmpE~1*?kZw&)-!d8OeN}H0N)5|C!9s
zfQ4mZXd9s<DAh##xE<?*?ld|zH)*kEoC;n-S*72jRREs(HEz$b;GD&~KdIJ?1n0iq
z>6K#xff0hH!p-i$;Xqmh-W#=72bbBUWC?z|a$(!=Kp6#28kwZwm!+e_6gdq{K}=nH
z^GHrh4!q}0TAJ>ztFjQ#*`Xs{EY#*F5o?xs+ptc`&LDu!!XBkEqjy)%4DdF>8XKRS
z0)yVkTcq9Y?8>(raCDMVmuJx^2O6`OVb(mh?{{JcB?=Fw-k6vOZazjUsqnXYG^bF1
z7qrX5W;R#xF#NSj)G3aj(HYuxxvJjYjdW9dF~+H8u74KeFizcE=u&%R5iA;c<zqPy
z=<TLMactz0Zdst0gthqbUFCCw?&)YMGiO>EWR%QPC!)q3*xYC+7%4rWzjb2>k|;0f
zwIs|_f9@GXv7t~jY)}s04_H--gN&4ge`0h@iv4X}>2e~xp*7Qf^MF7f$jANoK`4i&
z;3<2XJ=NWKcH4dqls%C9EvCZl=b_j$axUds|F<5wM7XzChtO#A@#&Vy+0`c_`mMj8
z_t9^1<NGlBC6A>!Mg;FG*P;AMOggAz0vp`d6j)t0t}R(RI>V}_|BH=<=&qS}bg35T
zgmSRF9A*(O8un*&ODn@Tl-msq;qxK<2Y2po8wp%;>Z<3R0s|So<cpUq$3QE>_wd&x
zuL4h|b6w_`E;d6lg@ul#=>4)UKN@=%UC8~m7Rp>H;^?9a(&PHlI_>hF3)BY_h7MwV
zXjr3v)2wmwv5)$J?o7e%j)Pre${MsZg?+<U45N6$D1rIz5SN%1J)M7hUS3RR%Q*t`
z)+=C2I%%^VH){SRQt(T#UR2M>?xE&-(HdUb*Jk9Uda}eS#1vUm5WQ?gQ}1a#9nQFc
zaw5XHK=NB<&4nsQ@aG#qsJiA_jdUQ?srg|Wg53huZoluX?;c4Lb_Pw|F$Rq0B<hd<
zjeOSk9E!iD9YfuIYmZ?FQZ!}JC(>re-t1H30tQW4464zcbF4XNoi<ZFa`OCT3j?pa
zpI!jy<lbxwqRp@AcoSVk%C-ibQ|p!_?M3G%Qz>Lehwp}FSNOFd)9g(vY3k->dsq?G
zyfsy0=p6l)TWUZ!MzkGH#F|P!cPE<th;y`|sGZ!Dr!~D{>AAL~C&(kAs^xi8Tu!i;
z+^-0;Q0wwXlYlo^U?xm;iD{9CVB++aOQY7t<VQYQMK`w+z%{?>(+o_fQ$<AO^?lOK
z*q7CT9-L<YICZ^fUacjftoxsj-+}3$f$6VqQiNYq=9|-^o&KyVbovdUMX&ue$W0`b
z_p$}9X_Yx6<Q?@3xzYC~FlAy#zb_c3i;c`?@5>7Z#N=j|mt@i=FVl5*FJzrab>St=
z-o~gE;r=}7!YRmppMqTW7ktSu4S6?jT^n|waLtn@x_WBBfh0^H1c<5Mqu4sK-P_I3
zk&PSD9ZRb=aC(#2=Ac|gPd|skFkEwD)!Gp23TuS;TjE&4L`ruZji##Oy6~nd6ifcf
z3|iWQivG8Bx;`8F8HaooxsaS7y4U?RZ*(ir9Ezrfq+27^N}-$5U7dxb32J}Y;ZGs~
z(;2NAn)zK2P<Us^H#s`7e>xtbiE_7JG}UL&e*IJZwR-I^emNshGS*UG`0YqLRDEmB
z7%J;{2;!wqRtT;R8Pl)T4oFWEM^~DxC2pbfegq`Ues(!HZlwdHQ-k3Zo<q`4V6R8x
zTTDd9MX>?-nJmYznX4FoxRjVnMSmKRb~nBJwR7akaRbodKCw1uta;@Q?Vbs7+@Z<w
zyz=x@BhycfYo)Gp;H1t8U`Lf?6YPK{#kx?L7>e?%yUYR@dD+f6W%r7p0b$OLA9VN_
zFexcf4ObrC=mHb6YReq(3u*4}9ud;oKiEC6d6ex(l>WwF`8H33sZ<nMG^(Sj$YvLv
z(HTnb_?^*U*af{)+;=OROu4$`b~Y=lNz*y=f*Otoo&P`})g=8w+ZZGlNR7W*o=qqh
z@~;8E*Sic64@5tzqv*e%UG%|xt#*|zHX*vy+<d(ML9!u+f#H>vmF2&~f#JgIM#o91
zBuGOJ-M;fUnZT4GN=n!KI`3j+%MH`8jBOdgp~&m$o01mihi3-pI!1J2x|6HT6hcTV
zbKp<9Hz7j^zwc)KzRHwnH^2w^pO2udNNE|Z*~|Knl4OxJ*N9)i`+t}^5OhmX8V>EF
zY)-F0x4yhj<vo!LjQvHO<(LDk4@tLHE2I_+Z1D%EUMm)A<%14#qf=n+SgG=CMye(x
zpx1CJ4Nsw2b#v`<*afIf#Pw++XNE1a(%?s+sT<*#UtA7e=2X*07}(`m5wd2bTc$ON
z++{mwY-!ru>tc%_x$wR-a(`<uV>C>-O6be{W*=jHQ1z*Rgnsn2V0yY0FB*y|qqFIw
zZ;#Ds4wM)))h|)^1Ow!P=J>#;PxcX)oi!?zoC31P=XP`RHEG7L^R9XkTQ%LxFw#V#
z^pgEio(aooMZShERUgCoU)i8E`y27Ocb8}JgMjcGnu_q*DUP7O`F=m+;>9rhbq6$6
zz&f862z5QkTWNbP#qK&0#v2h;v6tl}1(_!bNVhW#QZ88i4fpr^Ut2U1aC6X9+u)FE
zNH6`;I=FCc(q7<wn}_pm=~+f*ls;E*>dD}l89*2%sQTd?Ly!Zt=pQhge7foq<D#NE
z(gDA@#+2{v(2B41?_Y(CyX=0T)%;rhZmK3@`+9|>EeGeBNO&Y&`26sT)8yNOer6kU
z<^{7uC+53QC^Uq|RmXjG4RrSeYF(3l{F;A>v4yXHrnJb^5*|f5<yZS+!zSuNnk?7<
z_}{v)>2vA%q_uIV^wEcg&q!Tv-d9*BQe@;y?&M4@a{f_^zd$$XbCoqOIHYUV=p%_K
zH~WMeMyM*3q1RkeZSm1MSf}Re`onFIy#i!c#6Qii{PkRJX0}lPGR&hh(mm3=x+V4T
zH0}<zOmR#|C^BGA(;wd+e~Z%BE@C-XH^K0$(+x%=XM>@;g;<cMWBj6;Z7BRq7ckX*
zz49$nmUTW?!-2wUw~~M3o6Q-w$Se6Xb{du1h}$Nr@NeKhBqZT1*c*>hXjfil(Juzl
zby1wW*$(#Nj)|*Xd6B{4k)fd>VG*eF9_Ak&8WJ4t9~IFt)E~)+p2$_w4P)k`ik|H;
zi~|^kdXxybZ+52{2Bn$`(^&RFTmNrMYh7D}X|!NiY8qjVM{Ht^Sem=>nu}AnCe6XA
z`g<!;hW<SeUs;iu=KwYioPu~KtGjYr<otiv{Xs>LSp=wRP-6POjMS`b+m}2@x6@qT
zE4%A@b^fk%BOR2|R;X%^H=i(ksXgSgvZ3SlG~HV1+u_{+M|)UtH1qonkZIOfOjOqT
zNDoR#7kNPSCXV&<#~-yuD{KBSehq)hNTPhVpp?GSz@ue0txtzN>%qF-5Zq=8PSO9&
z$<Qq`$M<>N6O!F={oNh!g}8T1i|%gAP!y6&8%j*j!qJpilZyWQl>X{JH~Ui~4d%-&
zm?h~bdTH&64sBM^?>*<XL`QVB<Q=8Mj&8YCv)f+UEj2NvKT5j^<w+ZC$yvS+@RX6;
zU9rsn0+=DX+GS3J(}6VBX2H1!BqZXkLwEn=XjE2<i>fDlXGHtchRcVO{wIr0)&JqS
z80}K-EHaImF!w~38vG6L_MufoGe7s-2Bx_Sq<aJ=gU)Wzc<rm6(9={G`IoOtZkY>~
zP(VRdMP>6Ccv(RTd30B1lcqUJ@PUNp%;%4zZh=r~g_M1b^}+WTX@y9~39)7B!dk~D
z?l=NXWp#W$)`f=E(z8aGM{;bRW1OH>wNV?@@{|*w22%(ixn6dKPPtBZkp_X=D&##t
zz7#;=da)@_SqPZa@fYc<qGmvGX6EDe`0E98yTzua(!7NCPmZmPV`2u?Dt0shXq*#0
zS|2y^!c~QSv9QZ=3bT_C%kTT+T`J{J0Cd$hB^1BDFTxNh%Mqp0qN0s4$GM}FkuB*_
z?>E0(<@14gfIR}Of`VPQn82<>uP*h*-2;03K&xNI-o7=-$eL0GXKZl>r<r7VKqWQv
zY;)#b3bHT4EUTyP@DdKQtaFrTOYD1TnVcE8<Xe4YW-Oj@cOjlK&zTl#?H9c^ECJy$
zLK(Cz<v_U9;Wop;3%C2brCHPC-R;p|CuQjVZRJm4T6xR3b7_}kdr5{9-8atOu6G@n
z(w47{qNWNfTqqdw&1mIhbNh`?%Y!v!C8~P2e_7TAy|LH^dAi-R9!M2Bk(Nl+x$X&+
zPQDmTH2|)bV|XzsDT&tTWN82p&VTd#GU-9Ge_)NN`g`MB42KV0<CT^r<Ef9pfwu=x
z!ZKY$SHl6b-geQ4aYpc@$9;L?s#dI5g&nP57M+n(&>hS%zxnR0GxC8M$8RUMyC>}E
z+kh?;9Y9m-l;o|*(3H(g&FwQfv7hnfM9`xDuF*F;uA>*Y2AB~$x{|}%(JlHcqZT2<
z;NFReQF4bP8Lzwg!y4p`pv;{*CR6b1@VgH9PS>V`^FbaM$dsHsvs+zq;4j21t5$f9
zYK&D}lFV7QZB#OG-nK|%8rG-ls512^NA>@40K!pE8{xxT%a)K^kQB?C3WMs@Wb{YX
z_w<mnNKBYDW8K0-g;9$Yt&#$AA0Sy9v}0+{j%sb5SjWwES&m*!-+laa-Cm6P2DqvU
zV6n!GDi`*ZEe=8#=aAdQ50%8<-K$^UHtsbyx6eBAET`s8a*HI>Ry|S^Q~McyfyCa~
zC7IH3GBMce{&_H@1GaQEL%(JK8wYLaPEU}ePhPxrDctaMs(Wtx77R<X=lTfmDMil8
z?qBd}8St6TkZ&jxSEVJx#5qA2XXME`(l2_B-jg*fkU{VTz|2(JDv$?9l2S{l;&V2E
zPGs9L0Xx*{rGVk#7sSEbn<qqfPm4}Mfg2ASqIP2%IKAwHWDIx+n##<xL5yk*Go>ie
z1kIaO=7C`ms%GlEHZCz`Y63yN*>T9{`g2@TFoUFXoNsDs8tlM0nNLk%V^hu*FianH
z%sE3Cm}bnfJ{tK0=akJA?1_oN+e}RT?dO=;p9P)7{N5{e&DsldG!m^cn)!8Z>yl=n
z@D>HNY5M1aS*uHfV%l{)O*s5|JB%S}REzEPi7Z2ns}tJKO7A}IOX`}!^6EvEPs2??
z)t;3#My%~-uHH-PHR#_Fdhg8PNHz>PnRT^mVpXG3Ysjc4151_P>Fr!X%91X$ZtKk*
z-kRR(l{Yg#Y;Uqdziy@DoP_wtIk%gTPn!bEDv>!lxg=6L9B2z@(c{@nV~bU7gad%&
z$4k2>L-Ed#bz%=uNt#J07H2N0MIm5H45<dX&F@7QhYoZ`jxBpYS_Z@k>*_;C9|3AI
zkQ<ng_*FlOae^yeCr?0$4U)PU_S^pX6!n{orZW7~k61TS(CTRgZT7gfXZ3|ZtkEtZ
z<$0c{yf`p&`Vde!4NcW;RbyO3%IkF`7ZodXyka<D)U=YP9FsFxx3kG`8I?uc+x>%I
z^_{eiV}!p-Co=p&0$6ub&BB!Jv=joUCQ*H6bs>PZE!3h9NgkN9pbe$J1_N3R2p{au
zXpfS9Ib!j>nH|d-6?W96H!9wNuvan9^^2rmiP6>(AaMqoD!m(fFcPKoHV_*K(LA-!
zr-e?#V*IrW-$17Jlon&Z;K*j_wGE3gJRm!Zk)~={*qE~v0g{;=d-3@9OJ$_f6}G98
z<qk;?pBQs!i9W;iac>h<uZQJkK}kdpR!7wA13G0A(WHKiv0QF7Cun`Tz}CwRqarYI
zozSYHnP0*H)<+alNZa}%d9+P*0(`g0(aG@Lis{?fwO&)_p}^t;b8A9@k-lxyJzE<S
zm>B1HRH3s^N=(z5!3A`;)IvU%;@};V9&6rG^KX-#IFRe}_4J5eNF0zr$X>a4I@+8#
z;}CA%^$bjRk4QrqmzSkhq)A9}aV2B-Z*(@<iF20fa`cAV!jLv07x)iZkwM$Z%13M*
zv`)Hj9KMKrKkop)k~wwwbv={K9y`igJVgc`>G&6;{DY<eP$tZ@o5%pU$eBm&z~nyB
zi3xFbXPdi!S{kZV>dpCgcXo7=S<+!L>rSc;`62<0prh}MHmksZ>KKKpFsn>qkea*!
zLfF!_+OO;I*R<@^P;R-Y3_-*vvwI`7^QZ5ZDhAvQXlmkj^-mctIqCx8AI6DVoGEEX
zE8Dbmh<-;KHJw56Y0_<*^59Csb>?E{eP6@dut<0uPR@8KxQ-r&9;zM=c3j4!cXRj-
zzM|K=M;5;X)W4u%)4Q??AEBmg{^i7FuvDfQyM5&X6{#cj#kwMu(Emxv)OUed3F}JL
ziuJ!?{Iw-=^C$DPq5Oc%`$g%36gl5jTjz&wT@cDEP}1!vX$O<=Mh32)P96+8V5mmg
z)n$xwxuU$JKc6_fG_G&VHV{tv=jsN(X1NQ(L8V|Yk=d>J%Io7m;+JUU(9Cb|_l!)c
zmem&#PFb~pv};gi>t0k<WiuA5I^MY}P1=NZ#n=&hiK;7zBahOlLT`k21w~}gs2-(e
zs|9h{JYhzzn-`Bh9ZHh)0!^jw7RPejPl70)0&hZ#?Un3;(iM*Hp&--Wm=AB0bNCgv
zmeD7V*KA*rGfvZUyy>rQiNG6*rc&K%J?lYAktXq-*3{EmZn^0QxL8n~e}g$wa+{6S
zmC_QM7xgeWe(xEIf{-5<HBcPBCL6Qsfoi*@+5`e+`jV~E|4K}6vbNpXegK!oSo%+l
zC0ym|j4^R&BViskZ{ZYj!41U#Dm##m8XtJJ$Em4cQ;yPeNE6v%;my8tfwTclJr;M}
z#;A_+s^`%vx=#X<2f|W%fF;cmb)_%~b=BRX+w?B8ke@j!TxJlF)Rc6%%*1M|`RUH4
zch_ABeS+0{HJFD@FLN*^YeEQ!wwhh0W##}6N1>_8s@5J(8+KWLRIW*gO~`P!Ct-=e
z59z;75v9(Y2OOOj)T7<dz2>xN9Zp$CI{{0SRxDPeGWp#`ps9;&-F`+X8@R;-3CKc%
zXwN?7dEp_QLXr5*ocbRha3IzBVNdx#;np-ny!FxUwFfO%8=$AAP`+yV%eF&|da`Ex
zU?`^~0Zin25QoR)EEh^=)NcfbTO4s9+v$nSB3;_V;s0KLtJTNg?j$r-7SfI~8YPE)
z#3oJ*UOjd1y27B8vSC$kzV9&x37c0t@Bb}q*p!a+wEwB|KJ_?*kW^V@O<x*mk3yGP
z(?}-@%&sR~W6BGbG}LJ)y3Kw9Jo%bLt&<EB+q~GRh^&8J?|%VLLb;8CHmd+A^Xu^|
zgJ>V#Jcw*loGnR8#M&kWf4p-$znj3IbRE@#N<PEjxDM8tz4CT7(LA!|ovlWQL7kqT
z&azJA^ms{ghZOr~>z~i3%*3yu=hRsE#B-*63oFIg3~i22Gs-5fC6cAFXHL-`l&km*
zO+8-JJJ0B*4bQgISu8?AiQL~7$KAt&y>5p=uFB^{7qTJO*|W~xBF})VtdpCEdG*9(
z9zavAtnS!jmDC6dr)L|tJ65dCc5<taMN{YO?aK^HGiTDuBAqnyQP*vcz{{ILm0ky?
zu^DT%zWq#~dCWq;NpCN)#xfL?lVep?Q!TE!q+TY^kq{qPvnYdf!BR9;7|LB|kWf=j
zFBy~b<?sAK9liq}qQQq6fHS{`fHL^tB>mOL9v>6}Kn#BU@E2FfT$66N$2U!2ErV^_
zsx;nd<fpdg__zR2DJ?{`c&gs!BS$!xo^*=MNbK)!O~%u}u{tA#G|!;WlqI`>NS0Y8
zlLPoQ<}U|YvvyC@M?{wsgw;c2mb=}4mXX4zO6=!%8JSXIHBVjBJ>kLrHyg%-$Vwnm
z_4LNxW0+2+3)#xf-U=t8CuGhpVnhm6qH8{29cYM_ckT)EOaEiZ1|wAAzvmiLzF|b}
z$M;6=&-o>$W(S(;z*+s!Ak#4uH8Cza)jcJKsv^3_QhZxeZ;%AG_r^NiE`h%?#<b#*
zgAnMf6kCkRQ!E1#t-4c3ADItj>kWUmx>T?I<ABOUOXzJPu<!Zqu~$JLW%{Ub*CVj7
zjistxQO&Kf3F*j147TOUirtsc_rFuNA=#EReAOvZ@|g>C8oo3#2(;^o`HwCDl!^hW
zwsrFtE<o+JwRCG!1bSiSgkpmM3l6dkcVLb@>gK{N1>I>)IN=tw#g&h@W0r4$h!sLV
zs+fJ4i}m4bxd~ia5oZeySXTv@c|g0m%6jK!xN?<wNv|kvws#jF*xVenc0*Go<4zui
z=@%cJmO(ye(;BN|alZZ1Bre}L=p#xirK7!SFHFgsCwsZ$o-Nze6fIk>+?%q2l+SQ9
zl`XsSu^~vdSmZ+lhsNggt@A^R=Xw)&{Ob%87tFPa{K!!MFZ2$#J^2}ghAioYCzY@?
zwDa}>Z{h9)S|tqE{ALz-$xlbmt4~@F@5GlmQ}Hp5o>wyE{l9Mif!=VAsm6%p%Ry&2
zOSMZLlEKw8CN6>$ynqy_hQiACSSL>0QgA`=gbynEJAL7-k369v--m`&7uxa~E`jMe
z13bpXafvH;N4-;mPMtDw(WmxHHtQ~iWF-~b6lqpcf>t(8e?6p51}1M5n!303^kjrf
z*^tRVBpO@(T$WBtjq16nCkZc$q}en?!tk;QF8^e>XQa5J-V(0WP?;@x8HM=b6FF)2
zMf8DNvurtct0Vi6$r>+{QnUOAVmXt}_<h}n_49)-`OpwxaQMEfo5#(lQryxS9cN8*
z6lc<qrFIsrFb;pQ5baHezr@2!_*>=Z5DRT49T-HwirLMUlUGMp_t@s+FiPESPF9@^
zwi9Ke7nbNluJ>pFtI?-N^%-SR@-RST-MSp`)35kz$|F$K+>QpXK$eh0!fZMCzp@l~
zp-ooZx$iV`foU^bL{cIRHCOLxnRI?zhNcen?IwJvGI5v?yz+(api`TSRqW>oa(P%9
zXsJ3gDy1N$p4~vR0Nebgf551cN+|1=K-NnWTxAf+O*fzVio9Nfp^nr;Ye8QIPhPK3
zY^CJR5G%l@l&gKae<QH^VOHKZ>BO%o&CFSOxtMHKNU|-@XFnBjvMC33NL;_Ve*jn(
zJX_bCk^L(AUp{9<yczZ1{GLCclM`sFNAQKe(TStko!%e+mZZ6%Mj~7Mc8OI~dq*A)
zp9h%C(VDV0Ht2IbuRTe!Ro@r}5-X#bpC!;B(RtxJ&RH6C#Z0fS=Y!5KV63$>;qdDL
zN93F}1Ln$&$G!;}@$M<Mi$T$es5s$xaYe@b$heE0*`Nxk(Sm5|t)4f6*r+%SW>IjI
zTXb&Zk+{abeq}!88jw#!H6e%dUa(r7mRhpNh&DZ@I(WlJU)~1&(zW-zjf*kpEEIiG
zTvguy4}ErSXb9^>qi`hQBmh4B7AL!dC6Cc6VgTk>CX`{4M(|JWlaQ8@Y`e!QPFaK(
z@T_Vpx|%s2P1XNn+cG>!qnD@9|Acv{@4gXX!0U{r`b64=F-%JGY1TU(PFSRQx4~gB
z5f}4h;KoMj&88)Z$}iDMqnY1xj@m6TB|1Z1!6aYf>|vMQZw77pITlcD69T^uhnovs
zxJGR{I_pIlq?gF#ITG1zgUWw(6-adZN;Q^}@LZ^3C-8;Agvy>H$`t_7->T@5AiDT3
z({I<c&xU@Rl9FdvLTop1b(=UK!rScTuW+PGr)&_7jUxMMRniissq|_V@*C~MW6)GX
zwN6*YC@FMxg>g-zh#0c(aHy6q{{hnQMTmK|AL@mpgow<)zVt3SX~`JJ{Eu7`X_2*)
z2($L^sl`_U^9Y*id`XHnFdg@--gKIfl|X2~y><@hw;6&q3fsB5w<N^49I&uu2=Qjb
zKP`<)x3xf^`Sp*>2GK}LvX>{*2WFZ->RQXtGU|j^?QV?Q=|)&zP)n@zOZGW80wm5r
zQz0L?hLjI{kP&d#qmQLh9yhm+h_tzzqsOm(@g@T_Mu0d*k~Vn0aq@Qk7Skx1joF1Z
zunDP*Y7iGXHj9{Y9|WS7pPM>o6H-_wdPj?2SY&g3ko3ap4Q>apqPi62=?!O68FaSv
ziwLaswO&mv+ka`&8{kPWB2+b;D}#YcyBUEWyUnbBzPEe1W^bi~CnM2R$vEDJVN2~I
z6&4+X->kpMZyy$$tQ0t>uY+VTr)hl;n;sVopo!~~zIS9x5EzW+j%I#q`!gcx?S?=k
zzuGTviyfCtvRp4#bZZ6(I{B;TgrETeEgSC|$!+d=AN@-u+}A*))Jq6wfMsY>C06Kg
zNz{wpk%_^69v5KL&yXyoI8Xl(!JU)Q4Mh+9&C%mmkxv-O##ZCHvXr+GPY|{a&EkKx
z3;ce%5R$icag*}ypgiJYU@z6l6`fsPFR9N$pIj)a-<hjUF!`q6f%Lw<N`q#eZwwaw
zgM~t}VtxlEF%~(S4)1z$KD<3bQmuHMN0T5!^Y7~sd}lv;{Sg!6XLgBSgQl3{c=b84
zXIR?(R$`;Qipm?y(&jCSM28<^nCcn&$7y_+G3gm;(Qqr-OvR{rb@8OU`B<a8&Pyw;
zXMAMUdw}nlmsf^Kp3dQwbQJSK5V)u^IJ-=h2K`$N$ON|*p_NhicX%f24}&3dR~R%z
z_O-*`RM#IK7S3WYQj2-%i@}ykv5x!%Buzo9qL9{ewrfmJZH7wN=<+4z0&63hs>vJA
zVVHcIa6AnP9*~Q-O}k2)NJq?rX<AXC*ZVVu&36f5GtdU#Y<q_-l&IwcJazo{=jL(4
zqCmB3+%(9rNf#>HSksYAhRX+-BxtiFD+;pqbaW09W`$v;@BazRi&!po6&erBH<ydX
zXz+pTrn5|5nHoTv<=)4W-ZF}Psh;j~UzlA8&End<RA%Gx%*UXa%4Dn7!|pE`fA!Ww
zn6F=;{<PNUowYR$^Gs!Rxy1}xBfg$u`e;eqsI_`rUyv))E*`kXw8%3$P2aZp@kJ?}
zTSgf-FEM$moj%&!B`95?ZS#i58akwt+Nr6?#6MrL!RxMw+S9FtQAy+;`KNuJ(?CVZ
zaku6Qa<6Y(kjp|}sL|FuFwEaCB8rM#Q5;O4oBNSl;E<u{X)>BRk(<6_W6?~ceA<Ne
z{+*p3?4w8sZ856cO<87+LSL*an~RwwBP}~D?=(nD?$#A9$+gIfxwQToJf73yACP(s
z#wtQ&4&T)8O>)`#6IS1a7%$(y%YCut4*s6pPO7pvwwh7Ll_m2KASNL1=Mn>wZpR&=
zV8xec<s3+bExeX>L8<O3$%*~ttttZY^4u}#V*t?kS2d&m<v?=c<()Nx{5W*7B@u8W
zPnFTkZ}&Pzn}ifjZ8CgY$E`a^c}zpW&_*U4evMqu5IIA|jajEDUt~Lu{<eJ%s>DJm
zqYagghHfxrz_1d`K$xxUKZ0Q9|M5?bOHIM1BK=duqR;zy{Y9=3vLMvuwq+w5kYtgi
zfv|f?Y4nTjez^(og3#1>%-BuX_Oc%6MAo!5EhE92Zr}LYg+{gsib%6sLu}^`rC1j2
z%>lnxPtF5o{9J$=({KI62<3ZoT`KEf)S;A4DKbLW9=H-x4eXXh2nKIu==M}!8-pF{
z(%D{<qOu7RpQvwj`c(T2;G?J|D{}DK&kSEu58K!FdbjPSoQyS51Y|(T`F(GJ-7*4l
zc00r8a>*9D?eJe$7|tXsZ+}v)=fCKLu8XUV_!>K1bRvY`){WS5NLkkzd^3GHdPo4P
z)NG5fyG+T~Dr?1@4#V5zR=h$lhC=iG@zJ=GC(wzEjnCa<c490d83VR$&{?r@p(v<>
z)%Ww>pj&o*FbXyLb#$NE!T)fou`x{B)zHU1FO5JqgI?!~^Wg!rD`#U7kfi1s6%ShQ
zCuaIz9Ff$S-haf!Osn}tPIVl~)4(R*eE1i7(UjCZnn!bwwtKW=NnKxmN7I;izUT3V
zjkkd({o$RDxuBXY0y4Ggh$8~&w%z-_|K@khD_zG^V-4ROcVM<ItZsL!X%97i;j6#@
z0jTLf4ZsM@@4`t3R7Jkc<DwU?c_0xWxx3Zw7(u4zE4%`E=-JyVQ_;~dG*$EGJ<YhK
z(fso4OBXlS-bq=06L>PrwU1-IiW>3}S@)zMCX|{}^u4^utj4<XG&zM|WzI^sO1fGn
z%9@>9h4Re5X&$zz6sCeoeyO*t7F=X($!4#$=(9m*ez$(&a1go}P33usKNz@%=khWq
zt)h-cBR1&`u$vr{46tM?b}1o*1QfgMwv~iosvz#C%PxuYlFNlKJ*s&vCDVcitXhZD
zt}skW)Yd;QPe46SAGwwSkfDOO_^S*^!#U{^B+R>2e!if$-D_NPiRmTNT}eNj>(=ER
z%5R~x8&y9%1LjL_rc?bOFF(+U;Pji#w~}p4rl*<_RQ)ES)K+3m90q8(Gg_6sVx()S
z!gq^<=vXK)iLmM2?-gr@O=3Gd95q3l`K`KT4woHOJgIn~Y0=2{<p_E9;~OWauD}i;
zt7o>@zp_CNjI+7w+gOug5X#cqF|~GV8$yg2ji#P7O5J1J)G$KmB;u|6imeF`0VgZz
z{Kg@<;?tW(@`ezZc`piDzNH;bp6BX6V3hN2*bayDoXl9JgGb9%D@*Qy08{9p61p<K
zF%M0?8`gw*@SrVI?3k2<I;C-^{?~va_k=J0{@-Y}ZJ_dvD3X@1Qx;bpf=*_lsSD)x
zKdckm0ue?bO=9$u*Uo>1p+ASnRR@sy{qQdXF@lgUE4SNIpk-u>aNjQyZFvMRX*d7y
zgyHg8(+h`IeJ?52C}a$J`2tP#0~h*_^+NkVLN}Q=NJi9^-I?c&+5oDSILBe^_kdoe
zUc#>vC9~GZoD5o@JBTW<e1@imiz1(M(y$9SH5zGuj#$uk@gKmEC!MDpi!+lg0lP&l
z&LE`4!!PxY-3m#N4}$o)<;`A;N7WUIlGys??n1rwC4VAw<`uCZ?+m5nPiS^V3(>o!
z<J{cav*=YdT4sJ%^jc&lE(vYNQ|`wHfY0QPQRQG^!Mtj6iBytavXl}r;kBX#(kg(=
zccItS%`vqQ!}Le}g8nZbByy*tFZ7F0FhpsejJ$~yxgg<Jy*$?nGgL{bn10fM6$|Xk
z+yOd=3LUt-hyy!C_>~f8wQIB1x;r&n127E(SKUV2i!l=A@!zgmUcS6wJj^CKqN=BF
zUjKe!8+0@YDol-z^ew?U;;X~);HKZ>P6j<31|ENkrV5$+8w^|WS#P^WZTPO1A!I7#
zBiE2p*HETi`vnd68!k`PeeiQBMkVKfPCwMsMh50Col~zD*f3nMqEu<tiDZQgx{wsd
zl?Z>j9dL~xA|>%p^E<;Kqhz#=l)$@%yOuOktJS+k=gT-qty9y}BGWJFxOHdc!tTdF
zO#sBIu}Kwv6?%(}_0`=OLcmBpj4Ss1^m_F236@=3rKeWq9R}d^6#UA0rt%&J&A`0(
z@^>DEZfBvX8gJ-3Y@nJ+m4-WEcAC8Dg9RAU0<6bKWk{Xf877y;|406;ma85krtP4M
z(@)XVEWtq)83{(nCM4897>|dB`L~Vq508inY1RsH8+Ut{NaTaiFegV9n4N~<jS#HM
zU77VES!a<oH3@T4!A>0w|AeX=_PNH?&+z@FZ3~jKn*w?&<b-!!lG#8gT-quo-MTe;
z6-_W?)*Z0s*RG0`S<_sW#qMbdU+eg=)?Yxw176Jc*}j?snr;c}3N=YCkT3d^Ei(dA
zsT0VgDiGgPXI$Vi>9|LD+wVThC>|~4u%k`elOu>+ajF&`RMSNtIxQ^oU&-jN_UPLu
z6sO*WfvAq4gSAX<iNmLHcCoo{$%`hh2@$$mN8jasK*xP$W>yUH%m&?NRmz-En%z+W
zF_(6MA!Jpm;#Z=MiKvbJq5_2owa_BDXB`*b8hj>oS<#d|{Hj@(@tLYS)3L?&I0Ae?
z;s`{Rddj!0n)%_cW6)GfeYeDG;M`It+J*<tct$Rp;b`h`+xalsq*9RTl*B5jbIKZe
zA9*`CsLpuldJY_Px<eR=NctBRdnHe*U?lRX8$e(Kmjr8`@uoRn_~zL%MDZd}tj5BM
zHgup^x1w#5q@DGJLrYrq>b8Dk*M!y=Rx}a1;K19tsayd$u2k#cIWS#2t}N0cOsNTV
z3T~QA=9u)!*ZP2w%9RaM1oV`xK5wny#-$&VH8uiGowp%PSszl+Ecyx)Z(M#+xdzx#
z3mSl8nday3%P<vv;*grC%Y_p=G%b{`pH-MX2^}m)Q?s<sHDi5I6{{Y$DpoQLhGy}c
zd*RiE0aGxm;U8JwTEDz*wPSiGB*q2zCf}H2@Py2~cc!kiEW>~)?4~CDJjY)e^Y7%Q
zcUBz?t+0OhM%VM+0QLYURTY&xfRC<D1LO*(rle)`PEN?^FC7#lQ8QjY^k!AyJwa1*
z8pgC>c!oV=7&0OS#o{R@gj9cK&VJ>Gf^TFAs@|mHfvgLgH%Y|MXjYf!?=)TST|UJ@
zq*Qvzo704OX?@6^2_R|-nyQ|^X~hYHk0%LLsoY~wWs~3RAgq?*H4D>`c`ll|YKFIF
zSQ`4IX+fBuZ}7=5ViBc*YkpBd3^P3*(=4r^#z@etS!w&Yf{>Q~5bCdELg1H28-{|l
zm*Sg&w8og;8CG%<*iz|8bJz<l$yX<d%pZ<V+%N=i<W5(2rnw=k1I^Hd`XtEd<<`v~
z4!FevG9}a{r2fL;*+C=97^xX5mHusALdwt?Q8~=*r<gfdH?v^V1cOrZD;&lkxi)rk
z9ML^sC~uOHf~oEoQiL*E)<eOl4*kjzrh?JN^=Ws^3bqTYh0KCe#piuk1ke}I)F@MA
zJ2os_4o~S#r6&atnLjsEALQ5srd$S)y1tgRXF%jbb?T@jUN`*XR>^+AqV=Fo-<l2#
zOA491gF`I*wZY+v<-oonukkCWLy&E3=xE78q2x%9t{E0wgU*GNOsZNY*Sj$Kf<jsZ
z2HTE<$lz;kds4z8Gwo>5UlnLrn0#@g(Nv`p^&tb5gSL1IMM~PZbiMC>4S+g$EDZ5#
zQRb+HnQt?nyoG;{sElmi(|aH&oG7T=8ts}&AFb#luO9bZf8hO#ri#v_7={_;UB|iT
z(1_c4_g~NnBSuX_c0!AY&1S@kAwmb6tSeGtTP8~(bl2%pRJAo1`tShF=2yI%*@yNp
zq7>5+dkd|j({U}%g#$bS;3_kc<2f^MYt-pFA~`J-@Vz%Vjb(Ccp&krNm)z>@X+dOJ
z2o|wm>7En6({*3@D(RS>E?AI#5}0%v(yTViyQlWwB**#P+=`j(#;-q<^18)hzOsES
z^7yp+C%ix{l?qX<#0tF_ACSA^5fPte#idj+aFYKTsrQzRM89*;RMj*;jX}v(+CU3g
zxZaQs`m<A?beE78nSV{$B=tg$)_VpLWrfD~GZ-ey*9bwRkuKX)Ie?A^G}_8&=J!c&
z1|df(T)!mRlh+3i8w{9zXaOc1el_jG5MSLL>g{|9&?s7z9sL*eIUP;as&)FZKIJGZ
z`lv}v_}wyk^Dl2d*O>AmHZ7>DmZ=`}653|OAFC_8xdcpOf70p{rz(KbnD<Bj?Q;)!
zGK9Qi2&0voE$k3!+Z6Qv#*0syb{~&U7NM0@h%Y;gbwa5s+Lxh;3HQf#y+)-SWWn~^
zz{!>gbix&@i(GaCV$W?I1I(|WPt`Pww?{JCWc&ysLB+tO#Y3i(k5`8(lzA2pvqJUm
zyN!0B)~QED_ZWigiN=t!^~21u&|O3FajX8Vu`b7;rgi9x(-bed=P9koAT(7$=FMas
zkS{C($)RwA3EPMkobS*Vt0*ot1x;OWGdYx8a9;Xqy*qELJgK(_trHk|5>p11Nz`Vy
z@hM^WY*aEmCpt`?&bb6plbOmi^eGpojv0hu(=k)U>@wLUnO?H!4>`%tUAL4XC)f%I
z*$2QizuHqA=oIl((iADlVb)|6NqU*lZcoOwm3I;zc^W{KYRCPCp@*4h>gJX_&E)`O
zLOa>rw_o(lO)1IULBHy9@cY!HU)tT?y2n@LjdhyJQv+IjPUV{DUXaT6h#6)VTGdHf
zLu^&Fw!?a@bGKB4#z3oN@*KZL&w7dJSZA$Hx0ZhC^<O?zqr9m}=|{72Z9G{VMA9+N
zTLFB1BV(<rsk7+w1;bWPj2s2zS!gO7KH0>2kc-4i2H)wvXUy$>1$u$vOHe*4)$M;`
zm{NJNLLBlLWRmZs#j|_e0>!jHsq#^M3+utf{)D;I`y<zVxMGI>VAXFc>q0WdBA?eG
znOm2cP=}TyDNOYQ=({bivwIrN?Qdh+6O%Gh6h9)Rd%bwDU|%Kh;U6?F0Gr<lfGR~v
zB7?&tLqkKtBK#@V7#<oD9PS?#(J|EDc0J4@Z49!aN1n{%@iVYx9f}UyUkbI8cRc0h
zO3P$c(w1V^K_<<fDj$hE8O5$=Pb@@Y^oowZrs=Cat=(nPtX<qTgQdRMq{uv;J=CMu
zQ_wBV;~RSz-7t>@1P%S)!^wWvvWBjP>8kEy5H5yp4_1iLQzwDfSL`G0PmUkeotM7f
zVf0Q-3>#nU?jL#ig*5)3rHZybjZySRCs1_`-_nC@6m;~as%3Z+AvGFzqQudd@N&#~
zyG%7;QOzTF2Q<`CImGdBdi6_5gUdQP!>UiK?sxD`F*<&bpH<zD0*){=xpEt5!|iSX
z2Ubvy9+j)Dtq}P3FAS321P)EXHJBdo1t)Y%u*SLLdDpbG1cW`crskL5wf3Os@CBHf
zYIOMXqYRsigeE$yH-+}EEMJD)Vhhn!|9bjy)<>U|1Sje0Pm`ZdeFy-Va@*_#1L1_~
zvnr+Al7!*Z-*Xe`oJ413bw`?al651e&r8}^v|q%nzgM2_7p%sLP|f-NzseP1CJj)r
zPj}<Ba<QO^+SK()OYefx2|!nOqD7|}wVWwoR=jF9z`o9$#d9dZs#cwit*4_4%0pI#
z@1HYy-C9Pp38JFo$=$(?tP6e~NfB*Z)azu}7191t@fk^p5!QYgjzK6oT#ue~$o9T4
zMZ;88eElpV-$^72CBB^=CF@4K>wCnb#$95Nj7M%c$9mulVn<0^tre|%v8w06mbEbf
zvchqR-&r3Tk?|HfiA>NZDLtB!r}jETrU~dbzv<^qk<po;?X59*)UYLV0M>pM*9^~u
zQ~@*#DZ5S#%!3XJqN$n0w=d>(i%*D)vnJa&a;K~&Sv)zp-Es1=%0pCxOD@@9(Yu+t
zr{%VlBPP$S>d(pdhf7RxT%g^_=kmfO(~2PYnj;5GDL4VdKB-v;_VoB@WT1Mqj#4b-
bZZa`9PhODb_F1maay4y|!)@0C`q%#hM(OJf

literal 0
HcmV?d00001

diff --git a/oxAuth/docs/oxAuthSwagger.yaml b/oxAuth/docs/oxAuthSwagger.yaml
new file mode 100644
index 00000000..8a2d59c5
--- /dev/null
+++ b/oxAuth/docs/oxAuthSwagger.yaml
@@ -0,0 +1,4492 @@
+# raw swagger spec link:
+# https://raw.githubusercontent.com/GluuFederation/oxAuth/master/docs/oxAuthSwagger.yaml
+# https://gluu.org/swagger-ui/?url=https://raw.githubusercontent.com/GluuFederation/oxAuth/master/docs/oxAuthSwagger.yaml
+openapi: 3.0.1
+info:
+  title: oxAuth
+  description: oxAuth - OAuth 2.0 server; OpenID Connect Provider (OP) & UMA Authorization Server (AS)
+  contact:
+    email: yuriyz@gluu.org
+  license:
+    name: License
+    url: https://github.com/GluuFederation/oxAuth/blob/master/LICENSE
+  version: "master"
+servers:
+  - url: https://gluu.org/
+tags:
+  - name: developers
+    description: oxAuth is an open source OpenID Connect Provider (OP) and UMA Authorization Server (AS). The project also includes OpenID Connect Client code which can be used by websites to validate tokens.oxAuth currently implements all required aspects of the OpenID Connect stack, including an OAuth 2.0 authorization server, Simple Web Discovery, Dynamic Client Registration, JSON Web Tokens, JSON Web Keys, and User Info Endpoint.oxAuth is tightly coupled with oxTrust.
+
+paths:
+  /authorize:
+    get:
+      tags:
+        - Authorization
+      summary: The Authorization Endpoint performs Authentication of the End-User.
+      description: End-User Authentication and Authorization done by sending the User Agent to the Authorization Endpoint using request parameters defined by OAuth 2.0 and OpenID Connect.
+      operationId: get_authorize
+      parameters:
+        - name: scope
+          in: query
+          required: true
+          description: OpenID Connect requests MUST contain the openid scope value. If the openid scope value is not present, the behavior is entirely unspecified. Other scope values MAY be present.
+          schema:
+            type: string
+        - name: response_type
+          in: query
+          required: true
+          description: OAuth 2.0 Response Type value that determines the authorization processing flow to be used, including what parameters are returned from the endpoints used.
+          schema:
+            type: string
+        - name: client_id
+          in: query
+          required: true
+          description: OAuth 2.0 Client Identifier valid at the Authorization Server.
+          schema:
+            type: string
+        - name: redirect_uri
+          in: query
+          required: true
+          description: Redirection URI to which the response will be sent. This URI MUST exactly match one of the Redirection URI values for the Client pre-registered at the OpenID Provider.
+          schema:
+            type: string
+        - name: state
+          in: query
+          required: false
+          description: Opaque value used to maintain state between the request and the callback.
+          schema:
+            type: string
+        - name: response_mode
+          in: query
+          required: false
+          description: Informs the Authorization Server of the mechanism to be used for returning parameters from the Authorization Endpoint.
+          schema:
+            type: string
+        - name: nonce
+          in: query
+          required: false
+          description: String value used to associate a Client session with an ID Token, and to mitigate replay attacks.
+          schema:
+            type: string
+        - name: display
+          in: query
+          required: false
+          description: ASCII string value that specifies how the Authorization Server displays the authentication and consent user interface pages to the End-User.
+          schema:
+            type: string
+        - name: prompt
+          in: query
+          required: false
+          description: Space delimited, case sensitive list of ASCII string values that specifies whether the Authorization Server prompts the End-User for reauthentication and consent. The defined values are - none, login, consent, select_account.
+          schema:
+            type: string
+        - name: max_age
+          in: query
+          required: false
+          description: Maximum Authentication Age. Specifies the allowable elapsed time in seconds since the last time the End-User was actively authenticated by the OP.
+          schema:
+            type: integer
+        - name: ui_locales
+          in: query
+          required: false
+          description: End-User's preferred languages and scripts for the user interface, represented as a space-separated list of BCP47 [RFC5646] language tag values, ordered by preference.
+          #example: \"fr-CA fr en\" represents a preference for French as spoken in Canada, then French (without a region designation), followed by English (without a region designation).
+          schema:
+            type: string
+        - name: id_token_hint
+          in: query
+          required: false
+          description: ID Token previously issued by the Authorization Server being passed as a hint about the End-User's current or past authenticated session with the Client. If the End-User identified by the ID Token is logged in or is logged in by the request, then the Authorization Server returns a positive response.
+          schema:
+            type: string
+        - name: login_hint
+          in: query
+          required: false
+          description: Hint to the Authorization Server about the login identifier the End-User might use to log in (if necessary).
+          schema:
+            type: string
+        - name: acr_values
+          in: query
+          required: false
+          description: Requested Authentication Context Class Reference values. Space-separated string that specifies the acr values that the Authorization Server is being requested to use for processing this Authentication Request, with the values appearing in order of preference.
+          schema:
+            type: string
+        - name: amr_values
+          in: query
+          required: false
+          description: AMR Values.
+          schema:
+            type: string
+        - name: request
+          in: query
+          required: false
+          description: This parameter enables OpenID Connect requests to be passed in a single, self-contained parameter and to be optionally signed and/or encrypted. The parameter value is a Request Object value. It represents the request as a JWT whose Claims are the request parameters.
+          schema:
+            type: string
+        - name: request_uri
+          in: query
+          required: false
+          description: This parameter enables OpenID Connect requests to be passed by reference, rather than by value. The request_uri value is a URL using the https scheme referencing a resource containing a Request Object value, which is a JWT containing the request parameters.
+          schema:
+            type: string
+        - name: request_session_id
+          in: query
+          required: false
+          description: Request session id.
+          schema:
+            type: string
+        - name: session_id
+          in: query
+          required: false
+          description: Session id of this call.
+          schema:
+            type: string
+        - name: origin_headers
+          in: query
+          required: false
+          description: Origin headers. Used in custom workflows.
+          schema:
+            type: string
+        - name: code_challenge
+          in: query
+          required: false
+          description: PKCE code challenge.
+          schema:
+            type: string
+        - name: code_challenge_method
+          in: query
+          required: false
+          description: PKCE code challenge method.
+          schema:
+            type: string
+        - name: custom_response_headers
+          in: query
+          required: false
+          description: Custom Response Headers.
+          schema:
+            type: string
+        - name: claims
+          in: query
+          required: false
+          description: Requested Claims.
+          schema:
+            type: string
+        - name: auth_req_id
+          in: query
+          required: false
+          description: CIBA authentication request Id.
+          schema:
+            type: string
+      responses:
+        200:
+          description: OK
+          content: {}
+        302:
+          description: Error codes for authorization endpoint.
+          content:
+            application/json:
+              schema:
+                title: AuthorizeError
+                type: object
+                required:
+                  - error
+                  - error_description
+                properties:
+                  error:
+                    type: string
+                    format: enum
+                    example:
+                      - invalid_request
+                      - unauthorized_client
+                      - disabled_client
+                      - access_denied
+                      - retry
+                      - unsupported_response_type
+                      - invalid_scope
+                      - server_error
+                      - temporarily_unavailable
+                      - invalid_request_redirect_uri
+                      - login_required
+                      - session_selection_required
+                      - consent_required
+                      - user_mismatched
+                      - request_not_supported
+                      - request_uri_not_supported
+                      - invalid_request_uri
+                      - invalid_request_object
+                      - authentication_session_invalid
+                      - invalid_authentication_method
+                  error_description:
+                    type: string
+                  details:
+                    type: string
+        400:
+          $ref: '#/components/responses/InvalidRequest'
+        401:
+          $ref: '#/components/responses/Unauthorized'
+        500:
+          $ref: '#/components/responses/InternalServerError'
+    post:
+      tags:
+        - Authorization
+      summary: The Authorization Endpoint performs Authentication of the End-User.
+      description: End-User Authentication and Authorization done by sending the User Agent to the Authorization Endpoint using request parameters defined by OAuth 2.0 and OpenID Connect.
+      operationId: post_authorize
+      requestBody:
+        required: true
+        content:
+          application/x-www-form-urlencoded:
+            schema:
+              type: object
+              required:
+                - scope
+                - response_type
+                - client_id
+                - redirect_uri
+              properties:
+                scope:
+                  type: string
+                  description: OpenID Connect requests MUST contain the openid scope value. If the openid scope value is not present, the behavior is entirely unspecified. Other scope values MAY be present.
+                response_type:
+                  type: string
+                  description: OAuth 2.0 Response Type value that determines the authorization processing flow to be used, including what parameters are returned from the endpoints used.
+                client_id:
+                  type: string
+                  description: OAuth 2.0 Client Identifier valid at the Authorization Server.
+                redirect_uri:
+                  type: string
+                  description: Redirection URI to which the response will be sent. This URI MUST exactly match one of the Redirection URI values for the Client pre-registered at the OpenID Provider.
+                state:
+                  type: string
+                  description: Opaque value used to maintain state between the request and the callback.
+                response_mode:
+                  type: string
+                  description: Informs the Authorization Server of the mechanism to be used for returning parameters from the Authorization Endpoint.
+                nonce:
+                  type: string
+                  description: String value used to associate a Client session with an ID Token, and to mitigate replay attacks.
+                display:
+                  type: string
+                  description: ASCII string value that specifies how the Authorization Server displays the authentication and consent user interface pages to the End-User.
+                prompt:
+                  type: string
+                  description: Space delimited, case sensitive list of ASCII string values that specifies whether the Authorization Server prompts the End-User for reauthentication and consent.
+                max_age:
+                  type: integer
+                  description: Maximum Authentication Age. Specifies the allowable elapsed time in seconds since the last time the End-User was actively authenticated by the OP.
+                ui_locales:
+                  type: string
+                  description: End-User's preferred languages and scripts for the user interface, represented as a space-separated list of BCP47 [RFC5646] language tag values, ordered by preference.
+                  example: \"fr-CA fr en\" represents a preference for French as spoken in Canada, then French (without a region designation), followed by English (without a region designation).
+                id_token_hint:
+                  type: string
+                  description: ID Token previously issued by the Authorization Server being passed as a hint about the End-User's current or past authenticated session with the Client. If the End-User identified by the ID Token is logged in or is logged in by the request, then the Authorization Server returns a positive response.
+                login_hint:
+                  type: string
+                  description: Hint to the Authorization Server about the login identifier the End-User might use to log in (if necessary).
+                acr_values:
+                  type: string
+                  description: Requested Authentication Context Class Reference values. Space-separated string that specifies the acr values that the Authorization Server is being requested to use for processing this Authentication Request, with the values appearing in order of preference.
+                amr_values:
+                  type: string
+                  description: AMR Values.
+                request:
+                  type: string
+                  description: This parameter enables OpenID Connect requests to be passed in a single, self-contained parameter and to be optionally signed and/or encrypted. The parameter value is a Request Object value. It represents the request as a JWT whose Claims are the request parameters.
+                request_uri:
+                  type: string
+                  description: This parameter enables OpenID Connect requests to be passed by reference, rather than by value. The request_uri value is a URL using the https scheme referencing a resource containing a Request Object value, which is a JWT containing the request parameters.
+                request_session_id:
+                  type: string
+                  description: Request session id.
+                session_id:
+                  type: string
+                  description: Session id of this call.
+                origin_headers:
+                  type: string
+                  description: Origin headers. Used in custom workflows.
+                code_challenge:
+                  type: string
+                  description: PKCE code challenge.
+                code_challenge_method:
+                  type: string
+                  description: PKCE code challenge method.
+                custom_response_headers:
+                  type: string
+                  description: Custom Response Headers.
+                claims:
+                  type: string
+                  description: Requested Claims.
+      responses:
+        200:
+          description: OK
+          content: {}
+        302:
+          description: Error codes for authorization endpoint.
+          content:
+            application/json:
+              schema:
+                title: AuthorizeError
+                type: object
+                required:
+                  - error
+                  - error_description
+                properties:
+                  error:
+                    type: string
+                    format: enum
+                    example:
+                      - invalid_request
+                      - unauthorized_client
+                      - disabled_client
+                      - access_denied
+                      - retry
+                      - unsupported_response_type
+                      - invalid_scope
+                      - server_error
+                      - temporarily_unavailable
+                      - invalid_request_redirect_uri
+                      - login_required
+                      - session_selection_required
+                      - consent_required
+                      - user_mismatched
+                      - request_not_supported
+                      - request_uri_not_supported
+                      - invalid_request_uri
+                      - invalid_request_object
+                      - authentication_session_invalid
+                      - invalid_authentication_method
+                  error_description:
+                    type: string
+                  details:
+                    type: string
+        400:
+          $ref: '#/components/responses/InvalidRequest'
+        401:
+          $ref: '#/components/responses/Unauthorized'
+        500:
+          $ref: '#/components/responses/InternalServerError'
+  /bc-authorize:
+    post:
+      tags:
+        - Authorization
+      summary: Performs backchannel authorization of the end-user.
+      description: The Backchannel Authentication Endpoint is used to initiate an out-of-band authentication of the end-user.
+      operationId: bc-authorize
+      requestBody:
+        required: true
+        content:
+          application/x-www-form-urlencoded:
+            schema:
+              type: object
+              required:
+                - client_id
+                - scope
+                - client_notification_token
+              properties:
+                client_id:
+                  type: string
+                  description: OAuth 2.0 Client Identifier valid at the Authorization Server.
+                scope:
+                  type: string
+                  description: CIBA authentication requests must contain the openid scope value.
+                client_notification_token:
+                  type: string
+                  description: It is a bearer token provided by the Client that will be used by the OpenID Provider to authenticate the callback request to the Client. It is required if the Client is registered to use Ping or Push modes.
+                acr_values:
+                  type: string
+                  description: Requested Authentication Context Class Reference values.
+                login_hint_token:
+                  type: string
+                  description: A token containing information identifying the end-user for whom authentication is being requested.
+                id_token_hint:
+                  type: string
+                  description: An ID Token previously issued to the Client by the OpenID Provider being passed back as a hint to identify the end-user for whom authentication is being requested.
+                login_hint:
+                  type: string
+                  description: A hint to the OpenID Provider regarding the end-user for whom authentication is being requested.
+                binding_message:
+                  type: string
+                  description: A human readable identifier or message intended to be displayed on both the consumption device and the authentication device to interlock them together for the transaction by way of a visual cue for the end-user.
+                user_code:
+                  type: string
+                  description: A secret code, such as password or pin, known only to the user but verifiable by the OP.
+                requested_expiry:
+                  type: integer
+                  description: A positive integer allowing the client to request the expires_in value for the auth_req_id the server will return.
+      responses:
+        200:
+          description: OK
+          content:
+            application/json:
+              schema:
+                title: Backchannel Authorization
+                required:
+                  - AUTH_REQ_ID
+                  - EXPIRES_IN
+                  - INTERVAL
+                type: object
+                properties:
+                  AUTH_REQ_ID:
+                    type: string
+                  EXPIRES_IN:
+                    type: integer
+                  INTERVAL:
+                    type: integer
+        400:
+          $ref: '#/components/responses/InvalidRequest'
+        401:
+          description: Unauthorized CIBA (Client Initiated Backchannel Authentication) access.
+          content:
+            application/json:
+              schema:
+                type: object
+                required:
+                  - error
+                  - error_description
+                properties:
+                  error:
+                    type: string
+                    format: enum
+                    example:
+                      - invalid_request
+                      - invalid_scope
+                      - expired_login_hint_token
+                      - unknown_user_id
+                      - unauthorized_client
+                      - missing_user_code
+                      - invalid_user_code
+                      - invalid_binding_message
+                      - invalid_client
+                      - unauthorized_end_user_device
+                      - access_denied
+                  error_description:
+                    type: string
+                  details:
+                    type: string
+        403:
+          $ref: '#/components/responses/AccessDenied'
+  /bc-deviceRegistration:
+    post:
+      tags:
+        - Registration
+      summary: Performs backchannel device registration.
+      description: Performs backchannel device registration.
+      operationId: bc-deviceRegistration
+      requestBody:
+        required: true
+        content:
+          application/x-www-form-urlencoded:
+            schema:
+              type: object
+              required:
+                - id_token_hint
+                - device_registration_token
+              properties:
+                id_token_hint:
+                  type: string
+                  description: An ID Token previously issued to the Client by the OpenID Provider being passed back as a hint to identify the end-user for whom the device registration is being requested.
+                device_registration_token:
+                  type: string
+                  description: OAuth 2.0 Client Identifier valid at the Authorization Serve
+      responses:
+        200:
+          description: OK
+          content: {}
+        400:
+          description: Invalid parameters are provided to endpoint.
+          content:
+            application/json:
+              schema:
+                type: object
+                required:
+                  - error
+                  - error_description
+                properties:
+                  error:
+                    type: string
+                    format: enum
+                    example:
+                      - invalid_request
+                      - invalid_scope
+                      - expired_login_hint_token
+                      - unknown_user_id
+                      - unauthorized_client
+                      - missing_user_code
+                      - invalid_user_code
+                      - invalid_binding_message
+                      - invalid_client
+                      - unauthorized_end_user_device
+                      - access_denied
+                  error_description:
+                    type: string
+                  details:
+                    type: string
+        403:
+          $ref: '#/components/responses/AccessDenied'
+  /clientinfo:
+    get:
+      tags:
+        - Client Info
+      summary: To get Claims details about the registered client.
+      description: The ClientInfo Endpoint is an OAuth 2.0 Protected Resource that returns Claims about the registered client.
+      operationId: get_clientinfo
+      parameters:
+        - name: access_token
+          in: query
+          schema:
+            type: string
+            description: Client-specific access token.
+        - name: Authorization
+          in: header
+          schema:
+            type: string
+      responses:
+        200:
+          description: OK
+          content:
+            application/json:
+              schema:
+                title: ClientInfoResponse
+                description: Client details in response.
+                type: object
+                properties:
+                  displayName:
+                    type: string
+                  inum:
+                    type: string
+                    description: XRI i-number
+                  oxAuthAppType:
+                    type: string
+                    description: oxAuth Appication type
+                  oxAuthIdTokenSignedResponseAlg:
+                    type: string
+                    description: oxAuth ID Token Signed Response Algorithm
+                  oxAuthRedirectURI:
+                    type: array
+                    description: Array of redirect URIs values used in the Authorization
+                    items:
+                      type: string
+                  oxId:
+                    type: string
+                    example:
+                    description: oxAuth Attribute Scope Id
+                  custom_attributes:
+                    type: array
+                    items:
+                      type: string
+        400:
+          description: Invalid Request are provided to endpoint.
+          content:
+            application/json:
+              schema:
+                type: object
+                required:
+                  - error
+                  - error_description
+                properties:
+                  error:
+                    type: string
+                    format: enum
+                    example:
+                      - invalid_request
+                      - invalid_token
+                  error_description:
+                    type: string
+                  details:
+                    type: string
+    post:
+      tags:
+        - Client Info
+      summary: To get Claims details about the registered client.
+      description: The ClientInfo Endpoint is an OAuth 2.0 Protected Resource that returns Claims about the registered client.
+      operationId: post_clientinfo
+      parameters:
+        - name: Authorization
+          in: header
+          schema:
+            type: string
+      requestBody:
+        required: true
+        content:
+          application/x-www-form-urlencoded:
+            schema:
+              type: object
+              required:
+                - access_token
+              properties:
+                access_token:
+                  type: string
+                  description: Client-specific access token.
+      responses:
+        200:
+          description: OK
+          content:
+            application/json:
+              schema:
+                title: ClientInfoResponse
+                description: Client details in response.
+                type: object
+                properties:
+                  displayName:
+                    type: string
+                  inum:
+                    type: string
+                    description: XRI i-number
+                  oxAuthAppType:
+                    type: string
+                    description: oxAuth Appication type
+                  oxAuthIdTokenSignedResponseAlg:
+                    type: string
+                    description: oxAuth ID Token Signed Response Algorithm
+                  oxAuthRedirectURI:
+                    type: array
+                    description: Array of redirect URIs values used in the Authorization
+                    items:
+                      type: string
+                  oxId:
+                    type: string
+                    example:
+                    description: oxAuth Attribute Scope Id
+                  custom_attributes:
+                    type: array
+                    items:
+                      type: string
+        400:
+          description: Invalid Request are provided to endpoint.
+          content:
+            application/json:
+              schema:
+                type: object
+                required:
+                  - error
+                  - error_description
+                properties:
+                  error:
+                    type: string
+                    format: enum
+                    example:
+                      - invalid_request
+                      - invalid_token
+                  error_description:
+                    type: string
+                  details:
+                    type: string
+  /.well-known/gluu-configuration:
+    post:
+      tags:
+        - Server Configuration
+      summary:  Gets GluuServer configuration data that contains non-standard OpenID Connect discovery metadata.
+      description: Gets GluuServer configuration data that contains non-standard OpenID Connect discovery metadata.
+      operationId: well-known-gluu-configuration
+      responses:
+        200:
+          description: OK
+          content:
+            application/json:
+              schema:
+                title: GluuConfigurationResponse
+                description: Client GluuAttribute by Dn(Distinguished Name) based on Authorization Scope.
+                required:
+                  - id_generation_endpoint
+                  - introspection_endpoint
+                type: object
+                properties:
+                  id_generation_endpoint:
+                    type: string
+                  introspection_endpoint:
+                    type: string
+                  auth_level_mapping:
+                    type: object
+                    additionalProperties:
+                      type: string
+                      description: Additional Custom Acr's map object
+                  scope_to_claims_mapping:
+                    type: object
+                    additionalProperties:
+                      type: string
+                      description: Scope map object
+        500:
+          $ref: '#/components/responses/InternalServerError'
+  /introspection:
+    get:
+      tags:
+        - Token
+      summary: The Introspection OAuth 2 Endpoint.
+      description: The Introspection OAuth 2 Endpoint.
+      operationId: get-introspection
+      parameters:
+        - name: Authorization
+          in: header
+          required: true
+          description: Client Authorization details that contains the access token along with other details.
+          schema:
+            type: string
+          example: Bearer 23410913-abewfq.123483
+        - name: token
+          in: query
+          required: true
+          schema:
+            type: string
+          example: token=2YotnFZFEjr1zCsicMWpAA
+        - name: token_type_hint
+          in: query
+          description: ID Token previously issued by the Authorization Server being passed as a hint about the End-User.
+          schema:
+            type: string
+        - name: response_as_jwt
+          in: query
+          description: OPTIONAL. Boolean value with default value false. If true, returns introspection response as JWT (signed based on client configuration used for authentication to Introspection Endpoint).
+          schema:
+            type: boolean
+          example: response_as_jwt=false
+      responses:
+        200:
+          description: OK
+          content:
+            application/json:
+              schema:
+                title: IntrospectionResponse
+                description: meta-information about token
+                required:
+                  - active
+                type: object
+                properties:
+                  active:
+                    type: boolean
+                    description: Boolean indicator of whether or not the presented token is currently active.
+                    example: true
+                  scope:
+                    type: array
+                    description: Provide list of scopes to which access was granted for this resource.
+                    example:
+                      - read write dolphin
+                    items:
+                      type: string
+                  client_id:
+                    type: string
+                    description:  Client identifier for the OAuth 2.0 client that requested this token.
+                    example: 1238j323ds-23ij4
+                  username:
+                    type: string
+                    description: Human-readable identifier for the resource owner who authorized this token.
+                    example: jdoe
+                  token_type:
+                    type: string
+                    description: Type of the token as defined in Section 5.1 of OAuth 2.0 [RFC6749].
+                    example: bearer, mac
+                  exp:
+                    type: integer
+                    description: Integer timestamp, measured in the number of seconds since January 1 1970 UTC, indicating when this permission will expire.
+                  iat:
+                    type: integer
+                    example: Integer timestamp, measured in the number of seconds since January 1 1970 UTC, indicating when this permission was originally issued.
+                  sub:
+                    type: string
+                    description: Subject of the token, as defined in JWT [RFC7519].
+                    example: Z5O3upPC88QrAjx00dis
+                  aud:
+                    type: string
+                    description: Service-specific string identifier or list of string identifiers representing the intended audience for this token, as defined in JWT [RFC7519].
+                    example: https://protected.example.net/resource
+                  iss:
+                    type: string
+                    description: String representing the issuer of this token, as defined in JWT [RFC7519].
+                    example: https://server.example.com/
+                  acr_values:
+                    type: string
+                    description: Authentication Context Class Reference values.
+                  jti:
+                    type: string
+                    description: String identifier for the token, as defined in JWT.
+
+        400:
+          description: Error codes for introspection endpoint.
+          content:
+            application/json:
+              schema:
+                title: AuthorizeError
+                type: object
+                required:
+                  - error
+                  - error_description
+                properties:
+                  error:
+                    type: string
+                    format: enum
+                    example:
+                      - invalid_request
+                      - unauthorized_client
+                      - disabled_client
+                      - access_denied
+                      - retry
+                      - unsupported_response_type
+                      - invalid_scope
+                      - server_error
+                      - temporarily_unavailable
+                      - invalid_request_redirect_uri
+                      - login_required
+                      - session_selection_required
+                      - consent_required
+                      - user_mismatched
+                      - invalid_request_uri
+                      - invalid_request_object
+                      - authentication_session_invalid
+                      - invalid_authentication_method
+                  error_description:
+                    type: string
+                  details:
+                    type: string
+        401:
+          $ref: '#/components/responses/Unauthorized'
+        500:
+          $ref: '#/components/responses/InternalServerError'
+    post:
+      tags:
+        - Token
+      summary: The Introspection OAuth 2 Endpoint.
+      description: The Introspection OAuth 2 Endpoint.
+      operationId: post-introspection
+      parameters:
+        - name: Authorization
+          in: header
+          required: true
+          description: Client Authorization details that contains the access token along with other details.
+          schema:
+            type: string
+          example: Bearer 23410913-abewfq.123483
+      requestBody:
+        content:
+          application/x-www-form-urlencoded:
+            schema:
+              type: object
+              required:
+                - token
+              properties:
+                token:
+                  type: string
+                  description: Client access token.
+                  example: token=2YotnFZFEjr1zCsicMWpAA
+      responses:
+        200:
+          description: OK
+          content:
+            application/json:
+              schema:
+                title: IntrospectionResponse
+                description: meta-information about token
+                required:
+                  - active
+                type: object
+                properties:
+                  active:
+                    type: boolean
+                    description: Boolean indicator of whether or not the presented token is currently active.
+                    example: true
+                  scope:
+                    type: array
+                    description: Provide list of scopes to which access was granted for this resource.
+                    example:
+                      - read write dolphin
+                    items:
+                      type: string
+                  client_id:
+                    type: string
+                    description:  Client identifier for the OAuth 2.0 client that requested this token.
+                    example: 1238j323ds-23ij4
+                  username:
+                    type: string
+                    description: Human-readable identifier for the resource owner who authorized this token.
+                    example: jdoe
+                  token_type:
+                    type: string
+                    description: Type of the token as defined in Section 5.1 of OAuth 2.0 [RFC6749].
+                    example: bearer, mac
+                  exp:
+                    type: integer
+                    description: Integer timestamp, measured in the number of seconds since January 1 1970 UTC, indicating when this permission will expire.
+                  iat:
+                    type: integer
+                    example: Integer timestamp, measured in the number of seconds since January 1 1970 UTC, indicating when this permission was originally issued.
+                  sub:
+                    type: string
+                    description: Subject of the token, as defined in JWT [RFC7519].
+                    example: Z5O3upPC88QrAjx00dis
+                  aud:
+                    type: string
+                    description: Service-specific string identifier or list of string identifiers representing the intended audience for this token, as defined in JWT [RFC7519].
+                    example: https://protected.example.net/resource
+                  iss:
+                    type: string
+                    description: String representing the issuer of this token, as defined in JWT [RFC7519].
+                    example: https://server.example.com/
+                  acr_values:
+                    type: string
+                    description: Authentication Context Class Reference values.
+                  jti:
+                    type: string
+                    description: String identifier for the token, as defined in JWT.
+        400:
+          description: Error codes for introspection endpoint.
+          content:
+            application/json:
+              schema:
+                title: AuthorizeError
+                type: object
+                required:
+                  - error
+                  - error_description
+                properties:
+                  error:
+                    type: string
+                    format: enum
+                    example:
+                      - invalid_request
+                      - unauthorized_client
+                      - disabled_client
+                      - access_denied
+                      - retry
+                      - unsupported_response_type
+                      - invalid_scope
+                      - server_error
+                      - temporarily_unavailable
+                      - invalid_request_redirect_uri
+                      - login_required
+                      - session_selection_required
+                      - consent_required
+                      - user_mismatched
+                      - invalid_request_uri
+                      - invalid_request_object
+                      - authentication_session_invalid
+                      - invalid_authentication_method
+                  error_description:
+                    type: string
+                  details:
+                    type: string
+        401:
+          $ref: '#/components/responses/Unauthorized'
+        500:
+          $ref: '#/components/responses/InternalServerError'
+  /jwks:
+    get:
+      tags:
+        - JWK - JSON Web Key Set (JWKs)
+      summary: A JSON Web Key (JWK) used by server. JWK is a JSON data structure that represents a set of public keys as a JSON object [RFC4627].
+      description: Provides list of JWK used by server.
+      operationId: jwks
+      responses:
+        200:
+          description: OK
+          content:
+            application/json:
+              schema:
+                title: WebKeysConfiguration
+                required:
+                  - keys
+                type: object
+                description: JSON Web Key Set (JWKS) - A JSON object that represents a set of JWKs. The JSON object MUST have a keys member, which is an array of JWKs.
+                properties:
+                  keys:
+                    type: array
+                    description: List of JSON Web Key (JWK) - A JSON object that represents a cryptographic key. The members of the object represent properties of the key, including its value.
+                    items:
+                      $ref: '#/components/schemas/JsonWebKey'
+        500:
+          $ref: '#/components/responses/InternalServerError'
+  /register:
+    post:
+      tags:
+        - Registration
+      summary: Registers new client dynamically.
+      description: The Client Registration Endpoint is an OAuth 2.0 Protected Resource through which a new Client registration can be requested.
+      operationId: post-register
+      requestBody:
+        content:
+          application/json:
+            schema:
+              title: RegisterParams
+              required:
+                - redirect_uris
+              type: object
+              properties:
+                redirect_uris:
+                  type: array
+                  description: Redirection URI values used by the Client. One of these registered Redirection URI values must exactly match
+                    the redirect_uri parameter value used in each Authorization Request
+                  items:
+                    type: string
+                  example:
+                    - https://client.example.org/cb
+                claims_redirect_uri:
+                  type: array
+                  description: Array of The Claims Redirect URIs to which the client wishes the authorization server to direct
+                    the requesting party's user agent after completing its interaction.
+                  items:
+                    type: string
+                response_types:
+                  type: array
+                  description: A list of the OAuth 2.0 response_type values that the Client is declaring that it will restrict itself to using.
+                    If omitted, the default is that the Client will use only the code Response Type. Allowed values are code, token, id_token.
+                  items:
+                    type: string
+                grant_types:
+                  type: array
+                  description: A list of the OAuth 2.0 Grant Types that the Client is declaring that it will restrict itself to using.
+                  items:
+                    type: string
+                contacts:
+                  type: array
+                  description: e-mail addresses of people responsible for this Client.
+                  items:
+                    type: string
+                client_name:
+                  type: string
+                  description: Name of the Client to be presented to the user.
+                logo_uri:
+                  type: string
+                  description: URL that references a logo for the Client application
+                client_uri:
+                  type: string
+                  description: URL of the home page of the Client. The value of this field must point to a valid Web page.
+                policy_uri:
+                  type: string
+                  description: URL that the Relying Party Client provides to the End-User to read about the how the profile data will be used.
+                tos_uri:
+                  type: string
+                  description: URL that the Relying Party Client provides to the End-User to read about the Relying Party's terms of service.
+                jwks_uri:
+                  type: string
+                  description: URL for the Client's JSON Web Key Set (JWK) document containing key(s) that are used for signing requests
+                    to the OP. The JWK Set may also contain the Client's encryption
+                    keys(s) that are used by the OP to encrypt the responses to the
+                    Client. When both signing and encryption keys are made available,
+                    a use (Key Use) parameter value is required for all keys in the
+                    document to indicate each key's intended usage .
+                jwks:
+                  type: array
+                  description: List of JSON Web Key (JWK) - A JSON object that represents a cryptographic key. The members of the object represent properties of the key, including its value.
+                  items:
+                    $ref: '#/components/schemas/JsonWebKey'
+                  example: '{ "keys" : [ { "e" : "AQAB", "n" : "gmlDX_mgMcHX.." ] }'
+                sector_identifier_uri:
+                  type: string
+                  description: URL using the https scheme to be used in calculating Pseudonymous Identifiers by the OP.
+                subject_type:
+                  type: string
+                  description: Subject type requested for the Client ID. Valid types include pairwise and public.
+                rpt_as_jwt:
+                  type: boolean
+                  description: Specifies whether RPT should be return as signed JWT.
+                access_token_as_jwt:
+                  type: boolean
+                  description: Specifies whether access token as signed JWT.
+                access_token_signing_alg:
+                  type: string
+                  description: Specifies signing algorithm that has to be used during JWT signing. If it's not specified,
+                    then the default OP signing algorithm will be used .
+                id_token_signed_response_alg:
+                  type: string
+                  description: JWS alg algorithm (JWA) required for signing the ID Token issued to this Client.
+                id_token_encrypted_response_alg:
+                  type: string
+                  description: JWE alg algorithm (JWA) required for encrypting the ID Token issued to this Client.
+                id_token_encrypted_response_enc:
+                  type: string
+                  description: JWE enc algorithm (JWA) required for encrypting the ID Token issued to this Client.
+                userinfo_signed_response_alg:
+                  type: string
+                  description: JWS alg algorithm (JWA) required for signing UserInfo Responses.
+                userinfo_encrypted_response_alg:
+                  type: string
+                  description: JWE alg algorithm (JWA) required for encrypting UserInfo Responses.
+                userinfo_encrypted_response_enc:
+                  type: string
+                  description: JWE enc algorithm (JWA) required for encrypting UserInfo Responses.
+                request_object_signing_alg:
+                  type: string
+                  description: JWS alg algorithm (JWA) that must be used for signing Request Objects sent to the OP.
+                request_object_encryption_alg:
+                  type: string
+                  description: JWE alg algorithm (JWA) the RP is declaring that it may use for encrypting Request Objects sent to the OP.
+                request_object_encryption_enc:
+                  type: string
+                  description: JWE enc algorithm (JWA) the RP is declaring that it may use for encrypting Request Objects sent to the OP.
+                token_endpoint_auth_method:
+                  type: string
+                  description: Requested Client Authentication method for the Token Endpoint.
+                token_endpoint_auth_signing_alg:
+                  type: string
+                  description: JWS alg algorithm (JWA) that must be used for signing the JWT used to authenticate the Client at the Token Endpoint
+                    for the private_key_jwt and client_secret_jwt authentication methods.
+                default_max_age:
+                  type: integer
+                  description: Specifies the Default Maximum Authentication Age.
+                  example: 1000000
+                require_auth_time:
+                  type: boolean
+                  description: Boolean value specifying whether the auth_time Claim in the ID Token is required. It is required when the value is true.
+                default_acr_values:
+                  type: array
+                  description: Array of default requested Authentication Context Class Reference values that the Authorization Server must use for
+                    processing requests from the Client.
+                  items:
+                    type: string
+                initiate_login_uri:
+                  type: string
+                  description: Specifies the URI using the https scheme that the authorization server can call to initiate a login at the client.
+                post_logout_redirect_uris:
+                  type: array
+                  description: Provide the URLs supplied by the RP to request that the user be redirected to this location after a logout has been
+                    performed.
+                  example:
+                    - https://client.example.org/logout/page1
+                    - https://client.example.org/logout/page2
+                    - https://client.example.org/logout/page3
+                  items:
+                    type: string
+                frontchannel_logout_uri:
+                  type: string
+                  description: RP URL that will cause the RP to log itself out when rendered in an iframe by the OP.
+                frontchannel_logout_session_required:
+                  type: boolean
+                  description: Boolean value specifying whether the RP requires that a session ID query parameter be included
+                    to identify the RP session at the OP when the logout_uri is used. If omitted, the default value is false.
+                backchannel_logout_uri:
+                  type: string
+                  description: RP URL that will cause the RP to log itself out when sent a Logout Token by the OP.
+                backchannel_logout_session_required:
+                  type: boolean
+                  description: Boolean value specifying whether the RP requires that a session ID Claim be included in the Logout Token
+                    to identify the RP session with the OP when the backchannel_logout_uri is used. If omitted, the default value is false.
+                request_uris:
+                  type: array
+                  description: Provide a list of request_uri values that are pre-registered by the Client for use at the Authorization Server.
+                  items:
+                    type: string
+                scopes:
+                  type: string
+                  deprecated: true
+                  description: This param will be removed in a future version because the correct is 'scope' not 'scopes', see (rfc7591).
+                claims:
+                  type: string
+                  description: String containing a space-separated list of claims that can be requested individually.
+                id_token_token_binding_cnf:
+                  type: string
+                  description: Specifies the JWT Confirmation Method member name (e.g. tbh) that the Relying Party expects
+                    when receiving Token Bound ID Tokens. The presence of this parameter indicates that the Relying Party
+                    supports Token Binding of ID Tokens.
+                    If omitted, the default is that the Relying Party does not support Token Binding of ID Tokens.
+                tls_client_auth_subject_dn:
+                  type: string
+                  description: An string representation of the expected subject distinguished name of the certificate,
+                    which the OAuth client will use in mutual TLS authentication.
+                allow_spontaneous_scopes:
+                  type: boolean
+                  description: Specifies whether to allow spontaneous scopes for client. The default value is false.
+                  example: false
+                spontaneous_scopes:
+                  type: array
+                  description: List of spontaneous scopes
+                  items:
+                    type: string
+                run_introspection_script_before_access_token_as_jwt_creation_and_include_claims:
+                  type: boolean
+                  description: Boolean value with default value false. If true and access_token_as_jwt=true then run introspection script
+                    and transfer claims into JWT.
+                keep_client_authorization_after_expiration:
+                  type: boolean
+                  description: Boolean value indicating if the client authorization will not be removed afer expiration
+                    (expiration date is same as client's expiration that created it). The default value is false.
+                scope:
+                  type: array
+                  description: Provide list of scope which are used during authentication to authorize access to resource.
+                  example:
+                    - openid
+                  items:
+                    type: string
+                authorized_origins:
+                  type: array
+                  description: specifies authorized JavaScript origins.
+                  items:
+                    type: string
+                access_token_lifetime:
+                  type: integer
+                  description: Specifies the Client-specific access token expiration.
+                  example: 100000000
+                software_id:
+                  type: string
+                  description: Specifies a unique identifier string (UUID) assigned
+                    by the client developer or software publisher used by registration
+                    endpoints to identify the client software to be dynamically registered.
+                  example: 4NRB1-0XZABZI9E6-5SM3R
+                software_version:
+                  type: string
+                  description: Specifies a version identifier string for the client
+                    software identified by 'software_id'. The value of the 'software_version'
+                    should change on any update to the client software identified
+                    by the same 'software_id'.
+                  example: "2.1"
+                software_statement:
+                  type: string
+                  description: specifies a software statement containing client metadata
+                    values about the client software as claims. This is a string value
+                    containing the entire signed JWT.
+                backchannel_token_delivery_mode:
+                  type: string
+                  description: specifies how backchannel token will be deliveried.
+                  example: push, poll, ping
+                backchannel_client_notification_endpoint:
+                  type: string
+                  description: Client Initiated Backchannel Authentication (CIBA) enables a Client to initiate the authentication of an end-user by means of out-of-band mechanisms. Upon receipt of the notification, the Client makes a request to the token endpoint to obtain the tokens.
+                backchannel_authentication_request_signing_alg:
+                  type: string
+                  description: The JWS algorithm alg value that the Client will use for signing authentication request, as described in Section 7.1.1. of OAuth 2.0 [RFC6749]. When omitted, the Client will not send signed authentication requests.
+                backchannel_user_code_parameter:
+                  type: boolean
+                  description: Boolean value specifying whether the Client supports the user_code parameter. If omitted, the default value is false.
+                additional_audience:
+                  type: array
+                  description: Additional audiences.
+                  items:
+                    type: string
+      responses:
+        200:
+          description: OK
+          content:
+            application/json:
+              schema:
+                title: RegisterResponseParam
+                type: object
+                required:
+                  - client_id
+                properties:
+                  client_id:
+                    type: string
+                    description: Unique Client Identifier. It MUST NOT be currently valid for any other registered Client.
+                  client_secret:
+                    type: string
+                    description: This value is used by Confidential Clients to authenticate to the Token Endpoint
+                  registration_access_token:
+                    type: string
+                    description: Registration Access Token that can be used at the Client Configuration Endpoint to perform subsequent
+                      operations upon the Client registration.
+                  registration_client_uri:
+                    type: string
+                    description: Location of the Client Configuration Endpoint where the Registration Access Token can be used to perform subsequent operations upon the resulting Client registration.
+                  client_id_issued_at:
+                    type: integer
+                    description: Time at which the Client Identifier was issued.
+                  client_secret_expires_at:
+                    type: integer
+                    description: Time at which the client_secret will expire or 0 if it will not expire.
+        400:
+          description: Invalid parameters provided to endpoint.
+          content:
+            application/json:
+              schema:
+                type: object
+                required:
+                  - error
+                  - error_description
+                properties:
+                  error:
+                    type: string
+                    format: enum
+                    example:
+                      - invalid_redirect_uri
+                      - invalid_claims_redirect_uri
+                      - invalid_client_metadata
+                      - invalid_token
+                      - invalid_logout_uri
+                      - invalid_software_statement
+                      - access_denied
+                  error_description:
+                    type: string
+                  details:
+                    type: string
+        500:
+          $ref: '#/components/responses/InternalServerError'
+    put:
+      tags:
+        - Registration
+      summary: Updates Client Metadata for a registered client.
+      description: Updates Client Metadata for a registered client.
+      operationId: put-register
+      parameters:
+        - name: client_id
+          in: query
+          required: true
+          description: Client ID that identifies client that must be updated by this request.
+          schema:
+            type: string
+        - name: Authorization
+          in: header
+          required: true
+          description: Authorization header carrying \"registration_access_token\" issued before as a Bearer token
+          schema:
+            type: string
+      requestBody:
+        content:
+          application/json:
+            schema:
+              title: RegisterParams
+              required:
+                - redirect_uris
+              type: object
+              properties:
+                redirect_uris:
+                  type: array
+                  description: Redirection URI values used by the Client. One of these registered Redirection URI values must exactly match
+                    the redirect_uri parameter value used in each Authorization Request
+                  items:
+                    type: string
+                  example:
+                    - https://client.example.org/cb
+                claims_redirect_uri:
+                  type: array
+                  description: Array of The Claims Redirect URIs to which the client wishes the authorization server to direct
+                    the requesting party's user agent after completing its interaction.
+                  items:
+                    type: string
+                response_types:
+                  type: array
+                  description: A list of the OAuth 2.0 response_type values that the Client is declaring that it will restrict itself to using.
+                    If omitted, the default is that the Client will use only the code Response Type. Allowed values are code, token, id_token.
+                  items:
+                    type: string
+                grant_types:
+                  type: array
+                  description: A list of the OAuth 2.0 Grant Types that the Client is declaring that it will restrict itself to using.
+                  items:
+                    type: string
+                contacts:
+                  type: array
+                  description: e-mail addresses of people responsible for this Client.
+                  items:
+                    type: string
+                client_name:
+                  type: string
+                  description: Name of the Client to be presented to the user.
+                logo_uri:
+                  type: string
+                  description: URL that references a logo for the Client application
+                client_uri:
+                  type: string
+                  description: URL of the home page of the Client. The value of this field must point to a valid Web page.
+                policy_uri:
+                  type: string
+                  description: URL that the Relying Party Client provides to the End-User to read about the how the profile data will be used.
+                tos_uri:
+                  type: string
+                  description: URL that the Relying Party Client provides to the End-User to read about the Relying Party's terms of service.
+                jwks_uri:
+                  type: string
+                  description: URL for the Client's JSON Web Key Set (JWK) document containing key(s) that are used for signing requests
+                    to the OP. The JWK Set may also contain the Client's encryption
+                    keys(s) that are used by the OP to encrypt the responses to the
+                    Client. When both signing and encryption keys are made available,
+                    a use (Key Use) parameter value is required for all keys in the
+                    document to indicate each key's intended usage .
+                jwks:
+                  type: array
+                  description: List of JSON Web Key (JWK) - A JSON object that represents a cryptographic key. The members of the object represent properties of the key, including its value.
+                  items:
+                    $ref: '#/components/schemas/JsonWebKey'
+                    example: '{ "keys" : [ { "e" : "AQAB", "n" : "gmlDX_mgMcHX.." ] }'
+                sector_identifier_uri:
+                  type: string
+                  description: URL using the https scheme to be used in calculating Pseudonymous Identifiers by the OP.
+                subject_type:
+                  type: string
+                  description: Subject type requested for the Client ID. Valid types include pairwise and public.
+                rpt_as_jwt:
+                  type: boolean
+                  description: Specifies whether RPT should be return as signed JWT.
+                access_token_as_jwt:
+                  type: boolean
+                  description: Specifies whether access token as signed JWT.
+                access_token_signing_alg:
+                  type: string
+                  description: Specifies signing algorithm that has to be used during JWT signing. If it's not specified,
+                    then the default OP signing algorithm will be used .
+                id_token_signed_response_alg:
+                  type: string
+                  description: JWS alg algorithm (JWA) required for signing the ID Token issued to this Client.
+                id_token_encrypted_response_alg:
+                  type: string
+                  description: JWE alg algorithm (JWA) required for encrypting the ID Token issued to this Client.
+                id_token_encrypted_response_enc:
+                  type: string
+                  description: JWE enc algorithm (JWA) required for encrypting the ID Token issued to this Client.
+                userinfo_signed_response_alg:
+                  type: string
+                  description: JWS alg algorithm (JWA) required for signing UserInfo Responses.
+                userinfo_encrypted_response_alg:
+                  type: string
+                  description: JWE alg algorithm (JWA) required for encrypting UserInfo Responses.
+                userinfo_encrypted_response_enc:
+                  type: string
+                  description: JWE enc algorithm (JWA) required for encrypting UserInfo Responses.
+                request_object_signing_alg:
+                  type: string
+                  description: JWS alg algorithm (JWA) that must be used for signing Request Objects sent to the OP.
+                request_object_encryption_alg:
+                  type: string
+                  description: JWE alg algorithm (JWA) the RP is declaring that it may use for encrypting Request Objects sent to the OP.
+                request_object_encryption_enc:
+                  type: string
+                  description: JWE enc algorithm (JWA) the RP is declaring that it may use for encrypting Request Objects sent to the OP.
+                token_endpoint_auth_method:
+                  type: string
+                  description: Requested Client Authentication method for the Token Endpoint.
+                token_endpoint_auth_signing_alg:
+                  type: string
+                  description: JWS alg algorithm (JWA) that must be used for signing the JWT used to authenticate the Client at the Token Endpoint
+                    for the private_key_jwt and client_secret_jwt authentication methods.
+                default_max_age:
+                  type: integer
+                  description: Specifies the Default Maximum Authentication Age.
+                  example: 1000000
+                require_auth_time:
+                  type: boolean
+                  description: Boolean value specifying whether the auth_time Claim in the ID Token is required. It is required when the value is true.
+                default_acr_values:
+                  type: array
+                  description: Array of default requested Authentication Context Class Reference values that the Authorization Server must use for
+                    processing requests from the Client.
+                  items:
+                    type: string
+                initiate_login_uri:
+                  type: string
+                  description: Specifies the URI using the https scheme that the authorization server can call to initiate a login at the client.
+                post_logout_redirect_uris:
+                  type: array
+                  description: Provide the URLs supplied by the RP to request that the user be redirected to this location after a logout has been
+                    performed.
+                  example:
+                    - https://client.example.org/logout/page1
+                    - https://client.example.org/logout/page2
+                    - https://client.example.org/logout/page3
+                  items:
+                    type: string
+                frontchannel_logout_uri:
+                  type: string
+                  description: RP URL that will cause the RP to log itself out when rendered in an iframe by the OP.
+                frontchannel_logout_session_required:
+                  type: boolean
+                  description: Boolean value specifying whether the RP requires that a session ID query parameter be included
+                    to identify the RP session at the OP when the logout_uri is used. If omitted, the default value is false.
+                backchannel_logout_uri:
+                  type: string
+                  description: RP URL that will cause the RP to log itself out when sent a Logout Token by the OP.
+                backchannel_logout_session_required:
+                  type: boolean
+                  description: Boolean value specifying whether the RP requires that a session ID Claim be included in the Logout Token
+                    to identify the RP session with the OP when the backchannel_logout_uri is used. If omitted, the default value is false.
+                request_uris:
+                  type: array
+                  description: Provide a list of request_uri values that are pre-registered by the Client for use at the Authorization Server.
+                  items:
+                    type: string
+                scopes:
+                  type: string
+                  deprecated: true
+                  description: This param will be removed in a future version because the correct is 'scope' not 'scopes', see (rfc7591).
+                claims:
+                  type: string
+                  description: String containing a space-separated list of claims that can be requested individually.
+                id_token_token_binding_cnf:
+                  type: string
+                  description: Specifies the JWT Confirmation Method member name (e.g. tbh) that the Relying Party expects
+                    when receiving Token Bound ID Tokens. The presence of this parameter indicates that the Relying Party
+                    supports Token Binding of ID Tokens.
+                    If omitted, the default is that the Relying Party does not support Token Binding of ID Tokens.
+                tls_client_auth_subject_dn:
+                  type: string
+                  description: An string representation of the expected subject distinguished name of the certificate,
+                    which the OAuth client will use in mutual TLS authentication.
+                allow_spontaneous_scopes:
+                  type: boolean
+                  description: Specifies whether to allow spontaneous scopes for client. The default value is false.
+                  example: false
+                spontaneous_scopes:
+                  type: array
+                  description: List of spontaneous scopes
+                  items:
+                    type: string
+                run_introspection_script_before_access_token_as_jwt_creation_and_include_claims:
+                  type: boolean
+                  description: Boolean value with default value false. If true and access_token_as_jwt=true then run introspection script
+                    and transfer claims into JWT.
+                keep_client_authorization_after_expiration:
+                  type: boolean
+                  description: Boolean value indicating if the client authorization will not be removed afer expiration
+                    (expiration date is same as client's expiration that created it). The default value is false.
+                scope:
+                  type: array
+                  description: Provide list of scope which are used during authentication to authorize access to resource.
+                  example:
+                    - openid
+                  items:
+                    type: string
+                authorized_origins:
+                  type: array
+                  description: specifies authorized JavaScript origins.
+                  items:
+                    type: string
+                access_token_lifetime:
+                  type: integer
+                  description: Specifies the Client-specific access token expiration.
+                  example: 100000000
+                software_id:
+                  type: string
+                  description: Specifies a unique identifier string (UUID) assigned
+                    by the client developer or software publisher used by registration
+                    endpoints to identify the client software to be dynamically registered.
+                  example: 4NRB1-0XZABZI9E6-5SM3R
+                software_version:
+                  type: string
+                  description: Specifies a version identifier string for the client
+                    software identified by 'software_id'. The value of the 'software_version'
+                    should change on any update to the client software identified
+                    by the same 'software_id'.
+                  example: "2.1"
+                software_statement:
+                  type: string
+                  description: specifies a software statement containing client metadata
+                    values about the client software as claims. This is a string value
+                    containing the entire signed JWT.
+                backchannel_token_delivery_mode:
+                  type: string
+                  description: specifies how backchannel token will be deliveried.
+                  example: push, poll, ping
+                backchannel_client_notification_endpoint:
+                  type: string
+                  description: Client Initiated Backchannel Authentication (CIBA) enables a Client to initiate the authentication of an end-user by means of out-of-band mechanisms. Upon receipt of the notification, the Client makes a request to the token endpoint to obtain the tokens.
+                backchannel_authentication_request_signing_alg:
+                  type: string
+                  description: The JWS algorithm alg value that the Client will use for signing authentication request, as described in Section 7.1.1. of OAuth 2.0 [RFC6749]. When omitted, the Client will not send signed authentication requests.
+                backchannel_user_code_parameter:
+                  type: boolean
+                  description: Boolean value specifying whether the Client supports the user_code parameter. If omitted, the default value is false.
+                additional_audience:
+                  type: array
+                  description: Additional audiences.
+                  items:
+                    type: string
+      responses:
+        200:
+          description: OK
+          content:
+            application/json:
+              schema:
+                title: RegisterResponseParam
+                type: object
+                required:
+                  - client_id
+                properties:
+                  client_id:
+                    type: string
+                    description: Unique Client Identifier. It MUST NOT be currently valid for any other registered Client.
+                  client_secret:
+                    type: string
+                    description: This value is used by Confidential Clients to authenticate to the Token Endpoint
+                  registration_access_token:
+                    type: string
+                    description: Registration Access Token that can be used at the Client Configuration Endpoint to perform subsequent
+                      operations upon the Client registration.
+                  registration_client_uri:
+                    type: string
+                    description: Location of the Client Configuration Endpoint where the Registration Access Token can be used to perform subsequent operations upon the resulting Client registration.
+                  client_id_issued_at:
+                    type: integer
+                    description: Time at which the Client Identifier was issued.
+                  client_secret_expires_at:
+                    type: integer
+                    description: Time at which the client_secret will expire or 0 if it will not expire.
+        400:
+          description: Invalid parameters provided to endpoint.
+          content:
+            application/json:
+              schema:
+                type: object
+                required:
+                  - error
+                  - error_description
+                properties:
+                  error:
+                    type: string
+                    format: enum
+                    example:
+                      - invalid_client_metadata
+                      - invalid_token
+                  error_description:
+                    type: string
+                  details:
+                    type: string
+        500:
+          $ref: '#/components/responses/InternalServerError'
+    get:
+      tags:
+        - Registration
+      summary: Get client information for a previously registered client.
+      description: Get client information for a previously registered client.
+      operationId: get-register
+      parameters:
+        - name: client_id
+          in: query
+          required: true
+          description: Client ID that identifies client.
+          schema:
+            type: string
+        - name: Authorization
+          in: header
+          required: true
+          description: Authorization header carrying \"registration_access_token\" issued before as a Bearer token
+          schema:
+            type: string
+      responses:
+        200:
+          description: OK
+          content:
+            application/json:
+              schema:
+                title: ClientResponse
+                type: object
+                properties:
+                  redirect_uris:
+                    type: array
+                    description: Redirection URI values used by the Client. One of these registered Redirection URI values must exactly match
+                      the redirect_uri parameter value used in each Authorization Request
+                    items:
+                      type: string
+                    example:
+                      - https://client.example.org/cb
+                  claims_redirect_uri:
+                    type: array
+                    description: Array of The Claims Redirect URIs to which the client wishes the authorization server to direct
+                      the requesting party's user agent after completing its interaction.
+                    items:
+                      type: string
+                  response_types:
+                    type: array
+                    description: A list of the OAuth 2.0 response_type values that the Client is declaring that it will restrict itself to using.
+                      If omitted, the default is that the Client will use only the code Response Type. Allowed values are code, token, id_token.
+                    items:
+                      type: string
+                  grant_types:
+                    type: array
+                    description: A list of the OAuth 2.0 Grant Types that the Client is declaring that it will restrict itself to using.
+                    items:
+                      type: string
+                  contacts:
+                    type: array
+                    description: e-mail addresses of people responsible for this Client.
+                    items:
+                      type: string
+                  client_name:
+                    type: string
+                    description: Name of the Client to be presented to the user.
+                  logo_uri:
+                    type: string
+                    description: URL that references a logo for the Client application
+                  client_uri:
+                    type: string
+                    description: URL of the home page of the Client. The value of this field must point to a valid Web page.
+                  policy_uri:
+                    type: string
+                    description: URL that the Relying Party Client provides to the End-User to read about the how the profile data will be used.
+                  tos_uri:
+                    type: string
+                    description: URL that the Relying Party Client provides to the End-User to read about the Relying Party's terms of service.
+                  jwks_uri:
+                    type: string
+                    description: URL for the Client's JSON Web Key Set (JWK) document containing key(s) that are used for signing requests
+                      to the OP. The JWK Set may also contain the Client's encryption
+                      keys(s) that are used by the OP to encrypt the responses to the
+                      Client. When both signing and encryption keys are made available,
+                      a use (Key Use) parameter value is required for all keys in the
+                      document to indicate each key's intended usage .
+                  jwks:
+                    type: string
+                    description: Client's JSON Web Key Set (JWK) document, passed by
+                      value. The semantics of the jwks parameter are the same as the
+                      jwks_uri parameter, other than that the JWK Set is passed by value,
+                      rather than by reference. This parameter is intended only to be
+                      used by Clients that, for some reason, are unable to use the jwks_uri
+                      parameter, for instance, by native applications that might not
+                      have a location to host the contents of the JWK Set. If a Client
+                      can use jwks_uri, it must not use jwks. One significant downside
+                      of jwks is that it does not enable key rotation. The jwks_uri
+                      and jwks parameters must not be used together.
+                    example: '{"key1": "value1", "key2": "value2"}'
+                  sector_identifier_uri:
+                    type: string
+                    description: URL using the https scheme to be used in calculating Pseudonymous Identifiers by the OP.
+                  subject_type:
+                    type: string
+                    description: Subject type requested for the Client ID. Valid types include pairwise and public.
+                  rpt_as_jwt:
+                    type: boolean
+                    description: Specifies whether RPT should be return as signed JWT.
+                  access_token_as_jwt:
+                    type: boolean
+                    description: Specifies whether access token as signed JWT.
+                  access_token_signing_alg:
+                    type: string
+                    description: Specifies signing algorithm that has to be used during JWT signing. If it's not specified,
+                      then the default OP signing algorithm will be used .
+                  id_token_signed_response_alg:
+                    type: string
+                    description: JWS alg algorithm (JWA) required for signing the ID Token issued to this Client.
+                  id_token_encrypted_response_alg:
+                    type: string
+                    description: JWE alg algorithm (JWA) required for encrypting the ID Token issued to this Client.
+                  id_token_encrypted_response_enc:
+                    type: string
+                    description: JWE enc algorithm (JWA) required for encrypting the ID Token issued to this Client.
+                  userinfo_signed_response_alg:
+                    type: string
+                    description: JWS alg algorithm (JWA) required for signing UserInfo Responses.
+                  userinfo_encrypted_response_alg:
+                    type: string
+                    description: JWE alg algorithm (JWA) required for encrypting UserInfo Responses.
+                  userinfo_encrypted_response_enc:
+                    type: string
+                    description: JWE enc algorithm (JWA) required for encrypting UserInfo Responses.
+                  request_object_signing_alg:
+                    type: string
+                    description: JWS alg algorithm (JWA) that must be used for signing Request Objects sent to the OP.
+                  request_object_encryption_alg:
+                    type: string
+                    description: JWE alg algorithm (JWA) the RP is declaring that it may use for encrypting Request Objects sent to the OP.
+                  request_object_encryption_enc:
+                    type: string
+                    description: JWE enc algorithm (JWA) the RP is declaring that it may use for encrypting Request Objects sent to the OP.
+                  token_endpoint_auth_method:
+                    type: string
+                    description: Requested Client Authentication method for the Token Endpoint.
+                  token_endpoint_auth_signing_alg:
+                    type: string
+                    description: JWS alg algorithm (JWA) that must be used for signing the JWT used to authenticate the Client at the Token Endpoint
+                      for the private_key_jwt and client_secret_jwt authentication methods.
+                  default_max_age:
+                    type: integer
+                    description: Specifies the Default Maximum Authentication Age.
+                    example: 1000000
+                  require_auth_time:
+                    type: boolean
+                    description: Boolean value specifying whether the auth_time Claim in the ID Token is required. It is required when the value is true.
+                  default_acr_values:
+                    type: array
+                    description: Array of default requested Authentication Context Class Reference values that the Authorization Server must use for
+                      processing requests from the Client.
+                    items:
+                      type: string
+                  initiate_login_uri:
+                    type: string
+                    description: Specifies the URI using the https scheme that the authorization server can call to initiate a login at the client.
+                  post_logout_redirect_uris:
+                    type: array
+                    description: Provide the URLs supplied by the RP to request that the user be redirected to this location after a logout has been
+                      performed.
+                    example:
+                      - https://client.example.org/logout/page1
+                      - https://client.example.org/logout/page2
+                      - https://client.example.org/logout/page3
+                    items:
+                      type: string
+                  frontchannel_logout_uri:
+                    type: string
+                    description: RP URL that will cause the RP to log itself out when rendered in an iframe by the OP.
+                  frontchannel_logout_session_required:
+                    type: boolean
+                    description: Boolean value specifying whether the RP requires that a session ID query parameter be included
+                      to identify the RP session at the OP when the logout_uri is used. If omitted, the default value is false.
+                  backchannel_logout_uri:
+                    type: string
+                    description: RP URL that will cause the RP to log itself out when sent a Logout Token by the OP.
+                  backchannel_logout_session_required:
+                    type: boolean
+                    description: Boolean value specifying whether the RP requires that a session ID Claim be included in the Logout Token
+                      to identify the RP session with the OP when the backchannel_logout_uri is used. If omitted, the default value is false.
+                  request_uris:
+                    type: array
+                    description: Provide a list of request_uri values that are pre-registered by the Client for use at the Authorization Server.
+                    items:
+                      type: string
+                  scopes:
+                    type: string
+                    deprecated: true
+                    description: This param will be removed in a future version because the correct is 'scope' not 'scopes', see (rfc7591).
+                  claims:
+                    type: string
+                    description: String containing a space-separated list of claims that can be requested individually.
+                  id_token_token_binding_cnf:
+                    type: string
+                    description: Specifies the JWT Confirmation Method member name (e.g. tbh) that the Relying Party expects
+                      when receiving Token Bound ID Tokens. The presence of this parameter indicates that the Relying Party
+                      supports Token Binding of ID Tokens.
+                      If omitted, the default is that the Relying Party does not support Token Binding of ID Tokens.
+                  tls_client_auth_subject_dn:
+                    type: string
+                    description: An string representation of the expected subject distinguished name of the certificate,
+                      which the OAuth client will use in mutual TLS authentication.
+                  allow_spontaneous_scopes:
+                    type: boolean
+                    description: Specifies whether to allow spontaneous scopes for client. The default value is false.
+                    example: false
+                  spontaneous_scopes:
+                    type: array
+                    description: List of spontaneous scopes
+                    items:
+                      type: string
+                  run_introspection_script_before_access_token_as_jwt_creation_and_include_claims:
+                    type: boolean
+                    description: Boolean value with default value false. If true and access_token_as_jwt=true then run introspection script
+                      and transfer claims into JWT.
+                  keep_client_authorization_after_expiration:
+                    type: boolean
+                    description: Boolean value indicating if the client authorization will not be removed afer expiration
+                      (expiration date is same as client's expiration that created it). The default value is false.
+                  scope:
+                    type: array
+                    description: Provide list of scope which are used during authentication to authorize access to resource.
+                    example:
+                      - openid
+                    items:
+                      type: string
+                  authorized_origins:
+                    type: array
+                    description: specifies authorized JavaScript origins.
+                    items:
+                      type: string
+                  access_token_lifetime:
+                    type: integer
+                    description: Specifies the Client-specific access token expiration.
+                    example: 100000000
+                  software_id:
+                    type: string
+                    description: Specifies a unique identifier string (UUID) assigned
+                      by the client developer or software publisher used by registration
+                      endpoints to identify the client software to be dynamically registered.
+                    example: 4NRB1-0XZABZI9E6-5SM3R
+                  software_version:
+                    type: string
+                    description: Specifies a version identifier string for the client
+                      software identified by 'software_id'. The value of the 'software_version'
+                      should change on any update to the client software identified
+                      by the same 'software_id'.
+                    example: "2.1"
+                  software_statement:
+                    type: string
+                    description: specifies a software statement containing client metadata
+                      values about the client software as claims. This is a string value
+                      containing the entire signed JWT.
+                  backchannel_token_delivery_mode:
+                    type: string
+                    description: specifies how backchannel token will be deliveried.
+                    example: push, poll, ping
+                  backchannel_client_notification_endpoint:
+                    type: string
+                    description: Client Initiated Backchannel Authentication (CIBA) enables a Client to initiate the authentication of an end-user by means of out-of-band mechanisms. Upon receipt of the notification, the Client makes a request to the token endpoint to obtain the tokens.
+                  backchannel_authentication_request_signing_alg:
+                    type: string
+                    description: The JWS algorithm alg value that the Client will use for signing authentication request, as described in Section 7.1.1. of OAuth 2.0 [RFC6749]. When omitted, the Client will not send signed authentication requests.
+                  backchannel_user_code_parameter:
+                    type: boolean
+                    description: Boolean value specifying whether the Client supports the user_code parameter. If omitted, the default value is false.
+        400:
+          description: Invalid parameters provided to endpoint.
+          content:
+            application/json:
+              schema:
+                type: object
+                required:
+                  - error
+                  - error_description
+                properties:
+                  error:
+                    type: string
+                    format: enum
+                    example:
+                      - invalid_token
+                      - invalid_client_metadata
+                      - access_denied
+                  error_description:
+                    type: string
+                  details:
+                    type: string
+        401:
+          $ref: '#/components/responses/InvalidRequest'
+        500:
+          $ref: '#/components/responses/InternalServerError'
+    delete:
+      tags:
+        - Client Registration
+      summary: Deletes the client info for a previously registered client.
+      description: The Client Registration Endpoint removes the Client Metadata for a previously registered client.
+      operationId: delete-register
+      parameters:
+        - name: client_id
+          in: query
+          required: true
+          description: Client ID that identifies client.
+          schema:
+            type: string
+        - name: Authorization
+          in: header
+          required: true
+          description: Authorization header carrying \"registration_access_token\" issued before as a Bearer token
+          schema:
+            type: string
+      responses:
+        204:
+          description: OK
+          content: {}
+        400:
+          description: Invalid parameters provided to endpoint.
+          content:
+            application/json:
+              schema:
+                type: object
+                required:
+                  - error
+                  - error_description
+                properties:
+                  error:
+                    type: string
+                    format: enum
+                    example:
+                      - invalid_token
+                      - invalid_client_metadata
+                      - access_denied
+                  error_description:
+                    type: string
+                  details:
+                    type: string
+        401:
+          description: Invalid parameters provided to endpoint.
+          content:
+            application/json:
+              schema:
+                type: object
+                required:
+                  - error
+                  - error_description
+                properties:
+                  error:
+                    type: string
+                    format: enum
+                    example:
+                      - invalid_token
+                      - invalid_client_metadata
+                      - access_denied
+                  error_description:
+                    type: string
+                  details:
+                    type: string
+        500:
+          $ref: '#/components/responses/InternalServerError'
+  /revoke:
+    post:
+      tags:
+        - Token
+      summary: Revoke an Access Token or a Refresh Token, the RP (Client).
+      description: Revoke an Access Token or a Refresh Token, the RP (Client).
+      operationId: revoke
+      requestBody:
+        required: true
+        content:
+          application/x-www-form-urlencoded:
+            schema:
+              type: object
+              required:
+                - token
+              properties:
+                token:
+                  type: string
+                  description: The token that the client wants to get revoked.
+                token_type_hint:
+                  type: string
+                  description: A hint about the type of the token submitted for revocation.
+      responses:
+        200:
+          description: OK
+          content:
+            content: {}
+        400:
+          description: Invalid parameters provided to endpoint.
+          content:
+            application/json:
+              schema:
+                type: object
+                required:
+                  - error
+                  - error_description
+                properties:
+                  error:
+                    type: string
+                    format: enum
+                    example:
+                      - unsupported_token_type
+                      - invalid_client
+                      - invalid_request
+                  error_description:
+                    type: string
+                  details:
+                    type: string
+  /session_status:
+    get:
+      tags:
+        - Session Management
+      summary: Determine current sesion status.
+      description: Determine current sesion status.
+      operationId: session_status
+      responses:
+        200:
+          description: OK
+          content:
+            application/json:
+              schema:
+                title: SessionStateObject
+                type: object
+                properties:
+                  state:
+                    type: string
+                    description: String that represents the End-User's login state at the OP. It MUST NOT contain the space (\" \") character.
+                  auth_time:
+                    type: string
+                    format: date
+                    description: specifies the time at which session was authenticated.
+                    example: 100000000
+                  custom_state:
+                    type: string
+  /revoke_session:
+    post:
+      tags:
+        - Session Management
+      summary: Revoke all sessions for user.
+      description: Revoke all sessions for user (requires revoke_session scope).
+      operationId: revoke-session
+      requestBody:
+        required: true
+        content:
+          application/x-www-form-urlencoded:
+            schema:
+              type: object
+              required:
+                - user_criterion_key
+                - user_criterion_value
+              properties:
+                user_criterion_key:
+                  type: string
+                  description: user criterion key (e.g. uid)
+                user_criterion_value:
+                  type: string
+                  description: user criterion value (e.g. chris)
+      responses:
+        200:
+          description: OK - Returned if request was processed successfully. Means it will return in case sessions are found as well as in case sessions are not found (error is not returned to not disclose internal information).
+        401:
+          $ref: '#/components/responses/Unauthorized'
+        500:
+          $ref: '#/components/responses/InternalServerError'
+  /end_session:
+    get:
+      tags:
+        - Session Management
+      summary: End current session.
+      description: End current session.
+      operationId: end_session
+      parameters:
+        - name: id_token_hint
+          in: query
+          description: Previously issued ID Token (id_token) passed to the logout endpoint as a hint about the End-User's current authenticated session with the Client. This is used as an indication of the identity of the End-User that the RP is requesting be logged out by the OP. The OP need not be listed as an audience of the ID Token when it is used as an id_token_hint value.
+          schema:
+            type: string
+        - name: post_logout_redirect_uri
+          in: query
+          description: URL to which the RP is requesting that the End-User's User Agent be redirected after a logout has been performed. The value MUST have been previously registered with the OP, either using the post_logout_redirect_uris Registration parameter or via another mechanism. If supplied, the OP SHOULD honor this request following the logout.
+          schema:
+            type: string
+        - name: state
+          in: query
+          description: Opaque value used by the RP to maintain state between the logout request and the callback to the endpoint specified by the post_logout_redirect_uri parameter. If included in the logout request, the OP passes this value back to the RP using the state query parameter when redirecting the User Agent back to the RP.
+          schema:
+            type: string
+        - name: session_id
+          in: query
+          description: Session Id
+          schema:
+            type: string
+      responses:
+        200:
+          description: OK - User redirected to logout page
+          content: {}
+        302:
+          $ref: '#/components/responses/Found'
+        400:
+          description: Error codes for end session endpoint.
+          content:
+            application/json:
+              schema:
+                title: EndSessionError
+                type: object
+                required:
+                  - error
+                  - error_description
+                properties:
+                  error:
+                    type: string
+                    format: enum
+                    example:
+                      - invalid_grant
+                      - invalid_request
+                      - invalid_grant_and_session
+                      - session_not_passed
+                      - post_logout_uri_not_passed
+                      - post_logout_uri_not_associated_with_client
+                  error_description:
+                    type: string
+                  details:
+                    type: string
+        500:
+          $ref: '#/components/responses/InternalServerError'
+  /token:
+    post:
+      tags:
+        - Token
+      summary: To obtain an Access Token, an ID Token, and optionally a Refresh Token, the RP (Client).
+      description: To obtain an Access Token, an ID Token, and optionally a Refresh Token, the RP (Client).
+      operationId: post-token
+      requestBody:
+        required: true
+        content:
+          application/x-www-form-urlencoded:
+            schema:
+              type: object
+              required:
+                - grant_type
+              properties:
+                grant_type:
+                  type: array
+                  description: Provide a list of the OAuth 2.0 grant types that the
+                    Client is declaring that it will restrict itself to using.
+                  example:
+                    - authorization_code
+                    - client_credentials
+                  items:
+                    type: string
+                code:
+                  type: string
+                  description: Code which is returned by authorization endpoint. (For grant_type=authorization_code)
+                redirect_uri:
+                  type: string
+                  description: Redirection URI to which the response will be sent. This URI MUST exactly match one of the Redirection URI values for the Client pre-registered at the OpenID Provider.
+                username:
+                  type: string
+                  description: End-User username.
+                password:
+                  type: string
+                  description: End-User password.
+                scope:
+                  type: array
+                  description: OpenID Connect requests MUST contain the openid scope value. If the openid scope value is not present, the behavior is entirely unspecified. Other scope values MAY be present. Scope values used that are not understood by an implementation SHOULD be ignored.
+                  items:
+                    type: string
+                assertion:
+                  type: string
+                  description: Assertion.
+                refresh_token:
+                  type: string
+                  description: Refresh token.
+                client_id:
+                  type: string
+                  description: OAuth 2.0 Client Identifier valid at the Authorization Server.
+                client_secret:
+                  type: string
+                  description: The client secret.  The client MAY omit the parameter if the client secret is an empty string.
+                code_verifier:
+                  type: string
+                  description: The client's PKCE code verifier.
+                ticket:
+                  type: string
+                claim_token:
+                  type: string
+                claim_token_format:
+                  type: string
+                pct:
+                  type: string
+                rpt:
+                  type: string
+      responses:
+        200:
+          description: OK
+          content:
+            application/json:
+              schema:
+                type: object
+                description: AccessTokenResponse.
+                required:
+                  - access_token
+                  - token_type
+                properties:
+                  access_token:
+                    type: string
+                    description: The access token issued by the authorization server.
+                  token_type:
+                    type: string
+                    description: The access token type provides the client with the information required to successfully utilize the access token to make a protected resource request (along with type-specific attributes).
+                  expires_in:
+                    type: integer
+                    description: The lifetime in seconds of the access token. For example, the value \"3600\" denotes that the access token will expire in one hour from the time the response was generated.
+                  refresh_token:
+                    type: string
+                    description: The refresh token, which can be used to obtain new access tokens using the same authorization grant
+                  scope:
+                    type: array
+                    example:
+                      - openid
+                      - oxd
+                    items:
+                      type: string
+                  id_token:
+                    type: string
+        400:
+          description: Invalid parameters provided to endpoint.
+          content:
+            application/json:
+              schema:
+                type: object
+                required:
+                  - error
+                  - error_description
+                properties:
+                  error:
+                    type: string
+                    format: enum
+                    example:
+                      - invalid_client_metadata
+                      - invalid_token
+                  error_description:
+                    type: string
+                  details:
+                    type: string
+        401:
+          $ref: '#/components/responses/Unauthorized'
+        403:
+          $ref: '#/components/responses/AccessDenied'
+        500:
+          $ref: '#/components/responses/InternalServerError'
+  /uma/gather_claims:
+    get:
+      tags:
+        - UMA (User Managed Access)
+      summary: UMA Claims Gathering Endpoint.
+      description: UMA Claims Gathering Endpoint.
+      operationId: get-uma-gather_claims
+      parameters:
+        - name: client_id
+          in: query
+          description:  OAuth 2.0 Client Identifier valid at the Authorization Server.
+          schema:
+            type: string
+        - name: ticket
+          in: query
+          schema:
+            type: string
+        - name: claims_redirect_uri
+          in: query
+          schema:
+            type: string
+        - name: state
+          in: query
+          schema:
+            type: string
+        - name: reset
+          in: query
+          schema:
+            type: boolean
+        - name: authentication
+          in: query
+          schema:
+            type: boolean
+      responses:
+        302:
+          $ref: '#/components/responses/Found'
+        400:
+          description: Invalid parameters provided to endpoint.
+          content:
+            application/json:
+              schema:
+                type: object
+                required:
+                  - error
+                  - error_description
+                properties:
+                  error:
+                    type: string
+                    format: enum
+                    example:
+                      - invalid_session
+                      - invalid_claims_gathering_script_name
+                  error_description:
+                    type: string
+                  details:
+                    type: string
+        500:
+          description: Invalid parameters provided to endpoint.
+          content:
+            application/json:
+              schema:
+                type: object
+                required:
+                  - error
+                  - error_description
+                properties:
+                  error:
+                    type: string
+                    format: enum
+                    example:
+                      - server_error
+                  error_description:
+                    type: string
+                  details:
+                    type: string
+    post:
+      tags:
+        - UMA (User Managed Access)
+      summary: UMA Claims Gathering Endpoint
+      description: UMA Claims Gathering Endpoint
+      operationId: post-uma-gather_claims
+      requestBody:
+        content:
+          application/x-www-form-urlencoded:
+            schema:
+              type: object
+              properties:
+                client_id:
+                  type: string
+                  description:  OAuth 2.0 Client Identifier valid at the Authorization Server.
+                ticket:
+                  type: string
+                claims_redirect_uri:
+                  type: string
+                state:
+                  type: string
+                reset:
+                  type: boolean
+                authentication:
+                  type: boolean
+      responses:
+        302:
+          $ref: '#/components/responses/Found'
+        400:
+          description: Invalid parameters provided to endpoint.
+          content:
+            application/json:
+              schema:
+                type: object
+                required:
+                  - error
+                  - error_description
+                properties:
+                  error:
+                    type: string
+                    format: enum
+                    example:
+                      - invalid_session
+                      - invalid_claims_gathering_script_name
+                  error_description:
+                    type: string
+                  details:
+                    type: string
+        500:
+          description: Invalid parameters provided to endpoint.
+          content:
+            application/json:
+              schema:
+                type: object
+                required:
+                  - error
+                  - error_description
+                properties:
+                  error:
+                    type: string
+                    format: enum
+                    example:
+                      - server_error
+                  error_description:
+                    type: string
+                  details:
+                    type: string
+  /uma2-configuration:
+    get:
+      tags:
+        - UMA (User Managed Access)
+      summary: Gets UMA configuration data.
+      description: Gets UMA configuration data.
+      operationId: uma2-configuration
+      responses:
+        200:
+          description: OK
+          content:
+            application/json:
+              schema:
+                type: object
+                description: UmaMetadata
+                required:
+                  - issuer
+                  - authorization_endpoint
+                  - token_endpoint
+                  - response_types_supported
+                properties:
+                  issuer:
+                    type: string
+                    description: The authorization server's issuer identifier, which is\n a URL that uses the \"https\" scheme and has no query or fragment\n components.  This is the location where \".well-known\" RFC 5785\n [RFC5785] resources containing information about the authorization\n server are published.  Using these well-known resources is\n described in Section 3.  The issuer identifier is used to prevent\n authorization server mix-up attacks, as described in \"OAuth 2.0 Mix-Up Mitigation\"
+                    example: https://sample.com
+                  authorization_endpoint:
+                    type: string
+                    description: "URL of the authorization server's authorization endpoint."
+                    example: https://sample.com/oxauth/restv1/authorize
+                  token_endpoint:
+                    type: string
+                    description: URL of the authorization server's token endpoint [RFC6749].  This is REQUIRED unless only the implicit grant type is used.
+                    example: https://sample.com/oxauth/restv1/token
+                  jwks_uri:
+                    type: string
+                    description: URL of the authorization server's JWK Set [JWK] document.  The referenced document contains the signing key(s) the client uses to validate signatures from the authorization server. This URL MUST use the \"https\" scheme.  The JWK Set MAY also contain the server's encryption key(s), which are used by clients to encrypt requests to the server.  When both signing and encryption keys are made available, a \"use\" (public key use) parameter value is REQUIRED for all keys in the referenced JWK Set to indicate each key's intended usage.
+                    example: https://sample.com/oxauth/restv1/jwks
+                  registration_endpoint:
+                    type: string
+                    description: URL of the authorization server's OAuth 2.0 Dynamic Client Registration endpoint [RFC7591]
+                    example: https://sample.com/oxauth/restv1/register
+                  response_types_supported:
+                    type: array
+                    items:
+                      type: string
+                    description: JSON array containing a list of the OAuth 2.0 \"response_type\" values that this authorization server supports. The array values used are the same as those used with the \"response_types\" parameter defined by \"OAuth 2.0 Dynamic Client Registration Protocol\" [RFC7591].
+                    example:
+                    - code
+                    - id_token
+                    - token
+                  grant_types_supported:
+                    type: array
+                    items:
+                      type: string
+                    description: JSON array containing a list of the OAuth 2.0 grant type values that this authorization server supports.  The array values used are the same as those used with the \"grant_types\" parameter defined by \"OAuth 2.0 Dynamic Client Registration Protocol\" [RFC7591].  If omitted, the default value is \"[\"authorization_code\", \"implicit\"]\".
+                    example:
+                    - authorization_code
+                    - implicit
+                    - client_credentials
+                  token_endpoint_auth_methods_supported:
+                    type: array
+                    items:
+                      type: string
+                    description: JSON array containing a list of client authentication methods supported by this token endpoint.  Client authentication method values are used in the \"token_endpoint_auth_method\" parameter defined in Section 2 of [RFC7591].  If omitted, the default is \"client_secret_basic\" -- the HTTP Basic Authentication Scheme specified in Section 2.3.1 of OAuth 2.0 [RFC6749].
+                    example:
+                    - client_secret_basic
+                    - client_secret_post
+                    - client_secret_jwt
+                    - private_key_jwt
+                  token_endpoint_auth_signing_alg_values_supported:
+                    type: array
+                    items:
+                      type: string
+                    description: JSON array containing a list of the JWS signing algorithms (\"alg\" values) supported by the token endpoint for the signature on the JWT [JWT] used to authenticate the client at the token endpoint for the \"private_key_jwt\" and \"client_secret_jwt\" authentication methods.  Servers SHOULD support \"RS256\".  The value \"none\" MUST NOT be used.
+                    example:
+                    - HS256
+                    - HS384
+                    - HS512
+                    - RS256
+                    - RS384
+                    - RS512
+                    - ES256
+                    - ES384
+                    - ES512
+                  service_documentation:
+                    type: string
+                    description: URL of a page containing human-readable information that developers might want or need to know when using the authorization server.  In particular, if the authorization server does not support Dynamic Client Registration, then information on how to register clients needs to be provided in this documentation.
+                    example: http://<op_docs>
+                  ui_locales_supported:
+                    type: array
+                    items:
+                      type: string
+                    description: Languages and scripts supported for the user interface, represented as a JSON array of BCP47 [RFC5646] language tag values.
+                    example:
+                    - en
+                    - es
+                  op_policy_uri:
+                    type: string
+                    description: URL that the authorization server provides to the person registering the client to read about the authorization server's requirements on how the client can use the data provided by the authorization server.  The registration process SHOULD display this URL to the person registering the client if it is given.  As described in Section 5, despite the identifier \"op_policy_uri\", appearing to be OpenID-specific, its usage in this specification is actually referring to a general OAuth 2.0 feature that is not specific to OpenID Connect.
+                    example: http://ox.sample.com/doku.php?id=oxauth:policy
+                  op_tos_uri:
+                    type: string
+                    description: URL that the authorization server provides to the person registering the client to read about the authorization server's terms of service.  The registration process SHOULD display this URL to the person registering the client if it is given.  As described in Section 5, despite the identifier \"op_tos_uri\", appearing to be OpenID-specific, its usage in this specification is actually referring to a general OAuth 2.0 feature that is not specific to OpenID Connect.
+                    example: http://ox.sample.com/doku.php?id=oxauth:tos
+                  introspection_endpoint:
+                    type: string
+                    description: URL of the authorization server's OAuth 2.0 introspection endpoint [RFC7662].
+                    example: https://sample.com/oxauth/restv1/rpt/status
+                  code_challenge_methods_supported:
+                    type: array
+                    items:
+                      type: string
+                    description: JSON array containing a list of PKCE [RFC7636] code challenge methods supported by this authorization server.  Code challenge method values are used in the \"code_challenge_method\" parameter defined in Section 4.3 of [RFC7636].  The valid code challenge method values are those registered in the IANA \"PKCE Code Challenge Methods\" registry [IANA.OAuth.Parameters]
+                  claims_interaction_endpoint:
+                    type: string
+                    description: Static endpoint URI at which the authorization server declares that it interacts with end-user requesting parties to gather claims. If the authorization server also provides a claims interaction endpoint URI as part of its redirect_user hint in a need_info response to a client on authorization failure (see Section 3.3.6), that value overrides this metadata value. Providing the static endpoint URI is useful for enabling interactive claims gathering prior to any pushed-claims flows taking place, so that, for example, it is possible to gather requesting party authorization interactively for collecting all other claims in a \"silent\" fashion."
+                    example: https://sample.com/oxauth/restv1/uma/gather_claims
+                  uma_profiles_supported:
+                    type: array
+                    items:
+                      type: string
+                    description: UMA profiles supported by this authorization server. The value is an array of string values, where each string value is a URI identifying an UMA profile
+                  permission_endpoint:
+                    type: string
+                    description: The endpoint URI at which the resource server requests permissions on the client's behalf.
+                    example: https://sample.com/oxauth/restv1/host/rsrc_pr
+                  resource_registration_endpoint:
+                    type: string
+                    description: The endpoint URI at which the resource server registers resources to put them under authorization manager protection.
+                    example: https://sample.com/oxauth/restv1/host/rsrc/resource_set
+                  scope_endpoint:
+                    type: string
+                    description: The Scope endpoint URI.
+                    example: https://sample.com/oxauth/restv1/uma/scopes
+        500:
+          description: Invalid parameters provided to endpoint.
+          content:
+            application/json:
+              schema:
+                type: object
+                required:
+                  - error
+                  - error_description
+                properties:
+                  error:
+                    type: string
+                    format: enum
+                    example:
+                      - server_error
+                  error_description:
+                    type: string
+                  details:
+                    type: string
+  /host/rsrc_pr:
+    post:
+      tags:
+        - UMA (User Managed Access)
+      summary: Registers permission.
+      description: Registers permission.
+      operationId: host-rsrc_pr
+      parameters:
+        - name: Authorization
+          in: header
+          required: true
+          description: Client Authorization details that contains the access token along with other details.
+          schema:
+            type: string
+      requestBody:
+        required: true
+        content:
+          application/x-www-form-urlencoded:
+            schema:
+              title: UmaPermissiona
+              description: A permission is (requested or granted) authorized access to a particular resource with some number of scopes
+                bound to that resource.
+              type: object
+              required:
+                - resource_id
+                - resource_scopes
+              properties:
+                resource_id:
+                  type: string
+                  description: The identifier for a resource to which this client is seeking access.
+                    The identifier MUST correspond to a resource that was previously registered.
+                  example: 112210f47de98100
+                resource_scopes:
+                  type: array
+                  description: An array referencing zero or more strings representing scopes to which access was granted for this resource.
+                    Each string MUST correspond to a scope that was registered by this resource server for the referenced resource.
+                  items:
+                    type: string
+                params:
+                  type: object
+                  description: A key/value map that can contain custom parameters.
+                  additionalProperties:
+                    type: string
+      responses:
+        201:
+          description: OK
+          content:
+            application/json:
+              schema:
+                title: UmaPermissionList
+                type: array
+                description: List of Uma Permission.
+                items:
+                  type: object
+                  required:
+                    - resource_id
+                    - resource_scopes
+                  properties:
+                    resource_id:
+                      type: string
+                      description: The identifier for a resource to which this client is seeking access.
+                        The identifier MUST correspond to a resource that was previously registered.
+                      example: 112210f47de98100
+                    resource_scopes:
+                      type: array
+                      description: An array referencing zero or more strings representing scopes to which access was granted for this resource.
+                        Each string MUST correspond to a scope that was registered by this resource server for the referenced resource.
+                      items:
+                        type: string
+                      example:
+                        - http://photoz.example.com/dev/actions/add
+                        - http://photoz.example.com/dev/actions/internalClient
+                    params:
+                      type: object
+                      description: A key/value map that can contain custom parameters.
+                      additionalProperties:
+                        type: string
+                    exp:
+                      type: integer
+                      description: Number of seconds since January 1 1970 UTC, indicating when this token will expire.
+                      format: int64
+                      example: 1256953732
+        500:
+          description: Invalid parameters provided to endpoint.
+          content:
+            application/json:
+              schema:
+                type: object
+                required:
+                  - error
+                  - error_description
+                properties:
+                  error:
+                    type: string
+                    format: enum
+                    example:
+                      - server_error
+                  error_description:
+                    type: string
+                  details:
+                    type: string
+  /host/rsrc/resource_set:
+    post:
+      tags:
+        - UMA 2 Resource
+      summary: Adds a new resource description.
+      description: Adds a new resource description.
+      operationId: post-host-rsrc-resource_set
+      parameters:
+        - name: Authorization
+          in: header
+          required: true
+          description: Client Authorization details that contains the access token along with other details.
+          schema:
+            type: string
+      requestBody:
+        content:
+          application/json:
+            schema:
+              title: UmaResource
+              description: Resource description
+              type: object
+              required:
+                - resource_scopes
+              properties:
+                name:
+                  type: string
+                  description: A human-readable string describing a set of one or more resources. This name MAY be used by the authorization server in its resource owner user interface for the resource owner.
+                icon_uri:
+                  type: string
+                  description: A URI for a graphic icon representing the resource set. The referenced icon MAY be used by the authorization server in its resource owner user interface for the resource owner.
+                  example: http://www.example.com/icons/sharesocial.png
+                type:
+                  type: string
+                  description: A string uniquely identifying the semantics of the resource set. For example, if the resource set consists of a single resource that is an identity claim that leverages standardized claim semantics for \"verified email address\", the value of this property could be an identifying URI for this claim.
+                resource_scopes:
+                  type: array
+                  items:
+                    type: string
+                  description: An array of strings, any of which MAY be a URI, indicating the available scopes for this resource set. URIs MUST resolve to scope descriptions as defined in Section 2.1. Published scope descriptions MAY reside anywhere on the web; a resource server is not required to self-host scope descriptions and may wish to point to standardized scope descriptions residing elsewhere. It is the resource server's responsibility to ensure that scope description documents are accessible to authorization servers through GET calls to support any user interface requirements. The resource server and authorization server are presumed to have separately negotiated any required interpretation of scope handling not conveyed through scope descriptions.
+                  example: \"read-public\", \"post-updates"\,\"read-private"\
+                scope_expression:
+                  type: string
+                description:
+                  type: string
+                  description: A human-readable string describing the resource
+                iat:
+                  type: integer
+                  description: number of seconds since January 1 1970 UTC, indicating when the token was issued at
+                  format: int64
+                  example: 1535709072
+                exp:
+                  type: integer
+                  description: number of seconds since January 1 1970 UTC, indicating when this token will expire.
+                  format: int64
+                  example: 1419356238
+      responses:
+        201:
+          description: OK
+          content:
+            application/json:
+              schema:
+                title: UmaResourceResponse
+                description: UmaResourceResponse Resource created.
+                type: object
+                required:
+                  - _id
+                properties:
+                  _id:
+                    type: string
+                    description: UMA Resource identifier
+                    example: KX3A-39WE
+                  user_access_policy_uri:
+                    type: string
+                    example: http://as.example.com/rs/222/resource/22/policy
+        500:
+          description: Invalid parameters provided to endpoint.
+          content:
+            application/json:
+              schema:
+                type: object
+                required:
+                  - error
+                  - error_description
+                properties:
+                  error:
+                    type: string
+                    format: enum
+                    example:
+                      - server_error
+                  error_description:
+                    type: string
+                  details:
+                    type: string
+    put:
+      tags:
+        - UMA 2 Resource
+      summary: Updates a previously registered resource.
+      description: Updates a previously registered resource.
+      operationId: put-host-rsrc-resource_set{rsid}
+      parameters:
+        - name: Authorization
+          in: header
+          required: true
+          schema:
+            type: string
+        - name: rsid
+          in: path
+          required: true
+          description: Resource ID.
+          schema:
+            type: string
+      requestBody:
+        content:
+          application/json:
+            schema:
+              title: UmaResource
+              description: Resource description
+              type: object
+              required:
+                - resource_scopes
+              properties:
+                name:
+                  type: string
+                  description: A human-readable string describing a set of one or more resources. This name MAY be used by the authorization server in its resource owner user interface for the resource owner.
+                icon_uri:
+                  type: string
+                  description: A URI for a graphic icon representing the resource set. The referenced icon MAY be used by the authorization server in its resource owner user interface for the resource owner.
+                  example: http://www.example.com/icons/sharesocial.png
+                type:
+                  type: string
+                  description: A string uniquely identifying the semantics of the resource set. For example, if the resource set consists of a single resource that is an identity claim that leverages standardized claim semantics for \"verified email address\", the value of this property could be an identifying URI for this claim.
+                resource_scopes:
+                  type: array
+                  items:
+                    type: string
+                  description: An array of strings, any of which MAY be a URI, indicating the available scopes for this resource set. URIs MUST resolve to scope descriptions as defined in Section 2.1. Published scope descriptions MAY reside anywhere on the web; a resource server is not required to self-host scope descriptions and may wish to point to standardized scope descriptions residing elsewhere. It is the resource server's responsibility to ensure that scope description documents are accessible to authorization servers through GET calls to support any user interface requirements. The resource server and authorization server are presumed to have separately negotiated any required interpretation of scope handling not conveyed through scope descriptions.
+                  example: \"read-public\", \"post-updates"\,\"read-private"\
+                scope_expression:
+                  type: string
+                description:
+                  type: string
+                  description: A human-readable string describing the resource
+                iat:
+                  type: integer
+                  description: number of seconds since January 1 1970 UTC, indicating when the token was issued at
+                  format: int64
+                  example: 1535709072
+                exp:
+                  type: integer
+                  description: number of seconds since January 1 1970 UTC, indicating when this token will expire.
+                  format: int64
+                  example: 1419356238
+      responses:
+        200:
+          description: OK
+          content:
+            application/json:
+              schema:
+                title: UmaResourceResponse
+                description: UmaResourceResponse Resource created.
+                type: object
+                required:
+                  - _id
+                properties:
+                  _id:
+                    type: string
+                    description: UMA Resource identifier
+                    example: KX3A-39WE
+                  user_access_policy_uri:
+                    type: string
+                    example: http://as.example.com/rs/222/resource/22/policy
+        404:
+          description: Invalid parameters provided to endpoint.
+          content:
+            application/json:
+              schema:
+                type: object
+                required:
+                  - error
+                  - error_description
+                properties:
+                  error:
+                    type: string
+                    format: enum
+                    example:
+                      - not_found
+                  error_description:
+                    type: string
+                  details:
+                    type: string
+        500:
+          description: Invalid parameters provided to endpoint.
+          content:
+            application/json:
+              schema:
+                type: object
+                required:
+                  - error
+                  - error_description
+                properties:
+                  error:
+                    type: string
+                    format: enum
+                    example:
+                      - server_error
+                  error_description:
+                    type: string
+                  details:
+                    type: string
+    get:
+      tags:
+        - UMA 2 Resource
+      summary: Lists all previously registered resource.
+      description: Lists all previously registered resource.
+      operationId: get-host-rsrc-resource_set
+      parameters:
+        - name: Authorization
+          in: header
+          required: true
+          schema:
+            type: string
+        - name: scope
+          in: query
+          description: Scope uri.
+          schema:
+            type: string
+      responses:
+        200:
+          description: OK
+          content:
+            application/json:
+              schema:
+                title: Uma Resource indetifiers
+                description: Uma Resource details
+                type: array
+                items:
+                  type: string
+                  description: List of resource identifers
+                  example: [ '11','22']
+        500:
+          description: Invalid parameters provided to endpoint.
+          content:
+            application/json:
+              schema:
+                type: object
+                required:
+                  - error
+                  - error_description
+                properties:
+                  error:
+                    type: string
+                    format: enum
+                    example:
+                      - server_error
+                  error_description:
+                    type: string
+                  details:
+                    type: string
+    delete:
+      tags:
+        - UMA 2 Resource
+      summary: Deletes a previously registered resource.
+      description: Deletes a previously registered resource.
+      operationId: delete-host-rsrc-resource_set
+      parameters:
+        - name: Authorization
+          in: header
+          required: true
+          schema:
+            type: string
+        - name: rsid
+          in: path
+          required: true
+          description: Resource ID
+          schema:
+            type: string
+      responses:
+        204:
+          description: OK
+          content: {}
+        500:
+          description: Invalid parameters provided to endpoint.
+          content:
+            application/json:
+              schema:
+                type: object
+                required:
+                  - error
+                  - error_description
+                properties:
+                  error:
+                    type: string
+                    format: enum
+                    example:
+                      - server_error
+                  error_description:
+                    type: string
+                  details:
+                    type: string
+  /host/rsrc/resource_set/{rsid}:
+    get:
+      tags:
+        - UMA 2 Resource
+      summary: Reads a previously registered resource.
+      description: Reads a previously registered resource.
+      operationId: get-host-rsrc-resource_set/{rsid}
+      parameters:
+        - name: Authorization
+          in: header
+          required: true
+          description: Client Authorization details that contains the access token along with other details.
+          schema:
+            type: string
+        - name: rsid
+          in: path
+          required: true
+          description: Resource description ID.
+          schema:
+            type: string
+      responses:
+        200:
+          description: OK
+          content:
+            application/json:
+              schema:
+                title: UmaResourceWithId
+                description: Uma Resource details
+                type: object
+                required:
+                  - _id
+                  - iat
+                  - exp
+                properties:
+                  _id:
+                    type: string
+                    description: UMA Resource identifier
+                    example: KX3A-39WE
+                  name:
+                    type: string
+                    description: A human-readable string describing a set of one or more resources. This name MAY be used by the authorization server in its resource owner user interface for the resource owner.
+                  uri:
+                    type: string
+                    description: A human-readable string describing the resource
+                  type:
+                    type: string
+                    description: A string uniquely identifying the semantics of the resource set. For example, if the resource set consists of a single resource that is an identity claim that leverages standardized claim semantics for \"verified email address\", the value of this property could be an identifying URI for this claim.
+                  scopes:
+                    type: array
+                    items:
+                      type: string
+                    description: An array of strings, any of which MAY be a URI, indicating the available scopes for this resource set. URIs MUST resolve to scope descriptions as defined in Section 2.1. Published scope descriptions MAY reside anywhere on the web; a resource server is not required to self-host scope descriptions and may wish to point to standardized scope descriptions residing elsewhere. It is the resource server's responsibility to ensure that scope description documents are accessible to authorization servers through GET calls to support any user interface requirements. The resource server and authorization server are presumed to have separately negotiated any required interpretation of scope handling not conveyed through scope descriptions.
+                  scope_expression:
+                    type: string
+                  description:
+                    type: string
+                    description: A human-readable string describing the resource
+                  icon_uri:
+                    type: string
+                    description: A URI for a graphic icon representing the resource set. The referenced icon MAY be used by the authorization server in its resource owner user interface for the resource owner.
+                    example: http://www.example.com/icons/sharesocial.png
+                  iat:
+                    type: integer
+                    description: number of seconds since January 1 1970 UTC, indicating when the token was issued at
+                    format: int64
+                    example: 1535709072
+                  exp:
+                    type: integer
+                    description: number of seconds since January 1 1970 UTC, indicating when this token will expire.
+                    format: int64
+                    example: 1419356238
+        500:
+          description: Invalid parameters provided to endpoint.
+          content:
+            application/json:
+              schema:
+                type: object
+                required:
+                  - error
+                  - error_description
+                properties:
+                  error:
+                    type: string
+                    format: enum
+                    example:
+                      - server_error
+                  error_description:
+                    type: string
+                  details:
+                    type: string
+  /rpt/status:
+    get:
+      tags:
+        - Token Introspection
+      summary: The Introspection OAuth 2 Endpoint for RPT.
+      description: The Introspection OAuth 2 Endpoint for RPT.
+      operationId: get-rpt-status
+      parameters:
+        - name: Authorization
+          in: header
+          required: true
+          schema:
+            type: string
+        - name: token
+          in: query
+          required: true
+          schema:
+            type: string
+        - name: token_type_hint
+          in: query
+          schema:
+            type: string
+      responses:
+        200:
+          description: OK
+          content:
+            application/json:
+              schema:
+                title: RptIntrospectionResponse
+                type: object
+                required:
+                  - active
+                  - permissions
+                  - resource_id
+                  - resource_scopes
+                properties:
+                  active:
+                    type: boolean
+                    description: Boolean indicator of whether or not the presented token is currently active.
+                  exp:
+                    type: integer
+                    description: Integer timestamp, in seconds since January 1 1970 UTC, indicating when this token will expire.
+                    format: int64
+                    example: 1256953732
+                  iat:
+                    type: integer
+                    description: Integer timestamp, measured in the number of seconds since January 1 1970 UTC, indicating when this permission was originally issued.
+                    example: 1256953732
+                  clientId:
+                    type: string
+                    description: Client id used to obtain RPT.
+                  sub:
+                    type: string
+                    description: Subject of the token. Usually a machine-readable identifier of the resource owner who authorized this token.
+                  aud:
+                    type: string
+                    description: Service-specific string identifier or list of string identifiers representing the intended audience for this token.
+                  permissions:
+                    type: array
+                    items:
+                      type: object
+                      description: List of UmaPermission granted to RPT. A permission is (requested or granted) authorized access to a
+                        particular resource with some number of scopes  bound to that resource.
+                      required:
+                        - resource_id
+                        - resource_scopes
+                      properties:
+                        resource_id:
+                          type: string
+                          description: A string that uniquely identifies the protected resource, access to which has been granted to this client on
+                            behalf of this requesting party. The identifier MUST correspond to a resource that was previously registered as protected.
+                        resource_scopes:
+                          type: array
+                          description: An array referencing zero or more strings representing scopes to which access was granted for this resource.
+                            Each string MUST correspond to a scope that was registered by this resource server for the referenced resource.
+                          items:
+                            type: string
+                        exp:
+                          type: integer
+                          description: Integer timestamp, measured in the number of seconds since January 1 1970 UTC, indicating when this permission
+                            will expire. If the token-level exp value pre-dates a permission-level exp value, the token-level value takes
+                            precedence.
+                        iat:
+                          type: integer
+                          description: Integer timestamp, measured in the number of seconds since January 1 1970 UTC, indicating when this
+                            permission was originally issued. If the token-level iat value post-dates a permission-level iat value,
+                            the token-level value takes precedence.
+                        nbf:
+                          type: integer
+                          description: Integer timestamp, measured in the number of seconds since January 1 1970 UTC, indicating the time before
+                            which this permission is not valid. If the token-level nbf value post-dates a permission-level nbf value,
+                            the token-level value takes precedence.
+                  pct_claims:
+                    type: object
+                    additionalProperties:
+                      type: string
+                    description: PCT token claims.
+                    #example: {name:['John']}
+                  iss:
+                    type: string
+                    description: String representing the issuer of this token, as defined in JWT [RFC7519].
+                  jti:
+                    type: string
+                    description: String identifier for the token, as defined in JWT [RFC7519].
+                  nbf:
+                    type: integer
+                    description: Integer timestamp, measured in the number of seconds since January 1 1970 UTC, indicating the time before which this permission is not valid.
+                  resource_id:
+                    type: string
+                    description: Resource ID.
+                  resource_scopes:
+                    type: array
+                    items:
+                      type: string
+        405:
+          description: Introspection of RPT is not allowed.
+          content:
+            application/json:
+              schema:
+                $ref: '#/components/schemas/ErrorResponse'
+        500:
+          description: Invalid parameters provided to endpoint.
+          content:
+            application/json:
+              schema:
+                type: object
+                required:
+                  - error
+                  - error_description
+                properties:
+                  error:
+                    type: string
+                    format: enum
+                    example:
+                      - server_error
+                  error_description:
+                    type: string
+                  details:
+                    type: string
+    post:
+      tags:
+        - Token Introspection
+      summary: The Introspection OAuth 2 Endpoint for RPT.
+      description: The Introspection OAuth 2 Endpoint for RPT.
+      operationId: post-rpt-status
+      parameters:
+        - name: Authorization
+          in: header
+          required: true
+          description: Client Authorization details that contains the access token along with other details.
+          schema:
+            type: string
+      requestBody:
+        content:
+          application/x-www-form-urlencoded:
+            schema:
+              type: object
+              required:
+                - token
+              properties:
+                token:
+                  type: string
+                  description: Client access token.
+                token_type_hint:
+                  type: string
+                  description: ID Token previously issued by the Authorization Server being passed as a hint about the End-User.
+      responses:
+        200:
+          description: OK
+          content:
+            application/json:
+              schema:
+                title: RptIntrospectionResponse
+                type: object
+                required:
+                  - active
+                  - permissions
+                  - resource_id
+                  - resource_scopes
+                properties:
+                  active:
+                    type: boolean
+                    description: Boolean indicator of whether or not the presented token is currently active.
+                  exp:
+                    type: integer
+                    description: Integer timestamp, in seconds since January 1 1970 UTC, indicating when this token will expire.
+                    format: int64
+                    example: 1256953732
+                  iat:
+                    type: integer
+                    description: Integer timestamp, measured in the number of seconds since January 1 1970 UTC, indicating when this permission was originally issued.
+                    example: 1256953732
+                  clientId:
+                    type: string
+                    description: Client id used to obtain RPT.
+                  sub:
+                    type: string
+                    description: Subject of the token. Usually a machine-readable identifier of the resource owner who authorized this token.
+                  aud:
+                    type: string
+                    description: Service-specific string identifier or list of string identifiers representing the intended audience for this token.
+                  permissions:
+                    type: array
+                    items:
+                      type: object
+                      description: List of UmaPermission granted to RPT. A permission is (requested or granted) authorized access to a
+                        particular resource with some number of scopes  bound to that resource.
+                      required:
+                        - resource_id
+                        - resource_scopes
+                      properties:
+                        resource_id:
+                          type: string
+                          description: A string that uniquely identifies the protected resource, access to which has been granted to this client on
+                            behalf of this requesting party. The identifier MUST correspond to a resource that was previously registered as protected.
+                        resource_scopes:
+                          type: array
+                          description: An array referencing zero or more strings representing scopes to which access was granted for this resource.
+                            Each string MUST correspond to a scope that was registered by this resource server for the referenced resource.
+                          items:
+                            type: string
+                        exp:
+                          type: integer
+                          description: Integer timestamp, measured in the number of seconds since January 1 1970 UTC, indicating when this permission
+                            will expire. If the token-level exp value pre-dates a permission-level exp value, the token-level value takes
+                            precedence.
+                        iat:
+                          type: integer
+                          description: Integer timestamp, measured in the number of seconds since January 1 1970 UTC, indicating when this
+                            permission was originally issued. If the token-level iat value post-dates a permission-level iat value,
+                            the token-level value takes precedence.
+                        nbf:
+                          type: integer
+                          description: Integer timestamp, measured in the number of seconds since January 1 1970 UTC, indicating the time before
+                            which this permission is not valid. If the token-level nbf value post-dates a permission-level nbf value,
+                            the token-level value takes precedence.
+                  pct_claims:
+                    type: object
+                    additionalProperties:
+                      type: string
+                      description: PCT token claims.
+                      example: '{name:["John"]}'
+                  iss:
+                    type: string
+                    description: String representing the issuer of this token, as defined in JWT [RFC7519].
+                  jti:
+                    type: string
+                    description: String identifier for the token, as defined in JWT [RFC7519].
+                  nbf:
+                    type: integer
+                    description: Integer timestamp, measured in the number of seconds since January 1 1970 UTC, indicating the time before which this permission is not valid.
+                  resource_id:
+                    type: string
+                    description: Resource ID.
+                  resource_scopes:
+                    type: array
+                    items:
+                      type: string
+        405:
+          description: Introspection of RPT is not allowed.
+          content:
+            application/json:
+              schema:
+                $ref: '#/components/schemas/ErrorResponse'
+        500:
+          description: Invalid parameters provided to endpoint.
+          content:
+            application/json:
+              schema:
+                type: object
+                required:
+                  - error
+                  - error_description
+                properties:
+                  error:
+                    type: string
+                    format: enum
+                    example:
+                      - server_error
+                  error_description:
+                    type: string
+                  details:
+                    type: string
+  /uma/scopes:
+    get:
+      tags:
+        - UMA Scope
+      summary: Provides UMA Scope description by scope id.
+      description: Provides UMA Scope description by scope id.
+      operationId: get-uma_scopes
+      parameters:
+        - name: id
+          in: path
+          required: true
+          description: Resource description ID.
+          schema:
+            type: string
+      responses:
+        200:
+          description: OK
+          content:
+            application/json:
+              schema:
+                title: UmaScopeDescription
+                required:
+                  - name
+                properties:
+                  description:
+                    type: string
+                    description: A human-readable string describing the resource at length. The authorization server MAY use this description in any user interface it presents to a resource owner, for example, for resource protection monitoring or policy setting.
+                  iconUri:
+                    type: string
+                    description: A URI for a graphic icon representing the scope. The referenced icon MAY be used by the authorization server in any user interface it presents to the resource owner.
+                  name:
+                    type: string
+                    description: A human-readable string describing some scope (extent) of access. This name MAY be used by the authorization server in any user interface it presents to the resource owner.
+        404:
+          description: Invalid parameters provided to endpoint.
+          content:
+            application/json:
+              schema:
+                type: object
+                required:
+                  - error
+                  - error_description
+                properties:
+                  error:
+                    type: string
+                    format: enum
+                    example:
+                      - not_found
+                  error_description:
+                    type: string
+                  details:
+                    type: string
+        500:
+          description: Invalid parameters provided to endpoint.
+          content:
+            application/json:
+              schema:
+                type: object
+                required:
+                  - error
+                  - error_description
+                properties:
+                  error:
+                    type: string
+                    format: enum
+                    example:
+                      - server_error
+                  error_description:
+                    type: string
+                  details:
+                    type: string
+  /userinfo:
+    get:
+      tags:
+        - User Info
+      summary: Returns Claims about the authenticated End-User.
+      description: Returns Claims about the authenticated End-User.
+      operationId: get-userinfo
+      parameters:
+        - name: access_token
+          in: query
+          required: true
+          description: OAuth 2.0 Access Token.
+          schema:
+            type: string
+        - name: Authorization
+          in: header
+          schema:
+            type: string
+      responses:
+        200:
+          description: OK
+          content:
+            application/jwt:
+              schema:
+                title: User Claims details
+                properties:
+                  sub:
+                    type: integer
+                    example: 248289761001
+                  name:
+                    type: string
+                    example: Jane Doe
+                  given_name:
+                    type: string
+                    example: Jane
+                  family_name:
+                    type: string
+                    example: Doe
+                  preferred_username:
+                    type: string
+                    example: j.doe
+                  email:
+                    type: string
+                    example: janedoe@example.com
+                  picture:
+                    type: string
+                    example: http://example.com/janedoe/me.jpg
+        400:
+          description: Invalid parameters provided to endpoint.
+          content:
+            application/json:
+              schema:
+                type: object
+                required:
+                  - error
+                  - error_description
+                properties:
+                  error:
+                    type: string
+                    format: enum
+                    example:
+                      - invalid_request
+                  error_description:
+                    type: string
+                  details:
+                    type: string
+        401:
+          description: Invalid parameters provided to endpoint.
+          content:
+            application/json:
+              schema:
+                type: object
+                required:
+                  - error
+                  - error_description
+                properties:
+                  error:
+                    type: string
+                    format: enum
+                    example:
+                      - invalid_token
+                  error_description:
+                    type: string
+                  details:
+                    type: string
+        403:
+          description: Invalid parameters provided to endpoint.
+          content:
+            application/json:
+              schema:
+                type: object
+                required:
+                  - error
+                  - error_description
+                properties:
+                  error:
+                    type: string
+                    format: enum
+                    example:
+                      - insufficient_scope
+                  error_description:
+                    type: string
+                  details:
+                    type: string
+        500:
+          $ref: '#/components/responses/InternalServerError'
+    post:
+      tags:
+        - User Info
+      summary: Returns Claims about the authenticated End-User.
+      description: Returns Claims about the authenticated End-User.
+      operationId: post-userinfo
+      parameters:
+        - name: Authorization
+          in: header
+          description: Client Authorization details that contains the access token along with other details.
+          schema:
+            type: string
+      requestBody:
+        required: true
+        content:
+          application/x-www-form-urlencoded:
+            schema:
+              type: object
+              required:
+                - access_token
+              properties:
+                access_token:
+                  type: string
+                  description: OAuth 2.0 Access Token.
+      responses:
+        200:
+          description: OK
+          content:
+            application/jwt:
+              schema:
+                title: User Claims details
+                properties:
+                  sub:
+                    type: integer
+                    example: 248289761001
+                  name:
+                    type: string
+                    example: Jane Doe
+                  given_name:
+                    type: string
+                    example: Jane
+                  family_name:
+                    type: string
+                    example: Doe
+                  preferred_username:
+                    type: string
+                    example: j.doe
+                  email:
+                    type: string
+                    example: janedoe@example.com
+                  picture:
+                    type: string
+                    example: http://example.com/janedoe/me.jpg
+        400:
+          description: Invalid parameters provided to endpoint.
+          content:
+            application/json:
+              schema:
+                type: object
+                required:
+                  - error
+                  - error_description
+                properties:
+                  error:
+                    type: string
+                    format: enum
+                    example:
+                      - invalid_request
+                  error_description:
+                    type: string
+                  details:
+                    type: string
+        401:
+          description: Invalid parameters provided to endpoint.
+          content:
+            application/json:
+              schema:
+                type: object
+                required:
+                  - error
+                  - error_description
+                properties:
+                  error:
+                    type: string
+                    format: enum
+                    example:
+                      - invalid_token
+                  error_description:
+                    type: string
+                  details:
+                    type: string
+        403:
+          description: Invalid parameters provided to endpoint.
+          content:
+            application/json:
+              schema:
+                type: object
+                required:
+                  - error
+                  - error_description
+                properties:
+                  error:
+                    type: string
+                    format: enum
+                    example:
+                      - insufficient_scope
+                  error_description:
+                    type: string
+                  details:
+                    type: string
+        500:
+          $ref: '#/components/responses/InternalServerError'
+  /fido/u2f/authentication:
+    get:
+      tags:
+        - FIDO U2F
+      summary: Performs FIDO U2F authentication of end-user.
+      description: Performs FIDO U2F authentication of end-user.
+      operationId: get-fido-u2f-authentication
+      parameters:
+        - name: username
+          in: query
+          required: true
+          schema:
+            type: string
+        - name: keyhandle
+          in: query
+          schema:
+            type: string
+            description: Websafe-base64 encoding of the key handle obtained from the U2F token during registration.
+        - name: application
+          in: query
+          description: The application id that the RP would like to assert.
+          schema:
+            type: string
+        - name: session_id
+          in: query
+          schema:
+            type: string
+      responses:
+        200:
+          description: OK
+          content:
+            application/json:
+              schema:
+                title: AuthenticateRequestMessage
+                description: FIDO U2F device authentication request.
+                required:
+                  - version
+                  - challenge
+                  - appId
+                  - keyHandle
+                type: object
+                properties:
+                  version:
+                    type: string
+                    description: Version of the protocol that the to-be-registered U2F token must speak.
+                    example: U2F_V2
+                  challenge:
+                    type: string
+                    description: The websafe-base64-encoded challenge.
+                  appId:
+                    type: string
+                    description: The application id that the RP would like to assert.
+                  keyHandle:
+                    type: string
+                    description: Websafe-base64 encoding of the key handle obtained from the U2F token during registration.
+        403:
+          $ref: '#/components/responses/AccessDenied'
+        404:
+          description: Invalid parameters provided to endpoint.
+          content:
+            application/json:
+              schema:
+                type: object
+                required:
+                  - error
+                  - error_description
+                properties:
+                  error:
+                    type: string
+                    format: enum
+                    example:
+                      - no_eligable_devices
+                  error_description:
+                    type: string
+                  details:
+                    type: string
+        500:
+          description: Invalid parameters provided to endpoint.
+          content:
+            application/json:
+              schema:
+                type: object
+                required:
+                  - error
+                  - error_description
+                properties:
+                  error:
+                    type: string
+                    format: enum
+                    example:
+                      - server_error
+                  error_description:
+                    type: string
+                  details:
+                    type: string
+    post:
+      tags:
+        - FIDO U2F
+      summary: Performs FIDO U2F authentication of end-user.
+      description: Performs FIDO U2F authentication of end-user.
+      operationId: post-fido-u2f-authentication
+      requestBody:
+        content:
+          application/json:
+            schema:
+              title: GetClientTokenParams
+              required:
+                - username
+                - tokenResponse
+              type: object
+              properties:
+                username:
+                  type: string
+                tokenResponse:
+                  type: object
+                  properties:
+                    clientData:
+                      type: string
+                      description: base64(UTF8(client data))
+                    signatureData:
+                      type: string
+                      description: base64(raw response from U2F device)
+                    keyHandle:
+                      type: string
+                      description: keyHandle originally passed
+      responses:
+        200:
+          description: OK
+          content:
+            application/json:
+              schema:
+                title: AuthenticateStatus
+                description: FIDO U2F device authentication status.
+                required:
+                  - status
+                  - challenge
+                type: object
+                properties:
+                  status:
+                    type: string
+                    description: Version of the protocol that the to-be-registered U2F token must speak.
+                    example: U2F_V2
+                  challenge:
+                    type: string
+                    description: The websafe-base64-encoded challenge.
+        403:
+          description: Invalid parameters provided to endpoint.
+          content:
+            application/json:
+              schema:
+                type: object
+                required:
+                  - error
+                  - error_description
+                properties:
+                  error:
+                    type: string
+                    format: enum
+                    example:
+                      - session_expired
+                      - invalid_request
+                      - device_compromised
+                  error_description:
+                    type: string
+                  details:
+                    type: string
+        500:
+          description: Invalid parameters provided to endpoint.
+          content:
+            application/json:
+              schema:
+                type: object
+                required:
+                  - error
+                  - error_description
+                properties:
+                  error:
+                    type: string
+                    format: enum
+                    example:
+                      - server_error
+                  error_description:
+                    type: string
+                  details:
+                    type: string
+
+  /fido-configuration:
+    get:
+      tags:
+        - FIDO U2F
+      summary: Performs FIDO configuration data.
+      description: Performs FIDO configuration data.
+      operationId: fido-configuration
+      responses:
+        200:
+          description: OK
+          content:
+            application/json:
+              schema:
+                title: U2fConfiguration
+                description: FIDO U2F Configuration.
+                required:
+                  - version
+                  - issuer
+                properties:
+                  version:
+                    type: string
+                    description: The version of the FIDO U2F core protocol to which this server conforms. The value MUST be the string 1.0.
+                  issuer:
+                    type: string
+                    description: A URI indicating the party operating the FIDO U2F server.
+                  registration_endpoint:
+                    type: string
+                  authentication_endpoint:
+                    type: string
+        403:
+          $ref: '#/components/responses/AccessDenied'
+        500:
+          description: Invalid parameters provided to endpoint.
+          content:
+            application/json:
+              schema:
+                type: object
+                required:
+                  - error
+                  - error_description
+                properties:
+                  error:
+                    type: string
+                    format: enum
+                    example:
+                      - server_error
+                  error_description:
+                    type: string
+                  details:
+                    type: string
+  /fido/u2f/registration:
+    get:
+      tags:
+        - FIDO U2F
+      summary: U2F device registration.
+      description: U2F device registration.
+      operationId: get-fido-u2f-registration
+      parameters:
+        - name: username
+          in: query
+          required: true
+          schema:
+            type: string
+        - name: application
+          in: query
+          description: The application id that the RP would like to assert.
+          schema:
+            type: string
+        - name: session_id
+          in: query
+          schema:
+            type: string
+        - name: enrollment_code
+          in: query
+          schema:
+            type: string
+      responses:
+        200:
+          description: OK
+          content:
+            application/json:
+              schema:
+                title: RegisterRequestMessage
+                description: RegisterRequestMessage
+                required:
+                  - authenticateRequests
+                  - registerRequests
+                type: object
+                properties:
+                  authenticateRequests:
+                    type: array
+                    items:
+                      type: object
+                      description: list of AuthenticateRequest
+                      properties:
+                        version:
+                          type: string
+                          description: Version of the protocol that the to-be-registered U2F token must speak.
+                          example: U2F_V2
+                        challenge:
+                          type: string
+                          description: The websafe-base64-encoded challenge.
+                        appId:
+                          type: string
+                          description: The application id that the RP would like to assert.
+                        keyHandle:
+                          type: string
+                          description: websafe-base64 encoding of the key handle obtained from the U2F token during registration
+                  registerRequests:
+                    type: array
+                    items:
+                      type: object
+                      description: list of RegisterRequest
+                      properties:
+                        version:
+                          type: string
+                          description: Version of the protocol that the to-be-registered U2F token must speak.
+                          example: U2F_V2
+                        challenge:
+                          type: string
+                          description: The websafe-base64-encoded challenge.
+                        appId:
+                          type: string
+                          description: The application id that the RP would like to assert.
+        403:
+          $ref: '#/components/responses/AccessDenied'
+        406:
+          description: Invalid parameters provided to endpoint.
+          content:
+            application/json:
+              schema:
+                type: object
+                required:
+                  - error
+                  - error_description
+                properties:
+                  error:
+                    type: string
+                    format: enum
+                    example:
+                      - registration_not_allowed
+                  error_description:
+                    type: string
+                  details:
+                    type: string
+        500:
+          description: Invalid parameters provided to endpoint.
+          content:
+            application/json:
+              schema:
+                type: object
+                required:
+                  - error
+                  - error_description
+                properties:
+                  error:
+                    type: string
+                    format: enum
+                    example:
+                      - server_error
+                  error_description:
+                    type: string
+                  details:
+                    type: string
+    post:
+      tags:
+        - FIDO U2F
+      summary: U2F device registration.
+      description: U2F device registration.
+      operationId: post-fido-u2f-registration
+      requestBody:
+        content:
+          application/json:
+            schema:
+              title: RegisterSiteParams
+              required:
+                - username
+              type: object
+              properties:
+                username:
+                  type: string
+                tokenResponse:
+                  type: object
+                  description: FIDO U2F device registration details
+                  properties:
+                    registrationData:
+                      type: string
+                    clientData:
+                      type: string
+                    deviceData:
+                      type: string
+      responses:
+        200:
+          description: OK
+          content:
+            application/json:
+              schema:
+                title: RegisterStatus
+                description: RegisterRequestMessage
+                type: object
+                properties:
+                  status:
+                    type: string
+                  challenge:
+                    type: string
+        403:
+          description: Invalid parameters provided to endpoint.
+          content:
+            application/json:
+              schema:
+                type: object
+                required:
+                  - error
+                  - error_description
+                properties:
+                  error:
+                    type: string
+                    format: enum
+                    example:
+                      - session_expired
+                      - invalid_request
+                  error_description:
+                    type: string
+                  details:
+                    type: string
+        406:
+          description: Invalid parameters provided to endpoint.
+          content:
+            application/json:
+              schema:
+                type: object
+                required:
+                  - error
+                  - error_description
+                properties:
+                  error:
+                    type: string
+                    format: enum
+                    example:
+                      - registration_not_allowed
+                  error_description:
+                    type: string
+                  details:
+                    type: string
+        500:
+          description: Invalid parameters provided to endpoint.
+          content:
+            application/json:
+              schema:
+                type: object
+                required:
+                  - error
+                  - error_description
+                properties:
+                  error:
+                    type: string
+                    format: enum
+                    example:
+                      - server_error
+                  error_description:
+                    type: string
+                  details:
+                    type: string
+  /fido2/configuration:
+    get:
+      tags:
+        - FIDO2
+      summary: FIDO2 configuration
+      description: FIDO2 configuration
+      operationId: get-fido2-configuration
+      responses:
+        200:
+          description: OK
+          content:
+            application/json:
+              schema:
+                title: FIDO2 configuration
+                description: FIDO2 configuration.
+                required:
+                  - version
+                  - issuer
+                  - attestation
+                properties:
+                  version:
+                    type: string
+                    description: The version of the FIDO2 U2F core protocol to which this server conforms. The value MUST be the string 1.0.
+                  issuer:
+                    type: string
+                    description: A URI indicating the party operating the FIDO U2F server.
+                  attestation:
+                    type: array
+                    items:
+                      type: object
+                      description: list of fido2 attestation endpoints
+                      properties:
+                        base_path:
+                          type: string
+                          description: fido2 attestation endpoint
+                        options_enpoint:
+                          type: string
+                          description: fido2 attestation options endpoint
+                        result_enpoint:
+                          type: string
+                          description: fido2 attestation result endpoint
+                  assertion:
+                    type: array
+                    items:
+                      type: object
+                      description: list of fido2 assertion endpoints
+                      properties:
+                        base_path:
+                          type: string
+                          description: fido2 assertion endpoint
+                        options_enpoint:
+                          type: string
+                          description: fido2 assertion options endpoint
+                        result_enpoint:
+                          type: string
+                          description: fido2 assertion result endpoint
+        403:
+          $ref: '#/components/responses/AccessDenied'
+        406:
+          $ref: '#/components/responses/NotAcceptable'
+        500:
+          $ref: '#/components/responses/InternalServerError'
+  /fido2/assertion/options:
+    post:
+      tags:
+        - FIDO2
+      summary: FIDO2 Assertion Options
+      description: FIDO2 Assertion Options
+      operationId: options
+      requestBody:
+        content:
+          application/json:
+            schema:
+              title: AssertionOptions
+              type: object
+              properties:
+                content:
+                  type: object
+                  description: An object that contains the extensions to enable, and the options to use for each of them.
+                  properties:
+                    username:
+                      type: string
+                    authenticatorSelection:
+                      type: array
+                      items:
+                        type: string
+                        description: Set of parameters required for FIDO2 assertion option.
+                    documentDomain:
+                      type: string
+                    extensions:
+                      type: string
+      responses:
+        200:
+          description: OK
+          content:
+            application/json:
+              schema:
+                title: AssertionOptionsResponse
+                type: object
+                required:
+                  - challenge
+                  - user
+                  - allowCredentials
+                  - userVerification
+                  - extensions
+                properties:
+                  challenge:
+                    type: string
+                    description: Websafe-base64 encoding of the challenge.
+                  user:
+                    type: string
+                    description: username
+                  allowCredentials:
+                    type: array
+                    items:
+                      type: string
+                    example:
+                      - type
+                      - transports
+                      - id
+                  userVerification:
+                    type: string
+                  extensions:
+                    type: string
+        403:
+          $ref: '#/components/responses/AccessDenied'
+        500:
+          $ref: '#/components/responses/InternalServerError'
+  /fido2/assertion/result:
+    post:
+      tags:
+        - FIDO2
+      summary: FIDO2 Assertion Result - Parses and validates an assertion response from the client.
+      description: FIDO2 Assertion Result.
+      operationId: result
+      requestBody:
+        content:
+          application/json:
+            schema:
+              title: AssertionOptions
+              required:
+                - clientDataJSON
+              type: object
+              properties:
+                id:
+                  type: string
+                  description: The base64url encoded id returned by the client
+                type:
+                  type: array
+                  items:
+                    type: string
+                  example:
+                    - public-key
+                rawId:
+                  type: string
+                  description: The base64url encoded rawId returned by the client. If res.rawId is missing, res.id will be used instead. If both are missing an error will be thrown.
+                userHandle:
+                  type: string
+                  description: The base64url encoded userHandle returned by the client. May be null or an empty string.
+                clientDataJSON:
+                  type: array
+                  description: The base64url encoded clientDataJSON returned by the client
+                  items:
+                    type: string
+                  example:
+                    - challenge
+                    - origin
+      responses:
+        200:
+          description: OK
+          content: {}
+        403:
+          $ref: '#/components/responses/AccessDenied'
+        500:
+          $ref: '#/components/responses/InternalServerError'
+  /fido2/attestation/options:
+    post:
+      tags:
+        - FIDO2
+      summary: Created new registration.
+      description: Created new registration.
+      operationId: attestation-options
+      requestBody:
+        content:
+          application/json:
+            schema:
+              title: AttestationOptions
+              description: An object containing various options for the option creation
+              type: object
+              properties:
+                username:
+                  type: string
+                displayName:
+                  type: string
+                documentDomain:
+                  type: string
+                credentialType:
+                  type: string
+                authenticatorSelection:
+                  type: array
+                  items:
+                    type: string
+                    description: Set of parameters required for FIDO2 attestation option.
+                extensions:
+                  type: string
+      responses:
+        200:
+          description: OK
+          content:
+            application/json:
+              schema:
+                title: CredentialCreationOptions
+                required:
+                  - challenge
+                  - rp
+                  - user
+                  - attestation
+                  - pubKeyCredParams
+                  - authenticatorSelection
+                  - excludeCredentials
+                  - extensions
+                type: object
+                properties:
+                  challenge:
+                    type: string
+                    description: The base64url encoded challenge that was sent to the client, as generated by assertionOptions.
+                  rp:
+                    type: array
+                    description: RP credentials
+                    items:
+                      type: string
+                    example:
+                      - name
+                      - id
+                  user:
+                    type: object
+                    description: User object
+                    required:
+                      - id
+                      - name
+                      - displayName
+                    properties:
+                      id:
+                        type: string
+                      name:
+                        type: string
+                      displayName:
+                        type: string
+                  attestation:
+                    type: string
+                    format: enum
+                  pubKeyCredParams:
+                    type: array
+                    items:
+                      type: string
+                      example:
+                        - public-key
+                        - type
+                        - alg
+                  authenticatorSelection:
+                    type: array
+                    items:
+                      type: string
+                      description: Set of parameters required for FIDO2 attestation option.
+                  excludeCredentials:
+                    type: array
+                    items:
+                      type: string
+                      description: Set of parameters required for FIDO2 attestation option.
+                  extensions:
+                    type: string
+        403:
+          $ref: '#/components/responses/AccessDenied'
+        500:
+          $ref: '#/components/responses/InternalServerError'
+  /fido2/attestation/result:
+    post:
+      tags:
+        - FIDO2
+      summary: FIDO2 attestation result.
+      description: FIDO2 attestation result
+      operationId: attestation-result
+      requestBody:
+        content:
+          application/json:
+            schema:
+              title: AttestationOptions
+              description: An object containing various options for the option creation
+              type: object
+              required:
+                - _type
+                - clientDataJSON
+              properties:
+                type:
+                  type: string
+                clientDataJSON:
+                  type: array
+                  description: The base64url encoded clientDataJSON returned by the client
+                  items:
+                    type: string
+                  example:
+                    - challenge
+                    - origin
+                id:
+                  type: string
+
+      responses:
+        200:
+          description: OK
+          content: {}
+          $ref: '#/components/responses/AccessDenied'
+        500:
+          $ref: '#/components/responses/InternalServerError'
+
+components:
+  responses:
+    Found: #302 - FOUND
+      description: Resource Found.
+      content: {}
+    InvalidRequest: #400 - BAD_REQUEST
+      description: Invalid parameters are provided to endpoint.
+      content:
+        application/json:
+          schema:
+            $ref: '#/components/schemas/ErrorResponse'
+    Unauthorized: #401 - UNAUTHORIZED
+      description: Unauthorized access request.
+      content:
+        application/json:
+          schema:
+            $ref: '#/components/schemas/ErrorResponse'
+    AccessDenied: #403 - FORBIDDEN
+      description: Invalid details provided hence access denied.
+      content:
+        application/json:
+          schema:
+            $ref: '#/components/schemas/ErrorResponse'
+    NotFound: #404 - NOT_FOUND
+      description: Resource Not Found.
+      content:
+        application/json:
+          schema:
+            $ref: '#/components/schemas/ErrorResponse'
+    NotAcceptable: #406 - NOT_ACCEPTABLE
+      description: Request Not Acceptable.
+      content:
+        application/json:
+          schema:
+            $ref: '#/components/schemas/ErrorResponse'
+    InternalServerError: #500 - INTERNAL_SERVER_ERROR
+      description: Internal error occured. Please check log file for details.
+      content:
+        application/json:
+          schema:
+            $ref: '#/components/schemas/ErrorResponse'
+
+  schemas:
+    ErrorResponse:
+      required:
+        - error
+        - error_description
+      type: object
+      properties:
+        error:
+          type: string
+        error_description:
+          type: string
+        details:
+          type: string
+    JsonWebKey:
+      required:
+        - alg
+        - exp
+        - key_ops
+        - kid
+        - kty
+        - use
+        - x5c
+      type: object
+      properties:
+        kid:
+          type: string
+        kty:
+          type: string
+        use:
+          type: string
+        alg:
+          type: string
+        crv:
+          type: string
+        exp:
+          type: integer
+          format: int64
+        x5c:
+          type: array
+          items:
+            type: string
+        n:
+          type: string
+        e:
+          type: string
+        x:
+          type: string
+        y:
+          type: string
\ No newline at end of file
diff --git a/oxAuth/install.bat b/oxAuth/install.bat
new file mode 100644
index 00000000..f3323ff2
--- /dev/null
+++ b/oxAuth/install.bat
@@ -0,0 +1 @@
+mvn -Dmaven.test.skip=true -Ddependency-check.skip=true clean compile install
diff --git a/oxAuth/jmeter/test/Authorization Code Flow.jmx b/oxAuth/jmeter/test/Authorization Code Flow.jmx
new file mode 100644
index 00000000..98764a4a
--- /dev/null
+++ b/oxAuth/jmeter/test/Authorization Code Flow.jmx	
@@ -0,0 +1,925 @@
+<?xml version="1.0" encoding="UTF-8"?>
+<jmeterTestPlan version="1.2" properties="2.9" jmeter="3.0 r1743807">
+  <hashTree>
+    <TestPlan guiclass="TestPlanGui" testclass="TestPlan" testname="Authorization Code Flow" enabled="true">
+      <stringProp name="TestPlan.comments"></stringProp>
+      <boolProp name="TestPlan.functional_mode">false</boolProp>
+      <boolProp name="TestPlan.serialize_threadgroups">true</boolProp>
+      <elementProp name="TestPlan.user_defined_variables" elementType="Arguments" guiclass="ArgumentsPanel" testclass="Arguments" testname="User Defined Variables" enabled="true">
+        <collectionProp name="Arguments.arguments">
+          <elementProp name="host" elementType="Argument">
+            <stringProp name="Argument.name">host</stringProp>
+            <stringProp name="Argument.value"></stringProp>
+            <stringProp name="Argument.metadata">=</stringProp>
+          </elementProp>
+          <elementProp name="scope" elementType="Argument">
+            <stringProp name="Argument.name">scope</stringProp>
+            <stringProp name="Argument.value">openid profile email user_name</stringProp>
+            <stringProp name="Argument.metadata">=</stringProp>
+          </elementProp>
+          <elementProp name="username" elementType="Argument">
+            <stringProp name="Argument.name">username</stringProp>
+            <stringProp name="Argument.value">test_user</stringProp>
+            <stringProp name="Argument.metadata">=</stringProp>
+          </elementProp>
+          <elementProp name="password" elementType="Argument">
+            <stringProp name="Argument.name">password</stringProp>
+            <stringProp name="Argument.value">test_user_password</stringProp>
+            <stringProp name="Argument.metadata">=</stringProp>
+          </elementProp>
+          <elementProp name="redirect_uri" elementType="Argument">
+            <stringProp name="Argument.name">redirect_uri</stringProp>
+            <stringProp name="Argument.value">https://{$host}/identity/authentication/authcode</stringProp>
+            <stringProp name="Argument.metadata">=</stringProp>
+          </elementProp>
+          <elementProp name="client_id" elementType="Argument">
+            <stringProp name="Argument.name">client_id</stringProp>
+            <stringProp name="Argument.value">@!5A58.AE0D.D383.1E46!0001!E38B.7DBE!0008!FF81!2D39</stringProp>
+            <stringProp name="Argument.metadata">=</stringProp>
+          </elementProp>
+          <elementProp name="client_secret" elementType="Argument">
+            <stringProp name="Argument.name">client_secret</stringProp>
+            <stringProp name="Argument.value">u95PC0MsrVGi</stringProp>
+            <stringProp name="Argument.metadata">=</stringProp>
+          </elementProp>
+          <elementProp name="client_header" elementType="Argument">
+            <stringProp name="Argument.name">client_header</stringProp>
+            <stringProp name="Argument.value">to_override_in_jsr223</stringProp>
+            <stringProp name="Argument.metadata">=</stringProp>
+          </elementProp>
+        </collectionProp>
+      </elementProp>
+      <stringProp name="TestPlan.user_define_classpath"></stringProp>
+    </TestPlan>
+    <hashTree>
+      <ConfigTestElement guiclass="HttpDefaultsGui" testclass="ConfigTestElement" testname="HTTP Request Defaults" enabled="true">
+        <elementProp name="HTTPsampler.Arguments" elementType="Arguments" guiclass="HTTPArgumentsPanel" testclass="Arguments" testname="User Defined Variables" enabled="true">
+          <collectionProp name="Arguments.arguments"/>
+        </elementProp>
+        <stringProp name="HTTPSampler.domain">${host}</stringProp>
+        <stringProp name="HTTPSampler.port"></stringProp>
+        <stringProp name="HTTPSampler.connect_timeout"></stringProp>
+        <stringProp name="HTTPSampler.response_timeout"></stringProp>
+        <stringProp name="HTTPSampler.protocol">https</stringProp>
+        <stringProp name="HTTPSampler.contentEncoding"></stringProp>
+        <stringProp name="HTTPSampler.path"></stringProp>
+        <stringProp name="HTTPSampler.concurrentPool">6</stringProp>
+      </ConfigTestElement>
+      <hashTree/>
+      <ThreadGroup guiclass="ThreadGroupGui" testclass="ThreadGroup" testname="Thread Group" enabled="true">
+        <stringProp name="ThreadGroup.on_sample_error">continue</stringProp>
+        <elementProp name="ThreadGroup.main_controller" elementType="LoopController" guiclass="LoopControlPanel" testclass="LoopController" testname="Loop Controller" enabled="true">
+          <boolProp name="LoopController.continue_forever">false</boolProp>
+          <stringProp name="LoopController.loops">1</stringProp>
+        </elementProp>
+        <stringProp name="ThreadGroup.num_threads">3</stringProp>
+        <stringProp name="ThreadGroup.ramp_time">1</stringProp>
+        <longProp name="ThreadGroup.start_time">1479823133000</longProp>
+        <longProp name="ThreadGroup.end_time">1479823133000</longProp>
+        <boolProp name="ThreadGroup.scheduler">false</boolProp>
+        <stringProp name="ThreadGroup.duration"></stringProp>
+        <stringProp name="ThreadGroup.delay"></stringProp>
+      </ThreadGroup>
+      <hashTree>
+        <GenericController guiclass="LogicControllerGui" testclass="GenericController" testname="Simple Controller" enabled="true"/>
+        <hashTree>
+          <CacheManager guiclass="CacheManagerGui" testclass="CacheManager" testname="HTTP Cache Manager" enabled="true">
+            <boolProp name="clearEachIteration">false</boolProp>
+            <boolProp name="useExpires">false</boolProp>
+          </CacheManager>
+          <hashTree/>
+          <CookieManager guiclass="CookiePanel" testclass="CookieManager" testname="HTTP Cookie Manager" enabled="true">
+            <collectionProp name="CookieManager.cookies"/>
+            <boolProp name="CookieManager.clearEachIteration">false</boolProp>
+            <stringProp name="CookieManager.policy">standard</stringProp>
+            <stringProp name="CookieManager.implementation">org.apache.jmeter.protocol.http.control.HC4CookieHandler</stringProp>
+          </CookieManager>
+          <hashTree/>
+          <CounterConfig guiclass="CounterConfigGui" testclass="CounterConfig" testname="session_state_counter" enabled="true">
+            <stringProp name="CounterConfig.start">1</stringProp>
+            <stringProp name="CounterConfig.end"></stringProp>
+            <stringProp name="CounterConfig.incr">1</stringProp>
+            <stringProp name="CounterConfig.name">session_state_counter</stringProp>
+            <stringProp name="CounterConfig.format"></stringProp>
+            <boolProp name="CounterConfig.per_user">false</boolProp>
+          </CounterConfig>
+          <hashTree/>
+          <HTTPSamplerProxy guiclass="HttpTestSampleGui" testclass="HTTPSamplerProxy" testname="/authorize" enabled="true">
+            <elementProp name="HTTPsampler.Arguments" elementType="Arguments" guiclass="HTTPArgumentsPanel" testclass="Arguments" testname="User Defined Variables" enabled="true">
+              <collectionProp name="Arguments.arguments">
+                <elementProp name="scope" elementType="HTTPArgument">
+                  <boolProp name="HTTPArgument.always_encode">true</boolProp>
+                  <stringProp name="Argument.value">${scope}</stringProp>
+                  <stringProp name="Argument.metadata">=</stringProp>
+                  <boolProp name="HTTPArgument.use_equals">true</boolProp>
+                  <stringProp name="Argument.name">scope</stringProp>
+                </elementProp>
+                <elementProp name="response_type" elementType="HTTPArgument">
+                  <boolProp name="HTTPArgument.always_encode">false</boolProp>
+                  <stringProp name="Argument.value">code</stringProp>
+                  <stringProp name="Argument.metadata">=</stringProp>
+                  <boolProp name="HTTPArgument.use_equals">true</boolProp>
+                  <stringProp name="Argument.name">response_type</stringProp>
+                </elementProp>
+                <elementProp name="nonce" elementType="HTTPArgument">
+                  <boolProp name="HTTPArgument.always_encode">false</boolProp>
+                  <stringProp name="Argument.value">nonce</stringProp>
+                  <stringProp name="Argument.metadata">=</stringProp>
+                  <boolProp name="HTTPArgument.use_equals">true</boolProp>
+                  <stringProp name="Argument.name">nonce</stringProp>
+                </elementProp>
+                <elementProp name="redirect_uri" elementType="HTTPArgument">
+                  <boolProp name="HTTPArgument.always_encode">true</boolProp>
+                  <stringProp name="Argument.value">${redirect_uri}</stringProp>
+                  <stringProp name="Argument.metadata">=</stringProp>
+                  <boolProp name="HTTPArgument.use_equals">true</boolProp>
+                  <stringProp name="Argument.name">redirect_uri</stringProp>
+                </elementProp>
+                <elementProp name="client_id" elementType="HTTPArgument">
+                  <boolProp name="HTTPArgument.always_encode">true</boolProp>
+                  <stringProp name="Argument.value">${client_id}</stringProp>
+                  <stringProp name="Argument.metadata">=</stringProp>
+                  <boolProp name="HTTPArgument.use_equals">true</boolProp>
+                  <stringProp name="Argument.name">client_id</stringProp>
+                </elementProp>
+              </collectionProp>
+            </elementProp>
+            <stringProp name="HTTPSampler.domain"></stringProp>
+            <stringProp name="HTTPSampler.port"></stringProp>
+            <stringProp name="HTTPSampler.connect_timeout"></stringProp>
+            <stringProp name="HTTPSampler.response_timeout"></stringProp>
+            <stringProp name="HTTPSampler.protocol">https</stringProp>
+            <stringProp name="HTTPSampler.contentEncoding"></stringProp>
+            <stringProp name="HTTPSampler.path">/oxauth/restv1/authorize</stringProp>
+            <stringProp name="HTTPSampler.method">GET</stringProp>
+            <boolProp name="HTTPSampler.follow_redirects">true</boolProp>
+            <boolProp name="HTTPSampler.auto_redirects">false</boolProp>
+            <boolProp name="HTTPSampler.use_keepalive">true</boolProp>
+            <boolProp name="HTTPSampler.DO_MULTIPART_POST">false</boolProp>
+            <boolProp name="HTTPSampler.monitor">false</boolProp>
+            <stringProp name="HTTPSampler.embedded_url_re"></stringProp>
+          </HTTPSamplerProxy>
+          <hashTree>
+            <RegexExtractor guiclass="RegexExtractorGui" testclass="RegexExtractor" testname="Regular Expression Extractor : javax.faces.FormSignature" enabled="true">
+              <stringProp name="RegexExtractor.useHeaders">false</stringProp>
+              <stringProp name="RegexExtractor.refname">javax.faces.FormSignature</stringProp>
+              <stringProp name="RegexExtractor.regex">&lt;input type=&quot;hidden&quot; name=&quot;javax.faces.FormSignature&quot; value=&quot;(.+?)&quot; /&gt;</stringProp>
+              <stringProp name="RegexExtractor.template">$1$</stringProp>
+              <stringProp name="RegexExtractor.default"></stringProp>
+              <stringProp name="RegexExtractor.match_number"></stringProp>
+            </RegexExtractor>
+            <hashTree/>
+            <RegexExtractor guiclass="RegexExtractorGui" testclass="RegexExtractor" testname="Regular Expression Extractor : javax.faces.ViewState" enabled="true">
+              <stringProp name="RegexExtractor.useHeaders">false</stringProp>
+              <stringProp name="RegexExtractor.refname">javax.faces.ViewState</stringProp>
+              <stringProp name="RegexExtractor.regex">&lt;input type=&quot;hidden&quot; name=&quot;javax.faces.ViewState&quot; id=&quot;javax.faces.ViewState&quot; value=&quot;(.+?)&quot; autocomplete=&quot;off&quot; /&gt;</stringProp>
+              <stringProp name="RegexExtractor.template">$1$</stringProp>
+              <stringProp name="RegexExtractor.default"></stringProp>
+              <stringProp name="RegexExtractor.match_number"></stringProp>
+            </RegexExtractor>
+            <hashTree/>
+            <ResultCollector guiclass="ViewResultsFullVisualizer" testclass="ResultCollector" testname="View Results Tree" enabled="true">
+              <boolProp name="ResultCollector.error_logging">false</boolProp>
+              <objProp>
+                <name>saveConfig</name>
+                <value class="SampleSaveConfiguration">
+                  <time>true</time>
+                  <latency>true</latency>
+                  <timestamp>true</timestamp>
+                  <success>true</success>
+                  <label>true</label>
+                  <code>true</code>
+                  <message>true</message>
+                  <threadName>true</threadName>
+                  <dataType>true</dataType>
+                  <encoding>false</encoding>
+                  <assertions>true</assertions>
+                  <subresults>true</subresults>
+                  <responseData>false</responseData>
+                  <samplerData>false</samplerData>
+                  <xml>false</xml>
+                  <fieldNames>true</fieldNames>
+                  <responseHeaders>false</responseHeaders>
+                  <requestHeaders>false</requestHeaders>
+                  <responseDataOnError>false</responseDataOnError>
+                  <saveAssertionResultsFailureMessage>true</saveAssertionResultsFailureMessage>
+                  <assertionsResultsToSave>0</assertionsResultsToSave>
+                  <bytes>true</bytes>
+                  <threadCounts>true</threadCounts>
+                  <idleTime>true</idleTime>
+                </value>
+              </objProp>
+              <stringProp name="filename"></stringProp>
+            </ResultCollector>
+            <hashTree/>
+          </hashTree>
+          <HTTPSamplerProxy guiclass="HttpTestSampleGui" testclass="HTTPSamplerProxy" testname="/oxauth/login" enabled="true">
+            <elementProp name="HTTPsampler.Arguments" elementType="Arguments" guiclass="HTTPArgumentsPanel" testclass="Arguments" enabled="true">
+              <collectionProp name="Arguments.arguments">
+                <elementProp name="loginForm" elementType="HTTPArgument">
+                  <boolProp name="HTTPArgument.always_encode">false</boolProp>
+                  <stringProp name="Argument.name">loginForm</stringProp>
+                  <stringProp name="Argument.value">loginForm</stringProp>
+                  <stringProp name="Argument.metadata">=</stringProp>
+                  <boolProp name="HTTPArgument.use_equals">true</boolProp>
+                </elementProp>
+                <elementProp name="javax.faces.FormSignature" elementType="HTTPArgument">
+                  <boolProp name="HTTPArgument.always_encode">true</boolProp>
+                  <stringProp name="Argument.name">javax.faces.FormSignature</stringProp>
+                  <stringProp name="Argument.value">${javax.faces.FormSignature}</stringProp>
+                  <stringProp name="Argument.metadata">=</stringProp>
+                  <boolProp name="HTTPArgument.use_equals">true</boolProp>
+                </elementProp>
+                <elementProp name="loginForm:username" elementType="HTTPArgument">
+                  <boolProp name="HTTPArgument.always_encode">true</boolProp>
+                  <stringProp name="Argument.name">loginForm:username</stringProp>
+                  <stringProp name="Argument.value">${username}</stringProp>
+                  <stringProp name="Argument.metadata">=</stringProp>
+                  <boolProp name="HTTPArgument.use_equals">true</boolProp>
+                </elementProp>
+                <elementProp name="loginForm:password" elementType="HTTPArgument">
+                  <boolProp name="HTTPArgument.always_encode">true</boolProp>
+                  <stringProp name="Argument.name">loginForm:password</stringProp>
+                  <stringProp name="Argument.value">${password}</stringProp>
+                  <stringProp name="Argument.metadata">=</stringProp>
+                  <boolProp name="HTTPArgument.use_equals">true</boolProp>
+                </elementProp>
+                <elementProp name="loginForm:loginButton" elementType="HTTPArgument">
+                  <boolProp name="HTTPArgument.always_encode">true</boolProp>
+                  <stringProp name="Argument.name">loginForm:loginButton</stringProp>
+                  <stringProp name="Argument.value">Login</stringProp>
+                  <stringProp name="Argument.metadata">=</stringProp>
+                  <boolProp name="HTTPArgument.use_equals">true</boolProp>
+                </elementProp>
+                <elementProp name="javax.faces.ViewState" elementType="HTTPArgument">
+                  <boolProp name="HTTPArgument.always_encode">true</boolProp>
+                  <stringProp name="Argument.name">javax.faces.ViewState</stringProp>
+                  <stringProp name="Argument.value">${javax.faces.ViewState}</stringProp>
+                  <stringProp name="Argument.metadata">=</stringProp>
+                  <boolProp name="HTTPArgument.use_equals">true</boolProp>
+                </elementProp>
+              </collectionProp>
+            </elementProp>
+            <stringProp name="HTTPSampler.domain"></stringProp>
+            <stringProp name="HTTPSampler.port">443</stringProp>
+            <stringProp name="HTTPSampler.connect_timeout"></stringProp>
+            <stringProp name="HTTPSampler.response_timeout"></stringProp>
+            <stringProp name="HTTPSampler.protocol">https</stringProp>
+            <stringProp name="HTTPSampler.contentEncoding">UTF-8</stringProp>
+            <stringProp name="HTTPSampler.path">/oxauth/login</stringProp>
+            <stringProp name="HTTPSampler.method">POST</stringProp>
+            <boolProp name="HTTPSampler.follow_redirects">true</boolProp>
+            <boolProp name="HTTPSampler.auto_redirects">false</boolProp>
+            <boolProp name="HTTPSampler.use_keepalive">true</boolProp>
+            <boolProp name="HTTPSampler.DO_MULTIPART_POST">false</boolProp>
+            <boolProp name="HTTPSampler.monitor">false</boolProp>
+            <stringProp name="HTTPSampler.embedded_url_re"></stringProp>
+            <stringProp name="TestPlan.comments">Detected the start of a redirect chain</stringProp>
+          </HTTPSamplerProxy>
+          <hashTree>
+            <HeaderManager guiclass="HeaderPanel" testclass="HeaderManager" testname="HTTP Header Manager" enabled="true">
+              <collectionProp name="HeaderManager.headers">
+                <elementProp name="Content-Type" elementType="Header">
+                  <stringProp name="Header.name">Content-Type</stringProp>
+                  <stringProp name="Header.value">application/x-www-form-urlencoded</stringProp>
+                </elementProp>
+                <elementProp name="Accept-Language" elementType="Header">
+                  <stringProp name="Header.name">Accept-Language</stringProp>
+                  <stringProp name="Header.value">en-US,en;q=0.5</stringProp>
+                </elementProp>
+                <elementProp name="Accept" elementType="Header">
+                  <stringProp name="Header.name">Accept</stringProp>
+                  <stringProp name="Header.value">text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8</stringProp>
+                </elementProp>
+                <elementProp name="User-Agent" elementType="Header">
+                  <stringProp name="Header.name">User-Agent</stringProp>
+                  <stringProp name="Header.value">Mozilla/5.0 (Windows NT 6.1; WOW64; rv:24.0) Gecko/20100101 Firefox/24.0</stringProp>
+                </elementProp>
+                <elementProp name="Referer" elementType="Header">
+                  <stringProp name="Header.name">Referer</stringProp>
+                  <stringProp name="Header.value">https://${host}/oxauth/login</stringProp>
+                </elementProp>
+                <elementProp name="Accept-Encoding" elementType="Header">
+                  <stringProp name="Header.name">Accept-Encoding</stringProp>
+                  <stringProp name="Header.value">gzip, deflate</stringProp>
+                </elementProp>
+              </collectionProp>
+            </HeaderManager>
+            <hashTree/>
+            <JSR223PreProcessor guiclass="TestBeanGUI" testclass="JSR223PreProcessor" testname="JSR223 PreProcessor : identify user credentials" enabled="true">
+              <stringProp name="scriptLanguage">java</stringProp>
+              <stringProp name="parameters"></stringProp>
+              <stringProp name="filename"></stringProp>
+              <stringProp name="cacheKey">5747dfc9-3b64-496f-947f-e9ce907c06cd</stringProp>
+              <stringProp name="script">double weight = 0.7d;
+
+String username1 = &quot;admin&quot;;
+String password1 = &quot;cedevgluuorgazar&quot;;
+
+String username = &quot;test_user&quot;;
+String password = &quot;test_user_password&quot;;
+
+float chance = new Random().nextFloat();
+if (chance &lt;= weight) {
+	username = username1;
+	password = password1;
+}
+
+log.info(&quot;username: &quot; + username);
+
+vars.put(&quot;username&quot;, username);
+vars.put(&quot;password&quot;, password);</stringProp>
+            </JSR223PreProcessor>
+            <hashTree/>
+            <ResultCollector guiclass="ViewResultsFullVisualizer" testclass="ResultCollector" testname="View Results Tree" enabled="true">
+              <boolProp name="ResultCollector.error_logging">false</boolProp>
+              <objProp>
+                <name>saveConfig</name>
+                <value class="SampleSaveConfiguration">
+                  <time>true</time>
+                  <latency>true</latency>
+                  <timestamp>true</timestamp>
+                  <success>true</success>
+                  <label>true</label>
+                  <code>true</code>
+                  <message>true</message>
+                  <threadName>true</threadName>
+                  <dataType>true</dataType>
+                  <encoding>false</encoding>
+                  <assertions>true</assertions>
+                  <subresults>true</subresults>
+                  <responseData>false</responseData>
+                  <samplerData>false</samplerData>
+                  <xml>false</xml>
+                  <fieldNames>true</fieldNames>
+                  <responseHeaders>false</responseHeaders>
+                  <requestHeaders>false</requestHeaders>
+                  <responseDataOnError>false</responseDataOnError>
+                  <saveAssertionResultsFailureMessage>true</saveAssertionResultsFailureMessage>
+                  <assertionsResultsToSave>0</assertionsResultsToSave>
+                  <bytes>true</bytes>
+                  <threadCounts>true</threadCounts>
+                  <idleTime>true</idleTime>
+                </value>
+              </objProp>
+              <stringProp name="filename"></stringProp>
+            </ResultCollector>
+            <hashTree/>
+            <ResponseAssertion guiclass="AssertionGui" testclass="ResponseAssertion" testname="Response Assertion" enabled="true">
+              <collectionProp name="Asserion.test_strings">
+                <stringProp name="3059181">code</stringProp>
+              </collectionProp>
+              <stringProp name="Assertion.test_field">Assertion.sample_label</stringProp>
+              <boolProp name="Assertion.assume_success">false</boolProp>
+              <intProp name="Assertion.test_type">2</intProp>
+            </ResponseAssertion>
+            <hashTree/>
+            <JSR223PostProcessor guiclass="TestBeanGUI" testclass="JSR223PostProcessor" testname="JSR223 PostProcessor : extract code" enabled="true">
+              <stringProp name="cacheKey"></stringProp>
+              <stringProp name="filename"></stringProp>
+              <stringProp name="parameters"></stringProp>
+              <stringProp name="script">String code = &quot;&quot;;
+if (prev.getUrlAsString().contains(&quot;?code=&quot;)) {
+	code = org.apache.commons.lang3.StringUtils.substringAfter(prev.getUrlAsString(), &quot;?code=&quot;);
+} else {
+	code = org.apache.commons.lang3.StringUtils.substringAfter(prev.getUrlAsString(), &quot;&amp;code=&quot;);
+}
+if (code.contains(&quot;&amp;&quot;)) {
+	code = org.apache.commons.lang3.StringUtils.substringBefore(prev.getUrlAsString(), &quot;&amp;&quot;);
+}
+
+vars.put(&quot;code&quot;, code);
+log.info(&quot;login post processor, code : &quot; + code);
+
+
+
+</stringProp>
+              <stringProp name="scriptLanguage">java</stringProp>
+            </JSR223PostProcessor>
+            <hashTree/>
+          </hashTree>
+          <HTTPSamplerProxy guiclass="HttpTestSampleGui" testclass="HTTPSamplerProxy" testname="/token" enabled="true">
+            <elementProp name="HTTPsampler.Arguments" elementType="Arguments" guiclass="HTTPArgumentsPanel" testclass="Arguments" enabled="true">
+              <collectionProp name="Arguments.arguments">
+                <elementProp name="code" elementType="HTTPArgument">
+                  <boolProp name="HTTPArgument.always_encode">false</boolProp>
+                  <stringProp name="Argument.value">${code}</stringProp>
+                  <stringProp name="Argument.metadata">=</stringProp>
+                  <boolProp name="HTTPArgument.use_equals">true</boolProp>
+                  <stringProp name="Argument.name">code</stringProp>
+                </elementProp>
+                <elementProp name="grant_type" elementType="HTTPArgument">
+                  <boolProp name="HTTPArgument.always_encode">false</boolProp>
+                  <stringProp name="Argument.value">authorization_code</stringProp>
+                  <stringProp name="Argument.metadata">=</stringProp>
+                  <boolProp name="HTTPArgument.use_equals">true</boolProp>
+                  <stringProp name="Argument.name">grant_type</stringProp>
+                </elementProp>
+                <elementProp name="redirect_uri" elementType="HTTPArgument">
+                  <boolProp name="HTTPArgument.always_encode">false</boolProp>
+                  <stringProp name="Argument.value">${redirect_uri}</stringProp>
+                  <stringProp name="Argument.metadata">=</stringProp>
+                  <boolProp name="HTTPArgument.use_equals">true</boolProp>
+                  <stringProp name="Argument.name">redirect_uri</stringProp>
+                </elementProp>
+              </collectionProp>
+            </elementProp>
+            <stringProp name="HTTPSampler.domain"></stringProp>
+            <stringProp name="HTTPSampler.port"></stringProp>
+            <stringProp name="HTTPSampler.connect_timeout"></stringProp>
+            <stringProp name="HTTPSampler.response_timeout"></stringProp>
+            <stringProp name="HTTPSampler.protocol"></stringProp>
+            <stringProp name="HTTPSampler.contentEncoding"></stringProp>
+            <stringProp name="HTTPSampler.path">/oxauth/restv1/token</stringProp>
+            <stringProp name="HTTPSampler.method">POST</stringProp>
+            <boolProp name="HTTPSampler.follow_redirects">true</boolProp>
+            <boolProp name="HTTPSampler.auto_redirects">false</boolProp>
+            <boolProp name="HTTPSampler.use_keepalive">true</boolProp>
+            <boolProp name="HTTPSampler.DO_MULTIPART_POST">false</boolProp>
+            <boolProp name="HTTPSampler.monitor">false</boolProp>
+            <stringProp name="HTTPSampler.embedded_url_re"></stringProp>
+          </HTTPSamplerProxy>
+          <hashTree>
+            <HeaderManager guiclass="HeaderPanel" testclass="HeaderManager" testname="HTTP Header Manager" enabled="true">
+              <collectionProp name="HeaderManager.headers">
+                <elementProp name="" elementType="Header">
+                  <stringProp name="Header.name">Authorization</stringProp>
+                  <stringProp name="Header.value">${client_header}</stringProp>
+                </elementProp>
+                <elementProp name="" elementType="Header">
+                  <stringProp name="Header.name">Content-Type</stringProp>
+                  <stringProp name="Header.value">application/x-www-form-urlencoded</stringProp>
+                </elementProp>
+              </collectionProp>
+            </HeaderManager>
+            <hashTree/>
+            <JSR223PreProcessor guiclass="TestBeanGUI" testclass="JSR223PreProcessor" testname="JSR223 PreProcessor : base64 client credentials " enabled="true">
+              <stringProp name="cacheKey">5747dfc9-3b64-496f-947f-e9ce907c06cd</stringProp>
+              <stringProp name="filename"></stringProp>
+              <stringProp name="parameters"></stringProp>
+              <stringProp name="script">String credentials = vars.get(&quot;client_id&quot;) + &quot;:&quot; + vars.get(&quot;client_secret&quot;);
+String clientHeader = &quot;Basic &quot; + org.apache.commons.codec.binary.Base64.encodeBase64String(credentials.getBytes(&quot;UTF-8&quot;));
+log.info(&quot;Credentials: &quot; + credentials + &quot;, clientHeader: &quot; + clientHeader);
+OUT.println(&quot;Credentials: &quot; + credentials + &quot;, clientHeader: &quot; + clientHeader);
+vars.put(&quot;client_header&quot;, clientHeader);</stringProp>
+              <stringProp name="scriptLanguage">java</stringProp>
+            </JSR223PreProcessor>
+            <hashTree/>
+            <ResultCollector guiclass="ViewResultsFullVisualizer" testclass="ResultCollector" testname="View Results Tree" enabled="true">
+              <boolProp name="ResultCollector.error_logging">false</boolProp>
+              <objProp>
+                <name>saveConfig</name>
+                <value class="SampleSaveConfiguration">
+                  <time>true</time>
+                  <latency>true</latency>
+                  <timestamp>true</timestamp>
+                  <success>true</success>
+                  <label>true</label>
+                  <code>true</code>
+                  <message>true</message>
+                  <threadName>true</threadName>
+                  <dataType>true</dataType>
+                  <encoding>false</encoding>
+                  <assertions>true</assertions>
+                  <subresults>true</subresults>
+                  <responseData>false</responseData>
+                  <samplerData>false</samplerData>
+                  <xml>false</xml>
+                  <fieldNames>true</fieldNames>
+                  <responseHeaders>false</responseHeaders>
+                  <requestHeaders>false</requestHeaders>
+                  <responseDataOnError>false</responseDataOnError>
+                  <saveAssertionResultsFailureMessage>true</saveAssertionResultsFailureMessage>
+                  <assertionsResultsToSave>0</assertionsResultsToSave>
+                  <bytes>true</bytes>
+                  <threadCounts>true</threadCounts>
+                  <idleTime>true</idleTime>
+                </value>
+              </objProp>
+              <stringProp name="filename"></stringProp>
+            </ResultCollector>
+            <hashTree/>
+            <ResponseAssertion guiclass="AssertionGui" testclass="ResponseAssertion" testname="Response Assertion" enabled="true">
+              <collectionProp name="Asserion.test_strings">
+                <stringProp name="13466530">&quot;access_token&quot;</stringProp>
+              </collectionProp>
+              <stringProp name="Assertion.test_field">Assertion.response_data</stringProp>
+              <boolProp name="Assertion.assume_success">false</boolProp>
+              <intProp name="Assertion.test_type">2</intProp>
+            </ResponseAssertion>
+            <hashTree/>
+            <JSONPostProcessor guiclass="JSONPostProcessorGui" testclass="JSONPostProcessor" testname="JSON Path PostProcessor : access_token" enabled="true">
+              <stringProp name="JSONPostProcessor.referenceNames">access_token</stringProp>
+              <stringProp name="JSONPostProcessor.jsonPathExprs">$.access_token</stringProp>
+              <stringProp name="JSONPostProcessor.match_numbers"></stringProp>
+            </JSONPostProcessor>
+            <hashTree/>
+            <JSONPostProcessor guiclass="JSONPostProcessorGui" testclass="JSONPostProcessor" testname="JSON Path PostProcessor : id_token" enabled="true">
+              <stringProp name="JSONPostProcessor.referenceNames">id_token</stringProp>
+              <stringProp name="JSONPostProcessor.jsonPathExprs">$.id_token</stringProp>
+              <stringProp name="JSONPostProcessor.match_numbers"></stringProp>
+            </JSONPostProcessor>
+            <hashTree/>
+          </hashTree>
+          <HTTPSamplerProxy guiclass="HttpTestSampleGui" testclass="HTTPSamplerProxy" testname="/user_info" enabled="true">
+            <elementProp name="HTTPsampler.Arguments" elementType="Arguments" guiclass="HTTPArgumentsPanel" testclass="Arguments" enabled="true">
+              <collectionProp name="Arguments.arguments">
+                <elementProp name="access_token" elementType="HTTPArgument">
+                  <boolProp name="HTTPArgument.always_encode">false</boolProp>
+                  <stringProp name="Argument.value">${access_token}</stringProp>
+                  <stringProp name="Argument.metadata">=</stringProp>
+                  <boolProp name="HTTPArgument.use_equals">true</boolProp>
+                  <stringProp name="Argument.name">access_token</stringProp>
+                </elementProp>
+              </collectionProp>
+            </elementProp>
+            <stringProp name="HTTPSampler.domain"></stringProp>
+            <stringProp name="HTTPSampler.port"></stringProp>
+            <stringProp name="HTTPSampler.connect_timeout"></stringProp>
+            <stringProp name="HTTPSampler.response_timeout"></stringProp>
+            <stringProp name="HTTPSampler.protocol"></stringProp>
+            <stringProp name="HTTPSampler.contentEncoding"></stringProp>
+            <stringProp name="HTTPSampler.path">/oxauth/restv1/userinfo</stringProp>
+            <stringProp name="HTTPSampler.method">POST</stringProp>
+            <boolProp name="HTTPSampler.follow_redirects">true</boolProp>
+            <boolProp name="HTTPSampler.auto_redirects">false</boolProp>
+            <boolProp name="HTTPSampler.use_keepalive">true</boolProp>
+            <boolProp name="HTTPSampler.DO_MULTIPART_POST">false</boolProp>
+            <boolProp name="HTTPSampler.monitor">false</boolProp>
+            <stringProp name="HTTPSampler.embedded_url_re"></stringProp>
+          </HTTPSamplerProxy>
+          <hashTree>
+            <HeaderManager guiclass="HeaderPanel" testclass="HeaderManager" testname="HTTP Header Manager" enabled="true">
+              <collectionProp name="HeaderManager.headers">
+                <elementProp name="" elementType="Header">
+                  <stringProp name="Header.name">Content-Type</stringProp>
+                  <stringProp name="Header.value">application/x-www-form-urlencoded</stringProp>
+                </elementProp>
+              </collectionProp>
+            </HeaderManager>
+            <hashTree/>
+            <ResultCollector guiclass="ViewResultsFullVisualizer" testclass="ResultCollector" testname="View Results Tree" enabled="true">
+              <boolProp name="ResultCollector.error_logging">false</boolProp>
+              <objProp>
+                <name>saveConfig</name>
+                <value class="SampleSaveConfiguration">
+                  <time>true</time>
+                  <latency>true</latency>
+                  <timestamp>true</timestamp>
+                  <success>true</success>
+                  <label>true</label>
+                  <code>true</code>
+                  <message>true</message>
+                  <threadName>true</threadName>
+                  <dataType>true</dataType>
+                  <encoding>false</encoding>
+                  <assertions>true</assertions>
+                  <subresults>true</subresults>
+                  <responseData>false</responseData>
+                  <samplerData>false</samplerData>
+                  <xml>false</xml>
+                  <fieldNames>true</fieldNames>
+                  <responseHeaders>false</responseHeaders>
+                  <requestHeaders>false</requestHeaders>
+                  <responseDataOnError>false</responseDataOnError>
+                  <saveAssertionResultsFailureMessage>true</saveAssertionResultsFailureMessage>
+                  <assertionsResultsToSave>0</assertionsResultsToSave>
+                  <bytes>true</bytes>
+                  <threadCounts>true</threadCounts>
+                  <idleTime>true</idleTime>
+                </value>
+              </objProp>
+              <stringProp name="filename"></stringProp>
+            </ResultCollector>
+            <hashTree/>
+            <JSR223PostProcessor guiclass="TestBeanGUI" testclass="JSR223PostProcessor" testname="JSR223 PostProcessor : for end_session" enabled="true">
+              <stringProp name="scriptLanguage">java</stringProp>
+              <stringProp name="parameters"></stringProp>
+              <stringProp name="filename"></stringProp>
+              <stringProp name="cacheKey"></stringProp>
+              <stringProp name="script">import org.apache.jmeter.protocol.http.control.CookieManager;
+import org.apache.jmeter.protocol.http.control.Cookie;
+import org.apache.jmeter.testelement.property.JMeterProperty;
+import org.apache.jmeter.testelement.property.CollectionProperty;
+
+CookieManager manager = sampler.getCookieManager();
+CollectionProperty collectionProperty = manager.getCookies();
+log.info(&quot;cookie collectionProperty : &quot; + collectionProperty + &quot;, size: &quot; + collectionProperty.size());
+
+Object session_state_counter = vars.get(&quot;session_state_counter&quot;);
+log.info(&quot;session_state_counter : &quot; + session_state_counter);
+
+for (int i = 0; i &lt; collectionProperty.size(); i++) {
+    JMeterProperty p = collectionProperty.get(i);
+    
+    if (&quot;session_state&quot;.equals(p.getName())) {
+        //log.info(&quot;session_state : &quot; + p.getObjectValue().getValue() + &quot;, id_token: &quot; + vars.get(&quot;id_token&quot;));
+        props.put(&quot;oic.session_state.&quot; + session_state_counter, p.getObjectValue().getValue());
+        props.put(&quot;oic.id_token.&quot; + session_state_counter, vars.get(&quot;id_token&quot;));
+        log.info(&quot;props session_state : &quot; + props.get(&quot;oic.session_state.&quot; + session_state_counter));
+        log.info(&quot;props id_token : &quot; + props.get(&quot;oic.id_token.&quot; + session_state_counter));
+    }
+}</stringProp>
+            </JSR223PostProcessor>
+            <hashTree/>
+          </hashTree>
+        </hashTree>
+        <ResultCollector guiclass="SummaryReport" testclass="ResultCollector" testname="Summary Report" enabled="true">
+          <boolProp name="ResultCollector.error_logging">false</boolProp>
+          <objProp>
+            <name>saveConfig</name>
+            <value class="SampleSaveConfiguration">
+              <time>true</time>
+              <latency>true</latency>
+              <timestamp>true</timestamp>
+              <success>true</success>
+              <label>true</label>
+              <code>true</code>
+              <message>true</message>
+              <threadName>true</threadName>
+              <dataType>true</dataType>
+              <encoding>false</encoding>
+              <assertions>true</assertions>
+              <subresults>true</subresults>
+              <responseData>false</responseData>
+              <samplerData>false</samplerData>
+              <xml>false</xml>
+              <fieldNames>true</fieldNames>
+              <responseHeaders>false</responseHeaders>
+              <requestHeaders>false</requestHeaders>
+              <responseDataOnError>false</responseDataOnError>
+              <saveAssertionResultsFailureMessage>true</saveAssertionResultsFailureMessage>
+              <assertionsResultsToSave>0</assertionsResultsToSave>
+              <bytes>true</bytes>
+              <threadCounts>true</threadCounts>
+              <idleTime>true</idleTime>
+            </value>
+          </objProp>
+          <stringProp name="filename"></stringProp>
+        </ResultCollector>
+        <hashTree/>
+        <ResultCollector guiclass="ViewResultsFullVisualizer" testclass="ResultCollector" testname="View Results Tree" enabled="true">
+          <boolProp name="ResultCollector.error_logging">false</boolProp>
+          <objProp>
+            <name>saveConfig</name>
+            <value class="SampleSaveConfiguration">
+              <time>true</time>
+              <latency>true</latency>
+              <timestamp>true</timestamp>
+              <success>true</success>
+              <label>true</label>
+              <code>true</code>
+              <message>true</message>
+              <threadName>true</threadName>
+              <dataType>true</dataType>
+              <encoding>false</encoding>
+              <assertions>true</assertions>
+              <subresults>true</subresults>
+              <responseData>false</responseData>
+              <samplerData>false</samplerData>
+              <xml>false</xml>
+              <fieldNames>true</fieldNames>
+              <responseHeaders>false</responseHeaders>
+              <requestHeaders>false</requestHeaders>
+              <responseDataOnError>false</responseDataOnError>
+              <saveAssertionResultsFailureMessage>true</saveAssertionResultsFailureMessage>
+              <assertionsResultsToSave>0</assertionsResultsToSave>
+              <bytes>true</bytes>
+              <threadCounts>true</threadCounts>
+              <idleTime>true</idleTime>
+            </value>
+          </objProp>
+          <stringProp name="filename"></stringProp>
+        </ResultCollector>
+        <hashTree/>
+        <ResultCollector guiclass="GraphVisualizer" testclass="ResultCollector" testname="Graph Results" enabled="true">
+          <boolProp name="ResultCollector.error_logging">false</boolProp>
+          <objProp>
+            <name>saveConfig</name>
+            <value class="SampleSaveConfiguration">
+              <time>true</time>
+              <latency>true</latency>
+              <timestamp>true</timestamp>
+              <success>true</success>
+              <label>true</label>
+              <code>true</code>
+              <message>true</message>
+              <threadName>true</threadName>
+              <dataType>true</dataType>
+              <encoding>false</encoding>
+              <assertions>true</assertions>
+              <subresults>true</subresults>
+              <responseData>false</responseData>
+              <samplerData>false</samplerData>
+              <xml>false</xml>
+              <fieldNames>true</fieldNames>
+              <responseHeaders>false</responseHeaders>
+              <requestHeaders>false</requestHeaders>
+              <responseDataOnError>false</responseDataOnError>
+              <saveAssertionResultsFailureMessage>true</saveAssertionResultsFailureMessage>
+              <assertionsResultsToSave>0</assertionsResultsToSave>
+              <bytes>true</bytes>
+              <threadCounts>true</threadCounts>
+              <idleTime>true</idleTime>
+            </value>
+          </objProp>
+          <stringProp name="filename"></stringProp>
+        </ResultCollector>
+        <hashTree/>
+        <ResultCollector guiclass="TableVisualizer" testclass="ResultCollector" testname="View Results in Table" enabled="true">
+          <boolProp name="ResultCollector.error_logging">false</boolProp>
+          <objProp>
+            <name>saveConfig</name>
+            <value class="SampleSaveConfiguration">
+              <time>true</time>
+              <latency>true</latency>
+              <timestamp>true</timestamp>
+              <success>true</success>
+              <label>true</label>
+              <code>true</code>
+              <message>true</message>
+              <threadName>true</threadName>
+              <dataType>true</dataType>
+              <encoding>false</encoding>
+              <assertions>true</assertions>
+              <subresults>true</subresults>
+              <responseData>false</responseData>
+              <samplerData>false</samplerData>
+              <xml>false</xml>
+              <fieldNames>true</fieldNames>
+              <responseHeaders>false</responseHeaders>
+              <requestHeaders>false</requestHeaders>
+              <responseDataOnError>false</responseDataOnError>
+              <saveAssertionResultsFailureMessage>true</saveAssertionResultsFailureMessage>
+              <assertionsResultsToSave>0</assertionsResultsToSave>
+              <bytes>true</bytes>
+              <threadCounts>true</threadCounts>
+              <idleTime>true</idleTime>
+            </value>
+          </objProp>
+          <stringProp name="filename"></stringProp>
+        </ResultCollector>
+        <hashTree/>
+        <ResultCollector guiclass="MonitorHealthVisualizer" testclass="ResultCollector" testname="Monitor Results" enabled="true">
+          <boolProp name="ResultCollector.error_logging">false</boolProp>
+          <objProp>
+            <name>saveConfig</name>
+            <value class="SampleSaveConfiguration">
+              <time>true</time>
+              <latency>true</latency>
+              <timestamp>true</timestamp>
+              <success>true</success>
+              <label>true</label>
+              <code>true</code>
+              <message>true</message>
+              <threadName>true</threadName>
+              <dataType>true</dataType>
+              <encoding>false</encoding>
+              <assertions>true</assertions>
+              <subresults>true</subresults>
+              <responseData>false</responseData>
+              <samplerData>false</samplerData>
+              <xml>false</xml>
+              <fieldNames>true</fieldNames>
+              <responseHeaders>false</responseHeaders>
+              <requestHeaders>false</requestHeaders>
+              <responseDataOnError>false</responseDataOnError>
+              <saveAssertionResultsFailureMessage>true</saveAssertionResultsFailureMessage>
+              <assertionsResultsToSave>0</assertionsResultsToSave>
+              <bytes>true</bytes>
+              <threadCounts>true</threadCounts>
+              <idleTime>true</idleTime>
+            </value>
+          </objProp>
+          <stringProp name="filename"></stringProp>
+        </ResultCollector>
+        <hashTree/>
+        <Summariser guiclass="SummariserGui" testclass="Summariser" testname="Generate Summary Results" enabled="true"/>
+        <hashTree/>
+      </hashTree>
+      <ThreadGroup guiclass="ThreadGroupGui" testclass="ThreadGroup" testname="End Session" enabled="true">
+        <stringProp name="ThreadGroup.on_sample_error">continue</stringProp>
+        <elementProp name="ThreadGroup.main_controller" elementType="LoopController" guiclass="LoopControlPanel" testclass="LoopController" testname="Loop Controller" enabled="true">
+          <boolProp name="LoopController.continue_forever">false</boolProp>
+          <stringProp name="LoopController.loops">3</stringProp>
+        </elementProp>
+        <stringProp name="ThreadGroup.num_threads">1</stringProp>
+        <stringProp name="ThreadGroup.ramp_time">1</stringProp>
+        <longProp name="ThreadGroup.start_time">1480924764000</longProp>
+        <longProp name="ThreadGroup.end_time">1480924764000</longProp>
+        <boolProp name="ThreadGroup.scheduler">false</boolProp>
+        <stringProp name="ThreadGroup.duration"></stringProp>
+        <stringProp name="ThreadGroup.delay">3</stringProp>
+      </ThreadGroup>
+      <hashTree>
+        <CookieManager guiclass="CookiePanel" testclass="CookieManager" testname="HTTP Cookie Manager" enabled="true">
+          <collectionProp name="CookieManager.cookies"/>
+          <boolProp name="CookieManager.clearEachIteration">false</boolProp>
+          <stringProp name="CookieManager.policy">standard</stringProp>
+          <stringProp name="CookieManager.implementation">org.apache.jmeter.protocol.http.control.HC4CookieHandler</stringProp>
+        </CookieManager>
+        <hashTree/>
+        <ConstantTimer guiclass="ConstantTimerGui" testclass="ConstantTimer" testname="Constant Timer" enabled="true">
+          <stringProp name="ConstantTimer.delay">3000</stringProp>
+        </ConstantTimer>
+        <hashTree/>
+        <HTTPSamplerProxy guiclass="HttpTestSampleGui" testclass="HTTPSamplerProxy" testname="/end_session" enabled="true">
+          <elementProp name="HTTPsampler.Arguments" elementType="Arguments" guiclass="HTTPArgumentsPanel" testclass="Arguments" testname="User Defined Variables" enabled="true">
+            <collectionProp name="Arguments.arguments">
+              <elementProp name="id_token_hint" elementType="HTTPArgument">
+                <boolProp name="HTTPArgument.always_encode">false</boolProp>
+                <stringProp name="Argument.value">${id_token}</stringProp>
+                <stringProp name="Argument.metadata">=</stringProp>
+                <boolProp name="HTTPArgument.use_equals">true</boolProp>
+                <stringProp name="Argument.name">id_token_hint</stringProp>
+              </elementProp>
+            </collectionProp>
+          </elementProp>
+          <stringProp name="HTTPSampler.domain"></stringProp>
+          <stringProp name="HTTPSampler.port"></stringProp>
+          <stringProp name="HTTPSampler.connect_timeout"></stringProp>
+          <stringProp name="HTTPSampler.response_timeout"></stringProp>
+          <stringProp name="HTTPSampler.protocol"></stringProp>
+          <stringProp name="HTTPSampler.contentEncoding"></stringProp>
+          <stringProp name="HTTPSampler.path"></stringProp>
+          <stringProp name="HTTPSampler.method">GET</stringProp>
+          <boolProp name="HTTPSampler.follow_redirects">true</boolProp>
+          <boolProp name="HTTPSampler.auto_redirects">false</boolProp>
+          <boolProp name="HTTPSampler.use_keepalive">true</boolProp>
+          <boolProp name="HTTPSampler.DO_MULTIPART_POST">false</boolProp>
+          <boolProp name="HTTPSampler.monitor">false</boolProp>
+          <stringProp name="HTTPSampler.embedded_url_re"></stringProp>
+        </HTTPSamplerProxy>
+        <hashTree>
+          <JSR223PreProcessor guiclass="TestBeanGUI" testclass="JSR223PreProcessor" testname="JSR223 PreProcessor" enabled="true">
+            <stringProp name="scriptLanguage">java</stringProp>
+            <stringProp name="parameters"></stringProp>
+            <stringProp name="filename"></stringProp>
+            <stringProp name="cacheKey">5747dfc9-3b64-496f-947f-e9ce907c06cd</stringProp>
+            <stringProp name="script">import org.apache.jmeter.protocol.http.control.CookieManager;
+import org.apache.jmeter.protocol.http.control.Cookie;
+
+CookieManager manager = sampler.getCookieManager();
+
+for (Map.Entry entry : props.entrySet()) {
+	if (entry.getKey() instanceof String) {
+	    String key = entry.getKey();
+         if (key.startsWith(&quot;oic.session_state.&quot;)) {
+             String counter = key.substring(&quot;oic.session_state.&quot;.length());
+
+             log.info(&quot;PRE end session, counter : &quot; + counter + &quot;, session_state: &quot; + entry.getValue() + &quot;, props.getProperty(): &quot; + props.getProperty(&quot;oic.session_state.&quot; + counter));
+             
+             Cookie cookie = new Cookie(&quot;session_state&quot;, entry.getValue(), vars.get(&quot;host&quot;), &quot;/&quot;, false, 0);
+             manager.add(cookie); 
+
+             Object idToken = props.getProperty(&quot;oic.id_token.&quot; + counter);
+             log.info(&quot;PRE end session, id_token : &quot; + idToken);
+             vars.put(&quot;id_token&quot;, idToken);
+
+             props.remove(&quot;oic.session_state.&quot; + counter);
+             props.remove(&quot;oic.id_token.&quot; + counter);
+             break;
+         }
+	}
+}</stringProp>
+          </JSR223PreProcessor>
+          <hashTree/>
+          <ResultCollector guiclass="ViewResultsFullVisualizer" testclass="ResultCollector" testname="View Results Tree" enabled="true">
+            <boolProp name="ResultCollector.error_logging">false</boolProp>
+            <objProp>
+              <name>saveConfig</name>
+              <value class="SampleSaveConfiguration">
+                <time>true</time>
+                <latency>true</latency>
+                <timestamp>true</timestamp>
+                <success>true</success>
+                <label>true</label>
+                <code>true</code>
+                <message>true</message>
+                <threadName>true</threadName>
+                <dataType>true</dataType>
+                <encoding>false</encoding>
+                <assertions>true</assertions>
+                <subresults>true</subresults>
+                <responseData>false</responseData>
+                <samplerData>false</samplerData>
+                <xml>false</xml>
+                <fieldNames>true</fieldNames>
+                <responseHeaders>false</responseHeaders>
+                <requestHeaders>false</requestHeaders>
+                <responseDataOnError>false</responseDataOnError>
+                <saveAssertionResultsFailureMessage>true</saveAssertionResultsFailureMessage>
+                <assertionsResultsToSave>0</assertionsResultsToSave>
+                <bytes>true</bytes>
+                <threadCounts>true</threadCounts>
+                <idleTime>true</idleTime>
+              </value>
+            </objProp>
+            <stringProp name="filename"></stringProp>
+          </ResultCollector>
+          <hashTree/>
+        </hashTree>
+      </hashTree>
+    </hashTree>
+  </hashTree>
+</jmeterTestPlan>
diff --git a/oxAuth/jmeter/test/Authorization Code Flow_amazon.jmx b/oxAuth/jmeter/test/Authorization Code Flow_amazon.jmx
new file mode 100644
index 00000000..9c1fff39
--- /dev/null
+++ b/oxAuth/jmeter/test/Authorization Code Flow_amazon.jmx	
@@ -0,0 +1,1070 @@
+<?xml version="1.0" encoding="UTF-8"?>
+<jmeterTestPlan version="1.2" properties="3.1" jmeter="3.1 r1770033">
+  <hashTree>
+    <TestPlan guiclass="TestPlanGui" testclass="TestPlan" testname="Authorization Code Flow" enabled="true">
+      <stringProp name="TestPlan.comments"></stringProp>
+      <boolProp name="TestPlan.functional_mode">false</boolProp>
+      <boolProp name="TestPlan.serialize_threadgroups">true</boolProp>
+      <elementProp name="TestPlan.user_defined_variables" elementType="Arguments" guiclass="ArgumentsPanel" testclass="Arguments" testname="User Defined Variables" enabled="true">
+        <collectionProp name="Arguments.arguments">
+          <elementProp name="host" elementType="Argument">
+            <stringProp name="Argument.name">host</stringProp>
+            <stringProp name="Argument.value">m32xlarge.gluu.info</stringProp>
+            <stringProp name="Argument.metadata">=</stringProp>
+          </elementProp>
+          <elementProp name="scope" elementType="Argument">
+            <stringProp name="Argument.name">scope</stringProp>
+            <stringProp name="Argument.value">openid profile email user_name</stringProp>
+            <stringProp name="Argument.metadata">=</stringProp>
+          </elementProp>
+          <elementProp name="username" elementType="Argument">
+            <stringProp name="Argument.name">username</stringProp>
+            <stringProp name="Argument.value">user_name</stringProp>
+            <stringProp name="Argument.metadata">=</stringProp>
+          </elementProp>
+          <elementProp name="password" elementType="Argument">
+            <stringProp name="Argument.name">password</stringProp>
+            <stringProp name="Argument.value">user_password</stringProp>
+            <stringProp name="Argument.metadata">=</stringProp>
+          </elementProp>
+          <elementProp name="redirect_uri" elementType="Argument">
+            <stringProp name="Argument.name">redirect_uri</stringProp>
+            <stringProp name="Argument.value">https://m32xlarge.gluu.info/identity/authentication/authcode</stringProp>
+            <stringProp name="Argument.metadata">=</stringProp>
+          </elementProp>
+          <elementProp name="client_id" elementType="Argument">
+            <stringProp name="Argument.name">client_id</stringProp>
+            <stringProp name="Argument.value">@!607E.6278.FF17.E8E2!0001!53B7.65D1!0008!A950.A138</stringProp>
+            <stringProp name="Argument.metadata">=</stringProp>
+          </elementProp>
+          <elementProp name="client_secret" elementType="Argument">
+            <stringProp name="Argument.name">client_secret</stringProp>
+            <stringProp name="Argument.value">client_secret</stringProp>
+            <stringProp name="Argument.metadata">=</stringProp>
+          </elementProp>
+          <elementProp name="client_header" elementType="Argument">
+            <stringProp name="Argument.name">client_header</stringProp>
+            <stringProp name="Argument.value">to_override_in_jsr223</stringProp>
+            <stringProp name="Argument.metadata">=</stringProp>
+          </elementProp>
+        </collectionProp>
+      </elementProp>
+      <stringProp name="TestPlan.user_define_classpath"></stringProp>
+    </TestPlan>
+    <hashTree>
+      <ConfigTestElement guiclass="HttpDefaultsGui" testclass="ConfigTestElement" testname="HTTP Request Defaults" enabled="true">
+        <elementProp name="HTTPsampler.Arguments" elementType="Arguments" guiclass="HTTPArgumentsPanel" testclass="Arguments" testname="User Defined Variables" enabled="true">
+          <collectionProp name="Arguments.arguments"/>
+        </elementProp>
+        <stringProp name="HTTPSampler.domain">${host}</stringProp>
+        <stringProp name="HTTPSampler.port"></stringProp>
+        <stringProp name="HTTPSampler.connect_timeout">60000</stringProp>
+        <stringProp name="HTTPSampler.response_timeout">60000</stringProp>
+        <stringProp name="HTTPSampler.protocol">https</stringProp>
+        <stringProp name="HTTPSampler.contentEncoding"></stringProp>
+        <stringProp name="HTTPSampler.path"></stringProp>
+        <stringProp name="HTTPSampler.implementation">HttpClient4</stringProp>
+        <stringProp name="HTTPSampler.concurrentPool">6</stringProp>
+      </ConfigTestElement>
+      <hashTree/>
+      <ThreadGroup guiclass="ThreadGroupGui" testclass="ThreadGroup" testname="Main" enabled="true">
+        <stringProp name="ThreadGroup.on_sample_error">continue</stringProp>
+        <elementProp name="ThreadGroup.main_controller" elementType="LoopController" guiclass="LoopControlPanel" testclass="LoopController" testname="Loop Controller" enabled="true">
+          <boolProp name="LoopController.continue_forever">false</boolProp>
+          <intProp name="LoopController.loops">-1</intProp>
+        </elementProp>
+        <stringProp name="ThreadGroup.num_threads">20</stringProp>
+        <stringProp name="ThreadGroup.ramp_time">1</stringProp>
+        <longProp name="ThreadGroup.start_time">1479823133000</longProp>
+        <longProp name="ThreadGroup.end_time">1479823133000</longProp>
+        <boolProp name="ThreadGroup.scheduler">false</boolProp>
+        <stringProp name="ThreadGroup.duration"></stringProp>
+        <stringProp name="ThreadGroup.delay"></stringProp>
+      </ThreadGroup>
+      <hashTree>
+        <GenericController guiclass="LogicControllerGui" testclass="GenericController" testname="Simple Controller" enabled="true"/>
+        <hashTree>
+          <CacheManager guiclass="CacheManagerGui" testclass="CacheManager" testname="HTTP Cache Manager" enabled="true">
+            <boolProp name="clearEachIteration">true</boolProp>
+            <boolProp name="useExpires">false</boolProp>
+          </CacheManager>
+          <hashTree/>
+          <CookieManager guiclass="CookiePanel" testclass="CookieManager" testname="HTTP Cookie Manager" enabled="true">
+            <collectionProp name="CookieManager.cookies"/>
+            <boolProp name="CookieManager.clearEachIteration">true</boolProp>
+            <stringProp name="CookieManager.policy">standard</stringProp>
+            <stringProp name="CookieManager.implementation">org.apache.jmeter.protocol.http.control.HC4CookieHandler</stringProp>
+          </CookieManager>
+          <hashTree/>
+          <CounterConfig guiclass="CounterConfigGui" testclass="CounterConfig" testname="session_state_counter" enabled="true">
+            <stringProp name="CounterConfig.start">1</stringProp>
+            <stringProp name="CounterConfig.end"></stringProp>
+            <stringProp name="CounterConfig.incr">1</stringProp>
+            <stringProp name="CounterConfig.name">session_state_counter</stringProp>
+            <stringProp name="CounterConfig.format"></stringProp>
+            <boolProp name="CounterConfig.per_user">false</boolProp>
+          </CounterConfig>
+          <hashTree/>
+          <HTTPSamplerProxy guiclass="HttpTestSampleGui" testclass="HTTPSamplerProxy" testname="/authorize" enabled="true">
+            <elementProp name="HTTPsampler.Arguments" elementType="Arguments" guiclass="HTTPArgumentsPanel" testclass="Arguments" testname="User Defined Variables" enabled="true">
+              <collectionProp name="Arguments.arguments">
+                <elementProp name="scope" elementType="HTTPArgument">
+                  <boolProp name="HTTPArgument.always_encode">true</boolProp>
+                  <stringProp name="Argument.value">${scope}</stringProp>
+                  <stringProp name="Argument.metadata">=</stringProp>
+                  <boolProp name="HTTPArgument.use_equals">true</boolProp>
+                  <stringProp name="Argument.name">scope</stringProp>
+                </elementProp>
+                <elementProp name="response_type" elementType="HTTPArgument">
+                  <boolProp name="HTTPArgument.always_encode">false</boolProp>
+                  <stringProp name="Argument.value">code</stringProp>
+                  <stringProp name="Argument.metadata">=</stringProp>
+                  <boolProp name="HTTPArgument.use_equals">true</boolProp>
+                  <stringProp name="Argument.name">response_type</stringProp>
+                </elementProp>
+                <elementProp name="nonce" elementType="HTTPArgument">
+                  <boolProp name="HTTPArgument.always_encode">false</boolProp>
+                  <stringProp name="Argument.value">nonce</stringProp>
+                  <stringProp name="Argument.metadata">=</stringProp>
+                  <boolProp name="HTTPArgument.use_equals">true</boolProp>
+                  <stringProp name="Argument.name">nonce</stringProp>
+                </elementProp>
+                <elementProp name="redirect_uri" elementType="HTTPArgument">
+                  <boolProp name="HTTPArgument.always_encode">true</boolProp>
+                  <stringProp name="Argument.value">${redirect_uri}</stringProp>
+                  <stringProp name="Argument.metadata">=</stringProp>
+                  <boolProp name="HTTPArgument.use_equals">true</boolProp>
+                  <stringProp name="Argument.name">redirect_uri</stringProp>
+                </elementProp>
+                <elementProp name="client_id" elementType="HTTPArgument">
+                  <boolProp name="HTTPArgument.always_encode">true</boolProp>
+                  <stringProp name="Argument.value">${client_id}</stringProp>
+                  <stringProp name="Argument.metadata">=</stringProp>
+                  <boolProp name="HTTPArgument.use_equals">true</boolProp>
+                  <stringProp name="Argument.name">client_id</stringProp>
+                </elementProp>
+              </collectionProp>
+            </elementProp>
+            <stringProp name="HTTPSampler.domain"></stringProp>
+            <stringProp name="HTTPSampler.port"></stringProp>
+            <stringProp name="HTTPSampler.connect_timeout"></stringProp>
+            <stringProp name="HTTPSampler.response_timeout"></stringProp>
+            <stringProp name="HTTPSampler.protocol"></stringProp>
+            <stringProp name="HTTPSampler.contentEncoding"></stringProp>
+            <stringProp name="HTTPSampler.path">/oxauth/restv1/authorize</stringProp>
+            <stringProp name="HTTPSampler.method">GET</stringProp>
+            <boolProp name="HTTPSampler.follow_redirects">true</boolProp>
+            <boolProp name="HTTPSampler.auto_redirects">false</boolProp>
+            <boolProp name="HTTPSampler.use_keepalive">true</boolProp>
+            <boolProp name="HTTPSampler.DO_MULTIPART_POST">false</boolProp>
+            <stringProp name="HTTPSampler.implementation">HttpClient4</stringProp>
+            <boolProp name="HTTPSampler.monitor">false</boolProp>
+            <stringProp name="HTTPSampler.embedded_url_re"></stringProp>
+          </HTTPSamplerProxy>
+          <hashTree>
+            <RegexExtractor guiclass="RegexExtractorGui" testclass="RegexExtractor" testname="Regular Expression Extractor : javax.faces.FormSignature" enabled="true">
+              <stringProp name="RegexExtractor.useHeaders">false</stringProp>
+              <stringProp name="RegexExtractor.refname">javax.faces.FormSignature</stringProp>
+              <stringProp name="RegexExtractor.regex">&lt;input type=&quot;hidden&quot; name=&quot;javax.faces.FormSignature&quot; value=&quot;(.+?)&quot; /&gt;</stringProp>
+              <stringProp name="RegexExtractor.template">$1$</stringProp>
+              <stringProp name="RegexExtractor.default"></stringProp>
+              <stringProp name="RegexExtractor.match_number"></stringProp>
+            </RegexExtractor>
+            <hashTree/>
+            <RegexExtractor guiclass="RegexExtractorGui" testclass="RegexExtractor" testname="Regular Expression Extractor : javax.faces.ViewState" enabled="true">
+              <stringProp name="RegexExtractor.useHeaders">false</stringProp>
+              <stringProp name="RegexExtractor.refname">javax.faces.ViewState</stringProp>
+              <stringProp name="RegexExtractor.regex">&lt;input type=&quot;hidden&quot; name=&quot;javax.faces.ViewState&quot; id=&quot;j_id1:javax.faces.ViewState:1&quot; value=&quot;(.+?)&quot; autocomplete=&quot;off&quot; /&gt;</stringProp>
+              <stringProp name="RegexExtractor.template">$1$</stringProp>
+              <stringProp name="RegexExtractor.default"></stringProp>
+              <stringProp name="RegexExtractor.match_number"></stringProp>
+            </RegexExtractor>
+            <hashTree/>
+            <ResultCollector guiclass="ViewResultsFullVisualizer" testclass="ResultCollector" testname="View Results Tree" enabled="true">
+              <boolProp name="ResultCollector.error_logging">false</boolProp>
+              <objProp>
+                <name>saveConfig</name>
+                <value class="SampleSaveConfiguration">
+                  <time>true</time>
+                  <latency>true</latency>
+                  <timestamp>true</timestamp>
+                  <success>true</success>
+                  <label>true</label>
+                  <code>true</code>
+                  <message>true</message>
+                  <threadName>true</threadName>
+                  <dataType>true</dataType>
+                  <encoding>false</encoding>
+                  <assertions>true</assertions>
+                  <subresults>true</subresults>
+                  <responseData>false</responseData>
+                  <samplerData>false</samplerData>
+                  <xml>false</xml>
+                  <fieldNames>true</fieldNames>
+                  <responseHeaders>false</responseHeaders>
+                  <requestHeaders>false</requestHeaders>
+                  <responseDataOnError>false</responseDataOnError>
+                  <saveAssertionResultsFailureMessage>true</saveAssertionResultsFailureMessage>
+                  <assertionsResultsToSave>0</assertionsResultsToSave>
+                  <bytes>true</bytes>
+                  <threadCounts>true</threadCounts>
+                  <idleTime>true</idleTime>
+                </value>
+              </objProp>
+              <stringProp name="filename"></stringProp>
+            </ResultCollector>
+            <hashTree/>
+          </hashTree>
+          <HTTPSamplerProxy guiclass="HttpTestSampleGui" testclass="HTTPSamplerProxy" testname="/oxauth/login" enabled="true">
+            <elementProp name="HTTPsampler.Arguments" elementType="Arguments" guiclass="HTTPArgumentsPanel" testclass="Arguments" enabled="true">
+              <collectionProp name="Arguments.arguments">
+                <elementProp name="loginForm" elementType="HTTPArgument">
+                  <boolProp name="HTTPArgument.always_encode">false</boolProp>
+                  <stringProp name="Argument.name">loginForm</stringProp>
+                  <stringProp name="Argument.value">loginForm</stringProp>
+                  <stringProp name="Argument.metadata">=</stringProp>
+                  <boolProp name="HTTPArgument.use_equals">true</boolProp>
+                </elementProp>
+                <elementProp name="javax.faces.FormSignature" elementType="HTTPArgument">
+                  <boolProp name="HTTPArgument.always_encode">true</boolProp>
+                  <stringProp name="Argument.name">javax.faces.FormSignature</stringProp>
+                  <stringProp name="Argument.value">${javax.faces.FormSignature}</stringProp>
+                  <stringProp name="Argument.metadata">=</stringProp>
+                  <boolProp name="HTTPArgument.use_equals">true</boolProp>
+                </elementProp>
+                <elementProp name="loginForm:username" elementType="HTTPArgument">
+                  <boolProp name="HTTPArgument.always_encode">true</boolProp>
+                  <stringProp name="Argument.name">loginForm:username</stringProp>
+                  <stringProp name="Argument.value">${username}</stringProp>
+                  <stringProp name="Argument.metadata">=</stringProp>
+                  <boolProp name="HTTPArgument.use_equals">true</boolProp>
+                </elementProp>
+                <elementProp name="loginForm:password" elementType="HTTPArgument">
+                  <boolProp name="HTTPArgument.always_encode">true</boolProp>
+                  <stringProp name="Argument.name">loginForm:password</stringProp>
+                  <stringProp name="Argument.value">${password}</stringProp>
+                  <stringProp name="Argument.metadata">=</stringProp>
+                  <boolProp name="HTTPArgument.use_equals">true</boolProp>
+                </elementProp>
+                <elementProp name="loginForm:loginButton" elementType="HTTPArgument">
+                  <boolProp name="HTTPArgument.always_encode">true</boolProp>
+                  <stringProp name="Argument.name">loginForm:loginButton</stringProp>
+                  <stringProp name="Argument.value">Login</stringProp>
+                  <stringProp name="Argument.metadata">=</stringProp>
+                  <boolProp name="HTTPArgument.use_equals">true</boolProp>
+                </elementProp>
+                <elementProp name="javax.faces.ViewState" elementType="HTTPArgument">
+                  <boolProp name="HTTPArgument.always_encode">true</boolProp>
+                  <stringProp name="Argument.name">javax.faces.ViewState</stringProp>
+                  <stringProp name="Argument.value">${javax.faces.ViewState}</stringProp>
+                  <stringProp name="Argument.metadata">=</stringProp>
+                  <boolProp name="HTTPArgument.use_equals">true</boolProp>
+                </elementProp>
+              </collectionProp>
+            </elementProp>
+            <stringProp name="HTTPSampler.domain"></stringProp>
+            <stringProp name="HTTPSampler.port"></stringProp>
+            <stringProp name="HTTPSampler.connect_timeout"></stringProp>
+            <stringProp name="HTTPSampler.response_timeout"></stringProp>
+            <stringProp name="HTTPSampler.protocol"></stringProp>
+            <stringProp name="HTTPSampler.contentEncoding">UTF-8</stringProp>
+            <stringProp name="HTTPSampler.path">/oxauth/login</stringProp>
+            <stringProp name="HTTPSampler.method">POST</stringProp>
+            <boolProp name="HTTPSampler.follow_redirects">true</boolProp>
+            <boolProp name="HTTPSampler.auto_redirects">false</boolProp>
+            <boolProp name="HTTPSampler.use_keepalive">true</boolProp>
+            <boolProp name="HTTPSampler.DO_MULTIPART_POST">false</boolProp>
+            <stringProp name="HTTPSampler.implementation">HttpClient4</stringProp>
+            <boolProp name="HTTPSampler.monitor">false</boolProp>
+            <stringProp name="HTTPSampler.embedded_url_re"></stringProp>
+            <stringProp name="TestPlan.comments">Detected the start of a redirect chain</stringProp>
+          </HTTPSamplerProxy>
+          <hashTree>
+            <HeaderManager guiclass="HeaderPanel" testclass="HeaderManager" testname="HTTP Header Manager" enabled="true">
+              <collectionProp name="HeaderManager.headers">
+                <elementProp name="Content-Type" elementType="Header">
+                  <stringProp name="Header.name">Content-Type</stringProp>
+                  <stringProp name="Header.value">application/x-www-form-urlencoded</stringProp>
+                </elementProp>
+                <elementProp name="Accept-Language" elementType="Header">
+                  <stringProp name="Header.name">Accept-Language</stringProp>
+                  <stringProp name="Header.value">en-US,en;q=0.5</stringProp>
+                </elementProp>
+                <elementProp name="Accept" elementType="Header">
+                  <stringProp name="Header.name">Accept</stringProp>
+                  <stringProp name="Header.value">text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8</stringProp>
+                </elementProp>
+                <elementProp name="User-Agent" elementType="Header">
+                  <stringProp name="Header.name">User-Agent</stringProp>
+                  <stringProp name="Header.value">Mozilla/5.0 (Windows NT 6.1; WOW64; rv:24.0) Gecko/20100101 Firefox/24.0</stringProp>
+                </elementProp>
+                <elementProp name="Referer" elementType="Header">
+                  <stringProp name="Header.name">Referer</stringProp>
+                  <stringProp name="Header.value">https://${host}/oxauth/login</stringProp>
+                </elementProp>
+                <elementProp name="Accept-Encoding" elementType="Header">
+                  <stringProp name="Header.name">Accept-Encoding</stringProp>
+                  <stringProp name="Header.value">gzip, deflate</stringProp>
+                </elementProp>
+              </collectionProp>
+            </HeaderManager>
+            <hashTree/>
+            <JSR223PreProcessor guiclass="TestBeanGUI" testclass="JSR223PreProcessor" testname="JSR223 PreProcessor : identify user credentials" enabled="true">
+              <stringProp name="scriptLanguage">java</stringProp>
+              <stringProp name="parameters"></stringProp>
+              <stringProp name="filename"></stringProp>
+              <stringProp name="cacheKey">5747dfc9-3b64-496f-947f-e9ce907c06cd</stringProp>
+              <stringProp name="script">double weight = 0.7d;
+
+int min = 1;
+int max = 1000;
+
+int minX = 1001;
+int maxX = 100000;
+
+float chance = new Random().nextFloat();
+if (chance &lt;= weight) {
+	min = minX;
+	max = maxX;
+}
+
+int userNumber = new Random().nextInt(max - min + 1) + min;
+//String username = &quot;user&quot; + userNumber;
+String username = &quot;admin&quot;;
+
+log.info(&quot;username: &quot; + username);
+
+vars.put(&quot;username&quot;, username);
+</stringProp>
+            </JSR223PreProcessor>
+            <hashTree/>
+            <ResultCollector guiclass="ViewResultsFullVisualizer" testclass="ResultCollector" testname="View Results Tree" enabled="true">
+              <boolProp name="ResultCollector.error_logging">false</boolProp>
+              <objProp>
+                <name>saveConfig</name>
+                <value class="SampleSaveConfiguration">
+                  <time>true</time>
+                  <latency>true</latency>
+                  <timestamp>true</timestamp>
+                  <success>true</success>
+                  <label>true</label>
+                  <code>true</code>
+                  <message>true</message>
+                  <threadName>true</threadName>
+                  <dataType>true</dataType>
+                  <encoding>false</encoding>
+                  <assertions>true</assertions>
+                  <subresults>true</subresults>
+                  <responseData>false</responseData>
+                  <samplerData>false</samplerData>
+                  <xml>false</xml>
+                  <fieldNames>true</fieldNames>
+                  <responseHeaders>false</responseHeaders>
+                  <requestHeaders>false</requestHeaders>
+                  <responseDataOnError>false</responseDataOnError>
+                  <saveAssertionResultsFailureMessage>true</saveAssertionResultsFailureMessage>
+                  <assertionsResultsToSave>0</assertionsResultsToSave>
+                  <bytes>true</bytes>
+                  <threadCounts>true</threadCounts>
+                  <idleTime>true</idleTime>
+                </value>
+              </objProp>
+              <stringProp name="filename"></stringProp>
+            </ResultCollector>
+            <hashTree/>
+            <ResponseAssertion guiclass="AssertionGui" testclass="ResponseAssertion" testname="Response Assertion" enabled="true">
+              <collectionProp name="Asserion.test_strings">
+                <stringProp name="3059181">code</stringProp>
+              </collectionProp>
+              <stringProp name="Assertion.test_field">Assertion.sample_label</stringProp>
+              <boolProp name="Assertion.assume_success">false</boolProp>
+              <intProp name="Assertion.test_type">2</intProp>
+            </ResponseAssertion>
+            <hashTree/>
+            <JSR223PostProcessor guiclass="TestBeanGUI" testclass="JSR223PostProcessor" testname="JSR223 PostProcessor : extract code" enabled="true">
+              <stringProp name="cacheKey"></stringProp>
+              <stringProp name="filename"></stringProp>
+              <stringProp name="parameters"></stringProp>
+              <stringProp name="script">String code = &quot;&quot;;
+if (prev.getUrlAsString().contains(&quot;?code=&quot;)) {
+	code = org.apache.commons.lang3.StringUtils.substringAfter(prev.getUrlAsString(), &quot;?code=&quot;);
+} else {
+	code = org.apache.commons.lang3.StringUtils.substringAfter(prev.getUrlAsString(), &quot;&amp;code=&quot;);
+}
+if (code.contains(&quot;&amp;&quot;)) {
+	code = org.apache.commons.lang3.StringUtils.substringBefore(code, &quot;&amp;&quot;);
+}
+
+vars.put(&quot;code&quot;, code);
+log.info(&quot;login post processor, code : &quot; + code + &quot;, url:&quot; + prev.getUrlAsString());
+
+
+
+</stringProp>
+              <stringProp name="scriptLanguage">java</stringProp>
+            </JSR223PostProcessor>
+            <hashTree/>
+          </hashTree>
+          <HTTPSamplerProxy guiclass="HttpTestSampleGui" testclass="HTTPSamplerProxy" testname="/token" enabled="true">
+            <elementProp name="HTTPsampler.Arguments" elementType="Arguments" guiclass="HTTPArgumentsPanel" testclass="Arguments" enabled="true">
+              <collectionProp name="Arguments.arguments">
+                <elementProp name="code" elementType="HTTPArgument">
+                  <boolProp name="HTTPArgument.always_encode">false</boolProp>
+                  <stringProp name="Argument.value">${code}</stringProp>
+                  <stringProp name="Argument.metadata">=</stringProp>
+                  <boolProp name="HTTPArgument.use_equals">true</boolProp>
+                  <stringProp name="Argument.name">code</stringProp>
+                </elementProp>
+                <elementProp name="grant_type" elementType="HTTPArgument">
+                  <boolProp name="HTTPArgument.always_encode">false</boolProp>
+                  <stringProp name="Argument.value">authorization_code</stringProp>
+                  <stringProp name="Argument.metadata">=</stringProp>
+                  <boolProp name="HTTPArgument.use_equals">true</boolProp>
+                  <stringProp name="Argument.name">grant_type</stringProp>
+                </elementProp>
+                <elementProp name="redirect_uri" elementType="HTTPArgument">
+                  <boolProp name="HTTPArgument.always_encode">false</boolProp>
+                  <stringProp name="Argument.value">${redirect_uri}</stringProp>
+                  <stringProp name="Argument.metadata">=</stringProp>
+                  <boolProp name="HTTPArgument.use_equals">true</boolProp>
+                  <stringProp name="Argument.name">redirect_uri</stringProp>
+                </elementProp>
+              </collectionProp>
+            </elementProp>
+            <stringProp name="HTTPSampler.domain"></stringProp>
+            <stringProp name="HTTPSampler.port"></stringProp>
+            <stringProp name="HTTPSampler.connect_timeout"></stringProp>
+            <stringProp name="HTTPSampler.response_timeout"></stringProp>
+            <stringProp name="HTTPSampler.protocol"></stringProp>
+            <stringProp name="HTTPSampler.contentEncoding"></stringProp>
+            <stringProp name="HTTPSampler.path">/oxauth/restv1/token</stringProp>
+            <stringProp name="HTTPSampler.method">POST</stringProp>
+            <boolProp name="HTTPSampler.follow_redirects">true</boolProp>
+            <boolProp name="HTTPSampler.auto_redirects">false</boolProp>
+            <boolProp name="HTTPSampler.use_keepalive">true</boolProp>
+            <boolProp name="HTTPSampler.DO_MULTIPART_POST">false</boolProp>
+            <stringProp name="HTTPSampler.implementation">HttpClient4</stringProp>
+            <boolProp name="HTTPSampler.monitor">false</boolProp>
+            <stringProp name="HTTPSampler.embedded_url_re"></stringProp>
+          </HTTPSamplerProxy>
+          <hashTree>
+            <HeaderManager guiclass="HeaderPanel" testclass="HeaderManager" testname="HTTP Header Manager" enabled="true">
+              <collectionProp name="HeaderManager.headers">
+                <elementProp name="" elementType="Header">
+                  <stringProp name="Header.name">Authorization</stringProp>
+                  <stringProp name="Header.value">${client_header}</stringProp>
+                </elementProp>
+                <elementProp name="" elementType="Header">
+                  <stringProp name="Header.name">Content-Type</stringProp>
+                  <stringProp name="Header.value">application/x-www-form-urlencoded</stringProp>
+                </elementProp>
+              </collectionProp>
+            </HeaderManager>
+            <hashTree/>
+            <JSR223PreProcessor guiclass="TestBeanGUI" testclass="JSR223PreProcessor" testname="JSR223 PreProcessor : base64 client credentials " enabled="true">
+              <stringProp name="cacheKey">5747dfc9-3b64-496f-947f-e9ce907c06cd</stringProp>
+              <stringProp name="filename"></stringProp>
+              <stringProp name="parameters"></stringProp>
+              <stringProp name="script">String credentials = vars.get(&quot;client_id&quot;) + &quot;:&quot; + vars.get(&quot;client_secret&quot;);
+String clientHeader = &quot;Basic &quot; + org.apache.commons.codec.binary.Base64.encodeBase64String(credentials.getBytes(&quot;UTF-8&quot;));
+log.info(&quot;Credentials: &quot; + credentials + &quot;, clientHeader: &quot; + clientHeader);
+OUT.println(&quot;Credentials: &quot; + credentials + &quot;, clientHeader: &quot; + clientHeader);
+vars.put(&quot;client_header&quot;, clientHeader);</stringProp>
+              <stringProp name="scriptLanguage">java</stringProp>
+            </JSR223PreProcessor>
+            <hashTree/>
+            <ResultCollector guiclass="ViewResultsFullVisualizer" testclass="ResultCollector" testname="View Results Tree" enabled="true">
+              <boolProp name="ResultCollector.error_logging">false</boolProp>
+              <objProp>
+                <name>saveConfig</name>
+                <value class="SampleSaveConfiguration">
+                  <time>true</time>
+                  <latency>true</latency>
+                  <timestamp>true</timestamp>
+                  <success>true</success>
+                  <label>true</label>
+                  <code>true</code>
+                  <message>true</message>
+                  <threadName>true</threadName>
+                  <dataType>true</dataType>
+                  <encoding>false</encoding>
+                  <assertions>true</assertions>
+                  <subresults>true</subresults>
+                  <responseData>false</responseData>
+                  <samplerData>false</samplerData>
+                  <xml>false</xml>
+                  <fieldNames>true</fieldNames>
+                  <responseHeaders>false</responseHeaders>
+                  <requestHeaders>false</requestHeaders>
+                  <responseDataOnError>false</responseDataOnError>
+                  <saveAssertionResultsFailureMessage>true</saveAssertionResultsFailureMessage>
+                  <assertionsResultsToSave>0</assertionsResultsToSave>
+                  <bytes>true</bytes>
+                  <threadCounts>true</threadCounts>
+                  <idleTime>true</idleTime>
+                </value>
+              </objProp>
+              <stringProp name="filename"></stringProp>
+            </ResultCollector>
+            <hashTree/>
+            <ResponseAssertion guiclass="AssertionGui" testclass="ResponseAssertion" testname="Response Assertion" enabled="true">
+              <collectionProp name="Asserion.test_strings">
+                <stringProp name="13466530">&quot;access_token&quot;</stringProp>
+              </collectionProp>
+              <stringProp name="Assertion.test_field">Assertion.response_data</stringProp>
+              <boolProp name="Assertion.assume_success">false</boolProp>
+              <intProp name="Assertion.test_type">2</intProp>
+            </ResponseAssertion>
+            <hashTree/>
+            <JSONPostProcessor guiclass="JSONPostProcessorGui" testclass="JSONPostProcessor" testname="JSON Path PostProcessor : access_token" enabled="true">
+              <stringProp name="JSONPostProcessor.referenceNames">access_token</stringProp>
+              <stringProp name="JSONPostProcessor.jsonPathExprs">$.access_token</stringProp>
+              <stringProp name="JSONPostProcessor.match_numbers"></stringProp>
+            </JSONPostProcessor>
+            <hashTree/>
+            <JSONPostProcessor guiclass="JSONPostProcessorGui" testclass="JSONPostProcessor" testname="JSON Path PostProcessor : id_token" enabled="true">
+              <stringProp name="JSONPostProcessor.referenceNames">id_token</stringProp>
+              <stringProp name="JSONPostProcessor.jsonPathExprs">$.id_token</stringProp>
+              <stringProp name="JSONPostProcessor.match_numbers"></stringProp>
+            </JSONPostProcessor>
+            <hashTree/>
+          </hashTree>
+          <HTTPSamplerProxy guiclass="HttpTestSampleGui" testclass="HTTPSamplerProxy" testname="/user_info" enabled="true">
+            <elementProp name="HTTPsampler.Arguments" elementType="Arguments" guiclass="HTTPArgumentsPanel" testclass="Arguments" enabled="true">
+              <collectionProp name="Arguments.arguments">
+                <elementProp name="access_token" elementType="HTTPArgument">
+                  <boolProp name="HTTPArgument.always_encode">false</boolProp>
+                  <stringProp name="Argument.value">${access_token}</stringProp>
+                  <stringProp name="Argument.metadata">=</stringProp>
+                  <boolProp name="HTTPArgument.use_equals">true</boolProp>
+                  <stringProp name="Argument.name">access_token</stringProp>
+                </elementProp>
+              </collectionProp>
+            </elementProp>
+            <stringProp name="HTTPSampler.domain"></stringProp>
+            <stringProp name="HTTPSampler.port"></stringProp>
+            <stringProp name="HTTPSampler.connect_timeout"></stringProp>
+            <stringProp name="HTTPSampler.response_timeout"></stringProp>
+            <stringProp name="HTTPSampler.protocol"></stringProp>
+            <stringProp name="HTTPSampler.contentEncoding"></stringProp>
+            <stringProp name="HTTPSampler.path">/oxauth/restv1/userinfo</stringProp>
+            <stringProp name="HTTPSampler.method">POST</stringProp>
+            <boolProp name="HTTPSampler.follow_redirects">true</boolProp>
+            <boolProp name="HTTPSampler.auto_redirects">false</boolProp>
+            <boolProp name="HTTPSampler.use_keepalive">true</boolProp>
+            <boolProp name="HTTPSampler.DO_MULTIPART_POST">false</boolProp>
+            <stringProp name="HTTPSampler.implementation">HttpClient4</stringProp>
+            <boolProp name="HTTPSampler.monitor">false</boolProp>
+            <stringProp name="HTTPSampler.embedded_url_re"></stringProp>
+          </HTTPSamplerProxy>
+          <hashTree>
+            <HeaderManager guiclass="HeaderPanel" testclass="HeaderManager" testname="HTTP Header Manager" enabled="true">
+              <collectionProp name="HeaderManager.headers">
+                <elementProp name="" elementType="Header">
+                  <stringProp name="Header.name">Content-Type</stringProp>
+                  <stringProp name="Header.value">application/x-www-form-urlencoded</stringProp>
+                </elementProp>
+              </collectionProp>
+            </HeaderManager>
+            <hashTree/>
+            <ResultCollector guiclass="ViewResultsFullVisualizer" testclass="ResultCollector" testname="View Results Tree" enabled="true">
+              <boolProp name="ResultCollector.error_logging">false</boolProp>
+              <objProp>
+                <name>saveConfig</name>
+                <value class="SampleSaveConfiguration">
+                  <time>true</time>
+                  <latency>true</latency>
+                  <timestamp>true</timestamp>
+                  <success>true</success>
+                  <label>true</label>
+                  <code>true</code>
+                  <message>true</message>
+                  <threadName>true</threadName>
+                  <dataType>true</dataType>
+                  <encoding>false</encoding>
+                  <assertions>true</assertions>
+                  <subresults>true</subresults>
+                  <responseData>false</responseData>
+                  <samplerData>false</samplerData>
+                  <xml>false</xml>
+                  <fieldNames>true</fieldNames>
+                  <responseHeaders>false</responseHeaders>
+                  <requestHeaders>false</requestHeaders>
+                  <responseDataOnError>false</responseDataOnError>
+                  <saveAssertionResultsFailureMessage>true</saveAssertionResultsFailureMessage>
+                  <assertionsResultsToSave>0</assertionsResultsToSave>
+                  <bytes>true</bytes>
+                  <threadCounts>true</threadCounts>
+                  <idleTime>true</idleTime>
+                </value>
+              </objProp>
+              <stringProp name="filename"></stringProp>
+            </ResultCollector>
+            <hashTree/>
+            <JSR223PostProcessor guiclass="TestBeanGUI" testclass="JSR223PostProcessor" testname="JSR223 PostProcessor : for end_session" enabled="true">
+              <stringProp name="scriptLanguage">java</stringProp>
+              <stringProp name="parameters"></stringProp>
+              <stringProp name="filename"></stringProp>
+              <stringProp name="cacheKey"></stringProp>
+              <stringProp name="script">import org.apache.jmeter.protocol.http.control.CookieManager;
+import org.apache.jmeter.protocol.http.control.Cookie;
+import org.apache.jmeter.testelement.property.JMeterProperty;
+import org.apache.jmeter.testelement.property.CollectionProperty;
+
+CookieManager manager = sampler.getCookieManager();
+CollectionProperty collectionProperty = manager.getCookies();
+log.info(&quot;cookie collectionProperty : &quot; + collectionProperty + &quot;, size: &quot; + collectionProperty.size());
+
+Object session_state_counter = vars.get(&quot;session_state_counter&quot;);
+log.info(&quot;session_state_counter : &quot; + session_state_counter);
+
+for (int i = 0; i &lt; collectionProperty.size(); i++) {
+    JMeterProperty p = collectionProperty.get(i);
+    
+    if (&quot;session_state&quot;.equals(p.getName())) {
+        //log.info(&quot;session_state : &quot; + p.getObjectValue().getValue() + &quot;, id_token: &quot; + vars.get(&quot;id_token&quot;));
+        props.put(&quot;oic.session_state.&quot; + session_state_counter, p.getObjectValue().getValue());
+        props.put(&quot;oic.id_token.&quot; + session_state_counter, vars.get(&quot;id_token&quot;));
+        log.info(&quot;props session_state : &quot; + props.get(&quot;oic.session_state.&quot; + session_state_counter));
+        log.info(&quot;props id_token : &quot; + props.get(&quot;oic.id_token.&quot; + session_state_counter));
+    }
+}</stringProp>
+            </JSR223PostProcessor>
+            <hashTree/>
+          </hashTree>
+        </hashTree>
+        <ResultCollector guiclass="SummaryReport" testclass="ResultCollector" testname="Summary Report" enabled="true">
+          <boolProp name="ResultCollector.error_logging">false</boolProp>
+          <objProp>
+            <name>saveConfig</name>
+            <value class="SampleSaveConfiguration">
+              <time>true</time>
+              <latency>true</latency>
+              <timestamp>true</timestamp>
+              <success>true</success>
+              <label>true</label>
+              <code>true</code>
+              <message>true</message>
+              <threadName>true</threadName>
+              <dataType>true</dataType>
+              <encoding>false</encoding>
+              <assertions>true</assertions>
+              <subresults>true</subresults>
+              <responseData>false</responseData>
+              <samplerData>false</samplerData>
+              <xml>false</xml>
+              <fieldNames>true</fieldNames>
+              <responseHeaders>false</responseHeaders>
+              <requestHeaders>false</requestHeaders>
+              <responseDataOnError>false</responseDataOnError>
+              <saveAssertionResultsFailureMessage>true</saveAssertionResultsFailureMessage>
+              <assertionsResultsToSave>0</assertionsResultsToSave>
+              <bytes>true</bytes>
+              <threadCounts>true</threadCounts>
+              <idleTime>true</idleTime>
+            </value>
+          </objProp>
+          <stringProp name="filename"></stringProp>
+        </ResultCollector>
+        <hashTree/>
+        <ResultCollector guiclass="ViewResultsFullVisualizer" testclass="ResultCollector" testname="View Results Tree" enabled="true">
+          <boolProp name="ResultCollector.error_logging">false</boolProp>
+          <objProp>
+            <name>saveConfig</name>
+            <value class="SampleSaveConfiguration">
+              <time>true</time>
+              <latency>true</latency>
+              <timestamp>true</timestamp>
+              <success>true</success>
+              <label>true</label>
+              <code>true</code>
+              <message>true</message>
+              <threadName>true</threadName>
+              <dataType>true</dataType>
+              <encoding>false</encoding>
+              <assertions>true</assertions>
+              <subresults>true</subresults>
+              <responseData>false</responseData>
+              <samplerData>false</samplerData>
+              <xml>false</xml>
+              <fieldNames>true</fieldNames>
+              <responseHeaders>false</responseHeaders>
+              <requestHeaders>false</requestHeaders>
+              <responseDataOnError>false</responseDataOnError>
+              <saveAssertionResultsFailureMessage>true</saveAssertionResultsFailureMessage>
+              <assertionsResultsToSave>0</assertionsResultsToSave>
+              <bytes>true</bytes>
+              <threadCounts>true</threadCounts>
+              <idleTime>true</idleTime>
+            </value>
+          </objProp>
+          <stringProp name="filename"></stringProp>
+        </ResultCollector>
+        <hashTree/>
+        <ResultCollector guiclass="GraphVisualizer" testclass="ResultCollector" testname="Graph Results" enabled="true">
+          <boolProp name="ResultCollector.error_logging">false</boolProp>
+          <objProp>
+            <name>saveConfig</name>
+            <value class="SampleSaveConfiguration">
+              <time>true</time>
+              <latency>true</latency>
+              <timestamp>true</timestamp>
+              <success>true</success>
+              <label>true</label>
+              <code>true</code>
+              <message>true</message>
+              <threadName>true</threadName>
+              <dataType>true</dataType>
+              <encoding>false</encoding>
+              <assertions>true</assertions>
+              <subresults>true</subresults>
+              <responseData>false</responseData>
+              <samplerData>false</samplerData>
+              <xml>false</xml>
+              <fieldNames>true</fieldNames>
+              <responseHeaders>false</responseHeaders>
+              <requestHeaders>false</requestHeaders>
+              <responseDataOnError>false</responseDataOnError>
+              <saveAssertionResultsFailureMessage>true</saveAssertionResultsFailureMessage>
+              <assertionsResultsToSave>0</assertionsResultsToSave>
+              <bytes>true</bytes>
+              <threadCounts>true</threadCounts>
+              <idleTime>true</idleTime>
+            </value>
+          </objProp>
+          <stringProp name="filename"></stringProp>
+        </ResultCollector>
+        <hashTree/>
+        <ResultCollector guiclass="TableVisualizer" testclass="ResultCollector" testname="View Results in Table" enabled="true">
+          <boolProp name="ResultCollector.error_logging">false</boolProp>
+          <objProp>
+            <name>saveConfig</name>
+            <value class="SampleSaveConfiguration">
+              <time>true</time>
+              <latency>true</latency>
+              <timestamp>true</timestamp>
+              <success>true</success>
+              <label>true</label>
+              <code>true</code>
+              <message>true</message>
+              <threadName>true</threadName>
+              <dataType>true</dataType>
+              <encoding>false</encoding>
+              <assertions>true</assertions>
+              <subresults>true</subresults>
+              <responseData>false</responseData>
+              <samplerData>false</samplerData>
+              <xml>false</xml>
+              <fieldNames>true</fieldNames>
+              <responseHeaders>false</responseHeaders>
+              <requestHeaders>false</requestHeaders>
+              <responseDataOnError>false</responseDataOnError>
+              <saveAssertionResultsFailureMessage>true</saveAssertionResultsFailureMessage>
+              <assertionsResultsToSave>0</assertionsResultsToSave>
+              <bytes>true</bytes>
+              <threadCounts>true</threadCounts>
+              <idleTime>true</idleTime>
+            </value>
+          </objProp>
+          <stringProp name="filename"></stringProp>
+        </ResultCollector>
+        <hashTree/>
+        <ResultCollector guiclass="MonitorHealthVisualizer" testclass="ResultCollector" testname="Monitor Results" enabled="true">
+          <boolProp name="ResultCollector.error_logging">false</boolProp>
+          <objProp>
+            <name>saveConfig</name>
+            <value class="SampleSaveConfiguration">
+              <time>true</time>
+              <latency>true</latency>
+              <timestamp>true</timestamp>
+              <success>true</success>
+              <label>true</label>
+              <code>true</code>
+              <message>true</message>
+              <threadName>true</threadName>
+              <dataType>true</dataType>
+              <encoding>false</encoding>
+              <assertions>true</assertions>
+              <subresults>true</subresults>
+              <responseData>false</responseData>
+              <samplerData>false</samplerData>
+              <xml>false</xml>
+              <fieldNames>true</fieldNames>
+              <responseHeaders>false</responseHeaders>
+              <requestHeaders>false</requestHeaders>
+              <responseDataOnError>false</responseDataOnError>
+              <saveAssertionResultsFailureMessage>true</saveAssertionResultsFailureMessage>
+              <assertionsResultsToSave>0</assertionsResultsToSave>
+              <bytes>true</bytes>
+              <threadCounts>true</threadCounts>
+              <idleTime>true</idleTime>
+            </value>
+          </objProp>
+          <stringProp name="filename"></stringProp>
+        </ResultCollector>
+        <hashTree/>
+        <Summariser guiclass="SummariserGui" testclass="Summariser" testname="Generate Summary Results" enabled="true"/>
+        <hashTree/>
+      </hashTree>
+      <ThreadGroup guiclass="ThreadGroupGui" testclass="ThreadGroup" testname="End Session" enabled="false">
+        <stringProp name="ThreadGroup.on_sample_error">continue</stringProp>
+        <elementProp name="ThreadGroup.main_controller" elementType="LoopController" guiclass="LoopControlPanel" testclass="LoopController" testname="Loop Controller" enabled="true">
+          <boolProp name="LoopController.continue_forever">false</boolProp>
+          <intProp name="LoopController.loops">-1</intProp>
+        </elementProp>
+        <stringProp name="ThreadGroup.num_threads">1</stringProp>
+        <stringProp name="ThreadGroup.ramp_time">1</stringProp>
+        <longProp name="ThreadGroup.start_time">1480924764000</longProp>
+        <longProp name="ThreadGroup.end_time">1480924764000</longProp>
+        <boolProp name="ThreadGroup.scheduler">false</boolProp>
+        <stringProp name="ThreadGroup.duration"></stringProp>
+        <stringProp name="ThreadGroup.delay">3</stringProp>
+      </ThreadGroup>
+      <hashTree>
+        <CookieManager guiclass="CookiePanel" testclass="CookieManager" testname="HTTP Cookie Manager" enabled="true">
+          <collectionProp name="CookieManager.cookies"/>
+          <boolProp name="CookieManager.clearEachIteration">false</boolProp>
+          <stringProp name="CookieManager.policy">standard</stringProp>
+          <stringProp name="CookieManager.implementation">org.apache.jmeter.protocol.http.control.HC4CookieHandler</stringProp>
+        </CookieManager>
+        <hashTree/>
+        <ConstantTimer guiclass="ConstantTimerGui" testclass="ConstantTimer" testname="Constant Timer" enabled="true">
+          <stringProp name="ConstantTimer.delay">3000</stringProp>
+        </ConstantTimer>
+        <hashTree/>
+        <HTTPSamplerProxy guiclass="HttpTestSampleGui" testclass="HTTPSamplerProxy" testname="/end_session" enabled="true">
+          <elementProp name="HTTPsampler.Arguments" elementType="Arguments" guiclass="HTTPArgumentsPanel" testclass="Arguments" testname="User Defined Variables" enabled="true">
+            <collectionProp name="Arguments.arguments">
+              <elementProp name="id_token_hint" elementType="HTTPArgument">
+                <boolProp name="HTTPArgument.always_encode">false</boolProp>
+                <stringProp name="Argument.value">${id_token}</stringProp>
+                <stringProp name="Argument.metadata">=</stringProp>
+                <boolProp name="HTTPArgument.use_equals">true</boolProp>
+                <stringProp name="Argument.name">id_token_hint</stringProp>
+              </elementProp>
+            </collectionProp>
+          </elementProp>
+          <stringProp name="HTTPSampler.domain"></stringProp>
+          <stringProp name="HTTPSampler.port"></stringProp>
+          <stringProp name="HTTPSampler.connect_timeout"></stringProp>
+          <stringProp name="HTTPSampler.response_timeout"></stringProp>
+          <stringProp name="HTTPSampler.protocol"></stringProp>
+          <stringProp name="HTTPSampler.contentEncoding"></stringProp>
+          <stringProp name="HTTPSampler.path"></stringProp>
+          <stringProp name="HTTPSampler.method">GET</stringProp>
+          <boolProp name="HTTPSampler.follow_redirects">true</boolProp>
+          <boolProp name="HTTPSampler.auto_redirects">false</boolProp>
+          <boolProp name="HTTPSampler.use_keepalive">true</boolProp>
+          <boolProp name="HTTPSampler.DO_MULTIPART_POST">false</boolProp>
+          <boolProp name="HTTPSampler.monitor">false</boolProp>
+          <stringProp name="HTTPSampler.embedded_url_re"></stringProp>
+        </HTTPSamplerProxy>
+        <hashTree>
+          <JSR223PreProcessor guiclass="TestBeanGUI" testclass="JSR223PreProcessor" testname="JSR223 PreProcessor" enabled="true">
+            <stringProp name="scriptLanguage">java</stringProp>
+            <stringProp name="parameters"></stringProp>
+            <stringProp name="filename"></stringProp>
+            <stringProp name="cacheKey">5747dfc9-3b64-496f-947f-e9ce907c06cd</stringProp>
+            <stringProp name="script">import org.apache.jmeter.protocol.http.control.CookieManager;
+import org.apache.jmeter.protocol.http.control.Cookie;
+
+CookieManager manager = sampler.getCookieManager();
+
+for (Map.Entry entry : props.entrySet()) {
+	if (entry.getKey() instanceof String) {
+	    String key = entry.getKey();
+         if (key.startsWith(&quot;oic.session_state.&quot;)) {
+             String counter = key.substring(&quot;oic.session_state.&quot;.length());
+
+             log.info(&quot;PRE end session, counter : &quot; + counter + &quot;, session_state: &quot; + entry.getValue() + &quot;, props.getProperty(): &quot; + props.getProperty(&quot;oic.session_state.&quot; + counter));
+             
+             Cookie cookie = new Cookie(&quot;session_state&quot;, entry.getValue(), vars.get(&quot;host&quot;), &quot;/&quot;, false, 0);
+             manager.add(cookie); 
+
+             Object idToken = props.getProperty(&quot;oic.id_token.&quot; + counter);
+             log.info(&quot;PRE end session, id_token : &quot; + idToken);
+             vars.put(&quot;id_token&quot;, idToken);
+
+             props.remove(&quot;oic.session_state.&quot; + counter);
+             props.remove(&quot;oic.id_token.&quot; + counter);
+             break;
+         }
+	}
+}</stringProp>
+          </JSR223PreProcessor>
+          <hashTree/>
+          <ResultCollector guiclass="ViewResultsFullVisualizer" testclass="ResultCollector" testname="View Results Tree" enabled="true">
+            <boolProp name="ResultCollector.error_logging">false</boolProp>
+            <objProp>
+              <name>saveConfig</name>
+              <value class="SampleSaveConfiguration">
+                <time>true</time>
+                <latency>true</latency>
+                <timestamp>true</timestamp>
+                <success>true</success>
+                <label>true</label>
+                <code>true</code>
+                <message>true</message>
+                <threadName>true</threadName>
+                <dataType>true</dataType>
+                <encoding>false</encoding>
+                <assertions>true</assertions>
+                <subresults>true</subresults>
+                <responseData>false</responseData>
+                <samplerData>false</samplerData>
+                <xml>false</xml>
+                <fieldNames>true</fieldNames>
+                <responseHeaders>false</responseHeaders>
+                <requestHeaders>false</requestHeaders>
+                <responseDataOnError>false</responseDataOnError>
+                <saveAssertionResultsFailureMessage>true</saveAssertionResultsFailureMessage>
+                <assertionsResultsToSave>0</assertionsResultsToSave>
+                <bytes>true</bytes>
+                <threadCounts>true</threadCounts>
+                <idleTime>true</idleTime>
+              </value>
+            </objProp>
+            <stringProp name="filename"></stringProp>
+          </ResultCollector>
+          <hashTree/>
+        </hashTree>
+      </hashTree>
+      <ResultCollector guiclass="ViewResultsFullVisualizer" testclass="ResultCollector" testname="View Results Tree" enabled="true">
+        <boolProp name="ResultCollector.error_logging">false</boolProp>
+        <objProp>
+          <name>saveConfig</name>
+          <value class="SampleSaveConfiguration">
+            <time>true</time>
+            <latency>true</latency>
+            <timestamp>true</timestamp>
+            <success>true</success>
+            <label>true</label>
+            <code>true</code>
+            <message>true</message>
+            <threadName>true</threadName>
+            <dataType>true</dataType>
+            <encoding>false</encoding>
+            <assertions>true</assertions>
+            <subresults>true</subresults>
+            <responseData>false</responseData>
+            <samplerData>false</samplerData>
+            <xml>false</xml>
+            <fieldNames>true</fieldNames>
+            <responseHeaders>false</responseHeaders>
+            <requestHeaders>false</requestHeaders>
+            <responseDataOnError>false</responseDataOnError>
+            <saveAssertionResultsFailureMessage>true</saveAssertionResultsFailureMessage>
+            <assertionsResultsToSave>0</assertionsResultsToSave>
+            <bytes>true</bytes>
+            <threadCounts>true</threadCounts>
+            <idleTime>true</idleTime>
+          </value>
+        </objProp>
+        <stringProp name="filename"></stringProp>
+      </ResultCollector>
+      <hashTree/>
+      <ResultCollector guiclass="TableVisualizer" testclass="ResultCollector" testname="View Results in Table" enabled="true">
+        <boolProp name="ResultCollector.error_logging">false</boolProp>
+        <objProp>
+          <name>saveConfig</name>
+          <value class="SampleSaveConfiguration">
+            <time>true</time>
+            <latency>true</latency>
+            <timestamp>true</timestamp>
+            <success>true</success>
+            <label>true</label>
+            <code>true</code>
+            <message>true</message>
+            <threadName>true</threadName>
+            <dataType>true</dataType>
+            <encoding>false</encoding>
+            <assertions>true</assertions>
+            <subresults>true</subresults>
+            <responseData>false</responseData>
+            <samplerData>false</samplerData>
+            <xml>false</xml>
+            <fieldNames>true</fieldNames>
+            <responseHeaders>false</responseHeaders>
+            <requestHeaders>false</requestHeaders>
+            <responseDataOnError>false</responseDataOnError>
+            <saveAssertionResultsFailureMessage>true</saveAssertionResultsFailureMessage>
+            <assertionsResultsToSave>0</assertionsResultsToSave>
+            <bytes>true</bytes>
+            <threadCounts>true</threadCounts>
+            <idleTime>true</idleTime>
+          </value>
+        </objProp>
+        <stringProp name="filename"></stringProp>
+      </ResultCollector>
+      <hashTree/>
+      <ResultCollector guiclass="GraphVisualizer" testclass="ResultCollector" testname="Graph Results" enabled="true">
+        <boolProp name="ResultCollector.error_logging">false</boolProp>
+        <objProp>
+          <name>saveConfig</name>
+          <value class="SampleSaveConfiguration">
+            <time>true</time>
+            <latency>true</latency>
+            <timestamp>true</timestamp>
+            <success>true</success>
+            <label>true</label>
+            <code>true</code>
+            <message>true</message>
+            <threadName>true</threadName>
+            <dataType>true</dataType>
+            <encoding>false</encoding>
+            <assertions>true</assertions>
+            <subresults>true</subresults>
+            <responseData>false</responseData>
+            <samplerData>false</samplerData>
+            <xml>false</xml>
+            <fieldNames>true</fieldNames>
+            <responseHeaders>false</responseHeaders>
+            <requestHeaders>false</requestHeaders>
+            <responseDataOnError>false</responseDataOnError>
+            <saveAssertionResultsFailureMessage>true</saveAssertionResultsFailureMessage>
+            <assertionsResultsToSave>0</assertionsResultsToSave>
+            <bytes>true</bytes>
+            <threadCounts>true</threadCounts>
+            <idleTime>true</idleTime>
+          </value>
+        </objProp>
+        <stringProp name="filename"></stringProp>
+      </ResultCollector>
+      <hashTree/>
+      <ResultCollector guiclass="SummaryReport" testclass="ResultCollector" testname="Summary Report" enabled="true">
+        <boolProp name="ResultCollector.error_logging">false</boolProp>
+        <objProp>
+          <name>saveConfig</name>
+          <value class="SampleSaveConfiguration">
+            <time>true</time>
+            <latency>true</latency>
+            <timestamp>true</timestamp>
+            <success>true</success>
+            <label>true</label>
+            <code>true</code>
+            <message>true</message>
+            <threadName>true</threadName>
+            <dataType>true</dataType>
+            <encoding>false</encoding>
+            <assertions>true</assertions>
+            <subresults>true</subresults>
+            <responseData>false</responseData>
+            <samplerData>false</samplerData>
+            <xml>false</xml>
+            <fieldNames>true</fieldNames>
+            <responseHeaders>false</responseHeaders>
+            <requestHeaders>false</requestHeaders>
+            <responseDataOnError>false</responseDataOnError>
+            <saveAssertionResultsFailureMessage>true</saveAssertionResultsFailureMessage>
+            <assertionsResultsToSave>0</assertionsResultsToSave>
+            <bytes>true</bytes>
+            <threadCounts>true</threadCounts>
+            <idleTime>true</idleTime>
+          </value>
+        </objProp>
+        <stringProp name="filename"></stringProp>
+      </ResultCollector>
+      <hashTree/>
+    </hashTree>
+  </hashTree>
+</jmeterTestPlan>
diff --git a/oxAuth/jmeter/test/Authorization Code Flow_amazon_client_credentials.jmx b/oxAuth/jmeter/test/Authorization Code Flow_amazon_client_credentials.jmx
new file mode 100644
index 00000000..9550e2d3
--- /dev/null
+++ b/oxAuth/jmeter/test/Authorization Code Flow_amazon_client_credentials.jmx	
@@ -0,0 +1,625 @@
+<?xml version="1.0" encoding="UTF-8"?>
+<jmeterTestPlan version="1.2" properties="3.1" jmeter="3.1 r1770033">
+  <hashTree>
+    <TestPlan guiclass="TestPlanGui" testclass="TestPlan" testname="Authorization Code Flow" enabled="true">
+      <stringProp name="TestPlan.comments"></stringProp>
+      <boolProp name="TestPlan.functional_mode">false</boolProp>
+      <boolProp name="TestPlan.serialize_threadgroups">true</boolProp>
+      <elementProp name="TestPlan.user_defined_variables" elementType="Arguments" guiclass="ArgumentsPanel" testclass="Arguments" testname="User Defined Variables" enabled="true">
+        <collectionProp name="Arguments.arguments">
+          <elementProp name="host" elementType="Argument">
+            <stringProp name="Argument.name">host</stringProp>
+            <stringProp name="Argument.value">m32xlarge.gluu.info</stringProp>
+            <stringProp name="Argument.metadata">=</stringProp>
+          </elementProp>
+          <elementProp name="scope" elementType="Argument">
+            <stringProp name="Argument.name">scope</stringProp>
+            <stringProp name="Argument.value">openid profile email user_name</stringProp>
+            <stringProp name="Argument.metadata">=</stringProp>
+          </elementProp>
+          <elementProp name="username" elementType="Argument">
+            <stringProp name="Argument.name">username</stringProp>
+            <stringProp name="Argument.value">user_name</stringProp>
+            <stringProp name="Argument.metadata">=</stringProp>
+          </elementProp>
+          <elementProp name="password" elementType="Argument">
+            <stringProp name="Argument.name">password</stringProp>
+            <stringProp name="Argument.value">user_password</stringProp>
+            <stringProp name="Argument.metadata">=</stringProp>
+          </elementProp>
+          <elementProp name="redirect_uri" elementType="Argument">
+            <stringProp name="Argument.name">redirect_uri</stringProp>
+            <stringProp name="Argument.value">https://m32xlarge.gluu.info/identity/authentication/authcode</stringProp>
+            <stringProp name="Argument.metadata">=</stringProp>
+          </elementProp>
+          <elementProp name="client_id" elementType="Argument">
+            <stringProp name="Argument.name">client_id</stringProp>
+            <stringProp name="Argument.value">@!607E.6278.FF17.E8E2!0001!53B7.65D1!0008!A950.A138</stringProp>
+            <stringProp name="Argument.metadata">=</stringProp>
+          </elementProp>
+          <elementProp name="client_secret" elementType="Argument">
+            <stringProp name="Argument.name">client_secret</stringProp>
+            <stringProp name="Argument.value">client_secret</stringProp>
+            <stringProp name="Argument.metadata">=</stringProp>
+          </elementProp>
+          <elementProp name="client_header" elementType="Argument">
+            <stringProp name="Argument.name">client_header</stringProp>
+            <stringProp name="Argument.value">to_override_in_jsr223</stringProp>
+            <stringProp name="Argument.metadata">=</stringProp>
+          </elementProp>
+        </collectionProp>
+      </elementProp>
+      <stringProp name="TestPlan.user_define_classpath"></stringProp>
+    </TestPlan>
+    <hashTree>
+      <ConfigTestElement guiclass="HttpDefaultsGui" testclass="ConfigTestElement" testname="HTTP Request Defaults" enabled="true">
+        <elementProp name="HTTPsampler.Arguments" elementType="Arguments" guiclass="HTTPArgumentsPanel" testclass="Arguments" testname="User Defined Variables" enabled="true">
+          <collectionProp name="Arguments.arguments"/>
+        </elementProp>
+        <stringProp name="HTTPSampler.domain">${host}</stringProp>
+        <stringProp name="HTTPSampler.port"></stringProp>
+        <stringProp name="HTTPSampler.connect_timeout">60000</stringProp>
+        <stringProp name="HTTPSampler.response_timeout">60000</stringProp>
+        <stringProp name="HTTPSampler.protocol">https</stringProp>
+        <stringProp name="HTTPSampler.contentEncoding"></stringProp>
+        <stringProp name="HTTPSampler.path"></stringProp>
+        <stringProp name="HTTPSampler.implementation">HttpClient4</stringProp>
+        <stringProp name="HTTPSampler.concurrentPool">6</stringProp>
+      </ConfigTestElement>
+      <hashTree/>
+      <ThreadGroup guiclass="ThreadGroupGui" testclass="ThreadGroup" testname="Thread Group" enabled="true">
+        <stringProp name="ThreadGroup.on_sample_error">continue</stringProp>
+        <elementProp name="ThreadGroup.main_controller" elementType="LoopController" guiclass="LoopControlPanel" testclass="LoopController" testname="Loop Controller" enabled="true">
+          <boolProp name="LoopController.continue_forever">false</boolProp>
+          <intProp name="LoopController.loops">-1</intProp>
+        </elementProp>
+        <stringProp name="ThreadGroup.num_threads">20</stringProp>
+        <stringProp name="ThreadGroup.ramp_time">1</stringProp>
+        <longProp name="ThreadGroup.start_time">1479823133000</longProp>
+        <longProp name="ThreadGroup.end_time">1479823133000</longProp>
+        <boolProp name="ThreadGroup.scheduler">false</boolProp>
+        <stringProp name="ThreadGroup.duration"></stringProp>
+        <stringProp name="ThreadGroup.delay"></stringProp>
+      </ThreadGroup>
+      <hashTree>
+        <GenericController guiclass="LogicControllerGui" testclass="GenericController" testname="Simple Controller" enabled="true"/>
+        <hashTree>
+          <CacheManager guiclass="CacheManagerGui" testclass="CacheManager" testname="HTTP Cache Manager" enabled="true">
+            <boolProp name="clearEachIteration">false</boolProp>
+            <boolProp name="useExpires">false</boolProp>
+          </CacheManager>
+          <hashTree/>
+          <CookieManager guiclass="CookiePanel" testclass="CookieManager" testname="HTTP Cookie Manager" enabled="true">
+            <collectionProp name="CookieManager.cookies"/>
+            <boolProp name="CookieManager.clearEachIteration">true</boolProp>
+            <stringProp name="CookieManager.policy">standard</stringProp>
+            <stringProp name="CookieManager.implementation">org.apache.jmeter.protocol.http.control.HC4CookieHandler</stringProp>
+          </CookieManager>
+          <hashTree/>
+          <CounterConfig guiclass="CounterConfigGui" testclass="CounterConfig" testname="session_state_counter" enabled="true">
+            <stringProp name="CounterConfig.start">1</stringProp>
+            <stringProp name="CounterConfig.end"></stringProp>
+            <stringProp name="CounterConfig.incr">1</stringProp>
+            <stringProp name="CounterConfig.name">session_state_counter</stringProp>
+            <stringProp name="CounterConfig.format"></stringProp>
+            <boolProp name="CounterConfig.per_user">false</boolProp>
+          </CounterConfig>
+          <hashTree/>
+          <HTTPSamplerProxy guiclass="HttpTestSampleGui" testclass="HTTPSamplerProxy" testname="/token" enabled="true">
+            <elementProp name="HTTPsampler.Arguments" elementType="Arguments" guiclass="HTTPArgumentsPanel" testclass="Arguments" enabled="true">
+              <collectionProp name="Arguments.arguments">
+                <elementProp name="grant_type" elementType="HTTPArgument">
+                  <boolProp name="HTTPArgument.always_encode">false</boolProp>
+                  <stringProp name="Argument.value">client_credentials</stringProp>
+                  <stringProp name="Argument.metadata">=</stringProp>
+                  <boolProp name="HTTPArgument.use_equals">true</boolProp>
+                  <stringProp name="Argument.name">grant_type</stringProp>
+                </elementProp>
+                <elementProp name="scope" elementType="HTTPArgument">
+                  <boolProp name="HTTPArgument.always_encode">false</boolProp>
+                  <stringProp name="Argument.value">clientinfo</stringProp>
+                  <stringProp name="Argument.metadata">=</stringProp>
+                  <boolProp name="HTTPArgument.use_equals">true</boolProp>
+                  <stringProp name="Argument.name">scope</stringProp>
+                </elementProp>
+              </collectionProp>
+            </elementProp>
+            <stringProp name="HTTPSampler.domain"></stringProp>
+            <stringProp name="HTTPSampler.port"></stringProp>
+            <stringProp name="HTTPSampler.connect_timeout"></stringProp>
+            <stringProp name="HTTPSampler.response_timeout"></stringProp>
+            <stringProp name="HTTPSampler.protocol"></stringProp>
+            <stringProp name="HTTPSampler.contentEncoding"></stringProp>
+            <stringProp name="HTTPSampler.path">/oxauth/restv1/token</stringProp>
+            <stringProp name="HTTPSampler.method">POST</stringProp>
+            <boolProp name="HTTPSampler.follow_redirects">true</boolProp>
+            <boolProp name="HTTPSampler.auto_redirects">false</boolProp>
+            <boolProp name="HTTPSampler.use_keepalive">true</boolProp>
+            <boolProp name="HTTPSampler.DO_MULTIPART_POST">false</boolProp>
+            <stringProp name="HTTPSampler.implementation">HttpClient4</stringProp>
+            <boolProp name="HTTPSampler.monitor">false</boolProp>
+            <stringProp name="HTTPSampler.embedded_url_re"></stringProp>
+          </HTTPSamplerProxy>
+          <hashTree>
+            <HeaderManager guiclass="HeaderPanel" testclass="HeaderManager" testname="HTTP Header Manager" enabled="true">
+              <collectionProp name="HeaderManager.headers">
+                <elementProp name="" elementType="Header">
+                  <stringProp name="Header.name">Authorization</stringProp>
+                  <stringProp name="Header.value">${client_header}</stringProp>
+                </elementProp>
+                <elementProp name="" elementType="Header">
+                  <stringProp name="Header.name">Content-Type</stringProp>
+                  <stringProp name="Header.value">application/x-www-form-urlencoded</stringProp>
+                </elementProp>
+              </collectionProp>
+            </HeaderManager>
+            <hashTree/>
+            <JSR223PreProcessor guiclass="TestBeanGUI" testclass="JSR223PreProcessor" testname="JSR223 PreProcessor : base64 client credentials " enabled="true">
+              <stringProp name="cacheKey">5747dfc9-3b64-496f-947f-e9ce907c06cd</stringProp>
+              <stringProp name="filename"></stringProp>
+              <stringProp name="parameters"></stringProp>
+              <stringProp name="script">String credentials = vars.get(&quot;client_id&quot;) + &quot;:&quot; + vars.get(&quot;client_secret&quot;);
+String clientHeader = &quot;Basic &quot; + org.apache.commons.codec.binary.Base64.encodeBase64String(credentials.getBytes(&quot;UTF-8&quot;));
+
+vars.put(&quot;client_header&quot;, clientHeader);</stringProp>
+              <stringProp name="scriptLanguage">java</stringProp>
+            </JSR223PreProcessor>
+            <hashTree/>
+            <ResultCollector guiclass="ViewResultsFullVisualizer" testclass="ResultCollector" testname="View Results Tree" enabled="true">
+              <boolProp name="ResultCollector.error_logging">false</boolProp>
+              <objProp>
+                <name>saveConfig</name>
+                <value class="SampleSaveConfiguration">
+                  <time>true</time>
+                  <latency>true</latency>
+                  <timestamp>true</timestamp>
+                  <success>true</success>
+                  <label>true</label>
+                  <code>true</code>
+                  <message>true</message>
+                  <threadName>true</threadName>
+                  <dataType>true</dataType>
+                  <encoding>false</encoding>
+                  <assertions>true</assertions>
+                  <subresults>true</subresults>
+                  <responseData>false</responseData>
+                  <samplerData>false</samplerData>
+                  <xml>false</xml>
+                  <fieldNames>true</fieldNames>
+                  <responseHeaders>false</responseHeaders>
+                  <requestHeaders>false</requestHeaders>
+                  <responseDataOnError>false</responseDataOnError>
+                  <saveAssertionResultsFailureMessage>true</saveAssertionResultsFailureMessage>
+                  <assertionsResultsToSave>0</assertionsResultsToSave>
+                  <bytes>true</bytes>
+                  <threadCounts>true</threadCounts>
+                  <idleTime>true</idleTime>
+                </value>
+              </objProp>
+              <stringProp name="filename"></stringProp>
+            </ResultCollector>
+            <hashTree/>
+            <ResponseAssertion guiclass="AssertionGui" testclass="ResponseAssertion" testname="Response Assertion" enabled="true">
+              <collectionProp name="Asserion.test_strings">
+                <stringProp name="13466530">&quot;access_token&quot;</stringProp>
+              </collectionProp>
+              <stringProp name="Assertion.test_field">Assertion.response_data</stringProp>
+              <boolProp name="Assertion.assume_success">false</boolProp>
+              <intProp name="Assertion.test_type">2</intProp>
+            </ResponseAssertion>
+            <hashTree/>
+            <JSONPostProcessor guiclass="JSONPostProcessorGui" testclass="JSONPostProcessor" testname="JSON Path PostProcessor : access_token" enabled="true">
+              <stringProp name="JSONPostProcessor.referenceNames">access_token</stringProp>
+              <stringProp name="JSONPostProcessor.jsonPathExprs">$.access_token</stringProp>
+              <stringProp name="JSONPostProcessor.match_numbers"></stringProp>
+            </JSONPostProcessor>
+            <hashTree/>
+          </hashTree>
+        </hashTree>
+        <JSONPostProcessor guiclass="JSONPostProcessorGui" testclass="JSONPostProcessor" testname="JSON Path PostProcessor : id_token" enabled="true">
+          <stringProp name="JSONPostProcessor.referenceNames">id_token</stringProp>
+          <stringProp name="JSONPostProcessor.jsonPathExprs">$.id_token</stringProp>
+          <stringProp name="JSONPostProcessor.match_numbers"></stringProp>
+        </JSONPostProcessor>
+        <hashTree/>
+        <ResultCollector guiclass="SummaryReport" testclass="ResultCollector" testname="Summary Report" enabled="true">
+          <boolProp name="ResultCollector.error_logging">false</boolProp>
+          <objProp>
+            <name>saveConfig</name>
+            <value class="SampleSaveConfiguration">
+              <time>true</time>
+              <latency>true</latency>
+              <timestamp>true</timestamp>
+              <success>true</success>
+              <label>true</label>
+              <code>true</code>
+              <message>true</message>
+              <threadName>true</threadName>
+              <dataType>true</dataType>
+              <encoding>false</encoding>
+              <assertions>true</assertions>
+              <subresults>true</subresults>
+              <responseData>false</responseData>
+              <samplerData>false</samplerData>
+              <xml>false</xml>
+              <fieldNames>true</fieldNames>
+              <responseHeaders>false</responseHeaders>
+              <requestHeaders>false</requestHeaders>
+              <responseDataOnError>false</responseDataOnError>
+              <saveAssertionResultsFailureMessage>true</saveAssertionResultsFailureMessage>
+              <assertionsResultsToSave>0</assertionsResultsToSave>
+              <bytes>true</bytes>
+              <threadCounts>true</threadCounts>
+              <idleTime>true</idleTime>
+            </value>
+          </objProp>
+          <stringProp name="filename"></stringProp>
+        </ResultCollector>
+        <hashTree/>
+        <ResultCollector guiclass="ViewResultsFullVisualizer" testclass="ResultCollector" testname="View Results Tree" enabled="true">
+          <boolProp name="ResultCollector.error_logging">false</boolProp>
+          <objProp>
+            <name>saveConfig</name>
+            <value class="SampleSaveConfiguration">
+              <time>true</time>
+              <latency>true</latency>
+              <timestamp>true</timestamp>
+              <success>true</success>
+              <label>true</label>
+              <code>true</code>
+              <message>true</message>
+              <threadName>true</threadName>
+              <dataType>true</dataType>
+              <encoding>false</encoding>
+              <assertions>true</assertions>
+              <subresults>true</subresults>
+              <responseData>false</responseData>
+              <samplerData>false</samplerData>
+              <xml>false</xml>
+              <fieldNames>true</fieldNames>
+              <responseHeaders>false</responseHeaders>
+              <requestHeaders>false</requestHeaders>
+              <responseDataOnError>false</responseDataOnError>
+              <saveAssertionResultsFailureMessage>true</saveAssertionResultsFailureMessage>
+              <assertionsResultsToSave>0</assertionsResultsToSave>
+              <bytes>true</bytes>
+              <threadCounts>true</threadCounts>
+              <idleTime>true</idleTime>
+            </value>
+          </objProp>
+          <stringProp name="filename"></stringProp>
+        </ResultCollector>
+        <hashTree/>
+        <ResultCollector guiclass="GraphVisualizer" testclass="ResultCollector" testname="Graph Results" enabled="true">
+          <boolProp name="ResultCollector.error_logging">false</boolProp>
+          <objProp>
+            <name>saveConfig</name>
+            <value class="SampleSaveConfiguration">
+              <time>true</time>
+              <latency>true</latency>
+              <timestamp>true</timestamp>
+              <success>true</success>
+              <label>true</label>
+              <code>true</code>
+              <message>true</message>
+              <threadName>true</threadName>
+              <dataType>true</dataType>
+              <encoding>false</encoding>
+              <assertions>true</assertions>
+              <subresults>true</subresults>
+              <responseData>false</responseData>
+              <samplerData>false</samplerData>
+              <xml>false</xml>
+              <fieldNames>true</fieldNames>
+              <responseHeaders>false</responseHeaders>
+              <requestHeaders>false</requestHeaders>
+              <responseDataOnError>false</responseDataOnError>
+              <saveAssertionResultsFailureMessage>true</saveAssertionResultsFailureMessage>
+              <assertionsResultsToSave>0</assertionsResultsToSave>
+              <bytes>true</bytes>
+              <threadCounts>true</threadCounts>
+              <idleTime>true</idleTime>
+            </value>
+          </objProp>
+          <stringProp name="filename"></stringProp>
+        </ResultCollector>
+        <hashTree/>
+        <ResultCollector guiclass="TableVisualizer" testclass="ResultCollector" testname="View Results in Table" enabled="true">
+          <boolProp name="ResultCollector.error_logging">false</boolProp>
+          <objProp>
+            <name>saveConfig</name>
+            <value class="SampleSaveConfiguration">
+              <time>true</time>
+              <latency>true</latency>
+              <timestamp>true</timestamp>
+              <success>true</success>
+              <label>true</label>
+              <code>true</code>
+              <message>true</message>
+              <threadName>true</threadName>
+              <dataType>true</dataType>
+              <encoding>false</encoding>
+              <assertions>true</assertions>
+              <subresults>true</subresults>
+              <responseData>false</responseData>
+              <samplerData>false</samplerData>
+              <xml>false</xml>
+              <fieldNames>true</fieldNames>
+              <responseHeaders>false</responseHeaders>
+              <requestHeaders>false</requestHeaders>
+              <responseDataOnError>false</responseDataOnError>
+              <saveAssertionResultsFailureMessage>true</saveAssertionResultsFailureMessage>
+              <assertionsResultsToSave>0</assertionsResultsToSave>
+              <bytes>true</bytes>
+              <threadCounts>true</threadCounts>
+              <idleTime>true</idleTime>
+            </value>
+          </objProp>
+          <stringProp name="filename"></stringProp>
+        </ResultCollector>
+        <hashTree/>
+        <ResultCollector guiclass="MonitorHealthVisualizer" testclass="ResultCollector" testname="Monitor Results" enabled="true">
+          <boolProp name="ResultCollector.error_logging">false</boolProp>
+          <objProp>
+            <name>saveConfig</name>
+            <value class="SampleSaveConfiguration">
+              <time>true</time>
+              <latency>true</latency>
+              <timestamp>true</timestamp>
+              <success>true</success>
+              <label>true</label>
+              <code>true</code>
+              <message>true</message>
+              <threadName>true</threadName>
+              <dataType>true</dataType>
+              <encoding>false</encoding>
+              <assertions>true</assertions>
+              <subresults>true</subresults>
+              <responseData>false</responseData>
+              <samplerData>false</samplerData>
+              <xml>false</xml>
+              <fieldNames>true</fieldNames>
+              <responseHeaders>false</responseHeaders>
+              <requestHeaders>false</requestHeaders>
+              <responseDataOnError>false</responseDataOnError>
+              <saveAssertionResultsFailureMessage>true</saveAssertionResultsFailureMessage>
+              <assertionsResultsToSave>0</assertionsResultsToSave>
+              <bytes>true</bytes>
+              <threadCounts>true</threadCounts>
+              <idleTime>true</idleTime>
+            </value>
+          </objProp>
+          <stringProp name="filename"></stringProp>
+        </ResultCollector>
+        <hashTree/>
+        <Summariser guiclass="SummariserGui" testclass="Summariser" testname="Generate Summary Results" enabled="true"/>
+        <hashTree/>
+      </hashTree>
+      <ThreadGroup guiclass="ThreadGroupGui" testclass="ThreadGroup" testname="End Session" enabled="false">
+        <stringProp name="ThreadGroup.on_sample_error">continue</stringProp>
+        <elementProp name="ThreadGroup.main_controller" elementType="LoopController" guiclass="LoopControlPanel" testclass="LoopController" testname="Loop Controller" enabled="true">
+          <boolProp name="LoopController.continue_forever">false</boolProp>
+          <intProp name="LoopController.loops">-1</intProp>
+        </elementProp>
+        <stringProp name="ThreadGroup.num_threads">5</stringProp>
+        <stringProp name="ThreadGroup.ramp_time">1</stringProp>
+        <longProp name="ThreadGroup.start_time">1480924764000</longProp>
+        <longProp name="ThreadGroup.end_time">1480924764000</longProp>
+        <boolProp name="ThreadGroup.scheduler">false</boolProp>
+        <stringProp name="ThreadGroup.duration"></stringProp>
+        <stringProp name="ThreadGroup.delay">3</stringProp>
+      </ThreadGroup>
+      <hashTree>
+        <CookieManager guiclass="CookiePanel" testclass="CookieManager" testname="HTTP Cookie Manager" enabled="true">
+          <collectionProp name="CookieManager.cookies"/>
+          <boolProp name="CookieManager.clearEachIteration">false</boolProp>
+          <stringProp name="CookieManager.policy">standard</stringProp>
+          <stringProp name="CookieManager.implementation">org.apache.jmeter.protocol.http.control.HC4CookieHandler</stringProp>
+        </CookieManager>
+        <hashTree/>
+        <ConstantTimer guiclass="ConstantTimerGui" testclass="ConstantTimer" testname="Constant Timer" enabled="true">
+          <stringProp name="ConstantTimer.delay">3000</stringProp>
+        </ConstantTimer>
+        <hashTree/>
+        <HTTPSamplerProxy guiclass="HttpTestSampleGui" testclass="HTTPSamplerProxy" testname="/end_session" enabled="true">
+          <elementProp name="HTTPsampler.Arguments" elementType="Arguments" guiclass="HTTPArgumentsPanel" testclass="Arguments" testname="User Defined Variables" enabled="true">
+            <collectionProp name="Arguments.arguments">
+              <elementProp name="id_token_hint" elementType="HTTPArgument">
+                <boolProp name="HTTPArgument.always_encode">false</boolProp>
+                <stringProp name="Argument.value">${id_token}</stringProp>
+                <stringProp name="Argument.metadata">=</stringProp>
+                <boolProp name="HTTPArgument.use_equals">true</boolProp>
+                <stringProp name="Argument.name">id_token_hint</stringProp>
+              </elementProp>
+            </collectionProp>
+          </elementProp>
+          <stringProp name="HTTPSampler.domain"></stringProp>
+          <stringProp name="HTTPSampler.port"></stringProp>
+          <stringProp name="HTTPSampler.connect_timeout"></stringProp>
+          <stringProp name="HTTPSampler.response_timeout"></stringProp>
+          <stringProp name="HTTPSampler.protocol"></stringProp>
+          <stringProp name="HTTPSampler.contentEncoding"></stringProp>
+          <stringProp name="HTTPSampler.path"></stringProp>
+          <stringProp name="HTTPSampler.method">GET</stringProp>
+          <boolProp name="HTTPSampler.follow_redirects">true</boolProp>
+          <boolProp name="HTTPSampler.auto_redirects">false</boolProp>
+          <boolProp name="HTTPSampler.use_keepalive">true</boolProp>
+          <boolProp name="HTTPSampler.DO_MULTIPART_POST">false</boolProp>
+          <boolProp name="HTTPSampler.monitor">false</boolProp>
+          <stringProp name="HTTPSampler.embedded_url_re"></stringProp>
+        </HTTPSamplerProxy>
+        <hashTree>
+          <JSR223PreProcessor guiclass="TestBeanGUI" testclass="JSR223PreProcessor" testname="JSR223 PreProcessor" enabled="true">
+            <stringProp name="scriptLanguage">java</stringProp>
+            <stringProp name="parameters"></stringProp>
+            <stringProp name="filename"></stringProp>
+            <stringProp name="cacheKey">5747dfc9-3b64-496f-947f-e9ce907c06cd</stringProp>
+            <stringProp name="script">import org.apache.jmeter.protocol.http.control.CookieManager;
+import org.apache.jmeter.protocol.http.control.Cookie;
+
+CookieManager manager = sampler.getCookieManager();
+
+for (Map.Entry entry : props.entrySet()) {
+	if (entry.getKey() instanceof String) {
+	    String key = entry.getKey();
+         if (key.startsWith(&quot;oic.session_state.&quot;)) {
+             String counter = key.substring(&quot;oic.session_state.&quot;.length());
+
+             log.info(&quot;PRE end session, counter : &quot; + counter + &quot;, session_state: &quot; + entry.getValue() + &quot;, props.getProperty(): &quot; + props.getProperty(&quot;oic.session_state.&quot; + counter));
+             
+             Cookie cookie = new Cookie(&quot;session_state&quot;, entry.getValue(), vars.get(&quot;host&quot;), &quot;/&quot;, false, 0);
+             manager.add(cookie); 
+
+             Object idToken = props.getProperty(&quot;oic.id_token.&quot; + counter);
+             log.info(&quot;PRE end session, id_token : &quot; + idToken);
+             vars.put(&quot;id_token&quot;, idToken);
+
+             props.remove(&quot;oic.session_state.&quot; + counter);
+             props.remove(&quot;oic.id_token.&quot; + counter);
+             break;
+         }
+	}
+}</stringProp>
+          </JSR223PreProcessor>
+          <hashTree/>
+          <ResultCollector guiclass="ViewResultsFullVisualizer" testclass="ResultCollector" testname="View Results Tree" enabled="true">
+            <boolProp name="ResultCollector.error_logging">false</boolProp>
+            <objProp>
+              <name>saveConfig</name>
+              <value class="SampleSaveConfiguration">
+                <time>true</time>
+                <latency>true</latency>
+                <timestamp>true</timestamp>
+                <success>true</success>
+                <label>true</label>
+                <code>true</code>
+                <message>true</message>
+                <threadName>true</threadName>
+                <dataType>true</dataType>
+                <encoding>false</encoding>
+                <assertions>true</assertions>
+                <subresults>true</subresults>
+                <responseData>false</responseData>
+                <samplerData>false</samplerData>
+                <xml>false</xml>
+                <fieldNames>true</fieldNames>
+                <responseHeaders>false</responseHeaders>
+                <requestHeaders>false</requestHeaders>
+                <responseDataOnError>false</responseDataOnError>
+                <saveAssertionResultsFailureMessage>true</saveAssertionResultsFailureMessage>
+                <assertionsResultsToSave>0</assertionsResultsToSave>
+                <bytes>true</bytes>
+                <threadCounts>true</threadCounts>
+                <idleTime>true</idleTime>
+              </value>
+            </objProp>
+            <stringProp name="filename"></stringProp>
+          </ResultCollector>
+          <hashTree/>
+        </hashTree>
+      </hashTree>
+      <ResultCollector guiclass="ViewResultsFullVisualizer" testclass="ResultCollector" testname="View Results Tree" enabled="true">
+        <boolProp name="ResultCollector.error_logging">false</boolProp>
+        <objProp>
+          <name>saveConfig</name>
+          <value class="SampleSaveConfiguration">
+            <time>true</time>
+            <latency>true</latency>
+            <timestamp>true</timestamp>
+            <success>true</success>
+            <label>true</label>
+            <code>true</code>
+            <message>true</message>
+            <threadName>true</threadName>
+            <dataType>true</dataType>
+            <encoding>false</encoding>
+            <assertions>true</assertions>
+            <subresults>true</subresults>
+            <responseData>false</responseData>
+            <samplerData>false</samplerData>
+            <xml>false</xml>
+            <fieldNames>true</fieldNames>
+            <responseHeaders>false</responseHeaders>
+            <requestHeaders>false</requestHeaders>
+            <responseDataOnError>false</responseDataOnError>
+            <saveAssertionResultsFailureMessage>true</saveAssertionResultsFailureMessage>
+            <assertionsResultsToSave>0</assertionsResultsToSave>
+            <bytes>true</bytes>
+            <threadCounts>true</threadCounts>
+            <idleTime>true</idleTime>
+          </value>
+        </objProp>
+        <stringProp name="filename"></stringProp>
+      </ResultCollector>
+      <hashTree/>
+      <ResultCollector guiclass="TableVisualizer" testclass="ResultCollector" testname="View Results in Table" enabled="true">
+        <boolProp name="ResultCollector.error_logging">false</boolProp>
+        <objProp>
+          <name>saveConfig</name>
+          <value class="SampleSaveConfiguration">
+            <time>true</time>
+            <latency>true</latency>
+            <timestamp>true</timestamp>
+            <success>true</success>
+            <label>true</label>
+            <code>true</code>
+            <message>true</message>
+            <threadName>true</threadName>
+            <dataType>true</dataType>
+            <encoding>false</encoding>
+            <assertions>true</assertions>
+            <subresults>true</subresults>
+            <responseData>false</responseData>
+            <samplerData>false</samplerData>
+            <xml>false</xml>
+            <fieldNames>true</fieldNames>
+            <responseHeaders>false</responseHeaders>
+            <requestHeaders>false</requestHeaders>
+            <responseDataOnError>false</responseDataOnError>
+            <saveAssertionResultsFailureMessage>true</saveAssertionResultsFailureMessage>
+            <assertionsResultsToSave>0</assertionsResultsToSave>
+            <bytes>true</bytes>
+            <threadCounts>true</threadCounts>
+            <idleTime>true</idleTime>
+          </value>
+        </objProp>
+        <stringProp name="filename"></stringProp>
+      </ResultCollector>
+      <hashTree/>
+      <ResultCollector guiclass="GraphVisualizer" testclass="ResultCollector" testname="Graph Results" enabled="true">
+        <boolProp name="ResultCollector.error_logging">false</boolProp>
+        <objProp>
+          <name>saveConfig</name>
+          <value class="SampleSaveConfiguration">
+            <time>true</time>
+            <latency>true</latency>
+            <timestamp>true</timestamp>
+            <success>true</success>
+            <label>true</label>
+            <code>true</code>
+            <message>true</message>
+            <threadName>true</threadName>
+            <dataType>true</dataType>
+            <encoding>false</encoding>
+            <assertions>true</assertions>
+            <subresults>true</subresults>
+            <responseData>false</responseData>
+            <samplerData>false</samplerData>
+            <xml>false</xml>
+            <fieldNames>true</fieldNames>
+            <responseHeaders>false</responseHeaders>
+            <requestHeaders>false</requestHeaders>
+            <responseDataOnError>false</responseDataOnError>
+            <saveAssertionResultsFailureMessage>true</saveAssertionResultsFailureMessage>
+            <assertionsResultsToSave>0</assertionsResultsToSave>
+            <bytes>true</bytes>
+            <threadCounts>true</threadCounts>
+            <idleTime>true</idleTime>
+          </value>
+        </objProp>
+        <stringProp name="filename"></stringProp>
+      </ResultCollector>
+      <hashTree/>
+    </hashTree>
+  </hashTree>
+</jmeterTestPlan>
diff --git a/oxAuth/jmeter/test/Authorization Code Flow_ce-dev5.jmx b/oxAuth/jmeter/test/Authorization Code Flow_ce-dev5.jmx
new file mode 100644
index 00000000..dae45196
--- /dev/null
+++ b/oxAuth/jmeter/test/Authorization Code Flow_ce-dev5.jmx	
@@ -0,0 +1,1317 @@
+<?xml version="1.0" encoding="UTF-8"?>
+<jmeterTestPlan version="1.2" properties="2.9" jmeter="3.0 r1743807">
+  <hashTree>
+    <TestPlan guiclass="TestPlanGui" testclass="TestPlan" testname="Authorization Code Flow" enabled="true">
+      <stringProp name="TestPlan.comments"></stringProp>
+      <boolProp name="TestPlan.functional_mode">false</boolProp>
+      <boolProp name="TestPlan.serialize_threadgroups">true</boolProp>
+      <elementProp name="TestPlan.user_defined_variables" elementType="Arguments" guiclass="ArgumentsPanel" testclass="Arguments" testname="User Defined Variables" enabled="true">
+        <collectionProp name="Arguments.arguments">
+          <elementProp name="host" elementType="Argument">
+            <stringProp name="Argument.name">host</stringProp>
+            <stringProp name="Argument.value">ce-dev5.gluu.org</stringProp>
+            <stringProp name="Argument.metadata">=</stringProp>
+          </elementProp>
+          <elementProp name="scope" elementType="Argument">
+            <stringProp name="Argument.name">scope</stringProp>
+            <stringProp name="Argument.value">openid profile email user_name</stringProp>
+            <stringProp name="Argument.metadata">=</stringProp>
+          </elementProp>
+          <elementProp name="username" elementType="Argument">
+            <stringProp name="Argument.name">username</stringProp>
+            <stringProp name="Argument.value">admin</stringProp>
+            <stringProp name="Argument.metadata">=</stringProp>
+          </elementProp>
+          <elementProp name="password" elementType="Argument">
+            <stringProp name="Argument.name">password</stringProp>
+            <stringProp name="Argument.value"></stringProp>
+            <stringProp name="Argument.metadata">=</stringProp>
+          </elementProp>
+          <elementProp name="redirect_uri" elementType="Argument">
+            <stringProp name="Argument.name">redirect_uri</stringProp>
+            <stringProp name="Argument.value">https://ce-dev5.gluu.org/identity/authcode.htm</stringProp>
+            <stringProp name="Argument.metadata">=</stringProp>
+          </elementProp>
+          <elementProp name="client_id" elementType="Argument">
+            <stringProp name="Argument.name">client_id</stringProp>
+            <stringProp name="Argument.value">0008-5d22c743-88da-4471-b853-0cb9bb41a3d6</stringProp>
+            <stringProp name="Argument.metadata">=</stringProp>
+          </elementProp>
+          <elementProp name="client_secret" elementType="Argument">
+            <stringProp name="Argument.name">client_secret</stringProp>
+            <stringProp name="Argument.value"></stringProp>
+            <stringProp name="Argument.metadata">=</stringProp>
+          </elementProp>
+          <elementProp name="client_header" elementType="Argument">
+            <stringProp name="Argument.name">client_header</stringProp>
+            <stringProp name="Argument.value">to_override_in_jsr223</stringProp>
+            <stringProp name="Argument.metadata">=</stringProp>
+          </elementProp>
+          <elementProp name="location_regexp" elementType="Argument">
+            <stringProp name="Argument.name">location_regexp</stringProp>
+            <stringProp name="Argument.value">Location: https:\/\/ce-dev5\.gluu\.org(.*)</stringProp>
+            <stringProp name="Argument.metadata">=</stringProp>
+          </elementProp>
+        </collectionProp>
+      </elementProp>
+      <stringProp name="TestPlan.user_define_classpath"></stringProp>
+    </TestPlan>
+    <hashTree>
+      <ConfigTestElement guiclass="HttpDefaultsGui" testclass="ConfigTestElement" testname="HTTP Request Defaults" enabled="true">
+        <elementProp name="HTTPsampler.Arguments" elementType="Arguments" guiclass="HTTPArgumentsPanel" testclass="Arguments" testname="User Defined Variables" enabled="true">
+          <collectionProp name="Arguments.arguments"/>
+        </elementProp>
+        <stringProp name="HTTPSampler.domain">${host}</stringProp>
+        <stringProp name="HTTPSampler.port"></stringProp>
+        <stringProp name="HTTPSampler.connect_timeout">60000</stringProp>
+        <stringProp name="HTTPSampler.response_timeout">60000</stringProp>
+        <stringProp name="HTTPSampler.protocol">https</stringProp>
+        <stringProp name="HTTPSampler.contentEncoding"></stringProp>
+        <stringProp name="HTTPSampler.path"></stringProp>
+        <stringProp name="HTTPSampler.implementation">HttpClient4</stringProp>
+        <stringProp name="HTTPSampler.concurrentPool">6</stringProp>
+      </ConfigTestElement>
+      <hashTree/>
+      <ThreadGroup guiclass="ThreadGroupGui" testclass="ThreadGroup" testname="Main" enabled="true">
+        <stringProp name="ThreadGroup.on_sample_error">continue</stringProp>
+        <elementProp name="ThreadGroup.main_controller" elementType="LoopController" guiclass="LoopControlPanel" testclass="LoopController" testname="Loop Controller" enabled="true">
+          <boolProp name="LoopController.continue_forever">false</boolProp>
+          <stringProp name="LoopController.loops">1</stringProp>
+        </elementProp>
+        <stringProp name="ThreadGroup.num_threads">1</stringProp>
+        <stringProp name="ThreadGroup.ramp_time">1</stringProp>
+        <longProp name="ThreadGroup.start_time">1479823133000</longProp>
+        <longProp name="ThreadGroup.end_time">1479823133000</longProp>
+        <boolProp name="ThreadGroup.scheduler">false</boolProp>
+        <stringProp name="ThreadGroup.duration"></stringProp>
+        <stringProp name="ThreadGroup.delay"></stringProp>
+      </ThreadGroup>
+      <hashTree>
+        <GenericController guiclass="LogicControllerGui" testclass="GenericController" testname="Simple Controller" enabled="true"/>
+        <hashTree>
+          <CacheManager guiclass="CacheManagerGui" testclass="CacheManager" testname="HTTP Cache Manager" enabled="true">
+            <boolProp name="clearEachIteration">true</boolProp>
+            <boolProp name="useExpires">false</boolProp>
+          </CacheManager>
+          <hashTree/>
+          <CookieManager guiclass="CookiePanel" testclass="CookieManager" testname="HTTP Cookie Manager" enabled="true">
+            <collectionProp name="CookieManager.cookies"/>
+            <boolProp name="CookieManager.clearEachIteration">true</boolProp>
+            <stringProp name="CookieManager.policy">standard</stringProp>
+            <stringProp name="CookieManager.implementation">org.apache.jmeter.protocol.http.control.HC4CookieHandler</stringProp>
+          </CookieManager>
+          <hashTree/>
+          <CounterConfig guiclass="CounterConfigGui" testclass="CounterConfig" testname="session_state_counter" enabled="true">
+            <stringProp name="CounterConfig.start">1</stringProp>
+            <stringProp name="CounterConfig.end"></stringProp>
+            <stringProp name="CounterConfig.incr">1</stringProp>
+            <stringProp name="CounterConfig.name">session_state_counter</stringProp>
+            <stringProp name="CounterConfig.format"></stringProp>
+            <boolProp name="CounterConfig.per_user">false</boolProp>
+          </CounterConfig>
+          <hashTree/>
+          <HTTPSamplerProxy guiclass="HttpTestSampleGui" testclass="HTTPSamplerProxy" testname="/authorize" enabled="true">
+            <elementProp name="HTTPsampler.Arguments" elementType="Arguments" guiclass="HTTPArgumentsPanel" testclass="Arguments" testname="User Defined Variables" enabled="true">
+              <collectionProp name="Arguments.arguments">
+                <elementProp name="scope" elementType="HTTPArgument">
+                  <boolProp name="HTTPArgument.always_encode">true</boolProp>
+                  <stringProp name="Argument.value">${scope}</stringProp>
+                  <stringProp name="Argument.metadata">=</stringProp>
+                  <boolProp name="HTTPArgument.use_equals">true</boolProp>
+                  <stringProp name="Argument.name">scope</stringProp>
+                </elementProp>
+                <elementProp name="response_type" elementType="HTTPArgument">
+                  <boolProp name="HTTPArgument.always_encode">false</boolProp>
+                  <stringProp name="Argument.value">code</stringProp>
+                  <stringProp name="Argument.metadata">=</stringProp>
+                  <boolProp name="HTTPArgument.use_equals">true</boolProp>
+                  <stringProp name="Argument.name">response_type</stringProp>
+                </elementProp>
+                <elementProp name="nonce" elementType="HTTPArgument">
+                  <boolProp name="HTTPArgument.always_encode">false</boolProp>
+                  <stringProp name="Argument.value">nonce</stringProp>
+                  <stringProp name="Argument.metadata">=</stringProp>
+                  <boolProp name="HTTPArgument.use_equals">true</boolProp>
+                  <stringProp name="Argument.name">nonce</stringProp>
+                </elementProp>
+                <elementProp name="redirect_uri" elementType="HTTPArgument">
+                  <boolProp name="HTTPArgument.always_encode">true</boolProp>
+                  <stringProp name="Argument.value">${redirect_uri}</stringProp>
+                  <stringProp name="Argument.metadata">=</stringProp>
+                  <boolProp name="HTTPArgument.use_equals">true</boolProp>
+                  <stringProp name="Argument.name">redirect_uri</stringProp>
+                </elementProp>
+                <elementProp name="client_id" elementType="HTTPArgument">
+                  <boolProp name="HTTPArgument.always_encode">true</boolProp>
+                  <stringProp name="Argument.value">${client_id}</stringProp>
+                  <stringProp name="Argument.metadata">=</stringProp>
+                  <boolProp name="HTTPArgument.use_equals">true</boolProp>
+                  <stringProp name="Argument.name">client_id</stringProp>
+                </elementProp>
+              </collectionProp>
+            </elementProp>
+            <stringProp name="HTTPSampler.domain"></stringProp>
+            <stringProp name="HTTPSampler.port"></stringProp>
+            <stringProp name="HTTPSampler.connect_timeout"></stringProp>
+            <stringProp name="HTTPSampler.response_timeout"></stringProp>
+            <stringProp name="HTTPSampler.protocol">https</stringProp>
+            <stringProp name="HTTPSampler.contentEncoding"></stringProp>
+            <stringProp name="HTTPSampler.path">/oxauth/restv1/authorize</stringProp>
+            <stringProp name="HTTPSampler.method">GET</stringProp>
+            <boolProp name="HTTPSampler.follow_redirects">true</boolProp>
+            <boolProp name="HTTPSampler.auto_redirects">false</boolProp>
+            <boolProp name="HTTPSampler.use_keepalive">false</boolProp>
+            <boolProp name="HTTPSampler.DO_MULTIPART_POST">false</boolProp>
+            <stringProp name="HTTPSampler.implementation">HttpClient4</stringProp>
+            <boolProp name="HTTPSampler.monitor">false</boolProp>
+            <stringProp name="HTTPSampler.embedded_url_re"></stringProp>
+          </HTTPSamplerProxy>
+          <hashTree>
+            <RegexExtractor guiclass="RegexExtractorGui" testclass="RegexExtractor" testname="Regular Expression Extractor : javax.faces.FormSignature" enabled="false">
+              <stringProp name="RegexExtractor.useHeaders">false</stringProp>
+              <stringProp name="RegexExtractor.refname">javax.faces.FormSignature</stringProp>
+              <stringProp name="RegexExtractor.regex">&lt;input type=&quot;hidden&quot; name=&quot;javax.faces.FormSignature&quot; value=&quot;(.+?)&quot; /&gt;</stringProp>
+              <stringProp name="RegexExtractor.template">$1$</stringProp>
+              <stringProp name="RegexExtractor.default"></stringProp>
+              <stringProp name="RegexExtractor.match_number"></stringProp>
+            </RegexExtractor>
+            <hashTree/>
+            <RegexExtractor guiclass="RegexExtractorGui" testclass="RegexExtractor" testname="Regular Expression Extractor : javax.faces.ViewState" enabled="false">
+              <stringProp name="RegexExtractor.useHeaders">false</stringProp>
+              <stringProp name="RegexExtractor.refname">javax.faces.ViewState</stringProp>
+              <stringProp name="RegexExtractor.regex">&lt;input type=&quot;hidden&quot; name=&quot;javax.faces.ViewState&quot; id=&quot;javax.faces.ViewState&quot; value=&quot;(.+?)&quot; autocomplete=&quot;off&quot; /&gt;</stringProp>
+              <stringProp name="RegexExtractor.template">$1$</stringProp>
+              <stringProp name="RegexExtractor.default"></stringProp>
+              <stringProp name="RegexExtractor.match_number"></stringProp>
+            </RegexExtractor>
+            <hashTree/>
+            <RegexExtractor guiclass="RegexExtractorGui" testclass="RegexExtractor" testname="RegExp username fieldname Extractor" enabled="true">
+              <stringProp name="RegexExtractor.useHeaders">false</stringProp>
+              <stringProp name="RegexExtractor.refname">usernameField</stringProp>
+              <stringProp name="RegexExtractor.regex">&lt;input id=&quot;loginForm:username&quot; name=&quot;(.+?)&quot; type=&quot;text&quot;</stringProp>
+              <stringProp name="RegexExtractor.template">$1$</stringProp>
+              <stringProp name="RegexExtractor.default">UNKNOWN</stringProp>
+              <stringProp name="RegexExtractor.match_number">1</stringProp>
+            </RegexExtractor>
+            <hashTree/>
+            <RegexExtractor guiclass="RegexExtractorGui" testclass="RegexExtractor" testname="RegExp password fieldname Extractor" enabled="true">
+              <stringProp name="RegexExtractor.useHeaders">false</stringProp>
+              <stringProp name="RegexExtractor.refname">userpasswordField</stringProp>
+              <stringProp name="RegexExtractor.regex">&lt;input id=&quot;loginForm:password&quot; name=&quot;(.+?)&quot; type=&quot;password&quot;</stringProp>
+              <stringProp name="RegexExtractor.template">$1$</stringProp>
+              <stringProp name="RegexExtractor.default">UNKNOWN</stringProp>
+              <stringProp name="RegexExtractor.match_number">1</stringProp>
+            </RegexExtractor>
+            <hashTree/>
+            <ResultCollector guiclass="ViewResultsFullVisualizer" testclass="ResultCollector" testname="View Results Tree" enabled="true">
+              <boolProp name="ResultCollector.error_logging">false</boolProp>
+              <objProp>
+                <name>saveConfig</name>
+                <value class="SampleSaveConfiguration">
+                  <time>true</time>
+                  <latency>true</latency>
+                  <timestamp>true</timestamp>
+                  <success>true</success>
+                  <label>true</label>
+                  <code>true</code>
+                  <message>true</message>
+                  <threadName>true</threadName>
+                  <dataType>true</dataType>
+                  <encoding>false</encoding>
+                  <assertions>true</assertions>
+                  <subresults>true</subresults>
+                  <responseData>false</responseData>
+                  <samplerData>false</samplerData>
+                  <xml>false</xml>
+                  <fieldNames>true</fieldNames>
+                  <responseHeaders>false</responseHeaders>
+                  <requestHeaders>false</requestHeaders>
+                  <responseDataOnError>false</responseDataOnError>
+                  <saveAssertionResultsFailureMessage>true</saveAssertionResultsFailureMessage>
+                  <assertionsResultsToSave>0</assertionsResultsToSave>
+                  <bytes>true</bytes>
+                  <threadCounts>true</threadCounts>
+                  <idleTime>true</idleTime>
+                </value>
+              </objProp>
+              <stringProp name="filename"></stringProp>
+            </ResultCollector>
+            <hashTree/>
+          </hashTree>
+          <HTTPSamplerProxy guiclass="HttpTestSampleGui" testclass="HTTPSamplerProxy" testname="/oxauth/login" enabled="true">
+            <elementProp name="HTTPsampler.Arguments" elementType="Arguments" guiclass="HTTPArgumentsPanel" testclass="Arguments" enabled="true">
+              <collectionProp name="Arguments.arguments">
+                <elementProp name="loginForm" elementType="HTTPArgument">
+                  <boolProp name="HTTPArgument.always_encode">false</boolProp>
+                  <stringProp name="Argument.name">loginForm</stringProp>
+                  <stringProp name="Argument.value">loginForm</stringProp>
+                  <stringProp name="Argument.metadata">=</stringProp>
+                  <boolProp name="HTTPArgument.use_equals">true</boolProp>
+                </elementProp>
+                <elementProp name="${usernameField}" elementType="HTTPArgument">
+                  <boolProp name="HTTPArgument.always_encode">true</boolProp>
+                  <stringProp name="Argument.name">${usernameField}</stringProp>
+                  <stringProp name="Argument.value">${username}</stringProp>
+                  <stringProp name="Argument.metadata">=</stringProp>
+                  <boolProp name="HTTPArgument.use_equals">true</boolProp>
+                </elementProp>
+                <elementProp name="${userpasswordField}" elementType="HTTPArgument">
+                  <boolProp name="HTTPArgument.always_encode">true</boolProp>
+                  <stringProp name="Argument.name">${userpasswordField}</stringProp>
+                  <stringProp name="Argument.value">${password}</stringProp>
+                  <stringProp name="Argument.metadata">=</stringProp>
+                  <boolProp name="HTTPArgument.use_equals">true</boolProp>
+                </elementProp>
+                <elementProp name="loginForm:loginButton" elementType="HTTPArgument">
+                  <boolProp name="HTTPArgument.always_encode">true</boolProp>
+                  <stringProp name="Argument.name">loginForm:loginButton</stringProp>
+                  <stringProp name="Argument.value"></stringProp>
+                  <stringProp name="Argument.metadata">=</stringProp>
+                  <boolProp name="HTTPArgument.use_equals">true</boolProp>
+                </elementProp>
+                <elementProp name="javax.faces.ViewState" elementType="HTTPArgument">
+                  <boolProp name="HTTPArgument.always_encode">true</boolProp>
+                  <stringProp name="Argument.name">javax.faces.ViewState</stringProp>
+                  <stringProp name="Argument.value">stateless</stringProp>
+                  <stringProp name="Argument.metadata">=</stringProp>
+                  <boolProp name="HTTPArgument.use_equals">true</boolProp>
+                </elementProp>
+                <elementProp name="loginForm:platform" elementType="HTTPArgument">
+                  <boolProp name="HTTPArgument.always_encode">false</boolProp>
+                  <stringProp name="Argument.value">{&quot;description&quot;:&quot;Chrome 67.0.3396.99 on Windows Server 2008 R2 / 7 64-bit&quot;,&quot;layout&quot;:&quot;Blink&quot;,&quot;manufacturer&quot;:null,&quot;name&quot;:&quot;Chrome&quot;,&quot;prerelease&quot;:null,&quot;product&quot;:null,&quot;ua&quot;:&quot;Mozilla/5.0 (Windows NT 6.1; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/67.0.3396.99 Safari/537.36&quot;,&quot;version&quot;:&quot;67.0&quot;,&quot;os&quot;:{&quot;architecture&quot;:64,&quot;family&quot;:&quot;Windows Server 2008 R2 / 7&quot;,&quot;version&quot;:&quot;7&quot;}}</stringProp>
+                  <stringProp name="Argument.metadata">=</stringProp>
+                  <boolProp name="HTTPArgument.use_equals">true</boolProp>
+                  <stringProp name="Argument.name">loginForm:platform</stringProp>
+                </elementProp>
+              </collectionProp>
+            </elementProp>
+            <stringProp name="HTTPSampler.domain"></stringProp>
+            <stringProp name="HTTPSampler.port">443</stringProp>
+            <stringProp name="HTTPSampler.connect_timeout"></stringProp>
+            <stringProp name="HTTPSampler.response_timeout"></stringProp>
+            <stringProp name="HTTPSampler.protocol">https</stringProp>
+            <stringProp name="HTTPSampler.contentEncoding">UTF-8</stringProp>
+            <stringProp name="HTTPSampler.path">/oxauth/login.htm</stringProp>
+            <stringProp name="HTTPSampler.method">POST</stringProp>
+            <boolProp name="HTTPSampler.follow_redirects">false</boolProp>
+            <boolProp name="HTTPSampler.auto_redirects">false</boolProp>
+            <boolProp name="HTTPSampler.use_keepalive">false</boolProp>
+            <boolProp name="HTTPSampler.DO_MULTIPART_POST">false</boolProp>
+            <stringProp name="HTTPSampler.implementation">HttpClient4</stringProp>
+            <boolProp name="HTTPSampler.monitor">false</boolProp>
+            <stringProp name="HTTPSampler.embedded_url_re"></stringProp>
+            <stringProp name="TestPlan.comments">Detected the start of a redirect chain</stringProp>
+          </HTTPSamplerProxy>
+          <hashTree>
+            <HeaderManager guiclass="HeaderPanel" testclass="HeaderManager" testname="HTTP Header Manager" enabled="true">
+              <collectionProp name="HeaderManager.headers">
+                <elementProp name="Content-Type" elementType="Header">
+                  <stringProp name="Header.name">Content-Type</stringProp>
+                  <stringProp name="Header.value">application/x-www-form-urlencoded</stringProp>
+                </elementProp>
+                <elementProp name="Accept-Language" elementType="Header">
+                  <stringProp name="Header.name">Accept-Language</stringProp>
+                  <stringProp name="Header.value">en-US,en;q=0.5</stringProp>
+                </elementProp>
+                <elementProp name="Accept" elementType="Header">
+                  <stringProp name="Header.name">Accept</stringProp>
+                  <stringProp name="Header.value">text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8</stringProp>
+                </elementProp>
+                <elementProp name="User-Agent" elementType="Header">
+                  <stringProp name="Header.name">User-Agent</stringProp>
+                  <stringProp name="Header.value">Mozilla/5.0 (Windows NT 6.1; WOW64; rv:24.0) Gecko/20100101 Firefox/24.0</stringProp>
+                </elementProp>
+                <elementProp name="Referer" elementType="Header">
+                  <stringProp name="Header.name">Referer</stringProp>
+                  <stringProp name="Header.value">https://${host}/oxauth/login</stringProp>
+                </elementProp>
+                <elementProp name="Accept-Encoding" elementType="Header">
+                  <stringProp name="Header.name">Accept-Encoding</stringProp>
+                  <stringProp name="Header.value">gzip, deflate</stringProp>
+                </elementProp>
+              </collectionProp>
+            </HeaderManager>
+            <hashTree/>
+            <JSR223PreProcessor guiclass="TestBeanGUI" testclass="JSR223PreProcessor" testname="JSR223 PreProcessor : identify user credentials" enabled="true">
+              <stringProp name="scriptLanguage">java</stringProp>
+              <stringProp name="parameters"></stringProp>
+              <stringProp name="filename"></stringProp>
+              <stringProp name="cacheKey">5747dfc9-3b64-496f-947f-e9ce907c06cd</stringProp>
+              <stringProp name="script">double weight = 0.7d;
+
+int min = 1;
+int max = 1000;
+
+int minX = 1001;
+int maxX = 100000;
+
+float chance = new Random().nextFloat();
+if (chance &lt;= weight) {
+	min = minX;
+	max = maxX;
+}
+
+int userNumber = new Random().nextInt(max - min + 1) + min;
+String username = &quot;user&quot; + userNumber;
+String username = &quot;test_user&quot;;
+
+//log.info(&quot;username: &quot; + username);
+
+//vars.put(&quot;username&quot;, username);
+
+log.info(&quot;username: &quot; + vars.get(&quot;username&quot;) + &quot;, password: &quot; + vars.get(&quot;password&quot;));
+</stringProp>
+            </JSR223PreProcessor>
+            <hashTree/>
+            <ResultCollector guiclass="ViewResultsFullVisualizer" testclass="ResultCollector" testname="View Results Tree" enabled="true">
+              <boolProp name="ResultCollector.error_logging">false</boolProp>
+              <objProp>
+                <name>saveConfig</name>
+                <value class="SampleSaveConfiguration">
+                  <time>true</time>
+                  <latency>true</latency>
+                  <timestamp>true</timestamp>
+                  <success>true</success>
+                  <label>true</label>
+                  <code>true</code>
+                  <message>true</message>
+                  <threadName>true</threadName>
+                  <dataType>true</dataType>
+                  <encoding>false</encoding>
+                  <assertions>true</assertions>
+                  <subresults>true</subresults>
+                  <responseData>false</responseData>
+                  <samplerData>false</samplerData>
+                  <xml>false</xml>
+                  <fieldNames>true</fieldNames>
+                  <responseHeaders>false</responseHeaders>
+                  <requestHeaders>false</requestHeaders>
+                  <responseDataOnError>false</responseDataOnError>
+                  <saveAssertionResultsFailureMessage>true</saveAssertionResultsFailureMessage>
+                  <assertionsResultsToSave>0</assertionsResultsToSave>
+                  <bytes>true</bytes>
+                  <threadCounts>true</threadCounts>
+                  <idleTime>true</idleTime>
+                </value>
+              </objProp>
+              <stringProp name="filename"></stringProp>
+            </ResultCollector>
+            <hashTree/>
+            <RegexExtractor guiclass="RegexExtractorGui" testclass="RegexExtractor" testname="Regular Expression Extractor" enabled="true">
+              <stringProp name="RegexExtractor.useHeaders">true</stringProp>
+              <stringProp name="RegexExtractor.refname">redirect_to</stringProp>
+              <stringProp name="RegexExtractor.regex">${location_regexp}</stringProp>
+              <stringProp name="RegexExtractor.template">$1$</stringProp>
+              <stringProp name="RegexExtractor.default">NOT_FOUND</stringProp>
+              <stringProp name="RegexExtractor.match_number">1</stringProp>
+              <stringProp name="Sample.scope">all</stringProp>
+            </RegexExtractor>
+            <hashTree/>
+            <DebugPostProcessor guiclass="TestBeanGUI" testclass="DebugPostProcessor" testname="Debug PostProcessor" enabled="true">
+              <boolProp name="displayJMeterProperties">false</boolProp>
+              <boolProp name="displayJMeterVariables">true</boolProp>
+              <boolProp name="displaySamplerProperties">true</boolProp>
+              <boolProp name="displaySystemProperties">false</boolProp>
+            </DebugPostProcessor>
+            <hashTree/>
+          </hashTree>
+          <LoopController guiclass="LoopControlPanel" testclass="LoopController" testname="Loop Controller" enabled="true">
+            <boolProp name="LoopController.continue_forever">true</boolProp>
+            <stringProp name="LoopController.loops">2</stringProp>
+          </LoopController>
+          <hashTree>
+            <HTTPSamplerProxy guiclass="HttpTestSampleGui" testclass="HTTPSamplerProxy" testname="Redirects" enabled="true">
+              <elementProp name="HTTPsampler.Arguments" elementType="Arguments" guiclass="HTTPArgumentsPanel" testclass="Arguments" enabled="true">
+                <collectionProp name="Arguments.arguments"/>
+              </elementProp>
+              <stringProp name="HTTPSampler.domain"></stringProp>
+              <stringProp name="HTTPSampler.port">443</stringProp>
+              <stringProp name="HTTPSampler.connect_timeout"></stringProp>
+              <stringProp name="HTTPSampler.response_timeout"></stringProp>
+              <stringProp name="HTTPSampler.protocol"></stringProp>
+              <stringProp name="HTTPSampler.contentEncoding"></stringProp>
+              <stringProp name="HTTPSampler.path">${redirect_to}</stringProp>
+              <stringProp name="HTTPSampler.method">GET</stringProp>
+              <boolProp name="HTTPSampler.follow_redirects">false</boolProp>
+              <boolProp name="HTTPSampler.auto_redirects">false</boolProp>
+              <boolProp name="HTTPSampler.use_keepalive">true</boolProp>
+              <boolProp name="HTTPSampler.DO_MULTIPART_POST">false</boolProp>
+              <boolProp name="HTTPSampler.monitor">false</boolProp>
+              <stringProp name="HTTPSampler.embedded_url_re"></stringProp>
+            </HTTPSamplerProxy>
+            <hashTree>
+              <RegexExtractor guiclass="RegexExtractorGui" testclass="RegexExtractor" testname="Regular Expression Extractor" enabled="true">
+                <stringProp name="RegexExtractor.useHeaders">true</stringProp>
+                <stringProp name="RegexExtractor.refname">redirect_to</stringProp>
+                <stringProp name="RegexExtractor.regex">${location_regexp}</stringProp>
+                <stringProp name="RegexExtractor.template">$1$</stringProp>
+                <stringProp name="RegexExtractor.default">NOT_FOUND</stringProp>
+                <stringProp name="RegexExtractor.match_number">1</stringProp>
+                <stringProp name="Sample.scope">all</stringProp>
+              </RegexExtractor>
+              <hashTree/>
+              <JSR223PostProcessor guiclass="TestBeanGUI" testclass="JSR223PostProcessor" testname="JSR223 PostProcessor : extract code" enabled="true">
+                <stringProp name="cacheKey"></stringProp>
+                <stringProp name="filename"></stringProp>
+                <stringProp name="parameters"></stringProp>
+                <stringProp name="script">String code = &quot;&quot;;
+String redirectTo = vars.get(&quot;redirect_to&quot;);
+if (redirectTo.contains(&quot;?code=&quot;)) {
+	code = org.apache.commons.lang3.StringUtils.substringAfter(redirectTo, &quot;?code=&quot;);
+} else {
+	code = org.apache.commons.lang3.StringUtils.substringAfter(redirectTo, &quot;&amp;code=&quot;);
+}
+if (code.contains(&quot;&amp;&quot;)) {
+	code = org.apache.commons.lang3.StringUtils.substringBefore(code, &quot;&amp;&quot;);
+}
+
+vars.put(&quot;code&quot;, code);
+log.info(&quot;login post processor, code : &quot; + code + &quot;, redirect_to:&quot; + redirectTo);
+</stringProp>
+                <stringProp name="scriptLanguage">java</stringProp>
+              </JSR223PostProcessor>
+              <hashTree/>
+              <DebugPostProcessor guiclass="TestBeanGUI" testclass="DebugPostProcessor" testname="Debug PostProcessor" enabled="true">
+                <boolProp name="displayJMeterProperties">true</boolProp>
+                <boolProp name="displayJMeterVariables">true</boolProp>
+                <boolProp name="displaySamplerProperties">true</boolProp>
+                <boolProp name="displaySystemProperties">true</boolProp>
+              </DebugPostProcessor>
+              <hashTree/>
+            </hashTree>
+          </hashTree>
+          <HTTPSamplerProxy guiclass="HttpTestSampleGui" testclass="HTTPSamplerProxy" testname="/token" enabled="true">
+            <elementProp name="HTTPsampler.Arguments" elementType="Arguments" guiclass="HTTPArgumentsPanel" testclass="Arguments" enabled="true">
+              <collectionProp name="Arguments.arguments">
+                <elementProp name="code" elementType="HTTPArgument">
+                  <boolProp name="HTTPArgument.always_encode">false</boolProp>
+                  <stringProp name="Argument.value">${code}</stringProp>
+                  <stringProp name="Argument.metadata">=</stringProp>
+                  <boolProp name="HTTPArgument.use_equals">true</boolProp>
+                  <stringProp name="Argument.name">code</stringProp>
+                </elementProp>
+                <elementProp name="grant_type" elementType="HTTPArgument">
+                  <boolProp name="HTTPArgument.always_encode">false</boolProp>
+                  <stringProp name="Argument.value">authorization_code</stringProp>
+                  <stringProp name="Argument.metadata">=</stringProp>
+                  <boolProp name="HTTPArgument.use_equals">true</boolProp>
+                  <stringProp name="Argument.name">grant_type</stringProp>
+                </elementProp>
+                <elementProp name="redirect_uri" elementType="HTTPArgument">
+                  <boolProp name="HTTPArgument.always_encode">false</boolProp>
+                  <stringProp name="Argument.value">${redirect_uri}</stringProp>
+                  <stringProp name="Argument.metadata">=</stringProp>
+                  <boolProp name="HTTPArgument.use_equals">true</boolProp>
+                  <stringProp name="Argument.name">redirect_uri</stringProp>
+                </elementProp>
+              </collectionProp>
+            </elementProp>
+            <stringProp name="HTTPSampler.domain"></stringProp>
+            <stringProp name="HTTPSampler.port"></stringProp>
+            <stringProp name="HTTPSampler.connect_timeout"></stringProp>
+            <stringProp name="HTTPSampler.response_timeout"></stringProp>
+            <stringProp name="HTTPSampler.protocol"></stringProp>
+            <stringProp name="HTTPSampler.contentEncoding"></stringProp>
+            <stringProp name="HTTPSampler.path">/oxauth/restv1/token</stringProp>
+            <stringProp name="HTTPSampler.method">POST</stringProp>
+            <boolProp name="HTTPSampler.follow_redirects">true</boolProp>
+            <boolProp name="HTTPSampler.auto_redirects">false</boolProp>
+            <boolProp name="HTTPSampler.use_keepalive">false</boolProp>
+            <boolProp name="HTTPSampler.DO_MULTIPART_POST">false</boolProp>
+            <stringProp name="HTTPSampler.implementation">HttpClient4</stringProp>
+            <boolProp name="HTTPSampler.monitor">false</boolProp>
+            <stringProp name="HTTPSampler.embedded_url_re"></stringProp>
+          </HTTPSamplerProxy>
+          <hashTree>
+            <HeaderManager guiclass="HeaderPanel" testclass="HeaderManager" testname="HTTP Header Manager" enabled="true">
+              <collectionProp name="HeaderManager.headers">
+                <elementProp name="" elementType="Header">
+                  <stringProp name="Header.name">Authorization</stringProp>
+                  <stringProp name="Header.value">${client_header}</stringProp>
+                </elementProp>
+                <elementProp name="" elementType="Header">
+                  <stringProp name="Header.name">Content-Type</stringProp>
+                  <stringProp name="Header.value">application/x-www-form-urlencoded</stringProp>
+                </elementProp>
+              </collectionProp>
+            </HeaderManager>
+            <hashTree/>
+            <JSR223PreProcessor guiclass="TestBeanGUI" testclass="JSR223PreProcessor" testname="JSR223 PreProcessor : base64 client credentials " enabled="true">
+              <stringProp name="cacheKey">5747dfc9-3b64-496f-947f-e9ce907c06cd</stringProp>
+              <stringProp name="filename"></stringProp>
+              <stringProp name="parameters"></stringProp>
+              <stringProp name="script">String credentials = vars.get(&quot;client_id&quot;) + &quot;:&quot; + vars.get(&quot;client_secret&quot;);
+String clientHeader = &quot;Basic &quot; + org.apache.commons.codec.binary.Base64.encodeBase64String(credentials.getBytes(&quot;UTF-8&quot;));
+log.info(&quot;Credentials: &quot; + credentials + &quot;, clientHeader: &quot; + clientHeader);
+OUT.println(&quot;Credentials: &quot; + credentials + &quot;, clientHeader: &quot; + clientHeader);
+vars.put(&quot;client_header&quot;, clientHeader);</stringProp>
+              <stringProp name="scriptLanguage">java</stringProp>
+            </JSR223PreProcessor>
+            <hashTree/>
+            <ResultCollector guiclass="ViewResultsFullVisualizer" testclass="ResultCollector" testname="View Results Tree" enabled="true">
+              <boolProp name="ResultCollector.error_logging">false</boolProp>
+              <objProp>
+                <name>saveConfig</name>
+                <value class="SampleSaveConfiguration">
+                  <time>true</time>
+                  <latency>true</latency>
+                  <timestamp>true</timestamp>
+                  <success>true</success>
+                  <label>true</label>
+                  <code>true</code>
+                  <message>true</message>
+                  <threadName>true</threadName>
+                  <dataType>true</dataType>
+                  <encoding>false</encoding>
+                  <assertions>true</assertions>
+                  <subresults>true</subresults>
+                  <responseData>false</responseData>
+                  <samplerData>false</samplerData>
+                  <xml>false</xml>
+                  <fieldNames>true</fieldNames>
+                  <responseHeaders>false</responseHeaders>
+                  <requestHeaders>false</requestHeaders>
+                  <responseDataOnError>false</responseDataOnError>
+                  <saveAssertionResultsFailureMessage>true</saveAssertionResultsFailureMessage>
+                  <assertionsResultsToSave>0</assertionsResultsToSave>
+                  <bytes>true</bytes>
+                  <threadCounts>true</threadCounts>
+                  <idleTime>true</idleTime>
+                </value>
+              </objProp>
+              <stringProp name="filename"></stringProp>
+            </ResultCollector>
+            <hashTree/>
+            <ResponseAssertion guiclass="AssertionGui" testclass="ResponseAssertion" testname="Response Assertion" enabled="true">
+              <collectionProp name="Asserion.test_strings">
+                <stringProp name="13466530">&quot;access_token&quot;</stringProp>
+              </collectionProp>
+              <stringProp name="Assertion.test_field">Assertion.response_data</stringProp>
+              <boolProp name="Assertion.assume_success">false</boolProp>
+              <intProp name="Assertion.test_type">2</intProp>
+            </ResponseAssertion>
+            <hashTree/>
+            <JSONPostProcessor guiclass="JSONPostProcessorGui" testclass="JSONPostProcessor" testname="JSON Path PostProcessor : access_token" enabled="true">
+              <stringProp name="JSONPostProcessor.referenceNames">access_token</stringProp>
+              <stringProp name="JSONPostProcessor.jsonPathExprs">$.access_token</stringProp>
+              <stringProp name="JSONPostProcessor.match_numbers"></stringProp>
+            </JSONPostProcessor>
+            <hashTree/>
+            <JSONPostProcessor guiclass="JSONPostProcessorGui" testclass="JSONPostProcessor" testname="JSON Path PostProcessor : id_token" enabled="true">
+              <stringProp name="JSONPostProcessor.referenceNames">id_token</stringProp>
+              <stringProp name="JSONPostProcessor.jsonPathExprs">$.id_token</stringProp>
+              <stringProp name="JSONPostProcessor.match_numbers"></stringProp>
+            </JSONPostProcessor>
+            <hashTree/>
+          </hashTree>
+          <HTTPSamplerProxy guiclass="HttpTestSampleGui" testclass="HTTPSamplerProxy" testname="/user_info" enabled="false">
+            <elementProp name="HTTPsampler.Arguments" elementType="Arguments" guiclass="HTTPArgumentsPanel" testclass="Arguments" enabled="true">
+              <collectionProp name="Arguments.arguments">
+                <elementProp name="access_token" elementType="HTTPArgument">
+                  <boolProp name="HTTPArgument.always_encode">false</boolProp>
+                  <stringProp name="Argument.value">${access_token}</stringProp>
+                  <stringProp name="Argument.metadata">=</stringProp>
+                  <boolProp name="HTTPArgument.use_equals">true</boolProp>
+                  <stringProp name="Argument.name">access_token</stringProp>
+                </elementProp>
+              </collectionProp>
+            </elementProp>
+            <stringProp name="HTTPSampler.domain"></stringProp>
+            <stringProp name="HTTPSampler.port"></stringProp>
+            <stringProp name="HTTPSampler.connect_timeout"></stringProp>
+            <stringProp name="HTTPSampler.response_timeout"></stringProp>
+            <stringProp name="HTTPSampler.protocol"></stringProp>
+            <stringProp name="HTTPSampler.contentEncoding"></stringProp>
+            <stringProp name="HTTPSampler.path">/oxauth/restv1/userinfo</stringProp>
+            <stringProp name="HTTPSampler.method">POST</stringProp>
+            <boolProp name="HTTPSampler.follow_redirects">true</boolProp>
+            <boolProp name="HTTPSampler.auto_redirects">false</boolProp>
+            <boolProp name="HTTPSampler.use_keepalive">false</boolProp>
+            <boolProp name="HTTPSampler.DO_MULTIPART_POST">false</boolProp>
+            <stringProp name="HTTPSampler.implementation">HttpClient4</stringProp>
+            <boolProp name="HTTPSampler.monitor">false</boolProp>
+            <stringProp name="HTTPSampler.embedded_url_re"></stringProp>
+          </HTTPSamplerProxy>
+          <hashTree>
+            <HeaderManager guiclass="HeaderPanel" testclass="HeaderManager" testname="HTTP Header Manager" enabled="true">
+              <collectionProp name="HeaderManager.headers">
+                <elementProp name="" elementType="Header">
+                  <stringProp name="Header.name">Content-Type</stringProp>
+                  <stringProp name="Header.value">application/x-www-form-urlencoded</stringProp>
+                </elementProp>
+              </collectionProp>
+            </HeaderManager>
+            <hashTree/>
+            <ResultCollector guiclass="ViewResultsFullVisualizer" testclass="ResultCollector" testname="View Results Tree" enabled="true">
+              <boolProp name="ResultCollector.error_logging">false</boolProp>
+              <objProp>
+                <name>saveConfig</name>
+                <value class="SampleSaveConfiguration">
+                  <time>true</time>
+                  <latency>true</latency>
+                  <timestamp>true</timestamp>
+                  <success>true</success>
+                  <label>true</label>
+                  <code>true</code>
+                  <message>true</message>
+                  <threadName>true</threadName>
+                  <dataType>true</dataType>
+                  <encoding>false</encoding>
+                  <assertions>true</assertions>
+                  <subresults>true</subresults>
+                  <responseData>false</responseData>
+                  <samplerData>false</samplerData>
+                  <xml>false</xml>
+                  <fieldNames>true</fieldNames>
+                  <responseHeaders>false</responseHeaders>
+                  <requestHeaders>false</requestHeaders>
+                  <responseDataOnError>false</responseDataOnError>
+                  <saveAssertionResultsFailureMessage>true</saveAssertionResultsFailureMessage>
+                  <assertionsResultsToSave>0</assertionsResultsToSave>
+                  <bytes>true</bytes>
+                  <threadCounts>true</threadCounts>
+                  <idleTime>true</idleTime>
+                </value>
+              </objProp>
+              <stringProp name="filename"></stringProp>
+            </ResultCollector>
+            <hashTree/>
+            <JSR223PostProcessor guiclass="TestBeanGUI" testclass="JSR223PostProcessor" testname="JSR223 PostProcessor : for end_session" enabled="true">
+              <stringProp name="scriptLanguage">java</stringProp>
+              <stringProp name="parameters"></stringProp>
+              <stringProp name="filename"></stringProp>
+              <stringProp name="cacheKey"></stringProp>
+              <stringProp name="script">import org.apache.jmeter.protocol.http.control.CookieManager;
+import org.apache.jmeter.protocol.http.control.Cookie;
+import org.apache.jmeter.testelement.property.JMeterProperty;
+import org.apache.jmeter.testelement.property.CollectionProperty;
+
+CookieManager manager = sampler.getCookieManager();
+CollectionProperty collectionProperty = manager.getCookies();
+log.info(&quot;cookie collectionProperty : &quot; + collectionProperty + &quot;, size: &quot; + collectionProperty.size());
+
+Object session_state_counter = vars.get(&quot;session_state_counter&quot;);
+log.info(&quot;session_state_counter : &quot; + session_state_counter);
+
+for (int i = 0; i &lt; collectionProperty.size(); i++) {
+    JMeterProperty p = collectionProperty.get(i);
+    
+    if (&quot;session_state&quot;.equals(p.getName())) {
+        //log.info(&quot;session_state : &quot; + p.getObjectValue().getValue() + &quot;, id_token: &quot; + vars.get(&quot;id_token&quot;));
+        props.put(&quot;oic.session_state.&quot; + session_state_counter, p.getObjectValue().getValue());
+        props.put(&quot;oic.id_token.&quot; + session_state_counter, vars.get(&quot;id_token&quot;));
+        log.info(&quot;props session_state : &quot; + props.get(&quot;oic.session_state.&quot; + session_state_counter));
+        log.info(&quot;props id_token : &quot; + props.get(&quot;oic.id_token.&quot; + session_state_counter));
+    }
+}</stringProp>
+            </JSR223PostProcessor>
+            <hashTree/>
+          </hashTree>
+          <ConfigTestElement guiclass="HttpDefaultsGui" testclass="ConfigTestElement" testname="HTTP Request Defaults" enabled="true">
+            <elementProp name="HTTPsampler.Arguments" elementType="Arguments" guiclass="HTTPArgumentsPanel" testclass="Arguments" testname="User Defined Variables" enabled="true">
+              <collectionProp name="Arguments.arguments"/>
+            </elementProp>
+            <stringProp name="HTTPSampler.domain"></stringProp>
+            <stringProp name="HTTPSampler.port"></stringProp>
+            <stringProp name="HTTPSampler.connect_timeout">60000</stringProp>
+            <stringProp name="HTTPSampler.response_timeout">60000</stringProp>
+            <stringProp name="HTTPSampler.protocol"></stringProp>
+            <stringProp name="HTTPSampler.contentEncoding"></stringProp>
+            <stringProp name="HTTPSampler.path"></stringProp>
+            <stringProp name="HTTPSampler.concurrentPool">6</stringProp>
+          </ConfigTestElement>
+          <hashTree/>
+        </hashTree>
+        <ResultCollector guiclass="SummaryReport" testclass="ResultCollector" testname="Summary Report" enabled="true">
+          <boolProp name="ResultCollector.error_logging">false</boolProp>
+          <objProp>
+            <name>saveConfig</name>
+            <value class="SampleSaveConfiguration">
+              <time>true</time>
+              <latency>true</latency>
+              <timestamp>true</timestamp>
+              <success>true</success>
+              <label>true</label>
+              <code>true</code>
+              <message>true</message>
+              <threadName>true</threadName>
+              <dataType>true</dataType>
+              <encoding>false</encoding>
+              <assertions>true</assertions>
+              <subresults>true</subresults>
+              <responseData>false</responseData>
+              <samplerData>false</samplerData>
+              <xml>false</xml>
+              <fieldNames>true</fieldNames>
+              <responseHeaders>false</responseHeaders>
+              <requestHeaders>false</requestHeaders>
+              <responseDataOnError>false</responseDataOnError>
+              <saveAssertionResultsFailureMessage>true</saveAssertionResultsFailureMessage>
+              <assertionsResultsToSave>0</assertionsResultsToSave>
+              <bytes>true</bytes>
+              <threadCounts>true</threadCounts>
+              <idleTime>true</idleTime>
+            </value>
+          </objProp>
+          <stringProp name="filename"></stringProp>
+        </ResultCollector>
+        <hashTree/>
+        <ResultCollector guiclass="ViewResultsFullVisualizer" testclass="ResultCollector" testname="View Results Tree" enabled="true">
+          <boolProp name="ResultCollector.error_logging">false</boolProp>
+          <objProp>
+            <name>saveConfig</name>
+            <value class="SampleSaveConfiguration">
+              <time>true</time>
+              <latency>true</latency>
+              <timestamp>true</timestamp>
+              <success>true</success>
+              <label>true</label>
+              <code>true</code>
+              <message>true</message>
+              <threadName>true</threadName>
+              <dataType>true</dataType>
+              <encoding>false</encoding>
+              <assertions>true</assertions>
+              <subresults>true</subresults>
+              <responseData>false</responseData>
+              <samplerData>false</samplerData>
+              <xml>false</xml>
+              <fieldNames>true</fieldNames>
+              <responseHeaders>false</responseHeaders>
+              <requestHeaders>false</requestHeaders>
+              <responseDataOnError>false</responseDataOnError>
+              <saveAssertionResultsFailureMessage>true</saveAssertionResultsFailureMessage>
+              <assertionsResultsToSave>0</assertionsResultsToSave>
+              <bytes>true</bytes>
+              <threadCounts>true</threadCounts>
+              <idleTime>true</idleTime>
+            </value>
+          </objProp>
+          <stringProp name="filename"></stringProp>
+        </ResultCollector>
+        <hashTree/>
+        <ResultCollector guiclass="GraphVisualizer" testclass="ResultCollector" testname="Graph Results" enabled="true">
+          <boolProp name="ResultCollector.error_logging">false</boolProp>
+          <objProp>
+            <name>saveConfig</name>
+            <value class="SampleSaveConfiguration">
+              <time>true</time>
+              <latency>true</latency>
+              <timestamp>true</timestamp>
+              <success>true</success>
+              <label>true</label>
+              <code>true</code>
+              <message>true</message>
+              <threadName>true</threadName>
+              <dataType>true</dataType>
+              <encoding>false</encoding>
+              <assertions>true</assertions>
+              <subresults>true</subresults>
+              <responseData>false</responseData>
+              <samplerData>false</samplerData>
+              <xml>false</xml>
+              <fieldNames>true</fieldNames>
+              <responseHeaders>false</responseHeaders>
+              <requestHeaders>false</requestHeaders>
+              <responseDataOnError>false</responseDataOnError>
+              <saveAssertionResultsFailureMessage>true</saveAssertionResultsFailureMessage>
+              <assertionsResultsToSave>0</assertionsResultsToSave>
+              <bytes>true</bytes>
+              <threadCounts>true</threadCounts>
+              <idleTime>true</idleTime>
+            </value>
+          </objProp>
+          <stringProp name="filename"></stringProp>
+        </ResultCollector>
+        <hashTree/>
+        <ResultCollector guiclass="TableVisualizer" testclass="ResultCollector" testname="View Results in Table" enabled="true">
+          <boolProp name="ResultCollector.error_logging">false</boolProp>
+          <objProp>
+            <name>saveConfig</name>
+            <value class="SampleSaveConfiguration">
+              <time>true</time>
+              <latency>true</latency>
+              <timestamp>true</timestamp>
+              <success>true</success>
+              <label>true</label>
+              <code>true</code>
+              <message>true</message>
+              <threadName>true</threadName>
+              <dataType>true</dataType>
+              <encoding>false</encoding>
+              <assertions>true</assertions>
+              <subresults>true</subresults>
+              <responseData>false</responseData>
+              <samplerData>false</samplerData>
+              <xml>false</xml>
+              <fieldNames>true</fieldNames>
+              <responseHeaders>false</responseHeaders>
+              <requestHeaders>false</requestHeaders>
+              <responseDataOnError>false</responseDataOnError>
+              <saveAssertionResultsFailureMessage>true</saveAssertionResultsFailureMessage>
+              <assertionsResultsToSave>0</assertionsResultsToSave>
+              <bytes>true</bytes>
+              <threadCounts>true</threadCounts>
+              <idleTime>true</idleTime>
+            </value>
+          </objProp>
+          <stringProp name="filename"></stringProp>
+        </ResultCollector>
+        <hashTree/>
+        <ResultCollector guiclass="MonitorHealthVisualizer" testclass="ResultCollector" testname="Monitor Results" enabled="true">
+          <boolProp name="ResultCollector.error_logging">false</boolProp>
+          <objProp>
+            <name>saveConfig</name>
+            <value class="SampleSaveConfiguration">
+              <time>true</time>
+              <latency>true</latency>
+              <timestamp>true</timestamp>
+              <success>true</success>
+              <label>true</label>
+              <code>true</code>
+              <message>true</message>
+              <threadName>true</threadName>
+              <dataType>true</dataType>
+              <encoding>false</encoding>
+              <assertions>true</assertions>
+              <subresults>true</subresults>
+              <responseData>false</responseData>
+              <samplerData>false</samplerData>
+              <xml>false</xml>
+              <fieldNames>true</fieldNames>
+              <responseHeaders>false</responseHeaders>
+              <requestHeaders>false</requestHeaders>
+              <responseDataOnError>false</responseDataOnError>
+              <saveAssertionResultsFailureMessage>true</saveAssertionResultsFailureMessage>
+              <assertionsResultsToSave>0</assertionsResultsToSave>
+              <bytes>true</bytes>
+              <threadCounts>true</threadCounts>
+              <idleTime>true</idleTime>
+            </value>
+          </objProp>
+          <stringProp name="filename"></stringProp>
+        </ResultCollector>
+        <hashTree/>
+        <Summariser guiclass="SummariserGui" testclass="Summariser" testname="Generate Summary Results" enabled="true"/>
+        <hashTree/>
+      </hashTree>
+      <ThreadGroup guiclass="ThreadGroupGui" testclass="ThreadGroup" testname="End Session" enabled="false">
+        <stringProp name="ThreadGroup.on_sample_error">continue</stringProp>
+        <elementProp name="ThreadGroup.main_controller" elementType="LoopController" guiclass="LoopControlPanel" testclass="LoopController" testname="Loop Controller" enabled="true">
+          <boolProp name="LoopController.continue_forever">false</boolProp>
+          <intProp name="LoopController.loops">-1</intProp>
+        </elementProp>
+        <stringProp name="ThreadGroup.num_threads">1</stringProp>
+        <stringProp name="ThreadGroup.ramp_time">1</stringProp>
+        <longProp name="ThreadGroup.start_time">1480924764000</longProp>
+        <longProp name="ThreadGroup.end_time">1480924764000</longProp>
+        <boolProp name="ThreadGroup.scheduler">false</boolProp>
+        <stringProp name="ThreadGroup.duration"></stringProp>
+        <stringProp name="ThreadGroup.delay">3</stringProp>
+      </ThreadGroup>
+      <hashTree>
+        <CookieManager guiclass="CookiePanel" testclass="CookieManager" testname="HTTP Cookie Manager" enabled="true">
+          <collectionProp name="CookieManager.cookies"/>
+          <boolProp name="CookieManager.clearEachIteration">false</boolProp>
+          <stringProp name="CookieManager.policy">standard</stringProp>
+          <stringProp name="CookieManager.implementation">org.apache.jmeter.protocol.http.control.HC4CookieHandler</stringProp>
+        </CookieManager>
+        <hashTree/>
+        <ConstantTimer guiclass="ConstantTimerGui" testclass="ConstantTimer" testname="Constant Timer" enabled="true">
+          <stringProp name="ConstantTimer.delay">3000</stringProp>
+        </ConstantTimer>
+        <hashTree/>
+        <HTTPSamplerProxy guiclass="HttpTestSampleGui" testclass="HTTPSamplerProxy" testname="/end_session" enabled="true">
+          <elementProp name="HTTPsampler.Arguments" elementType="Arguments" guiclass="HTTPArgumentsPanel" testclass="Arguments" testname="User Defined Variables" enabled="true">
+            <collectionProp name="Arguments.arguments">
+              <elementProp name="id_token_hint" elementType="HTTPArgument">
+                <boolProp name="HTTPArgument.always_encode">false</boolProp>
+                <stringProp name="Argument.value">${id_token}</stringProp>
+                <stringProp name="Argument.metadata">=</stringProp>
+                <boolProp name="HTTPArgument.use_equals">true</boolProp>
+                <stringProp name="Argument.name">id_token_hint</stringProp>
+              </elementProp>
+            </collectionProp>
+          </elementProp>
+          <stringProp name="HTTPSampler.domain"></stringProp>
+          <stringProp name="HTTPSampler.port"></stringProp>
+          <stringProp name="HTTPSampler.connect_timeout"></stringProp>
+          <stringProp name="HTTPSampler.response_timeout"></stringProp>
+          <stringProp name="HTTPSampler.protocol"></stringProp>
+          <stringProp name="HTTPSampler.contentEncoding"></stringProp>
+          <stringProp name="HTTPSampler.path"></stringProp>
+          <stringProp name="HTTPSampler.method">GET</stringProp>
+          <boolProp name="HTTPSampler.follow_redirects">true</boolProp>
+          <boolProp name="HTTPSampler.auto_redirects">false</boolProp>
+          <boolProp name="HTTPSampler.use_keepalive">true</boolProp>
+          <boolProp name="HTTPSampler.DO_MULTIPART_POST">false</boolProp>
+          <boolProp name="HTTPSampler.monitor">false</boolProp>
+          <stringProp name="HTTPSampler.embedded_url_re"></stringProp>
+        </HTTPSamplerProxy>
+        <hashTree>
+          <JSR223PreProcessor guiclass="TestBeanGUI" testclass="JSR223PreProcessor" testname="JSR223 PreProcessor" enabled="true">
+            <stringProp name="scriptLanguage">java</stringProp>
+            <stringProp name="parameters"></stringProp>
+            <stringProp name="filename"></stringProp>
+            <stringProp name="cacheKey">5747dfc9-3b64-496f-947f-e9ce907c06cd</stringProp>
+            <stringProp name="script">import org.apache.jmeter.protocol.http.control.CookieManager;
+import org.apache.jmeter.protocol.http.control.Cookie;
+
+CookieManager manager = sampler.getCookieManager();
+
+for (Map.Entry entry : props.entrySet()) {
+	if (entry.getKey() instanceof String) {
+	    String key = entry.getKey();
+         if (key.startsWith(&quot;oic.session_state.&quot;)) {
+             String counter = key.substring(&quot;oic.session_state.&quot;.length());
+
+             log.info(&quot;PRE end session, counter : &quot; + counter + &quot;, session_state: &quot; + entry.getValue() + &quot;, props.getProperty(): &quot; + props.getProperty(&quot;oic.session_state.&quot; + counter));
+             
+             Cookie cookie = new Cookie(&quot;session_state&quot;, entry.getValue(), vars.get(&quot;host&quot;), &quot;/&quot;, false, 0);
+             manager.add(cookie); 
+
+             Object idToken = props.getProperty(&quot;oic.id_token.&quot; + counter);
+             log.info(&quot;PRE end session, id_token : &quot; + idToken);
+             vars.put(&quot;id_token&quot;, idToken);
+
+             props.remove(&quot;oic.session_state.&quot; + counter);
+             props.remove(&quot;oic.id_token.&quot; + counter);
+             break;
+         }
+	}
+}</stringProp>
+          </JSR223PreProcessor>
+          <hashTree/>
+          <ResultCollector guiclass="ViewResultsFullVisualizer" testclass="ResultCollector" testname="View Results Tree" enabled="true">
+            <boolProp name="ResultCollector.error_logging">false</boolProp>
+            <objProp>
+              <name>saveConfig</name>
+              <value class="SampleSaveConfiguration">
+                <time>true</time>
+                <latency>true</latency>
+                <timestamp>true</timestamp>
+                <success>true</success>
+                <label>true</label>
+                <code>true</code>
+                <message>true</message>
+                <threadName>true</threadName>
+                <dataType>true</dataType>
+                <encoding>false</encoding>
+                <assertions>true</assertions>
+                <subresults>true</subresults>
+                <responseData>false</responseData>
+                <samplerData>false</samplerData>
+                <xml>false</xml>
+                <fieldNames>true</fieldNames>
+                <responseHeaders>false</responseHeaders>
+                <requestHeaders>false</requestHeaders>
+                <responseDataOnError>false</responseDataOnError>
+                <saveAssertionResultsFailureMessage>true</saveAssertionResultsFailureMessage>
+                <assertionsResultsToSave>0</assertionsResultsToSave>
+                <bytes>true</bytes>
+                <threadCounts>true</threadCounts>
+                <idleTime>true</idleTime>
+              </value>
+            </objProp>
+            <stringProp name="filename"></stringProp>
+          </ResultCollector>
+          <hashTree/>
+        </hashTree>
+      </hashTree>
+      <ResultCollector guiclass="ViewResultsFullVisualizer" testclass="ResultCollector" testname="View Results Tree" enabled="true">
+        <boolProp name="ResultCollector.error_logging">false</boolProp>
+        <objProp>
+          <name>saveConfig</name>
+          <value class="SampleSaveConfiguration">
+            <time>true</time>
+            <latency>true</latency>
+            <timestamp>true</timestamp>
+            <success>true</success>
+            <label>true</label>
+            <code>true</code>
+            <message>true</message>
+            <threadName>true</threadName>
+            <dataType>true</dataType>
+            <encoding>false</encoding>
+            <assertions>true</assertions>
+            <subresults>true</subresults>
+            <responseData>false</responseData>
+            <samplerData>false</samplerData>
+            <xml>false</xml>
+            <fieldNames>true</fieldNames>
+            <responseHeaders>false</responseHeaders>
+            <requestHeaders>false</requestHeaders>
+            <responseDataOnError>false</responseDataOnError>
+            <saveAssertionResultsFailureMessage>true</saveAssertionResultsFailureMessage>
+            <assertionsResultsToSave>0</assertionsResultsToSave>
+            <bytes>true</bytes>
+            <threadCounts>true</threadCounts>
+            <idleTime>true</idleTime>
+          </value>
+        </objProp>
+        <stringProp name="filename"></stringProp>
+      </ResultCollector>
+      <hashTree/>
+      <ResultCollector guiclass="TableVisualizer" testclass="ResultCollector" testname="View Results in Table" enabled="true">
+        <boolProp name="ResultCollector.error_logging">false</boolProp>
+        <objProp>
+          <name>saveConfig</name>
+          <value class="SampleSaveConfiguration">
+            <time>true</time>
+            <latency>true</latency>
+            <timestamp>true</timestamp>
+            <success>true</success>
+            <label>true</label>
+            <code>true</code>
+            <message>true</message>
+            <threadName>true</threadName>
+            <dataType>true</dataType>
+            <encoding>false</encoding>
+            <assertions>true</assertions>
+            <subresults>true</subresults>
+            <responseData>false</responseData>
+            <samplerData>false</samplerData>
+            <xml>false</xml>
+            <fieldNames>true</fieldNames>
+            <responseHeaders>false</responseHeaders>
+            <requestHeaders>false</requestHeaders>
+            <responseDataOnError>false</responseDataOnError>
+            <saveAssertionResultsFailureMessage>true</saveAssertionResultsFailureMessage>
+            <assertionsResultsToSave>0</assertionsResultsToSave>
+            <bytes>true</bytes>
+            <threadCounts>true</threadCounts>
+            <idleTime>true</idleTime>
+          </value>
+        </objProp>
+        <stringProp name="filename"></stringProp>
+      </ResultCollector>
+      <hashTree/>
+      <ResultCollector guiclass="GraphVisualizer" testclass="ResultCollector" testname="Graph Results" enabled="true">
+        <boolProp name="ResultCollector.error_logging">false</boolProp>
+        <objProp>
+          <name>saveConfig</name>
+          <value class="SampleSaveConfiguration">
+            <time>true</time>
+            <latency>true</latency>
+            <timestamp>true</timestamp>
+            <success>true</success>
+            <label>true</label>
+            <code>true</code>
+            <message>true</message>
+            <threadName>true</threadName>
+            <dataType>true</dataType>
+            <encoding>false</encoding>
+            <assertions>true</assertions>
+            <subresults>true</subresults>
+            <responseData>false</responseData>
+            <samplerData>false</samplerData>
+            <xml>false</xml>
+            <fieldNames>true</fieldNames>
+            <responseHeaders>false</responseHeaders>
+            <requestHeaders>false</requestHeaders>
+            <responseDataOnError>false</responseDataOnError>
+            <saveAssertionResultsFailureMessage>true</saveAssertionResultsFailureMessage>
+            <assertionsResultsToSave>0</assertionsResultsToSave>
+            <bytes>true</bytes>
+            <threadCounts>true</threadCounts>
+            <idleTime>true</idleTime>
+          </value>
+        </objProp>
+        <stringProp name="filename"></stringProp>
+      </ResultCollector>
+      <hashTree/>
+      <ResultCollector guiclass="SummaryReport" testclass="ResultCollector" testname="Summary Report" enabled="true">
+        <boolProp name="ResultCollector.error_logging">false</boolProp>
+        <objProp>
+          <name>saveConfig</name>
+          <value class="SampleSaveConfiguration">
+            <time>true</time>
+            <latency>true</latency>
+            <timestamp>true</timestamp>
+            <success>true</success>
+            <label>true</label>
+            <code>true</code>
+            <message>true</message>
+            <threadName>true</threadName>
+            <dataType>true</dataType>
+            <encoding>false</encoding>
+            <assertions>true</assertions>
+            <subresults>true</subresults>
+            <responseData>false</responseData>
+            <samplerData>false</samplerData>
+            <xml>false</xml>
+            <fieldNames>true</fieldNames>
+            <responseHeaders>false</responseHeaders>
+            <requestHeaders>false</requestHeaders>
+            <responseDataOnError>false</responseDataOnError>
+            <saveAssertionResultsFailureMessage>true</saveAssertionResultsFailureMessage>
+            <assertionsResultsToSave>0</assertionsResultsToSave>
+            <bytes>true</bytes>
+            <threadCounts>true</threadCounts>
+            <idleTime>true</idleTime>
+          </value>
+        </objProp>
+        <stringProp name="filename"></stringProp>
+      </ResultCollector>
+      <hashTree/>
+      <ThreadGroup guiclass="ThreadGroupGui" testclass="ThreadGroup" testname="Client Credentials" enabled="false">
+        <stringProp name="ThreadGroup.on_sample_error">continue</stringProp>
+        <elementProp name="ThreadGroup.main_controller" elementType="LoopController" guiclass="LoopControlPanel" testclass="LoopController" testname="Loop Controller" enabled="true">
+          <boolProp name="LoopController.continue_forever">false</boolProp>
+          <stringProp name="LoopController.loops">1</stringProp>
+        </elementProp>
+        <stringProp name="ThreadGroup.num_threads">2000</stringProp>
+        <stringProp name="ThreadGroup.ramp_time">5</stringProp>
+        <longProp name="ThreadGroup.start_time">1482159304000</longProp>
+        <longProp name="ThreadGroup.end_time">1482159304000</longProp>
+        <boolProp name="ThreadGroup.scheduler">false</boolProp>
+        <stringProp name="ThreadGroup.duration"></stringProp>
+        <stringProp name="ThreadGroup.delay"></stringProp>
+      </ThreadGroup>
+      <hashTree>
+        <CookieManager guiclass="CookiePanel" testclass="CookieManager" testname="HTTP Cookie Manager" enabled="true">
+          <collectionProp name="CookieManager.cookies"/>
+          <boolProp name="CookieManager.clearEachIteration">true</boolProp>
+          <stringProp name="CookieManager.policy">standard</stringProp>
+          <stringProp name="CookieManager.implementation">org.apache.jmeter.protocol.http.control.HC4CookieHandler</stringProp>
+        </CookieManager>
+        <hashTree/>
+        <HeaderManager guiclass="HeaderPanel" testclass="HeaderManager" testname="HTTP Header Manager" enabled="true">
+          <collectionProp name="HeaderManager.headers">
+            <elementProp name="" elementType="Header">
+              <stringProp name="Header.name">Authorization</stringProp>
+              <stringProp name="Header.value">${client_header}</stringProp>
+            </elementProp>
+            <elementProp name="" elementType="Header">
+              <stringProp name="Header.name">Content-Type</stringProp>
+              <stringProp name="Header.value">application/x-www-form-urlencoded</stringProp>
+            </elementProp>
+          </collectionProp>
+        </HeaderManager>
+        <hashTree/>
+        <JSR223PreProcessor guiclass="TestBeanGUI" testclass="JSR223PreProcessor" testname="JSR223 PreProcessor" enabled="true">
+          <stringProp name="scriptLanguage">java</stringProp>
+          <stringProp name="parameters"></stringProp>
+          <stringProp name="filename"></stringProp>
+          <stringProp name="cacheKey">5747dfc9-3b64-496f-947f-e9ce907c06cd</stringProp>
+          <stringProp name="script">String credentials = vars.get(&quot;client_id&quot;) + &quot;:&quot; + vars.get(&quot;client_secret&quot;);
+String clientHeader = &quot;Basic &quot; + org.apache.commons.codec.binary.Base64.encodeBase64String(credentials.getBytes(&quot;UTF-8&quot;));
+log.info(&quot;Credentials: &quot; + credentials + &quot;, clientHeader: &quot; + clientHeader);
+OUT.println(&quot;Credentials: &quot; + credentials + &quot;, clientHeader: &quot; + clientHeader);
+vars.put(&quot;client_header&quot;, clientHeader);</stringProp>
+        </JSR223PreProcessor>
+        <hashTree/>
+        <HTTPSamplerProxy guiclass="HttpTestSampleGui" testclass="HTTPSamplerProxy" testname="Token" enabled="true">
+          <elementProp name="HTTPsampler.Arguments" elementType="Arguments" guiclass="HTTPArgumentsPanel" testclass="Arguments" testname="User Defined Variables" enabled="true">
+            <collectionProp name="Arguments.arguments">
+              <elementProp name="grant_type" elementType="HTTPArgument">
+                <boolProp name="HTTPArgument.always_encode">false</boolProp>
+                <stringProp name="Argument.value">client_credentials</stringProp>
+                <stringProp name="Argument.metadata">=</stringProp>
+                <boolProp name="HTTPArgument.use_equals">true</boolProp>
+                <stringProp name="Argument.name">grant_type</stringProp>
+              </elementProp>
+              <elementProp name="client_id" elementType="HTTPArgument">
+                <boolProp name="HTTPArgument.always_encode">false</boolProp>
+                <stringProp name="Argument.value">${client_id}</stringProp>
+                <stringProp name="Argument.metadata">=</stringProp>
+                <boolProp name="HTTPArgument.use_equals">true</boolProp>
+                <stringProp name="Argument.name">client_id</stringProp>
+              </elementProp>
+              <elementProp name="scope" elementType="HTTPArgument">
+                <boolProp name="HTTPArgument.always_encode">false</boolProp>
+                <stringProp name="Argument.value">${scope}</stringProp>
+                <stringProp name="Argument.metadata">=</stringProp>
+                <boolProp name="HTTPArgument.use_equals">true</boolProp>
+                <stringProp name="Argument.name">scope</stringProp>
+              </elementProp>
+            </collectionProp>
+          </elementProp>
+          <stringProp name="HTTPSampler.domain"></stringProp>
+          <stringProp name="HTTPSampler.port"></stringProp>
+          <stringProp name="HTTPSampler.connect_timeout"></stringProp>
+          <stringProp name="HTTPSampler.response_timeout"></stringProp>
+          <stringProp name="HTTPSampler.protocol"></stringProp>
+          <stringProp name="HTTPSampler.contentEncoding"></stringProp>
+          <stringProp name="HTTPSampler.path">/oxauth/restv1/token</stringProp>
+          <stringProp name="HTTPSampler.method">POST</stringProp>
+          <boolProp name="HTTPSampler.follow_redirects">true</boolProp>
+          <boolProp name="HTTPSampler.auto_redirects">false</boolProp>
+          <boolProp name="HTTPSampler.use_keepalive">true</boolProp>
+          <boolProp name="HTTPSampler.DO_MULTIPART_POST">false</boolProp>
+          <boolProp name="HTTPSampler.monitor">false</boolProp>
+          <stringProp name="HTTPSampler.embedded_url_re"></stringProp>
+        </HTTPSamplerProxy>
+        <hashTree/>
+        <ResultCollector guiclass="ViewResultsFullVisualizer" testclass="ResultCollector" testname="View Results Tree" enabled="true">
+          <boolProp name="ResultCollector.error_logging">false</boolProp>
+          <objProp>
+            <name>saveConfig</name>
+            <value class="SampleSaveConfiguration">
+              <time>true</time>
+              <latency>true</latency>
+              <timestamp>true</timestamp>
+              <success>true</success>
+              <label>true</label>
+              <code>true</code>
+              <message>true</message>
+              <threadName>true</threadName>
+              <dataType>true</dataType>
+              <encoding>false</encoding>
+              <assertions>true</assertions>
+              <subresults>true</subresults>
+              <responseData>false</responseData>
+              <samplerData>false</samplerData>
+              <xml>false</xml>
+              <fieldNames>true</fieldNames>
+              <responseHeaders>false</responseHeaders>
+              <requestHeaders>false</requestHeaders>
+              <responseDataOnError>false</responseDataOnError>
+              <saveAssertionResultsFailureMessage>true</saveAssertionResultsFailureMessage>
+              <assertionsResultsToSave>0</assertionsResultsToSave>
+              <bytes>true</bytes>
+              <threadCounts>true</threadCounts>
+              <idleTime>true</idleTime>
+            </value>
+          </objProp>
+          <stringProp name="filename"></stringProp>
+        </ResultCollector>
+        <hashTree/>
+        <ResultCollector guiclass="SummaryReport" testclass="ResultCollector" testname="Summary Report" enabled="true">
+          <boolProp name="ResultCollector.error_logging">false</boolProp>
+          <objProp>
+            <name>saveConfig</name>
+            <value class="SampleSaveConfiguration">
+              <time>true</time>
+              <latency>true</latency>
+              <timestamp>true</timestamp>
+              <success>true</success>
+              <label>true</label>
+              <code>true</code>
+              <message>true</message>
+              <threadName>true</threadName>
+              <dataType>true</dataType>
+              <encoding>false</encoding>
+              <assertions>true</assertions>
+              <subresults>true</subresults>
+              <responseData>false</responseData>
+              <samplerData>false</samplerData>
+              <xml>false</xml>
+              <fieldNames>true</fieldNames>
+              <responseHeaders>false</responseHeaders>
+              <requestHeaders>false</requestHeaders>
+              <responseDataOnError>false</responseDataOnError>
+              <saveAssertionResultsFailureMessage>true</saveAssertionResultsFailureMessage>
+              <assertionsResultsToSave>0</assertionsResultsToSave>
+              <bytes>true</bytes>
+              <threadCounts>true</threadCounts>
+              <idleTime>true</idleTime>
+            </value>
+          </objProp>
+          <stringProp name="filename"></stringProp>
+        </ResultCollector>
+        <hashTree/>
+      </hashTree>
+    </hashTree>
+  </hashTree>
+</jmeterTestPlan>
diff --git a/oxAuth/jmeter/test/Authorization Code Flow_xeon.jmx b/oxAuth/jmeter/test/Authorization Code Flow_xeon.jmx
new file mode 100644
index 00000000..aee4e86f
--- /dev/null
+++ b/oxAuth/jmeter/test/Authorization Code Flow_xeon.jmx	
@@ -0,0 +1,1242 @@
+<?xml version="1.0" encoding="UTF-8"?>
+<jmeterTestPlan version="1.2" properties="2.9" jmeter="3.0 r1743807">
+  <hashTree>
+    <TestPlan guiclass="TestPlanGui" testclass="TestPlan" testname="Authorization Code Flow" enabled="true">
+      <stringProp name="TestPlan.comments"></stringProp>
+      <boolProp name="TestPlan.functional_mode">false</boolProp>
+      <boolProp name="TestPlan.serialize_threadgroups">true</boolProp>
+      <elementProp name="TestPlan.user_defined_variables" elementType="Arguments" guiclass="ArgumentsPanel" testclass="Arguments" testname="User Defined Variables" enabled="true">
+        <collectionProp name="Arguments.arguments">
+          <elementProp name="host" elementType="Argument">
+            <stringProp name="Argument.name">host</stringProp>
+            <stringProp name="Argument.value">xeon.gluu.info</stringProp>
+            <stringProp name="Argument.metadata">=</stringProp>
+          </elementProp>
+          <elementProp name="scope" elementType="Argument">
+            <stringProp name="Argument.name">scope</stringProp>
+            <stringProp name="Argument.value">openid profile email user_name</stringProp>
+            <stringProp name="Argument.metadata">=</stringProp>
+          </elementProp>
+          <elementProp name="username" elementType="Argument">
+            <stringProp name="Argument.name">username</stringProp>
+            <stringProp name="Argument.value">user</stringProp>
+            <stringProp name="Argument.metadata">=</stringProp>
+          </elementProp>
+          <elementProp name="password" elementType="Argument">
+            <stringProp name="Argument.name">password</stringProp>
+            <stringProp name="Argument.value">9lQoXSINUsnP</stringProp>
+            <stringProp name="Argument.metadata">=</stringProp>
+          </elementProp>
+          <elementProp name="redirect_uri" elementType="Argument">
+            <stringProp name="Argument.name">redirect_uri</stringProp>
+            <stringProp name="Argument.value">https://xeon.gluu.info/identity/authentication/authcode</stringProp>
+            <stringProp name="Argument.metadata">=</stringProp>
+          </elementProp>
+          <elementProp name="client_id" elementType="Argument">
+            <stringProp name="Argument.name">client_id</stringProp>
+            <stringProp name="Argument.value">@!4878.7FE9.4A9F.E325!0001!914D.74AF!0008!6F80.938F.A950.A138</stringProp>
+            <stringProp name="Argument.metadata">=</stringProp>
+          </elementProp>
+          <elementProp name="client_secret" elementType="Argument">
+            <stringProp name="Argument.name">client_secret</stringProp>
+            <stringProp name="Argument.value">client_secret</stringProp>
+            <stringProp name="Argument.metadata">=</stringProp>
+          </elementProp>
+          <elementProp name="client_header" elementType="Argument">
+            <stringProp name="Argument.name">client_header</stringProp>
+            <stringProp name="Argument.value">to_override_in_jsr223</stringProp>
+            <stringProp name="Argument.metadata">=</stringProp>
+          </elementProp>
+        </collectionProp>
+      </elementProp>
+      <stringProp name="TestPlan.user_define_classpath"></stringProp>
+    </TestPlan>
+    <hashTree>
+      <ConfigTestElement guiclass="HttpDefaultsGui" testclass="ConfigTestElement" testname="HTTP Request Defaults" enabled="true">
+        <elementProp name="HTTPsampler.Arguments" elementType="Arguments" guiclass="HTTPArgumentsPanel" testclass="Arguments" testname="User Defined Variables" enabled="true">
+          <collectionProp name="Arguments.arguments"/>
+        </elementProp>
+        <stringProp name="HTTPSampler.domain">${host}</stringProp>
+        <stringProp name="HTTPSampler.port"></stringProp>
+        <stringProp name="HTTPSampler.connect_timeout">60000</stringProp>
+        <stringProp name="HTTPSampler.response_timeout">60000</stringProp>
+        <stringProp name="HTTPSampler.protocol">https</stringProp>
+        <stringProp name="HTTPSampler.contentEncoding"></stringProp>
+        <stringProp name="HTTPSampler.path"></stringProp>
+        <stringProp name="HTTPSampler.implementation">HttpClient4</stringProp>
+        <stringProp name="HTTPSampler.concurrentPool">6</stringProp>
+      </ConfigTestElement>
+      <hashTree/>
+      <ThreadGroup guiclass="ThreadGroupGui" testclass="ThreadGroup" testname="Main" enabled="true">
+        <stringProp name="ThreadGroup.on_sample_error">continue</stringProp>
+        <elementProp name="ThreadGroup.main_controller" elementType="LoopController" guiclass="LoopControlPanel" testclass="LoopController" testname="Loop Controller" enabled="true">
+          <boolProp name="LoopController.continue_forever">false</boolProp>
+          <stringProp name="LoopController.loops">2</stringProp>
+        </elementProp>
+        <stringProp name="ThreadGroup.num_threads">30</stringProp>
+        <stringProp name="ThreadGroup.ramp_time">4</stringProp>
+        <longProp name="ThreadGroup.start_time">1479823133000</longProp>
+        <longProp name="ThreadGroup.end_time">1479823133000</longProp>
+        <boolProp name="ThreadGroup.scheduler">false</boolProp>
+        <stringProp name="ThreadGroup.duration"></stringProp>
+        <stringProp name="ThreadGroup.delay"></stringProp>
+      </ThreadGroup>
+      <hashTree>
+        <GenericController guiclass="LogicControllerGui" testclass="GenericController" testname="Simple Controller" enabled="true"/>
+        <hashTree>
+          <CacheManager guiclass="CacheManagerGui" testclass="CacheManager" testname="HTTP Cache Manager" enabled="true">
+            <boolProp name="clearEachIteration">true</boolProp>
+            <boolProp name="useExpires">false</boolProp>
+          </CacheManager>
+          <hashTree/>
+          <CookieManager guiclass="CookiePanel" testclass="CookieManager" testname="HTTP Cookie Manager" enabled="true">
+            <collectionProp name="CookieManager.cookies"/>
+            <boolProp name="CookieManager.clearEachIteration">true</boolProp>
+            <stringProp name="CookieManager.policy">standard</stringProp>
+            <stringProp name="CookieManager.implementation">org.apache.jmeter.protocol.http.control.HC4CookieHandler</stringProp>
+          </CookieManager>
+          <hashTree/>
+          <CounterConfig guiclass="CounterConfigGui" testclass="CounterConfig" testname="session_state_counter" enabled="true">
+            <stringProp name="CounterConfig.start">1</stringProp>
+            <stringProp name="CounterConfig.end"></stringProp>
+            <stringProp name="CounterConfig.incr">1</stringProp>
+            <stringProp name="CounterConfig.name">session_state_counter</stringProp>
+            <stringProp name="CounterConfig.format"></stringProp>
+            <boolProp name="CounterConfig.per_user">false</boolProp>
+          </CounterConfig>
+          <hashTree/>
+          <HTTPSamplerProxy guiclass="HttpTestSampleGui" testclass="HTTPSamplerProxy" testname="/authorize" enabled="true">
+            <elementProp name="HTTPsampler.Arguments" elementType="Arguments" guiclass="HTTPArgumentsPanel" testclass="Arguments" testname="User Defined Variables" enabled="true">
+              <collectionProp name="Arguments.arguments">
+                <elementProp name="scope" elementType="HTTPArgument">
+                  <boolProp name="HTTPArgument.always_encode">true</boolProp>
+                  <stringProp name="Argument.value">${scope}</stringProp>
+                  <stringProp name="Argument.metadata">=</stringProp>
+                  <boolProp name="HTTPArgument.use_equals">true</boolProp>
+                  <stringProp name="Argument.name">scope</stringProp>
+                </elementProp>
+                <elementProp name="response_type" elementType="HTTPArgument">
+                  <boolProp name="HTTPArgument.always_encode">false</boolProp>
+                  <stringProp name="Argument.value">code</stringProp>
+                  <stringProp name="Argument.metadata">=</stringProp>
+                  <boolProp name="HTTPArgument.use_equals">true</boolProp>
+                  <stringProp name="Argument.name">response_type</stringProp>
+                </elementProp>
+                <elementProp name="nonce" elementType="HTTPArgument">
+                  <boolProp name="HTTPArgument.always_encode">false</boolProp>
+                  <stringProp name="Argument.value">nonce</stringProp>
+                  <stringProp name="Argument.metadata">=</stringProp>
+                  <boolProp name="HTTPArgument.use_equals">true</boolProp>
+                  <stringProp name="Argument.name">nonce</stringProp>
+                </elementProp>
+                <elementProp name="redirect_uri" elementType="HTTPArgument">
+                  <boolProp name="HTTPArgument.always_encode">true</boolProp>
+                  <stringProp name="Argument.value">${redirect_uri}</stringProp>
+                  <stringProp name="Argument.metadata">=</stringProp>
+                  <boolProp name="HTTPArgument.use_equals">true</boolProp>
+                  <stringProp name="Argument.name">redirect_uri</stringProp>
+                </elementProp>
+                <elementProp name="client_id" elementType="HTTPArgument">
+                  <boolProp name="HTTPArgument.always_encode">true</boolProp>
+                  <stringProp name="Argument.value">${client_id}</stringProp>
+                  <stringProp name="Argument.metadata">=</stringProp>
+                  <boolProp name="HTTPArgument.use_equals">true</boolProp>
+                  <stringProp name="Argument.name">client_id</stringProp>
+                </elementProp>
+              </collectionProp>
+            </elementProp>
+            <stringProp name="HTTPSampler.domain"></stringProp>
+            <stringProp name="HTTPSampler.port"></stringProp>
+            <stringProp name="HTTPSampler.connect_timeout"></stringProp>
+            <stringProp name="HTTPSampler.response_timeout"></stringProp>
+            <stringProp name="HTTPSampler.protocol">https</stringProp>
+            <stringProp name="HTTPSampler.contentEncoding"></stringProp>
+            <stringProp name="HTTPSampler.path">/oxauth/restv1/authorize</stringProp>
+            <stringProp name="HTTPSampler.method">GET</stringProp>
+            <boolProp name="HTTPSampler.follow_redirects">true</boolProp>
+            <boolProp name="HTTPSampler.auto_redirects">false</boolProp>
+            <boolProp name="HTTPSampler.use_keepalive">false</boolProp>
+            <boolProp name="HTTPSampler.DO_MULTIPART_POST">false</boolProp>
+            <stringProp name="HTTPSampler.implementation">HttpClient4</stringProp>
+            <boolProp name="HTTPSampler.monitor">false</boolProp>
+            <stringProp name="HTTPSampler.embedded_url_re"></stringProp>
+          </HTTPSamplerProxy>
+          <hashTree>
+            <RegexExtractor guiclass="RegexExtractorGui" testclass="RegexExtractor" testname="Regular Expression Extractor : javax.faces.FormSignature" enabled="true">
+              <stringProp name="RegexExtractor.useHeaders">false</stringProp>
+              <stringProp name="RegexExtractor.refname">javax.faces.FormSignature</stringProp>
+              <stringProp name="RegexExtractor.regex">&lt;input type=&quot;hidden&quot; name=&quot;javax.faces.FormSignature&quot; value=&quot;(.+?)&quot; /&gt;</stringProp>
+              <stringProp name="RegexExtractor.template">$1$</stringProp>
+              <stringProp name="RegexExtractor.default"></stringProp>
+              <stringProp name="RegexExtractor.match_number"></stringProp>
+            </RegexExtractor>
+            <hashTree/>
+            <RegexExtractor guiclass="RegexExtractorGui" testclass="RegexExtractor" testname="Regular Expression Extractor : javax.faces.ViewState" enabled="true">
+              <stringProp name="RegexExtractor.useHeaders">false</stringProp>
+              <stringProp name="RegexExtractor.refname">javax.faces.ViewState</stringProp>
+              <stringProp name="RegexExtractor.regex">&lt;input type=&quot;hidden&quot; name=&quot;javax.faces.ViewState&quot; id=&quot;javax.faces.ViewState&quot; value=&quot;(.+?)&quot; autocomplete=&quot;off&quot; /&gt;</stringProp>
+              <stringProp name="RegexExtractor.template">$1$</stringProp>
+              <stringProp name="RegexExtractor.default"></stringProp>
+              <stringProp name="RegexExtractor.match_number"></stringProp>
+            </RegexExtractor>
+            <hashTree/>
+            <ResultCollector guiclass="ViewResultsFullVisualizer" testclass="ResultCollector" testname="View Results Tree" enabled="true">
+              <boolProp name="ResultCollector.error_logging">false</boolProp>
+              <objProp>
+                <name>saveConfig</name>
+                <value class="SampleSaveConfiguration">
+                  <time>true</time>
+                  <latency>true</latency>
+                  <timestamp>true</timestamp>
+                  <success>true</success>
+                  <label>true</label>
+                  <code>true</code>
+                  <message>true</message>
+                  <threadName>true</threadName>
+                  <dataType>true</dataType>
+                  <encoding>false</encoding>
+                  <assertions>true</assertions>
+                  <subresults>true</subresults>
+                  <responseData>false</responseData>
+                  <samplerData>false</samplerData>
+                  <xml>false</xml>
+                  <fieldNames>true</fieldNames>
+                  <responseHeaders>false</responseHeaders>
+                  <requestHeaders>false</requestHeaders>
+                  <responseDataOnError>false</responseDataOnError>
+                  <saveAssertionResultsFailureMessage>true</saveAssertionResultsFailureMessage>
+                  <assertionsResultsToSave>0</assertionsResultsToSave>
+                  <bytes>true</bytes>
+                  <threadCounts>true</threadCounts>
+                  <idleTime>true</idleTime>
+                </value>
+              </objProp>
+              <stringProp name="filename"></stringProp>
+            </ResultCollector>
+            <hashTree/>
+          </hashTree>
+          <HTTPSamplerProxy guiclass="HttpTestSampleGui" testclass="HTTPSamplerProxy" testname="/oxauth/login" enabled="true">
+            <elementProp name="HTTPsampler.Arguments" elementType="Arguments" guiclass="HTTPArgumentsPanel" testclass="Arguments" enabled="true">
+              <collectionProp name="Arguments.arguments">
+                <elementProp name="loginForm" elementType="HTTPArgument">
+                  <boolProp name="HTTPArgument.always_encode">false</boolProp>
+                  <stringProp name="Argument.name">loginForm</stringProp>
+                  <stringProp name="Argument.value">loginForm</stringProp>
+                  <stringProp name="Argument.metadata">=</stringProp>
+                  <boolProp name="HTTPArgument.use_equals">true</boolProp>
+                </elementProp>
+                <elementProp name="javax.faces.FormSignature" elementType="HTTPArgument">
+                  <boolProp name="HTTPArgument.always_encode">true</boolProp>
+                  <stringProp name="Argument.name">javax.faces.FormSignature</stringProp>
+                  <stringProp name="Argument.value">${javax.faces.FormSignature}</stringProp>
+                  <stringProp name="Argument.metadata">=</stringProp>
+                  <boolProp name="HTTPArgument.use_equals">true</boolProp>
+                </elementProp>
+                <elementProp name="loginForm:username" elementType="HTTPArgument">
+                  <boolProp name="HTTPArgument.always_encode">true</boolProp>
+                  <stringProp name="Argument.name">loginForm:username</stringProp>
+                  <stringProp name="Argument.value">${username}</stringProp>
+                  <stringProp name="Argument.metadata">=</stringProp>
+                  <boolProp name="HTTPArgument.use_equals">true</boolProp>
+                </elementProp>
+                <elementProp name="loginForm:password" elementType="HTTPArgument">
+                  <boolProp name="HTTPArgument.always_encode">true</boolProp>
+                  <stringProp name="Argument.name">loginForm:password</stringProp>
+                  <stringProp name="Argument.value">${password}</stringProp>
+                  <stringProp name="Argument.metadata">=</stringProp>
+                  <boolProp name="HTTPArgument.use_equals">true</boolProp>
+                </elementProp>
+                <elementProp name="loginForm:loginButton" elementType="HTTPArgument">
+                  <boolProp name="HTTPArgument.always_encode">true</boolProp>
+                  <stringProp name="Argument.name">loginForm:loginButton</stringProp>
+                  <stringProp name="Argument.value">Login</stringProp>
+                  <stringProp name="Argument.metadata">=</stringProp>
+                  <boolProp name="HTTPArgument.use_equals">true</boolProp>
+                </elementProp>
+                <elementProp name="javax.faces.ViewState" elementType="HTTPArgument">
+                  <boolProp name="HTTPArgument.always_encode">true</boolProp>
+                  <stringProp name="Argument.name">javax.faces.ViewState</stringProp>
+                  <stringProp name="Argument.value">${javax.faces.ViewState}</stringProp>
+                  <stringProp name="Argument.metadata">=</stringProp>
+                  <boolProp name="HTTPArgument.use_equals">true</boolProp>
+                </elementProp>
+              </collectionProp>
+            </elementProp>
+            <stringProp name="HTTPSampler.domain"></stringProp>
+            <stringProp name="HTTPSampler.port">443</stringProp>
+            <stringProp name="HTTPSampler.connect_timeout"></stringProp>
+            <stringProp name="HTTPSampler.response_timeout"></stringProp>
+            <stringProp name="HTTPSampler.protocol">https</stringProp>
+            <stringProp name="HTTPSampler.contentEncoding">UTF-8</stringProp>
+            <stringProp name="HTTPSampler.path">/oxauth/login</stringProp>
+            <stringProp name="HTTPSampler.method">POST</stringProp>
+            <boolProp name="HTTPSampler.follow_redirects">true</boolProp>
+            <boolProp name="HTTPSampler.auto_redirects">false</boolProp>
+            <boolProp name="HTTPSampler.use_keepalive">false</boolProp>
+            <boolProp name="HTTPSampler.DO_MULTIPART_POST">false</boolProp>
+            <stringProp name="HTTPSampler.implementation">HttpClient4</stringProp>
+            <boolProp name="HTTPSampler.monitor">false</boolProp>
+            <stringProp name="HTTPSampler.embedded_url_re"></stringProp>
+            <stringProp name="TestPlan.comments">Detected the start of a redirect chain</stringProp>
+          </HTTPSamplerProxy>
+          <hashTree>
+            <HeaderManager guiclass="HeaderPanel" testclass="HeaderManager" testname="HTTP Header Manager" enabled="true">
+              <collectionProp name="HeaderManager.headers">
+                <elementProp name="Content-Type" elementType="Header">
+                  <stringProp name="Header.name">Content-Type</stringProp>
+                  <stringProp name="Header.value">application/x-www-form-urlencoded</stringProp>
+                </elementProp>
+                <elementProp name="Accept-Language" elementType="Header">
+                  <stringProp name="Header.name">Accept-Language</stringProp>
+                  <stringProp name="Header.value">en-US,en;q=0.5</stringProp>
+                </elementProp>
+                <elementProp name="Accept" elementType="Header">
+                  <stringProp name="Header.name">Accept</stringProp>
+                  <stringProp name="Header.value">text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8</stringProp>
+                </elementProp>
+                <elementProp name="User-Agent" elementType="Header">
+                  <stringProp name="Header.name">User-Agent</stringProp>
+                  <stringProp name="Header.value">Mozilla/5.0 (Windows NT 6.1; WOW64; rv:24.0) Gecko/20100101 Firefox/24.0</stringProp>
+                </elementProp>
+                <elementProp name="Referer" elementType="Header">
+                  <stringProp name="Header.name">Referer</stringProp>
+                  <stringProp name="Header.value">https://${host}/oxauth/login</stringProp>
+                </elementProp>
+                <elementProp name="Accept-Encoding" elementType="Header">
+                  <stringProp name="Header.name">Accept-Encoding</stringProp>
+                  <stringProp name="Header.value">gzip, deflate</stringProp>
+                </elementProp>
+              </collectionProp>
+            </HeaderManager>
+            <hashTree/>
+            <JSR223PreProcessor guiclass="TestBeanGUI" testclass="JSR223PreProcessor" testname="JSR223 PreProcessor : identify user credentials" enabled="true">
+              <stringProp name="scriptLanguage">java</stringProp>
+              <stringProp name="parameters"></stringProp>
+              <stringProp name="filename"></stringProp>
+              <stringProp name="cacheKey">5747dfc9-3b64-496f-947f-e9ce907c06cd</stringProp>
+              <stringProp name="script">double weight = 0.7d;
+
+int min = 1;
+int max = 1000;
+
+int minX = 1001;
+int maxX = 100000;
+
+float chance = new Random().nextFloat();
+if (chance &lt;= weight) {
+	min = minX;
+	max = maxX;
+}
+
+int userNumber = new Random().nextInt(max - min + 1) + min;
+String username = &quot;user&quot; + userNumber;
+String username = &quot;admin&quot;;
+
+log.info(&quot;username: &quot; + username);
+
+vars.put(&quot;username&quot;, username);
+</stringProp>
+            </JSR223PreProcessor>
+            <hashTree/>
+            <ResultCollector guiclass="ViewResultsFullVisualizer" testclass="ResultCollector" testname="View Results Tree" enabled="true">
+              <boolProp name="ResultCollector.error_logging">false</boolProp>
+              <objProp>
+                <name>saveConfig</name>
+                <value class="SampleSaveConfiguration">
+                  <time>true</time>
+                  <latency>true</latency>
+                  <timestamp>true</timestamp>
+                  <success>true</success>
+                  <label>true</label>
+                  <code>true</code>
+                  <message>true</message>
+                  <threadName>true</threadName>
+                  <dataType>true</dataType>
+                  <encoding>false</encoding>
+                  <assertions>true</assertions>
+                  <subresults>true</subresults>
+                  <responseData>false</responseData>
+                  <samplerData>false</samplerData>
+                  <xml>false</xml>
+                  <fieldNames>true</fieldNames>
+                  <responseHeaders>false</responseHeaders>
+                  <requestHeaders>false</requestHeaders>
+                  <responseDataOnError>false</responseDataOnError>
+                  <saveAssertionResultsFailureMessage>true</saveAssertionResultsFailureMessage>
+                  <assertionsResultsToSave>0</assertionsResultsToSave>
+                  <bytes>true</bytes>
+                  <threadCounts>true</threadCounts>
+                  <idleTime>true</idleTime>
+                </value>
+              </objProp>
+              <stringProp name="filename"></stringProp>
+            </ResultCollector>
+            <hashTree/>
+            <ResponseAssertion guiclass="AssertionGui" testclass="ResponseAssertion" testname="Response Assertion" enabled="true">
+              <collectionProp name="Asserion.test_strings">
+                <stringProp name="3059181">code</stringProp>
+              </collectionProp>
+              <stringProp name="Assertion.test_field">Assertion.sample_label</stringProp>
+              <boolProp name="Assertion.assume_success">false</boolProp>
+              <intProp name="Assertion.test_type">2</intProp>
+            </ResponseAssertion>
+            <hashTree/>
+            <JSR223PostProcessor guiclass="TestBeanGUI" testclass="JSR223PostProcessor" testname="JSR223 PostProcessor : extract code" enabled="true">
+              <stringProp name="cacheKey"></stringProp>
+              <stringProp name="filename"></stringProp>
+              <stringProp name="parameters"></stringProp>
+              <stringProp name="script">String code = &quot;&quot;;
+if (prev.getUrlAsString().contains(&quot;?code=&quot;)) {
+	code = org.apache.commons.lang3.StringUtils.substringAfter(prev.getUrlAsString(), &quot;?code=&quot;);
+} else {
+	code = org.apache.commons.lang3.StringUtils.substringAfter(prev.getUrlAsString(), &quot;&amp;code=&quot;);
+}
+if (code.contains(&quot;&amp;&quot;)) {
+	code = org.apache.commons.lang3.StringUtils.substringBefore(code, &quot;&amp;&quot;);
+}
+
+vars.put(&quot;code&quot;, code);
+log.info(&quot;login post processor, code : &quot; + code + &quot;, url:&quot; + prev.getUrlAsString());
+
+
+
+</stringProp>
+              <stringProp name="scriptLanguage">java</stringProp>
+            </JSR223PostProcessor>
+            <hashTree/>
+          </hashTree>
+          <HTTPSamplerProxy guiclass="HttpTestSampleGui" testclass="HTTPSamplerProxy" testname="/token" enabled="true">
+            <elementProp name="HTTPsampler.Arguments" elementType="Arguments" guiclass="HTTPArgumentsPanel" testclass="Arguments" enabled="true">
+              <collectionProp name="Arguments.arguments">
+                <elementProp name="code" elementType="HTTPArgument">
+                  <boolProp name="HTTPArgument.always_encode">false</boolProp>
+                  <stringProp name="Argument.value">${code}</stringProp>
+                  <stringProp name="Argument.metadata">=</stringProp>
+                  <boolProp name="HTTPArgument.use_equals">true</boolProp>
+                  <stringProp name="Argument.name">code</stringProp>
+                </elementProp>
+                <elementProp name="grant_type" elementType="HTTPArgument">
+                  <boolProp name="HTTPArgument.always_encode">false</boolProp>
+                  <stringProp name="Argument.value">authorization_code</stringProp>
+                  <stringProp name="Argument.metadata">=</stringProp>
+                  <boolProp name="HTTPArgument.use_equals">true</boolProp>
+                  <stringProp name="Argument.name">grant_type</stringProp>
+                </elementProp>
+                <elementProp name="redirect_uri" elementType="HTTPArgument">
+                  <boolProp name="HTTPArgument.always_encode">false</boolProp>
+                  <stringProp name="Argument.value">${redirect_uri}</stringProp>
+                  <stringProp name="Argument.metadata">=</stringProp>
+                  <boolProp name="HTTPArgument.use_equals">true</boolProp>
+                  <stringProp name="Argument.name">redirect_uri</stringProp>
+                </elementProp>
+              </collectionProp>
+            </elementProp>
+            <stringProp name="HTTPSampler.domain"></stringProp>
+            <stringProp name="HTTPSampler.port"></stringProp>
+            <stringProp name="HTTPSampler.connect_timeout"></stringProp>
+            <stringProp name="HTTPSampler.response_timeout"></stringProp>
+            <stringProp name="HTTPSampler.protocol"></stringProp>
+            <stringProp name="HTTPSampler.contentEncoding"></stringProp>
+            <stringProp name="HTTPSampler.path">/oxauth/restv1/token</stringProp>
+            <stringProp name="HTTPSampler.method">POST</stringProp>
+            <boolProp name="HTTPSampler.follow_redirects">true</boolProp>
+            <boolProp name="HTTPSampler.auto_redirects">false</boolProp>
+            <boolProp name="HTTPSampler.use_keepalive">false</boolProp>
+            <boolProp name="HTTPSampler.DO_MULTIPART_POST">false</boolProp>
+            <stringProp name="HTTPSampler.implementation">HttpClient4</stringProp>
+            <boolProp name="HTTPSampler.monitor">false</boolProp>
+            <stringProp name="HTTPSampler.embedded_url_re"></stringProp>
+          </HTTPSamplerProxy>
+          <hashTree>
+            <HeaderManager guiclass="HeaderPanel" testclass="HeaderManager" testname="HTTP Header Manager" enabled="true">
+              <collectionProp name="HeaderManager.headers">
+                <elementProp name="" elementType="Header">
+                  <stringProp name="Header.name">Authorization</stringProp>
+                  <stringProp name="Header.value">${client_header}</stringProp>
+                </elementProp>
+                <elementProp name="" elementType="Header">
+                  <stringProp name="Header.name">Content-Type</stringProp>
+                  <stringProp name="Header.value">application/x-www-form-urlencoded</stringProp>
+                </elementProp>
+              </collectionProp>
+            </HeaderManager>
+            <hashTree/>
+            <JSR223PreProcessor guiclass="TestBeanGUI" testclass="JSR223PreProcessor" testname="JSR223 PreProcessor : base64 client credentials " enabled="true">
+              <stringProp name="cacheKey">5747dfc9-3b64-496f-947f-e9ce907c06cd</stringProp>
+              <stringProp name="filename"></stringProp>
+              <stringProp name="parameters"></stringProp>
+              <stringProp name="script">String credentials = vars.get(&quot;client_id&quot;) + &quot;:&quot; + vars.get(&quot;client_secret&quot;);
+String clientHeader = &quot;Basic &quot; + org.apache.commons.codec.binary.Base64.encodeBase64String(credentials.getBytes(&quot;UTF-8&quot;));
+log.info(&quot;Credentials: &quot; + credentials + &quot;, clientHeader: &quot; + clientHeader);
+OUT.println(&quot;Credentials: &quot; + credentials + &quot;, clientHeader: &quot; + clientHeader);
+vars.put(&quot;client_header&quot;, clientHeader);</stringProp>
+              <stringProp name="scriptLanguage">java</stringProp>
+            </JSR223PreProcessor>
+            <hashTree/>
+            <ResultCollector guiclass="ViewResultsFullVisualizer" testclass="ResultCollector" testname="View Results Tree" enabled="true">
+              <boolProp name="ResultCollector.error_logging">false</boolProp>
+              <objProp>
+                <name>saveConfig</name>
+                <value class="SampleSaveConfiguration">
+                  <time>true</time>
+                  <latency>true</latency>
+                  <timestamp>true</timestamp>
+                  <success>true</success>
+                  <label>true</label>
+                  <code>true</code>
+                  <message>true</message>
+                  <threadName>true</threadName>
+                  <dataType>true</dataType>
+                  <encoding>false</encoding>
+                  <assertions>true</assertions>
+                  <subresults>true</subresults>
+                  <responseData>false</responseData>
+                  <samplerData>false</samplerData>
+                  <xml>false</xml>
+                  <fieldNames>true</fieldNames>
+                  <responseHeaders>false</responseHeaders>
+                  <requestHeaders>false</requestHeaders>
+                  <responseDataOnError>false</responseDataOnError>
+                  <saveAssertionResultsFailureMessage>true</saveAssertionResultsFailureMessage>
+                  <assertionsResultsToSave>0</assertionsResultsToSave>
+                  <bytes>true</bytes>
+                  <threadCounts>true</threadCounts>
+                  <idleTime>true</idleTime>
+                </value>
+              </objProp>
+              <stringProp name="filename"></stringProp>
+            </ResultCollector>
+            <hashTree/>
+            <ResponseAssertion guiclass="AssertionGui" testclass="ResponseAssertion" testname="Response Assertion" enabled="true">
+              <collectionProp name="Asserion.test_strings">
+                <stringProp name="13466530">&quot;access_token&quot;</stringProp>
+              </collectionProp>
+              <stringProp name="Assertion.test_field">Assertion.response_data</stringProp>
+              <boolProp name="Assertion.assume_success">false</boolProp>
+              <intProp name="Assertion.test_type">2</intProp>
+            </ResponseAssertion>
+            <hashTree/>
+            <JSONPostProcessor guiclass="JSONPostProcessorGui" testclass="JSONPostProcessor" testname="JSON Path PostProcessor : access_token" enabled="true">
+              <stringProp name="JSONPostProcessor.referenceNames">access_token</stringProp>
+              <stringProp name="JSONPostProcessor.jsonPathExprs">$.access_token</stringProp>
+              <stringProp name="JSONPostProcessor.match_numbers"></stringProp>
+            </JSONPostProcessor>
+            <hashTree/>
+            <JSONPostProcessor guiclass="JSONPostProcessorGui" testclass="JSONPostProcessor" testname="JSON Path PostProcessor : id_token" enabled="true">
+              <stringProp name="JSONPostProcessor.referenceNames">id_token</stringProp>
+              <stringProp name="JSONPostProcessor.jsonPathExprs">$.id_token</stringProp>
+              <stringProp name="JSONPostProcessor.match_numbers"></stringProp>
+            </JSONPostProcessor>
+            <hashTree/>
+          </hashTree>
+          <HTTPSamplerProxy guiclass="HttpTestSampleGui" testclass="HTTPSamplerProxy" testname="/user_info" enabled="true">
+            <elementProp name="HTTPsampler.Arguments" elementType="Arguments" guiclass="HTTPArgumentsPanel" testclass="Arguments" enabled="true">
+              <collectionProp name="Arguments.arguments">
+                <elementProp name="access_token" elementType="HTTPArgument">
+                  <boolProp name="HTTPArgument.always_encode">false</boolProp>
+                  <stringProp name="Argument.value">${access_token}</stringProp>
+                  <stringProp name="Argument.metadata">=</stringProp>
+                  <boolProp name="HTTPArgument.use_equals">true</boolProp>
+                  <stringProp name="Argument.name">access_token</stringProp>
+                </elementProp>
+              </collectionProp>
+            </elementProp>
+            <stringProp name="HTTPSampler.domain"></stringProp>
+            <stringProp name="HTTPSampler.port"></stringProp>
+            <stringProp name="HTTPSampler.connect_timeout"></stringProp>
+            <stringProp name="HTTPSampler.response_timeout"></stringProp>
+            <stringProp name="HTTPSampler.protocol"></stringProp>
+            <stringProp name="HTTPSampler.contentEncoding"></stringProp>
+            <stringProp name="HTTPSampler.path">/oxauth/restv1/userinfo</stringProp>
+            <stringProp name="HTTPSampler.method">POST</stringProp>
+            <boolProp name="HTTPSampler.follow_redirects">true</boolProp>
+            <boolProp name="HTTPSampler.auto_redirects">false</boolProp>
+            <boolProp name="HTTPSampler.use_keepalive">false</boolProp>
+            <boolProp name="HTTPSampler.DO_MULTIPART_POST">false</boolProp>
+            <stringProp name="HTTPSampler.implementation">HttpClient4</stringProp>
+            <boolProp name="HTTPSampler.monitor">false</boolProp>
+            <stringProp name="HTTPSampler.embedded_url_re"></stringProp>
+          </HTTPSamplerProxy>
+          <hashTree>
+            <HeaderManager guiclass="HeaderPanel" testclass="HeaderManager" testname="HTTP Header Manager" enabled="true">
+              <collectionProp name="HeaderManager.headers">
+                <elementProp name="" elementType="Header">
+                  <stringProp name="Header.name">Content-Type</stringProp>
+                  <stringProp name="Header.value">application/x-www-form-urlencoded</stringProp>
+                </elementProp>
+              </collectionProp>
+            </HeaderManager>
+            <hashTree/>
+            <ResultCollector guiclass="ViewResultsFullVisualizer" testclass="ResultCollector" testname="View Results Tree" enabled="true">
+              <boolProp name="ResultCollector.error_logging">false</boolProp>
+              <objProp>
+                <name>saveConfig</name>
+                <value class="SampleSaveConfiguration">
+                  <time>true</time>
+                  <latency>true</latency>
+                  <timestamp>true</timestamp>
+                  <success>true</success>
+                  <label>true</label>
+                  <code>true</code>
+                  <message>true</message>
+                  <threadName>true</threadName>
+                  <dataType>true</dataType>
+                  <encoding>false</encoding>
+                  <assertions>true</assertions>
+                  <subresults>true</subresults>
+                  <responseData>false</responseData>
+                  <samplerData>false</samplerData>
+                  <xml>false</xml>
+                  <fieldNames>true</fieldNames>
+                  <responseHeaders>false</responseHeaders>
+                  <requestHeaders>false</requestHeaders>
+                  <responseDataOnError>false</responseDataOnError>
+                  <saveAssertionResultsFailureMessage>true</saveAssertionResultsFailureMessage>
+                  <assertionsResultsToSave>0</assertionsResultsToSave>
+                  <bytes>true</bytes>
+                  <threadCounts>true</threadCounts>
+                  <idleTime>true</idleTime>
+                </value>
+              </objProp>
+              <stringProp name="filename"></stringProp>
+            </ResultCollector>
+            <hashTree/>
+            <JSR223PostProcessor guiclass="TestBeanGUI" testclass="JSR223PostProcessor" testname="JSR223 PostProcessor : for end_session" enabled="true">
+              <stringProp name="scriptLanguage">java</stringProp>
+              <stringProp name="parameters"></stringProp>
+              <stringProp name="filename"></stringProp>
+              <stringProp name="cacheKey"></stringProp>
+              <stringProp name="script">import org.apache.jmeter.protocol.http.control.CookieManager;
+import org.apache.jmeter.protocol.http.control.Cookie;
+import org.apache.jmeter.testelement.property.JMeterProperty;
+import org.apache.jmeter.testelement.property.CollectionProperty;
+
+CookieManager manager = sampler.getCookieManager();
+CollectionProperty collectionProperty = manager.getCookies();
+log.info(&quot;cookie collectionProperty : &quot; + collectionProperty + &quot;, size: &quot; + collectionProperty.size());
+
+Object session_state_counter = vars.get(&quot;session_state_counter&quot;);
+log.info(&quot;session_state_counter : &quot; + session_state_counter);
+
+for (int i = 0; i &lt; collectionProperty.size(); i++) {
+    JMeterProperty p = collectionProperty.get(i);
+    
+    if (&quot;session_state&quot;.equals(p.getName())) {
+        //log.info(&quot;session_state : &quot; + p.getObjectValue().getValue() + &quot;, id_token: &quot; + vars.get(&quot;id_token&quot;));
+        props.put(&quot;oic.session_state.&quot; + session_state_counter, p.getObjectValue().getValue());
+        props.put(&quot;oic.id_token.&quot; + session_state_counter, vars.get(&quot;id_token&quot;));
+        log.info(&quot;props session_state : &quot; + props.get(&quot;oic.session_state.&quot; + session_state_counter));
+        log.info(&quot;props id_token : &quot; + props.get(&quot;oic.id_token.&quot; + session_state_counter));
+    }
+}</stringProp>
+            </JSR223PostProcessor>
+            <hashTree/>
+          </hashTree>
+          <ConfigTestElement guiclass="HttpDefaultsGui" testclass="ConfigTestElement" testname="HTTP Request Defaults" enabled="true">
+            <elementProp name="HTTPsampler.Arguments" elementType="Arguments" guiclass="HTTPArgumentsPanel" testclass="Arguments" testname="User Defined Variables" enabled="true">
+              <collectionProp name="Arguments.arguments"/>
+            </elementProp>
+            <stringProp name="HTTPSampler.domain"></stringProp>
+            <stringProp name="HTTPSampler.port"></stringProp>
+            <stringProp name="HTTPSampler.connect_timeout">60000</stringProp>
+            <stringProp name="HTTPSampler.response_timeout">60000</stringProp>
+            <stringProp name="HTTPSampler.protocol"></stringProp>
+            <stringProp name="HTTPSampler.contentEncoding"></stringProp>
+            <stringProp name="HTTPSampler.path"></stringProp>
+            <stringProp name="HTTPSampler.concurrentPool">6</stringProp>
+          </ConfigTestElement>
+          <hashTree/>
+        </hashTree>
+        <ResultCollector guiclass="SummaryReport" testclass="ResultCollector" testname="Summary Report" enabled="true">
+          <boolProp name="ResultCollector.error_logging">false</boolProp>
+          <objProp>
+            <name>saveConfig</name>
+            <value class="SampleSaveConfiguration">
+              <time>true</time>
+              <latency>true</latency>
+              <timestamp>true</timestamp>
+              <success>true</success>
+              <label>true</label>
+              <code>true</code>
+              <message>true</message>
+              <threadName>true</threadName>
+              <dataType>true</dataType>
+              <encoding>false</encoding>
+              <assertions>true</assertions>
+              <subresults>true</subresults>
+              <responseData>false</responseData>
+              <samplerData>false</samplerData>
+              <xml>false</xml>
+              <fieldNames>true</fieldNames>
+              <responseHeaders>false</responseHeaders>
+              <requestHeaders>false</requestHeaders>
+              <responseDataOnError>false</responseDataOnError>
+              <saveAssertionResultsFailureMessage>true</saveAssertionResultsFailureMessage>
+              <assertionsResultsToSave>0</assertionsResultsToSave>
+              <bytes>true</bytes>
+              <threadCounts>true</threadCounts>
+              <idleTime>true</idleTime>
+            </value>
+          </objProp>
+          <stringProp name="filename"></stringProp>
+        </ResultCollector>
+        <hashTree/>
+        <ResultCollector guiclass="ViewResultsFullVisualizer" testclass="ResultCollector" testname="View Results Tree" enabled="true">
+          <boolProp name="ResultCollector.error_logging">false</boolProp>
+          <objProp>
+            <name>saveConfig</name>
+            <value class="SampleSaveConfiguration">
+              <time>true</time>
+              <latency>true</latency>
+              <timestamp>true</timestamp>
+              <success>true</success>
+              <label>true</label>
+              <code>true</code>
+              <message>true</message>
+              <threadName>true</threadName>
+              <dataType>true</dataType>
+              <encoding>false</encoding>
+              <assertions>true</assertions>
+              <subresults>true</subresults>
+              <responseData>false</responseData>
+              <samplerData>false</samplerData>
+              <xml>false</xml>
+              <fieldNames>true</fieldNames>
+              <responseHeaders>false</responseHeaders>
+              <requestHeaders>false</requestHeaders>
+              <responseDataOnError>false</responseDataOnError>
+              <saveAssertionResultsFailureMessage>true</saveAssertionResultsFailureMessage>
+              <assertionsResultsToSave>0</assertionsResultsToSave>
+              <bytes>true</bytes>
+              <threadCounts>true</threadCounts>
+              <idleTime>true</idleTime>
+            </value>
+          </objProp>
+          <stringProp name="filename"></stringProp>
+        </ResultCollector>
+        <hashTree/>
+        <ResultCollector guiclass="GraphVisualizer" testclass="ResultCollector" testname="Graph Results" enabled="true">
+          <boolProp name="ResultCollector.error_logging">false</boolProp>
+          <objProp>
+            <name>saveConfig</name>
+            <value class="SampleSaveConfiguration">
+              <time>true</time>
+              <latency>true</latency>
+              <timestamp>true</timestamp>
+              <success>true</success>
+              <label>true</label>
+              <code>true</code>
+              <message>true</message>
+              <threadName>true</threadName>
+              <dataType>true</dataType>
+              <encoding>false</encoding>
+              <assertions>true</assertions>
+              <subresults>true</subresults>
+              <responseData>false</responseData>
+              <samplerData>false</samplerData>
+              <xml>false</xml>
+              <fieldNames>true</fieldNames>
+              <responseHeaders>false</responseHeaders>
+              <requestHeaders>false</requestHeaders>
+              <responseDataOnError>false</responseDataOnError>
+              <saveAssertionResultsFailureMessage>true</saveAssertionResultsFailureMessage>
+              <assertionsResultsToSave>0</assertionsResultsToSave>
+              <bytes>true</bytes>
+              <threadCounts>true</threadCounts>
+              <idleTime>true</idleTime>
+            </value>
+          </objProp>
+          <stringProp name="filename"></stringProp>
+        </ResultCollector>
+        <hashTree/>
+        <ResultCollector guiclass="TableVisualizer" testclass="ResultCollector" testname="View Results in Table" enabled="true">
+          <boolProp name="ResultCollector.error_logging">false</boolProp>
+          <objProp>
+            <name>saveConfig</name>
+            <value class="SampleSaveConfiguration">
+              <time>true</time>
+              <latency>true</latency>
+              <timestamp>true</timestamp>
+              <success>true</success>
+              <label>true</label>
+              <code>true</code>
+              <message>true</message>
+              <threadName>true</threadName>
+              <dataType>true</dataType>
+              <encoding>false</encoding>
+              <assertions>true</assertions>
+              <subresults>true</subresults>
+              <responseData>false</responseData>
+              <samplerData>false</samplerData>
+              <xml>false</xml>
+              <fieldNames>true</fieldNames>
+              <responseHeaders>false</responseHeaders>
+              <requestHeaders>false</requestHeaders>
+              <responseDataOnError>false</responseDataOnError>
+              <saveAssertionResultsFailureMessage>true</saveAssertionResultsFailureMessage>
+              <assertionsResultsToSave>0</assertionsResultsToSave>
+              <bytes>true</bytes>
+              <threadCounts>true</threadCounts>
+              <idleTime>true</idleTime>
+            </value>
+          </objProp>
+          <stringProp name="filename"></stringProp>
+        </ResultCollector>
+        <hashTree/>
+        <ResultCollector guiclass="MonitorHealthVisualizer" testclass="ResultCollector" testname="Monitor Results" enabled="true">
+          <boolProp name="ResultCollector.error_logging">false</boolProp>
+          <objProp>
+            <name>saveConfig</name>
+            <value class="SampleSaveConfiguration">
+              <time>true</time>
+              <latency>true</latency>
+              <timestamp>true</timestamp>
+              <success>true</success>
+              <label>true</label>
+              <code>true</code>
+              <message>true</message>
+              <threadName>true</threadName>
+              <dataType>true</dataType>
+              <encoding>false</encoding>
+              <assertions>true</assertions>
+              <subresults>true</subresults>
+              <responseData>false</responseData>
+              <samplerData>false</samplerData>
+              <xml>false</xml>
+              <fieldNames>true</fieldNames>
+              <responseHeaders>false</responseHeaders>
+              <requestHeaders>false</requestHeaders>
+              <responseDataOnError>false</responseDataOnError>
+              <saveAssertionResultsFailureMessage>true</saveAssertionResultsFailureMessage>
+              <assertionsResultsToSave>0</assertionsResultsToSave>
+              <bytes>true</bytes>
+              <threadCounts>true</threadCounts>
+              <idleTime>true</idleTime>
+            </value>
+          </objProp>
+          <stringProp name="filename"></stringProp>
+        </ResultCollector>
+        <hashTree/>
+        <Summariser guiclass="SummariserGui" testclass="Summariser" testname="Generate Summary Results" enabled="true"/>
+        <hashTree/>
+      </hashTree>
+      <ThreadGroup guiclass="ThreadGroupGui" testclass="ThreadGroup" testname="End Session" enabled="false">
+        <stringProp name="ThreadGroup.on_sample_error">continue</stringProp>
+        <elementProp name="ThreadGroup.main_controller" elementType="LoopController" guiclass="LoopControlPanel" testclass="LoopController" testname="Loop Controller" enabled="true">
+          <boolProp name="LoopController.continue_forever">false</boolProp>
+          <intProp name="LoopController.loops">-1</intProp>
+        </elementProp>
+        <stringProp name="ThreadGroup.num_threads">1</stringProp>
+        <stringProp name="ThreadGroup.ramp_time">1</stringProp>
+        <longProp name="ThreadGroup.start_time">1480924764000</longProp>
+        <longProp name="ThreadGroup.end_time">1480924764000</longProp>
+        <boolProp name="ThreadGroup.scheduler">false</boolProp>
+        <stringProp name="ThreadGroup.duration"></stringProp>
+        <stringProp name="ThreadGroup.delay">3</stringProp>
+      </ThreadGroup>
+      <hashTree>
+        <CookieManager guiclass="CookiePanel" testclass="CookieManager" testname="HTTP Cookie Manager" enabled="true">
+          <collectionProp name="CookieManager.cookies"/>
+          <boolProp name="CookieManager.clearEachIteration">false</boolProp>
+          <stringProp name="CookieManager.policy">standard</stringProp>
+          <stringProp name="CookieManager.implementation">org.apache.jmeter.protocol.http.control.HC4CookieHandler</stringProp>
+        </CookieManager>
+        <hashTree/>
+        <ConstantTimer guiclass="ConstantTimerGui" testclass="ConstantTimer" testname="Constant Timer" enabled="true">
+          <stringProp name="ConstantTimer.delay">3000</stringProp>
+        </ConstantTimer>
+        <hashTree/>
+        <HTTPSamplerProxy guiclass="HttpTestSampleGui" testclass="HTTPSamplerProxy" testname="/end_session" enabled="true">
+          <elementProp name="HTTPsampler.Arguments" elementType="Arguments" guiclass="HTTPArgumentsPanel" testclass="Arguments" testname="User Defined Variables" enabled="true">
+            <collectionProp name="Arguments.arguments">
+              <elementProp name="id_token_hint" elementType="HTTPArgument">
+                <boolProp name="HTTPArgument.always_encode">false</boolProp>
+                <stringProp name="Argument.value">${id_token}</stringProp>
+                <stringProp name="Argument.metadata">=</stringProp>
+                <boolProp name="HTTPArgument.use_equals">true</boolProp>
+                <stringProp name="Argument.name">id_token_hint</stringProp>
+              </elementProp>
+            </collectionProp>
+          </elementProp>
+          <stringProp name="HTTPSampler.domain"></stringProp>
+          <stringProp name="HTTPSampler.port"></stringProp>
+          <stringProp name="HTTPSampler.connect_timeout"></stringProp>
+          <stringProp name="HTTPSampler.response_timeout"></stringProp>
+          <stringProp name="HTTPSampler.protocol"></stringProp>
+          <stringProp name="HTTPSampler.contentEncoding"></stringProp>
+          <stringProp name="HTTPSampler.path"></stringProp>
+          <stringProp name="HTTPSampler.method">GET</stringProp>
+          <boolProp name="HTTPSampler.follow_redirects">true</boolProp>
+          <boolProp name="HTTPSampler.auto_redirects">false</boolProp>
+          <boolProp name="HTTPSampler.use_keepalive">true</boolProp>
+          <boolProp name="HTTPSampler.DO_MULTIPART_POST">false</boolProp>
+          <boolProp name="HTTPSampler.monitor">false</boolProp>
+          <stringProp name="HTTPSampler.embedded_url_re"></stringProp>
+        </HTTPSamplerProxy>
+        <hashTree>
+          <JSR223PreProcessor guiclass="TestBeanGUI" testclass="JSR223PreProcessor" testname="JSR223 PreProcessor" enabled="true">
+            <stringProp name="scriptLanguage">java</stringProp>
+            <stringProp name="parameters"></stringProp>
+            <stringProp name="filename"></stringProp>
+            <stringProp name="cacheKey">5747dfc9-3b64-496f-947f-e9ce907c06cd</stringProp>
+            <stringProp name="script">import org.apache.jmeter.protocol.http.control.CookieManager;
+import org.apache.jmeter.protocol.http.control.Cookie;
+
+CookieManager manager = sampler.getCookieManager();
+
+for (Map.Entry entry : props.entrySet()) {
+	if (entry.getKey() instanceof String) {
+	    String key = entry.getKey();
+         if (key.startsWith(&quot;oic.session_state.&quot;)) {
+             String counter = key.substring(&quot;oic.session_state.&quot;.length());
+
+             log.info(&quot;PRE end session, counter : &quot; + counter + &quot;, session_state: &quot; + entry.getValue() + &quot;, props.getProperty(): &quot; + props.getProperty(&quot;oic.session_state.&quot; + counter));
+             
+             Cookie cookie = new Cookie(&quot;session_state&quot;, entry.getValue(), vars.get(&quot;host&quot;), &quot;/&quot;, false, 0);
+             manager.add(cookie); 
+
+             Object idToken = props.getProperty(&quot;oic.id_token.&quot; + counter);
+             log.info(&quot;PRE end session, id_token : &quot; + idToken);
+             vars.put(&quot;id_token&quot;, idToken);
+
+             props.remove(&quot;oic.session_state.&quot; + counter);
+             props.remove(&quot;oic.id_token.&quot; + counter);
+             break;
+         }
+	}
+}</stringProp>
+          </JSR223PreProcessor>
+          <hashTree/>
+          <ResultCollector guiclass="ViewResultsFullVisualizer" testclass="ResultCollector" testname="View Results Tree" enabled="true">
+            <boolProp name="ResultCollector.error_logging">false</boolProp>
+            <objProp>
+              <name>saveConfig</name>
+              <value class="SampleSaveConfiguration">
+                <time>true</time>
+                <latency>true</latency>
+                <timestamp>true</timestamp>
+                <success>true</success>
+                <label>true</label>
+                <code>true</code>
+                <message>true</message>
+                <threadName>true</threadName>
+                <dataType>true</dataType>
+                <encoding>false</encoding>
+                <assertions>true</assertions>
+                <subresults>true</subresults>
+                <responseData>false</responseData>
+                <samplerData>false</samplerData>
+                <xml>false</xml>
+                <fieldNames>true</fieldNames>
+                <responseHeaders>false</responseHeaders>
+                <requestHeaders>false</requestHeaders>
+                <responseDataOnError>false</responseDataOnError>
+                <saveAssertionResultsFailureMessage>true</saveAssertionResultsFailureMessage>
+                <assertionsResultsToSave>0</assertionsResultsToSave>
+                <bytes>true</bytes>
+                <threadCounts>true</threadCounts>
+                <idleTime>true</idleTime>
+              </value>
+            </objProp>
+            <stringProp name="filename"></stringProp>
+          </ResultCollector>
+          <hashTree/>
+        </hashTree>
+      </hashTree>
+      <ResultCollector guiclass="ViewResultsFullVisualizer" testclass="ResultCollector" testname="View Results Tree" enabled="true">
+        <boolProp name="ResultCollector.error_logging">false</boolProp>
+        <objProp>
+          <name>saveConfig</name>
+          <value class="SampleSaveConfiguration">
+            <time>true</time>
+            <latency>true</latency>
+            <timestamp>true</timestamp>
+            <success>true</success>
+            <label>true</label>
+            <code>true</code>
+            <message>true</message>
+            <threadName>true</threadName>
+            <dataType>true</dataType>
+            <encoding>false</encoding>
+            <assertions>true</assertions>
+            <subresults>true</subresults>
+            <responseData>false</responseData>
+            <samplerData>false</samplerData>
+            <xml>false</xml>
+            <fieldNames>true</fieldNames>
+            <responseHeaders>false</responseHeaders>
+            <requestHeaders>false</requestHeaders>
+            <responseDataOnError>false</responseDataOnError>
+            <saveAssertionResultsFailureMessage>true</saveAssertionResultsFailureMessage>
+            <assertionsResultsToSave>0</assertionsResultsToSave>
+            <bytes>true</bytes>
+            <threadCounts>true</threadCounts>
+            <idleTime>true</idleTime>
+          </value>
+        </objProp>
+        <stringProp name="filename"></stringProp>
+      </ResultCollector>
+      <hashTree/>
+      <ResultCollector guiclass="TableVisualizer" testclass="ResultCollector" testname="View Results in Table" enabled="true">
+        <boolProp name="ResultCollector.error_logging">false</boolProp>
+        <objProp>
+          <name>saveConfig</name>
+          <value class="SampleSaveConfiguration">
+            <time>true</time>
+            <latency>true</latency>
+            <timestamp>true</timestamp>
+            <success>true</success>
+            <label>true</label>
+            <code>true</code>
+            <message>true</message>
+            <threadName>true</threadName>
+            <dataType>true</dataType>
+            <encoding>false</encoding>
+            <assertions>true</assertions>
+            <subresults>true</subresults>
+            <responseData>false</responseData>
+            <samplerData>false</samplerData>
+            <xml>false</xml>
+            <fieldNames>true</fieldNames>
+            <responseHeaders>false</responseHeaders>
+            <requestHeaders>false</requestHeaders>
+            <responseDataOnError>false</responseDataOnError>
+            <saveAssertionResultsFailureMessage>true</saveAssertionResultsFailureMessage>
+            <assertionsResultsToSave>0</assertionsResultsToSave>
+            <bytes>true</bytes>
+            <threadCounts>true</threadCounts>
+            <idleTime>true</idleTime>
+          </value>
+        </objProp>
+        <stringProp name="filename"></stringProp>
+      </ResultCollector>
+      <hashTree/>
+      <ResultCollector guiclass="GraphVisualizer" testclass="ResultCollector" testname="Graph Results" enabled="true">
+        <boolProp name="ResultCollector.error_logging">false</boolProp>
+        <objProp>
+          <name>saveConfig</name>
+          <value class="SampleSaveConfiguration">
+            <time>true</time>
+            <latency>true</latency>
+            <timestamp>true</timestamp>
+            <success>true</success>
+            <label>true</label>
+            <code>true</code>
+            <message>true</message>
+            <threadName>true</threadName>
+            <dataType>true</dataType>
+            <encoding>false</encoding>
+            <assertions>true</assertions>
+            <subresults>true</subresults>
+            <responseData>false</responseData>
+            <samplerData>false</samplerData>
+            <xml>false</xml>
+            <fieldNames>true</fieldNames>
+            <responseHeaders>false</responseHeaders>
+            <requestHeaders>false</requestHeaders>
+            <responseDataOnError>false</responseDataOnError>
+            <saveAssertionResultsFailureMessage>true</saveAssertionResultsFailureMessage>
+            <assertionsResultsToSave>0</assertionsResultsToSave>
+            <bytes>true</bytes>
+            <threadCounts>true</threadCounts>
+            <idleTime>true</idleTime>
+          </value>
+        </objProp>
+        <stringProp name="filename"></stringProp>
+      </ResultCollector>
+      <hashTree/>
+      <ResultCollector guiclass="SummaryReport" testclass="ResultCollector" testname="Summary Report" enabled="true">
+        <boolProp name="ResultCollector.error_logging">false</boolProp>
+        <objProp>
+          <name>saveConfig</name>
+          <value class="SampleSaveConfiguration">
+            <time>true</time>
+            <latency>true</latency>
+            <timestamp>true</timestamp>
+            <success>true</success>
+            <label>true</label>
+            <code>true</code>
+            <message>true</message>
+            <threadName>true</threadName>
+            <dataType>true</dataType>
+            <encoding>false</encoding>
+            <assertions>true</assertions>
+            <subresults>true</subresults>
+            <responseData>false</responseData>
+            <samplerData>false</samplerData>
+            <xml>false</xml>
+            <fieldNames>true</fieldNames>
+            <responseHeaders>false</responseHeaders>
+            <requestHeaders>false</requestHeaders>
+            <responseDataOnError>false</responseDataOnError>
+            <saveAssertionResultsFailureMessage>true</saveAssertionResultsFailureMessage>
+            <assertionsResultsToSave>0</assertionsResultsToSave>
+            <bytes>true</bytes>
+            <threadCounts>true</threadCounts>
+            <idleTime>true</idleTime>
+          </value>
+        </objProp>
+        <stringProp name="filename"></stringProp>
+      </ResultCollector>
+      <hashTree/>
+      <ThreadGroup guiclass="ThreadGroupGui" testclass="ThreadGroup" testname="Client Credentials" enabled="false">
+        <stringProp name="ThreadGroup.on_sample_error">continue</stringProp>
+        <elementProp name="ThreadGroup.main_controller" elementType="LoopController" guiclass="LoopControlPanel" testclass="LoopController" testname="Loop Controller" enabled="true">
+          <boolProp name="LoopController.continue_forever">false</boolProp>
+          <stringProp name="LoopController.loops">1</stringProp>
+        </elementProp>
+        <stringProp name="ThreadGroup.num_threads">2000</stringProp>
+        <stringProp name="ThreadGroup.ramp_time">5</stringProp>
+        <longProp name="ThreadGroup.start_time">1482159304000</longProp>
+        <longProp name="ThreadGroup.end_time">1482159304000</longProp>
+        <boolProp name="ThreadGroup.scheduler">false</boolProp>
+        <stringProp name="ThreadGroup.duration"></stringProp>
+        <stringProp name="ThreadGroup.delay"></stringProp>
+      </ThreadGroup>
+      <hashTree>
+        <CookieManager guiclass="CookiePanel" testclass="CookieManager" testname="HTTP Cookie Manager" enabled="true">
+          <collectionProp name="CookieManager.cookies"/>
+          <boolProp name="CookieManager.clearEachIteration">true</boolProp>
+          <stringProp name="CookieManager.policy">standard</stringProp>
+          <stringProp name="CookieManager.implementation">org.apache.jmeter.protocol.http.control.HC4CookieHandler</stringProp>
+        </CookieManager>
+        <hashTree/>
+        <HeaderManager guiclass="HeaderPanel" testclass="HeaderManager" testname="HTTP Header Manager" enabled="true">
+          <collectionProp name="HeaderManager.headers">
+            <elementProp name="" elementType="Header">
+              <stringProp name="Header.name">Authorization</stringProp>
+              <stringProp name="Header.value">${client_header}</stringProp>
+            </elementProp>
+            <elementProp name="" elementType="Header">
+              <stringProp name="Header.name">Content-Type</stringProp>
+              <stringProp name="Header.value">application/x-www-form-urlencoded</stringProp>
+            </elementProp>
+          </collectionProp>
+        </HeaderManager>
+        <hashTree/>
+        <JSR223PreProcessor guiclass="TestBeanGUI" testclass="JSR223PreProcessor" testname="JSR223 PreProcessor" enabled="true">
+          <stringProp name="scriptLanguage">java</stringProp>
+          <stringProp name="parameters"></stringProp>
+          <stringProp name="filename"></stringProp>
+          <stringProp name="cacheKey">5747dfc9-3b64-496f-947f-e9ce907c06cd</stringProp>
+          <stringProp name="script">String credentials = vars.get(&quot;client_id&quot;) + &quot;:&quot; + vars.get(&quot;client_secret&quot;);
+String clientHeader = &quot;Basic &quot; + org.apache.commons.codec.binary.Base64.encodeBase64String(credentials.getBytes(&quot;UTF-8&quot;));
+log.info(&quot;Credentials: &quot; + credentials + &quot;, clientHeader: &quot; + clientHeader);
+OUT.println(&quot;Credentials: &quot; + credentials + &quot;, clientHeader: &quot; + clientHeader);
+vars.put(&quot;client_header&quot;, clientHeader);</stringProp>
+        </JSR223PreProcessor>
+        <hashTree/>
+        <HTTPSamplerProxy guiclass="HttpTestSampleGui" testclass="HTTPSamplerProxy" testname="Token" enabled="true">
+          <elementProp name="HTTPsampler.Arguments" elementType="Arguments" guiclass="HTTPArgumentsPanel" testclass="Arguments" testname="User Defined Variables" enabled="true">
+            <collectionProp name="Arguments.arguments">
+              <elementProp name="grant_type" elementType="HTTPArgument">
+                <boolProp name="HTTPArgument.always_encode">false</boolProp>
+                <stringProp name="Argument.value">client_credentials</stringProp>
+                <stringProp name="Argument.metadata">=</stringProp>
+                <boolProp name="HTTPArgument.use_equals">true</boolProp>
+                <stringProp name="Argument.name">grant_type</stringProp>
+              </elementProp>
+              <elementProp name="client_id" elementType="HTTPArgument">
+                <boolProp name="HTTPArgument.always_encode">false</boolProp>
+                <stringProp name="Argument.value">${client_id}</stringProp>
+                <stringProp name="Argument.metadata">=</stringProp>
+                <boolProp name="HTTPArgument.use_equals">true</boolProp>
+                <stringProp name="Argument.name">client_id</stringProp>
+              </elementProp>
+              <elementProp name="scope" elementType="HTTPArgument">
+                <boolProp name="HTTPArgument.always_encode">false</boolProp>
+                <stringProp name="Argument.value">${scope}</stringProp>
+                <stringProp name="Argument.metadata">=</stringProp>
+                <boolProp name="HTTPArgument.use_equals">true</boolProp>
+                <stringProp name="Argument.name">scope</stringProp>
+              </elementProp>
+            </collectionProp>
+          </elementProp>
+          <stringProp name="HTTPSampler.domain"></stringProp>
+          <stringProp name="HTTPSampler.port"></stringProp>
+          <stringProp name="HTTPSampler.connect_timeout"></stringProp>
+          <stringProp name="HTTPSampler.response_timeout"></stringProp>
+          <stringProp name="HTTPSampler.protocol"></stringProp>
+          <stringProp name="HTTPSampler.contentEncoding"></stringProp>
+          <stringProp name="HTTPSampler.path">/oxauth/restv1/token</stringProp>
+          <stringProp name="HTTPSampler.method">POST</stringProp>
+          <boolProp name="HTTPSampler.follow_redirects">true</boolProp>
+          <boolProp name="HTTPSampler.auto_redirects">false</boolProp>
+          <boolProp name="HTTPSampler.use_keepalive">true</boolProp>
+          <boolProp name="HTTPSampler.DO_MULTIPART_POST">false</boolProp>
+          <boolProp name="HTTPSampler.monitor">false</boolProp>
+          <stringProp name="HTTPSampler.embedded_url_re"></stringProp>
+        </HTTPSamplerProxy>
+        <hashTree/>
+        <ResultCollector guiclass="ViewResultsFullVisualizer" testclass="ResultCollector" testname="View Results Tree" enabled="true">
+          <boolProp name="ResultCollector.error_logging">false</boolProp>
+          <objProp>
+            <name>saveConfig</name>
+            <value class="SampleSaveConfiguration">
+              <time>true</time>
+              <latency>true</latency>
+              <timestamp>true</timestamp>
+              <success>true</success>
+              <label>true</label>
+              <code>true</code>
+              <message>true</message>
+              <threadName>true</threadName>
+              <dataType>true</dataType>
+              <encoding>false</encoding>
+              <assertions>true</assertions>
+              <subresults>true</subresults>
+              <responseData>false</responseData>
+              <samplerData>false</samplerData>
+              <xml>false</xml>
+              <fieldNames>true</fieldNames>
+              <responseHeaders>false</responseHeaders>
+              <requestHeaders>false</requestHeaders>
+              <responseDataOnError>false</responseDataOnError>
+              <saveAssertionResultsFailureMessage>true</saveAssertionResultsFailureMessage>
+              <assertionsResultsToSave>0</assertionsResultsToSave>
+              <bytes>true</bytes>
+              <threadCounts>true</threadCounts>
+              <idleTime>true</idleTime>
+            </value>
+          </objProp>
+          <stringProp name="filename"></stringProp>
+        </ResultCollector>
+        <hashTree/>
+        <ResultCollector guiclass="SummaryReport" testclass="ResultCollector" testname="Summary Report" enabled="true">
+          <boolProp name="ResultCollector.error_logging">false</boolProp>
+          <objProp>
+            <name>saveConfig</name>
+            <value class="SampleSaveConfiguration">
+              <time>true</time>
+              <latency>true</latency>
+              <timestamp>true</timestamp>
+              <success>true</success>
+              <label>true</label>
+              <code>true</code>
+              <message>true</message>
+              <threadName>true</threadName>
+              <dataType>true</dataType>
+              <encoding>false</encoding>
+              <assertions>true</assertions>
+              <subresults>true</subresults>
+              <responseData>false</responseData>
+              <samplerData>false</samplerData>
+              <xml>false</xml>
+              <fieldNames>true</fieldNames>
+              <responseHeaders>false</responseHeaders>
+              <requestHeaders>false</requestHeaders>
+              <responseDataOnError>false</responseDataOnError>
+              <saveAssertionResultsFailureMessage>true</saveAssertionResultsFailureMessage>
+              <assertionsResultsToSave>0</assertionsResultsToSave>
+              <bytes>true</bytes>
+              <threadCounts>true</threadCounts>
+              <idleTime>true</idleTime>
+            </value>
+          </objProp>
+          <stringProp name="filename"></stringProp>
+        </ResultCollector>
+        <hashTree/>
+      </hashTree>
+    </hashTree>
+  </hashTree>
+</jmeterTestPlan>
diff --git a/oxAuth/jmeter/test/Authorization Code Flow_xeon_client_credentials.jmx b/oxAuth/jmeter/test/Authorization Code Flow_xeon_client_credentials.jmx
new file mode 100644
index 00000000..7e7c69cb
--- /dev/null
+++ b/oxAuth/jmeter/test/Authorization Code Flow_xeon_client_credentials.jmx	
@@ -0,0 +1,625 @@
+<?xml version="1.0" encoding="UTF-8"?>
+<jmeterTestPlan version="1.2" properties="3.1" jmeter="3.1 r1770033">
+  <hashTree>
+    <TestPlan guiclass="TestPlanGui" testclass="TestPlan" testname="Authorization Code Flow" enabled="true">
+      <stringProp name="TestPlan.comments"></stringProp>
+      <boolProp name="TestPlan.functional_mode">false</boolProp>
+      <boolProp name="TestPlan.serialize_threadgroups">true</boolProp>
+      <elementProp name="TestPlan.user_defined_variables" elementType="Arguments" guiclass="ArgumentsPanel" testclass="Arguments" testname="User Defined Variables" enabled="true">
+        <collectionProp name="Arguments.arguments">
+          <elementProp name="host" elementType="Argument">
+            <stringProp name="Argument.name">host</stringProp>
+            <stringProp name="Argument.value">xeon.gluu.info</stringProp>
+            <stringProp name="Argument.metadata">=</stringProp>
+          </elementProp>
+          <elementProp name="scope" elementType="Argument">
+            <stringProp name="Argument.name">scope</stringProp>
+            <stringProp name="Argument.value">openid profile email user_name</stringProp>
+            <stringProp name="Argument.metadata">=</stringProp>
+          </elementProp>
+          <elementProp name="username" elementType="Argument">
+            <stringProp name="Argument.name">username</stringProp>
+            <stringProp name="Argument.value">user</stringProp>
+            <stringProp name="Argument.metadata">=</stringProp>
+          </elementProp>
+          <elementProp name="password" elementType="Argument">
+            <stringProp name="Argument.name">password</stringProp>
+            <stringProp name="Argument.value">9lQoXSINUsnP</stringProp>
+            <stringProp name="Argument.metadata">=</stringProp>
+          </elementProp>
+          <elementProp name="redirect_uri" elementType="Argument">
+            <stringProp name="Argument.name">redirect_uri</stringProp>
+            <stringProp name="Argument.value">https://xeon.gluu.info/identity/authentication/authcode</stringProp>
+            <stringProp name="Argument.metadata">=</stringProp>
+          </elementProp>
+          <elementProp name="client_id" elementType="Argument">
+            <stringProp name="Argument.name">client_id</stringProp>
+            <stringProp name="Argument.value">@!4878.7FE9.4A9F.E325!0001!914D.74AF!0008!6F80.938F.A950.A138</stringProp>
+            <stringProp name="Argument.metadata">=</stringProp>
+          </elementProp>
+          <elementProp name="client_secret" elementType="Argument">
+            <stringProp name="Argument.name">client_secret</stringProp>
+            <stringProp name="Argument.value">client_secret</stringProp>
+            <stringProp name="Argument.metadata">=</stringProp>
+          </elementProp>
+          <elementProp name="client_header" elementType="Argument">
+            <stringProp name="Argument.name">client_header</stringProp>
+            <stringProp name="Argument.value">to_override_in_jsr223</stringProp>
+            <stringProp name="Argument.metadata">=</stringProp>
+          </elementProp>
+        </collectionProp>
+      </elementProp>
+      <stringProp name="TestPlan.user_define_classpath"></stringProp>
+    </TestPlan>
+    <hashTree>
+      <ConfigTestElement guiclass="HttpDefaultsGui" testclass="ConfigTestElement" testname="HTTP Request Defaults" enabled="true">
+        <elementProp name="HTTPsampler.Arguments" elementType="Arguments" guiclass="HTTPArgumentsPanel" testclass="Arguments" testname="User Defined Variables" enabled="true">
+          <collectionProp name="Arguments.arguments"/>
+        </elementProp>
+        <stringProp name="HTTPSampler.domain">${host}</stringProp>
+        <stringProp name="HTTPSampler.port"></stringProp>
+        <stringProp name="HTTPSampler.connect_timeout">30000</stringProp>
+        <stringProp name="HTTPSampler.response_timeout">30000</stringProp>
+        <stringProp name="HTTPSampler.protocol">https</stringProp>
+        <stringProp name="HTTPSampler.contentEncoding"></stringProp>
+        <stringProp name="HTTPSampler.path"></stringProp>
+        <stringProp name="HTTPSampler.implementation">HttpClient4</stringProp>
+        <stringProp name="HTTPSampler.concurrentPool">6</stringProp>
+      </ConfigTestElement>
+      <hashTree/>
+      <ThreadGroup guiclass="ThreadGroupGui" testclass="ThreadGroup" testname="Thread Group" enabled="true">
+        <stringProp name="ThreadGroup.on_sample_error">continue</stringProp>
+        <elementProp name="ThreadGroup.main_controller" elementType="LoopController" guiclass="LoopControlPanel" testclass="LoopController" testname="Loop Controller" enabled="true">
+          <boolProp name="LoopController.continue_forever">false</boolProp>
+          <stringProp name="LoopController.loops">5000</stringProp>
+        </elementProp>
+        <stringProp name="ThreadGroup.num_threads">50</stringProp>
+        <stringProp name="ThreadGroup.ramp_time">1</stringProp>
+        <longProp name="ThreadGroup.start_time">1479823133000</longProp>
+        <longProp name="ThreadGroup.end_time">1479823133000</longProp>
+        <boolProp name="ThreadGroup.scheduler">false</boolProp>
+        <stringProp name="ThreadGroup.duration"></stringProp>
+        <stringProp name="ThreadGroup.delay"></stringProp>
+      </ThreadGroup>
+      <hashTree>
+        <GenericController guiclass="LogicControllerGui" testclass="GenericController" testname="Simple Controller" enabled="true"/>
+        <hashTree>
+          <CacheManager guiclass="CacheManagerGui" testclass="CacheManager" testname="HTTP Cache Manager" enabled="true">
+            <boolProp name="clearEachIteration">false</boolProp>
+            <boolProp name="useExpires">false</boolProp>
+          </CacheManager>
+          <hashTree/>
+          <CookieManager guiclass="CookiePanel" testclass="CookieManager" testname="HTTP Cookie Manager" enabled="true">
+            <collectionProp name="CookieManager.cookies"/>
+            <boolProp name="CookieManager.clearEachIteration">true</boolProp>
+            <stringProp name="CookieManager.policy">standard</stringProp>
+            <stringProp name="CookieManager.implementation">org.apache.jmeter.protocol.http.control.HC4CookieHandler</stringProp>
+          </CookieManager>
+          <hashTree/>
+          <CounterConfig guiclass="CounterConfigGui" testclass="CounterConfig" testname="session_state_counter" enabled="true">
+            <stringProp name="CounterConfig.start">1</stringProp>
+            <stringProp name="CounterConfig.end"></stringProp>
+            <stringProp name="CounterConfig.incr">1</stringProp>
+            <stringProp name="CounterConfig.name">session_state_counter</stringProp>
+            <stringProp name="CounterConfig.format"></stringProp>
+            <boolProp name="CounterConfig.per_user">false</boolProp>
+          </CounterConfig>
+          <hashTree/>
+          <HTTPSamplerProxy guiclass="HttpTestSampleGui" testclass="HTTPSamplerProxy" testname="/token" enabled="true">
+            <elementProp name="HTTPsampler.Arguments" elementType="Arguments" guiclass="HTTPArgumentsPanel" testclass="Arguments" enabled="true">
+              <collectionProp name="Arguments.arguments">
+                <elementProp name="grant_type" elementType="HTTPArgument">
+                  <boolProp name="HTTPArgument.always_encode">false</boolProp>
+                  <stringProp name="Argument.value">client_credentials</stringProp>
+                  <stringProp name="Argument.metadata">=</stringProp>
+                  <boolProp name="HTTPArgument.use_equals">true</boolProp>
+                  <stringProp name="Argument.name">grant_type</stringProp>
+                </elementProp>
+                <elementProp name="scope" elementType="HTTPArgument">
+                  <boolProp name="HTTPArgument.always_encode">false</boolProp>
+                  <stringProp name="Argument.value">clientinfo</stringProp>
+                  <stringProp name="Argument.metadata">=</stringProp>
+                  <boolProp name="HTTPArgument.use_equals">true</boolProp>
+                  <stringProp name="Argument.name">scope</stringProp>
+                </elementProp>
+              </collectionProp>
+            </elementProp>
+            <stringProp name="HTTPSampler.domain"></stringProp>
+            <stringProp name="HTTPSampler.port"></stringProp>
+            <stringProp name="HTTPSampler.connect_timeout"></stringProp>
+            <stringProp name="HTTPSampler.response_timeout"></stringProp>
+            <stringProp name="HTTPSampler.protocol">https</stringProp>
+            <stringProp name="HTTPSampler.contentEncoding"></stringProp>
+            <stringProp name="HTTPSampler.path">/oxauth/restv1/token</stringProp>
+            <stringProp name="HTTPSampler.method">POST</stringProp>
+            <boolProp name="HTTPSampler.follow_redirects">true</boolProp>
+            <boolProp name="HTTPSampler.auto_redirects">false</boolProp>
+            <boolProp name="HTTPSampler.use_keepalive">true</boolProp>
+            <boolProp name="HTTPSampler.DO_MULTIPART_POST">false</boolProp>
+            <stringProp name="HTTPSampler.implementation">HttpClient4</stringProp>
+            <boolProp name="HTTPSampler.monitor">false</boolProp>
+            <stringProp name="HTTPSampler.embedded_url_re"></stringProp>
+          </HTTPSamplerProxy>
+          <hashTree>
+            <HeaderManager guiclass="HeaderPanel" testclass="HeaderManager" testname="HTTP Header Manager" enabled="true">
+              <collectionProp name="HeaderManager.headers">
+                <elementProp name="" elementType="Header">
+                  <stringProp name="Header.name">Authorization</stringProp>
+                  <stringProp name="Header.value">${client_header}</stringProp>
+                </elementProp>
+                <elementProp name="" elementType="Header">
+                  <stringProp name="Header.name">Content-Type</stringProp>
+                  <stringProp name="Header.value">application/x-www-form-urlencoded</stringProp>
+                </elementProp>
+              </collectionProp>
+            </HeaderManager>
+            <hashTree/>
+            <JSR223PreProcessor guiclass="TestBeanGUI" testclass="JSR223PreProcessor" testname="JSR223 PreProcessor : base64 client credentials " enabled="true">
+              <stringProp name="cacheKey">5747dfc9-3b64-496f-947f-e9ce907c06cd</stringProp>
+              <stringProp name="filename"></stringProp>
+              <stringProp name="parameters"></stringProp>
+              <stringProp name="script">String credentials = vars.get(&quot;client_id&quot;) + &quot;:&quot; + vars.get(&quot;client_secret&quot;);
+String clientHeader = &quot;Basic &quot; + org.apache.commons.codec.binary.Base64.encodeBase64String(credentials.getBytes(&quot;UTF-8&quot;));
+
+vars.put(&quot;client_header&quot;, clientHeader);</stringProp>
+              <stringProp name="scriptLanguage">java</stringProp>
+            </JSR223PreProcessor>
+            <hashTree/>
+            <ResultCollector guiclass="ViewResultsFullVisualizer" testclass="ResultCollector" testname="View Results Tree" enabled="true">
+              <boolProp name="ResultCollector.error_logging">false</boolProp>
+              <objProp>
+                <name>saveConfig</name>
+                <value class="SampleSaveConfiguration">
+                  <time>true</time>
+                  <latency>true</latency>
+                  <timestamp>true</timestamp>
+                  <success>true</success>
+                  <label>true</label>
+                  <code>true</code>
+                  <message>true</message>
+                  <threadName>true</threadName>
+                  <dataType>true</dataType>
+                  <encoding>false</encoding>
+                  <assertions>true</assertions>
+                  <subresults>true</subresults>
+                  <responseData>false</responseData>
+                  <samplerData>false</samplerData>
+                  <xml>false</xml>
+                  <fieldNames>true</fieldNames>
+                  <responseHeaders>false</responseHeaders>
+                  <requestHeaders>false</requestHeaders>
+                  <responseDataOnError>false</responseDataOnError>
+                  <saveAssertionResultsFailureMessage>true</saveAssertionResultsFailureMessage>
+                  <assertionsResultsToSave>0</assertionsResultsToSave>
+                  <bytes>true</bytes>
+                  <threadCounts>true</threadCounts>
+                  <idleTime>true</idleTime>
+                </value>
+              </objProp>
+              <stringProp name="filename"></stringProp>
+            </ResultCollector>
+            <hashTree/>
+            <ResponseAssertion guiclass="AssertionGui" testclass="ResponseAssertion" testname="Response Assertion" enabled="true">
+              <collectionProp name="Asserion.test_strings">
+                <stringProp name="13466530">&quot;access_token&quot;</stringProp>
+              </collectionProp>
+              <stringProp name="Assertion.test_field">Assertion.response_data</stringProp>
+              <boolProp name="Assertion.assume_success">false</boolProp>
+              <intProp name="Assertion.test_type">2</intProp>
+            </ResponseAssertion>
+            <hashTree/>
+            <JSONPostProcessor guiclass="JSONPostProcessorGui" testclass="JSONPostProcessor" testname="JSON Path PostProcessor : access_token" enabled="true">
+              <stringProp name="JSONPostProcessor.referenceNames">access_token</stringProp>
+              <stringProp name="JSONPostProcessor.jsonPathExprs">$.access_token</stringProp>
+              <stringProp name="JSONPostProcessor.match_numbers"></stringProp>
+            </JSONPostProcessor>
+            <hashTree/>
+            <JSONPostProcessor guiclass="JSONPostProcessorGui" testclass="JSONPostProcessor" testname="JSON Path PostProcessor : id_token" enabled="true">
+              <stringProp name="JSONPostProcessor.referenceNames">id_token</stringProp>
+              <stringProp name="JSONPostProcessor.jsonPathExprs">$.id_token</stringProp>
+              <stringProp name="JSONPostProcessor.match_numbers"></stringProp>
+            </JSONPostProcessor>
+            <hashTree/>
+          </hashTree>
+        </hashTree>
+        <ResultCollector guiclass="SummaryReport" testclass="ResultCollector" testname="Summary Report" enabled="true">
+          <boolProp name="ResultCollector.error_logging">false</boolProp>
+          <objProp>
+            <name>saveConfig</name>
+            <value class="SampleSaveConfiguration">
+              <time>true</time>
+              <latency>true</latency>
+              <timestamp>true</timestamp>
+              <success>true</success>
+              <label>true</label>
+              <code>true</code>
+              <message>true</message>
+              <threadName>true</threadName>
+              <dataType>true</dataType>
+              <encoding>false</encoding>
+              <assertions>true</assertions>
+              <subresults>true</subresults>
+              <responseData>false</responseData>
+              <samplerData>false</samplerData>
+              <xml>false</xml>
+              <fieldNames>true</fieldNames>
+              <responseHeaders>false</responseHeaders>
+              <requestHeaders>false</requestHeaders>
+              <responseDataOnError>false</responseDataOnError>
+              <saveAssertionResultsFailureMessage>true</saveAssertionResultsFailureMessage>
+              <assertionsResultsToSave>0</assertionsResultsToSave>
+              <bytes>true</bytes>
+              <threadCounts>true</threadCounts>
+              <idleTime>true</idleTime>
+            </value>
+          </objProp>
+          <stringProp name="filename"></stringProp>
+        </ResultCollector>
+        <hashTree/>
+        <ResultCollector guiclass="ViewResultsFullVisualizer" testclass="ResultCollector" testname="View Results Tree" enabled="true">
+          <boolProp name="ResultCollector.error_logging">false</boolProp>
+          <objProp>
+            <name>saveConfig</name>
+            <value class="SampleSaveConfiguration">
+              <time>true</time>
+              <latency>true</latency>
+              <timestamp>true</timestamp>
+              <success>true</success>
+              <label>true</label>
+              <code>true</code>
+              <message>true</message>
+              <threadName>true</threadName>
+              <dataType>true</dataType>
+              <encoding>false</encoding>
+              <assertions>true</assertions>
+              <subresults>true</subresults>
+              <responseData>false</responseData>
+              <samplerData>false</samplerData>
+              <xml>false</xml>
+              <fieldNames>true</fieldNames>
+              <responseHeaders>false</responseHeaders>
+              <requestHeaders>false</requestHeaders>
+              <responseDataOnError>false</responseDataOnError>
+              <saveAssertionResultsFailureMessage>true</saveAssertionResultsFailureMessage>
+              <assertionsResultsToSave>0</assertionsResultsToSave>
+              <bytes>true</bytes>
+              <threadCounts>true</threadCounts>
+              <idleTime>true</idleTime>
+            </value>
+          </objProp>
+          <stringProp name="filename"></stringProp>
+        </ResultCollector>
+        <hashTree/>
+        <ResultCollector guiclass="GraphVisualizer" testclass="ResultCollector" testname="Graph Results" enabled="true">
+          <boolProp name="ResultCollector.error_logging">false</boolProp>
+          <objProp>
+            <name>saveConfig</name>
+            <value class="SampleSaveConfiguration">
+              <time>true</time>
+              <latency>true</latency>
+              <timestamp>true</timestamp>
+              <success>true</success>
+              <label>true</label>
+              <code>true</code>
+              <message>true</message>
+              <threadName>true</threadName>
+              <dataType>true</dataType>
+              <encoding>false</encoding>
+              <assertions>true</assertions>
+              <subresults>true</subresults>
+              <responseData>false</responseData>
+              <samplerData>false</samplerData>
+              <xml>false</xml>
+              <fieldNames>true</fieldNames>
+              <responseHeaders>false</responseHeaders>
+              <requestHeaders>false</requestHeaders>
+              <responseDataOnError>false</responseDataOnError>
+              <saveAssertionResultsFailureMessage>true</saveAssertionResultsFailureMessage>
+              <assertionsResultsToSave>0</assertionsResultsToSave>
+              <bytes>true</bytes>
+              <threadCounts>true</threadCounts>
+              <idleTime>true</idleTime>
+            </value>
+          </objProp>
+          <stringProp name="filename"></stringProp>
+        </ResultCollector>
+        <hashTree/>
+        <ResultCollector guiclass="TableVisualizer" testclass="ResultCollector" testname="View Results in Table" enabled="true">
+          <boolProp name="ResultCollector.error_logging">false</boolProp>
+          <objProp>
+            <name>saveConfig</name>
+            <value class="SampleSaveConfiguration">
+              <time>true</time>
+              <latency>true</latency>
+              <timestamp>true</timestamp>
+              <success>true</success>
+              <label>true</label>
+              <code>true</code>
+              <message>true</message>
+              <threadName>true</threadName>
+              <dataType>true</dataType>
+              <encoding>false</encoding>
+              <assertions>true</assertions>
+              <subresults>true</subresults>
+              <responseData>false</responseData>
+              <samplerData>false</samplerData>
+              <xml>false</xml>
+              <fieldNames>true</fieldNames>
+              <responseHeaders>false</responseHeaders>
+              <requestHeaders>false</requestHeaders>
+              <responseDataOnError>false</responseDataOnError>
+              <saveAssertionResultsFailureMessage>true</saveAssertionResultsFailureMessage>
+              <assertionsResultsToSave>0</assertionsResultsToSave>
+              <bytes>true</bytes>
+              <threadCounts>true</threadCounts>
+              <idleTime>true</idleTime>
+            </value>
+          </objProp>
+          <stringProp name="filename"></stringProp>
+        </ResultCollector>
+        <hashTree/>
+        <ResultCollector guiclass="MonitorHealthVisualizer" testclass="ResultCollector" testname="Monitor Results" enabled="true">
+          <boolProp name="ResultCollector.error_logging">false</boolProp>
+          <objProp>
+            <name>saveConfig</name>
+            <value class="SampleSaveConfiguration">
+              <time>true</time>
+              <latency>true</latency>
+              <timestamp>true</timestamp>
+              <success>true</success>
+              <label>true</label>
+              <code>true</code>
+              <message>true</message>
+              <threadName>true</threadName>
+              <dataType>true</dataType>
+              <encoding>false</encoding>
+              <assertions>true</assertions>
+              <subresults>true</subresults>
+              <responseData>false</responseData>
+              <samplerData>false</samplerData>
+              <xml>false</xml>
+              <fieldNames>true</fieldNames>
+              <responseHeaders>false</responseHeaders>
+              <requestHeaders>false</requestHeaders>
+              <responseDataOnError>false</responseDataOnError>
+              <saveAssertionResultsFailureMessage>true</saveAssertionResultsFailureMessage>
+              <assertionsResultsToSave>0</assertionsResultsToSave>
+              <bytes>true</bytes>
+              <threadCounts>true</threadCounts>
+              <idleTime>true</idleTime>
+            </value>
+          </objProp>
+          <stringProp name="filename"></stringProp>
+        </ResultCollector>
+        <hashTree/>
+        <Summariser guiclass="SummariserGui" testclass="Summariser" testname="Generate Summary Results" enabled="true"/>
+        <hashTree/>
+      </hashTree>
+      <ThreadGroup guiclass="ThreadGroupGui" testclass="ThreadGroup" testname="End Session" enabled="true">
+        <stringProp name="ThreadGroup.on_sample_error">continue</stringProp>
+        <elementProp name="ThreadGroup.main_controller" elementType="LoopController" guiclass="LoopControlPanel" testclass="LoopController" testname="Loop Controller" enabled="true">
+          <boolProp name="LoopController.continue_forever">false</boolProp>
+          <intProp name="LoopController.loops">-1</intProp>
+        </elementProp>
+        <stringProp name="ThreadGroup.num_threads">5</stringProp>
+        <stringProp name="ThreadGroup.ramp_time">1</stringProp>
+        <longProp name="ThreadGroup.start_time">1480924764000</longProp>
+        <longProp name="ThreadGroup.end_time">1480924764000</longProp>
+        <boolProp name="ThreadGroup.scheduler">false</boolProp>
+        <stringProp name="ThreadGroup.duration"></stringProp>
+        <stringProp name="ThreadGroup.delay">3</stringProp>
+      </ThreadGroup>
+      <hashTree>
+        <CookieManager guiclass="CookiePanel" testclass="CookieManager" testname="HTTP Cookie Manager" enabled="true">
+          <collectionProp name="CookieManager.cookies"/>
+          <boolProp name="CookieManager.clearEachIteration">false</boolProp>
+          <stringProp name="CookieManager.policy">standard</stringProp>
+          <stringProp name="CookieManager.implementation">org.apache.jmeter.protocol.http.control.HC4CookieHandler</stringProp>
+        </CookieManager>
+        <hashTree/>
+        <ConstantTimer guiclass="ConstantTimerGui" testclass="ConstantTimer" testname="Constant Timer" enabled="true">
+          <stringProp name="ConstantTimer.delay">3000</stringProp>
+        </ConstantTimer>
+        <hashTree/>
+        <HTTPSamplerProxy guiclass="HttpTestSampleGui" testclass="HTTPSamplerProxy" testname="/end_session" enabled="true">
+          <elementProp name="HTTPsampler.Arguments" elementType="Arguments" guiclass="HTTPArgumentsPanel" testclass="Arguments" testname="User Defined Variables" enabled="true">
+            <collectionProp name="Arguments.arguments">
+              <elementProp name="id_token_hint" elementType="HTTPArgument">
+                <boolProp name="HTTPArgument.always_encode">false</boolProp>
+                <stringProp name="Argument.value">${id_token}</stringProp>
+                <stringProp name="Argument.metadata">=</stringProp>
+                <boolProp name="HTTPArgument.use_equals">true</boolProp>
+                <stringProp name="Argument.name">id_token_hint</stringProp>
+              </elementProp>
+            </collectionProp>
+          </elementProp>
+          <stringProp name="HTTPSampler.domain"></stringProp>
+          <stringProp name="HTTPSampler.port"></stringProp>
+          <stringProp name="HTTPSampler.connect_timeout"></stringProp>
+          <stringProp name="HTTPSampler.response_timeout"></stringProp>
+          <stringProp name="HTTPSampler.protocol"></stringProp>
+          <stringProp name="HTTPSampler.contentEncoding"></stringProp>
+          <stringProp name="HTTPSampler.path"></stringProp>
+          <stringProp name="HTTPSampler.method">GET</stringProp>
+          <boolProp name="HTTPSampler.follow_redirects">true</boolProp>
+          <boolProp name="HTTPSampler.auto_redirects">false</boolProp>
+          <boolProp name="HTTPSampler.use_keepalive">true</boolProp>
+          <boolProp name="HTTPSampler.DO_MULTIPART_POST">false</boolProp>
+          <boolProp name="HTTPSampler.monitor">false</boolProp>
+          <stringProp name="HTTPSampler.embedded_url_re"></stringProp>
+        </HTTPSamplerProxy>
+        <hashTree>
+          <JSR223PreProcessor guiclass="TestBeanGUI" testclass="JSR223PreProcessor" testname="JSR223 PreProcessor" enabled="true">
+            <stringProp name="scriptLanguage">java</stringProp>
+            <stringProp name="parameters"></stringProp>
+            <stringProp name="filename"></stringProp>
+            <stringProp name="cacheKey">5747dfc9-3b64-496f-947f-e9ce907c06cd</stringProp>
+            <stringProp name="script">import org.apache.jmeter.protocol.http.control.CookieManager;
+import org.apache.jmeter.protocol.http.control.Cookie;
+
+CookieManager manager = sampler.getCookieManager();
+
+for (Map.Entry entry : props.entrySet()) {
+	if (entry.getKey() instanceof String) {
+	    String key = entry.getKey();
+         if (key.startsWith(&quot;oic.session_state.&quot;)) {
+             String counter = key.substring(&quot;oic.session_state.&quot;.length());
+
+             log.info(&quot;PRE end session, counter : &quot; + counter + &quot;, session_state: &quot; + entry.getValue() + &quot;, props.getProperty(): &quot; + props.getProperty(&quot;oic.session_state.&quot; + counter));
+             
+             Cookie cookie = new Cookie(&quot;session_state&quot;, entry.getValue(), vars.get(&quot;host&quot;), &quot;/&quot;, false, 0);
+             manager.add(cookie); 
+
+             Object idToken = props.getProperty(&quot;oic.id_token.&quot; + counter);
+             log.info(&quot;PRE end session, id_token : &quot; + idToken);
+             vars.put(&quot;id_token&quot;, idToken);
+
+             props.remove(&quot;oic.session_state.&quot; + counter);
+             props.remove(&quot;oic.id_token.&quot; + counter);
+             break;
+         }
+	}
+}</stringProp>
+          </JSR223PreProcessor>
+          <hashTree/>
+          <ResultCollector guiclass="ViewResultsFullVisualizer" testclass="ResultCollector" testname="View Results Tree" enabled="true">
+            <boolProp name="ResultCollector.error_logging">false</boolProp>
+            <objProp>
+              <name>saveConfig</name>
+              <value class="SampleSaveConfiguration">
+                <time>true</time>
+                <latency>true</latency>
+                <timestamp>true</timestamp>
+                <success>true</success>
+                <label>true</label>
+                <code>true</code>
+                <message>true</message>
+                <threadName>true</threadName>
+                <dataType>true</dataType>
+                <encoding>false</encoding>
+                <assertions>true</assertions>
+                <subresults>true</subresults>
+                <responseData>false</responseData>
+                <samplerData>false</samplerData>
+                <xml>false</xml>
+                <fieldNames>true</fieldNames>
+                <responseHeaders>false</responseHeaders>
+                <requestHeaders>false</requestHeaders>
+                <responseDataOnError>false</responseDataOnError>
+                <saveAssertionResultsFailureMessage>true</saveAssertionResultsFailureMessage>
+                <assertionsResultsToSave>0</assertionsResultsToSave>
+                <bytes>true</bytes>
+                <threadCounts>true</threadCounts>
+                <idleTime>true</idleTime>
+              </value>
+            </objProp>
+            <stringProp name="filename"></stringProp>
+          </ResultCollector>
+          <hashTree/>
+        </hashTree>
+      </hashTree>
+      <ResultCollector guiclass="ViewResultsFullVisualizer" testclass="ResultCollector" testname="View Results Tree" enabled="true">
+        <boolProp name="ResultCollector.error_logging">false</boolProp>
+        <objProp>
+          <name>saveConfig</name>
+          <value class="SampleSaveConfiguration">
+            <time>true</time>
+            <latency>true</latency>
+            <timestamp>true</timestamp>
+            <success>true</success>
+            <label>true</label>
+            <code>true</code>
+            <message>true</message>
+            <threadName>true</threadName>
+            <dataType>true</dataType>
+            <encoding>false</encoding>
+            <assertions>true</assertions>
+            <subresults>true</subresults>
+            <responseData>false</responseData>
+            <samplerData>false</samplerData>
+            <xml>false</xml>
+            <fieldNames>true</fieldNames>
+            <responseHeaders>false</responseHeaders>
+            <requestHeaders>false</requestHeaders>
+            <responseDataOnError>false</responseDataOnError>
+            <saveAssertionResultsFailureMessage>true</saveAssertionResultsFailureMessage>
+            <assertionsResultsToSave>0</assertionsResultsToSave>
+            <bytes>true</bytes>
+            <threadCounts>true</threadCounts>
+            <idleTime>true</idleTime>
+          </value>
+        </objProp>
+        <stringProp name="filename"></stringProp>
+      </ResultCollector>
+      <hashTree/>
+      <ResultCollector guiclass="TableVisualizer" testclass="ResultCollector" testname="View Results in Table" enabled="true">
+        <boolProp name="ResultCollector.error_logging">false</boolProp>
+        <objProp>
+          <name>saveConfig</name>
+          <value class="SampleSaveConfiguration">
+            <time>true</time>
+            <latency>true</latency>
+            <timestamp>true</timestamp>
+            <success>true</success>
+            <label>true</label>
+            <code>true</code>
+            <message>true</message>
+            <threadName>true</threadName>
+            <dataType>true</dataType>
+            <encoding>false</encoding>
+            <assertions>true</assertions>
+            <subresults>true</subresults>
+            <responseData>false</responseData>
+            <samplerData>false</samplerData>
+            <xml>false</xml>
+            <fieldNames>true</fieldNames>
+            <responseHeaders>false</responseHeaders>
+            <requestHeaders>false</requestHeaders>
+            <responseDataOnError>false</responseDataOnError>
+            <saveAssertionResultsFailureMessage>true</saveAssertionResultsFailureMessage>
+            <assertionsResultsToSave>0</assertionsResultsToSave>
+            <bytes>true</bytes>
+            <threadCounts>true</threadCounts>
+            <idleTime>true</idleTime>
+          </value>
+        </objProp>
+        <stringProp name="filename"></stringProp>
+      </ResultCollector>
+      <hashTree/>
+      <ResultCollector guiclass="GraphVisualizer" testclass="ResultCollector" testname="Graph Results" enabled="true">
+        <boolProp name="ResultCollector.error_logging">false</boolProp>
+        <objProp>
+          <name>saveConfig</name>
+          <value class="SampleSaveConfiguration">
+            <time>true</time>
+            <latency>true</latency>
+            <timestamp>true</timestamp>
+            <success>true</success>
+            <label>true</label>
+            <code>true</code>
+            <message>true</message>
+            <threadName>true</threadName>
+            <dataType>true</dataType>
+            <encoding>false</encoding>
+            <assertions>true</assertions>
+            <subresults>true</subresults>
+            <responseData>false</responseData>
+            <samplerData>false</samplerData>
+            <xml>false</xml>
+            <fieldNames>true</fieldNames>
+            <responseHeaders>false</responseHeaders>
+            <requestHeaders>false</requestHeaders>
+            <responseDataOnError>false</responseDataOnError>
+            <saveAssertionResultsFailureMessage>true</saveAssertionResultsFailureMessage>
+            <assertionsResultsToSave>0</assertionsResultsToSave>
+            <bytes>true</bytes>
+            <threadCounts>true</threadCounts>
+            <idleTime>true</idleTime>
+          </value>
+        </objProp>
+        <stringProp name="filename"></stringProp>
+      </ResultCollector>
+      <hashTree/>
+    </hashTree>
+  </hashTree>
+</jmeterTestPlan>
diff --git a/oxAuth/jmeter/test/Implicit_Flow_benchmark_gluu_org.jmx b/oxAuth/jmeter/test/Implicit_Flow_benchmark_gluu_org.jmx
new file mode 100644
index 00000000..f50d3434
--- /dev/null
+++ b/oxAuth/jmeter/test/Implicit_Flow_benchmark_gluu_org.jmx
@@ -0,0 +1,1018 @@
+<?xml version="1.0" encoding="UTF-8"?>
+<jmeterTestPlan version="1.2" properties="2.9" jmeter="3.0 r1743807">
+  <hashTree>
+    <TestPlan guiclass="TestPlanGui" testclass="TestPlan" testname="Authorization Code Flow" enabled="true">
+      <stringProp name="TestPlan.comments"></stringProp>
+      <boolProp name="TestPlan.functional_mode">false</boolProp>
+      <boolProp name="TestPlan.serialize_threadgroups">true</boolProp>
+      <elementProp name="TestPlan.user_defined_variables" elementType="Arguments" guiclass="ArgumentsPanel" testclass="Arguments" testname="User Defined Variables" enabled="true">
+        <collectionProp name="Arguments.arguments">
+          <elementProp name="host" elementType="Argument">
+            <stringProp name="Argument.name">host</stringProp>
+            <stringProp name="Argument.value">benchmark.gluu.org</stringProp>
+            <stringProp name="Argument.metadata">=</stringProp>
+          </elementProp>
+          <elementProp name="scope" elementType="Argument">
+            <stringProp name="Argument.name">scope</stringProp>
+            <stringProp name="Argument.value">openid profile email user_name</stringProp>
+            <stringProp name="Argument.metadata">=</stringProp>
+          </elementProp>
+          <elementProp name="username" elementType="Argument">
+            <stringProp name="Argument.name">username</stringProp>
+            <stringProp name="Argument.value">user1</stringProp>
+            <stringProp name="Argument.metadata">=</stringProp>
+          </elementProp>
+          <elementProp name="password" elementType="Argument">
+            <stringProp name="Argument.name">password</stringProp>
+            <stringProp name="Argument.value">secret</stringProp>
+            <stringProp name="Argument.metadata">=</stringProp>
+          </elementProp>
+          <elementProp name="redirect_uri" elementType="Argument">
+            <stringProp name="Argument.name">redirect_uri</stringProp>
+            <stringProp name="Argument.value">https://benchmark.gluu.org/identity/authentication/authcode</stringProp>
+            <stringProp name="Argument.metadata">=</stringProp>
+          </elementProp>
+          <elementProp name="client_id" elementType="Argument">
+            <stringProp name="Argument.name">client_id</stringProp>
+            <stringProp name="Argument.value">@!7FCA.5782.1BC9.0C1D!0001!E6EE.DFB0!0008!EB0A.2783</stringProp>
+            <stringProp name="Argument.metadata">=</stringProp>
+          </elementProp>
+          <elementProp name="client_secret" elementType="Argument">
+            <stringProp name="Argument.name">client_secret</stringProp>
+            <stringProp name="Argument.value">4Dyh1YpQTJmT</stringProp>
+            <stringProp name="Argument.metadata">=</stringProp>
+          </elementProp>
+          <elementProp name="client_header" elementType="Argument">
+            <stringProp name="Argument.name">client_header</stringProp>
+            <stringProp name="Argument.value">to_override_in_jsr223</stringProp>
+            <stringProp name="Argument.metadata">=</stringProp>
+          </elementProp>
+        </collectionProp>
+      </elementProp>
+      <stringProp name="TestPlan.user_define_classpath"></stringProp>
+    </TestPlan>
+    <hashTree>
+      <ConfigTestElement guiclass="HttpDefaultsGui" testclass="ConfigTestElement" testname="HTTP Request Defaults" enabled="true">
+        <elementProp name="HTTPsampler.Arguments" elementType="Arguments" guiclass="HTTPArgumentsPanel" testclass="Arguments" testname="User Defined Variables" enabled="true">
+          <collectionProp name="Arguments.arguments"/>
+        </elementProp>
+        <stringProp name="HTTPSampler.domain">${host}</stringProp>
+        <stringProp name="HTTPSampler.port"></stringProp>
+        <stringProp name="HTTPSampler.connect_timeout">60000</stringProp>
+        <stringProp name="HTTPSampler.response_timeout">60000</stringProp>
+        <stringProp name="HTTPSampler.protocol">https</stringProp>
+        <stringProp name="HTTPSampler.contentEncoding"></stringProp>
+        <stringProp name="HTTPSampler.path"></stringProp>
+        <stringProp name="HTTPSampler.implementation">HttpClient4</stringProp>
+        <stringProp name="HTTPSampler.concurrentPool">6</stringProp>
+      </ConfigTestElement>
+      <hashTree/>
+      <ThreadGroup guiclass="ThreadGroupGui" testclass="ThreadGroup" testname="Main" enabled="true">
+        <stringProp name="ThreadGroup.on_sample_error">continue</stringProp>
+        <elementProp name="ThreadGroup.main_controller" elementType="LoopController" guiclass="LoopControlPanel" testclass="LoopController" testname="Loop Controller" enabled="true">
+          <boolProp name="LoopController.continue_forever">false</boolProp>
+          <intProp name="LoopController.loops">-1</intProp>
+        </elementProp>
+        <stringProp name="ThreadGroup.num_threads">2</stringProp>
+        <stringProp name="ThreadGroup.ramp_time">4</stringProp>
+        <longProp name="ThreadGroup.start_time">1479823133000</longProp>
+        <longProp name="ThreadGroup.end_time">1479823133000</longProp>
+        <boolProp name="ThreadGroup.scheduler">false</boolProp>
+        <stringProp name="ThreadGroup.duration"></stringProp>
+        <stringProp name="ThreadGroup.delay"></stringProp>
+      </ThreadGroup>
+      <hashTree>
+        <GenericController guiclass="LogicControllerGui" testclass="GenericController" testname="Simple Controller" enabled="true"/>
+        <hashTree>
+          <CacheManager guiclass="CacheManagerGui" testclass="CacheManager" testname="HTTP Cache Manager" enabled="true">
+            <boolProp name="clearEachIteration">true</boolProp>
+            <boolProp name="useExpires">false</boolProp>
+          </CacheManager>
+          <hashTree/>
+          <CookieManager guiclass="CookiePanel" testclass="CookieManager" testname="HTTP Cookie Manager" enabled="true">
+            <collectionProp name="CookieManager.cookies"/>
+            <boolProp name="CookieManager.clearEachIteration">true</boolProp>
+            <stringProp name="CookieManager.policy">standard</stringProp>
+            <stringProp name="CookieManager.implementation">org.apache.jmeter.protocol.http.control.HC4CookieHandler</stringProp>
+          </CookieManager>
+          <hashTree/>
+          <CounterConfig guiclass="CounterConfigGui" testclass="CounterConfig" testname="session_state_counter" enabled="true">
+            <stringProp name="CounterConfig.start">1</stringProp>
+            <stringProp name="CounterConfig.end"></stringProp>
+            <stringProp name="CounterConfig.incr">1</stringProp>
+            <stringProp name="CounterConfig.name">session_state_counter</stringProp>
+            <stringProp name="CounterConfig.format"></stringProp>
+            <boolProp name="CounterConfig.per_user">false</boolProp>
+          </CounterConfig>
+          <hashTree/>
+          <HTTPSamplerProxy guiclass="HttpTestSampleGui" testclass="HTTPSamplerProxy" testname="/authorize" enabled="true">
+            <elementProp name="HTTPsampler.Arguments" elementType="Arguments" guiclass="HTTPArgumentsPanel" testclass="Arguments" testname="User Defined Variables" enabled="true">
+              <collectionProp name="Arguments.arguments">
+                <elementProp name="scope" elementType="HTTPArgument">
+                  <boolProp name="HTTPArgument.always_encode">true</boolProp>
+                  <stringProp name="Argument.value">${scope}</stringProp>
+                  <stringProp name="Argument.metadata">=</stringProp>
+                  <boolProp name="HTTPArgument.use_equals">true</boolProp>
+                  <stringProp name="Argument.name">scope</stringProp>
+                </elementProp>
+                <elementProp name="response_type" elementType="HTTPArgument">
+                  <boolProp name="HTTPArgument.always_encode">false</boolProp>
+                  <stringProp name="Argument.value">token id_token</stringProp>
+                  <stringProp name="Argument.metadata">=</stringProp>
+                  <boolProp name="HTTPArgument.use_equals">true</boolProp>
+                  <stringProp name="Argument.name">response_type</stringProp>
+                </elementProp>
+                <elementProp name="nonce" elementType="HTTPArgument">
+                  <boolProp name="HTTPArgument.always_encode">false</boolProp>
+                  <stringProp name="Argument.value">nonce</stringProp>
+                  <stringProp name="Argument.metadata">=</stringProp>
+                  <boolProp name="HTTPArgument.use_equals">true</boolProp>
+                  <stringProp name="Argument.name">nonce</stringProp>
+                </elementProp>
+                <elementProp name="redirect_uri" elementType="HTTPArgument">
+                  <boolProp name="HTTPArgument.always_encode">true</boolProp>
+                  <stringProp name="Argument.value">${redirect_uri}</stringProp>
+                  <stringProp name="Argument.metadata">=</stringProp>
+                  <boolProp name="HTTPArgument.use_equals">true</boolProp>
+                  <stringProp name="Argument.name">redirect_uri</stringProp>
+                </elementProp>
+                <elementProp name="client_id" elementType="HTTPArgument">
+                  <boolProp name="HTTPArgument.always_encode">true</boolProp>
+                  <stringProp name="Argument.value">${client_id}</stringProp>
+                  <stringProp name="Argument.metadata">=</stringProp>
+                  <boolProp name="HTTPArgument.use_equals">true</boolProp>
+                  <stringProp name="Argument.name">client_id</stringProp>
+                </elementProp>
+              </collectionProp>
+            </elementProp>
+            <stringProp name="HTTPSampler.domain"></stringProp>
+            <stringProp name="HTTPSampler.port"></stringProp>
+            <stringProp name="HTTPSampler.connect_timeout"></stringProp>
+            <stringProp name="HTTPSampler.response_timeout"></stringProp>
+            <stringProp name="HTTPSampler.protocol">https</stringProp>
+            <stringProp name="HTTPSampler.contentEncoding"></stringProp>
+            <stringProp name="HTTPSampler.path">/oxauth/restv1/authorize</stringProp>
+            <stringProp name="HTTPSampler.method">GET</stringProp>
+            <boolProp name="HTTPSampler.follow_redirects">true</boolProp>
+            <boolProp name="HTTPSampler.auto_redirects">false</boolProp>
+            <boolProp name="HTTPSampler.use_keepalive">false</boolProp>
+            <boolProp name="HTTPSampler.DO_MULTIPART_POST">false</boolProp>
+            <stringProp name="HTTPSampler.implementation">HttpClient4</stringProp>
+            <boolProp name="HTTPSampler.monitor">false</boolProp>
+            <stringProp name="HTTPSampler.embedded_url_re"></stringProp>
+          </HTTPSamplerProxy>
+          <hashTree>
+            <RegexExtractor guiclass="RegexExtractorGui" testclass="RegexExtractor" testname="Regular Expression Extractor : javax.faces.FormSignature" enabled="true">
+              <stringProp name="RegexExtractor.useHeaders">false</stringProp>
+              <stringProp name="RegexExtractor.refname">javax.faces.FormSignature</stringProp>
+              <stringProp name="RegexExtractor.regex">&lt;input type=&quot;hidden&quot; name=&quot;javax.faces.FormSignature&quot; value=&quot;(.+?)&quot; /&gt;</stringProp>
+              <stringProp name="RegexExtractor.template">$1$</stringProp>
+              <stringProp name="RegexExtractor.default"></stringProp>
+              <stringProp name="RegexExtractor.match_number"></stringProp>
+            </RegexExtractor>
+            <hashTree/>
+            <RegexExtractor guiclass="RegexExtractorGui" testclass="RegexExtractor" testname="Regular Expression Extractor : javax.faces.ViewState" enabled="true">
+              <stringProp name="RegexExtractor.useHeaders">false</stringProp>
+              <stringProp name="RegexExtractor.refname">javax.faces.ViewState</stringProp>
+              <stringProp name="RegexExtractor.regex">&lt;input type=&quot;hidden&quot; name=&quot;javax.faces.ViewState&quot; id=&quot;javax.faces.ViewState&quot; value=&quot;(.+?)&quot; autocomplete=&quot;off&quot; /&gt;</stringProp>
+              <stringProp name="RegexExtractor.template">$1$</stringProp>
+              <stringProp name="RegexExtractor.default"></stringProp>
+              <stringProp name="RegexExtractor.match_number"></stringProp>
+            </RegexExtractor>
+            <hashTree/>
+            <ResultCollector guiclass="ViewResultsFullVisualizer" testclass="ResultCollector" testname="View Results Tree" enabled="true">
+              <boolProp name="ResultCollector.error_logging">false</boolProp>
+              <objProp>
+                <name>saveConfig</name>
+                <value class="SampleSaveConfiguration">
+                  <time>true</time>
+                  <latency>true</latency>
+                  <timestamp>true</timestamp>
+                  <success>true</success>
+                  <label>true</label>
+                  <code>true</code>
+                  <message>true</message>
+                  <threadName>true</threadName>
+                  <dataType>true</dataType>
+                  <encoding>false</encoding>
+                  <assertions>true</assertions>
+                  <subresults>true</subresults>
+                  <responseData>false</responseData>
+                  <samplerData>false</samplerData>
+                  <xml>false</xml>
+                  <fieldNames>true</fieldNames>
+                  <responseHeaders>false</responseHeaders>
+                  <requestHeaders>false</requestHeaders>
+                  <responseDataOnError>false</responseDataOnError>
+                  <saveAssertionResultsFailureMessage>true</saveAssertionResultsFailureMessage>
+                  <assertionsResultsToSave>0</assertionsResultsToSave>
+                  <bytes>true</bytes>
+                  <threadCounts>true</threadCounts>
+                  <idleTime>true</idleTime>
+                </value>
+              </objProp>
+              <stringProp name="filename"></stringProp>
+            </ResultCollector>
+            <hashTree/>
+          </hashTree>
+          <HTTPSamplerProxy guiclass="HttpTestSampleGui" testclass="HTTPSamplerProxy" testname="/oxauth/login" enabled="true">
+            <elementProp name="HTTPsampler.Arguments" elementType="Arguments" guiclass="HTTPArgumentsPanel" testclass="Arguments" enabled="true">
+              <collectionProp name="Arguments.arguments">
+                <elementProp name="loginForm" elementType="HTTPArgument">
+                  <boolProp name="HTTPArgument.always_encode">false</boolProp>
+                  <stringProp name="Argument.name">loginForm</stringProp>
+                  <stringProp name="Argument.value">loginForm</stringProp>
+                  <stringProp name="Argument.metadata">=</stringProp>
+                  <boolProp name="HTTPArgument.use_equals">true</boolProp>
+                </elementProp>
+                <elementProp name="loginForm:username" elementType="HTTPArgument">
+                  <boolProp name="HTTPArgument.always_encode">true</boolProp>
+                  <stringProp name="Argument.name">loginForm:username</stringProp>
+                  <stringProp name="Argument.value">${username}</stringProp>
+                  <stringProp name="Argument.metadata">=</stringProp>
+                  <boolProp name="HTTPArgument.use_equals">true</boolProp>
+                </elementProp>
+                <elementProp name="loginForm:password" elementType="HTTPArgument">
+                  <boolProp name="HTTPArgument.always_encode">true</boolProp>
+                  <stringProp name="Argument.name">loginForm:password</stringProp>
+                  <stringProp name="Argument.value">${password}</stringProp>
+                  <stringProp name="Argument.metadata">=</stringProp>
+                  <boolProp name="HTTPArgument.use_equals">true</boolProp>
+                </elementProp>
+                <elementProp name="loginForm:loginButton" elementType="HTTPArgument">
+                  <boolProp name="HTTPArgument.always_encode">true</boolProp>
+                  <stringProp name="Argument.name">loginForm:loginButton</stringProp>
+                  <stringProp name="Argument.value">Login</stringProp>
+                  <stringProp name="Argument.metadata">=</stringProp>
+                  <boolProp name="HTTPArgument.use_equals">true</boolProp>
+                </elementProp>
+                <elementProp name="javax.faces.ViewState" elementType="HTTPArgument">
+                  <boolProp name="HTTPArgument.always_encode">true</boolProp>
+                  <stringProp name="Argument.name">javax.faces.ViewState</stringProp>
+                  <stringProp name="Argument.value">stateless</stringProp>
+                  <stringProp name="Argument.metadata">=</stringProp>
+                  <boolProp name="HTTPArgument.use_equals">true</boolProp>
+                </elementProp>
+              </collectionProp>
+            </elementProp>
+            <stringProp name="HTTPSampler.domain"></stringProp>
+            <stringProp name="HTTPSampler.port">443</stringProp>
+            <stringProp name="HTTPSampler.connect_timeout"></stringProp>
+            <stringProp name="HTTPSampler.response_timeout"></stringProp>
+            <stringProp name="HTTPSampler.protocol">https</stringProp>
+            <stringProp name="HTTPSampler.contentEncoding">UTF-8</stringProp>
+            <stringProp name="HTTPSampler.path">/oxauth/login</stringProp>
+            <stringProp name="HTTPSampler.method">POST</stringProp>
+            <boolProp name="HTTPSampler.follow_redirects">true</boolProp>
+            <boolProp name="HTTPSampler.auto_redirects">false</boolProp>
+            <boolProp name="HTTPSampler.use_keepalive">false</boolProp>
+            <boolProp name="HTTPSampler.DO_MULTIPART_POST">false</boolProp>
+            <stringProp name="HTTPSampler.implementation">HttpClient4</stringProp>
+            <boolProp name="HTTPSampler.monitor">false</boolProp>
+            <stringProp name="HTTPSampler.embedded_url_re"></stringProp>
+            <stringProp name="TestPlan.comments">Detected the start of a redirect chain</stringProp>
+          </HTTPSamplerProxy>
+          <hashTree>
+            <HeaderManager guiclass="HeaderPanel" testclass="HeaderManager" testname="HTTP Header Manager" enabled="true">
+              <collectionProp name="HeaderManager.headers">
+                <elementProp name="Content-Type" elementType="Header">
+                  <stringProp name="Header.name">Content-Type</stringProp>
+                  <stringProp name="Header.value">application/x-www-form-urlencoded</stringProp>
+                </elementProp>
+                <elementProp name="Accept-Language" elementType="Header">
+                  <stringProp name="Header.name">Accept-Language</stringProp>
+                  <stringProp name="Header.value">en-US,en;q=0.5</stringProp>
+                </elementProp>
+                <elementProp name="Accept" elementType="Header">
+                  <stringProp name="Header.name">Accept</stringProp>
+                  <stringProp name="Header.value">text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8</stringProp>
+                </elementProp>
+                <elementProp name="User-Agent" elementType="Header">
+                  <stringProp name="Header.name">User-Agent</stringProp>
+                  <stringProp name="Header.value">Mozilla/5.0 (Windows NT 6.1; WOW64; rv:24.0) Gecko/20100101 Firefox/24.0</stringProp>
+                </elementProp>
+                <elementProp name="Referer" elementType="Header">
+                  <stringProp name="Header.name">Referer</stringProp>
+                  <stringProp name="Header.value">https://${host}/oxauth/login</stringProp>
+                </elementProp>
+                <elementProp name="Accept-Encoding" elementType="Header">
+                  <stringProp name="Header.name">Accept-Encoding</stringProp>
+                  <stringProp name="Header.value">gzip, deflate</stringProp>
+                </elementProp>
+              </collectionProp>
+            </HeaderManager>
+            <hashTree/>
+            <JSR223PreProcessor guiclass="TestBeanGUI" testclass="JSR223PreProcessor" testname="JSR223 PreProcessor : identify user credentials" enabled="true">
+              <stringProp name="scriptLanguage">java</stringProp>
+              <stringProp name="parameters"></stringProp>
+              <stringProp name="filename"></stringProp>
+              <stringProp name="cacheKey">5747dfc9-3b64-496f-947f-e9ce907c06cd</stringProp>
+              <stringProp name="script">double weight = 0.8d;
+
+int min = 1;
+int max = 1000;
+
+int minX = 1001;
+int maxX = 99999;
+
+float chance = new Random().nextFloat();
+if (chance &lt;= weight) {
+	min = minX;
+	max = maxX;
+}
+
+int userNumber = new Random().nextInt(max - min + 1) + min;
+String username = &quot;user&quot; + userNumber;
+
+log.info(&quot;username: &quot; + username);
+
+vars.put(&quot;username&quot;, username);
+</stringProp>
+            </JSR223PreProcessor>
+            <hashTree/>
+            <ResultCollector guiclass="ViewResultsFullVisualizer" testclass="ResultCollector" testname="View Results Tree" enabled="true">
+              <boolProp name="ResultCollector.error_logging">false</boolProp>
+              <objProp>
+                <name>saveConfig</name>
+                <value class="SampleSaveConfiguration">
+                  <time>true</time>
+                  <latency>true</latency>
+                  <timestamp>true</timestamp>
+                  <success>true</success>
+                  <label>true</label>
+                  <code>true</code>
+                  <message>true</message>
+                  <threadName>true</threadName>
+                  <dataType>true</dataType>
+                  <encoding>false</encoding>
+                  <assertions>true</assertions>
+                  <subresults>true</subresults>
+                  <responseData>false</responseData>
+                  <samplerData>false</samplerData>
+                  <xml>false</xml>
+                  <fieldNames>true</fieldNames>
+                  <responseHeaders>false</responseHeaders>
+                  <requestHeaders>false</requestHeaders>
+                  <responseDataOnError>false</responseDataOnError>
+                  <saveAssertionResultsFailureMessage>true</saveAssertionResultsFailureMessage>
+                  <assertionsResultsToSave>0</assertionsResultsToSave>
+                  <bytes>true</bytes>
+                  <threadCounts>true</threadCounts>
+                  <idleTime>true</idleTime>
+                </value>
+              </objProp>
+              <stringProp name="filename"></stringProp>
+            </ResultCollector>
+            <hashTree/>
+            <JSR223PostProcessor guiclass="TestBeanGUI" testclass="JSR223PostProcessor" testname="JSR223 PostProcessor : extract code" enabled="true">
+              <stringProp name="cacheKey"></stringProp>
+              <stringProp name="filename"></stringProp>
+              <stringProp name="parameters"></stringProp>
+              <stringProp name="script">String token = &quot;&quot;;
+if (prev.getUrlAsString().contains(&quot;#access_token=&quot;)) {
+	token = org.apache.commons.lang3.StringUtils.substringAfter(prev.getUrlAsString(), &quot;#access_token=&quot;);
+} 
+if (token.contains(&quot;&amp;&quot;)) {
+	token = org.apache.commons.lang3.StringUtils.substringBefore(token, &quot;&amp;&quot;);
+}
+
+vars.put(&quot;access_token&quot;, token);
+log.info(&quot;login post processor, access_token : &quot; + token + &quot;, url:&quot; + prev.getUrlAsString());
+
+
+
+</stringProp>
+              <stringProp name="scriptLanguage">java</stringProp>
+            </JSR223PostProcessor>
+            <hashTree/>
+            <BeanShellAssertion guiclass="BeanShellAssertionGui" testclass="BeanShellAssertion" testname="BeanShell Assertion" enabled="true">
+              <stringProp name="BeanShellAssertion.query">String accessToken = vars.get(&quot;access_token&quot;);
+boolean result = org.apache.commons.lang3.StringUtils.isBlank(accessToken);
+Failure = result;
+log.info(&quot;bean asserter, result : &quot; + result + &quot;, access_token: &quot; + accessToken);</stringProp>
+              <stringProp name="BeanShellAssertion.filename"></stringProp>
+              <stringProp name="BeanShellAssertion.parameters"></stringProp>
+              <boolProp name="BeanShellAssertion.resetInterpreter">false</boolProp>
+            </BeanShellAssertion>
+            <hashTree/>
+          </hashTree>
+          <ResponseAssertion guiclass="AssertionGui" testclass="ResponseAssertion" testname="Response Assertion" enabled="false">
+            <collectionProp name="Asserion.test_strings">
+              <stringProp name="22590572">access_token
+</stringProp>
+            </collectionProp>
+            <stringProp name="Assertion.test_field">Assertion.sample_label</stringProp>
+            <boolProp name="Assertion.assume_success">false</boolProp>
+            <intProp name="Assertion.test_type">2</intProp>
+            <stringProp name="Assertion.scope">variable</stringProp>
+            <stringProp name="Scope.variable"></stringProp>
+          </ResponseAssertion>
+          <hashTree/>
+          <ConfigTestElement guiclass="HttpDefaultsGui" testclass="ConfigTestElement" testname="HTTP Request Defaults" enabled="true">
+            <elementProp name="HTTPsampler.Arguments" elementType="Arguments" guiclass="HTTPArgumentsPanel" testclass="Arguments" testname="User Defined Variables" enabled="true">
+              <collectionProp name="Arguments.arguments"/>
+            </elementProp>
+            <stringProp name="HTTPSampler.domain"></stringProp>
+            <stringProp name="HTTPSampler.port"></stringProp>
+            <stringProp name="HTTPSampler.connect_timeout">60000</stringProp>
+            <stringProp name="HTTPSampler.response_timeout">60000</stringProp>
+            <stringProp name="HTTPSampler.protocol"></stringProp>
+            <stringProp name="HTTPSampler.contentEncoding"></stringProp>
+            <stringProp name="HTTPSampler.path"></stringProp>
+            <stringProp name="HTTPSampler.concurrentPool">6</stringProp>
+          </ConfigTestElement>
+          <hashTree/>
+        </hashTree>
+        <ResultCollector guiclass="SummaryReport" testclass="ResultCollector" testname="Summary Report" enabled="true">
+          <boolProp name="ResultCollector.error_logging">false</boolProp>
+          <objProp>
+            <name>saveConfig</name>
+            <value class="SampleSaveConfiguration">
+              <time>true</time>
+              <latency>true</latency>
+              <timestamp>true</timestamp>
+              <success>true</success>
+              <label>true</label>
+              <code>true</code>
+              <message>true</message>
+              <threadName>true</threadName>
+              <dataType>true</dataType>
+              <encoding>false</encoding>
+              <assertions>true</assertions>
+              <subresults>true</subresults>
+              <responseData>false</responseData>
+              <samplerData>false</samplerData>
+              <xml>false</xml>
+              <fieldNames>true</fieldNames>
+              <responseHeaders>false</responseHeaders>
+              <requestHeaders>false</requestHeaders>
+              <responseDataOnError>false</responseDataOnError>
+              <saveAssertionResultsFailureMessage>true</saveAssertionResultsFailureMessage>
+              <assertionsResultsToSave>0</assertionsResultsToSave>
+              <bytes>true</bytes>
+              <threadCounts>true</threadCounts>
+              <idleTime>true</idleTime>
+            </value>
+          </objProp>
+          <stringProp name="filename"></stringProp>
+        </ResultCollector>
+        <hashTree/>
+        <ResultCollector guiclass="ViewResultsFullVisualizer" testclass="ResultCollector" testname="View Results Tree" enabled="true">
+          <boolProp name="ResultCollector.error_logging">false</boolProp>
+          <objProp>
+            <name>saveConfig</name>
+            <value class="SampleSaveConfiguration">
+              <time>true</time>
+              <latency>true</latency>
+              <timestamp>true</timestamp>
+              <success>true</success>
+              <label>true</label>
+              <code>true</code>
+              <message>true</message>
+              <threadName>true</threadName>
+              <dataType>true</dataType>
+              <encoding>false</encoding>
+              <assertions>true</assertions>
+              <subresults>true</subresults>
+              <responseData>false</responseData>
+              <samplerData>false</samplerData>
+              <xml>false</xml>
+              <fieldNames>true</fieldNames>
+              <responseHeaders>false</responseHeaders>
+              <requestHeaders>false</requestHeaders>
+              <responseDataOnError>false</responseDataOnError>
+              <saveAssertionResultsFailureMessage>true</saveAssertionResultsFailureMessage>
+              <assertionsResultsToSave>0</assertionsResultsToSave>
+              <bytes>true</bytes>
+              <threadCounts>true</threadCounts>
+              <idleTime>true</idleTime>
+            </value>
+          </objProp>
+          <stringProp name="filename"></stringProp>
+        </ResultCollector>
+        <hashTree/>
+        <ResultCollector guiclass="GraphVisualizer" testclass="ResultCollector" testname="Graph Results" enabled="true">
+          <boolProp name="ResultCollector.error_logging">false</boolProp>
+          <objProp>
+            <name>saveConfig</name>
+            <value class="SampleSaveConfiguration">
+              <time>true</time>
+              <latency>true</latency>
+              <timestamp>true</timestamp>
+              <success>true</success>
+              <label>true</label>
+              <code>true</code>
+              <message>true</message>
+              <threadName>true</threadName>
+              <dataType>true</dataType>
+              <encoding>false</encoding>
+              <assertions>true</assertions>
+              <subresults>true</subresults>
+              <responseData>false</responseData>
+              <samplerData>false</samplerData>
+              <xml>false</xml>
+              <fieldNames>true</fieldNames>
+              <responseHeaders>false</responseHeaders>
+              <requestHeaders>false</requestHeaders>
+              <responseDataOnError>false</responseDataOnError>
+              <saveAssertionResultsFailureMessage>true</saveAssertionResultsFailureMessage>
+              <assertionsResultsToSave>0</assertionsResultsToSave>
+              <bytes>true</bytes>
+              <threadCounts>true</threadCounts>
+              <idleTime>true</idleTime>
+            </value>
+          </objProp>
+          <stringProp name="filename"></stringProp>
+        </ResultCollector>
+        <hashTree/>
+        <ResultCollector guiclass="TableVisualizer" testclass="ResultCollector" testname="View Results in Table" enabled="true">
+          <boolProp name="ResultCollector.error_logging">false</boolProp>
+          <objProp>
+            <name>saveConfig</name>
+            <value class="SampleSaveConfiguration">
+              <time>true</time>
+              <latency>true</latency>
+              <timestamp>true</timestamp>
+              <success>true</success>
+              <label>true</label>
+              <code>true</code>
+              <message>true</message>
+              <threadName>true</threadName>
+              <dataType>true</dataType>
+              <encoding>false</encoding>
+              <assertions>true</assertions>
+              <subresults>true</subresults>
+              <responseData>false</responseData>
+              <samplerData>false</samplerData>
+              <xml>false</xml>
+              <fieldNames>true</fieldNames>
+              <responseHeaders>false</responseHeaders>
+              <requestHeaders>false</requestHeaders>
+              <responseDataOnError>false</responseDataOnError>
+              <saveAssertionResultsFailureMessage>true</saveAssertionResultsFailureMessage>
+              <assertionsResultsToSave>0</assertionsResultsToSave>
+              <bytes>true</bytes>
+              <threadCounts>true</threadCounts>
+              <idleTime>true</idleTime>
+            </value>
+          </objProp>
+          <stringProp name="filename"></stringProp>
+        </ResultCollector>
+        <hashTree/>
+        <ResultCollector guiclass="MonitorHealthVisualizer" testclass="ResultCollector" testname="Monitor Results" enabled="true">
+          <boolProp name="ResultCollector.error_logging">false</boolProp>
+          <objProp>
+            <name>saveConfig</name>
+            <value class="SampleSaveConfiguration">
+              <time>true</time>
+              <latency>true</latency>
+              <timestamp>true</timestamp>
+              <success>true</success>
+              <label>true</label>
+              <code>true</code>
+              <message>true</message>
+              <threadName>true</threadName>
+              <dataType>true</dataType>
+              <encoding>false</encoding>
+              <assertions>true</assertions>
+              <subresults>true</subresults>
+              <responseData>false</responseData>
+              <samplerData>false</samplerData>
+              <xml>false</xml>
+              <fieldNames>true</fieldNames>
+              <responseHeaders>false</responseHeaders>
+              <requestHeaders>false</requestHeaders>
+              <responseDataOnError>false</responseDataOnError>
+              <saveAssertionResultsFailureMessage>true</saveAssertionResultsFailureMessage>
+              <assertionsResultsToSave>0</assertionsResultsToSave>
+              <bytes>true</bytes>
+              <threadCounts>true</threadCounts>
+              <idleTime>true</idleTime>
+            </value>
+          </objProp>
+          <stringProp name="filename"></stringProp>
+        </ResultCollector>
+        <hashTree/>
+        <Summariser guiclass="SummariserGui" testclass="Summariser" testname="Generate Summary Results" enabled="true"/>
+        <hashTree/>
+      </hashTree>
+      <ThreadGroup guiclass="ThreadGroupGui" testclass="ThreadGroup" testname="End Session" enabled="false">
+        <stringProp name="ThreadGroup.on_sample_error">continue</stringProp>
+        <elementProp name="ThreadGroup.main_controller" elementType="LoopController" guiclass="LoopControlPanel" testclass="LoopController" testname="Loop Controller" enabled="true">
+          <boolProp name="LoopController.continue_forever">false</boolProp>
+          <intProp name="LoopController.loops">-1</intProp>
+        </elementProp>
+        <stringProp name="ThreadGroup.num_threads">1</stringProp>
+        <stringProp name="ThreadGroup.ramp_time">1</stringProp>
+        <longProp name="ThreadGroup.start_time">1480924764000</longProp>
+        <longProp name="ThreadGroup.end_time">1480924764000</longProp>
+        <boolProp name="ThreadGroup.scheduler">false</boolProp>
+        <stringProp name="ThreadGroup.duration"></stringProp>
+        <stringProp name="ThreadGroup.delay">3</stringProp>
+      </ThreadGroup>
+      <hashTree>
+        <CookieManager guiclass="CookiePanel" testclass="CookieManager" testname="HTTP Cookie Manager" enabled="true">
+          <collectionProp name="CookieManager.cookies"/>
+          <boolProp name="CookieManager.clearEachIteration">false</boolProp>
+          <stringProp name="CookieManager.policy">standard</stringProp>
+          <stringProp name="CookieManager.implementation">org.apache.jmeter.protocol.http.control.HC4CookieHandler</stringProp>
+        </CookieManager>
+        <hashTree/>
+        <ConstantTimer guiclass="ConstantTimerGui" testclass="ConstantTimer" testname="Constant Timer" enabled="true">
+          <stringProp name="ConstantTimer.delay">3000</stringProp>
+        </ConstantTimer>
+        <hashTree/>
+        <HTTPSamplerProxy guiclass="HttpTestSampleGui" testclass="HTTPSamplerProxy" testname="/end_session" enabled="true">
+          <elementProp name="HTTPsampler.Arguments" elementType="Arguments" guiclass="HTTPArgumentsPanel" testclass="Arguments" testname="User Defined Variables" enabled="true">
+            <collectionProp name="Arguments.arguments">
+              <elementProp name="id_token_hint" elementType="HTTPArgument">
+                <boolProp name="HTTPArgument.always_encode">false</boolProp>
+                <stringProp name="Argument.value">${id_token}</stringProp>
+                <stringProp name="Argument.metadata">=</stringProp>
+                <boolProp name="HTTPArgument.use_equals">true</boolProp>
+                <stringProp name="Argument.name">id_token_hint</stringProp>
+              </elementProp>
+            </collectionProp>
+          </elementProp>
+          <stringProp name="HTTPSampler.domain"></stringProp>
+          <stringProp name="HTTPSampler.port"></stringProp>
+          <stringProp name="HTTPSampler.connect_timeout"></stringProp>
+          <stringProp name="HTTPSampler.response_timeout"></stringProp>
+          <stringProp name="HTTPSampler.protocol"></stringProp>
+          <stringProp name="HTTPSampler.contentEncoding"></stringProp>
+          <stringProp name="HTTPSampler.path"></stringProp>
+          <stringProp name="HTTPSampler.method">GET</stringProp>
+          <boolProp name="HTTPSampler.follow_redirects">true</boolProp>
+          <boolProp name="HTTPSampler.auto_redirects">false</boolProp>
+          <boolProp name="HTTPSampler.use_keepalive">true</boolProp>
+          <boolProp name="HTTPSampler.DO_MULTIPART_POST">false</boolProp>
+          <boolProp name="HTTPSampler.monitor">false</boolProp>
+          <stringProp name="HTTPSampler.embedded_url_re"></stringProp>
+        </HTTPSamplerProxy>
+        <hashTree>
+          <JSR223PreProcessor guiclass="TestBeanGUI" testclass="JSR223PreProcessor" testname="JSR223 PreProcessor" enabled="true">
+            <stringProp name="scriptLanguage">java</stringProp>
+            <stringProp name="parameters"></stringProp>
+            <stringProp name="filename"></stringProp>
+            <stringProp name="cacheKey">5747dfc9-3b64-496f-947f-e9ce907c06cd</stringProp>
+            <stringProp name="script">import org.apache.jmeter.protocol.http.control.CookieManager;
+import org.apache.jmeter.protocol.http.control.Cookie;
+
+CookieManager manager = sampler.getCookieManager();
+
+for (Map.Entry entry : props.entrySet()) {
+	if (entry.getKey() instanceof String) {
+	    String key = entry.getKey();
+         if (key.startsWith(&quot;oic.session_state.&quot;)) {
+             String counter = key.substring(&quot;oic.session_state.&quot;.length());
+
+             log.info(&quot;PRE end session, counter : &quot; + counter + &quot;, session_state: &quot; + entry.getValue() + &quot;, props.getProperty(): &quot; + props.getProperty(&quot;oic.session_state.&quot; + counter));
+             
+             Cookie cookie = new Cookie(&quot;session_state&quot;, entry.getValue(), vars.get(&quot;host&quot;), &quot;/&quot;, false, 0);
+             manager.add(cookie); 
+
+             Object idToken = props.getProperty(&quot;oic.id_token.&quot; + counter);
+             log.info(&quot;PRE end session, id_token : &quot; + idToken);
+             vars.put(&quot;id_token&quot;, idToken);
+
+             props.remove(&quot;oic.session_state.&quot; + counter);
+             props.remove(&quot;oic.id_token.&quot; + counter);
+             break;
+         }
+	}
+}</stringProp>
+          </JSR223PreProcessor>
+          <hashTree/>
+          <ResultCollector guiclass="ViewResultsFullVisualizer" testclass="ResultCollector" testname="View Results Tree" enabled="true">
+            <boolProp name="ResultCollector.error_logging">false</boolProp>
+            <objProp>
+              <name>saveConfig</name>
+              <value class="SampleSaveConfiguration">
+                <time>true</time>
+                <latency>true</latency>
+                <timestamp>true</timestamp>
+                <success>true</success>
+                <label>true</label>
+                <code>true</code>
+                <message>true</message>
+                <threadName>true</threadName>
+                <dataType>true</dataType>
+                <encoding>false</encoding>
+                <assertions>true</assertions>
+                <subresults>true</subresults>
+                <responseData>false</responseData>
+                <samplerData>false</samplerData>
+                <xml>false</xml>
+                <fieldNames>true</fieldNames>
+                <responseHeaders>false</responseHeaders>
+                <requestHeaders>false</requestHeaders>
+                <responseDataOnError>false</responseDataOnError>
+                <saveAssertionResultsFailureMessage>true</saveAssertionResultsFailureMessage>
+                <assertionsResultsToSave>0</assertionsResultsToSave>
+                <bytes>true</bytes>
+                <threadCounts>true</threadCounts>
+                <idleTime>true</idleTime>
+              </value>
+            </objProp>
+            <stringProp name="filename"></stringProp>
+          </ResultCollector>
+          <hashTree/>
+        </hashTree>
+      </hashTree>
+      <ResultCollector guiclass="ViewResultsFullVisualizer" testclass="ResultCollector" testname="View Results Tree" enabled="true">
+        <boolProp name="ResultCollector.error_logging">false</boolProp>
+        <objProp>
+          <name>saveConfig</name>
+          <value class="SampleSaveConfiguration">
+            <time>true</time>
+            <latency>true</latency>
+            <timestamp>true</timestamp>
+            <success>true</success>
+            <label>true</label>
+            <code>true</code>
+            <message>true</message>
+            <threadName>true</threadName>
+            <dataType>true</dataType>
+            <encoding>false</encoding>
+            <assertions>true</assertions>
+            <subresults>true</subresults>
+            <responseData>false</responseData>
+            <samplerData>false</samplerData>
+            <xml>false</xml>
+            <fieldNames>true</fieldNames>
+            <responseHeaders>false</responseHeaders>
+            <requestHeaders>false</requestHeaders>
+            <responseDataOnError>false</responseDataOnError>
+            <saveAssertionResultsFailureMessage>true</saveAssertionResultsFailureMessage>
+            <assertionsResultsToSave>0</assertionsResultsToSave>
+            <bytes>true</bytes>
+            <threadCounts>true</threadCounts>
+            <idleTime>true</idleTime>
+          </value>
+        </objProp>
+        <stringProp name="filename"></stringProp>
+      </ResultCollector>
+      <hashTree/>
+      <ResultCollector guiclass="TableVisualizer" testclass="ResultCollector" testname="View Results in Table" enabled="true">
+        <boolProp name="ResultCollector.error_logging">false</boolProp>
+        <objProp>
+          <name>saveConfig</name>
+          <value class="SampleSaveConfiguration">
+            <time>true</time>
+            <latency>true</latency>
+            <timestamp>true</timestamp>
+            <success>true</success>
+            <label>true</label>
+            <code>true</code>
+            <message>true</message>
+            <threadName>true</threadName>
+            <dataType>true</dataType>
+            <encoding>false</encoding>
+            <assertions>true</assertions>
+            <subresults>true</subresults>
+            <responseData>false</responseData>
+            <samplerData>false</samplerData>
+            <xml>false</xml>
+            <fieldNames>true</fieldNames>
+            <responseHeaders>false</responseHeaders>
+            <requestHeaders>false</requestHeaders>
+            <responseDataOnError>false</responseDataOnError>
+            <saveAssertionResultsFailureMessage>true</saveAssertionResultsFailureMessage>
+            <assertionsResultsToSave>0</assertionsResultsToSave>
+            <bytes>true</bytes>
+            <threadCounts>true</threadCounts>
+            <idleTime>true</idleTime>
+          </value>
+        </objProp>
+        <stringProp name="filename"></stringProp>
+      </ResultCollector>
+      <hashTree/>
+      <ResultCollector guiclass="GraphVisualizer" testclass="ResultCollector" testname="Graph Results" enabled="true">
+        <boolProp name="ResultCollector.error_logging">false</boolProp>
+        <objProp>
+          <name>saveConfig</name>
+          <value class="SampleSaveConfiguration">
+            <time>true</time>
+            <latency>true</latency>
+            <timestamp>true</timestamp>
+            <success>true</success>
+            <label>true</label>
+            <code>true</code>
+            <message>true</message>
+            <threadName>true</threadName>
+            <dataType>true</dataType>
+            <encoding>false</encoding>
+            <assertions>true</assertions>
+            <subresults>true</subresults>
+            <responseData>false</responseData>
+            <samplerData>false</samplerData>
+            <xml>false</xml>
+            <fieldNames>true</fieldNames>
+            <responseHeaders>false</responseHeaders>
+            <requestHeaders>false</requestHeaders>
+            <responseDataOnError>false</responseDataOnError>
+            <saveAssertionResultsFailureMessage>true</saveAssertionResultsFailureMessage>
+            <assertionsResultsToSave>0</assertionsResultsToSave>
+            <bytes>true</bytes>
+            <threadCounts>true</threadCounts>
+            <idleTime>true</idleTime>
+          </value>
+        </objProp>
+        <stringProp name="filename"></stringProp>
+      </ResultCollector>
+      <hashTree/>
+      <ResultCollector guiclass="SummaryReport" testclass="ResultCollector" testname="Summary Report" enabled="true">
+        <boolProp name="ResultCollector.error_logging">false</boolProp>
+        <objProp>
+          <name>saveConfig</name>
+          <value class="SampleSaveConfiguration">
+            <time>true</time>
+            <latency>true</latency>
+            <timestamp>true</timestamp>
+            <success>true</success>
+            <label>true</label>
+            <code>true</code>
+            <message>true</message>
+            <threadName>true</threadName>
+            <dataType>true</dataType>
+            <encoding>false</encoding>
+            <assertions>true</assertions>
+            <subresults>true</subresults>
+            <responseData>false</responseData>
+            <samplerData>false</samplerData>
+            <xml>false</xml>
+            <fieldNames>true</fieldNames>
+            <responseHeaders>false</responseHeaders>
+            <requestHeaders>false</requestHeaders>
+            <responseDataOnError>false</responseDataOnError>
+            <saveAssertionResultsFailureMessage>true</saveAssertionResultsFailureMessage>
+            <assertionsResultsToSave>0</assertionsResultsToSave>
+            <bytes>true</bytes>
+            <threadCounts>true</threadCounts>
+            <idleTime>true</idleTime>
+          </value>
+        </objProp>
+        <stringProp name="filename"></stringProp>
+      </ResultCollector>
+      <hashTree/>
+      <ThreadGroup guiclass="ThreadGroupGui" testclass="ThreadGroup" testname="Client Credentials" enabled="false">
+        <stringProp name="ThreadGroup.on_sample_error">continue</stringProp>
+        <elementProp name="ThreadGroup.main_controller" elementType="LoopController" guiclass="LoopControlPanel" testclass="LoopController" testname="Loop Controller" enabled="true">
+          <boolProp name="LoopController.continue_forever">false</boolProp>
+          <stringProp name="LoopController.loops">1</stringProp>
+        </elementProp>
+        <stringProp name="ThreadGroup.num_threads">2000</stringProp>
+        <stringProp name="ThreadGroup.ramp_time">5</stringProp>
+        <longProp name="ThreadGroup.start_time">1482159304000</longProp>
+        <longProp name="ThreadGroup.end_time">1482159304000</longProp>
+        <boolProp name="ThreadGroup.scheduler">false</boolProp>
+        <stringProp name="ThreadGroup.duration"></stringProp>
+        <stringProp name="ThreadGroup.delay"></stringProp>
+      </ThreadGroup>
+      <hashTree>
+        <CookieManager guiclass="CookiePanel" testclass="CookieManager" testname="HTTP Cookie Manager" enabled="true">
+          <collectionProp name="CookieManager.cookies"/>
+          <boolProp name="CookieManager.clearEachIteration">true</boolProp>
+          <stringProp name="CookieManager.policy">standard</stringProp>
+          <stringProp name="CookieManager.implementation">org.apache.jmeter.protocol.http.control.HC4CookieHandler</stringProp>
+        </CookieManager>
+        <hashTree/>
+        <HeaderManager guiclass="HeaderPanel" testclass="HeaderManager" testname="HTTP Header Manager" enabled="true">
+          <collectionProp name="HeaderManager.headers">
+            <elementProp name="" elementType="Header">
+              <stringProp name="Header.name">Authorization</stringProp>
+              <stringProp name="Header.value">${client_header}</stringProp>
+            </elementProp>
+            <elementProp name="" elementType="Header">
+              <stringProp name="Header.name">Content-Type</stringProp>
+              <stringProp name="Header.value">application/x-www-form-urlencoded</stringProp>
+            </elementProp>
+          </collectionProp>
+        </HeaderManager>
+        <hashTree/>
+        <JSR223PreProcessor guiclass="TestBeanGUI" testclass="JSR223PreProcessor" testname="JSR223 PreProcessor" enabled="true">
+          <stringProp name="scriptLanguage">java</stringProp>
+          <stringProp name="parameters"></stringProp>
+          <stringProp name="filename"></stringProp>
+          <stringProp name="cacheKey">5747dfc9-3b64-496f-947f-e9ce907c06cd</stringProp>
+          <stringProp name="script">String credentials = vars.get(&quot;client_id&quot;) + &quot;:&quot; + vars.get(&quot;client_secret&quot;);
+String clientHeader = &quot;Basic &quot; + org.apache.commons.codec.binary.Base64.encodeBase64String(credentials.getBytes(&quot;UTF-8&quot;));
+log.info(&quot;Credentials: &quot; + credentials + &quot;, clientHeader: &quot; + clientHeader);
+OUT.println(&quot;Credentials: &quot; + credentials + &quot;, clientHeader: &quot; + clientHeader);
+vars.put(&quot;client_header&quot;, clientHeader);</stringProp>
+        </JSR223PreProcessor>
+        <hashTree/>
+        <HTTPSamplerProxy guiclass="HttpTestSampleGui" testclass="HTTPSamplerProxy" testname="Token" enabled="true">
+          <elementProp name="HTTPsampler.Arguments" elementType="Arguments" guiclass="HTTPArgumentsPanel" testclass="Arguments" testname="User Defined Variables" enabled="true">
+            <collectionProp name="Arguments.arguments">
+              <elementProp name="grant_type" elementType="HTTPArgument">
+                <boolProp name="HTTPArgument.always_encode">false</boolProp>
+                <stringProp name="Argument.value">client_credentials</stringProp>
+                <stringProp name="Argument.metadata">=</stringProp>
+                <boolProp name="HTTPArgument.use_equals">true</boolProp>
+                <stringProp name="Argument.name">grant_type</stringProp>
+              </elementProp>
+              <elementProp name="client_id" elementType="HTTPArgument">
+                <boolProp name="HTTPArgument.always_encode">false</boolProp>
+                <stringProp name="Argument.value">${client_id}</stringProp>
+                <stringProp name="Argument.metadata">=</stringProp>
+                <boolProp name="HTTPArgument.use_equals">true</boolProp>
+                <stringProp name="Argument.name">client_id</stringProp>
+              </elementProp>
+              <elementProp name="scope" elementType="HTTPArgument">
+                <boolProp name="HTTPArgument.always_encode">false</boolProp>
+                <stringProp name="Argument.value">${scope}</stringProp>
+                <stringProp name="Argument.metadata">=</stringProp>
+                <boolProp name="HTTPArgument.use_equals">true</boolProp>
+                <stringProp name="Argument.name">scope</stringProp>
+              </elementProp>
+            </collectionProp>
+          </elementProp>
+          <stringProp name="HTTPSampler.domain"></stringProp>
+          <stringProp name="HTTPSampler.port"></stringProp>
+          <stringProp name="HTTPSampler.connect_timeout"></stringProp>
+          <stringProp name="HTTPSampler.response_timeout"></stringProp>
+          <stringProp name="HTTPSampler.protocol"></stringProp>
+          <stringProp name="HTTPSampler.contentEncoding"></stringProp>
+          <stringProp name="HTTPSampler.path">/oxauth/restv1/token</stringProp>
+          <stringProp name="HTTPSampler.method">POST</stringProp>
+          <boolProp name="HTTPSampler.follow_redirects">true</boolProp>
+          <boolProp name="HTTPSampler.auto_redirects">false</boolProp>
+          <boolProp name="HTTPSampler.use_keepalive">true</boolProp>
+          <boolProp name="HTTPSampler.DO_MULTIPART_POST">false</boolProp>
+          <boolProp name="HTTPSampler.monitor">false</boolProp>
+          <stringProp name="HTTPSampler.embedded_url_re"></stringProp>
+        </HTTPSamplerProxy>
+        <hashTree/>
+        <ResultCollector guiclass="ViewResultsFullVisualizer" testclass="ResultCollector" testname="View Results Tree" enabled="true">
+          <boolProp name="ResultCollector.error_logging">false</boolProp>
+          <objProp>
+            <name>saveConfig</name>
+            <value class="SampleSaveConfiguration">
+              <time>true</time>
+              <latency>true</latency>
+              <timestamp>true</timestamp>
+              <success>true</success>
+              <label>true</label>
+              <code>true</code>
+              <message>true</message>
+              <threadName>true</threadName>
+              <dataType>true</dataType>
+              <encoding>false</encoding>
+              <assertions>true</assertions>
+              <subresults>true</subresults>
+              <responseData>false</responseData>
+              <samplerData>false</samplerData>
+              <xml>false</xml>
+              <fieldNames>true</fieldNames>
+              <responseHeaders>false</responseHeaders>
+              <requestHeaders>false</requestHeaders>
+              <responseDataOnError>false</responseDataOnError>
+              <saveAssertionResultsFailureMessage>true</saveAssertionResultsFailureMessage>
+              <assertionsResultsToSave>0</assertionsResultsToSave>
+              <bytes>true</bytes>
+              <threadCounts>true</threadCounts>
+              <idleTime>true</idleTime>
+            </value>
+          </objProp>
+          <stringProp name="filename"></stringProp>
+        </ResultCollector>
+        <hashTree/>
+        <ResultCollector guiclass="SummaryReport" testclass="ResultCollector" testname="Summary Report" enabled="true">
+          <boolProp name="ResultCollector.error_logging">false</boolProp>
+          <objProp>
+            <name>saveConfig</name>
+            <value class="SampleSaveConfiguration">
+              <time>true</time>
+              <latency>true</latency>
+              <timestamp>true</timestamp>
+              <success>true</success>
+              <label>true</label>
+              <code>true</code>
+              <message>true</message>
+              <threadName>true</threadName>
+              <dataType>true</dataType>
+              <encoding>false</encoding>
+              <assertions>true</assertions>
+              <subresults>true</subresults>
+              <responseData>false</responseData>
+              <samplerData>false</samplerData>
+              <xml>false</xml>
+              <fieldNames>true</fieldNames>
+              <responseHeaders>false</responseHeaders>
+              <requestHeaders>false</requestHeaders>
+              <responseDataOnError>false</responseDataOnError>
+              <saveAssertionResultsFailureMessage>true</saveAssertionResultsFailureMessage>
+              <assertionsResultsToSave>0</assertionsResultsToSave>
+              <bytes>true</bytes>
+              <threadCounts>true</threadCounts>
+              <idleTime>true</idleTime>
+            </value>
+          </objProp>
+          <stringProp name="filename"></stringProp>
+        </ResultCollector>
+        <hashTree/>
+      </hashTree>
+    </hashTree>
+  </hashTree>
+</jmeterTestPlan>
diff --git a/oxAuth/jmeter/test/Implicit_Flow_c7_horizontal_scale.jmx b/oxAuth/jmeter/test/Implicit_Flow_c7_horizontal_scale.jmx
new file mode 100644
index 00000000..0c7b75f6
--- /dev/null
+++ b/oxAuth/jmeter/test/Implicit_Flow_c7_horizontal_scale.jmx
@@ -0,0 +1,1150 @@
+<?xml version="1.0" encoding="UTF-8"?>
+<jmeterTestPlan version="1.2" properties="2.9" jmeter="3.0 r1743807">
+  <hashTree>
+    <TestPlan guiclass="TestPlanGui" testclass="TestPlan" testname="Authorization Code Flow" enabled="true">
+      <stringProp name="TestPlan.comments"></stringProp>
+      <boolProp name="TestPlan.functional_mode">false</boolProp>
+      <boolProp name="TestPlan.serialize_threadgroups">true</boolProp>
+      <elementProp name="TestPlan.user_defined_variables" elementType="Arguments" guiclass="ArgumentsPanel" testclass="Arguments" testname="User Defined Variables" enabled="true">
+        <collectionProp name="Arguments.arguments">
+          <elementProp name="host" elementType="Argument">
+            <stringProp name="Argument.name">host</stringProp>
+            <stringProp name="Argument.value">c7.gluu.org</stringProp>
+            <stringProp name="Argument.metadata">=</stringProp>
+          </elementProp>
+          <elementProp name="scope" elementType="Argument">
+            <stringProp name="Argument.name">scope</stringProp>
+            <stringProp name="Argument.value">openid profile email user_name</stringProp>
+            <stringProp name="Argument.metadata">=</stringProp>
+          </elementProp>
+          <elementProp name="username" elementType="Argument">
+            <stringProp name="Argument.name">username</stringProp>
+            <stringProp name="Argument.value">admin</stringProp>
+            <stringProp name="Argument.metadata">=</stringProp>
+          </elementProp>
+          <elementProp name="password" elementType="Argument">
+            <stringProp name="Argument.name">password</stringProp>
+            <stringProp name="Argument.value">secret</stringProp>
+            <stringProp name="Argument.metadata">=</stringProp>
+          </elementProp>
+          <elementProp name="redirect_uri" elementType="Argument">
+            <stringProp name="Argument.name">redirect_uri</stringProp>
+            <stringProp name="Argument.value">https://c7.gluu.org/identity/authentication/authcode</stringProp>
+            <stringProp name="Argument.metadata">=</stringProp>
+          </elementProp>
+          <elementProp name="client_id" elementType="Argument">
+            <stringProp name="Argument.name">client_id</stringProp>
+            <stringProp name="Argument.value">@!BEC5.3835.F781.311D!0001!7E45.43DF!0008!B20B.4D91</stringProp>
+            <stringProp name="Argument.metadata">=</stringProp>
+          </elementProp>
+          <elementProp name="client_secret" elementType="Argument">
+            <stringProp name="Argument.name">client_secret</stringProp>
+            <stringProp name="Argument.value">4Dyh1YpQTJmT</stringProp>
+            <stringProp name="Argument.metadata">=</stringProp>
+          </elementProp>
+          <elementProp name="client_header" elementType="Argument">
+            <stringProp name="Argument.name">client_header</stringProp>
+            <stringProp name="Argument.value">to_override_in_jsr223</stringProp>
+            <stringProp name="Argument.metadata">=</stringProp>
+          </elementProp>
+          <elementProp name="access_token" elementType="Argument">
+            <stringProp name="Argument.name">access_token</stringProp>
+            <stringProp name="Argument.value"></stringProp>
+            <stringProp name="Argument.metadata">=</stringProp>
+          </elementProp>
+          <elementProp name="bearer_access_token" elementType="Argument">
+            <stringProp name="Argument.name">bearer_access_token</stringProp>
+            <stringProp name="Argument.value"></stringProp>
+            <stringProp name="Argument.metadata">=</stringProp>
+          </elementProp>
+        </collectionProp>
+      </elementProp>
+      <stringProp name="TestPlan.user_define_classpath"></stringProp>
+    </TestPlan>
+    <hashTree>
+      <ConfigTestElement guiclass="HttpDefaultsGui" testclass="ConfigTestElement" testname="HTTP Request Defaults" enabled="true">
+        <elementProp name="HTTPsampler.Arguments" elementType="Arguments" guiclass="HTTPArgumentsPanel" testclass="Arguments" testname="User Defined Variables" enabled="true">
+          <collectionProp name="Arguments.arguments"/>
+        </elementProp>
+        <stringProp name="HTTPSampler.domain">${host}</stringProp>
+        <stringProp name="HTTPSampler.port"></stringProp>
+        <stringProp name="HTTPSampler.connect_timeout">60000</stringProp>
+        <stringProp name="HTTPSampler.response_timeout">60000</stringProp>
+        <stringProp name="HTTPSampler.protocol">https</stringProp>
+        <stringProp name="HTTPSampler.contentEncoding"></stringProp>
+        <stringProp name="HTTPSampler.path"></stringProp>
+        <stringProp name="HTTPSampler.implementation">HttpClient4</stringProp>
+        <stringProp name="HTTPSampler.concurrentPool">6</stringProp>
+      </ConfigTestElement>
+      <hashTree/>
+      <ThreadGroup guiclass="ThreadGroupGui" testclass="ThreadGroup" testname="Main" enabled="true">
+        <stringProp name="ThreadGroup.on_sample_error">continue</stringProp>
+        <elementProp name="ThreadGroup.main_controller" elementType="LoopController" guiclass="LoopControlPanel" testclass="LoopController" testname="Loop Controller" enabled="true">
+          <boolProp name="LoopController.continue_forever">false</boolProp>
+          <stringProp name="LoopController.loops">1</stringProp>
+        </elementProp>
+        <stringProp name="ThreadGroup.num_threads">1</stringProp>
+        <stringProp name="ThreadGroup.ramp_time">1</stringProp>
+        <longProp name="ThreadGroup.start_time">1479823133000</longProp>
+        <longProp name="ThreadGroup.end_time">1479823133000</longProp>
+        <boolProp name="ThreadGroup.scheduler">false</boolProp>
+        <stringProp name="ThreadGroup.duration"></stringProp>
+        <stringProp name="ThreadGroup.delay"></stringProp>
+      </ThreadGroup>
+      <hashTree>
+        <GenericController guiclass="LogicControllerGui" testclass="GenericController" testname="Simple Controller" enabled="true"/>
+        <hashTree>
+          <CacheManager guiclass="CacheManagerGui" testclass="CacheManager" testname="HTTP Cache Manager" enabled="true">
+            <boolProp name="clearEachIteration">true</boolProp>
+            <boolProp name="useExpires">false</boolProp>
+          </CacheManager>
+          <hashTree/>
+          <CookieManager guiclass="CookiePanel" testclass="CookieManager" testname="HTTP Cookie Manager" enabled="true">
+            <collectionProp name="CookieManager.cookies"/>
+            <boolProp name="CookieManager.clearEachIteration">true</boolProp>
+            <stringProp name="CookieManager.policy">standard</stringProp>
+            <stringProp name="CookieManager.implementation">org.apache.jmeter.protocol.http.control.HC4CookieHandler</stringProp>
+          </CookieManager>
+          <hashTree/>
+          <CounterConfig guiclass="CounterConfigGui" testclass="CounterConfig" testname="session_state_counter" enabled="true">
+            <stringProp name="CounterConfig.start">1</stringProp>
+            <stringProp name="CounterConfig.end"></stringProp>
+            <stringProp name="CounterConfig.incr">1</stringProp>
+            <stringProp name="CounterConfig.name">session_state_counter</stringProp>
+            <stringProp name="CounterConfig.format"></stringProp>
+            <boolProp name="CounterConfig.per_user">false</boolProp>
+          </CounterConfig>
+          <hashTree/>
+          <HTTPSamplerProxy guiclass="HttpTestSampleGui" testclass="HTTPSamplerProxy" testname="/authorize" enabled="true">
+            <elementProp name="HTTPsampler.Arguments" elementType="Arguments" guiclass="HTTPArgumentsPanel" testclass="Arguments" testname="User Defined Variables" enabled="true">
+              <collectionProp name="Arguments.arguments">
+                <elementProp name="scope" elementType="HTTPArgument">
+                  <boolProp name="HTTPArgument.always_encode">true</boolProp>
+                  <stringProp name="Argument.value">${scope}</stringProp>
+                  <stringProp name="Argument.metadata">=</stringProp>
+                  <boolProp name="HTTPArgument.use_equals">true</boolProp>
+                  <stringProp name="Argument.name">scope</stringProp>
+                </elementProp>
+                <elementProp name="response_type" elementType="HTTPArgument">
+                  <boolProp name="HTTPArgument.always_encode">false</boolProp>
+                  <stringProp name="Argument.value">token</stringProp>
+                  <stringProp name="Argument.metadata">=</stringProp>
+                  <boolProp name="HTTPArgument.use_equals">true</boolProp>
+                  <stringProp name="Argument.name">response_type</stringProp>
+                </elementProp>
+                <elementProp name="nonce" elementType="HTTPArgument">
+                  <boolProp name="HTTPArgument.always_encode">false</boolProp>
+                  <stringProp name="Argument.value">nonce</stringProp>
+                  <stringProp name="Argument.metadata">=</stringProp>
+                  <boolProp name="HTTPArgument.use_equals">true</boolProp>
+                  <stringProp name="Argument.name">nonce</stringProp>
+                </elementProp>
+                <elementProp name="redirect_uri" elementType="HTTPArgument">
+                  <boolProp name="HTTPArgument.always_encode">true</boolProp>
+                  <stringProp name="Argument.value">${redirect_uri}</stringProp>
+                  <stringProp name="Argument.metadata">=</stringProp>
+                  <boolProp name="HTTPArgument.use_equals">true</boolProp>
+                  <stringProp name="Argument.name">redirect_uri</stringProp>
+                </elementProp>
+                <elementProp name="client_id" elementType="HTTPArgument">
+                  <boolProp name="HTTPArgument.always_encode">true</boolProp>
+                  <stringProp name="Argument.value">${client_id}</stringProp>
+                  <stringProp name="Argument.metadata">=</stringProp>
+                  <boolProp name="HTTPArgument.use_equals">true</boolProp>
+                  <stringProp name="Argument.name">client_id</stringProp>
+                </elementProp>
+              </collectionProp>
+            </elementProp>
+            <stringProp name="HTTPSampler.domain"></stringProp>
+            <stringProp name="HTTPSampler.port"></stringProp>
+            <stringProp name="HTTPSampler.connect_timeout"></stringProp>
+            <stringProp name="HTTPSampler.response_timeout"></stringProp>
+            <stringProp name="HTTPSampler.protocol">https</stringProp>
+            <stringProp name="HTTPSampler.contentEncoding"></stringProp>
+            <stringProp name="HTTPSampler.path">/oxauth/restv1/authorize</stringProp>
+            <stringProp name="HTTPSampler.method">GET</stringProp>
+            <boolProp name="HTTPSampler.follow_redirects">true</boolProp>
+            <boolProp name="HTTPSampler.auto_redirects">false</boolProp>
+            <boolProp name="HTTPSampler.use_keepalive">false</boolProp>
+            <boolProp name="HTTPSampler.DO_MULTIPART_POST">false</boolProp>
+            <stringProp name="HTTPSampler.implementation">HttpClient4</stringProp>
+            <boolProp name="HTTPSampler.monitor">false</boolProp>
+            <stringProp name="HTTPSampler.embedded_url_re"></stringProp>
+          </HTTPSamplerProxy>
+          <hashTree>
+            <RegexExtractor guiclass="RegexExtractorGui" testclass="RegexExtractor" testname="Regular Expression Extractor : javax.faces.FormSignature" enabled="true">
+              <stringProp name="RegexExtractor.useHeaders">false</stringProp>
+              <stringProp name="RegexExtractor.refname">javax.faces.FormSignature</stringProp>
+              <stringProp name="RegexExtractor.regex">&lt;input type=&quot;hidden&quot; name=&quot;javax.faces.FormSignature&quot; value=&quot;(.+?)&quot; /&gt;</stringProp>
+              <stringProp name="RegexExtractor.template">$1$</stringProp>
+              <stringProp name="RegexExtractor.default"></stringProp>
+              <stringProp name="RegexExtractor.match_number"></stringProp>
+            </RegexExtractor>
+            <hashTree/>
+            <RegexExtractor guiclass="RegexExtractorGui" testclass="RegexExtractor" testname="Regular Expression Extractor : javax.faces.ViewState" enabled="true">
+              <stringProp name="RegexExtractor.useHeaders">false</stringProp>
+              <stringProp name="RegexExtractor.refname">javax.faces.ViewState</stringProp>
+              <stringProp name="RegexExtractor.regex">&lt;input type=&quot;hidden&quot; name=&quot;javax.faces.ViewState&quot; id=&quot;javax.faces.ViewState&quot; value=&quot;(.+?)&quot; autocomplete=&quot;off&quot; /&gt;</stringProp>
+              <stringProp name="RegexExtractor.template">$1$</stringProp>
+              <stringProp name="RegexExtractor.default"></stringProp>
+              <stringProp name="RegexExtractor.match_number"></stringProp>
+            </RegexExtractor>
+            <hashTree/>
+            <ResultCollector guiclass="ViewResultsFullVisualizer" testclass="ResultCollector" testname="View Results Tree" enabled="true">
+              <boolProp name="ResultCollector.error_logging">false</boolProp>
+              <objProp>
+                <name>saveConfig</name>
+                <value class="SampleSaveConfiguration">
+                  <time>true</time>
+                  <latency>true</latency>
+                  <timestamp>true</timestamp>
+                  <success>true</success>
+                  <label>true</label>
+                  <code>true</code>
+                  <message>true</message>
+                  <threadName>true</threadName>
+                  <dataType>true</dataType>
+                  <encoding>false</encoding>
+                  <assertions>true</assertions>
+                  <subresults>true</subresults>
+                  <responseData>false</responseData>
+                  <samplerData>false</samplerData>
+                  <xml>false</xml>
+                  <fieldNames>true</fieldNames>
+                  <responseHeaders>false</responseHeaders>
+                  <requestHeaders>false</requestHeaders>
+                  <responseDataOnError>false</responseDataOnError>
+                  <saveAssertionResultsFailureMessage>true</saveAssertionResultsFailureMessage>
+                  <assertionsResultsToSave>0</assertionsResultsToSave>
+                  <bytes>true</bytes>
+                  <threadCounts>true</threadCounts>
+                  <idleTime>true</idleTime>
+                </value>
+              </objProp>
+              <stringProp name="filename"></stringProp>
+            </ResultCollector>
+            <hashTree/>
+          </hashTree>
+          <HTTPSamplerProxy guiclass="HttpTestSampleGui" testclass="HTTPSamplerProxy" testname="/oxauth/login" enabled="true">
+            <elementProp name="HTTPsampler.Arguments" elementType="Arguments" guiclass="HTTPArgumentsPanel" testclass="Arguments" enabled="true">
+              <collectionProp name="Arguments.arguments">
+                <elementProp name="loginForm" elementType="HTTPArgument">
+                  <boolProp name="HTTPArgument.always_encode">false</boolProp>
+                  <stringProp name="Argument.name">loginForm</stringProp>
+                  <stringProp name="Argument.value">loginForm</stringProp>
+                  <stringProp name="Argument.metadata">=</stringProp>
+                  <boolProp name="HTTPArgument.use_equals">true</boolProp>
+                </elementProp>
+                <elementProp name="loginForm:username" elementType="HTTPArgument">
+                  <boolProp name="HTTPArgument.always_encode">true</boolProp>
+                  <stringProp name="Argument.name">loginForm:username</stringProp>
+                  <stringProp name="Argument.value">${username}</stringProp>
+                  <stringProp name="Argument.metadata">=</stringProp>
+                  <boolProp name="HTTPArgument.use_equals">true</boolProp>
+                </elementProp>
+                <elementProp name="loginForm:password" elementType="HTTPArgument">
+                  <boolProp name="HTTPArgument.always_encode">true</boolProp>
+                  <stringProp name="Argument.name">loginForm:password</stringProp>
+                  <stringProp name="Argument.value">${password}</stringProp>
+                  <stringProp name="Argument.metadata">=</stringProp>
+                  <boolProp name="HTTPArgument.use_equals">true</boolProp>
+                </elementProp>
+                <elementProp name="loginForm:loginButton" elementType="HTTPArgument">
+                  <boolProp name="HTTPArgument.always_encode">true</boolProp>
+                  <stringProp name="Argument.name">loginForm:loginButton</stringProp>
+                  <stringProp name="Argument.value">Login</stringProp>
+                  <stringProp name="Argument.metadata">=</stringProp>
+                  <boolProp name="HTTPArgument.use_equals">true</boolProp>
+                </elementProp>
+                <elementProp name="javax.faces.ViewState" elementType="HTTPArgument">
+                  <boolProp name="HTTPArgument.always_encode">true</boolProp>
+                  <stringProp name="Argument.name">javax.faces.ViewState</stringProp>
+                  <stringProp name="Argument.value">stateless</stringProp>
+                  <stringProp name="Argument.metadata">=</stringProp>
+                  <boolProp name="HTTPArgument.use_equals">true</boolProp>
+                </elementProp>
+              </collectionProp>
+            </elementProp>
+            <stringProp name="HTTPSampler.domain"></stringProp>
+            <stringProp name="HTTPSampler.port">443</stringProp>
+            <stringProp name="HTTPSampler.connect_timeout"></stringProp>
+            <stringProp name="HTTPSampler.response_timeout"></stringProp>
+            <stringProp name="HTTPSampler.protocol">https</stringProp>
+            <stringProp name="HTTPSampler.contentEncoding">UTF-8</stringProp>
+            <stringProp name="HTTPSampler.path">/oxauth/login</stringProp>
+            <stringProp name="HTTPSampler.method">POST</stringProp>
+            <boolProp name="HTTPSampler.follow_redirects">true</boolProp>
+            <boolProp name="HTTPSampler.auto_redirects">false</boolProp>
+            <boolProp name="HTTPSampler.use_keepalive">false</boolProp>
+            <boolProp name="HTTPSampler.DO_MULTIPART_POST">false</boolProp>
+            <stringProp name="HTTPSampler.implementation">HttpClient4</stringProp>
+            <boolProp name="HTTPSampler.monitor">false</boolProp>
+            <stringProp name="HTTPSampler.embedded_url_re"></stringProp>
+            <stringProp name="TestPlan.comments">Detected the start of a redirect chain</stringProp>
+          </HTTPSamplerProxy>
+          <hashTree>
+            <HeaderManager guiclass="HeaderPanel" testclass="HeaderManager" testname="HTTP Header Manager" enabled="true">
+              <collectionProp name="HeaderManager.headers">
+                <elementProp name="Content-Type" elementType="Header">
+                  <stringProp name="Header.name">Content-Type</stringProp>
+                  <stringProp name="Header.value">application/x-www-form-urlencoded</stringProp>
+                </elementProp>
+                <elementProp name="Accept-Language" elementType="Header">
+                  <stringProp name="Header.name">Accept-Language</stringProp>
+                  <stringProp name="Header.value">en-US,en;q=0.5</stringProp>
+                </elementProp>
+                <elementProp name="Accept" elementType="Header">
+                  <stringProp name="Header.name">Accept</stringProp>
+                  <stringProp name="Header.value">text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8</stringProp>
+                </elementProp>
+                <elementProp name="User-Agent" elementType="Header">
+                  <stringProp name="Header.name">User-Agent</stringProp>
+                  <stringProp name="Header.value">Mozilla/5.0 (Windows NT 6.1; WOW64; rv:24.0) Gecko/20100101 Firefox/24.0</stringProp>
+                </elementProp>
+                <elementProp name="Referer" elementType="Header">
+                  <stringProp name="Header.name">Referer</stringProp>
+                  <stringProp name="Header.value">https://${host}/oxauth/login</stringProp>
+                </elementProp>
+                <elementProp name="Accept-Encoding" elementType="Header">
+                  <stringProp name="Header.name">Accept-Encoding</stringProp>
+                  <stringProp name="Header.value">gzip, deflate</stringProp>
+                </elementProp>
+              </collectionProp>
+            </HeaderManager>
+            <hashTree/>
+            <JSR223PreProcessor guiclass="TestBeanGUI" testclass="JSR223PreProcessor" testname="JSR223 PreProcessor : identify user credentials" enabled="true">
+              <stringProp name="scriptLanguage">java</stringProp>
+              <stringProp name="parameters"></stringProp>
+              <stringProp name="filename"></stringProp>
+              <stringProp name="cacheKey">5747dfc9-3b64-496f-947f-e9ce907c06cd</stringProp>
+              <stringProp name="script">double weight = 0.7d;
+
+int min = 1;
+int max = 1000;
+
+int minX = 1001;
+int maxX = 100000;
+
+float chance = new Random().nextFloat();
+if (chance &lt;= weight) {
+	min = minX;
+	max = maxX;
+}
+
+int userNumber = new Random().nextInt(max - min + 1) + min;
+String username = &quot;user&quot; + userNumber;
+String username = &quot;admin&quot;;
+
+log.info(&quot;username: &quot; + &quot;admin&quot;);
+
+vars.put(&quot;username&quot;, &quot;admin&quot;);
+</stringProp>
+            </JSR223PreProcessor>
+            <hashTree/>
+            <ResultCollector guiclass="ViewResultsFullVisualizer" testclass="ResultCollector" testname="View Results Tree" enabled="true">
+              <boolProp name="ResultCollector.error_logging">false</boolProp>
+              <objProp>
+                <name>saveConfig</name>
+                <value class="SampleSaveConfiguration">
+                  <time>true</time>
+                  <latency>true</latency>
+                  <timestamp>true</timestamp>
+                  <success>true</success>
+                  <label>true</label>
+                  <code>true</code>
+                  <message>true</message>
+                  <threadName>true</threadName>
+                  <dataType>true</dataType>
+                  <encoding>false</encoding>
+                  <assertions>true</assertions>
+                  <subresults>true</subresults>
+                  <responseData>false</responseData>
+                  <samplerData>false</samplerData>
+                  <xml>false</xml>
+                  <fieldNames>true</fieldNames>
+                  <responseHeaders>false</responseHeaders>
+                  <requestHeaders>false</requestHeaders>
+                  <responseDataOnError>false</responseDataOnError>
+                  <saveAssertionResultsFailureMessage>true</saveAssertionResultsFailureMessage>
+                  <assertionsResultsToSave>0</assertionsResultsToSave>
+                  <bytes>true</bytes>
+                  <threadCounts>true</threadCounts>
+                  <idleTime>true</idleTime>
+                </value>
+              </objProp>
+              <stringProp name="filename"></stringProp>
+            </ResultCollector>
+            <hashTree/>
+            <JSR223PostProcessor guiclass="TestBeanGUI" testclass="JSR223PostProcessor" testname="JSR223 PostProcessor : extract code" enabled="true">
+              <stringProp name="cacheKey"></stringProp>
+              <stringProp name="filename"></stringProp>
+              <stringProp name="parameters"></stringProp>
+              <stringProp name="script">String token = &quot;&quot;;
+if (prev.getUrlAsString().contains(&quot;#access_token=&quot;)) {
+	token = org.apache.commons.lang3.StringUtils.substringAfter(prev.getUrlAsString(), &quot;#access_token=&quot;);
+} 
+if (token.contains(&quot;&amp;&quot;)) {
+	token = org.apache.commons.lang3.StringUtils.substringBefore(token, &quot;&amp;&quot;);
+}
+
+vars.put(&quot;access_token&quot;, token);
+vars.put(&quot;bearer_access_token&quot;, &quot;Bearer &quot; + token);
+
+log.info(&quot;login post processor, access_token : &quot; + token + &quot;, url:&quot; + prev.getUrlAsString());
+
+
+
+</stringProp>
+              <stringProp name="scriptLanguage">java</stringProp>
+            </JSR223PostProcessor>
+            <hashTree/>
+            <BeanShellAssertion guiclass="BeanShellAssertionGui" testclass="BeanShellAssertion" testname="BeanShell Assertion" enabled="true">
+              <stringProp name="BeanShellAssertion.query">String accessToken = vars.get(&quot;access_token&quot;);
+boolean result = org.apache.commons.lang3.StringUtils.isBlank(accessToken);
+Failure = result;
+log.info(&quot;bean asserter, result : &quot; + result + &quot;, access_token: &quot; + accessToken);</stringProp>
+              <stringProp name="BeanShellAssertion.filename"></stringProp>
+              <stringProp name="BeanShellAssertion.parameters"></stringProp>
+              <boolProp name="BeanShellAssertion.resetInterpreter">false</boolProp>
+            </BeanShellAssertion>
+            <hashTree/>
+          </hashTree>
+          <ResponseAssertion guiclass="AssertionGui" testclass="ResponseAssertion" testname="Response Assertion" enabled="false">
+            <collectionProp name="Asserion.test_strings">
+              <stringProp name="22590572">access_token
+</stringProp>
+            </collectionProp>
+            <stringProp name="Assertion.test_field">Assertion.sample_label</stringProp>
+            <boolProp name="Assertion.assume_success">false</boolProp>
+            <intProp name="Assertion.test_type">2</intProp>
+            <stringProp name="Assertion.scope">variable</stringProp>
+            <stringProp name="Scope.variable"></stringProp>
+          </ResponseAssertion>
+          <hashTree/>
+          <ConfigTestElement guiclass="HttpDefaultsGui" testclass="ConfigTestElement" testname="HTTP Request Defaults" enabled="true">
+            <elementProp name="HTTPsampler.Arguments" elementType="Arguments" guiclass="HTTPArgumentsPanel" testclass="Arguments" testname="User Defined Variables" enabled="true">
+              <collectionProp name="Arguments.arguments"/>
+            </elementProp>
+            <stringProp name="HTTPSampler.domain"></stringProp>
+            <stringProp name="HTTPSampler.port"></stringProp>
+            <stringProp name="HTTPSampler.connect_timeout">60000</stringProp>
+            <stringProp name="HTTPSampler.response_timeout">60000</stringProp>
+            <stringProp name="HTTPSampler.protocol"></stringProp>
+            <stringProp name="HTTPSampler.contentEncoding"></stringProp>
+            <stringProp name="HTTPSampler.path"></stringProp>
+            <stringProp name="HTTPSampler.concurrentPool">6</stringProp>
+          </ConfigTestElement>
+          <hashTree/>
+          <LoopController guiclass="LoopControlPanel" testclass="LoopController" testname="Loop Controller" enabled="true">
+            <boolProp name="LoopController.continue_forever">true</boolProp>
+            <stringProp name="LoopController.loops">3</stringProp>
+          </LoopController>
+          <hashTree>
+            <HTTPSamplerProxy guiclass="HttpTestSampleGui" testclass="HTTPSamplerProxy" testname="/userinfo" enabled="true">
+              <elementProp name="HTTPsampler.Arguments" elementType="Arguments" guiclass="HTTPArgumentsPanel" testclass="Arguments" enabled="true">
+                <collectionProp name="Arguments.arguments">
+                  <elementProp name="access_token" elementType="HTTPArgument">
+                    <boolProp name="HTTPArgument.always_encode">true</boolProp>
+                    <stringProp name="Argument.value">${access_token}</stringProp>
+                    <stringProp name="Argument.metadata">=</stringProp>
+                    <boolProp name="HTTPArgument.use_equals">true</boolProp>
+                    <stringProp name="Argument.name">access_token</stringProp>
+                  </elementProp>
+                </collectionProp>
+              </elementProp>
+              <stringProp name="HTTPSampler.domain"></stringProp>
+              <stringProp name="HTTPSampler.port"></stringProp>
+              <stringProp name="HTTPSampler.connect_timeout"></stringProp>
+              <stringProp name="HTTPSampler.response_timeout"></stringProp>
+              <stringProp name="HTTPSampler.protocol"></stringProp>
+              <stringProp name="HTTPSampler.contentEncoding"></stringProp>
+              <stringProp name="HTTPSampler.path">/oxauth/restv1/userinfo</stringProp>
+              <stringProp name="HTTPSampler.method">GET</stringProp>
+              <boolProp name="HTTPSampler.follow_redirects">true</boolProp>
+              <boolProp name="HTTPSampler.auto_redirects">false</boolProp>
+              <boolProp name="HTTPSampler.use_keepalive">true</boolProp>
+              <boolProp name="HTTPSampler.DO_MULTIPART_POST">false</boolProp>
+              <boolProp name="HTTPSampler.monitor">false</boolProp>
+              <stringProp name="HTTPSampler.embedded_url_re"></stringProp>
+            </HTTPSamplerProxy>
+            <hashTree>
+              <CookieManager guiclass="CookiePanel" testclass="CookieManager" testname="HTTP Cookie Manager" enabled="true">
+                <collectionProp name="CookieManager.cookies"/>
+                <boolProp name="CookieManager.clearEachIteration">false</boolProp>
+                <stringProp name="CookieManager.policy">standard</stringProp>
+                <stringProp name="CookieManager.implementation">org.apache.jmeter.protocol.http.control.HC4CookieHandler</stringProp>
+              </CookieManager>
+              <hashTree/>
+              <HeaderManager guiclass="HeaderPanel" testclass="HeaderManager" testname="HTTP Header Manager" enabled="true">
+                <collectionProp name="HeaderManager.headers">
+                  <elementProp name="" elementType="Header">
+                    <stringProp name="Header.name">Authorization</stringProp>
+                    <stringProp name="Header.value">${bearer_access_token}</stringProp>
+                  </elementProp>
+                </collectionProp>
+              </HeaderManager>
+              <hashTree/>
+              <ResultCollector guiclass="ViewResultsFullVisualizer" testclass="ResultCollector" testname="View Results Tree" enabled="true">
+                <boolProp name="ResultCollector.error_logging">false</boolProp>
+                <objProp>
+                  <name>saveConfig</name>
+                  <value class="SampleSaveConfiguration">
+                    <time>true</time>
+                    <latency>true</latency>
+                    <timestamp>true</timestamp>
+                    <success>true</success>
+                    <label>true</label>
+                    <code>true</code>
+                    <message>true</message>
+                    <threadName>true</threadName>
+                    <dataType>true</dataType>
+                    <encoding>false</encoding>
+                    <assertions>true</assertions>
+                    <subresults>true</subresults>
+                    <responseData>false</responseData>
+                    <samplerData>false</samplerData>
+                    <xml>false</xml>
+                    <fieldNames>true</fieldNames>
+                    <responseHeaders>false</responseHeaders>
+                    <requestHeaders>false</requestHeaders>
+                    <responseDataOnError>false</responseDataOnError>
+                    <saveAssertionResultsFailureMessage>true</saveAssertionResultsFailureMessage>
+                    <assertionsResultsToSave>0</assertionsResultsToSave>
+                    <bytes>true</bytes>
+                    <threadCounts>true</threadCounts>
+                    <idleTime>true</idleTime>
+                  </value>
+                </objProp>
+                <stringProp name="filename"></stringProp>
+              </ResultCollector>
+              <hashTree/>
+              <ResultCollector guiclass="TableVisualizer" testclass="ResultCollector" testname="View Results in Table" enabled="true">
+                <boolProp name="ResultCollector.error_logging">false</boolProp>
+                <objProp>
+                  <name>saveConfig</name>
+                  <value class="SampleSaveConfiguration">
+                    <time>true</time>
+                    <latency>true</latency>
+                    <timestamp>true</timestamp>
+                    <success>true</success>
+                    <label>true</label>
+                    <code>true</code>
+                    <message>true</message>
+                    <threadName>true</threadName>
+                    <dataType>true</dataType>
+                    <encoding>false</encoding>
+                    <assertions>true</assertions>
+                    <subresults>true</subresults>
+                    <responseData>false</responseData>
+                    <samplerData>false</samplerData>
+                    <xml>false</xml>
+                    <fieldNames>true</fieldNames>
+                    <responseHeaders>false</responseHeaders>
+                    <requestHeaders>false</requestHeaders>
+                    <responseDataOnError>false</responseDataOnError>
+                    <saveAssertionResultsFailureMessage>true</saveAssertionResultsFailureMessage>
+                    <assertionsResultsToSave>0</assertionsResultsToSave>
+                    <bytes>true</bytes>
+                    <threadCounts>true</threadCounts>
+                    <idleTime>true</idleTime>
+                  </value>
+                </objProp>
+                <stringProp name="filename"></stringProp>
+              </ResultCollector>
+              <hashTree/>
+            </hashTree>
+          </hashTree>
+        </hashTree>
+        <ResultCollector guiclass="SummaryReport" testclass="ResultCollector" testname="Summary Report" enabled="true">
+          <boolProp name="ResultCollector.error_logging">false</boolProp>
+          <objProp>
+            <name>saveConfig</name>
+            <value class="SampleSaveConfiguration">
+              <time>true</time>
+              <latency>true</latency>
+              <timestamp>true</timestamp>
+              <success>true</success>
+              <label>true</label>
+              <code>true</code>
+              <message>true</message>
+              <threadName>true</threadName>
+              <dataType>true</dataType>
+              <encoding>false</encoding>
+              <assertions>true</assertions>
+              <subresults>true</subresults>
+              <responseData>false</responseData>
+              <samplerData>false</samplerData>
+              <xml>false</xml>
+              <fieldNames>true</fieldNames>
+              <responseHeaders>false</responseHeaders>
+              <requestHeaders>false</requestHeaders>
+              <responseDataOnError>false</responseDataOnError>
+              <saveAssertionResultsFailureMessage>true</saveAssertionResultsFailureMessage>
+              <assertionsResultsToSave>0</assertionsResultsToSave>
+              <bytes>true</bytes>
+              <threadCounts>true</threadCounts>
+              <idleTime>true</idleTime>
+            </value>
+          </objProp>
+          <stringProp name="filename"></stringProp>
+        </ResultCollector>
+        <hashTree/>
+        <ResultCollector guiclass="ViewResultsFullVisualizer" testclass="ResultCollector" testname="View Results Tree" enabled="true">
+          <boolProp name="ResultCollector.error_logging">false</boolProp>
+          <objProp>
+            <name>saveConfig</name>
+            <value class="SampleSaveConfiguration">
+              <time>true</time>
+              <latency>true</latency>
+              <timestamp>true</timestamp>
+              <success>true</success>
+              <label>true</label>
+              <code>true</code>
+              <message>true</message>
+              <threadName>true</threadName>
+              <dataType>true</dataType>
+              <encoding>false</encoding>
+              <assertions>true</assertions>
+              <subresults>true</subresults>
+              <responseData>false</responseData>
+              <samplerData>false</samplerData>
+              <xml>false</xml>
+              <fieldNames>true</fieldNames>
+              <responseHeaders>false</responseHeaders>
+              <requestHeaders>false</requestHeaders>
+              <responseDataOnError>false</responseDataOnError>
+              <saveAssertionResultsFailureMessage>true</saveAssertionResultsFailureMessage>
+              <assertionsResultsToSave>0</assertionsResultsToSave>
+              <bytes>true</bytes>
+              <threadCounts>true</threadCounts>
+              <idleTime>true</idleTime>
+            </value>
+          </objProp>
+          <stringProp name="filename"></stringProp>
+        </ResultCollector>
+        <hashTree/>
+        <ResultCollector guiclass="GraphVisualizer" testclass="ResultCollector" testname="Graph Results" enabled="true">
+          <boolProp name="ResultCollector.error_logging">false</boolProp>
+          <objProp>
+            <name>saveConfig</name>
+            <value class="SampleSaveConfiguration">
+              <time>true</time>
+              <latency>true</latency>
+              <timestamp>true</timestamp>
+              <success>true</success>
+              <label>true</label>
+              <code>true</code>
+              <message>true</message>
+              <threadName>true</threadName>
+              <dataType>true</dataType>
+              <encoding>false</encoding>
+              <assertions>true</assertions>
+              <subresults>true</subresults>
+              <responseData>false</responseData>
+              <samplerData>false</samplerData>
+              <xml>false</xml>
+              <fieldNames>true</fieldNames>
+              <responseHeaders>false</responseHeaders>
+              <requestHeaders>false</requestHeaders>
+              <responseDataOnError>false</responseDataOnError>
+              <saveAssertionResultsFailureMessage>true</saveAssertionResultsFailureMessage>
+              <assertionsResultsToSave>0</assertionsResultsToSave>
+              <bytes>true</bytes>
+              <threadCounts>true</threadCounts>
+              <idleTime>true</idleTime>
+            </value>
+          </objProp>
+          <stringProp name="filename"></stringProp>
+        </ResultCollector>
+        <hashTree/>
+        <ResultCollector guiclass="TableVisualizer" testclass="ResultCollector" testname="View Results in Table" enabled="true">
+          <boolProp name="ResultCollector.error_logging">false</boolProp>
+          <objProp>
+            <name>saveConfig</name>
+            <value class="SampleSaveConfiguration">
+              <time>true</time>
+              <latency>true</latency>
+              <timestamp>true</timestamp>
+              <success>true</success>
+              <label>true</label>
+              <code>true</code>
+              <message>true</message>
+              <threadName>true</threadName>
+              <dataType>true</dataType>
+              <encoding>false</encoding>
+              <assertions>true</assertions>
+              <subresults>true</subresults>
+              <responseData>false</responseData>
+              <samplerData>false</samplerData>
+              <xml>false</xml>
+              <fieldNames>true</fieldNames>
+              <responseHeaders>false</responseHeaders>
+              <requestHeaders>false</requestHeaders>
+              <responseDataOnError>false</responseDataOnError>
+              <saveAssertionResultsFailureMessage>true</saveAssertionResultsFailureMessage>
+              <assertionsResultsToSave>0</assertionsResultsToSave>
+              <bytes>true</bytes>
+              <threadCounts>true</threadCounts>
+              <idleTime>true</idleTime>
+            </value>
+          </objProp>
+          <stringProp name="filename"></stringProp>
+        </ResultCollector>
+        <hashTree/>
+        <ResultCollector guiclass="MonitorHealthVisualizer" testclass="ResultCollector" testname="Monitor Results" enabled="true">
+          <boolProp name="ResultCollector.error_logging">false</boolProp>
+          <objProp>
+            <name>saveConfig</name>
+            <value class="SampleSaveConfiguration">
+              <time>true</time>
+              <latency>true</latency>
+              <timestamp>true</timestamp>
+              <success>true</success>
+              <label>true</label>
+              <code>true</code>
+              <message>true</message>
+              <threadName>true</threadName>
+              <dataType>true</dataType>
+              <encoding>false</encoding>
+              <assertions>true</assertions>
+              <subresults>true</subresults>
+              <responseData>false</responseData>
+              <samplerData>false</samplerData>
+              <xml>false</xml>
+              <fieldNames>true</fieldNames>
+              <responseHeaders>false</responseHeaders>
+              <requestHeaders>false</requestHeaders>
+              <responseDataOnError>false</responseDataOnError>
+              <saveAssertionResultsFailureMessage>true</saveAssertionResultsFailureMessage>
+              <assertionsResultsToSave>0</assertionsResultsToSave>
+              <bytes>true</bytes>
+              <threadCounts>true</threadCounts>
+              <idleTime>true</idleTime>
+            </value>
+          </objProp>
+          <stringProp name="filename"></stringProp>
+        </ResultCollector>
+        <hashTree/>
+        <Summariser guiclass="SummariserGui" testclass="Summariser" testname="Generate Summary Results" enabled="true"/>
+        <hashTree/>
+      </hashTree>
+      <ThreadGroup guiclass="ThreadGroupGui" testclass="ThreadGroup" testname="End Session" enabled="false">
+        <stringProp name="ThreadGroup.on_sample_error">continue</stringProp>
+        <elementProp name="ThreadGroup.main_controller" elementType="LoopController" guiclass="LoopControlPanel" testclass="LoopController" testname="Loop Controller" enabled="true">
+          <boolProp name="LoopController.continue_forever">false</boolProp>
+          <intProp name="LoopController.loops">-1</intProp>
+        </elementProp>
+        <stringProp name="ThreadGroup.num_threads">1</stringProp>
+        <stringProp name="ThreadGroup.ramp_time">1</stringProp>
+        <longProp name="ThreadGroup.start_time">1480924764000</longProp>
+        <longProp name="ThreadGroup.end_time">1480924764000</longProp>
+        <boolProp name="ThreadGroup.scheduler">false</boolProp>
+        <stringProp name="ThreadGroup.duration"></stringProp>
+        <stringProp name="ThreadGroup.delay">3</stringProp>
+      </ThreadGroup>
+      <hashTree>
+        <CookieManager guiclass="CookiePanel" testclass="CookieManager" testname="HTTP Cookie Manager" enabled="true">
+          <collectionProp name="CookieManager.cookies"/>
+          <boolProp name="CookieManager.clearEachIteration">false</boolProp>
+          <stringProp name="CookieManager.policy">standard</stringProp>
+          <stringProp name="CookieManager.implementation">org.apache.jmeter.protocol.http.control.HC4CookieHandler</stringProp>
+        </CookieManager>
+        <hashTree/>
+        <ConstantTimer guiclass="ConstantTimerGui" testclass="ConstantTimer" testname="Constant Timer" enabled="true">
+          <stringProp name="ConstantTimer.delay">3000</stringProp>
+        </ConstantTimer>
+        <hashTree/>
+        <HTTPSamplerProxy guiclass="HttpTestSampleGui" testclass="HTTPSamplerProxy" testname="/end_session" enabled="true">
+          <elementProp name="HTTPsampler.Arguments" elementType="Arguments" guiclass="HTTPArgumentsPanel" testclass="Arguments" testname="User Defined Variables" enabled="true">
+            <collectionProp name="Arguments.arguments">
+              <elementProp name="id_token_hint" elementType="HTTPArgument">
+                <boolProp name="HTTPArgument.always_encode">false</boolProp>
+                <stringProp name="Argument.value">${id_token}</stringProp>
+                <stringProp name="Argument.metadata">=</stringProp>
+                <boolProp name="HTTPArgument.use_equals">true</boolProp>
+                <stringProp name="Argument.name">id_token_hint</stringProp>
+              </elementProp>
+            </collectionProp>
+          </elementProp>
+          <stringProp name="HTTPSampler.domain"></stringProp>
+          <stringProp name="HTTPSampler.port"></stringProp>
+          <stringProp name="HTTPSampler.connect_timeout"></stringProp>
+          <stringProp name="HTTPSampler.response_timeout"></stringProp>
+          <stringProp name="HTTPSampler.protocol"></stringProp>
+          <stringProp name="HTTPSampler.contentEncoding"></stringProp>
+          <stringProp name="HTTPSampler.path"></stringProp>
+          <stringProp name="HTTPSampler.method">GET</stringProp>
+          <boolProp name="HTTPSampler.follow_redirects">true</boolProp>
+          <boolProp name="HTTPSampler.auto_redirects">false</boolProp>
+          <boolProp name="HTTPSampler.use_keepalive">true</boolProp>
+          <boolProp name="HTTPSampler.DO_MULTIPART_POST">false</boolProp>
+          <boolProp name="HTTPSampler.monitor">false</boolProp>
+          <stringProp name="HTTPSampler.embedded_url_re"></stringProp>
+        </HTTPSamplerProxy>
+        <hashTree>
+          <JSR223PreProcessor guiclass="TestBeanGUI" testclass="JSR223PreProcessor" testname="JSR223 PreProcessor" enabled="true">
+            <stringProp name="scriptLanguage">java</stringProp>
+            <stringProp name="parameters"></stringProp>
+            <stringProp name="filename"></stringProp>
+            <stringProp name="cacheKey">5747dfc9-3b64-496f-947f-e9ce907c06cd</stringProp>
+            <stringProp name="script">import org.apache.jmeter.protocol.http.control.CookieManager;
+import org.apache.jmeter.protocol.http.control.Cookie;
+
+CookieManager manager = sampler.getCookieManager();
+
+for (Map.Entry entry : props.entrySet()) {
+	if (entry.getKey() instanceof String) {
+	    String key = entry.getKey();
+         if (key.startsWith(&quot;oic.session_state.&quot;)) {
+             String counter = key.substring(&quot;oic.session_state.&quot;.length());
+
+             log.info(&quot;PRE end session, counter : &quot; + counter + &quot;, session_state: &quot; + entry.getValue() + &quot;, props.getProperty(): &quot; + props.getProperty(&quot;oic.session_state.&quot; + counter));
+             
+             Cookie cookie = new Cookie(&quot;session_state&quot;, entry.getValue(), vars.get(&quot;host&quot;), &quot;/&quot;, false, 0);
+             manager.add(cookie); 
+
+             Object idToken = props.getProperty(&quot;oic.id_token.&quot; + counter);
+             log.info(&quot;PRE end session, id_token : &quot; + idToken);
+             vars.put(&quot;id_token&quot;, idToken);
+
+             props.remove(&quot;oic.session_state.&quot; + counter);
+             props.remove(&quot;oic.id_token.&quot; + counter);
+             break;
+         }
+	}
+}</stringProp>
+          </JSR223PreProcessor>
+          <hashTree/>
+          <ResultCollector guiclass="ViewResultsFullVisualizer" testclass="ResultCollector" testname="View Results Tree" enabled="true">
+            <boolProp name="ResultCollector.error_logging">false</boolProp>
+            <objProp>
+              <name>saveConfig</name>
+              <value class="SampleSaveConfiguration">
+                <time>true</time>
+                <latency>true</latency>
+                <timestamp>true</timestamp>
+                <success>true</success>
+                <label>true</label>
+                <code>true</code>
+                <message>true</message>
+                <threadName>true</threadName>
+                <dataType>true</dataType>
+                <encoding>false</encoding>
+                <assertions>true</assertions>
+                <subresults>true</subresults>
+                <responseData>false</responseData>
+                <samplerData>false</samplerData>
+                <xml>false</xml>
+                <fieldNames>true</fieldNames>
+                <responseHeaders>false</responseHeaders>
+                <requestHeaders>false</requestHeaders>
+                <responseDataOnError>false</responseDataOnError>
+                <saveAssertionResultsFailureMessage>true</saveAssertionResultsFailureMessage>
+                <assertionsResultsToSave>0</assertionsResultsToSave>
+                <bytes>true</bytes>
+                <threadCounts>true</threadCounts>
+                <idleTime>true</idleTime>
+              </value>
+            </objProp>
+            <stringProp name="filename"></stringProp>
+          </ResultCollector>
+          <hashTree/>
+        </hashTree>
+      </hashTree>
+      <ResultCollector guiclass="ViewResultsFullVisualizer" testclass="ResultCollector" testname="View Results Tree" enabled="true">
+        <boolProp name="ResultCollector.error_logging">false</boolProp>
+        <objProp>
+          <name>saveConfig</name>
+          <value class="SampleSaveConfiguration">
+            <time>true</time>
+            <latency>true</latency>
+            <timestamp>true</timestamp>
+            <success>true</success>
+            <label>true</label>
+            <code>true</code>
+            <message>true</message>
+            <threadName>true</threadName>
+            <dataType>true</dataType>
+            <encoding>false</encoding>
+            <assertions>true</assertions>
+            <subresults>true</subresults>
+            <responseData>false</responseData>
+            <samplerData>false</samplerData>
+            <xml>false</xml>
+            <fieldNames>true</fieldNames>
+            <responseHeaders>false</responseHeaders>
+            <requestHeaders>false</requestHeaders>
+            <responseDataOnError>false</responseDataOnError>
+            <saveAssertionResultsFailureMessage>true</saveAssertionResultsFailureMessage>
+            <assertionsResultsToSave>0</assertionsResultsToSave>
+            <bytes>true</bytes>
+            <threadCounts>true</threadCounts>
+            <idleTime>true</idleTime>
+          </value>
+        </objProp>
+        <stringProp name="filename"></stringProp>
+      </ResultCollector>
+      <hashTree/>
+      <ResultCollector guiclass="TableVisualizer" testclass="ResultCollector" testname="View Results in Table" enabled="true">
+        <boolProp name="ResultCollector.error_logging">false</boolProp>
+        <objProp>
+          <name>saveConfig</name>
+          <value class="SampleSaveConfiguration">
+            <time>true</time>
+            <latency>true</latency>
+            <timestamp>true</timestamp>
+            <success>true</success>
+            <label>true</label>
+            <code>true</code>
+            <message>true</message>
+            <threadName>true</threadName>
+            <dataType>true</dataType>
+            <encoding>false</encoding>
+            <assertions>true</assertions>
+            <subresults>true</subresults>
+            <responseData>false</responseData>
+            <samplerData>false</samplerData>
+            <xml>false</xml>
+            <fieldNames>true</fieldNames>
+            <responseHeaders>false</responseHeaders>
+            <requestHeaders>false</requestHeaders>
+            <responseDataOnError>false</responseDataOnError>
+            <saveAssertionResultsFailureMessage>true</saveAssertionResultsFailureMessage>
+            <assertionsResultsToSave>0</assertionsResultsToSave>
+            <bytes>true</bytes>
+            <threadCounts>true</threadCounts>
+            <idleTime>true</idleTime>
+          </value>
+        </objProp>
+        <stringProp name="filename"></stringProp>
+      </ResultCollector>
+      <hashTree/>
+      <ResultCollector guiclass="GraphVisualizer" testclass="ResultCollector" testname="Graph Results" enabled="true">
+        <boolProp name="ResultCollector.error_logging">false</boolProp>
+        <objProp>
+          <name>saveConfig</name>
+          <value class="SampleSaveConfiguration">
+            <time>true</time>
+            <latency>true</latency>
+            <timestamp>true</timestamp>
+            <success>true</success>
+            <label>true</label>
+            <code>true</code>
+            <message>true</message>
+            <threadName>true</threadName>
+            <dataType>true</dataType>
+            <encoding>false</encoding>
+            <assertions>true</assertions>
+            <subresults>true</subresults>
+            <responseData>false</responseData>
+            <samplerData>false</samplerData>
+            <xml>false</xml>
+            <fieldNames>true</fieldNames>
+            <responseHeaders>false</responseHeaders>
+            <requestHeaders>false</requestHeaders>
+            <responseDataOnError>false</responseDataOnError>
+            <saveAssertionResultsFailureMessage>true</saveAssertionResultsFailureMessage>
+            <assertionsResultsToSave>0</assertionsResultsToSave>
+            <bytes>true</bytes>
+            <threadCounts>true</threadCounts>
+            <idleTime>true</idleTime>
+          </value>
+        </objProp>
+        <stringProp name="filename"></stringProp>
+      </ResultCollector>
+      <hashTree/>
+      <ResultCollector guiclass="SummaryReport" testclass="ResultCollector" testname="Summary Report" enabled="true">
+        <boolProp name="ResultCollector.error_logging">false</boolProp>
+        <objProp>
+          <name>saveConfig</name>
+          <value class="SampleSaveConfiguration">
+            <time>true</time>
+            <latency>true</latency>
+            <timestamp>true</timestamp>
+            <success>true</success>
+            <label>true</label>
+            <code>true</code>
+            <message>true</message>
+            <threadName>true</threadName>
+            <dataType>true</dataType>
+            <encoding>false</encoding>
+            <assertions>true</assertions>
+            <subresults>true</subresults>
+            <responseData>false</responseData>
+            <samplerData>false</samplerData>
+            <xml>false</xml>
+            <fieldNames>true</fieldNames>
+            <responseHeaders>false</responseHeaders>
+            <requestHeaders>false</requestHeaders>
+            <responseDataOnError>false</responseDataOnError>
+            <saveAssertionResultsFailureMessage>true</saveAssertionResultsFailureMessage>
+            <assertionsResultsToSave>0</assertionsResultsToSave>
+            <bytes>true</bytes>
+            <threadCounts>true</threadCounts>
+            <idleTime>true</idleTime>
+          </value>
+        </objProp>
+        <stringProp name="filename"></stringProp>
+      </ResultCollector>
+      <hashTree/>
+      <ThreadGroup guiclass="ThreadGroupGui" testclass="ThreadGroup" testname="Client Credentials" enabled="false">
+        <stringProp name="ThreadGroup.on_sample_error">continue</stringProp>
+        <elementProp name="ThreadGroup.main_controller" elementType="LoopController" guiclass="LoopControlPanel" testclass="LoopController" testname="Loop Controller" enabled="true">
+          <boolProp name="LoopController.continue_forever">false</boolProp>
+          <stringProp name="LoopController.loops">1</stringProp>
+        </elementProp>
+        <stringProp name="ThreadGroup.num_threads">2000</stringProp>
+        <stringProp name="ThreadGroup.ramp_time">5</stringProp>
+        <longProp name="ThreadGroup.start_time">1482159304000</longProp>
+        <longProp name="ThreadGroup.end_time">1482159304000</longProp>
+        <boolProp name="ThreadGroup.scheduler">false</boolProp>
+        <stringProp name="ThreadGroup.duration"></stringProp>
+        <stringProp name="ThreadGroup.delay"></stringProp>
+      </ThreadGroup>
+      <hashTree>
+        <CookieManager guiclass="CookiePanel" testclass="CookieManager" testname="HTTP Cookie Manager" enabled="true">
+          <collectionProp name="CookieManager.cookies"/>
+          <boolProp name="CookieManager.clearEachIteration">true</boolProp>
+          <stringProp name="CookieManager.policy">standard</stringProp>
+          <stringProp name="CookieManager.implementation">org.apache.jmeter.protocol.http.control.HC4CookieHandler</stringProp>
+        </CookieManager>
+        <hashTree/>
+        <HeaderManager guiclass="HeaderPanel" testclass="HeaderManager" testname="HTTP Header Manager" enabled="true">
+          <collectionProp name="HeaderManager.headers">
+            <elementProp name="" elementType="Header">
+              <stringProp name="Header.name">Authorization</stringProp>
+              <stringProp name="Header.value">${client_header}</stringProp>
+            </elementProp>
+            <elementProp name="" elementType="Header">
+              <stringProp name="Header.name">Content-Type</stringProp>
+              <stringProp name="Header.value">application/x-www-form-urlencoded</stringProp>
+            </elementProp>
+          </collectionProp>
+        </HeaderManager>
+        <hashTree/>
+        <JSR223PreProcessor guiclass="TestBeanGUI" testclass="JSR223PreProcessor" testname="JSR223 PreProcessor" enabled="true">
+          <stringProp name="scriptLanguage">java</stringProp>
+          <stringProp name="parameters"></stringProp>
+          <stringProp name="filename"></stringProp>
+          <stringProp name="cacheKey">5747dfc9-3b64-496f-947f-e9ce907c06cd</stringProp>
+          <stringProp name="script">String credentials = vars.get(&quot;client_id&quot;) + &quot;:&quot; + vars.get(&quot;client_secret&quot;);
+String clientHeader = &quot;Basic &quot; + org.apache.commons.codec.binary.Base64.encodeBase64String(credentials.getBytes(&quot;UTF-8&quot;));
+log.info(&quot;Credentials: &quot; + credentials + &quot;, clientHeader: &quot; + clientHeader);
+OUT.println(&quot;Credentials: &quot; + credentials + &quot;, clientHeader: &quot; + clientHeader);
+vars.put(&quot;client_header&quot;, clientHeader);</stringProp>
+        </JSR223PreProcessor>
+        <hashTree/>
+        <HTTPSamplerProxy guiclass="HttpTestSampleGui" testclass="HTTPSamplerProxy" testname="Token" enabled="true">
+          <elementProp name="HTTPsampler.Arguments" elementType="Arguments" guiclass="HTTPArgumentsPanel" testclass="Arguments" testname="User Defined Variables" enabled="true">
+            <collectionProp name="Arguments.arguments">
+              <elementProp name="grant_type" elementType="HTTPArgument">
+                <boolProp name="HTTPArgument.always_encode">false</boolProp>
+                <stringProp name="Argument.value">client_credentials</stringProp>
+                <stringProp name="Argument.metadata">=</stringProp>
+                <boolProp name="HTTPArgument.use_equals">true</boolProp>
+                <stringProp name="Argument.name">grant_type</stringProp>
+              </elementProp>
+              <elementProp name="client_id" elementType="HTTPArgument">
+                <boolProp name="HTTPArgument.always_encode">false</boolProp>
+                <stringProp name="Argument.value">${client_id}</stringProp>
+                <stringProp name="Argument.metadata">=</stringProp>
+                <boolProp name="HTTPArgument.use_equals">true</boolProp>
+                <stringProp name="Argument.name">client_id</stringProp>
+              </elementProp>
+              <elementProp name="scope" elementType="HTTPArgument">
+                <boolProp name="HTTPArgument.always_encode">false</boolProp>
+                <stringProp name="Argument.value">${scope}</stringProp>
+                <stringProp name="Argument.metadata">=</stringProp>
+                <boolProp name="HTTPArgument.use_equals">true</boolProp>
+                <stringProp name="Argument.name">scope</stringProp>
+              </elementProp>
+            </collectionProp>
+          </elementProp>
+          <stringProp name="HTTPSampler.domain"></stringProp>
+          <stringProp name="HTTPSampler.port"></stringProp>
+          <stringProp name="HTTPSampler.connect_timeout"></stringProp>
+          <stringProp name="HTTPSampler.response_timeout"></stringProp>
+          <stringProp name="HTTPSampler.protocol"></stringProp>
+          <stringProp name="HTTPSampler.contentEncoding"></stringProp>
+          <stringProp name="HTTPSampler.path">/oxauth/restv1/token</stringProp>
+          <stringProp name="HTTPSampler.method">POST</stringProp>
+          <boolProp name="HTTPSampler.follow_redirects">true</boolProp>
+          <boolProp name="HTTPSampler.auto_redirects">false</boolProp>
+          <boolProp name="HTTPSampler.use_keepalive">true</boolProp>
+          <boolProp name="HTTPSampler.DO_MULTIPART_POST">false</boolProp>
+          <boolProp name="HTTPSampler.monitor">false</boolProp>
+          <stringProp name="HTTPSampler.embedded_url_re"></stringProp>
+        </HTTPSamplerProxy>
+        <hashTree/>
+        <ResultCollector guiclass="ViewResultsFullVisualizer" testclass="ResultCollector" testname="View Results Tree" enabled="true">
+          <boolProp name="ResultCollector.error_logging">false</boolProp>
+          <objProp>
+            <name>saveConfig</name>
+            <value class="SampleSaveConfiguration">
+              <time>true</time>
+              <latency>true</latency>
+              <timestamp>true</timestamp>
+              <success>true</success>
+              <label>true</label>
+              <code>true</code>
+              <message>true</message>
+              <threadName>true</threadName>
+              <dataType>true</dataType>
+              <encoding>false</encoding>
+              <assertions>true</assertions>
+              <subresults>true</subresults>
+              <responseData>false</responseData>
+              <samplerData>false</samplerData>
+              <xml>false</xml>
+              <fieldNames>true</fieldNames>
+              <responseHeaders>false</responseHeaders>
+              <requestHeaders>false</requestHeaders>
+              <responseDataOnError>false</responseDataOnError>
+              <saveAssertionResultsFailureMessage>true</saveAssertionResultsFailureMessage>
+              <assertionsResultsToSave>0</assertionsResultsToSave>
+              <bytes>true</bytes>
+              <threadCounts>true</threadCounts>
+              <idleTime>true</idleTime>
+            </value>
+          </objProp>
+          <stringProp name="filename"></stringProp>
+        </ResultCollector>
+        <hashTree/>
+        <ResultCollector guiclass="SummaryReport" testclass="ResultCollector" testname="Summary Report" enabled="true">
+          <boolProp name="ResultCollector.error_logging">false</boolProp>
+          <objProp>
+            <name>saveConfig</name>
+            <value class="SampleSaveConfiguration">
+              <time>true</time>
+              <latency>true</latency>
+              <timestamp>true</timestamp>
+              <success>true</success>
+              <label>true</label>
+              <code>true</code>
+              <message>true</message>
+              <threadName>true</threadName>
+              <dataType>true</dataType>
+              <encoding>false</encoding>
+              <assertions>true</assertions>
+              <subresults>true</subresults>
+              <responseData>false</responseData>
+              <samplerData>false</samplerData>
+              <xml>false</xml>
+              <fieldNames>true</fieldNames>
+              <responseHeaders>false</responseHeaders>
+              <requestHeaders>false</requestHeaders>
+              <responseDataOnError>false</responseDataOnError>
+              <saveAssertionResultsFailureMessage>true</saveAssertionResultsFailureMessage>
+              <assertionsResultsToSave>0</assertionsResultsToSave>
+              <bytes>true</bytes>
+              <threadCounts>true</threadCounts>
+              <idleTime>true</idleTime>
+            </value>
+          </objProp>
+          <stringProp name="filename"></stringProp>
+        </ResultCollector>
+        <hashTree/>
+      </hashTree>
+    </hashTree>
+  </hashTree>
+</jmeterTestPlan>
diff --git a/oxAuth/jmeter/test/authorization/oxServer - Test user authorization - testing data.csv b/oxAuth/jmeter/test/authorization/oxServer - Test user authorization - testing data.csv
new file mode 100644
index 00000000..947a826d
--- /dev/null
+++ b/oxAuth/jmeter/test/authorization/oxServer - Test user authorization - testing data.csv	
@@ -0,0 +1,3 @@
+test_user1,test,@!1111!0008!0001.0001,11111111-1111-1111-1111-111111111111,https://client.example.com/cb,openid profile email,aa0ifjsldkj
+test_user2,test,@!1111!0008!0001.0001,11111111-1111-1111-1111-111111111111,https://client.example.com/cb,openid profile email,aa0ifjsldkj
+test_user3,test,@!1111!0008!0001.0001,11111111-1111-1111-1111-111111111111,https://client.example.com/cb,openid profile email,aa0ifjsldkj
diff --git a/oxAuth/jmeter/test/authorization/oxServer - Test user authorization.jmx b/oxAuth/jmeter/test/authorization/oxServer - Test user authorization.jmx
new file mode 100644
index 00000000..487c8426
--- /dev/null
+++ b/oxAuth/jmeter/test/authorization/oxServer - Test user authorization.jmx	
@@ -0,0 +1,712 @@
+<?xml version="1.0" encoding="UTF-8"?>
+<jmeterTestPlan version="1.2" properties="2.3">
+  <hashTree>
+    <TestPlan guiclass="TestPlanGui" testclass="TestPlan" testname="Test oxAuth server" enabled="true">
+      <stringProp name="TestPlan.comments"></stringProp>
+      <boolProp name="TestPlan.functional_mode">false</boolProp>
+      <boolProp name="TestPlan.serialize_threadgroups">false</boolProp>
+      <elementProp name="TestPlan.user_defined_variables" elementType="Arguments" guiclass="ArgumentsPanel" testclass="Arguments" testname="User Defined Variables" enabled="true">
+        <collectionProp name="Arguments.arguments"/>
+      </elementProp>
+      <stringProp name="TestPlan.user_define_classpath"></stringProp>
+    </TestPlan>
+    <hashTree>
+      <ThreadGroup guiclass="ThreadGroupGui" testclass="ThreadGroup" testname="oxAuth Test" enabled="true">
+        <stringProp name="ThreadGroup.on_sample_error">continue</stringProp>
+        <elementProp name="ThreadGroup.main_controller" elementType="LoopController" guiclass="LoopControlPanel" testclass="LoopController" testname="Loop Controller" enabled="true">
+          <boolProp name="LoopController.continue_forever">false</boolProp>
+          <stringProp name="LoopController.loops">1000</stringProp>
+        </elementProp>
+        <stringProp name="ThreadGroup.num_threads">10</stringProp>
+        <stringProp name="ThreadGroup.ramp_time">0</stringProp>
+        <longProp name="ThreadGroup.start_time">1343667367000</longProp>
+        <longProp name="ThreadGroup.end_time">1343667367000</longProp>
+        <boolProp name="ThreadGroup.scheduler">false</boolProp>
+        <stringProp name="ThreadGroup.duration"></stringProp>
+        <stringProp name="ThreadGroup.delay"></stringProp>
+      </ThreadGroup>
+      <hashTree>
+        <GenericController guiclass="LogicControllerGui" testclass="GenericController" testname="Read data from file" enabled="true"/>
+        <hashTree>
+          <CSVDataSet guiclass="TestBeanGUI" testclass="CSVDataSet" testname="Read data from file" enabled="true">
+            <stringProp name="filename">oxServer - Test user authorization - testing data.csv</stringProp>
+            <stringProp name="fileEncoding"></stringProp>
+            <stringProp name="variableNames">USER,USER_PASSWORD,CLIENT_ID,CLIENT_PASSWORD,REDIRECT_URI,SCOPE,STATE</stringProp>
+            <stringProp name="delimiter">,</stringProp>
+            <boolProp name="quotedData">false</boolProp>
+            <boolProp name="recycle">true</boolProp>
+            <boolProp name="stopThread">false</boolProp>
+            <stringProp name="shareMode">All threads</stringProp>
+          </CSVDataSet>
+          <hashTree/>
+          <BSFSampler guiclass="TestBeanGUI" testclass="BSFSampler" testname="Encode variables for basic authentication" enabled="true">
+            <stringProp name="filename"></stringProp>
+            <stringProp name="parameters"></stringProp>
+            <stringProp name="script">function encodeBase64(str){
+	var chr1, chr2, chr3, rez = &apos;&apos;, arr = [], i = 0, j = 0, code = 0;
+	var chars = &apos;ABCDEFGHIJKLMNOPQRSTUVWXYZabcdefghijklmnopqrstuvwxyz0123456789+/=&apos;.split(&apos;&apos;);
+
+	while(code = str.charCodeAt(j++)){
+		if(code &lt; 128){
+			arr[arr.length] = code;
+		}
+		else if(code &lt; 2048){
+			arr[arr.length] = 192 | (code &gt;&gt; 6);
+			arr[arr.length] = 128 | (code &amp; 63);
+		}
+		else if(code &lt; 65536){
+			arr[arr.length] = 224 | (code &gt;&gt; 12);
+			arr[arr.length] = 128 | ((code &gt;&gt; 6) &amp; 63);
+			arr[arr.length] = 128 | (code &amp; 63);
+		}
+		else{
+			arr[arr.length] = 240 | (code &gt;&gt; 18);
+			arr[arr.length] = 128 | ((code &gt;&gt; 12) &amp; 63);
+			arr[arr.length] = 128 | ((code &gt;&gt; 6) &amp; 63);
+			arr[arr.length] = 128 | (code &amp; 63);
+		}
+	};
+
+	while(i &lt; arr.length){
+		chr1 = arr[i++];
+		chr2 = arr[i++];
+		chr3 = arr[i++];
+
+		rez += chars[chr1 &gt;&gt; 2];
+		rez += chars[((chr1 &amp; 3) &lt;&lt; 4) | (chr2 &gt;&gt; 4)];
+		rez += chars[chr2 === undefined ? 64 : ((chr2 &amp; 15) &lt;&lt; 2) | (chr3 &gt;&gt; 6)];
+		rez += chars[chr3 === undefined ? 64 : chr3 &amp; 63];
+	};
+	return rez;
+};
+
+vars.put(&quot;BASIC_AUTH&quot;, encodeBase64(vars.get(&quot;USER&quot;) + &apos;:&apos; + vars.get(&quot;USER_PASSWORD&quot;)));
+vars.put(&quot;CLIENT_AUTH&quot;, encodeBase64(vars.get(&quot;CLIENT_ID&quot;) + &apos;:&apos; + vars.get(&quot;CLIENT_PASSWORD&quot;)));
+</stringProp>
+            <stringProp name="scriptLanguage">javascript</stringProp>
+          </BSFSampler>
+          <hashTree/>
+        </hashTree>
+        <ConfigTestElement guiclass="HttpDefaultsGui" testclass="ConfigTestElement" testname="Configure default HTTP request" enabled="true">
+          <elementProp name="HTTPsampler.Arguments" elementType="Arguments" guiclass="HTTPArgumentsPanel" testclass="Arguments" testname="User Defined Variables" enabled="true">
+            <collectionProp name="Arguments.arguments"/>
+          </elementProp>
+          <stringProp name="HTTPSampler.domain">localhost</stringProp>
+          <stringProp name="HTTPSampler.port">8080</stringProp>
+          <stringProp name="HTTPSampler.connect_timeout"></stringProp>
+          <stringProp name="HTTPSampler.response_timeout"></stringProp>
+          <stringProp name="HTTPSampler.protocol">http</stringProp>
+          <stringProp name="HTTPSampler.contentEncoding"></stringProp>
+          <stringProp name="HTTPSampler.path">/oxauth</stringProp>
+          <stringProp name="HTTPSampler.concurrentPool">4</stringProp>
+        </ConfigTestElement>
+        <hashTree/>
+        <CookieManager guiclass="CookiePanel" testclass="CookieManager" testname="Cookie manager" enabled="true">
+          <collectionProp name="CookieManager.cookies"/>
+          <boolProp name="CookieManager.clearEachIteration">true</boolProp>
+        </CookieManager>
+        <hashTree/>
+        <GenericController guiclass="LogicControllerGui" testclass="GenericController" testname="User request authorization code" enabled="true"/>
+        <hashTree>
+          <HeaderManager guiclass="HeaderPanel" testclass="HeaderManager" testname="Set request headers" enabled="true">
+            <collectionProp name="HeaderManager.headers">
+              <elementProp name="" elementType="Header">
+                <stringProp name="Header.name">Authorization</stringProp>
+                <stringProp name="Header.value">Basic ${BASIC_AUTH}</stringProp>
+              </elementProp>
+              <elementProp name="" elementType="Header">
+                <stringProp name="Header.name">Accept</stringProp>
+                <stringProp name="Header.value">text/plain</stringProp>
+              </elementProp>
+            </collectionProp>
+          </HeaderManager>
+          <hashTree/>
+          <HTTPSamplerProxy guiclass="HttpTestSampleGui" testclass="HTTPSamplerProxy" testname="Authorize user" enabled="true">
+            <elementProp name="HTTPsampler.Arguments" elementType="Arguments" guiclass="HTTPArgumentsPanel" testclass="Arguments" testname="User Defined Variables" enabled="true">
+              <collectionProp name="Arguments.arguments">
+                <elementProp name="response_type" elementType="HTTPArgument">
+                  <boolProp name="HTTPArgument.always_encode">true</boolProp>
+                  <stringProp name="Argument.value">code</stringProp>
+                  <stringProp name="Argument.metadata">=</stringProp>
+                  <boolProp name="HTTPArgument.use_equals">true</boolProp>
+                  <stringProp name="Argument.name">response_type</stringProp>
+                </elementProp>
+                <elementProp name="client_id" elementType="HTTPArgument">
+                  <boolProp name="HTTPArgument.always_encode">true</boolProp>
+                  <stringProp name="Argument.value">${CLIENT_ID}</stringProp>
+                  <stringProp name="Argument.metadata">=</stringProp>
+                  <boolProp name="HTTPArgument.use_equals">true</boolProp>
+                  <stringProp name="Argument.name">client_id</stringProp>
+                </elementProp>
+                <elementProp name="redirect_uri" elementType="HTTPArgument">
+                  <boolProp name="HTTPArgument.always_encode">true</boolProp>
+                  <stringProp name="Argument.value">${REDIRECT_URI}</stringProp>
+                  <stringProp name="Argument.metadata">=</stringProp>
+                  <boolProp name="HTTPArgument.use_equals">true</boolProp>
+                  <stringProp name="Argument.name">redirect_uri</stringProp>
+                </elementProp>
+                <elementProp name="scope" elementType="HTTPArgument">
+                  <boolProp name="HTTPArgument.always_encode">true</boolProp>
+                  <stringProp name="Argument.value">${SCOPE}</stringProp>
+                  <stringProp name="Argument.metadata">=</stringProp>
+                  <boolProp name="HTTPArgument.use_equals">true</boolProp>
+                  <stringProp name="Argument.name">scope</stringProp>
+                </elementProp>
+                <elementProp name="state" elementType="HTTPArgument">
+                  <boolProp name="HTTPArgument.always_encode">true</boolProp>
+                  <stringProp name="Argument.value">${STATE}</stringProp>
+                  <stringProp name="Argument.metadata">=</stringProp>
+                  <boolProp name="HTTPArgument.use_equals">true</boolProp>
+                  <stringProp name="Argument.name">state</stringProp>
+                </elementProp>
+              </collectionProp>
+            </elementProp>
+            <stringProp name="HTTPSampler.domain"></stringProp>
+            <stringProp name="HTTPSampler.port"></stringProp>
+            <stringProp name="HTTPSampler.connect_timeout"></stringProp>
+            <stringProp name="HTTPSampler.response_timeout"></stringProp>
+            <stringProp name="HTTPSampler.protocol"></stringProp>
+            <stringProp name="HTTPSampler.contentEncoding"></stringProp>
+            <stringProp name="HTTPSampler.path">/oxauth/restv1/authorize</stringProp>
+            <stringProp name="HTTPSampler.method">GET</stringProp>
+            <boolProp name="HTTPSampler.follow_redirects">false</boolProp>
+            <boolProp name="HTTPSampler.auto_redirects">false</boolProp>
+            <boolProp name="HTTPSampler.use_keepalive">true</boolProp>
+            <boolProp name="HTTPSampler.DO_MULTIPART_POST">false</boolProp>
+            <boolProp name="HTTPSampler.monitor">false</boolProp>
+            <stringProp name="HTTPSampler.embedded_url_re"></stringProp>
+          </HTTPSamplerProxy>
+          <hashTree/>
+          <ResponseAssertion guiclass="AssertionGui" testclass="ResponseAssertion" testname="Validate response code" enabled="true">
+            <collectionProp name="Asserion.test_strings">
+              <stringProp name="50549">302</stringProp>
+            </collectionProp>
+            <stringProp name="Assertion.test_field">Assertion.response_code</stringProp>
+            <boolProp name="Assertion.assume_success">false</boolProp>
+            <intProp name="Assertion.test_type">8</intProp>
+          </ResponseAssertion>
+          <hashTree/>
+          <ResponseAssertion guiclass="AssertionGui" testclass="ResponseAssertion" testname="Validate response header" enabled="true">
+            <collectionProp name="Asserion.test_strings">
+              <stringProp name="-1047721027">${REDIRECT_URI}</stringProp>
+              <stringProp name="94834672">code=</stringProp>
+              <stringProp name="-907768727">scope=</stringProp>
+              <stringProp name="-892482100">state=</stringProp>
+            </collectionProp>
+            <stringProp name="Assertion.test_field">Assertion.response_headers</stringProp>
+            <boolProp name="Assertion.assume_success">false</boolProp>
+            <intProp name="Assertion.test_type">2</intProp>
+          </ResponseAssertion>
+          <hashTree/>
+          <RegexExtractor guiclass="RegexExtractorGui" testclass="RegexExtractor" testname="Extract code" enabled="true">
+            <stringProp name="RegexExtractor.useHeaders">true</stringProp>
+            <stringProp name="RegexExtractor.refname">AUTHORIZATION_CODE</stringProp>
+            <stringProp name="RegexExtractor.regex">code=(\w{8}\-\w{4}\-\w{4}\-\w{4}\-\w{12})</stringProp>
+            <stringProp name="RegexExtractor.template">$1$</stringProp>
+            <stringProp name="RegexExtractor.default">NOT_FOUND</stringProp>
+            <stringProp name="RegexExtractor.match_number">1</stringProp>
+          </RegexExtractor>
+          <hashTree/>
+          <ResponseAssertion guiclass="AssertionGui" testclass="ResponseAssertion" testname="Validate code" enabled="true">
+            <collectionProp name="Asserion.test_strings">
+              <stringProp name="1023286998">NOT_FOUND</stringProp>
+            </collectionProp>
+            <stringProp name="Assertion.test_field">Assertion.response_headers</stringProp>
+            <boolProp name="Assertion.assume_success">false</boolProp>
+            <intProp name="Assertion.test_type">12</intProp>
+            <stringProp name="Assertion.scope">variable</stringProp>
+            <stringProp name="Scope.variable">AUTHORIZATION_CODE</stringProp>
+          </ResponseAssertion>
+          <hashTree/>
+          <RegexExtractor guiclass="RegexExtractorGui" testclass="RegexExtractor" testname="Extract scope" enabled="true">
+            <stringProp name="RegexExtractor.useHeaders">true</stringProp>
+            <stringProp name="RegexExtractor.refname">AUTHORIZATION_SCOPE</stringProp>
+            <stringProp name="RegexExtractor.regex">scope=([\w|\+]+)</stringProp>
+            <stringProp name="RegexExtractor.template">$1$</stringProp>
+            <stringProp name="RegexExtractor.default">NOT_FOUND</stringProp>
+            <stringProp name="RegexExtractor.match_number">1</stringProp>
+          </RegexExtractor>
+          <hashTree/>
+          <ResponseAssertion guiclass="AssertionGui" testclass="ResponseAssertion" testname="Validate scope" enabled="true">
+            <collectionProp name="Asserion.test_strings">
+              <stringProp name="1023286998">NOT_FOUND</stringProp>
+            </collectionProp>
+            <stringProp name="Assertion.test_field">Assertion.response_headers</stringProp>
+            <boolProp name="Assertion.assume_success">false</boolProp>
+            <intProp name="Assertion.test_type">12</intProp>
+            <stringProp name="Assertion.scope">variable</stringProp>
+            <stringProp name="Scope.variable">AUTHORIZATION_SCOPE</stringProp>
+          </ResponseAssertion>
+          <hashTree/>
+          <RegexExtractor guiclass="RegexExtractorGui" testclass="RegexExtractor" testname="Extract state" enabled="true">
+            <stringProp name="RegexExtractor.useHeaders">true</stringProp>
+            <stringProp name="RegexExtractor.refname">AUTHORIZATION_STATE</stringProp>
+            <stringProp name="RegexExtractor.regex">state=(\w+)</stringProp>
+            <stringProp name="RegexExtractor.template">$1$</stringProp>
+            <stringProp name="RegexExtractor.default">NOT_FOUND</stringProp>
+            <stringProp name="RegexExtractor.match_number">1</stringProp>
+          </RegexExtractor>
+          <hashTree/>
+          <ResponseAssertion guiclass="AssertionGui" testclass="ResponseAssertion" testname="Validate state" enabled="true">
+            <collectionProp name="Asserion.test_strings">
+              <stringProp name="1023286998">NOT_FOUND</stringProp>
+            </collectionProp>
+            <stringProp name="Assertion.test_field">Assertion.response_headers</stringProp>
+            <boolProp name="Assertion.assume_success">false</boolProp>
+            <intProp name="Assertion.test_type">12</intProp>
+            <stringProp name="Assertion.scope">variable</stringProp>
+            <stringProp name="Scope.variable">AUTHORIZATION_STATE</stringProp>
+          </ResponseAssertion>
+          <hashTree/>
+          <ResultCollector guiclass="GraphVisualizer" testclass="ResultCollector" testname="Graph Results" enabled="true">
+            <boolProp name="ResultCollector.error_logging">false</boolProp>
+            <objProp>
+              <name>saveConfig</name>
+              <value class="SampleSaveConfiguration">
+                <time>true</time>
+                <latency>true</latency>
+                <timestamp>true</timestamp>
+                <success>true</success>
+                <label>true</label>
+                <code>true</code>
+                <message>true</message>
+                <threadName>true</threadName>
+                <dataType>true</dataType>
+                <encoding>false</encoding>
+                <assertions>true</assertions>
+                <subresults>true</subresults>
+                <responseData>false</responseData>
+                <samplerData>false</samplerData>
+                <xml>true</xml>
+                <fieldNames>false</fieldNames>
+                <responseHeaders>false</responseHeaders>
+                <requestHeaders>false</requestHeaders>
+                <responseDataOnError>false</responseDataOnError>
+                <saveAssertionResultsFailureMessage>false</saveAssertionResultsFailureMessage>
+                <assertionsResultsToSave>0</assertionsResultsToSave>
+                <bytes>true</bytes>
+              </value>
+            </objProp>
+            <stringProp name="filename"></stringProp>
+          </ResultCollector>
+          <hashTree/>
+        </hashTree>
+        <GenericController guiclass="LogicControllerGui" testclass="GenericController" testname="Client request access token by user authorization code" enabled="true"/>
+        <hashTree>
+          <HeaderManager guiclass="HeaderPanel" testclass="HeaderManager" testname="Set request headers" enabled="true">
+            <collectionProp name="HeaderManager.headers">
+              <elementProp name="" elementType="Header">
+                <stringProp name="Header.name">Authorization</stringProp>
+                <stringProp name="Header.value">Basic ${CLIENT_AUTH}</stringProp>
+              </elementProp>
+              <elementProp name="" elementType="Header">
+                <stringProp name="Header.name">Content-Type</stringProp>
+                <stringProp name="Header.value">application/x-www-form-urlencoded</stringProp>
+              </elementProp>
+            </collectionProp>
+          </HeaderManager>
+          <hashTree/>
+          <HTTPSamplerProxy guiclass="HttpTestSampleGui" testclass="HTTPSamplerProxy" testname="Get access token" enabled="true">
+            <elementProp name="HTTPsampler.Arguments" elementType="Arguments" guiclass="HTTPArgumentsPanel" testclass="Arguments" testname="User Defined Variables" enabled="true">
+              <collectionProp name="Arguments.arguments">
+                <elementProp name="grant_type" elementType="HTTPArgument">
+                  <boolProp name="HTTPArgument.always_encode">true</boolProp>
+                  <stringProp name="Argument.value">authorization_code</stringProp>
+                  <stringProp name="Argument.metadata">=</stringProp>
+                  <boolProp name="HTTPArgument.use_equals">true</boolProp>
+                  <stringProp name="Argument.name">grant_type</stringProp>
+                </elementProp>
+                <elementProp name="code" elementType="HTTPArgument">
+                  <boolProp name="HTTPArgument.always_encode">true</boolProp>
+                  <stringProp name="Argument.value">${AUTHORIZATION_CODE}</stringProp>
+                  <stringProp name="Argument.metadata">=</stringProp>
+                  <boolProp name="HTTPArgument.use_equals">true</boolProp>
+                  <stringProp name="Argument.name">code</stringProp>
+                </elementProp>
+                <elementProp name="redirect_uri" elementType="HTTPArgument">
+                  <boolProp name="HTTPArgument.always_encode">true</boolProp>
+                  <stringProp name="Argument.value">${REDIRECT_URI}</stringProp>
+                  <stringProp name="Argument.metadata">=</stringProp>
+                  <boolProp name="HTTPArgument.use_equals">true</boolProp>
+                  <stringProp name="Argument.name">redirect_uri</stringProp>
+                </elementProp>
+              </collectionProp>
+            </elementProp>
+            <stringProp name="HTTPSampler.domain"></stringProp>
+            <stringProp name="HTTPSampler.port"></stringProp>
+            <stringProp name="HTTPSampler.connect_timeout"></stringProp>
+            <stringProp name="HTTPSampler.response_timeout"></stringProp>
+            <stringProp name="HTTPSampler.protocol"></stringProp>
+            <stringProp name="HTTPSampler.contentEncoding"></stringProp>
+            <stringProp name="HTTPSampler.path">/oxauth/restv1/token</stringProp>
+            <stringProp name="HTTPSampler.method">POST</stringProp>
+            <boolProp name="HTTPSampler.follow_redirects">false</boolProp>
+            <boolProp name="HTTPSampler.auto_redirects">false</boolProp>
+            <boolProp name="HTTPSampler.use_keepalive">true</boolProp>
+            <boolProp name="HTTPSampler.DO_MULTIPART_POST">false</boolProp>
+            <boolProp name="HTTPSampler.monitor">false</boolProp>
+            <stringProp name="HTTPSampler.embedded_url_re"></stringProp>
+          </HTTPSamplerProxy>
+          <hashTree/>
+          <ResponseAssertion guiclass="AssertionGui" testclass="ResponseAssertion" testname="Validate response code" enabled="true">
+            <collectionProp name="Asserion.test_strings">
+              <stringProp name="49586">200</stringProp>
+            </collectionProp>
+            <stringProp name="Assertion.test_field">Assertion.response_code</stringProp>
+            <boolProp name="Assertion.assume_success">false</boolProp>
+            <intProp name="Assertion.test_type">8</intProp>
+          </ResponseAssertion>
+          <hashTree/>
+          <ResponseAssertion guiclass="AssertionGui" testclass="ResponseAssertion" testname="Validate response header" enabled="true">
+            <collectionProp name="Asserion.test_strings">
+              <stringProp name="-578054686">Cache-Control: no-store, private</stringProp>
+              <stringProp name="-2071458824">Pragma: no-cache</stringProp>
+              <stringProp name="2066544187">Content-Type: application/json</stringProp>
+            </collectionProp>
+            <stringProp name="Assertion.test_field">Assertion.response_headers</stringProp>
+            <boolProp name="Assertion.assume_success">false</boolProp>
+            <intProp name="Assertion.test_type">2</intProp>
+          </ResponseAssertion>
+          <hashTree/>
+          <ResponseAssertion guiclass="AssertionGui" testclass="ResponseAssertion" testname="Validate response body" enabled="true">
+            <collectionProp name="Asserion.test_strings">
+              <stringProp name="-1938933922">access_token</stringProp>
+              <stringProp name="101507520">token_type</stringProp>
+              <stringProp name="-1432035435">refresh_token</stringProp>
+              <stringProp name="-302143019">id_token</stringProp>
+            </collectionProp>
+            <stringProp name="Assertion.test_field">Assertion.response_data</stringProp>
+            <boolProp name="Assertion.assume_success">false</boolProp>
+            <intProp name="Assertion.test_type">2</intProp>
+          </ResponseAssertion>
+          <hashTree/>
+          <RegexExtractor guiclass="RegexExtractorGui" testclass="RegexExtractor" testname="Extract access token" enabled="true">
+            <stringProp name="RegexExtractor.useHeaders">unescaped</stringProp>
+            <stringProp name="RegexExtractor.refname">ACCESS_TOKEN</stringProp>
+            <stringProp name="RegexExtractor.regex">&quot;access_token&quot;:&quot;(\w{8}\-\w{4}\-\w{4}\-\w{4}\-\w{12})&quot;</stringProp>
+            <stringProp name="RegexExtractor.template">$1$</stringProp>
+            <stringProp name="RegexExtractor.default">NOT_FOUND</stringProp>
+            <stringProp name="RegexExtractor.match_number">1</stringProp>
+          </RegexExtractor>
+          <hashTree/>
+          <ResponseAssertion guiclass="AssertionGui" testclass="ResponseAssertion" testname="Validate access token" enabled="true">
+            <collectionProp name="Asserion.test_strings">
+              <stringProp name="1023286998">NOT_FOUND</stringProp>
+            </collectionProp>
+            <stringProp name="Assertion.test_field">Assertion.response_headers</stringProp>
+            <boolProp name="Assertion.assume_success">false</boolProp>
+            <intProp name="Assertion.test_type">12</intProp>
+            <stringProp name="Assertion.scope">variable</stringProp>
+            <stringProp name="Scope.variable">ACCESS_TOKEN</stringProp>
+          </ResponseAssertion>
+          <hashTree/>
+          <RegexExtractor guiclass="RegexExtractorGui" testclass="RegexExtractor" testname="Extract refresh token" enabled="true">
+            <stringProp name="RegexExtractor.useHeaders">unescaped</stringProp>
+            <stringProp name="RegexExtractor.refname">REFRESH_TOKEN</stringProp>
+            <stringProp name="RegexExtractor.regex">&quot;refresh_token&quot;:&quot;(\w{8}\-\w{4}\-\w{4}\-\w{4}\-\w{12})&quot;</stringProp>
+            <stringProp name="RegexExtractor.template">$1$</stringProp>
+            <stringProp name="RegexExtractor.default">NOT_FOUND</stringProp>
+            <stringProp name="RegexExtractor.match_number">1</stringProp>
+          </RegexExtractor>
+          <hashTree/>
+          <ResponseAssertion guiclass="AssertionGui" testclass="ResponseAssertion" testname="Validate refresh token" enabled="true">
+            <collectionProp name="Asserion.test_strings">
+              <stringProp name="1023286998">NOT_FOUND</stringProp>
+            </collectionProp>
+            <stringProp name="Assertion.test_field">Assertion.response_headers</stringProp>
+            <boolProp name="Assertion.assume_success">false</boolProp>
+            <intProp name="Assertion.test_type">12</intProp>
+            <stringProp name="Assertion.scope">variable</stringProp>
+            <stringProp name="Scope.variable">REFRESH_TOKEN</stringProp>
+          </ResponseAssertion>
+          <hashTree/>
+          <ResultCollector guiclass="GraphVisualizer" testclass="ResultCollector" testname="Graph Results" enabled="true">
+            <boolProp name="ResultCollector.error_logging">false</boolProp>
+            <objProp>
+              <name>saveConfig</name>
+              <value class="SampleSaveConfiguration">
+                <time>true</time>
+                <latency>true</latency>
+                <timestamp>true</timestamp>
+                <success>true</success>
+                <label>true</label>
+                <code>true</code>
+                <message>true</message>
+                <threadName>true</threadName>
+                <dataType>true</dataType>
+                <encoding>false</encoding>
+                <assertions>true</assertions>
+                <subresults>true</subresults>
+                <responseData>false</responseData>
+                <samplerData>false</samplerData>
+                <xml>true</xml>
+                <fieldNames>false</fieldNames>
+                <responseHeaders>false</responseHeaders>
+                <requestHeaders>false</requestHeaders>
+                <responseDataOnError>false</responseDataOnError>
+                <saveAssertionResultsFailureMessage>false</saveAssertionResultsFailureMessage>
+                <assertionsResultsToSave>0</assertionsResultsToSave>
+                <bytes>true</bytes>
+              </value>
+            </objProp>
+            <stringProp name="filename"></stringProp>
+          </ResultCollector>
+          <hashTree/>
+        </hashTree>
+        <GenericController guiclass="LogicControllerGui" testclass="GenericController" testname="Request Logout" enabled="true"/>
+        <hashTree>
+          <HeaderManager guiclass="HeaderPanel" testclass="HeaderManager" testname="Set request headers" enabled="true">
+            <collectionProp name="HeaderManager.headers">
+              <elementProp name="" elementType="Header">
+                <stringProp name="Header.name">Content-Type</stringProp>
+                <stringProp name="Header.value">application/x-www-form-urlencoded</stringProp>
+              </elementProp>
+            </collectionProp>
+          </HeaderManager>
+          <hashTree/>
+          <HTTPSamplerProxy guiclass="HttpTestSampleGui" testclass="HTTPSamplerProxy" testname="Logout" enabled="true">
+            <elementProp name="HTTPsampler.Arguments" elementType="Arguments" guiclass="HTTPArgumentsPanel" testclass="Arguments" testname="User Defined Variables" enabled="true">
+              <collectionProp name="Arguments.arguments">
+                <elementProp name="access_token" elementType="HTTPArgument">
+                  <boolProp name="HTTPArgument.always_encode">true</boolProp>
+                  <stringProp name="Argument.value">${ACCESS_TOKEN}</stringProp>
+                  <stringProp name="Argument.metadata">=</stringProp>
+                  <boolProp name="HTTPArgument.use_equals">true</boolProp>
+                  <stringProp name="Argument.name">access_token</stringProp>
+                </elementProp>
+                <elementProp name="redirect_uri" elementType="HTTPArgument">
+                  <boolProp name="HTTPArgument.always_encode">true</boolProp>
+                  <stringProp name="Argument.value">${REDIRECT_URI}</stringProp>
+                  <stringProp name="Argument.metadata">=</stringProp>
+                  <boolProp name="HTTPArgument.use_equals">true</boolProp>
+                  <stringProp name="Argument.name">redirect_uri</stringProp>
+                </elementProp>
+                <elementProp name="state" elementType="HTTPArgument">
+                  <boolProp name="HTTPArgument.always_encode">true</boolProp>
+                  <stringProp name="Argument.value">${AUTHORIZATION_STATE}</stringProp>
+                  <stringProp name="Argument.metadata">=</stringProp>
+                  <boolProp name="HTTPArgument.use_equals">true</boolProp>
+                  <stringProp name="Argument.name">state</stringProp>
+                </elementProp>
+              </collectionProp>
+            </elementProp>
+            <stringProp name="HTTPSampler.domain"></stringProp>
+            <stringProp name="HTTPSampler.port"></stringProp>
+            <stringProp name="HTTPSampler.connect_timeout"></stringProp>
+            <stringProp name="HTTPSampler.response_timeout"></stringProp>
+            <stringProp name="HTTPSampler.protocol"></stringProp>
+            <stringProp name="HTTPSampler.contentEncoding"></stringProp>
+            <stringProp name="HTTPSampler.path">/oxauth/restv1/end_session</stringProp>
+            <stringProp name="HTTPSampler.method">GET</stringProp>
+            <boolProp name="HTTPSampler.follow_redirects">false</boolProp>
+            <boolProp name="HTTPSampler.auto_redirects">false</boolProp>
+            <boolProp name="HTTPSampler.use_keepalive">true</boolProp>
+            <boolProp name="HTTPSampler.DO_MULTIPART_POST">false</boolProp>
+            <boolProp name="HTTPSampler.monitor">false</boolProp>
+            <stringProp name="HTTPSampler.embedded_url_re"></stringProp>
+          </HTTPSamplerProxy>
+          <hashTree/>
+          <ResponseAssertion guiclass="AssertionGui" testclass="ResponseAssertion" testname="Validate response code" enabled="true">
+            <collectionProp name="Asserion.test_strings">
+              <stringProp name="50549">302</stringProp>
+            </collectionProp>
+            <stringProp name="Assertion.test_field">Assertion.response_code</stringProp>
+            <boolProp name="Assertion.assume_success">false</boolProp>
+            <intProp name="Assertion.test_type">8</intProp>
+          </ResponseAssertion>
+          <hashTree/>
+          <ResponseAssertion guiclass="AssertionGui" testclass="ResponseAssertion" testname="Validate response header" enabled="true">
+            <collectionProp name="Asserion.test_strings">
+              <stringProp name="-1047721027">${REDIRECT_URI}</stringProp>
+              <stringProp name="-892482100">state=</stringProp>
+            </collectionProp>
+            <stringProp name="Assertion.test_field">Assertion.response_headers</stringProp>
+            <boolProp name="Assertion.assume_success">false</boolProp>
+            <intProp name="Assertion.test_type">2</intProp>
+          </ResponseAssertion>
+          <hashTree/>
+          <RegexExtractor guiclass="RegexExtractorGui" testclass="RegexExtractor" testname="Extract state" enabled="true">
+            <stringProp name="RegexExtractor.useHeaders">true</stringProp>
+            <stringProp name="RegexExtractor.refname">LOGOUT_STATE</stringProp>
+            <stringProp name="RegexExtractor.regex">state=(\w)</stringProp>
+            <stringProp name="RegexExtractor.template">$1$</stringProp>
+            <stringProp name="RegexExtractor.default">NOT_FOUND</stringProp>
+            <stringProp name="RegexExtractor.match_number">1</stringProp>
+          </RegexExtractor>
+          <hashTree/>
+          <ResponseAssertion guiclass="AssertionGui" testclass="ResponseAssertion" testname="Validate state" enabled="true">
+            <collectionProp name="Asserion.test_strings">
+              <stringProp name="1023286998">NOT_FOUND</stringProp>
+            </collectionProp>
+            <stringProp name="Assertion.test_field">Assertion.response_headers</stringProp>
+            <boolProp name="Assertion.assume_success">false</boolProp>
+            <intProp name="Assertion.test_type">12</intProp>
+            <stringProp name="Assertion.scope">variable</stringProp>
+            <stringProp name="Scope.variable">LOGOUT_STATE</stringProp>
+          </ResponseAssertion>
+          <hashTree/>
+          <ResultCollector guiclass="GraphVisualizer" testclass="ResultCollector" testname="Graph Results" enabled="true">
+            <boolProp name="ResultCollector.error_logging">false</boolProp>
+            <objProp>
+              <name>saveConfig</name>
+              <value class="SampleSaveConfiguration">
+                <time>true</time>
+                <latency>true</latency>
+                <timestamp>true</timestamp>
+                <success>true</success>
+                <label>true</label>
+                <code>true</code>
+                <message>true</message>
+                <threadName>true</threadName>
+                <dataType>true</dataType>
+                <encoding>false</encoding>
+                <assertions>true</assertions>
+                <subresults>true</subresults>
+                <responseData>false</responseData>
+                <samplerData>false</samplerData>
+                <xml>true</xml>
+                <fieldNames>false</fieldNames>
+                <responseHeaders>false</responseHeaders>
+                <requestHeaders>false</requestHeaders>
+                <responseDataOnError>false</responseDataOnError>
+                <saveAssertionResultsFailureMessage>false</saveAssertionResultsFailureMessage>
+                <assertionsResultsToSave>0</assertionsResultsToSave>
+                <bytes>true</bytes>
+              </value>
+            </objProp>
+            <stringProp name="filename"></stringProp>
+          </ResultCollector>
+          <hashTree/>
+        </hashTree>
+        <ResultCollector guiclass="StatVisualizer" testclass="ResultCollector" testname="Aggregate Report" enabled="true">
+          <boolProp name="ResultCollector.error_logging">false</boolProp>
+          <objProp>
+            <name>saveConfig</name>
+            <value class="SampleSaveConfiguration">
+              <time>true</time>
+              <latency>true</latency>
+              <timestamp>true</timestamp>
+              <success>true</success>
+              <label>true</label>
+              <code>true</code>
+              <message>true</message>
+              <threadName>true</threadName>
+              <dataType>true</dataType>
+              <encoding>false</encoding>
+              <assertions>true</assertions>
+              <subresults>true</subresults>
+              <responseData>false</responseData>
+              <samplerData>false</samplerData>
+              <xml>true</xml>
+              <fieldNames>false</fieldNames>
+              <responseHeaders>false</responseHeaders>
+              <requestHeaders>false</requestHeaders>
+              <responseDataOnError>false</responseDataOnError>
+              <saveAssertionResultsFailureMessage>false</saveAssertionResultsFailureMessage>
+              <assertionsResultsToSave>0</assertionsResultsToSave>
+              <bytes>true</bytes>
+            </value>
+          </objProp>
+          <stringProp name="filename"></stringProp>
+        </ResultCollector>
+        <hashTree/>
+        <ResultCollector guiclass="SummaryReport" testclass="ResultCollector" testname="Summary Report" enabled="true">
+          <boolProp name="ResultCollector.error_logging">false</boolProp>
+          <objProp>
+            <name>saveConfig</name>
+            <value class="SampleSaveConfiguration">
+              <time>true</time>
+              <latency>true</latency>
+              <timestamp>true</timestamp>
+              <success>true</success>
+              <label>true</label>
+              <code>true</code>
+              <message>true</message>
+              <threadName>true</threadName>
+              <dataType>true</dataType>
+              <encoding>false</encoding>
+              <assertions>true</assertions>
+              <subresults>true</subresults>
+              <responseData>false</responseData>
+              <samplerData>false</samplerData>
+              <xml>true</xml>
+              <fieldNames>false</fieldNames>
+              <responseHeaders>false</responseHeaders>
+              <requestHeaders>false</requestHeaders>
+              <responseDataOnError>false</responseDataOnError>
+              <saveAssertionResultsFailureMessage>false</saveAssertionResultsFailureMessage>
+              <assertionsResultsToSave>0</assertionsResultsToSave>
+              <bytes>true</bytes>
+            </value>
+          </objProp>
+          <stringProp name="filename"></stringProp>
+        </ResultCollector>
+        <hashTree/>
+        <ResultCollector guiclass="GraphVisualizer" testclass="ResultCollector" testname="Graph Results" enabled="true">
+          <boolProp name="ResultCollector.error_logging">false</boolProp>
+          <objProp>
+            <name>saveConfig</name>
+            <value class="SampleSaveConfiguration">
+              <time>true</time>
+              <latency>true</latency>
+              <timestamp>true</timestamp>
+              <success>true</success>
+              <label>true</label>
+              <code>true</code>
+              <message>true</message>
+              <threadName>true</threadName>
+              <dataType>true</dataType>
+              <encoding>false</encoding>
+              <assertions>true</assertions>
+              <subresults>true</subresults>
+              <responseData>false</responseData>
+              <samplerData>false</samplerData>
+              <xml>true</xml>
+              <fieldNames>false</fieldNames>
+              <responseHeaders>false</responseHeaders>
+              <requestHeaders>false</requestHeaders>
+              <responseDataOnError>false</responseDataOnError>
+              <saveAssertionResultsFailureMessage>false</saveAssertionResultsFailureMessage>
+              <assertionsResultsToSave>0</assertionsResultsToSave>
+              <bytes>true</bytes>
+            </value>
+          </objProp>
+          <stringProp name="filename"></stringProp>
+        </ResultCollector>
+        <hashTree/>
+        <ResultCollector guiclass="ViewResultsFullVisualizer" testclass="ResultCollector" testname="View Results Tree" enabled="true">
+          <boolProp name="ResultCollector.error_logging">false</boolProp>
+          <objProp>
+            <name>saveConfig</name>
+            <value class="SampleSaveConfiguration">
+              <time>true</time>
+              <latency>true</latency>
+              <timestamp>true</timestamp>
+              <success>true</success>
+              <label>true</label>
+              <code>true</code>
+              <message>true</message>
+              <threadName>true</threadName>
+              <dataType>true</dataType>
+              <encoding>false</encoding>
+              <assertions>true</assertions>
+              <subresults>true</subresults>
+              <responseData>false</responseData>
+              <samplerData>false</samplerData>
+              <xml>true</xml>
+              <fieldNames>false</fieldNames>
+              <responseHeaders>false</responseHeaders>
+              <requestHeaders>false</requestHeaders>
+              <responseDataOnError>false</responseDataOnError>
+              <saveAssertionResultsFailureMessage>false</saveAssertionResultsFailureMessage>
+              <assertionsResultsToSave>0</assertionsResultsToSave>
+              <bytes>true</bytes>
+            </value>
+          </objProp>
+          <stringProp name="filename"></stringProp>
+        </ResultCollector>
+        <hashTree/>
+      </hashTree>
+    </hashTree>
+  </hashTree>
+</jmeterTestPlan>
diff --git a/oxAuth/oxAuthStatic/.gitignore b/oxAuth/oxAuthStatic/.gitignore
new file mode 100644
index 00000000..b83d2226
--- /dev/null
+++ b/oxAuth/oxAuthStatic/.gitignore
@@ -0,0 +1 @@
+/target/
diff --git a/oxAuth/oxAuthStatic/pom.xml b/oxAuth/oxAuthStatic/pom.xml
new file mode 100644
index 00000000..f40ccbce
--- /dev/null
+++ b/oxAuth/oxAuthStatic/pom.xml
@@ -0,0 +1,26 @@
+<project xmlns="http://maven.apache.org/POM/4.0.0" xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance"
+	xsi:schemaLocation="http://maven.apache.org/POM/4.0.0 http://maven.apache.org/xsd/maven-4.0.0.xsd">
+	<modelVersion>4.0.0</modelVersion>
+
+	<groupId>org.gluu</groupId>
+	<artifactId>oxauth-static</artifactId>
+	<version>4.5.6-SNAPSHOT</version>
+	<packaging>jar</packaging>
+
+	<name>oxauth-static</name>
+	<url>https://www.gluu.org</url>
+
+	<properties>
+		<project.build.sourceEncoding>UTF-8</project.build.sourceEncoding>
+	</properties>
+
+    <build>
+        <plugins>
+            <plugin>
+                <groupId>org.apache.maven.plugins</groupId>
+                <artifactId>maven-site-plugin</artifactId>
+                <version>2.1.1</version>
+            </plugin>
+        </plugins>
+    </build>
+</project>
diff --git a/oxAuth/oxAuthStatic/src/main/resources/META-INF/resources/img/buttons_bg.jpg b/oxAuth/oxAuthStatic/src/main/resources/META-INF/resources/img/buttons_bg.jpg
new file mode 100644
index 0000000000000000000000000000000000000000..3d9ad46e11cfe4699d69e00a5d785c680199fc7b
GIT binary patch
literal 14804
zcmeGjX>c3W`K@HjM;s@P9SBFMP%fadwWsy~H`qE71Lm-ubJ_t}TFVNOR?)6(C!G#=
zY3Y;>g!@M)34u~de?Yn085+tx(-}gc1$rg4(3BQP2uFZ|`h9P;vIGtRr|qcJYwxG;
zeeZkU`@Zje@4emk_7$Hm?jmzfi}pnc<6_7P_#?&LZZk5G8X=^=pPWPpX(SEIJmLn7
zfj`0=P3kF5$S`wE8DGzwP~vd`4@Ur!W8uy-JjFWzzw+`FsVkM;4!=*6=6_yD$kMsa
zZ%@J)*1czs8kS*>8aZ!hQ1q@&WfR7@NqClHHTdTRFDGge3;!U3xVJENy~QFSTU=%N
z%ocYU$GY+IFz%9$o=Q8I<0kE3mQ>mSJ}K$Tbh*m1UEQ`g^cH%={w-Ge5^3nm*GLPs
z>D*91aTQ-Dtu#dv7h=ic@5rU3rLnQGsj;Q0sikdJ^Q^Y{b6Q&F%wN#nKEJ(vL0b#G
zN<Vhu<B*v>Yu4=6*>hW4=XSKVwss(B?XZiqeHH=5Uy!y&(m@zE<0Gy%#@)sg{{Ut)
z#YdQBpk+NnFHjgSHv~#uy{DnEsd*NJLv<!YTy7_GE@A2zx2w)o-{5Jicee<T+2*c0
zejZofb55+?x8Wk*({a_-J9`%{nm@2(SP=6U?+i68zIt%)?tO7nI%3;hmn;cy9!f+W
zzS#;M`OM0f^f!Nc=`Vj>`1Ahg(rdO~cK5Z9Jo}foZn@{t=U#q$)yUYluDkW#$A0t5
zJM!|?$??mt|KWX)|Msu%wh@;Lw5_8$HF)YJs>1QyygJZegRi}wzv!wC)L_TJ&b`8-
z;obR*uMQ2)kDKDY#U50kVTttcGoZxHM<yaGgO>hMS%rgZuyj&|;)|rkP3vqU%gF2U
z*FSipNR;h&Z0b8PGpG3UTi;)Q`YVezKU*Zl7mBYn2PeZ`=wgY|+t*)*!AD5LvCx^Y
zKT+CZN}Ic9-`DmBb}ZPs?HkFTJeqj!LCkZ%X6Kax)8+iqa!Y7lD}@v+yU>>Cev>Af
z?e2};i1N>-RMcP{O&?WGA4lujPt#2l0$^w<=*oDZEc;?8@7px7f&@lJASVqFIv`w3
ziL&*^o5~cP($@iWcqB^coTN~h2Ov#I4m#PCmwOLpPnlIboIL7_MwCsSgd6O1ooe4?
zG1Rt;Kzp4Bpm7U;HpJR@0XPP+FCn%Vv8B5J1kMA%A*LdBGGd|g07P~H=tt}<#8xA=
z7O@y&am3C?EQ449v3Xkn9E)HH0v3UWAdKKl1ZxlsBS>!nzkGz)7=or<r4~O95`+$T
zb_5)aNp~LryCpD5V5Fc{LmLm10<qxFAX#FPb0M89<so0?<wOJ05O)UTGEXIgL&Q)j
z(X)kg8dBH?Ji|sIn=sEBULT*#ABbBVq-b{;f_WotWKk7*ouQ9dmFZr~$duAlje+E-
zlaIA|%ycTQo2$}in2=(s>ZzxBK%NJ815NaWD`Yn$^F|?8Me-Q=R5F#-vxN+lX^9M?
z^s^`p(z9a)%UG^w^?c0I6F?wC8*_Szx!Gn$3g+}>l3w`vPuuS<<kLfuHA7HUh4ZT^
z{bo|HqIhCyYbchiqP52Lbb3giu=>muL;YtA8%7!hHag@g=B802zo{pkN;;mJV;jH1
zAw$WAggz20q%A<3#`L^31^X(8T+KdfI2kh1M!v$iZMOX0<>d@0Le4a@=<6oS$emTN
zOx+0#%xg|VAbo<`GHh57P@kaBf+imQI6ECXPC#L#1#Z`}y%e{5TN}k0dmOE^dk6;f
zd9)Pr6W3Y*=tR7c1M|-YdN)}B^YzRF$jk%CEALG20mP2M;~}01SqV49At7@}4@toA
zK1_7tg+Lnx9EW?8VlefR_Cs)ZNr(&*5e3p3=4=6!FfEx_Hq|!}9dPJ9*)R^byWsxh
zu#c}Eq$fI9*&9hT-<O?okR}zA1#-~=dfiX*Uq&g>{Bn2#FASf$>OxG?3j|L++&hx!
zv=TL|#&ysq?@S}M6f>H4^uZ~?squ_ZwnA_0%L4|T%<N|fD2uc?Td9y^Gb8yFU^vlL
z_`x2D={R7|#0~ILM%$>k`^2w}T2@XA1hQsV3}2tR;zlMg5z7U*E;c|;SvHZ2#n0C*
z@30Q@P`B@mpFQOBrV`!0)lxs(p9|@usTG^@`rxKBhvJ*gkE;pavafninb0OOxr}bb
zyc3yp*3>4teN?yxIFbWCFJ-aL@AlDG8t<C^v%MiBuY1KVzKidSvq8Zt30;E32YJ!&
z<ylq<uyR0PJ2^$;c#TuMrOOBP<r5>?KsZ{e4N~2{l3C;9<6YxImyu5fI8{{xEFa+c
zPT=S?H)gHaL}%7q=tv0bW;~zDSt%pyMTs$ZR<OE#psQ^}CRY|arMDc$M7+$GgXxe~
zo`?tZw4TwkmI<Ea&;e9v&Usla7pW3m&Zf=b6awe=_fK8GX}L_MT!m>x#=wkEYiARu
zw!naH8ijmZkBotu3!TbLYe1j$XO(tNW!1%jy<FHzjU1#b=2RJ_!=k~|T4GL_HK&F0
zddz~^7@i26=$U-?2@ML~{#ZPf#U%hVp~SC;;Ss6ZhjG-&@|`?C#051@&_r>a&DC!t
zQX?B3E)L?1?c{|aXRY8XEU&R_i4`I^5wl{4WKP7j5hI_8f%j9HSW*wH&*@2@x7?^2
zeR_bJK{J8M?(f(7vZfWw#`V5%w-40sN~IDSD@3AEK?$k7;Yc{jaY`^4RVB6uh=Lm7
zRHtm%h!-%%uxz0K1tnIIq7g16g`!+I1O-Lt1igG%l!acA4M|Qx`;ju1o`wKyNDazE
zwK42E-9FCerNlKDQ0anAl)?2Z8{iO@^4A_Be=>VzHU&Q9OXbdlddBo{Dyf@Dm4bd=
zlHpe1R{bzw_<31`8)%B?mjo7W4sf6=f}dA|eu3ru0;j;O`XwH2fd?AMky*HbSH`pi
z`EU!Oz@N-TS*b@>1(^#&B|=D2L^c}aSydLJA}1<7FGi_$c4|UTuL-B15lqJylNoC(
zGI;O;&7m<c2%{_nK~RzeXcJ1Wwo(WxLD4U=YLKN6^p`o_hCHR%Pyo8b**u~jOUV?1
ztzZXG00Ko+B$h(36L7E+AoxWVz-tJBAE1g*0ZxEemjFIQh_wjdTZB*+AT0}?MPCRM
zg0_I$6q(`*LKXA`NO@EVaG6KC46OhV+Dhb9kckk>stT4>735JB<WW`1qjD5SX)2Yb
zs#v2+WvZwNtoQ}}(4KyX0e{dh`xU?H2iI_%pX2?U;O9g?v@bAmvLAwh2VMvfh!6-K
z3E~LC03rqg;be~M<&}^ka$%KIdK6ZXBT`5Xa$Ho9q)1N)XAn9lYb#PFj7=L$bJC!`
zp@gMVUOEnIvAEqI%-EQo@Rf+EDf&Dg=?w~eC?bpDUfSoun_-TRh!AkSEGIi<$47PO
zbGW>TLl&nF!KfyP8W(hiEW2LQ7_r7<dA%nI9d)X4v%FO52#$}&vPm7L`hYJmeJi40
z1S<q~`c_CV$*48a76Lb2D@2%qG)b-vEBNVK0qg&)P#abVhh>FOBW)obh7~YI@wL$w
z@?lt^YLZeDRz%>TCoGGs-1~Xw3sK`?UreeAD}-POX1kuC7zu}P)>GjrOBEHE`#DkW
ziHOeRR6XnQ><}ku0*th5ZCD{6mK9Qs^b6$+VTF1aR>&I9)kZ}1Oy3HTt(kt&dl**m
z8ebdFv_fRMR>&HwXhLm_v_X#N1)1lh(B~a#Wld5wp*H$Oke{v<u#6~aY;BCR@S-=(
zwxCwj$kSj%2u8!9NSKwwVVt{rVeugp48nUetma19gS@fw9DQSj=cwA~-4XE%VTCk(
zD?~-(YvYYI0_&X9jVKW!sy5z|BJ%XDkVH+a5i69#utKSo-W`oZBA>pJZZDU8?EL~Z
z0&p2e<7#8pi-H;d`&O{*p>{P6-WKoyCtDl+g5{=b1$1rLRQj((RNTnoH!qVb&be4V
z20O8O-t6{`<c*9smdnAnMRW%zFqTb}HiOGsRbI>RR_tLNbU`?w=V5QAys%waO<4!;
zzq7(auA{U3|3Ld3+KNN&03NKbls<O;H^0ROaD&|5-Uxhr=fh5i?MR4XaM3+vZK_?4
z&(eEfLs?6F{+&&`Qu_nC>FjJ`j8ii!z6)?j@Ua1+<?kH6>U@nb^E=~#84t{OV8#P8
z9+>gK|B(kKzm(Lo@Xf?Hd<R)^VCz);-jW{JvX4W3Cg_^H+~upHBpy$4l`}poQgL7l
zPB>K`*xCkadR%bmsC+dvdg|+%+|6*54GwG(j~nVQXF`^{!PUq#k>*)*iHmW=ku5iB
z<nlBX7&y$;RzJ^kd_%jBG;$q1{KEN7=ky*CTO=Ggu;HQw!&fa1ZM}2v5;5O=)Q+9f
z(%pl>i}zi<Ej(mKqVn?i2`g8vKKibQpLyxc#3k0|OZA(7`paMc`9x)8f8iumThVvg
znzieaqp9^{;}aV<UG}ZZzx|ynuDSNQ>u<R6rtP=f`or6Pbo<@++<V{s4?OtDqmMoQ
z#FI}w``mAS`}_+p{^jLY{<`OHufFy6JMSKN?|m>IkC@fD>+9<3Jf8XtsN4oe%<4H0
z@wNAy)4<0%HZ=BLwD79=16zlW5Ss2>v}0!|zxT-97mIMxY(YG{Z`)l<q@#v{k;Kww
z^ODU`3-w*87gouaUPcw(f8x>CY`+`Nnq6xjHalVY>Jg=U-fZ%)*@`uz6W_k!w)>xW
ze$N55Z*6MhcW(UA15dv2xA#ucPFuHr(-k+}{@_zDzWRRknXng=2d;a&NPh6+u?zM@
zZYq*j|CC>TS@NR;-~I6A3x4%X_rL|Ge|YZo=N6y-eZvQLEQ5n$KVN$1ecyZMqd(qw
j+uw^j|FHSP$BN`vMe_dR|LA-Fp`9OnQ@HY>;tT%*bd@Nq

literal 0
HcmV?d00001

diff --git a/oxAuth/oxAuthStatic/src/main/resources/META-INF/resources/img/footer_bg.jpg b/oxAuth/oxAuthStatic/src/main/resources/META-INF/resources/img/footer_bg.jpg
new file mode 100644
index 0000000000000000000000000000000000000000..f473f46aa838da8a1b5c59623ab549060ef08f79
GIT binary patch
literal 13094
zcmeG?ZIBzql|9m~v|nC(y*3z!0$KhdL|)COMl)t(^l2}#!0fI+aHYy<rCF_vq>(iv
z@7k9u^BIy<T~c7at5UIz6ChQ|6@*W7cZvB-@(Y`9Qo%7K#7Q7$V+@2G*1gxG(MqtK
z@%p&h%5CrV)9cr-U%&VIb@xn9S6-?7j?B6w-WMl~gCVQnk5mpjx5dV?!-OOf<U&G7
z3vn~Ei4!me{s=RlG*g_AA?8apd^2-FmB#@*905qqg<N8Iiq8T3yEkS@Q?>10_<fGF
z{nyomES+WlhSK_w=2<hMo4PTg7d?>y(X&2VNb92p;aQGV;h*O{Jf}*mD#{>&ICn8t
zzm*ChyBsz7%r0jQUyh8BT#U1-qpRKy=Dcw`m?iagfKRIWGChu(Y)8Zrhu%VuSihBe
zUm^{C`3~uzHf@R|h@<jX(n(7seKoeM{DxdlI$By<T3b3=TRXbi+uFP4&g|%zId@)n
z_uTI8d0ibeRe!9)Cm}PVy?sXKj9HzXv*vVmcFsZ2Imc?!^?3wTenGlg$a2Cs882~k
zG0rZg@>?*QsXWE304<vtnm}PpP6(8yW|zCAwXGe(p|O%74yRo?i!e=$)6wK;cDq`d
zogD&Hb~&3C%;uUymnXZuTdv_<b8gywe|X`dx&8Zx1hI7OfrxwY%>zddA4?h1S$iJ1
zZb@|KU^@21-DcqIgKOW=-u>D2Pd;CM^LTveEqiZx@YbhZ`2Bl7eCX*H|8Qd6@YZkM
z_M?ZNdFie9<(2C*qc`4u&m+&i{KpTvh{FNeHc_42u4aj<uz;K01R8Adb~p3a+%yL@
z*x!HPsIX}0aOv8cBLj0&hInkT3l(rLk)AjRO5A;RI<_`oYH!q3_-qZ9j;m04jdVC^
zpIu}HdGD#6d-p~v&%Jk~?~>V<J-DKB;KaPXix&OMeU*bJqC5BA{DaD?m3P|D8V`P<
zhb6&qU!n;^kP!E|Fr{!-QQBfkn|0*a*N^-6&)dD{pE5srI{o54taH9&)m6jOVgJ&0
zOK4pug%qr~+LGvemloTsNsg0=^3R}D)L<hmpHnNJNBcTX%dHdwU}!6t(3nt`l^Du<
zf)-X0|L`!><N(4ngv3-SyYIZKM&T)aBS4!+qLgLh6e{yWC=*hIsWxG99>MAft14$w
zM}2{!aY&rBghN9}n!+y_(EeE332)8L(}A=#`VoDLBea}SS}5gtfIxFxY-O^vQaQPc
z0H+6l`$_<_5SzUVz<k8cMQjmbOAzZpj72Pnn2J~!u_$7z5xW$zb%<?1>`KIj5ZjDc
z4lxt4t}6k23Bh6negq1F2!aHH^$3y(uDTLN`D4V&2wHXlaIZn@TCA9CIuCF{mvbw!
z=VQ_NH2_wGVG(=*8C$iJ9MMUJWJ!Sx0X9Z9!EdHo3qK7BTi6M4l+uvu8SDz2BvpE$
zoXbH8L&!CxmkVj*vZ2kX@%sLh$w7%O1cR_I=JW!pLepw(*sL#yO+8;NQ#JZCBX&LZ
z<}z~GlxD2Utu~;<H1yL<>wr8PvYQtAqII&}nUY>EHjrF;DVxa_v_d%#Z8~BDDE%@@
zgYt}I+0<8R1+A1cH99p0w-vQ2bDPDC6ksKN`HTmCzG(ZM<x*}iwqX#us&jrLC1GT=
z28t`0GY6BI23luI%jE{OF|*HDHJDgEr0Y2p*kY3#m|I8m()Lg;o3TAL(=vXQO@@~4
zv^Jb9=S)Cbw`wJG0`_$_xsknnC==0hda2I2U6%at%31|9A(!d}^mVJL7cVQDhGqu_
z*0tpzkUmB27}8A$s87+`VTeaQ$xhdi3s4y8fb3Xtl;YNW>!LVQosIZ7Xa#g1ZH4^A
zu?YY=5i<ra2K?JVkC1urJTm=&HT{6~*86AjfMrGE0*ER?)<TA8BxEKD!M3f#@~#mN
zSwltuHz6AogGUR}eF_c_iI4#zqCnci%w2#IrX!y$Wc&K#{Wd*Rh~lFAJIJ42{GC80
zq4+@koFws5Utz+fn$&F>$VHdwjXx=!k5b~LmGGWX9=dql)mWqn1W&x^+mh(!5;q!F
zchIL~Zzh%$BVMxg!HvQ0ado6nr#H^%ew}V<)>8$vMcT~WRLHsc;Zhbb-0tf9V6De=
zHL!MMH@te%F{&J1uxrFLi>lvWFnW^slGu~d^Zv19(a-g;esa-@v0^fHm1cT|G}w)L
zz5n_6&%K^(y4Sm2O0bDyL>tMj+FsHIwqH7!+J03^Nqbj()pOC9I+icyH8bfM%jXJ)
zI@ar@!d1YL?Du*oi+NSAm%g}pHYC<~B6>;lh&_A{zbwTD1dk;22ofLQMW2Uf*`S}5
z{Q|p;3#uHiazRfud7-~jdRXm`#;d(Ssn=UIYjkw9XH@9XOBp|>D2kuu{XD-6IF=dP
z3TAR_S;1InONeSls+297S-s#viAi{3FnhhAt7SyKSQ9&;w`|6As>WA@O_6q<PWiQ*
zme&fV0iNa10aR$wekHFpX%Jnjro&-30_P?Y6F0C&E}yS;VVJS4V8;J6&IWF9{(jBS
z%cYbS+X`wfv^z7*er?>J4cghAH8uzKT4OUi{26Vrroku;jz%Wd5^HL#MKw~=k|ylQ
z@LXU=&-lAtWI*sFlBsL~4?56<D!&$m2c=#w#?dmCU&ix;TtMXnRTMW`TnRm$9o}Yh
zaS&%La@i*$UtxKbWvi?Z!Re%#JSB5Fr4H+*d=k8$%_lROe{)gGcs;d2Rp~PX^bDE_
zRCXev_7w~>Sx9Mp(Oxg8-;>Rz)j&8b2~s%B#-g!koZ~`)kQid4vcht~AkWHn+o+x@
zV~k<jav2&*Y*32FxQG;qbI}OL1x1(yVLmF#LRe%YlHJgHuuSGAApi$bh4#>G5~ohD
zm-BikaRUZau51xya6QZVIfT{vD^5{AUcI)E1t0R&c9%jwTeWC5qZvq*0zO`nAqOEV
zK3Fh(yevWnT2S;!0t=Y~9Oyy8$14G!z;Zr;3qn?W5)WD6fd+D97BcY4SeBq3vLFil
zay}-oK_x7O_y`By3&uEbz05~gQREaZq<B3TrRtjOn3mfR&B7oUwlBsjuBfY!>?Sk@
z24IziAP7h>%vDj1RtkY&K=g^M5@0C={bi1~AWtb46o4*q7LVw|Rx*WPE7$=PfItz0
z5=$Z22{>2@5d0zw;5CH64^TlE1Wth1mjFIQh`k8lTZGUSAZ-ht6*&=V5rVb=Es9L>
zAVLN71W0)l32>Q5x(uTL5XK7p2{I94TP28Xl_2scLF7>s%A;@;M`;R`rYP8>LS-tb
z37l&Nd@!Cqhyh=~C;Ngv#Rsn8I3LIRIKjt>J{VtM;$$BL0}s3qA`l@EJQBnagaJeh
z1j2HO6+}@EaWOU&4J)iHvyo^>5`{1y6Gbr)!X1Pz%Id1D0c+E?>Yg;9ZK-0ptcR|{
zYBFWb2P3&vOM9!t>;!Y3kA(vQABo9gG>mgT2;Pix*kN1@vmDHMOW^2;26GM%adFAw
zltEb41X1Mz_L60>8Tzm}nk;Fd3{2FC*3H_1uq`+>k}PC2*y{aW|KzQR|07r-u#>k!
zf=x!55@R87leI!rSwWTLsbK{_c`M*62P;esD}*z$LYN|BA)bL1utxDyV=Uw|utHI#
z;FPc;1`j<^S!Ct#>FyVz%EQ+`X-Zfj1R}88g#uzM8o^ypVdDWs48q>e!3G=??airi
z*W=kiPErL}Y1ye^g?vU<NK<591pgtdP|m;#S>?H@5mBMZTOq<H{V6gp!e?Lwukusl
znO2BR)(Tl=gQ_q!R@wl^^McHCQsi`3T3MA8RhSy{BEV193OGiTRCa2twD6)g$+4hT
zOp&L-K<HGbR1>|iPH@QfMZU47^a6eZ9DnyNCQC^;lh#T`uXnhl=RL_{5x%w3vn>DC
zLb`e^UOTk&n7XI#H19KCjni5QPN{0I`1Re?bnyIdc6iDYg;Sp*{@;#|9}n5BBNG27
zPfx6J)be2*hlQR)s}r4+e4e<2LuoaA`lq8-r`D(V$()X2bWk(vzAe}!_+Wu(?OVxL
z?JpYBztbL=_Q13Uradt2foTu?Kk~r%Z40dc-(5!GE=Aqd_KWe(2EE#T8kbTX<H=b|
zb?xyYx1(0^d6BxS?Qj>o@oM`XP}Ajr>)EyBZgDj?wL072(mz~nCoU)SU#o;Fr`yrO
zw34>=S;WCO;c~kZHFCIG%M4t5?`odyTHx;Xk```Gh+jCj_44pp$wk81{adb?H+0kD
z$nN`(E)h#@=j=ZqEj>ICxc1o1d!mCzEH1B1U9fiD`uPt$aqx|I)7P0huh;JW*^|$|
z`Q_m7@$!X=x~lJz4OeW;jAS=&9Ua@Y{f2Me_^oe$=ayS<yZw$k@7nvrAKi2BeLsHi
zp@$!N^s#+UJ^jqHzx>s&UwHAQmtT4Hwcr2Ytv??5)1Tiv@%{%N{_P_$A1~uKIh&iB
znq02tJgD3Sm+_l97x8w7E_d_EIa^x7*DSngZvXC~vxL_B7wta~DIGog@U<e`$)A^s
z9^3Q466u`5KrFqq&A4u7+(doXYUOqE^*2z3kAHdoEqfotTlu$I*YYn|xqdiUyO}?J
zEq~R9k+E;xaqpwQeC5c8O5YXPZQs80zQ=y`>Yx60p?b;2&D+0o*N^x8`n5lQ)OdUT
z^{=e_utNTA$1@*)@1bw(``XKu=U(6R?8)|%fB*Q#`~Tx#AKClc9hC#G-~H^#8I)4^
z=^cNm9DMyRPwcqo;~8(SeB&D*4S#<}<@rO)pFa7>-;KB5+>|&`dEwBGCr_ULuKv(#
oC;xdJ)V_G=@rx_u{0|Pj-TUwNp7`m{D=!^-^U%HzHdS8zZ;(3beE<Le

literal 0
HcmV?d00001

diff --git a/oxAuth/oxAuthStatic/src/main/resources/META-INF/resources/img/panel_header_bg.png b/oxAuth/oxAuthStatic/src/main/resources/META-INF/resources/img/panel_header_bg.png
new file mode 100644
index 0000000000000000000000000000000000000000..49c74226385602dcc6edad154ab77251f969172a
GIT binary patch
literal 197
zcmeAS@N?(olHy`uVBq!ia0vp^azJdv!3HF~<FelasUA-k$B>F!Z_l0-Y;s^=IdIb6
zP*+#9tC%%1j8E{i#4&?o$8CPy{qas)^ux_Gt%Q2pl?~q~t!T*Y3prrL8**S$l~#hB
zwN^q`BbP`2G%ktXv$#59U0Hb+E@1j)ww!5~+G3`6SEq7uJZ<I5=rR@!c&@Is;8b6T
sL#1`V!Hvns`(&-l-rN8){ulmXW;hq$o0!d30CX3Fr>mdKI;Vst0K-a2kN^Mx

literal 0
HcmV?d00001

diff --git a/oxAuth/oxAuthStatic/src/main/resources/META-INF/resources/js/Duo-Web-v1.min.js b/oxAuth/oxAuthStatic/src/main/resources/META-INF/resources/js/Duo-Web-v1.min.js
new file mode 100644
index 00000000..3b63dcda
--- /dev/null
+++ b/oxAuth/oxAuthStatic/src/main/resources/META-INF/resources/js/Duo-Web-v1.min.js
@@ -0,0 +1,5 @@
+(function(a){var d,f,e=1,i,j=this,k,l=j.postMessage&&!a.browser.opera;a.postMessage=function(b,c,h){if(c){b=typeof b==="string"?b:a.param(b);h=h||parent;if(l)h.postMessage(b,c.replace(/([^:]+:\/\/[^\/]+).*/,"$1"));else if(c)h.location=c.replace(/#.*$/,"")+"#"+ +new Date+e++ +"&"+b}};a.receiveMessage=k=function(b,c,h){if(l){if(b){i&&k();i=function(g){if(typeof c==="string"&&g.origin!==c||a.isFunction(c)&&c(g.origin)===false)return false;b(g)}}if(j.addEventListener)j[b?"addEventListener":"removeEventListener"]("message",
+i,false);else j[b?"attachEvent":"detachEvent"]("onmessage",i)}else{d&&clearInterval(d);d=null;if(b)d=setInterval(function(){var g=document.location.hash,m=/^#?\d+&/;if(g!==f&&m.test(g)){f=g;b({data:g.replace(m,"")})}},typeof c==="number"?c:typeof h==="number"?h:100)}}})(jQuery);
+var D=jQuery,Duo={init:function(a){if(a)if(a.host){Duo._host=a.host;if(a.sig_request){Duo._sig_request=a.sig_request;if(Duo._sig_request.indexOf("ERR|")==0){a=Duo._sig_request.split("|");alert("Error: "+a[1])}else if(Duo._sig_request.indexOf(":")==-1)alert("Invalid sig_request value");else{var d=Duo._sig_request.split(":");if(d.length!=2)alert("Invalid sig_request value");else{Duo._duo_sig=d[0];Duo._app_sig=d[1];if(!a.post_action)a.post_action="";Duo._post_action=a.post_action;if(!a.post_argument)a.post_argument=
+"sig_response";Duo._post_argument=a.post_argument}}}else alert("Error: missing 'sig_request' argument in Duo.init()")}else alert("Error: missing 'host' argument in Duo.init()");else alert("Error: missing arguments in Duo.init()")},ready:function(){var a=D("#duo_iframe");if(a.length){var d=D.param({tx:Duo._duo_sig,parent:document.location.href});a.attr("src","https://"+Duo._host+"/frame/web/v1/auth?"+d);D.receiveMessage(function(f){f=f.data+":"+Duo._app_sig;f=D('<input type="hidden">').attr("name",
+Duo._post_argument).val(f);var e=D("#duo_form");if(!e.length){e=D("<form>");e.insertAfter(a)}e.attr("method","POST");e.attr("action",Duo._post_action);e.append(f);e.submit()},"https://"+Duo._host)}else alert("Error: missing IFRAME element with id 'duo_iframe'")}};D(document).ready(function(){Duo.ready()});
diff --git a/oxAuth/oxAuthStatic/src/main/resources/META-INF/resources/stylesheet/site.css b/oxAuth/oxAuthStatic/src/main/resources/META-INF/resources/stylesheet/site.css
new file mode 100644
index 00000000..bd54d2d7
--- /dev/null
+++ b/oxAuth/oxAuthStatic/src/main/resources/META-INF/resources/stylesheet/site.css
@@ -0,0 +1,46 @@
+.alignCenter {
+    text-align: center;
+}
+
+.alignRight {
+	text-align: right;
+}
+
+.alignLeft {
+	text-align: left;
+}
+
+.alignTop {
+	vertical-align: top;
+}
+
+.alignMiddle {
+    vertical-align: middle;
+}
+
+.alignLeftTop {
+    text-align: left;
+    vertical-align: top;
+}
+
+.alignBottom {
+    vertical-align: bottom;
+}
+
+.alignRightTop {
+    vertical-align: top;
+    text-align: right;
+    float: right;
+}
+
+.bolded {
+  font-weight: bold;
+}
+
+.nowrap {
+  white-space: nowrap;
+}
+
+.width100 {
+	width: 100%;
+}
diff --git a/oxAuth/oxAuthStatic/src/main/resources/META-INF/resources/stylesheet/theme.css b/oxAuth/oxAuthStatic/src/main/resources/META-INF/resources/stylesheet/theme.css
new file mode 100644
index 00000000..54010f92
--- /dev/null
+++ b/oxAuth/oxAuthStatic/src/main/resources/META-INF/resources/stylesheet/theme.css
@@ -0,0 +1,841 @@
+html {
+    overflow-y: scroll;
+}
+
+body {
+    font-size: 12px;
+    margin: 0px;
+}
+
+a img {
+    border: none;
+}
+
+h1 {
+    font-size: 1.6em;
+    margin-top: 0;
+}
+
+input[type=submit], input[type=button] {
+    font-size: 11px;
+    margin: 5px 5px 5px 0;
+    cursor: pointer;
+}
+
+input[type=text], input[type=password], textarea {
+    font-size: 12px;
+    padding-left: 1px;
+}
+
+select {
+    font-size: 13px;
+}
+
+.tableControl, .actionButtons {
+    width: 100%;
+}
+
+.tableControl a {
+    padding-left: 10px;
+}
+
+.tableControl {
+    text-align: right;
+}
+
+.footer {
+    text-align: center;
+    font-size: 11px;
+    margin-bottom: 10px;
+}
+
+.rich-table {
+    width: 100%;
+}
+
+.body {
+    padding: 30px 30px 30px 30px;
+}
+
+.message {
+    padding: 5px;
+    list-style: none;
+    border: 0;
+    background: none;
+    padding: 0;
+    color: #000000;
+    margin: 5px 0 15px 0;
+    font-size: 12px;
+}
+
+.message li {
+    background: none no-repeat scroll left center transparent;
+    height: 24px;
+    padding-left: 32px;
+    padding-top: 10px;
+    background-position: 4px 4px;
+}
+
+.message li.infomsg {
+    background-image: url("../img/msginfo2.png");
+    background-color: #e4ffdc;
+}
+
+.message li.errormsg {
+    background-image: url("../img/msgerror2.png");
+    background-color: #ffdcdc;
+}
+
+.message li.warnmsg {
+    background-image: url("../img/msgwarn2.png");
+    background-color: #ffffdc;
+}
+
+.name {
+    /*vertical-align: top;*/
+    font-weight: bold;
+    /*min-width: 115px;*/
+    text-wrap: avoid;
+
+    /*float: left;
+    padding-top: 5px;
+    margin-top: 3px;
+    clear: left;*/
+}
+
+.nameText {
+    vertical-align: top;
+    font-weight: bold;
+    min-width: 115px;
+    float: left;
+    padding-top: 5px;
+    clear: left;
+}
+
+.striked {
+    text-decoration: line-through;
+}
+
+.value {
+
+}
+
+.hint {
+
+}
+
+.error {
+    float: left;
+    padding: 5px;
+}
+
+.errors {
+    color: #FF0000;
+    vertical-align: middle;
+}
+
+img.errors {
+    padding-right: 5px;
+}
+
+.errors input, .errors textarea, .errors select {
+    border: 1px solid red !important;
+}
+
+.required {
+    color: #FF0000;
+    padding-left: 2px;
+}
+
+.rich-stglpanel-body {
+    overflow: auto;
+}
+
+.noPadding {
+    padding: 0px;
+}
+
+/* the specificity here is necessary to override the defaults */
+/*
+.rich-panel .rich-panel-header,
+.rich-stglpanel .rich-stglpanel-header {
+	padding: 2px 3px;
+}*/
+
+.rich-panel input[type=submit], .rich-panel input[type=button],
+.rich-tabpanel input[type=submit], .rich-tabpanel input[type=button] {
+    margin-bottom: 0;
+}
+
+.tableControl input[type=submit], .tableControl input[type=button], .tableControl select {
+    margin: 5px 0 5px 5px;
+}
+
+/* I don't know why this is necessary, but the select is off by a pixel on the top and is padding too much on the left */
+.tableControl select {
+    margin-left: 2px;
+    position: relative;
+    top: 1px;
+}
+
+.actionButtons {
+    padding-left: 1px;
+}
+
+.actionButtons select {
+    margin: 5px 5px 5px 0;
+    vertical-align: bottom;
+}
+
+.rich-toolbar-item a {
+    text-decoration: none;
+}
+
+.rich-toolbar-item a:hover, .rich-ddmenu-label-select {
+    text-decoration: underline;
+}
+
+.rich-toolbar-item .rich-menu-item a:hover {
+    text-decoration: none;
+}
+
+.rich-datalist {
+    list-style: square;
+    margin: 6px 0 1px 0;
+    padding-left: 18px;
+}
+
+.rich-list-item {
+    padding-bottom: 4px;
+}
+
+div.info {
+    font-size: 1.2em;
+}
+
+ul.bullets {
+    list-style: square;
+}
+
+ul.bullets li {
+    padding-bottom: 2px;
+}
+
+td.action {
+    text-align: center;
+    width: 8em;
+    white-space: nowrap;
+}
+
+td.action a {
+    padding-left: 1px;
+    padding-right: 1px;
+}
+
+table.radio {
+    border: 0;
+}
+
+table.radio td {
+    padding: 0 2px;
+}
+
+table.radio input[type=radio] {
+    vertical-align: bottom;
+}
+
+/* -- SKINS.XCSS OVERRIDES -- */
+
+.body {
+    width: 960px;
+    margin: 0 auto;
+}
+
+#detectPokenButton {
+    position: relative;
+    bottom: 10px;
+    padding: 5px 10px !important;
+}
+
+.addPersona {
+    padding: 3px !important;
+    margin: 5px 0 !important;
+}
+
+.moveContact {
+    margin: 0px 0px 0 0 !important;
+    padding: 0px !important;
+    padding-right: 0px !important;
+    padding-left: 0px !important;
+    padding-bottom: 0px !important;
+    padding-top: 0px !important;
+}
+
+.addPersona,
+#detectPokenButton,
+#groupInventory .addGroup,
+#trustRelationships .addAttribute,
+#personInventory .addPerson,
+#attributeInventory .addAttribute, /*Attribute inventory page's Add attribute button.*/
+input[type="submit"],
+input[type="button"] {
+    margin: 5px 5px 0 0;
+    border: 1px solid #a5b6c7;
+    color: #3b3b3b !important;
+    background-color: #f1f1f6;
+    background-image: url("../img/buttons_bg.jpg");
+    background-repeat: repeat-x;
+    font-weight: normal;
+    font-size: 14px;
+    padding: 5px;
+    text-decoration: none;
+}
+
+input[type="button"],
+input[type="submit"] {
+    padding: 1px;
+}
+
+#groupInventory .value,
+#personInventory .value {
+    padding: 0;
+}
+
+#detectPokenButton:active {
+    bottom: 9px !important;
+}
+
+.addPersona:active,
+#groupInventory .addGroup:active,
+#trustRelationships .addAttribute:active,
+#personInventory .addPerson:active,
+#attributeInventory .addAttribute:active,
+input[type="button"]:active,
+input[type="submit"]:active {
+    position: relative;
+    top: 1px;
+}
+
+.rich-toolbar-item, .rich-toolbar {
+    background-color: green;
+    background-image: url("../img/menu_bg.png") !important;
+    height: 33px;
+}
+
+.dr-toolbar-int {
+    font-weight: normal;
+    font-size: 12px;
+    font-family: Verdana, Arial, sans-serif;
+}
+
+.rich-toolbar a:hover,
+.rich-toolbar a:active,
+.rich-toolbar a:focus {
+    color: white;
+}
+
+/* AUTHORIZE PAGE */
+#authorizeForm {
+    margin: 0 auto;
+    width: 400px;
+}
+
+/* LOG IN PAGE */
+
+#loginForm, #oneid_form {
+    margin: 0 auto;
+}
+
+#loginForm2 {
+    margin: 0 auto;
+    width: 500px;
+}
+
+#loginForm .dr-pnl {
+    background-color: transparent;
+    border: none;
+
+}
+
+#loginForm .dr-pnl-b {
+    background-image: url("../img/loginbox_bg.jpg") !important;
+    border: 1px solid #819ea0 !important;
+}
+
+#loginForm .dr-pnl-h {
+    background-color: transparent;
+    background-image: none;
+    border: none;
+    color: #3b3b3b;
+    font-size: 24px;
+    margin-bottom: 5px;
+}
+
+p.info {
+    font-style: italic;
+    color: #3b3b3b;
+}
+
+#loginForm p.info {
+    margin-bottom: 0;
+}
+
+#logo {
+    margin: 10px
+}
+
+/* FOOTER */
+
+.footer {
+    background-image: url("../img/footer_bg.jpg");
+    font-size: 11px;
+    margin: 0 auto 20px;
+    text-align: center;
+    width: 960px;
+    padding: 10px 0;
+    border-top: 1px solid #dbdbdb;
+}
+
+.footer p {
+    margin-top: 0 !important;
+}
+
+.footer a:link,
+.footer a:visited {
+    color: #275732;
+}
+
+/* HOMEPAGE */
+
+#home {
+    margin: 0 auto;
+    width: 960px;
+}
+
+#home .dr-pnl {
+    background-color: #F3F2F2;
+    background-image: url("../img/seam_bg.jpg");
+    border-color: #C0C0C0;
+}
+
+#home .dr-pnl-b {
+    padding: 0;
+}
+
+#home .left {
+    float: left;
+}
+
+#home .right {
+    float: right;
+    width: 300px;
+    text-align: center
+}
+
+#home .info {
+    height: 285px;
+    padding: 10px;
+}
+
+#home h1 {
+    color: #105259;
+    font-size: 24px;
+}
+
+#home .dr-pnl li {
+    font-style: italic;
+}
+
+/* ADD PERSON PAGE */
+
+#userProfile,
+#addPersonInventory {
+    background-color: #F3F2F2;
+    background-image: url("../img/seam_bg.jpg");
+    border: 1px solid #C0C0C0;
+    margin: 0 auto;
+    padding: 15px;
+    width: 265px;
+}
+
+#addPersonInventory input[type="submit"] {
+    margin: 0 auto;
+}
+
+#addPersonInventory table {
+    margin: 0 auto;
+}
+
+/* PERSONINVENTORY */
+
+#personInventory {
+    width: 960px;
+    margin: 0 auto;
+}
+
+#groupInventory .searchParameters,
+#personInventory .searchParameters {
+    padding: 3px;
+    margin-right: 10px;
+}
+
+#personInventory .dr-dscr-act,
+#personInventory .dr-dscr-inact {
+    border: none;
+}
+
+#personInventory .dr-dscr-inact {
+    color: gray;
+}
+
+#groupInventory .error,
+#personInventory .error {
+    padding: 8px 0 0 0;
+}
+
+/* ATTRIBUTE INVENTORY */
+
+#attributeInventory {
+    width: 960px;
+    margin: 0 auto;
+}
+
+#attributeInventory .rich-datalist {
+    list-style: none;
+    margin: 0 0 0 50px;
+    padding: 0;
+}
+
+#attributeInventory .rich-list-item {
+    display: inline;
+    margin-right: 10px;
+    padding: 5px;
+    background-color: #e9e9f3;
+}
+
+#attributeInventory .rich-list-item a:link,
+#attributeInventory .rich-list-item a:visited {
+    color: #3b3b3b;
+    text-decoration: none;
+    font-style: italic;
+}
+
+#attributeInventory .rich-list-item a:hover,
+#attributeInventory .rich-list-item a:focus {
+    text-decoration: underline;
+}
+
+#ContactsFormId,
+#groupInventory #groupsFormId,
+#personInventory #personsFormId,
+#trustRelationships #trustRelationsshipList,
+#attributeInventory #attributesFormId {
+    background-color: #FFFFFF;
+    border-collapse: collapse;
+    empty-cells: show;
+}
+
+#PersonaList thead,
+#ContactsFormId thead,
+#groupInventory #groupsFormId thead,
+#personInventory #personsFormId thead,
+#trustRelationships #trustRelationsshipList thead,
+#attributeInventory #attributesFormId thead {
+    border-bottom: 1px solid #C0C0C0;
+}
+
+#PersonaList thead th,
+#ContactsFormId thead th,
+#groupInventory #groupsFormId thead th,
+#personInventory #personsFormId thead th,
+#trustRelationships #trustRelationsshipList thead th,
+#attributeInventory #attributesFormId thead th {
+    color: white;
+    font-size: 12px;
+    background-image: url("../img/personinventorytable_bg.jpg");
+    background-repeat: repeat-x;
+    border-right: 1px solid #C0C0C0;
+    height: 23px;
+}
+
+#PersonaList tbody td,
+#ContactsFormId tbody td,
+#groupInventory #groupsFormId tbody td,
+#personInventory #personsFormId tbody td,
+#trustRelationships #trustRelationsshipList tbody td,
+#attributeInventory #attributesFormId tbody td {
+    border-bottom: 1px solid #C0C0C0;
+    border-right: 1px solid #C0C0C0;
+    color: #000000;
+    font-family: Arial, Verdana, sans-serif;
+    font-size: 11px;
+    padding: 4px;
+}
+
+#PersonaList tbody td {
+    border-left: 1px solid #C0C0C0;
+}
+
+#attributeForm {
+    margin: 0 auto;
+    width: 325px;
+    background-image: url("../img/seam2_bg.jpg");
+    padding: 10px;
+    border: 1px solid #C0C0C0;
+}
+
+#userProfile {
+    width: 265px;
+}
+
+#trustRelationshipForm .name,
+#attributeForm .name {
+    color: #3b3b3b;
+}
+
+/* ERROR PAGE */
+
+#errorPage ul {
+    background-color: #FDEDED;
+    border: 1px solid #DBDBDB;
+}
+
+#errorPage h1 {
+    color: #670000;
+}
+
+#errorPage p {
+    font-style: italic;
+}
+
+/* MY PROFILE PAGE */
+
+.authReqs {
+    background-color: #FFF8DC;
+    border: 1px dashed #D3D3D3;
+    padding: 10px;
+}
+
+#Personas {
+
+}
+
+#Personas thead {
+}
+
+#viewProfile .personalist {
+    width: 315px;
+}
+
+#viewProfile .headertext {
+    color: #105259;
+    font-size: 24px;
+}
+
+#viewProfile .personaColumn .addPersona {
+    margin-left: 3px;
+}
+
+#PersonaList {
+    padding: 5px 0;
+    margin-bottom: 5px;
+}
+
+#viewProfile {
+    margin: 0 auto;
+    width: 770px;
+}
+
+#viewProfile .attributeProfileColumn {
+    width: 200px;
+    position: absolute;
+}
+
+.alignTop {
+    vertical-align: top;
+    width: *;
+}
+
+.alignLeft {
+    width: *;
+}
+
+.personasList {
+    width: 150px;
+}
+
+.alignRight {
+    width: 1px;
+}
+
+.wrapperTable thead th {
+    border-bottom: 1px solid gray;
+    text-align: left;
+}
+
+#PersonaList thead th {
+    border: none;
+    padding: 5px;
+}
+
+#updateButtons {
+    text-align: right;
+    margin-top: 10px;
+}
+
+/* DEFAULT SKIN OVERRIDES */
+
+.dr-tbpnl-tb-inact {
+    background-color: transparent !important;
+    background-image: none;
+}
+
+.dr-tbpnl-tb-sel {
+    border-color: white !important;
+}
+
+.dr-tbpnl-tbtopbrdr,
+.dr-tbpnl-tbbrdr {
+    padding: 0 !important;
+}
+
+.rich-inplace-view {
+    background-color: transparent !important;
+    border-bottom: 1px dotted !important;
+    font-style: italic !important;
+}
+
+.rich-inplace-edit,
+.rich-inplace-view {
+    cursor: pointer !important;
+    padding: 2px;
+}
+
+.rich-inplace-field {
+    width: 100% !important;
+}
+
+.rich-inplace-changed {
+    cursor: pointer !important;
+    border: none !important;
+    padding: 2px;
+}
+
+.rich-inplace-input-changed-hover {
+    color: green !important;
+}
+
+.dr-tbpnl-tb-act {
+    background-image: url("../img/tab_bg.jpg") !important;
+}
+
+.dr-tbpnl-cntnt {
+    background-color: white !important;
+}
+
+.formColumn {
+    -moz-border-radius: 5px 5px 5px 5px;
+    -moz-box-shadow: 1px 2px 4px rgba(0, 0, 0, 0.3);
+    -webkit-border-radius: 5px 5px 5px 5px;
+    -webkit-box-shadow: 1px 2px 4px rgba(0, 0, 0, 0.3);
+    border-radius: 5px 5px 5px 5px;
+    box-shadow: 1px 2px 4px rgba(0, 0, 0, 0.3);
+    background-color: threedface;
+    border: 1px solid #C0C0C0;
+    padding: 15px;
+}
+
+.formColumn div.prop .value {
+    margin-top: 3px;
+}
+
+#updateButtons input[type="submit"],
+#updateButtons input[type="button"] {
+    padding: 5px 10px;
+}
+
+#trustRelationshipForm,
+#personForm {
+    width: 770px !important;
+    margin: 0 auto;
+}
+
+#personForm {
+    margin-top: 15px;
+}
+
+#trustRelationshipForm .attributeColumn,
+#personForm .attributeColumn {
+    width: 300px !important;
+}
+
+#updateOrganization {
+    background-image: url("../img/seam2_bg.jpg");
+    border: 1px solid #C0C0C0;
+    margin: 0 auto;
+    padding: 15px;
+    width: 450px;
+}
+
+#updateCacheRefresh {
+    background-image: url("/gluu/img/seam2_bg.jpg");
+    border: 1px solid #C0C0C0;
+    margin: 0 auto;
+    padding: 15px;
+    width: 430px;
+}
+
+#personImport {
+    background-image: url("../img/seam2_bg.jpg");
+    border: 1px solid #C0C0C0;
+    margin: 0 auto;
+    padding: 15px;
+    width: 430px;
+}
+
+#addGroup {
+    background-image: url("../img/seam2_bg.jpg");
+    border: 1px solid #C0C0C0;
+    margin: 0 auto;
+    padding: 15px;
+    width: 315px;
+}
+
+/* Add Group Panel Styling */
+
+#passwordPanelHeader,
+#selectMemberModelPanelHeader {
+    background-image: url("../img/personinventorytable_bg.jpg");
+    height: 20px;
+    padding: 5px 0 0 10px;
+    border: 0;
+}
+
+#selectMemberModelPanelContainer #memberFormId input[type="text"] {
+    margin-right: 5px;
+    padding: 3px;
+}
+
+.rich-mpnl-controls {
+    right: 7px !important;
+    top: 7px !important;
+}
+
+#detectPoken {
+    float: left;
+    margin: 5px 5px 0 0;
+}
+
+#ContactsFormId {
+    text-align: right;
+    margin: 15px 0 0 0;
+}
+
+#ContactsFormId input {
+    margin-right: 0 !important;
+    padding: 3px !important;
+}
+
+#ContactsFormId table {
+    text-align: left;
+}
diff --git a/oxAuth/oxAuthStatic/src/main/resources/META-INF/resources/stylesheet/theme.xcss b/oxAuth/oxAuthStatic/src/main/resources/META-INF/resources/stylesheet/theme.xcss
new file mode 100644
index 00000000..9579e1c7
--- /dev/null
+++ b/oxAuth/oxAuthStatic/src/main/resources/META-INF/resources/stylesheet/theme.xcss
@@ -0,0 +1,83 @@
+<?xml version="1.0" encoding="UTF-8"?>
+<f:template xmlns="http://www.w3.org/1999/xhtml"
+	xmlns:f="http:/jsf.exadel.com/template"
+	xmlns:u="http:/jsf.exadel.com/template/util">
+	<u:selector name="body">
+		<u:style name="font-family" skin="generalFamilyFont"/>
+		<u:style name="color" skin="generalTextColor"/>
+	</u:selector>
+	<u:selector name="h1">
+		<u:style name="font-family" skin="generalFamilyFont"/>
+		<u:style name="color" skin="tabDisabledTextColor"/>
+	</u:selector>
+	<u:selector name="a:active, a:link, a:visited">
+		<u:style name="color" skin="generalLinkColor"/>
+	</u:selector>
+	<u:selector name="a:hover">
+		<u:style name="color" skin="hoverLinkColor"/>
+	</u:selector>
+	<u:selector name="input[type=text], input[type=password], textarea, select">
+		<u:style name="background-color" skin="controlBackgroundColor"/>
+		<u:style name="color" skin="controlTextColor"/>
+		<u:style name="background-position" value="left top"/>
+		<u:style name="background-repeat" value="repeat-x"/>
+		<u:style name="background-image">
+			<f:resource f:key="org.richfaces.renderkit.html.images.SliderFieldGradient"/>
+		</u:style>
+		<u:style name="border" value="1px solid"/>
+		<u:style name="border-color" skin="tableBorderColor" />
+	</u:selector>
+	<u:selector name="select">
+		<u:style name="background-color" value="transparent"/>
+		<u:style name="background-image">
+			<f:resource f:key="org.richfaces.renderkit.html.images.SliderFieldGradient"/>
+		</u:style>
+	</u:selector>
+	<u:selector name="option">
+		<u:style name="background-color" skin="generalBackgroundColor"/>
+	</u:selector>
+	<u:selector name="select[multiple]">
+		<u:style name="background-color" skin="controlBackgroundColor"/>
+	</u:selector>
+	<u:selector name="select[multiple] option">
+		<u:style name="background-color" value="transparent"/>
+	</u:selector>
+	<u:selector name="input[type=submit], input[type=button]">
+		<u:style name="padding" value="1px 4px"/>
+		<u:style name="background-image">
+			<f:resource f:key="org.richfaces.renderkit.html.GradientA"/>
+		</u:style>
+		<u:style name="border" value="1px solid"/>
+		<u:style name="border-color" skin="headerBackgroundColor"/>
+		<u:style name="color" skin="headerTextColor"/>
+		<u:style name="font-weight" value="bold"/>
+	</u:selector>
+	<u:selector name="input[type=submit][disabled], input[type=button][disabled]">
+		<u:style name="opacity" value="0.33"/>
+	</u:selector>
+	<!-- hack for IE to just get rid of border since it doubles the border if you use one -->
+	<u:selector name="* html input[type=submit], * html input[type=button], *+html input[type=submit], *+html input[type=button]">
+		<u:style name="border" value="0"/>
+		<u:style name="font-size" value="11px"/>
+	</u:selector>
+	<u:selector name=".rich-table-subheadercell">
+		<u:style name="background-image">
+			<f:resource f:key="org.richfaces.renderkit.images.TabGradientB"/>
+		</u:style>
+	</u:selector>
+	<u:selector name=".rich-toolbar a:link, .rich-toolbar a:visited, .rich-toolbar a:active, .rich-toolbar a:hover">
+		<u:style name="color" skin="headerTextColor"/>
+	</u:selector>
+	<u:selector name=".rich-toolbar a:hover">
+		<u:style name="color" skin="generalTextColor"/>
+	</u:selector>
+	<u:selector name=".rich-toolbar .rich-menu-item, .rich-toolbar .rich-menu-item a, .rich-toolbar .rich-menu-item a:hover, .rich-toolbar .rich-menu-item a:visited">
+		<u:style name="color" skin="generalTextColor" />
+	</u:selector>
+	<u:selector name=".rich-table-subheadercell a:hover">
+		<u:style name="color" skin="calendarHolidaysTextColor"/>
+	</u:selector>
+	<!-- Define static styles in the CDATA block below (you can also move this block to the top) -->
+	<f:verbatim><![CDATA[
+]]></f:verbatim>
+</f:template>
diff --git a/oxAuth/persistence-model/pom.xml b/oxAuth/persistence-model/pom.xml
new file mode 100644
index 00000000..b7b60d00
--- /dev/null
+++ b/oxAuth/persistence-model/pom.xml
@@ -0,0 +1,85 @@
+<?xml version="1.0"?>
+<project
+	xsi:schemaLocation="http://maven.apache.org/POM/4.0.0 http://maven.apache.org/xsd/maven-4.0.0.xsd"
+	xmlns="http://maven.apache.org/POM/4.0.0"
+	xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance">
+	<modelVersion>4.0.0</modelVersion>
+	<parent>
+		<groupId>org.gluu</groupId>
+		<artifactId>oxauth</artifactId>
+		<version>4.5.6-SNAPSHOT</version>
+	</parent>
+	<artifactId>oxauth-persistence-model</artifactId>
+	<name>Persistence model</name>
+	<url>https://maven.apache.org</url>
+	<properties>
+		<project.build.sourceEncoding>UTF-8</project.build.sourceEncoding>
+	</properties>
+
+	<build>
+		<finalName>oxauth-persistence-model</finalName>
+
+		<resources>
+			<resource>
+				<directory>src/main/resources</directory>
+				<includes>
+					<include>**/*.xml</include>
+					<include>**/*.properties</include>
+					<include>**/*.js</include>
+				</includes>
+			</resource>
+		</resources>
+
+		<testResources>
+			<testResource>
+				<directory>src/test/resources</directory>
+				<includes>
+					<include>**/*.json</include>
+					<include>**/*.xml</include>
+				</includes>
+			</testResource>
+		</testResources>
+
+		<plugins>
+			<plugin>
+				<groupId>org.apache.maven.plugins</groupId>
+				<artifactId>maven-surefire-plugin</artifactId>
+				<configuration>
+					<skipTests>true</skipTests>  <!-- set it to false when test sources appear -->
+				</configuration>
+			</plugin>
+			<plugin>
+				<groupId>org.apache.maven.plugins</groupId>
+				<artifactId>maven-compiler-plugin</artifactId>
+				<version>2.3.2</version>
+				<configuration>
+					<source>1.8</source>
+					<target>1.8</target>
+					<encoding>UTF-8</encoding>
+				</configuration>
+			</plugin>
+		</plugins>
+	</build>
+
+	<dependencies>
+        <dependency>
+            <groupId>org.testng</groupId>
+            <artifactId>testng</artifactId>
+            <scope>test</scope>
+        </dependency>
+
+		<dependency>
+			<groupId>org.gluu</groupId>
+			<artifactId>oxcore-service</artifactId>
+		</dependency>
+		<dependency>
+			<groupId>org.gluu</groupId>
+			<artifactId>oxauth-model</artifactId>
+		</dependency>
+		<dependency>
+			<groupId>org.gluu</groupId>
+			<artifactId>oxcore-document-store</artifactId>
+		</dependency>
+
+	</dependencies>
+</project>
diff --git a/oxAuth/persistence-model/src/main/java/org/oxauth/persistence/model/ClientAttributes.java b/oxAuth/persistence-model/src/main/java/org/oxauth/persistence/model/ClientAttributes.java
new file mode 100644
index 00000000..816165d6
--- /dev/null
+++ b/oxAuth/persistence-model/src/main/java/org/oxauth/persistence/model/ClientAttributes.java
@@ -0,0 +1,209 @@
+package org.oxauth.persistence.model;
+
+import com.fasterxml.jackson.annotation.JsonIgnoreProperties;
+import com.fasterxml.jackson.annotation.JsonProperty;
+import com.google.common.collect.Lists;
+
+import java.io.Serializable;
+import java.util.List;
+
+/**
+ * @author Yuriy Zabrovarnyy
+ */
+@JsonIgnoreProperties(ignoreUnknown = true)
+public class ClientAttributes implements Serializable {
+
+    /**
+     *
+     */
+    private static final long serialVersionUID = 213428216912083393L;
+
+    @JsonProperty("tlsClientAuthSubjectDn")
+    private String tlsClientAuthSubjectDn;
+
+    @JsonProperty("runIntrospectionScriptBeforeAccessTokenAsJwtCreationAndIncludeClaims")
+    private Boolean runIntrospectionScriptBeforeAccessTokenAsJwtCreationAndIncludeClaims = false;
+
+    @JsonProperty("keepClientAuthorizationAfterExpiration")
+    private Boolean keepClientAuthorizationAfterExpiration = false;
+
+    @JsonProperty("allowSpontaneousScopes")
+    private Boolean allowSpontaneousScopes = false;
+
+    @JsonProperty("spontaneousScopes")
+    private List<String> spontaneousScopes = Lists.newArrayList();
+
+    @JsonProperty("spontaneousScopeScriptDns")
+    private List<String> spontaneousScopeScriptDns = Lists.newArrayList();
+
+    @JsonProperty("backchannelLogoutUri")
+    private List<String> backchannelLogoutUri;
+
+    @JsonProperty("backchannelLogoutSessionRequired")
+    private Boolean backchannelLogoutSessionRequired;
+
+    @JsonProperty("additionalAudience")
+    private List<String> additionalAudience;
+
+    @JsonProperty("postAuthnScripts")
+    private List<String> postAuthnScripts;
+
+    @JsonProperty("consentGatheringScripts")
+    private List<String> consentGatheringScripts;
+
+    @JsonProperty("introspectionScripts")
+    private List<String> introspectionScripts;
+
+    @JsonProperty("rptClaimsScripts")
+    private List<String> rptClaimsScripts;
+
+    @JsonProperty("idTokenLifetime")
+    private Integer idTokenLifetime;
+
+    public Integer getIdTokenLifetime() {
+        return idTokenLifetime;
+    }
+
+    public void setIdTokenLifetime(Integer idTokenLifetime) {
+        this.idTokenLifetime = idTokenLifetime;
+    }
+
+    public List<String> getRptClaimsScripts() {
+        if (rptClaimsScripts == null) rptClaimsScripts = Lists.newArrayList();
+        return rptClaimsScripts;
+    }
+
+    public void setRptClaimsScripts(List<String> rptClaimsScripts) {
+        this.rptClaimsScripts = rptClaimsScripts;
+    }
+
+    public List<String> getIntrospectionScripts() {
+        if (introspectionScripts == null) introspectionScripts = Lists.newArrayList();
+        return introspectionScripts;
+    }
+
+    public void setIntrospectionScripts(List<String> introspectionScripts) {
+        this.introspectionScripts = introspectionScripts;
+    }
+
+    public List<String> getPostAuthnScripts() {
+        if (postAuthnScripts == null) postAuthnScripts = Lists.newArrayList();
+        return postAuthnScripts;
+    }
+
+    public void setPostAuthnScripts(List<String> postAuthnScripts) {
+        this.postAuthnScripts = postAuthnScripts;
+    }
+
+    public List<String> getConsentGatheringScripts() {
+        if (consentGatheringScripts == null) consentGatheringScripts = Lists.newArrayList();
+        return consentGatheringScripts;
+    }
+
+    public void setConsentGatheringScripts(List<String> consentGatheringScripts) {
+        this.consentGatheringScripts = consentGatheringScripts;
+    }
+
+    public List<String> getAdditionalAudience() {
+        if (additionalAudience == null) additionalAudience = Lists.newArrayList();
+        return additionalAudience;
+    }
+
+    public void setAdditionalAudience(List<String> additionalAudience) {
+        this.additionalAudience = additionalAudience;
+    }
+
+    public String getTlsClientAuthSubjectDn() {
+        return tlsClientAuthSubjectDn;
+    }
+
+    public void setTlsClientAuthSubjectDn(String tlsClientAuthSubjectDn) {
+        this.tlsClientAuthSubjectDn = tlsClientAuthSubjectDn;
+    }
+
+    public Boolean getAllowSpontaneousScopes() {
+        if (allowSpontaneousScopes == null) allowSpontaneousScopes = false;
+        return allowSpontaneousScopes;
+    }
+
+    public void setAllowSpontaneousScopes(Boolean allowSpontaneousScopes) {
+        this.allowSpontaneousScopes = allowSpontaneousScopes;
+    }
+
+    public List<String> getSpontaneousScopes() {
+        if (spontaneousScopes == null) spontaneousScopes = Lists.newArrayList();
+        return spontaneousScopes;
+    }
+
+    public void setSpontaneousScopes(List<String> spontaneousScopes) {
+        this.spontaneousScopes = spontaneousScopes;
+    }
+
+    public List<String> getSpontaneousScopeScriptDns() {
+        if (spontaneousScopeScriptDns == null) spontaneousScopeScriptDns = Lists.newArrayList();
+        return spontaneousScopeScriptDns;
+    }
+
+    public void setSpontaneousScopeScriptDns(List<String> spontaneousScopeScriptDns) {
+        this.spontaneousScopeScriptDns = spontaneousScopeScriptDns;
+    }
+
+    public Boolean getRunIntrospectionScriptBeforeAccessTokenAsJwtCreationAndIncludeClaims() {
+        if (runIntrospectionScriptBeforeAccessTokenAsJwtCreationAndIncludeClaims == null) {
+            runIntrospectionScriptBeforeAccessTokenAsJwtCreationAndIncludeClaims = false;
+        }
+        return runIntrospectionScriptBeforeAccessTokenAsJwtCreationAndIncludeClaims;
+    }
+
+    public void setRunIntrospectionScriptBeforeAccessTokenAsJwtCreationAndIncludeClaims(Boolean runIntrospectionScriptBeforeAccessTokenAsJwtCreationAndIncludeClaims) {
+        this.runIntrospectionScriptBeforeAccessTokenAsJwtCreationAndIncludeClaims = runIntrospectionScriptBeforeAccessTokenAsJwtCreationAndIncludeClaims;
+    }
+
+    public Boolean getKeepClientAuthorizationAfterExpiration() {
+        if (keepClientAuthorizationAfterExpiration == null) {
+            keepClientAuthorizationAfterExpiration = false;
+        }
+        return keepClientAuthorizationAfterExpiration;
+    }
+
+    public void setKeepClientAuthorizationAfterExpiration(Boolean keepClientAuthorizationAfterExpiration) {
+        this.keepClientAuthorizationAfterExpiration = keepClientAuthorizationAfterExpiration;
+    }
+
+    public List<String> getBackchannelLogoutUri() {
+        if (backchannelLogoutUri == null) backchannelLogoutUri = Lists.newArrayList();
+        return backchannelLogoutUri;
+    }
+
+    public void setBackchannelLogoutUri(List<String> backchannelLogoutUri) {
+        this.backchannelLogoutUri = backchannelLogoutUri;
+    }
+
+    public Boolean getBackchannelLogoutSessionRequired() {
+        if (backchannelLogoutSessionRequired == null) backchannelLogoutSessionRequired = false;
+        return backchannelLogoutSessionRequired;
+    }
+
+    public void setBackchannelLogoutSessionRequired(Boolean backchannelLogoutSessionRequired) {
+        this.backchannelLogoutSessionRequired = backchannelLogoutSessionRequired;
+    }
+
+    @Override
+    public String toString() {
+        return "ClientAttributes{" +
+                "tlsClientAuthSubjectDn='" + tlsClientAuthSubjectDn + '\'' +
+                ", runIntrospectionScriptBeforeAccessTokenAsJwtCreationAndIncludeClaims=" + runIntrospectionScriptBeforeAccessTokenAsJwtCreationAndIncludeClaims +
+                ", keepClientAuthorizationAfterExpiration=" + keepClientAuthorizationAfterExpiration +
+                ", allowSpontaneousScopes=" + allowSpontaneousScopes +
+                ", spontaneousScopes=" + spontaneousScopes +
+                ", spontaneousScopeScriptDns=" + spontaneousScopeScriptDns +
+                ", backchannelLogoutUri=" + backchannelLogoutUri +
+                ", backchannelLogoutSessionRequired=" + backchannelLogoutSessionRequired +
+                ", additionalAudience=" + additionalAudience +
+                ", postAuthnScripts=" + postAuthnScripts +
+                ", consentGatheringScripts=" + consentGatheringScripts +
+                ", introspectionScripts=" + introspectionScripts +
+                ", rptClaimsScripts=" + rptClaimsScripts +
+                '}';
+    }
+}
diff --git a/oxAuth/persistence-model/src/main/java/org/oxauth/persistence/model/PairwiseIdentifier.java b/oxAuth/persistence-model/src/main/java/org/oxauth/persistence/model/PairwiseIdentifier.java
new file mode 100644
index 00000000..788df9a0
--- /dev/null
+++ b/oxAuth/persistence-model/src/main/java/org/oxauth/persistence/model/PairwiseIdentifier.java
@@ -0,0 +1,78 @@
+package org.oxauth.persistence.model;
+
+import org.gluu.persist.annotation.AttributeName;
+import org.gluu.persist.annotation.DataEntry;
+import org.gluu.persist.annotation.ObjectClass;
+import org.gluu.persist.model.base.BaseEntry;
+
+/**
+ * @author Javier Rojas Blum
+ * @version June 30, 2018
+ */
+@DataEntry
+@ObjectClass(value = "pairwiseIdentifier")
+public class PairwiseIdentifier extends BaseEntry {
+
+    @AttributeName(ignoreDuringUpdate = true, name = "oxId")
+    private String id;
+
+    @AttributeName(name = "oxSectorIdentifier")
+    private String sectorIdentifier;
+
+    @AttributeName(name = "oxAuthClientId")
+    private String clientId;
+
+    @AttributeName(name = "oxAuthUserId")
+    private String userInum;
+
+    public PairwiseIdentifier() {
+    }
+
+    public PairwiseIdentifier(String sectorIdentifier, String clientId, String userInum) {
+        this.sectorIdentifier = sectorIdentifier;
+        this.clientId = clientId;
+        this.userInum = userInum;
+    }
+
+    public String getId() {
+        return id;
+    }
+
+    public void setId(String id) {
+        this.id = id;
+    }
+
+    public String getSectorIdentifier() {
+        return sectorIdentifier;
+    }
+
+    public void setSectorIdentifier(String sectorIdentifierUri) {
+        this.sectorIdentifier = sectorIdentifierUri;
+    }
+
+    public String getClientId() {
+        return clientId;
+    }
+
+    public void setClientId(String clientId) {
+        this.clientId = clientId;
+    }
+
+    public String getUserInum() {
+        return userInum;
+    }
+
+    public void setUserInum(String userInum) {
+        this.userInum = userInum;
+    }
+
+    @Override
+    public String toString() {
+        return "PairwiseIdentifier{" +
+                "id='" + id + '\'' +
+                ", sectorIdentifier='" + sectorIdentifier + '\'' +
+                ", clientId='" + clientId + '\'' +
+                ", userInum='" + userInum + '\'' +
+                "} " + super.toString();
+    }
+}
diff --git a/oxAuth/persistence-model/src/main/java/org/oxauth/persistence/model/Scope.java b/oxAuth/persistence-model/src/main/java/org/oxauth/persistence/model/Scope.java
new file mode 100644
index 00000000..f8100fd1
--- /dev/null
+++ b/oxAuth/persistence-model/src/main/java/org/oxauth/persistence/model/Scope.java
@@ -0,0 +1,194 @@
+/*
+ * oxAuth is available under the MIT License (2008). See http://opensource.org/licenses/MIT for full text.
+ *
+ * Copyright (c) 2014, Gluu
+ */
+
+package org.oxauth.persistence.model;
+
+import org.gluu.oxauth.model.common.ScopeType;
+import org.gluu.persist.annotation.*;
+import org.gluu.persist.model.base.DeletableEntity;
+
+import java.io.Serializable;
+import java.util.List;
+
+/**
+ * @author Javier Rojas Blum Date: 07.05.2012
+ * @author Yuriy Movchan Date: 06/30/2015
+ */
+@DataEntry
+@ObjectClass(value = "oxAuthCustomScope")
+public class Scope extends DeletableEntity implements Serializable {
+
+    private static final long serialVersionUID = 4308826784917052508L;
+
+    @AttributeName(ignoreDuringUpdate = true)
+    private String inum;
+
+    @AttributeName
+    private String displayName;
+
+    @AttributeName(name = "oxId", consistency = true)
+    private String id;
+
+    @AttributeName(name = "oxIconUrl")
+    private String iconUrl;
+
+    @AttributeName
+    private String description;
+
+    @AttributeName(name = "oxScopeType")
+    private ScopeType scopeType;
+
+    @AttributeName(name = "oxAuthClaim")
+    private List<String> oxAuthClaims;
+
+    @AttributeName(name = "defaultScope")
+    private Boolean defaultScope;
+
+    @AttributeName(name = "oxAuthGroupClaims")
+    private Boolean oxAuthGroupClaims;
+
+    @AttributeName(name = "oxScriptDn")
+    private List<String> dynamicScopeScripts;
+
+    @AttributeName(name = "oxUmaPolicyScriptDn")
+    private List<String> umaAuthorizationPolicies;
+
+    @AttributeName(name = "oxAttributes")
+    @JsonObject
+    private ScopeAttributes attributes;
+
+    public ScopeAttributes getAttributes() {
+        if (attributes == null) {
+            attributes = new ScopeAttributes();
+        }
+        return attributes;
+    }
+
+    public void setAttributes(ScopeAttributes attributes) {
+        this.attributes = attributes;
+    }
+
+    public String getInum() {
+        return this.inum;
+    }
+
+    public void setInum(String inum) {
+        this.inum = inum;
+    }
+
+    public String getDisplayName() {
+        return this.displayName;
+    }
+
+    public void setDisplayName(String displayName) {
+        this.displayName = displayName;
+    }
+
+    public String getDescription() {
+        return this.description;
+    }
+
+    public void setDescription(String description) {
+        this.description = description;
+    }
+
+    public ScopeType getScopeType() {
+        return scopeType;
+    }
+
+    public void setScopeType(ScopeType scopeType) {
+        this.scopeType = scopeType;
+    }
+
+    public List<String> getOxAuthClaims() {
+        return this.oxAuthClaims;
+    }
+
+    public void setOxAuthClaims(List<String> oxAuthClaims) {
+        this.oxAuthClaims = oxAuthClaims;
+    }
+
+    public Boolean isDefaultScope() {
+        return this.defaultScope;
+    }
+
+    public void setDefaultScope(Boolean defaultScope) {
+        this.defaultScope = defaultScope;
+    }
+
+    public Boolean isOxAuthGroupClaims() {
+        return oxAuthGroupClaims;
+    }
+
+    public void setOxAuthGroupClaims(boolean oxAuthGroupClaims) {
+        this.oxAuthGroupClaims = oxAuthGroupClaims;
+    }
+
+    public List<String> getDynamicScopeScripts() {
+        return dynamicScopeScripts;
+    }
+
+    public void setDynamicScopeScripts(List<String> dynamicScopeScripts) {
+        this.dynamicScopeScripts = dynamicScopeScripts;
+    }
+
+    public String getId() {
+        return id;
+    }
+
+    public void setId(String id) {
+        this.id = id;
+    }
+
+    public String getIconUrl() {
+        return iconUrl;
+    }
+
+    public void setIconUrl(String iconUrl) {
+        this.iconUrl = iconUrl;
+    }
+
+    public List<String> getUmaAuthorizationPolicies() {
+        return umaAuthorizationPolicies;
+    }
+
+    public void setUmaAuthorizationPolicies(List<String> umaAuthorizationPolicies) {
+        this.umaAuthorizationPolicies = umaAuthorizationPolicies;
+    }
+
+    public Boolean getOxAuthGroupClaims() {
+        return oxAuthGroupClaims;
+    }
+
+    public Boolean getDefaultScope() {
+        return defaultScope;
+    }
+
+    public boolean isUmaType() {
+        return scopeType != null && ScopeType.UMA.getValue().equalsIgnoreCase(scopeType.getValue());
+    }
+
+    @Override
+    public String toString() {
+        return "Scope{" +
+                "dn='" + getDn() + '\'' +
+                ", inum='" + inum + '\'' +
+                ", displayName='" + displayName + '\'' +
+                ", id='" + id + '\'' +
+                ", iconUrl='" + iconUrl + '\'' +
+                ", description='" + description + '\'' +
+                ", scopeType=" + scopeType +
+                ", oxAuthClaims=" + oxAuthClaims +
+                ", defaultScope=" + defaultScope +
+                ", oxAuthGroupClaims=" + oxAuthGroupClaims +
+                ", dynamicScopeScripts=" + dynamicScopeScripts +
+                ", umaAuthorizationPolicies=" + umaAuthorizationPolicies +
+                ", deletable=" + isDeletable() +
+                ", expirationDate=" + getExpirationDate() +
+                ", attributes=" + attributes +
+                '}';
+    }
+}
\ No newline at end of file
diff --git a/oxAuth/persistence-model/src/main/java/org/oxauth/persistence/model/ScopeAttributes.java b/oxAuth/persistence-model/src/main/java/org/oxauth/persistence/model/ScopeAttributes.java
new file mode 100644
index 00000000..1fc96292
--- /dev/null
+++ b/oxAuth/persistence-model/src/main/java/org/oxauth/persistence/model/ScopeAttributes.java
@@ -0,0 +1,56 @@
+package org.oxauth.persistence.model;
+
+import com.fasterxml.jackson.annotation.JsonIgnoreProperties;
+import com.fasterxml.jackson.annotation.JsonProperty;
+
+import java.io.Serializable;
+import java.util.List;
+
+/**
+ * @author Yuriy Zabrovarnyy
+ */
+@JsonIgnoreProperties(ignoreUnknown = true)
+public class ScopeAttributes implements Serializable {
+
+	private static final long serialVersionUID = 213428216911083393L;
+
+	@JsonProperty("spontaneousClientId")
+	private String spontaneousClientId;
+
+	@JsonProperty("spontaneousClientScopes")
+	private List<String> spontaneousClientScopes;
+
+	@JsonProperty("showInConfigurationEndpoint")
+	private boolean showInConfigurationEndpoint = true;
+
+	public String getSpontaneousClientId() {
+		return spontaneousClientId;
+	}
+
+	public void setSpontaneousClientId(String spontaneousClientId) {
+		this.spontaneousClientId = spontaneousClientId;
+	}
+
+	public List<String> getSpontaneousClientScopes() {
+		return spontaneousClientScopes;
+	}
+
+	public void setSpontaneousClientScopes(List<String> spontaneousClientScopes) {
+		this.spontaneousClientScopes = spontaneousClientScopes;
+	}
+
+	public boolean isShowInConfigurationEndpoint() {
+		return showInConfigurationEndpoint;
+	}
+
+	public void setShowInConfigurationEndpoint(boolean showInConfigurationEndpoint) {
+		this.showInConfigurationEndpoint = showInConfigurationEndpoint;
+	}
+
+	@Override
+	public String toString() {
+		return "ScopeAttributes{" + "spontaneousClientId='" + spontaneousClientId + '\'' + "spontaneousClientScopes='"
+				+ spontaneousClientScopes + '\'' + "showInConfigurationEndpoint='" + showInConfigurationEndpoint + '\''
+				+ '}';
+	}
+}
diff --git a/oxAuth/persistence-model/src/main/java/org/oxauth/persistence/model/SectorIdentifier.java b/oxAuth/persistence-model/src/main/java/org/oxauth/persistence/model/SectorIdentifier.java
new file mode 100644
index 00000000..6caa25aa
--- /dev/null
+++ b/oxAuth/persistence-model/src/main/java/org/oxauth/persistence/model/SectorIdentifier.java
@@ -0,0 +1,60 @@
+package org.oxauth.persistence.model;
+
+import java.io.Serializable;
+import java.util.List;
+
+import org.gluu.persist.model.base.BaseEntry;
+import org.gluu.persist.annotation.AttributeName;
+import org.gluu.persist.annotation.DataEntry;
+import org.gluu.persist.annotation.ObjectClass;
+
+/**
+ * @author Javier Rojas Blum
+ * @version March 20, 2018
+ */
+@DataEntry(sortBy = {"id", "description"}, sortByName = {"oxId", "description"})
+@ObjectClass(value = "oxSectorIdentifier")
+public class SectorIdentifier extends BaseEntry implements Serializable {
+
+    private static final long serialVersionUID = -2812480357430436514L;
+
+    @AttributeName(name = "oxId", ignoreDuringUpdate = true)
+    private String id;
+
+    @AttributeName(name = "oxAuthRedirectURI")
+    private List<String> redirectUris;
+
+    @AttributeName(name = "oxAuthClientId")
+    private List<String> clientIds;
+
+    public String getId() {
+        return id;
+    }
+
+    public void setId(String id) {
+        this.id = id;
+    }
+
+    public List<String> getRedirectUris() {
+        return redirectUris;
+    }
+
+    public void setRedirectUris(List<String> redirectUris) {
+        this.redirectUris = redirectUris;
+    }
+
+    public List<String> getClientIds() {
+        return clientIds;
+    }
+
+    public void setClientIds(List<String> clientIds) {
+        this.clientIds = clientIds;
+    }
+
+    @Override
+    public String toString() {
+        return String
+                .format("OxAuthSectorIdentifier [id=%s, toString()=%s]",
+                        id, super.toString());
+    }
+}
diff --git a/oxAuth/persistence-model/src/main/java/org/oxauth/persistence/model/base/Entry.java b/oxAuth/persistence-model/src/main/java/org/oxauth/persistence/model/base/Entry.java
new file mode 100644
index 00000000..fd4795f3
--- /dev/null
+++ b/oxAuth/persistence-model/src/main/java/org/oxauth/persistence/model/base/Entry.java
@@ -0,0 +1,49 @@
+/*
+ * oxAuth is available under the MIT License (2008). See http://opensource.org/licenses/MIT for full text.
+ *
+ * Copyright (c) 2014, Gluu
+ */
+
+package org.oxauth.persistence.model.base;
+
+import org.gluu.persist.annotation.DN;
+
+/**
+ * Provides DN attribute
+ *
+ * @author Yuriy Movchan Date: 10.07.2010
+ */
+public class Entry {
+
+	@DN
+	private String dn;
+
+	public Entry() {}
+
+	public Entry(String dn) {
+		super();
+		this.dn = dn;
+	}
+
+	public String getDn() {
+		return dn;
+	}
+
+	public void setDn(String dn) {
+		this.dn = dn;
+	}
+
+	public String getBaseDn() {
+		return dn;
+	}
+
+	public void setBaseDn(String dn) {
+		this.dn = dn;
+	}
+
+	@Override
+	public String toString() {
+		return String.format("Entry [dn=%s]", dn);
+	}
+
+}
diff --git a/oxAuth/persistence-model/src/main/java/org/oxauth/persistence/model/configuration/CustomProperty.java b/oxAuth/persistence-model/src/main/java/org/oxauth/persistence/model/configuration/CustomProperty.java
new file mode 100644
index 00000000..f75558aa
--- /dev/null
+++ b/oxAuth/persistence-model/src/main/java/org/oxauth/persistence/model/configuration/CustomProperty.java
@@ -0,0 +1,54 @@
+/*
+ * oxAuth is available under the MIT License (2008). See http://opensource.org/licenses/MIT for full text.
+ *
+ * Copyright (c) 2014, Gluu
+ */
+
+package org.oxauth.persistence.model.configuration;
+
+import java.util.ArrayList;
+import java.util.List;
+
+import javax.xml.bind.annotation.XmlElement;
+import javax.xml.bind.annotation.XmlElementWrapper;
+import javax.xml.bind.annotation.XmlType;
+
+import com.fasterxml.jackson.annotation.JsonPropertyOrder;
+
+/**
+ * Custom Attributes
+ * 
+ * @author Reda Zerrad Date: 07.26.2012
+ * @author Yuriy Movchan Date: 08.27.2012
+ */
+@JsonPropertyOrder({ "name", "values" })
+@XmlType(propOrder = { "name", "values" })
+public class CustomProperty {
+
+	private String name;
+	private List<String> values;
+
+	public CustomProperty() {
+		name = "";
+		values = new ArrayList<String>();
+	}
+
+	public String getName() {
+		return this.name;
+	}
+
+	public void setName(String name) {
+		this.name = name;
+	}
+
+	@XmlElementWrapper(name = "values")
+	@XmlElement(name = "value")
+	public List<String> getValues() {
+		return this.values;
+	}
+
+	public void setValues(List<String> values) {
+		this.values = values;
+	}
+
+}
diff --git a/oxAuth/persistence-model/src/main/java/org/oxauth/persistence/model/configuration/GluuConfiguration.java b/oxAuth/persistence-model/src/main/java/org/oxauth/persistence/model/configuration/GluuConfiguration.java
new file mode 100644
index 00000000..e1b490c6
--- /dev/null
+++ b/oxAuth/persistence-model/src/main/java/org/oxauth/persistence/model/configuration/GluuConfiguration.java
@@ -0,0 +1,122 @@
+/*
+ * oxAuth is available under the MIT License (2008). See http://opensource.org/licenses/MIT for full text.
+ *
+ * Copyright (c) 2014, Gluu
+ */
+
+package org.oxauth.persistence.model.configuration;
+
+import org.gluu.model.SmtpConfiguration;
+import org.gluu.persist.annotation.AttributeName;
+import org.gluu.persist.annotation.DataEntry;
+import org.gluu.persist.annotation.JsonObject;
+import org.gluu.persist.annotation.ObjectClass;
+import org.gluu.persist.model.base.InumEntry;
+import org.gluu.service.cache.CacheConfiguration;
+import org.gluu.service.document.store.conf.DocumentStoreConfiguration;
+
+import java.io.Serializable;
+import java.util.List;
+
+/**
+ * Gluu Configuration
+ *
+ * @author Yuriy Movchan Date: 08.27.2012
+ */
+@DataEntry
+@ObjectClass(value = "gluuConfiguration")
+public class GluuConfiguration extends InumEntry implements Serializable {
+
+	private static final long serialVersionUID = -2818003894646725601L;
+
+	@AttributeName(ignoreDuringUpdate = true)
+	private String inum;
+
+	@AttributeName(name = "oxSmtpConfiguration")
+	@JsonObject
+	private SmtpConfiguration smtpConfiguration;
+
+	@AttributeName(name = "oxCacheConfiguration")
+	@JsonObject
+	private CacheConfiguration cacheConfiguration;
+
+	@AttributeName(name = "oxDocumentStoreConfiguration")
+	@JsonObject
+	private DocumentStoreConfiguration documentStoreConfiguration;
+
+	@AttributeName(name = "oxIDPAuthentication")
+	@JsonObject
+	private List<oxIDPAuthConf> oxIDPAuthentication;
+
+	@AttributeName(name = "oxAuthenticationMode")
+	private String authenticationMode;
+	
+	@AttributeName(name = "gluuPassportEnabled")
+	private Boolean passportEnabled;
+
+	public Boolean getPassportEnabled() {
+		return passportEnabled;
+	}
+
+	public void setPassportEnabled(Boolean passportEnabled) {
+		this.passportEnabled = passportEnabled;
+	}
+
+	public String getInum() {
+		return inum;
+	}
+
+	public void setInum(String inum) {
+		this.inum = inum;
+	}
+
+	public SmtpConfiguration getSmtpConfiguration() {
+		return smtpConfiguration;
+	}
+
+	public CacheConfiguration getCacheConfiguration() {
+		return cacheConfiguration;
+	}
+
+	public void setCacheConfiguration(CacheConfiguration cacheConfiguration) {
+		this.cacheConfiguration = cacheConfiguration;
+	}
+
+	public DocumentStoreConfiguration getDocumentStoreConfiguration() {
+		return documentStoreConfiguration;
+	}
+
+	public void setDocumentStoreConfiguration(DocumentStoreConfiguration documentStoreConfiguration) {
+		this.documentStoreConfiguration = documentStoreConfiguration;
+	}
+
+	public void setSmtpConfiguration(SmtpConfiguration smtpConfiguration) {
+		this.smtpConfiguration = smtpConfiguration;
+	}
+
+	public List<oxIDPAuthConf> getOxIDPAuthentication(){
+		return this.oxIDPAuthentication;
+	}
+	
+	public void setOxIDPAuthentication(List<oxIDPAuthConf> oxIDPAuthentication){
+		this.oxIDPAuthentication = oxIDPAuthentication;
+	}
+
+	public String getAuthenticationMode() {
+		return authenticationMode;
+	}
+
+	public void setAuthenticationMode(String authenticationMode) {
+		this.authenticationMode = authenticationMode;
+	}
+
+	@Override
+	public String toString() {
+		StringBuilder builder = new StringBuilder();
+		builder.append("GluuConfiguration [inum=").append(inum).append(", smtpConfiguration=").append(smtpConfiguration).append(", oxIDPAuthentication=")
+				.append(oxIDPAuthentication).append(", authenticationMode=").append(authenticationMode).append(", toString()=").append(super.toString())
+				.append("]");
+		return builder.toString();
+	}
+
+}
diff --git a/oxAuth/persistence-model/src/main/java/org/oxauth/persistence/model/configuration/InumEntry.java b/oxAuth/persistence-model/src/main/java/org/oxauth/persistence/model/configuration/InumEntry.java
new file mode 100644
index 00000000..47131018
--- /dev/null
+++ b/oxAuth/persistence-model/src/main/java/org/oxauth/persistence/model/configuration/InumEntry.java
@@ -0,0 +1,48 @@
+/*
+ * oxAuth is available under the MIT License (2008). See http://opensource.org/licenses/MIT for full text.
+ *
+ * Copyright (c) 2014, Gluu
+ */
+
+package org.oxauth.persistence.model.configuration;
+
+import org.gluu.persist.annotation.AttributeName;
+import org.gluu.persist.annotation.DataEntry;
+import org.gluu.persist.annotation.ObjectClass;
+import org.oxauth.persistence.model.base.Entry;
+
+/**
+ * Provides global inum search ability.
+ * @author Oleksiy Tataryn
+ *
+ */
+@DataEntry
+@ObjectClass
+public class InumEntry extends Entry {
+
+	@AttributeName(ignoreDuringUpdate = true)
+	private String inum;
+
+	/**
+	 * @param inum the inum to set
+	 */
+	public void setInum(String inum) {
+		this.inum = inum;
+	}
+
+
+	/**
+	 * @return the inum
+	 */
+	public String getInum() {
+		return inum;
+	}
+
+
+	@Override
+	public String toString() {
+		return String.format("Entry [dn=%s, inum=%s]", getDn(), getInum());
+	}
+
+
+}
diff --git a/oxAuth/persistence-model/src/main/java/org/oxauth/persistence/model/configuration/oxIDPAuthConf.java b/oxAuth/persistence-model/src/main/java/org/oxauth/persistence/model/configuration/oxIDPAuthConf.java
new file mode 100644
index 00000000..f5b05261
--- /dev/null
+++ b/oxAuth/persistence-model/src/main/java/org/oxauth/persistence/model/configuration/oxIDPAuthConf.java
@@ -0,0 +1,110 @@
+/*
+ * oxAuth is available under the MIT License (2008). See http://opensource.org/licenses/MIT for full text.
+ *
+ * Copyright (c) 2014, Gluu
+ */
+
+package org.oxauth.persistence.model.configuration;
+
+import java.util.ArrayList;
+import java.util.List;
+
+import javax.xml.bind.annotation.XmlAccessType;
+import javax.xml.bind.annotation.XmlAccessorType;
+import javax.xml.bind.annotation.XmlRootElement;
+import javax.xml.bind.annotation.XmlType;
+
+import com.fasterxml.jackson.annotation.JsonPropertyOrder;
+import org.gluu.model.ldap.GluuLdapConfiguration;
+
+/**
+ * oxIDPAuthConf
+ * 
+ * @author Reda Zerrad Date: 08.14.2012
+ */
+
+@XmlRootElement(name = "oxIDPAuthConf")
+@XmlAccessorType(XmlAccessType.FIELD)
+@JsonPropertyOrder({ "type", "name", "level", "priority", "enabled", "version", "fields", "config" })
+@XmlType(propOrder = { "type", "name", "level", "priority", "enabled", "version", "fields", "config" })
+public class oxIDPAuthConf {
+	private String type;
+	private String name;
+
+	private int level;
+	private int priority;
+	private boolean enabled;
+	private List<CustomProperty> fields;
+	private int version;
+
+	private GluuLdapConfiguration config;
+
+	public oxIDPAuthConf() {
+		this.fields = new ArrayList<CustomProperty>();
+	}
+
+	public String getType() {
+		return this.type;
+	}
+
+	public void setType(String type) {
+		this.type = type;
+	}
+
+	public String getName() {
+		return name;
+	}
+
+	public void setName(String name) {
+		this.name = name;
+	}
+
+	public int getLevel() {
+		return level;
+	}
+
+	public void setLevel(int level) {
+		this.level = level;
+	}
+
+	public int getPriority() {
+		return priority;
+	}
+
+	public void setPriority(int priority) {
+		this.priority = priority;
+	}
+
+	public boolean getEnabled() {
+		return this.enabled;
+	}
+
+	public void setEnabled(boolean enabled) {
+		this.enabled = enabled;
+	}
+
+	public List<CustomProperty> getFields() {
+		return this.fields;
+	}
+
+	public void setFields(List<CustomProperty> fields) {
+		this.fields = fields;
+	}
+
+	public int getVersion() {
+		return version;
+	}
+
+	public void setVersion(int version) {
+		this.version = version;
+	}
+
+	public GluuLdapConfiguration getConfig() {
+		return config;
+	}
+
+	public void setConfig(GluuLdapConfiguration config) {
+		this.config = config;
+	}
+
+}
diff --git a/oxAuth/persistence-model/src/main/resources/META-INF/beans.xml b/oxAuth/persistence-model/src/main/resources/META-INF/beans.xml
new file mode 100644
index 00000000..9ac1fbf4
--- /dev/null
+++ b/oxAuth/persistence-model/src/main/resources/META-INF/beans.xml
@@ -0,0 +1,8 @@
+<!-- Marker file indicating CDI should be enabled -->
+<beans xmlns="http://xmlns.jcp.org/xml/ns/javaee"
+	xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance"
+	xsi:schemaLocation="
+      http://xmlns.jcp.org/xml/ns/javaee 
+      http://xmlns.jcp.org/xml/ns/javaee/beans_1_1.xsd"
+	bean-discovery-mode="annotated">
+</beans>
diff --git a/oxAuth/pom.xml b/oxAuth/pom.xml
new file mode 100644
index 00000000..8ad8481d
--- /dev/null
+++ b/oxAuth/pom.xml
@@ -0,0 +1,752 @@
+<?xml version="1.0" encoding="UTF-8"?>
+<project xmlns="http://maven.apache.org/POM/4.0.0" xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" xsi:schemaLocation="http://maven.apache.org/POM/4.0.0 http://maven.apache.org/xsd/maven-4.0.0.xsd">
+
+	<modelVersion>4.0.0</modelVersion>
+	<groupId>org.gluu</groupId>
+	<artifactId>oxauth</artifactId>
+	<packaging>pom</packaging>
+	<version>4.5.6-SNAPSHOT</version>
+	<name>oxAuth</name>
+	<url>https://www.gluu.org</url>
+
+	<properties>
+		<project.build.sourceEncoding>UTF-8</project.build.sourceEncoding>
+		<maven.min-version>3.3.9</maven.min-version>
+
+		<oxcore.version>4.5.6-SNAPSHOT</oxcore.version>
+		<oxeleven.version>4.5.6-SNAPSHOT</oxeleven.version>
+		<oxnotify.version>4.5.6-SNAPSHOT</oxnotify.version>
+		<oxlicense.version>4.5.6-SNAPSHOT</oxlicense.version>
+		<fido2.version>4.5.6-SNAPSHOT</fido2.version>
+
+		<json.version>20180813</json.version>
+		<jackson.version>2.10.1</jackson.version>
+		<jackson.databind.version>2.10.1</jackson.databind.version>
+		<jettison.version>1.5.4</jettison.version>
+
+		<activemq.version>5.15.16</activemq.version>
+
+		<httpcore.version>4.4.6</httpcore.version>
+
+		<log4j.version>2.17.1</log4j.version>
+
+		<jsf-api.version>2.2.16</jsf-api.version>
+		<uel-api.version>2.2.1-b04</uel-api.version>
+		<uel-impl.version>2.2.1-b05</uel-impl.version>
+
+		<omnifaces.version>2.6.9</omnifaces.version>
+
+		<swagger.version>1.3.7</swagger.version>
+
+		<jetty.version>9.4.43.v20210629</jetty.version>
+
+        <arquillian.version>1.4.0.Final</arquillian.version>
+        <arquillian.rest.version>1.0.0.Alpha4</arquillian.rest.version>
+        <arquillian.drone.version>2.0.0.Final</arquillian.drone.version>
+        <arquillian.graphene.version>2.1.0.CR1</arquillian.graphene.version>
+		<shrinkwrap.version>2.1.0</shrinkwrap.version>
+
+		<sonar.projectKey>GluuFederation_oxAuth</sonar.projectKey>
+		<sonar.moduleKey>${project.groupId}:${project.artifactId}</sonar.moduleKey>
+		<sonar.organization>gluufederation</sonar.organization>
+		<sonar.host.url>https://sonarcloud.io</sonar.host.url>
+	</properties>
+
+	<prerequisites>
+		<maven>${maven.min-version}</maven>
+	</prerequisites>
+
+	<repositories>
+		<repository>
+			<id>repository.jboss.org</id>
+			<name>JBoss Repository</name>
+			<url>https://repository.jboss.org/nexus/content/groups/public-jboss/</url>
+		</repository>
+		<repository>
+            <snapshots>
+                <enabled>true</enabled>
+                <updatePolicy>always</updatePolicy>
+            </snapshots>
+			<id>gluu</id>
+			<name>Gluu repository</name>
+			<url>https://maven.gluu.org/maven</url>
+		</repository>
+		<repository>
+			<id>bouncycastle</id>
+			<name>Bouncy Castle</name>
+			<url>https://repo2.maven.org/maven2/org/bouncycastle</url>
+		</repository>
+		<repository>
+			<id>mavencentral</id>
+			<name>maven central</name>
+			<url>https://repo1.maven.org/maven2</url>
+		</repository>
+	</repositories>
+
+	<scm>
+		<url>https://github.com/GluuFederation/oxAuth</url>
+		<connection>scm:git:git://github.com/GluuFederation/oxAuth.git</connection>
+		<developerConnection>scm:git:git@github.com:GluuFederation/oxAuth.git</developerConnection>
+	</scm>
+
+	<modules>
+        <module>stat-exporter</module>
+		<module>Model</module>
+		<module>persistence-model</module>
+		<module>Client</module>
+		<module>oxAuthStatic</module>
+		<module>common</module>
+		<module>Server</module>
+		<module>server-fips</module>
+  </modules>
+
+	<dependencyManagement>
+		<dependencies>
+            <dependency>
+                <groupId>org.gluu</groupId>
+                <artifactId>gluu-core-bom</artifactId>
+                <version>4.5.6-SNAPSHOT</version>
+                <scope>import</scope>
+                <type>pom</type>
+            </dependency>
+
+            <dependency>
+                <groupId>javax.interceptor</groupId>
+                <artifactId>javax.interceptor-api</artifactId>
+                <version>1.2</version>
+            </dependency>
+			<!-- https://github.com/wywygmbh/log4j-plugin-fluency -->
+			<dependency>
+				<groupId>com.wywy</groupId>
+				<artifactId>log4j-plugin-fluency</artifactId>
+				<version>1.3.2</version>
+			</dependency>
+			<!-- oxAuth -->
+			<dependency>
+				<groupId>org.gluu</groupId>
+				<artifactId>oxauth-model</artifactId>
+				<version>${project.version}</version>
+			</dependency>
+			<dependency>
+				<groupId>org.gluu</groupId>
+				<artifactId>oxauth-persistence-model</artifactId>
+				<version>${project.version}</version>
+			</dependency>
+			<dependency>
+				<groupId>org.gluu</groupId>
+				<artifactId>oxauth-model</artifactId>
+				<version>4.5.6-SNAPSHOT</version>
+				<type>test-jar</type>
+			</dependency>
+			<dependency>
+				<groupId>org.gluu</groupId>
+				<artifactId>oxauth-common</artifactId>
+				<version>${project.version}</version>
+			</dependency>
+			<dependency>
+				<groupId>org.gluu</groupId>
+				<artifactId>oxauth-fido2-server</artifactId>
+				<version>${project.version}</version>
+			</dependency>
+			<dependency>
+				<groupId>org.gluu</groupId>
+				<artifactId>oxauth-fido2-client</artifactId>
+				<version>${project.version}</version>
+			</dependency>
+			<dependency>
+				<groupId>org.gluu</groupId>
+				<artifactId>oxauth-client</artifactId>
+				<version>${project.version}</version>
+			</dependency>
+			<dependency>
+				<groupId>org.gluu</groupId>
+				<artifactId>oxauth-static</artifactId>
+				<version>${project.version}</version>
+			</dependency>
+
+			<!-- Gluu -->
+			<dependency>
+				<groupId>org.gluu</groupId>
+				<artifactId>oxcore-util</artifactId>
+				<version>${oxcore.version}</version>
+			</dependency>
+			<dependency>
+				<groupId>org.gluu</groupId>
+				<artifactId>gluu-orm-annotation</artifactId>
+				<version>${oxcore.version}</version>
+			</dependency>
+			<dependency>
+				<groupId>org.gluu</groupId>
+				<artifactId>gluu-orm-ldap</artifactId>
+				<version>${oxcore.version}</version>
+			</dependency>
+			<dependency>
+				<groupId>org.gluu</groupId>
+				<artifactId>gluu-orm-couchbase</artifactId>
+				<version>${oxcore.version}</version>
+			</dependency>
+			<dependency>
+				<groupId>org.gluu</groupId>
+				<artifactId>gluu-orm-hybrid</artifactId>
+				<version>${oxcore.version}</version>
+			</dependency>
+			<dependency>
+				<groupId>org.gluu</groupId>
+				<artifactId>gluu-orm-cdi</artifactId>
+				<version>${oxcore.version}</version>
+			</dependency>
+			<dependency>
+				<groupId>org.gluu</groupId>
+				<artifactId>gluu-orm-filter</artifactId>
+				<version>${oxcore.version}</version>
+			</dependency>
+			<dependency>
+				<groupId>org.gluu</groupId>
+				<artifactId>oxcore-service</artifactId>
+				<version>${oxcore.version}</version>
+			</dependency>
+			<dependency>
+				<groupId>org.gluu</groupId>
+				<artifactId>oxcore-server</artifactId>
+				<version>${oxcore.version}</version>
+			</dependency>
+			<dependency>
+				<groupId>org.gluu</groupId>
+				<artifactId>oxcore-jsf-util</artifactId>
+				<version>${oxcore.version}</version>
+			</dependency>
+			<dependency>
+				<groupId>org.gluu</groupId>
+				<artifactId>oxcore-model</artifactId>
+				<version>${oxcore.version}</version>
+			</dependency>
+			<dependency>
+				<groupId>org.gluu</groupId>
+				<artifactId>oxcore-document-store</artifactId>
+				<version>${oxcore.version}</version>
+			</dependency>
+			<dependency>
+				<groupId>org.gluu</groupId>
+				<artifactId>oxeleven-client</artifactId>
+				<version>${oxeleven.version}</version>
+			</dependency>
+			<dependency>
+				<groupId>org.gluu</groupId>
+				<artifactId>oxeleven-model</artifactId>
+				<version>${oxeleven.version}</version>
+			</dependency>
+			<!-- Fido2 -->
+			<dependency>
+				<groupId>org.gluu</groupId>
+				<artifactId>fido2-client</artifactId>
+				<version>${fido2.version}</version>
+			</dependency>
+			<dependency>
+				<groupId>org.gluu</groupId>
+				<artifactId>oxnotify-client2</artifactId>
+				<version>${oxnotify.version}</version>
+			</dependency>
+			<dependency>
+				<groupId>org.gluu</groupId>
+				<artifactId>oxlicense-client</artifactId>
+				<version>${oxlicense.version}</version>
+			</dependency>
+			<dependency>
+				<groupId>org.gluu</groupId>
+				<artifactId>oxlicense-validator</artifactId>
+				<version>${oxlicense.version}</version>
+			</dependency>
+
+			<dependency>
+			    <groupId>org.hibernate</groupId>
+			    <artifactId>hibernate-validator-cdi</artifactId>
+			    <version>5.4.1.Final</version>
+			</dependency>
+
+			<!-- Omnifaces -->
+			<dependency>
+				<groupId>org.omnifaces</groupId>
+				<artifactId>omnifaces</artifactId>
+				<version>${omnifaces.version}</version>
+			</dependency>
+
+			<!-- Commons libs -->
+			<dependency>
+				<groupId>commons-collections</groupId>
+				<artifactId>commons-collections</artifactId>
+				<version>3.2.2</version>
+			</dependency>
+			<dependency>
+				<groupId>commons-net</groupId>
+				<artifactId>commons-net</artifactId>
+				<version>3.9.0</version>
+			</dependency>
+			<dependency>
+				<groupId>commons-httpclient</groupId>
+				<artifactId>commons-httpclient</artifactId>
+				<version>3.1</version>
+			</dependency>
+			<dependency>
+				<groupId>commons-cli</groupId>
+				<artifactId>commons-cli</artifactId>
+				<version>1.3.1</version>
+			</dependency>
+			<dependency>
+				<groupId>org.apache.commons</groupId>
+				<artifactId>commons-pool2</artifactId>
+				<version>2.5.0</version>
+			</dependency>
+
+			<!-- Metrics -->
+			<dependency>
+				<groupId>io.dropwizard.metrics</groupId>
+				<artifactId>metrics-core</artifactId>
+				<version>3.1.2</version>
+			</dependency>
+
+			<!-- Google -->
+			<dependency>
+				<groupId>com.google.code.findbugs</groupId>
+				<artifactId>jsr305</artifactId>
+				<version>1.3.9</version>
+			</dependency>
+
+			<!-- Microsoft -->
+			<dependency>
+				<groupId>com.github.microsoft</groupId>
+				<artifactId>TSS.Java</artifactId>
+				<version>0.3.0</version>
+			</dependency>
+
+			<!-- Jettison -->
+			<dependency>
+				<groupId>org.codehaus.jettison</groupId>
+				<artifactId>jettison</artifactId>
+				<version>${jettison.version}</version>
+			</dependency>
+
+			<!-- JMS -->
+			<dependency>
+				<groupId>javax.jms</groupId>
+				<artifactId>javax.jms-api</artifactId>
+				<version>2.0.1</version>
+			</dependency>
+			<dependency>
+				<groupId>org.apache.activemq</groupId>
+				<artifactId>activemq-client</artifactId>
+				<version>${activemq.version}</version>
+			</dependency>
+			<dependency>
+				<groupId>org.apache.activemq</groupId>
+				<artifactId>activemq-pool</artifactId>
+				<version>${activemq.version}</version>
+			</dependency>
+
+			<!-- Other -->
+			<dependency>
+				<groupId>net.sf.ehcache</groupId>
+				<artifactId>ehcache-core</artifactId>
+				<version>2.4.3</version>
+			</dependency>
+			<dependency>
+				<groupId>com.googlecode.json-simple</groupId>
+				<artifactId>json-simple</artifactId>
+				<version>1.1.1</version>
+			</dependency>
+			<dependency>
+				<groupId>org.mvel</groupId>
+				<artifactId>mvel2</artifactId>
+				<version>2.1.3.Final</version>
+			</dependency>
+			<dependency>
+				<groupId>org.antlr</groupId>
+				<artifactId>antlr-runtime</artifactId>
+				<version>3.1.1</version>
+			</dependency>
+			<dependency>
+				<groupId>javax.servlet</groupId>
+				<artifactId>javax.servlet-api</artifactId>
+				<version>3.1.0</version>
+				<scope>provided</scope>
+			</dependency>
+
+            <!-- Test -->
+            <dependency>
+                <groupId>org.seleniumhq.selenium</groupId>
+                <artifactId>selenium-java</artifactId>
+                <version>3.141.59</version>
+                <scope>test</scope>
+            </dependency>
+            <dependency>
+                <groupId>org.seleniumhq.selenium</groupId>
+                <artifactId>selenium-support</artifactId>
+                <version>3.141.59</version>
+                <scope>test</scope>
+            </dependency>
+            <dependency>
+                <groupId>org.bitbucket.b_c</groupId>
+                <artifactId>jose4j</artifactId>
+                <version>0.6.4</version>
+                <scope>test</scope>
+            </dependency>
+            <dependency>
+                <groupId>org.jetbrains</groupId>
+                <artifactId>annotations</artifactId>
+                <version>18.0.0</version>
+            </dependency>
+
+	        <dependency>
+	            <groupId>org.eclipse.jetty</groupId>
+	            <artifactId>jetty-webapp</artifactId>
+	            <version>${jetty.version}</version>
+	            <scope>provided</scope>
+	        </dependency>
+
+	        <dependency>
+	            <groupId>org.eclipse.jetty</groupId>
+	            <artifactId>jetty-deploy</artifactId>
+	            <version>${jetty.version}</version>
+	            <scope>provided</scope>
+	        </dependency>
+
+	        <dependency>
+	            <!-- Jetty annotations needed for Servlet 3.1 support -->
+	            <groupId>org.eclipse.jetty</groupId>
+	            <artifactId>jetty-annotations</artifactId>
+	            <version>${jetty.version}</version>
+	            <scope>provided</scope>
+	        </dependency>
+
+	        <dependency>
+	            <!-- Jetty plus and naming required for testing resource injections -->
+	            <groupId>org.eclipse.jetty</groupId>
+	            <artifactId>jetty-plus</artifactId>
+	            <version>${jetty.version}</version>
+	            <scope>provided</scope>
+	        </dependency>
+
+            <dependency>
+                <groupId>org.jboss.shrinkwrap.resolver</groupId>
+                <artifactId>shrinkwrap-resolver-bom</artifactId>
+                <version>${shrinkwrap.version}</version>
+                <type>pom</type>
+                <scope>test</scope>
+            </dependency>
+            <dependency>
+                <groupId>org.jboss.shrinkwrap.resolver</groupId>
+                <artifactId>shrinkwrap-resolver-depchain</artifactId>
+                <version>${shrinkwrap.version}</version>
+                <type>pom</type>
+                <scope>test</scope>
+			</dependency>
+
+            <dependency>
+                <groupId>org.jboss.arquillian</groupId>
+                <artifactId>arquillian-bom</artifactId>
+                <version>${arquillian.version}</version>
+                <type>pom</type>
+                <scope>import</scope>
+            </dependency>
+
+            <dependency>
+                <groupId>org.jboss.arquillian.graphene</groupId>
+                <artifactId>graphene-webdriver</artifactId>
+                <version>${arquillian.graphene.version}</version>
+                <type>pom</type>
+                <scope>test</scope>
+            </dependency>
+            <dependency>
+                <groupId>org.jboss.arquillian.extension</groupId>
+                <artifactId>arquillian-drone-bom</artifactId>
+                <version>${arquillian.drone.version}</version>
+                <type>pom</type>
+                <scope>test</scope>
+            </dependency>
+            <dependency>
+                <groupId>org.jboss.arquillian.extension</groupId>
+                <artifactId>arquillian-drone-webdriver-depchain</artifactId>
+                <version>${arquillian.drone.version}</version>
+                <type>pom</type>
+                <scope>test</scope>
+            </dependency>
+			<dependency>
+				<groupId>org.jboss.arquillian.extension</groupId>
+				<artifactId>arquillian-rest-client-impl-3x</artifactId>
+				<version>${arquillian.rest.version}</version>
+				<scope>test</scope>
+			</dependency>
+			<dependency>
+			    <groupId>org.eu.ingwar.tools</groupId>
+			    <artifactId>arquillian-suite-extension</artifactId>
+			    <version>1.2.0</version>
+			    <scope>test</scope>
+			</dependency>
+
+			<!-- Documentation -->
+			<dependency>
+				<groupId>com.wordnik</groupId>
+				<artifactId>swagger-annotations</artifactId>
+				<version>${swagger.version}</version>
+	            <scope>provided</scope>
+			</dependency>
+		</dependencies>
+	</dependencyManagement>
+
+	<build>
+		<pluginManagement>
+			<plugins>
+				<!-- Ensures we are compiling at 1.6 level -->
+				<plugin>
+					<groupId>org.apache.maven.plugins</groupId>
+					<artifactId>maven-compiler-plugin</artifactId>
+					<version>2.3.2</version>
+					<configuration>
+						<source>1.8</source>
+						<target>1.8</target>
+						<encoding>UTF-8</encoding>
+					</configuration>
+				</plugin>
+				<plugin>
+					<groupId>org.apache.maven.plugins</groupId>
+					<artifactId>maven-clean-plugin</artifactId>
+					<version>2.5</version>
+				</plugin>
+				<plugin>
+					<groupId>org.apache.maven.plugins</groupId>
+					<artifactId>maven-deploy-plugin</artifactId>
+					<version>2.7</version>
+				</plugin>
+				<plugin>
+					<groupId>org.apache.maven.plugins</groupId>
+					<artifactId>maven-dependency-plugin</artifactId>
+					<version>2.8</version>
+				</plugin>
+				<plugin>
+					<groupId>org.apache.maven.plugins</groupId>
+					<artifactId>maven-install-plugin</artifactId>
+					<version>3.0.0-M1</version>
+				</plugin>
+				<plugin>
+					<groupId>org.apache.maven.plugins</groupId>
+					<artifactId>maven-jar-plugin</artifactId>
+					<version>2.4</version>
+					<executions>
+						<execution>
+							<goals>
+								<goal>test-jar</goal>
+							</goals>
+						</execution>
+					</executions>
+				</plugin>
+				<plugin>
+					<groupId>org.apache.maven.plugins</groupId>
+					<artifactId>maven-resources-plugin</artifactId>
+					<version>2.6</version>
+					<configuration>
+						<encoding>UTF-8</encoding>
+					</configuration>
+				</plugin>
+				<plugin>
+					<groupId>org.apache.maven.plugins</groupId>
+					<artifactId>maven-site-plugin</artifactId>
+					<version>2.1.1</version>
+				</plugin>
+				<plugin>
+					<groupId>org.apache.maven.plugins</groupId>
+					<artifactId>maven-surefire-plugin</artifactId>
+					<version>2.19.1</version>
+					<configuration>
+						<argLine>-Xms1024m -Xmx2048m -XX:MaxMetaspaceSize=512m -XX:+DisableExplicitGC</argLine>
+
+						<!-- Needed as we have both junit and testng -->
+						<failIfNoTests>false</failIfNoTests>
+						<trimStackTrace>false</trimStackTrace>
+
+						<!-- exclude selenium tests -->
+						<excludes>
+							<exclude>**/selenium/*</exclude>
+							<exclude>**/webdriver/*</exclude>
+							<exclude>**/xml/*</exclude>
+						</excludes>
+
+						<suiteXmlFiles>
+							<suiteXmlFile>target/test-classes/testng.xml</suiteXmlFile>
+						</suiteXmlFiles>
+					</configuration>
+				</plugin>
+				<plugin>
+					<groupId>org.codehaus.mojo</groupId>
+					<artifactId>findbugs-maven-plugin</artifactId>
+					<version>3.0.4</version>
+				</plugin>
+				<plugin>
+					<groupId>org.apache.maven.plugins</groupId>
+					<artifactId>maven-war-plugin</artifactId>
+					<version>2.3</version>
+				</plugin>
+				<plugin>
+					<groupId>org.eclipse.jetty</groupId>
+					<artifactId>jetty-maven-plugin</artifactId>
+					<version>${jetty.version}</version>
+				</plugin>
+				<plugin>
+					<groupId>org.apache.maven.plugins</groupId>
+					<artifactId>maven-source-plugin</artifactId>
+					<version>2.1.2</version>
+					<executions>
+						<execution>
+							<id>attach-sources</id>
+							<goals>
+								<goal>jar</goal>
+							</goals>
+						</execution>
+					</executions>
+				</plugin>
+				<plugin>
+					<groupId>org.apache.maven.plugins</groupId>
+					<artifactId>maven-javadoc-plugin</artifactId>
+					<configuration>
+						<failOnError>false</failOnError>
+					</configuration>
+				</plugin>
+				<plugin>
+					<groupId>org.owasp</groupId>
+					<artifactId>dependency-check-maven</artifactId>
+					<version>5.2.2</version>
+				</plugin>
+			</plugins>
+		</pluginManagement>
+	</build>
+
+	<reporting>
+		<plugins>
+			<plugin>
+				<groupId>org.apache.maven.plugins</groupId>
+				<artifactId>maven-javadoc-plugin</artifactId>
+			</plugin>
+
+			<!-- OWASP plugin -->
+			<plugin>
+				<groupId>org.owasp</groupId>
+				<artifactId>dependency-check-maven</artifactId>
+				<reportSets>
+					<reportSet>
+						<reports>
+							<report>aggregate</report>
+						</reports>
+					</reportSet>
+				</reportSets>
+			</plugin>
+		</plugins>
+	</reporting>
+
+	<profiles>
+		<profile>
+			<id>set-configuration-name</id>
+			<activation>
+				<property>
+					<name>!cfg</name>
+				</property>
+			</activation>
+			<properties>
+				<cfg>default</cfg>
+			</properties>
+		</profile>
+
+		<profile>
+			<!-- Neded to resolve test dependencies -->
+			<id>set-skip-test-variable</id>
+			<activation>
+				<property>
+					<name>!maven.test.skip</name>
+				</property>
+			</activation>
+			<properties>
+				<maven.test.skip>false</maven.test.skip>
+			</properties>
+		</profile>
+
+		<profile>
+			<id>run-benchmark-tests</id>
+			<activation>
+				<property>
+					<name>benchmark</name>
+				</property>
+			</activation>
+			<build>
+				<pluginManagement>
+					<plugins>
+						<plugin>
+							<groupId>org.apache.maven.plugins</groupId>
+							<artifactId>maven-surefire-plugin</artifactId>
+							<version>2.17</version>
+							<configuration>
+								<skipTests>false</skipTests>
+								<failIfNoTests>false</failIfNoTests>
+								<trimStackTrace>false</trimStackTrace>
+								<suiteXmlFiles>
+									<suiteXmlFile>target/test-classes/testng-benchmark.xml</suiteXmlFile>
+								</suiteXmlFiles>
+							</configuration>
+						</plugin>
+					</plugins>
+				</pluginManagement>
+			</build>
+		</profile>
+
+		<profile>
+			<id>run-multi-authz-tests</id>
+			<activation>
+				<property>
+					<name>multi-authz</name>
+				</property>
+			</activation>
+			<build>
+				<pluginManagement>
+					<plugins>
+						<plugin>
+							<groupId>org.apache.maven.plugins</groupId>
+							<artifactId>maven-surefire-plugin</artifactId>
+							<version>2.17</version>
+							<configuration>
+								<skipTests>false</skipTests>
+								<failIfNoTests>false</failIfNoTests>
+								<trimStackTrace>false</trimStackTrace>
+								<suiteXmlFiles>
+									<suiteXmlFile>target/test-classes/testng-multi-authz.xml</suiteXmlFile>
+								</suiteXmlFiles>
+							</configuration>
+						</plugin>
+					</plugins>
+				</pluginManagement>
+			</build>
+		</profile>
+
+		<profile>
+			<id>development-build</id>
+			<activation>
+				<property>
+					<name>development-build</name>
+					<value>true</value>
+				</property>
+			</activation>
+			<properties>
+				<log4j.default.log.level>TRACE</log4j.default.log.level>
+				<weld.debug>true</weld.debug>
+			</properties>
+		</profile>
+
+		<profile>
+			<id>cvss-score</id>
+			<activation>
+				<property>
+					<name>!cvss-score</name>
+				</property>
+			</activation>
+			<properties>
+				<cvss-score>8</cvss-score>
+			</properties>
+		</profile>
+	</profiles>
+
+</project>
\ No newline at end of file
diff --git a/oxAuth/release.properties b/oxAuth/release.properties
new file mode 100644
index 00000000..a4d22abe
--- /dev/null
+++ b/oxAuth/release.properties
@@ -0,0 +1,7 @@
+#release configuration
+#Tue Apr 02 21:13:14 EEST 2013
+preparationGoals=clean verify
+scm.commentPrefix=[maven-release-plugin] 
+remoteTagging=true
+completedPhase=scm-check-modifications
+scm.url=scm\:svn\:https\://svn.gluu.info/repository/openxdi/oxAuth
diff --git a/oxAuth/server-fips/.gitignore b/oxAuth/server-fips/.gitignore
new file mode 100644
index 00000000..bb4c543a
--- /dev/null
+++ b/oxAuth/server-fips/.gitignore
@@ -0,0 +1,4 @@
+/target/
+/test-output/
+/WebContent/
+/weld-validation-report.html
diff --git a/oxAuth/server-fips/pom.xml b/oxAuth/server-fips/pom.xml
new file mode 100644
index 00000000..080142d2
--- /dev/null
+++ b/oxAuth/server-fips/pom.xml
@@ -0,0 +1,161 @@
+<?xml version="1.0" encoding="UTF-8"?>
+<project xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" xmlns="http://maven.apache.org/POM/4.0.0" xsi:schemaLocation="http://maven.apache.org/POM/4.0.0 http://maven.apache.org/maven-v4_0_0.xsd">
+	<modelVersion>4.0.0</modelVersion>
+	<artifactId>oxauth-server-fips</artifactId>
+	<name>oxAuth Server (FIPS)</name>
+	<packaging>war</packaging>
+
+	<parent>
+		<groupId>org.gluu</groupId>
+		<artifactId>oxauth</artifactId>
+		<version>4.5.6-SNAPSHOT</version>
+	</parent>
+
+	<prerequisites>
+		<maven>${maven.min-version}</maven>
+	</prerequisites>
+
+	<build>
+		<finalName>${project.artifactId}</finalName>
+
+		<resources>
+			<resource>
+				<directory>src/main/resources</directory>
+				<filtering>true</filtering>
+				<includes>
+					<include>**/*.xml</include>
+					<include>**/*.properties</include>
+					<include>META-INF/services/*.*</include>
+				</includes>
+			</resource>
+		</resources>
+
+		<testResources>
+			<testResource>
+				<directory>src/main/webapp</directory>
+				<includes>
+					<include>WEB-INF/**</include>
+				</includes>
+				<filtering>true</filtering>
+			</testResource>
+			<testResource>
+				<directory>src/test/resources</directory>
+				<filtering>true</filtering>
+			</testResource>
+		</testResources>
+
+		<plugins>
+
+			<plugin>
+				<groupId>org.apache.maven.plugins</groupId>
+				<artifactId>maven-antrun-plugin</artifactId>
+				<version>3.0.0</version>
+				<executions>
+					<execution>
+						<id>build-oxauth-fips-war</id>
+						<phase>process-sources</phase>
+						<configuration>
+							<target>
+								<property name="server.webapp.dir" value="${project.basedir}/../Server/target/oxauth-server" />
+								<property name="dest.webapp.dir" value="${project.build.directory}/${project.artifactId}" />
+								<delete dir="${dest.webapp.dir}" />
+								<mkdir dir="${dest.webapp.dir}" />
+								<copy todir="${dest.webapp.dir}" preservelastmodified="true" overwrite="true">
+									<fileset dir="${server.webapp.dir}" includes="**/*" />
+								</copy>
+							</target>
+						</configuration>
+						<goals>
+							<goal>run</goal>
+						</goals>
+					</execution>
+				</executions>
+			</plugin>
+
+			<plugin>
+				<groupId>org.apache.maven.plugins</groupId>
+				<artifactId>maven-war-plugin</artifactId>
+				<configuration>
+					<failOnMissingWebXml>false</failOnMissingWebXml>
+					<archive>
+						<manifest>
+							<addDefaultImplementationEntries>true</addDefaultImplementationEntries>
+						</manifest>
+						<manifestEntries>
+							<Implementation-Build>${buildNumber}</Implementation-Build>
+						</manifestEntries>
+					</archive>
+					<packagingExcludes>
+						WEB-INF/lib/bcpkix-jdk18on-*.jar,
+						WEB-INF/lib/bcprov-jdk18on-*.jar,
+						WEB-INF/lib/bcutil-jdk18on-*.jar,
+						WEB-INF/lib/bcmail-jdk18on-*.jar
+					</packagingExcludes>
+				</configuration>
+			</plugin>
+
+			<!-- Build number plugin -->
+			<plugin>
+				<groupId>org.codehaus.mojo</groupId>
+				<artifactId>buildnumber-maven-plugin</artifactId>
+				<version>3.0.0</version>
+				<executions>
+					<execution>
+						<phase>validate</phase>
+						<goals>
+							<goal>create</goal>
+						</goals>
+					</execution>
+				</executions>
+				<configuration>
+					<doCheck>false</doCheck>
+					<doUpdate>false</doUpdate>
+				</configuration>
+			</plugin>
+
+			<plugin>
+				<groupId>pl.project13.maven</groupId>
+				<artifactId>git-commit-id-plugin</artifactId>
+				<version>4.9.10</version>
+				<executions>
+					<execution>
+						<id>get-the-git-infos</id>
+						<goals>
+							<goal>revision</goal>
+						</goals>
+					</execution>
+				</executions>
+				<configuration>
+					<generateGitPropertiesFile>true</generateGitPropertiesFile>
+					<failOnNoGitDirectory>false</failOnNoGitDirectory>
+				</configuration>
+			</plugin>
+
+			<plugin>
+				<groupId>org.apache.maven.plugins</groupId>
+				<artifactId>maven-surefire-plugin</artifactId>
+				<configuration>
+					<skipTests>true</skipTests>
+				</configuration>
+			</plugin>
+		</plugins>
+
+	</build>
+
+	<dependencies>
+		<!-- Bouncycastle Fips -->
+		<dependency>
+			<groupId>org.bouncycastle</groupId>
+			<artifactId>bc-fips</artifactId>
+		</dependency>
+		<dependency>
+			<groupId>org.bouncycastle</groupId>
+			<artifactId>bcpkix-fips</artifactId>
+		</dependency>
+		<dependency>
+			<groupId>org.bouncycastle</groupId>
+			<artifactId>bcmail-fips</artifactId>
+		</dependency>
+	</dependencies>
+
+</project>
\ No newline at end of file
diff --git a/oxAuth/stat-exporter/pom.xml b/oxAuth/stat-exporter/pom.xml
new file mode 100644
index 00000000..47c6d378
--- /dev/null
+++ b/oxAuth/stat-exporter/pom.xml
@@ -0,0 +1,102 @@
+<?xml version="1.0" encoding="UTF-8"?>
+<project xmlns="http://maven.apache.org/POM/4.0.0"
+	xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance"
+	xsi:schemaLocation="http://maven.apache.org/POM/4.0.0 http://maven.apache.org/xsd/maven-4.0.0.xsd">
+	<modelVersion>4.0.0</modelVersion>
+	<artifactId>stat-exporter</artifactId>
+	<name>Stat Exporter</name>
+	<packaging>jar</packaging>
+
+	<parent>
+		<groupId>org.gluu</groupId>
+		<artifactId>oxauth</artifactId>
+		<version>4.5.6-SNAPSHOT</version>
+	</parent>
+
+	<prerequisites>
+		<maven>${maven.min-version}</maven>
+	</prerequisites>
+
+	<build>
+		<finalName>stat-exporter</finalName>
+
+		<resources>
+			<resource>
+				<directory>src/main/resources</directory>
+				<includes>
+					<include>**/*.xml</include>
+					<include>**/*.properties</include>
+					<include>**/*.js</include>
+				</includes>
+			</resource>
+		</resources>
+
+		<testResources>
+			<testResource>
+				<directory>src/test/resources</directory>
+				<includes>
+					<include>**/*.json</include>
+					<include>**/*.xml</include>
+				</includes>
+			</testResource>
+		</testResources>
+
+		<plugins>
+			<plugin>
+				<groupId>org.apache.maven.plugins</groupId>
+				<artifactId>maven-surefire-plugin</artifactId>
+				<configuration>
+					<skipTests>true</skipTests>  <!-- set it to false when test sources appear -->
+				</configuration>
+			</plugin>
+            <plugin>
+                <artifactId>maven-assembly-plugin</artifactId>
+                <version>3.3.0</version>
+                <executions>
+                    <execution>
+                        <id>assembly-jar-with-dependencies-artifact</id>
+                        <phase>package</phase>
+                        <goals>
+                            <goal>single</goal>
+                        </goals>
+                        <configuration>
+                            <appendAssemblyId>true</appendAssemblyId>
+                            <descriptorRefs>
+                                <descriptorRef>jar-with-dependencies</descriptorRef>
+                            </descriptorRefs>
+                            <archive>
+                                <manifest>
+                                    <mainClass>org.gluu.stat.exporter.StatExporter</mainClass>
+                                </manifest>
+                                <manifestEntries>
+                                    <Multi-Release>true</Multi-Release>
+                                </manifestEntries>
+                            </archive>
+                        </configuration>
+                    </execution>
+                </executions>
+            </plugin>
+		</plugins>
+	</build>
+
+	<dependencies>
+        <dependency>
+            <groupId>com.google.guava</groupId>
+            <artifactId>guava</artifactId>
+        </dependency>
+        <dependency>
+            <groupId>com.squareup.okhttp3</groupId>
+            <artifactId>okhttp</artifactId>
+            <version>4.12.0</version>
+        </dependency>
+		<dependency>
+			<groupId>com.fasterxml.jackson.datatype</groupId>
+			<artifactId>jackson-datatype-json-org </artifactId>
+		</dependency>
+		<dependency>
+			<groupId>commons-codec</groupId>
+			<artifactId>commons-codec</artifactId>
+		</dependency>
+	</dependencies>
+	
+</project>
\ No newline at end of file
diff --git a/oxAuth/stat-exporter/src/main/java/org/gluu/stat/exporter/DiscoveryResponse.java b/oxAuth/stat-exporter/src/main/java/org/gluu/stat/exporter/DiscoveryResponse.java
new file mode 100644
index 00000000..3748c091
--- /dev/null
+++ b/oxAuth/stat-exporter/src/main/java/org/gluu/stat/exporter/DiscoveryResponse.java
@@ -0,0 +1,51 @@
+package org.gluu.stat.exporter;
+
+import com.fasterxml.jackson.annotation.JsonIgnoreProperties;
+import com.fasterxml.jackson.annotation.JsonProperty;
+
+/**
+ * @author Yuriy Z
+ */
+@JsonIgnoreProperties(ignoreUnknown = true)
+public class DiscoveryResponse {
+
+    @JsonProperty(value = "issuer")
+    private String issuer;
+    @JsonProperty(value = "token_endpoint")
+    private String tokenEndpoint;
+    @JsonProperty(value = "registration_endpoint")
+    private String registrationEndpoint;
+
+    public String getRegistrationEndpoint() {
+        return registrationEndpoint;
+    }
+
+    public void setRegistrationEndpoint(String registrationEndpoint) {
+        this.registrationEndpoint = registrationEndpoint;
+    }
+
+    public String getIssuer() {
+        return issuer;
+    }
+
+    public void setIssuer(String issuer) {
+        this.issuer = issuer;
+    }
+
+    public String getTokenEndpoint() {
+        return tokenEndpoint;
+    }
+
+    public void setTokenEndpoint(String tokenEndpoint) {
+        this.tokenEndpoint = tokenEndpoint;
+    }
+
+    @Override
+    public String toString() {
+        return "DiscoveryResponse{" +
+                "issuer='" + issuer + '\'' +
+                ", tokenEndpoint='" + tokenEndpoint + '\'' +
+                ", registrationEndpoint='" + registrationEndpoint + '\'' +
+                '}';
+    }
+}
diff --git a/oxAuth/stat-exporter/src/main/java/org/gluu/stat/exporter/Months.java b/oxAuth/stat-exporter/src/main/java/org/gluu/stat/exporter/Months.java
new file mode 100644
index 00000000..6804ea87
--- /dev/null
+++ b/oxAuth/stat-exporter/src/main/java/org/gluu/stat/exporter/Months.java
@@ -0,0 +1,35 @@
+package org.gluu.stat.exporter;
+
+import com.google.common.base.Joiner;
+
+import java.time.LocalDate;
+import java.time.format.DateTimeFormatter;
+import java.util.HashSet;
+import java.util.Set;
+
+/**
+ * @author Yuriy Z
+ */
+public class Months {
+
+    public static final DateTimeFormatter YYYYMM = DateTimeFormatter.ofPattern("yyyyMM");
+
+    private Months() {
+    }
+
+    public static String getLastMonthsAsString(int count) {
+        return Joiner.on(" ").join(Months.getLastMonths(count));
+    }
+
+    public static Set<String> getLastMonths(int shiftCount) {
+        Set<String> result = new HashSet<>();
+
+        LocalDate now = LocalDate.now();
+        for (int i = 0; i < shiftCount; i++) {
+            final LocalDate date = now.minusMonths(i);
+            result.add(date.format(YYYYMM));
+        }
+
+        return result;
+    }
+}
diff --git a/oxAuth/stat-exporter/src/main/java/org/gluu/stat/exporter/RegisterRequest.java b/oxAuth/stat-exporter/src/main/java/org/gluu/stat/exporter/RegisterRequest.java
new file mode 100644
index 00000000..bddf2de6
--- /dev/null
+++ b/oxAuth/stat-exporter/src/main/java/org/gluu/stat/exporter/RegisterRequest.java
@@ -0,0 +1,76 @@
+package org.gluu.stat.exporter;
+
+import com.fasterxml.jackson.annotation.JsonIgnoreProperties;
+import com.fasterxml.jackson.annotation.JsonProperty;
+
+import java.util.ArrayList;
+import java.util.List;
+
+/**
+ * @author Yuriy Z
+ */
+@JsonIgnoreProperties(ignoreUnknown = true)
+public class RegisterRequest {
+
+    @JsonProperty(value = "application_type")
+    private String applicationType = "web";
+    @JsonProperty(value = "redirect_uris")
+    private List<String> redirectUris = new ArrayList<>();
+    @JsonProperty(value = "scope")
+    private String scope;
+    @JsonProperty(value = "grant_types")
+    private List<String> grantTypes;
+    @JsonProperty(value = "client_name")
+    private String clientName;
+
+    public String getClientName() {
+        return clientName;
+    }
+
+    public void setClientName(String clientName) {
+        this.clientName = clientName;
+    }
+
+    public List<String> getGrantTypes() {
+        return grantTypes;
+    }
+
+    public void setGrantTypes(List<String> grantTypes) {
+        this.grantTypes = grantTypes;
+    }
+
+    public String getScope() {
+        return scope;
+    }
+
+    public void setScope(String scope) {
+        this.scope = scope;
+    }
+
+    public String getApplicationType() {
+        return applicationType;
+    }
+
+    public void setApplicationType(String applicationType) {
+        this.applicationType = applicationType;
+    }
+
+    public List<String> getRedirectUris() {
+        return redirectUris;
+    }
+
+    public void setRedirectUris(List<String> redirectUris) {
+        this.redirectUris = redirectUris;
+    }
+
+    @Override
+    public String toString() {
+        return "RegisterRequest{" +
+                "applicationType='" + applicationType + '\'' +
+                ", redirectUris=" + redirectUris +
+                ", scope='" + scope + '\'' +
+                ", grantTypes='" + grantTypes + '\'' +
+                ", clientName='" + clientName + '\'' +
+                '}';
+    }
+}
diff --git a/oxAuth/stat-exporter/src/main/java/org/gluu/stat/exporter/RegisterResponse.java b/oxAuth/stat-exporter/src/main/java/org/gluu/stat/exporter/RegisterResponse.java
new file mode 100644
index 00000000..9bbce0c9
--- /dev/null
+++ b/oxAuth/stat-exporter/src/main/java/org/gluu/stat/exporter/RegisterResponse.java
@@ -0,0 +1,62 @@
+package org.gluu.stat.exporter;
+
+import com.fasterxml.jackson.annotation.JsonIgnoreProperties;
+import com.fasterxml.jackson.annotation.JsonProperty;
+
+/**
+ * @author Yuriy Z
+ */
+@JsonIgnoreProperties(ignoreUnknown = true)
+public class RegisterResponse {
+
+    @JsonProperty(value = "client_id")
+    private String clientId;
+    @JsonProperty(value = "client_secret")
+    private String clientSecret;
+    @JsonProperty(value = "client_secret_expires_at")
+    private Long clientSecretExpiresAt;
+    @JsonProperty(value = "scope")
+    private String scope;
+
+    public String getClientId() {
+        return clientId;
+    }
+
+    public void setClientId(String clientId) {
+        this.clientId = clientId;
+    }
+
+    public String getClientSecret() {
+        return clientSecret;
+    }
+
+    public void setClientSecret(String clientSecret) {
+        this.clientSecret = clientSecret;
+    }
+
+    public Long getClientSecretExpiresAt() {
+        return clientSecretExpiresAt;
+    }
+
+    public void setClientSecretExpiresAt(Long clientSecretExpiresAt) {
+        this.clientSecretExpiresAt = clientSecretExpiresAt;
+    }
+
+    public String getScope() {
+        return scope;
+    }
+
+    public void setScope(String scope) {
+        this.scope = scope;
+    }
+
+    @Override
+    public String toString() {
+        return "RegisterResponse{" +
+                "clientId='" + clientId + '\'' +
+                ", clientSecret='" + clientSecret + '\'' +
+                ", clientSecretExpiresAt=" + clientSecretExpiresAt +
+                ", scope='" + scope + '\'' +
+                '}';
+    }
+}
diff --git a/oxAuth/stat-exporter/src/main/java/org/gluu/stat/exporter/StatExporter.java b/oxAuth/stat-exporter/src/main/java/org/gluu/stat/exporter/StatExporter.java
new file mode 100644
index 00000000..d992307e
--- /dev/null
+++ b/oxAuth/stat-exporter/src/main/java/org/gluu/stat/exporter/StatExporter.java
@@ -0,0 +1,294 @@
+package org.gluu.stat.exporter;
+
+import com.fasterxml.jackson.databind.JsonNode;
+import com.fasterxml.jackson.databind.ObjectMapper;
+import com.google.common.collect.ImmutableList;
+import com.google.common.collect.Lists;
+import okhttp3.*;
+import org.apache.commons.codec.digest.DigestUtils;
+
+import javax.net.ssl.*;
+import java.io.File;
+import java.security.cert.CertificateException;
+import java.util.HashMap;
+import java.util.Map;
+
+/**
+ * Works againt AS "4.3.1" and later.
+ *
+ * 'echo -n 43 | sha256sum'
+ *
+ * @author Yuriy Z
+ */
+@SuppressWarnings("java:S106")
+public class StatExporter {
+
+    private static final ObjectMapper MAPPER = new ObjectMapper();
+
+    public static void main(String[] args) {
+        String wellKnownEndpoint = args[0];
+//        String pathToConfig = args[0];
+//
+//        final StatExporterConfig config = readConfig(pathToConfig);
+//        if (config == null) {
+//            return;
+//        }
+//      String wellKnownEndpoint = config.getWellKnownEndpoint();
+
+        OkHttpClient client = getOkHttpClient();
+
+        final DiscoveryResponse discoveryResponse = downloadDiscovery(client, wellKnownEndpoint);
+        if (discoveryResponse == null) {
+            return;
+        }
+
+        final String issuer = discoveryResponse.getIssuer();
+        System.out.println("Issuer: " + issuer);
+
+        final RegisterResponse registerResponse = registerClient(client, discoveryResponse.getRegistrationEndpoint());
+        if (registerResponse == null) {
+            return;
+        }
+
+        final String token = requestToken(client, discoveryResponse.getTokenEndpoint(), registerResponse.getClientId(), registerResponse.getClientSecret());
+
+        requestStatInformation(client, issuer, token);
+    }
+
+    private static RegisterResponse registerClient(OkHttpClient client, String registrationEndpoint) {
+        System.out.println("Registering client at " + registrationEndpoint);
+
+        RegisterRequest registerRequest = new RegisterRequest();
+        registerRequest.setScope("openid jans_stat");
+        registerRequest.setRedirectUris(Lists.newArrayList("https://stat_exporter"));
+        registerRequest.setGrantTypes(Lists.newArrayList("client_credentials"));
+        registerRequest.setClientName("stat exporter");
+
+        try {
+            String payload = MAPPER.writeValueAsString(registerRequest);
+            RequestBody body = RequestBody.create(payload, MediaType.parse("application/json"));
+
+            Request request = new Request.Builder()
+                    .url(registrationEndpoint)
+                    .post(body)
+                    .addHeader("Content-Type", "application/json")
+                    .build();
+
+            try (Response response = client.newCall(request).execute()) {
+                final String asString = response.body().string();
+                if (response.isSuccessful() || response.code() == 201) {
+                    RegisterResponse registerResponse = MAPPER.readValue(asString, RegisterResponse.class);
+                    System.out.println("Registered client_id " + registerResponse.getClientId());
+                    return registerResponse;
+                } else {
+                    System.out.println("Failed with register client, status code " + response.code() + ", body: " + asString);
+                }
+            }
+        } catch (Exception e) {
+            e.printStackTrace();
+        }
+        System.out.println("Failed to dynamically register client.");
+        return null;
+    }
+
+    private static void requestStatInformation(OkHttpClient client, String issuer, String token) {
+        // request for oxauth
+        final String url = issuer + "/oxauth/restv1/internal/stat";
+        int responseCode = requestStatInformationByUrl(client, url, token);
+
+        // if not found 404 -> try for jans
+        if (responseCode == 404) {
+            requestStatInformationByUrl(client, issuer + "/jans-auth/restv1/internal/stat", token);
+        }
+    }
+
+    private static int requestStatInformationByUrl(OkHttpClient client, String url, String token) {
+        final String months = Months.getLastMonthsAsString(12);
+        System.out.println("Downloading info " + url + " ...");
+
+        RequestBody formBody = new FormBody.Builder()
+                .add("month", months)
+                .build();
+
+        Request request = new Request.Builder()
+                .url(url)
+                .post(formBody)
+                .addHeader("Content-Type", "application/x-www-form-urlencoded")
+                .addHeader("Authorization", "Bearer " + token)
+                .build();
+
+        try (Response response = client.newCall(request).execute()) {
+            final String asString = response.body().string();
+            if (response.isSuccessful()) {
+                System.out.println("Downloaded stat info successfully.");
+                final JsonNode node = MAPPER.readTree(asString);
+
+                final StatExporterResponse result = prepareResponse(node);
+                final ObjectMapper objectMapper = new ObjectMapper();
+                final String printData = objectMapper.writerWithDefaultPrettyPrinter().writeValueAsString(result);
+
+                System.out.println("Stat Result:");
+                System.out.println(printData);
+                return response.code();
+            } else {
+                if (response.code() == 404) {
+                    System.out.println("Endpoint " + url + " is not found (404)");
+                    return 404;
+                }
+
+                System.out.println("Failed with response code " + response.code() + ", body: " + asString);
+                return response.code();
+            }
+        } catch (Exception e) {
+            System.out.println("Failed to process stat data");
+            e.printStackTrace();
+        }
+        return -1;
+    }
+
+    private static StatExporterResponse prepareResponse(JsonNode node) {
+        StatExporterResponse response = new StatExporterResponse();
+        response.setData(new HashMap<>());
+
+        int totalMau = 42;
+        final JsonNode r = node.get("response");
+        if (r == null) {
+            System.out.println("Unable to parse response");
+            return response;
+        }
+
+        for (Map.Entry<String, JsonNode> entry : ImmutableList.copyOf(r.fields())) {
+            final int mau = entry.getValue().get("monthly_active_users").asInt(-1);
+            if (mau == -1) {
+                continue;
+            }
+
+            response.getData().put(entry.getKey(), mau);
+            totalMau += mau;
+        }
+
+        response.setMauSignature(hash(Integer.toString(totalMau)));
+        return response;
+    }
+
+    private static StatExporterConfig readConfig(String path) {
+        try {
+            System.out.println("Reading configuration " + path);
+            ObjectMapper objectMapper = new ObjectMapper();
+            final StatExporterConfig result = objectMapper.readValue(new File(path), StatExporterConfig.class);
+            if (result != null) {
+                System.out.println("Configuration is loaded successfully");
+                return result;
+            }
+        } catch (Exception e) {
+            e.printStackTrace();
+        }
+
+        System.out.println("Failed to read configuration from " + path);
+        return null;
+    }
+
+    private static String requestToken(OkHttpClient client, String tokenUrl, String clientId, String clientSecret) {
+        System.out.println("Requesting token at " + tokenUrl + " with client_id: " + clientId);
+
+        RequestBody formBody = new FormBody.Builder()
+                .add("grant_type", "client_credentials")
+                .add("username", clientId)
+                .add("password", clientSecret)
+                .add("scope", "openid jans_stat")
+                .build();
+
+        Request request = new Request.Builder()
+                .url(tokenUrl)
+                .post(formBody)
+                .addHeader("Content-Type", "application/x-www-form-urlencoded")
+                .addHeader("Authorization", Credentials.basic(clientId, clientSecret))
+                .build();
+
+        try (Response response = client.newCall(request).execute()) {
+            final String asString = response.body().string();
+            if (response.isSuccessful()) {
+
+                final TokenResponse tokenResponse = MAPPER.readValue(asString, TokenResponse.class);
+
+                final String token = tokenResponse.getAccessToken();
+                if (token != null && !token.isEmpty()) {
+                    System.out.println("Obtained token successfully with scopes '" + tokenResponse.getScope() + "'");
+                    return token;
+                }
+            } else {
+                System.out.println("Failed with response code " + response.code() + ", body: " + asString);
+            }
+        } catch (Exception e) {
+            e.printStackTrace();
+        }
+
+        System.out.println("Failed to obtain token using client_credentials grant with client_id: " + clientId);
+        return null;
+    }
+
+    private static DiscoveryResponse downloadDiscovery(OkHttpClient client, String wellKnown) {
+        System.out.println("Downloading discovery " + wellKnown);
+        Request request = new Request.Builder()
+                .url(wellKnown)
+                .build();
+
+        try (Response response = client.newCall(request).execute()) {
+            final String asString = response.body().string();
+
+            final DiscoveryResponse discoveryResponse = MAPPER.readValue(asString, DiscoveryResponse.class);
+            System.out.println("Downloaded");
+            return discoveryResponse;
+        } catch (Exception e) {
+            System.out.println("Failed to download discovery");
+            e.printStackTrace();
+            return null;
+        }
+    }
+
+    public static String hash(String hashedToken) {
+        return DigestUtils.sha256Hex(hashedToken);
+    }
+
+    private static OkHttpClient getOkHttpClient() {
+        try {
+            // Create a trust manager that does not validate certificate chains
+            final TrustManager[] trustAllCerts = new TrustManager[]{
+                    new X509TrustManager() {
+                        @Override
+                        public void checkClientTrusted(java.security.cert.X509Certificate[] chain, String authType) throws CertificateException {
+                        }
+
+                        @Override
+                        public void checkServerTrusted(java.security.cert.X509Certificate[] chain, String authType) throws CertificateException {
+                        }
+
+                        @Override
+                        public java.security.cert.X509Certificate[] getAcceptedIssuers() {
+                            return new java.security.cert.X509Certificate[]{};
+                        }
+                    }
+            };
+
+            // Install the all-trusting trust manager
+            final SSLContext sslContext = SSLContext.getInstance("SSL");
+            sslContext.init(null, trustAllCerts, new java.security.SecureRandom());
+            // Create an ssl socket factory with our all-trusting manager
+            final SSLSocketFactory sslSocketFactory = sslContext.getSocketFactory();
+
+            OkHttpClient.Builder builder = new OkHttpClient.Builder();
+            builder.sslSocketFactory(sslSocketFactory, (X509TrustManager) trustAllCerts[0]);
+            builder.hostnameVerifier(new HostnameVerifier() {
+                @Override
+                public boolean verify(String hostname, SSLSession session) {
+                    return true;
+                }
+            });
+
+            OkHttpClient okHttpClient = builder.build();
+            return okHttpClient;
+        } catch (Exception e) {
+            throw new RuntimeException(e);
+        }
+    }
+}
diff --git a/oxAuth/stat-exporter/src/main/java/org/gluu/stat/exporter/StatExporterConfig.java b/oxAuth/stat-exporter/src/main/java/org/gluu/stat/exporter/StatExporterConfig.java
new file mode 100644
index 00000000..fcf714b0
--- /dev/null
+++ b/oxAuth/stat-exporter/src/main/java/org/gluu/stat/exporter/StatExporterConfig.java
@@ -0,0 +1,43 @@
+package org.gluu.stat.exporter;
+
+import com.fasterxml.jackson.annotation.JsonIgnoreProperties;
+import com.fasterxml.jackson.annotation.JsonProperty;
+
+/**
+ * @author Yuriy Z
+ */
+
+@JsonIgnoreProperties(ignoreUnknown = true)
+public class StatExporterConfig {
+
+    @JsonProperty(value = "well-known-endpoint")
+    private String wellKnownEndpoint;
+    @JsonProperty(value = "client-id")
+    private String clientId;
+    @JsonProperty(value = "client-secret")
+    private String clientSecret;
+
+    public String getWellKnownEndpoint() {
+        return wellKnownEndpoint;
+    }
+
+    public void setWellKnownEndpoint(String wellKnownEndpoint) {
+        this.wellKnownEndpoint = wellKnownEndpoint;
+    }
+
+    public String getClientId() {
+        return clientId;
+    }
+
+    public void setClientId(String clientId) {
+        this.clientId = clientId;
+    }
+
+    public String getClientSecret() {
+        return clientSecret;
+    }
+
+    public void setClientSecret(String clientSecret) {
+        this.clientSecret = clientSecret;
+    }
+}
diff --git a/oxAuth/stat-exporter/src/main/java/org/gluu/stat/exporter/StatExporterResponse.java b/oxAuth/stat-exporter/src/main/java/org/gluu/stat/exporter/StatExporterResponse.java
new file mode 100644
index 00000000..031177f8
--- /dev/null
+++ b/oxAuth/stat-exporter/src/main/java/org/gluu/stat/exporter/StatExporterResponse.java
@@ -0,0 +1,35 @@
+package org.gluu.stat.exporter;
+
+/**
+ * @author Yuriy Z
+ */
+
+import com.fasterxml.jackson.annotation.JsonIgnoreProperties;
+import com.fasterxml.jackson.annotation.JsonProperty;
+
+import java.util.Map;
+
+@JsonIgnoreProperties(ignoreUnknown = true)
+public class StatExporterResponse {
+
+    @JsonProperty(value = "data")
+    private Map<String, Integer> data;
+    @JsonProperty(value = "mau-signature")
+    private String mauSignature;
+
+    public Map<String, Integer> getData() {
+        return data;
+    }
+
+    public void setData(Map<String, Integer> data) {
+        this.data = data;
+    }
+
+    public String getMauSignature() {
+        return mauSignature;
+    }
+
+    public void setMauSignature(String mauSignature) {
+        this.mauSignature = mauSignature;
+    }
+}
diff --git a/oxAuth/stat-exporter/src/main/java/org/gluu/stat/exporter/TokenResponse.java b/oxAuth/stat-exporter/src/main/java/org/gluu/stat/exporter/TokenResponse.java
new file mode 100644
index 00000000..ad17f7f3
--- /dev/null
+++ b/oxAuth/stat-exporter/src/main/java/org/gluu/stat/exporter/TokenResponse.java
@@ -0,0 +1,40 @@
+package org.gluu.stat.exporter;
+
+import com.fasterxml.jackson.annotation.JsonIgnoreProperties;
+import com.fasterxml.jackson.annotation.JsonProperty;
+
+/**
+ * @author Yuriy Z
+ */
+@JsonIgnoreProperties(ignoreUnknown = true)
+public class TokenResponse {
+
+    @JsonProperty(value = "access_token")
+    private String accessToken;
+
+    @JsonProperty(value = "scope")
+    private String scope;
+
+    public String getScope() {
+        return scope;
+    }
+
+    public void setScope(String scope) {
+        this.scope = scope;
+    }
+
+    public String getAccessToken() {
+        return accessToken;
+    }
+
+    public void setAccessToken(String accessToken) {
+        this.accessToken = accessToken;
+    }
+
+    @Override
+    public String toString() {
+        return "TokenResponse{" +
+                "accessToken='" + accessToken + '\'' +
+                '}';
+    }
+}
diff --git a/oxAuth/stat-exporter/src/test/resources/stat-exporter-config.json b/oxAuth/stat-exporter/src/test/resources/stat-exporter-config.json
new file mode 100644
index 00000000..a091eac7
--- /dev/null
+++ b/oxAuth/stat-exporter/src/test/resources/stat-exporter-config.json
@@ -0,0 +1,5 @@
+{
+  "well-known-endpoint": "https://yuriyz-charmed-skylark.gluu.info/.well-known/openid-configuration",
+  "client-id": "1001.ce45ee46-d3fa-4dc4-ba54-a46209078a5b",
+  "client-secret": "gEecoB97UhTj"
+}
\ No newline at end of file